From 460eddd7812e2b50592d0679c549ad5f207921d9 Mon Sep 17 00:00:00 2001
From: erik-krogh <erik-krogh@github.com>
Date: Tue, 16 Aug 2022 08:55:49 +0200
Subject: [PATCH 0001/1420] add ql/override-any

---
 .../performance/VarUnusedInDisjunctQuery.qll  | 27 +++++++++++++
 .../performance/VarUnusedInDisjunct.ql        | 27 +------------
 ql/ql/src/queries/style/OverrideAny.ql        | 40 +++++++++++++++++++
 3 files changed, 68 insertions(+), 26 deletions(-)
 create mode 100644 ql/ql/src/codeql_ql/performance/VarUnusedInDisjunctQuery.qll
 create mode 100644 ql/ql/src/queries/style/OverrideAny.ql

diff --git a/ql/ql/src/codeql_ql/performance/VarUnusedInDisjunctQuery.qll b/ql/ql/src/codeql_ql/performance/VarUnusedInDisjunctQuery.qll
new file mode 100644
index 00000000000..503ad6db3ad
--- /dev/null
+++ b/ql/ql/src/codeql_ql/performance/VarUnusedInDisjunctQuery.qll
@@ -0,0 +1,27 @@
+import ql
+
+/**
+ * Holds if we assume `t` is a small type, and
+ * variables of this type are therefore not an issue in cartesian products.
+ */
+predicate isSmallType(Type t) {
+  t.getName() = "string" // DataFlow::Configuration and the like
+  or
+  exists(NewType newType | newType = t.getDeclaration() |
+    forex(NewTypeBranch branch | branch = newType.getABranch() | branch.getArity() = 0)
+  )
+  or
+  t.getName() = "boolean"
+  or
+  exists(NewType newType | newType = t.getDeclaration() |
+    forex(NewTypeBranch branch | branch = newType.getABranch() |
+      isSmallType(branch.getReturnType())
+    )
+  )
+  or
+  exists(NewTypeBranch branch | t = branch.getReturnType() |
+    forall(Type param | param = branch.getParameterType(_) | isSmallType(param))
+  )
+  or
+  isSmallType(t.getASuperType())
+}
diff --git a/ql/ql/src/queries/performance/VarUnusedInDisjunct.ql b/ql/ql/src/queries/performance/VarUnusedInDisjunct.ql
index c26b47554fe..2d85b872153 100644
--- a/ql/ql/src/queries/performance/VarUnusedInDisjunct.ql
+++ b/ql/ql/src/queries/performance/VarUnusedInDisjunct.ql
@@ -10,6 +10,7 @@
  */
 
 import ql
+import codeql_ql.performance.VarUnusedInDisjunctQuery
 
 /**
  * Holds if `node` bind `var` in a (transitive) child node.
@@ -48,32 +49,6 @@ predicate alwaysBindsVar(VarDef var, AstNode node) {
   exists(IfFormula ifForm | ifForm = node | alwaysBindsVar(var, ifForm.getCondition()))
 }
 
-/**
- * Holds if we assume `t` is a small type, and
- * variables of this type are therefore not an issue in cartesian products.
- */
-predicate isSmallType(Type t) {
-  t.getName() = "string" // DataFlow::Configuration and the like
-  or
-  exists(NewType newType | newType = t.getDeclaration() |
-    forex(NewTypeBranch branch | branch = newType.getABranch() | branch.getArity() = 0)
-  )
-  or
-  t.getName() = "boolean"
-  or
-  exists(NewType newType | newType = t.getDeclaration() |
-    forex(NewTypeBranch branch | branch = newType.getABranch() |
-      isSmallType(branch.getReturnType())
-    )
-  )
-  or
-  exists(NewTypeBranch branch | t = branch.getReturnType() |
-    forall(Type param | param = branch.getParameterType(_) | isSmallType(param))
-  )
-  or
-  isSmallType(t.getASuperType())
-}
-
 /**
  * Holds if `pred` is inlined.
  */
diff --git a/ql/ql/src/queries/style/OverrideAny.ql b/ql/ql/src/queries/style/OverrideAny.ql
new file mode 100644
index 00000000000..0c7d82fd3c8
--- /dev/null
+++ b/ql/ql/src/queries/style/OverrideAny.ql
@@ -0,0 +1,40 @@
+/**
+ * @name Override with unmentioned parameter
+ * @description A predicate that overrides the default behavior but doesn't mention a parameter is suspicious.
+ * @kind problem
+ * @problem.severity warning
+ * @id ql/override-any
+ * @precision very-high
+ */
+
+import ql
+import codeql_ql.performance.VarUnusedInDisjunctQuery
+
+AstNode param(Predicate pred, string name, Type t) {
+  result = pred.getParameter(_) and
+  result.(VarDecl).getName() = name and
+  result.(VarDecl).getType() = t
+  or
+  result = pred.getReturnTypeExpr() and
+  name = "result" and
+  t = pred.getReturnType()
+}
+
+predicate hasAccess(Predicate pred, string name) {
+  exists(param(pred, name, _).(VarDecl).getAnAccess())
+  or
+  name = "result" and
+  exists(param(pred, name, _)) and
+  exists(ResultAccess res | res.getEnclosingPredicate() = pred)
+}
+
+from Predicate pred, AstNode param, string name, Type paramType
+where
+  pred.hasAnnotation("override") and
+  param = param(pred, name, paramType) and
+  not hasAccess(pred, name) and
+  not pred.getBody() instanceof NoneCall and
+  exists(pred.getBody()) and
+  not isSmallType(pred.getParent().(Class).getType()) and
+  not isSmallType(paramType)
+select pred, "Override predicate doesn't mention $@.", param, name

From 46627a737e281b0432b1297abaa402fafaca51aa Mon Sep 17 00:00:00 2001
From: erik-krogh <erik-krogh@github.com>
Date: Fri, 14 Oct 2022 16:00:17 +0200
Subject: [PATCH 0002/1420] add an AdditionalTaintStep class for Ruby

---
 .../ql/lib/codeql/ruby/dataflow/FlowSteps.qll | 28 +++++++++++++++++++
 .../internal/TaintTrackingPrivate.qll         |  4 +++
 2 files changed, 32 insertions(+)
 create mode 100644 ruby/ql/lib/codeql/ruby/dataflow/FlowSteps.qll

diff --git a/ruby/ql/lib/codeql/ruby/dataflow/FlowSteps.qll b/ruby/ql/lib/codeql/ruby/dataflow/FlowSteps.qll
new file mode 100644
index 00000000000..414d241c9fa
--- /dev/null
+++ b/ruby/ql/lib/codeql/ruby/dataflow/FlowSteps.qll
@@ -0,0 +1,28 @@
+/**
+ * Provides classes representing various flow steps for taint tracking.
+ */
+
+private import codeql.ruby.DataFlow
+private import internal.DataFlowPrivate as DFPrivate
+
+private class Unit = DFPrivate::Unit;
+
+/**
+ * A module importing the frameworks that implement additional flow steps,
+ * ensuring that they are visible to the taint tracking library.
+ */
+private module Frameworks { }
+
+/**
+ * A unit class for adding additional taint steps.
+ *
+ * Extend this class to add additional taint steps that should apply to all
+ * taint configurations.
+ */
+class AdditionalTaintStep extends Unit {
+  /**
+   * Holds if the step from `node1` to `node2` should be considered a taint
+   * step for all configurations.
+   */
+  abstract predicate step(DataFlow::Node node1, DataFlow::Node node2);
+}
diff --git a/ruby/ql/lib/codeql/ruby/dataflow/internal/TaintTrackingPrivate.qll b/ruby/ql/lib/codeql/ruby/dataflow/internal/TaintTrackingPrivate.qll
index 92eef6e3cfb..bf9fd46ffa0 100644
--- a/ruby/ql/lib/codeql/ruby/dataflow/internal/TaintTrackingPrivate.qll
+++ b/ruby/ql/lib/codeql/ruby/dataflow/internal/TaintTrackingPrivate.qll
@@ -62,6 +62,8 @@ private CfgNodes::ExprNodes::VariableWriteAccessCfgNode variablesInPattern(
 
 cached
 private module Cached {
+  private import codeql.ruby.dataflow.FlowSteps as FlowSteps
+
   cached
   predicate forceCachingInSameStage() { any() }
 
@@ -99,6 +101,8 @@ private module Cached {
     or
     FlowSummaryImpl::Private::Steps::summaryLocalStep(nodeFrom, nodeTo, false)
     or
+    any(FlowSteps::AdditionalTaintStep s).step(nodeFrom, nodeTo)
+    or
     // Although flow through collections is modeled precisely using stores/reads, we still
     // allow flow out of a _tainted_ collection. This is needed in order to support taint-
     // tracking configurations where the source is a collection.

From dbf2673a916b66839ed4711d0be0dce9b69ebe4c Mon Sep 17 00:00:00 2001
From: erik-krogh <erik-krogh@github.com>
Date: Fri, 14 Oct 2022 16:06:10 +0200
Subject: [PATCH 0003/1420] add returnsFormatted predicate to PrintfStyleCall
 (similar to JS)

---
 .../codeql/ruby/security/TaintedFormatStringSpecific.qll | 9 +++++++++
 1 file changed, 9 insertions(+)

diff --git a/ruby/ql/lib/codeql/ruby/security/TaintedFormatStringSpecific.qll b/ruby/ql/lib/codeql/ruby/security/TaintedFormatStringSpecific.qll
index 2f5f6069594..e2c4549133a 100644
--- a/ruby/ql/lib/codeql/ruby/security/TaintedFormatStringSpecific.qll
+++ b/ruby/ql/lib/codeql/ruby/security/TaintedFormatStringSpecific.qll
@@ -25,6 +25,9 @@ abstract class PrintfStyleCall extends DataFlow::CallNode {
    * Gets then `n`th formatted argument of this call.
    */
   DataFlow::Node getFormatArgument(int n) { n >= 0 and result = this.getArgument(n + 1) }
+
+  /** Holds if this call returns the formatted string. */
+  predicate returnsFormatted() { any() }
 }
 
 /**
@@ -50,6 +53,8 @@ class KernelPrintfCall extends PrintfStyleCall {
     then result = this.getArgument(0)
     else result = this.getArgument([0, 1])
   }
+
+  override predicate returnsFormatted() { none() }
 }
 
 /**
@@ -62,6 +67,8 @@ class KernelSprintfCall extends PrintfStyleCall {
     this.asExpr().getExpr() instanceof UnknownMethodCall and
     this.getMethodName() = "sprintf"
   }
+
+  override predicate returnsFormatted() { any() }
 }
 
 /**
@@ -71,4 +78,6 @@ class IOPrintfCall extends PrintfStyleCall {
   IOPrintfCall() {
     this.getReceiver() instanceof IO::IOInstance and this.getMethodName() = "printf"
   }
+
+  override predicate returnsFormatted() { none() }
 }

From a2b924bbdf90926dc47e44b4acb081082bc92155 Mon Sep 17 00:00:00 2001
From: erik-krogh <erik-krogh@github.com>
Date: Mon, 17 Oct 2022 12:28:29 +0200
Subject: [PATCH 0004/1420] move model of printf style calls to
 StringFormatters.qll

---
 ruby/ql/lib/codeql/ruby/Frameworks.qll        |  1 +
 .../ruby/frameworks/StringFormatters.qll      | 70 +++++++++++++++++
 .../security/TaintedFormatStringSpecific.qll  | 78 +------------------
 3 files changed, 73 insertions(+), 76 deletions(-)
 create mode 100644 ruby/ql/lib/codeql/ruby/frameworks/StringFormatters.qll

diff --git a/ruby/ql/lib/codeql/ruby/Frameworks.qll b/ruby/ql/lib/codeql/ruby/Frameworks.qll
index f89040b1d5d..9896cf23c39 100644
--- a/ruby/ql/lib/codeql/ruby/Frameworks.qll
+++ b/ruby/ql/lib/codeql/ruby/Frameworks.qll
@@ -23,3 +23,4 @@ private import codeql.ruby.frameworks.HttpClients
 private import codeql.ruby.frameworks.XmlParsing
 private import codeql.ruby.frameworks.ActionDispatch
 private import codeql.ruby.frameworks.PosixSpawn
+private import codeql.ruby.frameworks.StringFormatters
diff --git a/ruby/ql/lib/codeql/ruby/frameworks/StringFormatters.qll b/ruby/ql/lib/codeql/ruby/frameworks/StringFormatters.qll
new file mode 100644
index 00000000000..501411c2558
--- /dev/null
+++ b/ruby/ql/lib/codeql/ruby/frameworks/StringFormatters.qll
@@ -0,0 +1,70 @@
+/**
+ * Provides classes for modeling string formatting libraries.
+ */
+
+private import codeql.ruby.ast.Call
+private import codeql.ruby.DataFlow
+private import codeql.ruby.ApiGraphs
+private import codeql.ruby.frameworks.core.IO
+
+/**
+ * A call to `printf` or `sprintf`.
+ */
+abstract class PrintfStyleCall extends DataFlow::CallNode {
+  // We assume that most printf-like calls have the signature f(format_string, args...)
+  /**
+   * Gets the format string of this call.
+   */
+  DataFlow::Node getFormatString() { result = this.getArgument(0) }
+
+  /**
+   * Gets then `n`th formatted argument of this call.
+   */
+  DataFlow::Node getFormatArgument(int n) { n >= 0 and result = this.getArgument(n + 1) }
+}
+
+/**
+ * A call to `Kernel.printf`.
+ */
+class KernelPrintfCall extends PrintfStyleCall {
+  KernelPrintfCall() {
+    this = API::getTopLevelMember("Kernel").getAMethodCall("printf")
+    or
+    this.asExpr().getExpr() instanceof UnknownMethodCall and
+    this.getMethodName() = "printf"
+  }
+
+  // Kernel#printf supports two signatures:
+  //   printf(io, string, ...)
+  //   printf(string, ...)
+  override DataFlow::Node getFormatString() {
+    // Because `printf` has two different signatures, we can't be sure which
+    // argument is the format string, so we use a heuristic:
+    // If the first argument has a string value, then we assume it is the format string.
+    // Otherwise we treat both the first and second args as the format string.
+    if this.getArgument(0).getExprNode().getConstantValue().isString(_)
+    then result = this.getArgument(0)
+    else result = this.getArgument([0, 1])
+  }
+}
+
+/**
+ * A call to `Kernel.sprintf`.
+ */
+class KernelSprintfCall extends PrintfStyleCall {
+  KernelSprintfCall() {
+    this = API::getTopLevelMember("Kernel").getAMethodCall("sprintf")
+    or
+    this.asExpr().getExpr() instanceof UnknownMethodCall and
+    this.getMethodName() = "sprintf"
+  }
+}
+
+/**
+ * A call to `IO#printf`.
+ */
+class IOPrintfCall extends PrintfStyleCall {
+  IOPrintfCall() {
+    this.getReceiver() instanceof IO::IOInstance and this.getMethodName() = "printf"
+  }
+}
diff --git a/ruby/ql/lib/codeql/ruby/security/TaintedFormatStringSpecific.qll b/ruby/ql/lib/codeql/ruby/security/TaintedFormatStringSpecific.qll
index e2c4549133a..43f9dff4a25 100644
--- a/ruby/ql/lib/codeql/ruby/security/TaintedFormatStringSpecific.qll
+++ b/ruby/ql/lib/codeql/ruby/security/TaintedFormatStringSpecific.qll
@@ -2,82 +2,8 @@
  * Provides Ruby-specific imports and classes needed for `TaintedFormatStringQuery` and `TaintedFormatStringCustomizations`.
  */
 
-import codeql.ruby.AST
+import codeql.ruby.frameworks.StringFormatters
 import codeql.ruby.DataFlow
 import codeql.ruby.dataflow.RemoteFlowSources
-import codeql.ruby.ApiGraphs
 import codeql.ruby.TaintTracking
-private import codeql.ruby.frameworks.Files
-private import codeql.ruby.frameworks.core.IO
-private import codeql.ruby.controlflow.CfgNodes
-
-/**
- * A call to `printf` or `sprintf`.
- */
-abstract class PrintfStyleCall extends DataFlow::CallNode {
-  // We assume that most printf-like calls have the signature f(format_string, args...)
-  /**
-   * Gets the format string of this call.
-   */
-  DataFlow::Node getFormatString() { result = this.getArgument(0) }
-
-  /**
-   * Gets then `n`th formatted argument of this call.
-   */
-  DataFlow::Node getFormatArgument(int n) { n >= 0 and result = this.getArgument(n + 1) }
-
-  /** Holds if this call returns the formatted string. */
-  predicate returnsFormatted() { any() }
-}
-
-/**
- * A call to `Kernel.printf`.
- */
-class KernelPrintfCall extends PrintfStyleCall {
-  KernelPrintfCall() {
-    this = API::getTopLevelMember("Kernel").getAMethodCall("printf")
-    or
-    this.asExpr().getExpr() instanceof UnknownMethodCall and
-    this.getMethodName() = "printf"
-  }
-
-  // Kernel#printf supports two signatures:
-  //   printf(io, string, ...)
-  //   printf(string, ...)
-  override DataFlow::Node getFormatString() {
-    // Because `printf` has two different signatures, we can't be sure which
-    // argument is the format string, so we use a heuristic:
-    // If the first argument has a string value, then we assume it is the format string.
-    // Otherwise we treat both the first and second args as the format string.
-    if this.getArgument(0).getExprNode().getConstantValue().isString(_)
-    then result = this.getArgument(0)
-    else result = this.getArgument([0, 1])
-  }
-
-  override predicate returnsFormatted() { none() }
-}
-
-/**
- * A call to `Kernel.sprintf`.
- */
-class KernelSprintfCall extends PrintfStyleCall {
-  KernelSprintfCall() {
-    this = API::getTopLevelMember("Kernel").getAMethodCall("sprintf")
-    or
-    this.asExpr().getExpr() instanceof UnknownMethodCall and
-    this.getMethodName() = "sprintf"
-  }
-
-  override predicate returnsFormatted() { any() }
-}
-
-/**
- * A call to `IO#printf`.
- */
-class IOPrintfCall extends PrintfStyleCall {
-  IOPrintfCall() {
-    this.getReceiver() instanceof IO::IOInstance and this.getMethodName() = "printf"
-  }
-
-  override predicate returnsFormatted() { none() }
-}
+import codeql.ruby.DataFlow

From 6de1abcb0ef47ea2b2ef29bfc748275e8f03bfea Mon Sep 17 00:00:00 2001
From: erik-krogh <erik-krogh@github.com>
Date: Mon, 17 Oct 2022 12:29:07 +0200
Subject: [PATCH 0005/1420] add a returnsFormatted predicate to the printf
 model, similar to the JS implementation

---
 ruby/ql/lib/codeql/ruby/frameworks/StringFormatters.qll | 9 +++++++++
 1 file changed, 9 insertions(+)

diff --git a/ruby/ql/lib/codeql/ruby/frameworks/StringFormatters.qll b/ruby/ql/lib/codeql/ruby/frameworks/StringFormatters.qll
index 501411c2558..1f58329629f 100644
--- a/ruby/ql/lib/codeql/ruby/frameworks/StringFormatters.qll
+++ b/ruby/ql/lib/codeql/ruby/frameworks/StringFormatters.qll
@@ -21,6 +21,9 @@ abstract class PrintfStyleCall extends DataFlow::CallNode {
    * Gets then `n`th formatted argument of this call.
    */
   DataFlow::Node getFormatArgument(int n) { n >= 0 and result = this.getArgument(n + 1) }
+
+  /** Holds if this call returns the formatted string. */
+  predicate returnsFormatted() { any() }
 }
 
 /**
@@ -46,6 +49,8 @@ class KernelPrintfCall extends PrintfStyleCall {
     then result = this.getArgument(0)
     else result = this.getArgument([0, 1])
   }
+
+  override predicate returnsFormatted() { none() }
 }
 
 /**
@@ -58,6 +63,8 @@ class KernelSprintfCall extends PrintfStyleCall {
     this.asExpr().getExpr() instanceof UnknownMethodCall and
     this.getMethodName() = "sprintf"
   }
+
+  override predicate returnsFormatted() { any() }
 }
 
 /**
@@ -67,4 +74,6 @@ class IOPrintfCall extends PrintfStyleCall {
   IOPrintfCall() {
     this.getReceiver() instanceof IO::IOInstance and this.getMethodName() = "printf"
   }
+
+  override predicate returnsFormatted() { none() }
 }

From f222cc1f3ec1e6bd3de4977bcaa47ef9b9f88ac9 Mon Sep 17 00:00:00 2001
From: erik-krogh <erik-krogh@github.com>
Date: Mon, 17 Oct 2022 12:35:46 +0200
Subject: [PATCH 0006/1420] refactor the existing taint-step for string
 interpolation into StringFormatters.qll

---
 ruby/ql/lib/codeql/ruby/dataflow/FlowSteps.qll   |  4 +++-
 .../dataflow/internal/TaintTrackingPrivate.qll   |  4 ----
 .../codeql/ruby/frameworks/StringFormatters.qll  | 16 ++++++++++++++++
 3 files changed, 19 insertions(+), 5 deletions(-)

diff --git a/ruby/ql/lib/codeql/ruby/dataflow/FlowSteps.qll b/ruby/ql/lib/codeql/ruby/dataflow/FlowSteps.qll
index 414d241c9fa..881441fc765 100644
--- a/ruby/ql/lib/codeql/ruby/dataflow/FlowSteps.qll
+++ b/ruby/ql/lib/codeql/ruby/dataflow/FlowSteps.qll
@@ -11,7 +11,9 @@ private class Unit = DFPrivate::Unit;
  * A module importing the frameworks that implement additional flow steps,
  * ensuring that they are visible to the taint tracking library.
  */
-private module Frameworks { }
+private module Frameworks {
+  import codeql.ruby.frameworks.StringFormatters
+}
 
 /**
  * A unit class for adding additional taint steps.
diff --git a/ruby/ql/lib/codeql/ruby/dataflow/internal/TaintTrackingPrivate.qll b/ruby/ql/lib/codeql/ruby/dataflow/internal/TaintTrackingPrivate.qll
index bf9fd46ffa0..92484e12596 100644
--- a/ruby/ql/lib/codeql/ruby/dataflow/internal/TaintTrackingPrivate.qll
+++ b/ruby/ql/lib/codeql/ruby/dataflow/internal/TaintTrackingPrivate.qll
@@ -95,10 +95,6 @@ private module Cached {
         )
     )
     or
-    // string interpolation of `nodeFrom` into `nodeTo`
-    nodeFrom.asExpr() =
-      nodeTo.asExpr().(CfgNodes::ExprNodes::StringlikeLiteralCfgNode).getAComponent()
-    or
     FlowSummaryImpl::Private::Steps::summaryLocalStep(nodeFrom, nodeTo, false)
     or
     any(FlowSteps::AdditionalTaintStep s).step(nodeFrom, nodeTo)
diff --git a/ruby/ql/lib/codeql/ruby/frameworks/StringFormatters.qll b/ruby/ql/lib/codeql/ruby/frameworks/StringFormatters.qll
index 1f58329629f..fa284d8f18c 100644
--- a/ruby/ql/lib/codeql/ruby/frameworks/StringFormatters.qll
+++ b/ruby/ql/lib/codeql/ruby/frameworks/StringFormatters.qll
@@ -77,3 +77,19 @@ class IOPrintfCall extends PrintfStyleCall {
 
   override predicate returnsFormatted() { none() }
 }
+
+private import codeql.ruby.dataflow.FlowSteps
+private import codeql.ruby.CFG
+
+/**
+ * A step for string interpolation of `pred` into `succ`.
+ * E.g.
+ * ```rb
+ * succ = "foo #{pred} bar"
+ * ```
+ */
+private class StringLiteralFormatStep extends AdditionalTaintStep {
+  override predicate step(DataFlow::Node pred, DataFlow::Node succ) {
+    pred.asExpr() = succ.asExpr().(CfgNodes::ExprNodes::StringlikeLiteralCfgNode).getAComponent()
+  }
+}

From d4919d04ba934f5cb95da3656c29a44694ee8e4f Mon Sep 17 00:00:00 2001
From: erik-krogh <erik-krogh@github.com>
Date: Mon, 17 Oct 2022 12:43:28 +0200
Subject: [PATCH 0007/1420] add a taint-step for format-calls

---
 .../codeql/ruby/frameworks/StringFormatters.qll  | 16 ++++++++++++++++
 .../security/cwe-079/StoredXSS.expected          |  4 ++++
 .../cwe-079/app/views/foo/stores/show.html.erb   |  5 +++++
 3 files changed, 25 insertions(+)

diff --git a/ruby/ql/lib/codeql/ruby/frameworks/StringFormatters.qll b/ruby/ql/lib/codeql/ruby/frameworks/StringFormatters.qll
index fa284d8f18c..b7c3fb0d21c 100644
--- a/ruby/ql/lib/codeql/ruby/frameworks/StringFormatters.qll
+++ b/ruby/ql/lib/codeql/ruby/frameworks/StringFormatters.qll
@@ -93,3 +93,19 @@ private class StringLiteralFormatStep extends AdditionalTaintStep {
     pred.asExpr() = succ.asExpr().(CfgNodes::ExprNodes::StringlikeLiteralCfgNode).getAComponent()
   }
 }
+
+/**
+ * A taint propagating data flow edge arising from string formatting.
+ */
+private class StringFormattingTaintStep extends AdditionalTaintStep {
+  override predicate step(DataFlow::Node pred, DataFlow::Node succ) {
+    exists(PrintfStyleCall call |
+      call.returnsFormatted() and
+      succ = call
+    |
+      pred = call.getFormatString()
+      or
+      pred = call.getFormatArgument(_)
+    )
+  }
+}
diff --git a/ruby/ql/test/query-tests/security/cwe-079/StoredXSS.expected b/ruby/ql/test/query-tests/security/cwe-079/StoredXSS.expected
index a637a8e4d0d..98156ed74c5 100644
--- a/ruby/ql/test/query-tests/security/cwe-079/StoredXSS.expected
+++ b/ruby/ql/test/query-tests/security/cwe-079/StoredXSS.expected
@@ -11,6 +11,7 @@ edges
 | app/views/foo/stores/show.html.erb:41:64:41:87 | ... + ... :  | app/views/foo/bars/_widget.html.erb:5:9:5:20 | call to display_text |
 | app/views/foo/stores/show.html.erb:41:64:41:87 | ... + ... :  | app/views/foo/bars/_widget.html.erb:8:9:8:36 | ...[...] |
 | app/views/foo/stores/show.html.erb:41:76:41:87 | call to display_text :  | app/views/foo/stores/show.html.erb:41:64:41:87 | ... + ... :  |
+| app/views/foo/stores/show.html.erb:87:17:87:28 | call to handle :  | app/views/foo/stores/show.html.erb:87:3:87:29 | call to sprintf |
 nodes
 | app/controllers/foo/stores_controller.rb:8:10:8:29 | call to read :  | semmle.label | call to read :  |
 | app/controllers/foo/stores_controller.rb:9:22:9:23 | dt :  | semmle.label | dt :  |
@@ -31,6 +32,8 @@ nodes
 | app/views/foo/stores/show.html.erb:70:3:70:20 | call to raw_name | semmle.label | call to raw_name |
 | app/views/foo/stores/show.html.erb:80:5:80:22 | call to display_name | semmle.label | call to display_name |
 | app/views/foo/stores/show.html.erb:83:5:83:24 | @other_user_raw_name | semmle.label | @other_user_raw_name |
+| app/views/foo/stores/show.html.erb:87:3:87:29 | call to sprintf | semmle.label | call to sprintf |
+| app/views/foo/stores/show.html.erb:87:17:87:28 | call to handle :  | semmle.label | call to handle :  |
 subpaths
 #select
 | app/views/foo/bars/_widget.html.erb:5:9:5:20 | call to display_text | app/controllers/foo/stores_controller.rb:8:10:8:29 | call to read :  | app/views/foo/bars/_widget.html.erb:5:9:5:20 | call to display_text | Stored cross-site scripting vulnerability due to $@. | app/controllers/foo/stores_controller.rb:8:10:8:29 | call to read | stored value |
@@ -46,3 +49,4 @@ subpaths
 | app/views/foo/stores/show.html.erb:70:3:70:20 | call to raw_name | app/views/foo/stores/show.html.erb:70:3:70:20 | call to raw_name | app/views/foo/stores/show.html.erb:70:3:70:20 | call to raw_name | Stored cross-site scripting vulnerability due to $@. | app/views/foo/stores/show.html.erb:70:3:70:20 | call to raw_name | stored value |
 | app/views/foo/stores/show.html.erb:80:5:80:22 | call to display_name | app/views/foo/stores/show.html.erb:80:5:80:22 | call to display_name | app/views/foo/stores/show.html.erb:80:5:80:22 | call to display_name | Stored cross-site scripting vulnerability due to $@. | app/views/foo/stores/show.html.erb:80:5:80:22 | call to display_name | stored value |
 | app/views/foo/stores/show.html.erb:83:5:83:24 | @other_user_raw_name | app/controllers/foo/stores_controller.rb:12:28:12:48 | call to raw_name :  | app/views/foo/stores/show.html.erb:83:5:83:24 | @other_user_raw_name | Stored cross-site scripting vulnerability due to $@. | app/controllers/foo/stores_controller.rb:12:28:12:48 | call to raw_name | stored value |
+| app/views/foo/stores/show.html.erb:87:3:87:29 | call to sprintf | app/views/foo/stores/show.html.erb:87:17:87:28 | call to handle :  | app/views/foo/stores/show.html.erb:87:3:87:29 | call to sprintf | Stored cross-site scripting vulnerability due to $@. | app/views/foo/stores/show.html.erb:87:17:87:28 | call to handle | stored value |
diff --git a/ruby/ql/test/query-tests/security/cwe-079/app/views/foo/stores/show.html.erb b/ruby/ql/test/query-tests/security/cwe-079/app/views/foo/stores/show.html.erb
index 90b70199767..837e5bccc3d 100644
--- a/ruby/ql/test/query-tests/security/cwe-079/app/views/foo/stores/show.html.erb
+++ b/ruby/ql/test/query-tests/security/cwe-079/app/views/foo/stores/show.html.erb
@@ -81,3 +81,8 @@
 
 <%# BAD: Indirect to a database value without escaping %>
 <%= @other_user_raw_name.html_safe %>
+
+<%# BAD: Kernel.sprintf is a taint-step %>
+<%=
+  sprintf("%s", @user.handle).html_safe
+%>

From f09e3bd3ac593ccd21654d2271374b3728f3ab77 Mon Sep 17 00:00:00 2001
From: erik-krogh <erik-krogh@github.com>
Date: Mon, 17 Oct 2022 13:51:36 +0200
Subject: [PATCH 0008/1420] add String#% as a printf like call

---
 .../ruby/frameworks/StringFormatters.qll      | 28 +++++++++++++++++--
 .../cwe-134/TaintedFormatString.expected      | 12 ++++++++
 .../security/cwe-134/tainted_format_string.rb |  6 ++++
 3 files changed, 43 insertions(+), 3 deletions(-)

diff --git a/ruby/ql/lib/codeql/ruby/frameworks/StringFormatters.qll b/ruby/ql/lib/codeql/ruby/frameworks/StringFormatters.qll
index b7c3fb0d21c..b11fba8301f 100644
--- a/ruby/ql/lib/codeql/ruby/frameworks/StringFormatters.qll
+++ b/ruby/ql/lib/codeql/ruby/frameworks/StringFormatters.qll
@@ -2,7 +2,7 @@
  * Provides classes for modeling string formatting libraries.
  */
 
-private import codeql.ruby.ast.Call
+private import codeql.ruby.AST as Ast
 private import codeql.ruby.DataFlow
 private import codeql.ruby.ApiGraphs
 private import codeql.ruby.frameworks.core.IO
@@ -33,7 +33,7 @@ class KernelPrintfCall extends PrintfStyleCall {
   KernelPrintfCall() {
     this = API::getTopLevelMember("Kernel").getAMethodCall("printf")
     or
-    this.asExpr().getExpr() instanceof UnknownMethodCall and
+    this.asExpr().getExpr() instanceof Ast::UnknownMethodCall and
     this.getMethodName() = "printf"
   }
 
@@ -60,7 +60,7 @@ class KernelSprintfCall extends PrintfStyleCall {
   KernelSprintfCall() {
     this = API::getTopLevelMember("Kernel").getAMethodCall("sprintf")
     or
-    this.asExpr().getExpr() instanceof UnknownMethodCall and
+    this.asExpr().getExpr() instanceof Ast::UnknownMethodCall and
     this.getMethodName() = "sprintf"
   }
 
@@ -78,6 +78,28 @@ class IOPrintfCall extends PrintfStyleCall {
   override predicate returnsFormatted() { none() }
 }
 
+/**
+ * A call to `String#%`.
+ */
+class StringPercentCall extends PrintfStyleCall {
+  StringPercentCall() { this.getMethodName() = "%" }
+
+  override DataFlow::Node getFormatString() { result = this.getReceiver() }
+
+  override DataFlow::Node getFormatArgument(int n) {
+    exists(DataFlow::CallNode arrCall |
+      arrCall = this.getArgument(0) and arrCall.getMethodName() = "[]"
+    |
+      n = -2 and // -2 is indicates that the index does not make sense in this context
+      result = arrCall.getKeywordArgument(_)
+      or
+      result = arrCall.getArgument(n)
+    )
+  }
+
+  override predicate returnsFormatted() { any() }
+}
+
 private import codeql.ruby.dataflow.FlowSteps
 private import codeql.ruby.CFG
 
diff --git a/ruby/ql/test/query-tests/security/cwe-134/TaintedFormatString.expected b/ruby/ql/test/query-tests/security/cwe-134/TaintedFormatString.expected
index 4404c74a8d5..09ac79c910c 100644
--- a/ruby/ql/test/query-tests/security/cwe-134/TaintedFormatString.expected
+++ b/ruby/ql/test/query-tests/security/cwe-134/TaintedFormatString.expected
@@ -12,6 +12,10 @@ edges
 | tainted_format_string.rb:33:32:33:46 | ...[...] :  | tainted_format_string.rb:33:12:33:46 | ... + ... |
 | tainted_format_string.rb:36:30:36:35 | call to params :  | tainted_format_string.rb:36:30:36:44 | ...[...] :  |
 | tainted_format_string.rb:36:30:36:44 | ...[...] :  | tainted_format_string.rb:36:12:36:46 | "A log message: #{...}" |
+| tainted_format_string.rb:39:22:39:27 | call to params :  | tainted_format_string.rb:39:22:39:36 | ...[...] :  |
+| tainted_format_string.rb:39:22:39:36 | ...[...] :  | tainted_format_string.rb:39:5:39:45 | "A log message #{...} %{foo}" |
+| tainted_format_string.rb:42:22:42:27 | call to params :  | tainted_format_string.rb:42:22:42:36 | ...[...] :  |
+| tainted_format_string.rb:42:22:42:36 | ...[...] :  | tainted_format_string.rb:42:5:42:43 | "A log message #{...} %08x" |
 nodes
 | tainted_format_string.rb:4:12:4:17 | call to params :  | semmle.label | call to params :  |
 | tainted_format_string.rb:4:12:4:26 | ...[...] | semmle.label | ...[...] |
@@ -37,6 +41,12 @@ nodes
 | tainted_format_string.rb:36:12:36:46 | "A log message: #{...}" | semmle.label | "A log message: #{...}" |
 | tainted_format_string.rb:36:30:36:35 | call to params :  | semmle.label | call to params :  |
 | tainted_format_string.rb:36:30:36:44 | ...[...] :  | semmle.label | ...[...] :  |
+| tainted_format_string.rb:39:5:39:45 | "A log message #{...} %{foo}" | semmle.label | "A log message #{...} %{foo}" |
+| tainted_format_string.rb:39:22:39:27 | call to params :  | semmle.label | call to params :  |
+| tainted_format_string.rb:39:22:39:36 | ...[...] :  | semmle.label | ...[...] :  |
+| tainted_format_string.rb:42:5:42:43 | "A log message #{...} %08x" | semmle.label | "A log message #{...} %08x" |
+| tainted_format_string.rb:42:22:42:27 | call to params :  | semmle.label | call to params :  |
+| tainted_format_string.rb:42:22:42:36 | ...[...] :  | semmle.label | ...[...] :  |
 subpaths
 #select
 | tainted_format_string.rb:4:12:4:26 | ...[...] | tainted_format_string.rb:4:12:4:17 | call to params :  | tainted_format_string.rb:4:12:4:26 | ...[...] | Format string depends on a $@. | tainted_format_string.rb:4:12:4:17 | call to params | user-provided value |
@@ -50,3 +60,5 @@ subpaths
 | tainted_format_string.rb:28:19:28:33 | ...[...] | tainted_format_string.rb:28:19:28:24 | call to params :  | tainted_format_string.rb:28:19:28:33 | ...[...] | Format string depends on a $@. | tainted_format_string.rb:28:19:28:24 | call to params | user-provided value |
 | tainted_format_string.rb:33:12:33:46 | ... + ... | tainted_format_string.rb:33:32:33:37 | call to params :  | tainted_format_string.rb:33:12:33:46 | ... + ... | Format string depends on a $@. | tainted_format_string.rb:33:32:33:37 | call to params | user-provided value |
 | tainted_format_string.rb:36:12:36:46 | "A log message: #{...}" | tainted_format_string.rb:36:30:36:35 | call to params :  | tainted_format_string.rb:36:12:36:46 | "A log message: #{...}" | Format string depends on a $@. | tainted_format_string.rb:36:30:36:35 | call to params | user-provided value |
+| tainted_format_string.rb:39:5:39:45 | "A log message #{...} %{foo}" | tainted_format_string.rb:39:22:39:27 | call to params :  | tainted_format_string.rb:39:5:39:45 | "A log message #{...} %{foo}" | Format string depends on a $@. | tainted_format_string.rb:39:22:39:27 | call to params | user-provided value |
+| tainted_format_string.rb:42:5:42:43 | "A log message #{...} %08x" | tainted_format_string.rb:42:22:42:27 | call to params :  | tainted_format_string.rb:42:5:42:43 | "A log message #{...} %08x" | Format string depends on a $@. | tainted_format_string.rb:42:22:42:27 | call to params | user-provided value |
diff --git a/ruby/ql/test/query-tests/security/cwe-134/tainted_format_string.rb b/ruby/ql/test/query-tests/security/cwe-134/tainted_format_string.rb
index 364f0ea1afb..aa66a9aa470 100644
--- a/ruby/ql/test/query-tests/security/cwe-134/tainted_format_string.rb
+++ b/ruby/ql/test/query-tests/security/cwe-134/tainted_format_string.rb
@@ -34,5 +34,11 @@ class UsersController < ActionController::Base
 
     # Taint via string interpolation
     printf("A log message: #{params[:format]}", arg) # BAD
+
+    # Using String#
+    "A log message #{params[:format]} %{foo}" % {foo: "foo"} # BAD
+
+    # String# with an array
+    "A log message #{params[:format]} %08x" % ["foo"] # BAD
   end
 end
\ No newline at end of file

From bb4bc55c6aef1f026e3a6ca19a9477f23c576432 Mon Sep 17 00:00:00 2001
From: erik-krogh <erik-krogh@github.com>
Date: Mon, 17 Oct 2022 15:52:21 +0200
Subject: [PATCH 0009/1420] update expected output

---
 .../test/library-tests/dataflow/string-flow/string-flow.expected | 1 +
 1 file changed, 1 insertion(+)

diff --git a/ruby/ql/test/library-tests/dataflow/string-flow/string-flow.expected b/ruby/ql/test/library-tests/dataflow/string-flow/string-flow.expected
index 6cebf219cd6..122a1d8eb1f 100644
--- a/ruby/ql/test/library-tests/dataflow/string-flow/string-flow.expected
+++ b/ruby/ql/test/library-tests/dataflow/string-flow/string-flow.expected
@@ -12,6 +12,7 @@ edges
 | string_flow.rb:10:29:10:29 | b :  | string_flow.rb:10:10:10:30 | call to try_convert |
 | string_flow.rb:14:9:14:18 | call to source :  | string_flow.rb:15:10:15:17 | ... % ... |
 | string_flow.rb:14:9:14:18 | call to source :  | string_flow.rb:15:17:15:17 | a :  |
+| string_flow.rb:14:9:14:18 | call to source :  | string_flow.rb:16:10:16:29 | ... % ... |
 | string_flow.rb:14:9:14:18 | call to source :  | string_flow.rb:16:28:16:28 | a :  |
 | string_flow.rb:14:9:14:18 | call to source :  | string_flow.rb:17:10:17:10 | a :  |
 | string_flow.rb:14:9:14:18 | call to source :  | string_flow.rb:17:10:17:18 | ... % ... |

From 0051ba1596e6b745be0214896faf062eb38f9403 Mon Sep 17 00:00:00 2001
From: Taus <tausbn@github.com>
Date: Mon, 17 Oct 2022 13:10:56 +0000
Subject: [PATCH 0010/1420] Python: Add new module resolution implementation

A fairly complicated bit of modelling, mostly due to the quirks of
how imports are handled in Python.

A few notes:

- The handling of `__all__` is not actually needed (and perhaps not
  desirable, as it only pertains to `import *`, though it does match
  the current behaviour), but it might become useful at a later date,
  so I left it in.
- Ideally, we would represent `foo as bar` in an `import` as a
  `DefinitionNode` in the CFG. I opted _not_ to do this, as it would
  also affect points-to, and I did not want to deal with any fallout
  arising from that.
---
 .../new/internal/ImportResolution.qll         | 262 ++++++++++++++++++
 .../dataflow/new/internal/ImportStar.qll      |   2 +-
 2 files changed, 263 insertions(+), 1 deletion(-)

diff --git a/python/ql/lib/semmle/python/dataflow/new/internal/ImportResolution.qll b/python/ql/lib/semmle/python/dataflow/new/internal/ImportResolution.qll
index 0c346fa2dd4..906460d76c1 100644
--- a/python/ql/lib/semmle/python/dataflow/new/internal/ImportResolution.qll
+++ b/python/ql/lib/semmle/python/dataflow/new/internal/ImportResolution.qll
@@ -1,14 +1,72 @@
+/**
+ * INTERNAL. DO NOT USE.
+ *
+ * Provides predicates for resolving imports.
+ */
+
 private import python
 private import semmle.python.dataflow.new.DataFlow
 private import semmle.python.dataflow.new.internal.ImportStar
 private import semmle.python.dataflow.new.TypeTracker
 
+/**
+ * Python modules and the way imports are resolved are... complicated. Here's a crash course in how
+ * it works, as well as some caveats to bear in mind when looking at the implementation in this
+ * module.
+ *
+ * First, let's consider the humble `import` statement:
+ * ```python
+ * import foo
+ * import bar.baz
+ * import ham.eggs as spam
+ * ```
+ *
+ * In the AST, all imports are aliased, as in the last import above. That is, `import foo` becomes
+ * `import foo as foo`, and `import bar.baz` becomes `import bar as bar`. Note that `import` is
+ * exclusively used to import modules -- if `eggs` is an attribute of the `ham` module (and not a
+ * submodule of the `ham` package), then the third line above is an error.
+ *
+ * Next, we have the `from` statement. This one is a bit more complicated, but still has the same
+ * aliasing desugaring as above applied to it. Thus, `from foo import bar` becomes
+ * `from foo import bar as bar`.
+ *
+ * In general, `from foo import bar` can mean two different things:
+ *
+ * 1. If `foo` is a module, and `bar` is an attribute of `foo`, then `from foo import bar` imports
+ *    the attribute `bar` into the current module (binding it to the name `bar`).
+ * 2. If `foo` is a package, and `bar` is a submodule of `foo`, then `from foo import bar` first imports
+ *    `foo.bar`, and then attempts to locate the `bar` attribute again. In most cases, that attribute
+ *    will then point to the `bar` submodule.
+ *
+ * Now, when in comes to how these imports are represented in the AST, things get a bit complicated.
+ * First of all, both of the above forms of imports get mapped to the same kind of AST node:
+ * `Import`. An `Import` node has a sequence of names, each of which is an `Alias` node. This `Alias`
+ * node represents the `x as y` bit of each imported module.
+ *
+ * The same is true for `from` imports. So, how then do we distinguish between the two forms of
+ * imports? The distinguishing feature is the left hand side of the `as` node. If the left hand side
+ * is an `ImportExpr`, then it is a plain import. If it is an `ImportMember`, then it is a `from`
+ * import. (And to confuse matters even more, this `ImportMember` contains another `ImportExpr` for
+ * the bit between the `from` and `import` keywords.)
+ *
+ * Caveats:
+ *
+ * - A relative import of the form `from .foo import bar as baz` not only imports `bar` and binds it
+ *   to the name `baz`, but also imports `foo` and binds it to the name `foo`. This only happens with
+ *   relative imports. `from foo import bar as baz` only binds `bar` to `baz`.
+ * - Modules may also be packages, so e.g. `import foo.bar` may import the `bar` submodule in the `foo`
+ *   package, or the `bar` subpackage of the `foo` package. The practical difference here is the name of
+ *   the module that is imported, as the package `foo.bar` will have the "name" `foo.bar.__init__`,
+ *   corresponding to the fact that the code that is executed is in the `__init__.py` file of the
+ *   `bar` package.
+ */
 module ImportResolution {
   /**
    * Holds if the module `m` defines a name `name` by assigning `defn` to it. This is an
    * overapproximation, as `name` may not in fact be exported (e.g. by defining an `__all__` that does
    * not include `name`).
    */
+  pragma[nomagic]
   predicate module_export(Module m, string name, DataFlow::CfgNode defn) {
     exists(EssaVariable v |
       v.getName() = name and
@@ -18,12 +76,216 @@ module ImportResolution {
       or
       defn.getNode() = v.getDefinition().(ArgumentRefinement).getArgument()
     )
+    or
+    exists(Alias a |
+      defn.asExpr() = [a.getValue(), a.getValue().(ImportMember).getModule()] and
+      a.getAsname().(Name).getId() = name and
+      defn.getScope() = m
+    )
+  }
+
+  /**
+   * Holds if the module `m` explicitly exports the name `name` by listing it in `__all__`. Only
+   * handles simple cases where we can statically tell that this is the case.
+   */
+  private predicate all_mentions_name(Module m, string name) {
+    exists(DefinitionNode def, SequenceNode n |
+      def.getValue() = n and
+      def.(NameNode).getId() = "__all__" and
+      def.getScope() = m and
+      any(StrConst s | s.getText() = name) = n.getAnElement().getNode()
+    )
+  }
+
+  /**
+   * Holds if the module `m` either does not set `__all__` (and so implicitly exports anything that
+   * doesn't start with an underscore), or sets `__all__` in a way that's too complicated for us to
+   * handle (in which case we _also_ pretend that it just exports all such names).
+   */
+  private predicate no_or_complicated_all(Module m) {
+    // No mention of `__all__` in the module
+    not exists(DefinitionNode def | def.getScope() = m and def.(NameNode).getId() = "__all__")
+    or
+    // `__all__` is set to a non-sequence value
+    exists(DefinitionNode def |
+      def.(NameNode).getId() = "__all__" and
+      def.getScope() = m and
+      not def.getValue() instanceof SequenceNode
+    )
+    or
+    // `__all__` is used in some way that doesn't involve storing a value in it. This usually means
+    // it is being mutated through `append` or `extend`, which we don't handle.
+    exists(NameNode n | n.getId() = "__all__" and n.getScope() = m and n.isLoad())
+  }
+
+  private predicate potential_module_export(Module m, string name) {
+    all_mentions_name(m, name)
+    or
+    no_or_complicated_all(m) and
+    (
+      exists(NameNode n | n.getId() = name and n.getScope() = m and name.charAt(0) != "_")
+      or
+      exists(Alias a | a.getAsname().(Name).getId() = name and a.getValue().getScope() = m)
+    )
+  }
+
+  /**
+   * Holds if the module `reexporter` exports the module `reexported` under the name
+   * `reexported_name`.
+   */
+  private predicate module_reexport(Module reexporter, string reexported_name, Module reexported) {
+    exists(DataFlow::Node ref |
+      ref = getImmediateModuleReference(reexported) and
+      module_export(reexporter, reexported_name, ref) and
+      potential_module_export(reexporter, reexported_name)
+    )
+  }
+
+  /**
+   * Gets a reference to `sys.modules`.
+   */
+  private DataFlow::Node sys_modules_reference() {
+    result =
+      any(DataFlow::AttrRef a |
+        a.getAttributeName() = "modules" and a.getObject().asExpr().(Name).getId() = "sys"
+      )
+  }
+
+  /** Gets a module that may have been added to `sys.modules`. */
+  private Module sys_modules_module_with_name(string name) {
+    exists(ControlFlowNode n, DataFlow::Node mod |
+      exists(SubscriptNode sub |
+        sub.getObject() = sys_modules_reference().asCfgNode() and
+        sub.getIndex() = n and
+        n.getNode().(StrConst).getText() = name and
+        sub.(DefinitionNode).getValue() = mod.asCfgNode() and
+        mod = getModuleReference(result)
+      )
+    )
   }
 
   Module getModule(DataFlow::CfgNode node) {
     exists(ModuleValue mv |
       node.getNode().pointsTo(mv) and
       result = mv.getScope()
+  Module getModuleImportedByImportStar(ImportStar i) {
+    isPreferredModuleForName(result.getFile(), i.getImportedModuleName())
+  }
+
+  /** Gets a data-flow node that may be a reference to a module with the name `module_name`. */
+  DataFlow::Node getReferenceToModuleName(string module_name) {
+    // Regular import statements, e.g.
+    // import foo    # implicitly `import foo as foo`
+    // import foo as foo_alias
+    exists(Import i, Alias a | a = i.getAName() |
+      result.asExpr() = a.getAsname() and
+      module_name = a.getValue().(ImportExpr).getImportedModuleName()
+    )
+    or
+    // The module part of a `from ... import ...` statement, e.g. the `..foo.bar` in
+    // from ..foo.bar import baz    # ..foo.bar might point to, say, package.subpackage.foo.bar
+    exists(ImportMember i | result.asExpr() = i.getModule() |
+      module_name = i.getModule().(ImportExpr).getImportedModuleName()
+    )
+    or
+    // Modules (not attributes) imported via `from ... import ... statements`, e.g.
+    // from foo.bar import baz    # imports foo.bar.baz as baz
+    // from foo.bar import baz as baz_alias    # imports foo.bar.baz as baz_alias
+    exists(Import i, Alias a, ImportMember im | a = i.getAName() and im = a.getValue() |
+      i.isFromImport() and
+      result.asExpr() = a.getAsname() and
+      module_name = im.getModule().(ImportExpr).getImportedModuleName() + "." + im.getName()
+    )
+    or
+    // For parity with the points-to based solution, the `ImportExpr` and `ImportMember` bits of the
+    // above cases should _also_ point to the right modules.
+    result.asExpr() = any(ImportExpr i | i.getImportedModuleName() = module_name)
+    or
+    result.asExpr() =
+      any(ImportMember i |
+        i.getModule().(ImportExpr).getImportedModuleName() = module_name
+        or
+        i.getModule().(ImportExpr).getImportedModuleName() + "." + i.getName() = module_name and
+        none()
+      )
+  }
+
+  /** Gets a dataflow node that is an immediate reference to the module `m`. */
+  DataFlow::Node getImmediateModuleReference(Module m) {
+    exists(string module_name | result = getReferenceToModuleName(module_name) |
+      // Depending on whether the referenced module is a package or not, we may need to add a
+      // trailing `.__init__` to the module name.
+      isPreferredModuleForName(m.getFile(), module_name + ["", ".__init__"])
+      or
+      // Module defined via `sys.modules`
+      m = sys_modules_module_with_name(module_name)
+    )
+    or
+    // Reading an attribute on a module may return a submodule (or subpackage).
+    exists(DataFlow::AttrRead ar, Module p, string attr_name |
+      ar.getObject() = getModuleReference(p) and
+      attr_name = any(Module m0).getFile().getStem() and
+      ar.getAttributeName() = attr_name and
+      result = ar
+    |
+      isPreferredModuleForName(m.getFile(), p.getPackageName() + "." + attr_name + ["", ".__init__"])
+      or
+      // This is also true for attributes that come from reexports.
+      module_reexport(p, attr_name, m)
+    )
+    or
+    // Submodules that are implicitly defined when importing via `from ... import ...` statements.
+    // In practice, we create a definition for each module in a package, even if it is not imported.
+    exists(string submodule, Module package |
+      SsaSource::init_module_submodule_defn(result.asVar().getSourceVariable(),
+        package.getEntryNode()) and
+      isPreferredModuleForName(m.getFile(),
+        package.getPackageName() + "." + submodule + ["", ".__init__"])
     )
   }
+
+  /** Join-order helper for `getModuleReference`. */
+  pragma[nomagic]
+  private predicate module_name_in_scope(DataFlow::Node node, Scope s, string name, Module m) {
+    node.getScope() = s and
+    node.asExpr().(Name).getId() = name and
+    pragma[only_bind_into](node) = getImmediateModuleReference(pragma[only_bind_into](m))
+  }
+
+  /** Join-order helper for `getModuleReference`. */
+  pragma[nomagic]
+  private predicate module_reference_in_scope(DataFlow::Node node, Scope s, string name) {
+    node.getScope() = s and
+    exists(Name n | n = node.asExpr() |
+      n.getId() = name and
+      pragma[only_bind_into](n).isUse()
+    )
+  }
+
+  /**
+   * Gets a reference to the module `m` (including through certain kinds of local and global flow).
+   */
+  DataFlow::Node getModuleReference(Module m) {
+    // Immedate references to the module
+    result = getImmediateModuleReference(m)
+    or
+    // Flow (local or global) forward to a later reference to the module.
+    exists(DataFlow::Node ref | ref = getModuleReference(m) |
+      DataFlow::localFlow(ref, result)
+      or
+      exists(DataFlow::ModuleVariableNode mv |
+        mv.getAWrite() = ref and
+        result = mv.getARead()
+      )
+    )
+    or
+    // A reference to a name that is bound to a module in an enclosing scope.
+    exists(DataFlow::Node def, Scope def_scope, Scope use_scope, string name |
+      module_name_in_scope(pragma[only_bind_into](def), pragma[only_bind_into](def_scope),
+        pragma[only_bind_into](name), pragma[only_bind_into](m)) and
+      module_reference_in_scope(result, use_scope, name) and
+      use_scope.getEnclosingScope*() = def_scope
+    )
+  }
+
 }
diff --git a/python/ql/lib/semmle/python/dataflow/new/internal/ImportStar.qll b/python/ql/lib/semmle/python/dataflow/new/internal/ImportStar.qll
index ae115342dba..564630c47db 100644
--- a/python/ql/lib/semmle/python/dataflow/new/internal/ImportStar.qll
+++ b/python/ql/lib/semmle/python/dataflow/new/internal/ImportStar.qll
@@ -76,7 +76,7 @@ module ImportStar {
     exists(ImportStar i, DataFlow::CfgNode imported_module |
       imported_module.getNode().getNode() = i.getModule() and
       i.getScope() = m and
-      result = ImportResolution::getModule(imported_module)
+      result = ImportResolution::getModuleImportedByImportStar(i)
     )
   }
 

From 651afaf11b9ee9798a09f670dba1f1b97008d124 Mon Sep 17 00:00:00 2001
From: Taus <tausbn@github.com>
Date: Mon, 17 Oct 2022 13:15:07 +0000
Subject: [PATCH 0011/1420] Python: Hook up new implementation

Left as its own commit, as otherwise the diff would have been very
confusing.
---
 .../semmle/python/dataflow/new/internal/ImportResolution.qll | 5 +----
 1 file changed, 1 insertion(+), 4 deletions(-)

diff --git a/python/ql/lib/semmle/python/dataflow/new/internal/ImportResolution.qll b/python/ql/lib/semmle/python/dataflow/new/internal/ImportResolution.qll
index 906460d76c1..e1e4381519c 100644
--- a/python/ql/lib/semmle/python/dataflow/new/internal/ImportResolution.qll
+++ b/python/ql/lib/semmle/python/dataflow/new/internal/ImportResolution.qll
@@ -164,10 +164,6 @@ module ImportResolution {
     )
   }
 
-  Module getModule(DataFlow::CfgNode node) {
-    exists(ModuleValue mv |
-      node.getNode().pointsTo(mv) and
-      result = mv.getScope()
   Module getModuleImportedByImportStar(ImportStar i) {
     isPreferredModuleForName(result.getFile(), i.getImportedModuleName())
   }
@@ -288,4 +284,5 @@ module ImportResolution {
     )
   }
 
+  Module getModule(DataFlow::CfgNode node) { node = getModuleReference(result) }
 }

From ad13fbaeb6b98d169dcfeac6ff5d95230a5b541d Mon Sep 17 00:00:00 2001
From: Taus <tausbn@github.com>
Date: Mon, 17 Oct 2022 13:42:24 +0000
Subject: [PATCH 0012/1420] Python: Add tests

A slightly complicated test setup. I wanted to both make sure I captured
the semantics of Python and also the fact that the kinds of global flow
we expect to see are indeed present.

The code is executable, and prints out both when the execution reaches
certain files, and also what values are assigned to the various
attributes that are referenced throughout the program. These values are
validated in the test as well.

My original version used introspection to avoid referencing attributes
directly (thus enabling better error diagnostics), but unfortunately
that made it so that the model couldn't follow what was going on.

The current setup is a bit clunky (and Python's scoping rules makes it
especially so -- cf. the explicit calls to `globals` and `locals`), but
I think it does the job okay.
---
 .../experimental/import-resolution/bar.py     |  6 ++
 .../experimental/import-resolution/foo.py     | 14 ++++
 .../import-resolution/importflow.expected     |  0
 .../import-resolution/importflow.ql           | 41 ++++++++++++
 .../import-resolution/imports.expected        |  0
 .../experimental/import-resolution/imports.ql | 49 ++++++++++++++
 .../experimental/import-resolution/main.py    | 65 +++++++++++++++++++
 .../namespace_package/namespace_module.py     |  6 ++
 .../import-resolution/package/__init__.py     |  7 ++
 .../package/subpackage/__init__.py            | 14 ++++
 .../package/subpackage/submodule.py           |  7 ++
 .../experimental/import-resolution/trace.py   | 49 ++++++++++++++
 12 files changed, 258 insertions(+)
 create mode 100644 python/ql/test/experimental/import-resolution/bar.py
 create mode 100644 python/ql/test/experimental/import-resolution/foo.py
 create mode 100644 python/ql/test/experimental/import-resolution/importflow.expected
 create mode 100644 python/ql/test/experimental/import-resolution/importflow.ql
 create mode 100644 python/ql/test/experimental/import-resolution/imports.expected
 create mode 100644 python/ql/test/experimental/import-resolution/imports.ql
 create mode 100644 python/ql/test/experimental/import-resolution/main.py
 create mode 100644 python/ql/test/experimental/import-resolution/namespace_package/namespace_module.py
 create mode 100644 python/ql/test/experimental/import-resolution/package/__init__.py
 create mode 100644 python/ql/test/experimental/import-resolution/package/subpackage/__init__.py
 create mode 100644 python/ql/test/experimental/import-resolution/package/subpackage/submodule.py
 create mode 100644 python/ql/test/experimental/import-resolution/trace.py

diff --git a/python/ql/test/experimental/import-resolution/bar.py b/python/ql/test/experimental/import-resolution/bar.py
new file mode 100644
index 00000000000..5cb6339be17
--- /dev/null
+++ b/python/ql/test/experimental/import-resolution/bar.py
@@ -0,0 +1,6 @@
+from trace import *
+enter(__file__)
+
+bar_attr = "bar_attr"
+
+exit(__file__)
diff --git a/python/ql/test/experimental/import-resolution/foo.py b/python/ql/test/experimental/import-resolution/foo.py
new file mode 100644
index 00000000000..d112007ad03
--- /dev/null
+++ b/python/ql/test/experimental/import-resolution/foo.py
@@ -0,0 +1,14 @@
+from trace import *
+enter(__file__)
+
+# A simple attribute. Used in main.py
+foo_attr = "foo_attr"
+
+# A private attribute. Accessible from main.py despite this.
+__private_foo_attr = "__private_foo_attr"
+
+# A reexport of bar under a new name. Used in main.py
+import bar as bar_reexported #$ imports=bar as=bar_reexported
+check("bar_reexported.bar_attr", bar_reexported.bar_attr, "bar_attr", globals()) #$ prints=bar_attr
+
+exit(__file__)
diff --git a/python/ql/test/experimental/import-resolution/importflow.expected b/python/ql/test/experimental/import-resolution/importflow.expected
new file mode 100644
index 00000000000..e69de29bb2d
diff --git a/python/ql/test/experimental/import-resolution/importflow.ql b/python/ql/test/experimental/import-resolution/importflow.ql
new file mode 100644
index 00000000000..0e7d300d328
--- /dev/null
+++ b/python/ql/test/experimental/import-resolution/importflow.ql
@@ -0,0 +1,41 @@
+import python
+import semmle.python.dataflow.new.DataFlow
+import semmle.python.ApiGraphs
+import TestUtilities.InlineExpectationsTest
+
+private class SourceString extends DataFlow::Node {
+  string contents;
+
+  SourceString() {
+    this.asExpr().(StrConst).getText() = contents and
+    this.asExpr().getParent() instanceof Assign
+  }
+
+  string getContents() { result = contents }
+}
+
+private class ImportConfiguration extends DataFlow::Configuration {
+  ImportConfiguration() { this = "ImportConfiguration" }
+
+  override predicate isSource(DataFlow::Node source) { source instanceof SourceString }
+
+  override predicate isSink(DataFlow::Node sink) {
+    sink = API::moduleImport("trace").getMember("check").getACall().getArg(1)
+  }
+}
+
+class ResolutionTest extends InlineExpectationsTest {
+  ResolutionTest() { this = "ResolutionTest" }
+
+  override string getARelevantTag() { result = "import" }
+
+  override predicate hasActualResult(Location location, string element, string tag, string value) {
+    exists(DataFlow::PathNode source, DataFlow::PathNode sink, ImportConfiguration config |
+      config.hasFlowPath(source, sink) and
+      tag = "prints" and
+      location = sink.getNode().getLocation() and
+      value = source.getNode().(SourceString).getContents() and
+      element = sink.getNode().toString()
+    )
+  }
+}
diff --git a/python/ql/test/experimental/import-resolution/imports.expected b/python/ql/test/experimental/import-resolution/imports.expected
new file mode 100644
index 00000000000..e69de29bb2d
diff --git a/python/ql/test/experimental/import-resolution/imports.ql b/python/ql/test/experimental/import-resolution/imports.ql
new file mode 100644
index 00000000000..e5d357c5ef4
--- /dev/null
+++ b/python/ql/test/experimental/import-resolution/imports.ql
@@ -0,0 +1,49 @@
+import python
+import TestUtilities.InlineExpectationsTest
+import semmle.python.dataflow.new.DataFlow
+import semmle.python.dataflow.new.internal.ImportResolution
+
+private class ImmediateModuleRef extends DataFlow::Node {
+  Module mod;
+  string alias;
+
+  ImmediateModuleRef() {
+    this = ImportResolution::getImmediateModuleReference(mod) and
+    not mod.getName() in ["__future__", "trace"] and
+    this.asExpr() = any(Alias a | alias = a.getAsname().(Name).getId()).getAsname()
+  }
+
+  Module getModule() { result = mod }
+
+  string getAsname() { result = alias }
+}
+
+class ImportTest extends InlineExpectationsTest {
+  ImportTest() { this = "ImportTest" }
+
+  override string getARelevantTag() { result = "imports" }
+
+  override predicate hasActualResult(Location location, string element, string tag, string value) {
+    exists(ImmediateModuleRef ref |
+      tag = "imports" and
+      location = ref.getLocation() and
+      value = ref.getModule().getName() and
+      element = ref.toString()
+    )
+  }
+}
+
+class AliasTest extends InlineExpectationsTest {
+  AliasTest() { this = "AliasTest" }
+
+  override string getARelevantTag() { result = "as" }
+
+  override predicate hasActualResult(Location location, string element, string tag, string value) {
+    exists(ImmediateModuleRef ref |
+      tag = "as" and
+      location = ref.getLocation() and
+      value = ref.getAsname() and
+      element = ref.toString()
+    )
+  }
+}
diff --git a/python/ql/test/experimental/import-resolution/main.py b/python/ql/test/experimental/import-resolution/main.py
new file mode 100644
index 00000000000..827bb78896b
--- /dev/null
+++ b/python/ql/test/experimental/import-resolution/main.py
@@ -0,0 +1,65 @@
+#! /usr/bin/env python3
+
+from __future__ import print_function
+import sys
+from trace import *
+enter(__file__)
+
+# A simple import. Binds foo to the foo module
+import foo #$ imports=foo as=foo
+check("foo.foo_attr", foo.foo_attr, "foo_attr", globals()) #$ prints=foo_attr
+
+# Private attributes are still accessible.
+check("foo.__private_foo_attr", foo.__private_foo_attr, "__private_foo_attr", globals()) #$ prints=__private_foo_attr
+
+# An aliased import, binding foo to foo_alias
+import foo as foo_alias #$ imports=foo as=foo_alias
+check("foo_alias.foo_attr", foo_alias.foo_attr, "foo_attr", globals()) #$ prints=foo_attr
+
+# A reference to a reexported module
+check("foo.bar_reexported.bar_attr", foo.bar_reexported.bar_attr, "bar_attr", globals()) #$ prints=bar_attr
+
+# A simple "import from" statement.
+from bar import bar_attr
+check("bar_attr", bar_attr, "bar_attr", globals()) #$ prints=bar_attr
+
+# Importing an attribute from a subpackage of a package.
+from package.subpackage import subpackage_attr
+check("subpackage_attr", subpackage_attr, "subpackage_attr", globals()) #$ prints=subpackage_attr
+
+# Importing a package attribute under an alias.
+from package import package_attr as package_attr_alias
+check("package_attr_alias", package_attr_alias,  "package_attr", globals()) #$ prints=package_attr
+
+# Importing a subpackage under an alias.
+from package import subpackage as aliased_subpackage #$ imports=package.subpackage.__init__ as=aliased_subpackage
+check("aliased_subpackage.subpackage_attr", aliased_subpackage.subpackage_attr, "subpackage_attr", globals()) #$ prints=subpackage_attr
+
+def local_import():
+    # Same as above, but in a local scope.
+    import package.subpackage as local_subpackage #$ imports=package.subpackage.__init__ as=local_subpackage
+    check("local_subpackage.subpackage_attr", local_subpackage.subpackage_attr, "subpackage_attr", locals()) #$ prints=subpackage_attr
+
+local_import()
+
+# Importing a subpacking using `import` and binding it to a name.
+import package.subpackage as aliased_subpackage #$ imports=package.subpackage.__init__ as=aliased_subpackage
+check("aliased_subpackage.subpackage_attr", aliased_subpackage.subpackage_attr, "subpackage_attr", globals()) #$ prints=subpackage_attr
+
+# Importing without binding instead binds the top level name.
+import package.subpackage #$ imports=package.__init__ as=package
+check("package.package_attr", package.package_attr, "package_attr", globals()) #$ prints=package_attr
+
+if sys.version_info[0] >= 3:
+    # Importing from a namespace module.
+    from namespace_package.namespace_module import namespace_module_attr
+    check("namespace_module_attr", namespace_module_attr, "namespace_module_attr", globals()) #$ prints=namespace_module_attr
+
+exit(__file__)
+
+print()
+
+if status() == 0:
+    print("PASS")
+else:
+    print("FAIL")
diff --git a/python/ql/test/experimental/import-resolution/namespace_package/namespace_module.py b/python/ql/test/experimental/import-resolution/namespace_package/namespace_module.py
new file mode 100644
index 00000000000..2c831662f47
--- /dev/null
+++ b/python/ql/test/experimental/import-resolution/namespace_package/namespace_module.py
@@ -0,0 +1,6 @@
+from trace import *
+enter(__file__)
+
+namespace_module_attr = "namespace_module_attr"
+
+exit(__file__)
diff --git a/python/ql/test/experimental/import-resolution/package/__init__.py b/python/ql/test/experimental/import-resolution/package/__init__.py
new file mode 100644
index 00000000000..ee2e3211a2c
--- /dev/null
+++ b/python/ql/test/experimental/import-resolution/package/__init__.py
@@ -0,0 +1,7 @@
+from trace import *
+enter(__file__)
+
+attr_used_in_subpackage = "attr_used_in_subpackage"
+package_attr = "package_attr"
+
+exit(__file__)
diff --git a/python/ql/test/experimental/import-resolution/package/subpackage/__init__.py b/python/ql/test/experimental/import-resolution/package/subpackage/__init__.py
new file mode 100644
index 00000000000..86cc92dd37b
--- /dev/null
+++ b/python/ql/test/experimental/import-resolution/package/subpackage/__init__.py
@@ -0,0 +1,14 @@
+from trace import *
+enter(__file__)
+
+subpackage_attr = "subpackage_attr"
+
+# Importing an attribute from the parent package.
+from .. import attr_used_in_subpackage as imported_attr
+check("imported_attr", imported_attr,  "attr_used_in_subpackage", globals()) #$ prints=attr_used_in_subpackage
+
+# Importing an irrelevant attribute from a sibling module binds the name to the module.
+from .submodule import irrelevant_attr
+check("submodule.submodule_attr", submodule.submodule_attr, "submodule_attr", globals()) #$ prints=submodule_attr
+
+exit(__file__)
diff --git a/python/ql/test/experimental/import-resolution/package/subpackage/submodule.py b/python/ql/test/experimental/import-resolution/package/subpackage/submodule.py
new file mode 100644
index 00000000000..89f9dd497a4
--- /dev/null
+++ b/python/ql/test/experimental/import-resolution/package/subpackage/submodule.py
@@ -0,0 +1,7 @@
+from trace import *
+enter(__file__)
+
+submodule_attr = "submodule_attr"
+irrelevant_attr = "irrelevant_attr"
+
+exit(__file__)
diff --git a/python/ql/test/experimental/import-resolution/trace.py b/python/ql/test/experimental/import-resolution/trace.py
new file mode 100644
index 00000000000..04e847304e9
--- /dev/null
+++ b/python/ql/test/experimental/import-resolution/trace.py
@@ -0,0 +1,49 @@
+from __future__ import print_function
+
+_indent_level = 0
+
+_print = print
+
+def print(*args, **kwargs):
+    _print("  " * _indent_level, end="")
+    _print(*args, **kwargs)
+
+def enter(file_name):
+    global _indent_level
+    print("Entering {}".format(file_name))
+    _indent_level += 1
+
+def exit(file_name):
+    global _indent_level
+    _indent_level -= 1
+    print("Leaving {}".format(file_name))
+
+_status = 0
+
+def status():
+    return _status
+
+def check(attr_path, actual_value, expected_value, bindings):
+    parts = attr_path.split(".")
+    base, parts = parts[0], parts[1:]
+    if base not in bindings:
+        print("Error: {} not in bindings".format(base))
+        _status = 1
+        return
+    val = bindings[base]
+    for part in parts:
+        if not hasattr(val, part):
+            print("Error: Unknown attribute {}".format(part))
+            _status = 1
+            return
+        val = getattr(val, part)
+    if val != actual_value:
+        print("Error: Value at path {} and actual value are out of sync! {} != {}".format(attr_path, val, actual_value))
+        _status = 1
+    if val != expected_value:
+        print("Error: Expected {} to be {}, got {}".format(attr_path, expected_value, val))
+        _status = 1
+        return
+    print("OK: {} = {}".format(attr_path, val))
+
+__all__ = ["enter", "exit", "check", "status"]

From 58754982cefc5d4b7c2b4082d233a81d06f35066 Mon Sep 17 00:00:00 2001
From: Taus <tausbn@github.com>
Date: Mon, 17 Oct 2022 14:34:10 +0000
Subject: [PATCH 0013/1420] Python: Update type tracking tests

No longer missing! :tada:
---
 .../experimental/dataflow/typetracking_imports/pkg/use.py | 8 ++++----
 1 file changed, 4 insertions(+), 4 deletions(-)

diff --git a/python/ql/test/experimental/dataflow/typetracking_imports/pkg/use.py b/python/ql/test/experimental/dataflow/typetracking_imports/pkg/use.py
index 023af8684f2..a23ddc54b2d 100644
--- a/python/ql/test/experimental/dataflow/typetracking_imports/pkg/use.py
+++ b/python/ql/test/experimental/dataflow/typetracking_imports/pkg/use.py
@@ -6,8 +6,8 @@ test_direct_import()
 
 
 def test_alias_problem():
-    from .alias_problem import foo # $ MISSING: tracked
-    print(foo) # $ MISSING: tracked
+    from .alias_problem import foo # $ tracked
+    print(foo) # $ tracked
 
 test_alias_problem()
 
@@ -34,8 +34,8 @@ test_alias_only_direct()
 
 
 def test_problem_absolute_import():
-    from pkg.problem_absolute_import import foo # $ MISSING: tracked
-    print(foo) # $ MISSING: tracked
+    from pkg.problem_absolute_import import foo # $ tracked
+    print(foo) # $ tracked
 
 test_problem_absolute_import()
 

From 6ab62da015ff8cc69e67ddcdda2df5ba0d32a75d Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Alvaro=20Mu=C3=B1oz?= <pwntester@Alvaros-MacBook-Pro.local>
Date: Mon, 3 Oct 2022 15:50:57 +0200
Subject: [PATCH 0014/1420] Add Restify/Spife support

---
 ...-restify-framework-support-improvements.md |   5 +
 .../2022-10-13-spife-framework-support.md     |   5 +
 .../javascript/frameworks/HttpFrameworks.qll  |   1 +
 .../semmle/javascript/frameworks/Restify.qll  | 376 +++++++++++++--
 .../semmle/javascript/frameworks/Spife.qll    | 440 ++++++++++++++++++
 .../heuristics/AdditionalRouteHandlers.qll    |  16 +
 .../HTTP/RemoteRequestInput.expected          |   1 -
 .../frameworks/NodeJSLib/tests.expected       |   2 +
 .../frameworks/Restify2/src/index.js          | 207 ++++++++
 .../frameworks/Restify2/tests.expected        | 105 +++++
 .../frameworks/Restify2/tests.ql              | 194 ++++++++
 .../frameworks/Spife/lib/routes/index.js      |  17 +
 .../frameworks/Spife/lib/routes/parameters.js |   0
 .../frameworks/Spife/lib/settings.js          |  46 ++
 .../frameworks/Spife/lib/views/index.js       | 115 +++++
 .../frameworks/Spife/tests.expected           |  75 +++
 .../library-tests/frameworks/Spife/tests.ql   | 194 ++++++++
 .../frameworks/restify/tests.expected         |  12 +
 18 files changed, 1775 insertions(+), 36 deletions(-)
 create mode 100644 javascript/ql/lib/change-notes/2022-10-13-restify-framework-support-improvements.md
 create mode 100644 javascript/ql/lib/change-notes/2022-10-13-spife-framework-support.md
 create mode 100644 javascript/ql/lib/semmle/javascript/frameworks/Spife.qll
 create mode 100644 javascript/ql/test/library-tests/frameworks/Restify2/src/index.js
 create mode 100644 javascript/ql/test/library-tests/frameworks/Restify2/tests.expected
 create mode 100644 javascript/ql/test/library-tests/frameworks/Restify2/tests.ql
 create mode 100644 javascript/ql/test/library-tests/frameworks/Spife/lib/routes/index.js
 create mode 100644 javascript/ql/test/library-tests/frameworks/Spife/lib/routes/parameters.js
 create mode 100644 javascript/ql/test/library-tests/frameworks/Spife/lib/settings.js
 create mode 100644 javascript/ql/test/library-tests/frameworks/Spife/lib/views/index.js
 create mode 100644 javascript/ql/test/library-tests/frameworks/Spife/tests.expected
 create mode 100644 javascript/ql/test/library-tests/frameworks/Spife/tests.ql

diff --git a/javascript/ql/lib/change-notes/2022-10-13-restify-framework-support-improvements.md b/javascript/ql/lib/change-notes/2022-10-13-restify-framework-support-improvements.md
new file mode 100644
index 00000000000..99e19b51757
--- /dev/null
+++ b/javascript/ql/lib/change-notes/2022-10-13-restify-framework-support-improvements.md
@@ -0,0 +1,5 @@
+---
+category: feature
+---
+
+- Improved support for [Restify](http://restify.com/) framework, leading to more results when scanning applications developed with this framework.
diff --git a/javascript/ql/lib/change-notes/2022-10-13-spife-framework-support.md b/javascript/ql/lib/change-notes/2022-10-13-spife-framework-support.md
new file mode 100644
index 00000000000..52606d44502
--- /dev/null
+++ b/javascript/ql/lib/change-notes/2022-10-13-spife-framework-support.md
@@ -0,0 +1,5 @@
+---
+category: feature
+---
+
+- Added support for the [Spife](https://github.com/npm/spife) framework.
diff --git a/javascript/ql/lib/semmle/javascript/frameworks/HttpFrameworks.qll b/javascript/ql/lib/semmle/javascript/frameworks/HttpFrameworks.qll
index 7568280dcc4..8e91230d3b2 100644
--- a/javascript/ql/lib/semmle/javascript/frameworks/HttpFrameworks.qll
+++ b/javascript/ql/lib/semmle/javascript/frameworks/HttpFrameworks.qll
@@ -7,3 +7,4 @@ import semmle.javascript.frameworks.Micro
 import semmle.javascript.frameworks.Restify
 import semmle.javascript.frameworks.Connect
 import semmle.javascript.frameworks.Fastify
+import semmle.javascript.frameworks.Spife
diff --git a/javascript/ql/lib/semmle/javascript/frameworks/Restify.qll b/javascript/ql/lib/semmle/javascript/frameworks/Restify.qll
index 889369c6ea4..fb80beb4832 100644
--- a/javascript/ql/lib/semmle/javascript/frameworks/Restify.qll
+++ b/javascript/ql/lib/semmle/javascript/frameworks/Restify.qll
@@ -4,7 +4,11 @@
 
 import javascript
 import semmle.javascript.frameworks.HTTP
+import semmle.javascript.security.dataflow.RequestForgeryCustomizations as RFC
 
+/**
+ * Provides classes for working with [Restify](https://restify.com/) servers.
+ */
 module Restify {
   /**
    * An expression that creates a new Restify server.
@@ -19,23 +23,23 @@ module Restify {
   /**
    * A Restify route handler.
    */
-  class RouteHandler extends Http::Servers::StandardRouteHandler, DataFlow::ValueNode {
-    Function function;
-
-    RouteHandler() {
-      function = astNode and
-      any(RouteSetup setup).getARouteHandler() = this
-    }
-
+  abstract class RouteHandler extends Http::Servers::StandardRouteHandler, DataFlow::FunctionNode {
     /**
      * Gets the parameter of the route handler that contains the request object.
      */
-    Parameter getRequestParameter() { result = function.getParameter(0) }
+    DataFlow::ParameterNode getRequestParameter() { result = this.getParameter(0) }
 
     /**
      * Gets the parameter of the route handler that contains the response object.
      */
-    Parameter getResponseParameter() { result = function.getParameter(1) }
+    DataFlow::ParameterNode getResponseParameter() { result = this.getParameter(1) }
+  }
+
+  /**
+   * A standard Restify route handler.
+   */
+  class StandardRouteHandler extends RouteHandler, DataFlow::FunctionNode {
+    StandardRouteHandler() { any(RouteSetup setup).getARouteHandler() = this }
   }
 
   /**
@@ -45,7 +49,7 @@ module Restify {
   private class ResponseSource extends Http::Servers::ResponseSource {
     RouteHandler rh;
 
-    ResponseSource() { this = DataFlow::parameterNode(rh.getResponseParameter()) }
+    ResponseSource() { this = rh.getResponseParameter() }
 
     /**
      * Gets the route handler that provides this response.
@@ -60,7 +64,7 @@ module Restify {
   private class RequestSource extends Http::Servers::RequestSource {
     RouteHandler rh;
 
-    RequestSource() { this = DataFlow::parameterNode(rh.getRequestParameter()) }
+    RequestSource() { this = rh.getRequestParameter() }
 
     /**
      * Gets the route handler that handles this request.
@@ -80,7 +84,7 @@ module Restify {
    * A Node.js HTTP response provided by Restify.
    */
   class ResponseNode extends NodeJSLib::ResponseNode {
-    ResponseNode() { src instanceof ResponseSource }
+    ResponseNode() { src instanceof ResponseSource or src instanceof FormatterResponseSource }
   }
 
   /**
@@ -95,14 +99,14 @@ module Restify {
    * A Node.js HTTP request provided by Restify.
    */
   class RequestNode extends NodeJSLib::RequestNode {
-    RequestNode() { src instanceof RequestSource }
+    RequestNode() { src instanceof RequestSource or src instanceof FormatterRequestSource }
   }
 
   /**
    * An access to a user-controlled Restify request input.
    */
   private class RequestInputAccess extends Http::RequestInputAccess {
-    RequestNode request;
+    Http::RequestNode request;
     string kind;
 
     RequestInputAccess() {
@@ -113,23 +117,17 @@ module Restify {
         this.(DataFlow::PropRead).accesses(query, _)
       )
       or
-      exists(string methodName |
-        // `request.href()` or `request.getPath()`
-        kind = "url" and
-        this.(DataFlow::MethodCallNode).calls(request, methodName)
-      |
-        methodName = "href" or
-        methodName = "getPath"
+      exists(DataFlow::PropRead prop |
+        // `request.params.<name>`
+        // `request.query.<name>`
+        kind = "parameter" and
+        prop.accesses(request, ["params", "query"]) and
+        this.(DataFlow::PropRead).accesses(prop, _)
       )
       or
-      // `request.getContentType()`, `request.userAgent()`, `request.trailer(...)`, `request.header(...)`
-      kind = "header" and
-      this.(DataFlow::MethodCallNode)
-          .calls(request, ["getContentType", "userAgent", "trailer", "header"])
-      or
-      // `req.cookies
-      kind = "cookie" and
-      this.(DataFlow::PropRead).accesses(request, "cookies")
+      // `request.href()` or `request.getPath()`
+      kind = "url" and
+      this.(DataFlow::MethodCallNode).calls(request, ["href", "getPath"])
     }
 
     override RouteHandler getRouteHandler() { result = request.getRouteHandler() }
@@ -137,12 +135,35 @@ module Restify {
     override string getKind() { result = kind }
   }
 
+  /**
+   * An access to a header on a Restify request.
+   */
+  private class RequestHeaderAccess extends Http::RequestHeaderAccess {
+    RouteHandler rh;
+
+    RequestHeaderAccess() {
+      // `request.getContentType()`, `request.userAgent()`, `request.trailer(...)`, `request.header(...)`
+      this =
+        rh.getARequestSource()
+            .ref()
+            .getAMethodCall(["header", "trailer", "userAgent", "getContentType"])
+    }
+
+    override string getAHeaderName() {
+      result = this.(DataFlow::MethodCallNode).getArgument(0).getStringValue().toLowerCase()
+    }
+
+    override RouteHandler getRouteHandler() { result = rh }
+
+    override string getKind() { result = "header" }
+  }
+
   /**
    * An HTTP header defined in a Restify server.
    */
   private class HeaderDefinition extends Http::Servers::StandardHeaderDefinition {
     HeaderDefinition() {
-      // response.header('Cache-Control', 'no-cache')
+      // res.header('Cache-Control', 'no-cache')
       this.getReceiver() instanceof ResponseNode and
       this.getMethodName() = "header"
     }
@@ -150,6 +171,41 @@ module Restify {
     override RouteHandler getRouteHandler() { this.getReceiver() = result.getAResponseNode() }
   }
 
+  /**
+   * An invocation that sets any number of headers of the HTTP response.
+   */
+  private class MultipleHeaderDefinitions extends Http::ExplicitHeaderDefinition,
+    DataFlow::MethodCallNode {
+    MultipleHeaderDefinitions() {
+      // res.set({'Cache-Control': 'no-cache'})
+      this.getReceiver() instanceof ResponseNode and
+      this.getMethodName() = "set"
+    }
+
+    /**
+     * Gets a reference to the multiple headers object that is to be set.
+     */
+    private DataFlow::SourceNode getAHeaderSource() {
+      this.getArgument(0).getALocalSource() instanceof DataFlow::ObjectLiteralNode and
+      result.flowsTo(this.getArgument(0))
+    }
+
+    override predicate definesHeaderValue(string headerName, DataFlow::Node headerValue) {
+      exists(string header |
+        this.getAHeaderSource().hasPropertyWrite(header, headerValue) and
+        headerName = header.toLowerCase()
+      )
+    }
+
+    override DataFlow::Node getNameNode() {
+      exists(DataFlow::PropWrite write | this.getAHeaderSource().getAPropertyWrite() = write |
+        result = write.getPropertyNameExpr().flow()
+      )
+    }
+
+    override RouteHandler getRouteHandler() { this.getReceiver() = result.getAResponseNode() }
+  }
+
   /**
    * A call to a Restify method that sets up a route.
    */
@@ -157,13 +213,263 @@ module Restify {
     ServerDefinition server;
 
     RouteSetup() {
-      // server.get('/', fun)
-      // server.head('/', fun)
-      server.ref().getAMethodCall(any(Http::RequestMethodName m).toLowerCase()) = this
+      server
+          .ref()
+          .getAMethodCall([
+              "del", "get", "head", "opts", "post", "put", "patch", "param", "pre", "use", "on"
+            ]) = this
     }
 
-    override DataFlow::SourceNode getARouteHandler() { result.flowsTo(this.getArgument(1)) }
+    override DataFlow::SourceNode getARouteHandler() {
+      exists(DataFlow::Node arg |
+        // server.get('/', fun)
+        // server.get('/', fun1, fun2)
+        // server.get('/', [fun1, fun2])
+        // server.param('name', fun)
+        // server.on('event', fun)
+        this.getMethodName() = ["del", "get", "head", "opts", "post", "put", "patch", "param", "on"] and
+        arg = this.getAnArgument() and
+        not arg = this.getArgument(0)
+        or
+        // server.use(fun)
+        // server.use(fun1, fun2)
+        // server.use([fun1, fun2])
+        this.getMethodName() = ["use", "pre"] and
+        arg = this.getAnArgument()
+      |
+        (
+          // server.use(fun1, fun2)
+          result.flowsTo(arg) and
+          not arg.getALocalSource() instanceof DataFlow::ArrayCreationNode
+          or
+          result.flowsTo(arg.getALocalSource().(DataFlow::ArrayCreationNode).getAnElement())
+        )
+      )
+    }
 
     override DataFlow::Node getServer() { result = server }
   }
+
+  /**
+   * A call to a Restify's createServer method that sets up a formatter.
+   */
+  class FormatterSetup extends DataFlow::CallNode {
+    DataFlow::ObjectLiteralNode formatters;
+
+    FormatterSetup() {
+      // `server = restify.createServer({ formatters: { ... } })`
+      this = DataFlow::moduleMember("restify", "createServer").getACall() and
+      this.getArgument(0)
+          .getALocalSource()
+          .(DataFlow::ObjectLiteralNode)
+          .hasPropertyWrite("formatters", formatters)
+    }
+
+    DataFlow::SourceNode getAFormatterHandler() { formatters.hasPropertyWrite(_, result) }
+  }
+
+  /**
+   * A Restify route handler.
+   */
+  class FormatterHandler extends Http::Servers::StandardRouteHandler, DataFlow::FunctionNode {
+    Function function;
+
+    FormatterHandler() {
+      function = astNode and
+      any(FormatterSetup setup).getAFormatterHandler() = this
+    }
+
+    /**
+     * Gets the parameter of the formatter handler that contains the request object.
+     */
+    Parameter getRequestParameter() { result = function.getParameter(0) }
+
+    /**
+     * Gets the parameter of the formatter handler that contains the response object.
+     */
+    Parameter getResponseParameter() { result = function.getParameter(1) }
+
+    /**
+     * Gets the parameter of the formatter handler that contains the body object.
+     */
+    Parameter getBodyParameter() { result = function.getParameter(2) }
+  }
+
+  /**
+   * A Restify request source, that is, the request parameter of a
+   * route handler.
+   */
+  private class FormatterRequestSource extends Http::Servers::RequestSource {
+    FormatterHandler fh;
+
+    FormatterRequestSource() { this = DataFlow::parameterNode(fh.getRequestParameter()) }
+
+    /**
+     * Gets the formatter handler that handles this request.
+     */
+    override RouteHandler getRouteHandler() { result = fh }
+  }
+
+  /**
+   * A Restify response source, that is, the response parameter of a
+   * route handler.
+   */
+  private class FormatterResponseSource extends Http::Servers::ResponseSource {
+    FormatterHandler fh;
+
+    FormatterResponseSource() { this = DataFlow::parameterNode(fh.getResponseParameter()) }
+
+    /**
+     * Gets the route handler that provides this response.
+     */
+    override RouteHandler getRouteHandler() { result = fh }
+  }
+
+  /**
+   * An argument passed to the `send` method of an HTTP response object.
+   */
+  private class ResponseSendArgument extends Http::ResponseSendArgument {
+    RouteHandler rh;
+
+    ResponseSendArgument() {
+      this = rh.getAResponseSource().ref().getAMethodCall(["send", "sendRaw"]).getArgument(0)
+    }
+
+    override RouteHandler getRouteHandler() { result = rh }
+  }
+
+  /**
+   * An expression returned by a formatter
+   */
+  private class FormatterOutput extends Http::ResponseSendArgument {
+    FormatterHandler fh;
+
+    FormatterOutput() { this = fh.getAReturn() }
+
+    override Http::RouteHandler getRouteHandler() { result = fh }
+  }
+
+  /**
+   * An invocation of the `redirect` method of an HTTP response object.
+   */
+  private class RedirectInvocation extends Http::RedirectInvocation, DataFlow::MethodCallNode {
+    RouteHandler rh;
+
+    RedirectInvocation() { this = rh.getAResponseSource().ref().getAMethodCall("redirect") }
+
+    override DataFlow::Node getUrlArgument() {
+      this.getNumArgument() = 3 and
+      result = this.getArgument(1)
+      or
+      this.getNumArgument() = 2 and
+      this.getArgument(0)
+          .getALocalSource()
+          .(DataFlow::ObjectLiteralNode)
+          .hasPropertyWrite("hostname", result)
+      or
+      this.getNumArgument() = 2 and
+      result = this.getArgument(0)
+    }
+
+    override RouteHandler getRouteHandler() { result = rh }
+  }
+
+  /**
+   * A function that looks like a Restify route handler.
+   *
+   * For example, this could be the function `function(req, res, next){...}`.
+   */
+  class RouteHandlerCandidate extends Http::RouteHandlerCandidate {
+    RouteHandlerCandidate() {
+      // heuristic: parameter names match the Restify documentation
+      astNode.getNumParameter() = [2, 3] and
+      astNode.getParameter(0).getName() = ["request", "req"] and
+      astNode.getParameter(1).getName() = ["response", "res"] and
+      not astNode.getParameter(2).getName() != "next" and
+      // heuristic: is not invoked (Restify invokes this at a call site we cannot reason precisely about)
+      not exists(DataFlow::InvokeNode cs | cs.getACallee() = astNode)
+    }
+  }
+
+  /**
+   * The URL of a REstify client, viewed as a sink for request forgery.
+   */
+  class RequestForgerySink extends RFC::RequestForgery::Sink {
+    RequestForgerySink() {
+      exists(DataFlow::Node arg |
+        DataFlow::moduleMember("restify-clients",
+          ["createClient", "createJsonClient", "createStringClient"]).getACall().getArgument(0) =
+          arg and
+        (
+          arg.getALocalSource().(DataFlow::ObjectLiteralNode).hasPropertyWrite("url", this)
+          or
+          not arg.getALocalSource() instanceof DataFlow::ObjectLiteralNode and
+          this = arg
+        )
+      )
+    }
+
+    override DataFlow::Node getARequest() {
+      // returning the createClient argument itself since there is no request associated to the client yet.
+      // `getARequest()` is only used for display purposes
+      result = this
+    }
+
+    override string getKind() { result = "host" }
+  }
+
+  /**
+   * A header produced by a formatter
+   */
+  private class FormatterContentTypeHeader extends Http::ImplicitHeaderDefinition,
+    DataFlow::FunctionNode instanceof FormatterHandler {
+    string contentType;
+
+    FormatterContentTypeHeader() {
+      exists(DataFlow::PropWrite write |
+        write.getRhs() = this and
+        write.getPropertyName() = contentType
+      )
+    }
+
+    override predicate defines(string headerName, string headerValue) {
+      headerName = "content-type" and headerValue = contentType
+    }
+
+    override Http::RouteHandler getRouteHandler() { result = this }
+  }
+
+  /**
+   * A header produced by a route handler with no explicit declaration of a Content-Type.
+   */
+  private class ContentTypeRouteHandlerHeader extends Http::ImplicitHeaderDefinition,
+    DataFlow::FunctionNode {
+    ContentTypeRouteHandlerHeader() { this instanceof RouteHandler }
+
+    override predicate defines(string headerName, string headerValue) {
+      headerName = "content-type" and headerValue = "application/json"
+    }
+
+    override Http::RouteHandler getRouteHandler() { result = this }
+  }
+
+  /** A Restify router */
+  private class RouterRange extends Routing::Router::Range {
+    ServerDefinition def;
+
+    RouterRange() { this = def }
+
+    override DataFlow::SourceNode getAReference() { result = def.ref() }
+  }
+
+  private class RoutingTreeSetup extends Routing::RouteSetup::MethodCall {
+    RoutingTreeSetup() { this instanceof RouteSetup }
+
+    override string getRelativePath() {
+      not this.getMethodName() = ["use", "pre", "param", "on"] and // do not treat parameter name as a path
+      result = this.getArgument(0).getStringValue()
+    }
+
+    override Http::RequestMethodName getHttpMethod() { result.toLowerCase() = this.getMethodName() }
+  }
 }
diff --git a/javascript/ql/lib/semmle/javascript/frameworks/Spife.qll b/javascript/ql/lib/semmle/javascript/frameworks/Spife.qll
new file mode 100644
index 00000000000..35d168a3e10
--- /dev/null
+++ b/javascript/ql/lib/semmle/javascript/frameworks/Spife.qll
@@ -0,0 +1,440 @@
+/**
+ * Provides classes for working with [Spife](https://github.com/npm/spife) applications.
+ */
+
+import javascript
+import semmle.javascript.frameworks.HTTP
+
+/**
+ * Provides classes for working with [Spife](https://github.com/npm/spife) applications.
+ */
+module Spife {
+  /**
+   * An API graph entry point ensuring all tagged template exprs are part of the API graph
+   */
+  private class TaggedTemplateEntryPoint extends API::EntryPoint {
+    TaggedTemplateEntryPoint() { this = "TaggedTemplateEntryPoint" }
+
+    override DataFlow::SourceNode getASource() { result.asExpr() instanceof TaggedTemplateExpr }
+  }
+
+  /**
+   * A call to a Spife method that sets up a route.
+   */
+  private class RouteSetup extends API::CallNode, Http::Servers::StandardRouteSetup {
+    TaggedTemplateExpr template;
+
+    RouteSetup() {
+      exists(CallExpr templateCall |
+        this.getCalleeNode().asExpr() = template and
+        API::moduleImport(["@npm/spife/routing", "spife/routing"])
+            .asSource()
+            .flowsToExpr(template.getTag()) and
+        templateCall.getAChild() = template
+      )
+    }
+
+    private string getRoutePattern() {
+      // Concatenate the constant parts of the expression
+      result =
+        concat(Expr e, int i |
+          e = template.getTemplate().getElement(i) and exists(e.getStringValue())
+        |
+          e.getStringValue() order by i
+        )
+    }
+
+    private string getARouteLine() {
+      result = this.getRoutePattern().splitAt("\n").regexpReplaceAll(" +", " ").trim()
+    }
+
+    private predicate hasLine(string method, string path, string handlerName) {
+      exists(string line | line = this.getARouteLine() |
+        line.splitAt(" ", 0) = method and
+        line.splitAt(" ", 1) = path and
+        line.splitAt(" ", 2) = handlerName
+      )
+    }
+
+    API::Node getHandlerByName(string name) { result = this.getParameter(0).getMember(name) }
+
+    API::Node getHandlerByRoute(string method, string path) {
+      exists(string handlerName |
+        this.hasLine(method, path, handlerName) and
+        result = this.getHandlerByName(handlerName)
+      )
+    }
+
+    override DataFlow::SourceNode getARouteHandler() {
+      result = this.getHandlerByRoute(_, _).getAValueReachingSink().(DataFlow::FunctionNode)
+      or
+      exists(DataFlow::MethodCallNode validation |
+        validation = this.getHandlerByRoute(_, _).getAValueReachingSink() and
+        result = validation.getArgument(1).getAFunctionValue()
+      )
+    }
+
+    override DataFlow::Node getServer() { none() }
+  }
+
+  /**
+   * A Spife route handler.
+   */
+  abstract class RouteHandler extends Http::Servers::StandardRouteHandler, DataFlow::FunctionNode {
+    /**
+     * Gets the parameter of the route handler that contains the request object.
+     */
+    DataFlow::ParameterNode getRequestParameter() { result = this.getParameter(0) }
+
+    /**
+     * Gets the parameter of the route handler that contains the context object.
+     */
+    DataFlow::ParameterNode getContextParameter() { result = this.getParameter(1) }
+  }
+
+  /**
+   * A standard Spife route handler.
+   */
+  private class StandardRouteHandler extends RouteHandler, DataFlow::FunctionNode {
+    StandardRouteHandler() { any(RouteSetup setup).getARouteHandler() = this }
+  }
+
+  /**
+   * A function that looks like a Spife route handler.
+   *
+   * For example, this could be the function `function(req, res, next){...}`.
+   */
+  class RouteHandlerCandidate extends Http::RouteHandlerCandidate {
+    RouteHandlerCandidate() {
+      // heuristic: parameter names match the Restify documentation
+      astNode.getNumParameter() = 2 and
+      astNode.getParameter(0).getName() = ["request", "req"] and
+      astNode.getParameter(1).getName() = ["context", "ctx"]
+    }
+  }
+
+  /**
+   * A Spife request source, that is, the request parameter of a
+   * route handler.
+   */
+  private class RequestSource extends Http::Servers::RequestSource {
+    RouteHandler rh;
+
+    RequestSource() { this = rh.getRequestParameter() }
+
+    /**
+     * Gets the route handler that handles this request.
+     */
+    override RouteHandler getRouteHandler() { result = rh }
+  }
+
+  /**
+   * A Spife context source, that is, the context the parameter of a
+   * route handler.
+   */
+  private class ContextSource extends Http::Servers::RequestSource {
+    RouteHandler rh;
+
+    ContextSource() { this = rh.getContextParameter() }
+
+    /**
+     * Gets the route handler that handles this request.
+     */
+    override RouteHandler getRouteHandler() { result = rh }
+  }
+
+  /**
+   * An access to a user-controlled Spife request input.
+   */
+  private class RequestInputAccess extends Http::RequestInputAccess {
+    RouteHandler rh;
+    string kind;
+
+    RequestInputAccess() {
+      this = rh.getARequestSource().ref().getAPropertyRead("body") and
+      kind = "body"
+      or
+      this = rh.getARequestSource().ref().getAPropertyRead("query").getAPropertyRead() and
+      kind = "parameter"
+      or
+      this = rh.getARequestSource().ref().getAPropertyRead("raw") and
+      kind = "raw"
+      or
+      this = rh.getARequestSource().ref().getAPropertyRead(["url", "urlObject"]) and
+      kind = "url"
+      or
+      this = rh.getARequestSource().ref().getAMethodCall() and
+      this.(DataFlow::MethodCallNode).getMethodName() = ["cookie", "cookies"] and
+      kind = "cookie"
+      or
+      exists(DataFlow::PropRead validated, DataFlow::MethodCallNode get |
+        rh.getARequestSource().ref().getAPropertyRead() = validated and
+        validated.getPropertyName().matches("validated%") and
+        get.getReceiver() = validated and
+        this = get and
+        kind = "body"
+      )
+    }
+
+    override RouteHandler getRouteHandler() { result = rh }
+
+    override string getKind() { result = kind }
+  }
+
+  /**
+   * An access to a user-controlled Spife context input.
+   */
+  private class ContextInputAccess extends Http::RequestInputAccess {
+    ContextSource request;
+    string kind;
+
+    ContextInputAccess() {
+      request.ref().flowsTo(this.(DataFlow::MethodCallNode).getReceiver()) and
+      this.(DataFlow::MethodCallNode).getMethodName() = "get" and
+      kind = "path"
+    }
+
+    override RouteHandler getRouteHandler() { result = request.getRouteHandler() }
+
+    override string getKind() { result = kind }
+  }
+
+  /**
+   * An access to a header on a Spife request.
+   */
+  private class RequestHeaderAccess extends Http::RequestHeaderAccess {
+    RouteHandler rh;
+
+    RequestHeaderAccess() {
+      this =
+        rh.getARequestSource().ref().getAPropertyRead(["headers", "rawHeaders"]).getAPropertyRead()
+    }
+
+    override string getAHeaderName() {
+      result = this.(DataFlow::PropRead).getPropertyName().toLowerCase()
+    }
+
+    override RouteHandler getRouteHandler() { result = rh }
+
+    override string getKind() { result = "header" }
+  }
+
+  /**
+   * A Spife response source, that is, the response variable used by a
+   * route handler.
+   */
+  private class ReplySource extends Http::Servers::ResponseSource {
+    ReplySource() {
+      // const reply = require("@npm/spife/reply")
+      // reply(resp)
+      // reply.header(resp, 'foo', 'bar')
+      this = API::moduleImport(["@npm/spife/reply", "spife/reply"]).getACall() or
+      this = API::moduleImport(["@npm/spife/reply", "spife/reply"]).getAMember().getACall()
+    }
+
+    private DataFlow::SourceNode reachesHandlerReturn(
+      DataFlow::CallNode headerCall, DataFlow::TypeTracker t
+    ) {
+      result = headerCall and
+      t.start()
+      or
+      exists(DataFlow::TypeTracker t2 |
+        result = this.reachesHandlerReturn(headerCall, t2).track(t2, t)
+      )
+    }
+
+    /**
+     * Gets the route handler that provides this response.
+     */
+    override RouteHandler getRouteHandler() {
+      exists(RouteHandler handler |
+        handler.(DataFlow::FunctionNode).getAReturn().getALocalSource() =
+          this.reachesHandlerReturn(this, DataFlow::TypeTracker::end()) and
+        result = handler
+      )
+    }
+  }
+
+  /**
+   * An HTTP header defined in a Spife response.
+   */
+  private class HeaderDefinition extends Http::ExplicitHeaderDefinition, DataFlow::MethodCallNode {
+    ReplySource reply;
+
+    HeaderDefinition() {
+      // reply.header(RESPONSE, 'Cache-Control', 'no-cache')
+      reply.ref().(DataFlow::MethodCallNode).getMethodName() = "header" and
+      reply.ref().(DataFlow::MethodCallNode).getNumArgument() = 3 and
+      this = reply
+    }
+
+    override predicate definesHeaderValue(string headerName, DataFlow::Node headerValue) {
+      // reply.header(RESPONSE, 'Cache-Control', 'no-cache')
+      headerName = this.getNameNode().getStringValue() and
+      headerValue = this.getArgument(2)
+    }
+
+    override DataFlow::Node getNameNode() { result = this.getArgument(1) }
+
+    override RouteHandler getRouteHandler() { result = reply.getRouteHandler() }
+  }
+
+  /**
+   * An invocation that sets any number of headers of the HTTP response.
+   */
+  private class MultipleHeaderDefinitions extends Http::ExplicitHeaderDefinition, DataFlow::CallNode {
+    ReplySource reply;
+
+    MultipleHeaderDefinitions() {
+      // reply.header(RESPONSE, {'Cache-Control': 'no-cache'})
+      // reply(RESPONSE, {'Cache-Control': 'no-cache'})
+      reply.ref().(DataFlow::CallNode).getCalleeName() = ["header", "reply"] and
+      reply.ref().(DataFlow::CallNode).getAnArgument().getALocalSource() instanceof
+        DataFlow::ObjectLiteralNode and
+      this = reply
+    }
+
+    /**
+     * Gets a reference to the multiple headers object that is to be set.
+     */
+    private DataFlow::SourceNode getAHeaderSource() {
+      exists(int i |
+        this.getArgument(i).getALocalSource() instanceof DataFlow::ObjectLiteralNode and
+        result.flowsTo(this.getArgument(i))
+      )
+    }
+
+    override predicate definesHeaderValue(string headerName, DataFlow::Node headerValue) {
+      exists(string header |
+        this.getAHeaderSource().hasPropertyWrite(header, headerValue) and
+        headerName = header.toLowerCase()
+      )
+    }
+
+    override DataFlow::Node getNameNode() {
+      exists(DataFlow::PropWrite write | this.getAHeaderSource().getAPropertyWrite() = write |
+        result = write.getPropertyNameExpr().flow()
+      )
+    }
+
+    override RouteHandler getRouteHandler() { result = reply.getRouteHandler() }
+  }
+
+  /**
+   * A header produced by a route handler with no explicit declaration of a Content-Type.
+   */
+  private class ContentTypeRouteHandlerHeader extends Http::ImplicitHeaderDefinition,
+    DataFlow::FunctionNode {
+    ContentTypeRouteHandlerHeader() { this instanceof RouteHandler }
+
+    override predicate defines(string headerName, string headerValue) {
+      headerName = "content-type" and headerValue = "application/json"
+    }
+
+    override Http::RouteHandler getRouteHandler() { result = this }
+  }
+
+  /**
+   * An HTTP cookie defined in a Spife HTTP response.
+   */
+  private class CookieDefinition extends Http::CookieDefinition, DataFlow::MethodCallNode {
+    ReplySource reply;
+
+    CookieDefinition() {
+      // reply.cookie(RESPONSE, 'TEST', 'FOO', {"maxAge": 1000, "httpOnly": true, "secure": true})
+      this = reply.ref().(DataFlow::MethodCallNode) and
+      this.getMethodName() = "cookie"
+    }
+
+    override DataFlow::Node getNameArgument() { result = this.getArgument(1) }
+
+    override DataFlow::Node getValueArgument() { result = this.getArgument(2) }
+
+    override RouteHandler getRouteHandler() { result = reply.getRouteHandler() }
+  }
+
+  /**
+   * A response argument passed to the `reply` method.
+   */
+  private class ReplyArgument extends Http::ResponseSendArgument, DataFlow::Node {
+    RouteHandler rh;
+
+    ReplyArgument() {
+      exists(ReplySource reply |
+        reply.ref().(DataFlow::CallNode).getCalleeName() =
+          ["reply", "cookie", "link", "header", "headers", "raw", "status", "toStream", "vary"] and
+        this = reply.ref().(DataFlow::CallNode).getArgument(0) and
+        rh = reply.getRouteHandler()
+      )
+      or
+      this = rh.(DataFlow::FunctionNode).getAReturn()
+    }
+
+    override RouteHandler getRouteHandler() { result = rh }
+  }
+
+  /**
+   * An expression passed to the `template` method of the reply object
+   * as the value of a template variable.
+   */
+  private class TemplateInput extends Http::ResponseBody {
+    TemplateObjectInput obj;
+
+    TemplateInput() {
+      obj.getALocalSource().(DataFlow::ObjectLiteralNode).hasPropertyWrite(_, this)
+    }
+
+    override RouteHandler getRouteHandler() { result = obj.getRouteHandler() }
+  }
+
+  /**
+   * An object passed to the `template` method of the reply object.
+   */
+  private class TemplateObjectInput extends DataFlow::Node {
+    ReplySource reply;
+
+    TemplateObjectInput() {
+      reply.ref().(DataFlow::MethodCallNode).getMethodName() = "template" and
+      this = reply.ref().(DataFlow::MethodCallNode).getArgument(1)
+    }
+
+    /**
+     * Gets the route handler that uses this object.
+     */
+    RouteHandler getRouteHandler() { result = reply.getRouteHandler() }
+  }
+
+  /**
+   * An invocation of the `redirect` method of an HTTP response object.
+   */
+  private class RedirectInvocation extends Http::RedirectInvocation, DataFlow::MethodCallNode {
+    ReplySource reply;
+
+    RedirectInvocation() {
+      this = reply.ref().(DataFlow::MethodCallNode) and
+      this.getMethodName() = "redirect"
+    }
+
+    override DataFlow::Node getUrlArgument() { result = this.getAnArgument() }
+
+    override RouteHandler getRouteHandler() { result = reply.getRouteHandler() }
+  }
+
+  /**
+   * A call to `reply.template('template', { ... })`, seen as a template instantiation.
+   */
+  private class TemplateCall extends Templating::TemplateInstantiation::Range, DataFlow::CallNode {
+    TemplateCall() {
+      exists(ReplySource reply |
+        reply.ref().(DataFlow::MethodCallNode).getMethodName() = "template" and
+        this = reply.ref()
+      )
+    }
+
+    override DataFlow::SourceNode getOutput() { result = this }
+
+    override DataFlow::Node getTemplateFileNode() { result = this.getArgument(0) }
+
+    override DataFlow::Node getTemplateParamsNode() { result = this.getArgument(1) }
+  }
+}
diff --git a/javascript/ql/lib/semmle/javascript/heuristics/AdditionalRouteHandlers.qll b/javascript/ql/lib/semmle/javascript/heuristics/AdditionalRouteHandlers.qll
index 76a8aff557b..36467c8e966 100644
--- a/javascript/ql/lib/semmle/javascript/heuristics/AdditionalRouteHandlers.qll
+++ b/javascript/ql/lib/semmle/javascript/heuristics/AdditionalRouteHandlers.qll
@@ -45,3 +45,19 @@ private class PromotedConnectCandidate extends Connect::RouteHandler,
     result = ConnectExpressShared::getRouteHandlerParameter(this, kind)
   }
 }
+
+/**
+ * Add `Restify::RouteHandlerCandidate` to the extent of `Restify::RouteHandler`.
+ */
+private class PromotedRestifyCandidate extends Restify::RouteHandler,
+  Http::Servers::StandardRouteHandler {
+  PromotedRestifyCandidate() { this instanceof Restify::RouteHandlerCandidate }
+}
+
+/**
+ * Add `Spife::RouteHandlerCandidate` to the extent of `Spife::RouteHandler`.
+ */
+private class PromotedSpifeCandidate extends Spife::RouteHandler,
+  Http::Servers::StandardRouteHandler {
+  PromotedSpifeCandidate() { this instanceof Spife::RouteHandlerCandidate }
+}
diff --git a/javascript/ql/test/library-tests/frameworks/HTTP/RemoteRequestInput.expected b/javascript/ql/test/library-tests/frameworks/HTTP/RemoteRequestInput.expected
index c3bd4a86afe..e6c285607c4 100644
--- a/javascript/ql/test/library-tests/frameworks/HTTP/RemoteRequestInput.expected
+++ b/javascript/ql/test/library-tests/frameworks/HTTP/RemoteRequestInput.expected
@@ -35,4 +35,3 @@
 | restify.js:9:5:9:17 | req.trailer() | header |
 | restify.js:10:5:10:16 | req.header() | header |
 | restify.js:11:5:11:11 | req.url | url |
-| restify.js:12:5:12:15 | req.cookies | cookie |
diff --git a/javascript/ql/test/library-tests/frameworks/NodeJSLib/tests.expected b/javascript/ql/test/library-tests/frameworks/NodeJSLib/tests.expected
index 7d2d6abfddb..78c2c35309f 100644
--- a/javascript/ql/test/library-tests/frameworks/NodeJSLib/tests.expected
+++ b/javascript/ql/test/library-tests/frameworks/NodeJSLib/tests.expected
@@ -299,11 +299,13 @@ test_RemoteFlowSources
 | src/http.js:30:28:30:32 | chunk |
 | src/http.js:40:23:40:30 | authInfo |
 | src/http.js:45:23:45:27 | error |
+| src/http.js:63:17:63:33 | req.query.myParam |
 | src/http.js:73:18:73:22 | chunk |
 | src/http.js:82:18:82:22 | chunk |
 | src/https.js:6:26:6:32 | req.url |
 | src/https.js:8:3:8:20 | req.headers.cookie |
 | src/https.js:9:3:9:17 | req.headers.foo |
+| src/indirect2.js:10:12:10:25 | req.params.key |
 | src/indirect.js:17:28:17:34 | req.url |
 test_RouteHandler
 | createServer.js:2:20:2:41 | functio ... res) {} | createServer.js:2:1:2:42 | https.c ... es) {}) |
diff --git a/javascript/ql/test/library-tests/frameworks/Restify2/src/index.js b/javascript/ql/test/library-tests/frameworks/Restify2/src/index.js
new file mode 100644
index 00000000000..94c678c93b7
--- /dev/null
+++ b/javascript/ql/test/library-tests/frameworks/Restify2/src/index.js
@@ -0,0 +1,207 @@
+var restify = require('restify');
+const restifyPlugins = require('restify-plugins');
+var clients = require('restify-clients');
+
+const opts = {
+  formatters: {
+    'text/plain': function(req, res, body) { // test: formatter
+      if (body instanceof Error) {
+        return '<html><body>' + body.message + '</body></html>'; // test: stackTraceExposureSink
+      } else {
+        return '<html><body>' + body + req.params.name + '</body></html>'; // test: source, stackTraceExposureSink, !xssSink, !xss
+      }
+    }
+  }
+}
+const _server = restify.createServer(opts)
+
+const server = restify.createServer({
+  formatters: {
+    'text/html': function(req, res, body) { // test: formatter
+      if (body instanceof Error) {
+        return '<html><body>' + body.message + '</body></html>'; // test: stackTraceExposureSink, xssSink
+      } else {
+        return '<html><body>' + body + req.params.name + '</body></html>'; // test: source, stackTraceExposureSink, xssSink, xss
+      }
+    }
+  }
+});
+
+// The pre handler chain is executed before routing. That means these handlers will execute for an incoming request even if it’s for a route that you did not register.
+server.pre(restify.plugins.pre.dedupeSlashes());
+server.pre(function(req, res, next) { // test: handler
+  return next();
+});
+
+// The use handler chains is executed after a route has been chosen to service the request. 
+server.use(restifyPlugins.jsonBodyParser({ mapParams: true })); // TODO: prototype pollution?
+server.use(restifyPlugins.acceptParser(server.acceptable));
+server.use(restifyPlugins.queryParser({ mapParams: true })); // TODO: prototype pollution?
+server.use(restifyPlugins.fullResponse());
+server.use(function(req, res, next) { // test: handler
+  return next();
+});
+function filter(req, res, next) { // test: handler
+  return next();
+}
+function filter1(req, res, next) { // test: handler
+  return next();
+}
+function filter2(req, res, next) { // test: handler
+  return next();
+}
+function filter3(req, res, next) { // test: handler
+  return next();
+}
+function filter4(req, res, next) { // test: handler
+  return next();
+}
+function filter5(req, res, next) { // test: handler
+  return next();
+}
+function filter6(req, res, next) { // test: handler
+  return next();
+}
+const handlers = [filter5, filter6];
+server.use(filter); // test: setup
+server.use(filter1, filter2); // test: setup
+server.use([filter3, filter4]); // test: setup
+server.use(handlers); // setup
+
+function respond(req, res, next) { // test: handler
+  res.send('hello ' + req.params.name); // test: source, stackTraceExposureSink 
+  res.send('hello ' + req.params["name"]); // test: source, stackTraceExposureSink
+  res.send('hello ' + req.query.name); // test: source, stackTraceExposureSink
+  res.send('hello ' + req.params[0]); // test: source, stackTraceExposureSink
+
+  res.redirect({
+    hostname: req.params.name, // test: source, redirectSink
+    pathname: '/bar',
+    port: 80,
+    secure: true,
+    permanent: true,
+    query: {
+      a: 1
+    }
+  }, next);
+  res.redirect(301, req.params.name, next); // test: source, redirectSink
+  res.redirect(req.params.name, next); // test: source, redirectSink
+  next();
+}
+server.get('/hello/:name', respond); // test: setup
+server.head('/hello/:name', respond); // test: setup
+server.get('/', function(req, res, next) { // test: setup, handler
+  res.send('home')
+  return next();
+});
+
+server.get('/foo', // test: setup
+  function(req, res, next) { // test: handler
+    req.someData = req.params.name; // test: source
+    return next();
+  },
+  function(req, res, next) { // test: handler
+    res.header("Content-Type", "text/html");
+    res.send(req.someData); // test: stackTraceExposureSink, xssSink, xss
+    return next();
+  }
+);
+
+server.get('/foo2', // test: setup
+  [function(req, res, next) { // test: handler
+    req.someData = 'foo';
+    return next();
+  },
+  function(req, res, next) { // test: handler
+    res.send(req.someData); // test: stackTraceExposureSink
+    return next();
+  }]
+);
+
+function xss(req, res, next) { // test: handler
+  res.header("Content-Type", "text/html");
+  res.send('hello ' + req.query.name); // test: source, stackTraceExposureSink, xssSink, xss
+  next();
+}
+server["get"]('/xss', xss); // test: setup
+
+function xss2(req, res, next) { // test: handler
+  var body = req.params.name; // test: source
+  res.writeHead(200, {
+    'Content-Length': Buffer.byteLength(body),
+    'Content-Type': 'text/html'
+  });
+  res.write(body); // test: stackTraceExposureSink, xssSink, xss
+  res.end();
+  next();
+}
+["get", "head"].forEach(method => {
+  server[method]('/xss2', xss2);
+});
+
+function xss3(req, res, next) { // test: handler
+  res.header("Content-Type", "text/html");
+  res.send('hello ' + req.header("foo")); // test: source, stackTraceExposureSink, xssSink, !xss
+  next();
+}
+server["get"]('/xss3', xss3); // test: setup
+
+
+function sendV2(req, res, next) { // test: candidateHandler
+  res.set({
+    "Content-Type": "text/html",
+    "access-control-allow-origin": "*", // test: corsMiconfigurationSink
+    "access-control-allow-headers": "Content-Type, Authorization, Content-Length, X-Requested-With",
+    "access-control-allow-methods": "GET, POST, PUT, DELETE, OPTIONS",
+    "access-control-allow-credentials": "true"
+  })
+  res.send('hello ' + req.params.name); // test: source, stackTraceExposureSink, xssSink, xss
+  clients.createJsonClient({
+    url: req.params.uri, // test: source, ssrfSink
+  });
+  clients.createJsonClient(req.params.uri); // test: source, ssrfSink
+
+  next();
+}
+server.get('/hello2/:name', restify.plugins.conditionalHandler([ // test: setup
+  { version: ['2.0.0', '2.1.0', '2.2.0'], handler: sendV2 }
+]));
+
+server.get('/version/test', restify.plugins.conditionalHandler([ //test: setup
+  {
+    version: ['2.0.0', '2.1.0', '2.2.0'],
+    handler: function(req, res, next) {  // test: candidateHandler
+      res.send(200, {
+        requestedVersion: req.version(),
+        matchedVersion: req.matchedVersion()
+      });
+      return next();
+    }
+  }
+]));
+
+server.on('InternalServer', function(req, res, err, callback) { // test: setup, handler
+  return callback();
+});
+
+server.on('restifyError', function(req, res, err, callback) { // test: setup, handler
+  return callback();
+});
+server.on('after', function(req, res, route, error) { // test: setup, handler
+});
+server.on('pre', function(req, res) { // test: setup, handler
+});
+server.on('routed', function(req, res, route) { // test: setup, handler
+  res.header("Content-Type", "text/plain")
+  res.send(req.params.foo) // test: source, !xssSink, !xss
+});
+server.on('uncaughtException', function(req, res, route, err) { // test: setup, handler
+  res.header("Content-Type", "text/html")
+  res.send(req.params.foo) // test: source, xssSink, xss
+});
+
+
+server.listen(8080, function() {
+  console.log('%s listening at %s', server.name, server.url);
+});
+
diff --git a/javascript/ql/test/library-tests/frameworks/Restify2/tests.expected b/javascript/ql/test/library-tests/frameworks/Restify2/tests.expected
new file mode 100644
index 00000000000..1c9c7a2b45c
--- /dev/null
+++ b/javascript/ql/test/library-tests/frameworks/Restify2/tests.expected
@@ -0,0 +1,105 @@
+passingPositiveTests
+| PASSED | candidateHandler | src/index.js:150:35:150:59 | // test ... Handler |
+| PASSED | candidateHandler | src/index.js:173:42:173:66 | // test ... Handler |
+| PASSED | corsMiconfigurationSink | src/index.js:153:41:153:72 | // test ... ionSink |
+| PASSED | handler | src/index.js:32:39:32:54 | // test: handler |
+| PASSED | handler | src/index.js:41:39:41:54 | // test: handler |
+| PASSED | handler | src/index.js:44:35:44:50 | // test: handler |
+| PASSED | handler | src/index.js:47:36:47:51 | // test: handler |
+| PASSED | handler | src/index.js:50:36:50:51 | // test: handler |
+| PASSED | handler | src/index.js:53:36:53:51 | // test: handler |
+| PASSED | handler | src/index.js:56:36:56:51 | // test: handler |
+| PASSED | handler | src/index.js:59:36:59:51 | // test: handler |
+| PASSED | handler | src/index.js:62:36:62:51 | // test: handler |
+| PASSED | handler | src/index.js:71:36:71:51 | // test: handler |
+| PASSED | handler | src/index.js:93:44:93:66 | // test ... handler |
+| PASSED | handler | src/index.js:99:30:99:45 | // test: handler |
+| PASSED | handler | src/index.js:103:30:103:45 | // test: handler |
+| PASSED | handler | src/index.js:111:31:111:46 | // test: handler |
+| PASSED | handler | src/index.js:115:30:115:45 | // test: handler |
+| PASSED | handler | src/index.js:121:32:121:47 | // test: handler |
+| PASSED | handler | src/index.js:128:33:128:48 | // test: handler |
+| PASSED | handler | src/index.js:142:33:142:48 | // test: handler |
+| PASSED | handler | src/index.js:183:65:183:87 | // test ... handler |
+| PASSED | handler | src/index.js:187:63:187:85 | // test ... handler |
+| PASSED | handler | src/index.js:190:55:190:77 | // test ... handler |
+| PASSED | handler | src/index.js:192:39:192:61 | // test ... handler |
+| PASSED | handler | src/index.js:194:49:194:71 | // test ... handler |
+| PASSED | handler | src/index.js:198:65:198:87 | // test ... handler |
+| PASSED | redirectSink | src/index.js:78:32:78:60 | // test ... ectSink |
+| PASSED | redirectSink | src/index.js:87:45:87:73 | // test ... ectSink |
+| PASSED | redirectSink | src/index.js:88:40:88:68 | // test ... ectSink |
+| PASSED | setup | src/index.js:66:21:66:34 | // test: setup |
+| PASSED | setup | src/index.js:67:31:67:44 | // test: setup |
+| PASSED | setup | src/index.js:68:33:68:46 | // test: setup |
+| PASSED | setup | src/index.js:91:38:91:51 | // test: setup |
+| PASSED | setup | src/index.js:92:39:92:52 | // test: setup |
+| PASSED | setup | src/index.js:93:44:93:66 | // test ... handler |
+| PASSED | setup | src/index.js:98:20:98:33 | // test: setup |
+| PASSED | setup | src/index.js:110:21:110:34 | // test: setup |
+| PASSED | setup | src/index.js:126:29:126:42 | // test: setup |
+| PASSED | setup | src/index.js:147:31:147:44 | // test: setup |
+| PASSED | setup | src/index.js:166:66:166:79 | // test: setup |
+| PASSED | setup | src/index.js:170:66:170:78 | //test: setup |
+| PASSED | setup | src/index.js:183:65:183:87 | // test ... handler |
+| PASSED | setup | src/index.js:187:63:187:85 | // test ... handler |
+| PASSED | setup | src/index.js:190:55:190:77 | // test ... handler |
+| PASSED | setup | src/index.js:192:39:192:61 | // test ... handler |
+| PASSED | setup | src/index.js:194:49:194:71 | // test ... handler |
+| PASSED | setup | src/index.js:198:65:198:87 | // test ... handler |
+| PASSED | source | src/index.js:11:76:11:130 | // test ... k, !xss |
+| PASSED | source | src/index.js:24:76:24:128 | // test ... nk, xss |
+| PASSED | source | src/index.js:72:41:72:80 | // test ... reSink  |
+| PASSED | source | src/index.js:73:44:73:82 | // test ... ureSink |
+| PASSED | source | src/index.js:74:40:74:78 | // test ... ureSink |
+| PASSED | source | src/index.js:75:39:75:77 | // test ... ureSink |
+| PASSED | source | src/index.js:78:32:78:60 | // test ... ectSink |
+| PASSED | source | src/index.js:87:45:87:73 | // test ... ectSink |
+| PASSED | source | src/index.js:88:40:88:68 | // test ... ectSink |
+| PASSED | source | src/index.js:100:37:100:51 | // test: source |
+| PASSED | source | src/index.js:123:40:123:92 | // test ... nk, xss |
+| PASSED | source | src/index.js:129:31:129:45 | // test: source |
+| PASSED | source | src/index.js:144:43:144:96 | // test ... k, !xss |
+| PASSED | source | src/index.js:158:41:158:93 | // test ... nk, xss |
+| PASSED | source | src/index.js:160:26:160:50 | // test ... srfSink |
+| PASSED | source | src/index.js:162:45:162:69 | // test ... srfSink |
+| PASSED | source | src/index.js:196:28:196:58 | // test ... k, !xss |
+| PASSED | source | src/index.js:200:28:200:56 | // test ... nk, xss |
+| PASSED | ssrfSink | src/index.js:160:26:160:50 | // test ... srfSink |
+| PASSED | ssrfSink | src/index.js:162:45:162:69 | // test ... srfSink |
+| PASSED | stackTraceExposureSink | src/index.js:9:66:9:96 | // test ... ureSink |
+| PASSED | stackTraceExposureSink | src/index.js:11:76:11:130 | // test ... k, !xss |
+| PASSED | stackTraceExposureSink | src/index.js:22:66:22:105 | // test ... xssSink |
+| PASSED | stackTraceExposureSink | src/index.js:24:76:24:128 | // test ... nk, xss |
+| PASSED | stackTraceExposureSink | src/index.js:72:41:72:80 | // test ... reSink  |
+| PASSED | stackTraceExposureSink | src/index.js:73:44:73:82 | // test ... ureSink |
+| PASSED | stackTraceExposureSink | src/index.js:74:40:74:78 | // test ... ureSink |
+| PASSED | stackTraceExposureSink | src/index.js:75:39:75:77 | // test ... ureSink |
+| PASSED | stackTraceExposureSink | src/index.js:105:29:105:73 | // test ... nk, xss |
+| PASSED | stackTraceExposureSink | src/index.js:116:29:116:59 | // test ... ureSink |
+| PASSED | stackTraceExposureSink | src/index.js:123:40:123:92 | // test ... nk, xss |
+| PASSED | stackTraceExposureSink | src/index.js:134:20:134:64 | // test ... nk, xss |
+| PASSED | stackTraceExposureSink | src/index.js:144:43:144:96 | // test ... k, !xss |
+| PASSED | stackTraceExposureSink | src/index.js:158:41:158:93 | // test ... nk, xss |
+| PASSED | xss | src/index.js:24:76:24:128 | // test ... nk, xss |
+| PASSED | xss | src/index.js:105:29:105:73 | // test ... nk, xss |
+| PASSED | xss | src/index.js:123:40:123:92 | // test ... nk, xss |
+| PASSED | xss | src/index.js:134:20:134:64 | // test ... nk, xss |
+| PASSED | xss | src/index.js:158:41:158:93 | // test ... nk, xss |
+| PASSED | xss | src/index.js:200:28:200:56 | // test ... nk, xss |
+| PASSED | xssSink | src/index.js:22:66:22:105 | // test ... xssSink |
+| PASSED | xssSink | src/index.js:24:76:24:128 | // test ... nk, xss |
+| PASSED | xssSink | src/index.js:105:29:105:73 | // test ... nk, xss |
+| PASSED | xssSink | src/index.js:123:40:123:92 | // test ... nk, xss |
+| PASSED | xssSink | src/index.js:134:20:134:64 | // test ... nk, xss |
+| PASSED | xssSink | src/index.js:144:43:144:96 | // test ... k, !xss |
+| PASSED | xssSink | src/index.js:158:41:158:93 | // test ... nk, xss |
+| PASSED | xssSink | src/index.js:200:28:200:56 | // test ... nk, xss |
+failingPositiveTests
+passingNegativeTests
+| PASSED | !xss | src/index.js:11:76:11:130 | // test ... k, !xss |
+| PASSED | !xss | src/index.js:144:43:144:96 | // test ... k, !xss |
+| PASSED | !xss | src/index.js:196:28:196:58 | // test ... k, !xss |
+| PASSED | !xssSink | src/index.js:11:76:11:130 | // test ... k, !xss |
+| PASSED | !xssSink | src/index.js:196:28:196:58 | // test ... k, !xss |
+failingNegativeTests
diff --git a/javascript/ql/test/library-tests/frameworks/Restify2/tests.ql b/javascript/ql/test/library-tests/frameworks/Restify2/tests.ql
new file mode 100644
index 00000000000..5666ca201ad
--- /dev/null
+++ b/javascript/ql/test/library-tests/frameworks/Restify2/tests.ql
@@ -0,0 +1,194 @@
+import javascript
+import semmle.javascript.security.dataflow.CleartextStorageCustomizations
+import semmle.javascript.security.dataflow.CorsMisconfigurationForCredentialsCustomizations
+import semmle.javascript.security.dataflow.StackTraceExposureCustomizations
+import semmle.javascript.security.dataflow.ServerSideUrlRedirectCustomizations
+import semmle.javascript.security.dataflow.RequestForgeryCustomizations
+import semmle.javascript.security.dataflow.ReflectedXssCustomizations
+import semmle.javascript.security.dataflow.ReflectedXssQuery as XssConfig
+import semmle.javascript.heuristics.AdditionalRouteHandlers
+
+class InlineTest extends LineComment {
+  string tests;
+
+  InlineTest() { tests = this.getText().regexpCapture("\\s*test:(.*)", 1) }
+
+  string getPositiveTest() {
+    result = tests.trim().splitAt(",").trim() and not result.matches("!%")
+  }
+
+  string getNegativeTest() { result = tests.trim().splitAt(",").trim() and result.matches("!%") }
+
+  predicate hasPositiveTest(string test) { test = this.getPositiveTest() }
+
+  predicate hasNegativeTest(string test) { test = this.getNegativeTest() }
+
+  predicate inNode(DataFlow::Node n) {
+    this.getLocation().getFile() = n.getFile() and
+    this.getLocation().getStartLine() = n.getStartLine()
+  }
+}
+
+query predicate passingPositiveTests(string res, string expectation, InlineTest t) {
+  res = "PASSED" and
+  t.hasPositiveTest(expectation) and
+  (
+    expectation = "source" and
+    exists(RemoteFlowSource n | t.inNode(n))
+    or
+    expectation = "setup" and
+    exists(Http::RouteSetup n | t.inNode(n))
+    or
+    expectation = "handler" and
+    exists(Http::RouteHandler n | t.inNode(n))
+    or
+    expectation = "candidateHandler" and
+    exists(Http::RouteHandlerCandidate n | t.inNode(n))
+    or
+    expectation = "xssSink" and
+    exists(ReflectedXss::Sink n | t.inNode(n))
+    or
+    expectation = "xss" and
+    exists(XssConfig::Configuration cfg, DataFlow::Node sink |
+      cfg.hasFlow(_, sink) and t.inNode(sink)
+    )
+    or
+    expectation = "cleartextStorageSink" and
+    exists(CleartextStorage::Sink n | t.inNode(n))
+    or
+    expectation = "corsMiconfigurationSink" and
+    exists(CorsMisconfigurationForCredentials::Sink n | t.inNode(n))
+    or
+    expectation = "stackTraceExposureSink" and
+    exists(StackTraceExposure::Sink n | t.inNode(n))
+    or
+    expectation = "redirectSink" and
+    exists(ServerSideUrlRedirect::Sink n | t.inNode(n))
+    or
+    expectation = "ssrfSink" and
+    exists(RequestForgery::Sink n | t.inNode(n))
+  )
+}
+
+query predicate failingPositiveTests(string res, string expectation, InlineTest t) {
+  res = "FAILED" and
+  t.hasPositiveTest(expectation) and
+  (
+    expectation = "source" and
+    not exists(RemoteFlowSource n | t.inNode(n))
+    or
+    expectation = "setup" and
+    not exists(Http::RouteSetup n | t.inNode(n))
+    or
+    expectation = "handler" and
+    not exists(Http::RouteHandler n | t.inNode(n))
+    or
+    expectation = "candidateHandler" and
+    not exists(Http::RouteHandlerCandidate n | t.inNode(n))
+    or
+    expectation = "xssSink" and
+    not exists(ReflectedXss::Sink n | t.inNode(n))
+    or
+    expectation = "xss" and
+    not exists(XssConfig::Configuration cfg, DataFlow::Node sink |
+      cfg.hasFlow(_, sink) and t.inNode(sink)
+    )
+    or
+    expectation = "cleartextStorageSink" and
+    not exists(CleartextStorage::Sink n | t.inNode(n))
+    or
+    expectation = "corsMiconfigurationSink" and
+    not exists(CorsMisconfigurationForCredentials::Sink n | t.inNode(n))
+    or
+    expectation = "stackTraceExposureSink" and
+    not exists(StackTraceExposure::Sink n | t.inNode(n))
+    or
+    expectation = "redirectSink" and
+    not exists(ServerSideUrlRedirect::Sink n | t.inNode(n))
+    or
+    expectation = "ssrfSink" and
+    not exists(RequestForgery::Sink n | t.inNode(n))
+  )
+}
+
+query predicate passingNegativeTests(string res, string expectation, InlineTest t) {
+  res = "PASSED" and
+  t.hasNegativeTest(expectation) and
+  (
+    expectation = "!source" and
+    not exists(RemoteFlowSource n | t.inNode(n))
+    or
+    expectation = "!setup" and
+    not exists(Http::RouteSetup n | t.inNode(n))
+    or
+    expectation = "!handler" and
+    not exists(Http::RouteHandler n | t.inNode(n))
+    or
+    expectation = "!candidateHandler" and
+    not exists(Http::RouteHandlerCandidate n | t.inNode(n))
+    or
+    expectation = "!xssSink" and
+    not exists(ReflectedXss::Sink n | t.inNode(n))
+    or
+    expectation = "!xss" and
+    not exists(XssConfig::Configuration cfg, DataFlow::Node sink |
+      cfg.hasFlow(_, sink) and t.inNode(sink)
+    )
+    or
+    expectation = "!cleartextStorageSink" and
+    not exists(CleartextStorage::Sink n | t.inNode(n))
+    or
+    expectation = "!corsMiconfigurationSink" and
+    not exists(CorsMisconfigurationForCredentials::Sink n | t.inNode(n))
+    or
+    expectation = "!stackTraceExposureSink" and
+    not exists(StackTraceExposure::Sink n | t.inNode(n))
+    or
+    expectation = "!redirectSink" and
+    not exists(ServerSideUrlRedirect::Sink n | t.inNode(n))
+    or
+    expectation = "!ssrfSink" and
+    not exists(RequestForgery::Sink n | t.inNode(n))
+  )
+}
+
+query predicate failingNegativeTests(string res, string expectation, InlineTest t) {
+  res = "FAILED" and
+  t.hasNegativeTest(expectation) and
+  (
+    expectation = "!source" and
+    exists(RemoteFlowSource n | t.inNode(n))
+    or
+    expectation = "!setup" and
+    exists(Http::RouteSetup n | t.inNode(n))
+    or
+    expectation = "!handler" and
+    exists(Http::RouteHandler n | t.inNode(n))
+    or
+    expectation = "!candidateHandler" and
+    exists(Http::RouteHandlerCandidate n | t.inNode(n))
+    or
+    expectation = "!xssSink" and
+    exists(ReflectedXss::Sink n | t.inNode(n))
+    or
+    expectation = "!xss" and
+    exists(XssConfig::Configuration cfg, DataFlow::Node sink |
+      cfg.hasFlow(_, sink) and t.inNode(sink)
+    )
+    or
+    expectation = "!cleartextStorageSink" and
+    exists(CleartextStorage::Sink n | t.inNode(n))
+    or
+    expectation = "!corsMiconfigurationSink" and
+    exists(CorsMisconfigurationForCredentials::Sink n | t.inNode(n))
+    or
+    expectation = "!stackTraceExposureSink" and
+    exists(StackTraceExposure::Sink n | t.inNode(n))
+    or
+    expectation = "!redirectSink" and
+    exists(ServerSideUrlRedirect::Sink n | t.inNode(n))
+    or
+    expectation = "!ssrfSink" and
+    exists(RequestForgery::Sink n | t.inNode(n))
+  )
+}
diff --git a/javascript/ql/test/library-tests/frameworks/Spife/lib/routes/index.js b/javascript/ql/test/library-tests/frameworks/Spife/lib/routes/index.js
new file mode 100644
index 00000000000..1598d11f035
--- /dev/null
+++ b/javascript/ql/test/library-tests/frameworks/Spife/lib/routes/index.js
@@ -0,0 +1,17 @@
+'use strict'
+
+const routes = require('@npm/spife/routing')
+
+module.exports = routes`
+  GET / homepage
+  GET /test1 test1
+  GET /test1 test2
+  GET /test4 test4
+  GET /test5 test5
+  GET /test6 test6
+  GET /raw1 raw1
+  GET /raw2 raw2
+  POST /body parseBody
+  GET /redirect/:redirect_url redirect
+  POST /packages/new createPackage
+`(require('../views'))
diff --git a/javascript/ql/test/library-tests/frameworks/Spife/lib/routes/parameters.js b/javascript/ql/test/library-tests/frameworks/Spife/lib/routes/parameters.js
new file mode 100644
index 00000000000..e69de29bb2d
diff --git a/javascript/ql/test/library-tests/frameworks/Spife/lib/settings.js b/javascript/ql/test/library-tests/frameworks/Spife/lib/settings.js
new file mode 100644
index 00000000000..5d3b9824132
--- /dev/null
+++ b/javascript/ql/test/library-tests/frameworks/Spife/lib/settings.js
@@ -0,0 +1,46 @@
+'use strict'
+
+const { Environment, FileSystemLoader } = require('nunjucks')
+const Loader = require('@npm/spife/templates/loader')
+const path = require('path')
+
+const isDev = !new Set(['prod', 'production', 'stag', 'staging']).has(
+  process.env.NODE_ENV
+)
+
+const templateDirs = [path.join(__dirname, '..', 'templates')]
+const nunjucksEnv = new Environment(new FileSystemLoader(templateDirs))
+const nunjucksLoader = new Loader({
+  dirs: templateDirs,
+  load (resolved) {
+    const template = nunjucksEnv.getTemplate(resolved.path, true)
+    return context => {
+      return template.render(context)
+    }
+  }
+})
+
+module.exports = {
+  DEBUG: process.env.DEBUG,
+  ENABLE_FORM_PARSING: false,
+  METRICS: process.env.METRICS,
+  MIDDLEWARE: [
+    '@npm/spife/middleware/debug',
+    ['@npm/spife/middleware/template', [
+      nunjucksLoader
+    ], [
+      // template context processors go here
+    ]],
+    '@npm/spife/middleware/common',
+    '@npm/spife/middleware/logging',
+    '@npm/spife/middleware/metrics',
+    '@npm/spife/middleware/monitor',
+    '@npm/spife/middleware/hot-reload',
+    ['@npm/spife/middleware/csrf', { secureCookie: !isDev }]
+  ],
+  NAME: 'nunjucks-example',
+  NODE_ENV: process.env.NODE_ENV,
+  PORT: 8124,
+  ROUTER: './routes/index.js',
+  HOT: true
+}
diff --git a/javascript/ql/test/library-tests/frameworks/Spife/lib/views/index.js b/javascript/ql/test/library-tests/frameworks/Spife/lib/views/index.js
new file mode 100644
index 00000000000..c64299853bf
--- /dev/null
+++ b/javascript/ql/test/library-tests/frameworks/Spife/lib/views/index.js
@@ -0,0 +1,115 @@
+'use strict'
+
+const reply = require('@npm/spife/reply')
+const validate = require('@npm/spife/decorators/validate')
+const joi = require('@npm/spife/joi')
+const concat = require('concat-stream')
+
+const createPackageSchema = joi.object().keys({
+  contents: joi.string().max(200).required(),
+  destination: joi.any().valid([
+    joi.object({
+      name: joi.string().max(200).required(),
+      address: joi.string().max(200).required()
+    }),
+    joi.string().min(1)
+  ])
+})
+
+module.exports = { homepage, parseBody, raw1, raw2, test1, test2, test3, test4, test5, test6, redirect, createPackage: validate.body(createPackageSchema, createPackage), }
+
+function sink(obj) { console.log(obj) }
+
+function createPackage(req, context) { // test: handler
+  const tainted = req.validatedBody.get('destination') // test: source
+  sink(taitned)
+}
+
+function homepage(req, context) { // test: handler
+  sink(req.cookie("test")) // test: source
+  sink(req.cookies().test) // test: source
+  sink(req.headers.test) // test: source
+  sink(req.rawHeaders[0]) // test: source
+  sink(req.raw.headers) // test: source
+  sink(req.url) // test: source
+  sink(req.urlObject.pathname) // test: source
+  sink(context.get('package')) // test: source
+  sink(context)
+  return reply.template('home', { target: req.query.name }) // test: source, templateInstantiation, stackTraceExposureSink
+}
+
+function raw1(req, context) { // test: handler
+  sink(req.query.name) // test: source
+  return reply(req.query.name, 200, { // test: source, xssSink, stackTraceExposureSink, xss
+    "content-type": "text/html",
+    "access-control-allow-origin": "*", // test: corsMiconfigurationSink
+    "access-control-allow-headers": "Content-Type, Authorization, Content-Length, X-Requested-With",
+    "access-control-allow-methods": "GET, POST, PUT, DELETE, OPTIONS",
+    "access-control-allow-credentials": "true"
+
+  })
+}
+
+function redirect(req, context) { // test: handler
+  return reply.redirect(context.get('redirect_url')) // test: redirectSink, source, stackTraceExposureSink
+}
+function raw2(req, context) { // test: handler
+  return reply.cookie({ "test": req.query.name }, "test", req.query.name, { "httpOnly": false, "secure": false }) // test: source, cleartextStorageSink, stackTraceExposureSink
+}
+
+function test1(req, context) { // test: handler
+  switch (req.accept.type(['json', 'html', 'plain'])) {
+    case 'json':
+      return { "some": req.query.name } // test: source, stackTraceExposureSink
+    case 'html':
+      return reply.header('<p>' + req.query.name + '</p>', 'content-type', 'text/html') // test: source, xssSink, stackTraceExposureSink, xss
+    case 'plain':
+      return reply.header('<p>' + req.query.name + '</p>', { 'content-type': 'text/plain' }) // test: source, stackTraceExposureSink, !xssSink, !xss
+  }
+  return 'well, I guess you just want plaintext.'
+}
+
+function test2(req, context) { // test: handler
+  switch (req.accept.type(['json', 'html'])) {
+    case 'json':
+      return { "some": req.query.name } // test: source, stackTraceExposureSink
+    case 'html':
+      return reply.header('<p>' + req.query.name + '</p>', { 'content-type': 'text/plain' }) // test: source, stackTraceExposureSink, !xssSink, !xss
+  }
+  return 'well, I guess you just want plaintext.'
+}
+
+function test3(req, context) { // test: candidateHandler
+  return reply('<p>' + req.query.name + '</p>') // test: source, stackTraceExposureSink, !xssSink, !xss
+}
+
+function test4(req, context) { // test: handler
+  const body = req.body // test: source
+  const newPackument = body['package-json']
+  const message = `INFO: User invited to package ${newPackument._id} successfully.`
+  return reply(message, 200, { 'npm-notice': message }) // test: stackTraceExposureSink, !xssSink, !xss
+}
+
+function test5(req, context) { // test: handler
+  const body = req.body // test: source
+  const newPackument = body['package-json']
+  const message = `INFO: User invited to package ${newPackument._id} successfully.`
+  return reply(message, 200) // test: stackTraceExposureSink, !xssSink, !xss
+}
+
+function test6(req, context) { // test: handler
+  const body = req.body // test: source
+  const newPackument = body['package-json']
+  const message = `INFO: User invited to package ${newPackument._id} successfully.`
+  if (message.contains('foo')) {
+    return reply(message, 200, { 'npm-notice': message }) // test: stackTraceExposureSink, !xssSink, !xss
+  } else {
+    return reply(message, 200, { 'npm-notice': message, 'content-type': 'text/html' }) // test: stackTraceExposureSink, xssSink, xss
+  }
+}
+
+function parseBody(req, context) {
+  return req.body.then(data => { // test: source, stackTraceExposureSink
+    sink(data.name)
+  })
+}
diff --git a/javascript/ql/test/library-tests/frameworks/Spife/tests.expected b/javascript/ql/test/library-tests/frameworks/Spife/tests.expected
new file mode 100644
index 00000000000..98c16194268
--- /dev/null
+++ b/javascript/ql/test/library-tests/frameworks/Spife/tests.expected
@@ -0,0 +1,75 @@
+passingPositiveTests
+| PASSED | candidateHandler | lib/views/index.js:82:32:82:56 | // test ... Handler |
+| PASSED | cleartextStorageSink | lib/views/index.js:57:115:57:175 | // test ... ureSink |
+| PASSED | corsMiconfigurationSink | lib/views/index.js:45:41:45:72 | // test ... ionSink |
+| PASSED | handler | lib/views/index.js:23:40:23:55 | // test: handler |
+| PASSED | handler | lib/views/index.js:28:35:28:50 | // test: handler |
+| PASSED | handler | lib/views/index.js:41:31:41:46 | // test: handler |
+| PASSED | handler | lib/views/index.js:53:35:53:50 | // test: handler |
+| PASSED | handler | lib/views/index.js:56:31:56:46 | // test: handler |
+| PASSED | handler | lib/views/index.js:60:32:60:47 | // test: handler |
+| PASSED | handler | lib/views/index.js:72:32:72:47 | // test: handler |
+| PASSED | handler | lib/views/index.js:86:32:86:47 | // test: handler |
+| PASSED | handler | lib/views/index.js:93:32:93:47 | // test: handler |
+| PASSED | handler | lib/views/index.js:100:32:100:47 | // test: handler |
+| PASSED | redirectSink | lib/views/index.js:54:54:54:106 | // test ... ureSink |
+| PASSED | source | lib/views/index.js:24:56:24:70 | // test: source |
+| PASSED | source | lib/views/index.js:29:28:29:42 | // test: source |
+| PASSED | source | lib/views/index.js:30:28:30:42 | // test: source |
+| PASSED | source | lib/views/index.js:31:26:31:40 | // test: source |
+| PASSED | source | lib/views/index.js:32:27:32:41 | // test: source |
+| PASSED | source | lib/views/index.js:33:25:33:39 | // test: source |
+| PASSED | source | lib/views/index.js:34:17:34:31 | // test: source |
+| PASSED | source | lib/views/index.js:35:32:35:46 | // test: source |
+| PASSED | source | lib/views/index.js:36:32:36:46 | // test: source |
+| PASSED | source | lib/views/index.js:38:61:38:122 | // test ... ureSink |
+| PASSED | source | lib/views/index.js:42:24:42:38 | // test: source |
+| PASSED | source | lib/views/index.js:43:39:43:91 | // test ... nk, xss |
+| PASSED | source | lib/views/index.js:54:54:54:106 | // test ... ureSink |
+| PASSED | source | lib/views/index.js:57:115:57:175 | // test ... ureSink |
+| PASSED | source | lib/views/index.js:63:41:63:79 | // test ... ureSink |
+| PASSED | source | lib/views/index.js:65:89:65:141 | // test ... nk, xss |
+| PASSED | source | lib/views/index.js:67:94:67:148 | // test ... k, !xss |
+| PASSED | source | lib/views/index.js:75:41:75:79 | // test ... ureSink |
+| PASSED | source | lib/views/index.js:77:94:77:148 | // test ... k, !xss |
+| PASSED | source | lib/views/index.js:83:49:83:103 | // test ... k, !xss |
+| PASSED | source | lib/views/index.js:87:25:87:39 | // test: source |
+| PASSED | source | lib/views/index.js:94:25:94:39 | // test: source |
+| PASSED | source | lib/views/index.js:101:25:101:39 | // test: source |
+| PASSED | source | lib/views/index.js:112:34:112:72 | // test ... ureSink |
+| PASSED | stackTraceExposureSink | lib/views/index.js:38:61:38:122 | // test ... ureSink |
+| PASSED | stackTraceExposureSink | lib/views/index.js:43:39:43:91 | // test ... nk, xss |
+| PASSED | stackTraceExposureSink | lib/views/index.js:54:54:54:106 | // test ... ureSink |
+| PASSED | stackTraceExposureSink | lib/views/index.js:57:115:57:175 | // test ... ureSink |
+| PASSED | stackTraceExposureSink | lib/views/index.js:63:41:63:79 | // test ... ureSink |
+| PASSED | stackTraceExposureSink | lib/views/index.js:65:89:65:141 | // test ... nk, xss |
+| PASSED | stackTraceExposureSink | lib/views/index.js:67:94:67:148 | // test ... k, !xss |
+| PASSED | stackTraceExposureSink | lib/views/index.js:75:41:75:79 | // test ... ureSink |
+| PASSED | stackTraceExposureSink | lib/views/index.js:77:94:77:148 | // test ... k, !xss |
+| PASSED | stackTraceExposureSink | lib/views/index.js:83:49:83:103 | // test ... k, !xss |
+| PASSED | stackTraceExposureSink | lib/views/index.js:90:57:90:103 | // test ... k, !xss |
+| PASSED | stackTraceExposureSink | lib/views/index.js:97:30:97:76 | // test ... k, !xss |
+| PASSED | stackTraceExposureSink | lib/views/index.js:105:59:105:105 | // test ... k, !xss |
+| PASSED | stackTraceExposureSink | lib/views/index.js:107:88:107:132 | // test ... nk, xss |
+| PASSED | stackTraceExposureSink | lib/views/index.js:112:34:112:72 | // test ... ureSink |
+| PASSED | xss | lib/views/index.js:43:39:43:91 | // test ... nk, xss |
+| PASSED | xss | lib/views/index.js:65:89:65:141 | // test ... nk, xss |
+| PASSED | xss | lib/views/index.js:107:88:107:132 | // test ... nk, xss |
+| PASSED | xssSink | lib/views/index.js:43:39:43:91 | // test ... nk, xss |
+| PASSED | xssSink | lib/views/index.js:65:89:65:141 | // test ... nk, xss |
+| PASSED | xssSink | lib/views/index.js:107:88:107:132 | // test ... nk, xss |
+failingPositiveTests
+passingNegativeTests
+| PASSED | !xss | lib/views/index.js:67:94:67:148 | // test ... k, !xss |
+| PASSED | !xss | lib/views/index.js:77:94:77:148 | // test ... k, !xss |
+| PASSED | !xss | lib/views/index.js:83:49:83:103 | // test ... k, !xss |
+| PASSED | !xss | lib/views/index.js:97:30:97:76 | // test ... k, !xss |
+| PASSED | !xssSink | lib/views/index.js:67:94:67:148 | // test ... k, !xss |
+| PASSED | !xssSink | lib/views/index.js:77:94:77:148 | // test ... k, !xss |
+| PASSED | !xssSink | lib/views/index.js:83:49:83:103 | // test ... k, !xss |
+| PASSED | !xssSink | lib/views/index.js:97:30:97:76 | // test ... k, !xss |
+failingNegativeTests
+| FAILED | !xss | lib/views/index.js:90:57:90:103 | // test ... k, !xss |
+| FAILED | !xss | lib/views/index.js:105:59:105:105 | // test ... k, !xss |
+| FAILED | !xssSink | lib/views/index.js:90:57:90:103 | // test ... k, !xss |
+| FAILED | !xssSink | lib/views/index.js:105:59:105:105 | // test ... k, !xss |
diff --git a/javascript/ql/test/library-tests/frameworks/Spife/tests.ql b/javascript/ql/test/library-tests/frameworks/Spife/tests.ql
new file mode 100644
index 00000000000..5666ca201ad
--- /dev/null
+++ b/javascript/ql/test/library-tests/frameworks/Spife/tests.ql
@@ -0,0 +1,194 @@
+import javascript
+import semmle.javascript.security.dataflow.CleartextStorageCustomizations
+import semmle.javascript.security.dataflow.CorsMisconfigurationForCredentialsCustomizations
+import semmle.javascript.security.dataflow.StackTraceExposureCustomizations
+import semmle.javascript.security.dataflow.ServerSideUrlRedirectCustomizations
+import semmle.javascript.security.dataflow.RequestForgeryCustomizations
+import semmle.javascript.security.dataflow.ReflectedXssCustomizations
+import semmle.javascript.security.dataflow.ReflectedXssQuery as XssConfig
+import semmle.javascript.heuristics.AdditionalRouteHandlers
+
+class InlineTest extends LineComment {
+  string tests;
+
+  InlineTest() { tests = this.getText().regexpCapture("\\s*test:(.*)", 1) }
+
+  string getPositiveTest() {
+    result = tests.trim().splitAt(",").trim() and not result.matches("!%")
+  }
+
+  string getNegativeTest() { result = tests.trim().splitAt(",").trim() and result.matches("!%") }
+
+  predicate hasPositiveTest(string test) { test = this.getPositiveTest() }
+
+  predicate hasNegativeTest(string test) { test = this.getNegativeTest() }
+
+  predicate inNode(DataFlow::Node n) {
+    this.getLocation().getFile() = n.getFile() and
+    this.getLocation().getStartLine() = n.getStartLine()
+  }
+}
+
+query predicate passingPositiveTests(string res, string expectation, InlineTest t) {
+  res = "PASSED" and
+  t.hasPositiveTest(expectation) and
+  (
+    expectation = "source" and
+    exists(RemoteFlowSource n | t.inNode(n))
+    or
+    expectation = "setup" and
+    exists(Http::RouteSetup n | t.inNode(n))
+    or
+    expectation = "handler" and
+    exists(Http::RouteHandler n | t.inNode(n))
+    or
+    expectation = "candidateHandler" and
+    exists(Http::RouteHandlerCandidate n | t.inNode(n))
+    or
+    expectation = "xssSink" and
+    exists(ReflectedXss::Sink n | t.inNode(n))
+    or
+    expectation = "xss" and
+    exists(XssConfig::Configuration cfg, DataFlow::Node sink |
+      cfg.hasFlow(_, sink) and t.inNode(sink)
+    )
+    or
+    expectation = "cleartextStorageSink" and
+    exists(CleartextStorage::Sink n | t.inNode(n))
+    or
+    expectation = "corsMiconfigurationSink" and
+    exists(CorsMisconfigurationForCredentials::Sink n | t.inNode(n))
+    or
+    expectation = "stackTraceExposureSink" and
+    exists(StackTraceExposure::Sink n | t.inNode(n))
+    or
+    expectation = "redirectSink" and
+    exists(ServerSideUrlRedirect::Sink n | t.inNode(n))
+    or
+    expectation = "ssrfSink" and
+    exists(RequestForgery::Sink n | t.inNode(n))
+  )
+}
+
+query predicate failingPositiveTests(string res, string expectation, InlineTest t) {
+  res = "FAILED" and
+  t.hasPositiveTest(expectation) and
+  (
+    expectation = "source" and
+    not exists(RemoteFlowSource n | t.inNode(n))
+    or
+    expectation = "setup" and
+    not exists(Http::RouteSetup n | t.inNode(n))
+    or
+    expectation = "handler" and
+    not exists(Http::RouteHandler n | t.inNode(n))
+    or
+    expectation = "candidateHandler" and
+    not exists(Http::RouteHandlerCandidate n | t.inNode(n))
+    or
+    expectation = "xssSink" and
+    not exists(ReflectedXss::Sink n | t.inNode(n))
+    or
+    expectation = "xss" and
+    not exists(XssConfig::Configuration cfg, DataFlow::Node sink |
+      cfg.hasFlow(_, sink) and t.inNode(sink)
+    )
+    or
+    expectation = "cleartextStorageSink" and
+    not exists(CleartextStorage::Sink n | t.inNode(n))
+    or
+    expectation = "corsMiconfigurationSink" and
+    not exists(CorsMisconfigurationForCredentials::Sink n | t.inNode(n))
+    or
+    expectation = "stackTraceExposureSink" and
+    not exists(StackTraceExposure::Sink n | t.inNode(n))
+    or
+    expectation = "redirectSink" and
+    not exists(ServerSideUrlRedirect::Sink n | t.inNode(n))
+    or
+    expectation = "ssrfSink" and
+    not exists(RequestForgery::Sink n | t.inNode(n))
+  )
+}
+
+query predicate passingNegativeTests(string res, string expectation, InlineTest t) {
+  res = "PASSED" and
+  t.hasNegativeTest(expectation) and
+  (
+    expectation = "!source" and
+    not exists(RemoteFlowSource n | t.inNode(n))
+    or
+    expectation = "!setup" and
+    not exists(Http::RouteSetup n | t.inNode(n))
+    or
+    expectation = "!handler" and
+    not exists(Http::RouteHandler n | t.inNode(n))
+    or
+    expectation = "!candidateHandler" and
+    not exists(Http::RouteHandlerCandidate n | t.inNode(n))
+    or
+    expectation = "!xssSink" and
+    not exists(ReflectedXss::Sink n | t.inNode(n))
+    or
+    expectation = "!xss" and
+    not exists(XssConfig::Configuration cfg, DataFlow::Node sink |
+      cfg.hasFlow(_, sink) and t.inNode(sink)
+    )
+    or
+    expectation = "!cleartextStorageSink" and
+    not exists(CleartextStorage::Sink n | t.inNode(n))
+    or
+    expectation = "!corsMiconfigurationSink" and
+    not exists(CorsMisconfigurationForCredentials::Sink n | t.inNode(n))
+    or
+    expectation = "!stackTraceExposureSink" and
+    not exists(StackTraceExposure::Sink n | t.inNode(n))
+    or
+    expectation = "!redirectSink" and
+    not exists(ServerSideUrlRedirect::Sink n | t.inNode(n))
+    or
+    expectation = "!ssrfSink" and
+    not exists(RequestForgery::Sink n | t.inNode(n))
+  )
+}
+
+query predicate failingNegativeTests(string res, string expectation, InlineTest t) {
+  res = "FAILED" and
+  t.hasNegativeTest(expectation) and
+  (
+    expectation = "!source" and
+    exists(RemoteFlowSource n | t.inNode(n))
+    or
+    expectation = "!setup" and
+    exists(Http::RouteSetup n | t.inNode(n))
+    or
+    expectation = "!handler" and
+    exists(Http::RouteHandler n | t.inNode(n))
+    or
+    expectation = "!candidateHandler" and
+    exists(Http::RouteHandlerCandidate n | t.inNode(n))
+    or
+    expectation = "!xssSink" and
+    exists(ReflectedXss::Sink n | t.inNode(n))
+    or
+    expectation = "!xss" and
+    exists(XssConfig::Configuration cfg, DataFlow::Node sink |
+      cfg.hasFlow(_, sink) and t.inNode(sink)
+    )
+    or
+    expectation = "!cleartextStorageSink" and
+    exists(CleartextStorage::Sink n | t.inNode(n))
+    or
+    expectation = "!corsMiconfigurationSink" and
+    exists(CorsMisconfigurationForCredentials::Sink n | t.inNode(n))
+    or
+    expectation = "!stackTraceExposureSink" and
+    exists(StackTraceExposure::Sink n | t.inNode(n))
+    or
+    expectation = "!redirectSink" and
+    exists(ServerSideUrlRedirect::Sink n | t.inNode(n))
+    or
+    expectation = "!ssrfSink" and
+    exists(RequestForgery::Sink n | t.inNode(n))
+  )
+}
diff --git a/javascript/ql/test/library-tests/frameworks/restify/tests.expected b/javascript/ql/test/library-tests/frameworks/restify/tests.expected
index 3f26379a3fa..09ccb149eae 100644
--- a/javascript/ql/test/library-tests/frameworks/restify/tests.expected
+++ b/javascript/ql/test/library-tests/frameworks/restify/tests.expected
@@ -11,10 +11,16 @@ test_RequestInputAccess
 | src/test.js:19:5:19:26 | request ... ('bar') | header | src/test.js:12:19:22:1 | functio ... okie;\\n} |
 | src/test.js:20:5:20:25 | request ... ('baz') | header | src/test.js:12:19:22:1 | functio ... okie;\\n} |
 test_RouteHandler_getAResponseHeader
+| src/test.js:6:1:6:21 | functio ... er1(){} | content-type | src/test.js:6:1:6:21 | functio ... er1(){} |
+| src/test.js:9:19:11:1 | functio ... ition\\n} | content-type | src/test.js:9:19:11:1 | functio ... ition\\n} |
 | src/test.js:9:19:11:1 | functio ... ition\\n} | header1 | src/test.js:10:5:10:34 | respons ... 1', '') |
+| src/test.js:12:19:22:1 | functio ... okie;\\n} | content-type | src/test.js:12:19:22:1 | functio ... okie;\\n} |
 | src/test.js:12:19:22:1 | functio ... okie;\\n} | header2 | src/test.js:13:5:13:37 | respons ... 2', '') |
 test_HeaderDefinition_defines
+| src/test.js:6:1:6:21 | functio ... er1(){} | content-type | application/json |
+| src/test.js:9:19:11:1 | functio ... ition\\n} | content-type | application/json |
 | src/test.js:10:5:10:34 | respons ... 1', '') | header1 |  |
+| src/test.js:12:19:22:1 | functio ... okie;\\n} | content-type | application/json |
 | src/test.js:13:5:13:37 | respons ... 2', '') | header2 |  |
 test_ResponseExpr
 | src/test.js:9:46:9:53 | response | src/test.js:9:19:11:1 | functio ... ition\\n} |
@@ -24,14 +30,20 @@ test_ResponseExpr
 | src/test.js:12:46:12:53 | response | src/test.js:12:19:22:1 | functio ... okie;\\n} |
 | src/test.js:13:5:13:12 | response | src/test.js:12:19:22:1 | functio ... okie;\\n} |
 test_HeaderDefinition
+| src/test.js:6:1:6:21 | functio ... er1(){} | src/test.js:6:1:6:21 | functio ... er1(){} |
+| src/test.js:9:19:11:1 | functio ... ition\\n} | src/test.js:9:19:11:1 | functio ... ition\\n} |
 | src/test.js:10:5:10:34 | respons ... 1', '') | src/test.js:9:19:11:1 | functio ... ition\\n} |
+| src/test.js:12:19:22:1 | functio ... okie;\\n} | src/test.js:12:19:22:1 | functio ... okie;\\n} |
 | src/test.js:13:5:13:37 | respons ... 2', '') | src/test.js:12:19:22:1 | functio ... okie;\\n} |
 test_RouteSetup_getServer
 | src/test.js:7:1:7:26 | server2 ... ndler1) | src/test.js:4:15:4:36 | restify ... erver() |
 | src/test.js:9:1:11:2 | server2 ... tion\\n}) | src/test.js:4:15:4:36 | restify ... erver() |
 | src/test.js:12:1:22:2 | server2 ... kie;\\n}) | src/test.js:4:15:4:36 | restify ... erver() |
 test_HeaderDefinition_getAHeaderName
+| src/test.js:6:1:6:21 | functio ... er1(){} | content-type |
+| src/test.js:9:19:11:1 | functio ... ition\\n} | content-type |
 | src/test.js:10:5:10:34 | respons ... 1', '') | header1 |
+| src/test.js:12:19:22:1 | functio ... okie;\\n} | content-type |
 | src/test.js:13:5:13:37 | respons ... 2', '') | header2 |
 test_ServerDefinition
 | src/test.js:1:15:1:47 | require ... erver() |

From b79f7f3e95addfa2eb8a5d962b5d969373c557f9 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Alvaro=20Mu=C3=B1oz?= <pwntester@github.com>
Date: Tue, 18 Oct 2022 13:29:28 +0200
Subject: [PATCH 0015/1420] Address code review comments

Co-authored-by: Erik Krogh Kristensen <erik-krogh@github.com>
---
 .../semmle/javascript/frameworks/Restify.qll  | 37 +++----
 .../semmle/javascript/frameworks/Spife.qll    | 99 ++++++++-----------
 .../frameworks/Restify2/src/index.js          |  6 +-
 .../frameworks/Restify2/tests.expected        |  3 +
 .../frameworks/Restify2/tests.ql              | 37 +++++++
 .../frameworks/Spife/lib/views/index.js       | 10 +-
 .../frameworks/Spife/tests.expected           | 42 ++++----
 .../library-tests/frameworks/Spife/tests.ql   | 36 +++++++
 8 files changed, 164 insertions(+), 106 deletions(-)

diff --git a/javascript/ql/lib/semmle/javascript/frameworks/Restify.qll b/javascript/ql/lib/semmle/javascript/frameworks/Restify.qll
index fb80beb4832..1556f31c630 100644
--- a/javascript/ql/lib/semmle/javascript/frameworks/Restify.qll
+++ b/javascript/ql/lib/semmle/javascript/frameworks/Restify.qll
@@ -138,7 +138,7 @@ module Restify {
   /**
    * An access to a header on a Restify request.
    */
-  private class RequestHeaderAccess extends Http::RequestHeaderAccess {
+  private class RequestHeaderAccess extends Http::RequestHeaderAccess instanceof DataFlow::MethodCallNode {
     RouteHandler rh;
 
     RequestHeaderAccess() {
@@ -150,7 +150,7 @@ module Restify {
     }
 
     override string getAHeaderName() {
-      result = this.(DataFlow::MethodCallNode).getArgument(0).getStringValue().toLowerCase()
+      super.getArgument(0).mayHaveStringValue(any(string s | s.toLowerCase() = result))
     }
 
     override RouteHandler getRouteHandler() { result = rh }
@@ -185,9 +185,8 @@ module Restify {
     /**
      * Gets a reference to the multiple headers object that is to be set.
      */
-    private DataFlow::SourceNode getAHeaderSource() {
-      this.getArgument(0).getALocalSource() instanceof DataFlow::ObjectLiteralNode and
-      result.flowsTo(this.getArgument(0))
+    private DataFlow::ObjectLiteralNode getAHeaderSource() {
+      result = this.getArgument(0).getALocalSource()
     }
 
     override predicate definesHeaderValue(string headerName, DataFlow::Node headerValue) {
@@ -198,9 +197,7 @@ module Restify {
     }
 
     override DataFlow::Node getNameNode() {
-      exists(DataFlow::PropWrite write | this.getAHeaderSource().getAPropertyWrite() = write |
-        result = write.getPropertyNameExpr().flow()
-      )
+      result = this.getAHeaderSource().getAPropertyWrite().getPropertyNameExpr().flow()
     }
 
     override RouteHandler getRouteHandler() { this.getReceiver() = result.getAResponseNode() }
@@ -265,34 +262,29 @@ module Restify {
           .hasPropertyWrite("formatters", formatters)
     }
 
-    DataFlow::SourceNode getAFormatterHandler() { formatters.hasPropertyWrite(_, result) }
+    DataFlow::FunctionNode getAFormatterHandler() { formatters.hasPropertyWrite(_, result) }
   }
 
   /**
    * A Restify route handler.
    */
   class FormatterHandler extends Http::Servers::StandardRouteHandler, DataFlow::FunctionNode {
-    Function function;
-
-    FormatterHandler() {
-      function = astNode and
-      any(FormatterSetup setup).getAFormatterHandler() = this
-    }
+    FormatterHandler() { any(FormatterSetup setup).getAFormatterHandler() = this }
 
     /**
      * Gets the parameter of the formatter handler that contains the request object.
      */
-    Parameter getRequestParameter() { result = function.getParameter(0) }
+    DataFlow::ParameterNode getRequestParameter() { result = this.getParameter(0) }
 
     /**
      * Gets the parameter of the formatter handler that contains the response object.
      */
-    Parameter getResponseParameter() { result = function.getParameter(1) }
+    DataFlow::ParameterNode getResponseParameter() { result = this.getParameter(1) }
 
     /**
      * Gets the parameter of the formatter handler that contains the body object.
      */
-    Parameter getBodyParameter() { result = function.getParameter(2) }
+    DataFlow::ParameterNode getBodyParameter() { result = this.getParameter(2) }
   }
 
   /**
@@ -302,7 +294,7 @@ module Restify {
   private class FormatterRequestSource extends Http::Servers::RequestSource {
     FormatterHandler fh;
 
-    FormatterRequestSource() { this = DataFlow::parameterNode(fh.getRequestParameter()) }
+    FormatterRequestSource() { this = fh.getRequestParameter() }
 
     /**
      * Gets the formatter handler that handles this request.
@@ -317,7 +309,7 @@ module Restify {
   private class FormatterResponseSource extends Http::Servers::ResponseSource {
     FormatterHandler fh;
 
-    FormatterResponseSource() { this = DataFlow::parameterNode(fh.getResponseParameter()) }
+    FormatterResponseSource() { this = fh.getResponseParameter() }
 
     /**
      * Gets the route handler that provides this response.
@@ -362,10 +354,7 @@ module Restify {
       result = this.getArgument(1)
       or
       this.getNumArgument() = 2 and
-      this.getArgument(0)
-          .getALocalSource()
-          .(DataFlow::ObjectLiteralNode)
-          .hasPropertyWrite("hostname", result)
+      this.getArgument(0).getALocalSource().hasPropertyWrite("hostname", result)
       or
       this.getNumArgument() = 2 and
       result = this.getArgument(0)
diff --git a/javascript/ql/lib/semmle/javascript/frameworks/Spife.qll b/javascript/ql/lib/semmle/javascript/frameworks/Spife.qll
index 35d168a3e10..09c7850bd48 100644
--- a/javascript/ql/lib/semmle/javascript/frameworks/Spife.qll
+++ b/javascript/ql/lib/semmle/javascript/frameworks/Spife.qll
@@ -25,13 +25,10 @@ module Spife {
     TaggedTemplateExpr template;
 
     RouteSetup() {
-      exists(CallExpr templateCall |
-        this.getCalleeNode().asExpr() = template and
-        API::moduleImport(["@npm/spife/routing", "spife/routing"])
-            .asSource()
-            .flowsToExpr(template.getTag()) and
-        templateCall.getAChild() = template
-      )
+      this.getCalleeNode().asExpr() = template and
+      API::moduleImport(["@npm/spife/routing", "spife/routing"])
+          .asSource()
+          .flowsToExpr(template.getTag())
     }
 
     private string getRoutePattern() {
@@ -184,13 +181,13 @@ module Spife {
   /**
    * An access to a user-controlled Spife context input.
    */
-  private class ContextInputAccess extends Http::RequestInputAccess {
+  private class ContextInputAccess extends Http::RequestInputAccess instanceof DataFlow::MethodCallNode {
     ContextSource request;
     string kind;
 
     ContextInputAccess() {
-      request.ref().flowsTo(this.(DataFlow::MethodCallNode).getReceiver()) and
-      this.(DataFlow::MethodCallNode).getMethodName() = "get" and
+      request.ref().flowsTo(super.getReceiver()) and
+      super.getMethodName() = "get" and
       kind = "path"
     }
 
@@ -202,7 +199,7 @@ module Spife {
   /**
    * An access to a header on a Spife request.
    */
-  private class RequestHeaderAccess extends Http::RequestHeaderAccess {
+  private class RequestHeaderAccess extends Http::RequestHeaderAccess instanceof DataFlow::PropRead {
     RouteHandler rh;
 
     RequestHeaderAccess() {
@@ -211,7 +208,7 @@ module Spife {
     }
 
     override string getAHeaderName() {
-      result = this.(DataFlow::PropRead).getPropertyName().toLowerCase()
+      result = super.getPropertyName().toLowerCase()
     }
 
     override RouteHandler getRouteHandler() { result = rh }
@@ -223,7 +220,7 @@ module Spife {
    * A Spife response source, that is, the response variable used by a
    * route handler.
    */
-  private class ReplySource extends Http::Servers::ResponseSource {
+  private class ReplySource extends Http::Servers::ResponseSource instanceof DataFlow::CallNode {
     ReplySource() {
       // const reply = require("@npm/spife/reply")
       // reply(resp)
@@ -232,14 +229,12 @@ module Spife {
       this = API::moduleImport(["@npm/spife/reply", "spife/reply"]).getAMember().getACall()
     }
 
-    private DataFlow::SourceNode reachesHandlerReturn(
-      DataFlow::CallNode headerCall, DataFlow::TypeTracker t
-    ) {
-      result = headerCall and
+    private DataFlow::SourceNode reachesHandlerReturn(DataFlow::TypeTracker t) {
+      result = this and
       t.start()
       or
       exists(DataFlow::TypeTracker t2 |
-        result = this.reachesHandlerReturn(headerCall, t2).track(t2, t)
+        result = this.reachesHandlerReturn(t2).track(t2, t)
       )
     }
 
@@ -249,7 +244,7 @@ module Spife {
     override RouteHandler getRouteHandler() {
       exists(RouteHandler handler |
         handler.(DataFlow::FunctionNode).getAReturn().getALocalSource() =
-          this.reachesHandlerReturn(this, DataFlow::TypeTracker::end()) and
+          this.reachesHandlerReturn(DataFlow::TypeTracker::end()) and
         result = handler
       )
     }
@@ -258,14 +253,15 @@ module Spife {
   /**
    * An HTTP header defined in a Spife response.
    */
-  private class HeaderDefinition extends Http::ExplicitHeaderDefinition, DataFlow::MethodCallNode {
-    ReplySource reply;
+  private class HeaderDefinition extends Http::ExplicitHeaderDefinition, DataFlow::MethodCallNode instanceof ReplySource {
 
     HeaderDefinition() {
       // reply.header(RESPONSE, 'Cache-Control', 'no-cache')
-      reply.ref().(DataFlow::MethodCallNode).getMethodName() = "header" and
-      reply.ref().(DataFlow::MethodCallNode).getNumArgument() = 3 and
-      this = reply
+      exists(DataFlow::MethodCallNode call |
+        this.ref() = call and
+        call.getMethodName() = "header" and
+        call.getNumArgument() = 3
+      )
     }
 
     override predicate definesHeaderValue(string headerName, DataFlow::Node headerValue) {
@@ -276,7 +272,7 @@ module Spife {
 
     override DataFlow::Node getNameNode() { result = this.getArgument(1) }
 
-    override RouteHandler getRouteHandler() { result = reply.getRouteHandler() }
+    override RouteHandler getRouteHandler() { result = this.getRouteHandler() }
   }
 
   /**
@@ -297,11 +293,8 @@ module Spife {
     /**
      * Gets a reference to the multiple headers object that is to be set.
      */
-    private DataFlow::SourceNode getAHeaderSource() {
-      exists(int i |
-        this.getArgument(i).getALocalSource() instanceof DataFlow::ObjectLiteralNode and
-        result.flowsTo(this.getArgument(i))
-      )
+    private DataFlow::ObjectLiteralNode getAHeaderSource() {
+      result = this.getAnArgument().getALocalSource()
     }
 
     override predicate definesHeaderValue(string headerName, DataFlow::Node headerValue) {
@@ -312,9 +305,7 @@ module Spife {
     }
 
     override DataFlow::Node getNameNode() {
-      exists(DataFlow::PropWrite write | this.getAHeaderSource().getAPropertyWrite() = write |
-        result = write.getPropertyNameExpr().flow()
-      )
+      result = this.getAHeaderSource().getAPropertyWrite().getPropertyNameExpr().flow()
     }
 
     override RouteHandler getRouteHandler() { result = reply.getRouteHandler() }
@@ -324,8 +315,7 @@ module Spife {
    * A header produced by a route handler with no explicit declaration of a Content-Type.
    */
   private class ContentTypeRouteHandlerHeader extends Http::ImplicitHeaderDefinition,
-    DataFlow::FunctionNode {
-    ContentTypeRouteHandlerHeader() { this instanceof RouteHandler }
+    DataFlow::FunctionNode instanceof RouteHandler {
 
     override predicate defines(string headerName, string headerValue) {
       headerName = "content-type" and headerValue = "application/json"
@@ -337,20 +327,18 @@ module Spife {
   /**
    * An HTTP cookie defined in a Spife HTTP response.
    */
-  private class CookieDefinition extends Http::CookieDefinition, DataFlow::MethodCallNode {
-    ReplySource reply;
+  private class CookieDefinition extends Http::CookieDefinition, DataFlow::MethodCallNode instanceof ReplySource {
 
     CookieDefinition() {
       // reply.cookie(RESPONSE, 'TEST', 'FOO', {"maxAge": 1000, "httpOnly": true, "secure": true})
-      this = reply.ref().(DataFlow::MethodCallNode) and
-      this.getMethodName() = "cookie"
+      this.ref().(DataFlow::MethodCallNode).getMethodName() = "cookie"
     }
 
     override DataFlow::Node getNameArgument() { result = this.getArgument(1) }
 
     override DataFlow::Node getValueArgument() { result = this.getArgument(2) }
 
-    override RouteHandler getRouteHandler() { result = reply.getRouteHandler() }
+    override RouteHandler getRouteHandler() { result = this.getRouteHandler() }
   }
 
   /**
@@ -360,14 +348,15 @@ module Spife {
     RouteHandler rh;
 
     ReplyArgument() {
-      exists(ReplySource reply |
-        reply.ref().(DataFlow::CallNode).getCalleeName() =
+      exists(ReplySource reply, DataFlow::CallNode call |
+        reply.ref() = call and
+        call.getCalleeName() =
           ["reply", "cookie", "link", "header", "headers", "raw", "status", "toStream", "vary"] and
-        this = reply.ref().(DataFlow::CallNode).getArgument(0) and
+        this = call.getArgument(0) and
         rh = reply.getRouteHandler()
       )
       or
-      this = rh.(DataFlow::FunctionNode).getAReturn()
+      this = rh.getAReturn()
     }
 
     override RouteHandler getRouteHandler() { result = rh }
@@ -394,8 +383,11 @@ module Spife {
     ReplySource reply;
 
     TemplateObjectInput() {
-      reply.ref().(DataFlow::MethodCallNode).getMethodName() = "template" and
-      this = reply.ref().(DataFlow::MethodCallNode).getArgument(1)
+      exists(DataFlow::MethodCallNode call |
+        reply.ref() = call and
+        call.getMethodName() = "template" and
+        this = call.getArgument(1)
+      )
     }
 
     /**
@@ -407,28 +399,23 @@ module Spife {
   /**
    * An invocation of the `redirect` method of an HTTP response object.
    */
-  private class RedirectInvocation extends Http::RedirectInvocation, DataFlow::MethodCallNode {
-    ReplySource reply;
+  private class RedirectInvocation extends Http::RedirectInvocation, DataFlow::MethodCallNode instanceof ReplySource {
 
     RedirectInvocation() {
-      this = reply.ref().(DataFlow::MethodCallNode) and
-      this.getMethodName() = "redirect"
+      this.ref().(DataFlow::MethodCallNode).getMethodName() = "redirect"
     }
 
     override DataFlow::Node getUrlArgument() { result = this.getAnArgument() }
 
-    override RouteHandler getRouteHandler() { result = reply.getRouteHandler() }
+    override RouteHandler getRouteHandler() { result = this.getRouteHandler() }
   }
 
   /**
    * A call to `reply.template('template', { ... })`, seen as a template instantiation.
    */
-  private class TemplateCall extends Templating::TemplateInstantiation::Range, DataFlow::CallNode {
+  private class TemplateCall extends Templating::TemplateInstantiation::Range, DataFlow::MethodCallNode instanceof ReplySource {
     TemplateCall() {
-      exists(ReplySource reply |
-        reply.ref().(DataFlow::MethodCallNode).getMethodName() = "template" and
-        this = reply.ref()
-      )
+      this.getMethodName() = "template"
     }
 
     override DataFlow::SourceNode getOutput() { result = this }
diff --git a/javascript/ql/test/library-tests/frameworks/Restify2/src/index.js b/javascript/ql/test/library-tests/frameworks/Restify2/src/index.js
index 94c678c93b7..9e3c901f377 100644
--- a/javascript/ql/test/library-tests/frameworks/Restify2/src/index.js
+++ b/javascript/ql/test/library-tests/frameworks/Restify2/src/index.js
@@ -101,7 +101,7 @@ server.get('/foo', // test: setup
     return next();
   },
   function(req, res, next) { // test: handler
-    res.header("Content-Type", "text/html");
+    res.header("Content-Type", "text/html"); // test: headerDefinition
     res.send(req.someData); // test: stackTraceExposureSink, xssSink, xss
     return next();
   }
@@ -119,7 +119,7 @@ server.get('/foo2', // test: setup
 );
 
 function xss(req, res, next) { // test: handler
-  res.header("Content-Type", "text/html");
+  res.header("Content-Type", "text/html"); // test: headerDefinition
   res.send('hello ' + req.query.name); // test: source, stackTraceExposureSink, xssSink, xss
   next();
 }
@@ -140,7 +140,7 @@ function xss2(req, res, next) { // test: handler
 });
 
 function xss3(req, res, next) { // test: handler
-  res.header("Content-Type", "text/html");
+  res.header("Content-Type", "text/html"); // test: headerDefinition
   res.send('hello ' + req.header("foo")); // test: source, stackTraceExposureSink, xssSink, !xss
   next();
 }
diff --git a/javascript/ql/test/library-tests/frameworks/Restify2/tests.expected b/javascript/ql/test/library-tests/frameworks/Restify2/tests.expected
index 1c9c7a2b45c..26e82f53391 100644
--- a/javascript/ql/test/library-tests/frameworks/Restify2/tests.expected
+++ b/javascript/ql/test/library-tests/frameworks/Restify2/tests.expected
@@ -26,6 +26,9 @@ passingPositiveTests
 | PASSED | handler | src/index.js:192:39:192:61 | // test ... handler |
 | PASSED | handler | src/index.js:194:49:194:71 | // test ... handler |
 | PASSED | handler | src/index.js:198:65:198:87 | // test ... handler |
+| PASSED | headerDefinition | src/index.js:104:46:104:70 | // test ... inition |
+| PASSED | headerDefinition | src/index.js:122:44:122:68 | // test ... inition |
+| PASSED | headerDefinition | src/index.js:143:44:143:68 | // test ... inition |
 | PASSED | redirectSink | src/index.js:78:32:78:60 | // test ... ectSink |
 | PASSED | redirectSink | src/index.js:87:45:87:73 | // test ... ectSink |
 | PASSED | redirectSink | src/index.js:88:40:88:68 | // test ... ectSink |
diff --git a/javascript/ql/test/library-tests/frameworks/Restify2/tests.ql b/javascript/ql/test/library-tests/frameworks/Restify2/tests.ql
index 5666ca201ad..7cc936d12ec 100644
--- a/javascript/ql/test/library-tests/frameworks/Restify2/tests.ql
+++ b/javascript/ql/test/library-tests/frameworks/Restify2/tests.ql
@@ -33,6 +33,15 @@ query predicate passingPositiveTests(string res, string expectation, InlineTest
   res = "PASSED" and
   t.hasPositiveTest(expectation) and
   (
+    expectation = "headerDefinition" and
+    exists(Http::HeaderDefinition n | t.inNode(n))
+    or
+    expectation = "cookieDefinition" and
+    exists(Http::CookieDefinition n | t.inNode(n))
+    or
+    expectation = "templateInstantiation" and
+    exists(Templating::TemplateInstantiation::Range n | t.inNode(n))
+    or
     expectation = "source" and
     exists(RemoteFlowSource n | t.inNode(n))
     or
@@ -74,6 +83,15 @@ query predicate failingPositiveTests(string res, string expectation, InlineTest
   res = "FAILED" and
   t.hasPositiveTest(expectation) and
   (
+    expectation = "headerDefinition" and
+    not exists(Http::HeaderDefinition n | t.inNode(n))
+    or
+    expectation = "cookieDefinition" and
+    not exists(Http::CookieDefinition n | t.inNode(n))
+    or
+    expectation = "templateInstantiation" and
+    not exists(Templating::TemplateInstantiation::Range n | t.inNode(n))
+    or
     expectation = "source" and
     not exists(RemoteFlowSource n | t.inNode(n))
     or
@@ -115,6 +133,15 @@ query predicate passingNegativeTests(string res, string expectation, InlineTest
   res = "PASSED" and
   t.hasNegativeTest(expectation) and
   (
+    expectation = "!headerDefinition" and
+    not exists(Http::HeaderDefinition n | t.inNode(n))
+    or
+    expectation = "!cookieDefinition" and
+    not exists(Http::CookieDefinition n | t.inNode(n))
+    or
+    expectation = "!templateInstantiation" and
+    not exists(Templating::TemplateInstantiation::Range n | t.inNode(n))
+    or
     expectation = "!source" and
     not exists(RemoteFlowSource n | t.inNode(n))
     or
@@ -156,6 +183,15 @@ query predicate failingNegativeTests(string res, string expectation, InlineTest
   res = "FAILED" and
   t.hasNegativeTest(expectation) and
   (
+    expectation = "!headerDefinition" and
+    exists(Http::HeaderDefinition n | t.inNode(n))
+    or
+    expectation = "!cookieDefinition" and
+    exists(Http::CookieDefinition n | t.inNode(n))
+    or
+    expectation = "!templateInstantiation" and
+    exists(Templating::TemplateInstantiation::Range n | t.inNode(n))
+    or
     expectation = "!source" and
     exists(RemoteFlowSource n | t.inNode(n))
     or
@@ -192,3 +228,4 @@ query predicate failingNegativeTests(string res, string expectation, InlineTest
     exists(RequestForgery::Sink n | t.inNode(n))
   )
 }
+
diff --git a/javascript/ql/test/library-tests/frameworks/Spife/lib/views/index.js b/javascript/ql/test/library-tests/frameworks/Spife/lib/views/index.js
index c64299853bf..83488be55ae 100644
--- a/javascript/ql/test/library-tests/frameworks/Spife/lib/views/index.js
+++ b/javascript/ql/test/library-tests/frameworks/Spife/lib/views/index.js
@@ -54,7 +54,7 @@ function redirect(req, context) { // test: handler
   return reply.redirect(context.get('redirect_url')) // test: redirectSink, source, stackTraceExposureSink
 }
 function raw2(req, context) { // test: handler
-  return reply.cookie({ "test": req.query.name }, "test", req.query.name, { "httpOnly": false, "secure": false }) // test: source, cleartextStorageSink, stackTraceExposureSink
+  return reply.cookie({ "test": req.query.name }, "test", req.query.name, { "httpOnly": false, "secure": false }) // test: source, cleartextStorageSink, stackTraceExposureSink, cookieDefinition
 }
 
 function test1(req, context) { // test: handler
@@ -62,9 +62,9 @@ function test1(req, context) { // test: handler
     case 'json':
       return { "some": req.query.name } // test: source, stackTraceExposureSink
     case 'html':
-      return reply.header('<p>' + req.query.name + '</p>', 'content-type', 'text/html') // test: source, xssSink, stackTraceExposureSink, xss
+      return reply.header('<p>' + req.query.name + '</p>', 'content-type', 'text/html') // test: source, xssSink, stackTraceExposureSink, xss, headerDefinition
     case 'plain':
-      return reply.header('<p>' + req.query.name + '</p>', { 'content-type': 'text/plain' }) // test: source, stackTraceExposureSink, !xssSink, !xss
+      return reply.header('<p>' + req.query.name + '</p>', { 'content-type': 'text/plain' }) // test: source, stackTraceExposureSink, !xssSink, !xss, headerDefinition
   }
   return 'well, I guess you just want plaintext.'
 }
@@ -74,7 +74,7 @@ function test2(req, context) { // test: handler
     case 'json':
       return { "some": req.query.name } // test: source, stackTraceExposureSink
     case 'html':
-      return reply.header('<p>' + req.query.name + '</p>', { 'content-type': 'text/plain' }) // test: source, stackTraceExposureSink, !xssSink, !xss
+      return reply.header('<p>' + req.query.name + '</p>', { 'content-type': 'text/plain' }) // test: source, stackTraceExposureSink, !xssSink, !xss, headerDefinition
   }
   return 'well, I guess you just want plaintext.'
 }
@@ -104,7 +104,7 @@ function test6(req, context) { // test: handler
   if (message.contains('foo')) {
     return reply(message, 200, { 'npm-notice': message }) // test: stackTraceExposureSink, !xssSink, !xss
   } else {
-    return reply(message, 200, { 'npm-notice': message, 'content-type': 'text/html' }) // test: stackTraceExposureSink, xssSink, xss
+    return reply(message, 200, { 'npm-notice': message, 'content-type': 'text/html' }) // test: stackTraceExposureSink, xssSink, xss, headerDefinition
   }
 }
 
diff --git a/javascript/ql/test/library-tests/frameworks/Spife/tests.expected b/javascript/ql/test/library-tests/frameworks/Spife/tests.expected
index 98c16194268..3d83ca43213 100644
--- a/javascript/ql/test/library-tests/frameworks/Spife/tests.expected
+++ b/javascript/ql/test/library-tests/frameworks/Spife/tests.expected
@@ -1,6 +1,7 @@
 passingPositiveTests
 | PASSED | candidateHandler | lib/views/index.js:82:32:82:56 | // test ... Handler |
-| PASSED | cleartextStorageSink | lib/views/index.js:57:115:57:175 | // test ... ureSink |
+| PASSED | cleartextStorageSink | lib/views/index.js:57:115:57:193 | // test ... inition |
+| PASSED | cookieDefinition | lib/views/index.js:57:115:57:193 | // test ... inition |
 | PASSED | corsMiconfigurationSink | lib/views/index.js:45:41:45:72 | // test ... ionSink |
 | PASSED | handler | lib/views/index.js:23:40:23:55 | // test: handler |
 | PASSED | handler | lib/views/index.js:28:35:28:50 | // test: handler |
@@ -12,6 +13,10 @@ passingPositiveTests
 | PASSED | handler | lib/views/index.js:86:32:86:47 | // test: handler |
 | PASSED | handler | lib/views/index.js:93:32:93:47 | // test: handler |
 | PASSED | handler | lib/views/index.js:100:32:100:47 | // test: handler |
+| PASSED | headerDefinition | lib/views/index.js:65:89:65:159 | // test ... inition |
+| PASSED | headerDefinition | lib/views/index.js:67:94:67:166 | // test ... inition |
+| PASSED | headerDefinition | lib/views/index.js:77:94:77:166 | // test ... inition |
+| PASSED | headerDefinition | lib/views/index.js:107:88:107:150 | // test ... inition |
 | PASSED | redirectSink | lib/views/index.js:54:54:54:106 | // test ... ureSink |
 | PASSED | source | lib/views/index.js:24:56:24:70 | // test: source |
 | PASSED | source | lib/views/index.js:29:28:29:42 | // test: source |
@@ -26,12 +31,12 @@ passingPositiveTests
 | PASSED | source | lib/views/index.js:42:24:42:38 | // test: source |
 | PASSED | source | lib/views/index.js:43:39:43:91 | // test ... nk, xss |
 | PASSED | source | lib/views/index.js:54:54:54:106 | // test ... ureSink |
-| PASSED | source | lib/views/index.js:57:115:57:175 | // test ... ureSink |
+| PASSED | source | lib/views/index.js:57:115:57:193 | // test ... inition |
 | PASSED | source | lib/views/index.js:63:41:63:79 | // test ... ureSink |
-| PASSED | source | lib/views/index.js:65:89:65:141 | // test ... nk, xss |
-| PASSED | source | lib/views/index.js:67:94:67:148 | // test ... k, !xss |
+| PASSED | source | lib/views/index.js:65:89:65:159 | // test ... inition |
+| PASSED | source | lib/views/index.js:67:94:67:166 | // test ... inition |
 | PASSED | source | lib/views/index.js:75:41:75:79 | // test ... ureSink |
-| PASSED | source | lib/views/index.js:77:94:77:148 | // test ... k, !xss |
+| PASSED | source | lib/views/index.js:77:94:77:166 | // test ... inition |
 | PASSED | source | lib/views/index.js:83:49:83:103 | // test ... k, !xss |
 | PASSED | source | lib/views/index.js:87:25:87:39 | // test: source |
 | PASSED | source | lib/views/index.js:94:25:94:39 | // test: source |
@@ -40,32 +45,33 @@ passingPositiveTests
 | PASSED | stackTraceExposureSink | lib/views/index.js:38:61:38:122 | // test ... ureSink |
 | PASSED | stackTraceExposureSink | lib/views/index.js:43:39:43:91 | // test ... nk, xss |
 | PASSED | stackTraceExposureSink | lib/views/index.js:54:54:54:106 | // test ... ureSink |
-| PASSED | stackTraceExposureSink | lib/views/index.js:57:115:57:175 | // test ... ureSink |
+| PASSED | stackTraceExposureSink | lib/views/index.js:57:115:57:193 | // test ... inition |
 | PASSED | stackTraceExposureSink | lib/views/index.js:63:41:63:79 | // test ... ureSink |
-| PASSED | stackTraceExposureSink | lib/views/index.js:65:89:65:141 | // test ... nk, xss |
-| PASSED | stackTraceExposureSink | lib/views/index.js:67:94:67:148 | // test ... k, !xss |
+| PASSED | stackTraceExposureSink | lib/views/index.js:65:89:65:159 | // test ... inition |
+| PASSED | stackTraceExposureSink | lib/views/index.js:67:94:67:166 | // test ... inition |
 | PASSED | stackTraceExposureSink | lib/views/index.js:75:41:75:79 | // test ... ureSink |
-| PASSED | stackTraceExposureSink | lib/views/index.js:77:94:77:148 | // test ... k, !xss |
+| PASSED | stackTraceExposureSink | lib/views/index.js:77:94:77:166 | // test ... inition |
 | PASSED | stackTraceExposureSink | lib/views/index.js:83:49:83:103 | // test ... k, !xss |
 | PASSED | stackTraceExposureSink | lib/views/index.js:90:57:90:103 | // test ... k, !xss |
 | PASSED | stackTraceExposureSink | lib/views/index.js:97:30:97:76 | // test ... k, !xss |
 | PASSED | stackTraceExposureSink | lib/views/index.js:105:59:105:105 | // test ... k, !xss |
-| PASSED | stackTraceExposureSink | lib/views/index.js:107:88:107:132 | // test ... nk, xss |
+| PASSED | stackTraceExposureSink | lib/views/index.js:107:88:107:150 | // test ... inition |
 | PASSED | stackTraceExposureSink | lib/views/index.js:112:34:112:72 | // test ... ureSink |
+| PASSED | templateInstantiation | lib/views/index.js:38:61:38:122 | // test ... ureSink |
 | PASSED | xss | lib/views/index.js:43:39:43:91 | // test ... nk, xss |
-| PASSED | xss | lib/views/index.js:65:89:65:141 | // test ... nk, xss |
-| PASSED | xss | lib/views/index.js:107:88:107:132 | // test ... nk, xss |
+| PASSED | xss | lib/views/index.js:65:89:65:159 | // test ... inition |
+| PASSED | xss | lib/views/index.js:107:88:107:150 | // test ... inition |
 | PASSED | xssSink | lib/views/index.js:43:39:43:91 | // test ... nk, xss |
-| PASSED | xssSink | lib/views/index.js:65:89:65:141 | // test ... nk, xss |
-| PASSED | xssSink | lib/views/index.js:107:88:107:132 | // test ... nk, xss |
+| PASSED | xssSink | lib/views/index.js:65:89:65:159 | // test ... inition |
+| PASSED | xssSink | lib/views/index.js:107:88:107:150 | // test ... inition |
 failingPositiveTests
 passingNegativeTests
-| PASSED | !xss | lib/views/index.js:67:94:67:148 | // test ... k, !xss |
-| PASSED | !xss | lib/views/index.js:77:94:77:148 | // test ... k, !xss |
+| PASSED | !xss | lib/views/index.js:67:94:67:166 | // test ... inition |
+| PASSED | !xss | lib/views/index.js:77:94:77:166 | // test ... inition |
 | PASSED | !xss | lib/views/index.js:83:49:83:103 | // test ... k, !xss |
 | PASSED | !xss | lib/views/index.js:97:30:97:76 | // test ... k, !xss |
-| PASSED | !xssSink | lib/views/index.js:67:94:67:148 | // test ... k, !xss |
-| PASSED | !xssSink | lib/views/index.js:77:94:77:148 | // test ... k, !xss |
+| PASSED | !xssSink | lib/views/index.js:67:94:67:166 | // test ... inition |
+| PASSED | !xssSink | lib/views/index.js:77:94:77:166 | // test ... inition |
 | PASSED | !xssSink | lib/views/index.js:83:49:83:103 | // test ... k, !xss |
 | PASSED | !xssSink | lib/views/index.js:97:30:97:76 | // test ... k, !xss |
 failingNegativeTests
diff --git a/javascript/ql/test/library-tests/frameworks/Spife/tests.ql b/javascript/ql/test/library-tests/frameworks/Spife/tests.ql
index 5666ca201ad..b52e3be5256 100644
--- a/javascript/ql/test/library-tests/frameworks/Spife/tests.ql
+++ b/javascript/ql/test/library-tests/frameworks/Spife/tests.ql
@@ -33,6 +33,15 @@ query predicate passingPositiveTests(string res, string expectation, InlineTest
   res = "PASSED" and
   t.hasPositiveTest(expectation) and
   (
+    expectation = "headerDefinition" and
+    exists(Http::HeaderDefinition n | t.inNode(n))
+    or
+    expectation = "cookieDefinition" and
+    exists(Http::CookieDefinition n | t.inNode(n))
+    or
+    expectation = "templateInstantiation" and
+    exists(Templating::TemplateInstantiation::Range n | t.inNode(n))
+    or
     expectation = "source" and
     exists(RemoteFlowSource n | t.inNode(n))
     or
@@ -74,6 +83,15 @@ query predicate failingPositiveTests(string res, string expectation, InlineTest
   res = "FAILED" and
   t.hasPositiveTest(expectation) and
   (
+    expectation = "headerDefinition" and
+    not exists(Http::HeaderDefinition n | t.inNode(n))
+    or
+    expectation = "cookieDefinition" and
+    not exists(Http::CookieDefinition n | t.inNode(n))
+    or
+    expectation = "templateInstantiation" and
+    not exists(Templating::TemplateInstantiation::Range n | t.inNode(n))
+    or
     expectation = "source" and
     not exists(RemoteFlowSource n | t.inNode(n))
     or
@@ -115,6 +133,15 @@ query predicate passingNegativeTests(string res, string expectation, InlineTest
   res = "PASSED" and
   t.hasNegativeTest(expectation) and
   (
+    expectation = "!headerDefinition" and
+    not exists(Http::HeaderDefinition n | t.inNode(n))
+    or
+    expectation = "!cookieDefinition" and
+    not exists(Http::CookieDefinition n | t.inNode(n))
+    or
+    expectation = "!templateInstantiation" and
+    not exists(Templating::TemplateInstantiation::Range n | t.inNode(n))
+    or
     expectation = "!source" and
     not exists(RemoteFlowSource n | t.inNode(n))
     or
@@ -156,6 +183,15 @@ query predicate failingNegativeTests(string res, string expectation, InlineTest
   res = "FAILED" and
   t.hasNegativeTest(expectation) and
   (
+    expectation = "!headerDefinition" and
+    exists(Http::HeaderDefinition n | t.inNode(n))
+    or
+    expectation = "!cookieDefinition" and
+    exists(Http::CookieDefinition n | t.inNode(n))
+    or
+    expectation = "!templateInstantiation" and
+    exists(Templating::TemplateInstantiation::Range n | t.inNode(n))
+    or
     expectation = "!source" and
     exists(RemoteFlowSource n | t.inNode(n))
     or

From 31d271b8e18099550ef5b520de1feeb68767f4d7 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Alvaro=20Mu=C3=B1oz?= <pwntester@github.com>
Date: Wed, 19 Oct 2022 17:32:34 +0200
Subject: [PATCH 0016/1420] Fix format errors

---
 javascript/ql/test/library-tests/frameworks/Restify2/tests.ql | 1 -
 1 file changed, 1 deletion(-)

diff --git a/javascript/ql/test/library-tests/frameworks/Restify2/tests.ql b/javascript/ql/test/library-tests/frameworks/Restify2/tests.ql
index 7cc936d12ec..b52e3be5256 100644
--- a/javascript/ql/test/library-tests/frameworks/Restify2/tests.ql
+++ b/javascript/ql/test/library-tests/frameworks/Restify2/tests.ql
@@ -228,4 +228,3 @@ query predicate failingNegativeTests(string res, string expectation, InlineTest
     exists(RequestForgery::Sink n | t.inNode(n))
   )
 }
-

From 976dd7f99fa9b69ed6358de0f8597feca728f859 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Alvaro=20Mu=C3=B1oz?= <pwntester@github.com>
Date: Wed, 19 Oct 2022 18:14:25 +0200
Subject: [PATCH 0017/1420] Fix format errors

---
 .../semmle/javascript/frameworks/Spife.qll    | 23 +++++--------------
 1 file changed, 6 insertions(+), 17 deletions(-)

diff --git a/javascript/ql/lib/semmle/javascript/frameworks/Spife.qll b/javascript/ql/lib/semmle/javascript/frameworks/Spife.qll
index 09c7850bd48..01649d89d4f 100644
--- a/javascript/ql/lib/semmle/javascript/frameworks/Spife.qll
+++ b/javascript/ql/lib/semmle/javascript/frameworks/Spife.qll
@@ -207,9 +207,7 @@ module Spife {
         rh.getARequestSource().ref().getAPropertyRead(["headers", "rawHeaders"]).getAPropertyRead()
     }
 
-    override string getAHeaderName() {
-      result = super.getPropertyName().toLowerCase()
-    }
+    override string getAHeaderName() { result = super.getPropertyName().toLowerCase() }
 
     override RouteHandler getRouteHandler() { result = rh }
 
@@ -233,9 +231,7 @@ module Spife {
       result = this and
       t.start()
       or
-      exists(DataFlow::TypeTracker t2 |
-        result = this.reachesHandlerReturn(t2).track(t2, t)
-      )
+      exists(DataFlow::TypeTracker t2 | result = this.reachesHandlerReturn(t2).track(t2, t))
     }
 
     /**
@@ -254,7 +250,6 @@ module Spife {
    * An HTTP header defined in a Spife response.
    */
   private class HeaderDefinition extends Http::ExplicitHeaderDefinition, DataFlow::MethodCallNode instanceof ReplySource {
-
     HeaderDefinition() {
       // reply.header(RESPONSE, 'Cache-Control', 'no-cache')
       exists(DataFlow::MethodCallNode call |
@@ -316,7 +311,6 @@ module Spife {
    */
   private class ContentTypeRouteHandlerHeader extends Http::ImplicitHeaderDefinition,
     DataFlow::FunctionNode instanceof RouteHandler {
-
     override predicate defines(string headerName, string headerValue) {
       headerName = "content-type" and headerValue = "application/json"
     }
@@ -328,7 +322,6 @@ module Spife {
    * An HTTP cookie defined in a Spife HTTP response.
    */
   private class CookieDefinition extends Http::CookieDefinition, DataFlow::MethodCallNode instanceof ReplySource {
-
     CookieDefinition() {
       // reply.cookie(RESPONSE, 'TEST', 'FOO', {"maxAge": 1000, "httpOnly": true, "secure": true})
       this.ref().(DataFlow::MethodCallNode).getMethodName() = "cookie"
@@ -400,10 +393,7 @@ module Spife {
    * An invocation of the `redirect` method of an HTTP response object.
    */
   private class RedirectInvocation extends Http::RedirectInvocation, DataFlow::MethodCallNode instanceof ReplySource {
-
-    RedirectInvocation() {
-      this.ref().(DataFlow::MethodCallNode).getMethodName() = "redirect"
-    }
+    RedirectInvocation() { this.ref().(DataFlow::MethodCallNode).getMethodName() = "redirect" }
 
     override DataFlow::Node getUrlArgument() { result = this.getAnArgument() }
 
@@ -413,10 +403,9 @@ module Spife {
   /**
    * A call to `reply.template('template', { ... })`, seen as a template instantiation.
    */
-  private class TemplateCall extends Templating::TemplateInstantiation::Range, DataFlow::MethodCallNode instanceof ReplySource {
-    TemplateCall() {
-      this.getMethodName() = "template"
-    }
+  private class TemplateCall extends Templating::TemplateInstantiation::Range,
+    DataFlow::MethodCallNode instanceof ReplySource {
+    TemplateCall() { this.getMethodName() = "template" }
 
     override DataFlow::SourceNode getOutput() { result = this }
 

From 009403b61ec599878eb93af66e87b0fa36a3e185 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Alvaro=20Mu=C3=B1oz?= <pwntester@github.com>
Date: Wed, 19 Oct 2022 22:18:13 +0200
Subject: [PATCH 0018/1420] Add QLDoc for FormatterSetup.getAFormatterHandler

---
 javascript/ql/lib/semmle/javascript/frameworks/Restify.qll | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/javascript/ql/lib/semmle/javascript/frameworks/Restify.qll b/javascript/ql/lib/semmle/javascript/frameworks/Restify.qll
index 1556f31c630..3c4f1e1fd8a 100644
--- a/javascript/ql/lib/semmle/javascript/frameworks/Restify.qll
+++ b/javascript/ql/lib/semmle/javascript/frameworks/Restify.qll
@@ -262,6 +262,9 @@ module Restify {
           .hasPropertyWrite("formatters", formatters)
     }
 
+    /**
+     * Gets the formatter handler installed by this setup.
+     */
     DataFlow::FunctionNode getAFormatterHandler() { formatters.hasPropertyWrite(_, result) }
   }
 

From c7ac2379689b2f4d05081d852c9293def8209a06 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Alvaro=20Mu=C3=B1oz?= <pwntester@github.com>
Date: Wed, 19 Oct 2022 23:41:37 +0200
Subject: [PATCH 0019/1420] Update test results after merging new XSS
 improvements

---
 .../ql/test/library-tests/frameworks/Spife/tests.expected | 8 ++++----
 1 file changed, 4 insertions(+), 4 deletions(-)

diff --git a/javascript/ql/test/library-tests/frameworks/Spife/tests.expected b/javascript/ql/test/library-tests/frameworks/Spife/tests.expected
index 3d83ca43213..717a8d44973 100644
--- a/javascript/ql/test/library-tests/frameworks/Spife/tests.expected
+++ b/javascript/ql/test/library-tests/frameworks/Spife/tests.expected
@@ -69,13 +69,13 @@ passingNegativeTests
 | PASSED | !xss | lib/views/index.js:67:94:67:166 | // test ... inition |
 | PASSED | !xss | lib/views/index.js:77:94:77:166 | // test ... inition |
 | PASSED | !xss | lib/views/index.js:83:49:83:103 | // test ... k, !xss |
+| PASSED | !xss | lib/views/index.js:90:57:90:103 | // test ... k, !xss |
 | PASSED | !xss | lib/views/index.js:97:30:97:76 | // test ... k, !xss |
+| PASSED | !xss | lib/views/index.js:105:59:105:105 | // test ... k, !xss |
 | PASSED | !xssSink | lib/views/index.js:67:94:67:166 | // test ... inition |
 | PASSED | !xssSink | lib/views/index.js:77:94:77:166 | // test ... inition |
 | PASSED | !xssSink | lib/views/index.js:83:49:83:103 | // test ... k, !xss |
+| PASSED | !xssSink | lib/views/index.js:90:57:90:103 | // test ... k, !xss |
 | PASSED | !xssSink | lib/views/index.js:97:30:97:76 | // test ... k, !xss |
+| PASSED | !xssSink | lib/views/index.js:105:59:105:105 | // test ... k, !xss |
 failingNegativeTests
-| FAILED | !xss | lib/views/index.js:90:57:90:103 | // test ... k, !xss |
-| FAILED | !xss | lib/views/index.js:105:59:105:105 | // test ... k, !xss |
-| FAILED | !xssSink | lib/views/index.js:90:57:90:103 | // test ... k, !xss |
-| FAILED | !xssSink | lib/views/index.js:105:59:105:105 | // test ... k, !xss |

From 742e4aa471c74ab7a3cad06893b91480937ea430 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Alvaro=20Mu=C3=B1oz?= <pwntester@github.com>
Date: Mon, 24 Oct 2022 16:17:11 +0200
Subject: [PATCH 0020/1420] Apply suggestions from code review

Co-authored-by: Erik Krogh Kristensen <erik-krogh@github.com>
---
 .../semmle/javascript/frameworks/Restify.qll    |  8 +++-----
 .../lib/semmle/javascript/frameworks/Spife.qll  | 17 ++++++++---------
 2 files changed, 11 insertions(+), 14 deletions(-)

diff --git a/javascript/ql/lib/semmle/javascript/frameworks/Restify.qll b/javascript/ql/lib/semmle/javascript/frameworks/Restify.qll
index 3c4f1e1fd8a..10c5378e91e 100644
--- a/javascript/ql/lib/semmle/javascript/frameworks/Restify.qll
+++ b/javascript/ql/lib/semmle/javascript/frameworks/Restify.qll
@@ -384,7 +384,7 @@ module Restify {
   }
 
   /**
-   * The URL of a REstify client, viewed as a sink for request forgery.
+   * The URL of a Restify client, viewed as a sink for request forgery.
    */
   class RequestForgerySink extends RFC::RequestForgery::Sink {
     RequestForgerySink() {
@@ -435,8 +435,7 @@ module Restify {
    * A header produced by a route handler with no explicit declaration of a Content-Type.
    */
   private class ContentTypeRouteHandlerHeader extends Http::ImplicitHeaderDefinition,
-    DataFlow::FunctionNode {
-    ContentTypeRouteHandlerHeader() { this instanceof RouteHandler }
+    DataFlow::FunctionNode instanceof RouteHandler {
 
     override predicate defines(string headerName, string headerValue) {
       headerName = "content-type" and headerValue = "application/json"
@@ -454,8 +453,7 @@ module Restify {
     override DataFlow::SourceNode getAReference() { result = def.ref() }
   }
 
-  private class RoutingTreeSetup extends Routing::RouteSetup::MethodCall {
-    RoutingTreeSetup() { this instanceof RouteSetup }
+  private class RoutingTreeSetup extends Routing::RouteSetup::MethodCall instanceof RouteSetup {
 
     override string getRelativePath() {
       not this.getMethodName() = ["use", "pre", "param", "on"] and // do not treat parameter name as a path
diff --git a/javascript/ql/lib/semmle/javascript/frameworks/Spife.qll b/javascript/ql/lib/semmle/javascript/frameworks/Spife.qll
index 01649d89d4f..36c796bccb1 100644
--- a/javascript/ql/lib/semmle/javascript/frameworks/Spife.qll
+++ b/javascript/ql/lib/semmle/javascript/frameworks/Spife.qll
@@ -186,8 +186,7 @@ module Spife {
     string kind;
 
     ContextInputAccess() {
-      request.ref().flowsTo(super.getReceiver()) and
-      super.getMethodName() = "get" and
+      this = request.ref().getAMethodCall("get")
       kind = "path"
     }
 
@@ -261,7 +260,7 @@ module Spife {
 
     override predicate definesHeaderValue(string headerName, DataFlow::Node headerValue) {
       // reply.header(RESPONSE, 'Cache-Control', 'no-cache')
-      headerName = this.getNameNode().getStringValue() and
+      this.getNameNode().mayHaveStringValue(headerName) and
       headerValue = this.getArgument(2)
     }
 
@@ -279,10 +278,10 @@ module Spife {
     MultipleHeaderDefinitions() {
       // reply.header(RESPONSE, {'Cache-Control': 'no-cache'})
       // reply(RESPONSE, {'Cache-Control': 'no-cache'})
-      reply.ref().(DataFlow::CallNode).getCalleeName() = ["header", "reply"] and
-      reply.ref().(DataFlow::CallNode).getAnArgument().getALocalSource() instanceof
-        DataFlow::ObjectLiteralNode and
-      this = reply
+      exists(DataFlow::CallNode call | call = [reply.ref(), reply.ref().getAMethodCall("header")] | 
+        call.getAnArgument().getALocalSource() instanceof DataFlow::ObjectLiteralNode and
+        this = call
+      )
     }
 
     /**
@@ -321,10 +320,10 @@ module Spife {
   /**
    * An HTTP cookie defined in a Spife HTTP response.
    */
-  private class CookieDefinition extends Http::CookieDefinition, DataFlow::MethodCallNode instanceof ReplySource {
+  private class CookieDefinition extends Http::CookieDefinition, DataFlow::MethodCallNode {
     CookieDefinition() {
       // reply.cookie(RESPONSE, 'TEST', 'FOO', {"maxAge": 1000, "httpOnly": true, "secure": true})
-      this.ref().(DataFlow::MethodCallNode).getMethodName() = "cookie"
+      this = any(ReplySource r).ref().getAMethodCall("cookie")
     }
 
     override DataFlow::Node getNameArgument() { result = this.getArgument(1) }

From aafef382dca26e28ef6ea6ead252d4019736ebe9 Mon Sep 17 00:00:00 2001
From: erik-krogh <erik-krogh@github.com>
Date: Mon, 24 Oct 2022 18:57:24 +0200
Subject: [PATCH 0021/1420] refactor StringPercentCall#getFormatArgument

---
 .../codeql/ruby/frameworks/StringFormatters.qll    | 14 ++++++++------
 1 file changed, 8 insertions(+), 6 deletions(-)

diff --git a/ruby/ql/lib/codeql/ruby/frameworks/StringFormatters.qll b/ruby/ql/lib/codeql/ruby/frameworks/StringFormatters.qll
index b11fba8301f..da9ce58345e 100644
--- a/ruby/ql/lib/codeql/ruby/frameworks/StringFormatters.qll
+++ b/ruby/ql/lib/codeql/ruby/frameworks/StringFormatters.qll
@@ -87,13 +87,15 @@ class StringPercentCall extends PrintfStyleCall {
   override DataFlow::Node getFormatString() { result = this.getReceiver() }
 
   override DataFlow::Node getFormatArgument(int n) {
-    exists(DataFlow::CallNode arrCall |
-      arrCall = this.getArgument(0) and arrCall.getMethodName() = "[]"
-    |
-      n = -2 and // -2 is indicates that the index does not make sense in this context
-      result = arrCall.getKeywordArgument(_)
+    exists(Ast::Call call | call = this.asExpr().getExpr() |
+      exists(Ast::ArrayLiteral arrLit | arrLit = call.getArgument(0) |
+        result.asExpr().getExpr() = arrLit.getElement(n)
+      )
       or
-      result = arrCall.getArgument(n)
+      exists(Ast::HashLiteral hashLit | hashLit = call.getArgument(0) |
+        n = -2 and // -2 is indicates that the index does not make sense in this context
+        result.asExpr().getExpr() = hashLit.getAnElement()
+      )
     )
   }
 

From 37ea3f23f17bb9e2447b7f4a29ed14817088d275 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Alvaro=20Mu=C3=B1oz?= <pwntester@github.com>
Date: Tue, 25 Oct 2022 11:42:48 +0200
Subject: [PATCH 0022/1420] Refactored `ReplySource` to `ReplyCall`. Got rid of
 unnecessary `ref()`

---
 .../semmle/javascript/frameworks/Spife.qll    | 197 +++++++++---------
 .../frameworks/Spife/lib/views/index.js       |  20 +-
 .../frameworks/Spife/tests.expected           | 123 +++++++++--
 .../library-tests/frameworks/Spife/tests.ql   |  32 ++-
 4 files changed, 246 insertions(+), 126 deletions(-)

diff --git a/javascript/ql/lib/semmle/javascript/frameworks/Spife.qll b/javascript/ql/lib/semmle/javascript/frameworks/Spife.qll
index 36c796bccb1..a97eb98dc29 100644
--- a/javascript/ql/lib/semmle/javascript/frameworks/Spife.qll
+++ b/javascript/ql/lib/semmle/javascript/frameworks/Spife.qll
@@ -186,7 +186,7 @@ module Spife {
     string kind;
 
     ContextInputAccess() {
-      this = request.ref().getAMethodCall("get")
+      this = request.ref().getAMethodCall("get") and
       kind = "path"
     }
 
@@ -217,29 +217,25 @@ module Spife {
    * A Spife response source, that is, the response variable used by a
    * route handler.
    */
-  private class ReplySource extends Http::Servers::ResponseSource instanceof DataFlow::CallNode {
-    ReplySource() {
-      // const reply = require("@npm/spife/reply")
+  private class ReplyCall extends API::CallNode {
+    ReplyCall() {
       // reply(resp)
+      this = API::moduleImport(["@npm/spife/reply", "spife/reply"]).getACall()
+      or
       // reply.header(resp, 'foo', 'bar')
-      this = API::moduleImport(["@npm/spife/reply", "spife/reply"]).getACall() or
       this = API::moduleImport(["@npm/spife/reply", "spife/reply"]).getAMember().getACall()
     }
 
-    private DataFlow::SourceNode reachesHandlerReturn(DataFlow::TypeTracker t) {
-      result = this and
-      t.start()
-      or
-      exists(DataFlow::TypeTracker t2 | result = this.reachesHandlerReturn(t2).track(t2, t))
+    predicate isDirectReplyCall() {
+      this = API::moduleImport(["@npm/spife/reply", "spife/reply"]).getACall()
     }
 
     /**
      * Gets the route handler that provides this response.
      */
-    override RouteHandler getRouteHandler() {
+    RouteHandler getRouteHandler() {
       exists(RouteHandler handler |
-        handler.(DataFlow::FunctionNode).getAReturn().getALocalSource() =
-          this.reachesHandlerReturn(DataFlow::TypeTracker::end()) and
+        handler.getAReturn() = this.getReturn().getAValueReachableFromSource() and
         result = handler
       )
     }
@@ -248,47 +244,46 @@ module Spife {
   /**
    * An HTTP header defined in a Spife response.
    */
-  private class HeaderDefinition extends Http::ExplicitHeaderDefinition, DataFlow::MethodCallNode instanceof ReplySource {
-    HeaderDefinition() {
+  private class SingleHeaderDefinition extends Http::ExplicitHeaderDefinition instanceof ReplyCall {
+    SingleHeaderDefinition() {
       // reply.header(RESPONSE, 'Cache-Control', 'no-cache')
-      exists(DataFlow::MethodCallNode call |
-        this.ref() = call and
-        call.getMethodName() = "header" and
-        call.getNumArgument() = 3
-      )
+      this.getCalleeName() = "header" and
+      this.getNumArgument() = 3
     }
 
     override predicate definesHeaderValue(string headerName, DataFlow::Node headerValue) {
       // reply.header(RESPONSE, 'Cache-Control', 'no-cache')
       this.getNameNode().mayHaveStringValue(headerName) and
-      headerValue = this.getArgument(2)
+      headerValue = this.(DataFlow::MethodCallNode).getArgument(2)
     }
 
-    override DataFlow::Node getNameNode() { result = this.getArgument(1) }
+    override DataFlow::Node getNameNode() {
+      result = this.(DataFlow::MethodCallNode).getArgument(1)
+    }
 
-    override RouteHandler getRouteHandler() { result = this.getRouteHandler() }
+    override RouteHandler getRouteHandler() { result = this.(ReplyCall).getRouteHandler() }
   }
 
   /**
    * An invocation that sets any number of headers of the HTTP response.
    */
-  private class MultipleHeaderDefinitions extends Http::ExplicitHeaderDefinition, DataFlow::CallNode {
-    ReplySource reply;
-
+  private class MultipleHeaderDefinitions extends Http::ExplicitHeaderDefinition instanceof ReplyCall {
     MultipleHeaderDefinitions() {
-      // reply.header(RESPONSE, {'Cache-Control': 'no-cache'})
-      // reply(RESPONSE, {'Cache-Control': 'no-cache'})
-      exists(DataFlow::CallNode call | call = [reply.ref(), reply.ref().getAMethodCall("header")] | 
-        call.getAnArgument().getALocalSource() instanceof DataFlow::ObjectLiteralNode and
-        this = call
-      )
+      (
+        // reply.header(RESPONSE, {'Cache-Control': 'no-cache'})
+        this.getCalleeName() = "header"
+        or
+        // reply(RESPONSE, {'Cache-Control': 'no-cache'})
+        this.isDirectReplyCall()
+      ) and
+      this.getAnArgument().getALocalSource() instanceof DataFlow::ObjectLiteralNode
     }
 
     /**
      * Gets a reference to the multiple headers object that is to be set.
      */
-    private DataFlow::ObjectLiteralNode getAHeaderSource() {
-      result = this.getAnArgument().getALocalSource()
+    DataFlow::ObjectLiteralNode getAHeaderSource() {
+      result = this.(DataFlow::CallNode).getAnArgument().getALocalSource()
     }
 
     override predicate definesHeaderValue(string headerName, DataFlow::Node headerValue) {
@@ -302,58 +297,108 @@ module Spife {
       result = this.getAHeaderSource().getAPropertyWrite().getPropertyNameExpr().flow()
     }
 
-    override RouteHandler getRouteHandler() { result = reply.getRouteHandler() }
+    override RouteHandler getRouteHandler() { result = this.(ReplyCall).getRouteHandler() }
   }
 
   /**
    * A header produced by a route handler with no explicit declaration of a Content-Type.
    */
-  private class ContentTypeRouteHandlerHeader extends Http::ImplicitHeaderDefinition,
-    DataFlow::FunctionNode instanceof RouteHandler {
+  private class ContentTypeRouteHandlerHeader extends Http::ImplicitHeaderDefinition instanceof RouteHandler {
     override predicate defines(string headerName, string headerValue) {
       headerName = "content-type" and headerValue = "application/json"
     }
 
-    override Http::RouteHandler getRouteHandler() { result = this }
+    override RouteHandler getRouteHandler() { result = this }
   }
 
   /**
    * An HTTP cookie defined in a Spife HTTP response.
    */
-  private class CookieDefinition extends Http::CookieDefinition, DataFlow::MethodCallNode {
+  private class CookieDefinition extends Http::CookieDefinition instanceof ReplyCall {
     CookieDefinition() {
       // reply.cookie(RESPONSE, 'TEST', 'FOO', {"maxAge": 1000, "httpOnly": true, "secure": true})
-      this = any(ReplySource r).ref().getAMethodCall("cookie")
+      this.getCalleeName() = "cookie"
     }
 
-    override DataFlow::Node getNameArgument() { result = this.getArgument(1) }
+    //  this = any(ReplyCall r).ref().getAMethodCall("cookie")
+    override DataFlow::Node getNameArgument() { result = this.(ReplyCall).getArgument(1) }
 
-    override DataFlow::Node getValueArgument() { result = this.getArgument(2) }
+    override DataFlow::Node getValueArgument() { result = this.(ReplyCall).getArgument(2) }
 
-    override RouteHandler getRouteHandler() { result = this.getRouteHandler() }
+    override RouteHandler getRouteHandler() { result = this.(ReplyCall).getRouteHandler() }
   }
 
   /**
-   * A response argument passed to the `reply` method.
+   * A response sent using a method on the `reply` object.
    */
-  private class ReplyArgument extends Http::ResponseSendArgument, DataFlow::Node {
+  private class ReplyMethodCallArgument extends Http::ResponseSendArgument {
+    ReplyCall reply;
+
+    ReplyMethodCallArgument() {
+      // reply.header(RESPONSE, {'Cache-Control': 'no-cache'})
+      reply.getCalleeName() =
+        ["cookie", "link", "header", "headers", "raw", "status", "toStream", "vary"] and
+      reply.getArgument(0) = this
+    }
+
+    override RouteHandler getRouteHandler() { result = reply.getRouteHandler() }
+  }
+
+  /**
+   * A response sent using the `reply()` method.
+   */
+  private class ReplyCallArgument extends Http::ResponseSendArgument {
+    ReplyCall reply;
+
+    ReplyCallArgument() {
+      // reply(RESPONSE, {'Cache-Control': 'no-cache'})
+      reply.isDirectReplyCall() and
+      reply.getArgument(0) = this
+    }
+
+    override RouteHandler getRouteHandler() { result = reply.getRouteHandler() }
+  }
+
+  /**
+   * The return statement for a route handler.
+   */
+  private class RouteHandlerReturn extends Http::ResponseSendArgument {
     RouteHandler rh;
 
-    ReplyArgument() {
-      exists(ReplySource reply, DataFlow::CallNode call |
-        reply.ref() = call and
-        call.getCalleeName() =
-          ["reply", "cookie", "link", "header", "headers", "raw", "status", "toStream", "vary"] and
-        this = call.getArgument(0) and
-        rh = reply.getRouteHandler()
-      )
-      or
-      this = rh.getAReturn()
+    RouteHandlerReturn() {
+      this = rh.getAReturn() and not this.getALocalSource() instanceof ReplyCall
     }
 
     override RouteHandler getRouteHandler() { result = rh }
   }
 
+  /**
+   * A call to `reply.template('template', { ... })`, seen as a template instantiation.
+   */
+  private class TemplateCall extends Templating::TemplateInstantiation::Range instanceof ReplyCall {
+    TemplateCall() { this.getCalleeName() = "template" }
+
+    override DataFlow::SourceNode getOutput() { result = this }
+
+    override DataFlow::Node getTemplateFileNode() { result = this.(ReplyCall).getArgument(0) }
+
+    override DataFlow::Node getTemplateParamsNode() { result = this.(ReplyCall).getArgument(1) }
+  }
+
+  /**
+   * An object passed to the `template` method of the reply object.
+   */
+  private class TemplateObjectInput extends DataFlow::Node {
+    TemplateCall call;
+
+    TemplateObjectInput() { this = call.(ReplyCall).getArgument(1) }
+
+    /**
+     * Gets the route handler that uses this object.
+     */
+    RouteHandler getRouteHandler() { result = call.(ReplyCall).getRouteHandler() }
+  }
+
   /**
    * An expression passed to the `template` method of the reply object
    * as the value of a template variable.
@@ -361,55 +406,19 @@ module Spife {
   private class TemplateInput extends Http::ResponseBody {
     TemplateObjectInput obj;
 
-    TemplateInput() {
-      obj.getALocalSource().(DataFlow::ObjectLiteralNode).hasPropertyWrite(_, this)
-    }
+    TemplateInput() { obj.getALocalSource().hasPropertyWrite(_, this) }
 
     override RouteHandler getRouteHandler() { result = obj.getRouteHandler() }
   }
 
-  /**
-   * An object passed to the `template` method of the reply object.
-   */
-  private class TemplateObjectInput extends DataFlow::Node {
-    ReplySource reply;
-
-    TemplateObjectInput() {
-      exists(DataFlow::MethodCallNode call |
-        reply.ref() = call and
-        call.getMethodName() = "template" and
-        this = call.getArgument(1)
-      )
-    }
-
-    /**
-     * Gets the route handler that uses this object.
-     */
-    RouteHandler getRouteHandler() { result = reply.getRouteHandler() }
-  }
-
   /**
    * An invocation of the `redirect` method of an HTTP response object.
    */
-  private class RedirectInvocation extends Http::RedirectInvocation, DataFlow::MethodCallNode instanceof ReplySource {
-    RedirectInvocation() { this.ref().(DataFlow::MethodCallNode).getMethodName() = "redirect" }
+  private class RedirectInvocation extends Http::RedirectInvocation instanceof ReplyCall {
+    RedirectInvocation() { this.getCalleeName() = "redirect" }
 
     override DataFlow::Node getUrlArgument() { result = this.getAnArgument() }
 
     override RouteHandler getRouteHandler() { result = this.getRouteHandler() }
   }
-
-  /**
-   * A call to `reply.template('template', { ... })`, seen as a template instantiation.
-   */
-  private class TemplateCall extends Templating::TemplateInstantiation::Range,
-    DataFlow::MethodCallNode instanceof ReplySource {
-    TemplateCall() { this.getMethodName() = "template" }
-
-    override DataFlow::SourceNode getOutput() { result = this }
-
-    override DataFlow::Node getTemplateFileNode() { result = this.getArgument(0) }
-
-    override DataFlow::Node getTemplateParamsNode() { result = this.getArgument(1) }
-  }
 }
diff --git a/javascript/ql/test/library-tests/frameworks/Spife/lib/views/index.js b/javascript/ql/test/library-tests/frameworks/Spife/lib/views/index.js
index 83488be55ae..3f8706f46b3 100644
--- a/javascript/ql/test/library-tests/frameworks/Spife/lib/views/index.js
+++ b/javascript/ql/test/library-tests/frameworks/Spife/lib/views/index.js
@@ -35,23 +35,23 @@ function homepage(req, context) { // test: handler
   sink(req.urlObject.pathname) // test: source
   sink(context.get('package')) // test: source
   sink(context)
-  return reply.template('home', { target: req.query.name }) // test: source, templateInstantiation, stackTraceExposureSink
+  return reply.template('home', { target: req.query.name }) // test: source, templateInstantiation, stackTraceExposureSink, responseBody
 }
 
 function raw1(req, context) { // test: handler
   sink(req.query.name) // test: source
   return reply(req.query.name, 200, { // test: source, xssSink, stackTraceExposureSink, xss
-    "content-type": "text/html",
-    "access-control-allow-origin": "*", // test: corsMiconfigurationSink
-    "access-control-allow-headers": "Content-Type, Authorization, Content-Length, X-Requested-With",
-    "access-control-allow-methods": "GET, POST, PUT, DELETE, OPTIONS",
-    "access-control-allow-credentials": "true"
+    "content-type": "text/html", // test: headerDefinition
+    "access-control-allow-origin": "*", // test: corsMiconfigurationSink, headerDefinition
+    "access-control-allow-headers": "Content-Type, Authorization, Content-Length, X-Requested-With", // test: headerDefinition
+    "access-control-allow-methods": "GET, POST, PUT, DELETE, OPTIONS", // test: headerDefinition
+    "access-control-allow-credentials": "true" //test: headerDefinition
 
   })
 }
 
 function redirect(req, context) { // test: handler
-  return reply.redirect(context.get('redirect_url')) // test: redirectSink, source, stackTraceExposureSink
+  return reply.redirect(context.get('redirect_url')) // test: redirectSink, source
 }
 function raw2(req, context) { // test: handler
   return reply.cookie({ "test": req.query.name }, "test", req.query.name, { "httpOnly": false, "secure": false }) // test: source, cleartextStorageSink, stackTraceExposureSink, cookieDefinition
@@ -64,7 +64,7 @@ function test1(req, context) { // test: handler
     case 'html':
       return reply.header('<p>' + req.query.name + '</p>', 'content-type', 'text/html') // test: source, xssSink, stackTraceExposureSink, xss, headerDefinition
     case 'plain':
-      return reply.header('<p>' + req.query.name + '</p>', { 'content-type': 'text/plain' }) // test: source, stackTraceExposureSink, !xssSink, !xss, headerDefinition
+      return reply.header('<p>' + req.query.name + '</p>', { 'content-type': 'text/plain' }) // test: source, stackTraceExposureSink, !xssSink, !xss, headerDefinition, headerDefinition
   }
   return 'well, I guess you just want plaintext.'
 }
@@ -87,7 +87,7 @@ function test4(req, context) { // test: handler
   const body = req.body // test: source
   const newPackument = body['package-json']
   const message = `INFO: User invited to package ${newPackument._id} successfully.`
-  return reply(message, 200, { 'npm-notice': message }) // test: stackTraceExposureSink, !xssSink, !xss
+  return reply(message, 200, { 'npm-notice': message }) // test: stackTraceExposureSink, !xssSink, !xss, headerDefinition
 }
 
 function test5(req, context) { // test: handler
@@ -102,7 +102,7 @@ function test6(req, context) { // test: handler
   const newPackument = body['package-json']
   const message = `INFO: User invited to package ${newPackument._id} successfully.`
   if (message.contains('foo')) {
-    return reply(message, 200, { 'npm-notice': message }) // test: stackTraceExposureSink, !xssSink, !xss
+    return reply(message, 200, { 'npm-notice': message }) // test: stackTraceExposureSink, !xssSink, !xss, headerDefinition
   } else {
     return reply(message, 200, { 'npm-notice': message, 'content-type': 'text/html' }) // test: stackTraceExposureSink, xssSink, xss, headerDefinition
   }
diff --git a/javascript/ql/test/library-tests/frameworks/Spife/tests.expected b/javascript/ql/test/library-tests/frameworks/Spife/tests.expected
index 717a8d44973..dc4c3451ce0 100644
--- a/javascript/ql/test/library-tests/frameworks/Spife/tests.expected
+++ b/javascript/ql/test/library-tests/frameworks/Spife/tests.expected
@@ -1,8 +1,88 @@
+WARNING: Unused method getCredentialsHeader (tests.ql:70,26-46)
+test0
+| lib/views/index.js:23:1:26:1 | functio ... tned)\\n} | content-type | application/json |
+| lib/views/index.js:28:1:39:1 | functio ... eBody\\n} | content-type | application/json |
+| lib/views/index.js:41:1:51:1 | functio ... \\n  })\\n} | content-type | application/json |
+| lib/views/index.js:43:10:50:4 | reply(r ... n\\n\\n  }) | access-control-allow-credentials | true |
+| lib/views/index.js:43:10:50:4 | reply(r ... n\\n\\n  }) | access-control-allow-headers | Content-Type, Authorization, Content-Length, X-Requested-With |
+| lib/views/index.js:43:10:50:4 | reply(r ... n\\n\\n  }) | access-control-allow-methods | GET, POST, PUT, DELETE, OPTIONS |
+| lib/views/index.js:43:10:50:4 | reply(r ... n\\n\\n  }) | access-control-allow-origin | * |
+| lib/views/index.js:43:10:50:4 | reply(r ... n\\n\\n  }) | content-type | text/html |
+| lib/views/index.js:53:1:55:1 | functio ... ource\\n} | content-type | application/json |
+| lib/views/index.js:56:1:58:1 | functio ... ition\\n} | content-type | application/json |
+| lib/views/index.js:60:1:70:1 | functio ... ext.'\\n} | content-type | application/json |
+| lib/views/index.js:65:14:65:87 | reply.h ... /html') | content-type | text/html |
+| lib/views/index.js:67:14:67:92 | reply.h ... ain' }) | content-type | text/plain |
+| lib/views/index.js:72:1:80:1 | functio ... ext.'\\n} | content-type | application/json |
+| lib/views/index.js:77:14:77:92 | reply.h ... ain' }) | content-type | text/plain |
+| lib/views/index.js:82:1:84:1 | functio ...  !xss\\n} | content-type | application/json |
+| lib/views/index.js:86:1:91:1 | functio ... ition\\n} | content-type | application/json |
+| lib/views/index.js:93:1:98:1 | functio ...  !xss\\n} | content-type | application/json |
+| lib/views/index.js:100:1:109:1 | functio ... n\\n  }\\n} | content-type | application/json |
+| lib/views/index.js:107:12:107:86 | reply(m ... tml' }) | content-type | text/html |
+| lib/views/index.js:111:1:115:1 | functio ... \\n  })\\n} | content-type | application/json |
+test
+| lib/views/index.js:45:36:45:38 | "*" |
+test2
+| lib/views/index.js:43:16:43:29 | req.query.name |
+| lib/views/index.js:65:27:65:57 | '<p>' + ...  '</p>' |
+| lib/views/index.js:107:18:107:24 | message |
+test3
+| lib/views/index.js:43:16:43:29 | req.query.name |
+| lib/views/index.js:65:27:65:57 | '<p>' + ...  '</p>' |
+| lib/views/index.js:107:18:107:24 | message |
+test4
+| lib/views/index.js:23:1:26:1 | functio ... tned)\\n} | content-type | application/json |
+| lib/views/index.js:28:1:39:1 | functio ... eBody\\n} | content-type | application/json |
+| lib/views/index.js:41:1:51:1 | functio ... \\n  })\\n} | content-type | application/json |
+| lib/views/index.js:43:10:50:4 | reply(r ... n\\n\\n  }) | access-control-allow-credentials | true |
+| lib/views/index.js:43:10:50:4 | reply(r ... n\\n\\n  }) | access-control-allow-headers | Content-Type, Authorization, Content-Length, X-Requested-With |
+| lib/views/index.js:43:10:50:4 | reply(r ... n\\n\\n  }) | access-control-allow-methods | GET, POST, PUT, DELETE, OPTIONS |
+| lib/views/index.js:43:10:50:4 | reply(r ... n\\n\\n  }) | access-control-allow-origin | * |
+| lib/views/index.js:43:10:50:4 | reply(r ... n\\n\\n  }) | content-type | text/html |
+| lib/views/index.js:53:1:55:1 | functio ... ource\\n} | content-type | application/json |
+| lib/views/index.js:56:1:58:1 | functio ... ition\\n} | content-type | application/json |
+| lib/views/index.js:60:1:70:1 | functio ... ext.'\\n} | content-type | application/json |
+| lib/views/index.js:65:14:65:87 | reply.h ... /html') | content-type | text/html |
+| lib/views/index.js:67:14:67:92 | reply.h ... ain' }) | content-type | text/plain |
+| lib/views/index.js:72:1:80:1 | functio ... ext.'\\n} | content-type | application/json |
+| lib/views/index.js:77:14:77:92 | reply.h ... ain' }) | content-type | text/plain |
+| lib/views/index.js:82:1:84:1 | functio ...  !xss\\n} | content-type | application/json |
+| lib/views/index.js:86:1:91:1 | functio ... ition\\n} | content-type | application/json |
+| lib/views/index.js:93:1:98:1 | functio ...  !xss\\n} | content-type | application/json |
+| lib/views/index.js:100:1:109:1 | functio ... n\\n  }\\n} | content-type | application/json |
+| lib/views/index.js:107:12:107:86 | reply(m ... tml' }) | content-type | text/html |
+| lib/views/index.js:111:1:115:1 | functio ... \\n  })\\n} | content-type | application/json |
+test5
+| lib/views/index.js:23:1:26:1 | functio ... tned)\\n} | lib/views/index.js:23:1:26:1 | functio ... tned)\\n} | content-type |
+| lib/views/index.js:28:1:39:1 | functio ... eBody\\n} | lib/views/index.js:28:1:39:1 | functio ... eBody\\n} | content-type |
+| lib/views/index.js:41:1:51:1 | functio ... \\n  })\\n} | lib/views/index.js:41:1:51:1 | functio ... \\n  })\\n} | content-type |
+| lib/views/index.js:41:1:51:1 | functio ... \\n  })\\n} | lib/views/index.js:43:10:50:4 | reply(r ... n\\n\\n  }) | access-control-allow-credentials |
+| lib/views/index.js:41:1:51:1 | functio ... \\n  })\\n} | lib/views/index.js:43:10:50:4 | reply(r ... n\\n\\n  }) | access-control-allow-headers |
+| lib/views/index.js:41:1:51:1 | functio ... \\n  })\\n} | lib/views/index.js:43:10:50:4 | reply(r ... n\\n\\n  }) | access-control-allow-methods |
+| lib/views/index.js:41:1:51:1 | functio ... \\n  })\\n} | lib/views/index.js:43:10:50:4 | reply(r ... n\\n\\n  }) | access-control-allow-origin |
+| lib/views/index.js:41:1:51:1 | functio ... \\n  })\\n} | lib/views/index.js:43:10:50:4 | reply(r ... n\\n\\n  }) | content-type |
+| lib/views/index.js:53:1:55:1 | functio ... ource\\n} | lib/views/index.js:53:1:55:1 | functio ... ource\\n} | content-type |
+| lib/views/index.js:56:1:58:1 | functio ... ition\\n} | lib/views/index.js:56:1:58:1 | functio ... ition\\n} | content-type |
+| lib/views/index.js:60:1:70:1 | functio ... ext.'\\n} | lib/views/index.js:60:1:70:1 | functio ... ext.'\\n} | content-type |
+| lib/views/index.js:60:1:70:1 | functio ... ext.'\\n} | lib/views/index.js:65:14:65:87 | reply.h ... /html') | content-type |
+| lib/views/index.js:60:1:70:1 | functio ... ext.'\\n} | lib/views/index.js:67:14:67:92 | reply.h ... ain' }) | content-type |
+| lib/views/index.js:72:1:80:1 | functio ... ext.'\\n} | lib/views/index.js:72:1:80:1 | functio ... ext.'\\n} | content-type |
+| lib/views/index.js:72:1:80:1 | functio ... ext.'\\n} | lib/views/index.js:77:14:77:92 | reply.h ... ain' }) | content-type |
+| lib/views/index.js:82:1:84:1 | functio ...  !xss\\n} | lib/views/index.js:82:1:84:1 | functio ...  !xss\\n} | content-type |
+| lib/views/index.js:86:1:91:1 | functio ... ition\\n} | lib/views/index.js:86:1:91:1 | functio ... ition\\n} | content-type |
+| lib/views/index.js:86:1:91:1 | functio ... ition\\n} | lib/views/index.js:90:10:90:55 | reply(m ... sage }) | npm-notice |
+| lib/views/index.js:93:1:98:1 | functio ...  !xss\\n} | lib/views/index.js:93:1:98:1 | functio ...  !xss\\n} | content-type |
+| lib/views/index.js:100:1:109:1 | functio ... n\\n  }\\n} | lib/views/index.js:100:1:109:1 | functio ... n\\n  }\\n} | content-type |
+| lib/views/index.js:100:1:109:1 | functio ... n\\n  }\\n} | lib/views/index.js:105:12:105:57 | reply(m ... sage }) | npm-notice |
+| lib/views/index.js:100:1:109:1 | functio ... n\\n  }\\n} | lib/views/index.js:107:12:107:86 | reply(m ... tml' }) | content-type |
+| lib/views/index.js:100:1:109:1 | functio ... n\\n  }\\n} | lib/views/index.js:107:12:107:86 | reply(m ... tml' }) | npm-notice |
+| lib/views/index.js:111:1:115:1 | functio ... \\n  })\\n} | lib/views/index.js:111:1:115:1 | functio ... \\n  })\\n} | content-type |
 passingPositiveTests
 | PASSED | candidateHandler | lib/views/index.js:82:32:82:56 | // test ... Handler |
 | PASSED | cleartextStorageSink | lib/views/index.js:57:115:57:193 | // test ... inition |
 | PASSED | cookieDefinition | lib/views/index.js:57:115:57:193 | // test ... inition |
-| PASSED | corsMiconfigurationSink | lib/views/index.js:45:41:45:72 | // test ... ionSink |
+| PASSED | corsMiconfigurationSink | lib/views/index.js:45:41:45:90 | // test ... inition |
 | PASSED | handler | lib/views/index.js:23:40:23:55 | // test: handler |
 | PASSED | handler | lib/views/index.js:28:35:28:50 | // test: handler |
 | PASSED | handler | lib/views/index.js:41:31:41:46 | // test: handler |
@@ -13,11 +93,19 @@ passingPositiveTests
 | PASSED | handler | lib/views/index.js:86:32:86:47 | // test: handler |
 | PASSED | handler | lib/views/index.js:93:32:93:47 | // test: handler |
 | PASSED | handler | lib/views/index.js:100:32:100:47 | // test: handler |
+| PASSED | headerDefinition | lib/views/index.js:44:34:44:58 | // test ... inition |
+| PASSED | headerDefinition | lib/views/index.js:45:41:45:90 | // test ... inition |
+| PASSED | headerDefinition | lib/views/index.js:46:102:46:126 | // test ... inition |
+| PASSED | headerDefinition | lib/views/index.js:47:72:47:96 | // test ... inition |
+| PASSED | headerDefinition | lib/views/index.js:48:48:48:71 | //test: ... inition |
 | PASSED | headerDefinition | lib/views/index.js:65:89:65:159 | // test ... inition |
-| PASSED | headerDefinition | lib/views/index.js:67:94:67:166 | // test ... inition |
+| PASSED | headerDefinition | lib/views/index.js:67:94:67:184 | // test ... inition |
 | PASSED | headerDefinition | lib/views/index.js:77:94:77:166 | // test ... inition |
+| PASSED | headerDefinition | lib/views/index.js:90:57:90:121 | // test ... inition |
+| PASSED | headerDefinition | lib/views/index.js:105:59:105:123 | // test ... inition |
 | PASSED | headerDefinition | lib/views/index.js:107:88:107:150 | // test ... inition |
-| PASSED | redirectSink | lib/views/index.js:54:54:54:106 | // test ... ureSink |
+| PASSED | redirectSink | lib/views/index.js:54:54:54:82 | // test ...  source |
+| PASSED | responseBody | lib/views/index.js:38:61:38:136 | // test ... nseBody |
 | PASSED | source | lib/views/index.js:24:56:24:70 | // test: source |
 | PASSED | source | lib/views/index.js:29:28:29:42 | // test: source |
 | PASSED | source | lib/views/index.js:30:28:30:42 | // test: source |
@@ -27,14 +115,14 @@ passingPositiveTests
 | PASSED | source | lib/views/index.js:34:17:34:31 | // test: source |
 | PASSED | source | lib/views/index.js:35:32:35:46 | // test: source |
 | PASSED | source | lib/views/index.js:36:32:36:46 | // test: source |
-| PASSED | source | lib/views/index.js:38:61:38:122 | // test ... ureSink |
+| PASSED | source | lib/views/index.js:38:61:38:136 | // test ... nseBody |
 | PASSED | source | lib/views/index.js:42:24:42:38 | // test: source |
 | PASSED | source | lib/views/index.js:43:39:43:91 | // test ... nk, xss |
-| PASSED | source | lib/views/index.js:54:54:54:106 | // test ... ureSink |
+| PASSED | source | lib/views/index.js:54:54:54:82 | // test ...  source |
 | PASSED | source | lib/views/index.js:57:115:57:193 | // test ... inition |
 | PASSED | source | lib/views/index.js:63:41:63:79 | // test ... ureSink |
 | PASSED | source | lib/views/index.js:65:89:65:159 | // test ... inition |
-| PASSED | source | lib/views/index.js:67:94:67:166 | // test ... inition |
+| PASSED | source | lib/views/index.js:67:94:67:184 | // test ... inition |
 | PASSED | source | lib/views/index.js:75:41:75:79 | // test ... ureSink |
 | PASSED | source | lib/views/index.js:77:94:77:166 | // test ... inition |
 | PASSED | source | lib/views/index.js:83:49:83:103 | // test ... k, !xss |
@@ -42,22 +130,21 @@ passingPositiveTests
 | PASSED | source | lib/views/index.js:94:25:94:39 | // test: source |
 | PASSED | source | lib/views/index.js:101:25:101:39 | // test: source |
 | PASSED | source | lib/views/index.js:112:34:112:72 | // test ... ureSink |
-| PASSED | stackTraceExposureSink | lib/views/index.js:38:61:38:122 | // test ... ureSink |
+| PASSED | stackTraceExposureSink | lib/views/index.js:38:61:38:136 | // test ... nseBody |
 | PASSED | stackTraceExposureSink | lib/views/index.js:43:39:43:91 | // test ... nk, xss |
-| PASSED | stackTraceExposureSink | lib/views/index.js:54:54:54:106 | // test ... ureSink |
 | PASSED | stackTraceExposureSink | lib/views/index.js:57:115:57:193 | // test ... inition |
 | PASSED | stackTraceExposureSink | lib/views/index.js:63:41:63:79 | // test ... ureSink |
 | PASSED | stackTraceExposureSink | lib/views/index.js:65:89:65:159 | // test ... inition |
-| PASSED | stackTraceExposureSink | lib/views/index.js:67:94:67:166 | // test ... inition |
+| PASSED | stackTraceExposureSink | lib/views/index.js:67:94:67:184 | // test ... inition |
 | PASSED | stackTraceExposureSink | lib/views/index.js:75:41:75:79 | // test ... ureSink |
 | PASSED | stackTraceExposureSink | lib/views/index.js:77:94:77:166 | // test ... inition |
 | PASSED | stackTraceExposureSink | lib/views/index.js:83:49:83:103 | // test ... k, !xss |
-| PASSED | stackTraceExposureSink | lib/views/index.js:90:57:90:103 | // test ... k, !xss |
+| PASSED | stackTraceExposureSink | lib/views/index.js:90:57:90:121 | // test ... inition |
 | PASSED | stackTraceExposureSink | lib/views/index.js:97:30:97:76 | // test ... k, !xss |
-| PASSED | stackTraceExposureSink | lib/views/index.js:105:59:105:105 | // test ... k, !xss |
+| PASSED | stackTraceExposureSink | lib/views/index.js:105:59:105:123 | // test ... inition |
 | PASSED | stackTraceExposureSink | lib/views/index.js:107:88:107:150 | // test ... inition |
 | PASSED | stackTraceExposureSink | lib/views/index.js:112:34:112:72 | // test ... ureSink |
-| PASSED | templateInstantiation | lib/views/index.js:38:61:38:122 | // test ... ureSink |
+| PASSED | templateInstantiation | lib/views/index.js:38:61:38:136 | // test ... nseBody |
 | PASSED | xss | lib/views/index.js:43:39:43:91 | // test ... nk, xss |
 | PASSED | xss | lib/views/index.js:65:89:65:159 | // test ... inition |
 | PASSED | xss | lib/views/index.js:107:88:107:150 | // test ... inition |
@@ -66,16 +153,16 @@ passingPositiveTests
 | PASSED | xssSink | lib/views/index.js:107:88:107:150 | // test ... inition |
 failingPositiveTests
 passingNegativeTests
-| PASSED | !xss | lib/views/index.js:67:94:67:166 | // test ... inition |
+| PASSED | !xss | lib/views/index.js:67:94:67:184 | // test ... inition |
 | PASSED | !xss | lib/views/index.js:77:94:77:166 | // test ... inition |
 | PASSED | !xss | lib/views/index.js:83:49:83:103 | // test ... k, !xss |
-| PASSED | !xss | lib/views/index.js:90:57:90:103 | // test ... k, !xss |
+| PASSED | !xss | lib/views/index.js:90:57:90:121 | // test ... inition |
 | PASSED | !xss | lib/views/index.js:97:30:97:76 | // test ... k, !xss |
-| PASSED | !xss | lib/views/index.js:105:59:105:105 | // test ... k, !xss |
-| PASSED | !xssSink | lib/views/index.js:67:94:67:166 | // test ... inition |
+| PASSED | !xss | lib/views/index.js:105:59:105:123 | // test ... inition |
+| PASSED | !xssSink | lib/views/index.js:67:94:67:184 | // test ... inition |
 | PASSED | !xssSink | lib/views/index.js:77:94:77:166 | // test ... inition |
 | PASSED | !xssSink | lib/views/index.js:83:49:83:103 | // test ... k, !xss |
-| PASSED | !xssSink | lib/views/index.js:90:57:90:103 | // test ... k, !xss |
+| PASSED | !xssSink | lib/views/index.js:90:57:90:121 | // test ... inition |
 | PASSED | !xssSink | lib/views/index.js:97:30:97:76 | // test ... k, !xss |
-| PASSED | !xssSink | lib/views/index.js:105:59:105:105 | // test ... k, !xss |
+| PASSED | !xssSink | lib/views/index.js:105:59:105:123 | // test ... inition |
 failingNegativeTests
diff --git a/javascript/ql/test/library-tests/frameworks/Spife/tests.ql b/javascript/ql/test/library-tests/frameworks/Spife/tests.ql
index b52e3be5256..61225f55359 100644
--- a/javascript/ql/test/library-tests/frameworks/Spife/tests.ql
+++ b/javascript/ql/test/library-tests/frameworks/Spife/tests.ql
@@ -33,8 +33,14 @@ query predicate passingPositiveTests(string res, string expectation, InlineTest
   res = "PASSED" and
   t.hasPositiveTest(expectation) and
   (
+    expectation = "responseBody" and
+    exists(Http::ResponseBody n | t.inNode(n))
+    or
     expectation = "headerDefinition" and
-    exists(Http::HeaderDefinition n | t.inNode(n))
+    exists(DataFlow::Node n, Http::ExplicitHeaderDefinition h |
+      t.inNode(n) and
+      h.definesHeaderValue(_, n)
+    )
     or
     expectation = "cookieDefinition" and
     exists(Http::CookieDefinition n | t.inNode(n))
@@ -83,8 +89,14 @@ query predicate failingPositiveTests(string res, string expectation, InlineTest
   res = "FAILED" and
   t.hasPositiveTest(expectation) and
   (
+    expectation = "responseBody" and
+    not exists(Http::ResponseBody n | t.inNode(n))
+    or
     expectation = "headerDefinition" and
-    not exists(Http::HeaderDefinition n | t.inNode(n))
+    not exists(DataFlow::Node n, Http::ExplicitHeaderDefinition h |
+      t.inNode(n) and
+      h.definesHeaderValue(_, n)
+    )
     or
     expectation = "cookieDefinition" and
     not exists(Http::CookieDefinition n | t.inNode(n))
@@ -133,8 +145,14 @@ query predicate passingNegativeTests(string res, string expectation, InlineTest
   res = "PASSED" and
   t.hasNegativeTest(expectation) and
   (
+    expectation = "!responseBody" and
+    not exists(Http::ResponseBody n | t.inNode(n))
+    or
     expectation = "!headerDefinition" and
-    not exists(Http::HeaderDefinition n | t.inNode(n))
+    not exists(DataFlow::Node n, Http::ExplicitHeaderDefinition h |
+      t.inNode(n) and
+      h.definesHeaderValue(_, n)
+    )
     or
     expectation = "!cookieDefinition" and
     not exists(Http::CookieDefinition n | t.inNode(n))
@@ -183,8 +201,14 @@ query predicate failingNegativeTests(string res, string expectation, InlineTest
   res = "FAILED" and
   t.hasNegativeTest(expectation) and
   (
+    expectation = "!responseBody" and
+    exists(Http::ResponseBody n | t.inNode(n))
+    or
     expectation = "!headerDefinition" and
-    exists(Http::HeaderDefinition n | t.inNode(n))
+    not exists(DataFlow::Node n, Http::ExplicitHeaderDefinition h |
+      t.inNode(n) and
+      h.definesHeaderValue(_, n)
+    )
     or
     expectation = "!cookieDefinition" and
     exists(Http::CookieDefinition n | t.inNode(n))

From a80b691358ebed9f44a285fed4448341f39100aa Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Alvaro=20Mu=C3=B1oz?= <pwntester@github.com>
Date: Tue, 25 Oct 2022 11:44:45 +0200
Subject: [PATCH 0023/1420] Remove unnecessary TaggedTemplateEntryPoint

---
 .../semmle/javascript/frameworks/Spife.qll    |  9 ---
 .../frameworks/Spife/tests.expected           | 80 -------------------
 2 files changed, 89 deletions(-)

diff --git a/javascript/ql/lib/semmle/javascript/frameworks/Spife.qll b/javascript/ql/lib/semmle/javascript/frameworks/Spife.qll
index a97eb98dc29..f2e738d80b6 100644
--- a/javascript/ql/lib/semmle/javascript/frameworks/Spife.qll
+++ b/javascript/ql/lib/semmle/javascript/frameworks/Spife.qll
@@ -9,15 +9,6 @@ import semmle.javascript.frameworks.HTTP
  * Provides classes for working with [Spife](https://github.com/npm/spife) applications.
  */
 module Spife {
-  /**
-   * An API graph entry point ensuring all tagged template exprs are part of the API graph
-   */
-  private class TaggedTemplateEntryPoint extends API::EntryPoint {
-    TaggedTemplateEntryPoint() { this = "TaggedTemplateEntryPoint" }
-
-    override DataFlow::SourceNode getASource() { result.asExpr() instanceof TaggedTemplateExpr }
-  }
-
   /**
    * A call to a Spife method that sets up a route.
    */
diff --git a/javascript/ql/test/library-tests/frameworks/Spife/tests.expected b/javascript/ql/test/library-tests/frameworks/Spife/tests.expected
index dc4c3451ce0..1f7ecf26ef8 100644
--- a/javascript/ql/test/library-tests/frameworks/Spife/tests.expected
+++ b/javascript/ql/test/library-tests/frameworks/Spife/tests.expected
@@ -1,83 +1,3 @@
-WARNING: Unused method getCredentialsHeader (tests.ql:70,26-46)
-test0
-| lib/views/index.js:23:1:26:1 | functio ... tned)\\n} | content-type | application/json |
-| lib/views/index.js:28:1:39:1 | functio ... eBody\\n} | content-type | application/json |
-| lib/views/index.js:41:1:51:1 | functio ... \\n  })\\n} | content-type | application/json |
-| lib/views/index.js:43:10:50:4 | reply(r ... n\\n\\n  }) | access-control-allow-credentials | true |
-| lib/views/index.js:43:10:50:4 | reply(r ... n\\n\\n  }) | access-control-allow-headers | Content-Type, Authorization, Content-Length, X-Requested-With |
-| lib/views/index.js:43:10:50:4 | reply(r ... n\\n\\n  }) | access-control-allow-methods | GET, POST, PUT, DELETE, OPTIONS |
-| lib/views/index.js:43:10:50:4 | reply(r ... n\\n\\n  }) | access-control-allow-origin | * |
-| lib/views/index.js:43:10:50:4 | reply(r ... n\\n\\n  }) | content-type | text/html |
-| lib/views/index.js:53:1:55:1 | functio ... ource\\n} | content-type | application/json |
-| lib/views/index.js:56:1:58:1 | functio ... ition\\n} | content-type | application/json |
-| lib/views/index.js:60:1:70:1 | functio ... ext.'\\n} | content-type | application/json |
-| lib/views/index.js:65:14:65:87 | reply.h ... /html') | content-type | text/html |
-| lib/views/index.js:67:14:67:92 | reply.h ... ain' }) | content-type | text/plain |
-| lib/views/index.js:72:1:80:1 | functio ... ext.'\\n} | content-type | application/json |
-| lib/views/index.js:77:14:77:92 | reply.h ... ain' }) | content-type | text/plain |
-| lib/views/index.js:82:1:84:1 | functio ...  !xss\\n} | content-type | application/json |
-| lib/views/index.js:86:1:91:1 | functio ... ition\\n} | content-type | application/json |
-| lib/views/index.js:93:1:98:1 | functio ...  !xss\\n} | content-type | application/json |
-| lib/views/index.js:100:1:109:1 | functio ... n\\n  }\\n} | content-type | application/json |
-| lib/views/index.js:107:12:107:86 | reply(m ... tml' }) | content-type | text/html |
-| lib/views/index.js:111:1:115:1 | functio ... \\n  })\\n} | content-type | application/json |
-test
-| lib/views/index.js:45:36:45:38 | "*" |
-test2
-| lib/views/index.js:43:16:43:29 | req.query.name |
-| lib/views/index.js:65:27:65:57 | '<p>' + ...  '</p>' |
-| lib/views/index.js:107:18:107:24 | message |
-test3
-| lib/views/index.js:43:16:43:29 | req.query.name |
-| lib/views/index.js:65:27:65:57 | '<p>' + ...  '</p>' |
-| lib/views/index.js:107:18:107:24 | message |
-test4
-| lib/views/index.js:23:1:26:1 | functio ... tned)\\n} | content-type | application/json |
-| lib/views/index.js:28:1:39:1 | functio ... eBody\\n} | content-type | application/json |
-| lib/views/index.js:41:1:51:1 | functio ... \\n  })\\n} | content-type | application/json |
-| lib/views/index.js:43:10:50:4 | reply(r ... n\\n\\n  }) | access-control-allow-credentials | true |
-| lib/views/index.js:43:10:50:4 | reply(r ... n\\n\\n  }) | access-control-allow-headers | Content-Type, Authorization, Content-Length, X-Requested-With |
-| lib/views/index.js:43:10:50:4 | reply(r ... n\\n\\n  }) | access-control-allow-methods | GET, POST, PUT, DELETE, OPTIONS |
-| lib/views/index.js:43:10:50:4 | reply(r ... n\\n\\n  }) | access-control-allow-origin | * |
-| lib/views/index.js:43:10:50:4 | reply(r ... n\\n\\n  }) | content-type | text/html |
-| lib/views/index.js:53:1:55:1 | functio ... ource\\n} | content-type | application/json |
-| lib/views/index.js:56:1:58:1 | functio ... ition\\n} | content-type | application/json |
-| lib/views/index.js:60:1:70:1 | functio ... ext.'\\n} | content-type | application/json |
-| lib/views/index.js:65:14:65:87 | reply.h ... /html') | content-type | text/html |
-| lib/views/index.js:67:14:67:92 | reply.h ... ain' }) | content-type | text/plain |
-| lib/views/index.js:72:1:80:1 | functio ... ext.'\\n} | content-type | application/json |
-| lib/views/index.js:77:14:77:92 | reply.h ... ain' }) | content-type | text/plain |
-| lib/views/index.js:82:1:84:1 | functio ...  !xss\\n} | content-type | application/json |
-| lib/views/index.js:86:1:91:1 | functio ... ition\\n} | content-type | application/json |
-| lib/views/index.js:93:1:98:1 | functio ...  !xss\\n} | content-type | application/json |
-| lib/views/index.js:100:1:109:1 | functio ... n\\n  }\\n} | content-type | application/json |
-| lib/views/index.js:107:12:107:86 | reply(m ... tml' }) | content-type | text/html |
-| lib/views/index.js:111:1:115:1 | functio ... \\n  })\\n} | content-type | application/json |
-test5
-| lib/views/index.js:23:1:26:1 | functio ... tned)\\n} | lib/views/index.js:23:1:26:1 | functio ... tned)\\n} | content-type |
-| lib/views/index.js:28:1:39:1 | functio ... eBody\\n} | lib/views/index.js:28:1:39:1 | functio ... eBody\\n} | content-type |
-| lib/views/index.js:41:1:51:1 | functio ... \\n  })\\n} | lib/views/index.js:41:1:51:1 | functio ... \\n  })\\n} | content-type |
-| lib/views/index.js:41:1:51:1 | functio ... \\n  })\\n} | lib/views/index.js:43:10:50:4 | reply(r ... n\\n\\n  }) | access-control-allow-credentials |
-| lib/views/index.js:41:1:51:1 | functio ... \\n  })\\n} | lib/views/index.js:43:10:50:4 | reply(r ... n\\n\\n  }) | access-control-allow-headers |
-| lib/views/index.js:41:1:51:1 | functio ... \\n  })\\n} | lib/views/index.js:43:10:50:4 | reply(r ... n\\n\\n  }) | access-control-allow-methods |
-| lib/views/index.js:41:1:51:1 | functio ... \\n  })\\n} | lib/views/index.js:43:10:50:4 | reply(r ... n\\n\\n  }) | access-control-allow-origin |
-| lib/views/index.js:41:1:51:1 | functio ... \\n  })\\n} | lib/views/index.js:43:10:50:4 | reply(r ... n\\n\\n  }) | content-type |
-| lib/views/index.js:53:1:55:1 | functio ... ource\\n} | lib/views/index.js:53:1:55:1 | functio ... ource\\n} | content-type |
-| lib/views/index.js:56:1:58:1 | functio ... ition\\n} | lib/views/index.js:56:1:58:1 | functio ... ition\\n} | content-type |
-| lib/views/index.js:60:1:70:1 | functio ... ext.'\\n} | lib/views/index.js:60:1:70:1 | functio ... ext.'\\n} | content-type |
-| lib/views/index.js:60:1:70:1 | functio ... ext.'\\n} | lib/views/index.js:65:14:65:87 | reply.h ... /html') | content-type |
-| lib/views/index.js:60:1:70:1 | functio ... ext.'\\n} | lib/views/index.js:67:14:67:92 | reply.h ... ain' }) | content-type |
-| lib/views/index.js:72:1:80:1 | functio ... ext.'\\n} | lib/views/index.js:72:1:80:1 | functio ... ext.'\\n} | content-type |
-| lib/views/index.js:72:1:80:1 | functio ... ext.'\\n} | lib/views/index.js:77:14:77:92 | reply.h ... ain' }) | content-type |
-| lib/views/index.js:82:1:84:1 | functio ...  !xss\\n} | lib/views/index.js:82:1:84:1 | functio ...  !xss\\n} | content-type |
-| lib/views/index.js:86:1:91:1 | functio ... ition\\n} | lib/views/index.js:86:1:91:1 | functio ... ition\\n} | content-type |
-| lib/views/index.js:86:1:91:1 | functio ... ition\\n} | lib/views/index.js:90:10:90:55 | reply(m ... sage }) | npm-notice |
-| lib/views/index.js:93:1:98:1 | functio ...  !xss\\n} | lib/views/index.js:93:1:98:1 | functio ...  !xss\\n} | content-type |
-| lib/views/index.js:100:1:109:1 | functio ... n\\n  }\\n} | lib/views/index.js:100:1:109:1 | functio ... n\\n  }\\n} | content-type |
-| lib/views/index.js:100:1:109:1 | functio ... n\\n  }\\n} | lib/views/index.js:105:12:105:57 | reply(m ... sage }) | npm-notice |
-| lib/views/index.js:100:1:109:1 | functio ... n\\n  }\\n} | lib/views/index.js:107:12:107:86 | reply(m ... tml' }) | content-type |
-| lib/views/index.js:100:1:109:1 | functio ... n\\n  }\\n} | lib/views/index.js:107:12:107:86 | reply(m ... tml' }) | npm-notice |
-| lib/views/index.js:111:1:115:1 | functio ... \\n  })\\n} | lib/views/index.js:111:1:115:1 | functio ... \\n  })\\n} | content-type |
 passingPositiveTests
 | PASSED | candidateHandler | lib/views/index.js:82:32:82:56 | // test ... Handler |
 | PASSED | cleartextStorageSink | lib/views/index.js:57:115:57:193 | // test ... inition |

From 9830d2bebcc21f8264c38499d1238b5d402dadbf Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Alvaro=20Mu=C3=B1oz?= <pwntester@github.com>
Date: Tue, 25 Oct 2022 12:53:44 +0200
Subject: [PATCH 0024/1420] Format Restify.qll

---
 javascript/ql/lib/semmle/javascript/frameworks/Restify.qll | 2 --
 1 file changed, 2 deletions(-)

diff --git a/javascript/ql/lib/semmle/javascript/frameworks/Restify.qll b/javascript/ql/lib/semmle/javascript/frameworks/Restify.qll
index 10c5378e91e..a6da26f8b0b 100644
--- a/javascript/ql/lib/semmle/javascript/frameworks/Restify.qll
+++ b/javascript/ql/lib/semmle/javascript/frameworks/Restify.qll
@@ -436,7 +436,6 @@ module Restify {
    */
   private class ContentTypeRouteHandlerHeader extends Http::ImplicitHeaderDefinition,
     DataFlow::FunctionNode instanceof RouteHandler {
-
     override predicate defines(string headerName, string headerValue) {
       headerName = "content-type" and headerValue = "application/json"
     }
@@ -454,7 +453,6 @@ module Restify {
   }
 
   private class RoutingTreeSetup extends Routing::RouteSetup::MethodCall instanceof RouteSetup {
-
     override string getRelativePath() {
       not this.getMethodName() = ["use", "pre", "param", "on"] and // do not treat parameter name as a path
       result = this.getArgument(0).getStringValue()

From 39081e9c1c6c869401741674f43e535a88c4a9aa Mon Sep 17 00:00:00 2001
From: Rasmus Wriedt Larsen <rasmuswl@github.com>
Date: Tue, 31 May 2022 00:35:48 +0200
Subject: [PATCH 0025/1420] Python: Fix staticmethod datamodel test

---
 .../dataflow/coverage/dataflow.expected       | 35 +++++++++++++------
 .../dataflow/coverage/datamodel.py            |  9 +++++
 2 files changed, 34 insertions(+), 10 deletions(-)

diff --git a/python/ql/test/experimental/dataflow/coverage/dataflow.expected b/python/ql/test/experimental/dataflow/coverage/dataflow.expected
index c7a0294d66a..9321d941ad8 100644
--- a/python/ql/test/experimental/dataflow/coverage/dataflow.expected
+++ b/python/ql/test/experimental/dataflow/coverage/dataflow.expected
@@ -4,6 +4,7 @@ edges
 | datamodel.py:38:8:38:13 | ControlFlowNode for SOURCE | datamodel.py:38:6:38:17 | ControlFlowNode for f() |
 | datamodel.py:44:22:44:22 | ControlFlowNode for x | datamodel.py:46:16:46:16 | ControlFlowNode for x |
 | datamodel.py:49:26:49:26 | ControlFlowNode for x | datamodel.py:50:16:50:16 | ControlFlowNode for x |
+| datamodel.py:53:22:53:22 | ControlFlowNode for x | datamodel.py:54:16:54:16 | ControlFlowNode for x |
 | datamodel.py:71:15:71:20 | ControlFlowNode for SOURCE | datamodel.py:44:22:44:22 | ControlFlowNode for x |
 | datamodel.py:71:15:71:20 | ControlFlowNode for SOURCE | datamodel.py:71:6:71:24 | ControlFlowNode for Attribute() |
 | datamodel.py:72:18:72:23 | ControlFlowNode for SOURCE | datamodel.py:44:22:44:22 | ControlFlowNode for x |
@@ -12,10 +13,14 @@ edges
 | datamodel.py:80:20:80:25 | ControlFlowNode for SOURCE | datamodel.py:80:6:80:26 | ControlFlowNode for Attribute() |
 | datamodel.py:81:20:81:25 | ControlFlowNode for SOURCE | datamodel.py:49:26:49:26 | ControlFlowNode for x |
 | datamodel.py:81:20:81:25 | ControlFlowNode for SOURCE | datamodel.py:81:6:81:26 | ControlFlowNode for Attribute() |
-| datamodel.py:152:5:152:8 | [post store] ControlFlowNode for self [Attribute b] | datamodel.py:155:14:155:25 | ControlFlowNode for Customized() [Attribute b] |
-| datamodel.py:152:14:152:19 | ControlFlowNode for SOURCE | datamodel.py:152:5:152:8 | [post store] ControlFlowNode for self [Attribute b] |
-| datamodel.py:155:14:155:25 | ControlFlowNode for Customized() [Attribute b] | datamodel.py:159:6:159:15 | ControlFlowNode for customized [Attribute b] |
-| datamodel.py:159:6:159:15 | ControlFlowNode for customized [Attribute b] | datamodel.py:159:6:159:17 | ControlFlowNode for Attribute |
+| datamodel.py:88:21:88:26 | ControlFlowNode for SOURCE | datamodel.py:53:22:53:22 | ControlFlowNode for x |
+| datamodel.py:88:21:88:26 | ControlFlowNode for SOURCE | datamodel.py:88:6:88:27 | ControlFlowNode for Attribute() |
+| datamodel.py:89:21:89:26 | ControlFlowNode for SOURCE | datamodel.py:53:22:53:22 | ControlFlowNode for x |
+| datamodel.py:89:21:89:26 | ControlFlowNode for SOURCE | datamodel.py:89:6:89:27 | ControlFlowNode for Attribute() |
+| datamodel.py:161:5:161:8 | [post store] ControlFlowNode for self [Attribute b] | datamodel.py:164:14:164:25 | ControlFlowNode for Customized() [Attribute b] |
+| datamodel.py:161:14:161:19 | ControlFlowNode for SOURCE | datamodel.py:161:5:161:8 | [post store] ControlFlowNode for self [Attribute b] |
+| datamodel.py:164:14:164:25 | ControlFlowNode for Customized() [Attribute b] | datamodel.py:168:6:168:15 | ControlFlowNode for customized [Attribute b] |
+| datamodel.py:168:6:168:15 | ControlFlowNode for customized [Attribute b] | datamodel.py:168:6:168:17 | ControlFlowNode for Attribute |
 | test.py:42:10:42:26 | ControlFlowNode for Tuple [Tuple element at index 1] | test.py:43:9:43:9 | ControlFlowNode for x [Tuple element at index 1] |
 | test.py:42:21:42:26 | ControlFlowNode for SOURCE | test.py:42:10:42:26 | ControlFlowNode for Tuple [Tuple element at index 1] |
 | test.py:43:9:43:9 | ControlFlowNode for x [Tuple element at index 1] | test.py:43:9:43:12 | ControlFlowNode for Subscript |
@@ -396,6 +401,8 @@ nodes
 | datamodel.py:46:16:46:16 | ControlFlowNode for x | semmle.label | ControlFlowNode for x |
 | datamodel.py:49:26:49:26 | ControlFlowNode for x | semmle.label | ControlFlowNode for x |
 | datamodel.py:50:16:50:16 | ControlFlowNode for x | semmle.label | ControlFlowNode for x |
+| datamodel.py:53:22:53:22 | ControlFlowNode for x | semmle.label | ControlFlowNode for x |
+| datamodel.py:54:16:54:16 | ControlFlowNode for x | semmle.label | ControlFlowNode for x |
 | datamodel.py:71:6:71:24 | ControlFlowNode for Attribute() | semmle.label | ControlFlowNode for Attribute() |
 | datamodel.py:71:15:71:20 | ControlFlowNode for SOURCE | semmle.label | ControlFlowNode for SOURCE |
 | datamodel.py:72:6:72:27 | ControlFlowNode for Attribute() | semmle.label | ControlFlowNode for Attribute() |
@@ -404,11 +411,15 @@ nodes
 | datamodel.py:80:20:80:25 | ControlFlowNode for SOURCE | semmle.label | ControlFlowNode for SOURCE |
 | datamodel.py:81:6:81:26 | ControlFlowNode for Attribute() | semmle.label | ControlFlowNode for Attribute() |
 | datamodel.py:81:20:81:25 | ControlFlowNode for SOURCE | semmle.label | ControlFlowNode for SOURCE |
-| datamodel.py:152:5:152:8 | [post store] ControlFlowNode for self [Attribute b] | semmle.label | [post store] ControlFlowNode for self [Attribute b] |
-| datamodel.py:152:14:152:19 | ControlFlowNode for SOURCE | semmle.label | ControlFlowNode for SOURCE |
-| datamodel.py:155:14:155:25 | ControlFlowNode for Customized() [Attribute b] | semmle.label | ControlFlowNode for Customized() [Attribute b] |
-| datamodel.py:159:6:159:15 | ControlFlowNode for customized [Attribute b] | semmle.label | ControlFlowNode for customized [Attribute b] |
-| datamodel.py:159:6:159:17 | ControlFlowNode for Attribute | semmle.label | ControlFlowNode for Attribute |
+| datamodel.py:88:6:88:27 | ControlFlowNode for Attribute() | semmle.label | ControlFlowNode for Attribute() |
+| datamodel.py:88:21:88:26 | ControlFlowNode for SOURCE | semmle.label | ControlFlowNode for SOURCE |
+| datamodel.py:89:6:89:27 | ControlFlowNode for Attribute() | semmle.label | ControlFlowNode for Attribute() |
+| datamodel.py:89:21:89:26 | ControlFlowNode for SOURCE | semmle.label | ControlFlowNode for SOURCE |
+| datamodel.py:161:5:161:8 | [post store] ControlFlowNode for self [Attribute b] | semmle.label | [post store] ControlFlowNode for self [Attribute b] |
+| datamodel.py:161:14:161:19 | ControlFlowNode for SOURCE | semmle.label | ControlFlowNode for SOURCE |
+| datamodel.py:164:14:164:25 | ControlFlowNode for Customized() [Attribute b] | semmle.label | ControlFlowNode for Customized() [Attribute b] |
+| datamodel.py:168:6:168:15 | ControlFlowNode for customized [Attribute b] | semmle.label | ControlFlowNode for customized [Attribute b] |
+| datamodel.py:168:6:168:17 | ControlFlowNode for Attribute | semmle.label | ControlFlowNode for Attribute |
 | test.py:42:10:42:26 | ControlFlowNode for Tuple [Tuple element at index 1] | semmle.label | ControlFlowNode for Tuple [Tuple element at index 1] |
 | test.py:42:21:42:26 | ControlFlowNode for SOURCE | semmle.label | ControlFlowNode for SOURCE |
 | test.py:43:9:43:9 | ControlFlowNode for x [Tuple element at index 1] | semmle.label | ControlFlowNode for x [Tuple element at index 1] |
@@ -845,6 +856,8 @@ subpaths
 | datamodel.py:72:18:72:23 | ControlFlowNode for SOURCE | datamodel.py:44:22:44:22 | ControlFlowNode for x | datamodel.py:46:16:46:16 | ControlFlowNode for x | datamodel.py:72:6:72:27 | ControlFlowNode for Attribute() |
 | datamodel.py:80:20:80:25 | ControlFlowNode for SOURCE | datamodel.py:49:26:49:26 | ControlFlowNode for x | datamodel.py:50:16:50:16 | ControlFlowNode for x | datamodel.py:80:6:80:26 | ControlFlowNode for Attribute() |
 | datamodel.py:81:20:81:25 | ControlFlowNode for SOURCE | datamodel.py:49:26:49:26 | ControlFlowNode for x | datamodel.py:50:16:50:16 | ControlFlowNode for x | datamodel.py:81:6:81:26 | ControlFlowNode for Attribute() |
+| datamodel.py:88:21:88:26 | ControlFlowNode for SOURCE | datamodel.py:53:22:53:22 | ControlFlowNode for x | datamodel.py:54:16:54:16 | ControlFlowNode for x | datamodel.py:88:6:88:27 | ControlFlowNode for Attribute() |
+| datamodel.py:89:21:89:26 | ControlFlowNode for SOURCE | datamodel.py:53:22:53:22 | ControlFlowNode for x | datamodel.py:54:16:54:16 | ControlFlowNode for x | datamodel.py:89:6:89:27 | ControlFlowNode for Attribute() |
 | test.py:380:28:380:33 | ControlFlowNode for SOURCE | test.py:375:15:375:15 | ControlFlowNode for b | test.py:376:12:376:12 | ControlFlowNode for b | test.py:380:10:380:34 | ControlFlowNode for second() |
 | test.py:388:30:388:35 | ControlFlowNode for SOURCE | test.py:375:15:375:15 | ControlFlowNode for b | test.py:376:12:376:12 | ControlFlowNode for b | test.py:388:10:388:36 | ControlFlowNode for second() |
 | test.py:396:10:396:43 | KwUnpacked b | test.py:375:15:375:15 | ControlFlowNode for b | test.py:376:12:376:12 | ControlFlowNode for b | test.py:396:10:396:43 | ControlFlowNode for second() |
@@ -862,7 +875,9 @@ subpaths
 | datamodel.py:72:6:72:27 | ControlFlowNode for Attribute() | datamodel.py:72:18:72:23 | ControlFlowNode for SOURCE | datamodel.py:72:6:72:27 | ControlFlowNode for Attribute() | Flow found |
 | datamodel.py:80:6:80:26 | ControlFlowNode for Attribute() | datamodel.py:80:20:80:25 | ControlFlowNode for SOURCE | datamodel.py:80:6:80:26 | ControlFlowNode for Attribute() | Flow found |
 | datamodel.py:81:6:81:26 | ControlFlowNode for Attribute() | datamodel.py:81:20:81:25 | ControlFlowNode for SOURCE | datamodel.py:81:6:81:26 | ControlFlowNode for Attribute() | Flow found |
-| datamodel.py:159:6:159:17 | ControlFlowNode for Attribute | datamodel.py:152:14:152:19 | ControlFlowNode for SOURCE | datamodel.py:159:6:159:17 | ControlFlowNode for Attribute | Flow found |
+| datamodel.py:88:6:88:27 | ControlFlowNode for Attribute() | datamodel.py:88:21:88:26 | ControlFlowNode for SOURCE | datamodel.py:88:6:88:27 | ControlFlowNode for Attribute() | Flow found |
+| datamodel.py:89:6:89:27 | ControlFlowNode for Attribute() | datamodel.py:89:21:89:26 | ControlFlowNode for SOURCE | datamodel.py:89:6:89:27 | ControlFlowNode for Attribute() | Flow found |
+| datamodel.py:168:6:168:17 | ControlFlowNode for Attribute | datamodel.py:161:14:161:19 | ControlFlowNode for SOURCE | datamodel.py:168:6:168:17 | ControlFlowNode for Attribute | Flow found |
 | test.py:44:10:44:10 | ControlFlowNode for y | test.py:42:21:42:26 | ControlFlowNode for SOURCE | test.py:44:10:44:10 | ControlFlowNode for y | Flow found |
 | test.py:56:10:56:10 | ControlFlowNode for x | test.py:55:9:55:14 | ControlFlowNode for SOURCE | test.py:56:10:56:10 | ControlFlowNode for x | Flow found |
 | test.py:62:10:62:10 | ControlFlowNode for x | test.py:61:9:61:16 | ControlFlowNode for Str | test.py:62:10:62:10 | ControlFlowNode for x | Flow found |
diff --git a/python/ql/test/experimental/dataflow/coverage/datamodel.py b/python/ql/test/experimental/dataflow/coverage/datamodel.py
index f165e3d67e1..55a21410368 100644
--- a/python/ql/test/experimental/dataflow/coverage/datamodel.py
+++ b/python/ql/test/experimental/dataflow/coverage/datamodel.py
@@ -81,6 +81,15 @@ SINK(c.classmethod(SOURCE)) #$ flow="SOURCE -> c.classmethod(..)"
 SINK(C.classmethod(SOURCE)) #$ flow="SOURCE -> C.classmethod(..)"
 SINK(c_func_obj(C, SOURCE)) #$ MISSING: flow="SOURCE -> c_func_obj(..)"
 
+# When an instance method object is created by retrieving a class method object from a class or instance, its __self__ attribute is the class itself, and its __func__ attribute is the function object underlying the class method.
+s_func_obj = C.staticmethod.__func__
+
+# When an instance method object is derived from a class method object, the “class instance” stored in __self__ will actually be the class itself, so that calling either x.f(1) or C.f(1) is equivalent to calling f(C,1) where f is the underlying function.
+SINK(c.staticmethod(SOURCE)) #$ flow="SOURCE -> c.staticmethod(..)"
+SINK(C.staticmethod(SOURCE)) #$ flow="SOURCE -> C.staticmethod(..)"
+SINK(s_func_obj(SOURCE)) #$ MISSING: flow="SOURCE -> s_func_obj(..)"
+
+
 # Generator functions
 # A function or method which uses the yield statement (see section The yield statement) is called a generator function. Such a function, when called, always returns an iterator object which can be used to execute the body of the function: calling the iterator’s iterator.__next__() method will cause the function to execute until it provides a value using the yield statement. When the function executes a return statement or falls off the end, a StopIteration exception is raised and the iterator will have reached the end of the set of values to be returned.
 def gen(x, count):

From 609a4cfd42dccf4728eefcd973022fa2b12eacfc Mon Sep 17 00:00:00 2001
From: Rasmus Wriedt Larsen <rasmuswl@github.com>
Date: Wed, 22 Jun 2022 14:42:22 +0200
Subject: [PATCH 0026/1420] Python: validate tests in `datamodel.py`

And adopt argument passing tests as well.

turns out that `C.staticmethod.__func__` doesn't actually work :O
---
 .../dataflow/coverage/datamodel.py            | 88 +++++++++++++------
 .../test/experimental/dataflow/validTest.py   |  1 +
 2 files changed, 62 insertions(+), 27 deletions(-)

diff --git a/python/ql/test/experimental/dataflow/coverage/datamodel.py b/python/ql/test/experimental/dataflow/coverage/datamodel.py
index 55a21410368..364dbb299d7 100644
--- a/python/ql/test/experimental/dataflow/coverage/datamodel.py
+++ b/python/ql/test/experimental/dataflow/coverage/datamodel.py
@@ -8,15 +8,30 @@
 # Intended sources should be the variable `SOURCE` and intended sinks should be
 # arguments to the function `SINK` (see python/ql/test/experimental/dataflow/testConfig.qll).
 
+import sys
+import os
+import functools
+
+sys.path.append(os.path.dirname(os.path.dirname((__file__))))
+from testlib import expects
+
 # These are defined so that we can evaluate the test code.
 NONSOURCE = "not a source"
 SOURCE = "source"
 
+arg1 = "source1"
+arg2 = "source2"
+arg3 = "source3"
+arg4 = "source4"
+arg5 = "source5"
+arg6 = "source6"
+arg7 = "source7"
+
 def is_source(x):
     return x == "source" or x == b"source" or x == 42 or x == 42.0 or x == 42j
 
-def SINK(x):
-    if is_source(x):
+def SINK(x, expected=SOURCE):
+    if is_source(x) or x == expected:
         print("OK")
     else:
         print("Unexpected flow", x)
@@ -27,6 +42,14 @@ def SINK_F(x):
     else:
         print("OK")
 
+SINK1 = functools.partial(SINK, expected=arg1)
+SINK2 = functools.partial(SINK, expected=arg2)
+SINK3 = functools.partial(SINK, expected=arg3)
+SINK4 = functools.partial(SINK, expected=arg4)
+SINK5 = functools.partial(SINK, expected=arg5)
+SINK6 = functools.partial(SINK, expected=arg6)
+SINK7 = functools.partial(SINK, expected=arg7)
+
 # Callable types
 # These are the types to which the function call operation (see section Calls) can be applied:
 
@@ -41,17 +64,19 @@ SINK(f(SOURCE, 3)) #$ flow="SOURCE -> f(..)"
 # An instance method object combines a class, a class instance and any callable object (normally a user-defined function).
 class C(object):
 
-    def method(self, x, cls):
-        assert cls is self.__class__
-        return x
+    def method(self, x, y):
+        SINK1(x)
+        SINK2(y)
 
     @classmethod
-    def classmethod(cls, x):
-        return x
+    def classmethod(cls, x, y):
+        SINK1(x)
+        SINK2(y)
 
     @staticmethod
-    def staticmethod(x):
-        return x
+    def staticmethod(x, y):
+        SINK1(x)
+        SINK2(y)
 
     def gen(self, x, count):
       n = count
@@ -64,30 +89,39 @@ class C(object):
 
 c = C()
 
-# When an instance method object is created by retrieving a user-defined function object from a class via one of its instances, its __self__ attribute is the instance, and the method object is said to be bound. The new method’s __func__ attribute is the original function object.
-func_obj = c.method.__func__
+@expects(6)
+def test_method_call():
+  # When an instance method object is created by retrieving a user-defined function object from a class via one of its instances, its __self__ attribute is the instance, and the method object is said to be bound. The new method’s __func__ attribute is the original function object.
+  func_obj = c.method.__func__
 
-# When an instance method object is called, the underlying function (__func__) is called, inserting the class instance (__self__) in front of the argument list. For instance, when C is a class which contains a definition for a function f(), and x is an instance of C, calling x.f(1) is equivalent to calling C.f(x, 1).
-SINK(c.method(SOURCE, C)) #$ flow="SOURCE -> c.method(..)"
-SINK(C.method(c, SOURCE, C)) #$ flow="SOURCE -> C.method(..)"
-SINK(func_obj(c, SOURCE, C)) #$ MISSING: flow="SOURCE -> func_obj(..)"
+  # When an instance method object is called, the underlying function (__func__) is called, inserting the class instance (__self__) in front of the argument list. For instance, when C is a class which contains a definition for a function f(), and x is an instance of C, calling x.f(1) is equivalent to calling C.f(x, 1).
+  c.method(arg1, arg2) # $ func=C.method arg1 arg2
+  C.method(c, arg1, arg2) # $ func=C.method arg1 arg2
+  func_obj(c, arg1, arg2) # $ MISSING: func=C.method arg1 arg2
 
 
-# When an instance method object is created by retrieving a class method object from a class or instance, its __self__ attribute is the class itself, and its __func__ attribute is the function object underlying the class method.
-c_func_obj = C.classmethod.__func__
+@expects(6)
+def test_classmethod_call():
+  # When an instance method object is created by retrieving a class method object from a class or instance, its __self__ attribute is the class itself, and its __func__ attribute is the function object underlying the class method.
+  c_func_obj = C.classmethod.__func__
 
-# When an instance method object is derived from a class method object, the “class instance” stored in __self__ will actually be the class itself, so that calling either x.f(1) or C.f(1) is equivalent to calling f(C,1) where f is the underlying function.
-SINK(c.classmethod(SOURCE)) #$ flow="SOURCE -> c.classmethod(..)"
-SINK(C.classmethod(SOURCE)) #$ flow="SOURCE -> C.classmethod(..)"
-SINK(c_func_obj(C, SOURCE)) #$ MISSING: flow="SOURCE -> c_func_obj(..)"
+  # When an instance method object is derived from a class method object, the “class instance” stored in __self__ will actually be the class itself, so that calling either x.f(1) or C.f(1) is equivalent to calling f(C,1) where f is the underlying function.
+  c.classmethod(arg1, arg2) # $ func=C.classmethod arg1 arg2
+  C.classmethod(arg1, arg2) # $ func=C.classmethod arg1 arg2
+  c_func_obj(C, arg1, arg2) # $ MISSING: func=C.classmethod arg1 arg2
 
-# When an instance method object is created by retrieving a class method object from a class or instance, its __self__ attribute is the class itself, and its __func__ attribute is the function object underlying the class method.
-s_func_obj = C.staticmethod.__func__
 
-# When an instance method object is derived from a class method object, the “class instance” stored in __self__ will actually be the class itself, so that calling either x.f(1) or C.f(1) is equivalent to calling f(C,1) where f is the underlying function.
-SINK(c.staticmethod(SOURCE)) #$ flow="SOURCE -> c.staticmethod(..)"
-SINK(C.staticmethod(SOURCE)) #$ flow="SOURCE -> C.staticmethod(..)"
-SINK(s_func_obj(SOURCE)) #$ MISSING: flow="SOURCE -> s_func_obj(..)"
+@expects(5)
+def test_staticmethod_call():
+  # staticmethods does not have a __func__ attribute
+  try:
+    C.staticmethod.__func__
+  except AttributeError:
+    print("OK")
+
+  # When an instance method object is derived from a class method object, the “class instance” stored in __self__ will actually be the class itself, so that calling either x.f(1) or C.f(1) is equivalent to calling f(C,1) where f is the underlying function.
+  c.staticmethod(arg1, arg2) # $ func=C.staticmethod arg1 arg2
+  C.staticmethod(arg1, arg2) # $ func=C.staticmethod arg1 arg2
 
 
 # Generator functions
diff --git a/python/ql/test/experimental/dataflow/validTest.py b/python/ql/test/experimental/dataflow/validTest.py
index 86336af05ba..edfe685c266 100644
--- a/python/ql/test/experimental/dataflow/validTest.py
+++ b/python/ql/test/experimental/dataflow/validTest.py
@@ -55,6 +55,7 @@ if __name__ == "__main__":
     check_tests_valid("coverage.classes")
     check_tests_valid("coverage.test")
     check_tests_valid("coverage.argumentPassing")
+    check_tests_valid("coverage.datamodel")
     check_tests_valid("variable-capture.in")
     check_tests_valid("variable-capture.nonlocal")
     check_tests_valid("variable-capture.dict")

From 7d8c0c663f39ef8d2e15ea894b4723105810d1ec Mon Sep 17 00:00:00 2001
From: Rasmus Wriedt Larsen <rasmuswl@github.com>
Date: Fri, 3 Jun 2022 18:33:44 +0200
Subject: [PATCH 0027/1420] Python: Remove `dataflow/coverage/dataflow.ql`

The selected edges is covered by `NormalDataflowTest.ql` now... and
reading the test-output changes in `edges` is just going to make commits
larger while not providing any real value.
---
 .../dataflow/coverage/dataflow.expected       | 985 ------------------
 .../dataflow/coverage/dataflow.ql             |  11 -
 2 files changed, 996 deletions(-)
 delete mode 100644 python/ql/test/experimental/dataflow/coverage/dataflow.expected
 delete mode 100644 python/ql/test/experimental/dataflow/coverage/dataflow.ql

diff --git a/python/ql/test/experimental/dataflow/coverage/dataflow.expected b/python/ql/test/experimental/dataflow/coverage/dataflow.expected
deleted file mode 100644
index 9321d941ad8..00000000000
--- a/python/ql/test/experimental/dataflow/coverage/dataflow.expected
+++ /dev/null
@@ -1,985 +0,0 @@
-edges
-| datamodel.py:35:7:35:7 | ControlFlowNode for a | datamodel.py:36:10:36:10 | ControlFlowNode for a |
-| datamodel.py:38:8:38:13 | ControlFlowNode for SOURCE | datamodel.py:35:7:35:7 | ControlFlowNode for a |
-| datamodel.py:38:8:38:13 | ControlFlowNode for SOURCE | datamodel.py:38:6:38:17 | ControlFlowNode for f() |
-| datamodel.py:44:22:44:22 | ControlFlowNode for x | datamodel.py:46:16:46:16 | ControlFlowNode for x |
-| datamodel.py:49:26:49:26 | ControlFlowNode for x | datamodel.py:50:16:50:16 | ControlFlowNode for x |
-| datamodel.py:53:22:53:22 | ControlFlowNode for x | datamodel.py:54:16:54:16 | ControlFlowNode for x |
-| datamodel.py:71:15:71:20 | ControlFlowNode for SOURCE | datamodel.py:44:22:44:22 | ControlFlowNode for x |
-| datamodel.py:71:15:71:20 | ControlFlowNode for SOURCE | datamodel.py:71:6:71:24 | ControlFlowNode for Attribute() |
-| datamodel.py:72:18:72:23 | ControlFlowNode for SOURCE | datamodel.py:44:22:44:22 | ControlFlowNode for x |
-| datamodel.py:72:18:72:23 | ControlFlowNode for SOURCE | datamodel.py:72:6:72:27 | ControlFlowNode for Attribute() |
-| datamodel.py:80:20:80:25 | ControlFlowNode for SOURCE | datamodel.py:49:26:49:26 | ControlFlowNode for x |
-| datamodel.py:80:20:80:25 | ControlFlowNode for SOURCE | datamodel.py:80:6:80:26 | ControlFlowNode for Attribute() |
-| datamodel.py:81:20:81:25 | ControlFlowNode for SOURCE | datamodel.py:49:26:49:26 | ControlFlowNode for x |
-| datamodel.py:81:20:81:25 | ControlFlowNode for SOURCE | datamodel.py:81:6:81:26 | ControlFlowNode for Attribute() |
-| datamodel.py:88:21:88:26 | ControlFlowNode for SOURCE | datamodel.py:53:22:53:22 | ControlFlowNode for x |
-| datamodel.py:88:21:88:26 | ControlFlowNode for SOURCE | datamodel.py:88:6:88:27 | ControlFlowNode for Attribute() |
-| datamodel.py:89:21:89:26 | ControlFlowNode for SOURCE | datamodel.py:53:22:53:22 | ControlFlowNode for x |
-| datamodel.py:89:21:89:26 | ControlFlowNode for SOURCE | datamodel.py:89:6:89:27 | ControlFlowNode for Attribute() |
-| datamodel.py:161:5:161:8 | [post store] ControlFlowNode for self [Attribute b] | datamodel.py:164:14:164:25 | ControlFlowNode for Customized() [Attribute b] |
-| datamodel.py:161:14:161:19 | ControlFlowNode for SOURCE | datamodel.py:161:5:161:8 | [post store] ControlFlowNode for self [Attribute b] |
-| datamodel.py:164:14:164:25 | ControlFlowNode for Customized() [Attribute b] | datamodel.py:168:6:168:15 | ControlFlowNode for customized [Attribute b] |
-| datamodel.py:168:6:168:15 | ControlFlowNode for customized [Attribute b] | datamodel.py:168:6:168:17 | ControlFlowNode for Attribute |
-| test.py:42:10:42:26 | ControlFlowNode for Tuple [Tuple element at index 1] | test.py:43:9:43:9 | ControlFlowNode for x [Tuple element at index 1] |
-| test.py:42:21:42:26 | ControlFlowNode for SOURCE | test.py:42:10:42:26 | ControlFlowNode for Tuple [Tuple element at index 1] |
-| test.py:43:9:43:9 | ControlFlowNode for x [Tuple element at index 1] | test.py:43:9:43:12 | ControlFlowNode for Subscript |
-| test.py:43:9:43:12 | ControlFlowNode for Subscript | test.py:44:10:44:10 | ControlFlowNode for y |
-| test.py:55:9:55:14 | ControlFlowNode for SOURCE | test.py:56:10:56:10 | ControlFlowNode for x |
-| test.py:61:9:61:16 | ControlFlowNode for Str | test.py:62:10:62:10 | ControlFlowNode for x |
-| test.py:66:9:66:17 | ControlFlowNode for Str | test.py:67:10:67:10 | ControlFlowNode for x |
-| test.py:71:9:71:10 | ControlFlowNode for IntegerLiteral | test.py:72:10:72:10 | ControlFlowNode for x |
-| test.py:76:9:76:12 | ControlFlowNode for FloatLiteral | test.py:77:10:77:10 | ControlFlowNode for x |
-| test.py:87:10:87:15 | ControlFlowNode for SOURCE | test.py:88:10:88:10 | ControlFlowNode for x |
-| test.py:93:9:93:16 | ControlFlowNode for List [List element] | test.py:94:10:94:10 | ControlFlowNode for x [List element] |
-| test.py:93:10:93:15 | ControlFlowNode for SOURCE | test.py:93:9:93:16 | ControlFlowNode for List [List element] |
-| test.py:94:10:94:10 | ControlFlowNode for x [List element] | test.py:94:10:94:13 | ControlFlowNode for Subscript |
-| test.py:103:9:103:37 | ControlFlowNode for ListComp [List element] | test.py:104:10:104:10 | ControlFlowNode for x [List element] |
-| test.py:103:10:103:15 | ControlFlowNode for SOURCE | test.py:103:9:103:37 | ControlFlowNode for ListComp [List element] |
-| test.py:104:10:104:10 | ControlFlowNode for x [List element] | test.py:104:10:104:13 | ControlFlowNode for Subscript |
-| test.py:108:9:108:29 | ControlFlowNode for ListComp [List element] | test.py:109:10:109:10 | ControlFlowNode for x [List element] |
-| test.py:108:10:108:10 | ControlFlowNode for y | test.py:108:9:108:29 | ControlFlowNode for ListComp [List element] |
-| test.py:108:16:108:16 | SSA variable y | test.py:108:10:108:10 | ControlFlowNode for y |
-| test.py:108:21:108:28 | ControlFlowNode for List [List element] | test.py:108:16:108:16 | SSA variable y |
-| test.py:108:22:108:27 | ControlFlowNode for SOURCE | test.py:108:21:108:28 | ControlFlowNode for List [List element] |
-| test.py:109:10:109:10 | ControlFlowNode for x [List element] | test.py:109:10:109:13 | ControlFlowNode for Subscript |
-| test.py:113:9:113:16 | ControlFlowNode for List [List element] | test.py:114:21:114:21 | ControlFlowNode for l [List element] |
-| test.py:113:10:113:15 | ControlFlowNode for SOURCE | test.py:113:9:113:16 | ControlFlowNode for List [List element] |
-| test.py:114:9:114:22 | ControlFlowNode for ListComp [List element] | test.py:115:10:115:10 | ControlFlowNode for x [List element] |
-| test.py:114:10:114:10 | ControlFlowNode for y | test.py:114:9:114:22 | ControlFlowNode for ListComp [List element] |
-| test.py:114:16:114:16 | SSA variable y | test.py:114:10:114:10 | ControlFlowNode for y |
-| test.py:114:21:114:21 | ControlFlowNode for l [List element] | test.py:114:16:114:16 | SSA variable y |
-| test.py:115:10:115:10 | ControlFlowNode for x [List element] | test.py:115:10:115:13 | ControlFlowNode for Subscript |
-| test.py:125:9:125:16 | ControlFlowNode for Set [Set element] | test.py:126:10:126:10 | ControlFlowNode for x [Set element] |
-| test.py:125:10:125:15 | ControlFlowNode for SOURCE | test.py:125:9:125:16 | ControlFlowNode for Set [Set element] |
-| test.py:126:10:126:10 | ControlFlowNode for x [Set element] | test.py:126:10:126:16 | ControlFlowNode for Attribute() |
-| test.py:130:9:130:37 | ControlFlowNode for SetComp [Set element] | test.py:131:10:131:10 | ControlFlowNode for x [Set element] |
-| test.py:130:10:130:15 | ControlFlowNode for SOURCE | test.py:130:9:130:37 | ControlFlowNode for SetComp [Set element] |
-| test.py:131:10:131:10 | ControlFlowNode for x [Set element] | test.py:131:10:131:16 | ControlFlowNode for Attribute() |
-| test.py:135:9:135:29 | ControlFlowNode for SetComp [Set element] | test.py:136:10:136:10 | ControlFlowNode for x [Set element] |
-| test.py:135:10:135:10 | ControlFlowNode for y | test.py:135:9:135:29 | ControlFlowNode for SetComp [Set element] |
-| test.py:135:16:135:16 | SSA variable y | test.py:135:10:135:10 | ControlFlowNode for y |
-| test.py:135:21:135:28 | ControlFlowNode for List [List element] | test.py:135:16:135:16 | SSA variable y |
-| test.py:135:22:135:27 | ControlFlowNode for SOURCE | test.py:135:21:135:28 | ControlFlowNode for List [List element] |
-| test.py:136:10:136:10 | ControlFlowNode for x [Set element] | test.py:136:10:136:16 | ControlFlowNode for Attribute() |
-| test.py:140:9:140:16 | ControlFlowNode for Set [Set element] | test.py:141:21:141:21 | ControlFlowNode for l [Set element] |
-| test.py:140:10:140:15 | ControlFlowNode for SOURCE | test.py:140:9:140:16 | ControlFlowNode for Set [Set element] |
-| test.py:141:9:141:22 | ControlFlowNode for SetComp [Set element] | test.py:142:10:142:10 | ControlFlowNode for x [Set element] |
-| test.py:141:10:141:10 | ControlFlowNode for y | test.py:141:9:141:22 | ControlFlowNode for SetComp [Set element] |
-| test.py:141:16:141:16 | SSA variable y | test.py:141:10:141:10 | ControlFlowNode for y |
-| test.py:141:21:141:21 | ControlFlowNode for l [Set element] | test.py:141:16:141:16 | SSA variable y |
-| test.py:142:10:142:10 | ControlFlowNode for x [Set element] | test.py:142:10:142:16 | ControlFlowNode for Attribute() |
-| test.py:152:9:152:21 | ControlFlowNode for Dict [Dictionary element at key s] | test.py:153:10:153:10 | ControlFlowNode for x [Dictionary element at key s] |
-| test.py:152:15:152:20 | ControlFlowNode for SOURCE | test.py:152:9:152:21 | ControlFlowNode for Dict [Dictionary element at key s] |
-| test.py:153:10:153:10 | ControlFlowNode for x [Dictionary element at key s] | test.py:153:10:153:15 | ControlFlowNode for Subscript |
-| test.py:157:9:157:21 | ControlFlowNode for Dict [Dictionary element at key s] | test.py:158:10:158:10 | ControlFlowNode for x [Dictionary element at key s] |
-| test.py:157:15:157:20 | ControlFlowNode for SOURCE | test.py:157:9:157:21 | ControlFlowNode for Dict [Dictionary element at key s] |
-| test.py:158:10:158:10 | ControlFlowNode for x [Dictionary element at key s] | test.py:158:10:158:19 | ControlFlowNode for Attribute() |
-| test.py:183:9:183:42 | ControlFlowNode for ListComp [List element] | test.py:184:10:184:10 | ControlFlowNode for x [List element] |
-| test.py:183:10:183:10 | ControlFlowNode for y | test.py:183:9:183:42 | ControlFlowNode for ListComp [List element] |
-| test.py:183:16:183:16 | SSA variable z [List element] | test.py:183:41:183:41 | ControlFlowNode for z [List element] |
-| test.py:183:21:183:30 | ControlFlowNode for List [List element, List element] | test.py:183:16:183:16 | SSA variable z [List element] |
-| test.py:183:22:183:29 | ControlFlowNode for List [List element] | test.py:183:21:183:30 | ControlFlowNode for List [List element, List element] |
-| test.py:183:23:183:28 | ControlFlowNode for SOURCE | test.py:183:22:183:29 | ControlFlowNode for List [List element] |
-| test.py:183:36:183:36 | SSA variable y | test.py:183:10:183:10 | ControlFlowNode for y |
-| test.py:183:41:183:41 | ControlFlowNode for z [List element] | test.py:183:36:183:36 | SSA variable y |
-| test.py:184:10:184:10 | ControlFlowNode for x [List element] | test.py:184:10:184:13 | ControlFlowNode for Subscript |
-| test.py:188:9:188:68 | ControlFlowNode for ListComp [List element] | test.py:189:10:189:10 | ControlFlowNode for x [List element] |
-| test.py:188:10:188:10 | ControlFlowNode for y | test.py:188:9:188:68 | ControlFlowNode for ListComp [List element] |
-| test.py:188:16:188:16 | SSA variable v [List element, List element, List element] | test.py:188:45:188:45 | ControlFlowNode for v [List element, List element, List element] |
-| test.py:188:21:188:34 | ControlFlowNode for List [List element, List element, List element, List element] | test.py:188:16:188:16 | SSA variable v [List element, List element, List element] |
-| test.py:188:22:188:33 | ControlFlowNode for List [List element, List element, List element] | test.py:188:21:188:34 | ControlFlowNode for List [List element, List element, List element, List element] |
-| test.py:188:23:188:32 | ControlFlowNode for List [List element, List element] | test.py:188:22:188:33 | ControlFlowNode for List [List element, List element, List element] |
-| test.py:188:24:188:31 | ControlFlowNode for List [List element] | test.py:188:23:188:32 | ControlFlowNode for List [List element, List element] |
-| test.py:188:25:188:30 | ControlFlowNode for SOURCE | test.py:188:24:188:31 | ControlFlowNode for List [List element] |
-| test.py:188:40:188:40 | SSA variable u [List element, List element] | test.py:188:56:188:56 | ControlFlowNode for u [List element, List element] |
-| test.py:188:45:188:45 | ControlFlowNode for v [List element, List element, List element] | test.py:188:40:188:40 | SSA variable u [List element, List element] |
-| test.py:188:51:188:51 | SSA variable z [List element] | test.py:188:67:188:67 | ControlFlowNode for z [List element] |
-| test.py:188:56:188:56 | ControlFlowNode for u [List element, List element] | test.py:188:51:188:51 | SSA variable z [List element] |
-| test.py:188:62:188:62 | SSA variable y | test.py:188:10:188:10 | ControlFlowNode for y |
-| test.py:188:67:188:67 | ControlFlowNode for z [List element] | test.py:188:62:188:62 | SSA variable y |
-| test.py:189:10:189:10 | ControlFlowNode for x [List element] | test.py:189:10:189:13 | ControlFlowNode for Subscript |
-| test.py:199:9:199:42 | ControlFlowNode for ListComp [List element] | test.py:200:10:200:10 | ControlFlowNode for x [List element] |
-| test.py:199:10:199:10 | ControlFlowNode for y | test.py:199:9:199:42 | ControlFlowNode for ListComp [List element] |
-| test.py:199:16:199:16 | SSA variable y | test.py:199:10:199:10 | ControlFlowNode for y |
-| test.py:199:22:199:22 | ControlFlowNode for z | test.py:199:22:199:40 | ControlFlowNode for GeneratorExp [List element] |
-| test.py:199:22:199:40 | ControlFlowNode for GeneratorExp [List element] | test.py:199:16:199:16 | SSA variable y |
-| test.py:199:28:199:28 | SSA variable z | test.py:199:22:199:22 | ControlFlowNode for z |
-| test.py:199:33:199:40 | ControlFlowNode for List [List element] | test.py:199:28:199:28 | SSA variable z |
-| test.py:199:34:199:39 | ControlFlowNode for SOURCE | test.py:199:33:199:40 | ControlFlowNode for List [List element] |
-| test.py:200:10:200:10 | ControlFlowNode for x [List element] | test.py:200:10:200:13 | ControlFlowNode for Subscript |
-| test.py:205:9:205:47 | ControlFlowNode for ListComp [List element] | test.py:206:10:206:10 | ControlFlowNode for x [List element] |
-| test.py:205:10:205:10 | ControlFlowNode for a | test.py:205:9:205:47 | ControlFlowNode for ListComp [List element] |
-| test.py:205:17:205:17 | SSA variable a | test.py:205:10:205:10 | ControlFlowNode for a |
-| test.py:205:17:205:20 | ControlFlowNode for Tuple [Tuple element at index 0] | test.py:205:17:205:17 | SSA variable a |
-| test.py:205:17:205:20 | IterableSequence [Tuple element at index 0] | test.py:205:17:205:20 | ControlFlowNode for Tuple [Tuple element at index 0] |
-| test.py:205:26:205:46 | ControlFlowNode for List [List element, Tuple element at index 0] | test.py:205:17:205:20 | IterableSequence [Tuple element at index 0] |
-| test.py:205:28:205:33 | ControlFlowNode for SOURCE | test.py:205:28:205:44 | ControlFlowNode for Tuple [Tuple element at index 0] |
-| test.py:205:28:205:44 | ControlFlowNode for Tuple [Tuple element at index 0] | test.py:205:26:205:46 | ControlFlowNode for List [List element, Tuple element at index 0] |
-| test.py:206:10:206:10 | ControlFlowNode for x [List element] | test.py:206:10:206:13 | ControlFlowNode for Subscript |
-| test.py:210:9:210:51 | ControlFlowNode for ListComp [List element] | test.py:211:10:211:10 | ControlFlowNode for x [List element] |
-| test.py:210:10:210:10 | ControlFlowNode for a [List element] | test.py:210:10:210:13 | ControlFlowNode for Subscript |
-| test.py:210:10:210:13 | ControlFlowNode for Subscript | test.py:210:9:210:51 | ControlFlowNode for ListComp [List element] |
-| test.py:210:20:210:21 | IterableElement | test.py:210:20:210:21 | SSA variable a [List element] |
-| test.py:210:20:210:21 | SSA variable a [List element] | test.py:210:10:210:10 | ControlFlowNode for a [List element] |
-| test.py:210:20:210:24 | ControlFlowNode for Tuple [Tuple element at index 0] | test.py:210:20:210:21 | IterableElement |
-| test.py:210:20:210:24 | IterableSequence [Tuple element at index 0] | test.py:210:20:210:24 | ControlFlowNode for Tuple [Tuple element at index 0] |
-| test.py:210:30:210:50 | ControlFlowNode for List [List element, Tuple element at index 0] | test.py:210:20:210:24 | IterableSequence [Tuple element at index 0] |
-| test.py:210:32:210:37 | ControlFlowNode for SOURCE | test.py:210:32:210:48 | ControlFlowNode for Tuple [Tuple element at index 0] |
-| test.py:210:32:210:48 | ControlFlowNode for Tuple [Tuple element at index 0] | test.py:210:30:210:50 | ControlFlowNode for List [List element, Tuple element at index 0] |
-| test.py:211:10:211:10 | ControlFlowNode for x [List element] | test.py:211:10:211:13 | ControlFlowNode for Subscript |
-| test.py:349:11:349:16 | ControlFlowNode for SOURCE | test.py:349:11:349:17 | ControlFlowNode for Tuple [Tuple element at index 0] |
-| test.py:349:11:349:17 | ControlFlowNode for Tuple [Tuple element at index 0] | test.py:349:10:349:21 | ControlFlowNode for Subscript |
-| test.py:353:10:353:17 | ControlFlowNode for List [List element] | test.py:353:10:353:20 | ControlFlowNode for Subscript |
-| test.py:353:11:353:16 | ControlFlowNode for SOURCE | test.py:353:10:353:17 | ControlFlowNode for List [List element] |
-| test.py:357:10:357:22 | ControlFlowNode for Dict [Dictionary element at key s] | test.py:357:10:357:27 | ControlFlowNode for Subscript |
-| test.py:357:16:357:21 | ControlFlowNode for SOURCE | test.py:357:10:357:22 | ControlFlowNode for Dict [Dictionary element at key s] |
-| test.py:375:15:375:15 | ControlFlowNode for b | test.py:376:12:376:12 | ControlFlowNode for b |
-| test.py:380:28:380:33 | ControlFlowNode for SOURCE | test.py:375:15:375:15 | ControlFlowNode for b |
-| test.py:380:28:380:33 | ControlFlowNode for SOURCE | test.py:380:10:380:34 | ControlFlowNode for second() |
-| test.py:388:30:388:35 | ControlFlowNode for SOURCE | test.py:375:15:375:15 | ControlFlowNode for b |
-| test.py:388:30:388:35 | ControlFlowNode for SOURCE | test.py:388:10:388:36 | ControlFlowNode for second() |
-| test.py:396:10:396:43 | KwUnpacked b | test.py:375:15:375:15 | ControlFlowNode for b |
-| test.py:396:10:396:43 | KwUnpacked b | test.py:396:10:396:43 | ControlFlowNode for second() |
-| test.py:396:30:396:42 | ControlFlowNode for Dict [Dictionary element at key b] | test.py:396:10:396:43 | KwUnpacked b |
-| test.py:396:36:396:41 | ControlFlowNode for SOURCE | test.py:396:30:396:42 | ControlFlowNode for Dict [Dictionary element at key b] |
-| test.py:399:21:399:21 | ControlFlowNode for b [Tuple element at index 0] | test.py:400:12:400:12 | ControlFlowNode for b [Tuple element at index 0] |
-| test.py:400:12:400:12 | ControlFlowNode for b [Tuple element at index 0] | test.py:400:12:400:15 | ControlFlowNode for Subscript |
-| test.py:404:10:404:39 | PosOverflowNode for f_extra_pos() [Tuple element at index 0] | test.py:399:21:399:21 | ControlFlowNode for b [Tuple element at index 0] |
-| test.py:404:10:404:39 | PosOverflowNode for f_extra_pos() [Tuple element at index 0] | test.py:404:10:404:39 | ControlFlowNode for f_extra_pos() |
-| test.py:404:33:404:38 | ControlFlowNode for SOURCE | test.py:404:10:404:39 | PosOverflowNode for f_extra_pos() [Tuple element at index 0] |
-| test.py:407:26:407:26 | ControlFlowNode for b [Dictionary element at key b] | test.py:408:12:408:12 | ControlFlowNode for b [Dictionary element at key b] |
-| test.py:408:12:408:12 | ControlFlowNode for b [Dictionary element at key b] | test.py:408:12:408:17 | ControlFlowNode for Subscript |
-| test.py:412:10:412:45 | KwOverflowNode for f_extra_keyword() [Dictionary element at key b] | test.py:407:26:407:26 | ControlFlowNode for b [Dictionary element at key b] |
-| test.py:412:10:412:45 | KwOverflowNode for f_extra_keyword() [Dictionary element at key b] | test.py:412:10:412:45 | ControlFlowNode for f_extra_keyword() |
-| test.py:412:39:412:44 | ControlFlowNode for SOURCE | test.py:412:10:412:45 | KwOverflowNode for f_extra_keyword() [Dictionary element at key b] |
-| test.py:429:15:429:20 | ControlFlowNode for SOURCE | test.py:429:10:429:20 | ControlFlowNode for BoolExpr |
-| test.py:434:16:434:21 | ControlFlowNode for SOURCE | test.py:434:10:434:21 | ControlFlowNode for BoolExpr |
-| test.py:445:10:445:15 | ControlFlowNode for SOURCE | test.py:445:10:445:38 | ControlFlowNode for IfExp |
-| test.py:453:34:453:39 | ControlFlowNode for SOURCE | test.py:453:10:453:39 | ControlFlowNode for IfExp |
-| test.py:474:11:474:11 | ControlFlowNode for x | test.py:475:16:475:16 | ControlFlowNode for x |
-| test.py:477:12:477:17 | ControlFlowNode for SOURCE | test.py:474:11:474:11 | ControlFlowNode for x |
-| test.py:477:12:477:17 | ControlFlowNode for SOURCE | test.py:477:10:477:18 | ControlFlowNode for f() |
-| test.py:481:19:481:19 | ControlFlowNode for b | test.py:482:16:482:16 | ControlFlowNode for b |
-| test.py:484:28:484:33 | ControlFlowNode for SOURCE | test.py:481:19:481:19 | ControlFlowNode for b |
-| test.py:484:28:484:33 | ControlFlowNode for SOURCE | test.py:484:10:484:34 | ControlFlowNode for second() |
-| test.py:495:19:495:19 | ControlFlowNode for b | test.py:496:16:496:16 | ControlFlowNode for b |
-| test.py:498:30:498:35 | ControlFlowNode for SOURCE | test.py:495:19:495:19 | ControlFlowNode for b |
-| test.py:498:30:498:35 | ControlFlowNode for SOURCE | test.py:498:10:498:36 | ControlFlowNode for second() |
-| test.py:509:19:509:19 | ControlFlowNode for b | test.py:510:16:510:16 | ControlFlowNode for b |
-| test.py:512:10:512:43 | KwUnpacked b | test.py:509:19:509:19 | ControlFlowNode for b |
-| test.py:512:10:512:43 | KwUnpacked b | test.py:512:10:512:43 | ControlFlowNode for second() |
-| test.py:512:30:512:42 | ControlFlowNode for Dict [Dictionary element at key b] | test.py:512:10:512:43 | KwUnpacked b |
-| test.py:512:36:512:41 | ControlFlowNode for SOURCE | test.py:512:30:512:42 | ControlFlowNode for Dict [Dictionary element at key b] |
-| test.py:516:30:516:30 | ControlFlowNode for b [Tuple element at index 0] | test.py:516:33:516:33 | ControlFlowNode for b [Tuple element at index 0] |
-| test.py:516:33:516:33 | ControlFlowNode for b [Tuple element at index 0] | test.py:516:33:516:36 | ControlFlowNode for Subscript |
-| test.py:517:10:517:39 | PosOverflowNode for f_extra_pos() [Tuple element at index 0] | test.py:516:30:516:30 | ControlFlowNode for b [Tuple element at index 0] |
-| test.py:517:10:517:39 | PosOverflowNode for f_extra_pos() [Tuple element at index 0] | test.py:517:10:517:39 | ControlFlowNode for f_extra_pos() |
-| test.py:517:33:517:38 | ControlFlowNode for SOURCE | test.py:517:10:517:39 | PosOverflowNode for f_extra_pos() [Tuple element at index 0] |
-| test.py:521:35:521:35 | ControlFlowNode for b [Dictionary element at key b] | test.py:521:38:521:38 | ControlFlowNode for b [Dictionary element at key b] |
-| test.py:521:38:521:38 | ControlFlowNode for b [Dictionary element at key b] | test.py:521:38:521:43 | ControlFlowNode for Subscript |
-| test.py:522:10:522:45 | KwOverflowNode for f_extra_keyword() [Dictionary element at key b] | test.py:521:35:521:35 | ControlFlowNode for b [Dictionary element at key b] |
-| test.py:522:10:522:45 | KwOverflowNode for f_extra_keyword() [Dictionary element at key b] | test.py:522:10:522:45 | ControlFlowNode for f_extra_keyword() |
-| test.py:522:39:522:44 | ControlFlowNode for SOURCE | test.py:522:10:522:45 | KwOverflowNode for f_extra_keyword() [Dictionary element at key b] |
-| test.py:534:9:534:14 | ControlFlowNode for SOURCE | test.py:536:10:536:10 | ControlFlowNode for a |
-| test.py:534:9:534:14 | ControlFlowNode for SOURCE | test.py:541:10:541:10 | ControlFlowNode for b |
-| test.py:546:10:546:15 | ControlFlowNode for SOURCE | test.py:546:10:546:26 | ControlFlowNode for Tuple [Tuple element at index 0] |
-| test.py:546:10:546:26 | ControlFlowNode for Tuple [Tuple element at index 0] | test.py:547:5:547:8 | ControlFlowNode for Tuple [Tuple element at index 0] |
-| test.py:547:5:547:5 | SSA variable a | test.py:548:10:548:10 | ControlFlowNode for a |
-| test.py:547:5:547:8 | ControlFlowNode for Tuple [Tuple element at index 0] | test.py:547:5:547:5 | SSA variable a |
-| test.py:554:10:554:15 | ControlFlowNode for SOURCE | test.py:554:10:554:36 | ControlFlowNode for Tuple [Tuple element at index 0] |
-| test.py:554:10:554:36 | ControlFlowNode for Tuple [Tuple element at index 0] | test.py:555:5:555:13 | ControlFlowNode for Tuple [Tuple element at index 0] |
-| test.py:554:10:554:36 | ControlFlowNode for Tuple [Tuple element at index 1, Tuple element at index 1] | test.py:555:5:555:13 | ControlFlowNode for Tuple [Tuple element at index 1, Tuple element at index 1] |
-| test.py:554:19:554:35 | ControlFlowNode for Tuple [Tuple element at index 1] | test.py:554:10:554:36 | ControlFlowNode for Tuple [Tuple element at index 1, Tuple element at index 1] |
-| test.py:554:30:554:35 | ControlFlowNode for SOURCE | test.py:554:19:554:35 | ControlFlowNode for Tuple [Tuple element at index 1] |
-| test.py:555:5:555:5 | SSA variable a | test.py:556:10:556:10 | ControlFlowNode for a |
-| test.py:555:5:555:13 | ControlFlowNode for Tuple [Tuple element at index 0] | test.py:555:5:555:5 | SSA variable a |
-| test.py:555:5:555:13 | ControlFlowNode for Tuple [Tuple element at index 1, Tuple element at index 1] | test.py:555:9:555:12 | IterableSequence [Tuple element at index 1] |
-| test.py:555:9:555:12 | ControlFlowNode for Tuple [Tuple element at index 1] | test.py:555:12:555:12 | SSA variable c |
-| test.py:555:9:555:12 | IterableSequence [Tuple element at index 1] | test.py:555:9:555:12 | ControlFlowNode for Tuple [Tuple element at index 1] |
-| test.py:555:12:555:12 | SSA variable c | test.py:558:10:558:10 | ControlFlowNode for c |
-| test.py:563:9:563:33 | ControlFlowNode for List [List element, List element, List element, List element] | test.py:564:5:564:14 | IterableSequence [List element, List element, List element, List element] |
-| test.py:563:10:563:21 | ControlFlowNode for List [List element, List element, List element] | test.py:563:9:563:33 | ControlFlowNode for List [List element, List element, List element, List element] |
-| test.py:563:11:563:20 | ControlFlowNode for List [List element, List element] | test.py:563:10:563:21 | ControlFlowNode for List [List element, List element, List element] |
-| test.py:563:12:563:19 | ControlFlowNode for List [List element] | test.py:563:11:563:20 | ControlFlowNode for List [List element, List element] |
-| test.py:563:13:563:18 | ControlFlowNode for SOURCE | test.py:563:12:563:19 | ControlFlowNode for List [List element] |
-| test.py:564:5:564:11 | ControlFlowNode for List [Tuple element at index 0, List element, List element] | test.py:564:6:564:10 | IterableSequence [List element, List element] |
-| test.py:564:5:564:11 | IterableElement [List element, List element] | test.py:564:5:564:11 | ControlFlowNode for List [Tuple element at index 0, List element, List element] |
-| test.py:564:5:564:11 | IterableSequence [List element, List element, List element] | test.py:564:5:564:11 | IterableElement [List element, List element] |
-| test.py:564:5:564:14 | ControlFlowNode for Tuple [Tuple element at index 0, List element, List element, List element] | test.py:564:5:564:11 | IterableSequence [List element, List element, List element] |
-| test.py:564:5:564:14 | IterableElement [List element, List element, List element] | test.py:564:5:564:14 | ControlFlowNode for Tuple [Tuple element at index 0, List element, List element, List element] |
-| test.py:564:5:564:14 | IterableSequence [List element, List element, List element, List element] | test.py:564:5:564:14 | IterableElement [List element, List element, List element] |
-| test.py:564:6:564:10 | ControlFlowNode for List [Tuple element at index 0, List element] | test.py:564:7:564:9 | IterableSequence [List element] |
-| test.py:564:6:564:10 | IterableElement [List element] | test.py:564:6:564:10 | ControlFlowNode for List [Tuple element at index 0, List element] |
-| test.py:564:6:564:10 | IterableSequence [List element, List element] | test.py:564:6:564:10 | IterableElement [List element] |
-| test.py:564:7:564:9 | ControlFlowNode for List [Tuple element at index 0] | test.py:564:8:564:8 | SSA variable a |
-| test.py:564:7:564:9 | IterableElement | test.py:564:7:564:9 | ControlFlowNode for List [Tuple element at index 0] |
-| test.py:564:7:564:9 | IterableSequence [List element] | test.py:564:7:564:9 | IterableElement |
-| test.py:564:8:564:8 | SSA variable a | test.py:565:10:565:10 | ControlFlowNode for a |
-| test.py:571:10:571:15 | ControlFlowNode for SOURCE | test.py:571:10:571:34 | ControlFlowNode for Tuple [Tuple element at index 0] |
-| test.py:571:10:571:34 | ControlFlowNode for Tuple [Tuple element at index 0] | test.py:572:5:572:12 | ControlFlowNode for Tuple [Tuple element at index 0] |
-| test.py:571:10:571:34 | ControlFlowNode for Tuple [Tuple element at index 1] | test.py:572:5:572:12 | ControlFlowNode for Tuple [Tuple element at index 1] |
-| test.py:571:18:571:23 | ControlFlowNode for SOURCE | test.py:571:10:571:34 | ControlFlowNode for Tuple [Tuple element at index 1] |
-| test.py:572:5:572:5 | SSA variable a | test.py:573:10:573:10 | ControlFlowNode for a |
-| test.py:572:5:572:12 | ControlFlowNode for Tuple [Tuple element at index 0] | test.py:572:5:572:5 | SSA variable a |
-| test.py:572:5:572:12 | ControlFlowNode for Tuple [Tuple element at index 1] | test.py:572:8:572:9 | IterableElement |
-| test.py:572:5:572:12 | ControlFlowNode for Tuple [Tuple element at index 1] | test.py:572:12:572:12 | SSA variable c |
-| test.py:572:8:572:9 | IterableElement | test.py:572:8:572:9 | SSA variable b [List element] |
-| test.py:572:8:572:9 | SSA variable b [List element] | test.py:575:10:575:10 | ControlFlowNode for b [List element] |
-| test.py:572:12:572:12 | SSA variable c | test.py:576:12:576:12 | ControlFlowNode for c |
-| test.py:575:10:575:10 | ControlFlowNode for b [List element] | test.py:575:10:575:13 | ControlFlowNode for Subscript |
-| test.py:581:10:581:15 | ControlFlowNode for SOURCE | test.py:581:10:581:23 | ControlFlowNode for Tuple [Tuple element at index 0] |
-| test.py:581:10:581:23 | ControlFlowNode for Tuple [Tuple element at index 0] | test.py:582:5:582:12 | ControlFlowNode for Tuple [Tuple element at index 0] |
-| test.py:581:10:581:23 | ControlFlowNode for Tuple [Tuple element at index 1] | test.py:582:5:582:12 | ControlFlowNode for Tuple [Tuple element at index 1] |
-| test.py:581:18:581:23 | ControlFlowNode for SOURCE | test.py:581:10:581:23 | ControlFlowNode for Tuple [Tuple element at index 1] |
-| test.py:582:5:582:5 | SSA variable a | test.py:583:10:583:10 | ControlFlowNode for a |
-| test.py:582:5:582:12 | ControlFlowNode for Tuple [Tuple element at index 0] | test.py:582:5:582:5 | SSA variable a |
-| test.py:582:5:582:12 | ControlFlowNode for Tuple [Tuple element at index 1] | test.py:582:12:582:12 | SSA variable c |
-| test.py:582:12:582:12 | SSA variable c | test.py:585:10:585:10 | ControlFlowNode for c |
-| test.py:590:10:590:61 | ControlFlowNode for List [List element, List element] | test.py:593:6:593:23 | IterableSequence [List element, List element] |
-| test.py:590:10:590:61 | ControlFlowNode for List [List element, List element] | test.py:601:5:601:24 | IterableSequence [List element, List element] |
-| test.py:590:10:590:61 | ControlFlowNode for List [List element, List element] | test.py:609:6:609:23 | IterableSequence [List element, List element] |
-| test.py:590:11:590:37 | ControlFlowNode for List [List element] | test.py:590:10:590:61 | ControlFlowNode for List [List element, List element] |
-| test.py:590:12:590:17 | ControlFlowNode for SOURCE | test.py:590:11:590:37 | ControlFlowNode for List [List element] |
-| test.py:590:31:590:36 | ControlFlowNode for SOURCE | test.py:590:11:590:37 | ControlFlowNode for List [List element] |
-| test.py:590:40:590:47 | ControlFlowNode for List [List element] | test.py:590:10:590:61 | ControlFlowNode for List [List element, List element] |
-| test.py:590:41:590:46 | ControlFlowNode for SOURCE | test.py:590:40:590:47 | ControlFlowNode for List [List element] |
-| test.py:593:6:593:23 | ControlFlowNode for Tuple [Tuple element at index 0, List element] | test.py:593:7:593:16 | IterableSequence [List element] |
-| test.py:593:6:593:23 | IterableElement [List element] | test.py:593:6:593:23 | ControlFlowNode for Tuple [Tuple element at index 0, List element] |
-| test.py:593:6:593:23 | IterableSequence [List element, List element] | test.py:593:6:593:23 | IterableElement [List element] |
-| test.py:593:7:593:8 | SSA variable a1 | test.py:594:10:594:11 | ControlFlowNode for a1 |
-| test.py:593:7:593:16 | ControlFlowNode for Tuple [Tuple element at index 0] | test.py:593:7:593:8 | SSA variable a1 |
-| test.py:593:7:593:16 | ControlFlowNode for Tuple [Tuple element at index 1] | test.py:593:11:593:12 | SSA variable a2 |
-| test.py:593:7:593:16 | ControlFlowNode for Tuple [Tuple element at index 2] | test.py:593:15:593:16 | SSA variable a3 |
-| test.py:593:7:593:16 | IterableElement | test.py:593:7:593:16 | ControlFlowNode for Tuple [Tuple element at index 0] |
-| test.py:593:7:593:16 | IterableElement | test.py:593:7:593:16 | ControlFlowNode for Tuple [Tuple element at index 1] |
-| test.py:593:7:593:16 | IterableElement | test.py:593:7:593:16 | ControlFlowNode for Tuple [Tuple element at index 2] |
-| test.py:593:7:593:16 | IterableSequence [List element] | test.py:593:7:593:16 | IterableElement |
-| test.py:593:11:593:12 | SSA variable a2 | test.py:595:12:595:13 | ControlFlowNode for a2 |
-| test.py:593:15:593:16 | SSA variable a3 | test.py:596:10:596:11 | ControlFlowNode for a3 |
-| test.py:601:5:601:24 | ControlFlowNode for List [Tuple element at index 0, List element] | test.py:601:7:601:16 | IterableSequence [List element] |
-| test.py:601:5:601:24 | IterableElement [List element] | test.py:601:5:601:24 | ControlFlowNode for List [Tuple element at index 0, List element] |
-| test.py:601:5:601:24 | IterableSequence [List element, List element] | test.py:601:5:601:24 | IterableElement [List element] |
-| test.py:601:7:601:8 | SSA variable a1 | test.py:602:10:602:11 | ControlFlowNode for a1 |
-| test.py:601:7:601:16 | ControlFlowNode for Tuple [Tuple element at index 0] | test.py:601:7:601:8 | SSA variable a1 |
-| test.py:601:7:601:16 | ControlFlowNode for Tuple [Tuple element at index 1] | test.py:601:11:601:12 | SSA variable a2 |
-| test.py:601:7:601:16 | ControlFlowNode for Tuple [Tuple element at index 2] | test.py:601:15:601:16 | SSA variable a3 |
-| test.py:601:7:601:16 | IterableElement | test.py:601:7:601:16 | ControlFlowNode for Tuple [Tuple element at index 0] |
-| test.py:601:7:601:16 | IterableElement | test.py:601:7:601:16 | ControlFlowNode for Tuple [Tuple element at index 1] |
-| test.py:601:7:601:16 | IterableElement | test.py:601:7:601:16 | ControlFlowNode for Tuple [Tuple element at index 2] |
-| test.py:601:7:601:16 | IterableSequence [List element] | test.py:601:7:601:16 | IterableElement |
-| test.py:601:11:601:12 | SSA variable a2 | test.py:603:12:603:13 | ControlFlowNode for a2 |
-| test.py:601:15:601:16 | SSA variable a3 | test.py:604:10:604:11 | ControlFlowNode for a3 |
-| test.py:609:6:609:17 | ControlFlowNode for List [Tuple element at index 0] | test.py:609:7:609:8 | SSA variable a1 |
-| test.py:609:6:609:17 | ControlFlowNode for List [Tuple element at index 1] | test.py:609:11:609:12 | SSA variable a2 |
-| test.py:609:6:609:17 | ControlFlowNode for List [Tuple element at index 2] | test.py:609:15:609:16 | SSA variable a3 |
-| test.py:609:6:609:17 | IterableElement | test.py:609:6:609:17 | ControlFlowNode for List [Tuple element at index 0] |
-| test.py:609:6:609:17 | IterableElement | test.py:609:6:609:17 | ControlFlowNode for List [Tuple element at index 1] |
-| test.py:609:6:609:17 | IterableElement | test.py:609:6:609:17 | ControlFlowNode for List [Tuple element at index 2] |
-| test.py:609:6:609:17 | IterableSequence [List element] | test.py:609:6:609:17 | IterableElement |
-| test.py:609:6:609:23 | ControlFlowNode for Tuple [Tuple element at index 0, List element] | test.py:609:6:609:17 | IterableSequence [List element] |
-| test.py:609:6:609:23 | IterableElement [List element] | test.py:609:6:609:23 | ControlFlowNode for Tuple [Tuple element at index 0, List element] |
-| test.py:609:6:609:23 | IterableSequence [List element, List element] | test.py:609:6:609:23 | IterableElement [List element] |
-| test.py:609:7:609:8 | SSA variable a1 | test.py:610:10:610:11 | ControlFlowNode for a1 |
-| test.py:609:11:609:12 | SSA variable a2 | test.py:611:12:611:13 | ControlFlowNode for a2 |
-| test.py:609:15:609:16 | SSA variable a3 | test.py:612:10:612:11 | ControlFlowNode for a3 |
-| test.py:618:11:618:47 | ControlFlowNode for Tuple [Tuple element at index 0, Tuple element at index 0] | test.py:621:5:621:19 | ControlFlowNode for List [Tuple element at index 0, Tuple element at index 0] |
-| test.py:618:11:618:47 | ControlFlowNode for Tuple [Tuple element at index 0, Tuple element at index 0] | test.py:630:6:630:18 | ControlFlowNode for Tuple [Tuple element at index 0, Tuple element at index 0] |
-| test.py:618:11:618:47 | ControlFlowNode for Tuple [Tuple element at index 0, Tuple element at index 0] | test.py:639:5:639:19 | ControlFlowNode for List [Tuple element at index 0, Tuple element at index 0] |
-| test.py:618:11:618:47 | ControlFlowNode for Tuple [Tuple element at index 0, Tuple element at index 0] | test.py:648:6:648:18 | ControlFlowNode for Tuple [Tuple element at index 0, Tuple element at index 0] |
-| test.py:618:11:618:47 | ControlFlowNode for Tuple [Tuple element at index 0, Tuple element at index 2] | test.py:621:5:621:19 | ControlFlowNode for List [Tuple element at index 0, Tuple element at index 2] |
-| test.py:618:11:618:47 | ControlFlowNode for Tuple [Tuple element at index 0, Tuple element at index 2] | test.py:630:6:630:18 | ControlFlowNode for Tuple [Tuple element at index 0, Tuple element at index 2] |
-| test.py:618:11:618:47 | ControlFlowNode for Tuple [Tuple element at index 0, Tuple element at index 2] | test.py:639:5:639:19 | ControlFlowNode for List [Tuple element at index 0, Tuple element at index 2] |
-| test.py:618:11:618:47 | ControlFlowNode for Tuple [Tuple element at index 0, Tuple element at index 2] | test.py:648:6:648:18 | ControlFlowNode for Tuple [Tuple element at index 0, Tuple element at index 2] |
-| test.py:618:12:618:17 | ControlFlowNode for SOURCE | test.py:618:12:618:36 | ControlFlowNode for Tuple [Tuple element at index 0] |
-| test.py:618:12:618:36 | ControlFlowNode for Tuple [Tuple element at index 0] | test.py:618:11:618:47 | ControlFlowNode for Tuple [Tuple element at index 0, Tuple element at index 0] |
-| test.py:618:12:618:36 | ControlFlowNode for Tuple [Tuple element at index 2] | test.py:618:11:618:47 | ControlFlowNode for Tuple [Tuple element at index 0, Tuple element at index 2] |
-| test.py:618:31:618:36 | ControlFlowNode for SOURCE | test.py:618:12:618:36 | ControlFlowNode for Tuple [Tuple element at index 2] |
-| test.py:621:5:621:19 | ControlFlowNode for List [Tuple element at index 0, Tuple element at index 0] | test.py:621:6:621:14 | IterableSequence [Tuple element at index 0] |
-| test.py:621:5:621:19 | ControlFlowNode for List [Tuple element at index 0, Tuple element at index 2] | test.py:621:6:621:14 | IterableSequence [Tuple element at index 2] |
-| test.py:621:6:621:14 | ControlFlowNode for List [Tuple element at index 0] | test.py:621:7:621:8 | SSA variable a1 |
-| test.py:621:6:621:14 | ControlFlowNode for List [Tuple element at index 2] | test.py:621:11:621:13 | IterableElement |
-| test.py:621:6:621:14 | IterableSequence [Tuple element at index 0] | test.py:621:6:621:14 | ControlFlowNode for List [Tuple element at index 0] |
-| test.py:621:6:621:14 | IterableSequence [Tuple element at index 2] | test.py:621:6:621:14 | ControlFlowNode for List [Tuple element at index 2] |
-| test.py:621:7:621:8 | SSA variable a1 | test.py:622:10:622:11 | ControlFlowNode for a1 |
-| test.py:621:11:621:13 | IterableElement | test.py:621:11:621:13 | SSA variable a2 [List element] |
-| test.py:621:11:621:13 | SSA variable a2 [List element] | test.py:624:12:624:13 | ControlFlowNode for a2 [List element] |
-| test.py:621:11:621:13 | SSA variable a2 [List element] | test.py:625:10:625:11 | ControlFlowNode for a2 [List element] |
-| test.py:624:12:624:13 | ControlFlowNode for a2 [List element] | test.py:624:12:624:16 | ControlFlowNode for Subscript |
-| test.py:625:10:625:11 | ControlFlowNode for a2 [List element] | test.py:625:10:625:14 | ControlFlowNode for Subscript |
-| test.py:630:6:630:18 | ControlFlowNode for Tuple [Tuple element at index 0, Tuple element at index 0] | test.py:630:7:630:13 | IterableSequence [Tuple element at index 0] |
-| test.py:630:6:630:18 | ControlFlowNode for Tuple [Tuple element at index 0, Tuple element at index 2] | test.py:630:7:630:13 | IterableSequence [Tuple element at index 2] |
-| test.py:630:7:630:8 | SSA variable a1 | test.py:631:10:631:11 | ControlFlowNode for a1 |
-| test.py:630:7:630:13 | ControlFlowNode for Tuple [Tuple element at index 0] | test.py:630:7:630:8 | SSA variable a1 |
-| test.py:630:7:630:13 | ControlFlowNode for Tuple [Tuple element at index 2] | test.py:630:11:630:13 | IterableElement |
-| test.py:630:7:630:13 | IterableSequence [Tuple element at index 0] | test.py:630:7:630:13 | ControlFlowNode for Tuple [Tuple element at index 0] |
-| test.py:630:7:630:13 | IterableSequence [Tuple element at index 2] | test.py:630:7:630:13 | ControlFlowNode for Tuple [Tuple element at index 2] |
-| test.py:630:11:630:13 | IterableElement | test.py:630:11:630:13 | SSA variable a2 [List element] |
-| test.py:630:11:630:13 | SSA variable a2 [List element] | test.py:633:12:633:13 | ControlFlowNode for a2 [List element] |
-| test.py:630:11:630:13 | SSA variable a2 [List element] | test.py:634:10:634:11 | ControlFlowNode for a2 [List element] |
-| test.py:633:12:633:13 | ControlFlowNode for a2 [List element] | test.py:633:12:633:16 | ControlFlowNode for Subscript |
-| test.py:634:10:634:11 | ControlFlowNode for a2 [List element] | test.py:634:10:634:14 | ControlFlowNode for Subscript |
-| test.py:639:5:639:19 | ControlFlowNode for List [Tuple element at index 0, Tuple element at index 0] | test.py:639:7:639:13 | IterableSequence [Tuple element at index 0] |
-| test.py:639:5:639:19 | ControlFlowNode for List [Tuple element at index 0, Tuple element at index 2] | test.py:639:7:639:13 | IterableSequence [Tuple element at index 2] |
-| test.py:639:7:639:8 | SSA variable a1 | test.py:640:10:640:11 | ControlFlowNode for a1 |
-| test.py:639:7:639:13 | ControlFlowNode for Tuple [Tuple element at index 0] | test.py:639:7:639:8 | SSA variable a1 |
-| test.py:639:7:639:13 | ControlFlowNode for Tuple [Tuple element at index 2] | test.py:639:11:639:13 | IterableElement |
-| test.py:639:7:639:13 | IterableSequence [Tuple element at index 0] | test.py:639:7:639:13 | ControlFlowNode for Tuple [Tuple element at index 0] |
-| test.py:639:7:639:13 | IterableSequence [Tuple element at index 2] | test.py:639:7:639:13 | ControlFlowNode for Tuple [Tuple element at index 2] |
-| test.py:639:11:639:13 | IterableElement | test.py:639:11:639:13 | SSA variable a2 [List element] |
-| test.py:639:11:639:13 | SSA variable a2 [List element] | test.py:642:12:642:13 | ControlFlowNode for a2 [List element] |
-| test.py:639:11:639:13 | SSA variable a2 [List element] | test.py:643:10:643:11 | ControlFlowNode for a2 [List element] |
-| test.py:642:12:642:13 | ControlFlowNode for a2 [List element] | test.py:642:12:642:16 | ControlFlowNode for Subscript |
-| test.py:643:10:643:11 | ControlFlowNode for a2 [List element] | test.py:643:10:643:14 | ControlFlowNode for Subscript |
-| test.py:648:6:648:14 | ControlFlowNode for List [Tuple element at index 0] | test.py:648:7:648:8 | SSA variable a1 |
-| test.py:648:6:648:14 | ControlFlowNode for List [Tuple element at index 2] | test.py:648:11:648:13 | IterableElement |
-| test.py:648:6:648:14 | IterableSequence [Tuple element at index 0] | test.py:648:6:648:14 | ControlFlowNode for List [Tuple element at index 0] |
-| test.py:648:6:648:14 | IterableSequence [Tuple element at index 2] | test.py:648:6:648:14 | ControlFlowNode for List [Tuple element at index 2] |
-| test.py:648:6:648:18 | ControlFlowNode for Tuple [Tuple element at index 0, Tuple element at index 0] | test.py:648:6:648:14 | IterableSequence [Tuple element at index 0] |
-| test.py:648:6:648:18 | ControlFlowNode for Tuple [Tuple element at index 0, Tuple element at index 2] | test.py:648:6:648:14 | IterableSequence [Tuple element at index 2] |
-| test.py:648:7:648:8 | SSA variable a1 | test.py:649:10:649:11 | ControlFlowNode for a1 |
-| test.py:648:11:648:13 | IterableElement | test.py:648:11:648:13 | SSA variable a2 [List element] |
-| test.py:648:11:648:13 | SSA variable a2 [List element] | test.py:651:12:651:13 | ControlFlowNode for a2 [List element] |
-| test.py:648:11:648:13 | SSA variable a2 [List element] | test.py:652:10:652:11 | ControlFlowNode for a2 [List element] |
-| test.py:651:12:651:13 | ControlFlowNode for a2 [List element] | test.py:651:12:651:16 | ControlFlowNode for Subscript |
-| test.py:652:10:652:11 | ControlFlowNode for a2 [List element] | test.py:652:10:652:14 | ControlFlowNode for Subscript |
-| test.py:659:19:659:24 | ControlFlowNode for SOURCE | test.py:660:10:660:10 | ControlFlowNode for a |
-| test.py:667:10:667:51 | ControlFlowNode for List [List element, Tuple element at index 0] | test.py:668:16:668:17 | ControlFlowNode for tl [List element, Tuple element at index 0] |
-| test.py:667:12:667:17 | ControlFlowNode for SOURCE | test.py:667:12:667:28 | ControlFlowNode for Tuple [Tuple element at index 0] |
-| test.py:667:12:667:28 | ControlFlowNode for Tuple [Tuple element at index 0] | test.py:667:10:667:51 | ControlFlowNode for List [List element, Tuple element at index 0] |
-| test.py:667:33:667:38 | ControlFlowNode for SOURCE | test.py:667:33:667:49 | ControlFlowNode for Tuple [Tuple element at index 0] |
-| test.py:667:33:667:49 | ControlFlowNode for Tuple [Tuple element at index 0] | test.py:667:10:667:51 | ControlFlowNode for List [List element, Tuple element at index 0] |
-| test.py:668:9:668:9 | SSA variable x | test.py:669:14:669:14 | ControlFlowNode for x |
-| test.py:668:9:668:11 | ControlFlowNode for Tuple [Tuple element at index 0] | test.py:668:9:668:9 | SSA variable x |
-| test.py:668:9:668:11 | IterableSequence [Tuple element at index 0] | test.py:668:9:668:11 | ControlFlowNode for Tuple [Tuple element at index 0] |
-| test.py:668:16:668:17 | ControlFlowNode for tl [List element, Tuple element at index 0] | test.py:668:9:668:11 | IterableSequence [Tuple element at index 0] |
-| test.py:675:10:675:51 | ControlFlowNode for List [List element, Tuple element at index 0] | test.py:676:17:676:18 | ControlFlowNode for tl [List element, Tuple element at index 0] |
-| test.py:675:12:675:17 | ControlFlowNode for SOURCE | test.py:675:12:675:28 | ControlFlowNode for Tuple [Tuple element at index 0] |
-| test.py:675:12:675:28 | ControlFlowNode for Tuple [Tuple element at index 0] | test.py:675:10:675:51 | ControlFlowNode for List [List element, Tuple element at index 0] |
-| test.py:675:33:675:38 | ControlFlowNode for SOURCE | test.py:675:33:675:49 | ControlFlowNode for Tuple [Tuple element at index 0] |
-| test.py:675:33:675:49 | ControlFlowNode for Tuple [Tuple element at index 0] | test.py:675:10:675:51 | ControlFlowNode for List [List element, Tuple element at index 0] |
-| test.py:676:9:676:10 | IterableElement | test.py:676:9:676:10 | SSA variable x [List element] |
-| test.py:676:9:676:10 | SSA variable x [List element] | test.py:678:14:678:14 | ControlFlowNode for x [List element] |
-| test.py:676:9:676:12 | ControlFlowNode for Tuple [Tuple element at index 0] | test.py:676:9:676:10 | IterableElement |
-| test.py:676:9:676:12 | ControlFlowNode for Tuple [Tuple element at index 0] | test.py:676:12:676:12 | SSA variable y |
-| test.py:676:9:676:12 | IterableSequence [Tuple element at index 0] | test.py:676:9:676:12 | ControlFlowNode for Tuple [Tuple element at index 0] |
-| test.py:676:12:676:12 | SSA variable y | test.py:679:16:679:16 | ControlFlowNode for y |
-| test.py:676:17:676:18 | ControlFlowNode for tl [List element, Tuple element at index 0] | test.py:676:9:676:12 | IterableSequence [Tuple element at index 0] |
-| test.py:678:14:678:14 | ControlFlowNode for x [List element] | test.py:678:14:678:17 | ControlFlowNode for Subscript |
-| test.py:684:10:684:51 | ControlFlowNode for List [List element, Tuple element at index 0] | test.py:685:19:685:20 | ControlFlowNode for tl [List element, Tuple element at index 0] |
-| test.py:684:12:684:17 | ControlFlowNode for SOURCE | test.py:684:12:684:28 | ControlFlowNode for Tuple [Tuple element at index 0] |
-| test.py:684:12:684:28 | ControlFlowNode for Tuple [Tuple element at index 0] | test.py:684:10:684:51 | ControlFlowNode for List [List element, Tuple element at index 0] |
-| test.py:684:33:684:38 | ControlFlowNode for SOURCE | test.py:684:33:684:49 | ControlFlowNode for Tuple [Tuple element at index 0] |
-| test.py:684:33:684:49 | ControlFlowNode for Tuple [Tuple element at index 0] | test.py:684:10:684:51 | ControlFlowNode for List [List element, Tuple element at index 0] |
-| test.py:685:9:685:9 | SSA variable x | test.py:686:14:686:14 | ControlFlowNode for x |
-| test.py:685:9:685:14 | ControlFlowNode for Tuple [Tuple element at index 0] | test.py:685:9:685:9 | SSA variable x |
-| test.py:685:9:685:14 | IterableSequence [Tuple element at index 0] | test.py:685:9:685:14 | ControlFlowNode for Tuple [Tuple element at index 0] |
-| test.py:685:19:685:20 | ControlFlowNode for tl [List element, Tuple element at index 0] | test.py:685:9:685:14 | IterableSequence [Tuple element at index 0] |
-| test.py:690:39:690:42 | ControlFlowNode for args [Tuple element at index 0] | test.py:691:14:691:17 | ControlFlowNode for args [Tuple element at index 0] |
-| test.py:690:39:690:42 | ControlFlowNode for args [Tuple element at index 1] | test.py:691:14:691:17 | ControlFlowNode for args [Tuple element at index 1] |
-| test.py:691:7:691:9 | SSA variable arg | test.py:692:10:692:12 | ControlFlowNode for arg |
-| test.py:691:14:691:17 | ControlFlowNode for args [Tuple element at index 0] | test.py:691:7:691:9 | SSA variable arg |
-| test.py:691:14:691:17 | ControlFlowNode for args [Tuple element at index 1] | test.py:691:7:691:9 | SSA variable arg |
-| test.py:697:7:697:12 | ControlFlowNode for SOURCE | test.py:698:51:698:51 | ControlFlowNode for s |
-| test.py:698:3:698:52 | PosOverflowNode for iterate_star_args() [Tuple element at index 0] | test.py:690:39:690:42 | ControlFlowNode for args [Tuple element at index 0] |
-| test.py:698:3:698:52 | PosOverflowNode for iterate_star_args() [Tuple element at index 1] | test.py:690:39:690:42 | ControlFlowNode for args [Tuple element at index 1] |
-| test.py:698:43:698:48 | ControlFlowNode for SOURCE | test.py:698:3:698:52 | PosOverflowNode for iterate_star_args() [Tuple element at index 0] |
-| test.py:698:51:698:51 | ControlFlowNode for s | test.py:698:3:698:52 | PosOverflowNode for iterate_star_args() [Tuple element at index 1] |
-| test.py:769:16:769:21 | ControlFlowNode for SOURCE | test.py:772:10:772:36 | ControlFlowNode for return_from_inner_scope() |
-| test.py:807:35:807:35 | ControlFlowNode for x | test.py:808:10:808:10 | ControlFlowNode for x |
-| test.py:807:37:807:42 | ControlFlowNode for SOURCE | test.py:807:35:807:35 | ControlFlowNode for x |
-| test.py:807:48:807:48 | ControlFlowNode for y | test.py:809:10:809:10 | ControlFlowNode for y |
-| test.py:807:50:807:55 | ControlFlowNode for SOURCE | test.py:807:48:807:48 | ControlFlowNode for y |
-| test.py:807:61:807:61 | ControlFlowNode for z | test.py:810:10:810:10 | ControlFlowNode for z |
-| test.py:807:63:807:68 | ControlFlowNode for SOURCE | test.py:807:61:807:61 | ControlFlowNode for z |
-nodes
-| datamodel.py:35:7:35:7 | ControlFlowNode for a | semmle.label | ControlFlowNode for a |
-| datamodel.py:36:10:36:10 | ControlFlowNode for a | semmle.label | ControlFlowNode for a |
-| datamodel.py:38:6:38:17 | ControlFlowNode for f() | semmle.label | ControlFlowNode for f() |
-| datamodel.py:38:8:38:13 | ControlFlowNode for SOURCE | semmle.label | ControlFlowNode for SOURCE |
-| datamodel.py:44:22:44:22 | ControlFlowNode for x | semmle.label | ControlFlowNode for x |
-| datamodel.py:46:16:46:16 | ControlFlowNode for x | semmle.label | ControlFlowNode for x |
-| datamodel.py:49:26:49:26 | ControlFlowNode for x | semmle.label | ControlFlowNode for x |
-| datamodel.py:50:16:50:16 | ControlFlowNode for x | semmle.label | ControlFlowNode for x |
-| datamodel.py:53:22:53:22 | ControlFlowNode for x | semmle.label | ControlFlowNode for x |
-| datamodel.py:54:16:54:16 | ControlFlowNode for x | semmle.label | ControlFlowNode for x |
-| datamodel.py:71:6:71:24 | ControlFlowNode for Attribute() | semmle.label | ControlFlowNode for Attribute() |
-| datamodel.py:71:15:71:20 | ControlFlowNode for SOURCE | semmle.label | ControlFlowNode for SOURCE |
-| datamodel.py:72:6:72:27 | ControlFlowNode for Attribute() | semmle.label | ControlFlowNode for Attribute() |
-| datamodel.py:72:18:72:23 | ControlFlowNode for SOURCE | semmle.label | ControlFlowNode for SOURCE |
-| datamodel.py:80:6:80:26 | ControlFlowNode for Attribute() | semmle.label | ControlFlowNode for Attribute() |
-| datamodel.py:80:20:80:25 | ControlFlowNode for SOURCE | semmle.label | ControlFlowNode for SOURCE |
-| datamodel.py:81:6:81:26 | ControlFlowNode for Attribute() | semmle.label | ControlFlowNode for Attribute() |
-| datamodel.py:81:20:81:25 | ControlFlowNode for SOURCE | semmle.label | ControlFlowNode for SOURCE |
-| datamodel.py:88:6:88:27 | ControlFlowNode for Attribute() | semmle.label | ControlFlowNode for Attribute() |
-| datamodel.py:88:21:88:26 | ControlFlowNode for SOURCE | semmle.label | ControlFlowNode for SOURCE |
-| datamodel.py:89:6:89:27 | ControlFlowNode for Attribute() | semmle.label | ControlFlowNode for Attribute() |
-| datamodel.py:89:21:89:26 | ControlFlowNode for SOURCE | semmle.label | ControlFlowNode for SOURCE |
-| datamodel.py:161:5:161:8 | [post store] ControlFlowNode for self [Attribute b] | semmle.label | [post store] ControlFlowNode for self [Attribute b] |
-| datamodel.py:161:14:161:19 | ControlFlowNode for SOURCE | semmle.label | ControlFlowNode for SOURCE |
-| datamodel.py:164:14:164:25 | ControlFlowNode for Customized() [Attribute b] | semmle.label | ControlFlowNode for Customized() [Attribute b] |
-| datamodel.py:168:6:168:15 | ControlFlowNode for customized [Attribute b] | semmle.label | ControlFlowNode for customized [Attribute b] |
-| datamodel.py:168:6:168:17 | ControlFlowNode for Attribute | semmle.label | ControlFlowNode for Attribute |
-| test.py:42:10:42:26 | ControlFlowNode for Tuple [Tuple element at index 1] | semmle.label | ControlFlowNode for Tuple [Tuple element at index 1] |
-| test.py:42:21:42:26 | ControlFlowNode for SOURCE | semmle.label | ControlFlowNode for SOURCE |
-| test.py:43:9:43:9 | ControlFlowNode for x [Tuple element at index 1] | semmle.label | ControlFlowNode for x [Tuple element at index 1] |
-| test.py:43:9:43:12 | ControlFlowNode for Subscript | semmle.label | ControlFlowNode for Subscript |
-| test.py:44:10:44:10 | ControlFlowNode for y | semmle.label | ControlFlowNode for y |
-| test.py:55:9:55:14 | ControlFlowNode for SOURCE | semmle.label | ControlFlowNode for SOURCE |
-| test.py:56:10:56:10 | ControlFlowNode for x | semmle.label | ControlFlowNode for x |
-| test.py:61:9:61:16 | ControlFlowNode for Str | semmle.label | ControlFlowNode for Str |
-| test.py:62:10:62:10 | ControlFlowNode for x | semmle.label | ControlFlowNode for x |
-| test.py:66:9:66:17 | ControlFlowNode for Str | semmle.label | ControlFlowNode for Str |
-| test.py:67:10:67:10 | ControlFlowNode for x | semmle.label | ControlFlowNode for x |
-| test.py:71:9:71:10 | ControlFlowNode for IntegerLiteral | semmle.label | ControlFlowNode for IntegerLiteral |
-| test.py:72:10:72:10 | ControlFlowNode for x | semmle.label | ControlFlowNode for x |
-| test.py:76:9:76:12 | ControlFlowNode for FloatLiteral | semmle.label | ControlFlowNode for FloatLiteral |
-| test.py:77:10:77:10 | ControlFlowNode for x | semmle.label | ControlFlowNode for x |
-| test.py:87:10:87:15 | ControlFlowNode for SOURCE | semmle.label | ControlFlowNode for SOURCE |
-| test.py:88:10:88:10 | ControlFlowNode for x | semmle.label | ControlFlowNode for x |
-| test.py:93:9:93:16 | ControlFlowNode for List [List element] | semmle.label | ControlFlowNode for List [List element] |
-| test.py:93:10:93:15 | ControlFlowNode for SOURCE | semmle.label | ControlFlowNode for SOURCE |
-| test.py:94:10:94:10 | ControlFlowNode for x [List element] | semmle.label | ControlFlowNode for x [List element] |
-| test.py:94:10:94:13 | ControlFlowNode for Subscript | semmle.label | ControlFlowNode for Subscript |
-| test.py:103:9:103:37 | ControlFlowNode for ListComp [List element] | semmle.label | ControlFlowNode for ListComp [List element] |
-| test.py:103:10:103:15 | ControlFlowNode for SOURCE | semmle.label | ControlFlowNode for SOURCE |
-| test.py:104:10:104:10 | ControlFlowNode for x [List element] | semmle.label | ControlFlowNode for x [List element] |
-| test.py:104:10:104:13 | ControlFlowNode for Subscript | semmle.label | ControlFlowNode for Subscript |
-| test.py:108:9:108:29 | ControlFlowNode for ListComp [List element] | semmle.label | ControlFlowNode for ListComp [List element] |
-| test.py:108:10:108:10 | ControlFlowNode for y | semmle.label | ControlFlowNode for y |
-| test.py:108:16:108:16 | SSA variable y | semmle.label | SSA variable y |
-| test.py:108:21:108:28 | ControlFlowNode for List [List element] | semmle.label | ControlFlowNode for List [List element] |
-| test.py:108:22:108:27 | ControlFlowNode for SOURCE | semmle.label | ControlFlowNode for SOURCE |
-| test.py:109:10:109:10 | ControlFlowNode for x [List element] | semmle.label | ControlFlowNode for x [List element] |
-| test.py:109:10:109:13 | ControlFlowNode for Subscript | semmle.label | ControlFlowNode for Subscript |
-| test.py:113:9:113:16 | ControlFlowNode for List [List element] | semmle.label | ControlFlowNode for List [List element] |
-| test.py:113:10:113:15 | ControlFlowNode for SOURCE | semmle.label | ControlFlowNode for SOURCE |
-| test.py:114:9:114:22 | ControlFlowNode for ListComp [List element] | semmle.label | ControlFlowNode for ListComp [List element] |
-| test.py:114:10:114:10 | ControlFlowNode for y | semmle.label | ControlFlowNode for y |
-| test.py:114:16:114:16 | SSA variable y | semmle.label | SSA variable y |
-| test.py:114:21:114:21 | ControlFlowNode for l [List element] | semmle.label | ControlFlowNode for l [List element] |
-| test.py:115:10:115:10 | ControlFlowNode for x [List element] | semmle.label | ControlFlowNode for x [List element] |
-| test.py:115:10:115:13 | ControlFlowNode for Subscript | semmle.label | ControlFlowNode for Subscript |
-| test.py:125:9:125:16 | ControlFlowNode for Set [Set element] | semmle.label | ControlFlowNode for Set [Set element] |
-| test.py:125:10:125:15 | ControlFlowNode for SOURCE | semmle.label | ControlFlowNode for SOURCE |
-| test.py:126:10:126:10 | ControlFlowNode for x [Set element] | semmle.label | ControlFlowNode for x [Set element] |
-| test.py:126:10:126:16 | ControlFlowNode for Attribute() | semmle.label | ControlFlowNode for Attribute() |
-| test.py:130:9:130:37 | ControlFlowNode for SetComp [Set element] | semmle.label | ControlFlowNode for SetComp [Set element] |
-| test.py:130:10:130:15 | ControlFlowNode for SOURCE | semmle.label | ControlFlowNode for SOURCE |
-| test.py:131:10:131:10 | ControlFlowNode for x [Set element] | semmle.label | ControlFlowNode for x [Set element] |
-| test.py:131:10:131:16 | ControlFlowNode for Attribute() | semmle.label | ControlFlowNode for Attribute() |
-| test.py:135:9:135:29 | ControlFlowNode for SetComp [Set element] | semmle.label | ControlFlowNode for SetComp [Set element] |
-| test.py:135:10:135:10 | ControlFlowNode for y | semmle.label | ControlFlowNode for y |
-| test.py:135:16:135:16 | SSA variable y | semmle.label | SSA variable y |
-| test.py:135:21:135:28 | ControlFlowNode for List [List element] | semmle.label | ControlFlowNode for List [List element] |
-| test.py:135:22:135:27 | ControlFlowNode for SOURCE | semmle.label | ControlFlowNode for SOURCE |
-| test.py:136:10:136:10 | ControlFlowNode for x [Set element] | semmle.label | ControlFlowNode for x [Set element] |
-| test.py:136:10:136:16 | ControlFlowNode for Attribute() | semmle.label | ControlFlowNode for Attribute() |
-| test.py:140:9:140:16 | ControlFlowNode for Set [Set element] | semmle.label | ControlFlowNode for Set [Set element] |
-| test.py:140:10:140:15 | ControlFlowNode for SOURCE | semmle.label | ControlFlowNode for SOURCE |
-| test.py:141:9:141:22 | ControlFlowNode for SetComp [Set element] | semmle.label | ControlFlowNode for SetComp [Set element] |
-| test.py:141:10:141:10 | ControlFlowNode for y | semmle.label | ControlFlowNode for y |
-| test.py:141:16:141:16 | SSA variable y | semmle.label | SSA variable y |
-| test.py:141:21:141:21 | ControlFlowNode for l [Set element] | semmle.label | ControlFlowNode for l [Set element] |
-| test.py:142:10:142:10 | ControlFlowNode for x [Set element] | semmle.label | ControlFlowNode for x [Set element] |
-| test.py:142:10:142:16 | ControlFlowNode for Attribute() | semmle.label | ControlFlowNode for Attribute() |
-| test.py:152:9:152:21 | ControlFlowNode for Dict [Dictionary element at key s] | semmle.label | ControlFlowNode for Dict [Dictionary element at key s] |
-| test.py:152:15:152:20 | ControlFlowNode for SOURCE | semmle.label | ControlFlowNode for SOURCE |
-| test.py:153:10:153:10 | ControlFlowNode for x [Dictionary element at key s] | semmle.label | ControlFlowNode for x [Dictionary element at key s] |
-| test.py:153:10:153:15 | ControlFlowNode for Subscript | semmle.label | ControlFlowNode for Subscript |
-| test.py:157:9:157:21 | ControlFlowNode for Dict [Dictionary element at key s] | semmle.label | ControlFlowNode for Dict [Dictionary element at key s] |
-| test.py:157:15:157:20 | ControlFlowNode for SOURCE | semmle.label | ControlFlowNode for SOURCE |
-| test.py:158:10:158:10 | ControlFlowNode for x [Dictionary element at key s] | semmle.label | ControlFlowNode for x [Dictionary element at key s] |
-| test.py:158:10:158:19 | ControlFlowNode for Attribute() | semmle.label | ControlFlowNode for Attribute() |
-| test.py:183:9:183:42 | ControlFlowNode for ListComp [List element] | semmle.label | ControlFlowNode for ListComp [List element] |
-| test.py:183:10:183:10 | ControlFlowNode for y | semmle.label | ControlFlowNode for y |
-| test.py:183:16:183:16 | SSA variable z [List element] | semmle.label | SSA variable z [List element] |
-| test.py:183:21:183:30 | ControlFlowNode for List [List element, List element] | semmle.label | ControlFlowNode for List [List element, List element] |
-| test.py:183:22:183:29 | ControlFlowNode for List [List element] | semmle.label | ControlFlowNode for List [List element] |
-| test.py:183:23:183:28 | ControlFlowNode for SOURCE | semmle.label | ControlFlowNode for SOURCE |
-| test.py:183:36:183:36 | SSA variable y | semmle.label | SSA variable y |
-| test.py:183:41:183:41 | ControlFlowNode for z [List element] | semmle.label | ControlFlowNode for z [List element] |
-| test.py:184:10:184:10 | ControlFlowNode for x [List element] | semmle.label | ControlFlowNode for x [List element] |
-| test.py:184:10:184:13 | ControlFlowNode for Subscript | semmle.label | ControlFlowNode for Subscript |
-| test.py:188:9:188:68 | ControlFlowNode for ListComp [List element] | semmle.label | ControlFlowNode for ListComp [List element] |
-| test.py:188:10:188:10 | ControlFlowNode for y | semmle.label | ControlFlowNode for y |
-| test.py:188:16:188:16 | SSA variable v [List element, List element, List element] | semmle.label | SSA variable v [List element, List element, List element] |
-| test.py:188:21:188:34 | ControlFlowNode for List [List element, List element, List element, List element] | semmle.label | ControlFlowNode for List [List element, List element, List element, List element] |
-| test.py:188:22:188:33 | ControlFlowNode for List [List element, List element, List element] | semmle.label | ControlFlowNode for List [List element, List element, List element] |
-| test.py:188:23:188:32 | ControlFlowNode for List [List element, List element] | semmle.label | ControlFlowNode for List [List element, List element] |
-| test.py:188:24:188:31 | ControlFlowNode for List [List element] | semmle.label | ControlFlowNode for List [List element] |
-| test.py:188:25:188:30 | ControlFlowNode for SOURCE | semmle.label | ControlFlowNode for SOURCE |
-| test.py:188:40:188:40 | SSA variable u [List element, List element] | semmle.label | SSA variable u [List element, List element] |
-| test.py:188:45:188:45 | ControlFlowNode for v [List element, List element, List element] | semmle.label | ControlFlowNode for v [List element, List element, List element] |
-| test.py:188:51:188:51 | SSA variable z [List element] | semmle.label | SSA variable z [List element] |
-| test.py:188:56:188:56 | ControlFlowNode for u [List element, List element] | semmle.label | ControlFlowNode for u [List element, List element] |
-| test.py:188:62:188:62 | SSA variable y | semmle.label | SSA variable y |
-| test.py:188:67:188:67 | ControlFlowNode for z [List element] | semmle.label | ControlFlowNode for z [List element] |
-| test.py:189:10:189:10 | ControlFlowNode for x [List element] | semmle.label | ControlFlowNode for x [List element] |
-| test.py:189:10:189:13 | ControlFlowNode for Subscript | semmle.label | ControlFlowNode for Subscript |
-| test.py:199:9:199:42 | ControlFlowNode for ListComp [List element] | semmle.label | ControlFlowNode for ListComp [List element] |
-| test.py:199:10:199:10 | ControlFlowNode for y | semmle.label | ControlFlowNode for y |
-| test.py:199:16:199:16 | SSA variable y | semmle.label | SSA variable y |
-| test.py:199:22:199:22 | ControlFlowNode for z | semmle.label | ControlFlowNode for z |
-| test.py:199:22:199:40 | ControlFlowNode for GeneratorExp [List element] | semmle.label | ControlFlowNode for GeneratorExp [List element] |
-| test.py:199:28:199:28 | SSA variable z | semmle.label | SSA variable z |
-| test.py:199:33:199:40 | ControlFlowNode for List [List element] | semmle.label | ControlFlowNode for List [List element] |
-| test.py:199:34:199:39 | ControlFlowNode for SOURCE | semmle.label | ControlFlowNode for SOURCE |
-| test.py:200:10:200:10 | ControlFlowNode for x [List element] | semmle.label | ControlFlowNode for x [List element] |
-| test.py:200:10:200:13 | ControlFlowNode for Subscript | semmle.label | ControlFlowNode for Subscript |
-| test.py:205:9:205:47 | ControlFlowNode for ListComp [List element] | semmle.label | ControlFlowNode for ListComp [List element] |
-| test.py:205:10:205:10 | ControlFlowNode for a | semmle.label | ControlFlowNode for a |
-| test.py:205:17:205:17 | SSA variable a | semmle.label | SSA variable a |
-| test.py:205:17:205:20 | ControlFlowNode for Tuple [Tuple element at index 0] | semmle.label | ControlFlowNode for Tuple [Tuple element at index 0] |
-| test.py:205:17:205:20 | IterableSequence [Tuple element at index 0] | semmle.label | IterableSequence [Tuple element at index 0] |
-| test.py:205:26:205:46 | ControlFlowNode for List [List element, Tuple element at index 0] | semmle.label | ControlFlowNode for List [List element, Tuple element at index 0] |
-| test.py:205:28:205:33 | ControlFlowNode for SOURCE | semmle.label | ControlFlowNode for SOURCE |
-| test.py:205:28:205:44 | ControlFlowNode for Tuple [Tuple element at index 0] | semmle.label | ControlFlowNode for Tuple [Tuple element at index 0] |
-| test.py:206:10:206:10 | ControlFlowNode for x [List element] | semmle.label | ControlFlowNode for x [List element] |
-| test.py:206:10:206:13 | ControlFlowNode for Subscript | semmle.label | ControlFlowNode for Subscript |
-| test.py:210:9:210:51 | ControlFlowNode for ListComp [List element] | semmle.label | ControlFlowNode for ListComp [List element] |
-| test.py:210:10:210:10 | ControlFlowNode for a [List element] | semmle.label | ControlFlowNode for a [List element] |
-| test.py:210:10:210:13 | ControlFlowNode for Subscript | semmle.label | ControlFlowNode for Subscript |
-| test.py:210:20:210:21 | IterableElement | semmle.label | IterableElement |
-| test.py:210:20:210:21 | SSA variable a [List element] | semmle.label | SSA variable a [List element] |
-| test.py:210:20:210:24 | ControlFlowNode for Tuple [Tuple element at index 0] | semmle.label | ControlFlowNode for Tuple [Tuple element at index 0] |
-| test.py:210:20:210:24 | IterableSequence [Tuple element at index 0] | semmle.label | IterableSequence [Tuple element at index 0] |
-| test.py:210:30:210:50 | ControlFlowNode for List [List element, Tuple element at index 0] | semmle.label | ControlFlowNode for List [List element, Tuple element at index 0] |
-| test.py:210:32:210:37 | ControlFlowNode for SOURCE | semmle.label | ControlFlowNode for SOURCE |
-| test.py:210:32:210:48 | ControlFlowNode for Tuple [Tuple element at index 0] | semmle.label | ControlFlowNode for Tuple [Tuple element at index 0] |
-| test.py:211:10:211:10 | ControlFlowNode for x [List element] | semmle.label | ControlFlowNode for x [List element] |
-| test.py:211:10:211:13 | ControlFlowNode for Subscript | semmle.label | ControlFlowNode for Subscript |
-| test.py:349:10:349:21 | ControlFlowNode for Subscript | semmle.label | ControlFlowNode for Subscript |
-| test.py:349:11:349:16 | ControlFlowNode for SOURCE | semmle.label | ControlFlowNode for SOURCE |
-| test.py:349:11:349:17 | ControlFlowNode for Tuple [Tuple element at index 0] | semmle.label | ControlFlowNode for Tuple [Tuple element at index 0] |
-| test.py:353:10:353:17 | ControlFlowNode for List [List element] | semmle.label | ControlFlowNode for List [List element] |
-| test.py:353:10:353:20 | ControlFlowNode for Subscript | semmle.label | ControlFlowNode for Subscript |
-| test.py:353:11:353:16 | ControlFlowNode for SOURCE | semmle.label | ControlFlowNode for SOURCE |
-| test.py:357:10:357:22 | ControlFlowNode for Dict [Dictionary element at key s] | semmle.label | ControlFlowNode for Dict [Dictionary element at key s] |
-| test.py:357:10:357:27 | ControlFlowNode for Subscript | semmle.label | ControlFlowNode for Subscript |
-| test.py:357:16:357:21 | ControlFlowNode for SOURCE | semmle.label | ControlFlowNode for SOURCE |
-| test.py:375:15:375:15 | ControlFlowNode for b | semmle.label | ControlFlowNode for b |
-| test.py:376:12:376:12 | ControlFlowNode for b | semmle.label | ControlFlowNode for b |
-| test.py:380:10:380:34 | ControlFlowNode for second() | semmle.label | ControlFlowNode for second() |
-| test.py:380:28:380:33 | ControlFlowNode for SOURCE | semmle.label | ControlFlowNode for SOURCE |
-| test.py:388:10:388:36 | ControlFlowNode for second() | semmle.label | ControlFlowNode for second() |
-| test.py:388:30:388:35 | ControlFlowNode for SOURCE | semmle.label | ControlFlowNode for SOURCE |
-| test.py:396:10:396:43 | ControlFlowNode for second() | semmle.label | ControlFlowNode for second() |
-| test.py:396:10:396:43 | KwUnpacked b | semmle.label | KwUnpacked b |
-| test.py:396:30:396:42 | ControlFlowNode for Dict [Dictionary element at key b] | semmle.label | ControlFlowNode for Dict [Dictionary element at key b] |
-| test.py:396:36:396:41 | ControlFlowNode for SOURCE | semmle.label | ControlFlowNode for SOURCE |
-| test.py:399:21:399:21 | ControlFlowNode for b [Tuple element at index 0] | semmle.label | ControlFlowNode for b [Tuple element at index 0] |
-| test.py:400:12:400:12 | ControlFlowNode for b [Tuple element at index 0] | semmle.label | ControlFlowNode for b [Tuple element at index 0] |
-| test.py:400:12:400:15 | ControlFlowNode for Subscript | semmle.label | ControlFlowNode for Subscript |
-| test.py:404:10:404:39 | ControlFlowNode for f_extra_pos() | semmle.label | ControlFlowNode for f_extra_pos() |
-| test.py:404:10:404:39 | PosOverflowNode for f_extra_pos() [Tuple element at index 0] | semmle.label | PosOverflowNode for f_extra_pos() [Tuple element at index 0] |
-| test.py:404:33:404:38 | ControlFlowNode for SOURCE | semmle.label | ControlFlowNode for SOURCE |
-| test.py:407:26:407:26 | ControlFlowNode for b [Dictionary element at key b] | semmle.label | ControlFlowNode for b [Dictionary element at key b] |
-| test.py:408:12:408:12 | ControlFlowNode for b [Dictionary element at key b] | semmle.label | ControlFlowNode for b [Dictionary element at key b] |
-| test.py:408:12:408:17 | ControlFlowNode for Subscript | semmle.label | ControlFlowNode for Subscript |
-| test.py:412:10:412:45 | ControlFlowNode for f_extra_keyword() | semmle.label | ControlFlowNode for f_extra_keyword() |
-| test.py:412:10:412:45 | KwOverflowNode for f_extra_keyword() [Dictionary element at key b] | semmle.label | KwOverflowNode for f_extra_keyword() [Dictionary element at key b] |
-| test.py:412:39:412:44 | ControlFlowNode for SOURCE | semmle.label | ControlFlowNode for SOURCE |
-| test.py:429:10:429:20 | ControlFlowNode for BoolExpr | semmle.label | ControlFlowNode for BoolExpr |
-| test.py:429:15:429:20 | ControlFlowNode for SOURCE | semmle.label | ControlFlowNode for SOURCE |
-| test.py:434:10:434:21 | ControlFlowNode for BoolExpr | semmle.label | ControlFlowNode for BoolExpr |
-| test.py:434:16:434:21 | ControlFlowNode for SOURCE | semmle.label | ControlFlowNode for SOURCE |
-| test.py:445:10:445:15 | ControlFlowNode for SOURCE | semmle.label | ControlFlowNode for SOURCE |
-| test.py:445:10:445:38 | ControlFlowNode for IfExp | semmle.label | ControlFlowNode for IfExp |
-| test.py:453:10:453:39 | ControlFlowNode for IfExp | semmle.label | ControlFlowNode for IfExp |
-| test.py:453:34:453:39 | ControlFlowNode for SOURCE | semmle.label | ControlFlowNode for SOURCE |
-| test.py:474:11:474:11 | ControlFlowNode for x | semmle.label | ControlFlowNode for x |
-| test.py:475:16:475:16 | ControlFlowNode for x | semmle.label | ControlFlowNode for x |
-| test.py:477:10:477:18 | ControlFlowNode for f() | semmle.label | ControlFlowNode for f() |
-| test.py:477:12:477:17 | ControlFlowNode for SOURCE | semmle.label | ControlFlowNode for SOURCE |
-| test.py:481:19:481:19 | ControlFlowNode for b | semmle.label | ControlFlowNode for b |
-| test.py:482:16:482:16 | ControlFlowNode for b | semmle.label | ControlFlowNode for b |
-| test.py:484:10:484:34 | ControlFlowNode for second() | semmle.label | ControlFlowNode for second() |
-| test.py:484:28:484:33 | ControlFlowNode for SOURCE | semmle.label | ControlFlowNode for SOURCE |
-| test.py:495:19:495:19 | ControlFlowNode for b | semmle.label | ControlFlowNode for b |
-| test.py:496:16:496:16 | ControlFlowNode for b | semmle.label | ControlFlowNode for b |
-| test.py:498:10:498:36 | ControlFlowNode for second() | semmle.label | ControlFlowNode for second() |
-| test.py:498:30:498:35 | ControlFlowNode for SOURCE | semmle.label | ControlFlowNode for SOURCE |
-| test.py:509:19:509:19 | ControlFlowNode for b | semmle.label | ControlFlowNode for b |
-| test.py:510:16:510:16 | ControlFlowNode for b | semmle.label | ControlFlowNode for b |
-| test.py:512:10:512:43 | ControlFlowNode for second() | semmle.label | ControlFlowNode for second() |
-| test.py:512:10:512:43 | KwUnpacked b | semmle.label | KwUnpacked b |
-| test.py:512:30:512:42 | ControlFlowNode for Dict [Dictionary element at key b] | semmle.label | ControlFlowNode for Dict [Dictionary element at key b] |
-| test.py:512:36:512:41 | ControlFlowNode for SOURCE | semmle.label | ControlFlowNode for SOURCE |
-| test.py:516:30:516:30 | ControlFlowNode for b [Tuple element at index 0] | semmle.label | ControlFlowNode for b [Tuple element at index 0] |
-| test.py:516:33:516:33 | ControlFlowNode for b [Tuple element at index 0] | semmle.label | ControlFlowNode for b [Tuple element at index 0] |
-| test.py:516:33:516:36 | ControlFlowNode for Subscript | semmle.label | ControlFlowNode for Subscript |
-| test.py:517:10:517:39 | ControlFlowNode for f_extra_pos() | semmle.label | ControlFlowNode for f_extra_pos() |
-| test.py:517:10:517:39 | PosOverflowNode for f_extra_pos() [Tuple element at index 0] | semmle.label | PosOverflowNode for f_extra_pos() [Tuple element at index 0] |
-| test.py:517:33:517:38 | ControlFlowNode for SOURCE | semmle.label | ControlFlowNode for SOURCE |
-| test.py:521:35:521:35 | ControlFlowNode for b [Dictionary element at key b] | semmle.label | ControlFlowNode for b [Dictionary element at key b] |
-| test.py:521:38:521:38 | ControlFlowNode for b [Dictionary element at key b] | semmle.label | ControlFlowNode for b [Dictionary element at key b] |
-| test.py:521:38:521:43 | ControlFlowNode for Subscript | semmle.label | ControlFlowNode for Subscript |
-| test.py:522:10:522:45 | ControlFlowNode for f_extra_keyword() | semmle.label | ControlFlowNode for f_extra_keyword() |
-| test.py:522:10:522:45 | KwOverflowNode for f_extra_keyword() [Dictionary element at key b] | semmle.label | KwOverflowNode for f_extra_keyword() [Dictionary element at key b] |
-| test.py:522:39:522:44 | ControlFlowNode for SOURCE | semmle.label | ControlFlowNode for SOURCE |
-| test.py:534:9:534:14 | ControlFlowNode for SOURCE | semmle.label | ControlFlowNode for SOURCE |
-| test.py:536:10:536:10 | ControlFlowNode for a | semmle.label | ControlFlowNode for a |
-| test.py:541:10:541:10 | ControlFlowNode for b | semmle.label | ControlFlowNode for b |
-| test.py:546:10:546:15 | ControlFlowNode for SOURCE | semmle.label | ControlFlowNode for SOURCE |
-| test.py:546:10:546:26 | ControlFlowNode for Tuple [Tuple element at index 0] | semmle.label | ControlFlowNode for Tuple [Tuple element at index 0] |
-| test.py:547:5:547:5 | SSA variable a | semmle.label | SSA variable a |
-| test.py:547:5:547:8 | ControlFlowNode for Tuple [Tuple element at index 0] | semmle.label | ControlFlowNode for Tuple [Tuple element at index 0] |
-| test.py:548:10:548:10 | ControlFlowNode for a | semmle.label | ControlFlowNode for a |
-| test.py:554:10:554:15 | ControlFlowNode for SOURCE | semmle.label | ControlFlowNode for SOURCE |
-| test.py:554:10:554:36 | ControlFlowNode for Tuple [Tuple element at index 0] | semmle.label | ControlFlowNode for Tuple [Tuple element at index 0] |
-| test.py:554:10:554:36 | ControlFlowNode for Tuple [Tuple element at index 1, Tuple element at index 1] | semmle.label | ControlFlowNode for Tuple [Tuple element at index 1, Tuple element at index 1] |
-| test.py:554:19:554:35 | ControlFlowNode for Tuple [Tuple element at index 1] | semmle.label | ControlFlowNode for Tuple [Tuple element at index 1] |
-| test.py:554:30:554:35 | ControlFlowNode for SOURCE | semmle.label | ControlFlowNode for SOURCE |
-| test.py:555:5:555:5 | SSA variable a | semmle.label | SSA variable a |
-| test.py:555:5:555:13 | ControlFlowNode for Tuple [Tuple element at index 0] | semmle.label | ControlFlowNode for Tuple [Tuple element at index 0] |
-| test.py:555:5:555:13 | ControlFlowNode for Tuple [Tuple element at index 1, Tuple element at index 1] | semmle.label | ControlFlowNode for Tuple [Tuple element at index 1, Tuple element at index 1] |
-| test.py:555:9:555:12 | ControlFlowNode for Tuple [Tuple element at index 1] | semmle.label | ControlFlowNode for Tuple [Tuple element at index 1] |
-| test.py:555:9:555:12 | IterableSequence [Tuple element at index 1] | semmle.label | IterableSequence [Tuple element at index 1] |
-| test.py:555:12:555:12 | SSA variable c | semmle.label | SSA variable c |
-| test.py:556:10:556:10 | ControlFlowNode for a | semmle.label | ControlFlowNode for a |
-| test.py:558:10:558:10 | ControlFlowNode for c | semmle.label | ControlFlowNode for c |
-| test.py:563:9:563:33 | ControlFlowNode for List [List element, List element, List element, List element] | semmle.label | ControlFlowNode for List [List element, List element, List element, List element] |
-| test.py:563:10:563:21 | ControlFlowNode for List [List element, List element, List element] | semmle.label | ControlFlowNode for List [List element, List element, List element] |
-| test.py:563:11:563:20 | ControlFlowNode for List [List element, List element] | semmle.label | ControlFlowNode for List [List element, List element] |
-| test.py:563:12:563:19 | ControlFlowNode for List [List element] | semmle.label | ControlFlowNode for List [List element] |
-| test.py:563:13:563:18 | ControlFlowNode for SOURCE | semmle.label | ControlFlowNode for SOURCE |
-| test.py:564:5:564:11 | ControlFlowNode for List [Tuple element at index 0, List element, List element] | semmle.label | ControlFlowNode for List [Tuple element at index 0, List element, List element] |
-| test.py:564:5:564:11 | IterableElement [List element, List element] | semmle.label | IterableElement [List element, List element] |
-| test.py:564:5:564:11 | IterableSequence [List element, List element, List element] | semmle.label | IterableSequence [List element, List element, List element] |
-| test.py:564:5:564:14 | ControlFlowNode for Tuple [Tuple element at index 0, List element, List element, List element] | semmle.label | ControlFlowNode for Tuple [Tuple element at index 0, List element, List element, List element] |
-| test.py:564:5:564:14 | IterableElement [List element, List element, List element] | semmle.label | IterableElement [List element, List element, List element] |
-| test.py:564:5:564:14 | IterableSequence [List element, List element, List element, List element] | semmle.label | IterableSequence [List element, List element, List element, List element] |
-| test.py:564:6:564:10 | ControlFlowNode for List [Tuple element at index 0, List element] | semmle.label | ControlFlowNode for List [Tuple element at index 0, List element] |
-| test.py:564:6:564:10 | IterableElement [List element] | semmle.label | IterableElement [List element] |
-| test.py:564:6:564:10 | IterableSequence [List element, List element] | semmle.label | IterableSequence [List element, List element] |
-| test.py:564:7:564:9 | ControlFlowNode for List [Tuple element at index 0] | semmle.label | ControlFlowNode for List [Tuple element at index 0] |
-| test.py:564:7:564:9 | IterableElement | semmle.label | IterableElement |
-| test.py:564:7:564:9 | IterableSequence [List element] | semmle.label | IterableSequence [List element] |
-| test.py:564:8:564:8 | SSA variable a | semmle.label | SSA variable a |
-| test.py:565:10:565:10 | ControlFlowNode for a | semmle.label | ControlFlowNode for a |
-| test.py:571:10:571:15 | ControlFlowNode for SOURCE | semmle.label | ControlFlowNode for SOURCE |
-| test.py:571:10:571:34 | ControlFlowNode for Tuple [Tuple element at index 0] | semmle.label | ControlFlowNode for Tuple [Tuple element at index 0] |
-| test.py:571:10:571:34 | ControlFlowNode for Tuple [Tuple element at index 1] | semmle.label | ControlFlowNode for Tuple [Tuple element at index 1] |
-| test.py:571:18:571:23 | ControlFlowNode for SOURCE | semmle.label | ControlFlowNode for SOURCE |
-| test.py:572:5:572:5 | SSA variable a | semmle.label | SSA variable a |
-| test.py:572:5:572:12 | ControlFlowNode for Tuple [Tuple element at index 0] | semmle.label | ControlFlowNode for Tuple [Tuple element at index 0] |
-| test.py:572:5:572:12 | ControlFlowNode for Tuple [Tuple element at index 1] | semmle.label | ControlFlowNode for Tuple [Tuple element at index 1] |
-| test.py:572:8:572:9 | IterableElement | semmle.label | IterableElement |
-| test.py:572:8:572:9 | SSA variable b [List element] | semmle.label | SSA variable b [List element] |
-| test.py:572:12:572:12 | SSA variable c | semmle.label | SSA variable c |
-| test.py:573:10:573:10 | ControlFlowNode for a | semmle.label | ControlFlowNode for a |
-| test.py:575:10:575:10 | ControlFlowNode for b [List element] | semmle.label | ControlFlowNode for b [List element] |
-| test.py:575:10:575:13 | ControlFlowNode for Subscript | semmle.label | ControlFlowNode for Subscript |
-| test.py:576:12:576:12 | ControlFlowNode for c | semmle.label | ControlFlowNode for c |
-| test.py:581:10:581:15 | ControlFlowNode for SOURCE | semmle.label | ControlFlowNode for SOURCE |
-| test.py:581:10:581:23 | ControlFlowNode for Tuple [Tuple element at index 0] | semmle.label | ControlFlowNode for Tuple [Tuple element at index 0] |
-| test.py:581:10:581:23 | ControlFlowNode for Tuple [Tuple element at index 1] | semmle.label | ControlFlowNode for Tuple [Tuple element at index 1] |
-| test.py:581:18:581:23 | ControlFlowNode for SOURCE | semmle.label | ControlFlowNode for SOURCE |
-| test.py:582:5:582:5 | SSA variable a | semmle.label | SSA variable a |
-| test.py:582:5:582:12 | ControlFlowNode for Tuple [Tuple element at index 0] | semmle.label | ControlFlowNode for Tuple [Tuple element at index 0] |
-| test.py:582:5:582:12 | ControlFlowNode for Tuple [Tuple element at index 1] | semmle.label | ControlFlowNode for Tuple [Tuple element at index 1] |
-| test.py:582:12:582:12 | SSA variable c | semmle.label | SSA variable c |
-| test.py:583:10:583:10 | ControlFlowNode for a | semmle.label | ControlFlowNode for a |
-| test.py:585:10:585:10 | ControlFlowNode for c | semmle.label | ControlFlowNode for c |
-| test.py:590:10:590:61 | ControlFlowNode for List [List element, List element] | semmle.label | ControlFlowNode for List [List element, List element] |
-| test.py:590:11:590:37 | ControlFlowNode for List [List element] | semmle.label | ControlFlowNode for List [List element] |
-| test.py:590:12:590:17 | ControlFlowNode for SOURCE | semmle.label | ControlFlowNode for SOURCE |
-| test.py:590:31:590:36 | ControlFlowNode for SOURCE | semmle.label | ControlFlowNode for SOURCE |
-| test.py:590:40:590:47 | ControlFlowNode for List [List element] | semmle.label | ControlFlowNode for List [List element] |
-| test.py:590:41:590:46 | ControlFlowNode for SOURCE | semmle.label | ControlFlowNode for SOURCE |
-| test.py:593:6:593:23 | ControlFlowNode for Tuple [Tuple element at index 0, List element] | semmle.label | ControlFlowNode for Tuple [Tuple element at index 0, List element] |
-| test.py:593:6:593:23 | IterableElement [List element] | semmle.label | IterableElement [List element] |
-| test.py:593:6:593:23 | IterableSequence [List element, List element] | semmle.label | IterableSequence [List element, List element] |
-| test.py:593:7:593:8 | SSA variable a1 | semmle.label | SSA variable a1 |
-| test.py:593:7:593:16 | ControlFlowNode for Tuple [Tuple element at index 0] | semmle.label | ControlFlowNode for Tuple [Tuple element at index 0] |
-| test.py:593:7:593:16 | ControlFlowNode for Tuple [Tuple element at index 1] | semmle.label | ControlFlowNode for Tuple [Tuple element at index 1] |
-| test.py:593:7:593:16 | ControlFlowNode for Tuple [Tuple element at index 2] | semmle.label | ControlFlowNode for Tuple [Tuple element at index 2] |
-| test.py:593:7:593:16 | IterableElement | semmle.label | IterableElement |
-| test.py:593:7:593:16 | IterableSequence [List element] | semmle.label | IterableSequence [List element] |
-| test.py:593:11:593:12 | SSA variable a2 | semmle.label | SSA variable a2 |
-| test.py:593:15:593:16 | SSA variable a3 | semmle.label | SSA variable a3 |
-| test.py:594:10:594:11 | ControlFlowNode for a1 | semmle.label | ControlFlowNode for a1 |
-| test.py:595:12:595:13 | ControlFlowNode for a2 | semmle.label | ControlFlowNode for a2 |
-| test.py:596:10:596:11 | ControlFlowNode for a3 | semmle.label | ControlFlowNode for a3 |
-| test.py:601:5:601:24 | ControlFlowNode for List [Tuple element at index 0, List element] | semmle.label | ControlFlowNode for List [Tuple element at index 0, List element] |
-| test.py:601:5:601:24 | IterableElement [List element] | semmle.label | IterableElement [List element] |
-| test.py:601:5:601:24 | IterableSequence [List element, List element] | semmle.label | IterableSequence [List element, List element] |
-| test.py:601:7:601:8 | SSA variable a1 | semmle.label | SSA variable a1 |
-| test.py:601:7:601:16 | ControlFlowNode for Tuple [Tuple element at index 0] | semmle.label | ControlFlowNode for Tuple [Tuple element at index 0] |
-| test.py:601:7:601:16 | ControlFlowNode for Tuple [Tuple element at index 1] | semmle.label | ControlFlowNode for Tuple [Tuple element at index 1] |
-| test.py:601:7:601:16 | ControlFlowNode for Tuple [Tuple element at index 2] | semmle.label | ControlFlowNode for Tuple [Tuple element at index 2] |
-| test.py:601:7:601:16 | IterableElement | semmle.label | IterableElement |
-| test.py:601:7:601:16 | IterableSequence [List element] | semmle.label | IterableSequence [List element] |
-| test.py:601:11:601:12 | SSA variable a2 | semmle.label | SSA variable a2 |
-| test.py:601:15:601:16 | SSA variable a3 | semmle.label | SSA variable a3 |
-| test.py:602:10:602:11 | ControlFlowNode for a1 | semmle.label | ControlFlowNode for a1 |
-| test.py:603:12:603:13 | ControlFlowNode for a2 | semmle.label | ControlFlowNode for a2 |
-| test.py:604:10:604:11 | ControlFlowNode for a3 | semmle.label | ControlFlowNode for a3 |
-| test.py:609:6:609:17 | ControlFlowNode for List [Tuple element at index 0] | semmle.label | ControlFlowNode for List [Tuple element at index 0] |
-| test.py:609:6:609:17 | ControlFlowNode for List [Tuple element at index 1] | semmle.label | ControlFlowNode for List [Tuple element at index 1] |
-| test.py:609:6:609:17 | ControlFlowNode for List [Tuple element at index 2] | semmle.label | ControlFlowNode for List [Tuple element at index 2] |
-| test.py:609:6:609:17 | IterableElement | semmle.label | IterableElement |
-| test.py:609:6:609:17 | IterableSequence [List element] | semmle.label | IterableSequence [List element] |
-| test.py:609:6:609:23 | ControlFlowNode for Tuple [Tuple element at index 0, List element] | semmle.label | ControlFlowNode for Tuple [Tuple element at index 0, List element] |
-| test.py:609:6:609:23 | IterableElement [List element] | semmle.label | IterableElement [List element] |
-| test.py:609:6:609:23 | IterableSequence [List element, List element] | semmle.label | IterableSequence [List element, List element] |
-| test.py:609:7:609:8 | SSA variable a1 | semmle.label | SSA variable a1 |
-| test.py:609:11:609:12 | SSA variable a2 | semmle.label | SSA variable a2 |
-| test.py:609:15:609:16 | SSA variable a3 | semmle.label | SSA variable a3 |
-| test.py:610:10:610:11 | ControlFlowNode for a1 | semmle.label | ControlFlowNode for a1 |
-| test.py:611:12:611:13 | ControlFlowNode for a2 | semmle.label | ControlFlowNode for a2 |
-| test.py:612:10:612:11 | ControlFlowNode for a3 | semmle.label | ControlFlowNode for a3 |
-| test.py:618:11:618:47 | ControlFlowNode for Tuple [Tuple element at index 0, Tuple element at index 0] | semmle.label | ControlFlowNode for Tuple [Tuple element at index 0, Tuple element at index 0] |
-| test.py:618:11:618:47 | ControlFlowNode for Tuple [Tuple element at index 0, Tuple element at index 2] | semmle.label | ControlFlowNode for Tuple [Tuple element at index 0, Tuple element at index 2] |
-| test.py:618:12:618:17 | ControlFlowNode for SOURCE | semmle.label | ControlFlowNode for SOURCE |
-| test.py:618:12:618:36 | ControlFlowNode for Tuple [Tuple element at index 0] | semmle.label | ControlFlowNode for Tuple [Tuple element at index 0] |
-| test.py:618:12:618:36 | ControlFlowNode for Tuple [Tuple element at index 2] | semmle.label | ControlFlowNode for Tuple [Tuple element at index 2] |
-| test.py:618:31:618:36 | ControlFlowNode for SOURCE | semmle.label | ControlFlowNode for SOURCE |
-| test.py:621:5:621:19 | ControlFlowNode for List [Tuple element at index 0, Tuple element at index 0] | semmle.label | ControlFlowNode for List [Tuple element at index 0, Tuple element at index 0] |
-| test.py:621:5:621:19 | ControlFlowNode for List [Tuple element at index 0, Tuple element at index 2] | semmle.label | ControlFlowNode for List [Tuple element at index 0, Tuple element at index 2] |
-| test.py:621:6:621:14 | ControlFlowNode for List [Tuple element at index 0] | semmle.label | ControlFlowNode for List [Tuple element at index 0] |
-| test.py:621:6:621:14 | ControlFlowNode for List [Tuple element at index 2] | semmle.label | ControlFlowNode for List [Tuple element at index 2] |
-| test.py:621:6:621:14 | IterableSequence [Tuple element at index 0] | semmle.label | IterableSequence [Tuple element at index 0] |
-| test.py:621:6:621:14 | IterableSequence [Tuple element at index 2] | semmle.label | IterableSequence [Tuple element at index 2] |
-| test.py:621:7:621:8 | SSA variable a1 | semmle.label | SSA variable a1 |
-| test.py:621:11:621:13 | IterableElement | semmle.label | IterableElement |
-| test.py:621:11:621:13 | SSA variable a2 [List element] | semmle.label | SSA variable a2 [List element] |
-| test.py:622:10:622:11 | ControlFlowNode for a1 | semmle.label | ControlFlowNode for a1 |
-| test.py:624:12:624:13 | ControlFlowNode for a2 [List element] | semmle.label | ControlFlowNode for a2 [List element] |
-| test.py:624:12:624:16 | ControlFlowNode for Subscript | semmle.label | ControlFlowNode for Subscript |
-| test.py:625:10:625:11 | ControlFlowNode for a2 [List element] | semmle.label | ControlFlowNode for a2 [List element] |
-| test.py:625:10:625:14 | ControlFlowNode for Subscript | semmle.label | ControlFlowNode for Subscript |
-| test.py:630:6:630:18 | ControlFlowNode for Tuple [Tuple element at index 0, Tuple element at index 0] | semmle.label | ControlFlowNode for Tuple [Tuple element at index 0, Tuple element at index 0] |
-| test.py:630:6:630:18 | ControlFlowNode for Tuple [Tuple element at index 0, Tuple element at index 2] | semmle.label | ControlFlowNode for Tuple [Tuple element at index 0, Tuple element at index 2] |
-| test.py:630:7:630:8 | SSA variable a1 | semmle.label | SSA variable a1 |
-| test.py:630:7:630:13 | ControlFlowNode for Tuple [Tuple element at index 0] | semmle.label | ControlFlowNode for Tuple [Tuple element at index 0] |
-| test.py:630:7:630:13 | ControlFlowNode for Tuple [Tuple element at index 2] | semmle.label | ControlFlowNode for Tuple [Tuple element at index 2] |
-| test.py:630:7:630:13 | IterableSequence [Tuple element at index 0] | semmle.label | IterableSequence [Tuple element at index 0] |
-| test.py:630:7:630:13 | IterableSequence [Tuple element at index 2] | semmle.label | IterableSequence [Tuple element at index 2] |
-| test.py:630:11:630:13 | IterableElement | semmle.label | IterableElement |
-| test.py:630:11:630:13 | SSA variable a2 [List element] | semmle.label | SSA variable a2 [List element] |
-| test.py:631:10:631:11 | ControlFlowNode for a1 | semmle.label | ControlFlowNode for a1 |
-| test.py:633:12:633:13 | ControlFlowNode for a2 [List element] | semmle.label | ControlFlowNode for a2 [List element] |
-| test.py:633:12:633:16 | ControlFlowNode for Subscript | semmle.label | ControlFlowNode for Subscript |
-| test.py:634:10:634:11 | ControlFlowNode for a2 [List element] | semmle.label | ControlFlowNode for a2 [List element] |
-| test.py:634:10:634:14 | ControlFlowNode for Subscript | semmle.label | ControlFlowNode for Subscript |
-| test.py:639:5:639:19 | ControlFlowNode for List [Tuple element at index 0, Tuple element at index 0] | semmle.label | ControlFlowNode for List [Tuple element at index 0, Tuple element at index 0] |
-| test.py:639:5:639:19 | ControlFlowNode for List [Tuple element at index 0, Tuple element at index 2] | semmle.label | ControlFlowNode for List [Tuple element at index 0, Tuple element at index 2] |
-| test.py:639:7:639:8 | SSA variable a1 | semmle.label | SSA variable a1 |
-| test.py:639:7:639:13 | ControlFlowNode for Tuple [Tuple element at index 0] | semmle.label | ControlFlowNode for Tuple [Tuple element at index 0] |
-| test.py:639:7:639:13 | ControlFlowNode for Tuple [Tuple element at index 2] | semmle.label | ControlFlowNode for Tuple [Tuple element at index 2] |
-| test.py:639:7:639:13 | IterableSequence [Tuple element at index 0] | semmle.label | IterableSequence [Tuple element at index 0] |
-| test.py:639:7:639:13 | IterableSequence [Tuple element at index 2] | semmle.label | IterableSequence [Tuple element at index 2] |
-| test.py:639:11:639:13 | IterableElement | semmle.label | IterableElement |
-| test.py:639:11:639:13 | SSA variable a2 [List element] | semmle.label | SSA variable a2 [List element] |
-| test.py:640:10:640:11 | ControlFlowNode for a1 | semmle.label | ControlFlowNode for a1 |
-| test.py:642:12:642:13 | ControlFlowNode for a2 [List element] | semmle.label | ControlFlowNode for a2 [List element] |
-| test.py:642:12:642:16 | ControlFlowNode for Subscript | semmle.label | ControlFlowNode for Subscript |
-| test.py:643:10:643:11 | ControlFlowNode for a2 [List element] | semmle.label | ControlFlowNode for a2 [List element] |
-| test.py:643:10:643:14 | ControlFlowNode for Subscript | semmle.label | ControlFlowNode for Subscript |
-| test.py:648:6:648:14 | ControlFlowNode for List [Tuple element at index 0] | semmle.label | ControlFlowNode for List [Tuple element at index 0] |
-| test.py:648:6:648:14 | ControlFlowNode for List [Tuple element at index 2] | semmle.label | ControlFlowNode for List [Tuple element at index 2] |
-| test.py:648:6:648:14 | IterableSequence [Tuple element at index 0] | semmle.label | IterableSequence [Tuple element at index 0] |
-| test.py:648:6:648:14 | IterableSequence [Tuple element at index 2] | semmle.label | IterableSequence [Tuple element at index 2] |
-| test.py:648:6:648:18 | ControlFlowNode for Tuple [Tuple element at index 0, Tuple element at index 0] | semmle.label | ControlFlowNode for Tuple [Tuple element at index 0, Tuple element at index 0] |
-| test.py:648:6:648:18 | ControlFlowNode for Tuple [Tuple element at index 0, Tuple element at index 2] | semmle.label | ControlFlowNode for Tuple [Tuple element at index 0, Tuple element at index 2] |
-| test.py:648:7:648:8 | SSA variable a1 | semmle.label | SSA variable a1 |
-| test.py:648:11:648:13 | IterableElement | semmle.label | IterableElement |
-| test.py:648:11:648:13 | SSA variable a2 [List element] | semmle.label | SSA variable a2 [List element] |
-| test.py:649:10:649:11 | ControlFlowNode for a1 | semmle.label | ControlFlowNode for a1 |
-| test.py:651:12:651:13 | ControlFlowNode for a2 [List element] | semmle.label | ControlFlowNode for a2 [List element] |
-| test.py:651:12:651:16 | ControlFlowNode for Subscript | semmle.label | ControlFlowNode for Subscript |
-| test.py:652:10:652:11 | ControlFlowNode for a2 [List element] | semmle.label | ControlFlowNode for a2 [List element] |
-| test.py:652:10:652:14 | ControlFlowNode for Subscript | semmle.label | ControlFlowNode for Subscript |
-| test.py:659:19:659:24 | ControlFlowNode for SOURCE | semmle.label | ControlFlowNode for SOURCE |
-| test.py:660:10:660:10 | ControlFlowNode for a | semmle.label | ControlFlowNode for a |
-| test.py:667:10:667:51 | ControlFlowNode for List [List element, Tuple element at index 0] | semmle.label | ControlFlowNode for List [List element, Tuple element at index 0] |
-| test.py:667:12:667:17 | ControlFlowNode for SOURCE | semmle.label | ControlFlowNode for SOURCE |
-| test.py:667:12:667:28 | ControlFlowNode for Tuple [Tuple element at index 0] | semmle.label | ControlFlowNode for Tuple [Tuple element at index 0] |
-| test.py:667:33:667:38 | ControlFlowNode for SOURCE | semmle.label | ControlFlowNode for SOURCE |
-| test.py:667:33:667:49 | ControlFlowNode for Tuple [Tuple element at index 0] | semmle.label | ControlFlowNode for Tuple [Tuple element at index 0] |
-| test.py:668:9:668:9 | SSA variable x | semmle.label | SSA variable x |
-| test.py:668:9:668:11 | ControlFlowNode for Tuple [Tuple element at index 0] | semmle.label | ControlFlowNode for Tuple [Tuple element at index 0] |
-| test.py:668:9:668:11 | IterableSequence [Tuple element at index 0] | semmle.label | IterableSequence [Tuple element at index 0] |
-| test.py:668:16:668:17 | ControlFlowNode for tl [List element, Tuple element at index 0] | semmle.label | ControlFlowNode for tl [List element, Tuple element at index 0] |
-| test.py:669:14:669:14 | ControlFlowNode for x | semmle.label | ControlFlowNode for x |
-| test.py:675:10:675:51 | ControlFlowNode for List [List element, Tuple element at index 0] | semmle.label | ControlFlowNode for List [List element, Tuple element at index 0] |
-| test.py:675:12:675:17 | ControlFlowNode for SOURCE | semmle.label | ControlFlowNode for SOURCE |
-| test.py:675:12:675:28 | ControlFlowNode for Tuple [Tuple element at index 0] | semmle.label | ControlFlowNode for Tuple [Tuple element at index 0] |
-| test.py:675:33:675:38 | ControlFlowNode for SOURCE | semmle.label | ControlFlowNode for SOURCE |
-| test.py:675:33:675:49 | ControlFlowNode for Tuple [Tuple element at index 0] | semmle.label | ControlFlowNode for Tuple [Tuple element at index 0] |
-| test.py:676:9:676:10 | IterableElement | semmle.label | IterableElement |
-| test.py:676:9:676:10 | SSA variable x [List element] | semmle.label | SSA variable x [List element] |
-| test.py:676:9:676:12 | ControlFlowNode for Tuple [Tuple element at index 0] | semmle.label | ControlFlowNode for Tuple [Tuple element at index 0] |
-| test.py:676:9:676:12 | IterableSequence [Tuple element at index 0] | semmle.label | IterableSequence [Tuple element at index 0] |
-| test.py:676:12:676:12 | SSA variable y | semmle.label | SSA variable y |
-| test.py:676:17:676:18 | ControlFlowNode for tl [List element, Tuple element at index 0] | semmle.label | ControlFlowNode for tl [List element, Tuple element at index 0] |
-| test.py:678:14:678:14 | ControlFlowNode for x [List element] | semmle.label | ControlFlowNode for x [List element] |
-| test.py:678:14:678:17 | ControlFlowNode for Subscript | semmle.label | ControlFlowNode for Subscript |
-| test.py:679:16:679:16 | ControlFlowNode for y | semmle.label | ControlFlowNode for y |
-| test.py:684:10:684:51 | ControlFlowNode for List [List element, Tuple element at index 0] | semmle.label | ControlFlowNode for List [List element, Tuple element at index 0] |
-| test.py:684:12:684:17 | ControlFlowNode for SOURCE | semmle.label | ControlFlowNode for SOURCE |
-| test.py:684:12:684:28 | ControlFlowNode for Tuple [Tuple element at index 0] | semmle.label | ControlFlowNode for Tuple [Tuple element at index 0] |
-| test.py:684:33:684:38 | ControlFlowNode for SOURCE | semmle.label | ControlFlowNode for SOURCE |
-| test.py:684:33:684:49 | ControlFlowNode for Tuple [Tuple element at index 0] | semmle.label | ControlFlowNode for Tuple [Tuple element at index 0] |
-| test.py:685:9:685:9 | SSA variable x | semmle.label | SSA variable x |
-| test.py:685:9:685:14 | ControlFlowNode for Tuple [Tuple element at index 0] | semmle.label | ControlFlowNode for Tuple [Tuple element at index 0] |
-| test.py:685:9:685:14 | IterableSequence [Tuple element at index 0] | semmle.label | IterableSequence [Tuple element at index 0] |
-| test.py:685:19:685:20 | ControlFlowNode for tl [List element, Tuple element at index 0] | semmle.label | ControlFlowNode for tl [List element, Tuple element at index 0] |
-| test.py:686:14:686:14 | ControlFlowNode for x | semmle.label | ControlFlowNode for x |
-| test.py:690:39:690:42 | ControlFlowNode for args [Tuple element at index 0] | semmle.label | ControlFlowNode for args [Tuple element at index 0] |
-| test.py:690:39:690:42 | ControlFlowNode for args [Tuple element at index 1] | semmle.label | ControlFlowNode for args [Tuple element at index 1] |
-| test.py:691:7:691:9 | SSA variable arg | semmle.label | SSA variable arg |
-| test.py:691:14:691:17 | ControlFlowNode for args [Tuple element at index 0] | semmle.label | ControlFlowNode for args [Tuple element at index 0] |
-| test.py:691:14:691:17 | ControlFlowNode for args [Tuple element at index 1] | semmle.label | ControlFlowNode for args [Tuple element at index 1] |
-| test.py:692:10:692:12 | ControlFlowNode for arg | semmle.label | ControlFlowNode for arg |
-| test.py:697:7:697:12 | ControlFlowNode for SOURCE | semmle.label | ControlFlowNode for SOURCE |
-| test.py:698:3:698:52 | PosOverflowNode for iterate_star_args() [Tuple element at index 0] | semmle.label | PosOverflowNode for iterate_star_args() [Tuple element at index 0] |
-| test.py:698:3:698:52 | PosOverflowNode for iterate_star_args() [Tuple element at index 1] | semmle.label | PosOverflowNode for iterate_star_args() [Tuple element at index 1] |
-| test.py:698:43:698:48 | ControlFlowNode for SOURCE | semmle.label | ControlFlowNode for SOURCE |
-| test.py:698:51:698:51 | ControlFlowNode for s | semmle.label | ControlFlowNode for s |
-| test.py:769:16:769:21 | ControlFlowNode for SOURCE | semmle.label | ControlFlowNode for SOURCE |
-| test.py:772:10:772:36 | ControlFlowNode for return_from_inner_scope() | semmle.label | ControlFlowNode for return_from_inner_scope() |
-| test.py:807:35:807:35 | ControlFlowNode for x | semmle.label | ControlFlowNode for x |
-| test.py:807:37:807:42 | ControlFlowNode for SOURCE | semmle.label | ControlFlowNode for SOURCE |
-| test.py:807:48:807:48 | ControlFlowNode for y | semmle.label | ControlFlowNode for y |
-| test.py:807:50:807:55 | ControlFlowNode for SOURCE | semmle.label | ControlFlowNode for SOURCE |
-| test.py:807:61:807:61 | ControlFlowNode for z | semmle.label | ControlFlowNode for z |
-| test.py:807:63:807:68 | ControlFlowNode for SOURCE | semmle.label | ControlFlowNode for SOURCE |
-| test.py:808:10:808:10 | ControlFlowNode for x | semmle.label | ControlFlowNode for x |
-| test.py:809:10:809:10 | ControlFlowNode for y | semmle.label | ControlFlowNode for y |
-| test.py:810:10:810:10 | ControlFlowNode for z | semmle.label | ControlFlowNode for z |
-subpaths
-| datamodel.py:38:8:38:13 | ControlFlowNode for SOURCE | datamodel.py:35:7:35:7 | ControlFlowNode for a | datamodel.py:36:10:36:10 | ControlFlowNode for a | datamodel.py:38:6:38:17 | ControlFlowNode for f() |
-| datamodel.py:71:15:71:20 | ControlFlowNode for SOURCE | datamodel.py:44:22:44:22 | ControlFlowNode for x | datamodel.py:46:16:46:16 | ControlFlowNode for x | datamodel.py:71:6:71:24 | ControlFlowNode for Attribute() |
-| datamodel.py:72:18:72:23 | ControlFlowNode for SOURCE | datamodel.py:44:22:44:22 | ControlFlowNode for x | datamodel.py:46:16:46:16 | ControlFlowNode for x | datamodel.py:72:6:72:27 | ControlFlowNode for Attribute() |
-| datamodel.py:80:20:80:25 | ControlFlowNode for SOURCE | datamodel.py:49:26:49:26 | ControlFlowNode for x | datamodel.py:50:16:50:16 | ControlFlowNode for x | datamodel.py:80:6:80:26 | ControlFlowNode for Attribute() |
-| datamodel.py:81:20:81:25 | ControlFlowNode for SOURCE | datamodel.py:49:26:49:26 | ControlFlowNode for x | datamodel.py:50:16:50:16 | ControlFlowNode for x | datamodel.py:81:6:81:26 | ControlFlowNode for Attribute() |
-| datamodel.py:88:21:88:26 | ControlFlowNode for SOURCE | datamodel.py:53:22:53:22 | ControlFlowNode for x | datamodel.py:54:16:54:16 | ControlFlowNode for x | datamodel.py:88:6:88:27 | ControlFlowNode for Attribute() |
-| datamodel.py:89:21:89:26 | ControlFlowNode for SOURCE | datamodel.py:53:22:53:22 | ControlFlowNode for x | datamodel.py:54:16:54:16 | ControlFlowNode for x | datamodel.py:89:6:89:27 | ControlFlowNode for Attribute() |
-| test.py:380:28:380:33 | ControlFlowNode for SOURCE | test.py:375:15:375:15 | ControlFlowNode for b | test.py:376:12:376:12 | ControlFlowNode for b | test.py:380:10:380:34 | ControlFlowNode for second() |
-| test.py:388:30:388:35 | ControlFlowNode for SOURCE | test.py:375:15:375:15 | ControlFlowNode for b | test.py:376:12:376:12 | ControlFlowNode for b | test.py:388:10:388:36 | ControlFlowNode for second() |
-| test.py:396:10:396:43 | KwUnpacked b | test.py:375:15:375:15 | ControlFlowNode for b | test.py:376:12:376:12 | ControlFlowNode for b | test.py:396:10:396:43 | ControlFlowNode for second() |
-| test.py:404:10:404:39 | PosOverflowNode for f_extra_pos() [Tuple element at index 0] | test.py:399:21:399:21 | ControlFlowNode for b [Tuple element at index 0] | test.py:400:12:400:15 | ControlFlowNode for Subscript | test.py:404:10:404:39 | ControlFlowNode for f_extra_pos() |
-| test.py:412:10:412:45 | KwOverflowNode for f_extra_keyword() [Dictionary element at key b] | test.py:407:26:407:26 | ControlFlowNode for b [Dictionary element at key b] | test.py:408:12:408:17 | ControlFlowNode for Subscript | test.py:412:10:412:45 | ControlFlowNode for f_extra_keyword() |
-| test.py:477:12:477:17 | ControlFlowNode for SOURCE | test.py:474:11:474:11 | ControlFlowNode for x | test.py:475:16:475:16 | ControlFlowNode for x | test.py:477:10:477:18 | ControlFlowNode for f() |
-| test.py:484:28:484:33 | ControlFlowNode for SOURCE | test.py:481:19:481:19 | ControlFlowNode for b | test.py:482:16:482:16 | ControlFlowNode for b | test.py:484:10:484:34 | ControlFlowNode for second() |
-| test.py:498:30:498:35 | ControlFlowNode for SOURCE | test.py:495:19:495:19 | ControlFlowNode for b | test.py:496:16:496:16 | ControlFlowNode for b | test.py:498:10:498:36 | ControlFlowNode for second() |
-| test.py:512:10:512:43 | KwUnpacked b | test.py:509:19:509:19 | ControlFlowNode for b | test.py:510:16:510:16 | ControlFlowNode for b | test.py:512:10:512:43 | ControlFlowNode for second() |
-| test.py:517:10:517:39 | PosOverflowNode for f_extra_pos() [Tuple element at index 0] | test.py:516:30:516:30 | ControlFlowNode for b [Tuple element at index 0] | test.py:516:33:516:36 | ControlFlowNode for Subscript | test.py:517:10:517:39 | ControlFlowNode for f_extra_pos() |
-| test.py:522:10:522:45 | KwOverflowNode for f_extra_keyword() [Dictionary element at key b] | test.py:521:35:521:35 | ControlFlowNode for b [Dictionary element at key b] | test.py:521:38:521:43 | ControlFlowNode for Subscript | test.py:522:10:522:45 | ControlFlowNode for f_extra_keyword() |
-#select
-| datamodel.py:38:6:38:17 | ControlFlowNode for f() | datamodel.py:38:8:38:13 | ControlFlowNode for SOURCE | datamodel.py:38:6:38:17 | ControlFlowNode for f() | Flow found |
-| datamodel.py:71:6:71:24 | ControlFlowNode for Attribute() | datamodel.py:71:15:71:20 | ControlFlowNode for SOURCE | datamodel.py:71:6:71:24 | ControlFlowNode for Attribute() | Flow found |
-| datamodel.py:72:6:72:27 | ControlFlowNode for Attribute() | datamodel.py:72:18:72:23 | ControlFlowNode for SOURCE | datamodel.py:72:6:72:27 | ControlFlowNode for Attribute() | Flow found |
-| datamodel.py:80:6:80:26 | ControlFlowNode for Attribute() | datamodel.py:80:20:80:25 | ControlFlowNode for SOURCE | datamodel.py:80:6:80:26 | ControlFlowNode for Attribute() | Flow found |
-| datamodel.py:81:6:81:26 | ControlFlowNode for Attribute() | datamodel.py:81:20:81:25 | ControlFlowNode for SOURCE | datamodel.py:81:6:81:26 | ControlFlowNode for Attribute() | Flow found |
-| datamodel.py:88:6:88:27 | ControlFlowNode for Attribute() | datamodel.py:88:21:88:26 | ControlFlowNode for SOURCE | datamodel.py:88:6:88:27 | ControlFlowNode for Attribute() | Flow found |
-| datamodel.py:89:6:89:27 | ControlFlowNode for Attribute() | datamodel.py:89:21:89:26 | ControlFlowNode for SOURCE | datamodel.py:89:6:89:27 | ControlFlowNode for Attribute() | Flow found |
-| datamodel.py:168:6:168:17 | ControlFlowNode for Attribute | datamodel.py:161:14:161:19 | ControlFlowNode for SOURCE | datamodel.py:168:6:168:17 | ControlFlowNode for Attribute | Flow found |
-| test.py:44:10:44:10 | ControlFlowNode for y | test.py:42:21:42:26 | ControlFlowNode for SOURCE | test.py:44:10:44:10 | ControlFlowNode for y | Flow found |
-| test.py:56:10:56:10 | ControlFlowNode for x | test.py:55:9:55:14 | ControlFlowNode for SOURCE | test.py:56:10:56:10 | ControlFlowNode for x | Flow found |
-| test.py:62:10:62:10 | ControlFlowNode for x | test.py:61:9:61:16 | ControlFlowNode for Str | test.py:62:10:62:10 | ControlFlowNode for x | Flow found |
-| test.py:67:10:67:10 | ControlFlowNode for x | test.py:66:9:66:17 | ControlFlowNode for Str | test.py:67:10:67:10 | ControlFlowNode for x | Flow found |
-| test.py:72:10:72:10 | ControlFlowNode for x | test.py:71:9:71:10 | ControlFlowNode for IntegerLiteral | test.py:72:10:72:10 | ControlFlowNode for x | Flow found |
-| test.py:77:10:77:10 | ControlFlowNode for x | test.py:76:9:76:12 | ControlFlowNode for FloatLiteral | test.py:77:10:77:10 | ControlFlowNode for x | Flow found |
-| test.py:88:10:88:10 | ControlFlowNode for x | test.py:87:10:87:15 | ControlFlowNode for SOURCE | test.py:88:10:88:10 | ControlFlowNode for x | Flow found |
-| test.py:94:10:94:13 | ControlFlowNode for Subscript | test.py:93:10:93:15 | ControlFlowNode for SOURCE | test.py:94:10:94:13 | ControlFlowNode for Subscript | Flow found |
-| test.py:104:10:104:13 | ControlFlowNode for Subscript | test.py:103:10:103:15 | ControlFlowNode for SOURCE | test.py:104:10:104:13 | ControlFlowNode for Subscript | Flow found |
-| test.py:109:10:109:13 | ControlFlowNode for Subscript | test.py:108:22:108:27 | ControlFlowNode for SOURCE | test.py:109:10:109:13 | ControlFlowNode for Subscript | Flow found |
-| test.py:115:10:115:13 | ControlFlowNode for Subscript | test.py:113:10:113:15 | ControlFlowNode for SOURCE | test.py:115:10:115:13 | ControlFlowNode for Subscript | Flow found |
-| test.py:126:10:126:16 | ControlFlowNode for Attribute() | test.py:125:10:125:15 | ControlFlowNode for SOURCE | test.py:126:10:126:16 | ControlFlowNode for Attribute() | Flow found |
-| test.py:131:10:131:16 | ControlFlowNode for Attribute() | test.py:130:10:130:15 | ControlFlowNode for SOURCE | test.py:131:10:131:16 | ControlFlowNode for Attribute() | Flow found |
-| test.py:136:10:136:16 | ControlFlowNode for Attribute() | test.py:135:22:135:27 | ControlFlowNode for SOURCE | test.py:136:10:136:16 | ControlFlowNode for Attribute() | Flow found |
-| test.py:142:10:142:16 | ControlFlowNode for Attribute() | test.py:140:10:140:15 | ControlFlowNode for SOURCE | test.py:142:10:142:16 | ControlFlowNode for Attribute() | Flow found |
-| test.py:153:10:153:15 | ControlFlowNode for Subscript | test.py:152:15:152:20 | ControlFlowNode for SOURCE | test.py:153:10:153:15 | ControlFlowNode for Subscript | Flow found |
-| test.py:158:10:158:19 | ControlFlowNode for Attribute() | test.py:157:15:157:20 | ControlFlowNode for SOURCE | test.py:158:10:158:19 | ControlFlowNode for Attribute() | Flow found |
-| test.py:184:10:184:13 | ControlFlowNode for Subscript | test.py:183:23:183:28 | ControlFlowNode for SOURCE | test.py:184:10:184:13 | ControlFlowNode for Subscript | Flow found |
-| test.py:189:10:189:13 | ControlFlowNode for Subscript | test.py:188:25:188:30 | ControlFlowNode for SOURCE | test.py:189:10:189:13 | ControlFlowNode for Subscript | Flow found |
-| test.py:200:10:200:13 | ControlFlowNode for Subscript | test.py:199:34:199:39 | ControlFlowNode for SOURCE | test.py:200:10:200:13 | ControlFlowNode for Subscript | Flow found |
-| test.py:206:10:206:13 | ControlFlowNode for Subscript | test.py:205:28:205:33 | ControlFlowNode for SOURCE | test.py:206:10:206:13 | ControlFlowNode for Subscript | Flow found |
-| test.py:211:10:211:13 | ControlFlowNode for Subscript | test.py:210:32:210:37 | ControlFlowNode for SOURCE | test.py:211:10:211:13 | ControlFlowNode for Subscript | Flow found |
-| test.py:349:10:349:21 | ControlFlowNode for Subscript | test.py:349:11:349:16 | ControlFlowNode for SOURCE | test.py:349:10:349:21 | ControlFlowNode for Subscript | Flow found |
-| test.py:353:10:353:20 | ControlFlowNode for Subscript | test.py:353:11:353:16 | ControlFlowNode for SOURCE | test.py:353:10:353:20 | ControlFlowNode for Subscript | Flow found |
-| test.py:357:10:357:27 | ControlFlowNode for Subscript | test.py:357:16:357:21 | ControlFlowNode for SOURCE | test.py:357:10:357:27 | ControlFlowNode for Subscript | Flow found |
-| test.py:380:10:380:34 | ControlFlowNode for second() | test.py:380:28:380:33 | ControlFlowNode for SOURCE | test.py:380:10:380:34 | ControlFlowNode for second() | Flow found |
-| test.py:388:10:388:36 | ControlFlowNode for second() | test.py:388:30:388:35 | ControlFlowNode for SOURCE | test.py:388:10:388:36 | ControlFlowNode for second() | Flow found |
-| test.py:396:10:396:43 | ControlFlowNode for second() | test.py:396:36:396:41 | ControlFlowNode for SOURCE | test.py:396:10:396:43 | ControlFlowNode for second() | Flow found |
-| test.py:404:10:404:39 | ControlFlowNode for f_extra_pos() | test.py:404:33:404:38 | ControlFlowNode for SOURCE | test.py:404:10:404:39 | ControlFlowNode for f_extra_pos() | Flow found |
-| test.py:412:10:412:45 | ControlFlowNode for f_extra_keyword() | test.py:412:39:412:44 | ControlFlowNode for SOURCE | test.py:412:10:412:45 | ControlFlowNode for f_extra_keyword() | Flow found |
-| test.py:429:10:429:20 | ControlFlowNode for BoolExpr | test.py:429:15:429:20 | ControlFlowNode for SOURCE | test.py:429:10:429:20 | ControlFlowNode for BoolExpr | Flow found |
-| test.py:434:10:434:21 | ControlFlowNode for BoolExpr | test.py:434:16:434:21 | ControlFlowNode for SOURCE | test.py:434:10:434:21 | ControlFlowNode for BoolExpr | Flow found |
-| test.py:445:10:445:38 | ControlFlowNode for IfExp | test.py:445:10:445:15 | ControlFlowNode for SOURCE | test.py:445:10:445:38 | ControlFlowNode for IfExp | Flow found |
-| test.py:453:10:453:39 | ControlFlowNode for IfExp | test.py:453:34:453:39 | ControlFlowNode for SOURCE | test.py:453:10:453:39 | ControlFlowNode for IfExp | Flow found |
-| test.py:477:10:477:18 | ControlFlowNode for f() | test.py:477:12:477:17 | ControlFlowNode for SOURCE | test.py:477:10:477:18 | ControlFlowNode for f() | Flow found |
-| test.py:484:10:484:34 | ControlFlowNode for second() | test.py:484:28:484:33 | ControlFlowNode for SOURCE | test.py:484:10:484:34 | ControlFlowNode for second() | Flow found |
-| test.py:498:10:498:36 | ControlFlowNode for second() | test.py:498:30:498:35 | ControlFlowNode for SOURCE | test.py:498:10:498:36 | ControlFlowNode for second() | Flow found |
-| test.py:512:10:512:43 | ControlFlowNode for second() | test.py:512:36:512:41 | ControlFlowNode for SOURCE | test.py:512:10:512:43 | ControlFlowNode for second() | Flow found |
-| test.py:517:10:517:39 | ControlFlowNode for f_extra_pos() | test.py:517:33:517:38 | ControlFlowNode for SOURCE | test.py:517:10:517:39 | ControlFlowNode for f_extra_pos() | Flow found |
-| test.py:522:10:522:45 | ControlFlowNode for f_extra_keyword() | test.py:522:39:522:44 | ControlFlowNode for SOURCE | test.py:522:10:522:45 | ControlFlowNode for f_extra_keyword() | Flow found |
-| test.py:536:10:536:10 | ControlFlowNode for a | test.py:534:9:534:14 | ControlFlowNode for SOURCE | test.py:536:10:536:10 | ControlFlowNode for a | Flow found |
-| test.py:541:10:541:10 | ControlFlowNode for b | test.py:534:9:534:14 | ControlFlowNode for SOURCE | test.py:541:10:541:10 | ControlFlowNode for b | Flow found |
-| test.py:548:10:548:10 | ControlFlowNode for a | test.py:546:10:546:15 | ControlFlowNode for SOURCE | test.py:548:10:548:10 | ControlFlowNode for a | Flow found |
-| test.py:556:10:556:10 | ControlFlowNode for a | test.py:554:10:554:15 | ControlFlowNode for SOURCE | test.py:556:10:556:10 | ControlFlowNode for a | Flow found |
-| test.py:558:10:558:10 | ControlFlowNode for c | test.py:554:30:554:35 | ControlFlowNode for SOURCE | test.py:558:10:558:10 | ControlFlowNode for c | Flow found |
-| test.py:565:10:565:10 | ControlFlowNode for a | test.py:563:13:563:18 | ControlFlowNode for SOURCE | test.py:565:10:565:10 | ControlFlowNode for a | Flow found |
-| test.py:573:10:573:10 | ControlFlowNode for a | test.py:571:10:571:15 | ControlFlowNode for SOURCE | test.py:573:10:573:10 | ControlFlowNode for a | Flow found |
-| test.py:575:10:575:13 | ControlFlowNode for Subscript | test.py:571:18:571:23 | ControlFlowNode for SOURCE | test.py:575:10:575:13 | ControlFlowNode for Subscript | Flow found |
-| test.py:576:12:576:12 | ControlFlowNode for c | test.py:571:18:571:23 | ControlFlowNode for SOURCE | test.py:576:12:576:12 | ControlFlowNode for c | Flow found |
-| test.py:583:10:583:10 | ControlFlowNode for a | test.py:581:10:581:15 | ControlFlowNode for SOURCE | test.py:583:10:583:10 | ControlFlowNode for a | Flow found |
-| test.py:585:10:585:10 | ControlFlowNode for c | test.py:581:18:581:23 | ControlFlowNode for SOURCE | test.py:585:10:585:10 | ControlFlowNode for c | Flow found |
-| test.py:594:10:594:11 | ControlFlowNode for a1 | test.py:590:12:590:17 | ControlFlowNode for SOURCE | test.py:594:10:594:11 | ControlFlowNode for a1 | Flow found |
-| test.py:594:10:594:11 | ControlFlowNode for a1 | test.py:590:31:590:36 | ControlFlowNode for SOURCE | test.py:594:10:594:11 | ControlFlowNode for a1 | Flow found |
-| test.py:594:10:594:11 | ControlFlowNode for a1 | test.py:590:41:590:46 | ControlFlowNode for SOURCE | test.py:594:10:594:11 | ControlFlowNode for a1 | Flow found |
-| test.py:595:12:595:13 | ControlFlowNode for a2 | test.py:590:12:590:17 | ControlFlowNode for SOURCE | test.py:595:12:595:13 | ControlFlowNode for a2 | Flow found |
-| test.py:595:12:595:13 | ControlFlowNode for a2 | test.py:590:31:590:36 | ControlFlowNode for SOURCE | test.py:595:12:595:13 | ControlFlowNode for a2 | Flow found |
-| test.py:595:12:595:13 | ControlFlowNode for a2 | test.py:590:41:590:46 | ControlFlowNode for SOURCE | test.py:595:12:595:13 | ControlFlowNode for a2 | Flow found |
-| test.py:596:10:596:11 | ControlFlowNode for a3 | test.py:590:12:590:17 | ControlFlowNode for SOURCE | test.py:596:10:596:11 | ControlFlowNode for a3 | Flow found |
-| test.py:596:10:596:11 | ControlFlowNode for a3 | test.py:590:31:590:36 | ControlFlowNode for SOURCE | test.py:596:10:596:11 | ControlFlowNode for a3 | Flow found |
-| test.py:596:10:596:11 | ControlFlowNode for a3 | test.py:590:41:590:46 | ControlFlowNode for SOURCE | test.py:596:10:596:11 | ControlFlowNode for a3 | Flow found |
-| test.py:602:10:602:11 | ControlFlowNode for a1 | test.py:590:12:590:17 | ControlFlowNode for SOURCE | test.py:602:10:602:11 | ControlFlowNode for a1 | Flow found |
-| test.py:602:10:602:11 | ControlFlowNode for a1 | test.py:590:31:590:36 | ControlFlowNode for SOURCE | test.py:602:10:602:11 | ControlFlowNode for a1 | Flow found |
-| test.py:602:10:602:11 | ControlFlowNode for a1 | test.py:590:41:590:46 | ControlFlowNode for SOURCE | test.py:602:10:602:11 | ControlFlowNode for a1 | Flow found |
-| test.py:603:12:603:13 | ControlFlowNode for a2 | test.py:590:12:590:17 | ControlFlowNode for SOURCE | test.py:603:12:603:13 | ControlFlowNode for a2 | Flow found |
-| test.py:603:12:603:13 | ControlFlowNode for a2 | test.py:590:31:590:36 | ControlFlowNode for SOURCE | test.py:603:12:603:13 | ControlFlowNode for a2 | Flow found |
-| test.py:603:12:603:13 | ControlFlowNode for a2 | test.py:590:41:590:46 | ControlFlowNode for SOURCE | test.py:603:12:603:13 | ControlFlowNode for a2 | Flow found |
-| test.py:604:10:604:11 | ControlFlowNode for a3 | test.py:590:12:590:17 | ControlFlowNode for SOURCE | test.py:604:10:604:11 | ControlFlowNode for a3 | Flow found |
-| test.py:604:10:604:11 | ControlFlowNode for a3 | test.py:590:31:590:36 | ControlFlowNode for SOURCE | test.py:604:10:604:11 | ControlFlowNode for a3 | Flow found |
-| test.py:604:10:604:11 | ControlFlowNode for a3 | test.py:590:41:590:46 | ControlFlowNode for SOURCE | test.py:604:10:604:11 | ControlFlowNode for a3 | Flow found |
-| test.py:610:10:610:11 | ControlFlowNode for a1 | test.py:590:12:590:17 | ControlFlowNode for SOURCE | test.py:610:10:610:11 | ControlFlowNode for a1 | Flow found |
-| test.py:610:10:610:11 | ControlFlowNode for a1 | test.py:590:31:590:36 | ControlFlowNode for SOURCE | test.py:610:10:610:11 | ControlFlowNode for a1 | Flow found |
-| test.py:610:10:610:11 | ControlFlowNode for a1 | test.py:590:41:590:46 | ControlFlowNode for SOURCE | test.py:610:10:610:11 | ControlFlowNode for a1 | Flow found |
-| test.py:611:12:611:13 | ControlFlowNode for a2 | test.py:590:12:590:17 | ControlFlowNode for SOURCE | test.py:611:12:611:13 | ControlFlowNode for a2 | Flow found |
-| test.py:611:12:611:13 | ControlFlowNode for a2 | test.py:590:31:590:36 | ControlFlowNode for SOURCE | test.py:611:12:611:13 | ControlFlowNode for a2 | Flow found |
-| test.py:611:12:611:13 | ControlFlowNode for a2 | test.py:590:41:590:46 | ControlFlowNode for SOURCE | test.py:611:12:611:13 | ControlFlowNode for a2 | Flow found |
-| test.py:612:10:612:11 | ControlFlowNode for a3 | test.py:590:12:590:17 | ControlFlowNode for SOURCE | test.py:612:10:612:11 | ControlFlowNode for a3 | Flow found |
-| test.py:612:10:612:11 | ControlFlowNode for a3 | test.py:590:31:590:36 | ControlFlowNode for SOURCE | test.py:612:10:612:11 | ControlFlowNode for a3 | Flow found |
-| test.py:612:10:612:11 | ControlFlowNode for a3 | test.py:590:41:590:46 | ControlFlowNode for SOURCE | test.py:612:10:612:11 | ControlFlowNode for a3 | Flow found |
-| test.py:622:10:622:11 | ControlFlowNode for a1 | test.py:618:12:618:17 | ControlFlowNode for SOURCE | test.py:622:10:622:11 | ControlFlowNode for a1 | Flow found |
-| test.py:624:12:624:16 | ControlFlowNode for Subscript | test.py:618:31:618:36 | ControlFlowNode for SOURCE | test.py:624:12:624:16 | ControlFlowNode for Subscript | Flow found |
-| test.py:625:10:625:14 | ControlFlowNode for Subscript | test.py:618:31:618:36 | ControlFlowNode for SOURCE | test.py:625:10:625:14 | ControlFlowNode for Subscript | Flow found |
-| test.py:631:10:631:11 | ControlFlowNode for a1 | test.py:618:12:618:17 | ControlFlowNode for SOURCE | test.py:631:10:631:11 | ControlFlowNode for a1 | Flow found |
-| test.py:633:12:633:16 | ControlFlowNode for Subscript | test.py:618:31:618:36 | ControlFlowNode for SOURCE | test.py:633:12:633:16 | ControlFlowNode for Subscript | Flow found |
-| test.py:634:10:634:14 | ControlFlowNode for Subscript | test.py:618:31:618:36 | ControlFlowNode for SOURCE | test.py:634:10:634:14 | ControlFlowNode for Subscript | Flow found |
-| test.py:640:10:640:11 | ControlFlowNode for a1 | test.py:618:12:618:17 | ControlFlowNode for SOURCE | test.py:640:10:640:11 | ControlFlowNode for a1 | Flow found |
-| test.py:642:12:642:16 | ControlFlowNode for Subscript | test.py:618:31:618:36 | ControlFlowNode for SOURCE | test.py:642:12:642:16 | ControlFlowNode for Subscript | Flow found |
-| test.py:643:10:643:14 | ControlFlowNode for Subscript | test.py:618:31:618:36 | ControlFlowNode for SOURCE | test.py:643:10:643:14 | ControlFlowNode for Subscript | Flow found |
-| test.py:649:10:649:11 | ControlFlowNode for a1 | test.py:618:12:618:17 | ControlFlowNode for SOURCE | test.py:649:10:649:11 | ControlFlowNode for a1 | Flow found |
-| test.py:651:12:651:16 | ControlFlowNode for Subscript | test.py:618:31:618:36 | ControlFlowNode for SOURCE | test.py:651:12:651:16 | ControlFlowNode for Subscript | Flow found |
-| test.py:652:10:652:14 | ControlFlowNode for Subscript | test.py:618:31:618:36 | ControlFlowNode for SOURCE | test.py:652:10:652:14 | ControlFlowNode for Subscript | Flow found |
-| test.py:660:10:660:10 | ControlFlowNode for a | test.py:659:19:659:24 | ControlFlowNode for SOURCE | test.py:660:10:660:10 | ControlFlowNode for a | Flow found |
-| test.py:669:14:669:14 | ControlFlowNode for x | test.py:667:12:667:17 | ControlFlowNode for SOURCE | test.py:669:14:669:14 | ControlFlowNode for x | Flow found |
-| test.py:669:14:669:14 | ControlFlowNode for x | test.py:667:33:667:38 | ControlFlowNode for SOURCE | test.py:669:14:669:14 | ControlFlowNode for x | Flow found |
-| test.py:678:14:678:17 | ControlFlowNode for Subscript | test.py:675:12:675:17 | ControlFlowNode for SOURCE | test.py:678:14:678:17 | ControlFlowNode for Subscript | Flow found |
-| test.py:678:14:678:17 | ControlFlowNode for Subscript | test.py:675:33:675:38 | ControlFlowNode for SOURCE | test.py:678:14:678:17 | ControlFlowNode for Subscript | Flow found |
-| test.py:679:16:679:16 | ControlFlowNode for y | test.py:675:12:675:17 | ControlFlowNode for SOURCE | test.py:679:16:679:16 | ControlFlowNode for y | Flow found |
-| test.py:679:16:679:16 | ControlFlowNode for y | test.py:675:33:675:38 | ControlFlowNode for SOURCE | test.py:679:16:679:16 | ControlFlowNode for y | Flow found |
-| test.py:686:14:686:14 | ControlFlowNode for x | test.py:684:12:684:17 | ControlFlowNode for SOURCE | test.py:686:14:686:14 | ControlFlowNode for x | Flow found |
-| test.py:686:14:686:14 | ControlFlowNode for x | test.py:684:33:684:38 | ControlFlowNode for SOURCE | test.py:686:14:686:14 | ControlFlowNode for x | Flow found |
-| test.py:692:10:692:12 | ControlFlowNode for arg | test.py:697:7:697:12 | ControlFlowNode for SOURCE | test.py:692:10:692:12 | ControlFlowNode for arg | Flow found |
-| test.py:692:10:692:12 | ControlFlowNode for arg | test.py:698:43:698:48 | ControlFlowNode for SOURCE | test.py:692:10:692:12 | ControlFlowNode for arg | Flow found |
-| test.py:772:10:772:36 | ControlFlowNode for return_from_inner_scope() | test.py:769:16:769:21 | ControlFlowNode for SOURCE | test.py:772:10:772:36 | ControlFlowNode for return_from_inner_scope() | Flow found |
-| test.py:808:10:808:10 | ControlFlowNode for x | test.py:807:37:807:42 | ControlFlowNode for SOURCE | test.py:808:10:808:10 | ControlFlowNode for x | Flow found |
-| test.py:809:10:809:10 | ControlFlowNode for y | test.py:807:50:807:55 | ControlFlowNode for SOURCE | test.py:809:10:809:10 | ControlFlowNode for y | Flow found |
-| test.py:810:10:810:10 | ControlFlowNode for z | test.py:807:63:807:68 | ControlFlowNode for SOURCE | test.py:810:10:810:10 | ControlFlowNode for z | Flow found |
diff --git a/python/ql/test/experimental/dataflow/coverage/dataflow.ql b/python/ql/test/experimental/dataflow/coverage/dataflow.ql
deleted file mode 100644
index 868f24a598f..00000000000
--- a/python/ql/test/experimental/dataflow/coverage/dataflow.ql
+++ /dev/null
@@ -1,11 +0,0 @@
-/**
- * @kind path-problem
- */
-
-import python
-import experimental.dataflow.testConfig
-import DataFlow::PathGraph
-
-from TestConfiguration config, DataFlow::PathNode source, DataFlow::PathNode sink
-where config.hasFlowPath(source, sink)
-select sink.getNode(), source, sink, "Flow found"

From 0f34752f8f25821fe61b52a292256ba5fb04a307 Mon Sep 17 00:00:00 2001
From: Rasmus Wriedt Larsen <rasmuswl@github.com>
Date: Fri, 1 Jul 2022 11:56:50 +0200
Subject: [PATCH 0028/1420] Python: Delete `classesCallGraph.ql`

I don't see the value from this, so just going to outright delete it.
(it actually stayed alive for quite some time in the original git history,
but never seemed to be that useful.)
---
 .../coverage/classesCallGraph.expected        | 80 -------------------
 .../dataflow/coverage/classesCallGraph.ql     | 37 ---------
 2 files changed, 117 deletions(-)
 delete mode 100644 python/ql/test/experimental/dataflow/coverage/classesCallGraph.expected
 delete mode 100644 python/ql/test/experimental/dataflow/coverage/classesCallGraph.ql

diff --git a/python/ql/test/experimental/dataflow/coverage/classesCallGraph.expected b/python/ql/test/experimental/dataflow/coverage/classesCallGraph.expected
deleted file mode 100644
index f297c4be6e3..00000000000
--- a/python/ql/test/experimental/dataflow/coverage/classesCallGraph.expected
+++ /dev/null
@@ -1,80 +0,0 @@
-| classes.py:14:17:14:60 | ControlFlowNode for Attribute() | classes.py:14:17:14:60 | ControlFlowNode for Attribute() |
-| classes.py:45:16:45:35 | ControlFlowNode for Attribute() | classes.py:45:16:45:35 | ControlFlowNode for Attribute() |
-| classes.py:60:17:60:27 | [pre objCreate] ControlFlowNode for With_init() | classes.py:54:18:54:21 | ControlFlowNode for self |
-| classes.py:242:9:242:24 | ControlFlowNode for set() | classes.py:242:9:242:24 | ControlFlowNode for set() |
-| classes.py:247:9:247:30 | ControlFlowNode for frozenset() | classes.py:247:9:247:30 | ControlFlowNode for frozenset() |
-| classes.py:252:9:252:28 | ControlFlowNode for dict() | classes.py:252:9:252:28 | ControlFlowNode for dict() |
-| classes.py:559:16:559:17 | ControlFlowNode for Str | classes.py:565:5:565:22 | ControlFlowNode for Subscript |
-| classes.py:565:5:565:16 | ControlFlowNode for with_getitem | classes.py:555:21:555:24 | ControlFlowNode for self |
-| classes.py:565:18:565:21 | ControlFlowNode for arg2 | classes.py:555:27:555:29 | ControlFlowNode for key |
-| classes.py:581:5:581:16 | ControlFlowNode for with_setitem | classes.py:570:21:570:24 | ControlFlowNode for self |
-| classes.py:581:18:581:21 | ControlFlowNode for arg2 | classes.py:570:27:570:29 | ControlFlowNode for key |
-| classes.py:581:26:581:29 | ControlFlowNode for arg3 | classes.py:570:32:570:36 | ControlFlowNode for value |
-| classes.py:595:9:595:20 | ControlFlowNode for with_delitem | classes.py:586:21:586:24 | ControlFlowNode for self |
-| classes.py:595:22:595:25 | ControlFlowNode for arg2 | classes.py:586:27:586:29 | ControlFlowNode for key |
-| classes.py:618:16:618:28 | ControlFlowNode for Attribute() | classes.py:618:16:618:28 | ControlFlowNode for Attribute() |
-| classes.py:659:15:659:18 | ControlFlowNode for self | classes.py:667:5:667:19 | ControlFlowNode for BinaryExpr |
-| classes.py:661:16:661:19 | ControlFlowNode for self | classes.py:667:5:667:19 | ControlFlowNode for BinaryExpr |
-| classes.py:667:5:667:12 | ControlFlowNode for with_add | classes.py:657:17:657:20 | ControlFlowNode for self |
-| classes.py:667:5:667:12 | ControlFlowNode for with_add | classes.py:667:5:667:19 | ControlFlowNode for BinaryExpr |
-| classes.py:667:16:667:19 | ControlFlowNode for arg2 | classes.py:657:23:657:27 | ControlFlowNode for other |
-| classes.py:674:15:674:18 | ControlFlowNode for self | classes.py:682:5:682:19 | ControlFlowNode for BinaryExpr |
-| classes.py:676:16:676:19 | ControlFlowNode for self | classes.py:682:5:682:19 | ControlFlowNode for BinaryExpr |
-| classes.py:682:5:682:12 | ControlFlowNode for with_sub | classes.py:672:17:672:20 | ControlFlowNode for self |
-| classes.py:682:5:682:12 | ControlFlowNode for with_sub | classes.py:682:5:682:19 | ControlFlowNode for BinaryExpr |
-| classes.py:682:16:682:19 | ControlFlowNode for arg2 | classes.py:672:23:672:27 | ControlFlowNode for other |
-| classes.py:689:15:689:18 | ControlFlowNode for self | classes.py:697:5:697:19 | ControlFlowNode for BinaryExpr |
-| classes.py:691:16:691:19 | ControlFlowNode for self | classes.py:697:5:697:19 | ControlFlowNode for BinaryExpr |
-| classes.py:697:5:697:12 | ControlFlowNode for with_mul | classes.py:687:17:687:20 | ControlFlowNode for self |
-| classes.py:697:5:697:12 | ControlFlowNode for with_mul | classes.py:697:5:697:19 | ControlFlowNode for BinaryExpr |
-| classes.py:697:16:697:19 | ControlFlowNode for arg2 | classes.py:687:23:687:27 | ControlFlowNode for other |
-| classes.py:704:15:704:18 | ControlFlowNode for self | classes.py:712:5:712:22 | ControlFlowNode for BinaryExpr |
-| classes.py:706:16:706:19 | ControlFlowNode for self | classes.py:712:5:712:22 | ControlFlowNode for BinaryExpr |
-| classes.py:712:5:712:15 | ControlFlowNode for with_matmul | classes.py:702:20:702:23 | ControlFlowNode for self |
-| classes.py:712:5:712:15 | ControlFlowNode for with_matmul | classes.py:712:5:712:22 | ControlFlowNode for BinaryExpr |
-| classes.py:712:19:712:22 | ControlFlowNode for arg2 | classes.py:702:26:702:30 | ControlFlowNode for other |
-| classes.py:719:15:719:18 | ControlFlowNode for self | classes.py:727:5:727:23 | ControlFlowNode for BinaryExpr |
-| classes.py:721:16:721:19 | ControlFlowNode for self | classes.py:727:5:727:23 | ControlFlowNode for BinaryExpr |
-| classes.py:727:5:727:16 | ControlFlowNode for with_truediv | classes.py:717:21:717:24 | ControlFlowNode for self |
-| classes.py:727:5:727:16 | ControlFlowNode for with_truediv | classes.py:727:5:727:23 | ControlFlowNode for BinaryExpr |
-| classes.py:727:20:727:23 | ControlFlowNode for arg2 | classes.py:717:27:717:31 | ControlFlowNode for other |
-| classes.py:734:15:734:18 | ControlFlowNode for self | classes.py:742:5:742:25 | ControlFlowNode for BinaryExpr |
-| classes.py:736:16:736:19 | ControlFlowNode for self | classes.py:742:5:742:25 | ControlFlowNode for BinaryExpr |
-| classes.py:742:5:742:17 | ControlFlowNode for with_floordiv | classes.py:732:22:732:25 | ControlFlowNode for self |
-| classes.py:742:5:742:17 | ControlFlowNode for with_floordiv | classes.py:742:5:742:25 | ControlFlowNode for BinaryExpr |
-| classes.py:742:22:742:25 | ControlFlowNode for arg2 | classes.py:732:28:732:32 | ControlFlowNode for other |
-| classes.py:749:15:749:18 | ControlFlowNode for self | classes.py:757:5:757:19 | ControlFlowNode for BinaryExpr |
-| classes.py:751:16:751:19 | ControlFlowNode for self | classes.py:757:5:757:19 | ControlFlowNode for BinaryExpr |
-| classes.py:757:5:757:12 | ControlFlowNode for with_mod | classes.py:747:17:747:20 | ControlFlowNode for self |
-| classes.py:757:5:757:12 | ControlFlowNode for with_mod | classes.py:757:5:757:19 | ControlFlowNode for BinaryExpr |
-| classes.py:757:16:757:19 | ControlFlowNode for arg2 | classes.py:747:23:747:27 | ControlFlowNode for other |
-| classes.py:779:15:779:18 | ControlFlowNode for self | classes.py:793:5:793:20 | ControlFlowNode for BinaryExpr |
-| classes.py:781:16:781:19 | ControlFlowNode for self | classes.py:793:5:793:20 | ControlFlowNode for BinaryExpr |
-| classes.py:793:5:793:12 | ControlFlowNode for with_pow | classes.py:777:17:777:20 | ControlFlowNode for self |
-| classes.py:793:5:793:12 | ControlFlowNode for with_pow | classes.py:793:5:793:20 | ControlFlowNode for BinaryExpr |
-| classes.py:793:17:793:20 | ControlFlowNode for arg2 | classes.py:777:23:777:27 | ControlFlowNode for other |
-| classes.py:800:15:800:18 | ControlFlowNode for self | classes.py:808:5:808:23 | ControlFlowNode for BinaryExpr |
-| classes.py:802:16:802:19 | ControlFlowNode for self | classes.py:808:5:808:23 | ControlFlowNode for BinaryExpr |
-| classes.py:808:5:808:15 | ControlFlowNode for with_lshift | classes.py:798:20:798:23 | ControlFlowNode for self |
-| classes.py:808:5:808:15 | ControlFlowNode for with_lshift | classes.py:808:5:808:23 | ControlFlowNode for BinaryExpr |
-| classes.py:808:20:808:23 | ControlFlowNode for arg2 | classes.py:798:26:798:30 | ControlFlowNode for other |
-| classes.py:815:15:815:18 | ControlFlowNode for self | classes.py:823:5:823:23 | ControlFlowNode for BinaryExpr |
-| classes.py:817:16:817:19 | ControlFlowNode for self | classes.py:823:5:823:23 | ControlFlowNode for BinaryExpr |
-| classes.py:823:5:823:15 | ControlFlowNode for with_rshift | classes.py:813:20:813:23 | ControlFlowNode for self |
-| classes.py:823:5:823:15 | ControlFlowNode for with_rshift | classes.py:823:5:823:23 | ControlFlowNode for BinaryExpr |
-| classes.py:823:20:823:23 | ControlFlowNode for arg2 | classes.py:813:26:813:30 | ControlFlowNode for other |
-| classes.py:830:15:830:18 | ControlFlowNode for self | classes.py:838:5:838:19 | ControlFlowNode for BinaryExpr |
-| classes.py:832:16:832:19 | ControlFlowNode for self | classes.py:838:5:838:19 | ControlFlowNode for BinaryExpr |
-| classes.py:838:5:838:12 | ControlFlowNode for with_and | classes.py:828:17:828:20 | ControlFlowNode for self |
-| classes.py:838:5:838:12 | ControlFlowNode for with_and | classes.py:838:5:838:19 | ControlFlowNode for BinaryExpr |
-| classes.py:838:16:838:19 | ControlFlowNode for arg2 | classes.py:828:23:828:27 | ControlFlowNode for other |
-| classes.py:845:15:845:18 | ControlFlowNode for self | classes.py:853:5:853:19 | ControlFlowNode for BinaryExpr |
-| classes.py:847:16:847:19 | ControlFlowNode for self | classes.py:853:5:853:19 | ControlFlowNode for BinaryExpr |
-| classes.py:853:5:853:12 | ControlFlowNode for with_xor | classes.py:843:17:843:20 | ControlFlowNode for self |
-| classes.py:853:5:853:12 | ControlFlowNode for with_xor | classes.py:853:5:853:19 | ControlFlowNode for BinaryExpr |
-| classes.py:853:16:853:19 | ControlFlowNode for arg2 | classes.py:843:23:843:27 | ControlFlowNode for other |
-| classes.py:860:15:860:18 | ControlFlowNode for self | classes.py:868:5:868:18 | ControlFlowNode for BinaryExpr |
-| classes.py:862:16:862:19 | ControlFlowNode for self | classes.py:868:5:868:18 | ControlFlowNode for BinaryExpr |
-| classes.py:868:5:868:11 | ControlFlowNode for with_or | classes.py:858:16:858:19 | ControlFlowNode for self |
-| classes.py:868:5:868:11 | ControlFlowNode for with_or | classes.py:868:5:868:18 | ControlFlowNode for BinaryExpr |
-| classes.py:868:15:868:18 | ControlFlowNode for arg2 | classes.py:858:22:858:26 | ControlFlowNode for other |
diff --git a/python/ql/test/experimental/dataflow/coverage/classesCallGraph.ql b/python/ql/test/experimental/dataflow/coverage/classesCallGraph.ql
deleted file mode 100644
index c1b66d0f323..00000000000
--- a/python/ql/test/experimental/dataflow/coverage/classesCallGraph.ql
+++ /dev/null
@@ -1,37 +0,0 @@
-import semmle.python.dataflow.new.DataFlow
-private import semmle.python.dataflow.new.internal.DataFlowPrivate as DataFlowPrivate
-
-/**
- * A configuration to find the call graph edges.
- */
-class CallGraphConfig extends DataFlow::Configuration {
-  CallGraphConfig() { this = "CallGraphConfig" }
-
-  override predicate isSource(DataFlow::Node node) {
-    node instanceof DataFlowPrivate::ReturnNode
-    or
-    // These sources should allow for the non-standard call syntax
-    node instanceof DataFlow::ArgumentNode
-  }
-
-  override predicate isSink(DataFlow::Node node) {
-    node instanceof DataFlowPrivate::OutNode
-    or
-    node instanceof DataFlow::ParameterNode and
-    // exclude parameters to the SINK-functions
-    not exists(DataFlowPrivate::DataFlowCallable c |
-      c.getParameter(_) = node.asCfgNode() and
-      c.getName().matches("SINK_")
-    )
-  }
-}
-
-from DataFlow::Node source, DataFlow::Node sink
-where
-  source.getLocation().getFile().getBaseName() = "classes.py" and
-  sink.getLocation().getFile().getBaseName() = "classes.py" and
-  exists(CallGraphConfig cfg | cfg.hasFlow(source, sink))
-select source, sink
-// Ideally, we would just have 1-step paths either from argument to parameter
-// or from return to call. This gives a bit more, so should be rewritten.
-// We should also consider splitting this into two, one for each direction.

From c1b256159817c5d7e400a942577d328a099df620 Mon Sep 17 00:00:00 2001
From: Rasmus Wriedt Larsen <rasmuswl@github.com>
Date: Wed, 22 Jun 2022 15:06:21 +0200
Subject: [PATCH 0029/1420] Python: Extend fieldflow tests with bound method
 call

---
 .../experimental/dataflow/fieldflow/test.py   | 34 +++++++++++++++++++
 1 file changed, 34 insertions(+)

diff --git a/python/ql/test/experimental/dataflow/fieldflow/test.py b/python/ql/test/experimental/dataflow/fieldflow/test.py
index d8d4b5f6fe0..c7a2bc50a14 100644
--- a/python/ql/test/experimental/dataflow/fieldflow/test.py
+++ b/python/ql/test/experimental/dataflow/fieldflow/test.py
@@ -160,6 +160,40 @@ def test_nested_obj_method():
     a.getObj().foo = x
     SINK(a.obj.foo) # $ flow="SOURCE, l:-3 -> a.obj.foo"
 
+# ------------------------------------------------------------------------------
+# Bound Method calls
+# ------------------------------------------------------------------------------
+
+class Foo:
+    def __init__(self, x):
+        self.x = x
+
+    def update_x(self, x):
+        self.x = x
+
+@expects(7) # $ unresolved_call=expects(..) unresolved_call=expects(..)(..)
+def test_bound_method_call():
+    # direct assignment
+    foo = Foo(None)
+    SINK_F(foo.x)
+    foo.x = SOURCE
+    SINK(foo.x) # $ flow="SOURCE, l:-1 -> foo.x"
+    foo.x = None
+    SINK_F(foo.x)
+
+    # assignment through function
+    foo = Foo(SOURCE)
+    SINK(foo.x) # $ flow="SOURCE, l:-1 -> foo.x"
+    foo.update_x(None)
+    SINK_F(foo.x) # $ flow="SOURCE, l:-3 -> foo.x"
+
+    # assignment through bound-method calls
+    foo = Foo(SOURCE)
+    ux = foo.update_x
+    SINK(foo.x) # $ flow="SOURCE, l:-2 -> foo.x"
+    ux(None)
+    SINK_F(foo.x) # $ SPURIOUS: flow="SOURCE, l:-4 -> foo.x"
+
 # ------------------------------------------------------------------------------
 # Global scope
 # ------------------------------------------------------------------------------

From 6577281bed5a7c9bc4696f01f07362b5fe4c8ede Mon Sep 17 00:00:00 2001
From: Rasmus Wriedt Larsen <rasmuswl@github.com>
Date: Thu, 28 Jul 2022 10:57:08 +0200
Subject: [PATCH 0030/1420] Python: Add crosstalk fieldflow test

---
 .../experimental/dataflow/fieldflow/test.py   | 122 ++++++++++++++++++
 1 file changed, 122 insertions(+)

diff --git a/python/ql/test/experimental/dataflow/fieldflow/test.py b/python/ql/test/experimental/dataflow/fieldflow/test.py
index c7a2bc50a14..70db8554241 100644
--- a/python/ql/test/experimental/dataflow/fieldflow/test.py
+++ b/python/ql/test/experimental/dataflow/fieldflow/test.py
@@ -194,6 +194,128 @@ def test_bound_method_call():
     ux(None)
     SINK_F(foo.x) # $ SPURIOUS: flow="SOURCE, l:-4 -> foo.x"
 
+
+# ------------------------------------------------------------------------------
+# Crosstalk test -- using different function based on conditional
+# ------------------------------------------------------------------------------
+
+class CrosstalkTestX:
+    def __init__(self):
+        self.x = None
+        self.y = None
+
+    def setx(self, value):
+        self.x = value
+
+    def setvalue(self, value):
+        self.x = value
+
+
+class CrosstalkTestY:
+    def __init__(self):
+        self.x = None
+        self.y = None
+
+    def sety(self ,value):
+        self.y = value
+
+    def setvalue(self, value):
+        self.y = value
+
+
+@expects(8) # $ unresolved_call=expects(..) unresolved_call=expects(..)(..)
+def test_no_crosstalk_reference(cond=True):
+    objx = CrosstalkTestX()
+    SINK_F(objx.x)
+    SINK_F(objx.y)
+
+    objy = CrosstalkTestY()
+    SINK_F(objy.x)
+    SINK_F(objy.y)
+
+    if cond:
+        objx.setvalue(SOURCE)
+    else:
+        objy.setvalue(SOURCE)
+
+    SINK(objx.x) # $ flow="SOURCE, l:-4 -> objx.x"
+    SINK_F(objx.y)
+    SINK_F(objy.x)
+    SINK_F(objy.y) # $ flow="SOURCE, l:-5 -> objy.y"
+
+
+@expects(8) # $ unresolved_call=expects(..) unresolved_call=expects(..)(..)
+def test_potential_crosstalk_different_name(cond=True):
+    objx = CrosstalkTestX()
+    SINK_F(objx.x)
+    SINK_F(objx.y)
+
+    objy = CrosstalkTestY()
+    SINK_F(objy.x)
+    SINK_F(objy.y)
+
+    if cond:
+        func = objx.setx
+    else:
+        func = objy.sety
+
+    func(SOURCE)
+
+    SINK(objx.x) # $ MISSING: flow="SOURCE, l:-2 -> objx.x"
+    SINK_F(objx.y)
+    SINK_F(objy.x)
+    SINK_F(objy.y) # $ MISSING: flow="SOURCE, l:-5 -> objy.y"
+
+
+@expects(8) # $ unresolved_call=expects(..) unresolved_call=expects(..)(..)
+def test_potential_crosstalk_same_name(cond=True):
+    objx = CrosstalkTestX()
+    SINK_F(objx.x)
+    SINK_F(objx.y)
+
+    objy = CrosstalkTestY()
+    SINK_F(objy.x)
+    SINK_F(objy.y)
+
+    if cond:
+        func = objx.setvalue
+    else:
+        func = objy.setvalue
+
+    func(SOURCE)
+
+    SINK(objx.x) # $ MISSING: flow="SOURCE, l:-2 -> objx.x"
+    SINK_F(objx.y)
+    SINK_F(objy.x)
+    SINK_F(objy.y) # $ MISSING: flow="SOURCE, l:-5 -> objy.y"
+
+
+@expects(10) # $ unresolved_call=expects(..) unresolved_call=expects(..)(..)
+def test_potential_crosstalk_same_name_object_reference(cond=True):
+    objx = CrosstalkTestX()
+    SINK_F(objx.x)
+    SINK_F(objx.y)
+
+    objy = CrosstalkTestY()
+    SINK_F(objy.x)
+    SINK_F(objy.y)
+
+    if cond:
+        obj = objx
+    else:
+        obj = objy
+
+    obj.setvalue(SOURCE)
+
+    SINK(objx.x) # $ MISSING: flow="SOURCE, l:-2 -> objx.x"
+    SINK_F(objx.y)
+    SINK_F(objy.x)
+    SINK_F(objy.y) # $ MISSING: flow="SOURCE, l:-5 -> objy.y"
+
+    SINK(obj.x) # $ flow="SOURCE, l:-7 -> obj.x"
+    SINK_F(obj.y) # $ flow="SOURCE, l:-8 -> obj.y"
+
+
 # ------------------------------------------------------------------------------
 # Global scope
 # ------------------------------------------------------------------------------

From e8fdff7a3bea1c12d87ae5e33958f8aaf71ef534 Mon Sep 17 00:00:00 2001
From: Rasmus Wriedt Larsen <rasmuswl@github.com>
Date: Tue, 16 Aug 2022 14:48:41 +0200
Subject: [PATCH 0031/1420] Python: Expand ExternalAPIs test

We never had a showcase of how keyword arguments were handled
---
 .../ExternalAPIsUsedWithUntrustedData.expected       |  2 +-
 .../UntrustedDataToExternalAPI.expected              |  7 +++++++
 .../Security/CWE-020-ExternalAPIs/test.py            | 12 ++++++++++++
 3 files changed, 20 insertions(+), 1 deletion(-)

diff --git a/python/ql/test/query-tests/Security/CWE-020-ExternalAPIs/ExternalAPIsUsedWithUntrustedData.expected b/python/ql/test/query-tests/Security/CWE-020-ExternalAPIs/ExternalAPIsUsedWithUntrustedData.expected
index c070169615c..7438c415858 100644
--- a/python/ql/test/query-tests/Security/CWE-020-ExternalAPIs/ExternalAPIsUsedWithUntrustedData.expected
+++ b/python/ql/test/query-tests/Security/CWE-020-ExternalAPIs/ExternalAPIsUsedWithUntrustedData.expected
@@ -1 +1 @@
-| hmac.new [param 1] | 1 | 1 |
+| hmac.new [param 1] | 2 | 1 |
diff --git a/python/ql/test/query-tests/Security/CWE-020-ExternalAPIs/UntrustedDataToExternalAPI.expected b/python/ql/test/query-tests/Security/CWE-020-ExternalAPIs/UntrustedDataToExternalAPI.expected
index c64a6943813..e024ef20cba 100644
--- a/python/ql/test/query-tests/Security/CWE-020-ExternalAPIs/UntrustedDataToExternalAPI.expected
+++ b/python/ql/test/query-tests/Security/CWE-020-ExternalAPIs/UntrustedDataToExternalAPI.expected
@@ -1,9 +1,12 @@
 edges
 | test.py:0:0:0:0 | ModuleVariableNode for test.request | test.py:13:16:13:22 | ControlFlowNode for request |
+| test.py:0:0:0:0 | ModuleVariableNode for test.request | test.py:23:16:23:22 | ControlFlowNode for request |
 | test.py:5:26:5:32 | ControlFlowNode for ImportMember | test.py:5:26:5:32 | GSSA Variable request |
 | test.py:5:26:5:32 | GSSA Variable request | test.py:0:0:0:0 | ModuleVariableNode for test.request |
 | test.py:13:16:13:22 | ControlFlowNode for request | test.py:13:16:13:27 | ControlFlowNode for Attribute |
 | test.py:13:16:13:27 | ControlFlowNode for Attribute | test.py:15:36:15:39 | ControlFlowNode for data |
+| test.py:23:16:23:22 | ControlFlowNode for request | test.py:23:16:23:27 | ControlFlowNode for Attribute |
+| test.py:23:16:23:27 | ControlFlowNode for Attribute | test.py:25:44:25:47 | ControlFlowNode for data |
 nodes
 | test.py:0:0:0:0 | ModuleVariableNode for test.request | semmle.label | ModuleVariableNode for test.request |
 | test.py:5:26:5:32 | ControlFlowNode for ImportMember | semmle.label | ControlFlowNode for ImportMember |
@@ -11,6 +14,10 @@ nodes
 | test.py:13:16:13:22 | ControlFlowNode for request | semmle.label | ControlFlowNode for request |
 | test.py:13:16:13:27 | ControlFlowNode for Attribute | semmle.label | ControlFlowNode for Attribute |
 | test.py:15:36:15:39 | ControlFlowNode for data | semmle.label | ControlFlowNode for data |
+| test.py:23:16:23:22 | ControlFlowNode for request | semmle.label | ControlFlowNode for request |
+| test.py:23:16:23:27 | ControlFlowNode for Attribute | semmle.label | ControlFlowNode for Attribute |
+| test.py:25:44:25:47 | ControlFlowNode for data | semmle.label | ControlFlowNode for data |
 subpaths
 #select
 | test.py:15:36:15:39 | ControlFlowNode for data | test.py:5:26:5:32 | ControlFlowNode for ImportMember | test.py:15:36:15:39 | ControlFlowNode for data | Call to hmac.new [param 1] with untrusted data from $@. | test.py:5:26:5:32 | ControlFlowNode for ImportMember | ControlFlowNode for ImportMember |
+| test.py:25:44:25:47 | ControlFlowNode for data | test.py:5:26:5:32 | ControlFlowNode for ImportMember | test.py:25:44:25:47 | ControlFlowNode for data | Call to hmac.new [param 1] with untrusted data from $@. | test.py:5:26:5:32 | ControlFlowNode for ImportMember | ControlFlowNode for ImportMember |
diff --git a/python/ql/test/query-tests/Security/CWE-020-ExternalAPIs/test.py b/python/ql/test/query-tests/Security/CWE-020-ExternalAPIs/test.py
index b88748fbb29..ca4191ded85 100644
--- a/python/ql/test/query-tests/Security/CWE-020-ExternalAPIs/test.py
+++ b/python/ql/test/query-tests/Security/CWE-020-ExternalAPIs/test.py
@@ -18,11 +18,22 @@ def hmac_example():
     return "ok"
 
 
+@app.route("/hmac-example2")
+def hmac_example2():
+    data_raw = request.args.get("data").encode('utf-8')
+    data = base64.decodebytes(data_raw)
+    my_hmac = hmac.new(key=SECRET_KEY, msg=data, digestmod=hashlib.sha256)
+    digest = my_hmac.digest()
+    print(digest)
+    return "ok"
+
+
 @app.route("/unknown-lib-1")
 def unknown_lib_1():
     from unknown.lib import func
     data = request.args.get("data")
     func(data) # TODO: currently not recognized
+    func(kw=data) # TODO: currently not recognized
 
 
 @app.route("/unknown-lib-2")
@@ -30,6 +41,7 @@ def unknown_lib_2():
     import unknown.lib
     data = request.args.get("data")
     unknown.lib.func(data) # TODO: currently not recognized
+    unknown.lib.func(kw=data) # TODO: currently not recognized
 
 
 if __name__ == "__main__":

From 08bc14f59806387599cfe38463367a2761f13cf1 Mon Sep 17 00:00:00 2001
From: erik-krogh <erik-krogh@github.com>
Date: Tue, 1 Nov 2022 22:50:13 +0100
Subject: [PATCH 0032/1420] add failing test

---
 .../CWE-400/ReDoS/PolynomialBackTracking.expected        | 2 ++
 .../Security/CWE-400/ReDoS/PolynomialReDoS.expected      | 9 +++++++++
 .../test/query-tests/Security/CWE-400/ReDoS/lib/lib.js   | 9 ++++++++-
 3 files changed, 19 insertions(+), 1 deletion(-)

diff --git a/javascript/ql/test/query-tests/Security/CWE-400/ReDoS/PolynomialBackTracking.expected b/javascript/ql/test/query-tests/Security/CWE-400/ReDoS/PolynomialBackTracking.expected
index e1ad3adb91c..6ed2af353f5 100644
--- a/javascript/ql/test/query-tests/Security/CWE-400/ReDoS/PolynomialBackTracking.expected
+++ b/javascript/ql/test/query-tests/Security/CWE-400/ReDoS/PolynomialBackTracking.expected
@@ -33,6 +33,8 @@
 | lib/lib.js:8:3:8:4 | f* | Strings with many repetitions of 'f' can start matching anywhere after the start of the preceeding f*g |
 | lib/lib.js:28:3:28:4 | f* | Strings with many repetitions of 'f' can start matching anywhere after the start of the preceeding f*g |
 | lib/lib.js:36:3:36:4 | f* | Strings with many repetitions of 'f' can start matching anywhere after the start of the preceeding f*g |
+| lib/lib.js:42:29:42:30 | f* | Strings with many repetitions of 'f' can start matching anywhere after the start of the preceeding f*g |
+| lib/lib.js:45:29:45:30 | f* | Strings with many repetitions of 'f' can start matching anywhere after the start of the preceeding f*g |
 | lib/moduleLib/moduleLib.js:2:3:2:4 | a* | Strings with many repetitions of 'a' can start matching anywhere after the start of the preceeding a*b |
 | lib/otherLib/js/src/index.js:2:3:2:4 | a* | Strings with many repetitions of 'a' can start matching anywhere after the start of the preceeding a*b |
 | lib/snapdragon.js:7:28:7:29 | a* | Strings starting with 'a' and with many repetitions of 'a' can start matching anywhere after the start of the preceeding aa*$ |
diff --git a/javascript/ql/test/query-tests/Security/CWE-400/ReDoS/PolynomialReDoS.expected b/javascript/ql/test/query-tests/Security/CWE-400/ReDoS/PolynomialReDoS.expected
index 3df7db24964..c4076c927cd 100644
--- a/javascript/ql/test/query-tests/Security/CWE-400/ReDoS/PolynomialReDoS.expected
+++ b/javascript/ql/test/query-tests/Security/CWE-400/ReDoS/PolynomialReDoS.expected
@@ -28,6 +28,10 @@ nodes
 | lib/lib.js:35:28:35:31 | name |
 | lib/lib.js:36:13:36:16 | name |
 | lib/lib.js:36:13:36:16 | name |
+| lib/lib.js:41:32:41:35 | name |
+| lib/lib.js:41:32:41:35 | name |
+| lib/lib.js:42:17:42:20 | name |
+| lib/lib.js:42:17:42:20 | name |
 | lib/moduleLib/moduleLib.js:1:28:1:31 | name |
 | lib/moduleLib/moduleLib.js:1:28:1:31 | name |
 | lib/moduleLib/moduleLib.js:2:13:2:16 | name |
@@ -249,6 +253,10 @@ edges
 | lib/lib.js:35:1:37:1 | 'arguments' object of function usedWithArguments | lib/lib.js:35:28:35:31 | name |
 | lib/lib.js:35:28:35:31 | name | lib/lib.js:36:13:36:16 | name |
 | lib/lib.js:35:28:35:31 | name | lib/lib.js:36:13:36:16 | name |
+| lib/lib.js:41:32:41:35 | name | lib/lib.js:42:17:42:20 | name |
+| lib/lib.js:41:32:41:35 | name | lib/lib.js:42:17:42:20 | name |
+| lib/lib.js:41:32:41:35 | name | lib/lib.js:42:17:42:20 | name |
+| lib/lib.js:41:32:41:35 | name | lib/lib.js:42:17:42:20 | name |
 | lib/moduleLib/moduleLib.js:1:28:1:31 | name | lib/moduleLib/moduleLib.js:2:13:2:16 | name |
 | lib/moduleLib/moduleLib.js:1:28:1:31 | name | lib/moduleLib/moduleLib.js:2:13:2:16 | name |
 | lib/moduleLib/moduleLib.js:1:28:1:31 | name | lib/moduleLib/moduleLib.js:2:13:2:16 | name |
@@ -440,6 +448,7 @@ edges
 | lib/lib.js:4:2:4:18 | regexp.test(name) | lib/lib.js:3:28:3:31 | name | lib/lib.js:4:14:4:17 | name | This $@ that depends on $@ may run slow on strings with many repetitions of 'a'. | lib/lib.js:1:15:1:16 | a* | regular expression | lib/lib.js:3:28:3:31 | name | library input |
 | lib/lib.js:8:2:8:17 | /f*g/.test(name) | lib/lib.js:7:19:7:22 | name | lib/lib.js:8:13:8:16 | name | This $@ that depends on $@ may run slow on strings with many repetitions of 'f'. | lib/lib.js:8:3:8:4 | f* | regular expression | lib/lib.js:7:19:7:22 | name | library input |
 | lib/lib.js:36:2:36:17 | /f*g/.test(name) | lib/lib.js:32:32:32:40 | arguments | lib/lib.js:36:13:36:16 | name | This $@ that depends on $@ may run slow on strings with many repetitions of 'f'. | lib/lib.js:36:3:36:4 | f* | regular expression | lib/lib.js:32:32:32:40 | arguments | library input |
+| lib/lib.js:42:17:42:33 | name.match(/f*g/) | lib/lib.js:41:32:41:35 | name | lib/lib.js:42:17:42:20 | name | This $@ that depends on $@ may run slow on strings with many repetitions of 'f'. | lib/lib.js:42:29:42:30 | f* | regular expression | lib/lib.js:41:32:41:35 | name | library input |
 | lib/moduleLib/moduleLib.js:2:2:2:17 | /a*b/.test(name) | lib/moduleLib/moduleLib.js:1:28:1:31 | name | lib/moduleLib/moduleLib.js:2:13:2:16 | name | This $@ that depends on $@ may run slow on strings with many repetitions of 'a'. | lib/moduleLib/moduleLib.js:2:3:2:4 | a* | regular expression | lib/moduleLib/moduleLib.js:1:28:1:31 | name | library input |
 | lib/otherLib/js/src/index.js:2:2:2:17 | /a*b/.test(name) | lib/otherLib/js/src/index.js:1:28:1:31 | name | lib/otherLib/js/src/index.js:2:13:2:16 | name | This $@ that depends on $@ may run slow on strings with many repetitions of 'a'. | lib/otherLib/js/src/index.js:2:3:2:4 | a* | regular expression | lib/otherLib/js/src/index.js:1:28:1:31 | name | library input |
 | lib/snapdragon.js:7:15:7:32 | this.match(/aa*$/) | lib/snapdragon.js:3:34:3:38 | input | lib/snapdragon.js:7:15:7:18 | this | This $@ that depends on $@ may run slow on strings starting with 'a' and with many repetitions of 'a'. | lib/snapdragon.js:7:28:7:29 | a* | regular expression | lib/snapdragon.js:3:34:3:38 | input | library input |
diff --git a/javascript/ql/test/query-tests/Security/CWE-400/ReDoS/lib/lib.js b/javascript/ql/test/query-tests/Security/CWE-400/ReDoS/lib/lib.js
index 5c892f328a3..87b7e8292d2 100644
--- a/javascript/ql/test/query-tests/Security/CWE-400/ReDoS/lib/lib.js
+++ b/javascript/ql/test/query-tests/Security/CWE-400/ReDoS/lib/lib.js
@@ -36,4 +36,11 @@ function usedWithArguments(name) {
 	/f*g/.test(name); // NOT OK
 }
 
-module.exports.snapdragon = require("./snapdragon")
\ No newline at end of file
+module.exports.snapdragon = require("./snapdragon")
+
+module.exports.foo = function (name) {
+    var data1 = name.match(/f*g/); // NOT OK
+
+    name = name.substr(1);
+    var data2 = name.match(/f*g/); // NOT OK - but not flagged
+}
\ No newline at end of file

From 851d53d56b69254efcb2c1898b0e47d9fe53daa8 Mon Sep 17 00:00:00 2001
From: erik-krogh <erik-krogh@github.com>
Date: Tue, 1 Nov 2022 22:51:07 +0100
Subject: [PATCH 0033/1420] don't sanitize calls through substring calls that
 just remove the start

---
 .../regexp/PolynomialReDoSCustomizations.qll         |  3 ++-
 .../Security/CWE-400/ReDoS/PolynomialReDoS.expected  | 12 ++++++++++++
 .../query-tests/Security/CWE-400/ReDoS/lib/lib.js    |  2 +-
 3 files changed, 15 insertions(+), 2 deletions(-)

diff --git a/javascript/ql/lib/semmle/javascript/security/regexp/PolynomialReDoSCustomizations.qll b/javascript/ql/lib/semmle/javascript/security/regexp/PolynomialReDoSCustomizations.qll
index 87f9437196f..508eaf40e2c 100644
--- a/javascript/ql/lib/semmle/javascript/security/regexp/PolynomialReDoSCustomizations.qll
+++ b/javascript/ql/lib/semmle/javascript/security/regexp/PolynomialReDoSCustomizations.qll
@@ -90,7 +90,8 @@ module PolynomialReDoS {
         isCharClassLike(root)
       )
       or
-      this.(DataFlow::MethodCallNode).getMethodName() = StringOps::substringMethodName()
+      this.(DataFlow::MethodCallNode).getMethodName() = StringOps::substringMethodName() and
+      not this.(DataFlow::MethodCallNode).getNumArgument() = 1 // with one argument it just slices off the beginning
     }
   }
 
diff --git a/javascript/ql/test/query-tests/Security/CWE-400/ReDoS/PolynomialReDoS.expected b/javascript/ql/test/query-tests/Security/CWE-400/ReDoS/PolynomialReDoS.expected
index c4076c927cd..04bf2cbad36 100644
--- a/javascript/ql/test/query-tests/Security/CWE-400/ReDoS/PolynomialReDoS.expected
+++ b/javascript/ql/test/query-tests/Security/CWE-400/ReDoS/PolynomialReDoS.expected
@@ -32,6 +32,11 @@ nodes
 | lib/lib.js:41:32:41:35 | name |
 | lib/lib.js:42:17:42:20 | name |
 | lib/lib.js:42:17:42:20 | name |
+| lib/lib.js:44:5:44:25 | name |
+| lib/lib.js:44:12:44:15 | name |
+| lib/lib.js:44:12:44:25 | name.substr(1) |
+| lib/lib.js:45:17:45:20 | name |
+| lib/lib.js:45:17:45:20 | name |
 | lib/moduleLib/moduleLib.js:1:28:1:31 | name |
 | lib/moduleLib/moduleLib.js:1:28:1:31 | name |
 | lib/moduleLib/moduleLib.js:2:13:2:16 | name |
@@ -257,6 +262,12 @@ edges
 | lib/lib.js:41:32:41:35 | name | lib/lib.js:42:17:42:20 | name |
 | lib/lib.js:41:32:41:35 | name | lib/lib.js:42:17:42:20 | name |
 | lib/lib.js:41:32:41:35 | name | lib/lib.js:42:17:42:20 | name |
+| lib/lib.js:41:32:41:35 | name | lib/lib.js:44:12:44:15 | name |
+| lib/lib.js:41:32:41:35 | name | lib/lib.js:44:12:44:15 | name |
+| lib/lib.js:44:5:44:25 | name | lib/lib.js:45:17:45:20 | name |
+| lib/lib.js:44:5:44:25 | name | lib/lib.js:45:17:45:20 | name |
+| lib/lib.js:44:12:44:15 | name | lib/lib.js:44:12:44:25 | name.substr(1) |
+| lib/lib.js:44:12:44:25 | name.substr(1) | lib/lib.js:44:5:44:25 | name |
 | lib/moduleLib/moduleLib.js:1:28:1:31 | name | lib/moduleLib/moduleLib.js:2:13:2:16 | name |
 | lib/moduleLib/moduleLib.js:1:28:1:31 | name | lib/moduleLib/moduleLib.js:2:13:2:16 | name |
 | lib/moduleLib/moduleLib.js:1:28:1:31 | name | lib/moduleLib/moduleLib.js:2:13:2:16 | name |
@@ -449,6 +460,7 @@ edges
 | lib/lib.js:8:2:8:17 | /f*g/.test(name) | lib/lib.js:7:19:7:22 | name | lib/lib.js:8:13:8:16 | name | This $@ that depends on $@ may run slow on strings with many repetitions of 'f'. | lib/lib.js:8:3:8:4 | f* | regular expression | lib/lib.js:7:19:7:22 | name | library input |
 | lib/lib.js:36:2:36:17 | /f*g/.test(name) | lib/lib.js:32:32:32:40 | arguments | lib/lib.js:36:13:36:16 | name | This $@ that depends on $@ may run slow on strings with many repetitions of 'f'. | lib/lib.js:36:3:36:4 | f* | regular expression | lib/lib.js:32:32:32:40 | arguments | library input |
 | lib/lib.js:42:17:42:33 | name.match(/f*g/) | lib/lib.js:41:32:41:35 | name | lib/lib.js:42:17:42:20 | name | This $@ that depends on $@ may run slow on strings with many repetitions of 'f'. | lib/lib.js:42:29:42:30 | f* | regular expression | lib/lib.js:41:32:41:35 | name | library input |
+| lib/lib.js:45:17:45:33 | name.match(/f*g/) | lib/lib.js:41:32:41:35 | name | lib/lib.js:45:17:45:20 | name | This $@ that depends on $@ may run slow on strings with many repetitions of 'f'. | lib/lib.js:45:29:45:30 | f* | regular expression | lib/lib.js:41:32:41:35 | name | library input |
 | lib/moduleLib/moduleLib.js:2:2:2:17 | /a*b/.test(name) | lib/moduleLib/moduleLib.js:1:28:1:31 | name | lib/moduleLib/moduleLib.js:2:13:2:16 | name | This $@ that depends on $@ may run slow on strings with many repetitions of 'a'. | lib/moduleLib/moduleLib.js:2:3:2:4 | a* | regular expression | lib/moduleLib/moduleLib.js:1:28:1:31 | name | library input |
 | lib/otherLib/js/src/index.js:2:2:2:17 | /a*b/.test(name) | lib/otherLib/js/src/index.js:1:28:1:31 | name | lib/otherLib/js/src/index.js:2:13:2:16 | name | This $@ that depends on $@ may run slow on strings with many repetitions of 'a'. | lib/otherLib/js/src/index.js:2:3:2:4 | a* | regular expression | lib/otherLib/js/src/index.js:1:28:1:31 | name | library input |
 | lib/snapdragon.js:7:15:7:32 | this.match(/aa*$/) | lib/snapdragon.js:3:34:3:38 | input | lib/snapdragon.js:7:15:7:18 | this | This $@ that depends on $@ may run slow on strings starting with 'a' and with many repetitions of 'a'. | lib/snapdragon.js:7:28:7:29 | a* | regular expression | lib/snapdragon.js:3:34:3:38 | input | library input |
diff --git a/javascript/ql/test/query-tests/Security/CWE-400/ReDoS/lib/lib.js b/javascript/ql/test/query-tests/Security/CWE-400/ReDoS/lib/lib.js
index 87b7e8292d2..73700dfbc6b 100644
--- a/javascript/ql/test/query-tests/Security/CWE-400/ReDoS/lib/lib.js
+++ b/javascript/ql/test/query-tests/Security/CWE-400/ReDoS/lib/lib.js
@@ -42,5 +42,5 @@ module.exports.foo = function (name) {
     var data1 = name.match(/f*g/); // NOT OK
 
     name = name.substr(1);
-    var data2 = name.match(/f*g/); // NOT OK - but not flagged
+    var data2 = name.match(/f*g/); // NOT OK
 }
\ No newline at end of file

From 33cca29a8e8cfb7c22381caef10cf0a9149f091f Mon Sep 17 00:00:00 2001
From: erik-krogh <erik-krogh@github.com>
Date: Wed, 2 Nov 2022 11:23:01 +0100
Subject: [PATCH 0034/1420] drop down to the CFG instead of the AST to better
 support de-sugaring

---
 .../ruby/frameworks/StringFormatters.qll       | 18 +++++++++---------
 1 file changed, 9 insertions(+), 9 deletions(-)

diff --git a/ruby/ql/lib/codeql/ruby/frameworks/StringFormatters.qll b/ruby/ql/lib/codeql/ruby/frameworks/StringFormatters.qll
index da9ce58345e..479507dd0e6 100644
--- a/ruby/ql/lib/codeql/ruby/frameworks/StringFormatters.qll
+++ b/ruby/ql/lib/codeql/ruby/frameworks/StringFormatters.qll
@@ -87,15 +87,15 @@ class StringPercentCall extends PrintfStyleCall {
   override DataFlow::Node getFormatString() { result = this.getReceiver() }
 
   override DataFlow::Node getFormatArgument(int n) {
-    exists(Ast::Call call | call = this.asExpr().getExpr() |
-      exists(Ast::ArrayLiteral arrLit | arrLit = call.getArgument(0) |
-        result.asExpr().getExpr() = arrLit.getElement(n)
-      )
-      or
-      exists(Ast::HashLiteral hashLit | hashLit = call.getArgument(0) |
-        n = -2 and // -2 is indicates that the index does not make sense in this context
-        result.asExpr().getExpr() = hashLit.getAnElement()
-      )
+    exists(CfgNodes::ExprNodes::ArrayLiteralCfgNode arrLit | arrLit = this.getArgument(0).asExpr() |
+      result.asExpr() = arrLit.getArgument(n)
+    )
+    or
+    exists(CfgNodes::ExprNodes::HashLiteralCfgNode hashLit |
+      hashLit = this.getArgument(0).asExpr()
+    |
+      n = -2 and // -2 is indicates that the index does not make sense in this context
+      result.asExpr() = hashLit.getAKeyValuePair().getValue()
     )
   }
 

From 1e3adcd14e172aff3a0a03c89181ca31ca091080 Mon Sep 17 00:00:00 2001
From: Tom Hvitved <hvitved@github.com>
Date: Wed, 2 Nov 2022 11:37:37 +0100
Subject: [PATCH 0035/1420] Revert "Revert "SSA: Turn consistency predicates
 into `query` predicates""

---
 .../ql/consistency-queries/SsaConsistency.ql  | 12 ++---------
 ruby/ql/consistency-queries/SsaConsistency.ql | 12 ++---------
 shared/ssa/codeql/ssa/Ssa.qll                 | 20 +++++++++++--------
 3 files changed, 16 insertions(+), 28 deletions(-)

diff --git a/csharp/ql/consistency-queries/SsaConsistency.ql b/csharp/ql/consistency-queries/SsaConsistency.ql
index 71f88bf2ab0..bd666a71e49 100644
--- a/csharp/ql/consistency-queries/SsaConsistency.ql
+++ b/csharp/ql/consistency-queries/SsaConsistency.ql
@@ -1,8 +1,8 @@
 import csharp
-import semmle.code.csharp.dataflow.internal.SsaImpl::Consistency as Consistency
+import semmle.code.csharp.dataflow.internal.SsaImpl::Consistency
 import Ssa
 
-class MyRelevantDefinition extends Consistency::RelevantDefinition, Ssa::Definition {
+class MyRelevantDefinition extends RelevantDefinition, Ssa::Definition {
   override predicate hasLocationInfo(
     string filepath, int startline, int startcolumn, int endline, int endcolumn
   ) {
@@ -10,14 +10,6 @@ class MyRelevantDefinition extends Consistency::RelevantDefinition, Ssa::Definit
   }
 }
 
-query predicate nonUniqueDef = Consistency::nonUniqueDef/4;
-
-query predicate readWithoutDef = Consistency::readWithoutDef/3;
-
-query predicate deadDef = Consistency::deadDef/2;
-
-query predicate notDominatedByDef = Consistency::notDominatedByDef/4;
-
 query predicate localDeclWithSsaDef(LocalVariableDeclExpr d) {
   // Local variables in C# must be initialized before every use, so uninitialized
   // local variables should not have an SSA definition, as that would imply that
diff --git a/ruby/ql/consistency-queries/SsaConsistency.ql b/ruby/ql/consistency-queries/SsaConsistency.ql
index 54c1b149ab2..7ba9262baa4 100644
--- a/ruby/ql/consistency-queries/SsaConsistency.ql
+++ b/ruby/ql/consistency-queries/SsaConsistency.ql
@@ -1,18 +1,10 @@
 import codeql.ruby.dataflow.SSA
-import codeql.ruby.dataflow.internal.SsaImpl::Consistency as Consistency
+import codeql.ruby.dataflow.internal.SsaImpl::Consistency
 
-class MyRelevantDefinition extends Consistency::RelevantDefinition, Ssa::Definition {
+class MyRelevantDefinition extends RelevantDefinition, Ssa::Definition {
   override predicate hasLocationInfo(
     string filepath, int startline, int startcolumn, int endline, int endcolumn
   ) {
     this.getLocation().hasLocationInfo(filepath, startline, startcolumn, endline, endcolumn)
   }
 }
-
-query predicate nonUniqueDef = Consistency::nonUniqueDef/4;
-
-query predicate readWithoutDef = Consistency::readWithoutDef/3;
-
-query predicate deadDef = Consistency::deadDef/2;
-
-query predicate notDominatedByDef = Consistency::notDominatedByDef/4;
diff --git a/shared/ssa/codeql/ssa/Ssa.qll b/shared/ssa/codeql/ssa/Ssa.qll
index 886e4128e26..19f31f7c8bb 100644
--- a/shared/ssa/codeql/ssa/Ssa.qll
+++ b/shared/ssa/codeql/ssa/Ssa.qll
@@ -9,7 +9,10 @@ signature module InputSig {
    * A basic block, that is, a maximal straight-line sequence of control flow nodes
    * without branches or joins.
    */
-  class BasicBlock;
+  class BasicBlock {
+    /** Gets a textual representation of this basic block. */
+    string toString();
+  }
 
   /**
    * Gets the basic block that immediately dominates basic block `bb`, if any.
@@ -43,7 +46,10 @@ signature module InputSig {
   class ExitBasicBlock extends BasicBlock;
 
   /** A variable that can be SSA converted. */
-  class SourceVariable;
+  class SourceVariable {
+    /** Gets a textual representation of this variable. */
+    string toString();
+  }
 
   /**
    * Holds if the `i`th node of basic block `bb` is a (potential) write to source
@@ -846,8 +852,6 @@ module Make<InputSig Input> {
   }
 
   /** Provides a set of consistency queries. */
-  // TODO: Make these `query` predicates once class signatures are supported
-  // (`SourceVariable` and `BasicBlock` must have `toString`)
   module Consistency {
     /** A definition that is relevant for the consistency queries. */
     abstract class RelevantDefinition extends Definition {
@@ -858,19 +862,19 @@ module Make<InputSig Input> {
     }
 
     /** Holds if a read can be reached from multiple definitions. */
-    predicate nonUniqueDef(RelevantDefinition def, SourceVariable v, BasicBlock bb, int i) {
+    query predicate nonUniqueDef(RelevantDefinition def, SourceVariable v, BasicBlock bb, int i) {
       ssaDefReachesRead(v, def, bb, i) and
       not exists(unique(Definition def0 | ssaDefReachesRead(v, def0, bb, i)))
     }
 
     /** Holds if a read cannot be reached from a definition. */
-    predicate readWithoutDef(SourceVariable v, BasicBlock bb, int i) {
+    query predicate readWithoutDef(SourceVariable v, BasicBlock bb, int i) {
       variableRead(bb, i, v, _) and
       not ssaDefReachesRead(v, _, bb, i)
     }
 
     /** Holds if a definition cannot reach a read. */
-    predicate deadDef(RelevantDefinition def, SourceVariable v) {
+    query predicate deadDef(RelevantDefinition def, SourceVariable v) {
       v = def.getSourceVariable() and
       not ssaDefReachesRead(_, def, _, _) and
       not phiHasInputFromBlock(_, def, _) and
@@ -878,7 +882,7 @@ module Make<InputSig Input> {
     }
 
     /** Holds if a read is not dominated by a definition. */
-    predicate notDominatedByDef(RelevantDefinition def, SourceVariable v, BasicBlock bb, int i) {
+    query predicate notDominatedByDef(RelevantDefinition def, SourceVariable v, BasicBlock bb, int i) {
       exists(BasicBlock bbDef, int iDef | def.definesAt(v, bbDef, iDef) |
         ssaDefReachesReadWithinBlock(v, def, bb, i) and
         (bb != bbDef or i < iDef)

From 5d288d321af2bf9aa00118f3dcaf59f29edd84a3 Mon Sep 17 00:00:00 2001
From: Dave Bartolomeo <dbartol@github.com>
Date: Wed, 2 Nov 2022 11:10:04 -0400
Subject: [PATCH 0036/1420] Use latest released bundle for QL-for-QL

---
 .github/workflows/ql-for-ql-build.yml | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/.github/workflows/ql-for-ql-build.yml b/.github/workflows/ql-for-ql-build.yml
index 53a4157973d..e3cacf73d2e 100644
--- a/.github/workflows/ql-for-ql-build.yml
+++ b/.github/workflows/ql-for-ql-build.yml
@@ -27,6 +27,7 @@ jobs:
         uses: github/codeql-action/init@71a8b35ff4c80fcfcd05bc1cd932fe3c08f943ca
         with:
           languages: javascript # does not matter
+          tools: latest
       - name: Get CodeQL version
         id: get-codeql-version
         run: |
@@ -138,6 +139,7 @@ jobs:
           languages: ql
           db-location: ${{ runner.temp }}/db
           config-file: ./ql-for-ql-config.yml
+          tools: latest
       - name: Move pack cache
         run: |
           cp -r ${PACK}/.cache ql/ql/src/.cache

From bb0b0801dde5fa69c12aac8c3d36094e7432552d Mon Sep 17 00:00:00 2001
From: Dave Bartolomeo <dbartol@github.com>
Date: Wed, 2 Nov 2022 11:38:11 -0400
Subject: [PATCH 0037/1420] Try again

---
 .github/actions/find-latest-bundle/action.yml | 20 +++++++++++++++++++
 .github/workflows/ql-for-ql-build.yml         |  5 ++++-
 2 files changed, 24 insertions(+), 1 deletion(-)
 create mode 100644 .github/actions/find-latest-bundle/action.yml

diff --git a/.github/actions/find-latest-bundle/action.yml b/.github/actions/find-latest-bundle/action.yml
new file mode 100644
index 00000000000..3f4e089d476
--- /dev/null
+++ b/.github/actions/find-latest-bundle/action.yml
@@ -0,0 +1,20 @@
+name: Find Latest CodeQL Bundle
+description: Finds the URL of the latest released version of the CodeQL bundle.
+outputs:
+  url:
+    description: The download URL of the latest CodeQL bundle release
+    value: ${{ steps.find-latest.outputs.url }}
+runs:
+  using: composite
+  steps:
+    - name: Find Latest Release
+      id: find-latest
+      shell: pwsh
+      run: |
+        $Latest = gh release list --exclude-drafts --limit 1000 |
+          ForEach-Object { $C = $_ -split "`t"; return @{ type = $C[1]; tag = $C[2]; } } |
+          Where-Object { $_.type -eq 'Latest' }
+
+        $Tag = $Latest.tag
+        Write-Output "Latest bundle tag is '${Tag}'."
+        "url=https://github.com/github/codeql-action/releases/download/${Tag}/codeql-bundle-linux64.tar.gz" >> $env:GITHUB_OUTPUT
diff --git a/.github/workflows/ql-for-ql-build.yml b/.github/workflows/ql-for-ql-build.yml
index e3cacf73d2e..0af98b21e09 100644
--- a/.github/workflows/ql-for-ql-build.yml
+++ b/.github/workflows/ql-for-ql-build.yml
@@ -22,12 +22,15 @@ jobs:
     steps:
       ### Build the queries ###
       - uses: actions/checkout@v3
+      - name: Find latest bundle
+        id: find-latest-bundle
+        uses: ./.github/actions/find-latest-bundle
       - name: Find codeql
         id: find-codeql
         uses: github/codeql-action/init@71a8b35ff4c80fcfcd05bc1cd932fe3c08f943ca
         with:
           languages: javascript # does not matter
-          tools: latest
+          tools: ${{ steps.find-latest-bundle.outputs.url }}
       - name: Get CodeQL version
         id: get-codeql-version
         run: |

From 631b8fed308c23d8673a93819193053e80d42646 Mon Sep 17 00:00:00 2001
From: Dave Bartolomeo <dbartol@github.com>
Date: Wed, 2 Nov 2022 11:40:01 -0400
Subject: [PATCH 0038/1420] Add token

---
 .github/actions/find-latest-bundle/action.yml | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/.github/actions/find-latest-bundle/action.yml b/.github/actions/find-latest-bundle/action.yml
index 3f4e089d476..669cdfb518c 100644
--- a/.github/actions/find-latest-bundle/action.yml
+++ b/.github/actions/find-latest-bundle/action.yml
@@ -18,3 +18,5 @@ runs:
         $Tag = $Latest.tag
         Write-Output "Latest bundle tag is '${Tag}'."
         "url=https://github.com/github/codeql-action/releases/download/${Tag}/codeql-bundle-linux64.tar.gz" >> $env:GITHUB_OUTPUT
+      env:
+        GITHUB_TOKEN: ${{ github.token }}

From 906f2f5e0f3b51b864885e14c802928726bd611f Mon Sep 17 00:00:00 2001
From: Dave Bartolomeo <dbartol@github.com>
Date: Wed, 2 Nov 2022 11:42:39 -0400
Subject: [PATCH 0039/1420] Add repo

---
 .github/actions/find-latest-bundle/action.yml | 6 +++++-
 1 file changed, 5 insertions(+), 1 deletion(-)

diff --git a/.github/actions/find-latest-bundle/action.yml b/.github/actions/find-latest-bundle/action.yml
index 669cdfb518c..59e16a6d3cb 100644
--- a/.github/actions/find-latest-bundle/action.yml
+++ b/.github/actions/find-latest-bundle/action.yml
@@ -11,11 +11,15 @@ runs:
       id: find-latest
       shell: pwsh
       run: |
-        $Latest = gh release list --exclude-drafts --limit 1000 |
+        $Latest = gh release list --repo github/codeql-action --exclude-drafts --limit 1000 |
           ForEach-Object { $C = $_ -split "`t"; return @{ type = $C[1]; tag = $C[2]; } } |
           Where-Object { $_.type -eq 'Latest' }
 
         $Tag = $Latest.tag
+        if ($Tag -eq '') {
+          throw 'Failed to find latest bundle release.'
+        }
+
         Write-Output "Latest bundle tag is '${Tag}'."
         "url=https://github.com/github/codeql-action/releases/download/${Tag}/codeql-bundle-linux64.tar.gz" >> $env:GITHUB_OUTPUT
       env:

From 3507cdc79666d10a3e196aa07bb0ca452ead3464 Mon Sep 17 00:00:00 2001
From: Dave Bartolomeo <dbartol@github.com>
Date: Wed, 2 Nov 2022 12:17:24 -0400
Subject: [PATCH 0040/1420] Stop using `latest` for second init

---
 .github/workflows/ql-for-ql-build.yml | 1 -
 1 file changed, 1 deletion(-)

diff --git a/.github/workflows/ql-for-ql-build.yml b/.github/workflows/ql-for-ql-build.yml
index 0af98b21e09..86b1aa85162 100644
--- a/.github/workflows/ql-for-ql-build.yml
+++ b/.github/workflows/ql-for-ql-build.yml
@@ -142,7 +142,6 @@ jobs:
           languages: ql
           db-location: ${{ runner.temp }}/db
           config-file: ./ql-for-ql-config.yml
-          tools: latest
       - name: Move pack cache
         run: |
           cp -r ${PACK}/.cache ql/ql/src/.cache

From 966be2727eba3c546914f9b59025130b21e65f52 Mon Sep 17 00:00:00 2001
From: Dave Bartolomeo <dbartol@github.com>
Date: Wed, 2 Nov 2022 12:22:39 -0400
Subject: [PATCH 0041/1420] Use correct bundle version for second init

---
 .github/workflows/ql-for-ql-build.yml | 1 +
 1 file changed, 1 insertion(+)

diff --git a/.github/workflows/ql-for-ql-build.yml b/.github/workflows/ql-for-ql-build.yml
index 86b1aa85162..36ca512012f 100644
--- a/.github/workflows/ql-for-ql-build.yml
+++ b/.github/workflows/ql-for-ql-build.yml
@@ -142,6 +142,7 @@ jobs:
           languages: ql
           db-location: ${{ runner.temp }}/db
           config-file: ./ql-for-ql-config.yml
+          tools: ${{ steps.find-latest-bundle.outputs.url }}
       - name: Move pack cache
         run: |
           cp -r ${PACK}/.cache ql/ql/src/.cache

From 5c905c42b268ed3f499033eb9605f7090c3081e2 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Nora=20Dimitrijevi=C4=87?= <d10c@users.noreply.github.com>
Date: Wed, 26 Oct 2022 20:23:58 +0200
Subject: [PATCH 0042/1420] Swift: Initial UnsafeJsEval query

---
 .../queries/Security/CWE-094/UnsafeJsEval.ql  | 119 ++++++++++++++++++
 1 file changed, 119 insertions(+)
 create mode 100644 swift/ql/src/queries/Security/CWE-094/UnsafeJsEval.ql

diff --git a/swift/ql/src/queries/Security/CWE-094/UnsafeJsEval.ql b/swift/ql/src/queries/Security/CWE-094/UnsafeJsEval.ql
new file mode 100644
index 00000000000..ced918a64d4
--- /dev/null
+++ b/swift/ql/src/queries/Security/CWE-094/UnsafeJsEval.ql
@@ -0,0 +1,119 @@
+/**
+ * @name JavaScript Injection
+ * @description Evaluating JavaScript code containing a substring from a remote source may lead to remote code execution.
+ * @kind path-problem
+ * @problem.severity warning
+ * @security-severity 6.1
+ * @precision high
+ * @id swift/unsafe-js-eval
+ * @tags security
+ *       external/cwe/cwe-094
+ *       external/cwe/cwe-095
+ *       external/cwe/cwe-749
+ */
+
+import swift
+import codeql.swift.dataflow.DataFlow
+import codeql.swift.dataflow.TaintTracking
+import codeql.swift.dataflow.FlowSources
+import DataFlow::PathGraph
+
+/**
+ * A source of untrusted, user-controlled data.
+ * TODO: Extend to more (non-remote) sources in the future.
+ */
+class Source = RemoteFlowSource;
+
+/**
+ * A sink that evaluates a string of JavaScript code.
+ */
+abstract class Sink extends DataFlow::Node { }
+
+class WKWebView extends Sink {
+  WKWebView() {
+    any(CallExpr ce |
+      ce.getStaticTarget() =
+        getMethodWithQualifiedName("WKWebView",
+          [
+            "evaluateJavaScript(_:completionHandler:)",
+            "evaluateJavaScript(_:in:in:completionHandler:)",
+            "evaluateJavaScript(_:in:contentWorld:)",
+            "callAsyncJavaScript(_:arguments:in:in:completionHandler:)",
+            "callAsyncJavaScript(_:arguments:in:contentWorld:)"
+          ])
+    ).getArgument(0).getExpr() = this.asExpr()
+  }
+}
+
+class WKUserContentController extends Sink {
+  WKUserContentController() {
+    any(CallExpr ce |
+      ce.getStaticTarget() =
+        getMethodWithQualifiedName("WKUserContentController", "addUserScript(_:)")
+    ).getArgument(0).getExpr() = this.asExpr()
+  }
+}
+
+class UIWebView extends Sink {
+  UIWebView() {
+    any(CallExpr ce |
+      ce.getStaticTarget() =
+        getMethodWithQualifiedName(["UIWebView", "WebView"], "stringByEvaluatingJavaScript(from:)")
+    ).getArgument(0).getExpr() = this.asExpr()
+  }
+}
+
+class JSContext extends Sink {
+  JSContext() {
+    any(CallExpr ce |
+      ce.getStaticTarget() =
+        getMethodWithQualifiedName("JSContext",
+          ["evaluateScript(_:)", "evaluateScript(_:withSourceURL:)"])
+    ).getArgument(0).getExpr() = this.asExpr()
+  }
+}
+
+class JSEvaluateScript extends Sink {
+  JSEvaluateScript() {
+    any(CallExpr ce |
+      ce.getStaticTarget() = getFunctionWithQualifiedName("JSEvaluateScript(_:_:_:_:_:_:)")
+    ).getArgument(1).getExpr() = this.asExpr()
+  }
+}
+
+// TODO: Consider moving the following to the library, e.g.
+// - Decl.hasQualifiedName(moduleName?, declaringDeclName?, declName)
+// - parentDecl = memberDecl.getDeclaringDecl() <=> parentDecl.getAMember() = memberDecl
+IterableDeclContext getDeclaringDeclOf(Decl member) { result.getAMember() = member }
+
+MethodDecl getMethodWithQualifiedName(string className, string methodName) {
+  result.getName() = methodName and
+  getDeclaringDeclOf(result).(NominalTypeDecl).getName() = className
+}
+
+AbstractFunctionDecl getFunctionWithQualifiedName(string funcName) {
+  result.getName() = funcName and
+  not result.hasSelfParam()
+}
+
+/**
+ * A taint configuration from taint sources to sinks for this query.
+ */
+class UnsafeJsEvalConfig extends TaintTracking::Configuration {
+  UnsafeJsEvalConfig() { this = "UnsafeJsEvalConfig" }
+
+  override predicate isSource(DataFlow::Node node) { node instanceof Source }
+
+  override predicate isSink(DataFlow::Node node) { node instanceof Sink }
+
+  override predicate isSanitizer(DataFlow::Node node) {
+    none() // TODO: A conversion to a primitive type or an enum
+  }
+}
+
+from
+  UnsafeJsEvalConfig config, DataFlow::PathNode sourceNode, DataFlow::PathNode sinkNode, Sink sink
+where
+  config.hasFlowPath(sourceNode, sinkNode) and
+  sink = sinkNode.getNode()
+select sink, sourceNode, sinkNode, "Evaluation of uncontrolled JavaScript from a remote source."

From 7b599f5fefecf3e4798c4ed2211a8d2c7d692c49 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Nora=20Dimitrijevi=C4=87?= <d10c@users.noreply.github.com>
Date: Thu, 27 Oct 2022 11:42:22 +0200
Subject: [PATCH 0043/1420] Swift: Add async varant of WKWebView
 evaluateJavaScript(_:)

See concurrency note here: https://developer.apple.com/documentation/webkit/wkwebview/1415017-evaluatejavascript

See also https://developer.apple.com/documentation/swift/calling-objective-c-apis-asynchronously
---
 swift/ql/src/queries/Security/CWE-094/UnsafeJsEval.ql | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/swift/ql/src/queries/Security/CWE-094/UnsafeJsEval.ql b/swift/ql/src/queries/Security/CWE-094/UnsafeJsEval.ql
index ced918a64d4..53891e2c03d 100644
--- a/swift/ql/src/queries/Security/CWE-094/UnsafeJsEval.ql
+++ b/swift/ql/src/queries/Security/CWE-094/UnsafeJsEval.ql
@@ -35,7 +35,7 @@ class WKWebView extends Sink {
       ce.getStaticTarget() =
         getMethodWithQualifiedName("WKWebView",
           [
-            "evaluateJavaScript(_:completionHandler:)",
+            "evaluateJavaScript(_:)", "evaluateJavaScript(_:completionHandler:)",
             "evaluateJavaScript(_:in:in:completionHandler:)",
             "evaluateJavaScript(_:in:contentWorld:)",
             "callAsyncJavaScript(_:arguments:in:in:completionHandler:)",

From 28b7f0884f6d88f3e7f81d7f9a531ed4b22c0b64 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Nora=20Dimitrijevi=C4=87?= <d10c@users.noreply.github.com>
Date: Wed, 2 Nov 2022 12:49:59 +0100
Subject: [PATCH 0044/1420] Swift: UnsafeJsEval test finally compiles

---
 .../Security/CWE-094/UnsafeJsEval.expected    |   0
 .../Security/CWE-094/UnsafeJsEval.qlref       |   1 +
 .../Security/CWE-094/UnsafeJsEval.swift       | 299 ++++++++++++++++++
 3 files changed, 300 insertions(+)
 create mode 100644 swift/ql/test/query-tests/Security/CWE-094/UnsafeJsEval.expected
 create mode 100644 swift/ql/test/query-tests/Security/CWE-094/UnsafeJsEval.qlref
 create mode 100644 swift/ql/test/query-tests/Security/CWE-094/UnsafeJsEval.swift

diff --git a/swift/ql/test/query-tests/Security/CWE-094/UnsafeJsEval.expected b/swift/ql/test/query-tests/Security/CWE-094/UnsafeJsEval.expected
new file mode 100644
index 00000000000..e69de29bb2d
diff --git a/swift/ql/test/query-tests/Security/CWE-094/UnsafeJsEval.qlref b/swift/ql/test/query-tests/Security/CWE-094/UnsafeJsEval.qlref
new file mode 100644
index 00000000000..b8c11cee30d
--- /dev/null
+++ b/swift/ql/test/query-tests/Security/CWE-094/UnsafeJsEval.qlref
@@ -0,0 +1 @@
+queries/Security/CWE-094/UnsafeJsEval.ql
diff --git a/swift/ql/test/query-tests/Security/CWE-094/UnsafeJsEval.swift b/swift/ql/test/query-tests/Security/CWE-094/UnsafeJsEval.swift
new file mode 100644
index 00000000000..51914bd97e1
--- /dev/null
+++ b/swift/ql/test/query-tests/Security/CWE-094/UnsafeJsEval.swift
@@ -0,0 +1,299 @@
+
+// --- stubs ---
+
+class NSObject {}
+
+@MainActor class UIResponder : NSObject {}
+@MainActor class UIView : UIResponder {}
+
+@MainActor class NSResponder : NSObject {}
+class NSView : NSResponder {}
+
+class WKFrameInfo : NSObject {}
+class WKContentWorld : NSObject {
+	class var defaultClient: WKContentWorld { WKContentWorld() }
+}
+
+class WKWebView : UIView {
+
+	func evaluateJavaScript(
+		_ javaScriptString: String
+	) async throws -> Any { "" }
+
+	func evaluateJavaScript(
+		_ javaScriptString: String,
+		completionHandler: ((Any?, Error?) -> Void)? = nil
+	) {
+		completionHandler?(nil, nil)
+	}
+
+	@MainActor func evaluateJavaScript(
+		_ javaScript: String,
+		in frame: WKFrameInfo? = nil,
+		in contentWorld: WKContentWorld,
+		completionHandler: ((Result<Any, Error>) -> Void)? = nil
+	) {
+		completionHandler?(.success(""))
+	}
+
+	@MainActor func evaluateJavaScript(
+		_ javaScript: String,
+		in frame: WKFrameInfo? = nil,
+		contentWorld: WKContentWorld
+	) async throws -> Any? { nil }
+
+	@MainActor func callAsyncJavaScript(
+		_ functionBody: String,
+		arguments: [String : Any] = [:],
+		in frame: WKFrameInfo? = nil,
+		in contentWorld: WKContentWorld,
+		completionHandler: ((Result<Any, Error>) -> Void)? = nil
+	) {
+		completionHandler?(.success(""))
+	}
+
+	@MainActor func callAsyncJavaScript(
+		_ functionBody: String,
+		arguments: [String : Any] = [:],
+		in frame: WKFrameInfo? = nil,
+		contentWorld: WKContentWorld
+	) async throws -> Any? { nil }
+}
+
+enum WKUserScriptInjectionTime : Int, @unchecked Sendable {
+	case atDocumentStart, atDocumentEnd
+}
+
+class WKUserScript : NSObject {
+	init(
+		source: String,
+		injectionTime: WKUserScriptInjectionTime,
+		forMainFrameOnly: Bool
+	) {}
+
+	init(
+		source: String,
+		injectionTime: WKUserScriptInjectionTime,
+		forMainFrameOnly: Bool,
+		in contentWorld: WKContentWorld
+	) {}
+}
+
+class WKUserContentController : NSObject {
+	func addUserScript(_ userScript: WKUserScript) {}
+}
+
+class UIWebView : UIView {
+	// deprecated
+	func stringByEvaluatingJavaScript(from script: String) -> String? { nil }
+}
+
+class WebView : NSView {
+	// deprecated
+	func stringByEvaluatingJavaScript(from script: String!) -> String! { "" }
+}
+
+class JSValue : NSObject {}
+
+class JSContext {
+	func evaluateScript(_ script: String!) -> JSValue! { return JSValue() }
+	func evaluateScript(
+		_ script: String!,
+		withSourceURL sourceURL: URL!
+	) -> JSValue! { return JSValue() }
+}
+
+typealias JSContextRef = OpaquePointer
+typealias JSStringRef = OpaquePointer
+typealias JSObjectRef = OpaquePointer
+typealias JSValueRef = OpaquePointer
+typealias JSChar = UInt16
+
+func JSStringCreateWithCharacters(
+    _ chars: UnsafePointer<JSChar>!,
+    _ numChars: Int
+) -> JSStringRef! {
+	return chars.withMemoryRebound(to: CChar.self, capacity: numChars) {
+		cchars in OpaquePointer(cchars)
+	}
+}
+func JSStringCreateWithUTF8CString(_ string: UnsafePointer<CChar>!) -> JSStringRef! {
+	return OpaquePointer(string)
+}
+func JSStringRetain(_ string: JSStringRef!) -> JSStringRef! { return string }
+func JSStringRelease(_ string: JSStringRef!) { }
+
+func JSEvaluateScript(
+    _ ctx: JSContextRef!,
+    _ script: JSStringRef!,
+    _ thisObject: JSObjectRef!,
+    _ sourceURL: JSStringRef!,
+    _ startingLineNumber: Int32,
+    _ exception: UnsafeMutablePointer<JSValueRef?>!
+) -> JSValueRef! { return OpaquePointer(bitPattern: 0) }
+
+@frozen
+public struct Data: Collection {
+	public typealias Index = Int
+	public typealias Element = UInt8
+	public subscript(x: Index) -> Element { 0 }
+	public var startIndex: Index { 0 }
+	public var endIndex: Index { 0 }
+	public func index(after i: Index) -> Index { i + 1 }
+    init<S>(_ elements: S) {}
+}
+
+struct URL {
+	init?(string: String) {}
+	init?(string: String, relativeTo: URL?) {}
+}
+
+extension String {
+	init(contentsOf: URL) throws {
+        let data = ""
+        // ...
+        self.init(data)
+    }
+}
+
+// --- tests ---
+
+func getRemoteData() -> String {
+	let url = URL(string: "http://example.com/")
+	do {
+		return try String(contentsOf: url!)
+	} catch {
+		return ""
+	}
+}
+
+func testUsage(_ sink: @escaping (String) async throws -> ()) {
+	Task {
+		let localString = "console.log('localString')"
+		let localStringFragment = "'localStringFragment'"
+		let remoteString = getRemoteData()
+
+		try! await sink(localString) // GOOD: the HTML data is local
+		try! await sink(getRemoteData()) // BAD: HTML contains remote input, may access local secrets
+		try! await sink(remoteString) // BAD
+
+		try! await sink("console.log(" + localStringFragment + ")") // GOOD: the HTML data is local
+		try! await sink("console.log(" + remoteString + ")") // BAD
+
+		let localData = Data(localString.utf8)
+		let remoteData = Data(remoteString.utf8)
+
+		try! await sink(String(decoding: localData, as: UTF8.self)) // GOOD: the data is local
+		try! await sink(String(decoding: remoteData, as: UTF8.self)) // BAD: the data is remote
+
+		try! await sink("console.log(" + String(Int(localStringFragment) ?? 0) + ")") // GOOD: Primitive conversion
+		try! await sink("console.log(" + String(Int(remoteString) ?? 0) + ")") // GOOD: Primitive conversion
+
+		try! await sink("console.log(" + (localStringFragment.count != 0 ? "1" : "0") + ")") // GOOD: Primitive conversion
+		try! await sink("console.log(" + (remoteString.count != 0 ? "1" : "0") + ")") // GOOD: Primitive conversion
+	}
+}
+
+func testUIWebView() {
+	let webview = UIWebView()
+
+	testUsage { string in
+		_ = await webview.stringByEvaluatingJavaScript(from: string)
+	}
+}
+
+func testWebView() {
+	let webview = WebView()
+
+	testUsage { string in
+		_ = await webview.stringByEvaluatingJavaScript(from: string)
+	}
+}
+
+func testWKWebView() {
+	let webview = WKWebView()
+
+	testUsage { string in
+		_ = try await webview.evaluateJavaScript(string)
+	}
+	testUsage { string in
+		await webview.evaluateJavaScript(string) { _, _ in }
+	}
+	testUsage { string in
+		await webview.evaluateJavaScript(string, in: nil, in: WKContentWorld.defaultClient) { _ in }
+	}
+	testUsage { string in
+		_ = try await webview.evaluateJavaScript(string, contentWorld: .defaultClient)
+	}
+	testUsage { string in
+		await webview.callAsyncJavaScript(string, in: nil, in: .defaultClient) { _ in () }
+	}
+	testUsage { string in
+		_ = try await webview.callAsyncJavaScript(string, contentWorld: WKContentWorld.defaultClient)
+	}
+}
+
+func testWKUserContentController() {
+	let ctrl = WKUserContentController()
+
+	testUsage { string in
+		ctrl.addUserScript(WKUserScript(source: string, injectionTime: .atDocumentStart, forMainFrameOnly: false))
+	}
+	testUsage { string in
+		ctrl.addUserScript(WKUserScript(source: string, injectionTime: .atDocumentEnd, forMainFrameOnly: true, in: .defaultClient))
+	}
+}
+
+func testJSContext() {
+	let ctx = JSContext()
+
+	testUsage { string in
+		_ = ctx.evaluateScript(string)
+	}
+	testUsage { string in
+		_ = ctx.evaluateScript(string, withSourceURL: URL(string: "https://example.com"))
+	}
+}
+
+func testJSEvaluateScript() {
+	testUsage { string in
+		string.utf16.withContiguousStorageIfAvailable { stringBytes in
+			let jsstr = JSStringRetain(JSStringCreateWithCharacters(stringBytes.baseAddress, string.count))
+			defer { JSStringRelease(jsstr) }
+			_ = JSEvaluateScript(
+				/*ctx:*/ OpaquePointer(bitPattern: 0),
+				/*script:*/ jsstr,
+				/*thisObject:*/ OpaquePointer(bitPattern: 0),
+				/*sourceURL:*/ OpaquePointer(bitPattern: 0),
+				/*startingLineNumber:*/ 0,
+				/*exception:*/ UnsafeMutablePointer(bitPattern: 0)
+			)
+		}
+	}
+	testUsage { string in
+		string.utf8CString.withUnsafeBufferPointer { stringBytes in
+			let jsstr = JSStringRetain(JSStringCreateWithUTF8CString(stringBytes.baseAddress))
+			defer { JSStringRelease(jsstr) }
+			_ = JSEvaluateScript(
+				/*ctx:*/ OpaquePointer(bitPattern: 0),
+				/*script:*/ jsstr,
+				/*thisObject:*/ OpaquePointer(bitPattern: 0),
+				/*sourceURL:*/ OpaquePointer(bitPattern: 0),
+				/*startingLineNumber:*/ 0,
+				/*exception:*/ UnsafeMutablePointer(bitPattern: 0)
+			)
+		}
+	}
+}
+
+func testQHelpExamples() {
+
+}
+
+testUIWebView()
+testWebView()
+testWKWebView()
+testWKUserContentController()
+testJSContext()
+testJSEvaluateScript()
+testQHelpExamples()

From 3d24e0a2ebb187ad93cf04e0ef74297e717a92db Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Nora=20Dimitrijevi=C4=87?= <d10c@users.noreply.github.com>
Date: Thu, 3 Nov 2022 11:12:41 +0100
Subject: [PATCH 0045/1420] Swift: enable VSCode to build extractor via CMake

The `-arch=x86_64` from `swift/rules.bzl` turns out to be unnecessary,
even on Arm-based Macs.
---
 .vscode/settings.json | 4 +++-
 swift/CMakeLists.txt  | 4 ++++
 swift/rules.bzl       | 6 +-----
 3 files changed, 8 insertions(+), 6 deletions(-)

diff --git a/.vscode/settings.json b/.vscode/settings.json
index 8b22c91bb77..1050c79b825 100644
--- a/.vscode/settings.json
+++ b/.vscode/settings.json
@@ -1,3 +1,5 @@
 {
-    "omnisharp.autoStart": false
+  "omnisharp.autoStart": false,
+  "cmake.sourceDirectory": "${workspaceFolder}/swift",
+  "cmake.buildDirectory": "${workspaceFolder}/bazel-cmake-build"
 }
diff --git a/swift/CMakeLists.txt b/swift/CMakeLists.txt
index ad431e49a17..fbc55187567 100644
--- a/swift/CMakeLists.txt
+++ b/swift/CMakeLists.txt
@@ -9,6 +9,10 @@ set(CMAKE_CXX_EXTENSIONS OFF)
 set(CMAKE_C_COMPILER clang)
 set(CMAKE_CXX_COMPILER clang++)
 
+if(APPLE)
+    set(CMAKE_OSX_ARCHITECTURES x86_64) # temporary until we can build a Universal Binary
+endif()
+
 project(codeql)
 
 include(../misc/bazel/cmake/setup.cmake)
diff --git a/swift/rules.bzl b/swift/rules.bzl
index 29a1a704f02..ba9e4b0e8bf 100644
--- a/swift/rules.bzl
+++ b/swift/rules.bzl
@@ -5,11 +5,7 @@ def _wrap_cc(rule, kwargs):
     _add_args(kwargs, "copts", [
         # Required by LLVM/Swift
         "-fno-rtti",
-    ] + select({
-        # temporary, before we do universal merging and have an arm prebuilt package, we make arm build x86
-        "@platforms//os:macos": ["-arch=x86_64"],
-        "//conditions:default": [],
-    }))
+    ])
     _add_args(kwargs, "features", [
         # temporary, before we do universal merging
         "-universal_binaries",

From dc6f60a5015bf6b81a8c98c537cf449ea90bc5bf Mon Sep 17 00:00:00 2001
From: Tony Torralba <atorralba@users.noreply.github.com>
Date: Wed, 2 Nov 2022 16:10:29 +0100
Subject: [PATCH 0046/1420] Add new XXE query

Only XMLParser sinks for the time being
---
 .../codeql/swift/dataflow/ExternalFlow.qll    |  2 +
 .../swift/frameworks/StandardLibrary/Data.qll |  6 ++
 .../StandardLibrary/InputStream.qll           |  8 +++
 swift/ql/lib/codeql/swift/security/XXE.qll    | 67 +++++++++++++++++++
 .../ql/lib/codeql/swift/security/XXEQuery.qll | 27 ++++++++
 .../ql/src/queries/Security/CWE-611/XXE.qhelp | 57 ++++++++++++++++
 swift/ql/src/queries/Security/CWE-611/XXE.ql  | 24 +++++++
 .../src/queries/Security/CWE-611/XXEBad.swift |  2 +
 .../queries/Security/CWE-611/XXEGood.swift    |  2 +
 .../Security/CWE-611/XXETest.expected         |  0
 .../query-tests/Security/CWE-611/XXETest.ql   | 20 ++++++
 .../Security/CWE-611/testXXE.swift            | 58 ++++++++++++++++
 12 files changed, 273 insertions(+)
 create mode 100644 swift/ql/lib/codeql/swift/frameworks/StandardLibrary/Data.qll
 create mode 100644 swift/ql/lib/codeql/swift/frameworks/StandardLibrary/InputStream.qll
 create mode 100644 swift/ql/lib/codeql/swift/security/XXE.qll
 create mode 100644 swift/ql/lib/codeql/swift/security/XXEQuery.qll
 create mode 100644 swift/ql/src/queries/Security/CWE-611/XXE.qhelp
 create mode 100644 swift/ql/src/queries/Security/CWE-611/XXE.ql
 create mode 100644 swift/ql/src/queries/Security/CWE-611/XXEBad.swift
 create mode 100644 swift/ql/src/queries/Security/CWE-611/XXEGood.swift
 create mode 100644 swift/ql/test/query-tests/Security/CWE-611/XXETest.expected
 create mode 100644 swift/ql/test/query-tests/Security/CWE-611/XXETest.ql
 create mode 100644 swift/ql/test/query-tests/Security/CWE-611/testXXE.swift

diff --git a/swift/ql/lib/codeql/swift/dataflow/ExternalFlow.qll b/swift/ql/lib/codeql/swift/dataflow/ExternalFlow.qll
index 28e783c8047..4d563525830 100644
--- a/swift/ql/lib/codeql/swift/dataflow/ExternalFlow.qll
+++ b/swift/ql/lib/codeql/swift/dataflow/ExternalFlow.qll
@@ -79,6 +79,8 @@ private import internal.FlowSummaryImplSpecific
  */
 private module Frameworks {
   private import codeql.swift.frameworks.StandardLibrary.CustomUrlSchemes
+  private import codeql.swift.frameworks.StandardLibrary.Data
+  private import codeql.swift.frameworks.StandardLibrary.InputStream
   private import codeql.swift.frameworks.StandardLibrary.String
   private import codeql.swift.frameworks.StandardLibrary.Url
   private import codeql.swift.frameworks.StandardLibrary.UrlSession
diff --git a/swift/ql/lib/codeql/swift/frameworks/StandardLibrary/Data.qll b/swift/ql/lib/codeql/swift/frameworks/StandardLibrary/Data.qll
new file mode 100644
index 00000000000..740fc8874b6
--- /dev/null
+++ b/swift/ql/lib/codeql/swift/frameworks/StandardLibrary/Data.qll
@@ -0,0 +1,6 @@
+import swift
+private import codeql.swift.dataflow.ExternalFlow
+
+private class DataSummaries extends SummaryModelCsv {
+  override predicate row(string row) { row = ";Data;true;init(_:);;;Argument[0];ReturnValue;taint" }
+}
diff --git a/swift/ql/lib/codeql/swift/frameworks/StandardLibrary/InputStream.qll b/swift/ql/lib/codeql/swift/frameworks/StandardLibrary/InputStream.qll
new file mode 100644
index 00000000000..60b61bec294
--- /dev/null
+++ b/swift/ql/lib/codeql/swift/frameworks/StandardLibrary/InputStream.qll
@@ -0,0 +1,8 @@
+import swift
+private import codeql.swift.dataflow.ExternalFlow
+
+private class InputStreamSummaries extends SummaryModelCsv {
+  override predicate row(string row) {
+    row = ";InputStream;true;init(data:);;;Argument[0];ReturnValue;taint"
+  }
+}
diff --git a/swift/ql/lib/codeql/swift/security/XXE.qll b/swift/ql/lib/codeql/swift/security/XXE.qll
new file mode 100644
index 00000000000..eecbd147041
--- /dev/null
+++ b/swift/ql/lib/codeql/swift/security/XXE.qll
@@ -0,0 +1,67 @@
+/** Provides classes and predicates to reason about XML external entities (XXE) vulnerabilities. */
+
+import swift
+private import codeql.swift.dataflow.DataFlow
+private import codeql.swift.dataflow.internal.DataFlowPrivate
+
+/** A data flow sink for XML external entities (XXE) vulnerabilities. */
+abstract class XxeSink extends DataFlow::Node { }
+
+/** A sanitizer for XML external entities (XXE) vulnerabilities. */
+abstract class XxeSanitizer extends DataFlow::Node { }
+
+/**
+ * A unit class for adding additional taint steps.
+ *
+ * Extend this class to add additional taint steps that should apply to paths related to
+ * XML external entities (XXE) vulnerabilities.
+ */
+class XxeAdditionalTaintStep extends Unit {
+  abstract predicate step(DataFlow::Node n1, DataFlow::Node n2);
+}
+
+/** The XML argument of a `XMLParser` vulnerable to XXE. */
+private class DefaultXxeSink extends XxeSink {
+  DefaultXxeSink() {
+    this.asExpr() = any(Argument a | a.getApplyExpr() instanceof VulnerableParser).getExpr()
+  }
+}
+
+/** The construction of a `XMLParser` that enables external entities. */
+private class VulnerableParser extends CallExpr {
+  VulnerableParser() {
+    resolvesExternalEntities(this) and this.getFunction() instanceof ConstructorRefCallExpr
+  }
+}
+
+/** Holds if there is an access of `ref` that sets `shouldResolveExternalEntities` to `true`. */
+private predicate resolvesExternalEntities(XmlParserRef ref) {
+  exists(XmlParserRef base |
+    DataFlow::localExprFlow(ref, base) or DataFlow::localExprFlow(base, ref)
+  |
+    exists(AssignExpr assign, ShouldResolveExternalEntities s, BooleanLiteralExpr b |
+      s.getBase() = base and
+      assign.getDest() = s and
+      b.getValue() = true and
+      DataFlow::localExprFlow(b, assign.getSource())
+    )
+  )
+}
+
+/** A reference to the field `XMLParser.shouldResolveExternalEntities`. */
+private class ShouldResolveExternalEntities extends MemberRefExpr {
+  ShouldResolveExternalEntities() {
+    this.getMember().(FieldDecl).getName() = "shouldResolveExternalEntities" and
+    this.getBase() instanceof XmlParserRef
+  }
+}
+
+/** An expression of type `XMLParser`. */
+private class XmlParserRef extends Expr {
+  XmlParserRef() { this.getType() instanceof XmlParserType }
+}
+
+/** The type `XMLParser`. */
+private class XmlParserType extends NominalType {
+  XmlParserType() { this.getFullName() = "XMLParser" }
+}
diff --git a/swift/ql/lib/codeql/swift/security/XXEQuery.qll b/swift/ql/lib/codeql/swift/security/XXEQuery.qll
new file mode 100644
index 00000000000..2b5dc5ea3ea
--- /dev/null
+++ b/swift/ql/lib/codeql/swift/security/XXEQuery.qll
@@ -0,0 +1,27 @@
+/**
+ * Provides a taint-tracking configuration for reasoning about XML external entities
+ * (XXE) vulnerabilities.
+ */
+
+import swift
+import codeql.swift.dataflow.DataFlow
+import codeql.swift.dataflow.FlowSources
+import codeql.swift.dataflow.TaintTracking
+import codeql.swift.security.XXE
+
+/**
+ * A taint-tracking configuration for XML external entities (XXE) vulnerabilities.
+ */
+class XxeConfiguration extends TaintTracking::Configuration {
+  XxeConfiguration() { this = "XxeConfiguration" }
+
+  override predicate isSource(DataFlow::Node source) { source instanceof RemoteFlowSource }
+
+  override predicate isSink(DataFlow::Node sink) { sink instanceof XxeSink }
+
+  override predicate isSanitizer(DataFlow::Node sanitizer) { sanitizer instanceof XxeSanitizer }
+
+  override predicate isAdditionalTaintStep(DataFlow::Node n1, DataFlow::Node n2) {
+    any(XxeAdditionalTaintStep s).step(n1, n2)
+  }
+}
diff --git a/swift/ql/src/queries/Security/CWE-611/XXE.qhelp b/swift/ql/src/queries/Security/CWE-611/XXE.qhelp
new file mode 100644
index 00000000000..0aca8ac474b
--- /dev/null
+++ b/swift/ql/src/queries/Security/CWE-611/XXE.qhelp
@@ -0,0 +1,57 @@
+<!DOCTYPE qhelp PUBLIC "-//Semmle//qhelp//EN" "qhelp.dtd">
+<qhelp>
+
+<overview>
+<p>
+Parsing untrusted XML files with a weakly configured XML parser may lead to an XML External Entity (XXE) attack. This type of attack
+uses external entity references to access arbitrary files on a system, carry out denial of service, or server side
+request forgery. Even when the result of parsing is not returned to the user, out-of-band
+data retrieval techniques may allow attackers to steal sensitive data. Denial of services can also be
+carried out in this situation.
+</p>
+</overview>
+
+<recommendation>
+<p>
+The easiest way to prevent XXE attacks is to disable external entity handling when
+parsing untrusted data.  How this is done depends on the library being used. Note that some
+libraries, such as recent versions of <code>XMLParser</code>, disable entity expansion by default,
+so unless you have explicitly enabled entity expansion, no further action needs to be taken.
+</p>
+</recommendation>
+
+<example>
+<p>
+The following example uses the <code>XMLParser</code> class to parse a string <code>data</code>.
+If that string is from an untrusted source, this code may be vulnerable to an XXE attack, since
+the parser is also setting its <code>shouldResolveExternalEntities</code> option to <code>true</code>:
+</p>
+<sample src="XXEBad.swift" />
+
+<p>
+To guard against XXE attacks, the <code>shouldResolveExternalEntities</code> option should be
+left unset or explicitly set to <code>false</code>.
+</p>
+<sample src="XXEGood.swift" />
+
+</example>
+
+<references>
+<li>
+OWASP:
+<a href="https://www.owasp.org/index.php/XML_External_Entity_(XXE)_Processing">XML External Entity (XXE) Processing</a>.
+</li>
+<li>
+OWASP:
+<a href="https://cheatsheetseries.owasp.org/cheatsheets/XML_External_Entity_Prevention_Cheat_Sheet.html">XML External Entity Prevention Cheat Sheet</a>.
+</li>
+<li>
+Timothy Morgen:
+<a href="https://research.nccgroup.com/2014/05/19/xml-schema-dtd-and-entity-attacks-a-compendium-of-known-techniques/">XML Schema, DTD, and Entity Attacks</a>.
+</li>
+<li>
+Timur Yunusov, Alexey Osipov:
+<a href="https://www.slideshare.net/qqlan/bh-ready-v4">XML Out-Of-Band Data Retrieval</a>.
+</li>
+</references>
+</qhelp>
diff --git a/swift/ql/src/queries/Security/CWE-611/XXE.ql b/swift/ql/src/queries/Security/CWE-611/XXE.ql
new file mode 100644
index 00000000000..288da0aad9d
--- /dev/null
+++ b/swift/ql/src/queries/Security/CWE-611/XXE.ql
@@ -0,0 +1,24 @@
+/**
+ * @name Resolving XML external entity in user-controlled data
+ * @description Parsing user-controlled XML documents and allowing expansion of external entity
+ *              references may lead to disclosure of confidential data or denial of service.
+ * @kind path-problem
+ * @problem.severity error
+ * @security-severity 9.1
+ * @precision high
+ * @id swift/xxe
+ * @tags security
+ *       external/cwe/cwe-611
+ *       external/cwe/cwe-776
+ *       external/cwe/cwe-827
+ */
+
+import swift
+import codeql.swift.dataflow.DataFlow
+import codeql.swift.security.XXEQuery
+import DataFlow::PathGraph
+
+from DataFlow::PathNode source, DataFlow::PathNode sink
+where any(XxeConfiguration c).hasFlowPath(source, sink)
+select sink.getNode(), source, sink, "XML parser with enabled external entities depends on $@.",
+  source.getNode(), "user input"
diff --git a/swift/ql/src/queries/Security/CWE-611/XXEBad.swift b/swift/ql/src/queries/Security/CWE-611/XXEBad.swift
new file mode 100644
index 00000000000..19ff4a7383d
--- /dev/null
+++ b/swift/ql/src/queries/Security/CWE-611/XXEBad.swift
@@ -0,0 +1,2 @@
+let parser = XMLParser(data: remoteData) // BAD (parser explicitly enables external entities)
+parser.shouldResolveExternalEntities = true
diff --git a/swift/ql/src/queries/Security/CWE-611/XXEGood.swift b/swift/ql/src/queries/Security/CWE-611/XXEGood.swift
new file mode 100644
index 00000000000..5552186c759
--- /dev/null
+++ b/swift/ql/src/queries/Security/CWE-611/XXEGood.swift
@@ -0,0 +1,2 @@
+let parser = XMLParser(data: remoteData) // GOOD (parser explicitly disables external entities)
+parser.shouldResolveExternalEntities = false
diff --git a/swift/ql/test/query-tests/Security/CWE-611/XXETest.expected b/swift/ql/test/query-tests/Security/CWE-611/XXETest.expected
new file mode 100644
index 00000000000..e69de29bb2d
diff --git a/swift/ql/test/query-tests/Security/CWE-611/XXETest.ql b/swift/ql/test/query-tests/Security/CWE-611/XXETest.ql
new file mode 100644
index 00000000000..817f55678ad
--- /dev/null
+++ b/swift/ql/test/query-tests/Security/CWE-611/XXETest.ql
@@ -0,0 +1,20 @@
+import swift
+import codeql.swift.security.XXEQuery
+import TestUtilities.InlineExpectationsTest
+
+class XxeTest extends InlineExpectationsTest {
+  XxeTest() { this = "XxeTest" }
+
+  override string getARelevantTag() { result = "hasXXE" }
+
+  override predicate hasActualResult(Location location, string element, string tag, string value) {
+    exists(XxeConfiguration config, DataFlow::Node source, DataFlow::Node sink, Expr sinkExpr |
+      config.hasFlow(source, sink) and
+      sinkExpr = sink.asExpr() and
+      location = sinkExpr.getLocation() and
+      element = sinkExpr.toString() and
+      tag = "hasXXE" and
+      value = source.asExpr().getLocation().getStartLine().toString()
+    )
+  }
+}
diff --git a/swift/ql/test/query-tests/Security/CWE-611/testXXE.swift b/swift/ql/test/query-tests/Security/CWE-611/testXXE.swift
new file mode 100644
index 00000000000..b98385463ab
--- /dev/null
+++ b/swift/ql/test/query-tests/Security/CWE-611/testXXE.swift
@@ -0,0 +1,58 @@
+// --- stubs ---
+
+class Data {
+    init<S>(_ elements: S) {}
+}
+
+struct URL {
+	init?(string: String) {}
+}
+
+class InputStream {
+    init(data: Data) {}
+}
+
+extension String {
+	init(contentsOf: URL) {
+        let data = ""
+        self.init(data)
+    }
+}
+
+class XMLParser {
+    var shouldResolveExternalEntities: Bool { get { return false } set {} }
+    init?(contentsOf: URL) {}
+    init(data: Data) {}
+    init(stream: InputStream) {}
+}
+
+// --- tests ---
+
+func testData() {
+    let remoteString = String(contentsOf: URL(string: "http://example.com/")!)
+    let remoteData = Data(remoteString)
+    let parser = XMLParser(data: remoteData) // $ hasXXE=32
+    parser.shouldResolveExternalEntities = true
+}
+
+func testInputStream() {
+    let remoteString = String(contentsOf: URL(string: "http://example.com/")!)
+    let remoteData = Data(remoteString)
+    let remoteStream = InputStream(data: remoteData)
+    let parser = XMLParser(stream: remoteStream) // $ hasXXE=39
+    parser.shouldResolveExternalEntities = true
+
+}
+
+func testDataSafe() {
+    let remoteString = String(contentsOf: URL(string: "http://example.com/")!)
+    let remoteData = Data(remoteString)
+    let _ = XMLParser(data: remoteData) // NO XXE: parser doesn't enable external entities
+}
+
+func testInputStreamSafe() {
+    let remoteString = String(contentsOf: URL(string: "http://example.com/")!)
+    let remoteData = Data(remoteString)
+    let remoteStream = InputStream(data: remoteData)
+    let _ = XMLParser(stream: remoteStream) // NO XXE: parser doesn't enable external entities
+}
\ No newline at end of file

From f4047e016cb5831769081c6def3a0cd11fad886b Mon Sep 17 00:00:00 2001
From: Tony Torralba <atorralba@users.noreply.github.com>
Date: Wed, 2 Nov 2022 16:21:17 +0100
Subject: [PATCH 0047/1420] Address QL-for-QL alert

Use an alert message consistent with the other languages
---
 swift/ql/src/queries/Security/CWE-611/XXE.ql | 5 +++--
 1 file changed, 3 insertions(+), 2 deletions(-)

diff --git a/swift/ql/src/queries/Security/CWE-611/XXE.ql b/swift/ql/src/queries/Security/CWE-611/XXE.ql
index 288da0aad9d..04c27949c11 100644
--- a/swift/ql/src/queries/Security/CWE-611/XXE.ql
+++ b/swift/ql/src/queries/Security/CWE-611/XXE.ql
@@ -20,5 +20,6 @@ import DataFlow::PathGraph
 
 from DataFlow::PathNode source, DataFlow::PathNode sink
 where any(XxeConfiguration c).hasFlowPath(source, sink)
-select sink.getNode(), source, sink, "XML parser with enabled external entities depends on $@.",
-  source.getNode(), "user input"
+select sink.getNode(), source, sink,
+  "XML parsing depends on a $@ without guarding against external entity expansion.",
+  source.getNode(), "user-provided value"

From 0c6957ea785be63235d1cb8f61d86526681ec172 Mon Sep 17 00:00:00 2001
From: Tony Torralba <atorralba@users.noreply.github.com>
Date: Wed, 2 Nov 2022 17:05:55 +0100
Subject: [PATCH 0048/1420] Adjust test expectations of a query affected by new
 summaries

---
 .../Security/CWE-311/CleartextTransmission.expected   | 11 +++++++++++
 .../test/query-tests/Security/CWE-311/testSend.swift  |  2 +-
 2 files changed, 12 insertions(+), 1 deletion(-)

diff --git a/swift/ql/test/query-tests/Security/CWE-311/CleartextTransmission.expected b/swift/ql/test/query-tests/Security/CWE-311/CleartextTransmission.expected
index de02d0db461..5580af94d22 100644
--- a/swift/ql/test/query-tests/Security/CWE-311/CleartextTransmission.expected
+++ b/swift/ql/test/query-tests/Security/CWE-311/CleartextTransmission.expected
@@ -1,4 +1,8 @@
 edges
+| testSend.swift:5:5:5:29 | [summary param] 0 in init(_:) :  | file://:0:0:0:0 | [summary] to write: return (return) in init(_:) :  |
+| testSend.swift:33:14:33:32 | call to init(_:) :  | testSend.swift:37:19:37:19 | data2 |
+| testSend.swift:33:19:33:19 | passwordPlain :  | testSend.swift:5:5:5:29 | [summary param] 0 in init(_:) :  |
+| testSend.swift:33:19:33:19 | passwordPlain :  | testSend.swift:33:14:33:32 | call to init(_:) :  |
 | testSend.swift:41:10:41:18 | data :  | testSend.swift:41:45:41:45 | data :  |
 | testSend.swift:45:13:45:13 | password :  | testSend.swift:52:27:52:27 | str1 |
 | testSend.swift:46:13:46:13 | password :  | testSend.swift:53:27:53:27 | str2 |
@@ -8,7 +12,12 @@ edges
 | testURL.swift:13:54:13:54 | passwd :  | testURL.swift:13:22:13:54 | ... .+(_:_:) ... |
 | testURL.swift:16:55:16:55 | credit_card_no :  | testURL.swift:16:22:16:55 | ... .+(_:_:) ... |
 nodes
+| file://:0:0:0:0 | [summary] to write: return (return) in init(_:) :  | semmle.label | [summary] to write: return (return) in init(_:) :  |
+| testSend.swift:5:5:5:29 | [summary param] 0 in init(_:) :  | semmle.label | [summary param] 0 in init(_:) :  |
 | testSend.swift:29:19:29:19 | passwordPlain | semmle.label | passwordPlain |
+| testSend.swift:33:14:33:32 | call to init(_:) :  | semmle.label | call to init(_:) :  |
+| testSend.swift:33:19:33:19 | passwordPlain :  | semmle.label | passwordPlain :  |
+| testSend.swift:37:19:37:19 | data2 | semmle.label | data2 |
 | testSend.swift:41:10:41:18 | data :  | semmle.label | data :  |
 | testSend.swift:41:45:41:45 | data :  | semmle.label | data :  |
 | testSend.swift:45:13:45:13 | password :  | semmle.label | password :  |
@@ -24,9 +33,11 @@ nodes
 | testURL.swift:16:55:16:55 | credit_card_no :  | semmle.label | credit_card_no :  |
 | testURL.swift:20:22:20:22 | passwd | semmle.label | passwd |
 subpaths
+| testSend.swift:33:19:33:19 | passwordPlain :  | testSend.swift:5:5:5:29 | [summary param] 0 in init(_:) :  | file://:0:0:0:0 | [summary] to write: return (return) in init(_:) :  | testSend.swift:33:14:33:32 | call to init(_:) :  |
 | testSend.swift:47:17:47:17 | password :  | testSend.swift:41:10:41:18 | data :  | testSend.swift:41:45:41:45 | data :  | testSend.swift:47:13:47:25 | call to pad(_:) :  |
 #select
 | testSend.swift:29:19:29:19 | passwordPlain | testSend.swift:29:19:29:19 | passwordPlain | testSend.swift:29:19:29:19 | passwordPlain | This operation transmits 'passwordPlain', which may contain unencrypted sensitive data from $@. | testSend.swift:29:19:29:19 | passwordPlain | passwordPlain |
+| testSend.swift:37:19:37:19 | data2 | testSend.swift:33:19:33:19 | passwordPlain :  | testSend.swift:37:19:37:19 | data2 | This operation transmits 'data2', which may contain unencrypted sensitive data from $@. | testSend.swift:33:19:33:19 | passwordPlain :  | passwordPlain |
 | testSend.swift:52:27:52:27 | str1 | testSend.swift:45:13:45:13 | password :  | testSend.swift:52:27:52:27 | str1 | This operation transmits 'str1', which may contain unencrypted sensitive data from $@. | testSend.swift:45:13:45:13 | password :  | password |
 | testSend.swift:53:27:53:27 | str2 | testSend.swift:46:13:46:13 | password :  | testSend.swift:53:27:53:27 | str2 | This operation transmits 'str2', which may contain unencrypted sensitive data from $@. | testSend.swift:46:13:46:13 | password :  | password |
 | testSend.swift:54:27:54:27 | str3 | testSend.swift:47:17:47:17 | password :  | testSend.swift:54:27:54:27 | str3 | This operation transmits 'str3', which may contain unencrypted sensitive data from $@. | testSend.swift:47:17:47:17 | password :  | password |
diff --git a/swift/ql/test/query-tests/Security/CWE-311/testSend.swift b/swift/ql/test/query-tests/Security/CWE-311/testSend.swift
index 506b3a921e3..aaf2e3487f2 100644
--- a/swift/ql/test/query-tests/Security/CWE-311/testSend.swift
+++ b/swift/ql/test/query-tests/Security/CWE-311/testSend.swift
@@ -34,7 +34,7 @@ func test1(passwordPlain : String, passwordHash : String) {
 	let data3 = Data(passwordHash)
 
 	nw.send(content: data1, completion: .idempotent) // GOOD (not sensitive)
-	nw.send(content: data2, completion: .idempotent) // BAD [NOT DETECTED]
+	nw.send(content: data2, completion: .idempotent) // BAD
 	nw.send(content: data3, completion: .idempotent) // GOOD (not sensitive)
 }
 

From fe138dc0a176bc8535ecb00bd00d5ad4139dd4d2 Mon Sep 17 00:00:00 2001
From: Tony Torralba <atorralba@users.noreply.github.com>
Date: Thu, 3 Nov 2022 09:29:57 +0100
Subject: [PATCH 0049/1420] Add explicitly safe test cases

---
 .../query-tests/Security/CWE-611/testXXE.swift   | 16 ++++++++++++++++
 1 file changed, 16 insertions(+)

diff --git a/swift/ql/test/query-tests/Security/CWE-611/testXXE.swift b/swift/ql/test/query-tests/Security/CWE-611/testXXE.swift
index b98385463ab..63244e082e9 100644
--- a/swift/ql/test/query-tests/Security/CWE-611/testXXE.swift
+++ b/swift/ql/test/query-tests/Security/CWE-611/testXXE.swift
@@ -50,9 +50,25 @@ func testDataSafe() {
     let _ = XMLParser(data: remoteData) // NO XXE: parser doesn't enable external entities
 }
 
+func testDataSafeExplicit() {
+    let remoteString = String(contentsOf: URL(string: "http://example.com/")!)
+    let remoteData = Data(remoteString)
+    let parser = XMLParser(data: remoteData) // NO XXE: parser disables external entities
+    parser.shouldResolveExternalEntities = false
+
+}
+
 func testInputStreamSafe() {
     let remoteString = String(contentsOf: URL(string: "http://example.com/")!)
     let remoteData = Data(remoteString)
     let remoteStream = InputStream(data: remoteData)
     let _ = XMLParser(stream: remoteStream) // NO XXE: parser doesn't enable external entities
+}
+
+func testInputStreamSafeExplicit() {
+    let remoteString = String(contentsOf: URL(string: "http://example.com/")!)
+    let remoteData = Data(remoteString)
+    let remoteStream = InputStream(data: remoteData)
+    let parser = XMLParser(stream: remoteStream) // NO XXE: parser disables external entities
+    parser.shouldResolveExternalEntities = false
 }
\ No newline at end of file

From 3e1819f25de28bf4bf44d8ccddd3f44a60206b00 Mon Sep 17 00:00:00 2001
From: Tony Torralba <atorralba@users.noreply.github.com>
Date: Thu, 3 Nov 2022 09:49:13 +0100
Subject: [PATCH 0050/1420] Model XMLParser constructor init(contentsOf:)

---
 swift/ql/lib/codeql/swift/security/XXE.qll    |  5 ++++-
 .../Security/CWE-611/testXXE.swift            | 20 ++++++++++++++++++-
 2 files changed, 23 insertions(+), 2 deletions(-)

diff --git a/swift/ql/lib/codeql/swift/security/XXE.qll b/swift/ql/lib/codeql/swift/security/XXE.qll
index eecbd147041..c3139ed974b 100644
--- a/swift/ql/lib/codeql/swift/security/XXE.qll
+++ b/swift/ql/lib/codeql/swift/security/XXE.qll
@@ -58,7 +58,10 @@ private class ShouldResolveExternalEntities extends MemberRefExpr {
 
 /** An expression of type `XMLParser`. */
 private class XmlParserRef extends Expr {
-  XmlParserRef() { this.getType() instanceof XmlParserType }
+  XmlParserRef() {
+    this.getType() instanceof XmlParserType or
+    this.getType() = any(OptionalType t | t.getBaseType() instanceof XmlParserType)
+  }
 }
 
 /** The type `XMLParser`. */
diff --git a/swift/ql/test/query-tests/Security/CWE-611/testXXE.swift b/swift/ql/test/query-tests/Security/CWE-611/testXXE.swift
index 63244e082e9..75538f014f9 100644
--- a/swift/ql/test/query-tests/Security/CWE-611/testXXE.swift
+++ b/swift/ql/test/query-tests/Security/CWE-611/testXXE.swift
@@ -41,7 +41,13 @@ func testInputStream() {
     let remoteStream = InputStream(data: remoteData)
     let parser = XMLParser(stream: remoteStream) // $ hasXXE=39
     parser.shouldResolveExternalEntities = true
+}
 
+func testUrl() {
+    let remoteString = String(contentsOf: URL(string: "http://example.com/")!)
+    let remoteUrl = URL(string: remoteString)!
+    let parser = XMLParser(contentsOf: remoteUrl) // $ hasXXE=47
+    parser?.shouldResolveExternalEntities = true
 }
 
 func testDataSafe() {
@@ -55,7 +61,6 @@ func testDataSafeExplicit() {
     let remoteData = Data(remoteString)
     let parser = XMLParser(data: remoteData) // NO XXE: parser disables external entities
     parser.shouldResolveExternalEntities = false
-
 }
 
 func testInputStreamSafe() {
@@ -71,4 +76,17 @@ func testInputStreamSafeExplicit() {
     let remoteStream = InputStream(data: remoteData)
     let parser = XMLParser(stream: remoteStream) // NO XXE: parser disables external entities
     parser.shouldResolveExternalEntities = false
+}
+
+func testUrlSafe() {
+    let remoteString = String(contentsOf: URL(string: "http://example.com/")!)
+     let remoteUrl = URL(string: remoteString)!
+     let _ = XMLParser(contentsOf: remoteUrl) // NO XXE: parser doesn't enable external entities
+}
+
+func testUrlSafeExplicit() {
+    let remoteString = String(contentsOf: URL(string: "http://example.com/")!)
+    let remoteUrl = URL(string: remoteString)!
+    let parser = XMLParser(contentsOf: remoteUrl) // NO XXE: parser disables external entities
+    parser?.shouldResolveExternalEntities = false
 }
\ No newline at end of file

From da67b1059cca6fa83849252ca8fc2ab56587f8fc Mon Sep 17 00:00:00 2001
From: Tony Torralba <atorralba@users.noreply.github.com>
Date: Thu, 3 Nov 2022 12:38:45 +0100
Subject: [PATCH 0051/1420] Remove (now unnecessary) import

---
 swift/ql/lib/codeql/swift/security/XXE.qll | 1 -
 1 file changed, 1 deletion(-)

diff --git a/swift/ql/lib/codeql/swift/security/XXE.qll b/swift/ql/lib/codeql/swift/security/XXE.qll
index c3139ed974b..506225f54a1 100644
--- a/swift/ql/lib/codeql/swift/security/XXE.qll
+++ b/swift/ql/lib/codeql/swift/security/XXE.qll
@@ -2,7 +2,6 @@
 
 import swift
 private import codeql.swift.dataflow.DataFlow
-private import codeql.swift.dataflow.internal.DataFlowPrivate
 
 /** A data flow sink for XML external entities (XXE) vulnerabilities. */
 abstract class XxeSink extends DataFlow::Node { }

From fdd7d76ffd0760315d313cd9570f213abce4e581 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Nora=20Dimitrijevi=C4=87?= <d10c@users.noreply.github.com>
Date: Thu, 3 Nov 2022 16:14:43 +0100
Subject: [PATCH 0052/1420] Swift: use FreeFunctionDecl/.has(Qualified)Name

Instead of hand-rolled predicates.
---
 .../queries/Security/CWE-094/UnsafeJsEval.ql  | 52 +++++++------------
 1 file changed, 20 insertions(+), 32 deletions(-)

diff --git a/swift/ql/src/queries/Security/CWE-094/UnsafeJsEval.ql b/swift/ql/src/queries/Security/CWE-094/UnsafeJsEval.ql
index 53891e2c03d..fff05671313 100644
--- a/swift/ql/src/queries/Security/CWE-094/UnsafeJsEval.ql
+++ b/swift/ql/src/queries/Security/CWE-094/UnsafeJsEval.ql
@@ -32,15 +32,16 @@ abstract class Sink extends DataFlow::Node { }
 class WKWebView extends Sink {
   WKWebView() {
     any(CallExpr ce |
-      ce.getStaticTarget() =
-        getMethodWithQualifiedName("WKWebView",
-          [
-            "evaluateJavaScript(_:)", "evaluateJavaScript(_:completionHandler:)",
-            "evaluateJavaScript(_:in:in:completionHandler:)",
-            "evaluateJavaScript(_:in:contentWorld:)",
-            "callAsyncJavaScript(_:arguments:in:in:completionHandler:)",
-            "callAsyncJavaScript(_:arguments:in:contentWorld:)"
-          ])
+      ce.getStaticTarget()
+          .(MethodDecl)
+          .hasQualifiedName("WKWebView",
+            [
+              "evaluateJavaScript(_:)", "evaluateJavaScript(_:completionHandler:)",
+              "evaluateJavaScript(_:in:in:completionHandler:)",
+              "evaluateJavaScript(_:in:contentWorld:)",
+              "callAsyncJavaScript(_:arguments:in:in:completionHandler:)",
+              "callAsyncJavaScript(_:arguments:in:contentWorld:)"
+            ])
     ).getArgument(0).getExpr() = this.asExpr()
   }
 }
@@ -48,8 +49,9 @@ class WKWebView extends Sink {
 class WKUserContentController extends Sink {
   WKUserContentController() {
     any(CallExpr ce |
-      ce.getStaticTarget() =
-        getMethodWithQualifiedName("WKUserContentController", "addUserScript(_:)")
+      ce.getStaticTarget()
+          .(MethodDecl)
+          .hasQualifiedName("WKUserContentController", "addUserScript(_:)")
     ).getArgument(0).getExpr() = this.asExpr()
   }
 }
@@ -57,8 +59,9 @@ class WKUserContentController extends Sink {
 class UIWebView extends Sink {
   UIWebView() {
     any(CallExpr ce |
-      ce.getStaticTarget() =
-        getMethodWithQualifiedName(["UIWebView", "WebView"], "stringByEvaluatingJavaScript(from:)")
+      ce.getStaticTarget()
+          .(MethodDecl)
+          .hasQualifiedName(["UIWebView", "WebView"], "stringByEvaluatingJavaScript(from:)")
     ).getArgument(0).getExpr() = this.asExpr()
   }
 }
@@ -66,9 +69,9 @@ class UIWebView extends Sink {
 class JSContext extends Sink {
   JSContext() {
     any(CallExpr ce |
-      ce.getStaticTarget() =
-        getMethodWithQualifiedName("JSContext",
-          ["evaluateScript(_:)", "evaluateScript(_:withSourceURL:)"])
+      ce.getStaticTarget()
+          .(MethodDecl)
+          .hasQualifiedName("JSContext", ["evaluateScript(_:)", "evaluateScript(_:withSourceURL:)"])
     ).getArgument(0).getExpr() = this.asExpr()
   }
 }
@@ -76,26 +79,11 @@ class JSContext extends Sink {
 class JSEvaluateScript extends Sink {
   JSEvaluateScript() {
     any(CallExpr ce |
-      ce.getStaticTarget() = getFunctionWithQualifiedName("JSEvaluateScript(_:_:_:_:_:_:)")
+      ce.getStaticTarget().(FreeFunctionDecl).hasName("JSEvaluateScript(_:_:_:_:_:_:)")
     ).getArgument(1).getExpr() = this.asExpr()
   }
 }
 
-// TODO: Consider moving the following to the library, e.g.
-// - Decl.hasQualifiedName(moduleName?, declaringDeclName?, declName)
-// - parentDecl = memberDecl.getDeclaringDecl() <=> parentDecl.getAMember() = memberDecl
-IterableDeclContext getDeclaringDeclOf(Decl member) { result.getAMember() = member }
-
-MethodDecl getMethodWithQualifiedName(string className, string methodName) {
-  result.getName() = methodName and
-  getDeclaringDeclOf(result).(NominalTypeDecl).getName() = className
-}
-
-AbstractFunctionDecl getFunctionWithQualifiedName(string funcName) {
-  result.getName() = funcName and
-  not result.hasSelfParam()
-}
-
 /**
  * A taint configuration from taint sources to sinks for this query.
  */

From a7ecdef2a6ea66d2acf42d62b6180c0c6fafbd32 Mon Sep 17 00:00:00 2001
From: Geoffrey White <40627776+geoffw0@users.noreply.github.com>
Date: Thu, 3 Nov 2022 11:23:03 +0000
Subject: [PATCH 0053/1420] Swift: Add dataflow tests for tuples.

---
 .../dataflow/dataflow/LocalFlow.expected      | 30 +++++++++++++
 .../dataflow/dataflow/test.swift              | 43 ++++++++++++++++++-
 2 files changed, 72 insertions(+), 1 deletion(-)

diff --git a/swift/ql/test/library-tests/dataflow/dataflow/LocalFlow.expected b/swift/ql/test/library-tests/dataflow/dataflow/LocalFlow.expected
index b0e95ee6946..2e945f96294 100644
--- a/swift/ql/test/library-tests/dataflow/dataflow/LocalFlow.expected
+++ b/swift/ql/test/library-tests/dataflow/dataflow/LocalFlow.expected
@@ -192,3 +192,33 @@
 | test.swift:266:15:266:15 | x | test.swift:267:15:267:15 | x |
 | test.swift:266:15:266:25 | call to signum() | test.swift:266:15:266:25 | OptionalEvaluationExpr |
 | test.swift:267:15:267:15 | x | test.swift:268:16:268:16 | x |
+| test.swift:277:9:277:9 | WriteDef | test.swift:279:15:279:15 | t1 |
+| test.swift:277:14:277:26 | (...) | test.swift:277:9:277:9 | WriteDef |
+| test.swift:279:15:279:15 | t1 | test.swift:280:15:280:15 | t1 |
+| test.swift:280:15:280:15 | t1 | test.swift:281:15:281:15 | t1 |
+| test.swift:281:15:281:15 | t1 | test.swift:283:5:283:5 | t1 |
+| test.swift:283:5:283:5 | t1 | test.swift:285:15:285:15 | t1 |
+| test.swift:285:15:285:15 | t1 | test.swift:286:15:286:15 | t1 |
+| test.swift:286:15:286:15 | t1 | test.swift:287:15:287:15 | t1 |
+| test.swift:287:15:287:15 | t1 | test.swift:289:5:289:5 | t1 |
+| test.swift:289:5:289:5 | t1 | test.swift:291:15:291:15 | t1 |
+| test.swift:291:15:291:15 | t1 | test.swift:292:15:292:15 | t1 |
+| test.swift:292:15:292:15 | t1 | test.swift:293:15:293:15 | t1 |
+| test.swift:297:9:297:9 | WriteDef | test.swift:298:14:298:14 | t1 |
+| test.swift:297:14:297:45 | (...) | test.swift:297:9:297:9 | WriteDef |
+| test.swift:298:9:298:9 | WriteDef | test.swift:305:15:305:15 | t2 |
+| test.swift:298:14:298:14 | t1 | test.swift:298:9:298:9 | WriteDef |
+| test.swift:298:14:298:14 | t1 | test.swift:299:21:299:21 | t1 |
+| test.swift:299:9:299:17 | WriteDef | test.swift:309:15:309:15 | a |
+| test.swift:299:9:299:17 | WriteDef | test.swift:310:15:310:15 | b |
+| test.swift:299:9:299:17 | WriteDef | test.swift:311:15:311:15 | c |
+| test.swift:299:21:299:21 | t1 | test.swift:299:9:299:17 | WriteDef |
+| test.swift:299:21:299:21 | t1 | test.swift:299:9:299:17 | WriteDef |
+| test.swift:299:21:299:21 | t1 | test.swift:299:9:299:17 | WriteDef |
+| test.swift:299:21:299:21 | t1 | test.swift:301:15:301:15 | t1 |
+| test.swift:301:15:301:15 | t1 | test.swift:302:15:302:15 | t1 |
+| test.swift:302:15:302:15 | t1 | test.swift:303:15:303:15 | t1 |
+| test.swift:303:15:303:15 | t1 | test.swift:304:15:304:15 | t1 |
+| test.swift:305:15:305:15 | t2 | test.swift:306:15:306:15 | t2 |
+| test.swift:306:15:306:15 | t2 | test.swift:307:15:307:15 | t2 |
+| test.swift:307:15:307:15 | t2 | test.swift:308:15:308:15 | t2 |
diff --git a/swift/ql/test/library-tests/dataflow/dataflow/test.swift b/swift/ql/test/library-tests/dataflow/dataflow/test.swift
index 95a95145140..e1f4f41c5c2 100644
--- a/swift/ql/test/library-tests/dataflow/dataflow/test.swift
+++ b/swift/ql/test/library-tests/dataflow/dataflow/test.swift
@@ -124,7 +124,7 @@ func forwarder() {
         return i
     })
     sink(arg: z) // $ flow=122
-    
+
     var clean: Int = forward(arg: source(), lambda: {
         (i: Int) -> Int in
         return 0
@@ -269,3 +269,44 @@ func test_optionals() {
         sink(arg: y) // $ MISSING: flow=259
     }
 }
+
+func sink(arg: (Int, Int)) {}
+func sink(arg: (Int, Int, Int)) {}
+
+func testTuples() {
+    var t1 = (1, source())
+
+    sink(arg: t1)
+    sink(arg: t1.0)
+    sink(arg: t1.1) // $ MISSING: flow=277
+
+    t1.1 = 2
+
+    sink(arg: t1)
+    sink(arg: t1.0)
+    sink(arg: t1.1)
+
+    t1.0 = source()
+
+    sink(arg: t1)
+    sink(arg: t1.0) // $ MISSING: flow=289
+    sink(arg: t1.1)
+}
+
+func testTuples2() {
+    let t1 = (x: source(), y: source(), z: 0)
+    let t2 = t1
+    let (a, b, c) = t1
+
+    sink(arg: t1)
+    sink(arg: t1.x) // $ MISSING: flow=297
+    sink(arg: t1.y) // $ MISSING: flow=297
+    sink(arg: t1.z)
+    sink(arg: t2)
+    sink(arg: t2.x) // $ MISSING: flow=297
+    sink(arg: t2.y) // $ MISSING: flow=297
+    sink(arg: t2.z)
+    sink(arg: a) // $ MISSING: flow=297
+    sink(arg: b) // $ MISSING: flow=297
+    sink(arg: c)
+}

From 472ece45e7a7d70d8eac84107413b76be5b4a0f8 Mon Sep 17 00:00:00 2001
From: Geoffrey White <40627776+geoffw0@users.noreply.github.com>
Date: Thu, 3 Nov 2022 15:11:03 +0000
Subject: [PATCH 0054/1420] Swift: Basic content flow through tuples.

---
 .../dataflow/internal/DataFlowPrivate.qll     | 16 ++++++-
 .../dataflow/internal/DataFlowPublic.qll      | 12 +++++
 .../dataflow/dataflow/DataFlow.expected       | 44 +++++++++++++++++++
 .../dataflow/dataflow/test.swift              | 14 +++---
 4 files changed, 78 insertions(+), 8 deletions(-)

diff --git a/swift/ql/lib/codeql/swift/dataflow/internal/DataFlowPrivate.qll b/swift/ql/lib/codeql/swift/dataflow/internal/DataFlowPrivate.qll
index 892eea699aa..554f2eb7454 100644
--- a/swift/ql/lib/codeql/swift/dataflow/internal/DataFlowPrivate.qll
+++ b/swift/ql/lib/codeql/swift/dataflow/internal/DataFlowPrivate.qll
@@ -177,7 +177,9 @@ private module Cached {
   newtype TContentSet = TSingletonContent(Content c)
 
   cached
-  newtype TContent = TFieldContent(FieldDecl f)
+  newtype TContent =
+    TFieldContent(FieldDecl f) or
+    TTupleContent(int index) { exists(any(TupleExpr tn).getElement(index)) }
 }
 
 /**
@@ -505,6 +507,12 @@ predicate storeStep(Node node1, ContentSet c, Node node2) {
     c.isSingleton(any(Content::FieldContent ct | ct.getField() = ref.getMember()))
   )
   or
+  exists(TupleExpr tuple, int pos |
+    node1.asExpr() = tuple.getElement(pos) and
+    node2.asExpr() = tuple and
+    c.isSingleton(any(Content::TupleContent ct | ct.getIndex() = pos))
+  )
+  or
   FlowSummaryImpl::Private::Steps::summaryStoreStep(node1, c, node2)
 }
 
@@ -517,6 +525,12 @@ predicate readStep(Node node1, ContentSet c, Node node2) {
     node2.asExpr() = ref and
     c.isSingleton(any(Content::FieldContent ct | ct.getField() = ref.getMember()))
   )
+  or
+  exists(TupleElementExpr tuple |
+    node1.asExpr() = tuple.getSubExpr() and
+    node2.asExpr() = tuple and
+    c.isSingleton(any(Content::TupleContent ct | ct.getIndex() = tuple.getIndex()))
+  )
 }
 
 /**
diff --git a/swift/ql/lib/codeql/swift/dataflow/internal/DataFlowPublic.qll b/swift/ql/lib/codeql/swift/dataflow/internal/DataFlowPublic.qll
index be569f18314..9257c8ccb05 100644
--- a/swift/ql/lib/codeql/swift/dataflow/internal/DataFlowPublic.qll
+++ b/swift/ql/lib/codeql/swift/dataflow/internal/DataFlowPublic.qll
@@ -159,6 +159,18 @@ module Content {
 
     override string toString() { result = f.toString() }
   }
+
+  /** An element of a tuple at a specific index. */
+  class TupleContent extends Content, TTupleContent {
+    private int index;
+
+    TupleContent() { this = TTupleContent(index) }
+
+    /** Gets the index for this tuple element. */
+    int getIndex() { result = index }
+
+    override string toString() { result = "Tuple element at index " + index.toString() }
+  }
 }
 
 /**
diff --git a/swift/ql/test/library-tests/dataflow/dataflow/DataFlow.expected b/swift/ql/test/library-tests/dataflow/dataflow/DataFlow.expected
index 3cf1784e010..8862798d4e4 100644
--- a/swift/ql/test/library-tests/dataflow/dataflow/DataFlow.expected
+++ b/swift/ql/test/library-tests/dataflow/dataflow/DataFlow.expected
@@ -107,6 +107,23 @@ edges
 | test.swift:266:15:266:16 | ...? :  | file://:0:0:0:0 | [summary param] this in signum() :  |
 | test.swift:266:15:266:16 | ...? :  | test.swift:266:15:266:25 | call to signum() :  |
 | test.swift:266:15:266:25 | call to signum() :  | test.swift:266:15:266:25 | OptionalEvaluationExpr |
+| test.swift:277:14:277:26 | (...) [Tuple element at index 1] :  | test.swift:281:15:281:15 | t1 [Tuple element at index 1] :  |
+| test.swift:277:14:277:26 | (...) [Tuple element at index 1] :  | test.swift:287:15:287:15 | t1 [Tuple element at index 1] :  |
+| test.swift:277:14:277:26 | (...) [Tuple element at index 1] :  | test.swift:293:15:293:15 | t1 [Tuple element at index 1] :  |
+| test.swift:277:18:277:25 | call to source() :  | test.swift:277:14:277:26 | (...) [Tuple element at index 1] :  |
+| test.swift:281:15:281:15 | t1 [Tuple element at index 1] :  | test.swift:281:15:281:18 | .1 |
+| test.swift:287:15:287:15 | t1 [Tuple element at index 1] :  | test.swift:287:15:287:18 | .1 |
+| test.swift:293:15:293:15 | t1 [Tuple element at index 1] :  | test.swift:293:15:293:18 | .1 |
+| test.swift:297:14:297:45 | (...) [Tuple element at index 0] :  | test.swift:302:15:302:15 | t1 [Tuple element at index 0] :  |
+| test.swift:297:14:297:45 | (...) [Tuple element at index 0] :  | test.swift:306:15:306:15 | t2 [Tuple element at index 0] :  |
+| test.swift:297:14:297:45 | (...) [Tuple element at index 1] :  | test.swift:303:15:303:15 | t1 [Tuple element at index 1] :  |
+| test.swift:297:14:297:45 | (...) [Tuple element at index 1] :  | test.swift:307:15:307:15 | t2 [Tuple element at index 1] :  |
+| test.swift:297:18:297:25 | call to source() :  | test.swift:297:14:297:45 | (...) [Tuple element at index 0] :  |
+| test.swift:297:31:297:38 | call to source() :  | test.swift:297:14:297:45 | (...) [Tuple element at index 1] :  |
+| test.swift:302:15:302:15 | t1 [Tuple element at index 0] :  | test.swift:302:15:302:18 | .0 |
+| test.swift:303:15:303:15 | t1 [Tuple element at index 1] :  | test.swift:303:15:303:18 | .1 |
+| test.swift:306:15:306:15 | t2 [Tuple element at index 0] :  | test.swift:306:15:306:18 | .0 |
+| test.swift:307:15:307:15 | t2 [Tuple element at index 1] :  | test.swift:307:15:307:18 | .1 |
 nodes
 | file://:0:0:0:0 | .a [x] :  | semmle.label | .a [x] :  |
 | file://:0:0:0:0 | .x :  | semmle.label | .x :  |
@@ -227,6 +244,26 @@ nodes
 | test.swift:266:15:266:16 | ...? :  | semmle.label | ...? :  |
 | test.swift:266:15:266:25 | OptionalEvaluationExpr | semmle.label | OptionalEvaluationExpr |
 | test.swift:266:15:266:25 | call to signum() :  | semmle.label | call to signum() :  |
+| test.swift:277:14:277:26 | (...) [Tuple element at index 1] :  | semmle.label | (...) [Tuple element at index 1] :  |
+| test.swift:277:18:277:25 | call to source() :  | semmle.label | call to source() :  |
+| test.swift:281:15:281:15 | t1 [Tuple element at index 1] :  | semmle.label | t1 [Tuple element at index 1] :  |
+| test.swift:281:15:281:18 | .1 | semmle.label | .1 |
+| test.swift:287:15:287:15 | t1 [Tuple element at index 1] :  | semmle.label | t1 [Tuple element at index 1] :  |
+| test.swift:287:15:287:18 | .1 | semmle.label | .1 |
+| test.swift:293:15:293:15 | t1 [Tuple element at index 1] :  | semmle.label | t1 [Tuple element at index 1] :  |
+| test.swift:293:15:293:18 | .1 | semmle.label | .1 |
+| test.swift:297:14:297:45 | (...) [Tuple element at index 0] :  | semmle.label | (...) [Tuple element at index 0] :  |
+| test.swift:297:14:297:45 | (...) [Tuple element at index 1] :  | semmle.label | (...) [Tuple element at index 1] :  |
+| test.swift:297:18:297:25 | call to source() :  | semmle.label | call to source() :  |
+| test.swift:297:31:297:38 | call to source() :  | semmle.label | call to source() :  |
+| test.swift:302:15:302:15 | t1 [Tuple element at index 0] :  | semmle.label | t1 [Tuple element at index 0] :  |
+| test.swift:302:15:302:18 | .0 | semmle.label | .0 |
+| test.swift:303:15:303:15 | t1 [Tuple element at index 1] :  | semmle.label | t1 [Tuple element at index 1] :  |
+| test.swift:303:15:303:18 | .1 | semmle.label | .1 |
+| test.swift:306:15:306:15 | t2 [Tuple element at index 0] :  | semmle.label | t2 [Tuple element at index 0] :  |
+| test.swift:306:15:306:18 | .0 | semmle.label | .0 |
+| test.swift:307:15:307:15 | t2 [Tuple element at index 1] :  | semmle.label | t2 [Tuple element at index 1] :  |
+| test.swift:307:15:307:18 | .1 | semmle.label | .1 |
 subpaths
 | test.swift:75:21:75:22 | &... :  | test.swift:65:16:65:28 | arg1 :  | test.swift:65:1:70:1 | arg2[return] :  | test.swift:75:31:75:32 | [post] &... :  |
 | test.swift:114:19:114:19 | arg :  | test.swift:109:9:109:14 | arg :  | test.swift:110:12:110:12 | arg :  | test.swift:114:12:114:22 | call to ... :  |
@@ -287,3 +324,10 @@ subpaths
 | test.swift:264:15:264:16 | ...! | test.swift:259:12:259:19 | call to source() :  | test.swift:264:15:264:16 | ...! | result |
 | test.swift:265:15:265:31 | call to signum() | test.swift:265:15:265:22 | call to source() :  | test.swift:265:15:265:31 | call to signum() | result |
 | test.swift:266:15:266:25 | OptionalEvaluationExpr | test.swift:259:12:259:19 | call to source() :  | test.swift:266:15:266:25 | OptionalEvaluationExpr | result |
+| test.swift:281:15:281:18 | .1 | test.swift:277:18:277:25 | call to source() :  | test.swift:281:15:281:18 | .1 | result |
+| test.swift:287:15:287:18 | .1 | test.swift:277:18:277:25 | call to source() :  | test.swift:287:15:287:18 | .1 | result |
+| test.swift:293:15:293:18 | .1 | test.swift:277:18:277:25 | call to source() :  | test.swift:293:15:293:18 | .1 | result |
+| test.swift:302:15:302:18 | .0 | test.swift:297:18:297:25 | call to source() :  | test.swift:302:15:302:18 | .0 | result |
+| test.swift:303:15:303:18 | .1 | test.swift:297:31:297:38 | call to source() :  | test.swift:303:15:303:18 | .1 | result |
+| test.swift:306:15:306:18 | .0 | test.swift:297:18:297:25 | call to source() :  | test.swift:306:15:306:18 | .0 | result |
+| test.swift:307:15:307:18 | .1 | test.swift:297:31:297:38 | call to source() :  | test.swift:307:15:307:18 | .1 | result |
diff --git a/swift/ql/test/library-tests/dataflow/dataflow/test.swift b/swift/ql/test/library-tests/dataflow/dataflow/test.swift
index e1f4f41c5c2..15635efab78 100644
--- a/swift/ql/test/library-tests/dataflow/dataflow/test.swift
+++ b/swift/ql/test/library-tests/dataflow/dataflow/test.swift
@@ -278,19 +278,19 @@ func testTuples() {
 
     sink(arg: t1)
     sink(arg: t1.0)
-    sink(arg: t1.1) // $ MISSING: flow=277
+    sink(arg: t1.1) // $ flow=277
 
     t1.1 = 2
 
     sink(arg: t1)
     sink(arg: t1.0)
-    sink(arg: t1.1)
+    sink(arg: t1.1) // $ SPURIOUS: flow=277
 
     t1.0 = source()
 
     sink(arg: t1)
     sink(arg: t1.0) // $ MISSING: flow=289
-    sink(arg: t1.1)
+    sink(arg: t1.1) // $ SPURIOUS: flow=277
 }
 
 func testTuples2() {
@@ -299,12 +299,12 @@ func testTuples2() {
     let (a, b, c) = t1
 
     sink(arg: t1)
-    sink(arg: t1.x) // $ MISSING: flow=297
-    sink(arg: t1.y) // $ MISSING: flow=297
+    sink(arg: t1.x) // $ flow=297
+    sink(arg: t1.y) // $ flow=297
     sink(arg: t1.z)
     sink(arg: t2)
-    sink(arg: t2.x) // $ MISSING: flow=297
-    sink(arg: t2.y) // $ MISSING: flow=297
+    sink(arg: t2.x) // $ flow=297
+    sink(arg: t2.y) // $ flow=297
     sink(arg: t2.z)
     sink(arg: a) // $ MISSING: flow=297
     sink(arg: b) // $ MISSING: flow=297

From 6dc51edb4c7903136a257202540f0d386d3afbe9 Mon Sep 17 00:00:00 2001
From: Geoffrey White <40627776+geoffw0@users.noreply.github.com>
Date: Thu, 3 Nov 2022 15:23:30 +0000
Subject: [PATCH 0055/1420] Swift: Assigning to tuple values.

---
 .../codeql/swift/dataflow/internal/DataFlowPrivate.qll    | 7 +++++++
 .../library-tests/dataflow/dataflow/DataFlow.expected     | 8 ++++++++
 swift/ql/test/library-tests/dataflow/dataflow/test.swift  | 2 +-
 3 files changed, 16 insertions(+), 1 deletion(-)

diff --git a/swift/ql/lib/codeql/swift/dataflow/internal/DataFlowPrivate.qll b/swift/ql/lib/codeql/swift/dataflow/internal/DataFlowPrivate.qll
index 554f2eb7454..35782564306 100644
--- a/swift/ql/lib/codeql/swift/dataflow/internal/DataFlowPrivate.qll
+++ b/swift/ql/lib/codeql/swift/dataflow/internal/DataFlowPrivate.qll
@@ -513,6 +513,13 @@ predicate storeStep(Node node1, ContentSet c, Node node2) {
     c.isSingleton(any(Content::TupleContent ct | ct.getIndex() = pos))
   )
   or
+  exists(TupleElementExpr tuple, AssignExpr assign |
+    tuple = assign.getDest() and
+    node1.asExpr() = assign.getSource() and
+    node2/*.(PostUpdateNode).getPreUpdateNode()*/.asExpr() = tuple.getSubExpr() and
+    c.isSingleton(any(Content::TupleContent ct | ct.getIndex() = tuple.getIndex()))
+  )
+  or
   FlowSummaryImpl::Private::Steps::summaryStoreStep(node1, c, node2)
 }
 
diff --git a/swift/ql/test/library-tests/dataflow/dataflow/DataFlow.expected b/swift/ql/test/library-tests/dataflow/dataflow/DataFlow.expected
index 8862798d4e4..2b5638078e1 100644
--- a/swift/ql/test/library-tests/dataflow/dataflow/DataFlow.expected
+++ b/swift/ql/test/library-tests/dataflow/dataflow/DataFlow.expected
@@ -113,6 +113,9 @@ edges
 | test.swift:277:18:277:25 | call to source() :  | test.swift:277:14:277:26 | (...) [Tuple element at index 1] :  |
 | test.swift:281:15:281:15 | t1 [Tuple element at index 1] :  | test.swift:281:15:281:18 | .1 |
 | test.swift:287:15:287:15 | t1 [Tuple element at index 1] :  | test.swift:287:15:287:18 | .1 |
+| test.swift:289:5:289:5 | t1 [Tuple element at index 0] :  | test.swift:292:15:292:15 | t1 [Tuple element at index 0] :  |
+| test.swift:289:12:289:19 | call to source() :  | test.swift:289:5:289:5 | t1 [Tuple element at index 0] :  |
+| test.swift:292:15:292:15 | t1 [Tuple element at index 0] :  | test.swift:292:15:292:18 | .0 |
 | test.swift:293:15:293:15 | t1 [Tuple element at index 1] :  | test.swift:293:15:293:18 | .1 |
 | test.swift:297:14:297:45 | (...) [Tuple element at index 0] :  | test.swift:302:15:302:15 | t1 [Tuple element at index 0] :  |
 | test.swift:297:14:297:45 | (...) [Tuple element at index 0] :  | test.swift:306:15:306:15 | t2 [Tuple element at index 0] :  |
@@ -250,6 +253,10 @@ nodes
 | test.swift:281:15:281:18 | .1 | semmle.label | .1 |
 | test.swift:287:15:287:15 | t1 [Tuple element at index 1] :  | semmle.label | t1 [Tuple element at index 1] :  |
 | test.swift:287:15:287:18 | .1 | semmle.label | .1 |
+| test.swift:289:5:289:5 | t1 [Tuple element at index 0] :  | semmle.label | t1 [Tuple element at index 0] :  |
+| test.swift:289:12:289:19 | call to source() :  | semmle.label | call to source() :  |
+| test.swift:292:15:292:15 | t1 [Tuple element at index 0] :  | semmle.label | t1 [Tuple element at index 0] :  |
+| test.swift:292:15:292:18 | .0 | semmle.label | .0 |
 | test.swift:293:15:293:15 | t1 [Tuple element at index 1] :  | semmle.label | t1 [Tuple element at index 1] :  |
 | test.swift:293:15:293:18 | .1 | semmle.label | .1 |
 | test.swift:297:14:297:45 | (...) [Tuple element at index 0] :  | semmle.label | (...) [Tuple element at index 0] :  |
@@ -326,6 +333,7 @@ subpaths
 | test.swift:266:15:266:25 | OptionalEvaluationExpr | test.swift:259:12:259:19 | call to source() :  | test.swift:266:15:266:25 | OptionalEvaluationExpr | result |
 | test.swift:281:15:281:18 | .1 | test.swift:277:18:277:25 | call to source() :  | test.swift:281:15:281:18 | .1 | result |
 | test.swift:287:15:287:18 | .1 | test.swift:277:18:277:25 | call to source() :  | test.swift:287:15:287:18 | .1 | result |
+| test.swift:292:15:292:18 | .0 | test.swift:289:12:289:19 | call to source() :  | test.swift:292:15:292:18 | .0 | result |
 | test.swift:293:15:293:18 | .1 | test.swift:277:18:277:25 | call to source() :  | test.swift:293:15:293:18 | .1 | result |
 | test.swift:302:15:302:18 | .0 | test.swift:297:18:297:25 | call to source() :  | test.swift:302:15:302:18 | .0 | result |
 | test.swift:303:15:303:18 | .1 | test.swift:297:31:297:38 | call to source() :  | test.swift:303:15:303:18 | .1 | result |
diff --git a/swift/ql/test/library-tests/dataflow/dataflow/test.swift b/swift/ql/test/library-tests/dataflow/dataflow/test.swift
index 15635efab78..522a58aac02 100644
--- a/swift/ql/test/library-tests/dataflow/dataflow/test.swift
+++ b/swift/ql/test/library-tests/dataflow/dataflow/test.swift
@@ -289,7 +289,7 @@ func testTuples() {
     t1.0 = source()
 
     sink(arg: t1)
-    sink(arg: t1.0) // $ MISSING: flow=289
+    sink(arg: t1.0) // $ flow=289
     sink(arg: t1.1) // $ SPURIOUS: flow=277
 }
 

From 24f0eeb6dfe5acaa6465ee24e906836fefb27aa0 Mon Sep 17 00:00:00 2001
From: Geoffrey White <40627776+geoffw0@users.noreply.github.com>
Date: Thu, 3 Nov 2022 15:36:18 +0000
Subject: [PATCH 0056/1420] Swift: Better assigning to tuple values.

---
 .../swift/dataflow/internal/DataFlowPrivate.qll  |  4 ++--
 .../dataflow/dataflow/DataFlow.expected          | 16 +++-------------
 .../dataflow/dataflow/DataFlowInline.expected    |  2 ++
 .../dataflow/dataflow/LocalFlow.expected         | 11 +++++++++++
 .../library-tests/dataflow/dataflow/test.swift   |  4 ++--
 5 files changed, 20 insertions(+), 17 deletions(-)

diff --git a/swift/ql/lib/codeql/swift/dataflow/internal/DataFlowPrivate.qll b/swift/ql/lib/codeql/swift/dataflow/internal/DataFlowPrivate.qll
index 35782564306..996fcd773b3 100644
--- a/swift/ql/lib/codeql/swift/dataflow/internal/DataFlowPrivate.qll
+++ b/swift/ql/lib/codeql/swift/dataflow/internal/DataFlowPrivate.qll
@@ -86,7 +86,7 @@ private module Cached {
       hasExprNode(n,
         [
           any(Argument arg | modifiable(arg)).getExpr(), any(MemberRefExpr ref).getBase(),
-          any(ApplyExpr apply).getQualifier()
+          any(ApplyExpr apply).getQualifier(), any(TupleElementExpr te).getSubExpr()
         ])
     }
 
@@ -516,7 +516,7 @@ predicate storeStep(Node node1, ContentSet c, Node node2) {
   exists(TupleElementExpr tuple, AssignExpr assign |
     tuple = assign.getDest() and
     node1.asExpr() = assign.getSource() and
-    node2/*.(PostUpdateNode).getPreUpdateNode()*/.asExpr() = tuple.getSubExpr() and
+    node2.(PostUpdateNode).getPreUpdateNode().asExpr() = tuple.getSubExpr() and
     c.isSingleton(any(Content::TupleContent ct | ct.getIndex() = tuple.getIndex()))
   )
   or
diff --git a/swift/ql/test/library-tests/dataflow/dataflow/DataFlow.expected b/swift/ql/test/library-tests/dataflow/dataflow/DataFlow.expected
index 2b5638078e1..c4e0a7a01e6 100644
--- a/swift/ql/test/library-tests/dataflow/dataflow/DataFlow.expected
+++ b/swift/ql/test/library-tests/dataflow/dataflow/DataFlow.expected
@@ -108,15 +108,11 @@ edges
 | test.swift:266:15:266:16 | ...? :  | test.swift:266:15:266:25 | call to signum() :  |
 | test.swift:266:15:266:25 | call to signum() :  | test.swift:266:15:266:25 | OptionalEvaluationExpr |
 | test.swift:277:14:277:26 | (...) [Tuple element at index 1] :  | test.swift:281:15:281:15 | t1 [Tuple element at index 1] :  |
-| test.swift:277:14:277:26 | (...) [Tuple element at index 1] :  | test.swift:287:15:287:15 | t1 [Tuple element at index 1] :  |
-| test.swift:277:14:277:26 | (...) [Tuple element at index 1] :  | test.swift:293:15:293:15 | t1 [Tuple element at index 1] :  |
 | test.swift:277:18:277:25 | call to source() :  | test.swift:277:14:277:26 | (...) [Tuple element at index 1] :  |
 | test.swift:281:15:281:15 | t1 [Tuple element at index 1] :  | test.swift:281:15:281:18 | .1 |
-| test.swift:287:15:287:15 | t1 [Tuple element at index 1] :  | test.swift:287:15:287:18 | .1 |
-| test.swift:289:5:289:5 | t1 [Tuple element at index 0] :  | test.swift:292:15:292:15 | t1 [Tuple element at index 0] :  |
-| test.swift:289:12:289:19 | call to source() :  | test.swift:289:5:289:5 | t1 [Tuple element at index 0] :  |
+| test.swift:289:5:289:5 | [post] t1 [Tuple element at index 0] :  | test.swift:292:15:292:15 | t1 [Tuple element at index 0] :  |
+| test.swift:289:12:289:19 | call to source() :  | test.swift:289:5:289:5 | [post] t1 [Tuple element at index 0] :  |
 | test.swift:292:15:292:15 | t1 [Tuple element at index 0] :  | test.swift:292:15:292:18 | .0 |
-| test.swift:293:15:293:15 | t1 [Tuple element at index 1] :  | test.swift:293:15:293:18 | .1 |
 | test.swift:297:14:297:45 | (...) [Tuple element at index 0] :  | test.swift:302:15:302:15 | t1 [Tuple element at index 0] :  |
 | test.swift:297:14:297:45 | (...) [Tuple element at index 0] :  | test.swift:306:15:306:15 | t2 [Tuple element at index 0] :  |
 | test.swift:297:14:297:45 | (...) [Tuple element at index 1] :  | test.swift:303:15:303:15 | t1 [Tuple element at index 1] :  |
@@ -251,14 +247,10 @@ nodes
 | test.swift:277:18:277:25 | call to source() :  | semmle.label | call to source() :  |
 | test.swift:281:15:281:15 | t1 [Tuple element at index 1] :  | semmle.label | t1 [Tuple element at index 1] :  |
 | test.swift:281:15:281:18 | .1 | semmle.label | .1 |
-| test.swift:287:15:287:15 | t1 [Tuple element at index 1] :  | semmle.label | t1 [Tuple element at index 1] :  |
-| test.swift:287:15:287:18 | .1 | semmle.label | .1 |
-| test.swift:289:5:289:5 | t1 [Tuple element at index 0] :  | semmle.label | t1 [Tuple element at index 0] :  |
+| test.swift:289:5:289:5 | [post] t1 [Tuple element at index 0] :  | semmle.label | [post] t1 [Tuple element at index 0] :  |
 | test.swift:289:12:289:19 | call to source() :  | semmle.label | call to source() :  |
 | test.swift:292:15:292:15 | t1 [Tuple element at index 0] :  | semmle.label | t1 [Tuple element at index 0] :  |
 | test.swift:292:15:292:18 | .0 | semmle.label | .0 |
-| test.swift:293:15:293:15 | t1 [Tuple element at index 1] :  | semmle.label | t1 [Tuple element at index 1] :  |
-| test.swift:293:15:293:18 | .1 | semmle.label | .1 |
 | test.swift:297:14:297:45 | (...) [Tuple element at index 0] :  | semmle.label | (...) [Tuple element at index 0] :  |
 | test.swift:297:14:297:45 | (...) [Tuple element at index 1] :  | semmle.label | (...) [Tuple element at index 1] :  |
 | test.swift:297:18:297:25 | call to source() :  | semmle.label | call to source() :  |
@@ -332,9 +324,7 @@ subpaths
 | test.swift:265:15:265:31 | call to signum() | test.swift:265:15:265:22 | call to source() :  | test.swift:265:15:265:31 | call to signum() | result |
 | test.swift:266:15:266:25 | OptionalEvaluationExpr | test.swift:259:12:259:19 | call to source() :  | test.swift:266:15:266:25 | OptionalEvaluationExpr | result |
 | test.swift:281:15:281:18 | .1 | test.swift:277:18:277:25 | call to source() :  | test.swift:281:15:281:18 | .1 | result |
-| test.swift:287:15:287:18 | .1 | test.swift:277:18:277:25 | call to source() :  | test.swift:287:15:287:18 | .1 | result |
 | test.swift:292:15:292:18 | .0 | test.swift:289:12:289:19 | call to source() :  | test.swift:292:15:292:18 | .0 | result |
-| test.swift:293:15:293:18 | .1 | test.swift:277:18:277:25 | call to source() :  | test.swift:293:15:293:18 | .1 | result |
 | test.swift:302:15:302:18 | .0 | test.swift:297:18:297:25 | call to source() :  | test.swift:302:15:302:18 | .0 | result |
 | test.swift:303:15:303:18 | .1 | test.swift:297:31:297:38 | call to source() :  | test.swift:303:15:303:18 | .1 | result |
 | test.swift:306:15:306:18 | .0 | test.swift:297:18:297:25 | call to source() :  | test.swift:306:15:306:18 | .0 | result |
diff --git a/swift/ql/test/library-tests/dataflow/dataflow/DataFlowInline.expected b/swift/ql/test/library-tests/dataflow/dataflow/DataFlowInline.expected
index e69de29bb2d..0ecaa82d583 100644
--- a/swift/ql/test/library-tests/dataflow/dataflow/DataFlowInline.expected
+++ b/swift/ql/test/library-tests/dataflow/dataflow/DataFlowInline.expected
@@ -0,0 +1,2 @@
+| test.swift:287:21:288:1 | // $ flow=277\n | Missing result:flow=277 |
+| test.swift:293:21:294:1 | // $ flow=277\n | Missing result:flow=277 |
diff --git a/swift/ql/test/library-tests/dataflow/dataflow/LocalFlow.expected b/swift/ql/test/library-tests/dataflow/dataflow/LocalFlow.expected
index 2e945f96294..987d7073b87 100644
--- a/swift/ql/test/library-tests/dataflow/dataflow/LocalFlow.expected
+++ b/swift/ql/test/library-tests/dataflow/dataflow/LocalFlow.expected
@@ -195,14 +195,21 @@
 | test.swift:277:9:277:9 | WriteDef | test.swift:279:15:279:15 | t1 |
 | test.swift:277:14:277:26 | (...) | test.swift:277:9:277:9 | WriteDef |
 | test.swift:279:15:279:15 | t1 | test.swift:280:15:280:15 | t1 |
+| test.swift:280:15:280:15 | [post] t1 | test.swift:281:15:281:15 | t1 |
 | test.swift:280:15:280:15 | t1 | test.swift:281:15:281:15 | t1 |
+| test.swift:281:15:281:15 | [post] t1 | test.swift:283:5:283:5 | t1 |
 | test.swift:281:15:281:15 | t1 | test.swift:283:5:283:5 | t1 |
+| test.swift:283:5:283:5 | [post] t1 | test.swift:285:15:285:15 | t1 |
 | test.swift:283:5:283:5 | t1 | test.swift:285:15:285:15 | t1 |
 | test.swift:285:15:285:15 | t1 | test.swift:286:15:286:15 | t1 |
+| test.swift:286:15:286:15 | [post] t1 | test.swift:287:15:287:15 | t1 |
 | test.swift:286:15:286:15 | t1 | test.swift:287:15:287:15 | t1 |
+| test.swift:287:15:287:15 | [post] t1 | test.swift:289:5:289:5 | t1 |
 | test.swift:287:15:287:15 | t1 | test.swift:289:5:289:5 | t1 |
+| test.swift:289:5:289:5 | [post] t1 | test.swift:291:15:291:15 | t1 |
 | test.swift:289:5:289:5 | t1 | test.swift:291:15:291:15 | t1 |
 | test.swift:291:15:291:15 | t1 | test.swift:292:15:292:15 | t1 |
+| test.swift:292:15:292:15 | [post] t1 | test.swift:293:15:293:15 | t1 |
 | test.swift:292:15:292:15 | t1 | test.swift:293:15:293:15 | t1 |
 | test.swift:297:9:297:9 | WriteDef | test.swift:298:14:298:14 | t1 |
 | test.swift:297:14:297:45 | (...) | test.swift:297:9:297:9 | WriteDef |
@@ -217,8 +224,12 @@
 | test.swift:299:21:299:21 | t1 | test.swift:299:9:299:17 | WriteDef |
 | test.swift:299:21:299:21 | t1 | test.swift:301:15:301:15 | t1 |
 | test.swift:301:15:301:15 | t1 | test.swift:302:15:302:15 | t1 |
+| test.swift:302:15:302:15 | [post] t1 | test.swift:303:15:303:15 | t1 |
 | test.swift:302:15:302:15 | t1 | test.swift:303:15:303:15 | t1 |
+| test.swift:303:15:303:15 | [post] t1 | test.swift:304:15:304:15 | t1 |
 | test.swift:303:15:303:15 | t1 | test.swift:304:15:304:15 | t1 |
 | test.swift:305:15:305:15 | t2 | test.swift:306:15:306:15 | t2 |
+| test.swift:306:15:306:15 | [post] t2 | test.swift:307:15:307:15 | t2 |
 | test.swift:306:15:306:15 | t2 | test.swift:307:15:307:15 | t2 |
+| test.swift:307:15:307:15 | [post] t2 | test.swift:308:15:308:15 | t2 |
 | test.swift:307:15:307:15 | t2 | test.swift:308:15:308:15 | t2 |
diff --git a/swift/ql/test/library-tests/dataflow/dataflow/test.swift b/swift/ql/test/library-tests/dataflow/dataflow/test.swift
index 522a58aac02..77d503dec59 100644
--- a/swift/ql/test/library-tests/dataflow/dataflow/test.swift
+++ b/swift/ql/test/library-tests/dataflow/dataflow/test.swift
@@ -284,13 +284,13 @@ func testTuples() {
 
     sink(arg: t1)
     sink(arg: t1.0)
-    sink(arg: t1.1) // $ SPURIOUS: flow=277
+    sink(arg: t1.1) // $ flow=277
 
     t1.0 = source()
 
     sink(arg: t1)
     sink(arg: t1.0) // $ flow=289
-    sink(arg: t1.1) // $ SPURIOUS: flow=277
+    sink(arg: t1.1) // $ flow=277
 }
 
 func testTuples2() {

From 86cbf1b82cd178f8604473203fb83de391c8d655 Mon Sep 17 00:00:00 2001
From: Geoffrey White <40627776+geoffw0@users.noreply.github.com>
Date: Thu, 3 Nov 2022 18:45:43 +0000
Subject: [PATCH 0057/1420] Swift: Add comments.

---
 .../lib/codeql/swift/dataflow/internal/DataFlowPrivate.qll   | 5 +++++
 1 file changed, 5 insertions(+)

diff --git a/swift/ql/lib/codeql/swift/dataflow/internal/DataFlowPrivate.qll b/swift/ql/lib/codeql/swift/dataflow/internal/DataFlowPrivate.qll
index 996fcd773b3..4b7193df8e5 100644
--- a/swift/ql/lib/codeql/swift/dataflow/internal/DataFlowPrivate.qll
+++ b/swift/ql/lib/codeql/swift/dataflow/internal/DataFlowPrivate.qll
@@ -500,6 +500,7 @@ predicate jumpStep(Node pred, Node succ) {
 }
 
 predicate storeStep(Node node1, ContentSet c, Node node2) {
+  // assignment to a member variable `obj.member = value`
   exists(MemberRefExpr ref, AssignExpr assign |
     ref = assign.getDest() and
     node1.asExpr() = assign.getSource() and
@@ -507,12 +508,14 @@ predicate storeStep(Node node1, ContentSet c, Node node2) {
     c.isSingleton(any(Content::FieldContent ct | ct.getField() = ref.getMember()))
   )
   or
+  // creation of a tuple `(v1, v2)`
   exists(TupleExpr tuple, int pos |
     node1.asExpr() = tuple.getElement(pos) and
     node2.asExpr() = tuple and
     c.isSingleton(any(Content::TupleContent ct | ct.getIndex() = pos))
   )
   or
+  // assignment to a tuple member `tuple.index = value`
   exists(TupleElementExpr tuple, AssignExpr assign |
     tuple = assign.getDest() and
     node1.asExpr() = assign.getSource() and
@@ -526,6 +529,7 @@ predicate storeStep(Node node1, ContentSet c, Node node2) {
 predicate isLValue(Expr e) { any(AssignExpr assign).getDest() = e }
 
 predicate readStep(Node node1, ContentSet c, Node node2) {
+  // read of a member variable `obj.member`
   exists(MemberRefExpr ref |
     not isLValue(ref) and
     node1.asExpr() = ref.getBase() and
@@ -533,6 +537,7 @@ predicate readStep(Node node1, ContentSet c, Node node2) {
     c.isSingleton(any(Content::FieldContent ct | ct.getField() = ref.getMember()))
   )
   or
+  // read of a tuple member `tuple.index`
   exists(TupleElementExpr tuple |
     node1.asExpr() = tuple.getSubExpr() and
     node2.asExpr() = tuple and

From 20147e87b2a1b267bf684443d326356239efee62 Mon Sep 17 00:00:00 2001
From: Geoffrey White <40627776+geoffw0@users.noreply.github.com>
Date: Fri, 4 Nov 2022 09:38:12 +0000
Subject: [PATCH 0058/1420] Swift: Correct var names.

---
 .../codeql/swift/dataflow/internal/DataFlowPrivate.qll    | 8 ++++----
 1 file changed, 4 insertions(+), 4 deletions(-)

diff --git a/swift/ql/lib/codeql/swift/dataflow/internal/DataFlowPrivate.qll b/swift/ql/lib/codeql/swift/dataflow/internal/DataFlowPrivate.qll
index 4b7193df8e5..4e828bfaf27 100644
--- a/swift/ql/lib/codeql/swift/dataflow/internal/DataFlowPrivate.qll
+++ b/swift/ql/lib/codeql/swift/dataflow/internal/DataFlowPrivate.qll
@@ -179,7 +179,7 @@ private module Cached {
   cached
   newtype TContent =
     TFieldContent(FieldDecl f) or
-    TTupleContent(int index) { exists(any(TupleExpr tn).getElement(index)) }
+    TTupleContent(int index) { exists(any(TupleExpr te).getElement(index)) }
 }
 
 /**
@@ -512,7 +512,7 @@ predicate storeStep(Node node1, ContentSet c, Node node2) {
   exists(TupleExpr tuple, int pos |
     node1.asExpr() = tuple.getElement(pos) and
     node2.asExpr() = tuple and
-    c.isSingleton(any(Content::TupleContent ct | ct.getIndex() = pos))
+    c.isSingleton(any(Content::TupleContent tc | tc.getIndex() = pos))
   )
   or
   // assignment to a tuple member `tuple.index = value`
@@ -520,7 +520,7 @@ predicate storeStep(Node node1, ContentSet c, Node node2) {
     tuple = assign.getDest() and
     node1.asExpr() = assign.getSource() and
     node2.(PostUpdateNode).getPreUpdateNode().asExpr() = tuple.getSubExpr() and
-    c.isSingleton(any(Content::TupleContent ct | ct.getIndex() = tuple.getIndex()))
+    c.isSingleton(any(Content::TupleContent tc | tc.getIndex() = tuple.getIndex()))
   )
   or
   FlowSummaryImpl::Private::Steps::summaryStoreStep(node1, c, node2)
@@ -541,7 +541,7 @@ predicate readStep(Node node1, ContentSet c, Node node2) {
   exists(TupleElementExpr tuple |
     node1.asExpr() = tuple.getSubExpr() and
     node2.asExpr() = tuple and
-    c.isSingleton(any(Content::TupleContent ct | ct.getIndex() = tuple.getIndex()))
+    c.isSingleton(any(Content::TupleContent tc | tc.getIndex() = tuple.getIndex()))
   )
 }
 

From 3c07ff592ac37ba905187a96f0bff89592cda9f6 Mon Sep 17 00:00:00 2001
From: Geoffrey White <40627776+geoffw0@users.noreply.github.com>
Date: Fri, 4 Nov 2022 09:44:48 +0000
Subject: [PATCH 0059/1420] Swift: Fix result expectations.

---
 .../library-tests/dataflow/dataflow/DataFlowInline.expected   | 2 --
 swift/ql/test/library-tests/dataflow/dataflow/test.swift      | 4 ++--
 2 files changed, 2 insertions(+), 4 deletions(-)

diff --git a/swift/ql/test/library-tests/dataflow/dataflow/DataFlowInline.expected b/swift/ql/test/library-tests/dataflow/dataflow/DataFlowInline.expected
index 0ecaa82d583..e69de29bb2d 100644
--- a/swift/ql/test/library-tests/dataflow/dataflow/DataFlowInline.expected
+++ b/swift/ql/test/library-tests/dataflow/dataflow/DataFlowInline.expected
@@ -1,2 +0,0 @@
-| test.swift:287:21:288:1 | // $ flow=277\n | Missing result:flow=277 |
-| test.swift:293:21:294:1 | // $ flow=277\n | Missing result:flow=277 |
diff --git a/swift/ql/test/library-tests/dataflow/dataflow/test.swift b/swift/ql/test/library-tests/dataflow/dataflow/test.swift
index 77d503dec59..23c8d138a2d 100644
--- a/swift/ql/test/library-tests/dataflow/dataflow/test.swift
+++ b/swift/ql/test/library-tests/dataflow/dataflow/test.swift
@@ -284,13 +284,13 @@ func testTuples() {
 
     sink(arg: t1)
     sink(arg: t1.0)
-    sink(arg: t1.1) // $ flow=277
+    sink(arg: t1.1)
 
     t1.0 = source()
 
     sink(arg: t1)
     sink(arg: t1.0) // $ flow=289
-    sink(arg: t1.1) // $ flow=277
+    sink(arg: t1.1)
 }
 
 func testTuples2() {

From f0b505876068c2c2e4f15ca1f634e9d817cd4689 Mon Sep 17 00:00:00 2001
From: Michael Nebel <michaelnebel@github.com>
Date: Wed, 2 Nov 2022 10:58:30 +0100
Subject: [PATCH 0060/1420] C#: Remove filename from telemetry output.

---
 csharp/ql/src/Telemetry/ExternalApi.qll       | 38 +++++++------------
 .../ql/src/Telemetry/ExternalLibraryUsage.ql  | 20 +++++-----
 2 files changed, 24 insertions(+), 34 deletions(-)

diff --git a/csharp/ql/src/Telemetry/ExternalApi.qll b/csharp/ql/src/Telemetry/ExternalApi.qll
index d4cc0ae43cc..cf201b08737 100644
--- a/csharp/ql/src/Telemetry/ExternalApi.qll
+++ b/csharp/ql/src/Telemetry/ExternalApi.qll
@@ -42,22 +42,12 @@ class ExternalApi extends DotNet::Callable {
   /**
    * Gets the namespace of this API.
    */
-  private string getNamespace() { this.getDeclaringType().hasQualifiedName(result, _) }
+  string getNamespace() { this.getDeclaringType().hasQualifiedName(result, _) }
 
   /**
-   * Gets the assembly file name containing this API.
+   * Gets the namespace and signature of this API.
    */
-  private string getAssembly() { result = this.getFile().getBaseName() }
-
-  /**
-   * Gets the assembly file name and namespace of this API.
-   */
-  string getInfoPrefix() { result = this.getAssembly() + "#" + this.getNamespace() }
-
-  /**
-   * Gets the assembly file name, namespace and signature of this API.
-   */
-  string getInfo() { result = this.getInfoPrefix() + "#" + this.getSignature() }
+  string getApiName() { result = this.getNamespace() + "#" + this.getSignature() }
 
   /** Gets a call to this API callable. */
   DispatchCall getACall() {
@@ -125,30 +115,30 @@ signature predicate relevantApi(ExternalApi api);
  * for restricting the number or returned results based on a certain limit.
  */
 module Results<relevantApi/1 getRelevantUsages> {
-  private int getUsages(string apiInfo) {
+  private int getUsages(string apiName) {
     result =
       strictcount(DispatchCall c, ExternalApi api |
         c = api.getACall() and
-        apiInfo = api.getInfo() and
+        apiName = api.getApiName() and
         getRelevantUsages(api)
       )
   }
 
-  private int getOrder(string apiInfo) {
-    apiInfo =
-      rank[result](string info, int usages |
-        usages = getUsages(info)
+  private int getOrder(string apiName) {
+    apiName =
+      rank[result](string name, int usages |
+        usages = getUsages(name)
       |
-        info order by usages desc, info
+        name order by usages desc, name
       )
   }
 
   /**
-   * Holds if there exists an API with `apiInfo` that is being used `usages` times
+   * Holds if there exists an API with `apiName` that is being used `usages` times
    * and if it is in the top results (guarded by resultLimit).
    */
-  predicate restrict(string apiInfo, int usages) {
-    usages = getUsages(apiInfo) and
-    getOrder(apiInfo) <= resultLimit()
+  predicate restrict(string apiName, int usages) {
+    usages = getUsages(apiName) and
+    getOrder(apiName) <= resultLimit()
   }
 }
diff --git a/csharp/ql/src/Telemetry/ExternalLibraryUsage.ql b/csharp/ql/src/Telemetry/ExternalLibraryUsage.ql
index dfc1a8e062c..a9f70b84394 100644
--- a/csharp/ql/src/Telemetry/ExternalLibraryUsage.ql
+++ b/csharp/ql/src/Telemetry/ExternalLibraryUsage.ql
@@ -1,6 +1,6 @@
 /**
  * @name External libraries
- * @description A list of external libraries used in the code
+ * @description A list of external libraries used in the code given by their namespace.
  * @kind metric
  * @tags summary telemetry
  * @id csharp/telemetry/external-libs
@@ -10,23 +10,23 @@ private import csharp
 private import semmle.code.csharp.dispatch.Dispatch
 private import ExternalApi
 
-private predicate getRelevantUsages(string info, int usages) {
+private predicate getRelevantUsages(string namespace, int usages) {
   usages =
     strictcount(DispatchCall c, ExternalApi api |
       c = api.getACall() and
-      api.getInfoPrefix() = info and
+      api.getNamespace() = namespace and
       not api.isUninteresting()
     )
 }
 
-private int getOrder(string info) {
-  info =
+private int getOrder(string namespace) {
+  namespace =
     rank[result](string i, int usages | getRelevantUsages(i, usages) | i order by usages desc, i)
 }
 
-from ExternalApi api, string info, int usages
+from ExternalApi api, string namespace, int usages
 where
-  info = api.getInfoPrefix() and
-  getRelevantUsages(info, usages) and
-  getOrder(info) <= resultLimit()
-select info, usages order by usages desc
+  namespace = api.getNamespace() and
+  getRelevantUsages(namespace, usages) and
+  getOrder(namespace) <= resultLimit()
+select namespace, usages order by usages desc

From fec4d1992d33a01956e569ebf0872e7eaf55ee67 Mon Sep 17 00:00:00 2001
From: Michael Nebel <michaelnebel@github.com>
Date: Wed, 2 Nov 2022 11:00:53 +0100
Subject: [PATCH 0061/1420] C#: Update telemetry expected output.

---
 .../Telemetry/LibraryUsage/ExternalLibraryUsage.expected      | 4 ++--
 .../Telemetry/LibraryUsage/SupportedExternalTaint.expected    | 2 +-
 .../SupportedExternalSinks/SupportedExternalSinks.expected    | 4 ++--
 .../SupportedExternalSources.expected                         | 4 ++--
 4 files changed, 7 insertions(+), 7 deletions(-)

diff --git a/csharp/ql/test/query-tests/Telemetry/LibraryUsage/ExternalLibraryUsage.expected b/csharp/ql/test/query-tests/Telemetry/LibraryUsage/ExternalLibraryUsage.expected
index e64b827f137..7b5c4c57661 100644
--- a/csharp/ql/test/query-tests/Telemetry/LibraryUsage/ExternalLibraryUsage.expected
+++ b/csharp/ql/test/query-tests/Telemetry/LibraryUsage/ExternalLibraryUsage.expected
@@ -1,2 +1,2 @@
-| System.Private.CoreLib.dll#System | 5 |
-| System.Private.CoreLib.dll#System.Collections.Generic | 2 |
+| System | 5 |
+| System.Collections.Generic | 2 |
diff --git a/csharp/ql/test/query-tests/Telemetry/LibraryUsage/SupportedExternalTaint.expected b/csharp/ql/test/query-tests/Telemetry/LibraryUsage/SupportedExternalTaint.expected
index e9be925c286..b386e4acb38 100644
--- a/csharp/ql/test/query-tests/Telemetry/LibraryUsage/SupportedExternalTaint.expected
+++ b/csharp/ql/test/query-tests/Telemetry/LibraryUsage/SupportedExternalTaint.expected
@@ -1 +1 @@
-| System.Private.CoreLib.dll#System.Collections.Generic#List<>.Add(T) | 2 |
+| System.Collections.Generic#List<>.Add(T) | 2 |
diff --git a/csharp/ql/test/query-tests/Telemetry/SupportedExternalSinks/SupportedExternalSinks.expected b/csharp/ql/test/query-tests/Telemetry/SupportedExternalSinks/SupportedExternalSinks.expected
index b85e33ddae7..b3acebc02e0 100644
--- a/csharp/ql/test/query-tests/Telemetry/SupportedExternalSinks/SupportedExternalSinks.expected
+++ b/csharp/ql/test/query-tests/Telemetry/SupportedExternalSinks/SupportedExternalSinks.expected
@@ -1,2 +1,2 @@
-| System.Web.cs#System.Web#HttpResponse.Write(System.Object) | 2 |
-| System.Web.cs#System.Web#HttpResponse.WriteFile(System.String) | 1 |
+| System.Web#HttpResponse.Write(System.Object) | 2 |
+| System.Web#HttpResponse.WriteFile(System.String) | 1 |
diff --git a/csharp/ql/test/query-tests/Telemetry/SupportedExternalSources/SupportedExternalSources.expected b/csharp/ql/test/query-tests/Telemetry/SupportedExternalSources/SupportedExternalSources.expected
index 0f125b04b94..93c23f159a6 100644
--- a/csharp/ql/test/query-tests/Telemetry/SupportedExternalSources/SupportedExternalSources.expected
+++ b/csharp/ql/test/query-tests/Telemetry/SupportedExternalSources/SupportedExternalSources.expected
@@ -1,2 +1,2 @@
-| System.Console.dll#System#Console.ReadLine() | 2 |
-| System.Console.dll#System#Console.Read() | 1 |
+| System#Console.ReadLine() | 2 |
+| System#Console.Read() | 1 |

From be1129e782bef1a47bee305bf2fa3982f1471fe7 Mon Sep 17 00:00:00 2001
From: Michael Nebel <michaelnebel@github.com>
Date: Thu, 3 Nov 2022 09:36:23 +0100
Subject: [PATCH 0062/1420] C#: Only consider effectively public methods.

---
 csharp/ql/src/Telemetry/ExternalApi.qll | 6 +++++-
 1 file changed, 5 insertions(+), 1 deletion(-)

diff --git a/csharp/ql/src/Telemetry/ExternalApi.qll b/csharp/ql/src/Telemetry/ExternalApi.qll
index cf201b08737..98678946761 100644
--- a/csharp/ql/src/Telemetry/ExternalApi.qll
+++ b/csharp/ql/src/Telemetry/ExternalApi.qll
@@ -28,7 +28,11 @@ class TestLibrary extends RefType {
  * An external API from either the C# Standard Library or a 3rd party library.
  */
 class ExternalApi extends DotNet::Callable {
-  ExternalApi() { this.isUnboundDeclaration() and this.fromLibrary() }
+  ExternalApi() {
+    this.isUnboundDeclaration() and
+    this.fromLibrary() and
+    this.(Modifiable).isEffectivelyPublic()
+  }
 
   /**
    * Gets the unbound type, name and parameter types of this API.

From e0d7e277fb318719728a072bc984333f0d6f7653 Mon Sep 17 00:00:00 2001
From: Michael Nebel <michaelnebel@github.com>
Date: Thu, 3 Nov 2022 13:17:07 +0100
Subject: [PATCH 0063/1420] C#: Align counting with Java and only count calls
 and not all possible dispatch calls.

---
 csharp/ql/src/Telemetry/ExternalApi.qll       | 26 +++++++++----------
 .../ql/src/Telemetry/ExternalLibraryUsage.ql  |  4 +--
 2 files changed, 15 insertions(+), 15 deletions(-)

diff --git a/csharp/ql/src/Telemetry/ExternalApi.qll b/csharp/ql/src/Telemetry/ExternalApi.qll
index 98678946761..d3611fc0a2a 100644
--- a/csharp/ql/src/Telemetry/ExternalApi.qll
+++ b/csharp/ql/src/Telemetry/ExternalApi.qll
@@ -53,24 +53,24 @@ class ExternalApi extends DotNet::Callable {
    */
   string getApiName() { result = this.getNamespace() + "#" + this.getSignature() }
 
-  /** Gets a call to this API callable. */
-  DispatchCall getACall() {
-    this = result.getADynamicTarget().getUnboundDeclaration()
-    or
-    this = result.getAStaticTarget().getUnboundDeclaration()
-  }
-
   /** Gets a node that is an input to a call to this API. */
   private ArgumentNode getAnInput() {
-    result.getCall().(DataFlowDispatch::NonDelegateDataFlowCall).getDispatchCall() = this.getACall()
+    result
+        .getCall()
+        .(DataFlowDispatch::NonDelegateDataFlowCall)
+        .getATarget(_)
+        .getUnboundDeclaration() = this
   }
 
   /** Gets a node that is an output from a call to this API. */
   private DataFlow::Node getAnOutput() {
-    exists(DataFlowDispatch::NonDelegateDataFlowCall call, DataFlowImplCommon::ReturnKindExt ret |
-      result = ret.getAnOutNode(call)
+    exists(
+      Call c, DataFlowDispatch::NonDelegateDataFlowCall dc, DataFlowImplCommon::ReturnKindExt ret
     |
-      this.getACall() = call.getDispatchCall()
+      dc.getDispatchCall().getCall() = c and
+      c.getTarget().getUnboundDeclaration() = this
+    |
+      result = ret.getAnOutNode(dc)
     )
   }
 
@@ -121,8 +121,8 @@ signature predicate relevantApi(ExternalApi api);
 module Results<relevantApi/1 getRelevantUsages> {
   private int getUsages(string apiName) {
     result =
-      strictcount(DispatchCall c, ExternalApi api |
-        c = api.getACall() and
+      strictcount(Call c, ExternalApi api |
+        c.getTarget().getUnboundDeclaration() = api and
         apiName = api.getApiName() and
         getRelevantUsages(api)
       )
diff --git a/csharp/ql/src/Telemetry/ExternalLibraryUsage.ql b/csharp/ql/src/Telemetry/ExternalLibraryUsage.ql
index a9f70b84394..f06a18054dc 100644
--- a/csharp/ql/src/Telemetry/ExternalLibraryUsage.ql
+++ b/csharp/ql/src/Telemetry/ExternalLibraryUsage.ql
@@ -12,8 +12,8 @@ private import ExternalApi
 
 private predicate getRelevantUsages(string namespace, int usages) {
   usages =
-    strictcount(DispatchCall c, ExternalApi api |
-      c = api.getACall() and
+    strictcount(Call c, ExternalApi api |
+      c.getTarget().getUnboundDeclaration() = api and
       api.getNamespace() = namespace and
       not api.isUninteresting()
     )

From 366b94addc3dc24cea933f135abf7ef498fe14de Mon Sep 17 00:00:00 2001
From: Michael Nebel <michaelnebel@github.com>
Date: Wed, 2 Nov 2022 14:55:35 +0100
Subject: [PATCH 0064/1420] C#: Implement override for getAPrimaryQlClass for
 AnonymousClass.

---
 csharp/ql/lib/semmle/code/csharp/Type.qll | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/csharp/ql/lib/semmle/code/csharp/Type.qll b/csharp/ql/lib/semmle/code/csharp/Type.qll
index f95ded84771..dfabea580a4 100644
--- a/csharp/ql/lib/semmle/code/csharp/Type.qll
+++ b/csharp/ql/lib/semmle/code/csharp/Type.qll
@@ -824,6 +824,8 @@ class RecordClass extends RecordType, Class {
  */
 class AnonymousClass extends Class {
   AnonymousClass() { anonymous_types(this) }
+
+  override string getAPrimaryQlClass() { result = "AnonymousClass" }
 }
 
 /**

From 187ece610b2fb5539fef80db6cd9d9ef7c5c57aa Mon Sep 17 00:00:00 2001
From: Michael Nebel <michaelnebel@github.com>
Date: Wed, 2 Nov 2022 15:09:31 +0100
Subject: [PATCH 0065/1420] C#: Only evaluate api name and namespace strings if
 they are needed.

---
 csharp/ql/src/Telemetry/ExternalApi.qll | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/csharp/ql/src/Telemetry/ExternalApi.qll b/csharp/ql/src/Telemetry/ExternalApi.qll
index d3611fc0a2a..653eb419b7f 100644
--- a/csharp/ql/src/Telemetry/ExternalApi.qll
+++ b/csharp/ql/src/Telemetry/ExternalApi.qll
@@ -37,6 +37,7 @@ class ExternalApi extends DotNet::Callable {
   /**
    * Gets the unbound type, name and parameter types of this API.
    */
+  bindingset[this]
   private string getSignature() {
     result =
       this.getDeclaringType().getUnboundDeclaration() + "." + this.getName() + "(" +
@@ -46,11 +47,13 @@ class ExternalApi extends DotNet::Callable {
   /**
    * Gets the namespace of this API.
    */
+  bindingset[this]
   string getNamespace() { this.getDeclaringType().hasQualifiedName(result, _) }
 
   /**
    * Gets the namespace and signature of this API.
    */
+  bindingset[this]
   string getApiName() { result = this.getNamespace() + "#" + this.getSignature() }
 
   /** Gets a node that is an input to a call to this API. */

From d58072216461907262b6fce6975c590ba82fb274 Mon Sep 17 00:00:00 2001
From: Michael Nebel <michaelnebel@github.com>
Date: Thu, 3 Nov 2022 15:04:19 +0100
Subject: [PATCH 0066/1420] C#: Modify unsupported external library meta query
 to use call instead of dispatchcall.

---
 csharp/ql/src/meta/frameworks/UnsupportedExternalAPIs.ql | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/csharp/ql/src/meta/frameworks/UnsupportedExternalAPIs.ql b/csharp/ql/src/meta/frameworks/UnsupportedExternalAPIs.ql
index 6332dfc515c..1934fdc72cc 100644
--- a/csharp/ql/src/meta/frameworks/UnsupportedExternalAPIs.ql
+++ b/csharp/ql/src/meta/frameworks/UnsupportedExternalAPIs.ql
@@ -14,9 +14,9 @@ private import semmle.code.csharp.dataflow.internal.FlowSummaryImpl as FlowSumma
 private import semmle.code.csharp.dataflow.internal.NegativeSummary
 private import Telemetry.ExternalApi
 
-from DispatchCall c, ExternalApi api
+from Call c, ExternalApi api
 where
-  c = api.getACall() and
+  c.getTarget().getUnboundDeclaration() = api and
   not api.isUninteresting() and
   not api.isSupported() and
   not api instanceof FlowSummaryImpl::Public::NegativeSummarizedCallable

From d7f1491f419ca32b0197125755e77bf502bae58b Mon Sep 17 00:00:00 2001
From: erik-krogh <erik-krogh@github.com>
Date: Fri, 4 Nov 2022 17:19:42 +0100
Subject: [PATCH 0067/1420] fix non-attached annotations for newtype branches

---
 ql/ql/src/codeql_ql/ast/Ast.qll       |  4 +++
 ql/ql/test/printAst/Foo.qll           |  4 +++
 ql/ql/test/printAst/printAst.expected | 46 ++++++++++++++++++---------
 3 files changed, 39 insertions(+), 15 deletions(-)

diff --git a/ql/ql/src/codeql_ql/ast/Ast.qll b/ql/ql/src/codeql_ql/ast/Ast.qll
index d6a5039a3c7..577fae69947 100644
--- a/ql/ql/src/codeql_ql/ast/Ast.qll
+++ b/ql/ql/src/codeql_ql/ast/Ast.qll
@@ -983,6 +983,8 @@ class NewTypeBranch extends TNewTypeBranch, Predicate, TypeDeclaration {
 
   override NewTypeBranchType getReturnType() { result.getDeclaration() = this }
 
+  override Annotation getAnAnnotation() { toQL(this).getAFieldOrChild() = toQL(result) }
+
   override Type getParameterType(int i) { result = this.getField(i).getType() }
 
   override int getArity() { result = count(this.getField(_)) }
@@ -2397,6 +2399,8 @@ private class AnnotationArg extends TAnnotationArg, AstNode {
   }
 
   override string toString() { result = this.getValue() }
+
+  override string getAPrimaryQlClass() { result = "AnnotationArg" }
 }
 
 private class NoInlineArg extends AnnotationArg {
diff --git a/ql/ql/test/printAst/Foo.qll b/ql/ql/test/printAst/Foo.qll
index 17e4a4d636d..461402cd2eb 100644
--- a/ql/ql/test/printAst/Foo.qll
+++ b/ql/ql/test/printAst/Foo.qll
@@ -25,3 +25,7 @@ predicate calls(Foo f) {
   or
   true = false
 }
+
+newtype TPathNode =
+  pragma[assume_small_delta]
+  TPathNodeMid()
diff --git a/ql/ql/test/printAst/printAst.expected b/ql/ql/test/printAst/printAst.expected
index 333b42332e7..e53f9112569 100644
--- a/ql/ql/test/printAst/printAst.expected
+++ b/ql/ql/test/printAst/printAst.expected
@@ -1,8 +1,8 @@
 nodes
 | Foo.qll:1:1:1:17 | Import | semmle.label | [Import] Import |
 | Foo.qll:1:1:1:17 | Import | semmle.order | 1 |
-| Foo.qll:1:1:27:2 | TopLevel | semmle.label | [TopLevel] TopLevel |
-| Foo.qll:1:1:27:2 | TopLevel | semmle.order | 1 |
+| Foo.qll:1:1:31:17 | TopLevel | semmle.label | [TopLevel] TopLevel |
+| Foo.qll:1:1:31:17 | TopLevel | semmle.order | 1 |
 | Foo.qll:1:8:1:17 | javascript | semmle.label | [ModuleExpr] javascript |
 | Foo.qll:1:8:1:17 | javascript | semmle.order | 3 |
 | Foo.qll:3:7:3:9 | Class Foo | semmle.label | [Class] Class Foo |
@@ -153,6 +153,14 @@ nodes
 | Foo.qll:26:3:26:14 | ComparisonFormula | semmle.order | 75 |
 | Foo.qll:26:10:26:14 | Boolean | semmle.label | [Boolean] Boolean |
 | Foo.qll:26:10:26:14 | Boolean | semmle.order | 77 |
+| Foo.qll:29:9:29:17 | NewType TPathNode | semmle.label | [NewType] NewType TPathNode |
+| Foo.qll:29:9:29:17 | NewType TPathNode | semmle.order | 78 |
+| Foo.qll:30:3:30:28 | annotation | semmle.label | [Annotation] annotation |
+| Foo.qll:30:3:30:28 | annotation | semmle.order | 79 |
+| Foo.qll:30:10:30:27 | assume_small_delta | semmle.label | [AnnotationArg] assume_small_delta |
+| Foo.qll:30:10:30:27 | assume_small_delta | semmle.order | 80 |
+| Foo.qll:31:3:31:14 | NewTypeBranch TPathNodeMid | semmle.label | [NewTypeBranch] NewTypeBranch TPathNodeMid |
+| Foo.qll:31:3:31:14 | NewTypeBranch TPathNodeMid | semmle.order | 81 |
 | file://:0:0:0:0 | abs | semmle.label | [BuiltinPredicate] abs |
 | file://:0:0:0:0 | abs | semmle.label | [BuiltinPredicate] abs |
 | file://:0:0:0:0 | acos | semmle.label | [BuiltinPredicate] acos |
@@ -235,22 +243,24 @@ nodes
 | file://:0:0:0:0 | trim | semmle.label | [BuiltinPredicate] trim |
 | file://:0:0:0:0 | ulp | semmle.label | [BuiltinPredicate] ulp |
 | printAst.ql:1:1:1:28 | Import | semmle.label | [Import] Import |
-| printAst.ql:1:1:1:28 | Import | semmle.order | 78 |
+| printAst.ql:1:1:1:28 | Import | semmle.order | 82 |
 | printAst.ql:1:1:1:29 | TopLevel | semmle.label | [TopLevel] TopLevel |
-| printAst.ql:1:1:1:29 | TopLevel | semmle.order | 78 |
+| printAst.ql:1:1:1:29 | TopLevel | semmle.order | 82 |
 | printAst.ql:1:18:1:28 | printAstAst | semmle.label | [ModuleExpr] printAstAst |
-| printAst.ql:1:18:1:28 | printAstAst | semmle.order | 80 |
+| printAst.ql:1:18:1:28 | printAstAst | semmle.order | 84 |
 edges
 | Foo.qll:1:1:1:17 | Import | Foo.qll:1:8:1:17 | javascript | semmle.label | getModuleExpr() |
 | Foo.qll:1:1:1:17 | Import | Foo.qll:1:8:1:17 | javascript | semmle.order | 3 |
-| Foo.qll:1:1:27:2 | TopLevel | Foo.qll:1:1:1:17 | Import | semmle.label | getAnImport() |
-| Foo.qll:1:1:27:2 | TopLevel | Foo.qll:1:1:1:17 | Import | semmle.order | 1 |
-| Foo.qll:1:1:27:2 | TopLevel | Foo.qll:3:7:3:9 | Class Foo | semmle.label | getAClass() |
-| Foo.qll:1:1:27:2 | TopLevel | Foo.qll:3:7:3:9 | Class Foo | semmle.order | 4 |
-| Foo.qll:1:1:27:2 | TopLevel | Foo.qll:9:17:9:19 | ClasslessPredicate foo | semmle.label | getAPredicate() |
-| Foo.qll:1:1:27:2 | TopLevel | Foo.qll:9:17:9:19 | ClasslessPredicate foo | semmle.order | 16 |
-| Foo.qll:1:1:27:2 | TopLevel | Foo.qll:13:11:13:15 | ClasslessPredicate calls | semmle.label | getAPredicate() |
-| Foo.qll:1:1:27:2 | TopLevel | Foo.qll:13:11:13:15 | ClasslessPredicate calls | semmle.order | 32 |
+| Foo.qll:1:1:31:17 | TopLevel | Foo.qll:1:1:1:17 | Import | semmle.label | getAnImport() |
+| Foo.qll:1:1:31:17 | TopLevel | Foo.qll:1:1:1:17 | Import | semmle.order | 1 |
+| Foo.qll:1:1:31:17 | TopLevel | Foo.qll:3:7:3:9 | Class Foo | semmle.label | getAClass() |
+| Foo.qll:1:1:31:17 | TopLevel | Foo.qll:3:7:3:9 | Class Foo | semmle.order | 4 |
+| Foo.qll:1:1:31:17 | TopLevel | Foo.qll:9:17:9:19 | ClasslessPredicate foo | semmle.label | getAPredicate() |
+| Foo.qll:1:1:31:17 | TopLevel | Foo.qll:9:17:9:19 | ClasslessPredicate foo | semmle.order | 16 |
+| Foo.qll:1:1:31:17 | TopLevel | Foo.qll:13:11:13:15 | ClasslessPredicate calls | semmle.label | getAPredicate() |
+| Foo.qll:1:1:31:17 | TopLevel | Foo.qll:13:11:13:15 | ClasslessPredicate calls | semmle.order | 32 |
+| Foo.qll:1:1:31:17 | TopLevel | Foo.qll:29:9:29:17 | NewType TPathNode | semmle.label | getANewType() |
+| Foo.qll:1:1:31:17 | TopLevel | Foo.qll:29:9:29:17 | NewType TPathNode | semmle.order | 78 |
 | Foo.qll:3:7:3:9 | Class Foo | Foo.qll:3:19:3:22 | TypeExpr | semmle.label | getASuperType() |
 | Foo.qll:3:7:3:9 | Class Foo | Foo.qll:3:19:3:22 | TypeExpr | semmle.order | 5 |
 | Foo.qll:3:7:3:9 | Class Foo | Foo.qll:4:3:4:17 | CharPred Foo | semmle.label | getCharPred() |
@@ -393,9 +403,15 @@ edges
 | Foo.qll:26:3:26:14 | ComparisonFormula | Foo.qll:26:3:26:6 | Boolean | semmle.order | 75 |
 | Foo.qll:26:3:26:14 | ComparisonFormula | Foo.qll:26:10:26:14 | Boolean | semmle.label | getRightOperand() |
 | Foo.qll:26:3:26:14 | ComparisonFormula | Foo.qll:26:10:26:14 | Boolean | semmle.order | 77 |
+| Foo.qll:29:9:29:17 | NewType TPathNode | Foo.qll:31:3:31:14 | NewTypeBranch TPathNodeMid | semmle.label | getABranch() |
+| Foo.qll:29:9:29:17 | NewType TPathNode | Foo.qll:31:3:31:14 | NewTypeBranch TPathNodeMid | semmle.order | 81 |
+| Foo.qll:30:3:30:28 | annotation | Foo.qll:30:10:30:27 | assume_small_delta | semmle.label | getArgs(_) |
+| Foo.qll:30:3:30:28 | annotation | Foo.qll:30:10:30:27 | assume_small_delta | semmle.order | 80 |
+| Foo.qll:31:3:31:14 | NewTypeBranch TPathNodeMid | Foo.qll:30:3:30:28 | annotation | semmle.label | getAnAnnotation() |
+| Foo.qll:31:3:31:14 | NewTypeBranch TPathNodeMid | Foo.qll:30:3:30:28 | annotation | semmle.order | 79 |
 | printAst.ql:1:1:1:28 | Import | printAst.ql:1:18:1:28 | printAstAst | semmle.label | getModuleExpr() |
-| printAst.ql:1:1:1:28 | Import | printAst.ql:1:18:1:28 | printAstAst | semmle.order | 80 |
+| printAst.ql:1:1:1:28 | Import | printAst.ql:1:18:1:28 | printAstAst | semmle.order | 84 |
 | printAst.ql:1:1:1:29 | TopLevel | printAst.ql:1:1:1:28 | Import | semmle.label | getAnImport() |
-| printAst.ql:1:1:1:29 | TopLevel | printAst.ql:1:1:1:28 | Import | semmle.order | 78 |
+| printAst.ql:1:1:1:29 | TopLevel | printAst.ql:1:1:1:28 | Import | semmle.order | 82 |
 graphProperties
 | semmle.graphKind | tree |

From bc5b7455cf879ed3a7ad381d7e8835d7f12dda15 Mon Sep 17 00:00:00 2001
From: erik-krogh <erik-krogh@github.com>
Date: Wed, 2 Nov 2022 13:55:39 +0100
Subject: [PATCH 0068/1420] add failing test

---
 .../UnsafeShellCommandConstruction/lib/subLib/index.js      | 6 +++++-
 1 file changed, 5 insertions(+), 1 deletion(-)

diff --git a/javascript/ql/test/query-tests/Security/CWE-078/UnsafeShellCommandConstruction/lib/subLib/index.js b/javascript/ql/test/query-tests/Security/CWE-078/UnsafeShellCommandConstruction/lib/subLib/index.js
index 9e105338669..fe6eaa449ae 100644
--- a/javascript/ql/test/query-tests/Security/CWE-078/UnsafeShellCommandConstruction/lib/subLib/index.js
+++ b/javascript/ql/test/query-tests/Security/CWE-078/UnsafeShellCommandConstruction/lib/subLib/index.js
@@ -8,4 +8,8 @@ module.exports.foo = function (name) {
 	cp.exec("rm -rf " + name); // NOT OK - this is being called explicitly from child_process-test.js
 };
 
-module.exports.amd = require("./amd.js");
\ No newline at end of file
+module.exports.amd = require("./amd.js");
+
+module.exports.arrToShell = function (cmd, arr) {
+    cp.spawn("echo", arr, {shell: true}); // NOT OK - but not flagged [INCONSISTENCY]
+}
\ No newline at end of file

From 40032f295ae1625c51eba9075b905bdb6f3ce1df Mon Sep 17 00:00:00 2001
From: erik-krogh <erik-krogh@github.com>
Date: Wed, 2 Nov 2022 14:06:57 +0100
Subject: [PATCH 0069/1420] treat arrays that gets executed with shell:true as
 a sink for `js/shell-command-constructed-from-input`

---
 ...ShellCommandConstructionCustomizations.qll | 24 +++++++++++++------
 .../UnsafeShellCommandConstruction.expected   | 23 ++++++++++++++++++
 .../lib/subLib/index.js                       |  2 +-
 3 files changed, 41 insertions(+), 8 deletions(-)

diff --git a/javascript/ql/lib/semmle/javascript/security/dataflow/UnsafeShellCommandConstructionCustomizations.qll b/javascript/ql/lib/semmle/javascript/security/dataflow/UnsafeShellCommandConstructionCustomizations.qll
index 0b4923de179..ca6920db466 100644
--- a/javascript/ql/lib/semmle/javascript/security/dataflow/UnsafeShellCommandConstructionCustomizations.qll
+++ b/javascript/ql/lib/semmle/javascript/security/dataflow/UnsafeShellCommandConstructionCustomizations.qll
@@ -156,14 +156,9 @@ module UnsafeShellCommandConstruction {
   }
 
   /**
-   * Gets a node that ends up in an array that is ultimately executed as a shell script by `sys`.
+   * Holds if the arguments array given to `sys` is joined as a string because `shell` is set to true.
    */
-  private DataFlow::SourceNode endsInShellExecutedArray(
-    DataFlow::TypeBackTracker t, SystemCommandExecution sys
-  ) {
-    t.start() and
-    result = sys.getArgumentList().getALocalSource() and
-    // the array gets joined to a string when `shell` is set to true.
+  predicate executesArrayAsShell(SystemCommandExecution sys) {
     sys.getOptionsArg()
         .getALocalSource()
         .getAPropertyWrite("shell")
@@ -171,6 +166,17 @@ module UnsafeShellCommandConstruction {
         .asExpr()
         .(BooleanLiteral)
         .getValue() = "true"
+  }
+
+  /**
+   * Gets a node that ends up in an array that is ultimately executed as a shell script by `sys`.
+   */
+  private DataFlow::SourceNode endsInShellExecutedArray(
+    DataFlow::TypeBackTracker t, SystemCommandExecution sys
+  ) {
+    t.start() and
+    result = sys.getArgumentList().getALocalSource() and
+    executesArrayAsShell(sys)
     or
     exists(DataFlow::TypeBackTracker t2 |
       result = endsInShellExecutedArray(t2, sys).backtrack(t2, t)
@@ -193,6 +199,10 @@ module UnsafeShellCommandConstruction {
         or
         this = arr.getAMethodCall(["push", "unshift"]).getAnArgument()
       )
+      or
+      this = sys.getArgumentList() and
+      not this instanceof DataFlow::ArrayCreationNode and
+      executesArrayAsShell(sys)
     }
 
     override string getSinkType() { result = "shell argument" }
diff --git a/javascript/ql/test/query-tests/Security/CWE-078/UnsafeShellCommandConstruction/UnsafeShellCommandConstruction.expected b/javascript/ql/test/query-tests/Security/CWE-078/UnsafeShellCommandConstruction/UnsafeShellCommandConstruction.expected
index 4cf79a4aedd..9cf2707f58f 100644
--- a/javascript/ql/test/query-tests/Security/CWE-078/UnsafeShellCommandConstruction/UnsafeShellCommandConstruction.expected
+++ b/javascript/ql/test/query-tests/Security/CWE-078/UnsafeShellCommandConstruction/UnsafeShellCommandConstruction.expected
@@ -223,8 +223,14 @@ nodes
 | lib/lib.js:420:29:420:32 | name |
 | lib/lib.js:424:24:424:27 | name |
 | lib/lib.js:424:24:424:27 | name |
+| lib/lib.js:425:6:425:13 | arr |
+| lib/lib.js:425:12:425:13 | [] |
 | lib/lib.js:426:11:426:14 | name |
 | lib/lib.js:426:11:426:14 | name |
+| lib/lib.js:427:14:427:16 | arr |
+| lib/lib.js:427:14:427:16 | arr |
+| lib/lib.js:428:14:428:58 | build(" ...  + '-') |
+| lib/lib.js:428:14:428:58 | build(" ...  + '-') |
 | lib/lib.js:428:28:428:51 | (name ? ... ' : '') |
 | lib/lib.js:428:28:428:57 | (name ? ... ) + '-' |
 | lib/lib.js:428:29:428:50 | name ?  ... :' : '' |
@@ -302,6 +308,10 @@ nodes
 | lib/subLib/index.js:7:32:7:35 | name |
 | lib/subLib/index.js:8:22:8:25 | name |
 | lib/subLib/index.js:8:22:8:25 | name |
+| lib/subLib/index.js:13:44:13:46 | arr |
+| lib/subLib/index.js:13:44:13:46 | arr |
+| lib/subLib/index.js:14:22:14:24 | arr |
+| lib/subLib/index.js:14:22:14:24 | arr |
 edges
 | lib/isImported.js:5:49:5:52 | name | lib/isImported.js:6:22:6:25 | name |
 | lib/isImported.js:5:49:5:52 | name | lib/isImported.js:6:22:6:25 | name |
@@ -575,7 +585,13 @@ edges
 | lib/lib.js:414:40:414:43 | name | lib/lib.js:426:11:426:14 | name |
 | lib/lib.js:414:40:414:43 | name | lib/lib.js:428:36:428:39 | name |
 | lib/lib.js:414:40:414:43 | name | lib/lib.js:428:36:428:39 | name |
+| lib/lib.js:425:6:425:13 | arr | lib/lib.js:427:14:427:16 | arr |
+| lib/lib.js:425:6:425:13 | arr | lib/lib.js:427:14:427:16 | arr |
+| lib/lib.js:425:12:425:13 | [] | lib/lib.js:425:6:425:13 | arr |
+| lib/lib.js:426:11:426:14 | name | lib/lib.js:425:12:425:13 | [] |
 | lib/lib.js:428:28:428:51 | (name ? ... ' : '') | lib/lib.js:428:28:428:57 | (name ? ... ) + '-' |
+| lib/lib.js:428:28:428:57 | (name ? ... ) + '-' | lib/lib.js:428:14:428:58 | build(" ...  + '-') |
+| lib/lib.js:428:28:428:57 | (name ? ... ) + '-' | lib/lib.js:428:14:428:58 | build(" ...  + '-') |
 | lib/lib.js:428:28:428:57 | (name ? ... ) + '-' | lib/lib.js:431:23:431:26 | last |
 | lib/lib.js:428:29:428:50 | name ?  ... :' : '' | lib/lib.js:428:28:428:51 | (name ? ... ' : '') |
 | lib/lib.js:428:36:428:39 | name | lib/lib.js:428:36:428:45 | name + ':' |
@@ -663,6 +679,10 @@ edges
 | lib/subLib/index.js:7:32:7:35 | name | lib/subLib/index.js:8:22:8:25 | name |
 | lib/subLib/index.js:7:32:7:35 | name | lib/subLib/index.js:8:22:8:25 | name |
 | lib/subLib/index.js:7:32:7:35 | name | lib/subLib/index.js:8:22:8:25 | name |
+| lib/subLib/index.js:13:44:13:46 | arr | lib/subLib/index.js:14:22:14:24 | arr |
+| lib/subLib/index.js:13:44:13:46 | arr | lib/subLib/index.js:14:22:14:24 | arr |
+| lib/subLib/index.js:13:44:13:46 | arr | lib/subLib/index.js:14:22:14:24 | arr |
+| lib/subLib/index.js:13:44:13:46 | arr | lib/subLib/index.js:14:22:14:24 | arr |
 #select
 | lib/isImported.js:6:10:6:25 | "rm -rf " + name | lib/isImported.js:5:49:5:52 | name | lib/isImported.js:6:22:6:25 | name | This string concatenation which depends on $@ is later used in a $@. | lib/isImported.js:5:49:5:52 | name | library input | lib/isImported.js:6:2:6:26 | cp.exec ... + name) | shell command |
 | lib/lib2.js:4:10:4:25 | "rm -rf " + name | lib/lib2.js:3:28:3:31 | name | lib/lib2.js:4:22:4:25 | name | This string concatenation which depends on $@ is later used in a $@. | lib/lib2.js:3:28:3:31 | name | library input | lib/lib2.js:4:2:4:26 | cp.exec ... + name) | shell command |
@@ -729,6 +749,8 @@ edges
 | lib/lib.js:420:29:420:32 | name | lib/lib.js:414:40:414:43 | name | lib/lib.js:420:29:420:32 | name | This shell argument which depends on $@ is later used in a $@. | lib/lib.js:414:40:414:43 | name | library input | lib/lib.js:420:2:420:49 | cp.spaw ...  true}) | shell command |
 | lib/lib.js:424:24:424:27 | name | lib/lib.js:414:40:414:43 | name | lib/lib.js:424:24:424:27 | name | This shell argument which depends on $@ is later used in a $@. | lib/lib.js:414:40:414:43 | name | library input | lib/lib.js:424:2:424:40 | spawn(" ... WN_OPT) | shell command |
 | lib/lib.js:426:11:426:14 | name | lib/lib.js:414:40:414:43 | name | lib/lib.js:426:11:426:14 | name | This shell argument which depends on $@ is later used in a $@. | lib/lib.js:414:40:414:43 | name | library input | lib/lib.js:427:2:427:28 | spawn(" ... WN_OPT) | shell command |
+| lib/lib.js:427:14:427:16 | arr | lib/lib.js:414:40:414:43 | name | lib/lib.js:427:14:427:16 | arr | This shell argument which depends on $@ is later used in a $@. | lib/lib.js:414:40:414:43 | name | library input | lib/lib.js:427:2:427:28 | spawn(" ... WN_OPT) | shell command |
+| lib/lib.js:428:14:428:58 | build(" ...  + '-') | lib/lib.js:414:40:414:43 | name | lib/lib.js:428:14:428:58 | build(" ...  + '-') | This shell argument which depends on $@ is later used in a $@. | lib/lib.js:414:40:414:43 | name | library input | lib/lib.js:428:2:428:70 | spawn(" ... WN_OPT) | shell command |
 | lib/lib.js:436:19:436:22 | last | lib/lib.js:414:40:414:43 | name | lib/lib.js:436:19:436:22 | last | This shell argument which depends on $@ is later used in a $@. | lib/lib.js:414:40:414:43 | name | library input | lib/lib.js:428:2:428:70 | spawn(" ... WN_OPT) | shell command |
 | lib/lib.js:442:12:442:27 | "rm -rf " + name | lib/lib.js:441:39:441:42 | name | lib/lib.js:442:24:442:27 | name | This string concatenation which depends on $@ is later used in a $@. | lib/lib.js:441:39:441:42 | name | library input | lib/lib.js:442:2:442:28 | asyncEx ... + name) | shell command |
 | lib/lib.js:447:13:447:28 | "rm -rf " + name | lib/lib.js:446:20:446:23 | name | lib/lib.js:447:25:447:28 | name | This string concatenation which depends on $@ is later used in a $@. | lib/lib.js:446:20:446:23 | name | library input | lib/lib.js:447:3:447:29 | asyncEx ... + name) | shell command |
@@ -750,3 +772,4 @@ edges
 | lib/subLib/amdSub.js:4:10:4:25 | "rm -rf " + name | lib/subLib/amdSub.js:3:28:3:31 | name | lib/subLib/amdSub.js:4:22:4:25 | name | This string concatenation which depends on $@ is later used in a $@. | lib/subLib/amdSub.js:3:28:3:31 | name | library input | lib/subLib/amdSub.js:4:2:4:26 | cp.exec ... + name) | shell command |
 | lib/subLib/index.js:4:10:4:25 | "rm -rf " + name | lib/subLib/index.js:3:28:3:31 | name | lib/subLib/index.js:4:22:4:25 | name | This string concatenation which depends on $@ is later used in a $@. | lib/subLib/index.js:3:28:3:31 | name | library input | lib/subLib/index.js:4:2:4:26 | cp.exec ... + name) | shell command |
 | lib/subLib/index.js:8:10:8:25 | "rm -rf " + name | lib/subLib/index.js:7:32:7:35 | name | lib/subLib/index.js:8:22:8:25 | name | This string concatenation which depends on $@ is later used in a $@. | lib/subLib/index.js:7:32:7:35 | name | library input | lib/subLib/index.js:8:2:8:26 | cp.exec ... + name) | shell command |
+| lib/subLib/index.js:14:22:14:24 | arr | lib/subLib/index.js:13:44:13:46 | arr | lib/subLib/index.js:14:22:14:24 | arr | This shell argument which depends on $@ is later used in a $@. | lib/subLib/index.js:13:44:13:46 | arr | library input | lib/subLib/index.js:14:5:14:40 | cp.spaw ...  true}) | shell command |
diff --git a/javascript/ql/test/query-tests/Security/CWE-078/UnsafeShellCommandConstruction/lib/subLib/index.js b/javascript/ql/test/query-tests/Security/CWE-078/UnsafeShellCommandConstruction/lib/subLib/index.js
index fe6eaa449ae..6e7d3498723 100644
--- a/javascript/ql/test/query-tests/Security/CWE-078/UnsafeShellCommandConstruction/lib/subLib/index.js
+++ b/javascript/ql/test/query-tests/Security/CWE-078/UnsafeShellCommandConstruction/lib/subLib/index.js
@@ -11,5 +11,5 @@ module.exports.foo = function (name) {
 module.exports.amd = require("./amd.js");
 
 module.exports.arrToShell = function (cmd, arr) {
-    cp.spawn("echo", arr, {shell: true}); // NOT OK - but not flagged [INCONSISTENCY]
+    cp.spawn("echo", arr, {shell: true}); // NOT OK
 }
\ No newline at end of file

From 74ee1015923b025efd1da565c7797920bb37dd2b Mon Sep 17 00:00:00 2001
From: JarLob <jarlob@gmail.com>
Date: Mon, 7 Nov 2022 13:05:37 +0100
Subject: [PATCH 0070/1420] Extend `Constant Condition` query with
 `String.IsNullOrEmpty`.

---
 .../Control-Flow/ConstantCondition.ql         | 25 ++++++++
 .../2022-11-07-constant-expression.md         |  4 ++
 .../ConstantCondition.expected                |  4 ++
 .../ConstantIsNullOrEmpty.cs                  | 60 +++++++++++++++++++
 4 files changed, 93 insertions(+)
 create mode 100644 csharp/ql/src/change-notes/released/2022-11-07-constant-expression.md
 create mode 100644 csharp/ql/test/query-tests/Bad Practices/Control-Flow/ConstantCondition/ConstantIsNullOrEmpty.cs

diff --git a/csharp/ql/src/Bad Practices/Control-Flow/ConstantCondition.ql b/csharp/ql/src/Bad Practices/Control-Flow/ConstantCondition.ql
index a0542a94735..cb53d103f47 100644
--- a/csharp/ql/src/Bad Practices/Control-Flow/ConstantCondition.ql	
+++ b/csharp/ql/src/Bad Practices/Control-Flow/ConstantCondition.ql	
@@ -15,6 +15,7 @@
 import csharp
 import semmle.code.csharp.commons.Assertions
 import semmle.code.csharp.commons.Constants
+private import semmle.code.csharp.frameworks.System
 
 /** A constant condition. */
 abstract class ConstantCondition extends Expr {
@@ -72,6 +73,30 @@ class ConstantIfCondition extends ConstantBooleanCondition {
   }
 }
 
+/** A constant return value from a function with constant input expression. */
+class ConstantReturnValueCondition extends ConstantCondition {
+  boolean b;
+
+  ConstantReturnValueCondition() {
+    exists(Method m, Call c, Expr expr |
+      m = any(SystemStringClass s).getIsNullOrEmptyMethod() and
+      c.getTarget() = m and
+      this = c and
+      expr = c.getArgument(0) and
+      expr.hasValue() and
+      if expr.getValue().length() > 0 and not expr instanceof NullLiteral
+      then b = false
+      else b = true
+    )
+  }
+
+  override string getMessage() {
+    if b = true
+    then result = "Expression is always 'true'."
+    else result = "Expression is always 'false'."
+  }
+}
+
 /** A constant loop condition. */
 class ConstantLoopCondition extends ConstantBooleanCondition {
   ConstantLoopCondition() { this = any(LoopStmt ls).getCondition() }
diff --git a/csharp/ql/src/change-notes/released/2022-11-07-constant-expression.md b/csharp/ql/src/change-notes/released/2022-11-07-constant-expression.md
new file mode 100644
index 00000000000..9e2d667d2eb
--- /dev/null
+++ b/csharp/ql/src/change-notes/released/2022-11-07-constant-expression.md
@@ -0,0 +1,4 @@
+---
+category: minorAnalysis
+---
+* The `Constant Condition` query was extended to catch cases when `String.IsNullOrEmpty` returns a constant value. 
\ No newline at end of file
diff --git a/csharp/ql/test/query-tests/Bad Practices/Control-Flow/ConstantCondition/ConstantCondition.expected b/csharp/ql/test/query-tests/Bad Practices/Control-Flow/ConstantCondition/ConstantCondition.expected
index 17a51125c4c..064837e8552 100644
--- a/csharp/ql/test/query-tests/Bad Practices/Control-Flow/ConstantCondition/ConstantCondition.expected	
+++ b/csharp/ql/test/query-tests/Bad Practices/Control-Flow/ConstantCondition/ConstantCondition.expected	
@@ -19,6 +19,10 @@
 | ConstantIfCondition.cs:11:17:11:29 | ... == ... | Condition always evaluates to 'true'. |
 | ConstantIfCondition.cs:14:17:14:21 | false | Condition always evaluates to 'false'. |
 | ConstantIfCondition.cs:17:17:17:26 | ... == ... | Condition always evaluates to 'true'. |
+| ConstantIsNullOrEmpty.cs:10:21:10:54 | call to method IsNullOrEmpty | Expression is always 'false'. |
+| ConstantIsNullOrEmpty.cs:46:21:46:46 | call to method IsNullOrEmpty | Expression is always 'true'. |
+| ConstantIsNullOrEmpty.cs:50:21:50:44 | call to method IsNullOrEmpty | Expression is always 'true'. |
+| ConstantIsNullOrEmpty.cs:54:21:54:45 | call to method IsNullOrEmpty | Expression is always 'false'. |
 | ConstantNullCoalescingLeftHandOperand.cs:11:24:11:34 | access to constant NULL_OBJECT | Expression is never 'null'. |
 | ConstantNullCoalescingLeftHandOperand.cs:12:24:12:27 | null | Expression is always 'null'. |
 | ConstantWhileCondition.cs:12:20:12:32 | ... == ... | Condition always evaluates to 'true'. |
diff --git a/csharp/ql/test/query-tests/Bad Practices/Control-Flow/ConstantCondition/ConstantIsNullOrEmpty.cs b/csharp/ql/test/query-tests/Bad Practices/Control-Flow/ConstantCondition/ConstantIsNullOrEmpty.cs
new file mode 100644
index 00000000000..5cad2e818ab
--- /dev/null
+++ b/csharp/ql/test/query-tests/Bad Practices/Control-Flow/ConstantCondition/ConstantIsNullOrEmpty.cs	
@@ -0,0 +1,60 @@
+using System.Threading.Tasks;
+
+namespace ConstantIsNullOrEmpty
+{
+    internal class Program
+    {
+        static void Main(string[] args)
+        {
+            {
+                if (string.IsNullOrEmpty(nameof(args))) // bad: always false
+                {
+                }
+
+                string? x = null;
+                if (string.IsNullOrEmpty(x)) // would be nice... bad: always true
+                {
+                }
+
+                string y = "";
+                if (string.IsNullOrEmpty(y)) // would be nice... bad: always true
+                {
+                }
+
+                if (args[1] != null)
+                    y = "b";
+                if (string.IsNullOrEmpty(y)) // good: non-constant
+                {
+                }
+
+                string z = " ";
+                if (string.IsNullOrEmpty(z)) // would be nice... bad: always false
+                {
+                }
+
+                string a = "a";
+                if (string.IsNullOrEmpty(a)) // would be nice... bad: always false
+                {
+                }
+
+                if (args[1] != null)
+                    a = "";
+                if (string.IsNullOrEmpty(a)) // good: non-constant
+                {
+                }
+
+                if (string.IsNullOrEmpty(null)) // bad: always true
+                {
+                }
+
+                if (string.IsNullOrEmpty("")) // bad: always true
+                {
+                }
+
+                if (string.IsNullOrEmpty(" ")) // bad: always false
+                {
+                }
+            }
+        }
+    }
+}
\ No newline at end of file

From e122f94c1c5b2cbf87c2c2b8a9473db2cdc035a8 Mon Sep 17 00:00:00 2001
From: JarLob <jarlob@gmail.com>
Date: Mon, 7 Nov 2022 13:38:05 +0100
Subject: [PATCH 0071/1420] Move to isBooleanConstant

---
 .../controlflow/internal/Completion.qll       | 11 +++++++++
 .../Control-Flow/ConstantCondition.ql         | 24 -------------------
 .../ConstantCondition.expected                |  8 +++----
 3 files changed, 15 insertions(+), 28 deletions(-)

diff --git a/csharp/ql/lib/semmle/code/csharp/controlflow/internal/Completion.qll b/csharp/ql/lib/semmle/code/csharp/controlflow/internal/Completion.qll
index bda14e0b4ae..2b4adad031f 100644
--- a/csharp/ql/lib/semmle/code/csharp/controlflow/internal/Completion.qll
+++ b/csharp/ql/lib/semmle/code/csharp/controlflow/internal/Completion.qll
@@ -199,6 +199,17 @@ private predicate isBooleanConstant(Expr e, boolean value) {
     value = false
     or
     isConstantComparison(e, value)
+    or
+    exists(Method m, Call c, Expr expr |
+      m = any(SystemStringClass s).getIsNullOrEmptyMethod() and
+      c.getTarget() = m and
+      e = c and
+      expr = c.getArgument(0) and
+      expr.hasValue() and
+      if expr.getValue().length() > 0 and not expr instanceof NullLiteral
+      then value = false
+      else value = true
+    )
   )
 }
 
diff --git a/csharp/ql/src/Bad Practices/Control-Flow/ConstantCondition.ql b/csharp/ql/src/Bad Practices/Control-Flow/ConstantCondition.ql
index cb53d103f47..4d9fedb3633 100644
--- a/csharp/ql/src/Bad Practices/Control-Flow/ConstantCondition.ql	
+++ b/csharp/ql/src/Bad Practices/Control-Flow/ConstantCondition.ql	
@@ -73,30 +73,6 @@ class ConstantIfCondition extends ConstantBooleanCondition {
   }
 }
 
-/** A constant return value from a function with constant input expression. */
-class ConstantReturnValueCondition extends ConstantCondition {
-  boolean b;
-
-  ConstantReturnValueCondition() {
-    exists(Method m, Call c, Expr expr |
-      m = any(SystemStringClass s).getIsNullOrEmptyMethod() and
-      c.getTarget() = m and
-      this = c and
-      expr = c.getArgument(0) and
-      expr.hasValue() and
-      if expr.getValue().length() > 0 and not expr instanceof NullLiteral
-      then b = false
-      else b = true
-    )
-  }
-
-  override string getMessage() {
-    if b = true
-    then result = "Expression is always 'true'."
-    else result = "Expression is always 'false'."
-  }
-}
-
 /** A constant loop condition. */
 class ConstantLoopCondition extends ConstantBooleanCondition {
   ConstantLoopCondition() { this = any(LoopStmt ls).getCondition() }
diff --git a/csharp/ql/test/query-tests/Bad Practices/Control-Flow/ConstantCondition/ConstantCondition.expected b/csharp/ql/test/query-tests/Bad Practices/Control-Flow/ConstantCondition/ConstantCondition.expected
index 064837e8552..397d77531b2 100644
--- a/csharp/ql/test/query-tests/Bad Practices/Control-Flow/ConstantCondition/ConstantCondition.expected	
+++ b/csharp/ql/test/query-tests/Bad Practices/Control-Flow/ConstantCondition/ConstantCondition.expected	
@@ -19,10 +19,10 @@
 | ConstantIfCondition.cs:11:17:11:29 | ... == ... | Condition always evaluates to 'true'. |
 | ConstantIfCondition.cs:14:17:14:21 | false | Condition always evaluates to 'false'. |
 | ConstantIfCondition.cs:17:17:17:26 | ... == ... | Condition always evaluates to 'true'. |
-| ConstantIsNullOrEmpty.cs:10:21:10:54 | call to method IsNullOrEmpty | Expression is always 'false'. |
-| ConstantIsNullOrEmpty.cs:46:21:46:46 | call to method IsNullOrEmpty | Expression is always 'true'. |
-| ConstantIsNullOrEmpty.cs:50:21:50:44 | call to method IsNullOrEmpty | Expression is always 'true'. |
-| ConstantIsNullOrEmpty.cs:54:21:54:45 | call to method IsNullOrEmpty | Expression is always 'false'. |
+| ConstantIsNullOrEmpty.cs:10:21:10:54 | call to method IsNullOrEmpty | Condition always evaluates to 'false'. |
+| ConstantIsNullOrEmpty.cs:46:21:46:46 | call to method IsNullOrEmpty | Condition always evaluates to 'true'. |
+| ConstantIsNullOrEmpty.cs:50:21:50:44 | call to method IsNullOrEmpty | Condition always evaluates to 'true'. |
+| ConstantIsNullOrEmpty.cs:54:21:54:45 | call to method IsNullOrEmpty | Condition always evaluates to 'false'. |
 | ConstantNullCoalescingLeftHandOperand.cs:11:24:11:34 | access to constant NULL_OBJECT | Expression is never 'null'. |
 | ConstantNullCoalescingLeftHandOperand.cs:12:24:12:27 | null | Expression is always 'null'. |
 | ConstantWhileCondition.cs:12:20:12:32 | ... == ... | Condition always evaluates to 'true'. |

From d865f2ecf5d54ee6792c8a5abcdca4914b5ab87a Mon Sep 17 00:00:00 2001
From: JarLob <jarlob@gmail.com>
Date: Mon, 7 Nov 2022 14:19:24 +0100
Subject: [PATCH 0072/1420] Remove import

---
 csharp/ql/src/Bad Practices/Control-Flow/ConstantCondition.ql | 1 -
 1 file changed, 1 deletion(-)

diff --git a/csharp/ql/src/Bad Practices/Control-Flow/ConstantCondition.ql b/csharp/ql/src/Bad Practices/Control-Flow/ConstantCondition.ql
index 4d9fedb3633..a0542a94735 100644
--- a/csharp/ql/src/Bad Practices/Control-Flow/ConstantCondition.ql	
+++ b/csharp/ql/src/Bad Practices/Control-Flow/ConstantCondition.ql	
@@ -15,7 +15,6 @@
 import csharp
 import semmle.code.csharp.commons.Assertions
 import semmle.code.csharp.commons.Constants
-private import semmle.code.csharp.frameworks.System
 
 /** A constant condition. */
 abstract class ConstantCondition extends Expr {

From 5ec22bc180da321822f694b00a5f9614e6220071 Mon Sep 17 00:00:00 2001
From: erik-krogh <erik-krogh@github.com>
Date: Tue, 1 Nov 2022 09:52:31 +0100
Subject: [PATCH 0073/1420] add a shared regex pack

---
 .../2022-09-26-initial-version.md             |    4 +
 shared/regex/codeql-pack.lock.yml             |    4 +
 .../codeql/regex/OverlyLargeRangeQuery.qll    |  300 ++++
 shared/regex/codeql/regex/RegexTreeView.qll   |  451 ++++++
 .../codeql/regex/nfa/BadTagFilterQuery.qll    |  177 +++
 .../regex/nfa/ExponentialBackTracking.qll     |  355 +++++
 shared/regex/codeql/regex/nfa/NfaUtils.qll    | 1378 +++++++++++++++++
 .../regex/codeql/regex/nfa/RegexpMatching.qll |  176 +++
 .../regex/nfa/SuperlinearBackTracking.qll     |  440 ++++++
 shared/regex/qlpack.yml                       |    5 +
 10 files changed, 3290 insertions(+)
 create mode 100644 shared/regex/change-notes/2022-09-26-initial-version.md
 create mode 100644 shared/regex/codeql-pack.lock.yml
 create mode 100644 shared/regex/codeql/regex/OverlyLargeRangeQuery.qll
 create mode 100644 shared/regex/codeql/regex/RegexTreeView.qll
 create mode 100644 shared/regex/codeql/regex/nfa/BadTagFilterQuery.qll
 create mode 100644 shared/regex/codeql/regex/nfa/ExponentialBackTracking.qll
 create mode 100644 shared/regex/codeql/regex/nfa/NfaUtils.qll
 create mode 100644 shared/regex/codeql/regex/nfa/RegexpMatching.qll
 create mode 100644 shared/regex/codeql/regex/nfa/SuperlinearBackTracking.qll
 create mode 100644 shared/regex/qlpack.yml

diff --git a/shared/regex/change-notes/2022-09-26-initial-version.md b/shared/regex/change-notes/2022-09-26-initial-version.md
new file mode 100644
index 00000000000..e4d6e0490c2
--- /dev/null
+++ b/shared/regex/change-notes/2022-09-26-initial-version.md
@@ -0,0 +1,4 @@
+---
+category: minorAnalysis
+---
+* Initial release. Extracted common regex related code, including the ReDoS analysis, into a library pack to share code between languages.
diff --git a/shared/regex/codeql-pack.lock.yml b/shared/regex/codeql-pack.lock.yml
new file mode 100644
index 00000000000..a046f6d9786
--- /dev/null
+++ b/shared/regex/codeql-pack.lock.yml
@@ -0,0 +1,4 @@
+---
+dependencies: {}
+compiled: false
+lockVersion: 1.0.0
\ No newline at end of file
diff --git a/shared/regex/codeql/regex/OverlyLargeRangeQuery.qll b/shared/regex/codeql/regex/OverlyLargeRangeQuery.qll
new file mode 100644
index 00000000000..8d3a0b9c0ff
--- /dev/null
+++ b/shared/regex/codeql/regex/OverlyLargeRangeQuery.qll
@@ -0,0 +1,300 @@
+/**
+ * Classes and predicates for working with suspicious character ranges.
+ */
+
+private import RegexTreeView
+
+/**
+ * Classes and predicates implementing an analysis detecting suspicious character ranges.
+ */
+module Make<RegexTreeViewSig TreeImpl> {
+  private import TreeImpl
+
+  /**
+   * Gets a rank for `range` that is unique for ranges in the same file.
+   * Prioritizes ranges that match more characters.
+   */
+  int rankRange(RegExpCharacterRange range) {
+    range =
+      rank[result](RegExpCharacterRange r, int startline, int startcolumn, int low, int high |
+        r.hasLocationInfo(_, startline, startcolumn, _, _) and
+        isRange(r, low, high)
+      |
+        r order by (high - low) desc, startline, startcolumn
+      )
+  }
+
+  /** Holds if `range` spans from the unicode code points `low` to `high` (both inclusive). */
+  predicate isRange(RegExpCharacterRange range, int low, int high) {
+    exists(string lowc, string highc |
+      range.isRange(lowc, highc) and
+      low.toUnicode() = lowc and
+      high.toUnicode() = highc
+    )
+  }
+
+  /** Holds if `char` is an alpha-numeric character. */
+  predicate isAlphanumeric(string char) {
+    // written like this to avoid having a bindingset for the predicate
+    char = [[48 .. 57], [65 .. 90], [97 .. 122]].toUnicode() // 0-9, A-Z, a-z
+  }
+
+  /**
+   * Holds if the given ranges are from the same character class
+   * and there exists at least one character matched by both ranges.
+   */
+  predicate overlap(RegExpCharacterRange a, RegExpCharacterRange b) {
+    exists(RegExpCharacterClass clz |
+      a = clz.getAChild() and
+      b = clz.getAChild() and
+      a != b
+    |
+      exists(int alow, int ahigh, int blow, int bhigh |
+        isRange(a, alow, ahigh) and
+        isRange(b, blow, bhigh) and
+        alow <= bhigh and
+        blow <= ahigh
+      )
+    )
+  }
+
+  /**
+   * Holds if `range` overlaps with the char class `escape` from the same character class.
+   */
+  predicate overlapsWithCharEscape(RegExpCharacterRange range, RegExpCharacterClassEscape escape) {
+    exists(RegExpCharacterClass clz, string low, string high |
+      range = clz.getAChild() and
+      escape = clz.getAChild() and
+      range.isRange(low, high)
+    |
+      escape.getValue() = "w" and
+      getInRange(low, high).regexpMatch("\\w")
+      or
+      escape.getValue() = "d" and
+      getInRange(low, high).regexpMatch("\\d")
+      or
+      escape.getValue() = "s" and
+      getInRange(low, high).regexpMatch("\\s")
+    )
+  }
+
+  /** Gets the unicode code point for a `char`. */
+  bindingset[char]
+  int toCodePoint(string char) { result.toUnicode() = char }
+
+  /** A character range that appears to be overly wide. */
+  class OverlyWideRange instanceof RegExpCharacterRange {
+    OverlyWideRange() {
+      exists(int low, int high, int numChars |
+        isRange(this, low, high) and
+        numChars = (1 + high - low) and
+        this.getRootTerm().isUsedAsRegExp() and
+        numChars >= 10
+      |
+        // across the Z-a range (which includes backticks)
+        toCodePoint("Z") >= low and
+        toCodePoint("a") <= high
+        or
+        // across the 9-A range (which includes e.g. ; and ?)
+        toCodePoint("9") >= low and
+        toCodePoint("A") <= high
+        or
+        // a non-alphanumeric char as part of the range boundaries
+        exists(int bound | bound = [low, high] | not isAlphanumeric(bound.toUnicode())) and
+        // while still being ascii
+        low < 128 and
+        high < 128
+      ) and
+      // allowlist for known ranges
+      not this = allowedWideRanges()
+    }
+
+    /** Gets a string representation of a character class that matches the same chars as this range. */
+    string printEquivalent() { result = RangePrinter::printEquivalentCharClass(this) }
+
+    /** Gets a string representation of this range. */
+    string toString() { result = super.toString() }
+
+    /** Holds if `lo` is the lower bound of this character range and `hi` the upper bound. */
+    predicate isRange(string lo, string hi) { super.isRange(lo, hi) }
+  }
+
+  /** Gets a range that should not be reported as an overly wide range. */
+  RegExpCharacterRange allowedWideRanges() {
+    // ~ is the last printable ASCII character, it's used right in various wide ranges.
+    result.isRange(_, "~")
+    or
+    // the same with " " and "!". " " is the first printable character, and "!" is the first non-white-space printable character.
+    result.isRange([" ", "!"], _)
+    or
+    // the `[@-_]` range is intentional
+    result.isRange("@", "_")
+    or
+    // starting from the zero byte is a good indication that it's purposely matching a large range.
+    result.isRange(0.toUnicode(), _)
+  }
+
+  /** Gets a char between (and including) `low` and `high`. */
+  bindingset[low, high]
+  private string getInRange(string low, string high) {
+    result = [toCodePoint(low) .. toCodePoint(high)].toUnicode()
+  }
+
+  /** A module computing an equivalent character class for an overly wide range. */
+  module RangePrinter {
+    bindingset[char]
+    bindingset[result]
+    private string next(string char) {
+      exists(int prev, int next |
+        prev.toUnicode() = char and
+        next.toUnicode() = result and
+        next = prev + 1
+      )
+    }
+
+    /** Gets the points where the parts of the pretty printed range should be cut off. */
+    private string cutoffs() { result = ["A", "Z", "a", "z", "0", "9"] }
+
+    /** Gets the char to use in the low end of a range for a given `cut` */
+    private string lowCut(string cut) {
+      cut = ["A", "a", "0"] and
+      result = cut
+      or
+      cut = ["Z", "z", "9"] and
+      result = next(cut)
+    }
+
+    /** Gets the char to use in the high end of a range for a given `cut` */
+    private string highCut(string cut) {
+      cut = ["Z", "z", "9"] and
+      result = cut
+      or
+      cut = ["A", "a", "0"] and
+      next(result) = cut
+    }
+
+    /** Gets the cutoff char used for a given `part` of a range when pretty-printing it. */
+    private string cutoff(OverlyWideRange range, int part) {
+      exists(int low, int high | isRange(range, low, high) |
+        result =
+          rank[part + 1](string cut |
+            cut = cutoffs() and low < toCodePoint(cut) and toCodePoint(cut) < high
+          |
+            cut order by toCodePoint(cut)
+          )
+      )
+    }
+
+    /** Gets the number of parts we should print for a given `range`. */
+    private int parts(OverlyWideRange range) { result = 1 + count(cutoff(range, _)) }
+
+    /** Holds if the given part of a range should span from `low` to `high`. */
+    private predicate part(OverlyWideRange range, int part, string low, string high) {
+      // first part.
+      part = 0 and
+      (
+        range.isRange(low, high) and
+        parts(range) = 1
+        or
+        parts(range) >= 2 and
+        range.isRange(low, _) and
+        high = highCut(cutoff(range, part))
+      )
+      or
+      // middle
+      part >= 1 and
+      part < parts(range) - 1 and
+      low = lowCut(cutoff(range, part - 1)) and
+      high = highCut(cutoff(range, part))
+      or
+      // last.
+      part = parts(range) - 1 and
+      low = lowCut(cutoff(range, part - 1)) and
+      range.isRange(_, high)
+    }
+
+    /** Gets an escaped `char` for use in a character class. */
+    bindingset[char]
+    private string escape(string char) {
+      exists(string reg | reg = "(\\[|\\]|\\\\|-|/)" |
+        if char.regexpMatch(reg) then result = "\\" + char else result = char
+      )
+    }
+
+    /** Gets a part of the equivalent range. */
+    private string printEquivalentCharClass(OverlyWideRange range, int part) {
+      exists(string low, string high | part(range, part, low, high) |
+        if
+          isAlphanumeric(low) and
+          isAlphanumeric(high)
+        then result = low + "-" + high
+        else
+          result =
+            strictconcat(string char | char = getInRange(low, high) | escape(char) order by char)
+      )
+    }
+
+    /** Gets the entire pretty printed equivalent range. */
+    string printEquivalentCharClass(OverlyWideRange range) {
+      result =
+        strictconcat(string r, int part |
+          r = "[" and part = -1 and exists(range)
+          or
+          r = printEquivalentCharClass(range, part)
+          or
+          r = "]" and part = parts(range)
+        |
+          r order by part
+        )
+    }
+  }
+
+  /** Gets a char range that is overly large because of `reason`. */
+  RegExpCharacterRange getABadRange(string reason, int priority) {
+    result instanceof OverlyWideRange and
+    priority = 0 and
+    exists(string equiv | equiv = result.(OverlyWideRange).printEquivalent() |
+      if equiv.length() <= 50
+      then reason = "is equivalent to " + equiv
+      else reason = "is equivalent to " + equiv.substring(0, 50) + "..."
+    )
+    or
+    priority = 1 and
+    exists(RegExpCharacterRange other |
+      reason = "overlaps with " + other + " in the same character class" and
+      rankRange(result) < rankRange(other) and
+      overlap(result, other)
+    )
+    or
+    priority = 2 and
+    exists(RegExpCharacterClassEscape escape |
+      reason = "overlaps with " + escape + " in the same character class" and
+      overlapsWithCharEscape(result, escape)
+    )
+    or
+    reason = "is empty" and
+    priority = 3 and
+    exists(int low, int high |
+      isRange(result, low, high) and
+      low > high
+    )
+  }
+
+  /** Holds if `range` matches suspiciously many characters. */
+  predicate problem(RegExpCharacterRange range, string reason) {
+    reason =
+      strictconcat(string m, int priority |
+        range = getABadRange(m, priority)
+      |
+        m, ", and " order by priority desc
+      ) and
+    // specifying a range using an escape is usually OK.
+    not range.getAChild() instanceof RegExpEscape and
+    // Unicode escapes in strings are interpreted before it turns into a regexp,
+    // so e.g. [\u0001-\uFFFF] will just turn up as a range between two constants.
+    // We therefore exclude these ranges.
+    range.getRootTerm().getParent() instanceof RegExpLiteral and
+    // is used as regexp (mostly for JS where regular expressions are parsed eagerly)
+    range.getRootTerm().isUsedAsRegExp()
+  }
+}
diff --git a/shared/regex/codeql/regex/RegexTreeView.qll b/shared/regex/codeql/regex/RegexTreeView.qll
new file mode 100644
index 00000000000..f805bd83185
--- /dev/null
+++ b/shared/regex/codeql/regex/RegexTreeView.qll
@@ -0,0 +1,451 @@
+/**
+ * This file contains a `RegexTreeViewSig` module describing the syntax tree of regular expressions.
+ */
+
+/**
+ * A signature describing the syntax tree of regular expressions.
+ */
+signature module RegexTreeViewSig {
+  /**
+   * An element used in some way as or in a regular expression.
+   * This class exists to have a common supertype that all languages can agree on.
+   */
+  class Top;
+
+  /**
+   * An element containing a regular expression term, that is, either
+   * a string literal (parsed as a regular expression; the root of the parse tree)
+   * or another regular expression term (a descendant of the root).
+   */
+  class RegExpParent extends Top;
+
+  /**
+   * A regular expression literal.
+   *
+   * Note that this class does not cover regular expressions constructed by calling the built-in
+   * `RegExp` function.
+   *
+   * Example:
+   *
+   * ```
+   * /(?i)ab*c(d|e)$/
+   * ```
+   */
+  class RegExpLiteral extends RegExpParent;
+
+  /**
+   * A regular expression term, that is, a syntactic part of a regular expression.
+   * These are the tree nodes that form the parse tree of a regular expression literal.
+   */
+  class RegExpTerm extends Top {
+    /** Gets a child term of this term. */
+    RegExpTerm getAChild();
+
+    /**
+     * Holds if this is the root term of a regular expression.
+     */
+    predicate isRootTerm();
+
+    /**
+     * Gets the parent term of this regular expression term, or the
+     * regular expression literal if this is the root term.
+     */
+    RegExpParent getParent();
+
+    /**
+     * Holds if this term is part of a regular expression literal, or a string literal
+     * that is interpreted as a regular expression.
+     */
+    predicate isUsedAsRegExp();
+
+    /** Gets the outermost term of this regular expression. */
+    RegExpTerm getRootTerm();
+
+    /** Gets the raw source text of this term. */
+    string getRawValue();
+
+    /** Gets the `i`th child term of this term. */
+    RegExpTerm getChild(int i);
+
+    /** Gets the number of child terms of this term. */
+    int getNumChild();
+
+    /** Gets the regular expression term that is matched (textually) after this one, if any. */
+    RegExpTerm getSuccessor();
+
+    string toString();
+
+    predicate hasLocationInfo(
+      string filepath, int startline, int startcolumn, int endline, int endcolumn
+    );
+  }
+
+  /**
+   * A quantified regular expression term.
+   *
+   * Example:
+   *
+   * ```
+   * ((ECMA|Java)[sS]cript)*
+   * ```
+   */
+  class RegExpQuantifier extends RegExpTerm;
+
+  /**
+   * A star-quantified term.
+   *
+   * Example:
+   *
+   * ```
+   * \w*
+   * ```
+   */
+  class RegExpStar extends RegExpQuantifier;
+
+  /**
+   * An optional term.
+   *
+   * Example:
+   *
+   * ```
+   * ;?
+   * ```
+   */
+  class RegExpOpt extends RegExpQuantifier;
+
+  /**
+   * A plus-quantified term.
+   *
+   * Example:
+   *
+   * ```
+   * \w+
+   * ```
+   */
+  class RegExpPlus extends RegExpQuantifier;
+
+  /**
+   * A range-quantified term
+   *
+   * Examples:
+   *
+   * ```
+   * \w{2,4}
+   * \w{2,}
+   * \w{2}
+   * ```
+   */
+  class RegExpRange extends RegExpQuantifier {
+    /** Gets the lower bound of the range. */
+    int getLowerBound();
+
+    /**
+     * Gets the upper bound of the range, if any.
+     *
+     * If there is no upper bound, any number of repetitions is allowed.
+     * For a term of the form `r{lo}`, both the lower and the upper bound
+     * are `lo`.
+     */
+    int getUpperBound();
+  }
+
+  /**
+   * An escaped regular expression term, that is, a regular expression
+   * term starting with a backslash.
+   *
+   * Example:
+   *
+   * ```
+   * \.
+   * \w
+   * ```
+   */
+  class RegExpEscape extends RegExpTerm;
+
+  /**
+   * A character class escape in a regular expression.
+   *
+   * Examples:
+   *
+   * ```
+   * \w
+   * \S
+   * ```
+   */
+  class RegExpCharacterClassEscape extends RegExpEscape {
+    /** Gets the name of the character class; for example, `w` for `\w`. */
+    string getValue();
+  }
+
+  /**
+   * An alternative term, that is, a term of the form `a|b`.
+   *
+   * Example:
+   *
+   * ```
+   * ECMA|Java
+   * ```
+   */
+  class RegExpAlt extends RegExpTerm;
+
+  /**
+   * A grouped regular expression.
+   *
+   * Examples:
+   *
+   * ```
+   * (ECMA|Java)
+   * (?:ECMA|Java)
+   * (?<quote>['"])
+   * ```
+   */
+  class RegExpGroup extends RegExpTerm {
+    /**
+     * Gets the index of this capture group within the enclosing regular
+     * expression literal.
+     *
+     * For example, in the regular expression `/((a?).)(?:b)/`, the
+     * group `((a?).)` has index 1, the group `(a?)` nested inside it
+     * has index 2, and the group `(?:b)` has no index, since it is
+     * not a capture group.
+     */
+    int getNumber();
+  }
+
+  /**
+   * A back reference, that is, a term of the form `\i` or `\k<name>`
+   * in a regular expression.
+   *
+   * Examples:
+   *
+   * ```
+   * \1
+   * \k<quote>
+   * ```
+   */
+  class RegExpBackRef extends RegExpTerm {
+    /** Gets the capture group this back reference refers to. */
+    RegExpGroup getGroup();
+  }
+
+  /**
+   * A sequence term.
+   *
+   * Example:
+   *
+   * ```
+   * (ECMA|Java)Script
+   * ```
+   *
+   * This is a sequence with the elements `(ECMA|Java)` and `Script`.
+   */
+  class RegExpSequence extends RegExpTerm;
+
+  /**
+   * A zero-width lookahead or lookbehind assertion.
+   *
+   * Examples:
+   *
+   * ```
+   * (?=\w)
+   * (?!\n)
+   * (?<=\.)
+   * (?<!\\)
+   * ```
+   */
+  class RegExpSubPattern extends RegExpTerm {
+    /** Gets the lookahead term. */
+    RegExpTerm getOperand();
+  }
+
+  /**
+   * A zero-width lookahead assertion.
+   *
+   * Examples:
+   *
+   * ```
+   * (?=\w)
+   * (?!\n)
+   * ```
+   */
+  class RegExpLookahead extends RegExpSubPattern;
+
+  /**
+   * A positive-lookahead assertion.
+   *
+   * Examples:
+   *
+   * ```
+   * (?=\w)
+   * ```
+   */
+  class RegExpPositiveLookahead extends RegExpLookahead;
+
+  /**
+   * A zero-width lookbehind assertion.
+   *
+   * Examples:
+   *
+   * ```
+   * (?<=\.)
+   * (?<!\\)
+   * ```
+   */
+  class RegExpLookbehind extends RegExpSubPattern;
+
+  /**
+   * A positive-lookbehind assertion.
+   *
+   * Examples:
+   *
+   * ```
+   * (?<=\.)
+   * ```
+   */
+  class RegExpPositiveLookbehind extends RegExpLookbehind;
+
+  /**
+   * A constant regular expression term, that is, a regular expression
+   * term matching a single string.
+   *
+   * Example:
+   *
+   * ```
+   * abc
+   * ```
+   */
+  class RegExpConstant extends RegExpTerm {
+    /** Gets the string matched by this constant term. */
+    string getValue();
+
+    /**
+     * Holds if this constant represents a valid Unicode character (as opposed
+     * to a surrogate code point that does not correspond to a character by itself.)
+     */
+    predicate isCharacter();
+  }
+
+  /**
+   * A character class in a regular expression.
+   *
+   * Examples:
+   *
+   * ```
+   * [a-z_]
+   * [^<>&]
+   * ```
+   */
+  class RegExpCharacterClass extends RegExpTerm {
+    /**
+     * Holds if this character class matches any character.
+     */
+    predicate isUniversalClass();
+
+    /** Holds if this is an inverted character class, that is, a term of the form `[^...]`. */
+    predicate isInverted();
+  }
+
+  /**
+   * A character range in a character class in a regular expression.
+   *
+   * Example:
+   *
+   * ```
+   * a-z
+   * ```
+   */
+  class RegExpCharacterRange extends RegExpTerm {
+    /** Holds if `lo` is the lower bound of this character range and `hi` the upper bound. */
+    predicate isRange(string lo, string hi);
+  }
+
+  /**
+   * A dot regular expression.
+   *
+   * Example:
+   *
+   * ```
+   * .
+   * ```
+   */
+  class RegExpDot extends RegExpTerm;
+
+  /**
+   * A dollar assertion `$` matching the end of a line.
+   *
+   * Example:
+   *
+   * ```
+   * $
+   * ```
+   */
+  class RegExpDollar extends RegExpTerm;
+
+  /**
+   * A caret assertion `^` matching the beginning of a line.
+   *
+   * Example:
+   *
+   * ```
+   * ^
+   * ```
+   */
+  class RegExpCaret extends RegExpTerm;
+
+  /**
+   * A word boundary assertion.
+   *
+   * Example:
+   *
+   * ```
+   * \b
+   * ```
+   */
+  class RegExpWordBoundary extends RegExpTerm;
+
+  /**
+   * A regular expression term that permits unlimited repetitions.
+   */
+  class InfiniteRepetitionQuantifier extends RegExpQuantifier;
+
+  /**
+   * Holds if the regular expression should not be considered.
+   *
+   * For javascript we make the pragmatic performance optimization to ignore minified files.
+   */
+  predicate isExcluded(RegExpParent parent);
+
+  /**
+   * Holds if `term` is a possessive quantifier.
+   * As javascript's regexes do not support possessive quantifiers, this never holds, but is used by the shared library.
+   */
+  predicate isPossessive(RegExpQuantifier term);
+
+  /**
+   * Holds if the regex that `term` is part of is used in a way that ignores any leading prefix of the input it's matched against.
+   * Not yet implemented for JavaScript.
+   */
+  predicate matchesAnyPrefix(RegExpTerm term);
+
+  /**
+   * Holds if the regex that `term` is part of is used in a way that ignores any trailing suffix of the input it's matched against.
+   * Not yet implemented for JavaScript.
+   */
+  predicate matchesAnySuffix(RegExpTerm term);
+
+  /**
+   * Holds if `term` is an escape class representing e.g. `\d`.
+   * `clazz` is which character class it represents, e.g. "d" for `\d`.
+   */
+  predicate isEscapeClass(RegExpTerm term, string clazz);
+
+  /**
+   * Holds if `root` has the `i` flag for case-insensitive matching.
+   */
+  predicate isIgnoreCase(RegExpTerm root);
+
+  /**
+   * Holds if `root` has the `s` flag for multi-line matching.
+   */
+  predicate isDotAll(RegExpTerm root);
+}
diff --git a/shared/regex/codeql/regex/nfa/BadTagFilterQuery.qll b/shared/regex/codeql/regex/nfa/BadTagFilterQuery.qll
new file mode 100644
index 00000000000..c9c254fe990
--- /dev/null
+++ b/shared/regex/codeql/regex/nfa/BadTagFilterQuery.qll
@@ -0,0 +1,177 @@
+/**
+ * Provides predicates for reasoning about bad tag filter vulnerabilities.
+ */
+
+private import NfaUtils as NfaUtils
+private import RegexpMatching as RM
+private import codeql.regex.RegexTreeView
+
+/**
+ * Module implementing classes and predicates reasoing about bad tag filter vulnerabilities.
+ */
+module Make<RegexTreeViewSig TreeImpl> {
+  private import TreeImpl
+  import RM::Make<TreeImpl>
+
+  /**
+   * Holds if the regexp `root` should be tested against `str`.
+   * Implements the `isRegexpMatchingCandidateSig` signature from `RegexpMatching`.
+   * `ignorePrefix` toggles whether the regular expression should be treated as accepting any prefix if it's unanchored.
+   * `testWithGroups` toggles whether it's tested which groups are filled by a given input string.
+   */
+  private predicate isBadTagFilterCandidate(
+    RootTerm root, string str, boolean ignorePrefix, boolean testWithGroups
+  ) {
+    // the regexp must mention "<" and ">" explicitly.
+    forall(string angleBracket | angleBracket = ["<", ">"] |
+      any(RegExpConstant term | term.getValue().matches("%" + angleBracket + "%")).getRootTerm() =
+        root
+    ) and
+    ignorePrefix = true and
+    (
+      str = ["<!-- foo -->", "<!-- foo --!>", "<!- foo ->", "<foo>", "<script>"] and
+      testWithGroups = true
+      or
+      str =
+        [
+          "<!-- foo -->", "<!- foo ->", "<!-- foo --!>", "<!-- foo\n -->", "<script>foo</script>",
+          "<script \n>foo</script>", "<script >foo\n</script>", "<foo ></foo>", "<foo>",
+          "<foo src=\"foo\"></foo>", "<script>", "<script src=\"foo\"></script>",
+          "<script src='foo'></script>", "<SCRIPT>foo</SCRIPT>", "<script\tsrc=\"foo\"/>",
+          "<script\tsrc='foo'></script>", "<sCrIpT>foo</ScRiPt>",
+          "<script src=\"foo\">foo</script >", "<script src=\"foo\">foo</script foo=\"bar\">",
+          "<script src=\"foo\">foo</script\t\n bar>"
+        ] and
+      testWithGroups = false
+    )
+  }
+
+  /**
+   * A regexp that matches some string from the `isBadTagFilterCandidate` predicate.
+   */
+  class HtmlMatchingRegExp instanceof RootTerm {
+    HtmlMatchingRegExp() { RegexpMatching<isBadTagFilterCandidate/4>::matches(this, _) }
+
+    /** Holds if this regexp matched `str`, where `str` is one of the string from `isBadTagFilterCandidate`. */
+    predicate matches(string str) { RegexpMatching<isBadTagFilterCandidate/4>::matches(this, str) }
+
+    /** Holds if this regexp fills capture group `g' when matching `str', where `str` is one of the string from `isBadTagFilterCandidate`. */
+    predicate fillsCaptureGroup(string str, int g) {
+      RegexpMatching<isBadTagFilterCandidate/4>::fillsCaptureGroup(this, str, g)
+    }
+
+    /** Gets a string representation of this term. */
+    string toString() { result = super.toString() }
+
+    /** Holds if this term has the specified location. */
+    predicate hasLocationInfo(
+      string filepath, int startline, int startcolumn, int endline, int endcolumn
+    ) {
+      super.hasLocationInfo(filepath, startline, startcolumn, endline, endcolumn)
+    }
+  }
+
+  /**
+   * Holds if `regexp` matches some HTML tags, but misses some HTML tags that it should match.
+   *
+   * When adding a new case to this predicate, make sure the test string used in `matches(..)` calls are present in `HTMLMatchingRegExp::test` / `HTMLMatchingRegExp::testWithGroups`.
+   */
+  predicate isBadRegexpFilter(HtmlMatchingRegExp regexp, string msg) {
+    // CVE-2021-33829 - matching both "<!-- foo -->" and "<!-- foo --!>", but in different capture groups
+    regexp.matches("<!-- foo -->") and
+    regexp.matches("<!-- foo --!>") and
+    exists(int a, int b | a != b |
+      regexp.fillsCaptureGroup("<!-- foo -->", a) and
+      // <!-- foo --> might be ambiguously parsed (matching both capture groups), and that is ok here.
+      regexp.fillsCaptureGroup("<!-- foo --!>", b) and
+      not regexp.fillsCaptureGroup("<!-- foo --!>", a) and
+      msg =
+        "Comments ending with --> are matched differently from comments ending with --!>. The first is matched with capture group "
+          + a + " and comments ending with --!> are matched with capture group " +
+          strictconcat(int i | regexp.fillsCaptureGroup("<!-- foo --!>", i) | i.toString(), ", ") +
+          "."
+    )
+    or
+    // CVE-2020-17480 - matching "<!-- foo -->" and other tags, but not "<!-- foo --!>".
+    exists(int group, int other |
+      group != other and
+      regexp.fillsCaptureGroup("<!-- foo -->", group) and
+      regexp.fillsCaptureGroup("<foo>", other) and
+      not regexp.matches("<!-- foo --!>") and
+      not regexp.fillsCaptureGroup("<!-- foo -->", any(int i | i != group)) and
+      not regexp.fillsCaptureGroup("<!- foo ->", group) and
+      not regexp.fillsCaptureGroup("<foo>", group) and
+      not regexp.fillsCaptureGroup("<script>", group) and
+      msg =
+        "This regular expression only parses --> (capture group " + group +
+          ") and not --!> as an HTML comment end tag."
+    )
+    or
+    regexp.matches("<!-- foo -->") and
+    not regexp.matches("<!-- foo\n -->") and
+    not regexp.matches("<!- foo ->") and
+    not regexp.matches("<foo>") and
+    not regexp.matches("<script>") and
+    msg = "This regular expression does not match comments containing newlines."
+    or
+    regexp.matches("<script>foo</script>") and
+    regexp.matches("<script src=\"foo\"></script>") and
+    not regexp.matches("<foo ></foo>") and
+    (
+      not regexp.matches("<script \n>foo</script>") and
+      msg = "This regular expression matches <script></script>, but not <script \\n></script>"
+      or
+      not regexp.matches("<script >foo\n</script>") and
+      msg = "This regular expression matches <script>...</script>, but not <script >...\\n</script>"
+    )
+    or
+    regexp.matches("<script>foo</script>") and
+    regexp.matches("<script src=\"foo\"></script>") and
+    not regexp.matches("<script src='foo'></script>") and
+    not regexp.matches("<foo>") and
+    msg =
+      "This regular expression does not match script tags where the attribute uses single-quotes."
+    or
+    regexp.matches("<script>foo</script>") and
+    regexp.matches("<script src='foo'></script>") and
+    not regexp.matches("<script src=\"foo\"></script>") and
+    not regexp.matches("<foo>") and
+    msg =
+      "This regular expression does not match script tags where the attribute uses double-quotes."
+    or
+    regexp.matches("<script>foo</script>") and
+    regexp.matches("<script src='foo'></script>") and
+    not regexp.matches("<script\tsrc='foo'></script>") and
+    not regexp.matches("<foo>") and
+    not regexp.matches("<foo src=\"foo\"></foo>") and
+    msg =
+      "This regular expression does not match script tags where tabs are used between attributes."
+    or
+    regexp.matches("<script>foo</script>") and
+    not isIgnoreCase(regexp) and
+    not regexp.matches("<foo>") and
+    not regexp.matches("<foo ></foo>") and
+    (
+      not regexp.matches("<SCRIPT>foo</SCRIPT>") and
+      msg = "This regular expression does not match upper case <SCRIPT> tags."
+      or
+      not regexp.matches("<sCrIpT>foo</ScRiPt>") and
+      regexp.matches("<SCRIPT>foo</SCRIPT>") and
+      msg = "This regular expression does not match mixed case <sCrIpT> tags."
+    )
+    or
+    regexp.matches("<script src=\"foo\"></script>") and
+    not regexp.matches("<foo>") and
+    not regexp.matches("<foo ></foo>") and
+    (
+      not regexp.matches("<script src=\"foo\">foo</script >") and
+      msg = "This regular expression does not match script end tags like </script >."
+      or
+      not regexp.matches("<script src=\"foo\">foo</script foo=\"bar\">") and
+      msg = "This regular expression does not match script end tags like </script foo=\"bar\">."
+      or
+      not regexp.matches("<script src=\"foo\">foo</script\t\n bar>") and
+      msg = "This regular expression does not match script end tags like </script\\t\\n bar>."
+    )
+  }
+}
diff --git a/shared/regex/codeql/regex/nfa/ExponentialBackTracking.qll b/shared/regex/codeql/regex/nfa/ExponentialBackTracking.qll
new file mode 100644
index 00000000000..a2a35298b37
--- /dev/null
+++ b/shared/regex/codeql/regex/nfa/ExponentialBackTracking.qll
@@ -0,0 +1,355 @@
+/**
+ * This library implements the analysis described in the following two papers:
+ *
+ *   James Kirrage, Asiri Rathnayake, Hayo Thielecke: Static Analysis for
+ *     Regular Expression Denial-of-Service Attacks. NSS 2013.
+ *     (http://www.cs.bham.ac.uk/~hxt/research/reg-exp-sec.pdf)
+ *   Asiri Rathnayake, Hayo Thielecke: Static Analysis for Regular Expression
+ *     Exponential Runtime via Substructural Logics. 2014.
+ *     (https://www.cs.bham.ac.uk/~hxt/research/redos_full.pdf)
+ *
+ * The basic idea is to search for overlapping cycles in the NFA, that is,
+ * states `q` such that there are two distinct paths from `q` to itself
+ * that consume the same word `w`.
+ *
+ * For any such state `q`, an attack string can be constructed as follows:
+ * concatenate a prefix `v` that takes the NFA to `q` with `n` copies of
+ * the word `w` that leads back to `q` along two different paths, followed
+ * by a suffix `x` that is _not_ accepted in state `q`. A backtracking
+ * implementation will need to explore at least 2^n different ways of going
+ * from `q` back to itself while trying to match the `n` copies of `w`
+ * before finally giving up.
+ *
+ * Now in order to identify overlapping cycles, all we have to do is find
+ * pumpable forks, that is, states `q` that can transition to two different
+ * states `r1` and `r2` on the same input symbol `c`, such that there are
+ * paths from both `r1` and `r2` to `q` that consume the same word. The latter
+ * condition is equivalent to saying that `(q, q)` is reachable from `(r1, r2)`
+ * in the product NFA.
+ *
+ * This is what the library does. It makes a simple attempt to construct a
+ * prefix `v` leading into `q`, but only to improve the alert message.
+ * And the library tries to prove the existence of a suffix that ensures
+ * rejection. This check might fail, which can cause false positives.
+ *
+ * Finally, sometimes it depends on the translation whether the NFA generated
+ * for a regular expression has a pumpable fork or not. We implement one
+ * particular translation, which may result in false positives or negatives
+ * relative to some particular JavaScript engine.
+ *
+ * More precisely, the library constructs an NFA from a regular expression `r`
+ * as follows:
+ *
+ *   * Every sub-term `t` gives rise to an NFA state `Match(t,i)`, representing
+ *     the state of the automaton before attempting to match the `i`th character in `t`.
+ *   * There is one accepting state `Accept(r)`.
+ *   * There is a special `AcceptAnySuffix(r)` state, which accepts any suffix string
+ *     by using an epsilon transition to `Accept(r)` and an any transition to itself.
+ *   * Transitions between states may be labelled with epsilon, or an abstract
+ *     input symbol.
+ *   * Each abstract input symbol represents a set of concrete input characters:
+ *     either a single character, a set of characters represented by a
+ *     character class, or the set of all characters.
+ *   * The product automaton is constructed lazily, starting with pair states
+ *     `(q, q)` where `q` is a fork, and proceeding along an over-approximate
+ *     step relation.
+ *   * The over-approximate step relation allows transitions along pairs of
+ *     abstract input symbols where the symbols have overlap in the characters they accept.
+ *   * Once a trace of pairs of abstract input symbols that leads from a fork
+ *     back to itself has been identified, we attempt to construct a concrete
+ *     string corresponding to it, which may fail.
+ *   * Lastly we ensure that any state reached by repeating `n` copies of `w` has
+ *     a suffix `x` (possible empty) that is most likely __not__ accepted.
+ */
+
+private import NfaUtils as NfaUtils
+private import codeql.regex.RegexTreeView
+
+/**
+ * A parameterized module implementing the analysis described in the above papers.
+ */
+module Make<RegexTreeViewSig TreeImpl> {
+  private import TreeImpl
+  import NfaUtils::Make<TreeImpl>
+
+  /**
+   * Holds if state `s` might be inside a backtracking repetition.
+   */
+  pragma[noinline]
+  private predicate stateInsideBacktracking(State s) {
+    s.getRepr().getParent*() instanceof MaybeBacktrackingRepetition
+  }
+
+  /**
+   * A infinitely repeating quantifier that might backtrack.
+   */
+  private class MaybeBacktrackingRepetition instanceof InfiniteRepetitionQuantifier {
+    MaybeBacktrackingRepetition() {
+      exists(RegExpTerm child |
+        child instanceof RegExpAlt or
+        child instanceof RegExpQuantifier
+      |
+        child.getParent+() = this
+      )
+    }
+
+    string toString() { result = this.(InfiniteRepetitionQuantifier).toString() }
+  }
+
+  /**
+   * A state in the product automaton.
+   */
+  private newtype TStatePair =
+    /**
+     * We lazily only construct those states that we are actually
+     * going to need: `(q, q)` for every fork state `q`, and any
+     * pair of states that can be reached from a pair that we have
+     * already constructed. To cut down on the number of states,
+     * we only represent states `(q1, q2)` where `q1` is lexicographically
+     * no bigger than `q2`.
+     *
+     * States are only constructed if both states in the pair are
+     * inside a repetition that might backtrack.
+     */
+    MkStatePair(State q1, State q2) {
+      isFork(q1, _, _, _, _) and q2 = q1
+      or
+      (step(_, _, _, q1, q2) or step(_, _, _, q2, q1)) and
+      rankState(q1) <= rankState(q2)
+    }
+
+  /**
+   * Gets a unique number for a `state`.
+   * Is used to create an ordering of states, where states with the same `toString()` will be ordered differently.
+   */
+  private int rankState(State state) {
+    state =
+      rank[result](State s |
+        stateInsideBacktracking(s)
+      |
+        s order by getTermLocationString(s.getRepr())
+      )
+  }
+
+  /**
+   * A state in the product automaton.
+   */
+  private class StatePair extends TStatePair {
+    State q1;
+    State q2;
+
+    StatePair() { this = MkStatePair(q1, q2) }
+
+    /** Gets a textual representation of this element. */
+    string toString() { result = "(" + q1 + ", " + q2 + ")" }
+
+    /** Gets the first component of the state pair. */
+    State getLeft() { result = q1 }
+
+    /** Gets the second component of the state pair. */
+    State getRight() { result = q2 }
+  }
+
+  /**
+   * Holds for `(fork, fork)` state pairs when `isFork(fork, _, _, _, _)` holds.
+   *
+   * Used in `statePairDistToFork`
+   */
+  private predicate isStatePairFork(StatePair p) {
+    exists(State fork | p = MkStatePair(fork, fork) and isFork(fork, _, _, _, _))
+  }
+
+  /**
+   * Holds if there are transitions from the components of `q` to the corresponding
+   * components of `r`.
+   *
+   * Used in `statePairDistToFork`
+   */
+  private predicate reverseStep(StatePair r, StatePair q) { step(q, _, _, r) }
+
+  /**
+   * Gets the minimum length of a path from `q` to `r` in the
+   * product automaton.
+   */
+  private int statePairDistToFork(StatePair q, StatePair r) =
+    shortestDistances(isStatePairFork/1, reverseStep/2)(r, q, result)
+
+  /**
+   * Holds if there are transitions from `q` to `r1` and from `q` to `r2`
+   * labelled with `s1` and `s2`, respectively, where `s1` and `s2` do not
+   * trivially have an empty intersection.
+   *
+   * This predicate only holds for states associated with regular expressions
+   * that have at least one repetition quantifier in them (otherwise the
+   * expression cannot be vulnerable to ReDoS attacks anyway).
+   */
+  pragma[noopt]
+  private predicate isFork(State q, InputSymbol s1, InputSymbol s2, State r1, State r2) {
+    stateInsideBacktracking(q) and
+    exists(State q1, State q2 |
+      q1 = epsilonSucc*(q) and
+      delta(q1, s1, r1) and
+      q2 = epsilonSucc*(q) and
+      delta(q2, s2, r2) and
+      // Use pragma[noopt] to prevent intersect(s1,s2) from being the starting point of the join.
+      // From (s1,s2) it would find a huge number of intermediate state pairs (q1,q2) originating from different literals,
+      // and discover at the end that no `q` can reach both `q1` and `q2` by epsilon transitions.
+      exists(intersect(s1, s2))
+    |
+      s1 != s2
+      or
+      r1 != r2
+      or
+      r1 = r2 and q1 != q2
+      or
+      // If q can reach itself by epsilon transitions, then there are two distinct paths to the q1/q2 state:
+      // one that uses the loop and one that doesn't. The engine will separately attempt to match with each path,
+      // despite ending in the same state. The "fork" thus arises from the choice of whether to use the loop or not.
+      // To avoid every state in the loop becoming a fork state,
+      // we arbitrarily pick the InfiniteRepetitionQuantifier state as the canonical fork state for the loop
+      // (every epsilon-loop must contain such a state).
+      //
+      // We additionally require that the there exists another InfiniteRepetitionQuantifier `mid` on the path from `q` to itself.
+      // This is done to avoid flagging regular expressions such as `/(a?)*b/` - that only has polynomial runtime, and is detected by `js/polynomial-redos`.
+      // The below code is therefore a heuristic, that only flags regular expressions such as `/(a*)*b/`,
+      // and does not flag regular expressions such as `/(a?b?)c/`, but the latter pattern is not used frequently.
+      r1 = r2 and
+      q1 = q2 and
+      epsilonSucc+(q) = q and
+      exists(RegExpTerm term | term = q.getRepr() | term instanceof InfiniteRepetitionQuantifier) and
+      // One of the mid states is an infinite quantifier itself
+      exists(State mid, RegExpTerm term |
+        mid = epsilonSucc+(q) and
+        term = mid.getRepr() and
+        term instanceof InfiniteRepetitionQuantifier and
+        q = epsilonSucc+(mid) and
+        not mid = q
+      )
+    ) and
+    stateInsideBacktracking(r1) and
+    stateInsideBacktracking(r2)
+  }
+
+  /**
+   * Gets the state pair `(q1, q2)` or `(q2, q1)`; note that only
+   * one or the other is defined.
+   */
+  private StatePair mkStatePair(State q1, State q2) {
+    result = MkStatePair(q1, q2) or result = MkStatePair(q2, q1)
+  }
+
+  /**
+   * Holds if there are transitions from the components of `q` to the corresponding
+   * components of `r` labelled with `s1` and `s2`, respectively.
+   */
+  private predicate step(StatePair q, InputSymbol s1, InputSymbol s2, StatePair r) {
+    exists(State r1, State r2 | step(q, s1, s2, r1, r2) and r = mkStatePair(r1, r2))
+  }
+
+  /**
+   * Holds if there are transitions from the components of `q` to `r1` and `r2`
+   * labelled with `s1` and `s2`, respectively.
+   *
+   * We only consider transitions where the resulting states `(r1, r2)` are both
+   * inside a repetition that might backtrack.
+   */
+  pragma[noopt]
+  private predicate step(StatePair q, InputSymbol s1, InputSymbol s2, State r1, State r2) {
+    exists(State q1, State q2 | q.getLeft() = q1 and q.getRight() = q2 |
+      deltaClosed(q1, s1, r1) and
+      deltaClosed(q2, s2, r2) and
+      // use noopt to force the join on `intersect` to happen last.
+      exists(intersect(s1, s2))
+    ) and
+    stateInsideBacktracking(r1) and
+    stateInsideBacktracking(r2)
+  }
+
+  private newtype TTrace =
+    Nil() or
+    Step(InputSymbol s1, InputSymbol s2, TTrace t) { isReachableFromFork(_, _, s1, s2, t, _) }
+
+  /**
+   * A list of pairs of input symbols that describe a path in the product automaton
+   * starting from some fork state.
+   */
+  private class Trace extends TTrace {
+    /** Gets a textual representation of this element. */
+    string toString() {
+      this = Nil() and result = "Nil()"
+      or
+      exists(InputSymbol s1, InputSymbol s2, Trace t | this = Step(s1, s2, t) |
+        result = "Step(" + s1 + ", " + s2 + ", " + t + ")"
+      )
+    }
+  }
+
+  /**
+   * Holds if `r` is reachable from `(fork, fork)` under input `w`, and there is
+   * a path from `r` back to `(fork, fork)` with `rem` steps.
+   */
+  private predicate isReachableFromFork(State fork, StatePair r, Trace w, int rem) {
+    exists(InputSymbol s1, InputSymbol s2, Trace v |
+      isReachableFromFork(fork, r, s1, s2, v, rem) and
+      w = Step(s1, s2, v)
+    )
+  }
+
+  private predicate isReachableFromFork(
+    State fork, StatePair r, InputSymbol s1, InputSymbol s2, Trace v, int rem
+  ) {
+    // base case
+    exists(State q1, State q2 |
+      isFork(fork, s1, s2, q1, q2) and
+      r = MkStatePair(q1, q2) and
+      v = Nil() and
+      rem = statePairDistToFork(r, MkStatePair(fork, fork))
+    )
+    or
+    // recursive case
+    exists(StatePair p |
+      isReachableFromFork(fork, p, v, rem + 1) and
+      step(p, s1, s2, r) and
+      rem = statePairDistToFork(r, MkStatePair(fork, fork))
+    )
+  }
+
+  /**
+   * Gets a state in the product automaton from which `(fork, fork)` is
+   * reachable in zero or more epsilon transitions.
+   */
+  private StatePair getAForkPair(State fork) {
+    isFork(fork, _, _, _, _) and
+    result = MkStatePair(epsilonPred*(fork), epsilonPred*(fork))
+  }
+
+  /** An implementation of a chain containing chars for use by `Concretizer`. */
+  private module CharTreeImpl implements CharTree {
+    class CharNode = Trace;
+
+    CharNode getPrev(CharNode t) { t = Step(_, _, result) }
+
+    /** Holds if `n` is a trace that is used by `concretize` in `isPumpable`. */
+    predicate isARelevantEnd(CharNode n) {
+      exists(State f | isReachableFromFork(f, getAForkPair(f), n, _))
+    }
+
+    string getChar(CharNode t) {
+      exists(InputSymbol s1, InputSymbol s2 | t = Step(s1, s2, _) | result = intersect(s1, s2))
+    }
+  }
+
+  /**
+   * Holds if `fork` is a pumpable fork with word `w`.
+   */
+  private predicate isPumpable(State fork, string w) {
+    exists(StatePair q, Trace t |
+      isReachableFromFork(fork, q, t, _) and
+      q = getAForkPair(fork) and
+      w = Concretizer<CharTreeImpl>::concretize(t)
+    )
+  }
+
+  /** Holds if `state` has exponential ReDoS */
+  predicate hasReDoSResult = ReDoSPruning<isPumpable/2>::hasReDoSResult/4;
+}
diff --git a/shared/regex/codeql/regex/nfa/NfaUtils.qll b/shared/regex/codeql/regex/nfa/NfaUtils.qll
new file mode 100644
index 00000000000..3a7f5be203f
--- /dev/null
+++ b/shared/regex/codeql/regex/nfa/NfaUtils.qll
@@ -0,0 +1,1378 @@
+/**
+ * A shared library for creating and reasoning about NFA's.
+ */
+
+private import codeql.regex.RegexTreeView
+
+/**
+ * Classes and predicates that create an NFA and various algorithms for working with it.
+ */
+module Make<RegexTreeViewSig TreeImpl> {
+  private import TreeImpl
+
+  /**
+   * Gets the char after `c` (from a simplified ASCII table).
+   */
+  private string nextChar(string c) {
+    exists(int code | code = ascii(c) | code + 1 = ascii(result))
+  }
+
+  /**
+   * Gets an approximation for the ASCII code for `char`.
+   * Only the easily printable chars are included (so no newline, tab, null, etc).
+   */
+  private int ascii(string char) {
+    char =
+      rank[result](string c |
+        c =
+          "! \"#$%&'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\\]^_`abcdefghijklmnopqrstuvwxyz{|}~"
+              .charAt(_)
+      )
+  }
+
+  /**
+   * Holds if `t` matches at least an epsilon symbol.
+   *
+   * That is, this term does not restrict the language of the enclosing regular expression.
+   *
+   * This is implemented as an under-approximation, and this predicate does not hold for sub-patterns in particular.
+   */
+  predicate matchesEpsilon(RegExpTerm t) {
+    t instanceof RegExpStar
+    or
+    t instanceof RegExpOpt
+    or
+    t.(RegExpRange).getLowerBound() = 0
+    or
+    exists(RegExpTerm child |
+      child = t.getAChild() and
+      matchesEpsilon(child)
+    |
+      t instanceof RegExpAlt or
+      t instanceof RegExpGroup or
+      t instanceof RegExpPlus or
+      t instanceof RegExpRange
+    )
+    or
+    matchesEpsilon(t.(RegExpBackRef).getGroup())
+    or
+    forex(RegExpTerm child | child = t.(RegExpSequence).getAChild() | matchesEpsilon(child))
+  }
+
+  /**
+   * A lookahead/lookbehind that matches the empty string.
+   */
+  class EmptyPositiveSubPattern instanceof RegExpSubPattern {
+    EmptyPositiveSubPattern() {
+      (
+        this instanceof RegExpPositiveLookahead
+        or
+        this instanceof RegExpPositiveLookbehind
+      ) and
+      matchesEpsilon(this.getOperand())
+    }
+
+    /** Gets a string representation of this sub-pattern. */
+    string toString() { result = super.toString() }
+  }
+
+  /** DEPRECATED: Use `EmptyPositiveSubPattern` instead. */
+  deprecated class EmptyPositiveSubPatttern = EmptyPositiveSubPattern;
+
+  /**
+   * A branch in a disjunction that is the root node in a literal, or a literal
+   * whose root node is not a disjunction.
+   */
+  class RegExpRoot instanceof RegExpTerm {
+    RegExpRoot() {
+      exists(RegExpParent parent |
+        exists(RegExpAlt alt |
+          alt.isRootTerm() and
+          this = alt.getAChild() and
+          parent = alt.getParent()
+        )
+        or
+        this.isRootTerm() and
+        not this instanceof RegExpAlt and
+        parent = this.getParent()
+      )
+    }
+
+    /**
+     * Holds if this root term is relevant to the ReDoS analysis.
+     */
+    predicate isRelevant() {
+      // is actually used as a RegExp
+      super.isUsedAsRegExp() and
+      // not excluded for library specific reasons
+      not isExcluded(super.getRootTerm().getParent())
+    }
+
+    /** Gets a string representation of this root term. */
+    string toString() { result = this.(RegExpTerm).toString() }
+
+    /** Gets the outermost term of this regular expression. */
+    RegExpTerm getRootTerm() { result = super.getRootTerm() }
+  }
+
+  /**
+   * A constant in a regular expression that represents valid Unicode character(s).
+   */
+  private class RegexpCharacterConstant instanceof RegExpConstant {
+    RegexpCharacterConstant() { this.isCharacter() }
+
+    string toString() { result = this.(RegExpConstant).toString() }
+
+    RegExpTerm getRootTerm() { result = this.(RegExpConstant).getRootTerm() }
+
+    string getValue() { result = this.(RegExpConstant).getValue() }
+  }
+
+  /**
+   * A regexp term that is relevant for this ReDoS analysis.
+   */
+  class RelevantRegExpTerm instanceof RegExpTerm {
+    RelevantRegExpTerm() { getRoot(this).isRelevant() }
+
+    /** Gets a string representation of this term. */
+    string toString() { result = super.toString() }
+
+    /** Gets the raw source text of this term. */
+    string getRawValue() { result = super.getRawValue() }
+
+    /** Gets the outermost term of this regular expression. */
+    RegExpTerm getRootTerm() { result = super.getRootTerm() }
+  }
+
+  /**
+   * Gets a string for the full location of `t`.
+   */
+  string getTermLocationString(RegExpTerm t) {
+    exists(string file, int startLine, int startColumn, int endLine, int endColumn |
+      t.hasLocationInfo(file, startLine, startColumn, endLine, endColumn) and
+      result = file + ":" + startLine + ":" + startColumn + "-" + endLine + ":" + endColumn
+    )
+  }
+
+  /**
+   * Holds if `term` is the chosen canonical representative for all terms with string representation `str`.
+   * The string representation includes which flags are used with the regular expression.
+   *
+   * Using canonical representatives gives a huge performance boost when working with tuples containing multiple `InputSymbol`s.
+   * The number of `InputSymbol`s is decreased by 3 orders of magnitude or more in some larger benchmarks.
+   */
+  private predicate isCanonicalTerm(RelevantRegExpTerm term, string str) {
+    term =
+      min(RelevantRegExpTerm t |
+        str = t.getRawValue() + "|" + getCanonicalizationFlags(t.getRootTerm())
+      |
+        t order by getTermLocationString(t)
+      )
+  }
+
+  /**
+   * Gets a string representation of the flags used with the regular expression.
+   * Only the flags that are relevant for the canonicalization are included.
+   */
+  string getCanonicalizationFlags(RegExpTerm root) {
+    root.isRootTerm() and
+    (if isIgnoreCase(root) then result = "i" else result = "")
+  }
+
+  /**
+   * An abstract input symbol, representing a set of concrete characters.
+   */
+  private newtype TInputSymbol =
+    /** An input symbol corresponding to character `c`. */
+    Char(string c) {
+      c =
+        any(RegexpCharacterConstant cc |
+          cc instanceof RelevantRegExpTerm and
+          not isIgnoreCase(cc.getRootTerm())
+        ).getValue().charAt(_)
+      or
+      // normalize everything to lower case if the regexp is case insensitive
+      c =
+        any(RegexpCharacterConstant cc, string char |
+          cc instanceof RelevantRegExpTerm and
+          isIgnoreCase(cc.getRootTerm()) and
+          char = cc.getValue().charAt(_)
+        |
+          char.toLowerCase()
+        )
+    } or
+    /**
+     * An input symbol representing all characters matched by
+     * a (non-universal) character class that has string representation `charClassString`.
+     */
+    CharClass(string charClassString) {
+      exists(RelevantRegExpTerm recc | isCanonicalTerm(recc, charClassString) |
+        recc instanceof RegExpCharacterClass and
+        not recc.(RegExpCharacterClass).isUniversalClass()
+        or
+        isEscapeClass(recc, _)
+      )
+    } or
+    /** An input symbol representing all characters matched by `.`. */
+    Dot() or
+    /** An input symbol representing all characters. */
+    Any() or
+    /** An epsilon transition in the automaton. */
+    Epsilon()
+
+  /**
+   * Gets the canonical CharClass for `term`.
+   */
+  CharClass getCanonicalCharClass(RegExpTerm term) {
+    exists(string str | isCanonicalTerm(term, str) | result = CharClass(str))
+  }
+
+  /**
+   * Holds if `a` and `b` are input symbols from the same regexp.
+   */
+  private predicate sharesRoot(InputSymbol a, InputSymbol b) {
+    exists(RegExpRoot root |
+      belongsTo(a, root) and
+      belongsTo(b, root)
+    )
+  }
+
+  /**
+   * Holds if the `a` is an input symbol from a regexp that has root `root`.
+   */
+  private predicate belongsTo(InputSymbol a, RegExpRoot root) {
+    exists(State s | getRoot(s.getRepr()) = root |
+      delta(s, a, _)
+      or
+      delta(_, a, s)
+    )
+  }
+
+  /**
+   * An abstract input symbol, representing a set of concrete characters.
+   */
+  class InputSymbol extends TInputSymbol {
+    InputSymbol() { not this instanceof Epsilon }
+
+    /**
+     * Gets a string representation of this input symbol.
+     */
+    string toString() {
+      this = Char(result)
+      or
+      this = CharClass(result)
+      or
+      this = Dot() and result = "."
+      or
+      this = Any() and result = "[^]"
+    }
+  }
+
+  /**
+   * An abstract input symbol that represents a character class.
+   */
+  abstract class CharacterClass extends InputSymbol {
+    /**
+     * Gets a character that is relevant for intersection-tests involving this
+     * character class.
+     *
+     * Specifically, this is any of the characters mentioned explicitly in the
+     * character class, offset by one if it is inverted. For character class escapes,
+     * the result is as if the class had been written out as a series of intervals.
+     *
+     * This set is large enough to ensure that for any two intersecting character
+     * classes, one contains a relevant character from the other.
+     */
+    abstract string getARelevantChar();
+
+    /**
+     * Holds if this character class matches `char`.
+     */
+    bindingset[char]
+    abstract predicate matches(string char);
+
+    /**
+     * Gets a character matched by this character class.
+     */
+    string choose() { result = this.getARelevantChar() and this.matches(result) }
+  }
+
+  /**
+   * Provides implementations for `CharacterClass`.
+   */
+  private module CharacterClasses {
+    /**
+     * Holds if the character class `cc` has a child (constant or range) that matches `char`.
+     */
+    pragma[noinline]
+    predicate hasChildThatMatches(RegExpCharacterClass cc, string char) {
+      if isIgnoreCase(cc.getRootTerm())
+      then
+        // normalize everything to lower case if the regexp is case insensitive
+        exists(string c | hasChildThatMatchesIgnoringCasingFlags(cc, c) | char = c.toLowerCase())
+      else hasChildThatMatchesIgnoringCasingFlags(cc, char)
+    }
+
+    /**
+     * Holds if the character class `cc` has a child (constant or range) that matches `char`.
+     * Ignores whether the character class is inside a regular expression that has the ignore case flag.
+     */
+    pragma[noinline]
+    predicate hasChildThatMatchesIgnoringCasingFlags(RegExpCharacterClass cc, string char) {
+      exists(getCanonicalCharClass(cc)) and
+      exists(RegExpTerm child | child = cc.getAChild() |
+        char = child.(RegexpCharacterConstant).getValue()
+        or
+        rangeMatchesOnLetterOrDigits(child, char)
+        or
+        not rangeMatchesOnLetterOrDigits(child, _) and
+        char = getARelevantChar() and
+        exists(string lo, string hi | child.(RegExpCharacterRange).isRange(lo, hi) |
+          lo <= char and
+          char <= hi
+        )
+        or
+        exists(string charClass | isEscapeClass(child, charClass) |
+          charClass.toLowerCase() = charClass and
+          classEscapeMatches(charClass, char)
+          or
+          char = getARelevantChar() and
+          charClass.toUpperCase() = charClass and
+          not classEscapeMatches(charClass, char)
+        )
+      )
+    }
+
+    /**
+     * Holds if `range` is a range on lower-case, upper-case, or digits, and matches `char`.
+     * This predicate is used to restrict the searchspace for ranges by only joining `getAnyPossiblyMatchedChar`
+     * on a few ranges.
+     */
+    private predicate rangeMatchesOnLetterOrDigits(RegExpCharacterRange range, string char) {
+      exists(string lo, string hi |
+        range.isRange(lo, hi) and lo = lowercaseLetter() and hi = lowercaseLetter()
+      |
+        lo <= char and
+        char <= hi and
+        char = lowercaseLetter()
+      )
+      or
+      exists(string lo, string hi |
+        range.isRange(lo, hi) and lo = upperCaseLetter() and hi = upperCaseLetter()
+      |
+        lo <= char and
+        char <= hi and
+        char = upperCaseLetter()
+      )
+      or
+      exists(string lo, string hi | range.isRange(lo, hi) and lo = digit() and hi = digit() |
+        lo <= char and
+        char <= hi and
+        char = digit()
+      )
+    }
+
+    private string lowercaseLetter() { result = "abcdefghijklmnopqrstuvwxyz".charAt(_) }
+
+    private string upperCaseLetter() { result = "ABCDEFGHIJKLMNOPQRSTUVWXYZ".charAt(_) }
+
+    private string digit() { result = [0 .. 9].toString() }
+
+    /**
+     * Gets a char that could be matched by a regular expression.
+     * Includes all printable ascii chars, all constants mentioned in a regexp, and all chars matches by the regexp `/\s|\d|\w/`.
+     */
+    string getARelevantChar() {
+      exists(ascii(result))
+      or
+      exists(RegexpCharacterConstant c | result = c.getValue().charAt(_))
+      or
+      classEscapeMatches(_, result)
+    }
+
+    /**
+     * Gets a char that is mentioned in the character class `c`.
+     */
+    private string getAMentionedChar(RegExpCharacterClass c) {
+      exists(RegExpTerm child | child = c.getAChild() |
+        result = child.(RegexpCharacterConstant).getValue()
+        or
+        child.(RegExpCharacterRange).isRange(result, _)
+        or
+        child.(RegExpCharacterRange).isRange(_, result)
+        or
+        exists(string charClass | isEscapeClass(child, charClass) |
+          result = min(string s | classEscapeMatches(charClass.toLowerCase(), s))
+          or
+          result = max(string s | classEscapeMatches(charClass.toLowerCase(), s))
+        )
+      )
+    }
+
+    bindingset[char, cc]
+    private string caseNormalize(string char, RegExpTerm cc) {
+      if isIgnoreCase(cc.getRootTerm()) then result = char.toLowerCase() else result = char
+    }
+
+    /**
+     * An implementation of `CharacterClass` for positive (non inverted) character classes.
+     */
+    private class PositiveCharacterClass extends CharacterClass {
+      RegExpCharacterClass cc;
+
+      PositiveCharacterClass() { this = getCanonicalCharClass(cc) and not cc.isInverted() }
+
+      override string getARelevantChar() { result = caseNormalize(getAMentionedChar(cc), cc) }
+
+      override predicate matches(string char) { hasChildThatMatches(cc, char) }
+    }
+
+    /**
+     * An implementation of `CharacterClass` for inverted character classes.
+     */
+    private class InvertedCharacterClass extends CharacterClass {
+      RegExpCharacterClass cc;
+
+      InvertedCharacterClass() { this = getCanonicalCharClass(cc) and cc.isInverted() }
+
+      override string getARelevantChar() {
+        result = nextChar(caseNormalize(getAMentionedChar(cc), cc)) or
+        nextChar(result) = caseNormalize(getAMentionedChar(cc), cc)
+      }
+
+      bindingset[char]
+      override predicate matches(string char) { not hasChildThatMatches(cc, char) }
+    }
+
+    /**
+     * Holds if the character class escape `clazz` (\d, \s, or \w) matches `char`.
+     */
+    pragma[noinline]
+    private predicate classEscapeMatches(string clazz, string char) {
+      clazz = "d" and
+      char = "0123456789".charAt(_)
+      or
+      clazz = "s" and
+      char = [" ", "\t", "\r", "\n", 11.toUnicode(), 12.toUnicode()] // 11.toUnicode() = \v, 12.toUnicode() = \f
+      or
+      clazz = "w" and
+      char = "abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ0123456789_".charAt(_)
+    }
+
+    /**
+     * An implementation of `CharacterClass` for \d, \s, and \w.
+     */
+    private class PositiveCharacterClassEscape extends CharacterClass {
+      string charClass;
+      RegExpTerm cc;
+
+      PositiveCharacterClassEscape() {
+        isEscapeClass(cc, charClass) and
+        this = getCanonicalCharClass(cc) and
+        charClass = ["d", "s", "w"]
+      }
+
+      override string getARelevantChar() {
+        charClass = "d" and
+        result = ["0", "9"]
+        or
+        charClass = "s" and
+        result = " "
+        or
+        charClass = "w" and
+        if isIgnoreCase(cc.getRootTerm())
+        then result = ["a", "z", "_", "0", "9"]
+        else result = ["a", "Z", "_", "0", "9"]
+      }
+
+      override predicate matches(string char) { classEscapeMatches(charClass, char) }
+
+      override string choose() {
+        charClass = "d" and
+        result = "9"
+        or
+        charClass = "s" and
+        result = " "
+        or
+        charClass = "w" and
+        result = "a"
+      }
+    }
+
+    /**
+     * An implementation of `CharacterClass` for \D, \S, and \W.
+     */
+    private class NegativeCharacterClassEscape extends CharacterClass {
+      string charClass;
+
+      NegativeCharacterClassEscape() {
+        exists(RegExpTerm cc |
+          isEscapeClass(cc, charClass) and
+          this = getCanonicalCharClass(cc) and
+          charClass = ["D", "S", "W"]
+        )
+      }
+
+      override string getARelevantChar() {
+        charClass = "D" and
+        result = ["a", "Z", "!"]
+        or
+        charClass = "S" and
+        result = ["a", "9", "!"]
+        or
+        charClass = "W" and
+        result = [" ", "!"]
+      }
+
+      bindingset[char]
+      override predicate matches(string char) {
+        not classEscapeMatches(charClass.toLowerCase(), char)
+      }
+    }
+
+    /** Gets a representative for all char classes that match the same chars as `c`. */
+    CharacterClass normalize(CharacterClass c) {
+      exists(string normalization |
+        normalization = getNormalizationString(c) and
+        result =
+          min(CharacterClass cc, string raw |
+            getNormalizationString(cc) = normalization and cc = CharClass(raw)
+          |
+            cc order by raw
+          )
+      )
+    }
+
+    /** Gets a string representing all the chars matched by `c` */
+    private string getNormalizationString(CharacterClass c) {
+      (c instanceof PositiveCharacterClass or c instanceof PositiveCharacterClassEscape) and
+      result = concat(string char | c.matches(char) and char = CharacterClasses::getARelevantChar())
+      or
+      (c instanceof InvertedCharacterClass or c instanceof NegativeCharacterClassEscape) and
+      // the string produced by the concat can not contain repeated chars
+      // so by starting the below with "nn" we can guarantee that
+      // it will not overlap with the above case.
+      // and a negative char class can never match the same chars as a positive one, so we don't miss any results from this.
+      result =
+        "nn:" +
+          concat(string char | not c.matches(char) and char = CharacterClasses::getARelevantChar())
+    }
+  }
+
+  private class EdgeLabel extends TInputSymbol {
+    string toString() {
+      this = Epsilon() and result = ""
+      or
+      exists(InputSymbol s | this = s and result = s.toString())
+    }
+  }
+
+  /**
+   * A RegExp term that acts like a plus.
+   * Either it's a RegExpPlus, or it is a range {1,X} where X is >= 30.
+   * 30 has been chosen as a threshold because for exponential blowup 2^30 is enough to get a decent DOS attack.
+   */
+  private class EffectivelyPlus instanceof RegExpTerm {
+    EffectivelyPlus() {
+      this instanceof RegExpPlus
+      or
+      exists(RegExpRange range |
+        range.getLowerBound() = 1 and
+        (range.getUpperBound() >= 30 or not exists(range.getUpperBound()))
+      |
+        this = range
+      )
+    }
+
+    string toString() { result = this.(RegExpTerm).toString() }
+
+    RegExpTerm getAChild() { result = this.(RegExpTerm).getChild(_) }
+
+    RegExpTerm getChild(int i) { result = this.(RegExpTerm).getChild(i) }
+  }
+
+  /**
+   * A RegExp term that acts like a star.
+   * Either it's a RegExpStar, or it is a range {0,X} where X is >= 30.
+   */
+  private class EffectivelyStar instanceof RegExpTerm {
+    EffectivelyStar() {
+      this instanceof RegExpStar
+      or
+      exists(RegExpRange range |
+        range.getLowerBound() = 0 and
+        (range.getUpperBound() >= 30 or not exists(range.getUpperBound()))
+      |
+        this = range
+      )
+    }
+
+    string toString() { result = this.(RegExpTerm).toString() }
+
+    RegExpTerm getAChild() { result = this.(RegExpTerm).getAChild() }
+
+    RegExpTerm getChild(int i) { result = this.(RegExpTerm).getChild(i) }
+  }
+
+  /**
+   * A RegExp term that acts like a question mark.
+   * Either it's a RegExpQuestion, or it is a range {0,1}.
+   */
+  private class EffectivelyQuestion instanceof RegExpTerm {
+    EffectivelyQuestion() {
+      this instanceof RegExpOpt
+      or
+      exists(RegExpRange range | range.getLowerBound() = 0 and range.getUpperBound() = 1 |
+        this = range
+      )
+    }
+
+    string toString() { result = this.(RegExpTerm).toString() }
+
+    RegExpTerm getAChild() { result = this.(RegExpTerm).getAChild() }
+
+    RegExpTerm getChild(int i) { result = this.(RegExpTerm).getChild(i) }
+  }
+
+  /**
+   * Gets the state before matching `t`.
+   */
+  pragma[inline]
+  private State before(RegExpTerm t) { result = Match(t, 0) }
+
+  /**
+   * Gets a state the NFA may be in after matching `t`.
+   */
+  State after(RegExpTerm t) {
+    exists(RegExpAlt alt | t = alt.getAChild() | result = after(alt))
+    or
+    exists(RegExpSequence seq, int i | t = seq.getChild(i) |
+      result = before(seq.getChild(i + 1))
+      or
+      i + 1 = seq.getNumChild() and result = after(seq)
+    )
+    or
+    exists(RegExpGroup grp | t = grp.getAChild() | result = after(grp))
+    or
+    exists(EffectivelyStar star | t = star.getAChild() |
+      not isPossessive(star) and
+      result = before(star)
+    )
+    or
+    exists(EffectivelyPlus plus | t = plus.getAChild() |
+      not isPossessive(plus) and
+      result = before(plus)
+      or
+      result = after(plus)
+    )
+    or
+    exists(EffectivelyQuestion opt | t = opt.getAChild() | result = after(opt))
+    or
+    exists(RegExpRoot root | t = root |
+      if matchesAnySuffix(root) then result = AcceptAnySuffix(root) else result = Accept(root)
+    )
+  }
+
+  /**
+   * Holds if the NFA has a transition from `q1` to `q2` labelled with `lbl`.
+   */
+  predicate delta(State q1, EdgeLabel lbl, State q2) {
+    exists(RegexpCharacterConstant s, int i |
+      q1 = Match(s, i) and
+      (
+        not isIgnoreCase(s.getRootTerm()) and
+        lbl = Char(s.getValue().charAt(i))
+        or
+        // normalize everything to lower case if the regexp is case insensitive
+        isIgnoreCase(s.getRootTerm()) and
+        exists(string c | c = s.getValue().charAt(i) | lbl = Char(c.toLowerCase()))
+      ) and
+      (
+        q2 = Match(s, i + 1)
+        or
+        s.getValue().length() = i + 1 and
+        q2 = after(s)
+      )
+    )
+    or
+    exists(RegExpDot dot | q1 = before(dot) and q2 = after(dot) |
+      if isDotAll(dot.getRootTerm()) then lbl = Any() else lbl = Dot()
+    )
+    or
+    exists(RegExpCharacterClass cc |
+      cc.isUniversalClass() and q1 = before(cc) and lbl = Any() and q2 = after(cc)
+      or
+      q1 = before(cc) and
+      lbl =
+        CharacterClasses::normalize(CharClass(cc.getRawValue() + "|" +
+              getCanonicalizationFlags(cc.getRootTerm()))) and
+      q2 = after(cc)
+    )
+    or
+    exists(RegExpTerm cc | isEscapeClass(cc, _) |
+      q1 = before(cc) and
+      lbl =
+        CharacterClasses::normalize(CharClass(cc.getRawValue() + "|" +
+              getCanonicalizationFlags(cc.getRootTerm()))) and
+      q2 = after(cc)
+    )
+    or
+    exists(RegExpAlt alt | lbl = Epsilon() | q1 = before(alt) and q2 = before(alt.getAChild()))
+    or
+    exists(RegExpSequence seq | lbl = Epsilon() | q1 = before(seq) and q2 = before(seq.getChild(0)))
+    or
+    exists(RegExpGroup grp | lbl = Epsilon() | q1 = before(grp) and q2 = before(grp.getChild(0)))
+    or
+    exists(EffectivelyStar star | lbl = Epsilon() |
+      q1 = before(star) and q2 = before(star.getChild(0))
+      or
+      q1 = before(star) and q2 = after(star)
+    )
+    or
+    exists(EffectivelyPlus plus | lbl = Epsilon() |
+      q1 = before(plus) and q2 = before(plus.getChild(0))
+    )
+    or
+    exists(EffectivelyQuestion opt | lbl = Epsilon() |
+      q1 = before(opt) and q2 = before(opt.getChild(0))
+      or
+      q1 = before(opt) and q2 = after(opt)
+    )
+    or
+    exists(RegExpRoot root | q1 = AcceptAnySuffix(root) |
+      lbl = Any() and q2 = q1
+      or
+      lbl = Epsilon() and q2 = Accept(root)
+    )
+    or
+    exists(RegExpRoot root | q1 = Match(root, 0) |
+      matchesAnyPrefix(root) and lbl = Any() and q2 = q1
+    )
+    or
+    exists(RegExpDollar dollar | q1 = before(dollar) |
+      lbl = Epsilon() and q2 = Accept(getRoot(dollar))
+    )
+    or
+    exists(EmptyPositiveSubPattern empty | q1 = before(empty) |
+      lbl = Epsilon() and q2 = after(empty)
+    )
+  }
+
+  /**
+   * Gets a state that `q` has an epsilon transition to.
+   */
+  State epsilonSucc(State q) { delta(q, Epsilon(), result) }
+
+  /**
+   * Gets a state that has an epsilon transition to `q`.
+   */
+  State epsilonPred(State q) { q = epsilonSucc(result) }
+
+  /**
+   * Holds if there is a state `q` that can be reached from `q1`
+   * along epsilon edges, such that there is a transition from
+   * `q` to `q2` that consumes symbol `s`.
+   */
+  predicate deltaClosed(State q1, InputSymbol s, State q2) { delta(epsilonSucc*(q1), s, q2) }
+
+  /**
+   * Gets the root containing the given term, that is, the root of the literal,
+   * or a branch of the root disjunction.
+   */
+  RegExpRoot getRoot(RegExpTerm term) {
+    result = term or
+    result = getRoot(term.getParent())
+  }
+
+  /**
+   * A state in the NFA.
+   */
+  newtype TState =
+    /**
+     * A state representing that the NFA is about to match a term.
+     * `i` is used to index into multi-char literals.
+     */
+    Match(RelevantRegExpTerm t, int i) {
+      i = 0
+      or
+      exists(t.(RegexpCharacterConstant).getValue().charAt(i))
+    } or
+    /**
+     * An accept state, where exactly the given input string is accepted.
+     */
+    Accept(RegExpRoot l) { l.isRelevant() } or
+    /**
+     * An accept state, where the given input string, or any string that has this
+     * string as a prefix, is accepted.
+     */
+    AcceptAnySuffix(RegExpRoot l) { l.isRelevant() }
+
+  /**
+   * Gets a state that is about to match the regular expression `t`.
+   */
+  State mkMatch(RegExpTerm t) { result = Match(t, 0) }
+
+  /**
+   * A state in the NFA corresponding to a regular expression.
+   *
+   * Each regular expression literal `l` has one accepting state
+   * `Accept(l)`, one state that accepts all suffixes `AcceptAnySuffix(l)`,
+   * and a state `Match(t, i)` for every subterm `t`,
+   * which represents the state of the NFA before starting to
+   * match `t`, or the `i`th character in `t` if `t` is a constant.
+   */
+  class State extends TState {
+    RegExpTerm repr;
+
+    State() {
+      this = Match(repr, _) or
+      this = Accept(repr) or
+      this = AcceptAnySuffix(repr)
+    }
+
+    /**
+     * Gets a string representation for this state in a regular expression.
+     */
+    string toString() {
+      exists(int i | this = Match(repr, i) | result = "Match(" + repr + "," + i + ")")
+      or
+      this instanceof Accept and
+      result = "Accept(" + repr + ")"
+      or
+      this instanceof AcceptAnySuffix and
+      result = "AcceptAny(" + repr + ")"
+    }
+
+    /**
+     * Gets the term represented by this state.
+     */
+    RegExpTerm getRepr() { result = repr }
+  }
+
+  /**
+   * Gets the minimum char that is matched by both the character classes `c` and `d`.
+   */
+  private string getMinOverlapBetweenCharacterClasses(CharacterClass c, CharacterClass d) {
+    result = min(getAOverlapBetweenCharacterClasses(c, d))
+  }
+
+  /**
+   * Gets a char that is matched by both the character classes `c` and `d`.
+   * And `c` and `d` is not the same character class.
+   */
+  private string getAOverlapBetweenCharacterClasses(CharacterClass c, CharacterClass d) {
+    sharesRoot(c, d) and
+    result = [c.getARelevantChar(), d.getARelevantChar()] and
+    c.matches(result) and
+    d.matches(result) and
+    not c = d
+  }
+
+  /**
+   * Gets a character that is represented by both `c` and `d`.
+   */
+  string intersect(InputSymbol c, InputSymbol d) {
+    (sharesRoot(c, d) or [c, d] = Any()) and
+    (
+      c = Char(result) and
+      d = getAnInputSymbolMatching(result)
+      or
+      result = getMinOverlapBetweenCharacterClasses(c, d)
+      or
+      result = c.(CharacterClass).choose() and
+      (
+        d = c
+        or
+        d = Dot() and
+        not (result = "\n" or result = "\r")
+        or
+        d = Any()
+      )
+      or
+      (c = Dot() or c = Any()) and
+      (d = Dot() or d = Any()) and
+      result = "a"
+    )
+    or
+    result = intersect(d, c)
+  }
+
+  /**
+   * Gets a symbol that matches `char`.
+   */
+  bindingset[char]
+  InputSymbol getAnInputSymbolMatching(string char) {
+    result = Char(char)
+    or
+    result.(CharacterClass).matches(char)
+    or
+    result = Dot() and
+    not (char = "\n" or char = "\r")
+    or
+    result = Any()
+  }
+
+  /**
+   * Holds if `state` is a start state.
+   */
+  predicate isStartState(State state) {
+    state = mkMatch(any(RegExpRoot r))
+    or
+    exists(RegExpCaret car | state = after(car))
+  }
+
+  /**
+   * Holds if `state` is a candidate for ReDoS with string `pump`.
+   */
+  signature predicate isCandidateSig(State state, string pump);
+
+  /**
+   * Holds if `state` is a candidate for ReDoS.
+   */
+  signature predicate isCandidateSig(State state);
+
+  /**
+   * Predicates for constructing a prefix string that leads to a given state.
+   */
+  module PrefixConstruction<isCandidateSig/1 isCandidate> {
+    /**
+     * Holds if `state` is the textually last start state for the regular expression.
+     */
+    private predicate lastStartState(RelevantState state) {
+      exists(RegExpRoot root |
+        state =
+          max(RelevantState s |
+            isStartState(s) and
+            getRoot(s.getRepr()) = root
+          |
+            s order by getTermLocationString(s.getRepr())
+          )
+      )
+    }
+
+    /**
+     * Holds if there exists any transition (Epsilon() or other) from `a` to `b`.
+     */
+    private predicate existsTransition(State a, State b) { delta(a, _, b) }
+
+    /**
+     * Gets the minimum number of transitions it takes to reach `state` from the `start` state.
+     */
+    int prefixLength(State start, State state) =
+      shortestDistances(lastStartState/1, existsTransition/2)(start, state, result)
+
+    /**
+     * Gets the minimum number of transitions it takes to reach `state` from the start state.
+     */
+    private int lengthFromStart(State state) { result = prefixLength(_, state) }
+
+    /**
+     * Gets a string for which the regular expression will reach `state`.
+     *
+     * Has at most one result for any given `state`.
+     * This predicate will not always have a result even if there is a ReDoS issue in
+     * the regular expression.
+     */
+    string prefix(State state) {
+      lastStartState(state) and
+      result = ""
+      or
+      // the search stops past the last redos candidate state.
+      lengthFromStart(state) <= max(lengthFromStart(any(State s | isCandidate(s)))) and
+      exists(State prev |
+        // select a unique predecessor (by an arbitrary measure)
+        prev =
+          min(State s |
+            lengthFromStart(s) = lengthFromStart(state) - 1 and
+            delta(s, _, state)
+          |
+            s order by getTermLocationString(s.getRepr()), s.getRepr().toString()
+          )
+      |
+        // greedy search for the shortest prefix
+        result = prefix(prev) and delta(prev, Epsilon(), state)
+        or
+        not delta(prev, Epsilon(), state) and
+        result = prefix(prev) + getCanonicalEdgeChar(prev, state)
+      )
+    }
+
+    /**
+     * Gets a canonical char for which there exists a transition from `prev` to `next` in the NFA.
+     */
+    private string getCanonicalEdgeChar(State prev, State next) {
+      result =
+        min(string c | delta(prev, any(InputSymbol symbol | c = intersect(Any(), symbol)), next))
+    }
+
+    /** A state within a regular expression that contains a candidate state. */
+    class RelevantState instanceof State {
+      RelevantState() {
+        exists(State s | isCandidate(s) | getRoot(s.getRepr()) = getRoot(this.getRepr()))
+      }
+
+      /** Gets a string representation for this state in a regular expression. */
+      string toString() { result = State.super.toString() }
+
+      /** Gets the term represented by this state. */
+      RegExpTerm getRepr() { result = State.super.getRepr() }
+    }
+  }
+
+  /**
+   * A module for pruning candidate ReDoS states.
+   * The candidates are specified by the `isCandidate` signature predicate.
+   * The candidates are checked for rejecting suffixes and deduplicated,
+   * and the resulting ReDoS states are read by the `hasReDoSResult` predicate.
+   */
+  module ReDoSPruning<isCandidateSig/2 isCandidate> {
+    /**
+     * Holds if repeating `pump` starting at `state` is a candidate for causing backtracking.
+     * No check whether a rejected suffix exists has been made.
+     */
+    private predicate isReDoSCandidate(State state, string pump) {
+      isCandidate(state, pump) and
+      not state = acceptsAnySuffix() and // pruning early - these can never get stuck in a rejecting state.
+      (
+        not isCandidate(epsilonSucc+(state), _)
+        or
+        epsilonSucc+(state) = state and
+        state =
+          max(State s |
+            s = epsilonSucc+(state) and
+            isCandidate(s, _) and
+            s.getRepr() instanceof InfiniteRepetitionQuantifier
+          |
+            s order by getTermLocationString(s.getRepr())
+          )
+      )
+    }
+
+    /** Gets a state that can reach the `accept-any` state using only epsilon steps. */
+    private State acceptsAnySuffix() { epsilonSucc*(result) = AcceptAnySuffix(_) }
+
+    private predicate isCandidateState(State s) { isReDoSCandidate(s, _) }
+
+    import PrefixConstruction<isCandidateState/1> as Prefix
+
+    class RelevantState = Prefix::RelevantState;
+
+    /**
+     * Predicates for testing the presence of a rejecting suffix.
+     *
+     * These predicates are used to ensure that the all states reached from the fork
+     * by repeating `w` have a rejecting suffix.
+     *
+     * For example, a regexp like `/^(a+)+/` will accept any string as long the prefix is
+     * some number of `"a"`s, and it is therefore not possible to construct a rejecting suffix.
+     *
+     * A regexp like `/(a+)+$/` or `/(a+)+b/` trivially has a rejecting suffix,
+     * as the suffix "X" will cause both the regular expressions to be rejected.
+     *
+     * The string `w` is repeated any number of times because it needs to be
+     * infinitely repeatable for the attack to work.
+     * For the regular expression `/((ab)+)*abab/` the accepting state is not reachable from the fork
+     * using epsilon transitions. But any attempt at repeating `w` will end in a state that accepts all suffixes.
+     */
+    private module SuffixConstruction {
+      /**
+       * Holds if all states reachable from `fork` by repeating `w`
+       * are likely rejectable by appending some suffix.
+       */
+      predicate reachesOnlyRejectableSuffixes(State fork, string w) {
+        isReDoSCandidate(fork, w) and
+        forex(State next | next = process(fork, w, w.length() - 1) | isLikelyRejectable(next)) and
+        not getProcessPrevious(fork, _, w) = acceptsAnySuffix() // we stop `process(..)` early if we can, check here if it happened.
+      }
+
+      /**
+       * Holds if there likely exists a suffix starting from `s` that leads to the regular expression being rejected.
+       * This predicate might find impossible suffixes when searching for suffixes of length > 1, which can cause FPs.
+       */
+      pragma[noinline]
+      private predicate isLikelyRejectable(RelevantState s) {
+        // exists a reject edge with some char.
+        hasRejectEdge(s)
+        or
+        hasEdgeToLikelyRejectable(s)
+        or
+        // stopping here is rejection
+        isRejectState(s)
+      }
+
+      /**
+       * Holds if `s` is not an accept state, and there is no epsilon transition to an accept state.
+       */
+      predicate isRejectState(RelevantState s) { not epsilonSucc*(s) = Accept(_) }
+
+      /**
+       * Holds if there is likely a non-empty suffix leading to rejection starting in `s`.
+       */
+      pragma[noopt]
+      predicate hasEdgeToLikelyRejectable(RelevantState s) {
+        // all edges (at least one) with some char leads to another state that is rejectable.
+        // the `next` states might not share a common suffix, which can cause FPs.
+        exists(string char | char = hasEdgeToLikelyRejectableHelper(s) |
+          // noopt to force `hasEdgeToLikelyRejectableHelper` to be first in the join-order.
+          exists(State next | deltaClosedChar(s, char, next) | isLikelyRejectable(next)) and
+          forall(State next | deltaClosedChar(s, char, next) | isLikelyRejectable(next))
+        )
+      }
+
+      /**
+       * Gets a char for there exists a transition away from `s`,
+       * and `s` has not been found to be rejectable by `hasRejectEdge` or `isRejectState`.
+       */
+      pragma[noinline]
+      private string hasEdgeToLikelyRejectableHelper(RelevantState s) {
+        not hasRejectEdge(s) and
+        not isRejectState(s) and
+        deltaClosedChar(s, result, _)
+      }
+
+      /**
+       * Holds if there is a state `next` that can be reached from `prev`
+       * along epsilon edges, such that there is a transition from
+       * `prev` to `next` that the character symbol `char`.
+       */
+      predicate deltaClosedChar(RelevantState prev, string char, RelevantState next) {
+        deltaClosed(prev, getAnInputSymbolMatchingRelevant(char), next)
+      }
+
+      pragma[noinline]
+      InputSymbol getAnInputSymbolMatchingRelevant(string char) {
+        char = relevant(_) and
+        result = getAnInputSymbolMatching(char)
+      }
+
+      pragma[noinline]
+      RegExpRoot relevantRoot() {
+        exists(RegExpTerm term, State s |
+          s.getRepr() = term and isCandidateState(s) and result = term.getRootTerm()
+        )
+      }
+
+      /**
+       * Gets a char used for finding possible suffixes inside `root`.
+       */
+      pragma[noinline]
+      private string relevant(RegExpRoot root) {
+        root = relevantRoot() and
+        (
+          exists(ascii(result)) and exists(root)
+          or
+          exists(InputSymbol s | belongsTo(s, root) | result = intersect(s, _))
+          or
+          // The characters from `hasSimpleRejectEdge`. Only `\n` is really needed (as `\n` is not in the `ascii` relation).
+          // The three chars must be kept in sync with `hasSimpleRejectEdge`.
+          result = ["|", "\n", "Z"] and exists(root)
+        )
+      }
+
+      /**
+       * Holds if there exists a `char` such that there is no edge from `s` labeled `char` in our NFA.
+       * The NFA does not model reject states, so the above is the same as saying there is a reject edge.
+       */
+      private predicate hasRejectEdge(State s) {
+        hasSimpleRejectEdge(s)
+        or
+        not hasSimpleRejectEdge(s) and
+        exists(string char | char = relevant(getRoot(s.getRepr())) |
+          not deltaClosedChar(s, char, _)
+        )
+      }
+
+      /**
+       * Holds if there is no edge from `s` labeled with "|", "\n", or "Z" in our NFA.
+       * This predicate is used as a cheap pre-processing to speed up `hasRejectEdge`.
+       */
+      private predicate hasSimpleRejectEdge(State s) {
+        // The three chars were chosen arbitrarily. The three chars must be kept in sync with `relevant`.
+        exists(string char | char = ["|", "\n", "Z"] | not deltaClosedChar(s, char, _))
+      }
+
+      /**
+       * Gets a state that can be reached from pumpable `fork` consuming all
+       * chars in `w` any number of times followed by the first `i+1` characters of `w`.
+       */
+      pragma[noopt]
+      private State process(State fork, string w, int i) {
+        exists(State prev | prev = getProcessPrevious(fork, i, w) |
+          not prev = acceptsAnySuffix() and // we stop `process(..)` early if we can. If the successor accepts any suffix, then we know it can never be rejected.
+          exists(string char, InputSymbol sym |
+            char = w.charAt(i) and
+            deltaClosed(prev, sym, result) and
+            // noopt to prevent joining `prev` with all possible `chars` that could transition away from `prev`.
+            // Instead only join with the set of `chars` where a relevant `InputSymbol` has already been found.
+            sym = getAProcessInputSymbol(char)
+          )
+        )
+      }
+
+      /**
+       * Gets a state that can be reached from pumpable `fork` consuming all
+       * chars in `w` any number of times followed by the first `i` characters of `w`.
+       */
+      private State getProcessPrevious(State fork, int i, string w) {
+        isReDoSCandidate(fork, w) and
+        (
+          i = 0 and result = fork
+          or
+          result = process(fork, w, i - 1)
+          or
+          // repeat until fixpoint
+          i = 0 and
+          result = process(fork, w, w.length() - 1)
+        )
+      }
+
+      /**
+       * Gets an InputSymbol that matches `char`.
+       * The predicate is specialized to only have a result for the `char`s that are relevant for the `process` predicate.
+       */
+      private InputSymbol getAProcessInputSymbol(string char) {
+        char = getAProcessChar() and
+        result = getAnInputSymbolMatching(char)
+      }
+
+      /**
+       * Gets a `char` that occurs in a `pump` string.
+       */
+      private string getAProcessChar() { result = any(string s | isReDoSCandidate(_, s)).charAt(_) }
+    }
+
+    /**
+     * Holds if `term` may cause superlinear backtracking on strings containing many repetitions of `pump`.
+     * Gets the shortest string that causes superlinear backtracking.
+     */
+    private predicate isReDoSAttackable(RegExpTerm term, string pump, State s) {
+      exists(int i, string c | s = Match(term, i) |
+        c =
+          min(string w |
+            isCandidate(s, w) and
+            SuffixConstruction::reachesOnlyRejectableSuffixes(s, w)
+          |
+            w order by w.length(), w
+          ) and
+        pump = escape(rotate(c, i))
+      )
+    }
+
+    /**
+     * Holds if the state `s` (represented by the term `t`) can have backtracking with repetitions of `pump`.
+     *
+     * `prefixMsg` contains a friendly message for a prefix that reaches `s` (or `prefixMsg` is the empty string if the prefix is empty or if no prefix could be found).
+     */
+    predicate hasReDoSResult(RegExpTerm t, string pump, State s, string prefixMsg) {
+      isReDoSAttackable(t, pump, s) and
+      (
+        prefixMsg = "starting with '" + escape(Prefix::prefix(s)) + "' and " and
+        not Prefix::prefix(s) = ""
+        or
+        Prefix::prefix(s) = "" and prefixMsg = ""
+        or
+        not exists(Prefix::prefix(s)) and prefixMsg = ""
+      )
+    }
+
+    /**
+     * Gets the result of backslash-escaping newlines, carriage-returns and
+     * backslashes in `s`.
+     */
+    bindingset[s]
+    private string escape(string s) {
+      result =
+        s.replaceAll("\\", "\\\\")
+            .replaceAll("\n", "\\n")
+            .replaceAll("\r", "\\r")
+            .replaceAll("\t", "\\t")
+    }
+
+    /**
+     * Gets `str` with the last `i` characters moved to the front.
+     *
+     * We use this to adjust the pump string to match with the beginning of
+     * a RegExpTerm, so it doesn't start in the middle of a constant.
+     */
+    bindingset[str, i]
+    private string rotate(string str, int i) {
+      result = str.suffix(str.length() - i) + str.prefix(str.length() - i)
+    }
+  }
+
+  /**
+   * A module that describes a tree where each node has one or more associated characters, also known as a trie.
+   * The root node has no associated character.
+   * This module is a signature used in `Concretizer`.
+   */
+  signature module CharTree {
+    /** A node in the tree. */
+    class CharNode;
+
+    /** Gets the previous node in the tree from `t`. */
+    CharNode getPrev(CharNode t);
+
+    /**
+     * Holds if `n` is at the end of a tree. I.e. a node that should have a result in the `Concretizer` module.
+     * Such a node can still have children.
+     */
+    predicate isARelevantEnd(CharNode n);
+
+    /** Gets a char associated with `t`. */
+    string getChar(CharNode t);
+  }
+
+  /**
+   * Implements an algorithm for computing all possible strings
+   * from following a tree of nodes (as described in `CharTree`).
+   *
+   * The string is build using one big concat, where all the chars are computed first.
+   * See `concretize`.
+   */
+  module Concretizer<CharTree Impl> {
+    private class Node = Impl::CharNode;
+
+    private predicate getPrev = Impl::getPrev/1;
+
+    private predicate isARelevantEnd = Impl::isARelevantEnd/1;
+
+    private predicate getChar = Impl::getChar/1;
+
+    /** Holds if `n` is on a path from the root to a leaf, and is therefore relevant for the results in `concretize`. */
+    private predicate isRelevant(Node n) {
+      isARelevantEnd(n)
+      or
+      exists(Node succ | isRelevant(succ) | n = getPrev(succ))
+    }
+
+    /** Holds if `n` is a root with no predecessors. */
+    private predicate isRoot(Node n) { not exists(getPrev(n)) }
+
+    /** Gets the distance from a root to `n`. */
+    private int nodeDepth(Node n) {
+      result = 0 and isRoot(n)
+      or
+      isRelevant(n) and
+      exists(Node prev | result = nodeDepth(prev) + 1 | prev = getPrev(n))
+    }
+
+    /** Gets an ancestor of `end`, where `end` is a node that should have a result in `concretize`. */
+    private Node getAnAncestor(Node end) { isARelevantEnd(end) and result = getPrev*(end) }
+
+    /** Gets the `i`th character on the path from the root to `n`. */
+    pragma[noinline]
+    private string getPrefixChar(Node n, int i) {
+      exists(Node ancestor |
+        result = getChar(ancestor) and
+        ancestor = getAnAncestor(n) and
+        i = nodeDepth(ancestor)
+      )
+    }
+
+    /** Gets a string corresponding to `node`. */
+    language[monotonicAggregates]
+    string concretize(Node n) {
+      result = strictconcat(int i | exists(getPrefixChar(n, i)) | getPrefixChar(n, i) order by i)
+    }
+  }
+}
diff --git a/shared/regex/codeql/regex/nfa/RegexpMatching.qll b/shared/regex/codeql/regex/nfa/RegexpMatching.qll
new file mode 100644
index 00000000000..e4d5f4667eb
--- /dev/null
+++ b/shared/regex/codeql/regex/nfa/RegexpMatching.qll
@@ -0,0 +1,176 @@
+/**
+ * Provides predicates for reasoning about which strings are matched by a regular expression,
+ * and for testing which capture groups are filled when a particular regexp matches a string.
+ */
+
+private import NfaUtils as NfaUtils
+private import codeql.regex.RegexTreeView
+
+/**
+ * A parameterized module implementing the analysis described in the above papers.
+ */
+module Make<RegexTreeViewSig TreeImpl> {
+  private import TreeImpl
+  import NfaUtils::Make<TreeImpl>
+
+  /** A root term */
+  class RootTerm instanceof RegExpTerm {
+    RootTerm() { this.isRootTerm() }
+
+    /** Gets a string representation of this term. */
+    string toString() { result = super.toString() }
+
+    /** Holds if this term has the specified location. */
+    predicate hasLocationInfo(
+      string filepath, int startline, int startcolumn, int endline, int endcolumn
+    ) {
+      super.hasLocationInfo(filepath, startline, startcolumn, endline, endcolumn)
+    }
+  }
+
+  /**
+   * Holds if it should be tested whether `root` matches `str`.
+   *
+   * If `ignorePrefix` is true, then a regexp without a start anchor will be treated as if it had a start anchor.
+   * E.g. a regular expression `/foo$/` will match any string that ends with "foo",
+   * but if `ignorePrefix` is true, it will only match "foo".
+   *
+   * If `testWithGroups` is true, then the `RegexpMatching::fillsCaptureGroup` predicate can be used to determine which capture
+   * groups are filled by a string.
+   */
+  signature predicate isRegexpMatchingCandidateSig(
+    RootTerm root, string str, boolean ignorePrefix, boolean testWithGroups
+  );
+
+  /**
+   * A module for determining if a regexp matches a given string,
+   * and reasoning about which capture groups are filled by a given string.
+   *
+   * The module parameter `isCandidate` determines which strings should be tested,
+   * and the results can be read from the `matches` and `fillsCaptureGroup` predicates.
+   */
+  module RegexpMatching<isRegexpMatchingCandidateSig/4 isCandidate> {
+    /**
+     * Gets a state the regular expression `reg` can be in after matching the `i`th char in `str`.
+     * The regular expression is modeled as a non-determistic finite automaton,
+     * the regular expression can therefore be in multiple states after matching a character.
+     *
+     * It's a forward search to all possible states, and there is thus no guarantee that the state is on a path to an accepting state.
+     */
+    private State getAState(RootTerm reg, int i, string str, boolean ignorePrefix) {
+      // start state, the -1 position before any chars have been matched
+      i = -1 and
+      isCandidate(reg, str, ignorePrefix, _) and
+      result.getRepr().getRootTerm() = reg and
+      isStartState(result)
+      or
+      // recursive case
+      result = getAStateAfterMatching(reg, _, str, i, _, ignorePrefix)
+    }
+
+    /**
+     * Gets the next state after the `prev` state from `reg`.
+     * `prev` is the state after matching `fromIndex` chars in `str`,
+     * and the result is the state after matching `toIndex` chars in `str`.
+     *
+     * This predicate is used as a step relation in the forwards search (`getAState`),
+     * and also as a step relation in the later backwards search (`getAStateThatReachesAccept`).
+     */
+    private State getAStateAfterMatching(
+      RootTerm reg, State prev, string str, int toIndex, int fromIndex, boolean ignorePrefix
+    ) {
+      // the basic recursive case - outlined into a noopt helper to make performance work out.
+      result = getAStateAfterMatchingAux(reg, prev, str, toIndex, fromIndex, ignorePrefix)
+      or
+      // we can skip past word boundaries if the next char is a non-word char.
+      fromIndex = toIndex and
+      prev.getRepr() instanceof RegExpWordBoundary and
+      prev = getAState(reg, toIndex, str, ignorePrefix) and
+      after(prev.getRepr()) = result and
+      str.charAt(toIndex + 1).regexpMatch("\\W") // \W matches any non-word char.
+    }
+
+    pragma[noopt]
+    private State getAStateAfterMatchingAux(
+      RootTerm reg, State prev, string str, int toIndex, int fromIndex, boolean ignorePrefix
+    ) {
+      prev = getAState(reg, fromIndex, str, ignorePrefix) and
+      fromIndex = toIndex - 1 and
+      exists(string char | char = str.charAt(toIndex) | specializedDeltaClosed(prev, char, result)) and
+      not discardedPrefixStep(prev, result, ignorePrefix)
+    }
+
+    /** Holds if a step from `prev` to `next` should be discarded when the `ignorePrefix` flag is set. */
+    private predicate discardedPrefixStep(State prev, State next, boolean ignorePrefix) {
+      prev = mkMatch(any(RegExpRoot r)) and
+      ignorePrefix = true and
+      next = prev
+    }
+
+    // The `deltaClosed` relation specialized to the chars that exists in strings tested by a `MatchedRegExp`.
+    private predicate specializedDeltaClosed(State prev, string char, State next) {
+      deltaClosed(prev, specializedGetAnInputSymbolMatching(char), next)
+    }
+
+    // The `getAnInputSymbolMatching` relation specialized to the chars that exists in strings tested by a `MatchedRegExp`.
+    pragma[noinline]
+    private InputSymbol specializedGetAnInputSymbolMatching(string char) {
+      exists(string s, RootTerm r | isCandidate(r, s, _, _) | char = s.charAt(_)) and
+      result = getAnInputSymbolMatching(char)
+    }
+
+    /**
+     * Gets the `i`th state on a path to the accepting state when `reg` matches `str`.
+     * Starts with an accepting state as found by `getAState` and searches backwards
+     * to the start state through the reachable states (as found by `getAState`).
+     *
+     * This predicate satisfies the invariant that the result state can be reached with `i` steps from a start state,
+     * and an accepting state can be found after (`str.length() - 1 - i`) steps from the result.
+     * The result state is therefore always on a valid path where `reg` accepts `str`.
+     *
+     * This predicate is only used to find which capture groups a regular expression has filled,
+     * and thus the search is only performed for the strings in the `testWithGroups(..)` predicate.
+     */
+    private State getAStateThatReachesAccept(RootTerm reg, int i, string str, boolean ignorePrefix) {
+      // base case, reaches an accepting state from the last state in `getAState(..)`
+      isCandidate(reg, str, ignorePrefix, true) and
+      i = str.length() - 1 and
+      result = getAState(reg, i, str, ignorePrefix) and
+      epsilonSucc*(result) = Accept(_)
+      or
+      // recursive case. `next` is the next state to be matched after matching `prev`.
+      // this predicate is doing a backwards search, so `prev` is the result we are looking for.
+      exists(State next, State prev, int fromIndex, int toIndex |
+        next = getAStateThatReachesAccept(reg, toIndex, str, ignorePrefix) and
+        next = getAStateAfterMatching(reg, prev, str, toIndex, fromIndex, ignorePrefix) and
+        i = fromIndex and
+        result = prev
+      )
+    }
+
+    /** Gets the capture group number that `term` belongs to. */
+    private int group(RegExpTerm term) {
+      exists(RegExpGroup grp | grp.getNumber() = result | term.getParent*() = grp)
+    }
+
+    /**
+     * Holds if `reg` matches `str`, where `str` is in the `isCandidate` predicate.
+     */
+    predicate matches(RootTerm reg, string str) {
+      exists(State state | state = getAState(reg, str.length() - 1, str, _) |
+        epsilonSucc*(state) = Accept(_)
+      )
+    }
+
+    /**
+     * Holds if matching `str` against `reg` may fill capture group number `g`.
+     * Only holds if `str` is in the `testWithGroups` predicate.
+     */
+    predicate fillsCaptureGroup(RootTerm reg, string str, int g) {
+      exists(State s |
+        s = getAStateThatReachesAccept(reg, _, str, _) and
+        g = group(s.getRepr())
+      )
+    }
+  }
+}
diff --git a/shared/regex/codeql/regex/nfa/SuperlinearBackTracking.qll b/shared/regex/codeql/regex/nfa/SuperlinearBackTracking.qll
new file mode 100644
index 00000000000..00f53784554
--- /dev/null
+++ b/shared/regex/codeql/regex/nfa/SuperlinearBackTracking.qll
@@ -0,0 +1,440 @@
+/*
+ * This module implements the analysis described in the paper:
+ *   Valentin Wustholz, Oswaldo Olivo, Marijn J. H. Heule, and Isil Dillig:
+ *     Static Detection of DoS Vulnerabilities in
+ *     Programs that use Regular Expressions
+ *     (Extended Version).
+ *   (https://arxiv.org/pdf/1701.04045.pdf)
+ *
+ * Theorem 3 from the paper describes the basic idea.
+ *
+ * The following explains the idea using variables and predicate names that are used in the implementation:
+ * We consider a pair of repetitions, which we will call `pivot` and `succ`.
+ *
+ * We create a product automaton of 3-tuples of states (see `StateTuple`).
+ * There exists a transition `(a,b,c) -> (d,e,f)` in the product automaton
+ * iff there exists three transitions in the NFA `a->d, b->e, c->f` where those three
+ * transitions all match a shared character `char`. (see `getAThreewayIntersect`)
+ *
+ * We start a search in the product automaton at `(pivot, pivot, succ)`,
+ * and search for a series of transitions (a `Trace`), such that we end
+ * at `(pivot, succ, succ)` (see `isReachableFromStartTuple`).
+ *
+ * For example, consider the regular expression `/^\d*5\w*$/`.
+ * The search will start at the tuple `(\d*, \d*, \w*)` and search
+ * for a path to `(\d*, \w*, \w*)`.
+ * This path exists, and consists of a single transition in the product automaton,
+ * where the three corresponding NFA edges all match the character `"5"`.
+ *
+ * The start-state in the NFA has an any-transition to itself, this allows us to
+ * flag regular expressions such as `/a*$/` - which does not have a start anchor -
+ * and can thus start matching anywhere.
+ *
+ * The implementation is not perfect.
+ * It has the same suffix detection issue as the `js/redos` query, which can cause false positives.
+ * It also doesn't find all transitions in the product automaton, which can cause false negatives.
+ */
+
+private import NfaUtils as NfaUtils
+private import codeql.regex.RegexTreeView
+
+/**
+ * A parameterized module implementing the analysis described in the above papers.
+ */
+module Make<RegexTreeViewSig TreeImpl> {
+  private import TreeImpl
+  import NfaUtils::Make<TreeImpl>
+
+  /**
+   * Gets any root (start) state of a regular expression.
+   */
+  private State getRootState() { result = mkMatch(any(RegExpRoot r)) }
+
+  private newtype TStateTuple =
+    MkStateTuple(State q1, State q2, State q3) {
+      // starts at (pivot, pivot, succ)
+      isStartLoops(q1, q3) and q1 = q2
+      or
+      step(_, _, _, _, q1, q2, q3) and FeasibleTuple::isFeasibleTuple(q1, q2, q3)
+    }
+
+  /**
+   * A state in the product automaton.
+   * The product automaton contains 3-tuples of states.
+   *
+   * We lazily only construct those states that we are actually
+   * going to need.
+   * Either a start state `(pivot, pivot, succ)`, or a state
+   * where there exists a transition from an already existing state.
+   *
+   * The exponential variant of this query (`js/redos`) uses an optimization
+   * trick where `q1 <= q2`. This trick cannot be used here as the order
+   * of the elements matter.
+   */
+  class StateTuple extends TStateTuple {
+    State q1;
+    State q2;
+    State q3;
+
+    StateTuple() { this = MkStateTuple(q1, q2, q3) }
+
+    /**
+     * Gest a string representation of this tuple.
+     */
+    string toString() { result = "(" + q1 + ", " + q2 + ", " + q3 + ")" }
+
+    /**
+     * Holds if this tuple is `(r1, r2, r3)`.
+     */
+    pragma[noinline]
+    predicate isTuple(State r1, State r2, State r3) { r1 = q1 and r2 = q2 and r3 = q3 }
+  }
+
+  /**
+   * A module for determining feasible tuples for the product automaton.
+   *
+   * The implementation is split into many predicates for performance reasons.
+   */
+  private module FeasibleTuple {
+    /**
+     * Holds if the tuple `(r1, r2, r3)` might be on path from a start-state to an end-state in the product automaton.
+     */
+    pragma[inline]
+    predicate isFeasibleTuple(State r1, State r2, State r3) {
+      // The first element is either inside a repetition (or the start state itself)
+      isRepetitionOrStart(r1) and
+      // The last element is inside a repetition
+      stateInsideRepetition(r3) and
+      // The states are reachable in the NFA in the order r1 -> r2 -> r3
+      delta+(r1) = r2 and
+      delta+(r2) = r3 and
+      // The first element can reach a beginning (the "pivot" state in a `(pivot, succ)` pair).
+      canReachABeginning(r1) and
+      // The last element can reach a target (the "succ" state in a `(pivot, succ)` pair).
+      canReachATarget(r3)
+    }
+
+    /**
+     * Holds if `s` is either inside a repetition, or is the start state (which is a repetition).
+     */
+    pragma[noinline]
+    private predicate isRepetitionOrStart(State s) {
+      stateInsideRepetition(s) or s = getRootState()
+    }
+
+    /**
+     * Holds if state `s` might be inside a backtracking repetition.
+     */
+    pragma[noinline]
+    private predicate stateInsideRepetition(State s) {
+      s.getRepr().getParent*() instanceof InfiniteRepetitionQuantifier
+    }
+
+    /**
+     * Holds if there exists a path in the NFA from `s` to a "pivot" state
+     * (from a `(pivot, succ)` pair that starts the search).
+     */
+    pragma[noinline]
+    private predicate canReachABeginning(State s) {
+      delta+(s) = any(State pivot | isStartLoops(pivot, _))
+    }
+
+    /**
+     * Holds if there exists a path in the NFA from `s` to a "succ" state
+     * (from a `(pivot, succ)` pair that starts the search).
+     */
+    pragma[noinline]
+    private predicate canReachATarget(State s) {
+      delta+(s) = any(State succ | isStartLoops(_, succ))
+    }
+  }
+
+  /**
+   * Holds if `pivot` and `succ` are a pair of loops that could be the beginning of a quadratic blowup.
+   *
+   * There is a slight implementation difference compared to the paper: this predicate requires that `pivot != succ`.
+   * The case where `pivot = succ` causes exponential backtracking and is handled by the `js/redos` query.
+   */
+  predicate isStartLoops(State pivot, State succ) {
+    pivot != succ and
+    succ.getRepr() instanceof InfiniteRepetitionQuantifier and
+    delta+(pivot) = succ and
+    (
+      pivot.getRepr() instanceof InfiniteRepetitionQuantifier
+      or
+      pivot = mkMatch(any(RegExpRoot root))
+    )
+  }
+
+  /**
+   * Gets a state for which there exists a transition in the NFA from `s'.
+   */
+  State delta(State s) { delta(s, _, result) }
+
+  /**
+   * Holds if there are transitions from the components of `q` to the corresponding
+   * components of `r` labelled with `s1`, `s2`, and `s3`, respectively.
+   */
+  pragma[noinline]
+  predicate step(StateTuple q, InputSymbol s1, InputSymbol s2, InputSymbol s3, StateTuple r) {
+    exists(State r1, State r2, State r3 |
+      step(q, s1, s2, s3, r1, r2, r3) and r = MkStateTuple(r1, r2, r3)
+    )
+  }
+
+  /**
+   * Holds if there are transitions from the components of `q` to `r1`, `r2`, and `r3
+   * labelled with `s1`, `s2`, and `s3`, respectively.
+   */
+  pragma[noopt]
+  predicate step(
+    StateTuple q, InputSymbol s1, InputSymbol s2, InputSymbol s3, State r1, State r2, State r3
+  ) {
+    exists(State q1, State q2, State q3 | q.isTuple(q1, q2, q3) |
+      deltaClosed(q1, s1, r1) and
+      deltaClosed(q2, s2, r2) and
+      deltaClosed(q3, s3, r3) and
+      // use noopt to force the join on `getAThreewayIntersect` to happen last.
+      exists(getAThreewayIntersect(s1, s2, s3))
+    )
+  }
+
+  /**
+   * Gets a char that is matched by all the edges `s1`, `s2`, and `s3`.
+   *
+   * The result is not complete, and might miss some combination of edges that share some character.
+   */
+  pragma[noinline]
+  string getAThreewayIntersect(InputSymbol s1, InputSymbol s2, InputSymbol s3) {
+    result = minAndMaxIntersect(s1, s2) and result = [intersect(s2, s3), intersect(s1, s3)]
+    or
+    result = minAndMaxIntersect(s1, s3) and result = [intersect(s2, s3), intersect(s1, s2)]
+    or
+    result = minAndMaxIntersect(s2, s3) and result = [intersect(s1, s2), intersect(s1, s3)]
+  }
+
+  /**
+   * Gets the minimum and maximum characters that intersect between `a` and `b`.
+   * This predicate is used to limit the size of `getAThreewayIntersect`.
+   */
+  pragma[noinline]
+  string minAndMaxIntersect(InputSymbol a, InputSymbol b) {
+    result = [min(intersect(a, b)), max(intersect(a, b))]
+  }
+
+  private newtype TTrace =
+    Nil() or
+    Step(InputSymbol s1, InputSymbol s2, InputSymbol s3, TTrace t) {
+      isReachableFromStartTuple(_, _, t, s1, s2, s3, _, _)
+    }
+
+  /**
+   * A list of tuples of input symbols that describe a path in the product automaton
+   * starting from some start state.
+   */
+  class Trace extends TTrace {
+    /**
+     * Gets a string representation of this Trace that can be used for debug purposes.
+     */
+    string toString() {
+      this = Nil() and result = "Nil()"
+      or
+      exists(InputSymbol s1, InputSymbol s2, InputSymbol s3, Trace t | this = Step(s1, s2, s3, t) |
+        result = "Step(" + s1 + ", " + s2 + ", " + s3 + ", " + t + ")"
+      )
+    }
+  }
+
+  /**
+   * Holds if there exists a transition from `r` to `q` in the product automaton.
+   * Notice that the arguments are flipped, and thus the direction is backwards.
+   */
+  pragma[noinline]
+  predicate tupleDeltaBackwards(StateTuple q, StateTuple r) { step(r, _, _, _, q) }
+
+  /**
+   * Holds if `tuple` is an end state in our search.
+   * That means there exists a pair of loops `(pivot, succ)` such that `tuple = (pivot, succ, succ)`.
+   */
+  predicate isEndTuple(StateTuple tuple) { tuple = getAnEndTuple(_, _) }
+
+  /**
+   * Gets the minimum length of a path from `r` to some an end state `end`.
+   *
+   * The implementation searches backwards from the end-tuple.
+   * This approach was chosen because it is way more efficient if the first predicate given to `shortestDistances` is small.
+   * The `end` argument must always be an end state.
+   */
+  int distBackFromEnd(StateTuple r, StateTuple end) =
+    shortestDistances(isEndTuple/1, tupleDeltaBackwards/2)(end, r, result)
+
+  /**
+   * Holds if there exists a pair of repetitions `(pivot, succ)` in the regular expression such that:
+   * `tuple` is reachable from `(pivot, pivot, succ)` in the product automaton,
+   * and there is a distance of `dist` from `tuple` to the nearest end-tuple `(pivot, succ, succ)`,
+   * and a path from a start-state to `tuple` follows the transitions in `trace`.
+   */
+  private predicate isReachableFromStartTuple(
+    State pivot, State succ, StateTuple tuple, Trace trace, int dist
+  ) {
+    exists(InputSymbol s1, InputSymbol s2, InputSymbol s3, Trace v |
+      isReachableFromStartTuple(pivot, succ, v, s1, s2, s3, tuple, dist) and
+      trace = Step(s1, s2, s3, v)
+    )
+  }
+
+  private predicate isReachableFromStartTuple(
+    State pivot, State succ, Trace trace, InputSymbol s1, InputSymbol s2, InputSymbol s3,
+    StateTuple tuple, int dist
+  ) {
+    // base case.
+    exists(State q1, State q2, State q3 |
+      isStartLoops(pivot, succ) and
+      step(MkStateTuple(pivot, pivot, succ), s1, s2, s3, tuple) and
+      tuple = MkStateTuple(q1, q2, q3) and
+      trace = Nil() and
+      dist = distBackFromEnd(tuple, MkStateTuple(pivot, succ, succ))
+    )
+    or
+    // recursive case
+    exists(StateTuple p |
+      isReachableFromStartTuple(pivot, succ, p, trace, dist + 1) and
+      dist = distBackFromEnd(tuple, MkStateTuple(pivot, succ, succ)) and
+      step(p, s1, s2, s3, tuple)
+    )
+  }
+
+  /**
+   * Gets the tuple `(pivot, succ, succ)` from the product automaton.
+   */
+  StateTuple getAnEndTuple(State pivot, State succ) {
+    isStartLoops(pivot, succ) and
+    result = MkStateTuple(pivot, succ, succ)
+  }
+
+  /** An implementation of a chain containing chars for use by `Concretizer`. */
+  private module CharTreeImpl implements CharTree {
+    class CharNode = Trace;
+
+    CharNode getPrev(CharNode t) { t = Step(_, _, _, result) }
+
+    /** Holds if `n` is used in `isPumpable`. */
+    predicate isARelevantEnd(CharNode n) {
+      exists(State pivot, State succ |
+        isReachableFromStartTuple(pivot, succ, getAnEndTuple(pivot, succ), n, _)
+      )
+    }
+
+    string getChar(CharNode t) {
+      exists(InputSymbol s1, InputSymbol s2, InputSymbol s3 | t = Step(s1, s2, s3, _) |
+        result = getAThreewayIntersect(s1, s2, s3)
+      )
+    }
+  }
+
+  /**
+   * Holds if matching repetitions of `pump` can:
+   * 1) Transition from `pivot` back to `pivot`.
+   * 2) Transition from `pivot` to `succ`.
+   * 3) Transition from `succ` to `succ`.
+   *
+   * From theorem 3 in the paper linked in the top of this file we can therefore conclude that
+   * the regular expression has polynomial backtracking - if a rejecting suffix exists.
+   *
+   * This predicate is used by `SuperLinearReDoSConfiguration`, and the final results are
+   * available in the `hasReDoSResult` predicate.
+   */
+  predicate isPumpable(State pivot, State succ, string pump) {
+    exists(StateTuple q, Trace t |
+      isReachableFromStartTuple(pivot, succ, q, t, _) and
+      q = getAnEndTuple(pivot, succ) and
+      pump = Concretizer<CharTreeImpl>::concretize(t)
+    )
+  }
+
+  /**
+   * Holds if states starting in `state` can have polynomial backtracking with the string `pump`.
+   */
+  predicate isReDoSCandidate(State state, string pump) { isPumpable(_, state, pump) }
+
+  /**
+   * Holds if repetitions of `pump` at `t` will cause polynomial backtracking.
+   */
+  predicate polynomialReDoS(RegExpTerm t, string pump, string prefixMsg, RegExpTerm prev) {
+    exists(State s, State pivot |
+      ReDoSPruning<isReDoSCandidate/2>::hasReDoSResult(t, pump, s, prefixMsg) and
+      isPumpable(pivot, s, _) and
+      prev = pivot.getRepr()
+    )
+  }
+
+  /**
+   * Gets a message for why `term` can cause polynomial backtracking.
+   */
+  string getReasonString(RegExpTerm term, string pump, string prefixMsg, RegExpTerm prev) {
+    polynomialReDoS(term, pump, prefixMsg, prev) and
+    result =
+      "Strings " + prefixMsg + "with many repetitions of '" + pump +
+        "' can start matching anywhere after the start of the preceeding " + prev
+  }
+
+  /**
+   * A term that may cause a regular expression engine to perform a
+   * polynomial number of match attempts, relative to the input length.
+   */
+  class PolynomialBackTrackingTerm instanceof InfiniteRepetitionQuantifier {
+    string reason;
+    string pump;
+    string prefixMsg;
+    RegExpTerm prev;
+
+    PolynomialBackTrackingTerm() {
+      reason = getReasonString(this, pump, prefixMsg, prev) and
+      // there might be many reasons for this term to have polynomial backtracking - we pick the shortest one.
+      reason =
+        min(string msg | msg = getReasonString(this, _, _, _) | msg order by msg.length(), msg)
+    }
+
+    /**
+     * Holds if all non-empty successors to the polynomial backtracking term matches the end of the line.
+     */
+    predicate isAtEndLine() {
+      forall(RegExpTerm succ | super.getSuccessor+() = succ and not matchesEpsilon(succ) |
+        succ instanceof RegExpDollar
+      )
+    }
+
+    /**
+     * Gets the string that should be repeated to cause this regular expression to perform polynomially.
+     */
+    string getPumpString() { result = pump }
+
+    /**
+     * Gets a message for which prefix a matching string must start with for this term to cause polynomial backtracking.
+     */
+    string getPrefixMessage() { result = prefixMsg }
+
+    /**
+     * Gets a predecessor to `this`, which also loops on the pump string, and thereby causes polynomial backtracking.
+     */
+    RegExpTerm getPreviousLoop() { result = prev }
+
+    /**
+     * Gets the reason for the number of match attempts.
+     */
+    string getReason() { result = reason }
+
+    /** Gets a string representation of this term. */
+    string toString() { result = super.toString() }
+
+    /** Gets the outermost term of this regular expression. */
+    RegExpTerm getRootTerm() { result = super.getRootTerm() }
+
+    /** Holds if this term has the specific location. */
+    predicate hasLocationInfo(
+      string filepath, int startline, int startcolumn, int endline, int endcolumn
+    ) {
+      super.hasLocationInfo(filepath, startline, startcolumn, endline, endcolumn)
+    }
+  }
+}
diff --git a/shared/regex/qlpack.yml b/shared/regex/qlpack.yml
new file mode 100644
index 00000000000..4b25672b6c5
--- /dev/null
+++ b/shared/regex/qlpack.yml
@@ -0,0 +1,5 @@
+name: codeql/regex
+version: 0.0.1-dev
+groups: shared
+library: true
+dependencies:

From 09275a56c190b78a2d8877f3caec8568e15e17e7 Mon Sep 17 00:00:00 2001
From: erik-krogh <erik-krogh@github.com>
Date: Tue, 1 Nov 2022 10:17:21 +0100
Subject: [PATCH 0074/1420] remove files from identical files that soon won't
 be identical

---
 config/identical-files.json | 34 ----------------------------------
 1 file changed, 34 deletions(-)

diff --git a/config/identical-files.json b/config/identical-files.json
index 91056103836..954931c2bba 100644
--- a/config/identical-files.json
+++ b/config/identical-files.json
@@ -486,40 +486,6 @@
     "python/ql/lib/semmle/python/security/internal/SensitiveDataHeuristics.qll",
     "ruby/ql/lib/codeql/ruby/security/internal/SensitiveDataHeuristics.qll"
   ],
-  "ReDoS Util Python/JS/Ruby/Java": [
-    "javascript/ql/lib/semmle/javascript/security/regexp/NfaUtils.qll",
-    "python/ql/lib/semmle/python/security/regexp/NfaUtils.qll",
-    "ruby/ql/lib/codeql/ruby/security/regexp/NfaUtils.qll",
-    "java/ql/lib/semmle/code/java/security/regexp/NfaUtils.qll"
-  ],
-  "ReDoS Exponential Python/JS/Ruby/Java": [
-    "javascript/ql/lib/semmle/javascript/security/regexp/ExponentialBackTracking.qll",
-    "python/ql/lib/semmle/python/security/regexp/ExponentialBackTracking.qll",
-    "ruby/ql/lib/codeql/ruby/security/regexp/ExponentialBackTracking.qll",
-    "java/ql/lib/semmle/code/java/security/regexp/ExponentialBackTracking.qll"
-  ],
-  "ReDoS Polynomial Python/JS/Ruby/Java": [
-    "javascript/ql/lib/semmle/javascript/security/regexp/SuperlinearBackTracking.qll",
-    "python/ql/lib/semmle/python/security/regexp/SuperlinearBackTracking.qll",
-    "ruby/ql/lib/codeql/ruby/security/regexp/SuperlinearBackTracking.qll",
-    "java/ql/lib/semmle/code/java/security/regexp/SuperlinearBackTracking.qll"
-  ],
-  "RegexpMatching Python/JS/Ruby": [
-    "javascript/ql/lib/semmle/javascript/security/regexp/RegexpMatching.qll",
-    "python/ql/lib/semmle/python/security/regexp/RegexpMatching.qll",
-    "ruby/ql/lib/codeql/ruby/security/regexp/RegexpMatching.qll"
-  ],
-  "BadTagFilterQuery Python/JS/Ruby": [
-    "javascript/ql/lib/semmle/javascript/security/BadTagFilterQuery.qll",
-    "python/ql/lib/semmle/python/security/BadTagFilterQuery.qll",
-    "ruby/ql/lib/codeql/ruby/security/BadTagFilterQuery.qll"
-  ],
-  "OverlyLargeRange Python/JS/Ruby/Java": [
-    "javascript/ql/lib/semmle/javascript/security/OverlyLargeRangeQuery.qll",
-    "python/ql/lib/semmle/python/security/OverlyLargeRangeQuery.qll",
-    "ruby/ql/lib/codeql/ruby/security/OverlyLargeRangeQuery.qll",
-    "java/ql/lib/semmle/code/java/security/OverlyLargeRangeQuery.qll"
-  ],
   "CFG": [
     "csharp/ql/lib/semmle/code/csharp/controlflow/internal/ControlFlowGraphImplShared.qll",
     "ruby/ql/lib/codeql/ruby/controlflow/internal/ControlFlowGraphImplShared.qll",

From f5daee24839ba2493ee69174cd279ad2679ec088 Mon Sep 17 00:00:00 2001
From: erik-krogh <erik-krogh@github.com>
Date: Mon, 7 Nov 2022 14:26:55 +0100
Subject: [PATCH 0075/1420] port canonicalization fix from #11071 to the shared
 pack

---
 shared/regex/codeql/regex/nfa/NfaUtils.qll | 42 ++++++++++++----------
 1 file changed, 23 insertions(+), 19 deletions(-)

diff --git a/shared/regex/codeql/regex/nfa/NfaUtils.qll b/shared/regex/codeql/regex/nfa/NfaUtils.qll
index 3a7f5be203f..b3be9c73bfd 100644
--- a/shared/regex/codeql/regex/nfa/NfaUtils.qll
+++ b/shared/regex/codeql/regex/nfa/NfaUtils.qll
@@ -164,19 +164,20 @@ module Make<RegexTreeViewSig TreeImpl> {
   private predicate isCanonicalTerm(RelevantRegExpTerm term, string str) {
     term =
       min(RelevantRegExpTerm t |
-        str = t.getRawValue() + "|" + getCanonicalizationFlags(t.getRootTerm())
+        str = getCanonicalizationString(t)
       |
         t order by getTermLocationString(t)
       )
   }
 
   /**
-   * Gets a string representation of the flags used with the regular expression.
-   * Only the flags that are relevant for the canonicalization are included.
+   * Gets a string representation of `term` that is used for canonicalization.
    */
-  string getCanonicalizationFlags(RegExpTerm root) {
-    root.isRootTerm() and
-    (if isIgnoreCase(root) then result = "i" else result = "")
+  private string getCanonicalizationString(RelevantRegExpTerm term) {
+    exists(string ignoreCase |
+      (if isIgnoreCase(term.getRootTerm()) then ignoreCase = "i" else ignoreCase = "") and
+      result = term.getRawValue() + "|" + ignoreCase
+    )
   }
 
   /**
@@ -221,12 +222,19 @@ module Make<RegexTreeViewSig TreeImpl> {
     Epsilon()
 
   /**
-   * Gets the canonical CharClass for `term`.
+   * Gets the the CharClass corresponding to the canonical representative `term`.
    */
-  CharClass getCanonicalCharClass(RegExpTerm term) {
+  private CharClass getCharClassForCanonicalTerm(RegExpTerm term) {
     exists(string str | isCanonicalTerm(term, str) | result = CharClass(str))
   }
 
+  /**
+   * Gets a char class that represents `term`, even when `term` is not the canonical representative.
+   */
+  CharacterClass getCanonicalCharClass(RegExpTerm term) {
+    exists(string str | str = getCanonicalizationString(term) and result = CharClass(str))
+  }
+
   /**
    * Holds if `a` and `b` are input symbols from the same regexp.
    */
@@ -319,7 +327,7 @@ module Make<RegexTreeViewSig TreeImpl> {
      */
     pragma[noinline]
     predicate hasChildThatMatchesIgnoringCasingFlags(RegExpCharacterClass cc, string char) {
-      exists(getCanonicalCharClass(cc)) and
+      exists(getCharClassForCanonicalTerm(cc)) and
       exists(RegExpTerm child | child = cc.getAChild() |
         char = child.(RegexpCharacterConstant).getValue()
         or
@@ -420,7 +428,7 @@ module Make<RegexTreeViewSig TreeImpl> {
     private class PositiveCharacterClass extends CharacterClass {
       RegExpCharacterClass cc;
 
-      PositiveCharacterClass() { this = getCanonicalCharClass(cc) and not cc.isInverted() }
+      PositiveCharacterClass() { this = getCharClassForCanonicalTerm(cc) and not cc.isInverted() }
 
       override string getARelevantChar() { result = caseNormalize(getAMentionedChar(cc), cc) }
 
@@ -433,7 +441,7 @@ module Make<RegexTreeViewSig TreeImpl> {
     private class InvertedCharacterClass extends CharacterClass {
       RegExpCharacterClass cc;
 
-      InvertedCharacterClass() { this = getCanonicalCharClass(cc) and cc.isInverted() }
+      InvertedCharacterClass() { this = getCharClassForCanonicalTerm(cc) and cc.isInverted() }
 
       override string getARelevantChar() {
         result = nextChar(caseNormalize(getAMentionedChar(cc), cc)) or
@@ -468,7 +476,7 @@ module Make<RegexTreeViewSig TreeImpl> {
 
       PositiveCharacterClassEscape() {
         isEscapeClass(cc, charClass) and
-        this = getCanonicalCharClass(cc) and
+        this = getCharClassForCanonicalTerm(cc) and
         charClass = ["d", "s", "w"]
       }
 
@@ -508,7 +516,7 @@ module Make<RegexTreeViewSig TreeImpl> {
       NegativeCharacterClassEscape() {
         exists(RegExpTerm cc |
           isEscapeClass(cc, charClass) and
-          this = getCanonicalCharClass(cc) and
+          this = getCharClassForCanonicalTerm(cc) and
           charClass = ["D", "S", "W"]
         )
       }
@@ -703,17 +711,13 @@ module Make<RegexTreeViewSig TreeImpl> {
       cc.isUniversalClass() and q1 = before(cc) and lbl = Any() and q2 = after(cc)
       or
       q1 = before(cc) and
-      lbl =
-        CharacterClasses::normalize(CharClass(cc.getRawValue() + "|" +
-              getCanonicalizationFlags(cc.getRootTerm()))) and
+      lbl = CharacterClasses::normalize(CharClass(getCanonicalizationString(cc))) and
       q2 = after(cc)
     )
     or
     exists(RegExpTerm cc | isEscapeClass(cc, _) |
       q1 = before(cc) and
-      lbl =
-        CharacterClasses::normalize(CharClass(cc.getRawValue() + "|" +
-              getCanonicalizationFlags(cc.getRootTerm()))) and
+      lbl = CharacterClasses::normalize(CharClass(getCanonicalizationString(cc))) and
       q2 = after(cc)
     )
     or

From 2b139924cd157c36fe9d174c6272bf00fb6180d8 Mon Sep 17 00:00:00 2001
From: erik-krogh <erik-krogh@github.com>
Date: Tue, 1 Nov 2022 11:59:20 +0100
Subject: [PATCH 0076/1420] add codeql/regex as a dependency

---
 python/ql/lib/qlpack.yml | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/python/ql/lib/qlpack.yml b/python/ql/lib/qlpack.yml
index 9d8ac91c0a6..13ed5d27498 100644
--- a/python/ql/lib/qlpack.yml
+++ b/python/ql/lib/qlpack.yml
@@ -5,3 +5,5 @@ dbscheme: semmlecode.python.dbscheme
 extractor: python
 library: true
 upgrades: upgrades
+dependencies:
+  codeql/regex: 0.0.1
\ No newline at end of file

From 5fbcbbc584c208642d08f4346e372c849d80bc39 Mon Sep 17 00:00:00 2001
From: erik-krogh <erik-krogh@github.com>
Date: Tue, 1 Nov 2022 12:00:57 +0100
Subject: [PATCH 0077/1420] move existing regex-tree into a module

---
 python/ql/lib/semmle/python/RegexTreeView.qll | 1874 +++++++++--------
 1 file changed, 939 insertions(+), 935 deletions(-)

diff --git a/python/ql/lib/semmle/python/RegexTreeView.qll b/python/ql/lib/semmle/python/RegexTreeView.qll
index 808a784d472..aa884c56b61 100644
--- a/python/ql/lib/semmle/python/RegexTreeView.qll
+++ b/python/ql/lib/semmle/python/RegexTreeView.qll
@@ -2,6 +2,10 @@
 
 import python
 private import semmle.python.regex
+import Impl
+
+/** Gets the parse tree resulting from parsing `re`, if such has been constructed. */
+RegExpTerm getParsedRegExp(StrConst re) { result.getRegex() = re and result.isRootTerm() }
 
 /**
  * An element containing a regular expression term, that is, either
@@ -12,7 +16,7 @@ private import semmle.python.regex
  * Otherwise, we wish to represent the term differently.
  * This avoids multiple representations of the same term.
  */
-newtype TRegExpParent =
+private newtype TRegExpParent =
   /** A string literal used as a regular expression */
   TRegExpLiteral(Regex re) or
   /** A quantified term */
@@ -48,982 +52,982 @@ newtype TRegExpParent =
   /** A back reference */
   TRegExpBackRef(Regex re, int start, int end) { re.backreference(start, end) }
 
-/**
- * An element containing a regular expression term, that is, either
- * a string literal (parsed as a regular expression)
- * or another regular expression term.
- */
-class RegExpParent extends TRegExpParent {
-  /** Gets a textual representation of this element. */
-  string toString() { result = "RegExpParent" }
+/** An implementation that statisfies the RegexTreeView signature. */
+module Impl {
+  /**
+   * An element containing a regular expression term, that is, either
+   * a string literal (parsed as a regular expression)
+   * or another regular expression term.
+   */
+  class RegExpParent extends TRegExpParent {
+    /** Gets a textual representation of this element. */
+    string toString() { result = "RegExpParent" }
 
-  /** Gets the `i`th child term. */
-  abstract RegExpTerm getChild(int i);
+    /** Gets the `i`th child term. */
+    abstract RegExpTerm getChild(int i);
 
-  /** Gets a child term . */
-  RegExpTerm getAChild() { result = this.getChild(_) }
+    /** Gets a child term . */
+    RegExpTerm getAChild() { result = this.getChild(_) }
 
-  /** Gets the number of child terms. */
-  int getNumChild() { result = count(this.getAChild()) }
+    /** Gets the number of child terms. */
+    int getNumChild() { result = count(this.getAChild()) }
 
-  /** Gets the associated regex. */
-  abstract Regex getRegex();
-}
+    /** Gets the associated regex. */
+    abstract Regex getRegex();
+  }
 
-/** A string literal used as a regular expression */
-class RegExpLiteral extends TRegExpLiteral, RegExpParent {
-  Regex re;
+  /** A string literal used as a regular expression */
+  class RegExpLiteral extends TRegExpLiteral, RegExpParent {
+    Regex re;
 
-  RegExpLiteral() { this = TRegExpLiteral(re) }
+    RegExpLiteral() { this = TRegExpLiteral(re) }
 
-  override RegExpTerm getChild(int i) { i = 0 and result.getRegex() = re and result.isRootTerm() }
+    override RegExpTerm getChild(int i) { i = 0 and result.getRegex() = re and result.isRootTerm() }
 
-  /** Holds if dot, `.`, matches all characters, including newlines. */
-  predicate isDotAll() { re.getAMode() = "DOTALL" }
+    /** Holds if dot, `.`, matches all characters, including newlines. */
+    predicate isDotAll() { re.getAMode() = "DOTALL" }
 
-  /** Holds if this regex matching is case-insensitive for this regex. */
-  predicate isIgnoreCase() { re.getAMode() = "IGNORECASE" }
+    /** Holds if this regex matching is case-insensitive for this regex. */
+    predicate isIgnoreCase() { re.getAMode() = "IGNORECASE" }
 
-  /** Get a string representing all modes for this regex. */
-  string getFlags() { result = concat(string mode | mode = re.getAMode() | mode, " | ") }
+    /** Get a string representing all modes for this regex. */
+    string getFlags() { result = concat(string mode | mode = re.getAMode() | mode, " | ") }
 
-  override Regex getRegex() { result = re }
+    override Regex getRegex() { result = re }
 
-  /** Gets the primary QL class for this regex. */
-  string getPrimaryQLClass() { result = "RegExpLiteral" }
-}
-
-/**
- * A regular expression term, that is, a syntactic part of a regular expression.
- */
-class RegExpTerm extends RegExpParent {
-  Regex re;
-  int start;
-  int end;
-
-  RegExpTerm() {
-    this = TRegExpAlt(re, start, end)
-    or
-    this = TRegExpBackRef(re, start, end)
-    or
-    this = TRegExpCharacterClass(re, start, end)
-    or
-    this = TRegExpCharacterRange(re, start, end)
-    or
-    this = TRegExpNormalChar(re, start, end)
-    or
-    this = TRegExpGroup(re, start, end)
-    or
-    this = TRegExpQuantifier(re, start, end)
-    or
-    this = TRegExpSequence(re, start, end)
-    or
-    this = TRegExpSpecialChar(re, start, end)
+    /** Gets the primary QL class for this regex. */
+    string getPrimaryQLClass() { result = "RegExpLiteral" }
   }
 
   /**
-   * Gets the outermost term of this regular expression.
+   * A regular expression term, that is, a syntactic part of a regular expression.
    */
-  RegExpTerm getRootTerm() {
-    this.isRootTerm() and result = this
-    or
-    result = this.getParent().(RegExpTerm).getRootTerm()
-  }
+  class RegExpTerm extends RegExpParent {
+    Regex re;
+    int start;
+    int end;
 
-  /**
-   * Holds if this term is part of a string literal
-   * that is interpreted as a regular expression.
-   */
-  predicate isUsedAsRegExp() { any() }
-
-  /**
-   * Holds if this is the root term of a regular expression.
-   */
-  predicate isRootTerm() { start = 0 and end = re.getText().length() }
-
-  override RegExpTerm getChild(int i) {
-    result = this.(RegExpAlt).getChild(i)
-    or
-    result = this.(RegExpBackRef).getChild(i)
-    or
-    result = this.(RegExpCharacterClass).getChild(i)
-    or
-    result = this.(RegExpCharacterRange).getChild(i)
-    or
-    result = this.(RegExpNormalChar).getChild(i)
-    or
-    result = this.(RegExpGroup).getChild(i)
-    or
-    result = this.(RegExpQuantifier).getChild(i)
-    or
-    result = this.(RegExpSequence).getChild(i)
-    or
-    result = this.(RegExpSpecialChar).getChild(i)
-  }
-
-  /**
-   * Gets the parent term of this regular expression term, or the
-   * regular expression literal if this is the root term.
-   */
-  RegExpParent getParent() { result.getAChild() = this }
-
-  override Regex getRegex() { result = re }
-
-  /** Gets the offset at which this term starts. */
-  int getStart() { result = start }
-
-  /** Gets the offset at which this term ends. */
-  int getEnd() { result = end }
-
-  override string toString() { result = re.getText().substring(start, end) }
-
-  /**
-   * Gets the location of the surrounding regex, as locations inside the regex do not exist.
-   * To get location information corresponding to the term inside the regex,
-   * use `hasLocationInfo`.
-   */
-  Location getLocation() { result = re.getLocation() }
-
-  /** Holds if this term is found at the specified location offsets. */
-  predicate hasLocationInfo(
-    string filepath, int startline, int startcolumn, int endline, int endcolumn
-  ) {
-    exists(int re_start, int re_end |
-      re.getLocation().hasLocationInfo(filepath, startline, re_start, endline, re_end) and
-      startcolumn = re_start + start + 4 and
-      endcolumn = re_start + end + 3
-    )
-  }
-
-  /** Gets the file in which this term is found. */
-  File getFile() { result = this.getLocation().getFile() }
-
-  /** Gets the raw source text of this term. */
-  string getRawValue() { result = this.toString() }
-
-  /** Gets the string literal in which this term is found. */
-  RegExpLiteral getLiteral() { result = TRegExpLiteral(re) }
-
-  /** Gets the regular expression term that is matched (textually) before this one, if any. */
-  RegExpTerm getPredecessor() {
-    exists(RegExpTerm parent | parent = this.getParent() |
-      result = parent.(RegExpSequence).previousElement(this)
+    RegExpTerm() {
+      this = TRegExpAlt(re, start, end)
       or
-      not exists(parent.(RegExpSequence).previousElement(this)) and
-      not parent instanceof RegExpSubPattern and
-      result = parent.getPredecessor()
-    )
-  }
-
-  /** Gets the regular expression term that is matched (textually) after this one, if any. */
-  RegExpTerm getSuccessor() {
-    exists(RegExpTerm parent | parent = this.getParent() |
-      result = parent.(RegExpSequence).nextElement(this)
+      this = TRegExpBackRef(re, start, end)
       or
-      not exists(parent.(RegExpSequence).nextElement(this)) and
-      not parent instanceof RegExpSubPattern and
-      result = parent.getSuccessor()
-    )
+      this = TRegExpCharacterClass(re, start, end)
+      or
+      this = TRegExpCharacterRange(re, start, end)
+      or
+      this = TRegExpNormalChar(re, start, end)
+      or
+      this = TRegExpGroup(re, start, end)
+      or
+      this = TRegExpQuantifier(re, start, end)
+      or
+      this = TRegExpSequence(re, start, end)
+      or
+      this = TRegExpSpecialChar(re, start, end)
+    }
+
+    /**
+     * Gets the outermost term of this regular expression.
+     */
+    RegExpTerm getRootTerm() {
+      this.isRootTerm() and result = this
+      or
+      result = this.getParent().(RegExpTerm).getRootTerm()
+    }
+
+    /**
+     * Holds if this term is part of a string literal
+     * that is interpreted as a regular expression.
+     */
+    predicate isUsedAsRegExp() { any() }
+
+    /**
+     * Holds if this is the root term of a regular expression.
+     */
+    predicate isRootTerm() { start = 0 and end = re.getText().length() }
+
+    override RegExpTerm getChild(int i) {
+      result = this.(RegExpAlt).getChild(i)
+      or
+      result = this.(RegExpBackRef).getChild(i)
+      or
+      result = this.(RegExpCharacterClass).getChild(i)
+      or
+      result = this.(RegExpCharacterRange).getChild(i)
+      or
+      result = this.(RegExpNormalChar).getChild(i)
+      or
+      result = this.(RegExpGroup).getChild(i)
+      or
+      result = this.(RegExpQuantifier).getChild(i)
+      or
+      result = this.(RegExpSequence).getChild(i)
+      or
+      result = this.(RegExpSpecialChar).getChild(i)
+    }
+
+    /**
+     * Gets the parent term of this regular expression term, or the
+     * regular expression literal if this is the root term.
+     */
+    RegExpParent getParent() { result.getAChild() = this }
+
+    override Regex getRegex() { result = re }
+
+    /** Gets the offset at which this term starts. */
+    int getStart() { result = start }
+
+    /** Gets the offset at which this term ends. */
+    int getEnd() { result = end }
+
+    override string toString() { result = re.getText().substring(start, end) }
+
+    /**
+     * Gets the location of the surrounding regex, as locations inside the regex do not exist.
+     * To get location information corresponding to the term inside the regex,
+     * use `hasLocationInfo`.
+     */
+    Location getLocation() { result = re.getLocation() }
+
+    /** Holds if this term is found at the specified location offsets. */
+    predicate hasLocationInfo(
+      string filepath, int startline, int startcolumn, int endline, int endcolumn
+    ) {
+      exists(int re_start, int re_end |
+        re.getLocation().hasLocationInfo(filepath, startline, re_start, endline, re_end) and
+        startcolumn = re_start + start + 4 and
+        endcolumn = re_start + end + 3
+      )
+    }
+
+    /** Gets the file in which this term is found. */
+    File getFile() { result = this.getLocation().getFile() }
+
+    /** Gets the raw source text of this term. */
+    string getRawValue() { result = this.toString() }
+
+    /** Gets the string literal in which this term is found. */
+    RegExpLiteral getLiteral() { result = TRegExpLiteral(re) }
+
+    /** Gets the regular expression term that is matched (textually) before this one, if any. */
+    RegExpTerm getPredecessor() {
+      exists(RegExpTerm parent | parent = this.getParent() |
+        result = parent.(RegExpSequence).previousElement(this)
+        or
+        not exists(parent.(RegExpSequence).previousElement(this)) and
+        not parent instanceof RegExpSubPattern and
+        result = parent.getPredecessor()
+      )
+    }
+
+    /** Gets the regular expression term that is matched (textually) after this one, if any. */
+    RegExpTerm getSuccessor() {
+      exists(RegExpTerm parent | parent = this.getParent() |
+        result = parent.(RegExpSequence).nextElement(this)
+        or
+        not exists(parent.(RegExpSequence).nextElement(this)) and
+        not parent instanceof RegExpSubPattern and
+        result = parent.getSuccessor()
+      )
+    }
+
+    /** Gets the primary QL class for this term. */
+    string getPrimaryQLClass() { result = "RegExpTerm" }
   }
 
-  /** Gets the primary QL class for this term. */
-  string getPrimaryQLClass() { result = "RegExpTerm" }
-}
-
-/**
- * A quantified regular expression term.
- *
- * Example:
- *
- * ```
- * ((ECMA|Java)[sS]cript)*
- * ```
- */
-class RegExpQuantifier extends RegExpTerm, TRegExpQuantifier {
-  int part_end;
-  boolean maybe_empty;
-  boolean may_repeat_forever;
-
-  RegExpQuantifier() {
-    this = TRegExpQuantifier(re, start, end) and
-    re.qualifiedPart(start, part_end, end, maybe_empty, may_repeat_forever)
-  }
-
-  override RegExpTerm getChild(int i) {
-    i = 0 and
-    result.getRegex() = re and
-    result.getStart() = start and
-    result.getEnd() = part_end
-  }
-
-  /** Hols if this term may match an unlimited number of times. */
-  predicate mayRepeatForever() { may_repeat_forever = true }
-
-  /** Gets the qualifier for this term. That is e.g "?" for "a?". */
-  string getQualifier() { result = re.getText().substring(part_end, end) }
-
-  override string getPrimaryQLClass() { result = "RegExpQuantifier" }
-}
-
-/**
- * A regular expression term that permits unlimited repetitions.
- */
-class InfiniteRepetitionQuantifier extends RegExpQuantifier {
-  InfiniteRepetitionQuantifier() { this.mayRepeatForever() }
-}
-
-/**
- * A star-quantified term.
- *
- * Example:
- *
- * ```
- * \w*
- * ```
- */
-class RegExpStar extends InfiniteRepetitionQuantifier {
-  RegExpStar() { this.getQualifier().charAt(0) = "*" }
-
-  override string getPrimaryQLClass() { result = "RegExpStar" }
-}
-
-/**
- * A plus-quantified term.
- *
- * Example:
- *
- * ```
- * \w+
- * ```
- */
-class RegExpPlus extends InfiniteRepetitionQuantifier {
-  RegExpPlus() { this.getQualifier().charAt(0) = "+" }
-
-  override string getPrimaryQLClass() { result = "RegExpPlus" }
-}
-
-/**
- * An optional term.
- *
- * Example:
- *
- * ```
- * ;?
- * ```
- */
-class RegExpOpt extends RegExpQuantifier {
-  RegExpOpt() { this.getQualifier().charAt(0) = "?" }
-
-  override string getPrimaryQLClass() { result = "RegExpOpt" }
-}
-
-/**
- * A range-quantified term
- *
- * Examples:
- *
- * ```
- * \w{2,4}
- * \w{2,}
- * \w{2}
- * ```
- */
-class RegExpRange extends RegExpQuantifier {
-  string upper;
-  string lower;
-
-  RegExpRange() { re.multiples(part_end, end, lower, upper) }
-
-  /** Gets the string defining the upper bound of this range, if any. */
-  string getUpper() { result = upper }
-
-  /** Gets the string defining the lower bound of this range, if any. */
-  string getLower() { result = lower }
-
   /**
-   * Gets the upper bound of the range, if any.
+   * A quantified regular expression term.
    *
-   * If there is no upper bound, any number of repetitions is allowed.
-   * For a term of the form `r{lo}`, both the lower and the upper bound
-   * are `lo`.
-   */
-  int getUpperBound() { result = this.getUpper().toInt() }
-
-  /** Gets the lower bound of the range. */
-  int getLowerBound() { result = this.getLower().toInt() }
-
-  override string getPrimaryQLClass() { result = "RegExpRange" }
-}
-
-/**
- * A sequence term.
- *
- * Example:
- *
- * ```
- * (ECMA|Java)Script
- * ```
- *
- * This is a sequence with the elements `(ECMA|Java)` and `Script`.
- */
-class RegExpSequence extends RegExpTerm, TRegExpSequence {
-  RegExpSequence() { this = TRegExpSequence(re, start, end) }
-
-  override RegExpTerm getChild(int i) { result = seqChild(re, start, end, i) }
-
-  /** Gets the element preceding `element` in this sequence. */
-  RegExpTerm previousElement(RegExpTerm element) { element = this.nextElement(result) }
-
-  /** Gets the element following `element` in this sequence. */
-  RegExpTerm nextElement(RegExpTerm element) {
-    exists(int i |
-      element = this.getChild(i) and
-      result = this.getChild(i + 1)
-    )
-  }
-
-  override string getPrimaryQLClass() { result = "RegExpSequence" }
-}
-
-pragma[nomagic]
-private int seqChildEnd(Regex re, int start, int end, int i) {
-  result = seqChild(re, start, end, i).getEnd()
-}
-
-// moved out so we can use it in the charpred
-private RegExpTerm seqChild(Regex re, int start, int end, int i) {
-  re.sequence(start, end) and
-  (
-    i = 0 and
-    result.getRegex() = re and
-    result.getStart() = start and
-    exists(int itemEnd |
-      re.item(start, itemEnd) and
-      result.getEnd() = itemEnd
-    )
-    or
-    i > 0 and
-    result.getRegex() = re and
-    exists(int itemStart | itemStart = seqChildEnd(re, start, end, i - 1) |
-      result.getStart() = itemStart and
-      re.item(itemStart, result.getEnd())
-    )
-  )
-}
-
-/**
- * An alternative term, that is, a term of the form `a|b`.
- *
- * Example:
- *
- * ```
- * ECMA|Java
- * ```
- */
-class RegExpAlt extends RegExpTerm, TRegExpAlt {
-  RegExpAlt() { this = TRegExpAlt(re, start, end) }
-
-  override RegExpTerm getChild(int i) {
-    i = 0 and
-    result.getRegex() = re and
-    result.getStart() = start and
-    exists(int part_end |
-      re.alternationOption(start, end, start, part_end) and
-      result.getEnd() = part_end
-    )
-    or
-    i > 0 and
-    result.getRegex() = re and
-    exists(int part_start |
-      part_start = this.getChild(i - 1).getEnd() + 1 // allow for the |
-    |
-      result.getStart() = part_start and
-      re.alternationOption(start, end, part_start, result.getEnd())
-    )
-  }
-
-  override string getPrimaryQLClass() { result = "RegExpAlt" }
-}
-
-class RegExpCharEscape = RegExpEscape;
-
-/**
- * An escaped regular expression term, that is, a regular expression
- * term starting with a backslash, which is not a backreference.
- *
- * Example:
- *
- * ```
- * \.
- * \w
- * ```
- */
-class RegExpEscape extends RegExpNormalChar {
-  RegExpEscape() { re.escapedCharacter(start, end) }
-
-  /**
-   * Gets the name of the escaped; for example, `w` for `\w`.
-   * TODO: Handle named escapes.
-   */
-  override string getValue() {
-    not this.isUnicode() and
-    this.isIdentityEscape() and
-    result = this.getUnescaped()
-    or
-    this.getUnescaped() = "n" and result = "\n"
-    or
-    this.getUnescaped() = "r" and result = "\r"
-    or
-    this.getUnescaped() = "t" and result = "\t"
-    or
-    this.getUnescaped() = "f" and result = 12.toUnicode()
-    or
-    this.getUnescaped() = "v" and result = 11.toUnicode()
-    or
-    this.isUnicode() and
-    result = this.getUnicode()
-  }
-
-  /** Holds if this terms name is given by the part following the escape character. */
-  predicate isIdentityEscape() { not this.getUnescaped() in ["n", "r", "t", "f"] }
-
-  override string getPrimaryQLClass() { result = "RegExpEscape" }
-
-  /** Gets the part of the term following the escape character. That is e.g. "w" if the term is "\w". */
-  string getUnescaped() { result = this.getText().suffix(1) }
-
-  /**
-   * Gets the text for this escape. That is e.g. "\w".
-   */
-  private string getText() { result = re.getText().substring(start, end) }
-
-  /**
-   * Holds if this is a unicode escape.
-   */
-  private predicate isUnicode() { this.getText().prefix(2) = ["\\u", "\\U"] }
-
-  /**
-   * Gets the unicode char for this escape.
-   * E.g. for `\u0061` this returns "a".
-   */
-  private string getUnicode() {
-    exists(int codepoint | codepoint = sum(this.getHexValueFromUnicode(_)) |
-      result = codepoint.toUnicode()
-    )
-  }
-
-  /**
-   * Gets int value for the `index`th char in the hex number of the unicode escape.
-   * E.g. for `\u0061` and `index = 2` this returns 96 (the number `6` interpreted as hex).
-   */
-  private int getHexValueFromUnicode(int index) {
-    this.isUnicode() and
-    exists(string hex, string char | hex = this.getText().suffix(2) |
-      char = hex.charAt(index) and
-      result = 16.pow(hex.length() - index - 1) * toHex(char)
-    )
-  }
-}
-
-/**
- * Gets the hex number for the `hex` char.
- */
-private int toHex(string hex) {
-  hex = [0 .. 9].toString() and
-  result = hex.toInt()
-  or
-  result = 10 and hex = ["a", "A"]
-  or
-  result = 11 and hex = ["b", "B"]
-  or
-  result = 12 and hex = ["c", "C"]
-  or
-  result = 13 and hex = ["d", "D"]
-  or
-  result = 14 and hex = ["e", "E"]
-  or
-  result = 15 and hex = ["f", "F"]
-}
-
-/**
- * A word boundary, that is, a regular expression term of the form `\b`.
- */
-class RegExpWordBoundary extends RegExpSpecialChar {
-  RegExpWordBoundary() { this.getChar() = "\\b" }
-}
-
-/**
- * A character class escape in a regular expression.
- * That is, an escaped character that denotes multiple characters.
- *
- * Examples:
- *
- * ```
- * \w
- * \S
- * ```
- */
-class RegExpCharacterClassEscape extends RegExpEscape {
-  RegExpCharacterClassEscape() { this.getValue() in ["d", "D", "s", "S", "w", "W"] }
-
-  override RegExpTerm getChild(int i) { none() }
-
-  override string getPrimaryQLClass() { result = "RegExpCharacterClassEscape" }
-}
-
-/**
- * A character class in a regular expression.
- *
- * Examples:
- *
- * ```
- * [a-z_]
- * [^<>&]
- * ```
- */
-class RegExpCharacterClass extends RegExpTerm, TRegExpCharacterClass {
-  RegExpCharacterClass() { this = TRegExpCharacterClass(re, start, end) }
-
-  /** Holds if this character class is inverted, matching the opposite of its content. */
-  predicate isInverted() { re.getChar(start + 1) = "^" }
-
-  /** Gets the `i`th char inside this charater class. */
-  string getCharThing(int i) { result = re.getChar(i + start) }
-
-  /** Holds if this character class can match anything. */
-  predicate isUniversalClass() {
-    // [^]
-    this.isInverted() and not exists(this.getAChild())
-    or
-    // [\w\W] and similar
-    not this.isInverted() and
-    exists(string cce1, string cce2 |
-      cce1 = this.getAChild().(RegExpCharacterClassEscape).getValue() and
-      cce2 = this.getAChild().(RegExpCharacterClassEscape).getValue()
-    |
-      cce1 != cce2 and cce1.toLowerCase() = cce2.toLowerCase()
-    )
-  }
-
-  override RegExpTerm getChild(int i) {
-    i = 0 and
-    result.getRegex() = re and
-    exists(int itemStart, int itemEnd |
-      result.getStart() = itemStart and
-      re.char_set_start(start, itemStart) and
-      re.char_set_child(start, itemStart, itemEnd) and
-      result.getEnd() = itemEnd
-    )
-    or
-    i > 0 and
-    result.getRegex() = re and
-    exists(int itemStart | itemStart = this.getChild(i - 1).getEnd() |
-      result.getStart() = itemStart and
-      re.char_set_child(start, itemStart, result.getEnd())
-    )
-  }
-
-  override string getPrimaryQLClass() { result = "RegExpCharacterClass" }
-}
-
-/**
- * A character range in a character class in a regular expression.
- *
- * Example:
- *
- * ```
- * a-z
- * ```
- */
-class RegExpCharacterRange extends RegExpTerm, TRegExpCharacterRange {
-  int lower_end;
-  int upper_start;
-
-  RegExpCharacterRange() {
-    this = TRegExpCharacterRange(re, start, end) and
-    re.charRange(_, start, lower_end, upper_start, end)
-  }
-
-  /** Holds if this range goes from `lo` to `hi`, in effect is `lo-hi`. */
-  predicate isRange(string lo, string hi) {
-    lo = re.getText().substring(start, lower_end) and
-    hi = re.getText().substring(upper_start, end)
-  }
-
-  override RegExpTerm getChild(int i) {
-    i = 0 and
-    result.getRegex() = re and
-    result.getStart() = start and
-    result.getEnd() = lower_end
-    or
-    i = 1 and
-    result.getRegex() = re and
-    result.getStart() = upper_start and
-    result.getEnd() = end
-  }
-
-  override string getPrimaryQLClass() { result = "RegExpCharacterRange" }
-}
-
-/**
- * A normal character in a regular expression, that is, a character
- * without special meaning. This includes escaped characters.
- *
- * Examples:
- * ```
- * t
- * \t
- * ```
- */
-class RegExpNormalChar extends RegExpTerm, TRegExpNormalChar {
-  RegExpNormalChar() { this = TRegExpNormalChar(re, start, end) }
-
-  /**
-   * Holds if this constant represents a valid Unicode character (as opposed
-   * to a surrogate code point that does not correspond to a character by itself.)
-   */
-  predicate isCharacter() { any() }
-
-  /** Gets the string representation of the char matched by this term. */
-  string getValue() { result = re.getText().substring(start, end) }
-
-  override RegExpTerm getChild(int i) { none() }
-
-  override string getPrimaryQLClass() { result = "RegExpNormalChar" }
-}
-
-/**
- * A constant regular expression term, that is, a regular expression
- * term matching a single string. Currently, this will always be a single character.
- *
- * Example:
- *
- * ```
- * a
- * ```
- */
-class RegExpConstant extends RegExpTerm {
-  string value;
-
-  RegExpConstant() {
-    this = TRegExpNormalChar(re, start, end) and
-    not this instanceof RegExpCharacterClassEscape and
-    // exclude chars in qualifiers
-    // TODO: push this into regex library
-    not exists(int qstart, int qend | re.qualifiedPart(_, qstart, qend, _, _) |
-      qstart <= start and end <= qend
-    ) and
-    value = this.(RegExpNormalChar).getValue()
-  }
-
-  /**
-   * Holds if this constant represents a valid Unicode character (as opposed
-   * to a surrogate code point that does not correspond to a character by itself.)
-   */
-  predicate isCharacter() { any() }
-
-  /** Gets the string matched by this constant term. */
-  string getValue() { result = value }
-
-  override RegExpTerm getChild(int i) { none() }
-
-  override string getPrimaryQLClass() { result = "RegExpConstant" }
-}
-
-/**
- * A grouped regular expression.
- *
- * Examples:
- *
- * ```
- * (ECMA|Java)
- * (?:ECMA|Java)
- * (?<quote>['"])
- * ```
- */
-class RegExpGroup extends RegExpTerm, TRegExpGroup {
-  RegExpGroup() { this = TRegExpGroup(re, start, end) }
-
-  /**
-   * Gets the index of this capture group within the enclosing regular
-   * expression literal.
+   * Example:
    *
-   * For example, in the regular expression `/((a?).)(?:b)/`, the
-   * group `((a?).)` has index 1, the group `(a?)` nested inside it
-   * has index 2, and the group `(?:b)` has no index, since it is
-   * not a capture group.
+   * ```
+   * ((ECMA|Java)[sS]cript)*
+   * ```
    */
-  int getNumber() { result = re.getGroupNumber(start, end) }
+  class RegExpQuantifier extends RegExpTerm, TRegExpQuantifier {
+    int part_end;
+    boolean maybe_empty;
+    boolean may_repeat_forever;
 
-  /** Holds if this is a capture group. */
-  predicate isCapture() { exists(this.getNumber()) }
+    RegExpQuantifier() {
+      this = TRegExpQuantifier(re, start, end) and
+      re.qualifiedPart(start, part_end, end, maybe_empty, may_repeat_forever)
+    }
 
-  /** Holds if this is a named capture group. */
-  predicate isNamed() { exists(this.getName()) }
-
-  /** Gets the name of this capture group, if any. */
-  string getName() { result = re.getGroupName(start, end) }
-
-  override RegExpTerm getChild(int i) {
-    result.getRegex() = re and
-    i = 0 and
-    re.groupContents(start, end, result.getStart(), result.getEnd())
-  }
-
-  override string getPrimaryQLClass() { result = "RegExpGroup" }
-}
-
-/**
- * A special character in a regular expression.
- *
- * Examples:
- * ```
- * ^
- * $
- * .
- * ```
- */
-class RegExpSpecialChar extends RegExpTerm, TRegExpSpecialChar {
-  string char;
-
-  RegExpSpecialChar() {
-    this = TRegExpSpecialChar(re, start, end) and
-    re.specialCharacter(start, end, char)
-  }
-
-  /**
-   * Holds if this constant represents a valid Unicode character (as opposed
-   * to a surrogate code point that does not correspond to a character by itself.)
-   */
-  predicate isCharacter() { any() }
-
-  /** Gets the char for this term. */
-  string getChar() { result = char }
-
-  override RegExpTerm getChild(int i) { none() }
-
-  override string getPrimaryQLClass() { result = "RegExpSpecialChar" }
-}
-
-/**
- * A dot regular expression.
- *
- * Example:
- *
- * ```
- * .
- * ```
- */
-class RegExpDot extends RegExpSpecialChar {
-  RegExpDot() { this.getChar() = "." }
-
-  override string getPrimaryQLClass() { result = "RegExpDot" }
-}
-
-/**
- * A dollar assertion `$` or `\Z` matching the end of a line.
- *
- * Example:
- *
- * ```
- * $
- * ```
- */
-class RegExpDollar extends RegExpSpecialChar {
-  RegExpDollar() { this.getChar() = ["$", "\\Z"] }
-
-  override string getPrimaryQLClass() { result = "RegExpDollar" }
-}
-
-/**
- * A caret assertion `^` or `\A` matching the beginning of a line.
- *
- * Example:
- *
- * ```
- * ^
- * ```
- */
-class RegExpCaret extends RegExpSpecialChar {
-  RegExpCaret() { this.getChar() = ["^", "\\A"] }
-
-  override string getPrimaryQLClass() { result = "RegExpCaret" }
-}
-
-/**
- * A zero-width match, that is, either an empty group or an assertion.
- *
- * Examples:
- * ```
- * ()
- * (?=\w)
- * ```
- */
-class RegExpZeroWidthMatch extends RegExpGroup {
-  RegExpZeroWidthMatch() { re.zeroWidthMatch(start, end) }
-
-  override RegExpTerm getChild(int i) { none() }
-
-  override string getPrimaryQLClass() { result = "RegExpZeroWidthMatch" }
-}
-
-/**
- * A zero-width lookahead or lookbehind assertion.
- *
- * Examples:
- *
- * ```
- * (?=\w)
- * (?!\n)
- * (?<=\.)
- * (?<!\\)
- * ```
- */
-class RegExpSubPattern extends RegExpZeroWidthMatch {
-  RegExpSubPattern() { not re.emptyGroup(start, end) }
-
-  /** Gets the lookahead term. */
-  RegExpTerm getOperand() {
-    exists(int in_start, int in_end | re.groupContents(start, end, in_start, in_end) |
+    override RegExpTerm getChild(int i) {
+      i = 0 and
       result.getRegex() = re and
-      result.getStart() = in_start and
-      result.getEnd() = in_end
+      result.getStart() = start and
+      result.getEnd() = part_end
+    }
+
+    /** Hols if this term may match an unlimited number of times. */
+    predicate mayRepeatForever() { may_repeat_forever = true }
+
+    /** Gets the qualifier for this term. That is e.g "?" for "a?". */
+    string getQualifier() { result = re.getText().substring(part_end, end) }
+
+    override string getPrimaryQLClass() { result = "RegExpQuantifier" }
+  }
+
+  /**
+   * A regular expression term that permits unlimited repetitions.
+   */
+  class InfiniteRepetitionQuantifier extends RegExpQuantifier {
+    InfiniteRepetitionQuantifier() { this.mayRepeatForever() }
+  }
+
+  /**
+   * A star-quantified term.
+   *
+   * Example:
+   *
+   * ```
+   * \w*
+   * ```
+   */
+  class RegExpStar extends InfiniteRepetitionQuantifier {
+    RegExpStar() { this.getQualifier().charAt(0) = "*" }
+
+    override string getPrimaryQLClass() { result = "RegExpStar" }
+  }
+
+  /**
+   * A plus-quantified term.
+   *
+   * Example:
+   *
+   * ```
+   * \w+
+   * ```
+   */
+  class RegExpPlus extends InfiniteRepetitionQuantifier {
+    RegExpPlus() { this.getQualifier().charAt(0) = "+" }
+
+    override string getPrimaryQLClass() { result = "RegExpPlus" }
+  }
+
+  /**
+   * An optional term.
+   *
+   * Example:
+   *
+   * ```
+   * ;?
+   * ```
+   */
+  class RegExpOpt extends RegExpQuantifier {
+    RegExpOpt() { this.getQualifier().charAt(0) = "?" }
+
+    override string getPrimaryQLClass() { result = "RegExpOpt" }
+  }
+
+  /**
+   * A range-quantified term
+   *
+   * Examples:
+   *
+   * ```
+   * \w{2,4}
+   * \w{2,}
+   * \w{2}
+   * ```
+   */
+  class RegExpRange extends RegExpQuantifier {
+    string upper;
+    string lower;
+
+    RegExpRange() { re.multiples(part_end, end, lower, upper) }
+
+    /** Gets the string defining the upper bound of this range, if any. */
+    string getUpper() { result = upper }
+
+    /** Gets the string defining the lower bound of this range, if any. */
+    string getLower() { result = lower }
+
+    /**
+     * Gets the upper bound of the range, if any.
+     *
+     * If there is no upper bound, any number of repetitions is allowed.
+     * For a term of the form `r{lo}`, both the lower and the upper bound
+     * are `lo`.
+     */
+    int getUpperBound() { result = this.getUpper().toInt() }
+
+    /** Gets the lower bound of the range. */
+    int getLowerBound() { result = this.getLower().toInt() }
+
+    override string getPrimaryQLClass() { result = "RegExpRange" }
+  }
+
+  /**
+   * A sequence term.
+   *
+   * Example:
+   *
+   * ```
+   * (ECMA|Java)Script
+   * ```
+   *
+   * This is a sequence with the elements `(ECMA|Java)` and `Script`.
+   */
+  class RegExpSequence extends RegExpTerm, TRegExpSequence {
+    RegExpSequence() { this = TRegExpSequence(re, start, end) }
+
+    override RegExpTerm getChild(int i) { result = seqChild(re, start, end, i) }
+
+    /** Gets the element preceding `element` in this sequence. */
+    RegExpTerm previousElement(RegExpTerm element) { element = this.nextElement(result) }
+
+    /** Gets the element following `element` in this sequence. */
+    RegExpTerm nextElement(RegExpTerm element) {
+      exists(int i |
+        element = this.getChild(i) and
+        result = this.getChild(i + 1)
+      )
+    }
+
+    override string getPrimaryQLClass() { result = "RegExpSequence" }
+  }
+
+  pragma[nomagic]
+  private int seqChildEnd(Regex re, int start, int end, int i) {
+    result = seqChild(re, start, end, i).getEnd()
+  }
+
+  // moved out so we can use it in the charpred
+  private RegExpTerm seqChild(Regex re, int start, int end, int i) {
+    re.sequence(start, end) and
+    (
+      i = 0 and
+      result.getRegex() = re and
+      result.getStart() = start and
+      exists(int itemEnd |
+        re.item(start, itemEnd) and
+        result.getEnd() = itemEnd
+      )
+      or
+      i > 0 and
+      result.getRegex() = re and
+      exists(int itemStart | itemStart = seqChildEnd(re, start, end, i - 1) |
+        result.getStart() = itemStart and
+        re.item(itemStart, result.getEnd())
+      )
     )
   }
-}
-
-/**
- * A zero-width lookahead assertion.
- *
- * Examples:
- *
- * ```
- * (?=\w)
- * (?!\n)
- * ```
- */
-abstract class RegExpLookahead extends RegExpSubPattern { }
-
-/**
- * A positive-lookahead assertion.
- *
- * Examples:
- *
- * ```
- * (?=\w)
- * ```
- */
-class RegExpPositiveLookahead extends RegExpLookahead {
-  RegExpPositiveLookahead() { re.positiveLookaheadAssertionGroup(start, end) }
-
-  override string getPrimaryQLClass() { result = "RegExpPositiveLookahead" }
-}
-
-/**
- * A negative-lookahead assertion.
- *
- * Examples:
- *
- * ```
- * (?!\n)
- * ```
- */
-class RegExpNegativeLookahead extends RegExpLookahead {
-  RegExpNegativeLookahead() { re.negativeLookaheadAssertionGroup(start, end) }
-
-  override string getPrimaryQLClass() { result = "RegExpNegativeLookahead" }
-}
-
-/**
- * A zero-width lookbehind assertion.
- *
- * Examples:
- *
- * ```
- * (?<=\.)
- * (?<!\\)
- * ```
- */
-abstract class RegExpLookbehind extends RegExpSubPattern { }
-
-/**
- * A positive-lookbehind assertion.
- *
- * Examples:
- *
- * ```
- * (?<=\.)
- * ```
- */
-class RegExpPositiveLookbehind extends RegExpLookbehind {
-  RegExpPositiveLookbehind() { re.positiveLookbehindAssertionGroup(start, end) }
-
-  override string getPrimaryQLClass() { result = "RegExpPositiveLookbehind" }
-}
-
-/**
- * A negative-lookbehind assertion.
- *
- * Examples:
- *
- * ```
- * (?<!\\)
- * ```
- */
-class RegExpNegativeLookbehind extends RegExpLookbehind {
-  RegExpNegativeLookbehind() { re.negativeLookbehindAssertionGroup(start, end) }
-
-  override string getPrimaryQLClass() { result = "RegExpNegativeLookbehind" }
-}
-
-/**
- * A back reference, that is, a term of the form `\i` or `\k<name>`
- * in a regular expression.
- *
- * Examples:
- *
- * ```
- * \1
- * (?P=quote)
- * ```
- */
-class RegExpBackRef extends RegExpTerm, TRegExpBackRef {
-  RegExpBackRef() { this = TRegExpBackRef(re, start, end) }
 
   /**
-   * Gets the number of the capture group this back reference refers to, if any.
+   * An alternative term, that is, a term of the form `a|b`.
+   *
+   * Example:
+   *
+   * ```
+   * ECMA|Java
+   * ```
    */
-  int getNumber() { result = re.getBackrefNumber(start, end) }
+  class RegExpAlt extends RegExpTerm, TRegExpAlt {
+    RegExpAlt() { this = TRegExpAlt(re, start, end) }
+
+    override RegExpTerm getChild(int i) {
+      i = 0 and
+      result.getRegex() = re and
+      result.getStart() = start and
+      exists(int part_end |
+        re.alternationOption(start, end, start, part_end) and
+        result.getEnd() = part_end
+      )
+      or
+      i > 0 and
+      result.getRegex() = re and
+      exists(int part_start |
+        part_start = this.getChild(i - 1).getEnd() + 1 // allow for the |
+      |
+        result.getStart() = part_start and
+        re.alternationOption(start, end, part_start, result.getEnd())
+      )
+    }
+
+    override string getPrimaryQLClass() { result = "RegExpAlt" }
+  }
+
+  class RegExpCharEscape = RegExpEscape;
 
   /**
-   * Gets the name of the capture group this back reference refers to, if any.
+   * An escaped regular expression term, that is, a regular expression
+   * term starting with a backslash, which is not a backreference.
+   *
+   * Example:
+   *
+   * ```
+   * \.
+   * \w
+   * ```
    */
-  string getName() { result = re.getBackrefName(start, end) }
+  class RegExpEscape extends RegExpNormalChar {
+    RegExpEscape() { re.escapedCharacter(start, end) }
 
-  /** Gets the capture group this back reference refers to. */
-  RegExpGroup getGroup() {
-    this.hasLiteralAndNumber(result.getLiteral(), result.getNumber()) or
-    this.hasLiteralAndName(result.getLiteral(), result.getName())
+    /**
+     * Gets the name of the escaped; for example, `w` for `\w`.
+     * TODO: Handle named escapes.
+     */
+    override string getValue() {
+      not this.isUnicode() and
+      this.isIdentityEscape() and
+      result = this.getUnescaped()
+      or
+      this.getUnescaped() = "n" and result = "\n"
+      or
+      this.getUnescaped() = "r" and result = "\r"
+      or
+      this.getUnescaped() = "t" and result = "\t"
+      or
+      this.getUnescaped() = "f" and result = 12.toUnicode()
+      or
+      this.getUnescaped() = "v" and result = 11.toUnicode()
+      or
+      this.isUnicode() and
+      result = this.getUnicode()
+    }
+
+    /** Holds if this terms name is given by the part following the escape character. */
+    predicate isIdentityEscape() { not this.getUnescaped() in ["n", "r", "t", "f"] }
+
+    override string getPrimaryQLClass() { result = "RegExpEscape" }
+
+    /** Gets the part of the term following the escape character. That is e.g. "w" if the term is "\w". */
+    string getUnescaped() { result = this.getText().suffix(1) }
+
+    /**
+     * Gets the text for this escape. That is e.g. "\w".
+     */
+    private string getText() { result = re.getText().substring(start, end) }
+
+    /**
+     * Holds if this is a unicode escape.
+     */
+    private predicate isUnicode() { this.getText().prefix(2) = ["\\u", "\\U"] }
+
+    /**
+     * Gets the unicode char for this escape.
+     * E.g. for `\u0061` this returns "a".
+     */
+    private string getUnicode() {
+      exists(int codepoint | codepoint = sum(this.getHexValueFromUnicode(_)) |
+        result = codepoint.toUnicode()
+      )
+    }
+
+    /**
+     * Gets int value for the `index`th char in the hex number of the unicode escape.
+     * E.g. for `\u0061` and `index = 2` this returns 96 (the number `6` interpreted as hex).
+     */
+    private int getHexValueFromUnicode(int index) {
+      this.isUnicode() and
+      exists(string hex, string char | hex = this.getText().suffix(2) |
+        char = hex.charAt(index) and
+        result = 16.pow(hex.length() - index - 1) * toHex(char)
+      )
+    }
   }
 
-  /** Join-order helper for `getGroup`. */
-  pragma[nomagic]
-  private predicate hasLiteralAndNumber(RegExpLiteral literal, int number) {
-    literal = this.getLiteral() and
-    number = this.getNumber()
+  /**
+   * Gets the hex number for the `hex` char.
+   */
+  private int toHex(string hex) {
+    hex = [0 .. 9].toString() and
+    result = hex.toInt()
+    or
+    result = 10 and hex = ["a", "A"]
+    or
+    result = 11 and hex = ["b", "B"]
+    or
+    result = 12 and hex = ["c", "C"]
+    or
+    result = 13 and hex = ["d", "D"]
+    or
+    result = 14 and hex = ["e", "E"]
+    or
+    result = 15 and hex = ["f", "F"]
   }
 
-  /** Join-order helper for `getGroup`. */
-  pragma[nomagic]
-  private predicate hasLiteralAndName(RegExpLiteral literal, string name) {
-    literal = this.getLiteral() and
-    name = this.getName()
+  /**
+   * A word boundary, that is, a regular expression term of the form `\b`.
+   */
+  class RegExpWordBoundary extends RegExpSpecialChar {
+    RegExpWordBoundary() { this.getChar() = "\\b" }
   }
 
-  override RegExpTerm getChild(int i) { none() }
+  /**
+   * A character class escape in a regular expression.
+   * That is, an escaped character that denotes multiple characters.
+   *
+   * Examples:
+   *
+   * ```
+   * \w
+   * \S
+   * ```
+   */
+  class RegExpCharacterClassEscape extends RegExpEscape {
+    RegExpCharacterClassEscape() { this.getValue() in ["d", "D", "s", "S", "w", "W"] }
 
-  override string getPrimaryQLClass() { result = "RegExpBackRef" }
+    override RegExpTerm getChild(int i) { none() }
+
+    override string getPrimaryQLClass() { result = "RegExpCharacterClassEscape" }
+  }
+
+  /**
+   * A character class in a regular expression.
+   *
+   * Examples:
+   *
+   * ```
+   * [a-z_]
+   * [^<>&]
+   * ```
+   */
+  class RegExpCharacterClass extends RegExpTerm, TRegExpCharacterClass {
+    RegExpCharacterClass() { this = TRegExpCharacterClass(re, start, end) }
+
+    /** Holds if this character class is inverted, matching the opposite of its content. */
+    predicate isInverted() { re.getChar(start + 1) = "^" }
+
+    /** Gets the `i`th char inside this charater class. */
+    string getCharThing(int i) { result = re.getChar(i + start) }
+
+    /** Holds if this character class can match anything. */
+    predicate isUniversalClass() {
+      // [^]
+      this.isInverted() and not exists(this.getAChild())
+      or
+      // [\w\W] and similar
+      not this.isInverted() and
+      exists(string cce1, string cce2 |
+        cce1 = this.getAChild().(RegExpCharacterClassEscape).getValue() and
+        cce2 = this.getAChild().(RegExpCharacterClassEscape).getValue()
+      |
+        cce1 != cce2 and cce1.toLowerCase() = cce2.toLowerCase()
+      )
+    }
+
+    override RegExpTerm getChild(int i) {
+      i = 0 and
+      result.getRegex() = re and
+      exists(int itemStart, int itemEnd |
+        result.getStart() = itemStart and
+        re.char_set_start(start, itemStart) and
+        re.char_set_child(start, itemStart, itemEnd) and
+        result.getEnd() = itemEnd
+      )
+      or
+      i > 0 and
+      result.getRegex() = re and
+      exists(int itemStart | itemStart = this.getChild(i - 1).getEnd() |
+        result.getStart() = itemStart and
+        re.char_set_child(start, itemStart, result.getEnd())
+      )
+    }
+
+    override string getPrimaryQLClass() { result = "RegExpCharacterClass" }
+  }
+
+  /**
+   * A character range in a character class in a regular expression.
+   *
+   * Example:
+   *
+   * ```
+   * a-z
+   * ```
+   */
+  class RegExpCharacterRange extends RegExpTerm, TRegExpCharacterRange {
+    int lower_end;
+    int upper_start;
+
+    RegExpCharacterRange() {
+      this = TRegExpCharacterRange(re, start, end) and
+      re.charRange(_, start, lower_end, upper_start, end)
+    }
+
+    /** Holds if this range goes from `lo` to `hi`, in effect is `lo-hi`. */
+    predicate isRange(string lo, string hi) {
+      lo = re.getText().substring(start, lower_end) and
+      hi = re.getText().substring(upper_start, end)
+    }
+
+    override RegExpTerm getChild(int i) {
+      i = 0 and
+      result.getRegex() = re and
+      result.getStart() = start and
+      result.getEnd() = lower_end
+      or
+      i = 1 and
+      result.getRegex() = re and
+      result.getStart() = upper_start and
+      result.getEnd() = end
+    }
+
+    override string getPrimaryQLClass() { result = "RegExpCharacterRange" }
+  }
+
+  /**
+   * A normal character in a regular expression, that is, a character
+   * without special meaning. This includes escaped characters.
+   *
+   * Examples:
+   * ```
+   * t
+   * \t
+   * ```
+   */
+  class RegExpNormalChar extends RegExpTerm, TRegExpNormalChar {
+    RegExpNormalChar() { this = TRegExpNormalChar(re, start, end) }
+
+    /**
+     * Holds if this constant represents a valid Unicode character (as opposed
+     * to a surrogate code point that does not correspond to a character by itself.)
+     */
+    predicate isCharacter() { any() }
+
+    /** Gets the string representation of the char matched by this term. */
+    string getValue() { result = re.getText().substring(start, end) }
+
+    override RegExpTerm getChild(int i) { none() }
+
+    override string getPrimaryQLClass() { result = "RegExpNormalChar" }
+  }
+
+  /**
+   * A constant regular expression term, that is, a regular expression
+   * term matching a single string. Currently, this will always be a single character.
+   *
+   * Example:
+   *
+   * ```
+   * a
+   * ```
+   */
+  class RegExpConstant extends RegExpTerm {
+    string value;
+
+    RegExpConstant() {
+      this = TRegExpNormalChar(re, start, end) and
+      not this instanceof RegExpCharacterClassEscape and
+      // exclude chars in qualifiers
+      // TODO: push this into regex library
+      not exists(int qstart, int qend | re.qualifiedPart(_, qstart, qend, _, _) |
+        qstart <= start and end <= qend
+      ) and
+      value = this.(RegExpNormalChar).getValue()
+    }
+
+    /**
+     * Holds if this constant represents a valid Unicode character (as opposed
+     * to a surrogate code point that does not correspond to a character by itself.)
+     */
+    predicate isCharacter() { any() }
+
+    /** Gets the string matched by this constant term. */
+    string getValue() { result = value }
+
+    override RegExpTerm getChild(int i) { none() }
+
+    override string getPrimaryQLClass() { result = "RegExpConstant" }
+  }
+
+  /**
+   * A grouped regular expression.
+   *
+   * Examples:
+   *
+   * ```
+   * (ECMA|Java)
+   * (?:ECMA|Java)
+   * (?<quote>['"])
+   * ```
+   */
+  class RegExpGroup extends RegExpTerm, TRegExpGroup {
+    RegExpGroup() { this = TRegExpGroup(re, start, end) }
+
+    /**
+     * Gets the index of this capture group within the enclosing regular
+     * expression literal.
+     *
+     * For example, in the regular expression `/((a?).)(?:b)/`, the
+     * group `((a?).)` has index 1, the group `(a?)` nested inside it
+     * has index 2, and the group `(?:b)` has no index, since it is
+     * not a capture group.
+     */
+    int getNumber() { result = re.getGroupNumber(start, end) }
+
+    /** Holds if this is a capture group. */
+    predicate isCapture() { exists(this.getNumber()) }
+
+    /** Holds if this is a named capture group. */
+    predicate isNamed() { exists(this.getName()) }
+
+    /** Gets the name of this capture group, if any. */
+    string getName() { result = re.getGroupName(start, end) }
+
+    override RegExpTerm getChild(int i) {
+      result.getRegex() = re and
+      i = 0 and
+      re.groupContents(start, end, result.getStart(), result.getEnd())
+    }
+
+    override string getPrimaryQLClass() { result = "RegExpGroup" }
+  }
+
+  /**
+   * A special character in a regular expression.
+   *
+   * Examples:
+   * ```
+   * ^
+   * $
+   * .
+   * ```
+   */
+  class RegExpSpecialChar extends RegExpTerm, TRegExpSpecialChar {
+    string char;
+
+    RegExpSpecialChar() {
+      this = TRegExpSpecialChar(re, start, end) and
+      re.specialCharacter(start, end, char)
+    }
+
+    /**
+     * Holds if this constant represents a valid Unicode character (as opposed
+     * to a surrogate code point that does not correspond to a character by itself.)
+     */
+    predicate isCharacter() { any() }
+
+    /** Gets the char for this term. */
+    string getChar() { result = char }
+
+    override RegExpTerm getChild(int i) { none() }
+
+    override string getPrimaryQLClass() { result = "RegExpSpecialChar" }
+  }
+
+  /**
+   * A dot regular expression.
+   *
+   * Example:
+   *
+   * ```
+   * .
+   * ```
+   */
+  class RegExpDot extends RegExpSpecialChar {
+    RegExpDot() { this.getChar() = "." }
+
+    override string getPrimaryQLClass() { result = "RegExpDot" }
+  }
+
+  /**
+   * A dollar assertion `$` or `\Z` matching the end of a line.
+   *
+   * Example:
+   *
+   * ```
+   * $
+   * ```
+   */
+  class RegExpDollar extends RegExpSpecialChar {
+    RegExpDollar() { this.getChar() = ["$", "\\Z"] }
+
+    override string getPrimaryQLClass() { result = "RegExpDollar" }
+  }
+
+  /**
+   * A caret assertion `^` or `\A` matching the beginning of a line.
+   *
+   * Example:
+   *
+   * ```
+   * ^
+   * ```
+   */
+  class RegExpCaret extends RegExpSpecialChar {
+    RegExpCaret() { this.getChar() = ["^", "\\A"] }
+
+    override string getPrimaryQLClass() { result = "RegExpCaret" }
+  }
+
+  /**
+   * A zero-width match, that is, either an empty group or an assertion.
+   *
+   * Examples:
+   * ```
+   * ()
+   * (?=\w)
+   * ```
+   */
+  class RegExpZeroWidthMatch extends RegExpGroup {
+    RegExpZeroWidthMatch() { re.zeroWidthMatch(start, end) }
+
+    override RegExpTerm getChild(int i) { none() }
+
+    override string getPrimaryQLClass() { result = "RegExpZeroWidthMatch" }
+  }
+
+  /**
+   * A zero-width lookahead or lookbehind assertion.
+   *
+   * Examples:
+   *
+   * ```
+   * (?=\w)
+   * (?!\n)
+   * (?<=\.)
+   * (?<!\\)
+   * ```
+   */
+  class RegExpSubPattern extends RegExpZeroWidthMatch {
+    RegExpSubPattern() { not re.emptyGroup(start, end) }
+
+    /** Gets the lookahead term. */
+    RegExpTerm getOperand() {
+      exists(int in_start, int in_end | re.groupContents(start, end, in_start, in_end) |
+        result.getRegex() = re and
+        result.getStart() = in_start and
+        result.getEnd() = in_end
+      )
+    }
+  }
+
+  /**
+   * A zero-width lookahead assertion.
+   *
+   * Examples:
+   *
+   * ```
+   * (?=\w)
+   * (?!\n)
+   * ```
+   */
+  abstract class RegExpLookahead extends RegExpSubPattern { }
+
+  /**
+   * A positive-lookahead assertion.
+   *
+   * Examples:
+   *
+   * ```
+   * (?=\w)
+   * ```
+   */
+  class RegExpPositiveLookahead extends RegExpLookahead {
+    RegExpPositiveLookahead() { re.positiveLookaheadAssertionGroup(start, end) }
+
+    override string getPrimaryQLClass() { result = "RegExpPositiveLookahead" }
+  }
+
+  /**
+   * A negative-lookahead assertion.
+   *
+   * Examples:
+   *
+   * ```
+   * (?!\n)
+   * ```
+   */
+  class RegExpNegativeLookahead extends RegExpLookahead {
+    RegExpNegativeLookahead() { re.negativeLookaheadAssertionGroup(start, end) }
+
+    override string getPrimaryQLClass() { result = "RegExpNegativeLookahead" }
+  }
+
+  /**
+   * A zero-width lookbehind assertion.
+   *
+   * Examples:
+   *
+   * ```
+   * (?<=\.)
+   * (?<!\\)
+   * ```
+   */
+  abstract class RegExpLookbehind extends RegExpSubPattern { }
+
+  /**
+   * A positive-lookbehind assertion.
+   *
+   * Examples:
+   *
+   * ```
+   * (?<=\.)
+   * ```
+   */
+  class RegExpPositiveLookbehind extends RegExpLookbehind {
+    RegExpPositiveLookbehind() { re.positiveLookbehindAssertionGroup(start, end) }
+
+    override string getPrimaryQLClass() { result = "RegExpPositiveLookbehind" }
+  }
+
+  /**
+   * A negative-lookbehind assertion.
+   *
+   * Examples:
+   *
+   * ```
+   * (?<!\\)
+   * ```
+   */
+  class RegExpNegativeLookbehind extends RegExpLookbehind {
+    RegExpNegativeLookbehind() { re.negativeLookbehindAssertionGroup(start, end) }
+
+    override string getPrimaryQLClass() { result = "RegExpNegativeLookbehind" }
+  }
+
+  /**
+   * A back reference, that is, a term of the form `\i` or `\k<name>`
+   * in a regular expression.
+   *
+   * Examples:
+   *
+   * ```
+   * \1
+   * (?P=quote)
+   * ```
+   */
+  class RegExpBackRef extends RegExpTerm, TRegExpBackRef {
+    RegExpBackRef() { this = TRegExpBackRef(re, start, end) }
+
+    /**
+     * Gets the number of the capture group this back reference refers to, if any.
+     */
+    int getNumber() { result = re.getBackrefNumber(start, end) }
+
+    /**
+     * Gets the name of the capture group this back reference refers to, if any.
+     */
+    string getName() { result = re.getBackrefName(start, end) }
+
+    /** Gets the capture group this back reference refers to. */
+    RegExpGroup getGroup() {
+      this.hasLiteralAndNumber(result.getLiteral(), result.getNumber()) or
+      this.hasLiteralAndName(result.getLiteral(), result.getName())
+    }
+
+    /** Join-order helper for `getGroup`. */
+    pragma[nomagic]
+    private predicate hasLiteralAndNumber(RegExpLiteral literal, int number) {
+      literal = this.getLiteral() and
+      number = this.getNumber()
+    }
+
+    /** Join-order helper for `getGroup`. */
+    pragma[nomagic]
+    private predicate hasLiteralAndName(RegExpLiteral literal, string name) {
+      literal = this.getLiteral() and
+      name = this.getName()
+    }
+
+    override RegExpTerm getChild(int i) { none() }
+
+    override string getPrimaryQLClass() { result = "RegExpBackRef" }
+  }
 }
-
-/** Gets the parse tree resulting from parsing `re`, if such has been constructed. */
-RegExpTerm getParsedRegExp(StrConst re) { result.getRegex() = re and result.isRootTerm() }

From 1aeaefca7f10081c2111775e854b56e749da3b14 Mon Sep 17 00:00:00 2001
From: erik-krogh <erik-krogh@github.com>
Date: Tue, 1 Nov 2022 12:02:48 +0100
Subject: [PATCH 0078/1420] add a Python implementation of `RegexTreeViewSig`

---
 python/ql/lib/semmle/python/RegexTreeView.qll | 116 ++++++++++++++----
 1 file changed, 89 insertions(+), 27 deletions(-)

diff --git a/python/ql/lib/semmle/python/RegexTreeView.qll b/python/ql/lib/semmle/python/RegexTreeView.qll
index aa884c56b61..47c8d88e27c 100644
--- a/python/ql/lib/semmle/python/RegexTreeView.qll
+++ b/python/ql/lib/semmle/python/RegexTreeView.qll
@@ -2,6 +2,10 @@
 
 import python
 private import semmle.python.regex
+private import codeql.regex.nfa.NfaUtils as NfaUtils
+private import codeql.regex.RegexTreeView
+// exporting as RegexTreeView, and in the top-level scope.
+import Impl as RegexTreeView
 import Impl
 
 /** Gets the parse tree resulting from parsing `re`, if such has been constructed. */
@@ -52,8 +56,34 @@ private newtype TRegExpParent =
   /** A back reference */
   TRegExpBackRef(Regex re, int start, int end) { re.backreference(start, end) }
 
+pragma[nomagic]
+private int seqChildEnd(Regex re, int start, int end, int i) {
+  result = seqChild(re, start, end, i).getEnd()
+}
+
+// moved out so we can use it in the charpred
+private RegExpTerm seqChild(Regex re, int start, int end, int i) {
+  re.sequence(start, end) and
+  (
+    i = 0 and
+    result.getRegex() = re and
+    result.getStart() = start and
+    exists(int itemEnd |
+      re.item(start, itemEnd) and
+      result.getEnd() = itemEnd
+    )
+    or
+    i > 0 and
+    result.getRegex() = re and
+    exists(int itemStart | itemStart = seqChildEnd(re, start, end, i - 1) |
+      result.getStart() = itemStart and
+      re.item(itemStart, result.getEnd())
+    )
+  )
+}
+
 /** An implementation that statisfies the RegexTreeView signature. */
-module Impl {
+module Impl implements RegexTreeViewSig {
   /**
    * An element containing a regular expression term, that is, either
    * a string literal (parsed as a regular expression)
@@ -391,32 +421,6 @@ module Impl {
     override string getPrimaryQLClass() { result = "RegExpSequence" }
   }
 
-  pragma[nomagic]
-  private int seqChildEnd(Regex re, int start, int end, int i) {
-    result = seqChild(re, start, end, i).getEnd()
-  }
-
-  // moved out so we can use it in the charpred
-  private RegExpTerm seqChild(Regex re, int start, int end, int i) {
-    re.sequence(start, end) and
-    (
-      i = 0 and
-      result.getRegex() = re and
-      result.getStart() = start and
-      exists(int itemEnd |
-        re.item(start, itemEnd) and
-        result.getEnd() = itemEnd
-      )
-      or
-      i > 0 and
-      result.getRegex() = re and
-      exists(int itemStart | itemStart = seqChildEnd(re, start, end, i - 1) |
-        result.getStart() = itemStart and
-        re.item(itemStart, result.getEnd())
-      )
-    )
-  }
-
   /**
    * An alternative term, that is, a term of the form `a|b`.
    *
@@ -1030,4 +1034,62 @@ module Impl {
 
     override string getPrimaryQLClass() { result = "RegExpBackRef" }
   }
+
+  class Top = RegExpParent;
+
+  /**
+   * Holds if `term` is an escape class representing e.g. `\d`.
+   * `clazz` is which character class it represents, e.g. "d" for `\d`.
+   */
+  predicate isEscapeClass(RegExpTerm term, string clazz) {
+    exists(RegExpCharacterClassEscape escape | term = escape | escape.getValue() = clazz)
+  }
+
+  /**
+   * Holds if `term` is a possessive quantifier.
+   * As python's regexes do not support possessive quantifiers, this never holds, but is used by the shared library.
+   */
+  predicate isPossessive(RegExpQuantifier term) { none() }
+
+  /**
+   * Holds if the regex that `term` is part of is used in a way that ignores any leading prefix of the input it's matched against.
+   * Not yet implemented for Python.
+   */
+  predicate matchesAnyPrefix(RegExpTerm term) { any() }
+
+  /**
+   * Holds if the regex that `term` is part of is used in a way that ignores any trailing suffix of the input it's matched against.
+   * Not yet implemented for Python.
+   */
+  predicate matchesAnySuffix(RegExpTerm term) { any() }
+
+  /**
+   * Holds if the regular expression should not be considered.
+   *
+   * We make the pragmatic performance optimization to ignore regular expressions in files
+   * that does not belong to the project code (such as installed dependencies).
+   */
+  predicate isExcluded(RegExpParent parent) {
+    not exists(parent.getRegex().getLocation().getFile().getRelativePath())
+    or
+    // Regexes with many occurrences of ".*" may cause the polynomial ReDoS computation to explode, so
+    // we explicitly exclude these.
+    count(int i | exists(parent.getRegex().getText().regexpFind("\\.\\*", i, _)) | i) > 10
+  }
+
+  /**
+   * Holds if `root` has the `i` flag for case-insensitive matching.
+   */
+  predicate isIgnoreCase(RegExpTerm root) {
+    root.isRootTerm() and
+    root.getLiteral().isIgnoreCase()
+  }
+
+  /**
+   * Holds if `root` has the `s` flag for multi-line matching.
+   */
+  predicate isDotAll(RegExpTerm root) {
+    root.isRootTerm() and
+    root.getLiteral().isDotAll()
+  }
 }

From 05605480ae6fa4b7107a27123a197c7e34bba8d0 Mon Sep 17 00:00:00 2001
From: erik-krogh <erik-krogh@github.com>
Date: Tue, 1 Nov 2022 12:03:18 +0100
Subject: [PATCH 0079/1420] drive-by simplification of the python regex-tree

---
 python/ql/lib/semmle/python/RegexTreeView.qll | 3 +--
 1 file changed, 1 insertion(+), 2 deletions(-)

diff --git a/python/ql/lib/semmle/python/RegexTreeView.qll b/python/ql/lib/semmle/python/RegexTreeView.qll
index 47c8d88e27c..4af5ca19523 100644
--- a/python/ql/lib/semmle/python/RegexTreeView.qll
+++ b/python/ql/lib/semmle/python/RegexTreeView.qll
@@ -277,12 +277,11 @@ module Impl implements RegexTreeViewSig {
    */
   class RegExpQuantifier extends RegExpTerm, TRegExpQuantifier {
     int part_end;
-    boolean maybe_empty;
     boolean may_repeat_forever;
 
     RegExpQuantifier() {
       this = TRegExpQuantifier(re, start, end) and
-      re.qualifiedPart(start, part_end, end, maybe_empty, may_repeat_forever)
+      re.qualifiedPart(start, part_end, end, _, may_repeat_forever)
     }
 
     override RegExpTerm getChild(int i) {

From 4f11e2d25fabba3f178c09aa44308f35206ad273 Mon Sep 17 00:00:00 2001
From: erik-krogh <erik-krogh@github.com>
Date: Tue, 1 Nov 2022 12:08:19 +0100
Subject: [PATCH 0080/1420] port the Python regex/redos queries to use the
 shared pack

---
 .../python/security/BadTagFilterQuery.qll     |  156 +-
 .../python/security/OverlyLargeRangeQuery.qll |  289 +---
 .../PolynomialReDoSCustomizations.qll         |    5 +-
 .../regexp/ExponentialBackTracking.qll        |  285 +---
 .../python/security/regexp/NfaUtils.qll       | 1333 +----------------
 .../security/regexp/NfaUtilsSpecific.qll      |   75 -
 .../python/security/regexp/RegexpMatching.qll |  156 +-
 .../regexp/SuperlinearBackTracking.qll        |  385 +----
 .../src/Security/CWE-020/OverlyLargeRange.ql  |    5 +-
 .../ql/src/Security/CWE-116/BadTagFilter.ql   |    3 +-
 .../src/Security/CWE-730/PolynomialReDoS.ql   |    1 -
 python/ql/src/Security/CWE-730/ReDoS.ql       |    6 +-
 .../PolynomialBackTracking.ql                 |    5 +-
 13 files changed, 39 insertions(+), 2665 deletions(-)
 delete mode 100644 python/ql/lib/semmle/python/security/regexp/NfaUtilsSpecific.qll

diff --git a/python/ql/lib/semmle/python/security/BadTagFilterQuery.qll b/python/ql/lib/semmle/python/security/BadTagFilterQuery.qll
index 95bfbeeeb5d..446e4487a0f 100644
--- a/python/ql/lib/semmle/python/security/BadTagFilterQuery.qll
+++ b/python/ql/lib/semmle/python/security/BadTagFilterQuery.qll
@@ -2,155 +2,7 @@
  * Provides predicates for reasoning about bad tag filter vulnerabilities.
  */
 
-import regexp.RegexpMatching
-
-/**
- * Holds if the regexp `root` should be tested against `str`.
- * Implements the `isRegexpMatchingCandidateSig` signature from `RegexpMatching`.
- * `ignorePrefix` toggles whether the regular expression should be treated as accepting any prefix if it's unanchored.
- * `testWithGroups` toggles whether it's tested which groups are filled by a given input string.
- */
-private predicate isBadTagFilterCandidate(
-  RootTerm root, string str, boolean ignorePrefix, boolean testWithGroups
-) {
-  // the regexp must mention "<" and ">" explicitly.
-  forall(string angleBracket | angleBracket = ["<", ">"] |
-    any(RegExpConstant term | term.getValue().matches("%" + angleBracket + "%")).getRootTerm() =
-      root
-  ) and
-  ignorePrefix = true and
-  (
-    str = ["<!-- foo -->", "<!-- foo --!>", "<!- foo ->", "<foo>", "<script>"] and
-    testWithGroups = true
-    or
-    str =
-      [
-        "<!-- foo -->", "<!- foo ->", "<!-- foo --!>", "<!-- foo\n -->", "<script>foo</script>",
-        "<script \n>foo</script>", "<script >foo\n</script>", "<foo ></foo>", "<foo>",
-        "<foo src=\"foo\"></foo>", "<script>", "<script src=\"foo\"></script>",
-        "<script src='foo'></script>", "<SCRIPT>foo</SCRIPT>", "<script\tsrc=\"foo\"/>",
-        "<script\tsrc='foo'></script>", "<sCrIpT>foo</ScRiPt>", "<script src=\"foo\">foo</script >",
-        "<script src=\"foo\">foo</script foo=\"bar\">", "<script src=\"foo\">foo</script\t\n bar>"
-      ] and
-    testWithGroups = false
-  )
-}
-
-/**
- * A regexp that matches some string from the `isBadTagFilterCandidate` predicate.
- */
-class HtmlMatchingRegExp extends RootTerm {
-  HtmlMatchingRegExp() { RegexpMatching<isBadTagFilterCandidate/4>::matches(this, _) }
-
-  /** Holds if this regexp matched `str`, where `str` is one of the string from `isBadTagFilterCandidate`. */
-  predicate matches(string str) { RegexpMatching<isBadTagFilterCandidate/4>::matches(this, str) }
-
-  /** Holds if this regexp fills capture group `g' when matching `str', where `str` is one of the string from `isBadTagFilterCandidate`. */
-  predicate fillsCaptureGroup(string str, int g) {
-    RegexpMatching<isBadTagFilterCandidate/4>::fillsCaptureGroup(this, str, g)
-  }
-}
-
-/** DEPRECATED: Alias for HtmlMatchingRegExp */
-deprecated class HTMLMatchingRegExp = HtmlMatchingRegExp;
-
-/**
- * Holds if `regexp` matches some HTML tags, but misses some HTML tags that it should match.
- *
- * When adding a new case to this predicate, make sure the test string used in `matches(..)` calls are present in `HTMLMatchingRegExp::test` / `HTMLMatchingRegExp::testWithGroups`.
- */
-predicate isBadRegexpFilter(HtmlMatchingRegExp regexp, string msg) {
-  // CVE-2021-33829 - matching both "<!-- foo -->" and "<!-- foo --!>", but in different capture groups
-  regexp.matches("<!-- foo -->") and
-  regexp.matches("<!-- foo --!>") and
-  exists(int a, int b | a != b |
-    regexp.fillsCaptureGroup("<!-- foo -->", a) and
-    // <!-- foo --> might be ambiguously parsed (matching both capture groups), and that is ok here.
-    regexp.fillsCaptureGroup("<!-- foo --!>", b) and
-    not regexp.fillsCaptureGroup("<!-- foo --!>", a) and
-    msg =
-      "Comments ending with --> are matched differently from comments ending with --!>. The first is matched with capture group "
-        + a + " and comments ending with --!> are matched with capture group " +
-        strictconcat(int i | regexp.fillsCaptureGroup("<!-- foo --!>", i) | i.toString(), ", ") +
-        "."
-  )
-  or
-  // CVE-2020-17480 - matching "<!-- foo -->" and other tags, but not "<!-- foo --!>".
-  exists(int group, int other |
-    group != other and
-    regexp.fillsCaptureGroup("<!-- foo -->", group) and
-    regexp.fillsCaptureGroup("<foo>", other) and
-    not regexp.matches("<!-- foo --!>") and
-    not regexp.fillsCaptureGroup("<!-- foo -->", any(int i | i != group)) and
-    not regexp.fillsCaptureGroup("<!- foo ->", group) and
-    not regexp.fillsCaptureGroup("<foo>", group) and
-    not regexp.fillsCaptureGroup("<script>", group) and
-    msg =
-      "This regular expression only parses --> (capture group " + group +
-        ") and not --!> as an HTML comment end tag."
-  )
-  or
-  regexp.matches("<!-- foo -->") and
-  not regexp.matches("<!-- foo\n -->") and
-  not regexp.matches("<!- foo ->") and
-  not regexp.matches("<foo>") and
-  not regexp.matches("<script>") and
-  msg = "This regular expression does not match comments containing newlines."
-  or
-  regexp.matches("<script>foo</script>") and
-  regexp.matches("<script src=\"foo\"></script>") and
-  not regexp.matches("<foo ></foo>") and
-  (
-    not regexp.matches("<script \n>foo</script>") and
-    msg = "This regular expression matches <script></script>, but not <script \\n></script>"
-    or
-    not regexp.matches("<script >foo\n</script>") and
-    msg = "This regular expression matches <script>...</script>, but not <script >...\\n</script>"
-  )
-  or
-  regexp.matches("<script>foo</script>") and
-  regexp.matches("<script src=\"foo\"></script>") and
-  not regexp.matches("<script src='foo'></script>") and
-  not regexp.matches("<foo>") and
-  msg = "This regular expression does not match script tags where the attribute uses single-quotes."
-  or
-  regexp.matches("<script>foo</script>") and
-  regexp.matches("<script src='foo'></script>") and
-  not regexp.matches("<script src=\"foo\"></script>") and
-  not regexp.matches("<foo>") and
-  msg = "This regular expression does not match script tags where the attribute uses double-quotes."
-  or
-  regexp.matches("<script>foo</script>") and
-  regexp.matches("<script src='foo'></script>") and
-  not regexp.matches("<script\tsrc='foo'></script>") and
-  not regexp.matches("<foo>") and
-  not regexp.matches("<foo src=\"foo\"></foo>") and
-  msg = "This regular expression does not match script tags where tabs are used between attributes."
-  or
-  regexp.matches("<script>foo</script>") and
-  not RegExpFlags::isIgnoreCase(regexp) and
-  not regexp.matches("<foo>") and
-  not regexp.matches("<foo ></foo>") and
-  (
-    not regexp.matches("<SCRIPT>foo</SCRIPT>") and
-    msg = "This regular expression does not match upper case <SCRIPT> tags."
-    or
-    not regexp.matches("<sCrIpT>foo</ScRiPt>") and
-    regexp.matches("<SCRIPT>foo</SCRIPT>") and
-    msg = "This regular expression does not match mixed case <sCrIpT> tags."
-  )
-  or
-  regexp.matches("<script src=\"foo\"></script>") and
-  not regexp.matches("<foo>") and
-  not regexp.matches("<foo ></foo>") and
-  (
-    not regexp.matches("<script src=\"foo\">foo</script >") and
-    msg = "This regular expression does not match script end tags like </script >."
-    or
-    not regexp.matches("<script src=\"foo\">foo</script foo=\"bar\">") and
-    msg = "This regular expression does not match script end tags like </script foo=\"bar\">."
-    or
-    not regexp.matches("<script src=\"foo\">foo</script\t\n bar>") and
-    msg = "This regular expression does not match script end tags like </script\\t\\n bar>."
-  )
-}
+private import semmle.python.RegexTreeView::RegexTreeView as TreeView
+// BadTagFilterQuery should be used directly from the shared pack, and not from this file.
+deprecated import codeql.regex.nfa.BadTagFilterQuery::Make<TreeView> as Dep
+import Dep
diff --git a/python/ql/lib/semmle/python/security/OverlyLargeRangeQuery.qll b/python/ql/lib/semmle/python/security/OverlyLargeRangeQuery.qll
index 65e662f0bc5..49ec333161c 100644
--- a/python/ql/lib/semmle/python/security/OverlyLargeRangeQuery.qll
+++ b/python/ql/lib/semmle/python/security/OverlyLargeRangeQuery.qll
@@ -2,288 +2,7 @@
  * Classes and predicates for working with suspicious character ranges.
  */
 
-// We don't need the NFA utils, just the regexp tree.
-// but the below is a nice shared library that exposes the API we need.
-import regexp.NfaUtils
-
-/**
- * Gets a rank for `range` that is unique for ranges in the same file.
- * Prioritizes ranges that match more characters.
- */
-int rankRange(RegExpCharacterRange range) {
-  range =
-    rank[result](RegExpCharacterRange r, Location l, int low, int high |
-      r.getLocation() = l and
-      isRange(r, low, high)
-    |
-      r order by (high - low) desc, l.getStartLine(), l.getStartColumn()
-    )
-}
-
-/** Holds if `range` spans from the unicode code points `low` to `high` (both inclusive). */
-predicate isRange(RegExpCharacterRange range, int low, int high) {
-  exists(string lowc, string highc |
-    range.isRange(lowc, highc) and
-    low.toUnicode() = lowc and
-    high.toUnicode() = highc
-  )
-}
-
-/** Holds if `char` is an alpha-numeric character. */
-predicate isAlphanumeric(string char) {
-  // written like this to avoid having a bindingset for the predicate
-  char = [[48 .. 57], [65 .. 90], [97 .. 122]].toUnicode() // 0-9, A-Z, a-z
-}
-
-/**
- * Holds if the given ranges are from the same character class
- * and there exists at least one character matched by both ranges.
- */
-predicate overlap(RegExpCharacterRange a, RegExpCharacterRange b) {
-  exists(RegExpCharacterClass clz |
-    a = clz.getAChild() and
-    b = clz.getAChild() and
-    a != b
-  |
-    exists(int alow, int ahigh, int blow, int bhigh |
-      isRange(a, alow, ahigh) and
-      isRange(b, blow, bhigh) and
-      alow <= bhigh and
-      blow <= ahigh
-    )
-  )
-}
-
-/**
- * Holds if `range` overlaps with the char class `escape` from the same character class.
- */
-predicate overlapsWithCharEscape(RegExpCharacterRange range, RegExpCharacterClassEscape escape) {
-  exists(RegExpCharacterClass clz, string low, string high |
-    range = clz.getAChild() and
-    escape = clz.getAChild() and
-    range.isRange(low, high)
-  |
-    escape.getValue() = "w" and
-    getInRange(low, high).regexpMatch("\\w")
-    or
-    escape.getValue() = "d" and
-    getInRange(low, high).regexpMatch("\\d")
-    or
-    escape.getValue() = "s" and
-    getInRange(low, high).regexpMatch("\\s")
-  )
-}
-
-/** Gets the unicode code point for a `char`. */
-bindingset[char]
-int toCodePoint(string char) { result.toUnicode() = char }
-
-/** A character range that appears to be overly wide. */
-class OverlyWideRange extends RegExpCharacterRange {
-  OverlyWideRange() {
-    exists(int low, int high, int numChars |
-      isRange(this, low, high) and
-      numChars = (1 + high - low) and
-      this.getRootTerm().isUsedAsRegExp() and
-      numChars >= 10
-    |
-      // across the Z-a range (which includes backticks)
-      toCodePoint("Z") >= low and
-      toCodePoint("a") <= high
-      or
-      // across the 9-A range (which includes e.g. ; and ?)
-      toCodePoint("9") >= low and
-      toCodePoint("A") <= high
-      or
-      // a non-alphanumeric char as part of the range boundaries
-      exists(int bound | bound = [low, high] | not isAlphanumeric(bound.toUnicode())) and
-      // while still being ascii
-      low < 128 and
-      high < 128
-    ) and
-    // allowlist for known ranges
-    not this = allowedWideRanges()
-  }
-
-  /** Gets a string representation of a character class that matches the same chars as this range. */
-  string printEquivalent() { result = RangePrinter::printEquivalentCharClass(this) }
-}
-
-/** Gets a range that should not be reported as an overly wide range. */
-RegExpCharacterRange allowedWideRanges() {
-  // ~ is the last printable ASCII character, it's used right in various wide ranges.
-  result.isRange(_, "~")
-  or
-  // the same with " " and "!". " " is the first printable character, and "!" is the first non-white-space printable character.
-  result.isRange([" ", "!"], _)
-  or
-  // the `[@-_]` range is intentional
-  result.isRange("@", "_")
-  or
-  // starting from the zero byte is a good indication that it's purposely matching a large range.
-  result.isRange(0.toUnicode(), _)
-}
-
-/** Gets a char between (and including) `low` and `high`. */
-bindingset[low, high]
-private string getInRange(string low, string high) {
-  result = [toCodePoint(low) .. toCodePoint(high)].toUnicode()
-}
-
-/** A module computing an equivalent character class for an overly wide range. */
-module RangePrinter {
-  bindingset[char]
-  bindingset[result]
-  private string next(string char) {
-    exists(int prev, int next |
-      prev.toUnicode() = char and
-      next.toUnicode() = result and
-      next = prev + 1
-    )
-  }
-
-  /** Gets the points where the parts of the pretty printed range should be cut off. */
-  private string cutoffs() { result = ["A", "Z", "a", "z", "0", "9"] }
-
-  /** Gets the char to use in the low end of a range for a given `cut` */
-  private string lowCut(string cut) {
-    cut = ["A", "a", "0"] and
-    result = cut
-    or
-    cut = ["Z", "z", "9"] and
-    result = next(cut)
-  }
-
-  /** Gets the char to use in the high end of a range for a given `cut` */
-  private string highCut(string cut) {
-    cut = ["Z", "z", "9"] and
-    result = cut
-    or
-    cut = ["A", "a", "0"] and
-    next(result) = cut
-  }
-
-  /** Gets the cutoff char used for a given `part` of a range when pretty-printing it. */
-  private string cutoff(OverlyWideRange range, int part) {
-    exists(int low, int high | isRange(range, low, high) |
-      result =
-        rank[part + 1](string cut |
-          cut = cutoffs() and low < toCodePoint(cut) and toCodePoint(cut) < high
-        |
-          cut order by toCodePoint(cut)
-        )
-    )
-  }
-
-  /** Gets the number of parts we should print for a given `range`. */
-  private int parts(OverlyWideRange range) { result = 1 + count(cutoff(range, _)) }
-
-  /** Holds if the given part of a range should span from `low` to `high`. */
-  private predicate part(OverlyWideRange range, int part, string low, string high) {
-    // first part.
-    part = 0 and
-    (
-      range.isRange(low, high) and
-      parts(range) = 1
-      or
-      parts(range) >= 2 and
-      range.isRange(low, _) and
-      high = highCut(cutoff(range, part))
-    )
-    or
-    // middle
-    part >= 1 and
-    part < parts(range) - 1 and
-    low = lowCut(cutoff(range, part - 1)) and
-    high = highCut(cutoff(range, part))
-    or
-    // last.
-    part = parts(range) - 1 and
-    low = lowCut(cutoff(range, part - 1)) and
-    range.isRange(_, high)
-  }
-
-  /** Gets an escaped `char` for use in a character class. */
-  bindingset[char]
-  private string escape(string char) {
-    exists(string reg | reg = "(\\[|\\]|\\\\|-|/)" |
-      if char.regexpMatch(reg) then result = "\\" + char else result = char
-    )
-  }
-
-  /** Gets a part of the equivalent range. */
-  private string printEquivalentCharClass(OverlyWideRange range, int part) {
-    exists(string low, string high | part(range, part, low, high) |
-      if
-        isAlphanumeric(low) and
-        isAlphanumeric(high)
-      then result = low + "-" + high
-      else
-        result =
-          strictconcat(string char | char = getInRange(low, high) | escape(char) order by char)
-    )
-  }
-
-  /** Gets the entire pretty printed equivalent range. */
-  string printEquivalentCharClass(OverlyWideRange range) {
-    result =
-      strictconcat(string r, int part |
-        r = "[" and part = -1 and exists(range)
-        or
-        r = printEquivalentCharClass(range, part)
-        or
-        r = "]" and part = parts(range)
-      |
-        r order by part
-      )
-  }
-}
-
-/** Gets a char range that is overly large because of `reason`. */
-RegExpCharacterRange getABadRange(string reason, int priority) {
-  result instanceof OverlyWideRange and
-  priority = 0 and
-  exists(string equiv | equiv = result.(OverlyWideRange).printEquivalent() |
-    if equiv.length() <= 50
-    then reason = "is equivalent to " + equiv
-    else reason = "is equivalent to " + equiv.substring(0, 50) + "..."
-  )
-  or
-  priority = 1 and
-  exists(RegExpCharacterRange other |
-    reason = "overlaps with " + other + " in the same character class" and
-    rankRange(result) < rankRange(other) and
-    overlap(result, other)
-  )
-  or
-  priority = 2 and
-  exists(RegExpCharacterClassEscape escape |
-    reason = "overlaps with " + escape + " in the same character class" and
-    overlapsWithCharEscape(result, escape)
-  )
-  or
-  reason = "is empty" and
-  priority = 3 and
-  exists(int low, int high |
-    isRange(result, low, high) and
-    low > high
-  )
-}
-
-/** Holds if `range` matches suspiciously many characters. */
-predicate problem(RegExpCharacterRange range, string reason) {
-  reason =
-    strictconcat(string m, int priority |
-      range = getABadRange(m, priority)
-    |
-      m, ", and " order by priority desc
-    ) and
-  // specifying a range using an escape is usually OK.
-  not range.getAChild() instanceof RegExpEscape and
-  // Unicode escapes in strings are interpreted before it turns into a regexp,
-  // so e.g. [\u0001-\uFFFF] will just turn up as a range between two constants.
-  // We therefore exclude these ranges.
-  range.getRootTerm().getParent() instanceof RegExpLiteral and
-  // is used as regexp (mostly for JS where regular expressions are parsed eagerly)
-  range.getRootTerm().isUsedAsRegExp()
-}
+private import semmle.python.RegexTreeView::RegexTreeView as TreeView
+// OverlyLargeRangeQuery should be used directly from the shared pack, and not from this file.
+deprecated import codeql.regex.OverlyLargeRangeQuery::Make<TreeView> as Dep
+import Dep
diff --git a/python/ql/lib/semmle/python/security/dataflow/PolynomialReDoSCustomizations.qll b/python/ql/lib/semmle/python/security/dataflow/PolynomialReDoSCustomizations.qll
index 7e1a2c9561c..fac16730f2c 100644
--- a/python/ql/lib/semmle/python/security/dataflow/PolynomialReDoSCustomizations.qll
+++ b/python/ql/lib/semmle/python/security/dataflow/PolynomialReDoSCustomizations.qll
@@ -11,7 +11,7 @@ private import semmle.python.dataflow.new.TaintTracking
 private import semmle.python.Concepts
 private import semmle.python.dataflow.new.RemoteFlowSources
 private import semmle.python.dataflow.new.BarrierGuards
-private import semmle.python.RegexTreeView
+private import semmle.python.RegexTreeView::RegexTreeView as TreeView
 private import semmle.python.ApiGraphs
 
 /**
@@ -20,6 +20,9 @@ private import semmle.python.ApiGraphs
  * vulnerabilities, as well as extension points for adding your own.
  */
 module PolynomialReDoS {
+  private import TreeView
+  import codeql.regex.nfa.SuperlinearBackTracking::Make<TreeView>
+
   /**
    * A data flow source for "polynomial regular expression denial of service (ReDoS)" vulnerabilities.
    */
diff --git a/python/ql/lib/semmle/python/security/regexp/ExponentialBackTracking.qll b/python/ql/lib/semmle/python/security/regexp/ExponentialBackTracking.qll
index 4a608890249..f4628b883da 100644
--- a/python/ql/lib/semmle/python/security/regexp/ExponentialBackTracking.qll
+++ b/python/ql/lib/semmle/python/security/regexp/ExponentialBackTracking.qll
@@ -62,284 +62,7 @@
  *     a suffix `x` (possible empty) that is most likely __not__ accepted.
  */
 
-import NfaUtils
-
-/**
- * Holds if state `s` might be inside a backtracking repetition.
- */
-pragma[noinline]
-private predicate stateInsideBacktracking(State s) {
-  s.getRepr().getParent*() instanceof MaybeBacktrackingRepetition
-}
-
-/**
- * A infinitely repeating quantifier that might backtrack.
- */
-private class MaybeBacktrackingRepetition extends InfiniteRepetitionQuantifier {
-  MaybeBacktrackingRepetition() {
-    exists(RegExpTerm child |
-      child instanceof RegExpAlt or
-      child instanceof RegExpQuantifier
-    |
-      child.getParent+() = this
-    )
-  }
-}
-
-/**
- * A state in the product automaton.
- */
-private newtype TStatePair =
-  /**
-   * We lazily only construct those states that we are actually
-   * going to need: `(q, q)` for every fork state `q`, and any
-   * pair of states that can be reached from a pair that we have
-   * already constructed. To cut down on the number of states,
-   * we only represent states `(q1, q2)` where `q1` is lexicographically
-   * no bigger than `q2`.
-   *
-   * States are only constructed if both states in the pair are
-   * inside a repetition that might backtrack.
-   */
-  MkStatePair(State q1, State q2) {
-    isFork(q1, _, _, _, _) and q2 = q1
-    or
-    (step(_, _, _, q1, q2) or step(_, _, _, q2, q1)) and
-    rankState(q1) <= rankState(q2)
-  }
-
-/**
- * Gets a unique number for a `state`.
- * Is used to create an ordering of states, where states with the same `toString()` will be ordered differently.
- */
-private int rankState(State state) {
-  state =
-    rank[result](State s, Location l |
-      stateInsideBacktracking(s) and
-      l = s.getRepr().getLocation()
-    |
-      s order by l.getStartLine(), l.getStartColumn(), s.toString()
-    )
-}
-
-/**
- * A state in the product automaton.
- */
-private class StatePair extends TStatePair {
-  State q1;
-  State q2;
-
-  StatePair() { this = MkStatePair(q1, q2) }
-
-  /** Gets a textual representation of this element. */
-  string toString() { result = "(" + q1 + ", " + q2 + ")" }
-
-  /** Gets the first component of the state pair. */
-  State getLeft() { result = q1 }
-
-  /** Gets the second component of the state pair. */
-  State getRight() { result = q2 }
-}
-
-/**
- * Holds for `(fork, fork)` state pairs when `isFork(fork, _, _, _, _)` holds.
- *
- * Used in `statePairDistToFork`
- */
-private predicate isStatePairFork(StatePair p) {
-  exists(State fork | p = MkStatePair(fork, fork) and isFork(fork, _, _, _, _))
-}
-
-/**
- * Holds if there are transitions from the components of `q` to the corresponding
- * components of `r`.
- *
- * Used in `statePairDistToFork`
- */
-private predicate reverseStep(StatePair r, StatePair q) { step(q, _, _, r) }
-
-/**
- * Gets the minimum length of a path from `q` to `r` in the
- * product automaton.
- */
-private int statePairDistToFork(StatePair q, StatePair r) =
-  shortestDistances(isStatePairFork/1, reverseStep/2)(r, q, result)
-
-/**
- * Holds if there are transitions from `q` to `r1` and from `q` to `r2`
- * labelled with `s1` and `s2`, respectively, where `s1` and `s2` do not
- * trivially have an empty intersection.
- *
- * This predicate only holds for states associated with regular expressions
- * that have at least one repetition quantifier in them (otherwise the
- * expression cannot be vulnerable to ReDoS attacks anyway).
- */
-pragma[noopt]
-private predicate isFork(State q, InputSymbol s1, InputSymbol s2, State r1, State r2) {
-  stateInsideBacktracking(q) and
-  exists(State q1, State q2 |
-    q1 = epsilonSucc*(q) and
-    delta(q1, s1, r1) and
-    q2 = epsilonSucc*(q) and
-    delta(q2, s2, r2) and
-    // Use pragma[noopt] to prevent intersect(s1,s2) from being the starting point of the join.
-    // From (s1,s2) it would find a huge number of intermediate state pairs (q1,q2) originating from different literals,
-    // and discover at the end that no `q` can reach both `q1` and `q2` by epsilon transitions.
-    exists(intersect(s1, s2))
-  |
-    s1 != s2
-    or
-    r1 != r2
-    or
-    r1 = r2 and q1 != q2
-    or
-    // If q can reach itself by epsilon transitions, then there are two distinct paths to the q1/q2 state:
-    // one that uses the loop and one that doesn't. The engine will separately attempt to match with each path,
-    // despite ending in the same state. The "fork" thus arises from the choice of whether to use the loop or not.
-    // To avoid every state in the loop becoming a fork state,
-    // we arbitrarily pick the InfiniteRepetitionQuantifier state as the canonical fork state for the loop
-    // (every epsilon-loop must contain such a state).
-    //
-    // We additionally require that the there exists another InfiniteRepetitionQuantifier `mid` on the path from `q` to itself.
-    // This is done to avoid flagging regular expressions such as `/(a?)*b/` - that only has polynomial runtime, and is detected by `js/polynomial-redos`.
-    // The below code is therefore a heuristic, that only flags regular expressions such as `/(a*)*b/`,
-    // and does not flag regular expressions such as `/(a?b?)c/`, but the latter pattern is not used frequently.
-    r1 = r2 and
-    q1 = q2 and
-    epsilonSucc+(q) = q and
-    exists(RegExpTerm term | term = q.getRepr() | term instanceof InfiniteRepetitionQuantifier) and
-    // One of the mid states is an infinite quantifier itself
-    exists(State mid, RegExpTerm term |
-      mid = epsilonSucc+(q) and
-      term = mid.getRepr() and
-      term instanceof InfiniteRepetitionQuantifier and
-      q = epsilonSucc+(mid) and
-      not mid = q
-    )
-  ) and
-  stateInsideBacktracking(r1) and
-  stateInsideBacktracking(r2)
-}
-
-/**
- * Gets the state pair `(q1, q2)` or `(q2, q1)`; note that only
- * one or the other is defined.
- */
-private StatePair mkStatePair(State q1, State q2) {
-  result = MkStatePair(q1, q2) or result = MkStatePair(q2, q1)
-}
-
-/**
- * Holds if there are transitions from the components of `q` to the corresponding
- * components of `r` labelled with `s1` and `s2`, respectively.
- */
-private predicate step(StatePair q, InputSymbol s1, InputSymbol s2, StatePair r) {
-  exists(State r1, State r2 | step(q, s1, s2, r1, r2) and r = mkStatePair(r1, r2))
-}
-
-/**
- * Holds if there are transitions from the components of `q` to `r1` and `r2`
- * labelled with `s1` and `s2`, respectively.
- *
- * We only consider transitions where the resulting states `(r1, r2)` are both
- * inside a repetition that might backtrack.
- */
-pragma[noopt]
-private predicate step(StatePair q, InputSymbol s1, InputSymbol s2, State r1, State r2) {
-  exists(State q1, State q2 | q.getLeft() = q1 and q.getRight() = q2 |
-    deltaClosed(q1, s1, r1) and
-    deltaClosed(q2, s2, r2) and
-    // use noopt to force the join on `intersect` to happen last.
-    exists(intersect(s1, s2))
-  ) and
-  stateInsideBacktracking(r1) and
-  stateInsideBacktracking(r2)
-}
-
-private newtype TTrace =
-  Nil() or
-  Step(InputSymbol s1, InputSymbol s2, TTrace t) { isReachableFromFork(_, _, s1, s2, t, _) }
-
-/**
- * A list of pairs of input symbols that describe a path in the product automaton
- * starting from some fork state.
- */
-private class Trace extends TTrace {
-  /** Gets a textual representation of this element. */
-  string toString() {
-    this = Nil() and result = "Nil()"
-    or
-    exists(InputSymbol s1, InputSymbol s2, Trace t | this = Step(s1, s2, t) |
-      result = "Step(" + s1 + ", " + s2 + ", " + t + ")"
-    )
-  }
-}
-
-/**
- * Holds if `r` is reachable from `(fork, fork)` under input `w`, and there is
- * a path from `r` back to `(fork, fork)` with `rem` steps.
- */
-private predicate isReachableFromFork(State fork, StatePair r, Trace w, int rem) {
-  exists(InputSymbol s1, InputSymbol s2, Trace v |
-    isReachableFromFork(fork, r, s1, s2, v, rem) and
-    w = Step(s1, s2, v)
-  )
-}
-
-private predicate isReachableFromFork(
-  State fork, StatePair r, InputSymbol s1, InputSymbol s2, Trace v, int rem
-) {
-  // base case
-  exists(State q1, State q2 |
-    isFork(fork, s1, s2, q1, q2) and
-    r = MkStatePair(q1, q2) and
-    v = Nil() and
-    rem = statePairDistToFork(r, MkStatePair(fork, fork))
-  )
-  or
-  // recursive case
-  exists(StatePair p |
-    isReachableFromFork(fork, p, v, rem + 1) and
-    step(p, s1, s2, r) and
-    rem = statePairDistToFork(r, MkStatePair(fork, fork))
-  )
-}
-
-/**
- * Gets a state in the product automaton from which `(fork, fork)` is
- * reachable in zero or more epsilon transitions.
- */
-private StatePair getAForkPair(State fork) {
-  isFork(fork, _, _, _, _) and
-  result = MkStatePair(epsilonPred*(fork), epsilonPred*(fork))
-}
-
-/** An implementation of a chain containing chars for use by `Concretizer`. */
-private module CharTreeImpl implements CharTree {
-  class CharNode = Trace;
-
-  CharNode getPrev(CharNode t) { t = Step(_, _, result) }
-
-  /** Holds if `n` is a trace that is used by `concretize` in `isPumpable`. */
-  predicate isARelevantEnd(CharNode n) {
-    exists(State f | isReachableFromFork(f, getAForkPair(f), n, _))
-  }
-
-  string getChar(CharNode t) {
-    exists(InputSymbol s1, InputSymbol s2 | t = Step(s1, s2, _) | result = intersect(s1, s2))
-  }
-}
-
-/**
- * Holds if `fork` is a pumpable fork with word `w`.
- */
-private predicate isPumpable(State fork, string w) {
-  exists(StatePair q, Trace t |
-    isReachableFromFork(fork, q, t, _) and
-    q = getAForkPair(fork) and
-    w = Concretizer<CharTreeImpl>::concretize(t)
-  )
-}
-
-/** Holds if `state` has exponential ReDoS */
-predicate hasReDoSResult = ReDoSPruning<isPumpable/2>::hasReDoSResult/4;
+private import semmle.python.RegexTreeView::RegexTreeView as TreeView
+// ExponentialBackTracking should be used directly from the shared pack, and not from this file.
+deprecated private import codeql.regex.nfa.ExponentialBackTracking::Make<TreeView> as Dep
+import Dep
diff --git a/python/ql/lib/semmle/python/security/regexp/NfaUtils.qll b/python/ql/lib/semmle/python/security/regexp/NfaUtils.qll
index 5ff0cb6a39e..942830d95b2 100644
--- a/python/ql/lib/semmle/python/security/regexp/NfaUtils.qll
+++ b/python/ql/lib/semmle/python/security/regexp/NfaUtils.qll
@@ -7,1332 +7,7 @@
  * other queries that benefit from reasoning about NFAs.
  */
 
-import NfaUtilsSpecific
-
-/**
- * Gets the char after `c` (from a simplified ASCII table).
- */
-private string nextChar(string c) { exists(int code | code = ascii(c) | code + 1 = ascii(result)) }
-
-/**
- * Gets an approximation for the ASCII code for `char`.
- * Only the easily printable chars are included (so no newline, tab, null, etc).
- */
-private int ascii(string char) {
-  char =
-    rank[result](string c |
-      c =
-        "! \"#$%&'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\\]^_`abcdefghijklmnopqrstuvwxyz{|}~"
-            .charAt(_)
-    )
-}
-
-/**
- * Holds if `t` matches at least an epsilon symbol.
- *
- * That is, this term does not restrict the language of the enclosing regular expression.
- *
- * This is implemented as an under-approximation, and this predicate does not hold for sub-patterns in particular.
- */
-predicate matchesEpsilon(RegExpTerm t) {
-  t instanceof RegExpStar
-  or
-  t instanceof RegExpOpt
-  or
-  t.(RegExpRange).getLowerBound() = 0
-  or
-  exists(RegExpTerm child |
-    child = t.getAChild() and
-    matchesEpsilon(child)
-  |
-    t instanceof RegExpAlt or
-    t instanceof RegExpGroup or
-    t instanceof RegExpPlus or
-    t instanceof RegExpRange
-  )
-  or
-  matchesEpsilon(t.(RegExpBackRef).getGroup())
-  or
-  forex(RegExpTerm child | child = t.(RegExpSequence).getAChild() | matchesEpsilon(child))
-}
-
-/**
- * A lookahead/lookbehind that matches the empty string.
- */
-class EmptyPositiveSubPattern extends RegExpSubPattern {
-  EmptyPositiveSubPattern() {
-    (
-      this instanceof RegExpPositiveLookahead
-      or
-      this instanceof RegExpPositiveLookbehind
-    ) and
-    matchesEpsilon(this.getOperand())
-  }
-}
-
-/** DEPRECATED: Use `EmptyPositiveSubPattern` instead. */
-deprecated class EmptyPositiveSubPatttern = EmptyPositiveSubPattern;
-
-/**
- * A branch in a disjunction that is the root node in a literal, or a literal
- * whose root node is not a disjunction.
- */
-class RegExpRoot extends RegExpTerm {
-  RegExpRoot() {
-    exists(RegExpParent parent |
-      exists(RegExpAlt alt |
-        alt.isRootTerm() and
-        this = alt.getAChild() and
-        parent = alt.getParent()
-      )
-      or
-      this.isRootTerm() and
-      not this instanceof RegExpAlt and
-      parent = this.getParent()
-    )
-  }
-
-  /**
-   * Holds if this root term is relevant to the ReDoS analysis.
-   */
-  predicate isRelevant() {
-    // is actually used as a RegExp
-    this.isUsedAsRegExp() and
-    // not excluded for library specific reasons
-    not isExcluded(this.getRootTerm().getParent())
-  }
-}
-
-/**
- * A constant in a regular expression that represents valid Unicode character(s).
- */
-private class RegexpCharacterConstant extends RegExpConstant {
-  RegexpCharacterConstant() { this.isCharacter() }
-}
-
-/**
- * A regexp term that is relevant for this ReDoS analysis.
- */
-class RelevantRegExpTerm extends RegExpTerm {
-  RelevantRegExpTerm() { getRoot(this).isRelevant() }
-}
-
-/**
- * Holds if `term` is the chosen canonical representative for all terms with string representation `str`.
- * The string representation includes which flags are used with the regular expression.
- *
- * Using canonical representatives gives a huge performance boost when working with tuples containing multiple `InputSymbol`s.
- * The number of `InputSymbol`s is decreased by 3 orders of magnitude or more in some larger benchmarks.
- */
-private predicate isCanonicalTerm(RelevantRegExpTerm term, string str) {
-  term =
-    min(RelevantRegExpTerm t, Location loc, File file |
-      loc = t.getLocation() and
-      file = t.getFile() and
-      str = getCanonicalizationString(t)
-    |
-      t order by t.getFile().getRelativePath(), loc.getStartLine(), loc.getStartColumn()
-    )
-}
-
-/**
- * Gets a string representation of `term` that is used for canonicalization.
- */
-private string getCanonicalizationString(RelevantRegExpTerm term) {
-  exists(string ignoreCase |
-    (if RegExpFlags::isIgnoreCase(term.getRootTerm()) then ignoreCase = "i" else ignoreCase = "") and
-    result = term.getRawValue() + "|" + ignoreCase
-  )
-}
-
-/**
- * An abstract input symbol, representing a set of concrete characters.
- */
-private newtype TInputSymbol =
-  /** An input symbol corresponding to character `c`. */
-  Char(string c) {
-    c =
-      any(RegexpCharacterConstant cc |
-        cc instanceof RelevantRegExpTerm and
-        not RegExpFlags::isIgnoreCase(cc.getRootTerm())
-      ).getValue().charAt(_)
-    or
-    // normalize everything to lower case if the regexp is case insensitive
-    c =
-      any(RegexpCharacterConstant cc, string char |
-        cc instanceof RelevantRegExpTerm and
-        RegExpFlags::isIgnoreCase(cc.getRootTerm()) and
-        char = cc.getValue().charAt(_)
-      |
-        char.toLowerCase()
-      )
-  } or
-  /**
-   * An input symbol representing all characters matched by
-   * a (non-universal) character class that has string representation `charClassString`.
-   */
-  CharClass(string charClassString) {
-    exists(RelevantRegExpTerm recc | isCanonicalTerm(recc, charClassString) |
-      recc instanceof RegExpCharacterClass and
-      not recc.(RegExpCharacterClass).isUniversalClass()
-      or
-      isEscapeClass(recc, _)
-    )
-  } or
-  /** An input symbol representing all characters matched by `.`. */
-  Dot() or
-  /** An input symbol representing all characters. */
-  Any() or
-  /** An epsilon transition in the automaton. */
-  Epsilon()
-
-/**
- * Gets the the CharClass corresponding to the canonical representative `term`.
- */
-private CharClass getCharClassForCanonicalTerm(RegExpTerm term) {
-  exists(string str | isCanonicalTerm(term, str) | result = CharClass(str))
-}
-
-/**
- * Gets a char class that represents `term`, even when `term` is not the canonical representative.
- */
-CharacterClass getCanonicalCharClass(RegExpTerm term) {
-  exists(string str | str = getCanonicalizationString(term) and result = CharClass(str))
-}
-
-/**
- * Holds if `a` and `b` are input symbols from the same regexp.
- */
-private predicate sharesRoot(InputSymbol a, InputSymbol b) {
-  exists(RegExpRoot root |
-    belongsTo(a, root) and
-    belongsTo(b, root)
-  )
-}
-
-/**
- * Holds if the `a` is an input symbol from a regexp that has root `root`.
- */
-private predicate belongsTo(InputSymbol a, RegExpRoot root) {
-  exists(State s | getRoot(s.getRepr()) = root |
-    delta(s, a, _)
-    or
-    delta(_, a, s)
-  )
-}
-
-/**
- * An abstract input symbol, representing a set of concrete characters.
- */
-class InputSymbol extends TInputSymbol {
-  InputSymbol() { not this instanceof Epsilon }
-
-  /**
-   * Gets a string representation of this input symbol.
-   */
-  string toString() {
-    this = Char(result)
-    or
-    this = CharClass(result)
-    or
-    this = Dot() and result = "."
-    or
-    this = Any() and result = "[^]"
-  }
-}
-
-/**
- * An abstract input symbol that represents a character class.
- */
-abstract class CharacterClass extends InputSymbol {
-  /**
-   * Gets a character that is relevant for intersection-tests involving this
-   * character class.
-   *
-   * Specifically, this is any of the characters mentioned explicitly in the
-   * character class, offset by one if it is inverted. For character class escapes,
-   * the result is as if the class had been written out as a series of intervals.
-   *
-   * This set is large enough to ensure that for any two intersecting character
-   * classes, one contains a relevant character from the other.
-   */
-  abstract string getARelevantChar();
-
-  /**
-   * Holds if this character class matches `char`.
-   */
-  bindingset[char]
-  abstract predicate matches(string char);
-
-  /**
-   * Gets a character matched by this character class.
-   */
-  string choose() { result = this.getARelevantChar() and this.matches(result) }
-}
-
-/**
- * Provides implementations for `CharacterClass`.
- */
-private module CharacterClasses {
-  /**
-   * Holds if the character class `cc` has a child (constant or range) that matches `char`.
-   */
-  pragma[noinline]
-  predicate hasChildThatMatches(RegExpCharacterClass cc, string char) {
-    if RegExpFlags::isIgnoreCase(cc.getRootTerm())
-    then
-      // normalize everything to lower case if the regexp is case insensitive
-      exists(string c | hasChildThatMatchesIgnoringCasingFlags(cc, c) | char = c.toLowerCase())
-    else hasChildThatMatchesIgnoringCasingFlags(cc, char)
-  }
-
-  /**
-   * Holds if the character class `cc` has a child (constant or range) that matches `char`.
-   * Ignores whether the character class is inside a regular expression that has the ignore case flag.
-   */
-  pragma[noinline]
-  predicate hasChildThatMatchesIgnoringCasingFlags(RegExpCharacterClass cc, string char) {
-    exists(getCharClassForCanonicalTerm(cc)) and
-    exists(RegExpTerm child | child = cc.getAChild() |
-      char = child.(RegexpCharacterConstant).getValue()
-      or
-      rangeMatchesOnLetterOrDigits(child, char)
-      or
-      not rangeMatchesOnLetterOrDigits(child, _) and
-      char = getARelevantChar() and
-      exists(string lo, string hi | child.(RegExpCharacterRange).isRange(lo, hi) |
-        lo <= char and
-        char <= hi
-      )
-      or
-      exists(string charClass | isEscapeClass(child, charClass) |
-        charClass.toLowerCase() = charClass and
-        classEscapeMatches(charClass, char)
-        or
-        char = getARelevantChar() and
-        charClass.toUpperCase() = charClass and
-        not classEscapeMatches(charClass, char)
-      )
-    )
-  }
-
-  /**
-   * Holds if `range` is a range on lower-case, upper-case, or digits, and matches `char`.
-   * This predicate is used to restrict the searchspace for ranges by only joining `getAnyPossiblyMatchedChar`
-   * on a few ranges.
-   */
-  private predicate rangeMatchesOnLetterOrDigits(RegExpCharacterRange range, string char) {
-    exists(string lo, string hi |
-      range.isRange(lo, hi) and lo = lowercaseLetter() and hi = lowercaseLetter()
-    |
-      lo <= char and
-      char <= hi and
-      char = lowercaseLetter()
-    )
-    or
-    exists(string lo, string hi |
-      range.isRange(lo, hi) and lo = upperCaseLetter() and hi = upperCaseLetter()
-    |
-      lo <= char and
-      char <= hi and
-      char = upperCaseLetter()
-    )
-    or
-    exists(string lo, string hi | range.isRange(lo, hi) and lo = digit() and hi = digit() |
-      lo <= char and
-      char <= hi and
-      char = digit()
-    )
-  }
-
-  private string lowercaseLetter() { result = "abcdefghijklmnopqrstuvwxyz".charAt(_) }
-
-  private string upperCaseLetter() { result = "ABCDEFGHIJKLMNOPQRSTUVWXYZ".charAt(_) }
-
-  private string digit() { result = [0 .. 9].toString() }
-
-  /**
-   * Gets a char that could be matched by a regular expression.
-   * Includes all printable ascii chars, all constants mentioned in a regexp, and all chars matches by the regexp `/\s|\d|\w/`.
-   */
-  string getARelevantChar() {
-    exists(ascii(result))
-    or
-    exists(RegexpCharacterConstant c | result = c.getValue().charAt(_))
-    or
-    classEscapeMatches(_, result)
-  }
-
-  /**
-   * Gets a char that is mentioned in the character class `c`.
-   */
-  private string getAMentionedChar(RegExpCharacterClass c) {
-    exists(RegExpTerm child | child = c.getAChild() |
-      result = child.(RegexpCharacterConstant).getValue()
-      or
-      child.(RegExpCharacterRange).isRange(result, _)
-      or
-      child.(RegExpCharacterRange).isRange(_, result)
-      or
-      exists(string charClass | isEscapeClass(child, charClass) |
-        result = min(string s | classEscapeMatches(charClass.toLowerCase(), s))
-        or
-        result = max(string s | classEscapeMatches(charClass.toLowerCase(), s))
-      )
-    )
-  }
-
-  bindingset[char, cc]
-  private string caseNormalize(string char, RegExpTerm cc) {
-    if RegExpFlags::isIgnoreCase(cc.getRootTerm())
-    then result = char.toLowerCase()
-    else result = char
-  }
-
-  /**
-   * An implementation of `CharacterClass` for positive (non inverted) character classes.
-   */
-  private class PositiveCharacterClass extends CharacterClass {
-    RegExpCharacterClass cc;
-
-    PositiveCharacterClass() { this = getCharClassForCanonicalTerm(cc) and not cc.isInverted() }
-
-    override string getARelevantChar() { result = caseNormalize(getAMentionedChar(cc), cc) }
-
-    override predicate matches(string char) { hasChildThatMatches(cc, char) }
-  }
-
-  /**
-   * An implementation of `CharacterClass` for inverted character classes.
-   */
-  private class InvertedCharacterClass extends CharacterClass {
-    RegExpCharacterClass cc;
-
-    InvertedCharacterClass() { this = getCharClassForCanonicalTerm(cc) and cc.isInverted() }
-
-    override string getARelevantChar() {
-      result = nextChar(caseNormalize(getAMentionedChar(cc), cc)) or
-      nextChar(result) = caseNormalize(getAMentionedChar(cc), cc)
-    }
-
-    bindingset[char]
-    override predicate matches(string char) { not hasChildThatMatches(cc, char) }
-  }
-
-  /**
-   * Holds if the character class escape `clazz` (\d, \s, or \w) matches `char`.
-   */
-  pragma[noinline]
-  private predicate classEscapeMatches(string clazz, string char) {
-    clazz = "d" and
-    char = "0123456789".charAt(_)
-    or
-    clazz = "s" and
-    char = [" ", "\t", "\r", "\n", 11.toUnicode(), 12.toUnicode()] // 11.toUnicode() = \v, 12.toUnicode() = \f
-    or
-    clazz = "w" and
-    char = "abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ0123456789_".charAt(_)
-  }
-
-  /**
-   * An implementation of `CharacterClass` for \d, \s, and \w.
-   */
-  private class PositiveCharacterClassEscape extends CharacterClass {
-    string charClass;
-    RegExpTerm cc;
-
-    PositiveCharacterClassEscape() {
-      isEscapeClass(cc, charClass) and
-      this = getCharClassForCanonicalTerm(cc) and
-      charClass = ["d", "s", "w"]
-    }
-
-    override string getARelevantChar() {
-      charClass = "d" and
-      result = ["0", "9"]
-      or
-      charClass = "s" and
-      result = " "
-      or
-      charClass = "w" and
-      if RegExpFlags::isIgnoreCase(cc.getRootTerm())
-      then result = ["a", "z", "_", "0", "9"]
-      else result = ["a", "Z", "_", "0", "9"]
-    }
-
-    override predicate matches(string char) { classEscapeMatches(charClass, char) }
-
-    override string choose() {
-      charClass = "d" and
-      result = "9"
-      or
-      charClass = "s" and
-      result = " "
-      or
-      charClass = "w" and
-      result = "a"
-    }
-  }
-
-  /**
-   * An implementation of `CharacterClass` for \D, \S, and \W.
-   */
-  private class NegativeCharacterClassEscape extends CharacterClass {
-    string charClass;
-
-    NegativeCharacterClassEscape() {
-      exists(RegExpTerm cc |
-        isEscapeClass(cc, charClass) and
-        this = getCharClassForCanonicalTerm(cc) and
-        charClass = ["D", "S", "W"]
-      )
-    }
-
-    override string getARelevantChar() {
-      charClass = "D" and
-      result = ["a", "Z", "!"]
-      or
-      charClass = "S" and
-      result = ["a", "9", "!"]
-      or
-      charClass = "W" and
-      result = [" ", "!"]
-    }
-
-    bindingset[char]
-    override predicate matches(string char) {
-      not classEscapeMatches(charClass.toLowerCase(), char)
-    }
-  }
-
-  /** Gets a representative for all char classes that match the same chars as `c`. */
-  CharacterClass normalize(CharacterClass c) {
-    exists(string normalization |
-      normalization = getNormalizationString(c) and
-      result =
-        min(CharacterClass cc, string raw |
-          getNormalizationString(cc) = normalization and cc = CharClass(raw)
-        |
-          cc order by raw
-        )
-    )
-  }
-
-  /** Gets a string representing all the chars matched by `c` */
-  private string getNormalizationString(CharacterClass c) {
-    (c instanceof PositiveCharacterClass or c instanceof PositiveCharacterClassEscape) and
-    result = concat(string char | c.matches(char) and char = CharacterClasses::getARelevantChar())
-    or
-    (c instanceof InvertedCharacterClass or c instanceof NegativeCharacterClassEscape) and
-    // the string produced by the concat can not contain repeated chars
-    // so by starting the below with "nn" we can guarantee that
-    // it will not overlap with the above case.
-    // and a negative char class can never match the same chars as a positive one, so we don't miss any results from this.
-    result =
-      "nn:" +
-        concat(string char | not c.matches(char) and char = CharacterClasses::getARelevantChar())
-  }
-}
-
-private class EdgeLabel extends TInputSymbol {
-  string toString() {
-    this = Epsilon() and result = ""
-    or
-    exists(InputSymbol s | this = s and result = s.toString())
-  }
-}
-
-/**
- * A RegExp term that acts like a plus.
- * Either it's a RegExpPlus, or it is a range {1,X} where X is >= 30.
- * 30 has been chosen as a threshold because for exponential blowup 2^30 is enough to get a decent DOS attack.
- */
-private class EffectivelyPlus extends RegExpTerm {
-  EffectivelyPlus() {
-    this instanceof RegExpPlus
-    or
-    exists(RegExpRange range |
-      range.getLowerBound() = 1 and
-      (range.getUpperBound() >= 30 or not exists(range.getUpperBound()))
-    |
-      this = range
-    )
-  }
-}
-
-/**
- * A RegExp term that acts like a star.
- * Either it's a RegExpStar, or it is a range {0,X} where X is >= 30.
- */
-private class EffectivelyStar extends RegExpTerm {
-  EffectivelyStar() {
-    this instanceof RegExpStar
-    or
-    exists(RegExpRange range |
-      range.getLowerBound() = 0 and
-      (range.getUpperBound() >= 30 or not exists(range.getUpperBound()))
-    |
-      this = range
-    )
-  }
-}
-
-/**
- * A RegExp term that acts like a question mark.
- * Either it's a RegExpQuestion, or it is a range {0,1}.
- */
-private class EffectivelyQuestion extends RegExpTerm {
-  EffectivelyQuestion() {
-    this instanceof RegExpOpt
-    or
-    exists(RegExpRange range | range.getLowerBound() = 0 and range.getUpperBound() = 1 |
-      this = range
-    )
-  }
-}
-
-/**
- * Gets the state before matching `t`.
- */
-pragma[inline]
-private State before(RegExpTerm t) { result = Match(t, 0) }
-
-/**
- * Gets a state the NFA may be in after matching `t`.
- */
-State after(RegExpTerm t) {
-  exists(RegExpAlt alt | t = alt.getAChild() | result = after(alt))
-  or
-  exists(RegExpSequence seq, int i | t = seq.getChild(i) |
-    result = before(seq.getChild(i + 1))
-    or
-    i + 1 = seq.getNumChild() and result = after(seq)
-  )
-  or
-  exists(RegExpGroup grp | t = grp.getAChild() | result = after(grp))
-  or
-  exists(EffectivelyStar star | t = star.getAChild() |
-    not isPossessive(star) and
-    result = before(star)
-  )
-  or
-  exists(EffectivelyPlus plus | t = plus.getAChild() |
-    not isPossessive(plus) and
-    result = before(plus)
-    or
-    result = after(plus)
-  )
-  or
-  exists(EffectivelyQuestion opt | t = opt.getAChild() | result = after(opt))
-  or
-  exists(RegExpRoot root | t = root |
-    if matchesAnySuffix(root) then result = AcceptAnySuffix(root) else result = Accept(root)
-  )
-}
-
-/**
- * Holds if the NFA has a transition from `q1` to `q2` labelled with `lbl`.
- */
-predicate delta(State q1, EdgeLabel lbl, State q2) {
-  exists(RegexpCharacterConstant s, int i |
-    q1 = Match(s, i) and
-    (
-      not RegExpFlags::isIgnoreCase(s.getRootTerm()) and
-      lbl = Char(s.getValue().charAt(i))
-      or
-      // normalize everything to lower case if the regexp is case insensitive
-      RegExpFlags::isIgnoreCase(s.getRootTerm()) and
-      exists(string c | c = s.getValue().charAt(i) | lbl = Char(c.toLowerCase()))
-    ) and
-    (
-      q2 = Match(s, i + 1)
-      or
-      s.getValue().length() = i + 1 and
-      q2 = after(s)
-    )
-  )
-  or
-  exists(RegExpDot dot | q1 = before(dot) and q2 = after(dot) |
-    if RegExpFlags::isDotAll(dot.getRootTerm()) then lbl = Any() else lbl = Dot()
-  )
-  or
-  exists(RegExpCharacterClass cc |
-    cc.isUniversalClass() and q1 = before(cc) and lbl = Any() and q2 = after(cc)
-    or
-    q1 = before(cc) and
-    lbl = CharacterClasses::normalize(CharClass(getCanonicalizationString(cc))) and
-    q2 = after(cc)
-  )
-  or
-  exists(RegExpTerm cc | isEscapeClass(cc, _) |
-    q1 = before(cc) and
-    lbl = CharacterClasses::normalize(CharClass(getCanonicalizationString(cc))) and
-    q2 = after(cc)
-  )
-  or
-  exists(RegExpAlt alt | lbl = Epsilon() | q1 = before(alt) and q2 = before(alt.getAChild()))
-  or
-  exists(RegExpSequence seq | lbl = Epsilon() | q1 = before(seq) and q2 = before(seq.getChild(0)))
-  or
-  exists(RegExpGroup grp | lbl = Epsilon() | q1 = before(grp) and q2 = before(grp.getChild(0)))
-  or
-  exists(EffectivelyStar star | lbl = Epsilon() |
-    q1 = before(star) and q2 = before(star.getChild(0))
-    or
-    q1 = before(star) and q2 = after(star)
-  )
-  or
-  exists(EffectivelyPlus plus | lbl = Epsilon() |
-    q1 = before(plus) and q2 = before(plus.getChild(0))
-  )
-  or
-  exists(EffectivelyQuestion opt | lbl = Epsilon() |
-    q1 = before(opt) and q2 = before(opt.getChild(0))
-    or
-    q1 = before(opt) and q2 = after(opt)
-  )
-  or
-  exists(RegExpRoot root | q1 = AcceptAnySuffix(root) |
-    lbl = Any() and q2 = q1
-    or
-    lbl = Epsilon() and q2 = Accept(root)
-  )
-  or
-  exists(RegExpRoot root | q1 = Match(root, 0) | matchesAnyPrefix(root) and lbl = Any() and q2 = q1)
-  or
-  exists(RegExpDollar dollar | q1 = before(dollar) |
-    lbl = Epsilon() and q2 = Accept(getRoot(dollar))
-  )
-  or
-  exists(EmptyPositiveSubPattern empty | q1 = before(empty) | lbl = Epsilon() and q2 = after(empty))
-}
-
-/**
- * Gets a state that `q` has an epsilon transition to.
- */
-State epsilonSucc(State q) { delta(q, Epsilon(), result) }
-
-/**
- * Gets a state that has an epsilon transition to `q`.
- */
-State epsilonPred(State q) { q = epsilonSucc(result) }
-
-/**
- * Holds if there is a state `q` that can be reached from `q1`
- * along epsilon edges, such that there is a transition from
- * `q` to `q2` that consumes symbol `s`.
- */
-predicate deltaClosed(State q1, InputSymbol s, State q2) { delta(epsilonSucc*(q1), s, q2) }
-
-/**
- * Gets the root containing the given term, that is, the root of the literal,
- * or a branch of the root disjunction.
- */
-RegExpRoot getRoot(RegExpTerm term) {
-  result = term or
-  result = getRoot(term.getParent())
-}
-
-/**
- * A state in the NFA.
- */
-newtype TState =
-  /**
-   * A state representing that the NFA is about to match a term.
-   * `i` is used to index into multi-char literals.
-   */
-  Match(RelevantRegExpTerm t, int i) {
-    i = 0
-    or
-    exists(t.(RegexpCharacterConstant).getValue().charAt(i))
-  } or
-  /**
-   * An accept state, where exactly the given input string is accepted.
-   */
-  Accept(RegExpRoot l) { l.isRelevant() } or
-  /**
-   * An accept state, where the given input string, or any string that has this
-   * string as a prefix, is accepted.
-   */
-  AcceptAnySuffix(RegExpRoot l) { l.isRelevant() }
-
-/**
- * Gets a state that is about to match the regular expression `t`.
- */
-State mkMatch(RegExpTerm t) { result = Match(t, 0) }
-
-/**
- * A state in the NFA corresponding to a regular expression.
- *
- * Each regular expression literal `l` has one accepting state
- * `Accept(l)`, one state that accepts all suffixes `AcceptAnySuffix(l)`,
- * and a state `Match(t, i)` for every subterm `t`,
- * which represents the state of the NFA before starting to
- * match `t`, or the `i`th character in `t` if `t` is a constant.
- */
-class State extends TState {
-  RegExpTerm repr;
-
-  State() {
-    this = Match(repr, _) or
-    this = Accept(repr) or
-    this = AcceptAnySuffix(repr)
-  }
-
-  /**
-   * Gets a string representation for this state in a regular expression.
-   */
-  string toString() {
-    exists(int i | this = Match(repr, i) | result = "Match(" + repr + "," + i + ")")
-    or
-    this instanceof Accept and
-    result = "Accept(" + repr + ")"
-    or
-    this instanceof AcceptAnySuffix and
-    result = "AcceptAny(" + repr + ")"
-  }
-
-  /**
-   * Gets the location for this state.
-   */
-  Location getLocation() { result = repr.getLocation() }
-
-  /**
-   * Gets the term represented by this state.
-   */
-  RegExpTerm getRepr() { result = repr }
-}
-
-/**
- * Gets the minimum char that is matched by both the character classes `c` and `d`.
- */
-private string getMinOverlapBetweenCharacterClasses(CharacterClass c, CharacterClass d) {
-  result = min(getAOverlapBetweenCharacterClasses(c, d))
-}
-
-/**
- * Gets a char that is matched by both the character classes `c` and `d`.
- * And `c` and `d` is not the same character class.
- */
-private string getAOverlapBetweenCharacterClasses(CharacterClass c, CharacterClass d) {
-  sharesRoot(c, d) and
-  result = [c.getARelevantChar(), d.getARelevantChar()] and
-  c.matches(result) and
-  d.matches(result) and
-  not c = d
-}
-
-/**
- * Gets a character that is represented by both `c` and `d`.
- */
-string intersect(InputSymbol c, InputSymbol d) {
-  (sharesRoot(c, d) or [c, d] = Any()) and
-  (
-    c = Char(result) and
-    d = getAnInputSymbolMatching(result)
-    or
-    result = getMinOverlapBetweenCharacterClasses(c, d)
-    or
-    result = c.(CharacterClass).choose() and
-    (
-      d = c
-      or
-      d = Dot() and
-      not (result = "\n" or result = "\r")
-      or
-      d = Any()
-    )
-    or
-    (c = Dot() or c = Any()) and
-    (d = Dot() or d = Any()) and
-    result = "a"
-  )
-  or
-  result = intersect(d, c)
-}
-
-/**
- * Gets a symbol that matches `char`.
- */
-bindingset[char]
-InputSymbol getAnInputSymbolMatching(string char) {
-  result = Char(char)
-  or
-  result.(CharacterClass).matches(char)
-  or
-  result = Dot() and
-  not (char = "\n" or char = "\r")
-  or
-  result = Any()
-}
-
-/**
- * Holds if `state` is a start state.
- */
-predicate isStartState(State state) {
-  state = mkMatch(any(RegExpRoot r))
-  or
-  exists(RegExpCaret car | state = after(car))
-}
-
-/**
- * Holds if `state` is a candidate for ReDoS with string `pump`.
- */
-signature predicate isCandidateSig(State state, string pump);
-
-/**
- * Holds if `state` is a candidate for ReDoS.
- */
-signature predicate isCandidateSig(State state);
-
-/**
- * Predicates for constructing a prefix string that leads to a given state.
- */
-module PrefixConstruction<isCandidateSig/1 isCandidate> {
-  /**
-   * Holds if `state` is the textually last start state for the regular expression.
-   */
-  private predicate lastStartState(RelevantState state) {
-    exists(RegExpRoot root |
-      state =
-        max(RelevantState s, Location l |
-          isStartState(s) and
-          getRoot(s.getRepr()) = root and
-          l = s.getRepr().getLocation()
-        |
-          s
-          order by
-            l.getStartLine(), l.getStartColumn(), s.getRepr().toString(), l.getEndColumn(),
-            l.getEndLine()
-        )
-    )
-  }
-
-  /**
-   * Holds if there exists any transition (Epsilon() or other) from `a` to `b`.
-   */
-  private predicate existsTransition(State a, State b) { delta(a, _, b) }
-
-  /**
-   * Gets the minimum number of transitions it takes to reach `state` from the `start` state.
-   */
-  int prefixLength(State start, State state) =
-    shortestDistances(lastStartState/1, existsTransition/2)(start, state, result)
-
-  /**
-   * Gets the minimum number of transitions it takes to reach `state` from the start state.
-   */
-  private int lengthFromStart(State state) { result = prefixLength(_, state) }
-
-  /**
-   * Gets a string for which the regular expression will reach `state`.
-   *
-   * Has at most one result for any given `state`.
-   * This predicate will not always have a result even if there is a ReDoS issue in
-   * the regular expression.
-   */
-  string prefix(State state) {
-    lastStartState(state) and
-    result = ""
-    or
-    // the search stops past the last redos candidate state.
-    lengthFromStart(state) <= max(lengthFromStart(any(State s | isCandidate(s)))) and
-    exists(State prev |
-      // select a unique predecessor (by an arbitrary measure)
-      prev =
-        min(State s, Location loc |
-          lengthFromStart(s) = lengthFromStart(state) - 1 and
-          loc = s.getRepr().getLocation() and
-          delta(s, _, state)
-        |
-          s
-          order by
-            loc.getStartLine(), loc.getStartColumn(), loc.getEndLine(), loc.getEndColumn(),
-            s.getRepr().toString()
-        )
-    |
-      // greedy search for the shortest prefix
-      result = prefix(prev) and delta(prev, Epsilon(), state)
-      or
-      not delta(prev, Epsilon(), state) and
-      result = prefix(prev) + getCanonicalEdgeChar(prev, state)
-    )
-  }
-
-  /**
-   * Gets a canonical char for which there exists a transition from `prev` to `next` in the NFA.
-   */
-  private string getCanonicalEdgeChar(State prev, State next) {
-    result =
-      min(string c | delta(prev, any(InputSymbol symbol | c = intersect(Any(), symbol)), next))
-  }
-
-  /** A state within a regular expression that contains a candidate state. */
-  class RelevantState instanceof State {
-    RelevantState() {
-      exists(State s | isCandidate(s) | getRoot(s.getRepr()) = getRoot(this.getRepr()))
-    }
-
-    /** Gets a string representation for this state in a regular expression. */
-    string toString() { result = State.super.toString() }
-
-    /** Gets the term represented by this state. */
-    RegExpTerm getRepr() { result = State.super.getRepr() }
-  }
-}
-
-/**
- * A module for pruning candidate ReDoS states.
- * The candidates are specified by the `isCandidate` signature predicate.
- * The candidates are checked for rejecting suffixes and deduplicated,
- * and the resulting ReDoS states are read by the `hasReDoSResult` predicate.
- */
-module ReDoSPruning<isCandidateSig/2 isCandidate> {
-  /**
-   * Holds if repeating `pump` starting at `state` is a candidate for causing backtracking.
-   * No check whether a rejected suffix exists has been made.
-   */
-  private predicate isReDoSCandidate(State state, string pump) {
-    isCandidate(state, pump) and
-    not state = acceptsAnySuffix() and // pruning early - these can never get stuck in a rejecting state.
-    (
-      not isCandidate(epsilonSucc+(state), _)
-      or
-      epsilonSucc+(state) = state and
-      state =
-        max(State s, Location l |
-          s = epsilonSucc+(state) and
-          l = s.getRepr().getLocation() and
-          isCandidate(s, _) and
-          s.getRepr() instanceof InfiniteRepetitionQuantifier
-        |
-          s order by l.getStartLine(), l.getStartColumn(), l.getEndColumn(), l.getEndLine()
-        )
-    )
-  }
-
-  /** Gets a state that can reach the `accept-any` state using only epsilon steps. */
-  private State acceptsAnySuffix() { epsilonSucc*(result) = AcceptAnySuffix(_) }
-
-  predicate isCandidateState(State s) { isReDoSCandidate(s, _) }
-
-  import PrefixConstruction<isCandidateState/1> as Prefix
-
-  class RelevantState = Prefix::RelevantState;
-
-  /**
-   * Predicates for testing the presence of a rejecting suffix.
-   *
-   * These predicates are used to ensure that the all states reached from the fork
-   * by repeating `w` have a rejecting suffix.
-   *
-   * For example, a regexp like `/^(a+)+/` will accept any string as long the prefix is
-   * some number of `"a"`s, and it is therefore not possible to construct a rejecting suffix.
-   *
-   * A regexp like `/(a+)+$/` or `/(a+)+b/` trivially has a rejecting suffix,
-   * as the suffix "X" will cause both the regular expressions to be rejected.
-   *
-   * The string `w` is repeated any number of times because it needs to be
-   * infinitely repeatable for the attack to work.
-   * For the regular expression `/((ab)+)*abab/` the accepting state is not reachable from the fork
-   * using epsilon transitions. But any attempt at repeating `w` will end in a state that accepts all suffixes.
-   */
-  private module SuffixConstruction {
-    /**
-     * Holds if all states reachable from `fork` by repeating `w`
-     * are likely rejectable by appending some suffix.
-     */
-    predicate reachesOnlyRejectableSuffixes(State fork, string w) {
-      isReDoSCandidate(fork, w) and
-      forex(State next | next = process(fork, w, w.length() - 1) | isLikelyRejectable(next)) and
-      not getProcessPrevious(fork, _, w) = acceptsAnySuffix() // we stop `process(..)` early if we can, check here if it happened.
-    }
-
-    /**
-     * Holds if there likely exists a suffix starting from `s` that leads to the regular expression being rejected.
-     * This predicate might find impossible suffixes when searching for suffixes of length > 1, which can cause FPs.
-     */
-    pragma[noinline]
-    private predicate isLikelyRejectable(RelevantState s) {
-      // exists a reject edge with some char.
-      hasRejectEdge(s)
-      or
-      hasEdgeToLikelyRejectable(s)
-      or
-      // stopping here is rejection
-      isRejectState(s)
-    }
-
-    /**
-     * Holds if `s` is not an accept state, and there is no epsilon transition to an accept state.
-     */
-    predicate isRejectState(RelevantState s) { not epsilonSucc*(s) = Accept(_) }
-
-    /**
-     * Holds if there is likely a non-empty suffix leading to rejection starting in `s`.
-     */
-    pragma[noopt]
-    predicate hasEdgeToLikelyRejectable(RelevantState s) {
-      // all edges (at least one) with some char leads to another state that is rejectable.
-      // the `next` states might not share a common suffix, which can cause FPs.
-      exists(string char | char = hasEdgeToLikelyRejectableHelper(s) |
-        // noopt to force `hasEdgeToLikelyRejectableHelper` to be first in the join-order.
-        exists(State next | deltaClosedChar(s, char, next) | isLikelyRejectable(next)) and
-        forall(State next | deltaClosedChar(s, char, next) | isLikelyRejectable(next))
-      )
-    }
-
-    /**
-     * Gets a char for there exists a transition away from `s`,
-     * and `s` has not been found to be rejectable by `hasRejectEdge` or `isRejectState`.
-     */
-    pragma[noinline]
-    private string hasEdgeToLikelyRejectableHelper(RelevantState s) {
-      not hasRejectEdge(s) and
-      not isRejectState(s) and
-      deltaClosedChar(s, result, _)
-    }
-
-    /**
-     * Holds if there is a state `next` that can be reached from `prev`
-     * along epsilon edges, such that there is a transition from
-     * `prev` to `next` that the character symbol `char`.
-     */
-    predicate deltaClosedChar(RelevantState prev, string char, RelevantState next) {
-      deltaClosed(prev, getAnInputSymbolMatchingRelevant(char), next)
-    }
-
-    pragma[noinline]
-    InputSymbol getAnInputSymbolMatchingRelevant(string char) {
-      char = relevant(_) and
-      result = getAnInputSymbolMatching(char)
-    }
-
-    pragma[noinline]
-    RegExpRoot relevantRoot() {
-      exists(RegExpTerm term, State s |
-        s.getRepr() = term and isCandidateState(s) and result = term.getRootTerm()
-      )
-    }
-
-    /**
-     * Gets a char used for finding possible suffixes inside `root`.
-     */
-    pragma[noinline]
-    private string relevant(RegExpRoot root) {
-      root = relevantRoot() and
-      (
-        exists(ascii(result)) and exists(root)
-        or
-        exists(InputSymbol s | belongsTo(s, root) | result = intersect(s, _))
-        or
-        // The characters from `hasSimpleRejectEdge`. Only `\n` is really needed (as `\n` is not in the `ascii` relation).
-        // The three chars must be kept in sync with `hasSimpleRejectEdge`.
-        result = ["|", "\n", "Z"] and exists(root)
-      )
-    }
-
-    /**
-     * Holds if there exists a `char` such that there is no edge from `s` labeled `char` in our NFA.
-     * The NFA does not model reject states, so the above is the same as saying there is a reject edge.
-     */
-    private predicate hasRejectEdge(State s) {
-      hasSimpleRejectEdge(s)
-      or
-      not hasSimpleRejectEdge(s) and
-      exists(string char | char = relevant(getRoot(s.getRepr())) | not deltaClosedChar(s, char, _))
-    }
-
-    /**
-     * Holds if there is no edge from `s` labeled with "|", "\n", or "Z" in our NFA.
-     * This predicate is used as a cheap pre-processing to speed up `hasRejectEdge`.
-     */
-    private predicate hasSimpleRejectEdge(State s) {
-      // The three chars were chosen arbitrarily. The three chars must be kept in sync with `relevant`.
-      exists(string char | char = ["|", "\n", "Z"] | not deltaClosedChar(s, char, _))
-    }
-
-    /**
-     * Gets a state that can be reached from pumpable `fork` consuming all
-     * chars in `w` any number of times followed by the first `i+1` characters of `w`.
-     */
-    pragma[noopt]
-    private State process(State fork, string w, int i) {
-      exists(State prev | prev = getProcessPrevious(fork, i, w) |
-        not prev = acceptsAnySuffix() and // we stop `process(..)` early if we can. If the successor accepts any suffix, then we know it can never be rejected.
-        exists(string char, InputSymbol sym |
-          char = w.charAt(i) and
-          deltaClosed(prev, sym, result) and
-          // noopt to prevent joining `prev` with all possible `chars` that could transition away from `prev`.
-          // Instead only join with the set of `chars` where a relevant `InputSymbol` has already been found.
-          sym = getAProcessInputSymbol(char)
-        )
-      )
-    }
-
-    /**
-     * Gets a state that can be reached from pumpable `fork` consuming all
-     * chars in `w` any number of times followed by the first `i` characters of `w`.
-     */
-    private State getProcessPrevious(State fork, int i, string w) {
-      isReDoSCandidate(fork, w) and
-      (
-        i = 0 and result = fork
-        or
-        result = process(fork, w, i - 1)
-        or
-        // repeat until fixpoint
-        i = 0 and
-        result = process(fork, w, w.length() - 1)
-      )
-    }
-
-    /**
-     * Gets an InputSymbol that matches `char`.
-     * The predicate is specialized to only have a result for the `char`s that are relevant for the `process` predicate.
-     */
-    private InputSymbol getAProcessInputSymbol(string char) {
-      char = getAProcessChar() and
-      result = getAnInputSymbolMatching(char)
-    }
-
-    /**
-     * Gets a `char` that occurs in a `pump` string.
-     */
-    private string getAProcessChar() { result = any(string s | isReDoSCandidate(_, s)).charAt(_) }
-  }
-
-  /**
-   * Holds if `term` may cause superlinear backtracking on strings containing many repetitions of `pump`.
-   * Gets the shortest string that causes superlinear backtracking.
-   */
-  private predicate isReDoSAttackable(RegExpTerm term, string pump, State s) {
-    exists(int i, string c | s = Match(term, i) |
-      c =
-        min(string w |
-          isCandidate(s, w) and
-          SuffixConstruction::reachesOnlyRejectableSuffixes(s, w)
-        |
-          w order by w.length(), w
-        ) and
-      pump = escape(rotate(c, i))
-    )
-  }
-
-  /**
-   * Holds if the state `s` (represented by the term `t`) can have backtracking with repetitions of `pump`.
-   *
-   * `prefixMsg` contains a friendly message for a prefix that reaches `s` (or `prefixMsg` is the empty string if the prefix is empty or if no prefix could be found).
-   */
-  predicate hasReDoSResult(RegExpTerm t, string pump, State s, string prefixMsg) {
-    isReDoSAttackable(t, pump, s) and
-    (
-      prefixMsg = "starting with '" + escape(Prefix::prefix(s)) + "' and " and
-      not Prefix::prefix(s) = ""
-      or
-      Prefix::prefix(s) = "" and prefixMsg = ""
-      or
-      not exists(Prefix::prefix(s)) and prefixMsg = ""
-    )
-  }
-
-  /**
-   * Gets the result of backslash-escaping newlines, carriage-returns and
-   * backslashes in `s`.
-   */
-  bindingset[s]
-  private string escape(string s) {
-    result =
-      s.replaceAll("\\", "\\\\")
-          .replaceAll("\n", "\\n")
-          .replaceAll("\r", "\\r")
-          .replaceAll("\t", "\\t")
-  }
-
-  /**
-   * Gets `str` with the last `i` characters moved to the front.
-   *
-   * We use this to adjust the pump string to match with the beginning of
-   * a RegExpTerm, so it doesn't start in the middle of a constant.
-   */
-  bindingset[str, i]
-  private string rotate(string str, int i) {
-    result = str.suffix(str.length() - i) + str.prefix(str.length() - i)
-  }
-}
-
-/**
- * A module that describes a tree where each node has one or more associated characters, also known as a trie.
- * The root node has no associated character.
- * This module is a signature used in `Concretizer`.
- */
-signature module CharTree {
-  /** A node in the tree. */
-  class CharNode;
-
-  /** Gets the previous node in the tree from `t`. */
-  CharNode getPrev(CharNode t);
-
-  /**
-   * Holds if `n` is at the end of a tree. I.e. a node that should have a result in the `Concretizer` module.
-   * Such a node can still have children.
-   */
-  predicate isARelevantEnd(CharNode n);
-
-  /** Gets a char associated with `t`. */
-  string getChar(CharNode t);
-}
-
-/**
- * Implements an algorithm for computing all possible strings
- * from following a tree of nodes (as described in `CharTree`).
- *
- * The string is build using one big concat, where all the chars are computed first.
- * See `concretize`.
- */
-module Concretizer<CharTree Impl> {
-  private class Node = Impl::CharNode;
-
-  private predicate getPrev = Impl::getPrev/1;
-
-  private predicate isARelevantEnd = Impl::isARelevantEnd/1;
-
-  private predicate getChar = Impl::getChar/1;
-
-  /** Holds if `n` is on a path from the root to a leaf, and is therefore relevant for the results in `concretize`. */
-  private predicate isRelevant(Node n) {
-    isARelevantEnd(n)
-    or
-    exists(Node succ | isRelevant(succ) | n = getPrev(succ))
-  }
-
-  /** Holds if `n` is a root with no predecessors. */
-  private predicate isRoot(Node n) { not exists(getPrev(n)) }
-
-  /** Gets the distance from a root to `n`. */
-  private int nodeDepth(Node n) {
-    result = 0 and isRoot(n)
-    or
-    isRelevant(n) and
-    exists(Node prev | result = nodeDepth(prev) + 1 | prev = getPrev(n))
-  }
-
-  /** Gets an ancestor of `end`, where `end` is a node that should have a result in `concretize`. */
-  private Node getAnAncestor(Node end) { isARelevantEnd(end) and result = getPrev*(end) }
-
-  /** Gets the `i`th character on the path from the root to `n`. */
-  pragma[noinline]
-  private string getPrefixChar(Node n, int i) {
-    exists(Node ancestor |
-      result = getChar(ancestor) and
-      ancestor = getAnAncestor(n) and
-      i = nodeDepth(ancestor)
-    )
-  }
-
-  /** Gets a string corresponding to `node`. */
-  language[monotonicAggregates]
-  string concretize(Node n) {
-    result = strictconcat(int i | exists(getPrefixChar(n, i)) | getPrefixChar(n, i) order by i)
-  }
-}
+private import semmle.python.RegexTreeView::RegexTreeView as TreeView
+// NfaUtils should be used directly from the shared pack, and not from this file.
+deprecated private import codeql.regex.nfa.NfaUtils::Make<TreeView> as Dep
+import Dep
diff --git a/python/ql/lib/semmle/python/security/regexp/NfaUtilsSpecific.qll b/python/ql/lib/semmle/python/security/regexp/NfaUtilsSpecific.qll
deleted file mode 100644
index 70ed5bcedad..00000000000
--- a/python/ql/lib/semmle/python/security/regexp/NfaUtilsSpecific.qll
+++ /dev/null
@@ -1,75 +0,0 @@
-/**
- * Provides Python-specific definitions for use in the NfaUtils module.
- */
-
-import python
-import semmle.python.RegexTreeView
-
-/**
- * Holds if `term` is an escape class representing e.g. `\d`.
- * `clazz` is which character class it represents, e.g. "d" for `\d`.
- */
-predicate isEscapeClass(RegExpTerm term, string clazz) {
-  exists(RegExpCharacterClassEscape escape | term = escape | escape.getValue() = clazz)
-}
-
-/**
- * Holds if `term` is a possessive quantifier.
- * As python's regexes do not support possessive quantifiers, this never holds, but is used by the shared library.
- */
-predicate isPossessive(RegExpQuantifier term) { none() }
-
-/**
- * Holds if the regex that `term` is part of is used in a way that ignores any leading prefix of the input it's matched against.
- * Not yet implemented for Python.
- */
-predicate matchesAnyPrefix(RegExpTerm term) { any() }
-
-/**
- * Holds if the regex that `term` is part of is used in a way that ignores any trailing suffix of the input it's matched against.
- * Not yet implemented for Python.
- */
-predicate matchesAnySuffix(RegExpTerm term) { any() }
-
-/**
- * Holds if the regular expression should not be considered.
- *
- * We make the pragmatic performance optimization to ignore regular expressions in files
- * that does not belong to the project code (such as installed dependencies).
- */
-predicate isExcluded(RegExpParent parent) {
-  not exists(parent.getRegex().getLocation().getFile().getRelativePath())
-  or
-  // Regexes with many occurrences of ".*" may cause the polynomial ReDoS computation to explode, so
-  // we explicitly exclude these.
-  count(int i | exists(parent.getRegex().getText().regexpFind("\\.\\*", i, _)) | i) > 10
-}
-
-/**
- * A module containing predicates for determining which flags a regular expression have.
- */
-module RegExpFlags {
-  /**
-   * Holds if `root` has the `i` flag for case-insensitive matching.
-   */
-  predicate isIgnoreCase(RegExpTerm root) {
-    root.isRootTerm() and
-    root.getLiteral().isIgnoreCase()
-  }
-
-  /**
-   * Gets the flags for `root`, or the empty string if `root` has no flags.
-   */
-  string getFlags(RegExpTerm root) {
-    root.isRootTerm() and
-    result = root.getLiteral().getFlags()
-  }
-
-  /**
-   * Holds if `root` has the `s` flag for multi-line matching.
-   */
-  predicate isDotAll(RegExpTerm root) {
-    root.isRootTerm() and
-    root.getLiteral().isDotAll()
-  }
-}
diff --git a/python/ql/lib/semmle/python/security/regexp/RegexpMatching.qll b/python/ql/lib/semmle/python/security/regexp/RegexpMatching.qll
index e2c75ff980b..d73a67add16 100644
--- a/python/ql/lib/semmle/python/security/regexp/RegexpMatching.qll
+++ b/python/ql/lib/semmle/python/security/regexp/RegexpMatching.qll
@@ -3,155 +3,7 @@
  * and for testing which capture groups are filled when a particular regexp matches a string.
  */
 
-import NfaUtils
-
-/** A root term */
-class RootTerm extends RegExpTerm {
-  RootTerm() { this.isRootTerm() }
-}
-
-/**
- * Holds if it should be tested whether `root` matches `str`.
- *
- * If `ignorePrefix` is true, then a regexp without a start anchor will be treated as if it had a start anchor.
- * E.g. a regular expression `/foo$/` will match any string that ends with "foo",
- * but if `ignorePrefix` is true, it will only match "foo".
- *
- * If `testWithGroups` is true, then the `RegexpMatching::fillsCaptureGroup` predicate can be used to determine which capture
- * groups are filled by a string.
- */
-signature predicate isRegexpMatchingCandidateSig(
-  RootTerm root, string str, boolean ignorePrefix, boolean testWithGroups
-);
-
-/**
- * A module for determining if a regexp matches a given string,
- * and reasoning about which capture groups are filled by a given string.
- *
- * The module parameter `isCandidate` determines which strings should be tested,
- * and the results can be read from the `matches` and `fillsCaptureGroup` predicates.
- */
-module RegexpMatching<isRegexpMatchingCandidateSig/4 isCandidate> {
-  /**
-   * Gets a state the regular expression `reg` can be in after matching the `i`th char in `str`.
-   * The regular expression is modeled as a non-determistic finite automaton,
-   * the regular expression can therefore be in multiple states after matching a character.
-   *
-   * It's a forward search to all possible states, and there is thus no guarantee that the state is on a path to an accepting state.
-   */
-  private State getAState(RootTerm reg, int i, string str, boolean ignorePrefix) {
-    // start state, the -1 position before any chars have been matched
-    i = -1 and
-    isCandidate(reg, str, ignorePrefix, _) and
-    result.getRepr().getRootTerm() = reg and
-    isStartState(result)
-    or
-    // recursive case
-    result = getAStateAfterMatching(reg, _, str, i, _, ignorePrefix)
-  }
-
-  /**
-   * Gets the next state after the `prev` state from `reg`.
-   * `prev` is the state after matching `fromIndex` chars in `str`,
-   * and the result is the state after matching `toIndex` chars in `str`.
-   *
-   * This predicate is used as a step relation in the forwards search (`getAState`),
-   * and also as a step relation in the later backwards search (`getAStateThatReachesAccept`).
-   */
-  private State getAStateAfterMatching(
-    RootTerm reg, State prev, string str, int toIndex, int fromIndex, boolean ignorePrefix
-  ) {
-    // the basic recursive case - outlined into a noopt helper to make performance work out.
-    result = getAStateAfterMatchingAux(reg, prev, str, toIndex, fromIndex, ignorePrefix)
-    or
-    // we can skip past word boundaries if the next char is a non-word char.
-    fromIndex = toIndex and
-    prev.getRepr() instanceof RegExpWordBoundary and
-    prev = getAState(reg, toIndex, str, ignorePrefix) and
-    after(prev.getRepr()) = result and
-    str.charAt(toIndex + 1).regexpMatch("\\W") // \W matches any non-word char.
-  }
-
-  pragma[noopt]
-  private State getAStateAfterMatchingAux(
-    RootTerm reg, State prev, string str, int toIndex, int fromIndex, boolean ignorePrefix
-  ) {
-    prev = getAState(reg, fromIndex, str, ignorePrefix) and
-    fromIndex = toIndex - 1 and
-    exists(string char | char = str.charAt(toIndex) | specializedDeltaClosed(prev, char, result)) and
-    not discardedPrefixStep(prev, result, ignorePrefix)
-  }
-
-  /** Holds if a step from `prev` to `next` should be discarded when the `ignorePrefix` flag is set. */
-  private predicate discardedPrefixStep(State prev, State next, boolean ignorePrefix) {
-    prev = mkMatch(any(RegExpRoot r)) and
-    ignorePrefix = true and
-    next = prev
-  }
-
-  // The `deltaClosed` relation specialized to the chars that exists in strings tested by a `MatchedRegExp`.
-  private predicate specializedDeltaClosed(State prev, string char, State next) {
-    deltaClosed(prev, specializedGetAnInputSymbolMatching(char), next)
-  }
-
-  // The `getAnInputSymbolMatching` relation specialized to the chars that exists in strings tested by a `MatchedRegExp`.
-  pragma[noinline]
-  private InputSymbol specializedGetAnInputSymbolMatching(string char) {
-    exists(string s, RootTerm r | isCandidate(r, s, _, _) | char = s.charAt(_)) and
-    result = getAnInputSymbolMatching(char)
-  }
-
-  /**
-   * Gets the `i`th state on a path to the accepting state when `reg` matches `str`.
-   * Starts with an accepting state as found by `getAState` and searches backwards
-   * to the start state through the reachable states (as found by `getAState`).
-   *
-   * This predicate satisfies the invariant that the result state can be reached with `i` steps from a start state,
-   * and an accepting state can be found after (`str.length() - 1 - i`) steps from the result.
-   * The result state is therefore always on a valid path where `reg` accepts `str`.
-   *
-   * This predicate is only used to find which capture groups a regular expression has filled,
-   * and thus the search is only performed for the strings in the `testWithGroups(..)` predicate.
-   */
-  private State getAStateThatReachesAccept(RootTerm reg, int i, string str, boolean ignorePrefix) {
-    // base case, reaches an accepting state from the last state in `getAState(..)`
-    isCandidate(reg, str, ignorePrefix, true) and
-    i = str.length() - 1 and
-    result = getAState(reg, i, str, ignorePrefix) and
-    epsilonSucc*(result) = Accept(_)
-    or
-    // recursive case. `next` is the next state to be matched after matching `prev`.
-    // this predicate is doing a backwards search, so `prev` is the result we are looking for.
-    exists(State next, State prev, int fromIndex, int toIndex |
-      next = getAStateThatReachesAccept(reg, toIndex, str, ignorePrefix) and
-      next = getAStateAfterMatching(reg, prev, str, toIndex, fromIndex, ignorePrefix) and
-      i = fromIndex and
-      result = prev
-    )
-  }
-
-  /** Gets the capture group number that `term` belongs to. */
-  private int group(RegExpTerm term) {
-    exists(RegExpGroup grp | grp.getNumber() = result | term.getParent*() = grp)
-  }
-
-  /**
-   * Holds if `reg` matches `str`, where `str` is in the `isCandidate` predicate.
-   */
-  predicate matches(RootTerm reg, string str) {
-    exists(State state | state = getAState(reg, str.length() - 1, str, _) |
-      epsilonSucc*(state) = Accept(_)
-    )
-  }
-
-  /**
-   * Holds if matching `str` against `reg` may fill capture group number `g`.
-   * Only holds if `str` is in the `testWithGroups` predicate.
-   */
-  predicate fillsCaptureGroup(RootTerm reg, string str, int g) {
-    exists(State s |
-      s = getAStateThatReachesAccept(reg, _, str, _) and
-      g = group(s.getRepr())
-    )
-  }
-}
+private import semmle.python.RegexTreeView::RegexTreeView as TreeView
+// RegexpMatching should be used directly from the shared pack, and not from this file.
+deprecated import codeql.regex.nfa.RegexpMatching::Make<TreeView> as Dep
+import Dep
diff --git a/python/ql/lib/semmle/python/security/regexp/SuperlinearBackTracking.qll b/python/ql/lib/semmle/python/security/regexp/SuperlinearBackTracking.qll
index 14a69dc0644..6eca3722e09 100644
--- a/python/ql/lib/semmle/python/security/regexp/SuperlinearBackTracking.qll
+++ b/python/ql/lib/semmle/python/security/regexp/SuperlinearBackTracking.qll
@@ -1,11 +1,4 @@
 /**
- * Provides classes for working with regular expressions that can
- * perform backtracking in superlinear time.
- */
-
-import NfaUtils
-
-/*
  * This module implements the analysis described in the paper:
  *   Valentin Wustholz, Oswaldo Olivo, Marijn J. H. Heule, and Isil Dillig:
  *     Static Detection of DoS Vulnerabilities in
@@ -42,377 +35,7 @@ import NfaUtils
  * It also doesn't find all transitions in the product automaton, which can cause false negatives.
  */
 
-/**
- * Gets any root (start) state of a regular expression.
- */
-private State getRootState() { result = mkMatch(any(RegExpRoot r)) }
-
-private newtype TStateTuple =
-  MkStateTuple(State q1, State q2, State q3) {
-    // starts at (pivot, pivot, succ)
-    isStartLoops(q1, q3) and q1 = q2
-    or
-    step(_, _, _, _, q1, q2, q3) and FeasibleTuple::isFeasibleTuple(q1, q2, q3)
-  }
-
-/**
- * A state in the product automaton.
- * The product automaton contains 3-tuples of states.
- *
- * We lazily only construct those states that we are actually
- * going to need.
- * Either a start state `(pivot, pivot, succ)`, or a state
- * where there exists a transition from an already existing state.
- *
- * The exponential variant of this query (`js/redos`) uses an optimization
- * trick where `q1 <= q2`. This trick cannot be used here as the order
- * of the elements matter.
- */
-class StateTuple extends TStateTuple {
-  State q1;
-  State q2;
-  State q3;
-
-  StateTuple() { this = MkStateTuple(q1, q2, q3) }
-
-  /**
-   * Gest a string representation of this tuple.
-   */
-  string toString() { result = "(" + q1 + ", " + q2 + ", " + q3 + ")" }
-
-  /**
-   * Holds if this tuple is `(r1, r2, r3)`.
-   */
-  pragma[noinline]
-  predicate isTuple(State r1, State r2, State r3) { r1 = q1 and r2 = q2 and r3 = q3 }
-}
-
-/**
- * A module for determining feasible tuples for the product automaton.
- *
- * The implementation is split into many predicates for performance reasons.
- */
-private module FeasibleTuple {
-  /**
-   * Holds if the tuple `(r1, r2, r3)` might be on path from a start-state to an end-state in the product automaton.
-   */
-  pragma[inline]
-  predicate isFeasibleTuple(State r1, State r2, State r3) {
-    // The first element is either inside a repetition (or the start state itself)
-    isRepetitionOrStart(r1) and
-    // The last element is inside a repetition
-    stateInsideRepetition(r3) and
-    // The states are reachable in the NFA in the order r1 -> r2 -> r3
-    delta+(r1) = r2 and
-    delta+(r2) = r3 and
-    // The first element can reach a beginning (the "pivot" state in a `(pivot, succ)` pair).
-    canReachABeginning(r1) and
-    // The last element can reach a target (the "succ" state in a `(pivot, succ)` pair).
-    canReachATarget(r3)
-  }
-
-  /**
-   * Holds if `s` is either inside a repetition, or is the start state (which is a repetition).
-   */
-  pragma[noinline]
-  private predicate isRepetitionOrStart(State s) { stateInsideRepetition(s) or s = getRootState() }
-
-  /**
-   * Holds if state `s` might be inside a backtracking repetition.
-   */
-  pragma[noinline]
-  private predicate stateInsideRepetition(State s) {
-    s.getRepr().getParent*() instanceof InfiniteRepetitionQuantifier
-  }
-
-  /**
-   * Holds if there exists a path in the NFA from `s` to a "pivot" state
-   * (from a `(pivot, succ)` pair that starts the search).
-   */
-  pragma[noinline]
-  private predicate canReachABeginning(State s) {
-    delta+(s) = any(State pivot | isStartLoops(pivot, _))
-  }
-
-  /**
-   * Holds if there exists a path in the NFA from `s` to a "succ" state
-   * (from a `(pivot, succ)` pair that starts the search).
-   */
-  pragma[noinline]
-  private predicate canReachATarget(State s) { delta+(s) = any(State succ | isStartLoops(_, succ)) }
-}
-
-/**
- * Holds if `pivot` and `succ` are a pair of loops that could be the beginning of a quadratic blowup.
- *
- * There is a slight implementation difference compared to the paper: this predicate requires that `pivot != succ`.
- * The case where `pivot = succ` causes exponential backtracking and is handled by the `js/redos` query.
- */
-predicate isStartLoops(State pivot, State succ) {
-  pivot != succ and
-  succ.getRepr() instanceof InfiniteRepetitionQuantifier and
-  delta+(pivot) = succ and
-  (
-    pivot.getRepr() instanceof InfiniteRepetitionQuantifier
-    or
-    pivot = mkMatch(any(RegExpRoot root))
-  )
-}
-
-/**
- * Gets a state for which there exists a transition in the NFA from `s'.
- */
-State delta(State s) { delta(s, _, result) }
-
-/**
- * Holds if there are transitions from the components of `q` to the corresponding
- * components of `r` labelled with `s1`, `s2`, and `s3`, respectively.
- */
-pragma[noinline]
-predicate step(StateTuple q, InputSymbol s1, InputSymbol s2, InputSymbol s3, StateTuple r) {
-  exists(State r1, State r2, State r3 |
-    step(q, s1, s2, s3, r1, r2, r3) and r = MkStateTuple(r1, r2, r3)
-  )
-}
-
-/**
- * Holds if there are transitions from the components of `q` to `r1`, `r2`, and `r3
- * labelled with `s1`, `s2`, and `s3`, respectively.
- */
-pragma[noopt]
-predicate step(
-  StateTuple q, InputSymbol s1, InputSymbol s2, InputSymbol s3, State r1, State r2, State r3
-) {
-  exists(State q1, State q2, State q3 | q.isTuple(q1, q2, q3) |
-    deltaClosed(q1, s1, r1) and
-    deltaClosed(q2, s2, r2) and
-    deltaClosed(q3, s3, r3) and
-    // use noopt to force the join on `getAThreewayIntersect` to happen last.
-    exists(getAThreewayIntersect(s1, s2, s3))
-  )
-}
-
-/**
- * Gets a char that is matched by all the edges `s1`, `s2`, and `s3`.
- *
- * The result is not complete, and might miss some combination of edges that share some character.
- */
-pragma[noinline]
-string getAThreewayIntersect(InputSymbol s1, InputSymbol s2, InputSymbol s3) {
-  result = minAndMaxIntersect(s1, s2) and result = [intersect(s2, s3), intersect(s1, s3)]
-  or
-  result = minAndMaxIntersect(s1, s3) and result = [intersect(s2, s3), intersect(s1, s2)]
-  or
-  result = minAndMaxIntersect(s2, s3) and result = [intersect(s1, s2), intersect(s1, s3)]
-}
-
-/**
- * Gets the minimum and maximum characters that intersect between `a` and `b`.
- * This predicate is used to limit the size of `getAThreewayIntersect`.
- */
-pragma[noinline]
-string minAndMaxIntersect(InputSymbol a, InputSymbol b) {
-  result = [min(intersect(a, b)), max(intersect(a, b))]
-}
-
-private newtype TTrace =
-  Nil() or
-  Step(InputSymbol s1, InputSymbol s2, InputSymbol s3, TTrace t) {
-    isReachableFromStartTuple(_, _, t, s1, s2, s3, _, _)
-  }
-
-/**
- * A list of tuples of input symbols that describe a path in the product automaton
- * starting from some start state.
- */
-class Trace extends TTrace {
-  /**
-   * Gets a string representation of this Trace that can be used for debug purposes.
-   */
-  string toString() {
-    this = Nil() and result = "Nil()"
-    or
-    exists(InputSymbol s1, InputSymbol s2, InputSymbol s3, Trace t | this = Step(s1, s2, s3, t) |
-      result = "Step(" + s1 + ", " + s2 + ", " + s3 + ", " + t + ")"
-    )
-  }
-}
-
-/**
- * Holds if there exists a transition from `r` to `q` in the product automaton.
- * Notice that the arguments are flipped, and thus the direction is backwards.
- */
-pragma[noinline]
-predicate tupleDeltaBackwards(StateTuple q, StateTuple r) { step(r, _, _, _, q) }
-
-/**
- * Holds if `tuple` is an end state in our search.
- * That means there exists a pair of loops `(pivot, succ)` such that `tuple = (pivot, succ, succ)`.
- */
-predicate isEndTuple(StateTuple tuple) { tuple = getAnEndTuple(_, _) }
-
-/**
- * Gets the minimum length of a path from `r` to some an end state `end`.
- *
- * The implementation searches backwards from the end-tuple.
- * This approach was chosen because it is way more efficient if the first predicate given to `shortestDistances` is small.
- * The `end` argument must always be an end state.
- */
-int distBackFromEnd(StateTuple r, StateTuple end) =
-  shortestDistances(isEndTuple/1, tupleDeltaBackwards/2)(end, r, result)
-
-/**
- * Holds if there exists a pair of repetitions `(pivot, succ)` in the regular expression such that:
- * `tuple` is reachable from `(pivot, pivot, succ)` in the product automaton,
- * and there is a distance of `dist` from `tuple` to the nearest end-tuple `(pivot, succ, succ)`,
- * and a path from a start-state to `tuple` follows the transitions in `trace`.
- */
-private predicate isReachableFromStartTuple(
-  State pivot, State succ, StateTuple tuple, Trace trace, int dist
-) {
-  exists(InputSymbol s1, InputSymbol s2, InputSymbol s3, Trace v |
-    isReachableFromStartTuple(pivot, succ, v, s1, s2, s3, tuple, dist) and
-    trace = Step(s1, s2, s3, v)
-  )
-}
-
-private predicate isReachableFromStartTuple(
-  State pivot, State succ, Trace trace, InputSymbol s1, InputSymbol s2, InputSymbol s3,
-  StateTuple tuple, int dist
-) {
-  // base case.
-  exists(State q1, State q2, State q3 |
-    isStartLoops(pivot, succ) and
-    step(MkStateTuple(pivot, pivot, succ), s1, s2, s3, tuple) and
-    tuple = MkStateTuple(q1, q2, q3) and
-    trace = Nil() and
-    dist = distBackFromEnd(tuple, MkStateTuple(pivot, succ, succ))
-  )
-  or
-  // recursive case
-  exists(StateTuple p |
-    isReachableFromStartTuple(pivot, succ, p, trace, dist + 1) and
-    dist = distBackFromEnd(tuple, MkStateTuple(pivot, succ, succ)) and
-    step(p, s1, s2, s3, tuple)
-  )
-}
-
-/**
- * Gets the tuple `(pivot, succ, succ)` from the product automaton.
- */
-StateTuple getAnEndTuple(State pivot, State succ) {
-  isStartLoops(pivot, succ) and
-  result = MkStateTuple(pivot, succ, succ)
-}
-
-/** An implementation of a chain containing chars for use by `Concretizer`. */
-private module CharTreeImpl implements CharTree {
-  class CharNode = Trace;
-
-  CharNode getPrev(CharNode t) { t = Step(_, _, _, result) }
-
-  /** Holds if `n` is used in `isPumpable`. */
-  predicate isARelevantEnd(CharNode n) {
-    exists(State pivot, State succ |
-      isReachableFromStartTuple(pivot, succ, getAnEndTuple(pivot, succ), n, _)
-    )
-  }
-
-  string getChar(CharNode t) {
-    exists(InputSymbol s1, InputSymbol s2, InputSymbol s3 | t = Step(s1, s2, s3, _) |
-      result = getAThreewayIntersect(s1, s2, s3)
-    )
-  }
-}
-
-/**
- * Holds if matching repetitions of `pump` can:
- * 1) Transition from `pivot` back to `pivot`.
- * 2) Transition from `pivot` to `succ`.
- * 3) Transition from `succ` to `succ`.
- *
- * From theorem 3 in the paper linked in the top of this file we can therefore conclude that
- * the regular expression has polynomial backtracking - if a rejecting suffix exists.
- *
- * This predicate is used by `SuperLinearReDoSConfiguration`, and the final results are
- * available in the `hasReDoSResult` predicate.
- */
-predicate isPumpable(State pivot, State succ, string pump) {
-  exists(StateTuple q, Trace t |
-    isReachableFromStartTuple(pivot, succ, q, t, _) and
-    q = getAnEndTuple(pivot, succ) and
-    pump = Concretizer<CharTreeImpl>::concretize(t)
-  )
-}
-
-/**
- * Holds if states starting in `state` can have polynomial backtracking with the string `pump`.
- */
-predicate isReDoSCandidate(State state, string pump) { isPumpable(_, state, pump) }
-
-/**
- * Holds if repetitions of `pump` at `t` will cause polynomial backtracking.
- */
-predicate polynomialReDoS(RegExpTerm t, string pump, string prefixMsg, RegExpTerm prev) {
-  exists(State s, State pivot |
-    ReDoSPruning<isReDoSCandidate/2>::hasReDoSResult(t, pump, s, prefixMsg) and
-    isPumpable(pivot, s, _) and
-    prev = pivot.getRepr()
-  )
-}
-
-/**
- * Gets a message for why `term` can cause polynomial backtracking.
- */
-string getReasonString(RegExpTerm term, string pump, string prefixMsg, RegExpTerm prev) {
-  polynomialReDoS(term, pump, prefixMsg, prev) and
-  result =
-    "Strings " + prefixMsg + "with many repetitions of '" + pump +
-      "' can start matching anywhere after the start of the preceeding " + prev
-}
-
-/**
- * A term that may cause a regular expression engine to perform a
- * polynomial number of match attempts, relative to the input length.
- */
-class PolynomialBackTrackingTerm extends InfiniteRepetitionQuantifier {
-  string reason;
-  string pump;
-  string prefixMsg;
-  RegExpTerm prev;
-
-  PolynomialBackTrackingTerm() {
-    reason = getReasonString(this, pump, prefixMsg, prev) and
-    // there might be many reasons for this term to have polynomial backtracking - we pick the shortest one.
-    reason = min(string msg | msg = getReasonString(this, _, _, _) | msg order by msg.length(), msg)
-  }
-
-  /**
-   * Holds if all non-empty successors to the polynomial backtracking term matches the end of the line.
-   */
-  predicate isAtEndLine() {
-    forall(RegExpTerm succ | this.getSuccessor+() = succ and not matchesEpsilon(succ) |
-      succ instanceof RegExpDollar
-    )
-  }
-
-  /**
-   * Gets the string that should be repeated to cause this regular expression to perform polynomially.
-   */
-  string getPumpString() { result = pump }
-
-  /**
-   * Gets a message for which prefix a matching string must start with for this term to cause polynomial backtracking.
-   */
-  string getPrefixMessage() { result = prefixMsg }
-
-  /**
-   * Gets a predecessor to `this`, which also loops on the pump string, and thereby causes polynomial backtracking.
-   */
-  RegExpTerm getPreviousLoop() { result = prev }
-
-  /**
-   * Gets the reason for the number of match attempts.
-   */
-  string getReason() { result = reason }
-}
+private import semmle.python.RegexTreeView::RegexTreeView as TreeView
+// SuperlinearBackTracking should be used directly from the shared pack, and not from this file.
+deprecated private import codeql.regex.nfa.SuperlinearBackTracking::Make<TreeView> as Dep
+import Dep
diff --git a/python/ql/src/Security/CWE-020/OverlyLargeRange.ql b/python/ql/src/Security/CWE-020/OverlyLargeRange.ql
index b4d2caf5e80..6bf7f41d8ed 100644
--- a/python/ql/src/Security/CWE-020/OverlyLargeRange.ql
+++ b/python/ql/src/Security/CWE-020/OverlyLargeRange.ql
@@ -12,8 +12,9 @@
  *       external/cwe/cwe-020
  */
 
-import semmle.python.security.OverlyLargeRangeQuery
+private import semmle.python.RegexTreeView::RegexTreeView as TreeView
+import codeql.regex.OverlyLargeRangeQuery::Make<TreeView>
 
-from RegExpCharacterRange range, string reason
+from TreeView::RegExpCharacterRange range, string reason
 where problem(range, reason)
 select range, "Suspicious character range that " + reason + "."
diff --git a/python/ql/src/Security/CWE-116/BadTagFilter.ql b/python/ql/src/Security/CWE-116/BadTagFilter.ql
index 654df65275b..afcf73f357a 100644
--- a/python/ql/src/Security/CWE-116/BadTagFilter.ql
+++ b/python/ql/src/Security/CWE-116/BadTagFilter.ql
@@ -14,7 +14,8 @@
  *       external/cwe/cwe-186
  */
 
-import semmle.python.security.BadTagFilterQuery
+private import semmle.python.RegexTreeView::RegexTreeView as TreeView
+import codeql.regex.nfa.BadTagFilterQuery::Make<TreeView>
 
 from HtmlMatchingRegExp regexp, string msg
 where msg = min(string m | isBadRegexpFilter(regexp, m) | m order by m.length(), m) // there might be multiple, we arbitrarily pick the shortest one
diff --git a/python/ql/src/Security/CWE-730/PolynomialReDoS.ql b/python/ql/src/Security/CWE-730/PolynomialReDoS.ql
index 1637686c1d8..1b315c651c3 100644
--- a/python/ql/src/Security/CWE-730/PolynomialReDoS.ql
+++ b/python/ql/src/Security/CWE-730/PolynomialReDoS.ql
@@ -14,7 +14,6 @@
  */
 
 import python
-import semmle.python.security.regexp.SuperlinearBackTracking
 import semmle.python.security.dataflow.PolynomialReDoSQuery
 import DataFlow::PathGraph
 
diff --git a/python/ql/src/Security/CWE-730/ReDoS.ql b/python/ql/src/Security/CWE-730/ReDoS.ql
index 0e66d3cdb79..4ba35c598da 100644
--- a/python/ql/src/Security/CWE-730/ReDoS.ql
+++ b/python/ql/src/Security/CWE-730/ReDoS.ql
@@ -14,10 +14,10 @@
  *       external/cwe/cwe-400
  */
 
-import python
-import semmle.python.security.regexp.ExponentialBackTracking
+private import semmle.python.RegexTreeView::RegexTreeView as TreeView
+import codeql.regex.nfa.ExponentialBackTracking::Make<TreeView>
 
-from RegExpTerm t, string pump, State s, string prefixMsg
+from TreeView::RegExpTerm t, string pump, State s, string prefixMsg
 where
   hasReDoSResult(t, pump, s, prefixMsg) and
   // exclude verbose mode regexes for now
diff --git a/python/ql/test/query-tests/Security/CWE-730-PolynomialReDoS/PolynomialBackTracking.ql b/python/ql/test/query-tests/Security/CWE-730-PolynomialReDoS/PolynomialBackTracking.ql
index 8d0aa2f8f91..19c905be1fe 100644
--- a/python/ql/test/query-tests/Security/CWE-730-PolynomialReDoS/PolynomialBackTracking.ql
+++ b/python/ql/test/query-tests/Security/CWE-730-PolynomialReDoS/PolynomialBackTracking.ql
@@ -1,5 +1,6 @@
 import python
-import semmle.python.security.regexp.SuperlinearBackTracking
+private import semmle.python.RegexTreeView::RegexTreeView as TreeView
+import codeql.regex.nfa.SuperlinearBackTracking::Make<TreeView>
 
 from PolynomialBackTrackingTerm t
-select t.getRegex(), t, t.getReason()
+select t.(TreeView::RegExpTerm).getRegex(), t, t.getReason()

From 618438642a0ce41e7b554c6afa6448a257bbdcf0 Mon Sep 17 00:00:00 2001
From: erik-krogh <erik-krogh@github.com>
Date: Tue, 1 Nov 2022 12:08:45 +0100
Subject: [PATCH 0081/1420] update expected output of the queries (some sorting
 changed due to locations being used slightly differently in the shared pack)

---
 .../PolynomialBackTracking.expected           |  2 +-
 .../PolynomialReDoS.expected                  |  2 +-
 .../Security/CWE-730-ReDoS/ReDoS.expected     | 25 +++++++++----------
 3 files changed, 14 insertions(+), 15 deletions(-)

diff --git a/python/ql/test/query-tests/Security/CWE-730-PolynomialReDoS/PolynomialBackTracking.expected b/python/ql/test/query-tests/Security/CWE-730-PolynomialReDoS/PolynomialBackTracking.expected
index 0f422fdc6aa..b72ea986b93 100644
--- a/python/ql/test/query-tests/Security/CWE-730-PolynomialReDoS/PolynomialBackTracking.expected
+++ b/python/ql/test/query-tests/Security/CWE-730-PolynomialReDoS/PolynomialBackTracking.expected
@@ -1,2 +1,2 @@
 | test.py:8:12:8:23 | Str | test.py:8:21:8:23 | \\s+ | Strings with many repetitions of ' ' can start matching anywhere after the start of the preceeding \\s+$ |
-| test.py:9:14:9:29 | Str | test.py:9:27:9:29 | \\d+ | Strings with many repetitions of '99' can start matching anywhere after the start of the preceeding \\d+ |
+| test.py:9:14:9:29 | Str | test.py:9:27:9:29 | \\d+ | Strings starting with '0.9' and with many repetitions of '99' can start matching anywhere after the start of the preceeding \\d+ |
diff --git a/python/ql/test/query-tests/Security/CWE-730-PolynomialReDoS/PolynomialReDoS.expected b/python/ql/test/query-tests/Security/CWE-730-PolynomialReDoS/PolynomialReDoS.expected
index 424b07a0b9d..14817348cb3 100644
--- a/python/ql/test/query-tests/Security/CWE-730-PolynomialReDoS/PolynomialReDoS.expected
+++ b/python/ql/test/query-tests/Security/CWE-730-PolynomialReDoS/PolynomialReDoS.expected
@@ -16,4 +16,4 @@ nodes
 subpaths
 #select
 | test.py:8:30:8:33 | ControlFlowNode for text | test.py:2:26:2:32 | ControlFlowNode for ImportMember | test.py:8:30:8:33 | ControlFlowNode for text | This $@ that depends on a $@ may run slow on strings with many repetitions of ' '. | test.py:8:21:8:23 | \\s+ | regular expression | test.py:2:26:2:32 | ControlFlowNode for ImportMember | user-provided value |
-| test.py:9:32:9:35 | ControlFlowNode for text | test.py:2:26:2:32 | ControlFlowNode for ImportMember | test.py:9:32:9:35 | ControlFlowNode for text | This $@ that depends on a $@ may run slow on strings with many repetitions of '99'. | test.py:9:27:9:29 | \\d+ | regular expression | test.py:2:26:2:32 | ControlFlowNode for ImportMember | user-provided value |
+| test.py:9:32:9:35 | ControlFlowNode for text | test.py:2:26:2:32 | ControlFlowNode for ImportMember | test.py:9:32:9:35 | ControlFlowNode for text | This $@ that depends on a $@ may run slow on strings starting with '0.9' and with many repetitions of '99'. | test.py:9:27:9:29 | \\d+ | regular expression | test.py:2:26:2:32 | ControlFlowNode for ImportMember | user-provided value |
diff --git a/python/ql/test/query-tests/Security/CWE-730-ReDoS/ReDoS.expected b/python/ql/test/query-tests/Security/CWE-730-ReDoS/ReDoS.expected
index bcd6dd36685..b1ed5e099cc 100644
--- a/python/ql/test/query-tests/Security/CWE-730-ReDoS/ReDoS.expected
+++ b/python/ql/test/query-tests/Security/CWE-730-ReDoS/ReDoS.expected
@@ -2,20 +2,20 @@
 | KnownCVEs.py:30:24:31:25 | .* | This part of the regular expression may cause exponential backtracking on strings containing many repetitions of ','. |
 | KnownCVEs.py:35:18:35:81 | ([-/:,#%.'"\\s!\\w]\|\\w-\\w\|'[\\s\\w]+'\\s*\|"[\\s\\w]+"\|\\([\\d,%\\.\\s]+\\))* | This part of the regular expression may cause exponential backtracking on strings containing many repetitions of '"\\t"'. |
 | redos.py:6:28:6:42 | (?:__\|[\\s\\S])+? | This part of the regular expression may cause exponential backtracking on strings containing many repetitions of '__'. |
-| redos.py:6:52:6:68 | (?:\\*\\*\|[\\s\\S])+? | This part of the regular expression may cause exponential backtracking on strings containing many repetitions of '**'. |
-| redos.py:21:34:21:53 | (?:[^"\\\\]\|\\\\\\\\\|\\\\.)+ | This part of the regular expression may cause exponential backtracking on strings containing many repetitions of '\\\\\\\\'. |
-| redos.py:21:57:21:76 | (?:[^'\\\\]\|\\\\\\\\\|\\\\.)+ | This part of the regular expression may cause exponential backtracking on strings containing many repetitions of '\\\\\\\\'. |
-| redos.py:21:81:21:100 | (?:[^)\\\\]\|\\\\\\\\\|\\\\.)+ | This part of the regular expression may cause exponential backtracking on strings containing many repetitions of '\\\\\\\\'. |
-| redos.py:33:64:33:65 | .* | This part of the regular expression may cause exponential backtracking on strings containing many repetitions of '\|\|\\n'. |
+| redos.py:6:52:6:68 | (?:\\*\\*\|[\\s\\S])+? | This part of the regular expression may cause exponential backtracking on strings starting with '*' and containing many repetitions of '**'. |
+| redos.py:21:34:21:53 | (?:[^"\\\\]\|\\\\\\\\\|\\\\.)+ | This part of the regular expression may cause exponential backtracking on strings starting with '\\t"' and containing many repetitions of '\\\\\\\\'. |
+| redos.py:21:57:21:76 | (?:[^'\\\\]\|\\\\\\\\\|\\\\.)+ | This part of the regular expression may cause exponential backtracking on strings starting with '\\t'' and containing many repetitions of '\\\\\\\\'. |
+| redos.py:21:81:21:100 | (?:[^)\\\\]\|\\\\\\\\\|\\\\.)+ | This part of the regular expression may cause exponential backtracking on strings starting with '\\t(' and containing many repetitions of '\\\\\\\\'. |
+| redos.py:33:64:33:65 | .* | This part of the regular expression may cause exponential backtracking on strings starting with '!\|\\n-\|\\n' and containing many repetitions of '\|\|\\n'. |
 | redos.py:38:33:38:42 | (\\\\\\/\|.)*? | This part of the regular expression may cause exponential backtracking on strings containing many repetitions of '\\\\/'. |
-| redos.py:43:37:43:38 | .* | This part of the regular expression may cause exponential backtracking on strings containing many repetitions of '#'. |
+| redos.py:43:37:43:38 | .* | This part of the regular expression may cause exponential backtracking on strings starting with '#' and containing many repetitions of '#'. |
 | redos.py:49:41:49:43 | .*? | This part of the regular expression may cause exponential backtracking on strings starting with '"' and containing many repetitions of '""'. |
 | redos.py:49:47:49:49 | .*? | This part of the regular expression may cause exponential backtracking on strings starting with ''' and containing many repetitions of ''''. |
-| redos.py:54:47:54:49 | .*? | This part of the regular expression may cause exponential backtracking on strings containing many repetitions of ']['. |
-| redos.py:54:80:54:82 | .*? | This part of the regular expression may cause exponential backtracking on strings containing many repetitions of ']['. |
+| redos.py:54:47:54:49 | .*? | This part of the regular expression may cause exponential backtracking on strings starting with '$[' and containing many repetitions of ']['. |
+| redos.py:54:80:54:82 | .*? | This part of the regular expression may cause exponential backtracking on strings starting with '$.$[' and containing many repetitions of ']['. |
 | redos.py:60:25:60:30 | [a-z]+ | This part of the regular expression may cause exponential backtracking on strings containing many repetitions of 'a'. |
 | redos.py:61:25:61:30 | [a-z]* | This part of the regular expression may cause exponential backtracking on strings containing many repetitions of 'a'. |
-| redos.py:62:53:62:64 | [a-zA-Z0-9]+ | This part of the regular expression may cause exponential backtracking on strings containing many repetitions of '0'. |
+| redos.py:62:53:62:64 | [a-zA-Z0-9]+ | This part of the regular expression may cause exponential backtracking on strings starting with '0' and containing many repetitions of '0'. |
 | redos.py:63:26:63:33 | ([a-z])+ | This part of the regular expression may cause exponential backtracking on strings containing many repetitions of 'aa'. |
 | redos.py:68:26:68:41 | [\\w#:.~>+()\\s-]+ | This part of the regular expression may cause exponential backtracking on strings containing many repetitions of '\\t'. |
 | redos.py:68:48:68:50 | .*? | This part of the regular expression may cause exponential backtracking on strings starting with '[' and containing many repetitions of ']['. |
@@ -51,7 +51,6 @@
 | redos.py:196:91:196:92 | ,? | This part of the regular expression may cause exponential backtracking on strings starting with '{[A(A)A: ' and containing many repetitions of ',A: '. |
 | redos.py:199:25:199:26 | a+ | This part of the regular expression may cause exponential backtracking on strings containing many repetitions of 'a'. |
 | redos.py:199:28:199:29 | b+ | This part of the regular expression may cause exponential backtracking on strings containing many repetitions of 'b'. |
-| redos.py:202:26:202:32 | (a+a?)* | This part of the regular expression may cause exponential backtracking on strings containing many repetitions of 'a'. |
 | redos.py:202:27:202:28 | a+ | This part of the regular expression may cause exponential backtracking on strings containing many repetitions of 'a'. |
 | redos.py:205:25:205:26 | a+ | This part of the regular expression may cause exponential backtracking on strings containing many repetitions of 'a'. |
 | redos.py:211:25:211:26 | a+ | This part of the regular expression may cause exponential backtracking on strings containing many repetitions of 'a'. |
@@ -71,16 +70,16 @@
 | redos.py:268:28:268:39 | ([\ufffd\ufffd]\|[\ufffd\ufffd])* | This part of the regular expression may cause exponential backtracking on strings starting with 'foo' and containing many repetitions of '\ufffd'. |
 | redos.py:271:28:271:41 | ((\ufffd\|\ufffd)\|(\ufffd\|\ufffd))* | This part of the regular expression may cause exponential backtracking on strings starting with 'foo' and containing many repetitions of '\ufffd'. |
 | redos.py:274:31:274:32 | b+ | This part of the regular expression may cause exponential backtracking on strings containing many repetitions of 'b'. |
-| redos.py:277:48:277:50 | \\s* | This part of the regular expression may cause exponential backtracking on strings containing many repetitions of '""\\t0='. |
+| redos.py:277:48:277:50 | \\s* | This part of the regular expression may cause exponential backtracking on strings starting with '<0\\t0=' and containing many repetitions of '""\\t0='. |
 | redos.py:283:26:283:27 | a+ | This part of the regular expression may cause exponential backtracking on strings containing many repetitions of 'a'. |
 | redos.py:286:26:286:27 | a+ | This part of the regular expression may cause exponential backtracking on strings containing many repetitions of 'a'. |
 | redos.py:292:26:292:27 | a+ | This part of the regular expression may cause exponential backtracking on strings containing many repetitions of 'a'. |
 | redos.py:295:35:295:36 | a+ | This part of the regular expression may cause exponential backtracking on strings containing many repetitions of 'a'. |
-| redos.py:301:100:301:101 | e+ | This part of the regular expression may cause exponential backtracking on strings starting with ';00000000000000' and containing many repetitions of 'e'. |
+| redos.py:301:100:301:101 | e+ | This part of the regular expression may cause exponential backtracking on strings starting with '00000000000000' and containing many repetitions of 'e'. |
 | redos.py:304:28:304:29 | c+ | This part of the regular expression may cause exponential backtracking on strings starting with 'ab' and containing many repetitions of 'c'. |
 | redos.py:307:28:307:30 | \\s+ | This part of the regular expression may cause exponential backtracking on strings containing many repetitions of '\\t'. |
 | redos.py:310:26:310:34 | ([^/]\|X)+ | This part of the regular expression may cause exponential backtracking on strings containing many repetitions of 'X'. |
-| redos.py:313:30:313:34 | [^Y]+ | This part of the regular expression may cause exponential backtracking on strings containing many repetitions of 'Xx'. |
+| redos.py:313:30:313:34 | [^Y]+ | This part of the regular expression may cause exponential backtracking on strings starting with 'x' and containing many repetitions of 'Xx'. |
 | redos.py:316:25:316:26 | a* | This part of the regular expression may cause exponential backtracking on strings containing many repetitions of 'a'. |
 | redos.py:319:28:319:33 | [\\w-]* | This part of the regular expression may cause exponential backtracking on strings starting with 'foo' and containing many repetitions of '-'. |
 | redos.py:322:25:322:29 | (ab)* | This part of the regular expression may cause exponential backtracking on strings containing many repetitions of 'ab'. |

From c733648dc6db02ed64cbf669100e46eecf0d3772 Mon Sep 17 00:00:00 2001
From: erik-krogh <erik-krogh@github.com>
Date: Tue, 1 Nov 2022 12:08:49 +0100
Subject: [PATCH 0082/1420] add change-note

---
 python/ql/lib/change-notes/2022-10-31-shared-redos-pack.md | 4 ++++
 1 file changed, 4 insertions(+)
 create mode 100644 python/ql/lib/change-notes/2022-10-31-shared-redos-pack.md

diff --git a/python/ql/lib/change-notes/2022-10-31-shared-redos-pack.md b/python/ql/lib/change-notes/2022-10-31-shared-redos-pack.md
new file mode 100644
index 00000000000..44212066527
--- /dev/null
+++ b/python/ql/lib/change-notes/2022-10-31-shared-redos-pack.md
@@ -0,0 +1,4 @@
+---
+ category: minorAnalysis
+---
+ * The ReDoS libraries in `semmle.code.python.security.regexp` has been moved to a shared pack inside the `shared/` folder, and the previous location has been deprecated.
\ No newline at end of file

From c89016b181b5c2376317dba5f974541b7601d5aa Mon Sep 17 00:00:00 2001
From: erik-krogh <erik-krogh@github.com>
Date: Mon, 7 Nov 2022 14:32:20 +0100
Subject: [PATCH 0083/1420] use  instead of a fixed version number

---
 python/ql/lib/qlpack.yml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/python/ql/lib/qlpack.yml b/python/ql/lib/qlpack.yml
index 13ed5d27498..cf9d72aa9d2 100644
--- a/python/ql/lib/qlpack.yml
+++ b/python/ql/lib/qlpack.yml
@@ -6,4 +6,4 @@ extractor: python
 library: true
 upgrades: upgrades
 dependencies:
-  codeql/regex: 0.0.1
\ No newline at end of file
+  codeql/regex: ${workspace}
\ No newline at end of file

From dddf550593ee21e15c45c92cab409dec85375da6 Mon Sep 17 00:00:00 2001
From: erik-krogh <erik-krogh@github.com>
Date: Tue, 1 Nov 2022 11:39:17 +0100
Subject: [PATCH 0084/1420] add codeql/regex as a dependency

---
 ruby/ql/lib/qlpack.yml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/ruby/ql/lib/qlpack.yml b/ruby/ql/lib/qlpack.yml
index 016f75260eb..bc6f3e513ee 100644
--- a/ruby/ql/lib/qlpack.yml
+++ b/ruby/ql/lib/qlpack.yml
@@ -7,4 +7,4 @@ upgrades: upgrades
 library: true
 dependencies:
   codeql/ssa: ${workspace}
-
+  codeql/regex: ${workspace}

From af922702c79458864a0ea6329de37dd7701acb50 Mon Sep 17 00:00:00 2001
From: erik-krogh <erik-krogh@github.com>
Date: Tue, 1 Nov 2022 11:41:55 +0100
Subject: [PATCH 0085/1420] move existing regex-tree into a module

---
 .../lib/codeql/ruby/regexp/RegExpTreeView.qll | 2109 +++++++++--------
 1 file changed, 1058 insertions(+), 1051 deletions(-)

diff --git a/ruby/ql/lib/codeql/ruby/regexp/RegExpTreeView.qll b/ruby/ql/lib/codeql/ruby/regexp/RegExpTreeView.qll
index 1ff182e3dcc..fffa0044771 100644
--- a/ruby/ql/lib/codeql/ruby/regexp/RegExpTreeView.qll
+++ b/ruby/ql/lib/codeql/ruby/regexp/RegExpTreeView.qll
@@ -4,6 +4,12 @@ private import internal.ParseRegExp
 private import codeql.NumberUtils
 private import codeql.ruby.ast.Literal as Ast
 private import codeql.Locations
+import Impl
+
+/** Gets the parse tree resulting from parsing `re`, if such has been constructed. */
+RegExpTerm getParsedRegExp(Ast::RegExpLiteral re) {
+  result.getRegExp() = re and result.isRootTerm()
+}
 
 /**
  * An element containing a regular expression term, that is, either
@@ -45,1109 +51,1110 @@ private newtype TRegExpParent =
     re.namedCharacterProperty(start, end, _)
   }
 
-/**
- * An element containing a regular expression term, that is, either
- * a string literal (parsed as a regular expression)
- * or another regular expression term.
- */
-class RegExpParent extends TRegExpParent {
-  /** Gets a textual representation of this element. */
-  string toString() { result = "RegExpParent" }
-
-  /** Gets the `i`th child term. */
-  RegExpTerm getChild(int i) { none() }
-
-  /** Gets a child term . */
-  final RegExpTerm getAChild() { result = this.getChild(_) }
-
-  /** Gets the number of child terms. */
-  int getNumChild() { result = count(this.getAChild()) }
-
-  /** Gets the last child term of this element. */
-  RegExpTerm getLastChild() { result = this.getChild(this.getNumChild() - 1) }
-
+/** An implementation that statisfies the RegexTreeView signature. */
+private module Impl {
   /**
-   * Gets the name of a primary CodeQL class to which this regular
-   * expression term belongs.
+   * An element containing a regular expression term, that is, either
+   * a string literal (parsed as a regular expression)
+   * or another regular expression term.
    */
-  string getAPrimaryQlClass() { result = "RegExpParent" }
+  class RegExpParent extends TRegExpParent {
+    /** Gets a textual representation of this element. */
+    string toString() { result = "RegExpParent" }
 
-  /**
-   * Gets a comma-separated list of the names of the primary CodeQL classes to
-   * which this regular expression term belongs.
-   */
-  final string getPrimaryQlClasses() { result = concat(this.getAPrimaryQlClass(), ",") }
-}
+    /** Gets the `i`th child term. */
+    RegExpTerm getChild(int i) { none() }
 
-/** A string literal used as a regular expression */
-class RegExpLiteral extends TRegExpLiteral, RegExpParent {
-  RegExp re;
+    /** Gets a child term . */
+    final RegExpTerm getAChild() { result = this.getChild(_) }
 
-  RegExpLiteral() { this = TRegExpLiteral(re) }
+    /** Gets the number of child terms. */
+    int getNumChild() { result = count(this.getAChild()) }
 
-  override RegExpTerm getChild(int i) { i = 0 and result.getRegExp() = re and result.isRootTerm() }
+    /** Gets the last child term of this element. */
+    RegExpTerm getLastChild() { result = this.getChild(this.getNumChild() - 1) }
 
-  /** Holds if dot, `.`, matches all characters, including newlines. */
-  predicate isDotAll() { re.isDotAll() }
+    /**
+     * Gets the name of a primary CodeQL class to which this regular
+     * expression term belongs.
+     */
+    string getAPrimaryQlClass() { result = "RegExpParent" }
 
-  /** Holds if this regex matching is case-insensitive for this regex. */
-  predicate isIgnoreCase() { re.isIgnoreCase() }
+    /**
+     * Gets a comma-separated list of the names of the primary CodeQL classes to
+     * which this regular expression term belongs.
+     */
+    final string getPrimaryQlClasses() { result = concat(this.getAPrimaryQlClass(), ",") }
+  }
 
-  /** Get a string representing all modes for this regex. */
-  string getFlags() { result = re.getFlags() }
+  /** A string literal used as a regular expression */
+  class RegExpLiteral extends TRegExpLiteral, RegExpParent {
+    RegExp re;
 
-  /** Gets the primary QL class for this regex. */
-  override string getAPrimaryQlClass() { result = "RegExpLiteral" }
-}
+    RegExpLiteral() { this = TRegExpLiteral(re) }
 
-/**
- * A regular expression term, that is, a syntactic part of a regular expression.
- */
-class RegExpTerm extends RegExpParent {
-  RegExp re;
-  int start;
-  int end;
+    override RegExpTerm getChild(int i) {
+      i = 0 and result.getRegExp() = re and result.isRootTerm()
+    }
 
-  RegExpTerm() {
-    this = TRegExpAlt(re, start, end)
-    or
-    this = TRegExpBackRef(re, start, end)
-    or
-    this = TRegExpCharacterClass(re, start, end)
-    or
-    this = TRegExpCharacterRange(re, start, end)
-    or
-    this = TRegExpNormalChar(re, start, end)
-    or
-    this = TRegExpGroup(re, start, end)
-    or
-    this = TRegExpQuantifier(re, start, end)
-    or
-    this = TRegExpSequence(re, start, end) and
-    exists(seqChild(re, start, end, 1)) // if a sequence does not have more than one element, it should be treated as that element instead.
-    or
-    this = TRegExpSpecialChar(re, start, end)
-    or
-    this = TRegExpNamedCharacterProperty(re, start, end)
+    /** Holds if dot, `.`, matches all characters, including newlines. */
+    predicate isDotAll() { re.isDotAll() }
+
+    /** Holds if this regex matching is case-insensitive for this regex. */
+    predicate isIgnoreCase() { re.isIgnoreCase() }
+
+    /** Get a string representing all modes for this regex. */
+    string getFlags() { result = re.getFlags() }
+
+    /** Gets the primary QL class for this regex. */
+    override string getAPrimaryQlClass() { result = "RegExpLiteral" }
   }
 
   /**
-   * Gets the outermost term of this regular expression.
+   * A regular expression term, that is, a syntactic part of a regular expression.
    */
-  RegExpTerm getRootTerm() {
-    this.isRootTerm() and result = this
-    or
-    result = this.getParent().(RegExpTerm).getRootTerm()
-  }
+  class RegExpTerm extends RegExpParent {
+    RegExp re;
+    int start;
+    int end;
 
-  /**
-   * Holds if this term is part of a string literal
-   * that is interpreted as a regular expression.
-   */
-  predicate isUsedAsRegExp() { any() }
-
-  /**
-   * Holds if this is the root term of a regular expression.
-   */
-  predicate isRootTerm() { start = 0 and end = re.getText().length() }
-
-  override RegExpTerm getChild(int i) {
-    result = this.(RegExpAlt).getChild(i)
-    or
-    result = this.(RegExpBackRef).getChild(i)
-    or
-    result = this.(RegExpCharacterClass).getChild(i)
-    or
-    result = this.(RegExpCharacterRange).getChild(i)
-    or
-    result = this.(RegExpNormalChar).getChild(i)
-    or
-    result = this.(RegExpGroup).getChild(i)
-    or
-    result = this.(RegExpQuantifier).getChild(i)
-    or
-    result = this.(RegExpSequence).getChild(i)
-    or
-    result = this.(RegExpSpecialChar).getChild(i)
-    or
-    result = this.(RegExpNamedCharacterProperty).getChild(i)
-  }
-
-  /**
-   * Gets the parent term of this regular expression term, or the
-   * regular expression literal if this is the root term.
-   */
-  RegExpParent getParent() { result.getAChild() = this }
-
-  /** Gets the associated `RegExp`. */
-  RegExp getRegExp() { result = re }
-
-  /** Gets the offset at which this term starts. */
-  int getStart() { result = start }
-
-  /** Gets the offset at which this term ends. */
-  int getEnd() { result = end }
-
-  override string toString() { result = re.getText().substring(start, end) }
-
-  /**
-   * Gets the location of the surrounding regex, as locations inside the regex do not exist.
-   * To get location information corresponding to the term inside the regex,
-   * use `hasLocationInfo`.
-   */
-  Location getLocation() { result = re.getLocation() }
-
-  pragma[noinline]
-  private predicate componentHasLocationInfo(
-    int i, string filepath, int startline, int startcolumn, int endline, int endcolumn
-  ) {
-    re.getComponent(i)
-        .getLocation()
-        .hasLocationInfo(filepath, startline, startcolumn, endline, endcolumn)
-  }
-
-  /** Holds if this term is found at the specified location offsets. */
-  predicate hasLocationInfo(
-    string filepath, int startline, int startcolumn, int endline, int endcolumn
-  ) {
-    exists(int re_start, int re_end |
-      this.componentHasLocationInfo(0, filepath, startline, re_start, _, _) and
-      this.componentHasLocationInfo(re.getNumberOfComponents() - 1, filepath, _, _, endline, re_end) and
-      startcolumn = re_start + start and
-      endcolumn = re_start + end - 1
-    )
-  }
-
-  /** Gets the file in which this term is found. */
-  File getFile() { result = this.getLocation().getFile() }
-
-  /** Gets the raw source text of this term. */
-  string getRawValue() { result = this.toString() }
-
-  /** Gets the string literal in which this term is found. */
-  RegExpLiteral getLiteral() { result = TRegExpLiteral(re) }
-
-  /** Gets the regular expression term that is matched (textually) before this one, if any. */
-  RegExpTerm getPredecessor() {
-    exists(RegExpTerm parent | parent = this.getParent() |
-      result = parent.(RegExpSequence).previousElement(this)
+    RegExpTerm() {
+      this = TRegExpAlt(re, start, end)
       or
-      not exists(parent.(RegExpSequence).previousElement(this)) and
-      not parent instanceof RegExpSubPattern and
-      result = parent.getPredecessor()
-    )
-  }
-
-  /** Gets the regular expression term that is matched (textually) after this one, if any. */
-  RegExpTerm getSuccessor() {
-    exists(RegExpTerm parent | parent = this.getParent() |
-      result = parent.(RegExpSequence).nextElement(this)
+      this = TRegExpBackRef(re, start, end)
       or
-      not exists(parent.(RegExpSequence).nextElement(this)) and
-      not parent instanceof RegExpSubPattern and
-      result = parent.getSuccessor()
-    )
+      this = TRegExpCharacterClass(re, start, end)
+      or
+      this = TRegExpCharacterRange(re, start, end)
+      or
+      this = TRegExpNormalChar(re, start, end)
+      or
+      this = TRegExpGroup(re, start, end)
+      or
+      this = TRegExpQuantifier(re, start, end)
+      or
+      this = TRegExpSequence(re, start, end) and
+      exists(seqChild(re, start, end, 1)) // if a sequence does not have more than one element, it should be treated as that element instead.
+      or
+      this = TRegExpSpecialChar(re, start, end)
+      or
+      this = TRegExpNamedCharacterProperty(re, start, end)
+    }
+
+    /**
+     * Gets the outermost term of this regular expression.
+     */
+    RegExpTerm getRootTerm() {
+      this.isRootTerm() and result = this
+      or
+      result = this.getParent().(RegExpTerm).getRootTerm()
+    }
+
+    /**
+     * Holds if this term is part of a string literal
+     * that is interpreted as a regular expression.
+     */
+    predicate isUsedAsRegExp() { any() }
+
+    /**
+     * Holds if this is the root term of a regular expression.
+     */
+    predicate isRootTerm() { start = 0 and end = re.getText().length() }
+
+    override RegExpTerm getChild(int i) {
+      result = this.(RegExpAlt).getChild(i)
+      or
+      result = this.(RegExpBackRef).getChild(i)
+      or
+      result = this.(RegExpCharacterClass).getChild(i)
+      or
+      result = this.(RegExpCharacterRange).getChild(i)
+      or
+      result = this.(RegExpNormalChar).getChild(i)
+      or
+      result = this.(RegExpGroup).getChild(i)
+      or
+      result = this.(RegExpQuantifier).getChild(i)
+      or
+      result = this.(RegExpSequence).getChild(i)
+      or
+      result = this.(RegExpSpecialChar).getChild(i)
+      or
+      result = this.(RegExpNamedCharacterProperty).getChild(i)
+    }
+
+    /**
+     * Gets the parent term of this regular expression term, or the
+     * regular expression literal if this is the root term.
+     */
+    RegExpParent getParent() { result.getAChild() = this }
+
+    /** Gets the associated `RegExp`. */
+    RegExp getRegExp() { result = re }
+
+    /** Gets the offset at which this term starts. */
+    int getStart() { result = start }
+
+    /** Gets the offset at which this term ends. */
+    int getEnd() { result = end }
+
+    override string toString() { result = re.getText().substring(start, end) }
+
+    /**
+     * Gets the location of the surrounding regex, as locations inside the regex do not exist.
+     * To get location information corresponding to the term inside the regex,
+     * use `hasLocationInfo`.
+     */
+    Location getLocation() { result = re.getLocation() }
+
+    pragma[noinline]
+    private predicate componentHasLocationInfo(
+      int i, string filepath, int startline, int startcolumn, int endline, int endcolumn
+    ) {
+      re.getComponent(i)
+          .getLocation()
+          .hasLocationInfo(filepath, startline, startcolumn, endline, endcolumn)
+    }
+
+    /** Holds if this term is found at the specified location offsets. */
+    predicate hasLocationInfo(
+      string filepath, int startline, int startcolumn, int endline, int endcolumn
+    ) {
+      exists(int re_start, int re_end |
+        this.componentHasLocationInfo(0, filepath, startline, re_start, _, _) and
+        this.componentHasLocationInfo(re.getNumberOfComponents() - 1, filepath, _, _, endline,
+          re_end) and
+        startcolumn = re_start + start and
+        endcolumn = re_start + end - 1
+      )
+    }
+
+    /** Gets the file in which this term is found. */
+    File getFile() { result = this.getLocation().getFile() }
+
+    /** Gets the raw source text of this term. */
+    string getRawValue() { result = this.toString() }
+
+    /** Gets the string literal in which this term is found. */
+    RegExpLiteral getLiteral() { result = TRegExpLiteral(re) }
+
+    /** Gets the regular expression term that is matched (textually) before this one, if any. */
+    RegExpTerm getPredecessor() {
+      exists(RegExpTerm parent | parent = this.getParent() |
+        result = parent.(RegExpSequence).previousElement(this)
+        or
+        not exists(parent.(RegExpSequence).previousElement(this)) and
+        not parent instanceof RegExpSubPattern and
+        result = parent.getPredecessor()
+      )
+    }
+
+    /** Gets the regular expression term that is matched (textually) after this one, if any. */
+    RegExpTerm getSuccessor() {
+      exists(RegExpTerm parent | parent = this.getParent() |
+        result = parent.(RegExpSequence).nextElement(this)
+        or
+        not exists(parent.(RegExpSequence).nextElement(this)) and
+        not parent instanceof RegExpSubPattern and
+        result = parent.getSuccessor()
+      )
+    }
+
+    /**
+     * Gets the single string this regular-expression term matches.
+     *
+     * This predicate is only defined for (sequences/groups of) constant regular
+     * expressions.  In particular, terms involving zero-width assertions like `^`
+     * or `\b` are not considered to have a constant value.
+     *
+     * Note that this predicate does not take flags of the enclosing
+     * regular-expression literal into account.
+     */
+    string getConstantValue() { none() }
+
+    /**
+     * Gets a string that is matched by this regular-expression term.
+     */
+    string getAMatchedString() { result = this.getConstantValue() }
+
+    /** Gets the primary QL class for this term. */
+    override string getAPrimaryQlClass() { result = "RegExpTerm" }
+
+    /** Holds if this regular expression term can match the empty string. */
+    predicate isNullable() { none() }
   }
 
   /**
-   * Gets the single string this regular-expression term matches.
+   * A quantified regular expression term.
    *
-   * This predicate is only defined for (sequences/groups of) constant regular
-   * expressions.  In particular, terms involving zero-width assertions like `^`
-   * or `\b` are not considered to have a constant value.
+   * Example:
    *
-   * Note that this predicate does not take flags of the enclosing
-   * regular-expression literal into account.
+   * ```
+   * ((ECMA|Java)[sS]cript)*
+   * ```
    */
-  string getConstantValue() { none() }
+  class RegExpQuantifier extends RegExpTerm, TRegExpQuantifier {
+    int part_end;
+    boolean may_repeat_forever;
 
-  /**
-   * Gets a string that is matched by this regular-expression term.
-   */
-  string getAMatchedString() { result = this.getConstantValue() }
+    RegExpQuantifier() {
+      this = TRegExpQuantifier(re, start, end) and
+      re.qualifiedPart(start, part_end, end, _, may_repeat_forever)
+    }
 
-  /** Gets the primary QL class for this term. */
-  override string getAPrimaryQlClass() { result = "RegExpTerm" }
-
-  /** Holds if this regular expression term can match the empty string. */
-  predicate isNullable() { none() }
-}
-
-/**
- * A quantified regular expression term.
- *
- * Example:
- *
- * ```
- * ((ECMA|Java)[sS]cript)*
- * ```
- */
-class RegExpQuantifier extends RegExpTerm, TRegExpQuantifier {
-  int part_end;
-  boolean may_repeat_forever;
-
-  RegExpQuantifier() {
-    this = TRegExpQuantifier(re, start, end) and
-    re.qualifiedPart(start, part_end, end, _, may_repeat_forever)
-  }
-
-  override RegExpTerm getChild(int i) {
-    i = 0 and
-    result.getRegExp() = re and
-    result.getStart() = start and
-    result.getEnd() = part_end
-  }
-
-  /** Hols if this term may match an unlimited number of times. */
-  predicate mayRepeatForever() { may_repeat_forever = true }
-
-  /** Gets the qualifier for this term. That is e.g "?" for "a?". */
-  string getQualifier() { result = re.getText().substring(part_end, end) }
-
-  override string getAPrimaryQlClass() { result = "RegExpQuantifier" }
-}
-
-/**
- * A regular expression term that permits unlimited repetitions.
- */
-class InfiniteRepetitionQuantifier extends RegExpQuantifier {
-  InfiniteRepetitionQuantifier() { this.mayRepeatForever() }
-
-  override string getAPrimaryQlClass() { result = "InfiniteRepetitionQuantifier" }
-}
-
-/**
- * A star-quantified term.
- *
- * Example:
- *
- * ```
- * \w*
- * ```
- */
-class RegExpStar extends InfiniteRepetitionQuantifier {
-  RegExpStar() { this.getQualifier().charAt(0) = "*" }
-
-  override string getAPrimaryQlClass() { result = "RegExpStar" }
-
-  override predicate isNullable() { any() }
-}
-
-/**
- * A plus-quantified term.
- *
- * Example:
- *
- * ```
- * \w+
- * ```
- */
-class RegExpPlus extends InfiniteRepetitionQuantifier {
-  RegExpPlus() { this.getQualifier().charAt(0) = "+" }
-
-  override string getAPrimaryQlClass() { result = "RegExpPlus" }
-
-  override predicate isNullable() { this.getAChild().isNullable() }
-}
-
-/**
- * An optional term.
- *
- * Example:
- *
- * ```
- * ;?
- * ```
- */
-class RegExpOpt extends RegExpQuantifier {
-  RegExpOpt() { this.getQualifier().charAt(0) = "?" }
-
-  override string getAPrimaryQlClass() { result = "RegExpOpt" }
-
-  override predicate isNullable() { any() }
-}
-
-/**
- * A range-quantified term
- *
- * Examples:
- *
- * ```
- * \w{2,4}
- * \w{2,}
- * \w{2}
- * ```
- */
-class RegExpRange extends RegExpQuantifier {
-  string upper;
-  string lower;
-
-  RegExpRange() { re.multiples(part_end, end, lower, upper) }
-
-  override string getAPrimaryQlClass() { result = "RegExpRange" }
-
-  /** Gets the string defining the upper bound of this range, if any. */
-  string getUpper() { result = upper }
-
-  /** Gets the string defining the lower bound of this range, if any. */
-  string getLower() { result = lower }
-
-  /**
-   * Gets the upper bound of the range, if any.
-   *
-   * If there is no upper bound, any number of repetitions is allowed.
-   * For a term of the form `r{lo}`, both the lower and the upper bound
-   * are `lo`.
-   */
-  int getUpperBound() { result = this.getUpper().toInt() }
-
-  /** Gets the lower bound of the range. */
-  int getLowerBound() { result = this.getLower().toInt() }
-
-  override predicate isNullable() { this.getAChild().isNullable() or this.getLowerBound() = 0 }
-}
-
-/**
- * A sequence term.
- *
- * Example:
- *
- * ```
- * (ECMA|Java)Script
- * ```
- *
- * This is a sequence with the elements `(ECMA|Java)` and `Script`.
- */
-class RegExpSequence extends RegExpTerm, TRegExpSequence {
-  RegExpSequence() {
-    this = TRegExpSequence(re, start, end) and
-    exists(seqChild(re, start, end, 1)) // if a sequence does not have more than one element, it should be treated as that element instead.
-  }
-
-  override RegExpTerm getChild(int i) { result = seqChild(re, start, end, i) }
-
-  /** Gets the element preceding `element` in this sequence. */
-  RegExpTerm previousElement(RegExpTerm element) { element = this.nextElement(result) }
-
-  /** Gets the element following `element` in this sequence. */
-  RegExpTerm nextElement(RegExpTerm element) {
-    exists(int i |
-      element = this.getChild(i) and
-      result = this.getChild(i + 1)
-    )
-  }
-
-  override string getConstantValue() { result = this.getConstantValue(0) }
-
-  /**
-   * Gets the single string matched by the `i`th child and all following
-   * children of this sequence, if any.
-   */
-  private string getConstantValue(int i) {
-    i = this.getNumChild() and
-    result = ""
-    or
-    result = this.getChild(i).getConstantValue() + this.getConstantValue(i + 1)
-  }
-
-  override string getAPrimaryQlClass() { result = "RegExpSequence" }
-
-  override predicate isNullable() {
-    forall(RegExpTerm child | child = this.getAChild() | child.isNullable())
-  }
-}
-
-pragma[nomagic]
-private int seqChildEnd(RegExp re, int start, int end, int i) {
-  result = seqChild(re, start, end, i).getEnd()
-}
-
-// moved out so we can use it in the charpred
-private RegExpTerm seqChild(RegExp re, int start, int end, int i) {
-  re.sequence(start, end) and
-  (
-    i = 0 and
-    result.getRegExp() = re and
-    result.getStart() = start and
-    exists(int itemEnd |
-      re.item(start, itemEnd) and
-      result.getEnd() = itemEnd
-    )
-    or
-    i > 0 and
-    result.getRegExp() = re and
-    exists(int itemStart | itemStart = seqChildEnd(re, start, end, i - 1) |
-      result.getStart() = itemStart and
-      re.item(itemStart, result.getEnd())
-    )
-  )
-}
-
-/**
- * An alternative term, that is, a term of the form `a|b`.
- *
- * Example:
- *
- * ```
- * ECMA|Java
- * ```
- */
-class RegExpAlt extends RegExpTerm, TRegExpAlt {
-  RegExpAlt() { this = TRegExpAlt(re, start, end) }
-
-  override RegExpTerm getChild(int i) {
-    i = 0 and
-    result.getRegExp() = re and
-    result.getStart() = start and
-    exists(int part_end |
-      re.alternationOption(start, end, start, part_end) and
-      result.getEnd() = part_end
-    )
-    or
-    i > 0 and
-    result.getRegExp() = re and
-    exists(int part_start |
-      part_start = this.getChild(i - 1).getEnd() + 1 // allow for the |
-    |
-      result.getStart() = part_start and
-      re.alternationOption(start, end, part_start, result.getEnd())
-    )
-  }
-
-  /** Gets an alternative of this term. */
-  RegExpTerm getAlternative() { result = this.getAChild() }
-
-  override string getAMatchedString() { result = this.getAlternative().getAMatchedString() }
-
-  override string getAPrimaryQlClass() { result = "RegExpAlt" }
-
-  override predicate isNullable() { this.getAChild().isNullable() }
-}
-
-class RegExpCharEscape = RegExpEscape;
-
-/**
- * An escaped regular expression term, that is, a regular expression
- * term starting with a backslash, which is not a backreference.
- *
- * Example:
- *
- * ```
- * \.
- * \w
- * ```
- */
-class RegExpEscape extends RegExpNormalChar {
-  RegExpEscape() { re.escapedCharacter(start, end) }
-
-  /**
-   * Gets the name of the escaped; for example, `w` for `\w`.
-   * TODO: Handle named escapes.
-   */
-  override string getValue() {
-    not this.isUnicode() and
-    this.isIdentityEscape() and
-    result = this.getUnescaped()
-    or
-    this.getUnescaped() = "n" and result = "\n"
-    or
-    this.getUnescaped() = "r" and result = "\r"
-    or
-    this.getUnescaped() = "t" and result = "\t"
-    or
-    this.getUnescaped() = "f" and result = 12.toUnicode()
-    or
-    this.getUnescaped() = "v" and result = 11.toUnicode()
-    or
-    this.isUnicode() and
-    result = this.getUnicode()
-  }
-
-  /** Holds if this terms name is given by the part following the escape character. */
-  predicate isIdentityEscape() {
-    not this.getUnescaped() in ["n", "r", "t", "f", "v"] and not this.isUnicode()
-  }
-
-  override string getAPrimaryQlClass() { result = "RegExpEscape" }
-
-  /** Gets the part of the term following the escape character. That is e.g. "w" if the term is "\w". */
-  string getUnescaped() { result = this.getText().suffix(1) }
-
-  /**
-   * Gets the text for this escape. That is e.g. "\w".
-   */
-  private string getText() { result = re.getText().substring(start, end) }
-
-  /**
-   * Holds if this is a unicode escape.
-   */
-  private predicate isUnicode() { this.getText().prefix(2) = ["\\u", "\\U"] }
-
-  /**
-   * Gets the unicode char for this escape.
-   * E.g. for `\u0061` this returns "a".
-   */
-  private string getUnicode() {
-    this.isUnicode() and
-    result = parseHexInt(this.getText().suffix(2)).toUnicode()
-  }
-}
-
-/**
- * A word boundary, that is, a regular expression term of the form `\b`.
- */
-class RegExpWordBoundary extends RegExpSpecialChar {
-  RegExpWordBoundary() { this.getChar() = "\\b" }
-
-  override predicate isNullable() { none() }
-}
-
-/**
- * A non-word boundary, that is, a regular expression term of the form `\B`.
- */
-class RegExpNonWordBoundary extends RegExpSpecialChar {
-  RegExpNonWordBoundary() { this.getChar() = "\\B" }
-
-  override string getAPrimaryQlClass() { result = "RegExpNonWordBoundary" }
-}
-
-/**
- * A character class escape in a regular expression.
- * That is, an escaped character that denotes multiple characters.
- *
- * Examples:
- *
- * ```
- * \w
- * \S
- * ```
- */
-class RegExpCharacterClassEscape extends RegExpEscape {
-  RegExpCharacterClassEscape() { this.getValue() in ["d", "D", "s", "S", "w", "W", "h", "H"] }
-
-  override RegExpTerm getChild(int i) { none() }
-
-  override string getAPrimaryQlClass() { result = "RegExpCharacterClassEscape" }
-
-  override predicate isNullable() { none() }
-}
-
-/**
- * A character class in a regular expression.
- *
- * Examples:
- *
- * ```rb
- * /[a-fA-F0-9]/
- * /[^abc]/
- * ```
- */
-class RegExpCharacterClass extends RegExpTerm, TRegExpCharacterClass {
-  RegExpCharacterClass() { this = TRegExpCharacterClass(re, start, end) }
-
-  /** Holds if this character class is inverted, matching the opposite of its content. */
-  predicate isInverted() { re.getChar(start + 1) = "^" }
-
-  /** Holds if this character class can match anything. */
-  predicate isUniversalClass() {
-    // [^]
-    this.isInverted() and not exists(this.getAChild())
-    or
-    // [\w\W] and similar
-    not this.isInverted() and
-    exists(string cce1, string cce2 |
-      cce1 = this.getAChild().(RegExpCharacterClassEscape).getValue() and
-      cce2 = this.getAChild().(RegExpCharacterClassEscape).getValue()
-    |
-      cce1 != cce2 and cce1.toLowerCase() = cce2.toLowerCase()
-    )
-  }
-
-  override RegExpTerm getChild(int i) {
-    i = 0 and
-    result.getRegExp() = re and
-    exists(int itemStart, int itemEnd |
-      result.getStart() = itemStart and
-      re.charSetStart(start, itemStart) and
-      re.charSetChild(start, itemStart, itemEnd) and
-      result.getEnd() = itemEnd
-    )
-    or
-    i > 0 and
-    result.getRegExp() = re and
-    exists(int itemStart | itemStart = this.getChild(i - 1).getEnd() |
-      result.getStart() = itemStart and
-      re.charSetChild(start, itemStart, result.getEnd())
-    )
-  }
-
-  override string getAMatchedString() {
-    not this.isInverted() and result = this.getAChild().getAMatchedString()
-  }
-
-  override string getAPrimaryQlClass() { result = "RegExpCharacterClass" }
-
-  override predicate isNullable() { none() }
-}
-
-/**
- * A character range in a character class in a regular expression.
- *
- * Example:
- *
- * ```
- * a-z
- * ```
- */
-class RegExpCharacterRange extends RegExpTerm, TRegExpCharacterRange {
-  int lower_end;
-  int upper_start;
-
-  RegExpCharacterRange() {
-    this = TRegExpCharacterRange(re, start, end) and
-    re.charRange(_, start, lower_end, upper_start, end)
-  }
-
-  /** Holds if this range goes from `lo` to `hi`, in effect is `lo-hi`. */
-  predicate isRange(string lo, string hi) {
-    lo = re.getText().substring(start, lower_end) and
-    hi = re.getText().substring(upper_start, end)
-  }
-
-  override RegExpTerm getChild(int i) {
-    i = 0 and
-    result.getRegExp() = re and
-    result.getStart() = start and
-    result.getEnd() = lower_end
-    or
-    i = 1 and
-    result.getRegExp() = re and
-    result.getStart() = upper_start and
-    result.getEnd() = end
-  }
-
-  override string getAPrimaryQlClass() { result = "RegExpCharacterRange" }
-
-  override predicate isNullable() { none() }
-}
-
-/**
- * A normal character in a regular expression, that is, a character
- * without special meaning. This includes escaped characters.
- *
- * Examples:
- * ```
- * t
- * \t
- * ```
- */
-class RegExpNormalChar extends RegExpTerm, TRegExpNormalChar {
-  RegExpNormalChar() { this = TRegExpNormalChar(re, start, end) }
-
-  /**
-   * Holds if this constant represents a valid Unicode character (as opposed
-   * to a surrogate code point that does not correspond to a character by itself.)
-   */
-  predicate isCharacter() { any() }
-
-  /** Gets the string representation of the char matched by this term. */
-  string getValue() { result = re.getText().substring(start, end) }
-
-  override RegExpTerm getChild(int i) { none() }
-
-  override string getAPrimaryQlClass() { result = "RegExpNormalChar" }
-}
-
-/**
- * A constant regular expression term, that is, a regular expression
- * term matching a single string. Currently, this will always be a single character.
- *
- * Example:
- *
- * ```
- * a
- * ```
- */
-class RegExpConstant extends RegExpTerm {
-  string value;
-
-  RegExpConstant() {
-    this = TRegExpNormalChar(re, start, end) and
-    not this instanceof RegExpCharacterClassEscape and
-    // exclude chars in qualifiers
-    // TODO: push this into regex library
-    not exists(int qstart, int qend | re.qualifiedPart(_, qstart, qend, _, _) |
-      qstart <= start and end <= qend
-    ) and
-    value = this.(RegExpNormalChar).getValue()
-    or
-    this = TRegExpSpecialChar(re, start, end) and
-    re.inCharSet(start) and
-    value = this.(RegExpSpecialChar).getChar()
-  }
-
-  /**
-   * Holds if this constant represents a valid Unicode character (as opposed
-   * to a surrogate code point that does not correspond to a character by itself.)
-   */
-  predicate isCharacter() { any() }
-
-  /** Gets the string matched by this constant term. */
-  string getValue() { result = value }
-
-  override RegExpTerm getChild(int i) { none() }
-
-  override string getConstantValue() { result = this.getValue() }
-
-  override string getAPrimaryQlClass() { result = "RegExpConstant" }
-
-  override predicate isNullable() { none() }
-}
-
-/**
- * A grouped regular expression.
- *
- * Examples:
- *
- * ```
- * (ECMA|Java)
- * (?:ECMA|Java)
- * (?<quote>['"])
- * ```
- */
-class RegExpGroup extends RegExpTerm, TRegExpGroup {
-  RegExpGroup() { this = TRegExpGroup(re, start, end) }
-
-  /**
-   * Gets the index of this capture group within the enclosing regular
-   * expression literal.
-   *
-   * For example, in the regular expression `/((a?).)(?:b)/`, the
-   * group `((a?).)` has index 1, the group `(a?)` nested inside it
-   * has index 2, and the group `(?:b)` has no index, since it is
-   * not a capture group.
-   */
-  int getNumber() { result = re.getGroupNumber(start, end) }
-
-  /** Holds if this is a capture group. */
-  predicate isCapture() { exists(this.getNumber()) }
-
-  /** Holds if this is a named capture group. */
-  predicate isNamed() { exists(this.getName()) }
-
-  /** Gets the name of this capture group, if any. */
-  string getName() { result = re.getGroupName(start, end) }
-
-  override RegExpTerm getChild(int i) {
-    result.getRegExp() = re and
-    i = 0 and
-    re.groupContents(start, end, result.getStart(), result.getEnd())
-  }
-
-  override string getConstantValue() { result = this.getAChild().getConstantValue() }
-
-  override string getAMatchedString() { result = this.getAChild().getAMatchedString() }
-
-  override string getAPrimaryQlClass() { result = "RegExpGroup" }
-
-  override predicate isNullable() { this.getAChild().isNullable() }
-}
-
-/**
- * A special character in a regular expression.
- *
- * Examples:
- * ```
- * ^
- * $
- * .
- * ```
- */
-class RegExpSpecialChar extends RegExpTerm, TRegExpSpecialChar {
-  string char;
-
-  RegExpSpecialChar() {
-    this = TRegExpSpecialChar(re, start, end) and
-    re.specialCharacter(start, end, char)
-  }
-
-  /**
-   * Holds if this constant represents a valid Unicode character (as opposed
-   * to a surrogate code point that does not correspond to a character by itself.)
-   */
-  predicate isCharacter() { any() }
-
-  /** Gets the char for this term. */
-  string getChar() { result = char }
-
-  override RegExpTerm getChild(int i) { none() }
-
-  override string getAPrimaryQlClass() { result = "RegExpSpecialChar" }
-}
-
-/**
- * A dot regular expression.
- *
- * Example:
- *
- * ```
- * .
- * ```
- */
-class RegExpDot extends RegExpSpecialChar {
-  RegExpDot() { this.getChar() = "." }
-
-  override string getAPrimaryQlClass() { result = "RegExpDot" }
-
-  override predicate isNullable() { none() }
-}
-
-/**
- * A term that matches a specific position between characters in the string.
- *
- * Example:
- *
- * ```
- * \A
- * ```
- */
-class RegExpAnchor extends RegExpSpecialChar {
-  RegExpAnchor() { this.getChar() = ["^", "$", "\\A", "\\Z", "\\z"] }
-
-  override string getAPrimaryQlClass() { result = "RegExpAnchor" }
-}
-
-/**
- * A dollar assertion `$` or `\Z` matching the end of a line.
- *
- * Example:
- *
- * ```
- * $
- * ```
- */
-class RegExpDollar extends RegExpAnchor {
-  RegExpDollar() { this.getChar() = ["$", "\\Z", "\\z"] }
-
-  override string getAPrimaryQlClass() { result = "RegExpDollar" }
-
-  override predicate isNullable() { any() }
-}
-
-/**
- * A caret assertion `^` or `\A` matching the beginning of a line.
- *
- * Example:
- *
- * ```
- * ^
- * ```
- */
-class RegExpCaret extends RegExpAnchor {
-  RegExpCaret() { this.getChar() = ["^", "\\A"] }
-
-  override string getAPrimaryQlClass() { result = "RegExpCaret" }
-
-  override predicate isNullable() { any() }
-}
-
-/**
- * A zero-width match, that is, either an empty group or an assertion.
- *
- * Examples:
- * ```
- * ()
- * (?=\w)
- * ```
- */
-class RegExpZeroWidthMatch extends RegExpGroup {
-  RegExpZeroWidthMatch() { re.zeroWidthMatch(start, end) }
-
-  override RegExpTerm getChild(int i) { none() }
-
-  override string getAPrimaryQlClass() { result = "RegExpZeroWidthMatch" }
-
-  override predicate isNullable() { any() }
-}
-
-/**
- * A zero-width lookahead or lookbehind assertion.
- *
- * Examples:
- *
- * ```
- * (?=\w)
- * (?!\n)
- * (?<=\.)
- * (?<!\\)
- * ```
- */
-class RegExpSubPattern extends RegExpZeroWidthMatch {
-  RegExpSubPattern() { not re.emptyGroup(start, end) }
-
-  /** Gets the lookahead term. */
-  RegExpTerm getOperand() {
-    exists(int in_start, int in_end | re.groupContents(start, end, in_start, in_end) |
+    override RegExpTerm getChild(int i) {
+      i = 0 and
       result.getRegExp() = re and
-      result.getStart() = in_start and
-      result.getEnd() = in_end
-    )
+      result.getStart() = start and
+      result.getEnd() = part_end
+    }
+
+    /** Hols if this term may match an unlimited number of times. */
+    predicate mayRepeatForever() { may_repeat_forever = true }
+
+    /** Gets the qualifier for this term. That is e.g "?" for "a?". */
+    string getQualifier() { result = re.getText().substring(part_end, end) }
+
+    override string getAPrimaryQlClass() { result = "RegExpQuantifier" }
   }
 
-  override predicate isNullable() { any() }
-}
+  /**
+   * A regular expression term that permits unlimited repetitions.
+   */
+  class InfiniteRepetitionQuantifier extends RegExpQuantifier {
+    InfiniteRepetitionQuantifier() { this.mayRepeatForever() }
 
-/**
- * A zero-width lookahead assertion.
- *
- * Examples:
- *
- * ```
- * (?=\w)
- * (?!\n)
- * ```
- */
-abstract class RegExpLookahead extends RegExpSubPattern { }
-
-/**
- * A positive-lookahead assertion.
- *
- * Examples:
- *
- * ```
- * (?=\w)
- * ```
- */
-class RegExpPositiveLookahead extends RegExpLookahead {
-  RegExpPositiveLookahead() { re.positiveLookaheadAssertionGroup(start, end) }
-
-  override string getAPrimaryQlClass() { result = "RegExpPositiveLookahead" }
-
-  override predicate isNullable() { any() }
-}
-
-/**
- * A negative-lookahead assertion.
- *
- * Examples:
- *
- * ```
- * (?!\n)
- * ```
- */
-class RegExpNegativeLookahead extends RegExpLookahead {
-  RegExpNegativeLookahead() { re.negativeLookaheadAssertionGroup(start, end) }
-
-  override string getAPrimaryQlClass() { result = "RegExpNegativeLookahead" }
-}
-
-/**
- * A zero-width lookbehind assertion.
- *
- * Examples:
- *
- * ```
- * (?<=\.)
- * (?<!\\)
- * ```
- */
-abstract class RegExpLookbehind extends RegExpSubPattern { }
-
-/**
- * A positive-lookbehind assertion.
- *
- * Examples:
- *
- * ```
- * (?<=\.)
- * ```
- */
-class RegExpPositiveLookbehind extends RegExpLookbehind {
-  RegExpPositiveLookbehind() { re.positiveLookbehindAssertionGroup(start, end) }
-
-  override string getAPrimaryQlClass() { result = "RegExpPositiveLookbehind" }
-}
-
-/**
- * A negative-lookbehind assertion.
- *
- * Examples:
- *
- * ```
- * (?<!\\)
- * ```
- */
-class RegExpNegativeLookbehind extends RegExpLookbehind {
-  RegExpNegativeLookbehind() { re.negativeLookbehindAssertionGroup(start, end) }
-
-  override string getAPrimaryQlClass() { result = "RegExpNegativeLookbehind" }
-}
-
-/**
- * A back reference, that is, a term of the form `\i` or `\k<name>`
- * in a regular expression.
- *
- * Examples:
- *
- * ```
- * \1
- * (?P=quote)
- * ```
- */
-class RegExpBackRef extends RegExpTerm, TRegExpBackRef {
-  RegExpBackRef() { this = TRegExpBackRef(re, start, end) }
+    override string getAPrimaryQlClass() { result = "InfiniteRepetitionQuantifier" }
+  }
 
   /**
-   * Gets the number of the capture group this back reference refers to, if any.
+   * A star-quantified term.
+   *
+   * Example:
+   *
+   * ```
+   * \w*
+   * ```
    */
-  int getNumber() { result = re.getBackRefNumber(start, end) }
+  class RegExpStar extends InfiniteRepetitionQuantifier {
+    RegExpStar() { this.getQualifier().charAt(0) = "*" }
+
+    override string getAPrimaryQlClass() { result = "RegExpStar" }
+
+    override predicate isNullable() { any() }
+  }
 
   /**
-   * Gets the name of the capture group this back reference refers to, if any.
+   * A plus-quantified term.
+   *
+   * Example:
+   *
+   * ```
+   * \w+
+   * ```
    */
-  string getName() { result = re.getBackRefName(start, end) }
+  class RegExpPlus extends InfiniteRepetitionQuantifier {
+    RegExpPlus() { this.getQualifier().charAt(0) = "+" }
 
-  /** Gets the capture group this back reference refers to. */
-  RegExpGroup getGroup() {
-    result.getLiteral() = this.getLiteral() and
+    override string getAPrimaryQlClass() { result = "RegExpPlus" }
+
+    override predicate isNullable() { this.getAChild().isNullable() }
+  }
+
+  /**
+   * An optional term.
+   *
+   * Example:
+   *
+   * ```
+   * ;?
+   * ```
+   */
+  class RegExpOpt extends RegExpQuantifier {
+    RegExpOpt() { this.getQualifier().charAt(0) = "?" }
+
+    override string getAPrimaryQlClass() { result = "RegExpOpt" }
+
+    override predicate isNullable() { any() }
+  }
+
+  /**
+   * A range-quantified term
+   *
+   * Examples:
+   *
+   * ```
+   * \w{2,4}
+   * \w{2,}
+   * \w{2}
+   * ```
+   */
+  class RegExpRange extends RegExpQuantifier {
+    string upper;
+    string lower;
+
+    RegExpRange() { re.multiples(part_end, end, lower, upper) }
+
+    override string getAPrimaryQlClass() { result = "RegExpRange" }
+
+    /** Gets the string defining the upper bound of this range, if any. */
+    string getUpper() { result = upper }
+
+    /** Gets the string defining the lower bound of this range, if any. */
+    string getLower() { result = lower }
+
+    /**
+     * Gets the upper bound of the range, if any.
+     *
+     * If there is no upper bound, any number of repetitions is allowed.
+     * For a term of the form `r{lo}`, both the lower and the upper bound
+     * are `lo`.
+     */
+    int getUpperBound() { result = this.getUpper().toInt() }
+
+    /** Gets the lower bound of the range. */
+    int getLowerBound() { result = this.getLower().toInt() }
+
+    override predicate isNullable() { this.getAChild().isNullable() or this.getLowerBound() = 0 }
+  }
+
+  /**
+   * A sequence term.
+   *
+   * Example:
+   *
+   * ```
+   * (ECMA|Java)Script
+   * ```
+   *
+   * This is a sequence with the elements `(ECMA|Java)` and `Script`.
+   */
+  class RegExpSequence extends RegExpTerm, TRegExpSequence {
+    RegExpSequence() {
+      this = TRegExpSequence(re, start, end) and
+      exists(seqChild(re, start, end, 1)) // if a sequence does not have more than one element, it should be treated as that element instead.
+    }
+
+    override RegExpTerm getChild(int i) { result = seqChild(re, start, end, i) }
+
+    /** Gets the element preceding `element` in this sequence. */
+    RegExpTerm previousElement(RegExpTerm element) { element = this.nextElement(result) }
+
+    /** Gets the element following `element` in this sequence. */
+    RegExpTerm nextElement(RegExpTerm element) {
+      exists(int i |
+        element = this.getChild(i) and
+        result = this.getChild(i + 1)
+      )
+    }
+
+    override string getConstantValue() { result = this.getConstantValue(0) }
+
+    /**
+     * Gets the single string matched by the `i`th child and all following
+     * children of this sequence, if any.
+     */
+    private string getConstantValue(int i) {
+      i = this.getNumChild() and
+      result = ""
+      or
+      result = this.getChild(i).getConstantValue() + this.getConstantValue(i + 1)
+    }
+
+    override string getAPrimaryQlClass() { result = "RegExpSequence" }
+
+    override predicate isNullable() {
+      forall(RegExpTerm child | child = this.getAChild() | child.isNullable())
+    }
+  }
+
+  pragma[nomagic]
+  private int seqChildEnd(RegExp re, int start, int end, int i) {
+    result = seqChild(re, start, end, i).getEnd()
+  }
+
+  // moved out so we can use it in the charpred
+  private RegExpTerm seqChild(RegExp re, int start, int end, int i) {
+    re.sequence(start, end) and
     (
-      result.getNumber() = this.getNumber() or
-      result.getName() = this.getName()
+      i = 0 and
+      result.getRegExp() = re and
+      result.getStart() = start and
+      exists(int itemEnd |
+        re.item(start, itemEnd) and
+        result.getEnd() = itemEnd
+      )
+      or
+      i > 0 and
+      result.getRegExp() = re and
+      exists(int itemStart | itemStart = seqChildEnd(re, start, end, i - 1) |
+        result.getStart() = itemStart and
+        re.item(itemStart, result.getEnd())
+      )
     )
   }
 
-  override RegExpTerm getChild(int i) { none() }
+  /**
+   * An alternative term, that is, a term of the form `a|b`.
+   *
+   * Example:
+   *
+   * ```
+   * ECMA|Java
+   * ```
+   */
+  class RegExpAlt extends RegExpTerm, TRegExpAlt {
+    RegExpAlt() { this = TRegExpAlt(re, start, end) }
 
-  override string getAPrimaryQlClass() { result = "RegExpBackRef" }
+    override RegExpTerm getChild(int i) {
+      i = 0 and
+      result.getRegExp() = re and
+      result.getStart() = start and
+      exists(int part_end |
+        re.alternationOption(start, end, start, part_end) and
+        result.getEnd() = part_end
+      )
+      or
+      i > 0 and
+      result.getRegExp() = re and
+      exists(int part_start |
+        part_start = this.getChild(i - 1).getEnd() + 1 // allow for the |
+      |
+        result.getStart() = part_start and
+        re.alternationOption(start, end, part_start, result.getEnd())
+      )
+    }
 
-  override predicate isNullable() { this.getGroup().isNullable() }
-}
+    /** Gets an alternative of this term. */
+    RegExpTerm getAlternative() { result = this.getAChild() }
 
-/**
- * A named character property. For example, the POSIX bracket expression
- * `[[:digit:]]`.
- */
-class RegExpNamedCharacterProperty extends RegExpTerm, TRegExpNamedCharacterProperty {
-  RegExpNamedCharacterProperty() { this = TRegExpNamedCharacterProperty(re, start, end) }
+    override string getAMatchedString() { result = this.getAlternative().getAMatchedString() }
 
-  override RegExpTerm getChild(int i) { none() }
+    override string getAPrimaryQlClass() { result = "RegExpAlt" }
 
-  override string getAPrimaryQlClass() { result = "RegExpNamedCharacterProperty" }
+    override predicate isNullable() { this.getAChild().isNullable() }
+  }
+
+  class RegExpCharEscape = RegExpEscape;
 
   /**
-   * Gets the property name. For example, in `\p{Space}`, the result is
-   * `"Space"`.
+   * An escaped regular expression term, that is, a regular expression
+   * term starting with a backslash, which is not a backreference.
+   *
+   * Example:
+   *
+   * ```
+   * \.
+   * \w
+   * ```
    */
-  string getName() { result = re.getCharacterPropertyName(start, end) }
+  class RegExpEscape extends RegExpNormalChar {
+    RegExpEscape() { re.escapedCharacter(start, end) }
+
+    /**
+     * Gets the name of the escaped; for example, `w` for `\w`.
+     * TODO: Handle named escapes.
+     */
+    override string getValue() {
+      not this.isUnicode() and
+      this.isIdentityEscape() and
+      result = this.getUnescaped()
+      or
+      this.getUnescaped() = "n" and result = "\n"
+      or
+      this.getUnescaped() = "r" and result = "\r"
+      or
+      this.getUnescaped() = "t" and result = "\t"
+      or
+      this.getUnescaped() = "f" and result = 12.toUnicode()
+      or
+      this.getUnescaped() = "v" and result = 11.toUnicode()
+      or
+      this.isUnicode() and
+      result = this.getUnicode()
+    }
+
+    /** Holds if this terms name is given by the part following the escape character. */
+    predicate isIdentityEscape() {
+      not this.getUnescaped() in ["n", "r", "t", "f", "v"] and not this.isUnicode()
+    }
+
+    override string getAPrimaryQlClass() { result = "RegExpEscape" }
+
+    /** Gets the part of the term following the escape character. That is e.g. "w" if the term is "\w". */
+    string getUnescaped() { result = this.getText().suffix(1) }
+
+    /**
+     * Gets the text for this escape. That is e.g. "\w".
+     */
+    private string getText() { result = re.getText().substring(start, end) }
+
+    /**
+     * Holds if this is a unicode escape.
+     */
+    private predicate isUnicode() { this.getText().prefix(2) = ["\\u", "\\U"] }
+
+    /**
+     * Gets the unicode char for this escape.
+     * E.g. for `\u0061` this returns "a".
+     */
+    private string getUnicode() {
+      this.isUnicode() and
+      result = parseHexInt(this.getText().suffix(2)).toUnicode()
+    }
+  }
 
   /**
-   * Holds if the property is inverted. For example, it holds for `\p{^Digit}`,
-   * which matches non-digits.
+   * A word boundary, that is, a regular expression term of the form `\b`.
    */
-  predicate isInverted() { re.namedCharacterPropertyIsInverted(start, end) }
-}
+  class RegExpWordBoundary extends RegExpSpecialChar {
+    RegExpWordBoundary() { this.getChar() = "\\b" }
 
-/** Gets the parse tree resulting from parsing `re`, if such has been constructed. */
-RegExpTerm getParsedRegExp(Ast::RegExpLiteral re) {
-  result.getRegExp() = re and result.isRootTerm()
+    override predicate isNullable() { none() }
+  }
+
+  /**
+   * A non-word boundary, that is, a regular expression term of the form `\B`.
+   */
+  class RegExpNonWordBoundary extends RegExpSpecialChar {
+    RegExpNonWordBoundary() { this.getChar() = "\\B" }
+
+    override string getAPrimaryQlClass() { result = "RegExpNonWordBoundary" }
+  }
+
+  /**
+   * A character class escape in a regular expression.
+   * That is, an escaped character that denotes multiple characters.
+   *
+   * Examples:
+   *
+   * ```
+   * \w
+   * \S
+   * ```
+   */
+  class RegExpCharacterClassEscape extends RegExpEscape {
+    RegExpCharacterClassEscape() { this.getValue() in ["d", "D", "s", "S", "w", "W", "h", "H"] }
+
+    override RegExpTerm getChild(int i) { none() }
+
+    override string getAPrimaryQlClass() { result = "RegExpCharacterClassEscape" }
+
+    override predicate isNullable() { none() }
+  }
+
+  /**
+   * A character class in a regular expression.
+   *
+   * Examples:
+   *
+   * ```rb
+   * /[a-fA-F0-9]/
+   * /[^abc]/
+   * ```
+   */
+  class RegExpCharacterClass extends RegExpTerm, TRegExpCharacterClass {
+    RegExpCharacterClass() { this = TRegExpCharacterClass(re, start, end) }
+
+    /** Holds if this character class is inverted, matching the opposite of its content. */
+    predicate isInverted() { re.getChar(start + 1) = "^" }
+
+    /** Holds if this character class can match anything. */
+    predicate isUniversalClass() {
+      // [^]
+      this.isInverted() and not exists(this.getAChild())
+      or
+      // [\w\W] and similar
+      not this.isInverted() and
+      exists(string cce1, string cce2 |
+        cce1 = this.getAChild().(RegExpCharacterClassEscape).getValue() and
+        cce2 = this.getAChild().(RegExpCharacterClassEscape).getValue()
+      |
+        cce1 != cce2 and cce1.toLowerCase() = cce2.toLowerCase()
+      )
+    }
+
+    override RegExpTerm getChild(int i) {
+      i = 0 and
+      result.getRegExp() = re and
+      exists(int itemStart, int itemEnd |
+        result.getStart() = itemStart and
+        re.charSetStart(start, itemStart) and
+        re.charSetChild(start, itemStart, itemEnd) and
+        result.getEnd() = itemEnd
+      )
+      or
+      i > 0 and
+      result.getRegExp() = re and
+      exists(int itemStart | itemStart = this.getChild(i - 1).getEnd() |
+        result.getStart() = itemStart and
+        re.charSetChild(start, itemStart, result.getEnd())
+      )
+    }
+
+    override string getAMatchedString() {
+      not this.isInverted() and result = this.getAChild().getAMatchedString()
+    }
+
+    override string getAPrimaryQlClass() { result = "RegExpCharacterClass" }
+
+    override predicate isNullable() { none() }
+  }
+
+  /**
+   * A character range in a character class in a regular expression.
+   *
+   * Example:
+   *
+   * ```
+   * a-z
+   * ```
+   */
+  class RegExpCharacterRange extends RegExpTerm, TRegExpCharacterRange {
+    int lower_end;
+    int upper_start;
+
+    RegExpCharacterRange() {
+      this = TRegExpCharacterRange(re, start, end) and
+      re.charRange(_, start, lower_end, upper_start, end)
+    }
+
+    /** Holds if this range goes from `lo` to `hi`, in effect is `lo-hi`. */
+    predicate isRange(string lo, string hi) {
+      lo = re.getText().substring(start, lower_end) and
+      hi = re.getText().substring(upper_start, end)
+    }
+
+    override RegExpTerm getChild(int i) {
+      i = 0 and
+      result.getRegExp() = re and
+      result.getStart() = start and
+      result.getEnd() = lower_end
+      or
+      i = 1 and
+      result.getRegExp() = re and
+      result.getStart() = upper_start and
+      result.getEnd() = end
+    }
+
+    override string getAPrimaryQlClass() { result = "RegExpCharacterRange" }
+
+    override predicate isNullable() { none() }
+  }
+
+  /**
+   * A normal character in a regular expression, that is, a character
+   * without special meaning. This includes escaped characters.
+   *
+   * Examples:
+   * ```
+   * t
+   * \t
+   * ```
+   */
+  class RegExpNormalChar extends RegExpTerm, TRegExpNormalChar {
+    RegExpNormalChar() { this = TRegExpNormalChar(re, start, end) }
+
+    /**
+     * Holds if this constant represents a valid Unicode character (as opposed
+     * to a surrogate code point that does not correspond to a character by itself.)
+     */
+    predicate isCharacter() { any() }
+
+    /** Gets the string representation of the char matched by this term. */
+    string getValue() { result = re.getText().substring(start, end) }
+
+    override RegExpTerm getChild(int i) { none() }
+
+    override string getAPrimaryQlClass() { result = "RegExpNormalChar" }
+  }
+
+  /**
+   * A constant regular expression term, that is, a regular expression
+   * term matching a single string. Currently, this will always be a single character.
+   *
+   * Example:
+   *
+   * ```
+   * a
+   * ```
+   */
+  class RegExpConstant extends RegExpTerm {
+    string value;
+
+    RegExpConstant() {
+      this = TRegExpNormalChar(re, start, end) and
+      not this instanceof RegExpCharacterClassEscape and
+      // exclude chars in qualifiers
+      // TODO: push this into regex library
+      not exists(int qstart, int qend | re.qualifiedPart(_, qstart, qend, _, _) |
+        qstart <= start and end <= qend
+      ) and
+      value = this.(RegExpNormalChar).getValue()
+      or
+      this = TRegExpSpecialChar(re, start, end) and
+      re.inCharSet(start) and
+      value = this.(RegExpSpecialChar).getChar()
+    }
+
+    /**
+     * Holds if this constant represents a valid Unicode character (as opposed
+     * to a surrogate code point that does not correspond to a character by itself.)
+     */
+    predicate isCharacter() { any() }
+
+    /** Gets the string matched by this constant term. */
+    string getValue() { result = value }
+
+    override RegExpTerm getChild(int i) { none() }
+
+    override string getConstantValue() { result = this.getValue() }
+
+    override string getAPrimaryQlClass() { result = "RegExpConstant" }
+
+    override predicate isNullable() { none() }
+  }
+
+  /**
+   * A grouped regular expression.
+   *
+   * Examples:
+   *
+   * ```
+   * (ECMA|Java)
+   * (?:ECMA|Java)
+   * (?<quote>['"])
+   * ```
+   */
+  class RegExpGroup extends RegExpTerm, TRegExpGroup {
+    RegExpGroup() { this = TRegExpGroup(re, start, end) }
+
+    /**
+     * Gets the index of this capture group within the enclosing regular
+     * expression literal.
+     *
+     * For example, in the regular expression `/((a?).)(?:b)/`, the
+     * group `((a?).)` has index 1, the group `(a?)` nested inside it
+     * has index 2, and the group `(?:b)` has no index, since it is
+     * not a capture group.
+     */
+    int getNumber() { result = re.getGroupNumber(start, end) }
+
+    /** Holds if this is a capture group. */
+    predicate isCapture() { exists(this.getNumber()) }
+
+    /** Holds if this is a named capture group. */
+    predicate isNamed() { exists(this.getName()) }
+
+    /** Gets the name of this capture group, if any. */
+    string getName() { result = re.getGroupName(start, end) }
+
+    override RegExpTerm getChild(int i) {
+      result.getRegExp() = re and
+      i = 0 and
+      re.groupContents(start, end, result.getStart(), result.getEnd())
+    }
+
+    override string getConstantValue() { result = this.getAChild().getConstantValue() }
+
+    override string getAMatchedString() { result = this.getAChild().getAMatchedString() }
+
+    override string getAPrimaryQlClass() { result = "RegExpGroup" }
+
+    override predicate isNullable() { this.getAChild().isNullable() }
+  }
+
+  /**
+   * A special character in a regular expression.
+   *
+   * Examples:
+   * ```
+   * ^
+   * $
+   * .
+   * ```
+   */
+  class RegExpSpecialChar extends RegExpTerm, TRegExpSpecialChar {
+    string char;
+
+    RegExpSpecialChar() {
+      this = TRegExpSpecialChar(re, start, end) and
+      re.specialCharacter(start, end, char)
+    }
+
+    /**
+     * Holds if this constant represents a valid Unicode character (as opposed
+     * to a surrogate code point that does not correspond to a character by itself.)
+     */
+    predicate isCharacter() { any() }
+
+    /** Gets the char for this term. */
+    string getChar() { result = char }
+
+    override RegExpTerm getChild(int i) { none() }
+
+    override string getAPrimaryQlClass() { result = "RegExpSpecialChar" }
+  }
+
+  /**
+   * A dot regular expression.
+   *
+   * Example:
+   *
+   * ```
+   * .
+   * ```
+   */
+  class RegExpDot extends RegExpSpecialChar {
+    RegExpDot() { this.getChar() = "." }
+
+    override string getAPrimaryQlClass() { result = "RegExpDot" }
+
+    override predicate isNullable() { none() }
+  }
+
+  /**
+   * A term that matches a specific position between characters in the string.
+   *
+   * Example:
+   *
+   * ```
+   * \A
+   * ```
+   */
+  class RegExpAnchor extends RegExpSpecialChar {
+    RegExpAnchor() { this.getChar() = ["^", "$", "\\A", "\\Z", "\\z"] }
+
+    override string getAPrimaryQlClass() { result = "RegExpAnchor" }
+  }
+
+  /**
+   * A dollar assertion `$` or `\Z` matching the end of a line.
+   *
+   * Example:
+   *
+   * ```
+   * $
+   * ```
+   */
+  class RegExpDollar extends RegExpAnchor {
+    RegExpDollar() { this.getChar() = ["$", "\\Z", "\\z"] }
+
+    override string getAPrimaryQlClass() { result = "RegExpDollar" }
+
+    override predicate isNullable() { any() }
+  }
+
+  /**
+   * A caret assertion `^` or `\A` matching the beginning of a line.
+   *
+   * Example:
+   *
+   * ```
+   * ^
+   * ```
+   */
+  class RegExpCaret extends RegExpAnchor {
+    RegExpCaret() { this.getChar() = ["^", "\\A"] }
+
+    override string getAPrimaryQlClass() { result = "RegExpCaret" }
+
+    override predicate isNullable() { any() }
+  }
+
+  /**
+   * A zero-width match, that is, either an empty group or an assertion.
+   *
+   * Examples:
+   * ```
+   * ()
+   * (?=\w)
+   * ```
+   */
+  class RegExpZeroWidthMatch extends RegExpGroup {
+    RegExpZeroWidthMatch() { re.zeroWidthMatch(start, end) }
+
+    override RegExpTerm getChild(int i) { none() }
+
+    override string getAPrimaryQlClass() { result = "RegExpZeroWidthMatch" }
+
+    override predicate isNullable() { any() }
+  }
+
+  /**
+   * A zero-width lookahead or lookbehind assertion.
+   *
+   * Examples:
+   *
+   * ```
+   * (?=\w)
+   * (?!\n)
+   * (?<=\.)
+   * (?<!\\)
+   * ```
+   */
+  class RegExpSubPattern extends RegExpZeroWidthMatch {
+    RegExpSubPattern() { not re.emptyGroup(start, end) }
+
+    /** Gets the lookahead term. */
+    RegExpTerm getOperand() {
+      exists(int in_start, int in_end | re.groupContents(start, end, in_start, in_end) |
+        result.getRegExp() = re and
+        result.getStart() = in_start and
+        result.getEnd() = in_end
+      )
+    }
+
+    override predicate isNullable() { any() }
+  }
+
+  /**
+   * A zero-width lookahead assertion.
+   *
+   * Examples:
+   *
+   * ```
+   * (?=\w)
+   * (?!\n)
+   * ```
+   */
+  abstract class RegExpLookahead extends RegExpSubPattern { }
+
+  /**
+   * A positive-lookahead assertion.
+   *
+   * Examples:
+   *
+   * ```
+   * (?=\w)
+   * ```
+   */
+  class RegExpPositiveLookahead extends RegExpLookahead {
+    RegExpPositiveLookahead() { re.positiveLookaheadAssertionGroup(start, end) }
+
+    override string getAPrimaryQlClass() { result = "RegExpPositiveLookahead" }
+
+    override predicate isNullable() { any() }
+  }
+
+  /**
+   * A negative-lookahead assertion.
+   *
+   * Examples:
+   *
+   * ```
+   * (?!\n)
+   * ```
+   */
+  class RegExpNegativeLookahead extends RegExpLookahead {
+    RegExpNegativeLookahead() { re.negativeLookaheadAssertionGroup(start, end) }
+
+    override string getAPrimaryQlClass() { result = "RegExpNegativeLookahead" }
+  }
+
+  /**
+   * A zero-width lookbehind assertion.
+   *
+   * Examples:
+   *
+   * ```
+   * (?<=\.)
+   * (?<!\\)
+   * ```
+   */
+  abstract class RegExpLookbehind extends RegExpSubPattern { }
+
+  /**
+   * A positive-lookbehind assertion.
+   *
+   * Examples:
+   *
+   * ```
+   * (?<=\.)
+   * ```
+   */
+  class RegExpPositiveLookbehind extends RegExpLookbehind {
+    RegExpPositiveLookbehind() { re.positiveLookbehindAssertionGroup(start, end) }
+
+    override string getAPrimaryQlClass() { result = "RegExpPositiveLookbehind" }
+  }
+
+  /**
+   * A negative-lookbehind assertion.
+   *
+   * Examples:
+   *
+   * ```
+   * (?<!\\)
+   * ```
+   */
+  class RegExpNegativeLookbehind extends RegExpLookbehind {
+    RegExpNegativeLookbehind() { re.negativeLookbehindAssertionGroup(start, end) }
+
+    override string getAPrimaryQlClass() { result = "RegExpNegativeLookbehind" }
+  }
+
+  /**
+   * A back reference, that is, a term of the form `\i` or `\k<name>`
+   * in a regular expression.
+   *
+   * Examples:
+   *
+   * ```
+   * \1
+   * (?P=quote)
+   * ```
+   */
+  class RegExpBackRef extends RegExpTerm, TRegExpBackRef {
+    RegExpBackRef() { this = TRegExpBackRef(re, start, end) }
+
+    /**
+     * Gets the number of the capture group this back reference refers to, if any.
+     */
+    int getNumber() { result = re.getBackRefNumber(start, end) }
+
+    /**
+     * Gets the name of the capture group this back reference refers to, if any.
+     */
+    string getName() { result = re.getBackRefName(start, end) }
+
+    /** Gets the capture group this back reference refers to. */
+    RegExpGroup getGroup() {
+      result.getLiteral() = this.getLiteral() and
+      (
+        result.getNumber() = this.getNumber() or
+        result.getName() = this.getName()
+      )
+    }
+
+    override RegExpTerm getChild(int i) { none() }
+
+    override string getAPrimaryQlClass() { result = "RegExpBackRef" }
+
+    override predicate isNullable() { this.getGroup().isNullable() }
+  }
+
+  /**
+   * A named character property. For example, the POSIX bracket expression
+   * `[[:digit:]]`.
+   */
+  class RegExpNamedCharacterProperty extends RegExpTerm, TRegExpNamedCharacterProperty {
+    RegExpNamedCharacterProperty() { this = TRegExpNamedCharacterProperty(re, start, end) }
+
+    override RegExpTerm getChild(int i) { none() }
+
+    override string getAPrimaryQlClass() { result = "RegExpNamedCharacterProperty" }
+
+    /**
+     * Gets the property name. For example, in `\p{Space}`, the result is
+     * `"Space"`.
+     */
+    string getName() { result = re.getCharacterPropertyName(start, end) }
+
+    /**
+     * Holds if the property is inverted. For example, it holds for `\p{^Digit}`,
+     * which matches non-digits.
+     */
+    predicate isInverted() { re.namedCharacterPropertyIsInverted(start, end) }
+  }
 }

From 3432e814c5b9f738be8ced3f2703e860699cdeb2 Mon Sep 17 00:00:00 2001
From: erik-krogh <erik-krogh@github.com>
Date: Tue, 1 Nov 2022 11:43:15 +0100
Subject: [PATCH 0086/1420] add a Ruby implementation of `RegexTreeViewSig`

---
 .../lib/codeql/ruby/regexp/RegExpTreeView.qll | 69 ++++++++++++++++++-
 1 file changed, 68 insertions(+), 1 deletion(-)

diff --git a/ruby/ql/lib/codeql/ruby/regexp/RegExpTreeView.qll b/ruby/ql/lib/codeql/ruby/regexp/RegExpTreeView.qll
index fffa0044771..ab21512c694 100644
--- a/ruby/ql/lib/codeql/ruby/regexp/RegExpTreeView.qll
+++ b/ruby/ql/lib/codeql/ruby/regexp/RegExpTreeView.qll
@@ -4,6 +4,10 @@ private import internal.ParseRegExp
 private import codeql.NumberUtils
 private import codeql.ruby.ast.Literal as Ast
 private import codeql.Locations
+private import codeql.regex.nfa.NfaUtils as NfaUtils
+private import codeql.regex.RegexTreeView
+// exporting as RegexTreeView, and in the top-level scope.
+import Impl as RegexTreeView
 import Impl
 
 /** Gets the parse tree resulting from parsing `re`, if such has been constructed. */
@@ -52,7 +56,7 @@ private newtype TRegExpParent =
   }
 
 /** An implementation that statisfies the RegexTreeView signature. */
-private module Impl {
+private module Impl implements RegexTreeViewSig {
   /**
    * An element containing a regular expression term, that is, either
    * a string literal (parsed as a regular expression)
@@ -1157,4 +1161,67 @@ private module Impl {
      */
     predicate isInverted() { re.namedCharacterPropertyIsInverted(start, end) }
   }
+
+  class Top = RegExpParent;
+
+  /**
+   * Holds if `term` is an escape class representing e.g. `\d`.
+   * `clazz` is which character class it represents, e.g. "d" for `\d`.
+   */
+  predicate isEscapeClass(RegExpTerm term, string clazz) {
+    exists(RegExpCharacterClassEscape escape | term = escape | escape.getValue() = clazz)
+    or
+    // TODO: expand to cover more properties
+    exists(RegExpNamedCharacterProperty escape | term = escape |
+      escape.getName().toLowerCase() = "digit" and
+      if escape.isInverted() then clazz = "D" else clazz = "d"
+      or
+      escape.getName().toLowerCase() = "space" and
+      if escape.isInverted() then clazz = "S" else clazz = "s"
+      or
+      escape.getName().toLowerCase() = "word" and
+      if escape.isInverted() then clazz = "W" else clazz = "w"
+    )
+  }
+
+  /**
+   * Holds if the regular expression should not be considered.
+   */
+  predicate isExcluded(RegExpParent parent) {
+    parent.(RegExpTerm).getRegExp().(Ast::RegExpLiteral).hasFreeSpacingFlag() // exclude free-spacing mode regexes
+  }
+
+  /**
+   * Holds if `term` is a possessive quantifier.
+   * Not currently implemented, but is used by the shared library.
+   */
+  predicate isPossessive(RegExpQuantifier term) { none() }
+
+  /**
+   * Holds if the regex that `term` is part of is used in a way that ignores any leading prefix of the input it's matched against.
+   * Not yet implemented for Ruby.
+   */
+  predicate matchesAnyPrefix(RegExpTerm term) { any() }
+
+  /**
+   * Holds if the regex that `term` is part of is used in a way that ignores any trailing suffix of the input it's matched against.
+   * Not yet implemented for Ruby.
+   */
+  predicate matchesAnySuffix(RegExpTerm term) { any() }
+
+  /**
+   * Holds if `root` has the `i` flag for case-insensitive matching.
+   */
+  predicate isIgnoreCase(RegExpTerm root) {
+    root.isRootTerm() and
+    root.getLiteral().isIgnoreCase()
+  }
+
+  /**
+   * Holds if `root` has the `s` flag for multi-line matching.
+   */
+  predicate isDotAll(RegExpTerm root) {
+    root.isRootTerm() and
+    root.getLiteral().isDotAll()
+  }
 }

From 40e43591731d6edf0a826b6631ddab923f8581a2 Mon Sep 17 00:00:00 2001
From: erik-krogh <erik-krogh@github.com>
Date: Tue, 1 Nov 2022 11:47:32 +0100
Subject: [PATCH 0087/1420] port the Ruby regex/redos queries to use the shared
 pack

---
 .../ruby/security/BadTagFilterQuery.qll       |  156 +-
 ...leteMultiCharacterSanitizationSpecific.qll |    5 +-
 .../ruby/security/OverlyLargeRangeQuery.qll   |  289 +---
 .../regexp/ExponentialBackTracking.qll        |  285 +---
 .../codeql/ruby/security/regexp/NfaUtils.qll  | 1333 +----------------
 .../ruby/security/regexp/NfaUtilsSpecific.qll |   73 -
 .../regexp/PolynomialReDoSCustomizations.qll  |    6 +-
 .../ruby/security/regexp/RegexpMatching.qll   |  156 +-
 .../regexp/SuperlinearBackTracking.qll        |  385 +----
 .../security/cwe-020/OverlyLargeRange.ql      |   11 +-
 .../queries/security/cwe-116/BadTagFilter.ql  |    3 +-
 .../security/cwe-1333/PolynomialReDoS.ql      |    3 +-
 .../ql/src/queries/security/cwe-1333/ReDoS.ql |    7 +-
 13 files changed, 43 insertions(+), 2669 deletions(-)
 delete mode 100644 ruby/ql/lib/codeql/ruby/security/regexp/NfaUtilsSpecific.qll

diff --git a/ruby/ql/lib/codeql/ruby/security/BadTagFilterQuery.qll b/ruby/ql/lib/codeql/ruby/security/BadTagFilterQuery.qll
index 95bfbeeeb5d..370baaf3a5d 100644
--- a/ruby/ql/lib/codeql/ruby/security/BadTagFilterQuery.qll
+++ b/ruby/ql/lib/codeql/ruby/security/BadTagFilterQuery.qll
@@ -2,155 +2,7 @@
  * Provides predicates for reasoning about bad tag filter vulnerabilities.
  */
 
-import regexp.RegexpMatching
-
-/**
- * Holds if the regexp `root` should be tested against `str`.
- * Implements the `isRegexpMatchingCandidateSig` signature from `RegexpMatching`.
- * `ignorePrefix` toggles whether the regular expression should be treated as accepting any prefix if it's unanchored.
- * `testWithGroups` toggles whether it's tested which groups are filled by a given input string.
- */
-private predicate isBadTagFilterCandidate(
-  RootTerm root, string str, boolean ignorePrefix, boolean testWithGroups
-) {
-  // the regexp must mention "<" and ">" explicitly.
-  forall(string angleBracket | angleBracket = ["<", ">"] |
-    any(RegExpConstant term | term.getValue().matches("%" + angleBracket + "%")).getRootTerm() =
-      root
-  ) and
-  ignorePrefix = true and
-  (
-    str = ["<!-- foo -->", "<!-- foo --!>", "<!- foo ->", "<foo>", "<script>"] and
-    testWithGroups = true
-    or
-    str =
-      [
-        "<!-- foo -->", "<!- foo ->", "<!-- foo --!>", "<!-- foo\n -->", "<script>foo</script>",
-        "<script \n>foo</script>", "<script >foo\n</script>", "<foo ></foo>", "<foo>",
-        "<foo src=\"foo\"></foo>", "<script>", "<script src=\"foo\"></script>",
-        "<script src='foo'></script>", "<SCRIPT>foo</SCRIPT>", "<script\tsrc=\"foo\"/>",
-        "<script\tsrc='foo'></script>", "<sCrIpT>foo</ScRiPt>", "<script src=\"foo\">foo</script >",
-        "<script src=\"foo\">foo</script foo=\"bar\">", "<script src=\"foo\">foo</script\t\n bar>"
-      ] and
-    testWithGroups = false
-  )
-}
-
-/**
- * A regexp that matches some string from the `isBadTagFilterCandidate` predicate.
- */
-class HtmlMatchingRegExp extends RootTerm {
-  HtmlMatchingRegExp() { RegexpMatching<isBadTagFilterCandidate/4>::matches(this, _) }
-
-  /** Holds if this regexp matched `str`, where `str` is one of the string from `isBadTagFilterCandidate`. */
-  predicate matches(string str) { RegexpMatching<isBadTagFilterCandidate/4>::matches(this, str) }
-
-  /** Holds if this regexp fills capture group `g' when matching `str', where `str` is one of the string from `isBadTagFilterCandidate`. */
-  predicate fillsCaptureGroup(string str, int g) {
-    RegexpMatching<isBadTagFilterCandidate/4>::fillsCaptureGroup(this, str, g)
-  }
-}
-
-/** DEPRECATED: Alias for HtmlMatchingRegExp */
-deprecated class HTMLMatchingRegExp = HtmlMatchingRegExp;
-
-/**
- * Holds if `regexp` matches some HTML tags, but misses some HTML tags that it should match.
- *
- * When adding a new case to this predicate, make sure the test string used in `matches(..)` calls are present in `HTMLMatchingRegExp::test` / `HTMLMatchingRegExp::testWithGroups`.
- */
-predicate isBadRegexpFilter(HtmlMatchingRegExp regexp, string msg) {
-  // CVE-2021-33829 - matching both "<!-- foo -->" and "<!-- foo --!>", but in different capture groups
-  regexp.matches("<!-- foo -->") and
-  regexp.matches("<!-- foo --!>") and
-  exists(int a, int b | a != b |
-    regexp.fillsCaptureGroup("<!-- foo -->", a) and
-    // <!-- foo --> might be ambiguously parsed (matching both capture groups), and that is ok here.
-    regexp.fillsCaptureGroup("<!-- foo --!>", b) and
-    not regexp.fillsCaptureGroup("<!-- foo --!>", a) and
-    msg =
-      "Comments ending with --> are matched differently from comments ending with --!>. The first is matched with capture group "
-        + a + " and comments ending with --!> are matched with capture group " +
-        strictconcat(int i | regexp.fillsCaptureGroup("<!-- foo --!>", i) | i.toString(), ", ") +
-        "."
-  )
-  or
-  // CVE-2020-17480 - matching "<!-- foo -->" and other tags, but not "<!-- foo --!>".
-  exists(int group, int other |
-    group != other and
-    regexp.fillsCaptureGroup("<!-- foo -->", group) and
-    regexp.fillsCaptureGroup("<foo>", other) and
-    not regexp.matches("<!-- foo --!>") and
-    not regexp.fillsCaptureGroup("<!-- foo -->", any(int i | i != group)) and
-    not regexp.fillsCaptureGroup("<!- foo ->", group) and
-    not regexp.fillsCaptureGroup("<foo>", group) and
-    not regexp.fillsCaptureGroup("<script>", group) and
-    msg =
-      "This regular expression only parses --> (capture group " + group +
-        ") and not --!> as an HTML comment end tag."
-  )
-  or
-  regexp.matches("<!-- foo -->") and
-  not regexp.matches("<!-- foo\n -->") and
-  not regexp.matches("<!- foo ->") and
-  not regexp.matches("<foo>") and
-  not regexp.matches("<script>") and
-  msg = "This regular expression does not match comments containing newlines."
-  or
-  regexp.matches("<script>foo</script>") and
-  regexp.matches("<script src=\"foo\"></script>") and
-  not regexp.matches("<foo ></foo>") and
-  (
-    not regexp.matches("<script \n>foo</script>") and
-    msg = "This regular expression matches <script></script>, but not <script \\n></script>"
-    or
-    not regexp.matches("<script >foo\n</script>") and
-    msg = "This regular expression matches <script>...</script>, but not <script >...\\n</script>"
-  )
-  or
-  regexp.matches("<script>foo</script>") and
-  regexp.matches("<script src=\"foo\"></script>") and
-  not regexp.matches("<script src='foo'></script>") and
-  not regexp.matches("<foo>") and
-  msg = "This regular expression does not match script tags where the attribute uses single-quotes."
-  or
-  regexp.matches("<script>foo</script>") and
-  regexp.matches("<script src='foo'></script>") and
-  not regexp.matches("<script src=\"foo\"></script>") and
-  not regexp.matches("<foo>") and
-  msg = "This regular expression does not match script tags where the attribute uses double-quotes."
-  or
-  regexp.matches("<script>foo</script>") and
-  regexp.matches("<script src='foo'></script>") and
-  not regexp.matches("<script\tsrc='foo'></script>") and
-  not regexp.matches("<foo>") and
-  not regexp.matches("<foo src=\"foo\"></foo>") and
-  msg = "This regular expression does not match script tags where tabs are used between attributes."
-  or
-  regexp.matches("<script>foo</script>") and
-  not RegExpFlags::isIgnoreCase(regexp) and
-  not regexp.matches("<foo>") and
-  not regexp.matches("<foo ></foo>") and
-  (
-    not regexp.matches("<SCRIPT>foo</SCRIPT>") and
-    msg = "This regular expression does not match upper case <SCRIPT> tags."
-    or
-    not regexp.matches("<sCrIpT>foo</ScRiPt>") and
-    regexp.matches("<SCRIPT>foo</SCRIPT>") and
-    msg = "This regular expression does not match mixed case <sCrIpT> tags."
-  )
-  or
-  regexp.matches("<script src=\"foo\"></script>") and
-  not regexp.matches("<foo>") and
-  not regexp.matches("<foo ></foo>") and
-  (
-    not regexp.matches("<script src=\"foo\">foo</script >") and
-    msg = "This regular expression does not match script end tags like </script >."
-    or
-    not regexp.matches("<script src=\"foo\">foo</script foo=\"bar\">") and
-    msg = "This regular expression does not match script end tags like </script foo=\"bar\">."
-    or
-    not regexp.matches("<script src=\"foo\">foo</script\t\n bar>") and
-    msg = "This regular expression does not match script end tags like </script\\t\\n bar>."
-  )
-}
+private import codeql.ruby.regexp.RegExpTreeView::RegexTreeView as TreeView
+// BadTagFilterQuery should be used directly from the shared pack, and not from this file.
+deprecated import codeql.regex.nfa.BadTagFilterQuery::Make<TreeView> as Dep
+import Dep
diff --git a/ruby/ql/lib/codeql/ruby/security/IncompleteMultiCharacterSanitizationSpecific.qll b/ruby/ql/lib/codeql/ruby/security/IncompleteMultiCharacterSanitizationSpecific.qll
index 608afed69cb..5fcc790b91e 100644
--- a/ruby/ql/lib/codeql/ruby/security/IncompleteMultiCharacterSanitizationSpecific.qll
+++ b/ruby/ql/lib/codeql/ruby/security/IncompleteMultiCharacterSanitizationSpecific.qll
@@ -3,8 +3,9 @@
  */
 
 import codeql.ruby.frameworks.core.String
-import codeql.ruby.regexp.RegExpTreeView
-import codeql.ruby.security.regexp.NfaUtils as NfaUtils
+private import codeql.ruby.regexp.RegExpTreeView::RegexTreeView as TreeView
+import TreeView
+import codeql.regex.nfa.NfaUtils::Make<TreeView> as NfaUtils
 
 /**
  * A regexp term that matches substrings that should be replaced with the empty string.
diff --git a/ruby/ql/lib/codeql/ruby/security/OverlyLargeRangeQuery.qll b/ruby/ql/lib/codeql/ruby/security/OverlyLargeRangeQuery.qll
index 65e662f0bc5..d9a8d80e09a 100644
--- a/ruby/ql/lib/codeql/ruby/security/OverlyLargeRangeQuery.qll
+++ b/ruby/ql/lib/codeql/ruby/security/OverlyLargeRangeQuery.qll
@@ -2,288 +2,7 @@
  * Classes and predicates for working with suspicious character ranges.
  */
 
-// We don't need the NFA utils, just the regexp tree.
-// but the below is a nice shared library that exposes the API we need.
-import regexp.NfaUtils
-
-/**
- * Gets a rank for `range` that is unique for ranges in the same file.
- * Prioritizes ranges that match more characters.
- */
-int rankRange(RegExpCharacterRange range) {
-  range =
-    rank[result](RegExpCharacterRange r, Location l, int low, int high |
-      r.getLocation() = l and
-      isRange(r, low, high)
-    |
-      r order by (high - low) desc, l.getStartLine(), l.getStartColumn()
-    )
-}
-
-/** Holds if `range` spans from the unicode code points `low` to `high` (both inclusive). */
-predicate isRange(RegExpCharacterRange range, int low, int high) {
-  exists(string lowc, string highc |
-    range.isRange(lowc, highc) and
-    low.toUnicode() = lowc and
-    high.toUnicode() = highc
-  )
-}
-
-/** Holds if `char` is an alpha-numeric character. */
-predicate isAlphanumeric(string char) {
-  // written like this to avoid having a bindingset for the predicate
-  char = [[48 .. 57], [65 .. 90], [97 .. 122]].toUnicode() // 0-9, A-Z, a-z
-}
-
-/**
- * Holds if the given ranges are from the same character class
- * and there exists at least one character matched by both ranges.
- */
-predicate overlap(RegExpCharacterRange a, RegExpCharacterRange b) {
-  exists(RegExpCharacterClass clz |
-    a = clz.getAChild() and
-    b = clz.getAChild() and
-    a != b
-  |
-    exists(int alow, int ahigh, int blow, int bhigh |
-      isRange(a, alow, ahigh) and
-      isRange(b, blow, bhigh) and
-      alow <= bhigh and
-      blow <= ahigh
-    )
-  )
-}
-
-/**
- * Holds if `range` overlaps with the char class `escape` from the same character class.
- */
-predicate overlapsWithCharEscape(RegExpCharacterRange range, RegExpCharacterClassEscape escape) {
-  exists(RegExpCharacterClass clz, string low, string high |
-    range = clz.getAChild() and
-    escape = clz.getAChild() and
-    range.isRange(low, high)
-  |
-    escape.getValue() = "w" and
-    getInRange(low, high).regexpMatch("\\w")
-    or
-    escape.getValue() = "d" and
-    getInRange(low, high).regexpMatch("\\d")
-    or
-    escape.getValue() = "s" and
-    getInRange(low, high).regexpMatch("\\s")
-  )
-}
-
-/** Gets the unicode code point for a `char`. */
-bindingset[char]
-int toCodePoint(string char) { result.toUnicode() = char }
-
-/** A character range that appears to be overly wide. */
-class OverlyWideRange extends RegExpCharacterRange {
-  OverlyWideRange() {
-    exists(int low, int high, int numChars |
-      isRange(this, low, high) and
-      numChars = (1 + high - low) and
-      this.getRootTerm().isUsedAsRegExp() and
-      numChars >= 10
-    |
-      // across the Z-a range (which includes backticks)
-      toCodePoint("Z") >= low and
-      toCodePoint("a") <= high
-      or
-      // across the 9-A range (which includes e.g. ; and ?)
-      toCodePoint("9") >= low and
-      toCodePoint("A") <= high
-      or
-      // a non-alphanumeric char as part of the range boundaries
-      exists(int bound | bound = [low, high] | not isAlphanumeric(bound.toUnicode())) and
-      // while still being ascii
-      low < 128 and
-      high < 128
-    ) and
-    // allowlist for known ranges
-    not this = allowedWideRanges()
-  }
-
-  /** Gets a string representation of a character class that matches the same chars as this range. */
-  string printEquivalent() { result = RangePrinter::printEquivalentCharClass(this) }
-}
-
-/** Gets a range that should not be reported as an overly wide range. */
-RegExpCharacterRange allowedWideRanges() {
-  // ~ is the last printable ASCII character, it's used right in various wide ranges.
-  result.isRange(_, "~")
-  or
-  // the same with " " and "!". " " is the first printable character, and "!" is the first non-white-space printable character.
-  result.isRange([" ", "!"], _)
-  or
-  // the `[@-_]` range is intentional
-  result.isRange("@", "_")
-  or
-  // starting from the zero byte is a good indication that it's purposely matching a large range.
-  result.isRange(0.toUnicode(), _)
-}
-
-/** Gets a char between (and including) `low` and `high`. */
-bindingset[low, high]
-private string getInRange(string low, string high) {
-  result = [toCodePoint(low) .. toCodePoint(high)].toUnicode()
-}
-
-/** A module computing an equivalent character class for an overly wide range. */
-module RangePrinter {
-  bindingset[char]
-  bindingset[result]
-  private string next(string char) {
-    exists(int prev, int next |
-      prev.toUnicode() = char and
-      next.toUnicode() = result and
-      next = prev + 1
-    )
-  }
-
-  /** Gets the points where the parts of the pretty printed range should be cut off. */
-  private string cutoffs() { result = ["A", "Z", "a", "z", "0", "9"] }
-
-  /** Gets the char to use in the low end of a range for a given `cut` */
-  private string lowCut(string cut) {
-    cut = ["A", "a", "0"] and
-    result = cut
-    or
-    cut = ["Z", "z", "9"] and
-    result = next(cut)
-  }
-
-  /** Gets the char to use in the high end of a range for a given `cut` */
-  private string highCut(string cut) {
-    cut = ["Z", "z", "9"] and
-    result = cut
-    or
-    cut = ["A", "a", "0"] and
-    next(result) = cut
-  }
-
-  /** Gets the cutoff char used for a given `part` of a range when pretty-printing it. */
-  private string cutoff(OverlyWideRange range, int part) {
-    exists(int low, int high | isRange(range, low, high) |
-      result =
-        rank[part + 1](string cut |
-          cut = cutoffs() and low < toCodePoint(cut) and toCodePoint(cut) < high
-        |
-          cut order by toCodePoint(cut)
-        )
-    )
-  }
-
-  /** Gets the number of parts we should print for a given `range`. */
-  private int parts(OverlyWideRange range) { result = 1 + count(cutoff(range, _)) }
-
-  /** Holds if the given part of a range should span from `low` to `high`. */
-  private predicate part(OverlyWideRange range, int part, string low, string high) {
-    // first part.
-    part = 0 and
-    (
-      range.isRange(low, high) and
-      parts(range) = 1
-      or
-      parts(range) >= 2 and
-      range.isRange(low, _) and
-      high = highCut(cutoff(range, part))
-    )
-    or
-    // middle
-    part >= 1 and
-    part < parts(range) - 1 and
-    low = lowCut(cutoff(range, part - 1)) and
-    high = highCut(cutoff(range, part))
-    or
-    // last.
-    part = parts(range) - 1 and
-    low = lowCut(cutoff(range, part - 1)) and
-    range.isRange(_, high)
-  }
-
-  /** Gets an escaped `char` for use in a character class. */
-  bindingset[char]
-  private string escape(string char) {
-    exists(string reg | reg = "(\\[|\\]|\\\\|-|/)" |
-      if char.regexpMatch(reg) then result = "\\" + char else result = char
-    )
-  }
-
-  /** Gets a part of the equivalent range. */
-  private string printEquivalentCharClass(OverlyWideRange range, int part) {
-    exists(string low, string high | part(range, part, low, high) |
-      if
-        isAlphanumeric(low) and
-        isAlphanumeric(high)
-      then result = low + "-" + high
-      else
-        result =
-          strictconcat(string char | char = getInRange(low, high) | escape(char) order by char)
-    )
-  }
-
-  /** Gets the entire pretty printed equivalent range. */
-  string printEquivalentCharClass(OverlyWideRange range) {
-    result =
-      strictconcat(string r, int part |
-        r = "[" and part = -1 and exists(range)
-        or
-        r = printEquivalentCharClass(range, part)
-        or
-        r = "]" and part = parts(range)
-      |
-        r order by part
-      )
-  }
-}
-
-/** Gets a char range that is overly large because of `reason`. */
-RegExpCharacterRange getABadRange(string reason, int priority) {
-  result instanceof OverlyWideRange and
-  priority = 0 and
-  exists(string equiv | equiv = result.(OverlyWideRange).printEquivalent() |
-    if equiv.length() <= 50
-    then reason = "is equivalent to " + equiv
-    else reason = "is equivalent to " + equiv.substring(0, 50) + "..."
-  )
-  or
-  priority = 1 and
-  exists(RegExpCharacterRange other |
-    reason = "overlaps with " + other + " in the same character class" and
-    rankRange(result) < rankRange(other) and
-    overlap(result, other)
-  )
-  or
-  priority = 2 and
-  exists(RegExpCharacterClassEscape escape |
-    reason = "overlaps with " + escape + " in the same character class" and
-    overlapsWithCharEscape(result, escape)
-  )
-  or
-  reason = "is empty" and
-  priority = 3 and
-  exists(int low, int high |
-    isRange(result, low, high) and
-    low > high
-  )
-}
-
-/** Holds if `range` matches suspiciously many characters. */
-predicate problem(RegExpCharacterRange range, string reason) {
-  reason =
-    strictconcat(string m, int priority |
-      range = getABadRange(m, priority)
-    |
-      m, ", and " order by priority desc
-    ) and
-  // specifying a range using an escape is usually OK.
-  not range.getAChild() instanceof RegExpEscape and
-  // Unicode escapes in strings are interpreted before it turns into a regexp,
-  // so e.g. [\u0001-\uFFFF] will just turn up as a range between two constants.
-  // We therefore exclude these ranges.
-  range.getRootTerm().getParent() instanceof RegExpLiteral and
-  // is used as regexp (mostly for JS where regular expressions are parsed eagerly)
-  range.getRootTerm().isUsedAsRegExp()
-}
+private import codeql.ruby.regexp.RegExpTreeView::RegexTreeView as TreeView
+// OverlyLargeRangeQuery should be used directly from the shared pack, and not from this file.
+deprecated import codeql.regex.OverlyLargeRangeQuery::Make<TreeView> as Dep
+import Dep
diff --git a/ruby/ql/lib/codeql/ruby/security/regexp/ExponentialBackTracking.qll b/ruby/ql/lib/codeql/ruby/security/regexp/ExponentialBackTracking.qll
index 4a608890249..608f0e59552 100644
--- a/ruby/ql/lib/codeql/ruby/security/regexp/ExponentialBackTracking.qll
+++ b/ruby/ql/lib/codeql/ruby/security/regexp/ExponentialBackTracking.qll
@@ -62,284 +62,7 @@
  *     a suffix `x` (possible empty) that is most likely __not__ accepted.
  */
 
-import NfaUtils
-
-/**
- * Holds if state `s` might be inside a backtracking repetition.
- */
-pragma[noinline]
-private predicate stateInsideBacktracking(State s) {
-  s.getRepr().getParent*() instanceof MaybeBacktrackingRepetition
-}
-
-/**
- * A infinitely repeating quantifier that might backtrack.
- */
-private class MaybeBacktrackingRepetition extends InfiniteRepetitionQuantifier {
-  MaybeBacktrackingRepetition() {
-    exists(RegExpTerm child |
-      child instanceof RegExpAlt or
-      child instanceof RegExpQuantifier
-    |
-      child.getParent+() = this
-    )
-  }
-}
-
-/**
- * A state in the product automaton.
- */
-private newtype TStatePair =
-  /**
-   * We lazily only construct those states that we are actually
-   * going to need: `(q, q)` for every fork state `q`, and any
-   * pair of states that can be reached from a pair that we have
-   * already constructed. To cut down on the number of states,
-   * we only represent states `(q1, q2)` where `q1` is lexicographically
-   * no bigger than `q2`.
-   *
-   * States are only constructed if both states in the pair are
-   * inside a repetition that might backtrack.
-   */
-  MkStatePair(State q1, State q2) {
-    isFork(q1, _, _, _, _) and q2 = q1
-    or
-    (step(_, _, _, q1, q2) or step(_, _, _, q2, q1)) and
-    rankState(q1) <= rankState(q2)
-  }
-
-/**
- * Gets a unique number for a `state`.
- * Is used to create an ordering of states, where states with the same `toString()` will be ordered differently.
- */
-private int rankState(State state) {
-  state =
-    rank[result](State s, Location l |
-      stateInsideBacktracking(s) and
-      l = s.getRepr().getLocation()
-    |
-      s order by l.getStartLine(), l.getStartColumn(), s.toString()
-    )
-}
-
-/**
- * A state in the product automaton.
- */
-private class StatePair extends TStatePair {
-  State q1;
-  State q2;
-
-  StatePair() { this = MkStatePair(q1, q2) }
-
-  /** Gets a textual representation of this element. */
-  string toString() { result = "(" + q1 + ", " + q2 + ")" }
-
-  /** Gets the first component of the state pair. */
-  State getLeft() { result = q1 }
-
-  /** Gets the second component of the state pair. */
-  State getRight() { result = q2 }
-}
-
-/**
- * Holds for `(fork, fork)` state pairs when `isFork(fork, _, _, _, _)` holds.
- *
- * Used in `statePairDistToFork`
- */
-private predicate isStatePairFork(StatePair p) {
-  exists(State fork | p = MkStatePair(fork, fork) and isFork(fork, _, _, _, _))
-}
-
-/**
- * Holds if there are transitions from the components of `q` to the corresponding
- * components of `r`.
- *
- * Used in `statePairDistToFork`
- */
-private predicate reverseStep(StatePair r, StatePair q) { step(q, _, _, r) }
-
-/**
- * Gets the minimum length of a path from `q` to `r` in the
- * product automaton.
- */
-private int statePairDistToFork(StatePair q, StatePair r) =
-  shortestDistances(isStatePairFork/1, reverseStep/2)(r, q, result)
-
-/**
- * Holds if there are transitions from `q` to `r1` and from `q` to `r2`
- * labelled with `s1` and `s2`, respectively, where `s1` and `s2` do not
- * trivially have an empty intersection.
- *
- * This predicate only holds for states associated with regular expressions
- * that have at least one repetition quantifier in them (otherwise the
- * expression cannot be vulnerable to ReDoS attacks anyway).
- */
-pragma[noopt]
-private predicate isFork(State q, InputSymbol s1, InputSymbol s2, State r1, State r2) {
-  stateInsideBacktracking(q) and
-  exists(State q1, State q2 |
-    q1 = epsilonSucc*(q) and
-    delta(q1, s1, r1) and
-    q2 = epsilonSucc*(q) and
-    delta(q2, s2, r2) and
-    // Use pragma[noopt] to prevent intersect(s1,s2) from being the starting point of the join.
-    // From (s1,s2) it would find a huge number of intermediate state pairs (q1,q2) originating from different literals,
-    // and discover at the end that no `q` can reach both `q1` and `q2` by epsilon transitions.
-    exists(intersect(s1, s2))
-  |
-    s1 != s2
-    or
-    r1 != r2
-    or
-    r1 = r2 and q1 != q2
-    or
-    // If q can reach itself by epsilon transitions, then there are two distinct paths to the q1/q2 state:
-    // one that uses the loop and one that doesn't. The engine will separately attempt to match with each path,
-    // despite ending in the same state. The "fork" thus arises from the choice of whether to use the loop or not.
-    // To avoid every state in the loop becoming a fork state,
-    // we arbitrarily pick the InfiniteRepetitionQuantifier state as the canonical fork state for the loop
-    // (every epsilon-loop must contain such a state).
-    //
-    // We additionally require that the there exists another InfiniteRepetitionQuantifier `mid` on the path from `q` to itself.
-    // This is done to avoid flagging regular expressions such as `/(a?)*b/` - that only has polynomial runtime, and is detected by `js/polynomial-redos`.
-    // The below code is therefore a heuristic, that only flags regular expressions such as `/(a*)*b/`,
-    // and does not flag regular expressions such as `/(a?b?)c/`, but the latter pattern is not used frequently.
-    r1 = r2 and
-    q1 = q2 and
-    epsilonSucc+(q) = q and
-    exists(RegExpTerm term | term = q.getRepr() | term instanceof InfiniteRepetitionQuantifier) and
-    // One of the mid states is an infinite quantifier itself
-    exists(State mid, RegExpTerm term |
-      mid = epsilonSucc+(q) and
-      term = mid.getRepr() and
-      term instanceof InfiniteRepetitionQuantifier and
-      q = epsilonSucc+(mid) and
-      not mid = q
-    )
-  ) and
-  stateInsideBacktracking(r1) and
-  stateInsideBacktracking(r2)
-}
-
-/**
- * Gets the state pair `(q1, q2)` or `(q2, q1)`; note that only
- * one or the other is defined.
- */
-private StatePair mkStatePair(State q1, State q2) {
-  result = MkStatePair(q1, q2) or result = MkStatePair(q2, q1)
-}
-
-/**
- * Holds if there are transitions from the components of `q` to the corresponding
- * components of `r` labelled with `s1` and `s2`, respectively.
- */
-private predicate step(StatePair q, InputSymbol s1, InputSymbol s2, StatePair r) {
-  exists(State r1, State r2 | step(q, s1, s2, r1, r2) and r = mkStatePair(r1, r2))
-}
-
-/**
- * Holds if there are transitions from the components of `q` to `r1` and `r2`
- * labelled with `s1` and `s2`, respectively.
- *
- * We only consider transitions where the resulting states `(r1, r2)` are both
- * inside a repetition that might backtrack.
- */
-pragma[noopt]
-private predicate step(StatePair q, InputSymbol s1, InputSymbol s2, State r1, State r2) {
-  exists(State q1, State q2 | q.getLeft() = q1 and q.getRight() = q2 |
-    deltaClosed(q1, s1, r1) and
-    deltaClosed(q2, s2, r2) and
-    // use noopt to force the join on `intersect` to happen last.
-    exists(intersect(s1, s2))
-  ) and
-  stateInsideBacktracking(r1) and
-  stateInsideBacktracking(r2)
-}
-
-private newtype TTrace =
-  Nil() or
-  Step(InputSymbol s1, InputSymbol s2, TTrace t) { isReachableFromFork(_, _, s1, s2, t, _) }
-
-/**
- * A list of pairs of input symbols that describe a path in the product automaton
- * starting from some fork state.
- */
-private class Trace extends TTrace {
-  /** Gets a textual representation of this element. */
-  string toString() {
-    this = Nil() and result = "Nil()"
-    or
-    exists(InputSymbol s1, InputSymbol s2, Trace t | this = Step(s1, s2, t) |
-      result = "Step(" + s1 + ", " + s2 + ", " + t + ")"
-    )
-  }
-}
-
-/**
- * Holds if `r` is reachable from `(fork, fork)` under input `w`, and there is
- * a path from `r` back to `(fork, fork)` with `rem` steps.
- */
-private predicate isReachableFromFork(State fork, StatePair r, Trace w, int rem) {
-  exists(InputSymbol s1, InputSymbol s2, Trace v |
-    isReachableFromFork(fork, r, s1, s2, v, rem) and
-    w = Step(s1, s2, v)
-  )
-}
-
-private predicate isReachableFromFork(
-  State fork, StatePair r, InputSymbol s1, InputSymbol s2, Trace v, int rem
-) {
-  // base case
-  exists(State q1, State q2 |
-    isFork(fork, s1, s2, q1, q2) and
-    r = MkStatePair(q1, q2) and
-    v = Nil() and
-    rem = statePairDistToFork(r, MkStatePair(fork, fork))
-  )
-  or
-  // recursive case
-  exists(StatePair p |
-    isReachableFromFork(fork, p, v, rem + 1) and
-    step(p, s1, s2, r) and
-    rem = statePairDistToFork(r, MkStatePair(fork, fork))
-  )
-}
-
-/**
- * Gets a state in the product automaton from which `(fork, fork)` is
- * reachable in zero or more epsilon transitions.
- */
-private StatePair getAForkPair(State fork) {
-  isFork(fork, _, _, _, _) and
-  result = MkStatePair(epsilonPred*(fork), epsilonPred*(fork))
-}
-
-/** An implementation of a chain containing chars for use by `Concretizer`. */
-private module CharTreeImpl implements CharTree {
-  class CharNode = Trace;
-
-  CharNode getPrev(CharNode t) { t = Step(_, _, result) }
-
-  /** Holds if `n` is a trace that is used by `concretize` in `isPumpable`. */
-  predicate isARelevantEnd(CharNode n) {
-    exists(State f | isReachableFromFork(f, getAForkPair(f), n, _))
-  }
-
-  string getChar(CharNode t) {
-    exists(InputSymbol s1, InputSymbol s2 | t = Step(s1, s2, _) | result = intersect(s1, s2))
-  }
-}
-
-/**
- * Holds if `fork` is a pumpable fork with word `w`.
- */
-private predicate isPumpable(State fork, string w) {
-  exists(StatePair q, Trace t |
-    isReachableFromFork(fork, q, t, _) and
-    q = getAForkPair(fork) and
-    w = Concretizer<CharTreeImpl>::concretize(t)
-  )
-}
-
-/** Holds if `state` has exponential ReDoS */
-predicate hasReDoSResult = ReDoSPruning<isPumpable/2>::hasReDoSResult/4;
+private import codeql.ruby.regexp.RegExpTreeView::RegexTreeView as TreeView
+// ExponentialBackTracking should be used directly from the shared pack, and not from this file.
+deprecated private import codeql.regex.nfa.ExponentialBackTracking::Make<TreeView> as Dep
+import Dep
diff --git a/ruby/ql/lib/codeql/ruby/security/regexp/NfaUtils.qll b/ruby/ql/lib/codeql/ruby/security/regexp/NfaUtils.qll
index 5ff0cb6a39e..721905a34bf 100644
--- a/ruby/ql/lib/codeql/ruby/security/regexp/NfaUtils.qll
+++ b/ruby/ql/lib/codeql/ruby/security/regexp/NfaUtils.qll
@@ -7,1332 +7,7 @@
  * other queries that benefit from reasoning about NFAs.
  */
 
-import NfaUtilsSpecific
-
-/**
- * Gets the char after `c` (from a simplified ASCII table).
- */
-private string nextChar(string c) { exists(int code | code = ascii(c) | code + 1 = ascii(result)) }
-
-/**
- * Gets an approximation for the ASCII code for `char`.
- * Only the easily printable chars are included (so no newline, tab, null, etc).
- */
-private int ascii(string char) {
-  char =
-    rank[result](string c |
-      c =
-        "! \"#$%&'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\\]^_`abcdefghijklmnopqrstuvwxyz{|}~"
-            .charAt(_)
-    )
-}
-
-/**
- * Holds if `t` matches at least an epsilon symbol.
- *
- * That is, this term does not restrict the language of the enclosing regular expression.
- *
- * This is implemented as an under-approximation, and this predicate does not hold for sub-patterns in particular.
- */
-predicate matchesEpsilon(RegExpTerm t) {
-  t instanceof RegExpStar
-  or
-  t instanceof RegExpOpt
-  or
-  t.(RegExpRange).getLowerBound() = 0
-  or
-  exists(RegExpTerm child |
-    child = t.getAChild() and
-    matchesEpsilon(child)
-  |
-    t instanceof RegExpAlt or
-    t instanceof RegExpGroup or
-    t instanceof RegExpPlus or
-    t instanceof RegExpRange
-  )
-  or
-  matchesEpsilon(t.(RegExpBackRef).getGroup())
-  or
-  forex(RegExpTerm child | child = t.(RegExpSequence).getAChild() | matchesEpsilon(child))
-}
-
-/**
- * A lookahead/lookbehind that matches the empty string.
- */
-class EmptyPositiveSubPattern extends RegExpSubPattern {
-  EmptyPositiveSubPattern() {
-    (
-      this instanceof RegExpPositiveLookahead
-      or
-      this instanceof RegExpPositiveLookbehind
-    ) and
-    matchesEpsilon(this.getOperand())
-  }
-}
-
-/** DEPRECATED: Use `EmptyPositiveSubPattern` instead. */
-deprecated class EmptyPositiveSubPatttern = EmptyPositiveSubPattern;
-
-/**
- * A branch in a disjunction that is the root node in a literal, or a literal
- * whose root node is not a disjunction.
- */
-class RegExpRoot extends RegExpTerm {
-  RegExpRoot() {
-    exists(RegExpParent parent |
-      exists(RegExpAlt alt |
-        alt.isRootTerm() and
-        this = alt.getAChild() and
-        parent = alt.getParent()
-      )
-      or
-      this.isRootTerm() and
-      not this instanceof RegExpAlt and
-      parent = this.getParent()
-    )
-  }
-
-  /**
-   * Holds if this root term is relevant to the ReDoS analysis.
-   */
-  predicate isRelevant() {
-    // is actually used as a RegExp
-    this.isUsedAsRegExp() and
-    // not excluded for library specific reasons
-    not isExcluded(this.getRootTerm().getParent())
-  }
-}
-
-/**
- * A constant in a regular expression that represents valid Unicode character(s).
- */
-private class RegexpCharacterConstant extends RegExpConstant {
-  RegexpCharacterConstant() { this.isCharacter() }
-}
-
-/**
- * A regexp term that is relevant for this ReDoS analysis.
- */
-class RelevantRegExpTerm extends RegExpTerm {
-  RelevantRegExpTerm() { getRoot(this).isRelevant() }
-}
-
-/**
- * Holds if `term` is the chosen canonical representative for all terms with string representation `str`.
- * The string representation includes which flags are used with the regular expression.
- *
- * Using canonical representatives gives a huge performance boost when working with tuples containing multiple `InputSymbol`s.
- * The number of `InputSymbol`s is decreased by 3 orders of magnitude or more in some larger benchmarks.
- */
-private predicate isCanonicalTerm(RelevantRegExpTerm term, string str) {
-  term =
-    min(RelevantRegExpTerm t, Location loc, File file |
-      loc = t.getLocation() and
-      file = t.getFile() and
-      str = getCanonicalizationString(t)
-    |
-      t order by t.getFile().getRelativePath(), loc.getStartLine(), loc.getStartColumn()
-    )
-}
-
-/**
- * Gets a string representation of `term` that is used for canonicalization.
- */
-private string getCanonicalizationString(RelevantRegExpTerm term) {
-  exists(string ignoreCase |
-    (if RegExpFlags::isIgnoreCase(term.getRootTerm()) then ignoreCase = "i" else ignoreCase = "") and
-    result = term.getRawValue() + "|" + ignoreCase
-  )
-}
-
-/**
- * An abstract input symbol, representing a set of concrete characters.
- */
-private newtype TInputSymbol =
-  /** An input symbol corresponding to character `c`. */
-  Char(string c) {
-    c =
-      any(RegexpCharacterConstant cc |
-        cc instanceof RelevantRegExpTerm and
-        not RegExpFlags::isIgnoreCase(cc.getRootTerm())
-      ).getValue().charAt(_)
-    or
-    // normalize everything to lower case if the regexp is case insensitive
-    c =
-      any(RegexpCharacterConstant cc, string char |
-        cc instanceof RelevantRegExpTerm and
-        RegExpFlags::isIgnoreCase(cc.getRootTerm()) and
-        char = cc.getValue().charAt(_)
-      |
-        char.toLowerCase()
-      )
-  } or
-  /**
-   * An input symbol representing all characters matched by
-   * a (non-universal) character class that has string representation `charClassString`.
-   */
-  CharClass(string charClassString) {
-    exists(RelevantRegExpTerm recc | isCanonicalTerm(recc, charClassString) |
-      recc instanceof RegExpCharacterClass and
-      not recc.(RegExpCharacterClass).isUniversalClass()
-      or
-      isEscapeClass(recc, _)
-    )
-  } or
-  /** An input symbol representing all characters matched by `.`. */
-  Dot() or
-  /** An input symbol representing all characters. */
-  Any() or
-  /** An epsilon transition in the automaton. */
-  Epsilon()
-
-/**
- * Gets the the CharClass corresponding to the canonical representative `term`.
- */
-private CharClass getCharClassForCanonicalTerm(RegExpTerm term) {
-  exists(string str | isCanonicalTerm(term, str) | result = CharClass(str))
-}
-
-/**
- * Gets a char class that represents `term`, even when `term` is not the canonical representative.
- */
-CharacterClass getCanonicalCharClass(RegExpTerm term) {
-  exists(string str | str = getCanonicalizationString(term) and result = CharClass(str))
-}
-
-/**
- * Holds if `a` and `b` are input symbols from the same regexp.
- */
-private predicate sharesRoot(InputSymbol a, InputSymbol b) {
-  exists(RegExpRoot root |
-    belongsTo(a, root) and
-    belongsTo(b, root)
-  )
-}
-
-/**
- * Holds if the `a` is an input symbol from a regexp that has root `root`.
- */
-private predicate belongsTo(InputSymbol a, RegExpRoot root) {
-  exists(State s | getRoot(s.getRepr()) = root |
-    delta(s, a, _)
-    or
-    delta(_, a, s)
-  )
-}
-
-/**
- * An abstract input symbol, representing a set of concrete characters.
- */
-class InputSymbol extends TInputSymbol {
-  InputSymbol() { not this instanceof Epsilon }
-
-  /**
-   * Gets a string representation of this input symbol.
-   */
-  string toString() {
-    this = Char(result)
-    or
-    this = CharClass(result)
-    or
-    this = Dot() and result = "."
-    or
-    this = Any() and result = "[^]"
-  }
-}
-
-/**
- * An abstract input symbol that represents a character class.
- */
-abstract class CharacterClass extends InputSymbol {
-  /**
-   * Gets a character that is relevant for intersection-tests involving this
-   * character class.
-   *
-   * Specifically, this is any of the characters mentioned explicitly in the
-   * character class, offset by one if it is inverted. For character class escapes,
-   * the result is as if the class had been written out as a series of intervals.
-   *
-   * This set is large enough to ensure that for any two intersecting character
-   * classes, one contains a relevant character from the other.
-   */
-  abstract string getARelevantChar();
-
-  /**
-   * Holds if this character class matches `char`.
-   */
-  bindingset[char]
-  abstract predicate matches(string char);
-
-  /**
-   * Gets a character matched by this character class.
-   */
-  string choose() { result = this.getARelevantChar() and this.matches(result) }
-}
-
-/**
- * Provides implementations for `CharacterClass`.
- */
-private module CharacterClasses {
-  /**
-   * Holds if the character class `cc` has a child (constant or range) that matches `char`.
-   */
-  pragma[noinline]
-  predicate hasChildThatMatches(RegExpCharacterClass cc, string char) {
-    if RegExpFlags::isIgnoreCase(cc.getRootTerm())
-    then
-      // normalize everything to lower case if the regexp is case insensitive
-      exists(string c | hasChildThatMatchesIgnoringCasingFlags(cc, c) | char = c.toLowerCase())
-    else hasChildThatMatchesIgnoringCasingFlags(cc, char)
-  }
-
-  /**
-   * Holds if the character class `cc` has a child (constant or range) that matches `char`.
-   * Ignores whether the character class is inside a regular expression that has the ignore case flag.
-   */
-  pragma[noinline]
-  predicate hasChildThatMatchesIgnoringCasingFlags(RegExpCharacterClass cc, string char) {
-    exists(getCharClassForCanonicalTerm(cc)) and
-    exists(RegExpTerm child | child = cc.getAChild() |
-      char = child.(RegexpCharacterConstant).getValue()
-      or
-      rangeMatchesOnLetterOrDigits(child, char)
-      or
-      not rangeMatchesOnLetterOrDigits(child, _) and
-      char = getARelevantChar() and
-      exists(string lo, string hi | child.(RegExpCharacterRange).isRange(lo, hi) |
-        lo <= char and
-        char <= hi
-      )
-      or
-      exists(string charClass | isEscapeClass(child, charClass) |
-        charClass.toLowerCase() = charClass and
-        classEscapeMatches(charClass, char)
-        or
-        char = getARelevantChar() and
-        charClass.toUpperCase() = charClass and
-        not classEscapeMatches(charClass, char)
-      )
-    )
-  }
-
-  /**
-   * Holds if `range` is a range on lower-case, upper-case, or digits, and matches `char`.
-   * This predicate is used to restrict the searchspace for ranges by only joining `getAnyPossiblyMatchedChar`
-   * on a few ranges.
-   */
-  private predicate rangeMatchesOnLetterOrDigits(RegExpCharacterRange range, string char) {
-    exists(string lo, string hi |
-      range.isRange(lo, hi) and lo = lowercaseLetter() and hi = lowercaseLetter()
-    |
-      lo <= char and
-      char <= hi and
-      char = lowercaseLetter()
-    )
-    or
-    exists(string lo, string hi |
-      range.isRange(lo, hi) and lo = upperCaseLetter() and hi = upperCaseLetter()
-    |
-      lo <= char and
-      char <= hi and
-      char = upperCaseLetter()
-    )
-    or
-    exists(string lo, string hi | range.isRange(lo, hi) and lo = digit() and hi = digit() |
-      lo <= char and
-      char <= hi and
-      char = digit()
-    )
-  }
-
-  private string lowercaseLetter() { result = "abcdefghijklmnopqrstuvwxyz".charAt(_) }
-
-  private string upperCaseLetter() { result = "ABCDEFGHIJKLMNOPQRSTUVWXYZ".charAt(_) }
-
-  private string digit() { result = [0 .. 9].toString() }
-
-  /**
-   * Gets a char that could be matched by a regular expression.
-   * Includes all printable ascii chars, all constants mentioned in a regexp, and all chars matches by the regexp `/\s|\d|\w/`.
-   */
-  string getARelevantChar() {
-    exists(ascii(result))
-    or
-    exists(RegexpCharacterConstant c | result = c.getValue().charAt(_))
-    or
-    classEscapeMatches(_, result)
-  }
-
-  /**
-   * Gets a char that is mentioned in the character class `c`.
-   */
-  private string getAMentionedChar(RegExpCharacterClass c) {
-    exists(RegExpTerm child | child = c.getAChild() |
-      result = child.(RegexpCharacterConstant).getValue()
-      or
-      child.(RegExpCharacterRange).isRange(result, _)
-      or
-      child.(RegExpCharacterRange).isRange(_, result)
-      or
-      exists(string charClass | isEscapeClass(child, charClass) |
-        result = min(string s | classEscapeMatches(charClass.toLowerCase(), s))
-        or
-        result = max(string s | classEscapeMatches(charClass.toLowerCase(), s))
-      )
-    )
-  }
-
-  bindingset[char, cc]
-  private string caseNormalize(string char, RegExpTerm cc) {
-    if RegExpFlags::isIgnoreCase(cc.getRootTerm())
-    then result = char.toLowerCase()
-    else result = char
-  }
-
-  /**
-   * An implementation of `CharacterClass` for positive (non inverted) character classes.
-   */
-  private class PositiveCharacterClass extends CharacterClass {
-    RegExpCharacterClass cc;
-
-    PositiveCharacterClass() { this = getCharClassForCanonicalTerm(cc) and not cc.isInverted() }
-
-    override string getARelevantChar() { result = caseNormalize(getAMentionedChar(cc), cc) }
-
-    override predicate matches(string char) { hasChildThatMatches(cc, char) }
-  }
-
-  /**
-   * An implementation of `CharacterClass` for inverted character classes.
-   */
-  private class InvertedCharacterClass extends CharacterClass {
-    RegExpCharacterClass cc;
-
-    InvertedCharacterClass() { this = getCharClassForCanonicalTerm(cc) and cc.isInverted() }
-
-    override string getARelevantChar() {
-      result = nextChar(caseNormalize(getAMentionedChar(cc), cc)) or
-      nextChar(result) = caseNormalize(getAMentionedChar(cc), cc)
-    }
-
-    bindingset[char]
-    override predicate matches(string char) { not hasChildThatMatches(cc, char) }
-  }
-
-  /**
-   * Holds if the character class escape `clazz` (\d, \s, or \w) matches `char`.
-   */
-  pragma[noinline]
-  private predicate classEscapeMatches(string clazz, string char) {
-    clazz = "d" and
-    char = "0123456789".charAt(_)
-    or
-    clazz = "s" and
-    char = [" ", "\t", "\r", "\n", 11.toUnicode(), 12.toUnicode()] // 11.toUnicode() = \v, 12.toUnicode() = \f
-    or
-    clazz = "w" and
-    char = "abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ0123456789_".charAt(_)
-  }
-
-  /**
-   * An implementation of `CharacterClass` for \d, \s, and \w.
-   */
-  private class PositiveCharacterClassEscape extends CharacterClass {
-    string charClass;
-    RegExpTerm cc;
-
-    PositiveCharacterClassEscape() {
-      isEscapeClass(cc, charClass) and
-      this = getCharClassForCanonicalTerm(cc) and
-      charClass = ["d", "s", "w"]
-    }
-
-    override string getARelevantChar() {
-      charClass = "d" and
-      result = ["0", "9"]
-      or
-      charClass = "s" and
-      result = " "
-      or
-      charClass = "w" and
-      if RegExpFlags::isIgnoreCase(cc.getRootTerm())
-      then result = ["a", "z", "_", "0", "9"]
-      else result = ["a", "Z", "_", "0", "9"]
-    }
-
-    override predicate matches(string char) { classEscapeMatches(charClass, char) }
-
-    override string choose() {
-      charClass = "d" and
-      result = "9"
-      or
-      charClass = "s" and
-      result = " "
-      or
-      charClass = "w" and
-      result = "a"
-    }
-  }
-
-  /**
-   * An implementation of `CharacterClass` for \D, \S, and \W.
-   */
-  private class NegativeCharacterClassEscape extends CharacterClass {
-    string charClass;
-
-    NegativeCharacterClassEscape() {
-      exists(RegExpTerm cc |
-        isEscapeClass(cc, charClass) and
-        this = getCharClassForCanonicalTerm(cc) and
-        charClass = ["D", "S", "W"]
-      )
-    }
-
-    override string getARelevantChar() {
-      charClass = "D" and
-      result = ["a", "Z", "!"]
-      or
-      charClass = "S" and
-      result = ["a", "9", "!"]
-      or
-      charClass = "W" and
-      result = [" ", "!"]
-    }
-
-    bindingset[char]
-    override predicate matches(string char) {
-      not classEscapeMatches(charClass.toLowerCase(), char)
-    }
-  }
-
-  /** Gets a representative for all char classes that match the same chars as `c`. */
-  CharacterClass normalize(CharacterClass c) {
-    exists(string normalization |
-      normalization = getNormalizationString(c) and
-      result =
-        min(CharacterClass cc, string raw |
-          getNormalizationString(cc) = normalization and cc = CharClass(raw)
-        |
-          cc order by raw
-        )
-    )
-  }
-
-  /** Gets a string representing all the chars matched by `c` */
-  private string getNormalizationString(CharacterClass c) {
-    (c instanceof PositiveCharacterClass or c instanceof PositiveCharacterClassEscape) and
-    result = concat(string char | c.matches(char) and char = CharacterClasses::getARelevantChar())
-    or
-    (c instanceof InvertedCharacterClass or c instanceof NegativeCharacterClassEscape) and
-    // the string produced by the concat can not contain repeated chars
-    // so by starting the below with "nn" we can guarantee that
-    // it will not overlap with the above case.
-    // and a negative char class can never match the same chars as a positive one, so we don't miss any results from this.
-    result =
-      "nn:" +
-        concat(string char | not c.matches(char) and char = CharacterClasses::getARelevantChar())
-  }
-}
-
-private class EdgeLabel extends TInputSymbol {
-  string toString() {
-    this = Epsilon() and result = ""
-    or
-    exists(InputSymbol s | this = s and result = s.toString())
-  }
-}
-
-/**
- * A RegExp term that acts like a plus.
- * Either it's a RegExpPlus, or it is a range {1,X} where X is >= 30.
- * 30 has been chosen as a threshold because for exponential blowup 2^30 is enough to get a decent DOS attack.
- */
-private class EffectivelyPlus extends RegExpTerm {
-  EffectivelyPlus() {
-    this instanceof RegExpPlus
-    or
-    exists(RegExpRange range |
-      range.getLowerBound() = 1 and
-      (range.getUpperBound() >= 30 or not exists(range.getUpperBound()))
-    |
-      this = range
-    )
-  }
-}
-
-/**
- * A RegExp term that acts like a star.
- * Either it's a RegExpStar, or it is a range {0,X} where X is >= 30.
- */
-private class EffectivelyStar extends RegExpTerm {
-  EffectivelyStar() {
-    this instanceof RegExpStar
-    or
-    exists(RegExpRange range |
-      range.getLowerBound() = 0 and
-      (range.getUpperBound() >= 30 or not exists(range.getUpperBound()))
-    |
-      this = range
-    )
-  }
-}
-
-/**
- * A RegExp term that acts like a question mark.
- * Either it's a RegExpQuestion, or it is a range {0,1}.
- */
-private class EffectivelyQuestion extends RegExpTerm {
-  EffectivelyQuestion() {
-    this instanceof RegExpOpt
-    or
-    exists(RegExpRange range | range.getLowerBound() = 0 and range.getUpperBound() = 1 |
-      this = range
-    )
-  }
-}
-
-/**
- * Gets the state before matching `t`.
- */
-pragma[inline]
-private State before(RegExpTerm t) { result = Match(t, 0) }
-
-/**
- * Gets a state the NFA may be in after matching `t`.
- */
-State after(RegExpTerm t) {
-  exists(RegExpAlt alt | t = alt.getAChild() | result = after(alt))
-  or
-  exists(RegExpSequence seq, int i | t = seq.getChild(i) |
-    result = before(seq.getChild(i + 1))
-    or
-    i + 1 = seq.getNumChild() and result = after(seq)
-  )
-  or
-  exists(RegExpGroup grp | t = grp.getAChild() | result = after(grp))
-  or
-  exists(EffectivelyStar star | t = star.getAChild() |
-    not isPossessive(star) and
-    result = before(star)
-  )
-  or
-  exists(EffectivelyPlus plus | t = plus.getAChild() |
-    not isPossessive(plus) and
-    result = before(plus)
-    or
-    result = after(plus)
-  )
-  or
-  exists(EffectivelyQuestion opt | t = opt.getAChild() | result = after(opt))
-  or
-  exists(RegExpRoot root | t = root |
-    if matchesAnySuffix(root) then result = AcceptAnySuffix(root) else result = Accept(root)
-  )
-}
-
-/**
- * Holds if the NFA has a transition from `q1` to `q2` labelled with `lbl`.
- */
-predicate delta(State q1, EdgeLabel lbl, State q2) {
-  exists(RegexpCharacterConstant s, int i |
-    q1 = Match(s, i) and
-    (
-      not RegExpFlags::isIgnoreCase(s.getRootTerm()) and
-      lbl = Char(s.getValue().charAt(i))
-      or
-      // normalize everything to lower case if the regexp is case insensitive
-      RegExpFlags::isIgnoreCase(s.getRootTerm()) and
-      exists(string c | c = s.getValue().charAt(i) | lbl = Char(c.toLowerCase()))
-    ) and
-    (
-      q2 = Match(s, i + 1)
-      or
-      s.getValue().length() = i + 1 and
-      q2 = after(s)
-    )
-  )
-  or
-  exists(RegExpDot dot | q1 = before(dot) and q2 = after(dot) |
-    if RegExpFlags::isDotAll(dot.getRootTerm()) then lbl = Any() else lbl = Dot()
-  )
-  or
-  exists(RegExpCharacterClass cc |
-    cc.isUniversalClass() and q1 = before(cc) and lbl = Any() and q2 = after(cc)
-    or
-    q1 = before(cc) and
-    lbl = CharacterClasses::normalize(CharClass(getCanonicalizationString(cc))) and
-    q2 = after(cc)
-  )
-  or
-  exists(RegExpTerm cc | isEscapeClass(cc, _) |
-    q1 = before(cc) and
-    lbl = CharacterClasses::normalize(CharClass(getCanonicalizationString(cc))) and
-    q2 = after(cc)
-  )
-  or
-  exists(RegExpAlt alt | lbl = Epsilon() | q1 = before(alt) and q2 = before(alt.getAChild()))
-  or
-  exists(RegExpSequence seq | lbl = Epsilon() | q1 = before(seq) and q2 = before(seq.getChild(0)))
-  or
-  exists(RegExpGroup grp | lbl = Epsilon() | q1 = before(grp) and q2 = before(grp.getChild(0)))
-  or
-  exists(EffectivelyStar star | lbl = Epsilon() |
-    q1 = before(star) and q2 = before(star.getChild(0))
-    or
-    q1 = before(star) and q2 = after(star)
-  )
-  or
-  exists(EffectivelyPlus plus | lbl = Epsilon() |
-    q1 = before(plus) and q2 = before(plus.getChild(0))
-  )
-  or
-  exists(EffectivelyQuestion opt | lbl = Epsilon() |
-    q1 = before(opt) and q2 = before(opt.getChild(0))
-    or
-    q1 = before(opt) and q2 = after(opt)
-  )
-  or
-  exists(RegExpRoot root | q1 = AcceptAnySuffix(root) |
-    lbl = Any() and q2 = q1
-    or
-    lbl = Epsilon() and q2 = Accept(root)
-  )
-  or
-  exists(RegExpRoot root | q1 = Match(root, 0) | matchesAnyPrefix(root) and lbl = Any() and q2 = q1)
-  or
-  exists(RegExpDollar dollar | q1 = before(dollar) |
-    lbl = Epsilon() and q2 = Accept(getRoot(dollar))
-  )
-  or
-  exists(EmptyPositiveSubPattern empty | q1 = before(empty) | lbl = Epsilon() and q2 = after(empty))
-}
-
-/**
- * Gets a state that `q` has an epsilon transition to.
- */
-State epsilonSucc(State q) { delta(q, Epsilon(), result) }
-
-/**
- * Gets a state that has an epsilon transition to `q`.
- */
-State epsilonPred(State q) { q = epsilonSucc(result) }
-
-/**
- * Holds if there is a state `q` that can be reached from `q1`
- * along epsilon edges, such that there is a transition from
- * `q` to `q2` that consumes symbol `s`.
- */
-predicate deltaClosed(State q1, InputSymbol s, State q2) { delta(epsilonSucc*(q1), s, q2) }
-
-/**
- * Gets the root containing the given term, that is, the root of the literal,
- * or a branch of the root disjunction.
- */
-RegExpRoot getRoot(RegExpTerm term) {
-  result = term or
-  result = getRoot(term.getParent())
-}
-
-/**
- * A state in the NFA.
- */
-newtype TState =
-  /**
-   * A state representing that the NFA is about to match a term.
-   * `i` is used to index into multi-char literals.
-   */
-  Match(RelevantRegExpTerm t, int i) {
-    i = 0
-    or
-    exists(t.(RegexpCharacterConstant).getValue().charAt(i))
-  } or
-  /**
-   * An accept state, where exactly the given input string is accepted.
-   */
-  Accept(RegExpRoot l) { l.isRelevant() } or
-  /**
-   * An accept state, where the given input string, or any string that has this
-   * string as a prefix, is accepted.
-   */
-  AcceptAnySuffix(RegExpRoot l) { l.isRelevant() }
-
-/**
- * Gets a state that is about to match the regular expression `t`.
- */
-State mkMatch(RegExpTerm t) { result = Match(t, 0) }
-
-/**
- * A state in the NFA corresponding to a regular expression.
- *
- * Each regular expression literal `l` has one accepting state
- * `Accept(l)`, one state that accepts all suffixes `AcceptAnySuffix(l)`,
- * and a state `Match(t, i)` for every subterm `t`,
- * which represents the state of the NFA before starting to
- * match `t`, or the `i`th character in `t` if `t` is a constant.
- */
-class State extends TState {
-  RegExpTerm repr;
-
-  State() {
-    this = Match(repr, _) or
-    this = Accept(repr) or
-    this = AcceptAnySuffix(repr)
-  }
-
-  /**
-   * Gets a string representation for this state in a regular expression.
-   */
-  string toString() {
-    exists(int i | this = Match(repr, i) | result = "Match(" + repr + "," + i + ")")
-    or
-    this instanceof Accept and
-    result = "Accept(" + repr + ")"
-    or
-    this instanceof AcceptAnySuffix and
-    result = "AcceptAny(" + repr + ")"
-  }
-
-  /**
-   * Gets the location for this state.
-   */
-  Location getLocation() { result = repr.getLocation() }
-
-  /**
-   * Gets the term represented by this state.
-   */
-  RegExpTerm getRepr() { result = repr }
-}
-
-/**
- * Gets the minimum char that is matched by both the character classes `c` and `d`.
- */
-private string getMinOverlapBetweenCharacterClasses(CharacterClass c, CharacterClass d) {
-  result = min(getAOverlapBetweenCharacterClasses(c, d))
-}
-
-/**
- * Gets a char that is matched by both the character classes `c` and `d`.
- * And `c` and `d` is not the same character class.
- */
-private string getAOverlapBetweenCharacterClasses(CharacterClass c, CharacterClass d) {
-  sharesRoot(c, d) and
-  result = [c.getARelevantChar(), d.getARelevantChar()] and
-  c.matches(result) and
-  d.matches(result) and
-  not c = d
-}
-
-/**
- * Gets a character that is represented by both `c` and `d`.
- */
-string intersect(InputSymbol c, InputSymbol d) {
-  (sharesRoot(c, d) or [c, d] = Any()) and
-  (
-    c = Char(result) and
-    d = getAnInputSymbolMatching(result)
-    or
-    result = getMinOverlapBetweenCharacterClasses(c, d)
-    or
-    result = c.(CharacterClass).choose() and
-    (
-      d = c
-      or
-      d = Dot() and
-      not (result = "\n" or result = "\r")
-      or
-      d = Any()
-    )
-    or
-    (c = Dot() or c = Any()) and
-    (d = Dot() or d = Any()) and
-    result = "a"
-  )
-  or
-  result = intersect(d, c)
-}
-
-/**
- * Gets a symbol that matches `char`.
- */
-bindingset[char]
-InputSymbol getAnInputSymbolMatching(string char) {
-  result = Char(char)
-  or
-  result.(CharacterClass).matches(char)
-  or
-  result = Dot() and
-  not (char = "\n" or char = "\r")
-  or
-  result = Any()
-}
-
-/**
- * Holds if `state` is a start state.
- */
-predicate isStartState(State state) {
-  state = mkMatch(any(RegExpRoot r))
-  or
-  exists(RegExpCaret car | state = after(car))
-}
-
-/**
- * Holds if `state` is a candidate for ReDoS with string `pump`.
- */
-signature predicate isCandidateSig(State state, string pump);
-
-/**
- * Holds if `state` is a candidate for ReDoS.
- */
-signature predicate isCandidateSig(State state);
-
-/**
- * Predicates for constructing a prefix string that leads to a given state.
- */
-module PrefixConstruction<isCandidateSig/1 isCandidate> {
-  /**
-   * Holds if `state` is the textually last start state for the regular expression.
-   */
-  private predicate lastStartState(RelevantState state) {
-    exists(RegExpRoot root |
-      state =
-        max(RelevantState s, Location l |
-          isStartState(s) and
-          getRoot(s.getRepr()) = root and
-          l = s.getRepr().getLocation()
-        |
-          s
-          order by
-            l.getStartLine(), l.getStartColumn(), s.getRepr().toString(), l.getEndColumn(),
-            l.getEndLine()
-        )
-    )
-  }
-
-  /**
-   * Holds if there exists any transition (Epsilon() or other) from `a` to `b`.
-   */
-  private predicate existsTransition(State a, State b) { delta(a, _, b) }
-
-  /**
-   * Gets the minimum number of transitions it takes to reach `state` from the `start` state.
-   */
-  int prefixLength(State start, State state) =
-    shortestDistances(lastStartState/1, existsTransition/2)(start, state, result)
-
-  /**
-   * Gets the minimum number of transitions it takes to reach `state` from the start state.
-   */
-  private int lengthFromStart(State state) { result = prefixLength(_, state) }
-
-  /**
-   * Gets a string for which the regular expression will reach `state`.
-   *
-   * Has at most one result for any given `state`.
-   * This predicate will not always have a result even if there is a ReDoS issue in
-   * the regular expression.
-   */
-  string prefix(State state) {
-    lastStartState(state) and
-    result = ""
-    or
-    // the search stops past the last redos candidate state.
-    lengthFromStart(state) <= max(lengthFromStart(any(State s | isCandidate(s)))) and
-    exists(State prev |
-      // select a unique predecessor (by an arbitrary measure)
-      prev =
-        min(State s, Location loc |
-          lengthFromStart(s) = lengthFromStart(state) - 1 and
-          loc = s.getRepr().getLocation() and
-          delta(s, _, state)
-        |
-          s
-          order by
-            loc.getStartLine(), loc.getStartColumn(), loc.getEndLine(), loc.getEndColumn(),
-            s.getRepr().toString()
-        )
-    |
-      // greedy search for the shortest prefix
-      result = prefix(prev) and delta(prev, Epsilon(), state)
-      or
-      not delta(prev, Epsilon(), state) and
-      result = prefix(prev) + getCanonicalEdgeChar(prev, state)
-    )
-  }
-
-  /**
-   * Gets a canonical char for which there exists a transition from `prev` to `next` in the NFA.
-   */
-  private string getCanonicalEdgeChar(State prev, State next) {
-    result =
-      min(string c | delta(prev, any(InputSymbol symbol | c = intersect(Any(), symbol)), next))
-  }
-
-  /** A state within a regular expression that contains a candidate state. */
-  class RelevantState instanceof State {
-    RelevantState() {
-      exists(State s | isCandidate(s) | getRoot(s.getRepr()) = getRoot(this.getRepr()))
-    }
-
-    /** Gets a string representation for this state in a regular expression. */
-    string toString() { result = State.super.toString() }
-
-    /** Gets the term represented by this state. */
-    RegExpTerm getRepr() { result = State.super.getRepr() }
-  }
-}
-
-/**
- * A module for pruning candidate ReDoS states.
- * The candidates are specified by the `isCandidate` signature predicate.
- * The candidates are checked for rejecting suffixes and deduplicated,
- * and the resulting ReDoS states are read by the `hasReDoSResult` predicate.
- */
-module ReDoSPruning<isCandidateSig/2 isCandidate> {
-  /**
-   * Holds if repeating `pump` starting at `state` is a candidate for causing backtracking.
-   * No check whether a rejected suffix exists has been made.
-   */
-  private predicate isReDoSCandidate(State state, string pump) {
-    isCandidate(state, pump) and
-    not state = acceptsAnySuffix() and // pruning early - these can never get stuck in a rejecting state.
-    (
-      not isCandidate(epsilonSucc+(state), _)
-      or
-      epsilonSucc+(state) = state and
-      state =
-        max(State s, Location l |
-          s = epsilonSucc+(state) and
-          l = s.getRepr().getLocation() and
-          isCandidate(s, _) and
-          s.getRepr() instanceof InfiniteRepetitionQuantifier
-        |
-          s order by l.getStartLine(), l.getStartColumn(), l.getEndColumn(), l.getEndLine()
-        )
-    )
-  }
-
-  /** Gets a state that can reach the `accept-any` state using only epsilon steps. */
-  private State acceptsAnySuffix() { epsilonSucc*(result) = AcceptAnySuffix(_) }
-
-  predicate isCandidateState(State s) { isReDoSCandidate(s, _) }
-
-  import PrefixConstruction<isCandidateState/1> as Prefix
-
-  class RelevantState = Prefix::RelevantState;
-
-  /**
-   * Predicates for testing the presence of a rejecting suffix.
-   *
-   * These predicates are used to ensure that the all states reached from the fork
-   * by repeating `w` have a rejecting suffix.
-   *
-   * For example, a regexp like `/^(a+)+/` will accept any string as long the prefix is
-   * some number of `"a"`s, and it is therefore not possible to construct a rejecting suffix.
-   *
-   * A regexp like `/(a+)+$/` or `/(a+)+b/` trivially has a rejecting suffix,
-   * as the suffix "X" will cause both the regular expressions to be rejected.
-   *
-   * The string `w` is repeated any number of times because it needs to be
-   * infinitely repeatable for the attack to work.
-   * For the regular expression `/((ab)+)*abab/` the accepting state is not reachable from the fork
-   * using epsilon transitions. But any attempt at repeating `w` will end in a state that accepts all suffixes.
-   */
-  private module SuffixConstruction {
-    /**
-     * Holds if all states reachable from `fork` by repeating `w`
-     * are likely rejectable by appending some suffix.
-     */
-    predicate reachesOnlyRejectableSuffixes(State fork, string w) {
-      isReDoSCandidate(fork, w) and
-      forex(State next | next = process(fork, w, w.length() - 1) | isLikelyRejectable(next)) and
-      not getProcessPrevious(fork, _, w) = acceptsAnySuffix() // we stop `process(..)` early if we can, check here if it happened.
-    }
-
-    /**
-     * Holds if there likely exists a suffix starting from `s` that leads to the regular expression being rejected.
-     * This predicate might find impossible suffixes when searching for suffixes of length > 1, which can cause FPs.
-     */
-    pragma[noinline]
-    private predicate isLikelyRejectable(RelevantState s) {
-      // exists a reject edge with some char.
-      hasRejectEdge(s)
-      or
-      hasEdgeToLikelyRejectable(s)
-      or
-      // stopping here is rejection
-      isRejectState(s)
-    }
-
-    /**
-     * Holds if `s` is not an accept state, and there is no epsilon transition to an accept state.
-     */
-    predicate isRejectState(RelevantState s) { not epsilonSucc*(s) = Accept(_) }
-
-    /**
-     * Holds if there is likely a non-empty suffix leading to rejection starting in `s`.
-     */
-    pragma[noopt]
-    predicate hasEdgeToLikelyRejectable(RelevantState s) {
-      // all edges (at least one) with some char leads to another state that is rejectable.
-      // the `next` states might not share a common suffix, which can cause FPs.
-      exists(string char | char = hasEdgeToLikelyRejectableHelper(s) |
-        // noopt to force `hasEdgeToLikelyRejectableHelper` to be first in the join-order.
-        exists(State next | deltaClosedChar(s, char, next) | isLikelyRejectable(next)) and
-        forall(State next | deltaClosedChar(s, char, next) | isLikelyRejectable(next))
-      )
-    }
-
-    /**
-     * Gets a char for there exists a transition away from `s`,
-     * and `s` has not been found to be rejectable by `hasRejectEdge` or `isRejectState`.
-     */
-    pragma[noinline]
-    private string hasEdgeToLikelyRejectableHelper(RelevantState s) {
-      not hasRejectEdge(s) and
-      not isRejectState(s) and
-      deltaClosedChar(s, result, _)
-    }
-
-    /**
-     * Holds if there is a state `next` that can be reached from `prev`
-     * along epsilon edges, such that there is a transition from
-     * `prev` to `next` that the character symbol `char`.
-     */
-    predicate deltaClosedChar(RelevantState prev, string char, RelevantState next) {
-      deltaClosed(prev, getAnInputSymbolMatchingRelevant(char), next)
-    }
-
-    pragma[noinline]
-    InputSymbol getAnInputSymbolMatchingRelevant(string char) {
-      char = relevant(_) and
-      result = getAnInputSymbolMatching(char)
-    }
-
-    pragma[noinline]
-    RegExpRoot relevantRoot() {
-      exists(RegExpTerm term, State s |
-        s.getRepr() = term and isCandidateState(s) and result = term.getRootTerm()
-      )
-    }
-
-    /**
-     * Gets a char used for finding possible suffixes inside `root`.
-     */
-    pragma[noinline]
-    private string relevant(RegExpRoot root) {
-      root = relevantRoot() and
-      (
-        exists(ascii(result)) and exists(root)
-        or
-        exists(InputSymbol s | belongsTo(s, root) | result = intersect(s, _))
-        or
-        // The characters from `hasSimpleRejectEdge`. Only `\n` is really needed (as `\n` is not in the `ascii` relation).
-        // The three chars must be kept in sync with `hasSimpleRejectEdge`.
-        result = ["|", "\n", "Z"] and exists(root)
-      )
-    }
-
-    /**
-     * Holds if there exists a `char` such that there is no edge from `s` labeled `char` in our NFA.
-     * The NFA does not model reject states, so the above is the same as saying there is a reject edge.
-     */
-    private predicate hasRejectEdge(State s) {
-      hasSimpleRejectEdge(s)
-      or
-      not hasSimpleRejectEdge(s) and
-      exists(string char | char = relevant(getRoot(s.getRepr())) | not deltaClosedChar(s, char, _))
-    }
-
-    /**
-     * Holds if there is no edge from `s` labeled with "|", "\n", or "Z" in our NFA.
-     * This predicate is used as a cheap pre-processing to speed up `hasRejectEdge`.
-     */
-    private predicate hasSimpleRejectEdge(State s) {
-      // The three chars were chosen arbitrarily. The three chars must be kept in sync with `relevant`.
-      exists(string char | char = ["|", "\n", "Z"] | not deltaClosedChar(s, char, _))
-    }
-
-    /**
-     * Gets a state that can be reached from pumpable `fork` consuming all
-     * chars in `w` any number of times followed by the first `i+1` characters of `w`.
-     */
-    pragma[noopt]
-    private State process(State fork, string w, int i) {
-      exists(State prev | prev = getProcessPrevious(fork, i, w) |
-        not prev = acceptsAnySuffix() and // we stop `process(..)` early if we can. If the successor accepts any suffix, then we know it can never be rejected.
-        exists(string char, InputSymbol sym |
-          char = w.charAt(i) and
-          deltaClosed(prev, sym, result) and
-          // noopt to prevent joining `prev` with all possible `chars` that could transition away from `prev`.
-          // Instead only join with the set of `chars` where a relevant `InputSymbol` has already been found.
-          sym = getAProcessInputSymbol(char)
-        )
-      )
-    }
-
-    /**
-     * Gets a state that can be reached from pumpable `fork` consuming all
-     * chars in `w` any number of times followed by the first `i` characters of `w`.
-     */
-    private State getProcessPrevious(State fork, int i, string w) {
-      isReDoSCandidate(fork, w) and
-      (
-        i = 0 and result = fork
-        or
-        result = process(fork, w, i - 1)
-        or
-        // repeat until fixpoint
-        i = 0 and
-        result = process(fork, w, w.length() - 1)
-      )
-    }
-
-    /**
-     * Gets an InputSymbol that matches `char`.
-     * The predicate is specialized to only have a result for the `char`s that are relevant for the `process` predicate.
-     */
-    private InputSymbol getAProcessInputSymbol(string char) {
-      char = getAProcessChar() and
-      result = getAnInputSymbolMatching(char)
-    }
-
-    /**
-     * Gets a `char` that occurs in a `pump` string.
-     */
-    private string getAProcessChar() { result = any(string s | isReDoSCandidate(_, s)).charAt(_) }
-  }
-
-  /**
-   * Holds if `term` may cause superlinear backtracking on strings containing many repetitions of `pump`.
-   * Gets the shortest string that causes superlinear backtracking.
-   */
-  private predicate isReDoSAttackable(RegExpTerm term, string pump, State s) {
-    exists(int i, string c | s = Match(term, i) |
-      c =
-        min(string w |
-          isCandidate(s, w) and
-          SuffixConstruction::reachesOnlyRejectableSuffixes(s, w)
-        |
-          w order by w.length(), w
-        ) and
-      pump = escape(rotate(c, i))
-    )
-  }
-
-  /**
-   * Holds if the state `s` (represented by the term `t`) can have backtracking with repetitions of `pump`.
-   *
-   * `prefixMsg` contains a friendly message for a prefix that reaches `s` (or `prefixMsg` is the empty string if the prefix is empty or if no prefix could be found).
-   */
-  predicate hasReDoSResult(RegExpTerm t, string pump, State s, string prefixMsg) {
-    isReDoSAttackable(t, pump, s) and
-    (
-      prefixMsg = "starting with '" + escape(Prefix::prefix(s)) + "' and " and
-      not Prefix::prefix(s) = ""
-      or
-      Prefix::prefix(s) = "" and prefixMsg = ""
-      or
-      not exists(Prefix::prefix(s)) and prefixMsg = ""
-    )
-  }
-
-  /**
-   * Gets the result of backslash-escaping newlines, carriage-returns and
-   * backslashes in `s`.
-   */
-  bindingset[s]
-  private string escape(string s) {
-    result =
-      s.replaceAll("\\", "\\\\")
-          .replaceAll("\n", "\\n")
-          .replaceAll("\r", "\\r")
-          .replaceAll("\t", "\\t")
-  }
-
-  /**
-   * Gets `str` with the last `i` characters moved to the front.
-   *
-   * We use this to adjust the pump string to match with the beginning of
-   * a RegExpTerm, so it doesn't start in the middle of a constant.
-   */
-  bindingset[str, i]
-  private string rotate(string str, int i) {
-    result = str.suffix(str.length() - i) + str.prefix(str.length() - i)
-  }
-}
-
-/**
- * A module that describes a tree where each node has one or more associated characters, also known as a trie.
- * The root node has no associated character.
- * This module is a signature used in `Concretizer`.
- */
-signature module CharTree {
-  /** A node in the tree. */
-  class CharNode;
-
-  /** Gets the previous node in the tree from `t`. */
-  CharNode getPrev(CharNode t);
-
-  /**
-   * Holds if `n` is at the end of a tree. I.e. a node that should have a result in the `Concretizer` module.
-   * Such a node can still have children.
-   */
-  predicate isARelevantEnd(CharNode n);
-
-  /** Gets a char associated with `t`. */
-  string getChar(CharNode t);
-}
-
-/**
- * Implements an algorithm for computing all possible strings
- * from following a tree of nodes (as described in `CharTree`).
- *
- * The string is build using one big concat, where all the chars are computed first.
- * See `concretize`.
- */
-module Concretizer<CharTree Impl> {
-  private class Node = Impl::CharNode;
-
-  private predicate getPrev = Impl::getPrev/1;
-
-  private predicate isARelevantEnd = Impl::isARelevantEnd/1;
-
-  private predicate getChar = Impl::getChar/1;
-
-  /** Holds if `n` is on a path from the root to a leaf, and is therefore relevant for the results in `concretize`. */
-  private predicate isRelevant(Node n) {
-    isARelevantEnd(n)
-    or
-    exists(Node succ | isRelevant(succ) | n = getPrev(succ))
-  }
-
-  /** Holds if `n` is a root with no predecessors. */
-  private predicate isRoot(Node n) { not exists(getPrev(n)) }
-
-  /** Gets the distance from a root to `n`. */
-  private int nodeDepth(Node n) {
-    result = 0 and isRoot(n)
-    or
-    isRelevant(n) and
-    exists(Node prev | result = nodeDepth(prev) + 1 | prev = getPrev(n))
-  }
-
-  /** Gets an ancestor of `end`, where `end` is a node that should have a result in `concretize`. */
-  private Node getAnAncestor(Node end) { isARelevantEnd(end) and result = getPrev*(end) }
-
-  /** Gets the `i`th character on the path from the root to `n`. */
-  pragma[noinline]
-  private string getPrefixChar(Node n, int i) {
-    exists(Node ancestor |
-      result = getChar(ancestor) and
-      ancestor = getAnAncestor(n) and
-      i = nodeDepth(ancestor)
-    )
-  }
-
-  /** Gets a string corresponding to `node`. */
-  language[monotonicAggregates]
-  string concretize(Node n) {
-    result = strictconcat(int i | exists(getPrefixChar(n, i)) | getPrefixChar(n, i) order by i)
-  }
-}
+private import codeql.ruby.regexp.RegExpTreeView::RegexTreeView as TreeView
+// NfaUtils should be used directly from the shared pack, and not from this file.
+deprecated private import codeql.regex.nfa.NfaUtils::Make<TreeView> as Dep
+import Dep
diff --git a/ruby/ql/lib/codeql/ruby/security/regexp/NfaUtilsSpecific.qll b/ruby/ql/lib/codeql/ruby/security/regexp/NfaUtilsSpecific.qll
deleted file mode 100644
index 821586b1f90..00000000000
--- a/ruby/ql/lib/codeql/ruby/security/regexp/NfaUtilsSpecific.qll
+++ /dev/null
@@ -1,73 +0,0 @@
-/**
- * Provides Ruby-specific definitions for use in the NfaUtils module.
- */
-
-import codeql.ruby.Regexp
-import codeql.Locations
-private import codeql.ruby.ast.Literal as Ast
-
-/**
- * Holds if `term` is an escape class representing e.g. `\d`.
- * `clazz` is which character class it represents, e.g. "d" for `\d`.
- */
-predicate isEscapeClass(RegExpTerm term, string clazz) {
-  exists(RegExpCharacterClassEscape escape | term = escape | escape.getValue() = clazz)
-  or
-  // TODO: expand to cover more properties
-  exists(RegExpNamedCharacterProperty escape | term = escape |
-    escape.getName().toLowerCase() = "digit" and
-    if escape.isInverted() then clazz = "D" else clazz = "d"
-    or
-    escape.getName().toLowerCase() = "space" and
-    if escape.isInverted() then clazz = "S" else clazz = "s"
-    or
-    escape.getName().toLowerCase() = "word" and
-    if escape.isInverted() then clazz = "W" else clazz = "w"
-  )
-}
-
-/**
- * Holds if the regular expression should not be considered.
- */
-predicate isExcluded(RegExpParent parent) {
-  parent.(RegExpTerm).getRegExp().(Ast::RegExpLiteral).hasFreeSpacingFlag() // exclude free-spacing mode regexes
-}
-
-/**
- * Holds if `term` is a possessive quantifier.
- * Not currently implemented, but is used by the shared library.
- */
-predicate isPossessive(RegExpQuantifier term) { none() }
-
-/**
- * Holds if the regex that `term` is part of is used in a way that ignores any leading prefix of the input it's matched against.
- * Not yet implemented for Ruby.
- */
-predicate matchesAnyPrefix(RegExpTerm term) { any() }
-
-/**
- * Holds if the regex that `term` is part of is used in a way that ignores any trailing suffix of the input it's matched against.
- * Not yet implemented for Ruby.
- */
-predicate matchesAnySuffix(RegExpTerm term) { any() }
-
-/**
- * A module containing predicates for determining which flags a regular expression have.
- */
-module RegExpFlags {
-  /**
-   * Holds if `root` has the `i` flag for case-insensitive matching.
-   */
-  predicate isIgnoreCase(RegExpTerm root) {
-    root.isRootTerm() and
-    root.getLiteral().isIgnoreCase()
-  }
-
-  /**
-   * Holds if `root` has the `s` flag for multi-line matching.
-   */
-  predicate isDotAll(RegExpTerm root) {
-    root.isRootTerm() and
-    root.getLiteral().isDotAll()
-  }
-}
diff --git a/ruby/ql/lib/codeql/ruby/security/regexp/PolynomialReDoSCustomizations.qll b/ruby/ql/lib/codeql/ruby/security/regexp/PolynomialReDoSCustomizations.qll
index 8c05642fc83..0429d00da1a 100644
--- a/ruby/ql/lib/codeql/ruby/security/regexp/PolynomialReDoSCustomizations.qll
+++ b/ruby/ql/lib/codeql/ruby/security/regexp/PolynomialReDoSCustomizations.qll
@@ -8,8 +8,7 @@ private import codeql.ruby.AST as Ast
 private import codeql.ruby.CFG
 private import codeql.ruby.DataFlow
 private import codeql.ruby.dataflow.RemoteFlowSources
-private import codeql.ruby.Regexp
-private import codeql.ruby.security.regexp.SuperlinearBackTracking
+private import codeql.ruby.regexp.RegExpTreeView::RegexTreeView as TreeView
 
 /**
  * Provides default sources, sinks and sanitizers for reasoning about
@@ -17,6 +16,9 @@ private import codeql.ruby.security.regexp.SuperlinearBackTracking
  * as extension points for adding your own.
  */
 module PolynomialReDoS {
+  private import TreeView
+  import codeql.regex.nfa.SuperlinearBackTracking::Make<TreeView>
+
   /**
    * A data flow source node for polynomial regular expression denial-of-service vulnerabilities.
    */
diff --git a/ruby/ql/lib/codeql/ruby/security/regexp/RegexpMatching.qll b/ruby/ql/lib/codeql/ruby/security/regexp/RegexpMatching.qll
index e2c75ff980b..572d42d9617 100644
--- a/ruby/ql/lib/codeql/ruby/security/regexp/RegexpMatching.qll
+++ b/ruby/ql/lib/codeql/ruby/security/regexp/RegexpMatching.qll
@@ -3,155 +3,7 @@
  * and for testing which capture groups are filled when a particular regexp matches a string.
  */
 
-import NfaUtils
-
-/** A root term */
-class RootTerm extends RegExpTerm {
-  RootTerm() { this.isRootTerm() }
-}
-
-/**
- * Holds if it should be tested whether `root` matches `str`.
- *
- * If `ignorePrefix` is true, then a regexp without a start anchor will be treated as if it had a start anchor.
- * E.g. a regular expression `/foo$/` will match any string that ends with "foo",
- * but if `ignorePrefix` is true, it will only match "foo".
- *
- * If `testWithGroups` is true, then the `RegexpMatching::fillsCaptureGroup` predicate can be used to determine which capture
- * groups are filled by a string.
- */
-signature predicate isRegexpMatchingCandidateSig(
-  RootTerm root, string str, boolean ignorePrefix, boolean testWithGroups
-);
-
-/**
- * A module for determining if a regexp matches a given string,
- * and reasoning about which capture groups are filled by a given string.
- *
- * The module parameter `isCandidate` determines which strings should be tested,
- * and the results can be read from the `matches` and `fillsCaptureGroup` predicates.
- */
-module RegexpMatching<isRegexpMatchingCandidateSig/4 isCandidate> {
-  /**
-   * Gets a state the regular expression `reg` can be in after matching the `i`th char in `str`.
-   * The regular expression is modeled as a non-determistic finite automaton,
-   * the regular expression can therefore be in multiple states after matching a character.
-   *
-   * It's a forward search to all possible states, and there is thus no guarantee that the state is on a path to an accepting state.
-   */
-  private State getAState(RootTerm reg, int i, string str, boolean ignorePrefix) {
-    // start state, the -1 position before any chars have been matched
-    i = -1 and
-    isCandidate(reg, str, ignorePrefix, _) and
-    result.getRepr().getRootTerm() = reg and
-    isStartState(result)
-    or
-    // recursive case
-    result = getAStateAfterMatching(reg, _, str, i, _, ignorePrefix)
-  }
-
-  /**
-   * Gets the next state after the `prev` state from `reg`.
-   * `prev` is the state after matching `fromIndex` chars in `str`,
-   * and the result is the state after matching `toIndex` chars in `str`.
-   *
-   * This predicate is used as a step relation in the forwards search (`getAState`),
-   * and also as a step relation in the later backwards search (`getAStateThatReachesAccept`).
-   */
-  private State getAStateAfterMatching(
-    RootTerm reg, State prev, string str, int toIndex, int fromIndex, boolean ignorePrefix
-  ) {
-    // the basic recursive case - outlined into a noopt helper to make performance work out.
-    result = getAStateAfterMatchingAux(reg, prev, str, toIndex, fromIndex, ignorePrefix)
-    or
-    // we can skip past word boundaries if the next char is a non-word char.
-    fromIndex = toIndex and
-    prev.getRepr() instanceof RegExpWordBoundary and
-    prev = getAState(reg, toIndex, str, ignorePrefix) and
-    after(prev.getRepr()) = result and
-    str.charAt(toIndex + 1).regexpMatch("\\W") // \W matches any non-word char.
-  }
-
-  pragma[noopt]
-  private State getAStateAfterMatchingAux(
-    RootTerm reg, State prev, string str, int toIndex, int fromIndex, boolean ignorePrefix
-  ) {
-    prev = getAState(reg, fromIndex, str, ignorePrefix) and
-    fromIndex = toIndex - 1 and
-    exists(string char | char = str.charAt(toIndex) | specializedDeltaClosed(prev, char, result)) and
-    not discardedPrefixStep(prev, result, ignorePrefix)
-  }
-
-  /** Holds if a step from `prev` to `next` should be discarded when the `ignorePrefix` flag is set. */
-  private predicate discardedPrefixStep(State prev, State next, boolean ignorePrefix) {
-    prev = mkMatch(any(RegExpRoot r)) and
-    ignorePrefix = true and
-    next = prev
-  }
-
-  // The `deltaClosed` relation specialized to the chars that exists in strings tested by a `MatchedRegExp`.
-  private predicate specializedDeltaClosed(State prev, string char, State next) {
-    deltaClosed(prev, specializedGetAnInputSymbolMatching(char), next)
-  }
-
-  // The `getAnInputSymbolMatching` relation specialized to the chars that exists in strings tested by a `MatchedRegExp`.
-  pragma[noinline]
-  private InputSymbol specializedGetAnInputSymbolMatching(string char) {
-    exists(string s, RootTerm r | isCandidate(r, s, _, _) | char = s.charAt(_)) and
-    result = getAnInputSymbolMatching(char)
-  }
-
-  /**
-   * Gets the `i`th state on a path to the accepting state when `reg` matches `str`.
-   * Starts with an accepting state as found by `getAState` and searches backwards
-   * to the start state through the reachable states (as found by `getAState`).
-   *
-   * This predicate satisfies the invariant that the result state can be reached with `i` steps from a start state,
-   * and an accepting state can be found after (`str.length() - 1 - i`) steps from the result.
-   * The result state is therefore always on a valid path where `reg` accepts `str`.
-   *
-   * This predicate is only used to find which capture groups a regular expression has filled,
-   * and thus the search is only performed for the strings in the `testWithGroups(..)` predicate.
-   */
-  private State getAStateThatReachesAccept(RootTerm reg, int i, string str, boolean ignorePrefix) {
-    // base case, reaches an accepting state from the last state in `getAState(..)`
-    isCandidate(reg, str, ignorePrefix, true) and
-    i = str.length() - 1 and
-    result = getAState(reg, i, str, ignorePrefix) and
-    epsilonSucc*(result) = Accept(_)
-    or
-    // recursive case. `next` is the next state to be matched after matching `prev`.
-    // this predicate is doing a backwards search, so `prev` is the result we are looking for.
-    exists(State next, State prev, int fromIndex, int toIndex |
-      next = getAStateThatReachesAccept(reg, toIndex, str, ignorePrefix) and
-      next = getAStateAfterMatching(reg, prev, str, toIndex, fromIndex, ignorePrefix) and
-      i = fromIndex and
-      result = prev
-    )
-  }
-
-  /** Gets the capture group number that `term` belongs to. */
-  private int group(RegExpTerm term) {
-    exists(RegExpGroup grp | grp.getNumber() = result | term.getParent*() = grp)
-  }
-
-  /**
-   * Holds if `reg` matches `str`, where `str` is in the `isCandidate` predicate.
-   */
-  predicate matches(RootTerm reg, string str) {
-    exists(State state | state = getAState(reg, str.length() - 1, str, _) |
-      epsilonSucc*(state) = Accept(_)
-    )
-  }
-
-  /**
-   * Holds if matching `str` against `reg` may fill capture group number `g`.
-   * Only holds if `str` is in the `testWithGroups` predicate.
-   */
-  predicate fillsCaptureGroup(RootTerm reg, string str, int g) {
-    exists(State s |
-      s = getAStateThatReachesAccept(reg, _, str, _) and
-      g = group(s.getRepr())
-    )
-  }
-}
+private import codeql.ruby.regexp.RegExpTreeView::RegexTreeView as TreeView
+// RegexpMatching should be used directly from the shared pack, and not from this file.
+deprecated import codeql.regex.nfa.RegexpMatching::Make<TreeView> as Dep
+import Dep
diff --git a/ruby/ql/lib/codeql/ruby/security/regexp/SuperlinearBackTracking.qll b/ruby/ql/lib/codeql/ruby/security/regexp/SuperlinearBackTracking.qll
index 14a69dc0644..eb19b0cc772 100644
--- a/ruby/ql/lib/codeql/ruby/security/regexp/SuperlinearBackTracking.qll
+++ b/ruby/ql/lib/codeql/ruby/security/regexp/SuperlinearBackTracking.qll
@@ -1,11 +1,4 @@
 /**
- * Provides classes for working with regular expressions that can
- * perform backtracking in superlinear time.
- */
-
-import NfaUtils
-
-/*
  * This module implements the analysis described in the paper:
  *   Valentin Wustholz, Oswaldo Olivo, Marijn J. H. Heule, and Isil Dillig:
  *     Static Detection of DoS Vulnerabilities in
@@ -42,377 +35,7 @@ import NfaUtils
  * It also doesn't find all transitions in the product automaton, which can cause false negatives.
  */
 
-/**
- * Gets any root (start) state of a regular expression.
- */
-private State getRootState() { result = mkMatch(any(RegExpRoot r)) }
-
-private newtype TStateTuple =
-  MkStateTuple(State q1, State q2, State q3) {
-    // starts at (pivot, pivot, succ)
-    isStartLoops(q1, q3) and q1 = q2
-    or
-    step(_, _, _, _, q1, q2, q3) and FeasibleTuple::isFeasibleTuple(q1, q2, q3)
-  }
-
-/**
- * A state in the product automaton.
- * The product automaton contains 3-tuples of states.
- *
- * We lazily only construct those states that we are actually
- * going to need.
- * Either a start state `(pivot, pivot, succ)`, or a state
- * where there exists a transition from an already existing state.
- *
- * The exponential variant of this query (`js/redos`) uses an optimization
- * trick where `q1 <= q2`. This trick cannot be used here as the order
- * of the elements matter.
- */
-class StateTuple extends TStateTuple {
-  State q1;
-  State q2;
-  State q3;
-
-  StateTuple() { this = MkStateTuple(q1, q2, q3) }
-
-  /**
-   * Gest a string representation of this tuple.
-   */
-  string toString() { result = "(" + q1 + ", " + q2 + ", " + q3 + ")" }
-
-  /**
-   * Holds if this tuple is `(r1, r2, r3)`.
-   */
-  pragma[noinline]
-  predicate isTuple(State r1, State r2, State r3) { r1 = q1 and r2 = q2 and r3 = q3 }
-}
-
-/**
- * A module for determining feasible tuples for the product automaton.
- *
- * The implementation is split into many predicates for performance reasons.
- */
-private module FeasibleTuple {
-  /**
-   * Holds if the tuple `(r1, r2, r3)` might be on path from a start-state to an end-state in the product automaton.
-   */
-  pragma[inline]
-  predicate isFeasibleTuple(State r1, State r2, State r3) {
-    // The first element is either inside a repetition (or the start state itself)
-    isRepetitionOrStart(r1) and
-    // The last element is inside a repetition
-    stateInsideRepetition(r3) and
-    // The states are reachable in the NFA in the order r1 -> r2 -> r3
-    delta+(r1) = r2 and
-    delta+(r2) = r3 and
-    // The first element can reach a beginning (the "pivot" state in a `(pivot, succ)` pair).
-    canReachABeginning(r1) and
-    // The last element can reach a target (the "succ" state in a `(pivot, succ)` pair).
-    canReachATarget(r3)
-  }
-
-  /**
-   * Holds if `s` is either inside a repetition, or is the start state (which is a repetition).
-   */
-  pragma[noinline]
-  private predicate isRepetitionOrStart(State s) { stateInsideRepetition(s) or s = getRootState() }
-
-  /**
-   * Holds if state `s` might be inside a backtracking repetition.
-   */
-  pragma[noinline]
-  private predicate stateInsideRepetition(State s) {
-    s.getRepr().getParent*() instanceof InfiniteRepetitionQuantifier
-  }
-
-  /**
-   * Holds if there exists a path in the NFA from `s` to a "pivot" state
-   * (from a `(pivot, succ)` pair that starts the search).
-   */
-  pragma[noinline]
-  private predicate canReachABeginning(State s) {
-    delta+(s) = any(State pivot | isStartLoops(pivot, _))
-  }
-
-  /**
-   * Holds if there exists a path in the NFA from `s` to a "succ" state
-   * (from a `(pivot, succ)` pair that starts the search).
-   */
-  pragma[noinline]
-  private predicate canReachATarget(State s) { delta+(s) = any(State succ | isStartLoops(_, succ)) }
-}
-
-/**
- * Holds if `pivot` and `succ` are a pair of loops that could be the beginning of a quadratic blowup.
- *
- * There is a slight implementation difference compared to the paper: this predicate requires that `pivot != succ`.
- * The case where `pivot = succ` causes exponential backtracking and is handled by the `js/redos` query.
- */
-predicate isStartLoops(State pivot, State succ) {
-  pivot != succ and
-  succ.getRepr() instanceof InfiniteRepetitionQuantifier and
-  delta+(pivot) = succ and
-  (
-    pivot.getRepr() instanceof InfiniteRepetitionQuantifier
-    or
-    pivot = mkMatch(any(RegExpRoot root))
-  )
-}
-
-/**
- * Gets a state for which there exists a transition in the NFA from `s'.
- */
-State delta(State s) { delta(s, _, result) }
-
-/**
- * Holds if there are transitions from the components of `q` to the corresponding
- * components of `r` labelled with `s1`, `s2`, and `s3`, respectively.
- */
-pragma[noinline]
-predicate step(StateTuple q, InputSymbol s1, InputSymbol s2, InputSymbol s3, StateTuple r) {
-  exists(State r1, State r2, State r3 |
-    step(q, s1, s2, s3, r1, r2, r3) and r = MkStateTuple(r1, r2, r3)
-  )
-}
-
-/**
- * Holds if there are transitions from the components of `q` to `r1`, `r2`, and `r3
- * labelled with `s1`, `s2`, and `s3`, respectively.
- */
-pragma[noopt]
-predicate step(
-  StateTuple q, InputSymbol s1, InputSymbol s2, InputSymbol s3, State r1, State r2, State r3
-) {
-  exists(State q1, State q2, State q3 | q.isTuple(q1, q2, q3) |
-    deltaClosed(q1, s1, r1) and
-    deltaClosed(q2, s2, r2) and
-    deltaClosed(q3, s3, r3) and
-    // use noopt to force the join on `getAThreewayIntersect` to happen last.
-    exists(getAThreewayIntersect(s1, s2, s3))
-  )
-}
-
-/**
- * Gets a char that is matched by all the edges `s1`, `s2`, and `s3`.
- *
- * The result is not complete, and might miss some combination of edges that share some character.
- */
-pragma[noinline]
-string getAThreewayIntersect(InputSymbol s1, InputSymbol s2, InputSymbol s3) {
-  result = minAndMaxIntersect(s1, s2) and result = [intersect(s2, s3), intersect(s1, s3)]
-  or
-  result = minAndMaxIntersect(s1, s3) and result = [intersect(s2, s3), intersect(s1, s2)]
-  or
-  result = minAndMaxIntersect(s2, s3) and result = [intersect(s1, s2), intersect(s1, s3)]
-}
-
-/**
- * Gets the minimum and maximum characters that intersect between `a` and `b`.
- * This predicate is used to limit the size of `getAThreewayIntersect`.
- */
-pragma[noinline]
-string minAndMaxIntersect(InputSymbol a, InputSymbol b) {
-  result = [min(intersect(a, b)), max(intersect(a, b))]
-}
-
-private newtype TTrace =
-  Nil() or
-  Step(InputSymbol s1, InputSymbol s2, InputSymbol s3, TTrace t) {
-    isReachableFromStartTuple(_, _, t, s1, s2, s3, _, _)
-  }
-
-/**
- * A list of tuples of input symbols that describe a path in the product automaton
- * starting from some start state.
- */
-class Trace extends TTrace {
-  /**
-   * Gets a string representation of this Trace that can be used for debug purposes.
-   */
-  string toString() {
-    this = Nil() and result = "Nil()"
-    or
-    exists(InputSymbol s1, InputSymbol s2, InputSymbol s3, Trace t | this = Step(s1, s2, s3, t) |
-      result = "Step(" + s1 + ", " + s2 + ", " + s3 + ", " + t + ")"
-    )
-  }
-}
-
-/**
- * Holds if there exists a transition from `r` to `q` in the product automaton.
- * Notice that the arguments are flipped, and thus the direction is backwards.
- */
-pragma[noinline]
-predicate tupleDeltaBackwards(StateTuple q, StateTuple r) { step(r, _, _, _, q) }
-
-/**
- * Holds if `tuple` is an end state in our search.
- * That means there exists a pair of loops `(pivot, succ)` such that `tuple = (pivot, succ, succ)`.
- */
-predicate isEndTuple(StateTuple tuple) { tuple = getAnEndTuple(_, _) }
-
-/**
- * Gets the minimum length of a path from `r` to some an end state `end`.
- *
- * The implementation searches backwards from the end-tuple.
- * This approach was chosen because it is way more efficient if the first predicate given to `shortestDistances` is small.
- * The `end` argument must always be an end state.
- */
-int distBackFromEnd(StateTuple r, StateTuple end) =
-  shortestDistances(isEndTuple/1, tupleDeltaBackwards/2)(end, r, result)
-
-/**
- * Holds if there exists a pair of repetitions `(pivot, succ)` in the regular expression such that:
- * `tuple` is reachable from `(pivot, pivot, succ)` in the product automaton,
- * and there is a distance of `dist` from `tuple` to the nearest end-tuple `(pivot, succ, succ)`,
- * and a path from a start-state to `tuple` follows the transitions in `trace`.
- */
-private predicate isReachableFromStartTuple(
-  State pivot, State succ, StateTuple tuple, Trace trace, int dist
-) {
-  exists(InputSymbol s1, InputSymbol s2, InputSymbol s3, Trace v |
-    isReachableFromStartTuple(pivot, succ, v, s1, s2, s3, tuple, dist) and
-    trace = Step(s1, s2, s3, v)
-  )
-}
-
-private predicate isReachableFromStartTuple(
-  State pivot, State succ, Trace trace, InputSymbol s1, InputSymbol s2, InputSymbol s3,
-  StateTuple tuple, int dist
-) {
-  // base case.
-  exists(State q1, State q2, State q3 |
-    isStartLoops(pivot, succ) and
-    step(MkStateTuple(pivot, pivot, succ), s1, s2, s3, tuple) and
-    tuple = MkStateTuple(q1, q2, q3) and
-    trace = Nil() and
-    dist = distBackFromEnd(tuple, MkStateTuple(pivot, succ, succ))
-  )
-  or
-  // recursive case
-  exists(StateTuple p |
-    isReachableFromStartTuple(pivot, succ, p, trace, dist + 1) and
-    dist = distBackFromEnd(tuple, MkStateTuple(pivot, succ, succ)) and
-    step(p, s1, s2, s3, tuple)
-  )
-}
-
-/**
- * Gets the tuple `(pivot, succ, succ)` from the product automaton.
- */
-StateTuple getAnEndTuple(State pivot, State succ) {
-  isStartLoops(pivot, succ) and
-  result = MkStateTuple(pivot, succ, succ)
-}
-
-/** An implementation of a chain containing chars for use by `Concretizer`. */
-private module CharTreeImpl implements CharTree {
-  class CharNode = Trace;
-
-  CharNode getPrev(CharNode t) { t = Step(_, _, _, result) }
-
-  /** Holds if `n` is used in `isPumpable`. */
-  predicate isARelevantEnd(CharNode n) {
-    exists(State pivot, State succ |
-      isReachableFromStartTuple(pivot, succ, getAnEndTuple(pivot, succ), n, _)
-    )
-  }
-
-  string getChar(CharNode t) {
-    exists(InputSymbol s1, InputSymbol s2, InputSymbol s3 | t = Step(s1, s2, s3, _) |
-      result = getAThreewayIntersect(s1, s2, s3)
-    )
-  }
-}
-
-/**
- * Holds if matching repetitions of `pump` can:
- * 1) Transition from `pivot` back to `pivot`.
- * 2) Transition from `pivot` to `succ`.
- * 3) Transition from `succ` to `succ`.
- *
- * From theorem 3 in the paper linked in the top of this file we can therefore conclude that
- * the regular expression has polynomial backtracking - if a rejecting suffix exists.
- *
- * This predicate is used by `SuperLinearReDoSConfiguration`, and the final results are
- * available in the `hasReDoSResult` predicate.
- */
-predicate isPumpable(State pivot, State succ, string pump) {
-  exists(StateTuple q, Trace t |
-    isReachableFromStartTuple(pivot, succ, q, t, _) and
-    q = getAnEndTuple(pivot, succ) and
-    pump = Concretizer<CharTreeImpl>::concretize(t)
-  )
-}
-
-/**
- * Holds if states starting in `state` can have polynomial backtracking with the string `pump`.
- */
-predicate isReDoSCandidate(State state, string pump) { isPumpable(_, state, pump) }
-
-/**
- * Holds if repetitions of `pump` at `t` will cause polynomial backtracking.
- */
-predicate polynomialReDoS(RegExpTerm t, string pump, string prefixMsg, RegExpTerm prev) {
-  exists(State s, State pivot |
-    ReDoSPruning<isReDoSCandidate/2>::hasReDoSResult(t, pump, s, prefixMsg) and
-    isPumpable(pivot, s, _) and
-    prev = pivot.getRepr()
-  )
-}
-
-/**
- * Gets a message for why `term` can cause polynomial backtracking.
- */
-string getReasonString(RegExpTerm term, string pump, string prefixMsg, RegExpTerm prev) {
-  polynomialReDoS(term, pump, prefixMsg, prev) and
-  result =
-    "Strings " + prefixMsg + "with many repetitions of '" + pump +
-      "' can start matching anywhere after the start of the preceeding " + prev
-}
-
-/**
- * A term that may cause a regular expression engine to perform a
- * polynomial number of match attempts, relative to the input length.
- */
-class PolynomialBackTrackingTerm extends InfiniteRepetitionQuantifier {
-  string reason;
-  string pump;
-  string prefixMsg;
-  RegExpTerm prev;
-
-  PolynomialBackTrackingTerm() {
-    reason = getReasonString(this, pump, prefixMsg, prev) and
-    // there might be many reasons for this term to have polynomial backtracking - we pick the shortest one.
-    reason = min(string msg | msg = getReasonString(this, _, _, _) | msg order by msg.length(), msg)
-  }
-
-  /**
-   * Holds if all non-empty successors to the polynomial backtracking term matches the end of the line.
-   */
-  predicate isAtEndLine() {
-    forall(RegExpTerm succ | this.getSuccessor+() = succ and not matchesEpsilon(succ) |
-      succ instanceof RegExpDollar
-    )
-  }
-
-  /**
-   * Gets the string that should be repeated to cause this regular expression to perform polynomially.
-   */
-  string getPumpString() { result = pump }
-
-  /**
-   * Gets a message for which prefix a matching string must start with for this term to cause polynomial backtracking.
-   */
-  string getPrefixMessage() { result = prefixMsg }
-
-  /**
-   * Gets a predecessor to `this`, which also loops on the pump string, and thereby causes polynomial backtracking.
-   */
-  RegExpTerm getPreviousLoop() { result = prev }
-
-  /**
-   * Gets the reason for the number of match attempts.
-   */
-  string getReason() { result = reason }
-}
+private import codeql.ruby.regexp.RegExpTreeView::RegexTreeView as TreeView
+// SuperlinearBackTracking should be used directly from the shared pack, and not from this file.
+deprecated private import codeql.regex.nfa.SuperlinearBackTracking::Make<TreeView> as Dep
+import Dep
diff --git a/ruby/ql/src/queries/security/cwe-020/OverlyLargeRange.ql b/ruby/ql/src/queries/security/cwe-020/OverlyLargeRange.ql
index 4258ddeda5e..62b088355b5 100644
--- a/ruby/ql/src/queries/security/cwe-020/OverlyLargeRange.ql
+++ b/ruby/ql/src/queries/security/cwe-020/OverlyLargeRange.ql
@@ -12,17 +12,18 @@
  *       external/cwe/cwe-020
  */
 
-import codeql.ruby.security.OverlyLargeRangeQuery
+private import codeql.ruby.regexp.RegExpTreeView::RegexTreeView as TreeView
+import codeql.regex.OverlyLargeRangeQuery::Make<TreeView>
 
-RegExpCharacterClass potentialMisparsedCharClass() {
+TreeView::RegExpCharacterClass potentialMisparsedCharClass() {
   // some escapes, e.g. [\000-\037] are currently misparsed.
-  result.getAChild().(RegExpNormalChar).getValue() = "\\"
+  result.getAChild().(TreeView::RegExpNormalChar).getValue() = "\\"
   or
   // nested char classes are currently misparsed
-  result.getAChild().(RegExpNormalChar).getValue() = "["
+  result.getAChild().(TreeView::RegExpNormalChar).getValue() = "["
 }
 
-from RegExpCharacterRange range, string reason
+from TreeView::RegExpCharacterRange range, string reason
 where
   problem(range, reason) and
   not range.getParent() = potentialMisparsedCharClass()
diff --git a/ruby/ql/src/queries/security/cwe-116/BadTagFilter.ql b/ruby/ql/src/queries/security/cwe-116/BadTagFilter.ql
index 80829e2f062..65edb41fd2f 100644
--- a/ruby/ql/src/queries/security/cwe-116/BadTagFilter.ql
+++ b/ruby/ql/src/queries/security/cwe-116/BadTagFilter.ql
@@ -14,7 +14,8 @@
  *       external/cwe/cwe-186
  */
 
-import codeql.ruby.security.BadTagFilterQuery
+private import codeql.ruby.regexp.RegExpTreeView::RegexTreeView as TreeView
+import codeql.regex.nfa.BadTagFilterQuery::Make<TreeView>
 
 from HtmlMatchingRegExp regexp, string msg
 where msg = min(string m | isBadRegexpFilter(regexp, m) | m order by m.length(), m) // there might be multiple, we arbitrarily pick the shortest one
diff --git a/ruby/ql/src/queries/security/cwe-1333/PolynomialReDoS.ql b/ruby/ql/src/queries/security/cwe-1333/PolynomialReDoS.ql
index b2090431a17..7a78c9d9f25 100644
--- a/ruby/ql/src/queries/security/cwe-1333/PolynomialReDoS.ql
+++ b/ruby/ql/src/queries/security/cwe-1333/PolynomialReDoS.ql
@@ -16,11 +16,10 @@
 import DataFlow::PathGraph
 import codeql.ruby.DataFlow
 import codeql.ruby.security.regexp.PolynomialReDoSQuery
-import codeql.ruby.security.regexp.SuperlinearBackTracking
 
 from
   PolynomialReDoS::Configuration config, DataFlow::PathNode source, DataFlow::PathNode sink,
-  PolynomialReDoS::Sink sinkNode, PolynomialBackTrackingTerm regexp
+  PolynomialReDoS::Sink sinkNode, PolynomialReDoS::PolynomialBackTrackingTerm regexp
 where
   config.hasFlowPath(source, sink) and
   sinkNode = sink.getNode() and
diff --git a/ruby/ql/src/queries/security/cwe-1333/ReDoS.ql b/ruby/ql/src/queries/security/cwe-1333/ReDoS.ql
index 2bdbfb7ca38..355caeddca8 100644
--- a/ruby/ql/src/queries/security/cwe-1333/ReDoS.ql
+++ b/ruby/ql/src/queries/security/cwe-1333/ReDoS.ql
@@ -14,11 +14,10 @@
  *       external/cwe/cwe-400
  */
 
-import codeql.ruby.security.regexp.ExponentialBackTracking
-import codeql.ruby.security.regexp.NfaUtils
-import codeql.ruby.Regexp
+private import codeql.ruby.regexp.RegExpTreeView::RegexTreeView as TreeView
+import codeql.regex.nfa.ExponentialBackTracking::Make<TreeView>
 
-from RegExpTerm t, string pump, State s, string prefixMsg
+from TreeView::RegExpTerm t, string pump, State s, string prefixMsg
 where hasReDoSResult(t, pump, s, prefixMsg)
 select t,
   "This part of the regular expression may cause exponential backtracking on strings " + prefixMsg +

From 860c3c443c605711f7023d9b4dd262c23878d724 Mon Sep 17 00:00:00 2001
From: erik-krogh <erik-krogh@github.com>
Date: Tue, 1 Nov 2022 11:47:51 +0100
Subject: [PATCH 0088/1420] update expected output of the queries (some sorting
 changed due to locations being used slightly differently in the shared pack)

---
 .../cwe-1333-exponential-redos/ReDoS.expected     | 15 +++++++--------
 1 file changed, 7 insertions(+), 8 deletions(-)

diff --git a/ruby/ql/test/query-tests/security/cwe-1333-exponential-redos/ReDoS.expected b/ruby/ql/test/query-tests/security/cwe-1333-exponential-redos/ReDoS.expected
index 11212e3d806..ee274031bf0 100644
--- a/ruby/ql/test/query-tests/security/cwe-1333-exponential-redos/ReDoS.expected
+++ b/ruby/ql/test/query-tests/security/cwe-1333-exponential-redos/ReDoS.expected
@@ -1,5 +1,5 @@
 | tst.rb:4:14:4:28 | (?:__\|[\\s\\S])+? | This part of the regular expression may cause exponential backtracking on strings containing many repetitions of '__'. |
-| tst.rb:4:38:4:54 | (?:\\*\\*\|[\\s\\S])+? | This part of the regular expression may cause exponential backtracking on strings containing many repetitions of '**'. |
+| tst.rb:4:38:4:54 | (?:\\*\\*\|[\\s\\S])+? | This part of the regular expression may cause exponential backtracking on strings starting with '*' and containing many repetitions of '**'. |
 | tst.rb:19:20:19:39 | (?:[^"\\\\]\|\\\\\\\\\|\\\\.)+ | This part of the regular expression may cause exponential backtracking on strings containing many repetitions of '\\\\\\\\'. |
 | tst.rb:19:43:19:62 | (?:[^'\\\\]\|\\\\\\\\\|\\\\.)+ | This part of the regular expression may cause exponential backtracking on strings containing many repetitions of '\\\\\\\\'. |
 | tst.rb:19:67:19:86 | (?:[^)\\\\]\|\\\\\\\\\|\\\\.)+ | This part of the regular expression may cause exponential backtracking on strings containing many repetitions of '\\\\\\\\'. |
@@ -49,7 +49,6 @@
 | tst.rb:194:77:194:78 | ,? | This part of the regular expression may cause exponential backtracking on strings starting with '{[A(A)A: ' and containing many repetitions of ',A: '. |
 | tst.rb:197:11:197:12 | a+ | This part of the regular expression may cause exponential backtracking on strings containing many repetitions of 'a'. |
 | tst.rb:197:14:197:15 | b+ | This part of the regular expression may cause exponential backtracking on strings containing many repetitions of 'b'. |
-| tst.rb:200:12:200:18 | (a+a?)* | This part of the regular expression may cause exponential backtracking on strings containing many repetitions of 'a'. |
 | tst.rb:200:13:200:14 | a+ | This part of the regular expression may cause exponential backtracking on strings containing many repetitions of 'a'. |
 | tst.rb:203:11:203:12 | a+ | This part of the regular expression may cause exponential backtracking on strings containing many repetitions of 'a'. |
 | tst.rb:209:11:209:12 | a+ | This part of the regular expression may cause exponential backtracking on strings containing many repetitions of 'a'. |
@@ -67,16 +66,16 @@
 | tst.rb:260:10:260:73 | (thisisagoddamnlongstringforstresstestingthequery\|this\\w+query)* | This part of the regular expression may cause exponential backtracking on strings containing many repetitions of 'thisisagoddamnlongstringforstresstestingthequery'. |
 | tst.rb:260:64:260:66 | \\w+ | This part of the regular expression may cause exponential backtracking on strings starting with 'this' and containing many repetitions of '0querythis'. |
 | tst.rb:272:17:272:18 | b+ | This part of the regular expression may cause exponential backtracking on strings containing many repetitions of 'b'. |
-| tst.rb:275:34:275:36 | \\s* | This part of the regular expression may cause exponential backtracking on strings containing many repetitions of '""\\t0='. |
+| tst.rb:275:34:275:36 | \\s* | This part of the regular expression may cause exponential backtracking on strings starting with '<0\\t0=' and containing many repetitions of '""\\t0='. |
 | tst.rb:281:12:281:13 | a+ | This part of the regular expression may cause exponential backtracking on strings containing many repetitions of 'a'. |
 | tst.rb:284:12:284:13 | a+ | This part of the regular expression may cause exponential backtracking on strings containing many repetitions of 'a'. |
 | tst.rb:290:12:290:13 | a+ | This part of the regular expression may cause exponential backtracking on strings containing many repetitions of 'a'. |
 | tst.rb:293:21:293:22 | a+ | This part of the regular expression may cause exponential backtracking on strings containing many repetitions of 'a'. |
-| tst.rb:299:86:299:87 | e+ | This part of the regular expression may cause exponential backtracking on strings starting with ';00000000000000' and containing many repetitions of 'e'. |
+| tst.rb:299:86:299:87 | e+ | This part of the regular expression may cause exponential backtracking on strings starting with '00000000000000' and containing many repetitions of 'e'. |
 | tst.rb:302:14:302:15 | c+ | This part of the regular expression may cause exponential backtracking on strings starting with 'ab' and containing many repetitions of 'c'. |
 | tst.rb:305:14:305:16 | \\s+ | This part of the regular expression may cause exponential backtracking on strings containing many repetitions of '\\t'. |
 | tst.rb:308:12:308:21 | ([^\\/]\|X)+ | This part of the regular expression may cause exponential backtracking on strings containing many repetitions of 'X'. |
-| tst.rb:311:16:311:20 | [^Y]+ | This part of the regular expression may cause exponential backtracking on strings containing many repetitions of 'Xx'. |
+| tst.rb:311:16:311:20 | [^Y]+ | This part of the regular expression may cause exponential backtracking on strings starting with 'x' and containing many repetitions of 'Xx'. |
 | tst.rb:314:11:314:12 | a* | This part of the regular expression may cause exponential backtracking on strings containing many repetitions of 'a'. |
 | tst.rb:317:14:317:19 | [\\w-]* | This part of the regular expression may cause exponential backtracking on strings starting with 'foo' and containing many repetitions of '-'. |
 | tst.rb:320:11:320:15 | (ab)* | This part of the regular expression may cause exponential backtracking on strings containing many repetitions of 'ab'. |
@@ -93,9 +92,9 @@
 | tst.rb:361:11:361:29 | ((?:a{0\|-)\|\\w\\{\\d)+ | This part of the regular expression may cause exponential backtracking on strings containing many repetitions of 'a{0'. |
 | tst.rb:362:11:362:31 | ((?:a{0,\|-)\|\\w\\{\\d,)+ | This part of the regular expression may cause exponential backtracking on strings containing many repetitions of 'a{0,'. |
 | tst.rb:363:11:363:34 | ((?:a{0,2\|-)\|\\w\\{\\d,\\d)+ | This part of the regular expression may cause exponential backtracking on strings containing many repetitions of 'a{0,2'. |
-| tst.rb:369:12:369:22 | (\\u0061\|a)* | This part of the regular expression may cause exponential backtracking on strings containing many repetitions of 'a'. |
+| tst.rb:369:12:369:22 | (\\u0061\|a)* | This part of the regular expression may cause exponential backtracking on strings starting with 'X' and containing many repetitions of 'a'. |
 | tst.rb:375:11:375:27 | ([[:digit:]]\|\\d)+ | This part of the regular expression may cause exponential backtracking on strings starting with 'X' and containing many repetitions of '0'. |
 | tst.rb:378:12:378:18 | (a\|\\w)* | This part of the regular expression may cause exponential backtracking on strings containing many repetitions of 'a'. |
 | tst.rb:379:12:379:18 | (a\|\\w)* | This part of the regular expression may cause exponential backtracking on strings containing many repetitions of 'a'. |
-| tst.rb:390:70:390:110 | (?:[a-zA-Z0-9_]\|%[a-fA-F0-9][a-fA-F0-9])+ | This part of the regular expression may cause exponential backtracking on strings containing many repetitions of '0'. |
-| tst.rb:390:98:390:108 | [a-fA-F0-9] | This part of the regular expression may cause exponential backtracking on strings containing many repetitions of '0%0'. |
+| tst.rb:390:70:390:110 | (?:[a-zA-Z0-9_]\|%[a-fA-F0-9][a-fA-F0-9])+ | This part of the regular expression may cause exponential backtracking on strings starting with '0' and containing many repetitions of '0'. |
+| tst.rb:390:98:390:108 | [a-fA-F0-9] | This part of the regular expression may cause exponential backtracking on strings starting with '0%0' and containing many repetitions of '0%0'. |

From f2d980b1327df5a4c0ec2c219285e72d8d9aec78 Mon Sep 17 00:00:00 2001
From: erik-krogh <erik-krogh@github.com>
Date: Tue, 1 Nov 2022 11:48:28 +0100
Subject: [PATCH 0089/1420] update ruby build to include the regex pack (depend
 on #10668)

---
 .github/workflows/ruby-build.yml | 1 +
 1 file changed, 1 insertion(+)

diff --git a/.github/workflows/ruby-build.yml b/.github/workflows/ruby-build.yml
index f7ec215a44a..2c4ddb8a582 100644
--- a/.github/workflows/ruby-build.yml
+++ b/.github/workflows/ruby-build.yml
@@ -97,6 +97,7 @@ jobs:
         run: |
           codeql pack create ../shared/ssa --output target/packs
           codeql pack create ../misc/suite-helpers --output target/packs
+          codeql pack create ../shared/regex --output target/packs
           codeql pack create ql/lib --output target/packs
           codeql pack create ql/src --output target/packs
           PACK_FOLDER=$(readlink -f target/packs/codeql/ruby-queries/*)

From 7a8e7150f06c2dd2d8083784976f89f46f1edcf8 Mon Sep 17 00:00:00 2001
From: erik-krogh <erik-krogh@github.com>
Date: Tue, 1 Nov 2022 11:48:34 +0100
Subject: [PATCH 0090/1420] add change-note

---
 ruby/ql/lib/change-notes/2022-10-31-shared-redos-pack.md | 4 ++++
 1 file changed, 4 insertions(+)
 create mode 100644 ruby/ql/lib/change-notes/2022-10-31-shared-redos-pack.md

diff --git a/ruby/ql/lib/change-notes/2022-10-31-shared-redos-pack.md b/ruby/ql/lib/change-notes/2022-10-31-shared-redos-pack.md
new file mode 100644
index 00000000000..55918160b1f
--- /dev/null
+++ b/ruby/ql/lib/change-notes/2022-10-31-shared-redos-pack.md
@@ -0,0 +1,4 @@
+---
+ category: minorAnalysis
+---
+ * The ReDoS libraries in `codeql.ruby.security.regexp` has been moved to a shared pack inside the `shared/` folder, and the previous location has been deprecated.
\ No newline at end of file

From 8b33e6d175f67ed56998add522dbf82840482e4b Mon Sep 17 00:00:00 2001
From: Mauro Baluda <mbaluda@github.com>
Date: Mon, 7 Nov 2022 16:29:44 +0100
Subject: [PATCH 0091/1420] Improved Hapi support

- server defined by Glue
---
 .../lib/semmle/javascript/frameworks/Hapi.qll | 23 ++++++++++++++++++-
 1 file changed, 22 insertions(+), 1 deletion(-)

diff --git a/javascript/ql/lib/semmle/javascript/frameworks/Hapi.qll b/javascript/ql/lib/semmle/javascript/frameworks/Hapi.qll
index e4bc922951c..58cbe9b1597 100644
--- a/javascript/ql/lib/semmle/javascript/frameworks/Hapi.qll
+++ b/javascript/ql/lib/semmle/javascript/frameworks/Hapi.qll
@@ -9,10 +9,21 @@ module Hapi {
   /**
    * An expression that creates a new Hapi server.
    */
-  class ServerDefinition extends Http::Servers::StandardServerDefinition, DataFlow::NewNode {
+  class ServerDefinition extends Http::Servers::StandardServerDefinition, DataFlow::Node {
     ServerDefinition() {
       // `server = new Hapi.Server()`
       this = DataFlow::moduleMember("hapi", "Server").getAnInstantiation()
+      or
+      // server = Glue.compose(manifest, composeOptions)
+      this = DataFlow::moduleMember("@hapi/glue", "compose").getAnInvocation()
+      or
+      // server inside a plugin
+      // TODO match `function (server, options)`
+      exists(Function f |
+        this.(DataFlow::ParameterNode).getParameter() = f.getParameter(0) and
+        f.getParameter(0).getName() = "server" and
+        f.getParameter(1).getName() = "options"
+      )
     }
   }
 
@@ -209,6 +220,16 @@ module Hapi {
         // server.ext('/', fun)
         this.getMethodName() = "ext" and
         handler = this.getArgument(1)
+        or
+        // server.route([{ handler(request){}])
+        this.getMethodName() = "route" and
+        handler =
+          this.getArgument(0)
+              .(DataFlow::ArrayLiteralNode)
+              .getAnElement()
+              .(DataFlow::ObjectLiteralNode)
+              .getAPropertySource("handler")
+              .getAFunctionValue()
       )
     }
 

From 7c515bbef7d63c2e9dbf944e37e20f531f9981dc Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Nora=20Dimitrijevi=C4=87?= <d10c@users.noreply.github.com>
Date: Mon, 7 Nov 2022 18:02:06 +0100
Subject: [PATCH 0092/1420] Swift: `_` as in `_ = ...` is a CFG leaf node.

This enables DataFlow to skip over it and not get stuck.
---
 .../swift/controlflow/internal/ControlFlowGraphImpl.qll   | 8 ++++++++
 1 file changed, 8 insertions(+)

diff --git a/swift/ql/lib/codeql/swift/controlflow/internal/ControlFlowGraphImpl.qll b/swift/ql/lib/codeql/swift/controlflow/internal/ControlFlowGraphImpl.qll
index e4f9c40d892..47b926f10af 100644
--- a/swift/ql/lib/codeql/swift/controlflow/internal/ControlFlowGraphImpl.qll
+++ b/swift/ql/lib/codeql/swift/controlflow/internal/ControlFlowGraphImpl.qll
@@ -1015,6 +1015,14 @@ module Decls {
 
 module Exprs {
   module AssignExprs {
+    /**
+     * The control-flow of a `DiscardAssignmentExpr`, which represents the
+     * `_` leaf expression that may appear on the left-hand side of an `AssignExpr`.
+     */
+    private class DiscardAssignmentExprTree extends AstLeafTree {
+      override DiscardAssignmentExpr ast;
+    }
+
     /**
      * The control-flow of an assignment operation.
      *

From 66291d35755ca35ea98440fdc85e03b974ffc783 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Nora=20Dimitrijevi=C4=87?= <d10c@users.noreply.github.com>
Date: Tue, 8 Nov 2022 11:09:55 +0100
Subject: [PATCH 0093/1420] Swift: sync tests pass with additional flow steps

TODO: Convert those flow steps to taint flow models in the library.
---
 .../queries/Security/CWE-094/UnsafeJsEval.ql  | 53 +++++++++++-
 .../Security/CWE-094/UnsafeJsEval.expected    | 84 +++++++++++++++++++
 .../Security/CWE-094/UnsafeJsEval.swift       | 57 +++++++++----
 3 files changed, 176 insertions(+), 18 deletions(-)

diff --git a/swift/ql/src/queries/Security/CWE-094/UnsafeJsEval.ql b/swift/ql/src/queries/Security/CWE-094/UnsafeJsEval.ql
index fff05671313..f5c444ff5e3 100644
--- a/swift/ql/src/queries/Security/CWE-094/UnsafeJsEval.ql
+++ b/swift/ql/src/queries/Security/CWE-094/UnsafeJsEval.ql
@@ -94,8 +94,57 @@ class UnsafeJsEvalConfig extends TaintTracking::Configuration {
 
   override predicate isSink(DataFlow::Node node) { node instanceof Sink }
 
-  override predicate isSanitizer(DataFlow::Node node) {
-    none() // TODO: A conversion to a primitive type or an enum
+  // TODO: convert to new taint flow models
+  override predicate isAdditionalTaintStep(DataFlow::Node nodeFrom, DataFlow::Node nodeTo) {
+    exists(Argument arg |
+      arg =
+        any(CallExpr ce |
+          ce.getStaticTarget()
+              .(MethodDecl)
+              .hasQualifiedName("WKUserScript",
+                [
+                  "init(source:injectionTime:forMainFrameOnly:)",
+                  "init(source:injectionTime:forMainFrameOnly:in:)"
+                ])
+        ).getArgument(0)
+      or
+      arg =
+        any(CallExpr ce |
+          ce.getStaticTarget()
+              .(FreeFunctionDecl)
+              .hasName([
+                  "JSStringCreateWithUTF8CString(_:)", "JSStringCreateWithCharacters(_:_:)",
+                  "JSStringRetain(_:)"
+                ])
+        ).getArgument(0)
+    |
+      nodeFrom.asExpr() = arg.getExpr() and
+      nodeTo.asExpr() = arg.getApplyExpr()
+    )
+    or
+    exists(CallExpr ce, Expr self, AbstractClosureExpr closure |
+      ce.getStaticTarget()
+          .getName()
+          .matches(["withContiguousStorageIfAvailable(%)", "withUnsafeBufferPointer(%)"]) and
+      self = ce.getQualifier() and
+      ce.getArgument(0).getExpr() = closure
+    |
+      nodeFrom.asExpr() = self and
+      nodeTo.(DataFlow::ParameterNode).getParameter() = closure.getParam(0)
+    )
+    or
+    exists(MemberRefExpr e, Expr self, VarDecl member |
+      self.getType().getName() = "String" and
+      member.getName() = ["utf16", "utf8CString"]
+      or
+      self.getType().getName().matches(["Unsafe%Buffer%", "Unsafe%Pointer%"]) and
+      member.getName() = ["baseAddress"]
+    |
+      e.getBase() = self and
+      e.getMember() = member and
+      nodeFrom.asExpr() = self and
+      nodeTo.asExpr() = e
+    )
   }
 }
 
diff --git a/swift/ql/test/query-tests/Security/CWE-094/UnsafeJsEval.expected b/swift/ql/test/query-tests/Security/CWE-094/UnsafeJsEval.expected
index e69de29bb2d..0e678737720 100644
--- a/swift/ql/test/query-tests/Security/CWE-094/UnsafeJsEval.expected
+++ b/swift/ql/test/query-tests/Security/CWE-094/UnsafeJsEval.expected
@@ -0,0 +1,84 @@
+edges
+| UnsafeJsEval.swift:123:21:123:42 | string :  | UnsafeJsEval.swift:123:70:123:70 | string :  |
+| UnsafeJsEval.swift:164:10:164:37 | try ... :  | UnsafeJsEval.swift:200:21:200:35 | call to getRemoteData() :  |
+| UnsafeJsEval.swift:164:10:164:37 | try ... :  | UnsafeJsEval.swift:203:7:203:21 | call to getRemoteData() :  |
+| UnsafeJsEval.swift:164:14:164:37 | call to init(contentsOf:) :  | UnsafeJsEval.swift:164:10:164:37 | try ... :  |
+| UnsafeJsEval.swift:200:21:200:35 | call to getRemoteData() :  | UnsafeJsEval.swift:204:7:204:7 | remoteString :  |
+| UnsafeJsEval.swift:200:21:200:35 | call to getRemoteData() :  | UnsafeJsEval.swift:207:7:207:39 | ... .+(_:_:) ... :  |
+| UnsafeJsEval.swift:203:7:203:21 | call to getRemoteData() :  | UnsafeJsEval.swift:264:13:264:13 | string :  |
+| UnsafeJsEval.swift:203:7:203:21 | call to getRemoteData() :  | UnsafeJsEval.swift:267:13:267:13 | string :  |
+| UnsafeJsEval.swift:203:7:203:21 | call to getRemoteData() :  | UnsafeJsEval.swift:275:13:275:13 | string :  |
+| UnsafeJsEval.swift:203:7:203:21 | call to getRemoteData() :  | UnsafeJsEval.swift:278:13:278:13 | string :  |
+| UnsafeJsEval.swift:203:7:203:21 | call to getRemoteData() :  | UnsafeJsEval.swift:284:13:284:13 | string :  |
+| UnsafeJsEval.swift:203:7:203:21 | call to getRemoteData() :  | UnsafeJsEval.swift:298:13:298:13 | string :  |
+| UnsafeJsEval.swift:204:7:204:7 | remoteString :  | UnsafeJsEval.swift:264:13:264:13 | string :  |
+| UnsafeJsEval.swift:204:7:204:7 | remoteString :  | UnsafeJsEval.swift:267:13:267:13 | string :  |
+| UnsafeJsEval.swift:204:7:204:7 | remoteString :  | UnsafeJsEval.swift:275:13:275:13 | string :  |
+| UnsafeJsEval.swift:204:7:204:7 | remoteString :  | UnsafeJsEval.swift:278:13:278:13 | string :  |
+| UnsafeJsEval.swift:204:7:204:7 | remoteString :  | UnsafeJsEval.swift:284:13:284:13 | string :  |
+| UnsafeJsEval.swift:204:7:204:7 | remoteString :  | UnsafeJsEval.swift:298:13:298:13 | string :  |
+| UnsafeJsEval.swift:207:7:207:39 | ... .+(_:_:) ... :  | UnsafeJsEval.swift:264:13:264:13 | string :  |
+| UnsafeJsEval.swift:207:7:207:39 | ... .+(_:_:) ... :  | UnsafeJsEval.swift:267:13:267:13 | string :  |
+| UnsafeJsEval.swift:207:7:207:39 | ... .+(_:_:) ... :  | UnsafeJsEval.swift:275:13:275:13 | string :  |
+| UnsafeJsEval.swift:207:7:207:39 | ... .+(_:_:) ... :  | UnsafeJsEval.swift:278:13:278:13 | string :  |
+| UnsafeJsEval.swift:207:7:207:39 | ... .+(_:_:) ... :  | UnsafeJsEval.swift:284:13:284:13 | string :  |
+| UnsafeJsEval.swift:207:7:207:39 | ... .+(_:_:) ... :  | UnsafeJsEval.swift:298:13:298:13 | string :  |
+| UnsafeJsEval.swift:264:13:264:13 | string :  | UnsafeJsEval.swift:265:22:265:107 | call to init(source:injectionTime:forMainFrameOnly:) |
+| UnsafeJsEval.swift:267:13:267:13 | string :  | UnsafeJsEval.swift:268:22:268:124 | call to init(source:injectionTime:forMainFrameOnly:in:) |
+| UnsafeJsEval.swift:275:13:275:13 | string :  | UnsafeJsEval.swift:276:26:276:26 | string |
+| UnsafeJsEval.swift:278:13:278:13 | string :  | UnsafeJsEval.swift:279:26:279:26 | string |
+| UnsafeJsEval.swift:284:13:284:13 | string :  | UnsafeJsEval.swift:285:3:285:10 | .utf16 :  |
+| UnsafeJsEval.swift:285:3:285:10 | .utf16 :  | UnsafeJsEval.swift:285:51:285:51 | stringBytes :  |
+| UnsafeJsEval.swift:285:51:285:51 | stringBytes :  | UnsafeJsEval.swift:286:31:286:97 | call to JSStringCreateWithCharacters(_:_:) :  |
+| UnsafeJsEval.swift:285:51:285:51 | stringBytes :  | UnsafeJsEval.swift:290:17:290:17 | jsstr |
+| UnsafeJsEval.swift:286:16:286:98 | call to JSStringRetain(_:) :  | UnsafeJsEval.swift:290:17:290:17 | jsstr |
+| UnsafeJsEval.swift:286:31:286:97 | call to JSStringCreateWithCharacters(_:_:) :  | UnsafeJsEval.swift:123:21:123:42 | string :  |
+| UnsafeJsEval.swift:286:31:286:97 | call to JSStringCreateWithCharacters(_:_:) :  | UnsafeJsEval.swift:286:16:286:98 | call to JSStringRetain(_:) :  |
+| UnsafeJsEval.swift:286:31:286:97 | call to JSStringCreateWithCharacters(_:_:) :  | UnsafeJsEval.swift:290:17:290:17 | jsstr |
+| UnsafeJsEval.swift:298:13:298:13 | string :  | UnsafeJsEval.swift:299:3:299:10 | .utf8CString :  |
+| UnsafeJsEval.swift:299:3:299:10 | .utf8CString :  | UnsafeJsEval.swift:299:48:299:48 | stringBytes :  |
+| UnsafeJsEval.swift:299:48:299:48 | stringBytes :  | UnsafeJsEval.swift:300:31:300:84 | call to JSStringCreateWithUTF8CString(_:) :  |
+| UnsafeJsEval.swift:299:48:299:48 | stringBytes :  | UnsafeJsEval.swift:304:17:304:17 | jsstr |
+| UnsafeJsEval.swift:300:16:300:85 | call to JSStringRetain(_:) :  | UnsafeJsEval.swift:304:17:304:17 | jsstr |
+| UnsafeJsEval.swift:300:31:300:84 | call to JSStringCreateWithUTF8CString(_:) :  | UnsafeJsEval.swift:123:21:123:42 | string :  |
+| UnsafeJsEval.swift:300:31:300:84 | call to JSStringCreateWithUTF8CString(_:) :  | UnsafeJsEval.swift:300:16:300:85 | call to JSStringRetain(_:) :  |
+| UnsafeJsEval.swift:300:31:300:84 | call to JSStringCreateWithUTF8CString(_:) :  | UnsafeJsEval.swift:304:17:304:17 | jsstr |
+nodes
+| UnsafeJsEval.swift:123:21:123:42 | string :  | semmle.label | string :  |
+| UnsafeJsEval.swift:123:70:123:70 | string :  | semmle.label | string :  |
+| UnsafeJsEval.swift:164:10:164:37 | try ... :  | semmle.label | try ... :  |
+| UnsafeJsEval.swift:164:14:164:37 | call to init(contentsOf:) :  | semmle.label | call to init(contentsOf:) :  |
+| UnsafeJsEval.swift:200:21:200:35 | call to getRemoteData() :  | semmle.label | call to getRemoteData() :  |
+| UnsafeJsEval.swift:203:7:203:21 | call to getRemoteData() :  | semmle.label | call to getRemoteData() :  |
+| UnsafeJsEval.swift:204:7:204:7 | remoteString :  | semmle.label | remoteString :  |
+| UnsafeJsEval.swift:207:7:207:39 | ... .+(_:_:) ... :  | semmle.label | ... .+(_:_:) ... :  |
+| UnsafeJsEval.swift:264:13:264:13 | string :  | semmle.label | string :  |
+| UnsafeJsEval.swift:265:22:265:107 | call to init(source:injectionTime:forMainFrameOnly:) | semmle.label | call to init(source:injectionTime:forMainFrameOnly:) |
+| UnsafeJsEval.swift:267:13:267:13 | string :  | semmle.label | string :  |
+| UnsafeJsEval.swift:268:22:268:124 | call to init(source:injectionTime:forMainFrameOnly:in:) | semmle.label | call to init(source:injectionTime:forMainFrameOnly:in:) |
+| UnsafeJsEval.swift:275:13:275:13 | string :  | semmle.label | string :  |
+| UnsafeJsEval.swift:276:26:276:26 | string | semmle.label | string |
+| UnsafeJsEval.swift:278:13:278:13 | string :  | semmle.label | string :  |
+| UnsafeJsEval.swift:279:26:279:26 | string | semmle.label | string |
+| UnsafeJsEval.swift:284:13:284:13 | string :  | semmle.label | string :  |
+| UnsafeJsEval.swift:285:3:285:10 | .utf16 :  | semmle.label | .utf16 :  |
+| UnsafeJsEval.swift:285:51:285:51 | stringBytes :  | semmle.label | stringBytes :  |
+| UnsafeJsEval.swift:286:16:286:98 | call to JSStringRetain(_:) :  | semmle.label | call to JSStringRetain(_:) :  |
+| UnsafeJsEval.swift:286:31:286:97 | call to JSStringCreateWithCharacters(_:_:) :  | semmle.label | call to JSStringCreateWithCharacters(_:_:) :  |
+| UnsafeJsEval.swift:290:17:290:17 | jsstr | semmle.label | jsstr |
+| UnsafeJsEval.swift:298:13:298:13 | string :  | semmle.label | string :  |
+| UnsafeJsEval.swift:299:3:299:10 | .utf8CString :  | semmle.label | .utf8CString :  |
+| UnsafeJsEval.swift:299:48:299:48 | stringBytes :  | semmle.label | stringBytes :  |
+| UnsafeJsEval.swift:300:16:300:85 | call to JSStringRetain(_:) :  | semmle.label | call to JSStringRetain(_:) :  |
+| UnsafeJsEval.swift:300:31:300:84 | call to JSStringCreateWithUTF8CString(_:) :  | semmle.label | call to JSStringCreateWithUTF8CString(_:) :  |
+| UnsafeJsEval.swift:304:17:304:17 | jsstr | semmle.label | jsstr |
+subpaths
+| UnsafeJsEval.swift:286:31:286:97 | call to JSStringCreateWithCharacters(_:_:) :  | UnsafeJsEval.swift:123:21:123:42 | string :  | UnsafeJsEval.swift:123:70:123:70 | string :  | UnsafeJsEval.swift:286:16:286:98 | call to JSStringRetain(_:) :  |
+| UnsafeJsEval.swift:300:31:300:84 | call to JSStringCreateWithUTF8CString(_:) :  | UnsafeJsEval.swift:123:21:123:42 | string :  | UnsafeJsEval.swift:123:70:123:70 | string :  | UnsafeJsEval.swift:300:16:300:85 | call to JSStringRetain(_:) :  |
+#select
+| UnsafeJsEval.swift:265:22:265:107 | call to init(source:injectionTime:forMainFrameOnly:) | UnsafeJsEval.swift:164:14:164:37 | call to init(contentsOf:) :  | UnsafeJsEval.swift:265:22:265:107 | call to init(source:injectionTime:forMainFrameOnly:) | Evaluation of uncontrolled JavaScript from a remote source. |
+| UnsafeJsEval.swift:268:22:268:124 | call to init(source:injectionTime:forMainFrameOnly:in:) | UnsafeJsEval.swift:164:14:164:37 | call to init(contentsOf:) :  | UnsafeJsEval.swift:268:22:268:124 | call to init(source:injectionTime:forMainFrameOnly:in:) | Evaluation of uncontrolled JavaScript from a remote source. |
+| UnsafeJsEval.swift:276:26:276:26 | string | UnsafeJsEval.swift:164:14:164:37 | call to init(contentsOf:) :  | UnsafeJsEval.swift:276:26:276:26 | string | Evaluation of uncontrolled JavaScript from a remote source. |
+| UnsafeJsEval.swift:279:26:279:26 | string | UnsafeJsEval.swift:164:14:164:37 | call to init(contentsOf:) :  | UnsafeJsEval.swift:279:26:279:26 | string | Evaluation of uncontrolled JavaScript from a remote source. |
+| UnsafeJsEval.swift:290:17:290:17 | jsstr | UnsafeJsEval.swift:164:14:164:37 | call to init(contentsOf:) :  | UnsafeJsEval.swift:290:17:290:17 | jsstr | Evaluation of uncontrolled JavaScript from a remote source. |
+| UnsafeJsEval.swift:304:17:304:17 | jsstr | UnsafeJsEval.swift:164:14:164:37 | call to init(contentsOf:) :  | UnsafeJsEval.swift:304:17:304:17 | jsstr | Evaluation of uncontrolled JavaScript from a remote source. |
diff --git a/swift/ql/test/query-tests/Security/CWE-094/UnsafeJsEval.swift b/swift/ql/test/query-tests/Security/CWE-094/UnsafeJsEval.swift
index 51914bd97e1..c2aa83dbcd6 100644
--- a/swift/ql/test/query-tests/Security/CWE-094/UnsafeJsEval.swift
+++ b/swift/ql/test/query-tests/Security/CWE-094/UnsafeJsEval.swift
@@ -167,7 +167,7 @@ func getRemoteData() -> String {
 	}
 }
 
-func testUsage(_ sink: @escaping (String) async throws -> ()) {
+func testAsync(_ sink: @escaping (String) async throws -> ()) {
 	Task {
 		let localString = "console.log('localString')"
 		let localStringFragment = "'localStringFragment'"
@@ -184,7 +184,7 @@ func testUsage(_ sink: @escaping (String) async throws -> ()) {
 		let remoteData = Data(remoteString.utf8)
 
 		try! await sink(String(decoding: localData, as: UTF8.self)) // GOOD: the data is local
-		try! await sink(String(decoding: remoteData, as: UTF8.self)) // BAD: the data is remote
+		try! await sink(String(decoding: remoteData, as: UTF8.self)) // BAD [NOT DETECTED]: the data is remote (TODO: model Data taint sources)
 
 		try! await sink("console.log(" + String(Int(localStringFragment) ?? 0) + ")") // GOOD: Primitive conversion
 		try! await sink("console.log(" + String(Int(remoteString) ?? 0) + ")") // GOOD: Primitive conversion
@@ -194,10 +194,35 @@ func testUsage(_ sink: @escaping (String) async throws -> ()) {
 	}
 }
 
+func testSync(_ sink: @escaping (String) -> ()) {
+	let localString = "console.log('localString')"
+	let localStringFragment = "'localStringFragment'"
+	let remoteString = getRemoteData()
+
+	sink(localString) // GOOD: the HTML data is local
+	sink(getRemoteData()) // BAD: HTML contains remote input, may access local secrets
+	sink(remoteString) // BAD
+
+	sink("console.log(" + localStringFragment + ")") // GOOD: the HTML data is local
+	sink("console.log(" + remoteString + ")") // BAD
+
+	let localData = Data(localString.utf8)
+	let remoteData = Data(remoteString.utf8)
+
+	sink(String(decoding: localData, as: UTF8.self)) // GOOD: the data is local
+	sink(String(decoding: remoteData, as: UTF8.self)) // BAD [NOT DETECTED]: the data is remote (TODO: model Data taint sources)
+
+	sink("console.log(" + String(Int(localStringFragment) ?? 0) + ")") // GOOD: Primitive conversion
+	sink("console.log(" + String(Int(remoteString) ?? 0) + ")") // GOOD: Primitive conversion
+
+	sink("console.log(" + (localStringFragment.count != 0 ? "1" : "0") + ")") // GOOD: Primitive conversion
+	sink("console.log(" + (remoteString.count != 0 ? "1" : "0") + ")") // GOOD: Primitive conversion
+}
+
 func testUIWebView() {
 	let webview = UIWebView()
 
-	testUsage { string in
+	testAsync { string in
 		_ = await webview.stringByEvaluatingJavaScript(from: string)
 	}
 }
@@ -205,7 +230,7 @@ func testUIWebView() {
 func testWebView() {
 	let webview = WebView()
 
-	testUsage { string in
+	testAsync { string in
 		_ = await webview.stringByEvaluatingJavaScript(from: string)
 	}
 }
@@ -213,22 +238,22 @@ func testWebView() {
 func testWKWebView() {
 	let webview = WKWebView()
 
-	testUsage { string in
+	testAsync { string in
 		_ = try await webview.evaluateJavaScript(string)
 	}
-	testUsage { string in
+	testAsync { string in
 		await webview.evaluateJavaScript(string) { _, _ in }
 	}
-	testUsage { string in
+	testAsync { string in
 		await webview.evaluateJavaScript(string, in: nil, in: WKContentWorld.defaultClient) { _ in }
 	}
-	testUsage { string in
+	testAsync { string in
 		_ = try await webview.evaluateJavaScript(string, contentWorld: .defaultClient)
 	}
-	testUsage { string in
+	testAsync { string in
 		await webview.callAsyncJavaScript(string, in: nil, in: .defaultClient) { _ in () }
 	}
-	testUsage { string in
+	testAsync { string in
 		_ = try await webview.callAsyncJavaScript(string, contentWorld: WKContentWorld.defaultClient)
 	}
 }
@@ -236,10 +261,10 @@ func testWKWebView() {
 func testWKUserContentController() {
 	let ctrl = WKUserContentController()
 
-	testUsage { string in
+	testSync { string in
 		ctrl.addUserScript(WKUserScript(source: string, injectionTime: .atDocumentStart, forMainFrameOnly: false))
 	}
-	testUsage { string in
+	testSync { string in
 		ctrl.addUserScript(WKUserScript(source: string, injectionTime: .atDocumentEnd, forMainFrameOnly: true, in: .defaultClient))
 	}
 }
@@ -247,16 +272,16 @@ func testWKUserContentController() {
 func testJSContext() {
 	let ctx = JSContext()
 
-	testUsage { string in
+	testSync { string in
 		_ = ctx.evaluateScript(string)
 	}
-	testUsage { string in
+	testSync { string in
 		_ = ctx.evaluateScript(string, withSourceURL: URL(string: "https://example.com"))
 	}
 }
 
 func testJSEvaluateScript() {
-	testUsage { string in
+	testSync { string in
 		string.utf16.withContiguousStorageIfAvailable { stringBytes in
 			let jsstr = JSStringRetain(JSStringCreateWithCharacters(stringBytes.baseAddress, string.count))
 			defer { JSStringRelease(jsstr) }
@@ -270,7 +295,7 @@ func testJSEvaluateScript() {
 			)
 		}
 	}
-	testUsage { string in
+	testSync { string in
 		string.utf8CString.withUnsafeBufferPointer { stringBytes in
 			let jsstr = JSStringRetain(JSStringCreateWithUTF8CString(stringBytes.baseAddress))
 			defer { JSStringRelease(jsstr) }

From d37ed02e796208ec5a4d79a8f23b7e925244781d Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Nora=20Dimitrijevi=C4=87?= <d10c@users.noreply.github.com>
Date: Tue, 8 Nov 2022 11:24:53 +0100
Subject: [PATCH 0094/1420] Swift: basic Data-related taint flow in query

Still TODO: a more comprehensive taint flow model for Data in the libs.
---
 .../ql/src/queries/Security/CWE-094/UnsafeJsEval.ql | 13 +++++++++++--
 .../Security/CWE-094/UnsafeJsEval.expected          |  8 ++++++++
 .../query-tests/Security/CWE-094/UnsafeJsEval.swift |  4 ++--
 3 files changed, 21 insertions(+), 4 deletions(-)

diff --git a/swift/ql/src/queries/Security/CWE-094/UnsafeJsEval.ql b/swift/ql/src/queries/Security/CWE-094/UnsafeJsEval.ql
index f5c444ff5e3..41065a9d47d 100644
--- a/swift/ql/src/queries/Security/CWE-094/UnsafeJsEval.ql
+++ b/swift/ql/src/queries/Security/CWE-094/UnsafeJsEval.ql
@@ -108,6 +108,15 @@ class UnsafeJsEvalConfig extends TaintTracking::Configuration {
                 ])
         ).getArgument(0)
       or
+      arg =
+        any(CallExpr ce | ce.getStaticTarget().(MethodDecl).hasQualifiedName("Data", "init(_:)"))
+            .getArgument(0)
+      or
+      arg =
+        any(CallExpr ce |
+          ce.getStaticTarget().(MethodDecl).hasQualifiedName("String", "init(decoding:as:)")
+        ).getArgument(0)
+      or
       arg =
         any(CallExpr ce |
           ce.getStaticTarget()
@@ -135,10 +144,10 @@ class UnsafeJsEvalConfig extends TaintTracking::Configuration {
     or
     exists(MemberRefExpr e, Expr self, VarDecl member |
       self.getType().getName() = "String" and
-      member.getName() = ["utf16", "utf8CString"]
+      member.getName() = ["utf8", "utf16", "utf8CString"]
       or
       self.getType().getName().matches(["Unsafe%Buffer%", "Unsafe%Pointer%"]) and
-      member.getName() = ["baseAddress"]
+      member.getName() = "baseAddress"
     |
       e.getBase() = self and
       e.getMember() = member and
diff --git a/swift/ql/test/query-tests/Security/CWE-094/UnsafeJsEval.expected b/swift/ql/test/query-tests/Security/CWE-094/UnsafeJsEval.expected
index 0e678737720..c9c794bbbb1 100644
--- a/swift/ql/test/query-tests/Security/CWE-094/UnsafeJsEval.expected
+++ b/swift/ql/test/query-tests/Security/CWE-094/UnsafeJsEval.expected
@@ -5,6 +5,7 @@ edges
 | UnsafeJsEval.swift:164:14:164:37 | call to init(contentsOf:) :  | UnsafeJsEval.swift:164:10:164:37 | try ... :  |
 | UnsafeJsEval.swift:200:21:200:35 | call to getRemoteData() :  | UnsafeJsEval.swift:204:7:204:7 | remoteString :  |
 | UnsafeJsEval.swift:200:21:200:35 | call to getRemoteData() :  | UnsafeJsEval.swift:207:7:207:39 | ... .+(_:_:) ... :  |
+| UnsafeJsEval.swift:200:21:200:35 | call to getRemoteData() :  | UnsafeJsEval.swift:213:7:213:49 | call to init(decoding:as:) :  |
 | UnsafeJsEval.swift:203:7:203:21 | call to getRemoteData() :  | UnsafeJsEval.swift:264:13:264:13 | string :  |
 | UnsafeJsEval.swift:203:7:203:21 | call to getRemoteData() :  | UnsafeJsEval.swift:267:13:267:13 | string :  |
 | UnsafeJsEval.swift:203:7:203:21 | call to getRemoteData() :  | UnsafeJsEval.swift:275:13:275:13 | string :  |
@@ -23,6 +24,12 @@ edges
 | UnsafeJsEval.swift:207:7:207:39 | ... .+(_:_:) ... :  | UnsafeJsEval.swift:278:13:278:13 | string :  |
 | UnsafeJsEval.swift:207:7:207:39 | ... .+(_:_:) ... :  | UnsafeJsEval.swift:284:13:284:13 | string :  |
 | UnsafeJsEval.swift:207:7:207:39 | ... .+(_:_:) ... :  | UnsafeJsEval.swift:298:13:298:13 | string :  |
+| UnsafeJsEval.swift:213:7:213:49 | call to init(decoding:as:) :  | UnsafeJsEval.swift:264:13:264:13 | string :  |
+| UnsafeJsEval.swift:213:7:213:49 | call to init(decoding:as:) :  | UnsafeJsEval.swift:267:13:267:13 | string :  |
+| UnsafeJsEval.swift:213:7:213:49 | call to init(decoding:as:) :  | UnsafeJsEval.swift:275:13:275:13 | string :  |
+| UnsafeJsEval.swift:213:7:213:49 | call to init(decoding:as:) :  | UnsafeJsEval.swift:278:13:278:13 | string :  |
+| UnsafeJsEval.swift:213:7:213:49 | call to init(decoding:as:) :  | UnsafeJsEval.swift:284:13:284:13 | string :  |
+| UnsafeJsEval.swift:213:7:213:49 | call to init(decoding:as:) :  | UnsafeJsEval.swift:298:13:298:13 | string :  |
 | UnsafeJsEval.swift:264:13:264:13 | string :  | UnsafeJsEval.swift:265:22:265:107 | call to init(source:injectionTime:forMainFrameOnly:) |
 | UnsafeJsEval.swift:267:13:267:13 | string :  | UnsafeJsEval.swift:268:22:268:124 | call to init(source:injectionTime:forMainFrameOnly:in:) |
 | UnsafeJsEval.swift:275:13:275:13 | string :  | UnsafeJsEval.swift:276:26:276:26 | string |
@@ -52,6 +59,7 @@ nodes
 | UnsafeJsEval.swift:203:7:203:21 | call to getRemoteData() :  | semmle.label | call to getRemoteData() :  |
 | UnsafeJsEval.swift:204:7:204:7 | remoteString :  | semmle.label | remoteString :  |
 | UnsafeJsEval.swift:207:7:207:39 | ... .+(_:_:) ... :  | semmle.label | ... .+(_:_:) ... :  |
+| UnsafeJsEval.swift:213:7:213:49 | call to init(decoding:as:) :  | semmle.label | call to init(decoding:as:) :  |
 | UnsafeJsEval.swift:264:13:264:13 | string :  | semmle.label | string :  |
 | UnsafeJsEval.swift:265:22:265:107 | call to init(source:injectionTime:forMainFrameOnly:) | semmle.label | call to init(source:injectionTime:forMainFrameOnly:) |
 | UnsafeJsEval.swift:267:13:267:13 | string :  | semmle.label | string :  |
diff --git a/swift/ql/test/query-tests/Security/CWE-094/UnsafeJsEval.swift b/swift/ql/test/query-tests/Security/CWE-094/UnsafeJsEval.swift
index c2aa83dbcd6..98f34e9826f 100644
--- a/swift/ql/test/query-tests/Security/CWE-094/UnsafeJsEval.swift
+++ b/swift/ql/test/query-tests/Security/CWE-094/UnsafeJsEval.swift
@@ -184,7 +184,7 @@ func testAsync(_ sink: @escaping (String) async throws -> ()) {
 		let remoteData = Data(remoteString.utf8)
 
 		try! await sink(String(decoding: localData, as: UTF8.self)) // GOOD: the data is local
-		try! await sink(String(decoding: remoteData, as: UTF8.self)) // BAD [NOT DETECTED]: the data is remote (TODO: model Data taint sources)
+		try! await sink(String(decoding: remoteData, as: UTF8.self)) // BAD: the data is remote
 
 		try! await sink("console.log(" + String(Int(localStringFragment) ?? 0) + ")") // GOOD: Primitive conversion
 		try! await sink("console.log(" + String(Int(remoteString) ?? 0) + ")") // GOOD: Primitive conversion
@@ -210,7 +210,7 @@ func testSync(_ sink: @escaping (String) -> ()) {
 	let remoteData = Data(remoteString.utf8)
 
 	sink(String(decoding: localData, as: UTF8.self)) // GOOD: the data is local
-	sink(String(decoding: remoteData, as: UTF8.self)) // BAD [NOT DETECTED]: the data is remote (TODO: model Data taint sources)
+	sink(String(decoding: remoteData, as: UTF8.self)) // BAD: the data is remote
 
 	sink("console.log(" + String(Int(localStringFragment) ?? 0) + ")") // GOOD: Primitive conversion
 	sink("console.log(" + String(Int(remoteString) ?? 0) + ")") // GOOD: Primitive conversion

From 4895daba85717cee32cbac9f67c39eb0b123d96d Mon Sep 17 00:00:00 2001
From: Rasmus Wriedt Larsen <rasmuswl@github.com>
Date: Tue, 8 Nov 2022 13:32:49 +0100
Subject: [PATCH 0095/1420] DataFlow: Add read/store stepIsLocal consistency
 checks

---
 .../ir/dataflow/internal/DataFlowImplConsistency.qll | 12 ++++++++++++
 .../dataflow/internal/DataFlowImplConsistency.qll    | 12 ++++++++++++
 .../ir/dataflow/internal/DataFlowImplConsistency.qll | 12 ++++++++++++
 .../dataflow/internal/DataFlowImplConsistency.qll    | 12 ++++++++++++
 .../dataflow/internal/DataFlowImplConsistency.qll    | 12 ++++++++++++
 .../new/internal/DataFlowImplConsistency.qll         | 12 ++++++++++++
 .../dataflow/internal/DataFlowImplConsistency.qll    | 12 ++++++++++++
 .../dataflow/internal/DataFlowImplConsistency.qll    | 12 ++++++++++++
 8 files changed, 96 insertions(+)

diff --git a/cpp/ql/lib/experimental/semmle/code/cpp/ir/dataflow/internal/DataFlowImplConsistency.qll b/cpp/ql/lib/experimental/semmle/code/cpp/ir/dataflow/internal/DataFlowImplConsistency.qll
index dde16ab5a2a..f681e90aa21 100644
--- a/cpp/ql/lib/experimental/semmle/code/cpp/ir/dataflow/internal/DataFlowImplConsistency.qll
+++ b/cpp/ql/lib/experimental/semmle/code/cpp/ir/dataflow/internal/DataFlowImplConsistency.qll
@@ -136,6 +136,18 @@ module Consistency {
     msg = "Local flow step does not preserve enclosing callable."
   }
 
+  query predicate readStepIsLocal(Node n1, Node n2, string msg) {
+    readStep(n1, _, n2) and
+    nodeGetEnclosingCallable(n1) != nodeGetEnclosingCallable(n2) and
+    msg = "Read step does not preserve enclosing callable."
+  }
+
+  query predicate storeStepIsLocal(Node n1, Node n2, string msg) {
+    storeStep(n1, _, n2) and
+    nodeGetEnclosingCallable(n1) != nodeGetEnclosingCallable(n2) and
+    msg = "Store step does not preserve enclosing callable."
+  }
+
   private DataFlowType typeRepr() { result = getNodeType(_) }
 
   query predicate compatibleTypesReflexive(DataFlowType t, string msg) {
diff --git a/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImplConsistency.qll b/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImplConsistency.qll
index dde16ab5a2a..f681e90aa21 100644
--- a/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImplConsistency.qll
+++ b/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImplConsistency.qll
@@ -136,6 +136,18 @@ module Consistency {
     msg = "Local flow step does not preserve enclosing callable."
   }
 
+  query predicate readStepIsLocal(Node n1, Node n2, string msg) {
+    readStep(n1, _, n2) and
+    nodeGetEnclosingCallable(n1) != nodeGetEnclosingCallable(n2) and
+    msg = "Read step does not preserve enclosing callable."
+  }
+
+  query predicate storeStepIsLocal(Node n1, Node n2, string msg) {
+    storeStep(n1, _, n2) and
+    nodeGetEnclosingCallable(n1) != nodeGetEnclosingCallable(n2) and
+    msg = "Store step does not preserve enclosing callable."
+  }
+
   private DataFlowType typeRepr() { result = getNodeType(_) }
 
   query predicate compatibleTypesReflexive(DataFlowType t, string msg) {
diff --git a/cpp/ql/lib/semmle/code/cpp/ir/dataflow/internal/DataFlowImplConsistency.qll b/cpp/ql/lib/semmle/code/cpp/ir/dataflow/internal/DataFlowImplConsistency.qll
index dde16ab5a2a..f681e90aa21 100644
--- a/cpp/ql/lib/semmle/code/cpp/ir/dataflow/internal/DataFlowImplConsistency.qll
+++ b/cpp/ql/lib/semmle/code/cpp/ir/dataflow/internal/DataFlowImplConsistency.qll
@@ -136,6 +136,18 @@ module Consistency {
     msg = "Local flow step does not preserve enclosing callable."
   }
 
+  query predicate readStepIsLocal(Node n1, Node n2, string msg) {
+    readStep(n1, _, n2) and
+    nodeGetEnclosingCallable(n1) != nodeGetEnclosingCallable(n2) and
+    msg = "Read step does not preserve enclosing callable."
+  }
+
+  query predicate storeStepIsLocal(Node n1, Node n2, string msg) {
+    storeStep(n1, _, n2) and
+    nodeGetEnclosingCallable(n1) != nodeGetEnclosingCallable(n2) and
+    msg = "Store step does not preserve enclosing callable."
+  }
+
   private DataFlowType typeRepr() { result = getNodeType(_) }
 
   query predicate compatibleTypesReflexive(DataFlowType t, string msg) {
diff --git a/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImplConsistency.qll b/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImplConsistency.qll
index dde16ab5a2a..f681e90aa21 100644
--- a/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImplConsistency.qll
+++ b/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImplConsistency.qll
@@ -136,6 +136,18 @@ module Consistency {
     msg = "Local flow step does not preserve enclosing callable."
   }
 
+  query predicate readStepIsLocal(Node n1, Node n2, string msg) {
+    readStep(n1, _, n2) and
+    nodeGetEnclosingCallable(n1) != nodeGetEnclosingCallable(n2) and
+    msg = "Read step does not preserve enclosing callable."
+  }
+
+  query predicate storeStepIsLocal(Node n1, Node n2, string msg) {
+    storeStep(n1, _, n2) and
+    nodeGetEnclosingCallable(n1) != nodeGetEnclosingCallable(n2) and
+    msg = "Store step does not preserve enclosing callable."
+  }
+
   private DataFlowType typeRepr() { result = getNodeType(_) }
 
   query predicate compatibleTypesReflexive(DataFlowType t, string msg) {
diff --git a/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImplConsistency.qll b/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImplConsistency.qll
index dde16ab5a2a..f681e90aa21 100644
--- a/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImplConsistency.qll
+++ b/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImplConsistency.qll
@@ -136,6 +136,18 @@ module Consistency {
     msg = "Local flow step does not preserve enclosing callable."
   }
 
+  query predicate readStepIsLocal(Node n1, Node n2, string msg) {
+    readStep(n1, _, n2) and
+    nodeGetEnclosingCallable(n1) != nodeGetEnclosingCallable(n2) and
+    msg = "Read step does not preserve enclosing callable."
+  }
+
+  query predicate storeStepIsLocal(Node n1, Node n2, string msg) {
+    storeStep(n1, _, n2) and
+    nodeGetEnclosingCallable(n1) != nodeGetEnclosingCallable(n2) and
+    msg = "Store step does not preserve enclosing callable."
+  }
+
   private DataFlowType typeRepr() { result = getNodeType(_) }
 
   query predicate compatibleTypesReflexive(DataFlowType t, string msg) {
diff --git a/python/ql/lib/semmle/python/dataflow/new/internal/DataFlowImplConsistency.qll b/python/ql/lib/semmle/python/dataflow/new/internal/DataFlowImplConsistency.qll
index dde16ab5a2a..f681e90aa21 100644
--- a/python/ql/lib/semmle/python/dataflow/new/internal/DataFlowImplConsistency.qll
+++ b/python/ql/lib/semmle/python/dataflow/new/internal/DataFlowImplConsistency.qll
@@ -136,6 +136,18 @@ module Consistency {
     msg = "Local flow step does not preserve enclosing callable."
   }
 
+  query predicate readStepIsLocal(Node n1, Node n2, string msg) {
+    readStep(n1, _, n2) and
+    nodeGetEnclosingCallable(n1) != nodeGetEnclosingCallable(n2) and
+    msg = "Read step does not preserve enclosing callable."
+  }
+
+  query predicate storeStepIsLocal(Node n1, Node n2, string msg) {
+    storeStep(n1, _, n2) and
+    nodeGetEnclosingCallable(n1) != nodeGetEnclosingCallable(n2) and
+    msg = "Store step does not preserve enclosing callable."
+  }
+
   private DataFlowType typeRepr() { result = getNodeType(_) }
 
   query predicate compatibleTypesReflexive(DataFlowType t, string msg) {
diff --git a/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImplConsistency.qll b/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImplConsistency.qll
index dde16ab5a2a..f681e90aa21 100644
--- a/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImplConsistency.qll
+++ b/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImplConsistency.qll
@@ -136,6 +136,18 @@ module Consistency {
     msg = "Local flow step does not preserve enclosing callable."
   }
 
+  query predicate readStepIsLocal(Node n1, Node n2, string msg) {
+    readStep(n1, _, n2) and
+    nodeGetEnclosingCallable(n1) != nodeGetEnclosingCallable(n2) and
+    msg = "Read step does not preserve enclosing callable."
+  }
+
+  query predicate storeStepIsLocal(Node n1, Node n2, string msg) {
+    storeStep(n1, _, n2) and
+    nodeGetEnclosingCallable(n1) != nodeGetEnclosingCallable(n2) and
+    msg = "Store step does not preserve enclosing callable."
+  }
+
   private DataFlowType typeRepr() { result = getNodeType(_) }
 
   query predicate compatibleTypesReflexive(DataFlowType t, string msg) {
diff --git a/swift/ql/lib/codeql/swift/dataflow/internal/DataFlowImplConsistency.qll b/swift/ql/lib/codeql/swift/dataflow/internal/DataFlowImplConsistency.qll
index dde16ab5a2a..f681e90aa21 100644
--- a/swift/ql/lib/codeql/swift/dataflow/internal/DataFlowImplConsistency.qll
+++ b/swift/ql/lib/codeql/swift/dataflow/internal/DataFlowImplConsistency.qll
@@ -136,6 +136,18 @@ module Consistency {
     msg = "Local flow step does not preserve enclosing callable."
   }
 
+  query predicate readStepIsLocal(Node n1, Node n2, string msg) {
+    readStep(n1, _, n2) and
+    nodeGetEnclosingCallable(n1) != nodeGetEnclosingCallable(n2) and
+    msg = "Read step does not preserve enclosing callable."
+  }
+
+  query predicate storeStepIsLocal(Node n1, Node n2, string msg) {
+    storeStep(n1, _, n2) and
+    nodeGetEnclosingCallable(n1) != nodeGetEnclosingCallable(n2) and
+    msg = "Store step does not preserve enclosing callable."
+  }
+
   private DataFlowType typeRepr() { result = getNodeType(_) }
 
   query predicate compatibleTypesReflexive(DataFlowType t, string msg) {

From eef4fc3a0a13d08ef8c81f0356837dafeed96894 Mon Sep 17 00:00:00 2001
From: Tony Torralba <atorralba@users.noreply.github.com>
Date: Tue, 8 Nov 2022 15:44:26 +0100
Subject: [PATCH 0096/1420] Apply suggestions from code review

Co-authored-by: mc <42146119+mchammer01@users.noreply.github.com>
---
 swift/ql/src/queries/Security/CWE-611/XXE.qhelp | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/swift/ql/src/queries/Security/CWE-611/XXE.qhelp b/swift/ql/src/queries/Security/CWE-611/XXE.qhelp
index 0aca8ac474b..a4efe604c39 100644
--- a/swift/ql/src/queries/Security/CWE-611/XXE.qhelp
+++ b/swift/ql/src/queries/Security/CWE-611/XXE.qhelp
@@ -4,7 +4,7 @@
 <overview>
 <p>
 Parsing untrusted XML files with a weakly configured XML parser may lead to an XML External Entity (XXE) attack. This type of attack
-uses external entity references to access arbitrary files on a system, carry out denial of service, or server side
+uses external entity references to access arbitrary files on a system, carry out denial-of-service attacks, or server-side
 request forgery. Even when the result of parsing is not returned to the user, out-of-band
 data retrieval techniques may allow attackers to steal sensitive data. Denial of services can also be
 carried out in this situation.
@@ -46,8 +46,8 @@ OWASP:
 <a href="https://cheatsheetseries.owasp.org/cheatsheets/XML_External_Entity_Prevention_Cheat_Sheet.html">XML External Entity Prevention Cheat Sheet</a>.
 </li>
 <li>
-Timothy Morgen:
-<a href="https://research.nccgroup.com/2014/05/19/xml-schema-dtd-and-entity-attacks-a-compendium-of-known-techniques/">XML Schema, DTD, and Entity Attacks</a>.
+Timothy D. Morgan and Omar Al Ibrahim
+<a href="https://research.nccgroup.com/2014/05/19/xml-schema-dtd-and-entity-attacks-a-compendium-of-known-techniques/">XML Schema, DTD, and Entity Attacks: A Compendium of Known Techniques</a>.
 </li>
 <li>
 Timur Yunusov, Alexey Osipov:

From 8e546e84968b4a963820907dee5dbe5d575d60e1 Mon Sep 17 00:00:00 2001
From: Mauro Baluda <mbaluda@github.com>
Date: Tue, 8 Nov 2022 16:14:10 +0100
Subject: [PATCH 0097/1420] Add `req.url.origin` to `RequestInputAccess`

---
 javascript/ql/lib/semmle/javascript/frameworks/Hapi.qll | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/javascript/ql/lib/semmle/javascript/frameworks/Hapi.qll b/javascript/ql/lib/semmle/javascript/frameworks/Hapi.qll
index 58cbe9b1597..18790d979c2 100644
--- a/javascript/ql/lib/semmle/javascript/frameworks/Hapi.qll
+++ b/javascript/ql/lib/semmle/javascript/frameworks/Hapi.qll
@@ -142,7 +142,7 @@ module Hapi {
           // `request.url.path`
           kind = "url" and
           url.accesses(request, "url") and
-          this.(DataFlow::PropRead).accesses(url, "path")
+          this.(DataFlow::PropRead).accesses(url, ["path", "origin"])
         )
         or
         exists(DataFlow::PropRead state |

From 107cbb29b1e53611b1c069fcefb161426f488e6a Mon Sep 17 00:00:00 2001
From: erik-krogh <erik-krogh@github.com>
Date: Tue, 8 Nov 2022 20:34:58 +0100
Subject: [PATCH 0098/1420] guide users towards using exists(variable) in
 ql/override-any

---
 ql/ql/src/queries/style/OverrideAny.ql | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/ql/ql/src/queries/style/OverrideAny.ql b/ql/ql/src/queries/style/OverrideAny.ql
index 0c7d82fd3c8..f00db8eb0ee 100644
--- a/ql/ql/src/queries/style/OverrideAny.ql
+++ b/ql/ql/src/queries/style/OverrideAny.ql
@@ -37,4 +37,5 @@ where
   exists(pred.getBody()) and
   not isSmallType(pred.getParent().(Class).getType()) and
   not isSmallType(paramType)
-select pred, "Override predicate doesn't mention $@.", param, name
+select pred, "Override predicate doesn't mention $@. Maybe mention it in a 'exists(" + name + ")'?",
+  param, name

From c1727ba005ff77b49f5f367dc6b646fd4ed6ba0e Mon Sep 17 00:00:00 2001
From: erik-krogh <erik-krogh@github.com>
Date: Tue, 8 Nov 2022 20:35:07 +0100
Subject: [PATCH 0099/1420] lower precision to high in ql/override-any

---
 ql/ql/src/queries/style/OverrideAny.ql | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/ql/ql/src/queries/style/OverrideAny.ql b/ql/ql/src/queries/style/OverrideAny.ql
index f00db8eb0ee..ed3a762f0e9 100644
--- a/ql/ql/src/queries/style/OverrideAny.ql
+++ b/ql/ql/src/queries/style/OverrideAny.ql
@@ -4,7 +4,7 @@
  * @kind problem
  * @problem.severity warning
  * @id ql/override-any
- * @precision very-high
+ * @precision high
  */
 
 import ql

From fadbdc1f63e8247cb6598e99c939089e5d9c2bfa Mon Sep 17 00:00:00 2001
From: tiferet <tiferet@github.com>
Date: Tue, 8 Nov 2022 11:45:33 -0800
Subject: [PATCH 0100/1420] Documentation improvements suggested by Andrew

---
 .../EndpointCharacteristics.qll                   | 15 +++++++++------
 1 file changed, 9 insertions(+), 6 deletions(-)

diff --git a/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/EndpointCharacteristics.qll b/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/EndpointCharacteristics.qll
index adc98a5c08c..6ee08d51daf 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/EndpointCharacteristics.qll
+++ b/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/EndpointCharacteristics.qll
@@ -30,12 +30,15 @@ abstract class EndpointCharacteristic extends string {
   /**
    * This predicate describes what the characteristic tells us about an endpoint.
    *
-   *  Params:
-   *  endpointClass: Class 0 is the negative class. Each positive int corresponds to a single sink type.
-   *  isPositiveIndicator: Does this characteristic indicate this endpoint _is_ a member of the class, or that it
-   *  _isn't_ a member of the class?
-   *  confidence: A number in [0, 1], which tells us how strong an indicator this characteristic is for the endpoint
-   *  belonging / not belonging to the given class.
+   * Params:
+   * endpointClass: Class 0 is the negative class, containing non-sink endpoints. Each positive int corresponds to a
+   * single sink type.
+   * isPositiveIndicator: If true, this characteristic indicates that this endpoint _is_ a member of the class; if
+   * false, it indicates that it _isn't_ a member of the class.
+   * confidence: A float in [0, 1], which tells us how strong an indicator this characteristic is for the endpoint
+   * belonging / not belonging to the given class. A confidence near zero means this characterestic is a very weak
+   * indicator of whether or not the endpoint belongs to the class. A confidence of 1 means that all endpoints with
+   * this characteristic difinitively do/don't belong to the class.
    */
   abstract predicate getImplications(
     EndpointType endpointClass, boolean isPositiveIndicator, float confidence

From 32b140045e81ff32ac451007f94b1c72bbdf2bad Mon Sep 17 00:00:00 2001
From: Jami Cogswell <jcogs33@Jamis-MacBook-Pro.local>
Date: Sun, 23 Oct 2022 20:03:10 -0400
Subject: [PATCH 0101/1420] move files out of experimental

---
 .../Security/CWE/CWE-730/RegexInjection.java  |  2 +-
 .../Security/CWE/CWE-730/RegexInjection.qhelp |  0
 .../Security/CWE/CWE-730/RegexInjection.ql    | 22 ++++++++++++++++---
 .../security/CWE-730/RegexInjection.qlref     |  1 -
 .../security/CWE-730/RegexInjection.expected  |  0
 .../security/CWE-730/RegexInjection.java      |  0
 .../security/CWE-730/RegexInjection.qlref     |  1 +
 .../security/CWE-730/options-regexInjection}  |  0
 8 files changed, 21 insertions(+), 5 deletions(-)
 rename java/ql/src/{experimental => }/Security/CWE/CWE-730/RegexInjection.java (99%)
 rename java/ql/src/{experimental => }/Security/CWE/CWE-730/RegexInjection.qhelp (100%)
 rename java/ql/src/{experimental => }/Security/CWE/CWE-730/RegexInjection.ql (71%)
 delete mode 100644 java/ql/test/experimental/query-tests/security/CWE-730/RegexInjection.qlref
 rename java/ql/test/{experimental => }/query-tests/security/CWE-730/RegexInjection.expected (100%)
 rename java/ql/test/{experimental => }/query-tests/security/CWE-730/RegexInjection.java (100%)
 create mode 100644 java/ql/test/query-tests/security/CWE-730/RegexInjection.qlref
 rename java/ql/test/{experimental/query-tests/security/CWE-730/options => query-tests/security/CWE-730/options-regexInjection} (100%)

diff --git a/java/ql/src/experimental/Security/CWE/CWE-730/RegexInjection.java b/java/ql/src/Security/CWE/CWE-730/RegexInjection.java
similarity index 99%
rename from java/ql/src/experimental/Security/CWE/CWE-730/RegexInjection.java
rename to java/ql/src/Security/CWE/CWE-730/RegexInjection.java
index 387648a443e..30b74df0a0f 100644
--- a/java/ql/src/experimental/Security/CWE/CWE-730/RegexInjection.java
+++ b/java/ql/src/Security/CWE/CWE-730/RegexInjection.java
@@ -35,4 +35,4 @@ public class DemoApplication {
     String escapeSpecialRegexChars(String str) {
         return SPECIAL_REGEX_CHARS.matcher(str).replaceAll("\\\\$0");
     }
-}
\ No newline at end of file
+}
diff --git a/java/ql/src/experimental/Security/CWE/CWE-730/RegexInjection.qhelp b/java/ql/src/Security/CWE/CWE-730/RegexInjection.qhelp
similarity index 100%
rename from java/ql/src/experimental/Security/CWE/CWE-730/RegexInjection.qhelp
rename to java/ql/src/Security/CWE/CWE-730/RegexInjection.qhelp
diff --git a/java/ql/src/experimental/Security/CWE/CWE-730/RegexInjection.ql b/java/ql/src/Security/CWE/CWE-730/RegexInjection.ql
similarity index 71%
rename from java/ql/src/experimental/Security/CWE/CWE-730/RegexInjection.ql
rename to java/ql/src/Security/CWE/CWE-730/RegexInjection.ql
index f60e5d9070b..94bfccd9d3e 100644
--- a/java/ql/src/experimental/Security/CWE/CWE-730/RegexInjection.ql
+++ b/java/ql/src/Security/CWE/CWE-730/RegexInjection.ql
@@ -27,19 +27,24 @@ class RegexSink extends DataFlow::ExprNode {
         m.getDeclaringType() instanceof TypeString and
         (
           ma.getArgument(0) = this.asExpr() and
+          // TODO: confirm if more/less than the below need to be handled
           m.hasName(["matches", "split", "replaceFirst", "replaceAll"])
         )
         or
+        // TODO: review Java Pattern API
         m.getDeclaringType().hasQualifiedName("java.util.regex", "Pattern") and
         (
           ma.getArgument(0) = this.asExpr() and
+          // TODO: confirm if more/less than the below need to be handled
           m.hasName(["compile", "matches"])
         )
         or
+        // TODO: read docs about regex APIs in Java
         m.getDeclaringType().hasQualifiedName("org.apache.commons.lang3", "RegExUtils") and
         (
           ma.getArgument(1) = this.asExpr() and
           m.getParameterType(1) instanceof TypeString and
+          // TODO: confirm if more/less than the below need to be handled
           m.hasName([
               "removeAll", "removeFirst", "removePattern", "replaceAll", "replaceFirst",
               "replacePattern"
@@ -50,6 +55,7 @@ class RegexSink extends DataFlow::ExprNode {
   }
 }
 
+// TODO: is this abstract class needed? Are there pre-existing sanitizer classes that can be used instead?
 abstract class Sanitizer extends DataFlow::ExprNode { }
 
 /**
@@ -60,12 +66,12 @@ class RegExpSanitizationCall extends Sanitizer {
   RegExpSanitizationCall() {
     exists(string calleeName, string sanitize, string regexp |
       calleeName = this.asExpr().(Call).getCallee().getName() and
-      sanitize = "(?:escape|saniti[sz]e)" and
-      regexp = "regexp?"
+      sanitize = "(?:escape|saniti[sz]e)" and // TODO: confirm this is sufficient
+      regexp = "regexp?" // TODO: confirm this is sufficient
     |
       calleeName
           .regexpMatch("(?i)(" + sanitize + ".*" + regexp + ".*)" + "|(" + regexp + ".*" + sanitize +
-              ".*)")
+              ".*)") // TODO: confirm this is sufficient
     )
   }
 }
@@ -87,3 +93,13 @@ from DataFlow::PathNode source, DataFlow::PathNode sink, RegexInjectionConfigura
 where c.hasFlowPath(source, sink)
 select sink.getNode(), source, sink, "This regular expression is constructed from a $@.",
   source.getNode(), "user-provided value"
+// from MethodAccess ma
+// where
+//   // ma.getMethod().hasName("startsWith") and // graphhopper
+//   // ma.getFile().getBaseName() = "NavigateResource.java" // graphhopper
+//   // ma.getMethod().hasName("substring") and // jfinal
+//   // ma.getFile().getBaseName() = "FileManager.java" // jfinal
+//   ma.getMethod().hasName("startsWith") and // roller
+//   ma.getFile().getBaseName() = "PageServlet.java" // roller (or RegexUtil.java)
+// ProteinArraySignificanceTestJSON.java or MockRKeys.java for cbioportal
+// select ma, "method access"
diff --git a/java/ql/test/experimental/query-tests/security/CWE-730/RegexInjection.qlref b/java/ql/test/experimental/query-tests/security/CWE-730/RegexInjection.qlref
deleted file mode 100644
index dca594b38d2..00000000000
--- a/java/ql/test/experimental/query-tests/security/CWE-730/RegexInjection.qlref
+++ /dev/null
@@ -1 +0,0 @@
-experimental/Security/CWE/CWE-730/RegexInjection.ql
\ No newline at end of file
diff --git a/java/ql/test/experimental/query-tests/security/CWE-730/RegexInjection.expected b/java/ql/test/query-tests/security/CWE-730/RegexInjection.expected
similarity index 100%
rename from java/ql/test/experimental/query-tests/security/CWE-730/RegexInjection.expected
rename to java/ql/test/query-tests/security/CWE-730/RegexInjection.expected
diff --git a/java/ql/test/experimental/query-tests/security/CWE-730/RegexInjection.java b/java/ql/test/query-tests/security/CWE-730/RegexInjection.java
similarity index 100%
rename from java/ql/test/experimental/query-tests/security/CWE-730/RegexInjection.java
rename to java/ql/test/query-tests/security/CWE-730/RegexInjection.java
diff --git a/java/ql/test/query-tests/security/CWE-730/RegexInjection.qlref b/java/ql/test/query-tests/security/CWE-730/RegexInjection.qlref
new file mode 100644
index 00000000000..36e4f927f0a
--- /dev/null
+++ b/java/ql/test/query-tests/security/CWE-730/RegexInjection.qlref
@@ -0,0 +1 @@
+experimental/Security/CWE/CWE-730/RegexInjection.ql
diff --git a/java/ql/test/experimental/query-tests/security/CWE-730/options b/java/ql/test/query-tests/security/CWE-730/options-regexInjection
similarity index 100%
rename from java/ql/test/experimental/query-tests/security/CWE-730/options
rename to java/ql/test/query-tests/security/CWE-730/options-regexInjection

From 25436fe55569f274da218a8d0235831d9828c995 Mon Sep 17 00:00:00 2001
From: Jami Cogswell <jcogs33@Jamis-MacBook-Pro.local>
Date: Mon, 24 Oct 2022 13:46:24 -0400
Subject: [PATCH 0102/1420] update options and qlref files

---
 java/ql/test/query-tests/security/CWE-730/RegexInjection.qlref  | 2 +-
 java/ql/test/query-tests/security/CWE-730/options               | 2 +-
 .../ql/test/query-tests/security/CWE-730/options-regexInjection | 1 -
 3 files changed, 2 insertions(+), 3 deletions(-)
 delete mode 100644 java/ql/test/query-tests/security/CWE-730/options-regexInjection

diff --git a/java/ql/test/query-tests/security/CWE-730/RegexInjection.qlref b/java/ql/test/query-tests/security/CWE-730/RegexInjection.qlref
index 36e4f927f0a..c94b1575130 100644
--- a/java/ql/test/query-tests/security/CWE-730/RegexInjection.qlref
+++ b/java/ql/test/query-tests/security/CWE-730/RegexInjection.qlref
@@ -1 +1 @@
-experimental/Security/CWE/CWE-730/RegexInjection.ql
+Security/CWE/CWE-730/RegexInjection.ql
diff --git a/java/ql/test/query-tests/security/CWE-730/options b/java/ql/test/query-tests/security/CWE-730/options
index 2f7d22dc61c..884cb21114c 100644
--- a/java/ql/test/query-tests/security/CWE-730/options
+++ b/java/ql/test/query-tests/security/CWE-730/options
@@ -1 +1 @@
-// semmle-extractor-options: --javac-args -cp ${testdir}/../../../stubs/servlet-api-2.4:${testdir}/../../../stubs/guava-30.0
\ No newline at end of file
+// semmle-extractor-options: --javac-args -cp ${testdir}/../../../stubs/servlet-api-2.4:${testdir}/../../../stubs/guava-30.0:${testdir}/../../../stubs/servlet-api-2.4:${testdir}/../../../stubs/apache-commons-lang3-3.7
diff --git a/java/ql/test/query-tests/security/CWE-730/options-regexInjection b/java/ql/test/query-tests/security/CWE-730/options-regexInjection
deleted file mode 100644
index 73f1b5a3c3e..00000000000
--- a/java/ql/test/query-tests/security/CWE-730/options-regexInjection
+++ /dev/null
@@ -1 +0,0 @@
-// semmle-extractor-options: --javac-args -cp ${testdir}/../../../../stubs/servlet-api-2.4:${testdir}/../../../../stubs/apache-commons-lang3-3.7
\ No newline at end of file

From 833c5edf067f01e9e4d3d62bc20c60811044b6a8 Mon Sep 17 00:00:00 2001
From: Jami Cogswell <jcogs33@Jamis-MacBook-Pro.local>
Date: Mon, 24 Oct 2022 14:29:06 -0400
Subject: [PATCH 0103/1420] move to .qll file and switch to InlineExpectations
 tests

---
 .../java/security/RegexInjectionQuery.qll     | 75 ++++++++++++++++
 .../Security/CWE/CWE-730/RegexInjection.ql    | 85 +------------------
 .../security/CWE-730/RegexInjection.expected  | 73 ----------------
 .../security/CWE-730/RegexInjection.qlref     |  1 -
 .../CWE-730/RegexInjectionTest.expected       |  0
 ...Injection.java => RegexInjectionTest.java} | 34 ++++----
 .../security/CWE-730/RegexInjectionTest.ql    | 21 +++++
 7 files changed, 114 insertions(+), 175 deletions(-)
 create mode 100644 java/ql/lib/semmle/code/java/security/RegexInjectionQuery.qll
 delete mode 100644 java/ql/test/query-tests/security/CWE-730/RegexInjection.expected
 delete mode 100644 java/ql/test/query-tests/security/CWE-730/RegexInjection.qlref
 create mode 100644 java/ql/test/query-tests/security/CWE-730/RegexInjectionTest.expected
 rename java/ql/test/query-tests/security/CWE-730/{RegexInjection.java => RegexInjectionTest.java} (82%)
 create mode 100644 java/ql/test/query-tests/security/CWE-730/RegexInjectionTest.ql

diff --git a/java/ql/lib/semmle/code/java/security/RegexInjectionQuery.qll b/java/ql/lib/semmle/code/java/security/RegexInjectionQuery.qll
new file mode 100644
index 00000000000..c91a49243ad
--- /dev/null
+++ b/java/ql/lib/semmle/code/java/security/RegexInjectionQuery.qll
@@ -0,0 +1,75 @@
+import java
+import semmle.code.java.dataflow.FlowSources
+import semmle.code.java.dataflow.TaintTracking
+
+/**
+ * A data flow sink for untrusted user input used to construct regular expressions.
+ */
+class RegexSink extends DataFlow::ExprNode {
+  RegexSink() {
+    exists(MethodAccess ma, Method m | m = ma.getMethod() |
+      (
+        m.getDeclaringType() instanceof TypeString and
+        (
+          ma.getArgument(0) = this.asExpr() and
+          // TODO: confirm if more/less than the below need to be handled
+          m.hasName(["matches", "split", "replaceFirst", "replaceAll"])
+        )
+        or
+        // TODO: review Java Pattern API
+        m.getDeclaringType().hasQualifiedName("java.util.regex", "Pattern") and
+        (
+          ma.getArgument(0) = this.asExpr() and
+          // TODO: confirm if more/less than the below need to be handled
+          m.hasName(["compile", "matches"])
+        )
+        or
+        // TODO: read docs about regex APIs in Java
+        m.getDeclaringType().hasQualifiedName("org.apache.commons.lang3", "RegExUtils") and
+        (
+          ma.getArgument(1) = this.asExpr() and
+          m.getParameterType(1) instanceof TypeString and
+          // TODO: confirm if more/less than the below need to be handled
+          m.hasName([
+              "removeAll", "removeFirst", "removePattern", "replaceAll", "replaceFirst",
+              "replacePattern"
+            ])
+        )
+      )
+    )
+  }
+}
+
+// TODO: is this abstract class needed? Are there pre-existing sanitizer classes that can be used instead?
+abstract class Sanitizer extends DataFlow::ExprNode { }
+
+/**
+ * A call to a function whose name suggests that it escapes regular
+ * expression meta-characters.
+ */
+class RegExpSanitizationCall extends Sanitizer {
+  RegExpSanitizationCall() {
+    exists(string calleeName, string sanitize, string regexp |
+      calleeName = this.asExpr().(Call).getCallee().getName() and
+      sanitize = "(?:escape|saniti[sz]e)" and // TODO: confirm this is sufficient
+      regexp = "regexp?" // TODO: confirm this is sufficient
+    |
+      calleeName
+          .regexpMatch("(?i)(" + sanitize + ".*" + regexp + ".*)" + "|(" + regexp + ".*" + sanitize +
+              ".*)") // TODO: confirm this is sufficient
+    )
+  }
+}
+
+/**
+ * A taint-tracking configuration for untrusted user input used to construct regular expressions.
+ */
+class RegexInjectionConfiguration extends TaintTracking::Configuration {
+  RegexInjectionConfiguration() { this = "RegexInjectionConfiguration" }
+
+  override predicate isSource(DataFlow::Node source) { source instanceof RemoteFlowSource }
+
+  override predicate isSink(DataFlow::Node sink) { sink instanceof RegexSink }
+
+  override predicate isSanitizer(DataFlow::Node node) { node instanceof Sanitizer }
+}
diff --git a/java/ql/src/Security/CWE/CWE-730/RegexInjection.ql b/java/ql/src/Security/CWE/CWE-730/RegexInjection.ql
index 94bfccd9d3e..5f56eefb25a 100644
--- a/java/ql/src/Security/CWE/CWE-730/RegexInjection.ql
+++ b/java/ql/src/Security/CWE/CWE-730/RegexInjection.ql
@@ -13,93 +13,10 @@
  */
 
 import java
-import semmle.code.java.dataflow.FlowSources
-import semmle.code.java.dataflow.TaintTracking
+import semmle.code.java.security.RegexInjectionQuery
 import DataFlow::PathGraph
 
-/**
- * A data flow sink for untrusted user input used to construct regular expressions.
- */
-class RegexSink extends DataFlow::ExprNode {
-  RegexSink() {
-    exists(MethodAccess ma, Method m | m = ma.getMethod() |
-      (
-        m.getDeclaringType() instanceof TypeString and
-        (
-          ma.getArgument(0) = this.asExpr() and
-          // TODO: confirm if more/less than the below need to be handled
-          m.hasName(["matches", "split", "replaceFirst", "replaceAll"])
-        )
-        or
-        // TODO: review Java Pattern API
-        m.getDeclaringType().hasQualifiedName("java.util.regex", "Pattern") and
-        (
-          ma.getArgument(0) = this.asExpr() and
-          // TODO: confirm if more/less than the below need to be handled
-          m.hasName(["compile", "matches"])
-        )
-        or
-        // TODO: read docs about regex APIs in Java
-        m.getDeclaringType().hasQualifiedName("org.apache.commons.lang3", "RegExUtils") and
-        (
-          ma.getArgument(1) = this.asExpr() and
-          m.getParameterType(1) instanceof TypeString and
-          // TODO: confirm if more/less than the below need to be handled
-          m.hasName([
-              "removeAll", "removeFirst", "removePattern", "replaceAll", "replaceFirst",
-              "replacePattern"
-            ])
-        )
-      )
-    )
-  }
-}
-
-// TODO: is this abstract class needed? Are there pre-existing sanitizer classes that can be used instead?
-abstract class Sanitizer extends DataFlow::ExprNode { }
-
-/**
- * A call to a function whose name suggests that it escapes regular
- * expression meta-characters.
- */
-class RegExpSanitizationCall extends Sanitizer {
-  RegExpSanitizationCall() {
-    exists(string calleeName, string sanitize, string regexp |
-      calleeName = this.asExpr().(Call).getCallee().getName() and
-      sanitize = "(?:escape|saniti[sz]e)" and // TODO: confirm this is sufficient
-      regexp = "regexp?" // TODO: confirm this is sufficient
-    |
-      calleeName
-          .regexpMatch("(?i)(" + sanitize + ".*" + regexp + ".*)" + "|(" + regexp + ".*" + sanitize +
-              ".*)") // TODO: confirm this is sufficient
-    )
-  }
-}
-
-/**
- * A taint-tracking configuration for untrusted user input used to construct regular expressions.
- */
-class RegexInjectionConfiguration extends TaintTracking::Configuration {
-  RegexInjectionConfiguration() { this = "RegexInjectionConfiguration" }
-
-  override predicate isSource(DataFlow::Node source) { source instanceof RemoteFlowSource }
-
-  override predicate isSink(DataFlow::Node sink) { sink instanceof RegexSink }
-
-  override predicate isSanitizer(DataFlow::Node node) { node instanceof Sanitizer }
-}
-
 from DataFlow::PathNode source, DataFlow::PathNode sink, RegexInjectionConfiguration c
 where c.hasFlowPath(source, sink)
 select sink.getNode(), source, sink, "This regular expression is constructed from a $@.",
   source.getNode(), "user-provided value"
-// from MethodAccess ma
-// where
-//   // ma.getMethod().hasName("startsWith") and // graphhopper
-//   // ma.getFile().getBaseName() = "NavigateResource.java" // graphhopper
-//   // ma.getMethod().hasName("substring") and // jfinal
-//   // ma.getFile().getBaseName() = "FileManager.java" // jfinal
-//   ma.getMethod().hasName("startsWith") and // roller
-//   ma.getFile().getBaseName() = "PageServlet.java" // roller (or RegexUtil.java)
-// ProteinArraySignificanceTestJSON.java or MockRKeys.java for cbioportal
-// select ma, "method access"
diff --git a/java/ql/test/query-tests/security/CWE-730/RegexInjection.expected b/java/ql/test/query-tests/security/CWE-730/RegexInjection.expected
deleted file mode 100644
index a795f1591ad..00000000000
--- a/java/ql/test/query-tests/security/CWE-730/RegexInjection.expected
+++ /dev/null
@@ -1,73 +0,0 @@
-edges
-| RegexInjection.java:13:22:13:52 | getParameter(...) : String | RegexInjection.java:16:26:16:47 | ... + ... |
-| RegexInjection.java:20:22:20:52 | getParameter(...) : String | RegexInjection.java:23:24:23:30 | pattern |
-| RegexInjection.java:27:22:27:52 | getParameter(...) : String | RegexInjection.java:30:31:30:37 | pattern |
-| RegexInjection.java:34:22:34:52 | getParameter(...) : String | RegexInjection.java:37:29:37:35 | pattern |
-| RegexInjection.java:41:22:41:52 | getParameter(...) : String | RegexInjection.java:44:34:44:40 | pattern |
-| RegexInjection.java:51:22:51:52 | getParameter(...) : String | RegexInjection.java:54:28:54:34 | pattern |
-| RegexInjection.java:58:22:58:52 | getParameter(...) : String | RegexInjection.java:61:28:61:34 | pattern |
-| RegexInjection.java:65:22:65:52 | getParameter(...) : String | RegexInjection.java:68:36:68:42 | pattern : String |
-| RegexInjection.java:68:32:68:43 | foo(...) : String | RegexInjection.java:68:26:68:52 | ... + ... |
-| RegexInjection.java:68:36:68:42 | pattern : String | RegexInjection.java:68:32:68:43 | foo(...) : String |
-| RegexInjection.java:68:36:68:42 | pattern : String | RegexInjection.java:71:14:71:23 | str : String |
-| RegexInjection.java:71:14:71:23 | str : String | RegexInjection.java:72:12:72:14 | str : String |
-| RegexInjection.java:84:22:84:52 | getParameter(...) : String | RegexInjection.java:90:26:90:47 | ... + ... |
-| RegexInjection.java:100:22:100:52 | getParameter(...) : String | RegexInjection.java:103:40:103:46 | pattern |
-| RegexInjection.java:107:22:107:52 | getParameter(...) : String | RegexInjection.java:110:42:110:48 | pattern |
-| RegexInjection.java:114:22:114:52 | getParameter(...) : String | RegexInjection.java:117:44:117:50 | pattern |
-| RegexInjection.java:121:22:121:52 | getParameter(...) : String | RegexInjection.java:124:41:124:47 | pattern |
-| RegexInjection.java:128:22:128:52 | getParameter(...) : String | RegexInjection.java:131:43:131:49 | pattern |
-| RegexInjection.java:143:22:143:52 | getParameter(...) : String | RegexInjection.java:146:45:146:51 | pattern |
-nodes
-| RegexInjection.java:13:22:13:52 | getParameter(...) : String | semmle.label | getParameter(...) : String |
-| RegexInjection.java:16:26:16:47 | ... + ... | semmle.label | ... + ... |
-| RegexInjection.java:20:22:20:52 | getParameter(...) : String | semmle.label | getParameter(...) : String |
-| RegexInjection.java:23:24:23:30 | pattern | semmle.label | pattern |
-| RegexInjection.java:27:22:27:52 | getParameter(...) : String | semmle.label | getParameter(...) : String |
-| RegexInjection.java:30:31:30:37 | pattern | semmle.label | pattern |
-| RegexInjection.java:34:22:34:52 | getParameter(...) : String | semmle.label | getParameter(...) : String |
-| RegexInjection.java:37:29:37:35 | pattern | semmle.label | pattern |
-| RegexInjection.java:41:22:41:52 | getParameter(...) : String | semmle.label | getParameter(...) : String |
-| RegexInjection.java:44:34:44:40 | pattern | semmle.label | pattern |
-| RegexInjection.java:51:22:51:52 | getParameter(...) : String | semmle.label | getParameter(...) : String |
-| RegexInjection.java:54:28:54:34 | pattern | semmle.label | pattern |
-| RegexInjection.java:58:22:58:52 | getParameter(...) : String | semmle.label | getParameter(...) : String |
-| RegexInjection.java:61:28:61:34 | pattern | semmle.label | pattern |
-| RegexInjection.java:65:22:65:52 | getParameter(...) : String | semmle.label | getParameter(...) : String |
-| RegexInjection.java:68:26:68:52 | ... + ... | semmle.label | ... + ... |
-| RegexInjection.java:68:32:68:43 | foo(...) : String | semmle.label | foo(...) : String |
-| RegexInjection.java:68:36:68:42 | pattern : String | semmle.label | pattern : String |
-| RegexInjection.java:71:14:71:23 | str : String | semmle.label | str : String |
-| RegexInjection.java:72:12:72:14 | str : String | semmle.label | str : String |
-| RegexInjection.java:84:22:84:52 | getParameter(...) : String | semmle.label | getParameter(...) : String |
-| RegexInjection.java:90:26:90:47 | ... + ... | semmle.label | ... + ... |
-| RegexInjection.java:100:22:100:52 | getParameter(...) : String | semmle.label | getParameter(...) : String |
-| RegexInjection.java:103:40:103:46 | pattern | semmle.label | pattern |
-| RegexInjection.java:107:22:107:52 | getParameter(...) : String | semmle.label | getParameter(...) : String |
-| RegexInjection.java:110:42:110:48 | pattern | semmle.label | pattern |
-| RegexInjection.java:114:22:114:52 | getParameter(...) : String | semmle.label | getParameter(...) : String |
-| RegexInjection.java:117:44:117:50 | pattern | semmle.label | pattern |
-| RegexInjection.java:121:22:121:52 | getParameter(...) : String | semmle.label | getParameter(...) : String |
-| RegexInjection.java:124:41:124:47 | pattern | semmle.label | pattern |
-| RegexInjection.java:128:22:128:52 | getParameter(...) : String | semmle.label | getParameter(...) : String |
-| RegexInjection.java:131:43:131:49 | pattern | semmle.label | pattern |
-| RegexInjection.java:143:22:143:52 | getParameter(...) : String | semmle.label | getParameter(...) : String |
-| RegexInjection.java:146:45:146:51 | pattern | semmle.label | pattern |
-subpaths
-| RegexInjection.java:68:36:68:42 | pattern : String | RegexInjection.java:71:14:71:23 | str : String | RegexInjection.java:72:12:72:14 | str : String | RegexInjection.java:68:32:68:43 | foo(...) : String |
-#select
-| RegexInjection.java:16:26:16:47 | ... + ... | RegexInjection.java:13:22:13:52 | getParameter(...) : String | RegexInjection.java:16:26:16:47 | ... + ... | This regular expression is constructed from a $@. | RegexInjection.java:13:22:13:52 | getParameter(...) | user-provided value |
-| RegexInjection.java:23:24:23:30 | pattern | RegexInjection.java:20:22:20:52 | getParameter(...) : String | RegexInjection.java:23:24:23:30 | pattern | This regular expression is constructed from a $@. | RegexInjection.java:20:22:20:52 | getParameter(...) | user-provided value |
-| RegexInjection.java:30:31:30:37 | pattern | RegexInjection.java:27:22:27:52 | getParameter(...) : String | RegexInjection.java:30:31:30:37 | pattern | This regular expression is constructed from a $@. | RegexInjection.java:27:22:27:52 | getParameter(...) | user-provided value |
-| RegexInjection.java:37:29:37:35 | pattern | RegexInjection.java:34:22:34:52 | getParameter(...) : String | RegexInjection.java:37:29:37:35 | pattern | This regular expression is constructed from a $@. | RegexInjection.java:34:22:34:52 | getParameter(...) | user-provided value |
-| RegexInjection.java:44:34:44:40 | pattern | RegexInjection.java:41:22:41:52 | getParameter(...) : String | RegexInjection.java:44:34:44:40 | pattern | This regular expression is constructed from a $@. | RegexInjection.java:41:22:41:52 | getParameter(...) | user-provided value |
-| RegexInjection.java:54:28:54:34 | pattern | RegexInjection.java:51:22:51:52 | getParameter(...) : String | RegexInjection.java:54:28:54:34 | pattern | This regular expression is constructed from a $@. | RegexInjection.java:51:22:51:52 | getParameter(...) | user-provided value |
-| RegexInjection.java:61:28:61:34 | pattern | RegexInjection.java:58:22:58:52 | getParameter(...) : String | RegexInjection.java:61:28:61:34 | pattern | This regular expression is constructed from a $@. | RegexInjection.java:58:22:58:52 | getParameter(...) | user-provided value |
-| RegexInjection.java:68:26:68:52 | ... + ... | RegexInjection.java:65:22:65:52 | getParameter(...) : String | RegexInjection.java:68:26:68:52 | ... + ... | This regular expression is constructed from a $@. | RegexInjection.java:65:22:65:52 | getParameter(...) | user-provided value |
-| RegexInjection.java:90:26:90:47 | ... + ... | RegexInjection.java:84:22:84:52 | getParameter(...) : String | RegexInjection.java:90:26:90:47 | ... + ... | This regular expression is constructed from a $@. | RegexInjection.java:84:22:84:52 | getParameter(...) | user-provided value |
-| RegexInjection.java:103:40:103:46 | pattern | RegexInjection.java:100:22:100:52 | getParameter(...) : String | RegexInjection.java:103:40:103:46 | pattern | This regular expression is constructed from a $@. | RegexInjection.java:100:22:100:52 | getParameter(...) | user-provided value |
-| RegexInjection.java:110:42:110:48 | pattern | RegexInjection.java:107:22:107:52 | getParameter(...) : String | RegexInjection.java:110:42:110:48 | pattern | This regular expression is constructed from a $@. | RegexInjection.java:107:22:107:52 | getParameter(...) | user-provided value |
-| RegexInjection.java:117:44:117:50 | pattern | RegexInjection.java:114:22:114:52 | getParameter(...) : String | RegexInjection.java:117:44:117:50 | pattern | This regular expression is constructed from a $@. | RegexInjection.java:114:22:114:52 | getParameter(...) | user-provided value |
-| RegexInjection.java:124:41:124:47 | pattern | RegexInjection.java:121:22:121:52 | getParameter(...) : String | RegexInjection.java:124:41:124:47 | pattern | This regular expression is constructed from a $@. | RegexInjection.java:121:22:121:52 | getParameter(...) | user-provided value |
-| RegexInjection.java:131:43:131:49 | pattern | RegexInjection.java:128:22:128:52 | getParameter(...) : String | RegexInjection.java:131:43:131:49 | pattern | This regular expression is constructed from a $@. | RegexInjection.java:128:22:128:52 | getParameter(...) | user-provided value |
-| RegexInjection.java:146:45:146:51 | pattern | RegexInjection.java:143:22:143:52 | getParameter(...) : String | RegexInjection.java:146:45:146:51 | pattern | This regular expression is constructed from a $@. | RegexInjection.java:143:22:143:52 | getParameter(...) | user-provided value |
diff --git a/java/ql/test/query-tests/security/CWE-730/RegexInjection.qlref b/java/ql/test/query-tests/security/CWE-730/RegexInjection.qlref
deleted file mode 100644
index c94b1575130..00000000000
--- a/java/ql/test/query-tests/security/CWE-730/RegexInjection.qlref
+++ /dev/null
@@ -1 +0,0 @@
-Security/CWE/CWE-730/RegexInjection.ql
diff --git a/java/ql/test/query-tests/security/CWE-730/RegexInjectionTest.expected b/java/ql/test/query-tests/security/CWE-730/RegexInjectionTest.expected
new file mode 100644
index 00000000000..e69de29bb2d
diff --git a/java/ql/test/query-tests/security/CWE-730/RegexInjection.java b/java/ql/test/query-tests/security/CWE-730/RegexInjectionTest.java
similarity index 82%
rename from java/ql/test/query-tests/security/CWE-730/RegexInjection.java
rename to java/ql/test/query-tests/security/CWE-730/RegexInjectionTest.java
index 2aace93aeb8..fa86089515b 100644
--- a/java/ql/test/query-tests/security/CWE-730/RegexInjection.java
+++ b/java/ql/test/query-tests/security/CWE-730/RegexInjectionTest.java
@@ -8,64 +8,64 @@ import javax.servlet.ServletException;
 
 import org.apache.commons.lang3.RegExUtils;
 
-public class RegexInjection extends HttpServlet {
+public class RegexInjectionTest extends HttpServlet {
   public boolean string1(javax.servlet.http.HttpServletRequest request) {
     String pattern = request.getParameter("pattern");
     String input = request.getParameter("input");
 
-    return input.matches("^" + pattern + "=.*$");  // BAD
+    return input.matches("^" + pattern + "=.*$");  // $ hasRegexInjection
   }
 
   public boolean string2(javax.servlet.http.HttpServletRequest request) {
     String pattern = request.getParameter("pattern");
     String input = request.getParameter("input");
 
-    return input.split(pattern).length > 0;  // BAD
+    return input.split(pattern).length > 0;  // $ hasRegexInjection
   }
 
   public boolean string3(javax.servlet.http.HttpServletRequest request) {
     String pattern = request.getParameter("pattern");
     String input = request.getParameter("input");
 
-    return input.replaceFirst(pattern, "").length() > 0;  // BAD
+    return input.replaceFirst(pattern, "").length() > 0;  // $ hasRegexInjection
   }
 
   public boolean string4(javax.servlet.http.HttpServletRequest request) {
     String pattern = request.getParameter("pattern");
     String input = request.getParameter("input");
 
-    return input.replaceAll(pattern, "").length() > 0;  // BAD
+    return input.replaceAll(pattern, "").length() > 0;  // $ hasRegexInjection
   }
 
   public boolean pattern1(javax.servlet.http.HttpServletRequest request) {
     String pattern = request.getParameter("pattern");
     String input = request.getParameter("input");
 
-    Pattern pt = Pattern.compile(pattern);
+    Pattern pt = Pattern.compile(pattern); // $ hasRegexInjection
     Matcher matcher = pt.matcher(input);
 
-    return matcher.find();  // BAD
+    return matcher.find();  // BAD // ! double-check that line 44 is the correct location for this alert (seems like it based on the old .expected file)
   }
 
   public boolean pattern2(javax.servlet.http.HttpServletRequest request) {
     String pattern = request.getParameter("pattern");
     String input = request.getParameter("input");
 
-    return Pattern.compile(pattern).matcher(input).matches();  // BAD
+    return Pattern.compile(pattern).matcher(input).matches();  // $ hasRegexInjection
   }
 
   public boolean pattern3(javax.servlet.http.HttpServletRequest request) {
     String pattern = request.getParameter("pattern");
     String input = request.getParameter("input");
 
-    return Pattern.matches(pattern, input);  // BAD
+    return Pattern.matches(pattern, input);  // $ hasRegexInjection
   }
 
   public boolean pattern4(javax.servlet.http.HttpServletRequest request) {
     String pattern = request.getParameter("pattern");
     String input = request.getParameter("input");
 
-    return input.matches("^" + foo(pattern) + "=.*$"); // BAD
+    return input.matches("^" + foo(pattern) + "=.*$"); // $ hasRegexInjection
   }
 
   String foo(String str) {
@@ -87,7 +87,7 @@ public class RegexInjection extends HttpServlet {
     escapeSpecialRegexChars(pattern);
 
     // BAD: the pattern is not really sanitized
-    return input.matches("^" + pattern + "=.*$");
+    return input.matches("^" + pattern + "=.*$"); // $ hasRegexInjection
   }
 
   Pattern SPECIAL_REGEX_CHARS = Pattern.compile("[{}()\\[\\]><-=!.+*?^$\\\\|]");
@@ -100,35 +100,35 @@ public class RegexInjection extends HttpServlet {
     String pattern = request.getParameter("pattern");
     String input = request.getParameter("input");
 
-    return RegExUtils.removeAll(input, pattern).length() > 0;  // BAD
+    return RegExUtils.removeAll(input, pattern).length() > 0;  // $ hasRegexInjection
   }
 
   public boolean apache2(javax.servlet.http.HttpServletRequest request) {
     String pattern = request.getParameter("pattern");
     String input = request.getParameter("input");
 
-    return RegExUtils.removeFirst(input, pattern).length() > 0;  // BAD
+    return RegExUtils.removeFirst(input, pattern).length() > 0;  // $ hasRegexInjection
   }
 
   public boolean apache3(javax.servlet.http.HttpServletRequest request) {
     String pattern = request.getParameter("pattern");
     String input = request.getParameter("input");
 
-    return RegExUtils.removePattern(input, pattern).length() > 0;  // BAD
+    return RegExUtils.removePattern(input, pattern).length() > 0;  // $ hasRegexInjection
   }
 
   public boolean apache4(javax.servlet.http.HttpServletRequest request) {
     String pattern = request.getParameter("pattern");
     String input = request.getParameter("input");
 
-    return RegExUtils.replaceAll(input, pattern, "").length() > 0;  // BAD
+    return RegExUtils.replaceAll(input, pattern, "").length() > 0;  // $ hasRegexInjection
   }
 
   public boolean apache5(javax.servlet.http.HttpServletRequest request) {
     String pattern = request.getParameter("pattern");
     String input = request.getParameter("input");
 
-    return RegExUtils.replaceFirst(input, pattern, "").length() > 0;  // BAD
+    return RegExUtils.replaceFirst(input, pattern, "").length() > 0;  // $ hasRegexInjection
   }
 
   public boolean apache6(javax.servlet.http.HttpServletRequest request) {
@@ -143,6 +143,6 @@ public class RegexInjection extends HttpServlet {
     String pattern = request.getParameter("pattern");
     String input = request.getParameter("input");
 
-    return RegExUtils.replacePattern(input, pattern, "").length() > 0;  // BAD
+    return RegExUtils.replacePattern(input, pattern, "").length() > 0;  // $ hasRegexInjection
   }
 }
diff --git a/java/ql/test/query-tests/security/CWE-730/RegexInjectionTest.ql b/java/ql/test/query-tests/security/CWE-730/RegexInjectionTest.ql
new file mode 100644
index 00000000000..596decf98af
--- /dev/null
+++ b/java/ql/test/query-tests/security/CWE-730/RegexInjectionTest.ql
@@ -0,0 +1,21 @@
+import java
+import TestUtilities.InlineExpectationsTest
+import semmle.code.java.security.RegexInjectionQuery
+
+//import semmle.code.java.security.regexp.PolynomialReDoSQuery
+class RegexInjectionTest extends InlineExpectationsTest {
+  RegexInjectionTest() { this = "RegexInjectionTest" }
+
+  override string getARelevantTag() { result = "hasRegexInjection" }
+
+  override predicate hasActualResult(Location location, string element, string tag, string value) {
+    tag = "hasRegexInjection" and
+    exists(DataFlow::PathNode source, DataFlow::PathNode sink, RegexInjectionConfiguration c |
+      c.hasFlowPath(source, sink)
+    |
+      location = sink.getNode().getLocation() and
+      element = sink.getNode().toString() and
+      value = ""
+    )
+  }
+}

From 6545cff0efc0767f7360a9ebed014b21eb4ef5d6 Mon Sep 17 00:00:00 2001
From: Jami Cogswell <jcogs33@Jamis-MacBook-Pro.local>
Date: Tue, 25 Oct 2022 17:07:52 -0400
Subject: [PATCH 0104/1420] add Pattern.quote sanitizer

---
 .../java/security/RegexInjectionQuery.qll     | 29 ++++++++++++++-----
 .../security/CWE-730/RegexInjectionTest.java  | 18 ++++++++++--
 2 files changed, 37 insertions(+), 10 deletions(-)

diff --git a/java/ql/lib/semmle/code/java/security/RegexInjectionQuery.qll b/java/ql/lib/semmle/code/java/security/RegexInjectionQuery.qll
index c91a49243ad..a56d26b7183 100644
--- a/java/ql/lib/semmle/code/java/security/RegexInjectionQuery.qll
+++ b/java/ql/lib/semmle/code/java/security/RegexInjectionQuery.qll
@@ -11,25 +11,26 @@ class RegexSink extends DataFlow::ExprNode {
       (
         m.getDeclaringType() instanceof TypeString and
         (
-          ma.getArgument(0) = this.asExpr() and
-          // TODO: confirm if more/less than the below need to be handled
+          ma.getArgument(0) = this.asExpr() and // ! combine this line with the below at least? e.g. TypeString and TypePattern both use it
+          // ! test below more?
+          // ! (are there already classes for these methods in a regex library?)
           m.hasName(["matches", "split", "replaceFirst", "replaceAll"])
         )
         or
-        // TODO: review Java Pattern API
+        // ! make class for the below? (is there already a class for this and its methods in a regex library?)
         m.getDeclaringType().hasQualifiedName("java.util.regex", "Pattern") and
         (
           ma.getArgument(0) = this.asExpr() and
-          // TODO: confirm if more/less than the below need to be handled
+          // ! look into further: Pattern.matcher, .pattern() and .toString() as taint steps, .split and .splitAsStream
           m.hasName(["compile", "matches"])
         )
         or
-        // TODO: read docs about regex APIs in Java
+        // ! make class for the below? (is there already a class for this and its methods in a regex library?)
         m.getDeclaringType().hasQualifiedName("org.apache.commons.lang3", "RegExUtils") and
         (
           ma.getArgument(1) = this.asExpr() and
           m.getParameterType(1) instanceof TypeString and
-          // TODO: confirm if more/less than the below need to be handled
+          // ! test below more?
           m.hasName([
               "removeAll", "removeFirst", "removePattern", "replaceAll", "replaceFirst",
               "replacePattern"
@@ -40,17 +41,21 @@ class RegexSink extends DataFlow::ExprNode {
   }
 }
 
-// TODO: is this abstract class needed? Are there pre-existing sanitizer classes that can be used instead?
+// ! keep and rename to RegexInjectionSanitizer IF makes sense to have two sanitizers extending it?;
+// ! else, ask Tony/others about if stylistically better to keep it (see default example in LogInjection.qll, etc.)
+// ! maybe make abstract classes for source and sink as well (if you do this, mention it in PR description as an attempt to be similar to the other languages' implementations)
 abstract class Sanitizer extends DataFlow::ExprNode { }
 
 /**
  * A call to a function whose name suggests that it escapes regular
  * expression meta-characters.
  */
+// ! rename as DefaultRegexInjectionSanitizer?
 class RegExpSanitizationCall extends Sanitizer {
   RegExpSanitizationCall() {
     exists(string calleeName, string sanitize, string regexp |
       calleeName = this.asExpr().(Call).getCallee().getName() and
+      // ! add test case for sanitize? I think current tests only check escape
       sanitize = "(?:escape|saniti[sz]e)" and // TODO: confirm this is sufficient
       regexp = "regexp?" // TODO: confirm this is sufficient
     |
@@ -58,6 +63,16 @@ class RegExpSanitizationCall extends Sanitizer {
           .regexpMatch("(?i)(" + sanitize + ".*" + regexp + ".*)" + "|(" + regexp + ".*" + sanitize +
               ".*)") // TODO: confirm this is sufficient
     )
+    or
+    // adds Pattern.quote() as a sanitizer
+    // see https://rules.sonarsource.com/java/RSPEC-2631 and https://sensei.securecodewarrior.com/recipes/scw:java:regex-injection
+    exists(MethodAccess ma, Method m | m = ma.getMethod() |
+      m.getDeclaringType().hasQualifiedName("java.util.regex", "Pattern") and
+      (
+        ma.getArgument(0) = this.asExpr() and
+        m.hasName("quote")
+      )
+    )
   }
 }
 
diff --git a/java/ql/test/query-tests/security/CWE-730/RegexInjectionTest.java b/java/ql/test/query-tests/security/CWE-730/RegexInjectionTest.java
index fa86089515b..966893b053f 100644
--- a/java/ql/test/query-tests/security/CWE-730/RegexInjectionTest.java
+++ b/java/ql/test/query-tests/security/CWE-730/RegexInjectionTest.java
@@ -44,7 +44,7 @@ public class RegexInjectionTest extends HttpServlet {
     Pattern pt = Pattern.compile(pattern); // $ hasRegexInjection
     Matcher matcher = pt.matcher(input);
 
-    return matcher.find();  // BAD // ! double-check that line 44 is the correct location for this alert (seems like it based on the old .expected file)
+    return matcher.find();
   }
 
   public boolean pattern2(javax.servlet.http.HttpServletRequest request) {
@@ -76,7 +76,7 @@ public class RegexInjectionTest extends HttpServlet {
     String pattern = request.getParameter("pattern");
     String input = request.getParameter("input");
 
-    // GOOD: User input is sanitized before constructing the regex
+    // Safe: User input is sanitized before constructing the regex
     return input.matches("^" + escapeSpecialRegexChars(pattern) + "=.*$");
   }
 
@@ -84,6 +84,7 @@ public class RegexInjectionTest extends HttpServlet {
     String pattern = request.getParameter("pattern");
     String input = request.getParameter("input");
 
+    // TODO: add a "Safe" test for situation when this return value is stored in a variable, then the variable is used in the regex
     escapeSpecialRegexChars(pattern);
 
     // BAD: the pattern is not really sanitized
@@ -92,6 +93,7 @@ public class RegexInjectionTest extends HttpServlet {
 
   Pattern SPECIAL_REGEX_CHARS = Pattern.compile("[{}()\\[\\]><-=!.+*?^$\\\\|]");
 
+  // TODO: check if any other inbuilt escape/sanitizers in Java APIs
   String escapeSpecialRegexChars(String str) {
     return SPECIAL_REGEX_CHARS.matcher(str).replaceAll("\\\\$0");
   }
@@ -136,7 +138,7 @@ public class RegexInjectionTest extends HttpServlet {
     String input = request.getParameter("input");
 
     Pattern pt = (Pattern)(Object) pattern;
-    return RegExUtils.replaceFirst(input, pt, "").length() > 0;  // GOOD, Pattern compile is the sink instead
+    return RegExUtils.replaceFirst(input, pt, "").length() > 0;  // Safe: Pattern compile is the sink instead
   }
 
   public boolean apache7(javax.servlet.http.HttpServletRequest request) {
@@ -145,4 +147,14 @@ public class RegexInjectionTest extends HttpServlet {
 
     return RegExUtils.replacePattern(input, pattern, "").length() > 0;  // $ hasRegexInjection
   }
+
+  // from https://rules.sonarsource.com/java/RSPEC-2631 to test for Pattern.quote as safe
+  public boolean validate(javax.servlet.http.HttpServletRequest request) {
+    String regex = request.getParameter("regex");
+    String input = request.getParameter("input");
+
+    return input.matches(Pattern.quote(regex));  // Safe: with Pattern.quote, metacharacters or escape sequences will be given no special meaning
+  }
 }
+
+// ! see the following for potential additional test case ideas: https://www.baeldung.com/regular-expressions-java

From 6ba7449df7d06341807301834c6fc052fc3d9aa5 Mon Sep 17 00:00:00 2001
From: Jami Cogswell <jcogs33@Jamis-MacBook-Pro.local>
Date: Thu, 27 Oct 2022 16:04:22 -0400
Subject: [PATCH 0105/1420] adjust imports


From 037a05cd66d5d0be4dd689b5a4d22bc349a320bf Mon Sep 17 00:00:00 2001
From: Jami Cogswell <jcogs33@Jamis-MacBook-Pro.local>
Date: Thu, 27 Oct 2022 16:38:12 -0400
Subject: [PATCH 0106/1420] add classes for Pattern, Matcher, and RegExUtils

---
 .../java/security/RegexInjectionQuery.qll     | 58 ++++++++++---------
 1 file changed, 32 insertions(+), 26 deletions(-)

diff --git a/java/ql/lib/semmle/code/java/security/RegexInjectionQuery.qll b/java/ql/lib/semmle/code/java/security/RegexInjectionQuery.qll
index a56d26b7183..00553d78cbd 100644
--- a/java/ql/lib/semmle/code/java/security/RegexInjectionQuery.qll
+++ b/java/ql/lib/semmle/code/java/security/RegexInjectionQuery.qll
@@ -2,40 +2,46 @@ import java
 import semmle.code.java.dataflow.FlowSources
 import semmle.code.java.dataflow.TaintTracking
 
+/** The Java class `java.util.regex.Pattern`. */
+private class RegexPattern extends RefType {
+  RegexPattern() { this.hasQualifiedName("java.util.regex", "Pattern") }
+}
+
+/** The Java class `java.util.regex.Matcher`. */
+private class RegexMatcher extends RefType {
+  RegexMatcher() { this.hasQualifiedName("java.util.regex", "Matcher") }
+}
+
+/** The Java class `org.apache.commons.lang3.RegExUtils`. */
+private class ApacheRegExUtils extends RefType {
+  ApacheRegExUtils() { this.hasQualifiedName("java.util.regex", "Matcher") }
+}
+
+// TODO: Are there already classes for any of below(above) in a pre-existing regex library?
+// TODO: look into further: Pattern.matcher, .pattern() and .toString() as taint steps, .split and .splitAsStream
 /**
  * A data flow sink for untrusted user input used to construct regular expressions.
  */
 class RegexSink extends DataFlow::ExprNode {
   RegexSink() {
     exists(MethodAccess ma, Method m | m = ma.getMethod() |
+      ma.getArgument(0) = this.asExpr() and
       (
         m.getDeclaringType() instanceof TypeString and
-        (
-          ma.getArgument(0) = this.asExpr() and // ! combine this line with the below at least? e.g. TypeString and TypePattern both use it
-          // ! test below more?
-          // ! (are there already classes for these methods in a regex library?)
-          m.hasName(["matches", "split", "replaceFirst", "replaceAll"])
-        )
+        m.hasName(["matches", "split", "replaceFirst", "replaceAll"])
         or
-        // ! make class for the below? (is there already a class for this and its methods in a regex library?)
-        m.getDeclaringType().hasQualifiedName("java.util.regex", "Pattern") and
-        (
-          ma.getArgument(0) = this.asExpr() and
-          // ! look into further: Pattern.matcher, .pattern() and .toString() as taint steps, .split and .splitAsStream
-          m.hasName(["compile", "matches"])
-        )
-        or
-        // ! make class for the below? (is there already a class for this and its methods in a regex library?)
-        m.getDeclaringType().hasQualifiedName("org.apache.commons.lang3", "RegExUtils") and
-        (
-          ma.getArgument(1) = this.asExpr() and
-          m.getParameterType(1) instanceof TypeString and
-          // ! test below more?
-          m.hasName([
-              "removeAll", "removeFirst", "removePattern", "replaceAll", "replaceFirst",
-              "replacePattern"
-            ])
-        )
+        m.getDeclaringType() instanceof RegexPattern and
+        m.hasName(["compile", "matches"])
+      )
+      or
+      m.getDeclaringType() instanceof ApacheRegExUtils and
+      (
+        ma.getArgument(1) = this.asExpr() and
+        m.getParameterType(1) instanceof TypeString and // only does String here because other option is Patter, but that's already handled by `java.util.regex.Pattern` above
+        m.hasName([
+            "removeAll", "removeFirst", "removePattern", "replaceAll", "replaceFirst",
+            "replacePattern"
+          ])
       )
     )
   }
@@ -67,7 +73,7 @@ class RegExpSanitizationCall extends Sanitizer {
     // adds Pattern.quote() as a sanitizer
     // see https://rules.sonarsource.com/java/RSPEC-2631 and https://sensei.securecodewarrior.com/recipes/scw:java:regex-injection
     exists(MethodAccess ma, Method m | m = ma.getMethod() |
-      m.getDeclaringType().hasQualifiedName("java.util.regex", "Pattern") and
+      m.getDeclaringType() instanceof RegexPattern and
       (
         ma.getArgument(0) = this.asExpr() and
         m.hasName("quote")

From f6f26fe6c5b4dba43982d1b938dc0b00b2c39162 Mon Sep 17 00:00:00 2001
From: Jami Cogswell <jcogs33@Jamis-MacBook-Pro.local>
Date: Mon, 31 Oct 2022 09:53:28 -0400
Subject: [PATCH 0107/1420] refactor code; add change note

---
 java/ql/lib/semmle/code/java/regex/RegexFlowConfigs.qll   | 3 ++-
 .../lib/semmle/code/java/security/RegexInjectionQuery.qll | 8 ++++++--
 java/ql/src/Security/CWE/CWE-730/RegexInjection.ql        | 3 ++-
 java/ql/src/change-notes/2022-10-28-regex-injection.md    | 4 ++++
 4 files changed, 14 insertions(+), 4 deletions(-)
 create mode 100644 java/ql/src/change-notes/2022-10-28-regex-injection.md

diff --git a/java/ql/lib/semmle/code/java/regex/RegexFlowConfigs.qll b/java/ql/lib/semmle/code/java/regex/RegexFlowConfigs.qll
index 8936de5a923..08bf770b764 100644
--- a/java/ql/lib/semmle/code/java/regex/RegexFlowConfigs.qll
+++ b/java/ql/lib/semmle/code/java/regex/RegexFlowConfigs.qll
@@ -39,7 +39,8 @@ private predicate regexSinkKindInfo(string kind, boolean full, int strArg) {
 }
 
 /** A sink that is relevant for regex flow. */
-private class RegexFlowSink extends DataFlow::Node {
+class RegexFlowSink extends DataFlow::Node {
+  // ! switch back to private!!! - just testing if this sink is useful for regex injection as well
   boolean full;
   int strArg;
 
diff --git a/java/ql/lib/semmle/code/java/security/RegexInjectionQuery.qll b/java/ql/lib/semmle/code/java/security/RegexInjectionQuery.qll
index 00553d78cbd..b28a6e7d4d6 100644
--- a/java/ql/lib/semmle/code/java/security/RegexInjectionQuery.qll
+++ b/java/ql/lib/semmle/code/java/security/RegexInjectionQuery.qll
@@ -1,6 +1,7 @@
 import java
 import semmle.code.java.dataflow.FlowSources
 import semmle.code.java.dataflow.TaintTracking
+import semmle.code.java.regex.RegexFlowConfigs
 
 /** The Java class `java.util.regex.Pattern`. */
 private class RegexPattern extends RefType {
@@ -17,7 +18,7 @@ private class ApacheRegExUtils extends RefType {
   ApacheRegExUtils() { this.hasQualifiedName("java.util.regex", "Matcher") }
 }
 
-// TODO: Are there already classes for any of below(above) in a pre-existing regex library?
+// TODO: Look for above in pre-existing regex libraries again.
 // TODO: look into further: Pattern.matcher, .pattern() and .toString() as taint steps, .split and .splitAsStream
 /**
  * A data flow sink for untrusted user input used to construct regular expressions.
@@ -37,7 +38,7 @@ class RegexSink extends DataFlow::ExprNode {
       m.getDeclaringType() instanceof ApacheRegExUtils and
       (
         ma.getArgument(1) = this.asExpr() and
-        m.getParameterType(1) instanceof TypeString and // only does String here because other option is Patter, but that's already handled by `java.util.regex.Pattern` above
+        m.getParameterType(1) instanceof TypeString and // only does String here because other option is Pattern, but that's already handled by `java.util.regex.Pattern` above
         m.hasName([
             "removeAll", "removeFirst", "removePattern", "replaceAll", "replaceFirst",
             "replacePattern"
@@ -92,5 +93,8 @@ class RegexInjectionConfiguration extends TaintTracking::Configuration {
 
   override predicate isSink(DataFlow::Node sink) { sink instanceof RegexSink }
 
+  // ! testing below RegexFlowSink from RegexFlowConfigs.qll
+  // ! extra results from jfinal with this... look into further...
+  // override predicate isSink(DataFlow::Node sink) { sink instanceof RegexFlowSink }
   override predicate isSanitizer(DataFlow::Node node) { node instanceof Sanitizer }
 }
diff --git a/java/ql/src/Security/CWE/CWE-730/RegexInjection.ql b/java/ql/src/Security/CWE/CWE-730/RegexInjection.ql
index 5f56eefb25a..0f0175b30cd 100644
--- a/java/ql/src/Security/CWE/CWE-730/RegexInjection.ql
+++ b/java/ql/src/Security/CWE/CWE-730/RegexInjection.ql
@@ -1,10 +1,11 @@
 /**
  * @name Regular expression injection
- * @description User input should not be used in regular expressions without first being sanitized,
+ * @description User input should not be used in regular expressions without first being escaped,
  *              otherwise a malicious user may be able to provide a regex that could require
  *              exponential time on certain inputs.
  * @kind path-problem
  * @problem.severity error
+ * @security-severity 7.5
  * @precision high
  * @id java/regex-injection
  * @tags security
diff --git a/java/ql/src/change-notes/2022-10-28-regex-injection.md b/java/ql/src/change-notes/2022-10-28-regex-injection.md
new file mode 100644
index 00000000000..f2376f34c8a
--- /dev/null
+++ b/java/ql/src/change-notes/2022-10-28-regex-injection.md
@@ -0,0 +1,4 @@
+---
+category: newQuery
+---
+* Added a new query, `java/regex-injection`, to detect unescaped user input used in regular expressions.

From 50d638d1b6c9b055a15fe0e8bd24d84c732905cd Mon Sep 17 00:00:00 2001
From: Jami Cogswell <jcogs33@Jamis-MacBook-Pro.local>
Date: Mon, 31 Oct 2022 15:08:29 -0400
Subject: [PATCH 0108/1420] create RegexInjection.qll file

---
 .../code/java/regex/RegexFlowConfigs.qll      |  3 +-
 .../code/java/security/RegexInjection.qll     | 93 +++++++++++++++++++
 .../java/security/RegexInjectionQuery.qll     | 91 +-----------------
 3 files changed, 99 insertions(+), 88 deletions(-)
 create mode 100644 java/ql/lib/semmle/code/java/security/RegexInjection.qll

diff --git a/java/ql/lib/semmle/code/java/regex/RegexFlowConfigs.qll b/java/ql/lib/semmle/code/java/regex/RegexFlowConfigs.qll
index 08bf770b764..8936de5a923 100644
--- a/java/ql/lib/semmle/code/java/regex/RegexFlowConfigs.qll
+++ b/java/ql/lib/semmle/code/java/regex/RegexFlowConfigs.qll
@@ -39,8 +39,7 @@ private predicate regexSinkKindInfo(string kind, boolean full, int strArg) {
 }
 
 /** A sink that is relevant for regex flow. */
-class RegexFlowSink extends DataFlow::Node {
-  // ! switch back to private!!! - just testing if this sink is useful for regex injection as well
+private class RegexFlowSink extends DataFlow::Node {
   boolean full;
   int strArg;
 
diff --git a/java/ql/lib/semmle/code/java/security/RegexInjection.qll b/java/ql/lib/semmle/code/java/security/RegexInjection.qll
new file mode 100644
index 00000000000..614f3ff67bc
--- /dev/null
+++ b/java/ql/lib/semmle/code/java/security/RegexInjection.qll
@@ -0,0 +1,93 @@
+/** Provides classes and predicates related to regex injection in Java. */
+
+import java
+import semmle.code.java.dataflow.FlowSources
+import semmle.code.java.dataflow.TaintTracking
+import semmle.code.java.regex.RegexFlowConfigs
+
+/**
+ * A data flow sink for untrusted user input used to construct regular expressions.
+ */
+abstract class Sink extends DataFlow::ExprNode { }
+
+/**
+ * A sanitizer for untrusted user input used to construct regular expressions.
+ */
+abstract class Sanitizer extends DataFlow::ExprNode { }
+
+// TODO: look into further: Pattern.matcher, .pattern() and .toString() as taint steps, .split and .splitAsStream
+/**
+ * A data flow sink for untrusted user input used to construct regular expressions.
+ */
+private class RegexSink extends Sink {
+  RegexSink() {
+    exists(MethodAccess ma, Method m | m = ma.getMethod() |
+      ma.getArgument(0) = this.asExpr() and
+      (
+        m.getDeclaringType() instanceof TypeString and
+        m.hasName(["matches", "split", "replaceFirst", "replaceAll"])
+        or
+        m.getDeclaringType() instanceof RegexPattern and
+        m.hasName(["compile", "matches"])
+      )
+      or
+      m.getDeclaringType() instanceof ApacheRegExUtils and
+      (
+        ma.getArgument(1) = this.asExpr() and
+        // only handles String param here because the other param option, Pattern, is already handled by `java.util.regex.Pattern` above
+        m.getParameterType(1) instanceof TypeString and
+        m.hasName([
+            "removeAll", "removeFirst", "removePattern", "replaceAll", "replaceFirst",
+            "replacePattern"
+          ])
+      )
+    )
+  }
+}
+
+/**
+ * A call to a function whose name suggests that it escapes regular
+ * expression meta-characters.
+ */
+class RegexInjectionSanitizer extends Sanitizer {
+  RegexInjectionSanitizer() {
+    exists(string calleeName, string sanitize, string regexp |
+      calleeName = this.asExpr().(Call).getCallee().getName() and
+      // TODO: add test case for sanitize? I think current tests only check escape
+      // TODO: should this be broader and only look for "escape|saniti[sz]e" and not "regexp?" as well? -- e.g. err on side of FNs?
+      sanitize = "(?:escape|saniti[sz]e)" and
+      regexp = "regexp?"
+    |
+      calleeName
+          .regexpMatch("(?i)(" + sanitize + ".*" + regexp + ".*)" + "|(" + regexp + ".*" + sanitize +
+              ".*)")
+    )
+    or
+    // adds Pattern.quote() as a sanitizer
+    // https://docs.oracle.com/javase/8/docs/api/java/util/regex/Pattern.html#quote-java.lang.String-: "Metacharacters or escape sequences in the input sequence will be given no special meaning."
+    // see https://rules.sonarsource.com/java/RSPEC-2631 and https://sensei.securecodewarrior.com/recipes/scw:java:regex-injection
+    exists(MethodAccess ma, Method m | m = ma.getMethod() |
+      m.getDeclaringType() instanceof RegexPattern and
+      (
+        ma.getArgument(0) = this.asExpr() and
+        m.hasName("quote")
+      )
+    )
+  }
+}
+
+// ******** HELPER CLASSES/METHODS (MAYBE MOVE ELSEWHERE?) ********
+// TODO: move below to Regex.qll??
+/** The Java class `java.util.regex.Pattern`. */
+private class RegexPattern extends RefType {
+  RegexPattern() { this.hasQualifiedName("java.util.regex", "Pattern") }
+}
+
+// /** The Java class `java.util.regex.Matcher`. */
+// private class RegexMatcher extends RefType {
+//   RegexMatcher() { this.hasQualifiedName("java.util.regex", "Matcher") }
+// }
+/** The Java class `org.apache.commons.lang3.RegExUtils`. */
+private class ApacheRegExUtils extends RefType {
+  ApacheRegExUtils() { this.hasQualifiedName("org.apache.commons.lang3", "RegExUtils") }
+}
diff --git a/java/ql/lib/semmle/code/java/security/RegexInjectionQuery.qll b/java/ql/lib/semmle/code/java/security/RegexInjectionQuery.qll
index b28a6e7d4d6..e30ea091f3e 100644
--- a/java/ql/lib/semmle/code/java/security/RegexInjectionQuery.qll
+++ b/java/ql/lib/semmle/code/java/security/RegexInjectionQuery.qll
@@ -1,100 +1,19 @@
+/** Provides configurations to be used in queries related to regex injection. */
+
 import java
 import semmle.code.java.dataflow.FlowSources
 import semmle.code.java.dataflow.TaintTracking
-import semmle.code.java.regex.RegexFlowConfigs
-
-/** The Java class `java.util.regex.Pattern`. */
-private class RegexPattern extends RefType {
-  RegexPattern() { this.hasQualifiedName("java.util.regex", "Pattern") }
-}
-
-/** The Java class `java.util.regex.Matcher`. */
-private class RegexMatcher extends RefType {
-  RegexMatcher() { this.hasQualifiedName("java.util.regex", "Matcher") }
-}
-
-/** The Java class `org.apache.commons.lang3.RegExUtils`. */
-private class ApacheRegExUtils extends RefType {
-  ApacheRegExUtils() { this.hasQualifiedName("java.util.regex", "Matcher") }
-}
-
-// TODO: Look for above in pre-existing regex libraries again.
-// TODO: look into further: Pattern.matcher, .pattern() and .toString() as taint steps, .split and .splitAsStream
-/**
- * A data flow sink for untrusted user input used to construct regular expressions.
- */
-class RegexSink extends DataFlow::ExprNode {
-  RegexSink() {
-    exists(MethodAccess ma, Method m | m = ma.getMethod() |
-      ma.getArgument(0) = this.asExpr() and
-      (
-        m.getDeclaringType() instanceof TypeString and
-        m.hasName(["matches", "split", "replaceFirst", "replaceAll"])
-        or
-        m.getDeclaringType() instanceof RegexPattern and
-        m.hasName(["compile", "matches"])
-      )
-      or
-      m.getDeclaringType() instanceof ApacheRegExUtils and
-      (
-        ma.getArgument(1) = this.asExpr() and
-        m.getParameterType(1) instanceof TypeString and // only does String here because other option is Pattern, but that's already handled by `java.util.regex.Pattern` above
-        m.hasName([
-            "removeAll", "removeFirst", "removePattern", "replaceAll", "replaceFirst",
-            "replacePattern"
-          ])
-      )
-    )
-  }
-}
-
-// ! keep and rename to RegexInjectionSanitizer IF makes sense to have two sanitizers extending it?;
-// ! else, ask Tony/others about if stylistically better to keep it (see default example in LogInjection.qll, etc.)
-// ! maybe make abstract classes for source and sink as well (if you do this, mention it in PR description as an attempt to be similar to the other languages' implementations)
-abstract class Sanitizer extends DataFlow::ExprNode { }
-
-/**
- * A call to a function whose name suggests that it escapes regular
- * expression meta-characters.
- */
-// ! rename as DefaultRegexInjectionSanitizer?
-class RegExpSanitizationCall extends Sanitizer {
-  RegExpSanitizationCall() {
-    exists(string calleeName, string sanitize, string regexp |
-      calleeName = this.asExpr().(Call).getCallee().getName() and
-      // ! add test case for sanitize? I think current tests only check escape
-      sanitize = "(?:escape|saniti[sz]e)" and // TODO: confirm this is sufficient
-      regexp = "regexp?" // TODO: confirm this is sufficient
-    |
-      calleeName
-          .regexpMatch("(?i)(" + sanitize + ".*" + regexp + ".*)" + "|(" + regexp + ".*" + sanitize +
-              ".*)") // TODO: confirm this is sufficient
-    )
-    or
-    // adds Pattern.quote() as a sanitizer
-    // see https://rules.sonarsource.com/java/RSPEC-2631 and https://sensei.securecodewarrior.com/recipes/scw:java:regex-injection
-    exists(MethodAccess ma, Method m | m = ma.getMethod() |
-      m.getDeclaringType() instanceof RegexPattern and
-      (
-        ma.getArgument(0) = this.asExpr() and
-        m.hasName("quote")
-      )
-    )
-  }
-}
+import semmle.code.java.security.RegexInjection
 
 /**
  * A taint-tracking configuration for untrusted user input used to construct regular expressions.
  */
 class RegexInjectionConfiguration extends TaintTracking::Configuration {
-  RegexInjectionConfiguration() { this = "RegexInjectionConfiguration" }
+  RegexInjectionConfiguration() { this = "RegexInjection" }
 
   override predicate isSource(DataFlow::Node source) { source instanceof RemoteFlowSource }
 
-  override predicate isSink(DataFlow::Node sink) { sink instanceof RegexSink }
+  override predicate isSink(DataFlow::Node sink) { sink instanceof Sink }
 
-  // ! testing below RegexFlowSink from RegexFlowConfigs.qll
-  // ! extra results from jfinal with this... look into further...
-  // override predicate isSink(DataFlow::Node sink) { sink instanceof RegexFlowSink }
   override predicate isSanitizer(DataFlow::Node node) { node instanceof Sanitizer }
 }

From 91491d9a7b0929492951a99f0c84515b199d42a0 Mon Sep 17 00:00:00 2001
From: Jami Cogswell <jcogs33@Jamis-MacBook-Pro.local>
Date: Mon, 31 Oct 2022 18:14:39 -0400
Subject: [PATCH 0109/1420] refactor into more classes; add more test cases;
 add LITERAL sanitizer

---
 .../lib/semmle/code/java/frameworks/Regex.qll |   5 +
 .../code/java/frameworks/apache/Lang.qll      |   5 +
 .../code/java/security/RegexInjection.qll     | 130 ++++++++++--------
 .../java/security/RegexInjectionQuery.qll     |   4 +-
 .../security/CWE-730/RegexInjectionTest.java  |  53 ++++++-
 5 files changed, 132 insertions(+), 65 deletions(-)

diff --git a/java/ql/lib/semmle/code/java/frameworks/Regex.qll b/java/ql/lib/semmle/code/java/frameworks/Regex.qll
index 4e83981d857..4915cfbeeed 100644
--- a/java/ql/lib/semmle/code/java/frameworks/Regex.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/Regex.qll
@@ -2,6 +2,11 @@
 
 private import semmle.code.java.dataflow.ExternalFlow
 
+/** The class `java.util.regex.Pattern`. */
+class TypeRegexPattern extends Class {
+  TypeRegexPattern() { this.hasQualifiedName("java.util.regex", "Pattern") }
+}
+
 private class RegexModel extends SummaryModelCsv {
   override predicate row(string s) {
     s =
diff --git a/java/ql/lib/semmle/code/java/frameworks/apache/Lang.qll b/java/ql/lib/semmle/code/java/frameworks/apache/Lang.qll
index 84db672e935..d2c94bcb376 100644
--- a/java/ql/lib/semmle/code/java/frameworks/apache/Lang.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/apache/Lang.qll
@@ -46,3 +46,8 @@ class TypeApacheSystemUtils extends Class {
     this.hasQualifiedName(["org.apache.commons.lang", "org.apache.commons.lang3"], "SystemUtils")
   }
 }
+
+/** The class `org.apache.commons.lang3.RegExUtils`. */
+class TypeApacheRegExUtils extends Class {
+  TypeApacheRegExUtils() { this.hasQualifiedName("org.apache.commons.lang3", "RegExUtils") }
+}
diff --git a/java/ql/lib/semmle/code/java/security/RegexInjection.qll b/java/ql/lib/semmle/code/java/security/RegexInjection.qll
index 614f3ff67bc..b2b64587fcd 100644
--- a/java/ql/lib/semmle/code/java/security/RegexInjection.qll
+++ b/java/ql/lib/semmle/code/java/security/RegexInjection.qll
@@ -1,60 +1,37 @@
 /** Provides classes and predicates related to regex injection in Java. */
 
 import java
-import semmle.code.java.dataflow.FlowSources
-import semmle.code.java.dataflow.TaintTracking
-import semmle.code.java.regex.RegexFlowConfigs
+private import semmle.code.java.dataflow.DataFlow
+private import semmle.code.java.frameworks.Regex
+private import semmle.code.java.frameworks.apache.Lang
 
-/**
- * A data flow sink for untrusted user input used to construct regular expressions.
- */
+/** A data flow sink for untrusted user input used to construct regular expressions. */
 abstract class Sink extends DataFlow::ExprNode { }
 
-/**
- * A sanitizer for untrusted user input used to construct regular expressions.
- */
+/** A sanitizer for untrusted user input used to construct regular expressions. */
 abstract class Sanitizer extends DataFlow::ExprNode { }
 
-// TODO: look into further: Pattern.matcher, .pattern() and .toString() as taint steps, .split and .splitAsStream
-/**
- * A data flow sink for untrusted user input used to construct regular expressions.
- */
-private class RegexSink extends Sink {
-  RegexSink() {
+private class RegexInjectionSink extends Sink {
+  RegexInjectionSink() {
     exists(MethodAccess ma, Method m | m = ma.getMethod() |
       ma.getArgument(0) = this.asExpr() and
       (
-        m.getDeclaringType() instanceof TypeString and
-        m.hasName(["matches", "split", "replaceFirst", "replaceAll"])
-        or
-        m.getDeclaringType() instanceof RegexPattern and
-        m.hasName(["compile", "matches"])
+        m instanceof StringRegexMethod or
+        m instanceof PatternRegexMethod
       )
       or
-      m.getDeclaringType() instanceof ApacheRegExUtils and
-      (
-        ma.getArgument(1) = this.asExpr() and
-        // only handles String param here because the other param option, Pattern, is already handled by `java.util.regex.Pattern` above
-        m.getParameterType(1) instanceof TypeString and
-        m.hasName([
-            "removeAll", "removeFirst", "removePattern", "replaceAll", "replaceFirst",
-            "replacePattern"
-          ])
-      )
+      ma.getArgument(1) = this.asExpr() and
+      m instanceof ApacheRegExUtilsMethod
     )
   }
 }
 
-/**
- * A call to a function whose name suggests that it escapes regular
- * expression meta-characters.
- */
-class RegexInjectionSanitizer extends Sanitizer {
+/** A call to a function which escapes regular expression meta-characters. */
+private class RegexInjectionSanitizer extends Sanitizer {
   RegexInjectionSanitizer() {
+    // a function whose name suggests that it escapes regular expression meta-characters
     exists(string calleeName, string sanitize, string regexp |
       calleeName = this.asExpr().(Call).getCallee().getName() and
-      // TODO: add test case for sanitize? I think current tests only check escape
-      // TODO: should this be broader and only look for "escape|saniti[sz]e" and not "regexp?" as well? -- e.g. err on side of FNs?
       sanitize = "(?:escape|saniti[sz]e)" and
       regexp = "regexp?"
     |
@@ -63,31 +40,70 @@ class RegexInjectionSanitizer extends Sanitizer {
               ".*)")
     )
     or
-    // adds Pattern.quote() as a sanitizer
-    // https://docs.oracle.com/javase/8/docs/api/java/util/regex/Pattern.html#quote-java.lang.String-: "Metacharacters or escape sequences in the input sequence will be given no special meaning."
-    // see https://rules.sonarsource.com/java/RSPEC-2631 and https://sensei.securecodewarrior.com/recipes/scw:java:regex-injection
+    // a call to the `Pattern.quote` method, which gives metacharacters or escape sequences no special meaning
     exists(MethodAccess ma, Method m | m = ma.getMethod() |
-      m.getDeclaringType() instanceof RegexPattern and
-      (
-        ma.getArgument(0) = this.asExpr() and
-        m.hasName("quote")
-      )
+      ma.getArgument(0) = this.asExpr() and
+      m instanceof PatternQuoteMethod
+    )
+    or
+    // use of Pattern.LITERAL flag with `Pattern.compile` which gives metacharacters or escape sequences no special meaning
+    exists(MethodAccess ma, Method m, Field field | m = ma.getMethod() |
+      ma.getArgument(0) = this.asExpr() and
+      m instanceof PatternRegexMethod and
+      m.hasName("compile") and
+      //ma.getArgument(1).toString() = "Pattern.LITERAL" and
+      field instanceof PatternLiteral and
+      ma.getArgument(1) = field.getAnAccess()
     )
   }
 }
 
-// ******** HELPER CLASSES/METHODS (MAYBE MOVE ELSEWHERE?) ********
-// TODO: move below to Regex.qll??
-/** The Java class `java.util.regex.Pattern`. */
-private class RegexPattern extends RefType {
-  RegexPattern() { this.hasQualifiedName("java.util.regex", "Pattern") }
+/**
+ * The methods of the class `java.lang.String` that take a regular expression
+ * as a parameter.
+ */
+private class StringRegexMethod extends Method {
+  StringRegexMethod() {
+    this.getDeclaringType() instanceof TypeString and
+    this.hasName(["matches", "split", "replaceFirst", "replaceAll"])
+  }
 }
 
-// /** The Java class `java.util.regex.Matcher`. */
-// private class RegexMatcher extends RefType {
-//   RegexMatcher() { this.hasQualifiedName("java.util.regex", "Matcher") }
-// }
-/** The Java class `org.apache.commons.lang3.RegExUtils`. */
-private class ApacheRegExUtils extends RefType {
-  ApacheRegExUtils() { this.hasQualifiedName("org.apache.commons.lang3", "RegExUtils") }
+/**
+ * The methods of the class `java.util.regex.Pattern` that take a regular
+ * expression as a parameter.
+ */
+private class PatternRegexMethod extends Method {
+  PatternRegexMethod() {
+    this.getDeclaringType() instanceof TypeRegexPattern and
+    this.hasName(["compile", "matches"])
+  }
+}
+
+/** The `quote` method of the `java.util.regex.Pattern` class. */
+private class PatternQuoteMethod extends Method {
+  PatternQuoteMethod() { this.hasName(["quote"]) }
+}
+
+/** The `LITERAL` field of the `java.util.regex.Pattern` class. */
+private class PatternLiteral extends Field {
+  PatternLiteral() {
+    this.getDeclaringType() instanceof TypeRegexPattern and
+    this.hasName("LITERAL")
+  }
+}
+
+/**
+ * The methods of the class `org.apache.commons.lang3.RegExUtils` that take
+ * a regular expression of type `String` as a parameter.
+ */
+private class ApacheRegExUtilsMethod extends Method {
+  ApacheRegExUtilsMethod() {
+    this.getDeclaringType() instanceof TypeApacheRegExUtils and
+    // only handles String param here because the other param option, Pattern, is already handled by `java.util.regex.Pattern`
+    this.getParameterType(1) instanceof TypeString and
+    this.hasName([
+        "removeAll", "removeFirst", "removePattern", "replaceAll", "replaceFirst", "replacePattern"
+      ])
+  }
 }
diff --git a/java/ql/lib/semmle/code/java/security/RegexInjectionQuery.qll b/java/ql/lib/semmle/code/java/security/RegexInjectionQuery.qll
index e30ea091f3e..ce4cab80bb4 100644
--- a/java/ql/lib/semmle/code/java/security/RegexInjectionQuery.qll
+++ b/java/ql/lib/semmle/code/java/security/RegexInjectionQuery.qll
@@ -5,9 +5,7 @@ import semmle.code.java.dataflow.FlowSources
 import semmle.code.java.dataflow.TaintTracking
 import semmle.code.java.security.RegexInjection
 
-/**
- * A taint-tracking configuration for untrusted user input used to construct regular expressions.
- */
+/** A taint-tracking configuration for untrusted user input used to construct regular expressions. */
 class RegexInjectionConfiguration extends TaintTracking::Configuration {
   RegexInjectionConfiguration() { this = "RegexInjection" }
 
diff --git a/java/ql/test/query-tests/security/CWE-730/RegexInjectionTest.java b/java/ql/test/query-tests/security/CWE-730/RegexInjectionTest.java
index 966893b053f..d914272278d 100644
--- a/java/ql/test/query-tests/security/CWE-730/RegexInjectionTest.java
+++ b/java/ql/test/query-tests/security/CWE-730/RegexInjectionTest.java
@@ -84,20 +84,55 @@ public class RegexInjectionTest extends HttpServlet {
     String pattern = request.getParameter("pattern");
     String input = request.getParameter("input");
 
-    // TODO: add a "Safe" test for situation when this return value is stored in a variable, then the variable is used in the regex
     escapeSpecialRegexChars(pattern);
 
     // BAD: the pattern is not really sanitized
     return input.matches("^" + pattern + "=.*$"); // $ hasRegexInjection
   }
 
+  public boolean pattern7(javax.servlet.http.HttpServletRequest request) {
+    String pattern = request.getParameter("pattern");
+    String input = request.getParameter("input");
+
+    String escapedPattern = escapeSpecialRegexChars(pattern);
+
+    // Safe: User input is sanitized before constructing the regex
+    return input.matches("^" + escapedPattern + "=.*$");
+  }
+
+  public boolean pattern8(javax.servlet.http.HttpServletRequest request) {
+    String pattern = request.getParameter("pattern");
+    String input = request.getParameter("input");
+
+    // Safe: User input is sanitized before constructing the regex
+    return input.matches("^" + sanitizeSpecialRegexChars(pattern) + "=.*$");
+  }
+
+  public boolean pattern9(javax.servlet.http.HttpServletRequest request) {
+    String pattern = request.getParameter("pattern");
+    String input = request.getParameter("input");
+
+    // Safe: User input is sanitized before constructing the regex
+    return input.matches("^" + sanitiseSpecialRegexChars(pattern) + "=.*$");
+  }
+
   Pattern SPECIAL_REGEX_CHARS = Pattern.compile("[{}()\\[\\]><-=!.+*?^$\\\\|]");
 
-  // TODO: check if any other inbuilt escape/sanitizers in Java APIs
+  // test `escape...regex`
   String escapeSpecialRegexChars(String str) {
     return SPECIAL_REGEX_CHARS.matcher(str).replaceAll("\\\\$0");
   }
 
+  // test `sanitize...regex`
+  String sanitizeSpecialRegexChars(String str) {
+    return SPECIAL_REGEX_CHARS.matcher(str).replaceAll("\\\\$0");
+  }
+
+  // test `sanitise...regex`
+  String sanitiseSpecialRegexChars(String str) {
+    return SPECIAL_REGEX_CHARS.matcher(str).replaceAll("\\\\$0");
+  }
+
   public boolean apache1(javax.servlet.http.HttpServletRequest request) {
     String pattern = request.getParameter("pattern");
     String input = request.getParameter("input");
@@ -148,12 +183,20 @@ public class RegexInjectionTest extends HttpServlet {
     return RegExUtils.replacePattern(input, pattern, "").length() > 0;  // $ hasRegexInjection
   }
 
-  // from https://rules.sonarsource.com/java/RSPEC-2631 to test for Pattern.quote as safe
-  public boolean validate(javax.servlet.http.HttpServletRequest request) {
+  // test `Pattern.quote` as safe
+  public boolean quoteTest(javax.servlet.http.HttpServletRequest request) {
     String regex = request.getParameter("regex");
     String input = request.getParameter("input");
 
-    return input.matches(Pattern.quote(regex));  // Safe: with Pattern.quote, metacharacters or escape sequences will be given no special meaning
+    return input.matches(Pattern.quote(regex));  // Safe
+  }
+
+  // test `Pattern.LITERAL` as safe
+  public boolean literalTest(javax.servlet.http.HttpServletRequest request) {
+    String pattern = request.getParameter("pattern");
+    String input = request.getParameter("input");
+
+    return Pattern.compile(pattern, Pattern.LITERAL).matcher(input).matches();  // Safe
   }
 }
 

From 5b089bbb9c3143d04e0d862d2b0b4bf1eed8afa4 Mon Sep 17 00:00:00 2001
From: Jami Cogswell <jcogs33@Jamis-MacBook-Pro.local>
Date: Tue, 1 Nov 2022 11:02:36 -0400
Subject: [PATCH 0110/1420] split sanitizer into three

---
 .../code/java/security/RegexInjection.qll     | 32 +++++++++++++------
 .../java/security/RegexInjectionQuery.qll     |  2 +-
 .../security/CWE-730/RegexInjectionTest.java  |  4 +--
 3 files changed, 25 insertions(+), 13 deletions(-)

diff --git a/java/ql/lib/semmle/code/java/security/RegexInjection.qll b/java/ql/lib/semmle/code/java/security/RegexInjection.qll
index b2b64587fcd..9430a55d0a5 100644
--- a/java/ql/lib/semmle/code/java/security/RegexInjection.qll
+++ b/java/ql/lib/semmle/code/java/security/RegexInjection.qll
@@ -9,7 +9,7 @@ private import semmle.code.java.frameworks.apache.Lang
 abstract class Sink extends DataFlow::ExprNode { }
 
 /** A sanitizer for untrusted user input used to construct regular expressions. */
-abstract class Sanitizer extends DataFlow::ExprNode { }
+abstract class RegexInjectionSanitizer extends DataFlow::ExprNode { }
 
 private class RegexInjectionSink extends Sink {
   RegexInjectionSink() {
@@ -26,10 +26,9 @@ private class RegexInjectionSink extends Sink {
   }
 }
 
-/** A call to a function which escapes regular expression meta-characters. */
-private class RegexInjectionSanitizer extends Sanitizer {
-  RegexInjectionSanitizer() {
-    // a function whose name suggests that it escapes regular expression meta-characters
+/** A call to a function whose name suggests that it escapes regular expression meta-characters. */
+private class RegexSanitizationCall extends RegexInjectionSanitizer {
+  RegexSanitizationCall() {
     exists(string calleeName, string sanitize, string regexp |
       calleeName = this.asExpr().(Call).getCallee().getName() and
       sanitize = "(?:escape|saniti[sz]e)" and
@@ -39,19 +38,32 @@ private class RegexInjectionSanitizer extends Sanitizer {
           .regexpMatch("(?i)(" + sanitize + ".*" + regexp + ".*)" + "|(" + regexp + ".*" + sanitize +
               ".*)")
     )
-    or
-    // a call to the `Pattern.quote` method, which gives metacharacters or escape sequences no special meaning
+  }
+}
+
+/**
+ * A call to the `Pattern.quote` method, which gives metacharacters or escape sequences
+ * no special meaning.
+ */
+private class PatternQuoteCall extends RegexInjectionSanitizer {
+  PatternQuoteCall() {
     exists(MethodAccess ma, Method m | m = ma.getMethod() |
       ma.getArgument(0) = this.asExpr() and
       m instanceof PatternQuoteMethod
     )
-    or
-    // use of Pattern.LITERAL flag with `Pattern.compile` which gives metacharacters or escape sequences no special meaning
+  }
+}
+
+/**
+ * Use of the `Pattern.LITERAL` flag with `Pattern.compile`, which gives metacharacters
+ * or escape sequences no special meaning.
+ */
+private class PatternLiteralFlag extends RegexInjectionSanitizer {
+  PatternLiteralFlag() {
     exists(MethodAccess ma, Method m, Field field | m = ma.getMethod() |
       ma.getArgument(0) = this.asExpr() and
       m instanceof PatternRegexMethod and
       m.hasName("compile") and
-      //ma.getArgument(1).toString() = "Pattern.LITERAL" and
       field instanceof PatternLiteral and
       ma.getArgument(1) = field.getAnAccess()
     )
diff --git a/java/ql/lib/semmle/code/java/security/RegexInjectionQuery.qll b/java/ql/lib/semmle/code/java/security/RegexInjectionQuery.qll
index ce4cab80bb4..56337dc7d7b 100644
--- a/java/ql/lib/semmle/code/java/security/RegexInjectionQuery.qll
+++ b/java/ql/lib/semmle/code/java/security/RegexInjectionQuery.qll
@@ -13,5 +13,5 @@ class RegexInjectionConfiguration extends TaintTracking::Configuration {
 
   override predicate isSink(DataFlow::Node sink) { sink instanceof Sink }
 
-  override predicate isSanitizer(DataFlow::Node node) { node instanceof Sanitizer }
+  override predicate isSanitizer(DataFlow::Node node) { node instanceof RegexInjectionSanitizer }
 }
diff --git a/java/ql/test/query-tests/security/CWE-730/RegexInjectionTest.java b/java/ql/test/query-tests/security/CWE-730/RegexInjectionTest.java
index d914272278d..e9d6a1d7f3e 100644
--- a/java/ql/test/query-tests/security/CWE-730/RegexInjectionTest.java
+++ b/java/ql/test/query-tests/security/CWE-730/RegexInjectionTest.java
@@ -183,7 +183,7 @@ public class RegexInjectionTest extends HttpServlet {
     return RegExUtils.replacePattern(input, pattern, "").length() > 0;  // $ hasRegexInjection
   }
 
-  // test `Pattern.quote` as safe
+  // test `Pattern.quote` sanitizer
   public boolean quoteTest(javax.servlet.http.HttpServletRequest request) {
     String regex = request.getParameter("regex");
     String input = request.getParameter("input");
@@ -191,7 +191,7 @@ public class RegexInjectionTest extends HttpServlet {
     return input.matches(Pattern.quote(regex));  // Safe
   }
 
-  // test `Pattern.LITERAL` as safe
+  // test `Pattern.LITERAL` sanitizer
   public boolean literalTest(javax.servlet.http.HttpServletRequest request) {
     String pattern = request.getParameter("pattern");
     String input = request.getParameter("input");

From 81ad10bab5bbc9c856e6fd22d2263436269f9b57 Mon Sep 17 00:00:00 2001
From: Jami Cogswell <jcogs33@Jamis-MacBook-Pro.local>
Date: Tue, 1 Nov 2022 11:07:28 -0400
Subject: [PATCH 0111/1420] update sink names

---
 java/ql/lib/semmle/code/java/security/RegexInjection.qll    | 6 +++---
 .../lib/semmle/code/java/security/RegexInjectionQuery.qll   | 2 +-
 2 files changed, 4 insertions(+), 4 deletions(-)

diff --git a/java/ql/lib/semmle/code/java/security/RegexInjection.qll b/java/ql/lib/semmle/code/java/security/RegexInjection.qll
index 9430a55d0a5..b5bf94e0f8d 100644
--- a/java/ql/lib/semmle/code/java/security/RegexInjection.qll
+++ b/java/ql/lib/semmle/code/java/security/RegexInjection.qll
@@ -6,13 +6,13 @@ private import semmle.code.java.frameworks.Regex
 private import semmle.code.java.frameworks.apache.Lang
 
 /** A data flow sink for untrusted user input used to construct regular expressions. */
-abstract class Sink extends DataFlow::ExprNode { }
+abstract class RegexInjectionSink extends DataFlow::ExprNode { }
 
 /** A sanitizer for untrusted user input used to construct regular expressions. */
 abstract class RegexInjectionSanitizer extends DataFlow::ExprNode { }
 
-private class RegexInjectionSink extends Sink {
-  RegexInjectionSink() {
+private class DefaultRegexInjectionSink extends RegexInjectionSink {
+  DefaultRegexInjectionSink() {
     exists(MethodAccess ma, Method m | m = ma.getMethod() |
       ma.getArgument(0) = this.asExpr() and
       (
diff --git a/java/ql/lib/semmle/code/java/security/RegexInjectionQuery.qll b/java/ql/lib/semmle/code/java/security/RegexInjectionQuery.qll
index 56337dc7d7b..914b3222d9f 100644
--- a/java/ql/lib/semmle/code/java/security/RegexInjectionQuery.qll
+++ b/java/ql/lib/semmle/code/java/security/RegexInjectionQuery.qll
@@ -11,7 +11,7 @@ class RegexInjectionConfiguration extends TaintTracking::Configuration {
 
   override predicate isSource(DataFlow::Node source) { source instanceof RemoteFlowSource }
 
-  override predicate isSink(DataFlow::Node sink) { sink instanceof Sink }
+  override predicate isSink(DataFlow::Node sink) { sink instanceof RegexInjectionSink }
 
   override predicate isSanitizer(DataFlow::Node node) { node instanceof RegexInjectionSanitizer }
 }

From eb30e8fe9e798d87e1dec7ff72abf4bded331086 Mon Sep 17 00:00:00 2001
From: Jami Cogswell <jcogs33@Jamis-MacBook-Pro.local>
Date: Tue, 1 Nov 2022 11:23:55 -0400
Subject: [PATCH 0112/1420] move Pattern.quote and Pattern.LITERAL models to
 Regex.qll

---
 .../ql/lib/semmle/code/java/frameworks/Regex.qll | 16 ++++++++++++++++
 .../semmle/code/java/security/RegexInjection.qll | 13 -------------
 2 files changed, 16 insertions(+), 13 deletions(-)

diff --git a/java/ql/lib/semmle/code/java/frameworks/Regex.qll b/java/ql/lib/semmle/code/java/frameworks/Regex.qll
index 4915cfbeeed..fc157634b9b 100644
--- a/java/ql/lib/semmle/code/java/frameworks/Regex.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/Regex.qll
@@ -7,6 +7,22 @@ class TypeRegexPattern extends Class {
   TypeRegexPattern() { this.hasQualifiedName("java.util.regex", "Pattern") }
 }
 
+/** The `quote` method of the `java.util.regex.Pattern` class. */
+class PatternQuoteMethod extends Method {
+  PatternQuoteMethod() {
+    this.getDeclaringType() instanceof TypeRegexPattern and
+    this.hasName(["quote"])
+  }
+}
+
+/** The `LITERAL` field of the `java.util.regex.Pattern` class. */
+class PatternLiteral extends Field {
+  PatternLiteral() {
+    this.getDeclaringType() instanceof TypeRegexPattern and
+    this.hasName("LITERAL")
+  }
+}
+
 private class RegexModel extends SummaryModelCsv {
   override predicate row(string s) {
     s =
diff --git a/java/ql/lib/semmle/code/java/security/RegexInjection.qll b/java/ql/lib/semmle/code/java/security/RegexInjection.qll
index b5bf94e0f8d..0a4bb1656be 100644
--- a/java/ql/lib/semmle/code/java/security/RegexInjection.qll
+++ b/java/ql/lib/semmle/code/java/security/RegexInjection.qll
@@ -92,19 +92,6 @@ private class PatternRegexMethod extends Method {
   }
 }
 
-/** The `quote` method of the `java.util.regex.Pattern` class. */
-private class PatternQuoteMethod extends Method {
-  PatternQuoteMethod() { this.hasName(["quote"]) }
-}
-
-/** The `LITERAL` field of the `java.util.regex.Pattern` class. */
-private class PatternLiteral extends Field {
-  PatternLiteral() {
-    this.getDeclaringType() instanceof TypeRegexPattern and
-    this.hasName("LITERAL")
-  }
-}
-
 /**
  * The methods of the class `org.apache.commons.lang3.RegExUtils` that take
  * a regular expression of type `String` as a parameter.

From 32f7348d30b049fd11c1fb02bfd1c0a4a44db839 Mon Sep 17 00:00:00 2001
From: Jami Cogswell <jcogs33@Jamis-MacBook-Pro.local>
Date: Tue, 1 Nov 2022 14:50:58 -0400
Subject: [PATCH 0113/1420] update help file

---
 .../code/java/security/RegexInjection.qll     |  1 +
 .../Security/CWE/CWE-730/RegexInjection.java  | 46 ++++++-------------
 .../Security/CWE/CWE-730/RegexInjection.qhelp | 11 +++--
 3 files changed, 23 insertions(+), 35 deletions(-)

diff --git a/java/ql/lib/semmle/code/java/security/RegexInjection.qll b/java/ql/lib/semmle/code/java/security/RegexInjection.qll
index 0a4bb1656be..24520bab230 100644
--- a/java/ql/lib/semmle/code/java/security/RegexInjection.qll
+++ b/java/ql/lib/semmle/code/java/security/RegexInjection.qll
@@ -11,6 +11,7 @@ abstract class RegexInjectionSink extends DataFlow::ExprNode { }
 /** A sanitizer for untrusted user input used to construct regular expressions. */
 abstract class RegexInjectionSanitizer extends DataFlow::ExprNode { }
 
+/** A method call that takes a regular expression as an argument. */
 private class DefaultRegexInjectionSink extends RegexInjectionSink {
   DefaultRegexInjectionSink() {
     exists(MethodAccess ma, Method m | m = ma.getMethod() |
diff --git a/java/ql/src/Security/CWE/CWE-730/RegexInjection.java b/java/ql/src/Security/CWE/CWE-730/RegexInjection.java
index 30b74df0a0f..673d5a2fa40 100644
--- a/java/ql/src/Security/CWE/CWE-730/RegexInjection.java
+++ b/java/ql/src/Security/CWE/CWE-730/RegexInjection.java
@@ -1,38 +1,22 @@
-package com.example.demo;
-
-import java.util.regex.Matcher;
 import java.util.regex.Pattern;
+import javax.servlet.http.HttpServlet;
+import javax.servlet.http.HttpServletRequest;
 
-import org.springframework.web.bind.annotation.GetMapping;
-import org.springframework.web.bind.annotation.RequestParam;
-import org.springframework.web.bind.annotation.RestController;
+public class RegexInjectionDemo extends HttpServlet {
 
-@RestController
-public class DemoApplication {
+  public boolean badExample(javax.servlet.http.HttpServletRequest request) {
+    String regex = request.getParameter("regex");
+    String input = request.getParameter("input");
 
-    @GetMapping("/string1")
-    public String string1(@RequestParam(value = "input", defaultValue = "test") String input,
-                          @RequestParam(value = "pattern", defaultValue = ".*") String pattern) {
-        // BAD: Unsanitized user input is used to construct a regular expression
-        if (input.matches("^" + pattern + "=.*$"))
-            return "match!";
+    // BAD: Unsanitized user input is used to construct a regular expression
+    return input.matches(regex);
+  }
 
-        return "doesn't match!";
-    }
+  public boolean goodExample(javax.servlet.http.HttpServletRequest request) {
+    String regex = request.getParameter("regex");
+    String input = request.getParameter("input");
 
-    @GetMapping("/string2")
-    public String string2(@RequestParam(value = "input", defaultValue = "test") String input,
-                          @RequestParam(value = "pattern", defaultValue = ".*") String pattern) {
-        // GOOD: User input is sanitized before constructing the regex
-        if (input.matches("^" + escapeSpecialRegexChars(pattern) + "=.*$"))
-            return "match!";
-
-        return "doesn't match!";
-    }
-
-    Pattern SPECIAL_REGEX_CHARS = Pattern.compile("[{}()\\[\\]><-=!.+*?^$\\\\|]");
-
-    String escapeSpecialRegexChars(String str) {
-        return SPECIAL_REGEX_CHARS.matcher(str).replaceAll("\\\\$0");
-    }
+    // GOOD: User input is sanitized before constructing the regex
+    return input.matches(Pattern.quote(regex));
+  }
 }
diff --git a/java/ql/src/Security/CWE/CWE-730/RegexInjection.qhelp b/java/ql/src/Security/CWE/CWE-730/RegexInjection.qhelp
index 6cd80b52f75..fc8ab33ca80 100644
--- a/java/ql/src/Security/CWE/CWE-730/RegexInjection.qhelp
+++ b/java/ql/src/Security/CWE/CWE-730/RegexInjection.qhelp
@@ -15,25 +15,25 @@ perform a Denial of Service attack.
 <recommendation>
 <p>
 Before embedding user input into a regular expression, use a sanitization function
-to escape meta-characters that have special meaning.
+such as <code>Pattern.quote</code> to escape meta-characters that have special meaning.
 </p>
 </recommendation>
 
 <example>
 <p>
-The following example shows a HTTP request parameter that is used to construct a regular expression:
+The following example shows an HTTP request parameter that is used to construct a regular expression.
 </p>
-<sample src="RegexInjection.java" />
 <p>
 In the first case the user-provided regex is not escaped.
 If a malicious user provides a regex that has exponential worst case performance,
 then this could lead to a Denial of Service.
 </p>
 <p>
-In the second case, the user input is escaped using <code>escapeSpecialRegexChars</code> before being included
+In the second case, the user input is escaped using <code>Pattern.quote</code> before being included
 in the regular expression. This ensures that the user cannot insert characters which have a special
 meaning in regular expressions.
 </p>
+<sample src="RegexInjection.java" />
 </example>
 
 <references>
@@ -44,5 +44,8 @@ OWASP:
 <li>
 Wikipedia: <a href="https://en.wikipedia.org/wiki/ReDoS">ReDoS</a>.
 </li>
+<li>
+Java API Specification: <a href="https://docs.oracle.com/en/java/javase/11/docs/api/java.base/java/util/regex/Pattern.html#quote(java.lang.String)">Pattern.quote</a>.
+</li>
 </references>
 </qhelp>

From 5dcd3b2c0fef6692f2484ec9ec192fbccf259134 Mon Sep 17 00:00:00 2001
From: Jami Cogswell <jcogs33@Jamis-MacBook-Pro.local>
Date: Tue, 1 Nov 2022 15:21:23 -0400
Subject: [PATCH 0114/1420] clean up files

---
 .../lib/semmle/code/java/security/RegexInjection.qll   | 10 +++++-----
 .../security/CWE-730/RegexInjectionTest.java           |  2 --
 2 files changed, 5 insertions(+), 7 deletions(-)

diff --git a/java/ql/lib/semmle/code/java/security/RegexInjection.qll b/java/ql/lib/semmle/code/java/security/RegexInjection.qll
index 24520bab230..66e315020b2 100644
--- a/java/ql/lib/semmle/code/java/security/RegexInjection.qll
+++ b/java/ql/lib/semmle/code/java/security/RegexInjection.qll
@@ -43,7 +43,7 @@ private class RegexSanitizationCall extends RegexInjectionSanitizer {
 }
 
 /**
- * A call to the `Pattern.quote` method, which gives metacharacters or escape sequences
+ * A call to the `Pattern.quote` method, which gives meta-characters or escape sequences
  * no special meaning.
  */
 private class PatternQuoteCall extends RegexInjectionSanitizer {
@@ -56,7 +56,7 @@ private class PatternQuoteCall extends RegexInjectionSanitizer {
 }
 
 /**
- * Use of the `Pattern.LITERAL` flag with `Pattern.compile`, which gives metacharacters
+ * Use of the `Pattern.LITERAL` flag with `Pattern.compile`, which gives meta-characters
  * or escape sequences no special meaning.
  */
 private class PatternLiteralFlag extends RegexInjectionSanitizer {
@@ -72,7 +72,7 @@ private class PatternLiteralFlag extends RegexInjectionSanitizer {
 }
 
 /**
- * The methods of the class `java.lang.String` that take a regular expression
+ * A method of the class `java.lang.String` that takes a regular expression
  * as a parameter.
  */
 private class StringRegexMethod extends Method {
@@ -83,7 +83,7 @@ private class StringRegexMethod extends Method {
 }
 
 /**
- * The methods of the class `java.util.regex.Pattern` that take a regular
+ * A method of the class `java.util.regex.Pattern` that takes a regular
  * expression as a parameter.
  */
 private class PatternRegexMethod extends Method {
@@ -94,7 +94,7 @@ private class PatternRegexMethod extends Method {
 }
 
 /**
- * The methods of the class `org.apache.commons.lang3.RegExUtils` that take
+ * A methods of the class `org.apache.commons.lang3.RegExUtils` that takes
  * a regular expression of type `String` as a parameter.
  */
 private class ApacheRegExUtilsMethod extends Method {
diff --git a/java/ql/test/query-tests/security/CWE-730/RegexInjectionTest.java b/java/ql/test/query-tests/security/CWE-730/RegexInjectionTest.java
index e9d6a1d7f3e..d78c8930e87 100644
--- a/java/ql/test/query-tests/security/CWE-730/RegexInjectionTest.java
+++ b/java/ql/test/query-tests/security/CWE-730/RegexInjectionTest.java
@@ -199,5 +199,3 @@ public class RegexInjectionTest extends HttpServlet {
     return Pattern.compile(pattern, Pattern.LITERAL).matcher(input).matches();  // Safe
   }
 }
-
-// ! see the following for potential additional test case ideas: https://www.baeldung.com/regular-expressions-java

From be548c13e1baaeeee216ab1087380f1f7b15dcc9 Mon Sep 17 00:00:00 2001
From: Jami Cogswell <jcogs33@Jamis-MacBook-Pro.local>
Date: Thu, 3 Nov 2022 13:16:47 -0400
Subject: [PATCH 0115/1420] switch sink to use csv models

---
 .../lib/semmle/code/java/frameworks/Regex.qll |  6 +-
 .../code/java/frameworks/apache/Lang.qll      |  5 --
 .../code/java/regex/RegexFlowModels.qll       |  6 ++
 .../code/java/security/RegexInjection.qll     | 83 ++++++-------------
 4 files changed, 35 insertions(+), 65 deletions(-)

diff --git a/java/ql/lib/semmle/code/java/frameworks/Regex.qll b/java/ql/lib/semmle/code/java/frameworks/Regex.qll
index fc157634b9b..790255c9703 100644
--- a/java/ql/lib/semmle/code/java/frameworks/Regex.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/Regex.qll
@@ -11,13 +11,13 @@ class TypeRegexPattern extends Class {
 class PatternQuoteMethod extends Method {
   PatternQuoteMethod() {
     this.getDeclaringType() instanceof TypeRegexPattern and
-    this.hasName(["quote"])
+    this.hasName("quote")
   }
 }
 
 /** The `LITERAL` field of the `java.util.regex.Pattern` class. */
-class PatternLiteral extends Field {
-  PatternLiteral() {
+class PatternLiteralField extends Field {
+  PatternLiteralField() {
     this.getDeclaringType() instanceof TypeRegexPattern and
     this.hasName("LITERAL")
   }
diff --git a/java/ql/lib/semmle/code/java/frameworks/apache/Lang.qll b/java/ql/lib/semmle/code/java/frameworks/apache/Lang.qll
index d2c94bcb376..84db672e935 100644
--- a/java/ql/lib/semmle/code/java/frameworks/apache/Lang.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/apache/Lang.qll
@@ -46,8 +46,3 @@ class TypeApacheSystemUtils extends Class {
     this.hasQualifiedName(["org.apache.commons.lang", "org.apache.commons.lang3"], "SystemUtils")
   }
 }
-
-/** The class `org.apache.commons.lang3.RegExUtils`. */
-class TypeApacheRegExUtils extends Class {
-  TypeApacheRegExUtils() { this.hasQualifiedName("org.apache.commons.lang3", "RegExUtils") }
-}
diff --git a/java/ql/lib/semmle/code/java/regex/RegexFlowModels.qll b/java/ql/lib/semmle/code/java/regex/RegexFlowModels.qll
index de0b5465fe4..2e6be8b9bab 100644
--- a/java/ql/lib/semmle/code/java/regex/RegexFlowModels.qll
+++ b/java/ql/lib/semmle/code/java/regex/RegexFlowModels.qll
@@ -27,6 +27,12 @@ private class RegexSinkCsv extends SinkModelCsv {
         "com.google.common.base;Splitter;false;split;(CharSequence);;Argument[-1];regex-use[0];manual",
         "com.google.common.base;Splitter;false;splitToList;(CharSequence);;Argument[-1];regex-use[0];manual",
         "com.google.common.base;Splitter$MapSplitter;false;split;(CharSequence);;Argument[-1];regex-use[0];manual",
+        "org.apache.commons.lang3;RegExUtils;false;removeAll;(String,String);;Argument[1];regex-use[0];manual",
+        "org.apache.commons.lang3;RegExUtils;false;removeFirst;(String,String);;Argument[1];regex-use[0];manual",
+        "org.apache.commons.lang3;RegExUtils;false;removePattern;(String,String);;Argument[1];regex-use[0];manual",
+        "org.apache.commons.lang3;RegExUtils;false;replaceAll;(String,String,String);;Argument[1];regex-use[0];manual",
+        "org.apache.commons.lang3;RegExUtils;false;replaceFirst;(String,String,String);;Argument[1];regex-use[0];manual",
+        "org.apache.commons.lang3;RegExUtils;false;replacePattern;(String,String,String);;Argument[1];regex-use[0];manual",
       ]
   }
 }
diff --git a/java/ql/lib/semmle/code/java/security/RegexInjection.qll b/java/ql/lib/semmle/code/java/security/RegexInjection.qll
index 66e315020b2..2bfeeaeb43d 100644
--- a/java/ql/lib/semmle/code/java/security/RegexInjection.qll
+++ b/java/ql/lib/semmle/code/java/security/RegexInjection.qll
@@ -3,7 +3,8 @@
 import java
 private import semmle.code.java.dataflow.DataFlow
 private import semmle.code.java.frameworks.Regex
-private import semmle.code.java.frameworks.apache.Lang
+//private import semmle.code.java.frameworks.apache.Lang
+private import semmle.code.java.regex.RegexFlowModels
 
 /** A data flow sink for untrusted user input used to construct regular expressions. */
 abstract class RegexInjectionSink extends DataFlow::ExprNode { }
@@ -14,15 +15,11 @@ abstract class RegexInjectionSanitizer extends DataFlow::ExprNode { }
 /** A method call that takes a regular expression as an argument. */
 private class DefaultRegexInjectionSink extends RegexInjectionSink {
   DefaultRegexInjectionSink() {
-    exists(MethodAccess ma, Method m | m = ma.getMethod() |
-      ma.getArgument(0) = this.asExpr() and
-      (
-        m instanceof StringRegexMethod or
-        m instanceof PatternRegexMethod
-      )
-      or
-      ma.getArgument(1) = this.asExpr() and
-      m instanceof ApacheRegExUtilsMethod
+    exists(string kind |
+      kind.matches([
+          "regex-use[]", "regex-use[f1]", "regex-use[f-1]", "regex-use[-1]", "regex-use[0]"
+        ]) and
+      sinkNode(this, kind)
     )
   }
 }
@@ -30,20 +27,29 @@ private class DefaultRegexInjectionSink extends RegexInjectionSink {
 /** A call to a function whose name suggests that it escapes regular expression meta-characters. */
 private class RegexSanitizationCall extends RegexInjectionSanitizer {
   RegexSanitizationCall() {
-    exists(string calleeName, string sanitize, string regexp |
+    // original
+    // exists(string calleeName, string sanitize, string regexp |
+    //   calleeName = this.asExpr().(Call).getCallee().getName() and
+    //   sanitize = "(?:escape|saniti[sz]e)" and
+    //   regexp = "regexp?"
+    // |
+    //   calleeName
+    //       .regexpMatch("(?i)(" + sanitize + ".*" + regexp + ".*)" + "|(" + regexp + ".*" + sanitize +
+    //           ".*)")
+    // )
+    // without regexp
+    exists(string calleeName, string sanitize |
       calleeName = this.asExpr().(Call).getCallee().getName() and
-      sanitize = "(?:escape|saniti[sz]e)" and
-      regexp = "regexp?"
+      sanitize = "(?:escape|saniti[sz]e)"
     |
-      calleeName
-          .regexpMatch("(?i)(" + sanitize + ".*" + regexp + ".*)" + "|(" + regexp + ".*" + sanitize +
-              ".*)")
+      calleeName.regexpMatch("(?i)(.*" + sanitize + ".*)")
+      //calleeName.matches("handleEscapes")
     )
   }
 }
 
 /**
- * A call to the `Pattern.quote` method, which gives meta-characters or escape sequences
+ * A call to the `Pattern.quote` method, which gives metacharacters or escape sequences
  * no special meaning.
  */
 private class PatternQuoteCall extends RegexInjectionSanitizer {
@@ -56,54 +62,17 @@ private class PatternQuoteCall extends RegexInjectionSanitizer {
 }
 
 /**
- * Use of the `Pattern.LITERAL` flag with `Pattern.compile`, which gives meta-characters
+ * Use of the `Pattern.LITERAL` flag with `Pattern.compile`, which gives metacharacters
  * or escape sequences no special meaning.
  */
 private class PatternLiteralFlag extends RegexInjectionSanitizer {
   PatternLiteralFlag() {
     exists(MethodAccess ma, Method m, Field field | m = ma.getMethod() |
       ma.getArgument(0) = this.asExpr() and
-      m instanceof PatternRegexMethod and
+      m.getDeclaringType() instanceof TypeRegexPattern and
       m.hasName("compile") and
-      field instanceof PatternLiteral and
+      field instanceof PatternLiteralField and
       ma.getArgument(1) = field.getAnAccess()
     )
   }
 }
-
-/**
- * A method of the class `java.lang.String` that takes a regular expression
- * as a parameter.
- */
-private class StringRegexMethod extends Method {
-  StringRegexMethod() {
-    this.getDeclaringType() instanceof TypeString and
-    this.hasName(["matches", "split", "replaceFirst", "replaceAll"])
-  }
-}
-
-/**
- * A method of the class `java.util.regex.Pattern` that takes a regular
- * expression as a parameter.
- */
-private class PatternRegexMethod extends Method {
-  PatternRegexMethod() {
-    this.getDeclaringType() instanceof TypeRegexPattern and
-    this.hasName(["compile", "matches"])
-  }
-}
-
-/**
- * A methods of the class `org.apache.commons.lang3.RegExUtils` that takes
- * a regular expression of type `String` as a parameter.
- */
-private class ApacheRegExUtilsMethod extends Method {
-  ApacheRegExUtilsMethod() {
-    this.getDeclaringType() instanceof TypeApacheRegExUtils and
-    // only handles String param here because the other param option, Pattern, is already handled by `java.util.regex.Pattern`
-    this.getParameterType(1) instanceof TypeString and
-    this.hasName([
-        "removeAll", "removeFirst", "removePattern", "replaceAll", "replaceFirst", "replacePattern"
-      ])
-  }
-}

From 54020013626ce0d973d26cf01e9b69712455585f Mon Sep 17 00:00:00 2001
From: Jami Cogswell <jcogs33@Jamis-MacBook-Pro.local>
Date: Thu, 3 Nov 2022 13:25:08 -0400
Subject: [PATCH 0116/1420] remove original sanitizer

---
 .../code/java/security/RegexInjection.qll     | 25 --------
 .../security/CWE-730/RegexInjectionTest.java  | 61 -------------------
 2 files changed, 86 deletions(-)

diff --git a/java/ql/lib/semmle/code/java/security/RegexInjection.qll b/java/ql/lib/semmle/code/java/security/RegexInjection.qll
index 2bfeeaeb43d..859fac475d1 100644
--- a/java/ql/lib/semmle/code/java/security/RegexInjection.qll
+++ b/java/ql/lib/semmle/code/java/security/RegexInjection.qll
@@ -3,7 +3,6 @@
 import java
 private import semmle.code.java.dataflow.DataFlow
 private import semmle.code.java.frameworks.Regex
-//private import semmle.code.java.frameworks.apache.Lang
 private import semmle.code.java.regex.RegexFlowModels
 
 /** A data flow sink for untrusted user input used to construct regular expressions. */
@@ -24,30 +23,6 @@ private class DefaultRegexInjectionSink extends RegexInjectionSink {
   }
 }
 
-/** A call to a function whose name suggests that it escapes regular expression meta-characters. */
-private class RegexSanitizationCall extends RegexInjectionSanitizer {
-  RegexSanitizationCall() {
-    // original
-    // exists(string calleeName, string sanitize, string regexp |
-    //   calleeName = this.asExpr().(Call).getCallee().getName() and
-    //   sanitize = "(?:escape|saniti[sz]e)" and
-    //   regexp = "regexp?"
-    // |
-    //   calleeName
-    //       .regexpMatch("(?i)(" + sanitize + ".*" + regexp + ".*)" + "|(" + regexp + ".*" + sanitize +
-    //           ".*)")
-    // )
-    // without regexp
-    exists(string calleeName, string sanitize |
-      calleeName = this.asExpr().(Call).getCallee().getName() and
-      sanitize = "(?:escape|saniti[sz]e)"
-    |
-      calleeName.regexpMatch("(?i)(.*" + sanitize + ".*)")
-      //calleeName.matches("handleEscapes")
-    )
-  }
-}
-
 /**
  * A call to the `Pattern.quote` method, which gives metacharacters or escape sequences
  * no special meaning.
diff --git a/java/ql/test/query-tests/security/CWE-730/RegexInjectionTest.java b/java/ql/test/query-tests/security/CWE-730/RegexInjectionTest.java
index d78c8930e87..37ea99cd4f0 100644
--- a/java/ql/test/query-tests/security/CWE-730/RegexInjectionTest.java
+++ b/java/ql/test/query-tests/security/CWE-730/RegexInjectionTest.java
@@ -72,67 +72,6 @@ public class RegexInjectionTest extends HttpServlet {
     return str;
   }
 
-  public boolean pattern5(javax.servlet.http.HttpServletRequest request) {
-    String pattern = request.getParameter("pattern");
-    String input = request.getParameter("input");
-
-    // Safe: User input is sanitized before constructing the regex
-    return input.matches("^" + escapeSpecialRegexChars(pattern) + "=.*$");
-  }
-
-  public boolean pattern6(javax.servlet.http.HttpServletRequest request) {
-    String pattern = request.getParameter("pattern");
-    String input = request.getParameter("input");
-
-    escapeSpecialRegexChars(pattern);
-
-    // BAD: the pattern is not really sanitized
-    return input.matches("^" + pattern + "=.*$"); // $ hasRegexInjection
-  }
-
-  public boolean pattern7(javax.servlet.http.HttpServletRequest request) {
-    String pattern = request.getParameter("pattern");
-    String input = request.getParameter("input");
-
-    String escapedPattern = escapeSpecialRegexChars(pattern);
-
-    // Safe: User input is sanitized before constructing the regex
-    return input.matches("^" + escapedPattern + "=.*$");
-  }
-
-  public boolean pattern8(javax.servlet.http.HttpServletRequest request) {
-    String pattern = request.getParameter("pattern");
-    String input = request.getParameter("input");
-
-    // Safe: User input is sanitized before constructing the regex
-    return input.matches("^" + sanitizeSpecialRegexChars(pattern) + "=.*$");
-  }
-
-  public boolean pattern9(javax.servlet.http.HttpServletRequest request) {
-    String pattern = request.getParameter("pattern");
-    String input = request.getParameter("input");
-
-    // Safe: User input is sanitized before constructing the regex
-    return input.matches("^" + sanitiseSpecialRegexChars(pattern) + "=.*$");
-  }
-
-  Pattern SPECIAL_REGEX_CHARS = Pattern.compile("[{}()\\[\\]><-=!.+*?^$\\\\|]");
-
-  // test `escape...regex`
-  String escapeSpecialRegexChars(String str) {
-    return SPECIAL_REGEX_CHARS.matcher(str).replaceAll("\\\\$0");
-  }
-
-  // test `sanitize...regex`
-  String sanitizeSpecialRegexChars(String str) {
-    return SPECIAL_REGEX_CHARS.matcher(str).replaceAll("\\\\$0");
-  }
-
-  // test `sanitise...regex`
-  String sanitiseSpecialRegexChars(String str) {
-    return SPECIAL_REGEX_CHARS.matcher(str).replaceAll("\\\\$0");
-  }
-
   public boolean apache1(javax.servlet.http.HttpServletRequest request) {
     String pattern = request.getParameter("pattern");
     String input = request.getParameter("input");

From 695d6f0e4e5389dbf6864017b5be9daeac7002df Mon Sep 17 00:00:00 2001
From: Jami Cogswell <jcogs33@Jamis-MacBook-Pro.local>
Date: Thu, 3 Nov 2022 13:42:41 -0400
Subject: [PATCH 0117/1420] move files to regexp directory

---
 .../semmle/code/java/security/{ => regexp}/RegexInjection.qll   | 0
 .../code/java/security/{ => regexp}/RegexInjectionQuery.qll     | 2 +-
 java/ql/src/Security/CWE/CWE-730/RegexInjection.ql              | 2 +-
 3 files changed, 2 insertions(+), 2 deletions(-)
 rename java/ql/lib/semmle/code/java/security/{ => regexp}/RegexInjection.qll (100%)
 rename java/ql/lib/semmle/code/java/security/{ => regexp}/RegexInjectionQuery.qll (92%)

diff --git a/java/ql/lib/semmle/code/java/security/RegexInjection.qll b/java/ql/lib/semmle/code/java/security/regexp/RegexInjection.qll
similarity index 100%
rename from java/ql/lib/semmle/code/java/security/RegexInjection.qll
rename to java/ql/lib/semmle/code/java/security/regexp/RegexInjection.qll
diff --git a/java/ql/lib/semmle/code/java/security/RegexInjectionQuery.qll b/java/ql/lib/semmle/code/java/security/regexp/RegexInjectionQuery.qll
similarity index 92%
rename from java/ql/lib/semmle/code/java/security/RegexInjectionQuery.qll
rename to java/ql/lib/semmle/code/java/security/regexp/RegexInjectionQuery.qll
index 914b3222d9f..e2453c08dca 100644
--- a/java/ql/lib/semmle/code/java/security/RegexInjectionQuery.qll
+++ b/java/ql/lib/semmle/code/java/security/regexp/RegexInjectionQuery.qll
@@ -3,7 +3,7 @@
 import java
 import semmle.code.java.dataflow.FlowSources
 import semmle.code.java.dataflow.TaintTracking
-import semmle.code.java.security.RegexInjection
+import semmle.code.java.security.regexp.RegexInjection
 
 /** A taint-tracking configuration for untrusted user input used to construct regular expressions. */
 class RegexInjectionConfiguration extends TaintTracking::Configuration {
diff --git a/java/ql/src/Security/CWE/CWE-730/RegexInjection.ql b/java/ql/src/Security/CWE/CWE-730/RegexInjection.ql
index 0f0175b30cd..820e0949d22 100644
--- a/java/ql/src/Security/CWE/CWE-730/RegexInjection.ql
+++ b/java/ql/src/Security/CWE/CWE-730/RegexInjection.ql
@@ -14,7 +14,7 @@
  */
 
 import java
-import semmle.code.java.security.RegexInjectionQuery
+import semmle.code.java.security.regexp.RegexInjectionQuery
 import DataFlow::PathGraph
 
 from DataFlow::PathNode source, DataFlow::PathNode sink, RegexInjectionConfiguration c

From 0e93e7112732e735d99e85c74910b7a5185a75ea Mon Sep 17 00:00:00 2001
From: Jami Cogswell <jcogs33@Jamis-MacBook-Pro.local>
Date: Thu, 3 Nov 2022 14:14:32 -0400
Subject: [PATCH 0118/1420] update tests

---
 .../security/CWE-730/RegexInjectionTest.java   | 18 ++++++++++++++++--
 .../security/CWE-730/RegexInjectionTest.ql     |  2 +-
 2 files changed, 17 insertions(+), 3 deletions(-)

diff --git a/java/ql/test/query-tests/security/CWE-730/RegexInjectionTest.java b/java/ql/test/query-tests/security/CWE-730/RegexInjectionTest.java
index 37ea99cd4f0..57a1ea92667 100644
--- a/java/ql/test/query-tests/security/CWE-730/RegexInjectionTest.java
+++ b/java/ql/test/query-tests/security/CWE-730/RegexInjectionTest.java
@@ -27,13 +27,20 @@ public class RegexInjectionTest extends HttpServlet {
     String pattern = request.getParameter("pattern");
     String input = request.getParameter("input");
 
-    return input.replaceFirst(pattern, "").length() > 0;  // $ hasRegexInjection
+    return input.split(pattern, 0).length > 0;  // $ hasRegexInjection
   }
 
   public boolean string4(javax.servlet.http.HttpServletRequest request) {
     String pattern = request.getParameter("pattern");
     String input = request.getParameter("input");
 
+    return input.replaceFirst(pattern, "").length() > 0;  // $ hasRegexInjection
+  }
+
+  public boolean string5(javax.servlet.http.HttpServletRequest request) {
+    String pattern = request.getParameter("pattern");
+    String input = request.getParameter("input");
+
     return input.replaceAll(pattern, "").length() > 0;  // $ hasRegexInjection
   }
 
@@ -58,13 +65,20 @@ public class RegexInjectionTest extends HttpServlet {
     String pattern = request.getParameter("pattern");
     String input = request.getParameter("input");
 
-    return Pattern.matches(pattern, input);  // $ hasRegexInjection
+    return Pattern.compile(pattern, 0).matcher(input).matches();  // $ hasRegexInjection
   }
 
   public boolean pattern4(javax.servlet.http.HttpServletRequest request) {
     String pattern = request.getParameter("pattern");
     String input = request.getParameter("input");
 
+    return Pattern.matches(pattern, input);  // $ hasRegexInjection
+  }
+
+  public boolean pattern5(javax.servlet.http.HttpServletRequest request) {
+    String pattern = request.getParameter("pattern");
+    String input = request.getParameter("input");
+
     return input.matches("^" + foo(pattern) + "=.*$"); // $ hasRegexInjection
   }
 
diff --git a/java/ql/test/query-tests/security/CWE-730/RegexInjectionTest.ql b/java/ql/test/query-tests/security/CWE-730/RegexInjectionTest.ql
index 596decf98af..9603ad37b8f 100644
--- a/java/ql/test/query-tests/security/CWE-730/RegexInjectionTest.ql
+++ b/java/ql/test/query-tests/security/CWE-730/RegexInjectionTest.ql
@@ -1,6 +1,6 @@
 import java
 import TestUtilities.InlineExpectationsTest
-import semmle.code.java.security.RegexInjectionQuery
+import semmle.code.java.security.regexp.RegexInjectionQuery
 
 //import semmle.code.java.security.regexp.PolynomialReDoSQuery
 class RegexInjectionTest extends InlineExpectationsTest {

From e49c5213ca0b32ce38c65a5fb5df16c2db7b0758 Mon Sep 17 00:00:00 2001
From: Jami Cogswell <jcogs33@Jamis-MacBook-Pro.local>
Date: Thu, 3 Nov 2022 14:21:37 -0400
Subject: [PATCH 0119/1420] update change note

---
 java/ql/src/change-notes/2022-10-28-regex-injection.md | 4 ----
 java/ql/src/change-notes/2022-11-03-regex-injection.md | 4 ++++
 2 files changed, 4 insertions(+), 4 deletions(-)
 delete mode 100644 java/ql/src/change-notes/2022-10-28-regex-injection.md
 create mode 100644 java/ql/src/change-notes/2022-11-03-regex-injection.md

diff --git a/java/ql/src/change-notes/2022-10-28-regex-injection.md b/java/ql/src/change-notes/2022-10-28-regex-injection.md
deleted file mode 100644
index f2376f34c8a..00000000000
--- a/java/ql/src/change-notes/2022-10-28-regex-injection.md
+++ /dev/null
@@ -1,4 +0,0 @@
----
-category: newQuery
----
-* Added a new query, `java/regex-injection`, to detect unescaped user input used in regular expressions.
diff --git a/java/ql/src/change-notes/2022-11-03-regex-injection.md b/java/ql/src/change-notes/2022-11-03-regex-injection.md
new file mode 100644
index 00000000000..759aa2a86e1
--- /dev/null
+++ b/java/ql/src/change-notes/2022-11-03-regex-injection.md
@@ -0,0 +1,4 @@
+---
+category: newQuery
+---
+* The query, `java/regex-injection`, has been promoted from experimental to the main query pack. Its results will now appear by default. This query was originally [submitted as an experimental query by @edvraa](https://github.com/github/codeql/pull/5704).

From b99a1d2cd9924b7261a205eb82ecbcfb1ae2b160 Mon Sep 17 00:00:00 2001
From: Jami Cogswell <jcogs33@Jamis-MacBook-Pro.local>
Date: Fri, 4 Nov 2022 11:41:54 -0400
Subject: [PATCH 0120/1420] update sink and tests

---
 .../semmle/code/java/regex/RegexFlowModels.qll   | 12 ++++++------
 .../code/java/security/regexp/RegexInjection.qll |  4 +---
 .../security/CWE-730/RegexInjectionTest.java     | 16 ++++++++++++++--
 3 files changed, 21 insertions(+), 11 deletions(-)

diff --git a/java/ql/lib/semmle/code/java/regex/RegexFlowModels.qll b/java/ql/lib/semmle/code/java/regex/RegexFlowModels.qll
index 2e6be8b9bab..20ba2c14dc8 100644
--- a/java/ql/lib/semmle/code/java/regex/RegexFlowModels.qll
+++ b/java/ql/lib/semmle/code/java/regex/RegexFlowModels.qll
@@ -27,12 +27,12 @@ private class RegexSinkCsv extends SinkModelCsv {
         "com.google.common.base;Splitter;false;split;(CharSequence);;Argument[-1];regex-use[0];manual",
         "com.google.common.base;Splitter;false;splitToList;(CharSequence);;Argument[-1];regex-use[0];manual",
         "com.google.common.base;Splitter$MapSplitter;false;split;(CharSequence);;Argument[-1];regex-use[0];manual",
-        "org.apache.commons.lang3;RegExUtils;false;removeAll;(String,String);;Argument[1];regex-use[0];manual",
-        "org.apache.commons.lang3;RegExUtils;false;removeFirst;(String,String);;Argument[1];regex-use[0];manual",
-        "org.apache.commons.lang3;RegExUtils;false;removePattern;(String,String);;Argument[1];regex-use[0];manual",
-        "org.apache.commons.lang3;RegExUtils;false;replaceAll;(String,String,String);;Argument[1];regex-use[0];manual",
-        "org.apache.commons.lang3;RegExUtils;false;replaceFirst;(String,String,String);;Argument[1];regex-use[0];manual",
-        "org.apache.commons.lang3;RegExUtils;false;replacePattern;(String,String,String);;Argument[1];regex-use[0];manual",
+        "org.apache.commons.lang3;RegExUtils;false;removeAll;(String,String);;Argument[1];regex-use;manual",
+        "org.apache.commons.lang3;RegExUtils;false;removeFirst;(String,String);;Argument[1];regex-use;manual",
+        "org.apache.commons.lang3;RegExUtils;false;removePattern;(String,String);;Argument[1];regex-use;manual",
+        "org.apache.commons.lang3;RegExUtils;false;replaceAll;(String,String,String);;Argument[1];regex-use;manual",
+        "org.apache.commons.lang3;RegExUtils;false;replaceFirst;(String,String,String);;Argument[1];regex-use;manual",
+        "org.apache.commons.lang3;RegExUtils;false;replacePattern;(String,String,String);;Argument[1];regex-use;manual",
       ]
   }
 }
diff --git a/java/ql/lib/semmle/code/java/security/regexp/RegexInjection.qll b/java/ql/lib/semmle/code/java/security/regexp/RegexInjection.qll
index 859fac475d1..21dde6edb41 100644
--- a/java/ql/lib/semmle/code/java/security/regexp/RegexInjection.qll
+++ b/java/ql/lib/semmle/code/java/security/regexp/RegexInjection.qll
@@ -15,9 +15,7 @@ abstract class RegexInjectionSanitizer extends DataFlow::ExprNode { }
 private class DefaultRegexInjectionSink extends RegexInjectionSink {
   DefaultRegexInjectionSink() {
     exists(string kind |
-      kind.matches([
-          "regex-use[]", "regex-use[f1]", "regex-use[f-1]", "regex-use[-1]", "regex-use[0]"
-        ]) and
+      kind.matches(["regex-use[]", "regex-use[f1]", "regex-use[f-1]", "regex-use[-1]", "regex-use"]) and
       sinkNode(this, kind)
     )
   }
diff --git a/java/ql/test/query-tests/security/CWE-730/RegexInjectionTest.java b/java/ql/test/query-tests/security/CWE-730/RegexInjectionTest.java
index 57a1ea92667..5c7a3ca0574 100644
--- a/java/ql/test/query-tests/security/CWE-730/RegexInjectionTest.java
+++ b/java/ql/test/query-tests/security/CWE-730/RegexInjectionTest.java
@@ -7,6 +7,7 @@ import javax.servlet.http.HttpServletResponse;
 import javax.servlet.ServletException;
 
 import org.apache.commons.lang3.RegExUtils;
+import com.google.common.base.Splitter;
 
 public class RegexInjectionTest extends HttpServlet {
   public boolean string1(javax.servlet.http.HttpServletRequest request) {
@@ -138,10 +139,10 @@ public class RegexInjectionTest extends HttpServlet {
 
   // test `Pattern.quote` sanitizer
   public boolean quoteTest(javax.servlet.http.HttpServletRequest request) {
-    String regex = request.getParameter("regex");
+    String pattern = request.getParameter("pattern");
     String input = request.getParameter("input");
 
-    return input.matches(Pattern.quote(regex));  // Safe
+    return input.matches(Pattern.quote(pattern));  // Safe
   }
 
   // test `Pattern.LITERAL` sanitizer
@@ -151,4 +152,15 @@ public class RegexInjectionTest extends HttpServlet {
 
     return Pattern.compile(pattern, Pattern.LITERAL).matcher(input).matches();  // Safe
   }
+
+  public Splitter guava1(javax.servlet.http.HttpServletRequest request) {
+    String pattern = request.getParameter("pattern");
+    return Splitter.onPattern(pattern);  // $ hasRegexInjection
+  }
+
+  public Splitter guava2(javax.servlet.http.HttpServletRequest request) {
+    String pattern = request.getParameter("pattern");
+    // sink is `Pattern.compile`
+    return  Splitter.on(Pattern.compile(pattern));  // $ hasRegexInjection
+  }
 }

From bada9864336f065a066ec14c34c989c0df094d14 Mon Sep 17 00:00:00 2001
From: Jami Cogswell <jcogs33@Jamis-MacBook-Pro.local>
Date: Tue, 8 Nov 2022 09:34:46 -0500
Subject: [PATCH 0121/1420] apply review comments

---
 .../ql/lib/semmle/code/java/security/regexp/RegexInjection.qll | 3 +--
 .../ql/test/query-tests/security/CWE-730/RegexInjectionTest.ql | 1 -
 2 files changed, 1 insertion(+), 3 deletions(-)

diff --git a/java/ql/lib/semmle/code/java/security/regexp/RegexInjection.qll b/java/ql/lib/semmle/code/java/security/regexp/RegexInjection.qll
index 21dde6edb41..4df736e6241 100644
--- a/java/ql/lib/semmle/code/java/security/regexp/RegexInjection.qll
+++ b/java/ql/lib/semmle/code/java/security/regexp/RegexInjection.qll
@@ -40,11 +40,10 @@ private class PatternQuoteCall extends RegexInjectionSanitizer {
  */
 private class PatternLiteralFlag extends RegexInjectionSanitizer {
   PatternLiteralFlag() {
-    exists(MethodAccess ma, Method m, Field field | m = ma.getMethod() |
+    exists(MethodAccess ma, Method m, PatternLiteralField field | m = ma.getMethod() |
       ma.getArgument(0) = this.asExpr() and
       m.getDeclaringType() instanceof TypeRegexPattern and
       m.hasName("compile") and
-      field instanceof PatternLiteralField and
       ma.getArgument(1) = field.getAnAccess()
     )
   }
diff --git a/java/ql/test/query-tests/security/CWE-730/RegexInjectionTest.ql b/java/ql/test/query-tests/security/CWE-730/RegexInjectionTest.ql
index 9603ad37b8f..368b5170bfc 100644
--- a/java/ql/test/query-tests/security/CWE-730/RegexInjectionTest.ql
+++ b/java/ql/test/query-tests/security/CWE-730/RegexInjectionTest.ql
@@ -2,7 +2,6 @@ import java
 import TestUtilities.InlineExpectationsTest
 import semmle.code.java.security.regexp.RegexInjectionQuery
 
-//import semmle.code.java.security.regexp.PolynomialReDoSQuery
 class RegexInjectionTest extends InlineExpectationsTest {
   RegexInjectionTest() { this = "RegexInjectionTest" }
 

From 13decd38d90d30449f0a875278c35d8a2d9f3772 Mon Sep 17 00:00:00 2001
From: Jami Cogswell <jcogs33@Jamis-MacBook-Pro.local>
Date: Tue, 8 Nov 2022 15:27:37 -0500
Subject: [PATCH 0122/1420] update sink

---
 .../lib/semmle/code/java/security/regexp/RegexInjection.qll | 6 ++----
 1 file changed, 2 insertions(+), 4 deletions(-)

diff --git a/java/ql/lib/semmle/code/java/security/regexp/RegexInjection.qll b/java/ql/lib/semmle/code/java/security/regexp/RegexInjection.qll
index 4df736e6241..3c1e2e98229 100644
--- a/java/ql/lib/semmle/code/java/security/regexp/RegexInjection.qll
+++ b/java/ql/lib/semmle/code/java/security/regexp/RegexInjection.qll
@@ -14,10 +14,8 @@ abstract class RegexInjectionSanitizer extends DataFlow::ExprNode { }
 /** A method call that takes a regular expression as an argument. */
 private class DefaultRegexInjectionSink extends RegexInjectionSink {
   DefaultRegexInjectionSink() {
-    exists(string kind |
-      kind.matches(["regex-use[]", "regex-use[f1]", "regex-use[f-1]", "regex-use[-1]", "regex-use"]) and
-      sinkNode(this, kind)
-    )
+    // we only select sinks where there is direct regex creation, not regex uses
+    sinkNode(this, ["regex-use[]", "regex-use[f1]", "regex-use[f-1]", "regex-use[-1]", "regex-use"])
   }
 }
 

From ac14b6d68549e62571134e70c334bef82f826ffc Mon Sep 17 00:00:00 2001
From: tiferet <tiferet@github.com>
Date: Tue, 8 Nov 2022 13:37:49 -0800
Subject: [PATCH 0123/1420] Create EndpointCharacteristics to replace all
 existing NotASinkReasons and LikelyNotASinkReasons

---
 .../EndpointCharacteristics.qll               | 320 ++++++++++++++++++
 1 file changed, 320 insertions(+)

diff --git a/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/EndpointCharacteristics.qll b/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/EndpointCharacteristics.qll
index 6ee08d51daf..ce99a62f24c 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/EndpointCharacteristics.qll
+++ b/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/EndpointCharacteristics.qll
@@ -45,6 +45,12 @@ abstract class EndpointCharacteristic extends string {
   );
 }
 
+/*
+ * Characteristics that are indicative of a sink.
+ * NOTE: Initially each sink type has only one characteristic, which is that it's a sink of this type in the standard
+ * JavaScript libraries.
+ */
+
 /**
  * Endpoints identified as "DomBasedXssSink" by the standard JavaScript libraries are XSS sinks with maximal confidence.
  */
@@ -111,3 +117,317 @@ private class NosqlInjectionSinkCharacteristic extends EndpointCharacteristic {
     confidence = 1.0
   }
 }
+
+/*
+ * Characteristics that are indicative of not being a sink of any type.
+ */
+
+/**
+ * A characteristic that is an indicator of not being a sink of any type, because it's an argument that has a manual
+ * model.
+ */
+abstract private class OtherModeledArgumentCharacteristic extends EndpointCharacteristic {
+  bindingset[this]
+  OtherModeledArgumentCharacteristic() { any() }
+}
+
+/**
+ * A characteristic that is an indicator of not being a sink of any type, because it's an argument to a function of a
+ * builtin object.
+ */
+abstract private class ArgumentToBuiltinFunctionCharacteristic extends OtherModeledArgumentCharacteristic {
+  bindingset[this]
+  ArgumentToBuiltinFunctionCharacteristic() { any() }
+}
+
+/**
+ * A high-confidence characteristic that indicates that an endpoint is not a sink of any type.
+ */
+abstract private class NotASinkCharacteristic extends OtherModeledArgumentCharacteristic {
+  bindingset[this]
+  NotASinkCharacteristic() { any() }
+
+  override predicate getImplications(
+    EndpointType endpointClass, boolean isPositiveIndicator, float confidence
+  ) {
+    endpointClass instanceof NegativeType and isPositiveIndicator = true and confidence = 0.9
+  }
+}
+
+/**
+ * A medium-confidence characteristic that indicates that an endpoint is not a sink of any type.
+ *
+ * TODO: This class is currently not private, because the current extraction logic explicitly avoids including these
+ * endpoints in the training data. We might want to change this in the future.
+ */
+abstract class LikelyNotASinkCharacteristic extends OtherModeledArgumentCharacteristic {
+  bindingset[this]
+  LikelyNotASinkCharacteristic() { any() }
+
+  override predicate getImplications(
+    EndpointType endpointClass, boolean isPositiveIndicator, float confidence
+  ) {
+    endpointClass instanceof NegativeType and isPositiveIndicator = true and confidence = 0.6
+  }
+}
+
+private class LodashUnderscore extends NotASinkCharacteristic {
+  LodashUnderscore() { this = "LodashUnderscoreArgument" }
+
+  override predicate getEndpoints(DataFlow::Node n) {
+    any(LodashUnderscore::Member m).getACall().getAnArgument() = n
+  }
+}
+
+private class JQueryArgumentCharacteristic extends NotASinkCharacteristic {
+  JQueryArgumentCharacteristic() { this = "JQueryArgument" }
+
+  override predicate getEndpoints(DataFlow::Node n) {
+    any(JQuery::MethodCall m).getAnArgument() = n
+  }
+}
+
+private class ClientRequestCharacteristic extends NotASinkCharacteristic {
+  ClientRequestCharacteristic() { this = "ClientRequest" }
+
+  override predicate getEndpoints(DataFlow::Node n) {
+    exists(ClientRequest r |
+      r.getAnArgument() = n or n = r.getUrl() or n = r.getHost() or n = r.getADataNode()
+    )
+  }
+}
+
+private class PromiseDefinitionCharacteristic extends NotASinkCharacteristic {
+  PromiseDefinitionCharacteristic() { this = "PromiseDefinition" }
+
+  override predicate getEndpoints(DataFlow::Node n) {
+    exists(PromiseDefinition p |
+      n = [p.getResolveParameter(), p.getRejectParameter()].getACall().getAnArgument()
+    )
+  }
+}
+
+private class CryptographicKeyCharacteristic extends NotASinkCharacteristic {
+  CryptographicKeyCharacteristic() { this = "CryptographicKey" }
+
+  override predicate getEndpoints(DataFlow::Node n) { n instanceof CryptographicKey }
+}
+
+private class CryptographicOperationFlowCharacteristic extends NotASinkCharacteristic {
+  CryptographicOperationFlowCharacteristic() { this = "CryptographicOperationFlow" }
+
+  override predicate getEndpoints(DataFlow::Node n) {
+    any(CryptographicOperation op).getInput() = n
+  }
+}
+
+private class LoggerMethodCharacteristic extends NotASinkCharacteristic {
+  LoggerMethodCharacteristic() { this = "LoggerMethod" }
+
+  override predicate getEndpoints(DataFlow::Node n) {
+    exists(DataFlow::CallNode call | n = call.getAnArgument() |
+      call.getCalleeName() = getAStandardLoggerMethodName()
+    )
+  }
+}
+
+private class TimeoutCharacteristic extends NotASinkCharacteristic {
+  TimeoutCharacteristic() { this = "Timeout" }
+
+  override predicate getEndpoints(DataFlow::Node n) {
+    exists(DataFlow::CallNode call | n = call.getAnArgument() |
+      call.getCalleeName() = ["setTimeout", "clearTimeout"]
+    )
+  }
+}
+
+private class ReceiverStorageCharacteristic extends NotASinkCharacteristic {
+  ReceiverStorageCharacteristic() { this = "ReceiverStorage" }
+
+  override predicate getEndpoints(DataFlow::Node n) {
+    exists(DataFlow::CallNode call | n = call.getAnArgument() |
+      call.getReceiver() = DataFlow::globalVarRef(["localStorage", "sessionStorage"])
+    )
+  }
+}
+
+private class StringStartsWithCharacteristic extends NotASinkCharacteristic {
+  StringStartsWithCharacteristic() { this = "StringStartsWith" }
+
+  override predicate getEndpoints(DataFlow::Node n) {
+    exists(DataFlow::CallNode call | n = call.getAnArgument() |
+      call instanceof StringOps::StartsWith
+    )
+  }
+}
+
+private class StringEndsWithCharacteristic extends NotASinkCharacteristic {
+  StringEndsWithCharacteristic() { this = "StringEndsWith" }
+
+  override predicate getEndpoints(DataFlow::Node n) {
+    exists(DataFlow::CallNode call | n = call.getAnArgument() | call instanceof StringOps::EndsWith)
+  }
+}
+
+private class StringRegExpTestCharacteristic extends NotASinkCharacteristic {
+  StringRegExpTestCharacteristic() { this = "StringRegExpTest" }
+
+  override predicate getEndpoints(DataFlow::Node n) {
+    exists(DataFlow::CallNode call | n = call.getAnArgument() |
+      call instanceof StringOps::RegExpTest
+    )
+  }
+}
+
+private class EventRegistrationCharacteristic extends NotASinkCharacteristic {
+  EventRegistrationCharacteristic() { this = "EventRegistration" }
+
+  override predicate getEndpoints(DataFlow::Node n) {
+    exists(DataFlow::CallNode call | n = call.getAnArgument() | call instanceof EventRegistration)
+  }
+}
+
+private class EventDispatchCharacteristic extends NotASinkCharacteristic {
+  EventDispatchCharacteristic() { this = "EventDispatch" }
+
+  override predicate getEndpoints(DataFlow::Node n) {
+    exists(DataFlow::CallNode call | n = call.getAnArgument() | call instanceof EventDispatch)
+  }
+}
+
+private class MembershipCandidateTestCharacteristic extends NotASinkCharacteristic {
+  MembershipCandidateTestCharacteristic() { this = "MembershipCandidateTest" }
+
+  override predicate getEndpoints(DataFlow::Node n) {
+    exists(DataFlow::CallNode call | n = call.getAnArgument() |
+      call = any(MembershipCandidate c).getTest()
+    )
+  }
+}
+
+private class FileSystemAccessCharacteristic extends NotASinkCharacteristic {
+  FileSystemAccessCharacteristic() { this = "FileSystemAccess" }
+
+  override predicate getEndpoints(DataFlow::Node n) {
+    exists(DataFlow::CallNode call | n = call.getAnArgument() | call instanceof FileSystemAccess)
+  }
+}
+
+private class DatabaseAccessCharacteristic extends NotASinkCharacteristic {
+  DatabaseAccessCharacteristic() { this = "DatabaseAccess" }
+
+  override predicate getEndpoints(DataFlow::Node n) {
+    // TODO database accesses are less well defined than database query sinks, so this may cover unmodeled sinks on
+    // existing database models
+    exists(DataFlow::CallNode call | n = call.getAnArgument() |
+      [
+        call, call.getAMethodCall()
+      /* command pattern where the query is built, and then exec'ed later */ ] instanceof
+        DatabaseAccess
+    )
+  }
+}
+
+private class DomCharacteristic extends NotASinkCharacteristic {
+  DomCharacteristic() { this = "DOM" }
+
+  override predicate getEndpoints(DataFlow::Node n) {
+    exists(DataFlow::CallNode call | n = call.getAnArgument() | call = DOM::domValueRef())
+  }
+}
+
+private class NextFunctionCallCharacteristic extends NotASinkCharacteristic {
+  NextFunctionCallCharacteristic() { this = "NextFunctionCall" }
+
+  override predicate getEndpoints(DataFlow::Node n) {
+    exists(DataFlow::CallNode call | n = call.getAnArgument() |
+      call.getCalleeName() = "next" and
+      exists(DataFlow::FunctionNode f | call = f.getLastParameter().getACall())
+    )
+  }
+}
+
+private class DojoRequireCharacteristic extends NotASinkCharacteristic {
+  DojoRequireCharacteristic() { this = "DojoRequire" }
+
+  override predicate getEndpoints(DataFlow::Node n) {
+    exists(DataFlow::CallNode call | n = call.getAnArgument() |
+      call = DataFlow::globalVarRef("dojo").getAPropertyRead("require").getACall()
+    )
+  }
+}
+
+private class Base64ManipulationCharacteristic extends NotASinkCharacteristic {
+  Base64ManipulationCharacteristic() { this = "Base64Manipulation" }
+
+  override predicate getEndpoints(DataFlow::Node n) {
+    exists(Base64::Decode d | n = d.getInput()) or
+    exists(Base64::Encode d | n = d.getInput())
+  }
+}
+
+private class ArgumentToArrayCharacteristic extends ArgumentToBuiltinFunctionCharacteristic,
+  LikelyNotASinkCharacteristic {
+  ArgumentToArrayCharacteristic() { this = "ArgumentToArray" }
+
+  override predicate getEndpoints(DataFlow::Node n) {
+    exists(DataFlow::SourceNode builtin, DataFlow::SourceNode receiver, DataFlow::InvokeNode invk |
+      builtin instanceof DataFlow::ArrayCreationNode
+    |
+      receiver = [builtin.getAnInvocation(), builtin] and
+      invk = [receiver, receiver.getAPropertyRead()].getAnInvocation() and
+      invk.getAnArgument() = n
+    )
+  }
+}
+
+private class ArgumentToBuiltinGlobalVarRefCharacteristic extends ArgumentToBuiltinFunctionCharacteristic,
+  LikelyNotASinkCharacteristic {
+  ArgumentToBuiltinGlobalVarRefCharacteristic() { this = "ArgumentToBuiltinGlobalVarRef" }
+
+  override predicate getEndpoints(DataFlow::Node n) {
+    exists(DataFlow::SourceNode builtin, DataFlow::SourceNode receiver, DataFlow::InvokeNode invk |
+      builtin =
+        DataFlow::globalVarRef([
+            "Map", "Set", "WeakMap", "WeakSet", "Number", "Object", "String", "Array", "Error",
+            "Math", "Boolean"
+          ])
+    |
+      receiver = [builtin.getAnInvocation(), builtin] and
+      invk = [receiver, receiver.getAPropertyRead()].getAnInvocation() and
+      invk.getAnArgument() = n
+    )
+  }
+}
+
+private class ConstantReceiverCharacteristic extends ArgumentToBuiltinFunctionCharacteristic,
+  NotASinkCharacteristic {
+  ConstantReceiverCharacteristic() { this = "ConstantReceiver" }
+
+  override predicate getEndpoints(DataFlow::Node n) {
+    exists(Expr primitive, MethodCallExpr c |
+      primitive instanceof ConstantString or
+      primitive instanceof NumberLiteral or
+      primitive instanceof BooleanLiteral
+    |
+      c.calls(primitive, _) and
+      c.getAnArgument() = n.asExpr()
+    )
+  }
+}
+
+private class BuiltinCallNameCharacteristic extends ArgumentToBuiltinFunctionCharacteristic,
+  NotASinkCharacteristic {
+  BuiltinCallNameCharacteristic() { this = "BuiltinCallName" }
+
+  override predicate getEndpoints(DataFlow::Node n) {
+    exists(DataFlow::CallNode call |
+      call.getAnArgument() = n and
+      call.getCalleeName() =
+        [
+          "indexOf", "hasOwnProperty", "substring", "isDecimal", "decode", "encode", "keys",
+          "shift", "values", "forEach", "toString", "slice", "splice", "push", "isArray", "sort"
+        ]
+    )
+  }
+}

From 4bc909644659e26ec6727ce05731cec5376934d0 Mon Sep 17 00:00:00 2001
From: Harry Maclean <hmac@github.com>
Date: Tue, 18 Oct 2022 11:48:42 +1300
Subject: [PATCH 0124/1420] Ruby: Add case string comparison barrier guard

This recognises barriers of the form

    STRINGS = ["foo", "bar"]

    case foo
    when "some string literal"
      foo
    when *["other", "strings"]
      foo
    when *STRINGS
      foo
    end

where the reads of `foo` inside each `when` are guarded by the comparison
of `foo` with the string literals.

We don't yet recognise this construct:

    case foo
    when "foo", "bar"
      foo
    end

This is due to a limitation in the shared barrier guard logic.
---
 ...022-10-26-case-expression-barrier-guard.md |  4 ++
 .../lib/codeql/ruby/controlflow/CfgNodes.qll  | 13 +++-
 .../codeql/ruby/dataflow/BarrierGuards.qll    | 72 +++++++++++++++++--
 .../ruby/dataflow/internal/DataFlowPublic.qll | 12 ++--
 .../regexp/PolynomialReDoSCustomizations.qll  |  2 +-
 .../barrier-guards/barrier-guards.expected    | 37 ++++++++++
 .../dataflow/barrier-guards/barrier-guards.rb | 71 ++++++++++++++++++
 .../CommandInjection.expected                 | 50 +++++++------
 .../CommandInjection/CommandInjection.rb      |  9 +++
 9 files changed, 233 insertions(+), 37 deletions(-)
 create mode 100644 ruby/ql/lib/change-notes/2022-10-26-case-expression-barrier-guard.md

diff --git a/ruby/ql/lib/change-notes/2022-10-26-case-expression-barrier-guard.md b/ruby/ql/lib/change-notes/2022-10-26-case-expression-barrier-guard.md
new file mode 100644
index 00000000000..6f3df870eed
--- /dev/null
+++ b/ruby/ql/lib/change-notes/2022-10-26-case-expression-barrier-guard.md
@@ -0,0 +1,4 @@
+---
+ category: minorAnalysis
+---
+ * String literals and arrays of string literals in case expression patterns are now recognised as barrier guards.
diff --git a/ruby/ql/lib/codeql/ruby/controlflow/CfgNodes.qll b/ruby/ql/lib/codeql/ruby/controlflow/CfgNodes.qll
index f7be488d0fd..030bb2cf245 100644
--- a/ruby/ql/lib/codeql/ruby/controlflow/CfgNodes.qll
+++ b/ruby/ql/lib/codeql/ruby/controlflow/CfgNodes.qll
@@ -234,7 +234,7 @@ module ExprNodes {
     override predicate relevantChild(AstNode n) { none() }
   }
 
-  /** A control-flow node that wraps an `ArrayLiteral` AST expression. */
+  /** A control-flow node that wraps a `Literal` AST expression. */
   class LiteralCfgNode extends ExprCfgNode {
     override string getAPrimaryQlClass() { result = "LiteralCfgNode" }
 
@@ -866,6 +866,17 @@ module ExprNodes {
     final override RelationalOperation getExpr() { result = super.getExpr() }
   }
 
+  /** A control-flow node that wraps a `SplatExpr` AST expression. */
+  class SplatExprCfgNode extends ExprCfgNode {
+    override string getAPrimaryQlClass() { result = "SplatExprCfgNode" }
+
+    SplatExprCfgNode() { e instanceof SplatExpr }
+
+    final override SplatExpr getExpr() { result = super.getExpr() }
+
+    final ExprCfgNode getOperand() { result.getExpr() = e.(SplatExpr).getOperand() }
+  }
+
   /** A control-flow node that wraps an `ElementReference` AST expression. */
   class ElementReferenceCfgNode extends MethodCallCfgNode {
     override string getAPrimaryQlClass() { result = "ElementReferenceCfgNode" }
diff --git a/ruby/ql/lib/codeql/ruby/dataflow/BarrierGuards.qll b/ruby/ql/lib/codeql/ruby/dataflow/BarrierGuards.qll
index c22aa4ca1cf..38998850123 100644
--- a/ruby/ql/lib/codeql/ruby/dataflow/BarrierGuards.qll
+++ b/ruby/ql/lib/codeql/ruby/dataflow/BarrierGuards.qll
@@ -8,9 +8,9 @@ private import codeql.ruby.dataflow.SSA
 private import codeql.ruby.ast.internal.Constant
 private import codeql.ruby.InclusionTests
 
-private predicate stringConstCompare(CfgNodes::ExprCfgNode g, CfgNode e, boolean branch) {
+private predicate stringConstCompare(CfgNodes::AstCfgNode guard, CfgNode testedNode, boolean branch) {
   exists(CfgNodes::ExprNodes::ComparisonOperationCfgNode c |
-    c = g and
+    c = guard and
     exists(CfgNodes::ExprNodes::StringLiteralCfgNode strLitNode |
       c.getExpr() instanceof EqExpr and branch = true
       or
@@ -18,11 +18,13 @@ private predicate stringConstCompare(CfgNodes::ExprCfgNode g, CfgNode e, boolean
       or
       c.getExpr() instanceof NEExpr and branch = false
     |
-      c.getLeftOperand() = strLitNode and c.getRightOperand() = e
+      c.getLeftOperand() = strLitNode and c.getRightOperand() = testedNode
       or
-      c.getLeftOperand() = e and c.getRightOperand() = strLitNode
+      c.getLeftOperand() = testedNode and c.getRightOperand() = strLitNode
     )
   )
+  or
+  stringConstCaseCompare(guard, testedNode, branch)
 }
 
 /**
@@ -72,10 +74,12 @@ deprecated class StringConstCompare extends DataFlow::BarrierGuard,
   }
 }
 
-private predicate stringConstArrayInclusionCall(CfgNodes::ExprCfgNode g, CfgNode e, boolean branch) {
+private predicate stringConstArrayInclusionCall(
+  CfgNodes::AstCfgNode guard, CfgNode testedNode, boolean branch
+) {
   exists(InclusionTest t |
-    t.asExpr() = g and
-    e = t.getContainedNode().asExpr() and
+    t.asExpr() = guard and
+    testedNode = t.getContainedNode().asExpr() and
     branch = t.getPolarity()
   |
     exists(ExprNodes::ArrayLiteralCfgNode arr |
@@ -132,3 +136,57 @@ deprecated class StringConstArrayInclusionCall extends DataFlow::BarrierGuard,
 
   override predicate checks(CfgNode expr, boolean branch) { expr = checkedNode and branch = true }
 }
+
+/**
+ * A validation of a value by comparing with a constant string via a `case`
+ * expression. For example:
+ *
+ * ```rb
+ * name = params[:user_name]
+ * case name
+ * when "alice"
+ *   User.find_by("username = #{name}")
+ * when *["bob", "charlie"]
+ *   User.find_by("username = #{name}")
+ * when "dave", "eve" # this is not yet recognised as a barrier guard
+ *   User.find_by("username = #{name}")
+ * end
+ * ```
+ */
+private predicate stringConstCaseCompare(
+  CfgNodes::AstCfgNode guard, CfgNode testedNode, boolean branch
+) {
+  branch = true and
+  exists(CfgNodes::ExprNodes::CaseExprCfgNode case |
+    case.getValue() = testedNode and
+    exists(CfgNodes::ExprNodes::WhenClauseCfgNode branchNode |
+      branchNode = case.getBranch(_) and
+      guard = branchNode.getPattern(_) and
+      // For simplicity, consider patterns that contain only string literals or arrays of string literals
+      forall(ExprCfgNode pattern | pattern = branchNode.getPattern(_) |
+        // when "foo"
+        // when "foo", "bar"
+        pattern instanceof ExprNodes::StringLiteralCfgNode
+        or
+        // array literals behave weirdly in the CFG so we need to drop down to the AST level for this bit
+        // specifically: `SplatExprCfgNode.getOperand()` does not return results for array literals
+        exists(CfgNodes::ExprNodes::SplatExprCfgNode splat | splat = pattern |
+          // when *["foo", "bar"]
+          exists(ArrayLiteral arr |
+            splat.getExpr().getOperand() = arr and
+            forall(Expr elem | elem = arr.getAnElement() | elem instanceof StringLiteral)
+          )
+          or
+          // when *some_var
+          // when *SOME_CONST
+          exists(ExprNodes::ArrayLiteralCfgNode arr |
+            isArrayConstant(splat.getOperand(), arr) and
+            forall(ExprCfgNode elem | elem = arr.getAnArgument() |
+              elem instanceof ExprNodes::StringLiteralCfgNode
+            )
+          )
+        )
+      )
+    )
+  )
+}
diff --git a/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowPublic.qll b/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowPublic.qll
index 5a6883a5fe4..543e82ce299 100644
--- a/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowPublic.qll
+++ b/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowPublic.qll
@@ -434,7 +434,7 @@ class ContentSet extends TContentSet {
  * For example, the guard `g` might be a call `isSafe(x)` and the expression `e`
  * the argument `x`.
  */
-signature predicate guardChecksSig(CfgNodes::ExprCfgNode g, CfgNode e, boolean branch);
+signature predicate guardChecksSig(CfgNodes::AstCfgNode g, CfgNode e, boolean branch);
 
 /**
  * Provides a set of barrier nodes for a guard that validates an expression.
@@ -444,13 +444,13 @@ signature predicate guardChecksSig(CfgNodes::ExprCfgNode g, CfgNode e, boolean b
  */
 module BarrierGuard<guardChecksSig/3 guardChecks> {
   pragma[nomagic]
-  private predicate guardChecksSsaDef(CfgNodes::ExprCfgNode g, boolean branch, Ssa::Definition def) {
+  private predicate guardChecksSsaDef(CfgNodes::AstCfgNode g, boolean branch, Ssa::Definition def) {
     guardChecks(g, def.getARead(), branch)
   }
 
   pragma[nomagic]
   private predicate guardControlsSsaDef(
-    CfgNodes::ExprCfgNode g, boolean branch, Ssa::Definition def, Node n
+    CfgNodes::AstCfgNode g, boolean branch, Ssa::Definition def, Node n
   ) {
     def.getARead() = n.asExpr() and
     guardControlsBlock(g, n.asExpr().getBasicBlock(), branch)
@@ -458,7 +458,7 @@ module BarrierGuard<guardChecksSig/3 guardChecks> {
 
   /** Gets a node that is safely guarded by the given guard check. */
   Node getABarrierNode() {
-    exists(CfgNodes::ExprCfgNode g, boolean branch, Ssa::Definition def |
+    exists(CfgNodes::AstCfgNode g, boolean branch, Ssa::Definition def |
       guardChecksSsaDef(g, branch, def) and
       guardControlsSsaDef(g, branch, def, result)
     )
@@ -488,8 +488,8 @@ module BarrierGuard<guardChecksSig/3 guardChecks> {
 }
 
 /** Holds if the guard `guard` controls block `bb` upon evaluating to `branch`. */
-private predicate guardControlsBlock(CfgNodes::ExprCfgNode guard, BasicBlock bb, boolean branch) {
-  exists(ConditionBlock conditionBlock, SuccessorTypes::BooleanSuccessor s |
+private predicate guardControlsBlock(CfgNodes::AstCfgNode guard, BasicBlock bb, boolean branch) {
+  exists(ConditionBlock conditionBlock, SuccessorTypes::ConditionalSuccessor s |
     guard = conditionBlock.getLastNode() and
     s.getValue() = branch and
     conditionBlock.controls(bb, s)
diff --git a/ruby/ql/lib/codeql/ruby/security/regexp/PolynomialReDoSCustomizations.qll b/ruby/ql/lib/codeql/ruby/security/regexp/PolynomialReDoSCustomizations.qll
index 8c05642fc83..c2f27992ff8 100644
--- a/ruby/ql/lib/codeql/ruby/security/regexp/PolynomialReDoSCustomizations.qll
+++ b/ruby/ql/lib/codeql/ruby/security/regexp/PolynomialReDoSCustomizations.qll
@@ -127,7 +127,7 @@ module PolynomialReDoS {
     override DataFlow::Node getHighlight() { result = matchNode }
   }
 
-  private predicate lengthGuard(CfgNodes::ExprCfgNode g, CfgNode node, boolean branch) {
+  private predicate lengthGuard(CfgNodes::AstCfgNode g, CfgNode node, boolean branch) {
     exists(DataFlow::Node input, DataFlow::CallNode length, DataFlow::ExprNode operand |
       length.asExpr().getExpr().(Ast::MethodCall).getMethodName() = "length" and
       length.getReceiver() = input and
diff --git a/ruby/ql/test/library-tests/dataflow/barrier-guards/barrier-guards.expected b/ruby/ql/test/library-tests/dataflow/barrier-guards/barrier-guards.expected
index a50542e8df3..07ba2ecb3cb 100644
--- a/ruby/ql/test/library-tests/dataflow/barrier-guards/barrier-guards.expected
+++ b/ruby/ql/test/library-tests/dataflow/barrier-guards/barrier-guards.expected
@@ -20,6 +20,13 @@ newStyleBarrierGuards
 | barrier-guards.rb:71:5:71:7 | foo |
 | barrier-guards.rb:83:5:83:7 | foo |
 | barrier-guards.rb:91:5:91:7 | foo |
+| barrier-guards.rb:126:5:126:7 | foo |
+| barrier-guards.rb:133:5:133:7 | foo |
+| barrier-guards.rb:135:5:135:7 | foo |
+| barrier-guards.rb:149:5:149:7 | foo |
+| barrier-guards.rb:154:5:154:7 | foo |
+| barrier-guards.rb:159:5:159:7 | foo |
+| barrier-guards.rb:164:5:164:7 | foo |
 controls
 | barrier-guards.rb:3:4:3:15 | ... == ... | barrier-guards.rb:4:5:4:7 | foo | true |
 | barrier-guards.rb:3:4:3:15 | ... == ... | barrier-guards.rb:6:5:6:7 | foo | false |
@@ -67,3 +74,33 @@ controls
 | barrier-guards.rb:118:8:118:8 | call to x | barrier-guards.rb:118:4:118:8 | [true] not ... | false |
 | barrier-guards.rb:118:8:118:8 | call to x | barrier-guards.rb:119:5:119:7 | foo | false |
 | barrier-guards.rb:118:8:118:8 | call to x | barrier-guards.rb:121:5:121:8 | bars | true |
+| barrier-guards.rb:125:6:125:10 | "foo" | barrier-guards.rb:126:5:126:7 | foo | match |
+| barrier-guards.rb:125:6:125:10 | "foo" | barrier-guards.rb:128:5:128:7 | foo | no-match |
+| barrier-guards.rb:132:6:132:10 | "foo" | barrier-guards.rb:133:5:133:7 | foo | match |
+| barrier-guards.rb:132:6:132:10 | "foo" | barrier-guards.rb:134:1:135:7 | when ... | no-match |
+| barrier-guards.rb:132:6:132:10 | "foo" | barrier-guards.rb:135:5:135:7 | foo | no-match |
+| barrier-guards.rb:134:6:134:10 | "bar" | barrier-guards.rb:135:5:135:7 | foo | match |
+| barrier-guards.rb:139:6:139:10 | "foo" | barrier-guards.rb:139:14:139:16 | bar | no-match |
+| barrier-guards.rb:139:6:139:10 | "foo" | barrier-guards.rb:141:1:142:7 | when ... | no-match |
+| barrier-guards.rb:139:6:139:10 | "foo" | barrier-guards.rb:141:14:141:17 | quux | no-match |
+| barrier-guards.rb:139:6:139:10 | "foo" | barrier-guards.rb:142:5:142:7 | foo | no-match |
+| barrier-guards.rb:139:6:139:10 | "foo" | barrier-guards.rb:144:5:144:7 | foo | no-match |
+| barrier-guards.rb:139:13:139:17 | "bar" | barrier-guards.rb:141:1:142:7 | when ... | no-match |
+| barrier-guards.rb:139:13:139:17 | "bar" | barrier-guards.rb:141:14:141:17 | quux | no-match |
+| barrier-guards.rb:139:13:139:17 | "bar" | barrier-guards.rb:142:5:142:7 | foo | no-match |
+| barrier-guards.rb:139:13:139:17 | "bar" | barrier-guards.rb:144:5:144:7 | foo | no-match |
+| barrier-guards.rb:141:6:141:10 | "baz" | barrier-guards.rb:141:14:141:17 | quux | no-match |
+| barrier-guards.rb:141:6:141:10 | "baz" | barrier-guards.rb:144:5:144:7 | foo | no-match |
+| barrier-guards.rb:141:13:141:18 | "quux" | barrier-guards.rb:144:5:144:7 | foo | no-match |
+| barrier-guards.rb:148:6:148:20 | * ... | barrier-guards.rb:149:5:149:7 | foo | match |
+| barrier-guards.rb:153:6:153:17 | * ... | barrier-guards.rb:154:5:154:7 | foo | match |
+| barrier-guards.rb:158:6:158:9 | * ... | barrier-guards.rb:159:5:159:7 | foo | match |
+| barrier-guards.rb:163:6:163:10 | * ... | barrier-guards.rb:164:5:164:7 | foo | match |
+| barrier-guards.rb:168:6:168:16 | * ... | barrier-guards.rb:169:5:169:7 | foo | match |
+| barrier-guards.rb:173:6:173:10 | "foo" | barrier-guards.rb:173:13:173:13 | self | no-match |
+| barrier-guards.rb:180:6:180:15 | * ... | barrier-guards.rb:181:5:181:7 | foo | match |
+| barrier-guards.rb:187:6:187:15 | * ... | barrier-guards.rb:188:5:188:7 | foo | match |
+| barrier-guards.rb:191:4:191:15 | ... == ... | barrier-guards.rb:191:4:191:31 | [false] ... or ... | false |
+| barrier-guards.rb:191:4:191:15 | ... == ... | barrier-guards.rb:191:20:191:22 | foo | false |
+| barrier-guards.rb:191:4:191:31 | [true] ... or ... | barrier-guards.rb:192:5:192:7 | foo | true |
+| barrier-guards.rb:191:20:191:31 | ... == ... | barrier-guards.rb:191:4:191:31 | [false] ... or ... | false |
diff --git a/ruby/ql/test/library-tests/dataflow/barrier-guards/barrier-guards.rb b/ruby/ql/test/library-tests/dataflow/barrier-guards/barrier-guards.rb
index 5ead7bc04cf..743152653cf 100644
--- a/ruby/ql/test/library-tests/dataflow/barrier-guards/barrier-guards.rb
+++ b/ruby/ql/test/library-tests/dataflow/barrier-guards/barrier-guards.rb
@@ -120,3 +120,74 @@ if not x then
 else
     bars
 end
+
+case foo
+when "foo"
+    foo
+else
+    foo
+end
+
+case foo
+when "foo"
+    foo
+when "bar"
+    foo
+end
+
+case foo
+when "foo", "bar" # not recognised
+    foo
+when "baz", "quux" # not recognised
+    foo
+else
+    foo
+end
+
+case foo
+when *["foo", "bar"]
+    foo
+end
+
+case foo
+when *%w[foo bar]
+    foo
+end
+
+case foo
+when *FOO
+    foo
+end
+
+case foo
+when *foos
+    foo
+end
+
+case foo
+when *["foo", x] # not a guard - includes non-constant element `x`
+    foo
+end
+
+case foo
+when "foo", x # not a guard - includes non-constant element `x`
+    foo
+end
+
+foo_and_x = ["foo", x]
+
+case foo
+when *foo_and_x # not a guard - includes non-constant element `x`
+    foo
+end
+
+FOO_AND_X = ["foo", x]
+
+case foo
+when *FOO_AND_X # not a guard - includes non-constant element `x`
+    foo
+end
+
+if foo == "foo" or foo == "bar" # not recognised
+    foo
+end
diff --git a/ruby/ql/test/query-tests/security/cwe-078/CommandInjection/CommandInjection.expected b/ruby/ql/test/query-tests/security/cwe-078/CommandInjection/CommandInjection.expected
index 1d00f293dfd..dda603763e2 100644
--- a/ruby/ql/test/query-tests/security/cwe-078/CommandInjection/CommandInjection.expected
+++ b/ruby/ql/test/query-tests/security/cwe-078/CommandInjection/CommandInjection.expected
@@ -10,13 +10,15 @@ edges
 | CommandInjection.rb:6:15:6:26 | ...[...] :  | CommandInjection.rb:34:39:34:51 | "grep #{...}" |
 | CommandInjection.rb:46:15:46:20 | call to params :  | CommandInjection.rb:46:15:46:26 | ...[...] :  |
 | CommandInjection.rb:46:15:46:26 | ...[...] :  | CommandInjection.rb:50:24:50:36 | "echo #{...}" |
-| CommandInjection.rb:64:18:64:23 | number :  | CommandInjection.rb:65:14:65:29 | "echo #{...}" |
-| CommandInjection.rb:72:23:72:33 | blah_number :  | CommandInjection.rb:73:14:73:34 | "echo #{...}" |
-| CommandInjection.rb:81:20:81:25 | **args :  | CommandInjection.rb:82:22:82:25 | args :  |
-| CommandInjection.rb:82:22:82:25 | args :  | CommandInjection.rb:82:22:82:37 | ...[...] :  |
-| CommandInjection.rb:82:22:82:37 | ...[...] :  | CommandInjection.rb:82:14:82:39 | "echo #{...}" |
-| CommandInjection.rb:94:16:94:21 | call to params :  | CommandInjection.rb:94:16:94:28 | ...[...] :  |
-| CommandInjection.rb:94:16:94:28 | ...[...] :  | CommandInjection.rb:95:16:95:28 | "cat #{...}" |
+| CommandInjection.rb:54:13:54:18 | call to params :  | CommandInjection.rb:54:13:54:24 | ...[...] :  |
+| CommandInjection.rb:54:13:54:24 | ...[...] :  | CommandInjection.rb:59:14:59:16 | cmd |
+| CommandInjection.rb:73:18:73:23 | number :  | CommandInjection.rb:74:14:74:29 | "echo #{...}" |
+| CommandInjection.rb:81:23:81:33 | blah_number :  | CommandInjection.rb:82:14:82:34 | "echo #{...}" |
+| CommandInjection.rb:90:20:90:25 | **args :  | CommandInjection.rb:91:22:91:25 | args :  |
+| CommandInjection.rb:91:22:91:25 | args :  | CommandInjection.rb:91:22:91:37 | ...[...] :  |
+| CommandInjection.rb:91:22:91:37 | ...[...] :  | CommandInjection.rb:91:14:91:39 | "echo #{...}" |
+| CommandInjection.rb:103:16:103:21 | call to params :  | CommandInjection.rb:103:16:103:28 | ...[...] :  |
+| CommandInjection.rb:103:16:103:28 | ...[...] :  | CommandInjection.rb:104:16:104:28 | "cat #{...}" |
 nodes
 | CommandInjection.rb:6:15:6:20 | call to params :  | semmle.label | call to params :  |
 | CommandInjection.rb:6:15:6:26 | ...[...] :  | semmle.label | ...[...] :  |
@@ -31,17 +33,20 @@ nodes
 | CommandInjection.rb:46:15:46:20 | call to params :  | semmle.label | call to params :  |
 | CommandInjection.rb:46:15:46:26 | ...[...] :  | semmle.label | ...[...] :  |
 | CommandInjection.rb:50:24:50:36 | "echo #{...}" | semmle.label | "echo #{...}" |
-| CommandInjection.rb:64:18:64:23 | number :  | semmle.label | number :  |
-| CommandInjection.rb:65:14:65:29 | "echo #{...}" | semmle.label | "echo #{...}" |
-| CommandInjection.rb:72:23:72:33 | blah_number :  | semmle.label | blah_number :  |
-| CommandInjection.rb:73:14:73:34 | "echo #{...}" | semmle.label | "echo #{...}" |
-| CommandInjection.rb:81:20:81:25 | **args :  | semmle.label | **args :  |
-| CommandInjection.rb:82:14:82:39 | "echo #{...}" | semmle.label | "echo #{...}" |
-| CommandInjection.rb:82:22:82:25 | args :  | semmle.label | args :  |
-| CommandInjection.rb:82:22:82:37 | ...[...] :  | semmle.label | ...[...] :  |
-| CommandInjection.rb:94:16:94:21 | call to params :  | semmle.label | call to params :  |
-| CommandInjection.rb:94:16:94:28 | ...[...] :  | semmle.label | ...[...] :  |
-| CommandInjection.rb:95:16:95:28 | "cat #{...}" | semmle.label | "cat #{...}" |
+| CommandInjection.rb:54:13:54:18 | call to params :  | semmle.label | call to params :  |
+| CommandInjection.rb:54:13:54:24 | ...[...] :  | semmle.label | ...[...] :  |
+| CommandInjection.rb:59:14:59:16 | cmd | semmle.label | cmd |
+| CommandInjection.rb:73:18:73:23 | number :  | semmle.label | number :  |
+| CommandInjection.rb:74:14:74:29 | "echo #{...}" | semmle.label | "echo #{...}" |
+| CommandInjection.rb:81:23:81:33 | blah_number :  | semmle.label | blah_number :  |
+| CommandInjection.rb:82:14:82:34 | "echo #{...}" | semmle.label | "echo #{...}" |
+| CommandInjection.rb:90:20:90:25 | **args :  | semmle.label | **args :  |
+| CommandInjection.rb:91:14:91:39 | "echo #{...}" | semmle.label | "echo #{...}" |
+| CommandInjection.rb:91:22:91:25 | args :  | semmle.label | args :  |
+| CommandInjection.rb:91:22:91:37 | ...[...] :  | semmle.label | ...[...] :  |
+| CommandInjection.rb:103:16:103:21 | call to params :  | semmle.label | call to params :  |
+| CommandInjection.rb:103:16:103:28 | ...[...] :  | semmle.label | ...[...] :  |
+| CommandInjection.rb:104:16:104:28 | "cat #{...}" | semmle.label | "cat #{...}" |
 subpaths
 #select
 | CommandInjection.rb:7:10:7:15 | #{...} | CommandInjection.rb:6:15:6:20 | call to params :  | CommandInjection.rb:7:10:7:15 | #{...} | This command depends on a $@. | CommandInjection.rb:6:15:6:20 | call to params | user-provided value |
@@ -53,7 +58,8 @@ subpaths
 | CommandInjection.rb:33:24:33:36 | "echo #{...}" | CommandInjection.rb:6:15:6:20 | call to params :  | CommandInjection.rb:33:24:33:36 | "echo #{...}" | This command depends on a $@. | CommandInjection.rb:6:15:6:20 | call to params | user-provided value |
 | CommandInjection.rb:34:39:34:51 | "grep #{...}" | CommandInjection.rb:6:15:6:20 | call to params :  | CommandInjection.rb:34:39:34:51 | "grep #{...}" | This command depends on a $@. | CommandInjection.rb:6:15:6:20 | call to params | user-provided value |
 | CommandInjection.rb:50:24:50:36 | "echo #{...}" | CommandInjection.rb:46:15:46:20 | call to params :  | CommandInjection.rb:50:24:50:36 | "echo #{...}" | This command depends on a $@. | CommandInjection.rb:46:15:46:20 | call to params | user-provided value |
-| CommandInjection.rb:65:14:65:29 | "echo #{...}" | CommandInjection.rb:64:18:64:23 | number :  | CommandInjection.rb:65:14:65:29 | "echo #{...}" | This command depends on a $@. | CommandInjection.rb:64:18:64:23 | number | user-provided value |
-| CommandInjection.rb:73:14:73:34 | "echo #{...}" | CommandInjection.rb:72:23:72:33 | blah_number :  | CommandInjection.rb:73:14:73:34 | "echo #{...}" | This command depends on a $@. | CommandInjection.rb:72:23:72:33 | blah_number | user-provided value |
-| CommandInjection.rb:82:14:82:39 | "echo #{...}" | CommandInjection.rb:81:20:81:25 | **args :  | CommandInjection.rb:82:14:82:39 | "echo #{...}" | This command depends on a $@. | CommandInjection.rb:81:20:81:25 | **args | user-provided value |
-| CommandInjection.rb:95:16:95:28 | "cat #{...}" | CommandInjection.rb:94:16:94:21 | call to params :  | CommandInjection.rb:95:16:95:28 | "cat #{...}" | This command depends on a $@. | CommandInjection.rb:94:16:94:21 | call to params | user-provided value |
+| CommandInjection.rb:59:14:59:16 | cmd | CommandInjection.rb:54:13:54:18 | call to params :  | CommandInjection.rb:59:14:59:16 | cmd | This command depends on a $@. | CommandInjection.rb:54:13:54:18 | call to params | user-provided value |
+| CommandInjection.rb:74:14:74:29 | "echo #{...}" | CommandInjection.rb:73:18:73:23 | number :  | CommandInjection.rb:74:14:74:29 | "echo #{...}" | This command depends on a $@. | CommandInjection.rb:73:18:73:23 | number | user-provided value |
+| CommandInjection.rb:82:14:82:34 | "echo #{...}" | CommandInjection.rb:81:23:81:33 | blah_number :  | CommandInjection.rb:82:14:82:34 | "echo #{...}" | This command depends on a $@. | CommandInjection.rb:81:23:81:33 | blah_number | user-provided value |
+| CommandInjection.rb:91:14:91:39 | "echo #{...}" | CommandInjection.rb:90:20:90:25 | **args :  | CommandInjection.rb:91:14:91:39 | "echo #{...}" | This command depends on a $@. | CommandInjection.rb:90:20:90:25 | **args | user-provided value |
+| CommandInjection.rb:104:16:104:28 | "cat #{...}" | CommandInjection.rb:103:16:103:21 | call to params :  | CommandInjection.rb:104:16:104:28 | "cat #{...}" | This command depends on a $@. | CommandInjection.rb:103:16:103:21 | call to params | user-provided value |
diff --git a/ruby/ql/test/query-tests/security/cwe-078/CommandInjection/CommandInjection.rb b/ruby/ql/test/query-tests/security/cwe-078/CommandInjection/CommandInjection.rb
index 75219e2131c..4be9c95924a 100644
--- a/ruby/ql/test/query-tests/security/cwe-078/CommandInjection/CommandInjection.rb
+++ b/ruby/ql/test/query-tests/security/cwe-078/CommandInjection/CommandInjection.rb
@@ -49,6 +49,15 @@ EOF
         end
         Open3.capture2("echo #{cmd}")
     end
+
+    def update
+      cmd = params[:key]
+      case cmd
+      when "foo"
+        system(cmd)
+      end
+      system(cmd)
+    end
 end
 
 module Types

From 25ceeaf241beb7b739f4ff2924004d5975b7dedf Mon Sep 17 00:00:00 2001
From: Harry Maclean <hmac@github.com>
Date: Tue, 8 Nov 2022 10:00:22 +1300
Subject: [PATCH 0125/1420] Ruby: Fix SplatExprCfgNode

---
 ruby/ql/lib/codeql/ruby/controlflow/CfgNodes.qll   | 8 ++++++--
 ruby/ql/lib/codeql/ruby/dataflow/BarrierGuards.qll | 9 ++++-----
 2 files changed, 10 insertions(+), 7 deletions(-)

diff --git a/ruby/ql/lib/codeql/ruby/controlflow/CfgNodes.qll b/ruby/ql/lib/codeql/ruby/controlflow/CfgNodes.qll
index 030bb2cf245..4417891a66a 100644
--- a/ruby/ql/lib/codeql/ruby/controlflow/CfgNodes.qll
+++ b/ruby/ql/lib/codeql/ruby/controlflow/CfgNodes.qll
@@ -866,15 +866,19 @@ module ExprNodes {
     final override RelationalOperation getExpr() { result = super.getExpr() }
   }
 
+  private class SplatExprChildMapping extends ExprChildMapping, SplatExpr {
+    override predicate relevantChild(AstNode n) { n = this.getOperand() }
+  }
+
   /** A control-flow node that wraps a `SplatExpr` AST expression. */
   class SplatExprCfgNode extends ExprCfgNode {
     override string getAPrimaryQlClass() { result = "SplatExprCfgNode" }
 
-    SplatExprCfgNode() { e instanceof SplatExpr }
+    override SplatExprChildMapping e;
 
     final override SplatExpr getExpr() { result = super.getExpr() }
 
-    final ExprCfgNode getOperand() { result.getExpr() = e.(SplatExpr).getOperand() }
+    final ExprCfgNode getOperand() { e.hasCfgChild(e.getOperand(), this, result) }
   }
 
   /** A control-flow node that wraps an `ElementReference` AST expression. */
diff --git a/ruby/ql/lib/codeql/ruby/dataflow/BarrierGuards.qll b/ruby/ql/lib/codeql/ruby/dataflow/BarrierGuards.qll
index 38998850123..c3050527b81 100644
--- a/ruby/ql/lib/codeql/ruby/dataflow/BarrierGuards.qll
+++ b/ruby/ql/lib/codeql/ruby/dataflow/BarrierGuards.qll
@@ -168,13 +168,12 @@ private predicate stringConstCaseCompare(
         // when "foo", "bar"
         pattern instanceof ExprNodes::StringLiteralCfgNode
         or
-        // array literals behave weirdly in the CFG so we need to drop down to the AST level for this bit
-        // specifically: `SplatExprCfgNode.getOperand()` does not return results for array literals
         exists(CfgNodes::ExprNodes::SplatExprCfgNode splat | splat = pattern |
           // when *["foo", "bar"]
-          exists(ArrayLiteral arr |
-            splat.getExpr().getOperand() = arr and
-            forall(Expr elem | elem = arr.getAnElement() | elem instanceof StringLiteral)
+          forex(ExprCfgNode elem |
+            elem = splat.getOperand().(ExprNodes::ArrayLiteralCfgNode).getAnArgument()
+          |
+            elem instanceof ExprNodes::StringLiteralCfgNode
           )
           or
           // when *some_var

From 87944a3a75c387dbde989589871cac9a9d126e93 Mon Sep 17 00:00:00 2001
From: Harry Maclean <hmac@github.com>
Date: Tue, 8 Nov 2022 10:11:09 +1300
Subject: [PATCH 0126/1420] Ruby: Add test for another case guard variant

---
 .../dataflow/barrier-guards/barrier-guards.expected      | 6 ++++++
 .../dataflow/barrier-guards/barrier-guards.rb            | 9 +++++++++
 2 files changed, 15 insertions(+)

diff --git a/ruby/ql/test/library-tests/dataflow/barrier-guards/barrier-guards.expected b/ruby/ql/test/library-tests/dataflow/barrier-guards/barrier-guards.expected
index 07ba2ecb3cb..a27236c8fce 100644
--- a/ruby/ql/test/library-tests/dataflow/barrier-guards/barrier-guards.expected
+++ b/ruby/ql/test/library-tests/dataflow/barrier-guards/barrier-guards.expected
@@ -9,6 +9,8 @@ oldStyleBarrierGuards
 | barrier-guards.rb:43:4:43:15 | ... == ... | barrier-guards.rb:45:9:45:11 | foo | barrier-guards.rb:43:4:43:6 | foo | true |
 | barrier-guards.rb:70:4:70:21 | call to include? | barrier-guards.rb:71:5:71:7 | foo | barrier-guards.rb:70:18:70:20 | foo | true |
 | barrier-guards.rb:82:4:82:25 | ... != ... | barrier-guards.rb:83:5:83:7 | foo | barrier-guards.rb:82:15:82:17 | foo | true |
+| barrier-guards.rb:196:6:196:17 | ... == ... | barrier-guards.rb:197:5:197:7 | foo | barrier-guards.rb:196:6:196:8 | foo | true |
+| barrier-guards.rb:201:6:201:17 | ... == ... | barrier-guards.rb:201:24:201:26 | foo | barrier-guards.rb:201:6:201:8 | foo | true |
 newStyleBarrierGuards
 | barrier-guards.rb:4:5:4:7 | foo |
 | barrier-guards.rb:10:5:10:7 | foo |
@@ -27,6 +29,8 @@ newStyleBarrierGuards
 | barrier-guards.rb:154:5:154:7 | foo |
 | barrier-guards.rb:159:5:159:7 | foo |
 | barrier-guards.rb:164:5:164:7 | foo |
+| barrier-guards.rb:197:5:197:7 | foo |
+| barrier-guards.rb:201:24:201:26 | foo |
 controls
 | barrier-guards.rb:3:4:3:15 | ... == ... | barrier-guards.rb:4:5:4:7 | foo | true |
 | barrier-guards.rb:3:4:3:15 | ... == ... | barrier-guards.rb:6:5:6:7 | foo | false |
@@ -104,3 +108,5 @@ controls
 | barrier-guards.rb:191:4:191:15 | ... == ... | barrier-guards.rb:191:20:191:22 | foo | false |
 | barrier-guards.rb:191:4:191:31 | [true] ... or ... | barrier-guards.rb:192:5:192:7 | foo | true |
 | barrier-guards.rb:191:20:191:31 | ... == ... | barrier-guards.rb:191:4:191:31 | [false] ... or ... | false |
+| barrier-guards.rb:196:6:196:17 | ... == ... | barrier-guards.rb:197:5:197:7 | foo | true |
+| barrier-guards.rb:201:6:201:17 | ... == ... | barrier-guards.rb:201:24:201:26 | foo | true |
diff --git a/ruby/ql/test/library-tests/dataflow/barrier-guards/barrier-guards.rb b/ruby/ql/test/library-tests/dataflow/barrier-guards/barrier-guards.rb
index 743152653cf..28364d89532 100644
--- a/ruby/ql/test/library-tests/dataflow/barrier-guards/barrier-guards.rb
+++ b/ruby/ql/test/library-tests/dataflow/barrier-guards/barrier-guards.rb
@@ -191,3 +191,12 @@ end
 if foo == "foo" or foo == "bar" # not recognised
     foo
 end
+
+case
+when foo == "foo"
+    foo
+end
+
+case
+when foo == "foo" then foo
+end

From 0ab88c2e29277dc5dabe35ad368f3009a39e045b Mon Sep 17 00:00:00 2001
From: Harry Maclean <hmac@github.com>
Date: Tue, 8 Nov 2022 10:21:48 +1300
Subject: [PATCH 0127/1420] Ruby: Handle simple in clauses in barrier guard

---
 ruby/ql/lib/codeql/ruby/dataflow/BarrierGuards.qll  |  9 +++++++++
 .../dataflow/barrier-guards/barrier-guards.expected | 13 +++++++++++++
 .../dataflow/barrier-guards/barrier-guards.rb       |  9 +++++++++
 3 files changed, 31 insertions(+)

diff --git a/ruby/ql/lib/codeql/ruby/dataflow/BarrierGuards.qll b/ruby/ql/lib/codeql/ruby/dataflow/BarrierGuards.qll
index c3050527b81..b1d13bca404 100644
--- a/ruby/ql/lib/codeql/ruby/dataflow/BarrierGuards.qll
+++ b/ruby/ql/lib/codeql/ruby/dataflow/BarrierGuards.qll
@@ -187,5 +187,14 @@ private predicate stringConstCaseCompare(
         )
       )
     )
+    or
+    // in "foo"
+    exists(
+      CfgNodes::ExprNodes::InClauseCfgNode branchNode, ExprNodes::StringLiteralCfgNode pattern
+    |
+      branchNode = case.getBranch(_) and
+      pattern = branchNode.getPattern() and
+      guard = pattern
+    )
   )
 }
diff --git a/ruby/ql/test/library-tests/dataflow/barrier-guards/barrier-guards.expected b/ruby/ql/test/library-tests/dataflow/barrier-guards/barrier-guards.expected
index a27236c8fce..734fa79510f 100644
--- a/ruby/ql/test/library-tests/dataflow/barrier-guards/barrier-guards.expected
+++ b/ruby/ql/test/library-tests/dataflow/barrier-guards/barrier-guards.expected
@@ -31,6 +31,7 @@ newStyleBarrierGuards
 | barrier-guards.rb:164:5:164:7 | foo |
 | barrier-guards.rb:197:5:197:7 | foo |
 | barrier-guards.rb:201:24:201:26 | foo |
+| barrier-guards.rb:208:5:208:7 | foo |
 controls
 | barrier-guards.rb:3:4:3:15 | ... == ... | barrier-guards.rb:4:5:4:7 | foo | true |
 | barrier-guards.rb:3:4:3:15 | ... == ... | barrier-guards.rb:6:5:6:7 | foo | false |
@@ -110,3 +111,15 @@ controls
 | barrier-guards.rb:191:20:191:31 | ... == ... | barrier-guards.rb:191:4:191:31 | [false] ... or ... | false |
 | barrier-guards.rb:196:6:196:17 | ... == ... | barrier-guards.rb:197:5:197:7 | foo | true |
 | barrier-guards.rb:201:6:201:17 | ... == ... | barrier-guards.rb:201:24:201:26 | foo | true |
+| barrier-guards.rb:201:6:201:17 | ... == ... | barrier-guards.rb:202:1:202:26 | when ... | false |
+| barrier-guards.rb:201:6:201:17 | ... == ... | barrier-guards.rb:202:24:202:26 | foo | false |
+| barrier-guards.rb:201:6:201:17 | ... == ... | barrier-guards.rb:203:1:203:22 | when ... | false |
+| barrier-guards.rb:201:6:201:17 | ... == ... | barrier-guards.rb:203:20:203:22 | foo | false |
+| barrier-guards.rb:202:6:202:17 | ... == ... | barrier-guards.rb:202:24:202:26 | foo | true |
+| barrier-guards.rb:202:6:202:17 | ... == ... | barrier-guards.rb:203:1:203:22 | when ... | false |
+| barrier-guards.rb:202:6:202:17 | ... == ... | barrier-guards.rb:203:20:203:22 | foo | false |
+| barrier-guards.rb:203:6:203:13 | ... == ... | barrier-guards.rb:203:20:203:22 | foo | true |
+| barrier-guards.rb:207:4:207:8 | "foo" | barrier-guards.rb:208:5:208:7 | foo | match |
+| barrier-guards.rb:207:4:207:8 | "foo" | barrier-guards.rb:209:1:210:7 | in ... then ... | no-match |
+| barrier-guards.rb:207:4:207:8 | "foo" | barrier-guards.rb:210:5:210:7 | foo | no-match |
+| barrier-guards.rb:209:4:209:4 | x | barrier-guards.rb:210:5:210:7 | foo | match |
diff --git a/ruby/ql/test/library-tests/dataflow/barrier-guards/barrier-guards.rb b/ruby/ql/test/library-tests/dataflow/barrier-guards/barrier-guards.rb
index 28364d89532..820601376f9 100644
--- a/ruby/ql/test/library-tests/dataflow/barrier-guards/barrier-guards.rb
+++ b/ruby/ql/test/library-tests/dataflow/barrier-guards/barrier-guards.rb
@@ -199,4 +199,13 @@ end
 
 case
 when foo == "foo" then foo
+when bar == "bar" then foo
+when foo == x then foo
+end
+
+case foo
+in "foo"
+    foo
+in x
+    foo
 end

From f1b63c4df31a453c29ffc60a401db2fd9b9216e1 Mon Sep 17 00:00:00 2001
From: Harry Maclean <hmac@github.com>
Date: Wed, 9 Nov 2022 14:53:18 +1300
Subject: [PATCH 0128/1420] Ruby: Fix in clause barrier guard

---
 .../codeql/ruby/dataflow/BarrierGuards.qll    | 62 ++++++++++---------
 .../barrier-guards/barrier-guards.expected    |  1 +
 .../dataflow/barrier-guards/barrier-guards.rb |  5 ++
 3 files changed, 38 insertions(+), 30 deletions(-)

diff --git a/ruby/ql/lib/codeql/ruby/dataflow/BarrierGuards.qll b/ruby/ql/lib/codeql/ruby/dataflow/BarrierGuards.qll
index b1d13bca404..f42ca8155b2 100644
--- a/ruby/ql/lib/codeql/ruby/dataflow/BarrierGuards.qll
+++ b/ruby/ql/lib/codeql/ruby/dataflow/BarrierGuards.qll
@@ -159,42 +159,44 @@ private predicate stringConstCaseCompare(
   branch = true and
   exists(CfgNodes::ExprNodes::CaseExprCfgNode case |
     case.getValue() = testedNode and
-    exists(CfgNodes::ExprNodes::WhenClauseCfgNode branchNode |
-      branchNode = case.getBranch(_) and
-      guard = branchNode.getPattern(_) and
-      // For simplicity, consider patterns that contain only string literals or arrays of string literals
-      forall(ExprCfgNode pattern | pattern = branchNode.getPattern(_) |
-        // when "foo"
-        // when "foo", "bar"
-        pattern instanceof ExprNodes::StringLiteralCfgNode
-        or
-        exists(CfgNodes::ExprNodes::SplatExprCfgNode splat | splat = pattern |
-          // when *["foo", "bar"]
-          forex(ExprCfgNode elem |
-            elem = splat.getOperand().(ExprNodes::ArrayLiteralCfgNode).getAnArgument()
-          |
-            elem instanceof ExprNodes::StringLiteralCfgNode
-          )
+    (
+      exists(CfgNodes::ExprNodes::WhenClauseCfgNode branchNode |
+        branchNode = case.getBranch(_) and
+        guard = branchNode.getPattern(_) and
+        // For simplicity, consider patterns that contain only string literals or arrays of string literals
+        forall(ExprCfgNode pattern | pattern = branchNode.getPattern(_) |
+          // when "foo"
+          // when "foo", "bar"
+          pattern instanceof ExprNodes::StringLiteralCfgNode
           or
-          // when *some_var
-          // when *SOME_CONST
-          exists(ExprNodes::ArrayLiteralCfgNode arr |
-            isArrayConstant(splat.getOperand(), arr) and
-            forall(ExprCfgNode elem | elem = arr.getAnArgument() |
+          exists(CfgNodes::ExprNodes::SplatExprCfgNode splat | splat = pattern |
+            // when *["foo", "bar"]
+            forex(ExprCfgNode elem |
+              elem = splat.getOperand().(ExprNodes::ArrayLiteralCfgNode).getAnArgument()
+            |
               elem instanceof ExprNodes::StringLiteralCfgNode
             )
+            or
+            // when *some_var
+            // when *SOME_CONST
+            exists(ExprNodes::ArrayLiteralCfgNode arr |
+              isArrayConstant(splat.getOperand(), arr) and
+              forall(ExprCfgNode elem | elem = arr.getAnArgument() |
+                elem instanceof ExprNodes::StringLiteralCfgNode
+              )
+            )
           )
         )
       )
-    )
-    or
-    // in "foo"
-    exists(
-      CfgNodes::ExprNodes::InClauseCfgNode branchNode, ExprNodes::StringLiteralCfgNode pattern
-    |
-      branchNode = case.getBranch(_) and
-      pattern = branchNode.getPattern() and
-      guard = pattern
+      or
+      // in "foo"
+      exists(
+        CfgNodes::ExprNodes::InClauseCfgNode branchNode, ExprNodes::StringLiteralCfgNode pattern
+      |
+        branchNode = case.getBranch(_) and
+        pattern = branchNode.getPattern() and
+        guard = pattern
+      )
     )
   )
 }
diff --git a/ruby/ql/test/library-tests/dataflow/barrier-guards/barrier-guards.expected b/ruby/ql/test/library-tests/dataflow/barrier-guards/barrier-guards.expected
index 734fa79510f..addba893c15 100644
--- a/ruby/ql/test/library-tests/dataflow/barrier-guards/barrier-guards.expected
+++ b/ruby/ql/test/library-tests/dataflow/barrier-guards/barrier-guards.expected
@@ -123,3 +123,4 @@ controls
 | barrier-guards.rb:207:4:207:8 | "foo" | barrier-guards.rb:209:1:210:7 | in ... then ... | no-match |
 | barrier-guards.rb:207:4:207:8 | "foo" | barrier-guards.rb:210:5:210:7 | foo | no-match |
 | barrier-guards.rb:209:4:209:4 | x | barrier-guards.rb:210:5:210:7 | foo | match |
+| barrier-guards.rb:214:4:214:8 | "foo" | barrier-guards.rb:215:5:215:7 | foo | match |
diff --git a/ruby/ql/test/library-tests/dataflow/barrier-guards/barrier-guards.rb b/ruby/ql/test/library-tests/dataflow/barrier-guards/barrier-guards.rb
index 820601376f9..5b29ce5642e 100644
--- a/ruby/ql/test/library-tests/dataflow/barrier-guards/barrier-guards.rb
+++ b/ruby/ql/test/library-tests/dataflow/barrier-guards/barrier-guards.rb
@@ -209,3 +209,8 @@ in "foo"
 in x
     foo
 end
+
+case bar
+in "foo"
+    foo
+end

From ad7b5ae7edd0224d7897b49a21be7d13f78f5bae Mon Sep 17 00:00:00 2001
From: Harry Maclean <hmac@github.com>
Date: Wed, 9 Nov 2022 16:35:28 +1300
Subject: [PATCH 0129/1420] Ruby: Add inline barrier guard test

---
 .../barrier-guards/barrier-guards.expected    |  5 +-
 .../dataflow/barrier-guards/barrier-guards.ql | 17 +++++++
 .../dataflow/barrier-guards/barrier-guards.rb | 48 +++++++++----------
 3 files changed, 44 insertions(+), 26 deletions(-)

diff --git a/ruby/ql/test/library-tests/dataflow/barrier-guards/barrier-guards.expected b/ruby/ql/test/library-tests/dataflow/barrier-guards/barrier-guards.expected
index addba893c15..05c515edebf 100644
--- a/ruby/ql/test/library-tests/dataflow/barrier-guards/barrier-guards.expected
+++ b/ruby/ql/test/library-tests/dataflow/barrier-guards/barrier-guards.expected
@@ -1,4 +1,5 @@
-WARNING: Type BarrierGuard has been deprecated and may be removed in future (barrier-guards.ql:9,3-15)
+WARNING: Type BarrierGuard has been deprecated and may be removed in future (barrier-guards.ql:10,3-15)
+failures
 oldStyleBarrierGuards
 | barrier-guards.rb:3:4:3:15 | ... == ... | barrier-guards.rb:4:5:4:7 | foo | barrier-guards.rb:3:4:3:6 | foo | true |
 | barrier-guards.rb:9:4:9:24 | call to include? | barrier-guards.rb:10:5:10:7 | foo | barrier-guards.rb:9:21:9:23 | foo | true |
@@ -82,7 +83,7 @@ controls
 | barrier-guards.rb:125:6:125:10 | "foo" | barrier-guards.rb:126:5:126:7 | foo | match |
 | barrier-guards.rb:125:6:125:10 | "foo" | barrier-guards.rb:128:5:128:7 | foo | no-match |
 | barrier-guards.rb:132:6:132:10 | "foo" | barrier-guards.rb:133:5:133:7 | foo | match |
-| barrier-guards.rb:132:6:132:10 | "foo" | barrier-guards.rb:134:1:135:7 | when ... | no-match |
+| barrier-guards.rb:132:6:132:10 | "foo" | barrier-guards.rb:134:1:135:19 | when ... | no-match |
 | barrier-guards.rb:132:6:132:10 | "foo" | barrier-guards.rb:135:5:135:7 | foo | no-match |
 | barrier-guards.rb:134:6:134:10 | "bar" | barrier-guards.rb:135:5:135:7 | foo | match |
 | barrier-guards.rb:139:6:139:10 | "foo" | barrier-guards.rb:139:14:139:16 | bar | no-match |
diff --git a/ruby/ql/test/library-tests/dataflow/barrier-guards/barrier-guards.ql b/ruby/ql/test/library-tests/dataflow/barrier-guards/barrier-guards.ql
index 7998164b6da..ff2f0bc76f4 100644
--- a/ruby/ql/test/library-tests/dataflow/barrier-guards/barrier-guards.ql
+++ b/ruby/ql/test/library-tests/dataflow/barrier-guards/barrier-guards.ql
@@ -4,6 +4,7 @@ import codeql.ruby.controlflow.CfgNodes
 import codeql.ruby.controlflow.ControlFlowGraph
 import codeql.ruby.controlflow.BasicBlocks
 import codeql.ruby.DataFlow
+import TestUtilities.InlineExpectationsTest
 
 query predicate oldStyleBarrierGuards(
   BarrierGuard g, DataFlow::Node guardedNode, ExprCfgNode expr, boolean branch
@@ -22,3 +23,19 @@ query predicate controls(CfgNode condition, BasicBlock bb, SuccessorTypes::Condi
     condition = cb.getLastNode()
   )
 }
+
+class BarrierGuardTest extends InlineExpectationsTest {
+  BarrierGuardTest() { this = "BarrierGuardTest" }
+
+  override string getARelevantTag() { result = "guarded" }
+
+  override predicate hasActualResult(Location location, string element, string tag, string value) {
+    tag = "guarded" and
+    exists(DataFlow::Node n |
+      newStyleBarrierGuards(n) and
+      location = n.getLocation() and
+      element = n.toString() and
+      value = ""
+    )
+  }
+}
diff --git a/ruby/ql/test/library-tests/dataflow/barrier-guards/barrier-guards.rb b/ruby/ql/test/library-tests/dataflow/barrier-guards/barrier-guards.rb
index 5b29ce5642e..926cb4a06c5 100644
--- a/ruby/ql/test/library-tests/dataflow/barrier-guards/barrier-guards.rb
+++ b/ruby/ql/test/library-tests/dataflow/barrier-guards/barrier-guards.rb
@@ -1,13 +1,13 @@
 foo = "foo"
 
 if foo == "foo"
-    foo
+    foo # $ guarded
 else
     foo
 end
 
 if ["foo"].include?(foo)
-    foo
+    foo # $ guarded
 else
     foo
 end
@@ -15,17 +15,17 @@ end
 if foo != "foo"
     foo
 else
-    foo
+    foo # $ guarded
 end
 
 unless foo == "foo"
     foo
 else
-    foo
+    foo # $ guarded
 end
 
 unless foo != "foo"
-    foo
+    foo # $ guarded
 else
     foo
 end
@@ -35,14 +35,14 @@ foo
 FOO = ["foo"]
 
 if FOO.include?(foo)
-    foo
+    foo # $ guarded
 else
     foo
 end
 
 if foo == "foo"
     capture {
-        foo # guarded
+        foo # $ guarded
     }
 end
 
@@ -68,7 +68,7 @@ foos = ["foo"]
 bars = NotAnArray.new
 
 if foos.include?(foo)
-    foo
+    foo # $ guarded
 else
     foo
 end
@@ -80,7 +80,7 @@ else
 end
 
 if foos.index(foo) != nil
-    foo
+    foo # $ guarded
 else
     foo
 end
@@ -88,7 +88,7 @@ end
 if foos.index(foo) == nil
     foo
 else
-    foo
+    foo # $ guarded
 end
 
 bars = ["bar"]
@@ -123,22 +123,22 @@ end
 
 case foo
 when "foo"
-    foo
+    foo # $ guarded
 else
     foo
 end
 
 case foo
 when "foo"
-    foo
+    foo # $ guarded
 when "bar"
-    foo
+    foo # $ guarded
 end
 
 case foo
-when "foo", "bar" # not recognised
+when "foo", "bar" # $ MISSING: guarded
     foo
-when "baz", "quux" # not recognised
+when "baz", "quux" # $ MISSING: guarded
     foo
 else
     foo
@@ -146,22 +146,22 @@ end
 
 case foo
 when *["foo", "bar"]
-    foo
+    foo # $ guarded
 end
 
 case foo
 when *%w[foo bar]
-    foo
+    foo # $ guarded
 end
 
 case foo
 when *FOO
-    foo
+    foo # $ guarded
 end
 
 case foo
 when *foos
-    foo
+    foo # $ guarded
 end
 
 case foo
@@ -188,24 +188,24 @@ when *FOO_AND_X # not a guard - includes non-constant element `x`
     foo
 end
 
-if foo == "foo" or foo == "bar" # not recognised
-    foo
+if foo == "foo" or foo == "bar"
+    foo # $ MISSING: guarded
 end
 
 case
 when foo == "foo"
-    foo
+    foo # $ guarded
 end
 
 case
-when foo == "foo" then foo
+when foo == "foo" then foo # $ guarded
 when bar == "bar" then foo
 when foo == x then foo
 end
 
 case foo
 in "foo"
-    foo
+    foo # $ guarded
 in x
     foo
 end

From ad7fc34efd3defd1ecd56b015c23888a36479270 Mon Sep 17 00:00:00 2001
From: erik-krogh <erik-krogh@github.com>
Date: Tue, 8 Nov 2022 23:01:19 +0100
Subject: [PATCH 0130/1420] extract .erb files as html

---
 .../com/semmle/js/extractor/AutoBuild.java    |   2 +-
 .../semmle/js/extractor/FileExtractor.java    |   2 +-
 .../src/com/semmle/js/extractor/Main.java     |   2 +-
 .../extractor/tests/vue/input/rails.erb       |   3 +
 .../tests/vue/output/trap/rails.erb.trap      | 137 ++++++++++++++++++
 5 files changed, 143 insertions(+), 3 deletions(-)
 create mode 100644 javascript/extractor/tests/vue/input/rails.erb
 create mode 100644 javascript/extractor/tests/vue/output/trap/rails.erb.trap

diff --git a/javascript/extractor/src/com/semmle/js/extractor/AutoBuild.java b/javascript/extractor/src/com/semmle/js/extractor/AutoBuild.java
index 101b8094fdd..9d5a4c3b52b 100644
--- a/javascript/extractor/src/com/semmle/js/extractor/AutoBuild.java
+++ b/javascript/extractor/src/com/semmle/js/extractor/AutoBuild.java
@@ -141,7 +141,7 @@ import com.semmle.util.trap.TrapWriter;
  *   <li>All JavaScript files, that is, files with one of the extensions supported by {@link
  *       FileType#JS} (currently ".js", ".jsx", ".mjs", ".cjs", ".es6", ".es").
  *   <li>All HTML files, that is, files with with one of the extensions supported by {@link
- *       FileType#HTML} (currently ".htm", ".html", ".xhtm", ".xhtml", ".vue").
+ *       FileType#HTML} (currently ".htm", ".html", ".xhtm", ".xhtml", ".vue", ".erb").
  *   <li>All YAML files, that is, files with one of the extensions supported by {@link
  *       FileType#YAML} (currently ".raml", ".yaml", ".yml").
  *   <li>Files with base name "package.json" or "tsconfig.json", and files whose base name
diff --git a/javascript/extractor/src/com/semmle/js/extractor/FileExtractor.java b/javascript/extractor/src/com/semmle/js/extractor/FileExtractor.java
index 42a41776916..77871a95fbe 100644
--- a/javascript/extractor/src/com/semmle/js/extractor/FileExtractor.java
+++ b/javascript/extractor/src/com/semmle/js/extractor/FileExtractor.java
@@ -104,7 +104,7 @@ public class FileExtractor {
 
   /** Information about supported file types. */
   public static enum FileType {
-    HTML(".htm", ".html", ".xhtm", ".xhtml", ".vue", ".hbs", ".ejs", ".njk") {
+    HTML(".htm", ".html", ".xhtm", ".xhtml", ".vue", ".hbs", ".ejs", ".njk", ".erb") {
       @Override
       public IExtractor mkExtractor(ExtractorConfig config, ExtractorState state) {
         return new HTMLExtractor(config, state);
diff --git a/javascript/extractor/src/com/semmle/js/extractor/Main.java b/javascript/extractor/src/com/semmle/js/extractor/Main.java
index 6a442d5396a..b97bb9f1ae8 100644
--- a/javascript/extractor/src/com/semmle/js/extractor/Main.java
+++ b/javascript/extractor/src/com/semmle/js/extractor/Main.java
@@ -41,7 +41,7 @@ public class Main {
    * A version identifier that should be updated every time the extractor changes in such a way that
    * it may produce different tuples for the same file under the same {@link ExtractorConfig}.
    */
-  public static final String EXTRACTOR_VERSION = "2022-09-19";
+  public static final String EXTRACTOR_VERSION = "2022-11-09";
 
   public static final Pattern NEWLINE = Pattern.compile("\n");
 
diff --git a/javascript/extractor/tests/vue/input/rails.erb b/javascript/extractor/tests/vue/input/rails.erb
new file mode 100644
index 00000000000..d9df51cf3c0
--- /dev/null
+++ b/javascript/extractor/tests/vue/input/rails.erb
@@ -0,0 +1,3 @@
+<script>
+  console.log("FOO");
+</script>
diff --git a/javascript/extractor/tests/vue/output/trap/rails.erb.trap b/javascript/extractor/tests/vue/output/trap/rails.erb.trap
new file mode 100644
index 00000000000..76af8c5c8d3
--- /dev/null
+++ b/javascript/extractor/tests/vue/output/trap/rails.erb.trap
@@ -0,0 +1,137 @@
+#10000=@"/rails.erb;sourcefile"
+files(#10000,"/rails.erb")
+#10001=@"/;folder"
+folders(#10001,"/")
+containerparent(#10001,#10000)
+#10002=@"loc,{#10000},0,0,0,0"
+locations_default(#10002,#10000,0,0,0,0)
+hasLocation(#10000,#10002)
+#20000=@"global_scope"
+scopes(#20000,0)
+#20001=*
+#20002=@"script;{#10000},1,9"
+#20003=*
+lines(#20003,#20002,"","
+")
+#20004=@"loc,{#10000},1,9,1,8"
+locations_default(#20004,#10000,1,9,1,8)
+hasLocation(#20003,#20004)
+#20005=*
+lines(#20005,#20002,"  console.log(""FOO"");","
+")
+#20006=@"loc,{#10000},2,1,2,21"
+locations_default(#20006,#10000,2,1,2,21)
+hasLocation(#20005,#20006)
+indentation(#10000,2," ",2)
+numlines(#20002,2,1,0)
+#20007=*
+tokeninfo(#20007,6,#20002,0,"console")
+#20008=@"loc,{#10000},2,3,2,9"
+locations_default(#20008,#10000,2,3,2,9)
+hasLocation(#20007,#20008)
+#20009=*
+tokeninfo(#20009,8,#20002,1,".")
+#20010=@"loc,{#10000},2,10,2,10"
+locations_default(#20010,#10000,2,10,2,10)
+hasLocation(#20009,#20010)
+#20011=*
+tokeninfo(#20011,6,#20002,2,"log")
+#20012=@"loc,{#10000},2,11,2,13"
+locations_default(#20012,#10000,2,11,2,13)
+hasLocation(#20011,#20012)
+#20013=*
+tokeninfo(#20013,8,#20002,3,"(")
+#20014=@"loc,{#10000},2,14,2,14"
+locations_default(#20014,#10000,2,14,2,14)
+hasLocation(#20013,#20014)
+#20015=*
+tokeninfo(#20015,4,#20002,4,"""FOO""")
+#20016=@"loc,{#10000},2,15,2,19"
+locations_default(#20016,#10000,2,15,2,19)
+hasLocation(#20015,#20016)
+#20017=*
+tokeninfo(#20017,8,#20002,5,")")
+#20018=@"loc,{#10000},2,20,2,20"
+locations_default(#20018,#10000,2,20,2,20)
+hasLocation(#20017,#20018)
+#20019=*
+tokeninfo(#20019,8,#20002,6,";")
+#20020=@"loc,{#10000},2,21,2,21"
+locations_default(#20020,#10000,2,21,2,21)
+hasLocation(#20019,#20020)
+#20021=*
+tokeninfo(#20021,0,#20002,7,"")
+#20022=@"loc,{#10000},3,1,3,0"
+locations_default(#20022,#10000,3,1,3,0)
+hasLocation(#20021,#20022)
+toplevels(#20002,1)
+#20023=@"loc,{#10000},1,9,3,0"
+locations_default(#20023,#10000,1,9,3,0)
+hasLocation(#20002,#20023)
+#20024=*
+stmts(#20024,2,#20002,0,"console.log(""FOO"");")
+#20025=@"loc,{#10000},2,3,2,21"
+locations_default(#20025,#10000,2,3,2,21)
+hasLocation(#20024,#20025)
+stmt_containers(#20024,#20002)
+#20026=*
+exprs(#20026,13,#20024,0,"console.log(""FOO"")")
+#20027=@"loc,{#10000},2,3,2,20"
+locations_default(#20027,#10000,2,3,2,20)
+hasLocation(#20026,#20027)
+enclosing_stmt(#20026,#20024)
+expr_containers(#20026,#20002)
+#20028=*
+exprs(#20028,14,#20026,-1,"console.log")
+#20029=@"loc,{#10000},2,3,2,13"
+locations_default(#20029,#10000,2,3,2,13)
+hasLocation(#20028,#20029)
+enclosing_stmt(#20028,#20024)
+expr_containers(#20028,#20002)
+#20030=*
+exprs(#20030,79,#20028,0,"console")
+hasLocation(#20030,#20008)
+enclosing_stmt(#20030,#20024)
+expr_containers(#20030,#20002)
+literals("console","console",#20030)
+#20031=@"var;{console};{#20000}"
+variables(#20031,"console",#20000)
+bind(#20030,#20031)
+#20032=*
+exprs(#20032,0,#20028,1,"log")
+hasLocation(#20032,#20012)
+enclosing_stmt(#20032,#20024)
+expr_containers(#20032,#20002)
+literals("log","log",#20032)
+#20033=*
+exprs(#20033,4,#20026,0,"""FOO""")
+hasLocation(#20033,#20016)
+enclosing_stmt(#20033,#20024)
+expr_containers(#20033,#20002)
+literals("FOO","""FOO""",#20033)
+#20034=*
+regexpterm(#20034,14,#20033,0,"FOO")
+#20035=@"loc,{#10000},2,16,2,18"
+locations_default(#20035,#10000,2,16,2,18)
+hasLocation(#20034,#20035)
+regexp_const_value(#20034,"FOO")
+#20036=*
+entry_cfg_node(#20036,#20002)
+hasLocation(#20036,#20004)
+#20037=*
+exit_cfg_node(#20037,#20002)
+hasLocation(#20037,#20022)
+successor(#20024,#20030)
+successor(#20033,#20026)
+successor(#20032,#20028)
+successor(#20030,#20032)
+successor(#20028,#20033)
+successor(#20026,#20037)
+successor(#20036,#20024)
+toplevel_parent_xml_node(#20002,#20001)
+xmlElements(#20001,"script",#10000,0,#10000)
+#20038=@"loc,{#10000},1,1,3,9"
+locations_default(#20038,#10000,1,1,3,9)
+xmllocations(#20001,#20038)
+numlines(#10000,3,1,0)
+filetype(#10000,"html")

From 5940f17b8394c6a641740080cb37a6f1d444f0e8 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Nora=20Dimitrijevi=C4=87?= <d10c@users.noreply.github.com>
Date: Wed, 9 Nov 2022 13:10:08 +0100
Subject: [PATCH 0131/1420] Swift: Docs + doctests

---
 .../Security/CWE-094/UnsafeJsEval.qhelp       |  32 ++++
 .../Security/CWE-094/UnsafeJsEvalBad.swift    |   6 +
 .../Security/CWE-094/UnsafeJsEvalGood.swift   |  10 +
 .../Security/CWE-094/UnsafeJsEval.expected    | 176 +++++++++---------
 .../Security/CWE-094/UnsafeJsEval.swift       |  20 +-
 5 files changed, 152 insertions(+), 92 deletions(-)
 create mode 100644 swift/ql/src/queries/Security/CWE-094/UnsafeJsEval.qhelp
 create mode 100644 swift/ql/src/queries/Security/CWE-094/UnsafeJsEvalBad.swift
 create mode 100644 swift/ql/src/queries/Security/CWE-094/UnsafeJsEvalGood.swift

diff --git a/swift/ql/src/queries/Security/CWE-094/UnsafeJsEval.qhelp b/swift/ql/src/queries/Security/CWE-094/UnsafeJsEval.qhelp
new file mode 100644
index 00000000000..26eae7ff91b
--- /dev/null
+++ b/swift/ql/src/queries/Security/CWE-094/UnsafeJsEval.qhelp
@@ -0,0 +1,32 @@
+<!DOCTYPE qhelp PUBLIC
+  "-//Semmle//qhelp//EN"
+  "qhelp.dtd">
+<qhelp>
+<overview>
+<p>Evaluating JavaScript that contains a substring from a remote origin may lead to remote code execution. Code under control of an attacker can execute arbitrary unauthorized actions, including exfiltration of local data by sending it to a third party web service.</p>
+
+</overview>
+<recommendation>
+
+<p>When loading JavaScript into a web view, evaluate only known, locally-defined source code. If a part of the input does come from a remote source, instead of injecting it into the JavaScript code to be evaluated, prefer sending it as data to the web view using an API such as <code>WKWebView.callAsyncJavaScript</code> with the <code>arguments</code> dictionary to pass remote data objects.</p>
+
+</recommendation>
+<example>
+
+<p>In the following example, a call to <code>WKWebView.evaluateJavaScript</code> evaluates JavaScript source code that is tainted with remote data, potentially introducing a code injection vulnerability.</p>
+
+<sample src="UnsafeJsEvalBad.swift" />
+
+<p>To fix the problem, we sanitize the remote data by passing it using the <code>arguments</code> dictionary of <code>WKWebView.callAsyncJavaScript</code>. This ensures that untrusted data cannot be evaluated as JavaScript source code.</p>
+
+<sample src="UnsafeJsEvalGood.swift" />
+
+</example>
+<references>
+
+<li>
+  <a href="https://developer.apple.com/documentation/webkit/wkwebview/3824703-callasyncjavascript">Apple Developer Documentation - WKWebView.callAsyncJavaScript(_:arguments:in:contentWorld:)</a>
+</li>
+
+</references>
+</qhelp>
diff --git a/swift/ql/src/queries/Security/CWE-094/UnsafeJsEvalBad.swift b/swift/ql/src/queries/Security/CWE-094/UnsafeJsEvalBad.swift
new file mode 100644
index 00000000000..2e5b0233e79
--- /dev/null
+++ b/swift/ql/src/queries/Security/CWE-094/UnsafeJsEvalBad.swift
@@ -0,0 +1,6 @@
+let webview: WKWebView
+let remoteData = try String(contentsOf: URL(string: "http://example.com/evil.json")!)
+
+...
+
+_ = try await webview.evaluateJavaScript("alert(" + remoteData + ")") // BAD
diff --git a/swift/ql/src/queries/Security/CWE-094/UnsafeJsEvalGood.swift b/swift/ql/src/queries/Security/CWE-094/UnsafeJsEvalGood.swift
new file mode 100644
index 00000000000..a51ffd60b63
--- /dev/null
+++ b/swift/ql/src/queries/Security/CWE-094/UnsafeJsEvalGood.swift
@@ -0,0 +1,10 @@
+let webview: WKWebView
+let remoteData = try String(contentsOf: URL(string: "http://example.com/evil.json")!)
+
+...
+
+_ = try await webview.callAsyncJavaScript(
+    "alert(JSON.parse(data))",
+    arguments: ["data": remoteData], // GOOD
+    contentWorld: .page
+)
diff --git a/swift/ql/test/query-tests/Security/CWE-094/UnsafeJsEval.expected b/swift/ql/test/query-tests/Security/CWE-094/UnsafeJsEval.expected
index c9c794bbbb1..05881a11eb5 100644
--- a/swift/ql/test/query-tests/Security/CWE-094/UnsafeJsEval.expected
+++ b/swift/ql/test/query-tests/Security/CWE-094/UnsafeJsEval.expected
@@ -1,92 +1,92 @@
 edges
-| UnsafeJsEval.swift:123:21:123:42 | string :  | UnsafeJsEval.swift:123:70:123:70 | string :  |
-| UnsafeJsEval.swift:164:10:164:37 | try ... :  | UnsafeJsEval.swift:200:21:200:35 | call to getRemoteData() :  |
-| UnsafeJsEval.swift:164:10:164:37 | try ... :  | UnsafeJsEval.swift:203:7:203:21 | call to getRemoteData() :  |
-| UnsafeJsEval.swift:164:14:164:37 | call to init(contentsOf:) :  | UnsafeJsEval.swift:164:10:164:37 | try ... :  |
-| UnsafeJsEval.swift:200:21:200:35 | call to getRemoteData() :  | UnsafeJsEval.swift:204:7:204:7 | remoteString :  |
-| UnsafeJsEval.swift:200:21:200:35 | call to getRemoteData() :  | UnsafeJsEval.swift:207:7:207:39 | ... .+(_:_:) ... :  |
-| UnsafeJsEval.swift:200:21:200:35 | call to getRemoteData() :  | UnsafeJsEval.swift:213:7:213:49 | call to init(decoding:as:) :  |
-| UnsafeJsEval.swift:203:7:203:21 | call to getRemoteData() :  | UnsafeJsEval.swift:264:13:264:13 | string :  |
-| UnsafeJsEval.swift:203:7:203:21 | call to getRemoteData() :  | UnsafeJsEval.swift:267:13:267:13 | string :  |
-| UnsafeJsEval.swift:203:7:203:21 | call to getRemoteData() :  | UnsafeJsEval.swift:275:13:275:13 | string :  |
-| UnsafeJsEval.swift:203:7:203:21 | call to getRemoteData() :  | UnsafeJsEval.swift:278:13:278:13 | string :  |
-| UnsafeJsEval.swift:203:7:203:21 | call to getRemoteData() :  | UnsafeJsEval.swift:284:13:284:13 | string :  |
-| UnsafeJsEval.swift:203:7:203:21 | call to getRemoteData() :  | UnsafeJsEval.swift:298:13:298:13 | string :  |
-| UnsafeJsEval.swift:204:7:204:7 | remoteString :  | UnsafeJsEval.swift:264:13:264:13 | string :  |
-| UnsafeJsEval.swift:204:7:204:7 | remoteString :  | UnsafeJsEval.swift:267:13:267:13 | string :  |
-| UnsafeJsEval.swift:204:7:204:7 | remoteString :  | UnsafeJsEval.swift:275:13:275:13 | string :  |
-| UnsafeJsEval.swift:204:7:204:7 | remoteString :  | UnsafeJsEval.swift:278:13:278:13 | string :  |
-| UnsafeJsEval.swift:204:7:204:7 | remoteString :  | UnsafeJsEval.swift:284:13:284:13 | string :  |
-| UnsafeJsEval.swift:204:7:204:7 | remoteString :  | UnsafeJsEval.swift:298:13:298:13 | string :  |
-| UnsafeJsEval.swift:207:7:207:39 | ... .+(_:_:) ... :  | UnsafeJsEval.swift:264:13:264:13 | string :  |
-| UnsafeJsEval.swift:207:7:207:39 | ... .+(_:_:) ... :  | UnsafeJsEval.swift:267:13:267:13 | string :  |
-| UnsafeJsEval.swift:207:7:207:39 | ... .+(_:_:) ... :  | UnsafeJsEval.swift:275:13:275:13 | string :  |
-| UnsafeJsEval.swift:207:7:207:39 | ... .+(_:_:) ... :  | UnsafeJsEval.swift:278:13:278:13 | string :  |
-| UnsafeJsEval.swift:207:7:207:39 | ... .+(_:_:) ... :  | UnsafeJsEval.swift:284:13:284:13 | string :  |
-| UnsafeJsEval.swift:207:7:207:39 | ... .+(_:_:) ... :  | UnsafeJsEval.swift:298:13:298:13 | string :  |
-| UnsafeJsEval.swift:213:7:213:49 | call to init(decoding:as:) :  | UnsafeJsEval.swift:264:13:264:13 | string :  |
-| UnsafeJsEval.swift:213:7:213:49 | call to init(decoding:as:) :  | UnsafeJsEval.swift:267:13:267:13 | string :  |
-| UnsafeJsEval.swift:213:7:213:49 | call to init(decoding:as:) :  | UnsafeJsEval.swift:275:13:275:13 | string :  |
-| UnsafeJsEval.swift:213:7:213:49 | call to init(decoding:as:) :  | UnsafeJsEval.swift:278:13:278:13 | string :  |
-| UnsafeJsEval.swift:213:7:213:49 | call to init(decoding:as:) :  | UnsafeJsEval.swift:284:13:284:13 | string :  |
-| UnsafeJsEval.swift:213:7:213:49 | call to init(decoding:as:) :  | UnsafeJsEval.swift:298:13:298:13 | string :  |
-| UnsafeJsEval.swift:264:13:264:13 | string :  | UnsafeJsEval.swift:265:22:265:107 | call to init(source:injectionTime:forMainFrameOnly:) |
-| UnsafeJsEval.swift:267:13:267:13 | string :  | UnsafeJsEval.swift:268:22:268:124 | call to init(source:injectionTime:forMainFrameOnly:in:) |
-| UnsafeJsEval.swift:275:13:275:13 | string :  | UnsafeJsEval.swift:276:26:276:26 | string |
-| UnsafeJsEval.swift:278:13:278:13 | string :  | UnsafeJsEval.swift:279:26:279:26 | string |
-| UnsafeJsEval.swift:284:13:284:13 | string :  | UnsafeJsEval.swift:285:3:285:10 | .utf16 :  |
-| UnsafeJsEval.swift:285:3:285:10 | .utf16 :  | UnsafeJsEval.swift:285:51:285:51 | stringBytes :  |
-| UnsafeJsEval.swift:285:51:285:51 | stringBytes :  | UnsafeJsEval.swift:286:31:286:97 | call to JSStringCreateWithCharacters(_:_:) :  |
-| UnsafeJsEval.swift:285:51:285:51 | stringBytes :  | UnsafeJsEval.swift:290:17:290:17 | jsstr |
-| UnsafeJsEval.swift:286:16:286:98 | call to JSStringRetain(_:) :  | UnsafeJsEval.swift:290:17:290:17 | jsstr |
-| UnsafeJsEval.swift:286:31:286:97 | call to JSStringCreateWithCharacters(_:_:) :  | UnsafeJsEval.swift:123:21:123:42 | string :  |
-| UnsafeJsEval.swift:286:31:286:97 | call to JSStringCreateWithCharacters(_:_:) :  | UnsafeJsEval.swift:286:16:286:98 | call to JSStringRetain(_:) :  |
-| UnsafeJsEval.swift:286:31:286:97 | call to JSStringCreateWithCharacters(_:_:) :  | UnsafeJsEval.swift:290:17:290:17 | jsstr |
-| UnsafeJsEval.swift:298:13:298:13 | string :  | UnsafeJsEval.swift:299:3:299:10 | .utf8CString :  |
-| UnsafeJsEval.swift:299:3:299:10 | .utf8CString :  | UnsafeJsEval.swift:299:48:299:48 | stringBytes :  |
-| UnsafeJsEval.swift:299:48:299:48 | stringBytes :  | UnsafeJsEval.swift:300:31:300:84 | call to JSStringCreateWithUTF8CString(_:) :  |
-| UnsafeJsEval.swift:299:48:299:48 | stringBytes :  | UnsafeJsEval.swift:304:17:304:17 | jsstr |
-| UnsafeJsEval.swift:300:16:300:85 | call to JSStringRetain(_:) :  | UnsafeJsEval.swift:304:17:304:17 | jsstr |
-| UnsafeJsEval.swift:300:31:300:84 | call to JSStringCreateWithUTF8CString(_:) :  | UnsafeJsEval.swift:123:21:123:42 | string :  |
-| UnsafeJsEval.swift:300:31:300:84 | call to JSStringCreateWithUTF8CString(_:) :  | UnsafeJsEval.swift:300:16:300:85 | call to JSStringRetain(_:) :  |
-| UnsafeJsEval.swift:300:31:300:84 | call to JSStringCreateWithUTF8CString(_:) :  | UnsafeJsEval.swift:304:17:304:17 | jsstr |
+| UnsafeJsEval.swift:124:21:124:42 | string :  | UnsafeJsEval.swift:124:70:124:70 | string :  |
+| UnsafeJsEval.swift:165:10:165:37 | try ... :  | UnsafeJsEval.swift:201:21:201:35 | call to getRemoteData() :  |
+| UnsafeJsEval.swift:165:10:165:37 | try ... :  | UnsafeJsEval.swift:204:7:204:21 | call to getRemoteData() :  |
+| UnsafeJsEval.swift:165:14:165:37 | call to init(contentsOf:) :  | UnsafeJsEval.swift:165:10:165:37 | try ... :  |
+| UnsafeJsEval.swift:201:21:201:35 | call to getRemoteData() :  | UnsafeJsEval.swift:205:7:205:7 | remoteString :  |
+| UnsafeJsEval.swift:201:21:201:35 | call to getRemoteData() :  | UnsafeJsEval.swift:208:7:208:39 | ... .+(_:_:) ... :  |
+| UnsafeJsEval.swift:201:21:201:35 | call to getRemoteData() :  | UnsafeJsEval.swift:214:7:214:49 | call to init(decoding:as:) :  |
+| UnsafeJsEval.swift:204:7:204:21 | call to getRemoteData() :  | UnsafeJsEval.swift:265:13:265:13 | string :  |
+| UnsafeJsEval.swift:204:7:204:21 | call to getRemoteData() :  | UnsafeJsEval.swift:268:13:268:13 | string :  |
+| UnsafeJsEval.swift:204:7:204:21 | call to getRemoteData() :  | UnsafeJsEval.swift:276:13:276:13 | string :  |
+| UnsafeJsEval.swift:204:7:204:21 | call to getRemoteData() :  | UnsafeJsEval.swift:279:13:279:13 | string :  |
+| UnsafeJsEval.swift:204:7:204:21 | call to getRemoteData() :  | UnsafeJsEval.swift:285:13:285:13 | string :  |
+| UnsafeJsEval.swift:204:7:204:21 | call to getRemoteData() :  | UnsafeJsEval.swift:299:13:299:13 | string :  |
+| UnsafeJsEval.swift:205:7:205:7 | remoteString :  | UnsafeJsEval.swift:265:13:265:13 | string :  |
+| UnsafeJsEval.swift:205:7:205:7 | remoteString :  | UnsafeJsEval.swift:268:13:268:13 | string :  |
+| UnsafeJsEval.swift:205:7:205:7 | remoteString :  | UnsafeJsEval.swift:276:13:276:13 | string :  |
+| UnsafeJsEval.swift:205:7:205:7 | remoteString :  | UnsafeJsEval.swift:279:13:279:13 | string :  |
+| UnsafeJsEval.swift:205:7:205:7 | remoteString :  | UnsafeJsEval.swift:285:13:285:13 | string :  |
+| UnsafeJsEval.swift:205:7:205:7 | remoteString :  | UnsafeJsEval.swift:299:13:299:13 | string :  |
+| UnsafeJsEval.swift:208:7:208:39 | ... .+(_:_:) ... :  | UnsafeJsEval.swift:265:13:265:13 | string :  |
+| UnsafeJsEval.swift:208:7:208:39 | ... .+(_:_:) ... :  | UnsafeJsEval.swift:268:13:268:13 | string :  |
+| UnsafeJsEval.swift:208:7:208:39 | ... .+(_:_:) ... :  | UnsafeJsEval.swift:276:13:276:13 | string :  |
+| UnsafeJsEval.swift:208:7:208:39 | ... .+(_:_:) ... :  | UnsafeJsEval.swift:279:13:279:13 | string :  |
+| UnsafeJsEval.swift:208:7:208:39 | ... .+(_:_:) ... :  | UnsafeJsEval.swift:285:13:285:13 | string :  |
+| UnsafeJsEval.swift:208:7:208:39 | ... .+(_:_:) ... :  | UnsafeJsEval.swift:299:13:299:13 | string :  |
+| UnsafeJsEval.swift:214:7:214:49 | call to init(decoding:as:) :  | UnsafeJsEval.swift:265:13:265:13 | string :  |
+| UnsafeJsEval.swift:214:7:214:49 | call to init(decoding:as:) :  | UnsafeJsEval.swift:268:13:268:13 | string :  |
+| UnsafeJsEval.swift:214:7:214:49 | call to init(decoding:as:) :  | UnsafeJsEval.swift:276:13:276:13 | string :  |
+| UnsafeJsEval.swift:214:7:214:49 | call to init(decoding:as:) :  | UnsafeJsEval.swift:279:13:279:13 | string :  |
+| UnsafeJsEval.swift:214:7:214:49 | call to init(decoding:as:) :  | UnsafeJsEval.swift:285:13:285:13 | string :  |
+| UnsafeJsEval.swift:214:7:214:49 | call to init(decoding:as:) :  | UnsafeJsEval.swift:299:13:299:13 | string :  |
+| UnsafeJsEval.swift:265:13:265:13 | string :  | UnsafeJsEval.swift:266:22:266:107 | call to init(source:injectionTime:forMainFrameOnly:) |
+| UnsafeJsEval.swift:268:13:268:13 | string :  | UnsafeJsEval.swift:269:22:269:124 | call to init(source:injectionTime:forMainFrameOnly:in:) |
+| UnsafeJsEval.swift:276:13:276:13 | string :  | UnsafeJsEval.swift:277:26:277:26 | string |
+| UnsafeJsEval.swift:279:13:279:13 | string :  | UnsafeJsEval.swift:280:26:280:26 | string |
+| UnsafeJsEval.swift:285:13:285:13 | string :  | UnsafeJsEval.swift:286:3:286:10 | .utf16 :  |
+| UnsafeJsEval.swift:286:3:286:10 | .utf16 :  | UnsafeJsEval.swift:286:51:286:51 | stringBytes :  |
+| UnsafeJsEval.swift:286:51:286:51 | stringBytes :  | UnsafeJsEval.swift:287:31:287:97 | call to JSStringCreateWithCharacters(_:_:) :  |
+| UnsafeJsEval.swift:286:51:286:51 | stringBytes :  | UnsafeJsEval.swift:291:17:291:17 | jsstr |
+| UnsafeJsEval.swift:287:16:287:98 | call to JSStringRetain(_:) :  | UnsafeJsEval.swift:291:17:291:17 | jsstr |
+| UnsafeJsEval.swift:287:31:287:97 | call to JSStringCreateWithCharacters(_:_:) :  | UnsafeJsEval.swift:124:21:124:42 | string :  |
+| UnsafeJsEval.swift:287:31:287:97 | call to JSStringCreateWithCharacters(_:_:) :  | UnsafeJsEval.swift:287:16:287:98 | call to JSStringRetain(_:) :  |
+| UnsafeJsEval.swift:287:31:287:97 | call to JSStringCreateWithCharacters(_:_:) :  | UnsafeJsEval.swift:291:17:291:17 | jsstr |
+| UnsafeJsEval.swift:299:13:299:13 | string :  | UnsafeJsEval.swift:300:3:300:10 | .utf8CString :  |
+| UnsafeJsEval.swift:300:3:300:10 | .utf8CString :  | UnsafeJsEval.swift:300:48:300:48 | stringBytes :  |
+| UnsafeJsEval.swift:300:48:300:48 | stringBytes :  | UnsafeJsEval.swift:301:31:301:84 | call to JSStringCreateWithUTF8CString(_:) :  |
+| UnsafeJsEval.swift:300:48:300:48 | stringBytes :  | UnsafeJsEval.swift:305:17:305:17 | jsstr |
+| UnsafeJsEval.swift:301:16:301:85 | call to JSStringRetain(_:) :  | UnsafeJsEval.swift:305:17:305:17 | jsstr |
+| UnsafeJsEval.swift:301:31:301:84 | call to JSStringCreateWithUTF8CString(_:) :  | UnsafeJsEval.swift:124:21:124:42 | string :  |
+| UnsafeJsEval.swift:301:31:301:84 | call to JSStringCreateWithUTF8CString(_:) :  | UnsafeJsEval.swift:301:16:301:85 | call to JSStringRetain(_:) :  |
+| UnsafeJsEval.swift:301:31:301:84 | call to JSStringCreateWithUTF8CString(_:) :  | UnsafeJsEval.swift:305:17:305:17 | jsstr |
 nodes
-| UnsafeJsEval.swift:123:21:123:42 | string :  | semmle.label | string :  |
-| UnsafeJsEval.swift:123:70:123:70 | string :  | semmle.label | string :  |
-| UnsafeJsEval.swift:164:10:164:37 | try ... :  | semmle.label | try ... :  |
-| UnsafeJsEval.swift:164:14:164:37 | call to init(contentsOf:) :  | semmle.label | call to init(contentsOf:) :  |
-| UnsafeJsEval.swift:200:21:200:35 | call to getRemoteData() :  | semmle.label | call to getRemoteData() :  |
-| UnsafeJsEval.swift:203:7:203:21 | call to getRemoteData() :  | semmle.label | call to getRemoteData() :  |
-| UnsafeJsEval.swift:204:7:204:7 | remoteString :  | semmle.label | remoteString :  |
-| UnsafeJsEval.swift:207:7:207:39 | ... .+(_:_:) ... :  | semmle.label | ... .+(_:_:) ... :  |
-| UnsafeJsEval.swift:213:7:213:49 | call to init(decoding:as:) :  | semmle.label | call to init(decoding:as:) :  |
-| UnsafeJsEval.swift:264:13:264:13 | string :  | semmle.label | string :  |
-| UnsafeJsEval.swift:265:22:265:107 | call to init(source:injectionTime:forMainFrameOnly:) | semmle.label | call to init(source:injectionTime:forMainFrameOnly:) |
-| UnsafeJsEval.swift:267:13:267:13 | string :  | semmle.label | string :  |
-| UnsafeJsEval.swift:268:22:268:124 | call to init(source:injectionTime:forMainFrameOnly:in:) | semmle.label | call to init(source:injectionTime:forMainFrameOnly:in:) |
-| UnsafeJsEval.swift:275:13:275:13 | string :  | semmle.label | string :  |
-| UnsafeJsEval.swift:276:26:276:26 | string | semmle.label | string |
-| UnsafeJsEval.swift:278:13:278:13 | string :  | semmle.label | string :  |
-| UnsafeJsEval.swift:279:26:279:26 | string | semmle.label | string |
-| UnsafeJsEval.swift:284:13:284:13 | string :  | semmle.label | string :  |
-| UnsafeJsEval.swift:285:3:285:10 | .utf16 :  | semmle.label | .utf16 :  |
-| UnsafeJsEval.swift:285:51:285:51 | stringBytes :  | semmle.label | stringBytes :  |
-| UnsafeJsEval.swift:286:16:286:98 | call to JSStringRetain(_:) :  | semmle.label | call to JSStringRetain(_:) :  |
-| UnsafeJsEval.swift:286:31:286:97 | call to JSStringCreateWithCharacters(_:_:) :  | semmle.label | call to JSStringCreateWithCharacters(_:_:) :  |
-| UnsafeJsEval.swift:290:17:290:17 | jsstr | semmle.label | jsstr |
-| UnsafeJsEval.swift:298:13:298:13 | string :  | semmle.label | string :  |
-| UnsafeJsEval.swift:299:3:299:10 | .utf8CString :  | semmle.label | .utf8CString :  |
-| UnsafeJsEval.swift:299:48:299:48 | stringBytes :  | semmle.label | stringBytes :  |
-| UnsafeJsEval.swift:300:16:300:85 | call to JSStringRetain(_:) :  | semmle.label | call to JSStringRetain(_:) :  |
-| UnsafeJsEval.swift:300:31:300:84 | call to JSStringCreateWithUTF8CString(_:) :  | semmle.label | call to JSStringCreateWithUTF8CString(_:) :  |
-| UnsafeJsEval.swift:304:17:304:17 | jsstr | semmle.label | jsstr |
+| UnsafeJsEval.swift:124:21:124:42 | string :  | semmle.label | string :  |
+| UnsafeJsEval.swift:124:70:124:70 | string :  | semmle.label | string :  |
+| UnsafeJsEval.swift:165:10:165:37 | try ... :  | semmle.label | try ... :  |
+| UnsafeJsEval.swift:165:14:165:37 | call to init(contentsOf:) :  | semmle.label | call to init(contentsOf:) :  |
+| UnsafeJsEval.swift:201:21:201:35 | call to getRemoteData() :  | semmle.label | call to getRemoteData() :  |
+| UnsafeJsEval.swift:204:7:204:21 | call to getRemoteData() :  | semmle.label | call to getRemoteData() :  |
+| UnsafeJsEval.swift:205:7:205:7 | remoteString :  | semmle.label | remoteString :  |
+| UnsafeJsEval.swift:208:7:208:39 | ... .+(_:_:) ... :  | semmle.label | ... .+(_:_:) ... :  |
+| UnsafeJsEval.swift:214:7:214:49 | call to init(decoding:as:) :  | semmle.label | call to init(decoding:as:) :  |
+| UnsafeJsEval.swift:265:13:265:13 | string :  | semmle.label | string :  |
+| UnsafeJsEval.swift:266:22:266:107 | call to init(source:injectionTime:forMainFrameOnly:) | semmle.label | call to init(source:injectionTime:forMainFrameOnly:) |
+| UnsafeJsEval.swift:268:13:268:13 | string :  | semmle.label | string :  |
+| UnsafeJsEval.swift:269:22:269:124 | call to init(source:injectionTime:forMainFrameOnly:in:) | semmle.label | call to init(source:injectionTime:forMainFrameOnly:in:) |
+| UnsafeJsEval.swift:276:13:276:13 | string :  | semmle.label | string :  |
+| UnsafeJsEval.swift:277:26:277:26 | string | semmle.label | string |
+| UnsafeJsEval.swift:279:13:279:13 | string :  | semmle.label | string :  |
+| UnsafeJsEval.swift:280:26:280:26 | string | semmle.label | string |
+| UnsafeJsEval.swift:285:13:285:13 | string :  | semmle.label | string :  |
+| UnsafeJsEval.swift:286:3:286:10 | .utf16 :  | semmle.label | .utf16 :  |
+| UnsafeJsEval.swift:286:51:286:51 | stringBytes :  | semmle.label | stringBytes :  |
+| UnsafeJsEval.swift:287:16:287:98 | call to JSStringRetain(_:) :  | semmle.label | call to JSStringRetain(_:) :  |
+| UnsafeJsEval.swift:287:31:287:97 | call to JSStringCreateWithCharacters(_:_:) :  | semmle.label | call to JSStringCreateWithCharacters(_:_:) :  |
+| UnsafeJsEval.swift:291:17:291:17 | jsstr | semmle.label | jsstr |
+| UnsafeJsEval.swift:299:13:299:13 | string :  | semmle.label | string :  |
+| UnsafeJsEval.swift:300:3:300:10 | .utf8CString :  | semmle.label | .utf8CString :  |
+| UnsafeJsEval.swift:300:48:300:48 | stringBytes :  | semmle.label | stringBytes :  |
+| UnsafeJsEval.swift:301:16:301:85 | call to JSStringRetain(_:) :  | semmle.label | call to JSStringRetain(_:) :  |
+| UnsafeJsEval.swift:301:31:301:84 | call to JSStringCreateWithUTF8CString(_:) :  | semmle.label | call to JSStringCreateWithUTF8CString(_:) :  |
+| UnsafeJsEval.swift:305:17:305:17 | jsstr | semmle.label | jsstr |
 subpaths
-| UnsafeJsEval.swift:286:31:286:97 | call to JSStringCreateWithCharacters(_:_:) :  | UnsafeJsEval.swift:123:21:123:42 | string :  | UnsafeJsEval.swift:123:70:123:70 | string :  | UnsafeJsEval.swift:286:16:286:98 | call to JSStringRetain(_:) :  |
-| UnsafeJsEval.swift:300:31:300:84 | call to JSStringCreateWithUTF8CString(_:) :  | UnsafeJsEval.swift:123:21:123:42 | string :  | UnsafeJsEval.swift:123:70:123:70 | string :  | UnsafeJsEval.swift:300:16:300:85 | call to JSStringRetain(_:) :  |
+| UnsafeJsEval.swift:287:31:287:97 | call to JSStringCreateWithCharacters(_:_:) :  | UnsafeJsEval.swift:124:21:124:42 | string :  | UnsafeJsEval.swift:124:70:124:70 | string :  | UnsafeJsEval.swift:287:16:287:98 | call to JSStringRetain(_:) :  |
+| UnsafeJsEval.swift:301:31:301:84 | call to JSStringCreateWithUTF8CString(_:) :  | UnsafeJsEval.swift:124:21:124:42 | string :  | UnsafeJsEval.swift:124:70:124:70 | string :  | UnsafeJsEval.swift:301:16:301:85 | call to JSStringRetain(_:) :  |
 #select
-| UnsafeJsEval.swift:265:22:265:107 | call to init(source:injectionTime:forMainFrameOnly:) | UnsafeJsEval.swift:164:14:164:37 | call to init(contentsOf:) :  | UnsafeJsEval.swift:265:22:265:107 | call to init(source:injectionTime:forMainFrameOnly:) | Evaluation of uncontrolled JavaScript from a remote source. |
-| UnsafeJsEval.swift:268:22:268:124 | call to init(source:injectionTime:forMainFrameOnly:in:) | UnsafeJsEval.swift:164:14:164:37 | call to init(contentsOf:) :  | UnsafeJsEval.swift:268:22:268:124 | call to init(source:injectionTime:forMainFrameOnly:in:) | Evaluation of uncontrolled JavaScript from a remote source. |
-| UnsafeJsEval.swift:276:26:276:26 | string | UnsafeJsEval.swift:164:14:164:37 | call to init(contentsOf:) :  | UnsafeJsEval.swift:276:26:276:26 | string | Evaluation of uncontrolled JavaScript from a remote source. |
-| UnsafeJsEval.swift:279:26:279:26 | string | UnsafeJsEval.swift:164:14:164:37 | call to init(contentsOf:) :  | UnsafeJsEval.swift:279:26:279:26 | string | Evaluation of uncontrolled JavaScript from a remote source. |
-| UnsafeJsEval.swift:290:17:290:17 | jsstr | UnsafeJsEval.swift:164:14:164:37 | call to init(contentsOf:) :  | UnsafeJsEval.swift:290:17:290:17 | jsstr | Evaluation of uncontrolled JavaScript from a remote source. |
-| UnsafeJsEval.swift:304:17:304:17 | jsstr | UnsafeJsEval.swift:164:14:164:37 | call to init(contentsOf:) :  | UnsafeJsEval.swift:304:17:304:17 | jsstr | Evaluation of uncontrolled JavaScript from a remote source. |
+| UnsafeJsEval.swift:266:22:266:107 | call to init(source:injectionTime:forMainFrameOnly:) | UnsafeJsEval.swift:165:14:165:37 | call to init(contentsOf:) :  | UnsafeJsEval.swift:266:22:266:107 | call to init(source:injectionTime:forMainFrameOnly:) | Evaluation of uncontrolled JavaScript from a remote source. |
+| UnsafeJsEval.swift:269:22:269:124 | call to init(source:injectionTime:forMainFrameOnly:in:) | UnsafeJsEval.swift:165:14:165:37 | call to init(contentsOf:) :  | UnsafeJsEval.swift:269:22:269:124 | call to init(source:injectionTime:forMainFrameOnly:in:) | Evaluation of uncontrolled JavaScript from a remote source. |
+| UnsafeJsEval.swift:277:26:277:26 | string | UnsafeJsEval.swift:165:14:165:37 | call to init(contentsOf:) :  | UnsafeJsEval.swift:277:26:277:26 | string | Evaluation of uncontrolled JavaScript from a remote source. |
+| UnsafeJsEval.swift:280:26:280:26 | string | UnsafeJsEval.swift:165:14:165:37 | call to init(contentsOf:) :  | UnsafeJsEval.swift:280:26:280:26 | string | Evaluation of uncontrolled JavaScript from a remote source. |
+| UnsafeJsEval.swift:291:17:291:17 | jsstr | UnsafeJsEval.swift:165:14:165:37 | call to init(contentsOf:) :  | UnsafeJsEval.swift:291:17:291:17 | jsstr | Evaluation of uncontrolled JavaScript from a remote source. |
+| UnsafeJsEval.swift:305:17:305:17 | jsstr | UnsafeJsEval.swift:165:14:165:37 | call to init(contentsOf:) :  | UnsafeJsEval.swift:305:17:305:17 | jsstr | Evaluation of uncontrolled JavaScript from a remote source. |
diff --git a/swift/ql/test/query-tests/Security/CWE-094/UnsafeJsEval.swift b/swift/ql/test/query-tests/Security/CWE-094/UnsafeJsEval.swift
index 98f34e9826f..36cee943b66 100644
--- a/swift/ql/test/query-tests/Security/CWE-094/UnsafeJsEval.swift
+++ b/swift/ql/test/query-tests/Security/CWE-094/UnsafeJsEval.swift
@@ -12,6 +12,7 @@ class NSView : NSResponder {}
 class WKFrameInfo : NSObject {}
 class WKContentWorld : NSObject {
 	class var defaultClient: WKContentWorld { WKContentWorld() }
+	class var page: WKContentWorld { WKContentWorld() }
 }
 
 class WKWebView : UIView {
@@ -174,17 +175,17 @@ func testAsync(_ sink: @escaping (String) async throws -> ()) {
 		let remoteString = getRemoteData()
 
 		try! await sink(localString) // GOOD: the HTML data is local
-		try! await sink(getRemoteData()) // BAD: HTML contains remote input, may access local secrets
-		try! await sink(remoteString) // BAD
+		try! await sink(getRemoteData()) // BAD [NOT DETECTED - TODO: extract Callables of @MainActor method calls]: HTML contains remote input, may access local secrets
+		try! await sink(remoteString) // BAD [NOT DETECTED - TODO: extract Callables of @MainActor method calls]
 
 		try! await sink("console.log(" + localStringFragment + ")") // GOOD: the HTML data is local
-		try! await sink("console.log(" + remoteString + ")") // BAD
+		try! await sink("console.log(" + remoteString + ")") // BAD [NOT DETECTED - TODO: extract Callables of @MainActor method calls]
 
 		let localData = Data(localString.utf8)
 		let remoteData = Data(remoteString.utf8)
 
 		try! await sink(String(decoding: localData, as: UTF8.self)) // GOOD: the data is local
-		try! await sink(String(decoding: remoteData, as: UTF8.self)) // BAD: the data is remote
+		try! await sink(String(decoding: remoteData, as: UTF8.self)) // BAD [NOT DETECTED - TODO: extract Callables of @MainActor method calls]: the data is remote
 
 		try! await sink("console.log(" + String(Int(localStringFragment) ?? 0) + ")") // GOOD: Primitive conversion
 		try! await sink("console.log(" + String(Int(remoteString) ?? 0) + ")") // GOOD: Primitive conversion
@@ -312,7 +313,18 @@ func testJSEvaluateScript() {
 }
 
 func testQHelpExamples() {
+	Task {
+		let webview = WKWebView()
+		let remoteData = try String(contentsOf: URL(string: "http://example.com/evil.json")!)
 
+		_ = try await webview.evaluateJavaScript("alert(" + remoteData + ")") // BAD [NOT DETECTED - TODO: extract Callables of @MainActor method calls]
+
+		_ = try await webview.callAsyncJavaScript(
+			"alert(JSON.parse(data))",
+			arguments: ["data": remoteData], // GOOD
+			contentWorld: .page
+		)
+	}
 }
 
 testUIWebView()

From ade83b3cfe8f0e9689cf42ac86f2dd1160a454bc Mon Sep 17 00:00:00 2001
From: Anders Schack-Mulligen <aschackmull@github.com>
Date: Wed, 9 Nov 2022 12:52:33 +0100
Subject: [PATCH 0132/1420] Dataflow: Introduce support for src/sink grouping
 in path results.

---
 .../java/dataflow/internal/DataFlowImpl.qll   | 114 +++++++++++++++++-
 1 file changed, 111 insertions(+), 3 deletions(-)

diff --git a/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl.qll b/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl.qll
index 2dde1c2819d..3c41b1876dc 100644
--- a/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl.qll
+++ b/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl.qll
@@ -147,6 +147,12 @@ abstract class Configuration extends string {
    */
   FlowFeature getAFeature() { none() }
 
+  /** Holds if sources should be grouped in the result of `hasFlowPath`. */
+  predicate sourceGrouping(Node source, string sourceGroup) { none() }
+
+  /** Holds if sinks should be grouped in the result of `hasFlowPath`. */
+  predicate sinkGrouping(Node sink, string sinkGroup) { none() }
+
   /**
    * Holds if data may flow from `source` to `sink` for this configuration.
    */
@@ -158,7 +164,7 @@ abstract class Configuration extends string {
    * The corresponding paths are generated from the end-points and the graph
    * included in the module `PathGraph`.
    */
-  predicate hasFlowPath(PathNode source, PathNode sink) { flowsTo(source, sink, _, _, this) }
+  predicate hasFlowPath(PathNode source, PathNode sink) { hasFlowPath(source, sink, this) }
 
   /**
    * Holds if data may flow from some source to `sink` for this configuration.
@@ -2712,6 +2718,18 @@ private newtype TPathNode =
       state = sink.getState() and
       config = sink.getConfiguration()
     )
+  } or
+  TPathNodeSourceGroup(string sourceGroup, Configuration config) {
+    exists(PathNodeImpl source |
+      sourceGroup = source.getSourceGroup() and
+      config = source.getConfiguration()
+    )
+  } or
+  TPathNodeSinkGroup(string sinkGroup, Configuration config) {
+    exists(PathNodeSink sink |
+      sinkGroup = sink.getSinkGroup() and
+      config = sink.getConfiguration()
+    )
   }
 
 /**
@@ -2920,6 +2938,22 @@ abstract private class PathNodeImpl extends TPathNode {
     )
   }
 
+  string getSourceGroup() {
+    this.isSource() and
+    this.getConfiguration().sourceGrouping(this.getNodeEx().asNode(), result)
+  }
+
+  predicate isFlowSource() {
+    this.isSource() and not exists(this.getSourceGroup())
+    or
+    this instanceof PathNodeSourceGroup
+  }
+
+  predicate isFlowSink() {
+    this = any(PathNodeSink sink | not exists(sink.getSinkGroup())) or
+    this instanceof PathNodeSinkGroup
+  }
+
   private string ppAp() {
     this instanceof PathNodeSink and result = ""
     or
@@ -2959,7 +2993,9 @@ abstract private class PathNodeImpl extends TPathNode {
 
 /** Holds if `n` can reach a sink. */
 private predicate directReach(PathNodeImpl n) {
-  n instanceof PathNodeSink or directReach(n.getANonHiddenSuccessor())
+  n instanceof PathNodeSink or
+  n instanceof PathNodeSinkGroup or
+  directReach(n.getANonHiddenSuccessor())
 }
 
 /** Holds if `n` can reach a sink or is used in a subpath that can reach a sink. */
@@ -3015,6 +3051,12 @@ class PathNode instanceof PathNodeImpl {
 
   /** Holds if this node is a source. */
   final predicate isSource() { super.isSource() }
+
+  /** Holds if this node is a grouping of source nodes. */
+  final predicate isSourceGroup(string group) { this = TPathNodeSourceGroup(group, _) }
+
+  /** Holds if this node is a grouping of sink nodes. */
+  final predicate isSinkGroup(string group) { this = TPathNodeSinkGroup(group, _) }
 }
 
 /**
@@ -3136,9 +3178,66 @@ private class PathNodeSink extends PathNodeImpl, TPathNodeSink {
 
   override Configuration getConfiguration() { result = config }
 
-  override PathNodeImpl getASuccessorImpl() { none() }
+  override PathNodeImpl getASuccessorImpl() {
+    result = TPathNodeSinkGroup(this.getSinkGroup(), config)
+  }
 
   override predicate isSource() { sourceNode(node, state, config) }
+
+  string getSinkGroup() { config.sinkGrouping(node.asNode(), result) }
+}
+
+private class PathNodeSourceGroup extends PathNodeImpl, TPathNodeSourceGroup {
+  string sourceGroup;
+  Configuration config;
+
+  PathNodeSourceGroup() { this = TPathNodeSourceGroup(sourceGroup, config) }
+
+  override NodeEx getNodeEx() { none() }
+
+  override FlowState getState() { none() }
+
+  override Configuration getConfiguration() { result = config }
+
+  override PathNodeImpl getASuccessorImpl() {
+    result.getSourceGroup() = sourceGroup and
+    result.getConfiguration() = config
+  }
+
+  override predicate isSource() { none() }
+
+  override string toString() { result = sourceGroup }
+
+  override predicate hasLocationInfo(
+    string filepath, int startline, int startcolumn, int endline, int endcolumn
+  ) {
+    filepath = "" and startline = 0 and startcolumn = 0 and endline = 0 and endcolumn = 0
+  }
+}
+
+private class PathNodeSinkGroup extends PathNodeImpl, TPathNodeSinkGroup {
+  string sinkGroup;
+  Configuration config;
+
+  PathNodeSinkGroup() { this = TPathNodeSinkGroup(sinkGroup, config) }
+
+  override NodeEx getNodeEx() { none() }
+
+  override FlowState getState() { none() }
+
+  override Configuration getConfiguration() { result = config }
+
+  override PathNodeImpl getASuccessorImpl() { none() }
+
+  override predicate isSource() { none() }
+
+  override string toString() { result = sinkGroup }
+
+  override predicate hasLocationInfo(
+    string filepath, int startline, int startcolumn, int endline, int endcolumn
+  ) {
+    filepath = "" and startline = 0 and startcolumn = 0 and endline = 0 and endcolumn = 0
+  }
 }
 
 private predicate pathNode(
@@ -3495,6 +3594,15 @@ private module Subpaths {
  * Will only have results if `configuration` has non-empty sources and
  * sinks.
  */
+private predicate hasFlowPath(
+  PathNodeImpl flowsource, PathNodeImpl flowsink, Configuration configuration
+) {
+  flowsource.isFlowSource() and
+  flowsource.getConfiguration() = configuration and
+  (flowsource = flowsink or pathSuccPlus(flowsource, flowsink)) and
+  flowsink.isFlowSink()
+}
+
 private predicate flowsTo(
   PathNodeImpl flowsource, PathNodeSink flowsink, Node source, Node sink,
   Configuration configuration

From b3b77111494f43ad6da643aafaf5ebbcdaa3870d Mon Sep 17 00:00:00 2001
From: Anders Schack-Mulligen <aschackmull@github.com>
Date: Wed, 9 Nov 2022 14:23:15 +0100
Subject: [PATCH 0133/1420] Dataflow: Sync.

---
 .../cpp/ir/dataflow/internal/DataFlowImpl.qll | 114 +++++++++++++++++-
 .../ir/dataflow/internal/DataFlowImpl2.qll    | 114 +++++++++++++++++-
 .../ir/dataflow/internal/DataFlowImpl3.qll    | 114 +++++++++++++++++-
 .../ir/dataflow/internal/DataFlowImpl4.qll    | 114 +++++++++++++++++-
 .../cpp/dataflow/internal/DataFlowImpl.qll    | 114 +++++++++++++++++-
 .../cpp/dataflow/internal/DataFlowImpl2.qll   | 114 +++++++++++++++++-
 .../cpp/dataflow/internal/DataFlowImpl3.qll   | 114 +++++++++++++++++-
 .../cpp/dataflow/internal/DataFlowImpl4.qll   | 114 +++++++++++++++++-
 .../dataflow/internal/DataFlowImplLocal.qll   | 114 +++++++++++++++++-
 .../cpp/ir/dataflow/internal/DataFlowImpl.qll | 114 +++++++++++++++++-
 .../ir/dataflow/internal/DataFlowImpl2.qll    | 114 +++++++++++++++++-
 .../ir/dataflow/internal/DataFlowImpl3.qll    | 114 +++++++++++++++++-
 .../ir/dataflow/internal/DataFlowImpl4.qll    | 114 +++++++++++++++++-
 .../csharp/dataflow/internal/DataFlowImpl.qll | 114 +++++++++++++++++-
 .../dataflow/internal/DataFlowImpl2.qll       | 114 +++++++++++++++++-
 .../dataflow/internal/DataFlowImpl3.qll       | 114 +++++++++++++++++-
 .../dataflow/internal/DataFlowImpl4.qll       | 114 +++++++++++++++++-
 .../dataflow/internal/DataFlowImpl5.qll       | 114 +++++++++++++++++-
 .../DataFlowImplForContentDataFlow.qll        | 114 +++++++++++++++++-
 .../java/dataflow/internal/DataFlowImpl2.qll  | 114 +++++++++++++++++-
 .../java/dataflow/internal/DataFlowImpl3.qll  | 114 +++++++++++++++++-
 .../java/dataflow/internal/DataFlowImpl4.qll  | 114 +++++++++++++++++-
 .../java/dataflow/internal/DataFlowImpl5.qll  | 114 +++++++++++++++++-
 .../java/dataflow/internal/DataFlowImpl6.qll  | 114 +++++++++++++++++-
 .../DataFlowImplForOnActivityResult.qll       | 114 +++++++++++++++++-
 .../DataFlowImplForSerializability.qll        | 114 +++++++++++++++++-
 .../dataflow/new/internal/DataFlowImpl.qll    | 114 +++++++++++++++++-
 .../dataflow/new/internal/DataFlowImpl2.qll   | 114 +++++++++++++++++-
 .../dataflow/new/internal/DataFlowImpl3.qll   | 114 +++++++++++++++++-
 .../dataflow/new/internal/DataFlowImpl4.qll   | 114 +++++++++++++++++-
 .../ruby/dataflow/internal/DataFlowImpl.qll   | 114 +++++++++++++++++-
 .../ruby/dataflow/internal/DataFlowImpl2.qll  | 114 +++++++++++++++++-
 .../DataFlowImplForHttpClientLibraries.qll    | 114 +++++++++++++++++-
 .../internal/DataFlowImplForPathname.qll      | 114 +++++++++++++++++-
 .../internal/DataFlowImplForRegExp.qll        | 114 +++++++++++++++++-
 .../swift/dataflow/internal/DataFlowImpl.qll  | 114 +++++++++++++++++-
 36 files changed, 3996 insertions(+), 108 deletions(-)

diff --git a/cpp/ql/lib/experimental/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl.qll b/cpp/ql/lib/experimental/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl.qll
index 2dde1c2819d..3c41b1876dc 100644
--- a/cpp/ql/lib/experimental/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl.qll
+++ b/cpp/ql/lib/experimental/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl.qll
@@ -147,6 +147,12 @@ abstract class Configuration extends string {
    */
   FlowFeature getAFeature() { none() }
 
+  /** Holds if sources should be grouped in the result of `hasFlowPath`. */
+  predicate sourceGrouping(Node source, string sourceGroup) { none() }
+
+  /** Holds if sinks should be grouped in the result of `hasFlowPath`. */
+  predicate sinkGrouping(Node sink, string sinkGroup) { none() }
+
   /**
    * Holds if data may flow from `source` to `sink` for this configuration.
    */
@@ -158,7 +164,7 @@ abstract class Configuration extends string {
    * The corresponding paths are generated from the end-points and the graph
    * included in the module `PathGraph`.
    */
-  predicate hasFlowPath(PathNode source, PathNode sink) { flowsTo(source, sink, _, _, this) }
+  predicate hasFlowPath(PathNode source, PathNode sink) { hasFlowPath(source, sink, this) }
 
   /**
    * Holds if data may flow from some source to `sink` for this configuration.
@@ -2712,6 +2718,18 @@ private newtype TPathNode =
       state = sink.getState() and
       config = sink.getConfiguration()
     )
+  } or
+  TPathNodeSourceGroup(string sourceGroup, Configuration config) {
+    exists(PathNodeImpl source |
+      sourceGroup = source.getSourceGroup() and
+      config = source.getConfiguration()
+    )
+  } or
+  TPathNodeSinkGroup(string sinkGroup, Configuration config) {
+    exists(PathNodeSink sink |
+      sinkGroup = sink.getSinkGroup() and
+      config = sink.getConfiguration()
+    )
   }
 
 /**
@@ -2920,6 +2938,22 @@ abstract private class PathNodeImpl extends TPathNode {
     )
   }
 
+  string getSourceGroup() {
+    this.isSource() and
+    this.getConfiguration().sourceGrouping(this.getNodeEx().asNode(), result)
+  }
+
+  predicate isFlowSource() {
+    this.isSource() and not exists(this.getSourceGroup())
+    or
+    this instanceof PathNodeSourceGroup
+  }
+
+  predicate isFlowSink() {
+    this = any(PathNodeSink sink | not exists(sink.getSinkGroup())) or
+    this instanceof PathNodeSinkGroup
+  }
+
   private string ppAp() {
     this instanceof PathNodeSink and result = ""
     or
@@ -2959,7 +2993,9 @@ abstract private class PathNodeImpl extends TPathNode {
 
 /** Holds if `n` can reach a sink. */
 private predicate directReach(PathNodeImpl n) {
-  n instanceof PathNodeSink or directReach(n.getANonHiddenSuccessor())
+  n instanceof PathNodeSink or
+  n instanceof PathNodeSinkGroup or
+  directReach(n.getANonHiddenSuccessor())
 }
 
 /** Holds if `n` can reach a sink or is used in a subpath that can reach a sink. */
@@ -3015,6 +3051,12 @@ class PathNode instanceof PathNodeImpl {
 
   /** Holds if this node is a source. */
   final predicate isSource() { super.isSource() }
+
+  /** Holds if this node is a grouping of source nodes. */
+  final predicate isSourceGroup(string group) { this = TPathNodeSourceGroup(group, _) }
+
+  /** Holds if this node is a grouping of sink nodes. */
+  final predicate isSinkGroup(string group) { this = TPathNodeSinkGroup(group, _) }
 }
 
 /**
@@ -3136,9 +3178,66 @@ private class PathNodeSink extends PathNodeImpl, TPathNodeSink {
 
   override Configuration getConfiguration() { result = config }
 
-  override PathNodeImpl getASuccessorImpl() { none() }
+  override PathNodeImpl getASuccessorImpl() {
+    result = TPathNodeSinkGroup(this.getSinkGroup(), config)
+  }
 
   override predicate isSource() { sourceNode(node, state, config) }
+
+  string getSinkGroup() { config.sinkGrouping(node.asNode(), result) }
+}
+
+private class PathNodeSourceGroup extends PathNodeImpl, TPathNodeSourceGroup {
+  string sourceGroup;
+  Configuration config;
+
+  PathNodeSourceGroup() { this = TPathNodeSourceGroup(sourceGroup, config) }
+
+  override NodeEx getNodeEx() { none() }
+
+  override FlowState getState() { none() }
+
+  override Configuration getConfiguration() { result = config }
+
+  override PathNodeImpl getASuccessorImpl() {
+    result.getSourceGroup() = sourceGroup and
+    result.getConfiguration() = config
+  }
+
+  override predicate isSource() { none() }
+
+  override string toString() { result = sourceGroup }
+
+  override predicate hasLocationInfo(
+    string filepath, int startline, int startcolumn, int endline, int endcolumn
+  ) {
+    filepath = "" and startline = 0 and startcolumn = 0 and endline = 0 and endcolumn = 0
+  }
+}
+
+private class PathNodeSinkGroup extends PathNodeImpl, TPathNodeSinkGroup {
+  string sinkGroup;
+  Configuration config;
+
+  PathNodeSinkGroup() { this = TPathNodeSinkGroup(sinkGroup, config) }
+
+  override NodeEx getNodeEx() { none() }
+
+  override FlowState getState() { none() }
+
+  override Configuration getConfiguration() { result = config }
+
+  override PathNodeImpl getASuccessorImpl() { none() }
+
+  override predicate isSource() { none() }
+
+  override string toString() { result = sinkGroup }
+
+  override predicate hasLocationInfo(
+    string filepath, int startline, int startcolumn, int endline, int endcolumn
+  ) {
+    filepath = "" and startline = 0 and startcolumn = 0 and endline = 0 and endcolumn = 0
+  }
 }
 
 private predicate pathNode(
@@ -3495,6 +3594,15 @@ private module Subpaths {
  * Will only have results if `configuration` has non-empty sources and
  * sinks.
  */
+private predicate hasFlowPath(
+  PathNodeImpl flowsource, PathNodeImpl flowsink, Configuration configuration
+) {
+  flowsource.isFlowSource() and
+  flowsource.getConfiguration() = configuration and
+  (flowsource = flowsink or pathSuccPlus(flowsource, flowsink)) and
+  flowsink.isFlowSink()
+}
+
 private predicate flowsTo(
   PathNodeImpl flowsource, PathNodeSink flowsink, Node source, Node sink,
   Configuration configuration
diff --git a/cpp/ql/lib/experimental/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl2.qll b/cpp/ql/lib/experimental/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl2.qll
index 2dde1c2819d..3c41b1876dc 100644
--- a/cpp/ql/lib/experimental/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl2.qll
+++ b/cpp/ql/lib/experimental/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl2.qll
@@ -147,6 +147,12 @@ abstract class Configuration extends string {
    */
   FlowFeature getAFeature() { none() }
 
+  /** Holds if sources should be grouped in the result of `hasFlowPath`. */
+  predicate sourceGrouping(Node source, string sourceGroup) { none() }
+
+  /** Holds if sinks should be grouped in the result of `hasFlowPath`. */
+  predicate sinkGrouping(Node sink, string sinkGroup) { none() }
+
   /**
    * Holds if data may flow from `source` to `sink` for this configuration.
    */
@@ -158,7 +164,7 @@ abstract class Configuration extends string {
    * The corresponding paths are generated from the end-points and the graph
    * included in the module `PathGraph`.
    */
-  predicate hasFlowPath(PathNode source, PathNode sink) { flowsTo(source, sink, _, _, this) }
+  predicate hasFlowPath(PathNode source, PathNode sink) { hasFlowPath(source, sink, this) }
 
   /**
    * Holds if data may flow from some source to `sink` for this configuration.
@@ -2712,6 +2718,18 @@ private newtype TPathNode =
       state = sink.getState() and
       config = sink.getConfiguration()
     )
+  } or
+  TPathNodeSourceGroup(string sourceGroup, Configuration config) {
+    exists(PathNodeImpl source |
+      sourceGroup = source.getSourceGroup() and
+      config = source.getConfiguration()
+    )
+  } or
+  TPathNodeSinkGroup(string sinkGroup, Configuration config) {
+    exists(PathNodeSink sink |
+      sinkGroup = sink.getSinkGroup() and
+      config = sink.getConfiguration()
+    )
   }
 
 /**
@@ -2920,6 +2938,22 @@ abstract private class PathNodeImpl extends TPathNode {
     )
   }
 
+  string getSourceGroup() {
+    this.isSource() and
+    this.getConfiguration().sourceGrouping(this.getNodeEx().asNode(), result)
+  }
+
+  predicate isFlowSource() {
+    this.isSource() and not exists(this.getSourceGroup())
+    or
+    this instanceof PathNodeSourceGroup
+  }
+
+  predicate isFlowSink() {
+    this = any(PathNodeSink sink | not exists(sink.getSinkGroup())) or
+    this instanceof PathNodeSinkGroup
+  }
+
   private string ppAp() {
     this instanceof PathNodeSink and result = ""
     or
@@ -2959,7 +2993,9 @@ abstract private class PathNodeImpl extends TPathNode {
 
 /** Holds if `n` can reach a sink. */
 private predicate directReach(PathNodeImpl n) {
-  n instanceof PathNodeSink or directReach(n.getANonHiddenSuccessor())
+  n instanceof PathNodeSink or
+  n instanceof PathNodeSinkGroup or
+  directReach(n.getANonHiddenSuccessor())
 }
 
 /** Holds if `n` can reach a sink or is used in a subpath that can reach a sink. */
@@ -3015,6 +3051,12 @@ class PathNode instanceof PathNodeImpl {
 
   /** Holds if this node is a source. */
   final predicate isSource() { super.isSource() }
+
+  /** Holds if this node is a grouping of source nodes. */
+  final predicate isSourceGroup(string group) { this = TPathNodeSourceGroup(group, _) }
+
+  /** Holds if this node is a grouping of sink nodes. */
+  final predicate isSinkGroup(string group) { this = TPathNodeSinkGroup(group, _) }
 }
 
 /**
@@ -3136,9 +3178,66 @@ private class PathNodeSink extends PathNodeImpl, TPathNodeSink {
 
   override Configuration getConfiguration() { result = config }
 
-  override PathNodeImpl getASuccessorImpl() { none() }
+  override PathNodeImpl getASuccessorImpl() {
+    result = TPathNodeSinkGroup(this.getSinkGroup(), config)
+  }
 
   override predicate isSource() { sourceNode(node, state, config) }
+
+  string getSinkGroup() { config.sinkGrouping(node.asNode(), result) }
+}
+
+private class PathNodeSourceGroup extends PathNodeImpl, TPathNodeSourceGroup {
+  string sourceGroup;
+  Configuration config;
+
+  PathNodeSourceGroup() { this = TPathNodeSourceGroup(sourceGroup, config) }
+
+  override NodeEx getNodeEx() { none() }
+
+  override FlowState getState() { none() }
+
+  override Configuration getConfiguration() { result = config }
+
+  override PathNodeImpl getASuccessorImpl() {
+    result.getSourceGroup() = sourceGroup and
+    result.getConfiguration() = config
+  }
+
+  override predicate isSource() { none() }
+
+  override string toString() { result = sourceGroup }
+
+  override predicate hasLocationInfo(
+    string filepath, int startline, int startcolumn, int endline, int endcolumn
+  ) {
+    filepath = "" and startline = 0 and startcolumn = 0 and endline = 0 and endcolumn = 0
+  }
+}
+
+private class PathNodeSinkGroup extends PathNodeImpl, TPathNodeSinkGroup {
+  string sinkGroup;
+  Configuration config;
+
+  PathNodeSinkGroup() { this = TPathNodeSinkGroup(sinkGroup, config) }
+
+  override NodeEx getNodeEx() { none() }
+
+  override FlowState getState() { none() }
+
+  override Configuration getConfiguration() { result = config }
+
+  override PathNodeImpl getASuccessorImpl() { none() }
+
+  override predicate isSource() { none() }
+
+  override string toString() { result = sinkGroup }
+
+  override predicate hasLocationInfo(
+    string filepath, int startline, int startcolumn, int endline, int endcolumn
+  ) {
+    filepath = "" and startline = 0 and startcolumn = 0 and endline = 0 and endcolumn = 0
+  }
 }
 
 private predicate pathNode(
@@ -3495,6 +3594,15 @@ private module Subpaths {
  * Will only have results if `configuration` has non-empty sources and
  * sinks.
  */
+private predicate hasFlowPath(
+  PathNodeImpl flowsource, PathNodeImpl flowsink, Configuration configuration
+) {
+  flowsource.isFlowSource() and
+  flowsource.getConfiguration() = configuration and
+  (flowsource = flowsink or pathSuccPlus(flowsource, flowsink)) and
+  flowsink.isFlowSink()
+}
+
 private predicate flowsTo(
   PathNodeImpl flowsource, PathNodeSink flowsink, Node source, Node sink,
   Configuration configuration
diff --git a/cpp/ql/lib/experimental/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl3.qll b/cpp/ql/lib/experimental/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl3.qll
index 2dde1c2819d..3c41b1876dc 100644
--- a/cpp/ql/lib/experimental/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl3.qll
+++ b/cpp/ql/lib/experimental/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl3.qll
@@ -147,6 +147,12 @@ abstract class Configuration extends string {
    */
   FlowFeature getAFeature() { none() }
 
+  /** Holds if sources should be grouped in the result of `hasFlowPath`. */
+  predicate sourceGrouping(Node source, string sourceGroup) { none() }
+
+  /** Holds if sinks should be grouped in the result of `hasFlowPath`. */
+  predicate sinkGrouping(Node sink, string sinkGroup) { none() }
+
   /**
    * Holds if data may flow from `source` to `sink` for this configuration.
    */
@@ -158,7 +164,7 @@ abstract class Configuration extends string {
    * The corresponding paths are generated from the end-points and the graph
    * included in the module `PathGraph`.
    */
-  predicate hasFlowPath(PathNode source, PathNode sink) { flowsTo(source, sink, _, _, this) }
+  predicate hasFlowPath(PathNode source, PathNode sink) { hasFlowPath(source, sink, this) }
 
   /**
    * Holds if data may flow from some source to `sink` for this configuration.
@@ -2712,6 +2718,18 @@ private newtype TPathNode =
       state = sink.getState() and
       config = sink.getConfiguration()
     )
+  } or
+  TPathNodeSourceGroup(string sourceGroup, Configuration config) {
+    exists(PathNodeImpl source |
+      sourceGroup = source.getSourceGroup() and
+      config = source.getConfiguration()
+    )
+  } or
+  TPathNodeSinkGroup(string sinkGroup, Configuration config) {
+    exists(PathNodeSink sink |
+      sinkGroup = sink.getSinkGroup() and
+      config = sink.getConfiguration()
+    )
   }
 
 /**
@@ -2920,6 +2938,22 @@ abstract private class PathNodeImpl extends TPathNode {
     )
   }
 
+  string getSourceGroup() {
+    this.isSource() and
+    this.getConfiguration().sourceGrouping(this.getNodeEx().asNode(), result)
+  }
+
+  predicate isFlowSource() {
+    this.isSource() and not exists(this.getSourceGroup())
+    or
+    this instanceof PathNodeSourceGroup
+  }
+
+  predicate isFlowSink() {
+    this = any(PathNodeSink sink | not exists(sink.getSinkGroup())) or
+    this instanceof PathNodeSinkGroup
+  }
+
   private string ppAp() {
     this instanceof PathNodeSink and result = ""
     or
@@ -2959,7 +2993,9 @@ abstract private class PathNodeImpl extends TPathNode {
 
 /** Holds if `n` can reach a sink. */
 private predicate directReach(PathNodeImpl n) {
-  n instanceof PathNodeSink or directReach(n.getANonHiddenSuccessor())
+  n instanceof PathNodeSink or
+  n instanceof PathNodeSinkGroup or
+  directReach(n.getANonHiddenSuccessor())
 }
 
 /** Holds if `n` can reach a sink or is used in a subpath that can reach a sink. */
@@ -3015,6 +3051,12 @@ class PathNode instanceof PathNodeImpl {
 
   /** Holds if this node is a source. */
   final predicate isSource() { super.isSource() }
+
+  /** Holds if this node is a grouping of source nodes. */
+  final predicate isSourceGroup(string group) { this = TPathNodeSourceGroup(group, _) }
+
+  /** Holds if this node is a grouping of sink nodes. */
+  final predicate isSinkGroup(string group) { this = TPathNodeSinkGroup(group, _) }
 }
 
 /**
@@ -3136,9 +3178,66 @@ private class PathNodeSink extends PathNodeImpl, TPathNodeSink {
 
   override Configuration getConfiguration() { result = config }
 
-  override PathNodeImpl getASuccessorImpl() { none() }
+  override PathNodeImpl getASuccessorImpl() {
+    result = TPathNodeSinkGroup(this.getSinkGroup(), config)
+  }
 
   override predicate isSource() { sourceNode(node, state, config) }
+
+  string getSinkGroup() { config.sinkGrouping(node.asNode(), result) }
+}
+
+private class PathNodeSourceGroup extends PathNodeImpl, TPathNodeSourceGroup {
+  string sourceGroup;
+  Configuration config;
+
+  PathNodeSourceGroup() { this = TPathNodeSourceGroup(sourceGroup, config) }
+
+  override NodeEx getNodeEx() { none() }
+
+  override FlowState getState() { none() }
+
+  override Configuration getConfiguration() { result = config }
+
+  override PathNodeImpl getASuccessorImpl() {
+    result.getSourceGroup() = sourceGroup and
+    result.getConfiguration() = config
+  }
+
+  override predicate isSource() { none() }
+
+  override string toString() { result = sourceGroup }
+
+  override predicate hasLocationInfo(
+    string filepath, int startline, int startcolumn, int endline, int endcolumn
+  ) {
+    filepath = "" and startline = 0 and startcolumn = 0 and endline = 0 and endcolumn = 0
+  }
+}
+
+private class PathNodeSinkGroup extends PathNodeImpl, TPathNodeSinkGroup {
+  string sinkGroup;
+  Configuration config;
+
+  PathNodeSinkGroup() { this = TPathNodeSinkGroup(sinkGroup, config) }
+
+  override NodeEx getNodeEx() { none() }
+
+  override FlowState getState() { none() }
+
+  override Configuration getConfiguration() { result = config }
+
+  override PathNodeImpl getASuccessorImpl() { none() }
+
+  override predicate isSource() { none() }
+
+  override string toString() { result = sinkGroup }
+
+  override predicate hasLocationInfo(
+    string filepath, int startline, int startcolumn, int endline, int endcolumn
+  ) {
+    filepath = "" and startline = 0 and startcolumn = 0 and endline = 0 and endcolumn = 0
+  }
 }
 
 private predicate pathNode(
@@ -3495,6 +3594,15 @@ private module Subpaths {
  * Will only have results if `configuration` has non-empty sources and
  * sinks.
  */
+private predicate hasFlowPath(
+  PathNodeImpl flowsource, PathNodeImpl flowsink, Configuration configuration
+) {
+  flowsource.isFlowSource() and
+  flowsource.getConfiguration() = configuration and
+  (flowsource = flowsink or pathSuccPlus(flowsource, flowsink)) and
+  flowsink.isFlowSink()
+}
+
 private predicate flowsTo(
   PathNodeImpl flowsource, PathNodeSink flowsink, Node source, Node sink,
   Configuration configuration
diff --git a/cpp/ql/lib/experimental/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl4.qll b/cpp/ql/lib/experimental/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl4.qll
index 2dde1c2819d..3c41b1876dc 100644
--- a/cpp/ql/lib/experimental/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl4.qll
+++ b/cpp/ql/lib/experimental/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl4.qll
@@ -147,6 +147,12 @@ abstract class Configuration extends string {
    */
   FlowFeature getAFeature() { none() }
 
+  /** Holds if sources should be grouped in the result of `hasFlowPath`. */
+  predicate sourceGrouping(Node source, string sourceGroup) { none() }
+
+  /** Holds if sinks should be grouped in the result of `hasFlowPath`. */
+  predicate sinkGrouping(Node sink, string sinkGroup) { none() }
+
   /**
    * Holds if data may flow from `source` to `sink` for this configuration.
    */
@@ -158,7 +164,7 @@ abstract class Configuration extends string {
    * The corresponding paths are generated from the end-points and the graph
    * included in the module `PathGraph`.
    */
-  predicate hasFlowPath(PathNode source, PathNode sink) { flowsTo(source, sink, _, _, this) }
+  predicate hasFlowPath(PathNode source, PathNode sink) { hasFlowPath(source, sink, this) }
 
   /**
    * Holds if data may flow from some source to `sink` for this configuration.
@@ -2712,6 +2718,18 @@ private newtype TPathNode =
       state = sink.getState() and
       config = sink.getConfiguration()
     )
+  } or
+  TPathNodeSourceGroup(string sourceGroup, Configuration config) {
+    exists(PathNodeImpl source |
+      sourceGroup = source.getSourceGroup() and
+      config = source.getConfiguration()
+    )
+  } or
+  TPathNodeSinkGroup(string sinkGroup, Configuration config) {
+    exists(PathNodeSink sink |
+      sinkGroup = sink.getSinkGroup() and
+      config = sink.getConfiguration()
+    )
   }
 
 /**
@@ -2920,6 +2938,22 @@ abstract private class PathNodeImpl extends TPathNode {
     )
   }
 
+  string getSourceGroup() {
+    this.isSource() and
+    this.getConfiguration().sourceGrouping(this.getNodeEx().asNode(), result)
+  }
+
+  predicate isFlowSource() {
+    this.isSource() and not exists(this.getSourceGroup())
+    or
+    this instanceof PathNodeSourceGroup
+  }
+
+  predicate isFlowSink() {
+    this = any(PathNodeSink sink | not exists(sink.getSinkGroup())) or
+    this instanceof PathNodeSinkGroup
+  }
+
   private string ppAp() {
     this instanceof PathNodeSink and result = ""
     or
@@ -2959,7 +2993,9 @@ abstract private class PathNodeImpl extends TPathNode {
 
 /** Holds if `n` can reach a sink. */
 private predicate directReach(PathNodeImpl n) {
-  n instanceof PathNodeSink or directReach(n.getANonHiddenSuccessor())
+  n instanceof PathNodeSink or
+  n instanceof PathNodeSinkGroup or
+  directReach(n.getANonHiddenSuccessor())
 }
 
 /** Holds if `n` can reach a sink or is used in a subpath that can reach a sink. */
@@ -3015,6 +3051,12 @@ class PathNode instanceof PathNodeImpl {
 
   /** Holds if this node is a source. */
   final predicate isSource() { super.isSource() }
+
+  /** Holds if this node is a grouping of source nodes. */
+  final predicate isSourceGroup(string group) { this = TPathNodeSourceGroup(group, _) }
+
+  /** Holds if this node is a grouping of sink nodes. */
+  final predicate isSinkGroup(string group) { this = TPathNodeSinkGroup(group, _) }
 }
 
 /**
@@ -3136,9 +3178,66 @@ private class PathNodeSink extends PathNodeImpl, TPathNodeSink {
 
   override Configuration getConfiguration() { result = config }
 
-  override PathNodeImpl getASuccessorImpl() { none() }
+  override PathNodeImpl getASuccessorImpl() {
+    result = TPathNodeSinkGroup(this.getSinkGroup(), config)
+  }
 
   override predicate isSource() { sourceNode(node, state, config) }
+
+  string getSinkGroup() { config.sinkGrouping(node.asNode(), result) }
+}
+
+private class PathNodeSourceGroup extends PathNodeImpl, TPathNodeSourceGroup {
+  string sourceGroup;
+  Configuration config;
+
+  PathNodeSourceGroup() { this = TPathNodeSourceGroup(sourceGroup, config) }
+
+  override NodeEx getNodeEx() { none() }
+
+  override FlowState getState() { none() }
+
+  override Configuration getConfiguration() { result = config }
+
+  override PathNodeImpl getASuccessorImpl() {
+    result.getSourceGroup() = sourceGroup and
+    result.getConfiguration() = config
+  }
+
+  override predicate isSource() { none() }
+
+  override string toString() { result = sourceGroup }
+
+  override predicate hasLocationInfo(
+    string filepath, int startline, int startcolumn, int endline, int endcolumn
+  ) {
+    filepath = "" and startline = 0 and startcolumn = 0 and endline = 0 and endcolumn = 0
+  }
+}
+
+private class PathNodeSinkGroup extends PathNodeImpl, TPathNodeSinkGroup {
+  string sinkGroup;
+  Configuration config;
+
+  PathNodeSinkGroup() { this = TPathNodeSinkGroup(sinkGroup, config) }
+
+  override NodeEx getNodeEx() { none() }
+
+  override FlowState getState() { none() }
+
+  override Configuration getConfiguration() { result = config }
+
+  override PathNodeImpl getASuccessorImpl() { none() }
+
+  override predicate isSource() { none() }
+
+  override string toString() { result = sinkGroup }
+
+  override predicate hasLocationInfo(
+    string filepath, int startline, int startcolumn, int endline, int endcolumn
+  ) {
+    filepath = "" and startline = 0 and startcolumn = 0 and endline = 0 and endcolumn = 0
+  }
 }
 
 private predicate pathNode(
@@ -3495,6 +3594,15 @@ private module Subpaths {
  * Will only have results if `configuration` has non-empty sources and
  * sinks.
  */
+private predicate hasFlowPath(
+  PathNodeImpl flowsource, PathNodeImpl flowsink, Configuration configuration
+) {
+  flowsource.isFlowSource() and
+  flowsource.getConfiguration() = configuration and
+  (flowsource = flowsink or pathSuccPlus(flowsource, flowsink)) and
+  flowsink.isFlowSink()
+}
+
 private predicate flowsTo(
   PathNodeImpl flowsource, PathNodeSink flowsink, Node source, Node sink,
   Configuration configuration
diff --git a/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImpl.qll b/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImpl.qll
index 2dde1c2819d..3c41b1876dc 100644
--- a/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImpl.qll
+++ b/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImpl.qll
@@ -147,6 +147,12 @@ abstract class Configuration extends string {
    */
   FlowFeature getAFeature() { none() }
 
+  /** Holds if sources should be grouped in the result of `hasFlowPath`. */
+  predicate sourceGrouping(Node source, string sourceGroup) { none() }
+
+  /** Holds if sinks should be grouped in the result of `hasFlowPath`. */
+  predicate sinkGrouping(Node sink, string sinkGroup) { none() }
+
   /**
    * Holds if data may flow from `source` to `sink` for this configuration.
    */
@@ -158,7 +164,7 @@ abstract class Configuration extends string {
    * The corresponding paths are generated from the end-points and the graph
    * included in the module `PathGraph`.
    */
-  predicate hasFlowPath(PathNode source, PathNode sink) { flowsTo(source, sink, _, _, this) }
+  predicate hasFlowPath(PathNode source, PathNode sink) { hasFlowPath(source, sink, this) }
 
   /**
    * Holds if data may flow from some source to `sink` for this configuration.
@@ -2712,6 +2718,18 @@ private newtype TPathNode =
       state = sink.getState() and
       config = sink.getConfiguration()
     )
+  } or
+  TPathNodeSourceGroup(string sourceGroup, Configuration config) {
+    exists(PathNodeImpl source |
+      sourceGroup = source.getSourceGroup() and
+      config = source.getConfiguration()
+    )
+  } or
+  TPathNodeSinkGroup(string sinkGroup, Configuration config) {
+    exists(PathNodeSink sink |
+      sinkGroup = sink.getSinkGroup() and
+      config = sink.getConfiguration()
+    )
   }
 
 /**
@@ -2920,6 +2938,22 @@ abstract private class PathNodeImpl extends TPathNode {
     )
   }
 
+  string getSourceGroup() {
+    this.isSource() and
+    this.getConfiguration().sourceGrouping(this.getNodeEx().asNode(), result)
+  }
+
+  predicate isFlowSource() {
+    this.isSource() and not exists(this.getSourceGroup())
+    or
+    this instanceof PathNodeSourceGroup
+  }
+
+  predicate isFlowSink() {
+    this = any(PathNodeSink sink | not exists(sink.getSinkGroup())) or
+    this instanceof PathNodeSinkGroup
+  }
+
   private string ppAp() {
     this instanceof PathNodeSink and result = ""
     or
@@ -2959,7 +2993,9 @@ abstract private class PathNodeImpl extends TPathNode {
 
 /** Holds if `n` can reach a sink. */
 private predicate directReach(PathNodeImpl n) {
-  n instanceof PathNodeSink or directReach(n.getANonHiddenSuccessor())
+  n instanceof PathNodeSink or
+  n instanceof PathNodeSinkGroup or
+  directReach(n.getANonHiddenSuccessor())
 }
 
 /** Holds if `n` can reach a sink or is used in a subpath that can reach a sink. */
@@ -3015,6 +3051,12 @@ class PathNode instanceof PathNodeImpl {
 
   /** Holds if this node is a source. */
   final predicate isSource() { super.isSource() }
+
+  /** Holds if this node is a grouping of source nodes. */
+  final predicate isSourceGroup(string group) { this = TPathNodeSourceGroup(group, _) }
+
+  /** Holds if this node is a grouping of sink nodes. */
+  final predicate isSinkGroup(string group) { this = TPathNodeSinkGroup(group, _) }
 }
 
 /**
@@ -3136,9 +3178,66 @@ private class PathNodeSink extends PathNodeImpl, TPathNodeSink {
 
   override Configuration getConfiguration() { result = config }
 
-  override PathNodeImpl getASuccessorImpl() { none() }
+  override PathNodeImpl getASuccessorImpl() {
+    result = TPathNodeSinkGroup(this.getSinkGroup(), config)
+  }
 
   override predicate isSource() { sourceNode(node, state, config) }
+
+  string getSinkGroup() { config.sinkGrouping(node.asNode(), result) }
+}
+
+private class PathNodeSourceGroup extends PathNodeImpl, TPathNodeSourceGroup {
+  string sourceGroup;
+  Configuration config;
+
+  PathNodeSourceGroup() { this = TPathNodeSourceGroup(sourceGroup, config) }
+
+  override NodeEx getNodeEx() { none() }
+
+  override FlowState getState() { none() }
+
+  override Configuration getConfiguration() { result = config }
+
+  override PathNodeImpl getASuccessorImpl() {
+    result.getSourceGroup() = sourceGroup and
+    result.getConfiguration() = config
+  }
+
+  override predicate isSource() { none() }
+
+  override string toString() { result = sourceGroup }
+
+  override predicate hasLocationInfo(
+    string filepath, int startline, int startcolumn, int endline, int endcolumn
+  ) {
+    filepath = "" and startline = 0 and startcolumn = 0 and endline = 0 and endcolumn = 0
+  }
+}
+
+private class PathNodeSinkGroup extends PathNodeImpl, TPathNodeSinkGroup {
+  string sinkGroup;
+  Configuration config;
+
+  PathNodeSinkGroup() { this = TPathNodeSinkGroup(sinkGroup, config) }
+
+  override NodeEx getNodeEx() { none() }
+
+  override FlowState getState() { none() }
+
+  override Configuration getConfiguration() { result = config }
+
+  override PathNodeImpl getASuccessorImpl() { none() }
+
+  override predicate isSource() { none() }
+
+  override string toString() { result = sinkGroup }
+
+  override predicate hasLocationInfo(
+    string filepath, int startline, int startcolumn, int endline, int endcolumn
+  ) {
+    filepath = "" and startline = 0 and startcolumn = 0 and endline = 0 and endcolumn = 0
+  }
 }
 
 private predicate pathNode(
@@ -3495,6 +3594,15 @@ private module Subpaths {
  * Will only have results if `configuration` has non-empty sources and
  * sinks.
  */
+private predicate hasFlowPath(
+  PathNodeImpl flowsource, PathNodeImpl flowsink, Configuration configuration
+) {
+  flowsource.isFlowSource() and
+  flowsource.getConfiguration() = configuration and
+  (flowsource = flowsink or pathSuccPlus(flowsource, flowsink)) and
+  flowsink.isFlowSink()
+}
+
 private predicate flowsTo(
   PathNodeImpl flowsource, PathNodeSink flowsink, Node source, Node sink,
   Configuration configuration
diff --git a/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImpl2.qll b/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImpl2.qll
index 2dde1c2819d..3c41b1876dc 100644
--- a/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImpl2.qll
+++ b/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImpl2.qll
@@ -147,6 +147,12 @@ abstract class Configuration extends string {
    */
   FlowFeature getAFeature() { none() }
 
+  /** Holds if sources should be grouped in the result of `hasFlowPath`. */
+  predicate sourceGrouping(Node source, string sourceGroup) { none() }
+
+  /** Holds if sinks should be grouped in the result of `hasFlowPath`. */
+  predicate sinkGrouping(Node sink, string sinkGroup) { none() }
+
   /**
    * Holds if data may flow from `source` to `sink` for this configuration.
    */
@@ -158,7 +164,7 @@ abstract class Configuration extends string {
    * The corresponding paths are generated from the end-points and the graph
    * included in the module `PathGraph`.
    */
-  predicate hasFlowPath(PathNode source, PathNode sink) { flowsTo(source, sink, _, _, this) }
+  predicate hasFlowPath(PathNode source, PathNode sink) { hasFlowPath(source, sink, this) }
 
   /**
    * Holds if data may flow from some source to `sink` for this configuration.
@@ -2712,6 +2718,18 @@ private newtype TPathNode =
       state = sink.getState() and
       config = sink.getConfiguration()
     )
+  } or
+  TPathNodeSourceGroup(string sourceGroup, Configuration config) {
+    exists(PathNodeImpl source |
+      sourceGroup = source.getSourceGroup() and
+      config = source.getConfiguration()
+    )
+  } or
+  TPathNodeSinkGroup(string sinkGroup, Configuration config) {
+    exists(PathNodeSink sink |
+      sinkGroup = sink.getSinkGroup() and
+      config = sink.getConfiguration()
+    )
   }
 
 /**
@@ -2920,6 +2938,22 @@ abstract private class PathNodeImpl extends TPathNode {
     )
   }
 
+  string getSourceGroup() {
+    this.isSource() and
+    this.getConfiguration().sourceGrouping(this.getNodeEx().asNode(), result)
+  }
+
+  predicate isFlowSource() {
+    this.isSource() and not exists(this.getSourceGroup())
+    or
+    this instanceof PathNodeSourceGroup
+  }
+
+  predicate isFlowSink() {
+    this = any(PathNodeSink sink | not exists(sink.getSinkGroup())) or
+    this instanceof PathNodeSinkGroup
+  }
+
   private string ppAp() {
     this instanceof PathNodeSink and result = ""
     or
@@ -2959,7 +2993,9 @@ abstract private class PathNodeImpl extends TPathNode {
 
 /** Holds if `n` can reach a sink. */
 private predicate directReach(PathNodeImpl n) {
-  n instanceof PathNodeSink or directReach(n.getANonHiddenSuccessor())
+  n instanceof PathNodeSink or
+  n instanceof PathNodeSinkGroup or
+  directReach(n.getANonHiddenSuccessor())
 }
 
 /** Holds if `n` can reach a sink or is used in a subpath that can reach a sink. */
@@ -3015,6 +3051,12 @@ class PathNode instanceof PathNodeImpl {
 
   /** Holds if this node is a source. */
   final predicate isSource() { super.isSource() }
+
+  /** Holds if this node is a grouping of source nodes. */
+  final predicate isSourceGroup(string group) { this = TPathNodeSourceGroup(group, _) }
+
+  /** Holds if this node is a grouping of sink nodes. */
+  final predicate isSinkGroup(string group) { this = TPathNodeSinkGroup(group, _) }
 }
 
 /**
@@ -3136,9 +3178,66 @@ private class PathNodeSink extends PathNodeImpl, TPathNodeSink {
 
   override Configuration getConfiguration() { result = config }
 
-  override PathNodeImpl getASuccessorImpl() { none() }
+  override PathNodeImpl getASuccessorImpl() {
+    result = TPathNodeSinkGroup(this.getSinkGroup(), config)
+  }
 
   override predicate isSource() { sourceNode(node, state, config) }
+
+  string getSinkGroup() { config.sinkGrouping(node.asNode(), result) }
+}
+
+private class PathNodeSourceGroup extends PathNodeImpl, TPathNodeSourceGroup {
+  string sourceGroup;
+  Configuration config;
+
+  PathNodeSourceGroup() { this = TPathNodeSourceGroup(sourceGroup, config) }
+
+  override NodeEx getNodeEx() { none() }
+
+  override FlowState getState() { none() }
+
+  override Configuration getConfiguration() { result = config }
+
+  override PathNodeImpl getASuccessorImpl() {
+    result.getSourceGroup() = sourceGroup and
+    result.getConfiguration() = config
+  }
+
+  override predicate isSource() { none() }
+
+  override string toString() { result = sourceGroup }
+
+  override predicate hasLocationInfo(
+    string filepath, int startline, int startcolumn, int endline, int endcolumn
+  ) {
+    filepath = "" and startline = 0 and startcolumn = 0 and endline = 0 and endcolumn = 0
+  }
+}
+
+private class PathNodeSinkGroup extends PathNodeImpl, TPathNodeSinkGroup {
+  string sinkGroup;
+  Configuration config;
+
+  PathNodeSinkGroup() { this = TPathNodeSinkGroup(sinkGroup, config) }
+
+  override NodeEx getNodeEx() { none() }
+
+  override FlowState getState() { none() }
+
+  override Configuration getConfiguration() { result = config }
+
+  override PathNodeImpl getASuccessorImpl() { none() }
+
+  override predicate isSource() { none() }
+
+  override string toString() { result = sinkGroup }
+
+  override predicate hasLocationInfo(
+    string filepath, int startline, int startcolumn, int endline, int endcolumn
+  ) {
+    filepath = "" and startline = 0 and startcolumn = 0 and endline = 0 and endcolumn = 0
+  }
 }
 
 private predicate pathNode(
@@ -3495,6 +3594,15 @@ private module Subpaths {
  * Will only have results if `configuration` has non-empty sources and
  * sinks.
  */
+private predicate hasFlowPath(
+  PathNodeImpl flowsource, PathNodeImpl flowsink, Configuration configuration
+) {
+  flowsource.isFlowSource() and
+  flowsource.getConfiguration() = configuration and
+  (flowsource = flowsink or pathSuccPlus(flowsource, flowsink)) and
+  flowsink.isFlowSink()
+}
+
 private predicate flowsTo(
   PathNodeImpl flowsource, PathNodeSink flowsink, Node source, Node sink,
   Configuration configuration
diff --git a/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImpl3.qll b/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImpl3.qll
index 2dde1c2819d..3c41b1876dc 100644
--- a/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImpl3.qll
+++ b/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImpl3.qll
@@ -147,6 +147,12 @@ abstract class Configuration extends string {
    */
   FlowFeature getAFeature() { none() }
 
+  /** Holds if sources should be grouped in the result of `hasFlowPath`. */
+  predicate sourceGrouping(Node source, string sourceGroup) { none() }
+
+  /** Holds if sinks should be grouped in the result of `hasFlowPath`. */
+  predicate sinkGrouping(Node sink, string sinkGroup) { none() }
+
   /**
    * Holds if data may flow from `source` to `sink` for this configuration.
    */
@@ -158,7 +164,7 @@ abstract class Configuration extends string {
    * The corresponding paths are generated from the end-points and the graph
    * included in the module `PathGraph`.
    */
-  predicate hasFlowPath(PathNode source, PathNode sink) { flowsTo(source, sink, _, _, this) }
+  predicate hasFlowPath(PathNode source, PathNode sink) { hasFlowPath(source, sink, this) }
 
   /**
    * Holds if data may flow from some source to `sink` for this configuration.
@@ -2712,6 +2718,18 @@ private newtype TPathNode =
       state = sink.getState() and
       config = sink.getConfiguration()
     )
+  } or
+  TPathNodeSourceGroup(string sourceGroup, Configuration config) {
+    exists(PathNodeImpl source |
+      sourceGroup = source.getSourceGroup() and
+      config = source.getConfiguration()
+    )
+  } or
+  TPathNodeSinkGroup(string sinkGroup, Configuration config) {
+    exists(PathNodeSink sink |
+      sinkGroup = sink.getSinkGroup() and
+      config = sink.getConfiguration()
+    )
   }
 
 /**
@@ -2920,6 +2938,22 @@ abstract private class PathNodeImpl extends TPathNode {
     )
   }
 
+  string getSourceGroup() {
+    this.isSource() and
+    this.getConfiguration().sourceGrouping(this.getNodeEx().asNode(), result)
+  }
+
+  predicate isFlowSource() {
+    this.isSource() and not exists(this.getSourceGroup())
+    or
+    this instanceof PathNodeSourceGroup
+  }
+
+  predicate isFlowSink() {
+    this = any(PathNodeSink sink | not exists(sink.getSinkGroup())) or
+    this instanceof PathNodeSinkGroup
+  }
+
   private string ppAp() {
     this instanceof PathNodeSink and result = ""
     or
@@ -2959,7 +2993,9 @@ abstract private class PathNodeImpl extends TPathNode {
 
 /** Holds if `n` can reach a sink. */
 private predicate directReach(PathNodeImpl n) {
-  n instanceof PathNodeSink or directReach(n.getANonHiddenSuccessor())
+  n instanceof PathNodeSink or
+  n instanceof PathNodeSinkGroup or
+  directReach(n.getANonHiddenSuccessor())
 }
 
 /** Holds if `n` can reach a sink or is used in a subpath that can reach a sink. */
@@ -3015,6 +3051,12 @@ class PathNode instanceof PathNodeImpl {
 
   /** Holds if this node is a source. */
   final predicate isSource() { super.isSource() }
+
+  /** Holds if this node is a grouping of source nodes. */
+  final predicate isSourceGroup(string group) { this = TPathNodeSourceGroup(group, _) }
+
+  /** Holds if this node is a grouping of sink nodes. */
+  final predicate isSinkGroup(string group) { this = TPathNodeSinkGroup(group, _) }
 }
 
 /**
@@ -3136,9 +3178,66 @@ private class PathNodeSink extends PathNodeImpl, TPathNodeSink {
 
   override Configuration getConfiguration() { result = config }
 
-  override PathNodeImpl getASuccessorImpl() { none() }
+  override PathNodeImpl getASuccessorImpl() {
+    result = TPathNodeSinkGroup(this.getSinkGroup(), config)
+  }
 
   override predicate isSource() { sourceNode(node, state, config) }
+
+  string getSinkGroup() { config.sinkGrouping(node.asNode(), result) }
+}
+
+private class PathNodeSourceGroup extends PathNodeImpl, TPathNodeSourceGroup {
+  string sourceGroup;
+  Configuration config;
+
+  PathNodeSourceGroup() { this = TPathNodeSourceGroup(sourceGroup, config) }
+
+  override NodeEx getNodeEx() { none() }
+
+  override FlowState getState() { none() }
+
+  override Configuration getConfiguration() { result = config }
+
+  override PathNodeImpl getASuccessorImpl() {
+    result.getSourceGroup() = sourceGroup and
+    result.getConfiguration() = config
+  }
+
+  override predicate isSource() { none() }
+
+  override string toString() { result = sourceGroup }
+
+  override predicate hasLocationInfo(
+    string filepath, int startline, int startcolumn, int endline, int endcolumn
+  ) {
+    filepath = "" and startline = 0 and startcolumn = 0 and endline = 0 and endcolumn = 0
+  }
+}
+
+private class PathNodeSinkGroup extends PathNodeImpl, TPathNodeSinkGroup {
+  string sinkGroup;
+  Configuration config;
+
+  PathNodeSinkGroup() { this = TPathNodeSinkGroup(sinkGroup, config) }
+
+  override NodeEx getNodeEx() { none() }
+
+  override FlowState getState() { none() }
+
+  override Configuration getConfiguration() { result = config }
+
+  override PathNodeImpl getASuccessorImpl() { none() }
+
+  override predicate isSource() { none() }
+
+  override string toString() { result = sinkGroup }
+
+  override predicate hasLocationInfo(
+    string filepath, int startline, int startcolumn, int endline, int endcolumn
+  ) {
+    filepath = "" and startline = 0 and startcolumn = 0 and endline = 0 and endcolumn = 0
+  }
 }
 
 private predicate pathNode(
@@ -3495,6 +3594,15 @@ private module Subpaths {
  * Will only have results if `configuration` has non-empty sources and
  * sinks.
  */
+private predicate hasFlowPath(
+  PathNodeImpl flowsource, PathNodeImpl flowsink, Configuration configuration
+) {
+  flowsource.isFlowSource() and
+  flowsource.getConfiguration() = configuration and
+  (flowsource = flowsink or pathSuccPlus(flowsource, flowsink)) and
+  flowsink.isFlowSink()
+}
+
 private predicate flowsTo(
   PathNodeImpl flowsource, PathNodeSink flowsink, Node source, Node sink,
   Configuration configuration
diff --git a/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImpl4.qll b/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImpl4.qll
index 2dde1c2819d..3c41b1876dc 100644
--- a/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImpl4.qll
+++ b/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImpl4.qll
@@ -147,6 +147,12 @@ abstract class Configuration extends string {
    */
   FlowFeature getAFeature() { none() }
 
+  /** Holds if sources should be grouped in the result of `hasFlowPath`. */
+  predicate sourceGrouping(Node source, string sourceGroup) { none() }
+
+  /** Holds if sinks should be grouped in the result of `hasFlowPath`. */
+  predicate sinkGrouping(Node sink, string sinkGroup) { none() }
+
   /**
    * Holds if data may flow from `source` to `sink` for this configuration.
    */
@@ -158,7 +164,7 @@ abstract class Configuration extends string {
    * The corresponding paths are generated from the end-points and the graph
    * included in the module `PathGraph`.
    */
-  predicate hasFlowPath(PathNode source, PathNode sink) { flowsTo(source, sink, _, _, this) }
+  predicate hasFlowPath(PathNode source, PathNode sink) { hasFlowPath(source, sink, this) }
 
   /**
    * Holds if data may flow from some source to `sink` for this configuration.
@@ -2712,6 +2718,18 @@ private newtype TPathNode =
       state = sink.getState() and
       config = sink.getConfiguration()
     )
+  } or
+  TPathNodeSourceGroup(string sourceGroup, Configuration config) {
+    exists(PathNodeImpl source |
+      sourceGroup = source.getSourceGroup() and
+      config = source.getConfiguration()
+    )
+  } or
+  TPathNodeSinkGroup(string sinkGroup, Configuration config) {
+    exists(PathNodeSink sink |
+      sinkGroup = sink.getSinkGroup() and
+      config = sink.getConfiguration()
+    )
   }
 
 /**
@@ -2920,6 +2938,22 @@ abstract private class PathNodeImpl extends TPathNode {
     )
   }
 
+  string getSourceGroup() {
+    this.isSource() and
+    this.getConfiguration().sourceGrouping(this.getNodeEx().asNode(), result)
+  }
+
+  predicate isFlowSource() {
+    this.isSource() and not exists(this.getSourceGroup())
+    or
+    this instanceof PathNodeSourceGroup
+  }
+
+  predicate isFlowSink() {
+    this = any(PathNodeSink sink | not exists(sink.getSinkGroup())) or
+    this instanceof PathNodeSinkGroup
+  }
+
   private string ppAp() {
     this instanceof PathNodeSink and result = ""
     or
@@ -2959,7 +2993,9 @@ abstract private class PathNodeImpl extends TPathNode {
 
 /** Holds if `n` can reach a sink. */
 private predicate directReach(PathNodeImpl n) {
-  n instanceof PathNodeSink or directReach(n.getANonHiddenSuccessor())
+  n instanceof PathNodeSink or
+  n instanceof PathNodeSinkGroup or
+  directReach(n.getANonHiddenSuccessor())
 }
 
 /** Holds if `n` can reach a sink or is used in a subpath that can reach a sink. */
@@ -3015,6 +3051,12 @@ class PathNode instanceof PathNodeImpl {
 
   /** Holds if this node is a source. */
   final predicate isSource() { super.isSource() }
+
+  /** Holds if this node is a grouping of source nodes. */
+  final predicate isSourceGroup(string group) { this = TPathNodeSourceGroup(group, _) }
+
+  /** Holds if this node is a grouping of sink nodes. */
+  final predicate isSinkGroup(string group) { this = TPathNodeSinkGroup(group, _) }
 }
 
 /**
@@ -3136,9 +3178,66 @@ private class PathNodeSink extends PathNodeImpl, TPathNodeSink {
 
   override Configuration getConfiguration() { result = config }
 
-  override PathNodeImpl getASuccessorImpl() { none() }
+  override PathNodeImpl getASuccessorImpl() {
+    result = TPathNodeSinkGroup(this.getSinkGroup(), config)
+  }
 
   override predicate isSource() { sourceNode(node, state, config) }
+
+  string getSinkGroup() { config.sinkGrouping(node.asNode(), result) }
+}
+
+private class PathNodeSourceGroup extends PathNodeImpl, TPathNodeSourceGroup {
+  string sourceGroup;
+  Configuration config;
+
+  PathNodeSourceGroup() { this = TPathNodeSourceGroup(sourceGroup, config) }
+
+  override NodeEx getNodeEx() { none() }
+
+  override FlowState getState() { none() }
+
+  override Configuration getConfiguration() { result = config }
+
+  override PathNodeImpl getASuccessorImpl() {
+    result.getSourceGroup() = sourceGroup and
+    result.getConfiguration() = config
+  }
+
+  override predicate isSource() { none() }
+
+  override string toString() { result = sourceGroup }
+
+  override predicate hasLocationInfo(
+    string filepath, int startline, int startcolumn, int endline, int endcolumn
+  ) {
+    filepath = "" and startline = 0 and startcolumn = 0 and endline = 0 and endcolumn = 0
+  }
+}
+
+private class PathNodeSinkGroup extends PathNodeImpl, TPathNodeSinkGroup {
+  string sinkGroup;
+  Configuration config;
+
+  PathNodeSinkGroup() { this = TPathNodeSinkGroup(sinkGroup, config) }
+
+  override NodeEx getNodeEx() { none() }
+
+  override FlowState getState() { none() }
+
+  override Configuration getConfiguration() { result = config }
+
+  override PathNodeImpl getASuccessorImpl() { none() }
+
+  override predicate isSource() { none() }
+
+  override string toString() { result = sinkGroup }
+
+  override predicate hasLocationInfo(
+    string filepath, int startline, int startcolumn, int endline, int endcolumn
+  ) {
+    filepath = "" and startline = 0 and startcolumn = 0 and endline = 0 and endcolumn = 0
+  }
 }
 
 private predicate pathNode(
@@ -3495,6 +3594,15 @@ private module Subpaths {
  * Will only have results if `configuration` has non-empty sources and
  * sinks.
  */
+private predicate hasFlowPath(
+  PathNodeImpl flowsource, PathNodeImpl flowsink, Configuration configuration
+) {
+  flowsource.isFlowSource() and
+  flowsource.getConfiguration() = configuration and
+  (flowsource = flowsink or pathSuccPlus(flowsource, flowsink)) and
+  flowsink.isFlowSink()
+}
+
 private predicate flowsTo(
   PathNodeImpl flowsource, PathNodeSink flowsink, Node source, Node sink,
   Configuration configuration
diff --git a/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImplLocal.qll b/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImplLocal.qll
index 2dde1c2819d..3c41b1876dc 100644
--- a/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImplLocal.qll
+++ b/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImplLocal.qll
@@ -147,6 +147,12 @@ abstract class Configuration extends string {
    */
   FlowFeature getAFeature() { none() }
 
+  /** Holds if sources should be grouped in the result of `hasFlowPath`. */
+  predicate sourceGrouping(Node source, string sourceGroup) { none() }
+
+  /** Holds if sinks should be grouped in the result of `hasFlowPath`. */
+  predicate sinkGrouping(Node sink, string sinkGroup) { none() }
+
   /**
    * Holds if data may flow from `source` to `sink` for this configuration.
    */
@@ -158,7 +164,7 @@ abstract class Configuration extends string {
    * The corresponding paths are generated from the end-points and the graph
    * included in the module `PathGraph`.
    */
-  predicate hasFlowPath(PathNode source, PathNode sink) { flowsTo(source, sink, _, _, this) }
+  predicate hasFlowPath(PathNode source, PathNode sink) { hasFlowPath(source, sink, this) }
 
   /**
    * Holds if data may flow from some source to `sink` for this configuration.
@@ -2712,6 +2718,18 @@ private newtype TPathNode =
       state = sink.getState() and
       config = sink.getConfiguration()
     )
+  } or
+  TPathNodeSourceGroup(string sourceGroup, Configuration config) {
+    exists(PathNodeImpl source |
+      sourceGroup = source.getSourceGroup() and
+      config = source.getConfiguration()
+    )
+  } or
+  TPathNodeSinkGroup(string sinkGroup, Configuration config) {
+    exists(PathNodeSink sink |
+      sinkGroup = sink.getSinkGroup() and
+      config = sink.getConfiguration()
+    )
   }
 
 /**
@@ -2920,6 +2938,22 @@ abstract private class PathNodeImpl extends TPathNode {
     )
   }
 
+  string getSourceGroup() {
+    this.isSource() and
+    this.getConfiguration().sourceGrouping(this.getNodeEx().asNode(), result)
+  }
+
+  predicate isFlowSource() {
+    this.isSource() and not exists(this.getSourceGroup())
+    or
+    this instanceof PathNodeSourceGroup
+  }
+
+  predicate isFlowSink() {
+    this = any(PathNodeSink sink | not exists(sink.getSinkGroup())) or
+    this instanceof PathNodeSinkGroup
+  }
+
   private string ppAp() {
     this instanceof PathNodeSink and result = ""
     or
@@ -2959,7 +2993,9 @@ abstract private class PathNodeImpl extends TPathNode {
 
 /** Holds if `n` can reach a sink. */
 private predicate directReach(PathNodeImpl n) {
-  n instanceof PathNodeSink or directReach(n.getANonHiddenSuccessor())
+  n instanceof PathNodeSink or
+  n instanceof PathNodeSinkGroup or
+  directReach(n.getANonHiddenSuccessor())
 }
 
 /** Holds if `n` can reach a sink or is used in a subpath that can reach a sink. */
@@ -3015,6 +3051,12 @@ class PathNode instanceof PathNodeImpl {
 
   /** Holds if this node is a source. */
   final predicate isSource() { super.isSource() }
+
+  /** Holds if this node is a grouping of source nodes. */
+  final predicate isSourceGroup(string group) { this = TPathNodeSourceGroup(group, _) }
+
+  /** Holds if this node is a grouping of sink nodes. */
+  final predicate isSinkGroup(string group) { this = TPathNodeSinkGroup(group, _) }
 }
 
 /**
@@ -3136,9 +3178,66 @@ private class PathNodeSink extends PathNodeImpl, TPathNodeSink {
 
   override Configuration getConfiguration() { result = config }
 
-  override PathNodeImpl getASuccessorImpl() { none() }
+  override PathNodeImpl getASuccessorImpl() {
+    result = TPathNodeSinkGroup(this.getSinkGroup(), config)
+  }
 
   override predicate isSource() { sourceNode(node, state, config) }
+
+  string getSinkGroup() { config.sinkGrouping(node.asNode(), result) }
+}
+
+private class PathNodeSourceGroup extends PathNodeImpl, TPathNodeSourceGroup {
+  string sourceGroup;
+  Configuration config;
+
+  PathNodeSourceGroup() { this = TPathNodeSourceGroup(sourceGroup, config) }
+
+  override NodeEx getNodeEx() { none() }
+
+  override FlowState getState() { none() }
+
+  override Configuration getConfiguration() { result = config }
+
+  override PathNodeImpl getASuccessorImpl() {
+    result.getSourceGroup() = sourceGroup and
+    result.getConfiguration() = config
+  }
+
+  override predicate isSource() { none() }
+
+  override string toString() { result = sourceGroup }
+
+  override predicate hasLocationInfo(
+    string filepath, int startline, int startcolumn, int endline, int endcolumn
+  ) {
+    filepath = "" and startline = 0 and startcolumn = 0 and endline = 0 and endcolumn = 0
+  }
+}
+
+private class PathNodeSinkGroup extends PathNodeImpl, TPathNodeSinkGroup {
+  string sinkGroup;
+  Configuration config;
+
+  PathNodeSinkGroup() { this = TPathNodeSinkGroup(sinkGroup, config) }
+
+  override NodeEx getNodeEx() { none() }
+
+  override FlowState getState() { none() }
+
+  override Configuration getConfiguration() { result = config }
+
+  override PathNodeImpl getASuccessorImpl() { none() }
+
+  override predicate isSource() { none() }
+
+  override string toString() { result = sinkGroup }
+
+  override predicate hasLocationInfo(
+    string filepath, int startline, int startcolumn, int endline, int endcolumn
+  ) {
+    filepath = "" and startline = 0 and startcolumn = 0 and endline = 0 and endcolumn = 0
+  }
 }
 
 private predicate pathNode(
@@ -3495,6 +3594,15 @@ private module Subpaths {
  * Will only have results if `configuration` has non-empty sources and
  * sinks.
  */
+private predicate hasFlowPath(
+  PathNodeImpl flowsource, PathNodeImpl flowsink, Configuration configuration
+) {
+  flowsource.isFlowSource() and
+  flowsource.getConfiguration() = configuration and
+  (flowsource = flowsink or pathSuccPlus(flowsource, flowsink)) and
+  flowsink.isFlowSink()
+}
+
 private predicate flowsTo(
   PathNodeImpl flowsource, PathNodeSink flowsink, Node source, Node sink,
   Configuration configuration
diff --git a/cpp/ql/lib/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl.qll b/cpp/ql/lib/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl.qll
index 2dde1c2819d..3c41b1876dc 100644
--- a/cpp/ql/lib/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl.qll
+++ b/cpp/ql/lib/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl.qll
@@ -147,6 +147,12 @@ abstract class Configuration extends string {
    */
   FlowFeature getAFeature() { none() }
 
+  /** Holds if sources should be grouped in the result of `hasFlowPath`. */
+  predicate sourceGrouping(Node source, string sourceGroup) { none() }
+
+  /** Holds if sinks should be grouped in the result of `hasFlowPath`. */
+  predicate sinkGrouping(Node sink, string sinkGroup) { none() }
+
   /**
    * Holds if data may flow from `source` to `sink` for this configuration.
    */
@@ -158,7 +164,7 @@ abstract class Configuration extends string {
    * The corresponding paths are generated from the end-points and the graph
    * included in the module `PathGraph`.
    */
-  predicate hasFlowPath(PathNode source, PathNode sink) { flowsTo(source, sink, _, _, this) }
+  predicate hasFlowPath(PathNode source, PathNode sink) { hasFlowPath(source, sink, this) }
 
   /**
    * Holds if data may flow from some source to `sink` for this configuration.
@@ -2712,6 +2718,18 @@ private newtype TPathNode =
       state = sink.getState() and
       config = sink.getConfiguration()
     )
+  } or
+  TPathNodeSourceGroup(string sourceGroup, Configuration config) {
+    exists(PathNodeImpl source |
+      sourceGroup = source.getSourceGroup() and
+      config = source.getConfiguration()
+    )
+  } or
+  TPathNodeSinkGroup(string sinkGroup, Configuration config) {
+    exists(PathNodeSink sink |
+      sinkGroup = sink.getSinkGroup() and
+      config = sink.getConfiguration()
+    )
   }
 
 /**
@@ -2920,6 +2938,22 @@ abstract private class PathNodeImpl extends TPathNode {
     )
   }
 
+  string getSourceGroup() {
+    this.isSource() and
+    this.getConfiguration().sourceGrouping(this.getNodeEx().asNode(), result)
+  }
+
+  predicate isFlowSource() {
+    this.isSource() and not exists(this.getSourceGroup())
+    or
+    this instanceof PathNodeSourceGroup
+  }
+
+  predicate isFlowSink() {
+    this = any(PathNodeSink sink | not exists(sink.getSinkGroup())) or
+    this instanceof PathNodeSinkGroup
+  }
+
   private string ppAp() {
     this instanceof PathNodeSink and result = ""
     or
@@ -2959,7 +2993,9 @@ abstract private class PathNodeImpl extends TPathNode {
 
 /** Holds if `n` can reach a sink. */
 private predicate directReach(PathNodeImpl n) {
-  n instanceof PathNodeSink or directReach(n.getANonHiddenSuccessor())
+  n instanceof PathNodeSink or
+  n instanceof PathNodeSinkGroup or
+  directReach(n.getANonHiddenSuccessor())
 }
 
 /** Holds if `n` can reach a sink or is used in a subpath that can reach a sink. */
@@ -3015,6 +3051,12 @@ class PathNode instanceof PathNodeImpl {
 
   /** Holds if this node is a source. */
   final predicate isSource() { super.isSource() }
+
+  /** Holds if this node is a grouping of source nodes. */
+  final predicate isSourceGroup(string group) { this = TPathNodeSourceGroup(group, _) }
+
+  /** Holds if this node is a grouping of sink nodes. */
+  final predicate isSinkGroup(string group) { this = TPathNodeSinkGroup(group, _) }
 }
 
 /**
@@ -3136,9 +3178,66 @@ private class PathNodeSink extends PathNodeImpl, TPathNodeSink {
 
   override Configuration getConfiguration() { result = config }
 
-  override PathNodeImpl getASuccessorImpl() { none() }
+  override PathNodeImpl getASuccessorImpl() {
+    result = TPathNodeSinkGroup(this.getSinkGroup(), config)
+  }
 
   override predicate isSource() { sourceNode(node, state, config) }
+
+  string getSinkGroup() { config.sinkGrouping(node.asNode(), result) }
+}
+
+private class PathNodeSourceGroup extends PathNodeImpl, TPathNodeSourceGroup {
+  string sourceGroup;
+  Configuration config;
+
+  PathNodeSourceGroup() { this = TPathNodeSourceGroup(sourceGroup, config) }
+
+  override NodeEx getNodeEx() { none() }
+
+  override FlowState getState() { none() }
+
+  override Configuration getConfiguration() { result = config }
+
+  override PathNodeImpl getASuccessorImpl() {
+    result.getSourceGroup() = sourceGroup and
+    result.getConfiguration() = config
+  }
+
+  override predicate isSource() { none() }
+
+  override string toString() { result = sourceGroup }
+
+  override predicate hasLocationInfo(
+    string filepath, int startline, int startcolumn, int endline, int endcolumn
+  ) {
+    filepath = "" and startline = 0 and startcolumn = 0 and endline = 0 and endcolumn = 0
+  }
+}
+
+private class PathNodeSinkGroup extends PathNodeImpl, TPathNodeSinkGroup {
+  string sinkGroup;
+  Configuration config;
+
+  PathNodeSinkGroup() { this = TPathNodeSinkGroup(sinkGroup, config) }
+
+  override NodeEx getNodeEx() { none() }
+
+  override FlowState getState() { none() }
+
+  override Configuration getConfiguration() { result = config }
+
+  override PathNodeImpl getASuccessorImpl() { none() }
+
+  override predicate isSource() { none() }
+
+  override string toString() { result = sinkGroup }
+
+  override predicate hasLocationInfo(
+    string filepath, int startline, int startcolumn, int endline, int endcolumn
+  ) {
+    filepath = "" and startline = 0 and startcolumn = 0 and endline = 0 and endcolumn = 0
+  }
 }
 
 private predicate pathNode(
@@ -3495,6 +3594,15 @@ private module Subpaths {
  * Will only have results if `configuration` has non-empty sources and
  * sinks.
  */
+private predicate hasFlowPath(
+  PathNodeImpl flowsource, PathNodeImpl flowsink, Configuration configuration
+) {
+  flowsource.isFlowSource() and
+  flowsource.getConfiguration() = configuration and
+  (flowsource = flowsink or pathSuccPlus(flowsource, flowsink)) and
+  flowsink.isFlowSink()
+}
+
 private predicate flowsTo(
   PathNodeImpl flowsource, PathNodeSink flowsink, Node source, Node sink,
   Configuration configuration
diff --git a/cpp/ql/lib/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl2.qll b/cpp/ql/lib/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl2.qll
index 2dde1c2819d..3c41b1876dc 100644
--- a/cpp/ql/lib/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl2.qll
+++ b/cpp/ql/lib/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl2.qll
@@ -147,6 +147,12 @@ abstract class Configuration extends string {
    */
   FlowFeature getAFeature() { none() }
 
+  /** Holds if sources should be grouped in the result of `hasFlowPath`. */
+  predicate sourceGrouping(Node source, string sourceGroup) { none() }
+
+  /** Holds if sinks should be grouped in the result of `hasFlowPath`. */
+  predicate sinkGrouping(Node sink, string sinkGroup) { none() }
+
   /**
    * Holds if data may flow from `source` to `sink` for this configuration.
    */
@@ -158,7 +164,7 @@ abstract class Configuration extends string {
    * The corresponding paths are generated from the end-points and the graph
    * included in the module `PathGraph`.
    */
-  predicate hasFlowPath(PathNode source, PathNode sink) { flowsTo(source, sink, _, _, this) }
+  predicate hasFlowPath(PathNode source, PathNode sink) { hasFlowPath(source, sink, this) }
 
   /**
    * Holds if data may flow from some source to `sink` for this configuration.
@@ -2712,6 +2718,18 @@ private newtype TPathNode =
       state = sink.getState() and
       config = sink.getConfiguration()
     )
+  } or
+  TPathNodeSourceGroup(string sourceGroup, Configuration config) {
+    exists(PathNodeImpl source |
+      sourceGroup = source.getSourceGroup() and
+      config = source.getConfiguration()
+    )
+  } or
+  TPathNodeSinkGroup(string sinkGroup, Configuration config) {
+    exists(PathNodeSink sink |
+      sinkGroup = sink.getSinkGroup() and
+      config = sink.getConfiguration()
+    )
   }
 
 /**
@@ -2920,6 +2938,22 @@ abstract private class PathNodeImpl extends TPathNode {
     )
   }
 
+  string getSourceGroup() {
+    this.isSource() and
+    this.getConfiguration().sourceGrouping(this.getNodeEx().asNode(), result)
+  }
+
+  predicate isFlowSource() {
+    this.isSource() and not exists(this.getSourceGroup())
+    or
+    this instanceof PathNodeSourceGroup
+  }
+
+  predicate isFlowSink() {
+    this = any(PathNodeSink sink | not exists(sink.getSinkGroup())) or
+    this instanceof PathNodeSinkGroup
+  }
+
   private string ppAp() {
     this instanceof PathNodeSink and result = ""
     or
@@ -2959,7 +2993,9 @@ abstract private class PathNodeImpl extends TPathNode {
 
 /** Holds if `n` can reach a sink. */
 private predicate directReach(PathNodeImpl n) {
-  n instanceof PathNodeSink or directReach(n.getANonHiddenSuccessor())
+  n instanceof PathNodeSink or
+  n instanceof PathNodeSinkGroup or
+  directReach(n.getANonHiddenSuccessor())
 }
 
 /** Holds if `n` can reach a sink or is used in a subpath that can reach a sink. */
@@ -3015,6 +3051,12 @@ class PathNode instanceof PathNodeImpl {
 
   /** Holds if this node is a source. */
   final predicate isSource() { super.isSource() }
+
+  /** Holds if this node is a grouping of source nodes. */
+  final predicate isSourceGroup(string group) { this = TPathNodeSourceGroup(group, _) }
+
+  /** Holds if this node is a grouping of sink nodes. */
+  final predicate isSinkGroup(string group) { this = TPathNodeSinkGroup(group, _) }
 }
 
 /**
@@ -3136,9 +3178,66 @@ private class PathNodeSink extends PathNodeImpl, TPathNodeSink {
 
   override Configuration getConfiguration() { result = config }
 
-  override PathNodeImpl getASuccessorImpl() { none() }
+  override PathNodeImpl getASuccessorImpl() {
+    result = TPathNodeSinkGroup(this.getSinkGroup(), config)
+  }
 
   override predicate isSource() { sourceNode(node, state, config) }
+
+  string getSinkGroup() { config.sinkGrouping(node.asNode(), result) }
+}
+
+private class PathNodeSourceGroup extends PathNodeImpl, TPathNodeSourceGroup {
+  string sourceGroup;
+  Configuration config;
+
+  PathNodeSourceGroup() { this = TPathNodeSourceGroup(sourceGroup, config) }
+
+  override NodeEx getNodeEx() { none() }
+
+  override FlowState getState() { none() }
+
+  override Configuration getConfiguration() { result = config }
+
+  override PathNodeImpl getASuccessorImpl() {
+    result.getSourceGroup() = sourceGroup and
+    result.getConfiguration() = config
+  }
+
+  override predicate isSource() { none() }
+
+  override string toString() { result = sourceGroup }
+
+  override predicate hasLocationInfo(
+    string filepath, int startline, int startcolumn, int endline, int endcolumn
+  ) {
+    filepath = "" and startline = 0 and startcolumn = 0 and endline = 0 and endcolumn = 0
+  }
+}
+
+private class PathNodeSinkGroup extends PathNodeImpl, TPathNodeSinkGroup {
+  string sinkGroup;
+  Configuration config;
+
+  PathNodeSinkGroup() { this = TPathNodeSinkGroup(sinkGroup, config) }
+
+  override NodeEx getNodeEx() { none() }
+
+  override FlowState getState() { none() }
+
+  override Configuration getConfiguration() { result = config }
+
+  override PathNodeImpl getASuccessorImpl() { none() }
+
+  override predicate isSource() { none() }
+
+  override string toString() { result = sinkGroup }
+
+  override predicate hasLocationInfo(
+    string filepath, int startline, int startcolumn, int endline, int endcolumn
+  ) {
+    filepath = "" and startline = 0 and startcolumn = 0 and endline = 0 and endcolumn = 0
+  }
 }
 
 private predicate pathNode(
@@ -3495,6 +3594,15 @@ private module Subpaths {
  * Will only have results if `configuration` has non-empty sources and
  * sinks.
  */
+private predicate hasFlowPath(
+  PathNodeImpl flowsource, PathNodeImpl flowsink, Configuration configuration
+) {
+  flowsource.isFlowSource() and
+  flowsource.getConfiguration() = configuration and
+  (flowsource = flowsink or pathSuccPlus(flowsource, flowsink)) and
+  flowsink.isFlowSink()
+}
+
 private predicate flowsTo(
   PathNodeImpl flowsource, PathNodeSink flowsink, Node source, Node sink,
   Configuration configuration
diff --git a/cpp/ql/lib/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl3.qll b/cpp/ql/lib/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl3.qll
index 2dde1c2819d..3c41b1876dc 100644
--- a/cpp/ql/lib/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl3.qll
+++ b/cpp/ql/lib/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl3.qll
@@ -147,6 +147,12 @@ abstract class Configuration extends string {
    */
   FlowFeature getAFeature() { none() }
 
+  /** Holds if sources should be grouped in the result of `hasFlowPath`. */
+  predicate sourceGrouping(Node source, string sourceGroup) { none() }
+
+  /** Holds if sinks should be grouped in the result of `hasFlowPath`. */
+  predicate sinkGrouping(Node sink, string sinkGroup) { none() }
+
   /**
    * Holds if data may flow from `source` to `sink` for this configuration.
    */
@@ -158,7 +164,7 @@ abstract class Configuration extends string {
    * The corresponding paths are generated from the end-points and the graph
    * included in the module `PathGraph`.
    */
-  predicate hasFlowPath(PathNode source, PathNode sink) { flowsTo(source, sink, _, _, this) }
+  predicate hasFlowPath(PathNode source, PathNode sink) { hasFlowPath(source, sink, this) }
 
   /**
    * Holds if data may flow from some source to `sink` for this configuration.
@@ -2712,6 +2718,18 @@ private newtype TPathNode =
       state = sink.getState() and
       config = sink.getConfiguration()
     )
+  } or
+  TPathNodeSourceGroup(string sourceGroup, Configuration config) {
+    exists(PathNodeImpl source |
+      sourceGroup = source.getSourceGroup() and
+      config = source.getConfiguration()
+    )
+  } or
+  TPathNodeSinkGroup(string sinkGroup, Configuration config) {
+    exists(PathNodeSink sink |
+      sinkGroup = sink.getSinkGroup() and
+      config = sink.getConfiguration()
+    )
   }
 
 /**
@@ -2920,6 +2938,22 @@ abstract private class PathNodeImpl extends TPathNode {
     )
   }
 
+  string getSourceGroup() {
+    this.isSource() and
+    this.getConfiguration().sourceGrouping(this.getNodeEx().asNode(), result)
+  }
+
+  predicate isFlowSource() {
+    this.isSource() and not exists(this.getSourceGroup())
+    or
+    this instanceof PathNodeSourceGroup
+  }
+
+  predicate isFlowSink() {
+    this = any(PathNodeSink sink | not exists(sink.getSinkGroup())) or
+    this instanceof PathNodeSinkGroup
+  }
+
   private string ppAp() {
     this instanceof PathNodeSink and result = ""
     or
@@ -2959,7 +2993,9 @@ abstract private class PathNodeImpl extends TPathNode {
 
 /** Holds if `n` can reach a sink. */
 private predicate directReach(PathNodeImpl n) {
-  n instanceof PathNodeSink or directReach(n.getANonHiddenSuccessor())
+  n instanceof PathNodeSink or
+  n instanceof PathNodeSinkGroup or
+  directReach(n.getANonHiddenSuccessor())
 }
 
 /** Holds if `n` can reach a sink or is used in a subpath that can reach a sink. */
@@ -3015,6 +3051,12 @@ class PathNode instanceof PathNodeImpl {
 
   /** Holds if this node is a source. */
   final predicate isSource() { super.isSource() }
+
+  /** Holds if this node is a grouping of source nodes. */
+  final predicate isSourceGroup(string group) { this = TPathNodeSourceGroup(group, _) }
+
+  /** Holds if this node is a grouping of sink nodes. */
+  final predicate isSinkGroup(string group) { this = TPathNodeSinkGroup(group, _) }
 }
 
 /**
@@ -3136,9 +3178,66 @@ private class PathNodeSink extends PathNodeImpl, TPathNodeSink {
 
   override Configuration getConfiguration() { result = config }
 
-  override PathNodeImpl getASuccessorImpl() { none() }
+  override PathNodeImpl getASuccessorImpl() {
+    result = TPathNodeSinkGroup(this.getSinkGroup(), config)
+  }
 
   override predicate isSource() { sourceNode(node, state, config) }
+
+  string getSinkGroup() { config.sinkGrouping(node.asNode(), result) }
+}
+
+private class PathNodeSourceGroup extends PathNodeImpl, TPathNodeSourceGroup {
+  string sourceGroup;
+  Configuration config;
+
+  PathNodeSourceGroup() { this = TPathNodeSourceGroup(sourceGroup, config) }
+
+  override NodeEx getNodeEx() { none() }
+
+  override FlowState getState() { none() }
+
+  override Configuration getConfiguration() { result = config }
+
+  override PathNodeImpl getASuccessorImpl() {
+    result.getSourceGroup() = sourceGroup and
+    result.getConfiguration() = config
+  }
+
+  override predicate isSource() { none() }
+
+  override string toString() { result = sourceGroup }
+
+  override predicate hasLocationInfo(
+    string filepath, int startline, int startcolumn, int endline, int endcolumn
+  ) {
+    filepath = "" and startline = 0 and startcolumn = 0 and endline = 0 and endcolumn = 0
+  }
+}
+
+private class PathNodeSinkGroup extends PathNodeImpl, TPathNodeSinkGroup {
+  string sinkGroup;
+  Configuration config;
+
+  PathNodeSinkGroup() { this = TPathNodeSinkGroup(sinkGroup, config) }
+
+  override NodeEx getNodeEx() { none() }
+
+  override FlowState getState() { none() }
+
+  override Configuration getConfiguration() { result = config }
+
+  override PathNodeImpl getASuccessorImpl() { none() }
+
+  override predicate isSource() { none() }
+
+  override string toString() { result = sinkGroup }
+
+  override predicate hasLocationInfo(
+    string filepath, int startline, int startcolumn, int endline, int endcolumn
+  ) {
+    filepath = "" and startline = 0 and startcolumn = 0 and endline = 0 and endcolumn = 0
+  }
 }
 
 private predicate pathNode(
@@ -3495,6 +3594,15 @@ private module Subpaths {
  * Will only have results if `configuration` has non-empty sources and
  * sinks.
  */
+private predicate hasFlowPath(
+  PathNodeImpl flowsource, PathNodeImpl flowsink, Configuration configuration
+) {
+  flowsource.isFlowSource() and
+  flowsource.getConfiguration() = configuration and
+  (flowsource = flowsink or pathSuccPlus(flowsource, flowsink)) and
+  flowsink.isFlowSink()
+}
+
 private predicate flowsTo(
   PathNodeImpl flowsource, PathNodeSink flowsink, Node source, Node sink,
   Configuration configuration
diff --git a/cpp/ql/lib/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl4.qll b/cpp/ql/lib/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl4.qll
index 2dde1c2819d..3c41b1876dc 100644
--- a/cpp/ql/lib/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl4.qll
+++ b/cpp/ql/lib/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl4.qll
@@ -147,6 +147,12 @@ abstract class Configuration extends string {
    */
   FlowFeature getAFeature() { none() }
 
+  /** Holds if sources should be grouped in the result of `hasFlowPath`. */
+  predicate sourceGrouping(Node source, string sourceGroup) { none() }
+
+  /** Holds if sinks should be grouped in the result of `hasFlowPath`. */
+  predicate sinkGrouping(Node sink, string sinkGroup) { none() }
+
   /**
    * Holds if data may flow from `source` to `sink` for this configuration.
    */
@@ -158,7 +164,7 @@ abstract class Configuration extends string {
    * The corresponding paths are generated from the end-points and the graph
    * included in the module `PathGraph`.
    */
-  predicate hasFlowPath(PathNode source, PathNode sink) { flowsTo(source, sink, _, _, this) }
+  predicate hasFlowPath(PathNode source, PathNode sink) { hasFlowPath(source, sink, this) }
 
   /**
    * Holds if data may flow from some source to `sink` for this configuration.
@@ -2712,6 +2718,18 @@ private newtype TPathNode =
       state = sink.getState() and
       config = sink.getConfiguration()
     )
+  } or
+  TPathNodeSourceGroup(string sourceGroup, Configuration config) {
+    exists(PathNodeImpl source |
+      sourceGroup = source.getSourceGroup() and
+      config = source.getConfiguration()
+    )
+  } or
+  TPathNodeSinkGroup(string sinkGroup, Configuration config) {
+    exists(PathNodeSink sink |
+      sinkGroup = sink.getSinkGroup() and
+      config = sink.getConfiguration()
+    )
   }
 
 /**
@@ -2920,6 +2938,22 @@ abstract private class PathNodeImpl extends TPathNode {
     )
   }
 
+  string getSourceGroup() {
+    this.isSource() and
+    this.getConfiguration().sourceGrouping(this.getNodeEx().asNode(), result)
+  }
+
+  predicate isFlowSource() {
+    this.isSource() and not exists(this.getSourceGroup())
+    or
+    this instanceof PathNodeSourceGroup
+  }
+
+  predicate isFlowSink() {
+    this = any(PathNodeSink sink | not exists(sink.getSinkGroup())) or
+    this instanceof PathNodeSinkGroup
+  }
+
   private string ppAp() {
     this instanceof PathNodeSink and result = ""
     or
@@ -2959,7 +2993,9 @@ abstract private class PathNodeImpl extends TPathNode {
 
 /** Holds if `n` can reach a sink. */
 private predicate directReach(PathNodeImpl n) {
-  n instanceof PathNodeSink or directReach(n.getANonHiddenSuccessor())
+  n instanceof PathNodeSink or
+  n instanceof PathNodeSinkGroup or
+  directReach(n.getANonHiddenSuccessor())
 }
 
 /** Holds if `n` can reach a sink or is used in a subpath that can reach a sink. */
@@ -3015,6 +3051,12 @@ class PathNode instanceof PathNodeImpl {
 
   /** Holds if this node is a source. */
   final predicate isSource() { super.isSource() }
+
+  /** Holds if this node is a grouping of source nodes. */
+  final predicate isSourceGroup(string group) { this = TPathNodeSourceGroup(group, _) }
+
+  /** Holds if this node is a grouping of sink nodes. */
+  final predicate isSinkGroup(string group) { this = TPathNodeSinkGroup(group, _) }
 }
 
 /**
@@ -3136,9 +3178,66 @@ private class PathNodeSink extends PathNodeImpl, TPathNodeSink {
 
   override Configuration getConfiguration() { result = config }
 
-  override PathNodeImpl getASuccessorImpl() { none() }
+  override PathNodeImpl getASuccessorImpl() {
+    result = TPathNodeSinkGroup(this.getSinkGroup(), config)
+  }
 
   override predicate isSource() { sourceNode(node, state, config) }
+
+  string getSinkGroup() { config.sinkGrouping(node.asNode(), result) }
+}
+
+private class PathNodeSourceGroup extends PathNodeImpl, TPathNodeSourceGroup {
+  string sourceGroup;
+  Configuration config;
+
+  PathNodeSourceGroup() { this = TPathNodeSourceGroup(sourceGroup, config) }
+
+  override NodeEx getNodeEx() { none() }
+
+  override FlowState getState() { none() }
+
+  override Configuration getConfiguration() { result = config }
+
+  override PathNodeImpl getASuccessorImpl() {
+    result.getSourceGroup() = sourceGroup and
+    result.getConfiguration() = config
+  }
+
+  override predicate isSource() { none() }
+
+  override string toString() { result = sourceGroup }
+
+  override predicate hasLocationInfo(
+    string filepath, int startline, int startcolumn, int endline, int endcolumn
+  ) {
+    filepath = "" and startline = 0 and startcolumn = 0 and endline = 0 and endcolumn = 0
+  }
+}
+
+private class PathNodeSinkGroup extends PathNodeImpl, TPathNodeSinkGroup {
+  string sinkGroup;
+  Configuration config;
+
+  PathNodeSinkGroup() { this = TPathNodeSinkGroup(sinkGroup, config) }
+
+  override NodeEx getNodeEx() { none() }
+
+  override FlowState getState() { none() }
+
+  override Configuration getConfiguration() { result = config }
+
+  override PathNodeImpl getASuccessorImpl() { none() }
+
+  override predicate isSource() { none() }
+
+  override string toString() { result = sinkGroup }
+
+  override predicate hasLocationInfo(
+    string filepath, int startline, int startcolumn, int endline, int endcolumn
+  ) {
+    filepath = "" and startline = 0 and startcolumn = 0 and endline = 0 and endcolumn = 0
+  }
 }
 
 private predicate pathNode(
@@ -3495,6 +3594,15 @@ private module Subpaths {
  * Will only have results if `configuration` has non-empty sources and
  * sinks.
  */
+private predicate hasFlowPath(
+  PathNodeImpl flowsource, PathNodeImpl flowsink, Configuration configuration
+) {
+  flowsource.isFlowSource() and
+  flowsource.getConfiguration() = configuration and
+  (flowsource = flowsink or pathSuccPlus(flowsource, flowsink)) and
+  flowsink.isFlowSink()
+}
+
 private predicate flowsTo(
   PathNodeImpl flowsource, PathNodeSink flowsink, Node source, Node sink,
   Configuration configuration
diff --git a/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImpl.qll b/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImpl.qll
index 2dde1c2819d..3c41b1876dc 100644
--- a/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImpl.qll
+++ b/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImpl.qll
@@ -147,6 +147,12 @@ abstract class Configuration extends string {
    */
   FlowFeature getAFeature() { none() }
 
+  /** Holds if sources should be grouped in the result of `hasFlowPath`. */
+  predicate sourceGrouping(Node source, string sourceGroup) { none() }
+
+  /** Holds if sinks should be grouped in the result of `hasFlowPath`. */
+  predicate sinkGrouping(Node sink, string sinkGroup) { none() }
+
   /**
    * Holds if data may flow from `source` to `sink` for this configuration.
    */
@@ -158,7 +164,7 @@ abstract class Configuration extends string {
    * The corresponding paths are generated from the end-points and the graph
    * included in the module `PathGraph`.
    */
-  predicate hasFlowPath(PathNode source, PathNode sink) { flowsTo(source, sink, _, _, this) }
+  predicate hasFlowPath(PathNode source, PathNode sink) { hasFlowPath(source, sink, this) }
 
   /**
    * Holds if data may flow from some source to `sink` for this configuration.
@@ -2712,6 +2718,18 @@ private newtype TPathNode =
       state = sink.getState() and
       config = sink.getConfiguration()
     )
+  } or
+  TPathNodeSourceGroup(string sourceGroup, Configuration config) {
+    exists(PathNodeImpl source |
+      sourceGroup = source.getSourceGroup() and
+      config = source.getConfiguration()
+    )
+  } or
+  TPathNodeSinkGroup(string sinkGroup, Configuration config) {
+    exists(PathNodeSink sink |
+      sinkGroup = sink.getSinkGroup() and
+      config = sink.getConfiguration()
+    )
   }
 
 /**
@@ -2920,6 +2938,22 @@ abstract private class PathNodeImpl extends TPathNode {
     )
   }
 
+  string getSourceGroup() {
+    this.isSource() and
+    this.getConfiguration().sourceGrouping(this.getNodeEx().asNode(), result)
+  }
+
+  predicate isFlowSource() {
+    this.isSource() and not exists(this.getSourceGroup())
+    or
+    this instanceof PathNodeSourceGroup
+  }
+
+  predicate isFlowSink() {
+    this = any(PathNodeSink sink | not exists(sink.getSinkGroup())) or
+    this instanceof PathNodeSinkGroup
+  }
+
   private string ppAp() {
     this instanceof PathNodeSink and result = ""
     or
@@ -2959,7 +2993,9 @@ abstract private class PathNodeImpl extends TPathNode {
 
 /** Holds if `n` can reach a sink. */
 private predicate directReach(PathNodeImpl n) {
-  n instanceof PathNodeSink or directReach(n.getANonHiddenSuccessor())
+  n instanceof PathNodeSink or
+  n instanceof PathNodeSinkGroup or
+  directReach(n.getANonHiddenSuccessor())
 }
 
 /** Holds if `n` can reach a sink or is used in a subpath that can reach a sink. */
@@ -3015,6 +3051,12 @@ class PathNode instanceof PathNodeImpl {
 
   /** Holds if this node is a source. */
   final predicate isSource() { super.isSource() }
+
+  /** Holds if this node is a grouping of source nodes. */
+  final predicate isSourceGroup(string group) { this = TPathNodeSourceGroup(group, _) }
+
+  /** Holds if this node is a grouping of sink nodes. */
+  final predicate isSinkGroup(string group) { this = TPathNodeSinkGroup(group, _) }
 }
 
 /**
@@ -3136,9 +3178,66 @@ private class PathNodeSink extends PathNodeImpl, TPathNodeSink {
 
   override Configuration getConfiguration() { result = config }
 
-  override PathNodeImpl getASuccessorImpl() { none() }
+  override PathNodeImpl getASuccessorImpl() {
+    result = TPathNodeSinkGroup(this.getSinkGroup(), config)
+  }
 
   override predicate isSource() { sourceNode(node, state, config) }
+
+  string getSinkGroup() { config.sinkGrouping(node.asNode(), result) }
+}
+
+private class PathNodeSourceGroup extends PathNodeImpl, TPathNodeSourceGroup {
+  string sourceGroup;
+  Configuration config;
+
+  PathNodeSourceGroup() { this = TPathNodeSourceGroup(sourceGroup, config) }
+
+  override NodeEx getNodeEx() { none() }
+
+  override FlowState getState() { none() }
+
+  override Configuration getConfiguration() { result = config }
+
+  override PathNodeImpl getASuccessorImpl() {
+    result.getSourceGroup() = sourceGroup and
+    result.getConfiguration() = config
+  }
+
+  override predicate isSource() { none() }
+
+  override string toString() { result = sourceGroup }
+
+  override predicate hasLocationInfo(
+    string filepath, int startline, int startcolumn, int endline, int endcolumn
+  ) {
+    filepath = "" and startline = 0 and startcolumn = 0 and endline = 0 and endcolumn = 0
+  }
+}
+
+private class PathNodeSinkGroup extends PathNodeImpl, TPathNodeSinkGroup {
+  string sinkGroup;
+  Configuration config;
+
+  PathNodeSinkGroup() { this = TPathNodeSinkGroup(sinkGroup, config) }
+
+  override NodeEx getNodeEx() { none() }
+
+  override FlowState getState() { none() }
+
+  override Configuration getConfiguration() { result = config }
+
+  override PathNodeImpl getASuccessorImpl() { none() }
+
+  override predicate isSource() { none() }
+
+  override string toString() { result = sinkGroup }
+
+  override predicate hasLocationInfo(
+    string filepath, int startline, int startcolumn, int endline, int endcolumn
+  ) {
+    filepath = "" and startline = 0 and startcolumn = 0 and endline = 0 and endcolumn = 0
+  }
 }
 
 private predicate pathNode(
@@ -3495,6 +3594,15 @@ private module Subpaths {
  * Will only have results if `configuration` has non-empty sources and
  * sinks.
  */
+private predicate hasFlowPath(
+  PathNodeImpl flowsource, PathNodeImpl flowsink, Configuration configuration
+) {
+  flowsource.isFlowSource() and
+  flowsource.getConfiguration() = configuration and
+  (flowsource = flowsink or pathSuccPlus(flowsource, flowsink)) and
+  flowsink.isFlowSink()
+}
+
 private predicate flowsTo(
   PathNodeImpl flowsource, PathNodeSink flowsink, Node source, Node sink,
   Configuration configuration
diff --git a/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImpl2.qll b/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImpl2.qll
index 2dde1c2819d..3c41b1876dc 100644
--- a/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImpl2.qll
+++ b/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImpl2.qll
@@ -147,6 +147,12 @@ abstract class Configuration extends string {
    */
   FlowFeature getAFeature() { none() }
 
+  /** Holds if sources should be grouped in the result of `hasFlowPath`. */
+  predicate sourceGrouping(Node source, string sourceGroup) { none() }
+
+  /** Holds if sinks should be grouped in the result of `hasFlowPath`. */
+  predicate sinkGrouping(Node sink, string sinkGroup) { none() }
+
   /**
    * Holds if data may flow from `source` to `sink` for this configuration.
    */
@@ -158,7 +164,7 @@ abstract class Configuration extends string {
    * The corresponding paths are generated from the end-points and the graph
    * included in the module `PathGraph`.
    */
-  predicate hasFlowPath(PathNode source, PathNode sink) { flowsTo(source, sink, _, _, this) }
+  predicate hasFlowPath(PathNode source, PathNode sink) { hasFlowPath(source, sink, this) }
 
   /**
    * Holds if data may flow from some source to `sink` for this configuration.
@@ -2712,6 +2718,18 @@ private newtype TPathNode =
       state = sink.getState() and
       config = sink.getConfiguration()
     )
+  } or
+  TPathNodeSourceGroup(string sourceGroup, Configuration config) {
+    exists(PathNodeImpl source |
+      sourceGroup = source.getSourceGroup() and
+      config = source.getConfiguration()
+    )
+  } or
+  TPathNodeSinkGroup(string sinkGroup, Configuration config) {
+    exists(PathNodeSink sink |
+      sinkGroup = sink.getSinkGroup() and
+      config = sink.getConfiguration()
+    )
   }
 
 /**
@@ -2920,6 +2938,22 @@ abstract private class PathNodeImpl extends TPathNode {
     )
   }
 
+  string getSourceGroup() {
+    this.isSource() and
+    this.getConfiguration().sourceGrouping(this.getNodeEx().asNode(), result)
+  }
+
+  predicate isFlowSource() {
+    this.isSource() and not exists(this.getSourceGroup())
+    or
+    this instanceof PathNodeSourceGroup
+  }
+
+  predicate isFlowSink() {
+    this = any(PathNodeSink sink | not exists(sink.getSinkGroup())) or
+    this instanceof PathNodeSinkGroup
+  }
+
   private string ppAp() {
     this instanceof PathNodeSink and result = ""
     or
@@ -2959,7 +2993,9 @@ abstract private class PathNodeImpl extends TPathNode {
 
 /** Holds if `n` can reach a sink. */
 private predicate directReach(PathNodeImpl n) {
-  n instanceof PathNodeSink or directReach(n.getANonHiddenSuccessor())
+  n instanceof PathNodeSink or
+  n instanceof PathNodeSinkGroup or
+  directReach(n.getANonHiddenSuccessor())
 }
 
 /** Holds if `n` can reach a sink or is used in a subpath that can reach a sink. */
@@ -3015,6 +3051,12 @@ class PathNode instanceof PathNodeImpl {
 
   /** Holds if this node is a source. */
   final predicate isSource() { super.isSource() }
+
+  /** Holds if this node is a grouping of source nodes. */
+  final predicate isSourceGroup(string group) { this = TPathNodeSourceGroup(group, _) }
+
+  /** Holds if this node is a grouping of sink nodes. */
+  final predicate isSinkGroup(string group) { this = TPathNodeSinkGroup(group, _) }
 }
 
 /**
@@ -3136,9 +3178,66 @@ private class PathNodeSink extends PathNodeImpl, TPathNodeSink {
 
   override Configuration getConfiguration() { result = config }
 
-  override PathNodeImpl getASuccessorImpl() { none() }
+  override PathNodeImpl getASuccessorImpl() {
+    result = TPathNodeSinkGroup(this.getSinkGroup(), config)
+  }
 
   override predicate isSource() { sourceNode(node, state, config) }
+
+  string getSinkGroup() { config.sinkGrouping(node.asNode(), result) }
+}
+
+private class PathNodeSourceGroup extends PathNodeImpl, TPathNodeSourceGroup {
+  string sourceGroup;
+  Configuration config;
+
+  PathNodeSourceGroup() { this = TPathNodeSourceGroup(sourceGroup, config) }
+
+  override NodeEx getNodeEx() { none() }
+
+  override FlowState getState() { none() }
+
+  override Configuration getConfiguration() { result = config }
+
+  override PathNodeImpl getASuccessorImpl() {
+    result.getSourceGroup() = sourceGroup and
+    result.getConfiguration() = config
+  }
+
+  override predicate isSource() { none() }
+
+  override string toString() { result = sourceGroup }
+
+  override predicate hasLocationInfo(
+    string filepath, int startline, int startcolumn, int endline, int endcolumn
+  ) {
+    filepath = "" and startline = 0 and startcolumn = 0 and endline = 0 and endcolumn = 0
+  }
+}
+
+private class PathNodeSinkGroup extends PathNodeImpl, TPathNodeSinkGroup {
+  string sinkGroup;
+  Configuration config;
+
+  PathNodeSinkGroup() { this = TPathNodeSinkGroup(sinkGroup, config) }
+
+  override NodeEx getNodeEx() { none() }
+
+  override FlowState getState() { none() }
+
+  override Configuration getConfiguration() { result = config }
+
+  override PathNodeImpl getASuccessorImpl() { none() }
+
+  override predicate isSource() { none() }
+
+  override string toString() { result = sinkGroup }
+
+  override predicate hasLocationInfo(
+    string filepath, int startline, int startcolumn, int endline, int endcolumn
+  ) {
+    filepath = "" and startline = 0 and startcolumn = 0 and endline = 0 and endcolumn = 0
+  }
 }
 
 private predicate pathNode(
@@ -3495,6 +3594,15 @@ private module Subpaths {
  * Will only have results if `configuration` has non-empty sources and
  * sinks.
  */
+private predicate hasFlowPath(
+  PathNodeImpl flowsource, PathNodeImpl flowsink, Configuration configuration
+) {
+  flowsource.isFlowSource() and
+  flowsource.getConfiguration() = configuration and
+  (flowsource = flowsink or pathSuccPlus(flowsource, flowsink)) and
+  flowsink.isFlowSink()
+}
+
 private predicate flowsTo(
   PathNodeImpl flowsource, PathNodeSink flowsink, Node source, Node sink,
   Configuration configuration
diff --git a/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImpl3.qll b/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImpl3.qll
index 2dde1c2819d..3c41b1876dc 100644
--- a/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImpl3.qll
+++ b/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImpl3.qll
@@ -147,6 +147,12 @@ abstract class Configuration extends string {
    */
   FlowFeature getAFeature() { none() }
 
+  /** Holds if sources should be grouped in the result of `hasFlowPath`. */
+  predicate sourceGrouping(Node source, string sourceGroup) { none() }
+
+  /** Holds if sinks should be grouped in the result of `hasFlowPath`. */
+  predicate sinkGrouping(Node sink, string sinkGroup) { none() }
+
   /**
    * Holds if data may flow from `source` to `sink` for this configuration.
    */
@@ -158,7 +164,7 @@ abstract class Configuration extends string {
    * The corresponding paths are generated from the end-points and the graph
    * included in the module `PathGraph`.
    */
-  predicate hasFlowPath(PathNode source, PathNode sink) { flowsTo(source, sink, _, _, this) }
+  predicate hasFlowPath(PathNode source, PathNode sink) { hasFlowPath(source, sink, this) }
 
   /**
    * Holds if data may flow from some source to `sink` for this configuration.
@@ -2712,6 +2718,18 @@ private newtype TPathNode =
       state = sink.getState() and
       config = sink.getConfiguration()
     )
+  } or
+  TPathNodeSourceGroup(string sourceGroup, Configuration config) {
+    exists(PathNodeImpl source |
+      sourceGroup = source.getSourceGroup() and
+      config = source.getConfiguration()
+    )
+  } or
+  TPathNodeSinkGroup(string sinkGroup, Configuration config) {
+    exists(PathNodeSink sink |
+      sinkGroup = sink.getSinkGroup() and
+      config = sink.getConfiguration()
+    )
   }
 
 /**
@@ -2920,6 +2938,22 @@ abstract private class PathNodeImpl extends TPathNode {
     )
   }
 
+  string getSourceGroup() {
+    this.isSource() and
+    this.getConfiguration().sourceGrouping(this.getNodeEx().asNode(), result)
+  }
+
+  predicate isFlowSource() {
+    this.isSource() and not exists(this.getSourceGroup())
+    or
+    this instanceof PathNodeSourceGroup
+  }
+
+  predicate isFlowSink() {
+    this = any(PathNodeSink sink | not exists(sink.getSinkGroup())) or
+    this instanceof PathNodeSinkGroup
+  }
+
   private string ppAp() {
     this instanceof PathNodeSink and result = ""
     or
@@ -2959,7 +2993,9 @@ abstract private class PathNodeImpl extends TPathNode {
 
 /** Holds if `n` can reach a sink. */
 private predicate directReach(PathNodeImpl n) {
-  n instanceof PathNodeSink or directReach(n.getANonHiddenSuccessor())
+  n instanceof PathNodeSink or
+  n instanceof PathNodeSinkGroup or
+  directReach(n.getANonHiddenSuccessor())
 }
 
 /** Holds if `n` can reach a sink or is used in a subpath that can reach a sink. */
@@ -3015,6 +3051,12 @@ class PathNode instanceof PathNodeImpl {
 
   /** Holds if this node is a source. */
   final predicate isSource() { super.isSource() }
+
+  /** Holds if this node is a grouping of source nodes. */
+  final predicate isSourceGroup(string group) { this = TPathNodeSourceGroup(group, _) }
+
+  /** Holds if this node is a grouping of sink nodes. */
+  final predicate isSinkGroup(string group) { this = TPathNodeSinkGroup(group, _) }
 }
 
 /**
@@ -3136,9 +3178,66 @@ private class PathNodeSink extends PathNodeImpl, TPathNodeSink {
 
   override Configuration getConfiguration() { result = config }
 
-  override PathNodeImpl getASuccessorImpl() { none() }
+  override PathNodeImpl getASuccessorImpl() {
+    result = TPathNodeSinkGroup(this.getSinkGroup(), config)
+  }
 
   override predicate isSource() { sourceNode(node, state, config) }
+
+  string getSinkGroup() { config.sinkGrouping(node.asNode(), result) }
+}
+
+private class PathNodeSourceGroup extends PathNodeImpl, TPathNodeSourceGroup {
+  string sourceGroup;
+  Configuration config;
+
+  PathNodeSourceGroup() { this = TPathNodeSourceGroup(sourceGroup, config) }
+
+  override NodeEx getNodeEx() { none() }
+
+  override FlowState getState() { none() }
+
+  override Configuration getConfiguration() { result = config }
+
+  override PathNodeImpl getASuccessorImpl() {
+    result.getSourceGroup() = sourceGroup and
+    result.getConfiguration() = config
+  }
+
+  override predicate isSource() { none() }
+
+  override string toString() { result = sourceGroup }
+
+  override predicate hasLocationInfo(
+    string filepath, int startline, int startcolumn, int endline, int endcolumn
+  ) {
+    filepath = "" and startline = 0 and startcolumn = 0 and endline = 0 and endcolumn = 0
+  }
+}
+
+private class PathNodeSinkGroup extends PathNodeImpl, TPathNodeSinkGroup {
+  string sinkGroup;
+  Configuration config;
+
+  PathNodeSinkGroup() { this = TPathNodeSinkGroup(sinkGroup, config) }
+
+  override NodeEx getNodeEx() { none() }
+
+  override FlowState getState() { none() }
+
+  override Configuration getConfiguration() { result = config }
+
+  override PathNodeImpl getASuccessorImpl() { none() }
+
+  override predicate isSource() { none() }
+
+  override string toString() { result = sinkGroup }
+
+  override predicate hasLocationInfo(
+    string filepath, int startline, int startcolumn, int endline, int endcolumn
+  ) {
+    filepath = "" and startline = 0 and startcolumn = 0 and endline = 0 and endcolumn = 0
+  }
 }
 
 private predicate pathNode(
@@ -3495,6 +3594,15 @@ private module Subpaths {
  * Will only have results if `configuration` has non-empty sources and
  * sinks.
  */
+private predicate hasFlowPath(
+  PathNodeImpl flowsource, PathNodeImpl flowsink, Configuration configuration
+) {
+  flowsource.isFlowSource() and
+  flowsource.getConfiguration() = configuration and
+  (flowsource = flowsink or pathSuccPlus(flowsource, flowsink)) and
+  flowsink.isFlowSink()
+}
+
 private predicate flowsTo(
   PathNodeImpl flowsource, PathNodeSink flowsink, Node source, Node sink,
   Configuration configuration
diff --git a/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImpl4.qll b/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImpl4.qll
index 2dde1c2819d..3c41b1876dc 100644
--- a/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImpl4.qll
+++ b/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImpl4.qll
@@ -147,6 +147,12 @@ abstract class Configuration extends string {
    */
   FlowFeature getAFeature() { none() }
 
+  /** Holds if sources should be grouped in the result of `hasFlowPath`. */
+  predicate sourceGrouping(Node source, string sourceGroup) { none() }
+
+  /** Holds if sinks should be grouped in the result of `hasFlowPath`. */
+  predicate sinkGrouping(Node sink, string sinkGroup) { none() }
+
   /**
    * Holds if data may flow from `source` to `sink` for this configuration.
    */
@@ -158,7 +164,7 @@ abstract class Configuration extends string {
    * The corresponding paths are generated from the end-points and the graph
    * included in the module `PathGraph`.
    */
-  predicate hasFlowPath(PathNode source, PathNode sink) { flowsTo(source, sink, _, _, this) }
+  predicate hasFlowPath(PathNode source, PathNode sink) { hasFlowPath(source, sink, this) }
 
   /**
    * Holds if data may flow from some source to `sink` for this configuration.
@@ -2712,6 +2718,18 @@ private newtype TPathNode =
       state = sink.getState() and
       config = sink.getConfiguration()
     )
+  } or
+  TPathNodeSourceGroup(string sourceGroup, Configuration config) {
+    exists(PathNodeImpl source |
+      sourceGroup = source.getSourceGroup() and
+      config = source.getConfiguration()
+    )
+  } or
+  TPathNodeSinkGroup(string sinkGroup, Configuration config) {
+    exists(PathNodeSink sink |
+      sinkGroup = sink.getSinkGroup() and
+      config = sink.getConfiguration()
+    )
   }
 
 /**
@@ -2920,6 +2938,22 @@ abstract private class PathNodeImpl extends TPathNode {
     )
   }
 
+  string getSourceGroup() {
+    this.isSource() and
+    this.getConfiguration().sourceGrouping(this.getNodeEx().asNode(), result)
+  }
+
+  predicate isFlowSource() {
+    this.isSource() and not exists(this.getSourceGroup())
+    or
+    this instanceof PathNodeSourceGroup
+  }
+
+  predicate isFlowSink() {
+    this = any(PathNodeSink sink | not exists(sink.getSinkGroup())) or
+    this instanceof PathNodeSinkGroup
+  }
+
   private string ppAp() {
     this instanceof PathNodeSink and result = ""
     or
@@ -2959,7 +2993,9 @@ abstract private class PathNodeImpl extends TPathNode {
 
 /** Holds if `n` can reach a sink. */
 private predicate directReach(PathNodeImpl n) {
-  n instanceof PathNodeSink or directReach(n.getANonHiddenSuccessor())
+  n instanceof PathNodeSink or
+  n instanceof PathNodeSinkGroup or
+  directReach(n.getANonHiddenSuccessor())
 }
 
 /** Holds if `n` can reach a sink or is used in a subpath that can reach a sink. */
@@ -3015,6 +3051,12 @@ class PathNode instanceof PathNodeImpl {
 
   /** Holds if this node is a source. */
   final predicate isSource() { super.isSource() }
+
+  /** Holds if this node is a grouping of source nodes. */
+  final predicate isSourceGroup(string group) { this = TPathNodeSourceGroup(group, _) }
+
+  /** Holds if this node is a grouping of sink nodes. */
+  final predicate isSinkGroup(string group) { this = TPathNodeSinkGroup(group, _) }
 }
 
 /**
@@ -3136,9 +3178,66 @@ private class PathNodeSink extends PathNodeImpl, TPathNodeSink {
 
   override Configuration getConfiguration() { result = config }
 
-  override PathNodeImpl getASuccessorImpl() { none() }
+  override PathNodeImpl getASuccessorImpl() {
+    result = TPathNodeSinkGroup(this.getSinkGroup(), config)
+  }
 
   override predicate isSource() { sourceNode(node, state, config) }
+
+  string getSinkGroup() { config.sinkGrouping(node.asNode(), result) }
+}
+
+private class PathNodeSourceGroup extends PathNodeImpl, TPathNodeSourceGroup {
+  string sourceGroup;
+  Configuration config;
+
+  PathNodeSourceGroup() { this = TPathNodeSourceGroup(sourceGroup, config) }
+
+  override NodeEx getNodeEx() { none() }
+
+  override FlowState getState() { none() }
+
+  override Configuration getConfiguration() { result = config }
+
+  override PathNodeImpl getASuccessorImpl() {
+    result.getSourceGroup() = sourceGroup and
+    result.getConfiguration() = config
+  }
+
+  override predicate isSource() { none() }
+
+  override string toString() { result = sourceGroup }
+
+  override predicate hasLocationInfo(
+    string filepath, int startline, int startcolumn, int endline, int endcolumn
+  ) {
+    filepath = "" and startline = 0 and startcolumn = 0 and endline = 0 and endcolumn = 0
+  }
+}
+
+private class PathNodeSinkGroup extends PathNodeImpl, TPathNodeSinkGroup {
+  string sinkGroup;
+  Configuration config;
+
+  PathNodeSinkGroup() { this = TPathNodeSinkGroup(sinkGroup, config) }
+
+  override NodeEx getNodeEx() { none() }
+
+  override FlowState getState() { none() }
+
+  override Configuration getConfiguration() { result = config }
+
+  override PathNodeImpl getASuccessorImpl() { none() }
+
+  override predicate isSource() { none() }
+
+  override string toString() { result = sinkGroup }
+
+  override predicate hasLocationInfo(
+    string filepath, int startline, int startcolumn, int endline, int endcolumn
+  ) {
+    filepath = "" and startline = 0 and startcolumn = 0 and endline = 0 and endcolumn = 0
+  }
 }
 
 private predicate pathNode(
@@ -3495,6 +3594,15 @@ private module Subpaths {
  * Will only have results if `configuration` has non-empty sources and
  * sinks.
  */
+private predicate hasFlowPath(
+  PathNodeImpl flowsource, PathNodeImpl flowsink, Configuration configuration
+) {
+  flowsource.isFlowSource() and
+  flowsource.getConfiguration() = configuration and
+  (flowsource = flowsink or pathSuccPlus(flowsource, flowsink)) and
+  flowsink.isFlowSink()
+}
+
 private predicate flowsTo(
   PathNodeImpl flowsource, PathNodeSink flowsink, Node source, Node sink,
   Configuration configuration
diff --git a/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImpl5.qll b/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImpl5.qll
index 2dde1c2819d..3c41b1876dc 100644
--- a/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImpl5.qll
+++ b/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImpl5.qll
@@ -147,6 +147,12 @@ abstract class Configuration extends string {
    */
   FlowFeature getAFeature() { none() }
 
+  /** Holds if sources should be grouped in the result of `hasFlowPath`. */
+  predicate sourceGrouping(Node source, string sourceGroup) { none() }
+
+  /** Holds if sinks should be grouped in the result of `hasFlowPath`. */
+  predicate sinkGrouping(Node sink, string sinkGroup) { none() }
+
   /**
    * Holds if data may flow from `source` to `sink` for this configuration.
    */
@@ -158,7 +164,7 @@ abstract class Configuration extends string {
    * The corresponding paths are generated from the end-points and the graph
    * included in the module `PathGraph`.
    */
-  predicate hasFlowPath(PathNode source, PathNode sink) { flowsTo(source, sink, _, _, this) }
+  predicate hasFlowPath(PathNode source, PathNode sink) { hasFlowPath(source, sink, this) }
 
   /**
    * Holds if data may flow from some source to `sink` for this configuration.
@@ -2712,6 +2718,18 @@ private newtype TPathNode =
       state = sink.getState() and
       config = sink.getConfiguration()
     )
+  } or
+  TPathNodeSourceGroup(string sourceGroup, Configuration config) {
+    exists(PathNodeImpl source |
+      sourceGroup = source.getSourceGroup() and
+      config = source.getConfiguration()
+    )
+  } or
+  TPathNodeSinkGroup(string sinkGroup, Configuration config) {
+    exists(PathNodeSink sink |
+      sinkGroup = sink.getSinkGroup() and
+      config = sink.getConfiguration()
+    )
   }
 
 /**
@@ -2920,6 +2938,22 @@ abstract private class PathNodeImpl extends TPathNode {
     )
   }
 
+  string getSourceGroup() {
+    this.isSource() and
+    this.getConfiguration().sourceGrouping(this.getNodeEx().asNode(), result)
+  }
+
+  predicate isFlowSource() {
+    this.isSource() and not exists(this.getSourceGroup())
+    or
+    this instanceof PathNodeSourceGroup
+  }
+
+  predicate isFlowSink() {
+    this = any(PathNodeSink sink | not exists(sink.getSinkGroup())) or
+    this instanceof PathNodeSinkGroup
+  }
+
   private string ppAp() {
     this instanceof PathNodeSink and result = ""
     or
@@ -2959,7 +2993,9 @@ abstract private class PathNodeImpl extends TPathNode {
 
 /** Holds if `n` can reach a sink. */
 private predicate directReach(PathNodeImpl n) {
-  n instanceof PathNodeSink or directReach(n.getANonHiddenSuccessor())
+  n instanceof PathNodeSink or
+  n instanceof PathNodeSinkGroup or
+  directReach(n.getANonHiddenSuccessor())
 }
 
 /** Holds if `n` can reach a sink or is used in a subpath that can reach a sink. */
@@ -3015,6 +3051,12 @@ class PathNode instanceof PathNodeImpl {
 
   /** Holds if this node is a source. */
   final predicate isSource() { super.isSource() }
+
+  /** Holds if this node is a grouping of source nodes. */
+  final predicate isSourceGroup(string group) { this = TPathNodeSourceGroup(group, _) }
+
+  /** Holds if this node is a grouping of sink nodes. */
+  final predicate isSinkGroup(string group) { this = TPathNodeSinkGroup(group, _) }
 }
 
 /**
@@ -3136,9 +3178,66 @@ private class PathNodeSink extends PathNodeImpl, TPathNodeSink {
 
   override Configuration getConfiguration() { result = config }
 
-  override PathNodeImpl getASuccessorImpl() { none() }
+  override PathNodeImpl getASuccessorImpl() {
+    result = TPathNodeSinkGroup(this.getSinkGroup(), config)
+  }
 
   override predicate isSource() { sourceNode(node, state, config) }
+
+  string getSinkGroup() { config.sinkGrouping(node.asNode(), result) }
+}
+
+private class PathNodeSourceGroup extends PathNodeImpl, TPathNodeSourceGroup {
+  string sourceGroup;
+  Configuration config;
+
+  PathNodeSourceGroup() { this = TPathNodeSourceGroup(sourceGroup, config) }
+
+  override NodeEx getNodeEx() { none() }
+
+  override FlowState getState() { none() }
+
+  override Configuration getConfiguration() { result = config }
+
+  override PathNodeImpl getASuccessorImpl() {
+    result.getSourceGroup() = sourceGroup and
+    result.getConfiguration() = config
+  }
+
+  override predicate isSource() { none() }
+
+  override string toString() { result = sourceGroup }
+
+  override predicate hasLocationInfo(
+    string filepath, int startline, int startcolumn, int endline, int endcolumn
+  ) {
+    filepath = "" and startline = 0 and startcolumn = 0 and endline = 0 and endcolumn = 0
+  }
+}
+
+private class PathNodeSinkGroup extends PathNodeImpl, TPathNodeSinkGroup {
+  string sinkGroup;
+  Configuration config;
+
+  PathNodeSinkGroup() { this = TPathNodeSinkGroup(sinkGroup, config) }
+
+  override NodeEx getNodeEx() { none() }
+
+  override FlowState getState() { none() }
+
+  override Configuration getConfiguration() { result = config }
+
+  override PathNodeImpl getASuccessorImpl() { none() }
+
+  override predicate isSource() { none() }
+
+  override string toString() { result = sinkGroup }
+
+  override predicate hasLocationInfo(
+    string filepath, int startline, int startcolumn, int endline, int endcolumn
+  ) {
+    filepath = "" and startline = 0 and startcolumn = 0 and endline = 0 and endcolumn = 0
+  }
 }
 
 private predicate pathNode(
@@ -3495,6 +3594,15 @@ private module Subpaths {
  * Will only have results if `configuration` has non-empty sources and
  * sinks.
  */
+private predicate hasFlowPath(
+  PathNodeImpl flowsource, PathNodeImpl flowsink, Configuration configuration
+) {
+  flowsource.isFlowSource() and
+  flowsource.getConfiguration() = configuration and
+  (flowsource = flowsink or pathSuccPlus(flowsource, flowsink)) and
+  flowsink.isFlowSink()
+}
+
 private predicate flowsTo(
   PathNodeImpl flowsource, PathNodeSink flowsink, Node source, Node sink,
   Configuration configuration
diff --git a/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImplForContentDataFlow.qll b/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImplForContentDataFlow.qll
index 2dde1c2819d..3c41b1876dc 100644
--- a/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImplForContentDataFlow.qll
+++ b/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImplForContentDataFlow.qll
@@ -147,6 +147,12 @@ abstract class Configuration extends string {
    */
   FlowFeature getAFeature() { none() }
 
+  /** Holds if sources should be grouped in the result of `hasFlowPath`. */
+  predicate sourceGrouping(Node source, string sourceGroup) { none() }
+
+  /** Holds if sinks should be grouped in the result of `hasFlowPath`. */
+  predicate sinkGrouping(Node sink, string sinkGroup) { none() }
+
   /**
    * Holds if data may flow from `source` to `sink` for this configuration.
    */
@@ -158,7 +164,7 @@ abstract class Configuration extends string {
    * The corresponding paths are generated from the end-points and the graph
    * included in the module `PathGraph`.
    */
-  predicate hasFlowPath(PathNode source, PathNode sink) { flowsTo(source, sink, _, _, this) }
+  predicate hasFlowPath(PathNode source, PathNode sink) { hasFlowPath(source, sink, this) }
 
   /**
    * Holds if data may flow from some source to `sink` for this configuration.
@@ -2712,6 +2718,18 @@ private newtype TPathNode =
       state = sink.getState() and
       config = sink.getConfiguration()
     )
+  } or
+  TPathNodeSourceGroup(string sourceGroup, Configuration config) {
+    exists(PathNodeImpl source |
+      sourceGroup = source.getSourceGroup() and
+      config = source.getConfiguration()
+    )
+  } or
+  TPathNodeSinkGroup(string sinkGroup, Configuration config) {
+    exists(PathNodeSink sink |
+      sinkGroup = sink.getSinkGroup() and
+      config = sink.getConfiguration()
+    )
   }
 
 /**
@@ -2920,6 +2938,22 @@ abstract private class PathNodeImpl extends TPathNode {
     )
   }
 
+  string getSourceGroup() {
+    this.isSource() and
+    this.getConfiguration().sourceGrouping(this.getNodeEx().asNode(), result)
+  }
+
+  predicate isFlowSource() {
+    this.isSource() and not exists(this.getSourceGroup())
+    or
+    this instanceof PathNodeSourceGroup
+  }
+
+  predicate isFlowSink() {
+    this = any(PathNodeSink sink | not exists(sink.getSinkGroup())) or
+    this instanceof PathNodeSinkGroup
+  }
+
   private string ppAp() {
     this instanceof PathNodeSink and result = ""
     or
@@ -2959,7 +2993,9 @@ abstract private class PathNodeImpl extends TPathNode {
 
 /** Holds if `n` can reach a sink. */
 private predicate directReach(PathNodeImpl n) {
-  n instanceof PathNodeSink or directReach(n.getANonHiddenSuccessor())
+  n instanceof PathNodeSink or
+  n instanceof PathNodeSinkGroup or
+  directReach(n.getANonHiddenSuccessor())
 }
 
 /** Holds if `n` can reach a sink or is used in a subpath that can reach a sink. */
@@ -3015,6 +3051,12 @@ class PathNode instanceof PathNodeImpl {
 
   /** Holds if this node is a source. */
   final predicate isSource() { super.isSource() }
+
+  /** Holds if this node is a grouping of source nodes. */
+  final predicate isSourceGroup(string group) { this = TPathNodeSourceGroup(group, _) }
+
+  /** Holds if this node is a grouping of sink nodes. */
+  final predicate isSinkGroup(string group) { this = TPathNodeSinkGroup(group, _) }
 }
 
 /**
@@ -3136,9 +3178,66 @@ private class PathNodeSink extends PathNodeImpl, TPathNodeSink {
 
   override Configuration getConfiguration() { result = config }
 
-  override PathNodeImpl getASuccessorImpl() { none() }
+  override PathNodeImpl getASuccessorImpl() {
+    result = TPathNodeSinkGroup(this.getSinkGroup(), config)
+  }
 
   override predicate isSource() { sourceNode(node, state, config) }
+
+  string getSinkGroup() { config.sinkGrouping(node.asNode(), result) }
+}
+
+private class PathNodeSourceGroup extends PathNodeImpl, TPathNodeSourceGroup {
+  string sourceGroup;
+  Configuration config;
+
+  PathNodeSourceGroup() { this = TPathNodeSourceGroup(sourceGroup, config) }
+
+  override NodeEx getNodeEx() { none() }
+
+  override FlowState getState() { none() }
+
+  override Configuration getConfiguration() { result = config }
+
+  override PathNodeImpl getASuccessorImpl() {
+    result.getSourceGroup() = sourceGroup and
+    result.getConfiguration() = config
+  }
+
+  override predicate isSource() { none() }
+
+  override string toString() { result = sourceGroup }
+
+  override predicate hasLocationInfo(
+    string filepath, int startline, int startcolumn, int endline, int endcolumn
+  ) {
+    filepath = "" and startline = 0 and startcolumn = 0 and endline = 0 and endcolumn = 0
+  }
+}
+
+private class PathNodeSinkGroup extends PathNodeImpl, TPathNodeSinkGroup {
+  string sinkGroup;
+  Configuration config;
+
+  PathNodeSinkGroup() { this = TPathNodeSinkGroup(sinkGroup, config) }
+
+  override NodeEx getNodeEx() { none() }
+
+  override FlowState getState() { none() }
+
+  override Configuration getConfiguration() { result = config }
+
+  override PathNodeImpl getASuccessorImpl() { none() }
+
+  override predicate isSource() { none() }
+
+  override string toString() { result = sinkGroup }
+
+  override predicate hasLocationInfo(
+    string filepath, int startline, int startcolumn, int endline, int endcolumn
+  ) {
+    filepath = "" and startline = 0 and startcolumn = 0 and endline = 0 and endcolumn = 0
+  }
 }
 
 private predicate pathNode(
@@ -3495,6 +3594,15 @@ private module Subpaths {
  * Will only have results if `configuration` has non-empty sources and
  * sinks.
  */
+private predicate hasFlowPath(
+  PathNodeImpl flowsource, PathNodeImpl flowsink, Configuration configuration
+) {
+  flowsource.isFlowSource() and
+  flowsource.getConfiguration() = configuration and
+  (flowsource = flowsink or pathSuccPlus(flowsource, flowsink)) and
+  flowsink.isFlowSink()
+}
+
 private predicate flowsTo(
   PathNodeImpl flowsource, PathNodeSink flowsink, Node source, Node sink,
   Configuration configuration
diff --git a/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl2.qll b/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl2.qll
index 2dde1c2819d..3c41b1876dc 100644
--- a/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl2.qll
+++ b/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl2.qll
@@ -147,6 +147,12 @@ abstract class Configuration extends string {
    */
   FlowFeature getAFeature() { none() }
 
+  /** Holds if sources should be grouped in the result of `hasFlowPath`. */
+  predicate sourceGrouping(Node source, string sourceGroup) { none() }
+
+  /** Holds if sinks should be grouped in the result of `hasFlowPath`. */
+  predicate sinkGrouping(Node sink, string sinkGroup) { none() }
+
   /**
    * Holds if data may flow from `source` to `sink` for this configuration.
    */
@@ -158,7 +164,7 @@ abstract class Configuration extends string {
    * The corresponding paths are generated from the end-points and the graph
    * included in the module `PathGraph`.
    */
-  predicate hasFlowPath(PathNode source, PathNode sink) { flowsTo(source, sink, _, _, this) }
+  predicate hasFlowPath(PathNode source, PathNode sink) { hasFlowPath(source, sink, this) }
 
   /**
    * Holds if data may flow from some source to `sink` for this configuration.
@@ -2712,6 +2718,18 @@ private newtype TPathNode =
       state = sink.getState() and
       config = sink.getConfiguration()
     )
+  } or
+  TPathNodeSourceGroup(string sourceGroup, Configuration config) {
+    exists(PathNodeImpl source |
+      sourceGroup = source.getSourceGroup() and
+      config = source.getConfiguration()
+    )
+  } or
+  TPathNodeSinkGroup(string sinkGroup, Configuration config) {
+    exists(PathNodeSink sink |
+      sinkGroup = sink.getSinkGroup() and
+      config = sink.getConfiguration()
+    )
   }
 
 /**
@@ -2920,6 +2938,22 @@ abstract private class PathNodeImpl extends TPathNode {
     )
   }
 
+  string getSourceGroup() {
+    this.isSource() and
+    this.getConfiguration().sourceGrouping(this.getNodeEx().asNode(), result)
+  }
+
+  predicate isFlowSource() {
+    this.isSource() and not exists(this.getSourceGroup())
+    or
+    this instanceof PathNodeSourceGroup
+  }
+
+  predicate isFlowSink() {
+    this = any(PathNodeSink sink | not exists(sink.getSinkGroup())) or
+    this instanceof PathNodeSinkGroup
+  }
+
   private string ppAp() {
     this instanceof PathNodeSink and result = ""
     or
@@ -2959,7 +2993,9 @@ abstract private class PathNodeImpl extends TPathNode {
 
 /** Holds if `n` can reach a sink. */
 private predicate directReach(PathNodeImpl n) {
-  n instanceof PathNodeSink or directReach(n.getANonHiddenSuccessor())
+  n instanceof PathNodeSink or
+  n instanceof PathNodeSinkGroup or
+  directReach(n.getANonHiddenSuccessor())
 }
 
 /** Holds if `n` can reach a sink or is used in a subpath that can reach a sink. */
@@ -3015,6 +3051,12 @@ class PathNode instanceof PathNodeImpl {
 
   /** Holds if this node is a source. */
   final predicate isSource() { super.isSource() }
+
+  /** Holds if this node is a grouping of source nodes. */
+  final predicate isSourceGroup(string group) { this = TPathNodeSourceGroup(group, _) }
+
+  /** Holds if this node is a grouping of sink nodes. */
+  final predicate isSinkGroup(string group) { this = TPathNodeSinkGroup(group, _) }
 }
 
 /**
@@ -3136,9 +3178,66 @@ private class PathNodeSink extends PathNodeImpl, TPathNodeSink {
 
   override Configuration getConfiguration() { result = config }
 
-  override PathNodeImpl getASuccessorImpl() { none() }
+  override PathNodeImpl getASuccessorImpl() {
+    result = TPathNodeSinkGroup(this.getSinkGroup(), config)
+  }
 
   override predicate isSource() { sourceNode(node, state, config) }
+
+  string getSinkGroup() { config.sinkGrouping(node.asNode(), result) }
+}
+
+private class PathNodeSourceGroup extends PathNodeImpl, TPathNodeSourceGroup {
+  string sourceGroup;
+  Configuration config;
+
+  PathNodeSourceGroup() { this = TPathNodeSourceGroup(sourceGroup, config) }
+
+  override NodeEx getNodeEx() { none() }
+
+  override FlowState getState() { none() }
+
+  override Configuration getConfiguration() { result = config }
+
+  override PathNodeImpl getASuccessorImpl() {
+    result.getSourceGroup() = sourceGroup and
+    result.getConfiguration() = config
+  }
+
+  override predicate isSource() { none() }
+
+  override string toString() { result = sourceGroup }
+
+  override predicate hasLocationInfo(
+    string filepath, int startline, int startcolumn, int endline, int endcolumn
+  ) {
+    filepath = "" and startline = 0 and startcolumn = 0 and endline = 0 and endcolumn = 0
+  }
+}
+
+private class PathNodeSinkGroup extends PathNodeImpl, TPathNodeSinkGroup {
+  string sinkGroup;
+  Configuration config;
+
+  PathNodeSinkGroup() { this = TPathNodeSinkGroup(sinkGroup, config) }
+
+  override NodeEx getNodeEx() { none() }
+
+  override FlowState getState() { none() }
+
+  override Configuration getConfiguration() { result = config }
+
+  override PathNodeImpl getASuccessorImpl() { none() }
+
+  override predicate isSource() { none() }
+
+  override string toString() { result = sinkGroup }
+
+  override predicate hasLocationInfo(
+    string filepath, int startline, int startcolumn, int endline, int endcolumn
+  ) {
+    filepath = "" and startline = 0 and startcolumn = 0 and endline = 0 and endcolumn = 0
+  }
 }
 
 private predicate pathNode(
@@ -3495,6 +3594,15 @@ private module Subpaths {
  * Will only have results if `configuration` has non-empty sources and
  * sinks.
  */
+private predicate hasFlowPath(
+  PathNodeImpl flowsource, PathNodeImpl flowsink, Configuration configuration
+) {
+  flowsource.isFlowSource() and
+  flowsource.getConfiguration() = configuration and
+  (flowsource = flowsink or pathSuccPlus(flowsource, flowsink)) and
+  flowsink.isFlowSink()
+}
+
 private predicate flowsTo(
   PathNodeImpl flowsource, PathNodeSink flowsink, Node source, Node sink,
   Configuration configuration
diff --git a/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl3.qll b/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl3.qll
index 2dde1c2819d..3c41b1876dc 100644
--- a/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl3.qll
+++ b/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl3.qll
@@ -147,6 +147,12 @@ abstract class Configuration extends string {
    */
   FlowFeature getAFeature() { none() }
 
+  /** Holds if sources should be grouped in the result of `hasFlowPath`. */
+  predicate sourceGrouping(Node source, string sourceGroup) { none() }
+
+  /** Holds if sinks should be grouped in the result of `hasFlowPath`. */
+  predicate sinkGrouping(Node sink, string sinkGroup) { none() }
+
   /**
    * Holds if data may flow from `source` to `sink` for this configuration.
    */
@@ -158,7 +164,7 @@ abstract class Configuration extends string {
    * The corresponding paths are generated from the end-points and the graph
    * included in the module `PathGraph`.
    */
-  predicate hasFlowPath(PathNode source, PathNode sink) { flowsTo(source, sink, _, _, this) }
+  predicate hasFlowPath(PathNode source, PathNode sink) { hasFlowPath(source, sink, this) }
 
   /**
    * Holds if data may flow from some source to `sink` for this configuration.
@@ -2712,6 +2718,18 @@ private newtype TPathNode =
       state = sink.getState() and
       config = sink.getConfiguration()
     )
+  } or
+  TPathNodeSourceGroup(string sourceGroup, Configuration config) {
+    exists(PathNodeImpl source |
+      sourceGroup = source.getSourceGroup() and
+      config = source.getConfiguration()
+    )
+  } or
+  TPathNodeSinkGroup(string sinkGroup, Configuration config) {
+    exists(PathNodeSink sink |
+      sinkGroup = sink.getSinkGroup() and
+      config = sink.getConfiguration()
+    )
   }
 
 /**
@@ -2920,6 +2938,22 @@ abstract private class PathNodeImpl extends TPathNode {
     )
   }
 
+  string getSourceGroup() {
+    this.isSource() and
+    this.getConfiguration().sourceGrouping(this.getNodeEx().asNode(), result)
+  }
+
+  predicate isFlowSource() {
+    this.isSource() and not exists(this.getSourceGroup())
+    or
+    this instanceof PathNodeSourceGroup
+  }
+
+  predicate isFlowSink() {
+    this = any(PathNodeSink sink | not exists(sink.getSinkGroup())) or
+    this instanceof PathNodeSinkGroup
+  }
+
   private string ppAp() {
     this instanceof PathNodeSink and result = ""
     or
@@ -2959,7 +2993,9 @@ abstract private class PathNodeImpl extends TPathNode {
 
 /** Holds if `n` can reach a sink. */
 private predicate directReach(PathNodeImpl n) {
-  n instanceof PathNodeSink or directReach(n.getANonHiddenSuccessor())
+  n instanceof PathNodeSink or
+  n instanceof PathNodeSinkGroup or
+  directReach(n.getANonHiddenSuccessor())
 }
 
 /** Holds if `n` can reach a sink or is used in a subpath that can reach a sink. */
@@ -3015,6 +3051,12 @@ class PathNode instanceof PathNodeImpl {
 
   /** Holds if this node is a source. */
   final predicate isSource() { super.isSource() }
+
+  /** Holds if this node is a grouping of source nodes. */
+  final predicate isSourceGroup(string group) { this = TPathNodeSourceGroup(group, _) }
+
+  /** Holds if this node is a grouping of sink nodes. */
+  final predicate isSinkGroup(string group) { this = TPathNodeSinkGroup(group, _) }
 }
 
 /**
@@ -3136,9 +3178,66 @@ private class PathNodeSink extends PathNodeImpl, TPathNodeSink {
 
   override Configuration getConfiguration() { result = config }
 
-  override PathNodeImpl getASuccessorImpl() { none() }
+  override PathNodeImpl getASuccessorImpl() {
+    result = TPathNodeSinkGroup(this.getSinkGroup(), config)
+  }
 
   override predicate isSource() { sourceNode(node, state, config) }
+
+  string getSinkGroup() { config.sinkGrouping(node.asNode(), result) }
+}
+
+private class PathNodeSourceGroup extends PathNodeImpl, TPathNodeSourceGroup {
+  string sourceGroup;
+  Configuration config;
+
+  PathNodeSourceGroup() { this = TPathNodeSourceGroup(sourceGroup, config) }
+
+  override NodeEx getNodeEx() { none() }
+
+  override FlowState getState() { none() }
+
+  override Configuration getConfiguration() { result = config }
+
+  override PathNodeImpl getASuccessorImpl() {
+    result.getSourceGroup() = sourceGroup and
+    result.getConfiguration() = config
+  }
+
+  override predicate isSource() { none() }
+
+  override string toString() { result = sourceGroup }
+
+  override predicate hasLocationInfo(
+    string filepath, int startline, int startcolumn, int endline, int endcolumn
+  ) {
+    filepath = "" and startline = 0 and startcolumn = 0 and endline = 0 and endcolumn = 0
+  }
+}
+
+private class PathNodeSinkGroup extends PathNodeImpl, TPathNodeSinkGroup {
+  string sinkGroup;
+  Configuration config;
+
+  PathNodeSinkGroup() { this = TPathNodeSinkGroup(sinkGroup, config) }
+
+  override NodeEx getNodeEx() { none() }
+
+  override FlowState getState() { none() }
+
+  override Configuration getConfiguration() { result = config }
+
+  override PathNodeImpl getASuccessorImpl() { none() }
+
+  override predicate isSource() { none() }
+
+  override string toString() { result = sinkGroup }
+
+  override predicate hasLocationInfo(
+    string filepath, int startline, int startcolumn, int endline, int endcolumn
+  ) {
+    filepath = "" and startline = 0 and startcolumn = 0 and endline = 0 and endcolumn = 0
+  }
 }
 
 private predicate pathNode(
@@ -3495,6 +3594,15 @@ private module Subpaths {
  * Will only have results if `configuration` has non-empty sources and
  * sinks.
  */
+private predicate hasFlowPath(
+  PathNodeImpl flowsource, PathNodeImpl flowsink, Configuration configuration
+) {
+  flowsource.isFlowSource() and
+  flowsource.getConfiguration() = configuration and
+  (flowsource = flowsink or pathSuccPlus(flowsource, flowsink)) and
+  flowsink.isFlowSink()
+}
+
 private predicate flowsTo(
   PathNodeImpl flowsource, PathNodeSink flowsink, Node source, Node sink,
   Configuration configuration
diff --git a/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl4.qll b/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl4.qll
index 2dde1c2819d..3c41b1876dc 100644
--- a/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl4.qll
+++ b/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl4.qll
@@ -147,6 +147,12 @@ abstract class Configuration extends string {
    */
   FlowFeature getAFeature() { none() }
 
+  /** Holds if sources should be grouped in the result of `hasFlowPath`. */
+  predicate sourceGrouping(Node source, string sourceGroup) { none() }
+
+  /** Holds if sinks should be grouped in the result of `hasFlowPath`. */
+  predicate sinkGrouping(Node sink, string sinkGroup) { none() }
+
   /**
    * Holds if data may flow from `source` to `sink` for this configuration.
    */
@@ -158,7 +164,7 @@ abstract class Configuration extends string {
    * The corresponding paths are generated from the end-points and the graph
    * included in the module `PathGraph`.
    */
-  predicate hasFlowPath(PathNode source, PathNode sink) { flowsTo(source, sink, _, _, this) }
+  predicate hasFlowPath(PathNode source, PathNode sink) { hasFlowPath(source, sink, this) }
 
   /**
    * Holds if data may flow from some source to `sink` for this configuration.
@@ -2712,6 +2718,18 @@ private newtype TPathNode =
       state = sink.getState() and
       config = sink.getConfiguration()
     )
+  } or
+  TPathNodeSourceGroup(string sourceGroup, Configuration config) {
+    exists(PathNodeImpl source |
+      sourceGroup = source.getSourceGroup() and
+      config = source.getConfiguration()
+    )
+  } or
+  TPathNodeSinkGroup(string sinkGroup, Configuration config) {
+    exists(PathNodeSink sink |
+      sinkGroup = sink.getSinkGroup() and
+      config = sink.getConfiguration()
+    )
   }
 
 /**
@@ -2920,6 +2938,22 @@ abstract private class PathNodeImpl extends TPathNode {
     )
   }
 
+  string getSourceGroup() {
+    this.isSource() and
+    this.getConfiguration().sourceGrouping(this.getNodeEx().asNode(), result)
+  }
+
+  predicate isFlowSource() {
+    this.isSource() and not exists(this.getSourceGroup())
+    or
+    this instanceof PathNodeSourceGroup
+  }
+
+  predicate isFlowSink() {
+    this = any(PathNodeSink sink | not exists(sink.getSinkGroup())) or
+    this instanceof PathNodeSinkGroup
+  }
+
   private string ppAp() {
     this instanceof PathNodeSink and result = ""
     or
@@ -2959,7 +2993,9 @@ abstract private class PathNodeImpl extends TPathNode {
 
 /** Holds if `n` can reach a sink. */
 private predicate directReach(PathNodeImpl n) {
-  n instanceof PathNodeSink or directReach(n.getANonHiddenSuccessor())
+  n instanceof PathNodeSink or
+  n instanceof PathNodeSinkGroup or
+  directReach(n.getANonHiddenSuccessor())
 }
 
 /** Holds if `n` can reach a sink or is used in a subpath that can reach a sink. */
@@ -3015,6 +3051,12 @@ class PathNode instanceof PathNodeImpl {
 
   /** Holds if this node is a source. */
   final predicate isSource() { super.isSource() }
+
+  /** Holds if this node is a grouping of source nodes. */
+  final predicate isSourceGroup(string group) { this = TPathNodeSourceGroup(group, _) }
+
+  /** Holds if this node is a grouping of sink nodes. */
+  final predicate isSinkGroup(string group) { this = TPathNodeSinkGroup(group, _) }
 }
 
 /**
@@ -3136,9 +3178,66 @@ private class PathNodeSink extends PathNodeImpl, TPathNodeSink {
 
   override Configuration getConfiguration() { result = config }
 
-  override PathNodeImpl getASuccessorImpl() { none() }
+  override PathNodeImpl getASuccessorImpl() {
+    result = TPathNodeSinkGroup(this.getSinkGroup(), config)
+  }
 
   override predicate isSource() { sourceNode(node, state, config) }
+
+  string getSinkGroup() { config.sinkGrouping(node.asNode(), result) }
+}
+
+private class PathNodeSourceGroup extends PathNodeImpl, TPathNodeSourceGroup {
+  string sourceGroup;
+  Configuration config;
+
+  PathNodeSourceGroup() { this = TPathNodeSourceGroup(sourceGroup, config) }
+
+  override NodeEx getNodeEx() { none() }
+
+  override FlowState getState() { none() }
+
+  override Configuration getConfiguration() { result = config }
+
+  override PathNodeImpl getASuccessorImpl() {
+    result.getSourceGroup() = sourceGroup and
+    result.getConfiguration() = config
+  }
+
+  override predicate isSource() { none() }
+
+  override string toString() { result = sourceGroup }
+
+  override predicate hasLocationInfo(
+    string filepath, int startline, int startcolumn, int endline, int endcolumn
+  ) {
+    filepath = "" and startline = 0 and startcolumn = 0 and endline = 0 and endcolumn = 0
+  }
+}
+
+private class PathNodeSinkGroup extends PathNodeImpl, TPathNodeSinkGroup {
+  string sinkGroup;
+  Configuration config;
+
+  PathNodeSinkGroup() { this = TPathNodeSinkGroup(sinkGroup, config) }
+
+  override NodeEx getNodeEx() { none() }
+
+  override FlowState getState() { none() }
+
+  override Configuration getConfiguration() { result = config }
+
+  override PathNodeImpl getASuccessorImpl() { none() }
+
+  override predicate isSource() { none() }
+
+  override string toString() { result = sinkGroup }
+
+  override predicate hasLocationInfo(
+    string filepath, int startline, int startcolumn, int endline, int endcolumn
+  ) {
+    filepath = "" and startline = 0 and startcolumn = 0 and endline = 0 and endcolumn = 0
+  }
 }
 
 private predicate pathNode(
@@ -3495,6 +3594,15 @@ private module Subpaths {
  * Will only have results if `configuration` has non-empty sources and
  * sinks.
  */
+private predicate hasFlowPath(
+  PathNodeImpl flowsource, PathNodeImpl flowsink, Configuration configuration
+) {
+  flowsource.isFlowSource() and
+  flowsource.getConfiguration() = configuration and
+  (flowsource = flowsink or pathSuccPlus(flowsource, flowsink)) and
+  flowsink.isFlowSink()
+}
+
 private predicate flowsTo(
   PathNodeImpl flowsource, PathNodeSink flowsink, Node source, Node sink,
   Configuration configuration
diff --git a/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl5.qll b/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl5.qll
index 2dde1c2819d..3c41b1876dc 100644
--- a/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl5.qll
+++ b/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl5.qll
@@ -147,6 +147,12 @@ abstract class Configuration extends string {
    */
   FlowFeature getAFeature() { none() }
 
+  /** Holds if sources should be grouped in the result of `hasFlowPath`. */
+  predicate sourceGrouping(Node source, string sourceGroup) { none() }
+
+  /** Holds if sinks should be grouped in the result of `hasFlowPath`. */
+  predicate sinkGrouping(Node sink, string sinkGroup) { none() }
+
   /**
    * Holds if data may flow from `source` to `sink` for this configuration.
    */
@@ -158,7 +164,7 @@ abstract class Configuration extends string {
    * The corresponding paths are generated from the end-points and the graph
    * included in the module `PathGraph`.
    */
-  predicate hasFlowPath(PathNode source, PathNode sink) { flowsTo(source, sink, _, _, this) }
+  predicate hasFlowPath(PathNode source, PathNode sink) { hasFlowPath(source, sink, this) }
 
   /**
    * Holds if data may flow from some source to `sink` for this configuration.
@@ -2712,6 +2718,18 @@ private newtype TPathNode =
       state = sink.getState() and
       config = sink.getConfiguration()
     )
+  } or
+  TPathNodeSourceGroup(string sourceGroup, Configuration config) {
+    exists(PathNodeImpl source |
+      sourceGroup = source.getSourceGroup() and
+      config = source.getConfiguration()
+    )
+  } or
+  TPathNodeSinkGroup(string sinkGroup, Configuration config) {
+    exists(PathNodeSink sink |
+      sinkGroup = sink.getSinkGroup() and
+      config = sink.getConfiguration()
+    )
   }
 
 /**
@@ -2920,6 +2938,22 @@ abstract private class PathNodeImpl extends TPathNode {
     )
   }
 
+  string getSourceGroup() {
+    this.isSource() and
+    this.getConfiguration().sourceGrouping(this.getNodeEx().asNode(), result)
+  }
+
+  predicate isFlowSource() {
+    this.isSource() and not exists(this.getSourceGroup())
+    or
+    this instanceof PathNodeSourceGroup
+  }
+
+  predicate isFlowSink() {
+    this = any(PathNodeSink sink | not exists(sink.getSinkGroup())) or
+    this instanceof PathNodeSinkGroup
+  }
+
   private string ppAp() {
     this instanceof PathNodeSink and result = ""
     or
@@ -2959,7 +2993,9 @@ abstract private class PathNodeImpl extends TPathNode {
 
 /** Holds if `n` can reach a sink. */
 private predicate directReach(PathNodeImpl n) {
-  n instanceof PathNodeSink or directReach(n.getANonHiddenSuccessor())
+  n instanceof PathNodeSink or
+  n instanceof PathNodeSinkGroup or
+  directReach(n.getANonHiddenSuccessor())
 }
 
 /** Holds if `n` can reach a sink or is used in a subpath that can reach a sink. */
@@ -3015,6 +3051,12 @@ class PathNode instanceof PathNodeImpl {
 
   /** Holds if this node is a source. */
   final predicate isSource() { super.isSource() }
+
+  /** Holds if this node is a grouping of source nodes. */
+  final predicate isSourceGroup(string group) { this = TPathNodeSourceGroup(group, _) }
+
+  /** Holds if this node is a grouping of sink nodes. */
+  final predicate isSinkGroup(string group) { this = TPathNodeSinkGroup(group, _) }
 }
 
 /**
@@ -3136,9 +3178,66 @@ private class PathNodeSink extends PathNodeImpl, TPathNodeSink {
 
   override Configuration getConfiguration() { result = config }
 
-  override PathNodeImpl getASuccessorImpl() { none() }
+  override PathNodeImpl getASuccessorImpl() {
+    result = TPathNodeSinkGroup(this.getSinkGroup(), config)
+  }
 
   override predicate isSource() { sourceNode(node, state, config) }
+
+  string getSinkGroup() { config.sinkGrouping(node.asNode(), result) }
+}
+
+private class PathNodeSourceGroup extends PathNodeImpl, TPathNodeSourceGroup {
+  string sourceGroup;
+  Configuration config;
+
+  PathNodeSourceGroup() { this = TPathNodeSourceGroup(sourceGroup, config) }
+
+  override NodeEx getNodeEx() { none() }
+
+  override FlowState getState() { none() }
+
+  override Configuration getConfiguration() { result = config }
+
+  override PathNodeImpl getASuccessorImpl() {
+    result.getSourceGroup() = sourceGroup and
+    result.getConfiguration() = config
+  }
+
+  override predicate isSource() { none() }
+
+  override string toString() { result = sourceGroup }
+
+  override predicate hasLocationInfo(
+    string filepath, int startline, int startcolumn, int endline, int endcolumn
+  ) {
+    filepath = "" and startline = 0 and startcolumn = 0 and endline = 0 and endcolumn = 0
+  }
+}
+
+private class PathNodeSinkGroup extends PathNodeImpl, TPathNodeSinkGroup {
+  string sinkGroup;
+  Configuration config;
+
+  PathNodeSinkGroup() { this = TPathNodeSinkGroup(sinkGroup, config) }
+
+  override NodeEx getNodeEx() { none() }
+
+  override FlowState getState() { none() }
+
+  override Configuration getConfiguration() { result = config }
+
+  override PathNodeImpl getASuccessorImpl() { none() }
+
+  override predicate isSource() { none() }
+
+  override string toString() { result = sinkGroup }
+
+  override predicate hasLocationInfo(
+    string filepath, int startline, int startcolumn, int endline, int endcolumn
+  ) {
+    filepath = "" and startline = 0 and startcolumn = 0 and endline = 0 and endcolumn = 0
+  }
 }
 
 private predicate pathNode(
@@ -3495,6 +3594,15 @@ private module Subpaths {
  * Will only have results if `configuration` has non-empty sources and
  * sinks.
  */
+private predicate hasFlowPath(
+  PathNodeImpl flowsource, PathNodeImpl flowsink, Configuration configuration
+) {
+  flowsource.isFlowSource() and
+  flowsource.getConfiguration() = configuration and
+  (flowsource = flowsink or pathSuccPlus(flowsource, flowsink)) and
+  flowsink.isFlowSink()
+}
+
 private predicate flowsTo(
   PathNodeImpl flowsource, PathNodeSink flowsink, Node source, Node sink,
   Configuration configuration
diff --git a/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl6.qll b/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl6.qll
index 2dde1c2819d..3c41b1876dc 100644
--- a/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl6.qll
+++ b/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl6.qll
@@ -147,6 +147,12 @@ abstract class Configuration extends string {
    */
   FlowFeature getAFeature() { none() }
 
+  /** Holds if sources should be grouped in the result of `hasFlowPath`. */
+  predicate sourceGrouping(Node source, string sourceGroup) { none() }
+
+  /** Holds if sinks should be grouped in the result of `hasFlowPath`. */
+  predicate sinkGrouping(Node sink, string sinkGroup) { none() }
+
   /**
    * Holds if data may flow from `source` to `sink` for this configuration.
    */
@@ -158,7 +164,7 @@ abstract class Configuration extends string {
    * The corresponding paths are generated from the end-points and the graph
    * included in the module `PathGraph`.
    */
-  predicate hasFlowPath(PathNode source, PathNode sink) { flowsTo(source, sink, _, _, this) }
+  predicate hasFlowPath(PathNode source, PathNode sink) { hasFlowPath(source, sink, this) }
 
   /**
    * Holds if data may flow from some source to `sink` for this configuration.
@@ -2712,6 +2718,18 @@ private newtype TPathNode =
       state = sink.getState() and
       config = sink.getConfiguration()
     )
+  } or
+  TPathNodeSourceGroup(string sourceGroup, Configuration config) {
+    exists(PathNodeImpl source |
+      sourceGroup = source.getSourceGroup() and
+      config = source.getConfiguration()
+    )
+  } or
+  TPathNodeSinkGroup(string sinkGroup, Configuration config) {
+    exists(PathNodeSink sink |
+      sinkGroup = sink.getSinkGroup() and
+      config = sink.getConfiguration()
+    )
   }
 
 /**
@@ -2920,6 +2938,22 @@ abstract private class PathNodeImpl extends TPathNode {
     )
   }
 
+  string getSourceGroup() {
+    this.isSource() and
+    this.getConfiguration().sourceGrouping(this.getNodeEx().asNode(), result)
+  }
+
+  predicate isFlowSource() {
+    this.isSource() and not exists(this.getSourceGroup())
+    or
+    this instanceof PathNodeSourceGroup
+  }
+
+  predicate isFlowSink() {
+    this = any(PathNodeSink sink | not exists(sink.getSinkGroup())) or
+    this instanceof PathNodeSinkGroup
+  }
+
   private string ppAp() {
     this instanceof PathNodeSink and result = ""
     or
@@ -2959,7 +2993,9 @@ abstract private class PathNodeImpl extends TPathNode {
 
 /** Holds if `n` can reach a sink. */
 private predicate directReach(PathNodeImpl n) {
-  n instanceof PathNodeSink or directReach(n.getANonHiddenSuccessor())
+  n instanceof PathNodeSink or
+  n instanceof PathNodeSinkGroup or
+  directReach(n.getANonHiddenSuccessor())
 }
 
 /** Holds if `n` can reach a sink or is used in a subpath that can reach a sink. */
@@ -3015,6 +3051,12 @@ class PathNode instanceof PathNodeImpl {
 
   /** Holds if this node is a source. */
   final predicate isSource() { super.isSource() }
+
+  /** Holds if this node is a grouping of source nodes. */
+  final predicate isSourceGroup(string group) { this = TPathNodeSourceGroup(group, _) }
+
+  /** Holds if this node is a grouping of sink nodes. */
+  final predicate isSinkGroup(string group) { this = TPathNodeSinkGroup(group, _) }
 }
 
 /**
@@ -3136,9 +3178,66 @@ private class PathNodeSink extends PathNodeImpl, TPathNodeSink {
 
   override Configuration getConfiguration() { result = config }
 
-  override PathNodeImpl getASuccessorImpl() { none() }
+  override PathNodeImpl getASuccessorImpl() {
+    result = TPathNodeSinkGroup(this.getSinkGroup(), config)
+  }
 
   override predicate isSource() { sourceNode(node, state, config) }
+
+  string getSinkGroup() { config.sinkGrouping(node.asNode(), result) }
+}
+
+private class PathNodeSourceGroup extends PathNodeImpl, TPathNodeSourceGroup {
+  string sourceGroup;
+  Configuration config;
+
+  PathNodeSourceGroup() { this = TPathNodeSourceGroup(sourceGroup, config) }
+
+  override NodeEx getNodeEx() { none() }
+
+  override FlowState getState() { none() }
+
+  override Configuration getConfiguration() { result = config }
+
+  override PathNodeImpl getASuccessorImpl() {
+    result.getSourceGroup() = sourceGroup and
+    result.getConfiguration() = config
+  }
+
+  override predicate isSource() { none() }
+
+  override string toString() { result = sourceGroup }
+
+  override predicate hasLocationInfo(
+    string filepath, int startline, int startcolumn, int endline, int endcolumn
+  ) {
+    filepath = "" and startline = 0 and startcolumn = 0 and endline = 0 and endcolumn = 0
+  }
+}
+
+private class PathNodeSinkGroup extends PathNodeImpl, TPathNodeSinkGroup {
+  string sinkGroup;
+  Configuration config;
+
+  PathNodeSinkGroup() { this = TPathNodeSinkGroup(sinkGroup, config) }
+
+  override NodeEx getNodeEx() { none() }
+
+  override FlowState getState() { none() }
+
+  override Configuration getConfiguration() { result = config }
+
+  override PathNodeImpl getASuccessorImpl() { none() }
+
+  override predicate isSource() { none() }
+
+  override string toString() { result = sinkGroup }
+
+  override predicate hasLocationInfo(
+    string filepath, int startline, int startcolumn, int endline, int endcolumn
+  ) {
+    filepath = "" and startline = 0 and startcolumn = 0 and endline = 0 and endcolumn = 0
+  }
 }
 
 private predicate pathNode(
@@ -3495,6 +3594,15 @@ private module Subpaths {
  * Will only have results if `configuration` has non-empty sources and
  * sinks.
  */
+private predicate hasFlowPath(
+  PathNodeImpl flowsource, PathNodeImpl flowsink, Configuration configuration
+) {
+  flowsource.isFlowSource() and
+  flowsource.getConfiguration() = configuration and
+  (flowsource = flowsink or pathSuccPlus(flowsource, flowsink)) and
+  flowsink.isFlowSink()
+}
+
 private predicate flowsTo(
   PathNodeImpl flowsource, PathNodeSink flowsink, Node source, Node sink,
   Configuration configuration
diff --git a/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImplForOnActivityResult.qll b/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImplForOnActivityResult.qll
index 2dde1c2819d..3c41b1876dc 100644
--- a/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImplForOnActivityResult.qll
+++ b/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImplForOnActivityResult.qll
@@ -147,6 +147,12 @@ abstract class Configuration extends string {
    */
   FlowFeature getAFeature() { none() }
 
+  /** Holds if sources should be grouped in the result of `hasFlowPath`. */
+  predicate sourceGrouping(Node source, string sourceGroup) { none() }
+
+  /** Holds if sinks should be grouped in the result of `hasFlowPath`. */
+  predicate sinkGrouping(Node sink, string sinkGroup) { none() }
+
   /**
    * Holds if data may flow from `source` to `sink` for this configuration.
    */
@@ -158,7 +164,7 @@ abstract class Configuration extends string {
    * The corresponding paths are generated from the end-points and the graph
    * included in the module `PathGraph`.
    */
-  predicate hasFlowPath(PathNode source, PathNode sink) { flowsTo(source, sink, _, _, this) }
+  predicate hasFlowPath(PathNode source, PathNode sink) { hasFlowPath(source, sink, this) }
 
   /**
    * Holds if data may flow from some source to `sink` for this configuration.
@@ -2712,6 +2718,18 @@ private newtype TPathNode =
       state = sink.getState() and
       config = sink.getConfiguration()
     )
+  } or
+  TPathNodeSourceGroup(string sourceGroup, Configuration config) {
+    exists(PathNodeImpl source |
+      sourceGroup = source.getSourceGroup() and
+      config = source.getConfiguration()
+    )
+  } or
+  TPathNodeSinkGroup(string sinkGroup, Configuration config) {
+    exists(PathNodeSink sink |
+      sinkGroup = sink.getSinkGroup() and
+      config = sink.getConfiguration()
+    )
   }
 
 /**
@@ -2920,6 +2938,22 @@ abstract private class PathNodeImpl extends TPathNode {
     )
   }
 
+  string getSourceGroup() {
+    this.isSource() and
+    this.getConfiguration().sourceGrouping(this.getNodeEx().asNode(), result)
+  }
+
+  predicate isFlowSource() {
+    this.isSource() and not exists(this.getSourceGroup())
+    or
+    this instanceof PathNodeSourceGroup
+  }
+
+  predicate isFlowSink() {
+    this = any(PathNodeSink sink | not exists(sink.getSinkGroup())) or
+    this instanceof PathNodeSinkGroup
+  }
+
   private string ppAp() {
     this instanceof PathNodeSink and result = ""
     or
@@ -2959,7 +2993,9 @@ abstract private class PathNodeImpl extends TPathNode {
 
 /** Holds if `n` can reach a sink. */
 private predicate directReach(PathNodeImpl n) {
-  n instanceof PathNodeSink or directReach(n.getANonHiddenSuccessor())
+  n instanceof PathNodeSink or
+  n instanceof PathNodeSinkGroup or
+  directReach(n.getANonHiddenSuccessor())
 }
 
 /** Holds if `n` can reach a sink or is used in a subpath that can reach a sink. */
@@ -3015,6 +3051,12 @@ class PathNode instanceof PathNodeImpl {
 
   /** Holds if this node is a source. */
   final predicate isSource() { super.isSource() }
+
+  /** Holds if this node is a grouping of source nodes. */
+  final predicate isSourceGroup(string group) { this = TPathNodeSourceGroup(group, _) }
+
+  /** Holds if this node is a grouping of sink nodes. */
+  final predicate isSinkGroup(string group) { this = TPathNodeSinkGroup(group, _) }
 }
 
 /**
@@ -3136,9 +3178,66 @@ private class PathNodeSink extends PathNodeImpl, TPathNodeSink {
 
   override Configuration getConfiguration() { result = config }
 
-  override PathNodeImpl getASuccessorImpl() { none() }
+  override PathNodeImpl getASuccessorImpl() {
+    result = TPathNodeSinkGroup(this.getSinkGroup(), config)
+  }
 
   override predicate isSource() { sourceNode(node, state, config) }
+
+  string getSinkGroup() { config.sinkGrouping(node.asNode(), result) }
+}
+
+private class PathNodeSourceGroup extends PathNodeImpl, TPathNodeSourceGroup {
+  string sourceGroup;
+  Configuration config;
+
+  PathNodeSourceGroup() { this = TPathNodeSourceGroup(sourceGroup, config) }
+
+  override NodeEx getNodeEx() { none() }
+
+  override FlowState getState() { none() }
+
+  override Configuration getConfiguration() { result = config }
+
+  override PathNodeImpl getASuccessorImpl() {
+    result.getSourceGroup() = sourceGroup and
+    result.getConfiguration() = config
+  }
+
+  override predicate isSource() { none() }
+
+  override string toString() { result = sourceGroup }
+
+  override predicate hasLocationInfo(
+    string filepath, int startline, int startcolumn, int endline, int endcolumn
+  ) {
+    filepath = "" and startline = 0 and startcolumn = 0 and endline = 0 and endcolumn = 0
+  }
+}
+
+private class PathNodeSinkGroup extends PathNodeImpl, TPathNodeSinkGroup {
+  string sinkGroup;
+  Configuration config;
+
+  PathNodeSinkGroup() { this = TPathNodeSinkGroup(sinkGroup, config) }
+
+  override NodeEx getNodeEx() { none() }
+
+  override FlowState getState() { none() }
+
+  override Configuration getConfiguration() { result = config }
+
+  override PathNodeImpl getASuccessorImpl() { none() }
+
+  override predicate isSource() { none() }
+
+  override string toString() { result = sinkGroup }
+
+  override predicate hasLocationInfo(
+    string filepath, int startline, int startcolumn, int endline, int endcolumn
+  ) {
+    filepath = "" and startline = 0 and startcolumn = 0 and endline = 0 and endcolumn = 0
+  }
 }
 
 private predicate pathNode(
@@ -3495,6 +3594,15 @@ private module Subpaths {
  * Will only have results if `configuration` has non-empty sources and
  * sinks.
  */
+private predicate hasFlowPath(
+  PathNodeImpl flowsource, PathNodeImpl flowsink, Configuration configuration
+) {
+  flowsource.isFlowSource() and
+  flowsource.getConfiguration() = configuration and
+  (flowsource = flowsink or pathSuccPlus(flowsource, flowsink)) and
+  flowsink.isFlowSink()
+}
+
 private predicate flowsTo(
   PathNodeImpl flowsource, PathNodeSink flowsink, Node source, Node sink,
   Configuration configuration
diff --git a/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImplForSerializability.qll b/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImplForSerializability.qll
index 2dde1c2819d..3c41b1876dc 100644
--- a/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImplForSerializability.qll
+++ b/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImplForSerializability.qll
@@ -147,6 +147,12 @@ abstract class Configuration extends string {
    */
   FlowFeature getAFeature() { none() }
 
+  /** Holds if sources should be grouped in the result of `hasFlowPath`. */
+  predicate sourceGrouping(Node source, string sourceGroup) { none() }
+
+  /** Holds if sinks should be grouped in the result of `hasFlowPath`. */
+  predicate sinkGrouping(Node sink, string sinkGroup) { none() }
+
   /**
    * Holds if data may flow from `source` to `sink` for this configuration.
    */
@@ -158,7 +164,7 @@ abstract class Configuration extends string {
    * The corresponding paths are generated from the end-points and the graph
    * included in the module `PathGraph`.
    */
-  predicate hasFlowPath(PathNode source, PathNode sink) { flowsTo(source, sink, _, _, this) }
+  predicate hasFlowPath(PathNode source, PathNode sink) { hasFlowPath(source, sink, this) }
 
   /**
    * Holds if data may flow from some source to `sink` for this configuration.
@@ -2712,6 +2718,18 @@ private newtype TPathNode =
       state = sink.getState() and
       config = sink.getConfiguration()
     )
+  } or
+  TPathNodeSourceGroup(string sourceGroup, Configuration config) {
+    exists(PathNodeImpl source |
+      sourceGroup = source.getSourceGroup() and
+      config = source.getConfiguration()
+    )
+  } or
+  TPathNodeSinkGroup(string sinkGroup, Configuration config) {
+    exists(PathNodeSink sink |
+      sinkGroup = sink.getSinkGroup() and
+      config = sink.getConfiguration()
+    )
   }
 
 /**
@@ -2920,6 +2938,22 @@ abstract private class PathNodeImpl extends TPathNode {
     )
   }
 
+  string getSourceGroup() {
+    this.isSource() and
+    this.getConfiguration().sourceGrouping(this.getNodeEx().asNode(), result)
+  }
+
+  predicate isFlowSource() {
+    this.isSource() and not exists(this.getSourceGroup())
+    or
+    this instanceof PathNodeSourceGroup
+  }
+
+  predicate isFlowSink() {
+    this = any(PathNodeSink sink | not exists(sink.getSinkGroup())) or
+    this instanceof PathNodeSinkGroup
+  }
+
   private string ppAp() {
     this instanceof PathNodeSink and result = ""
     or
@@ -2959,7 +2993,9 @@ abstract private class PathNodeImpl extends TPathNode {
 
 /** Holds if `n` can reach a sink. */
 private predicate directReach(PathNodeImpl n) {
-  n instanceof PathNodeSink or directReach(n.getANonHiddenSuccessor())
+  n instanceof PathNodeSink or
+  n instanceof PathNodeSinkGroup or
+  directReach(n.getANonHiddenSuccessor())
 }
 
 /** Holds if `n` can reach a sink or is used in a subpath that can reach a sink. */
@@ -3015,6 +3051,12 @@ class PathNode instanceof PathNodeImpl {
 
   /** Holds if this node is a source. */
   final predicate isSource() { super.isSource() }
+
+  /** Holds if this node is a grouping of source nodes. */
+  final predicate isSourceGroup(string group) { this = TPathNodeSourceGroup(group, _) }
+
+  /** Holds if this node is a grouping of sink nodes. */
+  final predicate isSinkGroup(string group) { this = TPathNodeSinkGroup(group, _) }
 }
 
 /**
@@ -3136,9 +3178,66 @@ private class PathNodeSink extends PathNodeImpl, TPathNodeSink {
 
   override Configuration getConfiguration() { result = config }
 
-  override PathNodeImpl getASuccessorImpl() { none() }
+  override PathNodeImpl getASuccessorImpl() {
+    result = TPathNodeSinkGroup(this.getSinkGroup(), config)
+  }
 
   override predicate isSource() { sourceNode(node, state, config) }
+
+  string getSinkGroup() { config.sinkGrouping(node.asNode(), result) }
+}
+
+private class PathNodeSourceGroup extends PathNodeImpl, TPathNodeSourceGroup {
+  string sourceGroup;
+  Configuration config;
+
+  PathNodeSourceGroup() { this = TPathNodeSourceGroup(sourceGroup, config) }
+
+  override NodeEx getNodeEx() { none() }
+
+  override FlowState getState() { none() }
+
+  override Configuration getConfiguration() { result = config }
+
+  override PathNodeImpl getASuccessorImpl() {
+    result.getSourceGroup() = sourceGroup and
+    result.getConfiguration() = config
+  }
+
+  override predicate isSource() { none() }
+
+  override string toString() { result = sourceGroup }
+
+  override predicate hasLocationInfo(
+    string filepath, int startline, int startcolumn, int endline, int endcolumn
+  ) {
+    filepath = "" and startline = 0 and startcolumn = 0 and endline = 0 and endcolumn = 0
+  }
+}
+
+private class PathNodeSinkGroup extends PathNodeImpl, TPathNodeSinkGroup {
+  string sinkGroup;
+  Configuration config;
+
+  PathNodeSinkGroup() { this = TPathNodeSinkGroup(sinkGroup, config) }
+
+  override NodeEx getNodeEx() { none() }
+
+  override FlowState getState() { none() }
+
+  override Configuration getConfiguration() { result = config }
+
+  override PathNodeImpl getASuccessorImpl() { none() }
+
+  override predicate isSource() { none() }
+
+  override string toString() { result = sinkGroup }
+
+  override predicate hasLocationInfo(
+    string filepath, int startline, int startcolumn, int endline, int endcolumn
+  ) {
+    filepath = "" and startline = 0 and startcolumn = 0 and endline = 0 and endcolumn = 0
+  }
 }
 
 private predicate pathNode(
@@ -3495,6 +3594,15 @@ private module Subpaths {
  * Will only have results if `configuration` has non-empty sources and
  * sinks.
  */
+private predicate hasFlowPath(
+  PathNodeImpl flowsource, PathNodeImpl flowsink, Configuration configuration
+) {
+  flowsource.isFlowSource() and
+  flowsource.getConfiguration() = configuration and
+  (flowsource = flowsink or pathSuccPlus(flowsource, flowsink)) and
+  flowsink.isFlowSink()
+}
+
 private predicate flowsTo(
   PathNodeImpl flowsource, PathNodeSink flowsink, Node source, Node sink,
   Configuration configuration
diff --git a/python/ql/lib/semmle/python/dataflow/new/internal/DataFlowImpl.qll b/python/ql/lib/semmle/python/dataflow/new/internal/DataFlowImpl.qll
index 2dde1c2819d..3c41b1876dc 100644
--- a/python/ql/lib/semmle/python/dataflow/new/internal/DataFlowImpl.qll
+++ b/python/ql/lib/semmle/python/dataflow/new/internal/DataFlowImpl.qll
@@ -147,6 +147,12 @@ abstract class Configuration extends string {
    */
   FlowFeature getAFeature() { none() }
 
+  /** Holds if sources should be grouped in the result of `hasFlowPath`. */
+  predicate sourceGrouping(Node source, string sourceGroup) { none() }
+
+  /** Holds if sinks should be grouped in the result of `hasFlowPath`. */
+  predicate sinkGrouping(Node sink, string sinkGroup) { none() }
+
   /**
    * Holds if data may flow from `source` to `sink` for this configuration.
    */
@@ -158,7 +164,7 @@ abstract class Configuration extends string {
    * The corresponding paths are generated from the end-points and the graph
    * included in the module `PathGraph`.
    */
-  predicate hasFlowPath(PathNode source, PathNode sink) { flowsTo(source, sink, _, _, this) }
+  predicate hasFlowPath(PathNode source, PathNode sink) { hasFlowPath(source, sink, this) }
 
   /**
    * Holds if data may flow from some source to `sink` for this configuration.
@@ -2712,6 +2718,18 @@ private newtype TPathNode =
       state = sink.getState() and
       config = sink.getConfiguration()
     )
+  } or
+  TPathNodeSourceGroup(string sourceGroup, Configuration config) {
+    exists(PathNodeImpl source |
+      sourceGroup = source.getSourceGroup() and
+      config = source.getConfiguration()
+    )
+  } or
+  TPathNodeSinkGroup(string sinkGroup, Configuration config) {
+    exists(PathNodeSink sink |
+      sinkGroup = sink.getSinkGroup() and
+      config = sink.getConfiguration()
+    )
   }
 
 /**
@@ -2920,6 +2938,22 @@ abstract private class PathNodeImpl extends TPathNode {
     )
   }
 
+  string getSourceGroup() {
+    this.isSource() and
+    this.getConfiguration().sourceGrouping(this.getNodeEx().asNode(), result)
+  }
+
+  predicate isFlowSource() {
+    this.isSource() and not exists(this.getSourceGroup())
+    or
+    this instanceof PathNodeSourceGroup
+  }
+
+  predicate isFlowSink() {
+    this = any(PathNodeSink sink | not exists(sink.getSinkGroup())) or
+    this instanceof PathNodeSinkGroup
+  }
+
   private string ppAp() {
     this instanceof PathNodeSink and result = ""
     or
@@ -2959,7 +2993,9 @@ abstract private class PathNodeImpl extends TPathNode {
 
 /** Holds if `n` can reach a sink. */
 private predicate directReach(PathNodeImpl n) {
-  n instanceof PathNodeSink or directReach(n.getANonHiddenSuccessor())
+  n instanceof PathNodeSink or
+  n instanceof PathNodeSinkGroup or
+  directReach(n.getANonHiddenSuccessor())
 }
 
 /** Holds if `n` can reach a sink or is used in a subpath that can reach a sink. */
@@ -3015,6 +3051,12 @@ class PathNode instanceof PathNodeImpl {
 
   /** Holds if this node is a source. */
   final predicate isSource() { super.isSource() }
+
+  /** Holds if this node is a grouping of source nodes. */
+  final predicate isSourceGroup(string group) { this = TPathNodeSourceGroup(group, _) }
+
+  /** Holds if this node is a grouping of sink nodes. */
+  final predicate isSinkGroup(string group) { this = TPathNodeSinkGroup(group, _) }
 }
 
 /**
@@ -3136,9 +3178,66 @@ private class PathNodeSink extends PathNodeImpl, TPathNodeSink {
 
   override Configuration getConfiguration() { result = config }
 
-  override PathNodeImpl getASuccessorImpl() { none() }
+  override PathNodeImpl getASuccessorImpl() {
+    result = TPathNodeSinkGroup(this.getSinkGroup(), config)
+  }
 
   override predicate isSource() { sourceNode(node, state, config) }
+
+  string getSinkGroup() { config.sinkGrouping(node.asNode(), result) }
+}
+
+private class PathNodeSourceGroup extends PathNodeImpl, TPathNodeSourceGroup {
+  string sourceGroup;
+  Configuration config;
+
+  PathNodeSourceGroup() { this = TPathNodeSourceGroup(sourceGroup, config) }
+
+  override NodeEx getNodeEx() { none() }
+
+  override FlowState getState() { none() }
+
+  override Configuration getConfiguration() { result = config }
+
+  override PathNodeImpl getASuccessorImpl() {
+    result.getSourceGroup() = sourceGroup and
+    result.getConfiguration() = config
+  }
+
+  override predicate isSource() { none() }
+
+  override string toString() { result = sourceGroup }
+
+  override predicate hasLocationInfo(
+    string filepath, int startline, int startcolumn, int endline, int endcolumn
+  ) {
+    filepath = "" and startline = 0 and startcolumn = 0 and endline = 0 and endcolumn = 0
+  }
+}
+
+private class PathNodeSinkGroup extends PathNodeImpl, TPathNodeSinkGroup {
+  string sinkGroup;
+  Configuration config;
+
+  PathNodeSinkGroup() { this = TPathNodeSinkGroup(sinkGroup, config) }
+
+  override NodeEx getNodeEx() { none() }
+
+  override FlowState getState() { none() }
+
+  override Configuration getConfiguration() { result = config }
+
+  override PathNodeImpl getASuccessorImpl() { none() }
+
+  override predicate isSource() { none() }
+
+  override string toString() { result = sinkGroup }
+
+  override predicate hasLocationInfo(
+    string filepath, int startline, int startcolumn, int endline, int endcolumn
+  ) {
+    filepath = "" and startline = 0 and startcolumn = 0 and endline = 0 and endcolumn = 0
+  }
 }
 
 private predicate pathNode(
@@ -3495,6 +3594,15 @@ private module Subpaths {
  * Will only have results if `configuration` has non-empty sources and
  * sinks.
  */
+private predicate hasFlowPath(
+  PathNodeImpl flowsource, PathNodeImpl flowsink, Configuration configuration
+) {
+  flowsource.isFlowSource() and
+  flowsource.getConfiguration() = configuration and
+  (flowsource = flowsink or pathSuccPlus(flowsource, flowsink)) and
+  flowsink.isFlowSink()
+}
+
 private predicate flowsTo(
   PathNodeImpl flowsource, PathNodeSink flowsink, Node source, Node sink,
   Configuration configuration
diff --git a/python/ql/lib/semmle/python/dataflow/new/internal/DataFlowImpl2.qll b/python/ql/lib/semmle/python/dataflow/new/internal/DataFlowImpl2.qll
index 2dde1c2819d..3c41b1876dc 100644
--- a/python/ql/lib/semmle/python/dataflow/new/internal/DataFlowImpl2.qll
+++ b/python/ql/lib/semmle/python/dataflow/new/internal/DataFlowImpl2.qll
@@ -147,6 +147,12 @@ abstract class Configuration extends string {
    */
   FlowFeature getAFeature() { none() }
 
+  /** Holds if sources should be grouped in the result of `hasFlowPath`. */
+  predicate sourceGrouping(Node source, string sourceGroup) { none() }
+
+  /** Holds if sinks should be grouped in the result of `hasFlowPath`. */
+  predicate sinkGrouping(Node sink, string sinkGroup) { none() }
+
   /**
    * Holds if data may flow from `source` to `sink` for this configuration.
    */
@@ -158,7 +164,7 @@ abstract class Configuration extends string {
    * The corresponding paths are generated from the end-points and the graph
    * included in the module `PathGraph`.
    */
-  predicate hasFlowPath(PathNode source, PathNode sink) { flowsTo(source, sink, _, _, this) }
+  predicate hasFlowPath(PathNode source, PathNode sink) { hasFlowPath(source, sink, this) }
 
   /**
    * Holds if data may flow from some source to `sink` for this configuration.
@@ -2712,6 +2718,18 @@ private newtype TPathNode =
       state = sink.getState() and
       config = sink.getConfiguration()
     )
+  } or
+  TPathNodeSourceGroup(string sourceGroup, Configuration config) {
+    exists(PathNodeImpl source |
+      sourceGroup = source.getSourceGroup() and
+      config = source.getConfiguration()
+    )
+  } or
+  TPathNodeSinkGroup(string sinkGroup, Configuration config) {
+    exists(PathNodeSink sink |
+      sinkGroup = sink.getSinkGroup() and
+      config = sink.getConfiguration()
+    )
   }
 
 /**
@@ -2920,6 +2938,22 @@ abstract private class PathNodeImpl extends TPathNode {
     )
   }
 
+  string getSourceGroup() {
+    this.isSource() and
+    this.getConfiguration().sourceGrouping(this.getNodeEx().asNode(), result)
+  }
+
+  predicate isFlowSource() {
+    this.isSource() and not exists(this.getSourceGroup())
+    or
+    this instanceof PathNodeSourceGroup
+  }
+
+  predicate isFlowSink() {
+    this = any(PathNodeSink sink | not exists(sink.getSinkGroup())) or
+    this instanceof PathNodeSinkGroup
+  }
+
   private string ppAp() {
     this instanceof PathNodeSink and result = ""
     or
@@ -2959,7 +2993,9 @@ abstract private class PathNodeImpl extends TPathNode {
 
 /** Holds if `n` can reach a sink. */
 private predicate directReach(PathNodeImpl n) {
-  n instanceof PathNodeSink or directReach(n.getANonHiddenSuccessor())
+  n instanceof PathNodeSink or
+  n instanceof PathNodeSinkGroup or
+  directReach(n.getANonHiddenSuccessor())
 }
 
 /** Holds if `n` can reach a sink or is used in a subpath that can reach a sink. */
@@ -3015,6 +3051,12 @@ class PathNode instanceof PathNodeImpl {
 
   /** Holds if this node is a source. */
   final predicate isSource() { super.isSource() }
+
+  /** Holds if this node is a grouping of source nodes. */
+  final predicate isSourceGroup(string group) { this = TPathNodeSourceGroup(group, _) }
+
+  /** Holds if this node is a grouping of sink nodes. */
+  final predicate isSinkGroup(string group) { this = TPathNodeSinkGroup(group, _) }
 }
 
 /**
@@ -3136,9 +3178,66 @@ private class PathNodeSink extends PathNodeImpl, TPathNodeSink {
 
   override Configuration getConfiguration() { result = config }
 
-  override PathNodeImpl getASuccessorImpl() { none() }
+  override PathNodeImpl getASuccessorImpl() {
+    result = TPathNodeSinkGroup(this.getSinkGroup(), config)
+  }
 
   override predicate isSource() { sourceNode(node, state, config) }
+
+  string getSinkGroup() { config.sinkGrouping(node.asNode(), result) }
+}
+
+private class PathNodeSourceGroup extends PathNodeImpl, TPathNodeSourceGroup {
+  string sourceGroup;
+  Configuration config;
+
+  PathNodeSourceGroup() { this = TPathNodeSourceGroup(sourceGroup, config) }
+
+  override NodeEx getNodeEx() { none() }
+
+  override FlowState getState() { none() }
+
+  override Configuration getConfiguration() { result = config }
+
+  override PathNodeImpl getASuccessorImpl() {
+    result.getSourceGroup() = sourceGroup and
+    result.getConfiguration() = config
+  }
+
+  override predicate isSource() { none() }
+
+  override string toString() { result = sourceGroup }
+
+  override predicate hasLocationInfo(
+    string filepath, int startline, int startcolumn, int endline, int endcolumn
+  ) {
+    filepath = "" and startline = 0 and startcolumn = 0 and endline = 0 and endcolumn = 0
+  }
+}
+
+private class PathNodeSinkGroup extends PathNodeImpl, TPathNodeSinkGroup {
+  string sinkGroup;
+  Configuration config;
+
+  PathNodeSinkGroup() { this = TPathNodeSinkGroup(sinkGroup, config) }
+
+  override NodeEx getNodeEx() { none() }
+
+  override FlowState getState() { none() }
+
+  override Configuration getConfiguration() { result = config }
+
+  override PathNodeImpl getASuccessorImpl() { none() }
+
+  override predicate isSource() { none() }
+
+  override string toString() { result = sinkGroup }
+
+  override predicate hasLocationInfo(
+    string filepath, int startline, int startcolumn, int endline, int endcolumn
+  ) {
+    filepath = "" and startline = 0 and startcolumn = 0 and endline = 0 and endcolumn = 0
+  }
 }
 
 private predicate pathNode(
@@ -3495,6 +3594,15 @@ private module Subpaths {
  * Will only have results if `configuration` has non-empty sources and
  * sinks.
  */
+private predicate hasFlowPath(
+  PathNodeImpl flowsource, PathNodeImpl flowsink, Configuration configuration
+) {
+  flowsource.isFlowSource() and
+  flowsource.getConfiguration() = configuration and
+  (flowsource = flowsink or pathSuccPlus(flowsource, flowsink)) and
+  flowsink.isFlowSink()
+}
+
 private predicate flowsTo(
   PathNodeImpl flowsource, PathNodeSink flowsink, Node source, Node sink,
   Configuration configuration
diff --git a/python/ql/lib/semmle/python/dataflow/new/internal/DataFlowImpl3.qll b/python/ql/lib/semmle/python/dataflow/new/internal/DataFlowImpl3.qll
index 2dde1c2819d..3c41b1876dc 100644
--- a/python/ql/lib/semmle/python/dataflow/new/internal/DataFlowImpl3.qll
+++ b/python/ql/lib/semmle/python/dataflow/new/internal/DataFlowImpl3.qll
@@ -147,6 +147,12 @@ abstract class Configuration extends string {
    */
   FlowFeature getAFeature() { none() }
 
+  /** Holds if sources should be grouped in the result of `hasFlowPath`. */
+  predicate sourceGrouping(Node source, string sourceGroup) { none() }
+
+  /** Holds if sinks should be grouped in the result of `hasFlowPath`. */
+  predicate sinkGrouping(Node sink, string sinkGroup) { none() }
+
   /**
    * Holds if data may flow from `source` to `sink` for this configuration.
    */
@@ -158,7 +164,7 @@ abstract class Configuration extends string {
    * The corresponding paths are generated from the end-points and the graph
    * included in the module `PathGraph`.
    */
-  predicate hasFlowPath(PathNode source, PathNode sink) { flowsTo(source, sink, _, _, this) }
+  predicate hasFlowPath(PathNode source, PathNode sink) { hasFlowPath(source, sink, this) }
 
   /**
    * Holds if data may flow from some source to `sink` for this configuration.
@@ -2712,6 +2718,18 @@ private newtype TPathNode =
       state = sink.getState() and
       config = sink.getConfiguration()
     )
+  } or
+  TPathNodeSourceGroup(string sourceGroup, Configuration config) {
+    exists(PathNodeImpl source |
+      sourceGroup = source.getSourceGroup() and
+      config = source.getConfiguration()
+    )
+  } or
+  TPathNodeSinkGroup(string sinkGroup, Configuration config) {
+    exists(PathNodeSink sink |
+      sinkGroup = sink.getSinkGroup() and
+      config = sink.getConfiguration()
+    )
   }
 
 /**
@@ -2920,6 +2938,22 @@ abstract private class PathNodeImpl extends TPathNode {
     )
   }
 
+  string getSourceGroup() {
+    this.isSource() and
+    this.getConfiguration().sourceGrouping(this.getNodeEx().asNode(), result)
+  }
+
+  predicate isFlowSource() {
+    this.isSource() and not exists(this.getSourceGroup())
+    or
+    this instanceof PathNodeSourceGroup
+  }
+
+  predicate isFlowSink() {
+    this = any(PathNodeSink sink | not exists(sink.getSinkGroup())) or
+    this instanceof PathNodeSinkGroup
+  }
+
   private string ppAp() {
     this instanceof PathNodeSink and result = ""
     or
@@ -2959,7 +2993,9 @@ abstract private class PathNodeImpl extends TPathNode {
 
 /** Holds if `n` can reach a sink. */
 private predicate directReach(PathNodeImpl n) {
-  n instanceof PathNodeSink or directReach(n.getANonHiddenSuccessor())
+  n instanceof PathNodeSink or
+  n instanceof PathNodeSinkGroup or
+  directReach(n.getANonHiddenSuccessor())
 }
 
 /** Holds if `n` can reach a sink or is used in a subpath that can reach a sink. */
@@ -3015,6 +3051,12 @@ class PathNode instanceof PathNodeImpl {
 
   /** Holds if this node is a source. */
   final predicate isSource() { super.isSource() }
+
+  /** Holds if this node is a grouping of source nodes. */
+  final predicate isSourceGroup(string group) { this = TPathNodeSourceGroup(group, _) }
+
+  /** Holds if this node is a grouping of sink nodes. */
+  final predicate isSinkGroup(string group) { this = TPathNodeSinkGroup(group, _) }
 }
 
 /**
@@ -3136,9 +3178,66 @@ private class PathNodeSink extends PathNodeImpl, TPathNodeSink {
 
   override Configuration getConfiguration() { result = config }
 
-  override PathNodeImpl getASuccessorImpl() { none() }
+  override PathNodeImpl getASuccessorImpl() {
+    result = TPathNodeSinkGroup(this.getSinkGroup(), config)
+  }
 
   override predicate isSource() { sourceNode(node, state, config) }
+
+  string getSinkGroup() { config.sinkGrouping(node.asNode(), result) }
+}
+
+private class PathNodeSourceGroup extends PathNodeImpl, TPathNodeSourceGroup {
+  string sourceGroup;
+  Configuration config;
+
+  PathNodeSourceGroup() { this = TPathNodeSourceGroup(sourceGroup, config) }
+
+  override NodeEx getNodeEx() { none() }
+
+  override FlowState getState() { none() }
+
+  override Configuration getConfiguration() { result = config }
+
+  override PathNodeImpl getASuccessorImpl() {
+    result.getSourceGroup() = sourceGroup and
+    result.getConfiguration() = config
+  }
+
+  override predicate isSource() { none() }
+
+  override string toString() { result = sourceGroup }
+
+  override predicate hasLocationInfo(
+    string filepath, int startline, int startcolumn, int endline, int endcolumn
+  ) {
+    filepath = "" and startline = 0 and startcolumn = 0 and endline = 0 and endcolumn = 0
+  }
+}
+
+private class PathNodeSinkGroup extends PathNodeImpl, TPathNodeSinkGroup {
+  string sinkGroup;
+  Configuration config;
+
+  PathNodeSinkGroup() { this = TPathNodeSinkGroup(sinkGroup, config) }
+
+  override NodeEx getNodeEx() { none() }
+
+  override FlowState getState() { none() }
+
+  override Configuration getConfiguration() { result = config }
+
+  override PathNodeImpl getASuccessorImpl() { none() }
+
+  override predicate isSource() { none() }
+
+  override string toString() { result = sinkGroup }
+
+  override predicate hasLocationInfo(
+    string filepath, int startline, int startcolumn, int endline, int endcolumn
+  ) {
+    filepath = "" and startline = 0 and startcolumn = 0 and endline = 0 and endcolumn = 0
+  }
 }
 
 private predicate pathNode(
@@ -3495,6 +3594,15 @@ private module Subpaths {
  * Will only have results if `configuration` has non-empty sources and
  * sinks.
  */
+private predicate hasFlowPath(
+  PathNodeImpl flowsource, PathNodeImpl flowsink, Configuration configuration
+) {
+  flowsource.isFlowSource() and
+  flowsource.getConfiguration() = configuration and
+  (flowsource = flowsink or pathSuccPlus(flowsource, flowsink)) and
+  flowsink.isFlowSink()
+}
+
 private predicate flowsTo(
   PathNodeImpl flowsource, PathNodeSink flowsink, Node source, Node sink,
   Configuration configuration
diff --git a/python/ql/lib/semmle/python/dataflow/new/internal/DataFlowImpl4.qll b/python/ql/lib/semmle/python/dataflow/new/internal/DataFlowImpl4.qll
index 2dde1c2819d..3c41b1876dc 100644
--- a/python/ql/lib/semmle/python/dataflow/new/internal/DataFlowImpl4.qll
+++ b/python/ql/lib/semmle/python/dataflow/new/internal/DataFlowImpl4.qll
@@ -147,6 +147,12 @@ abstract class Configuration extends string {
    */
   FlowFeature getAFeature() { none() }
 
+  /** Holds if sources should be grouped in the result of `hasFlowPath`. */
+  predicate sourceGrouping(Node source, string sourceGroup) { none() }
+
+  /** Holds if sinks should be grouped in the result of `hasFlowPath`. */
+  predicate sinkGrouping(Node sink, string sinkGroup) { none() }
+
   /**
    * Holds if data may flow from `source` to `sink` for this configuration.
    */
@@ -158,7 +164,7 @@ abstract class Configuration extends string {
    * The corresponding paths are generated from the end-points and the graph
    * included in the module `PathGraph`.
    */
-  predicate hasFlowPath(PathNode source, PathNode sink) { flowsTo(source, sink, _, _, this) }
+  predicate hasFlowPath(PathNode source, PathNode sink) { hasFlowPath(source, sink, this) }
 
   /**
    * Holds if data may flow from some source to `sink` for this configuration.
@@ -2712,6 +2718,18 @@ private newtype TPathNode =
       state = sink.getState() and
       config = sink.getConfiguration()
     )
+  } or
+  TPathNodeSourceGroup(string sourceGroup, Configuration config) {
+    exists(PathNodeImpl source |
+      sourceGroup = source.getSourceGroup() and
+      config = source.getConfiguration()
+    )
+  } or
+  TPathNodeSinkGroup(string sinkGroup, Configuration config) {
+    exists(PathNodeSink sink |
+      sinkGroup = sink.getSinkGroup() and
+      config = sink.getConfiguration()
+    )
   }
 
 /**
@@ -2920,6 +2938,22 @@ abstract private class PathNodeImpl extends TPathNode {
     )
   }
 
+  string getSourceGroup() {
+    this.isSource() and
+    this.getConfiguration().sourceGrouping(this.getNodeEx().asNode(), result)
+  }
+
+  predicate isFlowSource() {
+    this.isSource() and not exists(this.getSourceGroup())
+    or
+    this instanceof PathNodeSourceGroup
+  }
+
+  predicate isFlowSink() {
+    this = any(PathNodeSink sink | not exists(sink.getSinkGroup())) or
+    this instanceof PathNodeSinkGroup
+  }
+
   private string ppAp() {
     this instanceof PathNodeSink and result = ""
     or
@@ -2959,7 +2993,9 @@ abstract private class PathNodeImpl extends TPathNode {
 
 /** Holds if `n` can reach a sink. */
 private predicate directReach(PathNodeImpl n) {
-  n instanceof PathNodeSink or directReach(n.getANonHiddenSuccessor())
+  n instanceof PathNodeSink or
+  n instanceof PathNodeSinkGroup or
+  directReach(n.getANonHiddenSuccessor())
 }
 
 /** Holds if `n` can reach a sink or is used in a subpath that can reach a sink. */
@@ -3015,6 +3051,12 @@ class PathNode instanceof PathNodeImpl {
 
   /** Holds if this node is a source. */
   final predicate isSource() { super.isSource() }
+
+  /** Holds if this node is a grouping of source nodes. */
+  final predicate isSourceGroup(string group) { this = TPathNodeSourceGroup(group, _) }
+
+  /** Holds if this node is a grouping of sink nodes. */
+  final predicate isSinkGroup(string group) { this = TPathNodeSinkGroup(group, _) }
 }
 
 /**
@@ -3136,9 +3178,66 @@ private class PathNodeSink extends PathNodeImpl, TPathNodeSink {
 
   override Configuration getConfiguration() { result = config }
 
-  override PathNodeImpl getASuccessorImpl() { none() }
+  override PathNodeImpl getASuccessorImpl() {
+    result = TPathNodeSinkGroup(this.getSinkGroup(), config)
+  }
 
   override predicate isSource() { sourceNode(node, state, config) }
+
+  string getSinkGroup() { config.sinkGrouping(node.asNode(), result) }
+}
+
+private class PathNodeSourceGroup extends PathNodeImpl, TPathNodeSourceGroup {
+  string sourceGroup;
+  Configuration config;
+
+  PathNodeSourceGroup() { this = TPathNodeSourceGroup(sourceGroup, config) }
+
+  override NodeEx getNodeEx() { none() }
+
+  override FlowState getState() { none() }
+
+  override Configuration getConfiguration() { result = config }
+
+  override PathNodeImpl getASuccessorImpl() {
+    result.getSourceGroup() = sourceGroup and
+    result.getConfiguration() = config
+  }
+
+  override predicate isSource() { none() }
+
+  override string toString() { result = sourceGroup }
+
+  override predicate hasLocationInfo(
+    string filepath, int startline, int startcolumn, int endline, int endcolumn
+  ) {
+    filepath = "" and startline = 0 and startcolumn = 0 and endline = 0 and endcolumn = 0
+  }
+}
+
+private class PathNodeSinkGroup extends PathNodeImpl, TPathNodeSinkGroup {
+  string sinkGroup;
+  Configuration config;
+
+  PathNodeSinkGroup() { this = TPathNodeSinkGroup(sinkGroup, config) }
+
+  override NodeEx getNodeEx() { none() }
+
+  override FlowState getState() { none() }
+
+  override Configuration getConfiguration() { result = config }
+
+  override PathNodeImpl getASuccessorImpl() { none() }
+
+  override predicate isSource() { none() }
+
+  override string toString() { result = sinkGroup }
+
+  override predicate hasLocationInfo(
+    string filepath, int startline, int startcolumn, int endline, int endcolumn
+  ) {
+    filepath = "" and startline = 0 and startcolumn = 0 and endline = 0 and endcolumn = 0
+  }
 }
 
 private predicate pathNode(
@@ -3495,6 +3594,15 @@ private module Subpaths {
  * Will only have results if `configuration` has non-empty sources and
  * sinks.
  */
+private predicate hasFlowPath(
+  PathNodeImpl flowsource, PathNodeImpl flowsink, Configuration configuration
+) {
+  flowsource.isFlowSource() and
+  flowsource.getConfiguration() = configuration and
+  (flowsource = flowsink or pathSuccPlus(flowsource, flowsink)) and
+  flowsink.isFlowSink()
+}
+
 private predicate flowsTo(
   PathNodeImpl flowsource, PathNodeSink flowsink, Node source, Node sink,
   Configuration configuration
diff --git a/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImpl.qll b/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImpl.qll
index 2dde1c2819d..3c41b1876dc 100644
--- a/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImpl.qll
+++ b/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImpl.qll
@@ -147,6 +147,12 @@ abstract class Configuration extends string {
    */
   FlowFeature getAFeature() { none() }
 
+  /** Holds if sources should be grouped in the result of `hasFlowPath`. */
+  predicate sourceGrouping(Node source, string sourceGroup) { none() }
+
+  /** Holds if sinks should be grouped in the result of `hasFlowPath`. */
+  predicate sinkGrouping(Node sink, string sinkGroup) { none() }
+
   /**
    * Holds if data may flow from `source` to `sink` for this configuration.
    */
@@ -158,7 +164,7 @@ abstract class Configuration extends string {
    * The corresponding paths are generated from the end-points and the graph
    * included in the module `PathGraph`.
    */
-  predicate hasFlowPath(PathNode source, PathNode sink) { flowsTo(source, sink, _, _, this) }
+  predicate hasFlowPath(PathNode source, PathNode sink) { hasFlowPath(source, sink, this) }
 
   /**
    * Holds if data may flow from some source to `sink` for this configuration.
@@ -2712,6 +2718,18 @@ private newtype TPathNode =
       state = sink.getState() and
       config = sink.getConfiguration()
     )
+  } or
+  TPathNodeSourceGroup(string sourceGroup, Configuration config) {
+    exists(PathNodeImpl source |
+      sourceGroup = source.getSourceGroup() and
+      config = source.getConfiguration()
+    )
+  } or
+  TPathNodeSinkGroup(string sinkGroup, Configuration config) {
+    exists(PathNodeSink sink |
+      sinkGroup = sink.getSinkGroup() and
+      config = sink.getConfiguration()
+    )
   }
 
 /**
@@ -2920,6 +2938,22 @@ abstract private class PathNodeImpl extends TPathNode {
     )
   }
 
+  string getSourceGroup() {
+    this.isSource() and
+    this.getConfiguration().sourceGrouping(this.getNodeEx().asNode(), result)
+  }
+
+  predicate isFlowSource() {
+    this.isSource() and not exists(this.getSourceGroup())
+    or
+    this instanceof PathNodeSourceGroup
+  }
+
+  predicate isFlowSink() {
+    this = any(PathNodeSink sink | not exists(sink.getSinkGroup())) or
+    this instanceof PathNodeSinkGroup
+  }
+
   private string ppAp() {
     this instanceof PathNodeSink and result = ""
     or
@@ -2959,7 +2993,9 @@ abstract private class PathNodeImpl extends TPathNode {
 
 /** Holds if `n` can reach a sink. */
 private predicate directReach(PathNodeImpl n) {
-  n instanceof PathNodeSink or directReach(n.getANonHiddenSuccessor())
+  n instanceof PathNodeSink or
+  n instanceof PathNodeSinkGroup or
+  directReach(n.getANonHiddenSuccessor())
 }
 
 /** Holds if `n` can reach a sink or is used in a subpath that can reach a sink. */
@@ -3015,6 +3051,12 @@ class PathNode instanceof PathNodeImpl {
 
   /** Holds if this node is a source. */
   final predicate isSource() { super.isSource() }
+
+  /** Holds if this node is a grouping of source nodes. */
+  final predicate isSourceGroup(string group) { this = TPathNodeSourceGroup(group, _) }
+
+  /** Holds if this node is a grouping of sink nodes. */
+  final predicate isSinkGroup(string group) { this = TPathNodeSinkGroup(group, _) }
 }
 
 /**
@@ -3136,9 +3178,66 @@ private class PathNodeSink extends PathNodeImpl, TPathNodeSink {
 
   override Configuration getConfiguration() { result = config }
 
-  override PathNodeImpl getASuccessorImpl() { none() }
+  override PathNodeImpl getASuccessorImpl() {
+    result = TPathNodeSinkGroup(this.getSinkGroup(), config)
+  }
 
   override predicate isSource() { sourceNode(node, state, config) }
+
+  string getSinkGroup() { config.sinkGrouping(node.asNode(), result) }
+}
+
+private class PathNodeSourceGroup extends PathNodeImpl, TPathNodeSourceGroup {
+  string sourceGroup;
+  Configuration config;
+
+  PathNodeSourceGroup() { this = TPathNodeSourceGroup(sourceGroup, config) }
+
+  override NodeEx getNodeEx() { none() }
+
+  override FlowState getState() { none() }
+
+  override Configuration getConfiguration() { result = config }
+
+  override PathNodeImpl getASuccessorImpl() {
+    result.getSourceGroup() = sourceGroup and
+    result.getConfiguration() = config
+  }
+
+  override predicate isSource() { none() }
+
+  override string toString() { result = sourceGroup }
+
+  override predicate hasLocationInfo(
+    string filepath, int startline, int startcolumn, int endline, int endcolumn
+  ) {
+    filepath = "" and startline = 0 and startcolumn = 0 and endline = 0 and endcolumn = 0
+  }
+}
+
+private class PathNodeSinkGroup extends PathNodeImpl, TPathNodeSinkGroup {
+  string sinkGroup;
+  Configuration config;
+
+  PathNodeSinkGroup() { this = TPathNodeSinkGroup(sinkGroup, config) }
+
+  override NodeEx getNodeEx() { none() }
+
+  override FlowState getState() { none() }
+
+  override Configuration getConfiguration() { result = config }
+
+  override PathNodeImpl getASuccessorImpl() { none() }
+
+  override predicate isSource() { none() }
+
+  override string toString() { result = sinkGroup }
+
+  override predicate hasLocationInfo(
+    string filepath, int startline, int startcolumn, int endline, int endcolumn
+  ) {
+    filepath = "" and startline = 0 and startcolumn = 0 and endline = 0 and endcolumn = 0
+  }
 }
 
 private predicate pathNode(
@@ -3495,6 +3594,15 @@ private module Subpaths {
  * Will only have results if `configuration` has non-empty sources and
  * sinks.
  */
+private predicate hasFlowPath(
+  PathNodeImpl flowsource, PathNodeImpl flowsink, Configuration configuration
+) {
+  flowsource.isFlowSource() and
+  flowsource.getConfiguration() = configuration and
+  (flowsource = flowsink or pathSuccPlus(flowsource, flowsink)) and
+  flowsink.isFlowSink()
+}
+
 private predicate flowsTo(
   PathNodeImpl flowsource, PathNodeSink flowsink, Node source, Node sink,
   Configuration configuration
diff --git a/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImpl2.qll b/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImpl2.qll
index 2dde1c2819d..3c41b1876dc 100644
--- a/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImpl2.qll
+++ b/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImpl2.qll
@@ -147,6 +147,12 @@ abstract class Configuration extends string {
    */
   FlowFeature getAFeature() { none() }
 
+  /** Holds if sources should be grouped in the result of `hasFlowPath`. */
+  predicate sourceGrouping(Node source, string sourceGroup) { none() }
+
+  /** Holds if sinks should be grouped in the result of `hasFlowPath`. */
+  predicate sinkGrouping(Node sink, string sinkGroup) { none() }
+
   /**
    * Holds if data may flow from `source` to `sink` for this configuration.
    */
@@ -158,7 +164,7 @@ abstract class Configuration extends string {
    * The corresponding paths are generated from the end-points and the graph
    * included in the module `PathGraph`.
    */
-  predicate hasFlowPath(PathNode source, PathNode sink) { flowsTo(source, sink, _, _, this) }
+  predicate hasFlowPath(PathNode source, PathNode sink) { hasFlowPath(source, sink, this) }
 
   /**
    * Holds if data may flow from some source to `sink` for this configuration.
@@ -2712,6 +2718,18 @@ private newtype TPathNode =
       state = sink.getState() and
       config = sink.getConfiguration()
     )
+  } or
+  TPathNodeSourceGroup(string sourceGroup, Configuration config) {
+    exists(PathNodeImpl source |
+      sourceGroup = source.getSourceGroup() and
+      config = source.getConfiguration()
+    )
+  } or
+  TPathNodeSinkGroup(string sinkGroup, Configuration config) {
+    exists(PathNodeSink sink |
+      sinkGroup = sink.getSinkGroup() and
+      config = sink.getConfiguration()
+    )
   }
 
 /**
@@ -2920,6 +2938,22 @@ abstract private class PathNodeImpl extends TPathNode {
     )
   }
 
+  string getSourceGroup() {
+    this.isSource() and
+    this.getConfiguration().sourceGrouping(this.getNodeEx().asNode(), result)
+  }
+
+  predicate isFlowSource() {
+    this.isSource() and not exists(this.getSourceGroup())
+    or
+    this instanceof PathNodeSourceGroup
+  }
+
+  predicate isFlowSink() {
+    this = any(PathNodeSink sink | not exists(sink.getSinkGroup())) or
+    this instanceof PathNodeSinkGroup
+  }
+
   private string ppAp() {
     this instanceof PathNodeSink and result = ""
     or
@@ -2959,7 +2993,9 @@ abstract private class PathNodeImpl extends TPathNode {
 
 /** Holds if `n` can reach a sink. */
 private predicate directReach(PathNodeImpl n) {
-  n instanceof PathNodeSink or directReach(n.getANonHiddenSuccessor())
+  n instanceof PathNodeSink or
+  n instanceof PathNodeSinkGroup or
+  directReach(n.getANonHiddenSuccessor())
 }
 
 /** Holds if `n` can reach a sink or is used in a subpath that can reach a sink. */
@@ -3015,6 +3051,12 @@ class PathNode instanceof PathNodeImpl {
 
   /** Holds if this node is a source. */
   final predicate isSource() { super.isSource() }
+
+  /** Holds if this node is a grouping of source nodes. */
+  final predicate isSourceGroup(string group) { this = TPathNodeSourceGroup(group, _) }
+
+  /** Holds if this node is a grouping of sink nodes. */
+  final predicate isSinkGroup(string group) { this = TPathNodeSinkGroup(group, _) }
 }
 
 /**
@@ -3136,9 +3178,66 @@ private class PathNodeSink extends PathNodeImpl, TPathNodeSink {
 
   override Configuration getConfiguration() { result = config }
 
-  override PathNodeImpl getASuccessorImpl() { none() }
+  override PathNodeImpl getASuccessorImpl() {
+    result = TPathNodeSinkGroup(this.getSinkGroup(), config)
+  }
 
   override predicate isSource() { sourceNode(node, state, config) }
+
+  string getSinkGroup() { config.sinkGrouping(node.asNode(), result) }
+}
+
+private class PathNodeSourceGroup extends PathNodeImpl, TPathNodeSourceGroup {
+  string sourceGroup;
+  Configuration config;
+
+  PathNodeSourceGroup() { this = TPathNodeSourceGroup(sourceGroup, config) }
+
+  override NodeEx getNodeEx() { none() }
+
+  override FlowState getState() { none() }
+
+  override Configuration getConfiguration() { result = config }
+
+  override PathNodeImpl getASuccessorImpl() {
+    result.getSourceGroup() = sourceGroup and
+    result.getConfiguration() = config
+  }
+
+  override predicate isSource() { none() }
+
+  override string toString() { result = sourceGroup }
+
+  override predicate hasLocationInfo(
+    string filepath, int startline, int startcolumn, int endline, int endcolumn
+  ) {
+    filepath = "" and startline = 0 and startcolumn = 0 and endline = 0 and endcolumn = 0
+  }
+}
+
+private class PathNodeSinkGroup extends PathNodeImpl, TPathNodeSinkGroup {
+  string sinkGroup;
+  Configuration config;
+
+  PathNodeSinkGroup() { this = TPathNodeSinkGroup(sinkGroup, config) }
+
+  override NodeEx getNodeEx() { none() }
+
+  override FlowState getState() { none() }
+
+  override Configuration getConfiguration() { result = config }
+
+  override PathNodeImpl getASuccessorImpl() { none() }
+
+  override predicate isSource() { none() }
+
+  override string toString() { result = sinkGroup }
+
+  override predicate hasLocationInfo(
+    string filepath, int startline, int startcolumn, int endline, int endcolumn
+  ) {
+    filepath = "" and startline = 0 and startcolumn = 0 and endline = 0 and endcolumn = 0
+  }
 }
 
 private predicate pathNode(
@@ -3495,6 +3594,15 @@ private module Subpaths {
  * Will only have results if `configuration` has non-empty sources and
  * sinks.
  */
+private predicate hasFlowPath(
+  PathNodeImpl flowsource, PathNodeImpl flowsink, Configuration configuration
+) {
+  flowsource.isFlowSource() and
+  flowsource.getConfiguration() = configuration and
+  (flowsource = flowsink or pathSuccPlus(flowsource, flowsink)) and
+  flowsink.isFlowSink()
+}
+
 private predicate flowsTo(
   PathNodeImpl flowsource, PathNodeSink flowsink, Node source, Node sink,
   Configuration configuration
diff --git a/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImplForHttpClientLibraries.qll b/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImplForHttpClientLibraries.qll
index 2dde1c2819d..3c41b1876dc 100644
--- a/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImplForHttpClientLibraries.qll
+++ b/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImplForHttpClientLibraries.qll
@@ -147,6 +147,12 @@ abstract class Configuration extends string {
    */
   FlowFeature getAFeature() { none() }
 
+  /** Holds if sources should be grouped in the result of `hasFlowPath`. */
+  predicate sourceGrouping(Node source, string sourceGroup) { none() }
+
+  /** Holds if sinks should be grouped in the result of `hasFlowPath`. */
+  predicate sinkGrouping(Node sink, string sinkGroup) { none() }
+
   /**
    * Holds if data may flow from `source` to `sink` for this configuration.
    */
@@ -158,7 +164,7 @@ abstract class Configuration extends string {
    * The corresponding paths are generated from the end-points and the graph
    * included in the module `PathGraph`.
    */
-  predicate hasFlowPath(PathNode source, PathNode sink) { flowsTo(source, sink, _, _, this) }
+  predicate hasFlowPath(PathNode source, PathNode sink) { hasFlowPath(source, sink, this) }
 
   /**
    * Holds if data may flow from some source to `sink` for this configuration.
@@ -2712,6 +2718,18 @@ private newtype TPathNode =
       state = sink.getState() and
       config = sink.getConfiguration()
     )
+  } or
+  TPathNodeSourceGroup(string sourceGroup, Configuration config) {
+    exists(PathNodeImpl source |
+      sourceGroup = source.getSourceGroup() and
+      config = source.getConfiguration()
+    )
+  } or
+  TPathNodeSinkGroup(string sinkGroup, Configuration config) {
+    exists(PathNodeSink sink |
+      sinkGroup = sink.getSinkGroup() and
+      config = sink.getConfiguration()
+    )
   }
 
 /**
@@ -2920,6 +2938,22 @@ abstract private class PathNodeImpl extends TPathNode {
     )
   }
 
+  string getSourceGroup() {
+    this.isSource() and
+    this.getConfiguration().sourceGrouping(this.getNodeEx().asNode(), result)
+  }
+
+  predicate isFlowSource() {
+    this.isSource() and not exists(this.getSourceGroup())
+    or
+    this instanceof PathNodeSourceGroup
+  }
+
+  predicate isFlowSink() {
+    this = any(PathNodeSink sink | not exists(sink.getSinkGroup())) or
+    this instanceof PathNodeSinkGroup
+  }
+
   private string ppAp() {
     this instanceof PathNodeSink and result = ""
     or
@@ -2959,7 +2993,9 @@ abstract private class PathNodeImpl extends TPathNode {
 
 /** Holds if `n` can reach a sink. */
 private predicate directReach(PathNodeImpl n) {
-  n instanceof PathNodeSink or directReach(n.getANonHiddenSuccessor())
+  n instanceof PathNodeSink or
+  n instanceof PathNodeSinkGroup or
+  directReach(n.getANonHiddenSuccessor())
 }
 
 /** Holds if `n` can reach a sink or is used in a subpath that can reach a sink. */
@@ -3015,6 +3051,12 @@ class PathNode instanceof PathNodeImpl {
 
   /** Holds if this node is a source. */
   final predicate isSource() { super.isSource() }
+
+  /** Holds if this node is a grouping of source nodes. */
+  final predicate isSourceGroup(string group) { this = TPathNodeSourceGroup(group, _) }
+
+  /** Holds if this node is a grouping of sink nodes. */
+  final predicate isSinkGroup(string group) { this = TPathNodeSinkGroup(group, _) }
 }
 
 /**
@@ -3136,9 +3178,66 @@ private class PathNodeSink extends PathNodeImpl, TPathNodeSink {
 
   override Configuration getConfiguration() { result = config }
 
-  override PathNodeImpl getASuccessorImpl() { none() }
+  override PathNodeImpl getASuccessorImpl() {
+    result = TPathNodeSinkGroup(this.getSinkGroup(), config)
+  }
 
   override predicate isSource() { sourceNode(node, state, config) }
+
+  string getSinkGroup() { config.sinkGrouping(node.asNode(), result) }
+}
+
+private class PathNodeSourceGroup extends PathNodeImpl, TPathNodeSourceGroup {
+  string sourceGroup;
+  Configuration config;
+
+  PathNodeSourceGroup() { this = TPathNodeSourceGroup(sourceGroup, config) }
+
+  override NodeEx getNodeEx() { none() }
+
+  override FlowState getState() { none() }
+
+  override Configuration getConfiguration() { result = config }
+
+  override PathNodeImpl getASuccessorImpl() {
+    result.getSourceGroup() = sourceGroup and
+    result.getConfiguration() = config
+  }
+
+  override predicate isSource() { none() }
+
+  override string toString() { result = sourceGroup }
+
+  override predicate hasLocationInfo(
+    string filepath, int startline, int startcolumn, int endline, int endcolumn
+  ) {
+    filepath = "" and startline = 0 and startcolumn = 0 and endline = 0 and endcolumn = 0
+  }
+}
+
+private class PathNodeSinkGroup extends PathNodeImpl, TPathNodeSinkGroup {
+  string sinkGroup;
+  Configuration config;
+
+  PathNodeSinkGroup() { this = TPathNodeSinkGroup(sinkGroup, config) }
+
+  override NodeEx getNodeEx() { none() }
+
+  override FlowState getState() { none() }
+
+  override Configuration getConfiguration() { result = config }
+
+  override PathNodeImpl getASuccessorImpl() { none() }
+
+  override predicate isSource() { none() }
+
+  override string toString() { result = sinkGroup }
+
+  override predicate hasLocationInfo(
+    string filepath, int startline, int startcolumn, int endline, int endcolumn
+  ) {
+    filepath = "" and startline = 0 and startcolumn = 0 and endline = 0 and endcolumn = 0
+  }
 }
 
 private predicate pathNode(
@@ -3495,6 +3594,15 @@ private module Subpaths {
  * Will only have results if `configuration` has non-empty sources and
  * sinks.
  */
+private predicate hasFlowPath(
+  PathNodeImpl flowsource, PathNodeImpl flowsink, Configuration configuration
+) {
+  flowsource.isFlowSource() and
+  flowsource.getConfiguration() = configuration and
+  (flowsource = flowsink or pathSuccPlus(flowsource, flowsink)) and
+  flowsink.isFlowSink()
+}
+
 private predicate flowsTo(
   PathNodeImpl flowsource, PathNodeSink flowsink, Node source, Node sink,
   Configuration configuration
diff --git a/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImplForPathname.qll b/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImplForPathname.qll
index 2dde1c2819d..3c41b1876dc 100644
--- a/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImplForPathname.qll
+++ b/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImplForPathname.qll
@@ -147,6 +147,12 @@ abstract class Configuration extends string {
    */
   FlowFeature getAFeature() { none() }
 
+  /** Holds if sources should be grouped in the result of `hasFlowPath`. */
+  predicate sourceGrouping(Node source, string sourceGroup) { none() }
+
+  /** Holds if sinks should be grouped in the result of `hasFlowPath`. */
+  predicate sinkGrouping(Node sink, string sinkGroup) { none() }
+
   /**
    * Holds if data may flow from `source` to `sink` for this configuration.
    */
@@ -158,7 +164,7 @@ abstract class Configuration extends string {
    * The corresponding paths are generated from the end-points and the graph
    * included in the module `PathGraph`.
    */
-  predicate hasFlowPath(PathNode source, PathNode sink) { flowsTo(source, sink, _, _, this) }
+  predicate hasFlowPath(PathNode source, PathNode sink) { hasFlowPath(source, sink, this) }
 
   /**
    * Holds if data may flow from some source to `sink` for this configuration.
@@ -2712,6 +2718,18 @@ private newtype TPathNode =
       state = sink.getState() and
       config = sink.getConfiguration()
     )
+  } or
+  TPathNodeSourceGroup(string sourceGroup, Configuration config) {
+    exists(PathNodeImpl source |
+      sourceGroup = source.getSourceGroup() and
+      config = source.getConfiguration()
+    )
+  } or
+  TPathNodeSinkGroup(string sinkGroup, Configuration config) {
+    exists(PathNodeSink sink |
+      sinkGroup = sink.getSinkGroup() and
+      config = sink.getConfiguration()
+    )
   }
 
 /**
@@ -2920,6 +2938,22 @@ abstract private class PathNodeImpl extends TPathNode {
     )
   }
 
+  string getSourceGroup() {
+    this.isSource() and
+    this.getConfiguration().sourceGrouping(this.getNodeEx().asNode(), result)
+  }
+
+  predicate isFlowSource() {
+    this.isSource() and not exists(this.getSourceGroup())
+    or
+    this instanceof PathNodeSourceGroup
+  }
+
+  predicate isFlowSink() {
+    this = any(PathNodeSink sink | not exists(sink.getSinkGroup())) or
+    this instanceof PathNodeSinkGroup
+  }
+
   private string ppAp() {
     this instanceof PathNodeSink and result = ""
     or
@@ -2959,7 +2993,9 @@ abstract private class PathNodeImpl extends TPathNode {
 
 /** Holds if `n` can reach a sink. */
 private predicate directReach(PathNodeImpl n) {
-  n instanceof PathNodeSink or directReach(n.getANonHiddenSuccessor())
+  n instanceof PathNodeSink or
+  n instanceof PathNodeSinkGroup or
+  directReach(n.getANonHiddenSuccessor())
 }
 
 /** Holds if `n` can reach a sink or is used in a subpath that can reach a sink. */
@@ -3015,6 +3051,12 @@ class PathNode instanceof PathNodeImpl {
 
   /** Holds if this node is a source. */
   final predicate isSource() { super.isSource() }
+
+  /** Holds if this node is a grouping of source nodes. */
+  final predicate isSourceGroup(string group) { this = TPathNodeSourceGroup(group, _) }
+
+  /** Holds if this node is a grouping of sink nodes. */
+  final predicate isSinkGroup(string group) { this = TPathNodeSinkGroup(group, _) }
 }
 
 /**
@@ -3136,9 +3178,66 @@ private class PathNodeSink extends PathNodeImpl, TPathNodeSink {
 
   override Configuration getConfiguration() { result = config }
 
-  override PathNodeImpl getASuccessorImpl() { none() }
+  override PathNodeImpl getASuccessorImpl() {
+    result = TPathNodeSinkGroup(this.getSinkGroup(), config)
+  }
 
   override predicate isSource() { sourceNode(node, state, config) }
+
+  string getSinkGroup() { config.sinkGrouping(node.asNode(), result) }
+}
+
+private class PathNodeSourceGroup extends PathNodeImpl, TPathNodeSourceGroup {
+  string sourceGroup;
+  Configuration config;
+
+  PathNodeSourceGroup() { this = TPathNodeSourceGroup(sourceGroup, config) }
+
+  override NodeEx getNodeEx() { none() }
+
+  override FlowState getState() { none() }
+
+  override Configuration getConfiguration() { result = config }
+
+  override PathNodeImpl getASuccessorImpl() {
+    result.getSourceGroup() = sourceGroup and
+    result.getConfiguration() = config
+  }
+
+  override predicate isSource() { none() }
+
+  override string toString() { result = sourceGroup }
+
+  override predicate hasLocationInfo(
+    string filepath, int startline, int startcolumn, int endline, int endcolumn
+  ) {
+    filepath = "" and startline = 0 and startcolumn = 0 and endline = 0 and endcolumn = 0
+  }
+}
+
+private class PathNodeSinkGroup extends PathNodeImpl, TPathNodeSinkGroup {
+  string sinkGroup;
+  Configuration config;
+
+  PathNodeSinkGroup() { this = TPathNodeSinkGroup(sinkGroup, config) }
+
+  override NodeEx getNodeEx() { none() }
+
+  override FlowState getState() { none() }
+
+  override Configuration getConfiguration() { result = config }
+
+  override PathNodeImpl getASuccessorImpl() { none() }
+
+  override predicate isSource() { none() }
+
+  override string toString() { result = sinkGroup }
+
+  override predicate hasLocationInfo(
+    string filepath, int startline, int startcolumn, int endline, int endcolumn
+  ) {
+    filepath = "" and startline = 0 and startcolumn = 0 and endline = 0 and endcolumn = 0
+  }
 }
 
 private predicate pathNode(
@@ -3495,6 +3594,15 @@ private module Subpaths {
  * Will only have results if `configuration` has non-empty sources and
  * sinks.
  */
+private predicate hasFlowPath(
+  PathNodeImpl flowsource, PathNodeImpl flowsink, Configuration configuration
+) {
+  flowsource.isFlowSource() and
+  flowsource.getConfiguration() = configuration and
+  (flowsource = flowsink or pathSuccPlus(flowsource, flowsink)) and
+  flowsink.isFlowSink()
+}
+
 private predicate flowsTo(
   PathNodeImpl flowsource, PathNodeSink flowsink, Node source, Node sink,
   Configuration configuration
diff --git a/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImplForRegExp.qll b/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImplForRegExp.qll
index 2dde1c2819d..3c41b1876dc 100644
--- a/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImplForRegExp.qll
+++ b/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImplForRegExp.qll
@@ -147,6 +147,12 @@ abstract class Configuration extends string {
    */
   FlowFeature getAFeature() { none() }
 
+  /** Holds if sources should be grouped in the result of `hasFlowPath`. */
+  predicate sourceGrouping(Node source, string sourceGroup) { none() }
+
+  /** Holds if sinks should be grouped in the result of `hasFlowPath`. */
+  predicate sinkGrouping(Node sink, string sinkGroup) { none() }
+
   /**
    * Holds if data may flow from `source` to `sink` for this configuration.
    */
@@ -158,7 +164,7 @@ abstract class Configuration extends string {
    * The corresponding paths are generated from the end-points and the graph
    * included in the module `PathGraph`.
    */
-  predicate hasFlowPath(PathNode source, PathNode sink) { flowsTo(source, sink, _, _, this) }
+  predicate hasFlowPath(PathNode source, PathNode sink) { hasFlowPath(source, sink, this) }
 
   /**
    * Holds if data may flow from some source to `sink` for this configuration.
@@ -2712,6 +2718,18 @@ private newtype TPathNode =
       state = sink.getState() and
       config = sink.getConfiguration()
     )
+  } or
+  TPathNodeSourceGroup(string sourceGroup, Configuration config) {
+    exists(PathNodeImpl source |
+      sourceGroup = source.getSourceGroup() and
+      config = source.getConfiguration()
+    )
+  } or
+  TPathNodeSinkGroup(string sinkGroup, Configuration config) {
+    exists(PathNodeSink sink |
+      sinkGroup = sink.getSinkGroup() and
+      config = sink.getConfiguration()
+    )
   }
 
 /**
@@ -2920,6 +2938,22 @@ abstract private class PathNodeImpl extends TPathNode {
     )
   }
 
+  string getSourceGroup() {
+    this.isSource() and
+    this.getConfiguration().sourceGrouping(this.getNodeEx().asNode(), result)
+  }
+
+  predicate isFlowSource() {
+    this.isSource() and not exists(this.getSourceGroup())
+    or
+    this instanceof PathNodeSourceGroup
+  }
+
+  predicate isFlowSink() {
+    this = any(PathNodeSink sink | not exists(sink.getSinkGroup())) or
+    this instanceof PathNodeSinkGroup
+  }
+
   private string ppAp() {
     this instanceof PathNodeSink and result = ""
     or
@@ -2959,7 +2993,9 @@ abstract private class PathNodeImpl extends TPathNode {
 
 /** Holds if `n` can reach a sink. */
 private predicate directReach(PathNodeImpl n) {
-  n instanceof PathNodeSink or directReach(n.getANonHiddenSuccessor())
+  n instanceof PathNodeSink or
+  n instanceof PathNodeSinkGroup or
+  directReach(n.getANonHiddenSuccessor())
 }
 
 /** Holds if `n` can reach a sink or is used in a subpath that can reach a sink. */
@@ -3015,6 +3051,12 @@ class PathNode instanceof PathNodeImpl {
 
   /** Holds if this node is a source. */
   final predicate isSource() { super.isSource() }
+
+  /** Holds if this node is a grouping of source nodes. */
+  final predicate isSourceGroup(string group) { this = TPathNodeSourceGroup(group, _) }
+
+  /** Holds if this node is a grouping of sink nodes. */
+  final predicate isSinkGroup(string group) { this = TPathNodeSinkGroup(group, _) }
 }
 
 /**
@@ -3136,9 +3178,66 @@ private class PathNodeSink extends PathNodeImpl, TPathNodeSink {
 
   override Configuration getConfiguration() { result = config }
 
-  override PathNodeImpl getASuccessorImpl() { none() }
+  override PathNodeImpl getASuccessorImpl() {
+    result = TPathNodeSinkGroup(this.getSinkGroup(), config)
+  }
 
   override predicate isSource() { sourceNode(node, state, config) }
+
+  string getSinkGroup() { config.sinkGrouping(node.asNode(), result) }
+}
+
+private class PathNodeSourceGroup extends PathNodeImpl, TPathNodeSourceGroup {
+  string sourceGroup;
+  Configuration config;
+
+  PathNodeSourceGroup() { this = TPathNodeSourceGroup(sourceGroup, config) }
+
+  override NodeEx getNodeEx() { none() }
+
+  override FlowState getState() { none() }
+
+  override Configuration getConfiguration() { result = config }
+
+  override PathNodeImpl getASuccessorImpl() {
+    result.getSourceGroup() = sourceGroup and
+    result.getConfiguration() = config
+  }
+
+  override predicate isSource() { none() }
+
+  override string toString() { result = sourceGroup }
+
+  override predicate hasLocationInfo(
+    string filepath, int startline, int startcolumn, int endline, int endcolumn
+  ) {
+    filepath = "" and startline = 0 and startcolumn = 0 and endline = 0 and endcolumn = 0
+  }
+}
+
+private class PathNodeSinkGroup extends PathNodeImpl, TPathNodeSinkGroup {
+  string sinkGroup;
+  Configuration config;
+
+  PathNodeSinkGroup() { this = TPathNodeSinkGroup(sinkGroup, config) }
+
+  override NodeEx getNodeEx() { none() }
+
+  override FlowState getState() { none() }
+
+  override Configuration getConfiguration() { result = config }
+
+  override PathNodeImpl getASuccessorImpl() { none() }
+
+  override predicate isSource() { none() }
+
+  override string toString() { result = sinkGroup }
+
+  override predicate hasLocationInfo(
+    string filepath, int startline, int startcolumn, int endline, int endcolumn
+  ) {
+    filepath = "" and startline = 0 and startcolumn = 0 and endline = 0 and endcolumn = 0
+  }
 }
 
 private predicate pathNode(
@@ -3495,6 +3594,15 @@ private module Subpaths {
  * Will only have results if `configuration` has non-empty sources and
  * sinks.
  */
+private predicate hasFlowPath(
+  PathNodeImpl flowsource, PathNodeImpl flowsink, Configuration configuration
+) {
+  flowsource.isFlowSource() and
+  flowsource.getConfiguration() = configuration and
+  (flowsource = flowsink or pathSuccPlus(flowsource, flowsink)) and
+  flowsink.isFlowSink()
+}
+
 private predicate flowsTo(
   PathNodeImpl flowsource, PathNodeSink flowsink, Node source, Node sink,
   Configuration configuration
diff --git a/swift/ql/lib/codeql/swift/dataflow/internal/DataFlowImpl.qll b/swift/ql/lib/codeql/swift/dataflow/internal/DataFlowImpl.qll
index 2dde1c2819d..3c41b1876dc 100644
--- a/swift/ql/lib/codeql/swift/dataflow/internal/DataFlowImpl.qll
+++ b/swift/ql/lib/codeql/swift/dataflow/internal/DataFlowImpl.qll
@@ -147,6 +147,12 @@ abstract class Configuration extends string {
    */
   FlowFeature getAFeature() { none() }
 
+  /** Holds if sources should be grouped in the result of `hasFlowPath`. */
+  predicate sourceGrouping(Node source, string sourceGroup) { none() }
+
+  /** Holds if sinks should be grouped in the result of `hasFlowPath`. */
+  predicate sinkGrouping(Node sink, string sinkGroup) { none() }
+
   /**
    * Holds if data may flow from `source` to `sink` for this configuration.
    */
@@ -158,7 +164,7 @@ abstract class Configuration extends string {
    * The corresponding paths are generated from the end-points and the graph
    * included in the module `PathGraph`.
    */
-  predicate hasFlowPath(PathNode source, PathNode sink) { flowsTo(source, sink, _, _, this) }
+  predicate hasFlowPath(PathNode source, PathNode sink) { hasFlowPath(source, sink, this) }
 
   /**
    * Holds if data may flow from some source to `sink` for this configuration.
@@ -2712,6 +2718,18 @@ private newtype TPathNode =
       state = sink.getState() and
       config = sink.getConfiguration()
     )
+  } or
+  TPathNodeSourceGroup(string sourceGroup, Configuration config) {
+    exists(PathNodeImpl source |
+      sourceGroup = source.getSourceGroup() and
+      config = source.getConfiguration()
+    )
+  } or
+  TPathNodeSinkGroup(string sinkGroup, Configuration config) {
+    exists(PathNodeSink sink |
+      sinkGroup = sink.getSinkGroup() and
+      config = sink.getConfiguration()
+    )
   }
 
 /**
@@ -2920,6 +2938,22 @@ abstract private class PathNodeImpl extends TPathNode {
     )
   }
 
+  string getSourceGroup() {
+    this.isSource() and
+    this.getConfiguration().sourceGrouping(this.getNodeEx().asNode(), result)
+  }
+
+  predicate isFlowSource() {
+    this.isSource() and not exists(this.getSourceGroup())
+    or
+    this instanceof PathNodeSourceGroup
+  }
+
+  predicate isFlowSink() {
+    this = any(PathNodeSink sink | not exists(sink.getSinkGroup())) or
+    this instanceof PathNodeSinkGroup
+  }
+
   private string ppAp() {
     this instanceof PathNodeSink and result = ""
     or
@@ -2959,7 +2993,9 @@ abstract private class PathNodeImpl extends TPathNode {
 
 /** Holds if `n` can reach a sink. */
 private predicate directReach(PathNodeImpl n) {
-  n instanceof PathNodeSink or directReach(n.getANonHiddenSuccessor())
+  n instanceof PathNodeSink or
+  n instanceof PathNodeSinkGroup or
+  directReach(n.getANonHiddenSuccessor())
 }
 
 /** Holds if `n` can reach a sink or is used in a subpath that can reach a sink. */
@@ -3015,6 +3051,12 @@ class PathNode instanceof PathNodeImpl {
 
   /** Holds if this node is a source. */
   final predicate isSource() { super.isSource() }
+
+  /** Holds if this node is a grouping of source nodes. */
+  final predicate isSourceGroup(string group) { this = TPathNodeSourceGroup(group, _) }
+
+  /** Holds if this node is a grouping of sink nodes. */
+  final predicate isSinkGroup(string group) { this = TPathNodeSinkGroup(group, _) }
 }
 
 /**
@@ -3136,9 +3178,66 @@ private class PathNodeSink extends PathNodeImpl, TPathNodeSink {
 
   override Configuration getConfiguration() { result = config }
 
-  override PathNodeImpl getASuccessorImpl() { none() }
+  override PathNodeImpl getASuccessorImpl() {
+    result = TPathNodeSinkGroup(this.getSinkGroup(), config)
+  }
 
   override predicate isSource() { sourceNode(node, state, config) }
+
+  string getSinkGroup() { config.sinkGrouping(node.asNode(), result) }
+}
+
+private class PathNodeSourceGroup extends PathNodeImpl, TPathNodeSourceGroup {
+  string sourceGroup;
+  Configuration config;
+
+  PathNodeSourceGroup() { this = TPathNodeSourceGroup(sourceGroup, config) }
+
+  override NodeEx getNodeEx() { none() }
+
+  override FlowState getState() { none() }
+
+  override Configuration getConfiguration() { result = config }
+
+  override PathNodeImpl getASuccessorImpl() {
+    result.getSourceGroup() = sourceGroup and
+    result.getConfiguration() = config
+  }
+
+  override predicate isSource() { none() }
+
+  override string toString() { result = sourceGroup }
+
+  override predicate hasLocationInfo(
+    string filepath, int startline, int startcolumn, int endline, int endcolumn
+  ) {
+    filepath = "" and startline = 0 and startcolumn = 0 and endline = 0 and endcolumn = 0
+  }
+}
+
+private class PathNodeSinkGroup extends PathNodeImpl, TPathNodeSinkGroup {
+  string sinkGroup;
+  Configuration config;
+
+  PathNodeSinkGroup() { this = TPathNodeSinkGroup(sinkGroup, config) }
+
+  override NodeEx getNodeEx() { none() }
+
+  override FlowState getState() { none() }
+
+  override Configuration getConfiguration() { result = config }
+
+  override PathNodeImpl getASuccessorImpl() { none() }
+
+  override predicate isSource() { none() }
+
+  override string toString() { result = sinkGroup }
+
+  override predicate hasLocationInfo(
+    string filepath, int startline, int startcolumn, int endline, int endcolumn
+  ) {
+    filepath = "" and startline = 0 and startcolumn = 0 and endline = 0 and endcolumn = 0
+  }
 }
 
 private predicate pathNode(
@@ -3495,6 +3594,15 @@ private module Subpaths {
  * Will only have results if `configuration` has non-empty sources and
  * sinks.
  */
+private predicate hasFlowPath(
+  PathNodeImpl flowsource, PathNodeImpl flowsink, Configuration configuration
+) {
+  flowsource.isFlowSource() and
+  flowsource.getConfiguration() = configuration and
+  (flowsource = flowsink or pathSuccPlus(flowsource, flowsink)) and
+  flowsink.isFlowSink()
+}
+
 private predicate flowsTo(
   PathNodeImpl flowsource, PathNodeSink flowsink, Node source, Node sink,
   Configuration configuration

From db20e7d14313ee42aa58c8f86b27a47a87653bc2 Mon Sep 17 00:00:00 2001
From: Nick Rolfe <nickrolfe@github.com>
Date: Thu, 3 Nov 2022 15:51:19 +0000
Subject: [PATCH 0134/1420] Ruby: add ActionCable channel RPC params as
 remote-flow sources

---
 .../codeql/ruby/frameworks/ActionCable.qll    | 31 +++++++++++++++++++
 .../action_cable/ActionCable.expected         |  3 ++
 .../frameworks/action_cable/ActionCable.ql    |  3 ++
 .../frameworks/action_cable/action_cable.rb   | 10 ++++++
 4 files changed, 47 insertions(+)

diff --git a/ruby/ql/lib/codeql/ruby/frameworks/ActionCable.qll b/ruby/ql/lib/codeql/ruby/frameworks/ActionCable.qll
index e306b7d2b99..094b7d0d46f 100644
--- a/ruby/ql/lib/codeql/ruby/frameworks/ActionCable.qll
+++ b/ruby/ql/lib/codeql/ruby/frameworks/ActionCable.qll
@@ -6,6 +6,8 @@
 private import codeql.ruby.AST
 private import codeql.ruby.Concepts
 private import codeql.ruby.ApiGraphs
+private import codeql.ruby.DataFlow
+private import codeql.ruby.dataflow.RemoteFlowSources
 private import codeql.ruby.frameworks.stdlib.Logger::Logger as StdlibLogger
 
 /**
@@ -26,4 +28,33 @@ module ActionCable {
       }
     }
   }
+
+  /**
+   * The data argument in an RPC endpoint method on a subclass of
+   * `ActionCable::Channel::Base`, considered as a remote flow source.
+   */
+  class ActionCableChannelRpcParam extends RemoteFlowSource::Range {
+    ActionCableChannelRpcParam() {
+      exists(DataFlow::MethodNode m |
+        // Any method on a subclass of `ActionCable::Channel::Base`
+        // automatically becomes an RPC endpoint
+        m =
+          DataFlow::getConstant("ActionCable")
+              .getConstant("Channel")
+              .getConstant("Base")
+              .getADescendentModule()
+              .getAnOwnInstanceMethod() and
+        // as long as it's public
+        m.asCallableAstNode().isPublic() and
+        // and is not called `subscribed` or `unsubscribed`.
+        not m.getMethodName() = ["subscribed", "unsubscribed"]
+      |
+        // If the method takes a parameter, it contains data from the remote
+        // request.
+        this = m.getParameter(0)
+      )
+    }
+
+    override string getSourceType() { result = "ActionCable channel RPC data" }
+  }
 }
diff --git a/ruby/ql/test/library-tests/frameworks/action_cable/ActionCable.expected b/ruby/ql/test/library-tests/frameworks/action_cable/ActionCable.expected
index 94e553900b1..815990a36f6 100644
--- a/ruby/ql/test/library-tests/frameworks/action_cable/ActionCable.expected
+++ b/ruby/ql/test/library-tests/frameworks/action_cable/ActionCable.expected
@@ -1 +1,4 @@
+loggerInstantiations
 | action_cable.rb:1:1:1:54 | call to new |
+remoteFlowSources
+| action_cable.rb:9:10:9:13 | data |
diff --git a/ruby/ql/test/library-tests/frameworks/action_cable/ActionCable.ql b/ruby/ql/test/library-tests/frameworks/action_cable/ActionCable.ql
index fd2359607f7..3a06be800f5 100644
--- a/ruby/ql/test/library-tests/frameworks/action_cable/ActionCable.ql
+++ b/ruby/ql/test/library-tests/frameworks/action_cable/ActionCable.ql
@@ -1,4 +1,7 @@
 import codeql.ruby.frameworks.ActionCable
 import codeql.ruby.frameworks.stdlib.Logger
+import codeql.ruby.dataflow.RemoteFlowSources
 
 query predicate loggerInstantiations(Logger::LoggerInstantiation l) { any() }
+
+query predicate remoteFlowSources(RemoteFlowSource s) { any() }
diff --git a/ruby/ql/test/library-tests/frameworks/action_cable/action_cable.rb b/ruby/ql/test/library-tests/frameworks/action_cable/action_cable.rb
index 3988ec4c875..5dc902d7b74 100644
--- a/ruby/ql/test/library-tests/frameworks/action_cable/action_cable.rb
+++ b/ruby/ql/test/library-tests/frameworks/action_cable/action_cable.rb
@@ -1 +1,11 @@
 ActionCable::Connection::TaggedLoggerProxy.new(logger)
+
+class MyChannel < ActionCable::Channel::Base
+	# An RPC endpoint without the optional data parm, so no remote flow source.
+	def foo
+	end
+
+	# An RPC endpoint including the optional data parm, which is a remote flow source.
+	def bar(data)
+	end
+end
\ No newline at end of file

From 199b3f4d71337bd67ed8c78386a2d3bf221c91cd Mon Sep 17 00:00:00 2001
From: Nick Rolfe <nickrolfe@github.com>
Date: Wed, 9 Nov 2022 14:18:44 +0000
Subject: [PATCH 0135/1420] Ruby: add change note for ActionCable channel
 remote flow sources

---
 ruby/ql/lib/change-notes/2022-11-09-actioncable-channels.md | 4 ++++
 1 file changed, 4 insertions(+)
 create mode 100644 ruby/ql/lib/change-notes/2022-11-09-actioncable-channels.md

diff --git a/ruby/ql/lib/change-notes/2022-11-09-actioncable-channels.md b/ruby/ql/lib/change-notes/2022-11-09-actioncable-channels.md
new file mode 100644
index 00000000000..3248fc194e0
--- /dev/null
+++ b/ruby/ql/lib/change-notes/2022-11-09-actioncable-channels.md
@@ -0,0 +1,4 @@
+---
+category: minorAnalysis
+---
+* Arguments to RPC endpoints (public methods) on subclasses of `ActionCable::Channel::Base` are now recognized as sources of remote user input.

From 611ed93e3987c141fa6dee39590569a7fff5751c Mon Sep 17 00:00:00 2001
From: Nick Rolfe <nickrolfe@github.com>
Date: Wed, 9 Nov 2022 15:18:16 +0000
Subject: [PATCH 0136/1420] Ruby: add is{Public,Protected,Private} to
 DataFlow::MethodNode

---
 .../lib/codeql/ruby/dataflow/internal/DataFlowPublic.qll | 9 +++++++++
 1 file changed, 9 insertions(+)

diff --git a/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowPublic.qll b/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowPublic.qll
index e04449fbeaa..bc903c64f84 100644
--- a/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowPublic.qll
+++ b/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowPublic.qll
@@ -1058,6 +1058,15 @@ class MethodNode extends CallableNode {
 
   /** Gets the name of this method. */
   string getMethodName() { result = this.asCallableAstNode().getName() }
+
+  /** Holds if this method is public. */
+  predicate isPublic() { this.asCallableAstNode().isPublic() }
+
+  /** Holds if this method is private. */
+  predicate isPrivate() { this.asCallableAstNode().isPrivate() }
+
+  /** Holds if this method is protected. */
+  predicate isProtected() { this.asCallableAstNode().isProtected() }
 }
 
 /**

From cfde7e9edcd71c806fea0594d8a0e1cb5d3b1764 Mon Sep 17 00:00:00 2001
From: Nick Rolfe <nickrolfe@github.com>
Date: Wed, 9 Nov 2022 16:14:11 +0000
Subject: [PATCH 0137/1420] Ruby: more accurate modeling of which ActionCable
 channel methods become endpoints

---
 ruby/ql/lib/codeql/ruby/frameworks/ActionCable.qll | 13 +++++++++++--
 1 file changed, 11 insertions(+), 2 deletions(-)

diff --git a/ruby/ql/lib/codeql/ruby/frameworks/ActionCable.qll b/ruby/ql/lib/codeql/ruby/frameworks/ActionCable.qll
index 094b7d0d46f..a3f9b720c30 100644
--- a/ruby/ql/lib/codeql/ruby/frameworks/ActionCable.qll
+++ b/ruby/ql/lib/codeql/ruby/frameworks/ActionCable.qll
@@ -43,8 +43,17 @@ module ActionCable {
               .getConstant("Channel")
               .getConstant("Base")
               .getADescendentModule()
-              .getAnOwnInstanceMethod() and
-        // as long as it's public
+              .getAnInstanceMethod() and
+        // as long as it's not an instance method of
+        // `ActionCable::Channel::Base` itself, which might exist in the
+        // database
+        not m =
+          DataFlow::getConstant("ActionCable")
+              .getConstant("Channel")
+              .getConstant("Base")
+              .asModule()
+              .getAnInstanceMethod() and
+        // and as long as it's public
         m.asCallableAstNode().isPublic() and
         // and is not called `subscribed` or `unsubscribed`.
         not m.getMethodName() = ["subscribed", "unsubscribed"]

From 6cb01a210fdf8886c82f410ffed1faf11c9df49c Mon Sep 17 00:00:00 2001
From: Tiferet Gazit <tiferet@github.com>
Date: Wed, 9 Nov 2022 12:53:52 -0800
Subject: [PATCH 0138/1420] Apply suggestions from code review

Co-authored-by: Stephan Brandauer <kaeluka@github.com>
---
 .../adaptivethreatmodeling/EndpointCharacteristics.qll        | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/EndpointCharacteristics.qll b/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/EndpointCharacteristics.qll
index ce99a62f24c..58c9bb6d3bd 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/EndpointCharacteristics.qll
+++ b/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/EndpointCharacteristics.qll
@@ -36,9 +36,9 @@ abstract class EndpointCharacteristic extends string {
    * isPositiveIndicator: If true, this characteristic indicates that this endpoint _is_ a member of the class; if
    * false, it indicates that it _isn't_ a member of the class.
    * confidence: A float in [0, 1], which tells us how strong an indicator this characteristic is for the endpoint
-   * belonging / not belonging to the given class. A confidence near zero means this characterestic is a very weak
+   * belonging / not belonging to the given class. A confidence near zero means this characteristic is a very weak
    * indicator of whether or not the endpoint belongs to the class. A confidence of 1 means that all endpoints with
-   * this characteristic difinitively do/don't belong to the class.
+   * this characteristic definitively do/don't belong to the class.
    */
   abstract predicate getImplications(
     EndpointType endpointClass, boolean isPositiveIndicator, float confidence

From 243980ef73d14e2099e6d4fb98abc7a7904f5e66 Mon Sep 17 00:00:00 2001
From: tiferet <tiferet@github.com>
Date: Wed, 9 Nov 2022 13:04:16 -0800
Subject: [PATCH 0139/1420] Documentation improvements

---
 .../adaptivethreatmodeling/EndpointCharacteristics.qll       | 5 +++--
 .../experimental/adaptivethreatmodeling/EndpointTypes.qll    | 5 +++++
 2 files changed, 8 insertions(+), 2 deletions(-)

diff --git a/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/EndpointCharacteristics.qll b/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/EndpointCharacteristics.qll
index 58c9bb6d3bd..4756f645a95 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/EndpointCharacteristics.qll
+++ b/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/EndpointCharacteristics.qll
@@ -31,8 +31,9 @@ abstract class EndpointCharacteristic extends string {
    * This predicate describes what the characteristic tells us about an endpoint.
    *
    * Params:
-   * endpointClass: Class 0 is the negative class, containing non-sink endpoints. Each positive int corresponds to a
-   * single sink type.
+   * endpointClass: The sink type. Each EndpointType has a predicate getEncoding, which specifies the classifier
+   * class for this sink type. Class 0 is the negative class (non-sink). Each positive int corresponds to a single
+   * sink type.
    * isPositiveIndicator: If true, this characteristic indicates that this endpoint _is_ a member of the class; if
    * false, it indicates that it _isn't_ a member of the class.
    * confidence: A float in [0, 1], which tells us how strong an indicator this characteristic is for the endpoint
diff --git a/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/EndpointTypes.qll b/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/EndpointTypes.qll
index aa625b12862..093ed9f3437 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/EndpointTypes.qll
+++ b/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/EndpointTypes.qll
@@ -16,6 +16,11 @@ newtype TEndpointType =
 abstract class EndpointType extends TEndpointType {
   abstract string getDescription();
 
+  /**
+   * The integer representation of this endpoint type. This integer representation specifies the class number used
+   * by the endpoint scoring model (the classifier) to represent this endpoint type. Class 0 is the negative class
+   * (non-sink). Each positive int corresponds to a single sink type.
+   */
   abstract int getEncoding();
 
   string toString() { result = getDescription() }

From b6532fa9a0b3de49b7ad045cca35562b873850d2 Mon Sep 17 00:00:00 2001
From: tiferet <tiferet@github.com>
Date: Wed, 9 Nov 2022 13:10:54 -0800
Subject: [PATCH 0140/1420] Fix QLDoc style warning

---
 .../experimental/adaptivethreatmodeling/EndpointTypes.qll   | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/EndpointTypes.qll b/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/EndpointTypes.qll
index 093ed9f3437..d2cc37b1b33 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/EndpointTypes.qll
+++ b/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/EndpointTypes.qll
@@ -17,9 +17,9 @@ abstract class EndpointType extends TEndpointType {
   abstract string getDescription();
 
   /**
-   * The integer representation of this endpoint type. This integer representation specifies the class number used
-   * by the endpoint scoring model (the classifier) to represent this endpoint type. Class 0 is the negative class
-   * (non-sink). Each positive int corresponds to a single sink type.
+   * Gets the integer representation of this endpoint type. This integer representation specifies the class number
+   * used by the endpoint scoring model (the classifier) to represent this endpoint type. Class 0 is the negative
+   * class (non-sink). Each positive int corresponds to a single sink type.
    */
   abstract int getEncoding();
 

From dbcdc2209e556484408971a0188e63fbed2377ae Mon Sep 17 00:00:00 2001
From: tiferet <tiferet@github.com>
Date: Wed, 9 Nov 2022 14:25:08 -0800
Subject: [PATCH 0141/1420] Use names constants for confidence levels

---
 .../adaptivethreatmodeling/ATMConfig.qll      |  3 +-
 .../EndpointCharacteristics.qll               | 28 +++++++++++++++----
 2 files changed, 24 insertions(+), 7 deletions(-)

diff --git a/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/ATMConfig.qll b/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/ATMConfig.qll
index ba555b0de5b..55d75ad2e4d 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/ATMConfig.qll
+++ b/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/ATMConfig.qll
@@ -50,7 +50,8 @@ abstract class AtmConfig extends string {
     // known sink for the class.
     exists(EndpointCharacteristic characteristic |
       characteristic.getEndpoints(sink) and
-      characteristic.getImplications(this.getASinkEndpointType(), true, 1.0)
+      characteristic
+          .getImplications(this.getASinkEndpointType(), true, characteristic.maximalConfidence())
     )
   }
 
diff --git a/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/EndpointCharacteristics.qll b/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/EndpointCharacteristics.qll
index 4756f645a95..33cd559503c 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/EndpointCharacteristics.qll
+++ b/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/EndpointCharacteristics.qll
@@ -44,6 +44,14 @@ abstract class EndpointCharacteristic extends string {
   abstract predicate getImplications(
     EndpointType endpointClass, boolean isPositiveIndicator, float confidence
   );
+
+  // The following are some confidence values that are used in practice by the subclasses. They are defined as named
+  // constants here to make it easier to change them in the future.
+  final float maximalConfidence() { result = 1.0 }
+
+  final float highConfidence() { result = 0.9 }
+
+  final float mediumConfidence() { result = 0.6 }
 }
 
 /*
@@ -63,7 +71,9 @@ private class DomBasedXssSinkCharacteristic extends EndpointCharacteristic {
   override predicate getImplications(
     EndpointType endpointClass, boolean isPositiveIndicator, float confidence
   ) {
-    endpointClass instanceof XssSinkType and isPositiveIndicator = true and confidence = 1.0
+    endpointClass instanceof XssSinkType and
+    isPositiveIndicator = true and
+    confidence = maximalConfidence()
   }
 }
 
@@ -79,7 +89,9 @@ private class TaintedPathSinkCharacteristic extends EndpointCharacteristic {
   override predicate getImplications(
     EndpointType endpointClass, boolean isPositiveIndicator, float confidence
   ) {
-    endpointClass instanceof TaintedPathSinkType and isPositiveIndicator = true and confidence = 1.0
+    endpointClass instanceof TaintedPathSinkType and
+    isPositiveIndicator = true and
+    confidence = maximalConfidence()
   }
 }
 
@@ -97,7 +109,7 @@ private class SqlInjectionSinkCharacteristic extends EndpointCharacteristic {
   ) {
     endpointClass instanceof SqlInjectionSinkType and
     isPositiveIndicator = true and
-    confidence = 1.0
+    confidence = maximalConfidence()
   }
 }
 
@@ -115,7 +127,7 @@ private class NosqlInjectionSinkCharacteristic extends EndpointCharacteristic {
   ) {
     endpointClass instanceof NosqlInjectionSinkType and
     isPositiveIndicator = true and
-    confidence = 1.0
+    confidence = maximalConfidence()
   }
 }
 
@@ -151,7 +163,9 @@ abstract private class NotASinkCharacteristic extends OtherModeledArgumentCharac
   override predicate getImplications(
     EndpointType endpointClass, boolean isPositiveIndicator, float confidence
   ) {
-    endpointClass instanceof NegativeType and isPositiveIndicator = true and confidence = 0.9
+    endpointClass instanceof NegativeType and
+    isPositiveIndicator = true and
+    confidence = highConfidence()
   }
 }
 
@@ -168,7 +182,9 @@ abstract class LikelyNotASinkCharacteristic extends OtherModeledArgumentCharacte
   override predicate getImplications(
     EndpointType endpointClass, boolean isPositiveIndicator, float confidence
   ) {
-    endpointClass instanceof NegativeType and isPositiveIndicator = true and confidence = 0.6
+    endpointClass instanceof NegativeType and
+    isPositiveIndicator = true and
+    confidence = mediumConfidence()
   }
 }
 

From a8b0d298ffd0f14aae5952a7612e1044aa038e71 Mon Sep 17 00:00:00 2001
From: Harry Maclean <hmac@github.com>
Date: Thu, 10 Nov 2022 16:38:09 +1300
Subject: [PATCH 0142/1420] Ruby: More string comparison guards

Recognise if statements with conditionals made up or logical `and` or
`or` clauses as barrier guards.
---
 .../codeql/ruby/dataflow/BarrierGuards.qll    | 25 ++++++++++
 .../dataflow/barrier-guards/barrier-guards.rb | 46 +++++++++++++++++--
 2 files changed, 66 insertions(+), 5 deletions(-)

diff --git a/ruby/ql/lib/codeql/ruby/dataflow/BarrierGuards.qll b/ruby/ql/lib/codeql/ruby/dataflow/BarrierGuards.qll
index f42ca8155b2..b2827e53255 100644
--- a/ruby/ql/lib/codeql/ruby/dataflow/BarrierGuards.qll
+++ b/ruby/ql/lib/codeql/ruby/dataflow/BarrierGuards.qll
@@ -25,6 +25,31 @@ private predicate stringConstCompare(CfgNodes::AstCfgNode guard, CfgNode testedN
   )
   or
   stringConstCaseCompare(guard, testedNode, branch)
+  or
+  stringConstCompareOr(guard, testedNode, branch)
+  or
+  stringConstCompareAnd(guard, testedNode, branch)
+}
+
+private predicate stringConstCompareOr(
+  CfgNodes::ExprNodes::BinaryOperationCfgNode guard, CfgNode testedNode, boolean branch
+) {
+  guard.getExpr() instanceof LogicalOrExpr and
+  branch = true and
+  exists(Ssa::Definition def |
+    forall(CfgNode innerGuard | innerGuard = guard.getAnOperand() |
+      stringConstCompare(innerGuard, def.getARead(), branch)
+    ) and
+    testedNode = any(CfgNode node | stringConstCompare(guard.getAnOperand(), node, _))
+  )
+}
+
+private predicate stringConstCompareAnd(
+  CfgNodes::ExprNodes::BinaryOperationCfgNode guard, CfgNode testedNode, boolean branch
+) {
+  guard.getExpr() instanceof LogicalAndExpr and
+  branch = true and
+  stringConstCompare(guard.getAnOperand(), testedNode, branch)
 }
 
 /**
diff --git a/ruby/ql/test/library-tests/dataflow/barrier-guards/barrier-guards.rb b/ruby/ql/test/library-tests/dataflow/barrier-guards/barrier-guards.rb
index 926cb4a06c5..26c5da44798 100644
--- a/ruby/ql/test/library-tests/dataflow/barrier-guards/barrier-guards.rb
+++ b/ruby/ql/test/library-tests/dataflow/barrier-guards/barrier-guards.rb
@@ -136,10 +136,10 @@ when "bar"
 end
 
 case foo
-when "foo", "bar" # $ MISSING: guarded
-    foo
-when "baz", "quux" # $ MISSING: guarded
-    foo
+when "foo", "bar"
+    foo # $ MISSING: guarded
+when "baz", "quux"
+    foo # $ MISSING: guarded
 else
     foo
 end
@@ -189,7 +189,43 @@ when *FOO_AND_X # not a guard - includes non-constant element `x`
 end
 
 if foo == "foo" or foo == "bar"
-    foo # $ MISSING: guarded
+    foo # $ guarded
+end
+
+if foo == "foo" or foo == "bar" or foo == "baz"
+    foo # $ guarded
+end
+
+if foo == "foo" or foo == "bar" or foo == x
+    foo
+end
+
+if foo == "foo" or bar == "bar" or foo == "baz"
+    foo
+end
+
+if foo == "foo" and x
+    foo # $ guarded
+end
+
+if x and foo == "foo"
+    foo # $ guarded
+end
+
+if x and y and foo == "foo"
+    foo # $ guarded
+end
+
+if foo == "foo" and foo == "bar" # $ guarded (second `foo` is guarded by the first comparison)
+    foo # $ guarded
+end
+
+if x and y
+    foo
+end
+
+if foo == "foo" and y
+    bar
 end
 
 case

From ee02265ac2fd18bfaa8cd1eafa857fc354db7f6c Mon Sep 17 00:00:00 2001
From: Mauro Baluda <mbaluda@github.com>
Date: Thu, 10 Nov 2022 12:24:39 +0100
Subject: [PATCH 0143/1420] Add property `params` to `RequestInputAccess`

---
 javascript/ql/lib/semmle/javascript/frameworks/Hapi.qll | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/javascript/ql/lib/semmle/javascript/frameworks/Hapi.qll b/javascript/ql/lib/semmle/javascript/frameworks/Hapi.qll
index 18790d979c2..4c7dd3e5a49 100644
--- a/javascript/ql/lib/semmle/javascript/frameworks/Hapi.qll
+++ b/javascript/ql/lib/semmle/javascript/frameworks/Hapi.qll
@@ -134,7 +134,7 @@ module Hapi {
         kind = "parameter" and
         exists(DataFlow::PropRead query |
           // `request.query.name`
-          query.accesses(request, "query") and
+          query.accesses(request, ["query", "params"]) and
           this.(DataFlow::PropRead).accesses(query, _)
         )
         or

From 2b5e2ed2825250c45ba53f4d050f7f741f7c5a82 Mon Sep 17 00:00:00 2001
From: Nick Rolfe <nickrolfe@github.com>
Date: Thu, 10 Nov 2022 11:41:52 +0000
Subject: [PATCH 0144/1420] Ruby: factor out some code into a helper predicate

---
 .../lib/codeql/ruby/frameworks/ActionCable.qll | 18 ++++++------------
 1 file changed, 6 insertions(+), 12 deletions(-)

diff --git a/ruby/ql/lib/codeql/ruby/frameworks/ActionCable.qll b/ruby/ql/lib/codeql/ruby/frameworks/ActionCable.qll
index a3f9b720c30..2da79661c21 100644
--- a/ruby/ql/lib/codeql/ruby/frameworks/ActionCable.qll
+++ b/ruby/ql/lib/codeql/ruby/frameworks/ActionCable.qll
@@ -29,6 +29,10 @@ module ActionCable {
     }
   }
 
+  private DataFlow::ConstRef getActionCableChannelBase() {
+    result = DataFlow::getConstant("ActionCable").getConstant("Channel").getConstant("Base")
+  }
+
   /**
    * The data argument in an RPC endpoint method on a subclass of
    * `ActionCable::Channel::Base`, considered as a remote flow source.
@@ -38,21 +42,11 @@ module ActionCable {
       exists(DataFlow::MethodNode m |
         // Any method on a subclass of `ActionCable::Channel::Base`
         // automatically becomes an RPC endpoint
-        m =
-          DataFlow::getConstant("ActionCable")
-              .getConstant("Channel")
-              .getConstant("Base")
-              .getADescendentModule()
-              .getAnInstanceMethod() and
+        m = getActionCableChannelBase().getADescendentModule().getAnInstanceMethod() and
         // as long as it's not an instance method of
         // `ActionCable::Channel::Base` itself, which might exist in the
         // database
-        not m =
-          DataFlow::getConstant("ActionCable")
-              .getConstant("Channel")
-              .getConstant("Base")
-              .asModule()
-              .getAnInstanceMethod() and
+        not m = getActionCableChannelBase().asModule().getAnInstanceMethod() and
         // and as long as it's public
         m.asCallableAstNode().isPublic() and
         // and is not called `subscribed` or `unsubscribed`.

From 4a98ef064ea0aba1ce83e2107c6c0460d0ad4c6c Mon Sep 17 00:00:00 2001
From: Nick Rolfe <nickrolfe@github.com>
Date: Thu, 10 Nov 2022 11:51:47 +0000
Subject: [PATCH 0145/1420] Ruby: use the 'customizations' pattern for the SQL
 injection query

---
 .../security/SqlInjectionCustomizations.qll   | 45 +++++++++++++++++++
 .../ruby/security/SqlInjectionQuery.qll       | 18 ++++++++
 .../queries/security/cwe-089/SqlInjection.ql  | 21 +--------
 3 files changed, 65 insertions(+), 19 deletions(-)
 create mode 100644 ruby/ql/lib/codeql/ruby/security/SqlInjectionCustomizations.qll
 create mode 100644 ruby/ql/lib/codeql/ruby/security/SqlInjectionQuery.qll

diff --git a/ruby/ql/lib/codeql/ruby/security/SqlInjectionCustomizations.qll b/ruby/ql/lib/codeql/ruby/security/SqlInjectionCustomizations.qll
new file mode 100644
index 00000000000..68f053109f5
--- /dev/null
+++ b/ruby/ql/lib/codeql/ruby/security/SqlInjectionCustomizations.qll
@@ -0,0 +1,45 @@
+/**
+ * Provides default sources, sinks and sanitizers for detecting SQL injection
+ * vulnerabilities, as well as extension points for adding your own.
+ */
+
+private import codeql.ruby.Concepts
+private import codeql.ruby.DataFlow
+private import codeql.ruby.dataflow.BarrierGuards
+private import codeql.ruby.dataflow.RemoteFlowSources
+
+/**
+ * Provides default sources, sinks and sanitizers for detecting SQL injection
+ * vulnerabilities, as well as extension points for adding your own.
+ */
+module SqlInjection {
+  abstract class Source extends DataFlow::Node { }
+
+  abstract class Sink extends DataFlow::Node { }
+
+  abstract class Sanitizer extends DataFlow::Node { }
+
+  /**
+   * A source of remote user input, considered as a flow source.
+   */
+  private class RemoteFlowSourceAsSource extends Source, RemoteFlowSource { }
+
+  /**
+   * A SQL statement of a SQL execution, considered as a flow sink.
+   */
+  private class SqlExecutionAsSink extends Sink {
+    SqlExecutionAsSink() { this = any(SqlExecution e).getSql() }
+  }
+
+  /**
+   * A comparison with a constant string, considered as a sanitizer-guard.
+   */
+  private class StringConstCompareAsSanitizerGuard extends Sanitizer, StringConstCompareBarrier { }
+
+  /**
+   * An inclusion check against an array of constant strings, considered as a
+   * sanitizer-guard.
+   */
+  class StringConstArrayInclusionCallAsSanitizer extends Sanitizer,
+    StringConstArrayInclusionCallBarrier { }
+}
diff --git a/ruby/ql/lib/codeql/ruby/security/SqlInjectionQuery.qll b/ruby/ql/lib/codeql/ruby/security/SqlInjectionQuery.qll
new file mode 100644
index 00000000000..e2dd327ccbd
--- /dev/null
+++ b/ruby/ql/lib/codeql/ruby/security/SqlInjectionQuery.qll
@@ -0,0 +1,18 @@
+/**
+ * Provides default sources, sinks and sanitizers for detecting SQL injection
+ * vulnerabilities, as well as extension points for adding your own.
+ */
+
+private import codeql.ruby.DataFlow
+private import codeql.ruby.TaintTracking
+import SqlInjectionCustomizations::SqlInjection
+
+class Configuration extends TaintTracking::Configuration {
+  Configuration() { this = "SqlInjectionConfiguration" }
+
+  override predicate isSource(DataFlow::Node source) { source instanceof Source }
+
+  override predicate isSink(DataFlow::Node source) { source instanceof Sink }
+
+  override predicate isSanitizer(DataFlow::Node node) { node instanceof Sanitizer }
+}
diff --git a/ruby/ql/src/queries/security/cwe-089/SqlInjection.ql b/ruby/ql/src/queries/security/cwe-089/SqlInjection.ql
index fa7bc13402c..28be96deb7d 100644
--- a/ruby/ql/src/queries/security/cwe-089/SqlInjection.ql
+++ b/ruby/ql/src/queries/security/cwe-089/SqlInjection.ql
@@ -11,28 +11,11 @@
  *       external/cwe/cwe-089
  */
 
-import codeql.ruby.AST
-import codeql.ruby.Concepts
 import codeql.ruby.DataFlow
-import codeql.ruby.dataflow.BarrierGuards
-import codeql.ruby.dataflow.RemoteFlowSources
-import codeql.ruby.TaintTracking
+import codeql.ruby.security.SqlInjectionQuery
 import DataFlow::PathGraph
 
-class SqlInjectionConfiguration extends TaintTracking::Configuration {
-  SqlInjectionConfiguration() { this = "SQLInjectionConfiguration" }
-
-  override predicate isSource(DataFlow::Node source) { source instanceof RemoteFlowSource }
-
-  override predicate isSink(DataFlow::Node sink) { sink instanceof SqlExecution }
-
-  override predicate isSanitizer(DataFlow::Node node) {
-    node instanceof StringConstCompareBarrier or
-    node instanceof StringConstArrayInclusionCallBarrier
-  }
-}
-
-from SqlInjectionConfiguration config, DataFlow::PathNode source, DataFlow::PathNode sink
+from Configuration config, DataFlow::PathNode source, DataFlow::PathNode sink
 where config.hasFlowPath(source, sink)
 select sink.getNode(), source, sink, "This SQL query depends on a $@.", source.getNode(),
   "user-provided value"

From 9f31ef851fead59ba63a2bf594da622bacf8cd7f Mon Sep 17 00:00:00 2001
From: Nick Rolfe <nickrolfe@github.com>
Date: Thu, 10 Nov 2022 11:52:47 +0000
Subject: [PATCH 0146/1420] Python: fix spelling of SqlExecution class in
 comment

---
 python/ql/lib/semmle/python/Concepts.qll | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/python/ql/lib/semmle/python/Concepts.qll b/python/ql/lib/semmle/python/Concepts.qll
index fe091f84e9c..861e4e7ca81 100644
--- a/python/ql/lib/semmle/python/Concepts.qll
+++ b/python/ql/lib/semmle/python/Concepts.qll
@@ -311,7 +311,7 @@ module CodeExecution {
  * Often, it is worthy of an alert if an SQL statement is constructed such that
  * executing it would be a security risk.
  *
- * If it is important that the SQL statement is indeed executed, then use `SQLExecution`.
+ * If it is important that the SQL statement is indeed executed, then use `SqlExecution`.
  *
  * Extend this class to refine existing API models. If you want to model new APIs,
  * extend `SqlConstruction::Range` instead.
@@ -329,7 +329,7 @@ module SqlConstruction {
    * Often, it is worthy of an alert if an SQL statement is constructed such that
    * executing it would be a security risk.
    *
-   * If it is important that the SQL statement is indeed executed, then use `SQLExecution`.
+   * If it is important that the SQL statement is indeed executed, then use `SqlExecution`.
    *
    * Extend this class to model new APIs. If you want to refine existing API models,
    * extend `SqlConstruction` instead.

From c9d34947b76d702a9e709cd2232dd799c33e9a92 Mon Sep 17 00:00:00 2001
From: Nick Rolfe <nickrolfe@github.com>
Date: Thu, 10 Nov 2022 12:17:56 +0000
Subject: [PATCH 0147/1420] Ruby: add SqlConstruction concept

---
 ruby/ql/lib/codeql/ruby/Concepts.qll          | 41 +++++++++++++++++++
 .../security/SqlInjectionCustomizations.qll   |  9 +++-
 2 files changed, 49 insertions(+), 1 deletion(-)

diff --git a/ruby/ql/lib/codeql/ruby/Concepts.qll b/ruby/ql/lib/codeql/ruby/Concepts.qll
index 2d70cc31796..a42fa354660 100644
--- a/ruby/ql/lib/codeql/ruby/Concepts.qll
+++ b/ruby/ql/lib/codeql/ruby/Concepts.qll
@@ -11,9 +11,47 @@ private import codeql.ruby.Frameworks
 private import codeql.ruby.dataflow.RemoteFlowSources
 private import codeql.ruby.ApiGraphs
 
+/**
+ * A data-flow node that constructs a SQL statement.
+ *
+ * Often, it is worthy of an alert if a SQL statement is constructed such that
+ * executing it would be a security risk.
+ *
+ * If it is important that the SQL statement is indeed executed, use `SqlExecution`.
+ *
+ * Extend this class to refine existing API models. If you want to model new APIs,
+ * extend `SqlConstruction::Range` instead.
+ */
+class SqlConstruction extends DataFlow::Node instanceof SqlConstruction::Range {
+  /** Gets the argument that specifies the SQL statements to be constructed. */
+  DataFlow::Node getSql() { result = super.getSql() }
+}
+
+/** Provides a class for modeling new SQL execution APIs. */
+module SqlConstruction {
+  /**
+   * A data-flow node that constructs a SQL statement.
+   *
+   * Often, it is worthy of an alert if a SQL statement is constructed such that
+   * executing it would be a security risk.
+   *
+   * If it is important that the SQL statement is indeed executed, use `SqlExecution`.
+   *
+   * Extend this class to model new APIs. If you want to refine existing API models,
+   * extend `SqlConstruction` instead.
+   */
+  abstract class Range extends DataFlow::Node {
+    /** Gets the argument that specifies the SQL statements to be constructed. */
+    abstract DataFlow::Node getSql();
+  }
+}
+
 /**
  * A data-flow node that executes SQL statements.
  *
+ * If the context of interest is such that merely constructing a SQL statement
+ * would be valuable to report, consider using `SqlConstruction`.
+ *
  * Extend this class to refine existing API models. If you want to model new APIs,
  * extend `SqlExecution::Range` instead.
  */
@@ -27,6 +65,9 @@ module SqlExecution {
   /**
    * A data-flow node that executes SQL statements.
    *
+   * If the context of interest is such that merely constructing a SQL
+   * statement would be valuable to report, consider using `SqlConstruction`.
+   *
    * Extend this class to model new APIs. If you want to refine existing API models,
    * extend `SqlExecution` instead.
    */
diff --git a/ruby/ql/lib/codeql/ruby/security/SqlInjectionCustomizations.qll b/ruby/ql/lib/codeql/ruby/security/SqlInjectionCustomizations.qll
index 68f053109f5..175d0935fad 100644
--- a/ruby/ql/lib/codeql/ruby/security/SqlInjectionCustomizations.qll
+++ b/ruby/ql/lib/codeql/ruby/security/SqlInjectionCustomizations.qll
@@ -25,12 +25,19 @@ module SqlInjection {
   private class RemoteFlowSourceAsSource extends Source, RemoteFlowSource { }
 
   /**
-   * A SQL statement of a SQL execution, considered as a flow sink.
+   * An SQL statement of a SQL execution, considered as a flow sink.
    */
   private class SqlExecutionAsSink extends Sink {
     SqlExecutionAsSink() { this = any(SqlExecution e).getSql() }
   }
 
+  /**
+   * An SQL statement of a SQL construction, considered as a flow sink.
+   */
+  private class SqlConstructionAsSink extends Sink {
+    SqlConstructionAsSink() { this = any(SqlConstruction e).getSql() }
+  }
+
   /**
    * A comparison with a constant string, considered as a sanitizer-guard.
    */

From 5a15558355feefe79590df04b259b51eac3a0a26 Mon Sep 17 00:00:00 2001
From: Nick Rolfe <nickrolfe@github.com>
Date: Thu, 10 Nov 2022 12:53:58 +0000
Subject: [PATCH 0148/1420] Ruby: treat an Arel.sql call as a SqlConstruction

---
 ruby/ql/lib/codeql/ruby/frameworks/Arel.qll          | 12 ++++++++++++
 .../frameworks/arel/SqlConstruction.expected         |  2 ++
 .../library-tests/frameworks/arel/SqlConstruction.ql |  4 ++++
 .../query-tests/security/cwe-089/ArelInjection.rb    |  8 ++++++++
 .../security/cwe-089/SqlInjection.expected           |  6 ++++++
 5 files changed, 32 insertions(+)
 create mode 100644 ruby/ql/test/library-tests/frameworks/arel/SqlConstruction.expected
 create mode 100644 ruby/ql/test/library-tests/frameworks/arel/SqlConstruction.ql
 create mode 100644 ruby/ql/test/query-tests/security/cwe-089/ArelInjection.rb

diff --git a/ruby/ql/lib/codeql/ruby/frameworks/Arel.qll b/ruby/ql/lib/codeql/ruby/frameworks/Arel.qll
index 9fa17f4e5a5..00f45507cfc 100644
--- a/ruby/ql/lib/codeql/ruby/frameworks/Arel.qll
+++ b/ruby/ql/lib/codeql/ruby/frameworks/Arel.qll
@@ -6,6 +6,8 @@
 
 private import codeql.ruby.ApiGraphs
 private import codeql.ruby.dataflow.FlowSummary
+private import codeql.ruby.Concepts
+private import codeql.ruby.DataFlow
 
 /**
  * Provides modeling for Arel, a low level SQL library that powers ActiveRecord.
@@ -28,4 +30,14 @@ module Arel {
       input = "Argument[0]" and output = "ReturnValue" and preservesValue = false
     }
   }
+
+  /** A call to `Arel.sql`, considered as a SQL construction. */
+  private class ArelSqlConstruction extends SqlConstruction::Range, DataFlow::CallNode {
+    ArelSqlConstruction() {
+      this = DataFlow::getConstant("Arel").getAMethodCall() and
+      this.getMethodName() = "sql"
+    }
+
+    override DataFlow::Node getSql() { result = this.getArgument(0) }
+  }
 }
diff --git a/ruby/ql/test/library-tests/frameworks/arel/SqlConstruction.expected b/ruby/ql/test/library-tests/frameworks/arel/SqlConstruction.expected
new file mode 100644
index 00000000000..b25b2b387ca
--- /dev/null
+++ b/ruby/ql/test/library-tests/frameworks/arel/SqlConstruction.expected
@@ -0,0 +1,2 @@
+| arel.rb:3:8:3:18 | call to sql | arel.rb:3:17:3:17 | x |
+| arel.rb:8:8:8:18 | call to sql | arel.rb:8:17:8:17 | x |
diff --git a/ruby/ql/test/library-tests/frameworks/arel/SqlConstruction.ql b/ruby/ql/test/library-tests/frameworks/arel/SqlConstruction.ql
new file mode 100644
index 00000000000..2b2920918e5
--- /dev/null
+++ b/ruby/ql/test/library-tests/frameworks/arel/SqlConstruction.ql
@@ -0,0 +1,4 @@
+import codeql.ruby.Concepts
+import codeql.ruby.DataFlow
+
+query predicate sqlConstructions(SqlConstruction c, DataFlow::Node sql) { sql = c.getSql() }
diff --git a/ruby/ql/test/query-tests/security/cwe-089/ArelInjection.rb b/ruby/ql/test/query-tests/security/cwe-089/ArelInjection.rb
new file mode 100644
index 00000000000..a1efb3adabb
--- /dev/null
+++ b/ruby/ql/test/query-tests/security/cwe-089/ArelInjection.rb
@@ -0,0 +1,8 @@
+
+class PotatoController < ActionController::Base
+  def unsafe_action
+    name = params[:user_name]
+    # BAD: SQL statement constructed from user input
+    sql = Arel.sql("SELECT * FROM users WHERE name = #{name}")
+  end
+end
\ No newline at end of file
diff --git a/ruby/ql/test/query-tests/security/cwe-089/SqlInjection.expected b/ruby/ql/test/query-tests/security/cwe-089/SqlInjection.expected
index d78b2675f25..d664bad4293 100644
--- a/ruby/ql/test/query-tests/security/cwe-089/SqlInjection.expected
+++ b/ruby/ql/test/query-tests/security/cwe-089/SqlInjection.expected
@@ -33,6 +33,8 @@ edges
 | ActiveRecordInjection.rb:137:21:137:44 | ...[...] :  | ActiveRecordInjection.rb:20:22:20:30 | condition :  |
 | ActiveRecordInjection.rb:151:59:151:64 | call to params :  | ActiveRecordInjection.rb:151:59:151:74 | ...[...] :  |
 | ActiveRecordInjection.rb:151:59:151:74 | ...[...] :  | ActiveRecordInjection.rb:151:27:151:76 | "this is an unsafe annotation:..." |
+| ArelInjection.rb:4:12:4:17 | call to params :  | ArelInjection.rb:4:12:4:29 | ...[...] :  |
+| ArelInjection.rb:4:12:4:29 | ...[...] :  | ArelInjection.rb:6:20:6:61 | "SELECT * FROM users WHERE nam..." |
 nodes
 | ActiveRecordInjection.rb:8:25:8:28 | name :  | semmle.label | name :  |
 | ActiveRecordInjection.rb:8:31:8:34 | pass :  | semmle.label | pass :  |
@@ -85,6 +87,9 @@ nodes
 | ActiveRecordInjection.rb:151:27:151:76 | "this is an unsafe annotation:..." | semmle.label | "this is an unsafe annotation:..." |
 | ActiveRecordInjection.rb:151:59:151:64 | call to params :  | semmle.label | call to params :  |
 | ActiveRecordInjection.rb:151:59:151:74 | ...[...] :  | semmle.label | ...[...] :  |
+| ArelInjection.rb:4:12:4:17 | call to params :  | semmle.label | call to params :  |
+| ArelInjection.rb:4:12:4:29 | ...[...] :  | semmle.label | ...[...] :  |
+| ArelInjection.rb:6:20:6:61 | "SELECT * FROM users WHERE nam..." | semmle.label | "SELECT * FROM users WHERE nam..." |
 subpaths
 #select
 | ActiveRecordInjection.rb:10:33:10:67 | "name='#{...}' and pass='#{...}'" | ActiveRecordInjection.rb:70:23:70:28 | call to params :  | ActiveRecordInjection.rb:10:33:10:67 | "name='#{...}' and pass='#{...}'" | This SQL query depends on a $@. | ActiveRecordInjection.rb:70:23:70:28 | call to params | user-provided value |
@@ -105,3 +110,4 @@ subpaths
 | ActiveRecordInjection.rb:92:21:92:35 | ...[...] | ActiveRecordInjection.rb:92:21:92:26 | call to params :  | ActiveRecordInjection.rb:92:21:92:35 | ...[...] | This SQL query depends on a $@. | ActiveRecordInjection.rb:92:21:92:26 | call to params | user-provided value |
 | ActiveRecordInjection.rb:104:20:104:32 | ... + ... | ActiveRecordInjection.rb:98:10:98:15 | call to params :  | ActiveRecordInjection.rb:104:20:104:32 | ... + ... | This SQL query depends on a $@. | ActiveRecordInjection.rb:98:10:98:15 | call to params | user-provided value |
 | ActiveRecordInjection.rb:151:27:151:76 | "this is an unsafe annotation:..." | ActiveRecordInjection.rb:151:59:151:64 | call to params :  | ActiveRecordInjection.rb:151:27:151:76 | "this is an unsafe annotation:..." | This SQL query depends on a $@. | ActiveRecordInjection.rb:151:59:151:64 | call to params | user-provided value |
+| ArelInjection.rb:6:20:6:61 | "SELECT * FROM users WHERE nam..." | ArelInjection.rb:4:12:4:17 | call to params :  | ArelInjection.rb:6:20:6:61 | "SELECT * FROM users WHERE nam..." | This SQL query depends on a $@. | ArelInjection.rb:4:12:4:17 | call to params | user-provided value |

From 0337ccb93a2f6d5304756df20d786a807a028693 Mon Sep 17 00:00:00 2001
From: Nick Rolfe <nickrolfe@github.com>
Date: Thu, 10 Nov 2022 13:00:29 +0000
Subject: [PATCH 0149/1420] Ruby: add change notes for Arel.sql /
 SqlConstruction changes

---
 ruby/ql/lib/change-notes/2022-11-10-arel-sql.md | 5 +++++
 ruby/ql/src/change-notes/2022-11-10-arel-sql.md | 4 ++++
 2 files changed, 9 insertions(+)
 create mode 100644 ruby/ql/lib/change-notes/2022-11-10-arel-sql.md
 create mode 100644 ruby/ql/src/change-notes/2022-11-10-arel-sql.md

diff --git a/ruby/ql/lib/change-notes/2022-11-10-arel-sql.md b/ruby/ql/lib/change-notes/2022-11-10-arel-sql.md
new file mode 100644
index 00000000000..e803d0e0895
--- /dev/null
+++ b/ruby/ql/lib/change-notes/2022-11-10-arel-sql.md
@@ -0,0 +1,5 @@
+---
+category: minorAnalysis
+---
+* The `codeql.ruby.Concepts` library now has a `SqlConstruction` class, in addition to the existing `SqlExecution` class.
+* Calls to `Arel.sql` are now modeled as instances of the new `SqlConstruction` concept.
diff --git a/ruby/ql/src/change-notes/2022-11-10-arel-sql.md b/ruby/ql/src/change-notes/2022-11-10-arel-sql.md
new file mode 100644
index 00000000000..918e46a9d9b
--- /dev/null
+++ b/ruby/ql/src/change-notes/2022-11-10-arel-sql.md
@@ -0,0 +1,4 @@
+---
+category: minorAnalysis
+---
+* The `rb/sql-injection` query now considers consider SQL constructions, such as calls to `Arel.sql`, as sinks.

From 511fb9727343d8c46ad2c980a1728ffa460eac4b Mon Sep 17 00:00:00 2001
From: Nick Rolfe <nickrolfe@github.com>
Date: Thu, 10 Nov 2022 14:30:06 +0000
Subject: [PATCH 0150/1420] Ruby: remove redundant import

---
 ruby/ql/lib/codeql/ruby/frameworks/Arel.qll | 1 -
 1 file changed, 1 deletion(-)

diff --git a/ruby/ql/lib/codeql/ruby/frameworks/Arel.qll b/ruby/ql/lib/codeql/ruby/frameworks/Arel.qll
index 00f45507cfc..f57fa41c740 100644
--- a/ruby/ql/lib/codeql/ruby/frameworks/Arel.qll
+++ b/ruby/ql/lib/codeql/ruby/frameworks/Arel.qll
@@ -7,7 +7,6 @@
 private import codeql.ruby.ApiGraphs
 private import codeql.ruby.dataflow.FlowSummary
 private import codeql.ruby.Concepts
-private import codeql.ruby.DataFlow
 
 /**
  * Provides modeling for Arel, a low level SQL library that powers ActiveRecord.

From 23ff3769aca3646e64ecbe5af45e57a82f31a538 Mon Sep 17 00:00:00 2001
From: Geoffrey White <40627776+geoffw0@users.noreply.github.com>
Date: Mon, 31 Oct 2022 18:24:13 +0000
Subject: [PATCH 0151/1420] Swift: Add Alamofire tests for
 swift/cleartext-transmission.

---
 .../Security/CWE-311/SensitiveExprs.expected  |  10 +
 .../Security/CWE-311/testAlamofire.swift      | 218 ++++++++++++++++++
 2 files changed, 228 insertions(+)
 create mode 100644 swift/ql/test/query-tests/Security/CWE-311/testAlamofire.swift

diff --git a/swift/ql/test/query-tests/Security/CWE-311/SensitiveExprs.expected b/swift/ql/test/query-tests/Security/CWE-311/SensitiveExprs.expected
index 9e359b62e27..3c61ec86e95 100644
--- a/swift/ql/test/query-tests/Security/CWE-311/SensitiveExprs.expected
+++ b/swift/ql/test/query-tests/Security/CWE-311/SensitiveExprs.expected
@@ -1,3 +1,13 @@
+| testAlamofire.swift:150:45:150:45 | password | label:password, type:credential |
+| testAlamofire.swift:152:51:152:51 | password | label:password, type:credential |
+| testAlamofire.swift:154:38:154:38 | email | label:email, type:private information |
+| testAlamofire.swift:159:26:159:26 | email | label:email, type:private information |
+| testAlamofire.swift:171:35:171:35 | email | label:email, type:private information |
+| testAlamofire.swift:177:35:177:35 | email | label:email, type:private information |
+| testAlamofire.swift:187:65:187:65 | password | label:password, type:credential |
+| testAlamofire.swift:195:64:195:64 | password | label:password, type:credential |
+| testAlamofire.swift:205:62:205:62 | password | label:password, type:credential |
+| testAlamofire.swift:213:65:213:65 | password | label:password, type:credential |
 | testCoreData.swift:48:15:48:15 | password | label:password, type:credential |
 | testCoreData.swift:51:24:51:24 | password | label:password, type:credential |
 | testCoreData.swift:58:15:58:15 | password | label:password, type:credential |
diff --git a/swift/ql/test/query-tests/Security/CWE-311/testAlamofire.swift b/swift/ql/test/query-tests/Security/CWE-311/testAlamofire.swift
new file mode 100644
index 00000000000..9056eebdbf1
--- /dev/null
+++ b/swift/ql/test/query-tests/Security/CWE-311/testAlamofire.swift
@@ -0,0 +1,218 @@
+
+// --- Foundation stubs ---
+
+class NSObject {
+}
+
+struct URL {
+}
+
+struct URLRequest {
+}
+
+class URLResponse: NSObject {
+}
+
+class HTTPURLResponse : URLResponse {
+}
+
+// --- Alamofire stubs ---
+
+protocol URLConvertible {
+}
+
+extension String: URLConvertible {
+}
+
+struct HTTPMethod {
+	static let get = HTTPMethod(rawValue: "GET")
+	static let post = HTTPMethod(rawValue: "POST")
+
+	init(rawValue: String) {}
+}
+
+struct HTTPHeaders {
+	init(_ dictionary: [String: String]) {}
+
+	mutating func add(name: String, value: String) {}
+	mutating func update(name: String, value: String) {}
+}
+
+extension HTTPHeaders: ExpressibleByDictionaryLiteral {
+	public init(dictionaryLiteral elements: (String, String)...) {}
+}
+
+typealias Parameters = [String: Any]
+
+protocol ParameterEncoding {
+}
+
+struct URLEncoding: ParameterEncoding {
+	static var `default`: URLEncoding { URLEncoding() }
+}
+
+protocol ParameterEncoder {
+}
+
+class URLEncodedFormParameterEncoder: ParameterEncoder {
+	static var `default`: URLEncodedFormParameterEncoder { URLEncodedFormParameterEncoder() }
+}
+
+protocol RequestInterceptor {
+}
+
+class Request {
+}
+
+class DataRequest: Request {
+}
+
+final class DataStreamRequest: Request {
+}
+
+class DownloadRequest: Request {
+	struct Options: OptionSet {
+		let rawValue: Int
+
+		init(rawValue: Int) {
+			self.rawValue = rawValue
+		}
+	}
+
+	typealias Destination =
+		(_ temporaryURL: URL, _ response: HTTPURLResponse) ->
+		(destinationURL: URL, options: Options)
+}
+
+class Session {
+	static let `default` = Session()
+
+	typealias RequestModifier = (inout URLRequest) throws -> Void
+
+	func request(
+		_ convertible: URLConvertible,
+		method: HTTPMethod = .get,
+		parameters: Parameters? = nil,
+		encoding: ParameterEncoding = URLEncoding.default,
+		headers: HTTPHeaders? = nil,
+		interceptor: RequestInterceptor? = nil,
+		requestModifier: RequestModifier? = nil) -> DataRequest {
+			return DataRequest()
+	}
+
+	func request<Parameters: Encodable>(
+		_ convertible: URLConvertible,
+		method: HTTPMethod = .get,
+		parameters: Parameters? = nil,
+		encoder: ParameterEncoder = URLEncodedFormParameterEncoder.default,
+		headers: HTTPHeaders? = nil,
+		interceptor: RequestInterceptor? = nil,
+		requestModifier: RequestModifier? = nil) -> DataRequest {
+			return DataRequest()
+	}
+
+	func streamRequest(
+		_ convertible: URLConvertible,
+		method: HTTPMethod = .get,
+		headers: HTTPHeaders? = nil,
+		automaticallyCancelOnStreamError: Bool = false,
+		interceptor: RequestInterceptor? = nil,
+		requestModifier: RequestModifier? = nil) -> DataStreamRequest {
+			return DataStreamRequest()
+	}
+
+	func download(
+		_ convertible: URLConvertible,
+		method: HTTPMethod = .get,
+		parameters: Parameters? = nil,
+		encoding: ParameterEncoding = URLEncoding.default,
+		headers: HTTPHeaders? = nil,
+		interceptor: RequestInterceptor? = nil,
+		requestModifier: RequestModifier? = nil,
+		to destination: DownloadRequest.Destination? = nil) -> DownloadRequest {
+			return DownloadRequest()
+	}
+
+	// (there are many more variants of `request`, `streamRequest` and `download`)
+}
+
+let AF = Session.default
+
+// --- tests ---
+
+struct MyEncodable: Encodable {
+	let value: String
+}
+
+func test1(username: String, password: String, email: String, harmless: String) {
+	// sensitive data in URL
+
+	AF.request("http://example.com/login?p=" + password) // BAD [NOT DETECTED]
+	AF.request("http://example.com/login?h=" + harmless) // GOOD (not sensitive)
+	AF.streamRequest("http://example.com/login?p=" + password) // BAD [NOT DETECTED]
+	AF.streamRequest("http://example.com/login?h=" + harmless) // GOOD (not sensitive)
+	AF.download("http://example.com/" + email + ".html") // BAD [NOT DETECTED]
+	AF.download("http://example.com/" + harmless + ".html") // GOOD (not sensitive)
+
+	// sensitive data in parameters
+
+	let params1 = ["value": email]
+	let params2 = ["value": harmless]
+
+	AF.request("http://example.com/", parameters: params1) // BAD [NOT DETECTED]
+	AF.request("http://example.com/", parameters: params2) // GOOD (not sensitive)
+	AF.request("http://example.com/", parameters: params1, encoding: URLEncoding.default) // BAD [NOT DETECTED]
+	AF.request("http://example.com/", parameters: params2, encoding: URLEncoding.default) // GOOD (not sensitive)
+	AF.request("http://example.com/", parameters: params1, encoder: URLEncodedFormParameterEncoder.default) // BAD [NOT DETECTED]
+	AF.request("http://example.com/", parameters: params2, encoder: URLEncodedFormParameterEncoder.default) // GOOD (not sensitive)
+	AF.download("http://example.com/", parameters: params1) // BAD [NOT DETECTED]
+	AF.download("http://example.com/", parameters: params2) // GOOD (not sensitive)
+
+	let params3 = ["values": ["...", email, "..."]]
+	let params4 = ["values": ["...", harmless, "..."]]
+
+	AF.request("http://example.com/", method:.post, parameters: params3) // BAD [NOT DETECTED]
+	AF.request("http://example.com/", method:.post, parameters: params4) // GOOD (not sensitive)
+
+	let params5 = MyEncodable(value: email)
+	let params6 = MyEncodable(value: harmless)
+
+	AF.request("http://example.com/", parameters: params5) // BAD [NOT DETECTED]
+	AF.request("http://example.com/", parameters: params6) // GOOD (not sensitive)
+
+	// request headers
+	//  - in real usage a password here would normally be base64 encoded for transmission
+	//  - the risk is greatly reduced (but not eliminated) if HTTPS is used
+
+	let headers1: HTTPHeaders = ["Authorization": username + ":" + password]
+	let headers2: HTTPHeaders = ["Value": harmless]
+
+	AF.request("http://example.com/", headers: headers1) // BAD [NOT DETECTED]
+	AF.request("http://example.com/", headers: headers2) // GOOD (not sensitive)
+	AF.streamRequest("http://example.com/", headers: headers1) // BAD [NOT DETECTED]
+	AF.streamRequest("http://example.com/", headers: headers2) // GOOD (not sensitive)
+
+	let headers3 = HTTPHeaders(["Authorization": username + ":" + password])
+	let headers4 = HTTPHeaders(["Value": harmless])
+
+	AF.request("http://example.com/", headers: headers3) // BAD [NOT DETECTED]
+	AF.request("http://example.com/", headers: headers4) // GOOD (not sensitive)
+	AF.download("http://example.com/", headers: headers1) // BAD [NOT DETECTED]
+	AF.download("http://example.com/", headers: headers2) // GOOD (not sensitive)
+
+	var headers5 = HTTPHeaders([:])
+	var headers6 = HTTPHeaders([:])
+	headers5.add(name: "Authorization", value: username + ":" + password)
+	headers6.add(name: "Data", value: harmless)
+
+	AF.request("http://example.com/", headers: headers5) // BAD [NOT DETECTED]
+	AF.request("http://example.com/", headers: headers6) // GOOD (not sensitive)
+
+	var headers7 = HTTPHeaders([:])
+	var headers8 = HTTPHeaders([:])
+	headers7.update(name: "Authorization", value: username + ":" + password)
+	headers8.update(name: "Data", value: harmless)
+
+	AF.request("http://example.com/", headers: headers7) // BAD [NOT DETECTED]
+	AF.request("http://example.com/", headers: headers8) // GOOD (not sensitive)
+}

From 012fb28e258f91011d78630dc2384b9e983ee06d Mon Sep 17 00:00:00 2001
From: erik-krogh <erik-krogh@github.com>
Date: Thu, 10 Nov 2022 15:38:51 +0100
Subject: [PATCH 0152/1420] only extract .html.erb files instead of all .erb
 files

---
 javascript/extractor/src/com/semmle/js/extractor/AutoBuild.java | 2 +-
 .../extractor/src/com/semmle/js/extractor/FileExtractor.java    | 2 +-
 .../extractor/tests/vue/input/{rails.erb => rails.html.erb}     | 0
 .../vue/output/trap/{rails.erb.trap => rails.html.erb.trap}     | 0
 4 files changed, 2 insertions(+), 2 deletions(-)
 rename javascript/extractor/tests/vue/input/{rails.erb => rails.html.erb} (100%)
 rename javascript/extractor/tests/vue/output/trap/{rails.erb.trap => rails.html.erb.trap} (100%)

diff --git a/javascript/extractor/src/com/semmle/js/extractor/AutoBuild.java b/javascript/extractor/src/com/semmle/js/extractor/AutoBuild.java
index 9d5a4c3b52b..7f28d93a183 100644
--- a/javascript/extractor/src/com/semmle/js/extractor/AutoBuild.java
+++ b/javascript/extractor/src/com/semmle/js/extractor/AutoBuild.java
@@ -141,7 +141,7 @@ import com.semmle.util.trap.TrapWriter;
  *   <li>All JavaScript files, that is, files with one of the extensions supported by {@link
  *       FileType#JS} (currently ".js", ".jsx", ".mjs", ".cjs", ".es6", ".es").
  *   <li>All HTML files, that is, files with with one of the extensions supported by {@link
- *       FileType#HTML} (currently ".htm", ".html", ".xhtm", ".xhtml", ".vue", ".erb").
+ *       FileType#HTML} (currently ".htm", ".html", ".xhtm", ".xhtml", ".vue", ".html.erb").
  *   <li>All YAML files, that is, files with one of the extensions supported by {@link
  *       FileType#YAML} (currently ".raml", ".yaml", ".yml").
  *   <li>Files with base name "package.json" or "tsconfig.json", and files whose base name
diff --git a/javascript/extractor/src/com/semmle/js/extractor/FileExtractor.java b/javascript/extractor/src/com/semmle/js/extractor/FileExtractor.java
index 77871a95fbe..45bd48bf408 100644
--- a/javascript/extractor/src/com/semmle/js/extractor/FileExtractor.java
+++ b/javascript/extractor/src/com/semmle/js/extractor/FileExtractor.java
@@ -104,7 +104,7 @@ public class FileExtractor {
 
   /** Information about supported file types. */
   public static enum FileType {
-    HTML(".htm", ".html", ".xhtm", ".xhtml", ".vue", ".hbs", ".ejs", ".njk", ".erb") {
+    HTML(".htm", ".html", ".xhtm", ".xhtml", ".vue", ".hbs", ".ejs", ".njk", ".html.erb") {
       @Override
       public IExtractor mkExtractor(ExtractorConfig config, ExtractorState state) {
         return new HTMLExtractor(config, state);
diff --git a/javascript/extractor/tests/vue/input/rails.erb b/javascript/extractor/tests/vue/input/rails.html.erb
similarity index 100%
rename from javascript/extractor/tests/vue/input/rails.erb
rename to javascript/extractor/tests/vue/input/rails.html.erb
diff --git a/javascript/extractor/tests/vue/output/trap/rails.erb.trap b/javascript/extractor/tests/vue/output/trap/rails.html.erb.trap
similarity index 100%
rename from javascript/extractor/tests/vue/output/trap/rails.erb.trap
rename to javascript/extractor/tests/vue/output/trap/rails.html.erb.trap

From c5bb32d6d22e082c83099a23764c95081052ff0c Mon Sep 17 00:00:00 2001
From: Paolo Tranquilli <redsun82@github.com>
Date: Thu, 10 Nov 2022 10:19:23 +0100
Subject: [PATCH 0153/1420] Swift: create common `ErrorElement` superclass

---
 swift/ql/lib/codeql/swift/elements.qll        |   2 +-
 .../swift/elements/UnresolvedElement.qll      |   4 -
 .../codeql/swift/generated/ParentChild.qll    | 145 ++++++++++--------
 swift/ql/lib/codeql/swift/generated/Raw.qll   |  26 ++--
 swift/ql/lib/codeql/swift/generated/Synth.qll | 114 ++++++++------
 .../swift/generated/UnresolvedElement.qll     |   8 -
 .../swift/generated/UnspecifiedElement.qll    |   4 +-
 .../codeql/swift/generated/expr/ErrorExpr.qll |   3 +-
 .../generated/expr/OverloadedDeclRefExpr.qll  |   3 +-
 .../generated/expr/UnresolvedDeclRefExpr.qll  |   4 +-
 .../generated/expr/UnresolvedDotExpr.qll      |   4 +-
 .../expr/UnresolvedMemberChainResultExpr.qll  |   4 +-
 .../generated/expr/UnresolvedMemberExpr.qll   |   4 +-
 .../generated/expr/UnresolvedPatternExpr.qll  |   4 +-
 .../expr/UnresolvedSpecializeExpr.qll         |   4 +-
 .../expr/UnresolvedTypeConversionExpr.qll     |   4 +-
 .../codeql/swift/generated/type/ErrorType.qll |   3 +-
 .../swift/generated/type/UnresolvedType.qll   |   4 +-
 swift/ql/lib/swift.dbscheme                   |  27 ++--
 .../UnresolvedElement/UnresolvedElement.ql    |   7 -
 .../UnspecifiedElement/UnspecifiedElement.ql  |  11 --
 .../UnspecifiedElement_getIndex.ql            |   7 -
 .../UnspecifiedElement_getParent.ql           |   7 -
 .../OverloadedDeclRefExpr.ql                  |   7 -
 ...oadedDeclRefExpr_getPossibleDeclaration.ql |   7 -
 .../OverloadedDeclRefExpr_getType.ql          |   7 -
 .../type/ErrorType/MISSING_SOURCE.txt         |   4 -
 swift/schema.py                               |  29 ++--
 28 files changed, 210 insertions(+), 247 deletions(-)
 delete mode 100644 swift/ql/lib/codeql/swift/elements/UnresolvedElement.qll
 delete mode 100644 swift/ql/lib/codeql/swift/generated/UnresolvedElement.qll
 delete mode 100644 swift/ql/test/extractor-tests/generated/UnresolvedElement/UnresolvedElement.ql
 delete mode 100644 swift/ql/test/extractor-tests/generated/UnspecifiedElement/UnspecifiedElement.ql
 delete mode 100644 swift/ql/test/extractor-tests/generated/UnspecifiedElement/UnspecifiedElement_getIndex.ql
 delete mode 100644 swift/ql/test/extractor-tests/generated/UnspecifiedElement/UnspecifiedElement_getParent.ql
 delete mode 100644 swift/ql/test/extractor-tests/generated/expr/OverloadedDeclRefExpr/OverloadedDeclRefExpr.ql
 delete mode 100644 swift/ql/test/extractor-tests/generated/expr/OverloadedDeclRefExpr/OverloadedDeclRefExpr_getPossibleDeclaration.ql
 delete mode 100644 swift/ql/test/extractor-tests/generated/expr/OverloadedDeclRefExpr/OverloadedDeclRefExpr_getType.ql
 delete mode 100644 swift/ql/test/extractor-tests/generated/type/ErrorType/MISSING_SOURCE.txt

diff --git a/swift/ql/lib/codeql/swift/elements.qll b/swift/ql/lib/codeql/swift/elements.qll
index c839ec52bc3..d821cd8fb49 100644
--- a/swift/ql/lib/codeql/swift/elements.qll
+++ b/swift/ql/lib/codeql/swift/elements.qll
@@ -6,12 +6,12 @@ import codeql.swift.elements.DbFile
 import codeql.swift.elements.DbLocation
 import codeql.swift.elements.Diagnostics
 import codeql.swift.elements.Element
+import codeql.swift.elements.ErrorElement
 import codeql.swift.elements.File
 import codeql.swift.elements.Locatable
 import codeql.swift.elements.Location
 import codeql.swift.elements.UnknownFile
 import codeql.swift.elements.UnknownLocation
-import codeql.swift.elements.UnresolvedElement
 import codeql.swift.elements.UnspecifiedElement
 import codeql.swift.elements.decl.AbstractFunctionDecl
 import codeql.swift.elements.decl.AbstractStorageDecl
diff --git a/swift/ql/lib/codeql/swift/elements/UnresolvedElement.qll b/swift/ql/lib/codeql/swift/elements/UnresolvedElement.qll
deleted file mode 100644
index 06456d4c28c..00000000000
--- a/swift/ql/lib/codeql/swift/elements/UnresolvedElement.qll
+++ /dev/null
@@ -1,4 +0,0 @@
-// generated by codegen/codegen.py, remove this comment if you wish to edit this file
-private import codeql.swift.generated.UnresolvedElement
-
-class UnresolvedElement extends Generated::UnresolvedElement { }
diff --git a/swift/ql/lib/codeql/swift/generated/ParentChild.qll b/swift/ql/lib/codeql/swift/generated/ParentChild.qll
index a04f66fba88..34c422443f0 100644
--- a/swift/ql/lib/codeql/swift/generated/ParentChild.qll
+++ b/swift/ql/lib/codeql/swift/generated/ParentChild.qll
@@ -135,6 +135,21 @@ private module Impl {
     )
   }
 
+  private Element getImmediateChildOfErrorElement(
+    ErrorElement e, int index, string partialPredicateCall
+  ) {
+    exists(int b, int bLocatable, int n |
+      b = 0 and
+      bLocatable = b + 1 + max(int i | i = -1 or exists(getImmediateChildOfLocatable(e, i, _)) | i) and
+      n = bLocatable and
+      (
+        none()
+        or
+        result = getImmediateChildOfLocatable(e, index - b, partialPredicateCall)
+      )
+    )
+  }
+
   private Element getImmediateChildOfUnknownFile(
     UnknownFile e, int index, string partialPredicateCall
   ) {
@@ -165,32 +180,18 @@ private module Impl {
     )
   }
 
-  private Element getImmediateChildOfUnresolvedElement(
-    UnresolvedElement e, int index, string partialPredicateCall
-  ) {
-    exists(int b, int bLocatable, int n |
-      b = 0 and
-      bLocatable = b + 1 + max(int i | i = -1 or exists(getImmediateChildOfLocatable(e, i, _)) | i) and
-      n = bLocatable and
-      (
-        none()
-        or
-        result = getImmediateChildOfLocatable(e, index - b, partialPredicateCall)
-      )
-    )
-  }
-
   private Element getImmediateChildOfUnspecifiedElement(
     UnspecifiedElement e, int index, string partialPredicateCall
   ) {
-    exists(int b, int bLocatable, int n |
+    exists(int b, int bErrorElement, int n |
       b = 0 and
-      bLocatable = b + 1 + max(int i | i = -1 or exists(getImmediateChildOfLocatable(e, i, _)) | i) and
-      n = bLocatable and
+      bErrorElement =
+        b + 1 + max(int i | i = -1 or exists(getImmediateChildOfErrorElement(e, i, _)) | i) and
+      n = bErrorElement and
       (
         none()
         or
-        result = getImmediateChildOfLocatable(e, index - b, partialPredicateCall)
+        result = getImmediateChildOfErrorElement(e, index - b, partialPredicateCall)
       )
     )
   }
@@ -1221,14 +1222,18 @@ private module Impl {
   }
 
   private Element getImmediateChildOfErrorExpr(ErrorExpr e, int index, string partialPredicateCall) {
-    exists(int b, int bExpr, int n |
+    exists(int b, int bExpr, int bErrorElement, int n |
       b = 0 and
       bExpr = b + 1 + max(int i | i = -1 or exists(getImmediateChildOfExpr(e, i, _)) | i) and
-      n = bExpr and
+      bErrorElement =
+        bExpr + 1 + max(int i | i = -1 or exists(getImmediateChildOfErrorElement(e, i, _)) | i) and
+      n = bErrorElement and
       (
         none()
         or
         result = getImmediateChildOfExpr(e, index - b, partialPredicateCall)
+        or
+        result = getImmediateChildOfErrorElement(e, index - bExpr, partialPredicateCall)
       )
     )
   }
@@ -1598,14 +1603,18 @@ private module Impl {
   private Element getImmediateChildOfOverloadedDeclRefExpr(
     OverloadedDeclRefExpr e, int index, string partialPredicateCall
   ) {
-    exists(int b, int bExpr, int n |
+    exists(int b, int bExpr, int bErrorElement, int n |
       b = 0 and
       bExpr = b + 1 + max(int i | i = -1 or exists(getImmediateChildOfExpr(e, i, _)) | i) and
-      n = bExpr and
+      bErrorElement =
+        bExpr + 1 + max(int i | i = -1 or exists(getImmediateChildOfErrorElement(e, i, _)) | i) and
+      n = bErrorElement and
       (
         none()
         or
         result = getImmediateChildOfExpr(e, index - b, partialPredicateCall)
+        or
+        result = getImmediateChildOfErrorElement(e, index - bExpr, partialPredicateCall)
       )
     )
   }
@@ -1763,18 +1772,18 @@ private module Impl {
   private Element getImmediateChildOfUnresolvedDeclRefExpr(
     UnresolvedDeclRefExpr e, int index, string partialPredicateCall
   ) {
-    exists(int b, int bExpr, int bUnresolvedElement, int n |
+    exists(int b, int bExpr, int bErrorElement, int n |
       b = 0 and
       bExpr = b + 1 + max(int i | i = -1 or exists(getImmediateChildOfExpr(e, i, _)) | i) and
-      bUnresolvedElement =
-        bExpr + 1 + max(int i | i = -1 or exists(getImmediateChildOfUnresolvedElement(e, i, _)) | i) and
-      n = bUnresolvedElement and
+      bErrorElement =
+        bExpr + 1 + max(int i | i = -1 or exists(getImmediateChildOfErrorElement(e, i, _)) | i) and
+      n = bErrorElement and
       (
         none()
         or
         result = getImmediateChildOfExpr(e, index - b, partialPredicateCall)
         or
-        result = getImmediateChildOfUnresolvedElement(e, index - bExpr, partialPredicateCall)
+        result = getImmediateChildOfErrorElement(e, index - bExpr, partialPredicateCall)
       )
     )
   }
@@ -1782,19 +1791,19 @@ private module Impl {
   private Element getImmediateChildOfUnresolvedDotExpr(
     UnresolvedDotExpr e, int index, string partialPredicateCall
   ) {
-    exists(int b, int bExpr, int bUnresolvedElement, int n, int nBase |
+    exists(int b, int bExpr, int bErrorElement, int n, int nBase |
       b = 0 and
       bExpr = b + 1 + max(int i | i = -1 or exists(getImmediateChildOfExpr(e, i, _)) | i) and
-      bUnresolvedElement =
-        bExpr + 1 + max(int i | i = -1 or exists(getImmediateChildOfUnresolvedElement(e, i, _)) | i) and
-      n = bUnresolvedElement and
+      bErrorElement =
+        bExpr + 1 + max(int i | i = -1 or exists(getImmediateChildOfErrorElement(e, i, _)) | i) and
+      n = bErrorElement and
       nBase = n + 1 and
       (
         none()
         or
         result = getImmediateChildOfExpr(e, index - b, partialPredicateCall)
         or
-        result = getImmediateChildOfUnresolvedElement(e, index - bExpr, partialPredicateCall)
+        result = getImmediateChildOfErrorElement(e, index - bExpr, partialPredicateCall)
         or
         index = n and result = e.getImmediateBase() and partialPredicateCall = "Base()"
       )
@@ -1804,18 +1813,18 @@ private module Impl {
   private Element getImmediateChildOfUnresolvedMemberExpr(
     UnresolvedMemberExpr e, int index, string partialPredicateCall
   ) {
-    exists(int b, int bExpr, int bUnresolvedElement, int n |
+    exists(int b, int bExpr, int bErrorElement, int n |
       b = 0 and
       bExpr = b + 1 + max(int i | i = -1 or exists(getImmediateChildOfExpr(e, i, _)) | i) and
-      bUnresolvedElement =
-        bExpr + 1 + max(int i | i = -1 or exists(getImmediateChildOfUnresolvedElement(e, i, _)) | i) and
-      n = bUnresolvedElement and
+      bErrorElement =
+        bExpr + 1 + max(int i | i = -1 or exists(getImmediateChildOfErrorElement(e, i, _)) | i) and
+      n = bErrorElement and
       (
         none()
         or
         result = getImmediateChildOfExpr(e, index - b, partialPredicateCall)
         or
-        result = getImmediateChildOfUnresolvedElement(e, index - bExpr, partialPredicateCall)
+        result = getImmediateChildOfErrorElement(e, index - bExpr, partialPredicateCall)
       )
     )
   }
@@ -1823,19 +1832,19 @@ private module Impl {
   private Element getImmediateChildOfUnresolvedPatternExpr(
     UnresolvedPatternExpr e, int index, string partialPredicateCall
   ) {
-    exists(int b, int bExpr, int bUnresolvedElement, int n, int nSubPattern |
+    exists(int b, int bExpr, int bErrorElement, int n, int nSubPattern |
       b = 0 and
       bExpr = b + 1 + max(int i | i = -1 or exists(getImmediateChildOfExpr(e, i, _)) | i) and
-      bUnresolvedElement =
-        bExpr + 1 + max(int i | i = -1 or exists(getImmediateChildOfUnresolvedElement(e, i, _)) | i) and
-      n = bUnresolvedElement and
+      bErrorElement =
+        bExpr + 1 + max(int i | i = -1 or exists(getImmediateChildOfErrorElement(e, i, _)) | i) and
+      n = bErrorElement and
       nSubPattern = n + 1 and
       (
         none()
         or
         result = getImmediateChildOfExpr(e, index - b, partialPredicateCall)
         or
-        result = getImmediateChildOfUnresolvedElement(e, index - bExpr, partialPredicateCall)
+        result = getImmediateChildOfErrorElement(e, index - bExpr, partialPredicateCall)
         or
         index = n and result = e.getImmediateSubPattern() and partialPredicateCall = "SubPattern()"
       )
@@ -1845,19 +1854,19 @@ private module Impl {
   private Element getImmediateChildOfUnresolvedSpecializeExpr(
     UnresolvedSpecializeExpr e, int index, string partialPredicateCall
   ) {
-    exists(int b, int bExpr, int bUnresolvedElement, int n, int nSubExpr |
+    exists(int b, int bExpr, int bErrorElement, int n, int nSubExpr |
       b = 0 and
       bExpr = b + 1 + max(int i | i = -1 or exists(getImmediateChildOfExpr(e, i, _)) | i) and
-      bUnresolvedElement =
-        bExpr + 1 + max(int i | i = -1 or exists(getImmediateChildOfUnresolvedElement(e, i, _)) | i) and
-      n = bUnresolvedElement and
+      bErrorElement =
+        bExpr + 1 + max(int i | i = -1 or exists(getImmediateChildOfErrorElement(e, i, _)) | i) and
+      n = bErrorElement and
       nSubExpr = n + 1 and
       (
         none()
         or
         result = getImmediateChildOfExpr(e, index - b, partialPredicateCall)
         or
-        result = getImmediateChildOfUnresolvedElement(e, index - bExpr, partialPredicateCall)
+        result = getImmediateChildOfErrorElement(e, index - bExpr, partialPredicateCall)
         or
         index = n and result = e.getImmediateSubExpr() and partialPredicateCall = "SubExpr()"
       )
@@ -2841,21 +2850,20 @@ private module Impl {
   private Element getImmediateChildOfUnresolvedMemberChainResultExpr(
     UnresolvedMemberChainResultExpr e, int index, string partialPredicateCall
   ) {
-    exists(int b, int bIdentityExpr, int bUnresolvedElement, int n |
+    exists(int b, int bIdentityExpr, int bErrorElement, int n |
       b = 0 and
       bIdentityExpr =
         b + 1 + max(int i | i = -1 or exists(getImmediateChildOfIdentityExpr(e, i, _)) | i) and
-      bUnresolvedElement =
+      bErrorElement =
         bIdentityExpr + 1 +
-          max(int i | i = -1 or exists(getImmediateChildOfUnresolvedElement(e, i, _)) | i) and
-      n = bUnresolvedElement and
+          max(int i | i = -1 or exists(getImmediateChildOfErrorElement(e, i, _)) | i) and
+      n = bErrorElement and
       (
         none()
         or
         result = getImmediateChildOfIdentityExpr(e, index - b, partialPredicateCall)
         or
-        result =
-          getImmediateChildOfUnresolvedElement(e, index - bIdentityExpr, partialPredicateCall)
+        result = getImmediateChildOfErrorElement(e, index - bIdentityExpr, partialPredicateCall)
       )
     )
   }
@@ -2863,23 +2871,22 @@ private module Impl {
   private Element getImmediateChildOfUnresolvedTypeConversionExpr(
     UnresolvedTypeConversionExpr e, int index, string partialPredicateCall
   ) {
-    exists(int b, int bImplicitConversionExpr, int bUnresolvedElement, int n |
+    exists(int b, int bImplicitConversionExpr, int bErrorElement, int n |
       b = 0 and
       bImplicitConversionExpr =
         b + 1 +
           max(int i | i = -1 or exists(getImmediateChildOfImplicitConversionExpr(e, i, _)) | i) and
-      bUnresolvedElement =
+      bErrorElement =
         bImplicitConversionExpr + 1 +
-          max(int i | i = -1 or exists(getImmediateChildOfUnresolvedElement(e, i, _)) | i) and
-      n = bUnresolvedElement and
+          max(int i | i = -1 or exists(getImmediateChildOfErrorElement(e, i, _)) | i) and
+      n = bErrorElement and
       (
         none()
         or
         result = getImmediateChildOfImplicitConversionExpr(e, index - b, partialPredicateCall)
         or
         result =
-          getImmediateChildOfUnresolvedElement(e, index - bImplicitConversionExpr,
-            partialPredicateCall)
+          getImmediateChildOfErrorElement(e, index - bImplicitConversionExpr, partialPredicateCall)
       )
     )
   }
@@ -3874,14 +3881,18 @@ private module Impl {
   }
 
   private Element getImmediateChildOfErrorType(ErrorType e, int index, string partialPredicateCall) {
-    exists(int b, int bType, int n |
+    exists(int b, int bType, int bErrorElement, int n |
       b = 0 and
       bType = b + 1 + max(int i | i = -1 or exists(getImmediateChildOfType(e, i, _)) | i) and
-      n = bType and
+      bErrorElement =
+        bType + 1 + max(int i | i = -1 or exists(getImmediateChildOfErrorElement(e, i, _)) | i) and
+      n = bErrorElement and
       (
         none()
         or
         result = getImmediateChildOfType(e, index - b, partialPredicateCall)
+        or
+        result = getImmediateChildOfErrorElement(e, index - bType, partialPredicateCall)
       )
     )
   }
@@ -4145,18 +4156,18 @@ private module Impl {
   private Element getImmediateChildOfUnresolvedType(
     UnresolvedType e, int index, string partialPredicateCall
   ) {
-    exists(int b, int bType, int bUnresolvedElement, int n |
+    exists(int b, int bType, int bErrorElement, int n |
       b = 0 and
       bType = b + 1 + max(int i | i = -1 or exists(getImmediateChildOfType(e, i, _)) | i) and
-      bUnresolvedElement =
-        bType + 1 + max(int i | i = -1 or exists(getImmediateChildOfUnresolvedElement(e, i, _)) | i) and
-      n = bUnresolvedElement and
+      bErrorElement =
+        bType + 1 + max(int i | i = -1 or exists(getImmediateChildOfErrorElement(e, i, _)) | i) and
+      n = bErrorElement and
       (
         none()
         or
         result = getImmediateChildOfType(e, index - b, partialPredicateCall)
         or
-        result = getImmediateChildOfUnresolvedElement(e, index - bType, partialPredicateCall)
+        result = getImmediateChildOfErrorElement(e, index - bType, partialPredicateCall)
       )
     )
   }
diff --git a/swift/ql/lib/codeql/swift/generated/Raw.qll b/swift/ql/lib/codeql/swift/generated/Raw.qll
index f394b699d4d..f8acf03bbdc 100644
--- a/swift/ql/lib/codeql/swift/generated/Raw.qll
+++ b/swift/ql/lib/codeql/swift/generated/Raw.qll
@@ -57,9 +57,9 @@ module Raw {
     int getKind() { diagnostics(this, _, result) }
   }
 
-  class UnresolvedElement extends @unresolved_element, Locatable { }
+  class ErrorElement extends @error_element, Locatable { }
 
-  class UnspecifiedElement extends @unspecified_element, Locatable {
+  class UnspecifiedElement extends @unspecified_element, ErrorElement {
     override string toString() { result = "UnspecifiedElement" }
 
     Element getParent() { unspecified_element_parents(this, result) }
@@ -431,7 +431,7 @@ module Raw {
     EnumElementDecl getElement() { enum_is_case_exprs(this, _, result) }
   }
 
-  class ErrorExpr extends @error_expr, Expr {
+  class ErrorExpr extends @error_expr, Expr, ErrorElement {
     override string toString() { result = "ErrorExpr" }
   }
 
@@ -553,7 +553,7 @@ module Raw {
     ConstructorDecl getConstructorDecl() { other_constructor_decl_ref_exprs(this, result) }
   }
 
-  class OverloadedDeclRefExpr extends @overloaded_decl_ref_expr, Expr {
+  class OverloadedDeclRefExpr extends @overloaded_decl_ref_expr, Expr, ErrorElement {
     override string toString() { result = "OverloadedDeclRefExpr" }
 
     ValueDecl getPossibleDeclaration(int index) {
@@ -623,13 +623,13 @@ module Raw {
     TypeRepr getTypeRepr() { type_expr_type_reprs(this, result) }
   }
 
-  class UnresolvedDeclRefExpr extends @unresolved_decl_ref_expr, Expr, UnresolvedElement {
+  class UnresolvedDeclRefExpr extends @unresolved_decl_ref_expr, Expr, ErrorElement {
     override string toString() { result = "UnresolvedDeclRefExpr" }
 
     string getName() { unresolved_decl_ref_expr_names(this, result) }
   }
 
-  class UnresolvedDotExpr extends @unresolved_dot_expr, Expr, UnresolvedElement {
+  class UnresolvedDotExpr extends @unresolved_dot_expr, Expr, ErrorElement {
     override string toString() { result = "UnresolvedDotExpr" }
 
     Expr getBase() { unresolved_dot_exprs(this, result, _) }
@@ -637,19 +637,19 @@ module Raw {
     string getName() { unresolved_dot_exprs(this, _, result) }
   }
 
-  class UnresolvedMemberExpr extends @unresolved_member_expr, Expr, UnresolvedElement {
+  class UnresolvedMemberExpr extends @unresolved_member_expr, Expr, ErrorElement {
     override string toString() { result = "UnresolvedMemberExpr" }
 
     string getName() { unresolved_member_exprs(this, result) }
   }
 
-  class UnresolvedPatternExpr extends @unresolved_pattern_expr, Expr, UnresolvedElement {
+  class UnresolvedPatternExpr extends @unresolved_pattern_expr, Expr, ErrorElement {
     override string toString() { result = "UnresolvedPatternExpr" }
 
     Pattern getSubPattern() { unresolved_pattern_exprs(this, result) }
   }
 
-  class UnresolvedSpecializeExpr extends @unresolved_specialize_expr, Expr, UnresolvedElement {
+  class UnresolvedSpecializeExpr extends @unresolved_specialize_expr, Expr, ErrorElement {
     override string toString() { result = "UnresolvedSpecializeExpr" }
 
     Expr getSubExpr() { unresolved_specialize_exprs(this, result) }
@@ -931,12 +931,12 @@ module Raw {
   }
 
   class UnresolvedMemberChainResultExpr extends @unresolved_member_chain_result_expr, IdentityExpr,
-    UnresolvedElement {
+    ErrorElement {
     override string toString() { result = "UnresolvedMemberChainResultExpr" }
   }
 
   class UnresolvedTypeConversionExpr extends @unresolved_type_conversion_expr,
-    ImplicitConversionExpr, UnresolvedElement {
+    ImplicitConversionExpr, ErrorElement {
     override string toString() { result = "UnresolvedTypeConversionExpr" }
   }
 
@@ -1292,7 +1292,7 @@ module Raw {
     Type getStaticSelfType() { dynamic_self_types(this, result) }
   }
 
-  class ErrorType extends @error_type, Type {
+  class ErrorType extends @error_type, Type, ErrorElement {
     override string toString() { result = "ErrorType" }
   }
 
@@ -1378,7 +1378,7 @@ module Raw {
     override string toString() { result = "TypeVariableType" }
   }
 
-  class UnresolvedType extends @unresolved_type, Type, UnresolvedElement {
+  class UnresolvedType extends @unresolved_type, Type, ErrorElement {
     override string toString() { result = "UnresolvedType" }
   }
 
diff --git a/swift/ql/lib/codeql/swift/generated/Synth.qll b/swift/ql/lib/codeql/swift/generated/Synth.qll
index cf410fa74ae..ec06535bbaa 100644
--- a/swift/ql/lib/codeql/swift/generated/Synth.qll
+++ b/swift/ql/lib/codeql/swift/generated/Synth.qll
@@ -321,18 +321,18 @@ module Synth {
 
   class TCallable = TAbstractClosureExpr or TAbstractFunctionDecl;
 
+  class TErrorElement =
+    TErrorExpr or TErrorType or TOverloadedDeclRefExpr or TUnresolvedDeclRefExpr or
+        TUnresolvedDotExpr or TUnresolvedMemberChainResultExpr or TUnresolvedMemberExpr or
+        TUnresolvedPatternExpr or TUnresolvedSpecializeExpr or TUnresolvedType or
+        TUnresolvedTypeConversionExpr or TUnspecifiedElement;
+
   class TFile = TDbFile or TUnknownFile;
 
-  class TLocatable =
-    TArgument or TAstNode or TComment or TDiagnostics or TUnresolvedElement or TUnspecifiedElement;
+  class TLocatable = TArgument or TAstNode or TComment or TDiagnostics or TErrorElement;
 
   class TLocation = TDbLocation or TUnknownLocation;
 
-  class TUnresolvedElement =
-    TUnresolvedDeclRefExpr or TUnresolvedDotExpr or TUnresolvedMemberChainResultExpr or
-        TUnresolvedMemberExpr or TUnresolvedPatternExpr or TUnresolvedSpecializeExpr or
-        TUnresolvedType or TUnresolvedTypeConversionExpr;
-
   class TAbstractFunctionDecl = TConstructorDecl or TDestructorDecl or TFuncDecl;
 
   class TAbstractStorageDecl = TSubscriptDecl or TVarDecl;
@@ -1457,6 +1457,33 @@ module Synth {
     result = convertTypeFromRaw(e)
   }
 
+  cached
+  TErrorElement convertErrorElementFromRaw(Raw::Element e) {
+    result = convertErrorExprFromRaw(e)
+    or
+    result = convertErrorTypeFromRaw(e)
+    or
+    result = convertOverloadedDeclRefExprFromRaw(e)
+    or
+    result = convertUnresolvedDeclRefExprFromRaw(e)
+    or
+    result = convertUnresolvedDotExprFromRaw(e)
+    or
+    result = convertUnresolvedMemberChainResultExprFromRaw(e)
+    or
+    result = convertUnresolvedMemberExprFromRaw(e)
+    or
+    result = convertUnresolvedPatternExprFromRaw(e)
+    or
+    result = convertUnresolvedSpecializeExprFromRaw(e)
+    or
+    result = convertUnresolvedTypeFromRaw(e)
+    or
+    result = convertUnresolvedTypeConversionExprFromRaw(e)
+    or
+    result = convertUnspecifiedElementFromRaw(e)
+  }
+
   cached
   TFile convertFileFromRaw(Raw::Element e) {
     result = convertDbFileFromRaw(e)
@@ -1474,9 +1501,7 @@ module Synth {
     or
     result = convertDiagnosticsFromRaw(e)
     or
-    result = convertUnresolvedElementFromRaw(e)
-    or
-    result = convertUnspecifiedElementFromRaw(e)
+    result = convertErrorElementFromRaw(e)
   }
 
   cached
@@ -1486,25 +1511,6 @@ module Synth {
     result = convertUnknownLocationFromRaw(e)
   }
 
-  cached
-  TUnresolvedElement convertUnresolvedElementFromRaw(Raw::Element e) {
-    result = convertUnresolvedDeclRefExprFromRaw(e)
-    or
-    result = convertUnresolvedDotExprFromRaw(e)
-    or
-    result = convertUnresolvedMemberChainResultExprFromRaw(e)
-    or
-    result = convertUnresolvedMemberExprFromRaw(e)
-    or
-    result = convertUnresolvedPatternExprFromRaw(e)
-    or
-    result = convertUnresolvedSpecializeExprFromRaw(e)
-    or
-    result = convertUnresolvedTypeFromRaw(e)
-    or
-    result = convertUnresolvedTypeConversionExprFromRaw(e)
-  }
-
   cached
   TAbstractFunctionDecl convertAbstractFunctionDeclFromRaw(Raw::Element e) {
     result = convertConstructorDeclFromRaw(e)
@@ -3162,6 +3168,33 @@ module Synth {
     result = convertTypeToRaw(e)
   }
 
+  cached
+  Raw::Element convertErrorElementToRaw(TErrorElement e) {
+    result = convertErrorExprToRaw(e)
+    or
+    result = convertErrorTypeToRaw(e)
+    or
+    result = convertOverloadedDeclRefExprToRaw(e)
+    or
+    result = convertUnresolvedDeclRefExprToRaw(e)
+    or
+    result = convertUnresolvedDotExprToRaw(e)
+    or
+    result = convertUnresolvedMemberChainResultExprToRaw(e)
+    or
+    result = convertUnresolvedMemberExprToRaw(e)
+    or
+    result = convertUnresolvedPatternExprToRaw(e)
+    or
+    result = convertUnresolvedSpecializeExprToRaw(e)
+    or
+    result = convertUnresolvedTypeToRaw(e)
+    or
+    result = convertUnresolvedTypeConversionExprToRaw(e)
+    or
+    result = convertUnspecifiedElementToRaw(e)
+  }
+
   cached
   Raw::Element convertFileToRaw(TFile e) {
     result = convertDbFileToRaw(e)
@@ -3179,9 +3212,7 @@ module Synth {
     or
     result = convertDiagnosticsToRaw(e)
     or
-    result = convertUnresolvedElementToRaw(e)
-    or
-    result = convertUnspecifiedElementToRaw(e)
+    result = convertErrorElementToRaw(e)
   }
 
   cached
@@ -3191,25 +3222,6 @@ module Synth {
     result = convertUnknownLocationToRaw(e)
   }
 
-  cached
-  Raw::Element convertUnresolvedElementToRaw(TUnresolvedElement e) {
-    result = convertUnresolvedDeclRefExprToRaw(e)
-    or
-    result = convertUnresolvedDotExprToRaw(e)
-    or
-    result = convertUnresolvedMemberChainResultExprToRaw(e)
-    or
-    result = convertUnresolvedMemberExprToRaw(e)
-    or
-    result = convertUnresolvedPatternExprToRaw(e)
-    or
-    result = convertUnresolvedSpecializeExprToRaw(e)
-    or
-    result = convertUnresolvedTypeToRaw(e)
-    or
-    result = convertUnresolvedTypeConversionExprToRaw(e)
-  }
-
   cached
   Raw::Element convertAbstractFunctionDeclToRaw(TAbstractFunctionDecl e) {
     result = convertConstructorDeclToRaw(e)
diff --git a/swift/ql/lib/codeql/swift/generated/UnresolvedElement.qll b/swift/ql/lib/codeql/swift/generated/UnresolvedElement.qll
deleted file mode 100644
index 54f2b4005be..00000000000
--- a/swift/ql/lib/codeql/swift/generated/UnresolvedElement.qll
+++ /dev/null
@@ -1,8 +0,0 @@
-// generated by codegen/codegen.py
-private import codeql.swift.generated.Synth
-private import codeql.swift.generated.Raw
-import codeql.swift.elements.Locatable
-
-module Generated {
-  class UnresolvedElement extends Synth::TUnresolvedElement, Locatable { }
-}
diff --git a/swift/ql/lib/codeql/swift/generated/UnspecifiedElement.qll b/swift/ql/lib/codeql/swift/generated/UnspecifiedElement.qll
index 8f6efd926d8..c37d4d35515 100644
--- a/swift/ql/lib/codeql/swift/generated/UnspecifiedElement.qll
+++ b/swift/ql/lib/codeql/swift/generated/UnspecifiedElement.qll
@@ -2,10 +2,10 @@
 private import codeql.swift.generated.Synth
 private import codeql.swift.generated.Raw
 import codeql.swift.elements.Element
-import codeql.swift.elements.Locatable
+import codeql.swift.elements.ErrorElement
 
 module Generated {
-  class UnspecifiedElement extends Synth::TUnspecifiedElement, Locatable {
+  class UnspecifiedElement extends Synth::TUnspecifiedElement, ErrorElement {
     override string getAPrimaryQlClass() { result = "UnspecifiedElement" }
 
     /**
diff --git a/swift/ql/lib/codeql/swift/generated/expr/ErrorExpr.qll b/swift/ql/lib/codeql/swift/generated/expr/ErrorExpr.qll
index 0c0ab658ba4..f89f4da3e40 100644
--- a/swift/ql/lib/codeql/swift/generated/expr/ErrorExpr.qll
+++ b/swift/ql/lib/codeql/swift/generated/expr/ErrorExpr.qll
@@ -1,10 +1,11 @@
 // generated by codegen/codegen.py
 private import codeql.swift.generated.Synth
 private import codeql.swift.generated.Raw
+import codeql.swift.elements.ErrorElement
 import codeql.swift.elements.expr.Expr
 
 module Generated {
-  class ErrorExpr extends Synth::TErrorExpr, Expr {
+  class ErrorExpr extends Synth::TErrorExpr, Expr, ErrorElement {
     override string getAPrimaryQlClass() { result = "ErrorExpr" }
   }
 }
diff --git a/swift/ql/lib/codeql/swift/generated/expr/OverloadedDeclRefExpr.qll b/swift/ql/lib/codeql/swift/generated/expr/OverloadedDeclRefExpr.qll
index 8c9b17d8abd..8347c6daa1b 100644
--- a/swift/ql/lib/codeql/swift/generated/expr/OverloadedDeclRefExpr.qll
+++ b/swift/ql/lib/codeql/swift/generated/expr/OverloadedDeclRefExpr.qll
@@ -1,6 +1,7 @@
 // generated by codegen/codegen.py
 private import codeql.swift.generated.Synth
 private import codeql.swift.generated.Raw
+import codeql.swift.elements.ErrorElement
 import codeql.swift.elements.expr.Expr
 import codeql.swift.elements.decl.ValueDecl
 
@@ -9,7 +10,7 @@ module Generated {
    * An ambiguous expression that might refer to multiple declarations. This will be present only
    * for failing compilations.
    */
-  class OverloadedDeclRefExpr extends Synth::TOverloadedDeclRefExpr, Expr {
+  class OverloadedDeclRefExpr extends Synth::TOverloadedDeclRefExpr, Expr, ErrorElement {
     override string getAPrimaryQlClass() { result = "OverloadedDeclRefExpr" }
 
     /**
diff --git a/swift/ql/lib/codeql/swift/generated/expr/UnresolvedDeclRefExpr.qll b/swift/ql/lib/codeql/swift/generated/expr/UnresolvedDeclRefExpr.qll
index 69503e9e1d2..44714ddc239 100644
--- a/swift/ql/lib/codeql/swift/generated/expr/UnresolvedDeclRefExpr.qll
+++ b/swift/ql/lib/codeql/swift/generated/expr/UnresolvedDeclRefExpr.qll
@@ -1,11 +1,11 @@
 // generated by codegen/codegen.py
 private import codeql.swift.generated.Synth
 private import codeql.swift.generated.Raw
+import codeql.swift.elements.ErrorElement
 import codeql.swift.elements.expr.Expr
-import codeql.swift.elements.UnresolvedElement
 
 module Generated {
-  class UnresolvedDeclRefExpr extends Synth::TUnresolvedDeclRefExpr, Expr, UnresolvedElement {
+  class UnresolvedDeclRefExpr extends Synth::TUnresolvedDeclRefExpr, Expr, ErrorElement {
     override string getAPrimaryQlClass() { result = "UnresolvedDeclRefExpr" }
 
     /**
diff --git a/swift/ql/lib/codeql/swift/generated/expr/UnresolvedDotExpr.qll b/swift/ql/lib/codeql/swift/generated/expr/UnresolvedDotExpr.qll
index c1babf745ef..94da3aa05e3 100644
--- a/swift/ql/lib/codeql/swift/generated/expr/UnresolvedDotExpr.qll
+++ b/swift/ql/lib/codeql/swift/generated/expr/UnresolvedDotExpr.qll
@@ -1,11 +1,11 @@
 // generated by codegen/codegen.py
 private import codeql.swift.generated.Synth
 private import codeql.swift.generated.Raw
+import codeql.swift.elements.ErrorElement
 import codeql.swift.elements.expr.Expr
-import codeql.swift.elements.UnresolvedElement
 
 module Generated {
-  class UnresolvedDotExpr extends Synth::TUnresolvedDotExpr, Expr, UnresolvedElement {
+  class UnresolvedDotExpr extends Synth::TUnresolvedDotExpr, Expr, ErrorElement {
     override string getAPrimaryQlClass() { result = "UnresolvedDotExpr" }
 
     /**
diff --git a/swift/ql/lib/codeql/swift/generated/expr/UnresolvedMemberChainResultExpr.qll b/swift/ql/lib/codeql/swift/generated/expr/UnresolvedMemberChainResultExpr.qll
index d35b1436f8a..c7e62054345 100644
--- a/swift/ql/lib/codeql/swift/generated/expr/UnresolvedMemberChainResultExpr.qll
+++ b/swift/ql/lib/codeql/swift/generated/expr/UnresolvedMemberChainResultExpr.qll
@@ -1,12 +1,12 @@
 // generated by codegen/codegen.py
 private import codeql.swift.generated.Synth
 private import codeql.swift.generated.Raw
+import codeql.swift.elements.ErrorElement
 import codeql.swift.elements.expr.IdentityExpr
-import codeql.swift.elements.UnresolvedElement
 
 module Generated {
   class UnresolvedMemberChainResultExpr extends Synth::TUnresolvedMemberChainResultExpr,
-    IdentityExpr, UnresolvedElement {
+    IdentityExpr, ErrorElement {
     override string getAPrimaryQlClass() { result = "UnresolvedMemberChainResultExpr" }
   }
 }
diff --git a/swift/ql/lib/codeql/swift/generated/expr/UnresolvedMemberExpr.qll b/swift/ql/lib/codeql/swift/generated/expr/UnresolvedMemberExpr.qll
index ecce559fa41..3dcb91353b7 100644
--- a/swift/ql/lib/codeql/swift/generated/expr/UnresolvedMemberExpr.qll
+++ b/swift/ql/lib/codeql/swift/generated/expr/UnresolvedMemberExpr.qll
@@ -1,11 +1,11 @@
 // generated by codegen/codegen.py
 private import codeql.swift.generated.Synth
 private import codeql.swift.generated.Raw
+import codeql.swift.elements.ErrorElement
 import codeql.swift.elements.expr.Expr
-import codeql.swift.elements.UnresolvedElement
 
 module Generated {
-  class UnresolvedMemberExpr extends Synth::TUnresolvedMemberExpr, Expr, UnresolvedElement {
+  class UnresolvedMemberExpr extends Synth::TUnresolvedMemberExpr, Expr, ErrorElement {
     override string getAPrimaryQlClass() { result = "UnresolvedMemberExpr" }
 
     /**
diff --git a/swift/ql/lib/codeql/swift/generated/expr/UnresolvedPatternExpr.qll b/swift/ql/lib/codeql/swift/generated/expr/UnresolvedPatternExpr.qll
index 3edfc8bf084..ae7b16de2d3 100644
--- a/swift/ql/lib/codeql/swift/generated/expr/UnresolvedPatternExpr.qll
+++ b/swift/ql/lib/codeql/swift/generated/expr/UnresolvedPatternExpr.qll
@@ -1,12 +1,12 @@
 // generated by codegen/codegen.py
 private import codeql.swift.generated.Synth
 private import codeql.swift.generated.Raw
+import codeql.swift.elements.ErrorElement
 import codeql.swift.elements.expr.Expr
 import codeql.swift.elements.pattern.Pattern
-import codeql.swift.elements.UnresolvedElement
 
 module Generated {
-  class UnresolvedPatternExpr extends Synth::TUnresolvedPatternExpr, Expr, UnresolvedElement {
+  class UnresolvedPatternExpr extends Synth::TUnresolvedPatternExpr, Expr, ErrorElement {
     override string getAPrimaryQlClass() { result = "UnresolvedPatternExpr" }
 
     /**
diff --git a/swift/ql/lib/codeql/swift/generated/expr/UnresolvedSpecializeExpr.qll b/swift/ql/lib/codeql/swift/generated/expr/UnresolvedSpecializeExpr.qll
index 461f41c97fb..60c7379bda8 100644
--- a/swift/ql/lib/codeql/swift/generated/expr/UnresolvedSpecializeExpr.qll
+++ b/swift/ql/lib/codeql/swift/generated/expr/UnresolvedSpecializeExpr.qll
@@ -1,11 +1,11 @@
 // generated by codegen/codegen.py
 private import codeql.swift.generated.Synth
 private import codeql.swift.generated.Raw
+import codeql.swift.elements.ErrorElement
 import codeql.swift.elements.expr.Expr
-import codeql.swift.elements.UnresolvedElement
 
 module Generated {
-  class UnresolvedSpecializeExpr extends Synth::TUnresolvedSpecializeExpr, Expr, UnresolvedElement {
+  class UnresolvedSpecializeExpr extends Synth::TUnresolvedSpecializeExpr, Expr, ErrorElement {
     override string getAPrimaryQlClass() { result = "UnresolvedSpecializeExpr" }
 
     /**
diff --git a/swift/ql/lib/codeql/swift/generated/expr/UnresolvedTypeConversionExpr.qll b/swift/ql/lib/codeql/swift/generated/expr/UnresolvedTypeConversionExpr.qll
index 10d3fc7a0d5..c6db91fb04c 100644
--- a/swift/ql/lib/codeql/swift/generated/expr/UnresolvedTypeConversionExpr.qll
+++ b/swift/ql/lib/codeql/swift/generated/expr/UnresolvedTypeConversionExpr.qll
@@ -1,12 +1,12 @@
 // generated by codegen/codegen.py
 private import codeql.swift.generated.Synth
 private import codeql.swift.generated.Raw
+import codeql.swift.elements.ErrorElement
 import codeql.swift.elements.expr.ImplicitConversionExpr
-import codeql.swift.elements.UnresolvedElement
 
 module Generated {
   class UnresolvedTypeConversionExpr extends Synth::TUnresolvedTypeConversionExpr,
-    ImplicitConversionExpr, UnresolvedElement {
+    ImplicitConversionExpr, ErrorElement {
     override string getAPrimaryQlClass() { result = "UnresolvedTypeConversionExpr" }
   }
 }
diff --git a/swift/ql/lib/codeql/swift/generated/type/ErrorType.qll b/swift/ql/lib/codeql/swift/generated/type/ErrorType.qll
index d347a8dc501..1c2a276b1ae 100644
--- a/swift/ql/lib/codeql/swift/generated/type/ErrorType.qll
+++ b/swift/ql/lib/codeql/swift/generated/type/ErrorType.qll
@@ -1,10 +1,11 @@
 // generated by codegen/codegen.py
 private import codeql.swift.generated.Synth
 private import codeql.swift.generated.Raw
+import codeql.swift.elements.ErrorElement
 import codeql.swift.elements.type.Type
 
 module Generated {
-  class ErrorType extends Synth::TErrorType, Type {
+  class ErrorType extends Synth::TErrorType, Type, ErrorElement {
     override string getAPrimaryQlClass() { result = "ErrorType" }
   }
 }
diff --git a/swift/ql/lib/codeql/swift/generated/type/UnresolvedType.qll b/swift/ql/lib/codeql/swift/generated/type/UnresolvedType.qll
index 4cad38bace3..2e6848734bf 100644
--- a/swift/ql/lib/codeql/swift/generated/type/UnresolvedType.qll
+++ b/swift/ql/lib/codeql/swift/generated/type/UnresolvedType.qll
@@ -1,11 +1,11 @@
 // generated by codegen/codegen.py
 private import codeql.swift.generated.Synth
 private import codeql.swift.generated.Raw
+import codeql.swift.elements.ErrorElement
 import codeql.swift.elements.type.Type
-import codeql.swift.elements.UnresolvedElement
 
 module Generated {
-  class UnresolvedType extends Synth::TUnresolvedType, Type, UnresolvedElement {
+  class UnresolvedType extends Synth::TUnresolvedType, Type, ErrorElement {
     override string getAPrimaryQlClass() { result = "UnresolvedType" }
   }
 }
diff --git a/swift/ql/lib/swift.dbscheme b/swift/ql/lib/swift.dbscheme
index ef2edbcfec7..702cbd2eef6 100644
--- a/swift/ql/lib/swift.dbscheme
+++ b/swift/ql/lib/swift.dbscheme
@@ -66,8 +66,7 @@ files(
 | @ast_node
 | @comment
 | @diagnostics
-| @unresolved_element
-| @unspecified_element
+| @error_element
 ;
 
 #keyset[id]
@@ -121,16 +120,11 @@ diagnostics(
   int kind: int ref
 );
 
-unknown_files(
-  unique int id: @unknown_file
-);
-
-unknown_locations(
-  unique int id: @unknown_location
-);
-
-@unresolved_element =
-  @unresolved_decl_ref_expr
+@error_element =
+  @error_expr
+| @error_type
+| @overloaded_decl_ref_expr
+| @unresolved_decl_ref_expr
 | @unresolved_dot_expr
 | @unresolved_member_chain_result_expr
 | @unresolved_member_expr
@@ -138,8 +132,17 @@ unknown_locations(
 | @unresolved_specialize_expr
 | @unresolved_type
 | @unresolved_type_conversion_expr
+| @unspecified_element
 ;
 
+unknown_files(
+  unique int id: @unknown_file
+);
+
+unknown_locations(
+  unique int id: @unknown_location
+);
+
 unspecified_elements(
   unique int id: @unspecified_element,
   string property: string ref,
diff --git a/swift/ql/test/extractor-tests/generated/UnresolvedElement/UnresolvedElement.ql b/swift/ql/test/extractor-tests/generated/UnresolvedElement/UnresolvedElement.ql
deleted file mode 100644
index 40c564990f9..00000000000
--- a/swift/ql/test/extractor-tests/generated/UnresolvedElement/UnresolvedElement.ql
+++ /dev/null
@@ -1,7 +0,0 @@
-// generated by codegen/codegen.py
-import codeql.swift.elements
-import TestUtils
-
-from UnresolvedElement x
-where toBeTested(x) and not x.isUnknown()
-select x, x.getPrimaryQlClasses()
diff --git a/swift/ql/test/extractor-tests/generated/UnspecifiedElement/UnspecifiedElement.ql b/swift/ql/test/extractor-tests/generated/UnspecifiedElement/UnspecifiedElement.ql
deleted file mode 100644
index dc762fbbeb0..00000000000
--- a/swift/ql/test/extractor-tests/generated/UnspecifiedElement/UnspecifiedElement.ql
+++ /dev/null
@@ -1,11 +0,0 @@
-// generated by codegen/codegen.py
-import codeql.swift.elements
-import TestUtils
-
-from UnspecifiedElement x, string getProperty, string getError
-where
-  toBeTested(x) and
-  not x.isUnknown() and
-  getProperty = x.getProperty() and
-  getError = x.getError()
-select x, "getProperty:", getProperty, "getError:", getError
diff --git a/swift/ql/test/extractor-tests/generated/UnspecifiedElement/UnspecifiedElement_getIndex.ql b/swift/ql/test/extractor-tests/generated/UnspecifiedElement/UnspecifiedElement_getIndex.ql
deleted file mode 100644
index d8d2a7fab69..00000000000
--- a/swift/ql/test/extractor-tests/generated/UnspecifiedElement/UnspecifiedElement_getIndex.ql
+++ /dev/null
@@ -1,7 +0,0 @@
-// generated by codegen/codegen.py
-import codeql.swift.elements
-import TestUtils
-
-from UnspecifiedElement x
-where toBeTested(x) and not x.isUnknown()
-select x, x.getIndex()
diff --git a/swift/ql/test/extractor-tests/generated/UnspecifiedElement/UnspecifiedElement_getParent.ql b/swift/ql/test/extractor-tests/generated/UnspecifiedElement/UnspecifiedElement_getParent.ql
deleted file mode 100644
index 7cfdb4bb609..00000000000
--- a/swift/ql/test/extractor-tests/generated/UnspecifiedElement/UnspecifiedElement_getParent.ql
+++ /dev/null
@@ -1,7 +0,0 @@
-// generated by codegen/codegen.py
-import codeql.swift.elements
-import TestUtils
-
-from UnspecifiedElement x
-where toBeTested(x) and not x.isUnknown()
-select x, x.getParent()
diff --git a/swift/ql/test/extractor-tests/generated/expr/OverloadedDeclRefExpr/OverloadedDeclRefExpr.ql b/swift/ql/test/extractor-tests/generated/expr/OverloadedDeclRefExpr/OverloadedDeclRefExpr.ql
deleted file mode 100644
index 628d289832b..00000000000
--- a/swift/ql/test/extractor-tests/generated/expr/OverloadedDeclRefExpr/OverloadedDeclRefExpr.ql
+++ /dev/null
@@ -1,7 +0,0 @@
-// generated by codegen/codegen.py
-import codeql.swift.elements
-import TestUtils
-
-from OverloadedDeclRefExpr x
-where toBeTested(x) and not x.isUnknown()
-select x
diff --git a/swift/ql/test/extractor-tests/generated/expr/OverloadedDeclRefExpr/OverloadedDeclRefExpr_getPossibleDeclaration.ql b/swift/ql/test/extractor-tests/generated/expr/OverloadedDeclRefExpr/OverloadedDeclRefExpr_getPossibleDeclaration.ql
deleted file mode 100644
index 88e95b436e6..00000000000
--- a/swift/ql/test/extractor-tests/generated/expr/OverloadedDeclRefExpr/OverloadedDeclRefExpr_getPossibleDeclaration.ql
+++ /dev/null
@@ -1,7 +0,0 @@
-// generated by codegen/codegen.py
-import codeql.swift.elements
-import TestUtils
-
-from OverloadedDeclRefExpr x, int index
-where toBeTested(x) and not x.isUnknown()
-select x, index, x.getPossibleDeclaration(index)
diff --git a/swift/ql/test/extractor-tests/generated/expr/OverloadedDeclRefExpr/OverloadedDeclRefExpr_getType.ql b/swift/ql/test/extractor-tests/generated/expr/OverloadedDeclRefExpr/OverloadedDeclRefExpr_getType.ql
deleted file mode 100644
index ce159bba3b3..00000000000
--- a/swift/ql/test/extractor-tests/generated/expr/OverloadedDeclRefExpr/OverloadedDeclRefExpr_getType.ql
+++ /dev/null
@@ -1,7 +0,0 @@
-// generated by codegen/codegen.py
-import codeql.swift.elements
-import TestUtils
-
-from OverloadedDeclRefExpr x
-where toBeTested(x) and not x.isUnknown()
-select x, x.getType()
diff --git a/swift/ql/test/extractor-tests/generated/type/ErrorType/MISSING_SOURCE.txt b/swift/ql/test/extractor-tests/generated/type/ErrorType/MISSING_SOURCE.txt
deleted file mode 100644
index 0d319d9a669..00000000000
--- a/swift/ql/test/extractor-tests/generated/type/ErrorType/MISSING_SOURCE.txt
+++ /dev/null
@@ -1,4 +0,0 @@
-// generated by codegen/codegen.py
-
-After a swift source file is added in this directory and codegen/codegen.py is run again, test queries
-will appear and this file will be deleted
diff --git a/swift/schema.py b/swift/schema.py
index d180eab8738..68675d3d17c 100644
--- a/swift/schema.py
+++ b/swift/schema.py
@@ -33,11 +33,14 @@ class Locatable(Element):
     location: optional[Location] | cpp.skip | doc("location associated with this element in the code")
 
 @qltest.collapse_hierarchy
-class UnresolvedElement(Locatable):
+@qltest.skip
+class ErrorElement(Locatable):
+    """The superclass of all elements indicating some kind of error."""
     pass
 
+
 @use_for_null
-class UnspecifiedElement(Locatable):
+class UnspecifiedElement(ErrorElement):
     parent: optional[Element]
     property: string
     index: optional[int]
@@ -326,7 +329,7 @@ class EnumIsCaseExpr(Expr):
     element: EnumElementDecl
 
 @qltest.skip
-class ErrorExpr(Expr):
+class ErrorExpr(Expr, ErrorElement):
     pass
 
 class ExplicitCastExpr(Expr):
@@ -433,20 +436,20 @@ class TupleExpr(Expr):
 class TypeExpr(Expr):
     type_repr: optional["TypeRepr"] | child
 
-class UnresolvedDeclRefExpr(Expr, UnresolvedElement):
+class UnresolvedDeclRefExpr(Expr, ErrorElement):
     name: optional[string]
 
-class UnresolvedDotExpr(Expr, UnresolvedElement):
+class UnresolvedDotExpr(Expr, ErrorElement):
     base: Expr | child
     name: string
 
-class UnresolvedMemberExpr(Expr, UnresolvedElement):
+class UnresolvedMemberExpr(Expr, ErrorElement):
     name: string
 
-class UnresolvedPatternExpr(Expr, UnresolvedElement):
+class UnresolvedPatternExpr(Expr, ErrorElement):
     sub_pattern: Pattern | child
 
-class UnresolvedSpecializeExpr(Expr, UnresolvedElement):
+class UnresolvedSpecializeExpr(Expr, ErrorElement):
     sub_expr: Expr | child
 
 class VarargExpansionExpr(Expr):
@@ -594,7 +597,7 @@ class ObjectLiteralExpr(LiteralExpr):
 class OptionalTryExpr(AnyTryExpr):
     pass
 
-class OverloadedDeclRefExpr(Expr):
+class OverloadedDeclRefExpr(Expr, ErrorElement):
     """
     An ambiguous expression that might refer to multiple declarations. This will be present only
     for failing compilations.
@@ -640,10 +643,10 @@ class UnderlyingToOpaqueExpr(ImplicitConversionExpr):
 class UnevaluatedInstanceExpr(ImplicitConversionExpr):
     pass
 
-class UnresolvedMemberChainResultExpr(IdentityExpr, UnresolvedElement):
+class UnresolvedMemberChainResultExpr(IdentityExpr, ErrorElement):
     pass
 
-class UnresolvedTypeConversionExpr(ImplicitConversionExpr, UnresolvedElement):
+class UnresolvedTypeConversionExpr(ImplicitConversionExpr, ErrorElement):
     pass
 
 class BooleanLiteralExpr(BuiltinLiteralExpr):
@@ -852,7 +855,7 @@ class DependentMemberType(Type):
 class DynamicSelfType(Type):
     static_self_type: Type
 
-class ErrorType(Type):
+class ErrorType(Type, ErrorElement):
     pass
 
 class ExistentialType(Type):
@@ -901,7 +904,7 @@ class TupleType(Type):
 class TypeVariableType(Type):
     pass
 
-class UnresolvedType(Type, UnresolvedElement):
+class UnresolvedType(Type, ErrorElement):
     pass
 
 class AnyBuiltinIntegerType(BuiltinType):

From 6a816ba700a972c1a1c05713cdf4ec335ee88471 Mon Sep 17 00:00:00 2001
From: Paolo Tranquilli <redsun82@github.com>
Date: Thu, 10 Nov 2022 10:23:34 +0100
Subject: [PATCH 0154/1420] Swift: create common error test directory

---
 .../ql/lib/codeql/swift/elements/ErrorElement.qll  |  4 ++++
 .../ql/lib/codeql/swift/generated/ErrorElement.qll | 11 +++++++++++
 .../ql/test/extractor-tests/errors/Errors.expected | 14 ++++++++++++++
 swift/ql/test/extractor-tests/errors/Errors.ql     |  5 +++++
 .../errors/UnspecifiedElementParents.expected      |  9 +++++++++
 .../errors/UnspecifiedElementParents.ql            |  5 +++++
 .../overloaded.swift                               |  0
 .../UnresolvedElement => errors}/unresolved.swift  |  0
 .../wrong.swift => errors/unspecified.swift}       |  0
 9 files changed, 48 insertions(+)
 create mode 100644 swift/ql/lib/codeql/swift/elements/ErrorElement.qll
 create mode 100644 swift/ql/lib/codeql/swift/generated/ErrorElement.qll
 create mode 100644 swift/ql/test/extractor-tests/errors/Errors.expected
 create mode 100644 swift/ql/test/extractor-tests/errors/Errors.ql
 create mode 100644 swift/ql/test/extractor-tests/errors/UnspecifiedElementParents.expected
 create mode 100644 swift/ql/test/extractor-tests/errors/UnspecifiedElementParents.ql
 rename swift/ql/test/extractor-tests/{generated/expr/OverloadedDeclRefExpr => errors}/overloaded.swift (100%)
 rename swift/ql/test/extractor-tests/{generated/UnresolvedElement => errors}/unresolved.swift (100%)
 rename swift/ql/test/extractor-tests/{generated/UnspecifiedElement/wrong.swift => errors/unspecified.swift} (100%)

diff --git a/swift/ql/lib/codeql/swift/elements/ErrorElement.qll b/swift/ql/lib/codeql/swift/elements/ErrorElement.qll
new file mode 100644
index 00000000000..75d60aef9c9
--- /dev/null
+++ b/swift/ql/lib/codeql/swift/elements/ErrorElement.qll
@@ -0,0 +1,4 @@
+// generated by codegen/codegen.py, remove this comment if you wish to edit this file
+private import codeql.swift.generated.ErrorElement
+
+class ErrorElement extends Generated::ErrorElement { }
diff --git a/swift/ql/lib/codeql/swift/generated/ErrorElement.qll b/swift/ql/lib/codeql/swift/generated/ErrorElement.qll
new file mode 100644
index 00000000000..726669e4a97
--- /dev/null
+++ b/swift/ql/lib/codeql/swift/generated/ErrorElement.qll
@@ -0,0 +1,11 @@
+// generated by codegen/codegen.py
+private import codeql.swift.generated.Synth
+private import codeql.swift.generated.Raw
+import codeql.swift.elements.Locatable
+
+module Generated {
+  /**
+   * The superclass of all elements indicating some kind of error.
+   */
+  class ErrorElement extends Synth::TErrorElement, Locatable { }
+}
diff --git a/swift/ql/test/extractor-tests/errors/Errors.expected b/swift/ql/test/extractor-tests/errors/Errors.expected
new file mode 100644
index 00000000000..a527c7b28c1
--- /dev/null
+++ b/swift/ql/test/extractor-tests/errors/Errors.expected
@@ -0,0 +1,14 @@
+| file://:0:0:0:0 | (no string representation) | ErrorType |
+| file://:0:0:0:0 | ... .combine(_:) | UnresolvedDotExpr |
+| overloaded.swift:6:5:6:5 | OverloadedDeclRefExpr | OverloadedDeclRefExpr |
+| unresolved.swift:5:1:5:14 | UnresolvedSpecializeExpr | UnresolvedSpecializeExpr |
+| unspecified.swift:3:1:3:23 | missing extended_type_decl from ExtensionDecl | UnspecifiedElement |
+| unspecified.swift:9:9:9:9 | missing fallthrough_dest from FallthroughStmt | UnspecifiedElement |
+| unspecified.swift:9:9:9:9 | missing fallthrough_source from FallthroughStmt | UnspecifiedElement |
+| unspecified.swift:12:18:12:21 | missing element from EnumElementPattern | UnspecifiedElement |
+| unspecified.swift:14:18:14:26 | missing element from EnumElementPattern | UnspecifiedElement |
+| unspecified.swift:19:18:19:19 | missing element from EnumElementPattern | UnspecifiedElement |
+| unspecified.swift:22:13:22:13 | missing fallthrough_dest from FallthroughStmt | UnspecifiedElement |
+| unspecified.swift:22:13:22:13 | missing fallthrough_source from FallthroughStmt | UnspecifiedElement |
+| unspecified.swift:25:16:25:16 | ErrorExpr | ErrorExpr |
+| unspecified.swift:26:18:26:19 | missing element from EnumElementPattern | UnspecifiedElement |
diff --git a/swift/ql/test/extractor-tests/errors/Errors.ql b/swift/ql/test/extractor-tests/errors/Errors.ql
new file mode 100644
index 00000000000..3738f9a83dd
--- /dev/null
+++ b/swift/ql/test/extractor-tests/errors/Errors.ql
@@ -0,0 +1,5 @@
+import swift
+
+from Locatable e
+where e instanceof ErrorElement
+select e, e.getPrimaryQlClasses()
diff --git a/swift/ql/test/extractor-tests/errors/UnspecifiedElementParents.expected b/swift/ql/test/extractor-tests/errors/UnspecifiedElementParents.expected
new file mode 100644
index 00000000000..6f603d045ce
--- /dev/null
+++ b/swift/ql/test/extractor-tests/errors/UnspecifiedElementParents.expected
@@ -0,0 +1,9 @@
+| unspecified.swift:3:1:3:23 | extension | unspecified.swift:3:1:3:23 | missing extended_type_decl from ExtensionDecl |
+| unspecified.swift:9:9:9:9 | fallthrough | unspecified.swift:9:9:9:9 | missing fallthrough_dest from FallthroughStmt |
+| unspecified.swift:9:9:9:9 | fallthrough | unspecified.swift:9:9:9:9 | missing fallthrough_source from FallthroughStmt |
+| unspecified.swift:12:18:12:21 | (no string representation) | unspecified.swift:12:18:12:21 | missing element from EnumElementPattern |
+| unspecified.swift:14:18:14:26 | (no string representation) | unspecified.swift:14:18:14:26 | missing element from EnumElementPattern |
+| unspecified.swift:19:18:19:19 | (no string representation) | unspecified.swift:19:18:19:19 | missing element from EnumElementPattern |
+| unspecified.swift:22:13:22:13 | fallthrough | unspecified.swift:22:13:22:13 | missing fallthrough_dest from FallthroughStmt |
+| unspecified.swift:22:13:22:13 | fallthrough | unspecified.swift:22:13:22:13 | missing fallthrough_source from FallthroughStmt |
+| unspecified.swift:26:18:26:19 | (no string representation) | unspecified.swift:26:18:26:19 | missing element from EnumElementPattern |
diff --git a/swift/ql/test/extractor-tests/errors/UnspecifiedElementParents.ql b/swift/ql/test/extractor-tests/errors/UnspecifiedElementParents.ql
new file mode 100644
index 00000000000..4f848750b7a
--- /dev/null
+++ b/swift/ql/test/extractor-tests/errors/UnspecifiedElementParents.ql
@@ -0,0 +1,5 @@
+import swift
+
+from UnspecifiedElement e, Locatable parent
+where parent = e.getParent()
+select parent, e
diff --git a/swift/ql/test/extractor-tests/generated/expr/OverloadedDeclRefExpr/overloaded.swift b/swift/ql/test/extractor-tests/errors/overloaded.swift
similarity index 100%
rename from swift/ql/test/extractor-tests/generated/expr/OverloadedDeclRefExpr/overloaded.swift
rename to swift/ql/test/extractor-tests/errors/overloaded.swift
diff --git a/swift/ql/test/extractor-tests/generated/UnresolvedElement/unresolved.swift b/swift/ql/test/extractor-tests/errors/unresolved.swift
similarity index 100%
rename from swift/ql/test/extractor-tests/generated/UnresolvedElement/unresolved.swift
rename to swift/ql/test/extractor-tests/errors/unresolved.swift
diff --git a/swift/ql/test/extractor-tests/generated/UnspecifiedElement/wrong.swift b/swift/ql/test/extractor-tests/errors/unspecified.swift
similarity index 100%
rename from swift/ql/test/extractor-tests/generated/UnspecifiedElement/wrong.swift
rename to swift/ql/test/extractor-tests/errors/unspecified.swift

From a54853d3b4d0f3e840537954a8ec6e7fa57e062f Mon Sep 17 00:00:00 2001
From: Paolo Tranquilli <redsun82@github.com>
Date: Thu, 10 Nov 2022 10:37:19 +0100
Subject: [PATCH 0155/1420] Swift: cleanup orphaned test files

---
 .../UnresolvedElement.expected                |  1 -
 .../UnspecifiedElement.expected               |  9 -------
 .../UnspecifiedElement_getIndex.expected      |  0
 .../UnspecifiedElement_getParent.expected     |  9 -------
 .../IfConfigDecl_getClause.expected           |  3 ---
 ...duleDecl_getDefaultImportedModule.expected |  7 ------
 .../BridgeToObjCExpr/bridge_to_objc.swift     |  0
 .../generated/expr/BridgeToObjCExpr/objc.h    |  2 --
 .../OverloadedDeclRefExpr.expected            |  1 -
 ...eclRefExpr_getPossibleDeclaration.expected |  2 --
 .../OverloadedDeclRefExpr_getType.expected    |  0
 .../NestedArchetypeType.expected              |  4 ----
 .../NestedArchetypeType_getProtocol.expected  |  4 ----
 ...NestedArchetypeType_getSuperclass.expected |  2 --
 .../nested_archetypes.swift                   | 24 -------------------
 15 files changed, 68 deletions(-)
 delete mode 100644 swift/ql/test/extractor-tests/generated/UnresolvedElement/UnresolvedElement.expected
 delete mode 100644 swift/ql/test/extractor-tests/generated/UnspecifiedElement/UnspecifiedElement.expected
 delete mode 100644 swift/ql/test/extractor-tests/generated/UnspecifiedElement/UnspecifiedElement_getIndex.expected
 delete mode 100644 swift/ql/test/extractor-tests/generated/UnspecifiedElement/UnspecifiedElement_getParent.expected
 delete mode 100644 swift/ql/test/extractor-tests/generated/decl/IfConfigDecl/IfConfigDecl_getClause.expected
 delete mode 100644 swift/ql/test/extractor-tests/generated/decl/ModuleDecl/ModuleDecl_getDefaultImportedModule.expected
 delete mode 100644 swift/ql/test/extractor-tests/generated/expr/BridgeToObjCExpr/bridge_to_objc.swift
 delete mode 100644 swift/ql/test/extractor-tests/generated/expr/BridgeToObjCExpr/objc.h
 delete mode 100644 swift/ql/test/extractor-tests/generated/expr/OverloadedDeclRefExpr/OverloadedDeclRefExpr.expected
 delete mode 100644 swift/ql/test/extractor-tests/generated/expr/OverloadedDeclRefExpr/OverloadedDeclRefExpr_getPossibleDeclaration.expected
 delete mode 100644 swift/ql/test/extractor-tests/generated/expr/OverloadedDeclRefExpr/OverloadedDeclRefExpr_getType.expected
 delete mode 100644 swift/ql/test/extractor-tests/generated/type/NestedArchetypeType/NestedArchetypeType.expected
 delete mode 100644 swift/ql/test/extractor-tests/generated/type/NestedArchetypeType/NestedArchetypeType_getProtocol.expected
 delete mode 100644 swift/ql/test/extractor-tests/generated/type/NestedArchetypeType/NestedArchetypeType_getSuperclass.expected
 delete mode 100644 swift/ql/test/extractor-tests/generated/type/NestedArchetypeType/nested_archetypes.swift

diff --git a/swift/ql/test/extractor-tests/generated/UnresolvedElement/UnresolvedElement.expected b/swift/ql/test/extractor-tests/generated/UnresolvedElement/UnresolvedElement.expected
deleted file mode 100644
index c777fe0ebb5..00000000000
--- a/swift/ql/test/extractor-tests/generated/UnresolvedElement/UnresolvedElement.expected
+++ /dev/null
@@ -1 +0,0 @@
-| unresolved.swift:5:1:5:14 | UnresolvedSpecializeExpr | UnresolvedSpecializeExpr |
diff --git a/swift/ql/test/extractor-tests/generated/UnspecifiedElement/UnspecifiedElement.expected b/swift/ql/test/extractor-tests/generated/UnspecifiedElement/UnspecifiedElement.expected
deleted file mode 100644
index 25fac0d1236..00000000000
--- a/swift/ql/test/extractor-tests/generated/UnspecifiedElement/UnspecifiedElement.expected
+++ /dev/null
@@ -1,9 +0,0 @@
-| wrong.swift:3:1:3:23 | missing extended_type_decl from ExtensionDecl | getProperty: | extended_type_decl | getError: | element was unspecified by the extractor |
-| wrong.swift:9:9:9:9 | missing fallthrough_dest from FallthroughStmt | getProperty: | fallthrough_dest | getError: | element was unspecified by the extractor |
-| wrong.swift:9:9:9:9 | missing fallthrough_source from FallthroughStmt | getProperty: | fallthrough_source | getError: | element was unspecified by the extractor |
-| wrong.swift:12:18:12:21 | missing element from EnumElementPattern | getProperty: | element | getError: | element was unspecified by the extractor |
-| wrong.swift:14:18:14:26 | missing element from EnumElementPattern | getProperty: | element | getError: | element was unspecified by the extractor |
-| wrong.swift:19:18:19:19 | missing element from EnumElementPattern | getProperty: | element | getError: | element was unspecified by the extractor |
-| wrong.swift:22:13:22:13 | missing fallthrough_dest from FallthroughStmt | getProperty: | fallthrough_dest | getError: | element was unspecified by the extractor |
-| wrong.swift:22:13:22:13 | missing fallthrough_source from FallthroughStmt | getProperty: | fallthrough_source | getError: | element was unspecified by the extractor |
-| wrong.swift:26:18:26:19 | missing element from EnumElementPattern | getProperty: | element | getError: | element was unspecified by the extractor |
diff --git a/swift/ql/test/extractor-tests/generated/UnspecifiedElement/UnspecifiedElement_getIndex.expected b/swift/ql/test/extractor-tests/generated/UnspecifiedElement/UnspecifiedElement_getIndex.expected
deleted file mode 100644
index e69de29bb2d..00000000000
diff --git a/swift/ql/test/extractor-tests/generated/UnspecifiedElement/UnspecifiedElement_getParent.expected b/swift/ql/test/extractor-tests/generated/UnspecifiedElement/UnspecifiedElement_getParent.expected
deleted file mode 100644
index 870a99df44f..00000000000
--- a/swift/ql/test/extractor-tests/generated/UnspecifiedElement/UnspecifiedElement_getParent.expected
+++ /dev/null
@@ -1,9 +0,0 @@
-| wrong.swift:3:1:3:23 | missing extended_type_decl from ExtensionDecl | extension |
-| wrong.swift:9:9:9:9 | missing fallthrough_dest from FallthroughStmt | fallthrough |
-| wrong.swift:9:9:9:9 | missing fallthrough_source from FallthroughStmt | fallthrough |
-| wrong.swift:12:18:12:21 | missing element from EnumElementPattern | (no string representation) |
-| wrong.swift:14:18:14:26 | missing element from EnumElementPattern | (no string representation) |
-| wrong.swift:19:18:19:19 | missing element from EnumElementPattern | (no string representation) |
-| wrong.swift:22:13:22:13 | missing fallthrough_dest from FallthroughStmt | fallthrough |
-| wrong.swift:22:13:22:13 | missing fallthrough_source from FallthroughStmt | fallthrough |
-| wrong.swift:26:18:26:19 | missing element from EnumElementPattern | (no string representation) |
diff --git a/swift/ql/test/extractor-tests/generated/decl/IfConfigDecl/IfConfigDecl_getClause.expected b/swift/ql/test/extractor-tests/generated/decl/IfConfigDecl/IfConfigDecl_getClause.expected
deleted file mode 100644
index d90ba458397..00000000000
--- a/swift/ql/test/extractor-tests/generated/decl/IfConfigDecl/IfConfigDecl_getClause.expected
+++ /dev/null
@@ -1,3 +0,0 @@
-| if_config.swift:1:1:10:1 | #if ... | 0 | if_config.swift:1:1:1:1 | IfConfigClause |
-| if_config.swift:1:1:10:1 | #if ... | 1 | if_config.swift:4:1:4:1 | IfConfigClause |
-| if_config.swift:1:1:10:1 | #if ... | 2 | if_config.swift:7:1:7:1 | IfConfigClause |
diff --git a/swift/ql/test/extractor-tests/generated/decl/ModuleDecl/ModuleDecl_getDefaultImportedModule.expected b/swift/ql/test/extractor-tests/generated/decl/ModuleDecl/ModuleDecl_getDefaultImportedModule.expected
deleted file mode 100644
index 7e29a9ce479..00000000000
--- a/swift/ql/test/extractor-tests/generated/decl/ModuleDecl/ModuleDecl_getDefaultImportedModule.expected
+++ /dev/null
@@ -1,7 +0,0 @@
-| file://:0:0:0:0 | Foo | 0 | file://:0:0:0:0 | Swift |
-| file://:0:0:0:0 | Foo | 1 | file://:0:0:0:0 | _Concurrency |
-| file://:0:0:0:0 | Foo | 2 | file://:0:0:0:0 | SwiftOnoneSupport |
-| file://:0:0:0:0 | __ObjC | 0 | file://:0:0:0:0 | Swift |
-| file://:0:0:0:0 | default_module_name | 0 | file://:0:0:0:0 | Swift |
-| file://:0:0:0:0 | default_module_name | 1 | file://:0:0:0:0 | _Concurrency |
-| file://:0:0:0:0 | default_module_name | 2 | file://:0:0:0:0 | SwiftOnoneSupport |
diff --git a/swift/ql/test/extractor-tests/generated/expr/BridgeToObjCExpr/bridge_to_objc.swift b/swift/ql/test/extractor-tests/generated/expr/BridgeToObjCExpr/bridge_to_objc.swift
deleted file mode 100644
index e69de29bb2d..00000000000
diff --git a/swift/ql/test/extractor-tests/generated/expr/BridgeToObjCExpr/objc.h b/swift/ql/test/extractor-tests/generated/expr/BridgeToObjCExpr/objc.h
deleted file mode 100644
index 588ee87cfcd..00000000000
--- a/swift/ql/test/extractor-tests/generated/expr/BridgeToObjCExpr/objc.h
+++ /dev/null
@@ -1,2 +0,0 @@
-@interface MyClass : NSObject
-@property int foo @end
diff --git a/swift/ql/test/extractor-tests/generated/expr/OverloadedDeclRefExpr/OverloadedDeclRefExpr.expected b/swift/ql/test/extractor-tests/generated/expr/OverloadedDeclRefExpr/OverloadedDeclRefExpr.expected
deleted file mode 100644
index 055ecc345f7..00000000000
--- a/swift/ql/test/extractor-tests/generated/expr/OverloadedDeclRefExpr/OverloadedDeclRefExpr.expected
+++ /dev/null
@@ -1 +0,0 @@
-| overloaded.swift:6:5:6:5 | OverloadedDeclRefExpr |
diff --git a/swift/ql/test/extractor-tests/generated/expr/OverloadedDeclRefExpr/OverloadedDeclRefExpr_getPossibleDeclaration.expected b/swift/ql/test/extractor-tests/generated/expr/OverloadedDeclRefExpr/OverloadedDeclRefExpr_getPossibleDeclaration.expected
deleted file mode 100644
index a78a3a4bfeb..00000000000
--- a/swift/ql/test/extractor-tests/generated/expr/OverloadedDeclRefExpr/OverloadedDeclRefExpr_getPossibleDeclaration.expected
+++ /dev/null
@@ -1,2 +0,0 @@
-| overloaded.swift:6:5:6:5 | OverloadedDeclRefExpr | 0 | overloaded.swift:3:1:3:13 | foo() |
-| overloaded.swift:6:5:6:5 | OverloadedDeclRefExpr | 1 | overloaded.swift:4:1:4:19 | foo(_:) |
diff --git a/swift/ql/test/extractor-tests/generated/expr/OverloadedDeclRefExpr/OverloadedDeclRefExpr_getType.expected b/swift/ql/test/extractor-tests/generated/expr/OverloadedDeclRefExpr/OverloadedDeclRefExpr_getType.expected
deleted file mode 100644
index e69de29bb2d..00000000000
diff --git a/swift/ql/test/extractor-tests/generated/type/NestedArchetypeType/NestedArchetypeType.expected b/swift/ql/test/extractor-tests/generated/type/NestedArchetypeType/NestedArchetypeType.expected
deleted file mode 100644
index 0575e43769c..00000000000
--- a/swift/ql/test/extractor-tests/generated/type/NestedArchetypeType/NestedArchetypeType.expected
+++ /dev/null
@@ -1,4 +0,0 @@
-| Impl1.Associated | getName: | Impl1.Associated | getCanonicalType: | Impl1.Associated | getInterfaceType: | Impl1.Associated | getParent: | Impl1 | getAssociatedTypeDeclaration: | nested_archetypes.swift:2:5:2:20 | Associated |
-| Impl2.AssociatedWithProtocols | getName: | Impl2.AssociatedWithProtocols | getCanonicalType: | Impl2.AssociatedWithProtocols | getInterfaceType: | Impl2.AssociatedWithProtocols | getParent: | Impl2 | getAssociatedTypeDeclaration: | nested_archetypes.swift:6:5:6:57 | AssociatedWithProtocols |
-| Impl3.AssociatedWithSuperclass | getName: | Impl3.AssociatedWithSuperclass | getCanonicalType: | Impl3.AssociatedWithSuperclass | getInterfaceType: | Impl3.AssociatedWithSuperclass | getParent: | Impl3 | getAssociatedTypeDeclaration: | nested_archetypes.swift:12:5:12:47 | AssociatedWithSuperclass |
-| Impl4.AssociatedWithSuperclassAndProtocols | getName: | Impl4.AssociatedWithSuperclassAndProtocols | getCanonicalType: | Impl4.AssociatedWithSuperclassAndProtocols | getInterfaceType: | Impl4.AssociatedWithSuperclassAndProtocols | getParent: | Impl4 | getAssociatedTypeDeclaration: | nested_archetypes.swift:16:5:16:73 | AssociatedWithSuperclassAndProtocols |
diff --git a/swift/ql/test/extractor-tests/generated/type/NestedArchetypeType/NestedArchetypeType_getProtocol.expected b/swift/ql/test/extractor-tests/generated/type/NestedArchetypeType/NestedArchetypeType_getProtocol.expected
deleted file mode 100644
index 54fc57b3876..00000000000
--- a/swift/ql/test/extractor-tests/generated/type/NestedArchetypeType/NestedArchetypeType_getProtocol.expected
+++ /dev/null
@@ -1,4 +0,0 @@
-| Impl2.AssociatedWithProtocols | 0 | file://:0:0:0:0 | Equatable |
-| Impl2.AssociatedWithProtocols | 1 | nested_archetypes.swift:1:1:3:1 | P1 |
-| Impl4.AssociatedWithSuperclassAndProtocols | 0 | file://:0:0:0:0 | Equatable |
-| Impl4.AssociatedWithSuperclassAndProtocols | 1 | nested_archetypes.swift:1:1:3:1 | P1 |
diff --git a/swift/ql/test/extractor-tests/generated/type/NestedArchetypeType/NestedArchetypeType_getSuperclass.expected b/swift/ql/test/extractor-tests/generated/type/NestedArchetypeType/NestedArchetypeType_getSuperclass.expected
deleted file mode 100644
index 9e4e38b0920..00000000000
--- a/swift/ql/test/extractor-tests/generated/type/NestedArchetypeType/NestedArchetypeType_getSuperclass.expected
+++ /dev/null
@@ -1,2 +0,0 @@
-| Impl3.AssociatedWithSuperclass | S |
-| Impl4.AssociatedWithSuperclassAndProtocols | S |
diff --git a/swift/ql/test/extractor-tests/generated/type/NestedArchetypeType/nested_archetypes.swift b/swift/ql/test/extractor-tests/generated/type/NestedArchetypeType/nested_archetypes.swift
deleted file mode 100644
index f84af17e0ef..00000000000
--- a/swift/ql/test/extractor-tests/generated/type/NestedArchetypeType/nested_archetypes.swift
+++ /dev/null
@@ -1,24 +0,0 @@
-protocol P1 {
-    associatedtype Associated
-}
-
-protocol P2 {
-    associatedtype AssociatedWithProtocols : Equatable, P1
-}
-
-class S {}
-
-protocol P3 {
-    associatedtype AssociatedWithSuperclass : S
-}
-
-protocol P4 {
-    associatedtype AssociatedWithSuperclassAndProtocols : S, Equatable, P1
-}
-
-class A<Impl1: P1, Impl2: P2, Impl3: P3, Impl4: P4> {
-    func foo(_: Impl1.Associated,
-             _: Impl2.AssociatedWithProtocols,
-             _: Impl3.AssociatedWithSuperclass,
-             _: Impl4.AssociatedWithSuperclassAndProtocols) {}
-}

From b91b3148a4854bf8a47169f42fce044c027fdcc2 Mon Sep 17 00:00:00 2001
From: Nick Rolfe <nickrolfe@github.com>
Date: Thu, 10 Nov 2022 15:26:42 +0000
Subject: [PATCH 0156/1420] Ruby: add missing qldoc comments for SQL injection
 query

---
 .../ql/lib/codeql/ruby/security/SqlInjectionCustomizations.qll | 3 +++
 ruby/ql/lib/codeql/ruby/security/SqlInjectionQuery.qll         | 3 +++
 2 files changed, 6 insertions(+)

diff --git a/ruby/ql/lib/codeql/ruby/security/SqlInjectionCustomizations.qll b/ruby/ql/lib/codeql/ruby/security/SqlInjectionCustomizations.qll
index 175d0935fad..66d3b0d4afd 100644
--- a/ruby/ql/lib/codeql/ruby/security/SqlInjectionCustomizations.qll
+++ b/ruby/ql/lib/codeql/ruby/security/SqlInjectionCustomizations.qll
@@ -13,10 +13,13 @@ private import codeql.ruby.dataflow.RemoteFlowSources
  * vulnerabilities, as well as extension points for adding your own.
  */
 module SqlInjection {
+  /** A data flow source for SQL injection vulnerabilities. */
   abstract class Source extends DataFlow::Node { }
 
+  /** A data flow sink for SQL injection vulnerabilities. */
   abstract class Sink extends DataFlow::Node { }
 
+  /** A sanitizer for SQL injection vulnerabilities. */
   abstract class Sanitizer extends DataFlow::Node { }
 
   /**
diff --git a/ruby/ql/lib/codeql/ruby/security/SqlInjectionQuery.qll b/ruby/ql/lib/codeql/ruby/security/SqlInjectionQuery.qll
index e2dd327ccbd..f74e919ffe5 100644
--- a/ruby/ql/lib/codeql/ruby/security/SqlInjectionQuery.qll
+++ b/ruby/ql/lib/codeql/ruby/security/SqlInjectionQuery.qll
@@ -7,6 +7,9 @@ private import codeql.ruby.DataFlow
 private import codeql.ruby.TaintTracking
 import SqlInjectionCustomizations::SqlInjection
 
+/**
+ * A taint-tracking configuration for detecting SQL injection vulnerabilities.
+ */
 class Configuration extends TaintTracking::Configuration {
   Configuration() { this = "SqlInjectionConfiguration" }
 

From d97682991df5a8ac0b5b72c654fe5e4ea8cea767 Mon Sep 17 00:00:00 2001
From: Geoffrey White <40627776+geoffw0@users.noreply.github.com>
Date: Tue, 1 Nov 2022 15:35:50 +0000
Subject: [PATCH 0157/1420] Swift: Add Alamofire sink for
 cpp/cleartext-transmission.

---
 .../codeql/swift/elements/expr/ApplyExpr.qll  |  8 ++++++++
 .../Security/CWE-311/CleartextTransmission.ql | 19 +++++++++++++++++++
 .../CWE-311/CleartextTransmission.expected    | 12 ++++++++++++
 .../Security/CWE-311/testAlamofire.swift      |  6 +++---
 4 files changed, 42 insertions(+), 3 deletions(-)

diff --git a/swift/ql/lib/codeql/swift/elements/expr/ApplyExpr.qll b/swift/ql/lib/codeql/swift/elements/expr/ApplyExpr.qll
index 14bc6302c2b..cf11158df92 100644
--- a/swift/ql/lib/codeql/swift/elements/expr/ApplyExpr.qll
+++ b/swift/ql/lib/codeql/swift/elements/expr/ApplyExpr.qll
@@ -19,6 +19,14 @@ class ApplyExpr extends Generated::ApplyExpr {
   /** Gets the method qualifier, if this is applying a method */
   Expr getQualifier() { none() }
 
+  /**
+   * Gets the argument of this `ApplyExpr` called `label` (if any).
+   */
+  final Argument getArgumentWithLabel(string label) {
+    result = getAnArgument() and
+    result.getLabel() = label
+  }
+
   override string toString() {
     result = "call to " + this.getStaticTarget().toString()
     or
diff --git a/swift/ql/src/queries/Security/CWE-311/CleartextTransmission.ql b/swift/ql/src/queries/Security/CWE-311/CleartextTransmission.ql
index 92977f5cfd5..21c1c538462 100644
--- a/swift/ql/src/queries/Security/CWE-311/CleartextTransmission.ql
+++ b/swift/ql/src/queries/Security/CWE-311/CleartextTransmission.ql
@@ -54,6 +54,25 @@ class Url extends Transmitted {
   }
 }
 
+/**
+ * An `Expr` that transmitted through the Alamofire library.
+ */
+class AlamofireTransmitted extends Transmitted {
+  AlamofireTransmitted() {
+    // sinks are the first argument containing the URL, and the `parameters`
+    // and `headers` arguments to appropriate methods of `Session`.
+    exists(CallExpr call, string fName |
+      call.getStaticTarget().(MethodDecl).hasQualifiedName("Session", fName) and
+      fName.regexpMatch("(request|streamRequest|download)\\(.*") and
+      (
+        call.getArgument(0).getExpr() = this or
+        call.getArgumentWithLabel("parameters").getExpr() = this or
+        call.getArgumentWithLabel("headers").getExpr() = this
+      )
+    )
+  }
+}
+
 /**
  * A taint configuration from sensitive information to expressions that are
  * transmitted over a network.
diff --git a/swift/ql/test/query-tests/Security/CWE-311/CleartextTransmission.expected b/swift/ql/test/query-tests/Security/CWE-311/CleartextTransmission.expected
index de02d0db461..d8328252a1c 100644
--- a/swift/ql/test/query-tests/Security/CWE-311/CleartextTransmission.expected
+++ b/swift/ql/test/query-tests/Security/CWE-311/CleartextTransmission.expected
@@ -1,4 +1,7 @@
 edges
+| testAlamofire.swift:150:45:150:45 | password :  | testAlamofire.swift:150:13:150:45 | ... .+(_:_:) ... |
+| testAlamofire.swift:152:51:152:51 | password :  | testAlamofire.swift:152:19:152:51 | ... .+(_:_:) ... |
+| testAlamofire.swift:154:38:154:38 | email :  | testAlamofire.swift:154:14:154:46 | ... .+(_:_:) ... |
 | testSend.swift:41:10:41:18 | data :  | testSend.swift:41:45:41:45 | data :  |
 | testSend.swift:45:13:45:13 | password :  | testSend.swift:52:27:52:27 | str1 |
 | testSend.swift:46:13:46:13 | password :  | testSend.swift:53:27:53:27 | str2 |
@@ -8,6 +11,12 @@ edges
 | testURL.swift:13:54:13:54 | passwd :  | testURL.swift:13:22:13:54 | ... .+(_:_:) ... |
 | testURL.swift:16:55:16:55 | credit_card_no :  | testURL.swift:16:22:16:55 | ... .+(_:_:) ... |
 nodes
+| testAlamofire.swift:150:13:150:45 | ... .+(_:_:) ... | semmle.label | ... .+(_:_:) ... |
+| testAlamofire.swift:150:45:150:45 | password :  | semmle.label | password :  |
+| testAlamofire.swift:152:19:152:51 | ... .+(_:_:) ... | semmle.label | ... .+(_:_:) ... |
+| testAlamofire.swift:152:51:152:51 | password :  | semmle.label | password :  |
+| testAlamofire.swift:154:14:154:46 | ... .+(_:_:) ... | semmle.label | ... .+(_:_:) ... |
+| testAlamofire.swift:154:38:154:38 | email :  | semmle.label | email :  |
 | testSend.swift:29:19:29:19 | passwordPlain | semmle.label | passwordPlain |
 | testSend.swift:41:10:41:18 | data :  | semmle.label | data :  |
 | testSend.swift:41:45:41:45 | data :  | semmle.label | data :  |
@@ -26,6 +35,9 @@ nodes
 subpaths
 | testSend.swift:47:17:47:17 | password :  | testSend.swift:41:10:41:18 | data :  | testSend.swift:41:45:41:45 | data :  | testSend.swift:47:13:47:25 | call to pad(_:) :  |
 #select
+| testAlamofire.swift:150:13:150:45 | ... .+(_:_:) ... | testAlamofire.swift:150:45:150:45 | password :  | testAlamofire.swift:150:13:150:45 | ... .+(_:_:) ... | This operation transmits '... .+(_:_:) ...', which may contain unencrypted sensitive data from $@. | testAlamofire.swift:150:45:150:45 | password :  | password |
+| testAlamofire.swift:152:19:152:51 | ... .+(_:_:) ... | testAlamofire.swift:152:51:152:51 | password :  | testAlamofire.swift:152:19:152:51 | ... .+(_:_:) ... | This operation transmits '... .+(_:_:) ...', which may contain unencrypted sensitive data from $@. | testAlamofire.swift:152:51:152:51 | password :  | password |
+| testAlamofire.swift:154:14:154:46 | ... .+(_:_:) ... | testAlamofire.swift:154:38:154:38 | email :  | testAlamofire.swift:154:14:154:46 | ... .+(_:_:) ... | This operation transmits '... .+(_:_:) ...', which may contain unencrypted sensitive data from $@. | testAlamofire.swift:154:38:154:38 | email :  | email |
 | testSend.swift:29:19:29:19 | passwordPlain | testSend.swift:29:19:29:19 | passwordPlain | testSend.swift:29:19:29:19 | passwordPlain | This operation transmits 'passwordPlain', which may contain unencrypted sensitive data from $@. | testSend.swift:29:19:29:19 | passwordPlain | passwordPlain |
 | testSend.swift:52:27:52:27 | str1 | testSend.swift:45:13:45:13 | password :  | testSend.swift:52:27:52:27 | str1 | This operation transmits 'str1', which may contain unencrypted sensitive data from $@. | testSend.swift:45:13:45:13 | password :  | password |
 | testSend.swift:53:27:53:27 | str2 | testSend.swift:46:13:46:13 | password :  | testSend.swift:53:27:53:27 | str2 | This operation transmits 'str2', which may contain unencrypted sensitive data from $@. | testSend.swift:46:13:46:13 | password :  | password |
diff --git a/swift/ql/test/query-tests/Security/CWE-311/testAlamofire.swift b/swift/ql/test/query-tests/Security/CWE-311/testAlamofire.swift
index 9056eebdbf1..3a50c2cf249 100644
--- a/swift/ql/test/query-tests/Security/CWE-311/testAlamofire.swift
+++ b/swift/ql/test/query-tests/Security/CWE-311/testAlamofire.swift
@@ -147,11 +147,11 @@ struct MyEncodable: Encodable {
 func test1(username: String, password: String, email: String, harmless: String) {
 	// sensitive data in URL
 
-	AF.request("http://example.com/login?p=" + password) // BAD [NOT DETECTED]
+	AF.request("http://example.com/login?p=" + password) // BAD
 	AF.request("http://example.com/login?h=" + harmless) // GOOD (not sensitive)
-	AF.streamRequest("http://example.com/login?p=" + password) // BAD [NOT DETECTED]
+	AF.streamRequest("http://example.com/login?p=" + password) // BAD
 	AF.streamRequest("http://example.com/login?h=" + harmless) // GOOD (not sensitive)
-	AF.download("http://example.com/" + email + ".html") // BAD [NOT DETECTED]
+	AF.download("http://example.com/" + email + ".html") // BAD
 	AF.download("http://example.com/" + harmless + ".html") // GOOD (not sensitive)
 
 	// sensitive data in parameters

From 458fb3a4a278903259d7b8ce3b1d1b64202981d5 Mon Sep 17 00:00:00 2001
From: Paolo Tranquilli <redsun82@github.com>
Date: Thu, 10 Nov 2022 16:48:02 +0100
Subject: [PATCH 0158/1420] Swift: fix printing of unextracted entities

This was still printing explicitly ignored classes.
---
 swift/extractor/print_unextracted/main.cpp   | 30 ++++++++++----------
 swift/extractor/translators/TranslatorBase.h | 30 +++++++++++++++++---
 2 files changed, 41 insertions(+), 19 deletions(-)

diff --git a/swift/extractor/print_unextracted/main.cpp b/swift/extractor/print_unextracted/main.cpp
index 9496abd752e..09832ce992e 100644
--- a/swift/extractor/print_unextracted/main.cpp
+++ b/swift/extractor/print_unextracted/main.cpp
@@ -1,4 +1,6 @@
 #include <iostream>
+#include <vector>
+#include <map>
 
 #include "swift/extractor/translators/DeclTranslator.h"
 #include "swift/extractor/translators/ExprTranslator.h"
@@ -8,37 +10,35 @@
 
 using namespace codeql;
 
-#define CHECK_CLASS(KIND, CLASS, PARENT)                             \
-  if (!detail::HasTranslate##CLASS##KIND<KIND##Translator>::value && \
-      !detail::HasTranslate##PARENT<KIND##Translator>::value) {      \
-    std::cout << "  " #CLASS #KIND "\n";                             \
-  }
-
 int main() {
-  std::cout << "Unextracted Decls:\n";
+  std::map<const char*, std::vector<const char*>> unextracted;
+
+#define CHECK_CLASS(KIND, CLASS, PARENT)                                                \
+  if (KIND##Translator::getPolicyFor##CLASS##KIND() == TranslatorPolicy::emitUnknown) { \
+    unextracted[#KIND].push_back(#CLASS #KIND);                                         \
+  }
 
 #define DECL(CLASS, PARENT) CHECK_CLASS(Decl, CLASS, PARENT)
 #include "swift/AST/DeclNodes.def"
 
-  std::cout << "\nUnextracted Stmts:\n";
-
 #define STMT(CLASS, PARENT) CHECK_CLASS(Stmt, CLASS, PARENT)
 #include "swift/AST/StmtNodes.def"
 
-  std::cout << "\nUnextracted Exprs:\n";
-
 #define EXPR(CLASS, PARENT) CHECK_CLASS(Expr, CLASS, PARENT)
 #include "swift/AST/ExprNodes.def"
 
-  std::cout << "\nUnextracted Patterns:\n";
-
 #define PATTERN(CLASS, PARENT) CHECK_CLASS(Pattern, CLASS, PARENT)
 #include "swift/AST/PatternNodes.def"
 
-  std::cout << "\nUnextracted Types:\n";
-
 #define TYPE(CLASS, PARENT) CHECK_CLASS(Type, CLASS, PARENT)
 #include "swift/AST/TypeNodes.def"
 
+  for (const auto& [kind, classes] : unextracted) {
+    std::cout << "Unextracted " << kind << " subclasses:\n";
+    for (auto cls : classes) {
+      std::cout << "  " << cls << '\n';
+    }
+    std::cout << '\n';
+  }
   return 0;
 }
diff --git a/swift/extractor/translators/TranslatorBase.h b/swift/extractor/translators/TranslatorBase.h
index 0f08442a865..0f7d4cacd3d 100644
--- a/swift/extractor/translators/TranslatorBase.h
+++ b/swift/extractor/translators/TranslatorBase.h
@@ -58,6 +58,13 @@ DEFINE_TRANSLATE_CHECKER(TypeRepr, , )
 #include "swift/AST/TypeReprNodes.def"
 }  // namespace detail
 
+enum class TranslatorPolicy {
+  ignore,
+  translate,
+  translateParent,
+  emitUnknown,
+};
+
 // we want to override the default swift visitor behaviour of chaining calls to immediate
 // superclasses by default and instead provide our own TBD default (using the exact type).
 // Moreover, if the implementation class has translate##CLASS##KIND (that uses generated C++
@@ -66,15 +73,30 @@ DEFINE_TRANSLATE_CHECKER(TypeRepr, , )
 // A special case is for explicitly ignored classes marked with void, which we should never
 // encounter.
 #define DEFINE_VISIT(KIND, CLASS, PARENT)                                            \
-  void visit##CLASS##KIND(swift::CLASS##KIND* e) {                                   \
+ public:                                                                             \
+  static constexpr TranslatorPolicy getPolicyFor##CLASS##KIND() {                    \
     if constexpr (std::is_same_v<CLASS##KIND##Tag, void>) {                          \
+      return TranslatorPolicy::ignore;                                               \
+    } else if constexpr (detail::HasTranslate##CLASS##KIND<CrtpSubclass>::value) {   \
+      return TranslatorPolicy::translate;                                            \
+    } else if constexpr (detail::HasTranslate##PARENT<CrtpSubclass>::value) {        \
+      return TranslatorPolicy::translateParent;                                      \
+    } else {                                                                         \
+      return TranslatorPolicy::emitUnknown;                                          \
+    }                                                                                \
+  }                                                                                  \
+                                                                                     \
+ private:                                                                            \
+  void visit##CLASS##KIND(swift::CLASS##KIND* e) {                                   \
+    constexpr auto policy = getPolicyFor##CLASS##KIND();                             \
+    if constexpr (policy == TranslatorPolicy::ignore) {                              \
       std::cerr << "Unexpected " #CLASS #KIND "\n";                                  \
       return;                                                                        \
-    } else if constexpr (detail::HasTranslate##CLASS##KIND<CrtpSubclass>::value) {   \
+    } else if constexpr (policy == TranslatorPolicy::translate) {                    \
       dispatcher.emit(static_cast<CrtpSubclass*>(this)->translate##CLASS##KIND(*e)); \
-    } else if constexpr (detail::HasTranslate##PARENT<CrtpSubclass>::value) {        \
+    } else if constexpr (policy == TranslatorPolicy::translateParent) {              \
       dispatcher.emit(static_cast<CrtpSubclass*>(this)->translate##PARENT(*e));      \
-    } else {                                                                         \
+    } else if constexpr (policy == TranslatorPolicy::emitUnknown) {                  \
       dispatcher.emitUnknown(e);                                                     \
     }                                                                                \
   }

From 887d1893e755c38c1f834b5e45126b707fb1c3e6 Mon Sep 17 00:00:00 2001
From: Geoffrey White <40627776+geoffw0@users.noreply.github.com>
Date: Thu, 10 Nov 2022 15:51:02 +0000
Subject: [PATCH 0159/1420] Swift: Make ql-for-ql happy.

---
 swift/ql/lib/codeql/swift/elements/expr/ApplyExpr.qll | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/swift/ql/lib/codeql/swift/elements/expr/ApplyExpr.qll b/swift/ql/lib/codeql/swift/elements/expr/ApplyExpr.qll
index cf11158df92..5c82dc32afa 100644
--- a/swift/ql/lib/codeql/swift/elements/expr/ApplyExpr.qll
+++ b/swift/ql/lib/codeql/swift/elements/expr/ApplyExpr.qll
@@ -23,7 +23,7 @@ class ApplyExpr extends Generated::ApplyExpr {
    * Gets the argument of this `ApplyExpr` called `label` (if any).
    */
   final Argument getArgumentWithLabel(string label) {
-    result = getAnArgument() and
+    result = this.getAnArgument() and
     result.getLabel() = label
   }
 

From 20f76e50c3e2582f87c3b6f77c5de386919a12ae Mon Sep 17 00:00:00 2001
From: Nick Rolfe <nickrolfe@github.com>
Date: Thu, 10 Nov 2022 15:53:04 +0000
Subject: [PATCH 0160/1420] Ruby: actually call the isPublic() predicate I
 added

---
 ruby/ql/lib/codeql/ruby/frameworks/ActionCable.qll | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/ruby/ql/lib/codeql/ruby/frameworks/ActionCable.qll b/ruby/ql/lib/codeql/ruby/frameworks/ActionCable.qll
index 2da79661c21..a586abc977c 100644
--- a/ruby/ql/lib/codeql/ruby/frameworks/ActionCable.qll
+++ b/ruby/ql/lib/codeql/ruby/frameworks/ActionCable.qll
@@ -48,7 +48,7 @@ module ActionCable {
         // database
         not m = getActionCableChannelBase().asModule().getAnInstanceMethod() and
         // and as long as it's public
-        m.asCallableAstNode().isPublic() and
+        m.isPublic() and
         // and is not called `subscribed` or `unsubscribed`.
         not m.getMethodName() = ["subscribed", "unsubscribed"]
       |

From 04d042308b17e1e14f2308b3481b236ecb1ed7f6 Mon Sep 17 00:00:00 2001
From: Paolo Tranquilli <redsun82@github.com>
Date: Thu, 10 Nov 2022 17:05:03 +0100
Subject: [PATCH 0161/1420] Swift: fix QL compilation

---
 swift/ql/lib/codeql/swift/elements/UnspecifiedElement.qll | 1 +
 1 file changed, 1 insertion(+)

diff --git a/swift/ql/lib/codeql/swift/elements/UnspecifiedElement.qll b/swift/ql/lib/codeql/swift/elements/UnspecifiedElement.qll
index 7680fa7cca9..cbafea24532 100644
--- a/swift/ql/lib/codeql/swift/elements/UnspecifiedElement.qll
+++ b/swift/ql/lib/codeql/swift/elements/UnspecifiedElement.qll
@@ -1,5 +1,6 @@
 private import codeql.swift.generated.UnspecifiedElement
 import codeql.swift.elements.Location
+import codeql.swift.elements.Locatable
 
 class UnspecifiedElement extends Generated::UnspecifiedElement {
   override string toString() {

From 88dc65cb3c0eac7cfdafd74fd50d3159b938840d Mon Sep 17 00:00:00 2001
From: Paolo Tranquilli <redsun82@github.com>
Date: Thu, 10 Nov 2022 17:35:32 +0100
Subject: [PATCH 0162/1420] Swift: extract or ignore last remaining types

---
 swift/extractor/infra/SwiftTagTraits.h        |  3 ++
 .../extractor/translators/TypeTranslator.cpp  | 16 ++++++
 swift/extractor/translators/TypeTranslator.h  |  4 ++
 swift/ql/lib/codeql/swift/elements.qll        |  2 -
 .../elements/type/SequenceArchetypeType.qll   |  4 --
 .../type/SequenceArchetypeTypeConstructor.qll |  4 --
 .../swift/elements/type/TypeVariableType.qll  |  4 --
 .../type/TypeVariableTypeConstructor.qll      |  4 --
 .../codeql/swift/generated/ParentChild.qll    | 35 -------------
 swift/ql/lib/codeql/swift/generated/Raw.qll   | 12 ++---
 swift/ql/lib/codeql/swift/generated/Synth.qll | 33 +-----------
 .../swift/generated/SynthConstructors.qll     |  2 -
 .../type/ParameterizedProtocolType.qll        | 52 +++++++++++++++++++
 .../generated/type/SequenceArchetypeType.qll  | 10 ----
 .../swift/generated/type/TypeVariableType.qll | 10 ----
 swift/ql/lib/swift.dbscheme                   | 25 +++++----
 swift/ql/test/TestUtils.qll                   |  2 +
 .../MISSING_SOURCE.txt                        |  4 --
 .../ParameterizedProtocolType.expected        |  1 +
 .../ParameterizedProtocolType.ql              | 12 +++++
 .../ParameterizedProtocolType_getArg.expected |  2 +
 .../ParameterizedProtocolType_getArg.ql       |  7 +++
 .../parametrized_protocol_type.swift          |  6 +++
 .../SequenceArchetypeType/MISSING_SOURCE.txt  |  4 --
 .../type/TypeVariableType/MISSING_SOURCE.txt  |  4 --
 swift/schema.py                               | 14 ++---
 26 files changed, 132 insertions(+), 144 deletions(-)
 delete mode 100644 swift/ql/lib/codeql/swift/elements/type/SequenceArchetypeType.qll
 delete mode 100644 swift/ql/lib/codeql/swift/elements/type/SequenceArchetypeTypeConstructor.qll
 delete mode 100644 swift/ql/lib/codeql/swift/elements/type/TypeVariableType.qll
 delete mode 100644 swift/ql/lib/codeql/swift/elements/type/TypeVariableTypeConstructor.qll
 delete mode 100644 swift/ql/lib/codeql/swift/generated/type/SequenceArchetypeType.qll
 delete mode 100644 swift/ql/lib/codeql/swift/generated/type/TypeVariableType.qll
 delete mode 100644 swift/ql/test/extractor-tests/generated/type/ParameterizedProtocolType/MISSING_SOURCE.txt
 create mode 100644 swift/ql/test/extractor-tests/generated/type/ParameterizedProtocolType/ParameterizedProtocolType.expected
 create mode 100644 swift/ql/test/extractor-tests/generated/type/ParameterizedProtocolType/ParameterizedProtocolType.ql
 create mode 100644 swift/ql/test/extractor-tests/generated/type/ParameterizedProtocolType/ParameterizedProtocolType_getArg.expected
 create mode 100644 swift/ql/test/extractor-tests/generated/type/ParameterizedProtocolType/ParameterizedProtocolType_getArg.ql
 create mode 100644 swift/ql/test/extractor-tests/generated/type/ParameterizedProtocolType/parametrized_protocol_type.swift
 delete mode 100644 swift/ql/test/extractor-tests/generated/type/SequenceArchetypeType/MISSING_SOURCE.txt
 delete mode 100644 swift/ql/test/extractor-tests/generated/type/TypeVariableType/MISSING_SOURCE.txt

diff --git a/swift/extractor/infra/SwiftTagTraits.h b/swift/extractor/infra/SwiftTagTraits.h
index 72be292f9c7..78b7bcc530e 100644
--- a/swift/extractor/infra/SwiftTagTraits.h
+++ b/swift/extractor/infra/SwiftTagTraits.h
@@ -25,6 +25,7 @@ using PackExprTag = void;
 using PackTypeTag = void;
 using ReifyPackExprTag = void;
 using PackExpansionTypeTag = void;
+using SequenceArchetypeTypeTag = void;
 // Placeholder types appear in ambiguous types but are anyway transformed to UnresolvedType
 using PlaceholderTypeTag = void;
 // SIL types that cannot really appear in the frontend run
@@ -32,6 +33,8 @@ using SILBlockStorageTypeTag = void;
 using SILBoxTypeTag = void;
 using SILFunctionTypeTag = void;
 using SILTokenTypeTag = void;
+// This is created during type checking and is only used for constraint checking
+using TypeVariableTypeTag = void;
 
 #define MAP_TYPE_TO_TAG(TYPE, TAG)    \
   template <>                         \
diff --git a/swift/extractor/translators/TypeTranslator.cpp b/swift/extractor/translators/TypeTranslator.cpp
index cb8e97415b3..f86aa7f72de 100644
--- a/swift/extractor/translators/TypeTranslator.cpp
+++ b/swift/extractor/translators/TypeTranslator.cpp
@@ -258,4 +258,20 @@ codeql::OpaqueTypeArchetypeType TypeTranslator::translateOpaqueTypeArchetypeType
   entry.declaration = dispatcher.fetchLabel(type.getDecl());
   return entry;
 }
+
+codeql::ErrorType TypeTranslator::translateErrorType(const swift::ErrorType& type) {
+  return createTypeEntry(type);
+}
+
+codeql::UnresolvedType TypeTranslator::translateUnresolvedType(const swift::UnresolvedType& type) {
+  return createTypeEntry(type);
+}
+
+codeql::ParameterizedProtocolType TypeTranslator::translateParameterizedProtocolType(
+    const swift::ParameterizedProtocolType& type) {
+  auto entry = createTypeEntry(type);
+  entry.base = dispatcher.fetchLabel(type.getBaseType());
+  entry.args = dispatcher.fetchRepeatedLabels(type.getArgs());
+  return entry;
+}
 }  // namespace codeql
diff --git a/swift/extractor/translators/TypeTranslator.h b/swift/extractor/translators/TypeTranslator.h
index 95ad6a8b6b9..40b9db04d49 100644
--- a/swift/extractor/translators/TypeTranslator.h
+++ b/swift/extractor/translators/TypeTranslator.h
@@ -71,6 +71,10 @@ class TypeTranslator : public TypeTranslatorBase<TypeTranslator> {
   codeql::ModuleType translateModuleType(const swift::ModuleType& type);
   codeql::OpaqueTypeArchetypeType translateOpaqueTypeArchetypeType(
       const swift::OpaqueTypeArchetypeType& type);
+  codeql::ErrorType translateErrorType(const swift::ErrorType& type);
+  codeql::UnresolvedType translateUnresolvedType(const swift::UnresolvedType& type);
+  codeql::ParameterizedProtocolType translateParameterizedProtocolType(
+      const swift::ParameterizedProtocolType& type);
 
  private:
   void fillType(const swift::TypeBase& type, codeql::Type& entry);
diff --git a/swift/ql/lib/codeql/swift/elements.qll b/swift/ql/lib/codeql/swift/elements.qll
index 085736fe713..1d925d597b4 100644
--- a/swift/ql/lib/codeql/swift/elements.qll
+++ b/swift/ql/lib/codeql/swift/elements.qll
@@ -263,7 +263,6 @@ import codeql.swift.elements.type.PrimaryArchetypeType
 import codeql.swift.elements.type.ProtocolCompositionType
 import codeql.swift.elements.type.ProtocolType
 import codeql.swift.elements.type.ReferenceStorageType
-import codeql.swift.elements.type.SequenceArchetypeType
 import codeql.swift.elements.type.StructType
 import codeql.swift.elements.type.SubstitutableType
 import codeql.swift.elements.type.SugarType
@@ -272,7 +271,6 @@ import codeql.swift.elements.type.TupleType
 import codeql.swift.elements.type.Type
 import codeql.swift.elements.type.TypeAliasType
 import codeql.swift.elements.type.TypeRepr
-import codeql.swift.elements.type.TypeVariableType
 import codeql.swift.elements.type.UnarySyntaxSugarType
 import codeql.swift.elements.type.UnboundGenericType
 import codeql.swift.elements.type.UnmanagedStorageType
diff --git a/swift/ql/lib/codeql/swift/elements/type/SequenceArchetypeType.qll b/swift/ql/lib/codeql/swift/elements/type/SequenceArchetypeType.qll
deleted file mode 100644
index be02ac063a1..00000000000
--- a/swift/ql/lib/codeql/swift/elements/type/SequenceArchetypeType.qll
+++ /dev/null
@@ -1,4 +0,0 @@
-// generated by codegen/codegen.py, remove this comment if you wish to edit this file
-private import codeql.swift.generated.type.SequenceArchetypeType
-
-class SequenceArchetypeType extends Generated::SequenceArchetypeType { }
diff --git a/swift/ql/lib/codeql/swift/elements/type/SequenceArchetypeTypeConstructor.qll b/swift/ql/lib/codeql/swift/elements/type/SequenceArchetypeTypeConstructor.qll
deleted file mode 100644
index 322836a71fc..00000000000
--- a/swift/ql/lib/codeql/swift/elements/type/SequenceArchetypeTypeConstructor.qll
+++ /dev/null
@@ -1,4 +0,0 @@
-// generated by codegen/codegen.py, remove this comment if you wish to edit this file
-private import codeql.swift.generated.Raw
-
-predicate constructSequenceArchetypeType(Raw::SequenceArchetypeType id) { any() }
diff --git a/swift/ql/lib/codeql/swift/elements/type/TypeVariableType.qll b/swift/ql/lib/codeql/swift/elements/type/TypeVariableType.qll
deleted file mode 100644
index 116d03f7877..00000000000
--- a/swift/ql/lib/codeql/swift/elements/type/TypeVariableType.qll
+++ /dev/null
@@ -1,4 +0,0 @@
-// generated by codegen/codegen.py, remove this comment if you wish to edit this file
-private import codeql.swift.generated.type.TypeVariableType
-
-class TypeVariableType extends Generated::TypeVariableType { }
diff --git a/swift/ql/lib/codeql/swift/elements/type/TypeVariableTypeConstructor.qll b/swift/ql/lib/codeql/swift/elements/type/TypeVariableTypeConstructor.qll
deleted file mode 100644
index cf01c8fe855..00000000000
--- a/swift/ql/lib/codeql/swift/elements/type/TypeVariableTypeConstructor.qll
+++ /dev/null
@@ -1,4 +0,0 @@
-// generated by codegen/codegen.py, remove this comment if you wish to edit this file
-private import codeql.swift.generated.Raw
-
-predicate constructTypeVariableType(Raw::TypeVariableType id) { any() }
diff --git a/swift/ql/lib/codeql/swift/generated/ParentChild.qll b/swift/ql/lib/codeql/swift/generated/ParentChild.qll
index b56253575e2..79b949743a1 100644
--- a/swift/ql/lib/codeql/swift/generated/ParentChild.qll
+++ b/swift/ql/lib/codeql/swift/generated/ParentChild.qll
@@ -3953,21 +3953,6 @@ private module Impl {
     )
   }
 
-  private Element getImmediateChildOfTypeVariableType(
-    TypeVariableType e, int index, string partialPredicateCall
-  ) {
-    exists(int b, int bType, int n |
-      b = 0 and
-      bType = b + 1 + max(int i | i = -1 or exists(getImmediateChildOfType(e, i, _)) | i) and
-      n = bType and
-      (
-        none()
-        or
-        result = getImmediateChildOfType(e, index - b, partialPredicateCall)
-      )
-    )
-  }
-
   private Element getImmediateChildOfUnresolvedType(
     UnresolvedType e, int index, string partialPredicateCall
   ) {
@@ -4522,22 +4507,6 @@ private module Impl {
     )
   }
 
-  private Element getImmediateChildOfSequenceArchetypeType(
-    SequenceArchetypeType e, int index, string partialPredicateCall
-  ) {
-    exists(int b, int bArchetypeType, int n |
-      b = 0 and
-      bArchetypeType =
-        b + 1 + max(int i | i = -1 or exists(getImmediateChildOfArchetypeType(e, i, _)) | i) and
-      n = bArchetypeType and
-      (
-        none()
-        or
-        result = getImmediateChildOfArchetypeType(e, index - b, partialPredicateCall)
-      )
-    )
-  }
-
   private Element getImmediateChildOfUnarySyntaxSugarType(
     UnarySyntaxSugarType e, int index, string partialPredicateCall
   ) {
@@ -5088,8 +5057,6 @@ private module Impl {
     or
     result = getImmediateChildOfTupleType(e, index, partialAccessor)
     or
-    result = getImmediateChildOfTypeVariableType(e, index, partialAccessor)
-    or
     result = getImmediateChildOfUnresolvedType(e, index, partialAccessor)
     or
     result = getImmediateChildOfBuiltinBridgeObjectType(e, index, partialAccessor)
@@ -5146,8 +5113,6 @@ private module Impl {
     or
     result = getImmediateChildOfPrimaryArchetypeType(e, index, partialAccessor)
     or
-    result = getImmediateChildOfSequenceArchetypeType(e, index, partialAccessor)
-    or
     result = getImmediateChildOfArraySliceType(e, index, partialAccessor)
     or
     result = getImmediateChildOfBoundGenericClassType(e, index, partialAccessor)
diff --git a/swift/ql/lib/codeql/swift/generated/Raw.qll b/swift/ql/lib/codeql/swift/generated/Raw.qll
index 2730e58e09b..a330bbec67a 100644
--- a/swift/ql/lib/codeql/swift/generated/Raw.qll
+++ b/swift/ql/lib/codeql/swift/generated/Raw.qll
@@ -1302,6 +1302,10 @@ module Raw {
 
   class ParameterizedProtocolType extends @parameterized_protocol_type, Type {
     override string toString() { result = "ParameterizedProtocolType" }
+
+    ProtocolType getBase() { parameterized_protocol_types(this, result) }
+
+    Type getArg(int index) { parameterized_protocol_type_args(this, index, result) }
   }
 
   class ProtocolCompositionType extends @protocol_composition_type, Type {
@@ -1326,10 +1330,6 @@ module Raw {
     string getName(int index) { tuple_type_names(this, index, result) }
   }
 
-  class TypeVariableType extends @type_variable_type, Type {
-    override string toString() { result = "TypeVariableType" }
-  }
-
   class UnresolvedType extends @unresolved_type, Type, UnresolvedElement {
     override string toString() { result = "UnresolvedType" }
   }
@@ -1479,10 +1479,6 @@ module Raw {
     override string toString() { result = "PrimaryArchetypeType" }
   }
 
-  class SequenceArchetypeType extends @sequence_archetype_type, ArchetypeType {
-    override string toString() { result = "SequenceArchetypeType" }
-  }
-
   class UnarySyntaxSugarType extends @unary_syntax_sugar_type, SyntaxSugarType {
     Type getBaseType() { unary_syntax_sugar_types(this, result) }
   }
diff --git a/swift/ql/lib/codeql/swift/generated/Synth.qll b/swift/ql/lib/codeql/swift/generated/Synth.qll
index 997b279c70f..aa00e1ba1ab 100644
--- a/swift/ql/lib/codeql/swift/generated/Synth.qll
+++ b/swift/ql/lib/codeql/swift/generated/Synth.qll
@@ -290,12 +290,10 @@ module Synth {
       constructProtocolCompositionType(id)
     } or
     TProtocolType(Raw::ProtocolType id) { constructProtocolType(id) } or
-    TSequenceArchetypeType(Raw::SequenceArchetypeType id) { constructSequenceArchetypeType(id) } or
     TStructType(Raw::StructType id) { constructStructType(id) } or
     TTupleType(Raw::TupleType id) { constructTupleType(id) } or
     TTypeAliasType(Raw::TypeAliasType id) { constructTypeAliasType(id) } or
     TTypeRepr(Raw::TypeRepr id) { constructTypeRepr(id) } or
-    TTypeVariableType(Raw::TypeVariableType id) { constructTypeVariableType(id) } or
     TUnboundGenericType(Raw::UnboundGenericType id) { constructUnboundGenericType(id) } or
     TUnmanagedStorageType(Raw::UnmanagedStorageType id) { constructUnmanagedStorageType(id) } or
     TUnownedStorageType(Raw::UnownedStorageType id) { constructUnownedStorageType(id) } or
@@ -435,9 +433,7 @@ module Synth {
 
   class TAnyMetatypeType = TExistentialMetatypeType or TMetatypeType;
 
-  class TArchetypeType =
-    TOpaqueTypeArchetypeType or TOpenedArchetypeType or TPrimaryArchetypeType or
-        TSequenceArchetypeType;
+  class TArchetypeType = TOpaqueTypeArchetypeType or TOpenedArchetypeType or TPrimaryArchetypeType;
 
   class TBoundGenericType =
     TBoundGenericClassType or TBoundGenericEnumType or TBoundGenericStructType;
@@ -464,8 +460,7 @@ module Synth {
     TAnyFunctionType or TAnyGenericType or TAnyMetatypeType or TBuiltinType or
         TDependentMemberType or TDynamicSelfType or TErrorType or TExistentialType or TInOutType or
         TLValueType or TModuleType or TParameterizedProtocolType or TProtocolCompositionType or
-        TReferenceStorageType or TSubstitutableType or TSugarType or TTupleType or
-        TTypeVariableType or TUnresolvedType;
+        TReferenceStorageType or TSubstitutableType or TSugarType or TTupleType or TUnresolvedType;
 
   class TUnarySyntaxSugarType = TArraySliceType or TOptionalType or TVariadicSequenceType;
 
@@ -1308,11 +1303,6 @@ module Synth {
   cached
   TProtocolType convertProtocolTypeFromRaw(Raw::Element e) { result = TProtocolType(e) }
 
-  cached
-  TSequenceArchetypeType convertSequenceArchetypeTypeFromRaw(Raw::Element e) {
-    result = TSequenceArchetypeType(e)
-  }
-
   cached
   TStructType convertStructTypeFromRaw(Raw::Element e) { result = TStructType(e) }
 
@@ -1325,9 +1315,6 @@ module Synth {
   cached
   TTypeRepr convertTypeReprFromRaw(Raw::Element e) { result = TTypeRepr(e) }
 
-  cached
-  TTypeVariableType convertTypeVariableTypeFromRaw(Raw::Element e) { result = TTypeVariableType(e) }
-
   cached
   TUnboundGenericType convertUnboundGenericTypeFromRaw(Raw::Element e) {
     result = TUnboundGenericType(e)
@@ -1970,8 +1957,6 @@ module Synth {
     result = convertOpenedArchetypeTypeFromRaw(e)
     or
     result = convertPrimaryArchetypeTypeFromRaw(e)
-    or
-    result = convertSequenceArchetypeTypeFromRaw(e)
   }
 
   cached
@@ -2094,8 +2079,6 @@ module Synth {
     or
     result = convertTupleTypeFromRaw(e)
     or
-    result = convertTypeVariableTypeFromRaw(e)
-    or
     result = convertUnresolvedTypeFromRaw(e)
   }
 
@@ -2945,11 +2928,6 @@ module Synth {
   cached
   Raw::Element convertProtocolTypeToRaw(TProtocolType e) { e = TProtocolType(result) }
 
-  cached
-  Raw::Element convertSequenceArchetypeTypeToRaw(TSequenceArchetypeType e) {
-    e = TSequenceArchetypeType(result)
-  }
-
   cached
   Raw::Element convertStructTypeToRaw(TStructType e) { e = TStructType(result) }
 
@@ -2962,9 +2940,6 @@ module Synth {
   cached
   Raw::Element convertTypeReprToRaw(TTypeRepr e) { e = TTypeRepr(result) }
 
-  cached
-  Raw::Element convertTypeVariableTypeToRaw(TTypeVariableType e) { e = TTypeVariableType(result) }
-
   cached
   Raw::Element convertUnboundGenericTypeToRaw(TUnboundGenericType e) {
     e = TUnboundGenericType(result)
@@ -3607,8 +3582,6 @@ module Synth {
     result = convertOpenedArchetypeTypeToRaw(e)
     or
     result = convertPrimaryArchetypeTypeToRaw(e)
-    or
-    result = convertSequenceArchetypeTypeToRaw(e)
   }
 
   cached
@@ -3731,8 +3704,6 @@ module Synth {
     or
     result = convertTupleTypeToRaw(e)
     or
-    result = convertTypeVariableTypeToRaw(e)
-    or
     result = convertUnresolvedTypeToRaw(e)
   }
 
diff --git a/swift/ql/lib/codeql/swift/generated/SynthConstructors.qll b/swift/ql/lib/codeql/swift/generated/SynthConstructors.qll
index 528c176b4c9..2009999e1d8 100644
--- a/swift/ql/lib/codeql/swift/generated/SynthConstructors.qll
+++ b/swift/ql/lib/codeql/swift/generated/SynthConstructors.qll
@@ -212,12 +212,10 @@ import codeql.swift.elements.type.ParenTypeConstructor
 import codeql.swift.elements.type.PrimaryArchetypeTypeConstructor
 import codeql.swift.elements.type.ProtocolCompositionTypeConstructor
 import codeql.swift.elements.type.ProtocolTypeConstructor
-import codeql.swift.elements.type.SequenceArchetypeTypeConstructor
 import codeql.swift.elements.type.StructTypeConstructor
 import codeql.swift.elements.type.TupleTypeConstructor
 import codeql.swift.elements.type.TypeAliasTypeConstructor
 import codeql.swift.elements.type.TypeReprConstructor
-import codeql.swift.elements.type.TypeVariableTypeConstructor
 import codeql.swift.elements.type.UnboundGenericTypeConstructor
 import codeql.swift.elements.type.UnmanagedStorageTypeConstructor
 import codeql.swift.elements.type.UnownedStorageTypeConstructor
diff --git a/swift/ql/lib/codeql/swift/generated/type/ParameterizedProtocolType.qll b/swift/ql/lib/codeql/swift/generated/type/ParameterizedProtocolType.qll
index 0a969fd5256..9f09046d424 100644
--- a/swift/ql/lib/codeql/swift/generated/type/ParameterizedProtocolType.qll
+++ b/swift/ql/lib/codeql/swift/generated/type/ParameterizedProtocolType.qll
@@ -1,10 +1,62 @@
 // generated by codegen/codegen.py
 private import codeql.swift.generated.Synth
 private import codeql.swift.generated.Raw
+import codeql.swift.elements.type.ProtocolType
 import codeql.swift.elements.type.Type
 
 module Generated {
+  /**
+   * A sugar type of the form `P<X>` with `P` a protocol.
+   *
+   * If `P` has primary associated type `A`, then `T: P<X>` is a shortcut for `T: P where T.A == X`.
+   */
   class ParameterizedProtocolType extends Synth::TParameterizedProtocolType, Type {
     override string getAPrimaryQlClass() { result = "ParameterizedProtocolType" }
+
+    /**
+     * Gets the base of this parameterized protocol type.
+     *
+     * This includes nodes from the "hidden" AST. It can be overridden in subclasses to change the
+     * behavior of both the `Immediate` and non-`Immediate` versions.
+     */
+    ProtocolType getImmediateBase() {
+      result =
+        Synth::convertProtocolTypeFromRaw(Synth::convertParameterizedProtocolTypeToRaw(this)
+              .(Raw::ParameterizedProtocolType)
+              .getBase())
+    }
+
+    /**
+     * Gets the base of this parameterized protocol type.
+     */
+    final ProtocolType getBase() { result = getImmediateBase().resolve() }
+
+    /**
+     * Gets the `index`th argument of this parameterized protocol type (0-based).
+     *
+     * This includes nodes from the "hidden" AST. It can be overridden in subclasses to change the
+     * behavior of both the `Immediate` and non-`Immediate` versions.
+     */
+    Type getImmediateArg(int index) {
+      result =
+        Synth::convertTypeFromRaw(Synth::convertParameterizedProtocolTypeToRaw(this)
+              .(Raw::ParameterizedProtocolType)
+              .getArg(index))
+    }
+
+    /**
+     * Gets the `index`th argument of this parameterized protocol type (0-based).
+     */
+    final Type getArg(int index) { result = getImmediateArg(index).resolve() }
+
+    /**
+     * Gets any of the arguments of this parameterized protocol type.
+     */
+    final Type getAnArg() { result = getArg(_) }
+
+    /**
+     * Gets the number of arguments of this parameterized protocol type.
+     */
+    final int getNumberOfArgs() { result = count(getAnArg()) }
   }
 }
diff --git a/swift/ql/lib/codeql/swift/generated/type/SequenceArchetypeType.qll b/swift/ql/lib/codeql/swift/generated/type/SequenceArchetypeType.qll
deleted file mode 100644
index 6621b6f53fe..00000000000
--- a/swift/ql/lib/codeql/swift/generated/type/SequenceArchetypeType.qll
+++ /dev/null
@@ -1,10 +0,0 @@
-// generated by codegen/codegen.py
-private import codeql.swift.generated.Synth
-private import codeql.swift.generated.Raw
-import codeql.swift.elements.type.ArchetypeType
-
-module Generated {
-  class SequenceArchetypeType extends Synth::TSequenceArchetypeType, ArchetypeType {
-    override string getAPrimaryQlClass() { result = "SequenceArchetypeType" }
-  }
-}
diff --git a/swift/ql/lib/codeql/swift/generated/type/TypeVariableType.qll b/swift/ql/lib/codeql/swift/generated/type/TypeVariableType.qll
deleted file mode 100644
index 526e156daaf..00000000000
--- a/swift/ql/lib/codeql/swift/generated/type/TypeVariableType.qll
+++ /dev/null
@@ -1,10 +0,0 @@
-// generated by codegen/codegen.py
-private import codeql.swift.generated.Synth
-private import codeql.swift.generated.Raw
-import codeql.swift.elements.type.Type
-
-module Generated {
-  class TypeVariableType extends Synth::TTypeVariableType, Type {
-    override string getAPrimaryQlClass() { result = "TypeVariableType" }
-  }
-}
diff --git a/swift/ql/lib/swift.dbscheme b/swift/ql/lib/swift.dbscheme
index 594381ec16e..c0b01e4665b 100644
--- a/swift/ql/lib/swift.dbscheme
+++ b/swift/ql/lib/swift.dbscheme
@@ -1841,7 +1841,6 @@ while_stmts(  //dir=stmt
 | @substitutable_type
 | @sugar_type
 | @tuple_type
-| @type_variable_type
 | @unresolved_type
 ;
 
@@ -1964,7 +1963,15 @@ module_types(  //dir=type
 );
 
 parameterized_protocol_types(  //dir=type
-  unique int id: @parameterized_protocol_type
+  unique int id: @parameterized_protocol_type,
+  int base: @protocol_type_or_none ref
+);
+
+#keyset[id, index]
+parameterized_protocol_type_args(  //dir=type
+  int id: @parameterized_protocol_type ref,
+  int index: int ref,
+  int arg: @type_or_none ref
 );
 
 protocol_composition_types(  //dir=type
@@ -2019,10 +2026,6 @@ tuple_type_names(  //dir=type
   string name: string ref
 );
 
-type_variable_types(  //dir=type
-  unique int id: @type_variable_type
-);
-
 unresolved_types(  //dir=type
   unique int id: @unresolved_type
 );
@@ -2036,7 +2039,6 @@ unresolved_types(  //dir=type
   @opaque_type_archetype_type
 | @opened_archetype_type
 | @primary_archetype_type
-| @sequence_archetype_type
 ;
 
 #keyset[id]
@@ -2214,10 +2216,6 @@ primary_archetype_types(  //dir=type
   unique int id: @primary_archetype_type
 );
 
-sequence_archetype_types(  //dir=type
-  unique int id: @sequence_archetype_type
-);
-
 @unary_syntax_sugar_type =
   @array_slice_type
 | @optional_type
@@ -2405,6 +2403,11 @@ variadic_sequence_types(  //dir=type
 | @unspecified_element
 ;
 
+@protocol_type_or_none =
+  @protocol_type
+| @unspecified_element
+;
+
 @stmt_or_none =
   @stmt
 | @unspecified_element
diff --git a/swift/ql/test/TestUtils.qll b/swift/ql/test/TestUtils.qll
index 92fcc4de137..020e29efa7f 100644
--- a/swift/ql/test/TestUtils.qll
+++ b/swift/ql/test/TestUtils.qll
@@ -6,6 +6,8 @@ predicate toBeTested(Element e) {
   or
   e instanceof AppliedPropertyWrapperExpr
   or
+  e instanceof ParameterizedProtocolType
+  or
   exists(ModuleDecl m |
     m = e and
     not m.isBuiltinModule() and
diff --git a/swift/ql/test/extractor-tests/generated/type/ParameterizedProtocolType/MISSING_SOURCE.txt b/swift/ql/test/extractor-tests/generated/type/ParameterizedProtocolType/MISSING_SOURCE.txt
deleted file mode 100644
index 0d319d9a669..00000000000
--- a/swift/ql/test/extractor-tests/generated/type/ParameterizedProtocolType/MISSING_SOURCE.txt
+++ /dev/null
@@ -1,4 +0,0 @@
-// generated by codegen/codegen.py
-
-After a swift source file is added in this directory and codegen/codegen.py is run again, test queries
-will appear and this file will be deleted
diff --git a/swift/ql/test/extractor-tests/generated/type/ParameterizedProtocolType/ParameterizedProtocolType.expected b/swift/ql/test/extractor-tests/generated/type/ParameterizedProtocolType/ParameterizedProtocolType.expected
new file mode 100644
index 00000000000..cb63fdef0c4
--- /dev/null
+++ b/swift/ql/test/extractor-tests/generated/type/ParameterizedProtocolType/ParameterizedProtocolType.expected
@@ -0,0 +1 @@
+| P<Int, String> | getName: | P<Int, String> | getCanonicalType: | P<Int, String> | getBase: | P |
diff --git a/swift/ql/test/extractor-tests/generated/type/ParameterizedProtocolType/ParameterizedProtocolType.ql b/swift/ql/test/extractor-tests/generated/type/ParameterizedProtocolType/ParameterizedProtocolType.ql
new file mode 100644
index 00000000000..113af23a9f3
--- /dev/null
+++ b/swift/ql/test/extractor-tests/generated/type/ParameterizedProtocolType/ParameterizedProtocolType.ql
@@ -0,0 +1,12 @@
+// generated by codegen/codegen.py
+import codeql.swift.elements
+import TestUtils
+
+from ParameterizedProtocolType x, string getName, Type getCanonicalType, ProtocolType getBase
+where
+  toBeTested(x) and
+  not x.isUnknown() and
+  getName = x.getName() and
+  getCanonicalType = x.getCanonicalType() and
+  getBase = x.getBase()
+select x, "getName:", getName, "getCanonicalType:", getCanonicalType, "getBase:", getBase
diff --git a/swift/ql/test/extractor-tests/generated/type/ParameterizedProtocolType/ParameterizedProtocolType_getArg.expected b/swift/ql/test/extractor-tests/generated/type/ParameterizedProtocolType/ParameterizedProtocolType_getArg.expected
new file mode 100644
index 00000000000..95799228658
--- /dev/null
+++ b/swift/ql/test/extractor-tests/generated/type/ParameterizedProtocolType/ParameterizedProtocolType_getArg.expected
@@ -0,0 +1,2 @@
+| P<Int, String> | 0 | Int |
+| P<Int, String> | 1 | String |
diff --git a/swift/ql/test/extractor-tests/generated/type/ParameterizedProtocolType/ParameterizedProtocolType_getArg.ql b/swift/ql/test/extractor-tests/generated/type/ParameterizedProtocolType/ParameterizedProtocolType_getArg.ql
new file mode 100644
index 00000000000..54ef721f65b
--- /dev/null
+++ b/swift/ql/test/extractor-tests/generated/type/ParameterizedProtocolType/ParameterizedProtocolType_getArg.ql
@@ -0,0 +1,7 @@
+// generated by codegen/codegen.py
+import codeql.swift.elements
+import TestUtils
+
+from ParameterizedProtocolType x, int index
+where toBeTested(x) and not x.isUnknown()
+select x, index, x.getArg(index)
diff --git a/swift/ql/test/extractor-tests/generated/type/ParameterizedProtocolType/parametrized_protocol_type.swift b/swift/ql/test/extractor-tests/generated/type/ParameterizedProtocolType/parametrized_protocol_type.swift
new file mode 100644
index 00000000000..29a4727f4bc
--- /dev/null
+++ b/swift/ql/test/extractor-tests/generated/type/ParameterizedProtocolType/parametrized_protocol_type.swift
@@ -0,0 +1,6 @@
+protocol P<One, Two> {
+    associatedtype One;
+    associatedtype Two;
+}
+
+func foo<T: P<Int, String>>(_: T) {}
diff --git a/swift/ql/test/extractor-tests/generated/type/SequenceArchetypeType/MISSING_SOURCE.txt b/swift/ql/test/extractor-tests/generated/type/SequenceArchetypeType/MISSING_SOURCE.txt
deleted file mode 100644
index 0d319d9a669..00000000000
--- a/swift/ql/test/extractor-tests/generated/type/SequenceArchetypeType/MISSING_SOURCE.txt
+++ /dev/null
@@ -1,4 +0,0 @@
-// generated by codegen/codegen.py
-
-After a swift source file is added in this directory and codegen/codegen.py is run again, test queries
-will appear and this file will be deleted
diff --git a/swift/ql/test/extractor-tests/generated/type/TypeVariableType/MISSING_SOURCE.txt b/swift/ql/test/extractor-tests/generated/type/TypeVariableType/MISSING_SOURCE.txt
deleted file mode 100644
index 0d319d9a669..00000000000
--- a/swift/ql/test/extractor-tests/generated/type/TypeVariableType/MISSING_SOURCE.txt
+++ /dev/null
@@ -1,4 +0,0 @@
-// generated by codegen/codegen.py
-
-After a swift source file is added in this directory and codegen/codegen.py is run again, test queries
-will appear and this file will be deleted
diff --git a/swift/schema.py b/swift/schema.py
index 97c8cd143e9..b3357c5fbb5 100644
--- a/swift/schema.py
+++ b/swift/schema.py
@@ -868,9 +868,6 @@ class TupleType(Type):
     types: list[Type]
     names: list[optional[string]]
 
-class TypeVariableType(Type):
-    pass
-
 class UnresolvedType(Type, UnresolvedElement):
     pass
 
@@ -981,9 +978,6 @@ class OpenedArchetypeType(ArchetypeType):
 class PrimaryArchetypeType(ArchetypeType):
     pass
 
-class SequenceArchetypeType(ArchetypeType):
-    pass
-
 class UnarySyntaxSugarType(SyntaxSugarType):
     base_type: Type
 
@@ -1018,4 +1012,10 @@ class VariadicSequenceType(UnarySyntaxSugarType):
     pass
 
 class ParameterizedProtocolType(Type):
-    pass
+    """
+    A sugar type of the form `P<X>` with `P` a protocol.
+
+    If `P` has primary associated type `A`, then `T: P<X>` is a shortcut for `T: P where T.A == X`.
+    """
+    base: ProtocolType
+    args: list[Type]

From fbb2dcf7a8e8746bdee5e8f15a4bf54a96325af5 Mon Sep 17 00:00:00 2001
From: erik-krogh <erik-krogh@github.com>
Date: Thu, 10 Nov 2022 17:47:14 +0100
Subject: [PATCH 0163/1420] remove langauge specific format checks

---
 .github/workflows/js-ml-tests.yml | 13 -------------
 .github/workflows/ruby-qltest.yml |  7 -------
 .github/workflows/swift.yml       | 11 +----------
 3 files changed, 1 insertion(+), 30 deletions(-)

diff --git a/.github/workflows/js-ml-tests.yml b/.github/workflows/js-ml-tests.yml
index c932432530b..d3b5d49f2ba 100644
--- a/.github/workflows/js-ml-tests.yml
+++ b/.github/workflows/js-ml-tests.yml
@@ -23,19 +23,6 @@ defaults:
     working-directory: javascript/ql/experimental/adaptivethreatmodeling
 
 jobs:
-  qlformat:
-    name: Check QL formatting
-    runs-on: ubuntu-latest
-    steps:
-      - uses: actions/checkout@v3
-
-      - uses: ./.github/actions/fetch-codeql
-
-      - name: Check QL formatting
-        run: |
-          find . "(" -name "*.ql" -or -name "*.qll" ")" -print0 | \
-            xargs -0 codeql query format --check-only
-
   qlcompile:
     name: Check QL compilation
     runs-on: ubuntu-latest
diff --git a/.github/workflows/ruby-qltest.yml b/.github/workflows/ruby-qltest.yml
index 97235b722ba..125e2694fb0 100644
--- a/.github/workflows/ruby-qltest.yml
+++ b/.github/workflows/ruby-qltest.yml
@@ -28,13 +28,6 @@ defaults:
     working-directory: ruby
 
 jobs:
-  qlformat:
-    runs-on: ubuntu-latest
-    steps:
-      - uses: actions/checkout@v3
-      - uses: ./.github/actions/fetch-codeql
-      - name: Check QL formatting
-        run: find ql "(" -name "*.ql" -or -name "*.qll" ")" -print0 | xargs -0 codeql query format --check-only
   qlcompile:
     runs-on: ubuntu-latest
     steps:
diff --git a/.github/workflows/swift.yml b/.github/workflows/swift.yml
index 873b94d2118..5ec691befb1 100644
--- a/.github/workflows/swift.yml
+++ b/.github/workflows/swift.yml
@@ -111,13 +111,4 @@ jobs:
       - uses: actions/upload-artifact@v3
         with:
           name: swift-generated-cpp-files
-          path: swift/generated-cpp-files/**
-  qlformat:
-    runs-on: ubuntu-latest
-    needs: changes
-    if: ${{ needs.changes.outputs.ql == 'true' }}
-    steps:
-      - uses: actions/checkout@v3
-      - uses: ./.github/actions/fetch-codeql
-      - name: Check QL formatting
-        run: find swift/ql "(" -name "*.ql" -or -name "*.qll" ")" -print0 | xargs -0 codeql query format --check-only
+          path: swift/generated-cpp-files/**
\ No newline at end of file

From f5b198b8b71eab1482f5a35a55727f4d35daa703 Mon Sep 17 00:00:00 2001
From: Paolo Tranquilli <redsun82@github.com>
Date: Thu, 10 Nov 2022 17:50:22 +0100
Subject: [PATCH 0164/1420] Swift: fix dangling test reference

---
 swift/ql/test/library-tests/ast/Missing.ql    | 4 ++++
 swift/ql/test/library-tests/ast/Missing.qlref | 1 -
 2 files changed, 4 insertions(+), 1 deletion(-)
 create mode 100644 swift/ql/test/library-tests/ast/Missing.ql
 delete mode 100644 swift/ql/test/library-tests/ast/Missing.qlref

diff --git a/swift/ql/test/library-tests/ast/Missing.ql b/swift/ql/test/library-tests/ast/Missing.ql
new file mode 100644
index 00000000000..1d29f367422
--- /dev/null
+++ b/swift/ql/test/library-tests/ast/Missing.ql
@@ -0,0 +1,4 @@
+import swift
+
+from UnspecifiedElement e
+select e
diff --git a/swift/ql/test/library-tests/ast/Missing.qlref b/swift/ql/test/library-tests/ast/Missing.qlref
deleted file mode 100644
index e9db12f988f..00000000000
--- a/swift/ql/test/library-tests/ast/Missing.qlref
+++ /dev/null
@@ -1 +0,0 @@
-extractor-tests/generated/UnspecifiedElement/UnspecifiedElement.ql

From 866e92558c15e56d5fec10fa8eb00f0a9b60f342 Mon Sep 17 00:00:00 2001
From: erik-krogh <erik-krogh@github.com>
Date: Thu, 10 Nov 2022 17:57:45 +0100
Subject: [PATCH 0165/1420] broaden the file pattern used in the format check
 to ensure js-ml is included

---
 .github/workflows/compile-queries.yml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/compile-queries.yml b/.github/workflows/compile-queries.yml
index 73d1e5ac2cc..149cb052de9 100644
--- a/.github/workflows/compile-queries.yml
+++ b/.github/workflows/compile-queries.yml
@@ -46,7 +46,7 @@ jobs:
         with:
           channel: 'release'
       - name: check formatting
-        run: codeql query format */ql/{src,lib,test}/**/*.{qll,ql} --check-only
+        run: codeql query format */ql/**/*.{qll,ql} --check-only
       - name: compile queries - check-only
         # run with --check-only if running in a PR (github.sha != main)
         if : ${{ github.event_name == 'pull_request' }}

From 4caaa3a396c65f75a3268d5e1405dbfe7bf9f0cf Mon Sep 17 00:00:00 2001
From: Rasmus Wriedt Larsen <rasmuswl@github.com>
Date: Fri, 24 Jun 2022 16:00:40 +0200
Subject: [PATCH 0166/1420] Python: Rewrite call-graph tests to be inline
 expectation (1/2)

This adds inline expectations, next commit will remove old annotations
code... but I thought it would be easier to review like this.
---
 .../CallGraph/InlineCallGraphTest.expected    |  4 ++
 .../CallGraph/InlineCallGraphTest.ql          | 49 +++++++++++++++++++
 .../CallGraph/code/class_simple.py            | 10 ++--
 .../CallGraph/code/runtime_decision.py        |  4 +-
 .../library-tests/CallGraph/code/simple.py    |  8 +--
 .../code/underscore_prefix_func_name.py       |  6 +--
 6 files changed, 67 insertions(+), 14 deletions(-)
 create mode 100644 python/ql/test/experimental/library-tests/CallGraph/InlineCallGraphTest.expected
 create mode 100644 python/ql/test/experimental/library-tests/CallGraph/InlineCallGraphTest.ql

diff --git a/python/ql/test/experimental/library-tests/CallGraph/InlineCallGraphTest.expected b/python/ql/test/experimental/library-tests/CallGraph/InlineCallGraphTest.expected
new file mode 100644
index 00000000000..2ff4aeb6865
--- /dev/null
+++ b/python/ql/test/experimental/library-tests/CallGraph/InlineCallGraphTest.expected
@@ -0,0 +1,4 @@
+failures
+debug_callableNotUnique
+| code/class_advanced.py:18:5:18:18 | Function arg | Qualified function name 'B.arg' is not unique. Please fix. |
+| code/class_advanced.py:23:5:23:25 | Function arg | Qualified function name 'B.arg' is not unique. Please fix. |
diff --git a/python/ql/test/experimental/library-tests/CallGraph/InlineCallGraphTest.ql b/python/ql/test/experimental/library-tests/CallGraph/InlineCallGraphTest.ql
new file mode 100644
index 00000000000..6b59751e43b
--- /dev/null
+++ b/python/ql/test/experimental/library-tests/CallGraph/InlineCallGraphTest.ql
@@ -0,0 +1,49 @@
+import python
+import TestUtilities.InlineExpectationsTest
+
+/** Holds when `call` is resolved to `callable` using points-to based call-graph. */
+predicate pointsToCallEdge(CallNode call, Function callable) {
+  exists(PythonFunctionValue funcValue |
+    funcValue.getScope() = callable and
+    call = funcValue.getACall()
+  )
+}
+
+/** Holds when `call` is resolved to `callable` using type-tracking based call-graph. */
+predicate typeTrackerCallEdge(CallNode call, Function callable) { none() }
+
+class CallGraphTest extends InlineExpectationsTest {
+  CallGraphTest() { this = "CallGraphTest" }
+
+  override string getARelevantTag() { result in ["pt", "tt"] }
+
+  override predicate hasActualResult(Location location, string element, string tag, string value) {
+    exists(location.getFile().getRelativePath()) and
+    exists(CallNode call, Function target |
+      tag = "tt" and
+      typeTrackerCallEdge(call, target)
+      or
+      tag = "pt" and
+      pointsToCallEdge(call, target)
+    |
+      location = call.getLocation() and
+      element = call.toString() and
+      (
+        // note: `target.getQualifiedName` for Lambdas is just "lambda", so is not very useful :|
+        not target.isLambda() and
+        value = target.getQualifiedName()
+        or
+        target.isLambda() and
+        value =
+          "lambda[" + target.getLocation().getFile().getShortName() + ":" +
+            target.getLocation().getStartLine() + ":" + target.getLocation().getStartColumn() + "]"
+      )
+    )
+  }
+}
+
+query predicate debug_callableNotUnique(Function callable, string message) {
+  exists(Function f | f != callable and f.getQualifiedName() = callable.getQualifiedName()) and
+  message =
+    "Qualified function name '" + callable.getQualifiedName() + "' is not unique. Please fix."
+}
diff --git a/python/ql/test/experimental/library-tests/CallGraph/code/class_simple.py b/python/ql/test/experimental/library-tests/CallGraph/code/class_simple.py
index 7309620b3ec..a679cc5e25c 100644
--- a/python/ql/test/experimental/library-tests/CallGraph/code/class_simple.py
+++ b/python/ql/test/experimental/library-tests/CallGraph/code/class_simple.py
@@ -25,13 +25,13 @@ class A(object):
 a = A(42)
 
 # calls:A.some_method
-a.some_method()
+a.some_method() # $ pt=A.some_method
 # calls:A.some_staticmethod
-a.some_staticmethod()
+a.some_staticmethod() # $ pt=A.some_staticmethod
 # calls:A.some_classmethod
-a.some_classmethod()
+a.some_classmethod() # $ pt=A.some_classmethod
 
 # calls:A.some_staticmethod
-A.some_staticmethod()
+A.some_staticmethod() # $ pt=A.some_staticmethod
 # calls:A.some_classmethod
-A.some_classmethod()
+A.some_classmethod() # $ pt=A.some_classmethod
diff --git a/python/ql/test/experimental/library-tests/CallGraph/code/runtime_decision.py b/python/ql/test/experimental/library-tests/CallGraph/code/runtime_decision.py
index fd2f7773ced..a271cbd9a6f 100644
--- a/python/ql/test/experimental/library-tests/CallGraph/code/runtime_decision.py
+++ b/python/ql/test/experimental/library-tests/CallGraph/code/runtime_decision.py
@@ -18,7 +18,7 @@ else:
     func = rd_bar
 
 # calls:rd_foo calls:rd_bar
-func()
+func() # $ pt=rd_foo pt=rd_bar
 
 # Random doesn't work with points-to :O
 if random.random() < 0.5:
@@ -27,4 +27,4 @@ else:
     func2 = rd_bar
 
 # calls:rd_foo calls:rd_bar
-func2()
+func2() # $ pt=rd_foo pt=rd_bar
diff --git a/python/ql/test/experimental/library-tests/CallGraph/code/simple.py b/python/ql/test/experimental/library-tests/CallGraph/code/simple.py
index d3c39e42fd5..210df4f209e 100644
--- a/python/ql/test/experimental/library-tests/CallGraph/code/simple.py
+++ b/python/ql/test/experimental/library-tests/CallGraph/code/simple.py
@@ -16,12 +16,12 @@ lam = lambda: print("lambda called")
 
 
 # calls:foo
-foo()
+foo() # $ pt=foo
 # calls:foo
-indirect_foo()
+indirect_foo() # $ pt=foo
 # calls:bar
-bar()
+bar() # $ pt=bar
 # calls:lam
-lam()
+lam() # $ pt=lambda[simple.py:15:7]
 
 # python -m trace --trackcalls simple.py
diff --git a/python/ql/test/experimental/library-tests/CallGraph/code/underscore_prefix_func_name.py b/python/ql/test/experimental/library-tests/CallGraph/code/underscore_prefix_func_name.py
index 1ec87efd757..1a1efe9d7b6 100644
--- a/python/ql/test/experimental/library-tests/CallGraph/code/underscore_prefix_func_name.py
+++ b/python/ql/test/experimental/library-tests/CallGraph/code/underscore_prefix_func_name.py
@@ -18,11 +18,11 @@ def _ignored():
 def _works_since_called():
     print('_works_since_called')
     # calls:some_function
-    some_function()
+    some_function() # $ pt=some_function
 
 def works_even_though_not_called():
     # calls:some_function
-    some_function()
+    some_function() # $ pt=some_function
 
 globals()['_ignored']()
-_works_since_called()
+_works_since_called() # $ pt=_works_since_called

From d0dfb4926bce116f96320eb4aa53134fa85e010e Mon Sep 17 00:00:00 2001
From: Ian Lynagh <igfoo@github.com>
Date: Wed, 9 Nov 2022 16:09:47 +0000
Subject: [PATCH 0167/1420] Kotlin/Java: Add compilation_info table

---
 java/ql/lib/config/semmlecode.dbscheme       | 6 ++++++
 java/ql/lib/semmle/code/java/Compilation.qll | 5 +++++
 2 files changed, 11 insertions(+)

diff --git a/java/ql/lib/config/semmlecode.dbscheme b/java/ql/lib/config/semmlecode.dbscheme
index 709f1d1fd04..44d61b266be 100644
--- a/java/ql/lib/config/semmlecode.dbscheme
+++ b/java/ql/lib/config/semmlecode.dbscheme
@@ -31,6 +31,12 @@ compilation_started(
     int id : @compilation ref
 )
 
+compilation_info(
+    int id : @compilation ref,
+    string info_key: string ref,
+    string info_value: string ref
+)
+
 /**
  * The arguments that were passed to the extractor for a compiler
  * invocation. If `id` is for the compiler invocation
diff --git a/java/ql/lib/semmle/code/java/Compilation.qll b/java/ql/lib/semmle/code/java/Compilation.qll
index f38dc8ddb6b..c4b846edade 100644
--- a/java/ql/lib/semmle/code/java/Compilation.qll
+++ b/java/ql/lib/semmle/code/java/Compilation.qll
@@ -143,4 +143,9 @@ class Compilation extends @compilation {
    * Holds if the extractor encountered non-recoverable errors.
    */
   predicate nonRecoverableErrors() { compilation_finished(this, _, _, 2) }
+
+  /**
+   * Gets the piece of compilation information with the given key, if any.
+   */
+  string getInfo(string key) { compilation_info(this, key, result) }
 }

From 2fb78565a723fa78cefd3544062d48492e6ca5bd Mon Sep 17 00:00:00 2001
From: Ian Lynagh <igfoo@github.com>
Date: Wed, 9 Nov 2022 17:05:49 +0000
Subject: [PATCH 0168/1420] Kotlin: Write version information to the database

---
 java/kotlin-extractor/build.py                                | 4 ++++
 .../src/main/kotlin/KotlinExtractorExtension.kt               | 2 ++
 2 files changed, 6 insertions(+)

diff --git a/java/kotlin-extractor/build.py b/java/kotlin-extractor/build.py
index 9525522869b..497e6da049e 100755
--- a/java/kotlin-extractor/build.py
+++ b/java/kotlin-extractor/build.py
@@ -185,6 +185,10 @@ def compile(jars, java_jars, dependency_folder, transform_to_embeddable, output,
     include_version_folder = tmp_src_dir + '/main/kotlin/utils/versions/to_include'
     os.makedirs(include_version_folder)
 
+    with open(tmp_src_dir + '/main/kotlin/utils/ExtractorName.kt', 'w') as f:
+        f.write('package com.github.codeql\n')
+        f.write('val extractor_name: String = "' + output + '"\n')
+
     parsed_current_version = kotlin_plugin_versions.version_string_to_tuple(
         current_version)
 
diff --git a/java/kotlin-extractor/src/main/kotlin/KotlinExtractorExtension.kt b/java/kotlin-extractor/src/main/kotlin/KotlinExtractorExtension.kt
index c11d8569ae4..2ffef600476 100644
--- a/java/kotlin-extractor/src/main/kotlin/KotlinExtractorExtension.kt
+++ b/java/kotlin-extractor/src/main/kotlin/KotlinExtractorExtension.kt
@@ -131,6 +131,8 @@ class KotlinExtractorExtension(
             // The interceptor has already defined #compilation = *
             val compilation: Label<DbCompilation> = StringLabel("compilation")
             tw.writeCompilation_started(compilation)
+            tw.writeCompilation_info(compilation, "Kotlin Compiler Version", KotlinCompilerVersion.getVersion() ?: "<unknown>")
+            tw.writeCompilation_info(compilation, "Kotlin Extractor Name", extractor_name)
             if (compilationStartTime != null) {
                 tw.writeCompilation_compiler_times(compilation, -1.0, (System.currentTimeMillis()-compilationStartTime)/1000.0)
             }

From a6b8f4b674a6215ebddec9bfdef7316dfeabe9f2 Mon Sep 17 00:00:00 2001
From: Ian Lynagh <igfoo@github.com>
Date: Thu, 10 Nov 2022 11:13:13 +0000
Subject: [PATCH 0169/1420] Java/Kotlin: Update stats

---
 java/ql/lib/config/semmlecode.dbscheme.stats | 8805 +++++++++---------
 1 file changed, 4613 insertions(+), 4192 deletions(-)

diff --git a/java/ql/lib/config/semmlecode.dbscheme.stats b/java/ql/lib/config/semmlecode.dbscheme.stats
index 21f4ae2aa28..7ebc6e0b93e 100644
--- a/java/ql/lib/config/semmlecode.dbscheme.stats
+++ b/java/ql/lib/config/semmlecode.dbscheme.stats
@@ -6,11 +6,11 @@
         </e>
         <e>
             <k>@kotlincompilation</k>
-            <v>6806</v>
+            <v>7683</v>
         </e>
         <e>
             <k>@diagnostic</k>
-            <v>631661</v>
+            <v>61632</v>
         </e>
         <e>
             <k>@externalDataElement</k>
@@ -26,27 +26,27 @@
         </e>
         <e>
             <k>@file</k>
-            <v>7997871</v>
+            <v>9158642</v>
         </e>
         <e>
             <k>@folder</k>
-            <v>1275575</v>
+            <v>1415670</v>
         </e>
         <e>
             <k>@location_default</k>
-            <v>430051334</v>
+            <v>602747369</v>
         </e>
         <e>
             <k>@package</k>
-            <v>611241</v>
-        </e>
-        <e>
-            <k>@modifier</k>
-            <v>13613</v>
+            <v>580098</v>
         </e>
         <e>
             <k>@primitive</k>
-            <v>12252</v>
+            <v>17287</v>
+        </e>
+        <e>
+            <k>@modifier</k>
+            <v>26891</v>
         </e>
         <e>
             <k>@errortype</k>
@@ -54,87 +54,87 @@
         </e>
         <e>
             <k>@class</k>
-            <v>12548830</v>
+            <v>12618104</v>
         </e>
         <e>
             <k>@kt_nullable_type</k>
-            <v>1361</v>
+            <v>1920</v>
         </e>
         <e>
             <k>@kt_notnull_type</k>
-            <v>191419</v>
+            <v>172391</v>
         </e>
         <e>
             <k>@kt_type_alias</k>
-            <v>2060</v>
+            <v>1821</v>
         </e>
         <e>
             <k>@interface</k>
-            <v>21501109</v>
+            <v>23200100</v>
         </e>
         <e>
             <k>@fielddecl</k>
-            <v>398872</v>
+            <v>199475</v>
         </e>
         <e>
             <k>@field</k>
-            <v>27509955</v>
+            <v>19350704</v>
         </e>
         <e>
             <k>@constructor</k>
-            <v>6869320</v>
+            <v>8006128</v>
         </e>
         <e>
             <k>@method</k>
-            <v>93308954</v>
+            <v>109719302</v>
         </e>
         <e>
             <k>@param</k>
-            <v>101015498</v>
+            <v>120852585</v>
         </e>
         <e>
             <k>@exception</k>
-            <v>1228169</v>
+            <v>1232644</v>
         </e>
         <e>
             <k>@typevariable</k>
-            <v>5105024</v>
+            <v>6288883</v>
         </e>
         <e>
             <k>@wildcard</k>
-            <v>3629331</v>
+            <v>3338447</v>
         </e>
         <e>
             <k>@typebound</k>
-            <v>4383514</v>
+            <v>4229725</v>
         </e>
         <e>
             <k>@array</k>
-            <v>1116298</v>
+            <v>1375332</v>
         </e>
         <e>
             <k>@import</k>
-            <v>368532</v>
+            <v>368550</v>
         </e>
         <e>
             <k>@block</k>
-            <v>845392</v>
+            <v>756817</v>
         </e>
         <e>
             <k>@ifstmt</k>
-            <v>188296</v>
+            <v>188285</v>
         </e>
         <e>
             <k>@forstmt</k>
-            <v>52508</v>
+            <v>52504</v>
         </e>
         <e>
             <k>@enhancedforstmt</k>
-            <v>18506</v>
+            <v>18520</v>
         </e>
         <e>
             <k>@whilestmt</k>
-            <v>21684</v>
+            <v>13266</v>
         </e>
         <e>
             <k>@dostmt</k>
@@ -142,7 +142,7 @@
         </e>
         <e>
             <k>@trystmt</k>
-            <v>58627</v>
+            <v>58624</v>
         </e>
         <e>
             <k>@switchstmt</k>
@@ -150,19 +150,19 @@
         </e>
         <e>
             <k>@synchronizedstmt</k>
-            <v>18703</v>
+            <v>18206</v>
         </e>
         <e>
             <k>@returnstmt</k>
-            <v>674863</v>
+            <v>532846</v>
         </e>
         <e>
             <k>@throwstmt</k>
-            <v>35919</v>
+            <v>35917</v>
         </e>
         <e>
             <k>@breakstmt</k>
-            <v>35331</v>
+            <v>35329</v>
         </e>
         <e>
             <k>@continuestmt</k>
@@ -170,23 +170,23 @@
         </e>
         <e>
             <k>@emptystmt</k>
-            <v>1562</v>
+            <v>1561</v>
         </e>
         <e>
             <k>@exprstmt</k>
-            <v>942161</v>
+            <v>942102</v>
         </e>
         <e>
             <k>@assertstmt</k>
-            <v>10816</v>
+            <v>10815</v>
         </e>
         <e>
             <k>@localvariabledeclstmt</k>
-            <v>318709</v>
+            <v>318689</v>
         </e>
         <e>
             <k>@localtypedeclstmt</k>
-            <v>4057</v>
+            <v>3841</v>
         </e>
         <e>
             <k>@constructorinvocationstmt</k>
@@ -194,19 +194,19 @@
         </e>
         <e>
             <k>@superconstructorinvocationstmt</k>
-            <v>223641</v>
+            <v>201354</v>
         </e>
         <e>
             <k>@case</k>
-            <v>107943</v>
+            <v>107945</v>
         </e>
         <e>
             <k>@catchclause</k>
-            <v>55205</v>
+            <v>55201</v>
         </e>
         <e>
             <k>@labeledstmt</k>
-            <v>2560</v>
+            <v>2342</v>
         </e>
         <e>
             <k>@yieldstmt</k>
@@ -218,27 +218,27 @@
         </e>
         <e>
             <k>@whenbranch</k>
-            <v>234276</v>
+            <v>225101</v>
         </e>
         <e>
             <k>@arrayaccess</k>
-            <v>409706</v>
+            <v>409681</v>
         </e>
         <e>
             <k>@arraycreationexpr</k>
-            <v>69251</v>
+            <v>69247</v>
         </e>
         <e>
             <k>@arrayinit</k>
-            <v>405408</v>
+            <v>405405</v>
         </e>
         <e>
             <k>@assignexpr</k>
-            <v>465437</v>
+            <v>465407</v>
         </e>
         <e>
             <k>@assignaddexpr</k>
-            <v>17017</v>
+            <v>17016</v>
         </e>
         <e>
             <k>@assignsubexpr</k>
@@ -258,63 +258,63 @@
         </e>
         <e>
             <k>@assignorexpr</k>
-            <v>14529</v>
+            <v>14528</v>
         </e>
         <e>
             <k>@booleanliteral</k>
-            <v>589884</v>
+            <v>589912</v>
         </e>
         <e>
             <k>@integerliteral</k>
-            <v>1151527</v>
+            <v>1151458</v>
         </e>
         <e>
             <k>@longliteral</k>
-            <v>185903</v>
+            <v>185904</v>
         </e>
         <e>
             <k>@floatingpointliteral</k>
-            <v>2825166</v>
+            <v>2824996</v>
         </e>
         <e>
             <k>@doubleliteral</k>
-            <v>486650</v>
+            <v>486619</v>
         </e>
         <e>
             <k>@characterliteral</k>
-            <v>40018</v>
+            <v>40016</v>
         </e>
         <e>
             <k>@stringliteral</k>
-            <v>1262892</v>
+            <v>1262818</v>
         </e>
         <e>
             <k>@nullliteral</k>
-            <v>355828</v>
+            <v>434113</v>
         </e>
         <e>
             <k>@mulexpr</k>
-            <v>204593</v>
+            <v>204580</v>
         </e>
         <e>
             <k>@divexpr</k>
-            <v>36267</v>
+            <v>36264</v>
         </e>
         <e>
             <k>@remexpr</k>
-            <v>3896</v>
+            <v>3904</v>
         </e>
         <e>
             <k>@addexpr</k>
-            <v>176997</v>
+            <v>176986</v>
         </e>
         <e>
             <k>@subexpr</k>
-            <v>84390</v>
+            <v>84385</v>
         </e>
         <e>
             <k>@lshiftexpr</k>
-            <v>8737</v>
+            <v>8736</v>
         </e>
         <e>
             <k>@rshiftexpr</k>
@@ -326,11 +326,11 @@
         </e>
         <e>
             <k>@andbitexpr</k>
-            <v>29091</v>
+            <v>110212</v>
         </e>
         <e>
             <k>@orbitexpr</k>
-            <v>8626</v>
+            <v>12590</v>
         </e>
         <e>
             <k>@xorbitexpr</k>
@@ -338,47 +338,47 @@
         </e>
         <e>
             <k>@andlogicalexpr</k>
-            <v>41339</v>
+            <v>36742</v>
         </e>
         <e>
             <k>@orlogicalexpr</k>
-            <v>31152</v>
+            <v>31150</v>
         </e>
         <e>
             <k>@ltexpr</k>
-            <v>66254</v>
+            <v>66249</v>
         </e>
         <e>
             <k>@gtexpr</k>
-            <v>17204</v>
+            <v>17203</v>
         </e>
         <e>
             <k>@leexpr</k>
-            <v>10530</v>
+            <v>10529</v>
         </e>
         <e>
             <k>@geexpr</k>
-            <v>13412</v>
+            <v>13411</v>
         </e>
         <e>
             <k>@eqexpr</k>
-            <v>104281</v>
+            <v>128429</v>
         </e>
         <e>
             <k>@neexpr</k>
-            <v>60978</v>
+            <v>60975</v>
         </e>
         <e>
             <k>@postincexpr</k>
-            <v>29634</v>
+            <v>29632</v>
         </e>
         <e>
             <k>@postdecexpr</k>
-            <v>11684</v>
+            <v>11683</v>
         </e>
         <e>
             <k>@preincexpr</k>
-            <v>23716</v>
+            <v>23714</v>
         </e>
         <e>
             <k>@predecexpr</k>
@@ -386,75 +386,75 @@
         </e>
         <e>
             <k>@minusexpr</k>
-            <v>744431</v>
+            <v>744386</v>
         </e>
         <e>
             <k>@plusexpr</k>
-            <v>53010</v>
+            <v>53007</v>
         </e>
         <e>
             <k>@bitnotexpr</k>
-            <v>8187</v>
+            <v>8186</v>
         </e>
         <e>
             <k>@lognotexpr</k>
-            <v>40113</v>
+            <v>40111</v>
         </e>
         <e>
             <k>@castexpr</k>
-            <v>93193</v>
+            <v>93187</v>
         </e>
         <e>
             <k>@newexpr</k>
-            <v>252099</v>
+            <v>252083</v>
         </e>
         <e>
             <k>@conditionalexpr</k>
-            <v>16048</v>
+            <v>16047</v>
         </e>
         <e>
             <k>@instanceofexpr</k>
-            <v>31040</v>
+            <v>29542</v>
         </e>
         <e>
             <k>@localvariabledeclexpr</k>
-            <v>385297</v>
+            <v>385272</v>
         </e>
         <e>
             <k>@typeliteral</k>
-            <v>148289</v>
+            <v>144350</v>
         </e>
         <e>
             <k>@thisaccess</k>
-            <v>949960</v>
+            <v>756915</v>
         </e>
         <e>
             <k>@superaccess</k>
-            <v>22195</v>
+            <v>99884</v>
         </e>
         <e>
             <k>@varaccess</k>
-            <v>2434432</v>
+            <v>2434277</v>
         </e>
         <e>
             <k>@methodaccess</k>
-            <v>1578817</v>
+            <v>1512385</v>
         </e>
         <e>
             <k>@unannotatedtypeaccess</k>
-            <v>2861937</v>
+            <v>2608638</v>
         </e>
         <e>
             <k>@arraytypeaccess</k>
-            <v>120735</v>
+            <v>120727</v>
         </e>
         <e>
             <k>@wildcardtypeaccess</k>
-            <v>63960</v>
+            <v>64091</v>
         </e>
         <e>
             <k>@declannotation</k>
-            <v>6745248</v>
+            <v>6740832</v>
         </e>
         <e>
             <k>@assignremexpr</k>
@@ -462,7 +462,7 @@
         </e>
         <e>
             <k>@assignxorexpr</k>
-            <v>1101</v>
+            <v>1102</v>
         </e>
         <e>
             <k>@assignlshiftexpr</k>
@@ -490,19 +490,19 @@
         </e>
         <e>
             <k>@lambdaexpr</k>
-            <v>183936</v>
+            <v>167982</v>
         </e>
         <e>
             <k>@memberref</k>
-            <v>23858</v>
+            <v>23859</v>
         </e>
         <e>
             <k>@annotatedtypeaccess</k>
-            <v>1280</v>
+            <v>1281</v>
         </e>
         <e>
             <k>@typeannotation</k>
-            <v>1280</v>
+            <v>1281</v>
         </e>
         <e>
             <k>@intersectiontypeaccess</k>
@@ -518,43 +518,43 @@
         </e>
         <e>
             <k>@whenexpr</k>
-            <v>172064</v>
+            <v>152111</v>
         </e>
         <e>
             <k>@getclassexpr</k>
-            <v>1361</v>
+            <v>1920</v>
         </e>
         <e>
             <k>@safecastexpr</k>
-            <v>6932</v>
+            <v>6402</v>
         </e>
         <e>
             <k>@implicitcastexpr</k>
-            <v>32918</v>
+            <v>30316</v>
         </e>
         <e>
             <k>@implicitnotnullexpr</k>
-            <v>241262</v>
+            <v>216630</v>
         </e>
         <e>
             <k>@implicitcoerciontounitexpr</k>
-            <v>91329</v>
+            <v>81396</v>
         </e>
         <e>
             <k>@notinstanceofexpr</k>
-            <v>19576</v>
+            <v>17306</v>
         </e>
         <e>
             <k>@stmtexpr</k>
-            <v>57687</v>
+            <v>55704</v>
         </e>
         <e>
             <k>@stringtemplateexpr</k>
-            <v>55814</v>
+            <v>59546</v>
         </e>
         <e>
             <k>@notnullexpr</k>
-            <v>20290</v>
+            <v>18820</v>
         </e>
         <e>
             <k>@unsafecoerceexpr</k>
@@ -562,23 +562,23 @@
         </e>
         <e>
             <k>@valueeqexpr</k>
-            <v>102712</v>
+            <v>93060</v>
         </e>
         <e>
             <k>@valueneexpr</k>
-            <v>108184</v>
+            <v>95639</v>
         </e>
         <e>
             <k>@propertyref</k>
-            <v>9642</v>
+            <v>8878</v>
         </e>
         <e>
             <k>@localvar</k>
-            <v>385297</v>
+            <v>385272</v>
         </e>
         <e>
             <k>@module</k>
-            <v>7964</v>
+            <v>7965</v>
         </e>
         <e>
             <k>@requires</k>
@@ -586,7 +586,7 @@
         </e>
         <e>
             <k>@exports</k>
-            <v>35011</v>
+            <v>35013</v>
         </e>
         <e>
             <k>@opens</k>
@@ -594,7 +594,7 @@
         </e>
         <e>
             <k>@uses</k>
-            <v>10785</v>
+            <v>10786</v>
         </e>
         <e>
             <k>@provides</k>
@@ -602,15 +602,15 @@
         </e>
         <e>
             <k>@javadoc</k>
-            <v>985153</v>
+            <v>985091</v>
         </e>
         <e>
             <k>@javadocTag</k>
-            <v>335830</v>
+            <v>335808</v>
         </e>
         <e>
             <k>@javadocText</k>
-            <v>2503007</v>
+            <v>2502848</v>
         </e>
         <e>
             <k>@xmldtd</k>
@@ -618,23 +618,23 @@
         </e>
         <e>
             <k>@xmlelement</k>
-            <v>106507143</v>
+            <v>150282022</v>
         </e>
         <e>
             <k>@xmlattribute</k>
-            <v>129551904</v>
+            <v>182798274</v>
         </e>
         <e>
             <k>@xmlnamespace</k>
-            <v>8168</v>
+            <v>11525</v>
         </e>
         <e>
             <k>@xmlcomment</k>
-            <v>107198704</v>
+            <v>151257816</v>
         </e>
         <e>
             <k>@xmlcharacters</k>
-            <v>101302741</v>
+            <v>142938589</v>
         </e>
         <e>
             <k>@config</k>
@@ -650,15 +650,15 @@
         </e>
         <e>
             <k>@ktcomment</k>
-            <v>133411</v>
+            <v>188243</v>
         </e>
         <e>
             <k>@ktcommentsection</k>
-            <v>59896</v>
+            <v>52611</v>
         </e>
         <e>
             <k>@kt_property</k>
-            <v>30236718</v>
+            <v>21895839</v>
         </e>
     </typesizes>
     <stats>
@@ -880,30 +880,146 @@
         </relation>
         <relation>
             <name>compilation_started</name>
-            <cardinality>6806</cardinality>
+            <cardinality>7683</cardinality>
             <columnsizes>
                 <e>
                     <k>id</k>
-                    <v>6806</v>
+                    <v>7683</v>
                 </e>
             </columnsizes>
             <dependencies/>
         </relation>
         <relation>
-            <name>compilation_args</name>
-            <cardinality>157915</cardinality>
+            <name>compilation_info</name>
+            <cardinality>15366</cardinality>
             <columnsizes>
                 <e>
                     <k>id</k>
-                    <v>6806</v>
+                    <v>7683</v>
+                </e>
+                <e>
+                    <k>info_key</k>
+                    <v>3841</v>
+                </e>
+                <e>
+                    <k>info_value</k>
+                    <v>3841</v>
+                </e>
+            </columnsizes>
+            <dependencies>
+                <dep>
+                    <src>id</src>
+                    <trg>info_key</trg>
+                    <val>
+                        <hist>
+                            <budget>12</budget>
+                            <bs>
+                                <b>
+                                    <a>2</a>
+                                    <b>3</b>
+                                    <v>7683</v>
+                                </b>
+                            </bs>
+                        </hist>
+                    </val>
+                </dep>
+                <dep>
+                    <src>id</src>
+                    <trg>info_value</trg>
+                    <val>
+                        <hist>
+                            <budget>12</budget>
+                            <bs>
+                                <b>
+                                    <a>2</a>
+                                    <b>3</b>
+                                    <v>7683</v>
+                                </b>
+                            </bs>
+                        </hist>
+                    </val>
+                </dep>
+                <dep>
+                    <src>info_key</src>
+                    <trg>id</trg>
+                    <val>
+                        <hist>
+                            <budget>12</budget>
+                            <bs>
+                                <b>
+                                    <a>4</a>
+                                    <b>5</b>
+                                    <v>3841</v>
+                                </b>
+                            </bs>
+                        </hist>
+                    </val>
+                </dep>
+                <dep>
+                    <src>info_key</src>
+                    <trg>info_value</trg>
+                    <val>
+                        <hist>
+                            <budget>12</budget>
+                            <bs>
+                                <b>
+                                    <a>1</a>
+                                    <b>2</b>
+                                    <v>3841</v>
+                                </b>
+                            </bs>
+                        </hist>
+                    </val>
+                </dep>
+                <dep>
+                    <src>info_value</src>
+                    <trg>id</trg>
+                    <val>
+                        <hist>
+                            <budget>12</budget>
+                            <bs>
+                                <b>
+                                    <a>4</a>
+                                    <b>5</b>
+                                    <v>3841</v>
+                                </b>
+                            </bs>
+                        </hist>
+                    </val>
+                </dep>
+                <dep>
+                    <src>info_value</src>
+                    <trg>info_key</trg>
+                    <val>
+                        <hist>
+                            <budget>12</budget>
+                            <bs>
+                                <b>
+                                    <a>1</a>
+                                    <b>2</b>
+                                    <v>3841</v>
+                                </b>
+                            </bs>
+                        </hist>
+                    </val>
+                </dep>
+            </dependencies>
+        </relation>
+        <relation>
+            <name>compilation_args</name>
+            <cardinality>169035</cardinality>
+            <columnsizes>
+                <e>
+                    <k>id</k>
+                    <v>7683</v>
                 </e>
                 <e>
                     <k>num</k>
-                    <v>38117</v>
+                    <v>48021</v>
                 </e>
                 <e>
                     <k>arg</k>
-                    <v>89848</v>
+                    <v>90280</v>
                 </e>
             </columnsizes>
             <dependencies>
@@ -917,22 +1033,17 @@
                                 <b>
                                     <a>20</a>
                                     <b>21</b>
-                                    <v>2722</v>
+                                    <v>3841</v>
                                 </b>
                                 <b>
                                     <a>23</a>
                                     <b>24</b>
-                                    <v>1361</v>
+                                    <v>1920</v>
                                 </b>
                                 <b>
                                     <a>25</a>
                                     <b>26</b>
-                                    <v>1361</v>
-                                </b>
-                                <b>
-                                    <a>28</a>
-                                    <b>29</b>
-                                    <v>1361</v>
+                                    <v>1920</v>
                                 </b>
                             </bs>
                         </hist>
@@ -948,22 +1059,17 @@
                                 <b>
                                     <a>20</a>
                                     <b>21</b>
-                                    <v>2722</v>
+                                    <v>3841</v>
                                 </b>
                                 <b>
                                     <a>23</a>
                                     <b>24</b>
-                                    <v>1361</v>
+                                    <v>1920</v>
                                 </b>
                                 <b>
                                     <a>25</a>
                                     <b>26</b>
-                                    <v>1361</v>
-                                </b>
-                                <b>
-                                    <a>27</a>
-                                    <b>28</b>
-                                    <v>1361</v>
+                                    <v>1920</v>
                                 </b>
                             </bs>
                         </hist>
@@ -979,22 +1085,17 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>4084</v>
+                                    <v>3841</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>2722</v>
+                                    <v>5762</v>
                                 </b>
                                 <b>
-                                    <a>3</a>
-                                    <b>4</b>
-                                    <v>4084</v>
-                                </b>
-                                <b>
-                                    <a>5</a>
-                                    <b>6</b>
-                                    <v>27226</v>
+                                    <a>4</a>
+                                    <b>5</b>
+                                    <v>38417</v>
                                 </b>
                             </bs>
                         </hist>
@@ -1010,27 +1111,22 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>8168</v>
+                                    <v>9604</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>5445</v>
+                                    <v>17287</v>
                                 </b>
                                 <b>
                                     <a>3</a>
                                     <b>4</b>
-                                    <v>10890</v>
+                                    <v>11525</v>
                                 </b>
                                 <b>
                                     <a>4</a>
                                     <b>5</b>
-                                    <v>6806</v>
-                                </b>
-                                <b>
-                                    <a>5</a>
-                                    <b>6</b>
-                                    <v>6806</v>
+                                    <v>9604</v>
                                 </b>
                             </bs>
                         </hist>
@@ -1046,22 +1142,17 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>69428</v>
+                                    <v>61467</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>2722</v>
+                                    <v>3841</v>
                                 </b>
                                 <b>
                                     <a>4</a>
                                     <b>5</b>
-                                    <v>6806</v>
-                                </b>
-                                <b>
-                                    <a>5</a>
-                                    <b>6</b>
-                                    <v>10890</v>
+                                    <v>24971</v>
                                 </b>
                             </bs>
                         </hist>
@@ -1077,17 +1168,17 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>72151</v>
+                                    <v>67229</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>14974</v>
+                                    <v>19208</v>
                                 </b>
                                 <b>
-                                    <a>4</a>
-                                    <b>5</b>
-                                    <v>2722</v>
+                                    <a>3</a>
+                                    <b>4</b>
+                                    <v>3841</v>
                                 </b>
                             </bs>
                         </hist>
@@ -1097,19 +1188,19 @@
         </relation>
         <relation>
             <name>compilation_compiling_files</name>
-            <cardinality>61119</cardinality>
+            <cardinality>59495</cardinality>
             <columnsizes>
                 <e>
                     <k>id</k>
-                    <v>2337</v>
+                    <v>2275</v>
                 </e>
                 <e>
                     <k>num</k>
-                    <v>18035</v>
+                    <v>17556</v>
                 </e>
                 <e>
                     <k>file</k>
-                    <v>51099</v>
+                    <v>49742</v>
                 </e>
             </columnsizes>
             <dependencies>
@@ -1123,22 +1214,22 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>333</v>
+                                    <v>325</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>667</v>
+                                    <v>650</v>
                                 </b>
                                 <b>
                                     <a>35</a>
                                     <b>36</b>
-                                    <v>667</v>
+                                    <v>650</v>
                                 </b>
                                 <b>
                                     <a>54</a>
                                     <b>55</b>
-                                    <v>667</v>
+                                    <v>650</v>
                                 </b>
                             </bs>
                         </hist>
@@ -1154,22 +1245,22 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>333</v>
+                                    <v>325</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>667</v>
+                                    <v>650</v>
                                 </b>
                                 <b>
                                     <a>35</a>
                                     <b>36</b>
-                                    <v>667</v>
+                                    <v>650</v>
                                 </b>
                                 <b>
                                     <a>54</a>
                                     <b>55</b>
-                                    <v>667</v>
+                                    <v>650</v>
                                 </b>
                             </bs>
                         </hist>
@@ -1185,17 +1276,17 @@
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>6345</v>
+                                    <v>6177</v>
                                 </b>
                                 <b>
                                     <a>4</a>
                                     <b>5</b>
-                                    <v>11021</v>
+                                    <v>10728</v>
                                 </b>
                                 <b>
                                     <a>6</a>
                                     <b>8</b>
-                                    <v>667</v>
+                                    <v>650</v>
                                 </b>
                             </bs>
                         </hist>
@@ -1211,17 +1302,17 @@
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>6345</v>
+                                    <v>6177</v>
                                 </b>
                                 <b>
                                     <a>3</a>
                                     <b>4</b>
-                                    <v>10019</v>
+                                    <v>9753</v>
                                 </b>
                                 <b>
                                     <a>4</a>
                                     <b>8</b>
-                                    <v>1669</v>
+                                    <v>1625</v>
                                 </b>
                             </bs>
                         </hist>
@@ -1237,12 +1328,12 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>41080</v>
+                                    <v>39989</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>10019</v>
+                                    <v>9753</v>
                                 </b>
                             </bs>
                         </hist>
@@ -1258,7 +1349,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>51099</v>
+                                    <v>49742</v>
                                 </b>
                             </bs>
                         </hist>
@@ -1268,19 +1359,19 @@
         </relation>
         <relation>
             <name>compilation_compiling_files_completed</name>
-            <cardinality>61119</cardinality>
+            <cardinality>59495</cardinality>
             <columnsizes>
                 <e>
                     <k>id</k>
-                    <v>2337</v>
+                    <v>2275</v>
                 </e>
                 <e>
                     <k>num</k>
-                    <v>18035</v>
+                    <v>17556</v>
                 </e>
                 <e>
                     <k>result</k>
-                    <v>667</v>
+                    <v>325</v>
                 </e>
             </columnsizes>
             <dependencies>
@@ -1294,22 +1385,22 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>333</v>
+                                    <v>325</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>667</v>
+                                    <v>650</v>
                                 </b>
                                 <b>
                                     <a>35</a>
                                     <b>36</b>
-                                    <v>667</v>
+                                    <v>650</v>
                                 </b>
                                 <b>
                                     <a>54</a>
                                     <b>55</b>
-                                    <v>667</v>
+                                    <v>650</v>
                                 </b>
                             </bs>
                         </hist>
@@ -1325,12 +1416,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>1669</v>
-                                </b>
-                                <b>
-                                    <a>2</a>
-                                    <b>3</b>
-                                    <v>667</v>
+                                    <v>2275</v>
                                 </b>
                             </bs>
                         </hist>
@@ -1346,17 +1432,17 @@
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>6345</v>
+                                    <v>6177</v>
                                 </b>
                                 <b>
                                     <a>4</a>
                                     <b>5</b>
-                                    <v>11021</v>
+                                    <v>10728</v>
                                 </b>
                                 <b>
                                     <a>6</a>
                                     <b>8</b>
-                                    <v>667</v>
+                                    <v>650</v>
                                 </b>
                             </bs>
                         </hist>
@@ -1372,12 +1458,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>17701</v>
-                                </b>
-                                <b>
-                                    <a>2</a>
-                                    <b>3</b>
-                                    <v>333</v>
+                                    <v>17556</v>
                                 </b>
                             </bs>
                         </hist>
@@ -1390,15 +1471,10 @@
                         <hist>
                             <budget>12</budget>
                             <bs>
-                                <b>
-                                    <a>2</a>
-                                    <b>3</b>
-                                    <v>333</v>
-                                </b>
                                 <b>
                                     <a>7</a>
                                     <b>8</b>
-                                    <v>333</v>
+                                    <v>325</v>
                                 </b>
                             </bs>
                         </hist>
@@ -1411,15 +1487,10 @@
                         <hist>
                             <budget>12</budget>
                             <bs>
-                                <b>
-                                    <a>1</a>
-                                    <b>2</b>
-                                    <v>333</v>
-                                </b>
                                 <b>
                                     <a>54</a>
                                     <b>55</b>
-                                    <v>333</v>
+                                    <v>325</v>
                                 </b>
                             </bs>
                         </hist>
@@ -1429,7 +1500,7 @@
         </relation>
         <relation>
             <name>compilation_time</name>
-            <cardinality>196462</cardinality>
+            <cardinality>196471</cardinality>
             <columnsizes>
                 <e>
                     <k>id</k>
@@ -1437,7 +1508,7 @@
                 </e>
                 <e>
                     <k>num</k>
-                    <v>5143</v>
+                    <v>5144</v>
                 </e>
                 <e>
                     <k>kind</k>
@@ -1445,7 +1516,7 @@
                 </e>
                 <e>
                     <k>seconds</k>
-                    <v>89768</v>
+                    <v>89772</v>
                 </e>
             </columnsizes>
             <dependencies>
@@ -1658,7 +1729,7 @@
                                 <b>
                                     <a>4</a>
                                     <b>5</b>
-                                    <v>5143</v>
+                                    <v>5144</v>
                                 </b>
                             </bs>
                         </hist>
@@ -1793,7 +1864,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>89602</v>
+                                    <v>89606</v>
                                 </b>
                                 <b>
                                     <a>52</a>
@@ -1814,7 +1885,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>89602</v>
+                                    <v>89606</v>
                                 </b>
                                 <b>
                                     <a>31</a>
@@ -1835,7 +1906,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>89602</v>
+                                    <v>89606</v>
                                 </b>
                                 <b>
                                     <a>3</a>
@@ -1850,23 +1921,23 @@
         </relation>
         <relation>
             <name>diagnostic_for</name>
-            <cardinality>631661</cardinality>
+            <cardinality>61632</cardinality>
             <columnsizes>
                 <e>
                     <k>diagnostic</k>
-                    <v>631661</v>
+                    <v>61632</v>
                 </e>
                 <e>
                     <k>compilation</k>
-                    <v>6806</v>
+                    <v>574</v>
                 </e>
                 <e>
                     <k>file_number</k>
-                    <v>8168</v>
+                    <v>14797</v>
                 </e>
                 <e>
                     <k>file_number_diagnostic_number</k>
-                    <v>59898</v>
+                    <v>2154</v>
                 </e>
             </columnsizes>
             <dependencies>
@@ -1880,7 +1951,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>631661</v>
+                                    <v>61632</v>
                                 </b>
                             </bs>
                         </hist>
@@ -1896,7 +1967,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>631661</v>
+                                    <v>61632</v>
                                 </b>
                             </bs>
                         </hist>
@@ -1912,7 +1983,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>631661</v>
+                                    <v>61632</v>
                                 </b>
                             </bs>
                         </hist>
@@ -1926,24 +1997,24 @@
                             <budget>12</budget>
                             <bs>
                                 <b>
-                                    <a>73</a>
-                                    <b>74</b>
-                                    <v>1361</v>
+                                    <a>14</a>
+                                    <b>15</b>
+                                    <v>143</v>
                                 </b>
                                 <b>
-                                    <a>84</a>
-                                    <b>85</b>
-                                    <v>1361</v>
+                                    <a>28</a>
+                                    <b>29</b>
+                                    <v>143</v>
                                 </b>
                                 <b>
-                                    <a>100</a>
-                                    <b>101</b>
-                                    <v>2722</v>
+                                    <a>123</a>
+                                    <b>124</b>
+                                    <v>143</v>
                                 </b>
                                 <b>
-                                    <a>107</a>
-                                    <b>108</b>
-                                    <v>1361</v>
+                                    <a>264</a>
+                                    <b>265</b>
+                                    <v>143</v>
                                 </b>
                             </bs>
                         </hist>
@@ -1957,24 +2028,24 @@
                             <budget>12</budget>
                             <bs>
                                 <b>
-                                    <a>3</a>
-                                    <b>4</b>
-                                    <v>2722</v>
+                                    <a>7</a>
+                                    <b>8</b>
+                                    <v>143</v>
                                 </b>
                                 <b>
-                                    <a>4</a>
-                                    <b>5</b>
-                                    <v>1361</v>
+                                    <a>14</a>
+                                    <b>15</b>
+                                    <v>143</v>
                                 </b>
                                 <b>
-                                    <a>5</a>
-                                    <b>6</b>
-                                    <v>1361</v>
+                                    <a>45</a>
+                                    <b>46</b>
+                                    <v>143</v>
                                 </b>
                                 <b>
-                                    <a>6</a>
-                                    <b>7</b>
-                                    <v>1361</v>
+                                    <a>103</a>
+                                    <b>104</b>
+                                    <v>143</v>
                                 </b>
                             </bs>
                         </hist>
@@ -1988,29 +2059,19 @@
                             <budget>12</budget>
                             <bs>
                                 <b>
-                                    <a>29</a>
-                                    <b>30</b>
-                                    <v>1361</v>
+                                    <a>2</a>
+                                    <b>3</b>
+                                    <v>287</v>
                                 </b>
                                 <b>
-                                    <a>34</a>
-                                    <b>35</b>
-                                    <v>1361</v>
+                                    <a>14</a>
+                                    <b>15</b>
+                                    <v>143</v>
                                 </b>
                                 <b>
-                                    <a>40</a>
-                                    <b>41</b>
-                                    <v>1361</v>
-                                </b>
-                                <b>
-                                    <a>42</a>
-                                    <b>43</b>
-                                    <v>1361</v>
-                                </b>
-                                <b>
-                                    <a>44</a>
-                                    <b>45</b>
-                                    <v>1361</v>
+                                    <a>15</a>
+                                    <b>16</b>
+                                    <v>143</v>
                                 </b>
                             </bs>
                         </hist>
@@ -2019,47 +2080,6 @@
                 <dep>
                     <src>file_number</src>
                     <trg>diagnostic</trg>
-                    <val>
-                        <hist>
-                            <budget>12</budget>
-                            <bs>
-                                <b>
-                                    <a>6</a>
-                                    <b>7</b>
-                                    <v>1361</v>
-                                </b>
-                                <b>
-                                    <a>35</a>
-                                    <b>36</b>
-                                    <v>1361</v>
-                                </b>
-                                <b>
-                                    <a>49</a>
-                                    <b>50</b>
-                                    <v>1361</v>
-                                </b>
-                                <b>
-                                    <a>101</a>
-                                    <b>102</b>
-                                    <v>1361</v>
-                                </b>
-                                <b>
-                                    <a>129</a>
-                                    <b>130</b>
-                                    <v>1361</v>
-                                </b>
-                                <b>
-                                    <a>144</a>
-                                    <b>145</b>
-                                    <v>1361</v>
-                                </b>
-                            </bs>
-                        </hist>
-                    </val>
-                </dep>
-                <dep>
-                    <src>file_number</src>
-                    <trg>compilation</trg>
                     <val>
                         <hist>
                             <budget>12</budget>
@@ -2067,22 +2087,73 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>1361</v>
+                                    <v>143</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>1361</v>
+                                    <v>6464</v>
                                 </b>
                                 <b>
                                     <a>3</a>
                                     <b>4</b>
-                                    <v>1361</v>
+                                    <v>718</v>
+                                </b>
+                                <b>
+                                    <a>4</a>
+                                    <b>5</b>
+                                    <v>3160</v>
                                 </b>
                                 <b>
                                     <a>5</a>
                                     <b>6</b>
-                                    <v>4084</v>
+                                    <v>1292</v>
+                                </b>
+                                <b>
+                                    <a>6</a>
+                                    <b>8</b>
+                                    <v>1149</v>
+                                </b>
+                                <b>
+                                    <a>8</a>
+                                    <b>11</b>
+                                    <v>1292</v>
+                                </b>
+                                <b>
+                                    <a>12</a>
+                                    <b>21</b>
+                                    <v>574</v>
+                                </b>
+                            </bs>
+                        </hist>
+                    </val>
+                </dep>
+                <dep>
+                    <src>file_number</src>
+                    <trg>compilation</trg>
+                    <val>
+                        <hist>
+                            <budget>12</budget>
+                            <bs>
+                                <b>
+                                    <a>1</a>
+                                    <b>2</b>
+                                    <v>8332</v>
+                                </b>
+                                <b>
+                                    <a>2</a>
+                                    <b>3</b>
+                                    <v>4453</v>
+                                </b>
+                                <b>
+                                    <a>3</a>
+                                    <b>4</b>
+                                    <v>1005</v>
+                                </b>
+                                <b>
+                                    <a>4</a>
+                                    <b>5</b>
+                                    <v>1005</v>
                                 </b>
                             </bs>
                         </hist>
@@ -2096,34 +2167,34 @@
                             <budget>12</budget>
                             <bs>
                                 <b>
-                                    <a>6</a>
-                                    <b>7</b>
-                                    <v>1361</v>
+                                    <a>1</a>
+                                    <b>2</b>
+                                    <v>143</v>
                                 </b>
                                 <b>
-                                    <a>15</a>
+                                    <a>2</a>
+                                    <b>3</b>
+                                    <v>10056</v>
+                                </b>
+                                <b>
+                                    <a>3</a>
+                                    <b>4</b>
+                                    <v>2011</v>
+                                </b>
+                                <b>
+                                    <a>4</a>
+                                    <b>5</b>
+                                    <v>1005</v>
+                                </b>
+                                <b>
+                                    <a>5</a>
+                                    <b>8</b>
+                                    <v>1149</v>
+                                </b>
+                                <b>
+                                    <a>10</a>
                                     <b>16</b>
-                                    <v>1361</v>
-                                </b>
-                                <b>
-                                    <a>34</a>
-                                    <b>35</b>
-                                    <v>1361</v>
-                                </b>
-                                <b>
-                                    <a>40</a>
-                                    <b>41</b>
-                                    <v>1361</v>
-                                </b>
-                                <b>
-                                    <a>42</a>
-                                    <b>43</b>
-                                    <v>1361</v>
-                                </b>
-                                <b>
-                                    <a>44</a>
-                                    <b>45</b>
-                                    <v>1361</v>
+                                    <v>430</v>
                                 </b>
                             </bs>
                         </hist>
@@ -2138,58 +2209,53 @@
                             <bs>
                                 <b>
                                     <a>1</a>
-                                    <b>3</b>
-                                    <v>5445</v>
+                                    <b>2</b>
+                                    <v>143</v>
                                 </b>
                                 <b>
-                                    <a>4</a>
-                                    <b>5</b>
-                                    <v>6806</v>
+                                    <a>2</a>
+                                    <b>3</b>
+                                    <v>574</v>
+                                </b>
+                                <b>
+                                    <a>3</a>
+                                    <b>4</b>
+                                    <v>430</v>
                                 </b>
                                 <b>
                                     <a>5</a>
                                     <b>6</b>
-                                    <v>1361</v>
+                                    <v>143</v>
                                 </b>
                                 <b>
                                     <a>7</a>
                                     <b>8</b>
-                                    <v>6806</v>
+                                    <v>143</v>
                                 </b>
                                 <b>
-                                    <a>8</a>
-                                    <b>9</b>
-                                    <v>4084</v>
-                                </b>
-                                <b>
-                                    <a>9</a>
-                                    <b>10</b>
-                                    <v>9529</v>
-                                </b>
-                                <b>
-                                    <a>10</a>
-                                    <b>14</b>
-                                    <v>5445</v>
-                                </b>
-                                <b>
-                                    <a>15</a>
-                                    <b>16</b>
-                                    <v>2722</v>
-                                </b>
-                                <b>
-                                    <a>16</a>
-                                    <b>17</b>
-                                    <v>8168</v>
+                                    <a>11</a>
+                                    <b>12</b>
+                                    <v>143</v>
                                 </b>
                                 <b>
                                     <a>18</a>
-                                    <b>20</b>
-                                    <v>4084</v>
+                                    <b>19</b>
+                                    <v>143</v>
                                 </b>
                                 <b>
-                                    <a>20</a>
-                                    <b>22</b>
-                                    <v>5445</v>
+                                    <a>33</a>
+                                    <b>34</b>
+                                    <v>143</v>
+                                </b>
+                                <b>
+                                    <a>168</a>
+                                    <b>169</b>
+                                    <v>143</v>
+                                </b>
+                                <b>
+                                    <a>169</a>
+                                    <b>170</b>
+                                    <v>143</v>
                                 </b>
                             </bs>
                         </hist>
@@ -2204,23 +2270,18 @@
                             <bs>
                                 <b>
                                     <a>1</a>
-                                    <b>3</b>
-                                    <v>5445</v>
+                                    <b>2</b>
+                                    <v>143</v>
                                 </b>
                                 <b>
-                                    <a>3</a>
-                                    <b>4</b>
-                                    <v>8168</v>
+                                    <a>2</a>
+                                    <b>3</b>
+                                    <v>1723</v>
                                 </b>
                                 <b>
                                     <a>4</a>
                                     <b>5</b>
-                                    <v>6806</v>
-                                </b>
-                                <b>
-                                    <a>5</a>
-                                    <b>6</b>
-                                    <v>39478</v>
+                                    <v>287</v>
                                 </b>
                             </bs>
                         </hist>
@@ -2235,28 +2296,53 @@
                             <bs>
                                 <b>
                                     <a>1</a>
+                                    <b>2</b>
+                                    <v>143</v>
+                                </b>
+                                <b>
+                                    <a>2</a>
                                     <b>3</b>
-                                    <v>5445</v>
+                                    <v>574</v>
                                 </b>
                                 <b>
                                     <a>3</a>
                                     <b>4</b>
-                                    <v>8168</v>
-                                </b>
-                                <b>
-                                    <a>4</a>
-                                    <b>5</b>
-                                    <v>25865</v>
+                                    <v>430</v>
                                 </b>
                                 <b>
                                     <a>5</a>
                                     <b>6</b>
-                                    <v>12252</v>
+                                    <v>143</v>
                                 </b>
                                 <b>
-                                    <a>6</a>
-                                    <b>7</b>
-                                    <v>8168</v>
+                                    <a>7</a>
+                                    <b>8</b>
+                                    <v>143</v>
+                                </b>
+                                <b>
+                                    <a>11</a>
+                                    <b>12</b>
+                                    <v>143</v>
+                                </b>
+                                <b>
+                                    <a>18</a>
+                                    <b>19</b>
+                                    <v>143</v>
+                                </b>
+                                <b>
+                                    <a>32</a>
+                                    <b>33</b>
+                                    <v>143</v>
+                                </b>
+                                <b>
+                                    <a>102</a>
+                                    <b>103</b>
+                                    <v>143</v>
+                                </b>
+                                <b>
+                                    <a>103</a>
+                                    <b>104</b>
+                                    <v>143</v>
                                 </b>
                             </bs>
                         </hist>
@@ -2266,19 +2352,19 @@
         </relation>
         <relation>
             <name>compilation_compiler_times</name>
-            <cardinality>6806</cardinality>
+            <cardinality>7683</cardinality>
             <columnsizes>
                 <e>
                     <k>id</k>
-                    <v>6806</v>
+                    <v>7683</v>
                 </e>
                 <e>
                     <k>cpu_seconds</k>
-                    <v>1361</v>
+                    <v>1920</v>
                 </e>
                 <e>
                     <k>elapsed_seconds</k>
-                    <v>6806</v>
+                    <v>7683</v>
                 </e>
             </columnsizes>
             <dependencies>
@@ -2292,7 +2378,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>6806</v>
+                                    <v>7683</v>
                                 </b>
                             </bs>
                         </hist>
@@ -2308,7 +2394,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>6806</v>
+                                    <v>7683</v>
                                 </b>
                             </bs>
                         </hist>
@@ -2322,9 +2408,9 @@
                             <budget>12</budget>
                             <bs>
                                 <b>
-                                    <a>5</a>
-                                    <b>6</b>
-                                    <v>1361</v>
+                                    <a>4</a>
+                                    <b>5</b>
+                                    <v>1920</v>
                                 </b>
                             </bs>
                         </hist>
@@ -2338,9 +2424,9 @@
                             <budget>12</budget>
                             <bs>
                                 <b>
-                                    <a>5</a>
-                                    <b>6</b>
-                                    <v>1361</v>
+                                    <a>4</a>
+                                    <b>5</b>
+                                    <v>1920</v>
                                 </b>
                             </bs>
                         </hist>
@@ -2356,7 +2442,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>6806</v>
+                                    <v>7683</v>
                                 </b>
                             </bs>
                         </hist>
@@ -2372,7 +2458,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>6806</v>
+                                    <v>7683</v>
                                 </b>
                             </bs>
                         </hist>
@@ -2598,35 +2684,35 @@
         </relation>
         <relation>
             <name>diagnostics</name>
-            <cardinality>631661</cardinality>
+            <cardinality>61632</cardinality>
             <columnsizes>
                 <e>
                     <k>id</k>
-                    <v>631661</v>
+                    <v>61632</v>
                 </e>
                 <e>
                     <k>generated_by</k>
-                    <v>1361</v>
+                    <v>143</v>
                 </e>
                 <e>
                     <k>severity</k>
-                    <v>1361</v>
+                    <v>143</v>
                 </e>
                 <e>
                     <k>error_tag</k>
-                    <v>1361</v>
+                    <v>143</v>
                 </e>
                 <e>
                     <k>error_message</k>
-                    <v>96655</v>
+                    <v>1580</v>
                 </e>
                 <e>
                     <k>full_error_message</k>
-                    <v>520031</v>
+                    <v>40944</v>
                 </e>
                 <e>
                     <k>location</k>
-                    <v>1361</v>
+                    <v>143</v>
                 </e>
             </columnsizes>
             <dependencies>
@@ -2640,7 +2726,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>631661</v>
+                                    <v>61632</v>
                                 </b>
                             </bs>
                         </hist>
@@ -2656,7 +2742,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>631661</v>
+                                    <v>61632</v>
                                 </b>
                             </bs>
                         </hist>
@@ -2672,7 +2758,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>631661</v>
+                                    <v>61632</v>
                                 </b>
                             </bs>
                         </hist>
@@ -2688,7 +2774,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>631661</v>
+                                    <v>61632</v>
                                 </b>
                             </bs>
                         </hist>
@@ -2704,7 +2790,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>631661</v>
+                                    <v>61632</v>
                                 </b>
                             </bs>
                         </hist>
@@ -2720,7 +2806,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>631661</v>
+                                    <v>61632</v>
                                 </b>
                             </bs>
                         </hist>
@@ -2734,9 +2820,9 @@
                             <budget>12</budget>
                             <bs>
                                 <b>
-                                    <a>464</a>
-                                    <b>465</b>
-                                    <v>1361</v>
+                                    <a>429</a>
+                                    <b>430</b>
+                                    <v>143</v>
                                 </b>
                             </bs>
                         </hist>
@@ -2752,7 +2838,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>1361</v>
+                                    <v>143</v>
                                 </b>
                             </bs>
                         </hist>
@@ -2768,7 +2854,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>1361</v>
+                                    <v>143</v>
                                 </b>
                             </bs>
                         </hist>
@@ -2782,9 +2868,9 @@
                             <budget>12</budget>
                             <bs>
                                 <b>
-                                    <a>71</a>
-                                    <b>72</b>
-                                    <v>1361</v>
+                                    <a>11</a>
+                                    <b>12</b>
+                                    <v>143</v>
                                 </b>
                             </bs>
                         </hist>
@@ -2798,9 +2884,9 @@
                             <budget>12</budget>
                             <bs>
                                 <b>
-                                    <a>382</a>
-                                    <b>383</b>
-                                    <v>1361</v>
+                                    <a>285</a>
+                                    <b>286</b>
+                                    <v>143</v>
                                 </b>
                             </bs>
                         </hist>
@@ -2816,7 +2902,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>1361</v>
+                                    <v>143</v>
                                 </b>
                             </bs>
                         </hist>
@@ -2830,9 +2916,9 @@
                             <budget>12</budget>
                             <bs>
                                 <b>
-                                    <a>464</a>
-                                    <b>465</b>
-                                    <v>1361</v>
+                                    <a>429</a>
+                                    <b>430</b>
+                                    <v>143</v>
                                 </b>
                             </bs>
                         </hist>
@@ -2848,7 +2934,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>1361</v>
+                                    <v>143</v>
                                 </b>
                             </bs>
                         </hist>
@@ -2864,7 +2950,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>1361</v>
+                                    <v>143</v>
                                 </b>
                             </bs>
                         </hist>
@@ -2878,9 +2964,9 @@
                             <budget>12</budget>
                             <bs>
                                 <b>
-                                    <a>71</a>
-                                    <b>72</b>
-                                    <v>1361</v>
+                                    <a>11</a>
+                                    <b>12</b>
+                                    <v>143</v>
                                 </b>
                             </bs>
                         </hist>
@@ -2894,9 +2980,9 @@
                             <budget>12</budget>
                             <bs>
                                 <b>
-                                    <a>382</a>
-                                    <b>383</b>
-                                    <v>1361</v>
+                                    <a>285</a>
+                                    <b>286</b>
+                                    <v>143</v>
                                 </b>
                             </bs>
                         </hist>
@@ -2912,7 +2998,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>1361</v>
+                                    <v>143</v>
                                 </b>
                             </bs>
                         </hist>
@@ -2926,9 +3012,9 @@
                             <budget>12</budget>
                             <bs>
                                 <b>
-                                    <a>464</a>
-                                    <b>465</b>
-                                    <v>1361</v>
+                                    <a>429</a>
+                                    <b>430</b>
+                                    <v>143</v>
                                 </b>
                             </bs>
                         </hist>
@@ -2944,7 +3030,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>1361</v>
+                                    <v>143</v>
                                 </b>
                             </bs>
                         </hist>
@@ -2960,7 +3046,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>1361</v>
+                                    <v>143</v>
                                 </b>
                             </bs>
                         </hist>
@@ -2974,9 +3060,9 @@
                             <budget>12</budget>
                             <bs>
                                 <b>
-                                    <a>71</a>
-                                    <b>72</b>
-                                    <v>1361</v>
+                                    <a>11</a>
+                                    <b>12</b>
+                                    <v>143</v>
                                 </b>
                             </bs>
                         </hist>
@@ -2990,9 +3076,9 @@
                             <budget>12</budget>
                             <bs>
                                 <b>
-                                    <a>382</a>
-                                    <b>383</b>
-                                    <v>1361</v>
+                                    <a>285</a>
+                                    <b>286</b>
+                                    <v>143</v>
                                 </b>
                             </bs>
                         </hist>
@@ -3008,7 +3094,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>1361</v>
+                                    <v>143</v>
                                 </b>
                             </bs>
                         </hist>
@@ -3024,62 +3110,47 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>19058</v>
+                                    <v>143</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>5445</v>
+                                    <v>143</v>
                                 </b>
                                 <b>
                                     <a>3</a>
                                     <b>4</b>
-                                    <v>12252</v>
-                                </b>
-                                <b>
-                                    <a>4</a>
-                                    <b>5</b>
-                                    <v>5445</v>
-                                </b>
-                                <b>
-                                    <a>5</a>
-                                    <b>6</b>
-                                    <v>5445</v>
+                                    <v>143</v>
                                 </b>
                                 <b>
                                     <a>6</a>
                                     <b>7</b>
-                                    <v>8168</v>
-                                </b>
-                                <b>
-                                    <a>7</a>
-                                    <b>8</b>
-                                    <v>2722</v>
-                                </b>
-                                <b>
-                                    <a>8</a>
-                                    <b>9</b>
-                                    <v>9529</v>
+                                    <v>143</v>
                                 </b>
                                 <b>
                                     <a>9</a>
                                     <b>10</b>
-                                    <v>6806</v>
+                                    <v>143</v>
                                 </b>
                                 <b>
-                                    <a>10</a>
-                                    <b>11</b>
-                                    <v>8168</v>
+                                    <a>12</a>
+                                    <b>13</b>
+                                    <v>287</v>
                                 </b>
                                 <b>
-                                    <a>14</a>
-                                    <b>17</b>
-                                    <v>6806</v>
+                                    <a>24</a>
+                                    <b>25</b>
+                                    <v>143</v>
                                 </b>
                                 <b>
-                                    <a>17</a>
-                                    <b>21</b>
-                                    <v>6806</v>
+                                    <a>28</a>
+                                    <b>29</b>
+                                    <v>143</v>
+                                </b>
+                                <b>
+                                    <a>166</a>
+                                    <b>167</b>
+                                    <v>287</v>
                                 </b>
                             </bs>
                         </hist>
@@ -3095,7 +3166,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>96655</v>
+                                    <v>1580</v>
                                 </b>
                             </bs>
                         </hist>
@@ -3111,7 +3182,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>96655</v>
+                                    <v>1580</v>
                                 </b>
                             </bs>
                         </hist>
@@ -3127,7 +3198,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>96655</v>
+                                    <v>1580</v>
                                 </b>
                             </bs>
                         </hist>
@@ -3143,57 +3214,52 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>21781</v>
+                                    <v>143</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>5445</v>
+                                    <v>143</v>
                                 </b>
                                 <b>
                                     <a>3</a>
                                     <b>4</b>
-                                    <v>12252</v>
-                                </b>
-                                <b>
-                                    <a>4</a>
-                                    <b>5</b>
-                                    <v>5445</v>
-                                </b>
-                                <b>
-                                    <a>5</a>
-                                    <b>6</b>
-                                    <v>4084</v>
+                                    <v>143</v>
                                 </b>
                                 <b>
                                     <a>6</a>
                                     <b>7</b>
-                                    <v>8168</v>
-                                </b>
-                                <b>
-                                    <a>7</a>
-                                    <b>8</b>
-                                    <v>12252</v>
-                                </b>
-                                <b>
-                                    <a>8</a>
-                                    <b>9</b>
-                                    <v>6806</v>
+                                    <v>143</v>
                                 </b>
                                 <b>
                                     <a>9</a>
-                                    <b>11</b>
-                                    <v>8168</v>
-                                </b>
-                                <b>
-                                    <a>11</a>
-                                    <b>12</b>
-                                    <v>6806</v>
+                                    <b>10</b>
+                                    <v>143</v>
                                 </b>
                                 <b>
                                     <a>12</a>
-                                    <b>14</b>
-                                    <v>5445</v>
+                                    <b>13</b>
+                                    <v>287</v>
+                                </b>
+                                <b>
+                                    <a>22</a>
+                                    <b>23</b>
+                                    <v>143</v>
+                                </b>
+                                <b>
+                                    <a>24</a>
+                                    <b>25</b>
+                                    <v>143</v>
+                                </b>
+                                <b>
+                                    <a>28</a>
+                                    <b>29</b>
+                                    <v>143</v>
+                                </b>
+                                <b>
+                                    <a>166</a>
+                                    <b>167</b>
+                                    <v>143</v>
                                 </b>
                             </bs>
                         </hist>
@@ -3209,7 +3275,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>96655</v>
+                                    <v>1580</v>
                                 </b>
                             </bs>
                         </hist>
@@ -3225,17 +3291,12 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>441074</v>
+                                    <v>38358</v>
                                 </b>
                                 <b>
                                     <a>2</a>
-                                    <b>3</b>
-                                    <v>51730</v>
-                                </b>
-                                <b>
-                                    <a>3</a>
-                                    <b>5</b>
-                                    <v>27226</v>
+                                    <b>25</b>
+                                    <v>2585</v>
                                 </b>
                             </bs>
                         </hist>
@@ -3251,7 +3312,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>520031</v>
+                                    <v>40944</v>
                                 </b>
                             </bs>
                         </hist>
@@ -3267,7 +3328,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>520031</v>
+                                    <v>40944</v>
                                 </b>
                             </bs>
                         </hist>
@@ -3283,7 +3344,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>520031</v>
+                                    <v>40944</v>
                                 </b>
                             </bs>
                         </hist>
@@ -3299,7 +3360,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>520031</v>
+                                    <v>40944</v>
                                 </b>
                             </bs>
                         </hist>
@@ -3315,7 +3376,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>520031</v>
+                                    <v>40944</v>
                                 </b>
                             </bs>
                         </hist>
@@ -3329,9 +3390,9 @@
                             <budget>12</budget>
                             <bs>
                                 <b>
-                                    <a>464</a>
-                                    <b>465</b>
-                                    <v>1361</v>
+                                    <a>429</a>
+                                    <b>430</b>
+                                    <v>143</v>
                                 </b>
                             </bs>
                         </hist>
@@ -3347,7 +3408,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>1361</v>
+                                    <v>143</v>
                                 </b>
                             </bs>
                         </hist>
@@ -3363,7 +3424,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>1361</v>
+                                    <v>143</v>
                                 </b>
                             </bs>
                         </hist>
@@ -3379,7 +3440,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>1361</v>
+                                    <v>143</v>
                                 </b>
                             </bs>
                         </hist>
@@ -3393,9 +3454,9 @@
                             <budget>12</budget>
                             <bs>
                                 <b>
-                                    <a>71</a>
-                                    <b>72</b>
-                                    <v>1361</v>
+                                    <a>11</a>
+                                    <b>12</b>
+                                    <v>143</v>
                                 </b>
                             </bs>
                         </hist>
@@ -3409,9 +3470,9 @@
                             <budget>12</budget>
                             <bs>
                                 <b>
-                                    <a>382</a>
-                                    <b>383</b>
-                                    <v>1361</v>
+                                    <a>285</a>
+                                    <b>286</b>
+                                    <v>143</v>
                                 </b>
                             </bs>
                         </hist>
@@ -3576,11 +3637,11 @@
         </relation>
         <relation>
             <name>sourceLocationPrefix</name>
-            <cardinality>1361</cardinality>
+            <cardinality>1920</cardinality>
             <columnsizes>
                 <e>
                     <k>prefix</k>
-                    <v>1361</v>
+                    <v>1920</v>
                 </e>
             </columnsizes>
             <dependencies/>
@@ -4867,31 +4928,31 @@
         </relation>
         <relation>
             <name>locations_default</name>
-            <cardinality>430051334</cardinality>
+            <cardinality>602747369</cardinality>
             <columnsizes>
                 <e>
                     <k>id</k>
-                    <v>430051334</v>
+                    <v>602747369</v>
                 </e>
                 <e>
                     <k>file</k>
-                    <v>7997871</v>
+                    <v>9158642</v>
                 </e>
                 <e>
                     <k>beginLine</k>
-                    <v>2794830</v>
+                    <v>3943517</v>
                 </e>
                 <e>
                     <k>beginColumn</k>
-                    <v>175612</v>
+                    <v>247790</v>
                 </e>
                 <e>
                     <k>endLine</k>
-                    <v>2796191</v>
+                    <v>3945438</v>
                 </e>
                 <e>
                     <k>endColumn</k>
-                    <v>619409</v>
+                    <v>873989</v>
                 </e>
             </columnsizes>
             <dependencies>
@@ -4905,7 +4966,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>430051334</v>
+                                    <v>602747369</v>
                                 </b>
                             </bs>
                         </hist>
@@ -4921,7 +4982,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>430051334</v>
+                                    <v>602747369</v>
                                 </b>
                             </bs>
                         </hist>
@@ -4937,7 +4998,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>430051334</v>
+                                    <v>602747369</v>
                                 </b>
                             </bs>
                         </hist>
@@ -4953,7 +5014,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>430051334</v>
+                                    <v>602747369</v>
                                 </b>
                             </bs>
                         </hist>
@@ -4969,7 +5030,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>430051334</v>
+                                    <v>602747369</v>
                                 </b>
                             </bs>
                         </hist>
@@ -4985,17 +5046,17 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>7159286</v>
+                                    <v>7986919</v>
                                 </b>
                                 <b>
                                     <a>2</a>
-                                    <b>20</b>
-                                    <v>603073</v>
+                                    <b>11</b>
+                                    <v>714558</v>
                                 </b>
                                 <b>
-                                    <a>20</a>
+                                    <a>11</a>
                                     <b>3605</b>
-                                    <v>235511</v>
+                                    <v>457163</v>
                                 </b>
                             </bs>
                         </hist>
@@ -5011,17 +5072,17 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>7159286</v>
+                                    <v>7986919</v>
                                 </b>
                                 <b>
                                     <a>2</a>
-                                    <b>15</b>
-                                    <v>600350</v>
+                                    <b>9</b>
+                                    <v>712637</v>
                                 </b>
                                 <b>
-                                    <a>15</a>
+                                    <a>9</a>
                                     <b>1830</b>
-                                    <v>238234</v>
+                                    <v>459084</v>
                                 </b>
                             </bs>
                         </hist>
@@ -5037,17 +5098,17 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>7159286</v>
+                                    <v>7986919</v>
                                 </b>
                                 <b>
                                     <a>2</a>
-                                    <b>7</b>
-                                    <v>627577</v>
+                                    <b>5</b>
+                                    <v>776025</v>
                                 </b>
                                 <b>
-                                    <a>7</a>
+                                    <a>5</a>
                                     <b>105</b>
-                                    <v>211007</v>
+                                    <v>395696</v>
                                 </b>
                             </bs>
                         </hist>
@@ -5063,17 +5124,17 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>7159286</v>
+                                    <v>7986919</v>
                                 </b>
                                 <b>
                                     <a>2</a>
-                                    <b>18</b>
-                                    <v>600350</v>
+                                    <b>10</b>
+                                    <v>693429</v>
                                 </b>
                                 <b>
-                                    <a>18</a>
+                                    <a>10</a>
                                     <b>1834</b>
-                                    <v>238234</v>
+                                    <v>478293</v>
                                 </b>
                             </bs>
                         </hist>
@@ -5089,17 +5150,17 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>7159286</v>
+                                    <v>7986919</v>
                                 </b>
                                 <b>
                                     <a>2</a>
-                                    <b>15</b>
-                                    <v>603073</v>
+                                    <b>9</b>
+                                    <v>695349</v>
                                 </b>
                                 <b>
-                                    <a>15</a>
+                                    <a>9</a>
                                     <b>205</b>
-                                    <v>235511</v>
+                                    <v>476372</v>
                                 </b>
                             </bs>
                         </hist>
@@ -5115,67 +5176,67 @@
                                 <b>
                                     <a>1</a>
                                     <b>14</b>
-                                    <v>221898</v>
+                                    <v>313099</v>
                                 </b>
                                 <b>
                                     <a>14</a>
                                     <b>125</b>
-                                    <v>215091</v>
+                                    <v>301574</v>
                                 </b>
                                 <b>
                                     <a>125</a>
                                     <b>142</b>
-                                    <v>215091</v>
+                                    <v>307336</v>
                                 </b>
                                 <b>
                                     <a>142</a>
                                     <b>152</b>
-                                    <v>223259</v>
+                                    <v>316941</v>
                                 </b>
                                 <b>
                                     <a>152</a>
                                     <b>159</b>
-                                    <v>249125</v>
+                                    <v>359200</v>
                                 </b>
                                 <b>
                                     <a>159</a>
-                                    <b>165</b>
-                                    <v>257293</v>
+                                    <b>164</b>
+                                    <v>272761</v>
                                 </b>
                                 <b>
-                                    <a>165</a>
-                                    <b>170</b>
-                                    <v>225982</v>
+                                    <a>164</a>
+                                    <b>169</b>
+                                    <v>343833</v>
                                 </b>
                                 <b>
-                                    <a>170</a>
-                                    <b>174</b>
-                                    <v>216453</v>
+                                    <a>169</a>
+                                    <b>173</b>
+                                    <v>299653</v>
                                 </b>
                                 <b>
-                                    <a>174</a>
-                                    <b>179</b>
-                                    <v>228705</v>
+                                    <a>173</a>
+                                    <b>178</b>
+                                    <v>332308</v>
                                 </b>
                                 <b>
-                                    <a>179</a>
-                                    <b>185</b>
-                                    <v>213730</v>
+                                    <a>178</a>
+                                    <b>184</b>
+                                    <v>347674</v>
                                 </b>
                                 <b>
-                                    <a>185</a>
-                                    <b>194</b>
-                                    <v>221898</v>
+                                    <a>184</a>
+                                    <b>193</b>
+                                    <v>316941</v>
                                 </b>
                                 <b>
-                                    <a>194</a>
-                                    <b>215</b>
-                                    <v>215091</v>
+                                    <a>193</a>
+                                    <b>211</b>
+                                    <v>297732</v>
                                 </b>
                                 <b>
-                                    <a>215</a>
-                                    <b>5876</b>
-                                    <v>91209</v>
+                                    <a>211</a>
+                                    <b>4769</b>
+                                    <v>134459</v>
                                 </b>
                             </bs>
                         </hist>
@@ -5191,67 +5252,72 @@
                                 <b>
                                     <a>1</a>
                                     <b>7</b>
-                                    <v>228705</v>
+                                    <v>322703</v>
                                 </b>
                                 <b>
                                     <a>7</a>
                                     <b>65</b>
-                                    <v>212369</v>
+                                    <v>299653</v>
                                 </b>
                                 <b>
                                     <a>65</a>
                                     <b>73</b>
-                                    <v>216453</v>
+                                    <v>307336</v>
                                 </b>
                                 <b>
                                     <a>73</a>
                                     <b>78</b>
-                                    <v>206923</v>
+                                    <v>295811</v>
                                 </b>
                                 <b>
                                     <a>78</a>
                                     <b>81</b>
-                                    <v>190587</v>
+                                    <v>265078</v>
                                 </b>
                                 <b>
                                     <a>81</a>
                                     <b>84</b>
-                                    <v>249125</v>
+                                    <v>357279</v>
                                 </b>
                                 <b>
                                     <a>84</a>
                                     <b>86</b>
-                                    <v>215091</v>
+                                    <v>299653</v>
                                 </b>
                                 <b>
                                     <a>86</a>
-                                    <b>88</b>
-                                    <v>257293</v>
+                                    <b>87</b>
+                                    <v>188243</v>
                                 </b>
                                 <b>
-                                    <a>88</a>
-                                    <b>90</b>
-                                    <v>221898</v>
+                                    <a>87</a>
+                                    <b>89</b>
+                                    <v>357279</v>
                                 </b>
                                 <b>
-                                    <a>90</a>
-                                    <b>93</b>
-                                    <v>247763</v>
+                                    <a>89</a>
+                                    <b>91</b>
+                                    <v>259315</v>
                                 </b>
                                 <b>
-                                    <a>93</a>
-                                    <b>97</b>
-                                    <v>217814</v>
+                                    <a>91</a>
+                                    <b>94</b>
+                                    <v>324624</v>
                                 </b>
                                 <b>
-                                    <a>97</a>
-                                    <b>106</b>
-                                    <v>213730</v>
+                                    <a>94</a>
+                                    <b>99</b>
+                                    <v>328466</v>
                                 </b>
                                 <b>
-                                    <a>106</a>
-                                    <b>5876</b>
-                                    <v>117075</v>
+                                    <a>99</a>
+                                    <b>141</b>
+                                    <v>295811</v>
+                                </b>
+                                <b>
+                                    <a>141</a>
+                                    <b>4769</b>
+                                    <v>42258</v>
                                 </b>
                             </bs>
                         </hist>
@@ -5267,62 +5333,62 @@
                                 <b>
                                     <a>1</a>
                                     <b>5</b>
-                                    <v>221898</v>
+                                    <v>313099</v>
                                 </b>
                                 <b>
                                     <a>5</a>
                                     <b>17</b>
-                                    <v>196032</v>
+                                    <v>280444</v>
                                 </b>
                                 <b>
                                     <a>17</a>
                                     <b>19</b>
-                                    <v>167444</v>
+                                    <v>251632</v>
                                 </b>
                                 <b>
                                     <a>19</a>
                                     <b>20</b>
-                                    <v>213730</v>
+                                    <v>309257</v>
                                 </b>
                                 <b>
                                     <a>20</a>
                                     <b>21</b>
-                                    <v>268183</v>
+                                    <v>403379</v>
                                 </b>
                                 <b>
                                     <a>21</a>
                                     <b>22</b>
-                                    <v>283158</v>
+                                    <v>420667</v>
                                 </b>
                                 <b>
                                     <a>22</a>
                                     <b>23</b>
-                                    <v>329444</v>
+                                    <v>476372</v>
                                 </b>
                                 <b>
                                     <a>23</a>
                                     <b>24</b>
-                                    <v>303578</v>
+                                    <v>457163</v>
                                 </b>
                                 <b>
                                     <a>24</a>
                                     <b>25</b>
-                                    <v>235511</v>
+                                    <v>339991</v>
                                 </b>
                                 <b>
                                     <a>25</a>
                                     <b>26</b>
-                                    <v>170167</v>
+                                    <v>213215</v>
                                 </b>
                                 <b>
                                     <a>26</a>
-                                    <b>28</b>
-                                    <v>212369</v>
+                                    <b>29</b>
+                                    <v>361120</v>
                                 </b>
                                 <b>
-                                    <a>28</a>
-                                    <b>45</b>
-                                    <v>193310</v>
+                                    <a>29</a>
+                                    <b>40</b>
+                                    <v>117172</v>
                                 </b>
                             </bs>
                         </hist>
@@ -5338,32 +5404,32 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>902568</v>
+                                    <v>1273527</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>894400</v>
+                                    <v>1265844</v>
                                 </b>
                                 <b>
                                     <a>3</a>
                                     <b>4</b>
-                                    <v>481914</v>
+                                    <v>674220</v>
                                 </b>
                                 <b>
                                     <a>4</a>
                                     <b>5</b>
-                                    <v>211007</v>
+                                    <v>299653</v>
                                 </b>
                                 <b>
                                     <a>5</a>
                                     <b>11</b>
-                                    <v>220537</v>
+                                    <v>307336</v>
                                 </b>
                                 <b>
                                     <a>11</a>
                                     <b>97</b>
-                                    <v>84403</v>
+                                    <v>122934</v>
                                 </b>
                             </bs>
                         </hist>
@@ -5379,72 +5445,72 @@
                                 <b>
                                     <a>1</a>
                                     <b>13</b>
-                                    <v>219175</v>
+                                    <v>309257</v>
                                 </b>
                                 <b>
                                     <a>13</a>
                                     <b>60</b>
-                                    <v>209646</v>
+                                    <v>307336</v>
                                 </b>
                                 <b>
                                     <a>60</a>
                                     <b>64</b>
-                                    <v>223259</v>
+                                    <v>311178</v>
                                 </b>
                                 <b>
                                     <a>64</a>
                                     <b>66</b>
-                                    <v>209646</v>
+                                    <v>311178</v>
                                 </b>
                                 <b>
                                     <a>66</a>
                                     <b>68</b>
-                                    <v>258654</v>
+                                    <v>353437</v>
                                 </b>
                                 <b>
                                     <a>68</a>
                                     <b>69</b>
-                                    <v>130688</v>
+                                    <v>194006</v>
                                 </b>
                                 <b>
                                     <a>69</a>
                                     <b>70</b>
-                                    <v>155192</v>
+                                    <v>217056</v>
                                 </b>
                                 <b>
                                     <a>70</a>
-                                    <b>71</b>
-                                    <v>134772</v>
+                                    <b>72</b>
+                                    <v>359200</v>
                                 </b>
                                 <b>
-                                    <a>71</a>
-                                    <b>73</b>
-                                    <v>235511</v>
+                                    <a>72</a>
+                                    <b>74</b>
+                                    <v>322703</v>
                                 </b>
                                 <b>
-                                    <a>73</a>
-                                    <b>75</b>
-                                    <v>212369</v>
+                                    <a>74</a>
+                                    <b>76</b>
+                                    <v>245869</v>
                                 </b>
                                 <b>
-                                    <a>75</a>
-                                    <b>78</b>
-                                    <v>234150</v>
+                                    <a>76</a>
+                                    <b>79</b>
+                                    <v>330387</v>
                                 </b>
                                 <b>
-                                    <a>78</a>
-                                    <b>82</b>
-                                    <v>251847</v>
+                                    <a>79</a>
+                                    <b>83</b>
+                                    <v>295811</v>
                                 </b>
                                 <b>
-                                    <a>82</a>
-                                    <b>89</b>
-                                    <v>213730</v>
+                                    <a>83</a>
+                                    <b>91</b>
+                                    <v>316941</v>
                                 </b>
                                 <b>
-                                    <a>89</a>
-                                    <b>104</b>
-                                    <v>106184</v>
+                                    <a>91</a>
+                                    <b>103</b>
+                                    <v>69150</v>
                                 </b>
                             </bs>
                         </hist>
@@ -5460,67 +5526,67 @@
                                 <b>
                                     <a>1</a>
                                     <b>11</b>
-                                    <v>14974</v>
+                                    <v>21129</v>
                                 </b>
                                 <b>
                                     <a>15</a>
-                                    <b>34</b>
-                                    <v>14974</v>
+                                    <b>24</b>
+                                    <v>21129</v>
                                 </b>
                                 <b>
-                                    <a>36</a>
-                                    <b>58</b>
-                                    <v>13613</v>
+                                    <a>28</a>
+                                    <b>57</b>
+                                    <v>19208</v>
                                 </b>
                                 <b>
-                                    <a>63</a>
-                                    <b>88</b>
-                                    <v>13613</v>
+                                    <a>57</a>
+                                    <b>79</b>
+                                    <v>19208</v>
                                 </b>
                                 <b>
-                                    <a>89</a>
-                                    <b>132</b>
-                                    <v>13613</v>
+                                    <a>87</a>
+                                    <b>119</b>
+                                    <v>19208</v>
                                 </b>
                                 <b>
-                                    <a>141</a>
-                                    <b>196</b>
-                                    <v>14974</v>
+                                    <a>130</a>
+                                    <b>177</b>
+                                    <v>19208</v>
                                 </b>
                                 <b>
-                                    <a>210</a>
-                                    <b>285</b>
-                                    <v>13613</v>
+                                    <a>195</a>
+                                    <b>269</b>
+                                    <v>19208</v>
                                 </b>
                                 <b>
-                                    <a>316</a>
-                                    <b>468</b>
-                                    <v>13613</v>
+                                    <a>270</a>
+                                    <b>436</b>
+                                    <v>19208</v>
                                 </b>
                                 <b>
-                                    <a>496</a>
-                                    <b>853</b>
-                                    <v>13613</v>
+                                    <a>443</a>
+                                    <b>835</b>
+                                    <v>19208</v>
                                 </b>
                                 <b>
-                                    <a>899</a>
-                                    <b>1420</b>
-                                    <v>13613</v>
+                                    <a>844</a>
+                                    <b>1367</b>
+                                    <v>19208</v>
                                 </b>
                                 <b>
-                                    <a>1472</a>
-                                    <b>2256</b>
-                                    <v>13613</v>
+                                    <a>1419</a>
+                                    <b>2155</b>
+                                    <v>19208</v>
                                 </b>
                                 <b>
-                                    <a>2300</a>
-                                    <b>2526</b>
-                                    <v>13613</v>
+                                    <a>2252</a>
+                                    <b>2517</b>
+                                    <v>19208</v>
                                 </b>
                                 <b>
-                                    <a>2589</a>
-                                    <b>226687</b>
-                                    <v>8168</v>
+                                    <a>2521</a>
+                                    <b>226452</b>
+                                    <v>13445</v>
                                 </b>
                             </bs>
                         </hist>
@@ -5536,72 +5602,72 @@
                                 <b>
                                     <a>1</a>
                                     <b>9</b>
-                                    <v>9529</v>
+                                    <v>17287</v>
                                 </b>
                                 <b>
                                     <a>9</a>
                                     <b>11</b>
-                                    <v>13613</v>
+                                    <v>21129</v>
                                 </b>
                                 <b>
-                                    <a>12</a>
-                                    <b>16</b>
-                                    <v>8168</v>
+                                    <a>11</a>
+                                    <b>15</b>
+                                    <v>15366</v>
                                 </b>
                                 <b>
-                                    <a>16</a>
+                                    <a>15</a>
                                     <b>19</b>
-                                    <v>13613</v>
+                                    <v>21129</v>
                                 </b>
                                 <b>
-                                    <a>19</a>
-                                    <b>31</b>
-                                    <v>13613</v>
+                                    <a>23</a>
+                                    <b>68</b>
+                                    <v>19208</v>
                                 </b>
                                 <b>
-                                    <a>35</a>
-                                    <b>73</b>
-                                    <v>13613</v>
+                                    <a>69</a>
+                                    <b>78</b>
+                                    <v>19208</v>
                                 </b>
                                 <b>
-                                    <a>73</a>
-                                    <b>83</b>
-                                    <v>13613</v>
+                                    <a>79</a>
+                                    <b>100</b>
+                                    <v>13445</v>
                                 </b>
                                 <b>
-                                    <a>85</a>
+                                    <a>100</a>
                                     <b>104</b>
-                                    <v>14974</v>
+                                    <v>21129</v>
                                 </b>
                                 <b>
                                     <a>104</a>
-                                    <b>110</b>
-                                    <v>10890</v>
+                                    <b>109</b>
+                                    <v>19208</v>
                                 </b>
                                 <b>
-                                    <a>110</a>
-                                    <b>114</b>
-                                    <v>14974</v>
+                                    <a>109</a>
+                                    <b>112</b>
+                                    <v>13445</v>
+                                </b>
+                                <b>
+                                    <a>112</a>
+                                    <b>115</b>
+                                    <v>19208</v>
                                 </b>
                                 <b>
                                     <a>115</a>
-                                    <b>119</b>
-                                    <v>13613</v>
+                                    <b>117</b>
+                                    <v>19208</v>
                                 </b>
                                 <b>
-                                    <a>119</a>
-                                    <b>121</b>
-                                    <v>12252</v>
+                                    <a>117</a>
+                                    <b>123</b>
+                                    <v>19208</v>
                                 </b>
                                 <b>
-                                    <a>121</a>
-                                    <b>126</b>
-                                    <v>13613</v>
-                                </b>
-                                <b>
-                                    <a>126</a>
-                                    <b>5876</b>
-                                    <v>9529</v>
+                                    <a>145</a>
+                                    <b>4769</b>
+                                    <v>9604</v>
                                 </b>
                             </bs>
                         </hist>
@@ -5617,67 +5683,67 @@
                                 <b>
                                     <a>1</a>
                                     <b>10</b>
-                                    <v>14974</v>
+                                    <v>21129</v>
                                 </b>
                                 <b>
                                     <a>10</a>
-                                    <b>29</b>
-                                    <v>13613</v>
+                                    <b>22</b>
+                                    <v>21129</v>
                                 </b>
                                 <b>
-                                    <a>29</a>
-                                    <b>43</b>
-                                    <v>13613</v>
+                                    <a>23</a>
+                                    <b>39</b>
+                                    <v>19208</v>
                                 </b>
                                 <b>
-                                    <a>45</a>
+                                    <a>41</a>
                                     <b>58</b>
-                                    <v>13613</v>
+                                    <v>19208</v>
                                 </b>
                                 <b>
                                     <a>58</a>
-                                    <b>85</b>
-                                    <v>13613</v>
+                                    <b>84</b>
+                                    <v>19208</v>
                                 </b>
                                 <b>
-                                    <a>86</a>
+                                    <a>84</a>
                                     <b>106</b>
-                                    <v>13613</v>
+                                    <v>19208</v>
                                 </b>
                                 <b>
                                     <a>108</a>
-                                    <b>167</b>
-                                    <v>13613</v>
+                                    <b>166</b>
+                                    <v>19208</v>
                                 </b>
                                 <b>
-                                    <a>171</a>
-                                    <b>227</b>
-                                    <v>13613</v>
+                                    <a>167</a>
+                                    <b>225</b>
+                                    <v>19208</v>
                                 </b>
                                 <b>
-                                    <a>231</a>
-                                    <b>379</b>
-                                    <v>13613</v>
+                                    <a>230</a>
+                                    <b>376</b>
+                                    <v>19208</v>
                                 </b>
                                 <b>
-                                    <a>383</a>
-                                    <b>650</b>
-                                    <v>13613</v>
+                                    <a>381</a>
+                                    <b>647</b>
+                                    <v>19208</v>
                                 </b>
                                 <b>
-                                    <a>651</a>
-                                    <b>891</b>
-                                    <v>13613</v>
+                                    <a>657</a>
+                                    <b>941</b>
+                                    <v>19208</v>
                                 </b>
                                 <b>
-                                    <a>940</a>
-                                    <b>1086</b>
-                                    <v>13613</v>
+                                    <a>941</a>
+                                    <b>1090</b>
+                                    <v>19208</v>
                                 </b>
                                 <b>
-                                    <a>1093</a>
+                                    <a>1102</a>
                                     <b>2051</b>
-                                    <v>10890</v>
+                                    <v>13445</v>
                                 </b>
                             </bs>
                         </hist>
@@ -5693,67 +5759,67 @@
                                 <b>
                                     <a>1</a>
                                     <b>10</b>
-                                    <v>14974</v>
+                                    <v>21129</v>
                                 </b>
                                 <b>
                                     <a>10</a>
-                                    <b>30</b>
-                                    <v>13613</v>
+                                    <b>22</b>
+                                    <v>21129</v>
                                 </b>
                                 <b>
-                                    <a>30</a>
-                                    <b>43</b>
-                                    <v>13613</v>
+                                    <a>23</a>
+                                    <b>39</b>
+                                    <v>19208</v>
                                 </b>
                                 <b>
-                                    <a>46</a>
+                                    <a>41</a>
                                     <b>59</b>
-                                    <v>13613</v>
+                                    <v>19208</v>
                                 </b>
                                 <b>
-                                    <a>60</a>
-                                    <b>87</b>
-                                    <v>13613</v>
+                                    <a>59</a>
+                                    <b>86</b>
+                                    <v>19208</v>
                                 </b>
                                 <b>
-                                    <a>87</a>
+                                    <a>86</a>
                                     <b>109</b>
-                                    <v>13613</v>
+                                    <v>19208</v>
                                 </b>
                                 <b>
-                                    <a>115</a>
-                                    <b>173</b>
-                                    <v>13613</v>
+                                    <a>114</a>
+                                    <b>168</b>
+                                    <v>19208</v>
                                 </b>
                                 <b>
-                                    <a>174</a>
-                                    <b>226</b>
-                                    <v>13613</v>
+                                    <a>170</a>
+                                    <b>224</b>
+                                    <v>19208</v>
                                 </b>
                                 <b>
-                                    <a>230</a>
-                                    <b>380</b>
-                                    <v>13613</v>
+                                    <a>229</a>
+                                    <b>379</b>
+                                    <v>19208</v>
                                 </b>
                                 <b>
-                                    <a>383</a>
-                                    <b>650</b>
-                                    <v>13613</v>
+                                    <a>382</a>
+                                    <b>647</b>
+                                    <v>19208</v>
                                 </b>
                                 <b>
-                                    <a>653</a>
-                                    <b>892</b>
-                                    <v>13613</v>
+                                    <a>658</a>
+                                    <b>941</b>
+                                    <v>19208</v>
                                 </b>
                                 <b>
-                                    <a>940</a>
-                                    <b>1084</b>
-                                    <v>13613</v>
+                                    <a>941</a>
+                                    <b>1089</b>
+                                    <v>19208</v>
                                 </b>
                                 <b>
-                                    <a>1092</a>
+                                    <a>1102</a>
                                     <b>2051</b>
-                                    <v>10890</v>
+                                    <v>13445</v>
                                 </b>
                             </bs>
                         </hist>
@@ -5769,72 +5835,67 @@
                                 <b>
                                     <a>1</a>
                                     <b>8</b>
-                                    <v>14974</v>
+                                    <v>21129</v>
                                 </b>
                                 <b>
                                     <a>8</a>
-                                    <b>17</b>
-                                    <v>13613</v>
+                                    <b>16</b>
+                                    <v>21129</v>
                                 </b>
                                 <b>
-                                    <a>18</a>
-                                    <b>25</b>
-                                    <v>10890</v>
+                                    <a>16</a>
+                                    <b>23</b>
+                                    <v>21129</v>
                                 </b>
                                 <b>
-                                    <a>25</a>
-                                    <b>30</b>
-                                    <v>13613</v>
+                                    <a>24</a>
+                                    <b>31</b>
+                                    <v>21129</v>
                                 </b>
                                 <b>
-                                    <a>30</a>
-                                    <b>36</b>
-                                    <v>13613</v>
+                                    <a>32</a>
+                                    <b>37</b>
+                                    <v>21129</v>
                                 </b>
                                 <b>
-                                    <a>36</a>
-                                    <b>44</b>
-                                    <v>13613</v>
+                                    <a>37</a>
+                                    <b>50</b>
+                                    <v>19208</v>
                                 </b>
                                 <b>
-                                    <a>45</a>
-                                    <b>56</b>
-                                    <v>12252</v>
+                                    <a>50</a>
+                                    <b>60</b>
+                                    <v>19208</v>
                                 </b>
                                 <b>
-                                    <a>57</a>
-                                    <b>64</b>
-                                    <v>13613</v>
+                                    <a>60</a>
+                                    <b>68</b>
+                                    <v>19208</v>
                                 </b>
                                 <b>
-                                    <a>64</a>
-                                    <b>73</b>
-                                    <v>13613</v>
+                                    <a>68</a>
+                                    <b>80</b>
+                                    <v>19208</v>
                                 </b>
                                 <b>
-                                    <a>73</a>
-                                    <b>86</b>
-                                    <v>13613</v>
+                                    <a>81</a>
+                                    <b>101</b>
+                                    <v>19208</v>
                                 </b>
                                 <b>
-                                    <a>86</a>
-                                    <b>106</b>
-                                    <v>13613</v>
+                                    <a>101</a>
+                                    <b>121</b>
+                                    <v>19208</v>
                                 </b>
                                 <b>
-                                    <a>107</a>
-                                    <b>129</b>
-                                    <v>13613</v>
+                                    <a>126</a>
+                                    <b>158</b>
+                                    <v>19208</v>
                                 </b>
                                 <b>
-                                    <a>129</a>
-                                    <b>197</b>
-                                    <v>13613</v>
-                                </b>
-                                <b>
-                                    <a>392</a>
+                                    <a>159</a>
                                     <b>393</b>
-                                    <v>1361</v>
+                                    <v>7683</v>
                                 </b>
                             </bs>
                         </hist>
@@ -5850,67 +5911,67 @@
                                 <b>
                                     <a>1</a>
                                     <b>14</b>
-                                    <v>220537</v>
+                                    <v>309257</v>
                                 </b>
                                 <b>
                                     <a>14</a>
                                     <b>124</b>
-                                    <v>215091</v>
+                                    <v>305416</v>
                                 </b>
                                 <b>
                                     <a>124</a>
                                     <b>143</b>
-                                    <v>217814</v>
+                                    <v>309257</v>
                                 </b>
                                 <b>
                                     <a>143</a>
                                     <b>152</b>
-                                    <v>235511</v>
+                                    <v>334228</v>
                                 </b>
                                 <b>
                                     <a>152</a>
                                     <b>159</b>
-                                    <v>223259</v>
+                                    <v>322703</v>
                                 </b>
                                 <b>
                                     <a>159</a>
-                                    <b>165</b>
-                                    <v>257293</v>
+                                    <b>164</b>
+                                    <v>299653</v>
                                 </b>
                                 <b>
-                                    <a>165</a>
-                                    <b>170</b>
-                                    <v>239595</v>
+                                    <a>164</a>
+                                    <b>169</b>
+                                    <v>341912</v>
                                 </b>
                                 <b>
-                                    <a>170</a>
-                                    <b>174</b>
-                                    <v>221898</v>
+                                    <a>169</a>
+                                    <b>173</b>
+                                    <v>309257</v>
                                 </b>
                                 <b>
-                                    <a>174</a>
-                                    <b>179</b>
-                                    <v>221898</v>
+                                    <a>173</a>
+                                    <b>178</b>
+                                    <v>338070</v>
                                 </b>
                                 <b>
-                                    <a>179</a>
-                                    <b>185</b>
-                                    <v>211007</v>
+                                    <a>178</a>
+                                    <b>184</b>
+                                    <v>305416</v>
                                 </b>
                                 <b>
-                                    <a>185</a>
-                                    <b>194</b>
-                                    <v>216453</v>
+                                    <a>184</a>
+                                    <b>193</b>
+                                    <v>315020</v>
                                 </b>
                                 <b>
-                                    <a>194</a>
-                                    <b>217</b>
-                                    <v>212369</v>
+                                    <a>193</a>
+                                    <b>212</b>
+                                    <v>301574</v>
                                 </b>
                                 <b>
-                                    <a>217</a>
-                                    <b>5876</b>
-                                    <v>103461</v>
+                                    <a>212</a>
+                                    <b>4769</b>
+                                    <v>153668</v>
                                 </b>
                             </bs>
                         </hist>
@@ -5926,67 +5987,67 @@
                                 <b>
                                     <a>1</a>
                                     <b>7</b>
-                                    <v>231427</v>
+                                    <v>324624</v>
                                 </b>
                                 <b>
                                     <a>7</a>
                                     <b>66</b>
-                                    <v>224621</v>
+                                    <v>318862</v>
                                 </b>
                                 <b>
                                     <a>66</a>
                                     <b>74</b>
-                                    <v>227343</v>
+                                    <v>320782</v>
                                 </b>
                                 <b>
                                     <a>74</a>
                                     <b>80</b>
-                                    <v>250486</v>
+                                    <v>355358</v>
                                 </b>
                                 <b>
                                     <a>80</a>
                                     <b>83</b>
-                                    <v>240957</v>
+                                    <v>339991</v>
                                 </b>
                                 <b>
                                     <a>83</a>
                                     <b>85</b>
-                                    <v>185142</v>
+                                    <v>268919</v>
                                 </b>
                                 <b>
                                     <a>85</a>
                                     <b>87</b>
-                                    <v>246402</v>
+                                    <v>343833</v>
                                 </b>
                                 <b>
                                     <a>87</a>
                                     <b>89</b>
-                                    <v>246402</v>
+                                    <v>355358</v>
                                 </b>
                                 <b>
                                     <a>89</a>
                                     <b>91</b>
-                                    <v>187864</v>
+                                    <v>266999</v>
                                 </b>
                                 <b>
                                     <a>91</a>
                                     <b>94</b>
-                                    <v>247763</v>
+                                    <v>345754</v>
                                 </b>
                                 <b>
                                     <a>94</a>
                                     <b>99</b>
-                                    <v>225982</v>
+                                    <v>324624</v>
                                 </b>
                                 <b>
                                     <a>99</a>
-                                    <b>127</b>
-                                    <v>212369</v>
+                                    <b>130</b>
+                                    <v>301574</v>
                                 </b>
                                 <b>
-                                    <a>127</a>
-                                    <b>5876</b>
-                                    <v>69428</v>
+                                    <a>131</a>
+                                    <b>4769</b>
+                                    <v>78755</v>
                                 </b>
                             </bs>
                         </hist>
@@ -6002,32 +6063,32 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>709258</v>
+                                    <v>1000766</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>986971</v>
+                                    <v>1392620</v>
                                 </b>
                                 <b>
                                     <a>3</a>
                                     <b>4</b>
-                                    <v>642552</v>
+                                    <v>908564</v>
                                 </b>
                                 <b>
                                     <a>4</a>
                                     <b>6</b>
-                                    <v>236873</v>
+                                    <v>336149</v>
                                 </b>
                                 <b>
                                     <a>6</a>
-                                    <b>18</b>
-                                    <v>212369</v>
+                                    <b>19</b>
+                                    <v>299653</v>
                                 </b>
                                 <b>
-                                    <a>18</a>
+                                    <a>19</a>
                                     <b>22</b>
-                                    <v>8168</v>
+                                    <v>7683</v>
                                 </b>
                             </bs>
                         </hist>
@@ -6043,62 +6104,62 @@
                                 <b>
                                     <a>1</a>
                                     <b>5</b>
-                                    <v>219175</v>
+                                    <v>309257</v>
                                 </b>
                                 <b>
                                     <a>5</a>
                                     <b>17</b>
-                                    <v>198755</v>
+                                    <v>284286</v>
                                 </b>
                                 <b>
                                     <a>17</a>
                                     <b>19</b>
-                                    <v>163360</v>
+                                    <v>232423</v>
                                 </b>
                                 <b>
                                     <a>19</a>
                                     <b>20</b>
-                                    <v>191948</v>
+                                    <v>280444</v>
                                 </b>
                                 <b>
                                     <a>20</a>
                                     <b>21</b>
-                                    <v>280436</v>
+                                    <v>420667</v>
                                 </b>
                                 <b>
                                     <a>21</a>
                                     <b>22</b>
-                                    <v>272267</v>
+                                    <v>407221</v>
                                 </b>
                                 <b>
                                     <a>22</a>
                                     <b>23</b>
-                                    <v>329444</v>
+                                    <v>482134</v>
                                 </b>
                                 <b>
                                     <a>23</a>
                                     <b>24</b>
-                                    <v>306301</v>
+                                    <v>437955</v>
                                 </b>
                                 <b>
                                     <a>24</a>
                                     <b>25</b>
-                                    <v>224621</v>
+                                    <v>334228</v>
                                 </b>
                                 <b>
                                     <a>25</a>
                                     <b>26</b>
-                                    <v>183780</v>
+                                    <v>259315</v>
                                 </b>
                                 <b>
                                     <a>26</a>
-                                    <b>28</b>
-                                    <v>223259</v>
+                                    <b>29</b>
+                                    <v>363041</v>
                                 </b>
                                 <b>
-                                    <a>28</a>
-                                    <b>44</b>
-                                    <v>202839</v>
+                                    <a>29</a>
+                                    <b>39</b>
+                                    <v>134459</v>
                                 </b>
                             </bs>
                         </hist>
@@ -6114,72 +6175,72 @@
                                 <b>
                                     <a>1</a>
                                     <b>13</b>
-                                    <v>221898</v>
+                                    <v>313099</v>
                                 </b>
                                 <b>
                                     <a>13</a>
-                                    <b>61</b>
-                                    <v>250486</v>
+                                    <b>60</b>
+                                    <v>305416</v>
                                 </b>
                                 <b>
-                                    <a>61</a>
+                                    <a>60</a>
                                     <b>64</b>
-                                    <v>172890</v>
+                                    <v>305416</v>
                                 </b>
                                 <b>
                                     <a>64</a>
                                     <b>66</b>
-                                    <v>217814</v>
+                                    <v>303495</v>
                                 </b>
                                 <b>
                                     <a>66</a>
                                     <b>68</b>
-                                    <v>250486</v>
+                                    <v>357279</v>
                                 </b>
                                 <b>
                                     <a>68</a>
                                     <b>69</b>
-                                    <v>137495</v>
+                                    <v>197848</v>
                                 </b>
                                 <b>
                                     <a>69</a>
                                     <b>70</b>
-                                    <v>137495</v>
+                                    <v>201689</v>
                                 </b>
                                 <b>
                                     <a>70</a>
                                     <b>71</b>
-                                    <v>157915</v>
+                                    <v>218977</v>
                                 </b>
                                 <b>
                                     <a>71</a>
                                     <b>73</b>
-                                    <v>231427</v>
+                                    <v>326545</v>
                                 </b>
                                 <b>
                                     <a>73</a>
                                     <b>75</b>
-                                    <v>191948</v>
+                                    <v>263157</v>
                                 </b>
                                 <b>
                                     <a>75</a>
                                     <b>77</b>
-                                    <v>183780</v>
+                                    <v>257394</v>
                                 </b>
                                 <b>
                                     <a>77</a>
                                     <b>80</b>
-                                    <v>211007</v>
+                                    <v>299653</v>
                                 </b>
                                 <b>
                                     <a>80</a>
                                     <b>85</b>
-                                    <v>227343</v>
+                                    <v>318862</v>
                                 </b>
                                 <b>
                                     <a>85</a>
                                     <b>119</b>
-                                    <v>204200</v>
+                                    <v>276603</v>
                                 </b>
                             </bs>
                         </hist>
@@ -6195,57 +6256,57 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>145663</v>
+                                    <v>205531</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>63982</v>
+                                    <v>90280</v>
                                 </b>
                                 <b>
                                     <a>3</a>
                                     <b>5</b>
-                                    <v>50369</v>
+                                    <v>71071</v>
                                 </b>
                                 <b>
                                     <a>5</a>
                                     <b>13</b>
-                                    <v>50369</v>
+                                    <v>71071</v>
                                 </b>
                                 <b>
                                     <a>13</a>
                                     <b>53</b>
-                                    <v>47646</v>
+                                    <v>67229</v>
                                 </b>
                                 <b>
                                     <a>53</a>
-                                    <b>146</b>
-                                    <v>47646</v>
+                                    <b>138</b>
+                                    <v>67229</v>
                                 </b>
                                 <b>
-                                    <a>146</a>
-                                    <b>351</b>
-                                    <v>47646</v>
+                                    <a>142</a>
+                                    <b>346</b>
+                                    <v>67229</v>
                                 </b>
                                 <b>
                                     <a>357</a>
-                                    <b>997</b>
-                                    <v>47646</v>
+                                    <b>967</b>
+                                    <v>67229</v>
                                 </b>
                                 <b>
-                                    <a>1053</a>
-                                    <b>2396</b>
-                                    <v>47646</v>
+                                    <a>1050</a>
+                                    <b>2386</b>
+                                    <v>67229</v>
                                 </b>
                                 <b>
-                                    <a>2407</a>
-                                    <b>4957</b>
-                                    <v>47646</v>
+                                    <a>2392</a>
+                                    <b>4902</b>
+                                    <v>67229</v>
                                 </b>
                                 <b>
-                                    <a>5022</a>
-                                    <b>5934</b>
-                                    <v>23142</v>
+                                    <a>4949</a>
+                                    <b>5933</b>
+                                    <v>32654</v>
                                 </b>
                             </bs>
                         </hist>
@@ -6261,57 +6322,57 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>151108</v>
+                                    <v>213215</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>61260</v>
+                                    <v>86438</v>
                                 </b>
                                 <b>
                                     <a>3</a>
                                     <b>5</b>
-                                    <v>53092</v>
+                                    <v>74913</v>
                                 </b>
                                 <b>
                                     <a>5</a>
                                     <b>13</b>
-                                    <v>50369</v>
+                                    <v>71071</v>
                                 </b>
                                 <b>
                                     <a>13</a>
                                     <b>42</b>
-                                    <v>47646</v>
+                                    <v>67229</v>
                                 </b>
                                 <b>
                                     <a>42</a>
                                     <b>77</b>
-                                    <v>47646</v>
+                                    <v>67229</v>
                                 </b>
                                 <b>
                                     <a>77</a>
-                                    <b>103</b>
-                                    <v>51730</v>
+                                    <b>102</b>
+                                    <v>69150</v>
                                 </b>
                                 <b>
-                                    <a>103</a>
-                                    <b>116</b>
-                                    <v>47646</v>
+                                    <a>102</a>
+                                    <b>114</b>
+                                    <v>67229</v>
                                 </b>
                                 <b>
-                                    <a>116</a>
-                                    <b>144</b>
-                                    <v>49008</v>
+                                    <a>114</a>
+                                    <b>139</b>
+                                    <v>67229</v>
                                 </b>
                                 <b>
-                                    <a>144</a>
-                                    <b>181</b>
-                                    <v>47646</v>
+                                    <a>139</a>
+                                    <b>169</b>
+                                    <v>69150</v>
                                 </b>
                                 <b>
-                                    <a>181</a>
-                                    <b>5876</b>
-                                    <v>12252</v>
+                                    <a>173</a>
+                                    <b>4769</b>
+                                    <v>21129</v>
                                 </b>
                             </bs>
                         </hist>
@@ -6327,57 +6388,57 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>153831</v>
+                                    <v>217056</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>62621</v>
+                                    <v>88359</v>
                                 </b>
                                 <b>
                                     <a>3</a>
                                     <b>5</b>
-                                    <v>49008</v>
+                                    <v>69150</v>
                                 </b>
                                 <b>
                                     <a>5</a>
                                     <b>13</b>
-                                    <v>49008</v>
+                                    <v>69150</v>
                                 </b>
                                 <b>
                                     <a>13</a>
-                                    <b>52</b>
-                                    <v>49008</v>
+                                    <b>50</b>
+                                    <v>67229</v>
                                 </b>
                                 <b>
-                                    <a>52</a>
-                                    <b>115</b>
-                                    <v>47646</v>
+                                    <a>50</a>
+                                    <b>113</b>
+                                    <v>67229</v>
                                 </b>
                                 <b>
-                                    <a>123</a>
-                                    <b>271</b>
-                                    <v>47646</v>
+                                    <a>114</a>
+                                    <b>266</b>
+                                    <v>67229</v>
                                 </b>
                                 <b>
-                                    <a>272</a>
-                                    <b>658</b>
-                                    <v>47646</v>
+                                    <a>269</a>
+                                    <b>636</b>
+                                    <v>67229</v>
                                 </b>
                                 <b>
-                                    <a>669</a>
-                                    <b>1200</b>
-                                    <v>47646</v>
+                                    <a>648</a>
+                                    <b>1197</b>
+                                    <v>67229</v>
                                 </b>
                                 <b>
-                                    <a>1219</a>
+                                    <a>1198</a>
                                     <b>1635</b>
-                                    <v>47646</v>
+                                    <v>69150</v>
                                 </b>
                                 <b>
                                     <a>1639</a>
                                     <b>1722</b>
-                                    <v>17697</v>
+                                    <v>24971</v>
                                 </b>
                             </bs>
                         </hist>
@@ -6393,47 +6454,47 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>194671</v>
+                                    <v>274682</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>74873</v>
+                                    <v>105647</v>
                                 </b>
                                 <b>
                                     <a>3</a>
                                     <b>6</b>
-                                    <v>54453</v>
+                                    <v>76834</v>
                                 </b>
                                 <b>
                                     <a>6</a>
                                     <b>14</b>
-                                    <v>54453</v>
+                                    <v>76834</v>
                                 </b>
                                 <b>
                                     <a>14</a>
-                                    <b>26</b>
-                                    <v>47646</v>
+                                    <b>25</b>
+                                    <v>74913</v>
                                 </b>
                                 <b>
-                                    <a>26</a>
+                                    <a>25</a>
                                     <b>36</b>
-                                    <v>49008</v>
+                                    <v>71071</v>
                                 </b>
                                 <b>
                                     <a>36</a>
                                     <b>47</b>
-                                    <v>49008</v>
+                                    <v>67229</v>
                                 </b>
                                 <b>
                                     <a>47</a>
-                                    <b>55</b>
-                                    <v>47646</v>
+                                    <b>54</b>
+                                    <v>67229</v>
                                 </b>
                                 <b>
-                                    <a>55</a>
-                                    <b>68</b>
-                                    <v>47646</v>
+                                    <a>54</a>
+                                    <b>65</b>
+                                    <v>59546</v>
                                 </b>
                             </bs>
                         </hist>
@@ -6449,57 +6510,57 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>153831</v>
+                                    <v>217056</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>61260</v>
+                                    <v>86438</v>
                                 </b>
                                 <b>
                                     <a>3</a>
                                     <b>5</b>
-                                    <v>49008</v>
+                                    <v>69150</v>
                                 </b>
                                 <b>
                                     <a>5</a>
                                     <b>13</b>
-                                    <v>49008</v>
+                                    <v>69150</v>
                                 </b>
                                 <b>
                                     <a>13</a>
-                                    <b>53</b>
-                                    <v>50369</v>
+                                    <b>51</b>
+                                    <v>67229</v>
                                 </b>
                                 <b>
-                                    <a>53</a>
-                                    <b>115</b>
-                                    <v>47646</v>
+                                    <a>51</a>
+                                    <b>112</b>
+                                    <v>67229</v>
                                 </b>
                                 <b>
-                                    <a>123</a>
-                                    <b>271</b>
-                                    <v>47646</v>
+                                    <a>112</a>
+                                    <b>262</b>
+                                    <v>67229</v>
                                 </b>
                                 <b>
-                                    <a>280</a>
-                                    <b>656</b>
-                                    <v>47646</v>
+                                    <a>262</a>
+                                    <b>630</b>
+                                    <v>67229</v>
                                 </b>
                                 <b>
-                                    <a>669</a>
-                                    <b>1200</b>
-                                    <v>47646</v>
+                                    <a>637</a>
+                                    <b>1186</b>
+                                    <v>67229</v>
                                 </b>
                                 <b>
-                                    <a>1217</a>
-                                    <b>1638</b>
-                                    <v>47646</v>
+                                    <a>1197</a>
+                                    <b>1625</b>
+                                    <v>67229</v>
                                 </b>
                                 <b>
-                                    <a>1640</a>
+                                    <a>1632</a>
                                     <b>1722</b>
-                                    <v>17697</v>
+                                    <v>28812</v>
                                 </b>
                             </bs>
                         </hist>
@@ -6509,15 +6570,15 @@
         </relation>
         <relation>
             <name>hasLocation</name>
-            <cardinality>316413492</cardinality>
+            <cardinality>340930835</cardinality>
             <columnsizes>
                 <e>
                     <k>locatableid</k>
-                    <v>316270551</v>
+                    <v>340658074</v>
                 </e>
                 <e>
                     <k>id</k>
-                    <v>11518296</v>
+                    <v>12195515</v>
                 </e>
             </columnsizes>
             <dependencies>
@@ -6531,12 +6592,12 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>316127611</v>
+                                    <v>340385312</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>142940</v>
+                                    <v>272761</v>
                                 </b>
                             </bs>
                         </hist>
@@ -6552,62 +6613,57 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>2084211</v>
+                                    <v>2091812</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>996500</v>
+                                    <v>1333074</v>
                                 </b>
                                 <b>
                                     <a>3</a>
                                     <b>4</b>
-                                    <v>716064</v>
+                                    <v>772184</v>
                                 </b>
                                 <b>
                                     <a>4</a>
                                     <b>6</b>
-                                    <v>984248</v>
+                                    <v>1085283</v>
                                 </b>
                                 <b>
                                     <a>6</a>
-                                    <b>7</b>
-                                    <v>771879</v>
+                                    <b>8</b>
+                                    <v>1062233</v>
                                 </b>
                                 <b>
-                                    <a>7</a>
-                                    <b>9</b>
-                                    <v>1014198</v>
+                                    <a>8</a>
+                                    <b>11</b>
+                                    <v>1100650</v>
                                 </b>
                                 <b>
-                                    <a>9</a>
-                                    <b>12</b>
-                                    <v>848114</v>
+                                    <a>11</a>
+                                    <b>15</b>
+                                    <v>1048787</v>
                                 </b>
                                 <b>
-                                    <a>12</a>
-                                    <b>16</b>
-                                    <v>928433</v>
+                                    <a>15</a>
+                                    <b>21</b>
+                                    <v>964269</v>
                                 </b>
                                 <b>
-                                    <a>16</a>
-                                    <b>23</b>
-                                    <v>868534</v>
+                                    <a>21</a>
+                                    <b>32</b>
+                                    <v>916248</v>
                                 </b>
                                 <b>
-                                    <a>23</a>
-                                    <b>39</b>
-                                    <v>894400</v>
+                                    <a>32</a>
+                                    <b>64</b>
+                                    <v>920090</v>
                                 </b>
                                 <b>
-                                    <a>39</a>
-                                    <b>89</b>
-                                    <v>873980</v>
-                                </b>
-                                <b>
-                                    <a>89</a>
-                                    <b>9992</b>
-                                    <v>537729</v>
+                                    <a>64</a>
+                                    <b>9549</b>
+                                    <v>900881</v>
                                 </b>
                             </bs>
                         </hist>
@@ -6617,23 +6673,23 @@
         </relation>
         <relation>
             <name>numlines</name>
-            <cardinality>214506316</cardinality>
+            <cardinality>303305105</cardinality>
             <columnsizes>
                 <e>
                     <k>element_id</k>
-                    <v>214506316</v>
+                    <v>303305105</v>
                 </e>
                 <e>
                     <k>num_lines</k>
-                    <v>431544</v>
+                    <v>618515</v>
                 </e>
                 <e>
                     <k>num_code</k>
-                    <v>432906</v>
+                    <v>612753</v>
                 </e>
                 <e>
                     <k>num_comment</k>
-                    <v>1342281</v>
+                    <v>1893964</v>
                 </e>
             </columnsizes>
             <dependencies>
@@ -6647,7 +6703,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>214506316</v>
+                                    <v>303305105</v>
                                 </b>
                             </bs>
                         </hist>
@@ -6663,7 +6719,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>214506316</v>
+                                    <v>303305105</v>
                                 </b>
                             </bs>
                         </hist>
@@ -6679,7 +6735,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>214506316</v>
+                                    <v>303305105</v>
                                 </b>
                             </bs>
                         </hist>
@@ -6695,37 +6751,37 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>231427</v>
+                                    <v>320782</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>53092</v>
+                                    <v>78755</v>
                                 </b>
                                 <b>
                                     <a>3</a>
                                     <b>4</b>
-                                    <v>44924</v>
+                                    <v>61467</v>
                                 </b>
                                 <b>
                                     <a>4</a>
                                     <b>7</b>
-                                    <v>34033</v>
+                                    <v>49942</v>
                                 </b>
                                 <b>
                                     <a>7</a>
                                     <b>14</b>
-                                    <v>32672</v>
+                                    <v>48021</v>
                                 </b>
                                 <b>
                                     <a>15</a>
-                                    <b>839</b>
-                                    <v>32672</v>
+                                    <b>194</b>
+                                    <v>48021</v>
                                 </b>
                                 <b>
-                                    <a>3519</a>
-                                    <b>149603</b>
-                                    <v>2722</v>
+                                    <a>320</a>
+                                    <b>149659</b>
+                                    <v>11525</v>
                                 </b>
                             </bs>
                         </hist>
@@ -6741,12 +6797,17 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>422015</v>
+                                    <v>509026</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>9529</v>
+                                    <v>69150</v>
+                                </b>
+                                <b>
+                                    <a>3</a>
+                                    <b>6</b>
+                                    <v>40337</v>
                                 </b>
                             </bs>
                         </hist>
@@ -6762,27 +6823,27 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>273629</v>
+                                    <v>380329</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>69428</v>
+                                    <v>97963</v>
                                 </b>
                                 <b>
                                     <a>3</a>
                                     <b>4</b>
-                                    <v>36756</v>
+                                    <v>51863</v>
                                 </b>
                                 <b>
                                     <a>4</a>
                                     <b>6</b>
-                                    <v>34033</v>
+                                    <v>53783</v>
                                 </b>
                                 <b>
                                     <a>6</a>
                                     <b>987</b>
-                                    <v>17697</v>
+                                    <v>34575</v>
                                 </b>
                             </bs>
                         </hist>
@@ -6798,37 +6859,37 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>231427</v>
+                                    <v>316941</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>53092</v>
+                                    <v>78755</v>
                                 </b>
                                 <b>
                                     <a>3</a>
                                     <b>4</b>
-                                    <v>44924</v>
+                                    <v>61467</v>
                                 </b>
                                 <b>
                                     <a>4</a>
                                     <b>7</b>
-                                    <v>34033</v>
+                                    <v>51863</v>
                                 </b>
                                 <b>
                                     <a>7</a>
-                                    <b>14</b>
-                                    <v>32672</v>
+                                    <b>15</b>
+                                    <v>46100</v>
                                 </b>
                                 <b>
-                                    <a>15</a>
-                                    <b>468</b>
-                                    <v>32672</v>
+                                    <a>16</a>
+                                    <b>214</b>
+                                    <v>46100</v>
                                 </b>
                                 <b>
-                                    <a>495</a>
+                                    <a>325</a>
                                     <b>78746</b>
-                                    <v>4084</v>
+                                    <v>11525</v>
                                 </b>
                             </bs>
                         </hist>
@@ -6844,12 +6905,17 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>431544</v>
+                                    <v>516710</v>
                                 </b>
                                 <b>
-                                    <a>7</a>
+                                    <a>2</a>
+                                    <b>3</b>
+                                    <v>51863</v>
+                                </b>
+                                <b>
+                                    <a>3</a>
                                     <b>8</b>
-                                    <v>1361</v>
+                                    <v>44179</v>
                                 </b>
                             </bs>
                         </hist>
@@ -6865,27 +6931,27 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>273629</v>
+                                    <v>370725</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>69428</v>
+                                    <v>101805</v>
                                 </b>
                                 <b>
                                     <a>3</a>
                                     <b>4</b>
-                                    <v>36756</v>
+                                    <v>53783</v>
                                 </b>
                                 <b>
                                     <a>4</a>
                                     <b>6</b>
-                                    <v>34033</v>
+                                    <v>46100</v>
                                 </b>
                                 <b>
                                     <a>6</a>
                                     <b>987</b>
-                                    <v>19058</v>
+                                    <v>40337</v>
                                 </b>
                             </bs>
                         </hist>
@@ -6901,77 +6967,77 @@
                                 <b>
                                     <a>1</a>
                                     <b>7</b>
-                                    <v>108907</v>
+                                    <v>153668</v>
                                 </b>
                                 <b>
                                     <a>7</a>
                                     <b>49</b>
-                                    <v>100739</v>
+                                    <v>142143</v>
                                 </b>
                                 <b>
                                     <a>49</a>
                                     <b>71</b>
-                                    <v>104823</v>
+                                    <v>147905</v>
                                 </b>
                                 <b>
                                     <a>71</a>
                                     <b>78</b>
-                                    <v>107545</v>
+                                    <v>151747</v>
                                 </b>
                                 <b>
                                     <a>78</a>
                                     <b>83</b>
-                                    <v>103461</v>
+                                    <v>145985</v>
                                 </b>
                                 <b>
                                     <a>83</a>
                                     <b>87</b>
-                                    <v>115713</v>
+                                    <v>163272</v>
                                 </b>
                                 <b>
                                     <a>87</a>
                                     <b>89</b>
-                                    <v>99377</v>
+                                    <v>140222</v>
                                 </b>
                                 <b>
                                     <a>89</a>
                                     <b>91</b>
-                                    <v>95293</v>
+                                    <v>134459</v>
                                 </b>
                                 <b>
                                     <a>91</a>
                                     <b>92</b>
-                                    <v>57176</v>
+                                    <v>80675</v>
                                 </b>
                                 <b>
                                     <a>92</a>
                                     <b>93</b>
-                                    <v>68066</v>
+                                    <v>96042</v>
                                 </b>
                                 <b>
                                     <a>93</a>
                                     <b>94</b>
-                                    <v>74873</v>
+                                    <v>105647</v>
                                 </b>
                                 <b>
                                     <a>94</a>
                                     <b>95</b>
-                                    <v>69428</v>
+                                    <v>97963</v>
                                 </b>
                                 <b>
                                     <a>95</a>
                                     <b>97</b>
-                                    <v>108907</v>
+                                    <v>151747</v>
                                 </b>
                                 <b>
                                     <a>97</a>
                                     <b>119</b>
-                                    <v>100739</v>
+                                    <v>144064</v>
                                 </b>
                                 <b>
-                                    <a>119</a>
-                                    <b>75115</b>
-                                    <v>27226</v>
+                                    <a>120</a>
+                                    <b>75134</b>
+                                    <v>38417</v>
                                 </b>
                             </bs>
                         </hist>
@@ -6987,22 +7053,22 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>1101323</v>
+                                    <v>1550130</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>114352</v>
+                                    <v>165193</v>
                                 </b>
                                 <b>
                                     <a>3</a>
-                                    <b>6</b>
-                                    <v>102100</v>
+                                    <b>7</b>
+                                    <v>145985</v>
                                 </b>
                                 <b>
-                                    <a>6</a>
+                                    <a>7</a>
                                     <b>120</b>
-                                    <v>24504</v>
+                                    <v>32654</v>
                                 </b>
                             </bs>
                         </hist>
@@ -7018,22 +7084,22 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>1101323</v>
+                                    <v>1550130</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>114352</v>
+                                    <v>165193</v>
                                 </b>
                                 <b>
                                     <a>3</a>
-                                    <b>6</b>
-                                    <v>100739</v>
+                                    <b>7</b>
+                                    <v>145985</v>
                                 </b>
                                 <b>
-                                    <a>6</a>
-                                    <b>121</b>
-                                    <v>25865</v>
+                                    <a>7</a>
+                                    <b>122</b>
+                                    <v>32654</v>
                                 </b>
                             </bs>
                         </hist>
@@ -7043,15 +7109,15 @@
         </relation>
         <relation>
             <name>files</name>
-            <cardinality>7997871</cardinality>
+            <cardinality>9158642</cardinality>
             <columnsizes>
                 <e>
                     <k>id</k>
-                    <v>7997871</v>
+                    <v>9158642</v>
                 </e>
                 <e>
                     <k>name</k>
-                    <v>7997871</v>
+                    <v>9158642</v>
                 </e>
             </columnsizes>
             <dependencies>
@@ -7065,7 +7131,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>7997871</v>
+                                    <v>9158642</v>
                                 </b>
                             </bs>
                         </hist>
@@ -7081,7 +7147,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>7997871</v>
+                                    <v>9158642</v>
                                 </b>
                             </bs>
                         </hist>
@@ -7091,15 +7157,15 @@
         </relation>
         <relation>
             <name>folders</name>
-            <cardinality>1275575</cardinality>
+            <cardinality>1415670</cardinality>
             <columnsizes>
                 <e>
                     <k>id</k>
-                    <v>1275575</v>
+                    <v>1415670</v>
                 </e>
                 <e>
                     <k>name</k>
-                    <v>1275575</v>
+                    <v>1415670</v>
                 </e>
             </columnsizes>
             <dependencies>
@@ -7113,7 +7179,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>1275575</v>
+                                    <v>1415670</v>
                                 </b>
                             </bs>
                         </hist>
@@ -7129,7 +7195,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>1275575</v>
+                                    <v>1415670</v>
                                 </b>
                             </bs>
                         </hist>
@@ -7139,15 +7205,15 @@
         </relation>
         <relation>
             <name>containerparent</name>
-            <cardinality>9270724</cardinality>
+            <cardinality>10570471</cardinality>
             <columnsizes>
                 <e>
                     <k>parent</k>
-                    <v>1316415</v>
+                    <v>1463692</v>
                 </e>
                 <e>
                     <k>child</k>
-                    <v>9270724</v>
+                    <v>10570471</v>
                 </e>
             </columnsizes>
             <dependencies>
@@ -7161,37 +7227,32 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>710619</v>
+                                    <v>843255</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>140218</v>
+                                    <v>149826</v>
                                 </b>
                                 <b>
                                     <a>3</a>
-                                    <b>4</b>
-                                    <v>78957</v>
+                                    <b>5</b>
+                                    <v>128697</v>
                                 </b>
                                 <b>
-                                    <a>4</a>
-                                    <b>7</b>
-                                    <v>112991</v>
+                                    <a>5</a>
+                                    <b>11</b>
+                                    <v>124855</v>
                                 </b>
                                 <b>
-                                    <a>7</a>
-                                    <b>14</b>
-                                    <v>111629</v>
+                                    <a>11</a>
+                                    <b>21</b>
+                                    <v>113330</v>
                                 </b>
                                 <b>
-                                    <a>14</a>
-                                    <b>29</b>
-                                    <v>102100</v>
-                                </b>
-                                <b>
-                                    <a>29</a>
+                                    <a>21</a>
                                     <b>194</b>
-                                    <v>59898</v>
+                                    <v>103726</v>
                                 </b>
                             </bs>
                         </hist>
@@ -7207,7 +7268,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>9270724</v>
+                                    <v>10570471</v>
                                 </b>
                             </bs>
                         </hist>
@@ -7217,15 +7278,15 @@
         </relation>
         <relation>
             <name>cupackage</name>
-            <cardinality>7140227</cardinality>
+            <cardinality>7979236</cardinality>
             <columnsizes>
                 <e>
                     <k>id</k>
-                    <v>7140227</v>
+                    <v>7979236</v>
                 </e>
                 <e>
                     <k>packageid</k>
-                    <v>609880</v>
+                    <v>576256</v>
                 </e>
             </columnsizes>
             <dependencies>
@@ -7239,7 +7300,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>7140227</v>
+                                    <v>7979236</v>
                                 </b>
                             </bs>
                         </hist>
@@ -7255,52 +7316,52 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>148386</v>
+                                    <v>121013</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>80319</v>
+                                    <v>80675</v>
                                 </b>
                                 <b>
                                     <a>3</a>
                                     <b>4</b>
-                                    <v>55814</v>
+                                    <v>42258</v>
                                 </b>
                                 <b>
                                     <a>4</a>
-                                    <b>5</b>
-                                    <v>42201</v>
+                                    <b>6</b>
+                                    <v>49942</v>
                                 </b>
                                 <b>
-                                    <a>5</a>
-                                    <b>7</b>
-                                    <v>46285</v>
+                                    <a>6</a>
+                                    <b>9</b>
+                                    <v>49942</v>
                                 </b>
                                 <b>
-                                    <a>7</a>
-                                    <b>10</b>
-                                    <v>50369</v>
+                                    <a>9</a>
+                                    <b>12</b>
+                                    <v>51863</v>
                                 </b>
                                 <b>
-                                    <a>10</a>
-                                    <b>15</b>
-                                    <v>50369</v>
+                                    <a>12</a>
+                                    <b>17</b>
+                                    <v>48021</v>
                                 </b>
                                 <b>
-                                    <a>15</a>
-                                    <b>21</b>
-                                    <v>49008</v>
+                                    <a>17</a>
+                                    <b>23</b>
+                                    <v>46100</v>
                                 </b>
                                 <b>
-                                    <a>21</a>
-                                    <b>36</b>
-                                    <v>47646</v>
+                                    <a>24</a>
+                                    <b>43</b>
+                                    <v>44179</v>
                                 </b>
                                 <b>
-                                    <a>39</a>
+                                    <a>43</a>
                                     <b>187</b>
-                                    <v>39478</v>
+                                    <v>42258</v>
                                 </b>
                             </bs>
                         </hist>
@@ -7310,19 +7371,19 @@
         </relation>
         <relation>
             <name>jarManifestMain</name>
-            <cardinality>172733</cardinality>
+            <cardinality>172742</cardinality>
             <columnsizes>
                 <e>
                     <k>fileid</k>
-                    <v>13274</v>
+                    <v>13275</v>
                 </e>
                 <e>
                     <k>keyName</k>
-                    <v>12610</v>
+                    <v>12611</v>
                 </e>
                 <e>
                     <k>value</k>
-                    <v>89768</v>
+                    <v>89772</v>
                 </e>
             </columnsizes>
             <dependencies>
@@ -7407,7 +7468,7 @@
                                 <b>
                                     <a>5</a>
                                     <b>6</b>
-                                    <v>2488</v>
+                                    <v>2489</v>
                                 </b>
                                 <b>
                                     <a>6</a>
@@ -7473,7 +7534,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>5143</v>
+                                    <v>5144</v>
                                 </b>
                                 <b>
                                     <a>2</a>
@@ -7580,7 +7641,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>75996</v>
+                                    <v>75999</v>
                                 </b>
                                 <b>
                                     <a>2</a>
@@ -7611,7 +7672,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>75664</v>
+                                    <v>75668</v>
                                 </b>
                                 <b>
                                     <a>2</a>
@@ -7621,7 +7682,7 @@
                                 <b>
                                     <a>3</a>
                                     <b>6</b>
-                                    <v>5309</v>
+                                    <v>5310</v>
                                 </b>
                             </bs>
                         </hist>
@@ -7844,7 +7905,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>30112</v>
+                                    <v>30113</v>
                                 </b>
                                 <b>
                                     <a>2</a>
@@ -7886,7 +7947,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>30124</v>
+                                    <v>30125</v>
                                 </b>
                                 <b>
                                     <a>3</a>
@@ -8005,7 +8066,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>30161</v>
+                                    <v>30162</v>
                                 </b>
                                 <b>
                                     <a>2</a>
@@ -8026,7 +8087,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>30161</v>
+                                    <v>30162</v>
                                 </b>
                                 <b>
                                     <a>11</a>
@@ -8062,15 +8123,15 @@
         </relation>
         <relation>
             <name>packages</name>
-            <cardinality>611241</cardinality>
+            <cardinality>580098</cardinality>
             <columnsizes>
                 <e>
                     <k>id</k>
-                    <v>611241</v>
+                    <v>580098</v>
                 </e>
                 <e>
                     <k>nodeName</k>
-                    <v>611241</v>
+                    <v>580098</v>
                 </e>
             </columnsizes>
             <dependencies>
@@ -8084,7 +8145,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>611241</v>
+                                    <v>580098</v>
                                 </b>
                             </bs>
                         </hist>
@@ -8100,7 +8161,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>611241</v>
+                                    <v>580098</v>
                                 </b>
                             </bs>
                         </hist>
@@ -8110,15 +8171,15 @@
         </relation>
         <relation>
             <name>primitives</name>
-            <cardinality>12252</cardinality>
+            <cardinality>17287</cardinality>
             <columnsizes>
                 <e>
                     <k>id</k>
-                    <v>12252</v>
+                    <v>17287</v>
                 </e>
                 <e>
                     <k>nodeName</k>
-                    <v>12252</v>
+                    <v>17287</v>
                 </e>
             </columnsizes>
             <dependencies>
@@ -8132,7 +8193,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>12252</v>
+                                    <v>17287</v>
                                 </b>
                             </bs>
                         </hist>
@@ -8148,7 +8209,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>12252</v>
+                                    <v>17287</v>
                                 </b>
                             </bs>
                         </hist>
@@ -8158,15 +8219,15 @@
         </relation>
         <relation>
             <name>modifiers</name>
-            <cardinality>13613</cardinality>
+            <cardinality>26891</cardinality>
             <columnsizes>
                 <e>
                     <k>id</k>
-                    <v>13613</v>
+                    <v>26891</v>
                 </e>
                 <e>
                     <k>nodeName</k>
-                    <v>13613</v>
+                    <v>26891</v>
                 </e>
             </columnsizes>
             <dependencies>
@@ -8180,7 +8241,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>13613</v>
+                                    <v>26891</v>
                                 </b>
                             </bs>
                         </hist>
@@ -8196,7 +8257,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>13613</v>
+                                    <v>26891</v>
                                 </b>
                             </bs>
                         </hist>
@@ -8217,23 +8278,23 @@
         </relation>
         <relation>
             <name>classes</name>
-            <cardinality>12548830</cardinality>
+            <cardinality>12618104</cardinality>
             <columnsizes>
                 <e>
                     <k>id</k>
-                    <v>12548830</v>
+                    <v>12618104</v>
                 </e>
                 <e>
                     <k>nodeName</k>
-                    <v>6855707</v>
+                    <v>6732600</v>
                 </e>
                 <e>
                     <k>parentid</k>
-                    <v>442435</v>
+                    <v>455242</v>
                 </e>
                 <e>
                     <k>sourceid</k>
-                    <v>4506034</v>
+                    <v>5253541</v>
                 </e>
             </columnsizes>
             <dependencies>
@@ -8247,7 +8308,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>12548830</v>
+                                    <v>12618104</v>
                                 </b>
                             </bs>
                         </hist>
@@ -8263,7 +8324,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>12548830</v>
+                                    <v>12618104</v>
                                 </b>
                             </bs>
                         </hist>
@@ -8279,7 +8340,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>12548830</v>
+                                    <v>12618104</v>
                                 </b>
                             </bs>
                         </hist>
@@ -8295,17 +8356,17 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>5728517</v>
+                                    <v>5601216</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>741930</v>
+                                    <v>726083</v>
                                 </b>
                                 <b>
                                     <a>3</a>
-                                    <b>236</b>
-                                    <v>385259</v>
+                                    <b>204</b>
+                                    <v>405300</v>
                                 </b>
                             </bs>
                         </hist>
@@ -8321,17 +8382,17 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>6243104</v>
+                                    <v>5950812</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>544535</v>
+                                    <v>731846</v>
                                 </b>
                                 <b>
                                     <a>3</a>
                                     <b>52</b>
-                                    <v>68066</v>
+                                    <v>49942</v>
                                 </b>
                             </bs>
                         </hist>
@@ -8347,17 +8408,17 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>6219961</v>
+                                    <v>5921999</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>533645</v>
+                                    <v>714558</v>
                                 </b>
                                 <b>
                                     <a>3</a>
                                     <b>160</b>
-                                    <v>102100</v>
+                                    <v>96042</v>
                                 </b>
                             </bs>
                         </hist>
@@ -8373,57 +8434,62 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>107545</v>
+                                    <v>94121</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>54453</v>
+                                    <v>46100</v>
                                 </b>
                                 <b>
                                     <a>3</a>
                                     <b>4</b>
-                                    <v>32672</v>
+                                    <v>30733</v>
                                 </b>
                                 <b>
                                     <a>4</a>
                                     <b>5</b>
-                                    <v>29949</v>
+                                    <v>26891</v>
                                 </b>
                                 <b>
                                     <a>5</a>
-                                    <b>7</b>
-                                    <v>34033</v>
+                                    <b>6</b>
+                                    <v>24971</v>
                                 </b>
                                 <b>
-                                    <a>7</a>
-                                    <b>11</b>
-                                    <v>40840</v>
+                                    <a>6</a>
+                                    <b>8</b>
+                                    <v>40337</v>
                                 </b>
                                 <b>
-                                    <a>11</a>
-                                    <b>17</b>
-                                    <v>34033</v>
+                                    <a>8</a>
+                                    <b>12</b>
+                                    <v>32654</v>
                                 </b>
                                 <b>
-                                    <a>17</a>
+                                    <a>12</a>
+                                    <b>18</b>
+                                    <v>38417</v>
+                                </b>
+                                <b>
+                                    <a>18</a>
                                     <b>23</b>
-                                    <v>34033</v>
+                                    <v>34575</v>
                                 </b>
                                 <b>
                                     <a>23</a>
                                     <b>40</b>
-                                    <v>36756</v>
+                                    <v>36496</v>
                                 </b>
                                 <b>
                                     <a>40</a>
-                                    <b>707</b>
-                                    <v>34033</v>
+                                    <b>76</b>
+                                    <v>34575</v>
                                 </b>
                                 <b>
-                                    <a>1013</a>
-                                    <b>1414</b>
-                                    <v>4084</v>
+                                    <a>83</a>
+                                    <b>891</b>
+                                    <v>15366</v>
                                 </b>
                             </bs>
                         </hist>
@@ -8439,52 +8505,57 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>107545</v>
+                                    <v>96042</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>54453</v>
+                                    <v>46100</v>
                                 </b>
                                 <b>
                                     <a>3</a>
                                     <b>4</b>
-                                    <v>35394</v>
+                                    <v>34575</v>
                                 </b>
                                 <b>
                                     <a>4</a>
                                     <b>5</b>
-                                    <v>34033</v>
+                                    <v>28812</v>
                                 </b>
                                 <b>
                                     <a>5</a>
-                                    <b>7</b>
-                                    <v>38117</v>
+                                    <b>6</b>
+                                    <v>36496</v>
                                 </b>
                                 <b>
-                                    <a>7</a>
-                                    <b>11</b>
-                                    <v>40840</v>
+                                    <a>6</a>
+                                    <b>9</b>
+                                    <v>40337</v>
                                 </b>
                                 <b>
-                                    <a>11</a>
-                                    <b>17</b>
-                                    <v>36756</v>
+                                    <a>9</a>
+                                    <b>13</b>
+                                    <v>40337</v>
                                 </b>
                                 <b>
-                                    <a>17</a>
-                                    <b>23</b>
-                                    <v>34033</v>
+                                    <a>13</a>
+                                    <b>18</b>
+                                    <v>26891</v>
                                 </b>
                                 <b>
-                                    <a>23</a>
-                                    <b>40</b>
-                                    <v>35394</v>
+                                    <a>18</a>
+                                    <b>25</b>
+                                    <v>38417</v>
                                 </b>
                                 <b>
-                                    <a>40</a>
-                                    <b>830</b>
-                                    <v>25865</v>
+                                    <a>26</a>
+                                    <b>41</b>
+                                    <v>36496</v>
+                                </b>
+                                <b>
+                                    <a>41</a>
+                                    <b>479</b>
+                                    <v>30733</v>
                                 </b>
                             </bs>
                         </hist>
@@ -8500,52 +8571,57 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>118436</v>
+                                    <v>99884</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>63982</v>
+                                    <v>57625</v>
                                 </b>
                                 <b>
                                     <a>3</a>
                                     <b>4</b>
-                                    <v>36756</v>
+                                    <v>36496</v>
                                 </b>
                                 <b>
                                     <a>4</a>
                                     <b>5</b>
-                                    <v>34033</v>
+                                    <v>32654</v>
                                 </b>
                                 <b>
                                     <a>5</a>
-                                    <b>7</b>
-                                    <v>35394</v>
+                                    <b>6</b>
+                                    <v>32654</v>
                                 </b>
                                 <b>
-                                    <a>7</a>
-                                    <b>11</b>
-                                    <v>40840</v>
+                                    <a>6</a>
+                                    <b>8</b>
+                                    <v>34575</v>
                                 </b>
                                 <b>
-                                    <a>11</a>
-                                    <b>17</b>
-                                    <v>34033</v>
+                                    <a>8</a>
+                                    <b>12</b>
+                                    <v>38417</v>
                                 </b>
                                 <b>
-                                    <a>17</a>
-                                    <b>26</b>
-                                    <v>34033</v>
+                                    <a>12</a>
+                                    <b>18</b>
+                                    <v>32654</v>
                                 </b>
                                 <b>
-                                    <a>26</a>
-                                    <b>56</b>
-                                    <v>34033</v>
+                                    <a>18</a>
+                                    <b>25</b>
+                                    <v>34575</v>
                                 </b>
                                 <b>
-                                    <a>64</a>
+                                    <a>25</a>
+                                    <b>47</b>
+                                    <v>34575</v>
+                                </b>
+                                <b>
+                                    <a>51</a>
                                     <b>138</b>
-                                    <v>10890</v>
+                                    <v>21129</v>
                                 </b>
                             </bs>
                         </hist>
@@ -8561,17 +8637,17 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>4040456</v>
+                                    <v>4694572</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>11</b>
-                                    <v>341696</v>
+                                    <v>407221</v>
                                 </b>
                                 <b>
                                     <a>11</a>
-                                    <b>1358</b>
-                                    <v>123881</v>
+                                    <b>426</b>
+                                    <v>151747</v>
                                 </b>
                             </bs>
                         </hist>
@@ -8587,17 +8663,17 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>4040456</v>
+                                    <v>4694572</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>6</b>
-                                    <v>359393</v>
+                                    <v>426430</v>
                                 </b>
                                 <b>
                                     <a>6</a>
-                                    <b>783</b>
-                                    <v>106184</v>
+                                    <b>224</b>
+                                    <v>132539</v>
                                 </b>
                             </bs>
                         </hist>
@@ -8613,7 +8689,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>4506034</v>
+                                    <v>5253541</v>
                                 </b>
                             </bs>
                         </hist>
@@ -8623,26 +8699,26 @@
         </relation>
         <relation>
             <name>file_class</name>
-            <cardinality>14974</cardinality>
+            <cardinality>17287</cardinality>
             <columnsizes>
                 <e>
                     <k>id</k>
-                    <v>14974</v>
+                    <v>17287</v>
                 </e>
             </columnsizes>
             <dependencies/>
         </relation>
         <relation>
             <name>class_object</name>
-            <cardinality>122520</cardinality>
+            <cardinality>163272</cardinality>
             <columnsizes>
                 <e>
                     <k>id</k>
-                    <v>122520</v>
+                    <v>163272</v>
                 </e>
                 <e>
                     <k>instance</k>
-                    <v>122520</v>
+                    <v>163272</v>
                 </e>
             </columnsizes>
             <dependencies>
@@ -8656,7 +8732,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>122520</v>
+                                    <v>163272</v>
                                 </b>
                             </bs>
                         </hist>
@@ -8672,7 +8748,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>122520</v>
+                                    <v>163272</v>
                                 </b>
                             </bs>
                         </hist>
@@ -8682,19 +8758,19 @@
         </relation>
         <relation>
             <name>type_companion_object</name>
-            <cardinality>217814</cardinality>
+            <cardinality>307336</cardinality>
             <columnsizes>
                 <e>
                     <k>id</k>
-                    <v>217814</v>
+                    <v>307336</v>
                 </e>
                 <e>
                     <k>instance</k>
-                    <v>217814</v>
+                    <v>307336</v>
                 </e>
                 <e>
                     <k>companion_object</k>
-                    <v>217814</v>
+                    <v>307336</v>
                 </e>
             </columnsizes>
             <dependencies>
@@ -8708,7 +8784,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>217814</v>
+                                    <v>307336</v>
                                 </b>
                             </bs>
                         </hist>
@@ -8724,7 +8800,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>217814</v>
+                                    <v>307336</v>
                                 </b>
                             </bs>
                         </hist>
@@ -8740,7 +8816,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>217814</v>
+                                    <v>307336</v>
                                 </b>
                             </bs>
                         </hist>
@@ -8756,7 +8832,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>217814</v>
+                                    <v>307336</v>
                                 </b>
                             </bs>
                         </hist>
@@ -8772,7 +8848,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>217814</v>
+                                    <v>307336</v>
                                 </b>
                             </bs>
                         </hist>
@@ -8788,7 +8864,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>217814</v>
+                                    <v>307336</v>
                                 </b>
                             </bs>
                         </hist>
@@ -8798,15 +8874,15 @@
         </relation>
         <relation>
             <name>kt_nullable_types</name>
-            <cardinality>1361</cardinality>
+            <cardinality>1920</cardinality>
             <columnsizes>
                 <e>
                     <k>id</k>
-                    <v>1361</v>
+                    <v>1920</v>
                 </e>
                 <e>
                     <k>classid</k>
-                    <v>1361</v>
+                    <v>1920</v>
                 </e>
             </columnsizes>
             <dependencies>
@@ -8820,7 +8896,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>1361</v>
+                                    <v>1920</v>
                                 </b>
                             </bs>
                         </hist>
@@ -8836,7 +8912,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>1361</v>
+                                    <v>1920</v>
                                 </b>
                             </bs>
                         </hist>
@@ -8846,15 +8922,15 @@
         </relation>
         <relation>
             <name>kt_notnull_types</name>
-            <cardinality>191419</cardinality>
+            <cardinality>172391</cardinality>
             <columnsizes>
                 <e>
                     <k>id</k>
-                    <v>191419</v>
+                    <v>172391</v>
                 </e>
                 <e>
                     <k>classid</k>
-                    <v>191419</v>
+                    <v>172391</v>
                 </e>
             </columnsizes>
             <dependencies>
@@ -8868,7 +8944,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>191419</v>
+                                    <v>172391</v>
                                 </b>
                             </bs>
                         </hist>
@@ -8884,7 +8960,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>191419</v>
+                                    <v>172391</v>
                                 </b>
                             </bs>
                         </hist>
@@ -8894,19 +8970,19 @@
         </relation>
         <relation>
             <name>kt_type_alias</name>
-            <cardinality>2060</cardinality>
+            <cardinality>1821</cardinality>
             <columnsizes>
                 <e>
                     <k>id</k>
-                    <v>2060</v>
+                    <v>1821</v>
                 </e>
                 <e>
                     <k>name</k>
-                    <v>2060</v>
+                    <v>1821</v>
                 </e>
                 <e>
                     <k>kttypeid</k>
-                    <v>1030</v>
+                    <v>910</v>
                 </e>
             </columnsizes>
             <dependencies>
@@ -8920,7 +8996,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>2060</v>
+                                    <v>1821</v>
                                 </b>
                             </bs>
                         </hist>
@@ -8936,7 +9012,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>2060</v>
+                                    <v>1821</v>
                                 </b>
                             </bs>
                         </hist>
@@ -8952,7 +9028,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>2060</v>
+                                    <v>1821</v>
                                 </b>
                             </bs>
                         </hist>
@@ -8968,7 +9044,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>2060</v>
+                                    <v>1821</v>
                                 </b>
                             </bs>
                         </hist>
@@ -8984,7 +9060,7 @@
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>1030</v>
+                                    <v>910</v>
                                 </b>
                             </bs>
                         </hist>
@@ -9000,7 +9076,7 @@
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>1030</v>
+                                    <v>910</v>
                                 </b>
                             </bs>
                         </hist>
@@ -9021,23 +9097,23 @@
         </relation>
         <relation>
             <name>interfaces</name>
-            <cardinality>21501109</cardinality>
+            <cardinality>23200100</cardinality>
             <columnsizes>
                 <e>
                     <k>id</k>
-                    <v>21501109</v>
+                    <v>23200100</v>
                 </e>
                 <e>
                     <k>nodeName</k>
-                    <v>5448969</v>
+                    <v>8705320</v>
                 </e>
                 <e>
                     <k>parentid</k>
-                    <v>350</v>
+                    <v>430271</v>
                 </e>
                 <e>
                     <k>sourceid</k>
-                    <v>2074</v>
+                    <v>2787162</v>
                 </e>
             </columnsizes>
             <dependencies>
@@ -9051,7 +9127,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>21501109</v>
+                                    <v>23200100</v>
                                 </b>
                             </bs>
                         </hist>
@@ -9067,7 +9143,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>21501109</v>
+                                    <v>23200100</v>
                                 </b>
                             </bs>
                         </hist>
@@ -9083,7 +9159,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>21501109</v>
+                                    <v>23200100</v>
                                 </b>
                             </bs>
                         </hist>
@@ -9099,27 +9175,22 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>3495545</v>
+                                    <v>6834406</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>811460</v>
+                                    <v>1079521</v>
                                 </b>
                                 <b>
                                     <a>3</a>
-                                    <b>5</b>
-                                    <v>410487</v>
+                                    <b>25</b>
+                                    <v>655011</v>
                                 </b>
                                 <b>
-                                    <a>5</a>
-                                    <b>12</b>
-                                    <v>426139</v>
-                                </b>
-                                <b>
-                                    <a>12</a>
-                                    <b>9655</b>
-                                    <v>305336</v>
+                                    <a>25</a>
+                                    <b>345</b>
+                                    <v>136380</v>
                                 </b>
                             </bs>
                         </hist>
@@ -9135,231 +9206,221 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>5448745</v>
+                                    <v>7996524</v>
                                 </b>
                                 <b>
                                     <a>2</a>
-                                    <b>3</b>
-                                    <v>224</v>
-                                </b>
-                            </bs>
-                        </hist>
-                    </val>
-                </dep>
-                <dep>
-                    <src>nodeName</src>
-                    <trg>sourceid</trg>
-                    <val>
-                        <hist>
-                            <budget>12</budget>
-                            <bs>
-                                <b>
-                                    <a>1</a>
-                                    <b>2</b>
-                                    <v>5448653</v>
-                                </b>
-                                <b>
-                                    <a>2</a>
-                                    <b>6</b>
-                                    <v>316</v>
-                                </b>
-                            </bs>
-                        </hist>
-                    </val>
-                </dep>
-                <dep>
-                    <src>parentid</src>
-                    <trg>id</trg>
-                    <val>
-                        <hist>
-                            <budget>12</budget>
-                            <bs>
-                                <b>
-                                    <a>1</a>
-                                    <b>2</b>
-                                    <v>57</v>
-                                </b>
-                                <b>
-                                    <a>2</a>
-                                    <b>3</b>
-                                    <v>34</v>
-                                </b>
-                                <b>
-                                    <a>3</a>
                                     <b>4</b>
-                                    <v>28</v>
+                                    <v>695349</v>
                                 </b>
                                 <b>
                                     <a>4</a>
-                                    <b>6</b>
-                                    <v>28</v>
-                                </b>
-                                <b>
-                                    <a>6</a>
-                                    <b>9</b>
-                                    <v>28</v>
-                                </b>
-                                <b>
-                                    <a>10</a>
-                                    <b>16</b>
-                                    <v>28</v>
-                                </b>
-                                <b>
-                                    <a>16</a>
-                                    <b>20</b>
-                                    <v>28</v>
-                                </b>
-                                <b>
-                                    <a>21</a>
-                                    <b>212</b>
-                                    <v>28</v>
-                                </b>
-                                <b>
-                                    <a>288</a>
-                                    <b>1113</b>
-                                    <v>28</v>
-                                </b>
-                                <b>
-                                    <a>1315</a>
-                                    <b>27761</b>
-                                    <v>28</v>
-                                </b>
-                                <b>
-                                    <a>36093</a>
-                                    <b>2073873</b>
-                                    <v>28</v>
-                                </b>
-                            </bs>
-                        </hist>
-                    </val>
-                </dep>
-                <dep>
-                    <src>parentid</src>
-                    <trg>nodeName</trg>
-                    <val>
-                        <hist>
-                            <budget>12</budget>
-                            <bs>
-                                <b>
-                                    <a>1</a>
-                                    <b>2</b>
-                                    <v>57</v>
-                                </b>
-                                <b>
-                                    <a>2</a>
-                                    <b>3</b>
-                                    <v>34</v>
-                                </b>
-                                <b>
-                                    <a>3</a>
-                                    <b>4</b>
-                                    <v>28</v>
-                                </b>
-                                <b>
-                                    <a>4</a>
-                                    <b>5</b>
-                                    <v>5</v>
-                                </b>
-                                <b>
-                                    <a>5</a>
-                                    <b>6</b>
-                                    <v>28</v>
-                                </b>
-                                <b>
-                                    <a>6</a>
-                                    <b>11</b>
-                                    <v>28</v>
-                                </b>
-                                <b>
-                                    <a>11</a>
-                                    <b>14</b>
-                                    <v>28</v>
-                                </b>
-                                <b>
-                                    <a>15</a>
-                                    <b>20</b>
-                                    <v>28</v>
-                                </b>
-                                <b>
-                                    <a>21</a>
-                                    <b>107</b>
-                                    <v>28</v>
-                                </b>
-                                <b>
-                                    <a>153</a>
-                                    <b>381</b>
-                                    <v>28</v>
-                                </b>
-                                <b>
-                                    <a>3060</a>
-                                    <b>15096</b>
-                                    <v>28</v>
-                                </b>
-                                <b>
-                                    <a>36080</a>
-                                    <b>500307</b>
-                                    <v>22</v>
-                                </b>
-                            </bs>
-                        </hist>
-                    </val>
-                </dep>
-                <dep>
-                    <src>parentid</src>
-                    <trg>sourceid</trg>
-                    <val>
-                        <hist>
-                            <budget>12</budget>
-                            <bs>
-                                <b>
-                                    <a>1</a>
-                                    <b>2</b>
-                                    <v>97</v>
-                                </b>
-                                <b>
-                                    <a>2</a>
-                                    <b>3</b>
-                                    <v>40</v>
-                                </b>
-                                <b>
-                                    <a>3</a>
-                                    <b>4</b>
-                                    <v>34</v>
-                                </b>
-                                <b>
-                                    <a>4</a>
-                                    <b>6</b>
-                                    <v>28</v>
-                                </b>
-                                <b>
-                                    <a>6</a>
                                     <b>7</b>
-                                    <v>11</v>
+                                    <v>13445</v>
+                                </b>
+                            </bs>
+                        </hist>
+                    </val>
+                </dep>
+                <dep>
+                    <src>nodeName</src>
+                    <trg>sourceid</trg>
+                    <val>
+                        <hist>
+                            <budget>12</budget>
+                            <bs>
+                                <b>
+                                    <a>1</a>
+                                    <b>2</b>
+                                    <v>7967711</v>
                                 </b>
                                 <b>
-                                    <a>7</a>
+                                    <a>2</a>
+                                    <b>4</b>
+                                    <v>718400</v>
+                                </b>
+                                <b>
+                                    <a>4</a>
+                                    <b>7</b>
+                                    <v>19208</v>
+                                </b>
+                            </bs>
+                        </hist>
+                    </val>
+                </dep>
+                <dep>
+                    <src>parentid</src>
+                    <trg>id</trg>
+                    <val>
+                        <hist>
+                            <budget>12</budget>
+                            <bs>
+                                <b>
+                                    <a>1</a>
+                                    <b>2</b>
+                                    <v>113330</v>
+                                </b>
+                                <b>
+                                    <a>2</a>
+                                    <b>3</b>
+                                    <v>55704</v>
+                                </b>
+                                <b>
+                                    <a>3</a>
+                                    <b>4</b>
+                                    <v>48021</v>
+                                </b>
+                                <b>
+                                    <a>4</a>
+                                    <b>5</b>
+                                    <v>26891</v>
+                                </b>
+                                <b>
+                                    <a>5</a>
                                     <b>8</b>
-                                    <v>40</v>
+                                    <v>36496</v>
                                 </b>
                                 <b>
                                     <a>8</a>
+                                    <b>13</b>
+                                    <v>34575</v>
+                                </b>
+                                <b>
+                                    <a>13</a>
+                                    <b>18</b>
+                                    <v>34575</v>
+                                </b>
+                                <b>
+                                    <a>18</a>
+                                    <b>41</b>
+                                    <v>32654</v>
+                                </b>
+                                <b>
+                                    <a>42</a>
+                                    <b>182</b>
+                                    <v>32654</v>
+                                </b>
+                                <b>
+                                    <a>187</a>
+                                    <b>4152</b>
+                                    <v>15366</v>
+                                </b>
+                            </bs>
+                        </hist>
+                    </val>
+                </dep>
+                <dep>
+                    <src>parentid</src>
+                    <trg>nodeName</trg>
+                    <val>
+                        <hist>
+                            <budget>12</budget>
+                            <bs>
+                                <b>
+                                    <a>1</a>
+                                    <b>2</b>
+                                    <v>113330</v>
+                                </b>
+                                <b>
+                                    <a>2</a>
+                                    <b>3</b>
+                                    <v>55704</v>
+                                </b>
+                                <b>
+                                    <a>3</a>
+                                    <b>4</b>
+                                    <v>48021</v>
+                                </b>
+                                <b>
+                                    <a>4</a>
+                                    <b>5</b>
+                                    <v>38417</v>
+                                </b>
+                                <b>
+                                    <a>5</a>
+                                    <b>7</b>
+                                    <v>24971</v>
+                                </b>
+                                <b>
+                                    <a>7</a>
                                     <b>10</b>
-                                    <v>22</v>
+                                    <v>32654</v>
                                 </b>
                                 <b>
                                     <a>10</a>
-                                    <b>11</b>
-                                    <v>28</v>
-                                </b>
-                                <b>
-                                    <a>11</a>
                                     <b>15</b>
-                                    <v>28</v>
+                                    <v>36496</v>
                                 </b>
                                 <b>
-                                    <a>19</a>
-                                    <b>40</b>
-                                    <v>17</v>
+                                    <a>15</a>
+                                    <b>28</b>
+                                    <v>32654</v>
+                                </b>
+                                <b>
+                                    <a>30</a>
+                                    <b>94</b>
+                                    <v>32654</v>
+                                </b>
+                                <b>
+                                    <a>100</a>
+                                    <b>1213</b>
+                                    <v>15366</v>
+                                </b>
+                            </bs>
+                        </hist>
+                    </val>
+                </dep>
+                <dep>
+                    <src>parentid</src>
+                    <trg>sourceid</trg>
+                    <val>
+                        <hist>
+                            <budget>12</budget>
+                            <bs>
+                                <b>
+                                    <a>1</a>
+                                    <b>2</b>
+                                    <v>140222</v>
+                                </b>
+                                <b>
+                                    <a>2</a>
+                                    <b>3</b>
+                                    <v>65309</v>
+                                </b>
+                                <b>
+                                    <a>3</a>
+                                    <b>4</b>
+                                    <v>44179</v>
+                                </b>
+                                <b>
+                                    <a>4</a>
+                                    <b>5</b>
+                                    <v>34575</v>
+                                </b>
+                                <b>
+                                    <a>5</a>
+                                    <b>7</b>
+                                    <v>28812</v>
+                                </b>
+                                <b>
+                                    <a>7</a>
+                                    <b>9</b>
+                                    <v>34575</v>
+                                </b>
+                                <b>
+                                    <a>9</a>
+                                    <b>14</b>
+                                    <v>34575</v>
+                                </b>
+                                <b>
+                                    <a>14</a>
+                                    <b>26</b>
+                                    <v>32654</v>
+                                </b>
+                                <b>
+                                    <a>26</a>
+                                    <b>160</b>
+                                    <v>15366</v>
                                 </b>
                             </bs>
                         </hist>
@@ -9375,32 +9436,17 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>1292</v>
+                                    <v>2391465</v>
                                 </b>
                                 <b>
                                     <a>2</a>
-                                    <b>7</b>
-                                    <v>166</v>
+                                    <b>11</b>
+                                    <v>213215</v>
                                 </b>
                                 <b>
-                                    <a>7</a>
-                                    <b>53</b>
-                                    <v>160</v>
-                                </b>
-                                <b>
-                                    <a>55</a>
-                                    <b>289</b>
-                                    <v>166</v>
-                                </b>
-                                <b>
-                                    <a>353</a>
-                                    <b>3260</b>
-                                    <v>160</v>
-                                </b>
-                                <b>
-                                    <a>3665</a>
-                                    <b>450913</b>
-                                    <v>126</v>
+                                    <a>11</a>
+                                    <b>1565</b>
+                                    <v>182481</v>
                                 </b>
                             </bs>
                         </hist>
@@ -9416,32 +9462,17 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>1292</v>
+                                    <v>2391465</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>6</b>
-                                    <v>172</v>
+                                    <v>217056</v>
                                 </b>
                                 <b>
                                     <a>6</a>
-                                    <b>31</b>
-                                    <v>160</v>
-                                </b>
-                                <b>
-                                    <a>31</a>
-                                    <b>110</b>
-                                    <v>160</v>
-                                </b>
-                                <b>
-                                    <a>115</a>
-                                    <b>1202</b>
-                                    <v>160</v>
-                                </b>
-                                <b>
-                                    <a>1336</a>
-                                    <b>101026</b>
-                                    <v>126</v>
+                                    <b>492</b>
+                                    <v>178639</v>
                                 </b>
                             </bs>
                         </hist>
@@ -9457,7 +9488,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>2074</v>
+                                    <v>2787162</v>
                                 </b>
                             </bs>
                         </hist>
@@ -9467,15 +9498,15 @@
         </relation>
         <relation>
             <name>fielddecls</name>
-            <cardinality>398872</cardinality>
+            <cardinality>199475</cardinality>
             <columnsizes>
                 <e>
                     <k>id</k>
-                    <v>398872</v>
+                    <v>199475</v>
                 </e>
                 <e>
                     <k>parentid</k>
-                    <v>59898</v>
+                    <v>25503</v>
                 </e>
             </columnsizes>
             <dependencies>
@@ -9489,7 +9520,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>398872</v>
+                                    <v>199475</v>
                                 </b>
                             </bs>
                         </hist>
@@ -9505,32 +9536,57 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>29949</v>
+                                    <v>4554</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>13613</v>
+                                    <v>5465</v>
                                 </b>
                                 <b>
                                     <a>3</a>
                                     <b>4</b>
-                                    <v>5445</v>
+                                    <v>1821</v>
                                 </b>
                                 <b>
                                     <a>4</a>
-                                    <b>5</b>
-                                    <v>2722</v>
+                                    <b>6</b>
+                                    <v>1821</v>
                                 </b>
                                 <b>
                                     <a>6</a>
-                                    <b>16</b>
-                                    <v>5445</v>
+                                    <b>7</b>
+                                    <v>2732</v>
                                 </b>
                                 <b>
-                                    <a>40</a>
-                                    <b>159</b>
-                                    <v>2722</v>
+                                    <a>7</a>
+                                    <b>9</b>
+                                    <v>1821</v>
+                                </b>
+                                <b>
+                                    <a>9</a>
+                                    <b>10</b>
+                                    <v>910</v>
+                                </b>
+                                <b>
+                                    <a>10</a>
+                                    <b>11</b>
+                                    <v>1821</v>
+                                </b>
+                                <b>
+                                    <a>13</a>
+                                    <b>18</b>
+                                    <v>1821</v>
+                                </b>
+                                <b>
+                                    <a>19</a>
+                                    <b>20</b>
+                                    <v>1821</v>
+                                </b>
+                                <b>
+                                    <a>57</a>
+                                    <b>58</b>
+                                    <v>910</v>
                                 </b>
                             </bs>
                         </hist>
@@ -9540,19 +9596,19 @@
         </relation>
         <relation>
             <name>fieldDeclaredIn</name>
-            <cardinality>398872</cardinality>
+            <cardinality>199475</cardinality>
             <columnsizes>
                 <e>
                     <k>fieldId</k>
-                    <v>398872</v>
+                    <v>199475</v>
                 </e>
                 <e>
                     <k>fieldDeclId</k>
-                    <v>398872</v>
+                    <v>199475</v>
                 </e>
                 <e>
                     <k>pos</k>
-                    <v>1361</v>
+                    <v>910</v>
                 </e>
             </columnsizes>
             <dependencies>
@@ -9566,7 +9622,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>398872</v>
+                                    <v>199475</v>
                                 </b>
                             </bs>
                         </hist>
@@ -9582,7 +9638,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>398872</v>
+                                    <v>199475</v>
                                 </b>
                             </bs>
                         </hist>
@@ -9598,7 +9654,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>398872</v>
+                                    <v>199475</v>
                                 </b>
                             </bs>
                         </hist>
@@ -9614,7 +9670,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>398872</v>
+                                    <v>199475</v>
                                 </b>
                             </bs>
                         </hist>
@@ -9628,9 +9684,9 @@
                             <budget>12</budget>
                             <bs>
                                 <b>
-                                    <a>293</a>
-                                    <b>294</b>
-                                    <v>1361</v>
+                                    <a>219</a>
+                                    <b>220</b>
+                                    <v>910</v>
                                 </b>
                             </bs>
                         </hist>
@@ -9644,9 +9700,9 @@
                             <budget>12</budget>
                             <bs>
                                 <b>
-                                    <a>293</a>
-                                    <b>294</b>
-                                    <v>1361</v>
+                                    <a>219</a>
+                                    <b>220</b>
+                                    <v>910</v>
                                 </b>
                             </bs>
                         </hist>
@@ -9656,27 +9712,27 @@
         </relation>
         <relation>
             <name>fields</name>
-            <cardinality>27509955</cardinality>
+            <cardinality>19350704</cardinality>
             <columnsizes>
                 <e>
                     <k>id</k>
-                    <v>27509955</v>
+                    <v>19350704</v>
                 </e>
                 <e>
                     <k>nodeName</k>
-                    <v>10900247</v>
+                    <v>13628474</v>
                 </e>
                 <e>
                     <k>typeid</k>
-                    <v>2728125</v>
+                    <v>3038794</v>
                 </e>
                 <e>
                     <k>parentid</k>
-                    <v>3851230</v>
+                    <v>4089502</v>
                 </e>
                 <e>
                     <k>sourceid</k>
-                    <v>27509955</v>
+                    <v>19350704</v>
                 </e>
             </columnsizes>
             <dependencies>
@@ -9690,7 +9746,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>27509955</v>
+                                    <v>19350704</v>
                                 </b>
                             </bs>
                         </hist>
@@ -9706,7 +9762,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>27509955</v>
+                                    <v>19350704</v>
                                 </b>
                             </bs>
                         </hist>
@@ -9722,7 +9778,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>27509955</v>
+                                    <v>19350704</v>
                                 </b>
                             </bs>
                         </hist>
@@ -9738,7 +9794,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>27509955</v>
+                                    <v>19350704</v>
                                 </b>
                             </bs>
                         </hist>
@@ -9754,22 +9810,17 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>8061854</v>
+                                    <v>12016876</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>1433490</v>
+                                    <v>1123700</v>
                                 </b>
                                 <b>
                                     <a>3</a>
-                                    <b>11</b>
-                                    <v>760988</v>
-                                </b>
-                                <b>
-                                    <a>11</a>
-                                    <b>828</b>
-                                    <v>643913</v>
+                                    <b>722</b>
+                                    <v>487897</v>
                                 </b>
                             </bs>
                         </hist>
@@ -9785,17 +9836,17 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>9875159</v>
+                                    <v>12416414</v>
                                 </b>
                                 <b>
                                     <a>2</a>
-                                    <b>4</b>
-                                    <v>850837</v>
+                                    <b>5</b>
+                                    <v>1085283</v>
                                 </b>
                                 <b>
-                                    <a>4</a>
+                                    <a>5</a>
                                     <b>160</b>
-                                    <v>174251</v>
+                                    <v>126776</v>
                                 </b>
                             </bs>
                         </hist>
@@ -9811,22 +9862,17 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>8061854</v>
+                                    <v>12016876</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>1433490</v>
+                                    <v>1123700</v>
                                 </b>
                                 <b>
                                     <a>3</a>
-                                    <b>11</b>
-                                    <v>760988</v>
-                                </b>
-                                <b>
-                                    <a>11</a>
-                                    <b>828</b>
-                                    <v>643913</v>
+                                    <b>722</b>
+                                    <v>487897</v>
                                 </b>
                             </bs>
                         </hist>
@@ -9842,22 +9888,17 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>8061854</v>
+                                    <v>12016876</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>1433490</v>
+                                    <v>1123700</v>
                                 </b>
                                 <b>
                                     <a>3</a>
-                                    <b>11</b>
-                                    <v>760988</v>
-                                </b>
-                                <b>
-                                    <a>11</a>
-                                    <b>828</b>
-                                    <v>643913</v>
+                                    <b>722</b>
+                                    <v>487897</v>
                                 </b>
                             </bs>
                         </hist>
@@ -9873,32 +9914,27 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>1732985</v>
+                                    <v>2059157</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>338973</v>
+                                    <v>320782</v>
                                 </b>
                                 <b>
                                     <a>3</a>
                                     <b>4</b>
-                                    <v>175612</v>
+                                    <v>213215</v>
                                 </b>
                                 <b>
                                     <a>4</a>
-                                    <b>7</b>
-                                    <v>208284</v>
+                                    <b>8</b>
+                                    <v>245869</v>
                                 </b>
                                 <b>
-                                    <a>7</a>
-                                    <b>24</b>
-                                    <v>205562</v>
-                                </b>
-                                <b>
-                                    <a>24</a>
-                                    <b>7479</b>
-                                    <v>66705</v>
+                                    <a>8</a>
+                                    <b>2588</b>
+                                    <v>199769</v>
                                 </b>
                             </bs>
                         </hist>
@@ -9914,27 +9950,27 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>1894985</v>
+                                    <v>2120625</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>302217</v>
+                                    <v>299653</v>
                                 </b>
                                 <b>
                                     <a>3</a>
                                     <b>4</b>
-                                    <v>183780</v>
+                                    <v>199769</v>
                                 </b>
                                 <b>
                                     <a>4</a>
                                     <b>9</b>
-                                    <v>212369</v>
+                                    <v>255473</v>
                                 </b>
                                 <b>
                                     <a>9</a>
-                                    <b>2335</b>
-                                    <v>134772</v>
+                                    <b>2016</b>
+                                    <v>163272</v>
                                 </b>
                             </bs>
                         </hist>
@@ -9950,17 +9986,17 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>2326529</v>
+                                    <v>2706486</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>4</b>
-                                    <v>228705</v>
+                                    <v>251632</v>
                                 </b>
                                 <b>
                                     <a>4</a>
-                                    <b>1392</b>
-                                    <v>172890</v>
+                                    <b>1014</b>
+                                    <v>80675</v>
                                 </b>
                             </bs>
                         </hist>
@@ -9976,32 +10012,27 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>1732985</v>
+                                    <v>2059157</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>338973</v>
+                                    <v>320782</v>
                                 </b>
                                 <b>
                                     <a>3</a>
                                     <b>4</b>
-                                    <v>175612</v>
+                                    <v>213215</v>
                                 </b>
                                 <b>
                                     <a>4</a>
-                                    <b>7</b>
-                                    <v>208284</v>
+                                    <b>8</b>
+                                    <v>245869</v>
                                 </b>
                                 <b>
-                                    <a>7</a>
-                                    <b>24</b>
-                                    <v>205562</v>
-                                </b>
-                                <b>
-                                    <a>24</a>
-                                    <b>7479</b>
-                                    <v>66705</v>
+                                    <a>8</a>
+                                    <b>2588</b>
+                                    <v>199769</v>
                                 </b>
                             </bs>
                         </hist>
@@ -10017,37 +10048,32 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>1937186</v>
+                                    <v>2427962</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>484636</v>
+                                    <v>478293</v>
                                 </b>
                                 <b>
                                     <a>3</a>
                                     <b>4</b>
-                                    <v>303578</v>
+                                    <v>303495</v>
                                 </b>
                                 <b>
                                     <a>4</a>
                                     <b>6</b>
-                                    <v>341696</v>
+                                    <v>338070</v>
                                 </b>
                                 <b>
                                     <a>6</a>
-                                    <b>10</b>
-                                    <v>300856</v>
+                                    <b>13</b>
+                                    <v>330387</v>
                                 </b>
                                 <b>
-                                    <a>10</a>
-                                    <b>27</b>
-                                    <v>291326</v>
-                                </b>
-                                <b>
-                                    <a>27</a>
+                                    <a>13</a>
                                     <b>1610</b>
-                                    <v>191948</v>
+                                    <v>211294</v>
                                 </b>
                             </bs>
                         </hist>
@@ -10063,37 +10089,32 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>1937186</v>
+                                    <v>2427962</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>484636</v>
+                                    <v>478293</v>
                                 </b>
                                 <b>
                                     <a>3</a>
                                     <b>4</b>
-                                    <v>303578</v>
+                                    <v>303495</v>
                                 </b>
                                 <b>
                                     <a>4</a>
                                     <b>6</b>
-                                    <v>341696</v>
+                                    <v>338070</v>
                                 </b>
                                 <b>
                                     <a>6</a>
-                                    <b>10</b>
-                                    <v>300856</v>
+                                    <b>13</b>
+                                    <v>330387</v>
                                 </b>
                                 <b>
-                                    <a>10</a>
-                                    <b>27</b>
-                                    <v>291326</v>
-                                </b>
-                                <b>
-                                    <a>27</a>
+                                    <a>13</a>
                                     <b>1610</b>
-                                    <v>191948</v>
+                                    <v>211294</v>
                                 </b>
                             </bs>
                         </hist>
@@ -10109,27 +10130,22 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>2499419</v>
+                                    <v>3031110</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>623493</v>
+                                    <v>595465</v>
                                 </b>
                                 <b>
                                     <a>3</a>
-                                    <b>4</b>
-                                    <v>243679</v>
+                                    <b>5</b>
+                                    <v>347674</v>
                                 </b>
                                 <b>
-                                    <a>4</a>
-                                    <b>7</b>
-                                    <v>338973</v>
-                                </b>
-                                <b>
-                                    <a>7</a>
+                                    <a>5</a>
                                     <b>76</b>
-                                    <v>145663</v>
+                                    <v>115251</v>
                                 </b>
                             </bs>
                         </hist>
@@ -10145,37 +10161,32 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>1937186</v>
+                                    <v>2427962</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>484636</v>
+                                    <v>478293</v>
                                 </b>
                                 <b>
                                     <a>3</a>
                                     <b>4</b>
-                                    <v>303578</v>
+                                    <v>303495</v>
                                 </b>
                                 <b>
                                     <a>4</a>
                                     <b>6</b>
-                                    <v>341696</v>
+                                    <v>338070</v>
                                 </b>
                                 <b>
                                     <a>6</a>
-                                    <b>10</b>
-                                    <v>300856</v>
+                                    <b>13</b>
+                                    <v>330387</v>
                                 </b>
                                 <b>
-                                    <a>10</a>
-                                    <b>27</b>
-                                    <v>291326</v>
-                                </b>
-                                <b>
-                                    <a>27</a>
+                                    <a>13</a>
                                     <b>1610</b>
-                                    <v>191948</v>
+                                    <v>211294</v>
                                 </b>
                             </bs>
                         </hist>
@@ -10191,7 +10202,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>27509955</v>
+                                    <v>19350704</v>
                                 </b>
                             </bs>
                         </hist>
@@ -10207,7 +10218,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>27509955</v>
+                                    <v>19350704</v>
                                 </b>
                             </bs>
                         </hist>
@@ -10223,7 +10234,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>27509955</v>
+                                    <v>19350704</v>
                                 </b>
                             </bs>
                         </hist>
@@ -10239,7 +10250,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>27509955</v>
+                                    <v>19350704</v>
                                 </b>
                             </bs>
                         </hist>
@@ -10249,15 +10260,15 @@
         </relation>
         <relation>
             <name>fieldsKotlinType</name>
-            <cardinality>27509955</cardinality>
+            <cardinality>19350704</cardinality>
             <columnsizes>
                 <e>
                     <k>id</k>
-                    <v>27509955</v>
+                    <v>19350704</v>
                 </e>
                 <e>
                     <k>kttypeid</k>
-                    <v>1361</v>
+                    <v>1920</v>
                 </e>
             </columnsizes>
             <dependencies>
@@ -10271,7 +10282,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>27509955</v>
+                                    <v>19350704</v>
                                 </b>
                             </bs>
                         </hist>
@@ -10285,9 +10296,9 @@
                             <budget>12</budget>
                             <bs>
                                 <b>
-                                    <a>20208</a>
-                                    <b>20209</b>
-                                    <v>1361</v>
+                                    <a>10074</a>
+                                    <b>10075</b>
+                                    <v>1920</v>
                                 </b>
                             </bs>
                         </hist>
@@ -10297,31 +10308,31 @@
         </relation>
         <relation>
             <name>constrs</name>
-            <cardinality>6869320</cardinality>
+            <cardinality>8006128</cardinality>
             <columnsizes>
                 <e>
                     <k>id</k>
-                    <v>6869320</v>
+                    <v>8006128</v>
                 </e>
                 <e>
                     <k>nodeName</k>
-                    <v>3746407</v>
+                    <v>4333451</v>
                 </e>
                 <e>
                     <k>signature</k>
-                    <v>5871458</v>
+                    <v>6803672</v>
                 </e>
                 <e>
                     <k>typeid</k>
-                    <v>2722</v>
+                    <v>3841</v>
                 </e>
                 <e>
                     <k>parentid</k>
-                    <v>4835479</v>
+                    <v>5639633</v>
                 </e>
                 <e>
                     <k>sourceid</k>
-                    <v>5054654</v>
+                    <v>5720309</v>
                 </e>
             </columnsizes>
             <dependencies>
@@ -10335,7 +10346,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>6869320</v>
+                                    <v>8006128</v>
                                 </b>
                             </bs>
                         </hist>
@@ -10351,7 +10362,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>6869320</v>
+                                    <v>8006128</v>
                                 </b>
                             </bs>
                         </hist>
@@ -10367,7 +10378,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>6869320</v>
+                                    <v>8006128</v>
                                 </b>
                             </bs>
                         </hist>
@@ -10383,7 +10394,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>6869320</v>
+                                    <v>8006128</v>
                                 </b>
                             </bs>
                         </hist>
@@ -10399,7 +10410,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>6869320</v>
+                                    <v>8006128</v>
                                 </b>
                             </bs>
                         </hist>
@@ -10415,22 +10426,58 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>2361924</v>
+                                    <v>2623889</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>835862</v>
+                                    <v>1085283</v>
+                                </b>
+                                <b>
+                                    <a>3</a>
+                                    <b>4</b>
+                                    <v>259315</v>
+                                </b>
+                                <b>
+                                    <a>4</a>
+                                    <b>11</b>
+                                    <v>326545</v>
+                                </b>
+                                <b>
+                                    <a>11</a>
+                                    <b>36</b>
+                                    <v>38417</v>
+                                </b>
+                            </bs>
+                        </hist>
+                    </val>
+                </dep>
+                <dep>
+                    <src>nodeName</src>
+                    <trg>signature</trg>
+                    <val>
+                        <hist>
+                            <budget>12</budget>
+                            <bs>
+                                <b>
+                                    <a>1</a>
+                                    <b>2</b>
+                                    <v>2977327</v>
+                                </b>
+                                <b>
+                                    <a>2</a>
+                                    <b>3</b>
+                                    <v>868226</v>
                                 </b>
                                 <b>
                                     <a>3</a>
                                     <b>5</b>
-                                    <v>345780</v>
+                                    <v>341912</v>
                                 </b>
                                 <b>
                                     <a>5</a>
-                                    <b>42</b>
-                                    <v>202839</v>
+                                    <b>19</b>
+                                    <v>145985</v>
                                 </b>
                             </bs>
                         </hist>
@@ -10438,7 +10485,7 @@
                 </dep>
                 <dep>
                     <src>nodeName</src>
-                    <trg>signature</trg>
+                    <trg>typeid</trg>
                     <val>
                         <hist>
                             <budget>12</budget>
@@ -10446,95 +10493,64 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>2628747</v>
+                                    <v>4333451</v>
+                                </b>
+                            </bs>
+                        </hist>
+                    </val>
+                </dep>
+                <dep>
+                    <src>nodeName</src>
+                    <trg>parentid</trg>
+                    <val>
+                        <hist>
+                            <budget>12</budget>
+                            <bs>
+                                <b>
+                                    <a>1</a>
+                                    <b>2</b>
+                                    <v>3764878</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>683392</v>
+                                    <v>401458</v>
+                                </b>
+                                <b>
+                                    <a>3</a>
+                                    <b>36</b>
+                                    <v>167114</v>
+                                </b>
+                            </bs>
+                        </hist>
+                    </val>
+                </dep>
+                <dep>
+                    <src>nodeName</src>
+                    <trg>sourceid</trg>
+                    <val>
+                        <hist>
+                            <budget>12</budget>
+                            <bs>
+                                <b>
+                                    <a>1</a>
+                                    <b>2</b>
+                                    <v>2737220</v>
+                                </b>
+                                <b>
+                                    <a>2</a>
+                                    <b>3</b>
+                                    <v>1083362</v>
                                 </b>
                                 <b>
                                     <a>3</a>
                                     <b>5</b>
-                                    <v>302217</v>
+                                    <v>353437</v>
                                 </b>
                                 <b>
                                     <a>5</a>
-                                    <b>19</b>
-                                    <v>132049</v>
-                                </b>
-                            </bs>
-                        </hist>
-                    </val>
-                </dep>
-                <dep>
-                    <src>nodeName</src>
-                    <trg>typeid</trg>
-                    <val>
-                        <hist>
-                            <budget>12</budget>
-                            <bs>
-                                <b>
-                                    <a>1</a>
-                                    <b>2</b>
-                                    <v>3746407</v>
-                                </b>
-                            </bs>
-                        </hist>
-                    </val>
-                </dep>
-                <dep>
-                    <src>nodeName</src>
-                    <trg>parentid</trg>
-                    <val>
-                        <hist>
-                            <budget>12</budget>
-                            <bs>
-                                <b>
-                                    <a>1</a>
-                                    <b>2</b>
-                                    <v>3287635</v>
-                                </b>
-                                <b>
-                                    <a>2</a>
-                                    <b>3</b>
-                                    <v>314469</v>
-                                </b>
-                                <b>
-                                    <a>3</a>
-                                    <b>42</b>
-                                    <v>144302</v>
-                                </b>
-                            </bs>
-                        </hist>
-                    </val>
-                </dep>
-                <dep>
-                    <src>nodeName</src>
-                    <trg>sourceid</trg>
-                    <val>
-                        <hist>
-                            <budget>12</budget>
-                            <bs>
-                                <b>
-                                    <a>1</a>
-                                    <b>2</b>
-                                    <v>2453134</v>
-                                </b>
-                                <b>
-                                    <a>2</a>
-                                    <b>3</b>
-                                    <v>827694</v>
-                                </b>
-                                <b>
-                                    <a>3</a>
-                                    <b>5</b>
-                                    <v>318553</v>
-                                </b>
-                                <b>
-                                    <a>5</a>
-                                    <b>38</b>
-                                    <v>147024</v>
+                                    <b>32</b>
+                                    <v>159431</v>
                                 </b>
                             </bs>
                         </hist>
@@ -10550,12 +10566,12 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>5461695</v>
+                                    <v>6302329</v>
                                 </b>
                                 <b>
                                     <a>2</a>
-                                    <b>42</b>
-                                    <v>409763</v>
+                                    <b>36</b>
+                                    <v>501343</v>
                                 </b>
                             </bs>
                         </hist>
@@ -10571,7 +10587,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>5871458</v>
+                                    <v>6803672</v>
                                 </b>
                             </bs>
                         </hist>
@@ -10587,7 +10603,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>5871458</v>
+                                    <v>6803672</v>
                                 </b>
                             </bs>
                         </hist>
@@ -10603,12 +10619,12 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>5461695</v>
+                                    <v>6302329</v>
                                 </b>
                                 <b>
                                     <a>2</a>
-                                    <b>42</b>
-                                    <v>409763</v>
+                                    <b>36</b>
+                                    <v>501343</v>
                                 </b>
                             </bs>
                         </hist>
@@ -10624,12 +10640,12 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>5591022</v>
+                                    <v>6461760</v>
                                 </b>
                                 <b>
                                     <a>2</a>
-                                    <b>32</b>
-                                    <v>280436</v>
+                                    <b>23</b>
+                                    <v>341912</v>
                                 </b>
                             </bs>
                         </hist>
@@ -10643,14 +10659,14 @@
                             <budget>12</budget>
                             <bs>
                                 <b>
-                                    <a>31</a>
-                                    <b>32</b>
-                                    <v>1361</v>
+                                    <a>22</a>
+                                    <b>23</b>
+                                    <v>1920</v>
                                 </b>
                                 <b>
-                                    <a>5015</a>
-                                    <b>5016</b>
-                                    <v>1361</v>
+                                    <a>4146</a>
+                                    <b>4147</b>
+                                    <v>1920</v>
                                 </b>
                             </bs>
                         </hist>
@@ -10666,12 +10682,12 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>1361</v>
+                                    <v>1920</v>
                                 </b>
                                 <b>
-                                    <a>2751</a>
-                                    <b>2752</b>
-                                    <v>1361</v>
+                                    <a>2255</a>
+                                    <b>2256</b>
+                                    <v>1920</v>
                                 </b>
                             </bs>
                         </hist>
@@ -10687,12 +10703,12 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>1361</v>
+                                    <v>1920</v>
                                 </b>
                                 <b>
-                                    <a>4312</a>
-                                    <b>4313</b>
-                                    <v>1361</v>
+                                    <a>3541</a>
+                                    <b>3542</b>
+                                    <v>1920</v>
                                 </b>
                             </bs>
                         </hist>
@@ -10706,14 +10722,14 @@
                             <budget>12</budget>
                             <bs>
                                 <b>
-                                    <a>31</a>
-                                    <b>32</b>
-                                    <v>1361</v>
+                                    <a>22</a>
+                                    <b>23</b>
+                                    <v>1920</v>
                                 </b>
                                 <b>
-                                    <a>3521</a>
-                                    <b>3522</b>
-                                    <v>1361</v>
+                                    <a>2914</a>
+                                    <b>2915</b>
+                                    <v>1920</v>
                                 </b>
                             </bs>
                         </hist>
@@ -10727,14 +10743,14 @@
                             <budget>12</budget>
                             <bs>
                                 <b>
-                                    <a>31</a>
-                                    <b>32</b>
-                                    <v>1361</v>
+                                    <a>22</a>
+                                    <b>23</b>
+                                    <v>1920</v>
                                 </b>
                                 <b>
-                                    <a>3682</a>
-                                    <b>3683</b>
-                                    <v>1361</v>
+                                    <a>2956</a>
+                                    <b>2957</b>
+                                    <v>1920</v>
                                 </b>
                             </bs>
                         </hist>
@@ -10750,22 +10766,22 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>3676978</v>
+                                    <v>4256617</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>737846</v>
+                                    <v>895118</v>
                                 </b>
                                 <b>
                                     <a>3</a>
                                     <b>6</b>
-                                    <v>366200</v>
+                                    <v>434113</v>
                                 </b>
                                 <b>
                                     <a>6</a>
                                     <b>19</b>
-                                    <v>54453</v>
+                                    <v>53783</v>
                                 </b>
                             </bs>
                         </hist>
@@ -10781,7 +10797,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>4835479</v>
+                                    <v>5639633</v>
                                 </b>
                             </bs>
                         </hist>
@@ -10797,22 +10813,22 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>3676978</v>
+                                    <v>4256617</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>737846</v>
+                                    <v>895118</v>
                                 </b>
                                 <b>
                                     <a>3</a>
                                     <b>6</b>
-                                    <v>366200</v>
+                                    <v>434113</v>
                                 </b>
                                 <b>
                                     <a>6</a>
                                     <b>19</b>
-                                    <v>54453</v>
+                                    <v>53783</v>
                                 </b>
                             </bs>
                         </hist>
@@ -10828,7 +10844,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>4835479</v>
+                                    <v>5639633</v>
                                 </b>
                             </bs>
                         </hist>
@@ -10844,22 +10860,22 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>3676978</v>
+                                    <v>4256617</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>737846</v>
+                                    <v>895118</v>
                                 </b>
                                 <b>
                                     <a>3</a>
                                     <b>6</b>
-                                    <v>366200</v>
+                                    <v>434113</v>
                                 </b>
                                 <b>
                                     <a>6</a>
                                     <b>19</b>
-                                    <v>54453</v>
+                                    <v>53783</v>
                                 </b>
                             </bs>
                         </hist>
@@ -10875,12 +10891,12 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>4742907</v>
+                                    <v>5357267</v>
                                 </b>
                                 <b>
                                     <a>2</a>
-                                    <b>259</b>
-                                    <v>311746</v>
+                                    <b>209</b>
+                                    <v>363041</v>
                                 </b>
                             </bs>
                         </hist>
@@ -10896,12 +10912,12 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>4742907</v>
+                                    <v>5357267</v>
                                 </b>
                                 <b>
                                     <a>2</a>
-                                    <b>212</b>
-                                    <v>311746</v>
+                                    <b>172</b>
+                                    <v>363041</v>
                                 </b>
                             </bs>
                         </hist>
@@ -10917,12 +10933,12 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>4742907</v>
+                                    <v>5357267</v>
                                 </b>
                                 <b>
                                     <a>2</a>
-                                    <b>212</b>
-                                    <v>311746</v>
+                                    <b>172</b>
+                                    <v>363041</v>
                                 </b>
                             </bs>
                         </hist>
@@ -10938,7 +10954,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>5054654</v>
+                                    <v>5720309</v>
                                 </b>
                             </bs>
                         </hist>
@@ -10954,12 +10970,12 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>4742907</v>
+                                    <v>5357267</v>
                                 </b>
                                 <b>
                                     <a>2</a>
-                                    <b>259</b>
-                                    <v>311746</v>
+                                    <b>209</b>
+                                    <v>363041</v>
                                 </b>
                             </bs>
                         </hist>
@@ -10969,15 +10985,15 @@
         </relation>
         <relation>
             <name>constrsKotlinType</name>
-            <cardinality>6869320</cardinality>
+            <cardinality>8006128</cardinality>
             <columnsizes>
                 <e>
                     <k>id</k>
-                    <v>6869320</v>
+                    <v>8006128</v>
                 </e>
                 <e>
                     <k>kttypeid</k>
-                    <v>1361</v>
+                    <v>1920</v>
                 </e>
             </columnsizes>
             <dependencies>
@@ -10991,7 +11007,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>6869320</v>
+                                    <v>8006128</v>
                                 </b>
                             </bs>
                         </hist>
@@ -11005,9 +11021,9 @@
                             <budget>12</budget>
                             <bs>
                                 <b>
-                                    <a>5046</a>
-                                    <b>5047</b>
-                                    <v>1361</v>
+                                    <a>4168</a>
+                                    <b>4169</b>
+                                    <v>1920</v>
                                 </b>
                             </bs>
                         </hist>
@@ -11017,31 +11033,31 @@
         </relation>
         <relation>
             <name>methods</name>
-            <cardinality>93308954</cardinality>
+            <cardinality>109719302</cardinality>
             <columnsizes>
                 <e>
                     <k>id</k>
-                    <v>93308954</v>
+                    <v>109719302</v>
                 </e>
                 <e>
                     <k>nodeName</k>
-                    <v>20326164</v>
+                    <v>22908130</v>
                 </e>
                 <e>
                     <k>signature</k>
-                    <v>29772501</v>
+                    <v>33369112</v>
                 </e>
                 <e>
                     <k>typeid</k>
-                    <v>11583640</v>
+                    <v>13338425</v>
                 </e>
                 <e>
                     <k>parentid</k>
-                    <v>11270532</v>
+                    <v>12810189</v>
                 </e>
                 <e>
                     <k>sourceid</k>
-                    <v>58543057</v>
+                    <v>67091663</v>
                 </e>
             </columnsizes>
             <dependencies>
@@ -11055,7 +11071,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>93308954</v>
+                                    <v>109719302</v>
                                 </b>
                             </bs>
                         </hist>
@@ -11071,7 +11087,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>93308954</v>
+                                    <v>109719302</v>
                                 </b>
                             </bs>
                         </hist>
@@ -11087,7 +11103,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>93308954</v>
+                                    <v>109719302</v>
                                 </b>
                             </bs>
                         </hist>
@@ -11103,7 +11119,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>93308954</v>
+                                    <v>109719302</v>
                                 </b>
                             </bs>
                         </hist>
@@ -11119,7 +11135,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>93308954</v>
+                                    <v>109719302</v>
                                 </b>
                             </bs>
                         </hist>
@@ -11135,32 +11151,32 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>11834127</v>
+                                    <v>13324979</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>3821280</v>
+                                    <v>4070294</v>
                                 </b>
                                 <b>
                                     <a>3</a>
                                     <b>4</b>
-                                    <v>1315054</v>
+                                    <v>1573181</v>
                                 </b>
                                 <b>
                                     <a>4</a>
                                     <b>7</b>
-                                    <v>1792884</v>
+                                    <v>2026503</v>
                                 </b>
                                 <b>
                                     <a>7</a>
-                                    <b>271</b>
-                                    <v>1524700</v>
+                                    <b>56</b>
+                                    <v>1719166</v>
                                 </b>
                                 <b>
-                                    <a>276</a>
-                                    <b>2134</b>
-                                    <v>38117</v>
+                                    <a>57</a>
+                                    <b>1769</b>
+                                    <v>194006</v>
                                 </b>
                             </bs>
                         </hist>
@@ -11176,17 +11192,17 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>16853387</v>
+                                    <v>19150935</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>2115522</v>
+                                    <v>2228193</v>
                                 </b>
                                 <b>
                                     <a>3</a>
-                                    <b>361</b>
-                                    <v>1357255</v>
+                                    <b>298</b>
+                                    <v>1529001</v>
                                 </b>
                             </bs>
                         </hist>
@@ -11202,22 +11218,22 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>17082092</v>
+                                    <v>19179748</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>1678532</v>
+                                    <v>1872834</v>
                                 </b>
                                 <b>
                                     <a>3</a>
-                                    <b>52</b>
-                                    <v>1524700</v>
+                                    <b>25</b>
+                                    <v>1726849</v>
                                 </b>
                                 <b>
-                                    <a>52</a>
-                                    <b>845</b>
-                                    <v>40840</v>
+                                    <a>25</a>
+                                    <b>741</b>
+                                    <v>128697</v>
                                 </b>
                             </bs>
                         </hist>
@@ -11233,27 +11249,27 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>12555637</v>
+                                    <v>14028012</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>3596659</v>
+                                    <v>3889733</v>
                                 </b>
                                 <b>
                                     <a>3</a>
                                     <b>4</b>
-                                    <v>1245625</v>
+                                    <v>1502109</v>
                                 </b>
                                 <b>
                                     <a>4</a>
                                     <b>7</b>
-                                    <v>1577792</v>
+                                    <v>1817129</v>
                                 </b>
                                 <b>
                                     <a>7</a>
-                                    <b>1278</b>
-                                    <v>1350449</v>
+                                    <b>1099</b>
+                                    <v>1671144</v>
                                 </b>
                             </bs>
                         </hist>
@@ -11269,27 +11285,27 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>12213940</v>
+                                    <v>13743725</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>3951969</v>
+                                    <v>4283509</v>
                                 </b>
                                 <b>
                                     <a>3</a>
                                     <b>4</b>
-                                    <v>1297356</v>
+                                    <v>1544368</v>
                                 </b>
                                 <b>
                                     <a>4</a>
                                     <b>7</b>
-                                    <v>1656750</v>
+                                    <v>1857467</v>
                                 </b>
                                 <b>
                                     <a>7</a>
-                                    <b>928</b>
-                                    <v>1206147</v>
+                                    <b>800</b>
+                                    <v>1479059</v>
                                 </b>
                             </bs>
                         </hist>
@@ -11305,22 +11321,27 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>20356114</v>
+                                    <v>22735253</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>4957999</v>
+                                    <v>5434102</v>
                                 </b>
                                 <b>
                                     <a>3</a>
                                     <b>5</b>
-                                    <v>2363285</v>
+                                    <v>2635414</v>
                                 </b>
                                 <b>
                                     <a>5</a>
-                                    <b>1275</b>
-                                    <v>2095101</v>
+                                    <b>157</b>
+                                    <v>2502875</v>
+                                </b>
+                                <b>
+                                    <a>157</a>
+                                    <b>1096</b>
+                                    <v>61467</v>
                                 </b>
                             </bs>
                         </hist>
@@ -11336,7 +11357,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>29772501</v>
+                                    <v>33369112</v>
                                 </b>
                             </bs>
                         </hist>
@@ -11352,17 +11373,17 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>26733991</v>
+                                    <v>29957672</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>5</b>
-                                    <v>2383706</v>
+                                    <v>2650781</v>
                                 </b>
                                 <b>
                                     <a>5</a>
-                                    <b>843</b>
-                                    <v>654804</v>
+                                    <b>739</b>
+                                    <v>760659</v>
                                 </b>
                             </bs>
                         </hist>
@@ -11378,22 +11399,27 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>20360198</v>
+                                    <v>22741015</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>4956638</v>
+                                    <v>5432181</v>
                                 </b>
                                 <b>
                                     <a>3</a>
                                     <b>5</b>
-                                    <v>2361924</v>
+                                    <v>2631572</v>
                                 </b>
                                 <b>
                                     <a>5</a>
-                                    <b>1275</b>
-                                    <v>2093740</v>
+                                    <b>157</b>
+                                    <v>2502875</v>
+                                </b>
+                                <b>
+                                    <a>157</a>
+                                    <b>1096</b>
+                                    <v>61467</v>
                                 </b>
                             </bs>
                         </hist>
@@ -11409,22 +11435,22 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>20978246</v>
+                                    <v>23365294</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>5076436</v>
+                                    <v>5656921</v>
                                 </b>
                                 <b>
                                     <a>3</a>
                                     <b>6</b>
-                                    <v>2533453</v>
+                                    <v>2900492</v>
                                 </b>
                                 <b>
                                     <a>6</a>
-                                    <b>923</b>
-                                    <v>1184365</v>
+                                    <b>795</b>
+                                    <v>1446404</v>
                                 </b>
                             </bs>
                         </hist>
@@ -11440,32 +11466,32 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>5684955</v>
+                                    <v>6603903</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>2449050</v>
+                                    <v>2729536</v>
                                 </b>
                                 <b>
                                     <a>3</a>
                                     <b>4</b>
-                                    <v>1089071</v>
+                                    <v>1208218</v>
                                 </b>
                                 <b>
                                     <a>4</a>
                                     <b>6</b>
-                                    <v>925711</v>
+                                    <v>1119859</v>
                                 </b>
                                 <b>
                                     <a>6</a>
-                                    <b>14</b>
-                                    <v>875341</v>
+                                    <b>15</b>
+                                    <v>1019974</v>
                                 </b>
                                 <b>
-                                    <a>14</a>
-                                    <b>11667</b>
-                                    <v>559510</v>
+                                    <a>15</a>
+                                    <b>10335</b>
+                                    <v>656932</v>
                                 </b>
                             </bs>
                         </hist>
@@ -11481,22 +11507,22 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>7613973</v>
+                                    <v>8714924</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>2218983</v>
+                                    <v>2620047</v>
                                 </b>
                                 <b>
                                     <a>3</a>
                                     <b>6</b>
-                                    <v>1060483</v>
+                                    <v>1167880</v>
                                 </b>
                                 <b>
                                     <a>6</a>
-                                    <b>3940</b>
-                                    <v>690199</v>
+                                    <b>2888</b>
+                                    <v>835572</v>
                                 </b>
                             </bs>
                         </hist>
@@ -11512,27 +11538,22 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>7370293</v>
+                                    <v>8565097</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>2274798</v>
+                                    <v>2602760</v>
                                 </b>
                                 <b>
                                     <a>3</a>
-                                    <b>5</b>
-                                    <v>875341</v>
+                                    <b>6</b>
+                                    <v>1210139</v>
                                 </b>
                                 <b>
-                                    <a>5</a>
-                                    <b>17</b>
-                                    <v>882148</v>
-                                </b>
-                                <b>
-                                    <a>17</a>
-                                    <b>5689</b>
-                                    <v>181058</v>
+                                    <a>6</a>
+                                    <b>4142</b>
+                                    <v>960428</v>
                                 </b>
                             </bs>
                         </hist>
@@ -11548,27 +11569,27 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>6786279</v>
+                                    <v>7714158</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>2466747</v>
+                                    <v>2869759</v>
                                 </b>
                                 <b>
                                     <a>3</a>
                                     <b>4</b>
-                                    <v>1003307</v>
+                                    <v>1108333</v>
                                 </b>
                                 <b>
                                     <a>4</a>
-                                    <b>9</b>
-                                    <v>916181</v>
+                                    <b>8</b>
+                                    <v>1069916</v>
                                 </b>
                                 <b>
-                                    <a>9</a>
-                                    <b>3420</b>
-                                    <v>411124</v>
+                                    <a>8</a>
+                                    <b>2865</b>
+                                    <v>576256</v>
                                 </b>
                             </bs>
                         </hist>
@@ -11584,32 +11605,32 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>6180482</v>
+                                    <v>7166714</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>2262546</v>
+                                    <v>2524004</v>
                                 </b>
                                 <b>
                                     <a>3</a>
                                     <b>4</b>
-                                    <v>985610</v>
+                                    <v>1096808</v>
                                 </b>
                                 <b>
                                     <a>4</a>
                                     <b>6</b>
-                                    <v>910736</v>
+                                    <v>1094888</v>
                                 </b>
                                 <b>
                                     <a>6</a>
                                     <b>16</b>
-                                    <v>890316</v>
+                                    <v>1016132</v>
                                 </b>
                                 <b>
                                     <a>16</a>
-                                    <b>8855</b>
-                                    <v>353948</v>
+                                    <b>6435</b>
+                                    <v>439876</v>
                                 </b>
                             </bs>
                         </hist>
@@ -11625,52 +11646,52 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>3190980</v>
+                                    <v>3630418</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>1287827</v>
+                                    <v>1456008</v>
                                 </b>
                                 <b>
                                     <a>3</a>
                                     <b>4</b>
-                                    <v>1029172</v>
+                                    <v>1164038</v>
                                 </b>
                                 <b>
                                     <a>4</a>
                                     <b>5</b>
-                                    <v>744652</v>
+                                    <v>735687</v>
                                 </b>
                                 <b>
                                     <a>5</a>
                                     <b>7</b>
-                                    <v>924349</v>
+                                    <v>1021895</v>
                                 </b>
                                 <b>
                                     <a>7</a>
                                     <b>10</b>
-                                    <v>952937</v>
+                                    <v>1106413</v>
                                 </b>
                                 <b>
                                     <a>10</a>
                                     <b>13</b>
-                                    <v>997862</v>
+                                    <v>1146751</v>
                                 </b>
                                 <b>
                                     <a>13</a>
-                                    <b>19</b>
-                                    <v>908013</v>
+                                    <b>21</b>
+                                    <v>1181326</v>
                                 </b>
                                 <b>
-                                    <a>19</a>
-                                    <b>38</b>
-                                    <v>909375</v>
+                                    <a>21</a>
+                                    <b>40</b>
+                                    <v>1021895</v>
                                 </b>
                                 <b>
-                                    <a>38</a>
+                                    <a>40</a>
                                     <b>319</b>
-                                    <v>325360</v>
+                                    <v>345754</v>
                                 </b>
                             </bs>
                         </hist>
@@ -11686,52 +11707,52 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>3244072</v>
+                                    <v>3678439</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>1308247</v>
+                                    <v>1457929</v>
                                 </b>
                                 <b>
                                     <a>3</a>
                                     <b>4</b>
-                                    <v>1109491</v>
+                                    <v>1231268</v>
                                 </b>
                                 <b>
                                     <a>4</a>
                                     <b>5</b>
-                                    <v>785493</v>
+                                    <v>791392</v>
                                 </b>
                                 <b>
                                     <a>5</a>
                                     <b>7</b>
-                                    <v>887593</v>
+                                    <v>960428</v>
                                 </b>
                                 <b>
                                     <a>7</a>
                                     <b>10</b>
-                                    <v>1015559</v>
+                                    <v>1183247</v>
                                 </b>
                                 <b>
                                     <a>10</a>
                                     <b>13</b>
-                                    <v>942047</v>
+                                    <v>1102571</v>
                                 </b>
                                 <b>
                                     <a>13</a>
-                                    <b>17</b>
-                                    <v>875341</v>
+                                    <b>18</b>
+                                    <v>849018</v>
                                 </b>
                                 <b>
-                                    <a>17</a>
-                                    <b>35</b>
-                                    <v>848114</v>
+                                    <a>18</a>
+                                    <b>26</b>
+                                    <v>968111</v>
                                 </b>
                                 <b>
-                                    <a>35</a>
+                                    <a>26</a>
                                     <b>290</b>
-                                    <v>254570</v>
+                                    <v>587781</v>
                                 </b>
                             </bs>
                         </hist>
@@ -11747,52 +11768,52 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>3190980</v>
+                                    <v>3630418</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>1287827</v>
+                                    <v>1456008</v>
                                 </b>
                                 <b>
                                     <a>3</a>
                                     <b>4</b>
-                                    <v>1029172</v>
+                                    <v>1164038</v>
                                 </b>
                                 <b>
                                     <a>4</a>
                                     <b>5</b>
-                                    <v>744652</v>
+                                    <v>735687</v>
                                 </b>
                                 <b>
                                     <a>5</a>
                                     <b>7</b>
-                                    <v>924349</v>
+                                    <v>1021895</v>
                                 </b>
                                 <b>
                                     <a>7</a>
                                     <b>10</b>
-                                    <v>952937</v>
+                                    <v>1106413</v>
                                 </b>
                                 <b>
                                     <a>10</a>
                                     <b>13</b>
-                                    <v>997862</v>
+                                    <v>1146751</v>
                                 </b>
                                 <b>
                                     <a>13</a>
-                                    <b>19</b>
-                                    <v>908013</v>
+                                    <b>21</b>
+                                    <v>1181326</v>
                                 </b>
                                 <b>
-                                    <a>19</a>
-                                    <b>38</b>
-                                    <v>909375</v>
+                                    <a>21</a>
+                                    <b>40</b>
+                                    <v>1021895</v>
                                 </b>
                                 <b>
-                                    <a>38</a>
+                                    <a>40</a>
                                     <b>319</b>
-                                    <v>325360</v>
+                                    <v>345754</v>
                                 </b>
                             </bs>
                         </hist>
@@ -11808,47 +11829,52 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>3887986</v>
+                                    <v>4348818</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>1615910</v>
+                                    <v>1757583</v>
                                 </b>
                                 <b>
                                     <a>3</a>
                                     <b>4</b>
-                                    <v>1327306</v>
+                                    <v>1436800</v>
                                 </b>
                                 <b>
                                     <a>4</a>
                                     <b>5</b>
-                                    <v>786854</v>
+                                    <v>922010</v>
                                 </b>
                                 <b>
                                     <a>5</a>
                                     <b>6</b>
-                                    <v>637107</v>
+                                    <v>743371</v>
                                 </b>
                                 <b>
                                     <a>6</a>
                                     <b>7</b>
-                                    <v>498250</v>
+                                    <v>564731</v>
                                 </b>
                                 <b>
                                     <a>7</a>
-                                    <b>9</b>
-                                    <v>1033256</v>
+                                    <b>8</b>
+                                    <v>879752</v>
                                 </b>
                                 <b>
-                                    <a>9</a>
-                                    <b>13</b>
-                                    <v>882148</v>
+                                    <a>8</a>
+                                    <b>11</b>
+                                    <v>1160197</v>
                                 </b>
                                 <b>
-                                    <a>13</a>
+                                    <a>11</a>
+                                    <b>31</b>
+                                    <v>964269</v>
+                                </b>
+                                <b>
+                                    <a>33</a>
                                     <b>78</b>
-                                    <v>601712</v>
+                                    <v>32654</v>
                                 </b>
                             </bs>
                         </hist>
@@ -11864,52 +11890,52 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>3190980</v>
+                                    <v>3630418</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>1287827</v>
+                                    <v>1456008</v>
                                 </b>
                                 <b>
                                     <a>3</a>
                                     <b>4</b>
-                                    <v>1029172</v>
+                                    <v>1164038</v>
                                 </b>
                                 <b>
                                     <a>4</a>
                                     <b>5</b>
-                                    <v>744652</v>
+                                    <v>735687</v>
                                 </b>
                                 <b>
                                     <a>5</a>
                                     <b>7</b>
-                                    <v>924349</v>
+                                    <v>1021895</v>
                                 </b>
                                 <b>
                                     <a>7</a>
                                     <b>10</b>
-                                    <v>952937</v>
+                                    <v>1106413</v>
                                 </b>
                                 <b>
                                     <a>10</a>
                                     <b>13</b>
-                                    <v>997862</v>
+                                    <v>1146751</v>
                                 </b>
                                 <b>
                                     <a>13</a>
-                                    <b>19</b>
-                                    <v>908013</v>
+                                    <b>21</b>
+                                    <v>1181326</v>
                                 </b>
                                 <b>
-                                    <a>19</a>
-                                    <b>38</b>
-                                    <v>909375</v>
+                                    <a>21</a>
+                                    <b>40</b>
+                                    <v>1021895</v>
                                 </b>
                                 <b>
-                                    <a>38</a>
+                                    <a>40</a>
                                     <b>319</b>
-                                    <v>325360</v>
+                                    <v>345754</v>
                                 </b>
                             </bs>
                         </hist>
@@ -11925,12 +11951,17 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>54190854</v>
+                                    <v>61836200</v>
                                 </b>
                                 <b>
                                     <a>2</a>
-                                    <b>349</b>
-                                    <v>4352203</v>
+                                    <b>50</b>
+                                    <v>5032643</v>
+                                </b>
+                                <b>
+                                    <a>52</a>
+                                    <b>286</b>
+                                    <v>222819</v>
                                 </b>
                             </bs>
                         </hist>
@@ -11946,7 +11977,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>58543057</v>
+                                    <v>67091663</v>
                                 </b>
                             </bs>
                         </hist>
@@ -11962,12 +11993,12 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>58259899</v>
+                                    <v>66767038</v>
                                 </b>
                                 <b>
                                     <a>2</a>
-                                    <b>347</b>
-                                    <v>283158</v>
+                                    <b>284</b>
+                                    <v>324624</v>
                                 </b>
                             </bs>
                         </hist>
@@ -11983,12 +12014,12 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>56848189</v>
+                                    <v>65030584</v>
                                 </b>
                                 <b>
                                     <a>2</a>
-                                    <b>259</b>
-                                    <v>1694868</v>
+                                    <b>209</b>
+                                    <v>2061078</v>
                                 </b>
                             </bs>
                         </hist>
@@ -12004,12 +12035,17 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>54190854</v>
+                                    <v>61836200</v>
                                 </b>
                                 <b>
                                     <a>2</a>
-                                    <b>349</b>
-                                    <v>4352203</v>
+                                    <b>50</b>
+                                    <v>5032643</v>
+                                </b>
+                                <b>
+                                    <a>52</a>
+                                    <b>286</b>
+                                    <v>222819</v>
                                 </b>
                             </bs>
                         </hist>
@@ -12019,15 +12055,15 @@
         </relation>
         <relation>
             <name>methodsKotlinType</name>
-            <cardinality>93308954</cardinality>
+            <cardinality>109719302</cardinality>
             <columnsizes>
                 <e>
                     <k>id</k>
-                    <v>93308954</v>
+                    <v>109719302</v>
                 </e>
                 <e>
                     <k>kttypeid</k>
-                    <v>1361</v>
+                    <v>1920</v>
                 </e>
             </columnsizes>
             <dependencies>
@@ -12041,7 +12077,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>93308954</v>
+                                    <v>109719302</v>
                                 </b>
                             </bs>
                         </hist>
@@ -12055,9 +12091,9 @@
                             <budget>12</budget>
                             <bs>
                                 <b>
-                                    <a>68542</a>
-                                    <b>68543</b>
-                                    <v>1361</v>
+                                    <a>57120</a>
+                                    <b>57121</b>
+                                    <v>1920</v>
                                 </b>
                             </bs>
                         </hist>
@@ -12067,27 +12103,27 @@
         </relation>
         <relation>
             <name>params</name>
-            <cardinality>101015498</cardinality>
+            <cardinality>120852585</cardinality>
             <columnsizes>
                 <e>
                     <k>id</k>
-                    <v>101015498</v>
+                    <v>120852585</v>
                 </e>
                 <e>
                     <k>typeid</k>
-                    <v>11171154</v>
+                    <v>12833239</v>
                 </e>
                 <e>
                     <k>pos</k>
-                    <v>29949</v>
+                    <v>42258</v>
                 </e>
                 <e>
                     <k>parentid</k>
-                    <v>56251922</v>
+                    <v>65007534</v>
                 </e>
                 <e>
                     <k>sourceid</k>
-                    <v>61310661</v>
+                    <v>73639861</v>
                 </e>
             </columnsizes>
             <dependencies>
@@ -12101,7 +12137,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>101015498</v>
+                                    <v>120852585</v>
                                 </b>
                             </bs>
                         </hist>
@@ -12117,7 +12153,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>101015498</v>
+                                    <v>120852585</v>
                                 </b>
                             </bs>
                         </hist>
@@ -12133,7 +12169,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>101015498</v>
+                                    <v>120852585</v>
                                 </b>
                             </bs>
                         </hist>
@@ -12149,7 +12185,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>101015498</v>
+                                    <v>120852585</v>
                                 </b>
                             </bs>
                         </hist>
@@ -12165,32 +12201,37 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>5943609</v>
+                                    <v>6763334</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>1712565</v>
+                                    <v>1945827</v>
                                 </b>
                                 <b>
                                     <a>3</a>
                                     <b>4</b>
-                                    <v>869896</v>
+                                    <v>948902</v>
                                 </b>
                                 <b>
                                     <a>4</a>
                                     <b>6</b>
-                                    <v>970635</v>
+                                    <v>1148671</v>
                                 </b>
                                 <b>
                                     <a>6</a>
                                     <b>12</b>
-                                    <v>867173</v>
+                                    <v>1018053</v>
                                 </b>
                                 <b>
                                     <a>12</a>
-                                    <b>7469</b>
-                                    <v>807274</v>
+                                    <b>326</b>
+                                    <v>966190</v>
+                                </b>
+                                <b>
+                                    <a>343</a>
+                                    <b>6738</b>
+                                    <v>42258</v>
                                 </b>
                             </bs>
                         </hist>
@@ -12206,17 +12247,22 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>9232606</v>
+                                    <v>10436011</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>1157138</v>
+                                    <v>1342678</v>
                                 </b>
                                 <b>
                                     <a>3</a>
+                                    <b>8</b>
+                                    <v>964269</v>
+                                </b>
+                                <b>
+                                    <a>8</a>
                                     <b>17</b>
-                                    <v>781409</v>
+                                    <v>90280</v>
                                 </b>
                             </bs>
                         </hist>
@@ -12232,32 +12278,32 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>6134197</v>
+                                    <v>7005362</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>1677170</v>
+                                    <v>1895885</v>
                                 </b>
                                 <b>
                                     <a>3</a>
                                     <b>4</b>
-                                    <v>888954</v>
+                                    <v>975794</v>
                                 </b>
                                 <b>
                                     <a>4</a>
                                     <b>6</b>
-                                    <v>917543</v>
+                                    <v>1087204</v>
                                 </b>
                                 <b>
                                     <a>6</a>
                                     <b>13</b>
-                                    <v>867173</v>
+                                    <v>1008449</v>
                                 </b>
                                 <b>
                                     <a>13</a>
-                                    <b>5265</b>
-                                    <v>686115</v>
+                                    <b>4326</b>
+                                    <v>860543</v>
                                 </b>
                             </bs>
                         </hist>
@@ -12273,32 +12319,32 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>6337036</v>
+                                    <v>7216656</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>1569624</v>
+                                    <v>1788317</v>
                                 </b>
                                 <b>
                                     <a>3</a>
                                     <b>4</b>
-                                    <v>901206</v>
+                                    <v>996924</v>
                                 </b>
                                 <b>
                                     <a>4</a>
                                     <b>6</b>
-                                    <v>947492</v>
+                                    <v>1117938</v>
                                 </b>
                                 <b>
                                     <a>6</a>
                                     <b>13</b>
-                                    <v>856282</v>
+                                    <v>1002686</v>
                                 </b>
                                 <b>
                                     <a>13</a>
-                                    <b>6292</b>
-                                    <v>559510</v>
+                                    <b>5757</b>
+                                    <v>710716</v>
                                 </b>
                             </bs>
                         </hist>
@@ -12314,57 +12360,57 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>2722</v>
+                                    <v>3841</v>
                                 </b>
                                 <b>
-                                    <a>53</a>
-                                    <b>56</b>
-                                    <v>2722</v>
+                                    <a>50</a>
+                                    <b>53</b>
+                                    <v>3841</v>
                                 </b>
                                 <b>
-                                    <a>110</a>
-                                    <b>112</b>
-                                    <v>2722</v>
+                                    <a>104</a>
+                                    <b>106</b>
+                                    <v>3841</v>
                                 </b>
                                 <b>
-                                    <a>165</a>
-                                    <b>172</b>
-                                    <v>2722</v>
+                                    <a>157</a>
+                                    <b>165</b>
+                                    <v>3841</v>
                                 </b>
                                 <b>
-                                    <a>224</a>
-                                    <b>242</b>
-                                    <v>2722</v>
+                                    <a>214</a>
+                                    <b>231</b>
+                                    <v>3841</v>
                                 </b>
                                 <b>
-                                    <a>305</a>
-                                    <b>330</b>
-                                    <v>2722</v>
+                                    <a>291</a>
+                                    <b>315</b>
+                                    <v>3841</v>
                                 </b>
                                 <b>
-                                    <a>524</a>
-                                    <b>666</b>
-                                    <v>2722</v>
+                                    <a>485</a>
+                                    <b>606</b>
+                                    <v>3841</v>
                                 </b>
                                 <b>
-                                    <a>880</a>
-                                    <b>1142</b>
-                                    <v>2722</v>
+                                    <a>804</a>
+                                    <b>1067</b>
+                                    <v>3841</v>
                                 </b>
                                 <b>
-                                    <a>1517</a>
-                                    <b>2090</b>
-                                    <v>2722</v>
+                                    <a>1445</a>
+                                    <b>2015</b>
+                                    <v>3841</v>
                                 </b>
                                 <b>
-                                    <a>3299</a>
-                                    <b>5949</b>
-                                    <v>2722</v>
+                                    <a>3084</a>
+                                    <b>5199</b>
+                                    <v>3841</v>
                                 </b>
                                 <b>
-                                    <a>15053</a>
-                                    <b>41322</b>
-                                    <v>2722</v>
+                                    <a>12689</a>
+                                    <b>33844</b>
+                                    <v>3841</v>
                                 </b>
                             </bs>
                         </hist>
@@ -12380,57 +12426,57 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>2722</v>
+                                    <v>3841</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>5</b>
-                                    <v>2722</v>
+                                    <v>3841</v>
                                 </b>
                                 <b>
                                     <a>6</a>
                                     <b>7</b>
-                                    <v>2722</v>
+                                    <v>3841</v>
                                 </b>
                                 <b>
-                                    <a>10</a>
-                                    <b>12</b>
-                                    <v>2722</v>
+                                    <a>11</a>
+                                    <b>14</b>
+                                    <v>3841</v>
                                 </b>
                                 <b>
-                                    <a>13</a>
-                                    <b>19</b>
-                                    <v>2722</v>
+                                    <a>15</a>
+                                    <b>20</b>
+                                    <v>3841</v>
                                 </b>
                                 <b>
-                                    <a>26</a>
-                                    <b>38</b>
-                                    <v>2722</v>
+                                    <a>27</a>
+                                    <b>37</b>
+                                    <v>3841</v>
                                 </b>
                                 <b>
                                     <a>57</a>
-                                    <b>76</b>
-                                    <v>2722</v>
+                                    <b>75</b>
+                                    <v>3841</v>
                                 </b>
                                 <b>
-                                    <a>99</a>
-                                    <b>159</b>
-                                    <v>2722</v>
+                                    <a>97</a>
+                                    <b>153</b>
+                                    <v>3841</v>
                                 </b>
                                 <b>
-                                    <a>212</a>
-                                    <b>306</b>
-                                    <v>2722</v>
+                                    <a>201</a>
+                                    <b>289</b>
+                                    <v>3841</v>
                                 </b>
                                 <b>
-                                    <a>452</a>
-                                    <b>889</b>
-                                    <v>2722</v>
+                                    <a>403</a>
+                                    <b>777</b>
+                                    <v>3841</v>
                                 </b>
                                 <b>
-                                    <a>2370</a>
-                                    <b>6264</b>
-                                    <v>2722</v>
+                                    <a>1979</a>
+                                    <b>5089</b>
+                                    <v>3841</v>
                                 </b>
                             </bs>
                         </hist>
@@ -12446,57 +12492,57 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>2722</v>
+                                    <v>3841</v>
                                 </b>
                                 <b>
-                                    <a>53</a>
-                                    <b>56</b>
-                                    <v>2722</v>
+                                    <a>50</a>
+                                    <b>53</b>
+                                    <v>3841</v>
                                 </b>
                                 <b>
-                                    <a>110</a>
-                                    <b>112</b>
-                                    <v>2722</v>
+                                    <a>104</a>
+                                    <b>106</b>
+                                    <v>3841</v>
                                 </b>
                                 <b>
-                                    <a>165</a>
-                                    <b>172</b>
-                                    <v>2722</v>
+                                    <a>157</a>
+                                    <b>165</b>
+                                    <v>3841</v>
                                 </b>
                                 <b>
-                                    <a>224</a>
-                                    <b>242</b>
-                                    <v>2722</v>
+                                    <a>214</a>
+                                    <b>231</b>
+                                    <v>3841</v>
                                 </b>
                                 <b>
-                                    <a>305</a>
-                                    <b>330</b>
-                                    <v>2722</v>
+                                    <a>291</a>
+                                    <b>315</b>
+                                    <v>3841</v>
                                 </b>
                                 <b>
-                                    <a>524</a>
-                                    <b>666</b>
-                                    <v>2722</v>
+                                    <a>485</a>
+                                    <b>606</b>
+                                    <v>3841</v>
                                 </b>
                                 <b>
-                                    <a>880</a>
-                                    <b>1142</b>
-                                    <v>2722</v>
+                                    <a>804</a>
+                                    <b>1067</b>
+                                    <v>3841</v>
                                 </b>
                                 <b>
-                                    <a>1517</a>
-                                    <b>2090</b>
-                                    <v>2722</v>
+                                    <a>1445</a>
+                                    <b>2015</b>
+                                    <v>3841</v>
                                 </b>
                                 <b>
-                                    <a>3299</a>
-                                    <b>5949</b>
-                                    <v>2722</v>
+                                    <a>3084</a>
+                                    <b>5199</b>
+                                    <v>3841</v>
                                 </b>
                                 <b>
-                                    <a>15053</a>
-                                    <b>41322</b>
-                                    <v>2722</v>
+                                    <a>12689</a>
+                                    <b>33844</b>
+                                    <v>3841</v>
                                 </b>
                             </bs>
                         </hist>
@@ -12512,57 +12558,57 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>2722</v>
+                                    <v>3841</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>5</b>
-                                    <v>2722</v>
+                                    <v>3841</v>
                                 </b>
                                 <b>
                                     <a>6</a>
                                     <b>8</b>
-                                    <v>2722</v>
+                                    <v>3841</v>
                                 </b>
                                 <b>
-                                    <a>10</a>
-                                    <b>13</b>
-                                    <v>2722</v>
+                                    <a>11</a>
+                                    <b>15</b>
+                                    <v>3841</v>
                                 </b>
                                 <b>
-                                    <a>14</a>
-                                    <b>28</b>
-                                    <v>2722</v>
+                                    <a>16</a>
+                                    <b>29</b>
+                                    <v>3841</v>
                                 </b>
                                 <b>
-                                    <a>38</a>
+                                    <a>39</a>
                                     <b>63</b>
-                                    <v>2722</v>
+                                    <v>3841</v>
                                 </b>
                                 <b>
-                                    <a>98</a>
-                                    <b>138</b>
-                                    <v>2722</v>
+                                    <a>101</a>
+                                    <b>144</b>
+                                    <v>3841</v>
                                 </b>
                                 <b>
-                                    <a>193</a>
-                                    <b>344</b>
-                                    <v>2722</v>
+                                    <a>210</a>
+                                    <b>386</b>
+                                    <v>3841</v>
                                 </b>
                                 <b>
-                                    <a>556</a>
-                                    <b>966</b>
-                                    <v>2722</v>
+                                    <a>628</a>
+                                    <b>1069</b>
+                                    <v>3841</v>
                                 </b>
                                 <b>
-                                    <a>1954</a>
-                                    <b>4172</b>
-                                    <v>2722</v>
+                                    <a>1955</a>
+                                    <b>3748</b>
+                                    <v>3841</v>
                                 </b>
                                 <b>
-                                    <a>10056</a>
-                                    <b>26381</b>
-                                    <v>2722</v>
+                                    <a>8555</a>
+                                    <b>21355</b>
+                                    <v>3841</v>
                                 </b>
                             </bs>
                         </hist>
@@ -12578,27 +12624,27 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>35759674</v>
+                                    <v>40633790</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>12394999</v>
+                                    <v>14389133</v>
                                 </b>
                                 <b>
                                     <a>3</a>
                                     <b>4</b>
-                                    <v>3606189</v>
+                                    <v>4060689</v>
                                 </b>
                                 <b>
                                     <a>4</a>
-                                    <b>15</b>
-                                    <v>4258270</v>
+                                    <b>10</b>
+                                    <v>4992305</v>
                                 </b>
                                 <b>
-                                    <a>15</a>
+                                    <a>10</a>
                                     <b>23</b>
-                                    <v>232789</v>
+                                    <v>931615</v>
                                 </b>
                             </bs>
                         </hist>
@@ -12614,17 +12660,17 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>39751122</v>
+                                    <v>45326442</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>12655015</v>
+                                    <v>14805959</v>
                                 </b>
                                 <b>
                                     <a>3</a>
                                     <b>23</b>
-                                    <v>3845785</v>
+                                    <v>4875132</v>
                                 </b>
                             </bs>
                         </hist>
@@ -12640,27 +12686,27 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>35759674</v>
+                                    <v>40633790</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>12394999</v>
+                                    <v>14389133</v>
                                 </b>
                                 <b>
                                     <a>3</a>
                                     <b>4</b>
-                                    <v>3606189</v>
+                                    <v>4060689</v>
                                 </b>
                                 <b>
                                     <a>4</a>
-                                    <b>15</b>
-                                    <v>4258270</v>
+                                    <b>10</b>
+                                    <v>4992305</v>
                                 </b>
                                 <b>
-                                    <a>15</a>
+                                    <a>10</a>
                                     <b>23</b>
-                                    <v>232789</v>
+                                    <v>931615</v>
                                 </b>
                             </bs>
                         </hist>
@@ -12676,27 +12722,27 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>35759674</v>
+                                    <v>40633790</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>12394999</v>
+                                    <v>14389133</v>
                                 </b>
                                 <b>
                                     <a>3</a>
                                     <b>4</b>
-                                    <v>3606189</v>
+                                    <v>4060689</v>
                                 </b>
                                 <b>
                                     <a>4</a>
-                                    <b>15</b>
-                                    <v>4258270</v>
+                                    <b>10</b>
+                                    <v>4992305</v>
                                 </b>
                                 <b>
-                                    <a>15</a>
+                                    <a>10</a>
                                     <b>23</b>
-                                    <v>232789</v>
+                                    <v>931615</v>
                                 </b>
                             </bs>
                         </hist>
@@ -12712,12 +12758,12 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>56891752</v>
+                                    <v>68584168</v>
                                 </b>
                                 <b>
                                     <a>2</a>
-                                    <b>349</b>
-                                    <v>4418909</v>
+                                    <b>286</b>
+                                    <v>5055693</v>
                                 </b>
                             </bs>
                         </hist>
@@ -12733,12 +12779,12 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>59772347</v>
+                                    <v>71932220</v>
                                 </b>
                                 <b>
                                     <a>2</a>
-                                    <b>349</b>
-                                    <v>1538314</v>
+                                    <b>286</b>
+                                    <v>1707641</v>
                                 </b>
                             </bs>
                         </hist>
@@ -12754,7 +12800,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>61310661</v>
+                                    <v>73639861</v>
                                 </b>
                             </bs>
                         </hist>
@@ -12770,12 +12816,12 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>56891752</v>
+                                    <v>68584168</v>
                                 </b>
                                 <b>
                                     <a>2</a>
-                                    <b>349</b>
-                                    <v>4418909</v>
+                                    <b>286</b>
+                                    <v>5055693</v>
                                 </b>
                             </bs>
                         </hist>
@@ -12785,15 +12831,15 @@
         </relation>
         <relation>
             <name>paramsKotlinType</name>
-            <cardinality>101015498</cardinality>
+            <cardinality>120852585</cardinality>
             <columnsizes>
                 <e>
                     <k>id</k>
-                    <v>101015498</v>
+                    <v>120852585</v>
                 </e>
                 <e>
                     <k>kttypeid</k>
-                    <v>1361</v>
+                    <v>1920</v>
                 </e>
             </columnsizes>
             <dependencies>
@@ -12807,7 +12853,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>101015498</v>
+                                    <v>120852585</v>
                                 </b>
                             </bs>
                         </hist>
@@ -12821,9 +12867,9 @@
                             <budget>12</budget>
                             <bs>
                                 <b>
-                                    <a>74203</a>
-                                    <b>74204</b>
-                                    <v>1361</v>
+                                    <a>62916</a>
+                                    <b>62917</b>
+                                    <v>1920</v>
                                 </b>
                             </bs>
                         </hist>
@@ -12833,15 +12879,15 @@
         </relation>
         <relation>
             <name>paramName</name>
-            <cardinality>10331207</cardinality>
+            <cardinality>15639610</cardinality>
             <columnsizes>
                 <e>
                     <k>id</k>
-                    <v>10331207</v>
+                    <v>15639610</v>
                 </e>
                 <e>
                     <k>nodeName</k>
-                    <v>1662195</v>
+                    <v>2335761</v>
                 </e>
             </columnsizes>
             <dependencies>
@@ -12855,7 +12901,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>10331207</v>
+                                    <v>15639610</v>
                                 </b>
                             </bs>
                         </hist>
@@ -12871,37 +12917,37 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>717426</v>
+                                    <v>998845</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>328082</v>
+                                    <v>451401</v>
                                 </b>
                                 <b>
                                     <a>3</a>
                                     <b>4</b>
-                                    <v>174251</v>
+                                    <v>249711</v>
                                 </b>
                                 <b>
                                     <a>4</a>
                                     <b>5</b>
-                                    <v>129327</v>
+                                    <v>170956</v>
                                 </b>
                                 <b>
                                     <a>5</a>
-                                    <b>9</b>
-                                    <v>137495</v>
+                                    <b>8</b>
+                                    <v>182481</v>
                                 </b>
                                 <b>
-                                    <a>9</a>
-                                    <b>25</b>
-                                    <v>130688</v>
+                                    <a>8</a>
+                                    <b>18</b>
+                                    <v>176718</v>
                                 </b>
                                 <b>
-                                    <a>25</a>
-                                    <b>517</b>
-                                    <v>44924</v>
+                                    <a>18</a>
+                                    <b>769</b>
+                                    <v>105647</v>
                                 </b>
                             </bs>
                         </hist>
@@ -12911,30 +12957,30 @@
         </relation>
         <relation>
             <name>isVarargsParam</name>
-            <cardinality>1003307</cardinality>
+            <cardinality>945061</cardinality>
             <columnsizes>
                 <e>
                     <k>param</k>
-                    <v>1003307</v>
+                    <v>945061</v>
                 </e>
             </columnsizes>
             <dependencies/>
         </relation>
         <relation>
             <name>exceptions</name>
-            <cardinality>1228169</cardinality>
+            <cardinality>1232644</cardinality>
             <columnsizes>
                 <e>
                     <k>id</k>
-                    <v>1228169</v>
+                    <v>1232644</v>
                 </e>
                 <e>
                     <k>typeid</k>
-                    <v>36993</v>
+                    <v>36990</v>
                 </e>
                 <e>
                     <k>parentid</k>
-                    <v>982877</v>
+                    <v>987367</v>
                 </e>
             </columnsizes>
             <dependencies>
@@ -12948,7 +12994,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>1228169</v>
+                                    <v>1232644</v>
                                 </b>
                             </bs>
                         </hist>
@@ -12964,7 +13010,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>1228169</v>
+                                    <v>1232644</v>
                                 </b>
                             </bs>
                         </hist>
@@ -12980,7 +13026,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>11951</v>
+                                    <v>11950</v>
                                 </b>
                                 <b>
                                     <a>2</a>
@@ -13010,17 +13056,17 @@
                                 <b>
                                     <a>20</a>
                                     <b>35</b>
-                                    <v>3414</v>
-                                </b>
-                                <b>
-                                    <a>49</a>
-                                    <b>107</b>
                                     <v>2845</v>
                                 </b>
                                 <b>
-                                    <a>187</a>
+                                    <a>41</a>
+                                    <b>93</b>
+                                    <v>2845</v>
+                                </b>
+                                <b>
+                                    <a>106</a>
                                     <b>813</b>
-                                    <v>1707</v>
+                                    <v>2276</v>
                                 </b>
                             </bs>
                         </hist>
@@ -13036,7 +13082,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>11951</v>
+                                    <v>11950</v>
                                 </b>
                                 <b>
                                     <a>2</a>
@@ -13066,17 +13112,17 @@
                                 <b>
                                     <a>20</a>
                                     <b>35</b>
-                                    <v>3414</v>
-                                </b>
-                                <b>
-                                    <a>49</a>
-                                    <b>107</b>
                                     <v>2845</v>
                                 </b>
                                 <b>
-                                    <a>187</a>
+                                    <a>41</a>
+                                    <b>93</b>
+                                    <v>2845</v>
+                                </b>
+                                <b>
+                                    <a>106</a>
                                     <b>813</b>
-                                    <v>1707</v>
+                                    <v>2276</v>
                                 </b>
                             </bs>
                         </hist>
@@ -13092,12 +13138,12 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>750674</v>
+                                    <v>755179</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>224234</v>
+                                    <v>224220</v>
                                 </b>
                                 <b>
                                     <a>3</a>
@@ -13118,12 +13164,12 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>750674</v>
+                                    <v>755179</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>224234</v>
+                                    <v>224220</v>
                                 </b>
                                 <b>
                                     <a>3</a>
@@ -13138,41 +13184,41 @@
         </relation>
         <relation>
             <name>isAnnotType</name>
-            <cardinality>30058</cardinality>
+            <cardinality>29260</cardinality>
             <columnsizes>
                 <e>
                     <k>interfaceid</k>
-                    <v>30058</v>
+                    <v>29260</v>
                 </e>
             </columnsizes>
             <dependencies/>
         </relation>
         <relation>
             <name>isAnnotElem</name>
-            <cardinality>61062</cardinality>
+            <cardinality>61065</cardinality>
             <columnsizes>
                 <e>
                     <k>methodid</k>
-                    <v>61062</v>
+                    <v>61065</v>
                 </e>
             </columnsizes>
             <dependencies/>
         </relation>
         <relation>
             <name>annotValue</name>
-            <cardinality>1574849</cardinality>
+            <cardinality>1574925</cardinality>
             <columnsizes>
                 <e>
                     <k>parentid</k>
-                    <v>568147</v>
+                    <v>568174</v>
                 </e>
                 <e>
                     <k>id2</k>
-                    <v>52102</v>
+                    <v>52104</v>
                 </e>
                 <e>
                     <k>value</k>
-                    <v>1574849</v>
+                    <v>1574925</v>
                 </e>
             </columnsizes>
             <dependencies>
@@ -13186,32 +13232,32 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>153486</v>
+                                    <v>153493</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>252712</v>
+                                    <v>252724</v>
                                 </b>
                                 <b>
                                     <a>3</a>
                                     <b>4</b>
-                                    <v>48949</v>
+                                    <v>48951</v>
                                 </b>
                                 <b>
                                     <a>4</a>
                                     <b>6</b>
-                                    <v>26548</v>
+                                    <v>26550</v>
                                 </b>
                                 <b>
                                     <a>6</a>
                                     <b>7</b>
-                                    <v>35177</v>
+                                    <v>35179</v>
                                 </b>
                                 <b>
                                     <a>7</a>
                                     <b>9</b>
-                                    <v>46626</v>
+                                    <v>46628</v>
                                 </b>
                                 <b>
                                     <a>9</a>
@@ -13232,37 +13278,37 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>138054</v>
+                                    <v>138061</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>268144</v>
+                                    <v>268157</v>
                                 </b>
                                 <b>
                                     <a>3</a>
                                     <b>4</b>
-                                    <v>47290</v>
+                                    <v>47292</v>
                                 </b>
                                 <b>
                                     <a>4</a>
                                     <b>6</b>
-                                    <v>26051</v>
+                                    <v>26052</v>
                                 </b>
                                 <b>
                                     <a>6</a>
                                     <b>8</b>
-                                    <v>39657</v>
+                                    <v>39659</v>
                                 </b>
                                 <b>
                                     <a>8</a>
                                     <b>10</b>
-                                    <v>44137</v>
+                                    <v>44139</v>
                                 </b>
                                 <b>
                                     <a>10</a>
                                     <b>13</b>
-                                    <v>4811</v>
+                                    <v>4812</v>
                                 </b>
                             </bs>
                         </hist>
@@ -13278,22 +13324,22 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>17090</v>
+                                    <v>17091</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>5143</v>
+                                    <v>5144</v>
                                 </b>
                                 <b>
                                     <a>3</a>
                                     <b>4</b>
-                                    <v>2654</v>
+                                    <v>2655</v>
                                 </b>
                                 <b>
                                     <a>4</a>
                                     <b>6</b>
-                                    <v>4811</v>
+                                    <v>4812</v>
                                 </b>
                                 <b>
                                     <a>6</a>
@@ -13339,7 +13385,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>15265</v>
+                                    <v>15266</v>
                                 </b>
                                 <b>
                                     <a>2</a>
@@ -13364,7 +13410,7 @@
                                 <b>
                                     <a>8</a>
                                     <b>10</b>
-                                    <v>4811</v>
+                                    <v>4812</v>
                                 </b>
                                 <b>
                                     <a>10</a>
@@ -13400,7 +13446,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>1574849</v>
+                                    <v>1574925</v>
                                 </b>
                             </bs>
                         </hist>
@@ -13416,7 +13462,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>1574849</v>
+                                    <v>1574925</v>
                                 </b>
                             </bs>
                         </hist>
@@ -13426,49 +13472,49 @@
         </relation>
         <relation>
             <name>isEnumType</name>
-            <cardinality>349864</cardinality>
+            <cardinality>397617</cardinality>
             <columnsizes>
                 <e>
                     <k>classid</k>
-                    <v>349864</v>
+                    <v>397617</v>
                 </e>
             </columnsizes>
             <dependencies/>
         </relation>
         <relation>
             <name>isEnumConst</name>
-            <cardinality>321905</cardinality>
+            <cardinality>3081053</cardinality>
             <columnsizes>
                 <e>
                     <k>fieldid</k>
-                    <v>321905</v>
+                    <v>3081053</v>
                 </e>
             </columnsizes>
             <dependencies/>
         </relation>
         <relation>
             <name>typeVars</name>
-            <cardinality>5105024</cardinality>
+            <cardinality>6288883</cardinality>
             <columnsizes>
                 <e>
                     <k>id</k>
-                    <v>5105024</v>
+                    <v>6288883</v>
                 </e>
                 <e>
                     <k>nodeName</k>
-                    <v>70789</v>
+                    <v>86438</v>
                 </e>
                 <e>
                     <k>pos</k>
-                    <v>5445</v>
+                    <v>7683</v>
                 </e>
                 <e>
                     <k>kind</k>
-                    <v>1361</v>
+                    <v>1920</v>
                 </e>
                 <e>
                     <k>parentid</k>
-                    <v>3715096</v>
+                    <v>4444861</v>
                 </e>
             </columnsizes>
             <dependencies>
@@ -13482,7 +13528,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>5105024</v>
+                                    <v>6288883</v>
                                 </b>
                             </bs>
                         </hist>
@@ -13498,7 +13544,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>5105024</v>
+                                    <v>6288883</v>
                                 </b>
                             </bs>
                         </hist>
@@ -13514,7 +13560,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>5105024</v>
+                                    <v>6288883</v>
                                 </b>
                             </bs>
                         </hist>
@@ -13530,7 +13576,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>5105024</v>
+                                    <v>6288883</v>
                                 </b>
                             </bs>
                         </hist>
@@ -13546,47 +13592,47 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>20420</v>
+                                    <v>21129</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>10890</v>
+                                    <v>11525</v>
                                 </b>
                                 <b>
                                     <a>3</a>
                                     <b>4</b>
-                                    <v>6806</v>
+                                    <v>9604</v>
                                 </b>
                                 <b>
                                     <a>4</a>
                                     <b>7</b>
-                                    <v>5445</v>
+                                    <v>7683</v>
                                 </b>
                                 <b>
                                     <a>7</a>
                                     <b>10</b>
-                                    <v>5445</v>
+                                    <v>7683</v>
                                 </b>
                                 <b>
                                     <a>10</a>
                                     <b>28</b>
-                                    <v>5445</v>
+                                    <v>7683</v>
                                 </b>
                                 <b>
-                                    <a>37</a>
-                                    <b>71</b>
-                                    <v>5445</v>
+                                    <a>36</a>
+                                    <b>69</b>
+                                    <v>7683</v>
                                 </b>
                                 <b>
                                     <a>71</a>
-                                    <b>253</b>
-                                    <v>5445</v>
+                                    <b>412</b>
+                                    <v>7683</v>
                                 </b>
                                 <b>
-                                    <a>459</a>
-                                    <b>951</b>
-                                    <v>5445</v>
+                                    <a>603</a>
+                                    <b>710</b>
+                                    <v>5762</v>
                                 </b>
                             </bs>
                         </hist>
@@ -13602,22 +13648,22 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>44924</v>
+                                    <v>51863</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>16336</v>
+                                    <v>23050</v>
                                 </b>
                                 <b>
                                     <a>3</a>
                                     <b>4</b>
-                                    <v>8168</v>
+                                    <v>9604</v>
                                 </b>
                                 <b>
                                     <a>4</a>
                                     <b>5</b>
-                                    <v>1361</v>
+                                    <v>1920</v>
                                 </b>
                             </bs>
                         </hist>
@@ -13633,7 +13679,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>70789</v>
+                                    <v>86438</v>
                                 </b>
                             </bs>
                         </hist>
@@ -13649,47 +13695,47 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>20420</v>
+                                    <v>21129</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>10890</v>
+                                    <v>11525</v>
                                 </b>
                                 <b>
                                     <a>3</a>
                                     <b>4</b>
-                                    <v>6806</v>
+                                    <v>9604</v>
                                 </b>
                                 <b>
                                     <a>4</a>
                                     <b>7</b>
-                                    <v>5445</v>
+                                    <v>7683</v>
                                 </b>
                                 <b>
                                     <a>7</a>
                                     <b>10</b>
-                                    <v>5445</v>
+                                    <v>7683</v>
                                 </b>
                                 <b>
                                     <a>10</a>
                                     <b>28</b>
-                                    <v>5445</v>
+                                    <v>7683</v>
                                 </b>
                                 <b>
-                                    <a>37</a>
-                                    <b>71</b>
-                                    <v>5445</v>
+                                    <a>36</a>
+                                    <b>69</b>
+                                    <v>7683</v>
                                 </b>
                                 <b>
                                     <a>71</a>
-                                    <b>253</b>
-                                    <v>5445</v>
+                                    <b>412</b>
+                                    <v>7683</v>
                                 </b>
                                 <b>
-                                    <a>459</a>
-                                    <b>951</b>
-                                    <v>5445</v>
+                                    <a>603</a>
+                                    <b>710</b>
+                                    <v>5762</v>
                                 </b>
                             </bs>
                         </hist>
@@ -13705,22 +13751,22 @@
                                 <b>
                                     <a>6</a>
                                     <b>7</b>
-                                    <v>1361</v>
+                                    <v>1920</v>
                                 </b>
                                 <b>
-                                    <a>94</a>
-                                    <b>95</b>
-                                    <v>1361</v>
+                                    <a>89</a>
+                                    <b>90</b>
+                                    <v>1920</v>
                                 </b>
                                 <b>
-                                    <a>921</a>
-                                    <b>922</b>
-                                    <v>1361</v>
+                                    <a>865</a>
+                                    <b>866</b>
+                                    <v>1920</v>
                                 </b>
                                 <b>
-                                    <a>2729</a>
-                                    <b>2730</b>
-                                    <v>1361</v>
+                                    <a>2314</a>
+                                    <b>2315</b>
+                                    <v>1920</v>
                                 </b>
                             </bs>
                         </hist>
@@ -13736,22 +13782,22 @@
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>1361</v>
+                                    <v>1920</v>
                                 </b>
                                 <b>
                                     <a>13</a>
                                     <b>14</b>
-                                    <v>1361</v>
+                                    <v>1920</v>
                                 </b>
                                 <b>
-                                    <a>23</a>
-                                    <b>24</b>
-                                    <v>1361</v>
+                                    <a>21</a>
+                                    <b>22</b>
+                                    <v>1920</v>
                                 </b>
                                 <b>
-                                    <a>41</a>
-                                    <b>42</b>
-                                    <v>1361</v>
+                                    <a>34</a>
+                                    <b>35</b>
+                                    <v>1920</v>
                                 </b>
                             </bs>
                         </hist>
@@ -13767,7 +13813,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>5445</v>
+                                    <v>7683</v>
                                 </b>
                             </bs>
                         </hist>
@@ -13783,22 +13829,22 @@
                                 <b>
                                     <a>6</a>
                                     <b>7</b>
-                                    <v>1361</v>
+                                    <v>1920</v>
                                 </b>
                                 <b>
-                                    <a>94</a>
-                                    <b>95</b>
-                                    <v>1361</v>
+                                    <a>89</a>
+                                    <b>90</b>
+                                    <v>1920</v>
                                 </b>
                                 <b>
-                                    <a>921</a>
-                                    <b>922</b>
-                                    <v>1361</v>
+                                    <a>865</a>
+                                    <b>866</b>
+                                    <v>1920</v>
                                 </b>
                                 <b>
-                                    <a>2729</a>
-                                    <b>2730</b>
-                                    <v>1361</v>
+                                    <a>2314</a>
+                                    <b>2315</b>
+                                    <v>1920</v>
                                 </b>
                             </bs>
                         </hist>
@@ -13812,9 +13858,9 @@
                             <budget>12</budget>
                             <bs>
                                 <b>
-                                    <a>3750</a>
-                                    <b>3751</b>
-                                    <v>1361</v>
+                                    <a>3274</a>
+                                    <b>3275</b>
+                                    <v>1920</v>
                                 </b>
                             </bs>
                         </hist>
@@ -13828,9 +13874,9 @@
                             <budget>12</budget>
                             <bs>
                                 <b>
-                                    <a>52</a>
-                                    <b>53</b>
-                                    <v>1361</v>
+                                    <a>45</a>
+                                    <b>46</b>
+                                    <v>1920</v>
                                 </b>
                             </bs>
                         </hist>
@@ -13846,7 +13892,7 @@
                                 <b>
                                     <a>4</a>
                                     <b>5</b>
-                                    <v>1361</v>
+                                    <v>1920</v>
                                 </b>
                             </bs>
                         </hist>
@@ -13860,9 +13906,9 @@
                             <budget>12</budget>
                             <bs>
                                 <b>
-                                    <a>2729</a>
-                                    <b>2730</b>
-                                    <v>1361</v>
+                                    <a>2314</a>
+                                    <b>2315</b>
+                                    <v>1920</v>
                                 </b>
                             </bs>
                         </hist>
@@ -13878,17 +13924,17 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>2461302</v>
+                                    <v>2783320</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>1125828</v>
+                                    <v>1490584</v>
                                 </b>
                                 <b>
                                     <a>3</a>
                                     <b>5</b>
-                                    <v>127965</v>
+                                    <v>170956</v>
                                 </b>
                             </bs>
                         </hist>
@@ -13904,17 +13950,17 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>2461302</v>
+                                    <v>2783320</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>1125828</v>
+                                    <v>1490584</v>
                                 </b>
                                 <b>
                                     <a>3</a>
                                     <b>5</b>
-                                    <v>127965</v>
+                                    <v>170956</v>
                                 </b>
                             </bs>
                         </hist>
@@ -13930,17 +13976,17 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>2461302</v>
+                                    <v>2783320</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>1125828</v>
+                                    <v>1490584</v>
                                 </b>
                                 <b>
                                     <a>3</a>
                                     <b>5</b>
-                                    <v>127965</v>
+                                    <v>170956</v>
                                 </b>
                             </bs>
                         </hist>
@@ -13956,7 +14002,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>3715096</v>
+                                    <v>4444861</v>
                                 </b>
                             </bs>
                         </hist>
@@ -13966,19 +14012,19 @@
         </relation>
         <relation>
             <name>wildcards</name>
-            <cardinality>3629331</cardinality>
+            <cardinality>3338447</cardinality>
             <columnsizes>
                 <e>
                     <k>id</k>
-                    <v>3629331</v>
+                    <v>3338447</v>
                 </e>
                 <e>
                     <k>nodeName</k>
-                    <v>980164</v>
+                    <v>533998</v>
                 </e>
                 <e>
                     <k>kind</k>
-                    <v>2722</v>
+                    <v>3841</v>
                 </e>
             </columnsizes>
             <dependencies>
@@ -13992,7 +14038,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>3629331</v>
+                                    <v>3338447</v>
                                 </b>
                             </bs>
                         </hist>
@@ -14008,7 +14054,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>3629331</v>
+                                    <v>3338447</v>
                                 </b>
                             </bs>
                         </hist>
@@ -14024,17 +14070,22 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>789577</v>
+                                    <v>397617</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>119797</v>
+                                    <v>55704</v>
                                 </b>
                                 <b>
                                     <a>3</a>
-                                    <b>214</b>
-                                    <v>70789</v>
+                                    <b>7</b>
+                                    <v>44179</v>
+                                </b>
+                                <b>
+                                    <a>7</a>
+                                    <b>170</b>
+                                    <v>36496</v>
                                 </b>
                             </bs>
                         </hist>
@@ -14050,7 +14101,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>980164</v>
+                                    <v>533998</v>
                                 </b>
                             </bs>
                         </hist>
@@ -14064,14 +14115,14 @@
                             <budget>12</budget>
                             <bs>
                                 <b>
-                                    <a>1027</a>
-                                    <b>1028</b>
-                                    <v>1361</v>
+                                    <a>791</a>
+                                    <b>792</b>
+                                    <v>1920</v>
                                 </b>
                                 <b>
-                                    <a>1639</a>
-                                    <b>1640</b>
-                                    <v>1361</v>
+                                    <a>947</a>
+                                    <b>948</b>
+                                    <v>1920</v>
                                 </b>
                             </bs>
                         </hist>
@@ -14085,14 +14136,14 @@
                             <budget>12</budget>
                             <bs>
                                 <b>
-                                    <a>222</a>
-                                    <b>223</b>
-                                    <v>1361</v>
+                                    <a>91</a>
+                                    <b>92</b>
+                                    <v>1920</v>
                                 </b>
                                 <b>
-                                    <a>498</a>
-                                    <b>499</b>
-                                    <v>1361</v>
+                                    <a>187</a>
+                                    <b>188</b>
+                                    <v>1920</v>
                                 </b>
                             </bs>
                         </hist>
@@ -14102,23 +14153,23 @@
         </relation>
         <relation>
             <name>typeBounds</name>
-            <cardinality>4383514</cardinality>
+            <cardinality>4229725</cardinality>
             <columnsizes>
                 <e>
                     <k>id</k>
-                    <v>4383514</v>
+                    <v>4229725</v>
                 </e>
                 <e>
                     <k>typeid</k>
-                    <v>3184173</v>
+                    <v>2852471</v>
                 </e>
                 <e>
                     <k>pos</k>
-                    <v>1361</v>
+                    <v>1920</v>
                 </e>
                 <e>
                     <k>parentid</k>
-                    <v>4383514</v>
+                    <v>4229725</v>
                 </e>
             </columnsizes>
             <dependencies>
@@ -14132,7 +14183,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>4383514</v>
+                                    <v>4229725</v>
                                 </b>
                             </bs>
                         </hist>
@@ -14148,7 +14199,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>4383514</v>
+                                    <v>4229725</v>
                                 </b>
                             </bs>
                         </hist>
@@ -14164,7 +14215,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>4383514</v>
+                                    <v>4229725</v>
                                 </b>
                             </bs>
                         </hist>
@@ -14180,17 +14231,17 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>2506226</v>
+                                    <v>2091812</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>601712</v>
+                                    <v>695349</v>
                                 </b>
                                 <b>
                                     <a>3</a>
                                     <b>52</b>
-                                    <v>76235</v>
+                                    <v>65309</v>
                                 </b>
                             </bs>
                         </hist>
@@ -14206,7 +14257,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>3184173</v>
+                                    <v>2852471</v>
                                 </b>
                             </bs>
                         </hist>
@@ -14222,17 +14273,17 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>2506226</v>
+                                    <v>2091812</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>601712</v>
+                                    <v>695349</v>
                                 </b>
                                 <b>
                                     <a>3</a>
                                     <b>52</b>
-                                    <v>76235</v>
+                                    <v>65309</v>
                                 </b>
                             </bs>
                         </hist>
@@ -14246,9 +14297,9 @@
                             <budget>12</budget>
                             <bs>
                                 <b>
-                                    <a>3220</a>
-                                    <b>3221</b>
-                                    <v>1361</v>
+                                    <a>2202</a>
+                                    <b>2203</b>
+                                    <v>1920</v>
                                 </b>
                             </bs>
                         </hist>
@@ -14262,9 +14313,9 @@
                             <budget>12</budget>
                             <bs>
                                 <b>
-                                    <a>2339</a>
-                                    <b>2340</b>
-                                    <v>1361</v>
+                                    <a>1485</a>
+                                    <b>1486</b>
+                                    <v>1920</v>
                                 </b>
                             </bs>
                         </hist>
@@ -14278,9 +14329,9 @@
                             <budget>12</budget>
                             <bs>
                                 <b>
-                                    <a>3220</a>
-                                    <b>3221</b>
-                                    <v>1361</v>
+                                    <a>2202</a>
+                                    <b>2203</b>
+                                    <v>1920</v>
                                 </b>
                             </bs>
                         </hist>
@@ -14296,7 +14347,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>4383514</v>
+                                    <v>4229725</v>
                                 </b>
                             </bs>
                         </hist>
@@ -14312,7 +14363,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>4383514</v>
+                                    <v>4229725</v>
                                 </b>
                             </bs>
                         </hist>
@@ -14328,7 +14379,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>4383514</v>
+                                    <v>4229725</v>
                                 </b>
                             </bs>
                         </hist>
@@ -14338,11 +14389,11 @@
         </relation>
         <relation>
             <name>typeArgs</name>
-            <cardinality>53913162</cardinality>
+            <cardinality>53854237</cardinality>
             <columnsizes>
                 <e>
                     <k>argumentid</k>
-                    <v>1429292</v>
+                    <v>1430551</v>
                 </e>
                 <e>
                     <k>pos</k>
@@ -14350,7 +14401,7 @@
                 </e>
                 <e>
                     <k>parentid</k>
-                    <v>22268245</v>
+                    <v>22244248</v>
                 </e>
             </columnsizes>
             <dependencies>
@@ -14364,17 +14415,17 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>866127</v>
+                                    <v>865848</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>469332</v>
+                                    <v>470615</v>
                                 </b>
                                 <b>
                                     <a>3</a>
                                     <b>11</b>
-                                    <v>93832</v>
+                                    <v>94087</v>
                                 </b>
                             </bs>
                         </hist>
@@ -14390,57 +14441,57 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>62430</v>
+                                    <v>64071</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>435425</v>
+                                    <v>433698</v>
                                 </b>
                                 <b>
                                     <a>3</a>
                                     <b>5</b>
-                                    <v>100353</v>
+                                    <v>100595</v>
                                 </b>
                                 <b>
                                     <a>5</a>
                                     <b>6</b>
-                                    <v>35320</v>
+                                    <v>35547</v>
                                 </b>
                                 <b>
                                     <a>6</a>
                                     <b>7</b>
-                                    <v>201035</v>
+                                    <v>201249</v>
                                 </b>
                                 <b>
                                     <a>7</a>
                                     <b>11</b>
-                                    <v>37958</v>
+                                    <v>39437</v>
                                 </b>
                                 <b>
                                     <a>11</a>
                                     <b>12</b>
-                                    <v>218221</v>
+                                    <v>218178</v>
                                 </b>
                                 <b>
                                     <a>12</a>
                                     <b>15</b>
-                                    <v>111144</v>
+                                    <v>111421</v>
                                 </b>
                                 <b>
                                     <a>15</a>
                                     <b>29</b>
-                                    <v>108553</v>
+                                    <v>108138</v>
                                 </b>
                                 <b>
                                     <a>29</a>
-                                    <b>324</b>
-                                    <v>107243</v>
+                                    <b>341</b>
+                                    <v>107450</v>
                                 </b>
                                 <b>
-                                    <a>324</a>
-                                    <b>762773</b>
-                                    <v>11606</v>
+                                    <a>341</a>
+                                    <b>757580</b>
+                                    <v>10762</v>
                                 </b>
                             </bs>
                         </hist>
@@ -14459,48 +14510,48 @@
                                     <v>5</v>
                                 </b>
                                 <b>
-                                    <a>598</a>
-                                    <b>599</b>
+                                    <a>597</a>
+                                    <b>598</b>
                                     <v>5</v>
                                 </b>
                                 <b>
-                                    <a>889</a>
-                                    <b>890</b>
+                                    <a>887</a>
+                                    <b>888</b>
                                     <v>5</v>
                                 </b>
                                 <b>
-                                    <a>1132</a>
-                                    <b>1133</b>
+                                    <a>1129</a>
+                                    <b>1130</b>
                                     <v>5</v>
                                 </b>
                                 <b>
-                                    <a>1762</a>
-                                    <b>1763</b>
+                                    <a>1758</a>
+                                    <b>1759</b>
                                     <v>5</v>
                                 </b>
                                 <b>
-                                    <a>3890</a>
-                                    <b>3891</b>
+                                    <a>3885</a>
+                                    <b>3886</b>
                                     <v>5</v>
                                 </b>
                                 <b>
-                                    <a>4033</a>
-                                    <b>4034</b>
+                                    <a>4027</a>
+                                    <b>4028</b>
                                     <v>5</v>
                                 </b>
                                 <b>
-                                    <a>51900</a>
-                                    <b>51901</b>
+                                    <a>51686</a>
+                                    <b>51687</b>
                                     <v>5</v>
                                 </b>
                                 <b>
-                                    <a>143023</a>
-                                    <b>143024</b>
+                                    <a>142042</a>
+                                    <b>142043</b>
                                     <v>5</v>
                                 </b>
                                 <b>
-                                    <a>161995</a>
-                                    <b>161996</b>
+                                    <a>161580</a>
+                                    <b>161581</b>
                                     <v>5</v>
                                 </b>
                             </bs>
@@ -14525,43 +14576,43 @@
                                     <v>5</v>
                                 </b>
                                 <b>
-                                    <a>3896</a>
-                                    <b>3897</b>
+                                    <a>3895</a>
+                                    <b>3896</b>
                                     <v>5</v>
                                 </b>
                                 <b>
-                                    <a>8697</a>
-                                    <b>8698</b>
+                                    <a>8694</a>
+                                    <b>8695</b>
                                     <v>5</v>
                                 </b>
                                 <b>
-                                    <a>19018</a>
-                                    <b>19019</b>
+                                    <a>19012</a>
+                                    <b>19013</b>
                                     <v>5</v>
                                 </b>
                                 <b>
-                                    <a>85642</a>
-                                    <b>85643</b>
+                                    <a>85622</a>
+                                    <b>85623</b>
                                     <v>5</v>
                                 </b>
                                 <b>
-                                    <a>103285</a>
-                                    <b>103286</b>
+                                    <a>103257</a>
+                                    <b>103258</b>
                                     <v>5</v>
                                 </b>
                                 <b>
-                                    <a>1458897</a>
-                                    <b>1458898</b>
+                                    <a>1447294</a>
+                                    <b>1447295</b>
                                     <v>5</v>
                                 </b>
                                 <b>
-                                    <a>3827033</a>
-                                    <b>3827034</b>
+                                    <a>3800219</a>
+                                    <b>3800220</b>
                                     <v>5</v>
                                 </b>
                                 <b>
-                                    <a>3875440</a>
-                                    <b>3875441</b>
+                                    <a>3848466</a>
+                                    <b>3848467</b>
                                     <v>5</v>
                                 </b>
                             </bs>
@@ -14578,22 +14629,22 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>295332</v>
+                                    <v>296162</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>13673753</v>
+                                    <v>13666793</v>
                                 </b>
                                 <b>
                                     <a>3</a>
                                     <b>4</b>
-                                    <v>7771091</v>
+                                    <v>7750153</v>
                                 </b>
                                 <b>
                                     <a>4</a>
                                     <b>11</b>
-                                    <v>528068</v>
+                                    <v>531138</v>
                                 </b>
                             </bs>
                         </hist>
@@ -14609,22 +14660,22 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>278146</v>
+                                    <v>278869</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>13607289</v>
+                                    <v>13599976</v>
                                 </b>
                                 <b>
                                     <a>3</a>
                                     <b>4</b>
-                                    <v>7789335</v>
+                                    <v>7768574</v>
                                 </b>
                                 <b>
                                     <a>4</a>
                                     <b>11</b>
-                                    <v>593474</v>
+                                    <v>596828</v>
                                 </b>
                             </bs>
                         </hist>
@@ -14634,37 +14685,37 @@
         </relation>
         <relation>
             <name>isParameterized</name>
-            <cardinality>25111274</cardinality>
+            <cardinality>27045654</cardinality>
             <columnsizes>
                 <e>
                     <k>memberid</k>
-                    <v>25111274</v>
+                    <v>27045654</v>
                 </e>
             </columnsizes>
             <dependencies/>
         </relation>
         <relation>
             <name>isRaw</name>
-            <cardinality>641191</cardinality>
+            <cardinality>731846</cardinality>
             <columnsizes>
                 <e>
                     <k>memberid</k>
-                    <v>641191</v>
+                    <v>731846</v>
                 </e>
             </columnsizes>
             <dependencies/>
         </relation>
         <relation>
             <name>erasure</name>
-            <cardinality>25752465</cardinality>
+            <cardinality>27777500</cardinality>
             <columnsizes>
                 <e>
                     <k>memberid</k>
-                    <v>25752465</v>
+                    <v>27777500</v>
                 </e>
                 <e>
                     <k>erasureid</k>
-                    <v>865812</v>
+                    <v>954665</v>
                 </e>
             </columnsizes>
             <dependencies>
@@ -14678,7 +14729,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>25752465</v>
+                                    <v>27777500</v>
                                 </b>
                             </bs>
                         </hist>
@@ -14694,57 +14745,62 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>144302</v>
+                                    <v>142143</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>133411</v>
+                                    <v>138301</v>
                                 </b>
                                 <b>
                                     <a>3</a>
                                     <b>4</b>
-                                    <v>88487</v>
+                                    <v>86438</v>
                                 </b>
                                 <b>
                                     <a>4</a>
                                     <b>5</b>
-                                    <v>54453</v>
+                                    <v>57625</v>
                                 </b>
                                 <b>
                                     <a>5</a>
                                     <b>6</b>
-                                    <v>50369</v>
+                                    <v>65309</v>
                                 </b>
                                 <b>
                                     <a>6</a>
                                     <b>8</b>
-                                    <v>63982</v>
+                                    <v>69150</v>
                                 </b>
                                 <b>
                                     <a>8</a>
-                                    <b>11</b>
-                                    <v>78957</v>
+                                    <b>10</b>
+                                    <v>61467</v>
                                 </b>
                                 <b>
-                                    <a>11</a>
-                                    <b>19</b>
-                                    <v>70789</v>
+                                    <a>10</a>
+                                    <b>15</b>
+                                    <v>72992</v>
                                 </b>
                                 <b>
-                                    <a>19</a>
-                                    <b>33</b>
-                                    <v>70789</v>
+                                    <a>15</a>
+                                    <b>22</b>
+                                    <v>76834</v>
                                 </b>
                                 <b>
-                                    <a>33</a>
-                                    <b>93</b>
-                                    <v>65344</v>
+                                    <a>22</a>
+                                    <b>44</b>
+                                    <v>74913</v>
                                 </b>
                                 <b>
-                                    <a>97</a>
-                                    <b>1848</b>
-                                    <v>44924</v>
+                                    <a>46</a>
+                                    <b>124</b>
+                                    <v>72992</v>
+                                </b>
+                                <b>
+                                    <a>169</a>
+                                    <b>1564</b>
+                                    <v>36496</v>
                                 </b>
                             </bs>
                         </hist>
@@ -14754,15 +14810,15 @@
         </relation>
         <relation>
             <name>isAnonymClass</name>
-            <cardinality>192667</cardinality>
+            <cardinality>174213</cardinality>
             <columnsizes>
                 <e>
                     <k>classid</k>
-                    <v>192667</v>
+                    <v>174213</v>
                 </e>
                 <e>
                     <k>parent</k>
-                    <v>192667</v>
+                    <v>174213</v>
                 </e>
             </columnsizes>
             <dependencies>
@@ -14776,7 +14832,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>192667</v>
+                                    <v>174213</v>
                                 </b>
                             </bs>
                         </hist>
@@ -14792,7 +14848,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>192667</v>
+                                    <v>174213</v>
                                 </b>
                             </bs>
                         </hist>
@@ -14802,15 +14858,15 @@
         </relation>
         <relation>
             <name>isLocalClassOrInterface</name>
-            <cardinality>4057</cardinality>
+            <cardinality>3841</cardinality>
             <columnsizes>
                 <e>
                     <k>typeid</k>
-                    <v>4057</v>
+                    <v>3841</v>
                 </e>
                 <e>
                     <k>parent</k>
-                    <v>4057</v>
+                    <v>3841</v>
                 </e>
             </columnsizes>
             <dependencies>
@@ -14824,7 +14880,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>4057</v>
+                                    <v>3841</v>
                                 </b>
                             </bs>
                         </hist>
@@ -14840,7 +14896,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>4057</v>
+                                    <v>3841</v>
                                 </b>
                             </bs>
                         </hist>
@@ -14850,26 +14906,26 @@
         </relation>
         <relation>
             <name>isDefConstr</name>
-            <cardinality>139100</cardinality>
+            <cardinality>139383</cardinality>
             <columnsizes>
                 <e>
                     <k>constructorid</k>
-                    <v>139100</v>
+                    <v>139383</v>
                 </e>
             </columnsizes>
             <dependencies/>
         </relation>
         <relation>
             <name>lambdaKind</name>
-            <cardinality>183936</cardinality>
+            <cardinality>167982</cardinality>
             <columnsizes>
                 <e>
                     <k>exprId</k>
-                    <v>183936</v>
+                    <v>167982</v>
                 </e>
                 <e>
                     <k>bodyKind</k>
-                    <v>15</v>
+                    <v>13</v>
                 </e>
             </columnsizes>
             <dependencies>
@@ -14883,7 +14939,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>183936</v>
+                                    <v>167982</v>
                                 </b>
                             </bs>
                         </hist>
@@ -14897,9 +14953,9 @@
                             <budget>12</budget>
                             <bs>
                                 <b>
-                                    <a>11651</a>
-                                    <b>11652</b>
-                                    <v>15</v>
+                                    <a>12267</a>
+                                    <b>12268</b>
+                                    <v>13</v>
                                 </b>
                             </bs>
                         </hist>
@@ -14909,27 +14965,27 @@
         </relation>
         <relation>
             <name>arrays</name>
-            <cardinality>1116298</cardinality>
+            <cardinality>1375332</cardinality>
             <columnsizes>
                 <e>
                     <k>id</k>
-                    <v>1116298</v>
+                    <v>1375332</v>
                 </e>
                 <e>
                     <k>nodeName</k>
-                    <v>687476</v>
+                    <v>831730</v>
                 </e>
                 <e>
                     <k>elementtypeid</k>
-                    <v>1109491</v>
+                    <v>1365728</v>
                 </e>
                 <e>
                     <k>dimension</k>
-                    <v>2722</v>
+                    <v>3841</v>
                 </e>
                 <e>
                     <k>componenttypeid</k>
-                    <v>1116298</v>
+                    <v>1375332</v>
                 </e>
             </columnsizes>
             <dependencies>
@@ -14943,7 +14999,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>1116298</v>
+                                    <v>1375332</v>
                                 </b>
                             </bs>
                         </hist>
@@ -14959,7 +15015,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>1116298</v>
+                                    <v>1375332</v>
                                 </b>
                             </bs>
                         </hist>
@@ -14975,7 +15031,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>1116298</v>
+                                    <v>1375332</v>
                                 </b>
                             </bs>
                         </hist>
@@ -14991,7 +15047,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>1116298</v>
+                                    <v>1375332</v>
                                 </b>
                             </bs>
                         </hist>
@@ -15007,17 +15063,17 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>562233</v>
+                                    <v>664616</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>99377</v>
+                                    <v>140222</v>
                                 </b>
                                 <b>
                                     <a>3</a>
-                                    <b>95</b>
-                                    <v>25865</v>
+                                    <b>87</b>
+                                    <v>26891</v>
                                 </b>
                             </bs>
                         </hist>
@@ -15033,17 +15089,17 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>562233</v>
+                                    <v>664616</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>99377</v>
+                                    <v>140222</v>
                                 </b>
                                 <b>
                                     <a>3</a>
-                                    <b>95</b>
-                                    <v>25865</v>
+                                    <b>87</b>
+                                    <v>26891</v>
                                 </b>
                             </bs>
                         </hist>
@@ -15059,7 +15115,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>687476</v>
+                                    <v>831730</v>
                                 </b>
                             </bs>
                         </hist>
@@ -15075,17 +15131,17 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>562233</v>
+                                    <v>664616</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>99377</v>
+                                    <v>140222</v>
                                 </b>
                                 <b>
                                     <a>3</a>
-                                    <b>95</b>
-                                    <v>25865</v>
+                                    <b>87</b>
+                                    <v>26891</v>
                                 </b>
                             </bs>
                         </hist>
@@ -15101,12 +15157,12 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>1102685</v>
+                                    <v>1356124</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>6806</v>
+                                    <v>9604</v>
                                 </b>
                             </bs>
                         </hist>
@@ -15122,12 +15178,12 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>1102685</v>
+                                    <v>1356124</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>6806</v>
+                                    <v>9604</v>
                                 </b>
                             </bs>
                         </hist>
@@ -15143,12 +15199,12 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>1102685</v>
+                                    <v>1356124</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>6806</v>
+                                    <v>9604</v>
                                 </b>
                             </bs>
                         </hist>
@@ -15164,12 +15220,12 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>1102685</v>
+                                    <v>1356124</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>6806</v>
+                                    <v>9604</v>
                                 </b>
                             </bs>
                         </hist>
@@ -15185,12 +15241,12 @@
                                 <b>
                                     <a>5</a>
                                     <b>6</b>
-                                    <v>1361</v>
+                                    <v>1920</v>
                                 </b>
                                 <b>
-                                    <a>815</a>
-                                    <b>816</b>
-                                    <v>1361</v>
+                                    <a>711</a>
+                                    <b>712</b>
+                                    <v>1920</v>
                                 </b>
                             </bs>
                         </hist>
@@ -15206,12 +15262,12 @@
                                 <b>
                                     <a>5</a>
                                     <b>6</b>
-                                    <v>1361</v>
+                                    <v>1920</v>
                                 </b>
                                 <b>
-                                    <a>500</a>
-                                    <b>501</b>
-                                    <v>1361</v>
+                                    <a>428</a>
+                                    <b>429</b>
+                                    <v>1920</v>
                                 </b>
                             </bs>
                         </hist>
@@ -15227,12 +15283,12 @@
                                 <b>
                                     <a>5</a>
                                     <b>6</b>
-                                    <v>1361</v>
+                                    <v>1920</v>
                                 </b>
                                 <b>
-                                    <a>815</a>
-                                    <b>816</b>
-                                    <v>1361</v>
+                                    <a>711</a>
+                                    <b>712</b>
+                                    <v>1920</v>
                                 </b>
                             </bs>
                         </hist>
@@ -15248,12 +15304,12 @@
                                 <b>
                                     <a>5</a>
                                     <b>6</b>
-                                    <v>1361</v>
+                                    <v>1920</v>
                                 </b>
                                 <b>
-                                    <a>815</a>
-                                    <b>816</b>
-                                    <v>1361</v>
+                                    <a>711</a>
+                                    <b>712</b>
+                                    <v>1920</v>
                                 </b>
                             </bs>
                         </hist>
@@ -15269,7 +15325,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>1116298</v>
+                                    <v>1375332</v>
                                 </b>
                             </bs>
                         </hist>
@@ -15285,7 +15341,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>1116298</v>
+                                    <v>1375332</v>
                                 </b>
                             </bs>
                         </hist>
@@ -15301,7 +15357,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>1116298</v>
+                                    <v>1375332</v>
                                 </b>
                             </bs>
                         </hist>
@@ -15317,7 +15373,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>1116298</v>
+                                    <v>1375332</v>
                                 </b>
                             </bs>
                         </hist>
@@ -15327,15 +15383,15 @@
         </relation>
         <relation>
             <name>enclInReftype</name>
-            <cardinality>3410156</cardinality>
+            <cardinality>4051085</cardinality>
             <columnsizes>
                 <e>
                     <k>child</k>
-                    <v>3410156</v>
+                    <v>4051085</v>
                 </e>
                 <e>
                     <k>parent</k>
-                    <v>929795</v>
+                    <v>1125621</v>
                 </e>
             </columnsizes>
             <dependencies>
@@ -15349,7 +15405,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>3410156</v>
+                                    <v>4051085</v>
                                 </b>
                             </bs>
                         </hist>
@@ -15365,32 +15421,32 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>551342</v>
+                                    <v>666537</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>148386</v>
+                                    <v>176718</v>
                                 </b>
                                 <b>
                                     <a>3</a>
                                     <b>4</b>
-                                    <v>70789</v>
+                                    <v>86438</v>
                                 </b>
                                 <b>
                                     <a>4</a>
-                                    <b>7</b>
-                                    <v>81680</v>
+                                    <b>6</b>
+                                    <v>82596</v>
                                 </b>
                                 <b>
-                                    <a>7</a>
-                                    <b>51</b>
-                                    <v>70789</v>
+                                    <a>6</a>
+                                    <b>17</b>
+                                    <v>84517</v>
                                 </b>
                                 <b>
-                                    <a>54</a>
-                                    <b>279</b>
-                                    <v>6806</v>
+                                    <a>17</a>
+                                    <b>265</b>
+                                    <v>28812</v>
                                 </b>
                             </bs>
                         </hist>
@@ -15400,15 +15456,15 @@
         </relation>
         <relation>
             <name>extendsReftype</name>
-            <cardinality>47868792</cardinality>
+            <cardinality>34389087</cardinality>
             <columnsizes>
                 <e>
                     <k>id1</k>
-                    <v>34023966</v>
+                    <v>33104034</v>
                 </e>
                 <e>
                     <k>id2</k>
-                    <v>14017716</v>
+                    <v>13251986</v>
                 </e>
             </columnsizes>
             <dependencies>
@@ -15422,22 +15478,12 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>26145892</v>
+                                    <v>32118635</v>
                                 </b>
                                 <b>
                                     <a>2</a>
-                                    <b>3</b>
-                                    <v>3141972</v>
-                                </b>
-                                <b>
-                                    <a>3</a>
-                                    <b>4</b>
-                                    <v>3633415</v>
-                                </b>
-                                <b>
-                                    <a>4</a>
                                     <b>10</b>
-                                    <v>1102685</v>
+                                    <v>985399</v>
                                 </b>
                             </bs>
                         </hist>
@@ -15453,17 +15499,17 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>11930782</v>
+                                    <v>12030322</v>
                                 </b>
                                 <b>
                                     <a>2</a>
-                                    <b>3</b>
-                                    <v>1425322</v>
+                                    <b>5</b>
+                                    <v>1023816</v>
                                 </b>
                                 <b>
-                                    <a>3</a>
-                                    <b>12285</b>
-                                    <v>661611</v>
+                                    <a>5</a>
+                                    <b>8715</b>
+                                    <v>197848</v>
                                 </b>
                             </bs>
                         </hist>
@@ -15473,15 +15519,15 @@
         </relation>
         <relation>
             <name>implInterface</name>
-            <cardinality>3048147</cardinality>
+            <cardinality>14423708</cardinality>
             <columnsizes>
                 <e>
                     <k>id1</k>
-                    <v>756277</v>
+                    <v>8255839</v>
                 </e>
                 <e>
                     <k>id2</k>
-                    <v>2271707</v>
+                    <v>4487119</v>
                 </e>
             </columnsizes>
             <dependencies>
@@ -15495,37 +15541,27 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>209615</v>
+                                    <v>4223962</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>50204</v>
+                                    <v>2829421</v>
                                 </b>
                                 <b>
                                     <a>3</a>
                                     <b>4</b>
-                                    <v>67386</v>
+                                    <v>276603</v>
                                 </b>
                                 <b>
                                     <a>4</a>
                                     <b>5</b>
-                                    <v>61962</v>
+                                    <v>920090</v>
                                 </b>
                                 <b>
                                     <a>5</a>
-                                    <b>6</b>
-                                    <v>19294</v>
-                                </b>
-                                <b>
-                                    <a>6</a>
                                     <b>7</b>
-                                    <v>305429</v>
-                                </b>
-                                <b>
-                                    <a>7</a>
-                                    <b>10</b>
-                                    <v>42384</v>
+                                    <v>5762</v>
                                 </b>
                             </bs>
                         </hist>
@@ -15541,12 +15577,17 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>2196440</v>
+                                    <v>4003064</v>
                                 </b>
                                 <b>
                                     <a>2</a>
-                                    <b>63781</b>
-                                    <v>75267</v>
+                                    <b>4</b>
+                                    <v>366883</v>
+                                </b>
+                                <b>
+                                    <a>4</a>
+                                    <b>2275</b>
+                                    <v>117172</v>
                                 </b>
                             </bs>
                         </hist>
@@ -15556,15 +15597,15 @@
         </relation>
         <relation>
             <name>permits</name>
-            <cardinality>177</cardinality>
+            <cardinality>129</cardinality>
             <columnsizes>
                 <e>
                     <k>id1</k>
-                    <v>43</v>
+                    <v>31</v>
                 </e>
                 <e>
                     <k>id2</k>
-                    <v>177</v>
+                    <v>129</v>
                 </e>
             </columnsizes>
             <dependencies>
@@ -15578,17 +15619,17 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>1</v>
+                                    <v>2</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>13</v>
+                                    <v>8</v>
                                 </b>
                                 <b>
                                     <a>3</a>
                                     <b>4</b>
-                                    <v>9</v>
+                                    <v>6</v>
                                 </b>
                                 <b>
                                     <a>4</a>
@@ -15598,25 +15639,20 @@
                                 <b>
                                     <a>5</a>
                                     <b>6</b>
-                                    <v>5</v>
+                                    <v>2</v>
                                 </b>
                                 <b>
                                     <a>6</a>
-                                    <b>7</b>
-                                    <v>4</v>
-                                </b>
-                                <b>
-                                    <a>7</a>
                                     <b>8</b>
                                     <v>2</v>
                                 </b>
                                 <b>
                                     <a>8</a>
                                     <b>9</b>
-                                    <v>1</v>
+                                    <v>2</v>
                                 </b>
                                 <b>
-                                    <a>10</a>
+                                    <a>9</a>
                                     <b>11</b>
                                     <v>2</v>
                                 </b>
@@ -15634,7 +15670,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>177</v>
+                                    <v>129</v>
                                 </b>
                             </bs>
                         </hist>
@@ -15644,15 +15680,15 @@
         </relation>
         <relation>
             <name>hasModifier</name>
-            <cardinality>249133355</cardinality>
+            <cardinality>270713939</cardinality>
             <columnsizes>
                 <e>
                     <k>id1</k>
-                    <v>166385675</v>
+                    <v>180180147</v>
                 </e>
                 <e>
                     <k>id2</k>
-                    <v>13613</v>
+                    <v>26891</v>
                 </e>
             </columnsizes>
             <dependencies>
@@ -15666,17 +15702,17 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>84119910</v>
+                                    <v>90230296</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>81783851</v>
+                                    <v>89365911</v>
                                 </b>
                                 <b>
                                     <a>3</a>
                                     <b>4</b>
-                                    <v>481914</v>
+                                    <v>583940</v>
                                 </b>
                             </bs>
                         </hist>
@@ -15690,54 +15726,74 @@
                             <budget>12</budget>
                             <bs>
                                 <b>
-                                    <a>31</a>
-                                    <b>32</b>
-                                    <v>1361</v>
+                                    <a>4</a>
+                                    <b>5</b>
+                                    <v>1920</v>
+                                </b>
+                                <b>
+                                    <a>14</a>
+                                    <b>15</b>
+                                    <v>1920</v>
+                                </b>
+                                <b>
+                                    <a>20</a>
+                                    <b>21</b>
+                                    <v>1920</v>
+                                </b>
+                                <b>
+                                    <a>21</a>
+                                    <b>22</b>
+                                    <v>1920</v>
                                 </b>
                                 <b>
                                     <a>34</a>
                                     <b>35</b>
-                                    <v>1361</v>
+                                    <v>1920</v>
+                                </b>
+                                <b>
+                                    <a>50</a>
+                                    <b>51</b>
+                                    <v>1920</v>
                                 </b>
                                 <b>
                                     <a>109</a>
                                     <b>110</b>
-                                    <v>1361</v>
+                                    <v>1920</v>
                                 </b>
                                 <b>
-                                    <a>267</a>
-                                    <b>268</b>
-                                    <v>1361</v>
+                                    <a>219</a>
+                                    <b>220</b>
+                                    <v>1920</v>
                                 </b>
                                 <b>
-                                    <a>500</a>
-                                    <b>501</b>
-                                    <v>1361</v>
+                                    <a>3864</a>
+                                    <b>3865</b>
+                                    <v>1920</v>
                                 </b>
                                 <b>
-                                    <a>8143</a>
-                                    <b>8144</b>
-                                    <v>1361</v>
+                                    <a>7193</a>
+                                    <b>7194</b>
+                                    <v>1920</v>
                                 </b>
                                 <b>
-                                    <a>18034</a>
-                                    <b>18035</b>
-                                    <v>1361</v>
+                                    <a>9195</a>
+                                    <b>9196</b>
+                                    <v>1920</v>
                                 </b>
                                 <b>
-                                    <a>18282</a>
-                                    <b>18283</b>
-                                    <v>1361</v>
+                                    <a>14706</a>
+                                    <b>14707</b>
+                                    <v>1920</v>
                                 </b>
                                 <b>
-                                    <a>20694</a>
-                                    <b>20695</b>
-                                    <v>1361</v>
+                                    <a>18810</a>
+                                    <b>18811</b>
+                                    <v>1920</v>
                                 </b>
                                 <b>
-                                    <a>116912</a>
-                                    <b>116913</b>
-                                    <v>1361</v>
+                                    <a>86695</a>
+                                    <b>86696</b>
+                                    <v>1920</v>
                                 </b>
                             </bs>
                         </hist>
@@ -15747,15 +15803,15 @@
         </relation>
         <relation>
             <name>imports</name>
-            <cardinality>368532</cardinality>
+            <cardinality>368550</cardinality>
             <columnsizes>
                 <e>
                     <k>id</k>
-                    <v>368532</v>
+                    <v>368550</v>
                 </e>
                 <e>
                     <k>holder</k>
-                    <v>58075</v>
+                    <v>58078</v>
                 </e>
                 <e>
                     <k>name</k>
@@ -15777,7 +15833,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>368532</v>
+                                    <v>368550</v>
                                 </b>
                             </bs>
                         </hist>
@@ -15793,7 +15849,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>368532</v>
+                                    <v>368550</v>
                                 </b>
                             </bs>
                         </hist>
@@ -15809,7 +15865,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>368532</v>
+                                    <v>368550</v>
                                 </b>
                             </bs>
                         </hist>
@@ -15825,7 +15881,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>28374</v>
+                                    <v>28375</v>
                                 </b>
                                 <b>
                                     <a>2</a>
@@ -15871,7 +15927,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>54591</v>
+                                    <v>54593</v>
                                 </b>
                                 <b>
                                     <a>2</a>
@@ -15892,7 +15948,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>55089</v>
+                                    <v>55091</v>
                                 </b>
                                 <b>
                                     <a>2</a>
@@ -15954,7 +16010,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>7300</v>
+                                    <v>7301</v>
                                 </b>
                                 <b>
                                     <a>2</a>
@@ -16078,27 +16134,27 @@
         </relation>
         <relation>
             <name>stmts</name>
-            <cardinality>2530730</cardinality>
+            <cardinality>2441387</cardinality>
             <columnsizes>
                 <e>
                     <k>id</k>
-                    <v>2530730</v>
+                    <v>2441387</v>
                 </e>
                 <e>
                     <k>kind</k>
-                    <v>13613</v>
+                    <v>9674</v>
                 </e>
                 <e>
                     <k>parent</k>
-                    <v>1783355</v>
+                    <v>1353860</v>
                 </e>
                 <e>
                     <k>idx</k>
-                    <v>216453</v>
+                    <v>15934</v>
                 </e>
                 <e>
                     <k>bodydecl</k>
-                    <v>703812</v>
+                    <v>367630</v>
                 </e>
             </columnsizes>
             <dependencies>
@@ -16112,7 +16168,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>2530730</v>
+                                    <v>2441387</v>
                                 </b>
                             </bs>
                         </hist>
@@ -16128,7 +16184,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>2530730</v>
+                                    <v>2441387</v>
                                 </b>
                             </bs>
                         </hist>
@@ -16144,7 +16200,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>2530730</v>
+                                    <v>2441387</v>
                                 </b>
                             </bs>
                         </hist>
@@ -16160,7 +16216,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>2530730</v>
+                                    <v>2441387</v>
                                 </b>
                             </bs>
                         </hist>
@@ -16169,57 +16225,6 @@
                 <dep>
                     <src>kind</src>
                     <trg>id</trg>
-                    <val>
-                        <hist>
-                            <budget>12</budget>
-                            <bs>
-                                <b>
-                                    <a>2</a>
-                                    <b>3</b>
-                                    <v>4084</v>
-                                </b>
-                                <b>
-                                    <a>4</a>
-                                    <b>5</b>
-                                    <v>1361</v>
-                                </b>
-                                <b>
-                                    <a>72</a>
-                                    <b>73</b>
-                                    <v>1361</v>
-                                </b>
-                                <b>
-                                    <a>96</a>
-                                    <b>97</b>
-                                    <v>1361</v>
-                                </b>
-                                <b>
-                                    <a>162</a>
-                                    <b>163</b>
-                                    <v>1361</v>
-                                </b>
-                                <b>
-                                    <a>373</a>
-                                    <b>374</b>
-                                    <v>1361</v>
-                                </b>
-                                <b>
-                                    <a>525</a>
-                                    <b>526</b>
-                                    <v>1361</v>
-                                </b>
-                                <b>
-                                    <a>621</a>
-                                    <b>622</b>
-                                    <v>1361</v>
-                                </b>
-                            </bs>
-                        </hist>
-                    </val>
-                </dep>
-                <dep>
-                    <src>kind</src>
-                    <trg>parent</trg>
                     <val>
                         <hist>
                             <budget>12</budget>
@@ -16227,88 +16232,224 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>1361</v>
-                                </b>
-                                <b>
-                                    <a>2</a>
-                                    <b>3</b>
-                                    <v>2722</v>
-                                </b>
-                                <b>
-                                    <a>4</a>
-                                    <b>5</b>
-                                    <v>1361</v>
-                                </b>
-                                <b>
-                                    <a>53</a>
-                                    <b>54</b>
-                                    <v>1361</v>
-                                </b>
-                                <b>
-                                    <a>72</a>
-                                    <b>73</b>
-                                    <v>1361</v>
-                                </b>
-                                <b>
-                                    <a>98</a>
-                                    <b>99</b>
-                                    <v>1361</v>
-                                </b>
-                                <b>
-                                    <a>233</a>
-                                    <b>234</b>
-                                    <v>1361</v>
-                                </b>
-                                <b>
-                                    <a>373</a>
-                                    <b>374</b>
-                                    <v>1361</v>
-                                </b>
-                                <b>
-                                    <a>621</a>
-                                    <b>622</b>
-                                    <v>1361</v>
-                                </b>
-                            </bs>
-                        </hist>
-                    </val>
-                </dep>
-                <dep>
-                    <src>kind</src>
-                    <trg>idx</trg>
-                    <val>
-                        <hist>
-                            <budget>12</budget>
-                            <bs>
-                                <b>
-                                    <a>1</a>
-                                    <b>2</b>
-                                    <v>5445</v>
-                                </b>
-                                <b>
-                                    <a>2</a>
-                                    <b>3</b>
-                                    <v>1361</v>
-                                </b>
-                                <b>
-                                    <a>5</a>
-                                    <b>6</b>
-                                    <v>1361</v>
+                                    <v>1707</v>
                                 </b>
                                 <b>
                                     <a>6</a>
                                     <b>7</b>
-                                    <v>1361</v>
+                                    <v>569</v>
                                 </b>
                                 <b>
                                     <a>7</a>
                                     <b>8</b>
-                                    <v>2722</v>
+                                    <v>569</v>
                                 </b>
                                 <b>
-                                    <a>158</a>
-                                    <b>159</b>
-                                    <v>1361</v>
+                                    <a>17</a>
+                                    <b>18</b>
+                                    <v>569</v>
+                                </b>
+                                <b>
+                                    <a>20</a>
+                                    <b>21</b>
+                                    <v>569</v>
+                                </b>
+                                <b>
+                                    <a>23</a>
+                                    <b>24</b>
+                                    <v>569</v>
+                                </b>
+                                <b>
+                                    <a>33</a>
+                                    <b>34</b>
+                                    <v>569</v>
+                                </b>
+                                <b>
+                                    <a>83</a>
+                                    <b>84</b>
+                                    <v>569</v>
+                                </b>
+                                <b>
+                                    <a>91</a>
+                                    <b>92</b>
+                                    <v>569</v>
+                                </b>
+                                <b>
+                                    <a>97</a>
+                                    <b>98</b>
+                                    <v>569</v>
+                                </b>
+                                <b>
+                                    <a>265</a>
+                                    <b>266</b>
+                                    <v>569</v>
+                                </b>
+                                <b>
+                                    <a>312</a>
+                                    <b>313</b>
+                                    <v>569</v>
+                                </b>
+                                <b>
+                                    <a>560</a>
+                                    <b>561</b>
+                                    <v>569</v>
+                                </b>
+                                <b>
+                                    <a>1243</a>
+                                    <b>1244</b>
+                                    <v>569</v>
+                                </b>
+                                <b>
+                                    <a>1530</a>
+                                    <b>1531</b>
+                                    <v>569</v>
+                                </b>
+                            </bs>
+                        </hist>
+                    </val>
+                </dep>
+                <dep>
+                    <src>kind</src>
+                    <trg>parent</trg>
+                    <val>
+                        <hist>
+                            <budget>12</budget>
+                            <bs>
+                                <b>
+                                    <a>1</a>
+                                    <b>2</b>
+                                    <v>2276</v>
+                                </b>
+                                <b>
+                                    <a>7</a>
+                                    <b>8</b>
+                                    <v>569</v>
+                                </b>
+                                <b>
+                                    <a>12</a>
+                                    <b>13</b>
+                                    <v>569</v>
+                                </b>
+                                <b>
+                                    <a>17</a>
+                                    <b>18</b>
+                                    <v>569</v>
+                                </b>
+                                <b>
+                                    <a>21</a>
+                                    <b>22</b>
+                                    <v>569</v>
+                                </b>
+                                <b>
+                                    <a>33</a>
+                                    <b>34</b>
+                                    <v>569</v>
+                                </b>
+                                <b>
+                                    <a>71</a>
+                                    <b>72</b>
+                                    <v>569</v>
+                                </b>
+                                <b>
+                                    <a>81</a>
+                                    <b>82</b>
+                                    <v>569</v>
+                                </b>
+                                <b>
+                                    <a>91</a>
+                                    <b>92</b>
+                                    <v>569</v>
+                                </b>
+                                <b>
+                                    <a>246</a>
+                                    <b>247</b>
+                                    <v>569</v>
+                                </b>
+                                <b>
+                                    <a>265</a>
+                                    <b>266</b>
+                                    <v>569</v>
+                                </b>
+                                <b>
+                                    <a>271</a>
+                                    <b>272</b>
+                                    <v>569</v>
+                                </b>
+                                <b>
+                                    <a>716</a>
+                                    <b>717</b>
+                                    <v>569</v>
+                                </b>
+                                <b>
+                                    <a>1192</a>
+                                    <b>1193</b>
+                                    <v>569</v>
+                                </b>
+                            </bs>
+                        </hist>
+                    </val>
+                </dep>
+                <dep>
+                    <src>kind</src>
+                    <trg>idx</trg>
+                    <val>
+                        <hist>
+                            <budget>12</budget>
+                            <bs>
+                                <b>
+                                    <a>1</a>
+                                    <b>2</b>
+                                    <v>2276</v>
+                                </b>
+                                <b>
+                                    <a>3</a>
+                                    <b>4</b>
+                                    <v>569</v>
+                                </b>
+                                <b>
+                                    <a>4</a>
+                                    <b>5</b>
+                                    <v>569</v>
+                                </b>
+                                <b>
+                                    <a>6</a>
+                                    <b>7</b>
+                                    <v>1138</v>
+                                </b>
+                                <b>
+                                    <a>7</a>
+                                    <b>8</b>
+                                    <v>569</v>
+                                </b>
+                                <b>
+                                    <a>8</a>
+                                    <b>9</b>
+                                    <v>1138</v>
+                                </b>
+                                <b>
+                                    <a>10</a>
+                                    <b>11</b>
+                                    <v>1138</v>
+                                </b>
+                                <b>
+                                    <a>13</a>
+                                    <b>14</b>
+                                    <v>569</v>
+                                </b>
+                                <b>
+                                    <a>17</a>
+                                    <b>18</b>
+                                    <v>569</v>
+                                </b>
+                                <b>
+                                    <a>21</a>
+                                    <b>22</b>
+                                    <v>569</v>
+                                </b>
+                                <b>
+                                    <a>26</a>
+                                    <b>27</b>
+                                    <v>569</v>
                                 </b>
                             </bs>
                         </hist>
@@ -16324,42 +16465,67 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>1361</v>
+                                    <v>2276</v>
                                 </b>
                                 <b>
-                                    <a>2</a>
-                                    <b>3</b>
-                                    <v>4084</v>
+                                    <a>7</a>
+                                    <b>8</b>
+                                    <v>1138</v>
                                 </b>
                                 <b>
-                                    <a>25</a>
-                                    <b>26</b>
-                                    <v>1361</v>
+                                    <a>17</a>
+                                    <b>18</b>
+                                    <v>569</v>
                                 </b>
                                 <b>
-                                    <a>71</a>
-                                    <b>72</b>
-                                    <v>1361</v>
+                                    <a>20</a>
+                                    <b>21</b>
+                                    <v>569</v>
                                 </b>
                                 <b>
-                                    <a>72</a>
-                                    <b>73</b>
-                                    <v>1361</v>
+                                    <a>21</a>
+                                    <b>22</b>
+                                    <v>569</v>
+                                </b>
+                                <b>
+                                    <a>53</a>
+                                    <b>54</b>
+                                    <v>569</v>
+                                </b>
+                                <b>
+                                    <a>54</a>
+                                    <b>55</b>
+                                    <v>569</v>
+                                </b>
+                                <b>
+                                    <a>91</a>
+                                    <b>92</b>
+                                    <v>569</v>
                                 </b>
                                 <b>
                                     <a>119</a>
                                     <b>120</b>
-                                    <v>1361</v>
+                                    <v>569</v>
                                 </b>
                                 <b>
-                                    <a>371</a>
-                                    <b>372</b>
-                                    <v>1361</v>
+                                    <a>179</a>
+                                    <b>180</b>
+                                    <v>569</v>
                                 </b>
                                 <b>
-                                    <a>517</a>
-                                    <b>518</b>
-                                    <v>1361</v>
+                                    <a>211</a>
+                                    <b>212</b>
+                                    <v>569</v>
+                                </b>
+                                <b>
+                                    <a>431</a>
+                                    <b>432</b>
+                                    <v>569</v>
+                                </b>
+                                <b>
+                                    <a>646</a>
+                                    <b>647</b>
+                                    <v>569</v>
                                 </b>
                             </bs>
                         </hist>
@@ -16375,17 +16541,22 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>1501557</v>
+                                    <v>989074</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>198755</v>
+                                    <v>191782</v>
                                 </b>
                                 <b>
                                     <a>3</a>
-                                    <b>159</b>
-                                    <v>83041</v>
+                                    <b>6</b>
+                                    <v>107557</v>
+                                </b>
+                                <b>
+                                    <a>6</a>
+                                    <b>27</b>
+                                    <v>65445</v>
                                 </b>
                             </bs>
                         </hist>
@@ -16401,17 +16572,17 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>1587322</v>
+                                    <v>1081267</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>189226</v>
+                                    <v>194058</v>
                                 </b>
                                 <b>
                                     <a>3</a>
-                                    <b>4</b>
-                                    <v>6806</v>
+                                    <b>6</b>
+                                    <v>78534</v>
                                 </b>
                             </bs>
                         </hist>
@@ -16427,17 +16598,22 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>1501557</v>
+                                    <v>989074</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>198755</v>
+                                    <v>191782</v>
                                 </b>
                                 <b>
                                     <a>3</a>
-                                    <b>159</b>
-                                    <v>83041</v>
+                                    <b>6</b>
+                                    <v>107557</v>
+                                </b>
+                                <b>
+                                    <a>6</a>
+                                    <b>27</b>
+                                    <v>65445</v>
                                 </b>
                             </bs>
                         </hist>
@@ -16453,7 +16629,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>1783355</v>
+                                    <v>1353860</v>
                                 </b>
                             </bs>
                         </hist>
@@ -16466,25 +16642,70 @@
                         <hist>
                             <budget>12</budget>
                             <bs>
-                                <b>
-                                    <a>1</a>
-                                    <b>2</b>
-                                    <v>160638</v>
-                                </b>
-                                <b>
-                                    <a>2</a>
-                                    <b>3</b>
-                                    <v>34033</v>
-                                </b>
                                 <b>
                                     <a>3</a>
-                                    <b>24</b>
-                                    <v>16336</v>
+                                    <b>5</b>
+                                    <v>1138</v>
                                 </b>
                                 <b>
-                                    <a>34</a>
-                                    <b>1213</b>
-                                    <v>5445</v>
+                                    <a>5</a>
+                                    <b>6</b>
+                                    <v>1138</v>
+                                </b>
+                                <b>
+                                    <a>6</a>
+                                    <b>7</b>
+                                    <v>2276</v>
+                                </b>
+                                <b>
+                                    <a>10</a>
+                                    <b>15</b>
+                                    <v>1138</v>
+                                </b>
+                                <b>
+                                    <a>15</a>
+                                    <b>16</b>
+                                    <v>1138</v>
+                                </b>
+                                <b>
+                                    <a>17</a>
+                                    <b>20</b>
+                                    <v>1138</v>
+                                </b>
+                                <b>
+                                    <a>24</a>
+                                    <b>32</b>
+                                    <v>1138</v>
+                                </b>
+                                <b>
+                                    <a>40</a>
+                                    <b>43</b>
+                                    <v>1138</v>
+                                </b>
+                                <b>
+                                    <a>55</a>
+                                    <b>72</b>
+                                    <v>1138</v>
+                                </b>
+                                <b>
+                                    <a>83</a>
+                                    <b>94</b>
+                                    <v>1138</v>
+                                </b>
+                                <b>
+                                    <a>115</a>
+                                    <b>160</b>
+                                    <v>1138</v>
+                                </b>
+                                <b>
+                                    <a>204</a>
+                                    <b>386</b>
+                                    <v>1138</v>
+                                </b>
+                                <b>
+                                    <a>939</a>
+                                    <b>1919</b>
+                                    <v>1138</v>
                                 </b>
                             </bs>
                         </hist>
@@ -16500,157 +16721,332 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>204200</v>
-                                </b>
-                                <b>
-                                    <a>2</a>
-                                    <b>9</b>
-                                    <v>12252</v>
-                                </b>
-                            </bs>
-                        </hist>
-                    </val>
-                </dep>
-                <dep>
-                    <src>idx</src>
-                    <trg>parent</trg>
-                    <val>
-                        <hist>
-                            <budget>12</budget>
-                            <bs>
-                                <b>
-                                    <a>1</a>
-                                    <b>2</b>
-                                    <v>160638</v>
+                                    <v>2276</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>34033</v>
+                                    <v>3983</v>
                                 </b>
                                 <b>
                                     <a>3</a>
-                                    <b>24</b>
-                                    <v>16336</v>
+                                    <b>5</b>
+                                    <v>1138</v>
                                 </b>
                                 <b>
-                                    <a>34</a>
-                                    <b>1213</b>
-                                    <v>5445</v>
-                                </b>
-                            </bs>
-                        </hist>
-                    </val>
-                </dep>
-                <dep>
-                    <src>idx</src>
-                    <trg>bodydecl</trg>
-                    <val>
-                        <hist>
-                            <budget>12</budget>
-                            <bs>
-                                <b>
-                                    <a>1</a>
-                                    <b>2</b>
-                                    <v>160638</v>
+                                    <a>5</a>
+                                    <b>6</b>
+                                    <v>2276</v>
                                 </b>
                                 <b>
-                                    <a>2</a>
-                                    <b>3</b>
-                                    <v>34033</v>
-                                </b>
-                                <b>
-                                    <a>3</a>
-                                    <b>19</b>
-                                    <v>16336</v>
-                                </b>
-                                <b>
-                                    <a>29</a>
-                                    <b>518</b>
-                                    <v>5445</v>
-                                </b>
-                            </bs>
-                        </hist>
-                    </val>
-                </dep>
-                <dep>
-                    <src>bodydecl</src>
-                    <trg>id</trg>
-                    <val>
-                        <hist>
-                            <budget>12</budget>
-                            <bs>
-                                <b>
-                                    <a>2</a>
-                                    <b>3</b>
-                                    <v>544535</v>
-                                </b>
-                                <b>
-                                    <a>3</a>
-                                    <b>4</b>
-                                    <v>58537</v>
-                                </b>
-                                <b>
-                                    <a>4</a>
+                                    <a>6</a>
                                     <b>7</b>
-                                    <v>53092</v>
+                                    <v>2276</v>
                                 </b>
                                 <b>
                                     <a>7</a>
-                                    <b>162</b>
-                                    <v>47646</v>
-                                </b>
-                            </bs>
-                        </hist>
-                    </val>
-                </dep>
-                <dep>
-                    <src>bodydecl</src>
-                    <trg>kind</trg>
-                    <val>
-                        <hist>
-                            <budget>12</budget>
-                            <bs>
-                                <b>
-                                    <a>2</a>
-                                    <b>3</b>
-                                    <v>575846</v>
-                                </b>
-                                <b>
-                                    <a>3</a>
-                                    <b>4</b>
-                                    <v>81680</v>
-                                </b>
-                                <b>
-                                    <a>4</a>
-                                    <b>7</b>
-                                    <v>46285</v>
-                                </b>
-                            </bs>
-                        </hist>
-                    </val>
-                </dep>
-                <dep>
-                    <src>bodydecl</src>
-                    <trg>parent</trg>
-                    <val>
-                        <hist>
-                            <budget>12</budget>
-                            <bs>
-                                <b>
-                                    <a>2</a>
-                                    <b>3</b>
-                                    <v>630300</v>
-                                </b>
-                                <b>
-                                    <a>3</a>
-                                    <b>8</b>
-                                    <v>57176</v>
+                                    <b>9</b>
+                                    <v>1138</v>
                                 </b>
                                 <b>
                                     <a>9</a>
-                                    <b>47</b>
-                                    <v>16336</v>
+                                    <b>10</b>
+                                    <v>1138</v>
+                                </b>
+                                <b>
+                                    <a>12</a>
+                                    <b>14</b>
+                                    <v>1138</v>
+                                </b>
+                                <b>
+                                    <a>16</a>
+                                    <b>17</b>
+                                    <v>569</v>
+                                </b>
+                            </bs>
+                        </hist>
+                    </val>
+                </dep>
+                <dep>
+                    <src>idx</src>
+                    <trg>parent</trg>
+                    <val>
+                        <hist>
+                            <budget>12</budget>
+                            <bs>
+                                <b>
+                                    <a>3</a>
+                                    <b>5</b>
+                                    <v>1138</v>
+                                </b>
+                                <b>
+                                    <a>5</a>
+                                    <b>6</b>
+                                    <v>1138</v>
+                                </b>
+                                <b>
+                                    <a>6</a>
+                                    <b>7</b>
+                                    <v>2276</v>
+                                </b>
+                                <b>
+                                    <a>10</a>
+                                    <b>15</b>
+                                    <v>1138</v>
+                                </b>
+                                <b>
+                                    <a>15</a>
+                                    <b>16</b>
+                                    <v>1138</v>
+                                </b>
+                                <b>
+                                    <a>17</a>
+                                    <b>20</b>
+                                    <v>1138</v>
+                                </b>
+                                <b>
+                                    <a>24</a>
+                                    <b>32</b>
+                                    <v>1138</v>
+                                </b>
+                                <b>
+                                    <a>40</a>
+                                    <b>43</b>
+                                    <v>1138</v>
+                                </b>
+                                <b>
+                                    <a>55</a>
+                                    <b>72</b>
+                                    <v>1138</v>
+                                </b>
+                                <b>
+                                    <a>83</a>
+                                    <b>94</b>
+                                    <v>1138</v>
+                                </b>
+                                <b>
+                                    <a>115</a>
+                                    <b>160</b>
+                                    <v>1138</v>
+                                </b>
+                                <b>
+                                    <a>204</a>
+                                    <b>386</b>
+                                    <v>1138</v>
+                                </b>
+                                <b>
+                                    <a>939</a>
+                                    <b>1919</b>
+                                    <v>1138</v>
+                                </b>
+                            </bs>
+                        </hist>
+                    </val>
+                </dep>
+                <dep>
+                    <src>idx</src>
+                    <trg>bodydecl</trg>
+                    <val>
+                        <hist>
+                            <budget>12</budget>
+                            <bs>
+                                <b>
+                                    <a>3</a>
+                                    <b>5</b>
+                                    <v>1138</v>
+                                </b>
+                                <b>
+                                    <a>5</a>
+                                    <b>6</b>
+                                    <v>1138</v>
+                                </b>
+                                <b>
+                                    <a>6</a>
+                                    <b>7</b>
+                                    <v>2276</v>
+                                </b>
+                                <b>
+                                    <a>10</a>
+                                    <b>15</b>
+                                    <v>1138</v>
+                                </b>
+                                <b>
+                                    <a>15</a>
+                                    <b>16</b>
+                                    <v>1138</v>
+                                </b>
+                                <b>
+                                    <a>17</a>
+                                    <b>20</b>
+                                    <v>1138</v>
+                                </b>
+                                <b>
+                                    <a>24</a>
+                                    <b>32</b>
+                                    <v>1138</v>
+                                </b>
+                                <b>
+                                    <a>40</a>
+                                    <b>43</b>
+                                    <v>1138</v>
+                                </b>
+                                <b>
+                                    <a>54</a>
+                                    <b>56</b>
+                                    <v>1138</v>
+                                </b>
+                                <b>
+                                    <a>68</a>
+                                    <b>87</b>
+                                    <v>1138</v>
+                                </b>
+                                <b>
+                                    <a>104</a>
+                                    <b>138</b>
+                                    <v>1138</v>
+                                </b>
+                                <b>
+                                    <a>167</a>
+                                    <b>226</b>
+                                    <v>1138</v>
+                                </b>
+                                <b>
+                                    <a>337</a>
+                                    <b>647</b>
+                                    <v>1138</v>
+                                </b>
+                            </bs>
+                        </hist>
+                    </val>
+                </dep>
+                <dep>
+                    <src>bodydecl</src>
+                    <trg>id</trg>
+                    <val>
+                        <hist>
+                            <budget>12</budget>
+                            <bs>
+                                <b>
+                                    <a>1</a>
+                                    <b>2</b>
+                                    <v>17641</v>
+                                </b>
+                                <b>
+                                    <a>2</a>
+                                    <b>3</b>
+                                    <v>157637</v>
+                                </b>
+                                <b>
+                                    <a>3</a>
+                                    <b>4</b>
+                                    <v>38128</v>
+                                </b>
+                                <b>
+                                    <a>4</a>
+                                    <b>5</b>
+                                    <v>33576</v>
+                                </b>
+                                <b>
+                                    <a>5</a>
+                                    <b>7</b>
+                                    <v>24470</v>
+                                </b>
+                                <b>
+                                    <a>7</a>
+                                    <b>10</b>
+                                    <v>29023</v>
+                                </b>
+                                <b>
+                                    <a>10</a>
+                                    <b>16</b>
+                                    <v>30730</v>
+                                </b>
+                                <b>
+                                    <a>16</a>
+                                    <b>34</b>
+                                    <v>27885</v>
+                                </b>
+                                <b>
+                                    <a>34</a>
+                                    <b>131</b>
+                                    <v>8536</v>
+                                </b>
+                            </bs>
+                        </hist>
+                    </val>
+                </dep>
+                <dep>
+                    <src>bodydecl</src>
+                    <trg>kind</trg>
+                    <val>
+                        <hist>
+                            <budget>12</budget>
+                            <bs>
+                                <b>
+                                    <a>1</a>
+                                    <b>2</b>
+                                    <v>17641</v>
+                                </b>
+                                <b>
+                                    <a>2</a>
+                                    <b>3</b>
+                                    <v>193489</v>
+                                </b>
+                                <b>
+                                    <a>3</a>
+                                    <b>4</b>
+                                    <v>77965</v>
+                                </b>
+                                <b>
+                                    <a>4</a>
+                                    <b>5</b>
+                                    <v>29592</v>
+                                </b>
+                                <b>
+                                    <a>5</a>
+                                    <b>7</b>
+                                    <v>33007</v>
+                                </b>
+                                <b>
+                                    <a>7</a>
+                                    <b>11</b>
+                                    <v>15934</v>
+                                </b>
+                            </bs>
+                        </hist>
+                    </val>
+                </dep>
+                <dep>
+                    <src>bodydecl</src>
+                    <trg>parent</trg>
+                    <val>
+                        <hist>
+                            <budget>12</budget>
+                            <bs>
+                                <b>
+                                    <a>1</a>
+                                    <b>2</b>
+                                    <v>17641</v>
+                                </b>
+                                <b>
+                                    <a>2</a>
+                                    <b>3</b>
+                                    <v>261780</v>
+                                </b>
+                                <b>
+                                    <a>4</a>
+                                    <b>5</b>
+                                    <v>33576</v>
+                                </b>
+                                <b>
+                                    <a>5</a>
+                                    <b>10</b>
+                                    <v>31299</v>
+                                </b>
+                                <b>
+                                    <a>10</a>
+                                    <b>88</b>
+                                    <v>23332</v>
                                 </b>
                             </bs>
                         </hist>
@@ -16666,22 +17062,37 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>544535</v>
+                                    <v>175279</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>92571</v>
+                                    <v>63737</v>
                                 </b>
                                 <b>
                                     <a>3</a>
+                                    <b>4</b>
+                                    <v>27885</v>
+                                </b>
+                                <b>
+                                    <a>4</a>
+                                    <b>5</b>
+                                    <v>18210</v>
+                                </b>
+                                <b>
+                                    <a>5</a>
                                     <b>7</b>
-                                    <v>54453</v>
+                                    <v>30161</v>
                                 </b>
                                 <b>
                                     <a>7</a>
-                                    <b>159</b>
-                                    <v>12252</v>
+                                    <b>11</b>
+                                    <v>29592</v>
+                                </b>
+                                <b>
+                                    <a>11</a>
+                                    <b>28</b>
+                                    <v>22763</v>
                                 </b>
                             </bs>
                         </hist>
@@ -16691,11 +17102,11 @@
         </relation>
         <relation>
             <name>exprs</name>
-            <cardinality>7411134</cardinality>
+            <cardinality>7410663</cardinality>
             <columnsizes>
                 <e>
                     <k>id</k>
-                    <v>7411134</v>
+                    <v>7410663</v>
                 </e>
                 <e>
                     <k>kind</k>
@@ -16703,11 +17114,11 @@
                 </e>
                 <e>
                     <k>typeid</k>
-                    <v>115983</v>
+                    <v>115976</v>
                 </e>
                 <e>
                     <k>parent</k>
-                    <v>5075960</v>
+                    <v>5075638</v>
                 </e>
                 <e>
                     <k>idx</k>
@@ -16725,7 +17136,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>7411134</v>
+                                    <v>7410663</v>
                                 </b>
                             </bs>
                         </hist>
@@ -16741,7 +17152,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>7411134</v>
+                                    <v>7410663</v>
                                 </b>
                             </bs>
                         </hist>
@@ -16757,7 +17168,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>7411134</v>
+                                    <v>7410663</v>
                                 </b>
                             </bs>
                         </hist>
@@ -16773,7 +17184,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>7411134</v>
+                                    <v>7410663</v>
                                 </b>
                             </bs>
                         </hist>
@@ -17028,7 +17439,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>48884</v>
+                                    <v>48881</v>
                                 </b>
                                 <b>
                                     <a>2</a>
@@ -17038,7 +17449,7 @@
                                 <b>
                                     <a>3</a>
                                     <b>6</b>
-                                    <v>10698</v>
+                                    <v>10697</v>
                                 </b>
                                 <b>
                                     <a>6</a>
@@ -17048,12 +17459,12 @@
                                 <b>
                                     <a>10</a>
                                     <b>17</b>
-                                    <v>9272</v>
+                                    <v>9271</v>
                                 </b>
                                 <b>
                                     <a>17</a>
                                     <b>32</b>
-                                    <v>8723</v>
+                                    <v>8722</v>
                                 </b>
                                 <b>
                                     <a>32</a>
@@ -17079,32 +17490,32 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>57854</v>
+                                    <v>57851</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>18544</v>
+                                    <v>18543</v>
                                 </b>
                                 <b>
                                     <a>3</a>
                                     <b>4</b>
-                                    <v>8915</v>
+                                    <v>8914</v>
                                 </b>
                                 <b>
                                     <a>4</a>
                                     <b>5</b>
-                                    <v>14456</v>
+                                    <v>14455</v>
                                 </b>
                                 <b>
                                     <a>5</a>
                                     <b>6</b>
-                                    <v>9738</v>
+                                    <v>9737</v>
                                 </b>
                                 <b>
                                     <a>6</a>
                                     <b>32</b>
-                                    <v>6474</v>
+                                    <v>6473</v>
                                 </b>
                             </bs>
                         </hist>
@@ -17120,12 +17531,12 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>49048</v>
+                                    <v>49045</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>13414</v>
+                                    <v>13413</v>
                                 </b>
                                 <b>
                                     <a>3</a>
@@ -17135,7 +17546,7 @@
                                 <b>
                                     <a>5</a>
                                     <b>8</b>
-                                    <v>8531</v>
+                                    <v>8530</v>
                                 </b>
                                 <b>
                                     <a>8</a>
@@ -17155,7 +17566,7 @@
                                 <b>
                                     <a>57</a>
                                     <b>851</b>
-                                    <v>8723</v>
+                                    <v>8722</v>
                                 </b>
                                 <b>
                                     <a>890</a>
@@ -17176,22 +17587,22 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>58677</v>
+                                    <v>58673</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>18379</v>
+                                    <v>18378</v>
                                 </b>
                                 <b>
                                     <a>3</a>
                                     <b>4</b>
-                                    <v>14731</v>
+                                    <v>14730</v>
                                 </b>
                                 <b>
                                     <a>4</a>
                                     <b>5</b>
-                                    <v>19120</v>
+                                    <v>19119</v>
                                 </b>
                                 <b>
                                     <a>5</a>
@@ -17212,17 +17623,17 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>3222415</v>
+                                    <v>3222211</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>1522711</v>
+                                    <v>1522614</v>
                                 </b>
                                 <b>
                                     <a>3</a>
                                     <b>48</b>
-                                    <v>330833</v>
+                                    <v>330812</v>
                                 </b>
                             </bs>
                         </hist>
@@ -17238,17 +17649,17 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>3525515</v>
+                                    <v>3525291</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>1385549</v>
+                                    <v>1385461</v>
                                 </b>
                                 <b>
                                     <a>3</a>
                                     <b>8</b>
-                                    <v>164895</v>
+                                    <v>164884</v>
                                 </b>
                             </bs>
                         </hist>
@@ -17264,17 +17675,17 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>4085819</v>
+                                    <v>4085559</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>832130</v>
+                                    <v>832078</v>
                                 </b>
                                 <b>
                                     <a>3</a>
                                     <b>10</b>
-                                    <v>158009</v>
+                                    <v>157999</v>
                                 </b>
                             </bs>
                         </hist>
@@ -17290,17 +17701,17 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>3222415</v>
+                                    <v>3222211</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>1522711</v>
+                                    <v>1522614</v>
                                 </b>
                                 <b>
                                     <a>3</a>
                                     <b>48</b>
-                                    <v>330833</v>
+                                    <v>330812</v>
                                 </b>
                             </bs>
                         </hist>
@@ -17554,15 +17965,15 @@
         </relation>
         <relation>
             <name>exprsKotlinType</name>
-            <cardinality>7411134</cardinality>
+            <cardinality>7410663</cardinality>
             <columnsizes>
                 <e>
                     <k>id</k>
-                    <v>7411134</v>
+                    <v>7410663</v>
                 </e>
                 <e>
                     <k>kttypeid</k>
-                    <v>12363</v>
+                    <v>10930</v>
                 </e>
             </columnsizes>
             <dependencies>
@@ -17576,7 +17987,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>7411134</v>
+                                    <v>7410663</v>
                                 </b>
                             </bs>
                         </hist>
@@ -17592,17 +18003,17 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>9272</v>
+                                    <v>8197</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>2060</v>
+                                    <v>1821</v>
                                 </b>
                                 <b>
-                                    <a>7180</a>
-                                    <b>7181</b>
-                                    <v>1030</v>
+                                    <a>8123</a>
+                                    <b>8124</b>
+                                    <v>910</v>
                                 </b>
                             </bs>
                         </hist>
@@ -17612,15 +18023,15 @@
         </relation>
         <relation>
             <name>callableEnclosingExpr</name>
-            <cardinality>7299509</cardinality>
+            <cardinality>7299071</cardinality>
             <columnsizes>
                 <e>
                     <k>id</k>
-                    <v>7299509</v>
+                    <v>7299071</v>
                 </e>
                 <e>
                     <k>callable_id</k>
-                    <v>19878</v>
+                    <v>19877</v>
                 </e>
             </columnsizes>
             <dependencies>
@@ -17634,7 +18045,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>7299509</v>
+                                    <v>7299071</v>
                                 </b>
                             </bs>
                         </hist>
@@ -17705,7 +18116,7 @@
                                 <b>
                                     <a>73</a>
                                     <b>177</b>
-                                    <v>1496</v>
+                                    <v>1495</v>
                                 </b>
                                 <b>
                                     <a>179</a>
@@ -17725,15 +18136,15 @@
         </relation>
         <relation>
             <name>statementEnclosingExpr</name>
-            <cardinality>7259150</cardinality>
+            <cardinality>7258714</cardinality>
             <columnsizes>
                 <e>
                     <k>id</k>
-                    <v>7259150</v>
+                    <v>7258714</v>
                 </e>
                 <e>
                     <k>statement_id</k>
-                    <v>525810</v>
+                    <v>525778</v>
                 </e>
             </columnsizes>
             <dependencies>
@@ -17747,7 +18158,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>7259150</v>
+                                    <v>7258714</v>
                                 </b>
                             </bs>
                         </hist>
@@ -17763,57 +18174,57 @@
                                 <b>
                                     <a>1</a>
                                     <b>3</b>
-                                    <v>29127</v>
+                                    <v>29126</v>
                                 </b>
                                 <b>
                                     <a>3</a>
                                     <b>5</b>
-                                    <v>47080</v>
+                                    <v>47077</v>
                                 </b>
                                 <b>
                                     <a>5</a>
                                     <b>7</b>
-                                    <v>48477</v>
+                                    <v>48474</v>
                                 </b>
                                 <b>
                                     <a>7</a>
                                     <b>8</b>
-                                    <v>36044</v>
+                                    <v>36042</v>
                                 </b>
                                 <b>
                                     <a>8</a>
                                     <b>9</b>
-                                    <v>38147</v>
+                                    <v>38145</v>
                                 </b>
                                 <b>
                                     <a>9</a>
                                     <b>10</b>
-                                    <v>50450</v>
+                                    <v>50447</v>
                                 </b>
                                 <b>
                                     <a>10</a>
                                     <b>11</b>
-                                    <v>29214</v>
+                                    <v>29212</v>
                                 </b>
                                 <b>
                                     <a>11</a>
                                     <b>12</b>
-                                    <v>127057</v>
+                                    <v>127049</v>
                                 </b>
                                 <b>
                                     <a>12</a>
                                     <b>35</b>
-                                    <v>35324</v>
+                                    <v>35322</v>
                                 </b>
                                 <b>
                                     <a>35</a>
                                     <b>40</b>
-                                    <v>44626</v>
+                                    <v>44623</v>
                                 </b>
                                 <b>
                                     <a>40</a>
                                     <b>81</b>
-                                    <v>40224</v>
+                                    <v>40222</v>
                                 </b>
                                 <b>
                                     <a>82</a>
@@ -17828,11 +18239,11 @@
         </relation>
         <relation>
             <name>isParenthesized</name>
-            <cardinality>94658</cardinality>
+            <cardinality>94652</cardinality>
             <columnsizes>
                 <e>
                     <k>id</k>
-                    <v>94658</v>
+                    <v>94652</v>
                 </e>
                 <e>
                     <k>parentheses</k>
@@ -17850,7 +18261,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>94658</v>
+                                    <v>94652</v>
                                 </b>
                             </bs>
                         </hist>
@@ -17881,37 +18292,37 @@
         </relation>
         <relation>
             <name>when_if</name>
-            <cardinality>83383</cardinality>
+            <cardinality>74334</cardinality>
             <columnsizes>
                 <e>
                     <k>id</k>
-                    <v>83383</v>
+                    <v>74334</v>
                 </e>
             </columnsizes>
             <dependencies/>
         </relation>
         <relation>
             <name>when_branch_else</name>
-            <cardinality>79912</cardinality>
+            <cardinality>76075</cardinality>
             <columnsizes>
                 <e>
                     <k>id</k>
-                    <v>79912</v>
+                    <v>76075</v>
                 </e>
             </columnsizes>
             <dependencies/>
         </relation>
         <relation>
             <name>callableBinding</name>
-            <cardinality>1832402</cardinality>
+            <cardinality>1832520</cardinality>
             <columnsizes>
                 <e>
                     <k>callerid</k>
-                    <v>1832402</v>
+                    <v>1832520</v>
                 </e>
                 <e>
                     <k>callee</k>
-                    <v>263395</v>
+                    <v>264311</v>
                 </e>
             </columnsizes>
             <dependencies>
@@ -17925,7 +18336,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>1832402</v>
+                                    <v>1832520</v>
                                 </b>
                             </bs>
                         </hist>
@@ -17941,32 +18352,32 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>162234</v>
+                                    <v>162993</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>33023</v>
+                                    <v>33137</v>
                                 </b>
                                 <b>
                                     <a>3</a>
                                     <b>4</b>
-                                    <v>16214</v>
+                                    <v>16271</v>
                                 </b>
                                 <b>
                                     <a>4</a>
                                     <b>7</b>
-                                    <v>22259</v>
+                                    <v>22271</v>
                                 </b>
                                 <b>
                                     <a>7</a>
                                     <b>20</b>
-                                    <v>19911</v>
+                                    <v>19902</v>
                                 </b>
                                 <b>
                                     <a>20</a>
                                     <b>46115</b>
-                                    <v>9751</v>
+                                    <v>9734</v>
                                 </b>
                             </bs>
                         </hist>
@@ -17976,15 +18387,15 @@
         </relation>
         <relation>
             <name>memberRefBinding</name>
-            <cardinality>23206</cardinality>
+            <cardinality>23208</cardinality>
             <columnsizes>
                 <e>
                     <k>id</k>
-                    <v>23206</v>
+                    <v>23208</v>
                 </e>
                 <e>
                     <k>callable</k>
-                    <v>11196</v>
+                    <v>11197</v>
                 </e>
             </columnsizes>
             <dependencies>
@@ -17998,7 +18409,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>23206</v>
+                                    <v>23208</v>
                                 </b>
                             </bs>
                         </hist>
@@ -18014,12 +18425,12 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>7861</v>
+                                    <v>7862</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>2074</v>
+                                    <v>2075</v>
                                 </b>
                                 <b>
                                     <a>3</a>
@@ -18039,15 +18450,15 @@
         </relation>
         <relation>
             <name>propertyRefGetBinding</name>
-            <cardinality>9639</cardinality>
+            <cardinality>8876</cardinality>
             <columnsizes>
                 <e>
                     <k>id</k>
-                    <v>9639</v>
+                    <v>8876</v>
                 </e>
                 <e>
                     <k>getter</k>
-                    <v>5826</v>
+                    <v>5366</v>
                 </e>
             </columnsizes>
             <dependencies>
@@ -18061,7 +18472,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>9639</v>
+                                    <v>8876</v>
                                 </b>
                             </bs>
                         </hist>
@@ -18077,17 +18488,17 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>2117</v>
+                                    <v>1951</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>3615</v>
+                                    <v>3328</v>
                                 </b>
                                 <b>
                                     <a>3</a>
                                     <b>6</b>
-                                    <v>94</v>
+                                    <v>86</v>
                                 </b>
                             </bs>
                         </hist>
@@ -18145,15 +18556,15 @@
         </relation>
         <relation>
             <name>propertyRefSetBinding</name>
-            <cardinality>2671</cardinality>
+            <cardinality>2600</cardinality>
             <columnsizes>
                 <e>
                     <k>id</k>
-                    <v>2671</v>
+                    <v>2600</v>
                 </e>
                 <e>
                     <k>setter</k>
-                    <v>1335</v>
+                    <v>1300</v>
                 </e>
             </columnsizes>
             <dependencies>
@@ -18167,7 +18578,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>2671</v>
+                                    <v>2600</v>
                                 </b>
                             </bs>
                         </hist>
@@ -18183,7 +18594,7 @@
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>1335</v>
+                                    <v>1300</v>
                                 </b>
                             </bs>
                         </hist>
@@ -18193,15 +18604,15 @@
         </relation>
         <relation>
             <name>variableBinding</name>
-            <cardinality>2434432</cardinality>
+            <cardinality>2434277</cardinality>
             <columnsizes>
                 <e>
                     <k>expr</k>
-                    <v>2434432</v>
+                    <v>2434277</v>
                 </e>
                 <e>
                     <k>variable</k>
-                    <v>572564</v>
+                    <v>572528</v>
                 </e>
             </columnsizes>
             <dependencies>
@@ -18215,7 +18626,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>2434432</v>
+                                    <v>2434277</v>
                                 </b>
                             </bs>
                         </hist>
@@ -18231,37 +18642,37 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>205804</v>
+                                    <v>205791</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>120953</v>
+                                    <v>120945</v>
                                 </b>
                                 <b>
                                     <a>3</a>
                                     <b>4</b>
-                                    <v>85027</v>
+                                    <v>85022</v>
                                 </b>
                                 <b>
                                     <a>4</a>
                                     <b>5</b>
-                                    <v>45970</v>
+                                    <v>45967</v>
                                 </b>
                                 <b>
                                     <a>5</a>
                                     <b>7</b>
-                                    <v>40061</v>
+                                    <v>40059</v>
                                 </b>
                                 <b>
                                     <a>7</a>
                                     <b>14</b>
-                                    <v>43075</v>
+                                    <v>43072</v>
                                 </b>
                                 <b>
                                     <a>14</a>
                                     <b>464</b>
-                                    <v>31671</v>
+                                    <v>31669</v>
                                 </b>
                             </bs>
                         </hist>
@@ -18271,23 +18682,23 @@
         </relation>
         <relation>
             <name>localvars</name>
-            <cardinality>385297</cardinality>
+            <cardinality>385272</cardinality>
             <columnsizes>
                 <e>
                     <k>id</k>
-                    <v>385297</v>
+                    <v>385272</v>
                 </e>
                 <e>
                     <k>nodeName</k>
-                    <v>140004</v>
+                    <v>139995</v>
                 </e>
                 <e>
                     <k>typeid</k>
-                    <v>49513</v>
+                    <v>49510</v>
                 </e>
                 <e>
                     <k>parentid</k>
-                    <v>385297</v>
+                    <v>385272</v>
                 </e>
             </columnsizes>
             <dependencies>
@@ -18301,7 +18712,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>385297</v>
+                                    <v>385272</v>
                                 </b>
                             </bs>
                         </hist>
@@ -18317,7 +18728,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>385297</v>
+                                    <v>385272</v>
                                 </b>
                             </bs>
                         </hist>
@@ -18333,7 +18744,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>385297</v>
+                                    <v>385272</v>
                                 </b>
                             </bs>
                         </hist>
@@ -18349,22 +18760,22 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>83661</v>
+                                    <v>83655</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>26179</v>
+                                    <v>26178</v>
                                 </b>
                                 <b>
                                     <a>3</a>
                                     <b>5</b>
-                                    <v>10244</v>
+                                    <v>10243</v>
                                 </b>
                                 <b>
                                     <a>5</a>
                                     <b>9</b>
-                                    <v>11951</v>
+                                    <v>11950</v>
                                 </b>
                                 <b>
                                     <a>9</a>
@@ -18385,7 +18796,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>124638</v>
+                                    <v>124630</v>
                                 </b>
                                 <b>
                                     <a>2</a>
@@ -18411,22 +18822,22 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>83661</v>
+                                    <v>83655</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>26179</v>
+                                    <v>26178</v>
                                 </b>
                                 <b>
                                     <a>3</a>
                                     <b>5</b>
-                                    <v>10244</v>
+                                    <v>10243</v>
                                 </b>
                                 <b>
                                     <a>5</a>
                                     <b>9</b>
-                                    <v>11951</v>
+                                    <v>11950</v>
                                 </b>
                                 <b>
                                     <a>9</a>
@@ -18447,7 +18858,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>16504</v>
+                                    <v>16503</v>
                                 </b>
                                 <b>
                                     <a>2</a>
@@ -18462,7 +18873,7 @@
                                 <b>
                                     <a>5</a>
                                     <b>6</b>
-                                    <v>5122</v>
+                                    <v>5121</v>
                                 </b>
                                 <b>
                                     <a>6</a>
@@ -18503,7 +18914,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>23334</v>
+                                    <v>23332</v>
                                 </b>
                                 <b>
                                     <a>2</a>
@@ -18513,7 +18924,7 @@
                                 <b>
                                     <a>3</a>
                                     <b>4</b>
-                                    <v>6260</v>
+                                    <v>6259</v>
                                 </b>
                                 <b>
                                     <a>4</a>
@@ -18544,7 +18955,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>16504</v>
+                                    <v>16503</v>
                                 </b>
                                 <b>
                                     <a>2</a>
@@ -18559,7 +18970,7 @@
                                 <b>
                                     <a>5</a>
                                     <b>6</b>
-                                    <v>5122</v>
+                                    <v>5121</v>
                                 </b>
                                 <b>
                                     <a>6</a>
@@ -18600,7 +19011,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>385297</v>
+                                    <v>385272</v>
                                 </b>
                             </bs>
                         </hist>
@@ -18616,7 +19027,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>385297</v>
+                                    <v>385272</v>
                                 </b>
                             </bs>
                         </hist>
@@ -18632,7 +19043,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>385297</v>
+                                    <v>385272</v>
                                 </b>
                             </bs>
                         </hist>
@@ -18642,15 +19053,15 @@
         </relation>
         <relation>
             <name>localvarsKotlinType</name>
-            <cardinality>227691</cardinality>
+            <cardinality>240107</cardinality>
             <columnsizes>
                 <e>
                     <k>id</k>
-                    <v>227691</v>
+                    <v>240107</v>
                 </e>
                 <e>
                     <k>kttypeid</k>
-                    <v>154</v>
+                    <v>1920</v>
                 </e>
             </columnsizes>
             <dependencies>
@@ -18664,7 +19075,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>227691</v>
+                                    <v>240107</v>
                                 </b>
                             </bs>
                         </hist>
@@ -18678,9 +19089,9 @@
                             <budget>12</budget>
                             <bs>
                                 <b>
-                                    <a>1470</a>
-                                    <b>1471</b>
-                                    <v>154</v>
+                                    <a>125</a>
+                                    <b>126</b>
+                                    <v>1920</v>
                                 </b>
                             </bs>
                         </hist>
@@ -18690,19 +19101,19 @@
         </relation>
         <relation>
             <name>namestrings</name>
-            <cardinality>4022677</cardinality>
+            <cardinality>4022436</cardinality>
             <columnsizes>
                 <e>
                     <k>name</k>
-                    <v>23386</v>
+                    <v>23384</v>
                 </e>
                 <e>
                     <k>value</k>
-                    <v>22167</v>
+                    <v>22166</v>
                 </e>
                 <e>
                     <k>parent</k>
-                    <v>4022677</v>
+                    <v>4022436</v>
                 </e>
             </columnsizes>
             <dependencies>
@@ -18716,7 +19127,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>23386</v>
+                                    <v>23384</v>
                                 </b>
                             </bs>
                         </hist>
@@ -18732,7 +19143,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>9605</v>
+                                    <v>9604</v>
                                 </b>
                                 <b>
                                     <a>2</a>
@@ -18783,7 +19194,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>21560</v>
+                                    <v>21559</v>
                                 </b>
                                 <b>
                                     <a>2</a>
@@ -18804,7 +19215,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>9119</v>
+                                    <v>9118</v>
                                 </b>
                                 <b>
                                     <a>2</a>
@@ -18855,7 +19266,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>4022677</v>
+                                    <v>4022436</v>
                                 </b>
                             </bs>
                         </hist>
@@ -18871,7 +19282,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>4022677</v>
+                                    <v>4022436</v>
                                 </b>
                             </bs>
                         </hist>
@@ -18881,15 +19292,15 @@
         </relation>
         <relation>
             <name>modules</name>
-            <cardinality>7964</cardinality>
+            <cardinality>7965</cardinality>
             <columnsizes>
                 <e>
                     <k>id</k>
-                    <v>7964</v>
+                    <v>7965</v>
                 </e>
                 <e>
                     <k>name</k>
-                    <v>7964</v>
+                    <v>7965</v>
                 </e>
             </columnsizes>
             <dependencies>
@@ -18903,7 +19314,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>7964</v>
+                                    <v>7965</v>
                                 </b>
                             </bs>
                         </hist>
@@ -18919,7 +19330,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>7964</v>
+                                    <v>7965</v>
                                 </b>
                             </bs>
                         </hist>
@@ -18940,11 +19351,11 @@
         </relation>
         <relation>
             <name>cumodule</name>
-            <cardinality>247568</cardinality>
+            <cardinality>247580</cardinality>
             <columnsizes>
                 <e>
                     <k>fileId</k>
-                    <v>247568</v>
+                    <v>247580</v>
                 </e>
                 <e>
                     <k>moduleId</k>
@@ -18962,7 +19373,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>247568</v>
+                                    <v>247580</v>
                                 </b>
                             </bs>
                         </hist>
@@ -19013,7 +19424,7 @@
         </relation>
         <relation>
             <name>directives</name>
-            <cardinality>50277</cardinality>
+            <cardinality>50279</cardinality>
             <columnsizes>
                 <e>
                     <k>id</k>
@@ -19021,7 +19432,7 @@
                 </e>
                 <e>
                     <k>directive</k>
-                    <v>50277</v>
+                    <v>50279</v>
                 </e>
             </columnsizes>
             <dependencies>
@@ -19081,7 +19492,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>50277</v>
+                                    <v>50279</v>
                                 </b>
                             </bs>
                         </hist>
@@ -19171,15 +19582,15 @@
         </relation>
         <relation>
             <name>exports</name>
-            <cardinality>35011</cardinality>
+            <cardinality>35013</cardinality>
             <columnsizes>
                 <e>
                     <k>id</k>
-                    <v>35011</v>
+                    <v>35013</v>
                 </e>
                 <e>
                     <k>target</k>
-                    <v>35011</v>
+                    <v>35013</v>
                 </e>
             </columnsizes>
             <dependencies>
@@ -19193,7 +19604,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>35011</v>
+                                    <v>35013</v>
                                 </b>
                             </bs>
                         </hist>
@@ -19209,7 +19620,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>35011</v>
+                                    <v>35013</v>
                                 </b>
                             </bs>
                         </hist>
@@ -19219,15 +19630,15 @@
         </relation>
         <relation>
             <name>exportsTo</name>
-            <cardinality>28706</cardinality>
+            <cardinality>28707</cardinality>
             <columnsizes>
                 <e>
                     <k>id</k>
-                    <v>12278</v>
+                    <v>12279</v>
                 </e>
                 <e>
                     <k>target</k>
-                    <v>7466</v>
+                    <v>7467</v>
                 </e>
             </columnsizes>
             <dependencies>
@@ -19241,7 +19652,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>7300</v>
+                                    <v>7301</v>
                                 </b>
                                 <b>
                                     <a>2</a>
@@ -19423,15 +19834,15 @@
         </relation>
         <relation>
             <name>uses</name>
-            <cardinality>10785</cardinality>
+            <cardinality>10786</cardinality>
             <columnsizes>
                 <e>
                     <k>id</k>
-                    <v>10785</v>
+                    <v>10786</v>
                 </e>
                 <e>
                     <k>serviceInterface</k>
-                    <v>10785</v>
+                    <v>10786</v>
                 </e>
             </columnsizes>
             <dependencies>
@@ -19445,7 +19856,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>10785</v>
+                                    <v>10786</v>
                                 </b>
                             </bs>
                         </hist>
@@ -19461,7 +19872,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>10785</v>
+                                    <v>10786</v>
                                 </b>
                             </bs>
                         </hist>
@@ -19519,7 +19930,7 @@
         </relation>
         <relation>
             <name>providesWith</name>
-            <cardinality>5309</cardinality>
+            <cardinality>5310</cardinality>
             <columnsizes>
                 <e>
                     <k>id</k>
@@ -19527,7 +19938,7 @@
                 </e>
                 <e>
                     <k>serviceImpl</k>
-                    <v>5309</v>
+                    <v>5310</v>
                 </e>
             </columnsizes>
             <dependencies>
@@ -19572,7 +19983,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>5309</v>
+                                    <v>5310</v>
                                 </b>
                             </bs>
                         </hist>
@@ -19582,48 +19993,48 @@
         </relation>
         <relation>
             <name>javadoc</name>
-            <cardinality>985153</cardinality>
+            <cardinality>985091</cardinality>
             <columnsizes>
                 <e>
                     <k>id</k>
-                    <v>985153</v>
+                    <v>985091</v>
                 </e>
             </columnsizes>
             <dependencies/>
         </relation>
         <relation>
             <name>isNormalComment</name>
-            <cardinality>649939</cardinality>
+            <cardinality>649898</cardinality>
             <columnsizes>
                 <e>
                     <k>commentid</k>
-                    <v>649939</v>
+                    <v>649898</v>
                 </e>
             </columnsizes>
             <dependencies/>
         </relation>
         <relation>
             <name>isEolComment</name>
-            <cardinality>610101</cardinality>
+            <cardinality>610062</cardinality>
             <columnsizes>
                 <e>
                     <k>commentid</k>
-                    <v>610101</v>
+                    <v>610062</v>
                 </e>
             </columnsizes>
             <dependencies/>
         </relation>
         <relation>
             <name>hasJavadoc</name>
-            <cardinality>435379</cardinality>
+            <cardinality>435352</cardinality>
             <columnsizes>
                 <e>
                     <k>documentableid</k>
-                    <v>368223</v>
+                    <v>368199</v>
                 </e>
                 <e>
                     <k>javadocid</k>
-                    <v>435379</v>
+                    <v>435352</v>
                 </e>
             </columnsizes>
             <dependencies>
@@ -19637,12 +20048,12 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>320416</v>
+                                    <v>320396</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>44960</v>
+                                    <v>44957</v>
                                 </b>
                                 <b>
                                     <a>3</a>
@@ -19663,7 +20074,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>435379</v>
+                                    <v>435352</v>
                                 </b>
                             </bs>
                         </hist>
@@ -19673,19 +20084,19 @@
         </relation>
         <relation>
             <name>javadocTag</name>
-            <cardinality>335830</cardinality>
+            <cardinality>335808</cardinality>
             <columnsizes>
                 <e>
                     <k>id</k>
-                    <v>335830</v>
+                    <v>335808</v>
                 </e>
                 <e>
                     <k>name</k>
-                    <v>578</v>
+                    <v>577</v>
                 </e>
                 <e>
                     <k>parentid</k>
-                    <v>114117</v>
+                    <v>114110</v>
                 </e>
                 <e>
                     <k>idx</k>
@@ -19703,7 +20114,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>335830</v>
+                                    <v>335808</v>
                                 </b>
                             </bs>
                         </hist>
@@ -19719,7 +20130,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>335830</v>
+                                    <v>335808</v>
                                 </b>
                             </bs>
                         </hist>
@@ -19735,7 +20146,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>335830</v>
+                                    <v>335808</v>
                                 </b>
                             </bs>
                         </hist>
@@ -19884,37 +20295,37 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>33194</v>
+                                    <v>33192</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>24937</v>
+                                    <v>24935</v>
                                 </b>
                                 <b>
                                     <a>3</a>
                                     <b>4</b>
-                                    <v>18661</v>
+                                    <v>18660</v>
                                 </b>
                                 <b>
                                     <a>4</a>
                                     <b>5</b>
-                                    <v>13129</v>
+                                    <v>13128</v>
                                 </b>
                                 <b>
                                     <a>5</a>
                                     <b>6</b>
-                                    <v>9991</v>
+                                    <v>9990</v>
                                 </b>
                                 <b>
                                     <a>6</a>
                                     <b>7</b>
-                                    <v>7679</v>
+                                    <v>7678</v>
                                 </b>
                                 <b>
                                     <a>7</a>
                                     <b>11</b>
-                                    <v>6523</v>
+                                    <v>6522</v>
                                 </b>
                             </bs>
                         </hist>
@@ -19930,22 +20341,22 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>39966</v>
+                                    <v>39963</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>38644</v>
+                                    <v>38642</v>
                                 </b>
                                 <b>
                                     <a>3</a>
                                     <b>4</b>
-                                    <v>21139</v>
+                                    <v>21137</v>
                                 </b>
                                 <b>
                                     <a>4</a>
                                     <b>5</b>
-                                    <v>12221</v>
+                                    <v>12220</v>
                                 </b>
                                 <b>
                                     <a>5</a>
@@ -19966,37 +20377,37 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>33194</v>
+                                    <v>33192</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>24937</v>
+                                    <v>24935</v>
                                 </b>
                                 <b>
                                     <a>3</a>
                                     <b>4</b>
-                                    <v>18661</v>
+                                    <v>18660</v>
                                 </b>
                                 <b>
                                     <a>4</a>
                                     <b>5</b>
-                                    <v>13129</v>
+                                    <v>13128</v>
                                 </b>
                                 <b>
                                     <a>5</a>
                                     <b>6</b>
-                                    <v>9991</v>
+                                    <v>9990</v>
                                 </b>
                                 <b>
                                     <a>6</a>
                                     <b>7</b>
-                                    <v>7679</v>
+                                    <v>7678</v>
                                 </b>
                                 <b>
                                     <a>7</a>
                                     <b>11</b>
-                                    <v>6523</v>
+                                    <v>6522</v>
                                 </b>
                             </bs>
                         </hist>
@@ -20184,23 +20595,23 @@
         </relation>
         <relation>
             <name>javadocText</name>
-            <cardinality>2503007</cardinality>
+            <cardinality>2502848</cardinality>
             <columnsizes>
                 <e>
                     <k>id</k>
-                    <v>2503007</v>
+                    <v>2502848</v>
                 </e>
                 <e>
                     <k>text</k>
-                    <v>1370450</v>
+                    <v>1370363</v>
                 </e>
                 <e>
                     <k>parentid</k>
-                    <v>1169550</v>
+                    <v>1169475</v>
                 </e>
                 <e>
                     <k>idx</k>
-                    <v>42115</v>
+                    <v>42112</v>
                 </e>
             </columnsizes>
             <dependencies>
@@ -20214,7 +20625,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>2503007</v>
+                                    <v>2502848</v>
                                 </b>
                             </bs>
                         </hist>
@@ -20230,7 +20641,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>2503007</v>
+                                    <v>2502848</v>
                                 </b>
                             </bs>
                         </hist>
@@ -20246,7 +20657,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>2503007</v>
+                                    <v>2502848</v>
                                 </b>
                             </bs>
                         </hist>
@@ -20262,17 +20673,17 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>1139386</v>
+                                    <v>1139314</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>149679</v>
+                                    <v>149670</v>
                                 </b>
                                 <b>
                                     <a>3</a>
                                     <b>147</b>
-                                    <v>81384</v>
+                                    <v>81379</v>
                                 </b>
                             </bs>
                         </hist>
@@ -20288,17 +20699,17 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>1140524</v>
+                                    <v>1140452</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>149110</v>
+                                    <v>149101</v>
                                 </b>
                                 <b>
                                     <a>3</a>
                                     <b>88</b>
-                                    <v>80815</v>
+                                    <v>80810</v>
                                 </b>
                             </bs>
                         </hist>
@@ -20314,12 +20725,12 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>1346547</v>
+                                    <v>1346462</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>32</b>
-                                    <v>23903</v>
+                                    <v>23901</v>
                                 </b>
                             </bs>
                         </hist>
@@ -20335,22 +20746,22 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>870190</v>
+                                    <v>870135</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>159354</v>
+                                    <v>159344</v>
                                 </b>
                                 <b>
                                     <a>3</a>
                                     <b>12</b>
-                                    <v>83092</v>
+                                    <v>83086</v>
                                 </b>
                                 <b>
                                     <a>12</a>
                                     <b>75</b>
-                                    <v>56912</v>
+                                    <v>56908</v>
                                 </b>
                             </bs>
                         </hist>
@@ -20366,22 +20777,22 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>870190</v>
+                                    <v>870135</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>159354</v>
+                                    <v>159344</v>
                                 </b>
                                 <b>
                                     <a>3</a>
                                     <b>12</b>
-                                    <v>84230</v>
+                                    <v>84225</v>
                                 </b>
                                 <b>
                                     <a>12</a>
                                     <b>67</b>
-                                    <v>55774</v>
+                                    <v>55770</v>
                                 </b>
                             </bs>
                         </hist>
@@ -20397,22 +20808,22 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>870190</v>
+                                    <v>870135</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>159354</v>
+                                    <v>159344</v>
                                 </b>
                                 <b>
                                     <a>3</a>
                                     <b>12</b>
-                                    <v>83092</v>
+                                    <v>83086</v>
                                 </b>
                                 <b>
                                     <a>12</a>
                                     <b>75</b>
-                                    <v>56912</v>
+                                    <v>56908</v>
                                 </b>
                             </bs>
                         </hist>
@@ -20428,7 +20839,7 @@
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>21057</v>
+                                    <v>21056</v>
                                 </b>
                                 <b>
                                     <a>3</a>
@@ -20484,7 +20895,7 @@
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>20488</v>
+                                    <v>20487</v>
                                 </b>
                                 <b>
                                     <a>3</a>
@@ -20535,7 +20946,7 @@
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>21057</v>
+                                    <v>21056</v>
                                 </b>
                                 <b>
                                     <a>3</a>
@@ -20580,15 +20991,15 @@
         </relation>
         <relation>
             <name>xmlEncoding</name>
-            <cardinality>800467</cardinality>
+            <cardinality>1129463</cardinality>
             <columnsizes>
                 <e>
                     <k>id</k>
-                    <v>800467</v>
+                    <v>1129463</v>
                 </e>
                 <e>
                     <k>encoding</k>
-                    <v>1361</v>
+                    <v>1920</v>
                 </e>
             </columnsizes>
             <dependencies>
@@ -20602,7 +21013,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>800467</v>
+                                    <v>1129463</v>
                                 </b>
                             </bs>
                         </hist>
@@ -20618,7 +21029,7 @@
                                 <b>
                                     <a>588</a>
                                     <b>589</b>
-                                    <v>1361</v>
+                                    <v>1920</v>
                                 </b>
                             </bs>
                         </hist>
@@ -20976,27 +21387,27 @@
         </relation>
         <relation>
             <name>xmlElements</name>
-            <cardinality>106507143</cardinality>
+            <cardinality>150282022</cardinality>
             <columnsizes>
                 <e>
                     <k>id</k>
-                    <v>106507143</v>
+                    <v>150282022</v>
                 </e>
                 <e>
                     <k>name</k>
-                    <v>337612</v>
+                    <v>476372</v>
                 </e>
                 <e>
                     <k>parentid</k>
-                    <v>2747183</v>
+                    <v>3876287</v>
                 </e>
                 <e>
                     <k>idx</k>
-                    <v>1207508</v>
+                    <v>1703799</v>
                 </e>
                 <e>
                     <k>fileid</k>
-                    <v>800467</v>
+                    <v>1129463</v>
                 </e>
             </columnsizes>
             <dependencies>
@@ -21010,7 +21421,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>106507143</v>
+                                    <v>150282022</v>
                                 </b>
                             </bs>
                         </hist>
@@ -21026,7 +21437,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>106507143</v>
+                                    <v>150282022</v>
                                 </b>
                             </bs>
                         </hist>
@@ -21042,7 +21453,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>106507143</v>
+                                    <v>150282022</v>
                                 </b>
                             </bs>
                         </hist>
@@ -21058,7 +21469,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>106507143</v>
+                                    <v>150282022</v>
                                 </b>
                             </bs>
                         </hist>
@@ -21074,57 +21485,57 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>106184</v>
+                                    <v>149826</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>40840</v>
+                                    <v>57625</v>
                                 </b>
                                 <b>
                                     <a>3</a>
                                     <b>4</b>
-                                    <v>16336</v>
+                                    <v>23050</v>
                                 </b>
                                 <b>
                                     <a>4</a>
                                     <b>6</b>
-                                    <v>29949</v>
+                                    <v>42258</v>
                                 </b>
                                 <b>
                                     <a>6</a>
                                     <b>8</b>
-                                    <v>24504</v>
+                                    <v>34575</v>
                                 </b>
                                 <b>
                                     <a>8</a>
                                     <b>9</b>
-                                    <v>12252</v>
+                                    <v>17287</v>
                                 </b>
                                 <b>
                                     <a>9</a>
                                     <b>10</b>
-                                    <v>23142</v>
+                                    <v>32654</v>
                                 </b>
                                 <b>
                                     <a>10</a>
                                     <b>18</b>
-                                    <v>28588</v>
+                                    <v>40337</v>
                                 </b>
                                 <b>
                                     <a>18</a>
                                     <b>48</b>
-                                    <v>25865</v>
+                                    <v>36496</v>
                                 </b>
                                 <b>
                                     <a>52</a>
                                     <b>250</b>
-                                    <v>25865</v>
+                                    <v>36496</v>
                                 </b>
                                 <b>
                                     <a>342</a>
                                     <b>73380</b>
-                                    <v>4084</v>
+                                    <v>5762</v>
                                 </b>
                             </bs>
                         </hist>
@@ -21140,52 +21551,52 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>123881</v>
+                                    <v>174797</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>46285</v>
+                                    <v>65309</v>
                                 </b>
                                 <b>
                                     <a>3</a>
                                     <b>4</b>
-                                    <v>17697</v>
+                                    <v>24971</v>
                                 </b>
                                 <b>
                                     <a>4</a>
                                     <b>5</b>
-                                    <v>14974</v>
+                                    <v>21129</v>
                                 </b>
                                 <b>
                                     <a>5</a>
                                     <b>6</b>
-                                    <v>19058</v>
+                                    <v>26891</v>
                                 </b>
                                 <b>
                                     <a>6</a>
                                     <b>8</b>
-                                    <v>28588</v>
+                                    <v>40337</v>
                                 </b>
                                 <b>
                                     <a>8</a>
                                     <b>10</b>
-                                    <v>28588</v>
+                                    <v>40337</v>
                                 </b>
                                 <b>
                                     <a>10</a>
                                     <b>21</b>
-                                    <v>27226</v>
+                                    <v>38417</v>
                                 </b>
                                 <b>
                                     <a>22</a>
                                     <b>128</b>
-                                    <v>25865</v>
+                                    <v>36496</v>
                                 </b>
                                 <b>
                                     <a>130</a>
                                     <b>229</b>
-                                    <v>5445</v>
+                                    <v>7683</v>
                                 </b>
                             </bs>
                         </hist>
@@ -21201,37 +21612,37 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>186503</v>
+                                    <v>263157</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>49008</v>
+                                    <v>69150</v>
                                 </b>
                                 <b>
                                     <a>3</a>
                                     <b>4</b>
-                                    <v>24504</v>
+                                    <v>34575</v>
                                 </b>
                                 <b>
                                     <a>4</a>
                                     <b>6</b>
-                                    <v>20420</v>
+                                    <v>28812</v>
                                 </b>
                                 <b>
                                     <a>6</a>
                                     <b>9</b>
-                                    <v>20420</v>
+                                    <v>28812</v>
                                 </b>
                                 <b>
                                     <a>9</a>
                                     <b>38</b>
-                                    <v>25865</v>
+                                    <v>36496</v>
                                 </b>
                                 <b>
                                     <a>45</a>
                                     <b>888</b>
-                                    <v>10890</v>
+                                    <v>15366</v>
                                 </b>
                             </bs>
                         </hist>
@@ -21247,42 +21658,42 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>183780</v>
+                                    <v>259315</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>36756</v>
+                                    <v>51863</v>
                                 </b>
                                 <b>
                                     <a>3</a>
                                     <b>4</b>
-                                    <v>17697</v>
+                                    <v>24971</v>
                                 </b>
                                 <b>
                                     <a>4</a>
                                     <b>5</b>
-                                    <v>13613</v>
+                                    <v>19208</v>
                                 </b>
                                 <b>
                                     <a>5</a>
                                     <b>7</b>
-                                    <v>29949</v>
+                                    <v>42258</v>
                                 </b>
                                 <b>
                                     <a>7</a>
                                     <b>16</b>
-                                    <v>25865</v>
+                                    <v>36496</v>
                                 </b>
                                 <b>
                                     <a>17</a>
                                     <b>114</b>
-                                    <v>27226</v>
+                                    <v>38417</v>
                                 </b>
                                 <b>
                                     <a>118</a>
                                     <b>131</b>
-                                    <v>2722</v>
+                                    <v>3841</v>
                                 </b>
                             </bs>
                         </hist>
@@ -21298,32 +21709,32 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>1671725</v>
+                                    <v>2358811</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>428822</v>
+                                    <v>605069</v>
                                 </b>
                                 <b>
                                     <a>3</a>
                                     <b>4</b>
-                                    <v>178335</v>
+                                    <v>251632</v>
                                 </b>
                                 <b>
                                     <a>4</a>
                                     <b>8</b>
-                                    <v>213730</v>
+                                    <v>301574</v>
                                 </b>
                                 <b>
                                     <a>8</a>
                                     <b>777</b>
-                                    <v>224621</v>
+                                    <v>316941</v>
                                 </b>
                                 <b>
                                     <a>777</a>
                                     <b>888</b>
-                                    <v>29949</v>
+                                    <v>42258</v>
                                 </b>
                             </bs>
                         </hist>
@@ -21339,17 +21750,17 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>2267992</v>
+                                    <v>3200146</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>291326</v>
+                                    <v>411063</v>
                                 </b>
                                 <b>
                                     <a>3</a>
                                     <b>17</b>
-                                    <v>187864</v>
+                                    <v>265078</v>
                                 </b>
                             </bs>
                         </hist>
@@ -21365,32 +21776,32 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>1671725</v>
+                                    <v>2358811</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>428822</v>
+                                    <v>605069</v>
                                 </b>
                                 <b>
                                     <a>3</a>
                                     <b>4</b>
-                                    <v>178335</v>
+                                    <v>251632</v>
                                 </b>
                                 <b>
                                     <a>4</a>
                                     <b>8</b>
-                                    <v>213730</v>
+                                    <v>301574</v>
                                 </b>
                                 <b>
                                     <a>8</a>
                                     <b>777</b>
-                                    <v>224621</v>
+                                    <v>316941</v>
                                 </b>
                                 <b>
                                     <a>777</a>
                                     <b>888</b>
-                                    <v>29949</v>
+                                    <v>42258</v>
                                 </b>
                             </bs>
                         </hist>
@@ -21406,7 +21817,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>2747183</v>
+                                    <v>3876287</v>
                                 </b>
                             </bs>
                         </hist>
@@ -21422,67 +21833,67 @@
                                 <b>
                                     <a>2</a>
                                     <b>8</b>
-                                    <v>102100</v>
+                                    <v>144064</v>
                                 </b>
                                 <b>
                                     <a>9</a>
                                     <b>76</b>
-                                    <v>96655</v>
+                                    <v>136380</v>
                                 </b>
                                 <b>
                                     <a>76</a>
                                     <b>82</b>
-                                    <v>91209</v>
+                                    <v>128697</v>
                                 </b>
                                 <b>
                                     <a>82</a>
                                     <b>89</b>
-                                    <v>87125</v>
+                                    <v>122934</v>
                                 </b>
                                 <b>
                                     <a>89</a>
                                     <b>92</b>
-                                    <v>78957</v>
+                                    <v>111409</v>
                                 </b>
                                 <b>
                                     <a>92</a>
                                     <b>95</b>
-                                    <v>95293</v>
+                                    <v>134459</v>
                                 </b>
                                 <b>
                                     <a>95</a>
                                     <b>97</b>
-                                    <v>106184</v>
+                                    <v>149826</v>
                                 </b>
                                 <b>
                                     <a>97</a>
                                     <b>98</b>
-                                    <v>149747</v>
+                                    <v>211294</v>
                                 </b>
                                 <b>
                                     <a>98</a>
                                     <b>99</b>
-                                    <v>92571</v>
+                                    <v>130618</v>
                                 </b>
                                 <b>
                                     <a>99</a>
                                     <b>104</b>
-                                    <v>110268</v>
+                                    <v>155589</v>
                                 </b>
                                 <b>
                                     <a>104</a>
                                     <b>106</b>
-                                    <v>92571</v>
+                                    <v>130618</v>
                                 </b>
                                 <b>
                                     <a>106</a>
                                     <b>159</b>
-                                    <v>91209</v>
+                                    <v>128697</v>
                                 </b>
                                 <b>
                                     <a>162</a>
                                     <b>2019</b>
-                                    <v>13613</v>
+                                    <v>19208</v>
                                 </b>
                             </bs>
                         </hist>
@@ -21498,22 +21909,22 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>978803</v>
+                                    <v>1381095</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>5</b>
-                                    <v>89848</v>
+                                    <v>126776</v>
                                 </b>
                                 <b>
                                     <a>5</a>
                                     <b>9</b>
-                                    <v>103461</v>
+                                    <v>145985</v>
                                 </b>
                                 <b>
                                     <a>9</a>
                                     <b>150</b>
-                                    <v>35394</v>
+                                    <v>49942</v>
                                 </b>
                             </bs>
                         </hist>
@@ -21529,67 +21940,67 @@
                                 <b>
                                     <a>2</a>
                                     <b>8</b>
-                                    <v>102100</v>
+                                    <v>144064</v>
                                 </b>
                                 <b>
                                     <a>9</a>
                                     <b>76</b>
-                                    <v>96655</v>
+                                    <v>136380</v>
                                 </b>
                                 <b>
                                     <a>76</a>
                                     <b>82</b>
-                                    <v>91209</v>
+                                    <v>128697</v>
                                 </b>
                                 <b>
                                     <a>82</a>
                                     <b>89</b>
-                                    <v>87125</v>
+                                    <v>122934</v>
                                 </b>
                                 <b>
                                     <a>89</a>
                                     <b>92</b>
-                                    <v>78957</v>
+                                    <v>111409</v>
                                 </b>
                                 <b>
                                     <a>92</a>
                                     <b>95</b>
-                                    <v>95293</v>
+                                    <v>134459</v>
                                 </b>
                                 <b>
                                     <a>95</a>
                                     <b>97</b>
-                                    <v>106184</v>
+                                    <v>149826</v>
                                 </b>
                                 <b>
                                     <a>97</a>
                                     <b>98</b>
-                                    <v>149747</v>
+                                    <v>211294</v>
                                 </b>
                                 <b>
                                     <a>98</a>
                                     <b>99</b>
-                                    <v>92571</v>
+                                    <v>130618</v>
                                 </b>
                                 <b>
                                     <a>99</a>
                                     <b>104</b>
-                                    <v>110268</v>
+                                    <v>155589</v>
                                 </b>
                                 <b>
                                     <a>104</a>
                                     <b>106</b>
-                                    <v>92571</v>
+                                    <v>130618</v>
                                 </b>
                                 <b>
                                     <a>106</a>
                                     <b>159</b>
-                                    <v>91209</v>
+                                    <v>128697</v>
                                 </b>
                                 <b>
                                     <a>162</a>
                                     <b>2019</b>
-                                    <v>13613</v>
+                                    <v>19208</v>
                                 </b>
                             </bs>
                         </hist>
@@ -21605,67 +22016,67 @@
                                 <b>
                                     <a>2</a>
                                     <b>8</b>
-                                    <v>102100</v>
+                                    <v>144064</v>
                                 </b>
                                 <b>
                                     <a>9</a>
                                     <b>76</b>
-                                    <v>96655</v>
+                                    <v>136380</v>
                                 </b>
                                 <b>
                                     <a>76</a>
                                     <b>82</b>
-                                    <v>91209</v>
+                                    <v>128697</v>
                                 </b>
                                 <b>
                                     <a>82</a>
                                     <b>89</b>
-                                    <v>87125</v>
+                                    <v>122934</v>
                                 </b>
                                 <b>
                                     <a>89</a>
                                     <b>92</b>
-                                    <v>78957</v>
+                                    <v>111409</v>
                                 </b>
                                 <b>
                                     <a>92</a>
                                     <b>95</b>
-                                    <v>95293</v>
+                                    <v>134459</v>
                                 </b>
                                 <b>
                                     <a>95</a>
                                     <b>97</b>
-                                    <v>106184</v>
+                                    <v>149826</v>
                                 </b>
                                 <b>
                                     <a>97</a>
                                     <b>98</b>
-                                    <v>149747</v>
+                                    <v>211294</v>
                                 </b>
                                 <b>
                                     <a>98</a>
                                     <b>99</b>
-                                    <v>92571</v>
+                                    <v>130618</v>
                                 </b>
                                 <b>
                                     <a>99</a>
                                     <b>104</b>
-                                    <v>110268</v>
+                                    <v>155589</v>
                                 </b>
                                 <b>
                                     <a>104</a>
                                     <b>106</b>
-                                    <v>92571</v>
+                                    <v>130618</v>
                                 </b>
                                 <b>
                                     <a>106</a>
                                     <b>139</b>
-                                    <v>91209</v>
+                                    <v>128697</v>
                                 </b>
                                 <b>
                                     <a>141</a>
                                     <b>589</b>
-                                    <v>13613</v>
+                                    <v>19208</v>
                                 </b>
                             </bs>
                         </hist>
@@ -21681,57 +22092,57 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>58537</v>
+                                    <v>82596</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>134772</v>
+                                    <v>190164</v>
                                 </b>
                                 <b>
                                     <a>3</a>
                                     <b>4</b>
-                                    <v>176974</v>
+                                    <v>249711</v>
                                 </b>
                                 <b>
                                     <a>4</a>
                                     <b>5</b>
-                                    <v>74873</v>
+                                    <v>105647</v>
                                 </b>
                                 <b>
                                     <a>5</a>
                                     <b>7</b>
-                                    <v>59898</v>
+                                    <v>84517</v>
                                 </b>
                                 <b>
                                     <a>7</a>
                                     <b>10</b>
-                                    <v>66705</v>
+                                    <v>94121</v>
                                 </b>
                                 <b>
                                     <a>10</a>
                                     <b>31</b>
-                                    <v>62621</v>
+                                    <v>88359</v>
                                 </b>
                                 <b>
                                     <a>35</a>
                                     <b>694</b>
-                                    <v>61260</v>
+                                    <v>86438</v>
                                 </b>
                                 <b>
                                     <a>738</a>
                                     <b>776</b>
-                                    <v>20420</v>
+                                    <v>28812</v>
                                 </b>
                                 <b>
                                     <a>777</a>
                                     <b>779</b>
-                                    <v>65344</v>
+                                    <v>92201</v>
                                 </b>
                                 <b>
                                     <a>788</a>
                                     <b>889</b>
-                                    <v>19058</v>
+                                    <v>26891</v>
                                 </b>
                             </bs>
                         </hist>
@@ -21747,37 +22158,37 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>58537</v>
+                                    <v>82596</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>398872</v>
+                                    <v>562810</v>
                                 </b>
                                 <b>
                                     <a>3</a>
                                     <b>4</b>
-                                    <v>138856</v>
+                                    <v>195927</v>
                                 </b>
                                 <b>
                                     <a>4</a>
                                     <b>5</b>
-                                    <v>65344</v>
+                                    <v>92201</v>
                                 </b>
                                 <b>
                                     <a>5</a>
                                     <b>6</b>
-                                    <v>61260</v>
+                                    <v>86438</v>
                                 </b>
                                 <b>
                                     <a>6</a>
                                     <b>9</b>
-                                    <v>65344</v>
+                                    <v>92201</v>
                                 </b>
                                 <b>
                                     <a>9</a>
                                     <b>69</b>
-                                    <v>12252</v>
+                                    <v>17287</v>
                                 </b>
                             </bs>
                         </hist>
@@ -21793,27 +22204,27 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>58537</v>
+                                    <v>82596</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>567678</v>
+                                    <v>800997</v>
                                 </b>
                                 <b>
                                     <a>3</a>
                                     <b>4</b>
-                                    <v>57176</v>
+                                    <v>80675</v>
                                 </b>
                                 <b>
                                     <a>4</a>
                                     <b>6</b>
-                                    <v>58537</v>
+                                    <v>82596</v>
                                 </b>
                                 <b>
                                     <a>6</a>
                                     <b>165</b>
-                                    <v>58537</v>
+                                    <v>82596</v>
                                 </b>
                             </bs>
                         </hist>
@@ -21829,42 +22240,42 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>202839</v>
+                                    <v>286207</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>219175</v>
+                                    <v>309257</v>
                                 </b>
                                 <b>
                                     <a>3</a>
                                     <b>4</b>
-                                    <v>88487</v>
+                                    <v>124855</v>
                                 </b>
                                 <b>
                                     <a>4</a>
                                     <b>7</b>
-                                    <v>66705</v>
+                                    <v>94121</v>
                                 </b>
                                 <b>
                                     <a>7</a>
                                     <b>17</b>
-                                    <v>66705</v>
+                                    <v>94121</v>
                                 </b>
                                 <b>
                                     <a>18</a>
                                     <b>763</b>
-                                    <v>61260</v>
+                                    <v>86438</v>
                                 </b>
                                 <b>
                                     <a>764</a>
                                     <b>777</b>
-                                    <v>65344</v>
+                                    <v>92201</v>
                                 </b>
                                 <b>
                                     <a>777</a>
                                     <b>888</b>
-                                    <v>29949</v>
+                                    <v>42258</v>
                                 </b>
                             </bs>
                         </hist>
@@ -21874,31 +22285,31 @@
         </relation>
         <relation>
             <name>xmlAttrs</name>
-            <cardinality>129551904</cardinality>
+            <cardinality>182798274</cardinality>
             <columnsizes>
                 <e>
                     <k>id</k>
-                    <v>129551904</v>
+                    <v>182798274</v>
                 </e>
                 <e>
                     <k>elementid</k>
-                    <v>105600491</v>
+                    <v>149002731</v>
                 </e>
                 <e>
                     <k>name</k>
-                    <v>511863</v>
+                    <v>722241</v>
                 </e>
                 <e>
                     <k>value</k>
-                    <v>8184375</v>
+                    <v>11548187</v>
                 </e>
                 <e>
                     <k>idx</k>
-                    <v>31310</v>
+                    <v>44179</v>
                 </e>
                 <e>
                     <k>fileid</k>
-                    <v>799106</v>
+                    <v>1127542</v>
                 </e>
             </columnsizes>
             <dependencies>
@@ -21912,7 +22323,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>129551904</v>
+                                    <v>182798274</v>
                                 </b>
                             </bs>
                         </hist>
@@ -21928,7 +22339,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>129551904</v>
+                                    <v>182798274</v>
                                 </b>
                             </bs>
                         </hist>
@@ -21944,7 +22355,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>129551904</v>
+                                    <v>182798274</v>
                                 </b>
                             </bs>
                         </hist>
@@ -21960,7 +22371,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>129551904</v>
+                                    <v>182798274</v>
                                 </b>
                             </bs>
                         </hist>
@@ -21976,7 +22387,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>129551904</v>
+                                    <v>182798274</v>
                                 </b>
                             </bs>
                         </hist>
@@ -21992,17 +22403,17 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>96634707</v>
+                                    <v>136351973</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>6</b>
-                                    <v>7940695</v>
+                                    <v>11204353</v>
                                 </b>
                                 <b>
                                     <a>6</a>
                                     <b>24</b>
-                                    <v>1025088</v>
+                                    <v>1446404</v>
                                 </b>
                             </bs>
                         </hist>
@@ -22018,17 +22429,17 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>96634707</v>
+                                    <v>136351973</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>6</b>
-                                    <v>7954308</v>
+                                    <v>11223562</v>
                                 </b>
                                 <b>
                                     <a>6</a>
                                     <b>23</b>
-                                    <v>1011475</v>
+                                    <v>1427196</v>
                                 </b>
                             </bs>
                         </hist>
@@ -22044,17 +22455,17 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>96687799</v>
+                                    <v>136426886</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>6</b>
-                                    <v>7993787</v>
+                                    <v>11279267</v>
                                 </b>
                                 <b>
                                     <a>6</a>
                                     <b>21</b>
-                                    <v>918904</v>
+                                    <v>1296577</v>
                                 </b>
                             </bs>
                         </hist>
@@ -22070,17 +22481,17 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>96634707</v>
+                                    <v>136351973</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>6</b>
-                                    <v>7940695</v>
+                                    <v>11204353</v>
                                 </b>
                                 <b>
                                     <a>6</a>
                                     <b>24</b>
-                                    <v>1025088</v>
+                                    <v>1446404</v>
                                 </b>
                             </bs>
                         </hist>
@@ -22096,7 +22507,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>105600491</v>
+                                    <v>149002731</v>
                                 </b>
                             </bs>
                         </hist>
@@ -22112,62 +22523,62 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>106184</v>
+                                    <v>149826</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>55814</v>
+                                    <v>78755</v>
                                 </b>
                                 <b>
                                     <a>3</a>
                                     <b>4</b>
-                                    <v>31310</v>
+                                    <v>44179</v>
                                 </b>
                                 <b>
                                     <a>4</a>
                                     <b>5</b>
-                                    <v>17697</v>
+                                    <v>24971</v>
                                 </b>
                                 <b>
                                     <a>5</a>
                                     <b>6</b>
-                                    <v>29949</v>
+                                    <v>42258</v>
                                 </b>
                                 <b>
                                     <a>6</a>
                                     <b>8</b>
-                                    <v>36756</v>
+                                    <v>51863</v>
                                 </b>
                                 <b>
                                     <a>8</a>
                                     <b>11</b>
-                                    <v>42201</v>
+                                    <v>59546</v>
                                 </b>
                                 <b>
                                     <a>11</a>
                                     <b>22</b>
-                                    <v>39478</v>
+                                    <v>55704</v>
                                 </b>
                                 <b>
                                     <a>23</a>
                                     <b>38</b>
-                                    <v>40840</v>
+                                    <v>57625</v>
                                 </b>
                                 <b>
                                     <a>38</a>
                                     <b>79</b>
-                                    <v>40840</v>
+                                    <v>57625</v>
                                 </b>
                                 <b>
                                     <a>81</a>
                                     <b>168</b>
-                                    <v>39478</v>
+                                    <v>55704</v>
                                 </b>
                                 <b>
                                     <a>168</a>
                                     <b>74700</b>
-                                    <v>31310</v>
+                                    <v>44179</v>
                                 </b>
                             </bs>
                         </hist>
@@ -22183,62 +22594,62 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>106184</v>
+                                    <v>149826</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>55814</v>
+                                    <v>78755</v>
                                 </b>
                                 <b>
                                     <a>3</a>
                                     <b>4</b>
-                                    <v>31310</v>
+                                    <v>44179</v>
                                 </b>
                                 <b>
                                     <a>4</a>
                                     <b>5</b>
-                                    <v>17697</v>
+                                    <v>24971</v>
                                 </b>
                                 <b>
                                     <a>5</a>
                                     <b>6</b>
-                                    <v>29949</v>
+                                    <v>42258</v>
                                 </b>
                                 <b>
                                     <a>6</a>
                                     <b>8</b>
-                                    <v>36756</v>
+                                    <v>51863</v>
                                 </b>
                                 <b>
                                     <a>8</a>
                                     <b>11</b>
-                                    <v>46285</v>
+                                    <v>65309</v>
                                 </b>
                                 <b>
                                     <a>11</a>
                                     <b>25</b>
-                                    <v>43562</v>
+                                    <v>61467</v>
                                 </b>
                                 <b>
                                     <a>25</a>
                                     <b>39</b>
-                                    <v>42201</v>
+                                    <v>59546</v>
                                 </b>
                                 <b>
                                     <a>43</a>
                                     <b>91</b>
-                                    <v>40840</v>
+                                    <v>57625</v>
                                 </b>
                                 <b>
                                     <a>91</a>
                                     <b>227</b>
-                                    <v>39478</v>
+                                    <v>55704</v>
                                 </b>
                                 <b>
                                     <a>227</a>
                                     <b>74700</b>
-                                    <v>21781</v>
+                                    <v>30733</v>
                                 </b>
                             </bs>
                         </hist>
@@ -22254,42 +22665,42 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>215091</v>
+                                    <v>303495</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>80319</v>
+                                    <v>113330</v>
                                 </b>
                                 <b>
                                     <a>3</a>
                                     <b>4</b>
-                                    <v>34033</v>
+                                    <v>48021</v>
                                 </b>
                                 <b>
                                     <a>4</a>
                                     <b>5</b>
-                                    <v>36756</v>
+                                    <v>51863</v>
                                 </b>
                                 <b>
                                     <a>5</a>
                                     <b>9</b>
-                                    <v>42201</v>
+                                    <v>59546</v>
                                 </b>
                                 <b>
                                     <a>9</a>
                                     <b>21</b>
-                                    <v>39478</v>
+                                    <v>55704</v>
                                 </b>
                                 <b>
                                     <a>22</a>
                                     <b>64</b>
-                                    <v>42201</v>
+                                    <v>59546</v>
                                 </b>
                                 <b>
                                     <a>68</a>
                                     <b>2100</b>
-                                    <v>21781</v>
+                                    <v>30733</v>
                                 </b>
                             </bs>
                         </hist>
@@ -22305,37 +22716,37 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>201478</v>
+                                    <v>284286</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>95293</v>
+                                    <v>134459</v>
                                 </b>
                                 <b>
                                     <a>3</a>
                                     <b>4</b>
-                                    <v>49008</v>
+                                    <v>69150</v>
                                 </b>
                                 <b>
                                     <a>4</a>
                                     <b>5</b>
-                                    <v>54453</v>
+                                    <v>76834</v>
                                 </b>
                                 <b>
                                     <a>5</a>
                                     <b>7</b>
-                                    <v>32672</v>
+                                    <v>46100</v>
                                 </b>
                                 <b>
                                     <a>7</a>
                                     <b>10</b>
-                                    <v>40840</v>
+                                    <v>57625</v>
                                 </b>
                                 <b>
                                     <a>10</a>
                                     <b>21</b>
-                                    <v>38117</v>
+                                    <v>53783</v>
                                 </b>
                             </bs>
                         </hist>
@@ -22351,52 +22762,52 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>178335</v>
+                                    <v>251632</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>53092</v>
+                                    <v>74913</v>
                                 </b>
                                 <b>
                                     <a>3</a>
                                     <b>4</b>
-                                    <v>27226</v>
+                                    <v>38417</v>
                                 </b>
                                 <b>
                                     <a>4</a>
                                     <b>5</b>
-                                    <v>24504</v>
+                                    <v>34575</v>
                                 </b>
                                 <b>
                                     <a>5</a>
                                     <b>6</b>
-                                    <v>38117</v>
+                                    <v>53783</v>
                                 </b>
                                 <b>
                                     <a>6</a>
                                     <b>9</b>
-                                    <v>42201</v>
+                                    <v>59546</v>
                                 </b>
                                 <b>
                                     <a>9</a>
                                     <b>17</b>
-                                    <v>44924</v>
+                                    <v>63388</v>
                                 </b>
                                 <b>
                                     <a>17</a>
                                     <b>34</b>
-                                    <v>39478</v>
+                                    <v>55704</v>
                                 </b>
                                 <b>
                                     <a>36</a>
                                     <b>91</b>
-                                    <v>39478</v>
+                                    <v>55704</v>
                                 </b>
                                 <b>
                                     <a>91</a>
                                     <b>223</b>
-                                    <v>24504</v>
+                                    <v>34575</v>
                                 </b>
                             </bs>
                         </hist>
@@ -22412,37 +22823,37 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>4470639</v>
+                                    <v>6308091</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>1210231</v>
+                                    <v>1707641</v>
                                 </b>
                                 <b>
                                     <a>3</a>
                                     <b>5</b>
-                                    <v>627577</v>
+                                    <v>885514</v>
                                 </b>
                                 <b>
                                     <a>5</a>
                                     <b>31</b>
-                                    <v>616686</v>
+                                    <v>870147</v>
                                 </b>
                                 <b>
                                     <a>31</a>
                                     <b>91</b>
-                                    <v>643913</v>
+                                    <v>908564</v>
                                 </b>
                                 <b>
                                     <a>91</a>
                                     <b>1111</b>
-                                    <v>613964</v>
+                                    <v>866306</v>
                                 </b>
                                 <b>
                                     <a>3397</a>
                                     <b>3398</b>
-                                    <v>1361</v>
+                                    <v>1920</v>
                                 </b>
                             </bs>
                         </hist>
@@ -22458,32 +22869,32 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>4560488</v>
+                                    <v>6434868</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>1153054</v>
+                                    <v>1626965</v>
                                 </b>
                                 <b>
                                     <a>3</a>
                                     <b>5</b>
-                                    <v>635745</v>
+                                    <v>897039</v>
                                 </b>
                                 <b>
                                     <a>5</a>
                                     <b>33</b>
-                                    <v>645275</v>
+                                    <v>910485</v>
                                 </b>
                                 <b>
                                     <a>33</a>
                                     <b>93</b>
-                                    <v>631661</v>
+                                    <v>891277</v>
                                 </b>
                                 <b>
                                     <a>93</a>
                                     <b>3398</b>
-                                    <v>558149</v>
+                                    <v>787551</v>
                                 </b>
                             </bs>
                         </hist>
@@ -22499,17 +22910,17 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>7427470</v>
+                                    <v>10480191</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>4</b>
-                                    <v>658888</v>
+                                    <v>929694</v>
                                 </b>
                                 <b>
                                     <a>4</a>
                                     <b>53</b>
-                                    <v>98016</v>
+                                    <v>138301</v>
                                 </b>
                             </bs>
                         </hist>
@@ -22525,17 +22936,17 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>6778110</v>
+                                    <v>9563942</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>989694</v>
+                                    <v>1396462</v>
                                 </b>
                                 <b>
                                     <a>3</a>
                                     <b>20</b>
-                                    <v>416569</v>
+                                    <v>587781</v>
                                 </b>
                             </bs>
                         </hist>
@@ -22551,32 +22962,32 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>5268385</v>
+                                    <v>7433713</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>887593</v>
+                                    <v>1252398</v>
                                 </b>
                                 <b>
                                     <a>3</a>
                                     <b>10</b>
-                                    <v>635745</v>
+                                    <v>897039</v>
                                 </b>
                                 <b>
                                     <a>10</a>
                                     <b>83</b>
-                                    <v>622132</v>
+                                    <v>877831</v>
                                 </b>
                                 <b>
                                     <a>83</a>
                                     <b>99</b>
-                                    <v>624854</v>
+                                    <v>881672</v>
                                 </b>
                                 <b>
                                     <a>99</a>
                                     <b>182</b>
-                                    <v>145663</v>
+                                    <v>205531</v>
                                 </b>
                             </bs>
                         </hist>
@@ -22592,62 +23003,62 @@
                                 <b>
                                     <a>1</a>
                                     <b>6</b>
-                                    <v>2722</v>
+                                    <v>3841</v>
                                 </b>
                                 <b>
                                     <a>12</a>
                                     <b>14</b>
-                                    <v>2722</v>
+                                    <v>3841</v>
                                 </b>
                                 <b>
                                     <a>17</a>
                                     <b>26</b>
-                                    <v>2722</v>
+                                    <v>3841</v>
                                 </b>
                                 <b>
                                     <a>39</a>
                                     <b>56</b>
-                                    <v>2722</v>
+                                    <v>3841</v>
                                 </b>
                                 <b>
                                     <a>83</a>
                                     <b>110</b>
-                                    <v>2722</v>
+                                    <v>3841</v>
                                 </b>
                                 <b>
                                     <a>153</a>
                                     <b>232</b>
-                                    <v>2722</v>
+                                    <v>3841</v>
                                 </b>
                                 <b>
                                     <a>316</a>
                                     <b>400</b>
-                                    <v>2722</v>
+                                    <v>3841</v>
                                 </b>
                                 <b>
                                     <a>468</a>
                                     <b>545</b>
-                                    <v>2722</v>
+                                    <v>3841</v>
                                 </b>
                                 <b>
                                     <a>626</a>
                                     <b>754</b>
-                                    <v>2722</v>
+                                    <v>3841</v>
                                 </b>
                                 <b>
                                     <a>951</a>
                                     <b>1491</b>
-                                    <v>2722</v>
+                                    <v>3841</v>
                                 </b>
                                 <b>
                                     <a>4718</a>
                                     <b>6587</b>
-                                    <v>2722</v>
+                                    <v>3841</v>
                                 </b>
                                 <b>
                                     <a>77571</a>
                                     <b>77572</b>
-                                    <v>1361</v>
+                                    <v>1920</v>
                                 </b>
                             </bs>
                         </hist>
@@ -22663,62 +23074,62 @@
                                 <b>
                                     <a>1</a>
                                     <b>6</b>
-                                    <v>2722</v>
+                                    <v>3841</v>
                                 </b>
                                 <b>
                                     <a>12</a>
                                     <b>14</b>
-                                    <v>2722</v>
+                                    <v>3841</v>
                                 </b>
                                 <b>
                                     <a>17</a>
                                     <b>26</b>
-                                    <v>2722</v>
+                                    <v>3841</v>
                                 </b>
                                 <b>
                                     <a>39</a>
                                     <b>56</b>
-                                    <v>2722</v>
+                                    <v>3841</v>
                                 </b>
                                 <b>
                                     <a>83</a>
                                     <b>110</b>
-                                    <v>2722</v>
+                                    <v>3841</v>
                                 </b>
                                 <b>
                                     <a>153</a>
                                     <b>232</b>
-                                    <v>2722</v>
+                                    <v>3841</v>
                                 </b>
                                 <b>
                                     <a>316</a>
                                     <b>400</b>
-                                    <v>2722</v>
+                                    <v>3841</v>
                                 </b>
                                 <b>
                                     <a>468</a>
                                     <b>545</b>
-                                    <v>2722</v>
+                                    <v>3841</v>
                                 </b>
                                 <b>
                                     <a>626</a>
                                     <b>754</b>
-                                    <v>2722</v>
+                                    <v>3841</v>
                                 </b>
                                 <b>
                                     <a>951</a>
                                     <b>1491</b>
-                                    <v>2722</v>
+                                    <v>3841</v>
                                 </b>
                                 <b>
                                     <a>4718</a>
                                     <b>6587</b>
-                                    <v>2722</v>
+                                    <v>3841</v>
                                 </b>
                                 <b>
                                     <a>77571</a>
                                     <b>77572</b>
-                                    <v>1361</v>
+                                    <v>1920</v>
                                 </b>
                             </bs>
                         </hist>
@@ -22734,62 +23145,62 @@
                                 <b>
                                     <a>1</a>
                                     <b>4</b>
-                                    <v>2722</v>
+                                    <v>3841</v>
                                 </b>
                                 <b>
                                     <a>7</a>
                                     <b>10</b>
-                                    <v>2722</v>
+                                    <v>3841</v>
                                 </b>
                                 <b>
                                     <a>11</a>
                                     <b>17</b>
-                                    <v>2722</v>
+                                    <v>3841</v>
                                 </b>
                                 <b>
                                     <a>18</a>
                                     <b>23</b>
-                                    <v>2722</v>
+                                    <v>3841</v>
                                 </b>
                                 <b>
                                     <a>26</a>
                                     <b>38</b>
-                                    <v>2722</v>
+                                    <v>3841</v>
                                 </b>
                                 <b>
                                     <a>39</a>
                                     <b>49</b>
-                                    <v>2722</v>
+                                    <v>3841</v>
                                 </b>
                                 <b>
                                     <a>57</a>
                                     <b>67</b>
-                                    <v>2722</v>
+                                    <v>3841</v>
                                 </b>
                                 <b>
                                     <a>72</a>
                                     <b>79</b>
-                                    <v>2722</v>
+                                    <v>3841</v>
                                 </b>
                                 <b>
                                     <a>95</a>
                                     <b>101</b>
-                                    <v>2722</v>
+                                    <v>3841</v>
                                 </b>
                                 <b>
                                     <a>105</a>
                                     <b>106</b>
-                                    <v>2722</v>
+                                    <v>3841</v>
                                 </b>
                                 <b>
                                     <a>106</a>
                                     <b>132</b>
-                                    <v>2722</v>
+                                    <v>3841</v>
                                 </b>
                                 <b>
                                     <a>140</a>
                                     <b>141</b>
-                                    <v>1361</v>
+                                    <v>1920</v>
                                 </b>
                             </bs>
                         </hist>
@@ -22805,62 +23216,62 @@
                                 <b>
                                     <a>1</a>
                                     <b>5</b>
-                                    <v>2722</v>
+                                    <v>3841</v>
                                 </b>
                                 <b>
                                     <a>7</a>
                                     <b>10</b>
-                                    <v>2722</v>
+                                    <v>3841</v>
                                 </b>
                                 <b>
                                     <a>11</a>
                                     <b>18</b>
-                                    <v>2722</v>
+                                    <v>3841</v>
                                 </b>
                                 <b>
                                     <a>22</a>
                                     <b>32</b>
-                                    <v>2722</v>
+                                    <v>3841</v>
                                 </b>
                                 <b>
                                     <a>46</a>
                                     <b>63</b>
-                                    <v>2722</v>
+                                    <v>3841</v>
                                 </b>
                                 <b>
                                     <a>85</a>
                                     <b>119</b>
-                                    <v>2722</v>
+                                    <v>3841</v>
                                 </b>
                                 <b>
                                     <a>142</a>
                                     <b>185</b>
-                                    <v>2722</v>
+                                    <v>3841</v>
                                 </b>
                                 <b>
                                     <a>212</a>
                                     <b>228</b>
-                                    <v>2722</v>
+                                    <v>3841</v>
                                 </b>
                                 <b>
                                     <a>253</a>
                                     <b>275</b>
-                                    <v>2722</v>
+                                    <v>3841</v>
                                 </b>
                                 <b>
                                     <a>307</a>
                                     <b>423</b>
-                                    <v>2722</v>
+                                    <v>3841</v>
                                 </b>
                                 <b>
                                     <a>580</a>
                                     <b>1324</b>
-                                    <v>2722</v>
+                                    <v>3841</v>
                                 </b>
                                 <b>
                                     <a>3579</a>
                                     <b>3580</b>
-                                    <v>1361</v>
+                                    <v>1920</v>
                                 </b>
                             </bs>
                         </hist>
@@ -22876,62 +23287,62 @@
                                 <b>
                                     <a>1</a>
                                     <b>6</b>
-                                    <v>2722</v>
+                                    <v>3841</v>
                                 </b>
                                 <b>
                                     <a>7</a>
                                     <b>8</b>
-                                    <v>2722</v>
+                                    <v>3841</v>
                                 </b>
                                 <b>
                                     <a>10</a>
                                     <b>19</b>
-                                    <v>2722</v>
+                                    <v>3841</v>
                                 </b>
                                 <b>
                                     <a>23</a>
                                     <b>36</b>
-                                    <v>2722</v>
+                                    <v>3841</v>
                                 </b>
                                 <b>
                                     <a>45</a>
                                     <b>59</b>
-                                    <v>2722</v>
+                                    <v>3841</v>
                                 </b>
                                 <b>
                                     <a>73</a>
                                     <b>97</b>
-                                    <v>2722</v>
+                                    <v>3841</v>
                                 </b>
                                 <b>
                                     <a>115</a>
                                     <b>131</b>
-                                    <v>2722</v>
+                                    <v>3841</v>
                                 </b>
                                 <b>
                                     <a>140</a>
                                     <b>148</b>
-                                    <v>2722</v>
+                                    <v>3841</v>
                                 </b>
                                 <b>
                                     <a>168</a>
                                     <b>181</b>
-                                    <v>2722</v>
+                                    <v>3841</v>
                                 </b>
                                 <b>
                                     <a>248</a>
                                     <b>363</b>
-                                    <v>2722</v>
+                                    <v>3841</v>
                                 </b>
                                 <b>
                                     <a>473</a>
                                     <b>530</b>
-                                    <v>2722</v>
+                                    <v>3841</v>
                                 </b>
                                 <b>
                                     <a>587</a>
                                     <b>588</b>
-                                    <v>1361</v>
+                                    <v>1920</v>
                                 </b>
                             </bs>
                         </hist>
@@ -22947,72 +23358,72 @@
                                 <b>
                                     <a>1</a>
                                     <b>3</b>
-                                    <v>59898</v>
+                                    <v>84517</v>
                                 </b>
                                 <b>
                                     <a>3</a>
                                     <b>5</b>
-                                    <v>61260</v>
+                                    <v>86438</v>
                                 </b>
                                 <b>
                                     <a>5</a>
                                     <b>6</b>
-                                    <v>36756</v>
+                                    <v>51863</v>
                                 </b>
                                 <b>
                                     <a>6</a>
                                     <b>7</b>
-                                    <v>61260</v>
+                                    <v>86438</v>
                                 </b>
                                 <b>
                                     <a>7</a>
                                     <b>8</b>
-                                    <v>51730</v>
+                                    <v>72992</v>
                                 </b>
                                 <b>
                                     <a>8</a>
                                     <b>10</b>
-                                    <v>58537</v>
+                                    <v>82596</v>
                                 </b>
                                 <b>
                                     <a>10</a>
                                     <b>15</b>
-                                    <v>65344</v>
+                                    <v>92201</v>
                                 </b>
                                 <b>
                                     <a>15</a>
                                     <b>27</b>
-                                    <v>61260</v>
+                                    <v>86438</v>
                                 </b>
                                 <b>
                                     <a>27</a>
                                     <b>41</b>
-                                    <v>61260</v>
+                                    <v>86438</v>
                                 </b>
                                 <b>
                                     <a>41</a>
                                     <b>65</b>
-                                    <v>61260</v>
+                                    <v>86438</v>
                                 </b>
                                 <b>
                                     <a>65</a>
                                     <b>157</b>
-                                    <v>65344</v>
+                                    <v>92201</v>
                                 </b>
                                 <b>
                                     <a>162</a>
                                     <b>817</b>
-                                    <v>61260</v>
+                                    <v>86438</v>
                                 </b>
                                 <b>
                                     <a>818</a>
                                     <b>832</b>
-                                    <v>66705</v>
+                                    <v>94121</v>
                                 </b>
                                 <b>
                                     <a>832</a>
                                     <b>1187</b>
-                                    <v>27226</v>
+                                    <v>38417</v>
                                 </b>
                             </bs>
                         </hist>
@@ -23028,52 +23439,52 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>91209</v>
+                                    <v>128697</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>187864</v>
+                                    <v>265078</v>
                                 </b>
                                 <b>
                                     <a>3</a>
                                     <b>4</b>
-                                    <v>112991</v>
+                                    <v>159431</v>
                                 </b>
                                 <b>
                                     <a>4</a>
                                     <b>5</b>
-                                    <v>77596</v>
+                                    <v>109488</v>
                                 </b>
                                 <b>
                                     <a>5</a>
                                     <b>8</b>
-                                    <v>72151</v>
+                                    <v>101805</v>
                                 </b>
                                 <b>
                                     <a>8</a>
                                     <b>14</b>
-                                    <v>61260</v>
+                                    <v>86438</v>
                                 </b>
                                 <b>
                                     <a>14</a>
                                     <b>295</b>
-                                    <v>61260</v>
+                                    <v>86438</v>
                                 </b>
                                 <b>
                                     <a>330</a>
                                     <b>775</b>
-                                    <v>50369</v>
+                                    <v>71071</v>
                                 </b>
                                 <b>
                                     <a>776</a>
                                     <b>778</b>
-                                    <v>65344</v>
+                                    <v>92201</v>
                                 </b>
                                 <b>
                                     <a>787</a>
                                     <b>888</b>
-                                    <v>19058</v>
+                                    <v>26891</v>
                                 </b>
                             </bs>
                         </hist>
@@ -23089,62 +23500,62 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>50369</v>
+                                    <v>71071</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>65344</v>
+                                    <v>92201</v>
                                 </b>
                                 <b>
                                     <a>3</a>
                                     <b>4</b>
-                                    <v>50369</v>
+                                    <v>71071</v>
                                 </b>
                                 <b>
                                     <a>4</a>
                                     <b>5</b>
-                                    <v>66705</v>
+                                    <v>94121</v>
                                 </b>
                                 <b>
                                     <a>5</a>
                                     <b>6</b>
-                                    <v>121159</v>
+                                    <v>170956</v>
                                 </b>
                                 <b>
                                     <a>6</a>
                                     <b>7</b>
-                                    <v>114352</v>
+                                    <v>161351</v>
                                 </b>
                                 <b>
                                     <a>7</a>
                                     <b>8</b>
-                                    <v>50369</v>
+                                    <v>71071</v>
                                 </b>
                                 <b>
                                     <a>8</a>
                                     <b>12</b>
-                                    <v>61260</v>
+                                    <v>86438</v>
                                 </b>
                                 <b>
                                     <a>12</a>
                                     <b>18</b>
-                                    <v>69428</v>
+                                    <v>97963</v>
                                 </b>
                                 <b>
                                     <a>18</a>
                                     <b>24</b>
-                                    <v>68066</v>
+                                    <v>96042</v>
                                 </b>
                                 <b>
                                     <a>24</a>
                                     <b>37</b>
-                                    <v>62621</v>
+                                    <v>88359</v>
                                 </b>
                                 <b>
                                     <a>37</a>
                                     <b>55</b>
-                                    <v>19058</v>
+                                    <v>26891</v>
                                 </b>
                             </bs>
                         </hist>
@@ -23160,67 +23571,67 @@
                                 <b>
                                     <a>1</a>
                                     <b>3</b>
-                                    <v>69428</v>
+                                    <v>97963</v>
                                 </b>
                                 <b>
                                     <a>3</a>
                                     <b>4</b>
-                                    <v>39478</v>
+                                    <v>55704</v>
                                 </b>
                                 <b>
                                     <a>4</a>
                                     <b>5</b>
-                                    <v>73512</v>
+                                    <v>103726</v>
                                 </b>
                                 <b>
                                     <a>5</a>
                                     <b>6</b>
-                                    <v>88487</v>
+                                    <v>124855</v>
                                 </b>
                                 <b>
                                     <a>6</a>
                                     <b>8</b>
-                                    <v>62621</v>
+                                    <v>88359</v>
                                 </b>
                                 <b>
                                     <a>8</a>
                                     <b>12</b>
-                                    <v>70789</v>
+                                    <v>99884</v>
                                 </b>
                                 <b>
                                     <a>12</a>
                                     <b>19</b>
-                                    <v>61260</v>
+                                    <v>86438</v>
                                 </b>
                                 <b>
                                     <a>19</a>
                                     <b>27</b>
-                                    <v>69428</v>
+                                    <v>97963</v>
                                 </b>
                                 <b>
                                     <a>27</a>
                                     <b>41</b>
-                                    <v>61260</v>
+                                    <v>86438</v>
                                 </b>
                                 <b>
                                     <a>42</a>
                                     <b>170</b>
-                                    <v>61260</v>
+                                    <v>86438</v>
                                 </b>
                                 <b>
                                     <a>205</a>
                                     <b>780</b>
-                                    <v>57176</v>
+                                    <v>80675</v>
                                 </b>
                                 <b>
                                     <a>781</a>
                                     <b>783</b>
-                                    <v>65344</v>
+                                    <v>92201</v>
                                 </b>
                                 <b>
                                     <a>791</a>
                                     <b>893</b>
-                                    <v>19058</v>
+                                    <v>26891</v>
                                 </b>
                             </bs>
                         </hist>
@@ -23236,47 +23647,47 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>78957</v>
+                                    <v>111409</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>76235</v>
+                                    <v>107567</v>
                                 </b>
                                 <b>
                                     <a>3</a>
                                     <b>4</b>
-                                    <v>151108</v>
+                                    <v>213215</v>
                                 </b>
                                 <b>
                                     <a>4</a>
                                     <b>5</b>
-                                    <v>155192</v>
+                                    <v>218977</v>
                                 </b>
                                 <b>
                                     <a>5</a>
                                     <b>6</b>
-                                    <v>92571</v>
+                                    <v>130618</v>
                                 </b>
                                 <b>
                                     <a>6</a>
                                     <b>10</b>
-                                    <v>68066</v>
+                                    <v>96042</v>
                                 </b>
                                 <b>
                                     <a>10</a>
                                     <b>12</b>
-                                    <v>46285</v>
+                                    <v>65309</v>
                                 </b>
                                 <b>
                                     <a>12</a>
                                     <b>15</b>
-                                    <v>69428</v>
+                                    <v>97963</v>
                                 </b>
                                 <b>
                                     <a>15</a>
                                     <b>24</b>
-                                    <v>61260</v>
+                                    <v>86438</v>
                                 </b>
                             </bs>
                         </hist>
@@ -23286,23 +23697,23 @@
         </relation>
         <relation>
             <name>xmlNs</name>
-            <cardinality>1283743</cardinality>
+            <cardinality>1811367</cardinality>
             <columnsizes>
                 <e>
                     <k>id</k>
-                    <v>8168</v>
+                    <v>11525</v>
                 </e>
                 <e>
                     <k>prefixName</k>
-                    <v>9529</v>
+                    <v>13445</v>
                 </e>
                 <e>
                     <k>URI</k>
-                    <v>8168</v>
+                    <v>11525</v>
                 </e>
                 <e>
                     <k>fileid</k>
-                    <v>747375</v>
+                    <v>1054550</v>
                 </e>
             </columnsizes>
             <dependencies>
@@ -23316,12 +23727,12 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>6806</v>
+                                    <v>9604</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>1361</v>
+                                    <v>1920</v>
                                 </b>
                             </bs>
                         </hist>
@@ -23337,7 +23748,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>8168</v>
+                                    <v>11525</v>
                                 </b>
                             </bs>
                         </hist>
@@ -23353,32 +23764,32 @@
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>1361</v>
+                                    <v>1920</v>
                                 </b>
                                 <b>
                                     <a>20</a>
                                     <b>21</b>
-                                    <v>1361</v>
+                                    <v>1920</v>
                                 </b>
                                 <b>
                                     <a>88</a>
                                     <b>89</b>
-                                    <v>1361</v>
+                                    <v>1920</v>
                                 </b>
                                 <b>
                                     <a>167</a>
                                     <b>168</b>
-                                    <v>1361</v>
+                                    <v>1920</v>
                                 </b>
                                 <b>
                                     <a>213</a>
                                     <b>214</b>
-                                    <v>1361</v>
+                                    <v>1920</v>
                                 </b>
                                 <b>
                                     <a>453</a>
                                     <b>454</b>
-                                    <v>1361</v>
+                                    <v>1920</v>
                                 </b>
                             </bs>
                         </hist>
@@ -23394,7 +23805,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>9529</v>
+                                    <v>13445</v>
                                 </b>
                             </bs>
                         </hist>
@@ -23410,7 +23821,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>9529</v>
+                                    <v>13445</v>
                                 </b>
                             </bs>
                         </hist>
@@ -23426,37 +23837,37 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>1361</v>
+                                    <v>1920</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>1361</v>
+                                    <v>1920</v>
                                 </b>
                                 <b>
                                     <a>20</a>
                                     <b>21</b>
-                                    <v>1361</v>
+                                    <v>1920</v>
                                 </b>
                                 <b>
                                     <a>88</a>
                                     <b>89</b>
-                                    <v>1361</v>
+                                    <v>1920</v>
                                 </b>
                                 <b>
                                     <a>166</a>
                                     <b>167</b>
-                                    <v>1361</v>
+                                    <v>1920</v>
                                 </b>
                                 <b>
                                     <a>213</a>
                                     <b>214</b>
-                                    <v>1361</v>
+                                    <v>1920</v>
                                 </b>
                                 <b>
                                     <a>453</a>
                                     <b>454</b>
-                                    <v>1361</v>
+                                    <v>1920</v>
                                 </b>
                             </bs>
                         </hist>
@@ -23472,7 +23883,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>8168</v>
+                                    <v>11525</v>
                                 </b>
                             </bs>
                         </hist>
@@ -23488,12 +23899,12 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>6806</v>
+                                    <v>9604</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>1361</v>
+                                    <v>1920</v>
                                 </b>
                             </bs>
                         </hist>
@@ -23509,32 +23920,32 @@
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>1361</v>
+                                    <v>1920</v>
                                 </b>
                                 <b>
                                     <a>20</a>
                                     <b>21</b>
-                                    <v>1361</v>
+                                    <v>1920</v>
                                 </b>
                                 <b>
                                     <a>88</a>
                                     <b>89</b>
-                                    <v>1361</v>
+                                    <v>1920</v>
                                 </b>
                                 <b>
                                     <a>167</a>
                                     <b>168</b>
-                                    <v>1361</v>
+                                    <v>1920</v>
                                 </b>
                                 <b>
                                     <a>213</a>
                                     <b>214</b>
-                                    <v>1361</v>
+                                    <v>1920</v>
                                 </b>
                                 <b>
                                     <a>453</a>
                                     <b>454</b>
-                                    <v>1361</v>
+                                    <v>1920</v>
                                 </b>
                             </bs>
                         </hist>
@@ -23550,17 +23961,17 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>333528</v>
+                                    <v>470609</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>291326</v>
+                                    <v>411063</v>
                                 </b>
                                 <b>
                                     <a>3</a>
                                     <b>4</b>
-                                    <v>122520</v>
+                                    <v>172877</v>
                                 </b>
                             </bs>
                         </hist>
@@ -23576,17 +23987,17 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>333528</v>
+                                    <v>470609</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>291326</v>
+                                    <v>411063</v>
                                 </b>
                                 <b>
                                     <a>3</a>
                                     <b>4</b>
-                                    <v>122520</v>
+                                    <v>172877</v>
                                 </b>
                             </bs>
                         </hist>
@@ -23602,17 +24013,17 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>333528</v>
+                                    <v>470609</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>291326</v>
+                                    <v>411063</v>
                                 </b>
                                 <b>
                                     <a>3</a>
                                     <b>4</b>
-                                    <v>122520</v>
+                                    <v>172877</v>
                                 </b>
                             </bs>
                         </hist>
@@ -23622,19 +24033,19 @@
         </relation>
         <relation>
             <name>xmlHasNs</name>
-            <cardinality>25896767</cardinality>
+            <cardinality>36540446</cardinality>
             <columnsizes>
                 <e>
                     <k>elementId</k>
-                    <v>25896767</v>
+                    <v>36540446</v>
                 </e>
                 <e>
                     <k>nsId</k>
-                    <v>8168</v>
+                    <v>11525</v>
                 </e>
                 <e>
                     <k>fileid</k>
-                    <v>743291</v>
+                    <v>1048787</v>
                 </e>
             </columnsizes>
             <dependencies>
@@ -23648,7 +24059,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>25896767</v>
+                                    <v>36540446</v>
                                 </b>
                             </bs>
                         </hist>
@@ -23664,7 +24075,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>25896767</v>
+                                    <v>36540446</v>
                                 </b>
                             </bs>
                         </hist>
@@ -23680,32 +24091,32 @@
                                 <b>
                                     <a>13</a>
                                     <b>14</b>
-                                    <v>1361</v>
+                                    <v>1920</v>
                                 </b>
                                 <b>
                                     <a>84</a>
                                     <b>85</b>
-                                    <v>1361</v>
+                                    <v>1920</v>
                                 </b>
                                 <b>
                                     <a>2426</a>
                                     <b>2427</b>
-                                    <v>1361</v>
+                                    <v>1920</v>
                                 </b>
                                 <b>
                                     <a>2733</a>
                                     <b>2734</b>
-                                    <v>1361</v>
+                                    <v>1920</v>
                                 </b>
                                 <b>
                                     <a>3704</a>
                                     <b>3705</b>
-                                    <v>1361</v>
+                                    <v>1920</v>
                                 </b>
                                 <b>
                                     <a>10063</a>
                                     <b>10064</b>
-                                    <v>1361</v>
+                                    <v>1920</v>
                                 </b>
                             </bs>
                         </hist>
@@ -23721,32 +24132,32 @@
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>1361</v>
+                                    <v>1920</v>
                                 </b>
                                 <b>
                                     <a>20</a>
                                     <b>21</b>
-                                    <v>1361</v>
+                                    <v>1920</v>
                                 </b>
                                 <b>
                                     <a>86</a>
                                     <b>87</b>
-                                    <v>1361</v>
+                                    <v>1920</v>
                                 </b>
                                 <b>
                                     <a>164</a>
                                     <b>165</b>
-                                    <v>1361</v>
+                                    <v>1920</v>
                                 </b>
                                 <b>
                                     <a>209</a>
                                     <b>210</b>
-                                    <v>1361</v>
+                                    <v>1920</v>
                                 </b>
                                 <b>
                                     <a>453</a>
                                     <b>454</b>
-                                    <v>1361</v>
+                                    <v>1920</v>
                                 </b>
                             </bs>
                         </hist>
@@ -23762,77 +24173,77 @@
                                 <b>
                                     <a>1</a>
                                     <b>3</b>
-                                    <v>44924</v>
+                                    <v>63388</v>
                                 </b>
                                 <b>
                                     <a>3</a>
                                     <b>5</b>
-                                    <v>62621</v>
+                                    <v>88359</v>
                                 </b>
                                 <b>
                                     <a>5</a>
                                     <b>6</b>
-                                    <v>34033</v>
+                                    <v>48021</v>
                                 </b>
                                 <b>
                                     <a>6</a>
                                     <b>7</b>
-                                    <v>65344</v>
+                                    <v>92201</v>
                                 </b>
                                 <b>
                                     <a>7</a>
                                     <b>8</b>
-                                    <v>49008</v>
+                                    <v>69150</v>
                                 </b>
                                 <b>
                                     <a>8</a>
                                     <b>10</b>
-                                    <v>61260</v>
+                                    <v>86438</v>
                                 </b>
                                 <b>
                                     <a>10</a>
                                     <b>15</b>
-                                    <v>65344</v>
+                                    <v>92201</v>
                                 </b>
                                 <b>
                                     <a>15</a>
                                     <b>25</b>
-                                    <v>55814</v>
+                                    <v>78755</v>
                                 </b>
                                 <b>
                                     <a>25</a>
                                     <b>36</b>
-                                    <v>57176</v>
+                                    <v>80675</v>
                                 </b>
                                 <b>
                                     <a>36</a>
                                     <b>49</b>
-                                    <v>58537</v>
+                                    <v>82596</v>
                                 </b>
                                 <b>
                                     <a>49</a>
                                     <b>54</b>
-                                    <v>14974</v>
+                                    <v>21129</v>
                                 </b>
                                 <b>
                                     <a>54</a>
                                     <b>55</b>
-                                    <v>58537</v>
+                                    <v>82596</v>
                                 </b>
                                 <b>
                                     <a>55</a>
                                     <b>81</b>
-                                    <v>57176</v>
+                                    <v>80675</v>
                                 </b>
                                 <b>
                                     <a>81</a>
                                     <b>298</b>
-                                    <v>55814</v>
+                                    <v>78755</v>
                                 </b>
                                 <b>
                                     <a>298</a>
                                     <b>833</b>
-                                    <v>2722</v>
+                                    <v>3841</v>
                                 </b>
                             </bs>
                         </hist>
@@ -23848,17 +24259,17 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>334889</v>
+                                    <v>472530</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>288604</v>
+                                    <v>407221</v>
                                 </b>
                                 <b>
                                     <a>3</a>
                                     <b>4</b>
-                                    <v>119797</v>
+                                    <v>169035</v>
                                 </b>
                             </bs>
                         </hist>
@@ -23868,23 +24279,23 @@
         </relation>
         <relation>
             <name>xmlComments</name>
-            <cardinality>107198704</cardinality>
+            <cardinality>151257816</cardinality>
             <columnsizes>
                 <e>
                     <k>id</k>
-                    <v>107198704</v>
+                    <v>151257816</v>
                 </e>
                 <e>
                     <k>text</k>
-                    <v>1692145</v>
+                    <v>2387624</v>
                 </e>
                 <e>
                     <k>parentid</k>
-                    <v>839946</v>
+                    <v>1185168</v>
                 </e>
                 <e>
                     <k>fileid</k>
-                    <v>785493</v>
+                    <v>1108333</v>
                 </e>
             </columnsizes>
             <dependencies>
@@ -23898,7 +24309,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>107198704</v>
+                                    <v>151257816</v>
                                 </b>
                             </bs>
                         </hist>
@@ -23914,7 +24325,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>107198704</v>
+                                    <v>151257816</v>
                                 </b>
                             </bs>
                         </hist>
@@ -23930,7 +24341,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>107198704</v>
+                                    <v>151257816</v>
                                 </b>
                             </bs>
                         </hist>
@@ -23946,67 +24357,67 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>232789</v>
+                                    <v>328466</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>7</b>
-                                    <v>138856</v>
+                                    <v>195927</v>
                                 </b>
                                 <b>
                                     <a>7</a>
                                     <b>32</b>
-                                    <v>140218</v>
+                                    <v>197848</v>
                                 </b>
                                 <b>
                                     <a>32</a>
                                     <b>61</b>
-                                    <v>127965</v>
+                                    <v>180560</v>
                                 </b>
                                 <b>
                                     <a>61</a>
                                     <b>76</b>
-                                    <v>127965</v>
+                                    <v>180560</v>
                                 </b>
                                 <b>
                                     <a>76</a>
                                     <b>84</b>
-                                    <v>136133</v>
+                                    <v>192085</v>
                                 </b>
                                 <b>
                                     <a>84</a>
                                     <b>90</b>
-                                    <v>125243</v>
+                                    <v>176718</v>
                                 </b>
                                 <b>
                                     <a>90</a>
                                     <b>94</b>
-                                    <v>111629</v>
+                                    <v>157510</v>
                                 </b>
                                 <b>
                                     <a>94</a>
                                     <b>95</b>
-                                    <v>59898</v>
+                                    <v>84517</v>
                                 </b>
                                 <b>
                                     <a>95</a>
                                     <b>96</b>
-                                    <v>100739</v>
+                                    <v>142143</v>
                                 </b>
                                 <b>
                                     <a>96</a>
                                     <b>98</b>
-                                    <v>140218</v>
+                                    <v>197848</v>
                                 </b>
                                 <b>
                                     <a>98</a>
                                     <b>100</b>
-                                    <v>126604</v>
+                                    <v>178639</v>
                                 </b>
                                 <b>
                                     <a>100</a>
                                     <b>460</b>
-                                    <v>123881</v>
+                                    <v>174797</v>
                                 </b>
                             </bs>
                         </hist>
@@ -24022,67 +24433,67 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>235511</v>
+                                    <v>332308</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>6</b>
-                                    <v>134772</v>
+                                    <v>190164</v>
                                 </b>
                                 <b>
                                     <a>6</a>
                                     <b>32</b>
-                                    <v>142940</v>
+                                    <v>201689</v>
                                 </b>
                                 <b>
                                     <a>32</a>
                                     <b>61</b>
-                                    <v>129327</v>
+                                    <v>182481</v>
                                 </b>
                                 <b>
                                     <a>61</a>
                                     <b>75</b>
-                                    <v>132049</v>
+                                    <v>186323</v>
                                 </b>
                                 <b>
                                     <a>75</a>
                                     <b>84</b>
-                                    <v>148386</v>
+                                    <v>209373</v>
                                 </b>
                                 <b>
                                     <a>84</a>
                                     <b>90</b>
-                                    <v>122520</v>
+                                    <v>172877</v>
                                 </b>
                                 <b>
                                     <a>90</a>
                                     <b>94</b>
-                                    <v>119797</v>
+                                    <v>169035</v>
                                 </b>
                                 <b>
                                     <a>94</a>
                                     <b>95</b>
-                                    <v>66705</v>
+                                    <v>94121</v>
                                 </b>
                                 <b>
                                     <a>95</a>
                                     <b>96</b>
-                                    <v>103461</v>
+                                    <v>145985</v>
                                 </b>
                                 <b>
                                     <a>96</a>
                                     <b>98</b>
-                                    <v>142940</v>
+                                    <v>201689</v>
                                 </b>
                                 <b>
                                     <a>98</a>
                                     <b>100</b>
-                                    <v>134772</v>
+                                    <v>190164</v>
                                 </b>
                                 <b>
                                     <a>100</a>
                                     <b>460</b>
-                                    <v>78957</v>
+                                    <v>111409</v>
                                 </b>
                             </bs>
                         </hist>
@@ -24098,67 +24509,67 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>246402</v>
+                                    <v>347674</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>7</b>
-                                    <v>133411</v>
+                                    <v>188243</v>
                                 </b>
                                 <b>
                                     <a>7</a>
                                     <b>32</b>
-                                    <v>133411</v>
+                                    <v>188243</v>
                                 </b>
                                 <b>
                                     <a>32</a>
                                     <b>61</b>
-                                    <v>129327</v>
+                                    <v>182481</v>
                                 </b>
                                 <b>
                                     <a>61</a>
                                     <b>75</b>
-                                    <v>132049</v>
+                                    <v>186323</v>
                                 </b>
                                 <b>
                                     <a>75</a>
                                     <b>84</b>
-                                    <v>148386</v>
+                                    <v>209373</v>
                                 </b>
                                 <b>
                                     <a>84</a>
                                     <b>90</b>
-                                    <v>122520</v>
+                                    <v>172877</v>
                                 </b>
                                 <b>
                                     <a>90</a>
                                     <b>94</b>
-                                    <v>119797</v>
+                                    <v>169035</v>
                                 </b>
                                 <b>
                                     <a>94</a>
                                     <b>95</b>
-                                    <v>66705</v>
+                                    <v>94121</v>
                                 </b>
                                 <b>
                                     <a>95</a>
                                     <b>96</b>
-                                    <v>103461</v>
+                                    <v>145985</v>
                                 </b>
                                 <b>
                                     <a>96</a>
                                     <b>98</b>
-                                    <v>142940</v>
+                                    <v>201689</v>
                                 </b>
                                 <b>
                                     <a>98</a>
                                     <b>100</b>
-                                    <v>134772</v>
+                                    <v>190164</v>
                                 </b>
                                 <b>
                                     <a>100</a>
                                     <b>460</b>
-                                    <v>78957</v>
+                                    <v>111409</v>
                                 </b>
                             </bs>
                         </hist>
@@ -24174,22 +24585,22 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>668417</v>
+                                    <v>943140</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>724</b>
-                                    <v>63982</v>
+                                    <v>90280</v>
                                 </b>
                                 <b>
                                     <a>726</a>
                                     <b>830</b>
-                                    <v>77596</v>
+                                    <v>109488</v>
                                 </b>
                                 <b>
                                     <a>831</a>
                                     <b>941</b>
-                                    <v>29949</v>
+                                    <v>42258</v>
                                 </b>
                             </bs>
                         </hist>
@@ -24205,27 +24616,27 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>668417</v>
+                                    <v>943140</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>697</b>
-                                    <v>63982</v>
+                                    <v>90280</v>
                                 </b>
                                 <b>
                                     <a>697</a>
                                     <b>795</b>
-                                    <v>34033</v>
+                                    <v>48021</v>
                                 </b>
                                 <b>
                                     <a>795</a>
                                     <b>827</b>
-                                    <v>63982</v>
+                                    <v>90280</v>
                                 </b>
                                 <b>
                                     <a>838</a>
                                     <b>899</b>
-                                    <v>9529</v>
+                                    <v>13445</v>
                                 </b>
                             </bs>
                         </hist>
@@ -24241,7 +24652,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>839946</v>
+                                    <v>1185168</v>
                                 </b>
                             </bs>
                         </hist>
@@ -24257,27 +24668,27 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>600350</v>
+                                    <v>847097</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>549</b>
-                                    <v>59898</v>
+                                    <v>84517</v>
                                 </b>
                                 <b>
                                     <a>579</a>
                                     <b>829</b>
-                                    <v>40840</v>
+                                    <v>57625</v>
                                 </b>
                                 <b>
                                     <a>829</a>
                                     <b>832</b>
-                                    <v>65344</v>
+                                    <v>92201</v>
                                 </b>
                                 <b>
                                     <a>834</a>
                                     <b>941</b>
-                                    <v>19058</v>
+                                    <v>26891</v>
                                 </b>
                             </bs>
                         </hist>
@@ -24293,27 +24704,27 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>600350</v>
+                                    <v>847097</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>536</b>
-                                    <v>59898</v>
+                                    <v>84517</v>
                                 </b>
                                 <b>
                                     <a>560</a>
                                     <b>795</b>
-                                    <v>51730</v>
+                                    <v>72992</v>
                                 </b>
                                 <b>
                                     <a>795</a>
                                     <b>812</b>
-                                    <v>59898</v>
+                                    <v>84517</v>
                                 </b>
                                 <b>
                                     <a>819</a>
                                     <b>899</b>
-                                    <v>13613</v>
+                                    <v>19208</v>
                                 </b>
                             </bs>
                         </hist>
@@ -24329,12 +24740,12 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>746014</v>
+                                    <v>1052629</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>6</b>
-                                    <v>39478</v>
+                                    <v>55704</v>
                                 </b>
                             </bs>
                         </hist>
@@ -24344,31 +24755,31 @@
         </relation>
         <relation>
             <name>xmlChars</name>
-            <cardinality>101302741</cardinality>
+            <cardinality>142938589</cardinality>
             <columnsizes>
                 <e>
                     <k>id</k>
-                    <v>101302741</v>
+                    <v>142938589</v>
                 </e>
                 <e>
                     <k>text</k>
-                    <v>77797848</v>
+                    <v>109773086</v>
                 </e>
                 <e>
                     <k>parentid</k>
-                    <v>101302741</v>
+                    <v>142938589</v>
                 </e>
                 <e>
                     <k>idx</k>
-                    <v>1361</v>
+                    <v>1920</v>
                 </e>
                 <e>
                     <k>isCDATA</k>
-                    <v>2722</v>
+                    <v>3841</v>
                 </e>
                 <e>
                     <k>fileid</k>
-                    <v>176974</v>
+                    <v>249711</v>
                 </e>
             </columnsizes>
             <dependencies>
@@ -24382,7 +24793,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>101302741</v>
+                                    <v>142938589</v>
                                 </b>
                             </bs>
                         </hist>
@@ -24398,7 +24809,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>101302741</v>
+                                    <v>142938589</v>
                                 </b>
                             </bs>
                         </hist>
@@ -24414,7 +24825,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>101302741</v>
+                                    <v>142938589</v>
                                 </b>
                             </bs>
                         </hist>
@@ -24430,7 +24841,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>101302741</v>
+                                    <v>142938589</v>
                                 </b>
                             </bs>
                         </hist>
@@ -24446,7 +24857,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>101302741</v>
+                                    <v>142938589</v>
                                 </b>
                             </bs>
                         </hist>
@@ -24462,17 +24873,17 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>66568156</v>
+                                    <v>93927944</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>6991841</v>
+                                    <v>9865517</v>
                                 </b>
                                 <b>
                                     <a>3</a>
                                     <b>128</b>
-                                    <v>4237850</v>
+                                    <v>5979625</v>
                                 </b>
                             </bs>
                         </hist>
@@ -24488,17 +24899,17 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>66568156</v>
+                                    <v>93927944</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>6991841</v>
+                                    <v>9865517</v>
                                 </b>
                                 <b>
                                     <a>3</a>
                                     <b>128</b>
-                                    <v>4237850</v>
+                                    <v>5979625</v>
                                 </b>
                             </bs>
                         </hist>
@@ -24514,7 +24925,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>77797848</v>
+                                    <v>109773086</v>
                                 </b>
                             </bs>
                         </hist>
@@ -24530,7 +24941,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>77797848</v>
+                                    <v>109773086</v>
                                 </b>
                             </bs>
                         </hist>
@@ -24546,12 +24957,12 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>74436700</v>
+                                    <v>105030493</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>76</b>
-                                    <v>3361148</v>
+                                    <v>4742593</v>
                                 </b>
                             </bs>
                         </hist>
@@ -24567,7 +24978,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>101302741</v>
+                                    <v>142938589</v>
                                 </b>
                             </bs>
                         </hist>
@@ -24583,7 +24994,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>101302741</v>
+                                    <v>142938589</v>
                                 </b>
                             </bs>
                         </hist>
@@ -24599,7 +25010,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>101302741</v>
+                                    <v>142938589</v>
                                 </b>
                             </bs>
                         </hist>
@@ -24615,7 +25026,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>101302741</v>
+                                    <v>142938589</v>
                                 </b>
                             </bs>
                         </hist>
@@ -24631,7 +25042,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>101302741</v>
+                                    <v>142938589</v>
                                 </b>
                             </bs>
                         </hist>
@@ -24647,7 +25058,7 @@
                                 <b>
                                     <a>74414</a>
                                     <b>74415</b>
-                                    <v>1361</v>
+                                    <v>1920</v>
                                 </b>
                             </bs>
                         </hist>
@@ -24663,7 +25074,7 @@
                                 <b>
                                     <a>57148</a>
                                     <b>57149</b>
-                                    <v>1361</v>
+                                    <v>1920</v>
                                 </b>
                             </bs>
                         </hist>
@@ -24679,7 +25090,7 @@
                                 <b>
                                     <a>74414</a>
                                     <b>74415</b>
-                                    <v>1361</v>
+                                    <v>1920</v>
                                 </b>
                             </bs>
                         </hist>
@@ -24695,7 +25106,7 @@
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>1361</v>
+                                    <v>1920</v>
                                 </b>
                             </bs>
                         </hist>
@@ -24711,7 +25122,7 @@
                                 <b>
                                     <a>130</a>
                                     <b>131</b>
-                                    <v>1361</v>
+                                    <v>1920</v>
                                 </b>
                             </bs>
                         </hist>
@@ -24727,12 +25138,12 @@
                                 <b>
                                     <a>518</a>
                                     <b>519</b>
-                                    <v>1361</v>
+                                    <v>1920</v>
                                 </b>
                                 <b>
                                     <a>73896</a>
                                     <b>73897</b>
-                                    <v>1361</v>
+                                    <v>1920</v>
                                 </b>
                             </bs>
                         </hist>
@@ -24748,12 +25159,12 @@
                                 <b>
                                     <a>492</a>
                                     <b>493</b>
-                                    <v>1361</v>
+                                    <v>1920</v>
                                 </b>
                                 <b>
                                     <a>56656</a>
                                     <b>56657</b>
-                                    <v>1361</v>
+                                    <v>1920</v>
                                 </b>
                             </bs>
                         </hist>
@@ -24769,12 +25180,12 @@
                                 <b>
                                     <a>518</a>
                                     <b>519</b>
-                                    <v>1361</v>
+                                    <v>1920</v>
                                 </b>
                                 <b>
                                     <a>73896</a>
                                     <b>73897</b>
-                                    <v>1361</v>
+                                    <v>1920</v>
                                 </b>
                             </bs>
                         </hist>
@@ -24790,7 +25201,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>2722</v>
+                                    <v>3841</v>
                                 </b>
                             </bs>
                         </hist>
@@ -24806,12 +25217,12 @@
                                 <b>
                                     <a>98</a>
                                     <b>99</b>
-                                    <v>1361</v>
+                                    <v>1920</v>
                                 </b>
                                 <b>
                                     <a>130</a>
                                     <b>131</b>
-                                    <v>1361</v>
+                                    <v>1920</v>
                                 </b>
                             </bs>
                         </hist>
@@ -24827,57 +25238,57 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>14974</v>
+                                    <v>21129</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>23</b>
-                                    <v>13613</v>
+                                    <v>19208</v>
                                 </b>
                                 <b>
                                     <a>24</a>
                                     <b>243</b>
-                                    <v>13613</v>
+                                    <v>19208</v>
                                 </b>
                                 <b>
                                     <a>294</a>
                                     <b>566</b>
-                                    <v>13613</v>
+                                    <v>19208</v>
                                 </b>
                                 <b>
                                     <a>610</a>
                                     <b>686</b>
-                                    <v>13613</v>
+                                    <v>19208</v>
                                 </b>
                                 <b>
                                     <a>691</a>
                                     <b>764</b>
-                                    <v>13613</v>
+                                    <v>19208</v>
                                 </b>
                                 <b>
                                     <a>765</a>
                                     <b>775</b>
-                                    <v>13613</v>
+                                    <v>19208</v>
                                 </b>
                                 <b>
                                     <a>775</a>
                                     <b>776</b>
-                                    <v>4084</v>
+                                    <v>5762</v>
                                 </b>
                                 <b>
                                     <a>776</a>
                                     <b>777</b>
-                                    <v>49008</v>
+                                    <v>69150</v>
                                 </b>
                                 <b>
                                     <a>777</a>
                                     <b>803</b>
-                                    <v>13613</v>
+                                    <v>19208</v>
                                 </b>
                                 <b>
                                     <a>807</a>
                                     <b>888</b>
-                                    <v>13613</v>
+                                    <v>19208</v>
                                 </b>
                             </bs>
                         </hist>
@@ -24893,67 +25304,67 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>14974</v>
+                                    <v>21129</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>21</b>
-                                    <v>13613</v>
+                                    <v>19208</v>
                                 </b>
                                 <b>
                                     <a>22</a>
                                     <b>188</b>
-                                    <v>13613</v>
+                                    <v>19208</v>
                                 </b>
                                 <b>
                                     <a>208</a>
                                     <b>492</b>
-                                    <v>13613</v>
+                                    <v>19208</v>
                                 </b>
                                 <b>
                                     <a>525</a>
                                     <b>589</b>
-                                    <v>13613</v>
+                                    <v>19208</v>
                                 </b>
                                 <b>
                                     <a>590</a>
                                     <b>638</b>
-                                    <v>13613</v>
+                                    <v>19208</v>
                                 </b>
                                 <b>
                                     <a>639</a>
                                     <b>651</b>
-                                    <v>13613</v>
+                                    <v>19208</v>
                                 </b>
                                 <b>
                                     <a>652</a>
                                     <b>656</b>
-                                    <v>12252</v>
+                                    <v>17287</v>
                                 </b>
                                 <b>
                                     <a>656</a>
                                     <b>659</b>
-                                    <v>16336</v>
+                                    <v>23050</v>
                                 </b>
                                 <b>
                                     <a>659</a>
                                     <b>663</b>
-                                    <v>14974</v>
+                                    <v>21129</v>
                                 </b>
                                 <b>
                                     <a>663</a>
                                     <b>667</b>
-                                    <v>13613</v>
+                                    <v>19208</v>
                                 </b>
                                 <b>
                                     <a>667</a>
                                     <b>701</b>
-                                    <v>13613</v>
+                                    <v>19208</v>
                                 </b>
                                 <b>
                                     <a>702</a>
                                     <b>744</b>
-                                    <v>9529</v>
+                                    <v>13445</v>
                                 </b>
                             </bs>
                         </hist>
@@ -24969,57 +25380,57 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>14974</v>
+                                    <v>21129</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>23</b>
-                                    <v>13613</v>
+                                    <v>19208</v>
                                 </b>
                                 <b>
                                     <a>24</a>
                                     <b>243</b>
-                                    <v>13613</v>
+                                    <v>19208</v>
                                 </b>
                                 <b>
                                     <a>294</a>
                                     <b>566</b>
-                                    <v>13613</v>
+                                    <v>19208</v>
                                 </b>
                                 <b>
                                     <a>610</a>
                                     <b>686</b>
-                                    <v>13613</v>
+                                    <v>19208</v>
                                 </b>
                                 <b>
                                     <a>691</a>
                                     <b>764</b>
-                                    <v>13613</v>
+                                    <v>19208</v>
                                 </b>
                                 <b>
                                     <a>765</a>
                                     <b>775</b>
-                                    <v>13613</v>
+                                    <v>19208</v>
                                 </b>
                                 <b>
                                     <a>775</a>
                                     <b>776</b>
-                                    <v>4084</v>
+                                    <v>5762</v>
                                 </b>
                                 <b>
                                     <a>776</a>
                                     <b>777</b>
-                                    <v>49008</v>
+                                    <v>69150</v>
                                 </b>
                                 <b>
                                     <a>777</a>
                                     <b>803</b>
-                                    <v>13613</v>
+                                    <v>19208</v>
                                 </b>
                                 <b>
                                     <a>807</a>
                                     <b>888</b>
-                                    <v>13613</v>
+                                    <v>19208</v>
                                 </b>
                             </bs>
                         </hist>
@@ -25035,7 +25446,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>176974</v>
+                                    <v>249711</v>
                                 </b>
                             </bs>
                         </hist>
@@ -25051,12 +25462,12 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>43562</v>
+                                    <v>61467</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>133411</v>
+                                    <v>188243</v>
                                 </b>
                             </bs>
                         </hist>
@@ -25066,15 +25477,15 @@
         </relation>
         <relation>
             <name>xmllocations</name>
-            <cardinality>446644705</cardinality>
+            <cardinality>630217533</cardinality>
             <columnsizes>
                 <e>
                     <k>xmlElement</k>
-                    <v>445369130</v>
+                    <v>628417691</v>
                 </e>
                 <e>
                     <k>location</k>
-                    <v>418533038</v>
+                    <v>590551854</v>
                 </e>
             </columnsizes>
             <dependencies>
@@ -25088,12 +25499,12 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>445360961</v>
+                                    <v>628406166</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>454</b>
-                                    <v>8168</v>
+                                    <v>11525</v>
                                 </b>
                             </bs>
                         </hist>
@@ -25109,12 +25520,12 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>409045860</v>
+                                    <v>577165407</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>25</b>
-                                    <v>9487177</v>
+                                    <v>13386446</v>
                                 </b>
                             </bs>
                         </hist>
@@ -25355,19 +25766,19 @@
         </relation>
         <relation>
             <name>ktComments</name>
-            <cardinality>133411</cardinality>
+            <cardinality>188243</cardinality>
             <columnsizes>
                 <e>
                     <k>id</k>
-                    <v>133411</v>
+                    <v>188243</v>
                 </e>
                 <e>
                     <k>kind</k>
-                    <v>4084</v>
+                    <v>5762</v>
                 </e>
                 <e>
                     <k>text</k>
-                    <v>96655</v>
+                    <v>136380</v>
                 </e>
             </columnsizes>
             <dependencies>
@@ -25381,7 +25792,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>133411</v>
+                                    <v>188243</v>
                                 </b>
                             </bs>
                         </hist>
@@ -25397,7 +25808,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>133411</v>
+                                    <v>188243</v>
                                 </b>
                             </bs>
                         </hist>
@@ -25413,17 +25824,17 @@
                                 <b>
                                     <a>16</a>
                                     <b>17</b>
-                                    <v>1361</v>
+                                    <v>1920</v>
                                 </b>
                                 <b>
                                     <a>22</a>
                                     <b>23</b>
-                                    <v>1361</v>
+                                    <v>1920</v>
                                 </b>
                                 <b>
                                     <a>60</a>
                                     <b>61</b>
-                                    <v>1361</v>
+                                    <v>1920</v>
                                 </b>
                             </bs>
                         </hist>
@@ -25439,17 +25850,17 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>1361</v>
+                                    <v>1920</v>
                                 </b>
                                 <b>
                                     <a>16</a>
                                     <b>17</b>
-                                    <v>1361</v>
+                                    <v>1920</v>
                                 </b>
                                 <b>
                                     <a>54</a>
                                     <b>55</b>
-                                    <v>1361</v>
+                                    <v>1920</v>
                                 </b>
                             </bs>
                         </hist>
@@ -25465,12 +25876,12 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>92571</v>
+                                    <v>130618</v>
                                 </b>
                                 <b>
                                     <a>4</a>
                                     <b>23</b>
-                                    <v>4084</v>
+                                    <v>5762</v>
                                 </b>
                             </bs>
                         </hist>
@@ -25486,7 +25897,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>96655</v>
+                                    <v>136380</v>
                                 </b>
                             </bs>
                         </hist>
@@ -25496,19 +25907,19 @@
         </relation>
         <relation>
             <name>ktCommentSections</name>
-            <cardinality>59896</cardinality>
+            <cardinality>52611</cardinality>
             <columnsizes>
                 <e>
                     <k>id</k>
-                    <v>59896</v>
+                    <v>52611</v>
                 </e>
                 <e>
                     <k>comment</k>
-                    <v>54765</v>
+                    <v>48161</v>
                 </e>
                 <e>
                     <k>content</k>
-                    <v>50913</v>
+                    <v>44765</v>
                 </e>
             </columnsizes>
             <dependencies>
@@ -25522,7 +25933,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>59896</v>
+                                    <v>52611</v>
                                 </b>
                             </bs>
                         </hist>
@@ -25538,7 +25949,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>59896</v>
+                                    <v>52611</v>
                                 </b>
                             </bs>
                         </hist>
@@ -25554,12 +25965,12 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>52697</v>
+                                    <v>46367</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>18</b>
-                                    <v>2068</v>
+                                    <v>1793</v>
                                 </b>
                             </bs>
                         </hist>
@@ -25575,12 +25986,12 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>52697</v>
+                                    <v>46367</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>18</b>
-                                    <v>2068</v>
+                                    <v>1793</v>
                                 </b>
                             </bs>
                         </hist>
@@ -25596,17 +26007,17 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>45040</v>
+                                    <v>39616</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>4909</v>
+                                    <v>4313</v>
                                 </b>
                                 <b>
                                     <a>3</a>
                                     <b>63</b>
-                                    <v>963</v>
+                                    <v>835</v>
                                 </b>
                             </bs>
                         </hist>
@@ -25622,17 +26033,17 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>45151</v>
+                                    <v>39712</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>4815</v>
+                                    <v>4231</v>
                                 </b>
                                 <b>
                                     <a>3</a>
                                     <b>56</b>
-                                    <v>947</v>
+                                    <v>821</v>
                                 </b>
                             </bs>
                         </hist>
@@ -25642,15 +26053,15 @@
         </relation>
         <relation>
             <name>ktCommentSectionNames</name>
-            <cardinality>5130</cardinality>
+            <cardinality>4450</cardinality>
             <columnsizes>
                 <e>
                     <k>id</k>
-                    <v>5130</v>
+                    <v>4450</v>
                 </e>
                 <e>
                     <k>name</k>
-                    <v>15</v>
+                    <v>13</v>
                 </e>
             </columnsizes>
             <dependencies>
@@ -25664,7 +26075,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>5130</v>
+                                    <v>4450</v>
                                 </b>
                             </bs>
                         </hist>
@@ -25680,7 +26091,7 @@
                                 <b>
                                     <a>325</a>
                                     <b>326</b>
-                                    <v>15</v>
+                                    <v>13</v>
                                 </b>
                             </bs>
                         </hist>
@@ -25690,15 +26101,15 @@
         </relation>
         <relation>
             <name>ktCommentSectionSubjectNames</name>
-            <cardinality>5130</cardinality>
+            <cardinality>4450</cardinality>
             <columnsizes>
                 <e>
                     <k>id</k>
-                    <v>5130</v>
+                    <v>4450</v>
                 </e>
                 <e>
                     <k>subjectname</k>
-                    <v>3362</v>
+                    <v>2916</v>
                 </e>
             </columnsizes>
             <dependencies>
@@ -25712,7 +26123,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>5130</v>
+                                    <v>4450</v>
                                 </b>
                             </bs>
                         </hist>
@@ -25728,22 +26139,22 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>2557</v>
+                                    <v>2218</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>505</v>
+                                    <v>438</v>
                                 </b>
                                 <b>
                                     <a>3</a>
                                     <b>9</b>
-                                    <v>252</v>
+                                    <v>219</v>
                                 </b>
                                 <b>
                                     <a>10</a>
                                     <b>16</b>
-                                    <v>47</v>
+                                    <v>41</v>
                                 </b>
                             </bs>
                         </hist>
@@ -25753,15 +26164,15 @@
         </relation>
         <relation>
             <name>ktCommentOwners</name>
-            <cardinality>85377</cardinality>
+            <cardinality>75329</cardinality>
             <columnsizes>
                 <e>
                     <k>id</k>
-                    <v>54008</v>
+                    <v>47914</v>
                 </e>
                 <e>
                     <k>owner</k>
-                    <v>83356</v>
+                    <v>73508</v>
                 </e>
             </columnsizes>
             <dependencies>
@@ -25775,22 +26186,22 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>34510</v>
+                                    <v>30838</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>12361</v>
+                                    <v>10872</v>
                                 </b>
                                 <b>
                                     <a>3</a>
                                     <b>4</b>
-                                    <v>4641</v>
+                                    <v>4025</v>
                                 </b>
                                 <b>
                                     <a>4</a>
                                     <b>6</b>
-                                    <v>2494</v>
+                                    <v>2177</v>
                                 </b>
                             </bs>
                         </hist>
@@ -25806,12 +26217,12 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>81335</v>
+                                    <v>71701</v>
                                 </b>
                                 <b>
                                     <a>2</a>
-                                    <b>3</b>
-                                    <v>2020</v>
+                                    <b>4</b>
+                                    <v>1807</v>
                                 </b>
                             </bs>
                         </hist>
@@ -25821,19 +26232,19 @@
         </relation>
         <relation>
             <name>ktExtensionFunctions</name>
-            <cardinality>702451</cardinality>
+            <cardinality>1206297</cardinality>
             <columnsizes>
                 <e>
                     <k>id</k>
-                    <v>702451</v>
+                    <v>1206297</v>
                 </e>
                 <e>
                     <k>typeid</k>
-                    <v>84403</v>
+                    <v>97963</v>
                 </e>
                 <e>
                     <k>kttypeid</k>
-                    <v>1361</v>
+                    <v>1920</v>
                 </e>
             </columnsizes>
             <dependencies>
@@ -25847,7 +26258,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>702451</v>
+                                    <v>1206297</v>
                                 </b>
                             </bs>
                         </hist>
@@ -25863,7 +26274,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>702451</v>
+                                    <v>1206297</v>
                                 </b>
                             </bs>
                         </hist>
@@ -25879,37 +26290,37 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>53092</v>
+                                    <v>55704</v>
                                 </b>
                                 <b>
                                     <a>2</a>
                                     <b>3</b>
-                                    <v>5445</v>
+                                    <v>5762</v>
                                 </b>
                                 <b>
                                     <a>3</a>
                                     <b>4</b>
-                                    <v>2722</v>
-                                </b>
-                                <b>
-                                    <a>4</a>
-                                    <b>5</b>
-                                    <v>6806</v>
+                                    <v>3841</v>
                                 </b>
                                 <b>
                                     <a>5</a>
-                                    <b>12</b>
-                                    <v>6806</v>
+                                    <b>6</b>
+                                    <v>13445</v>
                                 </b>
                                 <b>
-                                    <a>12</a>
-                                    <b>69</b>
-                                    <v>6806</v>
+                                    <a>7</a>
+                                    <b>16</b>
+                                    <v>7683</v>
                                 </b>
                                 <b>
-                                    <a>84</a>
-                                    <b>174</b>
-                                    <v>2722</v>
+                                    <a>20</a>
+                                    <b>87</b>
+                                    <v>7683</v>
+                                </b>
+                                <b>
+                                    <a>109</a>
+                                    <b>227</b>
+                                    <v>3841</v>
                                 </b>
                             </bs>
                         </hist>
@@ -25925,7 +26336,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>84403</v>
+                                    <v>97963</v>
                                 </b>
                             </bs>
                         </hist>
@@ -25939,9 +26350,9 @@
                             <budget>12</budget>
                             <bs>
                                 <b>
-                                    <a>516</a>
-                                    <b>517</b>
-                                    <v>1361</v>
+                                    <a>628</a>
+                                    <b>629</b>
+                                    <v>1920</v>
                                 </b>
                             </bs>
                         </hist>
@@ -25955,9 +26366,9 @@
                             <budget>12</budget>
                             <bs>
                                 <b>
-                                    <a>62</a>
-                                    <b>63</b>
-                                    <v>1361</v>
+                                    <a>51</a>
+                                    <b>52</b>
+                                    <v>1920</v>
                                 </b>
                             </bs>
                         </hist>
@@ -25967,15 +26378,15 @@
         </relation>
         <relation>
             <name>ktProperties</name>
-            <cardinality>30236718</cardinality>
+            <cardinality>21895839</cardinality>
             <columnsizes>
                 <e>
                     <k>id</k>
-                    <v>30236718</v>
+                    <v>21895839</v>
                 </e>
                 <e>
                     <k>nodeName</k>
-                    <v>10667458</v>
+                    <v>13542035</v>
                 </e>
             </columnsizes>
             <dependencies>
@@ -25989,7 +26400,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>30236718</v>
+                                    <v>21895839</v>
                                 </b>
                             </bs>
                         </hist>
@@ -26005,22 +26416,17 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>7868544</v>
+                                    <v>11824790</v>
                                 </b>
                                 <b>
                                     <a>2</a>
-                                    <b>3</b>
-                                    <v>1212953</v>
+                                    <b>4</b>
+                                    <v>1142909</v>
                                 </b>
                                 <b>
-                                    <a>3</a>
-                                    <b>8</b>
-                                    <v>807274</v>
-                                </b>
-                                <b>
-                                    <a>8</a>
-                                    <b>554</b>
-                                    <v>778686</v>
+                                    <a>4</a>
+                                    <b>352</b>
+                                    <v>574335</v>
                                 </b>
                             </bs>
                         </hist>
@@ -26030,15 +26436,15 @@
         </relation>
         <relation>
             <name>ktPropertyGetters</name>
-            <cardinality>4557765</cardinality>
+            <cardinality>5985387</cardinality>
             <columnsizes>
                 <e>
                     <k>id</k>
-                    <v>4557765</v>
+                    <v>5985387</v>
                 </e>
                 <e>
                     <k>getter</k>
-                    <v>4557765</v>
+                    <v>5985387</v>
                 </e>
             </columnsizes>
             <dependencies>
@@ -26052,7 +26458,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>4557765</v>
+                                    <v>5985387</v>
                                 </b>
                             </bs>
                         </hist>
@@ -26068,7 +26474,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>4557765</v>
+                                    <v>5985387</v>
                                 </b>
                             </bs>
                         </hist>
@@ -26078,15 +26484,15 @@
         </relation>
         <relation>
             <name>ktPropertySetters</name>
-            <cardinality>264099</cardinality>
+            <cardinality>366883</cardinality>
             <columnsizes>
                 <e>
                     <k>id</k>
-                    <v>264099</v>
+                    <v>366883</v>
                 </e>
                 <e>
                     <k>setter</k>
-                    <v>264099</v>
+                    <v>366883</v>
                 </e>
             </columnsizes>
             <dependencies>
@@ -26100,7 +26506,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>264099</v>
+                                    <v>366883</v>
                                 </b>
                             </bs>
                         </hist>
@@ -26116,7 +26522,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>264099</v>
+                                    <v>366883</v>
                                 </b>
                             </bs>
                         </hist>
@@ -26126,15 +26532,15 @@
         </relation>
         <relation>
             <name>ktPropertyBackingFields</name>
-            <cardinality>23552540</cardinality>
+            <cardinality>14423708</cardinality>
             <columnsizes>
                 <e>
                     <k>id</k>
-                    <v>23552540</v>
+                    <v>14423708</v>
                 </e>
                 <e>
                     <k>backingField</k>
-                    <v>23552540</v>
+                    <v>14423708</v>
                 </e>
             </columnsizes>
             <dependencies>
@@ -26148,7 +26554,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>23552540</v>
+                                    <v>14423708</v>
                                 </b>
                             </bs>
                         </hist>
@@ -26164,7 +26570,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>23552540</v>
+                                    <v>14423708</v>
                                 </b>
                             </bs>
                         </hist>
@@ -26174,15 +26580,15 @@
         </relation>
         <relation>
             <name>ktSyntheticBody</name>
-            <cardinality>10303</cardinality>
+            <cardinality>9108</cardinality>
             <columnsizes>
                 <e>
                     <k>id</k>
-                    <v>10303</v>
+                    <v>9108</v>
                 </e>
                 <e>
                     <k>kind</k>
-                    <v>2060</v>
+                    <v>1821</v>
                 </e>
             </columnsizes>
             <dependencies>
@@ -26196,7 +26602,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>10303</v>
+                                    <v>9108</v>
                                 </b>
                             </bs>
                         </hist>
@@ -26212,7 +26618,7 @@
                                 <b>
                                     <a>5</a>
                                     <b>6</b>
-                                    <v>2060</v>
+                                    <v>1821</v>
                                 </b>
                             </bs>
                         </hist>
@@ -26222,37 +26628,37 @@
         </relation>
         <relation>
             <name>ktLocalFunction</name>
-            <cardinality>2722</cardinality>
+            <cardinality>3841</cardinality>
             <columnsizes>
                 <e>
                     <k>id</k>
-                    <v>2722</v>
+                    <v>3841</v>
                 </e>
             </columnsizes>
             <dependencies/>
         </relation>
         <relation>
             <name>ktInitializerAssignment</name>
-            <cardinality>392065</cardinality>
+            <cardinality>199475</cardinality>
             <columnsizes>
                 <e>
                     <k>id</k>
-                    <v>392065</v>
+                    <v>199475</v>
                 </e>
             </columnsizes>
             <dependencies/>
         </relation>
         <relation>
             <name>ktPropertyDelegates</name>
-            <cardinality>5650</cardinality>
+            <cardinality>5201</cardinality>
             <columnsizes>
                 <e>
                     <k>id</k>
-                    <v>5650</v>
+                    <v>5201</v>
                 </e>
                 <e>
                     <k>variableId</k>
-                    <v>5650</v>
+                    <v>5201</v>
                 </e>
             </columnsizes>
             <dependencies>
@@ -26266,7 +26672,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>5650</v>
+                                    <v>5201</v>
                                 </b>
                             </bs>
                         </hist>
@@ -26282,7 +26688,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>5650</v>
+                                    <v>5201</v>
                                 </b>
                             </bs>
                         </hist>
@@ -26292,15 +26698,15 @@
         </relation>
         <relation>
             <name>compiler_generated</name>
-            <cardinality>533645</cardinality>
+            <cardinality>1467534</cardinality>
             <columnsizes>
                 <e>
                     <k>id</k>
-                    <v>533645</v>
+                    <v>1467534</v>
                 </e>
                 <e>
                     <k>kind</k>
-                    <v>5445</v>
+                    <v>13445</v>
                 </e>
             </columnsizes>
             <dependencies>
@@ -26314,7 +26720,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>533645</v>
+                                    <v>1467534</v>
                                 </b>
                             </bs>
                         </hist>
@@ -26328,24 +26734,39 @@
                             <budget>12</budget>
                             <bs>
                                 <b>
-                                    <a>2</a>
-                                    <b>3</b>
-                                    <v>1361</v>
+                                    <a>1</a>
+                                    <b>2</b>
+                                    <v>1920</v>
                                 </b>
                                 <b>
                                     <a>8</a>
                                     <b>9</b>
-                                    <v>1361</v>
+                                    <v>1920</v>
+                                </b>
+                                <b>
+                                    <a>38</a>
+                                    <b>39</b>
+                                    <v>1920</v>
                                 </b>
                                 <b>
                                     <a>81</a>
                                     <b>82</b>
-                                    <v>1361</v>
+                                    <v>1920</v>
                                 </b>
                                 <b>
-                                    <a>301</a>
-                                    <b>302</b>
-                                    <v>1361</v>
+                                    <a>85</a>
+                                    <b>86</b>
+                                    <v>1920</v>
+                                </b>
+                                <b>
+                                    <a>236</a>
+                                    <b>237</b>
+                                    <v>1920</v>
+                                </b>
+                                <b>
+                                    <a>315</a>
+                                    <b>316</b>
+                                    <v>1920</v>
                                 </b>
                             </bs>
                         </hist>
@@ -26355,15 +26776,15 @@
         </relation>
         <relation>
             <name>ktFunctionOriginalNames</name>
-            <cardinality>1215676</cardinality>
+            <cardinality>1586627</cardinality>
             <columnsizes>
                 <e>
                     <k>id</k>
-                    <v>1215676</v>
+                    <v>1586627</v>
                 </e>
                 <e>
                     <k>name</k>
-                    <v>138856</v>
+                    <v>186323</v>
                 </e>
             </columnsizes>
             <dependencies>
@@ -26377,7 +26798,7 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>1215676</v>
+                                    <v>1586627</v>
                                 </b>
                             </bs>
                         </hist>
@@ -26393,22 +26814,22 @@
                                 <b>
                                     <a>1</a>
                                     <b>2</b>
-                                    <v>111629</v>
+                                    <v>147905</v>
                                 </b>
                                 <b>
                                     <a>2</a>
-                                    <b>7</b>
-                                    <v>10890</v>
+                                    <b>4</b>
+                                    <v>13445</v>
                                 </b>
                                 <b>
-                                    <a>7</a>
-                                    <b>31</b>
-                                    <v>10890</v>
+                                    <a>6</a>
+                                    <b>16</b>
+                                    <v>15366</v>
                                 </b>
                                 <b>
-                                    <a>92</a>
-                                    <b>380</b>
-                                    <v>5445</v>
+                                    <a>22</a>
+                                    <b>339</b>
+                                    <v>9604</v>
                                 </b>
                             </bs>
                         </hist>
@@ -26418,11 +26839,11 @@
         </relation>
         <relation>
             <name>ktDataClasses</name>
-            <cardinality>80319</cardinality>
+            <cardinality>113330</cardinality>
             <columnsizes>
                 <e>
                     <k>id</k>
-                    <v>80319</v>
+                    <v>113330</v>
                 </e>
             </columnsizes>
             <dependencies/>

From fac839f481708075d8b27dd6f55debd3eff6ebd6 Mon Sep 17 00:00:00 2001
From: Ian Lynagh <igfoo@github.com>
Date: Thu, 10 Nov 2022 17:31:31 +0000
Subject: [PATCH 0170/1420] Java/Kotlin: Add a changenote for
 Compilation.getInfo

---
 java/ql/lib/change-notes/2022-11-10-getInfo.md | 4 ++++
 1 file changed, 4 insertions(+)
 create mode 100644 java/ql/lib/change-notes/2022-11-10-getInfo.md

diff --git a/java/ql/lib/change-notes/2022-11-10-getInfo.md b/java/ql/lib/change-notes/2022-11-10-getInfo.md
new file mode 100644
index 00000000000..7a113ca3459
--- /dev/null
+++ b/java/ql/lib/change-notes/2022-11-10-getInfo.md
@@ -0,0 +1,4 @@
+---
+category: feature
+---
+* The new `string Compilation.getInfo(string)` provides access to some information about compilations.

From e00f87045e27e57660431de4dcd7c7786e73d74b Mon Sep 17 00:00:00 2001
From: Ian Lynagh <igfoo@github.com>
Date: Thu, 10 Nov 2022 20:31:13 +0000
Subject: [PATCH 0171/1420] Java: Add up/downgrade scripts

---
 .../old.dbscheme                              | 1246 +++++++++++++++++
 .../semmlecode.dbscheme                       | 1240 ++++++++++++++++
 .../upgrade.properties                        |    3 +
 .../old.dbscheme                              | 1240 ++++++++++++++++
 .../semmlecode.dbscheme                       | 1246 +++++++++++++++++
 .../upgrade.properties                        |    2 +
 6 files changed, 4977 insertions(+)
 create mode 100644 java/downgrades/44d61b266bebf261cb027872646262e645efa059/old.dbscheme
 create mode 100644 java/downgrades/44d61b266bebf261cb027872646262e645efa059/semmlecode.dbscheme
 create mode 100644 java/downgrades/44d61b266bebf261cb027872646262e645efa059/upgrade.properties
 create mode 100644 java/ql/lib/upgrades/709f1d1fd04ffd9bbcf242f17b120f8a389949bd/old.dbscheme
 create mode 100644 java/ql/lib/upgrades/709f1d1fd04ffd9bbcf242f17b120f8a389949bd/semmlecode.dbscheme
 create mode 100644 java/ql/lib/upgrades/709f1d1fd04ffd9bbcf242f17b120f8a389949bd/upgrade.properties

diff --git a/java/downgrades/44d61b266bebf261cb027872646262e645efa059/old.dbscheme b/java/downgrades/44d61b266bebf261cb027872646262e645efa059/old.dbscheme
new file mode 100644
index 00000000000..44d61b266be
--- /dev/null
+++ b/java/downgrades/44d61b266bebf261cb027872646262e645efa059/old.dbscheme
@@ -0,0 +1,1246 @@
+/**
+ * An invocation of the compiler. Note that more than one file may be
+ * compiled per invocation. For example, this command compiles three
+ * source files:
+ *
+ *   javac A.java B.java C.java
+ *
+ * The `id` simply identifies the invocation, while `cwd` is the working
+ * directory from which the compiler was invoked.
+ */
+compilations(
+    /**
+     * An invocation of the compiler. Note that more than one file may
+     * be compiled per invocation. For example, this command compiles
+     * three source files:
+     *
+     *   javac A.java B.java C.java
+     */
+    unique int id : @compilation,
+    int kind: int ref,
+    string cwd : string ref,
+    string name : string ref
+);
+
+case @compilation.kind of
+   1  = @javacompilation
+|  2  = @kotlincompilation
+;
+
+compilation_started(
+    int id : @compilation ref
+)
+
+compilation_info(
+    int id : @compilation ref,
+    string info_key: string ref,
+    string info_value: string ref
+)
+
+/**
+ * The arguments that were passed to the extractor for a compiler
+ * invocation. If `id` is for the compiler invocation
+ *
+ *   javac A.java B.java C.java
+ *
+ * then typically there will be rows for
+ *
+ * num | arg
+ * --- | ---
+ * 0   | *path to extractor*
+ * 1   | `--javac-args`
+ * 2   | A.java
+ * 3   | B.java
+ * 4   | C.java
+ */
+#keyset[id, num]
+compilation_args(
+    int id : @compilation ref,
+    int num : int ref,
+    string arg : string ref
+);
+
+/**
+ * The source files that are compiled by a compiler invocation.
+ * If `id` is for the compiler invocation
+ *
+ *   javac A.java B.java C.java
+ *
+ * then there will be rows for
+ *
+ * num | arg
+ * --- | ---
+ * 0   | A.java
+ * 1   | B.java
+ * 2   | C.java
+ */
+#keyset[id, num]
+compilation_compiling_files(
+    int id : @compilation ref,
+    int num : int ref,
+    int file : @file ref
+);
+
+/**
+ * For each file recorded in `compilation_compiling_files`,
+ * there will be a corresponding row in
+ * `compilation_compiling_files_completed` once extraction
+ * of that file is complete. The `result` will indicate the
+ * extraction result:
+ *
+ *     0: Successfully extracted
+ *     1: Errors were encountered, but extraction recovered
+ *     2: Errors were encountered, and extraction could not recover
+ */
+#keyset[id, num]
+compilation_compiling_files_completed(
+    int id : @compilation ref,
+    int num : int ref,
+    int result : int ref
+);
+
+/**
+ * The time taken by the extractor for a compiler invocation.
+ *
+ * For each file `num`, there will be rows for
+ *
+ * kind | seconds
+ * ---- | ---
+ * 1    | CPU seconds used by the extractor frontend
+ * 2    | Elapsed seconds during the extractor frontend
+ * 3    | CPU seconds used by the extractor backend
+ * 4    | Elapsed seconds during the extractor backend
+ */
+#keyset[id, num, kind]
+compilation_time(
+    int id : @compilation ref,
+    int num : int ref,
+    /* kind:
+       1 = frontend_cpu_seconds
+       2 = frontend_elapsed_seconds
+       3 = extractor_cpu_seconds
+       4 = extractor_elapsed_seconds
+    */
+    int kind : int ref,
+    float seconds : float ref
+);
+
+/**
+ * An error or warning generated by the extractor.
+ * The diagnostic message `diagnostic` was generated during compiler
+ * invocation `compilation`, and is the `file_number_diagnostic_number`th
+ * message generated while extracting the `file_number`th file of that
+ * invocation.
+ */
+#keyset[compilation, file_number, file_number_diagnostic_number]
+diagnostic_for(
+    unique int diagnostic : @diagnostic ref,
+    int compilation : @compilation ref,
+    int file_number : int ref,
+    int file_number_diagnostic_number : int ref
+);
+
+/**
+ * The `cpu_seconds` and `elapsed_seconds` are the CPU time and elapsed
+ * time (respectively) that the original compilation (not the extraction)
+ * took for compiler invocation `id`.
+ */
+compilation_compiler_times(
+    unique int id : @compilation ref,
+    float cpu_seconds : float ref,
+    float elapsed_seconds : float ref
+);
+
+/**
+ * If extraction was successful, then `cpu_seconds` and
+ * `elapsed_seconds` are the CPU time and elapsed time (respectively)
+ * that extraction took for compiler invocation `id`.
+ * The `result` will indicate the extraction result:
+ *
+ *     0: Successfully extracted
+ *     1: Errors were encountered, but extraction recovered
+ *     2: Errors were encountered, and extraction could not recover
+ */
+compilation_finished(
+    unique int id : @compilation ref,
+    float cpu_seconds : float ref,
+    float elapsed_seconds : float ref,
+    int result : int ref
+);
+
+diagnostics(
+    unique int id: @diagnostic,
+    string generated_by: string ref, // TODO: Sync this with the other languages?
+    int severity: int ref,
+    string error_tag: string ref,
+    string error_message: string ref,
+    string full_error_message: string ref,
+    int location: @location_default ref
+);
+
+/*
+ * External artifacts
+ */
+
+externalData(
+  int id : @externalDataElement,
+  string path : string ref,
+  int column: int ref,
+  string value : string ref
+);
+
+snapshotDate(
+  unique date snapshotDate : date ref
+);
+
+sourceLocationPrefix(
+  string prefix : string ref
+);
+
+/*
+ * Duplicate code
+ */
+
+duplicateCode(
+  unique int id : @duplication,
+  string relativePath : string ref,
+  int equivClass : int ref
+);
+
+similarCode(
+  unique int id : @similarity,
+  string relativePath : string ref,
+  int equivClass : int ref
+);
+
+@duplication_or_similarity = @duplication | @similarity
+
+tokens(
+  int id : @duplication_or_similarity ref,
+  int offset : int ref,
+  int beginLine : int ref,
+  int beginColumn : int ref,
+  int endLine : int ref,
+  int endColumn : int ref
+);
+
+/*
+ * SMAP
+ */
+
+smap_header(
+  int outputFileId: @file ref,
+  string outputFilename: string ref,
+  string defaultStratum: string ref
+);
+
+smap_files(
+  int outputFileId: @file ref,
+  string stratum: string ref,
+  int inputFileNum: int ref,
+  string inputFileName: string ref,
+  int inputFileId: @file ref
+);
+
+smap_lines(
+  int outputFileId: @file ref,
+  string stratum: string ref,
+  int inputFileNum: int ref,
+  int inputStartLine: int ref,
+  int inputLineCount: int ref,
+  int outputStartLine: int ref,
+  int outputLineIncrement: int ref
+);
+
+/*
+ * Locations and files
+ */
+
+@location = @location_default ;
+
+locations_default(
+  unique int id: @location_default,
+  int file: @file ref,
+  int beginLine: int ref,
+  int beginColumn: int ref,
+  int endLine: int ref,
+  int endColumn: int ref
+);
+
+hasLocation(
+  int locatableid: @locatable ref,
+  int id: @location ref
+);
+
+@sourceline = @locatable ;
+
+#keyset[element_id]
+numlines(
+  int element_id: @sourceline ref,
+  int num_lines: int ref,
+  int num_code: int ref,
+  int num_comment: int ref
+);
+
+files(
+  unique int id: @file,
+  string name: string ref
+);
+
+folders(
+  unique int id: @folder,
+  string name: string ref
+);
+
+@container = @folder | @file
+
+containerparent(
+  int parent: @container ref,
+  unique int child: @container ref
+);
+
+/*
+ * Java
+ */
+
+cupackage(
+  unique int id: @file ref,
+  int packageid: @package ref
+);
+
+#keyset[fileid,keyName]
+jarManifestMain(
+  int fileid: @file ref,
+  string keyName: string ref,
+  string value: string ref
+);
+
+#keyset[fileid,entryName,keyName]
+jarManifestEntries(
+  int fileid: @file ref,
+  string entryName: string ref,
+  string keyName: string ref,
+  string value: string ref
+);
+
+packages(
+  unique int id: @package,
+  string nodeName: string ref
+);
+
+primitives(
+  unique int id: @primitive,
+  string nodeName: string ref
+);
+
+modifiers(
+  unique int id: @modifier,
+  string nodeName: string ref
+);
+
+/**
+ * An errortype is used when the extractor is unable to extract a type
+ * correctly for some reason.
+ */
+error_type(
+  unique int id: @errortype
+);
+
+classes(
+  unique int id: @class,
+  string nodeName: string ref,
+  int parentid: @package ref,
+  int sourceid: @class ref
+);
+
+file_class(
+  int id: @class ref
+);
+
+class_object(
+  unique int id: @class ref,
+  unique int instance: @field ref
+);
+
+type_companion_object(
+  unique int id: @classorinterface ref,
+  unique int instance: @field ref,
+  unique int companion_object: @class ref
+);
+
+kt_nullable_types(
+  unique int id: @kt_nullable_type,
+  int classid: @reftype ref
+)
+
+kt_notnull_types(
+  unique int id: @kt_notnull_type,
+  int classid: @reftype ref
+)
+
+kt_type_alias(
+  unique int id: @kt_type_alias,
+  string name: string ref,
+  int kttypeid: @kt_type ref
+)
+
+@kt_type = @kt_nullable_type | @kt_notnull_type
+
+isRecord(
+  unique int id: @class ref
+);
+
+interfaces(
+  unique int id: @interface,
+  string nodeName: string ref,
+  int parentid: @package ref,
+  int sourceid: @interface ref
+);
+
+fielddecls(
+  unique int id: @fielddecl,
+  int parentid: @reftype ref
+);
+
+#keyset[fieldId] #keyset[fieldDeclId,pos]
+fieldDeclaredIn(
+  int fieldId: @field ref,
+  int fieldDeclId: @fielddecl ref,
+  int pos: int ref
+);
+
+fields(
+  unique int id: @field,
+  string nodeName: string ref,
+  int typeid: @type ref,
+  int parentid: @reftype ref,
+  int sourceid: @field ref
+);
+
+fieldsKotlinType(
+  unique int id: @field ref,
+  int kttypeid: @kt_type ref
+);
+
+constrs(
+  unique int id: @constructor,
+  string nodeName: string ref,
+  string signature: string ref,
+  int typeid: @type ref,
+  int parentid: @reftype ref,
+  int sourceid: @constructor ref
+);
+
+constrsKotlinType(
+  unique int id: @constructor ref,
+  int kttypeid: @kt_type ref
+);
+
+methods(
+  unique int id: @method,
+  string nodeName: string ref,
+  string signature: string ref,
+  int typeid: @type ref,
+  int parentid: @reftype ref,
+  int sourceid: @method ref
+);
+
+methodsKotlinType(
+  unique int id: @method ref,
+  int kttypeid: @kt_type ref
+);
+
+#keyset[parentid,pos]
+params(
+  unique int id: @param,
+  int typeid: @type ref,
+  int pos: int ref,
+  int parentid: @callable ref,
+  int sourceid: @param ref
+);
+
+paramsKotlinType(
+  unique int id: @param ref,
+  int kttypeid: @kt_type ref
+);
+
+paramName(
+  unique int id: @param ref,
+  string nodeName: string ref
+);
+
+isVarargsParam(
+  int param: @param ref
+);
+
+exceptions(
+  unique int id: @exception,
+  int typeid: @type ref,
+  int parentid: @callable ref
+);
+
+isAnnotType(
+  int interfaceid: @interface ref
+);
+
+isAnnotElem(
+  int methodid: @method ref
+);
+
+annotValue(
+  int parentid: @annotation ref,
+  int id2: @method ref,
+  unique int value: @expr ref
+);
+
+isEnumType(
+  int classid: @class ref
+);
+
+isEnumConst(
+  int fieldid: @field ref
+);
+
+#keyset[parentid,pos]
+typeVars(
+  unique int id: @typevariable,
+  string nodeName: string ref,
+  int pos: int ref,
+  int kind: int ref, // deprecated
+  int parentid: @classorinterfaceorcallable ref
+);
+
+wildcards(
+  unique int id: @wildcard,
+  string nodeName: string ref,
+  int kind: int ref
+);
+
+#keyset[parentid,pos]
+typeBounds(
+  unique int id: @typebound,
+  int typeid: @reftype ref,
+  int pos: int ref,
+  int parentid: @boundedtype ref
+);
+
+#keyset[parentid,pos]
+typeArgs(
+  int argumentid: @reftype ref,
+  int pos: int ref,
+  int parentid: @classorinterfaceorcallable ref
+);
+
+isParameterized(
+  int memberid: @member ref
+);
+
+isRaw(
+  int memberid: @member ref
+);
+
+erasure(
+  unique int memberid: @member ref,
+  int erasureid: @member ref
+);
+
+#keyset[classid] #keyset[parent]
+isAnonymClass(
+  int classid: @class ref,
+  int parent: @classinstancexpr ref
+);
+
+#keyset[typeid] #keyset[parent]
+isLocalClassOrInterface(
+  int typeid: @classorinterface ref,
+  int parent: @localtypedeclstmt ref
+);
+
+isDefConstr(
+  int constructorid: @constructor ref
+);
+
+#keyset[exprId]
+lambdaKind(
+  int exprId: @lambdaexpr ref,
+  int bodyKind: int ref
+);
+
+arrays(
+  unique int id: @array,
+  string nodeName: string ref,
+  int elementtypeid: @type ref,
+  int dimension: int ref,
+  int componenttypeid: @type ref
+);
+
+enclInReftype(
+  unique int child: @reftype ref,
+  int parent: @reftype ref
+);
+
+extendsReftype(
+  int id1: @reftype ref,
+  int id2: @classorinterface ref
+);
+
+implInterface(
+  int id1: @classorarray ref,
+  int id2: @interface ref
+);
+
+permits(
+  int id1: @classorinterface ref,
+  int id2: @classorinterface ref
+);
+
+hasModifier(
+  int id1: @modifiable ref,
+  int id2: @modifier ref
+);
+
+imports(
+  unique int id: @import,
+  int holder: @classorinterfaceorpackage ref,
+  string name: string ref,
+  int kind: int ref
+);
+
+#keyset[parent,idx]
+stmts(
+  unique int id: @stmt,
+  int kind: int ref,
+  int parent: @stmtparent ref,
+  int idx: int ref,
+  int bodydecl: @callable ref
+);
+
+@stmtparent = @callable | @stmt | @switchexpr | @whenexpr| @stmtexpr;
+
+case @stmt.kind of
+  0 = @block
+| 1 = @ifstmt
+| 2 = @forstmt
+| 3 = @enhancedforstmt
+| 4 = @whilestmt
+| 5 = @dostmt
+| 6 = @trystmt
+| 7 = @switchstmt
+| 8 = @synchronizedstmt
+| 9 = @returnstmt
+| 10 = @throwstmt
+| 11 = @breakstmt
+| 12 = @continuestmt
+| 13 = @emptystmt
+| 14 = @exprstmt
+| 15 = @labeledstmt
+| 16 = @assertstmt
+| 17 = @localvariabledeclstmt
+| 18 = @localtypedeclstmt
+| 19 = @constructorinvocationstmt
+| 20 = @superconstructorinvocationstmt
+| 21 = @case
+| 22 = @catchclause
+| 23 = @yieldstmt
+| 24 = @errorstmt
+| 25 = @whenbranch
+;
+
+#keyset[parent,idx]
+exprs(
+  unique int id: @expr,
+  int kind: int ref,
+  int typeid: @type ref,
+  int parent: @exprparent ref,
+  int idx: int ref
+);
+
+exprsKotlinType(
+  unique int id: @expr ref,
+  int kttypeid: @kt_type ref
+);
+
+callableEnclosingExpr(
+  unique int id: @expr ref,
+  int callable_id: @callable ref
+);
+
+statementEnclosingExpr(
+  unique int id: @expr ref,
+  int statement_id: @stmt ref
+);
+
+isParenthesized(
+  unique int id: @expr ref,
+  int parentheses: int ref
+);
+
+case @expr.kind of
+   1  = @arrayaccess
+|  2  = @arraycreationexpr
+|  3  = @arrayinit
+|  4  = @assignexpr
+|  5  = @assignaddexpr
+|  6  = @assignsubexpr
+|  7  = @assignmulexpr
+|  8  = @assigndivexpr
+|  9  = @assignremexpr
+| 10  = @assignandexpr
+| 11  = @assignorexpr
+| 12  = @assignxorexpr
+| 13  = @assignlshiftexpr
+| 14  = @assignrshiftexpr
+| 15  = @assignurshiftexpr
+| 16  = @booleanliteral
+| 17  = @integerliteral
+| 18  = @longliteral
+| 19  = @floatingpointliteral
+| 20  = @doubleliteral
+| 21  = @characterliteral
+| 22  = @stringliteral
+| 23  = @nullliteral
+| 24  = @mulexpr
+| 25  = @divexpr
+| 26  = @remexpr
+| 27  = @addexpr
+| 28  = @subexpr
+| 29  = @lshiftexpr
+| 30  = @rshiftexpr
+| 31  = @urshiftexpr
+| 32  = @andbitexpr
+| 33  = @orbitexpr
+| 34  = @xorbitexpr
+| 35  = @andlogicalexpr
+| 36  = @orlogicalexpr
+| 37  = @ltexpr
+| 38  = @gtexpr
+| 39  = @leexpr
+| 40  = @geexpr
+| 41  = @eqexpr
+| 42  = @neexpr
+| 43  = @postincexpr
+| 44  = @postdecexpr
+| 45  = @preincexpr
+| 46  = @predecexpr
+| 47  = @minusexpr
+| 48  = @plusexpr
+| 49  = @bitnotexpr
+| 50  = @lognotexpr
+| 51  = @castexpr
+| 52  = @newexpr
+| 53  = @conditionalexpr
+| 54  = @parexpr         // deprecated
+| 55  = @instanceofexpr
+| 56  = @localvariabledeclexpr
+| 57  = @typeliteral
+| 58  = @thisaccess
+| 59  = @superaccess
+| 60  = @varaccess
+| 61  = @methodaccess
+| 62  = @unannotatedtypeaccess
+| 63  = @arraytypeaccess
+| 64  = @packageaccess
+| 65  = @wildcardtypeaccess
+| 66  = @declannotation
+| 67  = @uniontypeaccess
+| 68  = @lambdaexpr
+| 69  = @memberref
+| 70  = @annotatedtypeaccess
+| 71  = @typeannotation
+| 72  = @intersectiontypeaccess
+| 73  = @switchexpr
+| 74  = @errorexpr
+| 75  = @whenexpr
+| 76  = @getclassexpr
+| 77  = @safecastexpr
+| 78  = @implicitcastexpr
+| 79  = @implicitnotnullexpr
+| 80  = @implicitcoerciontounitexpr
+| 81  = @notinstanceofexpr
+| 82  = @stmtexpr
+| 83  = @stringtemplateexpr
+| 84  = @notnullexpr
+| 85  = @unsafecoerceexpr
+| 86  = @valueeqexpr
+| 87  = @valueneexpr
+| 88  = @propertyref
+;
+
+/** Holds if this `when` expression was written as an `if` expression. */
+when_if(unique int id: @whenexpr ref);
+
+/** Holds if this `when` branch was written as an `else` branch. */
+when_branch_else(unique int id: @whenbranch ref);
+
+@classinstancexpr = @newexpr | @lambdaexpr | @memberref | @propertyref
+
+@annotation = @declannotation | @typeannotation
+@typeaccess = @unannotatedtypeaccess | @annotatedtypeaccess
+
+@assignment = @assignexpr
+             | @assignop;
+
+@unaryassignment = @postincexpr
+                 | @postdecexpr
+                 | @preincexpr
+                 | @predecexpr;
+
+@assignop = @assignaddexpr
+             | @assignsubexpr
+             | @assignmulexpr
+             | @assigndivexpr
+             | @assignremexpr
+             | @assignandexpr
+             | @assignorexpr
+             | @assignxorexpr
+             | @assignlshiftexpr
+             | @assignrshiftexpr
+             | @assignurshiftexpr;
+
+@literal = @booleanliteral
+             | @integerliteral
+             | @longliteral
+             | @floatingpointliteral
+             | @doubleliteral
+             | @characterliteral
+             | @stringliteral
+             | @nullliteral;
+
+@binaryexpr = @mulexpr
+             | @divexpr
+             | @remexpr
+             | @addexpr
+             | @subexpr
+             | @lshiftexpr
+             | @rshiftexpr
+             | @urshiftexpr
+             | @andbitexpr
+             | @orbitexpr
+             | @xorbitexpr
+             | @andlogicalexpr
+             | @orlogicalexpr
+             | @ltexpr
+             | @gtexpr
+             | @leexpr
+             | @geexpr
+             | @eqexpr
+             | @neexpr
+             | @valueeqexpr
+             | @valueneexpr;
+
+@unaryexpr =   @postincexpr
+             | @postdecexpr
+             | @preincexpr
+             | @predecexpr
+             | @minusexpr
+             | @plusexpr
+             | @bitnotexpr
+             | @lognotexpr
+             | @notnullexpr;
+
+@caller =  @classinstancexpr
+         | @methodaccess
+         | @constructorinvocationstmt
+         | @superconstructorinvocationstmt;
+
+callableBinding(
+  unique int callerid: @caller ref,
+  int callee: @callable ref
+);
+
+memberRefBinding(
+  unique int id: @expr ref,
+  int callable: @callable ref
+);
+
+propertyRefGetBinding(
+  unique int id: @expr ref,
+  int getter: @callable ref
+);
+
+propertyRefFieldBinding(
+  unique int id: @expr ref,
+  int field: @field ref
+);
+
+propertyRefSetBinding(
+  unique int id: @expr ref,
+  int setter: @callable ref
+);
+
+@exprparent = @stmt | @expr | @whenbranch | @callable | @field | @fielddecl | @class | @interface | @param | @localvar | @typevariable;
+
+variableBinding(
+  unique int expr: @varaccess ref,
+  int variable: @variable ref
+);
+
+@variable = @localscopevariable | @field;
+
+@localscopevariable = @localvar | @param;
+
+localvars(
+  unique int id: @localvar,
+  string nodeName: string ref,
+  int typeid: @type ref,
+  int parentid: @localvariabledeclexpr ref
+);
+
+localvarsKotlinType(
+  unique int id: @localvar ref,
+  int kttypeid: @kt_type ref
+);
+
+@namedexprorstmt = @breakstmt
+                 | @continuestmt
+                 | @labeledstmt
+                 | @literal;
+
+namestrings(
+  string name: string ref,
+  string value: string ref,
+  unique int parent: @namedexprorstmt ref
+);
+
+/*
+ * Modules
+ */
+
+#keyset[name]
+modules(
+  unique int id: @module,
+  string name: string ref
+);
+
+isOpen(
+  int id: @module ref
+);
+
+#keyset[fileId]
+cumodule(
+  int fileId: @file ref,
+  int moduleId: @module ref
+);
+
+@directive = @requires
+           | @exports
+           | @opens
+           | @uses
+           | @provides
+
+#keyset[directive]
+directives(
+  int id: @module ref,
+  int directive: @directive ref
+);
+
+requires(
+  unique int id: @requires,
+  int target: @module ref
+);
+
+isTransitive(
+  int id: @requires ref
+);
+
+isStatic(
+  int id: @requires ref
+);
+
+exports(
+  unique int id: @exports,
+  int target: @package ref
+);
+
+exportsTo(
+  int id: @exports ref,
+  int target: @module ref
+);
+
+opens(
+  unique int id: @opens,
+  int target: @package ref
+);
+
+opensTo(
+  int id: @opens ref,
+  int target: @module ref
+);
+
+uses(
+  unique int id: @uses,
+  string serviceInterface: string ref
+);
+
+provides(
+  unique int id: @provides,
+  string serviceInterface: string ref
+);
+
+providesWith(
+  int id: @provides ref,
+  string serviceImpl: string ref
+);
+
+/*
+ * Javadoc
+ */
+
+javadoc(
+  unique int id: @javadoc
+);
+
+isNormalComment(
+  int commentid : @javadoc ref
+);
+
+isEolComment(
+  int commentid : @javadoc ref
+);
+
+hasJavadoc(
+  int documentableid: @member ref,
+  int javadocid: @javadoc ref
+);
+
+#keyset[parentid,idx]
+javadocTag(
+  unique int id: @javadocTag,
+  string name: string ref,
+  int parentid: @javadocParent ref,
+  int idx: int ref
+);
+
+#keyset[parentid,idx]
+javadocText(
+  unique int id: @javadocText,
+  string text: string ref,
+  int parentid: @javadocParent ref,
+  int idx: int ref
+);
+
+@javadocParent = @javadoc | @javadocTag;
+@javadocElement = @javadocTag | @javadocText;
+
+@classorinterface = @interface | @class;
+@classorinterfaceorpackage = @classorinterface | @package;
+@classorinterfaceorcallable = @classorinterface | @callable;
+@boundedtype = @typevariable | @wildcard;
+@reftype = @classorinterface | @array | @boundedtype | @errortype;
+@classorarray = @class | @array;
+@type = @primitive | @reftype;
+@callable = @method | @constructor;
+
+/** A program element that has a name. */
+@element = @package | @modifier | @annotation | @errortype |
+           @locatableElement;
+
+@locatableElement = @file | @primitive | @class | @interface | @method | @constructor | @param | @exception | @field |
+                    @boundedtype | @array | @localvar | @expr | @stmt | @import | @fielddecl | @kt_type | @kt_type_alias |
+                    @kt_property;
+
+@modifiable = @member_modifiable| @param | @localvar | @typevariable;
+
+@member_modifiable = @class | @interface | @method | @constructor | @field | @kt_property;
+
+@member = @method | @constructor | @field | @reftype ;
+
+/** A program element that has a location. */
+@locatable = @typebound | @javadoc | @javadocTag | @javadocText | @xmllocatable | @ktcomment |
+             @locatableElement;
+
+@top = @element | @locatable | @folder;
+
+/*
+ * XML Files
+ */
+
+xmlEncoding(
+  unique int id: @file ref,
+  string encoding: string ref
+);
+
+xmlDTDs(
+  unique int id: @xmldtd,
+  string root: string ref,
+  string publicId: string ref,
+  string systemId: string ref,
+  int fileid: @file ref
+);
+
+xmlElements(
+  unique int id: @xmlelement,
+  string name: string ref,
+  int parentid: @xmlparent ref,
+  int idx: int ref,
+  int fileid: @file ref
+);
+
+xmlAttrs(
+  unique int id: @xmlattribute,
+  int elementid: @xmlelement ref,
+  string name: string ref,
+  string value: string ref,
+  int idx: int ref,
+  int fileid: @file ref
+);
+
+xmlNs(
+  int id: @xmlnamespace,
+  string prefixName: string ref,
+  string URI: string ref,
+  int fileid: @file ref
+);
+
+xmlHasNs(
+  int elementId: @xmlnamespaceable ref,
+  int nsId: @xmlnamespace ref,
+  int fileid: @file ref
+);
+
+xmlComments(
+  unique int id: @xmlcomment,
+  string text: string ref,
+  int parentid: @xmlparent ref,
+  int fileid: @file ref
+);
+
+xmlChars(
+  unique int id: @xmlcharacters,
+  string text: string ref,
+  int parentid: @xmlparent ref,
+  int idx: int ref,
+  int isCDATA: int ref,
+  int fileid: @file ref
+);
+
+@xmlparent = @file | @xmlelement;
+@xmlnamespaceable = @xmlelement | @xmlattribute;
+
+xmllocations(
+  int xmlElement: @xmllocatable ref,
+  int location: @location_default ref
+);
+
+@xmllocatable = @xmlcharacters | @xmlelement | @xmlcomment | @xmlattribute | @xmldtd | @file | @xmlnamespace;
+
+/*
+ * configuration files with key value pairs
+ */
+
+configs(
+  unique int id: @config
+);
+
+configNames(
+  unique int id: @configName,
+  int config: @config ref,
+  string name: string ref
+);
+
+configValues(
+  unique int id: @configValue,
+  int config: @config ref,
+  string value: string ref
+);
+
+configLocations(
+  int locatable: @configLocatable ref,
+  int location: @location_default ref
+);
+
+@configLocatable = @config | @configName | @configValue;
+
+ktComments(
+  unique int id: @ktcomment,
+  int kind: int ref,
+  string text : string ref
+)
+
+ktCommentSections(
+  unique int id: @ktcommentsection,
+  int comment: @ktcomment ref,
+  string content : string ref
+)
+
+ktCommentSectionNames(
+  unique int id: @ktcommentsection ref,
+  string name : string ref
+)
+
+ktCommentSectionSubjectNames(
+  unique int id: @ktcommentsection ref,
+  string subjectname : string ref
+)
+
+#keyset[id, owner]
+ktCommentOwners(
+  int id: @ktcomment ref,
+  int owner: @top ref
+)
+
+ktExtensionFunctions(
+  unique int id: @method ref,
+  int typeid: @type ref,
+  int kttypeid: @kt_type ref
+)
+
+ktProperties(
+  unique int id: @kt_property,
+  string nodeName: string ref
+)
+
+ktPropertyGetters(
+  unique int id: @kt_property ref,
+  int getter: @method ref
+)
+
+ktPropertySetters(
+  unique int id: @kt_property ref,
+  int setter: @method ref
+)
+
+ktPropertyBackingFields(
+  unique int id: @kt_property ref,
+  int backingField: @field ref
+)
+
+ktSyntheticBody(
+  unique int id: @callable ref,
+  int kind: int ref
+  // 1: ENUM_VALUES
+  // 2: ENUM_VALUEOF
+)
+
+ktLocalFunction(
+  unique int id: @method ref
+)
+
+ktInitializerAssignment(
+  unique int id: @assignexpr ref
+)
+
+ktPropertyDelegates(
+  unique int id: @kt_property ref,
+  unique int variableId: @variable ref
+)
+
+/**
+ * If `id` is a compiler generated element, then the kind indicates the
+ * reason that the compiler generated it.
+ * See `Element.compilerGeneratedReason()` for an explanation of what
+ * each `kind` means.
+ */
+compiler_generated(
+  unique int id: @element ref,
+  int kind: int ref
+)
+
+ktFunctionOriginalNames(
+  unique int id: @method ref,
+  string name: string ref
+)
+
+ktDataClasses(
+  unique int id: @class ref
+)
diff --git a/java/downgrades/44d61b266bebf261cb027872646262e645efa059/semmlecode.dbscheme b/java/downgrades/44d61b266bebf261cb027872646262e645efa059/semmlecode.dbscheme
new file mode 100644
index 00000000000..709f1d1fd04
--- /dev/null
+++ b/java/downgrades/44d61b266bebf261cb027872646262e645efa059/semmlecode.dbscheme
@@ -0,0 +1,1240 @@
+/**
+ * An invocation of the compiler. Note that more than one file may be
+ * compiled per invocation. For example, this command compiles three
+ * source files:
+ *
+ *   javac A.java B.java C.java
+ *
+ * The `id` simply identifies the invocation, while `cwd` is the working
+ * directory from which the compiler was invoked.
+ */
+compilations(
+    /**
+     * An invocation of the compiler. Note that more than one file may
+     * be compiled per invocation. For example, this command compiles
+     * three source files:
+     *
+     *   javac A.java B.java C.java
+     */
+    unique int id : @compilation,
+    int kind: int ref,
+    string cwd : string ref,
+    string name : string ref
+);
+
+case @compilation.kind of
+   1  = @javacompilation
+|  2  = @kotlincompilation
+;
+
+compilation_started(
+    int id : @compilation ref
+)
+
+/**
+ * The arguments that were passed to the extractor for a compiler
+ * invocation. If `id` is for the compiler invocation
+ *
+ *   javac A.java B.java C.java
+ *
+ * then typically there will be rows for
+ *
+ * num | arg
+ * --- | ---
+ * 0   | *path to extractor*
+ * 1   | `--javac-args`
+ * 2   | A.java
+ * 3   | B.java
+ * 4   | C.java
+ */
+#keyset[id, num]
+compilation_args(
+    int id : @compilation ref,
+    int num : int ref,
+    string arg : string ref
+);
+
+/**
+ * The source files that are compiled by a compiler invocation.
+ * If `id` is for the compiler invocation
+ *
+ *   javac A.java B.java C.java
+ *
+ * then there will be rows for
+ *
+ * num | arg
+ * --- | ---
+ * 0   | A.java
+ * 1   | B.java
+ * 2   | C.java
+ */
+#keyset[id, num]
+compilation_compiling_files(
+    int id : @compilation ref,
+    int num : int ref,
+    int file : @file ref
+);
+
+/**
+ * For each file recorded in `compilation_compiling_files`,
+ * there will be a corresponding row in
+ * `compilation_compiling_files_completed` once extraction
+ * of that file is complete. The `result` will indicate the
+ * extraction result:
+ *
+ *     0: Successfully extracted
+ *     1: Errors were encountered, but extraction recovered
+ *     2: Errors were encountered, and extraction could not recover
+ */
+#keyset[id, num]
+compilation_compiling_files_completed(
+    int id : @compilation ref,
+    int num : int ref,
+    int result : int ref
+);
+
+/**
+ * The time taken by the extractor for a compiler invocation.
+ *
+ * For each file `num`, there will be rows for
+ *
+ * kind | seconds
+ * ---- | ---
+ * 1    | CPU seconds used by the extractor frontend
+ * 2    | Elapsed seconds during the extractor frontend
+ * 3    | CPU seconds used by the extractor backend
+ * 4    | Elapsed seconds during the extractor backend
+ */
+#keyset[id, num, kind]
+compilation_time(
+    int id : @compilation ref,
+    int num : int ref,
+    /* kind:
+       1 = frontend_cpu_seconds
+       2 = frontend_elapsed_seconds
+       3 = extractor_cpu_seconds
+       4 = extractor_elapsed_seconds
+    */
+    int kind : int ref,
+    float seconds : float ref
+);
+
+/**
+ * An error or warning generated by the extractor.
+ * The diagnostic message `diagnostic` was generated during compiler
+ * invocation `compilation`, and is the `file_number_diagnostic_number`th
+ * message generated while extracting the `file_number`th file of that
+ * invocation.
+ */
+#keyset[compilation, file_number, file_number_diagnostic_number]
+diagnostic_for(
+    unique int diagnostic : @diagnostic ref,
+    int compilation : @compilation ref,
+    int file_number : int ref,
+    int file_number_diagnostic_number : int ref
+);
+
+/**
+ * The `cpu_seconds` and `elapsed_seconds` are the CPU time and elapsed
+ * time (respectively) that the original compilation (not the extraction)
+ * took for compiler invocation `id`.
+ */
+compilation_compiler_times(
+    unique int id : @compilation ref,
+    float cpu_seconds : float ref,
+    float elapsed_seconds : float ref
+);
+
+/**
+ * If extraction was successful, then `cpu_seconds` and
+ * `elapsed_seconds` are the CPU time and elapsed time (respectively)
+ * that extraction took for compiler invocation `id`.
+ * The `result` will indicate the extraction result:
+ *
+ *     0: Successfully extracted
+ *     1: Errors were encountered, but extraction recovered
+ *     2: Errors were encountered, and extraction could not recover
+ */
+compilation_finished(
+    unique int id : @compilation ref,
+    float cpu_seconds : float ref,
+    float elapsed_seconds : float ref,
+    int result : int ref
+);
+
+diagnostics(
+    unique int id: @diagnostic,
+    string generated_by: string ref, // TODO: Sync this with the other languages?
+    int severity: int ref,
+    string error_tag: string ref,
+    string error_message: string ref,
+    string full_error_message: string ref,
+    int location: @location_default ref
+);
+
+/*
+ * External artifacts
+ */
+
+externalData(
+  int id : @externalDataElement,
+  string path : string ref,
+  int column: int ref,
+  string value : string ref
+);
+
+snapshotDate(
+  unique date snapshotDate : date ref
+);
+
+sourceLocationPrefix(
+  string prefix : string ref
+);
+
+/*
+ * Duplicate code
+ */
+
+duplicateCode(
+  unique int id : @duplication,
+  string relativePath : string ref,
+  int equivClass : int ref
+);
+
+similarCode(
+  unique int id : @similarity,
+  string relativePath : string ref,
+  int equivClass : int ref
+);
+
+@duplication_or_similarity = @duplication | @similarity
+
+tokens(
+  int id : @duplication_or_similarity ref,
+  int offset : int ref,
+  int beginLine : int ref,
+  int beginColumn : int ref,
+  int endLine : int ref,
+  int endColumn : int ref
+);
+
+/*
+ * SMAP
+ */
+
+smap_header(
+  int outputFileId: @file ref,
+  string outputFilename: string ref,
+  string defaultStratum: string ref
+);
+
+smap_files(
+  int outputFileId: @file ref,
+  string stratum: string ref,
+  int inputFileNum: int ref,
+  string inputFileName: string ref,
+  int inputFileId: @file ref
+);
+
+smap_lines(
+  int outputFileId: @file ref,
+  string stratum: string ref,
+  int inputFileNum: int ref,
+  int inputStartLine: int ref,
+  int inputLineCount: int ref,
+  int outputStartLine: int ref,
+  int outputLineIncrement: int ref
+);
+
+/*
+ * Locations and files
+ */
+
+@location = @location_default ;
+
+locations_default(
+  unique int id: @location_default,
+  int file: @file ref,
+  int beginLine: int ref,
+  int beginColumn: int ref,
+  int endLine: int ref,
+  int endColumn: int ref
+);
+
+hasLocation(
+  int locatableid: @locatable ref,
+  int id: @location ref
+);
+
+@sourceline = @locatable ;
+
+#keyset[element_id]
+numlines(
+  int element_id: @sourceline ref,
+  int num_lines: int ref,
+  int num_code: int ref,
+  int num_comment: int ref
+);
+
+files(
+  unique int id: @file,
+  string name: string ref
+);
+
+folders(
+  unique int id: @folder,
+  string name: string ref
+);
+
+@container = @folder | @file
+
+containerparent(
+  int parent: @container ref,
+  unique int child: @container ref
+);
+
+/*
+ * Java
+ */
+
+cupackage(
+  unique int id: @file ref,
+  int packageid: @package ref
+);
+
+#keyset[fileid,keyName]
+jarManifestMain(
+  int fileid: @file ref,
+  string keyName: string ref,
+  string value: string ref
+);
+
+#keyset[fileid,entryName,keyName]
+jarManifestEntries(
+  int fileid: @file ref,
+  string entryName: string ref,
+  string keyName: string ref,
+  string value: string ref
+);
+
+packages(
+  unique int id: @package,
+  string nodeName: string ref
+);
+
+primitives(
+  unique int id: @primitive,
+  string nodeName: string ref
+);
+
+modifiers(
+  unique int id: @modifier,
+  string nodeName: string ref
+);
+
+/**
+ * An errortype is used when the extractor is unable to extract a type
+ * correctly for some reason.
+ */
+error_type(
+  unique int id: @errortype
+);
+
+classes(
+  unique int id: @class,
+  string nodeName: string ref,
+  int parentid: @package ref,
+  int sourceid: @class ref
+);
+
+file_class(
+  int id: @class ref
+);
+
+class_object(
+  unique int id: @class ref,
+  unique int instance: @field ref
+);
+
+type_companion_object(
+  unique int id: @classorinterface ref,
+  unique int instance: @field ref,
+  unique int companion_object: @class ref
+);
+
+kt_nullable_types(
+  unique int id: @kt_nullable_type,
+  int classid: @reftype ref
+)
+
+kt_notnull_types(
+  unique int id: @kt_notnull_type,
+  int classid: @reftype ref
+)
+
+kt_type_alias(
+  unique int id: @kt_type_alias,
+  string name: string ref,
+  int kttypeid: @kt_type ref
+)
+
+@kt_type = @kt_nullable_type | @kt_notnull_type
+
+isRecord(
+  unique int id: @class ref
+);
+
+interfaces(
+  unique int id: @interface,
+  string nodeName: string ref,
+  int parentid: @package ref,
+  int sourceid: @interface ref
+);
+
+fielddecls(
+  unique int id: @fielddecl,
+  int parentid: @reftype ref
+);
+
+#keyset[fieldId] #keyset[fieldDeclId,pos]
+fieldDeclaredIn(
+  int fieldId: @field ref,
+  int fieldDeclId: @fielddecl ref,
+  int pos: int ref
+);
+
+fields(
+  unique int id: @field,
+  string nodeName: string ref,
+  int typeid: @type ref,
+  int parentid: @reftype ref,
+  int sourceid: @field ref
+);
+
+fieldsKotlinType(
+  unique int id: @field ref,
+  int kttypeid: @kt_type ref
+);
+
+constrs(
+  unique int id: @constructor,
+  string nodeName: string ref,
+  string signature: string ref,
+  int typeid: @type ref,
+  int parentid: @reftype ref,
+  int sourceid: @constructor ref
+);
+
+constrsKotlinType(
+  unique int id: @constructor ref,
+  int kttypeid: @kt_type ref
+);
+
+methods(
+  unique int id: @method,
+  string nodeName: string ref,
+  string signature: string ref,
+  int typeid: @type ref,
+  int parentid: @reftype ref,
+  int sourceid: @method ref
+);
+
+methodsKotlinType(
+  unique int id: @method ref,
+  int kttypeid: @kt_type ref
+);
+
+#keyset[parentid,pos]
+params(
+  unique int id: @param,
+  int typeid: @type ref,
+  int pos: int ref,
+  int parentid: @callable ref,
+  int sourceid: @param ref
+);
+
+paramsKotlinType(
+  unique int id: @param ref,
+  int kttypeid: @kt_type ref
+);
+
+paramName(
+  unique int id: @param ref,
+  string nodeName: string ref
+);
+
+isVarargsParam(
+  int param: @param ref
+);
+
+exceptions(
+  unique int id: @exception,
+  int typeid: @type ref,
+  int parentid: @callable ref
+);
+
+isAnnotType(
+  int interfaceid: @interface ref
+);
+
+isAnnotElem(
+  int methodid: @method ref
+);
+
+annotValue(
+  int parentid: @annotation ref,
+  int id2: @method ref,
+  unique int value: @expr ref
+);
+
+isEnumType(
+  int classid: @class ref
+);
+
+isEnumConst(
+  int fieldid: @field ref
+);
+
+#keyset[parentid,pos]
+typeVars(
+  unique int id: @typevariable,
+  string nodeName: string ref,
+  int pos: int ref,
+  int kind: int ref, // deprecated
+  int parentid: @classorinterfaceorcallable ref
+);
+
+wildcards(
+  unique int id: @wildcard,
+  string nodeName: string ref,
+  int kind: int ref
+);
+
+#keyset[parentid,pos]
+typeBounds(
+  unique int id: @typebound,
+  int typeid: @reftype ref,
+  int pos: int ref,
+  int parentid: @boundedtype ref
+);
+
+#keyset[parentid,pos]
+typeArgs(
+  int argumentid: @reftype ref,
+  int pos: int ref,
+  int parentid: @classorinterfaceorcallable ref
+);
+
+isParameterized(
+  int memberid: @member ref
+);
+
+isRaw(
+  int memberid: @member ref
+);
+
+erasure(
+  unique int memberid: @member ref,
+  int erasureid: @member ref
+);
+
+#keyset[classid] #keyset[parent]
+isAnonymClass(
+  int classid: @class ref,
+  int parent: @classinstancexpr ref
+);
+
+#keyset[typeid] #keyset[parent]
+isLocalClassOrInterface(
+  int typeid: @classorinterface ref,
+  int parent: @localtypedeclstmt ref
+);
+
+isDefConstr(
+  int constructorid: @constructor ref
+);
+
+#keyset[exprId]
+lambdaKind(
+  int exprId: @lambdaexpr ref,
+  int bodyKind: int ref
+);
+
+arrays(
+  unique int id: @array,
+  string nodeName: string ref,
+  int elementtypeid: @type ref,
+  int dimension: int ref,
+  int componenttypeid: @type ref
+);
+
+enclInReftype(
+  unique int child: @reftype ref,
+  int parent: @reftype ref
+);
+
+extendsReftype(
+  int id1: @reftype ref,
+  int id2: @classorinterface ref
+);
+
+implInterface(
+  int id1: @classorarray ref,
+  int id2: @interface ref
+);
+
+permits(
+  int id1: @classorinterface ref,
+  int id2: @classorinterface ref
+);
+
+hasModifier(
+  int id1: @modifiable ref,
+  int id2: @modifier ref
+);
+
+imports(
+  unique int id: @import,
+  int holder: @classorinterfaceorpackage ref,
+  string name: string ref,
+  int kind: int ref
+);
+
+#keyset[parent,idx]
+stmts(
+  unique int id: @stmt,
+  int kind: int ref,
+  int parent: @stmtparent ref,
+  int idx: int ref,
+  int bodydecl: @callable ref
+);
+
+@stmtparent = @callable | @stmt | @switchexpr | @whenexpr| @stmtexpr;
+
+case @stmt.kind of
+  0 = @block
+| 1 = @ifstmt
+| 2 = @forstmt
+| 3 = @enhancedforstmt
+| 4 = @whilestmt
+| 5 = @dostmt
+| 6 = @trystmt
+| 7 = @switchstmt
+| 8 = @synchronizedstmt
+| 9 = @returnstmt
+| 10 = @throwstmt
+| 11 = @breakstmt
+| 12 = @continuestmt
+| 13 = @emptystmt
+| 14 = @exprstmt
+| 15 = @labeledstmt
+| 16 = @assertstmt
+| 17 = @localvariabledeclstmt
+| 18 = @localtypedeclstmt
+| 19 = @constructorinvocationstmt
+| 20 = @superconstructorinvocationstmt
+| 21 = @case
+| 22 = @catchclause
+| 23 = @yieldstmt
+| 24 = @errorstmt
+| 25 = @whenbranch
+;
+
+#keyset[parent,idx]
+exprs(
+  unique int id: @expr,
+  int kind: int ref,
+  int typeid: @type ref,
+  int parent: @exprparent ref,
+  int idx: int ref
+);
+
+exprsKotlinType(
+  unique int id: @expr ref,
+  int kttypeid: @kt_type ref
+);
+
+callableEnclosingExpr(
+  unique int id: @expr ref,
+  int callable_id: @callable ref
+);
+
+statementEnclosingExpr(
+  unique int id: @expr ref,
+  int statement_id: @stmt ref
+);
+
+isParenthesized(
+  unique int id: @expr ref,
+  int parentheses: int ref
+);
+
+case @expr.kind of
+   1  = @arrayaccess
+|  2  = @arraycreationexpr
+|  3  = @arrayinit
+|  4  = @assignexpr
+|  5  = @assignaddexpr
+|  6  = @assignsubexpr
+|  7  = @assignmulexpr
+|  8  = @assigndivexpr
+|  9  = @assignremexpr
+| 10  = @assignandexpr
+| 11  = @assignorexpr
+| 12  = @assignxorexpr
+| 13  = @assignlshiftexpr
+| 14  = @assignrshiftexpr
+| 15  = @assignurshiftexpr
+| 16  = @booleanliteral
+| 17  = @integerliteral
+| 18  = @longliteral
+| 19  = @floatingpointliteral
+| 20  = @doubleliteral
+| 21  = @characterliteral
+| 22  = @stringliteral
+| 23  = @nullliteral
+| 24  = @mulexpr
+| 25  = @divexpr
+| 26  = @remexpr
+| 27  = @addexpr
+| 28  = @subexpr
+| 29  = @lshiftexpr
+| 30  = @rshiftexpr
+| 31  = @urshiftexpr
+| 32  = @andbitexpr
+| 33  = @orbitexpr
+| 34  = @xorbitexpr
+| 35  = @andlogicalexpr
+| 36  = @orlogicalexpr
+| 37  = @ltexpr
+| 38  = @gtexpr
+| 39  = @leexpr
+| 40  = @geexpr
+| 41  = @eqexpr
+| 42  = @neexpr
+| 43  = @postincexpr
+| 44  = @postdecexpr
+| 45  = @preincexpr
+| 46  = @predecexpr
+| 47  = @minusexpr
+| 48  = @plusexpr
+| 49  = @bitnotexpr
+| 50  = @lognotexpr
+| 51  = @castexpr
+| 52  = @newexpr
+| 53  = @conditionalexpr
+| 54  = @parexpr         // deprecated
+| 55  = @instanceofexpr
+| 56  = @localvariabledeclexpr
+| 57  = @typeliteral
+| 58  = @thisaccess
+| 59  = @superaccess
+| 60  = @varaccess
+| 61  = @methodaccess
+| 62  = @unannotatedtypeaccess
+| 63  = @arraytypeaccess
+| 64  = @packageaccess
+| 65  = @wildcardtypeaccess
+| 66  = @declannotation
+| 67  = @uniontypeaccess
+| 68  = @lambdaexpr
+| 69  = @memberref
+| 70  = @annotatedtypeaccess
+| 71  = @typeannotation
+| 72  = @intersectiontypeaccess
+| 73  = @switchexpr
+| 74  = @errorexpr
+| 75  = @whenexpr
+| 76  = @getclassexpr
+| 77  = @safecastexpr
+| 78  = @implicitcastexpr
+| 79  = @implicitnotnullexpr
+| 80  = @implicitcoerciontounitexpr
+| 81  = @notinstanceofexpr
+| 82  = @stmtexpr
+| 83  = @stringtemplateexpr
+| 84  = @notnullexpr
+| 85  = @unsafecoerceexpr
+| 86  = @valueeqexpr
+| 87  = @valueneexpr
+| 88  = @propertyref
+;
+
+/** Holds if this `when` expression was written as an `if` expression. */
+when_if(unique int id: @whenexpr ref);
+
+/** Holds if this `when` branch was written as an `else` branch. */
+when_branch_else(unique int id: @whenbranch ref);
+
+@classinstancexpr = @newexpr | @lambdaexpr | @memberref | @propertyref
+
+@annotation = @declannotation | @typeannotation
+@typeaccess = @unannotatedtypeaccess | @annotatedtypeaccess
+
+@assignment = @assignexpr
+             | @assignop;
+
+@unaryassignment = @postincexpr
+                 | @postdecexpr
+                 | @preincexpr
+                 | @predecexpr;
+
+@assignop = @assignaddexpr
+             | @assignsubexpr
+             | @assignmulexpr
+             | @assigndivexpr
+             | @assignremexpr
+             | @assignandexpr
+             | @assignorexpr
+             | @assignxorexpr
+             | @assignlshiftexpr
+             | @assignrshiftexpr
+             | @assignurshiftexpr;
+
+@literal = @booleanliteral
+             | @integerliteral
+             | @longliteral
+             | @floatingpointliteral
+             | @doubleliteral
+             | @characterliteral
+             | @stringliteral
+             | @nullliteral;
+
+@binaryexpr = @mulexpr
+             | @divexpr
+             | @remexpr
+             | @addexpr
+             | @subexpr
+             | @lshiftexpr
+             | @rshiftexpr
+             | @urshiftexpr
+             | @andbitexpr
+             | @orbitexpr
+             | @xorbitexpr
+             | @andlogicalexpr
+             | @orlogicalexpr
+             | @ltexpr
+             | @gtexpr
+             | @leexpr
+             | @geexpr
+             | @eqexpr
+             | @neexpr
+             | @valueeqexpr
+             | @valueneexpr;
+
+@unaryexpr =   @postincexpr
+             | @postdecexpr
+             | @preincexpr
+             | @predecexpr
+             | @minusexpr
+             | @plusexpr
+             | @bitnotexpr
+             | @lognotexpr
+             | @notnullexpr;
+
+@caller =  @classinstancexpr
+         | @methodaccess
+         | @constructorinvocationstmt
+         | @superconstructorinvocationstmt;
+
+callableBinding(
+  unique int callerid: @caller ref,
+  int callee: @callable ref
+);
+
+memberRefBinding(
+  unique int id: @expr ref,
+  int callable: @callable ref
+);
+
+propertyRefGetBinding(
+  unique int id: @expr ref,
+  int getter: @callable ref
+);
+
+propertyRefFieldBinding(
+  unique int id: @expr ref,
+  int field: @field ref
+);
+
+propertyRefSetBinding(
+  unique int id: @expr ref,
+  int setter: @callable ref
+);
+
+@exprparent = @stmt | @expr | @whenbranch | @callable | @field | @fielddecl | @class | @interface | @param | @localvar | @typevariable;
+
+variableBinding(
+  unique int expr: @varaccess ref,
+  int variable: @variable ref
+);
+
+@variable = @localscopevariable | @field;
+
+@localscopevariable = @localvar | @param;
+
+localvars(
+  unique int id: @localvar,
+  string nodeName: string ref,
+  int typeid: @type ref,
+  int parentid: @localvariabledeclexpr ref
+);
+
+localvarsKotlinType(
+  unique int id: @localvar ref,
+  int kttypeid: @kt_type ref
+);
+
+@namedexprorstmt = @breakstmt
+                 | @continuestmt
+                 | @labeledstmt
+                 | @literal;
+
+namestrings(
+  string name: string ref,
+  string value: string ref,
+  unique int parent: @namedexprorstmt ref
+);
+
+/*
+ * Modules
+ */
+
+#keyset[name]
+modules(
+  unique int id: @module,
+  string name: string ref
+);
+
+isOpen(
+  int id: @module ref
+);
+
+#keyset[fileId]
+cumodule(
+  int fileId: @file ref,
+  int moduleId: @module ref
+);
+
+@directive = @requires
+           | @exports
+           | @opens
+           | @uses
+           | @provides
+
+#keyset[directive]
+directives(
+  int id: @module ref,
+  int directive: @directive ref
+);
+
+requires(
+  unique int id: @requires,
+  int target: @module ref
+);
+
+isTransitive(
+  int id: @requires ref
+);
+
+isStatic(
+  int id: @requires ref
+);
+
+exports(
+  unique int id: @exports,
+  int target: @package ref
+);
+
+exportsTo(
+  int id: @exports ref,
+  int target: @module ref
+);
+
+opens(
+  unique int id: @opens,
+  int target: @package ref
+);
+
+opensTo(
+  int id: @opens ref,
+  int target: @module ref
+);
+
+uses(
+  unique int id: @uses,
+  string serviceInterface: string ref
+);
+
+provides(
+  unique int id: @provides,
+  string serviceInterface: string ref
+);
+
+providesWith(
+  int id: @provides ref,
+  string serviceImpl: string ref
+);
+
+/*
+ * Javadoc
+ */
+
+javadoc(
+  unique int id: @javadoc
+);
+
+isNormalComment(
+  int commentid : @javadoc ref
+);
+
+isEolComment(
+  int commentid : @javadoc ref
+);
+
+hasJavadoc(
+  int documentableid: @member ref,
+  int javadocid: @javadoc ref
+);
+
+#keyset[parentid,idx]
+javadocTag(
+  unique int id: @javadocTag,
+  string name: string ref,
+  int parentid: @javadocParent ref,
+  int idx: int ref
+);
+
+#keyset[parentid,idx]
+javadocText(
+  unique int id: @javadocText,
+  string text: string ref,
+  int parentid: @javadocParent ref,
+  int idx: int ref
+);
+
+@javadocParent = @javadoc | @javadocTag;
+@javadocElement = @javadocTag | @javadocText;
+
+@classorinterface = @interface | @class;
+@classorinterfaceorpackage = @classorinterface | @package;
+@classorinterfaceorcallable = @classorinterface | @callable;
+@boundedtype = @typevariable | @wildcard;
+@reftype = @classorinterface | @array | @boundedtype | @errortype;
+@classorarray = @class | @array;
+@type = @primitive | @reftype;
+@callable = @method | @constructor;
+
+/** A program element that has a name. */
+@element = @package | @modifier | @annotation | @errortype |
+           @locatableElement;
+
+@locatableElement = @file | @primitive | @class | @interface | @method | @constructor | @param | @exception | @field |
+                    @boundedtype | @array | @localvar | @expr | @stmt | @import | @fielddecl | @kt_type | @kt_type_alias |
+                    @kt_property;
+
+@modifiable = @member_modifiable| @param | @localvar | @typevariable;
+
+@member_modifiable = @class | @interface | @method | @constructor | @field | @kt_property;
+
+@member = @method | @constructor | @field | @reftype ;
+
+/** A program element that has a location. */
+@locatable = @typebound | @javadoc | @javadocTag | @javadocText | @xmllocatable | @ktcomment |
+             @locatableElement;
+
+@top = @element | @locatable | @folder;
+
+/*
+ * XML Files
+ */
+
+xmlEncoding(
+  unique int id: @file ref,
+  string encoding: string ref
+);
+
+xmlDTDs(
+  unique int id: @xmldtd,
+  string root: string ref,
+  string publicId: string ref,
+  string systemId: string ref,
+  int fileid: @file ref
+);
+
+xmlElements(
+  unique int id: @xmlelement,
+  string name: string ref,
+  int parentid: @xmlparent ref,
+  int idx: int ref,
+  int fileid: @file ref
+);
+
+xmlAttrs(
+  unique int id: @xmlattribute,
+  int elementid: @xmlelement ref,
+  string name: string ref,
+  string value: string ref,
+  int idx: int ref,
+  int fileid: @file ref
+);
+
+xmlNs(
+  int id: @xmlnamespace,
+  string prefixName: string ref,
+  string URI: string ref,
+  int fileid: @file ref
+);
+
+xmlHasNs(
+  int elementId: @xmlnamespaceable ref,
+  int nsId: @xmlnamespace ref,
+  int fileid: @file ref
+);
+
+xmlComments(
+  unique int id: @xmlcomment,
+  string text: string ref,
+  int parentid: @xmlparent ref,
+  int fileid: @file ref
+);
+
+xmlChars(
+  unique int id: @xmlcharacters,
+  string text: string ref,
+  int parentid: @xmlparent ref,
+  int idx: int ref,
+  int isCDATA: int ref,
+  int fileid: @file ref
+);
+
+@xmlparent = @file | @xmlelement;
+@xmlnamespaceable = @xmlelement | @xmlattribute;
+
+xmllocations(
+  int xmlElement: @xmllocatable ref,
+  int location: @location_default ref
+);
+
+@xmllocatable = @xmlcharacters | @xmlelement | @xmlcomment | @xmlattribute | @xmldtd | @file | @xmlnamespace;
+
+/*
+ * configuration files with key value pairs
+ */
+
+configs(
+  unique int id: @config
+);
+
+configNames(
+  unique int id: @configName,
+  int config: @config ref,
+  string name: string ref
+);
+
+configValues(
+  unique int id: @configValue,
+  int config: @config ref,
+  string value: string ref
+);
+
+configLocations(
+  int locatable: @configLocatable ref,
+  int location: @location_default ref
+);
+
+@configLocatable = @config | @configName | @configValue;
+
+ktComments(
+  unique int id: @ktcomment,
+  int kind: int ref,
+  string text : string ref
+)
+
+ktCommentSections(
+  unique int id: @ktcommentsection,
+  int comment: @ktcomment ref,
+  string content : string ref
+)
+
+ktCommentSectionNames(
+  unique int id: @ktcommentsection ref,
+  string name : string ref
+)
+
+ktCommentSectionSubjectNames(
+  unique int id: @ktcommentsection ref,
+  string subjectname : string ref
+)
+
+#keyset[id, owner]
+ktCommentOwners(
+  int id: @ktcomment ref,
+  int owner: @top ref
+)
+
+ktExtensionFunctions(
+  unique int id: @method ref,
+  int typeid: @type ref,
+  int kttypeid: @kt_type ref
+)
+
+ktProperties(
+  unique int id: @kt_property,
+  string nodeName: string ref
+)
+
+ktPropertyGetters(
+  unique int id: @kt_property ref,
+  int getter: @method ref
+)
+
+ktPropertySetters(
+  unique int id: @kt_property ref,
+  int setter: @method ref
+)
+
+ktPropertyBackingFields(
+  unique int id: @kt_property ref,
+  int backingField: @field ref
+)
+
+ktSyntheticBody(
+  unique int id: @callable ref,
+  int kind: int ref
+  // 1: ENUM_VALUES
+  // 2: ENUM_VALUEOF
+)
+
+ktLocalFunction(
+  unique int id: @method ref
+)
+
+ktInitializerAssignment(
+  unique int id: @assignexpr ref
+)
+
+ktPropertyDelegates(
+  unique int id: @kt_property ref,
+  unique int variableId: @variable ref
+)
+
+/**
+ * If `id` is a compiler generated element, then the kind indicates the
+ * reason that the compiler generated it.
+ * See `Element.compilerGeneratedReason()` for an explanation of what
+ * each `kind` means.
+ */
+compiler_generated(
+  unique int id: @element ref,
+  int kind: int ref
+)
+
+ktFunctionOriginalNames(
+  unique int id: @method ref,
+  string name: string ref
+)
+
+ktDataClasses(
+  unique int id: @class ref
+)
diff --git a/java/downgrades/44d61b266bebf261cb027872646262e645efa059/upgrade.properties b/java/downgrades/44d61b266bebf261cb027872646262e645efa059/upgrade.properties
new file mode 100644
index 00000000000..8d5b41b6e56
--- /dev/null
+++ b/java/downgrades/44d61b266bebf261cb027872646262e645efa059/upgrade.properties
@@ -0,0 +1,3 @@
+description: Remove compilation_info
+compatibility: full
+compilation_info.rel: delete
diff --git a/java/ql/lib/upgrades/709f1d1fd04ffd9bbcf242f17b120f8a389949bd/old.dbscheme b/java/ql/lib/upgrades/709f1d1fd04ffd9bbcf242f17b120f8a389949bd/old.dbscheme
new file mode 100644
index 00000000000..709f1d1fd04
--- /dev/null
+++ b/java/ql/lib/upgrades/709f1d1fd04ffd9bbcf242f17b120f8a389949bd/old.dbscheme
@@ -0,0 +1,1240 @@
+/**
+ * An invocation of the compiler. Note that more than one file may be
+ * compiled per invocation. For example, this command compiles three
+ * source files:
+ *
+ *   javac A.java B.java C.java
+ *
+ * The `id` simply identifies the invocation, while `cwd` is the working
+ * directory from which the compiler was invoked.
+ */
+compilations(
+    /**
+     * An invocation of the compiler. Note that more than one file may
+     * be compiled per invocation. For example, this command compiles
+     * three source files:
+     *
+     *   javac A.java B.java C.java
+     */
+    unique int id : @compilation,
+    int kind: int ref,
+    string cwd : string ref,
+    string name : string ref
+);
+
+case @compilation.kind of
+   1  = @javacompilation
+|  2  = @kotlincompilation
+;
+
+compilation_started(
+    int id : @compilation ref
+)
+
+/**
+ * The arguments that were passed to the extractor for a compiler
+ * invocation. If `id` is for the compiler invocation
+ *
+ *   javac A.java B.java C.java
+ *
+ * then typically there will be rows for
+ *
+ * num | arg
+ * --- | ---
+ * 0   | *path to extractor*
+ * 1   | `--javac-args`
+ * 2   | A.java
+ * 3   | B.java
+ * 4   | C.java
+ */
+#keyset[id, num]
+compilation_args(
+    int id : @compilation ref,
+    int num : int ref,
+    string arg : string ref
+);
+
+/**
+ * The source files that are compiled by a compiler invocation.
+ * If `id` is for the compiler invocation
+ *
+ *   javac A.java B.java C.java
+ *
+ * then there will be rows for
+ *
+ * num | arg
+ * --- | ---
+ * 0   | A.java
+ * 1   | B.java
+ * 2   | C.java
+ */
+#keyset[id, num]
+compilation_compiling_files(
+    int id : @compilation ref,
+    int num : int ref,
+    int file : @file ref
+);
+
+/**
+ * For each file recorded in `compilation_compiling_files`,
+ * there will be a corresponding row in
+ * `compilation_compiling_files_completed` once extraction
+ * of that file is complete. The `result` will indicate the
+ * extraction result:
+ *
+ *     0: Successfully extracted
+ *     1: Errors were encountered, but extraction recovered
+ *     2: Errors were encountered, and extraction could not recover
+ */
+#keyset[id, num]
+compilation_compiling_files_completed(
+    int id : @compilation ref,
+    int num : int ref,
+    int result : int ref
+);
+
+/**
+ * The time taken by the extractor for a compiler invocation.
+ *
+ * For each file `num`, there will be rows for
+ *
+ * kind | seconds
+ * ---- | ---
+ * 1    | CPU seconds used by the extractor frontend
+ * 2    | Elapsed seconds during the extractor frontend
+ * 3    | CPU seconds used by the extractor backend
+ * 4    | Elapsed seconds during the extractor backend
+ */
+#keyset[id, num, kind]
+compilation_time(
+    int id : @compilation ref,
+    int num : int ref,
+    /* kind:
+       1 = frontend_cpu_seconds
+       2 = frontend_elapsed_seconds
+       3 = extractor_cpu_seconds
+       4 = extractor_elapsed_seconds
+    */
+    int kind : int ref,
+    float seconds : float ref
+);
+
+/**
+ * An error or warning generated by the extractor.
+ * The diagnostic message `diagnostic` was generated during compiler
+ * invocation `compilation`, and is the `file_number_diagnostic_number`th
+ * message generated while extracting the `file_number`th file of that
+ * invocation.
+ */
+#keyset[compilation, file_number, file_number_diagnostic_number]
+diagnostic_for(
+    unique int diagnostic : @diagnostic ref,
+    int compilation : @compilation ref,
+    int file_number : int ref,
+    int file_number_diagnostic_number : int ref
+);
+
+/**
+ * The `cpu_seconds` and `elapsed_seconds` are the CPU time and elapsed
+ * time (respectively) that the original compilation (not the extraction)
+ * took for compiler invocation `id`.
+ */
+compilation_compiler_times(
+    unique int id : @compilation ref,
+    float cpu_seconds : float ref,
+    float elapsed_seconds : float ref
+);
+
+/**
+ * If extraction was successful, then `cpu_seconds` and
+ * `elapsed_seconds` are the CPU time and elapsed time (respectively)
+ * that extraction took for compiler invocation `id`.
+ * The `result` will indicate the extraction result:
+ *
+ *     0: Successfully extracted
+ *     1: Errors were encountered, but extraction recovered
+ *     2: Errors were encountered, and extraction could not recover
+ */
+compilation_finished(
+    unique int id : @compilation ref,
+    float cpu_seconds : float ref,
+    float elapsed_seconds : float ref,
+    int result : int ref
+);
+
+diagnostics(
+    unique int id: @diagnostic,
+    string generated_by: string ref, // TODO: Sync this with the other languages?
+    int severity: int ref,
+    string error_tag: string ref,
+    string error_message: string ref,
+    string full_error_message: string ref,
+    int location: @location_default ref
+);
+
+/*
+ * External artifacts
+ */
+
+externalData(
+  int id : @externalDataElement,
+  string path : string ref,
+  int column: int ref,
+  string value : string ref
+);
+
+snapshotDate(
+  unique date snapshotDate : date ref
+);
+
+sourceLocationPrefix(
+  string prefix : string ref
+);
+
+/*
+ * Duplicate code
+ */
+
+duplicateCode(
+  unique int id : @duplication,
+  string relativePath : string ref,
+  int equivClass : int ref
+);
+
+similarCode(
+  unique int id : @similarity,
+  string relativePath : string ref,
+  int equivClass : int ref
+);
+
+@duplication_or_similarity = @duplication | @similarity
+
+tokens(
+  int id : @duplication_or_similarity ref,
+  int offset : int ref,
+  int beginLine : int ref,
+  int beginColumn : int ref,
+  int endLine : int ref,
+  int endColumn : int ref
+);
+
+/*
+ * SMAP
+ */
+
+smap_header(
+  int outputFileId: @file ref,
+  string outputFilename: string ref,
+  string defaultStratum: string ref
+);
+
+smap_files(
+  int outputFileId: @file ref,
+  string stratum: string ref,
+  int inputFileNum: int ref,
+  string inputFileName: string ref,
+  int inputFileId: @file ref
+);
+
+smap_lines(
+  int outputFileId: @file ref,
+  string stratum: string ref,
+  int inputFileNum: int ref,
+  int inputStartLine: int ref,
+  int inputLineCount: int ref,
+  int outputStartLine: int ref,
+  int outputLineIncrement: int ref
+);
+
+/*
+ * Locations and files
+ */
+
+@location = @location_default ;
+
+locations_default(
+  unique int id: @location_default,
+  int file: @file ref,
+  int beginLine: int ref,
+  int beginColumn: int ref,
+  int endLine: int ref,
+  int endColumn: int ref
+);
+
+hasLocation(
+  int locatableid: @locatable ref,
+  int id: @location ref
+);
+
+@sourceline = @locatable ;
+
+#keyset[element_id]
+numlines(
+  int element_id: @sourceline ref,
+  int num_lines: int ref,
+  int num_code: int ref,
+  int num_comment: int ref
+);
+
+files(
+  unique int id: @file,
+  string name: string ref
+);
+
+folders(
+  unique int id: @folder,
+  string name: string ref
+);
+
+@container = @folder | @file
+
+containerparent(
+  int parent: @container ref,
+  unique int child: @container ref
+);
+
+/*
+ * Java
+ */
+
+cupackage(
+  unique int id: @file ref,
+  int packageid: @package ref
+);
+
+#keyset[fileid,keyName]
+jarManifestMain(
+  int fileid: @file ref,
+  string keyName: string ref,
+  string value: string ref
+);
+
+#keyset[fileid,entryName,keyName]
+jarManifestEntries(
+  int fileid: @file ref,
+  string entryName: string ref,
+  string keyName: string ref,
+  string value: string ref
+);
+
+packages(
+  unique int id: @package,
+  string nodeName: string ref
+);
+
+primitives(
+  unique int id: @primitive,
+  string nodeName: string ref
+);
+
+modifiers(
+  unique int id: @modifier,
+  string nodeName: string ref
+);
+
+/**
+ * An errortype is used when the extractor is unable to extract a type
+ * correctly for some reason.
+ */
+error_type(
+  unique int id: @errortype
+);
+
+classes(
+  unique int id: @class,
+  string nodeName: string ref,
+  int parentid: @package ref,
+  int sourceid: @class ref
+);
+
+file_class(
+  int id: @class ref
+);
+
+class_object(
+  unique int id: @class ref,
+  unique int instance: @field ref
+);
+
+type_companion_object(
+  unique int id: @classorinterface ref,
+  unique int instance: @field ref,
+  unique int companion_object: @class ref
+);
+
+kt_nullable_types(
+  unique int id: @kt_nullable_type,
+  int classid: @reftype ref
+)
+
+kt_notnull_types(
+  unique int id: @kt_notnull_type,
+  int classid: @reftype ref
+)
+
+kt_type_alias(
+  unique int id: @kt_type_alias,
+  string name: string ref,
+  int kttypeid: @kt_type ref
+)
+
+@kt_type = @kt_nullable_type | @kt_notnull_type
+
+isRecord(
+  unique int id: @class ref
+);
+
+interfaces(
+  unique int id: @interface,
+  string nodeName: string ref,
+  int parentid: @package ref,
+  int sourceid: @interface ref
+);
+
+fielddecls(
+  unique int id: @fielddecl,
+  int parentid: @reftype ref
+);
+
+#keyset[fieldId] #keyset[fieldDeclId,pos]
+fieldDeclaredIn(
+  int fieldId: @field ref,
+  int fieldDeclId: @fielddecl ref,
+  int pos: int ref
+);
+
+fields(
+  unique int id: @field,
+  string nodeName: string ref,
+  int typeid: @type ref,
+  int parentid: @reftype ref,
+  int sourceid: @field ref
+);
+
+fieldsKotlinType(
+  unique int id: @field ref,
+  int kttypeid: @kt_type ref
+);
+
+constrs(
+  unique int id: @constructor,
+  string nodeName: string ref,
+  string signature: string ref,
+  int typeid: @type ref,
+  int parentid: @reftype ref,
+  int sourceid: @constructor ref
+);
+
+constrsKotlinType(
+  unique int id: @constructor ref,
+  int kttypeid: @kt_type ref
+);
+
+methods(
+  unique int id: @method,
+  string nodeName: string ref,
+  string signature: string ref,
+  int typeid: @type ref,
+  int parentid: @reftype ref,
+  int sourceid: @method ref
+);
+
+methodsKotlinType(
+  unique int id: @method ref,
+  int kttypeid: @kt_type ref
+);
+
+#keyset[parentid,pos]
+params(
+  unique int id: @param,
+  int typeid: @type ref,
+  int pos: int ref,
+  int parentid: @callable ref,
+  int sourceid: @param ref
+);
+
+paramsKotlinType(
+  unique int id: @param ref,
+  int kttypeid: @kt_type ref
+);
+
+paramName(
+  unique int id: @param ref,
+  string nodeName: string ref
+);
+
+isVarargsParam(
+  int param: @param ref
+);
+
+exceptions(
+  unique int id: @exception,
+  int typeid: @type ref,
+  int parentid: @callable ref
+);
+
+isAnnotType(
+  int interfaceid: @interface ref
+);
+
+isAnnotElem(
+  int methodid: @method ref
+);
+
+annotValue(
+  int parentid: @annotation ref,
+  int id2: @method ref,
+  unique int value: @expr ref
+);
+
+isEnumType(
+  int classid: @class ref
+);
+
+isEnumConst(
+  int fieldid: @field ref
+);
+
+#keyset[parentid,pos]
+typeVars(
+  unique int id: @typevariable,
+  string nodeName: string ref,
+  int pos: int ref,
+  int kind: int ref, // deprecated
+  int parentid: @classorinterfaceorcallable ref
+);
+
+wildcards(
+  unique int id: @wildcard,
+  string nodeName: string ref,
+  int kind: int ref
+);
+
+#keyset[parentid,pos]
+typeBounds(
+  unique int id: @typebound,
+  int typeid: @reftype ref,
+  int pos: int ref,
+  int parentid: @boundedtype ref
+);
+
+#keyset[parentid,pos]
+typeArgs(
+  int argumentid: @reftype ref,
+  int pos: int ref,
+  int parentid: @classorinterfaceorcallable ref
+);
+
+isParameterized(
+  int memberid: @member ref
+);
+
+isRaw(
+  int memberid: @member ref
+);
+
+erasure(
+  unique int memberid: @member ref,
+  int erasureid: @member ref
+);
+
+#keyset[classid] #keyset[parent]
+isAnonymClass(
+  int classid: @class ref,
+  int parent: @classinstancexpr ref
+);
+
+#keyset[typeid] #keyset[parent]
+isLocalClassOrInterface(
+  int typeid: @classorinterface ref,
+  int parent: @localtypedeclstmt ref
+);
+
+isDefConstr(
+  int constructorid: @constructor ref
+);
+
+#keyset[exprId]
+lambdaKind(
+  int exprId: @lambdaexpr ref,
+  int bodyKind: int ref
+);
+
+arrays(
+  unique int id: @array,
+  string nodeName: string ref,
+  int elementtypeid: @type ref,
+  int dimension: int ref,
+  int componenttypeid: @type ref
+);
+
+enclInReftype(
+  unique int child: @reftype ref,
+  int parent: @reftype ref
+);
+
+extendsReftype(
+  int id1: @reftype ref,
+  int id2: @classorinterface ref
+);
+
+implInterface(
+  int id1: @classorarray ref,
+  int id2: @interface ref
+);
+
+permits(
+  int id1: @classorinterface ref,
+  int id2: @classorinterface ref
+);
+
+hasModifier(
+  int id1: @modifiable ref,
+  int id2: @modifier ref
+);
+
+imports(
+  unique int id: @import,
+  int holder: @classorinterfaceorpackage ref,
+  string name: string ref,
+  int kind: int ref
+);
+
+#keyset[parent,idx]
+stmts(
+  unique int id: @stmt,
+  int kind: int ref,
+  int parent: @stmtparent ref,
+  int idx: int ref,
+  int bodydecl: @callable ref
+);
+
+@stmtparent = @callable | @stmt | @switchexpr | @whenexpr| @stmtexpr;
+
+case @stmt.kind of
+  0 = @block
+| 1 = @ifstmt
+| 2 = @forstmt
+| 3 = @enhancedforstmt
+| 4 = @whilestmt
+| 5 = @dostmt
+| 6 = @trystmt
+| 7 = @switchstmt
+| 8 = @synchronizedstmt
+| 9 = @returnstmt
+| 10 = @throwstmt
+| 11 = @breakstmt
+| 12 = @continuestmt
+| 13 = @emptystmt
+| 14 = @exprstmt
+| 15 = @labeledstmt
+| 16 = @assertstmt
+| 17 = @localvariabledeclstmt
+| 18 = @localtypedeclstmt
+| 19 = @constructorinvocationstmt
+| 20 = @superconstructorinvocationstmt
+| 21 = @case
+| 22 = @catchclause
+| 23 = @yieldstmt
+| 24 = @errorstmt
+| 25 = @whenbranch
+;
+
+#keyset[parent,idx]
+exprs(
+  unique int id: @expr,
+  int kind: int ref,
+  int typeid: @type ref,
+  int parent: @exprparent ref,
+  int idx: int ref
+);
+
+exprsKotlinType(
+  unique int id: @expr ref,
+  int kttypeid: @kt_type ref
+);
+
+callableEnclosingExpr(
+  unique int id: @expr ref,
+  int callable_id: @callable ref
+);
+
+statementEnclosingExpr(
+  unique int id: @expr ref,
+  int statement_id: @stmt ref
+);
+
+isParenthesized(
+  unique int id: @expr ref,
+  int parentheses: int ref
+);
+
+case @expr.kind of
+   1  = @arrayaccess
+|  2  = @arraycreationexpr
+|  3  = @arrayinit
+|  4  = @assignexpr
+|  5  = @assignaddexpr
+|  6  = @assignsubexpr
+|  7  = @assignmulexpr
+|  8  = @assigndivexpr
+|  9  = @assignremexpr
+| 10  = @assignandexpr
+| 11  = @assignorexpr
+| 12  = @assignxorexpr
+| 13  = @assignlshiftexpr
+| 14  = @assignrshiftexpr
+| 15  = @assignurshiftexpr
+| 16  = @booleanliteral
+| 17  = @integerliteral
+| 18  = @longliteral
+| 19  = @floatingpointliteral
+| 20  = @doubleliteral
+| 21  = @characterliteral
+| 22  = @stringliteral
+| 23  = @nullliteral
+| 24  = @mulexpr
+| 25  = @divexpr
+| 26  = @remexpr
+| 27  = @addexpr
+| 28  = @subexpr
+| 29  = @lshiftexpr
+| 30  = @rshiftexpr
+| 31  = @urshiftexpr
+| 32  = @andbitexpr
+| 33  = @orbitexpr
+| 34  = @xorbitexpr
+| 35  = @andlogicalexpr
+| 36  = @orlogicalexpr
+| 37  = @ltexpr
+| 38  = @gtexpr
+| 39  = @leexpr
+| 40  = @geexpr
+| 41  = @eqexpr
+| 42  = @neexpr
+| 43  = @postincexpr
+| 44  = @postdecexpr
+| 45  = @preincexpr
+| 46  = @predecexpr
+| 47  = @minusexpr
+| 48  = @plusexpr
+| 49  = @bitnotexpr
+| 50  = @lognotexpr
+| 51  = @castexpr
+| 52  = @newexpr
+| 53  = @conditionalexpr
+| 54  = @parexpr         // deprecated
+| 55  = @instanceofexpr
+| 56  = @localvariabledeclexpr
+| 57  = @typeliteral
+| 58  = @thisaccess
+| 59  = @superaccess
+| 60  = @varaccess
+| 61  = @methodaccess
+| 62  = @unannotatedtypeaccess
+| 63  = @arraytypeaccess
+| 64  = @packageaccess
+| 65  = @wildcardtypeaccess
+| 66  = @declannotation
+| 67  = @uniontypeaccess
+| 68  = @lambdaexpr
+| 69  = @memberref
+| 70  = @annotatedtypeaccess
+| 71  = @typeannotation
+| 72  = @intersectiontypeaccess
+| 73  = @switchexpr
+| 74  = @errorexpr
+| 75  = @whenexpr
+| 76  = @getclassexpr
+| 77  = @safecastexpr
+| 78  = @implicitcastexpr
+| 79  = @implicitnotnullexpr
+| 80  = @implicitcoerciontounitexpr
+| 81  = @notinstanceofexpr
+| 82  = @stmtexpr
+| 83  = @stringtemplateexpr
+| 84  = @notnullexpr
+| 85  = @unsafecoerceexpr
+| 86  = @valueeqexpr
+| 87  = @valueneexpr
+| 88  = @propertyref
+;
+
+/** Holds if this `when` expression was written as an `if` expression. */
+when_if(unique int id: @whenexpr ref);
+
+/** Holds if this `when` branch was written as an `else` branch. */
+when_branch_else(unique int id: @whenbranch ref);
+
+@classinstancexpr = @newexpr | @lambdaexpr | @memberref | @propertyref
+
+@annotation = @declannotation | @typeannotation
+@typeaccess = @unannotatedtypeaccess | @annotatedtypeaccess
+
+@assignment = @assignexpr
+             | @assignop;
+
+@unaryassignment = @postincexpr
+                 | @postdecexpr
+                 | @preincexpr
+                 | @predecexpr;
+
+@assignop = @assignaddexpr
+             | @assignsubexpr
+             | @assignmulexpr
+             | @assigndivexpr
+             | @assignremexpr
+             | @assignandexpr
+             | @assignorexpr
+             | @assignxorexpr
+             | @assignlshiftexpr
+             | @assignrshiftexpr
+             | @assignurshiftexpr;
+
+@literal = @booleanliteral
+             | @integerliteral
+             | @longliteral
+             | @floatingpointliteral
+             | @doubleliteral
+             | @characterliteral
+             | @stringliteral
+             | @nullliteral;
+
+@binaryexpr = @mulexpr
+             | @divexpr
+             | @remexpr
+             | @addexpr
+             | @subexpr
+             | @lshiftexpr
+             | @rshiftexpr
+             | @urshiftexpr
+             | @andbitexpr
+             | @orbitexpr
+             | @xorbitexpr
+             | @andlogicalexpr
+             | @orlogicalexpr
+             | @ltexpr
+             | @gtexpr
+             | @leexpr
+             | @geexpr
+             | @eqexpr
+             | @neexpr
+             | @valueeqexpr
+             | @valueneexpr;
+
+@unaryexpr =   @postincexpr
+             | @postdecexpr
+             | @preincexpr
+             | @predecexpr
+             | @minusexpr
+             | @plusexpr
+             | @bitnotexpr
+             | @lognotexpr
+             | @notnullexpr;
+
+@caller =  @classinstancexpr
+         | @methodaccess
+         | @constructorinvocationstmt
+         | @superconstructorinvocationstmt;
+
+callableBinding(
+  unique int callerid: @caller ref,
+  int callee: @callable ref
+);
+
+memberRefBinding(
+  unique int id: @expr ref,
+  int callable: @callable ref
+);
+
+propertyRefGetBinding(
+  unique int id: @expr ref,
+  int getter: @callable ref
+);
+
+propertyRefFieldBinding(
+  unique int id: @expr ref,
+  int field: @field ref
+);
+
+propertyRefSetBinding(
+  unique int id: @expr ref,
+  int setter: @callable ref
+);
+
+@exprparent = @stmt | @expr | @whenbranch | @callable | @field | @fielddecl | @class | @interface | @param | @localvar | @typevariable;
+
+variableBinding(
+  unique int expr: @varaccess ref,
+  int variable: @variable ref
+);
+
+@variable = @localscopevariable | @field;
+
+@localscopevariable = @localvar | @param;
+
+localvars(
+  unique int id: @localvar,
+  string nodeName: string ref,
+  int typeid: @type ref,
+  int parentid: @localvariabledeclexpr ref
+);
+
+localvarsKotlinType(
+  unique int id: @localvar ref,
+  int kttypeid: @kt_type ref
+);
+
+@namedexprorstmt = @breakstmt
+                 | @continuestmt
+                 | @labeledstmt
+                 | @literal;
+
+namestrings(
+  string name: string ref,
+  string value: string ref,
+  unique int parent: @namedexprorstmt ref
+);
+
+/*
+ * Modules
+ */
+
+#keyset[name]
+modules(
+  unique int id: @module,
+  string name: string ref
+);
+
+isOpen(
+  int id: @module ref
+);
+
+#keyset[fileId]
+cumodule(
+  int fileId: @file ref,
+  int moduleId: @module ref
+);
+
+@directive = @requires
+           | @exports
+           | @opens
+           | @uses
+           | @provides
+
+#keyset[directive]
+directives(
+  int id: @module ref,
+  int directive: @directive ref
+);
+
+requires(
+  unique int id: @requires,
+  int target: @module ref
+);
+
+isTransitive(
+  int id: @requires ref
+);
+
+isStatic(
+  int id: @requires ref
+);
+
+exports(
+  unique int id: @exports,
+  int target: @package ref
+);
+
+exportsTo(
+  int id: @exports ref,
+  int target: @module ref
+);
+
+opens(
+  unique int id: @opens,
+  int target: @package ref
+);
+
+opensTo(
+  int id: @opens ref,
+  int target: @module ref
+);
+
+uses(
+  unique int id: @uses,
+  string serviceInterface: string ref
+);
+
+provides(
+  unique int id: @provides,
+  string serviceInterface: string ref
+);
+
+providesWith(
+  int id: @provides ref,
+  string serviceImpl: string ref
+);
+
+/*
+ * Javadoc
+ */
+
+javadoc(
+  unique int id: @javadoc
+);
+
+isNormalComment(
+  int commentid : @javadoc ref
+);
+
+isEolComment(
+  int commentid : @javadoc ref
+);
+
+hasJavadoc(
+  int documentableid: @member ref,
+  int javadocid: @javadoc ref
+);
+
+#keyset[parentid,idx]
+javadocTag(
+  unique int id: @javadocTag,
+  string name: string ref,
+  int parentid: @javadocParent ref,
+  int idx: int ref
+);
+
+#keyset[parentid,idx]
+javadocText(
+  unique int id: @javadocText,
+  string text: string ref,
+  int parentid: @javadocParent ref,
+  int idx: int ref
+);
+
+@javadocParent = @javadoc | @javadocTag;
+@javadocElement = @javadocTag | @javadocText;
+
+@classorinterface = @interface | @class;
+@classorinterfaceorpackage = @classorinterface | @package;
+@classorinterfaceorcallable = @classorinterface | @callable;
+@boundedtype = @typevariable | @wildcard;
+@reftype = @classorinterface | @array | @boundedtype | @errortype;
+@classorarray = @class | @array;
+@type = @primitive | @reftype;
+@callable = @method | @constructor;
+
+/** A program element that has a name. */
+@element = @package | @modifier | @annotation | @errortype |
+           @locatableElement;
+
+@locatableElement = @file | @primitive | @class | @interface | @method | @constructor | @param | @exception | @field |
+                    @boundedtype | @array | @localvar | @expr | @stmt | @import | @fielddecl | @kt_type | @kt_type_alias |
+                    @kt_property;
+
+@modifiable = @member_modifiable| @param | @localvar | @typevariable;
+
+@member_modifiable = @class | @interface | @method | @constructor | @field | @kt_property;
+
+@member = @method | @constructor | @field | @reftype ;
+
+/** A program element that has a location. */
+@locatable = @typebound | @javadoc | @javadocTag | @javadocText | @xmllocatable | @ktcomment |
+             @locatableElement;
+
+@top = @element | @locatable | @folder;
+
+/*
+ * XML Files
+ */
+
+xmlEncoding(
+  unique int id: @file ref,
+  string encoding: string ref
+);
+
+xmlDTDs(
+  unique int id: @xmldtd,
+  string root: string ref,
+  string publicId: string ref,
+  string systemId: string ref,
+  int fileid: @file ref
+);
+
+xmlElements(
+  unique int id: @xmlelement,
+  string name: string ref,
+  int parentid: @xmlparent ref,
+  int idx: int ref,
+  int fileid: @file ref
+);
+
+xmlAttrs(
+  unique int id: @xmlattribute,
+  int elementid: @xmlelement ref,
+  string name: string ref,
+  string value: string ref,
+  int idx: int ref,
+  int fileid: @file ref
+);
+
+xmlNs(
+  int id: @xmlnamespace,
+  string prefixName: string ref,
+  string URI: string ref,
+  int fileid: @file ref
+);
+
+xmlHasNs(
+  int elementId: @xmlnamespaceable ref,
+  int nsId: @xmlnamespace ref,
+  int fileid: @file ref
+);
+
+xmlComments(
+  unique int id: @xmlcomment,
+  string text: string ref,
+  int parentid: @xmlparent ref,
+  int fileid: @file ref
+);
+
+xmlChars(
+  unique int id: @xmlcharacters,
+  string text: string ref,
+  int parentid: @xmlparent ref,
+  int idx: int ref,
+  int isCDATA: int ref,
+  int fileid: @file ref
+);
+
+@xmlparent = @file | @xmlelement;
+@xmlnamespaceable = @xmlelement | @xmlattribute;
+
+xmllocations(
+  int xmlElement: @xmllocatable ref,
+  int location: @location_default ref
+);
+
+@xmllocatable = @xmlcharacters | @xmlelement | @xmlcomment | @xmlattribute | @xmldtd | @file | @xmlnamespace;
+
+/*
+ * configuration files with key value pairs
+ */
+
+configs(
+  unique int id: @config
+);
+
+configNames(
+  unique int id: @configName,
+  int config: @config ref,
+  string name: string ref
+);
+
+configValues(
+  unique int id: @configValue,
+  int config: @config ref,
+  string value: string ref
+);
+
+configLocations(
+  int locatable: @configLocatable ref,
+  int location: @location_default ref
+);
+
+@configLocatable = @config | @configName | @configValue;
+
+ktComments(
+  unique int id: @ktcomment,
+  int kind: int ref,
+  string text : string ref
+)
+
+ktCommentSections(
+  unique int id: @ktcommentsection,
+  int comment: @ktcomment ref,
+  string content : string ref
+)
+
+ktCommentSectionNames(
+  unique int id: @ktcommentsection ref,
+  string name : string ref
+)
+
+ktCommentSectionSubjectNames(
+  unique int id: @ktcommentsection ref,
+  string subjectname : string ref
+)
+
+#keyset[id, owner]
+ktCommentOwners(
+  int id: @ktcomment ref,
+  int owner: @top ref
+)
+
+ktExtensionFunctions(
+  unique int id: @method ref,
+  int typeid: @type ref,
+  int kttypeid: @kt_type ref
+)
+
+ktProperties(
+  unique int id: @kt_property,
+  string nodeName: string ref
+)
+
+ktPropertyGetters(
+  unique int id: @kt_property ref,
+  int getter: @method ref
+)
+
+ktPropertySetters(
+  unique int id: @kt_property ref,
+  int setter: @method ref
+)
+
+ktPropertyBackingFields(
+  unique int id: @kt_property ref,
+  int backingField: @field ref
+)
+
+ktSyntheticBody(
+  unique int id: @callable ref,
+  int kind: int ref
+  // 1: ENUM_VALUES
+  // 2: ENUM_VALUEOF
+)
+
+ktLocalFunction(
+  unique int id: @method ref
+)
+
+ktInitializerAssignment(
+  unique int id: @assignexpr ref
+)
+
+ktPropertyDelegates(
+  unique int id: @kt_property ref,
+  unique int variableId: @variable ref
+)
+
+/**
+ * If `id` is a compiler generated element, then the kind indicates the
+ * reason that the compiler generated it.
+ * See `Element.compilerGeneratedReason()` for an explanation of what
+ * each `kind` means.
+ */
+compiler_generated(
+  unique int id: @element ref,
+  int kind: int ref
+)
+
+ktFunctionOriginalNames(
+  unique int id: @method ref,
+  string name: string ref
+)
+
+ktDataClasses(
+  unique int id: @class ref
+)
diff --git a/java/ql/lib/upgrades/709f1d1fd04ffd9bbcf242f17b120f8a389949bd/semmlecode.dbscheme b/java/ql/lib/upgrades/709f1d1fd04ffd9bbcf242f17b120f8a389949bd/semmlecode.dbscheme
new file mode 100644
index 00000000000..44d61b266be
--- /dev/null
+++ b/java/ql/lib/upgrades/709f1d1fd04ffd9bbcf242f17b120f8a389949bd/semmlecode.dbscheme
@@ -0,0 +1,1246 @@
+/**
+ * An invocation of the compiler. Note that more than one file may be
+ * compiled per invocation. For example, this command compiles three
+ * source files:
+ *
+ *   javac A.java B.java C.java
+ *
+ * The `id` simply identifies the invocation, while `cwd` is the working
+ * directory from which the compiler was invoked.
+ */
+compilations(
+    /**
+     * An invocation of the compiler. Note that more than one file may
+     * be compiled per invocation. For example, this command compiles
+     * three source files:
+     *
+     *   javac A.java B.java C.java
+     */
+    unique int id : @compilation,
+    int kind: int ref,
+    string cwd : string ref,
+    string name : string ref
+);
+
+case @compilation.kind of
+   1  = @javacompilation
+|  2  = @kotlincompilation
+;
+
+compilation_started(
+    int id : @compilation ref
+)
+
+compilation_info(
+    int id : @compilation ref,
+    string info_key: string ref,
+    string info_value: string ref
+)
+
+/**
+ * The arguments that were passed to the extractor for a compiler
+ * invocation. If `id` is for the compiler invocation
+ *
+ *   javac A.java B.java C.java
+ *
+ * then typically there will be rows for
+ *
+ * num | arg
+ * --- | ---
+ * 0   | *path to extractor*
+ * 1   | `--javac-args`
+ * 2   | A.java
+ * 3   | B.java
+ * 4   | C.java
+ */
+#keyset[id, num]
+compilation_args(
+    int id : @compilation ref,
+    int num : int ref,
+    string arg : string ref
+);
+
+/**
+ * The source files that are compiled by a compiler invocation.
+ * If `id` is for the compiler invocation
+ *
+ *   javac A.java B.java C.java
+ *
+ * then there will be rows for
+ *
+ * num | arg
+ * --- | ---
+ * 0   | A.java
+ * 1   | B.java
+ * 2   | C.java
+ */
+#keyset[id, num]
+compilation_compiling_files(
+    int id : @compilation ref,
+    int num : int ref,
+    int file : @file ref
+);
+
+/**
+ * For each file recorded in `compilation_compiling_files`,
+ * there will be a corresponding row in
+ * `compilation_compiling_files_completed` once extraction
+ * of that file is complete. The `result` will indicate the
+ * extraction result:
+ *
+ *     0: Successfully extracted
+ *     1: Errors were encountered, but extraction recovered
+ *     2: Errors were encountered, and extraction could not recover
+ */
+#keyset[id, num]
+compilation_compiling_files_completed(
+    int id : @compilation ref,
+    int num : int ref,
+    int result : int ref
+);
+
+/**
+ * The time taken by the extractor for a compiler invocation.
+ *
+ * For each file `num`, there will be rows for
+ *
+ * kind | seconds
+ * ---- | ---
+ * 1    | CPU seconds used by the extractor frontend
+ * 2    | Elapsed seconds during the extractor frontend
+ * 3    | CPU seconds used by the extractor backend
+ * 4    | Elapsed seconds during the extractor backend
+ */
+#keyset[id, num, kind]
+compilation_time(
+    int id : @compilation ref,
+    int num : int ref,
+    /* kind:
+       1 = frontend_cpu_seconds
+       2 = frontend_elapsed_seconds
+       3 = extractor_cpu_seconds
+       4 = extractor_elapsed_seconds
+    */
+    int kind : int ref,
+    float seconds : float ref
+);
+
+/**
+ * An error or warning generated by the extractor.
+ * The diagnostic message `diagnostic` was generated during compiler
+ * invocation `compilation`, and is the `file_number_diagnostic_number`th
+ * message generated while extracting the `file_number`th file of that
+ * invocation.
+ */
+#keyset[compilation, file_number, file_number_diagnostic_number]
+diagnostic_for(
+    unique int diagnostic : @diagnostic ref,
+    int compilation : @compilation ref,
+    int file_number : int ref,
+    int file_number_diagnostic_number : int ref
+);
+
+/**
+ * The `cpu_seconds` and `elapsed_seconds` are the CPU time and elapsed
+ * time (respectively) that the original compilation (not the extraction)
+ * took for compiler invocation `id`.
+ */
+compilation_compiler_times(
+    unique int id : @compilation ref,
+    float cpu_seconds : float ref,
+    float elapsed_seconds : float ref
+);
+
+/**
+ * If extraction was successful, then `cpu_seconds` and
+ * `elapsed_seconds` are the CPU time and elapsed time (respectively)
+ * that extraction took for compiler invocation `id`.
+ * The `result` will indicate the extraction result:
+ *
+ *     0: Successfully extracted
+ *     1: Errors were encountered, but extraction recovered
+ *     2: Errors were encountered, and extraction could not recover
+ */
+compilation_finished(
+    unique int id : @compilation ref,
+    float cpu_seconds : float ref,
+    float elapsed_seconds : float ref,
+    int result : int ref
+);
+
+diagnostics(
+    unique int id: @diagnostic,
+    string generated_by: string ref, // TODO: Sync this with the other languages?
+    int severity: int ref,
+    string error_tag: string ref,
+    string error_message: string ref,
+    string full_error_message: string ref,
+    int location: @location_default ref
+);
+
+/*
+ * External artifacts
+ */
+
+externalData(
+  int id : @externalDataElement,
+  string path : string ref,
+  int column: int ref,
+  string value : string ref
+);
+
+snapshotDate(
+  unique date snapshotDate : date ref
+);
+
+sourceLocationPrefix(
+  string prefix : string ref
+);
+
+/*
+ * Duplicate code
+ */
+
+duplicateCode(
+  unique int id : @duplication,
+  string relativePath : string ref,
+  int equivClass : int ref
+);
+
+similarCode(
+  unique int id : @similarity,
+  string relativePath : string ref,
+  int equivClass : int ref
+);
+
+@duplication_or_similarity = @duplication | @similarity
+
+tokens(
+  int id : @duplication_or_similarity ref,
+  int offset : int ref,
+  int beginLine : int ref,
+  int beginColumn : int ref,
+  int endLine : int ref,
+  int endColumn : int ref
+);
+
+/*
+ * SMAP
+ */
+
+smap_header(
+  int outputFileId: @file ref,
+  string outputFilename: string ref,
+  string defaultStratum: string ref
+);
+
+smap_files(
+  int outputFileId: @file ref,
+  string stratum: string ref,
+  int inputFileNum: int ref,
+  string inputFileName: string ref,
+  int inputFileId: @file ref
+);
+
+smap_lines(
+  int outputFileId: @file ref,
+  string stratum: string ref,
+  int inputFileNum: int ref,
+  int inputStartLine: int ref,
+  int inputLineCount: int ref,
+  int outputStartLine: int ref,
+  int outputLineIncrement: int ref
+);
+
+/*
+ * Locations and files
+ */
+
+@location = @location_default ;
+
+locations_default(
+  unique int id: @location_default,
+  int file: @file ref,
+  int beginLine: int ref,
+  int beginColumn: int ref,
+  int endLine: int ref,
+  int endColumn: int ref
+);
+
+hasLocation(
+  int locatableid: @locatable ref,
+  int id: @location ref
+);
+
+@sourceline = @locatable ;
+
+#keyset[element_id]
+numlines(
+  int element_id: @sourceline ref,
+  int num_lines: int ref,
+  int num_code: int ref,
+  int num_comment: int ref
+);
+
+files(
+  unique int id: @file,
+  string name: string ref
+);
+
+folders(
+  unique int id: @folder,
+  string name: string ref
+);
+
+@container = @folder | @file
+
+containerparent(
+  int parent: @container ref,
+  unique int child: @container ref
+);
+
+/*
+ * Java
+ */
+
+cupackage(
+  unique int id: @file ref,
+  int packageid: @package ref
+);
+
+#keyset[fileid,keyName]
+jarManifestMain(
+  int fileid: @file ref,
+  string keyName: string ref,
+  string value: string ref
+);
+
+#keyset[fileid,entryName,keyName]
+jarManifestEntries(
+  int fileid: @file ref,
+  string entryName: string ref,
+  string keyName: string ref,
+  string value: string ref
+);
+
+packages(
+  unique int id: @package,
+  string nodeName: string ref
+);
+
+primitives(
+  unique int id: @primitive,
+  string nodeName: string ref
+);
+
+modifiers(
+  unique int id: @modifier,
+  string nodeName: string ref
+);
+
+/**
+ * An errortype is used when the extractor is unable to extract a type
+ * correctly for some reason.
+ */
+error_type(
+  unique int id: @errortype
+);
+
+classes(
+  unique int id: @class,
+  string nodeName: string ref,
+  int parentid: @package ref,
+  int sourceid: @class ref
+);
+
+file_class(
+  int id: @class ref
+);
+
+class_object(
+  unique int id: @class ref,
+  unique int instance: @field ref
+);
+
+type_companion_object(
+  unique int id: @classorinterface ref,
+  unique int instance: @field ref,
+  unique int companion_object: @class ref
+);
+
+kt_nullable_types(
+  unique int id: @kt_nullable_type,
+  int classid: @reftype ref
+)
+
+kt_notnull_types(
+  unique int id: @kt_notnull_type,
+  int classid: @reftype ref
+)
+
+kt_type_alias(
+  unique int id: @kt_type_alias,
+  string name: string ref,
+  int kttypeid: @kt_type ref
+)
+
+@kt_type = @kt_nullable_type | @kt_notnull_type
+
+isRecord(
+  unique int id: @class ref
+);
+
+interfaces(
+  unique int id: @interface,
+  string nodeName: string ref,
+  int parentid: @package ref,
+  int sourceid: @interface ref
+);
+
+fielddecls(
+  unique int id: @fielddecl,
+  int parentid: @reftype ref
+);
+
+#keyset[fieldId] #keyset[fieldDeclId,pos]
+fieldDeclaredIn(
+  int fieldId: @field ref,
+  int fieldDeclId: @fielddecl ref,
+  int pos: int ref
+);
+
+fields(
+  unique int id: @field,
+  string nodeName: string ref,
+  int typeid: @type ref,
+  int parentid: @reftype ref,
+  int sourceid: @field ref
+);
+
+fieldsKotlinType(
+  unique int id: @field ref,
+  int kttypeid: @kt_type ref
+);
+
+constrs(
+  unique int id: @constructor,
+  string nodeName: string ref,
+  string signature: string ref,
+  int typeid: @type ref,
+  int parentid: @reftype ref,
+  int sourceid: @constructor ref
+);
+
+constrsKotlinType(
+  unique int id: @constructor ref,
+  int kttypeid: @kt_type ref
+);
+
+methods(
+  unique int id: @method,
+  string nodeName: string ref,
+  string signature: string ref,
+  int typeid: @type ref,
+  int parentid: @reftype ref,
+  int sourceid: @method ref
+);
+
+methodsKotlinType(
+  unique int id: @method ref,
+  int kttypeid: @kt_type ref
+);
+
+#keyset[parentid,pos]
+params(
+  unique int id: @param,
+  int typeid: @type ref,
+  int pos: int ref,
+  int parentid: @callable ref,
+  int sourceid: @param ref
+);
+
+paramsKotlinType(
+  unique int id: @param ref,
+  int kttypeid: @kt_type ref
+);
+
+paramName(
+  unique int id: @param ref,
+  string nodeName: string ref
+);
+
+isVarargsParam(
+  int param: @param ref
+);
+
+exceptions(
+  unique int id: @exception,
+  int typeid: @type ref,
+  int parentid: @callable ref
+);
+
+isAnnotType(
+  int interfaceid: @interface ref
+);
+
+isAnnotElem(
+  int methodid: @method ref
+);
+
+annotValue(
+  int parentid: @annotation ref,
+  int id2: @method ref,
+  unique int value: @expr ref
+);
+
+isEnumType(
+  int classid: @class ref
+);
+
+isEnumConst(
+  int fieldid: @field ref
+);
+
+#keyset[parentid,pos]
+typeVars(
+  unique int id: @typevariable,
+  string nodeName: string ref,
+  int pos: int ref,
+  int kind: int ref, // deprecated
+  int parentid: @classorinterfaceorcallable ref
+);
+
+wildcards(
+  unique int id: @wildcard,
+  string nodeName: string ref,
+  int kind: int ref
+);
+
+#keyset[parentid,pos]
+typeBounds(
+  unique int id: @typebound,
+  int typeid: @reftype ref,
+  int pos: int ref,
+  int parentid: @boundedtype ref
+);
+
+#keyset[parentid,pos]
+typeArgs(
+  int argumentid: @reftype ref,
+  int pos: int ref,
+  int parentid: @classorinterfaceorcallable ref
+);
+
+isParameterized(
+  int memberid: @member ref
+);
+
+isRaw(
+  int memberid: @member ref
+);
+
+erasure(
+  unique int memberid: @member ref,
+  int erasureid: @member ref
+);
+
+#keyset[classid] #keyset[parent]
+isAnonymClass(
+  int classid: @class ref,
+  int parent: @classinstancexpr ref
+);
+
+#keyset[typeid] #keyset[parent]
+isLocalClassOrInterface(
+  int typeid: @classorinterface ref,
+  int parent: @localtypedeclstmt ref
+);
+
+isDefConstr(
+  int constructorid: @constructor ref
+);
+
+#keyset[exprId]
+lambdaKind(
+  int exprId: @lambdaexpr ref,
+  int bodyKind: int ref
+);
+
+arrays(
+  unique int id: @array,
+  string nodeName: string ref,
+  int elementtypeid: @type ref,
+  int dimension: int ref,
+  int componenttypeid: @type ref
+);
+
+enclInReftype(
+  unique int child: @reftype ref,
+  int parent: @reftype ref
+);
+
+extendsReftype(
+  int id1: @reftype ref,
+  int id2: @classorinterface ref
+);
+
+implInterface(
+  int id1: @classorarray ref,
+  int id2: @interface ref
+);
+
+permits(
+  int id1: @classorinterface ref,
+  int id2: @classorinterface ref
+);
+
+hasModifier(
+  int id1: @modifiable ref,
+  int id2: @modifier ref
+);
+
+imports(
+  unique int id: @import,
+  int holder: @classorinterfaceorpackage ref,
+  string name: string ref,
+  int kind: int ref
+);
+
+#keyset[parent,idx]
+stmts(
+  unique int id: @stmt,
+  int kind: int ref,
+  int parent: @stmtparent ref,
+  int idx: int ref,
+  int bodydecl: @callable ref
+);
+
+@stmtparent = @callable | @stmt | @switchexpr | @whenexpr| @stmtexpr;
+
+case @stmt.kind of
+  0 = @block
+| 1 = @ifstmt
+| 2 = @forstmt
+| 3 = @enhancedforstmt
+| 4 = @whilestmt
+| 5 = @dostmt
+| 6 = @trystmt
+| 7 = @switchstmt
+| 8 = @synchronizedstmt
+| 9 = @returnstmt
+| 10 = @throwstmt
+| 11 = @breakstmt
+| 12 = @continuestmt
+| 13 = @emptystmt
+| 14 = @exprstmt
+| 15 = @labeledstmt
+| 16 = @assertstmt
+| 17 = @localvariabledeclstmt
+| 18 = @localtypedeclstmt
+| 19 = @constructorinvocationstmt
+| 20 = @superconstructorinvocationstmt
+| 21 = @case
+| 22 = @catchclause
+| 23 = @yieldstmt
+| 24 = @errorstmt
+| 25 = @whenbranch
+;
+
+#keyset[parent,idx]
+exprs(
+  unique int id: @expr,
+  int kind: int ref,
+  int typeid: @type ref,
+  int parent: @exprparent ref,
+  int idx: int ref
+);
+
+exprsKotlinType(
+  unique int id: @expr ref,
+  int kttypeid: @kt_type ref
+);
+
+callableEnclosingExpr(
+  unique int id: @expr ref,
+  int callable_id: @callable ref
+);
+
+statementEnclosingExpr(
+  unique int id: @expr ref,
+  int statement_id: @stmt ref
+);
+
+isParenthesized(
+  unique int id: @expr ref,
+  int parentheses: int ref
+);
+
+case @expr.kind of
+   1  = @arrayaccess
+|  2  = @arraycreationexpr
+|  3  = @arrayinit
+|  4  = @assignexpr
+|  5  = @assignaddexpr
+|  6  = @assignsubexpr
+|  7  = @assignmulexpr
+|  8  = @assigndivexpr
+|  9  = @assignremexpr
+| 10  = @assignandexpr
+| 11  = @assignorexpr
+| 12  = @assignxorexpr
+| 13  = @assignlshiftexpr
+| 14  = @assignrshiftexpr
+| 15  = @assignurshiftexpr
+| 16  = @booleanliteral
+| 17  = @integerliteral
+| 18  = @longliteral
+| 19  = @floatingpointliteral
+| 20  = @doubleliteral
+| 21  = @characterliteral
+| 22  = @stringliteral
+| 23  = @nullliteral
+| 24  = @mulexpr
+| 25  = @divexpr
+| 26  = @remexpr
+| 27  = @addexpr
+| 28  = @subexpr
+| 29  = @lshiftexpr
+| 30  = @rshiftexpr
+| 31  = @urshiftexpr
+| 32  = @andbitexpr
+| 33  = @orbitexpr
+| 34  = @xorbitexpr
+| 35  = @andlogicalexpr
+| 36  = @orlogicalexpr
+| 37  = @ltexpr
+| 38  = @gtexpr
+| 39  = @leexpr
+| 40  = @geexpr
+| 41  = @eqexpr
+| 42  = @neexpr
+| 43  = @postincexpr
+| 44  = @postdecexpr
+| 45  = @preincexpr
+| 46  = @predecexpr
+| 47  = @minusexpr
+| 48  = @plusexpr
+| 49  = @bitnotexpr
+| 50  = @lognotexpr
+| 51  = @castexpr
+| 52  = @newexpr
+| 53  = @conditionalexpr
+| 54  = @parexpr         // deprecated
+| 55  = @instanceofexpr
+| 56  = @localvariabledeclexpr
+| 57  = @typeliteral
+| 58  = @thisaccess
+| 59  = @superaccess
+| 60  = @varaccess
+| 61  = @methodaccess
+| 62  = @unannotatedtypeaccess
+| 63  = @arraytypeaccess
+| 64  = @packageaccess
+| 65  = @wildcardtypeaccess
+| 66  = @declannotation
+| 67  = @uniontypeaccess
+| 68  = @lambdaexpr
+| 69  = @memberref
+| 70  = @annotatedtypeaccess
+| 71  = @typeannotation
+| 72  = @intersectiontypeaccess
+| 73  = @switchexpr
+| 74  = @errorexpr
+| 75  = @whenexpr
+| 76  = @getclassexpr
+| 77  = @safecastexpr
+| 78  = @implicitcastexpr
+| 79  = @implicitnotnullexpr
+| 80  = @implicitcoerciontounitexpr
+| 81  = @notinstanceofexpr
+| 82  = @stmtexpr
+| 83  = @stringtemplateexpr
+| 84  = @notnullexpr
+| 85  = @unsafecoerceexpr
+| 86  = @valueeqexpr
+| 87  = @valueneexpr
+| 88  = @propertyref
+;
+
+/** Holds if this `when` expression was written as an `if` expression. */
+when_if(unique int id: @whenexpr ref);
+
+/** Holds if this `when` branch was written as an `else` branch. */
+when_branch_else(unique int id: @whenbranch ref);
+
+@classinstancexpr = @newexpr | @lambdaexpr | @memberref | @propertyref
+
+@annotation = @declannotation | @typeannotation
+@typeaccess = @unannotatedtypeaccess | @annotatedtypeaccess
+
+@assignment = @assignexpr
+             | @assignop;
+
+@unaryassignment = @postincexpr
+                 | @postdecexpr
+                 | @preincexpr
+                 | @predecexpr;
+
+@assignop = @assignaddexpr
+             | @assignsubexpr
+             | @assignmulexpr
+             | @assigndivexpr
+             | @assignremexpr
+             | @assignandexpr
+             | @assignorexpr
+             | @assignxorexpr
+             | @assignlshiftexpr
+             | @assignrshiftexpr
+             | @assignurshiftexpr;
+
+@literal = @booleanliteral
+             | @integerliteral
+             | @longliteral
+             | @floatingpointliteral
+             | @doubleliteral
+             | @characterliteral
+             | @stringliteral
+             | @nullliteral;
+
+@binaryexpr = @mulexpr
+             | @divexpr
+             | @remexpr
+             | @addexpr
+             | @subexpr
+             | @lshiftexpr
+             | @rshiftexpr
+             | @urshiftexpr
+             | @andbitexpr
+             | @orbitexpr
+             | @xorbitexpr
+             | @andlogicalexpr
+             | @orlogicalexpr
+             | @ltexpr
+             | @gtexpr
+             | @leexpr
+             | @geexpr
+             | @eqexpr
+             | @neexpr
+             | @valueeqexpr
+             | @valueneexpr;
+
+@unaryexpr =   @postincexpr
+             | @postdecexpr
+             | @preincexpr
+             | @predecexpr
+             | @minusexpr
+             | @plusexpr
+             | @bitnotexpr
+             | @lognotexpr
+             | @notnullexpr;
+
+@caller =  @classinstancexpr
+         | @methodaccess
+         | @constructorinvocationstmt
+         | @superconstructorinvocationstmt;
+
+callableBinding(
+  unique int callerid: @caller ref,
+  int callee: @callable ref
+);
+
+memberRefBinding(
+  unique int id: @expr ref,
+  int callable: @callable ref
+);
+
+propertyRefGetBinding(
+  unique int id: @expr ref,
+  int getter: @callable ref
+);
+
+propertyRefFieldBinding(
+  unique int id: @expr ref,
+  int field: @field ref
+);
+
+propertyRefSetBinding(
+  unique int id: @expr ref,
+  int setter: @callable ref
+);
+
+@exprparent = @stmt | @expr | @whenbranch | @callable | @field | @fielddecl | @class | @interface | @param | @localvar | @typevariable;
+
+variableBinding(
+  unique int expr: @varaccess ref,
+  int variable: @variable ref
+);
+
+@variable = @localscopevariable | @field;
+
+@localscopevariable = @localvar | @param;
+
+localvars(
+  unique int id: @localvar,
+  string nodeName: string ref,
+  int typeid: @type ref,
+  int parentid: @localvariabledeclexpr ref
+);
+
+localvarsKotlinType(
+  unique int id: @localvar ref,
+  int kttypeid: @kt_type ref
+);
+
+@namedexprorstmt = @breakstmt
+                 | @continuestmt
+                 | @labeledstmt
+                 | @literal;
+
+namestrings(
+  string name: string ref,
+  string value: string ref,
+  unique int parent: @namedexprorstmt ref
+);
+
+/*
+ * Modules
+ */
+
+#keyset[name]
+modules(
+  unique int id: @module,
+  string name: string ref
+);
+
+isOpen(
+  int id: @module ref
+);
+
+#keyset[fileId]
+cumodule(
+  int fileId: @file ref,
+  int moduleId: @module ref
+);
+
+@directive = @requires
+           | @exports
+           | @opens
+           | @uses
+           | @provides
+
+#keyset[directive]
+directives(
+  int id: @module ref,
+  int directive: @directive ref
+);
+
+requires(
+  unique int id: @requires,
+  int target: @module ref
+);
+
+isTransitive(
+  int id: @requires ref
+);
+
+isStatic(
+  int id: @requires ref
+);
+
+exports(
+  unique int id: @exports,
+  int target: @package ref
+);
+
+exportsTo(
+  int id: @exports ref,
+  int target: @module ref
+);
+
+opens(
+  unique int id: @opens,
+  int target: @package ref
+);
+
+opensTo(
+  int id: @opens ref,
+  int target: @module ref
+);
+
+uses(
+  unique int id: @uses,
+  string serviceInterface: string ref
+);
+
+provides(
+  unique int id: @provides,
+  string serviceInterface: string ref
+);
+
+providesWith(
+  int id: @provides ref,
+  string serviceImpl: string ref
+);
+
+/*
+ * Javadoc
+ */
+
+javadoc(
+  unique int id: @javadoc
+);
+
+isNormalComment(
+  int commentid : @javadoc ref
+);
+
+isEolComment(
+  int commentid : @javadoc ref
+);
+
+hasJavadoc(
+  int documentableid: @member ref,
+  int javadocid: @javadoc ref
+);
+
+#keyset[parentid,idx]
+javadocTag(
+  unique int id: @javadocTag,
+  string name: string ref,
+  int parentid: @javadocParent ref,
+  int idx: int ref
+);
+
+#keyset[parentid,idx]
+javadocText(
+  unique int id: @javadocText,
+  string text: string ref,
+  int parentid: @javadocParent ref,
+  int idx: int ref
+);
+
+@javadocParent = @javadoc | @javadocTag;
+@javadocElement = @javadocTag | @javadocText;
+
+@classorinterface = @interface | @class;
+@classorinterfaceorpackage = @classorinterface | @package;
+@classorinterfaceorcallable = @classorinterface | @callable;
+@boundedtype = @typevariable | @wildcard;
+@reftype = @classorinterface | @array | @boundedtype | @errortype;
+@classorarray = @class | @array;
+@type = @primitive | @reftype;
+@callable = @method | @constructor;
+
+/** A program element that has a name. */
+@element = @package | @modifier | @annotation | @errortype |
+           @locatableElement;
+
+@locatableElement = @file | @primitive | @class | @interface | @method | @constructor | @param | @exception | @field |
+                    @boundedtype | @array | @localvar | @expr | @stmt | @import | @fielddecl | @kt_type | @kt_type_alias |
+                    @kt_property;
+
+@modifiable = @member_modifiable| @param | @localvar | @typevariable;
+
+@member_modifiable = @class | @interface | @method | @constructor | @field | @kt_property;
+
+@member = @method | @constructor | @field | @reftype ;
+
+/** A program element that has a location. */
+@locatable = @typebound | @javadoc | @javadocTag | @javadocText | @xmllocatable | @ktcomment |
+             @locatableElement;
+
+@top = @element | @locatable | @folder;
+
+/*
+ * XML Files
+ */
+
+xmlEncoding(
+  unique int id: @file ref,
+  string encoding: string ref
+);
+
+xmlDTDs(
+  unique int id: @xmldtd,
+  string root: string ref,
+  string publicId: string ref,
+  string systemId: string ref,
+  int fileid: @file ref
+);
+
+xmlElements(
+  unique int id: @xmlelement,
+  string name: string ref,
+  int parentid: @xmlparent ref,
+  int idx: int ref,
+  int fileid: @file ref
+);
+
+xmlAttrs(
+  unique int id: @xmlattribute,
+  int elementid: @xmlelement ref,
+  string name: string ref,
+  string value: string ref,
+  int idx: int ref,
+  int fileid: @file ref
+);
+
+xmlNs(
+  int id: @xmlnamespace,
+  string prefixName: string ref,
+  string URI: string ref,
+  int fileid: @file ref
+);
+
+xmlHasNs(
+  int elementId: @xmlnamespaceable ref,
+  int nsId: @xmlnamespace ref,
+  int fileid: @file ref
+);
+
+xmlComments(
+  unique int id: @xmlcomment,
+  string text: string ref,
+  int parentid: @xmlparent ref,
+  int fileid: @file ref
+);
+
+xmlChars(
+  unique int id: @xmlcharacters,
+  string text: string ref,
+  int parentid: @xmlparent ref,
+  int idx: int ref,
+  int isCDATA: int ref,
+  int fileid: @file ref
+);
+
+@xmlparent = @file | @xmlelement;
+@xmlnamespaceable = @xmlelement | @xmlattribute;
+
+xmllocations(
+  int xmlElement: @xmllocatable ref,
+  int location: @location_default ref
+);
+
+@xmllocatable = @xmlcharacters | @xmlelement | @xmlcomment | @xmlattribute | @xmldtd | @file | @xmlnamespace;
+
+/*
+ * configuration files with key value pairs
+ */
+
+configs(
+  unique int id: @config
+);
+
+configNames(
+  unique int id: @configName,
+  int config: @config ref,
+  string name: string ref
+);
+
+configValues(
+  unique int id: @configValue,
+  int config: @config ref,
+  string value: string ref
+);
+
+configLocations(
+  int locatable: @configLocatable ref,
+  int location: @location_default ref
+);
+
+@configLocatable = @config | @configName | @configValue;
+
+ktComments(
+  unique int id: @ktcomment,
+  int kind: int ref,
+  string text : string ref
+)
+
+ktCommentSections(
+  unique int id: @ktcommentsection,
+  int comment: @ktcomment ref,
+  string content : string ref
+)
+
+ktCommentSectionNames(
+  unique int id: @ktcommentsection ref,
+  string name : string ref
+)
+
+ktCommentSectionSubjectNames(
+  unique int id: @ktcommentsection ref,
+  string subjectname : string ref
+)
+
+#keyset[id, owner]
+ktCommentOwners(
+  int id: @ktcomment ref,
+  int owner: @top ref
+)
+
+ktExtensionFunctions(
+  unique int id: @method ref,
+  int typeid: @type ref,
+  int kttypeid: @kt_type ref
+)
+
+ktProperties(
+  unique int id: @kt_property,
+  string nodeName: string ref
+)
+
+ktPropertyGetters(
+  unique int id: @kt_property ref,
+  int getter: @method ref
+)
+
+ktPropertySetters(
+  unique int id: @kt_property ref,
+  int setter: @method ref
+)
+
+ktPropertyBackingFields(
+  unique int id: @kt_property ref,
+  int backingField: @field ref
+)
+
+ktSyntheticBody(
+  unique int id: @callable ref,
+  int kind: int ref
+  // 1: ENUM_VALUES
+  // 2: ENUM_VALUEOF
+)
+
+ktLocalFunction(
+  unique int id: @method ref
+)
+
+ktInitializerAssignment(
+  unique int id: @assignexpr ref
+)
+
+ktPropertyDelegates(
+  unique int id: @kt_property ref,
+  unique int variableId: @variable ref
+)
+
+/**
+ * If `id` is a compiler generated element, then the kind indicates the
+ * reason that the compiler generated it.
+ * See `Element.compilerGeneratedReason()` for an explanation of what
+ * each `kind` means.
+ */
+compiler_generated(
+  unique int id: @element ref,
+  int kind: int ref
+)
+
+ktFunctionOriginalNames(
+  unique int id: @method ref,
+  string name: string ref
+)
+
+ktDataClasses(
+  unique int id: @class ref
+)
diff --git a/java/ql/lib/upgrades/709f1d1fd04ffd9bbcf242f17b120f8a389949bd/upgrade.properties b/java/ql/lib/upgrades/709f1d1fd04ffd9bbcf242f17b120f8a389949bd/upgrade.properties
new file mode 100644
index 00000000000..1c05ac39dbe
--- /dev/null
+++ b/java/ql/lib/upgrades/709f1d1fd04ffd9bbcf242f17b120f8a389949bd/upgrade.properties
@@ -0,0 +1,2 @@
+description: Add compilation_info
+compatibility: backwards

From 88f703af1fad7bf516a54227f25d24ecf17c970b Mon Sep 17 00:00:00 2001
From: Rasmus Wriedt Larsen <rasmuswl@github.com>
Date: Thu, 10 Nov 2022 22:13:34 +0100
Subject: [PATCH 0172/1420] DataFlow: Accept changes to `.expected`

---
 .../dataflow-consistency.expected             |  2 +
 .../dataflow-ir-consistency.expected          |  2 +
 .../fields/dataflow-consistency.expected      |  2 +
 .../fields/dataflow-ir-consistency.expected   |  2 +
 .../syntax-zoo/dataflow-consistency.expected  |  2 +
 .../dataflow-ir-consistency.expected          |  2 +
 .../basic/dataflow-consistency.expected       |  2 +
 .../calls/dataflow-consistency.expected       |  2 +
 .../consistency/dataflow-consistency.expected |  2 +
 .../coverage/dataflow-consistency.expected    |  2 +
 .../fieldflow/dataflow-consistency.expected   |  2 +
 .../global-flow/dataflow-consistency.expected |  2 +
 .../match/dataflow-consistency.expected       |  2 +
 .../pep_328/dataflow-consistency.expected     |  2 +
 .../regression/dataflow-consistency.expected  |  2 +
 .../dataflow-consistency.expected             |  2 +
 .../basic/dataflow-consistency.expected       |  2 +
 .../dataflow-consistency.expected             |  2 +
 .../dataflow-consistency.expected             |  2 +
 .../dataflow-consistency.expected             |  2 +
 .../dataflow-consistency.expected             |  2 +
 .../dataflow-consistency.expected             |  2 +
 .../dataflow-consistency.expected             |  2 +
 .../dataflow-consistency.expected             |  2 +
 .../py3/dataflow-consistency.expected         |  2 +
 .../django-orm/dataflow-consistency.expected  | 50 +++++++++++++++++++
 26 files changed, 100 insertions(+)

diff --git a/cpp/ql/test/library-tests/dataflow/dataflow-tests/dataflow-consistency.expected b/cpp/ql/test/library-tests/dataflow/dataflow-tests/dataflow-consistency.expected
index 6b24d8bdbc6..f38d5943d9d 100644
--- a/cpp/ql/test/library-tests/dataflow/dataflow-tests/dataflow-consistency.expected
+++ b/cpp/ql/test/library-tests/dataflow/dataflow-tests/dataflow-consistency.expected
@@ -6,6 +6,8 @@ uniqueNodeToString
 missingToString
 parameterCallable
 localFlowIsLocal
+readStepIsLocal
+storeStepIsLocal
 compatibleTypesReflexive
 unreachableNodeCCtx
 localCallNodes
diff --git a/cpp/ql/test/library-tests/dataflow/dataflow-tests/dataflow-ir-consistency.expected b/cpp/ql/test/library-tests/dataflow/dataflow-tests/dataflow-ir-consistency.expected
index 929b5b69bc4..182f679710c 100644
--- a/cpp/ql/test/library-tests/dataflow/dataflow-tests/dataflow-ir-consistency.expected
+++ b/cpp/ql/test/library-tests/dataflow/dataflow-tests/dataflow-ir-consistency.expected
@@ -21,6 +21,8 @@ uniqueNodeToString
 missingToString
 parameterCallable
 localFlowIsLocal
+readStepIsLocal
+storeStepIsLocal
 compatibleTypesReflexive
 unreachableNodeCCtx
 localCallNodes
diff --git a/cpp/ql/test/library-tests/dataflow/fields/dataflow-consistency.expected b/cpp/ql/test/library-tests/dataflow/fields/dataflow-consistency.expected
index f66ef23ba74..8a9e15049fc 100644
--- a/cpp/ql/test/library-tests/dataflow/fields/dataflow-consistency.expected
+++ b/cpp/ql/test/library-tests/dataflow/fields/dataflow-consistency.expected
@@ -12,6 +12,8 @@ uniqueNodeToString
 missingToString
 parameterCallable
 localFlowIsLocal
+readStepIsLocal
+storeStepIsLocal
 compatibleTypesReflexive
 unreachableNodeCCtx
 localCallNodes
diff --git a/cpp/ql/test/library-tests/dataflow/fields/dataflow-ir-consistency.expected b/cpp/ql/test/library-tests/dataflow/fields/dataflow-ir-consistency.expected
index 4dee8fb627f..c1b3d0c66b7 100644
--- a/cpp/ql/test/library-tests/dataflow/fields/dataflow-ir-consistency.expected
+++ b/cpp/ql/test/library-tests/dataflow/fields/dataflow-ir-consistency.expected
@@ -15,6 +15,8 @@ uniqueNodeToString
 missingToString
 parameterCallable
 localFlowIsLocal
+readStepIsLocal
+storeStepIsLocal
 compatibleTypesReflexive
 unreachableNodeCCtx
 localCallNodes
diff --git a/cpp/ql/test/library-tests/syntax-zoo/dataflow-consistency.expected b/cpp/ql/test/library-tests/syntax-zoo/dataflow-consistency.expected
index 086fa0415b7..1980b113311 100644
--- a/cpp/ql/test/library-tests/syntax-zoo/dataflow-consistency.expected
+++ b/cpp/ql/test/library-tests/syntax-zoo/dataflow-consistency.expected
@@ -52,6 +52,8 @@ uniqueNodeToString
 missingToString
 parameterCallable
 localFlowIsLocal
+readStepIsLocal
+storeStepIsLocal
 compatibleTypesReflexive
 unreachableNodeCCtx
 localCallNodes
diff --git a/cpp/ql/test/library-tests/syntax-zoo/dataflow-ir-consistency.expected b/cpp/ql/test/library-tests/syntax-zoo/dataflow-ir-consistency.expected
index 70f8446ec5a..26abe41c33f 100644
--- a/cpp/ql/test/library-tests/syntax-zoo/dataflow-ir-consistency.expected
+++ b/cpp/ql/test/library-tests/syntax-zoo/dataflow-ir-consistency.expected
@@ -1463,6 +1463,8 @@ uniqueNodeToString
 missingToString
 parameterCallable
 localFlowIsLocal
+readStepIsLocal
+storeStepIsLocal
 compatibleTypesReflexive
 unreachableNodeCCtx
 localCallNodes
diff --git a/python/ql/test/experimental/dataflow/basic/dataflow-consistency.expected b/python/ql/test/experimental/dataflow/basic/dataflow-consistency.expected
index 9fedaf9f663..8f4dbd04742 100644
--- a/python/ql/test/experimental/dataflow/basic/dataflow-consistency.expected
+++ b/python/ql/test/experimental/dataflow/basic/dataflow-consistency.expected
@@ -6,6 +6,8 @@ uniqueNodeToString
 missingToString
 parameterCallable
 localFlowIsLocal
+readStepIsLocal
+storeStepIsLocal
 compatibleTypesReflexive
 unreachableNodeCCtx
 localCallNodes
diff --git a/python/ql/test/experimental/dataflow/calls/dataflow-consistency.expected b/python/ql/test/experimental/dataflow/calls/dataflow-consistency.expected
index 9fedaf9f663..8f4dbd04742 100644
--- a/python/ql/test/experimental/dataflow/calls/dataflow-consistency.expected
+++ b/python/ql/test/experimental/dataflow/calls/dataflow-consistency.expected
@@ -6,6 +6,8 @@ uniqueNodeToString
 missingToString
 parameterCallable
 localFlowIsLocal
+readStepIsLocal
+storeStepIsLocal
 compatibleTypesReflexive
 unreachableNodeCCtx
 localCallNodes
diff --git a/python/ql/test/experimental/dataflow/consistency/dataflow-consistency.expected b/python/ql/test/experimental/dataflow/consistency/dataflow-consistency.expected
index 9fedaf9f663..8f4dbd04742 100644
--- a/python/ql/test/experimental/dataflow/consistency/dataflow-consistency.expected
+++ b/python/ql/test/experimental/dataflow/consistency/dataflow-consistency.expected
@@ -6,6 +6,8 @@ uniqueNodeToString
 missingToString
 parameterCallable
 localFlowIsLocal
+readStepIsLocal
+storeStepIsLocal
 compatibleTypesReflexive
 unreachableNodeCCtx
 localCallNodes
diff --git a/python/ql/test/experimental/dataflow/coverage/dataflow-consistency.expected b/python/ql/test/experimental/dataflow/coverage/dataflow-consistency.expected
index 9fedaf9f663..8f4dbd04742 100644
--- a/python/ql/test/experimental/dataflow/coverage/dataflow-consistency.expected
+++ b/python/ql/test/experimental/dataflow/coverage/dataflow-consistency.expected
@@ -6,6 +6,8 @@ uniqueNodeToString
 missingToString
 parameterCallable
 localFlowIsLocal
+readStepIsLocal
+storeStepIsLocal
 compatibleTypesReflexive
 unreachableNodeCCtx
 localCallNodes
diff --git a/python/ql/test/experimental/dataflow/fieldflow/dataflow-consistency.expected b/python/ql/test/experimental/dataflow/fieldflow/dataflow-consistency.expected
index 9fedaf9f663..8f4dbd04742 100644
--- a/python/ql/test/experimental/dataflow/fieldflow/dataflow-consistency.expected
+++ b/python/ql/test/experimental/dataflow/fieldflow/dataflow-consistency.expected
@@ -6,6 +6,8 @@ uniqueNodeToString
 missingToString
 parameterCallable
 localFlowIsLocal
+readStepIsLocal
+storeStepIsLocal
 compatibleTypesReflexive
 unreachableNodeCCtx
 localCallNodes
diff --git a/python/ql/test/experimental/dataflow/global-flow/dataflow-consistency.expected b/python/ql/test/experimental/dataflow/global-flow/dataflow-consistency.expected
index 9fedaf9f663..8f4dbd04742 100644
--- a/python/ql/test/experimental/dataflow/global-flow/dataflow-consistency.expected
+++ b/python/ql/test/experimental/dataflow/global-flow/dataflow-consistency.expected
@@ -6,6 +6,8 @@ uniqueNodeToString
 missingToString
 parameterCallable
 localFlowIsLocal
+readStepIsLocal
+storeStepIsLocal
 compatibleTypesReflexive
 unreachableNodeCCtx
 localCallNodes
diff --git a/python/ql/test/experimental/dataflow/match/dataflow-consistency.expected b/python/ql/test/experimental/dataflow/match/dataflow-consistency.expected
index 9fedaf9f663..8f4dbd04742 100644
--- a/python/ql/test/experimental/dataflow/match/dataflow-consistency.expected
+++ b/python/ql/test/experimental/dataflow/match/dataflow-consistency.expected
@@ -6,6 +6,8 @@ uniqueNodeToString
 missingToString
 parameterCallable
 localFlowIsLocal
+readStepIsLocal
+storeStepIsLocal
 compatibleTypesReflexive
 unreachableNodeCCtx
 localCallNodes
diff --git a/python/ql/test/experimental/dataflow/pep_328/dataflow-consistency.expected b/python/ql/test/experimental/dataflow/pep_328/dataflow-consistency.expected
index 9fedaf9f663..8f4dbd04742 100644
--- a/python/ql/test/experimental/dataflow/pep_328/dataflow-consistency.expected
+++ b/python/ql/test/experimental/dataflow/pep_328/dataflow-consistency.expected
@@ -6,6 +6,8 @@ uniqueNodeToString
 missingToString
 parameterCallable
 localFlowIsLocal
+readStepIsLocal
+storeStepIsLocal
 compatibleTypesReflexive
 unreachableNodeCCtx
 localCallNodes
diff --git a/python/ql/test/experimental/dataflow/regression/dataflow-consistency.expected b/python/ql/test/experimental/dataflow/regression/dataflow-consistency.expected
index 9fedaf9f663..8f4dbd04742 100644
--- a/python/ql/test/experimental/dataflow/regression/dataflow-consistency.expected
+++ b/python/ql/test/experimental/dataflow/regression/dataflow-consistency.expected
@@ -6,6 +6,8 @@ uniqueNodeToString
 missingToString
 parameterCallable
 localFlowIsLocal
+readStepIsLocal
+storeStepIsLocal
 compatibleTypesReflexive
 unreachableNodeCCtx
 localCallNodes
diff --git a/python/ql/test/experimental/dataflow/strange-essaflow/dataflow-consistency.expected b/python/ql/test/experimental/dataflow/strange-essaflow/dataflow-consistency.expected
index 9fedaf9f663..8f4dbd04742 100644
--- a/python/ql/test/experimental/dataflow/strange-essaflow/dataflow-consistency.expected
+++ b/python/ql/test/experimental/dataflow/strange-essaflow/dataflow-consistency.expected
@@ -6,6 +6,8 @@ uniqueNodeToString
 missingToString
 parameterCallable
 localFlowIsLocal
+readStepIsLocal
+storeStepIsLocal
 compatibleTypesReflexive
 unreachableNodeCCtx
 localCallNodes
diff --git a/python/ql/test/experimental/dataflow/tainttracking/basic/dataflow-consistency.expected b/python/ql/test/experimental/dataflow/tainttracking/basic/dataflow-consistency.expected
index 9fedaf9f663..8f4dbd04742 100644
--- a/python/ql/test/experimental/dataflow/tainttracking/basic/dataflow-consistency.expected
+++ b/python/ql/test/experimental/dataflow/tainttracking/basic/dataflow-consistency.expected
@@ -6,6 +6,8 @@ uniqueNodeToString
 missingToString
 parameterCallable
 localFlowIsLocal
+readStepIsLocal
+storeStepIsLocal
 compatibleTypesReflexive
 unreachableNodeCCtx
 localCallNodes
diff --git a/python/ql/test/experimental/dataflow/tainttracking/commonSanitizer/dataflow-consistency.expected b/python/ql/test/experimental/dataflow/tainttracking/commonSanitizer/dataflow-consistency.expected
index 9fedaf9f663..8f4dbd04742 100644
--- a/python/ql/test/experimental/dataflow/tainttracking/commonSanitizer/dataflow-consistency.expected
+++ b/python/ql/test/experimental/dataflow/tainttracking/commonSanitizer/dataflow-consistency.expected
@@ -6,6 +6,8 @@ uniqueNodeToString
 missingToString
 parameterCallable
 localFlowIsLocal
+readStepIsLocal
+storeStepIsLocal
 compatibleTypesReflexive
 unreachableNodeCCtx
 localCallNodes
diff --git a/python/ql/test/experimental/dataflow/tainttracking/customSanitizer/dataflow-consistency.expected b/python/ql/test/experimental/dataflow/tainttracking/customSanitizer/dataflow-consistency.expected
index 9fedaf9f663..8f4dbd04742 100644
--- a/python/ql/test/experimental/dataflow/tainttracking/customSanitizer/dataflow-consistency.expected
+++ b/python/ql/test/experimental/dataflow/tainttracking/customSanitizer/dataflow-consistency.expected
@@ -6,6 +6,8 @@ uniqueNodeToString
 missingToString
 parameterCallable
 localFlowIsLocal
+readStepIsLocal
+storeStepIsLocal
 compatibleTypesReflexive
 unreachableNodeCCtx
 localCallNodes
diff --git a/python/ql/test/experimental/dataflow/tainttracking/defaultAdditionalTaintStep-py3/dataflow-consistency.expected b/python/ql/test/experimental/dataflow/tainttracking/defaultAdditionalTaintStep-py3/dataflow-consistency.expected
index 9fedaf9f663..8f4dbd04742 100644
--- a/python/ql/test/experimental/dataflow/tainttracking/defaultAdditionalTaintStep-py3/dataflow-consistency.expected
+++ b/python/ql/test/experimental/dataflow/tainttracking/defaultAdditionalTaintStep-py3/dataflow-consistency.expected
@@ -6,6 +6,8 @@ uniqueNodeToString
 missingToString
 parameterCallable
 localFlowIsLocal
+readStepIsLocal
+storeStepIsLocal
 compatibleTypesReflexive
 unreachableNodeCCtx
 localCallNodes
diff --git a/python/ql/test/experimental/dataflow/tainttracking/defaultAdditionalTaintStep/dataflow-consistency.expected b/python/ql/test/experimental/dataflow/tainttracking/defaultAdditionalTaintStep/dataflow-consistency.expected
index 9fedaf9f663..8f4dbd04742 100644
--- a/python/ql/test/experimental/dataflow/tainttracking/defaultAdditionalTaintStep/dataflow-consistency.expected
+++ b/python/ql/test/experimental/dataflow/tainttracking/defaultAdditionalTaintStep/dataflow-consistency.expected
@@ -6,6 +6,8 @@ uniqueNodeToString
 missingToString
 parameterCallable
 localFlowIsLocal
+readStepIsLocal
+storeStepIsLocal
 compatibleTypesReflexive
 unreachableNodeCCtx
 localCallNodes
diff --git a/python/ql/test/experimental/dataflow/tainttracking/unwanted-global-flow/dataflow-consistency.expected b/python/ql/test/experimental/dataflow/tainttracking/unwanted-global-flow/dataflow-consistency.expected
index 9fedaf9f663..8f4dbd04742 100644
--- a/python/ql/test/experimental/dataflow/tainttracking/unwanted-global-flow/dataflow-consistency.expected
+++ b/python/ql/test/experimental/dataflow/tainttracking/unwanted-global-flow/dataflow-consistency.expected
@@ -6,6 +6,8 @@ uniqueNodeToString
 missingToString
 parameterCallable
 localFlowIsLocal
+readStepIsLocal
+storeStepIsLocal
 compatibleTypesReflexive
 unreachableNodeCCtx
 localCallNodes
diff --git a/python/ql/test/experimental/dataflow/typetracking/dataflow-consistency.expected b/python/ql/test/experimental/dataflow/typetracking/dataflow-consistency.expected
index 9fedaf9f663..8f4dbd04742 100644
--- a/python/ql/test/experimental/dataflow/typetracking/dataflow-consistency.expected
+++ b/python/ql/test/experimental/dataflow/typetracking/dataflow-consistency.expected
@@ -6,6 +6,8 @@ uniqueNodeToString
 missingToString
 parameterCallable
 localFlowIsLocal
+readStepIsLocal
+storeStepIsLocal
 compatibleTypesReflexive
 unreachableNodeCCtx
 localCallNodes
diff --git a/python/ql/test/experimental/dataflow/variable-capture/dataflow-consistency.expected b/python/ql/test/experimental/dataflow/variable-capture/dataflow-consistency.expected
index 9fedaf9f663..8f4dbd04742 100644
--- a/python/ql/test/experimental/dataflow/variable-capture/dataflow-consistency.expected
+++ b/python/ql/test/experimental/dataflow/variable-capture/dataflow-consistency.expected
@@ -6,6 +6,8 @@ uniqueNodeToString
 missingToString
 parameterCallable
 localFlowIsLocal
+readStepIsLocal
+storeStepIsLocal
 compatibleTypesReflexive
 unreachableNodeCCtx
 localCallNodes
diff --git a/python/ql/test/library-tests/ApiGraphs/py3/dataflow-consistency.expected b/python/ql/test/library-tests/ApiGraphs/py3/dataflow-consistency.expected
index 9fedaf9f663..8f4dbd04742 100644
--- a/python/ql/test/library-tests/ApiGraphs/py3/dataflow-consistency.expected
+++ b/python/ql/test/library-tests/ApiGraphs/py3/dataflow-consistency.expected
@@ -6,6 +6,8 @@ uniqueNodeToString
 missingToString
 parameterCallable
 localFlowIsLocal
+readStepIsLocal
+storeStepIsLocal
 compatibleTypesReflexive
 unreachableNodeCCtx
 localCallNodes
diff --git a/python/ql/test/library-tests/frameworks/django-orm/dataflow-consistency.expected b/python/ql/test/library-tests/frameworks/django-orm/dataflow-consistency.expected
index 9fedaf9f663..06a8a168262 100644
--- a/python/ql/test/library-tests/frameworks/django-orm/dataflow-consistency.expected
+++ b/python/ql/test/library-tests/frameworks/django-orm/dataflow-consistency.expected
@@ -6,6 +6,56 @@ uniqueNodeToString
 missingToString
 parameterCallable
 localFlowIsLocal
+readStepIsLocal
+storeStepIsLocal
+| testapp/orm_form_test.py:6:1:6:28 | [orm-model] Class MyModel | testapp/tests.py:83:16:83:36 | ControlFlowNode for Attribute() | Store step does not preserve enclosing callable. |
+| testapp/orm_form_test.py:6:1:6:28 | [orm-model] Class MyModel | testapp/tests.py:84:16:84:43 | ControlFlowNode for Attribute() | Store step does not preserve enclosing callable. |
+| testapp/orm_form_test.py:6:1:6:28 | [orm-model] Class MyModel | testapp/tests.py:85:16:85:36 | ControlFlowNode for Attribute() | Store step does not preserve enclosing callable. |
+| testapp/orm_inheritance.py:45:15:45:20 | ControlFlowNode for SOURCE | testapp/orm_inheritance.py:29:1:29:25 | [orm-model] Class Book | Store step does not preserve enclosing callable. |
+| testapp/orm_inheritance.py:76:15:76:20 | ControlFlowNode for SOURCE | testapp/orm_inheritance.py:29:1:29:25 | [orm-model] Class Book | Store step does not preserve enclosing callable. |
+| testapp/orm_inheritance.py:76:15:76:20 | ControlFlowNode for SOURCE | testapp/orm_inheritance.py:33:1:33:25 | [orm-model] Class PhysicalBook | Store step does not preserve enclosing callable. |
+| testapp/orm_inheritance.py:77:27:77:32 | ControlFlowNode for SOURCE | testapp/orm_inheritance.py:33:1:33:25 | [orm-model] Class PhysicalBook | Store step does not preserve enclosing callable. |
+| testapp/orm_inheritance.py:78:35:78:40 | ControlFlowNode for SOURCE | testapp/orm_inheritance.py:33:1:33:25 | [orm-model] Class PhysicalBook | Store step does not preserve enclosing callable. |
+| testapp/orm_inheritance.py:93:15:93:26 | ControlFlowNode for Str | testapp/orm_inheritance.py:29:1:29:25 | [orm-model] Class Book | Store step does not preserve enclosing callable. |
+| testapp/orm_inheritance.py:93:15:93:26 | ControlFlowNode for Str | testapp/orm_inheritance.py:38:1:38:18 | [orm-model] Class EBook | Store step does not preserve enclosing callable. |
+| testapp/orm_inheritance.py:94:23:94:28 | ControlFlowNode for Str | testapp/orm_inheritance.py:38:1:38:18 | [orm-model] Class EBook | Store step does not preserve enclosing callable. |
+| testapp/orm_inheritance.py:95:35:95:40 | ControlFlowNode for Str | testapp/orm_inheritance.py:38:1:38:18 | [orm-model] Class EBook | Store step does not preserve enclosing callable. |
+| testapp/orm_inheritance.py:133:15:133:20 | ControlFlowNode for SOURCE | testapp/orm_inheritance.py:117:1:117:33 | [orm-model] Class PolyBook | Store step does not preserve enclosing callable. |
+| testapp/orm_inheritance.py:167:15:167:20 | ControlFlowNode for SOURCE | testapp/orm_inheritance.py:117:1:117:33 | [orm-model] Class PolyBook | Store step does not preserve enclosing callable. |
+| testapp/orm_inheritance.py:167:15:167:20 | ControlFlowNode for SOURCE | testapp/orm_inheritance.py:121:1:121:33 | [orm-model] Class PolyPhysicalBook | Store step does not preserve enclosing callable. |
+| testapp/orm_inheritance.py:168:27:168:32 | ControlFlowNode for SOURCE | testapp/orm_inheritance.py:121:1:121:33 | [orm-model] Class PolyPhysicalBook | Store step does not preserve enclosing callable. |
+| testapp/orm_inheritance.py:169:35:169:40 | ControlFlowNode for SOURCE | testapp/orm_inheritance.py:121:1:121:33 | [orm-model] Class PolyPhysicalBook | Store step does not preserve enclosing callable. |
+| testapp/orm_inheritance.py:183:15:183:26 | ControlFlowNode for Str | testapp/orm_inheritance.py:117:1:117:33 | [orm-model] Class PolyBook | Store step does not preserve enclosing callable. |
+| testapp/orm_inheritance.py:183:15:183:26 | ControlFlowNode for Str | testapp/orm_inheritance.py:126:1:126:26 | [orm-model] Class PolyEBook | Store step does not preserve enclosing callable. |
+| testapp/orm_inheritance.py:184:23:184:28 | ControlFlowNode for Str | testapp/orm_inheritance.py:126:1:126:26 | [orm-model] Class PolyEBook | Store step does not preserve enclosing callable. |
+| testapp/orm_inheritance.py:185:35:185:40 | ControlFlowNode for Str | testapp/orm_inheritance.py:126:1:126:26 | [orm-model] Class PolyEBook | Store step does not preserve enclosing callable. |
+| testapp/orm_security_tests.py:15:1:15:27 | [orm-model] Class Person | testapp/orm_security_tests.py:42:23:42:42 | ControlFlowNode for Attribute() | Store step does not preserve enclosing callable. |
+| testapp/orm_tests.py:115:41:115:46 | ControlFlowNode for SOURCE | testapp/orm_tests.py:110:1:110:30 | [orm-model] Class TestSave5 | Store step does not preserve enclosing callable. |
+| testapp/orm_tests.py:131:86:131:91 | ControlFlowNode for SOURCE | testapp/orm_tests.py:126:1:126:30 | [orm-model] Class TestSave6 | Store step does not preserve enclosing callable. |
+| testapp/orm_tests.py:149:89:149:94 | ControlFlowNode for SOURCE | testapp/orm_tests.py:144:1:144:30 | [orm-model] Class TestSave7 | Store step does not preserve enclosing callable. |
+| testapp/orm_tests.py:161:1:161:30 | [orm-model] Class TestSave8 | testapp/orm_tests.py:168:22:168:44 | ControlFlowNode for Attribute() | Store step does not preserve enclosing callable. |
+| testapp/orm_tests.py:165:35:165:39 | ControlFlowNode for Str | testapp/orm_tests.py:161:1:161:30 | [orm-model] Class TestSave8 | Store step does not preserve enclosing callable. |
+| testapp/orm_tests.py:168:58:168:63 | ControlFlowNode for SOURCE | testapp/orm_tests.py:161:1:161:30 | [orm-model] Class TestSave8 | Store step does not preserve enclosing callable. |
+| testapp/orm_tests.py:184:41:184:45 | ControlFlowNode for Str | testapp/orm_tests.py:177:1:177:30 | [orm-model] Class TestSave9 | Store step does not preserve enclosing callable. |
+| testapp/orm_tests.py:185:49:185:51 | ControlFlowNode for obj | testapp/orm_tests.py:180:1:180:44 | [orm-model] Class TestSave9WithForeignKey | Store step does not preserve enclosing callable. |
+| testapp/orm_tests.py:212:55:212:59 | ControlFlowNode for Str | testapp/orm_tests.py:206:1:206:35 | [orm-model] Class save10_Comment | Store step does not preserve enclosing callable. |
+| testapp/orm_tests.py:239:55:239:59 | ControlFlowNode for Str | testapp/orm_tests.py:233:1:233:35 | [orm-model] Class save11_Comment | Store step does not preserve enclosing callable. |
+| testapp/orm_tests.py:273:1:273:31 | [orm-model] Class TestSave13 | testapp/orm_tests.py:281:12:281:35 | ControlFlowNode for Attribute() | Store step does not preserve enclosing callable. |
+| testapp/orm_tests.py:294:1:294:29 | [orm-model] Class TestLoad | testapp/orm_tests.py:308:12:308:33 | ControlFlowNode for Attribute() | Store step does not preserve enclosing callable. |
+| testapp/orm_tests.py:294:1:294:29 | [orm-model] Class TestLoad | testapp/orm_tests.py:314:12:314:33 | ControlFlowNode for Attribute() | Store step does not preserve enclosing callable. |
+| testapp/orm_tests.py:294:1:294:29 | [orm-model] Class TestLoad | testapp/orm_tests.py:320:11:320:32 | ControlFlowNode for Attribute() | Store step does not preserve enclosing callable. |
+| testapp/orm_tests.py:294:1:294:29 | [orm-model] Class TestLoad | testapp/orm_tests.py:320:11:320:59 | ControlFlowNode for Attribute() | Store step does not preserve enclosing callable. |
+| testapp/orm_tests.py:294:1:294:29 | [orm-model] Class TestLoad | testapp/orm_tests.py:320:11:320:78 | ControlFlowNode for Attribute() | Store step does not preserve enclosing callable. |
+| testapp/orm_tests.py:294:1:294:29 | [orm-model] Class TestLoad | testapp/orm_tests.py:324:12:324:33 | ControlFlowNode for Attribute() | Store step does not preserve enclosing callable. |
+| testapp/orm_tests.py:294:1:294:29 | [orm-model] Class TestLoad | testapp/orm_tests.py:324:12:324:60 | ControlFlowNode for Attribute() | Store step does not preserve enclosing callable. |
+| testapp/orm_tests.py:294:1:294:29 | [orm-model] Class TestLoad | testapp/orm_tests.py:324:12:324:79 | ControlFlowNode for Attribute() | Store step does not preserve enclosing callable. |
+| testapp/orm_tests.py:294:1:294:29 | [orm-model] Class TestLoad | testapp/orm_tests.py:331:12:331:33 | ControlFlowNode for Attribute() | Store step does not preserve enclosing callable. |
+| testapp/orm_tests.py:294:1:294:29 | [orm-model] Class TestLoad | testapp/orm_tests.py:337:12:337:33 | ControlFlowNode for Attribute() | Store step does not preserve enclosing callable. |
+| testapp/orm_tests.py:294:1:294:29 | [orm-model] Class TestLoad | testapp/orm_tests.py:344:12:344:33 | ControlFlowNode for Attribute() | Store step does not preserve enclosing callable. |
+| testapp/orm_tests.py:294:1:294:29 | [orm-model] Class TestLoad | testapp/orm_tests.py:350:12:350:33 | ControlFlowNode for Attribute() | Store step does not preserve enclosing callable. |
+| testapp/orm_tests.py:294:1:294:29 | [orm-model] Class TestLoad | testapp/orm_tests.py:356:12:356:33 | ControlFlowNode for Attribute() | Store step does not preserve enclosing callable. |
+| testapp/orm_tests.py:294:1:294:29 | [orm-model] Class TestLoad | testapp/orm_tests.py:363:9:363:37 | ControlFlowNode for Attribute() | Store step does not preserve enclosing callable. |
+| testapp/tests.py:81:33:81:37 | ControlFlowNode for Str | testapp/orm_form_test.py:6:1:6:28 | [orm-model] Class MyModel | Store step does not preserve enclosing callable. |
 compatibleTypesReflexive
 unreachableNodeCCtx
 localCallNodes

From e25e192ef33b74ae388b1bbc593c1c5963c15ecf Mon Sep 17 00:00:00 2001
From: Harry Maclean <hmac@github.com>
Date: Thu, 10 Nov 2022 18:42:04 +1300
Subject: [PATCH 0173/1420] Ruby: Change the CFG for while clauses

The `when` node now acts as a join point for patterns in the when
clause, with match/no-match completions. This is similar to how `or`
expressions work.

The result of this is that the `when` clause "controls" the body of the
`when`, which allows us to model barrier guards for multi-pattern when
clauses.

For this code

case x
when 1, 2
  y
end

The old CFG was

x --> when --> 1 --no-match--> 2 ---no-match---> case
                \               \                  ^
                  \               \                |
                   \                --match----+   |
                     \                         |   |
                       \                       |   |
                         ------match---------> y --+

The new CFG is

x --> 1 --no-match--> 2 --no-match--> [no-match] when --no-match--> case
       \               \                                             ^
         \               \                                           |
           \               --match--> [match] when --match--> y -----+
             \                       /
               \                   /
                 -------match-----

i.e. all patterns flow to the `when` node, which is split based on
whether the pattern matched or not. The body of the when clause then has
a single predecessor `[match] when`, which acts as condition block that
controls `y`.
---
 .../lib/codeql/ruby/controlflow/CfgNodes.qll  |  2 +-
 .../ruby/controlflow/internal/Completion.qll  |  8 +-
 .../internal/ControlFlowGraphImpl.qll         | 21 +++--
 .../ruby/controlflow/internal/Splitting.qll   |  7 ++
 .../codeql/ruby/dataflow/BarrierGuards.qll    |  2 +-
 .../controlflow/graph/Cfg.expected            | 76 ++++++++++++-------
 .../dataflow/barrier-guards/barrier-guards.rb |  4 +-
 7 files changed, 79 insertions(+), 41 deletions(-)

diff --git a/ruby/ql/lib/codeql/ruby/controlflow/CfgNodes.qll b/ruby/ql/lib/codeql/ruby/controlflow/CfgNodes.qll
index 4417891a66a..31898e0a652 100644
--- a/ruby/ql/lib/codeql/ruby/controlflow/CfgNodes.qll
+++ b/ruby/ql/lib/codeql/ruby/controlflow/CfgNodes.qll
@@ -446,7 +446,7 @@ module ExprNodes {
     final ExprCfgNode getBody() { e.hasCfgChild(e.getBody(), this, result) }
 
     /** Gets the `i`th pattern this `when`-clause. */
-    final ExprCfgNode getPattern(int i) { e.hasCfgChild(e.getPattern(i), this, result) }
+    final ExprCfgNode getPattern(int i) { result.getExpr() = e.getPattern(i) }
   }
 
   /** A control-flow node that wraps a `CasePattern`. */
diff --git a/ruby/ql/lib/codeql/ruby/controlflow/internal/Completion.qll b/ruby/ql/lib/codeql/ruby/controlflow/internal/Completion.qll
index fe4cca24d69..d727b99d6cf 100644
--- a/ruby/ql/lib/codeql/ruby/controlflow/internal/Completion.qll
+++ b/ruby/ql/lib/codeql/ruby/controlflow/internal/Completion.qll
@@ -233,8 +233,12 @@ private predicate inMatchingContext(AstNode n) {
   or
   exists(CaseExpr c, WhenClause w |
     exists(c.getValue()) and
-    c.getABranch() = w and
-    w.getPattern(_) = n
+    (
+      c.getABranch() = w and
+      w.getPattern(_) = n
+      or
+      w = n
+    )
   )
   or
   n instanceof CasePattern
diff --git a/ruby/ql/lib/codeql/ruby/controlflow/internal/ControlFlowGraphImpl.qll b/ruby/ql/lib/codeql/ruby/controlflow/internal/ControlFlowGraphImpl.qll
index bdd67d2a693..1ca24d43ab8 100644
--- a/ruby/ql/lib/codeql/ruby/controlflow/internal/ControlFlowGraphImpl.qll
+++ b/ruby/ql/lib/codeql/ruby/controlflow/internal/ControlFlowGraphImpl.qll
@@ -400,7 +400,7 @@ module Trees {
       c instanceof SimpleCompletion
       or
       exists(int i, WhenTree branch | branch = this.getBranch(i) |
-        last(branch.getLastPattern(), pred, c) and
+        pred = branch and
         first(this.getBranch(i + 1), succ) and
         c.(ConditionalCompletion).getValue() = false
       )
@@ -1397,7 +1397,7 @@ module Trees {
     final override ControlFlowTree getChildElement(int i) { result = this.getMethodName(i) }
   }
 
-  private class WhenTree extends PreOrderTree, WhenClause {
+  private class WhenTree extends ControlFlowTree, WhenClause {
     final override predicate propagatesAbnormal(AstNode child) { child = this.getAPattern() }
 
     final Expr getLastPattern() {
@@ -1407,17 +1407,21 @@ module Trees {
       )
     }
 
+    final override predicate first(AstNode first) { first(this.getPattern(0), first) }
+
     final override predicate last(AstNode last, Completion c) {
-      last(this.getLastPattern(), last, c) and
+      last = this and
       c.(ConditionalCompletion).getValue() = false
       or
-      last(this.getBody(), last, c)
+      last(this.getBody(), last, c) and
+      c instanceof NormalCompletion
     }
 
     final override predicate succ(AstNode pred, AstNode succ, Completion c) {
       pred = this and
-      first(this.getPattern(0), succ) and
-      c instanceof SimpleCompletion
+      c.isValidFor(this) and
+      c.(ConditionalCompletion).getValue() = true and
+      first(this.getBody(), succ)
       or
       exists(int i, Expr p, boolean b |
         p = this.getPattern(i) and
@@ -1425,10 +1429,13 @@ module Trees {
         b = c.(ConditionalCompletion).getValue()
       |
         b = true and
-        first(this.getBody(), succ)
+        succ = this
         or
         b = false and
         first(this.getPattern(i + 1), succ)
+        or
+        not exists(this.getPattern(i + 1)) and
+        succ = this
       )
     }
   }
diff --git a/ruby/ql/lib/codeql/ruby/controlflow/internal/Splitting.qll b/ruby/ql/lib/codeql/ruby/controlflow/internal/Splitting.qll
index 9581b45a95e..5e24616ac4a 100644
--- a/ruby/ql/lib/codeql/ruby/controlflow/internal/Splitting.qll
+++ b/ruby/ql/lib/codeql/ruby/controlflow/internal/Splitting.qll
@@ -85,7 +85,14 @@ private module ConditionalCompletionSplitting {
         or
         last(succ.(ConditionalExpr).getBranch(_), pred, c) and
         completion = c
+        or
+        last(succ.(WhenClause).getAPattern(), pred, c) and completion = c
       )
+      or
+      succ(pred, succ, c) and
+      succ(succ, _, completion) and
+      succ instanceof WhenClause and
+      completion = c
     }
 
     override predicate hasEntryScope(CfgScope scope, AstNode succ) { none() }
diff --git a/ruby/ql/lib/codeql/ruby/dataflow/BarrierGuards.qll b/ruby/ql/lib/codeql/ruby/dataflow/BarrierGuards.qll
index b2827e53255..e80495ab2f3 100644
--- a/ruby/ql/lib/codeql/ruby/dataflow/BarrierGuards.qll
+++ b/ruby/ql/lib/codeql/ruby/dataflow/BarrierGuards.qll
@@ -186,8 +186,8 @@ private predicate stringConstCaseCompare(
     case.getValue() = testedNode and
     (
       exists(CfgNodes::ExprNodes::WhenClauseCfgNode branchNode |
+        guard = branchNode and
         branchNode = case.getBranch(_) and
-        guard = branchNode.getPattern(_) and
         // For simplicity, consider patterns that contain only string literals or arrays of string literals
         forall(ExprCfgNode pattern | pattern = branchNode.getPattern(_) |
           // when "foo"
diff --git a/ruby/ql/test/library-tests/controlflow/graph/Cfg.expected b/ruby/ql/test/library-tests/controlflow/graph/Cfg.expected
index 9c26785029e..69e4cc294de 100644
--- a/ruby/ql/test/library-tests/controlflow/graph/Cfg.expected
+++ b/ruby/ql/test/library-tests/controlflow/graph/Cfg.expected
@@ -526,17 +526,20 @@ case.rb:
 #-----|  -> exit if_in_case (normal)
 
 #    2| call to x1
-#-----|  -> when ...
+#-----|  -> 1
 
 #    2| self
 #-----|  -> call to x1
 
-#    3| when ...
-#-----|  -> 1
+#    3| [match] when ...
+#-----| match -> self
+
+#    3| [no-match] when ...
+#-----| no-match -> 2
 
 #    3| 1
-#-----| match -> self
-#-----| no-match -> when ...
+#-----| match -> [match] when ...
+#-----| no-match -> [no-match] when ...
 
 #    3| then ...
 #-----|  -> case ...
@@ -569,12 +572,15 @@ case.rb:
 #    3| x2
 #-----|  -> "x2"
 
-#    4| when ...
-#-----|  -> 2
+#    4| [match] when ...
+#-----| match -> self
+
+#    4| [no-match] when ...
+#-----| no-match -> case ...
 
 #    4| 2
-#-----| no-match -> case ...
-#-----| match -> self
+#-----| match -> [match] when ...
+#-----| no-match -> [no-match] when ...
 
 #    4| then ...
 #-----|  -> case ...
@@ -1826,17 +1832,20 @@ cfg.rb:
 #-----|  -> call to puts
 
 #   41| case ...
-#-----|  -> when ...
+#-----|  -> b
 
 #   41| 10
-#-----|  -> when ...
-
-#   42| when ...
 #-----|  -> 1
 
-#   42| 1
+#   42| [match] when ...
 #-----| match -> self
-#-----| no-match -> when ...
+
+#   42| [no-match] when ...
+#-----| no-match -> 2
+
+#   42| 1
+#-----| match -> [match] when ...
+#-----| no-match -> [no-match] when ...
 
 #   42| then ...
 #-----|  -> case ...
@@ -1853,20 +1862,23 @@ cfg.rb:
 #   42| one
 #-----|  -> "one"
 
-#   43| when ...
-#-----|  -> 2
+#   43| [match] when ...
+#-----| match -> self
+
+#   43| [no-match] when ...
+#-----| no-match -> self
 
 #   43| 2
+#-----| match -> [match] when ...
 #-----| no-match -> 3
-#-----| match -> self
 
 #   43| 3
+#-----| match -> [match] when ...
 #-----| no-match -> 4
-#-----| match -> self
 
 #   43| 4
-#-----| match -> self
-#-----| no-match -> self
+#-----| match -> [match] when ...
+#-----| no-match -> [no-match] when ...
 
 #   43| then ...
 #-----|  -> case ...
@@ -1901,15 +1913,19 @@ cfg.rb:
 #   47| case ...
 #-----|  -> chained
 
+#   48| [false] when ...
+#-----| false -> b
+
 #   48| when ...
-#-----|  -> b
+#-----| match -> self
+#-----| no-match -> b
 
 #   48| b
 #-----|  -> 1
 
 #   48| ... == ...
-#-----| true -> self
-#-----| false -> when ...
+#-----| false -> [false] when ...
+#-----| true -> when ...
 
 #   48| 1
 #-----|  -> ... == ...
@@ -1929,15 +1945,19 @@ cfg.rb:
 #   48| one
 #-----|  -> "one"
 
+#   49| [false] when ...
+#-----| false -> case ...
+
 #   49| when ...
-#-----|  -> b
+#-----| no-match -> case ...
+#-----| match -> self
 
 #   49| b
 #-----|  -> 0
 
 #   49| ... == ...
+#-----| true -> when ...
 #-----| false -> b
-#-----| true -> self
 
 #   49| 0
 #-----|  -> ... == ...
@@ -1946,8 +1966,8 @@ cfg.rb:
 #-----|  -> 1
 
 #   49| ... > ...
-#-----| false -> case ...
-#-----| true -> self
+#-----| false -> [false] when ...
+#-----| true -> when ...
 
 #   49| 1
 #-----|  -> ... > ...
diff --git a/ruby/ql/test/library-tests/dataflow/barrier-guards/barrier-guards.rb b/ruby/ql/test/library-tests/dataflow/barrier-guards/barrier-guards.rb
index 26c5da44798..6323a5224b6 100644
--- a/ruby/ql/test/library-tests/dataflow/barrier-guards/barrier-guards.rb
+++ b/ruby/ql/test/library-tests/dataflow/barrier-guards/barrier-guards.rb
@@ -137,9 +137,9 @@ end
 
 case foo
 when "foo", "bar"
-    foo # $ MISSING: guarded
+    foo # $ guarded
 when "baz", "quux"
-    foo # $ MISSING: guarded
+    foo # $ guarded
 else
     foo
 end

From dcebe930e778e2b420a50d7876e32e77aaa8a92b Mon Sep 17 00:00:00 2001
From: "github-actions[bot]"
 <41898282+github-actions[bot]@users.noreply.github.com>
Date: Fri, 11 Nov 2022 00:21:31 +0000
Subject: [PATCH 0174/1420] Add changed framework coverage reports

---
 csharp/documentation/library-coverage/coverage.csv | 2 +-
 csharp/documentation/library-coverage/coverage.rst | 4 ++--
 2 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/csharp/documentation/library-coverage/coverage.csv b/csharp/documentation/library-coverage/coverage.csv
index 6ab77f6aba6..5d0813f71e9 100644
--- a/csharp/documentation/library-coverage/coverage.csv
+++ b/csharp/documentation/library-coverage/coverage.csv
@@ -24,5 +24,5 @@ Microsoft.Win32,,,8,,,,,,,,,,,,8,
 MySql.Data.MySqlClient,48,,,,,,,,,,48,,,,,
 Newtonsoft.Json,,,91,,,,,,,,,,,,73,18
 ServiceStack,194,,7,27,,,,,,75,92,,,,7,
-System,65,4,12131,,8,8,9,,4,,33,3,1,3,10139,1992
+System,65,4,12142,,8,8,9,,4,,33,3,1,3,10151,1991
 Windows.Security.Cryptography.Core,1,,,,,,,1,,,,,,,,
diff --git a/csharp/documentation/library-coverage/coverage.rst b/csharp/documentation/library-coverage/coverage.rst
index 0f3dce2941a..fa178752fe3 100644
--- a/csharp/documentation/library-coverage/coverage.rst
+++ b/csharp/documentation/library-coverage/coverage.rst
@@ -8,7 +8,7 @@ C# framework & library support
 
    Framework / library,Package,Flow sources,Taint & value steps,Sinks (total),`CWE-079` :sub:`Cross-site scripting`
    `ServiceStack <https://servicestack.net/>`_,"``ServiceStack.*``, ``ServiceStack``",,7,194,
-   System,"``System.*``, ``System``",4,12131,65,7
+   System,"``System.*``, ``System``",4,12142,65,7
    Others,"``Dapper``, ``JsonToItemsTaskFactory``, ``Microsoft.ApplicationBlocks.Data``, ``Microsoft.CSharp``, ``Microsoft.EntityFrameworkCore``, ``Microsoft.Extensions.Caching.Distributed``, ``Microsoft.Extensions.Caching.Memory``, ``Microsoft.Extensions.Configuration``, ``Microsoft.Extensions.DependencyInjection``, ``Microsoft.Extensions.DependencyModel``, ``Microsoft.Extensions.FileProviders``, ``Microsoft.Extensions.FileSystemGlobbing``, ``Microsoft.Extensions.Hosting``, ``Microsoft.Extensions.Http``, ``Microsoft.Extensions.Logging``, ``Microsoft.Extensions.Options``, ``Microsoft.Extensions.Primitives``, ``Microsoft.Interop``, ``Microsoft.NET.Build.Tasks``, ``Microsoft.NETCore.Platforms.BuildTasks``, ``Microsoft.VisualBasic``, ``Microsoft.Win32``, ``MySql.Data.MySqlClient``, ``Newtonsoft.Json``, ``Windows.Security.Cryptography.Core``",,556,138,
-   Totals,,4,12694,397,7
+   Totals,,4,12705,397,7
 

From 62ea1f0a05fb6166a679a578518d71a8e781390a Mon Sep 17 00:00:00 2001
From: Harry Maclean <hmac@github.com>
Date: Fri, 11 Nov 2022 18:24:20 +1300
Subject: [PATCH 0175/1420] Ruby: Fix performance of string comparison guard

The `or` case ran extremely slowly before this change. Also exclude
string interpolations from consideration, for correctness, and add some
more tests.
---
 .../codeql/ruby/dataflow/BarrierGuards.qll    | 39 +++++++++++++++----
 .../dataflow/barrier-guards/barrier-guards.rb | 17 ++++++++
 2 files changed, 48 insertions(+), 8 deletions(-)

diff --git a/ruby/ql/lib/codeql/ruby/dataflow/BarrierGuards.qll b/ruby/ql/lib/codeql/ruby/dataflow/BarrierGuards.qll
index e80495ab2f3..01b42a520bf 100644
--- a/ruby/ql/lib/codeql/ruby/dataflow/BarrierGuards.qll
+++ b/ruby/ql/lib/codeql/ruby/dataflow/BarrierGuards.qll
@@ -7,12 +7,16 @@ private import codeql.ruby.controlflow.CfgNodes
 private import codeql.ruby.dataflow.SSA
 private import codeql.ruby.ast.internal.Constant
 private import codeql.ruby.InclusionTests
+private import codeql.ruby.ast.internal.Literal
 
 private predicate stringConstCompare(CfgNodes::AstCfgNode guard, CfgNode testedNode, boolean branch) {
   exists(CfgNodes::ExprNodes::ComparisonOperationCfgNode c |
     c = guard and
     exists(CfgNodes::ExprNodes::StringLiteralCfgNode strLitNode |
-      c.getExpr() instanceof EqExpr and branch = true
+      // Only consider strings without any interpolations
+      not exists(StringInterpolationComponent comp | comp = strLitNode.getExpr().getComponent(_)) and
+      c.getExpr() instanceof EqExpr and
+      branch = true
       or
       c.getExpr() instanceof CaseEqExpr and branch = true
       or
@@ -26,24 +30,43 @@ private predicate stringConstCompare(CfgNodes::AstCfgNode guard, CfgNode testedN
   or
   stringConstCaseCompare(guard, testedNode, branch)
   or
-  stringConstCompareOr(guard, testedNode, branch)
+  exists(Ssa::Definition def, CfgNodes::ExprNodes::BinaryOperationCfgNode g |
+    g = guard and
+    stringConstCompareOr(guard, def, branch) and
+    stringConstCompare(g.getLeftOperand(), testedNode, _)
+  )
   or
   stringConstCompareAnd(guard, testedNode, branch)
 }
 
+/**
+ * Holds if `guard` is an `or` expression whose operands are string comparison guards that test the same SSA variable.
+ * `testedNode` is an arbitrary node that is tested by one of the guards.
+ * For example:
+ *
+ * ```rb
+ * x == "foo" or x == "bar"
+ * ```
+ */
 private predicate stringConstCompareOr(
-  CfgNodes::ExprNodes::BinaryOperationCfgNode guard, CfgNode testedNode, boolean branch
+  CfgNodes::ExprNodes::BinaryOperationCfgNode guard, Ssa::Definition def, boolean branch
 ) {
   guard.getExpr() instanceof LogicalOrExpr and
   branch = true and
-  exists(Ssa::Definition def |
-    forall(CfgNode innerGuard | innerGuard = guard.getAnOperand() |
-      stringConstCompare(innerGuard, def.getARead(), branch)
-    ) and
-    testedNode = any(CfgNode node | stringConstCompare(guard.getAnOperand(), node, _))
+  forall(CfgNode innerGuard | innerGuard = guard.getAnOperand() |
+    stringConstCompare(innerGuard, def.getARead(), branch)
   )
 }
 
+/**
+ * Holds if guard is an `and` expression containing a string comparison guard in either operand.
+ * For example:
+ *
+ * ```rb
+ * x == "foo" and other_condition()
+ * other_condition() and x == "foo"
+ * ```
+ */
 private predicate stringConstCompareAnd(
   CfgNodes::ExprNodes::BinaryOperationCfgNode guard, CfgNode testedNode, boolean branch
 ) {
diff --git a/ruby/ql/test/library-tests/dataflow/barrier-guards/barrier-guards.rb b/ruby/ql/test/library-tests/dataflow/barrier-guards/barrier-guards.rb
index 6323a5224b6..1946be36275 100644
--- a/ruby/ql/test/library-tests/dataflow/barrier-guards/barrier-guards.rb
+++ b/ruby/ql/test/library-tests/dataflow/barrier-guards/barrier-guards.rb
@@ -250,3 +250,20 @@ case bar
 in "foo"
     foo
 end
+
+if foo == "#{some_method()}"
+    foo
+end
+
+F = "foo"
+if foo == "#{F}"
+    foo # $ MISSING: guarded
+end
+
+f = "foo"
+if foo == "#{f}"
+    foo # $ MISSING: guarded
+end
+
+foo == "foo" && foo # $ guarded
+foo && foo == "foo"
\ No newline at end of file

From b16cecc8db1c678b4b5d4300ebcec1030fc902bc Mon Sep 17 00:00:00 2001
From: Harry Maclean <hmac@github.com>
Date: Fri, 11 Nov 2022 18:29:07 +1300
Subject: [PATCH 0176/1420] Ruby: Add missing doc

---
 ruby/ql/lib/codeql/ruby/controlflow/CfgNodes.qll   | 1 +
 ruby/ql/lib/codeql/ruby/dataflow/BarrierGuards.qll | 7 +++----
 2 files changed, 4 insertions(+), 4 deletions(-)

diff --git a/ruby/ql/lib/codeql/ruby/controlflow/CfgNodes.qll b/ruby/ql/lib/codeql/ruby/controlflow/CfgNodes.qll
index 31898e0a652..b411c766f03 100644
--- a/ruby/ql/lib/codeql/ruby/controlflow/CfgNodes.qll
+++ b/ruby/ql/lib/codeql/ruby/controlflow/CfgNodes.qll
@@ -878,6 +878,7 @@ module ExprNodes {
 
     final override SplatExpr getExpr() { result = super.getExpr() }
 
+    /** Gets the operand of this splat expression. */
     final ExprCfgNode getOperand() { e.hasCfgChild(e.getOperand(), this, result) }
   }
 
diff --git a/ruby/ql/lib/codeql/ruby/dataflow/BarrierGuards.qll b/ruby/ql/lib/codeql/ruby/dataflow/BarrierGuards.qll
index 01b42a520bf..16e965f6657 100644
--- a/ruby/ql/lib/codeql/ruby/dataflow/BarrierGuards.qll
+++ b/ruby/ql/lib/codeql/ruby/dataflow/BarrierGuards.qll
@@ -14,7 +14,7 @@ private predicate stringConstCompare(CfgNodes::AstCfgNode guard, CfgNode testedN
     c = guard and
     exists(CfgNodes::ExprNodes::StringLiteralCfgNode strLitNode |
       // Only consider strings without any interpolations
-      not exists(StringInterpolationComponent comp | comp = strLitNode.getExpr().getComponent(_)) and
+      not strLitNode.getExpr().getComponent(_) instanceof StringInterpolationComponent and
       c.getExpr() instanceof EqExpr and
       branch = true
       or
@@ -40,8 +40,7 @@ private predicate stringConstCompare(CfgNodes::AstCfgNode guard, CfgNode testedN
 }
 
 /**
- * Holds if `guard` is an `or` expression whose operands are string comparison guards that test the same SSA variable.
- * `testedNode` is an arbitrary node that is tested by one of the guards.
+ * Holds if `guard` is an `or` expression whose operands are string comparison guards that test `def`.
  * For example:
  *
  * ```rb
@@ -59,7 +58,7 @@ private predicate stringConstCompareOr(
 }
 
 /**
- * Holds if guard is an `and` expression containing a string comparison guard in either operand.
+ * Holds if `guard` is an `and` expression containing a string comparison guard in either operand.
  * For example:
  *
  * ```rb

From 2b4217b8a41536b5b550ba56e4f911743bc976fd Mon Sep 17 00:00:00 2001
From: Harry Maclean <hmac@github.com>
Date: Fri, 11 Nov 2022 18:41:51 +1300
Subject: [PATCH 0177/1420] Ruby: Update test fixture

---
 .../barrier-guards/barrier-guards.expected    | 217 ++++++++++++++++--
 1 file changed, 195 insertions(+), 22 deletions(-)

diff --git a/ruby/ql/test/library-tests/dataflow/barrier-guards/barrier-guards.expected b/ruby/ql/test/library-tests/dataflow/barrier-guards/barrier-guards.expected
index 05c515edebf..7804824ffb6 100644
--- a/ruby/ql/test/library-tests/dataflow/barrier-guards/barrier-guards.expected
+++ b/ruby/ql/test/library-tests/dataflow/barrier-guards/barrier-guards.expected
@@ -10,8 +10,15 @@ oldStyleBarrierGuards
 | barrier-guards.rb:43:4:43:15 | ... == ... | barrier-guards.rb:45:9:45:11 | foo | barrier-guards.rb:43:4:43:6 | foo | true |
 | barrier-guards.rb:70:4:70:21 | call to include? | barrier-guards.rb:71:5:71:7 | foo | barrier-guards.rb:70:18:70:20 | foo | true |
 | barrier-guards.rb:82:4:82:25 | ... != ... | barrier-guards.rb:83:5:83:7 | foo | barrier-guards.rb:82:15:82:17 | foo | true |
-| barrier-guards.rb:196:6:196:17 | ... == ... | barrier-guards.rb:197:5:197:7 | foo | barrier-guards.rb:196:6:196:8 | foo | true |
-| barrier-guards.rb:201:6:201:17 | ... == ... | barrier-guards.rb:201:24:201:26 | foo | barrier-guards.rb:201:6:201:8 | foo | true |
+| barrier-guards.rb:207:4:207:15 | ... == ... | barrier-guards.rb:208:5:208:7 | foo | barrier-guards.rb:207:4:207:6 | foo | true |
+| barrier-guards.rb:211:10:211:21 | ... == ... | barrier-guards.rb:212:5:212:7 | foo | barrier-guards.rb:211:10:211:12 | foo | true |
+| barrier-guards.rb:215:16:215:27 | ... == ... | barrier-guards.rb:216:5:216:7 | foo | barrier-guards.rb:215:16:215:18 | foo | true |
+| barrier-guards.rb:219:4:219:15 | ... == ... | barrier-guards.rb:219:21:219:23 | foo | barrier-guards.rb:219:4:219:6 | foo | true |
+| barrier-guards.rb:219:4:219:15 | ... == ... | barrier-guards.rb:220:5:220:7 | foo | barrier-guards.rb:219:4:219:6 | foo | true |
+| barrier-guards.rb:219:21:219:32 | ... == ... | barrier-guards.rb:220:5:220:7 | foo | barrier-guards.rb:219:21:219:23 | foo | true |
+| barrier-guards.rb:232:6:232:17 | ... == ... | barrier-guards.rb:233:5:233:7 | foo | barrier-guards.rb:232:6:232:8 | foo | true |
+| barrier-guards.rb:237:6:237:17 | ... == ... | barrier-guards.rb:237:24:237:26 | foo | barrier-guards.rb:237:6:237:8 | foo | true |
+| barrier-guards.rb:268:1:268:12 | ... == ... | barrier-guards.rb:268:17:268:19 | foo | barrier-guards.rb:268:1:268:3 | foo | true |
 newStyleBarrierGuards
 | barrier-guards.rb:4:5:4:7 | foo |
 | barrier-guards.rb:10:5:10:7 | foo |
@@ -26,13 +33,23 @@ newStyleBarrierGuards
 | barrier-guards.rb:126:5:126:7 | foo |
 | barrier-guards.rb:133:5:133:7 | foo |
 | barrier-guards.rb:135:5:135:7 | foo |
+| barrier-guards.rb:140:5:140:7 | foo |
+| barrier-guards.rb:142:5:142:7 | foo |
 | barrier-guards.rb:149:5:149:7 | foo |
 | barrier-guards.rb:154:5:154:7 | foo |
 | barrier-guards.rb:159:5:159:7 | foo |
 | barrier-guards.rb:164:5:164:7 | foo |
-| barrier-guards.rb:197:5:197:7 | foo |
-| barrier-guards.rb:201:24:201:26 | foo |
+| barrier-guards.rb:192:5:192:7 | foo |
+| barrier-guards.rb:196:5:196:7 | foo |
 | barrier-guards.rb:208:5:208:7 | foo |
+| barrier-guards.rb:212:5:212:7 | foo |
+| barrier-guards.rb:216:5:216:7 | foo |
+| barrier-guards.rb:219:21:219:23 | foo |
+| barrier-guards.rb:220:5:220:7 | foo |
+| barrier-guards.rb:233:5:233:7 | foo |
+| barrier-guards.rb:237:24:237:26 | foo |
+| barrier-guards.rb:244:5:244:7 | foo |
+| barrier-guards.rb:268:17:268:19 | foo |
 controls
 | barrier-guards.rb:3:4:3:15 | ... == ... | barrier-guards.rb:4:5:4:7 | foo | true |
 | barrier-guards.rb:3:4:3:15 | ... == ... | barrier-guards.rb:6:5:6:7 | foo | false |
@@ -80,48 +97,204 @@ controls
 | barrier-guards.rb:118:8:118:8 | call to x | barrier-guards.rb:118:4:118:8 | [true] not ... | false |
 | barrier-guards.rb:118:8:118:8 | call to x | barrier-guards.rb:119:5:119:7 | foo | false |
 | barrier-guards.rb:118:8:118:8 | call to x | barrier-guards.rb:121:5:121:8 | bars | true |
+| barrier-guards.rb:125:1:126:19 | [match] when ... | barrier-guards.rb:126:5:126:7 | foo | match |
+| barrier-guards.rb:125:1:126:19 | [no-match] when ... | barrier-guards.rb:128:5:128:7 | foo | no-match |
+| barrier-guards.rb:125:6:125:10 | "foo" | barrier-guards.rb:125:1:126:19 | [match] when ... | match |
+| barrier-guards.rb:125:6:125:10 | "foo" | barrier-guards.rb:125:1:126:19 | [no-match] when ... | no-match |
 | barrier-guards.rb:125:6:125:10 | "foo" | barrier-guards.rb:126:5:126:7 | foo | match |
 | barrier-guards.rb:125:6:125:10 | "foo" | barrier-guards.rb:128:5:128:7 | foo | no-match |
+| barrier-guards.rb:132:1:133:19 | [match] when ... | barrier-guards.rb:133:5:133:7 | foo | match |
+| barrier-guards.rb:132:1:133:19 | [no-match] when ... | barrier-guards.rb:134:1:135:19 | [match] when ... | no-match |
+| barrier-guards.rb:132:1:133:19 | [no-match] when ... | barrier-guards.rb:134:1:135:19 | [no-match] when ... | no-match |
+| barrier-guards.rb:132:1:133:19 | [no-match] when ... | barrier-guards.rb:134:7:134:9 | bar | no-match |
+| barrier-guards.rb:132:1:133:19 | [no-match] when ... | barrier-guards.rb:135:5:135:7 | foo | no-match |
+| barrier-guards.rb:132:6:132:10 | "foo" | barrier-guards.rb:132:1:133:19 | [match] when ... | match |
+| barrier-guards.rb:132:6:132:10 | "foo" | barrier-guards.rb:132:1:133:19 | [no-match] when ... | no-match |
 | barrier-guards.rb:132:6:132:10 | "foo" | barrier-guards.rb:133:5:133:7 | foo | match |
-| barrier-guards.rb:132:6:132:10 | "foo" | barrier-guards.rb:134:1:135:19 | when ... | no-match |
+| barrier-guards.rb:132:6:132:10 | "foo" | barrier-guards.rb:134:1:135:19 | [match] when ... | no-match |
+| barrier-guards.rb:132:6:132:10 | "foo" | barrier-guards.rb:134:1:135:19 | [no-match] when ... | no-match |
+| barrier-guards.rb:132:6:132:10 | "foo" | barrier-guards.rb:134:7:134:9 | bar | no-match |
 | barrier-guards.rb:132:6:132:10 | "foo" | barrier-guards.rb:135:5:135:7 | foo | no-match |
+| barrier-guards.rb:134:1:135:19 | [match] when ... | barrier-guards.rb:135:5:135:7 | foo | match |
+| barrier-guards.rb:134:6:134:10 | "bar" | barrier-guards.rb:134:1:135:19 | [match] when ... | match |
+| barrier-guards.rb:134:6:134:10 | "bar" | barrier-guards.rb:134:1:135:19 | [no-match] when ... | no-match |
 | barrier-guards.rb:134:6:134:10 | "bar" | barrier-guards.rb:135:5:135:7 | foo | match |
+| barrier-guards.rb:139:1:140:19 | [match] when ... | barrier-guards.rb:140:5:140:7 | foo | match |
+| barrier-guards.rb:139:1:140:19 | [no-match] when ... | barrier-guards.rb:141:1:142:19 | [match] when ... | no-match |
+| barrier-guards.rb:139:1:140:19 | [no-match] when ... | barrier-guards.rb:141:1:142:19 | [no-match] when ... | no-match |
+| barrier-guards.rb:139:1:140:19 | [no-match] when ... | barrier-guards.rb:141:7:141:9 | baz | no-match |
+| barrier-guards.rb:139:1:140:19 | [no-match] when ... | barrier-guards.rb:141:14:141:17 | quux | no-match |
+| barrier-guards.rb:139:1:140:19 | [no-match] when ... | barrier-guards.rb:142:5:142:7 | foo | no-match |
+| barrier-guards.rb:139:1:140:19 | [no-match] when ... | barrier-guards.rb:144:5:144:7 | foo | no-match |
+| barrier-guards.rb:139:6:139:10 | "foo" | barrier-guards.rb:139:1:140:19 | [no-match] when ... | no-match |
 | barrier-guards.rb:139:6:139:10 | "foo" | barrier-guards.rb:139:14:139:16 | bar | no-match |
-| barrier-guards.rb:139:6:139:10 | "foo" | barrier-guards.rb:141:1:142:7 | when ... | no-match |
+| barrier-guards.rb:139:6:139:10 | "foo" | barrier-guards.rb:141:1:142:19 | [match] when ... | no-match |
+| barrier-guards.rb:139:6:139:10 | "foo" | barrier-guards.rb:141:1:142:19 | [no-match] when ... | no-match |
+| barrier-guards.rb:139:6:139:10 | "foo" | barrier-guards.rb:141:7:141:9 | baz | no-match |
 | barrier-guards.rb:139:6:139:10 | "foo" | barrier-guards.rb:141:14:141:17 | quux | no-match |
 | barrier-guards.rb:139:6:139:10 | "foo" | barrier-guards.rb:142:5:142:7 | foo | no-match |
 | barrier-guards.rb:139:6:139:10 | "foo" | barrier-guards.rb:144:5:144:7 | foo | no-match |
-| barrier-guards.rb:139:13:139:17 | "bar" | barrier-guards.rb:141:1:142:7 | when ... | no-match |
+| barrier-guards.rb:139:13:139:17 | "bar" | barrier-guards.rb:139:1:140:19 | [no-match] when ... | no-match |
+| barrier-guards.rb:139:13:139:17 | "bar" | barrier-guards.rb:141:1:142:19 | [match] when ... | no-match |
+| barrier-guards.rb:139:13:139:17 | "bar" | barrier-guards.rb:141:1:142:19 | [no-match] when ... | no-match |
+| barrier-guards.rb:139:13:139:17 | "bar" | barrier-guards.rb:141:7:141:9 | baz | no-match |
 | barrier-guards.rb:139:13:139:17 | "bar" | barrier-guards.rb:141:14:141:17 | quux | no-match |
 | barrier-guards.rb:139:13:139:17 | "bar" | barrier-guards.rb:142:5:142:7 | foo | no-match |
 | barrier-guards.rb:139:13:139:17 | "bar" | barrier-guards.rb:144:5:144:7 | foo | no-match |
+| barrier-guards.rb:141:1:142:19 | [match] when ... | barrier-guards.rb:142:5:142:7 | foo | match |
+| barrier-guards.rb:141:1:142:19 | [no-match] when ... | barrier-guards.rb:144:5:144:7 | foo | no-match |
+| barrier-guards.rb:141:6:141:10 | "baz" | barrier-guards.rb:141:1:142:19 | [no-match] when ... | no-match |
 | barrier-guards.rb:141:6:141:10 | "baz" | barrier-guards.rb:141:14:141:17 | quux | no-match |
 | barrier-guards.rb:141:6:141:10 | "baz" | barrier-guards.rb:144:5:144:7 | foo | no-match |
+| barrier-guards.rb:141:13:141:18 | "quux" | barrier-guards.rb:141:1:142:19 | [no-match] when ... | no-match |
 | barrier-guards.rb:141:13:141:18 | "quux" | barrier-guards.rb:144:5:144:7 | foo | no-match |
+| barrier-guards.rb:148:1:149:19 | [match] when ... | barrier-guards.rb:149:5:149:7 | foo | match |
+| barrier-guards.rb:148:6:148:20 | * ... | barrier-guards.rb:148:1:149:19 | [match] when ... | match |
+| barrier-guards.rb:148:6:148:20 | * ... | barrier-guards.rb:148:1:149:19 | [no-match] when ... | no-match |
 | barrier-guards.rb:148:6:148:20 | * ... | barrier-guards.rb:149:5:149:7 | foo | match |
+| barrier-guards.rb:153:1:154:19 | [match] when ... | barrier-guards.rb:154:5:154:7 | foo | match |
+| barrier-guards.rb:153:6:153:17 | * ... | barrier-guards.rb:153:1:154:19 | [match] when ... | match |
+| barrier-guards.rb:153:6:153:17 | * ... | barrier-guards.rb:153:1:154:19 | [no-match] when ... | no-match |
 | barrier-guards.rb:153:6:153:17 | * ... | barrier-guards.rb:154:5:154:7 | foo | match |
+| barrier-guards.rb:158:1:159:19 | [match] when ... | barrier-guards.rb:159:5:159:7 | foo | match |
+| barrier-guards.rb:158:6:158:9 | * ... | barrier-guards.rb:158:1:159:19 | [match] when ... | match |
+| barrier-guards.rb:158:6:158:9 | * ... | barrier-guards.rb:158:1:159:19 | [no-match] when ... | no-match |
 | barrier-guards.rb:158:6:158:9 | * ... | barrier-guards.rb:159:5:159:7 | foo | match |
+| barrier-guards.rb:163:1:164:19 | [match] when ... | barrier-guards.rb:164:5:164:7 | foo | match |
+| barrier-guards.rb:163:6:163:10 | * ... | barrier-guards.rb:163:1:164:19 | [match] when ... | match |
+| barrier-guards.rb:163:6:163:10 | * ... | barrier-guards.rb:163:1:164:19 | [no-match] when ... | no-match |
 | barrier-guards.rb:163:6:163:10 | * ... | barrier-guards.rb:164:5:164:7 | foo | match |
+| barrier-guards.rb:168:1:169:7 | [match] when ... | barrier-guards.rb:169:5:169:7 | foo | match |
+| barrier-guards.rb:168:6:168:16 | * ... | barrier-guards.rb:168:1:169:7 | [match] when ... | match |
+| barrier-guards.rb:168:6:168:16 | * ... | barrier-guards.rb:168:1:169:7 | [no-match] when ... | no-match |
 | barrier-guards.rb:168:6:168:16 | * ... | barrier-guards.rb:169:5:169:7 | foo | match |
+| barrier-guards.rb:173:1:174:7 | [match] when ... | barrier-guards.rb:174:5:174:7 | foo | match |
+| barrier-guards.rb:173:6:173:10 | "foo" | barrier-guards.rb:173:1:174:7 | [no-match] when ... | no-match |
 | barrier-guards.rb:173:6:173:10 | "foo" | barrier-guards.rb:173:13:173:13 | self | no-match |
+| barrier-guards.rb:173:13:173:13 | call to x | barrier-guards.rb:173:1:174:7 | [no-match] when ... | no-match |
+| barrier-guards.rb:180:1:181:7 | [match] when ... | barrier-guards.rb:181:5:181:7 | foo | match |
+| barrier-guards.rb:180:6:180:15 | * ... | barrier-guards.rb:180:1:181:7 | [match] when ... | match |
+| barrier-guards.rb:180:6:180:15 | * ... | barrier-guards.rb:180:1:181:7 | [no-match] when ... | no-match |
 | barrier-guards.rb:180:6:180:15 | * ... | barrier-guards.rb:181:5:181:7 | foo | match |
+| barrier-guards.rb:187:1:188:7 | [match] when ... | barrier-guards.rb:188:5:188:7 | foo | match |
+| barrier-guards.rb:187:6:187:15 | * ... | barrier-guards.rb:187:1:188:7 | [match] when ... | match |
+| barrier-guards.rb:187:6:187:15 | * ... | barrier-guards.rb:187:1:188:7 | [no-match] when ... | no-match |
 | barrier-guards.rb:187:6:187:15 | * ... | barrier-guards.rb:188:5:188:7 | foo | match |
 | barrier-guards.rb:191:4:191:15 | ... == ... | barrier-guards.rb:191:4:191:31 | [false] ... or ... | false |
 | barrier-guards.rb:191:4:191:15 | ... == ... | barrier-guards.rb:191:20:191:22 | foo | false |
 | barrier-guards.rb:191:4:191:31 | [true] ... or ... | barrier-guards.rb:192:5:192:7 | foo | true |
 | barrier-guards.rb:191:20:191:31 | ... == ... | barrier-guards.rb:191:4:191:31 | [false] ... or ... | false |
-| barrier-guards.rb:196:6:196:17 | ... == ... | barrier-guards.rb:197:5:197:7 | foo | true |
-| barrier-guards.rb:201:6:201:17 | ... == ... | barrier-guards.rb:201:24:201:26 | foo | true |
-| barrier-guards.rb:201:6:201:17 | ... == ... | barrier-guards.rb:202:1:202:26 | when ... | false |
-| barrier-guards.rb:201:6:201:17 | ... == ... | barrier-guards.rb:202:24:202:26 | foo | false |
-| barrier-guards.rb:201:6:201:17 | ... == ... | barrier-guards.rb:203:1:203:22 | when ... | false |
-| barrier-guards.rb:201:6:201:17 | ... == ... | barrier-guards.rb:203:20:203:22 | foo | false |
-| barrier-guards.rb:202:6:202:17 | ... == ... | barrier-guards.rb:202:24:202:26 | foo | true |
-| barrier-guards.rb:202:6:202:17 | ... == ... | barrier-guards.rb:203:1:203:22 | when ... | false |
-| barrier-guards.rb:202:6:202:17 | ... == ... | barrier-guards.rb:203:20:203:22 | foo | false |
-| barrier-guards.rb:203:6:203:13 | ... == ... | barrier-guards.rb:203:20:203:22 | foo | true |
-| barrier-guards.rb:207:4:207:8 | "foo" | barrier-guards.rb:208:5:208:7 | foo | match |
-| barrier-guards.rb:207:4:207:8 | "foo" | barrier-guards.rb:209:1:210:7 | in ... then ... | no-match |
-| barrier-guards.rb:207:4:207:8 | "foo" | barrier-guards.rb:210:5:210:7 | foo | no-match |
-| barrier-guards.rb:209:4:209:4 | x | barrier-guards.rb:210:5:210:7 | foo | match |
-| barrier-guards.rb:214:4:214:8 | "foo" | barrier-guards.rb:215:5:215:7 | foo | match |
+| barrier-guards.rb:195:4:195:15 | ... == ... | barrier-guards.rb:195:4:195:31 | [false] ... or ... | false |
+| barrier-guards.rb:195:4:195:15 | ... == ... | barrier-guards.rb:195:4:195:47 | [false] ... or ... | false |
+| barrier-guards.rb:195:4:195:15 | ... == ... | barrier-guards.rb:195:20:195:22 | foo | false |
+| barrier-guards.rb:195:4:195:15 | ... == ... | barrier-guards.rb:195:36:195:38 | foo | false |
+| barrier-guards.rb:195:4:195:31 | [false] ... or ... | barrier-guards.rb:195:4:195:47 | [false] ... or ... | false |
+| barrier-guards.rb:195:4:195:31 | [false] ... or ... | barrier-guards.rb:195:36:195:38 | foo | false |
+| barrier-guards.rb:195:4:195:47 | [true] ... or ... | barrier-guards.rb:196:5:196:7 | foo | true |
+| barrier-guards.rb:195:20:195:31 | ... == ... | barrier-guards.rb:195:4:195:31 | [false] ... or ... | false |
+| barrier-guards.rb:195:20:195:31 | ... == ... | barrier-guards.rb:195:4:195:47 | [false] ... or ... | false |
+| barrier-guards.rb:195:20:195:31 | ... == ... | barrier-guards.rb:195:36:195:38 | foo | false |
+| barrier-guards.rb:195:36:195:47 | ... == ... | barrier-guards.rb:195:4:195:47 | [false] ... or ... | false |
+| barrier-guards.rb:199:4:199:15 | ... == ... | barrier-guards.rb:199:4:199:31 | [false] ... or ... | false |
+| barrier-guards.rb:199:4:199:15 | ... == ... | barrier-guards.rb:199:4:199:43 | [false] ... or ... | false |
+| barrier-guards.rb:199:4:199:15 | ... == ... | barrier-guards.rb:199:20:199:22 | foo | false |
+| barrier-guards.rb:199:4:199:15 | ... == ... | barrier-guards.rb:199:36:199:38 | foo | false |
+| barrier-guards.rb:199:4:199:31 | [false] ... or ... | barrier-guards.rb:199:4:199:43 | [false] ... or ... | false |
+| barrier-guards.rb:199:4:199:31 | [false] ... or ... | barrier-guards.rb:199:36:199:38 | foo | false |
+| barrier-guards.rb:199:4:199:43 | [true] ... or ... | barrier-guards.rb:200:5:200:7 | foo | true |
+| barrier-guards.rb:199:20:199:31 | ... == ... | barrier-guards.rb:199:4:199:31 | [false] ... or ... | false |
+| barrier-guards.rb:199:20:199:31 | ... == ... | barrier-guards.rb:199:4:199:43 | [false] ... or ... | false |
+| barrier-guards.rb:199:20:199:31 | ... == ... | barrier-guards.rb:199:36:199:38 | foo | false |
+| barrier-guards.rb:199:36:199:43 | ... == ... | barrier-guards.rb:199:4:199:43 | [false] ... or ... | false |
+| barrier-guards.rb:203:4:203:15 | ... == ... | barrier-guards.rb:203:4:203:31 | [false] ... or ... | false |
+| barrier-guards.rb:203:4:203:15 | ... == ... | barrier-guards.rb:203:4:203:47 | [false] ... or ... | false |
+| barrier-guards.rb:203:4:203:15 | ... == ... | barrier-guards.rb:203:20:203:22 | self | false |
+| barrier-guards.rb:203:4:203:15 | ... == ... | barrier-guards.rb:203:36:203:38 | foo | false |
+| barrier-guards.rb:203:4:203:31 | [false] ... or ... | barrier-guards.rb:203:4:203:47 | [false] ... or ... | false |
+| barrier-guards.rb:203:4:203:31 | [false] ... or ... | barrier-guards.rb:203:36:203:38 | foo | false |
+| barrier-guards.rb:203:4:203:47 | [true] ... or ... | barrier-guards.rb:204:5:204:7 | foo | true |
+| barrier-guards.rb:203:20:203:31 | ... == ... | barrier-guards.rb:203:4:203:31 | [false] ... or ... | false |
+| barrier-guards.rb:203:20:203:31 | ... == ... | barrier-guards.rb:203:4:203:47 | [false] ... or ... | false |
+| barrier-guards.rb:203:20:203:31 | ... == ... | barrier-guards.rb:203:36:203:38 | foo | false |
+| barrier-guards.rb:203:36:203:47 | ... == ... | barrier-guards.rb:203:4:203:47 | [false] ... or ... | false |
+| barrier-guards.rb:207:4:207:15 | ... == ... | barrier-guards.rb:207:4:207:21 | [true] ... and ... | true |
+| barrier-guards.rb:207:4:207:15 | ... == ... | barrier-guards.rb:207:21:207:21 | self | true |
+| barrier-guards.rb:207:4:207:15 | ... == ... | barrier-guards.rb:208:5:208:7 | foo | true |
+| barrier-guards.rb:207:4:207:21 | [true] ... and ... | barrier-guards.rb:208:5:208:7 | foo | true |
+| barrier-guards.rb:207:21:207:21 | call to x | barrier-guards.rb:207:4:207:21 | [true] ... and ... | true |
+| barrier-guards.rb:207:21:207:21 | call to x | barrier-guards.rb:208:5:208:7 | foo | true |
+| barrier-guards.rb:211:4:211:4 | call to x | barrier-guards.rb:211:4:211:21 | [true] ... and ... | true |
+| barrier-guards.rb:211:4:211:4 | call to x | barrier-guards.rb:211:10:211:12 | foo | true |
+| barrier-guards.rb:211:4:211:4 | call to x | barrier-guards.rb:212:5:212:7 | foo | true |
+| barrier-guards.rb:211:4:211:21 | [true] ... and ... | barrier-guards.rb:212:5:212:7 | foo | true |
+| barrier-guards.rb:211:10:211:21 | ... == ... | barrier-guards.rb:211:4:211:21 | [true] ... and ... | true |
+| barrier-guards.rb:211:10:211:21 | ... == ... | barrier-guards.rb:212:5:212:7 | foo | true |
+| barrier-guards.rb:215:4:215:4 | call to x | barrier-guards.rb:215:4:215:10 | [true] ... and ... | true |
+| barrier-guards.rb:215:4:215:4 | call to x | barrier-guards.rb:215:4:215:27 | [true] ... and ... | true |
+| barrier-guards.rb:215:4:215:4 | call to x | barrier-guards.rb:215:10:215:10 | self | true |
+| barrier-guards.rb:215:4:215:4 | call to x | barrier-guards.rb:215:16:215:18 | foo | true |
+| barrier-guards.rb:215:4:215:4 | call to x | barrier-guards.rb:216:5:216:7 | foo | true |
+| barrier-guards.rb:215:4:215:10 | [true] ... and ... | barrier-guards.rb:215:4:215:27 | [true] ... and ... | true |
+| barrier-guards.rb:215:4:215:10 | [true] ... and ... | barrier-guards.rb:215:16:215:18 | foo | true |
+| barrier-guards.rb:215:4:215:10 | [true] ... and ... | barrier-guards.rb:216:5:216:7 | foo | true |
+| barrier-guards.rb:215:4:215:27 | [true] ... and ... | barrier-guards.rb:216:5:216:7 | foo | true |
+| barrier-guards.rb:215:10:215:10 | call to y | barrier-guards.rb:215:4:215:10 | [true] ... and ... | true |
+| barrier-guards.rb:215:10:215:10 | call to y | barrier-guards.rb:215:4:215:27 | [true] ... and ... | true |
+| barrier-guards.rb:215:10:215:10 | call to y | barrier-guards.rb:215:16:215:18 | foo | true |
+| barrier-guards.rb:215:10:215:10 | call to y | barrier-guards.rb:216:5:216:7 | foo | true |
+| barrier-guards.rb:215:16:215:27 | ... == ... | barrier-guards.rb:215:4:215:27 | [true] ... and ... | true |
+| barrier-guards.rb:215:16:215:27 | ... == ... | barrier-guards.rb:216:5:216:7 | foo | true |
+| barrier-guards.rb:219:4:219:15 | ... == ... | barrier-guards.rb:219:4:219:32 | [true] ... and ... | true |
+| barrier-guards.rb:219:4:219:15 | ... == ... | barrier-guards.rb:219:21:219:23 | foo | true |
+| barrier-guards.rb:219:4:219:15 | ... == ... | barrier-guards.rb:220:5:220:7 | foo | true |
+| barrier-guards.rb:219:4:219:32 | [true] ... and ... | barrier-guards.rb:220:5:220:7 | foo | true |
+| barrier-guards.rb:219:21:219:32 | ... == ... | barrier-guards.rb:219:4:219:32 | [true] ... and ... | true |
+| barrier-guards.rb:219:21:219:32 | ... == ... | barrier-guards.rb:220:5:220:7 | foo | true |
+| barrier-guards.rb:223:4:223:4 | call to x | barrier-guards.rb:223:4:223:10 | [true] ... and ... | true |
+| barrier-guards.rb:223:4:223:4 | call to x | barrier-guards.rb:223:10:223:10 | self | true |
+| barrier-guards.rb:223:4:223:4 | call to x | barrier-guards.rb:224:5:224:7 | foo | true |
+| barrier-guards.rb:223:4:223:10 | [true] ... and ... | barrier-guards.rb:224:5:224:7 | foo | true |
+| barrier-guards.rb:223:10:223:10 | call to y | barrier-guards.rb:223:4:223:10 | [true] ... and ... | true |
+| barrier-guards.rb:223:10:223:10 | call to y | barrier-guards.rb:224:5:224:7 | foo | true |
+| barrier-guards.rb:227:4:227:15 | ... == ... | barrier-guards.rb:227:4:227:21 | [true] ... and ... | true |
+| barrier-guards.rb:227:4:227:15 | ... == ... | barrier-guards.rb:227:21:227:21 | self | true |
+| barrier-guards.rb:227:4:227:15 | ... == ... | barrier-guards.rb:228:5:228:7 | self | true |
+| barrier-guards.rb:227:4:227:21 | [true] ... and ... | barrier-guards.rb:228:5:228:7 | self | true |
+| barrier-guards.rb:227:21:227:21 | call to y | barrier-guards.rb:227:4:227:21 | [true] ... and ... | true |
+| barrier-guards.rb:227:21:227:21 | call to y | barrier-guards.rb:228:5:228:7 | self | true |
+| barrier-guards.rb:232:1:233:19 | when ... | barrier-guards.rb:233:5:233:7 | foo | match |
+| barrier-guards.rb:232:6:232:17 | ... == ... | barrier-guards.rb:232:1:233:19 | [false] when ... | false |
+| barrier-guards.rb:232:6:232:17 | ... == ... | barrier-guards.rb:232:1:233:19 | when ... | true |
+| barrier-guards.rb:232:6:232:17 | ... == ... | barrier-guards.rb:233:5:233:7 | foo | true |
+| barrier-guards.rb:237:1:237:38 | when ... | barrier-guards.rb:237:24:237:26 | foo | match |
+| barrier-guards.rb:237:6:237:17 | ... == ... | barrier-guards.rb:237:1:237:38 | [false] when ... | false |
+| barrier-guards.rb:237:6:237:17 | ... == ... | barrier-guards.rb:237:1:237:38 | when ... | true |
+| barrier-guards.rb:237:6:237:17 | ... == ... | barrier-guards.rb:237:24:237:26 | foo | true |
+| barrier-guards.rb:238:1:238:26 | when ... | barrier-guards.rb:238:24:238:26 | foo | match |
+| barrier-guards.rb:238:6:238:17 | ... == ... | barrier-guards.rb:238:1:238:26 | [false] when ... | false |
+| barrier-guards.rb:238:6:238:17 | ... == ... | barrier-guards.rb:238:1:238:26 | when ... | true |
+| barrier-guards.rb:238:6:238:17 | ... == ... | barrier-guards.rb:238:24:238:26 | foo | true |
+| barrier-guards.rb:239:1:239:22 | when ... | barrier-guards.rb:239:20:239:22 | foo | match |
+| barrier-guards.rb:239:6:239:13 | ... == ... | barrier-guards.rb:239:1:239:22 | [false] when ... | false |
+| barrier-guards.rb:239:6:239:13 | ... == ... | barrier-guards.rb:239:1:239:22 | when ... | true |
+| barrier-guards.rb:239:6:239:13 | ... == ... | barrier-guards.rb:239:20:239:22 | foo | true |
+| barrier-guards.rb:243:4:243:8 | "foo" | barrier-guards.rb:244:5:244:7 | foo | match |
+| barrier-guards.rb:243:4:243:8 | "foo" | barrier-guards.rb:245:1:246:7 | in ... then ... | no-match |
+| barrier-guards.rb:243:4:243:8 | "foo" | barrier-guards.rb:246:5:246:7 | foo | no-match |
+| barrier-guards.rb:245:4:245:4 | x | barrier-guards.rb:246:5:246:7 | foo | match |
+| barrier-guards.rb:250:4:250:8 | "foo" | barrier-guards.rb:251:5:251:7 | foo | match |
+| barrier-guards.rb:250:4:250:8 | "foo" | barrier-guards.rb:254:1:256:3 | if ... | match |
+| barrier-guards.rb:250:4:250:8 | "foo" | barrier-guards.rb:255:5:255:7 | foo | match |
+| barrier-guards.rb:250:4:250:8 | "foo" | barrier-guards.rb:259:1:261:3 | if ... | match |
+| barrier-guards.rb:250:4:250:8 | "foo" | barrier-guards.rb:260:5:260:7 | foo | match |
+| barrier-guards.rb:250:4:250:8 | "foo" | barrier-guards.rb:264:1:266:3 | if ... | match |
+| barrier-guards.rb:250:4:250:8 | "foo" | barrier-guards.rb:265:5:265:7 | foo | match |
+| barrier-guards.rb:250:4:250:8 | "foo" | barrier-guards.rb:268:1:268:19 | ... && ... | match |
+| barrier-guards.rb:250:4:250:8 | "foo" | barrier-guards.rb:268:17:268:19 | foo | match |
+| barrier-guards.rb:250:4:250:8 | "foo" | barrier-guards.rb:269:1:269:19 | ... && ... | match |
+| barrier-guards.rb:250:4:250:8 | "foo" | barrier-guards.rb:269:8:269:10 | foo | match |
+| barrier-guards.rb:254:4:254:28 | ... == ... | barrier-guards.rb:255:5:255:7 | foo | true |
+| barrier-guards.rb:259:4:259:16 | ... == ... | barrier-guards.rb:260:5:260:7 | foo | true |
+| barrier-guards.rb:264:4:264:16 | ... == ... | barrier-guards.rb:265:5:265:7 | foo | true |
+| barrier-guards.rb:268:1:268:12 | ... == ... | barrier-guards.rb:268:17:268:19 | foo | true |
+| barrier-guards.rb:269:1:269:3 | foo | barrier-guards.rb:269:8:269:10 | foo | true |

From 23e29e993b882145bbba21bfa3e5e470307f1a10 Mon Sep 17 00:00:00 2001
From: Jeroen Ketema <jketema@github.com>
Date: Fri, 11 Nov 2022 08:24:39 +0100
Subject: [PATCH 0178/1420] C++: Split `std::string::insert` off in a separate
 class

The `insert` function has two different return types: `iterator` and
`basic_string&`.
---
 .../cpp/models/implementations/StdString.qll  | 58 +++++++++++++++++--
 1 file changed, 54 insertions(+), 4 deletions(-)

diff --git a/cpp/ql/lib/semmle/code/cpp/models/implementations/StdString.qll b/cpp/ql/lib/semmle/code/cpp/models/implementations/StdString.qll
index 3d2eda59799..46e79a6b30a 100644
--- a/cpp/ql/lib/semmle/code/cpp/models/implementations/StdString.qll
+++ b/cpp/ql/lib/semmle/code/cpp/models/implementations/StdString.qll
@@ -142,13 +142,13 @@ private class StdStringPlus extends TaintFunction {
 }
 
 /**
- * The `std::string` functions `operator+=`, `append`, `insert` and
- * `replace`. All of these functions combine the existing string
- * with a new string (or character) from one of the arguments.
+ * The `std::string` functions `operator+=`, `append` and `replace`.
+ * All of these functions combine the existing string with a new
+ * string (or character) from one of the arguments.
  */
 private class StdStringAppend extends TaintFunction {
   StdStringAppend() {
-    this.getClassAndName(["operator+=", "append", "insert", "replace"]) instanceof StdBasicString
+    this.getClassAndName(["operator+=", "append", "replace"]) instanceof StdBasicString
   }
 
   /**
@@ -186,6 +186,56 @@ private class StdStringAppend extends TaintFunction {
   }
 }
 
+/**
+ * The `std::string` function `insert`.
+ */
+private class StdStringInsert extends TaintFunction {
+  StdStringInsert() {
+    this.getClassAndName("insert") instanceof StdBasicString
+  }
+
+  /**
+   * Gets the index of a parameter to this function that is a string (or
+   * character).
+   */
+  int getAStringParameterIndex() {
+    this.getParameter(result).getType() instanceof PointerType or // e.g. `std::basic_string::CharT *`
+    this.getParameter(result).getType() instanceof ReferenceType or // e.g. `std::basic_string &`
+    this.getParameter(result).getUnspecifiedType() =
+      this.getDeclaringType().getTemplateArgument(0).(Type).getUnspecifiedType() // i.e. `std::basic_string::CharT`
+  }
+
+  /**
+   * Gets the index of a parameter to this function that is an iterator.
+   */
+  int getAnIteratorParameterIndex() { this.getParameter(result).getType() instanceof Iterator }
+
+  /**
+   * Holds if the return type is an iterator.
+   */
+  predicate hasIteratorReturnValue() { this.getType() instanceof Iterator }
+
+  override predicate hasTaintFlow(FunctionInput input, FunctionOutput output) {
+    // flow from string and parameter to string (qualifier) and return value
+    (
+      input.isQualifierObject() or
+      input.isParameterDeref(this.getAStringParameterIndex()) or
+      input.isParameter(this.getAnIteratorParameterIndex())
+    ) and
+    (
+      output.isQualifierObject()
+      or
+      if this.hasIteratorReturnValue() then output.isReturnValue() else output.isReturnValueDeref()
+    )
+    or
+    // reverse flow from returned reference to the qualifier (for writes to
+    // the result)
+    not this.hasIteratorReturnValue() and
+    input.isReturnValueDeref() and
+    output.isQualifierObject()
+  }
+}
+
 /**
  * The standard function `std::string.assign`.
  */

From ba00a0f37007c07be3e44b1fe134ae32bf6effe0 Mon Sep 17 00:00:00 2001
From: Jeroen Ketema <jketema@github.com>
Date: Fri, 11 Nov 2022 08:30:22 +0100
Subject: [PATCH 0179/1420] C++: Share parameter logic in `std::string` model

---
 .../cpp/models/implementations/StdString.qll  | 106 +++++-------------
 1 file changed, 31 insertions(+), 75 deletions(-)

diff --git a/cpp/ql/lib/semmle/code/cpp/models/implementations/StdString.qll b/cpp/ql/lib/semmle/code/cpp/models/implementations/StdString.qll
index 46e79a6b30a..cf3ecb5e892 100644
--- a/cpp/ql/lib/semmle/code/cpp/models/implementations/StdString.qll
+++ b/cpp/ql/lib/semmle/code/cpp/models/implementations/StdString.qll
@@ -16,21 +16,14 @@ private class StdBasicString extends ClassTemplateInstantiation {
 }
 
 /**
- * Additional model for `std::string` constructors that reference the character
- * type of the container, or an iterator.  For example construction from
- * iterators:
- * ```
- * std::string b(a.begin(), a.end());
- * ```
+ * A `std::string` function for which taint should be propagated.
  */
-private class StdStringConstructor extends Constructor, TaintFunction {
-  StdStringConstructor() { this.getDeclaringType() instanceof StdBasicString }
-
+abstract private class StdStringTaintFunction extends TaintFunction {
   /**
    * Gets the index of a parameter to this function that is a string (or
    * character).
    */
-  int getAStringParameterIndex() {
+  final int getAStringParameterIndex() {
     exists(Type paramType | paramType = this.getParameter(result).getUnspecifiedType() |
       // e.g. `std::basic_string::CharT *`
       paramType instanceof PointerType
@@ -41,15 +34,28 @@ private class StdStringConstructor extends Constructor, TaintFunction {
         this.getDeclaringType().getTemplateArgument(2).(Type).getUnspecifiedType()
       or
       // i.e. `std::basic_string::CharT`
-      this.getParameter(result).getUnspecifiedType() =
-        this.getDeclaringType().getTemplateArgument(0).(Type).getUnspecifiedType()
+      paramType = this.getDeclaringType().getTemplateArgument(0).(Type).getUnspecifiedType()
     )
   }
 
   /**
    * Gets the index of a parameter to this function that is an iterator.
    */
-  int getAnIteratorParameterIndex() { this.getParameter(result).getType() instanceof Iterator }
+  final int getAnIteratorParameterIndex() {
+    this.getParameter(result).getType() instanceof Iterator
+  }
+}
+
+/**
+ * Additional model for `std::string` constructors that reference the character
+ * type of the container, or an iterator.  For example construction from
+ * iterators:
+ * ```
+ * std::string b(a.begin(), a.end());
+ * ```
+ */
+private class StdStringConstructor extends Constructor, StdStringTaintFunction {
+  StdStringConstructor() { this.getDeclaringType() instanceof StdBasicString }
 
   override predicate hasTaintFlow(FunctionInput input, FunctionOutput output) {
     // taint flow from any parameter of the value type to the returned object
@@ -68,7 +74,7 @@ private class StdStringConstructor extends Constructor, TaintFunction {
 /**
  * The `std::string` function `c_str`.
  */
-private class StdStringCStr extends TaintFunction {
+private class StdStringCStr extends StdStringTaintFunction {
   StdStringCStr() { this.getClassAndName("c_str") instanceof StdBasicString }
 
   override predicate hasTaintFlow(FunctionInput input, FunctionOutput output) {
@@ -81,7 +87,7 @@ private class StdStringCStr extends TaintFunction {
 /**
  * The `std::string` function `data`.
  */
-private class StdStringData extends TaintFunction {
+private class StdStringData extends StdStringTaintFunction {
   StdStringData() { this.getClassAndName("data") instanceof StdBasicString }
 
   override predicate hasTaintFlow(FunctionInput input, FunctionOutput output) {
@@ -99,7 +105,7 @@ private class StdStringData extends TaintFunction {
 /**
  * The `std::string` function `push_back`.
  */
-private class StdStringPush extends TaintFunction {
+private class StdStringPush extends StdStringTaintFunction {
   StdStringPush() { this.getClassAndName("push_back") instanceof StdBasicString }
 
   override predicate hasTaintFlow(FunctionInput input, FunctionOutput output) {
@@ -112,7 +118,7 @@ private class StdStringPush extends TaintFunction {
 /**
  * The `std::string` functions `front` and `back`.
  */
-private class StdStringFrontBack extends TaintFunction {
+private class StdStringFrontBack extends StdStringTaintFunction {
   StdStringFrontBack() { this.getClassAndName(["front", "back"]) instanceof StdBasicString }
 
   override predicate hasTaintFlow(FunctionInput input, FunctionOutput output) {
@@ -125,7 +131,7 @@ private class StdStringFrontBack extends TaintFunction {
 /**
  * The (non-member) `std::string` function `operator+`.
  */
-private class StdStringPlus extends TaintFunction {
+private class StdStringPlus extends StdStringTaintFunction {
   StdStringPlus() {
     this.hasQualifiedName(["std", "bsl"], "operator+") and
     this.getUnspecifiedType() instanceof StdBasicString
@@ -146,27 +152,11 @@ private class StdStringPlus extends TaintFunction {
  * All of these functions combine the existing string with a new
  * string (or character) from one of the arguments.
  */
-private class StdStringAppend extends TaintFunction {
+private class StdStringAppend extends StdStringTaintFunction {
   StdStringAppend() {
     this.getClassAndName(["operator+=", "append", "replace"]) instanceof StdBasicString
   }
 
-  /**
-   * Gets the index of a parameter to this function that is a string (or
-   * character).
-   */
-  int getAStringParameterIndex() {
-    this.getParameter(result).getType() instanceof PointerType or // e.g. `std::basic_string::CharT *`
-    this.getParameter(result).getType() instanceof ReferenceType or // e.g. `std::basic_string &`
-    this.getParameter(result).getUnspecifiedType() =
-      this.getDeclaringType().getTemplateArgument(0).(Type).getUnspecifiedType() // i.e. `std::basic_string::CharT`
-  }
-
-  /**
-   * Gets the index of a parameter to this function that is an iterator.
-   */
-  int getAnIteratorParameterIndex() { this.getParameter(result).getType() instanceof Iterator }
-
   override predicate hasTaintFlow(FunctionInput input, FunctionOutput output) {
     // flow from string and parameter to string (qualifier) and return value
     (
@@ -189,26 +179,8 @@ private class StdStringAppend extends TaintFunction {
 /**
  * The `std::string` function `insert`.
  */
-private class StdStringInsert extends TaintFunction {
-  StdStringInsert() {
-    this.getClassAndName("insert") instanceof StdBasicString
-  }
-
-  /**
-   * Gets the index of a parameter to this function that is a string (or
-   * character).
-   */
-  int getAStringParameterIndex() {
-    this.getParameter(result).getType() instanceof PointerType or // e.g. `std::basic_string::CharT *`
-    this.getParameter(result).getType() instanceof ReferenceType or // e.g. `std::basic_string &`
-    this.getParameter(result).getUnspecifiedType() =
-      this.getDeclaringType().getTemplateArgument(0).(Type).getUnspecifiedType() // i.e. `std::basic_string::CharT`
-  }
-
-  /**
-   * Gets the index of a parameter to this function that is an iterator.
-   */
-  int getAnIteratorParameterIndex() { this.getParameter(result).getType() instanceof Iterator }
+private class StdStringInsert extends StdStringTaintFunction {
+  StdStringInsert() { this.getClassAndName("insert") instanceof StdBasicString }
 
   /**
    * Holds if the return type is an iterator.
@@ -239,25 +211,9 @@ private class StdStringInsert extends TaintFunction {
 /**
  * The standard function `std::string.assign`.
  */
-private class StdStringAssign extends TaintFunction {
+private class StdStringAssign extends StdStringTaintFunction {
   StdStringAssign() { this.getClassAndName("assign") instanceof StdBasicString }
 
-  /**
-   * Gets the index of a parameter to this function that is a string (or
-   * character).
-   */
-  int getAStringParameterIndex() {
-    this.getParameter(result).getType() instanceof PointerType or // e.g. `std::basic_string::CharT *`
-    this.getParameter(result).getType() instanceof ReferenceType or // e.g. `std::basic_string &`
-    this.getParameter(result).getUnspecifiedType() =
-      this.getDeclaringType().getTemplateArgument(0).(Type).getUnspecifiedType() // i.e. `std::basic_string::CharT`
-  }
-
-  /**
-   * Gets the index of a parameter to this function that is an iterator.
-   */
-  int getAnIteratorParameterIndex() { this.getParameter(result).getType() instanceof Iterator }
-
   override predicate hasTaintFlow(FunctionInput input, FunctionOutput output) {
     // flow from parameter to string itself (qualifier) and return value
     (
@@ -279,7 +235,7 @@ private class StdStringAssign extends TaintFunction {
 /**
  * The standard function `std::string.copy`.
  */
-private class StdStringCopy extends TaintFunction {
+private class StdStringCopy extends StdStringTaintFunction {
   StdStringCopy() { this.getClassAndName("copy") instanceof StdBasicString }
 
   override predicate hasTaintFlow(FunctionInput input, FunctionOutput output) {
@@ -292,7 +248,7 @@ private class StdStringCopy extends TaintFunction {
 /**
  * The standard function `std::string.substr`.
  */
-private class StdStringSubstr extends TaintFunction {
+private class StdStringSubstr extends StdStringTaintFunction {
   StdStringSubstr() { this.getClassAndName("substr") instanceof StdBasicString }
 
   override predicate hasTaintFlow(FunctionInput input, FunctionOutput output) {
@@ -305,7 +261,7 @@ private class StdStringSubstr extends TaintFunction {
 /**
  * The `std::string` functions `at` and `operator[]`.
  */
-private class StdStringAt extends TaintFunction {
+private class StdStringAt extends StdStringTaintFunction {
   StdStringAt() { this.getClassAndName(["at", "operator[]"]) instanceof StdBasicString }
 
   override predicate hasTaintFlow(FunctionInput input, FunctionOutput output) {

From 6d9745e5c35796240be0909f5c6c3a05bd4f0beb Mon Sep 17 00:00:00 2001
From: Rasmus Wriedt Larsen <rasmuswl@github.com>
Date: Fri, 24 Jun 2022 16:13:32 +0200
Subject: [PATCH 0180/1420] Python: Rewrite call-graph tests to be inline
 expectation (2/2)

I ported the predicates showing difference between points-to and
type-tracking, since it's helpful to see the list of differences,
instead of having to parse expectations!
---
 .../library-tests/CallGraph/CallGraphTest.qll | 147 ------------------
 .../CallGraph/InlineCallGraphTest.expected    |  18 +++
 .../CallGraph/InlineCallGraphTest.ql          |  39 +++--
 .../library-tests/CallGraph/PointsTo.expected |   6 -
 .../library-tests/CallGraph/PointsTo.ql       |  10 --
 .../library-tests/CallGraph/README.md         |  38 -----
 .../library-tests/CallGraph/Relative.expected |  20 ---
 .../library-tests/CallGraph/Relative.ql       |  14 --
 .../CallGraph/TypeTracker.expected            |  21 ---
 .../library-tests/CallGraph/TypeTracker.ql    |  10 --
 .../CallGraph/code/runtime_decision.py        |   4 -
 .../library-tests/CallGraph/code/simple.py    |   9 +-
 .../code/underscore_prefix_func_name.py       |   4 -
 13 files changed, 48 insertions(+), 292 deletions(-)
 delete mode 100644 python/ql/test/experimental/library-tests/CallGraph/CallGraphTest.qll
 delete mode 100644 python/ql/test/experimental/library-tests/CallGraph/PointsTo.expected
 delete mode 100644 python/ql/test/experimental/library-tests/CallGraph/PointsTo.ql
 delete mode 100644 python/ql/test/experimental/library-tests/CallGraph/README.md
 delete mode 100644 python/ql/test/experimental/library-tests/CallGraph/Relative.expected
 delete mode 100644 python/ql/test/experimental/library-tests/CallGraph/Relative.ql
 delete mode 100644 python/ql/test/experimental/library-tests/CallGraph/TypeTracker.expected
 delete mode 100644 python/ql/test/experimental/library-tests/CallGraph/TypeTracker.ql

diff --git a/python/ql/test/experimental/library-tests/CallGraph/CallGraphTest.qll b/python/ql/test/experimental/library-tests/CallGraph/CallGraphTest.qll
deleted file mode 100644
index 0f8b3162980..00000000000
--- a/python/ql/test/experimental/library-tests/CallGraph/CallGraphTest.qll
+++ /dev/null
@@ -1,147 +0,0 @@
-import python
-
-/** Gets the comment on the line above `ast` */
-Comment commentFor(AstNode ast) {
-  exists(int line | line = ast.getLocation().getStartLine() - 1 |
-    result
-        .getLocation()
-        .hasLocationInfo(ast.getLocation().getFile().getAbsolutePath(), line, _, line, _)
-  )
-}
-
-/** Gets the value from `tag:value` in the comment for `ast` */
-string getAnnotation(AstNode ast, string tag) {
-  exists(Comment comment, string match, string theRegex |
-    theRegex = "([\\w]+):([\\w.]+)" and
-    comment = commentFor(ast) and
-    match = comment.getText().regexpFind(theRegex, _, _) and
-    tag = match.regexpCapture(theRegex, 1) and
-    result = match.regexpCapture(theRegex, 2)
-  )
-}
-
-/** Gets a callable annotated with `name:name` */
-Function annotatedCallable(string name) { name = getAnnotation(result, "name") }
-
-/** Gets a call annotated with `calls:name` */
-Call annotatedCall(string name) { name = getAnnotation(result, "calls") }
-
-predicate missingAnnotationForCallable(string name, Call call) {
-  call = annotatedCall(name) and
-  not exists(annotatedCallable(name))
-}
-
-predicate nonUniqueAnnotationForCallable(string name, Function callable) {
-  strictcount(annotatedCallable(name)) > 1 and
-  callable = annotatedCallable(name)
-}
-
-predicate missingAnnotationForCall(string name, Function callable) {
-  not exists(annotatedCall(name)) and
-  callable = annotatedCallable(name)
-}
-
-/** There is an obvious problem with the annotation `name` */
-predicate nameInErrorState(string name) {
-  missingAnnotationForCallable(name, _)
-  or
-  nonUniqueAnnotationForCallable(name, _)
-  or
-  missingAnnotationForCall(name, _)
-}
-
-/** Source code has annotation with `name` showing that `call` will call `callable` */
-predicate annotatedCallEdge(string name, Call call, Function callable) {
-  not nameInErrorState(name) and
-  call = annotatedCall(name) and
-  callable = annotatedCallable(name)
-}
-
-// ------------------------- Annotation debug query predicates -------------------------
-query predicate debug_missingAnnotationForCallable(Call call, string message) {
-  exists(string name |
-    message =
-      "This call is annotated with '" + name +
-        "', but no callable with that annotation was extracted. Please fix." and
-    missingAnnotationForCallable(name, call)
-  )
-}
-
-query predicate debug_nonUniqueAnnotationForCallable(Function callable, string message) {
-  exists(string name |
-    message = "Multiple callables are annotated with '" + name + "'. Please fix." and
-    nonUniqueAnnotationForCallable(name, callable)
-  )
-}
-
-query predicate debug_missingAnnotationForCall(Function callable, string message) {
-  exists(string name |
-    message =
-      "This callable is annotated with '" + name +
-        "', but no call with that annotation was extracted. Please fix." and
-    missingAnnotationForCall(name, callable)
-  )
-}
-
-// ------------------------- Call Graph resolution -------------------------
-private newtype TCallGraphResolver =
-  TPointsToResolver() or
-  TTypeTrackerResolver()
-
-/** A method of call graph resolution */
-abstract class CallGraphResolver extends TCallGraphResolver {
-  abstract predicate callEdge(Call call, Function callable);
-
-  /**
-   * Holds if annotations show that `call` will call `callable`,
-   * but our call graph resolver was not able to figure that out
-   */
-  predicate expectedCallEdgeNotFound(Call call, Function callable) {
-    annotatedCallEdge(_, call, callable) and
-    not this.callEdge(call, callable)
-  }
-
-  /**
-   * Holds if there are no annotations that show that `call` will call `callable` (where at least one of these are annotated),
-   * but the call graph resolver claims that `call` will call `callable`
-   */
-  predicate unexpectedCallEdgeFound(Call call, Function callable, string message) {
-    this.callEdge(call, callable) and
-    not annotatedCallEdge(_, call, callable) and
-    (
-      exists(string name |
-        message = "Call resolved to the callable named '" + name + "' but was not annotated as such" and
-        callable = annotatedCallable(name) and
-        not nameInErrorState(name)
-      )
-      or
-      exists(string name |
-        message = "Annotated call resolved to unannotated callable" and
-        call = annotatedCall(name) and
-        not nameInErrorState(name) and
-        not exists( | callable = annotatedCallable(_))
-      )
-    )
-  }
-
-  string toString() { result = "CallGraphResolver" }
-}
-
-/** A call graph resolver based on the existing points-to analysis */
-class PointsToResolver extends CallGraphResolver, TPointsToResolver {
-  override predicate callEdge(Call call, Function callable) {
-    exists(PythonFunctionValue funcValue |
-      funcValue.getScope() = callable and
-      call = funcValue.getACall().getNode()
-    )
-  }
-
-  override string toString() { result = "PointsToResolver" }
-}
-
-/** A call graph resolved based on Type Trackers */
-class TypeTrackerResolver extends CallGraphResolver, TTypeTrackerResolver {
-  override predicate callEdge(Call call, Function callable) { none() }
-
-  override string toString() { result = "TypeTrackerResolver" }
-}
diff --git a/python/ql/test/experimental/library-tests/CallGraph/InlineCallGraphTest.expected b/python/ql/test/experimental/library-tests/CallGraph/InlineCallGraphTest.expected
index 2ff4aeb6865..975ac22dd2d 100644
--- a/python/ql/test/experimental/library-tests/CallGraph/InlineCallGraphTest.expected
+++ b/python/ql/test/experimental/library-tests/CallGraph/InlineCallGraphTest.expected
@@ -2,3 +2,21 @@ failures
 debug_callableNotUnique
 | code/class_advanced.py:18:5:18:18 | Function arg | Qualified function name 'B.arg' is not unique. Please fix. |
 | code/class_advanced.py:23:5:23:25 | Function arg | Qualified function name 'B.arg' is not unique. Please fix. |
+pointsTo_found_typeTracker_notFound
+| code/class_simple.py:28:1:28:15 | ControlFlowNode for Attribute() | A.some_method |
+| code/class_simple.py:30:1:30:21 | ControlFlowNode for Attribute() | A.some_staticmethod |
+| code/class_simple.py:32:1:32:20 | ControlFlowNode for Attribute() | A.some_classmethod |
+| code/class_simple.py:35:1:35:21 | ControlFlowNode for Attribute() | A.some_staticmethod |
+| code/class_simple.py:37:1:37:20 | ControlFlowNode for Attribute() | A.some_classmethod |
+| code/runtime_decision.py:18:1:18:6 | ControlFlowNode for func() | rd_bar |
+| code/runtime_decision.py:18:1:18:6 | ControlFlowNode for func() | rd_foo |
+| code/runtime_decision.py:26:1:26:7 | ControlFlowNode for func2() | rd_bar |
+| code/runtime_decision.py:26:1:26:7 | ControlFlowNode for func2() | rd_foo |
+| code/simple.py:15:1:15:5 | ControlFlowNode for foo() | foo |
+| code/simple.py:16:1:16:14 | ControlFlowNode for indirect_foo() | foo |
+| code/simple.py:17:1:17:5 | ControlFlowNode for bar() | bar |
+| code/simple.py:18:1:18:5 | ControlFlowNode for lam() | lambda[simple.py:12:7] |
+| code/underscore_prefix_func_name.py:18:5:18:19 | ControlFlowNode for some_function() | some_function |
+| code/underscore_prefix_func_name.py:21:5:21:19 | ControlFlowNode for some_function() | some_function |
+| code/underscore_prefix_func_name.py:24:1:24:21 | ControlFlowNode for _works_since_called() | _works_since_called |
+typeTracker_found_pointsTo_notFound
diff --git a/python/ql/test/experimental/library-tests/CallGraph/InlineCallGraphTest.ql b/python/ql/test/experimental/library-tests/CallGraph/InlineCallGraphTest.ql
index 6b59751e43b..50ad10bd191 100644
--- a/python/ql/test/experimental/library-tests/CallGraph/InlineCallGraphTest.ql
+++ b/python/ql/test/experimental/library-tests/CallGraph/InlineCallGraphTest.ql
@@ -28,22 +28,41 @@ class CallGraphTest extends InlineExpectationsTest {
     |
       location = call.getLocation() and
       element = call.toString() and
-      (
-        // note: `target.getQualifiedName` for Lambdas is just "lambda", so is not very useful :|
-        not target.isLambda() and
-        value = target.getQualifiedName()
-        or
-        target.isLambda() and
-        value =
-          "lambda[" + target.getLocation().getFile().getShortName() + ":" +
-            target.getLocation().getStartLine() + ":" + target.getLocation().getStartColumn() + "]"
-      )
+      value = betterQualName(target)
     )
   }
 }
 
+bindingset[func]
+string betterQualName(Function func) {
+  // note: `target.getQualifiedName` for Lambdas is just "lambda", so is not very useful :|
+  not func.isLambda() and
+  result = func.getQualifiedName()
+  or
+  func.isLambda() and
+  result =
+    "lambda[" + func.getLocation().getFile().getShortName() + ":" +
+      func.getLocation().getStartLine() + ":" + func.getLocation().getStartColumn() + "]"
+}
+
 query predicate debug_callableNotUnique(Function callable, string message) {
   exists(Function f | f != callable and f.getQualifiedName() = callable.getQualifiedName()) and
   message =
     "Qualified function name '" + callable.getQualifiedName() + "' is not unique. Please fix."
 }
+
+query predicate pointsTo_found_typeTracker_notFound(CallNode call, string qualname) {
+  exists(Function target |
+    pointsToCallEdge(call, target) and
+    not typeTrackerCallEdge(call, target) and
+    qualname = betterQualName(target)
+  )
+}
+
+query predicate typeTracker_found_pointsTo_notFound(CallNode call, string qualname) {
+  exists(Function target |
+    not pointsToCallEdge(call, target) and
+    typeTrackerCallEdge(call, target) and
+    qualname = betterQualName(target)
+  )
+}
diff --git a/python/ql/test/experimental/library-tests/CallGraph/PointsTo.expected b/python/ql/test/experimental/library-tests/CallGraph/PointsTo.expected
deleted file mode 100644
index e7db0fde98c..00000000000
--- a/python/ql/test/experimental/library-tests/CallGraph/PointsTo.expected
+++ /dev/null
@@ -1,6 +0,0 @@
-debug_missingAnnotationForCallable
-debug_nonUniqueAnnotationForCallable
-debug_missingAnnotationForCall
-expectedCallEdgeNotFound
-| code/underscore_prefix_func_name.py:16:5:16:19 | some_function() | code/underscore_prefix_func_name.py:10:1:10:20 | Function some_function |
-unexpectedCallEdgeFound
diff --git a/python/ql/test/experimental/library-tests/CallGraph/PointsTo.ql b/python/ql/test/experimental/library-tests/CallGraph/PointsTo.ql
deleted file mode 100644
index f86842f2fe4..00000000000
--- a/python/ql/test/experimental/library-tests/CallGraph/PointsTo.ql
+++ /dev/null
@@ -1,10 +0,0 @@
-import python
-import CallGraphTest
-
-query predicate expectedCallEdgeNotFound(Call call, Function callable) {
-  any(PointsToResolver r).expectedCallEdgeNotFound(call, callable)
-}
-
-query predicate unexpectedCallEdgeFound(Call call, Function callable, string message) {
-  any(PointsToResolver r).unexpectedCallEdgeFound(call, callable, message)
-}
diff --git a/python/ql/test/experimental/library-tests/CallGraph/README.md b/python/ql/test/experimental/library-tests/CallGraph/README.md
deleted file mode 100644
index 0fbf6bdac9d..00000000000
--- a/python/ql/test/experimental/library-tests/CallGraph/README.md
+++ /dev/null
@@ -1,38 +0,0 @@
-# Call Graph Tests
-
-A small testing framework for our call graph resolution. It relies on manual annotation of calls and callables, **and will only include output if something is wrong**. For example, if we are not able to resolve that the `foo()` call will call the `foo` function, that should give an alert.
-
-```py
-# name:foo
-def foo():
-    pass
-# calls:foo
-foo()
-```
-
-This is greatly inspired by [`CallGraphs/AnnotatedTest`](https://github.com/github/codeql/blob/696d19cb1440b6f6a75c6a2c1319e18860ceb436/javascript/ql/test/library-tests/CallGraphs/AnnotatedTest/Test.ql) from JavaScript.
-
-IMPORTANT: Names used in annotations are not scoped, so must be unique globally. (this is a bit annoying, but makes things simple). If multiple identical annotations are used, an error message will be output.
-
-Important files:
-
-- `CallGraphTest.qll`: main code to find annotated calls/callables and setting everything up.
-- `PointsTo.ql`: results when using points-to for call graph resolution.
-- `TypeTracker.ql`: results when using TypeTracking for call graph resolution.
-- `Relative.ql`: differences between using points-to and TypeTracking.
-- `code/` contains the actual Python code we test against (included by `test.py`).
-
-All queries will also execute some `debug_*` predicates. These highlight any obvious problems with the annotation setup, and so there should never be any results committed. To show that this works as expected, see the [CallGraph-xfail](../CallGraph-xfail/)  which uses symlinked versions of the files in this directory (can't include as subdir, so has to be a sibling).
-
-## `options` file
-
-If the value for `--max-import-depth` is set so that `import random` will extract `random.py` from the standard library, BUT NO transitive imports are extracted, then points-to analysis will fail to handle the following snippet.
-
-```py
-import random
-if random.random() < 0.5:
-    func = foo
-else:
-    func = bar
-func()
-```
diff --git a/python/ql/test/experimental/library-tests/CallGraph/Relative.expected b/python/ql/test/experimental/library-tests/CallGraph/Relative.expected
deleted file mode 100644
index 9882dda21bf..00000000000
--- a/python/ql/test/experimental/library-tests/CallGraph/Relative.expected
+++ /dev/null
@@ -1,20 +0,0 @@
-debug_missingAnnotationForCallable
-debug_nonUniqueAnnotationForCallable
-debug_missingAnnotationForCall
-pointsTo_found_typeTracker_notFound
-| code/class_simple.py:28:1:28:15 | Attribute() | code/class_simple.py:8:5:8:26 | Function some_method |
-| code/class_simple.py:30:1:30:21 | Attribute() | code/class_simple.py:13:5:13:28 | Function some_staticmethod |
-| code/class_simple.py:32:1:32:20 | Attribute() | code/class_simple.py:18:5:18:30 | Function some_classmethod |
-| code/class_simple.py:35:1:35:21 | Attribute() | code/class_simple.py:13:5:13:28 | Function some_staticmethod |
-| code/class_simple.py:37:1:37:20 | Attribute() | code/class_simple.py:18:5:18:30 | Function some_classmethod |
-| code/runtime_decision.py:21:1:21:6 | func() | code/runtime_decision.py:8:1:8:13 | Function rd_foo |
-| code/runtime_decision.py:21:1:21:6 | func() | code/runtime_decision.py:12:1:12:13 | Function rd_bar |
-| code/runtime_decision.py:30:1:30:7 | func2() | code/runtime_decision.py:8:1:8:13 | Function rd_foo |
-| code/runtime_decision.py:30:1:30:7 | func2() | code/runtime_decision.py:12:1:12:13 | Function rd_bar |
-| code/simple.py:19:1:19:5 | foo() | code/simple.py:2:1:2:10 | Function foo |
-| code/simple.py:21:1:21:14 | indirect_foo() | code/simple.py:2:1:2:10 | Function foo |
-| code/simple.py:23:1:23:5 | bar() | code/simple.py:10:1:10:10 | Function bar |
-| code/simple.py:25:1:25:5 | lam() | code/simple.py:15:7:15:36 | Function lambda |
-| code/underscore_prefix_func_name.py:21:5:21:19 | some_function() | code/underscore_prefix_func_name.py:10:1:10:20 | Function some_function |
-| code/underscore_prefix_func_name.py:25:5:25:19 | some_function() | code/underscore_prefix_func_name.py:10:1:10:20 | Function some_function |
-pointsTo_notFound_typeTracker_found
diff --git a/python/ql/test/experimental/library-tests/CallGraph/Relative.ql b/python/ql/test/experimental/library-tests/CallGraph/Relative.ql
deleted file mode 100644
index f62e4d21cbd..00000000000
--- a/python/ql/test/experimental/library-tests/CallGraph/Relative.ql
+++ /dev/null
@@ -1,14 +0,0 @@
-import python
-import CallGraphTest
-
-query predicate pointsTo_found_typeTracker_notFound(Call call, Function callable) {
-  annotatedCallEdge(_, call, callable) and
-  any(PointsToResolver r).callEdge(call, callable) and
-  not any(TypeTrackerResolver r).callEdge(call, callable)
-}
-
-query predicate pointsTo_notFound_typeTracker_found(Call call, Function callable) {
-  annotatedCallEdge(_, call, callable) and
-  not any(PointsToResolver r).callEdge(call, callable) and
-  any(TypeTrackerResolver r).callEdge(call, callable)
-}
diff --git a/python/ql/test/experimental/library-tests/CallGraph/TypeTracker.expected b/python/ql/test/experimental/library-tests/CallGraph/TypeTracker.expected
deleted file mode 100644
index 5fc5376ca25..00000000000
--- a/python/ql/test/experimental/library-tests/CallGraph/TypeTracker.expected
+++ /dev/null
@@ -1,21 +0,0 @@
-debug_missingAnnotationForCallable
-debug_nonUniqueAnnotationForCallable
-debug_missingAnnotationForCall
-expectedCallEdgeNotFound
-| code/class_simple.py:28:1:28:15 | Attribute() | code/class_simple.py:8:5:8:26 | Function some_method |
-| code/class_simple.py:30:1:30:21 | Attribute() | code/class_simple.py:13:5:13:28 | Function some_staticmethod |
-| code/class_simple.py:32:1:32:20 | Attribute() | code/class_simple.py:18:5:18:30 | Function some_classmethod |
-| code/class_simple.py:35:1:35:21 | Attribute() | code/class_simple.py:13:5:13:28 | Function some_staticmethod |
-| code/class_simple.py:37:1:37:20 | Attribute() | code/class_simple.py:18:5:18:30 | Function some_classmethod |
-| code/runtime_decision.py:21:1:21:6 | func() | code/runtime_decision.py:8:1:8:13 | Function rd_foo |
-| code/runtime_decision.py:21:1:21:6 | func() | code/runtime_decision.py:12:1:12:13 | Function rd_bar |
-| code/runtime_decision.py:30:1:30:7 | func2() | code/runtime_decision.py:8:1:8:13 | Function rd_foo |
-| code/runtime_decision.py:30:1:30:7 | func2() | code/runtime_decision.py:12:1:12:13 | Function rd_bar |
-| code/simple.py:19:1:19:5 | foo() | code/simple.py:2:1:2:10 | Function foo |
-| code/simple.py:21:1:21:14 | indirect_foo() | code/simple.py:2:1:2:10 | Function foo |
-| code/simple.py:23:1:23:5 | bar() | code/simple.py:10:1:10:10 | Function bar |
-| code/simple.py:25:1:25:5 | lam() | code/simple.py:15:7:15:36 | Function lambda |
-| code/underscore_prefix_func_name.py:16:5:16:19 | some_function() | code/underscore_prefix_func_name.py:10:1:10:20 | Function some_function |
-| code/underscore_prefix_func_name.py:21:5:21:19 | some_function() | code/underscore_prefix_func_name.py:10:1:10:20 | Function some_function |
-| code/underscore_prefix_func_name.py:25:5:25:19 | some_function() | code/underscore_prefix_func_name.py:10:1:10:20 | Function some_function |
-unexpectedCallEdgeFound
diff --git a/python/ql/test/experimental/library-tests/CallGraph/TypeTracker.ql b/python/ql/test/experimental/library-tests/CallGraph/TypeTracker.ql
deleted file mode 100644
index a62332e3839..00000000000
--- a/python/ql/test/experimental/library-tests/CallGraph/TypeTracker.ql
+++ /dev/null
@@ -1,10 +0,0 @@
-import python
-import CallGraphTest
-
-query predicate expectedCallEdgeNotFound(Call call, Function callable) {
-  any(TypeTrackerResolver r).expectedCallEdgeNotFound(call, callable)
-}
-
-query predicate unexpectedCallEdgeFound(Call call, Function callable, string message) {
-  any(TypeTrackerResolver r).unexpectedCallEdgeFound(call, callable, message)
-}
diff --git a/python/ql/test/experimental/library-tests/CallGraph/code/runtime_decision.py b/python/ql/test/experimental/library-tests/CallGraph/code/runtime_decision.py
index a271cbd9a6f..3c4ebbb73e1 100644
--- a/python/ql/test/experimental/library-tests/CallGraph/code/runtime_decision.py
+++ b/python/ql/test/experimental/library-tests/CallGraph/code/runtime_decision.py
@@ -4,11 +4,9 @@ import random
 # hmm, annoying that you have to keep names unique across files :|
 # since I like to use foo and bar ALL the time :D
 
-# name:rd_foo
 def rd_foo():
     print('rd_foo')
 
-# name:rd_bar
 def rd_bar():
     print('rd_bar')
 
@@ -17,7 +15,6 @@ if len(sys.argv) >= 2 and not sys.argv[1] in ['0', 'False', 'false']:
 else:
     func = rd_bar
 
-# calls:rd_foo calls:rd_bar
 func() # $ pt=rd_foo pt=rd_bar
 
 # Random doesn't work with points-to :O
@@ -26,5 +23,4 @@ if random.random() < 0.5:
 else:
     func2 = rd_bar
 
-# calls:rd_foo calls:rd_bar
 func2() # $ pt=rd_foo pt=rd_bar
diff --git a/python/ql/test/experimental/library-tests/CallGraph/code/simple.py b/python/ql/test/experimental/library-tests/CallGraph/code/simple.py
index 210df4f209e..ac07ace93b2 100644
--- a/python/ql/test/experimental/library-tests/CallGraph/code/simple.py
+++ b/python/ql/test/experimental/library-tests/CallGraph/code/simple.py
@@ -1,4 +1,3 @@
-# name:foo
 def foo():
     print("foo called")
 
@@ -6,22 +5,16 @@ def foo():
 indirect_foo = foo
 
 
-# name:bar
 def bar():
     print("bar called")
 
 
-# name:lam
 lam = lambda: print("lambda called")
 
 
-# calls:foo
 foo() # $ pt=foo
-# calls:foo
 indirect_foo() # $ pt=foo
-# calls:bar
 bar() # $ pt=bar
-# calls:lam
-lam() # $ pt=lambda[simple.py:15:7]
+lam() # $ pt=lambda[simple.py:12:7]
 
 # python -m trace --trackcalls simple.py
diff --git a/python/ql/test/experimental/library-tests/CallGraph/code/underscore_prefix_func_name.py b/python/ql/test/experimental/library-tests/CallGraph/code/underscore_prefix_func_name.py
index 1a1efe9d7b6..fb3f5fc45a8 100644
--- a/python/ql/test/experimental/library-tests/CallGraph/code/underscore_prefix_func_name.py
+++ b/python/ql/test/experimental/library-tests/CallGraph/code/underscore_prefix_func_name.py
@@ -6,22 +6,18 @@
 # points-to information about the `open` call in
 # https://google-gruyere.appspot.com/code/gruyere.py on line 227
 
-# name:some_function
 def some_function():
     print('some_function')
 
 def _ignored():
     print('_ignored')
-    # calls:some_function
     some_function()
 
 def _works_since_called():
     print('_works_since_called')
-    # calls:some_function
     some_function() # $ pt=some_function
 
 def works_even_though_not_called():
-    # calls:some_function
     some_function() # $ pt=some_function
 
 globals()['_ignored']()

From b60504f40463e1eed8a0aef2ff24b74a307e847b Mon Sep 17 00:00:00 2001
From: Rasmus Wriedt Larsen <rasmuswl@github.com>
Date: Fri, 24 Jun 2022 16:15:04 +0200
Subject: [PATCH 0181/1420] Python: Delete `CallGraph-xfail`

No longer needed since we're using an established testing framework now
---
 .../CallGraph-xfail/PointsTo.expected         | 18 --------
 .../CallGraph-xfail/PointsTo.qlref            |  1 -
 .../library-tests/CallGraph-xfail/README.md   |  1 -
 .../CallGraph-xfail/annotation_xfail.py       | 21 ---------
 .../CallGraph-xfail/call_edge_xfail.py        | 43 -------------------
 5 files changed, 84 deletions(-)
 delete mode 100644 python/ql/test/experimental/library-tests/CallGraph-xfail/PointsTo.expected
 delete mode 100644 python/ql/test/experimental/library-tests/CallGraph-xfail/PointsTo.qlref
 delete mode 100644 python/ql/test/experimental/library-tests/CallGraph-xfail/README.md
 delete mode 100644 python/ql/test/experimental/library-tests/CallGraph-xfail/annotation_xfail.py
 delete mode 100644 python/ql/test/experimental/library-tests/CallGraph-xfail/call_edge_xfail.py

diff --git a/python/ql/test/experimental/library-tests/CallGraph-xfail/PointsTo.expected b/python/ql/test/experimental/library-tests/CallGraph-xfail/PointsTo.expected
deleted file mode 100644
index 680cee0e8b2..00000000000
--- a/python/ql/test/experimental/library-tests/CallGraph-xfail/PointsTo.expected
+++ /dev/null
@@ -1,18 +0,0 @@
-debug_missingAnnotationForCallable
-| annotation_xfail.py:10:1:10:24 | callable_not_annotated() | This call is annotated with 'callable_not_annotated', but no callable with that annotation was extracted. Please fix. |
-debug_nonUniqueAnnotationForCallable
-| annotation_xfail.py:13:1:13:17 | Function non_unique | Multiple callables are annotated with 'non_unique'. Please fix. |
-| annotation_xfail.py:17:1:17:26 | Function too_much_copy_paste | Multiple callables are annotated with 'non_unique'. Please fix. |
-debug_missingAnnotationForCall
-| annotation_xfail.py:2:1:2:24 | Function no_annotated_call | This callable is annotated with 'no_annotated_call', but no call with that annotation was extracted. Please fix. |
-expectedCallEdgeNotFound
-| call_edge_xfail.py:36:1:36:11 | xfail_foo() | call_edge_xfail.py:8:1:8:16 | Function xfail_bar |
-| call_edge_xfail.py:39:1:39:11 | xfail_baz() | call_edge_xfail.py:8:1:8:16 | Function xfail_bar |
-unexpectedCallEdgeFound
-| call_edge_xfail.py:29:1:29:6 | func() | call_edge_xfail.py:4:1:4:16 | Function xfail_foo | Call resolved to the callable named 'xfail_foo' but was not annotated as such |
-| call_edge_xfail.py:29:1:29:6 | func() | call_edge_xfail.py:8:1:8:16 | Function xfail_bar | Call resolved to the callable named 'xfail_bar' but was not annotated as such |
-| call_edge_xfail.py:30:1:30:11 | xfail_foo() | call_edge_xfail.py:4:1:4:16 | Function xfail_foo | Call resolved to the callable named 'xfail_foo' but was not annotated as such |
-| call_edge_xfail.py:31:1:31:14 | xfail_lambda() | call_edge_xfail.py:15:16:15:44 | Function lambda | Call resolved to the callable named 'xfail_lambda' but was not annotated as such |
-| call_edge_xfail.py:36:1:36:11 | xfail_foo() | call_edge_xfail.py:4:1:4:16 | Function xfail_foo | Call resolved to the callable named 'xfail_foo' but was not annotated as such |
-| call_edge_xfail.py:39:1:39:11 | xfail_baz() | call_edge_xfail.py:11:1:11:16 | Function xfail_baz | Annotated call resolved to unannotated callable |
-| call_edge_xfail.py:43:1:43:6 | func() | call_edge_xfail.py:8:1:8:16 | Function xfail_bar | Call resolved to the callable named 'xfail_bar' but was not annotated as such |
diff --git a/python/ql/test/experimental/library-tests/CallGraph-xfail/PointsTo.qlref b/python/ql/test/experimental/library-tests/CallGraph-xfail/PointsTo.qlref
deleted file mode 100644
index da8a0d1631a..00000000000
--- a/python/ql/test/experimental/library-tests/CallGraph-xfail/PointsTo.qlref
+++ /dev/null
@@ -1 +0,0 @@
-../CallGraph/PointsTo.ql
diff --git a/python/ql/test/experimental/library-tests/CallGraph-xfail/README.md b/python/ql/test/experimental/library-tests/CallGraph-xfail/README.md
deleted file mode 100644
index 39021bce2a1..00000000000
--- a/python/ql/test/experimental/library-tests/CallGraph-xfail/README.md
+++ /dev/null
@@ -1 +0,0 @@
-Test that show our failure handling in [CallGraph](../CallGraph/) works as expected.
diff --git a/python/ql/test/experimental/library-tests/CallGraph-xfail/annotation_xfail.py b/python/ql/test/experimental/library-tests/CallGraph-xfail/annotation_xfail.py
deleted file mode 100644
index f8dbf88aa02..00000000000
--- a/python/ql/test/experimental/library-tests/CallGraph-xfail/annotation_xfail.py
+++ /dev/null
@@ -1,21 +0,0 @@
-# name:no_annotated_call
-def no_annotated_call():
-    pass
-
-def callable_not_annotated():
-    pass
-
-no_annotated_call()
-# calls:callable_not_annotated
-callable_not_annotated()
-
-# name:non_unique
-def non_unique():
-    pass
-
-# name:non_unique
-def too_much_copy_paste():
-    pass
-
-# calls:non_unique
-non_unique()
diff --git a/python/ql/test/experimental/library-tests/CallGraph-xfail/call_edge_xfail.py b/python/ql/test/experimental/library-tests/CallGraph-xfail/call_edge_xfail.py
deleted file mode 100644
index e72e02e376b..00000000000
--- a/python/ql/test/experimental/library-tests/CallGraph-xfail/call_edge_xfail.py
+++ /dev/null
@@ -1,43 +0,0 @@
-import sys
-
-# name:xfail_foo
-def xfail_foo():
-    print('xfail_foo')
-
-# name:xfail_bar
-def xfail_bar():
-    print('xfail_bar')
-
-def xfail_baz():
-    print('xfail_baz')
-
-# name:xfail_lambda
-xfail_lambda = lambda: print('xfail_lambda')
-
-if len(sys.argv) >= 2 and not sys.argv[1] in ['0', 'False', 'false']:
-    func = xfail_foo
-else:
-    func = xfail_bar
-
-# Correct usage to suppress bad annotation errors
-# calls:xfail_foo calls:xfail_bar
-func()
-# calls:xfail_lambda
-xfail_lambda()
-
-# These are not annotated, and will give rise to unexpectedCallEdgeFound
-func()
-xfail_foo()
-xfail_lambda()
-
-# These are annotated wrongly, and will give rise to unexpectedCallEdgeFound
-
-# calls:xfail_bar
-xfail_foo()
-
-# calls:xfail_bar
-xfail_baz()
-
-# The annotation is incomplete (does not include the call to xfail_bar)
-# calls:xfail_foo
-func()

From ab42521906e8caff7eedd751c4d5584422cbea57 Mon Sep 17 00:00:00 2001
From: Rasmus Wriedt Larsen <rasmuswl@github.com>
Date: Fri, 24 Jun 2022 16:17:26 +0200
Subject: [PATCH 0182/1420] Python: Port `CallGraph-implicit-init` tests

to the new call-graph test setup. Nice that we can write `MISSING:` now!
---
 .../InlineCallGraphTest.expected                       |  5 +++++
 .../CallGraph-implicit-init/InlineCallGraphTest.qlref  |  1 +
 .../CallGraph-implicit-init/PointsTo.expected          |  6 ------
 .../CallGraph-implicit-init/PointsTo.qlref             |  1 -
 .../CallGraph-implicit-init/Relative.expected          |  6 ------
 .../CallGraph-implicit-init/Relative.qlref             |  1 -
 .../CallGraph-implicit-init/TypeTracker.expected       |  7 -------
 .../CallGraph-implicit-init/TypeTracker.qlref          |  1 -
 .../library-tests/CallGraph-implicit-init/example.py   | 10 +++++-----
 .../library-tests/CallGraph-implicit-init/foo/bar/a.py |  1 -
 .../CallGraph-implicit-init/foo_explicit/bar/a.py      |  1 -
 11 files changed, 11 insertions(+), 29 deletions(-)
 create mode 100644 python/ql/test/experimental/library-tests/CallGraph-implicit-init/InlineCallGraphTest.expected
 create mode 100644 python/ql/test/experimental/library-tests/CallGraph-implicit-init/InlineCallGraphTest.qlref
 delete mode 100644 python/ql/test/experimental/library-tests/CallGraph-implicit-init/PointsTo.expected
 delete mode 100644 python/ql/test/experimental/library-tests/CallGraph-implicit-init/PointsTo.qlref
 delete mode 100644 python/ql/test/experimental/library-tests/CallGraph-implicit-init/Relative.expected
 delete mode 100644 python/ql/test/experimental/library-tests/CallGraph-implicit-init/Relative.qlref
 delete mode 100644 python/ql/test/experimental/library-tests/CallGraph-implicit-init/TypeTracker.expected
 delete mode 100644 python/ql/test/experimental/library-tests/CallGraph-implicit-init/TypeTracker.qlref

diff --git a/python/ql/test/experimental/library-tests/CallGraph-implicit-init/InlineCallGraphTest.expected b/python/ql/test/experimental/library-tests/CallGraph-implicit-init/InlineCallGraphTest.expected
new file mode 100644
index 00000000000..c847f9a8aa2
--- /dev/null
+++ b/python/ql/test/experimental/library-tests/CallGraph-implicit-init/InlineCallGraphTest.expected
@@ -0,0 +1,5 @@
+failures
+debug_callableNotUnique
+pointsTo_found_typeTracker_notFound
+| example.py:22:1:22:16 | ControlFlowNode for explicit_afunc() | explicit_afunc |
+typeTracker_found_pointsTo_notFound
diff --git a/python/ql/test/experimental/library-tests/CallGraph-implicit-init/InlineCallGraphTest.qlref b/python/ql/test/experimental/library-tests/CallGraph-implicit-init/InlineCallGraphTest.qlref
new file mode 100644
index 00000000000..25117a4582b
--- /dev/null
+++ b/python/ql/test/experimental/library-tests/CallGraph-implicit-init/InlineCallGraphTest.qlref
@@ -0,0 +1 @@
+../CallGraph/InlineCallGraphTest.ql
diff --git a/python/ql/test/experimental/library-tests/CallGraph-implicit-init/PointsTo.expected b/python/ql/test/experimental/library-tests/CallGraph-implicit-init/PointsTo.expected
deleted file mode 100644
index 349d99b46d8..00000000000
--- a/python/ql/test/experimental/library-tests/CallGraph-implicit-init/PointsTo.expected
+++ /dev/null
@@ -1,6 +0,0 @@
-debug_missingAnnotationForCallable
-debug_nonUniqueAnnotationForCallable
-debug_missingAnnotationForCall
-expectedCallEdgeNotFound
-| example.py:19:1:19:7 | afunc() | foo/bar/a.py:2:1:2:12 | Function afunc |
-unexpectedCallEdgeFound
diff --git a/python/ql/test/experimental/library-tests/CallGraph-implicit-init/PointsTo.qlref b/python/ql/test/experimental/library-tests/CallGraph-implicit-init/PointsTo.qlref
deleted file mode 100644
index da8a0d1631a..00000000000
--- a/python/ql/test/experimental/library-tests/CallGraph-implicit-init/PointsTo.qlref
+++ /dev/null
@@ -1 +0,0 @@
-../CallGraph/PointsTo.ql
diff --git a/python/ql/test/experimental/library-tests/CallGraph-implicit-init/Relative.expected b/python/ql/test/experimental/library-tests/CallGraph-implicit-init/Relative.expected
deleted file mode 100644
index 38aab0b5888..00000000000
--- a/python/ql/test/experimental/library-tests/CallGraph-implicit-init/Relative.expected
+++ /dev/null
@@ -1,6 +0,0 @@
-debug_missingAnnotationForCallable
-debug_nonUniqueAnnotationForCallable
-debug_missingAnnotationForCall
-pointsTo_found_typeTracker_notFound
-| example.py:22:1:22:16 | explicit_afunc() | foo_explicit/bar/a.py:2:1:2:21 | Function explicit_afunc |
-pointsTo_notFound_typeTracker_found
diff --git a/python/ql/test/experimental/library-tests/CallGraph-implicit-init/Relative.qlref b/python/ql/test/experimental/library-tests/CallGraph-implicit-init/Relative.qlref
deleted file mode 100644
index 2ffa6c10d51..00000000000
--- a/python/ql/test/experimental/library-tests/CallGraph-implicit-init/Relative.qlref
+++ /dev/null
@@ -1 +0,0 @@
-../CallGraph/Relative.ql
diff --git a/python/ql/test/experimental/library-tests/CallGraph-implicit-init/TypeTracker.expected b/python/ql/test/experimental/library-tests/CallGraph-implicit-init/TypeTracker.expected
deleted file mode 100644
index 5283683a6a5..00000000000
--- a/python/ql/test/experimental/library-tests/CallGraph-implicit-init/TypeTracker.expected
+++ /dev/null
@@ -1,7 +0,0 @@
-debug_missingAnnotationForCallable
-debug_nonUniqueAnnotationForCallable
-debug_missingAnnotationForCall
-expectedCallEdgeNotFound
-| example.py:19:1:19:7 | afunc() | foo/bar/a.py:2:1:2:12 | Function afunc |
-| example.py:22:1:22:16 | explicit_afunc() | foo_explicit/bar/a.py:2:1:2:21 | Function explicit_afunc |
-unexpectedCallEdgeFound
diff --git a/python/ql/test/experimental/library-tests/CallGraph-implicit-init/TypeTracker.qlref b/python/ql/test/experimental/library-tests/CallGraph-implicit-init/TypeTracker.qlref
deleted file mode 100644
index 60c029a5510..00000000000
--- a/python/ql/test/experimental/library-tests/CallGraph-implicit-init/TypeTracker.qlref
+++ /dev/null
@@ -1 +0,0 @@
-../CallGraph/TypeTracker.ql
diff --git a/python/ql/test/experimental/library-tests/CallGraph-implicit-init/example.py b/python/ql/test/experimental/library-tests/CallGraph-implicit-init/example.py
index 35d56620af7..75ad8a9db11 100644
--- a/python/ql/test/experimental/library-tests/CallGraph-implicit-init/example.py
+++ b/python/ql/test/experimental/library-tests/CallGraph-implicit-init/example.py
@@ -5,18 +5,18 @@ This is not included in the standard `CallGraph/code` folder, since we're testin
 understanding import work properly, so it's better to have a clean test setup that is
 obviously correct (the other one isn't in regards to imports).
 
-Technically this is part of PEP 420 -- Implicit Namespace Packages, but does use the
+Technically this is part of PEP 420 -- Implicit Namespace Packages, but does not use the
 *real* namespace package feature of allowing source code for a single package to reside
 in multiple places.
 
+Maybe this should have been an import resolution test, and not a call-graph test ¯\_(ツ)_/¯
+
 Since PEP 420 was accepted in Python 3, this test is Python 3 only.
 """
 
 from foo.bar.a import afunc
 from foo_explicit.bar.a import explicit_afunc
 
-# calls:afunc
-afunc()
+afunc() # $ MISSING: pt,tt=afunc
 
-# calls:explicit_afunc
-explicit_afunc()
+explicit_afunc() # $ pt=explicit_afunc MISSING: tt=explicit_afunc
diff --git a/python/ql/test/experimental/library-tests/CallGraph-implicit-init/foo/bar/a.py b/python/ql/test/experimental/library-tests/CallGraph-implicit-init/foo/bar/a.py
index a294b33191e..bc639f6c537 100644
--- a/python/ql/test/experimental/library-tests/CallGraph-implicit-init/foo/bar/a.py
+++ b/python/ql/test/experimental/library-tests/CallGraph-implicit-init/foo/bar/a.py
@@ -1,4 +1,3 @@
-# name:afunc
 def afunc():
   print("afunc called")
   return 1
diff --git a/python/ql/test/experimental/library-tests/CallGraph-implicit-init/foo_explicit/bar/a.py b/python/ql/test/experimental/library-tests/CallGraph-implicit-init/foo_explicit/bar/a.py
index 616c3fddca1..c84d63cfce2 100644
--- a/python/ql/test/experimental/library-tests/CallGraph-implicit-init/foo_explicit/bar/a.py
+++ b/python/ql/test/experimental/library-tests/CallGraph-implicit-init/foo_explicit/bar/a.py
@@ -1,4 +1,3 @@
-# name:explicit_afunc
 def explicit_afunc():
   print("explicit_afunc called")
   return 1

From 03a479fd60097e7559bf2169fff47b0d7af9bfd4 Mon Sep 17 00:00:00 2001
From: erik-krogh <erik-krogh@github.com>
Date: Fri, 11 Nov 2022 10:47:03 +0100
Subject: [PATCH 0183/1420] use `find` in the format check to fix it

---
 .github/workflows/compile-queries.yml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/compile-queries.yml b/.github/workflows/compile-queries.yml
index 149cb052de9..bdcf0ba8d8a 100644
--- a/.github/workflows/compile-queries.yml
+++ b/.github/workflows/compile-queries.yml
@@ -46,7 +46,7 @@ jobs:
         with:
           channel: 'release'
       - name: check formatting
-        run: codeql query format */ql/**/*.{qll,ql} --check-only
+        run: find */ql -type f \( -name "*.qll" -o -name "*.ql" \) -print0 | xargs -0 codeql query format --check-only
       - name: compile queries - check-only
         # run with --check-only if running in a PR (github.sha != main)
         if : ${{ github.event_name == 'pull_request' }}

From 887062d339cb7a367699aef4923ca3873665b2bb Mon Sep 17 00:00:00 2001
From: erik-krogh <erik-krogh@github.com>
Date: Thu, 10 Nov 2022 14:22:10 +0100
Subject: [PATCH 0184/1420] update cs/assembly-path-injection and
 cs/hardcoded-key to path-problems

---
 .../CWE-114/AssemblyPathInjection.ql          | 10 ++--
 .../CWE-321/HardcodedEncryptionKey.ql         | 15 ++++--
 .../AssemblyPathInjection.expected            | 12 ++++-
 .../HardcodedSymmetricEncryptionKey.expected  | 47 ++++++++++++++++---
 4 files changed, 68 insertions(+), 16 deletions(-)

diff --git a/csharp/ql/src/Security Features/CWE-114/AssemblyPathInjection.ql b/csharp/ql/src/Security Features/CWE-114/AssemblyPathInjection.ql
index 3ca894db15a..3705ece0e72 100644
--- a/csharp/ql/src/Security Features/CWE-114/AssemblyPathInjection.ql	
+++ b/csharp/ql/src/Security Features/CWE-114/AssemblyPathInjection.ql	
@@ -3,7 +3,7 @@
  * @description Loading a .NET assembly based on a path constructed from user-controlled sources
  *              may allow a malicious user to load code which modifies the program in unintended
  *              ways.
- * @kind problem
+ * @kind path-problem
  * @id cs/assembly-path-injection
  * @problem.severity error
  * @security-severity 8.2
@@ -15,6 +15,7 @@
 import csharp
 import semmle.code.csharp.security.dataflow.flowsources.Remote
 import semmle.code.csharp.commons.Util
+import DataFlow::PathGraph
 
 /**
  * A taint-tracking configuration for untrusted user input used to load a DLL.
@@ -47,6 +48,7 @@ class TaintTrackingConfiguration extends TaintTracking::Configuration {
   }
 }
 
-from TaintTrackingConfiguration c, DataFlow::Node source, DataFlow::Node sink
-where c.hasFlow(source, sink)
-select sink, "This assembly path depends on a $@.", source, "user-provided value"
+from TaintTrackingConfiguration c, DataFlow::PathNode source, DataFlow::PathNode sink
+where c.hasFlowPath(source, sink)
+select sink.getNode(), source, sink, "This assembly path depends on a $@.", source,
+  "user-provided value"
diff --git a/csharp/ql/src/Security Features/CWE-321/HardcodedEncryptionKey.ql b/csharp/ql/src/Security Features/CWE-321/HardcodedEncryptionKey.ql
index 8f30847cde0..8e516f44d4a 100644
--- a/csharp/ql/src/Security Features/CWE-321/HardcodedEncryptionKey.ql	
+++ b/csharp/ql/src/Security Features/CWE-321/HardcodedEncryptionKey.ql	
@@ -1,7 +1,7 @@
 /**
  * @name Hard-coded encryption key
  * @description The .Key property or rgbKey parameter of a SymmetricAlgorithm should never be a hard-coded value.
- * @kind problem
+ * @kind path-problem
  * @id cs/hardcoded-key
  * @problem.severity error
  * @security-severity 8.1
@@ -15,6 +15,7 @@
 
 import csharp
 import semmle.code.csharp.security.cryptography.EncryptionKeyDataFlowQuery
+import DataFlow::PathGraph
 
 /**
  * The creation of a literal byte array.
@@ -36,7 +37,13 @@ class StringLiteralSource extends KeySource {
   StringLiteralSource() { this.asExpr() instanceof StringLiteral }
 }
 
-from SymmetricKeyTaintTrackingConfiguration keyFlow, KeySource src, SymmetricEncryptionKeySink sink
-where keyFlow.hasFlow(src, sink)
-select sink, "This hard-coded $@ is used in symmetric algorithm in " + sink.getDescription(), src,
+from
+  SymmetricKeyTaintTrackingConfiguration keyFlow, DataFlow::PathNode source,
+  DataFlow::PathNode sink, KeySource srcNode, SymmetricEncryptionKeySink sinkNode
+where
+  keyFlow.hasFlowPath(source, sink) and
+  source.getNode() = srcNode and
+  sink.getNode() = sinkNode
+select sink.getNode(), source, sink,
+  "This hard-coded $@ is used in symmetric algorithm in " + sinkNode.getDescription(), srcNode,
   "symmetric key"
diff --git a/csharp/ql/test/query-tests/Security Features/CWE-114/AssemblyPathInjection/AssemblyPathInjection.expected b/csharp/ql/test/query-tests/Security Features/CWE-114/AssemblyPathInjection/AssemblyPathInjection.expected
index 2f3c3bbb4a6..396d766c3e6 100644
--- a/csharp/ql/test/query-tests/Security Features/CWE-114/AssemblyPathInjection/AssemblyPathInjection.expected	
+++ b/csharp/ql/test/query-tests/Security Features/CWE-114/AssemblyPathInjection/AssemblyPathInjection.expected	
@@ -1 +1,11 @@
-| Test.cs:10:36:10:46 | access to local variable libraryName | This assembly path depends on a $@. | Test.cs:7:26:7:48 | access to property QueryString | user-provided value |
+edges
+| Test.cs:7:26:7:48 | access to property QueryString : NameValueCollection | Test.cs:7:26:7:63 | access to indexer : String |
+| Test.cs:7:26:7:48 | access to property QueryString : NameValueCollection | Test.cs:10:36:10:46 | access to local variable libraryName |
+| Test.cs:7:26:7:63 | access to indexer : String | Test.cs:10:36:10:46 | access to local variable libraryName |
+nodes
+| Test.cs:7:26:7:48 | access to property QueryString : NameValueCollection | semmle.label | access to property QueryString : NameValueCollection |
+| Test.cs:7:26:7:63 | access to indexer : String | semmle.label | access to indexer : String |
+| Test.cs:10:36:10:46 | access to local variable libraryName | semmle.label | access to local variable libraryName |
+subpaths
+#select
+| Test.cs:10:36:10:46 | access to local variable libraryName | Test.cs:7:26:7:48 | access to property QueryString : NameValueCollection | Test.cs:10:36:10:46 | access to local variable libraryName | This assembly path depends on a $@. | Test.cs:7:26:7:48 | access to property QueryString : NameValueCollection | user-provided value |
diff --git a/csharp/ql/test/query-tests/Security Features/CWE-321/HardcodedSymmetricEncryptionKey/HardcodedSymmetricEncryptionKey.expected b/csharp/ql/test/query-tests/Security Features/CWE-321/HardcodedSymmetricEncryptionKey/HardcodedSymmetricEncryptionKey.expected
index 7c3a2a7339c..10cb82ff67e 100644
--- a/csharp/ql/test/query-tests/Security Features/CWE-321/HardcodedSymmetricEncryptionKey/HardcodedSymmetricEncryptionKey.expected	
+++ b/csharp/ql/test/query-tests/Security Features/CWE-321/HardcodedSymmetricEncryptionKey/HardcodedSymmetricEncryptionKey.expected	
@@ -1,7 +1,40 @@
-| HardcodedSymmetricEncryptionKey.cs:17:21:17:97 | array creation of type Byte[] | This hard-coded $@ is used in symmetric algorithm in Key property assignment | HardcodedSymmetricEncryptionKey.cs:17:21:17:97 | array creation of type Byte[] | symmetric key |
-| HardcodedSymmetricEncryptionKey.cs:22:23:22:99 | array creation of type Byte[] | This hard-coded $@ is used in symmetric algorithm in Key property assignment | HardcodedSymmetricEncryptionKey.cs:22:23:22:99 | array creation of type Byte[] | symmetric key |
-| HardcodedSymmetricEncryptionKey.cs:31:21:31:21 | access to local variable d | This hard-coded $@ is used in symmetric algorithm in Key property assignment | HardcodedSymmetricEncryptionKey.cs:25:21:25:97 | array creation of type Byte[] | symmetric key |
-| HardcodedSymmetricEncryptionKey.cs:68:87:68:94 | access to parameter password | This hard-coded $@ is used in symmetric algorithm in Decryptor(rgbKey, IV) | HardcodedSymmetricEncryptionKey.cs:25:21:25:97 | array creation of type Byte[] | symmetric key |
-| HardcodedSymmetricEncryptionKey.cs:108:23:108:25 | access to parameter key | This hard-coded $@ is used in symmetric algorithm in Key property assignment | HardcodedSymmetricEncryptionKey.cs:25:21:25:97 | array creation of type Byte[] | symmetric key |
-| HardcodedSymmetricEncryptionKey.cs:121:87:121:89 | access to parameter key | This hard-coded $@ is used in symmetric algorithm in Encryptor(rgbKey, IV) | HardcodedSymmetricEncryptionKey.cs:25:21:25:97 | array creation of type Byte[] | symmetric key |
-| HardcodedSymmetricEncryptionKey.cs:121:87:121:89 | access to parameter key | This hard-coded $@ is used in symmetric algorithm in Encryptor(rgbKey, IV) | HardcodedSymmetricEncryptionKey.cs:28:62:28:115 | "Hello, world: here is a very bad way to create a key" | symmetric key |
+edges
+| HardcodedSymmetricEncryptionKey.cs:25:21:25:97 | array creation of type Byte[] : Byte[] | HardcodedSymmetricEncryptionKey.cs:31:21:31:21 | access to local variable d |
+| HardcodedSymmetricEncryptionKey.cs:25:21:25:97 | array creation of type Byte[] : Byte[] | HardcodedSymmetricEncryptionKey.cs:36:37:36:37 | access to local variable d : Byte[] |
+| HardcodedSymmetricEncryptionKey.cs:25:21:25:97 | array creation of type Byte[] : Byte[] | HardcodedSymmetricEncryptionKey.cs:41:50:41:50 | access to local variable c : Byte[] |
+| HardcodedSymmetricEncryptionKey.cs:25:21:25:97 | array creation of type Byte[] : Byte[] | HardcodedSymmetricEncryptionKey.cs:50:35:50:35 | access to local variable c : Byte[] |
+| HardcodedSymmetricEncryptionKey.cs:28:39:28:116 | call to method GetBytes : Byte[] | HardcodedSymmetricEncryptionKey.cs:44:51:44:69 | access to local variable byteArrayFromString : Byte[] |
+| HardcodedSymmetricEncryptionKey.cs:28:62:28:115 | "Hello, world: here is a very bad way to create a key" : String | HardcodedSymmetricEncryptionKey.cs:28:39:28:116 | call to method GetBytes : Byte[] |
+| HardcodedSymmetricEncryptionKey.cs:36:37:36:37 | access to local variable d : Byte[] | HardcodedSymmetricEncryptionKey.cs:103:57:103:59 | key : Byte[] |
+| HardcodedSymmetricEncryptionKey.cs:41:50:41:50 | access to local variable c : Byte[] | HardcodedSymmetricEncryptionKey.cs:112:63:112:65 | key : Byte[] |
+| HardcodedSymmetricEncryptionKey.cs:44:51:44:69 | access to local variable byteArrayFromString : Byte[] | HardcodedSymmetricEncryptionKey.cs:112:63:112:65 | key : Byte[] |
+| HardcodedSymmetricEncryptionKey.cs:50:35:50:35 | access to local variable c : Byte[] | HardcodedSymmetricEncryptionKey.cs:59:64:59:71 | password : Byte[] |
+| HardcodedSymmetricEncryptionKey.cs:59:64:59:71 | password : Byte[] | HardcodedSymmetricEncryptionKey.cs:68:87:68:94 | access to parameter password |
+| HardcodedSymmetricEncryptionKey.cs:103:57:103:59 | key : Byte[] | HardcodedSymmetricEncryptionKey.cs:108:23:108:25 | access to parameter key |
+| HardcodedSymmetricEncryptionKey.cs:112:63:112:65 | key : Byte[] | HardcodedSymmetricEncryptionKey.cs:121:87:121:89 | access to parameter key |
+nodes
+| HardcodedSymmetricEncryptionKey.cs:17:21:17:97 | array creation of type Byte[] | semmle.label | array creation of type Byte[] |
+| HardcodedSymmetricEncryptionKey.cs:22:23:22:99 | array creation of type Byte[] | semmle.label | array creation of type Byte[] |
+| HardcodedSymmetricEncryptionKey.cs:25:21:25:97 | array creation of type Byte[] : Byte[] | semmle.label | array creation of type Byte[] : Byte[] |
+| HardcodedSymmetricEncryptionKey.cs:28:39:28:116 | call to method GetBytes : Byte[] | semmle.label | call to method GetBytes : Byte[] |
+| HardcodedSymmetricEncryptionKey.cs:28:62:28:115 | "Hello, world: here is a very bad way to create a key" : String | semmle.label | "Hello, world: here is a very bad way to create a key" : String |
+| HardcodedSymmetricEncryptionKey.cs:31:21:31:21 | access to local variable d | semmle.label | access to local variable d |
+| HardcodedSymmetricEncryptionKey.cs:36:37:36:37 | access to local variable d : Byte[] | semmle.label | access to local variable d : Byte[] |
+| HardcodedSymmetricEncryptionKey.cs:41:50:41:50 | access to local variable c : Byte[] | semmle.label | access to local variable c : Byte[] |
+| HardcodedSymmetricEncryptionKey.cs:44:51:44:69 | access to local variable byteArrayFromString : Byte[] | semmle.label | access to local variable byteArrayFromString : Byte[] |
+| HardcodedSymmetricEncryptionKey.cs:50:35:50:35 | access to local variable c : Byte[] | semmle.label | access to local variable c : Byte[] |
+| HardcodedSymmetricEncryptionKey.cs:59:64:59:71 | password : Byte[] | semmle.label | password : Byte[] |
+| HardcodedSymmetricEncryptionKey.cs:68:87:68:94 | access to parameter password | semmle.label | access to parameter password |
+| HardcodedSymmetricEncryptionKey.cs:103:57:103:59 | key : Byte[] | semmle.label | key : Byte[] |
+| HardcodedSymmetricEncryptionKey.cs:108:23:108:25 | access to parameter key | semmle.label | access to parameter key |
+| HardcodedSymmetricEncryptionKey.cs:112:63:112:65 | key : Byte[] | semmle.label | key : Byte[] |
+| HardcodedSymmetricEncryptionKey.cs:121:87:121:89 | access to parameter key | semmle.label | access to parameter key |
+subpaths
+#select
+| HardcodedSymmetricEncryptionKey.cs:17:21:17:97 | array creation of type Byte[] | HardcodedSymmetricEncryptionKey.cs:17:21:17:97 | array creation of type Byte[] | HardcodedSymmetricEncryptionKey.cs:17:21:17:97 | array creation of type Byte[] | This hard-coded $@ is used in symmetric algorithm in Key property assignment | HardcodedSymmetricEncryptionKey.cs:17:21:17:97 | array creation of type Byte[] | symmetric key |
+| HardcodedSymmetricEncryptionKey.cs:22:23:22:99 | array creation of type Byte[] | HardcodedSymmetricEncryptionKey.cs:22:23:22:99 | array creation of type Byte[] | HardcodedSymmetricEncryptionKey.cs:22:23:22:99 | array creation of type Byte[] | This hard-coded $@ is used in symmetric algorithm in Key property assignment | HardcodedSymmetricEncryptionKey.cs:22:23:22:99 | array creation of type Byte[] | symmetric key |
+| HardcodedSymmetricEncryptionKey.cs:31:21:31:21 | access to local variable d | HardcodedSymmetricEncryptionKey.cs:25:21:25:97 | array creation of type Byte[] : Byte[] | HardcodedSymmetricEncryptionKey.cs:31:21:31:21 | access to local variable d | This hard-coded $@ is used in symmetric algorithm in Key property assignment | HardcodedSymmetricEncryptionKey.cs:25:21:25:97 | array creation of type Byte[] | symmetric key |
+| HardcodedSymmetricEncryptionKey.cs:68:87:68:94 | access to parameter password | HardcodedSymmetricEncryptionKey.cs:25:21:25:97 | array creation of type Byte[] : Byte[] | HardcodedSymmetricEncryptionKey.cs:68:87:68:94 | access to parameter password | This hard-coded $@ is used in symmetric algorithm in Decryptor(rgbKey, IV) | HardcodedSymmetricEncryptionKey.cs:25:21:25:97 | array creation of type Byte[] | symmetric key |
+| HardcodedSymmetricEncryptionKey.cs:108:23:108:25 | access to parameter key | HardcodedSymmetricEncryptionKey.cs:25:21:25:97 | array creation of type Byte[] : Byte[] | HardcodedSymmetricEncryptionKey.cs:108:23:108:25 | access to parameter key | This hard-coded $@ is used in symmetric algorithm in Key property assignment | HardcodedSymmetricEncryptionKey.cs:25:21:25:97 | array creation of type Byte[] | symmetric key |
+| HardcodedSymmetricEncryptionKey.cs:121:87:121:89 | access to parameter key | HardcodedSymmetricEncryptionKey.cs:25:21:25:97 | array creation of type Byte[] : Byte[] | HardcodedSymmetricEncryptionKey.cs:121:87:121:89 | access to parameter key | This hard-coded $@ is used in symmetric algorithm in Encryptor(rgbKey, IV) | HardcodedSymmetricEncryptionKey.cs:25:21:25:97 | array creation of type Byte[] | symmetric key |
+| HardcodedSymmetricEncryptionKey.cs:121:87:121:89 | access to parameter key | HardcodedSymmetricEncryptionKey.cs:28:62:28:115 | "Hello, world: here is a very bad way to create a key" : String | HardcodedSymmetricEncryptionKey.cs:121:87:121:89 | access to parameter key | This hard-coded $@ is used in symmetric algorithm in Encryptor(rgbKey, IV) | HardcodedSymmetricEncryptionKey.cs:28:62:28:115 | "Hello, world: here is a very bad way to create a key" | symmetric key |

From 8147d2048e4821991886b17b6aa95f808ac55560 Mon Sep 17 00:00:00 2001
From: Bas van Schaik <5082246+sj@users.noreply.github.com>
Date: Fri, 11 Nov 2022 10:36:26 +0000
Subject: [PATCH 0185/1420] Remove issue template for LGTM.com false positive
 reports

---
 .../lgtm-com---false-positive.md              | 24 -------------------
 1 file changed, 24 deletions(-)
 delete mode 100644 .github/ISSUE_TEMPLATE/lgtm-com---false-positive.md

diff --git a/.github/ISSUE_TEMPLATE/lgtm-com---false-positive.md b/.github/ISSUE_TEMPLATE/lgtm-com---false-positive.md
deleted file mode 100644
index 94a84906f24..00000000000
--- a/.github/ISSUE_TEMPLATE/lgtm-com---false-positive.md
+++ /dev/null
@@ -1,24 +0,0 @@
----
-name: LGTM.com - false positive
-about: Tell us about an alert that shouldn't be reported
-title: LGTM.com - false positive
-labels: false-positive
-assignees: ''
-
----
-
-**Description of the false positive**
-
-<!-- Please explain briefly why you think it shouldn't be included. -->
-
-**URL to the alert on the project page on LGTM.com**
-
-<!--
-1. Open the project on LGTM.com.
-For example, https://lgtm.com/projects/g/pallets/click/.
-2. Switch to the `Alerts` tab. For example, https://lgtm.com/projects/g/pallets/click/alerts/.
-3. Scroll to the alert that you would like to report.
-4. Click on the right most icon `View this alert within the complete file`.
-5. A new browser tab opens. Copy and paste the page URL here.
-For example, https://lgtm.com/projects/g/pallets/click/snapshot/719fb7d8322b0767cdd1e5903ba3eb3233ba8dd5/files/click/_winconsole.py#xa08d213ab3289f87:1.
--->

From 85233b3cbf2d6184e93c664b6fff5bc2df24ae94 Mon Sep 17 00:00:00 2001
From: Paolo Tranquilli <redsun82@github.com>
Date: Fri, 11 Nov 2022 11:57:18 +0100
Subject: [PATCH 0186/1420] Swift: add new children to `VarDecl`

---
 .../codeql/swift/generated/ParentChild.qll    |  41 ++-
 swift/ql/lib/codeql/swift/generated/Raw.qll   |  22 ++
 .../codeql/swift/generated/decl/ParamDecl.qll |  61 ++++
 .../codeql/swift/generated/decl/VarDecl.qll   | 117 +++++++
 swift/ql/lib/swift.dbscheme                   |  36 +++
 ...eteVarDecl_getPropertyWrapperBackingVar.ql |   7 +
 ...ecl_getPropertyWrapperBackingVarBinding.ql |   7 +
 ...VarDecl_getPropertyWrapperProjectionVar.ql |   7 +
 ..._getPropertyWrapperProjectionVarBinding.ql |   7 +
 .../ParamDecl_getPropertyWrapperBackingVar.ql |   7 +
 ...ecl_getPropertyWrapperBackingVarBinding.ql |   7 +
 ...mDecl_getPropertyWrapperLocalWrappedVar.ql |   7 +
 ...etPropertyWrapperLocalWrappedVarBinding.ql |   7 +
 ...ramDecl_getPropertyWrapperProjectionVar.ql |   7 +
 ..._getPropertyWrapperProjectionVarBinding.ql |   7 +
 swift/schema.py                               | 305 ++++++++++++++++++
 16 files changed, 650 insertions(+), 2 deletions(-)
 create mode 100644 swift/ql/test/extractor-tests/generated/decl/ConcreteVarDecl/ConcreteVarDecl_getPropertyWrapperBackingVar.ql
 create mode 100644 swift/ql/test/extractor-tests/generated/decl/ConcreteVarDecl/ConcreteVarDecl_getPropertyWrapperBackingVarBinding.ql
 create mode 100644 swift/ql/test/extractor-tests/generated/decl/ConcreteVarDecl/ConcreteVarDecl_getPropertyWrapperProjectionVar.ql
 create mode 100644 swift/ql/test/extractor-tests/generated/decl/ConcreteVarDecl/ConcreteVarDecl_getPropertyWrapperProjectionVarBinding.ql
 create mode 100644 swift/ql/test/extractor-tests/generated/decl/ParamDecl/ParamDecl_getPropertyWrapperBackingVar.ql
 create mode 100644 swift/ql/test/extractor-tests/generated/decl/ParamDecl/ParamDecl_getPropertyWrapperBackingVarBinding.ql
 create mode 100644 swift/ql/test/extractor-tests/generated/decl/ParamDecl/ParamDecl_getPropertyWrapperLocalWrappedVar.ql
 create mode 100644 swift/ql/test/extractor-tests/generated/decl/ParamDecl/ParamDecl_getPropertyWrapperLocalWrappedVarBinding.ql
 create mode 100644 swift/ql/test/extractor-tests/generated/decl/ParamDecl/ParamDecl_getPropertyWrapperProjectionVar.ql
 create mode 100644 swift/ql/test/extractor-tests/generated/decl/ParamDecl/ParamDecl_getPropertyWrapperProjectionVarBinding.ql

diff --git a/swift/ql/lib/codeql/swift/generated/ParentChild.qll b/swift/ql/lib/codeql/swift/generated/ParentChild.qll
index b56253575e2..d081978c64a 100644
--- a/swift/ql/lib/codeql/swift/generated/ParentChild.qll
+++ b/swift/ql/lib/codeql/swift/generated/ParentChild.qll
@@ -680,15 +680,39 @@ private module Impl {
   }
 
   private Element getImmediateChildOfVarDecl(VarDecl e, int index, string partialPredicateCall) {
-    exists(int b, int bAbstractStorageDecl, int n |
+    exists(
+      int b, int bAbstractStorageDecl, int n, int nPropertyWrapperBackingVarBinding,
+      int nPropertyWrapperBackingVar, int nPropertyWrapperProjectionVarBinding,
+      int nPropertyWrapperProjectionVar
+    |
       b = 0 and
       bAbstractStorageDecl =
         b + 1 + max(int i | i = -1 or exists(getImmediateChildOfAbstractStorageDecl(e, i, _)) | i) and
       n = bAbstractStorageDecl and
+      nPropertyWrapperBackingVarBinding = n + 1 and
+      nPropertyWrapperBackingVar = nPropertyWrapperBackingVarBinding + 1 and
+      nPropertyWrapperProjectionVarBinding = nPropertyWrapperBackingVar + 1 and
+      nPropertyWrapperProjectionVar = nPropertyWrapperProjectionVarBinding + 1 and
       (
         none()
         or
         result = getImmediateChildOfAbstractStorageDecl(e, index - b, partialPredicateCall)
+        or
+        index = n and
+        result = e.getImmediatePropertyWrapperBackingVarBinding() and
+        partialPredicateCall = "PropertyWrapperBackingVarBinding()"
+        or
+        index = nPropertyWrapperBackingVarBinding and
+        result = e.getImmediatePropertyWrapperBackingVar() and
+        partialPredicateCall = "PropertyWrapperBackingVar()"
+        or
+        index = nPropertyWrapperBackingVar and
+        result = e.getImmediatePropertyWrapperProjectionVarBinding() and
+        partialPredicateCall = "PropertyWrapperProjectionVarBinding()"
+        or
+        index = nPropertyWrapperProjectionVarBinding and
+        result = e.getImmediatePropertyWrapperProjectionVar() and
+        partialPredicateCall = "PropertyWrapperProjectionVar()"
       )
     )
   }
@@ -809,14 +833,27 @@ private module Impl {
   }
 
   private Element getImmediateChildOfParamDecl(ParamDecl e, int index, string partialPredicateCall) {
-    exists(int b, int bVarDecl, int n |
+    exists(
+      int b, int bVarDecl, int n, int nPropertyWrapperLocalWrappedVarBinding,
+      int nPropertyWrapperLocalWrappedVar
+    |
       b = 0 and
       bVarDecl = b + 1 + max(int i | i = -1 or exists(getImmediateChildOfVarDecl(e, i, _)) | i) and
       n = bVarDecl and
+      nPropertyWrapperLocalWrappedVarBinding = n + 1 and
+      nPropertyWrapperLocalWrappedVar = nPropertyWrapperLocalWrappedVarBinding + 1 and
       (
         none()
         or
         result = getImmediateChildOfVarDecl(e, index - b, partialPredicateCall)
+        or
+        index = n and
+        result = e.getImmediatePropertyWrapperLocalWrappedVarBinding() and
+        partialPredicateCall = "PropertyWrapperLocalWrappedVarBinding()"
+        or
+        index = nPropertyWrapperLocalWrappedVarBinding and
+        result = e.getImmediatePropertyWrapperLocalWrappedVar() and
+        partialPredicateCall = "PropertyWrapperLocalWrappedVar()"
       )
     )
   }
diff --git a/swift/ql/lib/codeql/swift/generated/Raw.qll b/swift/ql/lib/codeql/swift/generated/Raw.qll
index 2730e58e09b..ab4b7c5efd8 100644
--- a/swift/ql/lib/codeql/swift/generated/Raw.qll
+++ b/swift/ql/lib/codeql/swift/generated/Raw.qll
@@ -235,6 +235,20 @@ module Raw {
     Pattern getParentPattern() { var_decl_parent_patterns(this, result) }
 
     Expr getParentInitializer() { var_decl_parent_initializers(this, result) }
+
+    PatternBindingDecl getPropertyWrapperBackingVarBinding() {
+      var_decl_property_wrapper_backing_var_bindings(this, result)
+    }
+
+    VarDecl getPropertyWrapperBackingVar() { var_decl_property_wrapper_backing_vars(this, result) }
+
+    PatternBindingDecl getPropertyWrapperProjectionVarBinding() {
+      var_decl_property_wrapper_projection_var_bindings(this, result)
+    }
+
+    VarDecl getPropertyWrapperProjectionVar() {
+      var_decl_property_wrapper_projection_vars(this, result)
+    }
   }
 
   class AccessorDecl extends @accessor_decl, FuncDecl {
@@ -285,6 +299,14 @@ module Raw {
     override string toString() { result = "ParamDecl" }
 
     predicate isInout() { param_decl_is_inout(this) }
+
+    PatternBindingDecl getPropertyWrapperLocalWrappedVarBinding() {
+      param_decl_property_wrapper_local_wrapped_var_bindings(this, result)
+    }
+
+    VarDecl getPropertyWrapperLocalWrappedVar() {
+      param_decl_property_wrapper_local_wrapped_vars(this, result)
+    }
   }
 
   class TypeAliasDecl extends @type_alias_decl, GenericTypeDecl {
diff --git a/swift/ql/lib/codeql/swift/generated/decl/ParamDecl.qll b/swift/ql/lib/codeql/swift/generated/decl/ParamDecl.qll
index 727f169234d..1c153a5e0b6 100644
--- a/swift/ql/lib/codeql/swift/generated/decl/ParamDecl.qll
+++ b/swift/ql/lib/codeql/swift/generated/decl/ParamDecl.qll
@@ -1,6 +1,7 @@
 // generated by codegen/codegen.py
 private import codeql.swift.generated.Synth
 private import codeql.swift.generated.Raw
+import codeql.swift.elements.decl.PatternBindingDecl
 import codeql.swift.elements.decl.VarDecl
 
 module Generated {
@@ -11,5 +12,65 @@ module Generated {
      * Holds if this is an `inout` parameter.
      */
     predicate isInout() { Synth::convertParamDeclToRaw(this).(Raw::ParamDecl).isInout() }
+
+    /**
+     * Gets the property wrapper local wrapped var binding of this parameter declaration, if it exists.
+     *
+     * This includes nodes from the "hidden" AST. It can be overridden in subclasses to change the
+     * behavior of both the `Immediate` and non-`Immediate` versions.
+     */
+    PatternBindingDecl getImmediatePropertyWrapperLocalWrappedVarBinding() {
+      result =
+        Synth::convertPatternBindingDeclFromRaw(Synth::convertParamDeclToRaw(this)
+              .(Raw::ParamDecl)
+              .getPropertyWrapperLocalWrappedVarBinding())
+    }
+
+    /**
+     * Gets the property wrapper local wrapped var binding of this parameter declaration, if it exists.
+     *
+     * This is the synthesized binding introducing the property wrapper local wrapped projection
+     * variable for this variable, if any.
+     */
+    final PatternBindingDecl getPropertyWrapperLocalWrappedVarBinding() {
+      result = getImmediatePropertyWrapperLocalWrappedVarBinding().resolve()
+    }
+
+    /**
+     * Holds if `getPropertyWrapperLocalWrappedVarBinding()` exists.
+     */
+    final predicate hasPropertyWrapperLocalWrappedVarBinding() {
+      exists(getPropertyWrapperLocalWrappedVarBinding())
+    }
+
+    /**
+     * Gets the property wrapper local wrapped var of this parameter declaration, if it exists.
+     *
+     * This includes nodes from the "hidden" AST. It can be overridden in subclasses to change the
+     * behavior of both the `Immediate` and non-`Immediate` versions.
+     */
+    VarDecl getImmediatePropertyWrapperLocalWrappedVar() {
+      result =
+        Synth::convertVarDeclFromRaw(Synth::convertParamDeclToRaw(this)
+              .(Raw::ParamDecl)
+              .getPropertyWrapperLocalWrappedVar())
+    }
+
+    /**
+     * Gets the property wrapper local wrapped var of this parameter declaration, if it exists.
+     *
+     * This is the synthesized local wrapped value, shadowing this parameter declaration in case it
+     * has a property wrapper.
+     */
+    final VarDecl getPropertyWrapperLocalWrappedVar() {
+      result = getImmediatePropertyWrapperLocalWrappedVar().resolve()
+    }
+
+    /**
+     * Holds if `getPropertyWrapperLocalWrappedVar()` exists.
+     */
+    final predicate hasPropertyWrapperLocalWrappedVar() {
+      exists(getPropertyWrapperLocalWrappedVar())
+    }
   }
 }
diff --git a/swift/ql/lib/codeql/swift/generated/decl/VarDecl.qll b/swift/ql/lib/codeql/swift/generated/decl/VarDecl.qll
index f92e0bdb768..f4b414ea1bd 100644
--- a/swift/ql/lib/codeql/swift/generated/decl/VarDecl.qll
+++ b/swift/ql/lib/codeql/swift/generated/decl/VarDecl.qll
@@ -4,6 +4,7 @@ private import codeql.swift.generated.Raw
 import codeql.swift.elements.decl.AbstractStorageDecl
 import codeql.swift.elements.expr.Expr
 import codeql.swift.elements.pattern.Pattern
+import codeql.swift.elements.decl.PatternBindingDecl
 import codeql.swift.elements.type.Type
 
 module Generated {
@@ -98,5 +99,121 @@ module Generated {
      * Holds if `getParentInitializer()` exists.
      */
     final predicate hasParentInitializer() { exists(getParentInitializer()) }
+
+    /**
+     * Gets the property wrapper backing var binding of this var declaration, if it exists.
+     *
+     * This includes nodes from the "hidden" AST. It can be overridden in subclasses to change the
+     * behavior of both the `Immediate` and non-`Immediate` versions.
+     */
+    PatternBindingDecl getImmediatePropertyWrapperBackingVarBinding() {
+      result =
+        Synth::convertPatternBindingDeclFromRaw(Synth::convertVarDeclToRaw(this)
+              .(Raw::VarDecl)
+              .getPropertyWrapperBackingVarBinding())
+    }
+
+    /**
+     * Gets the property wrapper backing var binding of this var declaration, if it exists.
+     *
+     * This is the synthesized binding introducing the property wrapper backing variable for this
+     * variable, if any.
+     */
+    final PatternBindingDecl getPropertyWrapperBackingVarBinding() {
+      result = getImmediatePropertyWrapperBackingVarBinding().resolve()
+    }
+
+    /**
+     * Holds if `getPropertyWrapperBackingVarBinding()` exists.
+     */
+    final predicate hasPropertyWrapperBackingVarBinding() {
+      exists(getPropertyWrapperBackingVarBinding())
+    }
+
+    /**
+     * Gets the property wrapper backing var of this var declaration, if it exists.
+     *
+     * This includes nodes from the "hidden" AST. It can be overridden in subclasses to change the
+     * behavior of both the `Immediate` and non-`Immediate` versions.
+     */
+    VarDecl getImmediatePropertyWrapperBackingVar() {
+      result =
+        Synth::convertVarDeclFromRaw(Synth::convertVarDeclToRaw(this)
+              .(Raw::VarDecl)
+              .getPropertyWrapperBackingVar())
+    }
+
+    /**
+     * Gets the property wrapper backing var of this var declaration, if it exists.
+     *
+     * This is the synthesized variable holding the property wrapper for this variable, if any.
+     */
+    final VarDecl getPropertyWrapperBackingVar() {
+      result = getImmediatePropertyWrapperBackingVar().resolve()
+    }
+
+    /**
+     * Holds if `getPropertyWrapperBackingVar()` exists.
+     */
+    final predicate hasPropertyWrapperBackingVar() { exists(getPropertyWrapperBackingVar()) }
+
+    /**
+     * Gets the property wrapper projection var binding of this var declaration, if it exists.
+     *
+     * This includes nodes from the "hidden" AST. It can be overridden in subclasses to change the
+     * behavior of both the `Immediate` and non-`Immediate` versions.
+     */
+    PatternBindingDecl getImmediatePropertyWrapperProjectionVarBinding() {
+      result =
+        Synth::convertPatternBindingDeclFromRaw(Synth::convertVarDeclToRaw(this)
+              .(Raw::VarDecl)
+              .getPropertyWrapperProjectionVarBinding())
+    }
+
+    /**
+     * Gets the property wrapper projection var binding of this var declaration, if it exists.
+     *
+     * This is the synthesized binding introducing the property wrapper projection variable for this
+     * variable, if any.
+     */
+    final PatternBindingDecl getPropertyWrapperProjectionVarBinding() {
+      result = getImmediatePropertyWrapperProjectionVarBinding().resolve()
+    }
+
+    /**
+     * Holds if `getPropertyWrapperProjectionVarBinding()` exists.
+     */
+    final predicate hasPropertyWrapperProjectionVarBinding() {
+      exists(getPropertyWrapperProjectionVarBinding())
+    }
+
+    /**
+     * Gets the property wrapper projection var of this var declaration, if it exists.
+     *
+     * This includes nodes from the "hidden" AST. It can be overridden in subclasses to change the
+     * behavior of both the `Immediate` and non-`Immediate` versions.
+     */
+    VarDecl getImmediatePropertyWrapperProjectionVar() {
+      result =
+        Synth::convertVarDeclFromRaw(Synth::convertVarDeclToRaw(this)
+              .(Raw::VarDecl)
+              .getPropertyWrapperProjectionVar())
+    }
+
+    /**
+     * Gets the property wrapper projection var of this var declaration, if it exists.
+     *
+     * If this variable has a property wrapper with a projected value, this is the corresponding
+     * synthesized variable holding that projected value, accessible with this variable's name
+     * prefixed with `$`.
+     */
+    final VarDecl getPropertyWrapperProjectionVar() {
+      result = getImmediatePropertyWrapperProjectionVar().resolve()
+    }
+
+    /**
+     * Holds if `getPropertyWrapperProjectionVar()` exists.
+     */
+    final predicate hasPropertyWrapperProjectionVar() { exists(getPropertyWrapperProjectionVar()) }
   }
 }
diff --git a/swift/ql/lib/swift.dbscheme b/swift/ql/lib/swift.dbscheme
index 594381ec16e..510cc5ca65c 100644
--- a/swift/ql/lib/swift.dbscheme
+++ b/swift/ql/lib/swift.dbscheme
@@ -483,6 +483,30 @@ var_decl_parent_initializers(  //dir=decl
   int parent_initializer: @expr_or_none ref
 );
 
+#keyset[id]
+var_decl_property_wrapper_backing_var_bindings(  //dir=decl
+  int id: @var_decl ref,
+  int property_wrapper_backing_var_binding: @pattern_binding_decl_or_none ref
+);
+
+#keyset[id]
+var_decl_property_wrapper_backing_vars(  //dir=decl
+  int id: @var_decl ref,
+  int property_wrapper_backing_var: @var_decl_or_none ref
+);
+
+#keyset[id]
+var_decl_property_wrapper_projection_var_bindings(  //dir=decl
+  int id: @var_decl ref,
+  int property_wrapper_projection_var_binding: @pattern_binding_decl_or_none ref
+);
+
+#keyset[id]
+var_decl_property_wrapper_projection_vars(  //dir=decl
+  int id: @var_decl ref,
+  int property_wrapper_projection_var: @var_decl_or_none ref
+);
+
 accessor_decls(  //dir=decl
   unique int id: @accessor_decl
 );
@@ -558,6 +582,18 @@ param_decl_is_inout(  //dir=decl
   int id: @param_decl ref
 );
 
+#keyset[id]
+param_decl_property_wrapper_local_wrapped_var_bindings(  //dir=decl
+  int id: @param_decl ref,
+  int property_wrapper_local_wrapped_var_binding: @pattern_binding_decl_or_none ref
+);
+
+#keyset[id]
+param_decl_property_wrapper_local_wrapped_vars(  //dir=decl
+  int id: @param_decl ref,
+  int property_wrapper_local_wrapped_var: @var_decl_or_none ref
+);
+
 type_alias_decls(  //dir=decl
   unique int id: @type_alias_decl
 );
diff --git a/swift/ql/test/extractor-tests/generated/decl/ConcreteVarDecl/ConcreteVarDecl_getPropertyWrapperBackingVar.ql b/swift/ql/test/extractor-tests/generated/decl/ConcreteVarDecl/ConcreteVarDecl_getPropertyWrapperBackingVar.ql
new file mode 100644
index 00000000000..a70361143c6
--- /dev/null
+++ b/swift/ql/test/extractor-tests/generated/decl/ConcreteVarDecl/ConcreteVarDecl_getPropertyWrapperBackingVar.ql
@@ -0,0 +1,7 @@
+// generated by codegen/codegen.py
+import codeql.swift.elements
+import TestUtils
+
+from ConcreteVarDecl x
+where toBeTested(x) and not x.isUnknown()
+select x, x.getPropertyWrapperBackingVar()
diff --git a/swift/ql/test/extractor-tests/generated/decl/ConcreteVarDecl/ConcreteVarDecl_getPropertyWrapperBackingVarBinding.ql b/swift/ql/test/extractor-tests/generated/decl/ConcreteVarDecl/ConcreteVarDecl_getPropertyWrapperBackingVarBinding.ql
new file mode 100644
index 00000000000..dea82691f5d
--- /dev/null
+++ b/swift/ql/test/extractor-tests/generated/decl/ConcreteVarDecl/ConcreteVarDecl_getPropertyWrapperBackingVarBinding.ql
@@ -0,0 +1,7 @@
+// generated by codegen/codegen.py
+import codeql.swift.elements
+import TestUtils
+
+from ConcreteVarDecl x
+where toBeTested(x) and not x.isUnknown()
+select x, x.getPropertyWrapperBackingVarBinding()
diff --git a/swift/ql/test/extractor-tests/generated/decl/ConcreteVarDecl/ConcreteVarDecl_getPropertyWrapperProjectionVar.ql b/swift/ql/test/extractor-tests/generated/decl/ConcreteVarDecl/ConcreteVarDecl_getPropertyWrapperProjectionVar.ql
new file mode 100644
index 00000000000..3855735ab02
--- /dev/null
+++ b/swift/ql/test/extractor-tests/generated/decl/ConcreteVarDecl/ConcreteVarDecl_getPropertyWrapperProjectionVar.ql
@@ -0,0 +1,7 @@
+// generated by codegen/codegen.py
+import codeql.swift.elements
+import TestUtils
+
+from ConcreteVarDecl x
+where toBeTested(x) and not x.isUnknown()
+select x, x.getPropertyWrapperProjectionVar()
diff --git a/swift/ql/test/extractor-tests/generated/decl/ConcreteVarDecl/ConcreteVarDecl_getPropertyWrapperProjectionVarBinding.ql b/swift/ql/test/extractor-tests/generated/decl/ConcreteVarDecl/ConcreteVarDecl_getPropertyWrapperProjectionVarBinding.ql
new file mode 100644
index 00000000000..836726bc36a
--- /dev/null
+++ b/swift/ql/test/extractor-tests/generated/decl/ConcreteVarDecl/ConcreteVarDecl_getPropertyWrapperProjectionVarBinding.ql
@@ -0,0 +1,7 @@
+// generated by codegen/codegen.py
+import codeql.swift.elements
+import TestUtils
+
+from ConcreteVarDecl x
+where toBeTested(x) and not x.isUnknown()
+select x, x.getPropertyWrapperProjectionVarBinding()
diff --git a/swift/ql/test/extractor-tests/generated/decl/ParamDecl/ParamDecl_getPropertyWrapperBackingVar.ql b/swift/ql/test/extractor-tests/generated/decl/ParamDecl/ParamDecl_getPropertyWrapperBackingVar.ql
new file mode 100644
index 00000000000..91be55e732a
--- /dev/null
+++ b/swift/ql/test/extractor-tests/generated/decl/ParamDecl/ParamDecl_getPropertyWrapperBackingVar.ql
@@ -0,0 +1,7 @@
+// generated by codegen/codegen.py
+import codeql.swift.elements
+import TestUtils
+
+from ParamDecl x
+where toBeTested(x) and not x.isUnknown()
+select x, x.getPropertyWrapperBackingVar()
diff --git a/swift/ql/test/extractor-tests/generated/decl/ParamDecl/ParamDecl_getPropertyWrapperBackingVarBinding.ql b/swift/ql/test/extractor-tests/generated/decl/ParamDecl/ParamDecl_getPropertyWrapperBackingVarBinding.ql
new file mode 100644
index 00000000000..4a331c68504
--- /dev/null
+++ b/swift/ql/test/extractor-tests/generated/decl/ParamDecl/ParamDecl_getPropertyWrapperBackingVarBinding.ql
@@ -0,0 +1,7 @@
+// generated by codegen/codegen.py
+import codeql.swift.elements
+import TestUtils
+
+from ParamDecl x
+where toBeTested(x) and not x.isUnknown()
+select x, x.getPropertyWrapperBackingVarBinding()
diff --git a/swift/ql/test/extractor-tests/generated/decl/ParamDecl/ParamDecl_getPropertyWrapperLocalWrappedVar.ql b/swift/ql/test/extractor-tests/generated/decl/ParamDecl/ParamDecl_getPropertyWrapperLocalWrappedVar.ql
new file mode 100644
index 00000000000..2c824acc88e
--- /dev/null
+++ b/swift/ql/test/extractor-tests/generated/decl/ParamDecl/ParamDecl_getPropertyWrapperLocalWrappedVar.ql
@@ -0,0 +1,7 @@
+// generated by codegen/codegen.py
+import codeql.swift.elements
+import TestUtils
+
+from ParamDecl x
+where toBeTested(x) and not x.isUnknown()
+select x, x.getPropertyWrapperLocalWrappedVar()
diff --git a/swift/ql/test/extractor-tests/generated/decl/ParamDecl/ParamDecl_getPropertyWrapperLocalWrappedVarBinding.ql b/swift/ql/test/extractor-tests/generated/decl/ParamDecl/ParamDecl_getPropertyWrapperLocalWrappedVarBinding.ql
new file mode 100644
index 00000000000..018c0cbf18a
--- /dev/null
+++ b/swift/ql/test/extractor-tests/generated/decl/ParamDecl/ParamDecl_getPropertyWrapperLocalWrappedVarBinding.ql
@@ -0,0 +1,7 @@
+// generated by codegen/codegen.py
+import codeql.swift.elements
+import TestUtils
+
+from ParamDecl x
+where toBeTested(x) and not x.isUnknown()
+select x, x.getPropertyWrapperLocalWrappedVarBinding()
diff --git a/swift/ql/test/extractor-tests/generated/decl/ParamDecl/ParamDecl_getPropertyWrapperProjectionVar.ql b/swift/ql/test/extractor-tests/generated/decl/ParamDecl/ParamDecl_getPropertyWrapperProjectionVar.ql
new file mode 100644
index 00000000000..03c2584c693
--- /dev/null
+++ b/swift/ql/test/extractor-tests/generated/decl/ParamDecl/ParamDecl_getPropertyWrapperProjectionVar.ql
@@ -0,0 +1,7 @@
+// generated by codegen/codegen.py
+import codeql.swift.elements
+import TestUtils
+
+from ParamDecl x
+where toBeTested(x) and not x.isUnknown()
+select x, x.getPropertyWrapperProjectionVar()
diff --git a/swift/ql/test/extractor-tests/generated/decl/ParamDecl/ParamDecl_getPropertyWrapperProjectionVarBinding.ql b/swift/ql/test/extractor-tests/generated/decl/ParamDecl/ParamDecl_getPropertyWrapperProjectionVarBinding.ql
new file mode 100644
index 00000000000..090122697ab
--- /dev/null
+++ b/swift/ql/test/extractor-tests/generated/decl/ParamDecl/ParamDecl_getPropertyWrapperProjectionVarBinding.ql
@@ -0,0 +1,7 @@
+// generated by codegen/codegen.py
+import codeql.swift.elements
+import TestUtils
+
+from ParamDecl x
+where toBeTested(x) and not x.isUnknown()
+select x, x.getPropertyWrapperProjectionVarBinding()
diff --git a/swift/schema.py b/swift/schema.py
index 97c8cd143e9..665058cbb02 100644
--- a/swift/schema.py
+++ b/swift/schema.py
@@ -11,14 +11,17 @@ from swift.codegen.lib.schema.defs import *
 
 include("prefix.dbscheme")
 
+
 @qltest.skip
 class Element:
     is_unknown: predicate | cpp.skip
 
+
 @qltest.collapse_hierarchy
 class File(Element):
     name: string
 
+
 @qltest.skip
 @qltest.collapse_hierarchy
 class Location(Element):
@@ -28,14 +31,17 @@ class Location(Element):
     end_line: int
     end_column: int
 
+
 @qltest.skip
 class Locatable(Element):
     location: optional[Location] | cpp.skip | doc("location associated with this element in the code")
 
+
 @qltest.collapse_hierarchy
 class UnresolvedElement(Locatable):
     pass
 
+
 @use_for_null
 class UnspecifiedElement(Locatable):
     parent: optional[Element]
@@ -43,187 +49,260 @@ class UnspecifiedElement(Locatable):
     index: optional[int]
     error: string
 
+
 class Comment(Locatable):
     text: string
 
+
 class Diagnostics(Locatable):
     text: string
     kind: int
 
+
 class DbFile(File):
     pass
 
+
 class DbLocation(Location):
     pass
 
+
 @synth.on_arguments()
 class UnknownFile(File):
     pass
 
+
 @synth.on_arguments()
 class UnknownLocation(Location):
     pass
 
+
 class AstNode(Locatable):
     pass
 
+
 @group("type")
 class Type(Element):
     name: string
     canonical_type: "Type"
 
+
 @group("decl")
 class Decl(AstNode):
     module: "ModuleDecl"
 
+
 @group("expr")
 class Expr(AstNode):
     """The base class for all expressions in Swift."""
     type: optional[Type]
 
+
 @group("pattern")
 class Pattern(AstNode):
     pass
 
+
 @group("stmt")
 class Stmt(AstNode):
     pass
 
+
 @group("decl")
 class GenericContext(Element):
     generic_type_params: list["GenericTypeParamDecl"] | child
 
+
 @group("decl")
 class IterableDeclContext(Element):
     members: list[Decl] | child
 
+
 class EnumCaseDecl(Decl):
     elements: list["EnumElementDecl"]
 
+
 class ExtensionDecl(GenericContext, IterableDeclContext, Decl):
     extended_type_decl: "NominalTypeDecl"
 
+
 class IfConfigDecl(Decl):
     active_elements: list[AstNode]
 
+
 class ImportDecl(Decl):
     is_exported: predicate
     imported_module: optional["ModuleDecl"]
     declarations: list["ValueDecl"]
 
+
 @qltest.skip
 class MissingMemberDecl(Decl):
     """A placeholder for missing declarations that can arise on object deserialization."""
     name: string
 
+
 class OperatorDecl(Decl):
     name: string
 
+
 class PatternBindingDecl(Decl):
     inits: list[optional[Expr]] | child
     patterns: list[Pattern] | child
 
+
 class PoundDiagnosticDecl(Decl):
     """ A diagnostic directive, which is either `#error` or `#warning`."""
     kind: int | doc("""This is 1 for `#error` and 2 for `#warning`""")
     message: "StringLiteralExpr" | child
 
+
 class PrecedenceGroupDecl(Decl):
     pass
 
+
 class TopLevelCodeDecl(Decl):
     body: "BraceStmt" | child
 
+
 class ValueDecl(Decl):
     interface_type: Type
 
+
 class AbstractStorageDecl(ValueDecl):
     accessor_decls: list["AccessorDecl"] | child
 
+
 class VarDecl(AbstractStorageDecl):
     name: string
     type: Type
     attached_property_wrapper_type: optional[Type]
     parent_pattern: optional[Pattern]
     parent_initializer: optional[Expr]
+    property_wrapper_backing_var_binding: optional[PatternBindingDecl] | child | desc("""
+        This is the synthesized binding introducing the property wrapper backing variable for this
+        variable, if any.
+    """)
+    property_wrapper_backing_var: optional["VarDecl"] | child | desc("""
+        This is the synthesized variable holding the property wrapper for this variable, if any.
+    """)
+    property_wrapper_projection_var_binding: optional[PatternBindingDecl] | child | desc("""
+        This is the synthesized binding introducing the property wrapper projection variable for this
+        variable, if any.
+    """)
+    property_wrapper_projection_var: optional["VarDecl"] | child | desc("""
+        If this variable has a property wrapper with a projected value, this is the corresponding
+        synthesized variable holding that projected value, accessible with this variable's name
+        prefixed with `$`.
+    """)
+
 
 class ParamDecl(VarDecl):
     is_inout: predicate | doc("this is an `inout` parameter")
+    property_wrapper_local_wrapped_var_binding: optional[PatternBindingDecl] | child | desc("""
+        This is the synthesized binding introducing the property wrapper local wrapped projection
+        variable for this variable, if any.
+    """)
+    property_wrapper_local_wrapped_var: optional["VarDecl"] | child | desc("""
+        This is the synthesized local wrapped value, shadowing this parameter declaration in case it
+        has a property wrapper.
+    """)
+
 
 class Callable(Element):
     self_param: optional[ParamDecl] | child
     params: list[ParamDecl] | child
     body: optional["BraceStmt"] | child | desc("The body is absent within protocol declarations.")
 
+
 class AbstractFunctionDecl(GenericContext, ValueDecl, Callable):
     name: string | doc("name of this function")
 
+
 class EnumElementDecl(ValueDecl):
     name: string
     params: list[ParamDecl] | child
 
+
 class InfixOperatorDecl(OperatorDecl):
     precedence_group: optional[PrecedenceGroupDecl]
 
+
 class PostfixOperatorDecl(OperatorDecl):
     pass
 
+
 class PrefixOperatorDecl(OperatorDecl):
     pass
 
+
 class TypeDecl(ValueDecl):
     name: string
     base_types: list[Type]
 
+
 class AbstractTypeParamDecl(TypeDecl):
     pass
 
+
 class ConstructorDecl(AbstractFunctionDecl):
     pass
 
+
 class DestructorDecl(AbstractFunctionDecl):
     pass
 
+
 class FuncDecl(AbstractFunctionDecl):
     pass
 
+
 class GenericTypeDecl(GenericContext, TypeDecl):
     pass
 
+
 class ModuleDecl(TypeDecl):
     is_builtin_module: predicate | doc("this module is the built-in one")
     is_system_module: predicate | doc("this module is a system one")
     imported_modules: list["ModuleDecl"]
     exported_modules: list["ModuleDecl"]
 
+
 class SubscriptDecl(AbstractStorageDecl, GenericContext):
     params: list[ParamDecl] | child
     element_type: Type
     element_type: Type
 
+
 class AccessorDecl(FuncDecl):
     is_getter: predicate | doc('this accessor is a getter')
     is_setter: predicate | doc('this accessor is a setter')
     is_will_set: predicate | doc('this accessor is a `willSet`, called before the property is set')
     is_did_set: predicate | doc('this accessor is a `didSet`, called after the property is set')
 
+
 class AssociatedTypeDecl(AbstractTypeParamDecl):
     pass
 
+
 class ConcreteFuncDecl(FuncDecl):
     pass
 
+
 class ConcreteVarDecl(VarDecl):
     introducer_int: int | doc("introducer enumeration value") | desc("""
         This is 0 if the variable was introduced with `let` and 1 if it was introduced with `var`.
     """)
 
+
 class GenericTypeParamDecl(AbstractTypeParamDecl):
     pass
 
+
 class NominalTypeDecl(GenericTypeDecl, IterableDeclContext):
     type: Type
 
+
 class OpaqueTypeDecl(GenericTypeDecl):
     """
     A declaration of an opaque type, that is formally equivalent to a given type but abstracts it
@@ -240,56 +319,71 @@ class OpaqueTypeDecl(GenericTypeDecl):
     opaque_generic_params: list["GenericTypeParamType"]
     opaque_generic_params: list["GenericTypeParamType"]
 
+
 class TypeAliasDecl(GenericTypeDecl):
     pass
 
+
 class ClassDecl(NominalTypeDecl):
     pass
 
+
 class EnumDecl(NominalTypeDecl):
     pass
 
+
 class ProtocolDecl(NominalTypeDecl):
     pass
 
+
 class StructDecl(NominalTypeDecl):
     pass
 
+
 @group("expr")
 class Argument(Locatable):
     label: string
     expr: Expr | child
 
+
 class AbstractClosureExpr(Expr, Callable):
     pass
 
+
 class AnyTryExpr(Expr):
     sub_expr: Expr | child
 
+
 class AppliedPropertyWrapperExpr(Expr):
     """An implicit application of a property wrapper on the argument of a call."""
     kind: int | desc("This is 1 for a wrapped value and 2 for a projected one.")
     value: Expr | child | desc("The value on which the wrapper is applied.")
     param: ParamDecl | doc("parameter declaration owning this wrapper application")
 
+
 class ApplyExpr(Expr):
     function: Expr | child | doc("function being applied")
     arguments: list[Argument] | child | doc("arguments passed to the applied function")
 
+
 class AssignExpr(Expr):
     dest: Expr | child
     source: Expr | child
 
+
 class BindOptionalExpr(Expr):
     sub_expr: Expr | child
 
+
 class CaptureListExpr(Expr):
     binding_decls: list[PatternBindingDecl] | child
     closure_body: "ClosureExpr" | child
 
+
 class CollectionExpr(Expr):
     pass
 
+
 class DeclRefExpr(Expr):
     decl: Decl
     replacement_types: list[Type]
@@ -297,99 +391,125 @@ class DeclRefExpr(Expr):
     has_direct_to_implementation_semantics: predicate
     has_ordinary_semantics: predicate
 
+
 class DefaultArgumentExpr(Expr):
     param_decl: ParamDecl
     param_index: int
     caller_side_default: optional[Expr]
 
+
 class DiscardAssignmentExpr(Expr):
     pass
 
+
 class DotSyntaxBaseIgnoredExpr(Expr):
     qualifier: Expr | child
     sub_expr: Expr | child
 
+
 class DynamicTypeExpr(Expr):
     base: Expr | child
 
+
 class EnumIsCaseExpr(Expr):
     sub_expr: Expr | child
     element: EnumElementDecl
 
+
 @qltest.skip
 class ErrorExpr(Expr):
     pass
 
+
 class ExplicitCastExpr(Expr):
     sub_expr: Expr | child
 
+
 class ForceValueExpr(Expr):
     sub_expr: Expr | child
 
+
 @qltest.collapse_hierarchy
 class IdentityExpr(Expr):
     sub_expr: Expr | child
 
+
 class IfExpr(Expr):
     condition: Expr | child
     then_expr: Expr | child
     else_expr: Expr | child
 
+
 @qltest.collapse_hierarchy
 class ImplicitConversionExpr(Expr):
     sub_expr: Expr | child
 
+
 class InOutExpr(Expr):
     sub_expr: Expr | child
 
+
 class KeyPathApplicationExpr(Expr):
     base: Expr | child
     key_path: Expr | child
 
+
 class KeyPathDotExpr(Expr):
     pass
 
+
 class KeyPathExpr(Expr):
     root: optional["TypeRepr"] | child
     parsed_path: optional[Expr] | child
 
+
 class LazyInitializerExpr(Expr):
     sub_expr: Expr | child
 
+
 class LiteralExpr(Expr):
     pass
 
+
 class LookupExpr(Expr):
     base: Expr | child
     member: optional[Decl]
 
+
 class MakeTemporarilyEscapableExpr(Expr):
     escaping_closure: "OpaqueValueExpr" | child
     nonescaping_closure: Expr | child
     sub_expr: Expr | child
 
+
 @qltest.skip
 class ObjCSelectorExpr(Expr):
     sub_expr: Expr | child
     method: AbstractFunctionDecl
 
+
 class OneWayExpr(Expr):
     sub_expr: Expr | child
 
+
 class OpaqueValueExpr(Expr):
     pass
 
+
 class OpenExistentialExpr(Expr):
     sub_expr: Expr | child
     existential: Expr | child
     opaque_expr: OpaqueValueExpr | child
 
+
 class OptionalEvaluationExpr(Expr):
     sub_expr: Expr | child
 
+
 class OtherConstructorDeclRefExpr(Expr):
     constructor_decl: ConstructorDecl
 
+
 class PropertyWrapperValuePlaceholderExpr(Expr):
     """
     A placeholder substituting property initializations with `=` when the property has a property
@@ -398,183 +518,238 @@ class PropertyWrapperValuePlaceholderExpr(Expr):
     wrapped_value: optional[Expr]
     placeholder: OpaqueValueExpr
 
+
 class RebindSelfInConstructorExpr(Expr):
     sub_expr: Expr | child
     self: VarDecl
 
+
 @qltest.skip
 class SequenceExpr(Expr):
     elements: list[Expr] | child
 
+
 class SuperRefExpr(Expr):
     self: VarDecl
 
+
 class TapExpr(Expr):
     sub_expr: optional[Expr] | child
     body: "BraceStmt" | child
     var: VarDecl
 
+
 class TupleElementExpr(Expr):
     sub_expr: Expr | child
     index: int
 
+
 class TupleExpr(Expr):
     elements: list[Expr] | child
 
+
 class TypeExpr(Expr):
     type_repr: optional["TypeRepr"] | child
 
+
 class UnresolvedDeclRefExpr(Expr, UnresolvedElement):
     name: optional[string]
 
+
 class UnresolvedDotExpr(Expr, UnresolvedElement):
     base: Expr | child
     name: string
 
+
 class UnresolvedMemberExpr(Expr, UnresolvedElement):
     name: string
 
+
 class UnresolvedPatternExpr(Expr, UnresolvedElement):
     sub_pattern: Pattern | child
 
+
 class UnresolvedSpecializeExpr(Expr, UnresolvedElement):
     sub_expr: Expr | child
 
+
 class VarargExpansionExpr(Expr):
     sub_expr: Expr | child
 
+
 class AnyHashableErasureExpr(ImplicitConversionExpr):
     pass
 
+
 class ArchetypeToSuperExpr(ImplicitConversionExpr):
     pass
 
+
 class ArrayExpr(CollectionExpr):
     elements: list[Expr] | child
 
+
 class ArrayToPointerExpr(ImplicitConversionExpr):
     pass
 
+
 class AutoClosureExpr(AbstractClosureExpr):
     pass
 
+
 class AwaitExpr(IdentityExpr):
     pass
 
+
 class BinaryExpr(ApplyExpr):
     pass
 
+
 @qltest.skip
 class BridgeFromObjCExpr(ImplicitConversionExpr):
     pass
 
+
 @qltest.skip
 class BridgeToObjCExpr(ImplicitConversionExpr):
     pass
 
+
 class BuiltinLiteralExpr(LiteralExpr):
     pass
 
+
 class CallExpr(ApplyExpr):
     pass
 
+
 class CheckedCastExpr(ExplicitCastExpr):
     pass
 
+
 class ClassMetatypeToObjectExpr(ImplicitConversionExpr):
     pass
 
+
 class ClosureExpr(AbstractClosureExpr):
     pass
 
+
 class CoerceExpr(ExplicitCastExpr):
     pass
 
+
 class CollectionUpcastConversionExpr(ImplicitConversionExpr):
     pass
 
+
 @qltest.skip
 class ConditionalBridgeFromObjCExpr(ImplicitConversionExpr):
     pass
 
+
 class CovariantFunctionConversionExpr(ImplicitConversionExpr):
     pass
 
+
 class CovariantReturnConversionExpr(ImplicitConversionExpr):
     pass
 
+
 class DerivedToBaseExpr(ImplicitConversionExpr):
     pass
 
+
 class DestructureTupleExpr(ImplicitConversionExpr):
     pass
 
+
 class DictionaryExpr(CollectionExpr):
     elements: list[Expr] | child
 
+
 class DifferentiableFunctionExpr(ImplicitConversionExpr):
     pass
 
+
 class DifferentiableFunctionExtractOriginalExpr(ImplicitConversionExpr):
     pass
 
+
 class DotSelfExpr(IdentityExpr):
     pass
 
+
 @qltest.collapse_hierarchy
 class DynamicLookupExpr(LookupExpr):
     pass
 
+
 class ErasureExpr(ImplicitConversionExpr):
     pass
 
+
 class ExistentialMetatypeToObjectExpr(ImplicitConversionExpr):
     pass
 
+
 class ForceTryExpr(AnyTryExpr):
     pass
 
+
 class ForeignObjectConversionExpr(ImplicitConversionExpr):
     pass
 
+
 class FunctionConversionExpr(ImplicitConversionExpr):
     pass
 
+
 class InOutToPointerExpr(ImplicitConversionExpr):
     pass
 
+
 class InjectIntoOptionalExpr(ImplicitConversionExpr):
     pass
 
+
 class InterpolatedStringLiteralExpr(LiteralExpr):
     interpolation_expr: optional[OpaqueValueExpr]
     interpolation_count_expr: optional[Expr] | child
     literal_capacity_expr: optional[Expr] | child
     appending_expr: optional[TapExpr] | child
 
+
 class LinearFunctionExpr(ImplicitConversionExpr):
     pass
 
+
 class LinearFunctionExtractOriginalExpr(ImplicitConversionExpr):
     pass
 
+
 class LinearToDifferentiableFunctionExpr(ImplicitConversionExpr):
     pass
 
+
 class LoadExpr(ImplicitConversionExpr):
     pass
 
+
 class MemberRefExpr(LookupExpr):
     has_direct_to_storage_semantics: predicate
     has_direct_to_implementation_semantics: predicate
     has_ordinary_semantics: predicate
 
+
 class MetatypeConversionExpr(ImplicitConversionExpr):
     pass
 
+
 class NilLiteralExpr(LiteralExpr):
     pass
 
+
 class ObjectLiteralExpr(LiteralExpr):
     """
     An instance of `#fileLiteral`, `#imageLiteral` or `#colorLiteral` expressions, which are used in playgrounds.
@@ -582,9 +757,11 @@ class ObjectLiteralExpr(LiteralExpr):
     kind: int | desc("""This is 0 for `#fileLiteral`, 1 for `#imageLiteral` and 2 for `#colorLiteral`.""")
     arguments: list[Argument] | child
 
+
 class OptionalTryExpr(AnyTryExpr):
     pass
 
+
 class OverloadedDeclRefExpr(Expr):
     """
     An ambiguous expression that might refer to multiple declarations. This will be present only
@@ -592,225 +769,290 @@ class OverloadedDeclRefExpr(Expr):
     """
     possible_declarations: list[ValueDecl]
 
+
 class ParenExpr(IdentityExpr):
     pass
 
+
 class PointerToPointerExpr(ImplicitConversionExpr):
     pass
 
+
 class PostfixUnaryExpr(ApplyExpr):
     pass
 
+
 class PrefixUnaryExpr(ApplyExpr):
     pass
 
+
 class ProtocolMetatypeToObjectExpr(ImplicitConversionExpr):
     pass
 
+
 class RegexLiteralExpr(LiteralExpr):
     pass
 
+
 class SelfApplyExpr(ApplyExpr):
     base: Expr
 
+
 class StringToPointerExpr(ImplicitConversionExpr):
     pass
 
+
 class SubscriptExpr(LookupExpr):
     arguments: list[Argument] | child
     has_direct_to_storage_semantics: predicate
     has_direct_to_implementation_semantics: predicate
     has_ordinary_semantics: predicate
 
+
 class TryExpr(AnyTryExpr):
     pass
 
+
 class UnderlyingToOpaqueExpr(ImplicitConversionExpr):
     pass
 
+
 class UnevaluatedInstanceExpr(ImplicitConversionExpr):
     pass
 
+
 class UnresolvedMemberChainResultExpr(IdentityExpr, UnresolvedElement):
     pass
 
+
 class UnresolvedTypeConversionExpr(ImplicitConversionExpr, UnresolvedElement):
     pass
 
+
 class BooleanLiteralExpr(BuiltinLiteralExpr):
     value: boolean
 
+
 class ConditionalCheckedCastExpr(CheckedCastExpr):
     pass
 
+
 class ConstructorRefCallExpr(SelfApplyExpr):
     pass
 
+
 class DotSyntaxCallExpr(SelfApplyExpr):
     pass
 
+
 @synth.from_class(DotSyntaxCallExpr)
 class MethodRefExpr(LookupExpr):
     pass
 
+
 class DynamicMemberRefExpr(DynamicLookupExpr):
     pass
 
+
 class DynamicSubscriptExpr(DynamicLookupExpr):
     pass
 
+
 class ForcedCheckedCastExpr(CheckedCastExpr):
     pass
 
+
 class IsExpr(CheckedCastExpr):
     pass
 
+
 class MagicIdentifierLiteralExpr(BuiltinLiteralExpr):
     kind: string
 
+
 class NumberLiteralExpr(BuiltinLiteralExpr):
     pass
 
+
 class StringLiteralExpr(BuiltinLiteralExpr):
     value: string
 
+
 class FloatLiteralExpr(NumberLiteralExpr):
     string_value: string
 
+
 class IntegerLiteralExpr(NumberLiteralExpr):
     string_value: string
 
+
 class AnyPattern(Pattern):
     pass
 
+
 class BindingPattern(Pattern):
     sub_pattern: Pattern | child
 
+
 class BoolPattern(Pattern):
     value: boolean
 
+
 class EnumElementPattern(Pattern):
     element: EnumElementDecl
     sub_pattern: optional[Pattern] | child
 
+
 class ExprPattern(Pattern):
     sub_expr: Expr | child
 
+
 class IsPattern(Pattern):
     cast_type_repr: optional["TypeRepr"] | child
     sub_pattern: optional[Pattern] | child
 
+
 class NamedPattern(Pattern):
     name: string
 
+
 class OptionalSomePattern(Pattern):
     sub_pattern: Pattern | child
 
+
 class ParenPattern(Pattern):
     sub_pattern: Pattern | child
 
+
 class TuplePattern(Pattern):
     elements: list[Pattern] | child
 
+
 class TypedPattern(Pattern):
     sub_pattern: Pattern | child
     type_repr: optional["TypeRepr"] | child
 
+
 @group("stmt")
 class CaseLabelItem(AstNode):
     pattern: Pattern | child
     guard: optional[Expr] | child
 
+
 @group("stmt")
 class ConditionElement(AstNode):
     boolean: optional[Expr] | child
     pattern: optional[Pattern] | child
     initializer: optional[Expr] | child
 
+
 @group("stmt")
 class StmtCondition(AstNode):
     elements: list[ConditionElement] | child
 
+
 class BraceStmt(Stmt):
     elements: list[AstNode] | child
 
+
 class BreakStmt(Stmt):
     target_name: optional[string]
     target: optional[Stmt]
 
+
 class CaseStmt(Stmt):
     body: Stmt | child
     labels: list[CaseLabelItem] | child
     variables: list[VarDecl]
 
+
 class ContinueStmt(Stmt):
     target_name: optional[string]
     target: optional[Stmt]
 
+
 class DeferStmt(Stmt):
     body: BraceStmt | child
 
+
 class FailStmt(Stmt):
     pass
 
+
 class FallthroughStmt(Stmt):
     fallthrough_source: CaseStmt
     fallthrough_dest: CaseStmt
 
+
 class LabeledStmt(Stmt):
     label: optional[string]
 
+
 class PoundAssertStmt(Stmt):
     condition: Expr
     message: string
 
+
 class ReturnStmt(Stmt):
     result: optional[Expr] | child
 
+
 class ThrowStmt(Stmt):
     sub_expr: Expr | child
 
+
 class YieldStmt(Stmt):
     results: list[Expr] | child
 
+
 class DoCatchStmt(LabeledStmt):
     body: Stmt | child
     catches: list[CaseStmt] | child
 
+
 class DoStmt(LabeledStmt):
     body: BraceStmt | child
 
+
 class ForEachStmt(LabeledStmt):
     pattern: Pattern | child
     sequence: Expr | child
     where: optional[Expr] | child
     body: BraceStmt | child
 
+
 class LabeledConditionalStmt(LabeledStmt):
     condition: StmtCondition | child
 
+
 class RepeatWhileStmt(LabeledStmt):
     condition: Expr | child
     body: Stmt | child
 
+
 class SwitchStmt(LabeledStmt):
     expr: Expr | child
     cases: list[CaseStmt] | child
 
+
 class GuardStmt(LabeledConditionalStmt):
     body: BraceStmt | child
 
+
 class IfStmt(LabeledConditionalStmt):
     then: Stmt | child
     else_: optional[Stmt] | child
 
+
 class WhileStmt(LabeledConditionalStmt):
     body: Stmt | child
 
+
 @group("type")
 class TypeRepr(AstNode):
     type: Type
 
+
 @ql.default_doc_name("function type")
 class AnyFunctionType(Type):
     result: Type
@@ -819,203 +1061,266 @@ class AnyFunctionType(Type):
     is_throwing: predicate | doc("this type refers to a throwing function")
     is_async: predicate | doc("this type refers to an `async` function")
 
+
 class AnyGenericType(Type):
     parent: optional[Type]
     declaration: Decl
 
+
 class AnyMetatypeType(Type):
     pass
 
+
 @qltest.collapse_hierarchy
 class BuiltinType(Type):
     pass
 
+
 class DependentMemberType(Type):
     base_type: Type
     associated_type_decl: AssociatedTypeDecl
 
+
 class DynamicSelfType(Type):
     static_self_type: Type
 
+
 class ErrorType(Type):
     pass
 
+
 class ExistentialType(Type):
     constraint: Type
 
+
 class InOutType(Type):
     object_type: Type
 
+
 class LValueType(Type):
     object_type: Type
 
+
 class ModuleType(Type):
     module: ModuleDecl
 
+
 class ProtocolCompositionType(Type):
     members: list[Type]
 
+
 class ReferenceStorageType(Type):
     referent_type: Type
 
+
 class SubstitutableType(Type):
     pass
 
+
 class SugarType(Type):
     pass
 
+
 class TupleType(Type):
     types: list[Type]
     names: list[optional[string]]
 
+
 class TypeVariableType(Type):
     pass
 
+
 class UnresolvedType(Type, UnresolvedElement):
     pass
 
+
 class AnyBuiltinIntegerType(BuiltinType):
     pass
 
+
 class ArchetypeType(SubstitutableType):
     interface_type: Type
     superclass: optional[Type]
     protocols: list[ProtocolDecl]
 
+
 class BuiltinBridgeObjectType(BuiltinType):
     pass
 
+
 class BuiltinDefaultActorStorageType(BuiltinType):
     pass
 
+
 class BuiltinExecutorType(BuiltinType):
     pass
 
+
 class BuiltinFloatType(BuiltinType):
     pass
 
+
 class BuiltinJobType(BuiltinType):
     pass
 
+
 class BuiltinNativeObjectType(BuiltinType):
     pass
 
+
 class BuiltinRawPointerType(BuiltinType):
     pass
 
+
 class BuiltinRawUnsafeContinuationType(BuiltinType):
     pass
 
+
 class BuiltinUnsafeValueBufferType(BuiltinType):
     pass
 
+
 class BuiltinVectorType(BuiltinType):
     pass
 
+
 class ExistentialMetatypeType(AnyMetatypeType):
     pass
 
+
 class FunctionType(AnyFunctionType):
     pass
 
+
 class GenericFunctionType(AnyFunctionType):
     """ The type of a generic function with type parameters """
     generic_params: list["GenericTypeParamType"] | doc("type {parameters} of this generic type")
 
+
 class GenericTypeParamType(SubstitutableType):
     pass
 
+
 class MetatypeType(AnyMetatypeType):
     pass
 
+
 class NominalOrBoundGenericNominalType(AnyGenericType):
     pass
 
+
 class ParenType(SugarType):
     type: Type
 
+
 class SyntaxSugarType(SugarType):
     pass
 
+
 class TypeAliasType(SugarType):
     decl: TypeAliasDecl
 
+
 class UnboundGenericType(AnyGenericType):
     pass
 
+
 class UnmanagedStorageType(ReferenceStorageType):
     pass
 
+
 class UnownedStorageType(ReferenceStorageType):
     pass
 
+
 class WeakStorageType(ReferenceStorageType):
     pass
 
+
 class BoundGenericType(NominalOrBoundGenericNominalType):
     arg_types: list[Type]
 
+
 class BuiltinIntegerLiteralType(AnyBuiltinIntegerType):
     pass
 
+
 @qltest.uncollapse_hierarchy
 class BuiltinIntegerType(AnyBuiltinIntegerType):
     width: optional[int]
 
+
 class DictionaryType(SyntaxSugarType):
     key_type: Type
     value_type: Type
 
+
 class NominalType(NominalOrBoundGenericNominalType):
     pass
 
+
 class OpaqueTypeArchetypeType(ArchetypeType):
     """An opaque type, that is a type formally equivalent to an underlying type but abstracting it away.
 
     See https://docs.swift.org/swift-book/LanguageGuide/OpaqueTypes.html."""
     declaration: OpaqueTypeDecl
 
+
 class OpenedArchetypeType(ArchetypeType):
     pass
 
+
 class PrimaryArchetypeType(ArchetypeType):
     pass
 
+
 class SequenceArchetypeType(ArchetypeType):
     pass
 
+
 class UnarySyntaxSugarType(SyntaxSugarType):
     base_type: Type
 
+
 class ArraySliceType(UnarySyntaxSugarType):
     pass
 
+
 class BoundGenericClassType(BoundGenericType):
     pass
 
+
 class BoundGenericEnumType(BoundGenericType):
     pass
 
+
 class BoundGenericStructType(BoundGenericType):
     pass
 
+
 class ClassType(NominalType):
     pass
 
+
 class EnumType(NominalType):
     pass
 
+
 class OptionalType(UnarySyntaxSugarType):
     pass
 
+
 class ProtocolType(NominalType):
     pass
 
+
 class StructType(NominalType):
     pass
 
+
 class VariadicSequenceType(UnarySyntaxSugarType):
     pass
 
+
 class ParameterizedProtocolType(Type):
     pass

From fc98fd30944f0cfabef959fba052f605b1e5b395 Mon Sep 17 00:00:00 2001
From: Paolo Tranquilli <redsun82@github.com>
Date: Fri, 11 Nov 2022 12:00:12 +0100
Subject: [PATCH 0187/1420] Swift: add `var` to the list of doc expanded
 abbreviations

---
 swift/codegen/generators/qlgen.py             |  1 +
 .../codeql/swift/generated/decl/ParamDecl.qll |  8 ++---
 .../codeql/swift/generated/decl/VarDecl.qll   | 34 +++++++++----------
 .../codeql/swift/generated/expr/TapExpr.qll   |  4 +--
 4 files changed, 24 insertions(+), 23 deletions(-)

diff --git a/swift/codegen/generators/qlgen.py b/swift/codegen/generators/qlgen.py
index 2172a9517e6..662a782dbd7 100755
--- a/swift/codegen/generators/qlgen.py
+++ b/swift/codegen/generators/qlgen.py
@@ -63,6 +63,7 @@ abbreviations = {
     "repr": "representation",
     "param": "parameter",
     "int": "integer",
+    "var": "variable",
 }
 
 abbreviations.update({f"{k}s": f"{v}s" for k, v in abbreviations.items()})
diff --git a/swift/ql/lib/codeql/swift/generated/decl/ParamDecl.qll b/swift/ql/lib/codeql/swift/generated/decl/ParamDecl.qll
index 1c153a5e0b6..daa8b3e94dc 100644
--- a/swift/ql/lib/codeql/swift/generated/decl/ParamDecl.qll
+++ b/swift/ql/lib/codeql/swift/generated/decl/ParamDecl.qll
@@ -14,7 +14,7 @@ module Generated {
     predicate isInout() { Synth::convertParamDeclToRaw(this).(Raw::ParamDecl).isInout() }
 
     /**
-     * Gets the property wrapper local wrapped var binding of this parameter declaration, if it exists.
+     * Gets the property wrapper local wrapped variable binding of this parameter declaration, if it exists.
      *
      * This includes nodes from the "hidden" AST. It can be overridden in subclasses to change the
      * behavior of both the `Immediate` and non-`Immediate` versions.
@@ -27,7 +27,7 @@ module Generated {
     }
 
     /**
-     * Gets the property wrapper local wrapped var binding of this parameter declaration, if it exists.
+     * Gets the property wrapper local wrapped variable binding of this parameter declaration, if it exists.
      *
      * This is the synthesized binding introducing the property wrapper local wrapped projection
      * variable for this variable, if any.
@@ -44,7 +44,7 @@ module Generated {
     }
 
     /**
-     * Gets the property wrapper local wrapped var of this parameter declaration, if it exists.
+     * Gets the property wrapper local wrapped variable of this parameter declaration, if it exists.
      *
      * This includes nodes from the "hidden" AST. It can be overridden in subclasses to change the
      * behavior of both the `Immediate` and non-`Immediate` versions.
@@ -57,7 +57,7 @@ module Generated {
     }
 
     /**
-     * Gets the property wrapper local wrapped var of this parameter declaration, if it exists.
+     * Gets the property wrapper local wrapped variable of this parameter declaration, if it exists.
      *
      * This is the synthesized local wrapped value, shadowing this parameter declaration in case it
      * has a property wrapper.
diff --git a/swift/ql/lib/codeql/swift/generated/decl/VarDecl.qll b/swift/ql/lib/codeql/swift/generated/decl/VarDecl.qll
index f4b414ea1bd..9cc585e0623 100644
--- a/swift/ql/lib/codeql/swift/generated/decl/VarDecl.qll
+++ b/swift/ql/lib/codeql/swift/generated/decl/VarDecl.qll
@@ -10,12 +10,12 @@ import codeql.swift.elements.type.Type
 module Generated {
   class VarDecl extends Synth::TVarDecl, AbstractStorageDecl {
     /**
-     * Gets the name of this var declaration.
+     * Gets the name of this variable declaration.
      */
     string getName() { result = Synth::convertVarDeclToRaw(this).(Raw::VarDecl).getName() }
 
     /**
-     * Gets the type of this var declaration.
+     * Gets the type of this variable declaration.
      *
      * This includes nodes from the "hidden" AST. It can be overridden in subclasses to change the
      * behavior of both the `Immediate` and non-`Immediate` versions.
@@ -25,12 +25,12 @@ module Generated {
     }
 
     /**
-     * Gets the type of this var declaration.
+     * Gets the type of this variable declaration.
      */
     final Type getType() { result = getImmediateType().resolve() }
 
     /**
-     * Gets the attached property wrapper type of this var declaration, if it exists.
+     * Gets the attached property wrapper type of this variable declaration, if it exists.
      *
      * This includes nodes from the "hidden" AST. It can be overridden in subclasses to change the
      * behavior of both the `Immediate` and non-`Immediate` versions.
@@ -43,7 +43,7 @@ module Generated {
     }
 
     /**
-     * Gets the attached property wrapper type of this var declaration, if it exists.
+     * Gets the attached property wrapper type of this variable declaration, if it exists.
      */
     final Type getAttachedPropertyWrapperType() {
       result = getImmediateAttachedPropertyWrapperType().resolve()
@@ -55,7 +55,7 @@ module Generated {
     final predicate hasAttachedPropertyWrapperType() { exists(getAttachedPropertyWrapperType()) }
 
     /**
-     * Gets the parent pattern of this var declaration, if it exists.
+     * Gets the parent pattern of this variable declaration, if it exists.
      *
      * This includes nodes from the "hidden" AST. It can be overridden in subclasses to change the
      * behavior of both the `Immediate` and non-`Immediate` versions.
@@ -68,7 +68,7 @@ module Generated {
     }
 
     /**
-     * Gets the parent pattern of this var declaration, if it exists.
+     * Gets the parent pattern of this variable declaration, if it exists.
      */
     final Pattern getParentPattern() { result = getImmediateParentPattern().resolve() }
 
@@ -78,7 +78,7 @@ module Generated {
     final predicate hasParentPattern() { exists(getParentPattern()) }
 
     /**
-     * Gets the parent initializer of this var declaration, if it exists.
+     * Gets the parent initializer of this variable declaration, if it exists.
      *
      * This includes nodes from the "hidden" AST. It can be overridden in subclasses to change the
      * behavior of both the `Immediate` and non-`Immediate` versions.
@@ -91,7 +91,7 @@ module Generated {
     }
 
     /**
-     * Gets the parent initializer of this var declaration, if it exists.
+     * Gets the parent initializer of this variable declaration, if it exists.
      */
     final Expr getParentInitializer() { result = getImmediateParentInitializer().resolve() }
 
@@ -101,7 +101,7 @@ module Generated {
     final predicate hasParentInitializer() { exists(getParentInitializer()) }
 
     /**
-     * Gets the property wrapper backing var binding of this var declaration, if it exists.
+     * Gets the property wrapper backing variable binding of this variable declaration, if it exists.
      *
      * This includes nodes from the "hidden" AST. It can be overridden in subclasses to change the
      * behavior of both the `Immediate` and non-`Immediate` versions.
@@ -114,7 +114,7 @@ module Generated {
     }
 
     /**
-     * Gets the property wrapper backing var binding of this var declaration, if it exists.
+     * Gets the property wrapper backing variable binding of this variable declaration, if it exists.
      *
      * This is the synthesized binding introducing the property wrapper backing variable for this
      * variable, if any.
@@ -131,7 +131,7 @@ module Generated {
     }
 
     /**
-     * Gets the property wrapper backing var of this var declaration, if it exists.
+     * Gets the property wrapper backing variable of this variable declaration, if it exists.
      *
      * This includes nodes from the "hidden" AST. It can be overridden in subclasses to change the
      * behavior of both the `Immediate` and non-`Immediate` versions.
@@ -144,7 +144,7 @@ module Generated {
     }
 
     /**
-     * Gets the property wrapper backing var of this var declaration, if it exists.
+     * Gets the property wrapper backing variable of this variable declaration, if it exists.
      *
      * This is the synthesized variable holding the property wrapper for this variable, if any.
      */
@@ -158,7 +158,7 @@ module Generated {
     final predicate hasPropertyWrapperBackingVar() { exists(getPropertyWrapperBackingVar()) }
 
     /**
-     * Gets the property wrapper projection var binding of this var declaration, if it exists.
+     * Gets the property wrapper projection variable binding of this variable declaration, if it exists.
      *
      * This includes nodes from the "hidden" AST. It can be overridden in subclasses to change the
      * behavior of both the `Immediate` and non-`Immediate` versions.
@@ -171,7 +171,7 @@ module Generated {
     }
 
     /**
-     * Gets the property wrapper projection var binding of this var declaration, if it exists.
+     * Gets the property wrapper projection variable binding of this variable declaration, if it exists.
      *
      * This is the synthesized binding introducing the property wrapper projection variable for this
      * variable, if any.
@@ -188,7 +188,7 @@ module Generated {
     }
 
     /**
-     * Gets the property wrapper projection var of this var declaration, if it exists.
+     * Gets the property wrapper projection variable of this variable declaration, if it exists.
      *
      * This includes nodes from the "hidden" AST. It can be overridden in subclasses to change the
      * behavior of both the `Immediate` and non-`Immediate` versions.
@@ -201,7 +201,7 @@ module Generated {
     }
 
     /**
-     * Gets the property wrapper projection var of this var declaration, if it exists.
+     * Gets the property wrapper projection variable of this variable declaration, if it exists.
      *
      * If this variable has a property wrapper with a projected value, this is the corresponding
      * synthesized variable holding that projected value, accessible with this variable's name
diff --git a/swift/ql/lib/codeql/swift/generated/expr/TapExpr.qll b/swift/ql/lib/codeql/swift/generated/expr/TapExpr.qll
index 37b928dac22..734c8d311ad 100644
--- a/swift/ql/lib/codeql/swift/generated/expr/TapExpr.qll
+++ b/swift/ql/lib/codeql/swift/generated/expr/TapExpr.qll
@@ -47,7 +47,7 @@ module Generated {
     final BraceStmt getBody() { result = getImmediateBody().resolve() }
 
     /**
-     * Gets the var of this tap expression.
+     * Gets the variable of this tap expression.
      *
      * This includes nodes from the "hidden" AST. It can be overridden in subclasses to change the
      * behavior of both the `Immediate` and non-`Immediate` versions.
@@ -58,7 +58,7 @@ module Generated {
     }
 
     /**
-     * Gets the var of this tap expression.
+     * Gets the variable of this tap expression.
      */
     final VarDecl getVar() { result = getImmediateVar().resolve() }
   }

From 3de650e19dbc6ac9a12449dd594374546866600c Mon Sep 17 00:00:00 2001
From: Paolo Tranquilli <redsun82@github.com>
Date: Fri, 11 Nov 2022 12:01:46 +0100
Subject: [PATCH 0188/1420] Swift: make `toBeTested` and `shouldPrint`
 propagate to children

---
 .../ide-contextual-queries/printAst.ql        |   7 +-
 swift/ql/test/TestUtils.qll                   |   5 +-
 .../test/library-tests/ast/PrintAst.expected  | 810 +++++++++++++++++-
 3 files changed, 795 insertions(+), 27 deletions(-)

diff --git a/swift/ql/src/queries/ide-contextual-queries/printAst.ql b/swift/ql/src/queries/ide-contextual-queries/printAst.ql
index 26a9df55c1d..03c106c0051 100644
--- a/swift/ql/src/queries/ide-contextual-queries/printAst.ql
+++ b/swift/ql/src/queries/ide-contextual-queries/printAst.ql
@@ -10,6 +10,7 @@
 import swift
 import codeql.swift.printast.PrintAst
 import IDEContextual
+import codeql.swift.generated.ParentChild
 
 /**
  * Gets the source file to generate an AST from.
@@ -23,6 +24,10 @@ class PrintAstConfigurationOverride extends PrintAstConfiguration {
    */
   override predicate shouldPrint(Locatable e) {
     super.shouldPrint(e) and
-    e.getFile() = getFileBySourceArchiveName(selectedSourceFile())
+    (
+      e.getFile() = getFileBySourceArchiveName(selectedSourceFile())
+      or
+      exists(Locatable parent | this.shouldPrint(parent) and parent = getImmediateParent(e))
+    )
   }
 }
diff --git a/swift/ql/test/TestUtils.qll b/swift/ql/test/TestUtils.qll
index 92fcc4de137..35b54d31747 100644
--- a/swift/ql/test/TestUtils.qll
+++ b/swift/ql/test/TestUtils.qll
@@ -1,11 +1,10 @@
 private import codeql.swift.elements
+private import codeql.swift.generated.ParentChild
 
 cached
 predicate toBeTested(Element e) {
   e instanceof File
   or
-  e instanceof AppliedPropertyWrapperExpr
-  or
   exists(ModuleDecl m |
     m = e and
     not m.isBuiltinModule() and
@@ -32,6 +31,8 @@ predicate toBeTested(Element e) {
       e.(UnspecifiedElement).getParent() = tested
       or
       e.(OpaqueTypeDecl).getNamingDeclaration() = tested
+      or
+      tested = getImmediateParent(e)
     )
   )
 }
diff --git a/swift/ql/test/library-tests/ast/PrintAst.expected b/swift/ql/test/library-tests/ast/PrintAst.expected
index 8dbfecabeee..4fc35515561 100644
--- a/swift/ql/test/library-tests/ast/PrintAst.expected
+++ b/swift/ql/test/library-tests/ast/PrintAst.expected
@@ -206,9 +206,13 @@ cfg.swift:
 #   40|               getExpr(): [VarargExpansionExpr] [...]
 #   40|                 getSubExpr(): [ArrayExpr] [...]
 #   40|                   getElement(0): [InterpolatedStringLiteralExpr] "..."
+#-----|                     getInterpolationCountExpr(): [IntegerLiteralExpr] 1
+#-----|                     getLiteralCapacityExpr(): [IntegerLiteralExpr] 14
 #   40|                     getAppendingExpr(): [TapExpr] TapExpr
 #   40|                       getSubExpr(): [OpaqueValueExpr] OpaqueValueExpr
 #   40|                       getBody(): [BraceStmt] { ... }
+#-----|                         getElement(0): [ConcreteVarDecl] $interpolation
+#-----|                             Type = DefaultStringInterpolation
 #   40|                         getElement(1): [CallExpr] call to appendLiteral(_:)
 #   40|                           getFunction(): [MethodRefExpr] .appendLiteral(_:)
 #   40|                             getBase(): [InOutExpr] &...
@@ -461,6 +465,9 @@ cfg.swift:
 #   99|       getSelfParam(): [ParamDecl] self
 #   99|           Type = C
 #   99|       getBody(): [BraceStmt] { ... }
+#-----|         getElement(0): [ReturnStmt] return ...
+#-----|           getResult(): [MemberRefExpr] .myInt
+#-----|             getBase(): [DeclRefExpr] self
 #  100|   getMember(2): [ConstructorDecl] init(n:)
 #  100|       InterfaceType = (C.Type) -> (Int) -> C
 #  100|     getSelfParam(): [ParamDecl] self
@@ -1358,9 +1365,13 @@ cfg.swift:
 #  262|   getBody(): [BraceStmt] { ... }
 #  263|     getElement(0): [ReturnStmt] return ...
 #  263|       getResult(): [InterpolatedStringLiteralExpr] "..."
+#-----|         getInterpolationCountExpr(): [IntegerLiteralExpr] 4
+#-----|         getLiteralCapacityExpr(): [IntegerLiteralExpr] 37
 #  263|         getAppendingExpr(): [TapExpr] TapExpr
 #  263|           getSubExpr(): [OpaqueValueExpr] OpaqueValueExpr
 #  263|           getBody(): [BraceStmt] { ... }
+#-----|             getElement(0): [ConcreteVarDecl] $interpolation
+#-----|                 Type = DefaultStringInterpolation
 #  263|             getElement(1): [CallExpr] call to appendLiteral(_:)
 #  263|               getFunction(): [MethodRefExpr] .appendLiteral(_:)
 #  263|                 getBase(): [InOutExpr] &...
@@ -2229,6 +2240,9 @@ cfg.swift:
 #  353|       getSelfParam(): [ParamDecl] self
 #  353|           Type = OptionalC
 #  353|       getBody(): [BraceStmt] { ... }
+#-----|         getElement(0): [ReturnStmt] return ...
+#-----|           getResult(): [MemberRefExpr] .c
+#-----|             getBase(): [DeclRefExpr] self
 #  354|   getMember(2): [ConstructorDecl] init(arg:)
 #  354|       InterfaceType = (OptionalC.Type) -> (C?) -> OptionalC
 #  354|     getSelfParam(): [ParamDecl] self
@@ -2351,23 +2365,27 @@ cfg.swift:
 #  377|       InterfaceType = (Derived.Type) -> (Int) -> Derived
 #  377|     getSelfParam(): [ParamDecl] self
 #  377|         Type = Derived
+#-----|     getParam(0): [ParamDecl] n
+#-----|         Type = Int
+#-----|     getBody(): [BraceStmt] { ... }
+#  377|       getElement(0): [CallExpr] call to _unimplementedInitializer(className:initName:file:line:column:)
+#  377|         getFunction(): [DeclRefExpr] _unimplementedInitializer(className:initName:file:line:column:)
+#  377|         getArgument(0): [Argument] : cfg.Derived
+#  377|           getExpr(): [StringLiteralExpr] cfg.Derived
+#  377|         getArgument(1): [Argument] : #...
+#  377|           getExpr(): [MagicIdentifierLiteralExpr] #...
+#  377|         getArgument(2): [Argument] : #...
+#  377|           getExpr(): [MagicIdentifierLiteralExpr] #...
+#  377|         getArgument(3): [Argument] : #...
+#  377|           getExpr(): [MagicIdentifierLiteralExpr] #...
+#  377|         getArgument(4): [Argument] : #...
+#  377|           getExpr(): [MagicIdentifierLiteralExpr] #...
+#-----|       getElement(1): [ReturnStmt] return
 #  377|   getMember(2): [DestructorDecl] deinit()
 #  377|       InterfaceType = (Derived) -> () -> ()
 #  377|     getSelfParam(): [ParamDecl] self
 #  377|         Type = Derived
 #  377|     getBody(): [BraceStmt] { ... }
-#  377| [CallExpr] call to _unimplementedInitializer(className:initName:file:line:column:)
-#  377|   getFunction(): [DeclRefExpr] _unimplementedInitializer(className:initName:file:line:column:)
-#  377|   getArgument(0): [Argument] : cfg.Derived
-#  377|     getExpr(): [StringLiteralExpr] cfg.Derived
-#  377|   getArgument(1): [Argument] : #...
-#  377|     getExpr(): [MagicIdentifierLiteralExpr] #...
-#  377|   getArgument(2): [Argument] : #...
-#  377|     getExpr(): [MagicIdentifierLiteralExpr] #...
-#  377|   getArgument(3): [Argument] : #...
-#  377|     getExpr(): [MagicIdentifierLiteralExpr] #...
-#  377|   getArgument(4): [Argument] : #...
-#  377|     getExpr(): [MagicIdentifierLiteralExpr] #...
 #  383| [ConcreteFuncDecl] doWithoutCatch(x:)
 #  383|     InterfaceType = (Int) throws -> Int
 #  383|   getParam(0): [ParamDecl] x
@@ -2421,6 +2439,9 @@ cfg.swift:
 #  394|       getSelfParam(): [ParamDecl] self
 #  394|           Type = Structors
 #  394|       getBody(): [BraceStmt] { ... }
+#-----|         getElement(0): [ReturnStmt] return ...
+#-----|           getResult(): [MemberRefExpr] .field
+#-----|             getBase(): [DeclRefExpr] self
 #  394|     getAccessorDecl(1): [AccessorDecl] set
 #  394|         InterfaceType = (Structors) -> (Int) -> ()
 #  394|       getSelfParam(): [ParamDecl] self
@@ -2428,12 +2449,19 @@ cfg.swift:
 #  394|       getParam(0): [ParamDecl] value
 #  394|           Type = Int
 #  394|       getBody(): [BraceStmt] { ... }
+#-----|         getElement(0): [AssignExpr]  ... = ...
+#-----|           getDest(): [MemberRefExpr] .field
+#-----|             getBase(): [DeclRefExpr] self
+#-----|           getSource(): [DeclRefExpr] value
 #  394|     getAccessorDecl(2): [AccessorDecl] (unnamed function decl)
 #  394|         InterfaceType = (Structors) -> () -> ()
 #  394|       getSelfParam(): [ParamDecl] self
 #  394|           Type = Structors
 #  394|       getBody(): [BraceStmt] { ... }
 #  394|         getElement(0): [YieldStmt] yield ...
+#-----|           getResult(0): [InOutExpr] &...
+#-----|             getSubExpr(): [MemberRefExpr] .field
+#-----|               getBase(): [DeclRefExpr] self
 #  395|   getMember(2): [ConstructorDecl] init()
 #  395|       InterfaceType = (Structors.Type) -> () -> Structors
 #  395|     getSelfParam(): [ParamDecl] self
@@ -2483,6 +2511,9 @@ cfg.swift:
 #  410|           getSelfParam(): [ParamDecl] self
 #  410|               Type = MyLocalClass
 #  410|           getBody(): [BraceStmt] { ... }
+#-----|             getElement(0): [ReturnStmt] return ...
+#-----|               getResult(): [MemberRefExpr] .x
+#-----|                 getBase(): [DeclRefExpr] self
 #  410|         getAccessorDecl(1): [AccessorDecl] set
 #  410|             InterfaceType = (MyLocalClass) -> (Int) -> ()
 #  410|           getSelfParam(): [ParamDecl] self
@@ -2490,12 +2521,19 @@ cfg.swift:
 #  410|           getParam(0): [ParamDecl] value
 #  410|               Type = Int
 #  410|           getBody(): [BraceStmt] { ... }
+#-----|             getElement(0): [AssignExpr]  ... = ...
+#-----|               getDest(): [MemberRefExpr] .x
+#-----|                 getBase(): [DeclRefExpr] self
+#-----|               getSource(): [DeclRefExpr] value
 #  410|         getAccessorDecl(2): [AccessorDecl] (unnamed function decl)
 #  410|             InterfaceType = (MyLocalClass) -> () -> ()
 #  410|           getSelfParam(): [ParamDecl] self
 #  410|               Type = MyLocalClass
 #  410|           getBody(): [BraceStmt] { ... }
 #  410|             getElement(0): [YieldStmt] yield ...
+#-----|               getResult(0): [InOutExpr] &...
+#-----|                 getSubExpr(): [MemberRefExpr] .x
+#-----|                   getBase(): [DeclRefExpr] self
 #  411|       getMember(2): [ConstructorDecl] init()
 #  411|           InterfaceType = (MyLocalClass.Type) -> () -> MyLocalClass
 #  411|         getSelfParam(): [ParamDecl] self
@@ -2523,6 +2561,9 @@ cfg.swift:
 #  417|           getSelfParam(): [ParamDecl] self
 #  417|               Type = MyLocalStruct
 #  417|           getBody(): [BraceStmt] { ... }
+#-----|             getElement(0): [ReturnStmt] return ...
+#-----|               getResult(): [MemberRefExpr] .x
+#-----|                 getBase(): [DeclRefExpr] self
 #  417|         getAccessorDecl(1): [AccessorDecl] set
 #  417|             InterfaceType = (inout MyLocalStruct) -> (Int) -> ()
 #  417|           getSelfParam(): [ParamDecl] self
@@ -2530,12 +2571,19 @@ cfg.swift:
 #  417|           getParam(0): [ParamDecl] value
 #  417|               Type = Int
 #  417|           getBody(): [BraceStmt] { ... }
+#-----|             getElement(0): [AssignExpr]  ... = ...
+#-----|               getDest(): [MemberRefExpr] .x
+#-----|                 getBase(): [DeclRefExpr] self
+#-----|               getSource(): [DeclRefExpr] value
 #  417|         getAccessorDecl(2): [AccessorDecl] (unnamed function decl)
 #  417|             InterfaceType = (inout MyLocalStruct) -> () -> ()
 #  417|           getSelfParam(): [ParamDecl] self
 #  417|               Type = MyLocalStruct
 #  417|           getBody(): [BraceStmt] { ... }
 #  417|             getElement(0): [YieldStmt] yield ...
+#-----|               getResult(0): [InOutExpr] &...
+#-----|                 getSubExpr(): [MemberRefExpr] .x
+#-----|                   getBase(): [DeclRefExpr] self
 #  418|       getMember(2): [ConstructorDecl] init()
 #  418|           InterfaceType = (MyLocalStruct.Type) -> () -> MyLocalStruct
 #  418|         getSelfParam(): [ParamDecl] self
@@ -2551,6 +2599,107 @@ cfg.swift:
 #  424|       getMember(1): [EnumElementDecl] A
 #  425|       getMember(2): [EnumCaseDecl] case ...
 #  425|       getMember(3): [EnumElementDecl] B
+#-----|       getMember(4): [ConcreteFuncDecl] __derived_enum_equals(_:_:)
+#-----|           InterfaceType = (MyLocalEnum.Type) -> (MyLocalEnum, MyLocalEnum) -> Bool
+#-----|         getSelfParam(): [ParamDecl] self
+#-----|             Type = MyLocalEnum.Type
+#-----|         getParam(0): [ParamDecl] a
+#-----|             Type = MyLocalEnum
+#-----|         getParam(1): [ParamDecl] b
+#-----|             Type = MyLocalEnum
+#-----|         getBody(): [BraceStmt] { ... }
+#-----|           getElement(0): [PatternBindingDecl] var ... = ...
+#-----|             getPattern(0): [TypedPattern] ... as ...
+#-----|               getSubPattern(): [NamedPattern] index_a
+#-----|           getElement(1): [SwitchStmt] switch a { ... }
+#-----|             getExpr(): [DeclRefExpr] a
+#-----|             getCase(0): [CaseStmt] case ...
+#-----|               getBody(): [BraceStmt] { ... }
+#-----|                 getElement(0): [AssignExpr]  ... = ...
+#-----|                   getDest(): [DeclRefExpr] index_a
+#-----|                   getSource(): [IntegerLiteralExpr] 0
+#-----|               getLabel(0): [CaseLabelItem] .A
+#-----|                 getPattern(): [EnumElementPattern] .A
+#-----|             getCase(1): [CaseStmt] case ...
+#-----|               getBody(): [BraceStmt] { ... }
+#-----|                 getElement(0): [AssignExpr]  ... = ...
+#-----|                   getDest(): [DeclRefExpr] index_a
+#-----|                   getSource(): [IntegerLiteralExpr] 1
+#-----|               getLabel(0): [CaseLabelItem] .B
+#-----|                 getPattern(): [EnumElementPattern] .B
+#-----|           getElement(2): [PatternBindingDecl] var ... = ...
+#-----|             getPattern(0): [TypedPattern] ... as ...
+#-----|               getSubPattern(): [NamedPattern] index_b
+#-----|           getElement(3): [SwitchStmt] switch b { ... }
+#-----|             getExpr(): [DeclRefExpr] b
+#-----|             getCase(0): [CaseStmt] case ...
+#-----|               getBody(): [BraceStmt] { ... }
+#-----|                 getElement(0): [AssignExpr]  ... = ...
+#-----|                   getDest(): [DeclRefExpr] index_b
+#-----|                   getSource(): [IntegerLiteralExpr] 0
+#-----|               getLabel(0): [CaseLabelItem] .A
+#-----|                 getPattern(): [EnumElementPattern] .A
+#-----|             getCase(1): [CaseStmt] case ...
+#-----|               getBody(): [BraceStmt] { ... }
+#-----|                 getElement(0): [AssignExpr]  ... = ...
+#-----|                   getDest(): [DeclRefExpr] index_b
+#-----|                   getSource(): [IntegerLiteralExpr] 1
+#-----|               getLabel(0): [CaseLabelItem] .B
+#-----|                 getPattern(): [EnumElementPattern] .B
+#-----|           getElement(4): [ReturnStmt] return ...
+#-----|             getResult(): [BinaryExpr] ... .==(_:_:) ...
+#-----|               getFunction(): [MethodRefExpr] .==(_:_:)
+#-----|                 getBase(): [TypeExpr] Int.Type
+#-----|               getArgument(0): [Argument] : index_a
+#-----|                 getExpr(): [DeclRefExpr] index_a
+#-----|               getArgument(1): [Argument] : index_b
+#-----|                 getExpr(): [DeclRefExpr] index_b
+#-----|       getMember(5): [PatternBindingDecl] var ... = ...
+#-----|         getPattern(0): [TypedPattern] ... as ...
+#-----|           getSubPattern(): [NamedPattern] hashValue
+#-----|       getMember(6): [ConcreteFuncDecl] hash(into:)
+#-----|           InterfaceType = (MyLocalEnum) -> (inout Hasher) -> ()
+#-----|         getSelfParam(): [ParamDecl] self
+#-----|             Type = MyLocalEnum
+#-----|         getParam(0): [ParamDecl] hasher
+#-----|             Type = Hasher
+#-----|         getBody(): [BraceStmt] { ... }
+#-----|           getElement(0): [PatternBindingDecl] var ... = ...
+#-----|             getPattern(0): [TypedPattern] ... as ...
+#-----|               getSubPattern(): [NamedPattern] discriminator
+#-----|           getElement(1): [SwitchStmt] switch self { ... }
+#-----|             getExpr(): [DeclRefExpr] self
+#-----|             getCase(0): [CaseStmt] case ...
+#-----|               getBody(): [BraceStmt] { ... }
+#-----|                 getElement(0): [AssignExpr]  ... = ...
+#-----|                   getDest(): [DeclRefExpr] discriminator
+#-----|                   getSource(): [IntegerLiteralExpr] 0
+#-----|               getLabel(0): [CaseLabelItem] .A
+#-----|                 getPattern(): [EnumElementPattern] .A
+#-----|             getCase(1): [CaseStmt] case ...
+#-----|               getBody(): [BraceStmt] { ... }
+#-----|                 getElement(0): [AssignExpr]  ... = ...
+#-----|                   getDest(): [DeclRefExpr] discriminator
+#-----|                   getSource(): [IntegerLiteralExpr] 1
+#-----|               getLabel(0): [CaseLabelItem] .B
+#-----|                 getPattern(): [EnumElementPattern] .B
+#-----|           getElement(2): [CallExpr] call to ...
+#-----|             getFunction(): [UnresolvedDotExpr] ... .combine(_:)
+#-----|               getBase(): [DeclRefExpr] hasher
+#-----|             getArgument(0): [Argument] : discriminator
+#-----|               getExpr(): [DeclRefExpr] discriminator
+#-----|       getMember(7): [ConcreteVarDecl] hashValue
+#-----|           Type = Int
+#-----|         getAccessorDecl(0): [AccessorDecl] get
+#-----|             InterfaceType = (MyLocalEnum) -> () -> Int
+#-----|           getSelfParam(): [ParamDecl] self
+#-----|               Type = MyLocalEnum
+#-----|           getBody(): [BraceStmt] { ... }
+#-----|             getElement(0): [ReturnStmt] return ...
+#-----|               getResult(): [CallExpr] call to _hashValue(for:)
+#-----|                 getFunction(): [DeclRefExpr] _hashValue(for:)
+#-----|                 getArgument(0): [Argument] for: self
+#-----|                   getExpr(): [DeclRefExpr] self
 #  428|     getElement(3): [PatternBindingDecl] var ... = ...
 #  428|       getPattern(0): [TypedPattern] ... as ...
 #  428|         getSubPattern(): [NamedPattern] myLocalVar
@@ -2591,6 +2740,9 @@ cfg.swift:
 #  446|       getSelfParam(): [ParamDecl] self
 #  446|           Type = B
 #  446|       getBody(): [BraceStmt] { ... }
+#-----|         getElement(0): [ReturnStmt] return ...
+#-----|           getResult(): [MemberRefExpr] .x
+#-----|             getBase(): [DeclRefExpr] self
 #  446|     getAccessorDecl(1): [AccessorDecl] set
 #  446|         InterfaceType = (inout B) -> (Int) -> ()
 #  446|       getSelfParam(): [ParamDecl] self
@@ -2598,12 +2750,19 @@ cfg.swift:
 #  446|       getParam(0): [ParamDecl] value
 #  446|           Type = Int
 #  446|       getBody(): [BraceStmt] { ... }
+#-----|         getElement(0): [AssignExpr]  ... = ...
+#-----|           getDest(): [MemberRefExpr] .x
+#-----|             getBase(): [DeclRefExpr] self
+#-----|           getSource(): [DeclRefExpr] value
 #  446|     getAccessorDecl(2): [AccessorDecl] (unnamed function decl)
 #  446|         InterfaceType = (inout B) -> () -> ()
 #  446|       getSelfParam(): [ParamDecl] self
 #  446|           Type = B
 #  446|       getBody(): [BraceStmt] { ... }
 #  446|         getElement(0): [YieldStmt] yield ...
+#-----|           getResult(0): [InOutExpr] &...
+#-----|             getSubExpr(): [MemberRefExpr] .x
+#-----|               getBase(): [DeclRefExpr] self
 #  445|   getMember(2): [ConstructorDecl] init(x:)
 #  445|       InterfaceType = (B.Type) -> (Int) -> B
 #  445|     getSelfParam(): [ParamDecl] self
@@ -2622,6 +2781,9 @@ cfg.swift:
 #  450|       getSelfParam(): [ParamDecl] self
 #  450|           Type = A
 #  450|       getBody(): [BraceStmt] { ... }
+#-----|         getElement(0): [ReturnStmt] return ...
+#-----|           getResult(): [MemberRefExpr] .b
+#-----|             getBase(): [DeclRefExpr] self
 #  450|     getAccessorDecl(1): [AccessorDecl] set
 #  450|         InterfaceType = (inout A) -> (B) -> ()
 #  450|       getSelfParam(): [ParamDecl] self
@@ -2629,12 +2791,19 @@ cfg.swift:
 #  450|       getParam(0): [ParamDecl] value
 #  450|           Type = B
 #  450|       getBody(): [BraceStmt] { ... }
+#-----|         getElement(0): [AssignExpr]  ... = ...
+#-----|           getDest(): [MemberRefExpr] .b
+#-----|             getBase(): [DeclRefExpr] self
+#-----|           getSource(): [DeclRefExpr] value
 #  450|     getAccessorDecl(2): [AccessorDecl] (unnamed function decl)
 #  450|         InterfaceType = (inout A) -> () -> ()
 #  450|       getSelfParam(): [ParamDecl] self
 #  450|           Type = A
 #  450|       getBody(): [BraceStmt] { ... }
 #  450|         getElement(0): [YieldStmt] yield ...
+#-----|           getResult(0): [InOutExpr] &...
+#-----|             getSubExpr(): [MemberRefExpr] .b
+#-----|               getBase(): [DeclRefExpr] self
 #  451|   getMember(2): [PatternBindingDecl] var ... = ...
 #  451|     getPattern(0): [TypedPattern] ... as ...
 #  451|       getSubPattern(): [NamedPattern] bs
@@ -2646,6 +2815,9 @@ cfg.swift:
 #  451|       getSelfParam(): [ParamDecl] self
 #  451|           Type = A
 #  451|       getBody(): [BraceStmt] { ... }
+#-----|         getElement(0): [ReturnStmt] return ...
+#-----|           getResult(): [MemberRefExpr] .bs
+#-----|             getBase(): [DeclRefExpr] self
 #  451|     getAccessorDecl(1): [AccessorDecl] set
 #  451|         InterfaceType = (inout A) -> ([B]) -> ()
 #  451|       getSelfParam(): [ParamDecl] self
@@ -2653,13 +2825,21 @@ cfg.swift:
 #  451|       getParam(0): [ParamDecl] value
 #  451|           Type = [B]
 #  451|       getBody(): [BraceStmt] { ... }
+#-----|         getElement(0): [AssignExpr]  ... = ...
+#-----|           getDest(): [MemberRefExpr] .bs
+#-----|             getBase(): [DeclRefExpr] self
+#-----|           getSource(): [DeclRefExpr] value
 #  451|     getAccessorDecl(2): [AccessorDecl] (unnamed function decl)
 #  451|         InterfaceType = (inout A) -> () -> ()
 #  451|       getSelfParam(): [ParamDecl] self
 #  451|           Type = A
 #  451|       getBody(): [BraceStmt] { ... }
 #  451|         getElement(0): [YieldStmt] yield ...
+#-----|           getResult(0): [InOutExpr] &...
+#-----|             getSubExpr(): [MemberRefExpr] .bs
+#-----|               getBase(): [DeclRefExpr] self
 #  452|   getMember(4): [PatternBindingDecl] var ... = ...
+#-----|     getInit(0): [NilLiteralExpr] nil
 #  452|     getPattern(0): [TypedPattern] ... as ...
 #  452|       getSubPattern(): [NamedPattern] mayB
 #  452|       getTypeRepr(): [TypeRepr] B?
@@ -2670,6 +2850,9 @@ cfg.swift:
 #  452|       getSelfParam(): [ParamDecl] self
 #  452|           Type = A
 #  452|       getBody(): [BraceStmt] { ... }
+#-----|         getElement(0): [ReturnStmt] return ...
+#-----|           getResult(): [MemberRefExpr] .mayB
+#-----|             getBase(): [DeclRefExpr] self
 #  452|     getAccessorDecl(1): [AccessorDecl] set
 #  452|         InterfaceType = (inout A) -> (B?) -> ()
 #  452|       getSelfParam(): [ParamDecl] self
@@ -2677,12 +2860,19 @@ cfg.swift:
 #  452|       getParam(0): [ParamDecl] value
 #  452|           Type = B?
 #  452|       getBody(): [BraceStmt] { ... }
+#-----|         getElement(0): [AssignExpr]  ... = ...
+#-----|           getDest(): [MemberRefExpr] .mayB
+#-----|             getBase(): [DeclRefExpr] self
+#-----|           getSource(): [DeclRefExpr] value
 #  452|     getAccessorDecl(2): [AccessorDecl] (unnamed function decl)
 #  452|         InterfaceType = (inout A) -> () -> ()
 #  452|       getSelfParam(): [ParamDecl] self
 #  452|           Type = A
 #  452|       getBody(): [BraceStmt] { ... }
 #  452|         getElement(0): [YieldStmt] yield ...
+#-----|           getResult(0): [InOutExpr] &...
+#-----|             getSubExpr(): [MemberRefExpr] .mayB
+#-----|               getBase(): [DeclRefExpr] self
 #  449|   getMember(6): [ConstructorDecl] init(b:bs:mayB:)
 #  449|       InterfaceType = (A.Type) -> (B, [B], B?) -> A
 #  449|     getSelfParam(): [ParamDecl] self
@@ -2779,6 +2969,9 @@ declarations.swift:
 #    2|       getSelfParam(): [ParamDecl] self
 #    2|           Type = Foo
 #    2|       getBody(): [BraceStmt] { ... }
+#-----|         getElement(0): [ReturnStmt] return ...
+#-----|           getResult(): [MemberRefExpr] .x
+#-----|             getBase(): [DeclRefExpr] self
 #    2|     getAccessorDecl(1): [AccessorDecl] set
 #    2|         InterfaceType = (inout Foo) -> (Int) -> ()
 #    2|       getSelfParam(): [ParamDecl] self
@@ -2786,12 +2979,19 @@ declarations.swift:
 #    2|       getParam(0): [ParamDecl] value
 #    2|           Type = Int
 #    2|       getBody(): [BraceStmt] { ... }
+#-----|         getElement(0): [AssignExpr]  ... = ...
+#-----|           getDest(): [MemberRefExpr] .x
+#-----|             getBase(): [DeclRefExpr] self
+#-----|           getSource(): [DeclRefExpr] value
 #    2|     getAccessorDecl(2): [AccessorDecl] (unnamed function decl)
 #    2|         InterfaceType = (inout Foo) -> () -> ()
 #    2|       getSelfParam(): [ParamDecl] self
 #    2|           Type = Foo
 #    2|       getBody(): [BraceStmt] { ... }
 #    2|         getElement(0): [YieldStmt] yield ...
+#-----|           getResult(0): [InOutExpr] &...
+#-----|             getSubExpr(): [MemberRefExpr] .x
+#-----|               getBase(): [DeclRefExpr] self
 #    3|   getMember(2): [PatternBindingDecl] var ... = ...
 #    3|     getPattern(0): [TypedPattern] ... as ...
 #    3|       getSubPattern(): [NamedPattern] next
@@ -2837,6 +3037,9 @@ declarations.swift:
 #    3|           Type = Foo
 #    3|       getBody(): [BraceStmt] { ... }
 #    3|         getElement(0): [YieldStmt] yield ...
+#-----|           getResult(0): [InOutExpr] &...
+#-----|             getSubExpr(): [MemberRefExpr] .next
+#-----|               getBase(): [DeclRefExpr] self
 #    1|   getMember(4): [ConstructorDecl] init()
 #    1|       InterfaceType = (Foo.Type) -> () -> Foo
 #    1|     getSelfParam(): [ParamDecl] self
@@ -2862,6 +3065,9 @@ declarations.swift:
 #    9|       getSelfParam(): [ParamDecl] self
 #    9|           Type = Bar
 #    9|       getBody(): [BraceStmt] { ... }
+#-----|         getElement(0): [ReturnStmt] return ...
+#-----|           getResult(): [MemberRefExpr] .x
+#-----|             getBase(): [DeclRefExpr] self
 #    9|     getAccessorDecl(1): [AccessorDecl] set
 #    9|         InterfaceType = (Bar) -> (Double) -> ()
 #    9|       getSelfParam(): [ParamDecl] self
@@ -2869,12 +3075,19 @@ declarations.swift:
 #    9|       getParam(0): [ParamDecl] value
 #    9|           Type = Double
 #    9|       getBody(): [BraceStmt] { ... }
+#-----|         getElement(0): [AssignExpr]  ... = ...
+#-----|           getDest(): [MemberRefExpr] .x
+#-----|             getBase(): [DeclRefExpr] self
+#-----|           getSource(): [DeclRefExpr] value
 #    9|     getAccessorDecl(2): [AccessorDecl] (unnamed function decl)
 #    9|         InterfaceType = (Bar) -> () -> ()
 #    9|       getSelfParam(): [ParamDecl] self
 #    9|           Type = Bar
 #    9|       getBody(): [BraceStmt] { ... }
 #    9|         getElement(0): [YieldStmt] yield ...
+#-----|           getResult(0): [InOutExpr] &...
+#-----|             getSubExpr(): [MemberRefExpr] .x
+#-----|               getBase(): [DeclRefExpr] self
 #    9|   getMember(2): [DestructorDecl] deinit()
 #    9|       InterfaceType = (Bar) -> () -> ()
 #    9|     getSelfParam(): [ParamDecl] self
@@ -2894,6 +3107,170 @@ declarations.swift:
 #   13|   getMember(4): [EnumElementDecl] value3
 #   13|   getMember(5): [EnumElementDecl] value4
 #   13|   getMember(6): [EnumElementDecl] value5
+#-----|   getMember(7): [ConcreteFuncDecl] __derived_enum_equals(_:_:)
+#-----|       InterfaceType = (EnumValues.Type) -> (EnumValues, EnumValues) -> Bool
+#-----|     getSelfParam(): [ParamDecl] self
+#-----|         Type = EnumValues.Type
+#-----|     getParam(0): [ParamDecl] a
+#-----|         Type = EnumValues
+#-----|     getParam(1): [ParamDecl] b
+#-----|         Type = EnumValues
+#-----|     getBody(): [BraceStmt] { ... }
+#-----|       getElement(0): [PatternBindingDecl] var ... = ...
+#-----|         getPattern(0): [TypedPattern] ... as ...
+#-----|           getSubPattern(): [NamedPattern] index_a
+#-----|       getElement(1): [SwitchStmt] switch a { ... }
+#-----|         getExpr(): [DeclRefExpr] a
+#-----|         getCase(0): [CaseStmt] case ...
+#-----|           getBody(): [BraceStmt] { ... }
+#-----|             getElement(0): [AssignExpr]  ... = ...
+#-----|               getDest(): [DeclRefExpr] index_a
+#-----|               getSource(): [IntegerLiteralExpr] 0
+#-----|           getLabel(0): [CaseLabelItem] .value1
+#-----|             getPattern(): [EnumElementPattern] .value1
+#-----|         getCase(1): [CaseStmt] case ...
+#-----|           getBody(): [BraceStmt] { ... }
+#-----|             getElement(0): [AssignExpr]  ... = ...
+#-----|               getDest(): [DeclRefExpr] index_a
+#-----|               getSource(): [IntegerLiteralExpr] 1
+#-----|           getLabel(0): [CaseLabelItem] .value2
+#-----|             getPattern(): [EnumElementPattern] .value2
+#-----|         getCase(2): [CaseStmt] case ...
+#-----|           getBody(): [BraceStmt] { ... }
+#-----|             getElement(0): [AssignExpr]  ... = ...
+#-----|               getDest(): [DeclRefExpr] index_a
+#-----|               getSource(): [IntegerLiteralExpr] 2
+#-----|           getLabel(0): [CaseLabelItem] .value3
+#-----|             getPattern(): [EnumElementPattern] .value3
+#-----|         getCase(3): [CaseStmt] case ...
+#-----|           getBody(): [BraceStmt] { ... }
+#-----|             getElement(0): [AssignExpr]  ... = ...
+#-----|               getDest(): [DeclRefExpr] index_a
+#-----|               getSource(): [IntegerLiteralExpr] 3
+#-----|           getLabel(0): [CaseLabelItem] .value4
+#-----|             getPattern(): [EnumElementPattern] .value4
+#-----|         getCase(4): [CaseStmt] case ...
+#-----|           getBody(): [BraceStmt] { ... }
+#-----|             getElement(0): [AssignExpr]  ... = ...
+#-----|               getDest(): [DeclRefExpr] index_a
+#-----|               getSource(): [IntegerLiteralExpr] 4
+#-----|           getLabel(0): [CaseLabelItem] .value5
+#-----|             getPattern(): [EnumElementPattern] .value5
+#-----|       getElement(2): [PatternBindingDecl] var ... = ...
+#-----|         getPattern(0): [TypedPattern] ... as ...
+#-----|           getSubPattern(): [NamedPattern] index_b
+#-----|       getElement(3): [SwitchStmt] switch b { ... }
+#-----|         getExpr(): [DeclRefExpr] b
+#-----|         getCase(0): [CaseStmt] case ...
+#-----|           getBody(): [BraceStmt] { ... }
+#-----|             getElement(0): [AssignExpr]  ... = ...
+#-----|               getDest(): [DeclRefExpr] index_b
+#-----|               getSource(): [IntegerLiteralExpr] 0
+#-----|           getLabel(0): [CaseLabelItem] .value1
+#-----|             getPattern(): [EnumElementPattern] .value1
+#-----|         getCase(1): [CaseStmt] case ...
+#-----|           getBody(): [BraceStmt] { ... }
+#-----|             getElement(0): [AssignExpr]  ... = ...
+#-----|               getDest(): [DeclRefExpr] index_b
+#-----|               getSource(): [IntegerLiteralExpr] 1
+#-----|           getLabel(0): [CaseLabelItem] .value2
+#-----|             getPattern(): [EnumElementPattern] .value2
+#-----|         getCase(2): [CaseStmt] case ...
+#-----|           getBody(): [BraceStmt] { ... }
+#-----|             getElement(0): [AssignExpr]  ... = ...
+#-----|               getDest(): [DeclRefExpr] index_b
+#-----|               getSource(): [IntegerLiteralExpr] 2
+#-----|           getLabel(0): [CaseLabelItem] .value3
+#-----|             getPattern(): [EnumElementPattern] .value3
+#-----|         getCase(3): [CaseStmt] case ...
+#-----|           getBody(): [BraceStmt] { ... }
+#-----|             getElement(0): [AssignExpr]  ... = ...
+#-----|               getDest(): [DeclRefExpr] index_b
+#-----|               getSource(): [IntegerLiteralExpr] 3
+#-----|           getLabel(0): [CaseLabelItem] .value4
+#-----|             getPattern(): [EnumElementPattern] .value4
+#-----|         getCase(4): [CaseStmt] case ...
+#-----|           getBody(): [BraceStmt] { ... }
+#-----|             getElement(0): [AssignExpr]  ... = ...
+#-----|               getDest(): [DeclRefExpr] index_b
+#-----|               getSource(): [IntegerLiteralExpr] 4
+#-----|           getLabel(0): [CaseLabelItem] .value5
+#-----|             getPattern(): [EnumElementPattern] .value5
+#-----|       getElement(4): [ReturnStmt] return ...
+#-----|         getResult(): [BinaryExpr] ... .==(_:_:) ...
+#-----|           getFunction(): [MethodRefExpr] .==(_:_:)
+#-----|             getBase(): [TypeExpr] Int.Type
+#-----|           getArgument(0): [Argument] : index_a
+#-----|             getExpr(): [DeclRefExpr] index_a
+#-----|           getArgument(1): [Argument] : index_b
+#-----|             getExpr(): [DeclRefExpr] index_b
+#-----|   getMember(8): [PatternBindingDecl] var ... = ...
+#-----|     getPattern(0): [TypedPattern] ... as ...
+#-----|       getSubPattern(): [NamedPattern] hashValue
+#-----|   getMember(9): [ConcreteFuncDecl] hash(into:)
+#-----|       InterfaceType = (EnumValues) -> (inout Hasher) -> ()
+#-----|     getSelfParam(): [ParamDecl] self
+#-----|         Type = EnumValues
+#-----|     getParam(0): [ParamDecl] hasher
+#-----|         Type = Hasher
+#-----|     getBody(): [BraceStmt] { ... }
+#-----|       getElement(0): [PatternBindingDecl] var ... = ...
+#-----|         getPattern(0): [TypedPattern] ... as ...
+#-----|           getSubPattern(): [NamedPattern] discriminator
+#-----|       getElement(1): [SwitchStmt] switch self { ... }
+#-----|         getExpr(): [DeclRefExpr] self
+#-----|         getCase(0): [CaseStmt] case ...
+#-----|           getBody(): [BraceStmt] { ... }
+#-----|             getElement(0): [AssignExpr]  ... = ...
+#-----|               getDest(): [DeclRefExpr] discriminator
+#-----|               getSource(): [IntegerLiteralExpr] 0
+#-----|           getLabel(0): [CaseLabelItem] .value1
+#-----|             getPattern(): [EnumElementPattern] .value1
+#-----|         getCase(1): [CaseStmt] case ...
+#-----|           getBody(): [BraceStmt] { ... }
+#-----|             getElement(0): [AssignExpr]  ... = ...
+#-----|               getDest(): [DeclRefExpr] discriminator
+#-----|               getSource(): [IntegerLiteralExpr] 1
+#-----|           getLabel(0): [CaseLabelItem] .value2
+#-----|             getPattern(): [EnumElementPattern] .value2
+#-----|         getCase(2): [CaseStmt] case ...
+#-----|           getBody(): [BraceStmt] { ... }
+#-----|             getElement(0): [AssignExpr]  ... = ...
+#-----|               getDest(): [DeclRefExpr] discriminator
+#-----|               getSource(): [IntegerLiteralExpr] 2
+#-----|           getLabel(0): [CaseLabelItem] .value3
+#-----|             getPattern(): [EnumElementPattern] .value3
+#-----|         getCase(3): [CaseStmt] case ...
+#-----|           getBody(): [BraceStmt] { ... }
+#-----|             getElement(0): [AssignExpr]  ... = ...
+#-----|               getDest(): [DeclRefExpr] discriminator
+#-----|               getSource(): [IntegerLiteralExpr] 3
+#-----|           getLabel(0): [CaseLabelItem] .value4
+#-----|             getPattern(): [EnumElementPattern] .value4
+#-----|         getCase(4): [CaseStmt] case ...
+#-----|           getBody(): [BraceStmt] { ... }
+#-----|             getElement(0): [AssignExpr]  ... = ...
+#-----|               getDest(): [DeclRefExpr] discriminator
+#-----|               getSource(): [IntegerLiteralExpr] 4
+#-----|           getLabel(0): [CaseLabelItem] .value5
+#-----|             getPattern(): [EnumElementPattern] .value5
+#-----|       getElement(2): [CallExpr] call to ...
+#-----|         getFunction(): [UnresolvedDotExpr] ... .combine(_:)
+#-----|           getBase(): [DeclRefExpr] hasher
+#-----|         getArgument(0): [Argument] : discriminator
+#-----|           getExpr(): [DeclRefExpr] discriminator
+#-----|   getMember(10): [ConcreteVarDecl] hashValue
+#-----|       Type = Int
+#-----|     getAccessorDecl(0): [AccessorDecl] get
+#-----|         InterfaceType = (EnumValues) -> () -> Int
+#-----|       getSelfParam(): [ParamDecl] self
+#-----|           Type = EnumValues
+#-----|       getBody(): [BraceStmt] { ... }
+#-----|         getElement(0): [ReturnStmt] return ...
+#-----|           getResult(): [CallExpr] call to _hashValue(for:)
+#-----|             getFunction(): [DeclRefExpr] _hashValue(for:)
+#-----|             getArgument(0): [Argument] for: self
+#-----|               getExpr(): [DeclRefExpr] self
 #   16| [EnumDecl] EnumWithParams
 #   17|   getMember(0): [EnumCaseDecl] case ...
 #   17|   getMember(1): [EnumElementDecl] nodata1
@@ -2912,6 +3289,7 @@ declarations.swift:
 #   19|     getParam(2): [ParamDecl] _
 #   19|         Type = Double
 #   22| [ProtocolDecl] MyProtocol
+#-----|   getGenericTypeParam(0): [GenericTypeParamDecl] Self
 #   23|   getMember(0): [PatternBindingDecl] var ... = ...
 #   23|     getPattern(0): [TypedPattern] ... as ...
 #   23|       getSubPattern(): [NamedPattern] mustBeSettable
@@ -3001,6 +3379,9 @@ declarations.swift:
 #   41|       getSelfParam(): [ParamDecl] self
 #   41|           Type = Baz
 #   41|       getBody(): [BraceStmt] { ... }
+#-----|         getElement(0): [ReturnStmt] return ...
+#-----|           getResult(): [MemberRefExpr] .field
+#-----|             getBase(): [DeclRefExpr] self
 #   41|     getAccessorDecl(1): [AccessorDecl] set
 #   41|         InterfaceType = (Baz) -> (Int) -> ()
 #   41|       getSelfParam(): [ParamDecl] self
@@ -3008,12 +3389,19 @@ declarations.swift:
 #   41|       getParam(0): [ParamDecl] value
 #   41|           Type = Int
 #   41|       getBody(): [BraceStmt] { ... }
+#-----|         getElement(0): [AssignExpr]  ... = ...
+#-----|           getDest(): [MemberRefExpr] .field
+#-----|             getBase(): [DeclRefExpr] self
+#-----|           getSource(): [DeclRefExpr] value
 #   41|     getAccessorDecl(2): [AccessorDecl] (unnamed function decl)
 #   41|         InterfaceType = (Baz) -> () -> ()
 #   41|       getSelfParam(): [ParamDecl] self
 #   41|           Type = Baz
 #   41|       getBody(): [BraceStmt] { ... }
 #   41|         getElement(0): [YieldStmt] yield ...
+#-----|           getResult(0): [InOutExpr] &...
+#-----|             getSubExpr(): [MemberRefExpr] .field
+#-----|               getBase(): [DeclRefExpr] self
 #   42|   getMember(2): [ConstructorDecl] init()
 #   42|       InterfaceType = (Baz.Type) -> () -> Baz
 #   42|     getSelfParam(): [ParamDecl] self
@@ -3078,6 +3466,9 @@ declarations.swift:
 #   77|       getAccessorDecl(0): [AccessorDecl] get
 #   77|           InterfaceType = () -> Int
 #   77|         getBody(): [BraceStmt] { ... }
+#-----|           getElement(0): [ReturnStmt] return ...
+#-----|             getResult(): [MemberRefExpr] .wrappedValue
+#-----|               getBase(): [DeclRefExpr] _x
 #   78|     getElement(2): [ReturnStmt] return ...
 #   78|       getResult(): [DeclRefExpr] x
 #   77| [CallExpr] call to init()
@@ -3117,6 +3508,9 @@ declarations.swift:
 #   82|           Type = HasPropertyAndObserver
 #   82|       getBody(): [BraceStmt] { ... }
 #   82|         getElement(0): [YieldStmt] yield ...
+#-----|           getResult(0): [InOutExpr] &...
+#-----|             getSubExpr(): [MemberRefExpr] .settableField
+#-----|               getBase(): [DeclRefExpr] self
 #   91|   getMember(2): [PatternBindingDecl] var ... = ...
 #   91|     getPattern(0): [TypedPattern] ... as ...
 #   91|       getSubPattern(): [NamedPattern] readOnlyField1
@@ -3154,6 +3548,9 @@ declarations.swift:
 #  102|       getSelfParam(): [ParamDecl] self
 #  102|           Type = HasPropertyAndObserver
 #  102|       getBody(): [BraceStmt] { ... }
+#-----|         getElement(0): [ReturnStmt] return ...
+#-----|           getResult(): [MemberRefExpr] .normalField
+#-----|             getBase(): [DeclRefExpr] self
 #  102|     getAccessorDecl(1): [AccessorDecl] set
 #  102|         InterfaceType = (inout HasPropertyAndObserver) -> (Int) -> ()
 #  102|       getSelfParam(): [ParamDecl] self
@@ -3161,12 +3558,19 @@ declarations.swift:
 #  102|       getParam(0): [ParamDecl] value
 #  102|           Type = Int
 #  102|       getBody(): [BraceStmt] { ... }
+#-----|         getElement(0): [AssignExpr]  ... = ...
+#-----|           getDest(): [MemberRefExpr] .normalField
+#-----|             getBase(): [DeclRefExpr] self
+#-----|           getSource(): [DeclRefExpr] value
 #  102|     getAccessorDecl(2): [AccessorDecl] (unnamed function decl)
 #  102|         InterfaceType = (inout HasPropertyAndObserver) -> () -> ()
 #  102|       getSelfParam(): [ParamDecl] self
 #  102|           Type = HasPropertyAndObserver
 #  102|       getBody(): [BraceStmt] { ... }
 #  102|         getElement(0): [YieldStmt] yield ...
+#-----|           getResult(0): [InOutExpr] &...
+#-----|             getSubExpr(): [MemberRefExpr] .normalField
+#-----|               getBase(): [DeclRefExpr] self
 #  104|   getMember(8): [SubscriptDecl] subscript ...
 #  105|     getAccessorDecl(0): [AccessorDecl] get
 #  105|         InterfaceType = (HasPropertyAndObserver) -> (Int) -> Int
@@ -3190,8 +3594,15 @@ declarations.swift:
 #  104|         InterfaceType = (inout HasPropertyAndObserver) -> (Int) -> ()
 #  104|       getSelfParam(): [ParamDecl] self
 #  104|           Type = HasPropertyAndObserver
+#-----|       getParam(0): [ParamDecl] x
+#-----|           Type = Int
 #  104|       getBody(): [BraceStmt] { ... }
 #  104|         getElement(0): [YieldStmt] yield ...
+#-----|           getResult(0): [InOutExpr] &...
+#-----|             getSubExpr(): [SubscriptExpr] ...[...]
+#-----|               getBase(): [DeclRefExpr] self
+#-----|               getArgument(0): [Argument] : x
+#-----|                 getExpr(): [DeclRefExpr] x
 #  104|     getParam(0): [ParamDecl] x
 #  104|         Type = Int
 #  111|   getMember(9): [SubscriptDecl] subscript ...
@@ -3228,6 +3639,9 @@ declarations.swift:
 #  115|       getSelfParam(): [ParamDecl] self
 #  115|           Type = HasPropertyAndObserver
 #  115|       getBody(): [BraceStmt] { ... }
+#-----|         getElement(0): [ReturnStmt] return ...
+#-----|           getResult(): [MemberRefExpr] .hasWillSet1
+#-----|             getBase(): [DeclRefExpr] self
 #  115|     getAccessorDecl(2): [AccessorDecl] set
 #  115|         InterfaceType = (inout HasPropertyAndObserver) -> (Int) -> ()
 #  115|       getSelfParam(): [ParamDecl] self
@@ -3235,12 +3649,25 @@ declarations.swift:
 #  115|       getParam(0): [ParamDecl] value
 #  115|           Type = Int
 #  115|       getBody(): [BraceStmt] { ... }
+#-----|         getElement(0): [CallExpr] call to willSet
+#-----|           getFunction(): [MethodRefExpr] .willSet
+#-----|             getBase(): [InOutExpr] &...
+#-----|               getSubExpr(): [DeclRefExpr] self
+#-----|           getArgument(0): [Argument] : value
+#-----|             getExpr(): [DeclRefExpr] value
+#-----|         getElement(1): [AssignExpr]  ... = ...
+#-----|           getDest(): [MemberRefExpr] .hasWillSet1
+#-----|             getBase(): [DeclRefExpr] self
+#-----|           getSource(): [DeclRefExpr] value
 #  115|     getAccessorDecl(3): [AccessorDecl] (unnamed function decl)
 #  115|         InterfaceType = (inout HasPropertyAndObserver) -> () -> ()
 #  115|       getSelfParam(): [ParamDecl] self
 #  115|           Type = HasPropertyAndObserver
 #  115|       getBody(): [BraceStmt] { ... }
 #  115|         getElement(0): [YieldStmt] yield ...
+#-----|           getResult(0): [InOutExpr] &...
+#-----|             getSubExpr(): [MemberRefExpr] .hasWillSet1
+#-----|               getBase(): [DeclRefExpr] self
 #  119|   getMember(12): [PatternBindingDecl] var ... = ...
 #  119|     getPattern(0): [TypedPattern] ... as ...
 #  119|       getSubPattern(): [NamedPattern] hasWillSet2
@@ -3259,6 +3686,9 @@ declarations.swift:
 #  119|       getSelfParam(): [ParamDecl] self
 #  119|           Type = HasPropertyAndObserver
 #  119|       getBody(): [BraceStmt] { ... }
+#-----|         getElement(0): [ReturnStmt] return ...
+#-----|           getResult(): [MemberRefExpr] .hasWillSet2
+#-----|             getBase(): [DeclRefExpr] self
 #  119|     getAccessorDecl(2): [AccessorDecl] set
 #  119|         InterfaceType = (inout HasPropertyAndObserver) -> (Int) -> ()
 #  119|       getSelfParam(): [ParamDecl] self
@@ -3266,12 +3696,25 @@ declarations.swift:
 #  119|       getParam(0): [ParamDecl] value
 #  119|           Type = Int
 #  119|       getBody(): [BraceStmt] { ... }
+#-----|         getElement(0): [CallExpr] call to willSet
+#-----|           getFunction(): [MethodRefExpr] .willSet
+#-----|             getBase(): [InOutExpr] &...
+#-----|               getSubExpr(): [DeclRefExpr] self
+#-----|           getArgument(0): [Argument] : value
+#-----|             getExpr(): [DeclRefExpr] value
+#-----|         getElement(1): [AssignExpr]  ... = ...
+#-----|           getDest(): [MemberRefExpr] .hasWillSet2
+#-----|             getBase(): [DeclRefExpr] self
+#-----|           getSource(): [DeclRefExpr] value
 #  119|     getAccessorDecl(3): [AccessorDecl] (unnamed function decl)
 #  119|         InterfaceType = (inout HasPropertyAndObserver) -> () -> ()
 #  119|       getSelfParam(): [ParamDecl] self
 #  119|           Type = HasPropertyAndObserver
 #  119|       getBody(): [BraceStmt] { ... }
 #  119|         getElement(0): [YieldStmt] yield ...
+#-----|           getResult(0): [InOutExpr] &...
+#-----|             getSubExpr(): [MemberRefExpr] .hasWillSet2
+#-----|               getBase(): [DeclRefExpr] self
 #  123|   getMember(14): [PatternBindingDecl] var ... = ...
 #  123|     getPattern(0): [TypedPattern] ... as ...
 #  123|       getSubPattern(): [NamedPattern] hasDidSet1
@@ -3290,6 +3733,9 @@ declarations.swift:
 #  123|       getSelfParam(): [ParamDecl] self
 #  123|           Type = HasPropertyAndObserver
 #  123|       getBody(): [BraceStmt] { ... }
+#-----|         getElement(0): [ReturnStmt] return ...
+#-----|           getResult(): [MemberRefExpr] .hasDidSet1
+#-----|             getBase(): [DeclRefExpr] self
 #  123|     getAccessorDecl(2): [AccessorDecl] set
 #  123|         InterfaceType = (inout HasPropertyAndObserver) -> (Int) -> ()
 #  123|       getSelfParam(): [ParamDecl] self
@@ -3297,12 +3743,32 @@ declarations.swift:
 #  123|       getParam(0): [ParamDecl] value
 #  123|           Type = Int
 #  123|       getBody(): [BraceStmt] { ... }
+#-----|         getElement(0): [PatternBindingDecl] var ... = ...
+#-----|           getInit(0): [MemberRefExpr] .hasDidSet1
+#-----|             getBase(): [DeclRefExpr] self
+#-----|           getInit(0).getFullyConverted(): [LoadExpr] (Int) ...
+#-----|           getPattern(0): [NamedPattern] tmp
+#-----|         getElement(1): [ConcreteVarDecl] tmp
+#-----|             Type = Int
+#-----|         getElement(2): [AssignExpr]  ... = ...
+#-----|           getDest(): [MemberRefExpr] .hasDidSet1
+#-----|             getBase(): [DeclRefExpr] self
+#-----|           getSource(): [DeclRefExpr] value
+#-----|         getElement(3): [CallExpr] call to didSet
+#-----|           getFunction(): [MethodRefExpr] .didSet
+#-----|             getBase(): [InOutExpr] &...
+#-----|               getSubExpr(): [DeclRefExpr] self
+#-----|           getArgument(0): [Argument] : tmp
+#-----|             getExpr(): [DeclRefExpr] tmp
 #  123|     getAccessorDecl(3): [AccessorDecl] (unnamed function decl)
 #  123|         InterfaceType = (inout HasPropertyAndObserver) -> () -> ()
 #  123|       getSelfParam(): [ParamDecl] self
 #  123|           Type = HasPropertyAndObserver
 #  123|       getBody(): [BraceStmt] { ... }
 #  123|         getElement(0): [YieldStmt] yield ...
+#-----|           getResult(0): [InOutExpr] &...
+#-----|             getSubExpr(): [MemberRefExpr] .hasDidSet1
+#-----|               getBase(): [DeclRefExpr] self
 #  127|   getMember(16): [PatternBindingDecl] var ... = ...
 #  127|     getPattern(0): [TypedPattern] ... as ...
 #  127|       getSubPattern(): [NamedPattern] hasDidSet2
@@ -3319,6 +3785,9 @@ declarations.swift:
 #  127|       getSelfParam(): [ParamDecl] self
 #  127|           Type = HasPropertyAndObserver
 #  127|       getBody(): [BraceStmt] { ... }
+#-----|         getElement(0): [ReturnStmt] return ...
+#-----|           getResult(): [MemberRefExpr] .hasDidSet2
+#-----|             getBase(): [DeclRefExpr] self
 #  127|     getAccessorDecl(2): [AccessorDecl] set
 #  127|         InterfaceType = (inout HasPropertyAndObserver) -> (Int) -> ()
 #  127|       getSelfParam(): [ParamDecl] self
@@ -3326,12 +3795,27 @@ declarations.swift:
 #  127|       getParam(0): [ParamDecl] value
 #  127|           Type = Int
 #  127|       getBody(): [BraceStmt] { ... }
+#-----|         getElement(0): [AssignExpr]  ... = ...
+#-----|           getDest(): [MemberRefExpr] .hasDidSet2
+#-----|             getBase(): [DeclRefExpr] self
+#-----|           getSource(): [DeclRefExpr] value
+#-----|         getElement(1): [CallExpr] call to didSet
+#-----|           getFunction(): [MethodRefExpr] .didSet
+#-----|             getBase(): [InOutExpr] &...
+#-----|               getSubExpr(): [DeclRefExpr] self
 #  127|     getAccessorDecl(3): [AccessorDecl] (unnamed function decl)
 #  127|         InterfaceType = (inout HasPropertyAndObserver) -> () -> ()
 #  127|       getSelfParam(): [ParamDecl] self
 #  127|           Type = HasPropertyAndObserver
 #  127|       getBody(): [BraceStmt] { ... }
 #  127|         getElement(0): [YieldStmt] yield ...
+#-----|           getResult(0): [InOutExpr] &...
+#-----|             getSubExpr(): [MemberRefExpr] .hasDidSet2
+#-----|               getBase(): [DeclRefExpr] self
+#-----|         getElement(1): [CallExpr] call to didSet
+#-----|           getFunction(): [MethodRefExpr] .didSet
+#-----|             getBase(): [InOutExpr] &...
+#-----|               getSubExpr(): [DeclRefExpr] self
 #  131|   getMember(18): [PatternBindingDecl] var ... = ...
 #  131|     getPattern(0): [TypedPattern] ... as ...
 #  131|       getSubPattern(): [NamedPattern] hasBoth
@@ -3355,6 +3839,9 @@ declarations.swift:
 #  131|       getSelfParam(): [ParamDecl] self
 #  131|           Type = HasPropertyAndObserver
 #  131|       getBody(): [BraceStmt] { ... }
+#-----|         getElement(0): [ReturnStmt] return ...
+#-----|           getResult(): [MemberRefExpr] .hasBoth
+#-----|             getBase(): [DeclRefExpr] self
 #  131|     getAccessorDecl(3): [AccessorDecl] set
 #  131|         InterfaceType = (inout HasPropertyAndObserver) -> (Int) -> ()
 #  131|       getSelfParam(): [ParamDecl] self
@@ -3362,12 +3849,29 @@ declarations.swift:
 #  131|       getParam(0): [ParamDecl] value
 #  131|           Type = Int
 #  131|       getBody(): [BraceStmt] { ... }
+#-----|         getElement(0): [CallExpr] call to willSet
+#-----|           getFunction(): [MethodRefExpr] .willSet
+#-----|             getBase(): [InOutExpr] &...
+#-----|               getSubExpr(): [DeclRefExpr] self
+#-----|           getArgument(0): [Argument] : value
+#-----|             getExpr(): [DeclRefExpr] value
+#-----|         getElement(1): [AssignExpr]  ... = ...
+#-----|           getDest(): [MemberRefExpr] .hasBoth
+#-----|             getBase(): [DeclRefExpr] self
+#-----|           getSource(): [DeclRefExpr] value
+#-----|         getElement(2): [CallExpr] call to didSet
+#-----|           getFunction(): [MethodRefExpr] .didSet
+#-----|             getBase(): [InOutExpr] &...
+#-----|               getSubExpr(): [DeclRefExpr] self
 #  131|     getAccessorDecl(4): [AccessorDecl] (unnamed function decl)
 #  131|         InterfaceType = (inout HasPropertyAndObserver) -> () -> ()
 #  131|       getSelfParam(): [ParamDecl] self
 #  131|           Type = HasPropertyAndObserver
 #  131|       getBody(): [BraceStmt] { ... }
 #  131|         getElement(0): [YieldStmt] yield ...
+#-----|           getResult(0): [InOutExpr] &...
+#-----|             getSubExpr(): [MemberRefExpr] .hasBoth
+#-----|               getBase(): [DeclRefExpr] self
 #   81|   getMember(20): [ConstructorDecl] init(normalField:hasWillSet1:hasWillSet2:hasDidSet1:hasDidSet2:hasBoth:)
 #   81|       InterfaceType = (HasPropertyAndObserver.Type) -> (Int, Int, Int, Int, Int, Int) -> HasPropertyAndObserver
 #   81|     getSelfParam(): [ParamDecl] self
@@ -3446,6 +3950,14 @@ declarations.swift:
 #  152|       InterfaceType = (Derived.Type) -> () -> Derived
 #  152|     getSelfParam(): [ParamDecl] self
 #  152|         Type = Derived
+#-----|     getBody(): [BraceStmt] { ... }
+#-----|       getElement(0): [RebindSelfInConstructorExpr] self = ...
+#-----|         getSubExpr(): [CallExpr] call to ...
+#-----|           getFunction(): [DotSyntaxCallExpr] call to ...
+#-----|             getFunction(): [OtherConstructorDeclRefExpr] init()
+#-----|             getArgument(0): [Argument] : super
+#-----|               getExpr(): [SuperRefExpr] super
+#-----|       getElement(1): [ReturnStmt] return
 #  152|   getMember(1): [DestructorDecl] deinit()
 #  152|       InterfaceType = (Derived) -> () -> ()
 #  152|     getSelfParam(): [ParamDecl] self
@@ -3528,9 +4040,13 @@ expressions.swift:
 #    7|   getBody(): [BraceStmt] { ... }
 #    7|     getElement(0): [PatternBindingDecl] var ... = ...
 #    7|       getInit(0): [InterpolatedStringLiteralExpr] "..."
+#-----|         getInterpolationCountExpr(): [IntegerLiteralExpr] 1
+#-----|         getLiteralCapacityExpr(): [IntegerLiteralExpr] 6
 #    7|         getAppendingExpr(): [TapExpr] TapExpr
 #    7|           getSubExpr(): [OpaqueValueExpr] OpaqueValueExpr
 #    7|           getBody(): [BraceStmt] { ... }
+#-----|             getElement(0): [ConcreteVarDecl] $interpolation
+#-----|                 Type = DefaultStringInterpolation
 #    7|             getElement(1): [CallExpr] call to appendLiteral(_:)
 #    7|               getFunction(): [MethodRefExpr] .appendLiteral(_:)
 #    7|                 getBase(): [InOutExpr] &...
@@ -3564,6 +4080,86 @@ expressions.swift:
 #   10| [EnumDecl] AnError
 #   11|   getMember(0): [EnumCaseDecl] case ...
 #   11|   getMember(1): [EnumElementDecl] failed
+#-----|   getMember(2): [ConcreteFuncDecl] __derived_enum_equals(_:_:)
+#-----|       InterfaceType = (AnError.Type) -> (AnError, AnError) -> Bool
+#-----|     getSelfParam(): [ParamDecl] self
+#-----|         Type = AnError.Type
+#-----|     getParam(0): [ParamDecl] a
+#-----|         Type = AnError
+#-----|     getParam(1): [ParamDecl] b
+#-----|         Type = AnError
+#-----|     getBody(): [BraceStmt] { ... }
+#-----|       getElement(0): [PatternBindingDecl] var ... = ...
+#-----|         getPattern(0): [TypedPattern] ... as ...
+#-----|           getSubPattern(): [NamedPattern] index_a
+#-----|       getElement(1): [SwitchStmt] switch a { ... }
+#-----|         getExpr(): [DeclRefExpr] a
+#-----|         getCase(0): [CaseStmt] case ...
+#-----|           getBody(): [BraceStmt] { ... }
+#-----|             getElement(0): [AssignExpr]  ... = ...
+#-----|               getDest(): [DeclRefExpr] index_a
+#-----|               getSource(): [IntegerLiteralExpr] 0
+#-----|           getLabel(0): [CaseLabelItem] .failed
+#-----|             getPattern(): [EnumElementPattern] .failed
+#-----|       getElement(2): [PatternBindingDecl] var ... = ...
+#-----|         getPattern(0): [TypedPattern] ... as ...
+#-----|           getSubPattern(): [NamedPattern] index_b
+#-----|       getElement(3): [SwitchStmt] switch b { ... }
+#-----|         getExpr(): [DeclRefExpr] b
+#-----|         getCase(0): [CaseStmt] case ...
+#-----|           getBody(): [BraceStmt] { ... }
+#-----|             getElement(0): [AssignExpr]  ... = ...
+#-----|               getDest(): [DeclRefExpr] index_b
+#-----|               getSource(): [IntegerLiteralExpr] 0
+#-----|           getLabel(0): [CaseLabelItem] .failed
+#-----|             getPattern(): [EnumElementPattern] .failed
+#-----|       getElement(4): [ReturnStmt] return ...
+#-----|         getResult(): [BinaryExpr] ... .==(_:_:) ...
+#-----|           getFunction(): [MethodRefExpr] .==(_:_:)
+#-----|             getBase(): [TypeExpr] Int.Type
+#-----|           getArgument(0): [Argument] : index_a
+#-----|             getExpr(): [DeclRefExpr] index_a
+#-----|           getArgument(1): [Argument] : index_b
+#-----|             getExpr(): [DeclRefExpr] index_b
+#-----|   getMember(3): [PatternBindingDecl] var ... = ...
+#-----|     getPattern(0): [TypedPattern] ... as ...
+#-----|       getSubPattern(): [NamedPattern] hashValue
+#-----|   getMember(4): [ConcreteFuncDecl] hash(into:)
+#-----|       InterfaceType = (AnError) -> (inout Hasher) -> ()
+#-----|     getSelfParam(): [ParamDecl] self
+#-----|         Type = AnError
+#-----|     getParam(0): [ParamDecl] hasher
+#-----|         Type = Hasher
+#-----|     getBody(): [BraceStmt] { ... }
+#-----|       getElement(0): [PatternBindingDecl] var ... = ...
+#-----|         getPattern(0): [TypedPattern] ... as ...
+#-----|           getSubPattern(): [NamedPattern] discriminator
+#-----|       getElement(1): [SwitchStmt] switch self { ... }
+#-----|         getExpr(): [DeclRefExpr] self
+#-----|         getCase(0): [CaseStmt] case ...
+#-----|           getBody(): [BraceStmt] { ... }
+#-----|             getElement(0): [AssignExpr]  ... = ...
+#-----|               getDest(): [DeclRefExpr] discriminator
+#-----|               getSource(): [IntegerLiteralExpr] 0
+#-----|           getLabel(0): [CaseLabelItem] .failed
+#-----|             getPattern(): [EnumElementPattern] .failed
+#-----|       getElement(2): [CallExpr] call to ...
+#-----|         getFunction(): [UnresolvedDotExpr] ... .combine(_:)
+#-----|           getBase(): [DeclRefExpr] hasher
+#-----|         getArgument(0): [Argument] : discriminator
+#-----|           getExpr(): [DeclRefExpr] discriminator
+#-----|   getMember(5): [ConcreteVarDecl] hashValue
+#-----|       Type = Int
+#-----|     getAccessorDecl(0): [AccessorDecl] get
+#-----|         InterfaceType = (AnError) -> () -> Int
+#-----|       getSelfParam(): [ParamDecl] self
+#-----|           Type = AnError
+#-----|       getBody(): [BraceStmt] { ... }
+#-----|         getElement(0): [ReturnStmt] return ...
+#-----|           getResult(): [CallExpr] call to _hashValue(for:)
+#-----|             getFunction(): [DeclRefExpr] _hashValue(for:)
+#-----|             getArgument(0): [Argument] for: self
+#-----|               getExpr(): [DeclRefExpr] self
 #   14| [ConcreteFuncDecl] failure(_:)
 #   14|     InterfaceType = (Int) throws -> ()
 #   14|   getParam(0): [ParamDecl] x
@@ -3783,6 +4379,9 @@ expressions.swift:
 #   51|       getSelfParam(): [ParamDecl] self
 #   51|           Type = S
 #   51|       getBody(): [BraceStmt] { ... }
+#-----|         getElement(0): [ReturnStmt] return ...
+#-----|           getResult(): [MemberRefExpr] .x
+#-----|             getBase(): [DeclRefExpr] self
 #   50|   getMember(2): [ConstructorDecl] init(x:)
 #   50|       InterfaceType = (S.Type) -> (Int) -> S
 #   50|     getSelfParam(): [ParamDecl] self
@@ -3872,6 +4471,9 @@ expressions.swift:
 #   71|       getSelfParam(): [ParamDecl] self
 #   71|           Type = Base
 #   71|       getBody(): [BraceStmt] { ... }
+#-----|         getElement(0): [ReturnStmt] return ...
+#-----|           getResult(): [MemberRefExpr] .xx
+#-----|             getBase(): [DeclRefExpr] self
 #   72|   getMember(2): [ConstructorDecl] init(x:)
 #   72|       InterfaceType = (Base.Type) -> (Int) -> Base
 #   72|     getSelfParam(): [ParamDecl] self
@@ -3908,23 +4510,27 @@ expressions.swift:
 #   77|       InterfaceType = (Derived.Type) -> (Int) -> Derived
 #   77|     getSelfParam(): [ParamDecl] self
 #   77|         Type = Derived
+#-----|     getParam(0): [ParamDecl] x
+#-----|         Type = Int
+#-----|     getBody(): [BraceStmt] { ... }
+#   77|       getElement(0): [CallExpr] call to _unimplementedInitializer(className:initName:file:line:column:)
+#   77|         getFunction(): [DeclRefExpr] _unimplementedInitializer(className:initName:file:line:column:)
+#   77|         getArgument(0): [Argument] : expressions.Derived
+#   77|           getExpr(): [StringLiteralExpr] expressions.Derived
+#   77|         getArgument(1): [Argument] : #...
+#   77|           getExpr(): [MagicIdentifierLiteralExpr] #...
+#   77|         getArgument(2): [Argument] : #...
+#   77|           getExpr(): [MagicIdentifierLiteralExpr] #...
+#   77|         getArgument(3): [Argument] : #...
+#   77|           getExpr(): [MagicIdentifierLiteralExpr] #...
+#   77|         getArgument(4): [Argument] : #...
+#   77|           getExpr(): [MagicIdentifierLiteralExpr] #...
+#-----|       getElement(1): [ReturnStmt] return
 #   77|   getMember(2): [DestructorDecl] deinit()
 #   77|       InterfaceType = (Derived) -> () -> ()
 #   77|     getSelfParam(): [ParamDecl] self
 #   77|         Type = Derived
 #   77|     getBody(): [BraceStmt] { ... }
-#   77| [CallExpr] call to _unimplementedInitializer(className:initName:file:line:column:)
-#   77|   getFunction(): [DeclRefExpr] _unimplementedInitializer(className:initName:file:line:column:)
-#   77|   getArgument(0): [Argument] : expressions.Derived
-#   77|     getExpr(): [StringLiteralExpr] expressions.Derived
-#   77|   getArgument(1): [Argument] : #...
-#   77|     getExpr(): [MagicIdentifierLiteralExpr] #...
-#   77|   getArgument(2): [Argument] : #...
-#   77|     getExpr(): [MagicIdentifierLiteralExpr] #...
-#   77|   getArgument(3): [Argument] : #...
-#   77|     getExpr(): [MagicIdentifierLiteralExpr] #...
-#   77|   getArgument(4): [Argument] : #...
-#   77|     getExpr(): [MagicIdentifierLiteralExpr] #...
 #   83| [TopLevelCodeDecl] { ... }
 #   83|   getBody(): [BraceStmt] { ... }
 #   83|     getElement(0): [PatternBindingDecl] var ... = ...
@@ -3947,6 +4553,7 @@ expressions.swift:
 #   86| [TopLevelCodeDecl] { ... }
 #   86|   getBody(): [BraceStmt] { ... }
 #   86|     getElement(0): [PatternBindingDecl] var ... = ...
+#-----|       getInit(0): [NilLiteralExpr] nil
 #   86|       getPattern(0): [TypedPattern] ... as ...
 #   86|         getSubPattern(): [NamedPattern] opt
 #   86|         getTypeRepr(): [TypeRepr] Int?
@@ -4030,6 +4637,9 @@ expressions.swift:
 #   96|           Type = HasProperty
 #   96|       getBody(): [BraceStmt] { ... }
 #   96|         getElement(0): [YieldStmt] yield ...
+#-----|           getResult(0): [InOutExpr] &...
+#-----|             getSubExpr(): [MemberRefExpr] .settableField
+#-----|               getBase(): [DeclRefExpr] self
 #  105|   getMember(2): [PatternBindingDecl] var ... = ...
 #  105|     getPattern(0): [TypedPattern] ... as ...
 #  105|       getSubPattern(): [NamedPattern] readOnlyField1
@@ -4067,6 +4677,9 @@ expressions.swift:
 #  116|       getSelfParam(): [ParamDecl] self
 #  116|           Type = HasProperty
 #  116|       getBody(): [BraceStmt] { ... }
+#-----|         getElement(0): [ReturnStmt] return ...
+#-----|           getResult(): [MemberRefExpr] .normalField
+#-----|             getBase(): [DeclRefExpr] self
 #  116|     getAccessorDecl(1): [AccessorDecl] set
 #  116|         InterfaceType = (inout HasProperty) -> (Int) -> ()
 #  116|       getSelfParam(): [ParamDecl] self
@@ -4074,12 +4687,19 @@ expressions.swift:
 #  116|       getParam(0): [ParamDecl] value
 #  116|           Type = Int
 #  116|       getBody(): [BraceStmt] { ... }
+#-----|         getElement(0): [AssignExpr]  ... = ...
+#-----|           getDest(): [MemberRefExpr] .normalField
+#-----|             getBase(): [DeclRefExpr] self
+#-----|           getSource(): [DeclRefExpr] value
 #  116|     getAccessorDecl(2): [AccessorDecl] (unnamed function decl)
 #  116|         InterfaceType = (inout HasProperty) -> () -> ()
 #  116|       getSelfParam(): [ParamDecl] self
 #  116|           Type = HasProperty
 #  116|       getBody(): [BraceStmt] { ... }
 #  116|         getElement(0): [YieldStmt] yield ...
+#-----|           getResult(0): [InOutExpr] &...
+#-----|             getSubExpr(): [MemberRefExpr] .normalField
+#-----|               getBase(): [DeclRefExpr] self
 #  118|   getMember(8): [SubscriptDecl] subscript ...
 #  119|     getAccessorDecl(0): [AccessorDecl] get
 #  119|         InterfaceType = (HasProperty) -> (Int) -> Int
@@ -4103,8 +4723,15 @@ expressions.swift:
 #  118|         InterfaceType = (inout HasProperty) -> (Int) -> ()
 #  118|       getSelfParam(): [ParamDecl] self
 #  118|           Type = HasProperty
+#-----|       getParam(0): [ParamDecl] x
+#-----|           Type = Int
 #  118|       getBody(): [BraceStmt] { ... }
 #  118|         getElement(0): [YieldStmt] yield ...
+#-----|           getResult(0): [InOutExpr] &...
+#-----|             getSubExpr(): [SubscriptExpr] ...[...]
+#-----|               getBase(): [DeclRefExpr] self
+#-----|               getArgument(0): [Argument] : x
+#-----|                 getExpr(): [DeclRefExpr] x
 #  118|     getParam(0): [ParamDecl] x
 #  118|         Type = Int
 #  125|   getMember(9): [SubscriptDecl] subscript ...
@@ -4203,6 +4830,9 @@ expressions.swift:
 #  142|       getSelfParam(): [ParamDecl] self
 #  142|           Type = B
 #  142|       getBody(): [BraceStmt] { ... }
+#-----|         getElement(0): [ReturnStmt] return ...
+#-----|           getResult(): [MemberRefExpr] .x
+#-----|             getBase(): [DeclRefExpr] self
 #  142|     getAccessorDecl(1): [AccessorDecl] set
 #  142|         InterfaceType = (inout B) -> (Int) -> ()
 #  142|       getSelfParam(): [ParamDecl] self
@@ -4210,12 +4840,19 @@ expressions.swift:
 #  142|       getParam(0): [ParamDecl] value
 #  142|           Type = Int
 #  142|       getBody(): [BraceStmt] { ... }
+#-----|         getElement(0): [AssignExpr]  ... = ...
+#-----|           getDest(): [MemberRefExpr] .x
+#-----|             getBase(): [DeclRefExpr] self
+#-----|           getSource(): [DeclRefExpr] value
 #  142|     getAccessorDecl(2): [AccessorDecl] (unnamed function decl)
 #  142|         InterfaceType = (inout B) -> () -> ()
 #  142|       getSelfParam(): [ParamDecl] self
 #  142|           Type = B
 #  142|       getBody(): [BraceStmt] { ... }
 #  142|         getElement(0): [YieldStmt] yield ...
+#-----|           getResult(0): [InOutExpr] &...
+#-----|             getSubExpr(): [MemberRefExpr] .x
+#-----|               getBase(): [DeclRefExpr] self
 #  141|   getMember(2): [ConstructorDecl] init(x:)
 #  141|       InterfaceType = (B.Type) -> (Int) -> B
 #  141|     getSelfParam(): [ParamDecl] self
@@ -4234,6 +4871,9 @@ expressions.swift:
 #  146|       getSelfParam(): [ParamDecl] self
 #  146|           Type = A
 #  146|       getBody(): [BraceStmt] { ... }
+#-----|         getElement(0): [ReturnStmt] return ...
+#-----|           getResult(): [MemberRefExpr] .b
+#-----|             getBase(): [DeclRefExpr] self
 #  146|     getAccessorDecl(1): [AccessorDecl] set
 #  146|         InterfaceType = (inout A) -> (B) -> ()
 #  146|       getSelfParam(): [ParamDecl] self
@@ -4241,12 +4881,19 @@ expressions.swift:
 #  146|       getParam(0): [ParamDecl] value
 #  146|           Type = B
 #  146|       getBody(): [BraceStmt] { ... }
+#-----|         getElement(0): [AssignExpr]  ... = ...
+#-----|           getDest(): [MemberRefExpr] .b
+#-----|             getBase(): [DeclRefExpr] self
+#-----|           getSource(): [DeclRefExpr] value
 #  146|     getAccessorDecl(2): [AccessorDecl] (unnamed function decl)
 #  146|         InterfaceType = (inout A) -> () -> ()
 #  146|       getSelfParam(): [ParamDecl] self
 #  146|           Type = A
 #  146|       getBody(): [BraceStmt] { ... }
 #  146|         getElement(0): [YieldStmt] yield ...
+#-----|           getResult(0): [InOutExpr] &...
+#-----|             getSubExpr(): [MemberRefExpr] .b
+#-----|               getBase(): [DeclRefExpr] self
 #  147|   getMember(2): [PatternBindingDecl] var ... = ...
 #  147|     getPattern(0): [TypedPattern] ... as ...
 #  147|       getSubPattern(): [NamedPattern] bs
@@ -4258,6 +4905,9 @@ expressions.swift:
 #  147|       getSelfParam(): [ParamDecl] self
 #  147|           Type = A
 #  147|       getBody(): [BraceStmt] { ... }
+#-----|         getElement(0): [ReturnStmt] return ...
+#-----|           getResult(): [MemberRefExpr] .bs
+#-----|             getBase(): [DeclRefExpr] self
 #  147|     getAccessorDecl(1): [AccessorDecl] set
 #  147|         InterfaceType = (inout A) -> ([B]) -> ()
 #  147|       getSelfParam(): [ParamDecl] self
@@ -4265,13 +4915,21 @@ expressions.swift:
 #  147|       getParam(0): [ParamDecl] value
 #  147|           Type = [B]
 #  147|       getBody(): [BraceStmt] { ... }
+#-----|         getElement(0): [AssignExpr]  ... = ...
+#-----|           getDest(): [MemberRefExpr] .bs
+#-----|             getBase(): [DeclRefExpr] self
+#-----|           getSource(): [DeclRefExpr] value
 #  147|     getAccessorDecl(2): [AccessorDecl] (unnamed function decl)
 #  147|         InterfaceType = (inout A) -> () -> ()
 #  147|       getSelfParam(): [ParamDecl] self
 #  147|           Type = A
 #  147|       getBody(): [BraceStmt] { ... }
 #  147|         getElement(0): [YieldStmt] yield ...
+#-----|           getResult(0): [InOutExpr] &...
+#-----|             getSubExpr(): [MemberRefExpr] .bs
+#-----|               getBase(): [DeclRefExpr] self
 #  148|   getMember(4): [PatternBindingDecl] var ... = ...
+#-----|     getInit(0): [NilLiteralExpr] nil
 #  148|     getPattern(0): [TypedPattern] ... as ...
 #  148|       getSubPattern(): [NamedPattern] mayB
 #  148|       getTypeRepr(): [TypeRepr] B?
@@ -4282,6 +4940,9 @@ expressions.swift:
 #  148|       getSelfParam(): [ParamDecl] self
 #  148|           Type = A
 #  148|       getBody(): [BraceStmt] { ... }
+#-----|         getElement(0): [ReturnStmt] return ...
+#-----|           getResult(): [MemberRefExpr] .mayB
+#-----|             getBase(): [DeclRefExpr] self
 #  148|     getAccessorDecl(1): [AccessorDecl] set
 #  148|         InterfaceType = (inout A) -> (B?) -> ()
 #  148|       getSelfParam(): [ParamDecl] self
@@ -4289,12 +4950,19 @@ expressions.swift:
 #  148|       getParam(0): [ParamDecl] value
 #  148|           Type = B?
 #  148|       getBody(): [BraceStmt] { ... }
+#-----|         getElement(0): [AssignExpr]  ... = ...
+#-----|           getDest(): [MemberRefExpr] .mayB
+#-----|             getBase(): [DeclRefExpr] self
+#-----|           getSource(): [DeclRefExpr] value
 #  148|     getAccessorDecl(2): [AccessorDecl] (unnamed function decl)
 #  148|         InterfaceType = (inout A) -> () -> ()
 #  148|       getSelfParam(): [ParamDecl] self
 #  148|           Type = A
 #  148|       getBody(): [BraceStmt] { ... }
 #  148|         getElement(0): [YieldStmt] yield ...
+#-----|           getResult(0): [InOutExpr] &...
+#-----|             getSubExpr(): [MemberRefExpr] .mayB
+#-----|               getBase(): [DeclRefExpr] self
 #  145|   getMember(6): [ConstructorDecl] init(b:bs:mayB:)
 #  145|       InterfaceType = (A.Type) -> (B, [B], B?) -> A
 #  145|     getSelfParam(): [ParamDecl] self
@@ -4742,6 +5410,86 @@ statements.swift:
 #   34| [EnumDecl] AnError
 #   35|   getMember(0): [EnumCaseDecl] case ...
 #   35|   getMember(1): [EnumElementDecl] failed
+#-----|   getMember(2): [ConcreteFuncDecl] __derived_enum_equals(_:_:)
+#-----|       InterfaceType = (AnError.Type) -> (AnError, AnError) -> Bool
+#-----|     getSelfParam(): [ParamDecl] self
+#-----|         Type = AnError.Type
+#-----|     getParam(0): [ParamDecl] a
+#-----|         Type = AnError
+#-----|     getParam(1): [ParamDecl] b
+#-----|         Type = AnError
+#-----|     getBody(): [BraceStmt] { ... }
+#-----|       getElement(0): [PatternBindingDecl] var ... = ...
+#-----|         getPattern(0): [TypedPattern] ... as ...
+#-----|           getSubPattern(): [NamedPattern] index_a
+#-----|       getElement(1): [SwitchStmt] switch a { ... }
+#-----|         getExpr(): [DeclRefExpr] a
+#-----|         getCase(0): [CaseStmt] case ...
+#-----|           getBody(): [BraceStmt] { ... }
+#-----|             getElement(0): [AssignExpr]  ... = ...
+#-----|               getDest(): [DeclRefExpr] index_a
+#-----|               getSource(): [IntegerLiteralExpr] 0
+#-----|           getLabel(0): [CaseLabelItem] .failed
+#-----|             getPattern(): [EnumElementPattern] .failed
+#-----|       getElement(2): [PatternBindingDecl] var ... = ...
+#-----|         getPattern(0): [TypedPattern] ... as ...
+#-----|           getSubPattern(): [NamedPattern] index_b
+#-----|       getElement(3): [SwitchStmt] switch b { ... }
+#-----|         getExpr(): [DeclRefExpr] b
+#-----|         getCase(0): [CaseStmt] case ...
+#-----|           getBody(): [BraceStmt] { ... }
+#-----|             getElement(0): [AssignExpr]  ... = ...
+#-----|               getDest(): [DeclRefExpr] index_b
+#-----|               getSource(): [IntegerLiteralExpr] 0
+#-----|           getLabel(0): [CaseLabelItem] .failed
+#-----|             getPattern(): [EnumElementPattern] .failed
+#-----|       getElement(4): [ReturnStmt] return ...
+#-----|         getResult(): [BinaryExpr] ... .==(_:_:) ...
+#-----|           getFunction(): [MethodRefExpr] .==(_:_:)
+#-----|             getBase(): [TypeExpr] Int.Type
+#-----|           getArgument(0): [Argument] : index_a
+#-----|             getExpr(): [DeclRefExpr] index_a
+#-----|           getArgument(1): [Argument] : index_b
+#-----|             getExpr(): [DeclRefExpr] index_b
+#-----|   getMember(3): [PatternBindingDecl] var ... = ...
+#-----|     getPattern(0): [TypedPattern] ... as ...
+#-----|       getSubPattern(): [NamedPattern] hashValue
+#-----|   getMember(4): [ConcreteFuncDecl] hash(into:)
+#-----|       InterfaceType = (AnError) -> (inout Hasher) -> ()
+#-----|     getSelfParam(): [ParamDecl] self
+#-----|         Type = AnError
+#-----|     getParam(0): [ParamDecl] hasher
+#-----|         Type = Hasher
+#-----|     getBody(): [BraceStmt] { ... }
+#-----|       getElement(0): [PatternBindingDecl] var ... = ...
+#-----|         getPattern(0): [TypedPattern] ... as ...
+#-----|           getSubPattern(): [NamedPattern] discriminator
+#-----|       getElement(1): [SwitchStmt] switch self { ... }
+#-----|         getExpr(): [DeclRefExpr] self
+#-----|         getCase(0): [CaseStmt] case ...
+#-----|           getBody(): [BraceStmt] { ... }
+#-----|             getElement(0): [AssignExpr]  ... = ...
+#-----|               getDest(): [DeclRefExpr] discriminator
+#-----|               getSource(): [IntegerLiteralExpr] 0
+#-----|           getLabel(0): [CaseLabelItem] .failed
+#-----|             getPattern(): [EnumElementPattern] .failed
+#-----|       getElement(2): [CallExpr] call to ...
+#-----|         getFunction(): [UnresolvedDotExpr] ... .combine(_:)
+#-----|           getBase(): [DeclRefExpr] hasher
+#-----|         getArgument(0): [Argument] : discriminator
+#-----|           getExpr(): [DeclRefExpr] discriminator
+#-----|   getMember(5): [ConcreteVarDecl] hashValue
+#-----|       Type = Int
+#-----|     getAccessorDecl(0): [AccessorDecl] get
+#-----|         InterfaceType = (AnError) -> () -> Int
+#-----|       getSelfParam(): [ParamDecl] self
+#-----|           Type = AnError
+#-----|       getBody(): [BraceStmt] { ... }
+#-----|         getElement(0): [ReturnStmt] return ...
+#-----|           getResult(): [CallExpr] call to _hashValue(for:)
+#-----|             getFunction(): [DeclRefExpr] _hashValue(for:)
+#-----|             getArgument(0): [Argument] for: self
+#-----|               getExpr(): [DeclRefExpr] self
 #   38| [ConcreteFuncDecl] failure(_:)
 #   38|     InterfaceType = (Int) throws -> ()
 #   38|   getParam(0): [ParamDecl] x
@@ -4932,6 +5680,9 @@ statements.swift:
 #   75|       getSelfParam(): [ParamDecl] self
 #   75|           Type = HasModifyAccessorDecl
 #   75|       getBody(): [BraceStmt] { ... }
+#-----|         getElement(0): [ReturnStmt] return ...
+#-----|           getResult(): [MemberRefExpr] .x
+#-----|             getBase(): [DeclRefExpr] self
 #   75|     getAccessorDecl(1): [AccessorDecl] set
 #   75|         InterfaceType = (inout HasModifyAccessorDecl) -> (Int) -> ()
 #   75|       getSelfParam(): [ParamDecl] self
@@ -4939,12 +5690,19 @@ statements.swift:
 #   75|       getParam(0): [ParamDecl] value
 #   75|           Type = Int
 #   75|       getBody(): [BraceStmt] { ... }
+#-----|         getElement(0): [AssignExpr]  ... = ...
+#-----|           getDest(): [MemberRefExpr] .x
+#-----|             getBase(): [DeclRefExpr] self
+#-----|           getSource(): [DeclRefExpr] value
 #   75|     getAccessorDecl(2): [AccessorDecl] (unnamed function decl)
 #   75|         InterfaceType = (inout HasModifyAccessorDecl) -> () -> ()
 #   75|       getSelfParam(): [ParamDecl] self
 #   75|           Type = HasModifyAccessorDecl
 #   75|       getBody(): [BraceStmt] { ... }
 #   75|         getElement(0): [YieldStmt] yield ...
+#-----|           getResult(0): [InOutExpr] &...
+#-----|             getSubExpr(): [MemberRefExpr] .x
+#-----|               getBase(): [DeclRefExpr] self
 #   76|   getMember(2): [PatternBindingDecl] var ... = ...
 #   76|     getPattern(0): [TypedPattern] ... as ...
 #   76|       getSubPattern(): [NamedPattern] hasModify
@@ -4974,6 +5732,10 @@ statements.swift:
 #   76|       getParam(0): [ParamDecl] value
 #   76|           Type = Int
 #   76|       getBody(): [BraceStmt] { ... }
+#-----|         getElement(0): [AssignExpr]  ... = ...
+#-----|           getDest(): [MemberRefExpr] .hasModify
+#-----|             getBase(): [DeclRefExpr] self
+#-----|           getSource(): [DeclRefExpr] value
 #   74|   getMember(4): [ConstructorDecl] init(x:)
 #   74|       InterfaceType = (HasModifyAccessorDecl.Type) -> (Int) -> HasModifyAccessorDecl
 #   74|     getSelfParam(): [ParamDecl] self

From 41977d1dbb764c43ac1e64d1530806c2dbb3f488 Mon Sep 17 00:00:00 2001
From: Paolo Tranquilli <redsun82@github.com>
Date: Fri, 11 Nov 2022 12:17:07 +0100
Subject: [PATCH 0189/1420] Swift: implement extraction of new properties

---
 .../extractor/translators/DeclTranslator.cpp  | 16 ++++++++++++++
 .../test/library-tests/ast/PrintAst.expected  | 21 ++++++++++---------
 2 files changed, 27 insertions(+), 10 deletions(-)

diff --git a/swift/extractor/translators/DeclTranslator.cpp b/swift/extractor/translators/DeclTranslator.cpp
index 9e9b6009703..2482499a32c 100644
--- a/swift/extractor/translators/DeclTranslator.cpp
+++ b/swift/extractor/translators/DeclTranslator.cpp
@@ -3,6 +3,7 @@
 #include <swift/AST/GenericParamList.h>
 #include <swift/AST/ParameterList.h>
 #include "swift/extractor/infra/SwiftDiagnosticKind.h"
+#include "swift/AST/PropertyWrappers.h"
 
 namespace codeql {
 namespace {
@@ -85,6 +86,11 @@ std::optional<codeql::ParamDecl> DeclTranslator::translateParamDecl(const swift:
   }
   fillVarDecl(decl, *entry);
   entry->is_inout = decl.isInOut();
+  if (auto wrapped = decl.getPropertyWrapperWrappedValueVar()) {
+    entry->property_wrapper_local_wrapped_var = dispatcher.fetchLabel(wrapped);
+    entry->property_wrapper_local_wrapped_var_binding =
+        dispatcher.fetchLabel(wrapped->getParentPatternBinding());
+  }
   return entry;
 }
 
@@ -355,6 +361,16 @@ void DeclTranslator::fillVarDecl(const swift::VarDecl& decl, codeql::VarDecl& en
         dispatcher.fetchOptionalLabel(decl.getPropertyWrapperBackingPropertyType());
   }
   fillAbstractStorageDecl(decl, entry);
+  if (auto backing = decl.getPropertyWrapperBackingProperty()) {
+    entry.property_wrapper_backing_var = dispatcher.fetchLabel(backing);
+    entry.property_wrapper_backing_var_binding =
+        dispatcher.fetchLabel(backing->getParentPatternBinding());
+  }
+  if (auto projection = decl.getPropertyWrapperProjectionVar()) {
+    entry.property_wrapper_projection_var = dispatcher.fetchLabel(projection);
+    entry.property_wrapper_projection_var_binding =
+        dispatcher.fetchLabel(projection->getParentPatternBinding());
+  }
 }
 
 void DeclTranslator::fillNominalTypeDecl(const swift::NominalTypeDecl& decl,
diff --git a/swift/ql/test/library-tests/ast/PrintAst.expected b/swift/ql/test/library-tests/ast/PrintAst.expected
index 4fc35515561..2397614f5fe 100644
--- a/swift/ql/test/library-tests/ast/PrintAst.expected
+++ b/swift/ql/test/library-tests/ast/PrintAst.expected
@@ -3469,18 +3469,19 @@ declarations.swift:
 #-----|           getElement(0): [ReturnStmt] return ...
 #-----|             getResult(): [MemberRefExpr] .wrappedValue
 #-----|               getBase(): [DeclRefExpr] _x
+#-----|       getPropertyWrapperBackingVarBinding(): [PatternBindingDecl] var ... = ...
+#   77|         getInit(0): [CallExpr] call to init()
+#   77|           getFunction(): [ConstructorRefCallExpr] call to init()
+#   77|             getFunction(): [DeclRefExpr] init()
+#   77|             getArgument(0): [Argument] : ZeroWrapper.Type
+#   77|               getExpr(): [TypeExpr] ZeroWrapper.Type
+#   77|                 getTypeRepr(): [TypeRepr] ZeroWrapper
+#   77|         getPattern(0): [TypedPattern] ... as ...
+#   77|           getSubPattern(): [NamedPattern] _x
+#   77|       getPropertyWrapperBackingVar(): [ConcreteVarDecl] _x
+#   77|           Type = ZeroWrapper
 #   78|     getElement(2): [ReturnStmt] return ...
 #   78|       getResult(): [DeclRefExpr] x
-#   77| [CallExpr] call to init()
-#   77|   getFunction(): [ConstructorRefCallExpr] call to init()
-#   77|     getFunction(): [DeclRefExpr] init()
-#   77|     getArgument(0): [Argument] : ZeroWrapper.Type
-#   77|       getExpr(): [TypeExpr] ZeroWrapper.Type
-#   77|         getTypeRepr(): [TypeRepr] ZeroWrapper
-#   77| [TypedPattern] ... as ...
-#   77|   getSubPattern(): [NamedPattern] _x
-#   77| [ConcreteVarDecl] _x
-#   77|     Type = ZeroWrapper
 #   81| [StructDecl] HasPropertyAndObserver
 #   82|   getMember(0): [PatternBindingDecl] var ... = ...
 #   82|     getPattern(0): [TypedPattern] ... as ...

From 3bb5505063726167fbbf0a44ee69ad8fd73e7aa9 Mon Sep 17 00:00:00 2001
From: Paolo Tranquilli <redsun82@github.com>
Date: Fri, 11 Nov 2022 12:41:00 +0100
Subject: [PATCH 0190/1420] Swift: expand and fix `VarDecl` tests

---
 .../ConcreteVarDecl/ConcreteVarDecl.expected  | 15 +++++++
 .../ConcreteVarDecl_getAccessorDecl.expected  | 27 +++++++++++
 ...cl_getAttachedPropertyWrapperType.expected |  4 ++
 ...creteVarDecl_getParentInitializer.expected | 10 +++++
 .../ConcreteVarDecl_getParentPattern.expected | 15 +++++++
 ...Decl_getPropertyWrapperBackingVar.expected |  5 +++
 ...tPropertyWrapperBackingVarBinding.expected |  5 +++
 ...l_getPropertyWrapperProjectionVar.expected |  2 +
 ...opertyWrapperProjectionVarBinding.expected |  2 +
 .../decl/ConcreteVarDecl/var_decls.swift      | 33 ++++++++++++++
 .../decl/ParamDecl/ParamDecl.expected         | 45 +++++++++++++++++++
 ...cl_getAttachedPropertyWrapperType.expected |  4 ++
 ...Decl_getPropertyWrapperBackingVar.expected |  4 ++
 ...tPropertyWrapperBackingVarBinding.expected |  2 +
 ...getPropertyWrapperLocalWrappedVar.expected |  4 ++
 ...ertyWrapperLocalWrappedVarBinding.expected |  0
 ...l_getPropertyWrapperProjectionVar.expected |  2 +
 ...opertyWrapperProjectionVarBinding.expected |  2 +
 .../decl/ParamDecl/param_decls.swift          | 37 +++++++++++++++
 19 files changed, 218 insertions(+)
 create mode 100644 swift/ql/test/extractor-tests/generated/decl/ConcreteVarDecl/ConcreteVarDecl_getPropertyWrapperBackingVar.expected
 create mode 100644 swift/ql/test/extractor-tests/generated/decl/ConcreteVarDecl/ConcreteVarDecl_getPropertyWrapperBackingVarBinding.expected
 create mode 100644 swift/ql/test/extractor-tests/generated/decl/ConcreteVarDecl/ConcreteVarDecl_getPropertyWrapperProjectionVar.expected
 create mode 100644 swift/ql/test/extractor-tests/generated/decl/ConcreteVarDecl/ConcreteVarDecl_getPropertyWrapperProjectionVarBinding.expected
 create mode 100644 swift/ql/test/extractor-tests/generated/decl/ParamDecl/ParamDecl_getPropertyWrapperBackingVar.expected
 create mode 100644 swift/ql/test/extractor-tests/generated/decl/ParamDecl/ParamDecl_getPropertyWrapperBackingVarBinding.expected
 create mode 100644 swift/ql/test/extractor-tests/generated/decl/ParamDecl/ParamDecl_getPropertyWrapperLocalWrappedVar.expected
 create mode 100644 swift/ql/test/extractor-tests/generated/decl/ParamDecl/ParamDecl_getPropertyWrapperLocalWrappedVarBinding.expected
 create mode 100644 swift/ql/test/extractor-tests/generated/decl/ParamDecl/ParamDecl_getPropertyWrapperProjectionVar.expected
 create mode 100644 swift/ql/test/extractor-tests/generated/decl/ParamDecl/ParamDecl_getPropertyWrapperProjectionVarBinding.expected

diff --git a/swift/ql/test/extractor-tests/generated/decl/ConcreteVarDecl/ConcreteVarDecl.expected b/swift/ql/test/extractor-tests/generated/decl/ConcreteVarDecl/ConcreteVarDecl.expected
index 7cf37701b0c..80ea4e75e95 100644
--- a/swift/ql/test/extractor-tests/generated/decl/ConcreteVarDecl/ConcreteVarDecl.expected
+++ b/swift/ql/test/extractor-tests/generated/decl/ConcreteVarDecl/ConcreteVarDecl.expected
@@ -5,3 +5,18 @@
 | var_decls.swift:20:7:20:7 | wrappedValue | getModule: | file://:0:0:0:0 | var_decls | getInterfaceType: | Int | getName: | wrappedValue | getType: | Int | getIntroducerInt: | 1 |
 | var_decls.swift:24:15:24:15 | _wrapped | getModule: | file://:0:0:0:0 | var_decls | getInterfaceType: | X<Y> | getName: | _wrapped | getType: | X<Y> | getIntroducerInt: | 1 |
 | var_decls.swift:24:15:24:15 | wrapped | getModule: | file://:0:0:0:0 | var_decls | getInterfaceType: | Int | getName: | wrapped | getType: | Int | getIntroducerInt: | 1 |
+| var_decls.swift:28:7:28:7 | wrappedValue | getModule: | file://:0:0:0:0 | var_decls | getInterfaceType: | Int | getName: | wrappedValue | getType: | Int | getIntroducerInt: | 1 |
+| var_decls.swift:34:7:34:7 | wrappedValue | getModule: | file://:0:0:0:0 | var_decls | getInterfaceType: | Int | getName: | wrappedValue | getType: | Int | getIntroducerInt: | 1 |
+| var_decls.swift:35:7:35:7 | projectedValue | getModule: | file://:0:0:0:0 | var_decls | getInterfaceType: | Bool | getName: | projectedValue | getType: | Bool | getIntroducerInt: | 1 |
+| var_decls.swift:39:7:39:7 | wrappedValue | getModule: | file://:0:0:0:0 | var_decls | getInterfaceType: | Int | getName: | wrappedValue | getType: | Int | getIntroducerInt: | 1 |
+| var_decls.swift:40:7:40:7 | projectedValue | getModule: | file://:0:0:0:0 | var_decls | getInterfaceType: | Bool | getName: | projectedValue | getType: | Bool | getIntroducerInt: | 1 |
+| var_decls.swift:54:10:54:10 | _w1 | getModule: | file://:0:0:0:0 | var_decls | getInterfaceType: | X<Int> | getName: | _w1 | getType: | X<Int> | getIntroducerInt: | 1 |
+| var_decls.swift:54:10:54:10 | w1 | getModule: | file://:0:0:0:0 | var_decls | getInterfaceType: | Int | getName: | w1 | getType: | Int | getIntroducerInt: | 1 |
+| var_decls.swift:55:24:55:24 | _w2 | getModule: | file://:0:0:0:0 | var_decls | getInterfaceType: | WrapperWithInit | getName: | _w2 | getType: | WrapperWithInit | getIntroducerInt: | 1 |
+| var_decls.swift:55:24:55:24 | w2 | getModule: | file://:0:0:0:0 | var_decls | getInterfaceType: | Int | getName: | w2 | getType: | Int | getIntroducerInt: | 1 |
+| var_decls.swift:56:29:56:29 | $w3 | getModule: | file://:0:0:0:0 | var_decls | getInterfaceType: | Bool | getName: | $w3 | getType: | Bool | getIntroducerInt: | 1 |
+| var_decls.swift:56:29:56:29 | _w3 | getModule: | file://:0:0:0:0 | var_decls | getInterfaceType: | WrapperWithProjected | getName: | _w3 | getType: | WrapperWithProjected | getIntroducerInt: | 1 |
+| var_decls.swift:56:29:56:29 | w3 | getModule: | file://:0:0:0:0 | var_decls | getInterfaceType: | Int | getName: | w3 | getType: | Int | getIntroducerInt: | 1 |
+| var_decls.swift:57:36:57:36 | $w4 | getModule: | file://:0:0:0:0 | var_decls | getInterfaceType: | Bool | getName: | $w4 | getType: | Bool | getIntroducerInt: | 1 |
+| var_decls.swift:57:36:57:36 | _w4 | getModule: | file://:0:0:0:0 | var_decls | getInterfaceType: | WrapperWithProjectedAndInit | getName: | _w4 | getType: | WrapperWithProjectedAndInit | getIntroducerInt: | 1 |
+| var_decls.swift:57:36:57:36 | w4 | getModule: | file://:0:0:0:0 | var_decls | getInterfaceType: | Int | getName: | w4 | getType: | Int | getIntroducerInt: | 1 |
diff --git a/swift/ql/test/extractor-tests/generated/decl/ConcreteVarDecl/ConcreteVarDecl_getAccessorDecl.expected b/swift/ql/test/extractor-tests/generated/decl/ConcreteVarDecl/ConcreteVarDecl_getAccessorDecl.expected
index cfbce6fe5ef..08aff3c9809 100644
--- a/swift/ql/test/extractor-tests/generated/decl/ConcreteVarDecl/ConcreteVarDecl_getAccessorDecl.expected
+++ b/swift/ql/test/extractor-tests/generated/decl/ConcreteVarDecl/ConcreteVarDecl_getAccessorDecl.expected
@@ -11,3 +11,30 @@
 | var_decls.swift:24:15:24:15 | wrapped | 0 | var_decls.swift:24:15:24:15 | get |
 | var_decls.swift:24:15:24:15 | wrapped | 1 | var_decls.swift:24:15:24:15 | set |
 | var_decls.swift:24:15:24:15 | wrapped | 2 | var_decls.swift:24:15:24:15 | (unnamed function decl) |
+| var_decls.swift:28:7:28:7 | wrappedValue | 0 | var_decls.swift:28:7:28:7 | get |
+| var_decls.swift:28:7:28:7 | wrappedValue | 1 | var_decls.swift:28:7:28:7 | set |
+| var_decls.swift:28:7:28:7 | wrappedValue | 2 | var_decls.swift:28:7:28:7 | (unnamed function decl) |
+| var_decls.swift:34:7:34:7 | wrappedValue | 0 | var_decls.swift:34:7:34:7 | get |
+| var_decls.swift:34:7:34:7 | wrappedValue | 1 | var_decls.swift:34:7:34:7 | set |
+| var_decls.swift:34:7:34:7 | wrappedValue | 2 | var_decls.swift:34:7:34:7 | (unnamed function decl) |
+| var_decls.swift:35:7:35:7 | projectedValue | 0 | var_decls.swift:35:7:35:7 | get |
+| var_decls.swift:35:7:35:7 | projectedValue | 1 | var_decls.swift:35:7:35:7 | set |
+| var_decls.swift:35:7:35:7 | projectedValue | 2 | var_decls.swift:35:7:35:7 | (unnamed function decl) |
+| var_decls.swift:39:7:39:7 | wrappedValue | 0 | var_decls.swift:39:7:39:7 | get |
+| var_decls.swift:39:7:39:7 | wrappedValue | 1 | var_decls.swift:39:7:39:7 | set |
+| var_decls.swift:39:7:39:7 | wrappedValue | 2 | var_decls.swift:39:7:39:7 | (unnamed function decl) |
+| var_decls.swift:40:7:40:7 | projectedValue | 0 | var_decls.swift:40:7:40:7 | get |
+| var_decls.swift:40:7:40:7 | projectedValue | 1 | var_decls.swift:40:7:40:7 | set |
+| var_decls.swift:40:7:40:7 | projectedValue | 2 | var_decls.swift:40:7:40:7 | (unnamed function decl) |
+| var_decls.swift:54:10:54:10 | w1 | 0 | var_decls.swift:54:10:54:10 | get |
+| var_decls.swift:54:10:54:10 | w1 | 1 | var_decls.swift:54:10:54:10 | set |
+| var_decls.swift:55:24:55:24 | w2 | 0 | var_decls.swift:55:24:55:24 | get |
+| var_decls.swift:55:24:55:24 | w2 | 1 | var_decls.swift:55:24:55:24 | set |
+| var_decls.swift:56:29:56:29 | $w3 | 0 | var_decls.swift:56:29:56:29 | get |
+| var_decls.swift:56:29:56:29 | $w3 | 1 | var_decls.swift:56:29:56:29 | set |
+| var_decls.swift:56:29:56:29 | w3 | 0 | var_decls.swift:56:29:56:29 | get |
+| var_decls.swift:56:29:56:29 | w3 | 1 | var_decls.swift:56:29:56:29 | set |
+| var_decls.swift:57:36:57:36 | $w4 | 0 | var_decls.swift:57:36:57:36 | get |
+| var_decls.swift:57:36:57:36 | $w4 | 1 | var_decls.swift:57:36:57:36 | set |
+| var_decls.swift:57:36:57:36 | w4 | 0 | var_decls.swift:57:36:57:36 | get |
+| var_decls.swift:57:36:57:36 | w4 | 1 | var_decls.swift:57:36:57:36 | set |
diff --git a/swift/ql/test/extractor-tests/generated/decl/ConcreteVarDecl/ConcreteVarDecl_getAttachedPropertyWrapperType.expected b/swift/ql/test/extractor-tests/generated/decl/ConcreteVarDecl/ConcreteVarDecl_getAttachedPropertyWrapperType.expected
index 67bff5661b0..0212cc38f14 100644
--- a/swift/ql/test/extractor-tests/generated/decl/ConcreteVarDecl/ConcreteVarDecl_getAttachedPropertyWrapperType.expected
+++ b/swift/ql/test/extractor-tests/generated/decl/ConcreteVarDecl/ConcreteVarDecl_getAttachedPropertyWrapperType.expected
@@ -1 +1,5 @@
 | var_decls.swift:24:15:24:15 | wrapped | X<Y> |
+| var_decls.swift:54:10:54:10 | w1 | X<Int> |
+| var_decls.swift:55:24:55:24 | w2 | WrapperWithInit |
+| var_decls.swift:56:29:56:29 | w3 | WrapperWithProjected |
+| var_decls.swift:57:36:57:36 | w4 | WrapperWithProjectedAndInit |
diff --git a/swift/ql/test/extractor-tests/generated/decl/ConcreteVarDecl/ConcreteVarDecl_getParentInitializer.expected b/swift/ql/test/extractor-tests/generated/decl/ConcreteVarDecl/ConcreteVarDecl_getParentInitializer.expected
index 786b16fcab1..3f07cd825e9 100644
--- a/swift/ql/test/extractor-tests/generated/decl/ConcreteVarDecl/ConcreteVarDecl_getParentInitializer.expected
+++ b/swift/ql/test/extractor-tests/generated/decl/ConcreteVarDecl/ConcreteVarDecl_getParentInitializer.expected
@@ -1,3 +1,13 @@
 | var_decls.swift:4:7:4:7 | i | var_decls.swift:4:11:4:11 | 0 |
 | var_decls.swift:7:5:7:5 | numbers | var_decls.swift:7:15:7:18 | [...] |
 | var_decls.swift:10:12:10:12 | numbers | var_decls.swift:10:22:10:35 | [...] |
+| var_decls.swift:34:7:34:7 | wrappedValue | var_decls.swift:34:28:34:28 | 42 |
+| var_decls.swift:35:7:35:7 | projectedValue | var_decls.swift:35:31:35:31 | false |
+| var_decls.swift:54:10:54:10 | _w1 | var_decls.swift:54:4:54:15 | call to init(wrappedValue:) |
+| var_decls.swift:54:10:54:10 | w1 | var_decls.swift:54:4:54:15 | call to init(wrappedValue:) |
+| var_decls.swift:55:24:55:24 | _w2 | var_decls.swift:55:4:55:29 | call to init(wrappedValue:) |
+| var_decls.swift:55:24:55:24 | w2 | var_decls.swift:55:4:55:29 | call to init(wrappedValue:) |
+| var_decls.swift:56:29:56:29 | _w3 | var_decls.swift:56:4:56:34 | call to init(wrappedValue:projectedValue:) |
+| var_decls.swift:56:29:56:29 | w3 | var_decls.swift:56:4:56:34 | call to init(wrappedValue:projectedValue:) |
+| var_decls.swift:57:36:57:36 | _w4 | var_decls.swift:57:4:57:41 | call to init(wrappedValue:) |
+| var_decls.swift:57:36:57:36 | w4 | var_decls.swift:57:4:57:41 | call to init(wrappedValue:) |
diff --git a/swift/ql/test/extractor-tests/generated/decl/ConcreteVarDecl/ConcreteVarDecl_getParentPattern.expected b/swift/ql/test/extractor-tests/generated/decl/ConcreteVarDecl/ConcreteVarDecl_getParentPattern.expected
index 8e15539394a..67df53f0cce 100644
--- a/swift/ql/test/extractor-tests/generated/decl/ConcreteVarDecl/ConcreteVarDecl_getParentPattern.expected
+++ b/swift/ql/test/extractor-tests/generated/decl/ConcreteVarDecl/ConcreteVarDecl_getParentPattern.expected
@@ -5,3 +5,18 @@
 | var_decls.swift:20:7:20:7 | wrappedValue | var_decls.swift:20:7:20:21 | ... as ... |
 | var_decls.swift:24:15:24:15 | _wrapped | var_decls.swift:24:15:24:15 | ... as ... |
 | var_decls.swift:24:15:24:15 | wrapped | var_decls.swift:24:15:24:25 | ... as ... |
+| var_decls.swift:28:7:28:7 | wrappedValue | var_decls.swift:28:7:28:22 | ... as ... |
+| var_decls.swift:34:7:34:7 | wrappedValue | var_decls.swift:34:7:34:22 | ... as ... |
+| var_decls.swift:35:7:35:7 | projectedValue | var_decls.swift:35:7:35:24 | ... as ... |
+| var_decls.swift:39:7:39:7 | wrappedValue | var_decls.swift:39:7:39:22 | ... as ... |
+| var_decls.swift:40:7:40:7 | projectedValue | var_decls.swift:40:7:40:24 | ... as ... |
+| var_decls.swift:54:10:54:10 | _w1 | var_decls.swift:54:10:54:10 | ... as ... |
+| var_decls.swift:54:10:54:10 | w1 | var_decls.swift:54:10:54:10 | w1 |
+| var_decls.swift:55:24:55:24 | _w2 | var_decls.swift:55:24:55:24 | ... as ... |
+| var_decls.swift:55:24:55:24 | w2 | var_decls.swift:55:24:55:24 | w2 |
+| var_decls.swift:56:29:56:29 | $w3 | var_decls.swift:56:29:56:29 | ... as ... |
+| var_decls.swift:56:29:56:29 | _w3 | var_decls.swift:56:29:56:29 | ... as ... |
+| var_decls.swift:56:29:56:29 | w3 | var_decls.swift:56:29:56:29 | w3 |
+| var_decls.swift:57:36:57:36 | $w4 | var_decls.swift:57:36:57:36 | ... as ... |
+| var_decls.swift:57:36:57:36 | _w4 | var_decls.swift:57:36:57:36 | ... as ... |
+| var_decls.swift:57:36:57:36 | w4 | var_decls.swift:57:36:57:36 | w4 |
diff --git a/swift/ql/test/extractor-tests/generated/decl/ConcreteVarDecl/ConcreteVarDecl_getPropertyWrapperBackingVar.expected b/swift/ql/test/extractor-tests/generated/decl/ConcreteVarDecl/ConcreteVarDecl_getPropertyWrapperBackingVar.expected
new file mode 100644
index 00000000000..b32567e0cbb
--- /dev/null
+++ b/swift/ql/test/extractor-tests/generated/decl/ConcreteVarDecl/ConcreteVarDecl_getPropertyWrapperBackingVar.expected
@@ -0,0 +1,5 @@
+| var_decls.swift:24:15:24:15 | wrapped | var_decls.swift:24:15:24:15 | _wrapped |
+| var_decls.swift:54:10:54:10 | w1 | var_decls.swift:54:10:54:10 | _w1 |
+| var_decls.swift:55:24:55:24 | w2 | var_decls.swift:55:24:55:24 | _w2 |
+| var_decls.swift:56:29:56:29 | w3 | var_decls.swift:56:29:56:29 | _w3 |
+| var_decls.swift:57:36:57:36 | w4 | var_decls.swift:57:36:57:36 | _w4 |
diff --git a/swift/ql/test/extractor-tests/generated/decl/ConcreteVarDecl/ConcreteVarDecl_getPropertyWrapperBackingVarBinding.expected b/swift/ql/test/extractor-tests/generated/decl/ConcreteVarDecl/ConcreteVarDecl_getPropertyWrapperBackingVarBinding.expected
new file mode 100644
index 00000000000..d6069ccf602
--- /dev/null
+++ b/swift/ql/test/extractor-tests/generated/decl/ConcreteVarDecl/ConcreteVarDecl_getPropertyWrapperBackingVarBinding.expected
@@ -0,0 +1,5 @@
+| var_decls.swift:24:15:24:15 | wrapped | file://:0:0:0:0 | var ... = ... |
+| var_decls.swift:54:10:54:10 | w1 | file://:0:0:0:0 | var ... = ... |
+| var_decls.swift:55:24:55:24 | w2 | file://:0:0:0:0 | var ... = ... |
+| var_decls.swift:56:29:56:29 | w3 | file://:0:0:0:0 | var ... = ... |
+| var_decls.swift:57:36:57:36 | w4 | file://:0:0:0:0 | var ... = ... |
diff --git a/swift/ql/test/extractor-tests/generated/decl/ConcreteVarDecl/ConcreteVarDecl_getPropertyWrapperProjectionVar.expected b/swift/ql/test/extractor-tests/generated/decl/ConcreteVarDecl/ConcreteVarDecl_getPropertyWrapperProjectionVar.expected
new file mode 100644
index 00000000000..720938bab9b
--- /dev/null
+++ b/swift/ql/test/extractor-tests/generated/decl/ConcreteVarDecl/ConcreteVarDecl_getPropertyWrapperProjectionVar.expected
@@ -0,0 +1,2 @@
+| var_decls.swift:56:29:56:29 | w3 | var_decls.swift:56:29:56:29 | $w3 |
+| var_decls.swift:57:36:57:36 | w4 | var_decls.swift:57:36:57:36 | $w4 |
diff --git a/swift/ql/test/extractor-tests/generated/decl/ConcreteVarDecl/ConcreteVarDecl_getPropertyWrapperProjectionVarBinding.expected b/swift/ql/test/extractor-tests/generated/decl/ConcreteVarDecl/ConcreteVarDecl_getPropertyWrapperProjectionVarBinding.expected
new file mode 100644
index 00000000000..cb47a922746
--- /dev/null
+++ b/swift/ql/test/extractor-tests/generated/decl/ConcreteVarDecl/ConcreteVarDecl_getPropertyWrapperProjectionVarBinding.expected
@@ -0,0 +1,2 @@
+| var_decls.swift:56:29:56:29 | w3 | file://:0:0:0:0 | var ... = ... |
+| var_decls.swift:57:36:57:36 | w4 | file://:0:0:0:0 | var ... = ... |
diff --git a/swift/ql/test/extractor-tests/generated/decl/ConcreteVarDecl/var_decls.swift b/swift/ql/test/extractor-tests/generated/decl/ConcreteVarDecl/var_decls.swift
index 37c145a5a42..0bb5dc93edd 100644
--- a/swift/ql/test/extractor-tests/generated/decl/ConcreteVarDecl/var_decls.swift
+++ b/swift/ql/test/extractor-tests/generated/decl/ConcreteVarDecl/var_decls.swift
@@ -23,3 +23,36 @@ struct Y {
 struct Wrapped {
     @X @Y var wrapped : Int
 }
+
+@propertyWrapper struct WrapperWithInit {
+  var wrappedValue : Int
+
+  init(wrappedValue: Int) { self.wrappedValue = wrappedValue }
+}
+
+@propertyWrapper struct WrapperWithProjected {
+  var wrappedValue : Int = 42
+  var projectedValue : Bool = false
+}
+
+@propertyWrapper struct WrapperWithProjectedAndInit {
+  var wrappedValue : Int
+  var projectedValue : Bool
+
+  init(wrappedValue: Int) {
+    self.wrappedValue = wrappedValue
+    self.projectedValue = false
+  }
+
+  init(projectedValue: Bool) {
+    self.wrappedValue = 0
+    self.projectedValue = projectedValue
+  }
+}
+
+func f3() {
+  @X var w1 = 1
+  @WrapperWithInit var w2 = 2
+  @WrapperWithProjected var w3 = 3
+  @WrapperWithProjectedAndInit var w4 = 4
+}
diff --git a/swift/ql/test/extractor-tests/generated/decl/ParamDecl/ParamDecl.expected b/swift/ql/test/extractor-tests/generated/decl/ParamDecl/ParamDecl.expected
index ec27bd5592c..d59229fc961 100644
--- a/swift/ql/test/extractor-tests/generated/decl/ParamDecl/ParamDecl.expected
+++ b/swift/ql/test/extractor-tests/generated/decl/ParamDecl/ParamDecl.expected
@@ -1,3 +1,5 @@
+| file://:0:0:0:0 | x | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | Int | getName: | x | getType: | Int | isInout: | no |
+| file://:0:0:0:0 | y | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | Int | getName: | y | getType: | Int | isInout: | no |
 | param_decls.swift:1:10:1:13 | _ | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | Int | getName: | _ | getType: | Int | isInout: | no |
 | param_decls.swift:1:18:1:29 | y | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | Double | getName: | y | getType: | Double | isInout: | yes |
 | param_decls.swift:2:10:2:13 | _ | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | Int | getName: | _ | getType: | Int | isInout: | no |
@@ -16,3 +18,46 @@
 | param_decls.swift:12:13:12:22 | s | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | String | getName: | s | getType: | String | isInout: | yes |
 | param_decls.swift:13:13:13:22 | s | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | String | getName: | s | getType: | String | isInout: | yes |
 | param_decls.swift:14:26:14:26 | $0 | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | Int | getName: | $0 | getType: | Int | isInout: | no |
+| param_decls.swift:17:25:17:25 | self | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | Wrapper | getName: | self | getType: | Wrapper | isInout: | yes |
+| param_decls.swift:17:25:17:25 | self | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | Wrapper | getName: | self | getType: | Wrapper | isInout: | yes |
+| param_decls.swift:17:25:17:25 | wrappedValue | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | Int | getName: | wrappedValue | getType: | Int | isInout: | no |
+| param_decls.swift:18:9:18:9 | self | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | Wrapper | getName: | self | getType: | Wrapper | isInout: | no |
+| param_decls.swift:18:9:18:9 | self | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | Wrapper | getName: | self | getType: | Wrapper | isInout: | yes |
+| param_decls.swift:18:9:18:9 | self | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | Wrapper | getName: | self | getType: | Wrapper | isInout: | yes |
+| param_decls.swift:18:9:18:9 | value | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | Int | getName: | value | getType: | Int | isInout: | no |
+| param_decls.swift:22:9:22:9 | self | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | WrapperWithInit | getName: | self | getType: | WrapperWithInit | isInout: | no |
+| param_decls.swift:22:9:22:9 | self | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | WrapperWithInit | getName: | self | getType: | WrapperWithInit | isInout: | yes |
+| param_decls.swift:22:9:22:9 | self | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | WrapperWithInit | getName: | self | getType: | WrapperWithInit | isInout: | yes |
+| param_decls.swift:22:9:22:9 | value | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | Int | getName: | value | getType: | Int | isInout: | no |
+| param_decls.swift:24:5:24:5 | self | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | WrapperWithInit | getName: | self | getType: | WrapperWithInit | isInout: | yes |
+| param_decls.swift:24:10:24:24 | wrappedValue | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | Int | getName: | wrappedValue | getType: | Int | isInout: | no |
+| param_decls.swift:27:25:27:25 | projectedValue | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | Bool | getName: | projectedValue | getType: | Bool | isInout: | no |
+| param_decls.swift:27:25:27:25 | self | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | WrapperWithProjected | getName: | self | getType: | WrapperWithProjected | isInout: | yes |
+| param_decls.swift:27:25:27:25 | self | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | WrapperWithProjected | getName: | self | getType: | WrapperWithProjected | isInout: | yes |
+| param_decls.swift:27:25:27:25 | wrappedValue | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | Int | getName: | wrappedValue | getType: | Int | isInout: | no |
+| param_decls.swift:28:9:28:9 | self | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | WrapperWithProjected | getName: | self | getType: | WrapperWithProjected | isInout: | no |
+| param_decls.swift:28:9:28:9 | self | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | WrapperWithProjected | getName: | self | getType: | WrapperWithProjected | isInout: | yes |
+| param_decls.swift:28:9:28:9 | self | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | WrapperWithProjected | getName: | self | getType: | WrapperWithProjected | isInout: | yes |
+| param_decls.swift:28:9:28:9 | value | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | Int | getName: | value | getType: | Int | isInout: | no |
+| param_decls.swift:29:9:29:9 | self | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | WrapperWithProjected | getName: | self | getType: | WrapperWithProjected | isInout: | no |
+| param_decls.swift:29:9:29:9 | self | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | WrapperWithProjected | getName: | self | getType: | WrapperWithProjected | isInout: | yes |
+| param_decls.swift:29:9:29:9 | self | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | WrapperWithProjected | getName: | self | getType: | WrapperWithProjected | isInout: | yes |
+| param_decls.swift:29:9:29:9 | value | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | Bool | getName: | value | getType: | Bool | isInout: | no |
+| param_decls.swift:33:9:33:9 | self | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | WrapperWithProjectedAndInit | getName: | self | getType: | WrapperWithProjectedAndInit | isInout: | no |
+| param_decls.swift:33:9:33:9 | self | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | WrapperWithProjectedAndInit | getName: | self | getType: | WrapperWithProjectedAndInit | isInout: | yes |
+| param_decls.swift:33:9:33:9 | self | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | WrapperWithProjectedAndInit | getName: | self | getType: | WrapperWithProjectedAndInit | isInout: | yes |
+| param_decls.swift:33:9:33:9 | value | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | Int | getName: | value | getType: | Int | isInout: | no |
+| param_decls.swift:34:9:34:9 | self | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | WrapperWithProjectedAndInit | getName: | self | getType: | WrapperWithProjectedAndInit | isInout: | no |
+| param_decls.swift:34:9:34:9 | self | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | WrapperWithProjectedAndInit | getName: | self | getType: | WrapperWithProjectedAndInit | isInout: | yes |
+| param_decls.swift:34:9:34:9 | self | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | WrapperWithProjectedAndInit | getName: | self | getType: | WrapperWithProjectedAndInit | isInout: | yes |
+| param_decls.swift:34:9:34:9 | value | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | Bool | getName: | value | getType: | Bool | isInout: | no |
+| param_decls.swift:36:5:36:5 | self | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | WrapperWithProjectedAndInit | getName: | self | getType: | WrapperWithProjectedAndInit | isInout: | yes |
+| param_decls.swift:36:10:36:24 | wrappedValue | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | Int | getName: | wrappedValue | getType: | Int | isInout: | no |
+| param_decls.swift:41:5:41:5 | self | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | WrapperWithProjectedAndInit | getName: | self | getType: | WrapperWithProjectedAndInit | isInout: | yes |
+| param_decls.swift:41:10:41:26 | projectedValue | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | Bool | getName: | projectedValue | getType: | Bool | isInout: | no |
+| param_decls.swift:48:18:48:22 | p1 | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | Int | getName: | p1 | getType: | Int | isInout: | no |
+| param_decls.swift:49:26:49:30 | p2 | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | Int | getName: | p2 | getType: | Int | isInout: | no |
+| param_decls.swift:50:31:50:31 | value | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | Bool | getName: | value | getType: | Bool | isInout: | no |
+| param_decls.swift:50:31:50:35 | p3 | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | Int | getName: | p3 | getType: | Int | isInout: | no |
+| param_decls.swift:51:38:51:38 | value | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | Bool | getName: | value | getType: | Bool | isInout: | no |
+| param_decls.swift:51:38:51:42 | p4 | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | Int | getName: | p4 | getType: | Int | isInout: | no |
diff --git a/swift/ql/test/extractor-tests/generated/decl/ParamDecl/ParamDecl_getAttachedPropertyWrapperType.expected b/swift/ql/test/extractor-tests/generated/decl/ParamDecl/ParamDecl_getAttachedPropertyWrapperType.expected
index e69de29bb2d..0e5bd101964 100644
--- a/swift/ql/test/extractor-tests/generated/decl/ParamDecl/ParamDecl_getAttachedPropertyWrapperType.expected
+++ b/swift/ql/test/extractor-tests/generated/decl/ParamDecl/ParamDecl_getAttachedPropertyWrapperType.expected
@@ -0,0 +1,4 @@
+| param_decls.swift:48:18:48:22 | p1 | Wrapper |
+| param_decls.swift:49:26:49:30 | p2 | WrapperWithInit |
+| param_decls.swift:50:31:50:35 | p3 | WrapperWithProjected |
+| param_decls.swift:51:38:51:42 | p4 | WrapperWithProjectedAndInit |
diff --git a/swift/ql/test/extractor-tests/generated/decl/ParamDecl/ParamDecl_getPropertyWrapperBackingVar.expected b/swift/ql/test/extractor-tests/generated/decl/ParamDecl/ParamDecl_getPropertyWrapperBackingVar.expected
new file mode 100644
index 00000000000..6595e3ae3ba
--- /dev/null
+++ b/swift/ql/test/extractor-tests/generated/decl/ParamDecl/ParamDecl_getPropertyWrapperBackingVar.expected
@@ -0,0 +1,4 @@
+| param_decls.swift:48:18:48:22 | p1 | param_decls.swift:48:18:48:18 | _p1 |
+| param_decls.swift:49:26:49:30 | p2 | param_decls.swift:49:26:49:26 | _p2 |
+| param_decls.swift:50:31:50:35 | p3 | file://:0:0:0:0 | _p3 |
+| param_decls.swift:51:38:51:42 | p4 | file://:0:0:0:0 | _p4 |
diff --git a/swift/ql/test/extractor-tests/generated/decl/ParamDecl/ParamDecl_getPropertyWrapperBackingVarBinding.expected b/swift/ql/test/extractor-tests/generated/decl/ParamDecl/ParamDecl_getPropertyWrapperBackingVarBinding.expected
new file mode 100644
index 00000000000..b3dc664e1db
--- /dev/null
+++ b/swift/ql/test/extractor-tests/generated/decl/ParamDecl/ParamDecl_getPropertyWrapperBackingVarBinding.expected
@@ -0,0 +1,2 @@
+| param_decls.swift:48:18:48:22 | p1 | file://:0:0:0:0 | var ... = ... |
+| param_decls.swift:49:26:49:30 | p2 | file://:0:0:0:0 | var ... = ... |
diff --git a/swift/ql/test/extractor-tests/generated/decl/ParamDecl/ParamDecl_getPropertyWrapperLocalWrappedVar.expected b/swift/ql/test/extractor-tests/generated/decl/ParamDecl/ParamDecl_getPropertyWrapperLocalWrappedVar.expected
new file mode 100644
index 00000000000..b58494d1f8d
--- /dev/null
+++ b/swift/ql/test/extractor-tests/generated/decl/ParamDecl/ParamDecl_getPropertyWrapperLocalWrappedVar.expected
@@ -0,0 +1,4 @@
+| param_decls.swift:48:18:48:22 | p1 | param_decls.swift:48:18:48:18 | p1 |
+| param_decls.swift:49:26:49:30 | p2 | param_decls.swift:49:26:49:26 | p2 |
+| param_decls.swift:50:31:50:35 | p3 | param_decls.swift:50:31:50:31 | p3 |
+| param_decls.swift:51:38:51:42 | p4 | param_decls.swift:51:38:51:38 | p4 |
diff --git a/swift/ql/test/extractor-tests/generated/decl/ParamDecl/ParamDecl_getPropertyWrapperLocalWrappedVarBinding.expected b/swift/ql/test/extractor-tests/generated/decl/ParamDecl/ParamDecl_getPropertyWrapperLocalWrappedVarBinding.expected
new file mode 100644
index 00000000000..e69de29bb2d
diff --git a/swift/ql/test/extractor-tests/generated/decl/ParamDecl/ParamDecl_getPropertyWrapperProjectionVar.expected b/swift/ql/test/extractor-tests/generated/decl/ParamDecl/ParamDecl_getPropertyWrapperProjectionVar.expected
new file mode 100644
index 00000000000..99679a1c64b
--- /dev/null
+++ b/swift/ql/test/extractor-tests/generated/decl/ParamDecl/ParamDecl_getPropertyWrapperProjectionVar.expected
@@ -0,0 +1,2 @@
+| param_decls.swift:50:31:50:35 | p3 | param_decls.swift:50:31:50:31 | $p3 |
+| param_decls.swift:51:38:51:42 | p4 | param_decls.swift:51:38:51:38 | $p4 |
diff --git a/swift/ql/test/extractor-tests/generated/decl/ParamDecl/ParamDecl_getPropertyWrapperProjectionVarBinding.expected b/swift/ql/test/extractor-tests/generated/decl/ParamDecl/ParamDecl_getPropertyWrapperProjectionVarBinding.expected
new file mode 100644
index 00000000000..0ebae7b813a
--- /dev/null
+++ b/swift/ql/test/extractor-tests/generated/decl/ParamDecl/ParamDecl_getPropertyWrapperProjectionVarBinding.expected
@@ -0,0 +1,2 @@
+| param_decls.swift:50:31:50:35 | p3 | file://:0:0:0:0 | var ... = ... |
+| param_decls.swift:51:38:51:42 | p4 | file://:0:0:0:0 | var ... = ... |
diff --git a/swift/ql/test/extractor-tests/generated/decl/ParamDecl/param_decls.swift b/swift/ql/test/extractor-tests/generated/decl/ParamDecl/param_decls.swift
index 72b47ed2c60..aa001dfeca7 100644
--- a/swift/ql/test/extractor-tests/generated/decl/ParamDecl/param_decls.swift
+++ b/swift/ql/test/extractor-tests/generated/decl/ParamDecl/param_decls.swift
@@ -13,3 +13,40 @@ func closures() {
   let y = {(s: inout String) -> String in ""}
   let z : (Int) -> Int = { $0 + 1 }
 }
+
+@propertyWrapper struct Wrapper {
+    var wrappedValue : Int = 42
+}
+
+@propertyWrapper struct WrapperWithInit {
+    var wrappedValue : Int
+
+    init(wrappedValue: Int) { self.wrappedValue = wrappedValue }
+}
+
+@propertyWrapper struct WrapperWithProjected {
+    var wrappedValue : Int = 42
+    var projectedValue : Bool = false
+}
+
+@propertyWrapper struct WrapperWithProjectedAndInit {
+    var wrappedValue : Int
+    var projectedValue : Bool
+
+    init(wrappedValue: Int) {
+        self.wrappedValue = wrappedValue
+        self.projectedValue = false
+    }
+
+    init(projectedValue: Bool) {
+        self.wrappedValue = 0
+        self.projectedValue = projectedValue
+    }
+}
+
+func f2(
+        @Wrapper p1: Int,
+        @WrapperWithInit p2: Int,
+        @WrapperWithProjected p3: Int,
+        @WrapperWithProjectedAndInit p4: Int
+) {}

From be60a871a316862adb5958a06683c4f623685af1 Mon Sep 17 00:00:00 2001
From: Nick Rolfe <nickrolfe@github.com>
Date: Fri, 11 Nov 2022 12:01:23 +0000
Subject: [PATCH 0191/1420] Ruby: tweak comment

---
 ruby/ql/lib/codeql/ruby/Concepts.qll | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/ruby/ql/lib/codeql/ruby/Concepts.qll b/ruby/ql/lib/codeql/ruby/Concepts.qll
index a42fa354660..54eee4e3e0a 100644
--- a/ruby/ql/lib/codeql/ruby/Concepts.qll
+++ b/ruby/ql/lib/codeql/ruby/Concepts.qll
@@ -17,7 +17,7 @@ private import codeql.ruby.ApiGraphs
  * Often, it is worthy of an alert if a SQL statement is constructed such that
  * executing it would be a security risk.
  *
- * If it is important that the SQL statement is indeed executed, use `SqlExecution`.
+ * If it is important that the SQL statement is executed, use `SqlExecution`.
  *
  * Extend this class to refine existing API models. If you want to model new APIs,
  * extend `SqlConstruction::Range` instead.
@@ -35,7 +35,7 @@ module SqlConstruction {
    * Often, it is worthy of an alert if a SQL statement is constructed such that
    * executing it would be a security risk.
    *
-   * If it is important that the SQL statement is indeed executed, use `SqlExecution`.
+   * If it is important that the SQL statement is executed, use `SqlExecution`.
    *
    * Extend this class to model new APIs. If you want to refine existing API models,
    * extend `SqlConstruction` instead.

From f659ee3e0be655385dcaf001fb219b86ea6624bf Mon Sep 17 00:00:00 2001
From: Gustav <grddev@gmail.com>
Date: Fri, 11 Nov 2022 13:07:30 +0100
Subject: [PATCH 0192/1420] Go: Optimize trap.Writer by buffering gzip writes

The TRAP writer already buffers writes before emitting to file, but running gzip compression is also fairly costly (especially if you only do it a couple of bytes at a time). Thus, this injects another buffer that collects the emitted tuples in string form, and only triggers gzip compression once the buffer is full. In my local testing, this buffering was actually more beneficial than the one between gzip and file (likely because the gzip writer already emits data in chunks), but that one is still beneficial.
---
 go/extractor/trap/trapwriter.go | 34 ++++++++++++++++++++-------------
 1 file changed, 21 insertions(+), 13 deletions(-)

diff --git a/go/extractor/trap/trapwriter.go b/go/extractor/trap/trapwriter.go
index 4c0911e24d7..2a3944705bf 100644
--- a/go/extractor/trap/trapwriter.go
+++ b/go/extractor/trap/trapwriter.go
@@ -19,7 +19,8 @@ import (
 // A Writer provides methods for writing data to a TRAP file
 type Writer struct {
 	zip             *gzip.Writer
-	w               *bufio.Writer
+	wzip            *bufio.Writer
+	wfile           *bufio.Writer
 	file            *os.File
 	Labeler         *Labeler
 	path            string
@@ -54,11 +55,13 @@ func NewWriter(path string, pkg *packages.Package) (*Writer, error) {
 	if err != nil {
 		return nil, err
 	}
-	bufioWriter := bufio.NewWriter(tmpFile)
-	zipWriter := gzip.NewWriter(bufioWriter)
+	bufioFileWriter := bufio.NewWriter(tmpFile)
+	zipWriter := gzip.NewWriter(bufioFileWriter)
+	bufioZipWriter := bufio.NewWriter(zipWriter)
 	tw := &Writer{
 		zipWriter,
-		bufioWriter,
+		bufioZipWriter,
+		bufioFileWriter,
 		tmpFile,
 		nil,
 		path,
@@ -88,13 +91,18 @@ func trapFolder() (string, error) {
 
 // Close the underlying file writer
 func (tw *Writer) Close() error {
-	err := tw.zip.Close()
+	err := tw.wzip.Flush()
+	if err != nil {
+		// throw away file close error
+		tw.file.Close()
+	}
+	err = tw.zip.Close()
 	if err != nil {
 		// return zip-close error, but ignore file-close error
 		tw.file.Close()
 		return err
 	}
-	err = tw.w.Flush()
+	err = tw.wfile.Flush()
 	if err != nil {
 		// throw away close error because write errors are likely to be more important
 		tw.file.Close()
@@ -145,24 +153,24 @@ func capStringLength(s string) string {
 
 // Emit writes out a tuple of values for the given `table`
 func (tw *Writer) Emit(table string, values []interface{}) error {
-	fmt.Fprintf(tw.zip, "%s(", table)
+	fmt.Fprintf(tw.wzip, "%s(", table)
 	for i, value := range values {
 		if i > 0 {
-			fmt.Fprint(tw.zip, ", ")
+			fmt.Fprint(tw.wzip, ", ")
 		}
 		switch value := value.(type) {
 		case Label:
-			fmt.Fprint(tw.zip, value.id)
+			fmt.Fprint(tw.wzip, value.id)
 		case string:
-			fmt.Fprintf(tw.zip, "\"%s\"", escapeString(capStringLength(value)))
+			fmt.Fprintf(tw.wzip, "\"%s\"", escapeString(capStringLength(value)))
 		case int:
-			fmt.Fprintf(tw.zip, "%d", value)
+			fmt.Fprintf(tw.wzip, "%d", value)
 		case float64:
-			fmt.Fprintf(tw.zip, "%e", value)
+			fmt.Fprintf(tw.wzip, "%e", value)
 		default:
 			return errors.New("Cannot emit value")
 		}
 	}
-	fmt.Fprintf(tw.zip, ")\n")
+	fmt.Fprintf(tw.wzip, ")\n")
 	return nil
 }

From 3e5e695325cbc6a4db89a8f789551c0c5dbb96cf Mon Sep 17 00:00:00 2001
From: "github-actions[bot]"
 <41898282+github-actions[bot]@users.noreply.github.com>
Date: Fri, 11 Nov 2022 12:36:19 +0000
Subject: [PATCH 0193/1420] JS: Bump patch version of ML-powered library and
 query packs

---
 .../ql/experimental/adaptivethreatmodeling/lib/qlpack.yml       | 2 +-
 .../ql/experimental/adaptivethreatmodeling/src/qlpack.yml       | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/javascript/ql/experimental/adaptivethreatmodeling/lib/qlpack.yml b/javascript/ql/experimental/adaptivethreatmodeling/lib/qlpack.yml
index dda5982f82e..e0571f38255 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/lib/qlpack.yml
+++ b/javascript/ql/experimental/adaptivethreatmodeling/lib/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/javascript-experimental-atm-lib
-version: 0.4.0
+version: 0.4.1
 extractor: javascript
 library: true
 groups:
diff --git a/javascript/ql/experimental/adaptivethreatmodeling/src/qlpack.yml b/javascript/ql/experimental/adaptivethreatmodeling/src/qlpack.yml
index a25ef767105..cab87ce0e33 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/src/qlpack.yml
+++ b/javascript/ql/experimental/adaptivethreatmodeling/src/qlpack.yml
@@ -1,6 +1,6 @@
 name: codeql/javascript-experimental-atm-queries
 language: javascript
-version: 0.4.0
+version: 0.4.1
 suites: codeql-suites
 defaultSuiteFile: codeql-suites/javascript-atm-code-scanning.qls
 groups:

From b5b69e93575616630152eb67ac6c8c2741030d5e Mon Sep 17 00:00:00 2001
From: "github-actions[bot]"
 <41898282+github-actions[bot]@users.noreply.github.com>
Date: Fri, 11 Nov 2022 12:48:00 +0000
Subject: [PATCH 0194/1420] JS: Bump version of ML-powered library and query
 packs to 0.4.2

---
 .../ql/experimental/adaptivethreatmodeling/lib/qlpack.yml       | 2 +-
 .../ql/experimental/adaptivethreatmodeling/src/qlpack.yml       | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/javascript/ql/experimental/adaptivethreatmodeling/lib/qlpack.yml b/javascript/ql/experimental/adaptivethreatmodeling/lib/qlpack.yml
index e0571f38255..fb53f54ded7 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/lib/qlpack.yml
+++ b/javascript/ql/experimental/adaptivethreatmodeling/lib/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/javascript-experimental-atm-lib
-version: 0.4.1
+version: 0.4.2
 extractor: javascript
 library: true
 groups:
diff --git a/javascript/ql/experimental/adaptivethreatmodeling/src/qlpack.yml b/javascript/ql/experimental/adaptivethreatmodeling/src/qlpack.yml
index cab87ce0e33..725beadcb0e 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/src/qlpack.yml
+++ b/javascript/ql/experimental/adaptivethreatmodeling/src/qlpack.yml
@@ -1,6 +1,6 @@
 name: codeql/javascript-experimental-atm-queries
 language: javascript
-version: 0.4.1
+version: 0.4.2
 suites: codeql-suites
 defaultSuiteFile: codeql-suites/javascript-atm-code-scanning.qls
 groups:

From 131fc986b48d823cfd724fdecc196194395f4058 Mon Sep 17 00:00:00 2001
From: Taus <tausbn@github.com>
Date: Fri, 11 Nov 2022 13:49:46 +0100
Subject: [PATCH 0195/1420] Python: Apply suggestions from code review

Co-authored-by: Rasmus Wriedt Larsen <rasmuswriedtlarsen@gmail.com>
Co-authored-by: yoff <lerchedahl@gmail.com>
---
 .../python/dataflow/new/internal/ImportResolution.qll       | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/python/ql/lib/semmle/python/dataflow/new/internal/ImportResolution.qll b/python/ql/lib/semmle/python/dataflow/new/internal/ImportResolution.qll
index e1e4381519c..f1f3da84d74 100644
--- a/python/ql/lib/semmle/python/dataflow/new/internal/ImportResolution.qll
+++ b/python/ql/lib/semmle/python/dataflow/new/internal/ImportResolution.qll
@@ -35,10 +35,10 @@ private import semmle.python.dataflow.new.TypeTracker
  * 1. If `foo` is a module, and `bar` is an attribute of `foo`, then `from foo import bar` imports
  *    the attribute `bar` into the current module (binding it to the name `bar`).
  * 2. If `foo` is a package, and `bar` is a submodule of `foo`, then `from foo import bar` first imports
- *    `foo.bar`, and then attempts to locate the `bar` attribute again. In most cases, that attribute
+ *    `foo.bar`, and then reads the `bar` attribute on `foo`. In most cases, that attribute
  *    will then point to the `bar` submodule.
  *
- * Now, when in comes to how these imports are represented in the AST, things get a bit complicated.
+ * Now, when it comes to how these imports are represented in the AST, things get a bit complicated.
  * First of all, both of the above forms of imports get mapped to the same kind of AST node:
  * `Import`. An `Import` node has a sequence of names, each of which is an `Alias` node. This `Alias`
  * node represents the `x as y` bit of each imported module.
@@ -230,7 +230,7 @@ module ImportResolution {
       module_reexport(p, attr_name, m)
     )
     or
-    // Submodules that are implicitly defined when importing via `from ... import ...` statements.
+    // Submodules that are implicitly defined whith relative imports of the form `from .foo import ...`.
     // In practice, we create a definition for each module in a package, even if it is not imported.
     exists(string submodule, Module package |
       SsaSource::init_module_submodule_defn(result.asVar().getSourceVariable(),

From 612624d241b5454d79286010fddf70149c503122 Mon Sep 17 00:00:00 2001
From: Jeroen Ketema <jketema@github.com>
Date: Fri, 11 Nov 2022 13:53:49 +0100
Subject: [PATCH 0196/1420] C++: Recognize `basic_string::iterator` as an
 iterator

---
 .../semmle/code/cpp/models/implementations/StdString.qll | 9 +++++++++
 1 file changed, 9 insertions(+)

diff --git a/cpp/ql/lib/semmle/code/cpp/models/implementations/StdString.qll b/cpp/ql/lib/semmle/code/cpp/models/implementations/StdString.qll
index cf3ecb5e892..9ac92597b1a 100644
--- a/cpp/ql/lib/semmle/code/cpp/models/implementations/StdString.qll
+++ b/cpp/ql/lib/semmle/code/cpp/models/implementations/StdString.qll
@@ -15,6 +15,15 @@ private class StdBasicString extends ClassTemplateInstantiation {
   StdBasicString() { this.hasQualifiedName(["std", "bsl"], "basic_string") }
 }
 
+/**
+ * The `std::basic_string::iterator` declaration.
+ */
+private class StdBasicStringIterator extends Iterator, Type {
+  StdBasicStringIterator() {
+    this.getEnclosingElement() instanceof StdBasicString and this.hasName("iterator")
+  }
+}
+
 /**
  * A `std::string` function for which taint should be propagated.
  */

From 7f790432cc4a34d0ca1c4695a51e899458b133ef Mon Sep 17 00:00:00 2001
From: Taus <tausbn@github.com>
Date: Fri, 11 Nov 2022 14:40:58 +0100
Subject: [PATCH 0197/1420] Python: More review suggestions

I could have sworn I added all of them to the batch, but somehow these slipped through.

Co-authored-by: yoff <lerchedahl@gmail.com>
Co-authored-by: Rasmus Wriedt Larsen <rasmuswriedtlarsen@gmail.com>
---
 .../dataflow/new/internal/ImportResolution.qll |  2 +-
 .../import-resolution/importflow.ql            |  2 +-
 .../experimental/import-resolution/main.py     | 18 ++++++++++++++++++
 3 files changed, 20 insertions(+), 2 deletions(-)

diff --git a/python/ql/lib/semmle/python/dataflow/new/internal/ImportResolution.qll b/python/ql/lib/semmle/python/dataflow/new/internal/ImportResolution.qll
index f1f3da84d74..823bb34b9e2 100644
--- a/python/ql/lib/semmle/python/dataflow/new/internal/ImportResolution.qll
+++ b/python/ql/lib/semmle/python/dataflow/new/internal/ImportResolution.qll
@@ -78,7 +78,7 @@ module ImportResolution {
     )
     or
     exists(Alias a |
-      defn.asExpr() = [a.getValue(), a.getValue().(ImportMember).getModule()] and
+      defn.asExpr() = [a.getValue().(ImportExpr), a.getValue().(ImportMember).getModule()] and
       a.getAsname().(Name).getId() = name and
       defn.getScope() = m
     )
diff --git a/python/ql/test/experimental/import-resolution/importflow.ql b/python/ql/test/experimental/import-resolution/importflow.ql
index 0e7d300d328..9439ffe0693 100644
--- a/python/ql/test/experimental/import-resolution/importflow.ql
+++ b/python/ql/test/experimental/import-resolution/importflow.ql
@@ -27,7 +27,7 @@ private class ImportConfiguration extends DataFlow::Configuration {
 class ResolutionTest extends InlineExpectationsTest {
   ResolutionTest() { this = "ResolutionTest" }
 
-  override string getARelevantTag() { result = "import" }
+  override string getARelevantTag() { result = "prints" }
 
   override predicate hasActualResult(Location location, string element, string tag, string value) {
     exists(DataFlow::PathNode source, DataFlow::PathNode sink, ImportConfiguration config |
diff --git a/python/ql/test/experimental/import-resolution/main.py b/python/ql/test/experimental/import-resolution/main.py
index 827bb78896b..801b081df0c 100644
--- a/python/ql/test/experimental/import-resolution/main.py
+++ b/python/ql/test/experimental/import-resolution/main.py
@@ -1,4 +1,22 @@
 #! /usr/bin/env python3
+"""
+A slightly complicated test setup. I wanted to both make sure I captured
+the semantics of Python and also the fact that the kinds of global flow
+we expect to see are indeed present.
+
+The code is executable, and prints out both when the execution reaches
+certain files, and also what values are assigned to the various
+attributes that are referenced throughout the program. These values are
+validated in the test as well.
+
+My original version used introspection to avoid referencing attributes
+directly (thus enabling better error diagnostics), but unfortunately
+that made it so that the model couldn't follow what was going on.
+
+The current setup is a bit clunky (and Python's scoping rules makes it
+especially so -- cf. the explicit calls to `globals` and `locals`), but
+I think it does the job okay.
+"""
 
 from __future__ import print_function
 import sys

From b540eb094cb5ba7aea5f795ce4751f49106920ce Mon Sep 17 00:00:00 2001
From: Taus <tausbn@github.com>
Date: Fri, 11 Nov 2022 13:36:55 +0000
Subject: [PATCH 0198/1420] Python: Various small fixes

- Swaps `module_reference_in_scope` and `module_name_in_scope`.
- uses `AttrRead::accesses` instead of `getObject`, etc.
- Removes an errant `none()`.
- Expands the QLDoc for some of the predicates.
---
 .../new/internal/ImportResolution.qll         | 44 ++++++++++++-------
 1 file changed, 28 insertions(+), 16 deletions(-)

diff --git a/python/ql/lib/semmle/python/dataflow/new/internal/ImportResolution.qll b/python/ql/lib/semmle/python/dataflow/new/internal/ImportResolution.qll
index 823bb34b9e2..3a9623dfb53 100644
--- a/python/ql/lib/semmle/python/dataflow/new/internal/ImportResolution.qll
+++ b/python/ql/lib/semmle/python/dataflow/new/internal/ImportResolution.qll
@@ -34,9 +34,11 @@ private import semmle.python.dataflow.new.TypeTracker
  *
  * 1. If `foo` is a module, and `bar` is an attribute of `foo`, then `from foo import bar` imports
  *    the attribute `bar` into the current module (binding it to the name `bar`).
- * 2. If `foo` is a package, and `bar` is a submodule of `foo`, then `from foo import bar` first imports
- *    `foo.bar`, and then reads the `bar` attribute on `foo`. In most cases, that attribute
- *    will then point to the `bar` submodule.
+ * 2. If `foo` is a package, and `bar` is already defined in `foo/__init__.py`,
+ *    that value will be imported. If it is not defined, and `bar` is a submodule of `foo`, then
+ *    `bar` is imported to `foo`, and the `bar` submodule imported.
+ *    Note: We don't currently model if the attribute is already defined in `__init__.py`
+ *    and always assume that the submodule will be used.
  *
  * Now, when it comes to how these imports are represented in the AST, things get a bit complicated.
  * First of all, both of the above forms of imports get mapped to the same kind of AST node:
@@ -58,7 +60,7 @@ private import semmle.python.dataflow.new.TypeTracker
  *   package, or the `bar` subpackage of the `foo` package. The practical difference here is the name of
  *   the module that is imported, as the package `foo.bar` will have the "name" `foo.bar.__init__`,
  *   corresponding to the fact that the code that is executed is in the `__init__.py` file of the
- *   `bar` package.
+ *   `bar` subpackage.
  */
 module ImportResolution {
   /**
@@ -168,8 +170,17 @@ module ImportResolution {
     isPreferredModuleForName(result.getFile(), i.getImportedModuleName())
   }
 
-  /** Gets a data-flow node that may be a reference to a module with the name `module_name`. */
-  DataFlow::Node getReferenceToModuleName(string module_name) {
+  /**
+   * Gets a data-flow node that may be a reference to a module with the name `module_name`.
+   *
+   * This is a helper predicate for `getImmediateModuleReference`. It captures the fact that in an
+   * import such as `import foo`,
+   * - `foo` may simply be the name of a module, or
+   * - `foo` may be the name of a package (in which case its name is actually `foo.__init__`), or
+   * - `foo` may be a module name that has been added to `sys.modules` (in which case its actual name can
+   *   be anything, for instance `os.path` is either `posixpath` or `ntpath`).
+   */
+  private DataFlow::Node getReferenceToModuleName(string module_name) {
     // Regular import statements, e.g.
     // import foo    # implicitly `import foo as foo`
     // import foo as foo_alias
@@ -188,7 +199,6 @@ module ImportResolution {
     // from foo.bar import baz    # imports foo.bar.baz as baz
     // from foo.bar import baz as baz_alias    # imports foo.bar.baz as baz_alias
     exists(Import i, Alias a, ImportMember im | a = i.getAName() and im = a.getValue() |
-      i.isFromImport() and
       result.asExpr() = a.getAsname() and
       module_name = im.getModule().(ImportExpr).getImportedModuleName() + "." + im.getName()
     )
@@ -201,12 +211,15 @@ module ImportResolution {
       any(ImportMember i |
         i.getModule().(ImportExpr).getImportedModuleName() = module_name
         or
-        i.getModule().(ImportExpr).getImportedModuleName() + "." + i.getName() = module_name and
-        none()
+        i.getModule().(ImportExpr).getImportedModuleName() + "." + i.getName() = module_name
       )
   }
 
-  /** Gets a dataflow node that is an immediate reference to the module `m`. */
+  /**
+   * Gets a dataflow node that is an immediate reference to the module `m`.
+   *
+   * Because of attribute lookups, this is mutually recursive with `getModuleReference`.
+   */
   DataFlow::Node getImmediateModuleReference(Module m) {
     exists(string module_name | result = getReferenceToModuleName(module_name) |
       // Depending on whether the referenced module is a package or not, we may need to add a
@@ -219,9 +232,8 @@ module ImportResolution {
     or
     // Reading an attribute on a module may return a submodule (or subpackage).
     exists(DataFlow::AttrRead ar, Module p, string attr_name |
-      ar.getObject() = getModuleReference(p) and
+      ar.accesses(getModuleReference(p), attr_name) and
       attr_name = any(Module m0).getFile().getStem() and
-      ar.getAttributeName() = attr_name and
       result = ar
     |
       isPreferredModuleForName(m.getFile(), p.getPackageName() + "." + attr_name + ["", ".__init__"])
@@ -242,7 +254,7 @@ module ImportResolution {
 
   /** Join-order helper for `getModuleReference`. */
   pragma[nomagic]
-  private predicate module_name_in_scope(DataFlow::Node node, Scope s, string name, Module m) {
+  private predicate module_reference_in_scope(DataFlow::Node node, Scope s, string name, Module m) {
     node.getScope() = s and
     node.asExpr().(Name).getId() = name and
     pragma[only_bind_into](node) = getImmediateModuleReference(pragma[only_bind_into](m))
@@ -250,7 +262,7 @@ module ImportResolution {
 
   /** Join-order helper for `getModuleReference`. */
   pragma[nomagic]
-  private predicate module_reference_in_scope(DataFlow::Node node, Scope s, string name) {
+  private predicate module_name_in_scope(DataFlow::Node node, Scope s, string name) {
     node.getScope() = s and
     exists(Name n | n = node.asExpr() |
       n.getId() = name and
@@ -277,9 +289,9 @@ module ImportResolution {
     or
     // A reference to a name that is bound to a module in an enclosing scope.
     exists(DataFlow::Node def, Scope def_scope, Scope use_scope, string name |
-      module_name_in_scope(pragma[only_bind_into](def), pragma[only_bind_into](def_scope),
+      module_reference_in_scope(pragma[only_bind_into](def), pragma[only_bind_into](def_scope),
         pragma[only_bind_into](name), pragma[only_bind_into](m)) and
-      module_reference_in_scope(result, use_scope, name) and
+      module_name_in_scope(result, use_scope, name) and
       use_scope.getEnclosingScope*() = def_scope
     )
   }

From 7d54b542b5fe304dc75ca35e5f1a46474637190b Mon Sep 17 00:00:00 2001
From: Ian Lynagh <igfoo@github.com>
Date: Fri, 11 Nov 2022 13:00:07 +0000
Subject: [PATCH 0199/1420] Kotlin: Put extractor name in a resource rather
 than generating code

---
 java/kotlin-extractor/build.py                      | 13 +++++++------
 .../src/main/kotlin/KotlinExtractorExtension.kt     |  1 +
 2 files changed, 8 insertions(+), 6 deletions(-)

diff --git a/java/kotlin-extractor/build.py b/java/kotlin-extractor/build.py
index 497e6da049e..ebca028be63 100755
--- a/java/kotlin-extractor/build.py
+++ b/java/kotlin-extractor/build.py
@@ -103,7 +103,7 @@ def compile_to_dir(srcs, classpath, java_classpath, output):
                  '-classpath', os.path.pathsep.join([output, classpath, java_classpath])] + [s for s in srcs if s.endswith(".java")])
 
 
-def compile_to_jar(build_dir, srcs, classpath, java_classpath, output):
+def compile_to_jar(build_dir, tmp_src_dir, srcs, classpath, java_classpath, output):
     class_dir = build_dir + '/classes'
 
     if os.path.exists(class_dir):
@@ -114,7 +114,7 @@ def compile_to_jar(build_dir, srcs, classpath, java_classpath, output):
 
     run_process(['jar', 'cf', output,
                  '-C', class_dir, '.',
-                 '-C', 'src/main/resources', 'META-INF'])
+                 '-C', tmp_src_dir + '/main/resources', '.'])
     shutil.rmtree(class_dir)
 
 
@@ -185,9 +185,10 @@ def compile(jars, java_jars, dependency_folder, transform_to_embeddable, output,
     include_version_folder = tmp_src_dir + '/main/kotlin/utils/versions/to_include'
     os.makedirs(include_version_folder)
 
-    with open(tmp_src_dir + '/main/kotlin/utils/ExtractorName.kt', 'w') as f:
-        f.write('package com.github.codeql\n')
-        f.write('val extractor_name: String = "' + output + '"\n')
+    resource_dir = tmp_src_dir + '/main/resources/com/github/codeql'
+    os.makedirs(resource_dir)
+    with open(resource_dir + '/extractor.name', 'w') as f:
+        f.write(output)
 
     parsed_current_version = kotlin_plugin_versions.version_string_to_tuple(
         current_version)
@@ -215,7 +216,7 @@ def compile(jars, java_jars, dependency_folder, transform_to_embeddable, output,
 
     transform_to_embeddable(srcs)
 
-    compile_to_jar(build_dir, srcs, classpath, java_classpath, output)
+    compile_to_jar(build_dir, tmp_src_dir, srcs, classpath, java_classpath, output)
 
     shutil.rmtree(tmp_src_dir)
 
diff --git a/java/kotlin-extractor/src/main/kotlin/KotlinExtractorExtension.kt b/java/kotlin-extractor/src/main/kotlin/KotlinExtractorExtension.kt
index 2ffef600476..71e1862a22e 100644
--- a/java/kotlin-extractor/src/main/kotlin/KotlinExtractorExtension.kt
+++ b/java/kotlin-extractor/src/main/kotlin/KotlinExtractorExtension.kt
@@ -132,6 +132,7 @@ class KotlinExtractorExtension(
             val compilation: Label<DbCompilation> = StringLabel("compilation")
             tw.writeCompilation_started(compilation)
             tw.writeCompilation_info(compilation, "Kotlin Compiler Version", KotlinCompilerVersion.getVersion() ?: "<unknown>")
+            val extractor_name = this::class.java.getResource("extractor.name")?.readText() ?: "<unknown>"
             tw.writeCompilation_info(compilation, "Kotlin Extractor Name", extractor_name)
             if (compilationStartTime != null) {
                 tw.writeCompilation_compiler_times(compilation, -1.0, (System.currentTimeMillis()-compilationStartTime)/1000.0)

From ce1fb4c018d93231c877cfc7d0d1c18f585ed9e6 Mon Sep 17 00:00:00 2001
From: Alex Denisov <alexdenisov@github.com>
Date: Fri, 11 Nov 2022 15:22:58 +0100
Subject: [PATCH 0200/1420] Swift: accept test changes

---
 swift/ql/test/extractor-tests/errors/Errors.expected | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/swift/ql/test/extractor-tests/errors/Errors.expected b/swift/ql/test/extractor-tests/errors/Errors.expected
index a527c7b28c1..4ecfbef31da 100644
--- a/swift/ql/test/extractor-tests/errors/Errors.expected
+++ b/swift/ql/test/extractor-tests/errors/Errors.expected
@@ -1,5 +1,5 @@
-| file://:0:0:0:0 | (no string representation) | ErrorType |
 | file://:0:0:0:0 | ... .combine(_:) | UnresolvedDotExpr |
+| file://:0:0:0:0 | <<error type>> | ErrorType |
 | overloaded.swift:6:5:6:5 | OverloadedDeclRefExpr | OverloadedDeclRefExpr |
 | unresolved.swift:5:1:5:14 | UnresolvedSpecializeExpr | UnresolvedSpecializeExpr |
 | unspecified.swift:3:1:3:23 | missing extended_type_decl from ExtensionDecl | UnspecifiedElement |

From a8a7a59ae83dda9bd5aec5a7978614ddff9fab75 Mon Sep 17 00:00:00 2001
From: Taus <tausbn@github.com>
Date: Fri, 11 Nov 2022 14:47:35 +0000
Subject: [PATCH 0201/1420] Python: Add test for attribute name clash

---
 .../experimental/import-resolution/attr_clash/__init__.py  | 6 ++++++
 .../import-resolution/attr_clash/clashing_attr.py          | 4 ++++
 .../import-resolution/attr_clash/non_clashing_submodule.py | 4 ++++
 python/ql/test/experimental/import-resolution/main.py      | 7 ++++++-
 python/ql/test/experimental/import-resolution/trace.py     | 3 +++
 5 files changed, 23 insertions(+), 1 deletion(-)
 create mode 100644 python/ql/test/experimental/import-resolution/attr_clash/__init__.py
 create mode 100644 python/ql/test/experimental/import-resolution/attr_clash/clashing_attr.py
 create mode 100644 python/ql/test/experimental/import-resolution/attr_clash/non_clashing_submodule.py

diff --git a/python/ql/test/experimental/import-resolution/attr_clash/__init__.py b/python/ql/test/experimental/import-resolution/attr_clash/__init__.py
new file mode 100644
index 00000000000..d210fbd703b
--- /dev/null
+++ b/python/ql/test/experimental/import-resolution/attr_clash/__init__.py
@@ -0,0 +1,6 @@
+from trace import *
+enter(__file__)
+
+clashing_attr = "clashing_attr"
+
+exit(__file__)
diff --git a/python/ql/test/experimental/import-resolution/attr_clash/clashing_attr.py b/python/ql/test/experimental/import-resolution/attr_clash/clashing_attr.py
new file mode 100644
index 00000000000..7544594893b
--- /dev/null
+++ b/python/ql/test/experimental/import-resolution/attr_clash/clashing_attr.py
@@ -0,0 +1,4 @@
+from trace import *
+enter(__file__)
+
+exit(__file__)
diff --git a/python/ql/test/experimental/import-resolution/attr_clash/non_clashing_submodule.py b/python/ql/test/experimental/import-resolution/attr_clash/non_clashing_submodule.py
new file mode 100644
index 00000000000..7544594893b
--- /dev/null
+++ b/python/ql/test/experimental/import-resolution/attr_clash/non_clashing_submodule.py
@@ -0,0 +1,4 @@
+from trace import *
+enter(__file__)
+
+exit(__file__)
diff --git a/python/ql/test/experimental/import-resolution/main.py b/python/ql/test/experimental/import-resolution/main.py
index 801b081df0c..d2ad1b9e337 100644
--- a/python/ql/test/experimental/import-resolution/main.py
+++ b/python/ql/test/experimental/import-resolution/main.py
@@ -35,7 +35,7 @@ import foo as foo_alias #$ imports=foo as=foo_alias
 check("foo_alias.foo_attr", foo_alias.foo_attr, "foo_attr", globals()) #$ prints=foo_attr
 
 # A reference to a reexported module
-check("foo.bar_reexported.bar_attr", foo.bar_reexported.bar_attr, "bar_attr", globals()) #$ prints=bar_attr
+check("foo.bar_reexported.bar_attr", foo.bar_reexported.bar_attr, "bar_attr", globals()) #$ MISSING: prints=bar_attr
 
 # A simple "import from" statement.
 from bar import bar_attr
@@ -73,6 +73,11 @@ if sys.version_info[0] >= 3:
     from namespace_package.namespace_module import namespace_module_attr
     check("namespace_module_attr", namespace_module_attr, "namespace_module_attr", globals()) #$ prints=namespace_module_attr
 
+
+from attr_clash import clashing_attr, non_clashing_submodule #$ imports=attr_clash.clashing_attr as=clashing_attr imports=attr_clash.non_clashing_submodule as=non_clashing_submodule
+check("clashing_attr", clashing_attr, "clashing_attr", globals()) #$ prints=clashing_attr
+check("non_clashing_submodule", non_clashing_submodule, "<module attr_clash.non_clashing_submodule>", globals())
+
 exit(__file__)
 
 print()
diff --git a/python/ql/test/experimental/import-resolution/trace.py b/python/ql/test/experimental/import-resolution/trace.py
index 04e847304e9..90d8efba3fb 100644
--- a/python/ql/test/experimental/import-resolution/trace.py
+++ b/python/ql/test/experimental/import-resolution/trace.py
@@ -24,6 +24,7 @@ def status():
     return _status
 
 def check(attr_path, actual_value, expected_value, bindings):
+    global _status
     parts = attr_path.split(".")
     base, parts = parts[0], parts[1:]
     if base not in bindings:
@@ -40,6 +41,8 @@ def check(attr_path, actual_value, expected_value, bindings):
     if val != actual_value:
         print("Error: Value at path {} and actual value are out of sync! {} != {}".format(attr_path, val, actual_value))
         _status = 1
+    if str(val).startswith("<module"):
+        val = "<module " + val.__name__ + ">"
     if val != expected_value:
         print("Error: Expected {} to be {}, got {}".format(attr_path, expected_value, val))
         _status = 1

From a08253b6d0e2f8c53332dd270250feaa29bf0741 Mon Sep 17 00:00:00 2001
From: Taus <tausbn@github.com>
Date: Fri, 11 Nov 2022 14:50:04 +0000
Subject: [PATCH 0202/1420] Python: Fix typo

---
 .../semmle/python/dataflow/new/internal/ImportResolution.qll    | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/python/ql/lib/semmle/python/dataflow/new/internal/ImportResolution.qll b/python/ql/lib/semmle/python/dataflow/new/internal/ImportResolution.qll
index 3a9623dfb53..dd92cbb7a45 100644
--- a/python/ql/lib/semmle/python/dataflow/new/internal/ImportResolution.qll
+++ b/python/ql/lib/semmle/python/dataflow/new/internal/ImportResolution.qll
@@ -242,7 +242,7 @@ module ImportResolution {
       module_reexport(p, attr_name, m)
     )
     or
-    // Submodules that are implicitly defined whith relative imports of the form `from .foo import ...`.
+    // Submodules that are implicitly defined with relative imports of the form `from .foo import ...`.
     // In practice, we create a definition for each module in a package, even if it is not imported.
     exists(string submodule, Module package |
       SsaSource::init_module_submodule_defn(result.asVar().getSourceVariable(),

From d49015a7e648c0182d425037511b1f028669512e Mon Sep 17 00:00:00 2001
From: Alex Denisov <alexdenisov@github.com>
Date: Thu, 10 Nov 2022 14:41:09 +0100
Subject: [PATCH 0203/1420] Swift: infrastructure for upgrade/downgrade scripts

---
 .github/workflows/swift.yml                   |   17 +-
 .../database-upgrade-scripts/action.yml       |   23 +
 swift/downgrades/initial/swift.dbscheme       | 2493 +++++++++++++++++
 swift/downgrades/qlpack.yml                   |    4 +
 swift/ql/lib/upgrades/initial/swift.dbscheme  | 2493 +++++++++++++++++
 5 files changed, 5029 insertions(+), 1 deletion(-)
 create mode 100644 swift/actions/database-upgrade-scripts/action.yml
 create mode 100644 swift/downgrades/initial/swift.dbscheme
 create mode 100644 swift/downgrades/qlpack.yml
 create mode 100644 swift/ql/lib/upgrades/initial/swift.dbscheme

diff --git a/.github/workflows/swift.yml b/.github/workflows/swift.yml
index 5ec691befb1..330df323de9 100644
--- a/.github/workflows/swift.yml
+++ b/.github/workflows/swift.yml
@@ -111,4 +111,19 @@ jobs:
       - uses: actions/upload-artifact@v3
         with:
           name: swift-generated-cpp-files
-          path: swift/generated-cpp-files/**
\ No newline at end of file
+          path: swift/generated-cpp-files/**
+  qlformat:
+    runs-on: ubuntu-latest
+    needs: changes
+    if: ${{ needs.changes.outputs.ql == 'true' }}
+    steps:
+      - uses: actions/checkout@v3
+      - uses: ./.github/actions/fetch-codeql
+      - name: Check QL formatting
+        run: find swift/ql "(" -name "*.ql" -or -name "*.qll" ")" -print0 | xargs -0 codeql query format --check-only
+  database-upgrade-scripts:
+    runs-on: ubuntu-latest
+    steps:
+      - uses: actions/checkout@v3
+      - uses: ./.github/actions/fetch-codeql
+      - uses: ./swift/actions/database-upgrade-scripts
diff --git a/swift/actions/database-upgrade-scripts/action.yml b/swift/actions/database-upgrade-scripts/action.yml
new file mode 100644
index 00000000000..26f95d44b8a
--- /dev/null
+++ b/swift/actions/database-upgrade-scripts/action.yml
@@ -0,0 +1,23 @@
+name: Check Swift database upgrade/downgrade scripts
+runs:
+  using: composite
+  steps:
+    - name: Check upgrade scripts
+      shell: bash
+      working-directory: swift
+      run: |
+        echo > empty.trap
+        codeql dataset import -S ql/lib/upgrades/initial/swift.dbscheme testdb empty.trap
+        codeql dataset upgrade testdb --additional-packs ql/lib
+        diff -q testdb/swift.dbscheme ql/lib/swift.dbscheme
+    - name: Check downgrade scripts
+      shell: bash
+      working-directory: swift
+      run: |
+        echo > empty.trap
+        rm -rf testdb
+        codeql dataset import -S ql/lib/swift.dbscheme testdb empty.trap
+        codeql resolve upgrades --format=lines --allow-downgrades --additional-packs downgrades \
+         --dbscheme=ql/lib/swift.dbscheme --target-dbscheme=downgrades/initial/swift.dbscheme |
+         xargs -r codeql execute upgrades testdb
+        diff -q testdb/swift.dbscheme downgrades/initial/swift.dbscheme
diff --git a/swift/downgrades/initial/swift.dbscheme b/swift/downgrades/initial/swift.dbscheme
new file mode 100644
index 00000000000..ceca289a0ff
--- /dev/null
+++ b/swift/downgrades/initial/swift.dbscheme
@@ -0,0 +1,2493 @@
+// generated by codegen/codegen.py
+
+// from prefix.dbscheme
+/**
+ * The source location of the snapshot.
+ */
+sourceLocationPrefix(
+  string prefix: string ref
+);
+
+
+// from schema.py
+
+@element =
+  @callable
+| @file
+| @generic_context
+| @iterable_decl_context
+| @locatable
+| @location
+| @type
+;
+
+#keyset[id]
+element_is_unknown(
+  int id: @element ref
+);
+
+@callable =
+  @abstract_closure_expr
+| @abstract_function_decl
+;
+
+#keyset[id]
+callable_self_params(
+  int id: @callable ref,
+  int self_param: @param_decl_or_none ref
+);
+
+#keyset[id, index]
+callable_params(
+  int id: @callable ref,
+  int index: int ref,
+  int param: @param_decl_or_none ref
+);
+
+#keyset[id]
+callable_bodies(
+  int id: @callable ref,
+  int body: @brace_stmt_or_none ref
+);
+
+@file =
+  @db_file
+| @unknown_file
+;
+
+#keyset[id]
+files(
+  int id: @file ref,
+  string name: string ref
+);
+
+@locatable =
+  @argument
+| @ast_node
+| @comment
+| @diagnostics
+| @error_element
+;
+
+#keyset[id]
+locatable_locations(
+  int id: @locatable ref,
+  int location: @location_or_none ref
+);
+
+@location =
+  @db_location
+| @unknown_location
+;
+
+#keyset[id]
+locations(
+  int id: @location ref,
+  int file: @file_or_none ref,
+  int start_line: int ref,
+  int start_column: int ref,
+  int end_line: int ref,
+  int end_column: int ref
+);
+
+@ast_node =
+  @case_label_item
+| @condition_element
+| @decl
+| @expr
+| @pattern
+| @stmt
+| @stmt_condition
+| @type_repr
+;
+
+comments(
+  unique int id: @comment,
+  string text: string ref
+);
+
+db_files(
+  unique int id: @db_file
+);
+
+db_locations(
+  unique int id: @db_location
+);
+
+diagnostics(
+  unique int id: @diagnostics,
+  string text: string ref,
+  int kind: int ref
+);
+
+@error_element =
+  @error_expr
+| @error_type
+| @overloaded_decl_ref_expr
+| @unresolved_decl_ref_expr
+| @unresolved_dot_expr
+| @unresolved_member_chain_result_expr
+| @unresolved_member_expr
+| @unresolved_pattern_expr
+| @unresolved_specialize_expr
+| @unresolved_type
+| @unresolved_type_conversion_expr
+| @unspecified_element
+;
+
+unknown_files(
+  unique int id: @unknown_file
+);
+
+unknown_locations(
+  unique int id: @unknown_location
+);
+
+unspecified_elements(
+  unique int id: @unspecified_element,
+  string property: string ref,
+  string error: string ref
+);
+
+#keyset[id]
+unspecified_element_parents(
+  int id: @unspecified_element ref,
+  int parent: @element ref
+);
+
+#keyset[id]
+unspecified_element_indices(
+  int id: @unspecified_element ref,
+  int index: int ref
+);
+
+@decl =
+  @enum_case_decl
+| @extension_decl
+| @if_config_decl
+| @import_decl
+| @missing_member_decl
+| @operator_decl
+| @pattern_binding_decl
+| @pound_diagnostic_decl
+| @precedence_group_decl
+| @top_level_code_decl
+| @value_decl
+;
+
+#keyset[id]
+decls(  //dir=decl
+  int id: @decl ref,
+  int module: @module_decl_or_none ref
+);
+
+@generic_context =
+  @abstract_function_decl
+| @extension_decl
+| @generic_type_decl
+| @subscript_decl
+;
+
+#keyset[id, index]
+generic_context_generic_type_params(  //dir=decl
+  int id: @generic_context ref,
+  int index: int ref,
+  int generic_type_param: @generic_type_param_decl_or_none ref
+);
+
+@iterable_decl_context =
+  @extension_decl
+| @nominal_type_decl
+;
+
+#keyset[id, index]
+iterable_decl_context_members(  //dir=decl
+  int id: @iterable_decl_context ref,
+  int index: int ref,
+  int member: @decl_or_none ref
+);
+
+enum_case_decls(  //dir=decl
+  unique int id: @enum_case_decl
+);
+
+#keyset[id, index]
+enum_case_decl_elements(  //dir=decl
+  int id: @enum_case_decl ref,
+  int index: int ref,
+  int element: @enum_element_decl_or_none ref
+);
+
+extension_decls(  //dir=decl
+  unique int id: @extension_decl,
+  int extended_type_decl: @nominal_type_decl_or_none ref
+);
+
+if_config_decls(  //dir=decl
+  unique int id: @if_config_decl
+);
+
+#keyset[id, index]
+if_config_decl_active_elements(  //dir=decl
+  int id: @if_config_decl ref,
+  int index: int ref,
+  int active_element: @ast_node_or_none ref
+);
+
+import_decls(  //dir=decl
+  unique int id: @import_decl
+);
+
+#keyset[id]
+import_decl_is_exported(  //dir=decl
+  int id: @import_decl ref
+);
+
+#keyset[id]
+import_decl_imported_modules(  //dir=decl
+  int id: @import_decl ref,
+  int imported_module: @module_decl_or_none ref
+);
+
+#keyset[id, index]
+import_decl_declarations(  //dir=decl
+  int id: @import_decl ref,
+  int index: int ref,
+  int declaration: @value_decl_or_none ref
+);
+
+missing_member_decls(  //dir=decl
+  unique int id: @missing_member_decl,
+  string name: string ref
+);
+
+@operator_decl =
+  @infix_operator_decl
+| @postfix_operator_decl
+| @prefix_operator_decl
+;
+
+#keyset[id]
+operator_decls(  //dir=decl
+  int id: @operator_decl ref,
+  string name: string ref
+);
+
+pattern_binding_decls(  //dir=decl
+  unique int id: @pattern_binding_decl
+);
+
+#keyset[id, index]
+pattern_binding_decl_inits(  //dir=decl
+  int id: @pattern_binding_decl ref,
+  int index: int ref,
+  int init: @expr_or_none ref
+);
+
+#keyset[id, index]
+pattern_binding_decl_patterns(  //dir=decl
+  int id: @pattern_binding_decl ref,
+  int index: int ref,
+  int pattern: @pattern_or_none ref
+);
+
+pound_diagnostic_decls(  //dir=decl
+  unique int id: @pound_diagnostic_decl,
+  int kind: int ref,
+  int message: @string_literal_expr_or_none ref
+);
+
+precedence_group_decls(  //dir=decl
+  unique int id: @precedence_group_decl
+);
+
+top_level_code_decls(  //dir=decl
+  unique int id: @top_level_code_decl,
+  int body: @brace_stmt_or_none ref
+);
+
+@value_decl =
+  @abstract_function_decl
+| @abstract_storage_decl
+| @enum_element_decl
+| @type_decl
+;
+
+#keyset[id]
+value_decls(  //dir=decl
+  int id: @value_decl ref,
+  int interface_type: @type_or_none ref
+);
+
+@abstract_function_decl =
+  @constructor_decl
+| @destructor_decl
+| @func_decl
+;
+
+#keyset[id]
+abstract_function_decls(  //dir=decl
+  int id: @abstract_function_decl ref,
+  string name: string ref
+);
+
+@abstract_storage_decl =
+  @subscript_decl
+| @var_decl
+;
+
+#keyset[id, index]
+abstract_storage_decl_accessor_decls(  //dir=decl
+  int id: @abstract_storage_decl ref,
+  int index: int ref,
+  int accessor_decl: @accessor_decl_or_none ref
+);
+
+enum_element_decls(  //dir=decl
+  unique int id: @enum_element_decl,
+  string name: string ref
+);
+
+#keyset[id, index]
+enum_element_decl_params(  //dir=decl
+  int id: @enum_element_decl ref,
+  int index: int ref,
+  int param: @param_decl_or_none ref
+);
+
+infix_operator_decls(  //dir=decl
+  unique int id: @infix_operator_decl
+);
+
+#keyset[id]
+infix_operator_decl_precedence_groups(  //dir=decl
+  int id: @infix_operator_decl ref,
+  int precedence_group: @precedence_group_decl_or_none ref
+);
+
+postfix_operator_decls(  //dir=decl
+  unique int id: @postfix_operator_decl
+);
+
+prefix_operator_decls(  //dir=decl
+  unique int id: @prefix_operator_decl
+);
+
+@type_decl =
+  @abstract_type_param_decl
+| @generic_type_decl
+| @module_decl
+;
+
+#keyset[id]
+type_decls(  //dir=decl
+  int id: @type_decl ref,
+  string name: string ref
+);
+
+#keyset[id, index]
+type_decl_base_types(  //dir=decl
+  int id: @type_decl ref,
+  int index: int ref,
+  int base_type: @type_or_none ref
+);
+
+@abstract_type_param_decl =
+  @associated_type_decl
+| @generic_type_param_decl
+;
+
+constructor_decls(  //dir=decl
+  unique int id: @constructor_decl
+);
+
+destructor_decls(  //dir=decl
+  unique int id: @destructor_decl
+);
+
+@func_decl =
+  @accessor_decl
+| @concrete_func_decl
+;
+
+@generic_type_decl =
+  @nominal_type_decl
+| @opaque_type_decl
+| @type_alias_decl
+;
+
+module_decls(  //dir=decl
+  unique int id: @module_decl
+);
+
+#keyset[id]
+module_decl_is_builtin_module(  //dir=decl
+  int id: @module_decl ref
+);
+
+#keyset[id]
+module_decl_is_system_module(  //dir=decl
+  int id: @module_decl ref
+);
+
+#keyset[id, index]
+module_decl_imported_modules(  //dir=decl
+  int id: @module_decl ref,
+  int index: int ref,
+  int imported_module: @module_decl_or_none ref
+);
+
+#keyset[id, index]
+module_decl_exported_modules(  //dir=decl
+  int id: @module_decl ref,
+  int index: int ref,
+  int exported_module: @module_decl_or_none ref
+);
+
+subscript_decls(  //dir=decl
+  unique int id: @subscript_decl,
+  int element_type: @type_or_none ref
+);
+
+#keyset[id, index]
+subscript_decl_params(  //dir=decl
+  int id: @subscript_decl ref,
+  int index: int ref,
+  int param: @param_decl_or_none ref
+);
+
+@var_decl =
+  @concrete_var_decl
+| @param_decl
+;
+
+#keyset[id]
+var_decls(  //dir=decl
+  int id: @var_decl ref,
+  string name: string ref,
+  int type_: @type_or_none ref
+);
+
+#keyset[id]
+var_decl_attached_property_wrapper_types(  //dir=decl
+  int id: @var_decl ref,
+  int attached_property_wrapper_type: @type_or_none ref
+);
+
+#keyset[id]
+var_decl_parent_patterns(  //dir=decl
+  int id: @var_decl ref,
+  int parent_pattern: @pattern_or_none ref
+);
+
+#keyset[id]
+var_decl_parent_initializers(  //dir=decl
+  int id: @var_decl ref,
+  int parent_initializer: @expr_or_none ref
+);
+
+#keyset[id]
+var_decl_property_wrapper_backing_var_bindings(  //dir=decl
+  int id: @var_decl ref,
+  int property_wrapper_backing_var_binding: @pattern_binding_decl_or_none ref
+);
+
+#keyset[id]
+var_decl_property_wrapper_backing_vars(  //dir=decl
+  int id: @var_decl ref,
+  int property_wrapper_backing_var: @var_decl_or_none ref
+);
+
+#keyset[id]
+var_decl_property_wrapper_projection_var_bindings(  //dir=decl
+  int id: @var_decl ref,
+  int property_wrapper_projection_var_binding: @pattern_binding_decl_or_none ref
+);
+
+#keyset[id]
+var_decl_property_wrapper_projection_vars(  //dir=decl
+  int id: @var_decl ref,
+  int property_wrapper_projection_var: @var_decl_or_none ref
+);
+
+accessor_decls(  //dir=decl
+  unique int id: @accessor_decl
+);
+
+#keyset[id]
+accessor_decl_is_getter(  //dir=decl
+  int id: @accessor_decl ref
+);
+
+#keyset[id]
+accessor_decl_is_setter(  //dir=decl
+  int id: @accessor_decl ref
+);
+
+#keyset[id]
+accessor_decl_is_will_set(  //dir=decl
+  int id: @accessor_decl ref
+);
+
+#keyset[id]
+accessor_decl_is_did_set(  //dir=decl
+  int id: @accessor_decl ref
+);
+
+associated_type_decls(  //dir=decl
+  unique int id: @associated_type_decl
+);
+
+concrete_func_decls(  //dir=decl
+  unique int id: @concrete_func_decl
+);
+
+concrete_var_decls(  //dir=decl
+  unique int id: @concrete_var_decl,
+  int introducer_int: int ref
+);
+
+generic_type_param_decls(  //dir=decl
+  unique int id: @generic_type_param_decl
+);
+
+@nominal_type_decl =
+  @class_decl
+| @enum_decl
+| @protocol_decl
+| @struct_decl
+;
+
+#keyset[id]
+nominal_type_decls(  //dir=decl
+  int id: @nominal_type_decl ref,
+  int type_: @type_or_none ref
+);
+
+opaque_type_decls(  //dir=decl
+  unique int id: @opaque_type_decl,
+  int naming_declaration: @value_decl_or_none ref
+);
+
+#keyset[id, index]
+opaque_type_decl_opaque_generic_params(  //dir=decl
+  int id: @opaque_type_decl ref,
+  int index: int ref,
+  int opaque_generic_param: @generic_type_param_type_or_none ref
+);
+
+param_decls(  //dir=decl
+  unique int id: @param_decl
+);
+
+#keyset[id]
+param_decl_is_inout(  //dir=decl
+  int id: @param_decl ref
+);
+
+#keyset[id]
+param_decl_property_wrapper_local_wrapped_var_bindings(  //dir=decl
+  int id: @param_decl ref,
+  int property_wrapper_local_wrapped_var_binding: @pattern_binding_decl_or_none ref
+);
+
+#keyset[id]
+param_decl_property_wrapper_local_wrapped_vars(  //dir=decl
+  int id: @param_decl ref,
+  int property_wrapper_local_wrapped_var: @var_decl_or_none ref
+);
+
+type_alias_decls(  //dir=decl
+  unique int id: @type_alias_decl
+);
+
+class_decls(  //dir=decl
+  unique int id: @class_decl
+);
+
+enum_decls(  //dir=decl
+  unique int id: @enum_decl
+);
+
+protocol_decls(  //dir=decl
+  unique int id: @protocol_decl
+);
+
+struct_decls(  //dir=decl
+  unique int id: @struct_decl
+);
+
+arguments(  //dir=expr
+  unique int id: @argument,
+  string label: string ref,
+  int expr: @expr_or_none ref
+);
+
+@expr =
+  @abstract_closure_expr
+| @any_try_expr
+| @applied_property_wrapper_expr
+| @apply_expr
+| @assign_expr
+| @bind_optional_expr
+| @capture_list_expr
+| @collection_expr
+| @decl_ref_expr
+| @default_argument_expr
+| @discard_assignment_expr
+| @dot_syntax_base_ignored_expr
+| @dynamic_type_expr
+| @enum_is_case_expr
+| @error_expr
+| @explicit_cast_expr
+| @force_value_expr
+| @identity_expr
+| @if_expr
+| @implicit_conversion_expr
+| @in_out_expr
+| @key_path_application_expr
+| @key_path_dot_expr
+| @key_path_expr
+| @lazy_initializer_expr
+| @literal_expr
+| @lookup_expr
+| @make_temporarily_escapable_expr
+| @obj_c_selector_expr
+| @one_way_expr
+| @opaque_value_expr
+| @open_existential_expr
+| @optional_evaluation_expr
+| @other_constructor_decl_ref_expr
+| @overloaded_decl_ref_expr
+| @property_wrapper_value_placeholder_expr
+| @rebind_self_in_constructor_expr
+| @sequence_expr
+| @super_ref_expr
+| @tap_expr
+| @tuple_element_expr
+| @tuple_expr
+| @type_expr
+| @unresolved_decl_ref_expr
+| @unresolved_dot_expr
+| @unresolved_member_expr
+| @unresolved_pattern_expr
+| @unresolved_specialize_expr
+| @vararg_expansion_expr
+;
+
+#keyset[id]
+expr_types(  //dir=expr
+  int id: @expr ref,
+  int type_: @type_or_none ref
+);
+
+@abstract_closure_expr =
+  @auto_closure_expr
+| @closure_expr
+;
+
+@any_try_expr =
+  @force_try_expr
+| @optional_try_expr
+| @try_expr
+;
+
+#keyset[id]
+any_try_exprs(  //dir=expr
+  int id: @any_try_expr ref,
+  int sub_expr: @expr_or_none ref
+);
+
+applied_property_wrapper_exprs(  //dir=expr
+  unique int id: @applied_property_wrapper_expr,
+  int kind: int ref,
+  int value: @expr_or_none ref,
+  int param: @param_decl_or_none ref
+);
+
+@apply_expr =
+  @binary_expr
+| @call_expr
+| @postfix_unary_expr
+| @prefix_unary_expr
+| @self_apply_expr
+;
+
+#keyset[id]
+apply_exprs(  //dir=expr
+  int id: @apply_expr ref,
+  int function: @expr_or_none ref
+);
+
+#keyset[id, index]
+apply_expr_arguments(  //dir=expr
+  int id: @apply_expr ref,
+  int index: int ref,
+  int argument: @argument_or_none ref
+);
+
+assign_exprs(  //dir=expr
+  unique int id: @assign_expr,
+  int dest: @expr_or_none ref,
+  int source: @expr_or_none ref
+);
+
+bind_optional_exprs(  //dir=expr
+  unique int id: @bind_optional_expr,
+  int sub_expr: @expr_or_none ref
+);
+
+capture_list_exprs(  //dir=expr
+  unique int id: @capture_list_expr,
+  int closure_body: @closure_expr_or_none ref
+);
+
+#keyset[id, index]
+capture_list_expr_binding_decls(  //dir=expr
+  int id: @capture_list_expr ref,
+  int index: int ref,
+  int binding_decl: @pattern_binding_decl_or_none ref
+);
+
+@collection_expr =
+  @array_expr
+| @dictionary_expr
+;
+
+decl_ref_exprs(  //dir=expr
+  unique int id: @decl_ref_expr,
+  int decl: @decl_or_none ref
+);
+
+#keyset[id, index]
+decl_ref_expr_replacement_types(  //dir=expr
+  int id: @decl_ref_expr ref,
+  int index: int ref,
+  int replacement_type: @type_or_none ref
+);
+
+#keyset[id]
+decl_ref_expr_has_direct_to_storage_semantics(  //dir=expr
+  int id: @decl_ref_expr ref
+);
+
+#keyset[id]
+decl_ref_expr_has_direct_to_implementation_semantics(  //dir=expr
+  int id: @decl_ref_expr ref
+);
+
+#keyset[id]
+decl_ref_expr_has_ordinary_semantics(  //dir=expr
+  int id: @decl_ref_expr ref
+);
+
+default_argument_exprs(  //dir=expr
+  unique int id: @default_argument_expr,
+  int param_decl: @param_decl_or_none ref,
+  int param_index: int ref
+);
+
+#keyset[id]
+default_argument_expr_caller_side_defaults(  //dir=expr
+  int id: @default_argument_expr ref,
+  int caller_side_default: @expr_or_none ref
+);
+
+discard_assignment_exprs(  //dir=expr
+  unique int id: @discard_assignment_expr
+);
+
+dot_syntax_base_ignored_exprs(  //dir=expr
+  unique int id: @dot_syntax_base_ignored_expr,
+  int qualifier: @expr_or_none ref,
+  int sub_expr: @expr_or_none ref
+);
+
+dynamic_type_exprs(  //dir=expr
+  unique int id: @dynamic_type_expr,
+  int base: @expr_or_none ref
+);
+
+enum_is_case_exprs(  //dir=expr
+  unique int id: @enum_is_case_expr,
+  int sub_expr: @expr_or_none ref,
+  int element: @enum_element_decl_or_none ref
+);
+
+error_exprs(  //dir=expr
+  unique int id: @error_expr
+);
+
+@explicit_cast_expr =
+  @checked_cast_expr
+| @coerce_expr
+;
+
+#keyset[id]
+explicit_cast_exprs(  //dir=expr
+  int id: @explicit_cast_expr ref,
+  int sub_expr: @expr_or_none ref
+);
+
+force_value_exprs(  //dir=expr
+  unique int id: @force_value_expr,
+  int sub_expr: @expr_or_none ref
+);
+
+@identity_expr =
+  @await_expr
+| @dot_self_expr
+| @paren_expr
+| @unresolved_member_chain_result_expr
+;
+
+#keyset[id]
+identity_exprs(  //dir=expr
+  int id: @identity_expr ref,
+  int sub_expr: @expr_or_none ref
+);
+
+if_exprs(  //dir=expr
+  unique int id: @if_expr,
+  int condition: @expr_or_none ref,
+  int then_expr: @expr_or_none ref,
+  int else_expr: @expr_or_none ref
+);
+
+@implicit_conversion_expr =
+  @any_hashable_erasure_expr
+| @archetype_to_super_expr
+| @array_to_pointer_expr
+| @bridge_from_obj_c_expr
+| @bridge_to_obj_c_expr
+| @class_metatype_to_object_expr
+| @collection_upcast_conversion_expr
+| @conditional_bridge_from_obj_c_expr
+| @covariant_function_conversion_expr
+| @covariant_return_conversion_expr
+| @derived_to_base_expr
+| @destructure_tuple_expr
+| @differentiable_function_expr
+| @differentiable_function_extract_original_expr
+| @erasure_expr
+| @existential_metatype_to_object_expr
+| @foreign_object_conversion_expr
+| @function_conversion_expr
+| @in_out_to_pointer_expr
+| @inject_into_optional_expr
+| @linear_function_expr
+| @linear_function_extract_original_expr
+| @linear_to_differentiable_function_expr
+| @load_expr
+| @metatype_conversion_expr
+| @pointer_to_pointer_expr
+| @protocol_metatype_to_object_expr
+| @string_to_pointer_expr
+| @underlying_to_opaque_expr
+| @unevaluated_instance_expr
+| @unresolved_type_conversion_expr
+;
+
+#keyset[id]
+implicit_conversion_exprs(  //dir=expr
+  int id: @implicit_conversion_expr ref,
+  int sub_expr: @expr_or_none ref
+);
+
+in_out_exprs(  //dir=expr
+  unique int id: @in_out_expr,
+  int sub_expr: @expr_or_none ref
+);
+
+key_path_application_exprs(  //dir=expr
+  unique int id: @key_path_application_expr,
+  int base: @expr_or_none ref,
+  int key_path: @expr_or_none ref
+);
+
+key_path_dot_exprs(  //dir=expr
+  unique int id: @key_path_dot_expr
+);
+
+key_path_exprs(  //dir=expr
+  unique int id: @key_path_expr
+);
+
+#keyset[id]
+key_path_expr_roots(  //dir=expr
+  int id: @key_path_expr ref,
+  int root: @type_repr_or_none ref
+);
+
+#keyset[id]
+key_path_expr_parsed_paths(  //dir=expr
+  int id: @key_path_expr ref,
+  int parsed_path: @expr_or_none ref
+);
+
+lazy_initializer_exprs(  //dir=expr
+  unique int id: @lazy_initializer_expr,
+  int sub_expr: @expr_or_none ref
+);
+
+@literal_expr =
+  @builtin_literal_expr
+| @interpolated_string_literal_expr
+| @nil_literal_expr
+| @object_literal_expr
+| @regex_literal_expr
+;
+
+@lookup_expr =
+  @dynamic_lookup_expr
+| @member_ref_expr
+| @method_ref_expr
+| @subscript_expr
+;
+
+#keyset[id]
+lookup_exprs(  //dir=expr
+  int id: @lookup_expr ref,
+  int base: @expr_or_none ref
+);
+
+#keyset[id]
+lookup_expr_members(  //dir=expr
+  int id: @lookup_expr ref,
+  int member: @decl_or_none ref
+);
+
+make_temporarily_escapable_exprs(  //dir=expr
+  unique int id: @make_temporarily_escapable_expr,
+  int escaping_closure: @opaque_value_expr_or_none ref,
+  int nonescaping_closure: @expr_or_none ref,
+  int sub_expr: @expr_or_none ref
+);
+
+obj_c_selector_exprs(  //dir=expr
+  unique int id: @obj_c_selector_expr,
+  int sub_expr: @expr_or_none ref,
+  int method: @abstract_function_decl_or_none ref
+);
+
+one_way_exprs(  //dir=expr
+  unique int id: @one_way_expr,
+  int sub_expr: @expr_or_none ref
+);
+
+opaque_value_exprs(  //dir=expr
+  unique int id: @opaque_value_expr
+);
+
+open_existential_exprs(  //dir=expr
+  unique int id: @open_existential_expr,
+  int sub_expr: @expr_or_none ref,
+  int existential: @expr_or_none ref,
+  int opaque_expr: @opaque_value_expr_or_none ref
+);
+
+optional_evaluation_exprs(  //dir=expr
+  unique int id: @optional_evaluation_expr,
+  int sub_expr: @expr_or_none ref
+);
+
+other_constructor_decl_ref_exprs(  //dir=expr
+  unique int id: @other_constructor_decl_ref_expr,
+  int constructor_decl: @constructor_decl_or_none ref
+);
+
+overloaded_decl_ref_exprs(  //dir=expr
+  unique int id: @overloaded_decl_ref_expr
+);
+
+#keyset[id, index]
+overloaded_decl_ref_expr_possible_declarations(  //dir=expr
+  int id: @overloaded_decl_ref_expr ref,
+  int index: int ref,
+  int possible_declaration: @value_decl_or_none ref
+);
+
+property_wrapper_value_placeholder_exprs(  //dir=expr
+  unique int id: @property_wrapper_value_placeholder_expr,
+  int placeholder: @opaque_value_expr_or_none ref
+);
+
+#keyset[id]
+property_wrapper_value_placeholder_expr_wrapped_values(  //dir=expr
+  int id: @property_wrapper_value_placeholder_expr ref,
+  int wrapped_value: @expr_or_none ref
+);
+
+rebind_self_in_constructor_exprs(  //dir=expr
+  unique int id: @rebind_self_in_constructor_expr,
+  int sub_expr: @expr_or_none ref,
+  int self: @var_decl_or_none ref
+);
+
+sequence_exprs(  //dir=expr
+  unique int id: @sequence_expr
+);
+
+#keyset[id, index]
+sequence_expr_elements(  //dir=expr
+  int id: @sequence_expr ref,
+  int index: int ref,
+  int element: @expr_or_none ref
+);
+
+super_ref_exprs(  //dir=expr
+  unique int id: @super_ref_expr,
+  int self: @var_decl_or_none ref
+);
+
+tap_exprs(  //dir=expr
+  unique int id: @tap_expr,
+  int body: @brace_stmt_or_none ref,
+  int var: @var_decl_or_none ref
+);
+
+#keyset[id]
+tap_expr_sub_exprs(  //dir=expr
+  int id: @tap_expr ref,
+  int sub_expr: @expr_or_none ref
+);
+
+tuple_element_exprs(  //dir=expr
+  unique int id: @tuple_element_expr,
+  int sub_expr: @expr_or_none ref,
+  int index: int ref
+);
+
+tuple_exprs(  //dir=expr
+  unique int id: @tuple_expr
+);
+
+#keyset[id, index]
+tuple_expr_elements(  //dir=expr
+  int id: @tuple_expr ref,
+  int index: int ref,
+  int element: @expr_or_none ref
+);
+
+type_exprs(  //dir=expr
+  unique int id: @type_expr
+);
+
+#keyset[id]
+type_expr_type_reprs(  //dir=expr
+  int id: @type_expr ref,
+  int type_repr: @type_repr_or_none ref
+);
+
+unresolved_decl_ref_exprs(  //dir=expr
+  unique int id: @unresolved_decl_ref_expr
+);
+
+#keyset[id]
+unresolved_decl_ref_expr_names(  //dir=expr
+  int id: @unresolved_decl_ref_expr ref,
+  string name: string ref
+);
+
+unresolved_dot_exprs(  //dir=expr
+  unique int id: @unresolved_dot_expr,
+  int base: @expr_or_none ref,
+  string name: string ref
+);
+
+unresolved_member_exprs(  //dir=expr
+  unique int id: @unresolved_member_expr,
+  string name: string ref
+);
+
+unresolved_pattern_exprs(  //dir=expr
+  unique int id: @unresolved_pattern_expr,
+  int sub_pattern: @pattern_or_none ref
+);
+
+unresolved_specialize_exprs(  //dir=expr
+  unique int id: @unresolved_specialize_expr,
+  int sub_expr: @expr_or_none ref
+);
+
+vararg_expansion_exprs(  //dir=expr
+  unique int id: @vararg_expansion_expr,
+  int sub_expr: @expr_or_none ref
+);
+
+any_hashable_erasure_exprs(  //dir=expr
+  unique int id: @any_hashable_erasure_expr
+);
+
+archetype_to_super_exprs(  //dir=expr
+  unique int id: @archetype_to_super_expr
+);
+
+array_exprs(  //dir=expr
+  unique int id: @array_expr
+);
+
+#keyset[id, index]
+array_expr_elements(  //dir=expr
+  int id: @array_expr ref,
+  int index: int ref,
+  int element: @expr_or_none ref
+);
+
+array_to_pointer_exprs(  //dir=expr
+  unique int id: @array_to_pointer_expr
+);
+
+auto_closure_exprs(  //dir=expr
+  unique int id: @auto_closure_expr
+);
+
+await_exprs(  //dir=expr
+  unique int id: @await_expr
+);
+
+binary_exprs(  //dir=expr
+  unique int id: @binary_expr
+);
+
+bridge_from_obj_c_exprs(  //dir=expr
+  unique int id: @bridge_from_obj_c_expr
+);
+
+bridge_to_obj_c_exprs(  //dir=expr
+  unique int id: @bridge_to_obj_c_expr
+);
+
+@builtin_literal_expr =
+  @boolean_literal_expr
+| @magic_identifier_literal_expr
+| @number_literal_expr
+| @string_literal_expr
+;
+
+call_exprs(  //dir=expr
+  unique int id: @call_expr
+);
+
+@checked_cast_expr =
+  @conditional_checked_cast_expr
+| @forced_checked_cast_expr
+| @is_expr
+;
+
+class_metatype_to_object_exprs(  //dir=expr
+  unique int id: @class_metatype_to_object_expr
+);
+
+closure_exprs(  //dir=expr
+  unique int id: @closure_expr
+);
+
+coerce_exprs(  //dir=expr
+  unique int id: @coerce_expr
+);
+
+collection_upcast_conversion_exprs(  //dir=expr
+  unique int id: @collection_upcast_conversion_expr
+);
+
+conditional_bridge_from_obj_c_exprs(  //dir=expr
+  unique int id: @conditional_bridge_from_obj_c_expr
+);
+
+covariant_function_conversion_exprs(  //dir=expr
+  unique int id: @covariant_function_conversion_expr
+);
+
+covariant_return_conversion_exprs(  //dir=expr
+  unique int id: @covariant_return_conversion_expr
+);
+
+derived_to_base_exprs(  //dir=expr
+  unique int id: @derived_to_base_expr
+);
+
+destructure_tuple_exprs(  //dir=expr
+  unique int id: @destructure_tuple_expr
+);
+
+dictionary_exprs(  //dir=expr
+  unique int id: @dictionary_expr
+);
+
+#keyset[id, index]
+dictionary_expr_elements(  //dir=expr
+  int id: @dictionary_expr ref,
+  int index: int ref,
+  int element: @expr_or_none ref
+);
+
+differentiable_function_exprs(  //dir=expr
+  unique int id: @differentiable_function_expr
+);
+
+differentiable_function_extract_original_exprs(  //dir=expr
+  unique int id: @differentiable_function_extract_original_expr
+);
+
+dot_self_exprs(  //dir=expr
+  unique int id: @dot_self_expr
+);
+
+@dynamic_lookup_expr =
+  @dynamic_member_ref_expr
+| @dynamic_subscript_expr
+;
+
+erasure_exprs(  //dir=expr
+  unique int id: @erasure_expr
+);
+
+existential_metatype_to_object_exprs(  //dir=expr
+  unique int id: @existential_metatype_to_object_expr
+);
+
+force_try_exprs(  //dir=expr
+  unique int id: @force_try_expr
+);
+
+foreign_object_conversion_exprs(  //dir=expr
+  unique int id: @foreign_object_conversion_expr
+);
+
+function_conversion_exprs(  //dir=expr
+  unique int id: @function_conversion_expr
+);
+
+in_out_to_pointer_exprs(  //dir=expr
+  unique int id: @in_out_to_pointer_expr
+);
+
+inject_into_optional_exprs(  //dir=expr
+  unique int id: @inject_into_optional_expr
+);
+
+interpolated_string_literal_exprs(  //dir=expr
+  unique int id: @interpolated_string_literal_expr
+);
+
+#keyset[id]
+interpolated_string_literal_expr_interpolation_exprs(  //dir=expr
+  int id: @interpolated_string_literal_expr ref,
+  int interpolation_expr: @opaque_value_expr_or_none ref
+);
+
+#keyset[id]
+interpolated_string_literal_expr_interpolation_count_exprs(  //dir=expr
+  int id: @interpolated_string_literal_expr ref,
+  int interpolation_count_expr: @expr_or_none ref
+);
+
+#keyset[id]
+interpolated_string_literal_expr_literal_capacity_exprs(  //dir=expr
+  int id: @interpolated_string_literal_expr ref,
+  int literal_capacity_expr: @expr_or_none ref
+);
+
+#keyset[id]
+interpolated_string_literal_expr_appending_exprs(  //dir=expr
+  int id: @interpolated_string_literal_expr ref,
+  int appending_expr: @tap_expr_or_none ref
+);
+
+linear_function_exprs(  //dir=expr
+  unique int id: @linear_function_expr
+);
+
+linear_function_extract_original_exprs(  //dir=expr
+  unique int id: @linear_function_extract_original_expr
+);
+
+linear_to_differentiable_function_exprs(  //dir=expr
+  unique int id: @linear_to_differentiable_function_expr
+);
+
+load_exprs(  //dir=expr
+  unique int id: @load_expr
+);
+
+member_ref_exprs(  //dir=expr
+  unique int id: @member_ref_expr
+);
+
+#keyset[id]
+member_ref_expr_has_direct_to_storage_semantics(  //dir=expr
+  int id: @member_ref_expr ref
+);
+
+#keyset[id]
+member_ref_expr_has_direct_to_implementation_semantics(  //dir=expr
+  int id: @member_ref_expr ref
+);
+
+#keyset[id]
+member_ref_expr_has_ordinary_semantics(  //dir=expr
+  int id: @member_ref_expr ref
+);
+
+metatype_conversion_exprs(  //dir=expr
+  unique int id: @metatype_conversion_expr
+);
+
+method_ref_exprs(  //dir=expr
+  unique int id: @method_ref_expr
+);
+
+nil_literal_exprs(  //dir=expr
+  unique int id: @nil_literal_expr
+);
+
+object_literal_exprs(  //dir=expr
+  unique int id: @object_literal_expr,
+  int kind: int ref
+);
+
+#keyset[id, index]
+object_literal_expr_arguments(  //dir=expr
+  int id: @object_literal_expr ref,
+  int index: int ref,
+  int argument: @argument_or_none ref
+);
+
+optional_try_exprs(  //dir=expr
+  unique int id: @optional_try_expr
+);
+
+paren_exprs(  //dir=expr
+  unique int id: @paren_expr
+);
+
+pointer_to_pointer_exprs(  //dir=expr
+  unique int id: @pointer_to_pointer_expr
+);
+
+postfix_unary_exprs(  //dir=expr
+  unique int id: @postfix_unary_expr
+);
+
+prefix_unary_exprs(  //dir=expr
+  unique int id: @prefix_unary_expr
+);
+
+protocol_metatype_to_object_exprs(  //dir=expr
+  unique int id: @protocol_metatype_to_object_expr
+);
+
+regex_literal_exprs(  //dir=expr
+  unique int id: @regex_literal_expr
+);
+
+@self_apply_expr =
+  @constructor_ref_call_expr
+| @dot_syntax_call_expr
+;
+
+#keyset[id]
+self_apply_exprs(  //dir=expr
+  int id: @self_apply_expr ref,
+  int base: @expr_or_none ref
+);
+
+string_to_pointer_exprs(  //dir=expr
+  unique int id: @string_to_pointer_expr
+);
+
+subscript_exprs(  //dir=expr
+  unique int id: @subscript_expr
+);
+
+#keyset[id, index]
+subscript_expr_arguments(  //dir=expr
+  int id: @subscript_expr ref,
+  int index: int ref,
+  int argument: @argument_or_none ref
+);
+
+#keyset[id]
+subscript_expr_has_direct_to_storage_semantics(  //dir=expr
+  int id: @subscript_expr ref
+);
+
+#keyset[id]
+subscript_expr_has_direct_to_implementation_semantics(  //dir=expr
+  int id: @subscript_expr ref
+);
+
+#keyset[id]
+subscript_expr_has_ordinary_semantics(  //dir=expr
+  int id: @subscript_expr ref
+);
+
+try_exprs(  //dir=expr
+  unique int id: @try_expr
+);
+
+underlying_to_opaque_exprs(  //dir=expr
+  unique int id: @underlying_to_opaque_expr
+);
+
+unevaluated_instance_exprs(  //dir=expr
+  unique int id: @unevaluated_instance_expr
+);
+
+unresolved_member_chain_result_exprs(  //dir=expr
+  unique int id: @unresolved_member_chain_result_expr
+);
+
+unresolved_type_conversion_exprs(  //dir=expr
+  unique int id: @unresolved_type_conversion_expr
+);
+
+boolean_literal_exprs(  //dir=expr
+  unique int id: @boolean_literal_expr,
+  boolean value: boolean ref
+);
+
+conditional_checked_cast_exprs(  //dir=expr
+  unique int id: @conditional_checked_cast_expr
+);
+
+constructor_ref_call_exprs(  //dir=expr
+  unique int id: @constructor_ref_call_expr
+);
+
+dot_syntax_call_exprs(  //dir=expr
+  unique int id: @dot_syntax_call_expr
+);
+
+dynamic_member_ref_exprs(  //dir=expr
+  unique int id: @dynamic_member_ref_expr
+);
+
+dynamic_subscript_exprs(  //dir=expr
+  unique int id: @dynamic_subscript_expr
+);
+
+forced_checked_cast_exprs(  //dir=expr
+  unique int id: @forced_checked_cast_expr
+);
+
+is_exprs(  //dir=expr
+  unique int id: @is_expr
+);
+
+magic_identifier_literal_exprs(  //dir=expr
+  unique int id: @magic_identifier_literal_expr,
+  string kind: string ref
+);
+
+@number_literal_expr =
+  @float_literal_expr
+| @integer_literal_expr
+;
+
+string_literal_exprs(  //dir=expr
+  unique int id: @string_literal_expr,
+  string value: string ref
+);
+
+float_literal_exprs(  //dir=expr
+  unique int id: @float_literal_expr,
+  string string_value: string ref
+);
+
+integer_literal_exprs(  //dir=expr
+  unique int id: @integer_literal_expr,
+  string string_value: string ref
+);
+
+@pattern =
+  @any_pattern
+| @binding_pattern
+| @bool_pattern
+| @enum_element_pattern
+| @expr_pattern
+| @is_pattern
+| @named_pattern
+| @optional_some_pattern
+| @paren_pattern
+| @tuple_pattern
+| @typed_pattern
+;
+
+any_patterns(  //dir=pattern
+  unique int id: @any_pattern
+);
+
+binding_patterns(  //dir=pattern
+  unique int id: @binding_pattern,
+  int sub_pattern: @pattern_or_none ref
+);
+
+bool_patterns(  //dir=pattern
+  unique int id: @bool_pattern,
+  boolean value: boolean ref
+);
+
+enum_element_patterns(  //dir=pattern
+  unique int id: @enum_element_pattern,
+  int element: @enum_element_decl_or_none ref
+);
+
+#keyset[id]
+enum_element_pattern_sub_patterns(  //dir=pattern
+  int id: @enum_element_pattern ref,
+  int sub_pattern: @pattern_or_none ref
+);
+
+expr_patterns(  //dir=pattern
+  unique int id: @expr_pattern,
+  int sub_expr: @expr_or_none ref
+);
+
+is_patterns(  //dir=pattern
+  unique int id: @is_pattern
+);
+
+#keyset[id]
+is_pattern_cast_type_reprs(  //dir=pattern
+  int id: @is_pattern ref,
+  int cast_type_repr: @type_repr_or_none ref
+);
+
+#keyset[id]
+is_pattern_sub_patterns(  //dir=pattern
+  int id: @is_pattern ref,
+  int sub_pattern: @pattern_or_none ref
+);
+
+named_patterns(  //dir=pattern
+  unique int id: @named_pattern,
+  string name: string ref
+);
+
+optional_some_patterns(  //dir=pattern
+  unique int id: @optional_some_pattern,
+  int sub_pattern: @pattern_or_none ref
+);
+
+paren_patterns(  //dir=pattern
+  unique int id: @paren_pattern,
+  int sub_pattern: @pattern_or_none ref
+);
+
+tuple_patterns(  //dir=pattern
+  unique int id: @tuple_pattern
+);
+
+#keyset[id, index]
+tuple_pattern_elements(  //dir=pattern
+  int id: @tuple_pattern ref,
+  int index: int ref,
+  int element: @pattern_or_none ref
+);
+
+typed_patterns(  //dir=pattern
+  unique int id: @typed_pattern,
+  int sub_pattern: @pattern_or_none ref
+);
+
+#keyset[id]
+typed_pattern_type_reprs(  //dir=pattern
+  int id: @typed_pattern ref,
+  int type_repr: @type_repr_or_none ref
+);
+
+case_label_items(  //dir=stmt
+  unique int id: @case_label_item,
+  int pattern: @pattern_or_none ref
+);
+
+#keyset[id]
+case_label_item_guards(  //dir=stmt
+  int id: @case_label_item ref,
+  int guard: @expr_or_none ref
+);
+
+condition_elements(  //dir=stmt
+  unique int id: @condition_element
+);
+
+#keyset[id]
+condition_element_booleans(  //dir=stmt
+  int id: @condition_element ref,
+  int boolean_: @expr_or_none ref
+);
+
+#keyset[id]
+condition_element_patterns(  //dir=stmt
+  int id: @condition_element ref,
+  int pattern: @pattern_or_none ref
+);
+
+#keyset[id]
+condition_element_initializers(  //dir=stmt
+  int id: @condition_element ref,
+  int initializer: @expr_or_none ref
+);
+
+@stmt =
+  @brace_stmt
+| @break_stmt
+| @case_stmt
+| @continue_stmt
+| @defer_stmt
+| @fail_stmt
+| @fallthrough_stmt
+| @labeled_stmt
+| @pound_assert_stmt
+| @return_stmt
+| @throw_stmt
+| @yield_stmt
+;
+
+stmt_conditions(  //dir=stmt
+  unique int id: @stmt_condition
+);
+
+#keyset[id, index]
+stmt_condition_elements(  //dir=stmt
+  int id: @stmt_condition ref,
+  int index: int ref,
+  int element: @condition_element_or_none ref
+);
+
+brace_stmts(  //dir=stmt
+  unique int id: @brace_stmt
+);
+
+#keyset[id, index]
+brace_stmt_elements(  //dir=stmt
+  int id: @brace_stmt ref,
+  int index: int ref,
+  int element: @ast_node_or_none ref
+);
+
+break_stmts(  //dir=stmt
+  unique int id: @break_stmt
+);
+
+#keyset[id]
+break_stmt_target_names(  //dir=stmt
+  int id: @break_stmt ref,
+  string target_name: string ref
+);
+
+#keyset[id]
+break_stmt_targets(  //dir=stmt
+  int id: @break_stmt ref,
+  int target: @stmt_or_none ref
+);
+
+case_stmts(  //dir=stmt
+  unique int id: @case_stmt,
+  int body: @stmt_or_none ref
+);
+
+#keyset[id, index]
+case_stmt_labels(  //dir=stmt
+  int id: @case_stmt ref,
+  int index: int ref,
+  int label: @case_label_item_or_none ref
+);
+
+#keyset[id, index]
+case_stmt_variables(  //dir=stmt
+  int id: @case_stmt ref,
+  int index: int ref,
+  int variable: @var_decl_or_none ref
+);
+
+continue_stmts(  //dir=stmt
+  unique int id: @continue_stmt
+);
+
+#keyset[id]
+continue_stmt_target_names(  //dir=stmt
+  int id: @continue_stmt ref,
+  string target_name: string ref
+);
+
+#keyset[id]
+continue_stmt_targets(  //dir=stmt
+  int id: @continue_stmt ref,
+  int target: @stmt_or_none ref
+);
+
+defer_stmts(  //dir=stmt
+  unique int id: @defer_stmt,
+  int body: @brace_stmt_or_none ref
+);
+
+fail_stmts(  //dir=stmt
+  unique int id: @fail_stmt
+);
+
+fallthrough_stmts(  //dir=stmt
+  unique int id: @fallthrough_stmt,
+  int fallthrough_source: @case_stmt_or_none ref,
+  int fallthrough_dest: @case_stmt_or_none ref
+);
+
+@labeled_stmt =
+  @do_catch_stmt
+| @do_stmt
+| @for_each_stmt
+| @labeled_conditional_stmt
+| @repeat_while_stmt
+| @switch_stmt
+;
+
+#keyset[id]
+labeled_stmt_labels(  //dir=stmt
+  int id: @labeled_stmt ref,
+  string label: string ref
+);
+
+pound_assert_stmts(  //dir=stmt
+  unique int id: @pound_assert_stmt,
+  int condition: @expr_or_none ref,
+  string message: string ref
+);
+
+return_stmts(  //dir=stmt
+  unique int id: @return_stmt
+);
+
+#keyset[id]
+return_stmt_results(  //dir=stmt
+  int id: @return_stmt ref,
+  int result: @expr_or_none ref
+);
+
+throw_stmts(  //dir=stmt
+  unique int id: @throw_stmt,
+  int sub_expr: @expr_or_none ref
+);
+
+yield_stmts(  //dir=stmt
+  unique int id: @yield_stmt
+);
+
+#keyset[id, index]
+yield_stmt_results(  //dir=stmt
+  int id: @yield_stmt ref,
+  int index: int ref,
+  int result: @expr_or_none ref
+);
+
+do_catch_stmts(  //dir=stmt
+  unique int id: @do_catch_stmt,
+  int body: @stmt_or_none ref
+);
+
+#keyset[id, index]
+do_catch_stmt_catches(  //dir=stmt
+  int id: @do_catch_stmt ref,
+  int index: int ref,
+  int catch: @case_stmt_or_none ref
+);
+
+do_stmts(  //dir=stmt
+  unique int id: @do_stmt,
+  int body: @brace_stmt_or_none ref
+);
+
+for_each_stmts(  //dir=stmt
+  unique int id: @for_each_stmt,
+  int pattern: @pattern_or_none ref,
+  int sequence: @expr_or_none ref,
+  int body: @brace_stmt_or_none ref
+);
+
+#keyset[id]
+for_each_stmt_wheres(  //dir=stmt
+  int id: @for_each_stmt ref,
+  int where: @expr_or_none ref
+);
+
+@labeled_conditional_stmt =
+  @guard_stmt
+| @if_stmt
+| @while_stmt
+;
+
+#keyset[id]
+labeled_conditional_stmts(  //dir=stmt
+  int id: @labeled_conditional_stmt ref,
+  int condition: @stmt_condition_or_none ref
+);
+
+repeat_while_stmts(  //dir=stmt
+  unique int id: @repeat_while_stmt,
+  int condition: @expr_or_none ref,
+  int body: @stmt_or_none ref
+);
+
+switch_stmts(  //dir=stmt
+  unique int id: @switch_stmt,
+  int expr: @expr_or_none ref
+);
+
+#keyset[id, index]
+switch_stmt_cases(  //dir=stmt
+  int id: @switch_stmt ref,
+  int index: int ref,
+  int case_: @case_stmt_or_none ref
+);
+
+guard_stmts(  //dir=stmt
+  unique int id: @guard_stmt,
+  int body: @brace_stmt_or_none ref
+);
+
+if_stmts(  //dir=stmt
+  unique int id: @if_stmt,
+  int then: @stmt_or_none ref
+);
+
+#keyset[id]
+if_stmt_elses(  //dir=stmt
+  int id: @if_stmt ref,
+  int else: @stmt_or_none ref
+);
+
+while_stmts(  //dir=stmt
+  unique int id: @while_stmt,
+  int body: @stmt_or_none ref
+);
+
+@type =
+  @any_function_type
+| @any_generic_type
+| @any_metatype_type
+| @builtin_type
+| @dependent_member_type
+| @dynamic_self_type
+| @error_type
+| @existential_type
+| @in_out_type
+| @l_value_type
+| @module_type
+| @parameterized_protocol_type
+| @protocol_composition_type
+| @reference_storage_type
+| @substitutable_type
+| @sugar_type
+| @tuple_type
+| @unresolved_type
+;
+
+#keyset[id]
+types(  //dir=type
+  int id: @type ref,
+  string name: string ref,
+  int canonical_type: @type_or_none ref
+);
+
+type_reprs(  //dir=type
+  unique int id: @type_repr,
+  int type_: @type_or_none ref
+);
+
+@any_function_type =
+  @function_type
+| @generic_function_type
+;
+
+#keyset[id]
+any_function_types(  //dir=type
+  int id: @any_function_type ref,
+  int result: @type_or_none ref
+);
+
+#keyset[id, index]
+any_function_type_param_types(  //dir=type
+  int id: @any_function_type ref,
+  int index: int ref,
+  int param_type: @type_or_none ref
+);
+
+#keyset[id, index]
+any_function_type_param_labels(  //dir=type
+  int id: @any_function_type ref,
+  int index: int ref,
+  string param_label: string ref
+);
+
+#keyset[id]
+any_function_type_is_throwing(  //dir=type
+  int id: @any_function_type ref
+);
+
+#keyset[id]
+any_function_type_is_async(  //dir=type
+  int id: @any_function_type ref
+);
+
+@any_generic_type =
+  @nominal_or_bound_generic_nominal_type
+| @unbound_generic_type
+;
+
+#keyset[id]
+any_generic_types(  //dir=type
+  int id: @any_generic_type ref,
+  int declaration: @decl_or_none ref
+);
+
+#keyset[id]
+any_generic_type_parents(  //dir=type
+  int id: @any_generic_type ref,
+  int parent: @type_or_none ref
+);
+
+@any_metatype_type =
+  @existential_metatype_type
+| @metatype_type
+;
+
+@builtin_type =
+  @any_builtin_integer_type
+| @builtin_bridge_object_type
+| @builtin_default_actor_storage_type
+| @builtin_executor_type
+| @builtin_float_type
+| @builtin_job_type
+| @builtin_native_object_type
+| @builtin_raw_pointer_type
+| @builtin_raw_unsafe_continuation_type
+| @builtin_unsafe_value_buffer_type
+| @builtin_vector_type
+;
+
+dependent_member_types(  //dir=type
+  unique int id: @dependent_member_type,
+  int base_type: @type_or_none ref,
+  int associated_type_decl: @associated_type_decl_or_none ref
+);
+
+dynamic_self_types(  //dir=type
+  unique int id: @dynamic_self_type,
+  int static_self_type: @type_or_none ref
+);
+
+error_types(  //dir=type
+  unique int id: @error_type
+);
+
+existential_types(  //dir=type
+  unique int id: @existential_type,
+  int constraint: @type_or_none ref
+);
+
+in_out_types(  //dir=type
+  unique int id: @in_out_type,
+  int object_type: @type_or_none ref
+);
+
+l_value_types(  //dir=type
+  unique int id: @l_value_type,
+  int object_type: @type_or_none ref
+);
+
+module_types(  //dir=type
+  unique int id: @module_type,
+  int module: @module_decl_or_none ref
+);
+
+parameterized_protocol_types(  //dir=type
+  unique int id: @parameterized_protocol_type,
+  int base: @protocol_type_or_none ref
+);
+
+#keyset[id, index]
+parameterized_protocol_type_args(  //dir=type
+  int id: @parameterized_protocol_type ref,
+  int index: int ref,
+  int arg: @type_or_none ref
+);
+
+protocol_composition_types(  //dir=type
+  unique int id: @protocol_composition_type
+);
+
+#keyset[id, index]
+protocol_composition_type_members(  //dir=type
+  int id: @protocol_composition_type ref,
+  int index: int ref,
+  int member: @type_or_none ref
+);
+
+@reference_storage_type =
+  @unmanaged_storage_type
+| @unowned_storage_type
+| @weak_storage_type
+;
+
+#keyset[id]
+reference_storage_types(  //dir=type
+  int id: @reference_storage_type ref,
+  int referent_type: @type_or_none ref
+);
+
+@substitutable_type =
+  @archetype_type
+| @generic_type_param_type
+;
+
+@sugar_type =
+  @paren_type
+| @syntax_sugar_type
+| @type_alias_type
+;
+
+tuple_types(  //dir=type
+  unique int id: @tuple_type
+);
+
+#keyset[id, index]
+tuple_type_types(  //dir=type
+  int id: @tuple_type ref,
+  int index: int ref,
+  int type_: @type_or_none ref
+);
+
+#keyset[id, index]
+tuple_type_names(  //dir=type
+  int id: @tuple_type ref,
+  int index: int ref,
+  string name: string ref
+);
+
+unresolved_types(  //dir=type
+  unique int id: @unresolved_type
+);
+
+@any_builtin_integer_type =
+  @builtin_integer_literal_type
+| @builtin_integer_type
+;
+
+@archetype_type =
+  @opaque_type_archetype_type
+| @opened_archetype_type
+| @primary_archetype_type
+;
+
+#keyset[id]
+archetype_types(  //dir=type
+  int id: @archetype_type ref,
+  int interface_type: @type_or_none ref
+);
+
+#keyset[id]
+archetype_type_superclasses(  //dir=type
+  int id: @archetype_type ref,
+  int superclass: @type_or_none ref
+);
+
+#keyset[id, index]
+archetype_type_protocols(  //dir=type
+  int id: @archetype_type ref,
+  int index: int ref,
+  int protocol: @protocol_decl_or_none ref
+);
+
+builtin_bridge_object_types(  //dir=type
+  unique int id: @builtin_bridge_object_type
+);
+
+builtin_default_actor_storage_types(  //dir=type
+  unique int id: @builtin_default_actor_storage_type
+);
+
+builtin_executor_types(  //dir=type
+  unique int id: @builtin_executor_type
+);
+
+builtin_float_types(  //dir=type
+  unique int id: @builtin_float_type
+);
+
+builtin_job_types(  //dir=type
+  unique int id: @builtin_job_type
+);
+
+builtin_native_object_types(  //dir=type
+  unique int id: @builtin_native_object_type
+);
+
+builtin_raw_pointer_types(  //dir=type
+  unique int id: @builtin_raw_pointer_type
+);
+
+builtin_raw_unsafe_continuation_types(  //dir=type
+  unique int id: @builtin_raw_unsafe_continuation_type
+);
+
+builtin_unsafe_value_buffer_types(  //dir=type
+  unique int id: @builtin_unsafe_value_buffer_type
+);
+
+builtin_vector_types(  //dir=type
+  unique int id: @builtin_vector_type
+);
+
+existential_metatype_types(  //dir=type
+  unique int id: @existential_metatype_type
+);
+
+function_types(  //dir=type
+  unique int id: @function_type
+);
+
+generic_function_types(  //dir=type
+  unique int id: @generic_function_type
+);
+
+#keyset[id, index]
+generic_function_type_generic_params(  //dir=type
+  int id: @generic_function_type ref,
+  int index: int ref,
+  int generic_param: @generic_type_param_type_or_none ref
+);
+
+generic_type_param_types(  //dir=type
+  unique int id: @generic_type_param_type
+);
+
+metatype_types(  //dir=type
+  unique int id: @metatype_type
+);
+
+@nominal_or_bound_generic_nominal_type =
+  @bound_generic_type
+| @nominal_type
+;
+
+paren_types(  //dir=type
+  unique int id: @paren_type,
+  int type_: @type_or_none ref
+);
+
+@syntax_sugar_type =
+  @dictionary_type
+| @unary_syntax_sugar_type
+;
+
+type_alias_types(  //dir=type
+  unique int id: @type_alias_type,
+  int decl: @type_alias_decl_or_none ref
+);
+
+unbound_generic_types(  //dir=type
+  unique int id: @unbound_generic_type
+);
+
+unmanaged_storage_types(  //dir=type
+  unique int id: @unmanaged_storage_type
+);
+
+unowned_storage_types(  //dir=type
+  unique int id: @unowned_storage_type
+);
+
+weak_storage_types(  //dir=type
+  unique int id: @weak_storage_type
+);
+
+@bound_generic_type =
+  @bound_generic_class_type
+| @bound_generic_enum_type
+| @bound_generic_struct_type
+;
+
+#keyset[id, index]
+bound_generic_type_arg_types(  //dir=type
+  int id: @bound_generic_type ref,
+  int index: int ref,
+  int arg_type: @type_or_none ref
+);
+
+builtin_integer_literal_types(  //dir=type
+  unique int id: @builtin_integer_literal_type
+);
+
+builtin_integer_types(  //dir=type
+  unique int id: @builtin_integer_type
+);
+
+#keyset[id]
+builtin_integer_type_widths(  //dir=type
+  int id: @builtin_integer_type ref,
+  int width: int ref
+);
+
+dictionary_types(  //dir=type
+  unique int id: @dictionary_type,
+  int key_type: @type_or_none ref,
+  int value_type: @type_or_none ref
+);
+
+@nominal_type =
+  @class_type
+| @enum_type
+| @protocol_type
+| @struct_type
+;
+
+opaque_type_archetype_types(  //dir=type
+  unique int id: @opaque_type_archetype_type,
+  int declaration: @opaque_type_decl_or_none ref
+);
+
+opened_archetype_types(  //dir=type
+  unique int id: @opened_archetype_type
+);
+
+primary_archetype_types(  //dir=type
+  unique int id: @primary_archetype_type
+);
+
+@unary_syntax_sugar_type =
+  @array_slice_type
+| @optional_type
+| @variadic_sequence_type
+;
+
+#keyset[id]
+unary_syntax_sugar_types(  //dir=type
+  int id: @unary_syntax_sugar_type ref,
+  int base_type: @type_or_none ref
+);
+
+array_slice_types(  //dir=type
+  unique int id: @array_slice_type
+);
+
+bound_generic_class_types(  //dir=type
+  unique int id: @bound_generic_class_type
+);
+
+bound_generic_enum_types(  //dir=type
+  unique int id: @bound_generic_enum_type
+);
+
+bound_generic_struct_types(  //dir=type
+  unique int id: @bound_generic_struct_type
+);
+
+class_types(  //dir=type
+  unique int id: @class_type
+);
+
+enum_types(  //dir=type
+  unique int id: @enum_type
+);
+
+optional_types(  //dir=type
+  unique int id: @optional_type
+);
+
+protocol_types(  //dir=type
+  unique int id: @protocol_type
+);
+
+struct_types(  //dir=type
+  unique int id: @struct_type
+);
+
+variadic_sequence_types(  //dir=type
+  unique int id: @variadic_sequence_type
+);
+
+@abstract_function_decl_or_none =
+  @abstract_function_decl
+| @unspecified_element
+;
+
+@accessor_decl_or_none =
+  @accessor_decl
+| @unspecified_element
+;
+
+@argument_or_none =
+  @argument
+| @unspecified_element
+;
+
+@associated_type_decl_or_none =
+  @associated_type_decl
+| @unspecified_element
+;
+
+@ast_node_or_none =
+  @ast_node
+| @unspecified_element
+;
+
+@brace_stmt_or_none =
+  @brace_stmt
+| @unspecified_element
+;
+
+@case_label_item_or_none =
+  @case_label_item
+| @unspecified_element
+;
+
+@case_stmt_or_none =
+  @case_stmt
+| @unspecified_element
+;
+
+@closure_expr_or_none =
+  @closure_expr
+| @unspecified_element
+;
+
+@condition_element_or_none =
+  @condition_element
+| @unspecified_element
+;
+
+@constructor_decl_or_none =
+  @constructor_decl
+| @unspecified_element
+;
+
+@decl_or_none =
+  @decl
+| @unspecified_element
+;
+
+@enum_element_decl_or_none =
+  @enum_element_decl
+| @unspecified_element
+;
+
+@expr_or_none =
+  @expr
+| @unspecified_element
+;
+
+@file_or_none =
+  @file
+| @unspecified_element
+;
+
+@generic_type_param_decl_or_none =
+  @generic_type_param_decl
+| @unspecified_element
+;
+
+@generic_type_param_type_or_none =
+  @generic_type_param_type
+| @unspecified_element
+;
+
+@location_or_none =
+  @location
+| @unspecified_element
+;
+
+@module_decl_or_none =
+  @module_decl
+| @unspecified_element
+;
+
+@nominal_type_decl_or_none =
+  @nominal_type_decl
+| @unspecified_element
+;
+
+@opaque_type_decl_or_none =
+  @opaque_type_decl
+| @unspecified_element
+;
+
+@opaque_value_expr_or_none =
+  @opaque_value_expr
+| @unspecified_element
+;
+
+@param_decl_or_none =
+  @param_decl
+| @unspecified_element
+;
+
+@pattern_or_none =
+  @pattern
+| @unspecified_element
+;
+
+@pattern_binding_decl_or_none =
+  @pattern_binding_decl
+| @unspecified_element
+;
+
+@precedence_group_decl_or_none =
+  @precedence_group_decl
+| @unspecified_element
+;
+
+@protocol_decl_or_none =
+  @protocol_decl
+| @unspecified_element
+;
+
+@protocol_type_or_none =
+  @protocol_type
+| @unspecified_element
+;
+
+@stmt_or_none =
+  @stmt
+| @unspecified_element
+;
+
+@stmt_condition_or_none =
+  @stmt_condition
+| @unspecified_element
+;
+
+@string_literal_expr_or_none =
+  @string_literal_expr
+| @unspecified_element
+;
+
+@tap_expr_or_none =
+  @tap_expr
+| @unspecified_element
+;
+
+@type_or_none =
+  @type
+| @unspecified_element
+;
+
+@type_alias_decl_or_none =
+  @type_alias_decl
+| @unspecified_element
+;
+
+@type_repr_or_none =
+  @type_repr
+| @unspecified_element
+;
+
+@value_decl_or_none =
+  @unspecified_element
+| @value_decl
+;
+
+@var_decl_or_none =
+  @unspecified_element
+| @var_decl
+;
diff --git a/swift/downgrades/qlpack.yml b/swift/downgrades/qlpack.yml
new file mode 100644
index 00000000000..3fc919124df
--- /dev/null
+++ b/swift/downgrades/qlpack.yml
@@ -0,0 +1,4 @@
+name: codeql/swift-downgrades
+groups: swift
+downgrades: .
+library: true
diff --git a/swift/ql/lib/upgrades/initial/swift.dbscheme b/swift/ql/lib/upgrades/initial/swift.dbscheme
new file mode 100644
index 00000000000..ceca289a0ff
--- /dev/null
+++ b/swift/ql/lib/upgrades/initial/swift.dbscheme
@@ -0,0 +1,2493 @@
+// generated by codegen/codegen.py
+
+// from prefix.dbscheme
+/**
+ * The source location of the snapshot.
+ */
+sourceLocationPrefix(
+  string prefix: string ref
+);
+
+
+// from schema.py
+
+@element =
+  @callable
+| @file
+| @generic_context
+| @iterable_decl_context
+| @locatable
+| @location
+| @type
+;
+
+#keyset[id]
+element_is_unknown(
+  int id: @element ref
+);
+
+@callable =
+  @abstract_closure_expr
+| @abstract_function_decl
+;
+
+#keyset[id]
+callable_self_params(
+  int id: @callable ref,
+  int self_param: @param_decl_or_none ref
+);
+
+#keyset[id, index]
+callable_params(
+  int id: @callable ref,
+  int index: int ref,
+  int param: @param_decl_or_none ref
+);
+
+#keyset[id]
+callable_bodies(
+  int id: @callable ref,
+  int body: @brace_stmt_or_none ref
+);
+
+@file =
+  @db_file
+| @unknown_file
+;
+
+#keyset[id]
+files(
+  int id: @file ref,
+  string name: string ref
+);
+
+@locatable =
+  @argument
+| @ast_node
+| @comment
+| @diagnostics
+| @error_element
+;
+
+#keyset[id]
+locatable_locations(
+  int id: @locatable ref,
+  int location: @location_or_none ref
+);
+
+@location =
+  @db_location
+| @unknown_location
+;
+
+#keyset[id]
+locations(
+  int id: @location ref,
+  int file: @file_or_none ref,
+  int start_line: int ref,
+  int start_column: int ref,
+  int end_line: int ref,
+  int end_column: int ref
+);
+
+@ast_node =
+  @case_label_item
+| @condition_element
+| @decl
+| @expr
+| @pattern
+| @stmt
+| @stmt_condition
+| @type_repr
+;
+
+comments(
+  unique int id: @comment,
+  string text: string ref
+);
+
+db_files(
+  unique int id: @db_file
+);
+
+db_locations(
+  unique int id: @db_location
+);
+
+diagnostics(
+  unique int id: @diagnostics,
+  string text: string ref,
+  int kind: int ref
+);
+
+@error_element =
+  @error_expr
+| @error_type
+| @overloaded_decl_ref_expr
+| @unresolved_decl_ref_expr
+| @unresolved_dot_expr
+| @unresolved_member_chain_result_expr
+| @unresolved_member_expr
+| @unresolved_pattern_expr
+| @unresolved_specialize_expr
+| @unresolved_type
+| @unresolved_type_conversion_expr
+| @unspecified_element
+;
+
+unknown_files(
+  unique int id: @unknown_file
+);
+
+unknown_locations(
+  unique int id: @unknown_location
+);
+
+unspecified_elements(
+  unique int id: @unspecified_element,
+  string property: string ref,
+  string error: string ref
+);
+
+#keyset[id]
+unspecified_element_parents(
+  int id: @unspecified_element ref,
+  int parent: @element ref
+);
+
+#keyset[id]
+unspecified_element_indices(
+  int id: @unspecified_element ref,
+  int index: int ref
+);
+
+@decl =
+  @enum_case_decl
+| @extension_decl
+| @if_config_decl
+| @import_decl
+| @missing_member_decl
+| @operator_decl
+| @pattern_binding_decl
+| @pound_diagnostic_decl
+| @precedence_group_decl
+| @top_level_code_decl
+| @value_decl
+;
+
+#keyset[id]
+decls(  //dir=decl
+  int id: @decl ref,
+  int module: @module_decl_or_none ref
+);
+
+@generic_context =
+  @abstract_function_decl
+| @extension_decl
+| @generic_type_decl
+| @subscript_decl
+;
+
+#keyset[id, index]
+generic_context_generic_type_params(  //dir=decl
+  int id: @generic_context ref,
+  int index: int ref,
+  int generic_type_param: @generic_type_param_decl_or_none ref
+);
+
+@iterable_decl_context =
+  @extension_decl
+| @nominal_type_decl
+;
+
+#keyset[id, index]
+iterable_decl_context_members(  //dir=decl
+  int id: @iterable_decl_context ref,
+  int index: int ref,
+  int member: @decl_or_none ref
+);
+
+enum_case_decls(  //dir=decl
+  unique int id: @enum_case_decl
+);
+
+#keyset[id, index]
+enum_case_decl_elements(  //dir=decl
+  int id: @enum_case_decl ref,
+  int index: int ref,
+  int element: @enum_element_decl_or_none ref
+);
+
+extension_decls(  //dir=decl
+  unique int id: @extension_decl,
+  int extended_type_decl: @nominal_type_decl_or_none ref
+);
+
+if_config_decls(  //dir=decl
+  unique int id: @if_config_decl
+);
+
+#keyset[id, index]
+if_config_decl_active_elements(  //dir=decl
+  int id: @if_config_decl ref,
+  int index: int ref,
+  int active_element: @ast_node_or_none ref
+);
+
+import_decls(  //dir=decl
+  unique int id: @import_decl
+);
+
+#keyset[id]
+import_decl_is_exported(  //dir=decl
+  int id: @import_decl ref
+);
+
+#keyset[id]
+import_decl_imported_modules(  //dir=decl
+  int id: @import_decl ref,
+  int imported_module: @module_decl_or_none ref
+);
+
+#keyset[id, index]
+import_decl_declarations(  //dir=decl
+  int id: @import_decl ref,
+  int index: int ref,
+  int declaration: @value_decl_or_none ref
+);
+
+missing_member_decls(  //dir=decl
+  unique int id: @missing_member_decl,
+  string name: string ref
+);
+
+@operator_decl =
+  @infix_operator_decl
+| @postfix_operator_decl
+| @prefix_operator_decl
+;
+
+#keyset[id]
+operator_decls(  //dir=decl
+  int id: @operator_decl ref,
+  string name: string ref
+);
+
+pattern_binding_decls(  //dir=decl
+  unique int id: @pattern_binding_decl
+);
+
+#keyset[id, index]
+pattern_binding_decl_inits(  //dir=decl
+  int id: @pattern_binding_decl ref,
+  int index: int ref,
+  int init: @expr_or_none ref
+);
+
+#keyset[id, index]
+pattern_binding_decl_patterns(  //dir=decl
+  int id: @pattern_binding_decl ref,
+  int index: int ref,
+  int pattern: @pattern_or_none ref
+);
+
+pound_diagnostic_decls(  //dir=decl
+  unique int id: @pound_diagnostic_decl,
+  int kind: int ref,
+  int message: @string_literal_expr_or_none ref
+);
+
+precedence_group_decls(  //dir=decl
+  unique int id: @precedence_group_decl
+);
+
+top_level_code_decls(  //dir=decl
+  unique int id: @top_level_code_decl,
+  int body: @brace_stmt_or_none ref
+);
+
+@value_decl =
+  @abstract_function_decl
+| @abstract_storage_decl
+| @enum_element_decl
+| @type_decl
+;
+
+#keyset[id]
+value_decls(  //dir=decl
+  int id: @value_decl ref,
+  int interface_type: @type_or_none ref
+);
+
+@abstract_function_decl =
+  @constructor_decl
+| @destructor_decl
+| @func_decl
+;
+
+#keyset[id]
+abstract_function_decls(  //dir=decl
+  int id: @abstract_function_decl ref,
+  string name: string ref
+);
+
+@abstract_storage_decl =
+  @subscript_decl
+| @var_decl
+;
+
+#keyset[id, index]
+abstract_storage_decl_accessor_decls(  //dir=decl
+  int id: @abstract_storage_decl ref,
+  int index: int ref,
+  int accessor_decl: @accessor_decl_or_none ref
+);
+
+enum_element_decls(  //dir=decl
+  unique int id: @enum_element_decl,
+  string name: string ref
+);
+
+#keyset[id, index]
+enum_element_decl_params(  //dir=decl
+  int id: @enum_element_decl ref,
+  int index: int ref,
+  int param: @param_decl_or_none ref
+);
+
+infix_operator_decls(  //dir=decl
+  unique int id: @infix_operator_decl
+);
+
+#keyset[id]
+infix_operator_decl_precedence_groups(  //dir=decl
+  int id: @infix_operator_decl ref,
+  int precedence_group: @precedence_group_decl_or_none ref
+);
+
+postfix_operator_decls(  //dir=decl
+  unique int id: @postfix_operator_decl
+);
+
+prefix_operator_decls(  //dir=decl
+  unique int id: @prefix_operator_decl
+);
+
+@type_decl =
+  @abstract_type_param_decl
+| @generic_type_decl
+| @module_decl
+;
+
+#keyset[id]
+type_decls(  //dir=decl
+  int id: @type_decl ref,
+  string name: string ref
+);
+
+#keyset[id, index]
+type_decl_base_types(  //dir=decl
+  int id: @type_decl ref,
+  int index: int ref,
+  int base_type: @type_or_none ref
+);
+
+@abstract_type_param_decl =
+  @associated_type_decl
+| @generic_type_param_decl
+;
+
+constructor_decls(  //dir=decl
+  unique int id: @constructor_decl
+);
+
+destructor_decls(  //dir=decl
+  unique int id: @destructor_decl
+);
+
+@func_decl =
+  @accessor_decl
+| @concrete_func_decl
+;
+
+@generic_type_decl =
+  @nominal_type_decl
+| @opaque_type_decl
+| @type_alias_decl
+;
+
+module_decls(  //dir=decl
+  unique int id: @module_decl
+);
+
+#keyset[id]
+module_decl_is_builtin_module(  //dir=decl
+  int id: @module_decl ref
+);
+
+#keyset[id]
+module_decl_is_system_module(  //dir=decl
+  int id: @module_decl ref
+);
+
+#keyset[id, index]
+module_decl_imported_modules(  //dir=decl
+  int id: @module_decl ref,
+  int index: int ref,
+  int imported_module: @module_decl_or_none ref
+);
+
+#keyset[id, index]
+module_decl_exported_modules(  //dir=decl
+  int id: @module_decl ref,
+  int index: int ref,
+  int exported_module: @module_decl_or_none ref
+);
+
+subscript_decls(  //dir=decl
+  unique int id: @subscript_decl,
+  int element_type: @type_or_none ref
+);
+
+#keyset[id, index]
+subscript_decl_params(  //dir=decl
+  int id: @subscript_decl ref,
+  int index: int ref,
+  int param: @param_decl_or_none ref
+);
+
+@var_decl =
+  @concrete_var_decl
+| @param_decl
+;
+
+#keyset[id]
+var_decls(  //dir=decl
+  int id: @var_decl ref,
+  string name: string ref,
+  int type_: @type_or_none ref
+);
+
+#keyset[id]
+var_decl_attached_property_wrapper_types(  //dir=decl
+  int id: @var_decl ref,
+  int attached_property_wrapper_type: @type_or_none ref
+);
+
+#keyset[id]
+var_decl_parent_patterns(  //dir=decl
+  int id: @var_decl ref,
+  int parent_pattern: @pattern_or_none ref
+);
+
+#keyset[id]
+var_decl_parent_initializers(  //dir=decl
+  int id: @var_decl ref,
+  int parent_initializer: @expr_or_none ref
+);
+
+#keyset[id]
+var_decl_property_wrapper_backing_var_bindings(  //dir=decl
+  int id: @var_decl ref,
+  int property_wrapper_backing_var_binding: @pattern_binding_decl_or_none ref
+);
+
+#keyset[id]
+var_decl_property_wrapper_backing_vars(  //dir=decl
+  int id: @var_decl ref,
+  int property_wrapper_backing_var: @var_decl_or_none ref
+);
+
+#keyset[id]
+var_decl_property_wrapper_projection_var_bindings(  //dir=decl
+  int id: @var_decl ref,
+  int property_wrapper_projection_var_binding: @pattern_binding_decl_or_none ref
+);
+
+#keyset[id]
+var_decl_property_wrapper_projection_vars(  //dir=decl
+  int id: @var_decl ref,
+  int property_wrapper_projection_var: @var_decl_or_none ref
+);
+
+accessor_decls(  //dir=decl
+  unique int id: @accessor_decl
+);
+
+#keyset[id]
+accessor_decl_is_getter(  //dir=decl
+  int id: @accessor_decl ref
+);
+
+#keyset[id]
+accessor_decl_is_setter(  //dir=decl
+  int id: @accessor_decl ref
+);
+
+#keyset[id]
+accessor_decl_is_will_set(  //dir=decl
+  int id: @accessor_decl ref
+);
+
+#keyset[id]
+accessor_decl_is_did_set(  //dir=decl
+  int id: @accessor_decl ref
+);
+
+associated_type_decls(  //dir=decl
+  unique int id: @associated_type_decl
+);
+
+concrete_func_decls(  //dir=decl
+  unique int id: @concrete_func_decl
+);
+
+concrete_var_decls(  //dir=decl
+  unique int id: @concrete_var_decl,
+  int introducer_int: int ref
+);
+
+generic_type_param_decls(  //dir=decl
+  unique int id: @generic_type_param_decl
+);
+
+@nominal_type_decl =
+  @class_decl
+| @enum_decl
+| @protocol_decl
+| @struct_decl
+;
+
+#keyset[id]
+nominal_type_decls(  //dir=decl
+  int id: @nominal_type_decl ref,
+  int type_: @type_or_none ref
+);
+
+opaque_type_decls(  //dir=decl
+  unique int id: @opaque_type_decl,
+  int naming_declaration: @value_decl_or_none ref
+);
+
+#keyset[id, index]
+opaque_type_decl_opaque_generic_params(  //dir=decl
+  int id: @opaque_type_decl ref,
+  int index: int ref,
+  int opaque_generic_param: @generic_type_param_type_or_none ref
+);
+
+param_decls(  //dir=decl
+  unique int id: @param_decl
+);
+
+#keyset[id]
+param_decl_is_inout(  //dir=decl
+  int id: @param_decl ref
+);
+
+#keyset[id]
+param_decl_property_wrapper_local_wrapped_var_bindings(  //dir=decl
+  int id: @param_decl ref,
+  int property_wrapper_local_wrapped_var_binding: @pattern_binding_decl_or_none ref
+);
+
+#keyset[id]
+param_decl_property_wrapper_local_wrapped_vars(  //dir=decl
+  int id: @param_decl ref,
+  int property_wrapper_local_wrapped_var: @var_decl_or_none ref
+);
+
+type_alias_decls(  //dir=decl
+  unique int id: @type_alias_decl
+);
+
+class_decls(  //dir=decl
+  unique int id: @class_decl
+);
+
+enum_decls(  //dir=decl
+  unique int id: @enum_decl
+);
+
+protocol_decls(  //dir=decl
+  unique int id: @protocol_decl
+);
+
+struct_decls(  //dir=decl
+  unique int id: @struct_decl
+);
+
+arguments(  //dir=expr
+  unique int id: @argument,
+  string label: string ref,
+  int expr: @expr_or_none ref
+);
+
+@expr =
+  @abstract_closure_expr
+| @any_try_expr
+| @applied_property_wrapper_expr
+| @apply_expr
+| @assign_expr
+| @bind_optional_expr
+| @capture_list_expr
+| @collection_expr
+| @decl_ref_expr
+| @default_argument_expr
+| @discard_assignment_expr
+| @dot_syntax_base_ignored_expr
+| @dynamic_type_expr
+| @enum_is_case_expr
+| @error_expr
+| @explicit_cast_expr
+| @force_value_expr
+| @identity_expr
+| @if_expr
+| @implicit_conversion_expr
+| @in_out_expr
+| @key_path_application_expr
+| @key_path_dot_expr
+| @key_path_expr
+| @lazy_initializer_expr
+| @literal_expr
+| @lookup_expr
+| @make_temporarily_escapable_expr
+| @obj_c_selector_expr
+| @one_way_expr
+| @opaque_value_expr
+| @open_existential_expr
+| @optional_evaluation_expr
+| @other_constructor_decl_ref_expr
+| @overloaded_decl_ref_expr
+| @property_wrapper_value_placeholder_expr
+| @rebind_self_in_constructor_expr
+| @sequence_expr
+| @super_ref_expr
+| @tap_expr
+| @tuple_element_expr
+| @tuple_expr
+| @type_expr
+| @unresolved_decl_ref_expr
+| @unresolved_dot_expr
+| @unresolved_member_expr
+| @unresolved_pattern_expr
+| @unresolved_specialize_expr
+| @vararg_expansion_expr
+;
+
+#keyset[id]
+expr_types(  //dir=expr
+  int id: @expr ref,
+  int type_: @type_or_none ref
+);
+
+@abstract_closure_expr =
+  @auto_closure_expr
+| @closure_expr
+;
+
+@any_try_expr =
+  @force_try_expr
+| @optional_try_expr
+| @try_expr
+;
+
+#keyset[id]
+any_try_exprs(  //dir=expr
+  int id: @any_try_expr ref,
+  int sub_expr: @expr_or_none ref
+);
+
+applied_property_wrapper_exprs(  //dir=expr
+  unique int id: @applied_property_wrapper_expr,
+  int kind: int ref,
+  int value: @expr_or_none ref,
+  int param: @param_decl_or_none ref
+);
+
+@apply_expr =
+  @binary_expr
+| @call_expr
+| @postfix_unary_expr
+| @prefix_unary_expr
+| @self_apply_expr
+;
+
+#keyset[id]
+apply_exprs(  //dir=expr
+  int id: @apply_expr ref,
+  int function: @expr_or_none ref
+);
+
+#keyset[id, index]
+apply_expr_arguments(  //dir=expr
+  int id: @apply_expr ref,
+  int index: int ref,
+  int argument: @argument_or_none ref
+);
+
+assign_exprs(  //dir=expr
+  unique int id: @assign_expr,
+  int dest: @expr_or_none ref,
+  int source: @expr_or_none ref
+);
+
+bind_optional_exprs(  //dir=expr
+  unique int id: @bind_optional_expr,
+  int sub_expr: @expr_or_none ref
+);
+
+capture_list_exprs(  //dir=expr
+  unique int id: @capture_list_expr,
+  int closure_body: @closure_expr_or_none ref
+);
+
+#keyset[id, index]
+capture_list_expr_binding_decls(  //dir=expr
+  int id: @capture_list_expr ref,
+  int index: int ref,
+  int binding_decl: @pattern_binding_decl_or_none ref
+);
+
+@collection_expr =
+  @array_expr
+| @dictionary_expr
+;
+
+decl_ref_exprs(  //dir=expr
+  unique int id: @decl_ref_expr,
+  int decl: @decl_or_none ref
+);
+
+#keyset[id, index]
+decl_ref_expr_replacement_types(  //dir=expr
+  int id: @decl_ref_expr ref,
+  int index: int ref,
+  int replacement_type: @type_or_none ref
+);
+
+#keyset[id]
+decl_ref_expr_has_direct_to_storage_semantics(  //dir=expr
+  int id: @decl_ref_expr ref
+);
+
+#keyset[id]
+decl_ref_expr_has_direct_to_implementation_semantics(  //dir=expr
+  int id: @decl_ref_expr ref
+);
+
+#keyset[id]
+decl_ref_expr_has_ordinary_semantics(  //dir=expr
+  int id: @decl_ref_expr ref
+);
+
+default_argument_exprs(  //dir=expr
+  unique int id: @default_argument_expr,
+  int param_decl: @param_decl_or_none ref,
+  int param_index: int ref
+);
+
+#keyset[id]
+default_argument_expr_caller_side_defaults(  //dir=expr
+  int id: @default_argument_expr ref,
+  int caller_side_default: @expr_or_none ref
+);
+
+discard_assignment_exprs(  //dir=expr
+  unique int id: @discard_assignment_expr
+);
+
+dot_syntax_base_ignored_exprs(  //dir=expr
+  unique int id: @dot_syntax_base_ignored_expr,
+  int qualifier: @expr_or_none ref,
+  int sub_expr: @expr_or_none ref
+);
+
+dynamic_type_exprs(  //dir=expr
+  unique int id: @dynamic_type_expr,
+  int base: @expr_or_none ref
+);
+
+enum_is_case_exprs(  //dir=expr
+  unique int id: @enum_is_case_expr,
+  int sub_expr: @expr_or_none ref,
+  int element: @enum_element_decl_or_none ref
+);
+
+error_exprs(  //dir=expr
+  unique int id: @error_expr
+);
+
+@explicit_cast_expr =
+  @checked_cast_expr
+| @coerce_expr
+;
+
+#keyset[id]
+explicit_cast_exprs(  //dir=expr
+  int id: @explicit_cast_expr ref,
+  int sub_expr: @expr_or_none ref
+);
+
+force_value_exprs(  //dir=expr
+  unique int id: @force_value_expr,
+  int sub_expr: @expr_or_none ref
+);
+
+@identity_expr =
+  @await_expr
+| @dot_self_expr
+| @paren_expr
+| @unresolved_member_chain_result_expr
+;
+
+#keyset[id]
+identity_exprs(  //dir=expr
+  int id: @identity_expr ref,
+  int sub_expr: @expr_or_none ref
+);
+
+if_exprs(  //dir=expr
+  unique int id: @if_expr,
+  int condition: @expr_or_none ref,
+  int then_expr: @expr_or_none ref,
+  int else_expr: @expr_or_none ref
+);
+
+@implicit_conversion_expr =
+  @any_hashable_erasure_expr
+| @archetype_to_super_expr
+| @array_to_pointer_expr
+| @bridge_from_obj_c_expr
+| @bridge_to_obj_c_expr
+| @class_metatype_to_object_expr
+| @collection_upcast_conversion_expr
+| @conditional_bridge_from_obj_c_expr
+| @covariant_function_conversion_expr
+| @covariant_return_conversion_expr
+| @derived_to_base_expr
+| @destructure_tuple_expr
+| @differentiable_function_expr
+| @differentiable_function_extract_original_expr
+| @erasure_expr
+| @existential_metatype_to_object_expr
+| @foreign_object_conversion_expr
+| @function_conversion_expr
+| @in_out_to_pointer_expr
+| @inject_into_optional_expr
+| @linear_function_expr
+| @linear_function_extract_original_expr
+| @linear_to_differentiable_function_expr
+| @load_expr
+| @metatype_conversion_expr
+| @pointer_to_pointer_expr
+| @protocol_metatype_to_object_expr
+| @string_to_pointer_expr
+| @underlying_to_opaque_expr
+| @unevaluated_instance_expr
+| @unresolved_type_conversion_expr
+;
+
+#keyset[id]
+implicit_conversion_exprs(  //dir=expr
+  int id: @implicit_conversion_expr ref,
+  int sub_expr: @expr_or_none ref
+);
+
+in_out_exprs(  //dir=expr
+  unique int id: @in_out_expr,
+  int sub_expr: @expr_or_none ref
+);
+
+key_path_application_exprs(  //dir=expr
+  unique int id: @key_path_application_expr,
+  int base: @expr_or_none ref,
+  int key_path: @expr_or_none ref
+);
+
+key_path_dot_exprs(  //dir=expr
+  unique int id: @key_path_dot_expr
+);
+
+key_path_exprs(  //dir=expr
+  unique int id: @key_path_expr
+);
+
+#keyset[id]
+key_path_expr_roots(  //dir=expr
+  int id: @key_path_expr ref,
+  int root: @type_repr_or_none ref
+);
+
+#keyset[id]
+key_path_expr_parsed_paths(  //dir=expr
+  int id: @key_path_expr ref,
+  int parsed_path: @expr_or_none ref
+);
+
+lazy_initializer_exprs(  //dir=expr
+  unique int id: @lazy_initializer_expr,
+  int sub_expr: @expr_or_none ref
+);
+
+@literal_expr =
+  @builtin_literal_expr
+| @interpolated_string_literal_expr
+| @nil_literal_expr
+| @object_literal_expr
+| @regex_literal_expr
+;
+
+@lookup_expr =
+  @dynamic_lookup_expr
+| @member_ref_expr
+| @method_ref_expr
+| @subscript_expr
+;
+
+#keyset[id]
+lookup_exprs(  //dir=expr
+  int id: @lookup_expr ref,
+  int base: @expr_or_none ref
+);
+
+#keyset[id]
+lookup_expr_members(  //dir=expr
+  int id: @lookup_expr ref,
+  int member: @decl_or_none ref
+);
+
+make_temporarily_escapable_exprs(  //dir=expr
+  unique int id: @make_temporarily_escapable_expr,
+  int escaping_closure: @opaque_value_expr_or_none ref,
+  int nonescaping_closure: @expr_or_none ref,
+  int sub_expr: @expr_or_none ref
+);
+
+obj_c_selector_exprs(  //dir=expr
+  unique int id: @obj_c_selector_expr,
+  int sub_expr: @expr_or_none ref,
+  int method: @abstract_function_decl_or_none ref
+);
+
+one_way_exprs(  //dir=expr
+  unique int id: @one_way_expr,
+  int sub_expr: @expr_or_none ref
+);
+
+opaque_value_exprs(  //dir=expr
+  unique int id: @opaque_value_expr
+);
+
+open_existential_exprs(  //dir=expr
+  unique int id: @open_existential_expr,
+  int sub_expr: @expr_or_none ref,
+  int existential: @expr_or_none ref,
+  int opaque_expr: @opaque_value_expr_or_none ref
+);
+
+optional_evaluation_exprs(  //dir=expr
+  unique int id: @optional_evaluation_expr,
+  int sub_expr: @expr_or_none ref
+);
+
+other_constructor_decl_ref_exprs(  //dir=expr
+  unique int id: @other_constructor_decl_ref_expr,
+  int constructor_decl: @constructor_decl_or_none ref
+);
+
+overloaded_decl_ref_exprs(  //dir=expr
+  unique int id: @overloaded_decl_ref_expr
+);
+
+#keyset[id, index]
+overloaded_decl_ref_expr_possible_declarations(  //dir=expr
+  int id: @overloaded_decl_ref_expr ref,
+  int index: int ref,
+  int possible_declaration: @value_decl_or_none ref
+);
+
+property_wrapper_value_placeholder_exprs(  //dir=expr
+  unique int id: @property_wrapper_value_placeholder_expr,
+  int placeholder: @opaque_value_expr_or_none ref
+);
+
+#keyset[id]
+property_wrapper_value_placeholder_expr_wrapped_values(  //dir=expr
+  int id: @property_wrapper_value_placeholder_expr ref,
+  int wrapped_value: @expr_or_none ref
+);
+
+rebind_self_in_constructor_exprs(  //dir=expr
+  unique int id: @rebind_self_in_constructor_expr,
+  int sub_expr: @expr_or_none ref,
+  int self: @var_decl_or_none ref
+);
+
+sequence_exprs(  //dir=expr
+  unique int id: @sequence_expr
+);
+
+#keyset[id, index]
+sequence_expr_elements(  //dir=expr
+  int id: @sequence_expr ref,
+  int index: int ref,
+  int element: @expr_or_none ref
+);
+
+super_ref_exprs(  //dir=expr
+  unique int id: @super_ref_expr,
+  int self: @var_decl_or_none ref
+);
+
+tap_exprs(  //dir=expr
+  unique int id: @tap_expr,
+  int body: @brace_stmt_or_none ref,
+  int var: @var_decl_or_none ref
+);
+
+#keyset[id]
+tap_expr_sub_exprs(  //dir=expr
+  int id: @tap_expr ref,
+  int sub_expr: @expr_or_none ref
+);
+
+tuple_element_exprs(  //dir=expr
+  unique int id: @tuple_element_expr,
+  int sub_expr: @expr_or_none ref,
+  int index: int ref
+);
+
+tuple_exprs(  //dir=expr
+  unique int id: @tuple_expr
+);
+
+#keyset[id, index]
+tuple_expr_elements(  //dir=expr
+  int id: @tuple_expr ref,
+  int index: int ref,
+  int element: @expr_or_none ref
+);
+
+type_exprs(  //dir=expr
+  unique int id: @type_expr
+);
+
+#keyset[id]
+type_expr_type_reprs(  //dir=expr
+  int id: @type_expr ref,
+  int type_repr: @type_repr_or_none ref
+);
+
+unresolved_decl_ref_exprs(  //dir=expr
+  unique int id: @unresolved_decl_ref_expr
+);
+
+#keyset[id]
+unresolved_decl_ref_expr_names(  //dir=expr
+  int id: @unresolved_decl_ref_expr ref,
+  string name: string ref
+);
+
+unresolved_dot_exprs(  //dir=expr
+  unique int id: @unresolved_dot_expr,
+  int base: @expr_or_none ref,
+  string name: string ref
+);
+
+unresolved_member_exprs(  //dir=expr
+  unique int id: @unresolved_member_expr,
+  string name: string ref
+);
+
+unresolved_pattern_exprs(  //dir=expr
+  unique int id: @unresolved_pattern_expr,
+  int sub_pattern: @pattern_or_none ref
+);
+
+unresolved_specialize_exprs(  //dir=expr
+  unique int id: @unresolved_specialize_expr,
+  int sub_expr: @expr_or_none ref
+);
+
+vararg_expansion_exprs(  //dir=expr
+  unique int id: @vararg_expansion_expr,
+  int sub_expr: @expr_or_none ref
+);
+
+any_hashable_erasure_exprs(  //dir=expr
+  unique int id: @any_hashable_erasure_expr
+);
+
+archetype_to_super_exprs(  //dir=expr
+  unique int id: @archetype_to_super_expr
+);
+
+array_exprs(  //dir=expr
+  unique int id: @array_expr
+);
+
+#keyset[id, index]
+array_expr_elements(  //dir=expr
+  int id: @array_expr ref,
+  int index: int ref,
+  int element: @expr_or_none ref
+);
+
+array_to_pointer_exprs(  //dir=expr
+  unique int id: @array_to_pointer_expr
+);
+
+auto_closure_exprs(  //dir=expr
+  unique int id: @auto_closure_expr
+);
+
+await_exprs(  //dir=expr
+  unique int id: @await_expr
+);
+
+binary_exprs(  //dir=expr
+  unique int id: @binary_expr
+);
+
+bridge_from_obj_c_exprs(  //dir=expr
+  unique int id: @bridge_from_obj_c_expr
+);
+
+bridge_to_obj_c_exprs(  //dir=expr
+  unique int id: @bridge_to_obj_c_expr
+);
+
+@builtin_literal_expr =
+  @boolean_literal_expr
+| @magic_identifier_literal_expr
+| @number_literal_expr
+| @string_literal_expr
+;
+
+call_exprs(  //dir=expr
+  unique int id: @call_expr
+);
+
+@checked_cast_expr =
+  @conditional_checked_cast_expr
+| @forced_checked_cast_expr
+| @is_expr
+;
+
+class_metatype_to_object_exprs(  //dir=expr
+  unique int id: @class_metatype_to_object_expr
+);
+
+closure_exprs(  //dir=expr
+  unique int id: @closure_expr
+);
+
+coerce_exprs(  //dir=expr
+  unique int id: @coerce_expr
+);
+
+collection_upcast_conversion_exprs(  //dir=expr
+  unique int id: @collection_upcast_conversion_expr
+);
+
+conditional_bridge_from_obj_c_exprs(  //dir=expr
+  unique int id: @conditional_bridge_from_obj_c_expr
+);
+
+covariant_function_conversion_exprs(  //dir=expr
+  unique int id: @covariant_function_conversion_expr
+);
+
+covariant_return_conversion_exprs(  //dir=expr
+  unique int id: @covariant_return_conversion_expr
+);
+
+derived_to_base_exprs(  //dir=expr
+  unique int id: @derived_to_base_expr
+);
+
+destructure_tuple_exprs(  //dir=expr
+  unique int id: @destructure_tuple_expr
+);
+
+dictionary_exprs(  //dir=expr
+  unique int id: @dictionary_expr
+);
+
+#keyset[id, index]
+dictionary_expr_elements(  //dir=expr
+  int id: @dictionary_expr ref,
+  int index: int ref,
+  int element: @expr_or_none ref
+);
+
+differentiable_function_exprs(  //dir=expr
+  unique int id: @differentiable_function_expr
+);
+
+differentiable_function_extract_original_exprs(  //dir=expr
+  unique int id: @differentiable_function_extract_original_expr
+);
+
+dot_self_exprs(  //dir=expr
+  unique int id: @dot_self_expr
+);
+
+@dynamic_lookup_expr =
+  @dynamic_member_ref_expr
+| @dynamic_subscript_expr
+;
+
+erasure_exprs(  //dir=expr
+  unique int id: @erasure_expr
+);
+
+existential_metatype_to_object_exprs(  //dir=expr
+  unique int id: @existential_metatype_to_object_expr
+);
+
+force_try_exprs(  //dir=expr
+  unique int id: @force_try_expr
+);
+
+foreign_object_conversion_exprs(  //dir=expr
+  unique int id: @foreign_object_conversion_expr
+);
+
+function_conversion_exprs(  //dir=expr
+  unique int id: @function_conversion_expr
+);
+
+in_out_to_pointer_exprs(  //dir=expr
+  unique int id: @in_out_to_pointer_expr
+);
+
+inject_into_optional_exprs(  //dir=expr
+  unique int id: @inject_into_optional_expr
+);
+
+interpolated_string_literal_exprs(  //dir=expr
+  unique int id: @interpolated_string_literal_expr
+);
+
+#keyset[id]
+interpolated_string_literal_expr_interpolation_exprs(  //dir=expr
+  int id: @interpolated_string_literal_expr ref,
+  int interpolation_expr: @opaque_value_expr_or_none ref
+);
+
+#keyset[id]
+interpolated_string_literal_expr_interpolation_count_exprs(  //dir=expr
+  int id: @interpolated_string_literal_expr ref,
+  int interpolation_count_expr: @expr_or_none ref
+);
+
+#keyset[id]
+interpolated_string_literal_expr_literal_capacity_exprs(  //dir=expr
+  int id: @interpolated_string_literal_expr ref,
+  int literal_capacity_expr: @expr_or_none ref
+);
+
+#keyset[id]
+interpolated_string_literal_expr_appending_exprs(  //dir=expr
+  int id: @interpolated_string_literal_expr ref,
+  int appending_expr: @tap_expr_or_none ref
+);
+
+linear_function_exprs(  //dir=expr
+  unique int id: @linear_function_expr
+);
+
+linear_function_extract_original_exprs(  //dir=expr
+  unique int id: @linear_function_extract_original_expr
+);
+
+linear_to_differentiable_function_exprs(  //dir=expr
+  unique int id: @linear_to_differentiable_function_expr
+);
+
+load_exprs(  //dir=expr
+  unique int id: @load_expr
+);
+
+member_ref_exprs(  //dir=expr
+  unique int id: @member_ref_expr
+);
+
+#keyset[id]
+member_ref_expr_has_direct_to_storage_semantics(  //dir=expr
+  int id: @member_ref_expr ref
+);
+
+#keyset[id]
+member_ref_expr_has_direct_to_implementation_semantics(  //dir=expr
+  int id: @member_ref_expr ref
+);
+
+#keyset[id]
+member_ref_expr_has_ordinary_semantics(  //dir=expr
+  int id: @member_ref_expr ref
+);
+
+metatype_conversion_exprs(  //dir=expr
+  unique int id: @metatype_conversion_expr
+);
+
+method_ref_exprs(  //dir=expr
+  unique int id: @method_ref_expr
+);
+
+nil_literal_exprs(  //dir=expr
+  unique int id: @nil_literal_expr
+);
+
+object_literal_exprs(  //dir=expr
+  unique int id: @object_literal_expr,
+  int kind: int ref
+);
+
+#keyset[id, index]
+object_literal_expr_arguments(  //dir=expr
+  int id: @object_literal_expr ref,
+  int index: int ref,
+  int argument: @argument_or_none ref
+);
+
+optional_try_exprs(  //dir=expr
+  unique int id: @optional_try_expr
+);
+
+paren_exprs(  //dir=expr
+  unique int id: @paren_expr
+);
+
+pointer_to_pointer_exprs(  //dir=expr
+  unique int id: @pointer_to_pointer_expr
+);
+
+postfix_unary_exprs(  //dir=expr
+  unique int id: @postfix_unary_expr
+);
+
+prefix_unary_exprs(  //dir=expr
+  unique int id: @prefix_unary_expr
+);
+
+protocol_metatype_to_object_exprs(  //dir=expr
+  unique int id: @protocol_metatype_to_object_expr
+);
+
+regex_literal_exprs(  //dir=expr
+  unique int id: @regex_literal_expr
+);
+
+@self_apply_expr =
+  @constructor_ref_call_expr
+| @dot_syntax_call_expr
+;
+
+#keyset[id]
+self_apply_exprs(  //dir=expr
+  int id: @self_apply_expr ref,
+  int base: @expr_or_none ref
+);
+
+string_to_pointer_exprs(  //dir=expr
+  unique int id: @string_to_pointer_expr
+);
+
+subscript_exprs(  //dir=expr
+  unique int id: @subscript_expr
+);
+
+#keyset[id, index]
+subscript_expr_arguments(  //dir=expr
+  int id: @subscript_expr ref,
+  int index: int ref,
+  int argument: @argument_or_none ref
+);
+
+#keyset[id]
+subscript_expr_has_direct_to_storage_semantics(  //dir=expr
+  int id: @subscript_expr ref
+);
+
+#keyset[id]
+subscript_expr_has_direct_to_implementation_semantics(  //dir=expr
+  int id: @subscript_expr ref
+);
+
+#keyset[id]
+subscript_expr_has_ordinary_semantics(  //dir=expr
+  int id: @subscript_expr ref
+);
+
+try_exprs(  //dir=expr
+  unique int id: @try_expr
+);
+
+underlying_to_opaque_exprs(  //dir=expr
+  unique int id: @underlying_to_opaque_expr
+);
+
+unevaluated_instance_exprs(  //dir=expr
+  unique int id: @unevaluated_instance_expr
+);
+
+unresolved_member_chain_result_exprs(  //dir=expr
+  unique int id: @unresolved_member_chain_result_expr
+);
+
+unresolved_type_conversion_exprs(  //dir=expr
+  unique int id: @unresolved_type_conversion_expr
+);
+
+boolean_literal_exprs(  //dir=expr
+  unique int id: @boolean_literal_expr,
+  boolean value: boolean ref
+);
+
+conditional_checked_cast_exprs(  //dir=expr
+  unique int id: @conditional_checked_cast_expr
+);
+
+constructor_ref_call_exprs(  //dir=expr
+  unique int id: @constructor_ref_call_expr
+);
+
+dot_syntax_call_exprs(  //dir=expr
+  unique int id: @dot_syntax_call_expr
+);
+
+dynamic_member_ref_exprs(  //dir=expr
+  unique int id: @dynamic_member_ref_expr
+);
+
+dynamic_subscript_exprs(  //dir=expr
+  unique int id: @dynamic_subscript_expr
+);
+
+forced_checked_cast_exprs(  //dir=expr
+  unique int id: @forced_checked_cast_expr
+);
+
+is_exprs(  //dir=expr
+  unique int id: @is_expr
+);
+
+magic_identifier_literal_exprs(  //dir=expr
+  unique int id: @magic_identifier_literal_expr,
+  string kind: string ref
+);
+
+@number_literal_expr =
+  @float_literal_expr
+| @integer_literal_expr
+;
+
+string_literal_exprs(  //dir=expr
+  unique int id: @string_literal_expr,
+  string value: string ref
+);
+
+float_literal_exprs(  //dir=expr
+  unique int id: @float_literal_expr,
+  string string_value: string ref
+);
+
+integer_literal_exprs(  //dir=expr
+  unique int id: @integer_literal_expr,
+  string string_value: string ref
+);
+
+@pattern =
+  @any_pattern
+| @binding_pattern
+| @bool_pattern
+| @enum_element_pattern
+| @expr_pattern
+| @is_pattern
+| @named_pattern
+| @optional_some_pattern
+| @paren_pattern
+| @tuple_pattern
+| @typed_pattern
+;
+
+any_patterns(  //dir=pattern
+  unique int id: @any_pattern
+);
+
+binding_patterns(  //dir=pattern
+  unique int id: @binding_pattern,
+  int sub_pattern: @pattern_or_none ref
+);
+
+bool_patterns(  //dir=pattern
+  unique int id: @bool_pattern,
+  boolean value: boolean ref
+);
+
+enum_element_patterns(  //dir=pattern
+  unique int id: @enum_element_pattern,
+  int element: @enum_element_decl_or_none ref
+);
+
+#keyset[id]
+enum_element_pattern_sub_patterns(  //dir=pattern
+  int id: @enum_element_pattern ref,
+  int sub_pattern: @pattern_or_none ref
+);
+
+expr_patterns(  //dir=pattern
+  unique int id: @expr_pattern,
+  int sub_expr: @expr_or_none ref
+);
+
+is_patterns(  //dir=pattern
+  unique int id: @is_pattern
+);
+
+#keyset[id]
+is_pattern_cast_type_reprs(  //dir=pattern
+  int id: @is_pattern ref,
+  int cast_type_repr: @type_repr_or_none ref
+);
+
+#keyset[id]
+is_pattern_sub_patterns(  //dir=pattern
+  int id: @is_pattern ref,
+  int sub_pattern: @pattern_or_none ref
+);
+
+named_patterns(  //dir=pattern
+  unique int id: @named_pattern,
+  string name: string ref
+);
+
+optional_some_patterns(  //dir=pattern
+  unique int id: @optional_some_pattern,
+  int sub_pattern: @pattern_or_none ref
+);
+
+paren_patterns(  //dir=pattern
+  unique int id: @paren_pattern,
+  int sub_pattern: @pattern_or_none ref
+);
+
+tuple_patterns(  //dir=pattern
+  unique int id: @tuple_pattern
+);
+
+#keyset[id, index]
+tuple_pattern_elements(  //dir=pattern
+  int id: @tuple_pattern ref,
+  int index: int ref,
+  int element: @pattern_or_none ref
+);
+
+typed_patterns(  //dir=pattern
+  unique int id: @typed_pattern,
+  int sub_pattern: @pattern_or_none ref
+);
+
+#keyset[id]
+typed_pattern_type_reprs(  //dir=pattern
+  int id: @typed_pattern ref,
+  int type_repr: @type_repr_or_none ref
+);
+
+case_label_items(  //dir=stmt
+  unique int id: @case_label_item,
+  int pattern: @pattern_or_none ref
+);
+
+#keyset[id]
+case_label_item_guards(  //dir=stmt
+  int id: @case_label_item ref,
+  int guard: @expr_or_none ref
+);
+
+condition_elements(  //dir=stmt
+  unique int id: @condition_element
+);
+
+#keyset[id]
+condition_element_booleans(  //dir=stmt
+  int id: @condition_element ref,
+  int boolean_: @expr_or_none ref
+);
+
+#keyset[id]
+condition_element_patterns(  //dir=stmt
+  int id: @condition_element ref,
+  int pattern: @pattern_or_none ref
+);
+
+#keyset[id]
+condition_element_initializers(  //dir=stmt
+  int id: @condition_element ref,
+  int initializer: @expr_or_none ref
+);
+
+@stmt =
+  @brace_stmt
+| @break_stmt
+| @case_stmt
+| @continue_stmt
+| @defer_stmt
+| @fail_stmt
+| @fallthrough_stmt
+| @labeled_stmt
+| @pound_assert_stmt
+| @return_stmt
+| @throw_stmt
+| @yield_stmt
+;
+
+stmt_conditions(  //dir=stmt
+  unique int id: @stmt_condition
+);
+
+#keyset[id, index]
+stmt_condition_elements(  //dir=stmt
+  int id: @stmt_condition ref,
+  int index: int ref,
+  int element: @condition_element_or_none ref
+);
+
+brace_stmts(  //dir=stmt
+  unique int id: @brace_stmt
+);
+
+#keyset[id, index]
+brace_stmt_elements(  //dir=stmt
+  int id: @brace_stmt ref,
+  int index: int ref,
+  int element: @ast_node_or_none ref
+);
+
+break_stmts(  //dir=stmt
+  unique int id: @break_stmt
+);
+
+#keyset[id]
+break_stmt_target_names(  //dir=stmt
+  int id: @break_stmt ref,
+  string target_name: string ref
+);
+
+#keyset[id]
+break_stmt_targets(  //dir=stmt
+  int id: @break_stmt ref,
+  int target: @stmt_or_none ref
+);
+
+case_stmts(  //dir=stmt
+  unique int id: @case_stmt,
+  int body: @stmt_or_none ref
+);
+
+#keyset[id, index]
+case_stmt_labels(  //dir=stmt
+  int id: @case_stmt ref,
+  int index: int ref,
+  int label: @case_label_item_or_none ref
+);
+
+#keyset[id, index]
+case_stmt_variables(  //dir=stmt
+  int id: @case_stmt ref,
+  int index: int ref,
+  int variable: @var_decl_or_none ref
+);
+
+continue_stmts(  //dir=stmt
+  unique int id: @continue_stmt
+);
+
+#keyset[id]
+continue_stmt_target_names(  //dir=stmt
+  int id: @continue_stmt ref,
+  string target_name: string ref
+);
+
+#keyset[id]
+continue_stmt_targets(  //dir=stmt
+  int id: @continue_stmt ref,
+  int target: @stmt_or_none ref
+);
+
+defer_stmts(  //dir=stmt
+  unique int id: @defer_stmt,
+  int body: @brace_stmt_or_none ref
+);
+
+fail_stmts(  //dir=stmt
+  unique int id: @fail_stmt
+);
+
+fallthrough_stmts(  //dir=stmt
+  unique int id: @fallthrough_stmt,
+  int fallthrough_source: @case_stmt_or_none ref,
+  int fallthrough_dest: @case_stmt_or_none ref
+);
+
+@labeled_stmt =
+  @do_catch_stmt
+| @do_stmt
+| @for_each_stmt
+| @labeled_conditional_stmt
+| @repeat_while_stmt
+| @switch_stmt
+;
+
+#keyset[id]
+labeled_stmt_labels(  //dir=stmt
+  int id: @labeled_stmt ref,
+  string label: string ref
+);
+
+pound_assert_stmts(  //dir=stmt
+  unique int id: @pound_assert_stmt,
+  int condition: @expr_or_none ref,
+  string message: string ref
+);
+
+return_stmts(  //dir=stmt
+  unique int id: @return_stmt
+);
+
+#keyset[id]
+return_stmt_results(  //dir=stmt
+  int id: @return_stmt ref,
+  int result: @expr_or_none ref
+);
+
+throw_stmts(  //dir=stmt
+  unique int id: @throw_stmt,
+  int sub_expr: @expr_or_none ref
+);
+
+yield_stmts(  //dir=stmt
+  unique int id: @yield_stmt
+);
+
+#keyset[id, index]
+yield_stmt_results(  //dir=stmt
+  int id: @yield_stmt ref,
+  int index: int ref,
+  int result: @expr_or_none ref
+);
+
+do_catch_stmts(  //dir=stmt
+  unique int id: @do_catch_stmt,
+  int body: @stmt_or_none ref
+);
+
+#keyset[id, index]
+do_catch_stmt_catches(  //dir=stmt
+  int id: @do_catch_stmt ref,
+  int index: int ref,
+  int catch: @case_stmt_or_none ref
+);
+
+do_stmts(  //dir=stmt
+  unique int id: @do_stmt,
+  int body: @brace_stmt_or_none ref
+);
+
+for_each_stmts(  //dir=stmt
+  unique int id: @for_each_stmt,
+  int pattern: @pattern_or_none ref,
+  int sequence: @expr_or_none ref,
+  int body: @brace_stmt_or_none ref
+);
+
+#keyset[id]
+for_each_stmt_wheres(  //dir=stmt
+  int id: @for_each_stmt ref,
+  int where: @expr_or_none ref
+);
+
+@labeled_conditional_stmt =
+  @guard_stmt
+| @if_stmt
+| @while_stmt
+;
+
+#keyset[id]
+labeled_conditional_stmts(  //dir=stmt
+  int id: @labeled_conditional_stmt ref,
+  int condition: @stmt_condition_or_none ref
+);
+
+repeat_while_stmts(  //dir=stmt
+  unique int id: @repeat_while_stmt,
+  int condition: @expr_or_none ref,
+  int body: @stmt_or_none ref
+);
+
+switch_stmts(  //dir=stmt
+  unique int id: @switch_stmt,
+  int expr: @expr_or_none ref
+);
+
+#keyset[id, index]
+switch_stmt_cases(  //dir=stmt
+  int id: @switch_stmt ref,
+  int index: int ref,
+  int case_: @case_stmt_or_none ref
+);
+
+guard_stmts(  //dir=stmt
+  unique int id: @guard_stmt,
+  int body: @brace_stmt_or_none ref
+);
+
+if_stmts(  //dir=stmt
+  unique int id: @if_stmt,
+  int then: @stmt_or_none ref
+);
+
+#keyset[id]
+if_stmt_elses(  //dir=stmt
+  int id: @if_stmt ref,
+  int else: @stmt_or_none ref
+);
+
+while_stmts(  //dir=stmt
+  unique int id: @while_stmt,
+  int body: @stmt_or_none ref
+);
+
+@type =
+  @any_function_type
+| @any_generic_type
+| @any_metatype_type
+| @builtin_type
+| @dependent_member_type
+| @dynamic_self_type
+| @error_type
+| @existential_type
+| @in_out_type
+| @l_value_type
+| @module_type
+| @parameterized_protocol_type
+| @protocol_composition_type
+| @reference_storage_type
+| @substitutable_type
+| @sugar_type
+| @tuple_type
+| @unresolved_type
+;
+
+#keyset[id]
+types(  //dir=type
+  int id: @type ref,
+  string name: string ref,
+  int canonical_type: @type_or_none ref
+);
+
+type_reprs(  //dir=type
+  unique int id: @type_repr,
+  int type_: @type_or_none ref
+);
+
+@any_function_type =
+  @function_type
+| @generic_function_type
+;
+
+#keyset[id]
+any_function_types(  //dir=type
+  int id: @any_function_type ref,
+  int result: @type_or_none ref
+);
+
+#keyset[id, index]
+any_function_type_param_types(  //dir=type
+  int id: @any_function_type ref,
+  int index: int ref,
+  int param_type: @type_or_none ref
+);
+
+#keyset[id, index]
+any_function_type_param_labels(  //dir=type
+  int id: @any_function_type ref,
+  int index: int ref,
+  string param_label: string ref
+);
+
+#keyset[id]
+any_function_type_is_throwing(  //dir=type
+  int id: @any_function_type ref
+);
+
+#keyset[id]
+any_function_type_is_async(  //dir=type
+  int id: @any_function_type ref
+);
+
+@any_generic_type =
+  @nominal_or_bound_generic_nominal_type
+| @unbound_generic_type
+;
+
+#keyset[id]
+any_generic_types(  //dir=type
+  int id: @any_generic_type ref,
+  int declaration: @decl_or_none ref
+);
+
+#keyset[id]
+any_generic_type_parents(  //dir=type
+  int id: @any_generic_type ref,
+  int parent: @type_or_none ref
+);
+
+@any_metatype_type =
+  @existential_metatype_type
+| @metatype_type
+;
+
+@builtin_type =
+  @any_builtin_integer_type
+| @builtin_bridge_object_type
+| @builtin_default_actor_storage_type
+| @builtin_executor_type
+| @builtin_float_type
+| @builtin_job_type
+| @builtin_native_object_type
+| @builtin_raw_pointer_type
+| @builtin_raw_unsafe_continuation_type
+| @builtin_unsafe_value_buffer_type
+| @builtin_vector_type
+;
+
+dependent_member_types(  //dir=type
+  unique int id: @dependent_member_type,
+  int base_type: @type_or_none ref,
+  int associated_type_decl: @associated_type_decl_or_none ref
+);
+
+dynamic_self_types(  //dir=type
+  unique int id: @dynamic_self_type,
+  int static_self_type: @type_or_none ref
+);
+
+error_types(  //dir=type
+  unique int id: @error_type
+);
+
+existential_types(  //dir=type
+  unique int id: @existential_type,
+  int constraint: @type_or_none ref
+);
+
+in_out_types(  //dir=type
+  unique int id: @in_out_type,
+  int object_type: @type_or_none ref
+);
+
+l_value_types(  //dir=type
+  unique int id: @l_value_type,
+  int object_type: @type_or_none ref
+);
+
+module_types(  //dir=type
+  unique int id: @module_type,
+  int module: @module_decl_or_none ref
+);
+
+parameterized_protocol_types(  //dir=type
+  unique int id: @parameterized_protocol_type,
+  int base: @protocol_type_or_none ref
+);
+
+#keyset[id, index]
+parameterized_protocol_type_args(  //dir=type
+  int id: @parameterized_protocol_type ref,
+  int index: int ref,
+  int arg: @type_or_none ref
+);
+
+protocol_composition_types(  //dir=type
+  unique int id: @protocol_composition_type
+);
+
+#keyset[id, index]
+protocol_composition_type_members(  //dir=type
+  int id: @protocol_composition_type ref,
+  int index: int ref,
+  int member: @type_or_none ref
+);
+
+@reference_storage_type =
+  @unmanaged_storage_type
+| @unowned_storage_type
+| @weak_storage_type
+;
+
+#keyset[id]
+reference_storage_types(  //dir=type
+  int id: @reference_storage_type ref,
+  int referent_type: @type_or_none ref
+);
+
+@substitutable_type =
+  @archetype_type
+| @generic_type_param_type
+;
+
+@sugar_type =
+  @paren_type
+| @syntax_sugar_type
+| @type_alias_type
+;
+
+tuple_types(  //dir=type
+  unique int id: @tuple_type
+);
+
+#keyset[id, index]
+tuple_type_types(  //dir=type
+  int id: @tuple_type ref,
+  int index: int ref,
+  int type_: @type_or_none ref
+);
+
+#keyset[id, index]
+tuple_type_names(  //dir=type
+  int id: @tuple_type ref,
+  int index: int ref,
+  string name: string ref
+);
+
+unresolved_types(  //dir=type
+  unique int id: @unresolved_type
+);
+
+@any_builtin_integer_type =
+  @builtin_integer_literal_type
+| @builtin_integer_type
+;
+
+@archetype_type =
+  @opaque_type_archetype_type
+| @opened_archetype_type
+| @primary_archetype_type
+;
+
+#keyset[id]
+archetype_types(  //dir=type
+  int id: @archetype_type ref,
+  int interface_type: @type_or_none ref
+);
+
+#keyset[id]
+archetype_type_superclasses(  //dir=type
+  int id: @archetype_type ref,
+  int superclass: @type_or_none ref
+);
+
+#keyset[id, index]
+archetype_type_protocols(  //dir=type
+  int id: @archetype_type ref,
+  int index: int ref,
+  int protocol: @protocol_decl_or_none ref
+);
+
+builtin_bridge_object_types(  //dir=type
+  unique int id: @builtin_bridge_object_type
+);
+
+builtin_default_actor_storage_types(  //dir=type
+  unique int id: @builtin_default_actor_storage_type
+);
+
+builtin_executor_types(  //dir=type
+  unique int id: @builtin_executor_type
+);
+
+builtin_float_types(  //dir=type
+  unique int id: @builtin_float_type
+);
+
+builtin_job_types(  //dir=type
+  unique int id: @builtin_job_type
+);
+
+builtin_native_object_types(  //dir=type
+  unique int id: @builtin_native_object_type
+);
+
+builtin_raw_pointer_types(  //dir=type
+  unique int id: @builtin_raw_pointer_type
+);
+
+builtin_raw_unsafe_continuation_types(  //dir=type
+  unique int id: @builtin_raw_unsafe_continuation_type
+);
+
+builtin_unsafe_value_buffer_types(  //dir=type
+  unique int id: @builtin_unsafe_value_buffer_type
+);
+
+builtin_vector_types(  //dir=type
+  unique int id: @builtin_vector_type
+);
+
+existential_metatype_types(  //dir=type
+  unique int id: @existential_metatype_type
+);
+
+function_types(  //dir=type
+  unique int id: @function_type
+);
+
+generic_function_types(  //dir=type
+  unique int id: @generic_function_type
+);
+
+#keyset[id, index]
+generic_function_type_generic_params(  //dir=type
+  int id: @generic_function_type ref,
+  int index: int ref,
+  int generic_param: @generic_type_param_type_or_none ref
+);
+
+generic_type_param_types(  //dir=type
+  unique int id: @generic_type_param_type
+);
+
+metatype_types(  //dir=type
+  unique int id: @metatype_type
+);
+
+@nominal_or_bound_generic_nominal_type =
+  @bound_generic_type
+| @nominal_type
+;
+
+paren_types(  //dir=type
+  unique int id: @paren_type,
+  int type_: @type_or_none ref
+);
+
+@syntax_sugar_type =
+  @dictionary_type
+| @unary_syntax_sugar_type
+;
+
+type_alias_types(  //dir=type
+  unique int id: @type_alias_type,
+  int decl: @type_alias_decl_or_none ref
+);
+
+unbound_generic_types(  //dir=type
+  unique int id: @unbound_generic_type
+);
+
+unmanaged_storage_types(  //dir=type
+  unique int id: @unmanaged_storage_type
+);
+
+unowned_storage_types(  //dir=type
+  unique int id: @unowned_storage_type
+);
+
+weak_storage_types(  //dir=type
+  unique int id: @weak_storage_type
+);
+
+@bound_generic_type =
+  @bound_generic_class_type
+| @bound_generic_enum_type
+| @bound_generic_struct_type
+;
+
+#keyset[id, index]
+bound_generic_type_arg_types(  //dir=type
+  int id: @bound_generic_type ref,
+  int index: int ref,
+  int arg_type: @type_or_none ref
+);
+
+builtin_integer_literal_types(  //dir=type
+  unique int id: @builtin_integer_literal_type
+);
+
+builtin_integer_types(  //dir=type
+  unique int id: @builtin_integer_type
+);
+
+#keyset[id]
+builtin_integer_type_widths(  //dir=type
+  int id: @builtin_integer_type ref,
+  int width: int ref
+);
+
+dictionary_types(  //dir=type
+  unique int id: @dictionary_type,
+  int key_type: @type_or_none ref,
+  int value_type: @type_or_none ref
+);
+
+@nominal_type =
+  @class_type
+| @enum_type
+| @protocol_type
+| @struct_type
+;
+
+opaque_type_archetype_types(  //dir=type
+  unique int id: @opaque_type_archetype_type,
+  int declaration: @opaque_type_decl_or_none ref
+);
+
+opened_archetype_types(  //dir=type
+  unique int id: @opened_archetype_type
+);
+
+primary_archetype_types(  //dir=type
+  unique int id: @primary_archetype_type
+);
+
+@unary_syntax_sugar_type =
+  @array_slice_type
+| @optional_type
+| @variadic_sequence_type
+;
+
+#keyset[id]
+unary_syntax_sugar_types(  //dir=type
+  int id: @unary_syntax_sugar_type ref,
+  int base_type: @type_or_none ref
+);
+
+array_slice_types(  //dir=type
+  unique int id: @array_slice_type
+);
+
+bound_generic_class_types(  //dir=type
+  unique int id: @bound_generic_class_type
+);
+
+bound_generic_enum_types(  //dir=type
+  unique int id: @bound_generic_enum_type
+);
+
+bound_generic_struct_types(  //dir=type
+  unique int id: @bound_generic_struct_type
+);
+
+class_types(  //dir=type
+  unique int id: @class_type
+);
+
+enum_types(  //dir=type
+  unique int id: @enum_type
+);
+
+optional_types(  //dir=type
+  unique int id: @optional_type
+);
+
+protocol_types(  //dir=type
+  unique int id: @protocol_type
+);
+
+struct_types(  //dir=type
+  unique int id: @struct_type
+);
+
+variadic_sequence_types(  //dir=type
+  unique int id: @variadic_sequence_type
+);
+
+@abstract_function_decl_or_none =
+  @abstract_function_decl
+| @unspecified_element
+;
+
+@accessor_decl_or_none =
+  @accessor_decl
+| @unspecified_element
+;
+
+@argument_or_none =
+  @argument
+| @unspecified_element
+;
+
+@associated_type_decl_or_none =
+  @associated_type_decl
+| @unspecified_element
+;
+
+@ast_node_or_none =
+  @ast_node
+| @unspecified_element
+;
+
+@brace_stmt_or_none =
+  @brace_stmt
+| @unspecified_element
+;
+
+@case_label_item_or_none =
+  @case_label_item
+| @unspecified_element
+;
+
+@case_stmt_or_none =
+  @case_stmt
+| @unspecified_element
+;
+
+@closure_expr_or_none =
+  @closure_expr
+| @unspecified_element
+;
+
+@condition_element_or_none =
+  @condition_element
+| @unspecified_element
+;
+
+@constructor_decl_or_none =
+  @constructor_decl
+| @unspecified_element
+;
+
+@decl_or_none =
+  @decl
+| @unspecified_element
+;
+
+@enum_element_decl_or_none =
+  @enum_element_decl
+| @unspecified_element
+;
+
+@expr_or_none =
+  @expr
+| @unspecified_element
+;
+
+@file_or_none =
+  @file
+| @unspecified_element
+;
+
+@generic_type_param_decl_or_none =
+  @generic_type_param_decl
+| @unspecified_element
+;
+
+@generic_type_param_type_or_none =
+  @generic_type_param_type
+| @unspecified_element
+;
+
+@location_or_none =
+  @location
+| @unspecified_element
+;
+
+@module_decl_or_none =
+  @module_decl
+| @unspecified_element
+;
+
+@nominal_type_decl_or_none =
+  @nominal_type_decl
+| @unspecified_element
+;
+
+@opaque_type_decl_or_none =
+  @opaque_type_decl
+| @unspecified_element
+;
+
+@opaque_value_expr_or_none =
+  @opaque_value_expr
+| @unspecified_element
+;
+
+@param_decl_or_none =
+  @param_decl
+| @unspecified_element
+;
+
+@pattern_or_none =
+  @pattern
+| @unspecified_element
+;
+
+@pattern_binding_decl_or_none =
+  @pattern_binding_decl
+| @unspecified_element
+;
+
+@precedence_group_decl_or_none =
+  @precedence_group_decl
+| @unspecified_element
+;
+
+@protocol_decl_or_none =
+  @protocol_decl
+| @unspecified_element
+;
+
+@protocol_type_or_none =
+  @protocol_type
+| @unspecified_element
+;
+
+@stmt_or_none =
+  @stmt
+| @unspecified_element
+;
+
+@stmt_condition_or_none =
+  @stmt_condition
+| @unspecified_element
+;
+
+@string_literal_expr_or_none =
+  @string_literal_expr
+| @unspecified_element
+;
+
+@tap_expr_or_none =
+  @tap_expr
+| @unspecified_element
+;
+
+@type_or_none =
+  @type
+| @unspecified_element
+;
+
+@type_alias_decl_or_none =
+  @type_alias_decl
+| @unspecified_element
+;
+
+@type_repr_or_none =
+  @type_repr
+| @unspecified_element
+;
+
+@value_decl_or_none =
+  @unspecified_element
+| @value_decl
+;
+
+@var_decl_or_none =
+  @unspecified_element
+| @var_decl
+;

From b5c7d6bfcd5c2af418b8ec353fdd5685ad354ced Mon Sep 17 00:00:00 2001
From: Ian Lynagh <igfoo@github.com>
Date: Fri, 11 Nov 2022 14:57:36 +0000
Subject: [PATCH 0204/1420] Kotlin: Fix build on OS X

---
 java/kotlin-extractor/build.py | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/java/kotlin-extractor/build.py b/java/kotlin-extractor/build.py
index ebca028be63..05cb1204d86 100755
--- a/java/kotlin-extractor/build.py
+++ b/java/kotlin-extractor/build.py
@@ -114,7 +114,8 @@ def compile_to_jar(build_dir, tmp_src_dir, srcs, classpath, java_classpath, outp
 
     run_process(['jar', 'cf', output,
                  '-C', class_dir, '.',
-                 '-C', tmp_src_dir + '/main/resources', '.'])
+                 '-C', tmp_src_dir + '/main/resources', 'META-INF',
+                 '-C', tmp_src_dir + '/main/resources', 'com/github/codeql/extractor.name'])
     shutil.rmtree(class_dir)
 
 

From f92d836607a48948054e5ddd205b93b82ddd1bb8 Mon Sep 17 00:00:00 2001
From: Taus <tausbn@github.com>
Date: Fri, 11 Nov 2022 16:03:14 +0000
Subject: [PATCH 0205/1420] Python: Fix test failure

Casting to `ImportExpr` caused the `typetracking_imports` test to fail.
---
 .../semmle/python/dataflow/new/internal/ImportResolution.qll    | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/python/ql/lib/semmle/python/dataflow/new/internal/ImportResolution.qll b/python/ql/lib/semmle/python/dataflow/new/internal/ImportResolution.qll
index dd92cbb7a45..9e04d3f9681 100644
--- a/python/ql/lib/semmle/python/dataflow/new/internal/ImportResolution.qll
+++ b/python/ql/lib/semmle/python/dataflow/new/internal/ImportResolution.qll
@@ -80,7 +80,7 @@ module ImportResolution {
     )
     or
     exists(Alias a |
-      defn.asExpr() = [a.getValue().(ImportExpr), a.getValue().(ImportMember).getModule()] and
+      defn.asExpr() = [a.getValue(), a.getValue().(ImportMember).getModule()] and
       a.getAsname().(Name).getId() = name and
       defn.getScope() = m
     )

From fea4b816af4646904e4c4fe8e8bc98e9d52af32e Mon Sep 17 00:00:00 2001
From: Gustav <grddev@gmail.com>
Date: Fri, 11 Nov 2022 17:12:13 +0100
Subject: [PATCH 0206/1420] Fix double close

Co-authored-by: Chris Smowton <smowton@github.com>
---
 go/extractor/trap/trapwriter.go | 1 +
 1 file changed, 1 insertion(+)

diff --git a/go/extractor/trap/trapwriter.go b/go/extractor/trap/trapwriter.go
index 2a3944705bf..0833d845830 100644
--- a/go/extractor/trap/trapwriter.go
+++ b/go/extractor/trap/trapwriter.go
@@ -95,6 +95,7 @@ func (tw *Writer) Close() error {
 	if err != nil {
 		// throw away file close error
 		tw.file.Close()
+		return err
 	}
 	err = tw.zip.Close()
 	if err != nil {

From 3514694cdfc5c7ab49e0ecdec63a73244dabd526 Mon Sep 17 00:00:00 2001
From: Gustav <grddev@gmail.com>
Date: Fri, 11 Nov 2022 18:39:25 +0100
Subject: [PATCH 0207/1420] Fix direct access to trap.Writer from trap.Labeler

---
 go/extractor/trap/labels.go | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/go/extractor/trap/labels.go b/go/extractor/trap/labels.go
index 1e9bd298447..f1572fb874e 100644
--- a/go/extractor/trap/labels.go
+++ b/go/extractor/trap/labels.go
@@ -57,7 +57,7 @@ func (l *Labeler) GlobalID(key string) Label {
 	label, exists := l.keyLabels[key]
 	if !exists {
 		id := l.nextID()
-		fmt.Fprintf(l.tw.zip, "%s=@\"%s\"\n", id, escapeString(key))
+		fmt.Fprintf(l.tw.wzip, "%s=@\"%s\"\n", id, escapeString(key))
 		label = Label{id}
 		l.keyLabels[key] = label
 	}
@@ -90,7 +90,7 @@ func (l *Labeler) LocalID(nd interface{}) Label {
 // FreshID creates a fresh label and returns it
 func (l *Labeler) FreshID() Label {
 	id := l.nextID()
-	fmt.Fprintf(l.tw.zip, "%s=*\n", id)
+	fmt.Fprintf(l.tw.wzip, "%s=*\n", id)
 	return Label{id}
 }
 

From 4d3a8373100165b97fe58a909db62d8c5dbdd198 Mon Sep 17 00:00:00 2001
From: Ed Minnix <egregius313@github.com>
Date: Tue, 8 Nov 2022 19:20:43 -0500
Subject: [PATCH 0208/1420] Java: query for detecting enabling Javascript in
 Android WebSettings

---
 ...roidWebViewSettingsEnabledJavaScript.qhelp | 45 +++++++++++++++++++
 ...AndroidWebViewSettingsEnabledJavaScript.ql | 21 +++++++++
 .../CWE-079/WebSettingsDisableJavascript.java |  2 +
 .../CWE-079/WebSettingsEnableJavascript.java  |  2 +
 4 files changed, 70 insertions(+)
 create mode 100644 java/ql/src/Security/CWE/CWE-079/AndroidWebViewSettingsEnabledJavaScript.qhelp
 create mode 100644 java/ql/src/Security/CWE/CWE-079/AndroidWebViewSettingsEnabledJavaScript.ql
 create mode 100644 java/ql/src/Security/CWE/CWE-079/WebSettingsDisableJavascript.java
 create mode 100644 java/ql/src/Security/CWE/CWE-079/WebSettingsEnableJavascript.java

diff --git a/java/ql/src/Security/CWE/CWE-079/AndroidWebViewSettingsEnabledJavaScript.qhelp b/java/ql/src/Security/CWE/CWE-079/AndroidWebViewSettingsEnabledJavaScript.qhelp
new file mode 100644
index 00000000000..c10856588c6
--- /dev/null
+++ b/java/ql/src/Security/CWE/CWE-079/AndroidWebViewSettingsEnabledJavaScript.qhelp
@@ -0,0 +1,45 @@
+<!DOCTYPE qhelp PUBLIC
+ "-//Semmle//qhelp//EN"
+ "qhelp.dtd">
+<qhelp>
+  <overview>
+<p>
+  Enabling JavaScript in an Android WebView allows for the running of JavaScript
+code in the context of the running application. This opens the possibility for a
+man-in-the-middle attack, where the attacker can inject arbitrary JavaScript.
+</p>
+
+<p>
+  You can enable or disbale Javascript execution using
+  the <code>setJavaScriptEnabled</code> method of the settings of a webview.
+</p>
+  </overview>
+
+  <recommendation>
+    <p>If Javascript does not need to be enabled, call <code>setJavaScriptEnabled(false)</code> on the settings of the webview.</p>
+
+    <p>If JavaScript is necessary, only load content from trusted servers using encrypted channels, such as https with certificate verification.</p>
+  </recommendation>
+
+  <example>
+    <p>In the following (bad) example, a webview has JavaScript enabled in its settings.</p>
+
+    <sample src="WebSettingsEnableJavascript.java"/>
+
+    <p>In the following (good) example, a webview explicitly disallows JavaScript execution.</p>
+
+    <sample src="WebSettingsDisableJavascript.java"/>
+
+  </example>
+
+  <references>
+    <li>
+      Oversecured Android Vulnerabilities Guide: <a href="https://oversecured.com/vulnerabilities#Android/Enabled_JavaScript">Enabled JavaScript</a>
+    </li>
+    <li>
+      Android documentation: <a href="https://developer.android.com/reference/android/webkit/WebSettings#setJavaScriptEnabled(boolean)">setJavaScriptEnabled</a>
+    </li>
+
+  </references>
+
+</qhelp>
diff --git a/java/ql/src/Security/CWE/CWE-079/AndroidWebViewSettingsEnabledJavaScript.ql b/java/ql/src/Security/CWE/CWE-079/AndroidWebViewSettingsEnabledJavaScript.ql
new file mode 100644
index 00000000000..4483f80ad38
--- /dev/null
+++ b/java/ql/src/Security/CWE/CWE-079/AndroidWebViewSettingsEnabledJavaScript.ql
@@ -0,0 +1,21 @@
+/**
+ * @name Android WebView JavaScript settings
+ * @kind problem
+ * @id java/android-websettings-javascript
+ * @problem.severity warning
+ * @security-severity 6.1
+ * @precision high
+ * @tags security
+ *       external/cwe/cwe-079
+ */
+
+import java
+import semmle.code.java.frameworks.android.WebView
+
+from MethodAccess ma
+where
+  (
+    ma.getMethod() instanceof AllowJavaScriptMethod and
+    ma.getArgument(0).(CompileTimeConstantExpr).getBooleanValue() = true
+  )
+select ma, "JavaScript execution enabled in WebView."
diff --git a/java/ql/src/Security/CWE/CWE-079/WebSettingsDisableJavascript.java b/java/ql/src/Security/CWE/CWE-079/WebSettingsDisableJavascript.java
new file mode 100644
index 00000000000..43a8cd92c0e
--- /dev/null
+++ b/java/ql/src/Security/CWE/CWE-079/WebSettingsDisableJavascript.java
@@ -0,0 +1,2 @@
+WebSettings settings = webview.getSettings();
+settings.setJavaScriptEnabled(false);
diff --git a/java/ql/src/Security/CWE/CWE-079/WebSettingsEnableJavascript.java b/java/ql/src/Security/CWE/CWE-079/WebSettingsEnableJavascript.java
new file mode 100644
index 00000000000..adfac156009
--- /dev/null
+++ b/java/ql/src/Security/CWE/CWE-079/WebSettingsEnableJavascript.java
@@ -0,0 +1,2 @@
+WebSettings settings = webview.getSettings();
+settings.setJavaScriptEnabled(true);

From b9c2ee75be3df35da13cb10c2ef47ec3fa985e52 Mon Sep 17 00:00:00 2001
From: Ed Minnix <egregius313@github.com>
Date: Tue, 8 Nov 2022 21:41:18 -0500
Subject: [PATCH 0209/1420] Java: Query for Android WebView File Access

Query for Android WebView file access settings
---
 .../AndroidWebViewSettingsFileAccess.qhelp    | 57 +++++++++++++++++++
 .../AndroidWebViewSettingsFileAccess.ql       | 18 ++++++
 .../CWE/CWE-200/WebViewFileAccessSafe.java    |  5 ++
 .../CWE/CWE-200/WebViewFileAccessUnsafe.java  |  5 ++
 4 files changed, 85 insertions(+)
 create mode 100644 java/ql/src/Security/CWE/CWE-200/AndroidWebViewSettingsFileAccess.qhelp
 create mode 100644 java/ql/src/Security/CWE/CWE-200/AndroidWebViewSettingsFileAccess.ql
 create mode 100644 java/ql/src/Security/CWE/CWE-200/WebViewFileAccessSafe.java
 create mode 100644 java/ql/src/Security/CWE/CWE-200/WebViewFileAccessUnsafe.java

diff --git a/java/ql/src/Security/CWE/CWE-200/AndroidWebViewSettingsFileAccess.qhelp b/java/ql/src/Security/CWE/CWE-200/AndroidWebViewSettingsFileAccess.qhelp
new file mode 100644
index 00000000000..cb80e92eab1
--- /dev/null
+++ b/java/ql/src/Security/CWE/CWE-200/AndroidWebViewSettingsFileAccess.qhelp
@@ -0,0 +1,57 @@
+<!DOCTYPE qhelp PUBLIC
+ "-//Semmle//qhelp//EN"
+ "qhelp.dtd">
+<qhelp>
+  <overview>
+    <p>
+      File access in an Android WebView can expose the device's file system to
+      the JavaScript running in the WebView. If there are vulnerabilities in the
+      JavaScript, file access may allow an attacker to access or steal the
+      user's data.
+    </p>
+  </overview>
+
+  <recommendation>
+    <p>When possible, you should disallow file access by setting the following settings to <code>false</code>:</p>
+
+    <ul>
+      <li><code>setAllowFileAccess</code></li>
+      <li><code>setAllowFileAccessFromFileURLs</code></li>
+      <li><code>setAllowUniversalAccessFromFileURLs</code></li>
+    </ul>
+  </recommendation>
+
+  <example>
+    <p>In the following (bad) example, the WebView is configured with the settings
+    which would allow local file access.</p>
+
+    <sample src="WebViewFileAccessUnsafe.java"/>
+
+    <p>In the following (good) example, the WebView is configured to disallow file access.</p>
+
+    <sample src="WebViewFileAccessSafe.java"/>
+
+  </example>
+
+  <references>
+    <li>
+      Android documentation: <a href="https://developer.android.com/reference/android/webkit/WebSettings#setAllowFileAccess(boolean)"><code>WebSettings.setAllowFileAccess</code></a>.
+    </li>
+    <li>
+      Android documentation: <a href="https://developer.android.com/reference/android/webkit/WebSettings#setAllowFileAccessFromFileURLs(boolean)"><code>WebSettings.setAllowFileAccessFromFileURLs</code></a>.
+    </li>
+    <li>
+      Android documentation: <a href="https://developer.android.com/reference/android/webkit/WebSettings#setAllowUniversalAccessFromFileURLs(boolean)"><code>WebSettings.setAllowUniversalAccessFromFileURLs</code></a>.
+    </li>
+    <li>
+      File access from URLs is enabled for WebView: <a href="https://oversecured.com/vulnerabilities#Android/File_access_from_file_URLs_is_enabled_for_WebView">File access for URLs is enabled for WebView</a>.
+    </li>
+    <li>
+      File access is enabled for WebView: <a href="https://oversecured.com/vulnerabilities#Android/File_access_is_enabled_for_WebView">File access is enabled for WebView</a>.
+    </li>
+    <li>
+      Universal file access from file URLs is enabled for WebView: <a href="https://oversecured.com/vulnerabilities#Android/Universal_file_access_from_file_URLs_is_enabled_for_WebView">Universal file access from file URLs is enabled for WebView</a>.
+    </li>
+  </references>
+
+</qhelp>
diff --git a/java/ql/src/Security/CWE/CWE-200/AndroidWebViewSettingsFileAccess.ql b/java/ql/src/Security/CWE/CWE-200/AndroidWebViewSettingsFileAccess.ql
new file mode 100644
index 00000000000..e34d502f3fa
--- /dev/null
+++ b/java/ql/src/Security/CWE/CWE-200/AndroidWebViewSettingsFileAccess.ql
@@ -0,0 +1,18 @@
+/**
+ * @name Android WebSettings file access
+ * @kind problem
+ * @id java/android-websettings-file-access
+ * @problem.severity warning
+ * @security-severity 6.5
+ * @precision high
+ * @tags security
+ *       external/cwe/cwe-200
+ */
+
+import java
+import semmle.code.java.frameworks.android.WebView
+
+from MethodAccess ma
+where ma.getMethod() instanceof CrossOriginAccessMethod
+select ma, "WebView setting $@ may allow for unauthorized access of sensitive information.", ma,
+  ma.getMethod().getName()
diff --git a/java/ql/src/Security/CWE/CWE-200/WebViewFileAccessSafe.java b/java/ql/src/Security/CWE/CWE-200/WebViewFileAccessSafe.java
new file mode 100644
index 00000000000..6002888cba1
--- /dev/null
+++ b/java/ql/src/Security/CWE/CWE-200/WebViewFileAccessSafe.java
@@ -0,0 +1,5 @@
+WebSettings settings = view.getSettings();
+
+settings.setAllowFileAccess(false);
+settings.setAllowFileAccessFromURLs(false);
+settings.setAllowUniversalAccessFromURLs(false);
diff --git a/java/ql/src/Security/CWE/CWE-200/WebViewFileAccessUnsafe.java b/java/ql/src/Security/CWE/CWE-200/WebViewFileAccessUnsafe.java
new file mode 100644
index 00000000000..6c17d66c3b0
--- /dev/null
+++ b/java/ql/src/Security/CWE/CWE-200/WebViewFileAccessUnsafe.java
@@ -0,0 +1,5 @@
+WebSettings settings = view.getSettings();
+
+settings.setAllowFileAccess(true);
+settings.setAllowFileAccessFromURLs(true);
+settings.setAllowUniversalAccessFromURLs(true);

From 7712ec2523c3178720aa648532f032b54ba4cf02 Mon Sep 17 00:00:00 2001
From: Ed Minnix <egregius313@github.com>
Date: Sat, 12 Nov 2022 09:54:26 -0500
Subject: [PATCH 0210/1420] Java: setJavascriptEnabled query change notes

---
 .../CWE/CWE-079/AndroidWebViewSettingsEnabledJavaScript.ql    | 2 +-
 .../2022-11-12-websettings-setjavascript-enabled.md           | 4 ++++
 2 files changed, 5 insertions(+), 1 deletion(-)
 create mode 100644 java/ql/src/change-notes/2022-11-12-websettings-setjavascript-enabled.md

diff --git a/java/ql/src/Security/CWE/CWE-079/AndroidWebViewSettingsEnabledJavaScript.ql b/java/ql/src/Security/CWE/CWE-079/AndroidWebViewSettingsEnabledJavaScript.ql
index 4483f80ad38..7b33f9313db 100644
--- a/java/ql/src/Security/CWE/CWE-079/AndroidWebViewSettingsEnabledJavaScript.ql
+++ b/java/ql/src/Security/CWE/CWE-079/AndroidWebViewSettingsEnabledJavaScript.ql
@@ -1,7 +1,7 @@
 /**
  * @name Android WebView JavaScript settings
  * @kind problem
- * @id java/android-websettings-javascript
+ * @id java/android-websettings-javascript-enabled
  * @problem.severity warning
  * @security-severity 6.1
  * @precision high
diff --git a/java/ql/src/change-notes/2022-11-12-websettings-setjavascript-enabled.md b/java/ql/src/change-notes/2022-11-12-websettings-setjavascript-enabled.md
new file mode 100644
index 00000000000..58579f006c4
--- /dev/null
+++ b/java/ql/src/change-notes/2022-11-12-websettings-setjavascript-enabled.md
@@ -0,0 +1,4 @@
+---
+category: newQuery
+---
+* Added a new query, `java/android-websettings-javascript-enabled`, to detect if JavaScript execution is enabled in an Android WebView.

From b4cd1ee34dc323aac07fcb7f2740fe72bd7d137f Mon Sep 17 00:00:00 2001
From: Ed Minnix <egregius313@github.com>
Date: Sat, 12 Nov 2022 09:56:45 -0500
Subject: [PATCH 0211/1420] Java: Added description to query

---
 .../CWE/CWE-079/AndroidWebViewSettingsEnabledJavaScript.ql       | 1 +
 1 file changed, 1 insertion(+)

diff --git a/java/ql/src/Security/CWE/CWE-079/AndroidWebViewSettingsEnabledJavaScript.ql b/java/ql/src/Security/CWE/CWE-079/AndroidWebViewSettingsEnabledJavaScript.ql
index 7b33f9313db..409ab786791 100644
--- a/java/ql/src/Security/CWE/CWE-079/AndroidWebViewSettingsEnabledJavaScript.ql
+++ b/java/ql/src/Security/CWE/CWE-079/AndroidWebViewSettingsEnabledJavaScript.ql
@@ -1,5 +1,6 @@
 /**
  * @name Android WebView JavaScript settings
+ * @description Enabling JavaScript execution in a WebView can result in man-in-the-middle attacks.
  * @kind problem
  * @id java/android-websettings-javascript-enabled
  * @problem.severity warning

From ea358f069817b3c7fd1b0ce37aebd3e191e6dc7f Mon Sep 17 00:00:00 2001
From: Ed Minnix <egregius313@github.com>
Date: Sat, 12 Nov 2022 10:01:30 -0500
Subject: [PATCH 0212/1420] Java: WebView file access query description

---
 .../src/Security/CWE/CWE-200/AndroidWebViewSettingsFileAccess.ql | 1 +
 1 file changed, 1 insertion(+)

diff --git a/java/ql/src/Security/CWE/CWE-200/AndroidWebViewSettingsFileAccess.ql b/java/ql/src/Security/CWE/CWE-200/AndroidWebViewSettingsFileAccess.ql
index e34d502f3fa..c705ac52425 100644
--- a/java/ql/src/Security/CWE/CWE-200/AndroidWebViewSettingsFileAccess.ql
+++ b/java/ql/src/Security/CWE/CWE-200/AndroidWebViewSettingsFileAccess.ql
@@ -1,6 +1,7 @@
 /**
  * @name Android WebSettings file access
  * @kind problem
+ * @description Enabling access to the file system in a WebView can enable access to sensitive information.
  * @id java/android-websettings-file-access
  * @problem.severity warning
  * @security-severity 6.5

From 631a08496e46f5bf19859ffb4b781d2b1e32eb58 Mon Sep 17 00:00:00 2001
From: Ed Minnix <egregius313@github.com>
Date: Sat, 12 Nov 2022 10:09:35 -0500
Subject: [PATCH 0213/1420] Java: WebView file access query change note

---
 .../change-notes/2022-11-12-android-webview-file-access.md   | 5 +++++
 1 file changed, 5 insertions(+)
 create mode 100644 java/ql/src/change-notes/2022-11-12-android-webview-file-access.md

diff --git a/java/ql/src/change-notes/2022-11-12-android-webview-file-access.md b/java/ql/src/change-notes/2022-11-12-android-webview-file-access.md
new file mode 100644
index 00000000000..3e8777e60cd
--- /dev/null
+++ b/java/ql/src/change-notes/2022-11-12-android-webview-file-access.md
@@ -0,0 +1,5 @@
+---
+category: newQuery
+---
+* Added a new query `java/android-websettings-file-access` to detect configurations that enable file system access in Android WebViews.
+

From a8e67bdfc5782ff8ac38f3bd1fe23edbedb10e01 Mon Sep 17 00:00:00 2001
From: Ed Minnix <egregius313@github.com>
Date: Sat, 12 Nov 2022 10:15:15 -0500
Subject: [PATCH 0214/1420] Java: Removed typo in Android WebView file access
 documentation

---
 .../CWE/CWE-200/AndroidWebViewSettingsFileAccess.qhelp      | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/java/ql/src/Security/CWE/CWE-200/AndroidWebViewSettingsFileAccess.qhelp b/java/ql/src/Security/CWE/CWE-200/AndroidWebViewSettingsFileAccess.qhelp
index cb80e92eab1..eba8aea88b2 100644
--- a/java/ql/src/Security/CWE/CWE-200/AndroidWebViewSettingsFileAccess.qhelp
+++ b/java/ql/src/Security/CWE/CWE-200/AndroidWebViewSettingsFileAccess.qhelp
@@ -35,13 +35,13 @@
 
   <references>
     <li>
-      Android documentation: <a href="https://developer.android.com/reference/android/webkit/WebSettings#setAllowFileAccess(boolean)"><code>WebSettings.setAllowFileAccess</code></a>.
+      Android documentation: <a href="https://developer.android.com/reference/android/webkit/WebSettings#setAllowFileAccess(boolean)">WebSettings.setAllowFileAccess</a>.
     </li>
     <li>
-      Android documentation: <a href="https://developer.android.com/reference/android/webkit/WebSettings#setAllowFileAccessFromFileURLs(boolean)"><code>WebSettings.setAllowFileAccessFromFileURLs</code></a>.
+      Android documentation: <a href="https://developer.android.com/reference/android/webkit/WebSettings#setAllowFileAccessFromFileURLs(boolean)">WebSettings.setAllowFileAccessFromFileURLs</a>.
     </li>
     <li>
-      Android documentation: <a href="https://developer.android.com/reference/android/webkit/WebSettings#setAllowUniversalAccessFromFileURLs(boolean)"><code>WebSettings.setAllowUniversalAccessFromFileURLs</code></a>.
+      Android documentation: <a href="https://developer.android.com/reference/android/webkit/WebSettings#setAllowUniversalAccessFromFileURLs(boolean)">WebSettings.setAllowUniversalAccessFromFileURLs</a>.
     </li>
     <li>
       File access from URLs is enabled for WebView: <a href="https://oversecured.com/vulnerabilities#Android/File_access_from_file_URLs_is_enabled_for_WebView">File access for URLs is enabled for WebView</a>.

From b5400f6dc9ff5e1ef95db1df7ce6f405e4c5353a Mon Sep 17 00:00:00 2001
From: Alex Denisov <alexdenisov@github.com>
Date: Mon, 14 Nov 2022 08:55:44 +0100
Subject: [PATCH 0215/1420] Swift: remove rebase artifact

---
 .github/workflows/swift.yml | 9 ---------
 1 file changed, 9 deletions(-)

diff --git a/.github/workflows/swift.yml b/.github/workflows/swift.yml
index 330df323de9..09e1c8a92f8 100644
--- a/.github/workflows/swift.yml
+++ b/.github/workflows/swift.yml
@@ -112,15 +112,6 @@ jobs:
         with:
           name: swift-generated-cpp-files
           path: swift/generated-cpp-files/**
-  qlformat:
-    runs-on: ubuntu-latest
-    needs: changes
-    if: ${{ needs.changes.outputs.ql == 'true' }}
-    steps:
-      - uses: actions/checkout@v3
-      - uses: ./.github/actions/fetch-codeql
-      - name: Check QL formatting
-        run: find swift/ql "(" -name "*.ql" -or -name "*.qll" ")" -print0 | xargs -0 codeql query format --check-only
   database-upgrade-scripts:
     runs-on: ubuntu-latest
     steps:

From dd519cc9bf5254fff8a6de7b7c0d59262155aa34 Mon Sep 17 00:00:00 2001
From: Arthur Baars <aibaars@github.com>
Date: Mon, 10 Oct 2022 09:38:07 +0200
Subject: [PATCH 0216/1420] Ruby: also treat included/prepended modules as
 subclasses

---
 .../lib/codeql/ruby/ast/internal/Module.qll   |    2 +-
 .../dataflow/internal/DataFlowDispatch.qll    |   15 +-
 .../library-tests/modules/ancestors.expected  |    6 +
 .../library-tests/modules/callgraph.expected  |    7 +
 ruby/ql/test/library-tests/modules/calls.rb   |   16 +
 .../library-tests/modules/methods.expected    |   22 +
 .../library-tests/modules/modules.expected    | 1216 +++++++++--------
 .../modules/superclasses.expected             |    5 +
 8 files changed, 681 insertions(+), 608 deletions(-)

diff --git a/ruby/ql/lib/codeql/ruby/ast/internal/Module.qll b/ruby/ql/lib/codeql/ruby/ast/internal/Module.qll
index d0511247251..7b8ab7acba3 100644
--- a/ruby/ql/lib/codeql/ruby/ast/internal/Module.qll
+++ b/ruby/ql/lib/codeql/ruby/ast/internal/Module.qll
@@ -165,7 +165,7 @@ private module Cached {
    */
   cached
   Method lookupMethodInSubClasses(Module m, string name) {
-    exists(Module sub | sub.getSuperClass() = m |
+    exists(Module sub | sub.getAnImmediateAncestor() = m |
       TMethod(result) = lookupMethodOrConst0(sub, name) or
       result = lookupMethodInSubClasses(sub, name)
     )
diff --git a/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowDispatch.qll b/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowDispatch.qll
index 4b97772d2c9..c5e2cce3988 100644
--- a/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowDispatch.qll
+++ b/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowDispatch.qll
@@ -190,13 +190,10 @@ private Block yieldCall(RelevantCall call) {
 }
 
 pragma[nomagic]
-private predicate superCall(RelevantCall call, Module superClass, string method) {
+private predicate superCall(RelevantCall call, Module cls, string method) {
   call.getExpr() instanceof SuperCall and
-  exists(Module tp |
-    tp = call.getExpr().getEnclosingModule().getModule() and
-    superClass = tp.getSuperClass() and
-    method = call.getExpr().getEnclosingMethod().getName()
-  )
+  cls = call.getExpr().getEnclosingModule().getModule() and
+  method = call.getExpr().getEnclosingMethod().getName()
 }
 
 /** Holds if `self` belongs to module `m`. */
@@ -464,9 +461,9 @@ private module Cached {
       )
     )
     or
-    exists(Module superClass, string method |
-      superCall(call, superClass, method) and
-      result = lookupMethod(superClass, method)
+    exists(Module cls, string method |
+      superCall(call, cls, method) and
+      result = lookupMethod(cls.getAnImmediateAncestor(), method)
     )
     or
     result = yieldCall(call)
diff --git a/ruby/ql/test/library-tests/modules/ancestors.expected b/ruby/ql/test/library-tests/modules/ancestors.expected
index 11abca965b6..50a5f7dc72e 100644
--- a/ruby/ql/test/library-tests/modules/ancestors.expected
+++ b/ruby/ql/test/library-tests/modules/ancestors.expected
@@ -136,6 +136,12 @@ calls.rb:
 #  605| SingletonC
 #-----| super -> SingletonA
 
+#  618| Included
+
+#  626| IncludesIncluded
+#-----| super -> Object
+#-----| include -> Included
+
 hello.rb:
 #    1| EnglishWords
 
diff --git a/ruby/ql/test/library-tests/modules/callgraph.expected b/ruby/ql/test/library-tests/modules/callgraph.expected
index afb8b6da172..93f262b3105 100644
--- a/ruby/ql/test/library-tests/modules/callgraph.expected
+++ b/ruby/ql/test/library-tests/modules/callgraph.expected
@@ -233,6 +233,10 @@ getTarget
 | calls.rb:614:1:614:31 | call to call_call_singleton1 | calls.rb:591:5:593:7 | call_call_singleton1 |
 | calls.rb:615:1:615:31 | call to call_call_singleton1 | calls.rb:591:5:593:7 | call_call_singleton1 |
 | calls.rb:616:1:616:31 | call to call_call_singleton1 | calls.rb:591:5:593:7 | call_call_singleton1 |
+| calls.rb:620:9:620:16 | call to bar | calls.rb:622:5:623:7 | bar |
+| calls.rb:620:9:620:16 | call to bar | calls.rb:628:5:630:7 | bar |
+| calls.rb:627:5:627:20 | call to include | calls.rb:108:5:110:7 | include |
+| calls.rb:629:9:629:13 | call to super | calls.rb:622:5:623:7 | bar |
 | hello.rb:12:5:12:24 | call to include | calls.rb:108:5:110:7 | include |
 | hello.rb:14:16:14:20 | call to hello | hello.rb:2:5:4:7 | hello |
 | hello.rb:20:16:20:20 | call to super | hello.rb:13:5:15:7 | message |
@@ -476,6 +480,9 @@ publicMethod
 | calls.rb:600:5:602:7 | call_singleton1 |
 | calls.rb:606:5:607:7 | singleton1 |
 | calls.rb:609:5:611:7 | call_singleton1 |
+| calls.rb:619:5:621:7 | foo |
+| calls.rb:622:5:623:7 | bar |
+| calls.rb:628:5:630:7 | bar |
 | hello.rb:2:5:4:7 | hello |
 | hello.rb:5:5:7:7 | world |
 | hello.rb:13:5:15:7 | message |
diff --git a/ruby/ql/test/library-tests/modules/calls.rb b/ruby/ql/test/library-tests/modules/calls.rb
index 031c85d67d8..c6cd849571c 100644
--- a/ruby/ql/test/library-tests/modules/calls.rb
+++ b/ruby/ql/test/library-tests/modules/calls.rb
@@ -614,3 +614,19 @@ end
 SingletonA.call_call_singleton1
 SingletonB.call_call_singleton1
 SingletonC.call_call_singleton1
+
+module Included
+    def foo
+        self.bar
+    end
+    def bar
+    end
+end
+
+class IncludesIncluded
+    include Included
+    def bar
+        super
+    end
+end
+
diff --git a/ruby/ql/test/library-tests/modules/methods.expected b/ruby/ql/test/library-tests/modules/methods.expected
index 5319fc55377..8bd0d32fde6 100644
--- a/ruby/ql/test/library-tests/modules/methods.expected
+++ b/ruby/ql/test/library-tests/modules/methods.expected
@@ -45,6 +45,9 @@ getMethod
 | calls.rb:531:1:544:3 | ProtectedMethods | bar | calls.rb:534:15:536:7 | bar |
 | calls.rb:531:1:544:3 | ProtectedMethods | baz | calls.rb:538:5:543:7 | baz |
 | calls.rb:550:1:555:3 | ProtectedMethodsSub | baz | calls.rb:551:5:554:7 | baz |
+| calls.rb:618:1:624:3 | Included | bar | calls.rb:622:5:623:7 | bar |
+| calls.rb:618:1:624:3 | Included | foo | calls.rb:619:5:621:7 | foo |
+| calls.rb:626:1:631:3 | IncludesIncluded | bar | calls.rb:628:5:630:7 | bar |
 | hello.rb:1:1:8:3 | EnglishWords | hello | hello.rb:2:5:4:7 | hello |
 | hello.rb:1:1:8:3 | EnglishWords | world | hello.rb:5:5:7:7 | world |
 | hello.rb:11:1:16:3 | Greeting | message | hello.rb:13:5:15:7 | message |
@@ -478,6 +481,22 @@ lookupMethod
 | calls.rb:605:1:612:3 | SingletonC | private_on_main | calls.rb:185:1:186:3 | private_on_main |
 | calls.rb:605:1:612:3 | SingletonC | puts | calls.rb:102:5:102:30 | puts |
 | calls.rb:605:1:612:3 | SingletonC | to_s | calls.rb:172:5:173:7 | to_s |
+| calls.rb:618:1:624:3 | Included | bar | calls.rb:622:5:623:7 | bar |
+| calls.rb:618:1:624:3 | Included | foo | calls.rb:619:5:621:7 | foo |
+| calls.rb:626:1:631:3 | IncludesIncluded | add_singleton | calls.rb:367:1:371:3 | add_singleton |
+| calls.rb:626:1:631:3 | IncludesIncluded | bar | calls.rb:628:5:630:7 | bar |
+| calls.rb:626:1:631:3 | IncludesIncluded | call_block | calls.rb:81:1:83:3 | call_block |
+| calls.rb:626:1:631:3 | IncludesIncluded | call_instance_m | calls.rb:39:1:41:3 | call_instance_m |
+| calls.rb:626:1:631:3 | IncludesIncluded | create | calls.rb:278:1:286:3 | create |
+| calls.rb:626:1:631:3 | IncludesIncluded | foo | calls.rb:619:5:621:7 | foo |
+| calls.rb:626:1:631:3 | IncludesIncluded | funny | calls.rb:140:1:142:3 | funny |
+| calls.rb:626:1:631:3 | IncludesIncluded | indirect | calls.rb:158:1:160:3 | indirect |
+| calls.rb:626:1:631:3 | IncludesIncluded | new | calls.rb:117:5:117:16 | new |
+| calls.rb:626:1:631:3 | IncludesIncluded | optional_arg | calls.rb:76:1:79:3 | optional_arg |
+| calls.rb:626:1:631:3 | IncludesIncluded | pattern_dispatch | calls.rb:343:1:359:3 | pattern_dispatch |
+| calls.rb:626:1:631:3 | IncludesIncluded | private_on_main | calls.rb:185:1:186:3 | private_on_main |
+| calls.rb:626:1:631:3 | IncludesIncluded | puts | calls.rb:102:5:102:30 | puts |
+| calls.rb:626:1:631:3 | IncludesIncluded | to_s | calls.rb:172:5:173:7 | to_s |
 | file://:0:0:0:0 | Class | include | calls.rb:108:5:110:7 | include |
 | file://:0:0:0:0 | Class | module_eval | calls.rb:107:5:107:24 | module_eval |
 | file://:0:0:0:0 | Class | new | calls.rb:117:5:117:16 | new |
@@ -965,6 +984,9 @@ enclosingMethod
 | calls.rb:601:9:601:18 | self | calls.rb:600:5:602:7 | call_singleton1 |
 | calls.rb:610:9:610:18 | call to singleton1 | calls.rb:609:5:611:7 | call_singleton1 |
 | calls.rb:610:9:610:18 | self | calls.rb:609:5:611:7 | call_singleton1 |
+| calls.rb:620:9:620:12 | self | calls.rb:619:5:621:7 | foo |
+| calls.rb:620:9:620:16 | call to bar | calls.rb:619:5:621:7 | foo |
+| calls.rb:629:9:629:13 | call to super | calls.rb:628:5:630:7 | bar |
 | hello.rb:3:9:3:22 | return | hello.rb:2:5:4:7 | hello |
 | hello.rb:3:16:3:22 | "hello" | hello.rb:2:5:4:7 | hello |
 | hello.rb:3:17:3:21 | hello | hello.rb:2:5:4:7 | hello |
diff --git a/ruby/ql/test/library-tests/modules/modules.expected b/ruby/ql/test/library-tests/modules/modules.expected
index 01b81e01efe..57cebf1907c 100644
--- a/ruby/ql/test/library-tests/modules/modules.expected
+++ b/ruby/ql/test/library-tests/modules/modules.expected
@@ -32,6 +32,8 @@ getModule
 | calls.rb:583:1:594:3 | SingletonA |
 | calls.rb:596:1:603:3 | SingletonB |
 | calls.rb:605:1:612:3 | SingletonC |
+| calls.rb:618:1:624:3 | Included |
+| calls.rb:626:1:631:3 | IncludesIncluded |
 | file://:0:0:0:0 | BasicObject |
 | file://:0:0:0:0 | Class |
 | file://:0:0:0:0 | Complex |
@@ -101,7 +103,7 @@ getADeclaration
 | calls.rb:96:1:98:3 | String | calls.rb:96:1:98:3 | String |
 | calls.rb:100:1:103:3 | Kernel | calls.rb:100:1:103:3 | Kernel |
 | calls.rb:105:1:113:3 | Module | calls.rb:105:1:113:3 | Module |
-| calls.rb:115:1:118:3 | Object | calls.rb:1:1:616:32 | calls.rb |
+| calls.rb:115:1:118:3 | Object | calls.rb:1:1:632:1 | calls.rb |
 | calls.rb:115:1:118:3 | Object | calls.rb:115:1:118:3 | Object |
 | calls.rb:115:1:118:3 | Object | hello.rb:1:1:22:3 | hello.rb |
 | calls.rb:115:1:118:3 | Object | instance_fields.rb:1:1:29:4 | instance_fields.rb |
@@ -139,6 +141,8 @@ getADeclaration
 | calls.rb:583:1:594:3 | SingletonA | calls.rb:583:1:594:3 | SingletonA |
 | calls.rb:596:1:603:3 | SingletonB | calls.rb:596:1:603:3 | SingletonB |
 | calls.rb:605:1:612:3 | SingletonC | calls.rb:605:1:612:3 | SingletonC |
+| calls.rb:618:1:624:3 | Included | calls.rb:618:1:624:3 | Included |
+| calls.rb:626:1:631:3 | IncludesIncluded | calls.rb:626:1:631:3 | IncludesIncluded |
 | hello.rb:1:1:8:3 | EnglishWords | hello.rb:1:1:8:3 | EnglishWords |
 | hello.rb:11:1:16:3 | Greeting | hello.rb:11:1:16:3 | Greeting |
 | hello.rb:18:1:22:3 | HelloWorld | hello.rb:18:1:22:3 | HelloWorld |
@@ -218,6 +222,7 @@ getSuperClass
 | calls.rb:583:1:594:3 | SingletonA | calls.rb:115:1:118:3 | Object |
 | calls.rb:596:1:603:3 | SingletonB | calls.rb:583:1:594:3 | SingletonA |
 | calls.rb:605:1:612:3 | SingletonC | calls.rb:583:1:594:3 | SingletonA |
+| calls.rb:626:1:631:3 | IncludesIncluded | calls.rb:115:1:118:3 | Object |
 | file://:0:0:0:0 | Class | calls.rb:105:1:113:3 | Module |
 | file://:0:0:0:0 | Complex | file://:0:0:0:0 | Numeric |
 | file://:0:0:0:0 | FalseClass | calls.rb:115:1:118:3 | Object |
@@ -256,6 +261,7 @@ getAnIncludedModule
 | calls.rb:43:1:58:3 | C | calls.rb:21:1:34:3 | M |
 | calls.rb:115:1:118:3 | Object | calls.rb:100:1:103:3 | Kernel |
 | calls.rb:531:1:544:3 | ProtectedMethods | calls.rb:525:1:529:3 | ProtectedMethodInModule |
+| calls.rb:626:1:631:3 | IncludesIncluded | calls.rb:618:1:624:3 | Included |
 | hello.rb:11:1:16:3 | Greeting | hello.rb:1:1:8:3 | EnglishWords |
 | modules.rb:88:1:93:3 | IncludeTest | modules.rb:63:1:81:3 | Test |
 | modules.rb:95:1:99:3 | IncludeTest2 | modules.rb:63:1:81:3 | Test |
@@ -358,6 +364,7 @@ resolveConstantReadAccess
 | calls.rb:614:1:614:10 | SingletonA | SingletonA |
 | calls.rb:615:1:615:10 | SingletonB | SingletonB |
 | calls.rb:616:1:616:10 | SingletonC | SingletonC |
+| calls.rb:627:13:627:20 | Included | Included |
 | hello.rb:12:13:12:24 | EnglishWords | EnglishWords |
 | hello.rb:18:20:18:27 | Greeting | Greeting |
 | instance_fields.rb:4:22:4:31 | A_target | A_target |
@@ -438,6 +445,8 @@ resolveConstantWriteAccess
 | calls.rb:583:1:594:3 | SingletonA | SingletonA |
 | calls.rb:596:1:603:3 | SingletonB | SingletonB |
 | calls.rb:605:1:612:3 | SingletonC | SingletonC |
+| calls.rb:618:1:624:3 | Included | Included |
+| calls.rb:626:1:631:3 | IncludesIncluded | IncludesIncluded |
 | hello.rb:1:1:8:3 | EnglishWords | EnglishWords |
 | hello.rb:11:1:16:3 | Greeting | Greeting |
 | hello.rb:18:1:22:3 | HelloWorld | HelloWorld |
@@ -504,32 +513,32 @@ resolveConstantWriteAccess
 | unresolved_subclass.rb:7:1:8:3 | Subclass2 | UnresolvedNamespace::Subclass2 |
 | unresolved_subclass.rb:11:1:12:3 | A | UnresolvedNamespace::A |
 enclosingModule
-| calls.rb:1:1:3:3 | foo | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:2:5:2:14 | call to puts | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:2:5:2:14 | self | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:2:10:2:14 | "foo" | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:2:11:2:13 | foo | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:5:1:5:3 | call to foo | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:5:1:5:3 | self | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:7:1:9:3 | bar | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:7:5:7:8 | self | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:8:5:8:15 | call to puts | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:8:5:8:15 | self | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:8:10:8:15 | "bar1" | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:8:11:8:14 | bar1 | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:11:1:11:4 | self | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:11:1:11:8 | call to bar | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:13:1:15:3 | bar | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:13:5:13:8 | self | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:14:5:14:15 | call to puts | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:14:5:14:15 | self | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:14:10:14:15 | "bar2" | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:14:11:14:14 | bar2 | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:17:1:17:4 | self | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:17:1:17:8 | call to bar | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:19:1:19:4 | self | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:19:1:19:8 | call to foo | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:21:1:34:3 | M | calls.rb:1:1:616:32 | calls.rb |
+| calls.rb:1:1:3:3 | foo | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:2:5:2:14 | call to puts | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:2:5:2:14 | self | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:2:10:2:14 | "foo" | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:2:11:2:13 | foo | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:5:1:5:3 | call to foo | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:5:1:5:3 | self | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:7:1:9:3 | bar | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:7:5:7:8 | self | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:8:5:8:15 | call to puts | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:8:5:8:15 | self | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:8:10:8:15 | "bar1" | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:8:11:8:14 | bar1 | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:11:1:11:4 | self | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:11:1:11:8 | call to bar | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:13:1:15:3 | bar | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:13:5:13:8 | self | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:14:5:14:15 | call to puts | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:14:5:14:15 | self | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:14:10:14:15 | "bar2" | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:14:11:14:14 | bar2 | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:17:1:17:4 | self | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:17:1:17:8 | call to bar | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:19:1:19:4 | self | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:19:1:19:8 | call to foo | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:21:1:34:3 | M | calls.rb:1:1:632:1 | calls.rb |
 | calls.rb:22:5:24:7 | instance_m | calls.rb:21:1:34:3 | M |
 | calls.rb:23:9:23:19 | call to singleton_m | calls.rb:21:1:34:3 | M |
 | calls.rb:23:9:23:19 | self | calls.rb:21:1:34:3 | M |
@@ -545,14 +554,14 @@ enclosingModule
 | calls.rb:32:5:32:15 | self | calls.rb:21:1:34:3 | M |
 | calls.rb:33:5:33:8 | self | calls.rb:21:1:34:3 | M |
 | calls.rb:33:5:33:20 | call to singleton_m | calls.rb:21:1:34:3 | M |
-| calls.rb:36:1:36:1 | M | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:36:1:36:12 | call to instance_m | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:37:1:37:1 | M | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:37:1:37:13 | call to singleton_m | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:39:1:41:3 | call_instance_m | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:40:5:40:14 | call to instance_m | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:40:5:40:14 | self | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:43:1:58:3 | C | calls.rb:1:1:616:32 | calls.rb |
+| calls.rb:36:1:36:1 | M | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:36:1:36:12 | call to instance_m | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:37:1:37:1 | M | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:37:1:37:13 | call to singleton_m | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:39:1:41:3 | call_instance_m | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:40:5:40:14 | call to instance_m | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:40:5:40:14 | self | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:43:1:58:3 | C | calls.rb:1:1:632:1 | calls.rb |
 | calls.rb:44:5:44:13 | call to include | calls.rb:43:1:58:3 | C |
 | calls.rb:44:5:44:13 | self | calls.rb:43:1:58:3 | C |
 | calls.rb:44:13:44:13 | M | calls.rb:43:1:58:3 | C |
@@ -573,66 +582,66 @@ enclosingModule
 | calls.rb:55:9:55:19 | self | calls.rb:43:1:58:3 | C |
 | calls.rb:56:9:56:12 | self | calls.rb:43:1:58:3 | C |
 | calls.rb:56:9:56:24 | call to singleton_m | calls.rb:43:1:58:3 | C |
-| calls.rb:60:1:60:1 | c | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:60:1:60:9 | ... = ... | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:60:5:60:5 | C | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:60:5:60:9 | call to new | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:61:1:61:1 | c | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:61:1:61:5 | call to baz | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:62:1:62:1 | c | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:62:1:62:13 | call to singleton_m | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:63:1:63:1 | c | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:63:1:63:12 | call to instance_m | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:65:1:69:3 | D | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:65:11:65:11 | C | calls.rb:1:1:616:32 | calls.rb |
+| calls.rb:60:1:60:1 | c | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:60:1:60:9 | ... = ... | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:60:5:60:5 | C | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:60:5:60:9 | call to new | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:61:1:61:1 | c | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:61:1:61:5 | call to baz | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:62:1:62:1 | c | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:62:1:62:13 | call to singleton_m | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:63:1:63:1 | c | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:63:1:63:12 | call to instance_m | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:65:1:69:3 | D | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:65:11:65:11 | C | calls.rb:1:1:632:1 | calls.rb |
 | calls.rb:66:5:68:7 | baz | calls.rb:65:1:69:3 | D |
 | calls.rb:67:9:67:13 | call to super | calls.rb:65:1:69:3 | D |
-| calls.rb:71:1:71:1 | d | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:71:1:71:9 | ... = ... | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:71:5:71:5 | D | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:71:5:71:9 | call to new | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:72:1:72:1 | d | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:72:1:72:5 | call to baz | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:73:1:73:1 | d | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:73:1:73:13 | call to singleton_m | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:74:1:74:1 | d | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:74:1:74:12 | call to instance_m | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:76:1:79:3 | optional_arg | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:76:18:76:18 | a | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:76:18:76:18 | a | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:76:22:76:22 | 4 | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:76:25:76:25 | b | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:76:25:76:25 | b | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:76:28:76:28 | 5 | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:77:5:77:5 | a | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:77:5:77:16 | call to bit_length | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:78:5:78:5 | b | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:78:5:78:16 | call to bit_length | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:81:1:83:3 | call_block | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:82:5:82:11 | yield ... | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:82:11:82:11 | 1 | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:85:1:89:3 | foo | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:86:5:86:7 | var | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:86:5:86:18 | ... = ... | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:86:11:86:14 | Hash | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:86:11:86:18 | call to new | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:87:5:87:7 | var | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:87:5:87:10 | ...[...] | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:87:9:87:9 | 1 | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:88:5:88:29 | call to call_block | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:88:5:88:29 | self | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:88:16:88:29 | { ... } | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:88:19:88:19 | x | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:88:19:88:19 | x | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:88:22:88:24 | var | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:88:22:88:27 | ...[...] | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:88:26:88:26 | x | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:91:1:94:3 | Integer | calls.rb:1:1:616:32 | calls.rb |
+| calls.rb:71:1:71:1 | d | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:71:1:71:9 | ... = ... | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:71:5:71:5 | D | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:71:5:71:9 | call to new | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:72:1:72:1 | d | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:72:1:72:5 | call to baz | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:73:1:73:1 | d | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:73:1:73:13 | call to singleton_m | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:74:1:74:1 | d | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:74:1:74:12 | call to instance_m | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:76:1:79:3 | optional_arg | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:76:18:76:18 | a | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:76:18:76:18 | a | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:76:22:76:22 | 4 | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:76:25:76:25 | b | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:76:25:76:25 | b | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:76:28:76:28 | 5 | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:77:5:77:5 | a | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:77:5:77:16 | call to bit_length | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:78:5:78:5 | b | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:78:5:78:16 | call to bit_length | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:81:1:83:3 | call_block | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:82:5:82:11 | yield ... | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:82:11:82:11 | 1 | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:85:1:89:3 | foo | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:86:5:86:7 | var | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:86:5:86:18 | ... = ... | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:86:11:86:14 | Hash | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:86:11:86:18 | call to new | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:87:5:87:7 | var | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:87:5:87:10 | ...[...] | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:87:9:87:9 | 1 | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:88:5:88:29 | call to call_block | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:88:5:88:29 | self | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:88:16:88:29 | { ... } | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:88:19:88:19 | x | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:88:19:88:19 | x | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:88:22:88:24 | var | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:88:22:88:27 | ...[...] | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:88:26:88:26 | x | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:91:1:94:3 | Integer | calls.rb:1:1:632:1 | calls.rb |
 | calls.rb:92:5:92:23 | bit_length | calls.rb:91:1:94:3 | Integer |
 | calls.rb:93:5:93:16 | abs | calls.rb:91:1:94:3 | Integer |
-| calls.rb:96:1:98:3 | String | calls.rb:1:1:616:32 | calls.rb |
+| calls.rb:96:1:98:3 | String | calls.rb:1:1:632:1 | calls.rb |
 | calls.rb:97:5:97:23 | capitalize | calls.rb:96:1:98:3 | String |
-| calls.rb:100:1:103:3 | Kernel | calls.rb:1:1:616:32 | calls.rb |
+| calls.rb:100:1:103:3 | Kernel | calls.rb:1:1:632:1 | calls.rb |
 | calls.rb:101:5:101:25 | alias ... | calls.rb:100:1:103:3 | Kernel |
 | calls.rb:101:11:101:19 | :old_puts | calls.rb:100:1:103:3 | Kernel |
 | calls.rb:101:11:101:19 | old_puts | calls.rb:100:1:103:3 | Kernel |
@@ -644,7 +653,7 @@ enclosingModule
 | calls.rb:102:17:102:26 | call to old_puts | calls.rb:100:1:103:3 | Kernel |
 | calls.rb:102:17:102:26 | self | calls.rb:100:1:103:3 | Kernel |
 | calls.rb:102:26:102:26 | x | calls.rb:100:1:103:3 | Kernel |
-| calls.rb:105:1:113:3 | Module | calls.rb:1:1:616:32 | calls.rb |
+| calls.rb:105:1:113:3 | Module | calls.rb:1:1:632:1 | calls.rb |
 | calls.rb:106:5:106:31 | alias ... | calls.rb:105:1:113:3 | Module |
 | calls.rb:106:11:106:22 | :old_include | calls.rb:105:1:113:3 | Module |
 | calls.rb:106:11:106:22 | old_include | calls.rb:105:1:113:3 | Module |
@@ -659,13 +668,13 @@ enclosingModule
 | calls.rb:109:21:109:21 | x | calls.rb:105:1:113:3 | Module |
 | calls.rb:111:5:111:20 | prepend | calls.rb:105:1:113:3 | Module |
 | calls.rb:112:5:112:20 | private | calls.rb:105:1:113:3 | Module |
-| calls.rb:115:1:118:3 | Object | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:115:16:115:21 | Module | calls.rb:1:1:616:32 | calls.rb |
+| calls.rb:115:1:118:3 | Object | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:115:16:115:21 | Module | calls.rb:1:1:632:1 | calls.rb |
 | calls.rb:116:5:116:18 | call to include | calls.rb:115:1:118:3 | Object |
 | calls.rb:116:5:116:18 | self | calls.rb:115:1:118:3 | Object |
 | calls.rb:116:13:116:18 | Kernel | calls.rb:115:1:118:3 | Object |
 | calls.rb:117:5:117:16 | new | calls.rb:115:1:118:3 | Object |
-| calls.rb:120:1:123:3 | Hash | calls.rb:1:1:616:32 | calls.rb |
+| calls.rb:120:1:123:3 | Hash | calls.rb:1:1:632:1 | calls.rb |
 | calls.rb:121:5:121:25 | alias ... | calls.rb:120:1:123:3 | Hash |
 | calls.rb:121:11:121:21 | :old_lookup | calls.rb:120:1:123:3 | Hash |
 | calls.rb:121:11:121:21 | old_lookup | calls.rb:120:1:123:3 | Hash |
@@ -677,7 +686,7 @@ enclosingModule
 | calls.rb:122:15:122:27 | call to old_lookup | calls.rb:120:1:123:3 | Hash |
 | calls.rb:122:15:122:27 | self | calls.rb:120:1:123:3 | Hash |
 | calls.rb:122:26:122:26 | x | calls.rb:120:1:123:3 | Hash |
-| calls.rb:125:1:138:3 | Array | calls.rb:1:1:616:32 | calls.rb |
+| calls.rb:125:1:138:3 | Array | calls.rb:1:1:632:1 | calls.rb |
 | calls.rb:126:3:126:23 | alias ... | calls.rb:125:1:138:3 | Array |
 | calls.rb:126:9:126:19 | :old_lookup | calls.rb:125:1:138:3 | Array |
 | calls.rb:126:9:126:19 | old_lookup | calls.rb:125:1:138:3 | Array |
@@ -713,130 +722,130 @@ enclosingModule
 | calls.rb:135:9:135:14 | ... = ... | calls.rb:125:1:138:3 | Array |
 | calls.rb:135:11:135:12 | ... + ... | calls.rb:125:1:138:3 | Array |
 | calls.rb:135:14:135:14 | 1 | calls.rb:125:1:138:3 | Array |
-| calls.rb:140:1:142:3 | funny | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:141:5:141:20 | yield ... | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:141:11:141:20 | "prefix: " | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:141:12:141:19 | prefix:  | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:144:1:144:30 | call to funny | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:144:1:144:30 | self | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:144:7:144:30 | { ... } | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:144:10:144:10 | i | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:144:10:144:10 | i | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:144:13:144:29 | call to puts | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:144:13:144:29 | self | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:144:18:144:18 | i | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:144:18:144:29 | call to capitalize | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:146:1:146:3 | "a" | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:146:1:146:14 | call to capitalize | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:146:2:146:2 | a | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:147:1:147:1 | 1 | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:147:1:147:12 | call to bit_length | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:148:1:148:1 | 1 | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:148:1:148:5 | call to abs | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:150:1:150:13 | Array | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:150:1:150:13 | [...] | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:150:1:150:13 | call to [] | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:150:1:150:62 | call to foreach | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:150:2:150:4 | "a" | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:150:3:150:3 | a | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:150:6:150:8 | "b" | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:150:7:150:7 | b | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:150:10:150:12 | "c" | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:150:11:150:11 | c | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:150:23:150:62 | { ... } | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:150:26:150:26 | i | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:150:26:150:26 | i | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:150:29:150:29 | v | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:150:29:150:29 | v | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:150:32:150:61 | call to puts | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:150:32:150:61 | self | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:150:37:150:61 | "#{...} -> #{...}" | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:150:38:150:41 | #{...} | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:150:40:150:40 | i | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:150:42:150:45 |  ->  | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:150:46:150:60 | #{...} | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:150:48:150:48 | v | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:150:48:150:59 | call to capitalize | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:152:1:152:7 | Array | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:152:1:152:7 | [...] | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:152:1:152:7 | call to [] | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:152:1:152:35 | call to foreach | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:152:2:152:2 | 1 | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:152:4:152:4 | 2 | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:152:6:152:6 | 3 | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:152:17:152:35 | { ... } | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:152:20:152:20 | i | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:152:20:152:20 | i | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:152:23:152:23 | i | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:152:23:152:34 | call to bit_length | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:154:1:154:7 | Array | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:154:1:154:7 | [...] | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:154:1:154:7 | call to [] | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:154:1:154:40 | call to foreach | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:154:2:154:2 | 1 | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:154:4:154:4 | 2 | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:154:6:154:6 | 3 | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:154:17:154:40 | { ... } | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:154:20:154:20 | i | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:154:20:154:20 | i | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:154:23:154:39 | call to puts | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:154:23:154:39 | self | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:154:28:154:28 | i | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:154:28:154:39 | call to capitalize | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:156:1:156:8 | Array | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:156:1:156:8 | [...] | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:156:1:156:8 | call to [] | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:156:1:156:37 | call to foreach | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:156:2:156:2 | 1 | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:156:4:156:5 | - ... | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:156:5:156:5 | 2 | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:156:7:156:7 | 3 | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:156:18:156:37 | { ... } | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:156:21:156:21 | _ | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:156:21:156:21 | _ | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:156:24:156:24 | v | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:156:24:156:24 | v | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:156:27:156:36 | call to puts | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:156:27:156:36 | self | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:156:32:156:32 | v | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:156:32:156:36 | call to abs | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:158:1:160:3 | indirect | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:158:14:158:15 | &b | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:158:15:158:15 | b | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:159:5:159:17 | call to call_block | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:159:5:159:17 | self | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:159:16:159:17 | &... | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:159:17:159:17 | b | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:162:1:162:28 | call to indirect | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:162:1:162:28 | self | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:162:10:162:28 | { ... } | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:162:13:162:13 | i | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:162:13:162:13 | i | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:162:16:162:16 | i | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:162:16:162:27 | call to bit_length | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:165:1:169:3 | S | calls.rb:1:1:616:32 | calls.rb |
+| calls.rb:140:1:142:3 | funny | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:141:5:141:20 | yield ... | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:141:11:141:20 | "prefix: " | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:141:12:141:19 | prefix:  | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:144:1:144:30 | call to funny | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:144:1:144:30 | self | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:144:7:144:30 | { ... } | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:144:10:144:10 | i | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:144:10:144:10 | i | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:144:13:144:29 | call to puts | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:144:13:144:29 | self | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:144:18:144:18 | i | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:144:18:144:29 | call to capitalize | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:146:1:146:3 | "a" | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:146:1:146:14 | call to capitalize | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:146:2:146:2 | a | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:147:1:147:1 | 1 | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:147:1:147:12 | call to bit_length | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:148:1:148:1 | 1 | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:148:1:148:5 | call to abs | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:150:1:150:13 | Array | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:150:1:150:13 | [...] | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:150:1:150:13 | call to [] | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:150:1:150:62 | call to foreach | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:150:2:150:4 | "a" | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:150:3:150:3 | a | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:150:6:150:8 | "b" | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:150:7:150:7 | b | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:150:10:150:12 | "c" | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:150:11:150:11 | c | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:150:23:150:62 | { ... } | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:150:26:150:26 | i | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:150:26:150:26 | i | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:150:29:150:29 | v | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:150:29:150:29 | v | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:150:32:150:61 | call to puts | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:150:32:150:61 | self | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:150:37:150:61 | "#{...} -> #{...}" | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:150:38:150:41 | #{...} | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:150:40:150:40 | i | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:150:42:150:45 |  ->  | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:150:46:150:60 | #{...} | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:150:48:150:48 | v | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:150:48:150:59 | call to capitalize | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:152:1:152:7 | Array | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:152:1:152:7 | [...] | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:152:1:152:7 | call to [] | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:152:1:152:35 | call to foreach | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:152:2:152:2 | 1 | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:152:4:152:4 | 2 | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:152:6:152:6 | 3 | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:152:17:152:35 | { ... } | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:152:20:152:20 | i | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:152:20:152:20 | i | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:152:23:152:23 | i | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:152:23:152:34 | call to bit_length | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:154:1:154:7 | Array | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:154:1:154:7 | [...] | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:154:1:154:7 | call to [] | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:154:1:154:40 | call to foreach | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:154:2:154:2 | 1 | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:154:4:154:4 | 2 | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:154:6:154:6 | 3 | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:154:17:154:40 | { ... } | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:154:20:154:20 | i | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:154:20:154:20 | i | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:154:23:154:39 | call to puts | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:154:23:154:39 | self | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:154:28:154:28 | i | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:154:28:154:39 | call to capitalize | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:156:1:156:8 | Array | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:156:1:156:8 | [...] | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:156:1:156:8 | call to [] | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:156:1:156:37 | call to foreach | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:156:2:156:2 | 1 | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:156:4:156:5 | - ... | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:156:5:156:5 | 2 | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:156:7:156:7 | 3 | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:156:18:156:37 | { ... } | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:156:21:156:21 | _ | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:156:21:156:21 | _ | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:156:24:156:24 | v | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:156:24:156:24 | v | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:156:27:156:36 | call to puts | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:156:27:156:36 | self | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:156:32:156:32 | v | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:156:32:156:36 | call to abs | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:158:1:160:3 | indirect | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:158:14:158:15 | &b | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:158:15:158:15 | b | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:159:5:159:17 | call to call_block | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:159:5:159:17 | self | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:159:16:159:17 | &... | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:159:17:159:17 | b | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:162:1:162:28 | call to indirect | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:162:1:162:28 | self | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:162:10:162:28 | { ... } | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:162:13:162:13 | i | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:162:13:162:13 | i | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:162:16:162:16 | i | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:162:16:162:27 | call to bit_length | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:165:1:169:3 | S | calls.rb:1:1:632:1 | calls.rb |
 | calls.rb:166:5:168:7 | s_method | calls.rb:165:1:169:3 | S |
 | calls.rb:167:9:167:12 | self | calls.rb:165:1:169:3 | S |
 | calls.rb:167:9:167:17 | call to to_s | calls.rb:165:1:169:3 | S |
-| calls.rb:171:1:174:3 | A | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:171:11:171:11 | S | calls.rb:1:1:616:32 | calls.rb |
+| calls.rb:171:1:174:3 | A | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:171:11:171:11 | S | calls.rb:1:1:632:1 | calls.rb |
 | calls.rb:172:5:173:7 | to_s | calls.rb:171:1:174:3 | A |
-| calls.rb:176:1:179:3 | B | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:176:11:176:11 | S | calls.rb:1:1:616:32 | calls.rb |
+| calls.rb:176:1:179:3 | B | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:176:11:176:11 | S | calls.rb:1:1:632:1 | calls.rb |
 | calls.rb:177:5:178:7 | to_s | calls.rb:176:1:179:3 | B |
-| calls.rb:181:1:181:1 | S | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:181:1:181:5 | call to new | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:181:1:181:14 | call to s_method | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:182:1:182:1 | A | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:182:1:182:5 | call to new | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:182:1:182:14 | call to s_method | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:183:1:183:1 | B | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:183:1:183:5 | call to new | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:183:1:183:14 | call to s_method | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:185:1:186:3 | private_on_main | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:188:1:188:15 | call to private_on_main | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:188:1:188:15 | self | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:190:1:226:3 | Singletons | calls.rb:1:1:616:32 | calls.rb |
+| calls.rb:181:1:181:1 | S | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:181:1:181:5 | call to new | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:181:1:181:14 | call to s_method | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:182:1:182:1 | A | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:182:1:182:5 | call to new | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:182:1:182:14 | call to s_method | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:183:1:183:1 | B | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:183:1:183:5 | call to new | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:183:1:183:14 | call to s_method | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:185:1:186:3 | private_on_main | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:188:1:188:15 | call to private_on_main | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:188:1:188:15 | self | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:190:1:226:3 | Singletons | calls.rb:1:1:632:1 | calls.rb |
 | calls.rb:191:5:194:7 | singleton_a | calls.rb:190:1:226:3 | Singletons |
 | calls.rb:191:9:191:12 | self | calls.rb:190:1:226:3 | Singletons |
 | calls.rb:192:9:192:26 | call to puts | calls.rb:190:1:226:3 | Singletons |
@@ -886,126 +895,126 @@ enclosingModule
 | calls.rb:223:5:225:7 | call_singleton_g | calls.rb:190:1:226:3 | Singletons |
 | calls.rb:224:9:224:12 | self | calls.rb:190:1:226:3 | Singletons |
 | calls.rb:224:9:224:24 | call to singleton_g | calls.rb:190:1:226:3 | Singletons |
-| calls.rb:228:1:228:10 | Singletons | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:228:1:228:22 | call to singleton_a | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:229:1:229:10 | Singletons | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:229:1:229:22 | call to singleton_f | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:231:1:231:2 | c1 | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:231:1:231:19 | ... = ... | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:231:6:231:15 | Singletons | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:231:6:231:19 | call to new | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:233:1:233:2 | c1 | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:233:1:233:11 | call to instance | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:234:1:234:2 | c1 | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:234:1:234:14 | call to singleton_e | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:236:1:238:3 | singleton_g | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:236:5:236:6 | c1 | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:237:5:237:24 | call to puts | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:237:5:237:24 | self | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:237:10:237:24 | "singleton_g_1" | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:237:11:237:23 | singleton_g_1 | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:240:1:240:2 | c1 | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:240:1:240:14 | call to singleton_g | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:241:1:241:2 | c1 | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:241:1:241:19 | call to call_singleton_g | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:243:1:245:3 | singleton_g | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:243:5:243:6 | c1 | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:244:5:244:24 | call to puts | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:244:5:244:24 | self | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:244:10:244:24 | "singleton_g_2" | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:244:11:244:23 | singleton_g_2 | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:247:1:247:2 | c1 | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:247:1:247:14 | call to singleton_g | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:248:1:248:2 | c1 | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:248:1:248:19 | call to call_singleton_g | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:250:1:254:3 | class << ... | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:250:10:250:11 | c1 | calls.rb:1:1:616:32 | calls.rb |
+| calls.rb:228:1:228:10 | Singletons | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:228:1:228:22 | call to singleton_a | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:229:1:229:10 | Singletons | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:229:1:229:22 | call to singleton_f | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:231:1:231:2 | c1 | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:231:1:231:19 | ... = ... | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:231:6:231:15 | Singletons | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:231:6:231:19 | call to new | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:233:1:233:2 | c1 | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:233:1:233:11 | call to instance | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:234:1:234:2 | c1 | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:234:1:234:14 | call to singleton_e | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:236:1:238:3 | singleton_g | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:236:5:236:6 | c1 | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:237:5:237:24 | call to puts | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:237:5:237:24 | self | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:237:10:237:24 | "singleton_g_1" | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:237:11:237:23 | singleton_g_1 | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:240:1:240:2 | c1 | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:240:1:240:14 | call to singleton_g | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:241:1:241:2 | c1 | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:241:1:241:19 | call to call_singleton_g | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:243:1:245:3 | singleton_g | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:243:5:243:6 | c1 | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:244:5:244:24 | call to puts | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:244:5:244:24 | self | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:244:10:244:24 | "singleton_g_2" | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:244:11:244:23 | singleton_g_2 | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:247:1:247:2 | c1 | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:247:1:247:14 | call to singleton_g | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:248:1:248:2 | c1 | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:248:1:248:19 | call to call_singleton_g | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:250:1:254:3 | class << ... | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:250:10:250:11 | c1 | calls.rb:1:1:632:1 | calls.rb |
 | calls.rb:251:5:253:7 | singleton_g | calls.rb:250:1:254:3 | class << ... |
 | calls.rb:252:9:252:28 | call to puts | calls.rb:250:1:254:3 | class << ... |
 | calls.rb:252:9:252:28 | self | calls.rb:250:1:254:3 | class << ... |
 | calls.rb:252:14:252:28 | "singleton_g_3" | calls.rb:250:1:254:3 | class << ... |
 | calls.rb:252:15:252:27 | singleton_g_3 | calls.rb:250:1:254:3 | class << ... |
-| calls.rb:256:1:256:2 | c1 | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:256:1:256:14 | call to singleton_g | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:257:1:257:2 | c1 | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:257:1:257:19 | call to call_singleton_g | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:259:1:259:2 | c2 | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:259:1:259:19 | ... = ... | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:259:6:259:15 | Singletons | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:259:6:259:19 | call to new | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:260:1:260:2 | c2 | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:260:1:260:14 | call to singleton_e | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:261:1:261:2 | c2 | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:261:1:261:14 | call to singleton_g | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:263:1:263:4 | self | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:263:1:263:8 | call to new | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:265:1:265:16 | call to puts | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:265:1:265:16 | self | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:265:6:265:16 | "top-level" | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:265:7:265:15 | top-level | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:267:1:269:3 | singleton_g | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:267:5:267:14 | Singletons | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:268:5:268:22 | call to puts | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:268:5:268:22 | self | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:268:10:268:22 | "singleton_g" | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:268:11:268:21 | singleton_g | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:271:1:271:10 | Singletons | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:271:1:271:22 | call to singleton_g | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:272:1:272:2 | c1 | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:272:1:272:14 | call to singleton_g | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:273:1:273:2 | c1 | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:273:1:273:19 | call to call_singleton_g | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:274:1:274:2 | c2 | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:274:1:274:14 | call to singleton_g | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:275:1:275:2 | c3 | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:275:1:275:19 | ... = ... | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:275:6:275:15 | Singletons | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:275:6:275:19 | call to new | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:276:1:276:2 | c3 | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:276:1:276:14 | call to singleton_g | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:278:1:286:3 | create | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:278:12:278:15 | type | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:278:12:278:15 | type | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:279:5:279:8 | type | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:279:5:279:12 | call to new | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:279:5:279:21 | call to instance | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:281:5:283:7 | singleton_h | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:281:9:281:12 | type | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:282:9:282:26 | call to puts | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:282:9:282:26 | self | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:282:14:282:26 | "singleton_h" | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:282:15:282:25 | singleton_h | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:285:5:285:8 | type | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:285:5:285:20 | call to singleton_h | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:288:1:288:17 | call to create | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:288:1:288:17 | self | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:288:8:288:17 | Singletons | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:289:1:289:10 | Singletons | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:289:1:289:22 | call to singleton_h | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:291:1:291:1 | x | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:291:1:291:14 | ... = ... | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:291:5:291:14 | Singletons | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:293:1:297:3 | class << ... | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:293:10:293:10 | x | calls.rb:1:1:616:32 | calls.rb |
+| calls.rb:256:1:256:2 | c1 | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:256:1:256:14 | call to singleton_g | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:257:1:257:2 | c1 | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:257:1:257:19 | call to call_singleton_g | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:259:1:259:2 | c2 | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:259:1:259:19 | ... = ... | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:259:6:259:15 | Singletons | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:259:6:259:19 | call to new | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:260:1:260:2 | c2 | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:260:1:260:14 | call to singleton_e | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:261:1:261:2 | c2 | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:261:1:261:14 | call to singleton_g | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:263:1:263:4 | self | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:263:1:263:8 | call to new | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:265:1:265:16 | call to puts | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:265:1:265:16 | self | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:265:6:265:16 | "top-level" | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:265:7:265:15 | top-level | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:267:1:269:3 | singleton_g | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:267:5:267:14 | Singletons | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:268:5:268:22 | call to puts | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:268:5:268:22 | self | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:268:10:268:22 | "singleton_g" | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:268:11:268:21 | singleton_g | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:271:1:271:10 | Singletons | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:271:1:271:22 | call to singleton_g | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:272:1:272:2 | c1 | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:272:1:272:14 | call to singleton_g | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:273:1:273:2 | c1 | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:273:1:273:19 | call to call_singleton_g | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:274:1:274:2 | c2 | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:274:1:274:14 | call to singleton_g | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:275:1:275:2 | c3 | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:275:1:275:19 | ... = ... | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:275:6:275:15 | Singletons | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:275:6:275:19 | call to new | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:276:1:276:2 | c3 | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:276:1:276:14 | call to singleton_g | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:278:1:286:3 | create | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:278:12:278:15 | type | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:278:12:278:15 | type | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:279:5:279:8 | type | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:279:5:279:12 | call to new | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:279:5:279:21 | call to instance | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:281:5:283:7 | singleton_h | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:281:9:281:12 | type | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:282:9:282:26 | call to puts | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:282:9:282:26 | self | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:282:14:282:26 | "singleton_h" | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:282:15:282:25 | singleton_h | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:285:5:285:8 | type | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:285:5:285:20 | call to singleton_h | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:288:1:288:17 | call to create | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:288:1:288:17 | self | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:288:8:288:17 | Singletons | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:289:1:289:10 | Singletons | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:289:1:289:22 | call to singleton_h | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:291:1:291:1 | x | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:291:1:291:14 | ... = ... | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:291:5:291:14 | Singletons | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:293:1:297:3 | class << ... | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:293:10:293:10 | x | calls.rb:1:1:632:1 | calls.rb |
 | calls.rb:294:5:296:7 | singleton_i | calls.rb:293:1:297:3 | class << ... |
 | calls.rb:295:9:295:26 | call to puts | calls.rb:293:1:297:3 | class << ... |
 | calls.rb:295:9:295:26 | self | calls.rb:293:1:297:3 | class << ... |
 | calls.rb:295:14:295:26 | "singleton_i" | calls.rb:293:1:297:3 | class << ... |
 | calls.rb:295:15:295:25 | singleton_i | calls.rb:293:1:297:3 | class << ... |
-| calls.rb:299:1:299:1 | x | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:299:1:299:13 | call to singleton_i | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:300:1:300:10 | Singletons | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:300:1:300:22 | call to singleton_i | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:302:1:306:3 | class << ... | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:302:10:302:19 | Singletons | calls.rb:1:1:616:32 | calls.rb |
+| calls.rb:299:1:299:1 | x | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:299:1:299:13 | call to singleton_i | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:300:1:300:10 | Singletons | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:300:1:300:22 | call to singleton_i | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:302:1:306:3 | class << ... | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:302:10:302:19 | Singletons | calls.rb:1:1:632:1 | calls.rb |
 | calls.rb:303:5:305:7 | singleton_j | calls.rb:302:1:306:3 | class << ... |
 | calls.rb:304:9:304:26 | call to puts | calls.rb:302:1:306:3 | class << ... |
 | calls.rb:304:9:304:26 | self | calls.rb:302:1:306:3 | class << ... |
 | calls.rb:304:14:304:26 | "singleton_j" | calls.rb:302:1:306:3 | class << ... |
 | calls.rb:304:15:304:25 | singleton_j | calls.rb:302:1:306:3 | class << ... |
-| calls.rb:308:1:308:10 | Singletons | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:308:1:308:22 | call to singleton_j | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:310:1:321:3 | SelfNew | calls.rb:1:1:616:32 | calls.rb |
+| calls.rb:308:1:308:10 | Singletons | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:308:1:308:22 | call to singleton_j | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:310:1:321:3 | SelfNew | calls.rb:1:1:632:1 | calls.rb |
 | calls.rb:311:5:314:7 | instance | calls.rb:310:1:321:3 | SelfNew |
 | calls.rb:312:9:312:31 | call to puts | calls.rb:310:1:321:3 | SelfNew |
 | calls.rb:312:9:312:31 | self | calls.rb:310:1:321:3 | SelfNew |
@@ -1022,110 +1031,110 @@ enclosingModule
 | calls.rb:320:5:320:7 | call to new | calls.rb:310:1:321:3 | SelfNew |
 | calls.rb:320:5:320:7 | self | calls.rb:310:1:321:3 | SelfNew |
 | calls.rb:320:5:320:16 | call to instance | calls.rb:310:1:321:3 | SelfNew |
-| calls.rb:323:1:323:7 | SelfNew | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:323:1:323:17 | call to singleton | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:325:1:329:3 | C1 | calls.rb:1:1:616:32 | calls.rb |
+| calls.rb:323:1:323:7 | SelfNew | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:323:1:323:17 | call to singleton | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:325:1:329:3 | C1 | calls.rb:1:1:632:1 | calls.rb |
 | calls.rb:326:5:328:7 | instance | calls.rb:325:1:329:3 | C1 |
 | calls.rb:327:9:327:26 | call to puts | calls.rb:325:1:329:3 | C1 |
 | calls.rb:327:9:327:26 | self | calls.rb:325:1:329:3 | C1 |
 | calls.rb:327:14:327:26 | "C1#instance" | calls.rb:325:1:329:3 | C1 |
 | calls.rb:327:15:327:25 | C1#instance | calls.rb:325:1:329:3 | C1 |
-| calls.rb:331:1:335:3 | C2 | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:331:12:331:13 | C1 | calls.rb:1:1:616:32 | calls.rb |
+| calls.rb:331:1:335:3 | C2 | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:331:12:331:13 | C1 | calls.rb:1:1:632:1 | calls.rb |
 | calls.rb:332:5:334:7 | instance | calls.rb:331:1:335:3 | C2 |
 | calls.rb:333:9:333:26 | call to puts | calls.rb:331:1:335:3 | C2 |
 | calls.rb:333:9:333:26 | self | calls.rb:331:1:335:3 | C2 |
 | calls.rb:333:14:333:26 | "C2#instance" | calls.rb:331:1:335:3 | C2 |
 | calls.rb:333:15:333:25 | C2#instance | calls.rb:331:1:335:3 | C2 |
-| calls.rb:337:1:341:3 | C3 | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:337:12:337:13 | C2 | calls.rb:1:1:616:32 | calls.rb |
+| calls.rb:337:1:341:3 | C3 | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:337:12:337:13 | C2 | calls.rb:1:1:632:1 | calls.rb |
 | calls.rb:338:5:340:7 | instance | calls.rb:337:1:341:3 | C3 |
 | calls.rb:339:9:339:26 | call to puts | calls.rb:337:1:341:3 | C3 |
 | calls.rb:339:9:339:26 | self | calls.rb:337:1:341:3 | C3 |
 | calls.rb:339:14:339:26 | "C3#instance" | calls.rb:337:1:341:3 | C3 |
 | calls.rb:339:15:339:25 | C3#instance | calls.rb:337:1:341:3 | C3 |
-| calls.rb:343:1:359:3 | pattern_dispatch | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:343:22:343:22 | x | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:343:22:343:22 | x | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:344:5:352:7 | case ... | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:344:10:344:10 | x | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:345:5:346:18 | when ... | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:345:10:345:11 | C3 | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:345:12:346:18 | then ... | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:346:9:346:9 | x | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:346:9:346:18 | call to instance | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:347:5:348:18 | when ... | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:347:10:347:11 | C2 | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:347:12:348:18 | then ... | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:348:9:348:9 | x | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:348:9:348:18 | call to instance | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:349:5:350:18 | when ... | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:349:10:349:11 | C1 | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:349:12:350:18 | then ... | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:350:9:350:9 | x | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:350:9:350:18 | call to instance | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:351:5:351:8 | else ... | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:354:5:358:7 | case ... | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:354:10:354:10 | x | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:355:9:355:29 | in ... then ... | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:355:12:355:13 | C3 | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:355:15:355:29 | then ... | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:355:20:355:20 | x | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:355:20:355:29 | call to instance | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:356:9:356:36 | in ... then ... | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:356:12:356:13 | C2 | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:356:12:356:19 | ... => ... | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:356:18:356:19 | c2 | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:356:21:356:36 | then ... | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:356:26:356:27 | c2 | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:356:26:356:36 | call to instance | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:357:9:357:36 | in ... then ... | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:357:12:357:13 | C1 | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:357:12:357:19 | ... => ... | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:357:18:357:19 | c1 | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:357:21:357:36 | then ... | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:357:26:357:27 | c1 | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:357:26:357:36 | call to instance | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:361:1:361:2 | c1 | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:361:1:361:11 | ... = ... | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:361:6:361:7 | C1 | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:361:6:361:11 | call to new | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:362:1:362:2 | c1 | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:362:1:362:11 | call to instance | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:363:1:363:25 | call to pattern_dispatch | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:363:1:363:25 | self | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:363:18:363:25 | ( ... ) | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:363:19:363:20 | C1 | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:363:19:363:24 | call to new | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:364:1:364:25 | call to pattern_dispatch | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:364:1:364:25 | self | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:364:18:364:25 | ( ... ) | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:364:19:364:20 | C2 | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:364:19:364:24 | call to new | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:365:1:365:25 | call to pattern_dispatch | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:365:1:365:25 | self | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:365:18:365:25 | ( ... ) | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:365:19:365:20 | C3 | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:365:19:365:24 | call to new | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:367:1:371:3 | add_singleton | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:367:19:367:19 | x | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:367:19:367:19 | x | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:368:5:370:7 | instance | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:368:9:368:9 | x | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:369:9:369:28 | call to puts | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:369:9:369:28 | self | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:369:14:369:28 | "instance_on x" | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:369:15:369:27 | instance_on x | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:373:1:373:2 | c3 | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:373:1:373:11 | ... = ... | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:373:6:373:7 | C1 | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:373:6:373:11 | call to new | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:374:1:374:16 | call to add_singleton | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:374:1:374:16 | self | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:374:15:374:16 | c3 | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:375:1:375:2 | c3 | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:375:1:375:11 | call to instance | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:377:1:405:3 | SingletonOverride1 | calls.rb:1:1:616:32 | calls.rb |
+| calls.rb:343:1:359:3 | pattern_dispatch | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:343:22:343:22 | x | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:343:22:343:22 | x | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:344:5:352:7 | case ... | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:344:10:344:10 | x | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:345:5:346:18 | when ... | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:345:10:345:11 | C3 | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:345:12:346:18 | then ... | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:346:9:346:9 | x | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:346:9:346:18 | call to instance | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:347:5:348:18 | when ... | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:347:10:347:11 | C2 | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:347:12:348:18 | then ... | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:348:9:348:9 | x | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:348:9:348:18 | call to instance | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:349:5:350:18 | when ... | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:349:10:349:11 | C1 | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:349:12:350:18 | then ... | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:350:9:350:9 | x | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:350:9:350:18 | call to instance | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:351:5:351:8 | else ... | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:354:5:358:7 | case ... | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:354:10:354:10 | x | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:355:9:355:29 | in ... then ... | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:355:12:355:13 | C3 | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:355:15:355:29 | then ... | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:355:20:355:20 | x | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:355:20:355:29 | call to instance | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:356:9:356:36 | in ... then ... | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:356:12:356:13 | C2 | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:356:12:356:19 | ... => ... | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:356:18:356:19 | c2 | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:356:21:356:36 | then ... | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:356:26:356:27 | c2 | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:356:26:356:36 | call to instance | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:357:9:357:36 | in ... then ... | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:357:12:357:13 | C1 | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:357:12:357:19 | ... => ... | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:357:18:357:19 | c1 | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:357:21:357:36 | then ... | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:357:26:357:27 | c1 | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:357:26:357:36 | call to instance | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:361:1:361:2 | c1 | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:361:1:361:11 | ... = ... | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:361:6:361:7 | C1 | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:361:6:361:11 | call to new | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:362:1:362:2 | c1 | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:362:1:362:11 | call to instance | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:363:1:363:25 | call to pattern_dispatch | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:363:1:363:25 | self | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:363:18:363:25 | ( ... ) | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:363:19:363:20 | C1 | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:363:19:363:24 | call to new | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:364:1:364:25 | call to pattern_dispatch | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:364:1:364:25 | self | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:364:18:364:25 | ( ... ) | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:364:19:364:20 | C2 | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:364:19:364:24 | call to new | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:365:1:365:25 | call to pattern_dispatch | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:365:1:365:25 | self | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:365:18:365:25 | ( ... ) | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:365:19:365:20 | C3 | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:365:19:365:24 | call to new | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:367:1:371:3 | add_singleton | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:367:19:367:19 | x | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:367:19:367:19 | x | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:368:5:370:7 | instance | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:368:9:368:9 | x | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:369:9:369:28 | call to puts | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:369:9:369:28 | self | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:369:14:369:28 | "instance_on x" | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:369:15:369:27 | instance_on x | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:373:1:373:2 | c3 | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:373:1:373:11 | ... = ... | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:373:6:373:7 | C1 | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:373:6:373:11 | call to new | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:374:1:374:16 | call to add_singleton | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:374:1:374:16 | self | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:374:15:374:16 | c3 | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:375:1:375:2 | c3 | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:375:1:375:11 | call to instance | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:377:1:405:3 | SingletonOverride1 | calls.rb:1:1:632:1 | calls.rb |
 | calls.rb:378:5:390:7 | class << ... | calls.rb:377:1:405:3 | SingletonOverride1 |
 | calls.rb:378:14:378:17 | self | calls.rb:377:1:405:3 | SingletonOverride1 |
 | calls.rb:379:9:381:11 | singleton1 | calls.rb:378:5:390:7 | class << ... |
@@ -1157,16 +1166,16 @@ enclosingModule
 | calls.rb:403:9:403:43 | self | calls.rb:377:1:405:3 | SingletonOverride1 |
 | calls.rb:403:14:403:43 | "SingletonOverride1#instance1" | calls.rb:377:1:405:3 | SingletonOverride1 |
 | calls.rb:403:15:403:42 | SingletonOverride1#instance1 | calls.rb:377:1:405:3 | SingletonOverride1 |
-| calls.rb:407:1:407:18 | SingletonOverride1 | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:407:1:407:29 | call to singleton1 | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:408:1:408:18 | SingletonOverride1 | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:408:1:408:29 | call to singleton2 | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:409:1:409:18 | SingletonOverride1 | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:409:1:409:34 | call to call_singleton1 | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:410:1:410:18 | SingletonOverride1 | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:410:1:410:34 | call to call_singleton2 | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:412:1:426:3 | SingletonOverride2 | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:412:28:412:45 | SingletonOverride1 | calls.rb:1:1:616:32 | calls.rb |
+| calls.rb:407:1:407:18 | SingletonOverride1 | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:407:1:407:29 | call to singleton1 | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:408:1:408:18 | SingletonOverride1 | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:408:1:408:29 | call to singleton2 | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:409:1:409:18 | SingletonOverride1 | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:409:1:409:34 | call to call_singleton1 | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:410:1:410:18 | SingletonOverride1 | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:410:1:410:34 | call to call_singleton2 | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:412:1:426:3 | SingletonOverride2 | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:412:28:412:45 | SingletonOverride1 | calls.rb:1:1:632:1 | calls.rb |
 | calls.rb:413:5:417:7 | class << ... | calls.rb:412:1:426:3 | SingletonOverride2 |
 | calls.rb:413:14:413:17 | self | calls.rb:412:1:426:3 | SingletonOverride2 |
 | calls.rb:414:9:416:11 | singleton1 | calls.rb:413:5:417:7 | class << ... |
@@ -1185,15 +1194,15 @@ enclosingModule
 | calls.rb:424:9:424:43 | self | calls.rb:412:1:426:3 | SingletonOverride2 |
 | calls.rb:424:14:424:43 | "SingletonOverride2#instance1" | calls.rb:412:1:426:3 | SingletonOverride2 |
 | calls.rb:424:15:424:42 | SingletonOverride2#instance1 | calls.rb:412:1:426:3 | SingletonOverride2 |
-| calls.rb:428:1:428:18 | SingletonOverride2 | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:428:1:428:29 | call to singleton1 | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:429:1:429:18 | SingletonOverride2 | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:429:1:429:29 | call to singleton2 | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:430:1:430:18 | SingletonOverride2 | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:430:1:430:34 | call to call_singleton1 | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:431:1:431:18 | SingletonOverride2 | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:431:1:431:34 | call to call_singleton2 | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:433:1:461:3 | ConditionalInstanceMethods | calls.rb:1:1:616:32 | calls.rb |
+| calls.rb:428:1:428:18 | SingletonOverride2 | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:428:1:428:29 | call to singleton1 | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:429:1:429:18 | SingletonOverride2 | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:429:1:429:29 | call to singleton2 | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:430:1:430:18 | SingletonOverride2 | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:430:1:430:34 | call to call_singleton1 | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:431:1:431:18 | SingletonOverride2 | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:431:1:431:34 | call to call_singleton2 | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:433:1:461:3 | ConditionalInstanceMethods | calls.rb:1:1:632:1 | calls.rb |
 | calls.rb:434:5:438:7 | if ... | calls.rb:433:1:461:3 | ConditionalInstanceMethods |
 | calls.rb:434:8:434:13 | call to rand | calls.rb:433:1:461:3 | ConditionalInstanceMethods |
 | calls.rb:434:8:434:13 | self | calls.rb:433:1:461:3 | ConditionalInstanceMethods |
@@ -1238,91 +1247,91 @@ enclosingModule
 | calls.rb:457:17:457:40 | self | calls.rb:433:1:461:3 | ConditionalInstanceMethods |
 | calls.rb:457:22:457:40 | "AnonymousClass#m5" | calls.rb:433:1:461:3 | ConditionalInstanceMethods |
 | calls.rb:457:23:457:39 | AnonymousClass#m5 | calls.rb:433:1:461:3 | ConditionalInstanceMethods |
-| calls.rb:463:1:463:26 | ConditionalInstanceMethods | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:463:1:463:30 | call to new | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:463:1:463:33 | call to m1 | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:464:1:464:26 | ConditionalInstanceMethods | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:464:1:464:30 | call to new | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:464:1:464:33 | call to m3 | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:465:1:465:26 | ConditionalInstanceMethods | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:465:1:465:30 | call to new | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:465:1:465:33 | call to m2 | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:466:1:466:26 | ConditionalInstanceMethods | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:466:1:466:30 | call to new | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:466:1:466:33 | call to m3 | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:467:1:467:26 | ConditionalInstanceMethods | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:467:1:467:30 | call to new | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:467:1:467:33 | call to m4 | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:468:1:468:26 | ConditionalInstanceMethods | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:468:1:468:30 | call to new | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:468:1:468:33 | call to m5 | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:470:1:470:23 | EsotericInstanceMethods | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:470:1:488:3 | ... = ... | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:470:27:470:31 | Class | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:470:27:488:3 | call to new | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:470:37:488:3 | do ... end | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:471:5:471:11 | Array | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:471:5:471:11 | [...] | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:471:5:471:11 | call to [] | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:471:5:475:7 | call to each | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:471:6:471:6 | 0 | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:471:8:471:8 | 1 | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:471:10:471:10 | 2 | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:471:18:475:7 | do ... end | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:472:9:474:11 | foo | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:473:13:473:22 | call to puts | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:473:13:473:22 | self | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:473:18:473:22 | "foo" | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:473:19:473:21 | foo | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:477:5:477:9 | Class | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:477:5:481:7 | call to new | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:477:5:481:11 | call to new | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:477:5:481:15 | call to bar | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:477:15:481:7 | do ... end | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:478:9:480:11 | bar | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:479:13:479:22 | call to puts | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:479:13:479:22 | self | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:479:18:479:22 | "bar" | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:479:19:479:21 | bar | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:483:5:483:11 | Array | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:483:5:483:11 | [...] | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:483:5:483:11 | call to [] | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:483:5:487:7 | call to each | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:483:6:483:6 | 0 | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:483:8:483:8 | 1 | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:483:10:483:10 | 2 | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:483:18:487:7 | do ... end | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:483:22:483:22 | i | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:483:22:483:22 | i | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:484:9:486:11 | call to define_method | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:484:9:486:11 | self | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:484:23:484:32 | "baz_#{...}" | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:484:24:484:27 | baz_ | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:484:28:484:31 | #{...} | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:484:30:484:30 | i | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:484:35:486:11 | do ... end | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:485:13:485:27 | call to puts | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:485:13:485:27 | self | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:485:18:485:27 | "baz_#{...}" | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:485:19:485:22 | baz_ | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:485:23:485:26 | #{...} | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:485:25:485:25 | i | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:490:1:490:23 | EsotericInstanceMethods | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:490:1:490:27 | call to new | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:490:1:490:31 | call to foo | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:491:1:491:23 | EsotericInstanceMethods | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:491:1:491:27 | call to new | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:491:1:491:31 | call to bar | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:492:1:492:23 | EsotericInstanceMethods | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:492:1:492:27 | call to new | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:492:1:492:33 | call to baz_0 | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:493:1:493:23 | EsotericInstanceMethods | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:493:1:493:27 | call to new | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:493:1:493:33 | call to baz_1 | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:494:1:494:23 | EsotericInstanceMethods | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:494:1:494:27 | call to new | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:494:1:494:33 | call to baz_2 | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:496:1:502:3 | ExtendSingletonMethod | calls.rb:1:1:616:32 | calls.rb |
+| calls.rb:463:1:463:26 | ConditionalInstanceMethods | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:463:1:463:30 | call to new | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:463:1:463:33 | call to m1 | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:464:1:464:26 | ConditionalInstanceMethods | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:464:1:464:30 | call to new | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:464:1:464:33 | call to m3 | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:465:1:465:26 | ConditionalInstanceMethods | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:465:1:465:30 | call to new | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:465:1:465:33 | call to m2 | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:466:1:466:26 | ConditionalInstanceMethods | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:466:1:466:30 | call to new | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:466:1:466:33 | call to m3 | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:467:1:467:26 | ConditionalInstanceMethods | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:467:1:467:30 | call to new | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:467:1:467:33 | call to m4 | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:468:1:468:26 | ConditionalInstanceMethods | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:468:1:468:30 | call to new | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:468:1:468:33 | call to m5 | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:470:1:470:23 | EsotericInstanceMethods | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:470:1:488:3 | ... = ... | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:470:27:470:31 | Class | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:470:27:488:3 | call to new | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:470:37:488:3 | do ... end | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:471:5:471:11 | Array | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:471:5:471:11 | [...] | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:471:5:471:11 | call to [] | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:471:5:475:7 | call to each | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:471:6:471:6 | 0 | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:471:8:471:8 | 1 | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:471:10:471:10 | 2 | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:471:18:475:7 | do ... end | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:472:9:474:11 | foo | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:473:13:473:22 | call to puts | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:473:13:473:22 | self | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:473:18:473:22 | "foo" | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:473:19:473:21 | foo | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:477:5:477:9 | Class | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:477:5:481:7 | call to new | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:477:5:481:11 | call to new | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:477:5:481:15 | call to bar | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:477:15:481:7 | do ... end | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:478:9:480:11 | bar | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:479:13:479:22 | call to puts | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:479:13:479:22 | self | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:479:18:479:22 | "bar" | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:479:19:479:21 | bar | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:483:5:483:11 | Array | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:483:5:483:11 | [...] | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:483:5:483:11 | call to [] | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:483:5:487:7 | call to each | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:483:6:483:6 | 0 | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:483:8:483:8 | 1 | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:483:10:483:10 | 2 | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:483:18:487:7 | do ... end | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:483:22:483:22 | i | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:483:22:483:22 | i | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:484:9:486:11 | call to define_method | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:484:9:486:11 | self | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:484:23:484:32 | "baz_#{...}" | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:484:24:484:27 | baz_ | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:484:28:484:31 | #{...} | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:484:30:484:30 | i | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:484:35:486:11 | do ... end | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:485:13:485:27 | call to puts | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:485:13:485:27 | self | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:485:18:485:27 | "baz_#{...}" | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:485:19:485:22 | baz_ | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:485:23:485:26 | #{...} | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:485:25:485:25 | i | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:490:1:490:23 | EsotericInstanceMethods | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:490:1:490:27 | call to new | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:490:1:490:31 | call to foo | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:491:1:491:23 | EsotericInstanceMethods | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:491:1:491:27 | call to new | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:491:1:491:31 | call to bar | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:492:1:492:23 | EsotericInstanceMethods | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:492:1:492:27 | call to new | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:492:1:492:33 | call to baz_0 | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:493:1:493:23 | EsotericInstanceMethods | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:493:1:493:27 | call to new | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:493:1:493:33 | call to baz_1 | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:494:1:494:23 | EsotericInstanceMethods | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:494:1:494:27 | call to new | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:494:1:494:33 | call to baz_2 | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:496:1:502:3 | ExtendSingletonMethod | calls.rb:1:1:632:1 | calls.rb |
 | calls.rb:497:5:499:7 | singleton | calls.rb:496:1:502:3 | ExtendSingletonMethod |
 | calls.rb:498:9:498:46 | call to puts | calls.rb:496:1:502:3 | ExtendSingletonMethod |
 | calls.rb:498:9:498:46 | self | calls.rb:496:1:502:3 | ExtendSingletonMethod |
@@ -1331,32 +1340,32 @@ enclosingModule
 | calls.rb:501:5:501:15 | call to extend | calls.rb:496:1:502:3 | ExtendSingletonMethod |
 | calls.rb:501:5:501:15 | self | calls.rb:496:1:502:3 | ExtendSingletonMethod |
 | calls.rb:501:12:501:15 | self | calls.rb:496:1:502:3 | ExtendSingletonMethod |
-| calls.rb:504:1:504:21 | ExtendSingletonMethod | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:504:1:504:31 | call to singleton | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:506:1:508:3 | ExtendSingletonMethod2 | calls.rb:1:1:616:32 | calls.rb |
+| calls.rb:504:1:504:21 | ExtendSingletonMethod | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:504:1:504:31 | call to singleton | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:506:1:508:3 | ExtendSingletonMethod2 | calls.rb:1:1:632:1 | calls.rb |
 | calls.rb:507:5:507:32 | call to extend | calls.rb:506:1:508:3 | ExtendSingletonMethod2 |
 | calls.rb:507:5:507:32 | self | calls.rb:506:1:508:3 | ExtendSingletonMethod2 |
 | calls.rb:507:12:507:32 | ExtendSingletonMethod | calls.rb:506:1:508:3 | ExtendSingletonMethod2 |
-| calls.rb:510:1:510:22 | ExtendSingletonMethod2 | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:510:1:510:32 | call to singleton | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:512:1:513:3 | ExtendSingletonMethod3 | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:515:1:515:22 | ExtendSingletonMethod3 | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:515:1:515:51 | call to extend | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:515:31:515:51 | ExtendSingletonMethod | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:517:1:517:22 | ExtendSingletonMethod3 | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:517:1:517:32 | call to singleton | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:519:1:519:3 | foo | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:519:1:519:13 | ... = ... | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:519:7:519:13 | "hello" | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:519:8:519:12 | hello | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:520:1:520:3 | foo | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:520:1:520:13 | call to singleton | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:521:1:521:3 | foo | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:521:1:521:32 | call to extend | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:521:12:521:32 | ExtendSingletonMethod | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:523:1:523:3 | foo | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:523:1:523:13 | call to singleton | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:525:1:529:3 | ProtectedMethodInModule | calls.rb:1:1:616:32 | calls.rb |
+| calls.rb:510:1:510:22 | ExtendSingletonMethod2 | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:510:1:510:32 | call to singleton | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:512:1:513:3 | ExtendSingletonMethod3 | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:515:1:515:22 | ExtendSingletonMethod3 | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:515:1:515:51 | call to extend | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:515:31:515:51 | ExtendSingletonMethod | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:517:1:517:22 | ExtendSingletonMethod3 | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:517:1:517:32 | call to singleton | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:519:1:519:3 | foo | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:519:1:519:13 | ... = ... | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:519:7:519:13 | "hello" | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:519:8:519:12 | hello | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:520:1:520:3 | foo | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:520:1:520:13 | call to singleton | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:521:1:521:3 | foo | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:521:1:521:32 | call to extend | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:521:12:521:32 | ExtendSingletonMethod | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:523:1:523:3 | foo | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:523:1:523:13 | call to singleton | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:525:1:529:3 | ProtectedMethodInModule | calls.rb:1:1:632:1 | calls.rb |
 | calls.rb:526:5:528:7 | call to protected | calls.rb:525:1:529:3 | ProtectedMethodInModule |
 | calls.rb:526:5:528:7 | self | calls.rb:525:1:529:3 | ProtectedMethodInModule |
 | calls.rb:526:15:528:7 | foo | calls.rb:525:1:529:3 | ProtectedMethodInModule |
@@ -1364,7 +1373,7 @@ enclosingModule
 | calls.rb:527:9:527:42 | self | calls.rb:525:1:529:3 | ProtectedMethodInModule |
 | calls.rb:527:14:527:42 | "ProtectedMethodInModule#foo" | calls.rb:525:1:529:3 | ProtectedMethodInModule |
 | calls.rb:527:15:527:41 | ProtectedMethodInModule#foo | calls.rb:525:1:529:3 | ProtectedMethodInModule |
-| calls.rb:531:1:544:3 | ProtectedMethods | calls.rb:1:1:616:32 | calls.rb |
+| calls.rb:531:1:544:3 | ProtectedMethods | calls.rb:1:1:632:1 | calls.rb |
 | calls.rb:532:5:532:35 | call to include | calls.rb:531:1:544:3 | ProtectedMethods |
 | calls.rb:532:5:532:35 | self | calls.rb:531:1:544:3 | ProtectedMethods |
 | calls.rb:532:13:532:35 | ProtectedMethodInModule | calls.rb:531:1:544:3 | ProtectedMethods |
@@ -1386,63 +1395,63 @@ enclosingModule
 | calls.rb:542:9:542:24 | ProtectedMethods | calls.rb:531:1:544:3 | ProtectedMethods |
 | calls.rb:542:9:542:28 | call to new | calls.rb:531:1:544:3 | ProtectedMethods |
 | calls.rb:542:9:542:32 | call to bar | calls.rb:531:1:544:3 | ProtectedMethods |
-| calls.rb:546:1:546:16 | ProtectedMethods | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:546:1:546:20 | call to new | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:546:1:546:24 | call to foo | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:547:1:547:16 | ProtectedMethods | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:547:1:547:20 | call to new | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:547:1:547:24 | call to bar | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:548:1:548:16 | ProtectedMethods | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:548:1:548:20 | call to new | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:548:1:548:24 | call to baz | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:550:1:555:3 | ProtectedMethodsSub | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:550:29:550:44 | ProtectedMethods | calls.rb:1:1:616:32 | calls.rb |
+| calls.rb:546:1:546:16 | ProtectedMethods | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:546:1:546:20 | call to new | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:546:1:546:24 | call to foo | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:547:1:547:16 | ProtectedMethods | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:547:1:547:20 | call to new | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:547:1:547:24 | call to bar | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:548:1:548:16 | ProtectedMethods | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:548:1:548:20 | call to new | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:548:1:548:24 | call to baz | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:550:1:555:3 | ProtectedMethodsSub | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:550:29:550:44 | ProtectedMethods | calls.rb:1:1:632:1 | calls.rb |
 | calls.rb:551:5:554:7 | baz | calls.rb:550:1:555:3 | ProtectedMethodsSub |
 | calls.rb:552:9:552:11 | call to foo | calls.rb:550:1:555:3 | ProtectedMethodsSub |
 | calls.rb:552:9:552:11 | self | calls.rb:550:1:555:3 | ProtectedMethodsSub |
 | calls.rb:553:9:553:27 | ProtectedMethodsSub | calls.rb:550:1:555:3 | ProtectedMethodsSub |
 | calls.rb:553:9:553:31 | call to new | calls.rb:550:1:555:3 | ProtectedMethodsSub |
 | calls.rb:553:9:553:35 | call to foo | calls.rb:550:1:555:3 | ProtectedMethodsSub |
-| calls.rb:557:1:557:19 | ProtectedMethodsSub | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:557:1:557:23 | call to new | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:557:1:557:27 | call to foo | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:558:1:558:19 | ProtectedMethodsSub | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:558:1:558:23 | call to new | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:558:1:558:27 | call to bar | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:559:1:559:19 | ProtectedMethodsSub | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:559:1:559:23 | call to new | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:559:1:559:27 | call to baz | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:561:1:561:7 | Array | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:561:1:561:7 | [...] | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:561:1:561:7 | call to [] | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:561:1:561:26 | call to each | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:561:2:561:2 | C | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:561:2:561:6 | call to new | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:561:14:561:26 | { ... } | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:561:17:561:17 | c | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:561:17:561:17 | c | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:561:20:561:20 | c | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:561:20:561:24 | call to baz | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:562:1:562:13 | Array | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:562:1:562:13 | [...] | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:562:1:562:13 | call to [] | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:562:1:562:39 | call to each | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:562:2:562:4 | "a" | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:562:3:562:3 | a | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:562:6:562:8 | "b" | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:562:7:562:7 | b | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:562:10:562:12 | "c" | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:562:11:562:11 | c | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:562:20:562:39 | { ... } | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:562:23:562:23 | s | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:562:23:562:23 | s | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:562:26:562:26 | s | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:562:26:562:37 | call to capitalize | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:564:1:567:3 | SingletonUpCall_Base | calls.rb:1:1:616:32 | calls.rb |
+| calls.rb:557:1:557:19 | ProtectedMethodsSub | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:557:1:557:23 | call to new | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:557:1:557:27 | call to foo | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:558:1:558:19 | ProtectedMethodsSub | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:558:1:558:23 | call to new | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:558:1:558:27 | call to bar | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:559:1:559:19 | ProtectedMethodsSub | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:559:1:559:23 | call to new | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:559:1:559:27 | call to baz | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:561:1:561:7 | Array | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:561:1:561:7 | [...] | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:561:1:561:7 | call to [] | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:561:1:561:26 | call to each | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:561:2:561:2 | C | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:561:2:561:6 | call to new | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:561:14:561:26 | { ... } | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:561:17:561:17 | c | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:561:17:561:17 | c | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:561:20:561:20 | c | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:561:20:561:24 | call to baz | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:562:1:562:13 | Array | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:562:1:562:13 | [...] | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:562:1:562:13 | call to [] | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:562:1:562:39 | call to each | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:562:2:562:4 | "a" | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:562:3:562:3 | a | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:562:6:562:8 | "b" | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:562:7:562:7 | b | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:562:10:562:12 | "c" | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:562:11:562:11 | c | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:562:20:562:39 | { ... } | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:562:23:562:23 | s | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:562:23:562:23 | s | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:562:26:562:26 | s | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:562:26:562:37 | call to capitalize | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:564:1:567:3 | SingletonUpCall_Base | calls.rb:1:1:632:1 | calls.rb |
 | calls.rb:565:5:566:7 | singleton | calls.rb:564:1:567:3 | SingletonUpCall_Base |
 | calls.rb:565:9:565:12 | self | calls.rb:564:1:567:3 | SingletonUpCall_Base |
-| calls.rb:568:1:575:3 | SingletonUpCall_Sub | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:568:29:568:48 | SingletonUpCall_Base | calls.rb:1:1:616:32 | calls.rb |
+| calls.rb:568:1:575:3 | SingletonUpCall_Sub | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:568:29:568:48 | SingletonUpCall_Base | calls.rb:1:1:632:1 | calls.rb |
 | calls.rb:569:5:569:13 | call to singleton | calls.rb:568:1:575:3 | SingletonUpCall_Sub |
 | calls.rb:569:5:569:13 | self | calls.rb:568:1:575:3 | SingletonUpCall_Sub |
 | calls.rb:570:5:570:14 | call to singleton2 | calls.rb:568:1:575:3 | SingletonUpCall_Sub |
@@ -1453,13 +1462,13 @@ enclosingModule
 | calls.rb:572:9:572:17 | self | calls.rb:568:1:575:3 | SingletonUpCall_Sub |
 | calls.rb:573:9:573:18 | call to singleton2 | calls.rb:568:1:575:3 | SingletonUpCall_Sub |
 | calls.rb:573:9:573:18 | self | calls.rb:568:1:575:3 | SingletonUpCall_Sub |
-| calls.rb:576:1:581:3 | SingletonUpCall_SubSub | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:576:32:576:50 | SingletonUpCall_Sub | calls.rb:1:1:616:32 | calls.rb |
+| calls.rb:576:1:581:3 | SingletonUpCall_SubSub | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:576:32:576:50 | SingletonUpCall_Sub | calls.rb:1:1:632:1 | calls.rb |
 | calls.rb:577:5:578:7 | singleton2 | calls.rb:576:1:581:3 | SingletonUpCall_SubSub |
 | calls.rb:577:9:577:12 | self | calls.rb:576:1:581:3 | SingletonUpCall_SubSub |
 | calls.rb:580:5:580:14 | call to mid_method | calls.rb:576:1:581:3 | SingletonUpCall_SubSub |
 | calls.rb:580:5:580:14 | self | calls.rb:576:1:581:3 | SingletonUpCall_SubSub |
-| calls.rb:583:1:594:3 | SingletonA | calls.rb:1:1:616:32 | calls.rb |
+| calls.rb:583:1:594:3 | SingletonA | calls.rb:1:1:632:1 | calls.rb |
 | calls.rb:584:5:585:7 | singleton1 | calls.rb:583:1:594:3 | SingletonA |
 | calls.rb:584:9:584:12 | self | calls.rb:583:1:594:3 | SingletonA |
 | calls.rb:587:5:589:7 | call_singleton1 | calls.rb:583:1:594:3 | SingletonA |
@@ -1470,28 +1479,39 @@ enclosingModule
 | calls.rb:591:9:591:12 | self | calls.rb:583:1:594:3 | SingletonA |
 | calls.rb:592:9:592:23 | call to call_singleton1 | calls.rb:583:1:594:3 | SingletonA |
 | calls.rb:592:9:592:23 | self | calls.rb:583:1:594:3 | SingletonA |
-| calls.rb:596:1:603:3 | SingletonB | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:596:20:596:29 | SingletonA | calls.rb:1:1:616:32 | calls.rb |
+| calls.rb:596:1:603:3 | SingletonB | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:596:20:596:29 | SingletonA | calls.rb:1:1:632:1 | calls.rb |
 | calls.rb:597:5:598:7 | singleton1 | calls.rb:596:1:603:3 | SingletonB |
 | calls.rb:597:9:597:12 | self | calls.rb:596:1:603:3 | SingletonB |
 | calls.rb:600:5:602:7 | call_singleton1 | calls.rb:596:1:603:3 | SingletonB |
 | calls.rb:600:9:600:12 | self | calls.rb:596:1:603:3 | SingletonB |
 | calls.rb:601:9:601:18 | call to singleton1 | calls.rb:596:1:603:3 | SingletonB |
 | calls.rb:601:9:601:18 | self | calls.rb:596:1:603:3 | SingletonB |
-| calls.rb:605:1:612:3 | SingletonC | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:605:20:605:29 | SingletonA | calls.rb:1:1:616:32 | calls.rb |
+| calls.rb:605:1:612:3 | SingletonC | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:605:20:605:29 | SingletonA | calls.rb:1:1:632:1 | calls.rb |
 | calls.rb:606:5:607:7 | singleton1 | calls.rb:605:1:612:3 | SingletonC |
 | calls.rb:606:9:606:12 | self | calls.rb:605:1:612:3 | SingletonC |
 | calls.rb:609:5:611:7 | call_singleton1 | calls.rb:605:1:612:3 | SingletonC |
 | calls.rb:609:9:609:12 | self | calls.rb:605:1:612:3 | SingletonC |
 | calls.rb:610:9:610:18 | call to singleton1 | calls.rb:605:1:612:3 | SingletonC |
 | calls.rb:610:9:610:18 | self | calls.rb:605:1:612:3 | SingletonC |
-| calls.rb:614:1:614:10 | SingletonA | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:614:1:614:31 | call to call_call_singleton1 | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:615:1:615:10 | SingletonB | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:615:1:615:31 | call to call_call_singleton1 | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:616:1:616:10 | SingletonC | calls.rb:1:1:616:32 | calls.rb |
-| calls.rb:616:1:616:31 | call to call_call_singleton1 | calls.rb:1:1:616:32 | calls.rb |
+| calls.rb:614:1:614:10 | SingletonA | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:614:1:614:31 | call to call_call_singleton1 | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:615:1:615:10 | SingletonB | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:615:1:615:31 | call to call_call_singleton1 | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:616:1:616:10 | SingletonC | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:616:1:616:31 | call to call_call_singleton1 | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:618:1:624:3 | Included | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:619:5:621:7 | foo | calls.rb:618:1:624:3 | Included |
+| calls.rb:620:9:620:12 | self | calls.rb:618:1:624:3 | Included |
+| calls.rb:620:9:620:16 | call to bar | calls.rb:618:1:624:3 | Included |
+| calls.rb:622:5:623:7 | bar | calls.rb:618:1:624:3 | Included |
+| calls.rb:626:1:631:3 | IncludesIncluded | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:627:5:627:20 | call to include | calls.rb:626:1:631:3 | IncludesIncluded |
+| calls.rb:627:5:627:20 | self | calls.rb:626:1:631:3 | IncludesIncluded |
+| calls.rb:627:13:627:20 | Included | calls.rb:626:1:631:3 | IncludesIncluded |
+| calls.rb:628:5:630:7 | bar | calls.rb:626:1:631:3 | IncludesIncluded |
+| calls.rb:629:9:629:13 | call to super | calls.rb:626:1:631:3 | IncludesIncluded |
 | hello.rb:1:1:8:3 | EnglishWords | hello.rb:1:1:22:3 | hello.rb |
 | hello.rb:2:5:4:7 | hello | hello.rb:1:1:8:3 | EnglishWords |
 | hello.rb:3:9:3:22 | return | hello.rb:1:1:8:3 | EnglishWords |
diff --git a/ruby/ql/test/library-tests/modules/superclasses.expected b/ruby/ql/test/library-tests/modules/superclasses.expected
index 24907e7d81b..58df295f95f 100644
--- a/ruby/ql/test/library-tests/modules/superclasses.expected
+++ b/ruby/ql/test/library-tests/modules/superclasses.expected
@@ -131,6 +131,11 @@ calls.rb:
 #  605| SingletonC
 #-----|  -> SingletonA
 
+#  618| Included
+
+#  626| IncludesIncluded
+#-----|  -> Object
+
 hello.rb:
 #    1| EnglishWords
 

From 0dadf0bbb4254ddcaa41ddb9b780b553a21c1ad3 Mon Sep 17 00:00:00 2001
From: Nick Rolfe <nickrolfe@github.com>
Date: Fri, 11 Nov 2022 17:16:24 +0000
Subject: [PATCH 0217/1420] Ruby: add flow summary for Enumerable#index_by

---
 .../codeql/ruby/frameworks/ActiveSupport.qll  | 12 +++-
 .../ActiveSupportDataFlow.expected            | 63 +++++++++++++++++++
 .../active_support/hash_extensions.rb         | 13 ++++
 3 files changed, 87 insertions(+), 1 deletion(-)

diff --git a/ruby/ql/lib/codeql/ruby/frameworks/ActiveSupport.qll b/ruby/ql/lib/codeql/ruby/frameworks/ActiveSupport.qll
index 47742531e30..7d3286a0a74 100644
--- a/ruby/ql/lib/codeql/ruby/frameworks/ActiveSupport.qll
+++ b/ruby/ql/lib/codeql/ruby/frameworks/ActiveSupport.qll
@@ -284,7 +284,17 @@ module ActiveSupport {
           preservesValue = true
         }
       }
-      // TODO: index_by, index_with, pick, pluck (they require Hash dataflow)
+
+      private class IndexBySummary extends SimpleSummarizedCallable {
+        IndexBySummary() { this = "index_by" }
+
+        override predicate propagatesFlowExt(string input, string output, boolean preservesValue) {
+          input = "Argument[self].Element[any]" and
+          output = ["Argument[block].Parameter[0]", "ReturnValue.Element[?]"] and
+          preservesValue = true
+        }
+      }
+      // TODO: index_with, pick, pluck (they require Hash dataflow)
     }
   }
 
diff --git a/ruby/ql/test/library-tests/frameworks/active_support/ActiveSupportDataFlow.expected b/ruby/ql/test/library-tests/frameworks/active_support/ActiveSupportDataFlow.expected
index 0df4f1235f8..11b6b46ee3e 100644
--- a/ruby/ql/test/library-tests/frameworks/active_support/ActiveSupportDataFlow.expected
+++ b/ruby/ql/test/library-tests/frameworks/active_support/ActiveSupportDataFlow.expected
@@ -258,6 +258,34 @@ edges
 | hash_extensions.rb:58:10:58:10 | x [element :a] :  | hash_extensions.rb:58:10:58:14 | ...[...] |
 | hash_extensions.rb:59:10:59:10 | x [element :b] :  | hash_extensions.rb:59:10:59:14 | ...[...] |
 | hash_extensions.rb:59:10:59:10 | x [element :b] :  | hash_extensions.rb:59:10:59:14 | ...[...] |
+| hash_extensions.rb:67:15:67:25 | call to source :  | hash_extensions.rb:68:9:68:14 | values [element 0] :  |
+| hash_extensions.rb:67:15:67:25 | call to source :  | hash_extensions.rb:68:9:68:14 | values [element 0] :  |
+| hash_extensions.rb:67:28:67:38 | call to source :  | hash_extensions.rb:68:9:68:14 | values [element 1] :  |
+| hash_extensions.rb:67:28:67:38 | call to source :  | hash_extensions.rb:68:9:68:14 | values [element 1] :  |
+| hash_extensions.rb:67:41:67:51 | call to source :  | hash_extensions.rb:68:9:68:14 | values [element 2] :  |
+| hash_extensions.rb:67:41:67:51 | call to source :  | hash_extensions.rb:68:9:68:14 | values [element 2] :  |
+| hash_extensions.rb:68:9:68:14 | values [element 0] :  | hash_extensions.rb:68:9:71:7 | call to index_by [element] :  |
+| hash_extensions.rb:68:9:68:14 | values [element 0] :  | hash_extensions.rb:68:9:71:7 | call to index_by [element] :  |
+| hash_extensions.rb:68:9:68:14 | values [element 0] :  | hash_extensions.rb:68:29:68:33 | value :  |
+| hash_extensions.rb:68:9:68:14 | values [element 0] :  | hash_extensions.rb:68:29:68:33 | value :  |
+| hash_extensions.rb:68:9:68:14 | values [element 1] :  | hash_extensions.rb:68:9:71:7 | call to index_by [element] :  |
+| hash_extensions.rb:68:9:68:14 | values [element 1] :  | hash_extensions.rb:68:9:71:7 | call to index_by [element] :  |
+| hash_extensions.rb:68:9:68:14 | values [element 1] :  | hash_extensions.rb:68:29:68:33 | value :  |
+| hash_extensions.rb:68:9:68:14 | values [element 1] :  | hash_extensions.rb:68:29:68:33 | value :  |
+| hash_extensions.rb:68:9:68:14 | values [element 2] :  | hash_extensions.rb:68:9:71:7 | call to index_by [element] :  |
+| hash_extensions.rb:68:9:68:14 | values [element 2] :  | hash_extensions.rb:68:9:71:7 | call to index_by [element] :  |
+| hash_extensions.rb:68:9:68:14 | values [element 2] :  | hash_extensions.rb:68:29:68:33 | value :  |
+| hash_extensions.rb:68:9:68:14 | values [element 2] :  | hash_extensions.rb:68:29:68:33 | value :  |
+| hash_extensions.rb:68:9:71:7 | call to index_by [element] :  | hash_extensions.rb:73:10:73:10 | h [element] :  |
+| hash_extensions.rb:68:9:71:7 | call to index_by [element] :  | hash_extensions.rb:73:10:73:10 | h [element] :  |
+| hash_extensions.rb:68:9:71:7 | call to index_by [element] :  | hash_extensions.rb:74:10:74:10 | h [element] :  |
+| hash_extensions.rb:68:9:71:7 | call to index_by [element] :  | hash_extensions.rb:74:10:74:10 | h [element] :  |
+| hash_extensions.rb:68:29:68:33 | value :  | hash_extensions.rb:69:14:69:18 | value |
+| hash_extensions.rb:68:29:68:33 | value :  | hash_extensions.rb:69:14:69:18 | value |
+| hash_extensions.rb:73:10:73:10 | h [element] :  | hash_extensions.rb:73:10:73:16 | ...[...] |
+| hash_extensions.rb:73:10:73:10 | h [element] :  | hash_extensions.rb:73:10:73:16 | ...[...] |
+| hash_extensions.rb:74:10:74:10 | h [element] :  | hash_extensions.rb:74:10:74:16 | ...[...] |
+| hash_extensions.rb:74:10:74:10 | h [element] :  | hash_extensions.rb:74:10:74:16 | ...[...] |
 nodes
 | active_support.rb:10:9:10:18 | call to source :  | semmle.label | call to source :  |
 | active_support.rb:11:10:11:10 | x :  | semmle.label | x :  |
@@ -594,6 +622,32 @@ nodes
 | hash_extensions.rb:59:10:59:10 | x [element :b] :  | semmle.label | x [element :b] :  |
 | hash_extensions.rb:59:10:59:14 | ...[...] | semmle.label | ...[...] |
 | hash_extensions.rb:59:10:59:14 | ...[...] | semmle.label | ...[...] |
+| hash_extensions.rb:67:15:67:25 | call to source :  | semmle.label | call to source :  |
+| hash_extensions.rb:67:15:67:25 | call to source :  | semmle.label | call to source :  |
+| hash_extensions.rb:67:28:67:38 | call to source :  | semmle.label | call to source :  |
+| hash_extensions.rb:67:28:67:38 | call to source :  | semmle.label | call to source :  |
+| hash_extensions.rb:67:41:67:51 | call to source :  | semmle.label | call to source :  |
+| hash_extensions.rb:67:41:67:51 | call to source :  | semmle.label | call to source :  |
+| hash_extensions.rb:68:9:68:14 | values [element 0] :  | semmle.label | values [element 0] :  |
+| hash_extensions.rb:68:9:68:14 | values [element 0] :  | semmle.label | values [element 0] :  |
+| hash_extensions.rb:68:9:68:14 | values [element 1] :  | semmle.label | values [element 1] :  |
+| hash_extensions.rb:68:9:68:14 | values [element 1] :  | semmle.label | values [element 1] :  |
+| hash_extensions.rb:68:9:68:14 | values [element 2] :  | semmle.label | values [element 2] :  |
+| hash_extensions.rb:68:9:68:14 | values [element 2] :  | semmle.label | values [element 2] :  |
+| hash_extensions.rb:68:9:71:7 | call to index_by [element] :  | semmle.label | call to index_by [element] :  |
+| hash_extensions.rb:68:9:71:7 | call to index_by [element] :  | semmle.label | call to index_by [element] :  |
+| hash_extensions.rb:68:29:68:33 | value :  | semmle.label | value :  |
+| hash_extensions.rb:68:29:68:33 | value :  | semmle.label | value :  |
+| hash_extensions.rb:69:14:69:18 | value | semmle.label | value |
+| hash_extensions.rb:69:14:69:18 | value | semmle.label | value |
+| hash_extensions.rb:73:10:73:10 | h [element] :  | semmle.label | h [element] :  |
+| hash_extensions.rb:73:10:73:10 | h [element] :  | semmle.label | h [element] :  |
+| hash_extensions.rb:73:10:73:16 | ...[...] | semmle.label | ...[...] |
+| hash_extensions.rb:73:10:73:16 | ...[...] | semmle.label | ...[...] |
+| hash_extensions.rb:74:10:74:10 | h [element] :  | semmle.label | h [element] :  |
+| hash_extensions.rb:74:10:74:10 | h [element] :  | semmle.label | h [element] :  |
+| hash_extensions.rb:74:10:74:16 | ...[...] | semmle.label | ...[...] |
+| hash_extensions.rb:74:10:74:16 | ...[...] | semmle.label | ...[...] |
 subpaths
 #select
 | active_support.rb:182:10:182:13 | ...[...] | active_support.rb:180:10:180:17 | call to source :  | active_support.rb:182:10:182:13 | ...[...] | $@ | active_support.rb:180:10:180:17 | call to source :  | call to source :  |
@@ -622,3 +676,12 @@ subpaths
 | hash_extensions.rb:56:10:56:14 | ...[...] | hash_extensions.rb:50:52:50:61 | call to taint :  | hash_extensions.rb:56:10:56:14 | ...[...] | $@ | hash_extensions.rb:50:52:50:61 | call to taint :  | call to taint :  |
 | hash_extensions.rb:58:10:58:14 | ...[...] | hash_extensions.rb:50:14:50:23 | call to taint :  | hash_extensions.rb:58:10:58:14 | ...[...] | $@ | hash_extensions.rb:50:14:50:23 | call to taint :  | call to taint :  |
 | hash_extensions.rb:59:10:59:14 | ...[...] | hash_extensions.rb:50:29:50:38 | call to taint :  | hash_extensions.rb:59:10:59:14 | ...[...] | $@ | hash_extensions.rb:50:29:50:38 | call to taint :  | call to taint :  |
+| hash_extensions.rb:69:14:69:18 | value | hash_extensions.rb:67:15:67:25 | call to source :  | hash_extensions.rb:69:14:69:18 | value | $@ | hash_extensions.rb:67:15:67:25 | call to source :  | call to source :  |
+| hash_extensions.rb:69:14:69:18 | value | hash_extensions.rb:67:28:67:38 | call to source :  | hash_extensions.rb:69:14:69:18 | value | $@ | hash_extensions.rb:67:28:67:38 | call to source :  | call to source :  |
+| hash_extensions.rb:69:14:69:18 | value | hash_extensions.rb:67:41:67:51 | call to source :  | hash_extensions.rb:69:14:69:18 | value | $@ | hash_extensions.rb:67:41:67:51 | call to source :  | call to source :  |
+| hash_extensions.rb:73:10:73:16 | ...[...] | hash_extensions.rb:67:15:67:25 | call to source :  | hash_extensions.rb:73:10:73:16 | ...[...] | $@ | hash_extensions.rb:67:15:67:25 | call to source :  | call to source :  |
+| hash_extensions.rb:73:10:73:16 | ...[...] | hash_extensions.rb:67:28:67:38 | call to source :  | hash_extensions.rb:73:10:73:16 | ...[...] | $@ | hash_extensions.rb:67:28:67:38 | call to source :  | call to source :  |
+| hash_extensions.rb:73:10:73:16 | ...[...] | hash_extensions.rb:67:41:67:51 | call to source :  | hash_extensions.rb:73:10:73:16 | ...[...] | $@ | hash_extensions.rb:67:41:67:51 | call to source :  | call to source :  |
+| hash_extensions.rb:74:10:74:16 | ...[...] | hash_extensions.rb:67:15:67:25 | call to source :  | hash_extensions.rb:74:10:74:16 | ...[...] | $@ | hash_extensions.rb:67:15:67:25 | call to source :  | call to source :  |
+| hash_extensions.rb:74:10:74:16 | ...[...] | hash_extensions.rb:67:28:67:38 | call to source :  | hash_extensions.rb:74:10:74:16 | ...[...] | $@ | hash_extensions.rb:67:28:67:38 | call to source :  | call to source :  |
+| hash_extensions.rb:74:10:74:16 | ...[...] | hash_extensions.rb:67:41:67:51 | call to source :  | hash_extensions.rb:74:10:74:16 | ...[...] | $@ | hash_extensions.rb:67:41:67:51 | call to source :  | call to source :  |
diff --git a/ruby/ql/test/library-tests/frameworks/active_support/hash_extensions.rb b/ruby/ql/test/library-tests/frameworks/active_support/hash_extensions.rb
index 6e477f17aa8..6669cd83c37 100644
--- a/ruby/ql/test/library-tests/frameworks/active_support/hash_extensions.rb
+++ b/ruby/ql/test/library-tests/frameworks/active_support/hash_extensions.rb
@@ -62,3 +62,16 @@ def m_extract!(x)
 end
 
 m_extract!(:c)
+
+def m_index_by
+    values = [source("a"), source("b"), source("c")]
+    h = values.index_by do |value|
+        sink value # $ hasValueFlow=a $ hasValueFlow=b $ hasValueFlow=c
+        make_key(value)
+    end
+
+    sink h[:foo] # $ hasValueFlow=a $ hasValueFlow=b $ hasValueFlow=c
+    sink h[:bar] # $ hasValueFlow=a $ hasValueFlow=b $ hasValueFlow=c
+end
+
+m_index_by()

From 16ba5b1bb5602b8deeb99b15be076c4f3c890f16 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Nora=20Dimitrijevi=C4=87?= <d10c@users.noreply.github.com>
Date: Mon, 14 Nov 2022 12:30:16 +0100
Subject: [PATCH 0218/1420] Swift: update doctests

---
 swift/ql/src/queries/Security/CWE-094/UnsafeJsEvalBad.swift   | 2 +-
 swift/ql/src/queries/Security/CWE-094/UnsafeJsEvalGood.swift  | 2 +-
 swift/ql/test/query-tests/Security/CWE-094/UnsafeJsEval.swift | 4 ++--
 3 files changed, 4 insertions(+), 4 deletions(-)

diff --git a/swift/ql/src/queries/Security/CWE-094/UnsafeJsEvalBad.swift b/swift/ql/src/queries/Security/CWE-094/UnsafeJsEvalBad.swift
index 2e5b0233e79..111f8100ee2 100644
--- a/swift/ql/src/queries/Security/CWE-094/UnsafeJsEvalBad.swift
+++ b/swift/ql/src/queries/Security/CWE-094/UnsafeJsEvalBad.swift
@@ -3,4 +3,4 @@ let remoteData = try String(contentsOf: URL(string: "http://example.com/evil.jso
 
 ...
 
-_ = try await webview.evaluateJavaScript("alert(" + remoteData + ")") // BAD
+_ = try await webview.evaluateJavaScript("console.log(" + remoteData + ")") // BAD
diff --git a/swift/ql/src/queries/Security/CWE-094/UnsafeJsEvalGood.swift b/swift/ql/src/queries/Security/CWE-094/UnsafeJsEvalGood.swift
index a51ffd60b63..ea8f6c0d5ee 100644
--- a/swift/ql/src/queries/Security/CWE-094/UnsafeJsEvalGood.swift
+++ b/swift/ql/src/queries/Security/CWE-094/UnsafeJsEvalGood.swift
@@ -4,7 +4,7 @@ let remoteData = try String(contentsOf: URL(string: "http://example.com/evil.jso
 ...
 
 _ = try await webview.callAsyncJavaScript(
-    "alert(JSON.parse(data))",
+    "console.log(data)",
     arguments: ["data": remoteData], // GOOD
     contentWorld: .page
 )
diff --git a/swift/ql/test/query-tests/Security/CWE-094/UnsafeJsEval.swift b/swift/ql/test/query-tests/Security/CWE-094/UnsafeJsEval.swift
index 36cee943b66..e65c182a4c3 100644
--- a/swift/ql/test/query-tests/Security/CWE-094/UnsafeJsEval.swift
+++ b/swift/ql/test/query-tests/Security/CWE-094/UnsafeJsEval.swift
@@ -317,10 +317,10 @@ func testQHelpExamples() {
 		let webview = WKWebView()
 		let remoteData = try String(contentsOf: URL(string: "http://example.com/evil.json")!)
 
-		_ = try await webview.evaluateJavaScript("alert(" + remoteData + ")") // BAD [NOT DETECTED - TODO: extract Callables of @MainActor method calls]
+		_ = try await webview.evaluateJavaScript("console.log(" + remoteData + ")") // BAD [NOT DETECTED - TODO: extract Callables of @MainActor method calls]
 
 		_ = try await webview.callAsyncJavaScript(
-			"alert(JSON.parse(data))",
+			"console.log(data)",
 			arguments: ["data": remoteData], // GOOD
 			contentWorld: .page
 		)

From 87ee979a122f6ae22afb5c7a696ae6b5a77ed312 Mon Sep 17 00:00:00 2001
From: Ian Lynagh <igfoo@github.com>
Date: Mon, 14 Nov 2022 11:31:37 +0000
Subject: [PATCH 0219/1420] Java/Kotlin: Add compilation info to telemetry

This will give info about which kotlinc versions are used.
---
 java/ql/src/Telemetry/ExtractorInformation.ql | 8 ++++++++
 1 file changed, 8 insertions(+)

diff --git a/java/ql/src/Telemetry/ExtractorInformation.ql b/java/ql/src/Telemetry/ExtractorInformation.ql
index 0eb420ba651..00ce79796b2 100644
--- a/java/ql/src/Telemetry/ExtractorInformation.ql
+++ b/java/ql/src/Telemetry/ExtractorInformation.ql
@@ -9,6 +9,13 @@
 import java
 import semmle.code.java.Diagnostics
 
+predicate compilationInfo(string key, int value) {
+  exists(Compilation c, string infoKey |
+    key = infoKey + ": " + c.getInfo(infoKey) and
+    value = 1
+  )
+}
+
 predicate fileCount(string key, int value) {
   key = "Number of files" and
   value = strictcount(File f)
@@ -55,6 +62,7 @@ predicate extractorDiagnostics(string key, int value) {
 
 from string key, int value
 where
+  compilationInfo(key, value) or
   fileCount(key, value) or
   fileCountByExtension(key, value) or
   totalNumberOfLines(key, value) or

From c03eab2410cfcd446dd6a0238e19c29cbc940a9d Mon Sep 17 00:00:00 2001
From: Tony Torralba <atorralba@users.noreply.github.com>
Date: Fri, 4 Nov 2022 12:31:59 +0100
Subject: [PATCH 0220/1420] Add XMLDocument sinks

---
 swift/ql/lib/codeql/swift/security/XXE.qll    | 27 +++++-
 .../Security/CWE-611/testXMLDocumentXXE.swift | 86 +++++++++++++++++++
 .../{testXXE.swift => testXMLParserXXE.swift} |  0
 3 files changed, 111 insertions(+), 2 deletions(-)
 create mode 100644 swift/ql/test/query-tests/Security/CWE-611/testXMLDocumentXXE.swift
 rename swift/ql/test/query-tests/Security/CWE-611/{testXXE.swift => testXMLParserXXE.swift} (100%)

diff --git a/swift/ql/lib/codeql/swift/security/XXE.qll b/swift/ql/lib/codeql/swift/security/XXE.qll
index 506225f54a1..da8513be645 100644
--- a/swift/ql/lib/codeql/swift/security/XXE.qll
+++ b/swift/ql/lib/codeql/swift/security/XXE.qll
@@ -20,8 +20,8 @@ class XxeAdditionalTaintStep extends Unit {
 }
 
 /** The XML argument of a `XMLParser` vulnerable to XXE. */
-private class DefaultXxeSink extends XxeSink {
-  DefaultXxeSink() {
+private class XmlParserXxeSink extends XxeSink {
+  XmlParserXxeSink() {
     this.asExpr() = any(Argument a | a.getApplyExpr() instanceof VulnerableParser).getExpr()
   }
 }
@@ -67,3 +67,26 @@ private class XmlParserRef extends Expr {
 private class XmlParserType extends NominalType {
   XmlParserType() { this.getFullName() = "XMLParser" }
 }
+
+/** The XML argument of a `XMLDocument` vulnerable to XXE. */
+private class XmlDocumentXxeSink extends XxeSink {
+  XmlDocumentXxeSink() { this.asExpr() = any(VulnerableXmlDocument d).getArgument(0).getExpr() }
+}
+
+/** An `XMLDocument` that sets `nodeLoadExternalEntitiesAlways` in its options. */
+private class VulnerableXmlDocument extends ApplyExpr {
+  VulnerableXmlDocument() {
+    this.getStaticTarget().(ConstructorDecl).getEnclosingDecl().(NominalTypeDecl).getFullName() =
+      "XMLDocument" and
+    this.getArgument(1).getExpr().(ArrayExpr).getAnElement().(MemberRefExpr).getMember() instanceof
+      NodeLoadExternalEntitiesAlways
+  }
+}
+
+/** The option `XMLNode.Options.nodeLoadExternalEntitiesAlways`. */
+private class NodeLoadExternalEntitiesAlways extends VarDecl {
+  NodeLoadExternalEntitiesAlways() {
+    this.getName() = "nodeLoadExternalEntitiesAlways" and
+    this.getEnclosingDecl().(StructDecl).getFullName() = "XMLNode.Options"
+  }
+}
diff --git a/swift/ql/test/query-tests/Security/CWE-611/testXMLDocumentXXE.swift b/swift/ql/test/query-tests/Security/CWE-611/testXMLDocumentXXE.swift
new file mode 100644
index 00000000000..cbfd2cb58ea
--- /dev/null
+++ b/swift/ql/test/query-tests/Security/CWE-611/testXMLDocumentXXE.swift
@@ -0,0 +1,86 @@
+// --- stubs ---
+
+class Data {
+    init<S>(_ elements: S) {}
+}
+
+struct URL {
+	init?(string: String) {}
+}
+
+extension String {
+	init(contentsOf: URL) {
+        let data = ""
+        self.init(data)
+    }
+}
+
+class XMLNode {
+    struct Options : OptionSet {
+        let rawValue: Int
+        static let nodeLoadExternalEntitiesAlways = XMLNode.Options(rawValue: 1 << 0)
+        static let nodeLoadExternalEntitiesNever = XMLNode.Options(rawValue: 1 << 1)
+    }
+}
+
+class XMLElement {}
+
+class XMLDocument {
+    init(contentsOf: URL, options: XMLNode.Options = []) {}
+    init(data: Data, options: XMLNode.Options = []) {}
+    init(rootElement: XMLElement?) {}
+    init(xmlString: String, options: XMLNode.Options = []) {}
+}
+
+// --- tests ---
+
+func testUrl() {
+    let remoteString = String(contentsOf: URL(string: "http://example.com/")!)
+    let remoteUrl = URL(string: remoteString)!
+     let _ = XMLDocument(contentsOf: remoteUrl, options: [.nodeLoadExternalEntitiesAlways]) // $ hasXXE=39
+}
+
+func testUrlSafeImplicit() {
+    let remoteString = String(contentsOf: URL(string: "http://example.com/")!)
+    let remoteUrl = URL(string: remoteString)!
+    let _ = XMLDocument(contentsOf: remoteUrl, options: []) // NO XXE: document doesn't enable external entities
+}
+
+func testUrlSafeExplicit() {
+    let remoteString = String(contentsOf: URL(string: "http://example.com/")!)
+    let remoteUrl = URL(string: remoteString)!
+    let _ = XMLDocument(contentsOf: remoteUrl, options: [.nodeLoadExternalEntitiesNever]) // NO XXE: document disables external entities
+}
+
+func testData() {
+    let remoteString = String(contentsOf: URL(string: "http://example.com/")!)
+    let remoteData = Data(remoteString)
+    let _ = XMLDocument(data: remoteData, options: [.nodeLoadExternalEntitiesAlways]) // $ hasXXE=57
+}
+
+func testDataSafeImplicit() {
+    let remoteString = String(contentsOf: URL(string: "http://example.com/")!)
+    let remoteData = Data(remoteString)
+    let _ = XMLDocument(data: remoteData, options: []) // NO XXE: document doesn't enable external entities
+}
+
+func testDataSafeExplicit() {
+    let remoteString = String(contentsOf: URL(string: "http://example.com/")!)
+    let remoteData = Data(remoteString)
+    let _ = XMLDocument(data: remoteData, options: [.nodeLoadExternalEntitiesNever]) // NO XXE: document disables external entities
+}
+
+func testString() {
+    let remoteString = String(contentsOf: URL(string: "http://example.com/")!)
+    let _ = XMLDocument(xmlString: remoteString, options: [.nodeLoadExternalEntitiesAlways]) // $ hasXXE=75
+}
+
+func testStringSafeImplicit() {
+    let remoteString = String(contentsOf: URL(string: "http://example.com/")!)
+    let _ = XMLDocument(xmlString: remoteString, options: []) // NO XXE: document doesn't enable external entities
+}
+
+func testStringSafeExplicit() {
+    let remoteString = String(contentsOf: URL(string: "http://example.com/")!)
+    let _ = XMLDocument(xmlString: remoteString, options: [.nodeLoadExternalEntitiesNever]) // NO XXE: document disables external entities
+}
diff --git a/swift/ql/test/query-tests/Security/CWE-611/testXXE.swift b/swift/ql/test/query-tests/Security/CWE-611/testXMLParserXXE.swift
similarity index 100%
rename from swift/ql/test/query-tests/Security/CWE-611/testXXE.swift
rename to swift/ql/test/query-tests/Security/CWE-611/testXMLParserXXE.swift

From 52bd14021382cedb2e3ca98b79f73bb4276ca357 Mon Sep 17 00:00:00 2001
From: Tony Torralba <atorralba@users.noreply.github.com>
Date: Fri, 4 Nov 2022 13:02:02 +0100
Subject: [PATCH 0221/1420] Fix test expectations

---
 .../query-tests/Security/CWE-611/testXMLDocumentXXE.swift   | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/swift/ql/test/query-tests/Security/CWE-611/testXMLDocumentXXE.swift b/swift/ql/test/query-tests/Security/CWE-611/testXMLDocumentXXE.swift
index cbfd2cb58ea..07180301e72 100644
--- a/swift/ql/test/query-tests/Security/CWE-611/testXMLDocumentXXE.swift
+++ b/swift/ql/test/query-tests/Security/CWE-611/testXMLDocumentXXE.swift
@@ -37,7 +37,7 @@ class XMLDocument {
 func testUrl() {
     let remoteString = String(contentsOf: URL(string: "http://example.com/")!)
     let remoteUrl = URL(string: remoteString)!
-     let _ = XMLDocument(contentsOf: remoteUrl, options: [.nodeLoadExternalEntitiesAlways]) // $ hasXXE=39
+     let _ = XMLDocument(contentsOf: remoteUrl, options: [.nodeLoadExternalEntitiesAlways]) // $ hasXXE=38
 }
 
 func testUrlSafeImplicit() {
@@ -55,7 +55,7 @@ func testUrlSafeExplicit() {
 func testData() {
     let remoteString = String(contentsOf: URL(string: "http://example.com/")!)
     let remoteData = Data(remoteString)
-    let _ = XMLDocument(data: remoteData, options: [.nodeLoadExternalEntitiesAlways]) // $ hasXXE=57
+    let _ = XMLDocument(data: remoteData, options: [.nodeLoadExternalEntitiesAlways]) // $ hasXXE=56
 }
 
 func testDataSafeImplicit() {
@@ -72,7 +72,7 @@ func testDataSafeExplicit() {
 
 func testString() {
     let remoteString = String(contentsOf: URL(string: "http://example.com/")!)
-    let _ = XMLDocument(xmlString: remoteString, options: [.nodeLoadExternalEntitiesAlways]) // $ hasXXE=75
+    let _ = XMLDocument(xmlString: remoteString, options: [.nodeLoadExternalEntitiesAlways]) // $ hasXXE=74
 }
 
 func testStringSafeImplicit() {

From b39e2ef71cbee9fcae4dc97b5afe58566702ddce Mon Sep 17 00:00:00 2001
From: Nick Rolfe <nickrolfe@github.com>
Date: Fri, 29 Jul 2022 17:27:16 +0100
Subject: [PATCH 0222/1420] Ruby: add stacktrace exposure query

---
 .../StackTraceExposureCustomizations.qll      | 55 +++++++++++++++++++
 .../ruby/security/StackTraceExposureQuery.qll | 25 +++++++++
 .../security/cwe-209/StackTraceExposure.qhelp | 49 +++++++++++++++++
 .../security/cwe-209/StackTraceExposure.ql    | 23 ++++++++
 .../cwe-209/examples/StackTraceExposure.rb    | 18 ++++++
 .../cwe-209/StackTraceExposure.expected       | 10 ++++
 .../security/cwe-209/StackTraceExposure.qlref |  1 +
 .../security/cwe-209/StackTraceExposure.rb    | 15 +++++
 8 files changed, 196 insertions(+)
 create mode 100644 ruby/ql/lib/codeql/ruby/security/StackTraceExposureCustomizations.qll
 create mode 100644 ruby/ql/lib/codeql/ruby/security/StackTraceExposureQuery.qll
 create mode 100644 ruby/ql/src/queries/security/cwe-209/StackTraceExposure.qhelp
 create mode 100644 ruby/ql/src/queries/security/cwe-209/StackTraceExposure.ql
 create mode 100644 ruby/ql/src/queries/security/cwe-209/examples/StackTraceExposure.rb
 create mode 100644 ruby/ql/test/query-tests/security/cwe-209/StackTraceExposure.expected
 create mode 100644 ruby/ql/test/query-tests/security/cwe-209/StackTraceExposure.qlref
 create mode 100644 ruby/ql/test/query-tests/security/cwe-209/StackTraceExposure.rb

diff --git a/ruby/ql/lib/codeql/ruby/security/StackTraceExposureCustomizations.qll b/ruby/ql/lib/codeql/ruby/security/StackTraceExposureCustomizations.qll
new file mode 100644
index 00000000000..9a25dda844d
--- /dev/null
+++ b/ruby/ql/lib/codeql/ruby/security/StackTraceExposureCustomizations.qll
@@ -0,0 +1,55 @@
+/**
+ * Provides default sources, sinks and sanitizers for detecting stack trace
+ * exposure vulnerabilities, as well as extension points for adding your own.
+ */
+
+private import codeql.ruby.AST
+private import codeql.ruby.Concepts
+private import codeql.ruby.DataFlow
+private import codeql.ruby.controlflow.CfgNodes
+private import codeql.ruby.frameworks.core.Kernel
+
+/**
+ * Provides default sources, sinks and sanitizers for detecting stack trace
+ * exposure vulnerabilities, as well as extension points for adding your own.
+ */
+module StackTraceExposure {
+  /** A data flow source for stack trace exposure vulnerabilities. */
+  abstract class Source extends DataFlow::Node { }
+
+  /** A data flow sink for stack trace exposure vulnerabilities. */
+  abstract class Sink extends DataFlow::Node { }
+
+  /** A data flow sanitizer for stack trace exposure vulnerabilities. */
+  abstract class Sanitizer extends DataFlow::Node { }
+
+  /**
+   * A call to `backtrace` or `backtrace_locations` on a `rescue` variable,
+   * considered as a flow source.
+   */
+  class BacktraceCall extends Source, DataFlow::CallNode {
+    BacktraceCall() {
+      exists(DataFlow::LocalSourceNode varAccess |
+        varAccess.asExpr().(ExprNodes::VariableReadAccessCfgNode).getExpr().getVariable() =
+          any(RescueClause rc).getVariableExpr().(VariableAccess).getVariable() and
+        varAccess.flowsTo(this.getReceiver())
+      ) and
+      this.getMethodName() = ["backtrace", "backtrace_locations"]
+    }
+  }
+
+  /**
+   * A call to `Kernel#caller`, considered as a flow source.
+   */
+  class KernelCallerCall extends Source, Kernel::KernelMethodCall {
+    KernelCallerCall() { this.getMethodName() = "caller" }
+  }
+
+  /**
+   * The body of an HTTP response that will be returned from a server,
+   * considered as a flow sink.
+   */
+  class ServerHttpResponseBodyAsSink extends Sink {
+    ServerHttpResponseBodyAsSink() { this = any(Http::Server::HttpResponse response).getBody() }
+  }
+}
diff --git a/ruby/ql/lib/codeql/ruby/security/StackTraceExposureQuery.qll b/ruby/ql/lib/codeql/ruby/security/StackTraceExposureQuery.qll
new file mode 100644
index 00000000000..408d903d7b4
--- /dev/null
+++ b/ruby/ql/lib/codeql/ruby/security/StackTraceExposureQuery.qll
@@ -0,0 +1,25 @@
+/**
+ * Provides a taint-tracking configuration for detecting stack-trace exposure
+ * vulnerabilities.
+ *
+ * Note, for performance reasons: only import this file if
+ * `StackTraceExposure::Configuration` is needed; otherwise,
+ * `StackTraceExposureCustomizations` should be imported instead.
+ */
+
+private import codeql.ruby.DataFlow
+private import codeql.ruby.TaintTracking
+private import StackTraceExposureCustomizations::StackTraceExposure
+
+/**
+ * A taint-tracking configuration for detecting "stack trace exposure" vulnerabilities.
+ */
+class Configuration extends TaintTracking::Configuration {
+  Configuration() { this = "StackTraceExposure" }
+
+  override predicate isSource(DataFlow::Node source) { source instanceof Source }
+
+  override predicate isSink(DataFlow::Node sink) { sink instanceof Sink }
+
+  override predicate isSanitizer(DataFlow::Node node) { node instanceof Sanitizer }
+}
diff --git a/ruby/ql/src/queries/security/cwe-209/StackTraceExposure.qhelp b/ruby/ql/src/queries/security/cwe-209/StackTraceExposure.qhelp
new file mode 100644
index 00000000000..916f6cfcbeb
--- /dev/null
+++ b/ruby/ql/src/queries/security/cwe-209/StackTraceExposure.qhelp
@@ -0,0 +1,49 @@
+<!DOCTYPE qhelp PUBLIC
+  "-//Semmle//qhelp//EN"
+  "qhelp.dtd">
+<qhelp>
+<overview>
+
+<p>
+Software developers often add stack traces to error messages, as a debugging
+aid. Whenever that error message occurs for an end user, the developer can use
+the stack trace to help identify how to fix the problem. In particular, stack
+traces can tell the developer more about the sequence of events that led to a
+failure, as opposed to merely the final state of the software when the error
+occurred.
+</p>
+
+<p>
+Unfortunately, the same information can be useful to an attacker.  The sequence
+of class or method names in a stack trace can reveal the structure of the
+application as well as any internal components it relies on.  Furthermore, the
+error message at the top of a stack trace can include information such as
+server-side file names and SQL code that the application relies on, allowing an
+attacker to fine-tune a subsequent injection attack.
+</p>
+</overview>
+
+<recommendation>
+<p>
+Send the user a more generic error message that reveals less information.
+Either suppress the stack trace entirely, or log it only on the server.
+</p>
+</recommendation>
+
+<example>
+<p>
+In the following example, an exception is handled in two different ways. In the
+first version, labeled BAD, the exception is exposted to the remote user by
+rendering it as an HTTP response. As such, the user is able to see a detailed
+stack trace, which may contain sensitive information. In the second version, the
+error message is logged only on the server, and a generic error message is
+displayed to the user. That way, the developers can still access and use the
+error log, but remote users will not see the information.  </p>
+
+<sample src="examples/StackTraceExposure.rb" />
+</example>
+
+<references>
+<li>OWASP: <a href="https://owasp.org/www-community/Improper_Error_Handling">Improper Error Handling</a>.</li>
+</references>
+</qhelp>
diff --git a/ruby/ql/src/queries/security/cwe-209/StackTraceExposure.ql b/ruby/ql/src/queries/security/cwe-209/StackTraceExposure.ql
new file mode 100644
index 00000000000..95ea4a86908
--- /dev/null
+++ b/ruby/ql/src/queries/security/cwe-209/StackTraceExposure.ql
@@ -0,0 +1,23 @@
+/**
+ * @name Information exposure through an exception
+ * @description Leaking information about an exception, such as messages and stack traces, to an
+ *              external user can expose implementation details that are useful to an attacker for
+ *              developing a subsequent exploit.
+ * @kind path-problem
+ * @problem.severity error
+ * @security-severity 5.4
+ * @precision high
+ * @id rb/stack-trace-exposure
+ * @tags security
+ *       external/cwe/cwe-209
+ *       external/cwe/cwe-497
+ */
+
+import codeql.ruby.DataFlow
+import codeql.ruby.security.StackTraceExposureQuery
+import DataFlow::PathGraph
+
+from Configuration config, DataFlow::PathNode source, DataFlow::PathNode sink
+where config.hasFlowPath(source, sink)
+select sink.getNode(), source, sink, "$@ can be exposed to an external user.", source.getNode(),
+  "Error information"
diff --git a/ruby/ql/src/queries/security/cwe-209/examples/StackTraceExposure.rb b/ruby/ql/src/queries/security/cwe-209/examples/StackTraceExposure.rb
new file mode 100644
index 00000000000..591be56014f
--- /dev/null
+++ b/ruby/ql/src/queries/security/cwe-209/examples/StackTraceExposure.rb
@@ -0,0 +1,18 @@
+class UsersController < ApplicationController
+
+  def update_bad(id)
+    do_computation()
+  rescue => e
+    # BAD
+    render e.backtrace, content_type: "text/plain"
+  end
+
+  def update_good(id)
+    do_computation()
+  rescue => e
+    # GOOD
+    log e.backtrace
+    redner "Computation failed", content_type: "text/plain"
+  end
+
+end
\ No newline at end of file
diff --git a/ruby/ql/test/query-tests/security/cwe-209/StackTraceExposure.expected b/ruby/ql/test/query-tests/security/cwe-209/StackTraceExposure.expected
new file mode 100644
index 00000000000..7a0e35973be
--- /dev/null
+++ b/ruby/ql/test/query-tests/security/cwe-209/StackTraceExposure.expected
@@ -0,0 +1,10 @@
+edges
+| StackTraceExposure.rb:11:10:11:17 | call to caller :  | StackTraceExposure.rb:12:12:12:13 | bt |
+nodes
+| StackTraceExposure.rb:6:12:6:22 | call to backtrace | semmle.label | call to backtrace |
+| StackTraceExposure.rb:11:10:11:17 | call to caller :  | semmle.label | call to caller :  |
+| StackTraceExposure.rb:12:12:12:13 | bt | semmle.label | bt |
+subpaths
+#select
+| StackTraceExposure.rb:6:12:6:22 | call to backtrace | StackTraceExposure.rb:6:12:6:22 | call to backtrace | StackTraceExposure.rb:6:12:6:22 | call to backtrace | $@ can be exposed to an external user. | StackTraceExposure.rb:6:12:6:22 | call to backtrace | Error information |
+| StackTraceExposure.rb:12:12:12:13 | bt | StackTraceExposure.rb:11:10:11:17 | call to caller :  | StackTraceExposure.rb:12:12:12:13 | bt | $@ can be exposed to an external user. | StackTraceExposure.rb:11:10:11:17 | call to caller | Error information |
diff --git a/ruby/ql/test/query-tests/security/cwe-209/StackTraceExposure.qlref b/ruby/ql/test/query-tests/security/cwe-209/StackTraceExposure.qlref
new file mode 100644
index 00000000000..c110f2b1765
--- /dev/null
+++ b/ruby/ql/test/query-tests/security/cwe-209/StackTraceExposure.qlref
@@ -0,0 +1 @@
+queries/security/cwe-209/StackTraceExposure.ql
\ No newline at end of file
diff --git a/ruby/ql/test/query-tests/security/cwe-209/StackTraceExposure.rb b/ruby/ql/test/query-tests/security/cwe-209/StackTraceExposure.rb
new file mode 100644
index 00000000000..a9faa66af02
--- /dev/null
+++ b/ruby/ql/test/query-tests/security/cwe-209/StackTraceExposure.rb
@@ -0,0 +1,15 @@
+class FooController < ApplicationController
+
+  def show
+    something_that_might_fail()
+  rescue => e
+    render e.backtrace, content_type: "text/plain"
+  end
+
+
+  def show2
+    bt = caller()
+    render bt, content_type: "text/plain"
+  end
+
+end

From c660ea100b422fb05ca733dbc1b832edd06ba58c Mon Sep 17 00:00:00 2001
From: Nick Rolfe <nickrolfe@github.com>
Date: Mon, 14 Nov 2022 12:08:56 +0000
Subject: [PATCH 0223/1420] Ruby: add changenote for rb/stack-trace-exposure

---
 ruby/ql/src/change-notes/2022-11-14-stack-trace-exposure.md | 4 ++++
 1 file changed, 4 insertions(+)
 create mode 100644 ruby/ql/src/change-notes/2022-11-14-stack-trace-exposure.md

diff --git a/ruby/ql/src/change-notes/2022-11-14-stack-trace-exposure.md b/ruby/ql/src/change-notes/2022-11-14-stack-trace-exposure.md
new file mode 100644
index 00000000000..c4b1e73766b
--- /dev/null
+++ b/ruby/ql/src/change-notes/2022-11-14-stack-trace-exposure.md
@@ -0,0 +1,4 @@
+---
+category: newQuery
+---
+* Added a new query, `rb/stack-trace-exposure`, to detect exposure of stack-traces to users via HTTP responses.

From b20f8fc8c9efe88282e542187aebe00c84d78e58 Mon Sep 17 00:00:00 2001
From: Ian Lynagh <igfoo@github.com>
Date: Mon, 14 Nov 2022 12:27:54 +0000
Subject: [PATCH 0224/1420] Kotlin: Add total number of diagnostics to
 telemetry

---
 .../src/main/kotlin/utils/Logger.kt           | 11 +++++--
 java/ql/src/Telemetry/ExtractorInformation.ql | 31 ++++++++++++++++++-
 2 files changed, 38 insertions(+), 4 deletions(-)

diff --git a/java/kotlin-extractor/src/main/kotlin/utils/Logger.kt b/java/kotlin-extractor/src/main/kotlin/utils/Logger.kt
index 43c6ee4cc10..6ec568e769a 100644
--- a/java/kotlin-extractor/src/main/kotlin/utils/Logger.kt
+++ b/java/kotlin-extractor/src/main/kotlin/utils/Logger.kt
@@ -138,6 +138,10 @@ open class LoggerBase(val logCounter: LogCounter) {
         fullMsgBuilder.append(suffix)
 
         val fullMsg = fullMsgBuilder.toString()
+        emitDiagnostic(tw, severity, diagnosticLocStr, msg, fullMsg, locationString, mkLocationId)
+    }
+
+    fun emitDiagnostic(tw: TrapWriter, severity: Severity, diagnosticLocStr: String, msg: String, fullMsg: String, locationString: String? = null, mkLocationId: () -> Label<DbLocation> = { tw.unknownLocation }) {
         val locStr = if (locationString == null) "" else "At " + locationString + ": "
         val kind = if (severity <= Severity.WarnHigh) "WARN" else "ERROR"
         val logMessage = LogMessage(kind, "Diagnostic($diagnosticLocStr): $locStr$fullMsg")
@@ -190,9 +194,10 @@ open class LoggerBase(val logCounter: LogCounter) {
                 // We don't know if this location relates to an error
                 // or a warning, so we just declare hitting the limit
                 // to be an error regardless.
-                val logMessage = LogMessage("ERROR", "Total of $count diagnostics from $caller.")
-                tw.writeComment(logMessage.toText())
-                logStream.write(logMessage.toJsonLine())
+                val message = "Total of $count diagnostics (reached limit of ${logCounter.diagnosticLimit}) from $caller."
+                if (verbosity >= 1) {
+                    emitDiagnostic(tw, Severity.Error, "Limit", message, message)
+                }
             }
         }
     }
diff --git a/java/ql/src/Telemetry/ExtractorInformation.ql b/java/ql/src/Telemetry/ExtractorInformation.ql
index 0eb420ba651..861cde5c661 100644
--- a/java/ql/src/Telemetry/ExtractorInformation.ql
+++ b/java/ql/src/Telemetry/ExtractorInformation.ql
@@ -53,6 +53,34 @@ predicate extractorDiagnostics(string key, int value) {
   )
 }
 
+/*
+ * Just counting the diagnostics doesn't give the full picture, as
+ * CODEQL_EXTRACTOR_KOTLIN_DIAGNOSTIC_LIMIT means that some diagnostics
+ * will be suppressed. In that case, we need to look for the
+ * suppression message, uncount those that did get emitted, uncount the
+ * suppression message itself, and then add on the full count.
+ */
+
+predicate extractorTotalDiagnostics(string key, int value) {
+  exists(string extractor |
+    key = "Total number of diagnostics from " + extractor and
+    value =
+      strictcount(Diagnostic d | d.getGeneratedBy() = extractor) +
+        sum(Diagnostic d |
+          d.getGeneratedBy() = extractor
+        |
+          d.getMessage()
+                  .regexpCapture("Total of ([0-9]+) diagnostics \\(reached limit of ([0-9]+)\\).*",
+                    1)
+                  .toInt() -
+              d.getMessage()
+                  .regexpCapture("Total of ([0-9]+) diagnostics \\(reached limit of ([0-9]+)\\).*",
+                    2)
+                  .toInt() - 1
+        )
+  )
+}
+
 from string key, int value
 where
   fileCount(key, value) or
@@ -61,5 +89,6 @@ where
   numberOfLinesOfCode(key, value) or
   totalNumberOfLinesByExtension(key, value) or
   numberOfLinesOfCodeByExtension(key, value) or
-  extractorDiagnostics(key, value)
+  extractorDiagnostics(key, value) or
+  extractorTotalDiagnostics(key, value)
 select key, value

From c80fbff648e9c33fd44c94b4bcf19bb55ec4fbc0 Mon Sep 17 00:00:00 2001
From: Nick Rolfe <nickrolfe@github.com>
Date: Mon, 14 Nov 2022 12:47:50 +0000
Subject: [PATCH 0225/1420] Ruby: add changenote for Enumerable#index_by flow
 summary

---
 .../2022-11-14-activesupport-enumerable-index-by.md           | 4 ++++
 1 file changed, 4 insertions(+)
 create mode 100644 ruby/ql/lib/change-notes/2022-11-14-activesupport-enumerable-index-by.md

diff --git a/ruby/ql/lib/change-notes/2022-11-14-activesupport-enumerable-index-by.md b/ruby/ql/lib/change-notes/2022-11-14-activesupport-enumerable-index-by.md
new file mode 100644
index 00000000000..812c292dd94
--- /dev/null
+++ b/ruby/ql/lib/change-notes/2022-11-14-activesupport-enumerable-index-by.md
@@ -0,0 +1,4 @@
+---
+category: minorAnalysis
+---
+* Data flow through the `ActiveSupport` extension `Enumerable#index_by` is now modeled.

From 847ecd1eec06213714ef9907fdc461f333e77e59 Mon Sep 17 00:00:00 2001
From: Ian Lynagh <igfoo@github.com>
Date: Mon, 14 Nov 2022 13:09:49 +0000
Subject: [PATCH 0226/1420] Java/Kotlin: Small refactoring of
 ExtractorInformation

---
 java/ql/src/Telemetry/ExtractorInformation.ql | 13 ++++---------
 1 file changed, 4 insertions(+), 9 deletions(-)

diff --git a/java/ql/src/Telemetry/ExtractorInformation.ql b/java/ql/src/Telemetry/ExtractorInformation.ql
index 861cde5c661..eaf0eac1fa9 100644
--- a/java/ql/src/Telemetry/ExtractorInformation.ql
+++ b/java/ql/src/Telemetry/ExtractorInformation.ql
@@ -62,21 +62,16 @@ predicate extractorDiagnostics(string key, int value) {
  */
 
 predicate extractorTotalDiagnostics(string key, int value) {
-  exists(string extractor |
+  exists(string extractor, string limitRegex |
+    limitRegex = "Total of ([0-9]+) diagnostics \\(reached limit of ([0-9]+)\\).*" and
     key = "Total number of diagnostics from " + extractor and
     value =
       strictcount(Diagnostic d | d.getGeneratedBy() = extractor) +
         sum(Diagnostic d |
           d.getGeneratedBy() = extractor
         |
-          d.getMessage()
-                  .regexpCapture("Total of ([0-9]+) diagnostics \\(reached limit of ([0-9]+)\\).*",
-                    1)
-                  .toInt() -
-              d.getMessage()
-                  .regexpCapture("Total of ([0-9]+) diagnostics \\(reached limit of ([0-9]+)\\).*",
-                    2)
-                  .toInt() - 1
+          d.getMessage().regexpCapture(limitRegex, 1).toInt() -
+              d.getMessage().regexpCapture(limitRegex, 2).toInt() - 1
         )
   )
 }

From fab2d30f381154f01abd35ff844cdb5a9228d8b0 Mon Sep 17 00:00:00 2001
From: Ian Lynagh <igfoo@github.com>
Date: Mon, 14 Nov 2022 13:53:16 +0000
Subject: [PATCH 0227/1420] Kotlin: Make emitDiagnostic private

---
 java/kotlin-extractor/src/main/kotlin/utils/Logger.kt | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/java/kotlin-extractor/src/main/kotlin/utils/Logger.kt b/java/kotlin-extractor/src/main/kotlin/utils/Logger.kt
index 6ec568e769a..36ebda9dd1c 100644
--- a/java/kotlin-extractor/src/main/kotlin/utils/Logger.kt
+++ b/java/kotlin-extractor/src/main/kotlin/utils/Logger.kt
@@ -141,7 +141,7 @@ open class LoggerBase(val logCounter: LogCounter) {
         emitDiagnostic(tw, severity, diagnosticLocStr, msg, fullMsg, locationString, mkLocationId)
     }
 
-    fun emitDiagnostic(tw: TrapWriter, severity: Severity, diagnosticLocStr: String, msg: String, fullMsg: String, locationString: String? = null, mkLocationId: () -> Label<DbLocation> = { tw.unknownLocation }) {
+    private fun emitDiagnostic(tw: TrapWriter, severity: Severity, diagnosticLocStr: String, msg: String, fullMsg: String, locationString: String? = null, mkLocationId: () -> Label<DbLocation> = { tw.unknownLocation }) {
         val locStr = if (locationString == null) "" else "At " + locationString + ": "
         val kind = if (severity <= Severity.WarnHigh) "WARN" else "ERROR"
         val logMessage = LogMessage(kind, "Diagnostic($diagnosticLocStr): $locStr$fullMsg")

From b028d72d51bffe870b427fa416bbaaf67593b390 Mon Sep 17 00:00:00 2001
From: Asger F <asgerf@github.com>
Date: Mon, 14 Nov 2022 15:07:59 +0100
Subject: [PATCH 0228/1420] JS: Handle DynamicImport in the context of a type

---
 .../semmle/js/extractor/TypeExprKinds.java    |  15 +-
 .../extractor/tests/ts/input/dynamic-type.ts  |   1 +
 .../tests/ts/output/trap/dynamic-type.ts.trap | 139 ++++++++++++++++++
 3 files changed, 153 insertions(+), 2 deletions(-)
 create mode 100644 javascript/extractor/tests/ts/input/dynamic-type.ts
 create mode 100644 javascript/extractor/tests/ts/output/trap/dynamic-type.ts.trap

diff --git a/javascript/extractor/src/com/semmle/js/extractor/TypeExprKinds.java b/javascript/extractor/src/com/semmle/js/extractor/TypeExprKinds.java
index a1c7b219a8a..82d4e4319c8 100644
--- a/javascript/extractor/src/com/semmle/js/extractor/TypeExprKinds.java
+++ b/javascript/extractor/src/com/semmle/js/extractor/TypeExprKinds.java
@@ -10,6 +10,7 @@ import com.semmle.js.ast.TemplateElement;
 import com.semmle.js.extractor.ASTExtractor.IdContext;
 import com.semmle.ts.ast.ArrayTypeExpr;
 import com.semmle.ts.ast.ConditionalTypeExpr;
+import com.semmle.js.ast.DynamicImport;
 import com.semmle.ts.ast.FunctionTypeExpr;
 import com.semmle.ts.ast.GenericTypeExpr;
 import com.semmle.ts.ast.ImportTypeExpr;
@@ -221,8 +222,7 @@ public class TypeExprKinds {
                 return inferTypeExpr;
               }
 
-              @Override
-              public Integer visit(ImportTypeExpr nd, Void c) {
+              private Integer handleInlineImport() {
                 switch (idcontext) {
                   case NAMESPACE_BIND:
                     return importNamespaceAccess;
@@ -235,6 +235,17 @@ public class TypeExprKinds {
                 }
               }
 
+              @Override
+              public Integer visit(ImportTypeExpr nd, Void c) {
+                return handleInlineImport();
+              }
+
+              @Override
+              public Integer visit(DynamicImport nd, Void c) {
+                // These may appear in interface 'extend' clauses
+                return handleInlineImport();
+              }
+
               @Override
               public Integer visit(OptionalTypeExpr nd, Void c) {
                 return optionalTypeExpr;
diff --git a/javascript/extractor/tests/ts/input/dynamic-type.ts b/javascript/extractor/tests/ts/input/dynamic-type.ts
new file mode 100644
index 00000000000..2b2f90337a2
--- /dev/null
+++ b/javascript/extractor/tests/ts/input/dynamic-type.ts
@@ -0,0 +1 @@
+interface Foo extends import("foo").Bar {}
diff --git a/javascript/extractor/tests/ts/output/trap/dynamic-type.ts.trap b/javascript/extractor/tests/ts/output/trap/dynamic-type.ts.trap
new file mode 100644
index 00000000000..71410d093cc
--- /dev/null
+++ b/javascript/extractor/tests/ts/output/trap/dynamic-type.ts.trap
@@ -0,0 +1,139 @@
+#10000=@"/dynamic-type.ts;sourcefile"
+files(#10000,"/dynamic-type.ts")
+#10001=@"/;folder"
+folders(#10001,"/")
+containerparent(#10001,#10000)
+#10002=@"loc,{#10000},0,0,0,0"
+locations_default(#10002,#10000,0,0,0,0)
+hasLocation(#10000,#10002)
+#20000=@"global_scope"
+scopes(#20000,0)
+#20001=@"script;{#10000},1,1"
+#20002=*
+lines(#20002,#20001,"interface Foo extends import(""foo"").Bar {}","
+")
+#20003=@"loc,{#10000},1,1,1,42"
+locations_default(#20003,#10000,1,1,1,42)
+hasLocation(#20002,#20003)
+numlines(#20001,1,1,0)
+#20004=*
+tokeninfo(#20004,7,#20001,0,"interface")
+#20005=@"loc,{#10000},1,1,1,9"
+locations_default(#20005,#10000,1,1,1,9)
+hasLocation(#20004,#20005)
+#20006=*
+tokeninfo(#20006,6,#20001,1,"Foo")
+#20007=@"loc,{#10000},1,11,1,13"
+locations_default(#20007,#10000,1,11,1,13)
+hasLocation(#20006,#20007)
+#20008=*
+tokeninfo(#20008,7,#20001,2,"extends")
+#20009=@"loc,{#10000},1,15,1,21"
+locations_default(#20009,#10000,1,15,1,21)
+hasLocation(#20008,#20009)
+#20010=*
+tokeninfo(#20010,7,#20001,3,"import")
+#20011=@"loc,{#10000},1,23,1,28"
+locations_default(#20011,#10000,1,23,1,28)
+hasLocation(#20010,#20011)
+#20012=*
+tokeninfo(#20012,8,#20001,4,"(")
+#20013=@"loc,{#10000},1,29,1,29"
+locations_default(#20013,#10000,1,29,1,29)
+hasLocation(#20012,#20013)
+#20014=*
+tokeninfo(#20014,4,#20001,5,"""foo""")
+#20015=@"loc,{#10000},1,30,1,34"
+locations_default(#20015,#10000,1,30,1,34)
+hasLocation(#20014,#20015)
+#20016=*
+tokeninfo(#20016,8,#20001,6,")")
+#20017=@"loc,{#10000},1,35,1,35"
+locations_default(#20017,#10000,1,35,1,35)
+hasLocation(#20016,#20017)
+#20018=*
+tokeninfo(#20018,8,#20001,7,".")
+#20019=@"loc,{#10000},1,36,1,36"
+locations_default(#20019,#10000,1,36,1,36)
+hasLocation(#20018,#20019)
+#20020=*
+tokeninfo(#20020,6,#20001,8,"Bar")
+#20021=@"loc,{#10000},1,37,1,39"
+locations_default(#20021,#10000,1,37,1,39)
+hasLocation(#20020,#20021)
+#20022=*
+tokeninfo(#20022,8,#20001,9,"{")
+#20023=@"loc,{#10000},1,41,1,41"
+locations_default(#20023,#10000,1,41,1,41)
+hasLocation(#20022,#20023)
+#20024=*
+tokeninfo(#20024,8,#20001,10,"}")
+#20025=@"loc,{#10000},1,42,1,42"
+locations_default(#20025,#10000,1,42,1,42)
+hasLocation(#20024,#20025)
+#20026=*
+tokeninfo(#20026,0,#20001,11,"")
+#20027=@"loc,{#10000},2,1,2,0"
+locations_default(#20027,#10000,2,1,2,0)
+hasLocation(#20026,#20027)
+toplevels(#20001,0)
+#20028=@"loc,{#10000},1,1,2,0"
+locations_default(#20028,#10000,1,1,2,0)
+hasLocation(#20001,#20028)
+#20029=@"local_type_name;{Foo};{#20000}"
+local_type_names(#20029,"Foo",#20000)
+#20030=*
+stmts(#20030,34,#20001,0,"interfa ... .Bar {}")
+hasLocation(#20030,#20003)
+stmt_containers(#20030,#20001)
+#20031=*
+typeexprs(#20031,13,#20030,-1,"import(""foo"").Bar")
+#20032=@"loc,{#10000},1,23,1,39"
+locations_default(#20032,#10000,1,23,1,39)
+hasLocation(#20031,#20032)
+enclosing_stmt(#20031,#20030)
+expr_containers(#20031,#20001)
+#20033=*
+typeexprs(#20033,31,#20031,0,"import(""foo"")")
+#20034=@"loc,{#10000},1,23,1,35"
+locations_default(#20034,#10000,1,23,1,35)
+hasLocation(#20033,#20034)
+enclosing_stmt(#20033,#20030)
+expr_containers(#20033,#20001)
+#20035=*
+exprs(#20035,4,#20033,0,"""foo""")
+hasLocation(#20035,#20015)
+enclosing_stmt(#20035,#20030)
+expr_containers(#20035,#20001)
+literals("foo","""foo""",#20035)
+#20036=*
+regexpterm(#20036,14,#20035,0,"foo")
+#20037=@"loc,{#10000},1,31,1,33"
+locations_default(#20037,#10000,1,31,1,33)
+hasLocation(#20036,#20037)
+regexp_const_value(#20036,"foo")
+#20038=*
+typeexprs(#20038,15,#20031,1,"Bar")
+hasLocation(#20038,#20021)
+enclosing_stmt(#20038,#20030)
+expr_containers(#20038,#20001)
+literals("Bar","Bar",#20038)
+#20039=*
+typeexprs(#20039,1,#20030,0,"Foo")
+hasLocation(#20039,#20007)
+enclosing_stmt(#20039,#20030)
+expr_containers(#20039,#20001)
+literals("Foo","Foo",#20039)
+typedecl(#20039,#20029)
+#20040=*
+entry_cfg_node(#20040,#20001)
+#20041=@"loc,{#10000},1,1,1,0"
+locations_default(#20041,#10000,1,1,1,0)
+hasLocation(#20040,#20041)
+#20042=*
+exit_cfg_node(#20042,#20001)
+hasLocation(#20042,#20027)
+successor(#20030,#20042)
+successor(#20040,#20030)
+numlines(#10000,1,1,0)
+filetype(#10000,"typescript")

From 5f18484fa97a5dd32a0a424865bdbae395668560 Mon Sep 17 00:00:00 2001
From: Asger F <asgerf@github.com>
Date: Mon, 14 Nov 2022 15:09:30 +0100
Subject: [PATCH 0229/1420] JS: Change note

---
 .../src/change-notes/2022-11-14-dynamic-import-type-expr.md  | 5 +++++
 1 file changed, 5 insertions(+)
 create mode 100644 javascript/ql/src/change-notes/2022-11-14-dynamic-import-type-expr.md

diff --git a/javascript/ql/src/change-notes/2022-11-14-dynamic-import-type-expr.md b/javascript/ql/src/change-notes/2022-11-14-dynamic-import-type-expr.md
new file mode 100644
index 00000000000..5f975516620
--- /dev/null
+++ b/javascript/ql/src/change-notes/2022-11-14-dynamic-import-type-expr.md
@@ -0,0 +1,5 @@
+---
+category: fix
+---
+* Fixed a bug that would cause the extractor to crash when an `import` type is used in
+  the `extends` clause of an `interface`.

From 2bcf9b86cfa976972a16bb2d5d3452aedd7e7274 Mon Sep 17 00:00:00 2001
From: Asger F <asgerf@github.com>
Date: Mon, 14 Nov 2022 15:09:50 +0100
Subject: [PATCH 0230/1420] JS: Bump extractor version string

---
 javascript/extractor/src/com/semmle/js/extractor/Main.java | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/javascript/extractor/src/com/semmle/js/extractor/Main.java b/javascript/extractor/src/com/semmle/js/extractor/Main.java
index d03b345af59..325e9e9123d 100644
--- a/javascript/extractor/src/com/semmle/js/extractor/Main.java
+++ b/javascript/extractor/src/com/semmle/js/extractor/Main.java
@@ -41,7 +41,7 @@ public class Main {
    * A version identifier that should be updated every time the extractor changes in such a way that
    * it may produce different tuples for the same file under the same {@link ExtractorConfig}.
    */
-  public static final String EXTRACTOR_VERSION = "2022-11-08";
+  public static final String EXTRACTOR_VERSION = "2022-11-14";
 
   public static final Pattern NEWLINE = Pattern.compile("\n");
 

From 3e6eedec300bcd6b9f70961225d63704d3a0f220 Mon Sep 17 00:00:00 2001
From: Geoffrey White <40627776+geoffw0@users.noreply.github.com>
Date: Mon, 14 Nov 2022 14:42:56 +0000
Subject: [PATCH 0231/1420] Swift: Fix test output after merge.

---
 .../Security/CWE-311/CleartextTransmission.expected    | 10 +++++-----
 1 file changed, 5 insertions(+), 5 deletions(-)

diff --git a/swift/ql/test/query-tests/Security/CWE-311/CleartextTransmission.expected b/swift/ql/test/query-tests/Security/CWE-311/CleartextTransmission.expected
index 0ce9f3b10c7..3245aa68d4e 100644
--- a/swift/ql/test/query-tests/Security/CWE-311/CleartextTransmission.expected
+++ b/swift/ql/test/query-tests/Security/CWE-311/CleartextTransmission.expected
@@ -1,11 +1,11 @@
 edges
+| testAlamofire.swift:150:45:150:45 | password :  | testAlamofire.swift:150:13:150:45 | ... .+(_:_:) ... |
+| testAlamofire.swift:152:51:152:51 | password :  | testAlamofire.swift:152:19:152:51 | ... .+(_:_:) ... |
+| testAlamofire.swift:154:38:154:38 | email :  | testAlamofire.swift:154:14:154:46 | ... .+(_:_:) ... |
 | testSend.swift:5:5:5:29 | [summary param] 0 in init(_:) :  | file://:0:0:0:0 | [summary] to write: return (return) in init(_:) :  |
 | testSend.swift:33:14:33:32 | call to init(_:) :  | testSend.swift:37:19:37:19 | data2 |
 | testSend.swift:33:19:33:19 | passwordPlain :  | testSend.swift:5:5:5:29 | [summary param] 0 in init(_:) :  |
 | testSend.swift:33:19:33:19 | passwordPlain :  | testSend.swift:33:14:33:32 | call to init(_:) :  |
-| testAlamofire.swift:150:45:150:45 | password :  | testAlamofire.swift:150:13:150:45 | ... .+(_:_:) ... |
-| testAlamofire.swift:152:51:152:51 | password :  | testAlamofire.swift:152:19:152:51 | ... .+(_:_:) ... |
-| testAlamofire.swift:154:38:154:38 | email :  | testAlamofire.swift:154:14:154:46 | ... .+(_:_:) ... |
 | testSend.swift:41:10:41:18 | data :  | testSend.swift:41:45:41:45 | data :  |
 | testSend.swift:45:13:45:13 | password :  | testSend.swift:52:27:52:27 | str1 |
 | testSend.swift:46:13:46:13 | password :  | testSend.swift:53:27:53:27 | str2 |
@@ -16,13 +16,13 @@ edges
 | testURL.swift:16:55:16:55 | credit_card_no :  | testURL.swift:16:22:16:55 | ... .+(_:_:) ... |
 nodes
 | file://:0:0:0:0 | [summary] to write: return (return) in init(_:) :  | semmle.label | [summary] to write: return (return) in init(_:) :  |
-| testSend.swift:5:5:5:29 | [summary param] 0 in init(_:) :  | semmle.label | [summary param] 0 in init(_:) :  |
 | testAlamofire.swift:150:13:150:45 | ... .+(_:_:) ... | semmle.label | ... .+(_:_:) ... |
 | testAlamofire.swift:150:45:150:45 | password :  | semmle.label | password :  |
 | testAlamofire.swift:152:19:152:51 | ... .+(_:_:) ... | semmle.label | ... .+(_:_:) ... |
 | testAlamofire.swift:152:51:152:51 | password :  | semmle.label | password :  |
 | testAlamofire.swift:154:14:154:46 | ... .+(_:_:) ... | semmle.label | ... .+(_:_:) ... |
-| testAlamofire.swift:154:38:154:38 | email :  | semmle.label | email :  |=
+| testAlamofire.swift:154:38:154:38 | email :  | semmle.label | email :  |
+| testSend.swift:5:5:5:29 | [summary param] 0 in init(_:) :  | semmle.label | [summary param] 0 in init(_:) :  |
 | testSend.swift:29:19:29:19 | passwordPlain | semmle.label | passwordPlain |
 | testSend.swift:33:14:33:32 | call to init(_:) :  | semmle.label | call to init(_:) :  |
 | testSend.swift:33:19:33:19 | passwordPlain :  | semmle.label | passwordPlain :  |

From f2888dcb1e9b456470d09dd6800e9df55b7127f1 Mon Sep 17 00:00:00 2001
From: Tony Torralba <atorralba@users.noreply.github.com>
Date: Fri, 4 Nov 2022 20:16:41 +0100
Subject: [PATCH 0232/1420] Add sinks and tests for the AEXML library.

---
 .../codeql/swift/frameworks/AEXML/AEXML.qll   |  56 +++++++
 swift/ql/lib/codeql/swift/security/XXE.qll    |  71 +++++++++
 .../CWE-611/testAEXMLDocumentXXE.swift        | 148 ++++++++++++++++++
 3 files changed, 275 insertions(+)
 create mode 100644 swift/ql/lib/codeql/swift/frameworks/AEXML/AEXML.qll
 create mode 100644 swift/ql/test/query-tests/Security/CWE-611/testAEXMLDocumentXXE.swift

diff --git a/swift/ql/lib/codeql/swift/frameworks/AEXML/AEXML.qll b/swift/ql/lib/codeql/swift/frameworks/AEXML/AEXML.qll
new file mode 100644
index 00000000000..c779c8f7122
--- /dev/null
+++ b/swift/ql/lib/codeql/swift/frameworks/AEXML/AEXML.qll
@@ -0,0 +1,56 @@
+import swift
+
+/** The creation of an `AEXMLParser`. */
+class AexmlParser extends ApplyExpr {
+  AexmlParser() {
+    this.getStaticTarget().(ConstructorDecl).getEnclosingDecl() instanceof AexmlParserDecl
+  }
+}
+
+/** The creation of an `AEXMLDocument`. */
+class AexmlDocument extends ApplyExpr {
+  AexmlDocument() {
+    this.getStaticTarget().(ConstructorDecl).getEnclosingDecl() instanceof AexmlDocumentDecl
+  }
+}
+
+/** A call to `AEXMLDocument.loadXML(_:)`. */
+class AexmlDocumentLoadXml extends MethodApplyExpr {
+  AexmlDocumentLoadXml() {
+    exists(MethodDecl f |
+      this.getStaticTarget() = f and
+      f.hasName("loadXML(_:)") and
+      f.getEnclosingDecl() instanceof AexmlDocumentDecl
+    )
+  }
+}
+
+/** The class `AEXMLParser`. */
+class AexmlParserDecl extends ClassDecl {
+  AexmlParserDecl() { this.getFullName() = "AEXMLParser" }
+}
+
+/** The class `AEXMLDocument`. */
+class AexmlDocumentDecl extends ClassDecl {
+  AexmlDocumentDecl() { this.getFullName() = "AEXMLDocument" }
+}
+
+/** A reference to the field `AEXMLOptions.ParserSettings.shouldResolveExternalEntities`. */
+class AexmlShouldResolveExternalEntities extends MemberRefExpr {
+  AexmlShouldResolveExternalEntities() {
+    exists(FieldDecl f | this.getMember() = f |
+      f.getName() = "shouldResolveExternalEntities" and
+      f.getEnclosingDecl().(NominalTypeDecl).getType() instanceof AexmlOptionsParserSettingsType
+    )
+  }
+}
+
+/** The type `AEXMLOptions`. */
+class AexmlOptionsType extends StructType {
+  AexmlOptionsType() { this.getFullName() = "AEXMLOptions" }
+}
+
+/** The type `AEXMLOptions.ParserSettings`. */
+class AexmlOptionsParserSettingsType extends StructType {
+  AexmlOptionsParserSettingsType() { this.getFullName() = "AEXMLOptions.ParserSettings" }
+}
diff --git a/swift/ql/lib/codeql/swift/security/XXE.qll b/swift/ql/lib/codeql/swift/security/XXE.qll
index da8513be645..cc102a34ff0 100644
--- a/swift/ql/lib/codeql/swift/security/XXE.qll
+++ b/swift/ql/lib/codeql/swift/security/XXE.qll
@@ -2,6 +2,7 @@
 
 import swift
 private import codeql.swift.dataflow.DataFlow
+private import codeql.swift.frameworks.AEXML.AEXML
 
 /** A data flow sink for XML external entities (XXE) vulnerabilities. */
 abstract class XxeSink extends DataFlow::Node { }
@@ -90,3 +91,73 @@ private class NodeLoadExternalEntitiesAlways extends VarDecl {
     this.getEnclosingDecl().(StructDecl).getFullName() = "XMLNode.Options"
   }
 }
+
+/** The XML argument of an `AEXMLDocument` vulnerable to XXE. */
+private class AexmlDocumentSink extends XxeSink {
+  AexmlDocumentSink() {
+    // `AEXMLDocument` initialized with vulnerable options.
+    exists(ApplyExpr call | this.asExpr() = call.getArgument(0).getExpr() |
+      call.(VulnerableAexmlDocument)
+          .getStaticTarget()
+          .hasName(["init(xml:options:)", "init(xml:encoding:options:)"])
+      or
+      // `loadXML` called on a vulnerable AEXMLDocument.
+      DataFlow::localExprFlow(any(VulnerableAexmlDocument v),
+        call.(AexmlDocumentLoadXml).getQualifier())
+    )
+  }
+}
+
+/** The XML argument of an `AEXMLParser` initialized with an `AEXMLDocument` vulnerable to XXE. */
+private class AexmlParserSink extends XxeSink {
+  AexmlParserSink() {
+    exists(AexmlParser parser | this.asExpr() = parser.getArgument(1).getExpr() |
+      DataFlow::localExprFlow(any(VulnerableAexmlDocument v), parser.getArgument(0).getExpr())
+    )
+  }
+}
+
+/** The creation of an `AEXMLDocument` that receives a vulnerable `AEXMLOptions` argument. */
+private class VulnerableAexmlDocument extends AexmlDocument {
+  VulnerableAexmlDocument() {
+    exists(AexmlOptions optionsArgument, VulnerableAexmlOptions vulnOpts |
+      this.getAnArgument().getExpr() = optionsArgument and
+      DataFlow::localExprFlow(vulnOpts, optionsArgument)
+    )
+  }
+}
+
+/**
+ * An `AEXMLOptions` object which contains a `parserSettings` with `shouldResolveExternalEntities`
+ * set to `true`.
+ */
+private class VulnerableAexmlOptions extends AexmlOptions {
+  VulnerableAexmlOptions() {
+    exists(ParserSettings parserSettings, AexmlShouldResolveExternalEntities sree, AssignExpr a |
+      a.getSource() = any(BooleanLiteralExpr b | b.getValue() = true) and
+      a.getDest() = sree and
+      sree.(MemberRefExpr).getBase() = parserSettings and
+      parserSettings.(MemberRefExpr).getBase() = this
+    )
+  }
+}
+
+/** An expression of type `AEXMLOptions.ParserSettings`. */
+class ParserSettings extends Expr {
+  pragma[inline]
+  ParserSettings() {
+    this.getType() instanceof AexmlOptionsParserSettingsType or
+    this.getType() = any(OptionalType t | t.getBaseType() instanceof AexmlOptionsParserSettingsType) or
+    this.getType() = any(LValueType t | t.getObjectType() instanceof AexmlOptionsParserSettingsType)
+  }
+}
+
+/** An expression of type `AEXMLOptions`. */
+class AexmlOptions extends Expr {
+  pragma[inline]
+  AexmlOptions() {
+    this.getType() instanceof AexmlOptionsType or
+    this.getType() = any(OptionalType t | t.getBaseType() instanceof AexmlOptionsType) or
+    this.getType() = any(LValueType t | t.getObjectType() instanceof AexmlOptionsType)
+  }
+}
diff --git a/swift/ql/test/query-tests/Security/CWE-611/testAEXMLDocumentXXE.swift b/swift/ql/test/query-tests/Security/CWE-611/testAEXMLDocumentXXE.swift
new file mode 100644
index 00000000000..9f337030158
--- /dev/null
+++ b/swift/ql/test/query-tests/Security/CWE-611/testAEXMLDocumentXXE.swift
@@ -0,0 +1,148 @@
+// --- stubs ---
+
+class Data {
+    init<S>(_ elements: S) {}
+}
+
+struct URL {
+	init?(string: String) {}
+}
+
+extension String {
+    struct Encoding: Hashable {
+        let rawValue: UInt
+        static let utf8 = String.Encoding(rawValue: 1)
+    }
+
+	init(contentsOf: URL) {
+        let data = ""
+        self.init(data)
+    }
+}
+
+class AEXMLElement {}
+
+struct AEXMLOptions {
+    var parserSettings = ParserSettings()
+
+    struct ParserSettings {
+        public var shouldResolveExternalEntities = false
+    }
+}
+
+class AEXMLDocument {
+    init(root: AEXMLElement? = nil, options: AEXMLOptions) {}
+    init(xml: Data, options: AEXMLOptions = AEXMLOptions()) {}
+    init(xml: String, encoding: String.Encoding, options: AEXMLOptions) {}
+    func loadXML(_: Data) {}
+}
+
+class AEXMLParser {
+    init(document: AEXMLDocument, data: Data) {}
+}
+
+// --- tests ---
+
+func testString() {
+    var options = AEXMLOptions()
+    options.parserSettings.shouldResolveExternalEntities = true
+
+    let remoteString = String(contentsOf: URL(string: "http://example.com/")!)
+    let _ = AEXMLDocument(xml: remoteString, encoding: String.Encoding.utf8, options: options) // $ hasXXE=50
+}
+
+func testStringSafeImplicit() {
+    var options = AEXMLOptions()
+
+    let remoteString = String(contentsOf: URL(string: "http://example.com/")!)
+    let _ = AEXMLDocument(xml: remoteString, encoding: String.Encoding.utf8, options: options) // NO XXE
+}
+
+func testStringSafeExplicit() {
+    var options = AEXMLOptions()
+    options.parserSettings.shouldResolveExternalEntities = false
+
+    let remoteString = String(contentsOf: URL(string: "http://example.com/")!)
+    let _ = AEXMLDocument(xml: remoteString, encoding: String.Encoding.utf8, options: options) // NO XXE
+}
+
+func testData() {
+    let remoteString = String(contentsOf: URL(string: "http://example.com/")!)
+    let remoteData = Data(remoteString)
+    var options = AEXMLOptions()
+    options.parserSettings.shouldResolveExternalEntities = true
+    let _ = AEXMLDocument(xml: remoteData, options: options) // $ hasXXE=70
+}
+
+func testDataSafeImplicit() {
+    let remoteString = String(contentsOf: URL(string: "http://example.com/")!)
+    let remoteData = Data(remoteString)
+    var options = AEXMLOptions()
+    let _ = AEXMLDocument(xml: remoteData, options: options) // NO XXE
+}
+
+func testDataSafeExplicit() {
+    let remoteString = String(contentsOf: URL(string: "http://example.com/")!)
+    let remoteData = Data(remoteString)
+    var options = AEXMLOptions()
+    options.parserSettings.shouldResolveExternalEntities = false
+    let _ = AEXMLDocument(xml: remoteData, options: options) // NO XXE
+}
+
+func testDataLoadXml() {
+    var options = AEXMLOptions()
+    options.parserSettings.shouldResolveExternalEntities = true
+    let doc = AEXMLDocument(root: nil, options: options)
+
+    let remoteString = String(contentsOf: URL(string: "http://example.com/")!)
+    let remoteData = Data(remoteString)
+    doc.loadXML(remoteData) // $ hasXXE=97
+}
+
+func testDataLoadXmlSafeImplicit() {
+    var options = AEXMLOptions()
+    let doc = AEXMLDocument(root: nil, options: options)
+
+    let remoteString = String(contentsOf: URL(string: "http://example.com/")!)
+    let remoteData = Data(remoteString)
+    doc.loadXML(remoteData) // NO XXE
+}
+
+func testDataLoadXmlSafeExplicit() {
+    var options = AEXMLOptions()
+    options.parserSettings.shouldResolveExternalEntities = false
+    let doc = AEXMLDocument(root: nil, options: options)
+
+    let remoteString = String(contentsOf: URL(string: "http://example.com/")!)
+    let remoteData = Data(remoteString)
+    doc.loadXML(remoteData) // NO XXE
+}
+
+func testParser() {
+    var options = AEXMLOptions()
+    options.parserSettings.shouldResolveExternalEntities = true
+    let doc = AEXMLDocument(root: nil, options: options)
+
+    let remoteString = String(contentsOf: URL(string: "http://example.com/")!)
+    let remoteData = Data(remoteString)
+    let _ = AEXMLParser(document: doc, data: remoteData) // $ hasXXE=126
+}
+
+func testParserSafeImplicit() {
+    var options = AEXMLOptions()
+    let doc = AEXMLDocument(root: nil, options: options)
+
+    let remoteString = String(contentsOf: URL(string: "http://example.com/")!)
+    let remoteData = Data(remoteString)
+    let _ = AEXMLParser(document: doc, data: remoteData) // NO XXE
+}
+
+func testParserSafeExplicit() {
+    var options = AEXMLOptions()
+    options.parserSettings.shouldResolveExternalEntities = false
+    let doc = AEXMLDocument(root: nil, options: options)
+
+    let remoteString = String(contentsOf: URL(string: "http://example.com/")!)
+    let remoteData = Data(remoteString)
+    let _ = AEXMLParser(document: doc, data: remoteData) // NO XXE
+}
\ No newline at end of file

From 07de92cdb6d93b9b052639208e7065bab3ba9319 Mon Sep 17 00:00:00 2001
From: Tony Torralba <atorralba@users.noreply.github.com>
Date: Mon, 7 Nov 2022 17:09:18 +0100
Subject: [PATCH 0233/1420] Move AEXML.qll to avoid nesting

---
 swift/ql/lib/codeql/swift/frameworks/{AEXML => }/AEXML.qll | 0
 swift/ql/lib/codeql/swift/security/XXE.qll                 | 2 +-
 2 files changed, 1 insertion(+), 1 deletion(-)
 rename swift/ql/lib/codeql/swift/frameworks/{AEXML => }/AEXML.qll (100%)

diff --git a/swift/ql/lib/codeql/swift/frameworks/AEXML/AEXML.qll b/swift/ql/lib/codeql/swift/frameworks/AEXML.qll
similarity index 100%
rename from swift/ql/lib/codeql/swift/frameworks/AEXML/AEXML.qll
rename to swift/ql/lib/codeql/swift/frameworks/AEXML.qll
diff --git a/swift/ql/lib/codeql/swift/security/XXE.qll b/swift/ql/lib/codeql/swift/security/XXE.qll
index cc102a34ff0..eeb6170a7c7 100644
--- a/swift/ql/lib/codeql/swift/security/XXE.qll
+++ b/swift/ql/lib/codeql/swift/security/XXE.qll
@@ -2,7 +2,7 @@
 
 import swift
 private import codeql.swift.dataflow.DataFlow
-private import codeql.swift.frameworks.AEXML.AEXML
+private import codeql.swift.frameworks.AEXML
 
 /** A data flow sink for XML external entities (XXE) vulnerabilities. */
 abstract class XxeSink extends DataFlow::Node { }

From 5791e8b9a2650a6e674a1db02503c1275b61486a Mon Sep 17 00:00:00 2001
From: Tony Torralba <atorralba@users.noreply.github.com>
Date: Tue, 8 Nov 2022 10:31:49 +0100
Subject: [PATCH 0234/1420] Slight renaming

---
 swift/ql/lib/codeql/swift/security/XXE.qll | 10 ++++++----
 1 file changed, 6 insertions(+), 4 deletions(-)

diff --git a/swift/ql/lib/codeql/swift/security/XXE.qll b/swift/ql/lib/codeql/swift/security/XXE.qll
index eeb6170a7c7..5f80426fa56 100644
--- a/swift/ql/lib/codeql/swift/security/XXE.qll
+++ b/swift/ql/lib/codeql/swift/security/XXE.qll
@@ -133,7 +133,9 @@ private class VulnerableAexmlDocument extends AexmlDocument {
  */
 private class VulnerableAexmlOptions extends AexmlOptions {
   VulnerableAexmlOptions() {
-    exists(ParserSettings parserSettings, AexmlShouldResolveExternalEntities sree, AssignExpr a |
+    exists(
+      AexmlParserSettings parserSettings, AexmlShouldResolveExternalEntities sree, AssignExpr a
+    |
       a.getSource() = any(BooleanLiteralExpr b | b.getValue() = true) and
       a.getDest() = sree and
       sree.(MemberRefExpr).getBase() = parserSettings and
@@ -143,9 +145,9 @@ private class VulnerableAexmlOptions extends AexmlOptions {
 }
 
 /** An expression of type `AEXMLOptions.ParserSettings`. */
-class ParserSettings extends Expr {
+private class AexmlParserSettings extends Expr {
   pragma[inline]
-  ParserSettings() {
+  AexmlParserSettings() {
     this.getType() instanceof AexmlOptionsParserSettingsType or
     this.getType() = any(OptionalType t | t.getBaseType() instanceof AexmlOptionsParserSettingsType) or
     this.getType() = any(LValueType t | t.getObjectType() instanceof AexmlOptionsParserSettingsType)
@@ -153,7 +155,7 @@ class ParserSettings extends Expr {
 }
 
 /** An expression of type `AEXMLOptions`. */
-class AexmlOptions extends Expr {
+private class AexmlOptions extends Expr {
   pragma[inline]
   AexmlOptions() {
     this.getType() instanceof AexmlOptionsType or

From 7e5970f338aba1e089d0c7c8444dd537d2ac0917 Mon Sep 17 00:00:00 2001
From: Edward Minnix III <egregius313@github.com>
Date: Mon, 14 Nov 2022 10:02:20 -0500
Subject: [PATCH 0235/1420] Java: Fix typos/formatting in setJavascriptEnabled
 query

Typos and formatting changes.

Co-authored-by: Tony Torralba <atorralba@users.noreply.github.com>
---
 .../AndroidWebViewSettingsEnabledJavaScript.qhelp      | 10 +++++-----
 .../CWE-079/AndroidWebViewSettingsEnabledJavaScript.ql |  6 ++----
 2 files changed, 7 insertions(+), 9 deletions(-)

diff --git a/java/ql/src/Security/CWE/CWE-079/AndroidWebViewSettingsEnabledJavaScript.qhelp b/java/ql/src/Security/CWE/CWE-079/AndroidWebViewSettingsEnabledJavaScript.qhelp
index c10856588c6..14c465b0664 100644
--- a/java/ql/src/Security/CWE/CWE-079/AndroidWebViewSettingsEnabledJavaScript.qhelp
+++ b/java/ql/src/Security/CWE/CWE-079/AndroidWebViewSettingsEnabledJavaScript.qhelp
@@ -11,22 +11,22 @@ man-in-the-middle attack, where the attacker can inject arbitrary JavaScript.
 
 <p>
   You can enable or disbale Javascript execution using
-  the <code>setJavaScriptEnabled</code> method of the settings of a webview.
+  the <code>setJavaScriptEnabled</code> method of the settings of a WebView.
 </p>
   </overview>
 
   <recommendation>
-    <p>If Javascript does not need to be enabled, call <code>setJavaScriptEnabled(false)</code> on the settings of the webview.</p>
+    <p>If Javascript does not need to be enabled, call <code>setJavaScriptEnabled(false)</code> on the settings of the WebView.</p>
 
-    <p>If JavaScript is necessary, only load content from trusted servers using encrypted channels, such as https with certificate verification.</p>
+    <p>If JavaScript is necessary, only load content from trusted servers using encrypted channels, such as HTTPS with certificate verification.</p>
   </recommendation>
 
   <example>
-    <p>In the following (bad) example, a webview has JavaScript enabled in its settings.</p>
+    <p>In the following (bad) example, a WebView has JavaScript enabled in its settings.</p>
 
     <sample src="WebSettingsEnableJavascript.java"/>
 
-    <p>In the following (good) example, a webview explicitly disallows JavaScript execution.</p>
+    <p>In the following (good) example, a WebView explicitly disallows JavaScript execution.</p>
 
     <sample src="WebSettingsDisableJavascript.java"/>
 
diff --git a/java/ql/src/Security/CWE/CWE-079/AndroidWebViewSettingsEnabledJavaScript.ql b/java/ql/src/Security/CWE/CWE-079/AndroidWebViewSettingsEnabledJavaScript.ql
index 409ab786791..a12f57618ec 100644
--- a/java/ql/src/Security/CWE/CWE-079/AndroidWebViewSettingsEnabledJavaScript.ql
+++ b/java/ql/src/Security/CWE/CWE-079/AndroidWebViewSettingsEnabledJavaScript.ql
@@ -15,8 +15,6 @@ import semmle.code.java.frameworks.android.WebView
 
 from MethodAccess ma
 where
-  (
-    ma.getMethod() instanceof AllowJavaScriptMethod and
-    ma.getArgument(0).(CompileTimeConstantExpr).getBooleanValue() = true
-  )
+  ma.getMethod() instanceof AllowJavaScriptMethod and
+  ma.getArgument(0).(CompileTimeConstantExpr).getBooleanValue() = true
 select ma, "JavaScript execution enabled in WebView."

From 55fad8ab23b11d0def8ce554cb0e220c57b644c5 Mon Sep 17 00:00:00 2001
From: Edward Minnix III <egregius313@github.com>
Date: Mon, 14 Nov 2022 10:04:01 -0500
Subject: [PATCH 0236/1420] Java: Fix description of setJavascriptEnabled query

Co-authored-by: Tony Torralba <atorralba@users.noreply.github.com>
---
 .../CWE/CWE-079/AndroidWebViewSettingsEnabledJavaScript.ql      | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/java/ql/src/Security/CWE/CWE-079/AndroidWebViewSettingsEnabledJavaScript.ql b/java/ql/src/Security/CWE/CWE-079/AndroidWebViewSettingsEnabledJavaScript.ql
index a12f57618ec..5ed884610b0 100644
--- a/java/ql/src/Security/CWE/CWE-079/AndroidWebViewSettingsEnabledJavaScript.ql
+++ b/java/ql/src/Security/CWE/CWE-079/AndroidWebViewSettingsEnabledJavaScript.ql
@@ -1,6 +1,6 @@
 /**
  * @name Android WebView JavaScript settings
- * @description Enabling JavaScript execution in a WebView can result in man-in-the-middle attacks.
+ * @description Enabling JavaScript execution in a WebView can result in cross-site scripting attacks.
  * @kind problem
  * @id java/android-websettings-javascript-enabled
  * @problem.severity warning

From a7e7334f0f711ff96043dec1145c4d5377cc353e Mon Sep 17 00:00:00 2001
From: Ed Minnix <egregius313@github.com>
Date: Mon, 14 Nov 2022 11:10:43 -0500
Subject: [PATCH 0237/1420] Java: Documentation cleanup for
 setJavascriptEnabled

---
 ...roidWebViewSettingsEnabledJavaScript.qhelp | 28 ++++++++++---------
 1 file changed, 15 insertions(+), 13 deletions(-)

diff --git a/java/ql/src/Security/CWE/CWE-079/AndroidWebViewSettingsEnabledJavaScript.qhelp b/java/ql/src/Security/CWE/CWE-079/AndroidWebViewSettingsEnabledJavaScript.qhelp
index 14c465b0664..077e80700b9 100644
--- a/java/ql/src/Security/CWE/CWE-079/AndroidWebViewSettingsEnabledJavaScript.qhelp
+++ b/java/ql/src/Security/CWE/CWE-079/AndroidWebViewSettingsEnabledJavaScript.qhelp
@@ -3,16 +3,22 @@
  "qhelp.dtd">
 <qhelp>
   <overview>
-<p>
-  Enabling JavaScript in an Android WebView allows for the running of JavaScript
-code in the context of the running application. This opens the possibility for a
-man-in-the-middle attack, where the attacker can inject arbitrary JavaScript.
-</p>
+    <p>
+      Enabling JavaScript in an Android WebView allows for the running of JavaScript
+      code in the context of the running application. This opens the possibility for
+      cross-site scripting if the attacker can inject arbitrary JavaScript.
+    </p>
 
-<p>
-  You can enable or disbale Javascript execution using
-  the <code>setJavaScriptEnabled</code> method of the settings of a WebView.
-</p>
+    <p>
+      For example, if your application's WebView allows for visitng web pages
+      which you do not trust, it is possible for an attacker to lead the user to
+      a page which loads malicious JavaScript.
+    </p>
+
+    <p>
+      You can enable or disbale Javascript execution using
+      the <code>setJavaScriptEnabled</code> method of the settings of a WebView.
+    </p>
   </overview>
 
   <recommendation>
@@ -33,13 +39,9 @@ man-in-the-middle attack, where the attacker can inject arbitrary JavaScript.
   </example>
 
   <references>
-    <li>
-      Oversecured Android Vulnerabilities Guide: <a href="https://oversecured.com/vulnerabilities#Android/Enabled_JavaScript">Enabled JavaScript</a>
-    </li>
     <li>
       Android documentation: <a href="https://developer.android.com/reference/android/webkit/WebSettings#setJavaScriptEnabled(boolean)">setJavaScriptEnabled</a>
     </li>
-
   </references>
 
 </qhelp>

From 324e0e8f9030fa0675f31ce497c5a91b481e12d5 Mon Sep 17 00:00:00 2001
From: erik-krogh <erik-krogh@github.com>
Date: Mon, 14 Nov 2022 17:33:48 +0100
Subject: [PATCH 0238/1420] always sort both by location and by term tostring

---
 shared/regex/codeql/regex/nfa/NfaUtils.qll | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/shared/regex/codeql/regex/nfa/NfaUtils.qll b/shared/regex/codeql/regex/nfa/NfaUtils.qll
index b3be9c73bfd..cb5091c40aa 100644
--- a/shared/regex/codeql/regex/nfa/NfaUtils.qll
+++ b/shared/regex/codeql/regex/nfa/NfaUtils.qll
@@ -166,7 +166,7 @@ module Make<RegexTreeViewSig TreeImpl> {
       min(RelevantRegExpTerm t |
         str = getCanonicalizationString(t)
       |
-        t order by getTermLocationString(t)
+        t order by getTermLocationString(t), t.toString()
       )
   }
 
@@ -949,7 +949,7 @@ module Make<RegexTreeViewSig TreeImpl> {
             isStartState(s) and
             getRoot(s.getRepr()) = root
           |
-            s order by getTermLocationString(s.getRepr())
+            s order by getTermLocationString(s.getRepr()), s.getRepr().toString()
           )
       )
     }
@@ -1047,7 +1047,7 @@ module Make<RegexTreeViewSig TreeImpl> {
             isCandidate(s, _) and
             s.getRepr() instanceof InfiniteRepetitionQuantifier
           |
-            s order by getTermLocationString(s.getRepr())
+            s order by getTermLocationString(s.getRepr()), s.getRepr().toString()
           )
       )
     }

From 99636ba3445e204696e9e25956a3a12d62973dfa Mon Sep 17 00:00:00 2001
From: Erik Krogh Kristensen <erik-krogh@github.com>
Date: Mon, 14 Nov 2022 17:35:55 +0100
Subject: [PATCH 0239/1420] fix typo

Co-authored-by: yoff <lerchedahl@gmail.com>
---
 python/ql/lib/semmle/python/RegexTreeView.qll | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/python/ql/lib/semmle/python/RegexTreeView.qll b/python/ql/lib/semmle/python/RegexTreeView.qll
index 4af5ca19523..9ef211d53b0 100644
--- a/python/ql/lib/semmle/python/RegexTreeView.qll
+++ b/python/ql/lib/semmle/python/RegexTreeView.qll
@@ -82,7 +82,7 @@ private RegExpTerm seqChild(Regex re, int start, int end, int i) {
   )
 }
 
-/** An implementation that statisfies the RegexTreeView signature. */
+/** An implementation that satisfies the RegexTreeView signature. */
 module Impl implements RegexTreeViewSig {
   /**
    * An element containing a regular expression term, that is, either

From 113257262055ffdaa6191bb92cab839a7f17280f Mon Sep 17 00:00:00 2001
From: Ed Minnix <egregius313@github.com>
Date: Mon, 14 Nov 2022 14:33:12 -0500
Subject: [PATCH 0240/1420] Java: add test cases for setJavaScriptEnabled query

---
 .../semmle/tests/SetJavascriptEnabled.java     | 18 ++++++++++++++++++
 .../tests/WebViewSetEnabledJavaScript.expected |  1 +
 .../tests/WebViewSetEnabledJavaScript.qlref    |  1 +
 .../security/CWE-079/semmle/tests/options      |  2 +-
 4 files changed, 21 insertions(+), 1 deletion(-)
 create mode 100644 java/ql/test/query-tests/security/CWE-079/semmle/tests/SetJavascriptEnabled.java
 create mode 100644 java/ql/test/query-tests/security/CWE-079/semmle/tests/WebViewSetEnabledJavaScript.expected
 create mode 100644 java/ql/test/query-tests/security/CWE-079/semmle/tests/WebViewSetEnabledJavaScript.qlref

diff --git a/java/ql/test/query-tests/security/CWE-079/semmle/tests/SetJavascriptEnabled.java b/java/ql/test/query-tests/security/CWE-079/semmle/tests/SetJavascriptEnabled.java
new file mode 100644
index 00000000000..d5593e38678
--- /dev/null
+++ b/java/ql/test/query-tests/security/CWE-079/semmle/tests/SetJavascriptEnabled.java
@@ -0,0 +1,18 @@
+package com.example.test;
+
+import android.webkit.WebView;
+import android.webkit.WebSettings;
+
+public class SetJavascriptEnabled {
+    public static void configureWebViewUnsafe(WebView view) {
+        WebSettings settings = view.getSettings();
+        settings.setJavaScriptEnabled(true); // $javascriptEnabled
+    }
+
+    public static void configureWebViewSafe(WebView view) {
+        WebSettings settings = view.getSettings();
+
+        // Safe: Javascript disabled
+        settings.setJavaScriptEnabled(false);
+    }
+}
diff --git a/java/ql/test/query-tests/security/CWE-079/semmle/tests/WebViewSetEnabledJavaScript.expected b/java/ql/test/query-tests/security/CWE-079/semmle/tests/WebViewSetEnabledJavaScript.expected
new file mode 100644
index 00000000000..22cb40574f4
--- /dev/null
+++ b/java/ql/test/query-tests/security/CWE-079/semmle/tests/WebViewSetEnabledJavaScript.expected
@@ -0,0 +1 @@
+| SetJavascriptEnabled.java:9:9:9:43 | setJavaScriptEnabled(...) | JavaScript execution enabled in WebView. |
diff --git a/java/ql/test/query-tests/security/CWE-079/semmle/tests/WebViewSetEnabledJavaScript.qlref b/java/ql/test/query-tests/security/CWE-079/semmle/tests/WebViewSetEnabledJavaScript.qlref
new file mode 100644
index 00000000000..e9e8006886d
--- /dev/null
+++ b/java/ql/test/query-tests/security/CWE-079/semmle/tests/WebViewSetEnabledJavaScript.qlref
@@ -0,0 +1 @@
+Security/CWE/CWE-079/AndroidWebViewSettingsEnabledJavaScript.ql
diff --git a/java/ql/test/query-tests/security/CWE-079/semmle/tests/options b/java/ql/test/query-tests/security/CWE-079/semmle/tests/options
index 22487fb2daf..62fc56e6792 100644
--- a/java/ql/test/query-tests/security/CWE-079/semmle/tests/options
+++ b/java/ql/test/query-tests/security/CWE-079/semmle/tests/options
@@ -1 +1 @@
-//semmle-extractor-options: --javac-args -cp ${testdir}/../../../../../stubs/servlet-api-2.4:${testdir}/../../../../../stubs/javax-ws-rs-api-2.1.1/:${testdir}/../../../../../stubs/springframework-5.3.8:${testdir}/../../../../../stubs/javax-faces-2.3/
+//semmle-extractor-options: --javac-args -cp ${testdir}/../../../../../stubs/servlet-api-2.4:${testdir}/../../../../../stubs/javax-ws-rs-api-2.1.1/:${testdir}/../../../../../stubs/springframework-5.3.8:${testdir}/../../../../../stubs/javax-faces-2.3/:${testdir}/../../../../../stubs/google-android-9.0.0

From 89411a1db25ec151ebca387f7d41bd2a8d639bab Mon Sep 17 00:00:00 2001
From: Ed Minnix <egregius313@github.com>
Date: Mon, 14 Nov 2022 14:41:06 -0500
Subject: [PATCH 0241/1420] Fix alert message style

---
 .../Security/CWE/CWE-200/AndroidWebViewSettingsFileAccess.ql   | 3 +--
 1 file changed, 1 insertion(+), 2 deletions(-)

diff --git a/java/ql/src/Security/CWE/CWE-200/AndroidWebViewSettingsFileAccess.ql b/java/ql/src/Security/CWE/CWE-200/AndroidWebViewSettingsFileAccess.ql
index c705ac52425..b57fc4ad816 100644
--- a/java/ql/src/Security/CWE/CWE-200/AndroidWebViewSettingsFileAccess.ql
+++ b/java/ql/src/Security/CWE/CWE-200/AndroidWebViewSettingsFileAccess.ql
@@ -15,5 +15,4 @@ import semmle.code.java.frameworks.android.WebView
 
 from MethodAccess ma
 where ma.getMethod() instanceof CrossOriginAccessMethod
-select ma, "WebView setting $@ may allow for unauthorized access of sensitive information.", ma,
-  ma.getMethod().getName()
+select ma, "WebView setting " + ma.getMethod().getName() + " may allow for unauthorized access of sensitive information."

From 73d6360eee6ac4733e75d9d67275c2234df1ad3f Mon Sep 17 00:00:00 2001
From: Ed Minnix <egregius313@github.com>
Date: Mon, 14 Nov 2022 15:07:09 -0500
Subject: [PATCH 0242/1420] Java: add setAllowFileAccess to
 CrossOriginAccessMethod in WebView.qll

Local file access is enabled using the `WebSettings#setAllowFileAccess`
method.
---
 java/ql/lib/semmle/code/java/frameworks/android/WebView.qll | 5 ++++-
 1 file changed, 4 insertions(+), 1 deletion(-)

diff --git a/java/ql/lib/semmle/code/java/frameworks/android/WebView.qll b/java/ql/lib/semmle/code/java/frameworks/android/WebView.qll
index 8dd91f73f65..b514ca94be7 100644
--- a/java/ql/lib/semmle/code/java/frameworks/android/WebView.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/android/WebView.qll
@@ -45,7 +45,10 @@ class WebViewGetUrlMethod extends Method {
 class CrossOriginAccessMethod extends Method {
   CrossOriginAccessMethod() {
     this.getDeclaringType() instanceof TypeWebSettings and
-    this.hasName(["setAllowUniversalAccessFromFileURLs", "setAllowFileAccessFromFileURLs"])
+    this.hasName([
+        "setAllowFileAccess", "setAllowUniversalAccessFromFileURLs",
+        "setAllowFileAccessFromFileURLs"
+      ])
   }
 }
 

From 7a0544d80e2772f1f87bc13f6f049460ef98569b Mon Sep 17 00:00:00 2001
From: Ed Minnix <egregius313@github.com>
Date: Mon, 14 Nov 2022 15:11:15 -0500
Subject: [PATCH 0243/1420] Java: test files for WebView file access query

---
 .../semmle/tests/WebViewFileAccess.expected        |  3 +++
 .../CWE-200/semmle/tests/WebViewFileAccess.java    | 14 ++++++++++++++
 .../CWE-200/semmle/tests/WebViewFileAccess.qlref   |  1 +
 .../security/CWE-200/semmle/tests/options          |  2 +-
 4 files changed, 19 insertions(+), 1 deletion(-)
 create mode 100644 java/ql/test/query-tests/security/CWE-200/semmle/tests/WebViewFileAccess.expected
 create mode 100644 java/ql/test/query-tests/security/CWE-200/semmle/tests/WebViewFileAccess.java
 create mode 100644 java/ql/test/query-tests/security/CWE-200/semmle/tests/WebViewFileAccess.qlref

diff --git a/java/ql/test/query-tests/security/CWE-200/semmle/tests/WebViewFileAccess.expected b/java/ql/test/query-tests/security/CWE-200/semmle/tests/WebViewFileAccess.expected
new file mode 100644
index 00000000000..78cf64f9aa5
--- /dev/null
+++ b/java/ql/test/query-tests/security/CWE-200/semmle/tests/WebViewFileAccess.expected
@@ -0,0 +1,3 @@
+| WebViewFileAccess.java:8:9:8:41 | setAllowFileAccess(...) | WebView setting setAllowFileAccess may allow for unauthorized access of sensitive information. |
+| WebViewFileAccess.java:10:9:10:53 | setAllowFileAccessFromFileURLs(...) | WebView setting setAllowFileAccessFromFileURLs may allow for unauthorized access of sensitive information. |
+| WebViewFileAccess.java:12:9:12:58 | setAllowUniversalAccessFromFileURLs(...) | WebView setting setAllowUniversalAccessFromFileURLs may allow for unauthorized access of sensitive information. |
\ No newline at end of file
diff --git a/java/ql/test/query-tests/security/CWE-200/semmle/tests/WebViewFileAccess.java b/java/ql/test/query-tests/security/CWE-200/semmle/tests/WebViewFileAccess.java
new file mode 100644
index 00000000000..8599f6a4e3a
--- /dev/null
+++ b/java/ql/test/query-tests/security/CWE-200/semmle/tests/WebViewFileAccess.java
@@ -0,0 +1,14 @@
+import android.webkit.WebView;
+import android.webkit.WebSettings;
+
+class WebViewFileAccess {
+    void configure(WebView view) {
+        WebSettings settings = view.getSettings();
+
+        settings.setAllowFileAccess(true);
+
+        settings.setAllowFileAccessFromFileURLs(true);
+
+        settings.setAllowUniversalAccessFromFileURLs(true);
+    }
+}
diff --git a/java/ql/test/query-tests/security/CWE-200/semmle/tests/WebViewFileAccess.qlref b/java/ql/test/query-tests/security/CWE-200/semmle/tests/WebViewFileAccess.qlref
new file mode 100644
index 00000000000..6c3224a4a61
--- /dev/null
+++ b/java/ql/test/query-tests/security/CWE-200/semmle/tests/WebViewFileAccess.qlref
@@ -0,0 +1 @@
+Security/CWE/CWE-200/AndroidWebViewSettingsFileAccess.ql
diff --git a/java/ql/test/query-tests/security/CWE-200/semmle/tests/options b/java/ql/test/query-tests/security/CWE-200/semmle/tests/options
index 8b14bf08cd2..21cf6382c4e 100644
--- a/java/ql/test/query-tests/security/CWE-200/semmle/tests/options
+++ b/java/ql/test/query-tests/security/CWE-200/semmle/tests/options
@@ -1 +1 @@
-//semmle-extractor-options: --javac-args -cp ${testdir}/../../../../../stubs/apache-commons-lang3-3.7/
\ No newline at end of file
+//semmle-extractor-options: --javac-args -cp ${testdir}/../../../../../stubs/apache-commons-lang3-3.7/:${testdir}/../../../../../stubs/google-android-9.0.0
\ No newline at end of file

From 2fb95368475991aa4aaf2d86f9c44b988c887b53 Mon Sep 17 00:00:00 2001
From: Ed Minnix <egregius313@github.com>
Date: Mon, 14 Nov 2022 15:14:09 -0500
Subject: [PATCH 0244/1420] Java: documentation cleanup for WebView file access
 query

---
 .../AndroidWebViewSettingsFileAccess.qhelp       | 16 ++--------------
 1 file changed, 2 insertions(+), 14 deletions(-)

diff --git a/java/ql/src/Security/CWE/CWE-200/AndroidWebViewSettingsFileAccess.qhelp b/java/ql/src/Security/CWE/CWE-200/AndroidWebViewSettingsFileAccess.qhelp
index eba8aea88b2..f54843be7b2 100644
--- a/java/ql/src/Security/CWE/CWE-200/AndroidWebViewSettingsFileAccess.qhelp
+++ b/java/ql/src/Security/CWE/CWE-200/AndroidWebViewSettingsFileAccess.qhelp
@@ -6,8 +6,8 @@
     <p>
       File access in an Android WebView can expose the device's file system to
       the JavaScript running in the WebView. If there are vulnerabilities in the
-      JavaScript, file access may allow an attacker to access or steal the
-      user's data.
+      JavaScript or untrusted content is loaded in the WebView, file access may
+      allow an attacker to access or steal the user's data.
     </p>
   </overview>
 
@@ -40,18 +40,6 @@
     <li>
       Android documentation: <a href="https://developer.android.com/reference/android/webkit/WebSettings#setAllowFileAccessFromFileURLs(boolean)">WebSettings.setAllowFileAccessFromFileURLs</a>.
     </li>
-    <li>
-      Android documentation: <a href="https://developer.android.com/reference/android/webkit/WebSettings#setAllowUniversalAccessFromFileURLs(boolean)">WebSettings.setAllowUniversalAccessFromFileURLs</a>.
-    </li>
-    <li>
-      File access from URLs is enabled for WebView: <a href="https://oversecured.com/vulnerabilities#Android/File_access_from_file_URLs_is_enabled_for_WebView">File access for URLs is enabled for WebView</a>.
-    </li>
-    <li>
-      File access is enabled for WebView: <a href="https://oversecured.com/vulnerabilities#Android/File_access_is_enabled_for_WebView">File access is enabled for WebView</a>.
-    </li>
-    <li>
-      Universal file access from file URLs is enabled for WebView: <a href="https://oversecured.com/vulnerabilities#Android/Universal_file_access_from_file_URLs_is_enabled_for_WebView">Universal file access from file URLs is enabled for WebView</a>.
-    </li>
   </references>
 
 </qhelp>

From af1470de076fd30e81285568151f611697255bec Mon Sep 17 00:00:00 2001
From: erik-krogh <erik-krogh@github.com>
Date: Tue, 1 Nov 2022 12:13:10 +0100
Subject: [PATCH 0245/1420] add codeql/regex as a dependency

---
 java/ql/lib/qlpack.yml | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/java/ql/lib/qlpack.yml b/java/ql/lib/qlpack.yml
index 0d8258e5ef1..32f1ef40ae8 100644
--- a/java/ql/lib/qlpack.yml
+++ b/java/ql/lib/qlpack.yml
@@ -5,3 +5,5 @@ dbscheme: config/semmlecode.dbscheme
 extractor: java
 library: true
 upgrades: upgrades
+dependencies:
+  codeql/regex: 0.0.1
\ No newline at end of file

From 20254dfc084010dccc7ef1851e4fbe69e19c850a Mon Sep 17 00:00:00 2001
From: erik-krogh <erik-krogh@github.com>
Date: Tue, 1 Nov 2022 12:14:50 +0100
Subject: [PATCH 0246/1420] move existing regex-tree into a module

---
 .../semmle/code/java/regex/RegexTreeView.qll  | 1949 +++++++++--------
 1 file changed, 977 insertions(+), 972 deletions(-)

diff --git a/java/ql/lib/semmle/code/java/regex/RegexTreeView.qll b/java/ql/lib/semmle/code/java/regex/RegexTreeView.qll
index 14663327103..ceccd3efd5f 100644
--- a/java/ql/lib/semmle/code/java/regex/RegexTreeView.qll
+++ b/java/ql/lib/semmle/code/java/regex/RegexTreeView.qll
@@ -2,6 +2,10 @@
 
 private import java
 private import semmle.code.java.regex.regex
+import Impl
+
+/** Gets the parse tree resulting from parsing `re`, if such has been constructed. */
+RegExpTerm getParsedRegExp(StringLiteral re) { result.getRegex() = re and result.isRootTerm() }
 
 /**
  * An element containing a regular expression term, that is, either
@@ -49,1038 +53,1039 @@ private newtype TRegExpParent =
   /** A back reference */
   TRegExpBackRef(Regex re, int start, int end) { re.backreference(start, end) }
 
-/**
- * An element containing a regular expression term, that is, either
- * a string literal (parsed as a regular expression; the root of the parse tree)
- * or another regular expression term (a descendant of the root).
- */
-class RegExpParent extends TRegExpParent {
-  /** Gets a textual representation of this element. */
-  string toString() { result = "RegExpParent" }
+module Impl {
+  /**
+   * An element containing a regular expression term, that is, either
+   * a string literal (parsed as a regular expression; the root of the parse tree)
+   * or another regular expression term (a descendant of the root).
+   */
+  class RegExpParent extends TRegExpParent {
+    /** Gets a textual representation of this element. */
+    string toString() { result = "RegExpParent" }
 
-  /** Gets the `i`th child term. */
-  RegExpTerm getChild(int i) { none() }
+    /** Gets the `i`th child term. */
+    RegExpTerm getChild(int i) { none() }
 
-  /** Gets a child term . */
-  RegExpTerm getAChild() { result = this.getChild(_) }
+    /** Gets a child term . */
+    RegExpTerm getAChild() { result = this.getChild(_) }
 
-  /** Gets the number of child terms. */
-  int getNumChild() { result = count(this.getAChild()) }
+    /** Gets the number of child terms. */
+    int getNumChild() { result = count(this.getAChild()) }
 
-  /** Gets the associated regex. */
-  abstract Regex getRegex();
-}
-
-/**
- * A string literal used as a regular expression.
- *
- * As an optimisation, only regexes containing an infinite repitition quatifier (`+`, `*`, or `{x,}`)
- * and therefore may be relevant for ReDoS queries are considered.
- */
-class RegExpLiteral extends TRegExpLiteral, RegExpParent {
-  Regex re;
-
-  RegExpLiteral() { this = TRegExpLiteral(re) }
-
-  override string toString() { result = re.toString() }
-
-  override RegExpTerm getChild(int i) { i = 0 and result.getRegex() = re and result.isRootTerm() }
-
-  /** Holds if dot, `.`, matches all characters, including newlines. */
-  predicate isDotAll() { re.getAMode() = "DOTALL" }
-
-  /** Holds if this regex matching is case-insensitive for this regex. */
-  predicate isIgnoreCase() { re.getAMode() = "IGNORECASE" }
-
-  /** Get a string representing all modes for this regex. */
-  string getFlags() { result = concat(string mode | mode = re.getAMode() | mode, " | ") }
-
-  override Regex getRegex() { result = re }
-
-  /** Gets the primary QL class for this regex. */
-  string getPrimaryQLClass() { result = "RegExpLiteral" }
-}
-
-/**
- * A regular expression term, that is, a syntactic part of a regular expression.
- * These are the tree nodes that form the parse tree of a regular expression literal.
- */
-class RegExpTerm extends RegExpParent {
-  Regex re;
-  int start;
-  int end;
-
-  RegExpTerm() {
-    this = TRegExpAlt(re, start, end)
-    or
-    this = TRegExpBackRef(re, start, end)
-    or
-    this = TRegExpCharacterClass(re, start, end)
-    or
-    this = TRegExpCharacterRange(re, start, end)
-    or
-    this = TRegExpNormalChar(re, start, end)
-    or
-    this = TRegExpQuote(re, start, end)
-    or
-    this = TRegExpGroup(re, start, end)
-    or
-    this = TRegExpQuantifier(re, start, end)
-    or
-    this = TRegExpSequence(re, start, end)
-    or
-    this = TRegExpSpecialChar(re, start, end)
+    /** Gets the associated regex. */
+    abstract Regex getRegex();
   }
 
   /**
-   * Gets the outermost term of this regular expression.
+   * A string literal used as a regular expression.
+   *
+   * As an optimisation, only regexes containing an infinite repitition quatifier (`+`, `*`, or `{x,}`)
+   * and therefore may be relevant for ReDoS queries are considered.
    */
-  RegExpTerm getRootTerm() {
-    this.isRootTerm() and result = this
-    or
-    result = this.getParent().(RegExpTerm).getRootTerm()
+  class RegExpLiteral extends TRegExpLiteral, RegExpParent {
+    Regex re;
+
+    RegExpLiteral() { this = TRegExpLiteral(re) }
+
+    override string toString() { result = re.toString() }
+
+    override RegExpTerm getChild(int i) { i = 0 and result.getRegex() = re and result.isRootTerm() }
+
+    /** Holds if dot, `.`, matches all characters, including newlines. */
+    predicate isDotAll() { re.getAMode() = "DOTALL" }
+
+    /** Holds if this regex matching is case-insensitive for this regex. */
+    predicate isIgnoreCase() { re.getAMode() = "IGNORECASE" }
+
+    /** Get a string representing all modes for this regex. */
+    string getFlags() { result = concat(string mode | mode = re.getAMode() | mode, " | ") }
+
+    override Regex getRegex() { result = re }
+
+    /** Gets the primary QL class for this regex. */
+    string getPrimaryQLClass() { result = "RegExpLiteral" }
   }
 
   /**
-   * Holds if this term is part of a string literal
-   * that is interpreted as a regular expression.
+   * A regular expression term, that is, a syntactic part of a regular expression.
+   * These are the tree nodes that form the parse tree of a regular expression literal.
    */
-  predicate isUsedAsRegExp() { any() }
+  class RegExpTerm extends RegExpParent {
+    Regex re;
+    int start;
+    int end;
 
-  /**
-   * Holds if this is the root term of a regular expression.
-   */
-  predicate isRootTerm() { start = 0 and end = re.getText().length() }
+    RegExpTerm() {
+      this = TRegExpAlt(re, start, end)
+      or
+      this = TRegExpBackRef(re, start, end)
+      or
+      this = TRegExpCharacterClass(re, start, end)
+      or
+      this = TRegExpCharacterRange(re, start, end)
+      or
+      this = TRegExpNormalChar(re, start, end)
+      or
+      this = TRegExpQuote(re, start, end)
+      or
+      this = TRegExpGroup(re, start, end)
+      or
+      this = TRegExpQuantifier(re, start, end)
+      or
+      this = TRegExpSequence(re, start, end)
+      or
+      this = TRegExpSpecialChar(re, start, end)
+    }
 
-  /**
-   * Gets the parent term of this regular expression term, or the
-   * regular expression literal if this is the root term.
-   */
-  RegExpParent getParent() { result.getAChild() = this }
-
-  override Regex getRegex() { result = re }
-
-  /** Gets the offset at which this term starts. */
-  int getStart() { result = start }
-
-  /** Gets the offset at which this term ends. */
-  int getEnd() { result = end }
-
-  /** Holds if this term occurs in regex `inRe` offsets `startOffset` to `endOffset`. */
-  predicate occursInRegex(Regex inRe, int startOffset, int endOffset) {
-    inRe = re and startOffset = start and endOffset = end
-  }
-
-  override string toString() { result = re.getText().substring(start, end) }
-
-  /**
-   * Gets the location of the surrounding regex, as locations inside the regex do not exist.
-   * To get location information corresponding to the term inside the regex,
-   * use `hasLocationInfo`.
-   */
-  Location getLocation() { result = re.getLocation() }
-
-  /** Holds if this term is found at the specified location offsets. */
-  predicate hasLocationInfo(
-    string filepath, int startline, int startcolumn, int endline, int endcolumn
-  ) {
-    /*
-     * This is an approximation that handles the simple and common case of single,
-     * normal string literal written in the source, but does not give correct results in more complex cases
-     * such as compile-time concatenation, or multi-line string literals.
+    /**
+     * Gets the outermost term of this regular expression.
      */
-
-    exists(int re_start, int re_end, int src_start, int src_end |
-      re.getLocation().hasLocationInfo(filepath, startline, re_start, endline, re_end) and
-      re.sourceCharacter(start, src_start, _) and
-      re.sourceCharacter(end - 1, _, src_end) and
-      startcolumn = re_start + src_start and
-      endcolumn = re_start + src_end - 1
-    )
-  }
-
-  /** Gets the file in which this term is found. */
-  File getFile() { result = this.getLocation().getFile() }
-
-  /** Gets the raw source text of this term. */
-  string getRawValue() { result = this.toString() }
-
-  /** Gets the string literal in which this term is found. */
-  RegExpLiteral getLiteral() { result = TRegExpLiteral(re) }
-
-  /** Gets the regular expression term that is matched (textually) before this one, if any. */
-  RegExpTerm getPredecessor() {
-    exists(RegExpTerm parent | parent = this.getParent() |
-      result = parent.(RegExpSequence).previousElement(this)
+    RegExpTerm getRootTerm() {
+      this.isRootTerm() and result = this
       or
-      not exists(parent.(RegExpSequence).previousElement(this)) and
-      not parent instanceof RegExpSubPattern and
-      result = parent.getPredecessor()
-    )
+      result = this.getParent().(RegExpTerm).getRootTerm()
+    }
+
+    /**
+     * Holds if this term is part of a string literal
+     * that is interpreted as a regular expression.
+     */
+    predicate isUsedAsRegExp() { any() }
+
+    /**
+     * Holds if this is the root term of a regular expression.
+     */
+    predicate isRootTerm() { start = 0 and end = re.getText().length() }
+
+    /**
+     * Gets the parent term of this regular expression term, or the
+     * regular expression literal if this is the root term.
+     */
+    RegExpParent getParent() { result.getAChild() = this }
+
+    override Regex getRegex() { result = re }
+
+    /** Gets the offset at which this term starts. */
+    int getStart() { result = start }
+
+    /** Gets the offset at which this term ends. */
+    int getEnd() { result = end }
+
+    /** Holds if this term occurs in regex `inRe` offsets `startOffset` to `endOffset`. */
+    predicate occursInRegex(Regex inRe, int startOffset, int endOffset) {
+      inRe = re and startOffset = start and endOffset = end
+    }
+
+    override string toString() { result = re.getText().substring(start, end) }
+
+    /**
+     * Gets the location of the surrounding regex, as locations inside the regex do not exist.
+     * To get location information corresponding to the term inside the regex,
+     * use `hasLocationInfo`.
+     */
+    Location getLocation() { result = re.getLocation() }
+
+    /** Holds if this term is found at the specified location offsets. */
+    predicate hasLocationInfo(
+      string filepath, int startline, int startcolumn, int endline, int endcolumn
+    ) {
+      /*
+       * This is an approximation that handles the simple and common case of single,
+       * normal string literal written in the source, but does not give correct results in more complex cases
+       * such as compile-time concatenation, or multi-line string literals.
+       */
+
+      exists(int re_start, int re_end, int src_start, int src_end |
+        re.getLocation().hasLocationInfo(filepath, startline, re_start, endline, re_end) and
+        re.sourceCharacter(start, src_start, _) and
+        re.sourceCharacter(end - 1, _, src_end) and
+        startcolumn = re_start + src_start and
+        endcolumn = re_start + src_end - 1
+      )
+    }
+
+    /** Gets the file in which this term is found. */
+    File getFile() { result = this.getLocation().getFile() }
+
+    /** Gets the raw source text of this term. */
+    string getRawValue() { result = this.toString() }
+
+    /** Gets the string literal in which this term is found. */
+    RegExpLiteral getLiteral() { result = TRegExpLiteral(re) }
+
+    /** Gets the regular expression term that is matched (textually) before this one, if any. */
+    RegExpTerm getPredecessor() {
+      exists(RegExpTerm parent | parent = this.getParent() |
+        result = parent.(RegExpSequence).previousElement(this)
+        or
+        not exists(parent.(RegExpSequence).previousElement(this)) and
+        not parent instanceof RegExpSubPattern and
+        result = parent.getPredecessor()
+      )
+    }
+
+    /** Gets the regular expression term that is matched (textually) after this one, if any. */
+    RegExpTerm getSuccessor() {
+      exists(RegExpTerm parent | parent = this.getParent() |
+        result = parent.(RegExpSequence).nextElement(this)
+        or
+        not exists(parent.(RegExpSequence).nextElement(this)) and
+        not parent instanceof RegExpSubPattern and
+        result = parent.getSuccessor()
+      )
+    }
+
+    /** Gets the primary QL class for this term. */
+    string getPrimaryQLClass() { result = "RegExpTerm" }
   }
 
-  /** Gets the regular expression term that is matched (textually) after this one, if any. */
-  RegExpTerm getSuccessor() {
-    exists(RegExpTerm parent | parent = this.getParent() |
-      result = parent.(RegExpSequence).nextElement(this)
-      or
-      not exists(parent.(RegExpSequence).nextElement(this)) and
-      not parent instanceof RegExpSubPattern and
-      result = parent.getSuccessor()
-    )
-  }
-
-  /** Gets the primary QL class for this term. */
-  string getPrimaryQLClass() { result = "RegExpTerm" }
-}
-
-/**
- * A quantified regular expression term.
- *
- * Example:
- *
- * ```
- * ((ECMA|Java)[sS]cript)*
- * ```
- */
-class RegExpQuantifier extends RegExpTerm, TRegExpQuantifier {
-  int part_end;
-  boolean maybe_empty;
-  boolean may_repeat_forever;
-
-  RegExpQuantifier() {
-    this = TRegExpQuantifier(re, start, end) and
-    re.quantifiedPart(start, part_end, end, maybe_empty, may_repeat_forever)
-  }
-
-  override RegExpTerm getChild(int i) {
-    i = 0 and
-    result.occursInRegex(re, start, part_end)
-  }
-
-  /** Holds if this term may match zero times. */
-  predicate mayBeEmpty() { maybe_empty = true }
-
-  /** Holds if this term may match an unlimited number of times. */
-  predicate mayRepeatForever() { may_repeat_forever = true }
-
-  /** Gets the quantifier for this term. That is e.g "?" for "a?". */
-  string getQuantifier() { result = re.getText().substring(part_end, end) }
-
-  /** Holds if this is a possessive quantifier, e.g. a*+. */
-  predicate isPossessive() {
-    exists(string q | q = this.getQuantifier() | q.length() > 1 and q.charAt(q.length() - 1) = "+")
-  }
-
-  override string getPrimaryQLClass() { result = "RegExpQuantifier" }
-}
-
-/**
- * A regular expression term that permits unlimited repetitions.
- */
-class InfiniteRepetitionQuantifier extends RegExpQuantifier {
-  InfiniteRepetitionQuantifier() { this.mayRepeatForever() }
-}
-
-/**
- * A star-quantified term.
- *
- * Example:
- *
- * ```
- * \w*
- * ```
- */
-class RegExpStar extends InfiniteRepetitionQuantifier {
-  RegExpStar() { this.getQuantifier().charAt(0) = "*" }
-
-  override string getPrimaryQLClass() { result = "RegExpStar" }
-}
-
-/**
- * A plus-quantified term.
- *
- * Example:
- *
- * ```
- * \w+
- * ```
- */
-class RegExpPlus extends InfiniteRepetitionQuantifier {
-  RegExpPlus() { this.getQuantifier().charAt(0) = "+" }
-
-  override string getPrimaryQLClass() { result = "RegExpPlus" }
-}
-
-/**
- * An optional term.
- *
- * Example:
- *
- * ```
- * ;?
- * ```
- */
-class RegExpOpt extends RegExpQuantifier {
-  RegExpOpt() { this.getQuantifier().charAt(0) = "?" }
-
-  override string getPrimaryQLClass() { result = "RegExpOpt" }
-}
-
-/**
- * A range-quantified term
- *
- * Examples:
- *
- * ```
- * \w{2,4}
- * \w{2,}
- * \w{2}
- * ```
- */
-class RegExpRange extends RegExpQuantifier {
-  string upper;
-  string lower;
-
-  RegExpRange() { re.multiples(part_end, end, lower, upper) }
-
-  /** Gets the string defining the upper bound of this range, which is empty when no such bound exists. */
-  string getUpper() { result = upper }
-
-  /** Gets the string defining the lower bound of this range, which is empty when no such bound exists. */
-  string getLower() { result = lower }
-
   /**
-   * Gets the upper bound of the range, if any.
+   * A quantified regular expression term.
    *
-   * If there is no upper bound, any number of repetitions is allowed.
-   * For a term of the form `r{lo}`, both the lower and the upper bound
-   * are `lo`.
+   * Example:
+   *
+   * ```
+   * ((ECMA|Java)[sS]cript)*
+   * ```
    */
-  int getUpperBound() { result = this.getUpper().toInt() }
+  class RegExpQuantifier extends RegExpTerm, TRegExpQuantifier {
+    int part_end;
+    boolean maybe_empty;
+    boolean may_repeat_forever;
 
-  /** Gets the lower bound of the range. */
-  int getLowerBound() { result = this.getLower().toInt() }
+    RegExpQuantifier() {
+      this = TRegExpQuantifier(re, start, end) and
+      re.quantifiedPart(start, part_end, end, maybe_empty, may_repeat_forever)
+    }
 
-  override string getPrimaryQLClass() { result = "RegExpRange" }
-}
-
-/**
- * A sequence term.
- *
- * Example:
- *
- * ```
- * (ECMA|Java)Script
- * ```
- *
- * This is a sequence with the elements `(ECMA|Java)` and `Script`.
- */
-class RegExpSequence extends RegExpTerm, TRegExpSequence {
-  RegExpSequence() { this = TRegExpSequence(re, start, end) }
-
-  override RegExpTerm getChild(int i) { result = seqChild(re, start, end, i) }
-
-  /** Gets the element preceding `element` in this sequence. */
-  RegExpTerm previousElement(RegExpTerm element) { element = this.nextElement(result) }
-
-  /** Gets the element following `element` in this sequence. */
-  RegExpTerm nextElement(RegExpTerm element) {
-    exists(int i |
-      element = this.getChild(i) and
-      result = this.getChild(i + 1)
-    )
-  }
-
-  override string getPrimaryQLClass() { result = "RegExpSequence" }
-}
-
-pragma[nomagic]
-private int seqChildEnd(Regex re, int start, int end, int i) {
-  result = seqChild(re, start, end, i).getEnd()
-}
-
-// moved out so we can use it in the charpred
-private RegExpTerm seqChild(Regex re, int start, int end, int i) {
-  re.sequence(start, end) and
-  (
-    i = 0 and
-    exists(int itemEnd |
-      re.item(start, itemEnd) and
-      result.occursInRegex(re, start, itemEnd)
-    )
-    or
-    i > 0 and
-    exists(int itemStart, int itemEnd | itemStart = seqChildEnd(re, start, end, i - 1) |
-      re.item(itemStart, itemEnd) and
-      result.occursInRegex(re, itemStart, itemEnd)
-    )
-  )
-}
-
-/**
- * An alternative term, that is, a term of the form `a|b`.
- *
- * Example:
- *
- * ```
- * ECMA|Java
- * ```
- */
-class RegExpAlt extends RegExpTerm, TRegExpAlt {
-  RegExpAlt() { this = TRegExpAlt(re, start, end) }
-
-  override RegExpTerm getChild(int i) {
-    i = 0 and
-    exists(int part_end |
-      re.alternationOption(start, end, start, part_end) and
+    override RegExpTerm getChild(int i) {
+      i = 0 and
       result.occursInRegex(re, start, part_end)
-    )
-    or
-    i > 0 and
-    exists(int part_start, int part_end |
-      part_start = this.getChild(i - 1).getEnd() + 1 // allow for the |
-    |
-      re.alternationOption(start, end, part_start, part_end) and
-      result.occursInRegex(re, part_start, part_end)
-    )
+    }
+
+    /** Holds if this term may match zero times. */
+    predicate mayBeEmpty() { maybe_empty = true }
+
+    /** Holds if this term may match an unlimited number of times. */
+    predicate mayRepeatForever() { may_repeat_forever = true }
+
+    /** Gets the quantifier for this term. That is e.g "?" for "a?". */
+    string getQuantifier() { result = re.getText().substring(part_end, end) }
+
+    /** Holds if this is a possessive quantifier, e.g. a*+. */
+    predicate isPossessive() {
+      exists(string q | q = this.getQuantifier() |
+        q.length() > 1 and q.charAt(q.length() - 1) = "+"
+      )
+    }
+
+    override string getPrimaryQLClass() { result = "RegExpQuantifier" }
   }
 
-  override string getPrimaryQLClass() { result = "RegExpAlt" }
-}
-
-/**
- * An escaped regular expression term, that is, a regular expression
- * term starting with a backslash, which is not a backreference.
- *
- * Example:
- *
- * ```
- * \.
- * \w
- * ```
- */
-class RegExpEscape extends RegExpNormalChar {
-  RegExpEscape() { re.escapedCharacter(start, end) }
-
   /**
-   * Gets the name of the escaped; for example, `w` for `\w`.
-   * TODO: Handle named escapes.
+   * A regular expression term that permits unlimited repetitions.
    */
-  override string getValue() {
-    not this.isUnicode() and
-    this.isIdentityEscape() and
-    result = this.getUnescaped()
-    or
-    this.getUnescaped() = "n" and result = "\n"
-    or
-    this.getUnescaped() = "r" and result = "\r"
-    or
-    this.getUnescaped() = "t" and result = "\t"
-    or
-    this.getUnescaped() = "f" and result = 12.toUnicode() // form feed
-    or
-    this.getUnescaped() = "a" and result = 7.toUnicode() // alert/bell
-    or
-    this.getUnescaped() = "e" and result = 27.toUnicode() // escape (0x1B)
-    or
-    this.isUnicode() and
-    result = this.getUnicode()
-  }
-
-  /** Holds if this terms name is given by the part following the escape character. */
-  predicate isIdentityEscape() { not this.getUnescaped() in ["n", "r", "t", "f", "a", "e"] }
-
-  override string getPrimaryQLClass() { result = "RegExpEscape" }
-
-  /** Gets the part of the term following the escape character. That is e.g. "w" if the term is "\w". */
-  private string getUnescaped() { result = this.getText().suffix(1) }
-
-  /**
-   * Gets the text for this escape. That is e.g. "\w".
-   */
-  private string getText() { result = re.getText().substring(start, end) }
-
-  /**
-   * Holds if this is a unicode escape.
-   */
-  private predicate isUnicode() { this.getText().matches(["\\u%", "\\x%"]) }
-
-  /**
-   * Gets the unicode char for this escape.
-   * E.g. for `\u0061` this returns "a".
-   */
-  private string getUnicode() {
-    exists(int codepoint | codepoint = sum(this.getHexValueFromUnicode(_)) |
-      result = codepoint.toUnicode()
-    )
-  }
-
-  /** Gets the part of this escape that is a hexidecimal string */
-  private string getHexString() {
-    this.isUnicode() and
-    if this.getText().matches("\\u%") // \uhhhh
-    then result = this.getText().suffix(2)
-    else
-      if this.getText().matches("\\x{%") // \x{h..h}
-      then result = this.getText().substring(3, this.getText().length() - 1)
-      else result = this.getText().suffix(2) // \xhh
+  class InfiniteRepetitionQuantifier extends RegExpQuantifier {
+    InfiniteRepetitionQuantifier() { this.mayRepeatForever() }
   }
 
   /**
-   * Gets int value for the `index`th char in the hex number of the unicode escape.
-   * E.g. for `\u0061` and `index = 2` this returns 96 (the number `6` interpreted as hex).
-   */
-  private int getHexValueFromUnicode(int index) {
-    this.isUnicode() and
-    exists(string hex, string char | hex = this.getHexString() |
-      char = hex.charAt(index) and
-      result = 16.pow(hex.length() - index - 1) * toHex(char)
-    )
-  }
-}
-
-/**
- * Gets the hex number for the `hex` char.
- */
-private int toHex(string hex) {
-  result = [0 .. 9] and hex = result.toString()
-  or
-  result = 10 and hex = ["a", "A"]
-  or
-  result = 11 and hex = ["b", "B"]
-  or
-  result = 12 and hex = ["c", "C"]
-  or
-  result = 13 and hex = ["d", "D"]
-  or
-  result = 14 and hex = ["e", "E"]
-  or
-  result = 15 and hex = ["f", "F"]
-}
-
-/**
- * A character class escape in a regular expression.
- * That is, an escaped character that denotes multiple characters.
- *
- * Examples:
- *
- * ```
- * \w
- * \S
- * ```
- */
-class RegExpCharacterClassEscape extends RegExpEscape {
-  RegExpCharacterClassEscape() {
-    this.getValue() in ["d", "D", "s", "S", "w", "W", "h", "H", "v", "V"] or
-    this.getValue().charAt(0) in ["p", "P"]
-  }
-
-  override RegExpTerm getChild(int i) { none() }
-
-  override string getPrimaryQLClass() { result = "RegExpCharacterClassEscape" }
-}
-
-/**
- * A named character class in a regular expression.
- *
- * Examples:
- *
- * ```
- * \p{Digit}
- * \p{IsLowerCase}
- */
-class RegExpNamedProperty extends RegExpCharacterClassEscape {
-  boolean inverted;
-  string name;
-
-  RegExpNamedProperty() {
-    name = this.getValue().substring(2, this.getValue().length() - 1) and
-    (
-      inverted = false and
-      this.getValue().charAt(0) = "p"
-      or
-      inverted = true and
-      this.getValue().charAt(0) = "P"
-    )
-  }
-
-  /** Holds if this class is inverted. */
-  predicate isInverted() { inverted = true }
-
-  /** Gets the name of this class. */
-  string getClassName() { result = name }
-
-  /**
-   * Gets an equivalent single-chcracter escape sequence for this class (e.g. \d) if possible, excluding the escape character.
-   */
-  string getBackslashEquivalent() {
-    exists(string eq | if inverted = true then result = eq.toUpperCase() else result = eq |
-      name = ["Digit", "IsDigit"] and
-      eq = "d"
-      or
-      name = ["Space", "IsWhite_Space"] and
-      eq = "s"
-    )
-  }
-}
-
-/**
- * A character class in a regular expression.
- *
- * Examples:
- *
- * ```
- * [a-z_]
- * [^<>&]
- * ```
- */
-class RegExpCharacterClass extends RegExpTerm, TRegExpCharacterClass {
-  RegExpCharacterClass() { this = TRegExpCharacterClass(re, start, end) }
-
-  /** Holds if this character class is inverted, matching the opposite of its content. */
-  predicate isInverted() { re.getChar(start + 1) = "^" }
-
-  /** Holds if this character class can match anything. */
-  predicate isUniversalClass() {
-    // [^]
-    this.isInverted() and not exists(this.getAChild())
-    or
-    // [\w\W] and similar
-    not this.isInverted() and
-    exists(string cce1, string cce2 |
-      cce1 = this.getAChild().(RegExpCharacterClassEscape).getValue() and
-      cce2 = this.getAChild().(RegExpCharacterClassEscape).getValue()
-    |
-      cce1 != cce2 and cce1.toLowerCase() = cce2.toLowerCase()
-    )
-  }
-
-  override RegExpTerm getChild(int i) {
-    i = 0 and
-    exists(int itemStart, int itemEnd |
-      re.charSetStart(start, itemStart) and
-      re.charSetChild(start, itemStart, itemEnd) and
-      result.occursInRegex(re, itemStart, itemEnd)
-    )
-    or
-    i > 0 and
-    exists(int itemStart, int itemEnd | itemStart = this.getChild(i - 1).getEnd() |
-      result.occursInRegex(re, itemStart, itemEnd) and
-      re.charSetChild(start, itemStart, itemEnd)
-    )
-  }
-
-  override string getPrimaryQLClass() { result = "RegExpCharacterClass" }
-}
-
-/**
- * A character range in a character class in a regular expression.
- *
- * Example:
- *
- * ```
- * a-z
- * ```
- */
-class RegExpCharacterRange extends RegExpTerm, TRegExpCharacterRange {
-  int lower_end;
-  int upper_start;
-
-  RegExpCharacterRange() {
-    this = TRegExpCharacterRange(re, start, end) and
-    re.charRange(_, start, lower_end, upper_start, end)
-  }
-
-  /** Holds if this range goes from `lo` to `hi`, in effect is `lo-hi`. */
-  predicate isRange(string lo, string hi) {
-    lo = re.getText().substring(start, lower_end) and
-    hi = re.getText().substring(upper_start, end)
-  }
-
-  override RegExpTerm getChild(int i) {
-    i = 0 and
-    result.occursInRegex(re, start, lower_end)
-    or
-    i = 1 and
-    result.occursInRegex(re, upper_start, end)
-  }
-
-  override string getPrimaryQLClass() { result = "RegExpCharacterRange" }
-}
-
-/**
- * A normal character in a regular expression, that is, a character
- * without special meaning. This includes escaped characters.
- * It also includes escape sequences that represent character classes.
- *
- * Examples:
- * ```
- * t
- * \t
- * ```
- */
-class RegExpNormalChar extends RegExpTerm, TRegExpNormalChar {
-  RegExpNormalChar() { this = TRegExpNormalChar(re, start, end) }
-
-  /**
-   * Holds if this constant represents a valid Unicode character (as opposed
-   * to a surrogate code point that does not correspond to a character by itself.)
-   */
-  predicate isCharacter() { any() }
-
-  /** Gets the string representation of the char matched by this term. */
-  string getValue() { result = re.getText().substring(start, end) }
-
-  override RegExpTerm getChild(int i) { none() }
-
-  override string getPrimaryQLClass() { result = "RegExpNormalChar" }
-}
-
-/**
- * A quoted sequence.
- *
- * Example:
- * ```
- * \Qabc\E
- * ```
- */
-class RegExpQuote extends RegExpTerm, TRegExpQuote {
-  string value;
-
-  RegExpQuote() {
-    exists(int inner_start, int inner_end |
-      this = TRegExpQuote(re, start, end) and
-      re.quote(start, end, inner_start, inner_end) and
-      value = re.getText().substring(inner_start, inner_end)
-    )
-  }
-
-  /** Gets the string matched by this quote term. */
-  string getValue() { result = value }
-
-  override string getPrimaryQLClass() { result = "RegExpQuote" }
-}
-
-/**
- * A constant regular expression term, that is, a regular expression
- * term matching a single string. This can be a single character or a quoted sequence.
- *
- * Example:
- *
- * ```
- * a
- * ```
- */
-class RegExpConstant extends RegExpTerm {
-  string value;
-
-  RegExpConstant() {
-    (value = this.(RegExpNormalChar).getValue() or value = this.(RegExpQuote).getValue()) and
-    not this instanceof RegExpCharacterClassEscape
-  }
-
-  /**
-   * Holds if this constant represents a valid Unicode character (as opposed
-   * to a surrogate code point that does not correspond to a character by itself.)
-   */
-  predicate isCharacter() { any() }
-
-  /** Gets the string matched by this constant term. */
-  string getValue() { result = value }
-
-  override RegExpTerm getChild(int i) { none() }
-
-  override string getPrimaryQLClass() { result = "RegExpConstant" }
-}
-
-/**
- * A grouped regular expression.
- *
- * Examples:
- *
- * ```
- * (ECMA|Java)
- * (?:ECMA|Java)
- * (?<quote>['"])
- * ```
- */
-class RegExpGroup extends RegExpTerm, TRegExpGroup {
-  RegExpGroup() { this = TRegExpGroup(re, start, end) }
-
-  /**
-   * Gets the index of this capture group within the enclosing regular
-   * expression literal.
+   * A star-quantified term.
    *
-   * For example, in the regular expression `/((a?).)(?:b)/`, the
-   * group `((a?).)` has index 1, the group `(a?)` nested inside it
-   * has index 2, and the group `(?:b)` has no index, since it is
-   * not a capture group.
+   * Example:
+   *
+   * ```
+   * \w*
+   * ```
    */
-  int getNumber() { result = re.getGroupNumber(start, end) }
+  class RegExpStar extends InfiniteRepetitionQuantifier {
+    RegExpStar() { this.getQuantifier().charAt(0) = "*" }
 
-  /** Holds if this is a named capture group. */
-  predicate isNamed() { exists(this.getName()) }
+    override string getPrimaryQLClass() { result = "RegExpStar" }
+  }
 
-  /** Gets the name of this capture group, if any. */
-  string getName() { result = re.getGroupName(start, end) }
+  /**
+   * A plus-quantified term.
+   *
+   * Example:
+   *
+   * ```
+   * \w+
+   * ```
+   */
+  class RegExpPlus extends InfiniteRepetitionQuantifier {
+    RegExpPlus() { this.getQuantifier().charAt(0) = "+" }
 
-  override RegExpTerm getChild(int i) {
-    i = 0 and
-    exists(int in_start, int in_end | re.groupContents(start, end, in_start, in_end) |
-      result.occursInRegex(re, in_start, in_end)
+    override string getPrimaryQLClass() { result = "RegExpPlus" }
+  }
+
+  /**
+   * An optional term.
+   *
+   * Example:
+   *
+   * ```
+   * ;?
+   * ```
+   */
+  class RegExpOpt extends RegExpQuantifier {
+    RegExpOpt() { this.getQuantifier().charAt(0) = "?" }
+
+    override string getPrimaryQLClass() { result = "RegExpOpt" }
+  }
+
+  /**
+   * A range-quantified term
+   *
+   * Examples:
+   *
+   * ```
+   * \w{2,4}
+   * \w{2,}
+   * \w{2}
+   * ```
+   */
+  class RegExpRange extends RegExpQuantifier {
+    string upper;
+    string lower;
+
+    RegExpRange() { re.multiples(part_end, end, lower, upper) }
+
+    /** Gets the string defining the upper bound of this range, which is empty when no such bound exists. */
+    string getUpper() { result = upper }
+
+    /** Gets the string defining the lower bound of this range, which is empty when no such bound exists. */
+    string getLower() { result = lower }
+
+    /**
+     * Gets the upper bound of the range, if any.
+     *
+     * If there is no upper bound, any number of repetitions is allowed.
+     * For a term of the form `r{lo}`, both the lower and the upper bound
+     * are `lo`.
+     */
+    int getUpperBound() { result = this.getUpper().toInt() }
+
+    /** Gets the lower bound of the range. */
+    int getLowerBound() { result = this.getLower().toInt() }
+
+    override string getPrimaryQLClass() { result = "RegExpRange" }
+  }
+
+  /**
+   * A sequence term.
+   *
+   * Example:
+   *
+   * ```
+   * (ECMA|Java)Script
+   * ```
+   *
+   * This is a sequence with the elements `(ECMA|Java)` and `Script`.
+   */
+  class RegExpSequence extends RegExpTerm, TRegExpSequence {
+    RegExpSequence() { this = TRegExpSequence(re, start, end) }
+
+    override RegExpTerm getChild(int i) { result = seqChild(re, start, end, i) }
+
+    /** Gets the element preceding `element` in this sequence. */
+    RegExpTerm previousElement(RegExpTerm element) { element = this.nextElement(result) }
+
+    /** Gets the element following `element` in this sequence. */
+    RegExpTerm nextElement(RegExpTerm element) {
+      exists(int i |
+        element = this.getChild(i) and
+        result = this.getChild(i + 1)
+      )
+    }
+
+    override string getPrimaryQLClass() { result = "RegExpSequence" }
+  }
+
+  pragma[nomagic]
+  private int seqChildEnd(Regex re, int start, int end, int i) {
+    result = seqChild(re, start, end, i).getEnd()
+  }
+
+  // moved out so we can use it in the charpred
+  private RegExpTerm seqChild(Regex re, int start, int end, int i) {
+    re.sequence(start, end) and
+    (
+      i = 0 and
+      exists(int itemEnd |
+        re.item(start, itemEnd) and
+        result.occursInRegex(re, start, itemEnd)
+      )
+      or
+      i > 0 and
+      exists(int itemStart, int itemEnd | itemStart = seqChildEnd(re, start, end, i - 1) |
+        re.item(itemStart, itemEnd) and
+        result.occursInRegex(re, itemStart, itemEnd)
+      )
     )
   }
 
-  override string getPrimaryQLClass() { result = "RegExpGroup" }
+  /**
+   * An alternative term, that is, a term of the form `a|b`.
+   *
+   * Example:
+   *
+   * ```
+   * ECMA|Java
+   * ```
+   */
+  class RegExpAlt extends RegExpTerm, TRegExpAlt {
+    RegExpAlt() { this = TRegExpAlt(re, start, end) }
 
-  /** Holds if this is the `n`th numbered group of literal `lit`. */
-  predicate isNumberedGroupOfLiteral(RegExpLiteral lit, int n) {
-    lit = this.getLiteral() and n = this.getNumber()
-  }
+    override RegExpTerm getChild(int i) {
+      i = 0 and
+      exists(int part_end |
+        re.alternationOption(start, end, start, part_end) and
+        result.occursInRegex(re, start, part_end)
+      )
+      or
+      i > 0 and
+      exists(int part_start, int part_end |
+        part_start = this.getChild(i - 1).getEnd() + 1 // allow for the |
+      |
+        re.alternationOption(start, end, part_start, part_end) and
+        result.occursInRegex(re, part_start, part_end)
+      )
+    }
 
-  /** Holds if this is a group with name `name` of literal `lit`. */
-  predicate isNamedGroupOfLiteral(RegExpLiteral lit, string name) {
-    lit = this.getLiteral() and name = this.getName()
-  }
-}
-
-/**
- * A special character in a regular expression.
- *
- * Examples:
- * ```
- * ^
- * $
- * .
- * ```
- */
-class RegExpSpecialChar extends RegExpTerm, TRegExpSpecialChar {
-  string char;
-
-  RegExpSpecialChar() {
-    this = TRegExpSpecialChar(re, start, end) and
-    re.specialCharacter(start, end, char)
+    override string getPrimaryQLClass() { result = "RegExpAlt" }
   }
 
   /**
-   * Holds if this constant represents a valid Unicode character (as opposed
-   * to a surrogate code point that does not correspond to a character by itself.)
+   * An escaped regular expression term, that is, a regular expression
+   * term starting with a backslash, which is not a backreference.
+   *
+   * Example:
+   *
+   * ```
+   * \.
+   * \w
+   * ```
    */
-  predicate isCharacter() { any() }
+  class RegExpEscape extends RegExpNormalChar {
+    RegExpEscape() { re.escapedCharacter(start, end) }
 
-  /** Gets the char for this term. */
-  string getChar() { result = char }
+    /**
+     * Gets the name of the escaped; for example, `w` for `\w`.
+     * TODO: Handle named escapes.
+     */
+    override string getValue() {
+      not this.isUnicode() and
+      this.isIdentityEscape() and
+      result = this.getUnescaped()
+      or
+      this.getUnescaped() = "n" and result = "\n"
+      or
+      this.getUnescaped() = "r" and result = "\r"
+      or
+      this.getUnescaped() = "t" and result = "\t"
+      or
+      this.getUnescaped() = "f" and result = 12.toUnicode() // form feed
+      or
+      this.getUnescaped() = "a" and result = 7.toUnicode() // alert/bell
+      or
+      this.getUnescaped() = "e" and result = 27.toUnicode() // escape (0x1B)
+      or
+      this.isUnicode() and
+      result = this.getUnicode()
+    }
 
-  override RegExpTerm getChild(int i) { none() }
+    /** Holds if this terms name is given by the part following the escape character. */
+    predicate isIdentityEscape() { not this.getUnescaped() in ["n", "r", "t", "f", "a", "e"] }
 
-  override string getPrimaryQLClass() { result = "RegExpSpecialChar" }
-}
+    override string getPrimaryQLClass() { result = "RegExpEscape" }
 
-/**
- * A dot regular expression.
- *
- * Example:
- *
- * ```
- * .
- * ```
- */
-class RegExpDot extends RegExpSpecialChar {
-  RegExpDot() { this.getChar() = "." }
+    /** Gets the part of the term following the escape character. That is e.g. "w" if the term is "\w". */
+    private string getUnescaped() { result = this.getText().suffix(1) }
 
-  override string getPrimaryQLClass() { result = "RegExpDot" }
-}
+    /**
+     * Gets the text for this escape. That is e.g. "\w".
+     */
+    private string getText() { result = re.getText().substring(start, end) }
 
-/**
- * A dollar assertion `$` matching the end of a line.
- *
- * Example:
- *
- * ```
- * $
- * ```
- */
-class RegExpDollar extends RegExpSpecialChar {
-  RegExpDollar() { this.getChar() = "$" }
+    /**
+     * Holds if this is a unicode escape.
+     */
+    private predicate isUnicode() { this.getText().matches(["\\u%", "\\x%"]) }
 
-  override string getPrimaryQLClass() { result = "RegExpDollar" }
-}
+    /**
+     * Gets the unicode char for this escape.
+     * E.g. for `\u0061` this returns "a".
+     */
+    private string getUnicode() {
+      exists(int codepoint | codepoint = sum(this.getHexValueFromUnicode(_)) |
+        result = codepoint.toUnicode()
+      )
+    }
 
-/**
- * A caret assertion `^` matching the beginning of a line.
- *
- * Example:
- *
- * ```
- * ^
- * ```
- */
-class RegExpCaret extends RegExpSpecialChar {
-  RegExpCaret() { this.getChar() = "^" }
+    /** Gets the part of this escape that is a hexidecimal string */
+    private string getHexString() {
+      this.isUnicode() and
+      if this.getText().matches("\\u%") // \uhhhh
+      then result = this.getText().suffix(2)
+      else
+        if this.getText().matches("\\x{%") // \x{h..h}
+        then result = this.getText().substring(3, this.getText().length() - 1)
+        else result = this.getText().suffix(2) // \xhh
+    }
 
-  override string getPrimaryQLClass() { result = "RegExpCaret" }
-}
-
-/**
- * A zero-width match, that is, either an empty group or an assertion.
- *
- * Examples:
- * ```
- * ()
- * (?=\w)
- * ```
- */
-class RegExpZeroWidthMatch extends RegExpGroup {
-  RegExpZeroWidthMatch() { re.zeroWidthMatch(start, end) }
-
-  override RegExpTerm getChild(int i) { none() }
-
-  override string getPrimaryQLClass() { result = "RegExpZeroWidthMatch" }
-}
-
-/**
- * A zero-width lookahead or lookbehind assertion.
- *
- * Examples:
- *
- * ```
- * (?=\w)
- * (?!\n)
- * (?<=\.)
- * (?<!\\)
- * ```
- */
-class RegExpSubPattern extends RegExpZeroWidthMatch {
-  RegExpSubPattern() { not re.emptyGroup(start, end) }
-
-  /** Gets the lookahead term. */
-  RegExpTerm getOperand() {
-    exists(int in_start, int in_end | re.groupContents(start, end, in_start, in_end) |
-      result.occursInRegex(re, in_start, in_end)
-    )
+    /**
+     * Gets int value for the `index`th char in the hex number of the unicode escape.
+     * E.g. for `\u0061` and `index = 2` this returns 96 (the number `6` interpreted as hex).
+     */
+    private int getHexValueFromUnicode(int index) {
+      this.isUnicode() and
+      exists(string hex, string char | hex = this.getHexString() |
+        char = hex.charAt(index) and
+        result = 16.pow(hex.length() - index - 1) * toHex(char)
+      )
+    }
   }
-}
-
-/**
- * A zero-width lookahead assertion.
- *
- * Examples:
- *
- * ```
- * (?=\w)
- * (?!\n)
- * ```
- */
-abstract class RegExpLookahead extends RegExpSubPattern { }
-
-/**
- * A positive-lookahead assertion.
- *
- * Examples:
- *
- * ```
- * (?=\w)
- * ```
- */
-class RegExpPositiveLookahead extends RegExpLookahead {
-  RegExpPositiveLookahead() { re.positiveLookaheadAssertionGroup(start, end) }
-
-  override string getPrimaryQLClass() { result = "RegExpPositiveLookahead" }
-}
-
-/**
- * A negative-lookahead assertion.
- *
- * Examples:
- *
- * ```
- * (?!\n)
- * ```
- */
-class RegExpNegativeLookahead extends RegExpLookahead {
-  RegExpNegativeLookahead() { re.negativeLookaheadAssertionGroup(start, end) }
-
-  override string getPrimaryQLClass() { result = "RegExpNegativeLookahead" }
-}
-
-/**
- * A zero-width lookbehind assertion.
- *
- * Examples:
- *
- * ```
- * (?<=\.)
- * (?<!\\)
- * ```
- */
-abstract class RegExpLookbehind extends RegExpSubPattern { }
-
-/**
- * A positive-lookbehind assertion.
- *
- * Examples:
- *
- * ```
- * (?<=\.)
- * ```
- */
-class RegExpPositiveLookbehind extends RegExpLookbehind {
-  RegExpPositiveLookbehind() { re.positiveLookbehindAssertionGroup(start, end) }
-
-  override string getPrimaryQLClass() { result = "RegExpPositiveLookbehind" }
-}
-
-/**
- * A negative-lookbehind assertion.
- *
- * Examples:
- *
- * ```
- * (?<!\\)
- * ```
- */
-class RegExpNegativeLookbehind extends RegExpLookbehind {
-  RegExpNegativeLookbehind() { re.negativeLookbehindAssertionGroup(start, end) }
-
-  override string getPrimaryQLClass() { result = "RegExpNegativeLookbehind" }
-}
-
-/**
- * A back reference, that is, a term of the form `\i` or `\k<name>`
- * in a regular expression.
- *
- * Examples:
- *
- * ```
- * \1
- * (?P=quote)
- * ```
- */
-class RegExpBackRef extends RegExpTerm, TRegExpBackRef {
-  RegExpBackRef() { this = TRegExpBackRef(re, start, end) }
 
   /**
-   * Gets the number of the capture group this back reference refers to, if any.
+   * Gets the hex number for the `hex` char.
    */
-  int getNumber() { result = re.getBackrefNumber(start, end) }
-
-  /**
-   * Gets the name of the capture group this back reference refers to, if any.
-   */
-  string getName() { result = re.getBackrefName(start, end) }
-
-  /** Gets the capture group this back reference refers to. */
-  RegExpGroup getGroup() {
-    result.isNumberedGroupOfLiteral(this.getLiteral(), this.getNumber())
+  private int toHex(string hex) {
+    result = [0 .. 9] and hex = result.toString()
     or
-    result.isNamedGroupOfLiteral(this.getLiteral(), this.getName())
+    result = 10 and hex = ["a", "A"]
+    or
+    result = 11 and hex = ["b", "B"]
+    or
+    result = 12 and hex = ["c", "C"]
+    or
+    result = 13 and hex = ["d", "D"]
+    or
+    result = 14 and hex = ["e", "E"]
+    or
+    result = 15 and hex = ["f", "F"]
   }
 
-  override RegExpTerm getChild(int i) { none() }
+  /**
+   * A character class escape in a regular expression.
+   * That is, an escaped character that denotes multiple characters.
+   *
+   * Examples:
+   *
+   * ```
+   * \w
+   * \S
+   * ```
+   */
+  class RegExpCharacterClassEscape extends RegExpEscape {
+    RegExpCharacterClassEscape() {
+      this.getValue() in ["d", "D", "s", "S", "w", "W", "h", "H", "v", "V"] or
+      this.getValue().charAt(0) in ["p", "P"]
+    }
 
-  override string getPrimaryQLClass() { result = "RegExpBackRef" }
+    override RegExpTerm getChild(int i) { none() }
+
+    override string getPrimaryQLClass() { result = "RegExpCharacterClassEscape" }
+  }
+
+  /**
+   * A named character class in a regular expression.
+   *
+   * Examples:
+   *
+   * ```
+   * \p{Digit}
+   * \p{IsLowerCase}
+   */
+  class RegExpNamedProperty extends RegExpCharacterClassEscape {
+    boolean inverted;
+    string name;
+
+    RegExpNamedProperty() {
+      name = this.getValue().substring(2, this.getValue().length() - 1) and
+      (
+        inverted = false and
+        this.getValue().charAt(0) = "p"
+        or
+        inverted = true and
+        this.getValue().charAt(0) = "P"
+      )
+    }
+
+    /** Holds if this class is inverted. */
+    predicate isInverted() { inverted = true }
+
+    /** Gets the name of this class. */
+    string getClassName() { result = name }
+
+    /**
+     * Gets an equivalent single-chcracter escape sequence for this class (e.g. \d) if possible, excluding the escape character.
+     */
+    string getBackslashEquivalent() {
+      exists(string eq | if inverted = true then result = eq.toUpperCase() else result = eq |
+        name = ["Digit", "IsDigit"] and
+        eq = "d"
+        or
+        name = ["Space", "IsWhite_Space"] and
+        eq = "s"
+      )
+    }
+  }
+
+  /**
+   * A character class in a regular expression.
+   *
+   * Examples:
+   *
+   * ```
+   * [a-z_]
+   * [^<>&]
+   * ```
+   */
+  class RegExpCharacterClass extends RegExpTerm, TRegExpCharacterClass {
+    RegExpCharacterClass() { this = TRegExpCharacterClass(re, start, end) }
+
+    /** Holds if this character class is inverted, matching the opposite of its content. */
+    predicate isInverted() { re.getChar(start + 1) = "^" }
+
+    /** Holds if this character class can match anything. */
+    predicate isUniversalClass() {
+      // [^]
+      this.isInverted() and not exists(this.getAChild())
+      or
+      // [\w\W] and similar
+      not this.isInverted() and
+      exists(string cce1, string cce2 |
+        cce1 = this.getAChild().(RegExpCharacterClassEscape).getValue() and
+        cce2 = this.getAChild().(RegExpCharacterClassEscape).getValue()
+      |
+        cce1 != cce2 and cce1.toLowerCase() = cce2.toLowerCase()
+      )
+    }
+
+    override RegExpTerm getChild(int i) {
+      i = 0 and
+      exists(int itemStart, int itemEnd |
+        re.charSetStart(start, itemStart) and
+        re.charSetChild(start, itemStart, itemEnd) and
+        result.occursInRegex(re, itemStart, itemEnd)
+      )
+      or
+      i > 0 and
+      exists(int itemStart, int itemEnd | itemStart = this.getChild(i - 1).getEnd() |
+        result.occursInRegex(re, itemStart, itemEnd) and
+        re.charSetChild(start, itemStart, itemEnd)
+      )
+    }
+
+    override string getPrimaryQLClass() { result = "RegExpCharacterClass" }
+  }
+
+  /**
+   * A character range in a character class in a regular expression.
+   *
+   * Example:
+   *
+   * ```
+   * a-z
+   * ```
+   */
+  class RegExpCharacterRange extends RegExpTerm, TRegExpCharacterRange {
+    int lower_end;
+    int upper_start;
+
+    RegExpCharacterRange() {
+      this = TRegExpCharacterRange(re, start, end) and
+      re.charRange(_, start, lower_end, upper_start, end)
+    }
+
+    /** Holds if this range goes from `lo` to `hi`, in effect is `lo-hi`. */
+    predicate isRange(string lo, string hi) {
+      lo = re.getText().substring(start, lower_end) and
+      hi = re.getText().substring(upper_start, end)
+    }
+
+    override RegExpTerm getChild(int i) {
+      i = 0 and
+      result.occursInRegex(re, start, lower_end)
+      or
+      i = 1 and
+      result.occursInRegex(re, upper_start, end)
+    }
+
+    override string getPrimaryQLClass() { result = "RegExpCharacterRange" }
+  }
+
+  /**
+   * A normal character in a regular expression, that is, a character
+   * without special meaning. This includes escaped characters.
+   * It also includes escape sequences that represent character classes.
+   *
+   * Examples:
+   * ```
+   * t
+   * \t
+   * ```
+   */
+  class RegExpNormalChar extends RegExpTerm, TRegExpNormalChar {
+    RegExpNormalChar() { this = TRegExpNormalChar(re, start, end) }
+
+    /**
+     * Holds if this constant represents a valid Unicode character (as opposed
+     * to a surrogate code point that does not correspond to a character by itself.)
+     */
+    predicate isCharacter() { any() }
+
+    /** Gets the string representation of the char matched by this term. */
+    string getValue() { result = re.getText().substring(start, end) }
+
+    override RegExpTerm getChild(int i) { none() }
+
+    override string getPrimaryQLClass() { result = "RegExpNormalChar" }
+  }
+
+  /**
+   * A quoted sequence.
+   *
+   * Example:
+   * ```
+   * \Qabc\E
+   * ```
+   */
+  class RegExpQuote extends RegExpTerm, TRegExpQuote {
+    string value;
+
+    RegExpQuote() {
+      exists(int inner_start, int inner_end |
+        this = TRegExpQuote(re, start, end) and
+        re.quote(start, end, inner_start, inner_end) and
+        value = re.getText().substring(inner_start, inner_end)
+      )
+    }
+
+    /** Gets the string matched by this quote term. */
+    string getValue() { result = value }
+
+    override string getPrimaryQLClass() { result = "RegExpQuote" }
+  }
+
+  /**
+   * A constant regular expression term, that is, a regular expression
+   * term matching a single string. This can be a single character or a quoted sequence.
+   *
+   * Example:
+   *
+   * ```
+   * a
+   * ```
+   */
+  class RegExpConstant extends RegExpTerm {
+    string value;
+
+    RegExpConstant() {
+      (value = this.(RegExpNormalChar).getValue() or value = this.(RegExpQuote).getValue()) and
+      not this instanceof RegExpCharacterClassEscape
+    }
+
+    /**
+     * Holds if this constant represents a valid Unicode character (as opposed
+     * to a surrogate code point that does not correspond to a character by itself.)
+     */
+    predicate isCharacter() { any() }
+
+    /** Gets the string matched by this constant term. */
+    string getValue() { result = value }
+
+    override RegExpTerm getChild(int i) { none() }
+
+    override string getPrimaryQLClass() { result = "RegExpConstant" }
+  }
+
+  /**
+   * A grouped regular expression.
+   *
+   * Examples:
+   *
+   * ```
+   * (ECMA|Java)
+   * (?:ECMA|Java)
+   * (?<quote>['"])
+   * ```
+   */
+  class RegExpGroup extends RegExpTerm, TRegExpGroup {
+    RegExpGroup() { this = TRegExpGroup(re, start, end) }
+
+    /**
+     * Gets the index of this capture group within the enclosing regular
+     * expression literal.
+     *
+     * For example, in the regular expression `/((a?).)(?:b)/`, the
+     * group `((a?).)` has index 1, the group `(a?)` nested inside it
+     * has index 2, and the group `(?:b)` has no index, since it is
+     * not a capture group.
+     */
+    int getNumber() { result = re.getGroupNumber(start, end) }
+
+    /** Holds if this is a named capture group. */
+    predicate isNamed() { exists(this.getName()) }
+
+    /** Gets the name of this capture group, if any. */
+    string getName() { result = re.getGroupName(start, end) }
+
+    override RegExpTerm getChild(int i) {
+      i = 0 and
+      exists(int in_start, int in_end | re.groupContents(start, end, in_start, in_end) |
+        result.occursInRegex(re, in_start, in_end)
+      )
+    }
+
+    override string getPrimaryQLClass() { result = "RegExpGroup" }
+
+    /** Holds if this is the `n`th numbered group of literal `lit`. */
+    predicate isNumberedGroupOfLiteral(RegExpLiteral lit, int n) {
+      lit = this.getLiteral() and n = this.getNumber()
+    }
+
+    /** Holds if this is a group with name `name` of literal `lit`. */
+    predicate isNamedGroupOfLiteral(RegExpLiteral lit, string name) {
+      lit = this.getLiteral() and name = this.getName()
+    }
+  }
+
+  /**
+   * A special character in a regular expression.
+   *
+   * Examples:
+   * ```
+   * ^
+   * $
+   * .
+   * ```
+   */
+  class RegExpSpecialChar extends RegExpTerm, TRegExpSpecialChar {
+    string char;
+
+    RegExpSpecialChar() {
+      this = TRegExpSpecialChar(re, start, end) and
+      re.specialCharacter(start, end, char)
+    }
+
+    /**
+     * Holds if this constant represents a valid Unicode character (as opposed
+     * to a surrogate code point that does not correspond to a character by itself.)
+     */
+    predicate isCharacter() { any() }
+
+    /** Gets the char for this term. */
+    string getChar() { result = char }
+
+    override RegExpTerm getChild(int i) { none() }
+
+    override string getPrimaryQLClass() { result = "RegExpSpecialChar" }
+  }
+
+  /**
+   * A dot regular expression.
+   *
+   * Example:
+   *
+   * ```
+   * .
+   * ```
+   */
+  class RegExpDot extends RegExpSpecialChar {
+    RegExpDot() { this.getChar() = "." }
+
+    override string getPrimaryQLClass() { result = "RegExpDot" }
+  }
+
+  /**
+   * A dollar assertion `$` matching the end of a line.
+   *
+   * Example:
+   *
+   * ```
+   * $
+   * ```
+   */
+  class RegExpDollar extends RegExpSpecialChar {
+    RegExpDollar() { this.getChar() = "$" }
+
+    override string getPrimaryQLClass() { result = "RegExpDollar" }
+  }
+
+  /**
+   * A caret assertion `^` matching the beginning of a line.
+   *
+   * Example:
+   *
+   * ```
+   * ^
+   * ```
+   */
+  class RegExpCaret extends RegExpSpecialChar {
+    RegExpCaret() { this.getChar() = "^" }
+
+    override string getPrimaryQLClass() { result = "RegExpCaret" }
+  }
+
+  /**
+   * A zero-width match, that is, either an empty group or an assertion.
+   *
+   * Examples:
+   * ```
+   * ()
+   * (?=\w)
+   * ```
+   */
+  class RegExpZeroWidthMatch extends RegExpGroup {
+    RegExpZeroWidthMatch() { re.zeroWidthMatch(start, end) }
+
+    override RegExpTerm getChild(int i) { none() }
+
+    override string getPrimaryQLClass() { result = "RegExpZeroWidthMatch" }
+  }
+
+  /**
+   * A zero-width lookahead or lookbehind assertion.
+   *
+   * Examples:
+   *
+   * ```
+   * (?=\w)
+   * (?!\n)
+   * (?<=\.)
+   * (?<!\\)
+   * ```
+   */
+  class RegExpSubPattern extends RegExpZeroWidthMatch {
+    RegExpSubPattern() { not re.emptyGroup(start, end) }
+
+    /** Gets the lookahead term. */
+    RegExpTerm getOperand() {
+      exists(int in_start, int in_end | re.groupContents(start, end, in_start, in_end) |
+        result.occursInRegex(re, in_start, in_end)
+      )
+    }
+  }
+
+  /**
+   * A zero-width lookahead assertion.
+   *
+   * Examples:
+   *
+   * ```
+   * (?=\w)
+   * (?!\n)
+   * ```
+   */
+  abstract class RegExpLookahead extends RegExpSubPattern { }
+
+  /**
+   * A positive-lookahead assertion.
+   *
+   * Examples:
+   *
+   * ```
+   * (?=\w)
+   * ```
+   */
+  class RegExpPositiveLookahead extends RegExpLookahead {
+    RegExpPositiveLookahead() { re.positiveLookaheadAssertionGroup(start, end) }
+
+    override string getPrimaryQLClass() { result = "RegExpPositiveLookahead" }
+  }
+
+  /**
+   * A negative-lookahead assertion.
+   *
+   * Examples:
+   *
+   * ```
+   * (?!\n)
+   * ```
+   */
+  class RegExpNegativeLookahead extends RegExpLookahead {
+    RegExpNegativeLookahead() { re.negativeLookaheadAssertionGroup(start, end) }
+
+    override string getPrimaryQLClass() { result = "RegExpNegativeLookahead" }
+  }
+
+  /**
+   * A zero-width lookbehind assertion.
+   *
+   * Examples:
+   *
+   * ```
+   * (?<=\.)
+   * (?<!\\)
+   * ```
+   */
+  abstract class RegExpLookbehind extends RegExpSubPattern { }
+
+  /**
+   * A positive-lookbehind assertion.
+   *
+   * Examples:
+   *
+   * ```
+   * (?<=\.)
+   * ```
+   */
+  class RegExpPositiveLookbehind extends RegExpLookbehind {
+    RegExpPositiveLookbehind() { re.positiveLookbehindAssertionGroup(start, end) }
+
+    override string getPrimaryQLClass() { result = "RegExpPositiveLookbehind" }
+  }
+
+  /**
+   * A negative-lookbehind assertion.
+   *
+   * Examples:
+   *
+   * ```
+   * (?<!\\)
+   * ```
+   */
+  class RegExpNegativeLookbehind extends RegExpLookbehind {
+    RegExpNegativeLookbehind() { re.negativeLookbehindAssertionGroup(start, end) }
+
+    override string getPrimaryQLClass() { result = "RegExpNegativeLookbehind" }
+  }
+
+  /**
+   * A back reference, that is, a term of the form `\i` or `\k<name>`
+   * in a regular expression.
+   *
+   * Examples:
+   *
+   * ```
+   * \1
+   * (?P=quote)
+   * ```
+   */
+  class RegExpBackRef extends RegExpTerm, TRegExpBackRef {
+    RegExpBackRef() { this = TRegExpBackRef(re, start, end) }
+
+    /**
+     * Gets the number of the capture group this back reference refers to, if any.
+     */
+    int getNumber() { result = re.getBackrefNumber(start, end) }
+
+    /**
+     * Gets the name of the capture group this back reference refers to, if any.
+     */
+    string getName() { result = re.getBackrefName(start, end) }
+
+    /** Gets the capture group this back reference refers to. */
+    RegExpGroup getGroup() {
+      result.isNumberedGroupOfLiteral(this.getLiteral(), this.getNumber())
+      or
+      result.isNamedGroupOfLiteral(this.getLiteral(), this.getName())
+    }
+
+    override RegExpTerm getChild(int i) { none() }
+
+    override string getPrimaryQLClass() { result = "RegExpBackRef" }
+  }
 }
-
-/** Gets the parse tree resulting from parsing `re`, if such has been constructed. */
-RegExpTerm getParsedRegExp(StringLiteral re) { result.getRegex() = re and result.isRootTerm() }

From b737bdbca037dd178690c3245d1b0d3d5b08ed2e Mon Sep 17 00:00:00 2001
From: erik-krogh <erik-krogh@github.com>
Date: Tue, 1 Nov 2022 12:16:28 +0100
Subject: [PATCH 0247/1420] add a Java implementation of `RegexTreeViewSig`

---
 .../semmle/code/java/regex/RegexTreeView.qll  | 91 ++++++++++++++++++-
 1 file changed, 87 insertions(+), 4 deletions(-)

diff --git a/java/ql/lib/semmle/code/java/regex/RegexTreeView.qll b/java/ql/lib/semmle/code/java/regex/RegexTreeView.qll
index ceccd3efd5f..2eecff1e627 100644
--- a/java/ql/lib/semmle/code/java/regex/RegexTreeView.qll
+++ b/java/ql/lib/semmle/code/java/regex/RegexTreeView.qll
@@ -1,11 +1,19 @@
 /** Provides a class hierarchy corresponding to a parse tree of regular expressions. */
 
-private import java
-private import semmle.code.java.regex.regex
+private import semmle.code.java.regex.regex as RE // importing under a namescape to avoid naming conflict for `Top`.
+private import codeql.regex.nfa.NfaUtils as NfaUtils
+// exporting as RegexTreeView, and in the top-level scope.
+import Impl as RegexTreeView
 import Impl
 
 /** Gets the parse tree resulting from parsing `re`, if such has been constructed. */
-RegExpTerm getParsedRegExp(StringLiteral re) { result.getRegex() = re and result.isRootTerm() }
+RegExpTerm getParsedRegExp(RE::StringLiteral re) { result.getRegex() = re and result.isRootTerm() }
+
+private class Regex = RE::Regex;
+
+private class Location = RE::Location;
+
+private class File = RE::File;
 
 /**
  * An element containing a regular expression term, that is, either
@@ -53,7 +61,10 @@ private newtype TRegExpParent =
   /** A back reference */
   TRegExpBackRef(Regex re, int start, int end) { re.backreference(start, end) }
 
-module Impl {
+private import codeql.regex.RegexTreeView
+
+/** An implementation that statisfies the RegexTreeView signature. */
+module Impl implements RegexTreeViewSig {
   /**
    * An element containing a regular expression term, that is, either
    * a string literal (parsed as a regular expression; the root of the parse tree)
@@ -547,6 +558,13 @@ module Impl {
     }
   }
 
+  /**
+   * A word boundary, that is, a regular expression term of the form `\b`.
+   */
+  class RegExpWordBoundary extends RegExpSpecialChar {
+    RegExpWordBoundary() { this.getChar() = "\\b" }
+  }
+
   /**
    * Gets the hex number for the `hex` char.
    */
@@ -1088,4 +1106,69 @@ module Impl {
 
     override string getPrimaryQLClass() { result = "RegExpBackRef" }
   }
+
+  class Top = RegExpParent;
+
+  /**
+   * Holds if `term` is an escape class representing e.g. `\d`.
+   * `clazz` is which character class it represents, e.g. "d" for `\d`.
+   */
+  predicate isEscapeClass(RegExpTerm term, string clazz) {
+    term.(RegExpCharacterClassEscape).getValue() = clazz
+    or
+    term.(RegExpNamedProperty).getBackslashEquivalent() = clazz
+  }
+
+  /**
+   * Holds if `term` is a possessive quantifier, e.g. `a*+`.
+   */
+  predicate isPossessive(RegExpQuantifier term) { term.isPossessive() }
+
+  /**
+   * Holds if the regex that `term` is part of is used in a way that ignores any leading prefix of the input it's matched against.
+   */
+  predicate matchesAnyPrefix(RegExpTerm term) { not term.getRegex().matchesFullString() }
+
+  /**
+   * Holds if the regex that `term` is part of is used in a way that ignores any trailing suffix of the input it's matched against.
+   */
+  predicate matchesAnySuffix(RegExpTerm term) { not term.getRegex().matchesFullString() }
+
+  /**
+   * Holds if the regular expression should not be considered.
+   *
+   * We make the pragmatic performance optimization to ignore regular expressions in files
+   * that do not belong to the project code (such as installed dependencies).
+   */
+  predicate isExcluded(RegExpParent parent) {
+    not exists(parent.getRegex().getLocation().getFile().getRelativePath())
+    or
+    // Regexes with many occurrences of ".*" may cause the polynomial ReDoS computation to explode, so
+    // we explicitly exclude these.
+    strictcount(int i | exists(parent.getRegex().getText().regexpFind("\\.\\*", i, _)) | i) > 10
+  }
+
+  /**
+   * Holds if `root` has the `i` flag for case-insensitive matching.
+   */
+  predicate isIgnoreCase(RegExpTerm root) {
+    root.isRootTerm() and
+    root.getLiteral().isIgnoreCase()
+  }
+
+  /**
+   * Gets the flags for `root`, or the empty string if `root` has no flags.
+   */
+  deprecated string getFlags(RegExpTerm root) {
+    root.isRootTerm() and
+    result = root.getLiteral().getFlags()
+  }
+
+  /**
+   * Holds if `root` has the `s` flag for multi-line matching.
+   */
+  predicate isDotAll(RegExpTerm root) {
+    root.isRootTerm() and
+    root.getLiteral().isDotAll()
+  }
 }

From d5b066636f41c5e09f547b4a410d87ced9c24265 Mon Sep 17 00:00:00 2001
From: erik-krogh <erik-krogh@github.com>
Date: Tue, 1 Nov 2022 12:17:46 +0100
Subject: [PATCH 0248/1420] use namespace in `PrintAst.qll` to avoid conflict
 with `Top`

---
 java/ql/lib/semmle/code/java/PrintAst.qll | 14 ++++++++------
 1 file changed, 8 insertions(+), 6 deletions(-)

diff --git a/java/ql/lib/semmle/code/java/PrintAst.qll b/java/ql/lib/semmle/code/java/PrintAst.qll
index 4fe7e3f1ec5..4df23f4ec14 100644
--- a/java/ql/lib/semmle/code/java/PrintAst.qll
+++ b/java/ql/lib/semmle/code/java/PrintAst.qll
@@ -7,7 +7,7 @@
  */
 
 import java
-import semmle.code.java.regex.RegexTreeView
+import semmle.code.java.regex.RegexTreeView as RegexTreeView
 
 private newtype TPrintAstConfiguration = MkPrintAstConfiguration()
 
@@ -134,8 +134,10 @@ private newtype TPrintAstNode =
   TImportsNode(CompilationUnit cu) {
     shouldPrint(cu, _) and exists(Import i | i.getCompilationUnit() = cu)
   } or
-  TRegExpTermNode(RegExpTerm term) {
-    exists(StringLiteral str | term.getRootTerm() = getParsedRegExp(str) and shouldPrint(str, _))
+  TRegExpTermNode(RegexTreeView::RegExpTerm term) {
+    exists(StringLiteral str |
+      term.getRootTerm() = RegexTreeView::getParsedRegExp(str) and shouldPrint(str, _)
+    )
   }
 
 /**
@@ -316,7 +318,7 @@ final class StringLiteralNode extends ExprStmtNode {
 
   override PrintAstNode getChild(int childIndex) {
     childIndex = 0 and
-    result.(RegExpTermNode).getTerm() = getParsedRegExp(element)
+    result.(RegExpTermNode).getTerm() = RegexTreeView::getParsedRegExp(element)
   }
 }
 
@@ -324,12 +326,12 @@ final class StringLiteralNode extends ExprStmtNode {
  * A node representing a regular expression term.
  */
 class RegExpTermNode extends TRegExpTermNode, PrintAstNode {
-  RegExpTerm term;
+  RegexTreeView::RegExpTerm term;
 
   RegExpTermNode() { this = TRegExpTermNode(term) }
 
   /** Gets the `RegExpTerm` for this node. */
-  RegExpTerm getTerm() { result = term }
+  RegexTreeView::RegExpTerm getTerm() { result = term }
 
   override PrintAstNode getChild(int childIndex) {
     result.(RegExpTermNode).getTerm() = term.getChild(childIndex)

From c0290483066af7f687e79a6ee07f49170e594b30 Mon Sep 17 00:00:00 2001
From: erik-krogh <erik-krogh@github.com>
Date: Tue, 1 Nov 2022 12:20:05 +0100
Subject: [PATCH 0249/1420] port the Java regex/redos queries to use the shared
 pack

---
 .../java/security/OverlyLargeRangeQuery.qll   |  289 +---
 .../regexp/ExponentialBackTracking.qll        |  285 +---
 .../code/java/security/regexp/NfaUtils.qll    | 1333 +----------------
 .../java/security/regexp/NfaUtilsSpecific.qll |   76 -
 .../security/regexp/PolynomialReDoSQuery.qll  |   11 +-
 .../regexp/SuperlinearBackTracking.qll        |  385 +----
 .../Security/CWE/CWE-020/OverlyLargeRange.ql  |    9 +-
 .../Security/CWE/CWE-730/PolynomialReDoS.ql   |    4 +-
 java/ql/src/Security/CWE/CWE-730/ReDoS.ql     |    8 +-
 .../regex/parser/RegexParseTests.ql           |   12 +-
 .../security/CWE-730/PolynomialReDoS.ql       |    6 +-
 .../query-tests/security/CWE-730/ReDoS.ql     |    7 +-
 12 files changed, 49 insertions(+), 2376 deletions(-)
 delete mode 100644 java/ql/lib/semmle/code/java/security/regexp/NfaUtilsSpecific.qll

diff --git a/java/ql/lib/semmle/code/java/security/OverlyLargeRangeQuery.qll b/java/ql/lib/semmle/code/java/security/OverlyLargeRangeQuery.qll
index 65e662f0bc5..06b538d4a63 100644
--- a/java/ql/lib/semmle/code/java/security/OverlyLargeRangeQuery.qll
+++ b/java/ql/lib/semmle/code/java/security/OverlyLargeRangeQuery.qll
@@ -2,288 +2,7 @@
  * Classes and predicates for working with suspicious character ranges.
  */
 
-// We don't need the NFA utils, just the regexp tree.
-// but the below is a nice shared library that exposes the API we need.
-import regexp.NfaUtils
-
-/**
- * Gets a rank for `range` that is unique for ranges in the same file.
- * Prioritizes ranges that match more characters.
- */
-int rankRange(RegExpCharacterRange range) {
-  range =
-    rank[result](RegExpCharacterRange r, Location l, int low, int high |
-      r.getLocation() = l and
-      isRange(r, low, high)
-    |
-      r order by (high - low) desc, l.getStartLine(), l.getStartColumn()
-    )
-}
-
-/** Holds if `range` spans from the unicode code points `low` to `high` (both inclusive). */
-predicate isRange(RegExpCharacterRange range, int low, int high) {
-  exists(string lowc, string highc |
-    range.isRange(lowc, highc) and
-    low.toUnicode() = lowc and
-    high.toUnicode() = highc
-  )
-}
-
-/** Holds if `char` is an alpha-numeric character. */
-predicate isAlphanumeric(string char) {
-  // written like this to avoid having a bindingset for the predicate
-  char = [[48 .. 57], [65 .. 90], [97 .. 122]].toUnicode() // 0-9, A-Z, a-z
-}
-
-/**
- * Holds if the given ranges are from the same character class
- * and there exists at least one character matched by both ranges.
- */
-predicate overlap(RegExpCharacterRange a, RegExpCharacterRange b) {
-  exists(RegExpCharacterClass clz |
-    a = clz.getAChild() and
-    b = clz.getAChild() and
-    a != b
-  |
-    exists(int alow, int ahigh, int blow, int bhigh |
-      isRange(a, alow, ahigh) and
-      isRange(b, blow, bhigh) and
-      alow <= bhigh and
-      blow <= ahigh
-    )
-  )
-}
-
-/**
- * Holds if `range` overlaps with the char class `escape` from the same character class.
- */
-predicate overlapsWithCharEscape(RegExpCharacterRange range, RegExpCharacterClassEscape escape) {
-  exists(RegExpCharacterClass clz, string low, string high |
-    range = clz.getAChild() and
-    escape = clz.getAChild() and
-    range.isRange(low, high)
-  |
-    escape.getValue() = "w" and
-    getInRange(low, high).regexpMatch("\\w")
-    or
-    escape.getValue() = "d" and
-    getInRange(low, high).regexpMatch("\\d")
-    or
-    escape.getValue() = "s" and
-    getInRange(low, high).regexpMatch("\\s")
-  )
-}
-
-/** Gets the unicode code point for a `char`. */
-bindingset[char]
-int toCodePoint(string char) { result.toUnicode() = char }
-
-/** A character range that appears to be overly wide. */
-class OverlyWideRange extends RegExpCharacterRange {
-  OverlyWideRange() {
-    exists(int low, int high, int numChars |
-      isRange(this, low, high) and
-      numChars = (1 + high - low) and
-      this.getRootTerm().isUsedAsRegExp() and
-      numChars >= 10
-    |
-      // across the Z-a range (which includes backticks)
-      toCodePoint("Z") >= low and
-      toCodePoint("a") <= high
-      or
-      // across the 9-A range (which includes e.g. ; and ?)
-      toCodePoint("9") >= low and
-      toCodePoint("A") <= high
-      or
-      // a non-alphanumeric char as part of the range boundaries
-      exists(int bound | bound = [low, high] | not isAlphanumeric(bound.toUnicode())) and
-      // while still being ascii
-      low < 128 and
-      high < 128
-    ) and
-    // allowlist for known ranges
-    not this = allowedWideRanges()
-  }
-
-  /** Gets a string representation of a character class that matches the same chars as this range. */
-  string printEquivalent() { result = RangePrinter::printEquivalentCharClass(this) }
-}
-
-/** Gets a range that should not be reported as an overly wide range. */
-RegExpCharacterRange allowedWideRanges() {
-  // ~ is the last printable ASCII character, it's used right in various wide ranges.
-  result.isRange(_, "~")
-  or
-  // the same with " " and "!". " " is the first printable character, and "!" is the first non-white-space printable character.
-  result.isRange([" ", "!"], _)
-  or
-  // the `[@-_]` range is intentional
-  result.isRange("@", "_")
-  or
-  // starting from the zero byte is a good indication that it's purposely matching a large range.
-  result.isRange(0.toUnicode(), _)
-}
-
-/** Gets a char between (and including) `low` and `high`. */
-bindingset[low, high]
-private string getInRange(string low, string high) {
-  result = [toCodePoint(low) .. toCodePoint(high)].toUnicode()
-}
-
-/** A module computing an equivalent character class for an overly wide range. */
-module RangePrinter {
-  bindingset[char]
-  bindingset[result]
-  private string next(string char) {
-    exists(int prev, int next |
-      prev.toUnicode() = char and
-      next.toUnicode() = result and
-      next = prev + 1
-    )
-  }
-
-  /** Gets the points where the parts of the pretty printed range should be cut off. */
-  private string cutoffs() { result = ["A", "Z", "a", "z", "0", "9"] }
-
-  /** Gets the char to use in the low end of a range for a given `cut` */
-  private string lowCut(string cut) {
-    cut = ["A", "a", "0"] and
-    result = cut
-    or
-    cut = ["Z", "z", "9"] and
-    result = next(cut)
-  }
-
-  /** Gets the char to use in the high end of a range for a given `cut` */
-  private string highCut(string cut) {
-    cut = ["Z", "z", "9"] and
-    result = cut
-    or
-    cut = ["A", "a", "0"] and
-    next(result) = cut
-  }
-
-  /** Gets the cutoff char used for a given `part` of a range when pretty-printing it. */
-  private string cutoff(OverlyWideRange range, int part) {
-    exists(int low, int high | isRange(range, low, high) |
-      result =
-        rank[part + 1](string cut |
-          cut = cutoffs() and low < toCodePoint(cut) and toCodePoint(cut) < high
-        |
-          cut order by toCodePoint(cut)
-        )
-    )
-  }
-
-  /** Gets the number of parts we should print for a given `range`. */
-  private int parts(OverlyWideRange range) { result = 1 + count(cutoff(range, _)) }
-
-  /** Holds if the given part of a range should span from `low` to `high`. */
-  private predicate part(OverlyWideRange range, int part, string low, string high) {
-    // first part.
-    part = 0 and
-    (
-      range.isRange(low, high) and
-      parts(range) = 1
-      or
-      parts(range) >= 2 and
-      range.isRange(low, _) and
-      high = highCut(cutoff(range, part))
-    )
-    or
-    // middle
-    part >= 1 and
-    part < parts(range) - 1 and
-    low = lowCut(cutoff(range, part - 1)) and
-    high = highCut(cutoff(range, part))
-    or
-    // last.
-    part = parts(range) - 1 and
-    low = lowCut(cutoff(range, part - 1)) and
-    range.isRange(_, high)
-  }
-
-  /** Gets an escaped `char` for use in a character class. */
-  bindingset[char]
-  private string escape(string char) {
-    exists(string reg | reg = "(\\[|\\]|\\\\|-|/)" |
-      if char.regexpMatch(reg) then result = "\\" + char else result = char
-    )
-  }
-
-  /** Gets a part of the equivalent range. */
-  private string printEquivalentCharClass(OverlyWideRange range, int part) {
-    exists(string low, string high | part(range, part, low, high) |
-      if
-        isAlphanumeric(low) and
-        isAlphanumeric(high)
-      then result = low + "-" + high
-      else
-        result =
-          strictconcat(string char | char = getInRange(low, high) | escape(char) order by char)
-    )
-  }
-
-  /** Gets the entire pretty printed equivalent range. */
-  string printEquivalentCharClass(OverlyWideRange range) {
-    result =
-      strictconcat(string r, int part |
-        r = "[" and part = -1 and exists(range)
-        or
-        r = printEquivalentCharClass(range, part)
-        or
-        r = "]" and part = parts(range)
-      |
-        r order by part
-      )
-  }
-}
-
-/** Gets a char range that is overly large because of `reason`. */
-RegExpCharacterRange getABadRange(string reason, int priority) {
-  result instanceof OverlyWideRange and
-  priority = 0 and
-  exists(string equiv | equiv = result.(OverlyWideRange).printEquivalent() |
-    if equiv.length() <= 50
-    then reason = "is equivalent to " + equiv
-    else reason = "is equivalent to " + equiv.substring(0, 50) + "..."
-  )
-  or
-  priority = 1 and
-  exists(RegExpCharacterRange other |
-    reason = "overlaps with " + other + " in the same character class" and
-    rankRange(result) < rankRange(other) and
-    overlap(result, other)
-  )
-  or
-  priority = 2 and
-  exists(RegExpCharacterClassEscape escape |
-    reason = "overlaps with " + escape + " in the same character class" and
-    overlapsWithCharEscape(result, escape)
-  )
-  or
-  reason = "is empty" and
-  priority = 3 and
-  exists(int low, int high |
-    isRange(result, low, high) and
-    low > high
-  )
-}
-
-/** Holds if `range` matches suspiciously many characters. */
-predicate problem(RegExpCharacterRange range, string reason) {
-  reason =
-    strictconcat(string m, int priority |
-      range = getABadRange(m, priority)
-    |
-      m, ", and " order by priority desc
-    ) and
-  // specifying a range using an escape is usually OK.
-  not range.getAChild() instanceof RegExpEscape and
-  // Unicode escapes in strings are interpreted before it turns into a regexp,
-  // so e.g. [\u0001-\uFFFF] will just turn up as a range between two constants.
-  // We therefore exclude these ranges.
-  range.getRootTerm().getParent() instanceof RegExpLiteral and
-  // is used as regexp (mostly for JS where regular expressions are parsed eagerly)
-  range.getRootTerm().isUsedAsRegExp()
-}
+private import semmle.code.java.regex.RegexTreeView::RegexTreeView as TreeView
+// OverlyLargeRangeQuery should be used directly from the shared pack, and not from this file.
+deprecated import codeql.regex.OverlyLargeRangeQuery::Make<TreeView> as Dep
+import Dep
diff --git a/java/ql/lib/semmle/code/java/security/regexp/ExponentialBackTracking.qll b/java/ql/lib/semmle/code/java/security/regexp/ExponentialBackTracking.qll
index 4a608890249..d0a08dc88bf 100644
--- a/java/ql/lib/semmle/code/java/security/regexp/ExponentialBackTracking.qll
+++ b/java/ql/lib/semmle/code/java/security/regexp/ExponentialBackTracking.qll
@@ -62,284 +62,7 @@
  *     a suffix `x` (possible empty) that is most likely __not__ accepted.
  */
 
-import NfaUtils
-
-/**
- * Holds if state `s` might be inside a backtracking repetition.
- */
-pragma[noinline]
-private predicate stateInsideBacktracking(State s) {
-  s.getRepr().getParent*() instanceof MaybeBacktrackingRepetition
-}
-
-/**
- * A infinitely repeating quantifier that might backtrack.
- */
-private class MaybeBacktrackingRepetition extends InfiniteRepetitionQuantifier {
-  MaybeBacktrackingRepetition() {
-    exists(RegExpTerm child |
-      child instanceof RegExpAlt or
-      child instanceof RegExpQuantifier
-    |
-      child.getParent+() = this
-    )
-  }
-}
-
-/**
- * A state in the product automaton.
- */
-private newtype TStatePair =
-  /**
-   * We lazily only construct those states that we are actually
-   * going to need: `(q, q)` for every fork state `q`, and any
-   * pair of states that can be reached from a pair that we have
-   * already constructed. To cut down on the number of states,
-   * we only represent states `(q1, q2)` where `q1` is lexicographically
-   * no bigger than `q2`.
-   *
-   * States are only constructed if both states in the pair are
-   * inside a repetition that might backtrack.
-   */
-  MkStatePair(State q1, State q2) {
-    isFork(q1, _, _, _, _) and q2 = q1
-    or
-    (step(_, _, _, q1, q2) or step(_, _, _, q2, q1)) and
-    rankState(q1) <= rankState(q2)
-  }
-
-/**
- * Gets a unique number for a `state`.
- * Is used to create an ordering of states, where states with the same `toString()` will be ordered differently.
- */
-private int rankState(State state) {
-  state =
-    rank[result](State s, Location l |
-      stateInsideBacktracking(s) and
-      l = s.getRepr().getLocation()
-    |
-      s order by l.getStartLine(), l.getStartColumn(), s.toString()
-    )
-}
-
-/**
- * A state in the product automaton.
- */
-private class StatePair extends TStatePair {
-  State q1;
-  State q2;
-
-  StatePair() { this = MkStatePair(q1, q2) }
-
-  /** Gets a textual representation of this element. */
-  string toString() { result = "(" + q1 + ", " + q2 + ")" }
-
-  /** Gets the first component of the state pair. */
-  State getLeft() { result = q1 }
-
-  /** Gets the second component of the state pair. */
-  State getRight() { result = q2 }
-}
-
-/**
- * Holds for `(fork, fork)` state pairs when `isFork(fork, _, _, _, _)` holds.
- *
- * Used in `statePairDistToFork`
- */
-private predicate isStatePairFork(StatePair p) {
-  exists(State fork | p = MkStatePair(fork, fork) and isFork(fork, _, _, _, _))
-}
-
-/**
- * Holds if there are transitions from the components of `q` to the corresponding
- * components of `r`.
- *
- * Used in `statePairDistToFork`
- */
-private predicate reverseStep(StatePair r, StatePair q) { step(q, _, _, r) }
-
-/**
- * Gets the minimum length of a path from `q` to `r` in the
- * product automaton.
- */
-private int statePairDistToFork(StatePair q, StatePair r) =
-  shortestDistances(isStatePairFork/1, reverseStep/2)(r, q, result)
-
-/**
- * Holds if there are transitions from `q` to `r1` and from `q` to `r2`
- * labelled with `s1` and `s2`, respectively, where `s1` and `s2` do not
- * trivially have an empty intersection.
- *
- * This predicate only holds for states associated with regular expressions
- * that have at least one repetition quantifier in them (otherwise the
- * expression cannot be vulnerable to ReDoS attacks anyway).
- */
-pragma[noopt]
-private predicate isFork(State q, InputSymbol s1, InputSymbol s2, State r1, State r2) {
-  stateInsideBacktracking(q) and
-  exists(State q1, State q2 |
-    q1 = epsilonSucc*(q) and
-    delta(q1, s1, r1) and
-    q2 = epsilonSucc*(q) and
-    delta(q2, s2, r2) and
-    // Use pragma[noopt] to prevent intersect(s1,s2) from being the starting point of the join.
-    // From (s1,s2) it would find a huge number of intermediate state pairs (q1,q2) originating from different literals,
-    // and discover at the end that no `q` can reach both `q1` and `q2` by epsilon transitions.
-    exists(intersect(s1, s2))
-  |
-    s1 != s2
-    or
-    r1 != r2
-    or
-    r1 = r2 and q1 != q2
-    or
-    // If q can reach itself by epsilon transitions, then there are two distinct paths to the q1/q2 state:
-    // one that uses the loop and one that doesn't. The engine will separately attempt to match with each path,
-    // despite ending in the same state. The "fork" thus arises from the choice of whether to use the loop or not.
-    // To avoid every state in the loop becoming a fork state,
-    // we arbitrarily pick the InfiniteRepetitionQuantifier state as the canonical fork state for the loop
-    // (every epsilon-loop must contain such a state).
-    //
-    // We additionally require that the there exists another InfiniteRepetitionQuantifier `mid` on the path from `q` to itself.
-    // This is done to avoid flagging regular expressions such as `/(a?)*b/` - that only has polynomial runtime, and is detected by `js/polynomial-redos`.
-    // The below code is therefore a heuristic, that only flags regular expressions such as `/(a*)*b/`,
-    // and does not flag regular expressions such as `/(a?b?)c/`, but the latter pattern is not used frequently.
-    r1 = r2 and
-    q1 = q2 and
-    epsilonSucc+(q) = q and
-    exists(RegExpTerm term | term = q.getRepr() | term instanceof InfiniteRepetitionQuantifier) and
-    // One of the mid states is an infinite quantifier itself
-    exists(State mid, RegExpTerm term |
-      mid = epsilonSucc+(q) and
-      term = mid.getRepr() and
-      term instanceof InfiniteRepetitionQuantifier and
-      q = epsilonSucc+(mid) and
-      not mid = q
-    )
-  ) and
-  stateInsideBacktracking(r1) and
-  stateInsideBacktracking(r2)
-}
-
-/**
- * Gets the state pair `(q1, q2)` or `(q2, q1)`; note that only
- * one or the other is defined.
- */
-private StatePair mkStatePair(State q1, State q2) {
-  result = MkStatePair(q1, q2) or result = MkStatePair(q2, q1)
-}
-
-/**
- * Holds if there are transitions from the components of `q` to the corresponding
- * components of `r` labelled with `s1` and `s2`, respectively.
- */
-private predicate step(StatePair q, InputSymbol s1, InputSymbol s2, StatePair r) {
-  exists(State r1, State r2 | step(q, s1, s2, r1, r2) and r = mkStatePair(r1, r2))
-}
-
-/**
- * Holds if there are transitions from the components of `q` to `r1` and `r2`
- * labelled with `s1` and `s2`, respectively.
- *
- * We only consider transitions where the resulting states `(r1, r2)` are both
- * inside a repetition that might backtrack.
- */
-pragma[noopt]
-private predicate step(StatePair q, InputSymbol s1, InputSymbol s2, State r1, State r2) {
-  exists(State q1, State q2 | q.getLeft() = q1 and q.getRight() = q2 |
-    deltaClosed(q1, s1, r1) and
-    deltaClosed(q2, s2, r2) and
-    // use noopt to force the join on `intersect` to happen last.
-    exists(intersect(s1, s2))
-  ) and
-  stateInsideBacktracking(r1) and
-  stateInsideBacktracking(r2)
-}
-
-private newtype TTrace =
-  Nil() or
-  Step(InputSymbol s1, InputSymbol s2, TTrace t) { isReachableFromFork(_, _, s1, s2, t, _) }
-
-/**
- * A list of pairs of input symbols that describe a path in the product automaton
- * starting from some fork state.
- */
-private class Trace extends TTrace {
-  /** Gets a textual representation of this element. */
-  string toString() {
-    this = Nil() and result = "Nil()"
-    or
-    exists(InputSymbol s1, InputSymbol s2, Trace t | this = Step(s1, s2, t) |
-      result = "Step(" + s1 + ", " + s2 + ", " + t + ")"
-    )
-  }
-}
-
-/**
- * Holds if `r` is reachable from `(fork, fork)` under input `w`, and there is
- * a path from `r` back to `(fork, fork)` with `rem` steps.
- */
-private predicate isReachableFromFork(State fork, StatePair r, Trace w, int rem) {
-  exists(InputSymbol s1, InputSymbol s2, Trace v |
-    isReachableFromFork(fork, r, s1, s2, v, rem) and
-    w = Step(s1, s2, v)
-  )
-}
-
-private predicate isReachableFromFork(
-  State fork, StatePair r, InputSymbol s1, InputSymbol s2, Trace v, int rem
-) {
-  // base case
-  exists(State q1, State q2 |
-    isFork(fork, s1, s2, q1, q2) and
-    r = MkStatePair(q1, q2) and
-    v = Nil() and
-    rem = statePairDistToFork(r, MkStatePair(fork, fork))
-  )
-  or
-  // recursive case
-  exists(StatePair p |
-    isReachableFromFork(fork, p, v, rem + 1) and
-    step(p, s1, s2, r) and
-    rem = statePairDistToFork(r, MkStatePair(fork, fork))
-  )
-}
-
-/**
- * Gets a state in the product automaton from which `(fork, fork)` is
- * reachable in zero or more epsilon transitions.
- */
-private StatePair getAForkPair(State fork) {
-  isFork(fork, _, _, _, _) and
-  result = MkStatePair(epsilonPred*(fork), epsilonPred*(fork))
-}
-
-/** An implementation of a chain containing chars for use by `Concretizer`. */
-private module CharTreeImpl implements CharTree {
-  class CharNode = Trace;
-
-  CharNode getPrev(CharNode t) { t = Step(_, _, result) }
-
-  /** Holds if `n` is a trace that is used by `concretize` in `isPumpable`. */
-  predicate isARelevantEnd(CharNode n) {
-    exists(State f | isReachableFromFork(f, getAForkPair(f), n, _))
-  }
-
-  string getChar(CharNode t) {
-    exists(InputSymbol s1, InputSymbol s2 | t = Step(s1, s2, _) | result = intersect(s1, s2))
-  }
-}
-
-/**
- * Holds if `fork` is a pumpable fork with word `w`.
- */
-private predicate isPumpable(State fork, string w) {
-  exists(StatePair q, Trace t |
-    isReachableFromFork(fork, q, t, _) and
-    q = getAForkPair(fork) and
-    w = Concretizer<CharTreeImpl>::concretize(t)
-  )
-}
-
-/** Holds if `state` has exponential ReDoS */
-predicate hasReDoSResult = ReDoSPruning<isPumpable/2>::hasReDoSResult/4;
+private import semmle.code.java.regex.RegexTreeView::RegexTreeView as TreeView
+// ExponentialBackTracking should be used directly from the shared pack, and not from this file.
+deprecated private import codeql.regex.nfa.ExponentialBackTracking::Make<TreeView> as Dep
+import Dep
diff --git a/java/ql/lib/semmle/code/java/security/regexp/NfaUtils.qll b/java/ql/lib/semmle/code/java/security/regexp/NfaUtils.qll
index 5ff0cb6a39e..3b69ecc7120 100644
--- a/java/ql/lib/semmle/code/java/security/regexp/NfaUtils.qll
+++ b/java/ql/lib/semmle/code/java/security/regexp/NfaUtils.qll
@@ -7,1332 +7,7 @@
  * other queries that benefit from reasoning about NFAs.
  */
 
-import NfaUtilsSpecific
-
-/**
- * Gets the char after `c` (from a simplified ASCII table).
- */
-private string nextChar(string c) { exists(int code | code = ascii(c) | code + 1 = ascii(result)) }
-
-/**
- * Gets an approximation for the ASCII code for `char`.
- * Only the easily printable chars are included (so no newline, tab, null, etc).
- */
-private int ascii(string char) {
-  char =
-    rank[result](string c |
-      c =
-        "! \"#$%&'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\\]^_`abcdefghijklmnopqrstuvwxyz{|}~"
-            .charAt(_)
-    )
-}
-
-/**
- * Holds if `t` matches at least an epsilon symbol.
- *
- * That is, this term does not restrict the language of the enclosing regular expression.
- *
- * This is implemented as an under-approximation, and this predicate does not hold for sub-patterns in particular.
- */
-predicate matchesEpsilon(RegExpTerm t) {
-  t instanceof RegExpStar
-  or
-  t instanceof RegExpOpt
-  or
-  t.(RegExpRange).getLowerBound() = 0
-  or
-  exists(RegExpTerm child |
-    child = t.getAChild() and
-    matchesEpsilon(child)
-  |
-    t instanceof RegExpAlt or
-    t instanceof RegExpGroup or
-    t instanceof RegExpPlus or
-    t instanceof RegExpRange
-  )
-  or
-  matchesEpsilon(t.(RegExpBackRef).getGroup())
-  or
-  forex(RegExpTerm child | child = t.(RegExpSequence).getAChild() | matchesEpsilon(child))
-}
-
-/**
- * A lookahead/lookbehind that matches the empty string.
- */
-class EmptyPositiveSubPattern extends RegExpSubPattern {
-  EmptyPositiveSubPattern() {
-    (
-      this instanceof RegExpPositiveLookahead
-      or
-      this instanceof RegExpPositiveLookbehind
-    ) and
-    matchesEpsilon(this.getOperand())
-  }
-}
-
-/** DEPRECATED: Use `EmptyPositiveSubPattern` instead. */
-deprecated class EmptyPositiveSubPatttern = EmptyPositiveSubPattern;
-
-/**
- * A branch in a disjunction that is the root node in a literal, or a literal
- * whose root node is not a disjunction.
- */
-class RegExpRoot extends RegExpTerm {
-  RegExpRoot() {
-    exists(RegExpParent parent |
-      exists(RegExpAlt alt |
-        alt.isRootTerm() and
-        this = alt.getAChild() and
-        parent = alt.getParent()
-      )
-      or
-      this.isRootTerm() and
-      not this instanceof RegExpAlt and
-      parent = this.getParent()
-    )
-  }
-
-  /**
-   * Holds if this root term is relevant to the ReDoS analysis.
-   */
-  predicate isRelevant() {
-    // is actually used as a RegExp
-    this.isUsedAsRegExp() and
-    // not excluded for library specific reasons
-    not isExcluded(this.getRootTerm().getParent())
-  }
-}
-
-/**
- * A constant in a regular expression that represents valid Unicode character(s).
- */
-private class RegexpCharacterConstant extends RegExpConstant {
-  RegexpCharacterConstant() { this.isCharacter() }
-}
-
-/**
- * A regexp term that is relevant for this ReDoS analysis.
- */
-class RelevantRegExpTerm extends RegExpTerm {
-  RelevantRegExpTerm() { getRoot(this).isRelevant() }
-}
-
-/**
- * Holds if `term` is the chosen canonical representative for all terms with string representation `str`.
- * The string representation includes which flags are used with the regular expression.
- *
- * Using canonical representatives gives a huge performance boost when working with tuples containing multiple `InputSymbol`s.
- * The number of `InputSymbol`s is decreased by 3 orders of magnitude or more in some larger benchmarks.
- */
-private predicate isCanonicalTerm(RelevantRegExpTerm term, string str) {
-  term =
-    min(RelevantRegExpTerm t, Location loc, File file |
-      loc = t.getLocation() and
-      file = t.getFile() and
-      str = getCanonicalizationString(t)
-    |
-      t order by t.getFile().getRelativePath(), loc.getStartLine(), loc.getStartColumn()
-    )
-}
-
-/**
- * Gets a string representation of `term` that is used for canonicalization.
- */
-private string getCanonicalizationString(RelevantRegExpTerm term) {
-  exists(string ignoreCase |
-    (if RegExpFlags::isIgnoreCase(term.getRootTerm()) then ignoreCase = "i" else ignoreCase = "") and
-    result = term.getRawValue() + "|" + ignoreCase
-  )
-}
-
-/**
- * An abstract input symbol, representing a set of concrete characters.
- */
-private newtype TInputSymbol =
-  /** An input symbol corresponding to character `c`. */
-  Char(string c) {
-    c =
-      any(RegexpCharacterConstant cc |
-        cc instanceof RelevantRegExpTerm and
-        not RegExpFlags::isIgnoreCase(cc.getRootTerm())
-      ).getValue().charAt(_)
-    or
-    // normalize everything to lower case if the regexp is case insensitive
-    c =
-      any(RegexpCharacterConstant cc, string char |
-        cc instanceof RelevantRegExpTerm and
-        RegExpFlags::isIgnoreCase(cc.getRootTerm()) and
-        char = cc.getValue().charAt(_)
-      |
-        char.toLowerCase()
-      )
-  } or
-  /**
-   * An input symbol representing all characters matched by
-   * a (non-universal) character class that has string representation `charClassString`.
-   */
-  CharClass(string charClassString) {
-    exists(RelevantRegExpTerm recc | isCanonicalTerm(recc, charClassString) |
-      recc instanceof RegExpCharacterClass and
-      not recc.(RegExpCharacterClass).isUniversalClass()
-      or
-      isEscapeClass(recc, _)
-    )
-  } or
-  /** An input symbol representing all characters matched by `.`. */
-  Dot() or
-  /** An input symbol representing all characters. */
-  Any() or
-  /** An epsilon transition in the automaton. */
-  Epsilon()
-
-/**
- * Gets the the CharClass corresponding to the canonical representative `term`.
- */
-private CharClass getCharClassForCanonicalTerm(RegExpTerm term) {
-  exists(string str | isCanonicalTerm(term, str) | result = CharClass(str))
-}
-
-/**
- * Gets a char class that represents `term`, even when `term` is not the canonical representative.
- */
-CharacterClass getCanonicalCharClass(RegExpTerm term) {
-  exists(string str | str = getCanonicalizationString(term) and result = CharClass(str))
-}
-
-/**
- * Holds if `a` and `b` are input symbols from the same regexp.
- */
-private predicate sharesRoot(InputSymbol a, InputSymbol b) {
-  exists(RegExpRoot root |
-    belongsTo(a, root) and
-    belongsTo(b, root)
-  )
-}
-
-/**
- * Holds if the `a` is an input symbol from a regexp that has root `root`.
- */
-private predicate belongsTo(InputSymbol a, RegExpRoot root) {
-  exists(State s | getRoot(s.getRepr()) = root |
-    delta(s, a, _)
-    or
-    delta(_, a, s)
-  )
-}
-
-/**
- * An abstract input symbol, representing a set of concrete characters.
- */
-class InputSymbol extends TInputSymbol {
-  InputSymbol() { not this instanceof Epsilon }
-
-  /**
-   * Gets a string representation of this input symbol.
-   */
-  string toString() {
-    this = Char(result)
-    or
-    this = CharClass(result)
-    or
-    this = Dot() and result = "."
-    or
-    this = Any() and result = "[^]"
-  }
-}
-
-/**
- * An abstract input symbol that represents a character class.
- */
-abstract class CharacterClass extends InputSymbol {
-  /**
-   * Gets a character that is relevant for intersection-tests involving this
-   * character class.
-   *
-   * Specifically, this is any of the characters mentioned explicitly in the
-   * character class, offset by one if it is inverted. For character class escapes,
-   * the result is as if the class had been written out as a series of intervals.
-   *
-   * This set is large enough to ensure that for any two intersecting character
-   * classes, one contains a relevant character from the other.
-   */
-  abstract string getARelevantChar();
-
-  /**
-   * Holds if this character class matches `char`.
-   */
-  bindingset[char]
-  abstract predicate matches(string char);
-
-  /**
-   * Gets a character matched by this character class.
-   */
-  string choose() { result = this.getARelevantChar() and this.matches(result) }
-}
-
-/**
- * Provides implementations for `CharacterClass`.
- */
-private module CharacterClasses {
-  /**
-   * Holds if the character class `cc` has a child (constant or range) that matches `char`.
-   */
-  pragma[noinline]
-  predicate hasChildThatMatches(RegExpCharacterClass cc, string char) {
-    if RegExpFlags::isIgnoreCase(cc.getRootTerm())
-    then
-      // normalize everything to lower case if the regexp is case insensitive
-      exists(string c | hasChildThatMatchesIgnoringCasingFlags(cc, c) | char = c.toLowerCase())
-    else hasChildThatMatchesIgnoringCasingFlags(cc, char)
-  }
-
-  /**
-   * Holds if the character class `cc` has a child (constant or range) that matches `char`.
-   * Ignores whether the character class is inside a regular expression that has the ignore case flag.
-   */
-  pragma[noinline]
-  predicate hasChildThatMatchesIgnoringCasingFlags(RegExpCharacterClass cc, string char) {
-    exists(getCharClassForCanonicalTerm(cc)) and
-    exists(RegExpTerm child | child = cc.getAChild() |
-      char = child.(RegexpCharacterConstant).getValue()
-      or
-      rangeMatchesOnLetterOrDigits(child, char)
-      or
-      not rangeMatchesOnLetterOrDigits(child, _) and
-      char = getARelevantChar() and
-      exists(string lo, string hi | child.(RegExpCharacterRange).isRange(lo, hi) |
-        lo <= char and
-        char <= hi
-      )
-      or
-      exists(string charClass | isEscapeClass(child, charClass) |
-        charClass.toLowerCase() = charClass and
-        classEscapeMatches(charClass, char)
-        or
-        char = getARelevantChar() and
-        charClass.toUpperCase() = charClass and
-        not classEscapeMatches(charClass, char)
-      )
-    )
-  }
-
-  /**
-   * Holds if `range` is a range on lower-case, upper-case, or digits, and matches `char`.
-   * This predicate is used to restrict the searchspace for ranges by only joining `getAnyPossiblyMatchedChar`
-   * on a few ranges.
-   */
-  private predicate rangeMatchesOnLetterOrDigits(RegExpCharacterRange range, string char) {
-    exists(string lo, string hi |
-      range.isRange(lo, hi) and lo = lowercaseLetter() and hi = lowercaseLetter()
-    |
-      lo <= char and
-      char <= hi and
-      char = lowercaseLetter()
-    )
-    or
-    exists(string lo, string hi |
-      range.isRange(lo, hi) and lo = upperCaseLetter() and hi = upperCaseLetter()
-    |
-      lo <= char and
-      char <= hi and
-      char = upperCaseLetter()
-    )
-    or
-    exists(string lo, string hi | range.isRange(lo, hi) and lo = digit() and hi = digit() |
-      lo <= char and
-      char <= hi and
-      char = digit()
-    )
-  }
-
-  private string lowercaseLetter() { result = "abcdefghijklmnopqrstuvwxyz".charAt(_) }
-
-  private string upperCaseLetter() { result = "ABCDEFGHIJKLMNOPQRSTUVWXYZ".charAt(_) }
-
-  private string digit() { result = [0 .. 9].toString() }
-
-  /**
-   * Gets a char that could be matched by a regular expression.
-   * Includes all printable ascii chars, all constants mentioned in a regexp, and all chars matches by the regexp `/\s|\d|\w/`.
-   */
-  string getARelevantChar() {
-    exists(ascii(result))
-    or
-    exists(RegexpCharacterConstant c | result = c.getValue().charAt(_))
-    or
-    classEscapeMatches(_, result)
-  }
-
-  /**
-   * Gets a char that is mentioned in the character class `c`.
-   */
-  private string getAMentionedChar(RegExpCharacterClass c) {
-    exists(RegExpTerm child | child = c.getAChild() |
-      result = child.(RegexpCharacterConstant).getValue()
-      or
-      child.(RegExpCharacterRange).isRange(result, _)
-      or
-      child.(RegExpCharacterRange).isRange(_, result)
-      or
-      exists(string charClass | isEscapeClass(child, charClass) |
-        result = min(string s | classEscapeMatches(charClass.toLowerCase(), s))
-        or
-        result = max(string s | classEscapeMatches(charClass.toLowerCase(), s))
-      )
-    )
-  }
-
-  bindingset[char, cc]
-  private string caseNormalize(string char, RegExpTerm cc) {
-    if RegExpFlags::isIgnoreCase(cc.getRootTerm())
-    then result = char.toLowerCase()
-    else result = char
-  }
-
-  /**
-   * An implementation of `CharacterClass` for positive (non inverted) character classes.
-   */
-  private class PositiveCharacterClass extends CharacterClass {
-    RegExpCharacterClass cc;
-
-    PositiveCharacterClass() { this = getCharClassForCanonicalTerm(cc) and not cc.isInverted() }
-
-    override string getARelevantChar() { result = caseNormalize(getAMentionedChar(cc), cc) }
-
-    override predicate matches(string char) { hasChildThatMatches(cc, char) }
-  }
-
-  /**
-   * An implementation of `CharacterClass` for inverted character classes.
-   */
-  private class InvertedCharacterClass extends CharacterClass {
-    RegExpCharacterClass cc;
-
-    InvertedCharacterClass() { this = getCharClassForCanonicalTerm(cc) and cc.isInverted() }
-
-    override string getARelevantChar() {
-      result = nextChar(caseNormalize(getAMentionedChar(cc), cc)) or
-      nextChar(result) = caseNormalize(getAMentionedChar(cc), cc)
-    }
-
-    bindingset[char]
-    override predicate matches(string char) { not hasChildThatMatches(cc, char) }
-  }
-
-  /**
-   * Holds if the character class escape `clazz` (\d, \s, or \w) matches `char`.
-   */
-  pragma[noinline]
-  private predicate classEscapeMatches(string clazz, string char) {
-    clazz = "d" and
-    char = "0123456789".charAt(_)
-    or
-    clazz = "s" and
-    char = [" ", "\t", "\r", "\n", 11.toUnicode(), 12.toUnicode()] // 11.toUnicode() = \v, 12.toUnicode() = \f
-    or
-    clazz = "w" and
-    char = "abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ0123456789_".charAt(_)
-  }
-
-  /**
-   * An implementation of `CharacterClass` for \d, \s, and \w.
-   */
-  private class PositiveCharacterClassEscape extends CharacterClass {
-    string charClass;
-    RegExpTerm cc;
-
-    PositiveCharacterClassEscape() {
-      isEscapeClass(cc, charClass) and
-      this = getCharClassForCanonicalTerm(cc) and
-      charClass = ["d", "s", "w"]
-    }
-
-    override string getARelevantChar() {
-      charClass = "d" and
-      result = ["0", "9"]
-      or
-      charClass = "s" and
-      result = " "
-      or
-      charClass = "w" and
-      if RegExpFlags::isIgnoreCase(cc.getRootTerm())
-      then result = ["a", "z", "_", "0", "9"]
-      else result = ["a", "Z", "_", "0", "9"]
-    }
-
-    override predicate matches(string char) { classEscapeMatches(charClass, char) }
-
-    override string choose() {
-      charClass = "d" and
-      result = "9"
-      or
-      charClass = "s" and
-      result = " "
-      or
-      charClass = "w" and
-      result = "a"
-    }
-  }
-
-  /**
-   * An implementation of `CharacterClass` for \D, \S, and \W.
-   */
-  private class NegativeCharacterClassEscape extends CharacterClass {
-    string charClass;
-
-    NegativeCharacterClassEscape() {
-      exists(RegExpTerm cc |
-        isEscapeClass(cc, charClass) and
-        this = getCharClassForCanonicalTerm(cc) and
-        charClass = ["D", "S", "W"]
-      )
-    }
-
-    override string getARelevantChar() {
-      charClass = "D" and
-      result = ["a", "Z", "!"]
-      or
-      charClass = "S" and
-      result = ["a", "9", "!"]
-      or
-      charClass = "W" and
-      result = [" ", "!"]
-    }
-
-    bindingset[char]
-    override predicate matches(string char) {
-      not classEscapeMatches(charClass.toLowerCase(), char)
-    }
-  }
-
-  /** Gets a representative for all char classes that match the same chars as `c`. */
-  CharacterClass normalize(CharacterClass c) {
-    exists(string normalization |
-      normalization = getNormalizationString(c) and
-      result =
-        min(CharacterClass cc, string raw |
-          getNormalizationString(cc) = normalization and cc = CharClass(raw)
-        |
-          cc order by raw
-        )
-    )
-  }
-
-  /** Gets a string representing all the chars matched by `c` */
-  private string getNormalizationString(CharacterClass c) {
-    (c instanceof PositiveCharacterClass or c instanceof PositiveCharacterClassEscape) and
-    result = concat(string char | c.matches(char) and char = CharacterClasses::getARelevantChar())
-    or
-    (c instanceof InvertedCharacterClass or c instanceof NegativeCharacterClassEscape) and
-    // the string produced by the concat can not contain repeated chars
-    // so by starting the below with "nn" we can guarantee that
-    // it will not overlap with the above case.
-    // and a negative char class can never match the same chars as a positive one, so we don't miss any results from this.
-    result =
-      "nn:" +
-        concat(string char | not c.matches(char) and char = CharacterClasses::getARelevantChar())
-  }
-}
-
-private class EdgeLabel extends TInputSymbol {
-  string toString() {
-    this = Epsilon() and result = ""
-    or
-    exists(InputSymbol s | this = s and result = s.toString())
-  }
-}
-
-/**
- * A RegExp term that acts like a plus.
- * Either it's a RegExpPlus, or it is a range {1,X} where X is >= 30.
- * 30 has been chosen as a threshold because for exponential blowup 2^30 is enough to get a decent DOS attack.
- */
-private class EffectivelyPlus extends RegExpTerm {
-  EffectivelyPlus() {
-    this instanceof RegExpPlus
-    or
-    exists(RegExpRange range |
-      range.getLowerBound() = 1 and
-      (range.getUpperBound() >= 30 or not exists(range.getUpperBound()))
-    |
-      this = range
-    )
-  }
-}
-
-/**
- * A RegExp term that acts like a star.
- * Either it's a RegExpStar, or it is a range {0,X} where X is >= 30.
- */
-private class EffectivelyStar extends RegExpTerm {
-  EffectivelyStar() {
-    this instanceof RegExpStar
-    or
-    exists(RegExpRange range |
-      range.getLowerBound() = 0 and
-      (range.getUpperBound() >= 30 or not exists(range.getUpperBound()))
-    |
-      this = range
-    )
-  }
-}
-
-/**
- * A RegExp term that acts like a question mark.
- * Either it's a RegExpQuestion, or it is a range {0,1}.
- */
-private class EffectivelyQuestion extends RegExpTerm {
-  EffectivelyQuestion() {
-    this instanceof RegExpOpt
-    or
-    exists(RegExpRange range | range.getLowerBound() = 0 and range.getUpperBound() = 1 |
-      this = range
-    )
-  }
-}
-
-/**
- * Gets the state before matching `t`.
- */
-pragma[inline]
-private State before(RegExpTerm t) { result = Match(t, 0) }
-
-/**
- * Gets a state the NFA may be in after matching `t`.
- */
-State after(RegExpTerm t) {
-  exists(RegExpAlt alt | t = alt.getAChild() | result = after(alt))
-  or
-  exists(RegExpSequence seq, int i | t = seq.getChild(i) |
-    result = before(seq.getChild(i + 1))
-    or
-    i + 1 = seq.getNumChild() and result = after(seq)
-  )
-  or
-  exists(RegExpGroup grp | t = grp.getAChild() | result = after(grp))
-  or
-  exists(EffectivelyStar star | t = star.getAChild() |
-    not isPossessive(star) and
-    result = before(star)
-  )
-  or
-  exists(EffectivelyPlus plus | t = plus.getAChild() |
-    not isPossessive(plus) and
-    result = before(plus)
-    or
-    result = after(plus)
-  )
-  or
-  exists(EffectivelyQuestion opt | t = opt.getAChild() | result = after(opt))
-  or
-  exists(RegExpRoot root | t = root |
-    if matchesAnySuffix(root) then result = AcceptAnySuffix(root) else result = Accept(root)
-  )
-}
-
-/**
- * Holds if the NFA has a transition from `q1` to `q2` labelled with `lbl`.
- */
-predicate delta(State q1, EdgeLabel lbl, State q2) {
-  exists(RegexpCharacterConstant s, int i |
-    q1 = Match(s, i) and
-    (
-      not RegExpFlags::isIgnoreCase(s.getRootTerm()) and
-      lbl = Char(s.getValue().charAt(i))
-      or
-      // normalize everything to lower case if the regexp is case insensitive
-      RegExpFlags::isIgnoreCase(s.getRootTerm()) and
-      exists(string c | c = s.getValue().charAt(i) | lbl = Char(c.toLowerCase()))
-    ) and
-    (
-      q2 = Match(s, i + 1)
-      or
-      s.getValue().length() = i + 1 and
-      q2 = after(s)
-    )
-  )
-  or
-  exists(RegExpDot dot | q1 = before(dot) and q2 = after(dot) |
-    if RegExpFlags::isDotAll(dot.getRootTerm()) then lbl = Any() else lbl = Dot()
-  )
-  or
-  exists(RegExpCharacterClass cc |
-    cc.isUniversalClass() and q1 = before(cc) and lbl = Any() and q2 = after(cc)
-    or
-    q1 = before(cc) and
-    lbl = CharacterClasses::normalize(CharClass(getCanonicalizationString(cc))) and
-    q2 = after(cc)
-  )
-  or
-  exists(RegExpTerm cc | isEscapeClass(cc, _) |
-    q1 = before(cc) and
-    lbl = CharacterClasses::normalize(CharClass(getCanonicalizationString(cc))) and
-    q2 = after(cc)
-  )
-  or
-  exists(RegExpAlt alt | lbl = Epsilon() | q1 = before(alt) and q2 = before(alt.getAChild()))
-  or
-  exists(RegExpSequence seq | lbl = Epsilon() | q1 = before(seq) and q2 = before(seq.getChild(0)))
-  or
-  exists(RegExpGroup grp | lbl = Epsilon() | q1 = before(grp) and q2 = before(grp.getChild(0)))
-  or
-  exists(EffectivelyStar star | lbl = Epsilon() |
-    q1 = before(star) and q2 = before(star.getChild(0))
-    or
-    q1 = before(star) and q2 = after(star)
-  )
-  or
-  exists(EffectivelyPlus plus | lbl = Epsilon() |
-    q1 = before(plus) and q2 = before(plus.getChild(0))
-  )
-  or
-  exists(EffectivelyQuestion opt | lbl = Epsilon() |
-    q1 = before(opt) and q2 = before(opt.getChild(0))
-    or
-    q1 = before(opt) and q2 = after(opt)
-  )
-  or
-  exists(RegExpRoot root | q1 = AcceptAnySuffix(root) |
-    lbl = Any() and q2 = q1
-    or
-    lbl = Epsilon() and q2 = Accept(root)
-  )
-  or
-  exists(RegExpRoot root | q1 = Match(root, 0) | matchesAnyPrefix(root) and lbl = Any() and q2 = q1)
-  or
-  exists(RegExpDollar dollar | q1 = before(dollar) |
-    lbl = Epsilon() and q2 = Accept(getRoot(dollar))
-  )
-  or
-  exists(EmptyPositiveSubPattern empty | q1 = before(empty) | lbl = Epsilon() and q2 = after(empty))
-}
-
-/**
- * Gets a state that `q` has an epsilon transition to.
- */
-State epsilonSucc(State q) { delta(q, Epsilon(), result) }
-
-/**
- * Gets a state that has an epsilon transition to `q`.
- */
-State epsilonPred(State q) { q = epsilonSucc(result) }
-
-/**
- * Holds if there is a state `q` that can be reached from `q1`
- * along epsilon edges, such that there is a transition from
- * `q` to `q2` that consumes symbol `s`.
- */
-predicate deltaClosed(State q1, InputSymbol s, State q2) { delta(epsilonSucc*(q1), s, q2) }
-
-/**
- * Gets the root containing the given term, that is, the root of the literal,
- * or a branch of the root disjunction.
- */
-RegExpRoot getRoot(RegExpTerm term) {
-  result = term or
-  result = getRoot(term.getParent())
-}
-
-/**
- * A state in the NFA.
- */
-newtype TState =
-  /**
-   * A state representing that the NFA is about to match a term.
-   * `i` is used to index into multi-char literals.
-   */
-  Match(RelevantRegExpTerm t, int i) {
-    i = 0
-    or
-    exists(t.(RegexpCharacterConstant).getValue().charAt(i))
-  } or
-  /**
-   * An accept state, where exactly the given input string is accepted.
-   */
-  Accept(RegExpRoot l) { l.isRelevant() } or
-  /**
-   * An accept state, where the given input string, or any string that has this
-   * string as a prefix, is accepted.
-   */
-  AcceptAnySuffix(RegExpRoot l) { l.isRelevant() }
-
-/**
- * Gets a state that is about to match the regular expression `t`.
- */
-State mkMatch(RegExpTerm t) { result = Match(t, 0) }
-
-/**
- * A state in the NFA corresponding to a regular expression.
- *
- * Each regular expression literal `l` has one accepting state
- * `Accept(l)`, one state that accepts all suffixes `AcceptAnySuffix(l)`,
- * and a state `Match(t, i)` for every subterm `t`,
- * which represents the state of the NFA before starting to
- * match `t`, or the `i`th character in `t` if `t` is a constant.
- */
-class State extends TState {
-  RegExpTerm repr;
-
-  State() {
-    this = Match(repr, _) or
-    this = Accept(repr) or
-    this = AcceptAnySuffix(repr)
-  }
-
-  /**
-   * Gets a string representation for this state in a regular expression.
-   */
-  string toString() {
-    exists(int i | this = Match(repr, i) | result = "Match(" + repr + "," + i + ")")
-    or
-    this instanceof Accept and
-    result = "Accept(" + repr + ")"
-    or
-    this instanceof AcceptAnySuffix and
-    result = "AcceptAny(" + repr + ")"
-  }
-
-  /**
-   * Gets the location for this state.
-   */
-  Location getLocation() { result = repr.getLocation() }
-
-  /**
-   * Gets the term represented by this state.
-   */
-  RegExpTerm getRepr() { result = repr }
-}
-
-/**
- * Gets the minimum char that is matched by both the character classes `c` and `d`.
- */
-private string getMinOverlapBetweenCharacterClasses(CharacterClass c, CharacterClass d) {
-  result = min(getAOverlapBetweenCharacterClasses(c, d))
-}
-
-/**
- * Gets a char that is matched by both the character classes `c` and `d`.
- * And `c` and `d` is not the same character class.
- */
-private string getAOverlapBetweenCharacterClasses(CharacterClass c, CharacterClass d) {
-  sharesRoot(c, d) and
-  result = [c.getARelevantChar(), d.getARelevantChar()] and
-  c.matches(result) and
-  d.matches(result) and
-  not c = d
-}
-
-/**
- * Gets a character that is represented by both `c` and `d`.
- */
-string intersect(InputSymbol c, InputSymbol d) {
-  (sharesRoot(c, d) or [c, d] = Any()) and
-  (
-    c = Char(result) and
-    d = getAnInputSymbolMatching(result)
-    or
-    result = getMinOverlapBetweenCharacterClasses(c, d)
-    or
-    result = c.(CharacterClass).choose() and
-    (
-      d = c
-      or
-      d = Dot() and
-      not (result = "\n" or result = "\r")
-      or
-      d = Any()
-    )
-    or
-    (c = Dot() or c = Any()) and
-    (d = Dot() or d = Any()) and
-    result = "a"
-  )
-  or
-  result = intersect(d, c)
-}
-
-/**
- * Gets a symbol that matches `char`.
- */
-bindingset[char]
-InputSymbol getAnInputSymbolMatching(string char) {
-  result = Char(char)
-  or
-  result.(CharacterClass).matches(char)
-  or
-  result = Dot() and
-  not (char = "\n" or char = "\r")
-  or
-  result = Any()
-}
-
-/**
- * Holds if `state` is a start state.
- */
-predicate isStartState(State state) {
-  state = mkMatch(any(RegExpRoot r))
-  or
-  exists(RegExpCaret car | state = after(car))
-}
-
-/**
- * Holds if `state` is a candidate for ReDoS with string `pump`.
- */
-signature predicate isCandidateSig(State state, string pump);
-
-/**
- * Holds if `state` is a candidate for ReDoS.
- */
-signature predicate isCandidateSig(State state);
-
-/**
- * Predicates for constructing a prefix string that leads to a given state.
- */
-module PrefixConstruction<isCandidateSig/1 isCandidate> {
-  /**
-   * Holds if `state` is the textually last start state for the regular expression.
-   */
-  private predicate lastStartState(RelevantState state) {
-    exists(RegExpRoot root |
-      state =
-        max(RelevantState s, Location l |
-          isStartState(s) and
-          getRoot(s.getRepr()) = root and
-          l = s.getRepr().getLocation()
-        |
-          s
-          order by
-            l.getStartLine(), l.getStartColumn(), s.getRepr().toString(), l.getEndColumn(),
-            l.getEndLine()
-        )
-    )
-  }
-
-  /**
-   * Holds if there exists any transition (Epsilon() or other) from `a` to `b`.
-   */
-  private predicate existsTransition(State a, State b) { delta(a, _, b) }
-
-  /**
-   * Gets the minimum number of transitions it takes to reach `state` from the `start` state.
-   */
-  int prefixLength(State start, State state) =
-    shortestDistances(lastStartState/1, existsTransition/2)(start, state, result)
-
-  /**
-   * Gets the minimum number of transitions it takes to reach `state` from the start state.
-   */
-  private int lengthFromStart(State state) { result = prefixLength(_, state) }
-
-  /**
-   * Gets a string for which the regular expression will reach `state`.
-   *
-   * Has at most one result for any given `state`.
-   * This predicate will not always have a result even if there is a ReDoS issue in
-   * the regular expression.
-   */
-  string prefix(State state) {
-    lastStartState(state) and
-    result = ""
-    or
-    // the search stops past the last redos candidate state.
-    lengthFromStart(state) <= max(lengthFromStart(any(State s | isCandidate(s)))) and
-    exists(State prev |
-      // select a unique predecessor (by an arbitrary measure)
-      prev =
-        min(State s, Location loc |
-          lengthFromStart(s) = lengthFromStart(state) - 1 and
-          loc = s.getRepr().getLocation() and
-          delta(s, _, state)
-        |
-          s
-          order by
-            loc.getStartLine(), loc.getStartColumn(), loc.getEndLine(), loc.getEndColumn(),
-            s.getRepr().toString()
-        )
-    |
-      // greedy search for the shortest prefix
-      result = prefix(prev) and delta(prev, Epsilon(), state)
-      or
-      not delta(prev, Epsilon(), state) and
-      result = prefix(prev) + getCanonicalEdgeChar(prev, state)
-    )
-  }
-
-  /**
-   * Gets a canonical char for which there exists a transition from `prev` to `next` in the NFA.
-   */
-  private string getCanonicalEdgeChar(State prev, State next) {
-    result =
-      min(string c | delta(prev, any(InputSymbol symbol | c = intersect(Any(), symbol)), next))
-  }
-
-  /** A state within a regular expression that contains a candidate state. */
-  class RelevantState instanceof State {
-    RelevantState() {
-      exists(State s | isCandidate(s) | getRoot(s.getRepr()) = getRoot(this.getRepr()))
-    }
-
-    /** Gets a string representation for this state in a regular expression. */
-    string toString() { result = State.super.toString() }
-
-    /** Gets the term represented by this state. */
-    RegExpTerm getRepr() { result = State.super.getRepr() }
-  }
-}
-
-/**
- * A module for pruning candidate ReDoS states.
- * The candidates are specified by the `isCandidate` signature predicate.
- * The candidates are checked for rejecting suffixes and deduplicated,
- * and the resulting ReDoS states are read by the `hasReDoSResult` predicate.
- */
-module ReDoSPruning<isCandidateSig/2 isCandidate> {
-  /**
-   * Holds if repeating `pump` starting at `state` is a candidate for causing backtracking.
-   * No check whether a rejected suffix exists has been made.
-   */
-  private predicate isReDoSCandidate(State state, string pump) {
-    isCandidate(state, pump) and
-    not state = acceptsAnySuffix() and // pruning early - these can never get stuck in a rejecting state.
-    (
-      not isCandidate(epsilonSucc+(state), _)
-      or
-      epsilonSucc+(state) = state and
-      state =
-        max(State s, Location l |
-          s = epsilonSucc+(state) and
-          l = s.getRepr().getLocation() and
-          isCandidate(s, _) and
-          s.getRepr() instanceof InfiniteRepetitionQuantifier
-        |
-          s order by l.getStartLine(), l.getStartColumn(), l.getEndColumn(), l.getEndLine()
-        )
-    )
-  }
-
-  /** Gets a state that can reach the `accept-any` state using only epsilon steps. */
-  private State acceptsAnySuffix() { epsilonSucc*(result) = AcceptAnySuffix(_) }
-
-  predicate isCandidateState(State s) { isReDoSCandidate(s, _) }
-
-  import PrefixConstruction<isCandidateState/1> as Prefix
-
-  class RelevantState = Prefix::RelevantState;
-
-  /**
-   * Predicates for testing the presence of a rejecting suffix.
-   *
-   * These predicates are used to ensure that the all states reached from the fork
-   * by repeating `w` have a rejecting suffix.
-   *
-   * For example, a regexp like `/^(a+)+/` will accept any string as long the prefix is
-   * some number of `"a"`s, and it is therefore not possible to construct a rejecting suffix.
-   *
-   * A regexp like `/(a+)+$/` or `/(a+)+b/` trivially has a rejecting suffix,
-   * as the suffix "X" will cause both the regular expressions to be rejected.
-   *
-   * The string `w` is repeated any number of times because it needs to be
-   * infinitely repeatable for the attack to work.
-   * For the regular expression `/((ab)+)*abab/` the accepting state is not reachable from the fork
-   * using epsilon transitions. But any attempt at repeating `w` will end in a state that accepts all suffixes.
-   */
-  private module SuffixConstruction {
-    /**
-     * Holds if all states reachable from `fork` by repeating `w`
-     * are likely rejectable by appending some suffix.
-     */
-    predicate reachesOnlyRejectableSuffixes(State fork, string w) {
-      isReDoSCandidate(fork, w) and
-      forex(State next | next = process(fork, w, w.length() - 1) | isLikelyRejectable(next)) and
-      not getProcessPrevious(fork, _, w) = acceptsAnySuffix() // we stop `process(..)` early if we can, check here if it happened.
-    }
-
-    /**
-     * Holds if there likely exists a suffix starting from `s` that leads to the regular expression being rejected.
-     * This predicate might find impossible suffixes when searching for suffixes of length > 1, which can cause FPs.
-     */
-    pragma[noinline]
-    private predicate isLikelyRejectable(RelevantState s) {
-      // exists a reject edge with some char.
-      hasRejectEdge(s)
-      or
-      hasEdgeToLikelyRejectable(s)
-      or
-      // stopping here is rejection
-      isRejectState(s)
-    }
-
-    /**
-     * Holds if `s` is not an accept state, and there is no epsilon transition to an accept state.
-     */
-    predicate isRejectState(RelevantState s) { not epsilonSucc*(s) = Accept(_) }
-
-    /**
-     * Holds if there is likely a non-empty suffix leading to rejection starting in `s`.
-     */
-    pragma[noopt]
-    predicate hasEdgeToLikelyRejectable(RelevantState s) {
-      // all edges (at least one) with some char leads to another state that is rejectable.
-      // the `next` states might not share a common suffix, which can cause FPs.
-      exists(string char | char = hasEdgeToLikelyRejectableHelper(s) |
-        // noopt to force `hasEdgeToLikelyRejectableHelper` to be first in the join-order.
-        exists(State next | deltaClosedChar(s, char, next) | isLikelyRejectable(next)) and
-        forall(State next | deltaClosedChar(s, char, next) | isLikelyRejectable(next))
-      )
-    }
-
-    /**
-     * Gets a char for there exists a transition away from `s`,
-     * and `s` has not been found to be rejectable by `hasRejectEdge` or `isRejectState`.
-     */
-    pragma[noinline]
-    private string hasEdgeToLikelyRejectableHelper(RelevantState s) {
-      not hasRejectEdge(s) and
-      not isRejectState(s) and
-      deltaClosedChar(s, result, _)
-    }
-
-    /**
-     * Holds if there is a state `next` that can be reached from `prev`
-     * along epsilon edges, such that there is a transition from
-     * `prev` to `next` that the character symbol `char`.
-     */
-    predicate deltaClosedChar(RelevantState prev, string char, RelevantState next) {
-      deltaClosed(prev, getAnInputSymbolMatchingRelevant(char), next)
-    }
-
-    pragma[noinline]
-    InputSymbol getAnInputSymbolMatchingRelevant(string char) {
-      char = relevant(_) and
-      result = getAnInputSymbolMatching(char)
-    }
-
-    pragma[noinline]
-    RegExpRoot relevantRoot() {
-      exists(RegExpTerm term, State s |
-        s.getRepr() = term and isCandidateState(s) and result = term.getRootTerm()
-      )
-    }
-
-    /**
-     * Gets a char used for finding possible suffixes inside `root`.
-     */
-    pragma[noinline]
-    private string relevant(RegExpRoot root) {
-      root = relevantRoot() and
-      (
-        exists(ascii(result)) and exists(root)
-        or
-        exists(InputSymbol s | belongsTo(s, root) | result = intersect(s, _))
-        or
-        // The characters from `hasSimpleRejectEdge`. Only `\n` is really needed (as `\n` is not in the `ascii` relation).
-        // The three chars must be kept in sync with `hasSimpleRejectEdge`.
-        result = ["|", "\n", "Z"] and exists(root)
-      )
-    }
-
-    /**
-     * Holds if there exists a `char` such that there is no edge from `s` labeled `char` in our NFA.
-     * The NFA does not model reject states, so the above is the same as saying there is a reject edge.
-     */
-    private predicate hasRejectEdge(State s) {
-      hasSimpleRejectEdge(s)
-      or
-      not hasSimpleRejectEdge(s) and
-      exists(string char | char = relevant(getRoot(s.getRepr())) | not deltaClosedChar(s, char, _))
-    }
-
-    /**
-     * Holds if there is no edge from `s` labeled with "|", "\n", or "Z" in our NFA.
-     * This predicate is used as a cheap pre-processing to speed up `hasRejectEdge`.
-     */
-    private predicate hasSimpleRejectEdge(State s) {
-      // The three chars were chosen arbitrarily. The three chars must be kept in sync with `relevant`.
-      exists(string char | char = ["|", "\n", "Z"] | not deltaClosedChar(s, char, _))
-    }
-
-    /**
-     * Gets a state that can be reached from pumpable `fork` consuming all
-     * chars in `w` any number of times followed by the first `i+1` characters of `w`.
-     */
-    pragma[noopt]
-    private State process(State fork, string w, int i) {
-      exists(State prev | prev = getProcessPrevious(fork, i, w) |
-        not prev = acceptsAnySuffix() and // we stop `process(..)` early if we can. If the successor accepts any suffix, then we know it can never be rejected.
-        exists(string char, InputSymbol sym |
-          char = w.charAt(i) and
-          deltaClosed(prev, sym, result) and
-          // noopt to prevent joining `prev` with all possible `chars` that could transition away from `prev`.
-          // Instead only join with the set of `chars` where a relevant `InputSymbol` has already been found.
-          sym = getAProcessInputSymbol(char)
-        )
-      )
-    }
-
-    /**
-     * Gets a state that can be reached from pumpable `fork` consuming all
-     * chars in `w` any number of times followed by the first `i` characters of `w`.
-     */
-    private State getProcessPrevious(State fork, int i, string w) {
-      isReDoSCandidate(fork, w) and
-      (
-        i = 0 and result = fork
-        or
-        result = process(fork, w, i - 1)
-        or
-        // repeat until fixpoint
-        i = 0 and
-        result = process(fork, w, w.length() - 1)
-      )
-    }
-
-    /**
-     * Gets an InputSymbol that matches `char`.
-     * The predicate is specialized to only have a result for the `char`s that are relevant for the `process` predicate.
-     */
-    private InputSymbol getAProcessInputSymbol(string char) {
-      char = getAProcessChar() and
-      result = getAnInputSymbolMatching(char)
-    }
-
-    /**
-     * Gets a `char` that occurs in a `pump` string.
-     */
-    private string getAProcessChar() { result = any(string s | isReDoSCandidate(_, s)).charAt(_) }
-  }
-
-  /**
-   * Holds if `term` may cause superlinear backtracking on strings containing many repetitions of `pump`.
-   * Gets the shortest string that causes superlinear backtracking.
-   */
-  private predicate isReDoSAttackable(RegExpTerm term, string pump, State s) {
-    exists(int i, string c | s = Match(term, i) |
-      c =
-        min(string w |
-          isCandidate(s, w) and
-          SuffixConstruction::reachesOnlyRejectableSuffixes(s, w)
-        |
-          w order by w.length(), w
-        ) and
-      pump = escape(rotate(c, i))
-    )
-  }
-
-  /**
-   * Holds if the state `s` (represented by the term `t`) can have backtracking with repetitions of `pump`.
-   *
-   * `prefixMsg` contains a friendly message for a prefix that reaches `s` (or `prefixMsg` is the empty string if the prefix is empty or if no prefix could be found).
-   */
-  predicate hasReDoSResult(RegExpTerm t, string pump, State s, string prefixMsg) {
-    isReDoSAttackable(t, pump, s) and
-    (
-      prefixMsg = "starting with '" + escape(Prefix::prefix(s)) + "' and " and
-      not Prefix::prefix(s) = ""
-      or
-      Prefix::prefix(s) = "" and prefixMsg = ""
-      or
-      not exists(Prefix::prefix(s)) and prefixMsg = ""
-    )
-  }
-
-  /**
-   * Gets the result of backslash-escaping newlines, carriage-returns and
-   * backslashes in `s`.
-   */
-  bindingset[s]
-  private string escape(string s) {
-    result =
-      s.replaceAll("\\", "\\\\")
-          .replaceAll("\n", "\\n")
-          .replaceAll("\r", "\\r")
-          .replaceAll("\t", "\\t")
-  }
-
-  /**
-   * Gets `str` with the last `i` characters moved to the front.
-   *
-   * We use this to adjust the pump string to match with the beginning of
-   * a RegExpTerm, so it doesn't start in the middle of a constant.
-   */
-  bindingset[str, i]
-  private string rotate(string str, int i) {
-    result = str.suffix(str.length() - i) + str.prefix(str.length() - i)
-  }
-}
-
-/**
- * A module that describes a tree where each node has one or more associated characters, also known as a trie.
- * The root node has no associated character.
- * This module is a signature used in `Concretizer`.
- */
-signature module CharTree {
-  /** A node in the tree. */
-  class CharNode;
-
-  /** Gets the previous node in the tree from `t`. */
-  CharNode getPrev(CharNode t);
-
-  /**
-   * Holds if `n` is at the end of a tree. I.e. a node that should have a result in the `Concretizer` module.
-   * Such a node can still have children.
-   */
-  predicate isARelevantEnd(CharNode n);
-
-  /** Gets a char associated with `t`. */
-  string getChar(CharNode t);
-}
-
-/**
- * Implements an algorithm for computing all possible strings
- * from following a tree of nodes (as described in `CharTree`).
- *
- * The string is build using one big concat, where all the chars are computed first.
- * See `concretize`.
- */
-module Concretizer<CharTree Impl> {
-  private class Node = Impl::CharNode;
-
-  private predicate getPrev = Impl::getPrev/1;
-
-  private predicate isARelevantEnd = Impl::isARelevantEnd/1;
-
-  private predicate getChar = Impl::getChar/1;
-
-  /** Holds if `n` is on a path from the root to a leaf, and is therefore relevant for the results in `concretize`. */
-  private predicate isRelevant(Node n) {
-    isARelevantEnd(n)
-    or
-    exists(Node succ | isRelevant(succ) | n = getPrev(succ))
-  }
-
-  /** Holds if `n` is a root with no predecessors. */
-  private predicate isRoot(Node n) { not exists(getPrev(n)) }
-
-  /** Gets the distance from a root to `n`. */
-  private int nodeDepth(Node n) {
-    result = 0 and isRoot(n)
-    or
-    isRelevant(n) and
-    exists(Node prev | result = nodeDepth(prev) + 1 | prev = getPrev(n))
-  }
-
-  /** Gets an ancestor of `end`, where `end` is a node that should have a result in `concretize`. */
-  private Node getAnAncestor(Node end) { isARelevantEnd(end) and result = getPrev*(end) }
-
-  /** Gets the `i`th character on the path from the root to `n`. */
-  pragma[noinline]
-  private string getPrefixChar(Node n, int i) {
-    exists(Node ancestor |
-      result = getChar(ancestor) and
-      ancestor = getAnAncestor(n) and
-      i = nodeDepth(ancestor)
-    )
-  }
-
-  /** Gets a string corresponding to `node`. */
-  language[monotonicAggregates]
-  string concretize(Node n) {
-    result = strictconcat(int i | exists(getPrefixChar(n, i)) | getPrefixChar(n, i) order by i)
-  }
-}
+private import semmle.code.java.regex.RegexTreeView::RegexTreeView as TreeView
+// NfaUtils should be used directly from the shared pack, and not from this file.
+deprecated private import codeql.regex.nfa.NfaUtils::Make<TreeView> as Dep
+import Dep
diff --git a/java/ql/lib/semmle/code/java/security/regexp/NfaUtilsSpecific.qll b/java/ql/lib/semmle/code/java/security/regexp/NfaUtilsSpecific.qll
deleted file mode 100644
index 742229eacca..00000000000
--- a/java/ql/lib/semmle/code/java/security/regexp/NfaUtilsSpecific.qll
+++ /dev/null
@@ -1,76 +0,0 @@
-/**
- * This module should provide a class hierarchy corresponding to a parse tree of regular expressions.
- * This is the interface to the shared ReDoS library.
- */
-
-private import java
-import semmle.code.FileSystem
-import semmle.code.java.regex.RegexTreeView
-
-/**
- * Holds if `term` is an escape class representing e.g. `\d`.
- * `clazz` is which character class it represents, e.g. "d" for `\d`.
- */
-predicate isEscapeClass(RegExpTerm term, string clazz) {
-  term.(RegExpCharacterClassEscape).getValue() = clazz
-  or
-  term.(RegExpNamedProperty).getBackslashEquivalent() = clazz
-}
-
-/**
- * Holds if `term` is a possessive quantifier, e.g. `a*+`.
- */
-predicate isPossessive(RegExpQuantifier term) { term.isPossessive() }
-
-/**
- * Holds if the regex that `term` is part of is used in a way that ignores any leading prefix of the input it's matched against.
- */
-predicate matchesAnyPrefix(RegExpTerm term) { not term.getRegex().matchesFullString() }
-
-/**
- * Holds if the regex that `term` is part of is used in a way that ignores any trailing suffix of the input it's matched against.
- */
-predicate matchesAnySuffix(RegExpTerm term) { not term.getRegex().matchesFullString() }
-
-/**
- * Holds if the regular expression should not be considered.
- *
- * We make the pragmatic performance optimization to ignore regular expressions in files
- * that do not belong to the project code (such as installed dependencies).
- */
-predicate isExcluded(RegExpParent parent) {
-  not exists(parent.getRegex().getLocation().getFile().getRelativePath())
-  or
-  // Regexes with many occurrences of ".*" may cause the polynomial ReDoS computation to explode, so
-  // we explicitly exclude these.
-  strictcount(int i | exists(parent.getRegex().getText().regexpFind("\\.\\*", i, _)) | i) > 10
-}
-
-/**
- * A module containing predicates for determining which flags a regular expression have.
- */
-module RegExpFlags {
-  /**
-   * Holds if `root` has the `i` flag for case-insensitive matching.
-   */
-  predicate isIgnoreCase(RegExpTerm root) {
-    root.isRootTerm() and
-    root.getLiteral().isIgnoreCase()
-  }
-
-  /**
-   * Gets the flags for `root`, or the empty string if `root` has no flags.
-   */
-  deprecated string getFlags(RegExpTerm root) {
-    root.isRootTerm() and
-    result = root.getLiteral().getFlags()
-  }
-
-  /**
-   * Holds if `root` has the `s` flag for multi-line matching.
-   */
-  predicate isDotAll(RegExpTerm root) {
-    root.isRootTerm() and
-    root.getLiteral().isDotAll()
-  }
-}
diff --git a/java/ql/lib/semmle/code/java/security/regexp/PolynomialReDoSQuery.qll b/java/ql/lib/semmle/code/java/security/regexp/PolynomialReDoSQuery.qll
index b0a8ff1a3c5..2a822ac69de 100644
--- a/java/ql/lib/semmle/code/java/security/regexp/PolynomialReDoSQuery.qll
+++ b/java/ql/lib/semmle/code/java/security/regexp/PolynomialReDoSQuery.qll
@@ -1,19 +1,19 @@
 /** Definitions and configurations for the Polynomial ReDoS query */
 
-import semmle.code.java.security.regexp.SuperlinearBackTracking
+private import semmle.code.java.regex.RegexTreeView::RegexTreeView as TreeView
+import codeql.regex.nfa.SuperlinearBackTracking::Make<TreeView> as SuperlinearBackTracking
 import semmle.code.java.dataflow.DataFlow
-import semmle.code.java.regex.RegexTreeView
 import semmle.code.java.regex.RegexFlowConfigs
 import semmle.code.java.dataflow.FlowSources
 
 /** A sink for polynomial redos queries, where a regex is matched. */
 class PolynomialRedosSink extends DataFlow::Node {
-  RegExpLiteral reg;
+  TreeView::RegExpLiteral reg;
 
   PolynomialRedosSink() { regexMatchedAgainst(reg.getRegex(), this.asExpr()) }
 
   /** Gets the regex that is matched against this node. */
-  RegExpTerm getRegExp() { result.getParent() = reg }
+  TreeView::RegExpTerm getRegExp() { result.getParent() = reg }
 }
 
 /**
@@ -49,7 +49,8 @@ class PolynomialRedosConfig extends TaintTracking::Configuration {
 
 /** Holds if there is flow from `source` to `sink` that is matched against the regexp term `regexp` that is vulnerable to Polynomial ReDoS. */
 predicate hasPolynomialReDoSResult(
-  DataFlow::PathNode source, DataFlow::PathNode sink, PolynomialBackTrackingTerm regexp
+  DataFlow::PathNode source, DataFlow::PathNode sink,
+  SuperlinearBackTracking::PolynomialBackTrackingTerm regexp
 ) {
   any(PolynomialRedosConfig config).hasFlowPath(source, sink) and
   regexp.getRootTerm() = sink.getNode().(PolynomialRedosSink).getRegExp()
diff --git a/java/ql/lib/semmle/code/java/security/regexp/SuperlinearBackTracking.qll b/java/ql/lib/semmle/code/java/security/regexp/SuperlinearBackTracking.qll
index 14a69dc0644..623b1540ef1 100644
--- a/java/ql/lib/semmle/code/java/security/regexp/SuperlinearBackTracking.qll
+++ b/java/ql/lib/semmle/code/java/security/regexp/SuperlinearBackTracking.qll
@@ -1,11 +1,4 @@
 /**
- * Provides classes for working with regular expressions that can
- * perform backtracking in superlinear time.
- */
-
-import NfaUtils
-
-/*
  * This module implements the analysis described in the paper:
  *   Valentin Wustholz, Oswaldo Olivo, Marijn J. H. Heule, and Isil Dillig:
  *     Static Detection of DoS Vulnerabilities in
@@ -42,377 +35,7 @@ import NfaUtils
  * It also doesn't find all transitions in the product automaton, which can cause false negatives.
  */
 
-/**
- * Gets any root (start) state of a regular expression.
- */
-private State getRootState() { result = mkMatch(any(RegExpRoot r)) }
-
-private newtype TStateTuple =
-  MkStateTuple(State q1, State q2, State q3) {
-    // starts at (pivot, pivot, succ)
-    isStartLoops(q1, q3) and q1 = q2
-    or
-    step(_, _, _, _, q1, q2, q3) and FeasibleTuple::isFeasibleTuple(q1, q2, q3)
-  }
-
-/**
- * A state in the product automaton.
- * The product automaton contains 3-tuples of states.
- *
- * We lazily only construct those states that we are actually
- * going to need.
- * Either a start state `(pivot, pivot, succ)`, or a state
- * where there exists a transition from an already existing state.
- *
- * The exponential variant of this query (`js/redos`) uses an optimization
- * trick where `q1 <= q2`. This trick cannot be used here as the order
- * of the elements matter.
- */
-class StateTuple extends TStateTuple {
-  State q1;
-  State q2;
-  State q3;
-
-  StateTuple() { this = MkStateTuple(q1, q2, q3) }
-
-  /**
-   * Gest a string representation of this tuple.
-   */
-  string toString() { result = "(" + q1 + ", " + q2 + ", " + q3 + ")" }
-
-  /**
-   * Holds if this tuple is `(r1, r2, r3)`.
-   */
-  pragma[noinline]
-  predicate isTuple(State r1, State r2, State r3) { r1 = q1 and r2 = q2 and r3 = q3 }
-}
-
-/**
- * A module for determining feasible tuples for the product automaton.
- *
- * The implementation is split into many predicates for performance reasons.
- */
-private module FeasibleTuple {
-  /**
-   * Holds if the tuple `(r1, r2, r3)` might be on path from a start-state to an end-state in the product automaton.
-   */
-  pragma[inline]
-  predicate isFeasibleTuple(State r1, State r2, State r3) {
-    // The first element is either inside a repetition (or the start state itself)
-    isRepetitionOrStart(r1) and
-    // The last element is inside a repetition
-    stateInsideRepetition(r3) and
-    // The states are reachable in the NFA in the order r1 -> r2 -> r3
-    delta+(r1) = r2 and
-    delta+(r2) = r3 and
-    // The first element can reach a beginning (the "pivot" state in a `(pivot, succ)` pair).
-    canReachABeginning(r1) and
-    // The last element can reach a target (the "succ" state in a `(pivot, succ)` pair).
-    canReachATarget(r3)
-  }
-
-  /**
-   * Holds if `s` is either inside a repetition, or is the start state (which is a repetition).
-   */
-  pragma[noinline]
-  private predicate isRepetitionOrStart(State s) { stateInsideRepetition(s) or s = getRootState() }
-
-  /**
-   * Holds if state `s` might be inside a backtracking repetition.
-   */
-  pragma[noinline]
-  private predicate stateInsideRepetition(State s) {
-    s.getRepr().getParent*() instanceof InfiniteRepetitionQuantifier
-  }
-
-  /**
-   * Holds if there exists a path in the NFA from `s` to a "pivot" state
-   * (from a `(pivot, succ)` pair that starts the search).
-   */
-  pragma[noinline]
-  private predicate canReachABeginning(State s) {
-    delta+(s) = any(State pivot | isStartLoops(pivot, _))
-  }
-
-  /**
-   * Holds if there exists a path in the NFA from `s` to a "succ" state
-   * (from a `(pivot, succ)` pair that starts the search).
-   */
-  pragma[noinline]
-  private predicate canReachATarget(State s) { delta+(s) = any(State succ | isStartLoops(_, succ)) }
-}
-
-/**
- * Holds if `pivot` and `succ` are a pair of loops that could be the beginning of a quadratic blowup.
- *
- * There is a slight implementation difference compared to the paper: this predicate requires that `pivot != succ`.
- * The case where `pivot = succ` causes exponential backtracking and is handled by the `js/redos` query.
- */
-predicate isStartLoops(State pivot, State succ) {
-  pivot != succ and
-  succ.getRepr() instanceof InfiniteRepetitionQuantifier and
-  delta+(pivot) = succ and
-  (
-    pivot.getRepr() instanceof InfiniteRepetitionQuantifier
-    or
-    pivot = mkMatch(any(RegExpRoot root))
-  )
-}
-
-/**
- * Gets a state for which there exists a transition in the NFA from `s'.
- */
-State delta(State s) { delta(s, _, result) }
-
-/**
- * Holds if there are transitions from the components of `q` to the corresponding
- * components of `r` labelled with `s1`, `s2`, and `s3`, respectively.
- */
-pragma[noinline]
-predicate step(StateTuple q, InputSymbol s1, InputSymbol s2, InputSymbol s3, StateTuple r) {
-  exists(State r1, State r2, State r3 |
-    step(q, s1, s2, s3, r1, r2, r3) and r = MkStateTuple(r1, r2, r3)
-  )
-}
-
-/**
- * Holds if there are transitions from the components of `q` to `r1`, `r2`, and `r3
- * labelled with `s1`, `s2`, and `s3`, respectively.
- */
-pragma[noopt]
-predicate step(
-  StateTuple q, InputSymbol s1, InputSymbol s2, InputSymbol s3, State r1, State r2, State r3
-) {
-  exists(State q1, State q2, State q3 | q.isTuple(q1, q2, q3) |
-    deltaClosed(q1, s1, r1) and
-    deltaClosed(q2, s2, r2) and
-    deltaClosed(q3, s3, r3) and
-    // use noopt to force the join on `getAThreewayIntersect` to happen last.
-    exists(getAThreewayIntersect(s1, s2, s3))
-  )
-}
-
-/**
- * Gets a char that is matched by all the edges `s1`, `s2`, and `s3`.
- *
- * The result is not complete, and might miss some combination of edges that share some character.
- */
-pragma[noinline]
-string getAThreewayIntersect(InputSymbol s1, InputSymbol s2, InputSymbol s3) {
-  result = minAndMaxIntersect(s1, s2) and result = [intersect(s2, s3), intersect(s1, s3)]
-  or
-  result = minAndMaxIntersect(s1, s3) and result = [intersect(s2, s3), intersect(s1, s2)]
-  or
-  result = minAndMaxIntersect(s2, s3) and result = [intersect(s1, s2), intersect(s1, s3)]
-}
-
-/**
- * Gets the minimum and maximum characters that intersect between `a` and `b`.
- * This predicate is used to limit the size of `getAThreewayIntersect`.
- */
-pragma[noinline]
-string minAndMaxIntersect(InputSymbol a, InputSymbol b) {
-  result = [min(intersect(a, b)), max(intersect(a, b))]
-}
-
-private newtype TTrace =
-  Nil() or
-  Step(InputSymbol s1, InputSymbol s2, InputSymbol s3, TTrace t) {
-    isReachableFromStartTuple(_, _, t, s1, s2, s3, _, _)
-  }
-
-/**
- * A list of tuples of input symbols that describe a path in the product automaton
- * starting from some start state.
- */
-class Trace extends TTrace {
-  /**
-   * Gets a string representation of this Trace that can be used for debug purposes.
-   */
-  string toString() {
-    this = Nil() and result = "Nil()"
-    or
-    exists(InputSymbol s1, InputSymbol s2, InputSymbol s3, Trace t | this = Step(s1, s2, s3, t) |
-      result = "Step(" + s1 + ", " + s2 + ", " + s3 + ", " + t + ")"
-    )
-  }
-}
-
-/**
- * Holds if there exists a transition from `r` to `q` in the product automaton.
- * Notice that the arguments are flipped, and thus the direction is backwards.
- */
-pragma[noinline]
-predicate tupleDeltaBackwards(StateTuple q, StateTuple r) { step(r, _, _, _, q) }
-
-/**
- * Holds if `tuple` is an end state in our search.
- * That means there exists a pair of loops `(pivot, succ)` such that `tuple = (pivot, succ, succ)`.
- */
-predicate isEndTuple(StateTuple tuple) { tuple = getAnEndTuple(_, _) }
-
-/**
- * Gets the minimum length of a path from `r` to some an end state `end`.
- *
- * The implementation searches backwards from the end-tuple.
- * This approach was chosen because it is way more efficient if the first predicate given to `shortestDistances` is small.
- * The `end` argument must always be an end state.
- */
-int distBackFromEnd(StateTuple r, StateTuple end) =
-  shortestDistances(isEndTuple/1, tupleDeltaBackwards/2)(end, r, result)
-
-/**
- * Holds if there exists a pair of repetitions `(pivot, succ)` in the regular expression such that:
- * `tuple` is reachable from `(pivot, pivot, succ)` in the product automaton,
- * and there is a distance of `dist` from `tuple` to the nearest end-tuple `(pivot, succ, succ)`,
- * and a path from a start-state to `tuple` follows the transitions in `trace`.
- */
-private predicate isReachableFromStartTuple(
-  State pivot, State succ, StateTuple tuple, Trace trace, int dist
-) {
-  exists(InputSymbol s1, InputSymbol s2, InputSymbol s3, Trace v |
-    isReachableFromStartTuple(pivot, succ, v, s1, s2, s3, tuple, dist) and
-    trace = Step(s1, s2, s3, v)
-  )
-}
-
-private predicate isReachableFromStartTuple(
-  State pivot, State succ, Trace trace, InputSymbol s1, InputSymbol s2, InputSymbol s3,
-  StateTuple tuple, int dist
-) {
-  // base case.
-  exists(State q1, State q2, State q3 |
-    isStartLoops(pivot, succ) and
-    step(MkStateTuple(pivot, pivot, succ), s1, s2, s3, tuple) and
-    tuple = MkStateTuple(q1, q2, q3) and
-    trace = Nil() and
-    dist = distBackFromEnd(tuple, MkStateTuple(pivot, succ, succ))
-  )
-  or
-  // recursive case
-  exists(StateTuple p |
-    isReachableFromStartTuple(pivot, succ, p, trace, dist + 1) and
-    dist = distBackFromEnd(tuple, MkStateTuple(pivot, succ, succ)) and
-    step(p, s1, s2, s3, tuple)
-  )
-}
-
-/**
- * Gets the tuple `(pivot, succ, succ)` from the product automaton.
- */
-StateTuple getAnEndTuple(State pivot, State succ) {
-  isStartLoops(pivot, succ) and
-  result = MkStateTuple(pivot, succ, succ)
-}
-
-/** An implementation of a chain containing chars for use by `Concretizer`. */
-private module CharTreeImpl implements CharTree {
-  class CharNode = Trace;
-
-  CharNode getPrev(CharNode t) { t = Step(_, _, _, result) }
-
-  /** Holds if `n` is used in `isPumpable`. */
-  predicate isARelevantEnd(CharNode n) {
-    exists(State pivot, State succ |
-      isReachableFromStartTuple(pivot, succ, getAnEndTuple(pivot, succ), n, _)
-    )
-  }
-
-  string getChar(CharNode t) {
-    exists(InputSymbol s1, InputSymbol s2, InputSymbol s3 | t = Step(s1, s2, s3, _) |
-      result = getAThreewayIntersect(s1, s2, s3)
-    )
-  }
-}
-
-/**
- * Holds if matching repetitions of `pump` can:
- * 1) Transition from `pivot` back to `pivot`.
- * 2) Transition from `pivot` to `succ`.
- * 3) Transition from `succ` to `succ`.
- *
- * From theorem 3 in the paper linked in the top of this file we can therefore conclude that
- * the regular expression has polynomial backtracking - if a rejecting suffix exists.
- *
- * This predicate is used by `SuperLinearReDoSConfiguration`, and the final results are
- * available in the `hasReDoSResult` predicate.
- */
-predicate isPumpable(State pivot, State succ, string pump) {
-  exists(StateTuple q, Trace t |
-    isReachableFromStartTuple(pivot, succ, q, t, _) and
-    q = getAnEndTuple(pivot, succ) and
-    pump = Concretizer<CharTreeImpl>::concretize(t)
-  )
-}
-
-/**
- * Holds if states starting in `state` can have polynomial backtracking with the string `pump`.
- */
-predicate isReDoSCandidate(State state, string pump) { isPumpable(_, state, pump) }
-
-/**
- * Holds if repetitions of `pump` at `t` will cause polynomial backtracking.
- */
-predicate polynomialReDoS(RegExpTerm t, string pump, string prefixMsg, RegExpTerm prev) {
-  exists(State s, State pivot |
-    ReDoSPruning<isReDoSCandidate/2>::hasReDoSResult(t, pump, s, prefixMsg) and
-    isPumpable(pivot, s, _) and
-    prev = pivot.getRepr()
-  )
-}
-
-/**
- * Gets a message for why `term` can cause polynomial backtracking.
- */
-string getReasonString(RegExpTerm term, string pump, string prefixMsg, RegExpTerm prev) {
-  polynomialReDoS(term, pump, prefixMsg, prev) and
-  result =
-    "Strings " + prefixMsg + "with many repetitions of '" + pump +
-      "' can start matching anywhere after the start of the preceeding " + prev
-}
-
-/**
- * A term that may cause a regular expression engine to perform a
- * polynomial number of match attempts, relative to the input length.
- */
-class PolynomialBackTrackingTerm extends InfiniteRepetitionQuantifier {
-  string reason;
-  string pump;
-  string prefixMsg;
-  RegExpTerm prev;
-
-  PolynomialBackTrackingTerm() {
-    reason = getReasonString(this, pump, prefixMsg, prev) and
-    // there might be many reasons for this term to have polynomial backtracking - we pick the shortest one.
-    reason = min(string msg | msg = getReasonString(this, _, _, _) | msg order by msg.length(), msg)
-  }
-
-  /**
-   * Holds if all non-empty successors to the polynomial backtracking term matches the end of the line.
-   */
-  predicate isAtEndLine() {
-    forall(RegExpTerm succ | this.getSuccessor+() = succ and not matchesEpsilon(succ) |
-      succ instanceof RegExpDollar
-    )
-  }
-
-  /**
-   * Gets the string that should be repeated to cause this regular expression to perform polynomially.
-   */
-  string getPumpString() { result = pump }
-
-  /**
-   * Gets a message for which prefix a matching string must start with for this term to cause polynomial backtracking.
-   */
-  string getPrefixMessage() { result = prefixMsg }
-
-  /**
-   * Gets a predecessor to `this`, which also loops on the pump string, and thereby causes polynomial backtracking.
-   */
-  RegExpTerm getPreviousLoop() { result = prev }
-
-  /**
-   * Gets the reason for the number of match attempts.
-   */
-  string getReason() { result = reason }
-}
+private import semmle.code.java.regex.RegexTreeView::RegexTreeView as TreeView
+// SuperlinearBackTracking should be used directly from the shared pack, and not from this file.
+deprecated private import codeql.regex.nfa.SuperlinearBackTracking::Make<TreeView> as Dep
+import Dep
diff --git a/java/ql/src/Security/CWE/CWE-020/OverlyLargeRange.ql b/java/ql/src/Security/CWE/CWE-020/OverlyLargeRange.ql
index d054659892c..b8ea3e52dbd 100644
--- a/java/ql/src/Security/CWE/CWE-020/OverlyLargeRange.ql
+++ b/java/ql/src/Security/CWE/CWE-020/OverlyLargeRange.ql
@@ -12,14 +12,15 @@
  *       external/cwe/cwe-020
  */
 
-import semmle.code.java.security.OverlyLargeRangeQuery
+private import semmle.code.java.regex.RegexTreeView::RegexTreeView as TreeView
+import codeql.regex.OverlyLargeRangeQuery::Make<TreeView>
 
-RegExpCharacterClass potentialMisparsedCharClass() {
+TreeView::RegExpCharacterClass potentialMisparsedCharClass() {
   // nested char classes are currently misparsed
-  result.getAChild().(RegExpNormalChar).getValue() = "["
+  result.getAChild().(TreeView::RegExpNormalChar).getValue() = "["
 }
 
-from RegExpCharacterRange range, string reason
+from TreeView::RegExpCharacterRange range, string reason
 where
   problem(range, reason) and
   not range.getParent() = potentialMisparsedCharClass()
diff --git a/java/ql/src/Security/CWE/CWE-730/PolynomialReDoS.ql b/java/ql/src/Security/CWE/CWE-730/PolynomialReDoS.ql
index 75cd8335fac..a84f1c5213e 100644
--- a/java/ql/src/Security/CWE/CWE-730/PolynomialReDoS.ql
+++ b/java/ql/src/Security/CWE/CWE-730/PolynomialReDoS.ql
@@ -17,7 +17,9 @@ import java
 import semmle.code.java.security.regexp.PolynomialReDoSQuery
 import DataFlow::PathGraph
 
-from DataFlow::PathNode source, DataFlow::PathNode sink, PolynomialBackTrackingTerm regexp
+from
+  DataFlow::PathNode source, DataFlow::PathNode sink,
+  SuperlinearBackTracking::PolynomialBackTrackingTerm regexp
 where hasPolynomialReDoSResult(source, sink, regexp)
 select sink, source, sink,
   "This $@ that depends on a $@ may run slow on strings " + regexp.getPrefixMessage() +
diff --git a/java/ql/src/Security/CWE/CWE-730/ReDoS.ql b/java/ql/src/Security/CWE/CWE-730/ReDoS.ql
index 23e258e8915..ca4750fc858 100644
--- a/java/ql/src/Security/CWE/CWE-730/ReDoS.ql
+++ b/java/ql/src/Security/CWE/CWE-730/ReDoS.ql
@@ -14,12 +14,12 @@
  *       external/cwe/cwe-400
  */
 
-import java
-import semmle.code.java.security.regexp.ExponentialBackTracking
+private import semmle.code.java.regex.RegexTreeView::RegexTreeView as TreeView
+import codeql.regex.nfa.ExponentialBackTracking::Make<TreeView> as ExponentialBackTracking
 
-from RegExpTerm t, string pump, State s, string prefixMsg
+from TreeView::RegExpTerm t, string pump, ExponentialBackTracking::State s, string prefixMsg
 where
-  hasReDoSResult(t, pump, s, prefixMsg) and
+  ExponentialBackTracking::hasReDoSResult(t, pump, s, prefixMsg) and
   // exclude verbose mode regexes for now
   not t.getRegex().getAMode() = "VERBOSE"
 select t,
diff --git a/java/ql/test/library-tests/regex/parser/RegexParseTests.ql b/java/ql/test/library-tests/regex/parser/RegexParseTests.ql
index 345031a3b2d..4c8d7519f14 100644
--- a/java/ql/test/library-tests/regex/parser/RegexParseTests.ql
+++ b/java/ql/test/library-tests/regex/parser/RegexParseTests.ql
@@ -1,10 +1,12 @@
 import java
-import semmle.code.java.regex.RegexTreeView
-import semmle.code.java.regex.regex
+import semmle.code.java.regex.RegexTreeView as RegexTreeView
+import semmle.code.java.regex.regex as Regex
 
-string getQLClases(RegExpTerm t) { result = "[" + strictconcat(t.getPrimaryQLClass(), ",") + "]" }
+string getQLClases(RegexTreeView::RegExpTerm t) {
+  result = "[" + strictconcat(t.getPrimaryQLClass(), ",") + "]"
+}
 
-query predicate parseFailures(Regex r, int i) { r.failedToParse(i) }
+query predicate parseFailures(Regex::Regex r, int i) { r.failedToParse(i) }
 
-from RegExpTerm t
+from RegexTreeView::RegExpTerm t
 select t, getQLClases(t)
diff --git a/java/ql/test/query-tests/security/CWE-730/PolynomialReDoS.ql b/java/ql/test/query-tests/security/CWE-730/PolynomialReDoS.ql
index bd600a6d8af..c8c1566a7a4 100644
--- a/java/ql/test/query-tests/security/CWE-730/PolynomialReDoS.ql
+++ b/java/ql/test/query-tests/security/CWE-730/PolynomialReDoS.ql
@@ -1,4 +1,3 @@
-import java
 import TestUtilities.InlineExpectationsTest
 import semmle.code.java.security.regexp.PolynomialReDoSQuery
 
@@ -9,7 +8,10 @@ class HasPolyRedos extends InlineExpectationsTest {
 
   override predicate hasActualResult(Location location, string element, string tag, string value) {
     tag = "hasPolyRedos" and
-    exists(DataFlow::PathNode source, DataFlow::PathNode sink, PolynomialBackTrackingTerm regexp |
+    exists(
+      DataFlow::PathNode source, DataFlow::PathNode sink,
+      SuperlinearBackTracking::PolynomialBackTrackingTerm regexp
+    |
       hasPolynomialReDoSResult(source, sink, regexp) and
       location = sink.getNode().getLocation() and
       element = sink.getNode().toString() and
diff --git a/java/ql/test/query-tests/security/CWE-730/ReDoS.ql b/java/ql/test/query-tests/security/CWE-730/ReDoS.ql
index 288ca57f2e2..7226541bcb2 100644
--- a/java/ql/test/query-tests/security/CWE-730/ReDoS.ql
+++ b/java/ql/test/query-tests/security/CWE-730/ReDoS.ql
@@ -1,6 +1,7 @@
 import java
 import TestUtilities.InlineExpectationsTest
-import semmle.code.java.security.regexp.ExponentialBackTracking
+private import semmle.code.java.regex.RegexTreeView::RegexTreeView as TreeView
+import codeql.regex.nfa.ExponentialBackTracking::Make<TreeView> as ExponentialBackTracking
 import semmle.code.java.regex.regex
 
 class HasExpRedos extends InlineExpectationsTest {
@@ -10,8 +11,8 @@ class HasExpRedos extends InlineExpectationsTest {
 
   override predicate hasActualResult(Location location, string element, string tag, string value) {
     tag = "hasExpRedos" and
-    exists(RegExpTerm t, string pump, State s, string prefixMsg |
-      hasReDoSResult(t, pump, s, prefixMsg) and
+    exists(TreeView::RegExpTerm t, string pump, ExponentialBackTracking::State s, string prefixMsg |
+      ExponentialBackTracking::hasReDoSResult(t, pump, s, prefixMsg) and
       not t.getRegex().getAMode() = "VERBOSE" and
       value = "" and
       location = t.getLocation() and

From a4acea9adf9463cba31368a017aaf646fff16272 Mon Sep 17 00:00:00 2001
From: erik-krogh <erik-krogh@github.com>
Date: Tue, 1 Nov 2022 12:20:15 +0100
Subject: [PATCH 0250/1420] add change-note

---
 java/ql/lib/change-notes/2022-10-31-shared-redos-pack.md | 4 ++++
 1 file changed, 4 insertions(+)
 create mode 100644 java/ql/lib/change-notes/2022-10-31-shared-redos-pack.md

diff --git a/java/ql/lib/change-notes/2022-10-31-shared-redos-pack.md b/java/ql/lib/change-notes/2022-10-31-shared-redos-pack.md
new file mode 100644
index 00000000000..405ddd1108c
--- /dev/null
+++ b/java/ql/lib/change-notes/2022-10-31-shared-redos-pack.md
@@ -0,0 +1,4 @@
+---
+ category: minorAnalysis
+---
+ * The ReDoS libraries in `semmle.code.java.security.regexp` has been moved to a shared pack inside the `shared/` folder, and the previous location has been deprecated.
\ No newline at end of file

From b59a9bc95cf7a2a81256248f406d642c0cc93238 Mon Sep 17 00:00:00 2001
From: erik-krogh <erik-krogh@github.com>
Date: Mon, 7 Nov 2022 14:29:51 +0100
Subject: [PATCH 0251/1420] use  instead of a fixed version number

---
 java/ql/lib/qlpack.yml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/java/ql/lib/qlpack.yml b/java/ql/lib/qlpack.yml
index 32f1ef40ae8..4b103c629a2 100644
--- a/java/ql/lib/qlpack.yml
+++ b/java/ql/lib/qlpack.yml
@@ -6,4 +6,4 @@ extractor: java
 library: true
 upgrades: upgrades
 dependencies:
-  codeql/regex: 0.0.1
\ No newline at end of file
+  codeql/regex: ${workspace}
\ No newline at end of file

From 5bbdaad0e54c3706e50ac7c4c08d8d45f1bc2065 Mon Sep 17 00:00:00 2001
From: Robert Marsh <rdmarsh@semmle.com>
Date: Mon, 14 Nov 2022 16:50:39 -0500
Subject: [PATCH 0252/1420] C++: deprecate AST-based GVN

---
 cpp/ql/lib/change-notes/2022-11-14-deprecate-ast-gvn.md   | 6 ++++++
 .../code/cpp/valuenumbering/GlobalValueNumberingImpl.qll  | 8 ++++++--
 2 files changed, 12 insertions(+), 2 deletions(-)
 create mode 100644 cpp/ql/lib/change-notes/2022-11-14-deprecate-ast-gvn.md

diff --git a/cpp/ql/lib/change-notes/2022-11-14-deprecate-ast-gvn.md b/cpp/ql/lib/change-notes/2022-11-14-deprecate-ast-gvn.md
new file mode 100644
index 00000000000..eb6bd755c2b
--- /dev/null
+++ b/cpp/ql/lib/change-notes/2022-11-14-deprecate-ast-gvn.md
@@ -0,0 +1,6 @@
+---
+category: deprecated
+---
+
+
+* Deprecated `semmle.code.cpp.valuenumbering.GlobalValueNumberingImpl`. Use `semmle.code.cpp.valuenumbering.GlobalValueNumbering`, which exposes the same API.
\ No newline at end of file
diff --git a/cpp/ql/lib/semmle/code/cpp/valuenumbering/GlobalValueNumberingImpl.qll b/cpp/ql/lib/semmle/code/cpp/valuenumbering/GlobalValueNumberingImpl.qll
index 7dd55dbfde3..10e3d3ba1c2 100644
--- a/cpp/ql/lib/semmle/code/cpp/valuenumbering/GlobalValueNumberingImpl.qll
+++ b/cpp/ql/lib/semmle/code/cpp/valuenumbering/GlobalValueNumberingImpl.qll
@@ -1,4 +1,8 @@
 /**
+ * DEPRECATED: This library has been replaced with a newer version which
+ * provides better performance and precision. Use
+ * `semmle.code.cpp.valuenumbering.GlobalValueNumbering` instead.
+ *
  * Provides an implementation of Global Value Numbering.
  * See https://en.wikipedia.org/wiki/Global_value_numbering
  *
@@ -221,7 +225,7 @@ private newtype GvnBase =
  * expression with this `GVN` and using its `toString` and `getLocation`
  * methods.
  */
-class GVN extends GvnBase {
+deprecated class GVN extends GvnBase {
   GVN() { this instanceof GvnBase }
 
   /** Gets an expression that has this GVN. */
@@ -503,7 +507,7 @@ private predicate mk_Deref(GVN p, ControlFlowNode dominator, PointerDereferenceE
 
 /** Gets the global value number of expression `e`. */
 cached
-GVN globalValueNumber(Expr e) {
+deprecated GVN globalValueNumber(Expr e) {
   exists(int val, Type t |
     mk_IntConst(val, t, e) and
     result = GVN_IntConst(val, t)

From 5ea03b1ded4380816c8d3396a652c36841e8a856 Mon Sep 17 00:00:00 2001
From: Mauro Baluda <mbaluda@github.com>
Date: Mon, 14 Nov 2022 22:56:06 +0100
Subject: [PATCH 0253/1420] Update Hapi.qll

Add `server` definitions in plugin registration and plugin dependency declaration
---
 .../ql/lib/semmle/javascript/frameworks/Hapi.qll | 16 ++++++++++++----
 1 file changed, 12 insertions(+), 4 deletions(-)

diff --git a/javascript/ql/lib/semmle/javascript/frameworks/Hapi.qll b/javascript/ql/lib/semmle/javascript/frameworks/Hapi.qll
index 4c7dd3e5a49..0d04aac34c6 100644
--- a/javascript/ql/lib/semmle/javascript/frameworks/Hapi.qll
+++ b/javascript/ql/lib/semmle/javascript/frameworks/Hapi.qll
@@ -14,16 +14,24 @@ module Hapi {
       // `server = new Hapi.Server()`
       this = DataFlow::moduleMember("hapi", "Server").getAnInstantiation()
       or
-      // server = Glue.compose(manifest, composeOptions)
+      // `server = Glue.compose(manifest, composeOptions)`
       this = DataFlow::moduleMember("@hapi/glue", "compose").getAnInvocation()
       or
-      // server inside a plugin
-      // TODO match `function (server, options)`
+      // `register (server, options)`
       exists(Function f |
         this.(DataFlow::ParameterNode).getParameter() = f.getParameter(0) and
+        f.getName() = "register" and
         f.getParameter(0).getName() = "server" and
         f.getParameter(1).getName() = "options"
       )
+      or
+      // `const after = function (server) {...};`
+      // `server.dependency('name', after);`
+      exists(ServerDefinition server, DataFlow::MethodCallNode call |
+        call = server.ref().getAMethodCall() and
+        call.getMethodName() = "dependency" and
+        this = call.getArgument(1).(DataFlow::FunctionNode).getParameter(0)
+      )
     }
   }
 
@@ -261,7 +269,7 @@ module Hapi {
     RouteHandlerCandidate() {
       exists(string request, string responseToolkit |
         (request = "request" or request = "req") and
-        responseToolkit = "h" and
+        responseToolkit = ["h", "hapi"] and
         // heuristic: parameter names match the Hapi documentation
         astNode.getNumParameter() = 2 and
         astNode.getParameter(0).getName() = request and

From 9d7e7735d566a1aa27e8f4f8be3f6cd56b5afb78 Mon Sep 17 00:00:00 2001
From: tiferet <tiferet@github.com>
Date: Mon, 14 Nov 2022 14:33:08 -0800
Subject: [PATCH 0254/1420] Extract training data:

Implement the new query that selects data for training. For now we include clauses that implement logic that is identical to the old queries.

Include a temporary wrapper query that converts the resulting data into the format expected by the endpoint pipeline.

Move the small pieces of `ExtractEndpointData` that are still needed into `ExtractEndpointDataTraining.qll`.
---
 .../EndpointCharacteristics.qll               |   3 +
 .../extraction/ExtractEndpointDataTraining.ql |  21 +-
 .../ExtractEndpointDataTraining.qll           | 239 ++++++++++++++++++
 3 files changed, 245 insertions(+), 18 deletions(-)
 create mode 100644 javascript/ql/experimental/adaptivethreatmodeling/modelbuilding/extraction/ExtractEndpointDataTraining.qll

diff --git a/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/EndpointCharacteristics.qll b/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/EndpointCharacteristics.qll
index 33cd559503c..b20031bf228 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/EndpointCharacteristics.qll
+++ b/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/EndpointCharacteristics.qll
@@ -45,6 +45,9 @@ abstract class EndpointCharacteristic extends string {
     EndpointType endpointClass, boolean isPositiveIndicator, float confidence
   );
 
+  /** Indicators with confidence at or above this threshold are considered to be high-confidence indicators. */
+  final float getHighConfidenceThreshold() { result = 0.8 }
+
   // The following are some confidence values that are used in practice by the subclasses. They are defined as named
   // constants here to make it easier to change them in the future.
   final float maximalConfidence() { result = 1.0 }
diff --git a/javascript/ql/experimental/adaptivethreatmodeling/modelbuilding/extraction/ExtractEndpointDataTraining.ql b/javascript/ql/experimental/adaptivethreatmodeling/modelbuilding/extraction/ExtractEndpointDataTraining.ql
index 20ece497585..3b0bb468ffd 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/modelbuilding/extraction/ExtractEndpointDataTraining.ql
+++ b/javascript/ql/experimental/adaptivethreatmodeling/modelbuilding/extraction/ExtractEndpointDataTraining.ql
@@ -4,23 +4,8 @@
  * Extracts training data we can use to train ML models for ML-powered queries.
  */
 
-import javascript
-import ExtractEndpointData as ExtractEndpointData
+private import ExtractEndpointDataTraining as ExtractEndpointDataTraining
 
-query predicate endpoints(
-  DataFlow::Node endpoint, string queryName, string key, string value, string valueType
-) {
-  ExtractEndpointData::endpoints(endpoint, queryName, key, value, valueType) and
-  // only select endpoints that are either Sink or NotASink
-  ExtractEndpointData::endpoints(endpoint, queryName, "sinkLabel", ["Sink", "NotASink"], "string") and
-  // do not select endpoints filtered out by end-to-end evaluation
-  ExtractEndpointData::endpoints(endpoint, queryName, "isExcludedFromEndToEndEvaluation", "false",
-    "boolean") and
-  // only select endpoints that can be part of a tainted flow
-  ExtractEndpointData::endpoints(endpoint, queryName, "isConstantExpression", "false", "boolean")
-}
+query predicate endpoints = ExtractEndpointDataTraining::reformattedTrainingEndpoints/5;
 
-query predicate tokenFeatures(DataFlow::Node endpoint, string featureName, string featureValue) {
-  endpoints(endpoint, _, _, _, _) and
-  ExtractEndpointData::tokenFeatures(endpoint, featureName, featureValue)
-}
+query predicate tokenFeatures = ExtractEndpointDataTraining::tokenFeatures/3;
diff --git a/javascript/ql/experimental/adaptivethreatmodeling/modelbuilding/extraction/ExtractEndpointDataTraining.qll b/javascript/ql/experimental/adaptivethreatmodeling/modelbuilding/extraction/ExtractEndpointDataTraining.qll
new file mode 100644
index 00000000000..00733c8abae
--- /dev/null
+++ b/javascript/ql/experimental/adaptivethreatmodeling/modelbuilding/extraction/ExtractEndpointDataTraining.qll
@@ -0,0 +1,239 @@
+/*
+ * For internal use only.
+ *
+ * Extracts training data we can use to train ML models for ML-powered queries.
+ */
+
+import javascript
+import experimental.adaptivethreatmodeling.EndpointCharacteristics
+import experimental.adaptivethreatmodeling.EndpointFeatures as EndpointFeatures
+import NoFeaturizationRestrictionsConfig
+private import Exclusions as Exclusions
+private import Queries
+private import experimental.adaptivethreatmodeling.NosqlInjectionATM as NosqlInjectionAtm
+private import experimental.adaptivethreatmodeling.SqlInjectionATM as SqlInjectionAtm
+private import experimental.adaptivethreatmodeling.TaintedPathATM as TaintedPathAtm
+private import experimental.adaptivethreatmodeling.XssATM as XssAtm
+
+/**
+ * Gets the set of featureName-featureValue pairs for each endpoint in the training set.
+ *
+ * `EndpointFeatures::tokenFeatures` has no results when `featureName` is absent for the endpoint
+ * `endpoint`. To preserve compatibility with the data pipeline, this relation will instead set
+ * `featureValue` to the empty string in this case.
+ */
+query predicate tokenFeatures(DataFlow::Node endpoint, string featureName, string featureValue) {
+  trainingEndpoints(endpoint, _, _) and
+  (
+    EndpointFeatures::tokenFeatures(endpoint, featureName, featureValue)
+    or
+    // Performance note: this creates a Cartesian product between `endpoint` and `featureName`.
+    featureName = EndpointFeatures::getASupportedFeatureName() and
+    not exists(string value | EndpointFeatures::tokenFeatures(endpoint, featureName, value)) and
+    featureValue = ""
+  )
+}
+
+/**
+ * Holds if the given endpoint should be included in the training set as a sample belonging to endpointClass, and has
+ * the given characteristic. This query uses the endpoint characteristics to select and label endpoints for the training
+ * set, and provides a list of characteristics for each endpoint in the training set, which is used in the modeling
+ * code.
+ *
+ * Params:
+ * endpoint: The endpoint to include / exclude.
+ * endpointClass: The sink type. Each EndpointType has a predicate getEncoding, which specifies the classifier class
+ * for this sink type. Class 0 is the negative class (non-sink). Each positive int corresponds to a single sink type.
+ * This gives us the label for the endpoint in the training data.
+ * characteristic: Provides the list of characteristics that apply to the endpoint, which the modeling code currently
+ * uses for type balancing.
+ *
+ * Note: This predicate will produce multiple tuples for endpoints that have multiple characteristics, which we must
+ * then group together into a list of characteristics.
+ */
+query predicate trainingEndpoints(
+  DataFlow::Node endpoint, EndpointType endpointClass, EndpointCharacteristic characteristic
+) {
+  characteristic.getEndpoints(endpoint) and
+  // Only consider the source code for the project being analyzed.
+  exists(endpoint.getFile().getRelativePath()) and
+  // Only select endpoints that can be part of a tainted flow: Constant expressions always evaluate to a constant
+  // primitive value. Therefore they can't ever appear in an alert, making them less interesting training examples.
+  // TODO: Experiment with removing this requirement.
+  not endpoint.asExpr() instanceof ConstantExpr and
+  // Do not select endpoints filtered out by end-to-end evaluation.
+  // TODO: Experiment with removing this requirement.
+  not Exclusions::isFileExcluded(endpoint.getFile()) and
+  // Filter out negative examples that also have a LikelyNotASinkReason, because this is currently done here
+  // https://github.com/github/codeql/blob/387e57546bf7352f7c1cfe781daa1a3799b7063e/javascript/ql/experimental/adaptivethreatmodeling/modelbuilding/extraction/ExtractEndpointData.qll#L77
+  // TODO: Experiment with removing this requirement.
+  not (
+    endpointClass instanceof NegativeType and
+    exists(EndpointCharacteristic c |
+      c.getEndpoints(endpoint) and
+      c instanceof LikelyNotASinkCharacteristic
+    )
+  ) and
+  (
+    // If the list of characteristics includes positive indicators with high confidence for this class, select this as a
+    // training sample belonging to the class.
+    exists(EndpointCharacteristic characteristic2, float confidence |
+      characteristic2.getEndpoints(endpoint) and
+      characteristic2.getImplications(endpointClass, true, confidence) and
+      confidence >= characteristic2.getHighConfidenceThreshold()
+    ) and
+    (
+      // Temporarily limit this only to positive classes. For negative classes, additionally select only endpoints that
+      // have no high confidence indicators that they are sinks, because this is what was previously done.
+      // TODO: Experiment with removing this requirement, and instead ensuring that an endpoint never has both a high
+      // confidence indicator that it _is_ a sink and a high confidence indicator that it is _not_ a sink.
+      not endpointClass instanceof NegativeType
+      or
+      not exists(EndpointCharacteristic characteristic3, float confidence3, EndpointType posClass |
+        characteristic3.getEndpoints(endpoint) and
+        characteristic3.getImplications(posClass, true, confidence3) and
+        confidence3 >= characteristic3.getHighConfidenceThreshold() and
+        not posClass instanceof NegativeType
+      )
+    )
+    or
+    // If the list of characteristics includes negative indicators with high confidence for all classes other than 0,
+    // select this as a training sample of class 0 (this means we had query-specific characteristics to decide this
+    // endpoint isn’t a sink for each of our sink types).
+    endpointClass instanceof NegativeType and
+    forall(EndpointType otherClass | not otherClass instanceof NegativeType |
+      exists(EndpointCharacteristic characteristic2, float confidence |
+        characteristic2.getEndpoints(endpoint) and
+        characteristic2.getImplications(otherClass, false, confidence) and
+        confidence >= characteristic2.getHighConfidenceThreshold()
+      )
+    )
+  )
+}
+
+/**
+ * Temporary:
+ * Reformat the training data that was extracted with the new logic to match the format produced by the old predicate.
+ * This is the format expected by the endpoint pipeline.
+ */
+query predicate reformattedTrainingEndpoints(
+  DataFlow::Node endpoint, string queryName, string key, string value, string valueType
+) {
+  trainingEndpoints(endpoint, _, _) and
+  exists(Query query |
+    queryName = query.getName() and
+    // For sinks, only list that sink type, but for non-sinks, list all sink types.
+    (
+      exists(EndpointType endpointClass |
+        endpointClass.getDescription().matches(queryName + "%") and
+        not endpointClass instanceof NegativeType and
+        trainingEndpoints(endpoint, endpointClass, _)
+      )
+      or
+      exists(EndpointType endpointClass |
+        endpointClass instanceof NegativeType and
+        trainingEndpoints(endpoint, endpointClass, _)
+      )
+    ) and
+    (
+      // NOTE: We don't use hasFlowFromSource in training, so we could just hardcode it to be false.
+      key = "hasFlowFromSource" and
+      (
+        if FlowFromSource::hasFlowFromSource(endpoint, query)
+        then value = "true"
+        else value = "false"
+      ) and
+      valueType = "boolean"
+      or
+      // Constant expressions always evaluate to a constant primitive value. Therefore they can't ever
+      // appear in an alert, making them less interesting training examples.
+      key = "isConstantExpression" and
+      (if endpoint.asExpr() instanceof ConstantExpr then value = "true" else value = "false") and
+      valueType = "boolean"
+      or
+      // Holds if alerts involving the endpoint are excluded from the end-to-end evaluation.
+      key = "isExcludedFromEndToEndEvaluation" and
+      (if Exclusions::isFileExcluded(endpoint.getFile()) then value = "true" else value = "false") and
+      valueType = "boolean"
+      or
+      // The label for this query, considering the endpoint as a sink.
+      key = "sinkLabel" and
+      valueType = "string" and
+      value = "Sink" and
+      exists(EndpointType endpointClass |
+        endpointClass.getDescription().matches(queryName + "%") and
+        not endpointClass instanceof NegativeType and
+        trainingEndpoints(endpoint, endpointClass, _)
+      )
+      or
+      key = "sinkLabel" and
+      valueType = "string" and
+      value = "NotASink" and
+      exists(EndpointType endpointClass |
+        endpointClass instanceof NegativeType and
+        trainingEndpoints(endpoint, endpointClass, _)
+      )
+      or
+      // The reason, or reasons, why the endpoint was labeled NotASink for this query, only for negative examples.
+      key = "notASinkReason" and
+      exists(EndpointCharacteristic characteristic, EndpointType endpointClass |
+        characteristic.getEndpoints(endpoint) and
+        characteristic.getImplications(endpointClass, true, _) and
+        endpointClass instanceof NegativeType and
+        value = characteristic
+      ) and
+      // Don't include a notASinkReason for endpoints that are also known sinks.
+      not exists(EndpointCharacteristic characteristic3, float confidence3, EndpointType posClass |
+        characteristic3.getEndpoints(endpoint) and
+        characteristic3.getImplications(posClass, true, confidence3) and
+        confidence3 >= characteristic3.getHighConfidenceThreshold() and
+        not posClass instanceof NegativeType
+      ) and
+      valueType = "string"
+    )
+  )
+}
+
+/**
+ * Gets the ATM data flow configuration for the specified query.
+ * TODO: Delete this once we are no longer surfacing `hasFlowFromSource`.
+ */
+DataFlow::Configuration getDataFlowCfg(Query query) {
+  query instanceof NosqlInjectionQuery and result instanceof NosqlInjectionAtm::Configuration
+  or
+  query instanceof SqlInjectionQuery and result instanceof SqlInjectionAtm::Configuration
+  or
+  query instanceof TaintedPathQuery and result instanceof TaintedPathAtm::Configuration
+  or
+  query instanceof XssQuery and result instanceof XssAtm::Configuration
+}
+
+// TODO: Delete this once we are no longer surfacing `hasFlowFromSource`.
+module FlowFromSource {
+  predicate hasFlowFromSource(DataFlow::Node endpoint, Query q) {
+    exists(Configuration cfg | cfg.getQuery() = q | cfg.hasFlow(_, endpoint))
+  }
+
+  /**
+   * A data flow configuration that replicates the data flow configuration for a specific query, but
+   * replaces the set of sinks with the set of endpoints we're extracting.
+   *
+   * We use this to find out when there is flow to a particular endpoint from a known source.
+   *
+   * This configuration behaves in a very similar way to the `ForwardExploringConfiguration` class
+   * from the CodeQL standard libraries for JavaScript.
+   */
+  private class Configuration extends DataFlow::Configuration {
+    Query q;
+
+    Configuration() { this = getDataFlowCfg(q) }
+
+    Query getQuery() { result = q }
+
+    /** Holds if `sink` is an endpoint we're extracting. */
+    override predicate isSink(DataFlow::Node sink) { any() }
+
+    /** Holds if `sink` is an endpoint we're extracting. */
+    override predicate isSink(DataFlow::Node sink, DataFlow::FlowLabel lbl) { exists(lbl) }
+  }
+}

From b47723d6070abab1a8231e0517aba38ffd081c8a Mon Sep 17 00:00:00 2001
From: tiferet <tiferet@github.com>
Date: Mon, 14 Nov 2022 14:57:59 -0800
Subject: [PATCH 0255/1420] Delete `ExtractEndpointData`.

Also remove the associated test files.
---
 .../modelbuilding/DebugResultInclusion.ql     |   4 +-
 .../extraction/ExtractEndpointData.ql         |  11 -
 .../extraction/ExtractEndpointData.qll        | 215 ------------------
 .../ExtractEndpointData.qlref                 |   1 -
 .../ExtractEndpointData.qlref                 |   1 -
 5 files changed, 2 insertions(+), 230 deletions(-)
 delete mode 100644 javascript/ql/experimental/adaptivethreatmodeling/modelbuilding/extraction/ExtractEndpointData.ql
 delete mode 100644 javascript/ql/experimental/adaptivethreatmodeling/modelbuilding/extraction/ExtractEndpointData.qll
 delete mode 100644 javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/ExtractEndpointData.qlref
 delete mode 100644 javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_unit_tests/ExtractEndpointData.qlref

diff --git a/javascript/ql/experimental/adaptivethreatmodeling/modelbuilding/DebugResultInclusion.ql b/javascript/ql/experimental/adaptivethreatmodeling/modelbuilding/DebugResultInclusion.ql
index 28a95268a57..c5654e86a12 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/modelbuilding/DebugResultInclusion.ql
+++ b/javascript/ql/experimental/adaptivethreatmodeling/modelbuilding/DebugResultInclusion.ql
@@ -11,7 +11,7 @@
 
 import javascript
 import experimental.adaptivethreatmodeling.ATMConfig
-import extraction.ExtractEndpointData
+import extraction.ExtractEndpointDataTraining
 
 string getAReasonSinkExcluded(DataFlow::Node sinkCandidate, Query query) {
   query instanceof NosqlInjectionQuery and
@@ -33,7 +33,7 @@ string getDescriptionForAlertCandidate(
 ) {
   result = "excluded[reason=" + getAReasonSinkExcluded(sinkCandidate, query) + "]"
   or
-  getAtmCfg(query).isKnownSink(sinkCandidate) and
+  getDataFlowCfg(query).(AtmConfig).isKnownSink(sinkCandidate) and
   result = "excluded[reason=known-sink]"
   or
   not exists(getAReasonSinkExcluded(sinkCandidate, query)) and
diff --git a/javascript/ql/experimental/adaptivethreatmodeling/modelbuilding/extraction/ExtractEndpointData.ql b/javascript/ql/experimental/adaptivethreatmodeling/modelbuilding/extraction/ExtractEndpointData.ql
deleted file mode 100644
index 73dab4af324..00000000000
--- a/javascript/ql/experimental/adaptivethreatmodeling/modelbuilding/extraction/ExtractEndpointData.ql
+++ /dev/null
@@ -1,11 +0,0 @@
-/*
- * For internal use only.
- *
- * Extracts training and evaluation data we can use to train ML models for ML-powered queries.
- */
-
-import ExtractEndpointData as ExtractEndpointData
-
-query predicate endpoints = ExtractEndpointData::endpoints/5;
-
-query predicate tokenFeatures = ExtractEndpointData::tokenFeatures/3;
diff --git a/javascript/ql/experimental/adaptivethreatmodeling/modelbuilding/extraction/ExtractEndpointData.qll b/javascript/ql/experimental/adaptivethreatmodeling/modelbuilding/extraction/ExtractEndpointData.qll
deleted file mode 100644
index af91933b7a4..00000000000
--- a/javascript/ql/experimental/adaptivethreatmodeling/modelbuilding/extraction/ExtractEndpointData.qll
+++ /dev/null
@@ -1,215 +0,0 @@
-/*
- * For internal use only.
- *
- * Library code for training and evaluation data we can use to train ML models for ML-powered
- * queries.
- */
-
-import javascript
-import Exclusions as Exclusions
-import evaluation.EndToEndEvaluation as EndToEndEvaluation
-import experimental.adaptivethreatmodeling.ATMConfig
-import experimental.adaptivethreatmodeling.CoreKnowledge as CoreKnowledge
-import experimental.adaptivethreatmodeling.EndpointFeatures as EndpointFeatures
-import experimental.adaptivethreatmodeling.EndpointScoring as EndpointScoring
-import experimental.adaptivethreatmodeling.EndpointTypes
-import experimental.adaptivethreatmodeling.FilteringReasons
-import experimental.adaptivethreatmodeling.NosqlInjectionATM as NosqlInjectionAtm
-
-/** DEPRECATED: Alias for NosqlInjectionAtm */
-deprecated module NosqlInjectionATM = NosqlInjectionAtm;
-
-import experimental.adaptivethreatmodeling.SqlInjectionATM as SqlInjectionAtm
-
-/** DEPRECATED: Alias for SqlInjectionAtm */
-deprecated module SqlInjectionATM = SqlInjectionAtm;
-
-import experimental.adaptivethreatmodeling.TaintedPathATM as TaintedPathAtm
-
-/** DEPRECATED: Alias for TaintedPathAtm */
-deprecated module TaintedPathATM = TaintedPathAtm;
-
-import experimental.adaptivethreatmodeling.XssATM as XssAtm
-
-/** DEPRECATED: Alias for XssAtm */
-deprecated module XssATM = XssAtm;
-
-import Labels
-import NoFeaturizationRestrictionsConfig
-import Queries
-
-/** Gets the ATM configuration object for the specified query. */
-AtmConfig getAtmCfg(Query query) {
-  query instanceof NosqlInjectionQuery and
-  result instanceof NosqlInjectionAtm::NosqlInjectionAtmConfig
-  or
-  query instanceof SqlInjectionQuery and result instanceof SqlInjectionAtm::SqlInjectionAtmConfig
-  or
-  query instanceof TaintedPathQuery and result instanceof TaintedPathAtm::TaintedPathAtmConfig
-  or
-  query instanceof XssQuery and result instanceof XssAtm::DomBasedXssAtmConfig
-}
-
-/** DEPRECATED: Alias for getAtmCfg */
-deprecated ATMConfig getATMCfg(Query query) { result = getAtmCfg(query) }
-
-/** Gets the ATM data flow configuration for the specified query. */
-DataFlow::Configuration getDataFlowCfg(Query query) {
-  query instanceof NosqlInjectionQuery and result instanceof NosqlInjectionAtm::Configuration
-  or
-  query instanceof SqlInjectionQuery and result instanceof SqlInjectionAtm::Configuration
-  or
-  query instanceof TaintedPathQuery and result instanceof TaintedPathAtm::Configuration
-  or
-  query instanceof XssQuery and result instanceof XssAtm::Configuration
-}
-
-/** Gets a known sink for the specified query. */
-private DataFlow::Node getASink(Query query) {
-  getAtmCfg(query).isKnownSink(result) and
-  // Only consider the source code for the project being analyzed.
-  exists(result.getFile().getRelativePath())
-}
-
-/** Gets a data flow node that is known not to be a sink for the specified query. */
-private DataFlow::Node getANotASink(NotASinkReason reason) {
-  CoreKnowledge::isOtherModeledArgument(result, reason) and
-  // Some endpoints can be assigned both a `NotASinkReason` and a `LikelyNotASinkReason`. We
-  // consider these endpoints to be `LikelyNotASink`, therefore this line excludes them from the
-  // definition of `NotASink`.
-  not CoreKnowledge::isOtherModeledArgument(result, any(LikelyNotASinkReason t)) and
-  not result = getASink(_) and
-  // Only consider the source code for the project being analyzed.
-  exists(result.getFile().getRelativePath())
-}
-
-/**
- * Gets a data flow node whose label is unknown for the specified query.
- *
- * In other words, this is an endpoint that is not `Sink`, `NotASink`, or `LikelyNotASink` for the
- * specified query.
- */
-private DataFlow::Node getAnUnknown(Query query) {
-  getAtmCfg(query).isEffectiveSink(result) and
-  // Effective sinks should exclude sinks but this is a defensive requirement
-  not result = getASink(query) and
-  // Effective sinks should exclude NotASink but for some queries (e.g. Xss) this is currently not always the case and
-  // so this is a defensive requirement
-  not result = getANotASink(_) and
-  // Only consider the source code for the project being analyzed.
-  exists(result.getFile().getRelativePath())
-}
-
-/** Gets the query-specific sink label for the given endpoint, if such a label exists. */
-private EndpointLabel getSinkLabelForEndpoint(DataFlow::Node endpoint, Query query) {
-  endpoint = getASink(query) and result instanceof SinkLabel
-  or
-  endpoint = getANotASink(_) and result instanceof NotASinkLabel
-  or
-  endpoint = getAnUnknown(query) and result instanceof UnknownLabel
-}
-
-/** Gets an endpoint that should be extracted. */
-DataFlow::Node getAnEndpoint(Query query) { exists(getSinkLabelForEndpoint(result, query)) }
-
-/**
- * Endpoints and associated metadata.
- *
- * Note that we draw a distinction between _features_, that are provided to the model at training
- * and query time, and _metadata_, that is only provided to the model at training time.
- *
- * Internal: See the design document for
- * [extensible extraction queries](https://docs.google.com/document/d/1g3ci2Nf1hGMG6ZUP0Y4PqCy_8elcoC_dhBvgTxdAWpg)
- * for technical information about the design of this predicate.
- */
-predicate endpoints(
-  DataFlow::Node endpoint, string queryName, string key, string value, string valueType
-) {
-  exists(Query query |
-    // Only provide metadata for labelled endpoints, since we do not extract all endpoints.
-    endpoint = getAnEndpoint(query) and
-    queryName = query.getName() and
-    (
-      // Holds if there is a taint flow path from a known source to the endpoint
-      key = "hasFlowFromSource" and
-      (
-        if FlowFromSource::hasFlowFromSource(endpoint, query)
-        then value = "true"
-        else value = "false"
-      ) and
-      valueType = "boolean"
-      or
-      // Constant expressions always evaluate to a constant primitive value. Therefore they can't ever
-      // appear in an alert, making them less interesting training examples.
-      key = "isConstantExpression" and
-      (if endpoint.asExpr() instanceof ConstantExpr then value = "true" else value = "false") and
-      valueType = "boolean"
-      or
-      // Holds if alerts involving the endpoint are excluded from the end-to-end evaluation.
-      key = "isExcludedFromEndToEndEvaluation" and
-      (if Exclusions::isFileExcluded(endpoint.getFile()) then value = "true" else value = "false") and
-      valueType = "boolean"
-      or
-      // The label for this query, considering the endpoint as a sink.
-      key = "sinkLabel" and
-      value = getSinkLabelForEndpoint(endpoint, query).getEncoding() and
-      valueType = "string"
-      or
-      // The reason, or reasons, why the endpoint was labeled NotASink for this query.
-      key = "notASinkReason" and
-      exists(FilteringReason reason |
-        endpoint = getANotASink(reason) and
-        value = reason.getDescription()
-      ) and
-      valueType = "string"
-    )
-  )
-}
-
-/**
- * `EndpointFeatures::tokenFeatures` has no results when `featureName` is absent for the endpoint
- * `endpoint`. To preserve compatibility with the data pipeline, this relation will instead set
- * `featureValue` to the empty string in this case.
- */
-predicate tokenFeatures(DataFlow::Node endpoint, string featureName, string featureValue) {
-  endpoints(endpoint, _, _, _, _) and
-  (
-    EndpointFeatures::tokenFeatures(endpoint, featureName, featureValue)
-    or
-    // Performance note: this creates a Cartesian product between `endpoint` and `featureName`.
-    featureName = EndpointFeatures::getASupportedFeatureName() and
-    not exists(string value | EndpointFeatures::tokenFeatures(endpoint, featureName, value)) and
-    featureValue = ""
-  )
-}
-
-module FlowFromSource {
-  predicate hasFlowFromSource(DataFlow::Node endpoint, Query q) {
-    exists(Configuration cfg | cfg.getQuery() = q | cfg.hasFlow(_, endpoint))
-  }
-
-  /**
-   * A data flow configuration that replicates the data flow configuration for a specific query, but
-   * replaces the set of sinks with the set of endpoints we're extracting.
-   *
-   * We use this to find out when there is flow to a particular endpoint from a known source.
-   *
-   * This configuration behaves in a very similar way to the `ForwardExploringConfiguration` class
-   * from the CodeQL standard libraries for JavaScript.
-   */
-  private class Configuration extends DataFlow::Configuration {
-    Query q;
-
-    Configuration() { this = getDataFlowCfg(q) }
-
-    Query getQuery() { result = q }
-
-    /** Holds if `sink` is an endpoint we're extracting. */
-    override predicate isSink(DataFlow::Node sink) { sink = getAnEndpoint(q) }
-
-    /** Holds if `sink` is an endpoint we're extracting. */
-    override predicate isSink(DataFlow::Node sink, DataFlow::FlowLabel lbl) {
-      sink = getAnEndpoint(q) and exists(lbl)
-    }
-  }
-}
diff --git a/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/ExtractEndpointData.qlref b/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/ExtractEndpointData.qlref
deleted file mode 100644
index b1e84d268d9..00000000000
--- a/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/ExtractEndpointData.qlref
+++ /dev/null
@@ -1 +0,0 @@
-extraction/ExtractEndpointData.ql
diff --git a/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_unit_tests/ExtractEndpointData.qlref b/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_unit_tests/ExtractEndpointData.qlref
deleted file mode 100644
index b1e84d268d9..00000000000
--- a/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_unit_tests/ExtractEndpointData.qlref
+++ /dev/null
@@ -1 +0,0 @@
-extraction/ExtractEndpointData.ql

From 6b7612fed712f2b2f506113382e03af94bfe64f2 Mon Sep 17 00:00:00 2001
From: tiferet <tiferet@github.com>
Date: Mon, 14 Nov 2022 15:33:46 -0800
Subject: [PATCH 0256/1420] Fix import errors in `DebugResultInclusion.ql`

---
 .../extraction/ExtractEndpointDataTraining.qll         | 10 +++++-----
 1 file changed, 5 insertions(+), 5 deletions(-)

diff --git a/javascript/ql/experimental/adaptivethreatmodeling/modelbuilding/extraction/ExtractEndpointDataTraining.qll b/javascript/ql/experimental/adaptivethreatmodeling/modelbuilding/extraction/ExtractEndpointDataTraining.qll
index 00733c8abae..0eff964038d 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/modelbuilding/extraction/ExtractEndpointDataTraining.qll
+++ b/javascript/ql/experimental/adaptivethreatmodeling/modelbuilding/extraction/ExtractEndpointDataTraining.qll
@@ -9,11 +9,11 @@ import experimental.adaptivethreatmodeling.EndpointCharacteristics
 import experimental.adaptivethreatmodeling.EndpointFeatures as EndpointFeatures
 import NoFeaturizationRestrictionsConfig
 private import Exclusions as Exclusions
-private import Queries
-private import experimental.adaptivethreatmodeling.NosqlInjectionATM as NosqlInjectionAtm
-private import experimental.adaptivethreatmodeling.SqlInjectionATM as SqlInjectionAtm
-private import experimental.adaptivethreatmodeling.TaintedPathATM as TaintedPathAtm
-private import experimental.adaptivethreatmodeling.XssATM as XssAtm
+import Queries
+import experimental.adaptivethreatmodeling.NosqlInjectionATM as NosqlInjectionAtm
+import experimental.adaptivethreatmodeling.SqlInjectionATM as SqlInjectionAtm
+import experimental.adaptivethreatmodeling.TaintedPathATM as TaintedPathAtm
+import experimental.adaptivethreatmodeling.XssATM as XssAtm
 
 /**
  * Gets the set of featureName-featureValue pairs for each endpoint in the training set.

From 9ecff0723cbd15b0198345015ef67b17ee091b1b Mon Sep 17 00:00:00 2001
From: tiferet <tiferet@github.com>
Date: Mon, 14 Nov 2022 16:34:24 -0800
Subject: [PATCH 0257/1420] Fix non-ascii character in docs

---
 .../modelbuilding/extraction/ExtractEndpointDataTraining.qll    | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/javascript/ql/experimental/adaptivethreatmodeling/modelbuilding/extraction/ExtractEndpointDataTraining.qll b/javascript/ql/experimental/adaptivethreatmodeling/modelbuilding/extraction/ExtractEndpointDataTraining.qll
index 0eff964038d..533f7bb2d9d 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/modelbuilding/extraction/ExtractEndpointDataTraining.qll
+++ b/javascript/ql/experimental/adaptivethreatmodeling/modelbuilding/extraction/ExtractEndpointDataTraining.qll
@@ -99,7 +99,7 @@ query predicate trainingEndpoints(
     or
     // If the list of characteristics includes negative indicators with high confidence for all classes other than 0,
     // select this as a training sample of class 0 (this means we had query-specific characteristics to decide this
-    // endpoint isn’t a sink for each of our sink types).
+    // endpoint isn't a sink for each of our sink types).
     endpointClass instanceof NegativeType and
     forall(EndpointType otherClass | not otherClass instanceof NegativeType |
       exists(EndpointCharacteristic characteristic2, float confidence |

From eda028721e29eaefe31cd1c16fd678159e280315 Mon Sep 17 00:00:00 2001
From: Tom Hvitved <hvitved@github.com>
Date: Tue, 15 Nov 2022 09:17:29 +0100
Subject: [PATCH 0258/1420] C#: Update all nuget packages

---
 .../Semmle.Autobuild.CSharp.Tests.csproj       | 14 +++++++-------
 .../Semmle.Autobuild.CSharp.csproj             | 12 ++++++------
 .../Semmle.Autobuild.Shared.csproj             |  6 +++---
 .../Semmle.Extraction.CIL.csproj               |  4 ++--
 .../Semmle.Extraction.CSharp.Standalone.csproj | 16 ++++++++--------
 .../Semmle.Extraction.CSharp.csproj            | 12 ++++++------
 .../Semmle.Extraction.Tests.csproj             | 18 +++++++++---------
 .../Semmle.Extraction/Semmle.Extraction.csproj |  4 ++--
 .../Semmle.Util.Tests/Semmle.Util.Tests.csproj |  8 ++++----
 .../posix-only/dotnet_test/dotnet_test.csproj  |  8 ++++----
 10 files changed, 51 insertions(+), 51 deletions(-)

diff --git a/csharp/autobuilder/Semmle.Autobuild.CSharp.Tests/Semmle.Autobuild.CSharp.Tests.csproj b/csharp/autobuilder/Semmle.Autobuild.CSharp.Tests/Semmle.Autobuild.CSharp.Tests.csproj
index a91868fbd80..1d5ac39a96f 100644
--- a/csharp/autobuilder/Semmle.Autobuild.CSharp.Tests/Semmle.Autobuild.CSharp.Tests.csproj
+++ b/csharp/autobuilder/Semmle.Autobuild.CSharp.Tests/Semmle.Autobuild.CSharp.Tests.csproj
@@ -6,17 +6,17 @@
 		<Nullable>enable</Nullable>
 	</PropertyGroup>
 	<ItemGroup>
-		<PackageReference Include="System.IO.FileSystem" Version="4.3.0"/>
-		<PackageReference Include="System.IO.FileSystem.Primitives" Version="4.3.0"/>
-		<PackageReference Include="xunit" Version="2.4.1"/>
-		<PackageReference Include="xunit.runner.visualstudio" Version="2.4.3">
+		<PackageReference Include="System.IO.FileSystem" Version="4.3.0" />
+		<PackageReference Include="System.IO.FileSystem.Primitives" Version="4.3.0" />
+		<PackageReference Include="xunit" Version="2.4.2" />
+		<PackageReference Include="xunit.runner.visualstudio" Version="2.4.5">
 			<PrivateAssets>all</PrivateAssets>
 			<IncludeAssets>runtime; build; native; contentfiles; analyzers</IncludeAssets>
 		</PackageReference>
-		<PackageReference Include="Microsoft.NET.Test.Sdk" Version="17.0.0"/>
+		<PackageReference Include="Microsoft.NET.Test.Sdk" Version="17.4.0" />
 	</ItemGroup>
 	<ItemGroup>
-		<ProjectReference Include="..\Semmle.Autobuild.CSharp\Semmle.Autobuild.CSharp.csproj"/>
-		<ProjectReference Include="..\Semmle.Autobuild.Shared\Semmle.Autobuild.Shared.csproj"/>
+		<ProjectReference Include="..\Semmle.Autobuild.CSharp\Semmle.Autobuild.CSharp.csproj" />
+		<ProjectReference Include="..\Semmle.Autobuild.Shared\Semmle.Autobuild.Shared.csproj" />
 	</ItemGroup>
 </Project>
\ No newline at end of file
diff --git a/csharp/autobuilder/Semmle.Autobuild.CSharp/Semmle.Autobuild.CSharp.csproj b/csharp/autobuilder/Semmle.Autobuild.CSharp/Semmle.Autobuild.CSharp.csproj
index 4f712a651d4..d05daec1de0 100644
--- a/csharp/autobuilder/Semmle.Autobuild.CSharp/Semmle.Autobuild.CSharp.csproj
+++ b/csharp/autobuilder/Semmle.Autobuild.CSharp/Semmle.Autobuild.CSharp.csproj
@@ -11,15 +11,15 @@
 		<Nullable>enable</Nullable>
 	</PropertyGroup>
 	<ItemGroup>
-		<Folder Include="Properties\"/>
+		<Folder Include="Properties\" />
 	</ItemGroup>
 	<ItemGroup>
-		<PackageReference Include="Microsoft.Build" Version="16.11.0"/>
-		<PackageReference Include="Newtonsoft.Json" Version="13.0.1"/>
+		<PackageReference Include="Microsoft.Build" Version="17.4.0" />
+		<PackageReference Include="Newtonsoft.Json" Version="13.0.1" />
 	</ItemGroup>
 	<ItemGroup>
-		<ProjectReference Include="..\..\extractor\Semmle.Util\Semmle.Util.csproj"/>
-		<ProjectReference Include="..\..\extractor\Semmle.Extraction.CSharp\Semmle.Extraction.CSharp.csproj"/>
-		<ProjectReference Include="..\Semmle.Autobuild.Shared\Semmle.Autobuild.Shared.csproj"/>
+		<ProjectReference Include="..\..\extractor\Semmle.Util\Semmle.Util.csproj" />
+		<ProjectReference Include="..\..\extractor\Semmle.Extraction.CSharp\Semmle.Extraction.CSharp.csproj" />
+		<ProjectReference Include="..\Semmle.Autobuild.Shared\Semmle.Autobuild.Shared.csproj" />
 	</ItemGroup>
 </Project>
\ No newline at end of file
diff --git a/csharp/autobuilder/Semmle.Autobuild.Shared/Semmle.Autobuild.Shared.csproj b/csharp/autobuilder/Semmle.Autobuild.Shared/Semmle.Autobuild.Shared.csproj
index d3e24dd6ad5..f76a28f6a0b 100644
--- a/csharp/autobuilder/Semmle.Autobuild.Shared/Semmle.Autobuild.Shared.csproj
+++ b/csharp/autobuilder/Semmle.Autobuild.Shared/Semmle.Autobuild.Shared.csproj
@@ -8,12 +8,12 @@
 		<Nullable>enable</Nullable>
 	</PropertyGroup>
 	<ItemGroup>
-		<Folder Include="Properties\"/>
+		<Folder Include="Properties\" />
 	</ItemGroup>
 	<ItemGroup>
-		<PackageReference Include="Microsoft.Build" Version="16.11.0"/>
+		<PackageReference Include="Microsoft.Build" Version="17.4.0" />
 	</ItemGroup>
 	<ItemGroup>
-		<ProjectReference Include="..\..\extractor\Semmle.Util\Semmle.Util.csproj"/>
+		<ProjectReference Include="..\..\extractor\Semmle.Util\Semmle.Util.csproj" />
 	</ItemGroup>
 </Project>
\ No newline at end of file
diff --git a/csharp/extractor/Semmle.Extraction.CIL/Semmle.Extraction.CIL.csproj b/csharp/extractor/Semmle.Extraction.CIL/Semmle.Extraction.CIL.csproj
index 8dc6d8a9f76..2d9263eb24e 100644
--- a/csharp/extractor/Semmle.Extraction.CIL/Semmle.Extraction.CIL.csproj
+++ b/csharp/extractor/Semmle.Extraction.CIL/Semmle.Extraction.CIL.csproj
@@ -1,4 +1,4 @@
-<Project Sdk="Microsoft.NET.Sdk">
+<Project Sdk="Microsoft.NET.Sdk">
 
   <PropertyGroup>
     <TargetFramework>net6.0</TargetFramework>
@@ -24,7 +24,7 @@
   </ItemGroup>
 
   <ItemGroup>
-    <PackageReference Include="Microsoft.DiaSymReader" Version="1.3.0" />
+    <PackageReference Include="Microsoft.DiaSymReader" Version="1.4.0" />
     <PackageReference Include="Microsoft.DiaSymReader.Native" Version="1.7.0" />
     <PackageReference Include="Microsoft.DiaSymReader.PortablePdb" Version="1.6.0"><IncludeAssets>runtime; build; native; contentfiles; analyzers; buildtransitive</IncludeAssets>
 <PrivateAssets>all</PrivateAssets>
diff --git a/csharp/extractor/Semmle.Extraction.CSharp.Standalone/Semmle.Extraction.CSharp.Standalone.csproj b/csharp/extractor/Semmle.Extraction.CSharp.Standalone/Semmle.Extraction.CSharp.Standalone.csproj
index 5546278e93c..c02999c9acd 100644
--- a/csharp/extractor/Semmle.Extraction.CSharp.Standalone/Semmle.Extraction.CSharp.Standalone.csproj
+++ b/csharp/extractor/Semmle.Extraction.CSharp.Standalone/Semmle.Extraction.CSharp.Standalone.csproj
@@ -12,17 +12,17 @@
 		<Nullable>enable</Nullable>
 	</PropertyGroup>
 	<ItemGroup>
-		<ProjectReference Include="..\Semmle.Extraction.CSharp\Semmle.Extraction.CSharp.csproj"/>
-		<ProjectReference Include="..\Semmle.Util\Semmle.Util.csproj"/>
+		<ProjectReference Include="..\Semmle.Extraction.CSharp\Semmle.Extraction.CSharp.csproj" />
+		<ProjectReference Include="..\Semmle.Util\Semmle.Util.csproj" />
 	</ItemGroup>
 	<ItemGroup>
-		<Folder Include="Properties\"/>
+		<Folder Include="Properties\" />
 	</ItemGroup>
 	<ItemGroup>
-		<PackageReference Include="Microsoft.Build" Version="16.11.0"/>
-		<PackageReference Include="Microsoft.Win32.Primitives" Version="4.3.0"/>
-		<PackageReference Include="System.Net.Primitives" Version="4.3.1"/>
-		<PackageReference Include="System.Security.Principal" Version="4.3.0"/>
-		<PackageReference Include="System.Threading.ThreadPool" Version="4.3.0"/>
+		<PackageReference Include="Microsoft.Build" Version="17.4.0" />
+		<PackageReference Include="Microsoft.Win32.Primitives" Version="4.3.0" />
+		<PackageReference Include="System.Net.Primitives" Version="4.3.1" />
+		<PackageReference Include="System.Security.Principal" Version="4.3.0" />
+		<PackageReference Include="System.Threading.ThreadPool" Version="4.3.0" />
 	</ItemGroup>
 </Project>
\ No newline at end of file
diff --git a/csharp/extractor/Semmle.Extraction.CSharp/Semmle.Extraction.CSharp.csproj b/csharp/extractor/Semmle.Extraction.CSharp/Semmle.Extraction.CSharp.csproj
index 77e204997b3..02d1e96558d 100644
--- a/csharp/extractor/Semmle.Extraction.CSharp/Semmle.Extraction.CSharp.csproj
+++ b/csharp/extractor/Semmle.Extraction.CSharp/Semmle.Extraction.CSharp.csproj
@@ -10,15 +10,15 @@
 		<Nullable>enable</Nullable>
 	</PropertyGroup>
 	<ItemGroup>
-		<ProjectReference Include="..\Semmle.Extraction.CIL\Semmle.Extraction.CIL.csproj"/>
-		<ProjectReference Include="..\Semmle.Extraction\Semmle.Extraction.csproj"/>
-		<ProjectReference Include="..\Semmle.Util\Semmle.Util.csproj"/>
+		<ProjectReference Include="..\Semmle.Extraction.CIL\Semmle.Extraction.CIL.csproj" />
+		<ProjectReference Include="..\Semmle.Extraction\Semmle.Extraction.csproj" />
+		<ProjectReference Include="..\Semmle.Util\Semmle.Util.csproj" />
 	</ItemGroup>
 	<ItemGroup>
-		<Folder Include="Properties\"/>
+		<Folder Include="Properties\" />
 	</ItemGroup>
 	<ItemGroup>
-		<PackageReference Include="Microsoft.CodeAnalysis.CSharp" Version="4.0.1"/>
-		<PackageReference Include="Microsoft.Build" Version="16.11.0"/>
+		<PackageReference Include="Microsoft.CodeAnalysis.CSharp" Version="4.4.0" />
+		<PackageReference Include="Microsoft.Build" Version="17.4.0" />
 	</ItemGroup>
 </Project>
\ No newline at end of file
diff --git a/csharp/extractor/Semmle.Extraction.Tests/Semmle.Extraction.Tests.csproj b/csharp/extractor/Semmle.Extraction.Tests/Semmle.Extraction.Tests.csproj
index c4fa93f9697..e75d4c779ae 100644
--- a/csharp/extractor/Semmle.Extraction.Tests/Semmle.Extraction.Tests.csproj
+++ b/csharp/extractor/Semmle.Extraction.Tests/Semmle.Extraction.Tests.csproj
@@ -6,19 +6,19 @@
 		<Nullable>enable</Nullable>
 	</PropertyGroup>
 	<ItemGroup>
-		<PackageReference Include="System.IO.FileSystem" Version="4.3.0"/>
-		<PackageReference Include="System.IO.FileSystem.Primitives" Version="4.3.0"/>
-		<PackageReference Include="xunit" Version="2.4.1"/>
-		<PackageReference Include="xunit.runner.visualstudio" Version="2.4.3">
+		<PackageReference Include="System.IO.FileSystem" Version="4.3.0" />
+		<PackageReference Include="System.IO.FileSystem.Primitives" Version="4.3.0" />
+		<PackageReference Include="xunit" Version="2.4.2" />
+		<PackageReference Include="xunit.runner.visualstudio" Version="2.4.5">
 			<PrivateAssets>all</PrivateAssets>
 			<IncludeAssets>runtime; build; native; contentfiles; analyzers</IncludeAssets>
 		</PackageReference>
-		<PackageReference Include="Microsoft.NET.Test.Sdk" Version="17.0.0"/>
+		<PackageReference Include="Microsoft.NET.Test.Sdk" Version="17.4.0" />
 	</ItemGroup>
 	<ItemGroup>
-		<ProjectReference Include="..\Semmle.Extraction.CSharp.Standalone\Semmle.Extraction.CSharp.Standalone.csproj"/>
-		<ProjectReference Include="..\Semmle.Extraction.CSharp\Semmle.Extraction.CSharp.csproj"/>
-		<ProjectReference Include="..\Semmle.Extraction\Semmle.Extraction.csproj"/>
-		<ProjectReference Include="..\Semmle.Util\Semmle.Util.csproj"/>
+		<ProjectReference Include="..\Semmle.Extraction.CSharp.Standalone\Semmle.Extraction.CSharp.Standalone.csproj" />
+		<ProjectReference Include="..\Semmle.Extraction.CSharp\Semmle.Extraction.CSharp.csproj" />
+		<ProjectReference Include="..\Semmle.Extraction\Semmle.Extraction.csproj" />
+		<ProjectReference Include="..\Semmle.Util\Semmle.Util.csproj" />
 	</ItemGroup>
 </Project>
\ No newline at end of file
diff --git a/csharp/extractor/Semmle.Extraction/Semmle.Extraction.csproj b/csharp/extractor/Semmle.Extraction/Semmle.Extraction.csproj
index f647003ebf0..b93f3a40043 100644
--- a/csharp/extractor/Semmle.Extraction/Semmle.Extraction.csproj
+++ b/csharp/extractor/Semmle.Extraction/Semmle.Extraction.csproj
@@ -12,13 +12,13 @@
 		<DefineConstants>TRACE;DEBUG;DEBUG_LABELS</DefineConstants>
 	</PropertyGroup>
 	<ItemGroup>
-		<PackageReference Include="Microsoft.CodeAnalysis" Version="4.0.1"/>
+		<PackageReference Include="Microsoft.CodeAnalysis" Version="4.4.0" />
 		<PackageReference Include="GitInfo" Version="2.2.0">
 			<IncludeAssets>runtime; build; native; contentfiles; analyzers; buildtransitive</IncludeAssets>
 			<PrivateAssets>all</PrivateAssets>
 		</PackageReference>
 	</ItemGroup>
 	<ItemGroup>
-		<ProjectReference Include="..\Semmle.Util\Semmle.Util.csproj"/>
+		<ProjectReference Include="..\Semmle.Util\Semmle.Util.csproj" />
 	</ItemGroup>
 </Project>
\ No newline at end of file
diff --git a/csharp/extractor/Semmle.Util.Tests/Semmle.Util.Tests.csproj b/csharp/extractor/Semmle.Util.Tests/Semmle.Util.Tests.csproj
index 7447a7e82c1..9edca915bd0 100644
--- a/csharp/extractor/Semmle.Util.Tests/Semmle.Util.Tests.csproj
+++ b/csharp/extractor/Semmle.Util.Tests/Semmle.Util.Tests.csproj
@@ -6,14 +6,14 @@
 		<Nullable>enable</Nullable>
 	</PropertyGroup>
 	<ItemGroup>
-		<PackageReference Include="xunit" Version="2.4.1"/>
-		<PackageReference Include="xunit.runner.visualstudio" Version="2.4.3">
+		<PackageReference Include="xunit" Version="2.4.2" />
+		<PackageReference Include="xunit.runner.visualstudio" Version="2.4.5">
 			<PrivateAssets>all</PrivateAssets>
 			<IncludeAssets>runtime; build; native; contentfiles; analyzers</IncludeAssets>
 		</PackageReference>
-		<PackageReference Include="Microsoft.NET.Test.Sdk" Version="17.0.0"/>
+		<PackageReference Include="Microsoft.NET.Test.Sdk" Version="17.4.0" />
 	</ItemGroup>
 	<ItemGroup>
-		<ProjectReference Include="..\Semmle.Util\Semmle.Util.csproj"/>
+		<ProjectReference Include="..\Semmle.Util\Semmle.Util.csproj" />
 	</ItemGroup>
 </Project>
\ No newline at end of file
diff --git a/csharp/ql/integration-tests/posix-only/dotnet_test/dotnet_test.csproj b/csharp/ql/integration-tests/posix-only/dotnet_test/dotnet_test.csproj
index 50852359bb8..a2fd6979adf 100644
--- a/csharp/ql/integration-tests/posix-only/dotnet_test/dotnet_test.csproj
+++ b/csharp/ql/integration-tests/posix-only/dotnet_test/dotnet_test.csproj
@@ -8,10 +8,10 @@
   </PropertyGroup>
 
   <ItemGroup>
-    <PackageReference Include="Microsoft.NET.Test.Sdk" Version="16.11.0" />
-    <PackageReference Include="NUnit" Version="3.13.2" />
-    <PackageReference Include="NUnit3TestAdapter" Version="4.0.0" />
-    <PackageReference Include="coverlet.collector" Version="3.1.0" />
+    <PackageReference Include="Microsoft.NET.Test.Sdk" Version="17.4.0" />
+    <PackageReference Include="NUnit" Version="3.13.3" />
+    <PackageReference Include="NUnit3TestAdapter" Version="4.3.0" />
+    <PackageReference Include="coverlet.collector" Version="3.2.0" />
   </ItemGroup>
 
 </Project>

From 279ba60eb1cd9c928a45d204dcf8387223a47779 Mon Sep 17 00:00:00 2001
From: Gustav Munkby <grddev@gmail.com>
Date: Tue, 15 Nov 2022 10:00:53 +0100
Subject: [PATCH 0259/1420] Refactor package path extraction

In preparation for pulling all package information at once.
---
 go/extractor/extractor.go | 34 ++++++++++++++--------------------
 go/extractor/util/util.go | 15 +++++++++++++++
 2 files changed, 29 insertions(+), 20 deletions(-)

diff --git a/go/extractor/extractor.go b/go/extractor/extractor.go
index 1be2bfef224..82ed3be6f69 100644
--- a/go/extractor/extractor.go
+++ b/go/extractor/extractor.go
@@ -103,10 +103,8 @@ func ExtractWithFlags(buildFlags []string, patterns []string) error {
 	extractUniverseScope()
 	log.Println("Done extracting universe scope.")
 
-	// a map of package path to package root directory (currently the module root or the source directory)
-	pkgRoots := make(map[string]string)
-	// a map of package path to source code directory
-	pkgDirs := make(map[string]string)
+	// a map of package path to source directory and module root directory
+	pkgInfos := make(map[string]util.PkgInfo)
 	// root directories of packages that we want to extract
 	wantedRoots := make(map[string]bool)
 
@@ -116,16 +114,8 @@ func ExtractWithFlags(buildFlags []string, patterns []string) error {
 	}, func(pkg *packages.Package) {
 		log.Printf("Processing package %s.", pkg.PkgPath)
 
-		if _, ok := pkgRoots[pkg.PkgPath]; !ok {
-			mdir := util.GetModDir(pkg.PkgPath, modFlags...)
-			pdir := util.GetPkgDir(pkg.PkgPath, modFlags...)
-			// GetModDir returns the empty string if the module directory cannot be determined, e.g. if the package
-			// is not using modules. If this is the case, fall back to the package directory
-			if mdir == "" {
-				mdir = pdir
-			}
-			pkgRoots[pkg.PkgPath] = mdir
-			pkgDirs[pkg.PkgPath] = pdir
+		if _, ok := pkgInfos[pkg.PkgPath]; !ok {
+			pkgInfos[pkg.PkgPath] = util.GetPkgInfo(pkg.PkgPath, modFlags...)
 		}
 
 		log.Printf("Extracting types for package %s.", pkg.PkgPath)
@@ -152,11 +142,14 @@ func ExtractWithFlags(buildFlags []string, patterns []string) error {
 	})
 
 	for _, pkg := range pkgs {
-		if pkgRoots[pkg.PkgPath] == "" {
+		pkgInfo, ok := pkgInfos[pkg.PkgPath]
+		if !ok || pkgInfo.PkgDir == "" {
 			log.Fatalf("Unable to get a source directory for input package %s.", pkg.PkgPath)
 		}
-		wantedRoots[pkgRoots[pkg.PkgPath]] = true
-		wantedRoots[pkgDirs[pkg.PkgPath]] = true
+		wantedRoots[pkgInfo.PkgDir] = true
+		if pkgInfo.ModDir != "" {
+			wantedRoots[pkgInfo.ModDir] = true
+		}
 	}
 
 	log.Println("Done processing dependencies.")
@@ -174,7 +167,8 @@ func ExtractWithFlags(buildFlags []string, patterns []string) error {
 		return true
 	}, func(pkg *packages.Package) {
 		for root, _ := range wantedRoots {
-			relDir, err := filepath.Rel(root, pkgDirs[pkg.PkgPath])
+			pkgInfo := pkgInfos[pkg.PkgPath]
+			relDir, err := filepath.Rel(root, pkgInfo.PkgDir)
 			if err != nil || noExtractRe.MatchString(relDir) {
 				// if the path can't be made relative or matches the noExtract regexp skip it
 				continue
@@ -182,8 +176,8 @@ func ExtractWithFlags(buildFlags []string, patterns []string) error {
 
 			extraction.extractPackage(pkg)
 
-			if pkgRoots[pkg.PkgPath] != "" {
-				modPath := filepath.Join(pkgRoots[pkg.PkgPath], "go.mod")
+			if pkgInfo.ModDir != "" {
+				modPath := filepath.Join(pkgInfo.ModDir, "go.mod")
 				if util.FileExists(modPath) {
 					log.Printf("Extracting %s", modPath)
 					start := time.Now()
diff --git a/go/extractor/util/util.go b/go/extractor/util/util.go
index 5725c03d5b6..31c202678f4 100644
--- a/go/extractor/util/util.go
+++ b/go/extractor/util/util.go
@@ -54,6 +54,21 @@ func runGoListWithEnv(format string, pkgpath string, additionalEnv []string, fla
 	return strings.TrimSpace(string(out)), nil
 }
 
+// PkgInfo holds package directory and module directory (if any) for a package
+type PkgInfo struct {
+	PkgDir string // the directory directly containing source code of this package
+	ModDir string // the module directory containing this package, empty if not a module
+}
+
+// GetPkgInfo fills the package info structure for the specified package path.
+// It passes the `go list` the flags specified by `flags`.
+func GetPkgInfo(pkgpath string, flags ...string) PkgInfo {
+	return PkgInfo{
+		PkgDir: GetModDir(pkgpath, flags...),
+		ModDir: GetPkgDir(pkgpath, flags...),
+	}
+}
+
 // GetModDir gets the absolute directory of the module containing the package with path
 // `pkgpath`. It passes the `go list` the flags specified by `flags`.
 func GetModDir(pkgpath string, flags ...string) string {

From ec3578364ebc92ff01a3b22baa43147b5fb037dd Mon Sep 17 00:00:00 2001
From: Stephan Brandauer <kaeluka@github.com>
Date: Tue, 15 Nov 2022 10:17:38 +0100
Subject: [PATCH 0260/1420] remove superfluous class in EndpointCharacteristics
 hierarchy

---
 .../EndpointCharacteristics.qll                   | 15 +++------------
 1 file changed, 3 insertions(+), 12 deletions(-)

diff --git a/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/EndpointCharacteristics.qll b/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/EndpointCharacteristics.qll
index 33cd559503c..e1539a504ec 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/EndpointCharacteristics.qll
+++ b/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/EndpointCharacteristics.qll
@@ -135,20 +135,11 @@ private class NosqlInjectionSinkCharacteristic extends EndpointCharacteristic {
  * Characteristics that are indicative of not being a sink of any type.
  */
 
-/**
- * A characteristic that is an indicator of not being a sink of any type, because it's an argument that has a manual
- * model.
- */
-abstract private class OtherModeledArgumentCharacteristic extends EndpointCharacteristic {
-  bindingset[this]
-  OtherModeledArgumentCharacteristic() { any() }
-}
-
 /**
  * A characteristic that is an indicator of not being a sink of any type, because it's an argument to a function of a
  * builtin object.
  */
-abstract private class ArgumentToBuiltinFunctionCharacteristic extends OtherModeledArgumentCharacteristic {
+abstract private class ArgumentToBuiltinFunctionCharacteristic extends EndpointCharacteristic {
   bindingset[this]
   ArgumentToBuiltinFunctionCharacteristic() { any() }
 }
@@ -156,7 +147,7 @@ abstract private class ArgumentToBuiltinFunctionCharacteristic extends OtherMode
 /**
  * A high-confidence characteristic that indicates that an endpoint is not a sink of any type.
  */
-abstract private class NotASinkCharacteristic extends OtherModeledArgumentCharacteristic {
+abstract private class NotASinkCharacteristic extends EndpointCharacteristic {
   bindingset[this]
   NotASinkCharacteristic() { any() }
 
@@ -175,7 +166,7 @@ abstract private class NotASinkCharacteristic extends OtherModeledArgumentCharac
  * TODO: This class is currently not private, because the current extraction logic explicitly avoids including these
  * endpoints in the training data. We might want to change this in the future.
  */
-abstract class LikelyNotASinkCharacteristic extends OtherModeledArgumentCharacteristic {
+abstract class LikelyNotASinkCharacteristic extends EndpointCharacteristic {
   bindingset[this]
   LikelyNotASinkCharacteristic() { any() }
 

From a293239bd5324ffd0892b53518e9d82c816fafee Mon Sep 17 00:00:00 2001
From: Gustav Munkby <grddev@gmail.com>
Date: Tue, 15 Nov 2022 10:30:56 +0100
Subject: [PATCH 0261/1420] Accelerating go-extractor by using 'go list -deps'

Resurrect https://github.com/github/codeql-go/pull/554, but behind an environment variable as to avoid the broken builds noted in https://github.com/github/codeql/issues/9304, but still allowing some people to opt in to the much faster approach.
---
 go/extractor/extractor.go | 10 ++++++
 go/extractor/util/util.go | 75 ++++++++++++++++++++++++++++++++++-----
 2 files changed, 77 insertions(+), 8 deletions(-)

diff --git a/go/extractor/extractor.go b/go/extractor/extractor.go
index 82ed3be6f69..4d479f6384b 100644
--- a/go/extractor/extractor.go
+++ b/go/extractor/extractor.go
@@ -108,6 +108,16 @@ func ExtractWithFlags(buildFlags []string, patterns []string) error {
 	// root directories of packages that we want to extract
 	wantedRoots := make(map[string]bool)
 
+	if os.Getenv("CODEQL_EXTRACTOR_GO_FAST_PACKAGE_INFO") != "" {
+		log.Printf("Running go list to resolve package and module directories.")
+		// get all packages information
+		pkgInfos, err = util.GetPkgsInfo(patterns, true, modFlags...)
+		if err != nil {
+			log.Fatalf("Error getting dependency package or module directories: %v.", err)
+		}
+		log.Printf("Done running go list deps: resolved %d packages.", len(pkgInfos))
+	}
+
 	// Do a post-order traversal and extract the package scope of each package
 	packages.Visit(pkgs, func(pkg *packages.Package) bool {
 		return true
diff --git a/go/extractor/util/util.go b/go/extractor/util/util.go
index 31c202678f4..71ca932f366 100644
--- a/go/extractor/util/util.go
+++ b/go/extractor/util/util.go
@@ -1,7 +1,9 @@
 package util
 
 import (
+	"encoding/json"
 	"errors"
+	"io"
 	"log"
 	"os"
 	"os/exec"
@@ -31,13 +33,13 @@ func Getenv(key string, aliases ...string) string {
 
 // runGoList is a helper function for running go list with format `format` and flags `flags` on
 // package `pkgpath`.
-func runGoList(format string, pkgpath string, flags ...string) (string, error) {
-	return runGoListWithEnv(format, pkgpath, nil, flags...)
+func runGoList(format string, patterns []string, flags ...string) (string, error) {
+	return runGoListWithEnv(format, patterns, nil, flags...)
 }
 
-func runGoListWithEnv(format string, pkgpath string, additionalEnv []string, flags ...string) (string, error) {
+func runGoListWithEnv(format string, patterns []string, additionalEnv []string, flags ...string) (string, error) {
 	args := append([]string{"list", "-e", "-f", format}, flags...)
-	args = append(args, pkgpath)
+	args = append(args, patterns...)
 	cmd := exec.Command("go", args...)
 	cmd.Env = append(os.Environ(), additionalEnv...)
 	out, err := cmd.Output()
@@ -60,6 +62,63 @@ type PkgInfo struct {
 	ModDir string // the module directory containing this package, empty if not a module
 }
 
+// GetPkgsInfo gets the absolute module and package root directories for the packages matched by the
+// patterns `patterns`. It passes to `go list` the flags specified by `flags`.  If `includingDeps`
+// is true, all dependencies will also be included.
+func GetPkgsInfo(patterns []string, includingDeps bool, flags ...string) (map[string]PkgInfo, error) {
+	// enable module mode so that we can find a module root if it exists, even if go module support is
+	// disabled by a build
+	if includingDeps {
+		// the flag `-deps` causes all dependencies to be retrieved
+		flags = append(flags, "-deps")
+	}
+
+	// using -json overrides -f format
+	output, err := runGoList("", patterns, append(flags, "-json")...)
+	if err != nil {
+		return nil, err
+	}
+
+	// the output of `go list -json` is a stream of json object
+	type goListPkgInfo struct {
+		ImportPath string
+		Dir        string
+		Module     *struct {
+			Dir string
+		}
+	}
+	pkgInfoMapping := make(map[string]PkgInfo)
+	streamDecoder := json.NewDecoder(strings.NewReader(output))
+	for {
+		var pkgInfo goListPkgInfo
+		decErr := streamDecoder.Decode(&pkgInfo)
+		if decErr == io.EOF {
+			break
+		}
+		if decErr != nil {
+			log.Printf("Error decoding output of go list -json: %s", err.Error())
+			return nil, decErr
+		}
+		pkgAbsDir, err := filepath.Abs(pkgInfo.Dir)
+		if err != nil {
+			log.Printf("Unable to make package dir %s absolute: %s", pkgInfo.Dir, err.Error())
+		}
+		var modAbsDir string
+		if pkgInfo.Module != nil {
+			modAbsDir, err = filepath.Abs(pkgInfo.Module.Dir)
+			if err != nil {
+				log.Printf("Unable to make module dir %s absolute: %s", pkgInfo.Module.Dir, err.Error())
+			}
+		}
+		pkgInfoMapping[pkgInfo.ImportPath] = PkgInfo{
+			PkgDir: pkgAbsDir,
+			ModDir: modAbsDir,
+		}
+	}
+	return pkgInfoMapping, nil
+}
+
+
 // GetPkgInfo fills the package info structure for the specified package path.
 // It passes the `go list` the flags specified by `flags`.
 func GetPkgInfo(pkgpath string, flags ...string) PkgInfo {
@@ -74,13 +133,13 @@ func GetPkgInfo(pkgpath string, flags ...string) PkgInfo {
 func GetModDir(pkgpath string, flags ...string) string {
 	// enable module mode so that we can find a module root if it exists, even if go module support is
 	// disabled by a build
-	mod, err := runGoListWithEnv("{{.Module}}", pkgpath, []string{"GO111MODULE=on"}, flags...)
+	mod, err := runGoListWithEnv("{{.Module}}", []string{pkgpath}, []string{"GO111MODULE=on"}, flags...)
 	if err != nil || mod == "<nil>" {
 		// if the command errors or modules aren't being used, return the empty string
 		return ""
 	}
 
-	modDir, err := runGoListWithEnv("{{.Module.Dir}}", pkgpath, []string{"GO111MODULE=on"}, flags...)
+	modDir, err := runGoListWithEnv("{{.Module.Dir}}", []string{pkgpath}, []string{"GO111MODULE=on"}, flags...)
 	if err != nil {
 		return ""
 	}
@@ -96,7 +155,7 @@ func GetModDir(pkgpath string, flags ...string) string {
 // GetPkgDir gets the absolute directory containing the package with path `pkgpath`. It passes the
 // `go list` command the flags specified by `flags`.
 func GetPkgDir(pkgpath string, flags ...string) string {
-	pkgDir, err := runGoList("{{.Dir}}", pkgpath, flags...)
+	pkgDir, err := runGoList("{{.Dir}}", []string{pkgpath}, flags...)
 	if err != nil {
 		return ""
 	}
@@ -112,7 +171,7 @@ func GetPkgDir(pkgpath string, flags ...string) string {
 // DepErrors checks there are any errors resolving dependencies for `pkgpath`. It passes the `go
 // list` command the flags specified by `flags`.
 func DepErrors(pkgpath string, flags ...string) bool {
-	out, err := runGoList("{{if .DepsErrors}}{{else}}error{{end}}", pkgpath, flags...)
+	out, err := runGoList("{{if .DepsErrors}}{{else}}error{{end}}", []string{pkgpath}, flags...)
 	if err != nil {
 		// if go list failed, assume dependencies are broken
 		return false

From 65c9d8cb78a284fbf6869ccaa764a765bb45a247 Mon Sep 17 00:00:00 2001
From: Gustav Munkby <grddev@gmail.com>
Date: Tue, 15 Nov 2022 10:38:06 +0100
Subject: [PATCH 0262/1420] Run go linux tests with fast package extraction

To ensure this code path is actively tested.
---
 .github/workflows/go-tests.yml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/go-tests.yml b/.github/workflows/go-tests.yml
index 3cc61eafa5c..5ce27627e8a 100644
--- a/.github/workflows/go-tests.yml
+++ b/.github/workflows/go-tests.yml
@@ -51,7 +51,7 @@ jobs:
       - name: Test
         run: |
           cd go
-          make test
+          env CODEQL_EXTRACTOR_GO_FAST_PACKAGE_INFO=1 make test
 
   test-mac:
     name: Test MacOS

From 7ca32ee2b57faec856bc5f9be44fbc1edaa78294 Mon Sep 17 00:00:00 2001
From: Rasmus Wriedt Larsen <rasmuswl@github.com>
Date: Tue, 15 Nov 2022 11:11:36 +0100
Subject: [PATCH 0263/1420] Python: Fieldflow: merge assignment tests

---
 .../experimental/dataflow/fieldflow/test.py   | 72 ++++++++-----------
 1 file changed, 30 insertions(+), 42 deletions(-)

diff --git a/python/ql/test/experimental/dataflow/fieldflow/test.py b/python/ql/test/experimental/dataflow/fieldflow/test.py
index 70db8554241..f5b20daff96 100644
--- a/python/ql/test/experimental/dataflow/fieldflow/test.py
+++ b/python/ql/test/experimental/dataflow/fieldflow/test.py
@@ -39,33 +39,55 @@ class MyObj(object):
         self.foo = foo
 
 def setFoo(obj, x):
-    SINK_F(obj.foo)
     obj.foo = x
 
-@expects(2) # $ unresolved_call=expects(..) unresolved_call=expects(..)(..)
+
+@expects(3) # $ unresolved_call=expects(..) unresolved_call=expects(..)(..)
 def test_indirect_assign():
-    myobj = MyObj("OK")
+    myobj = MyObj(NONSOURCE)
+    SINK_F(myobj.foo)
 
     setFoo(myobj, SOURCE)
     SINK(myobj.foo) # $ flow="SOURCE, l:-1 -> myobj.foo"
 
+    setFoo(myobj, NONSOURCE)
+    SINK_F(myobj.foo) # $ SPURIOUS: flow="SOURCE, l:-4 -> myobj.foo"
 
+
+@expects(3) # $ unresolved_call=expects(..) unresolved_call=expects(..)(..)
 def test_indirect_assign_method():
-    myobj = MyObj("OK")
+    myobj = MyObj(NONSOURCE)
+    SINK_F(myobj.foo)
 
     myobj.setFoo(SOURCE)
     SINK(myobj.foo) # $ flow="SOURCE, l:-1 -> myobj.foo"
 
+    myobj.setFoo(NONSOURCE)
+    SINK_F(myobj.foo) # $ SPURIOUS: flow="SOURCE, l:-4 -> myobj.foo"
 
+
+@expects(3) # $ unresolved_call=expects(..) unresolved_call=expects(..)(..)
+def test_indirect_assign_bound_method():
+    myobj = MyObj(NONSOURCE)
+    SINK_F(myobj.foo)
+
+    sf = myobj.setFoo
+
+    sf(SOURCE)
+    SINK(myobj.foo) # $ MISSING: flow="SOURCE, l:-1 -> myobj.foo"
+
+    sf(NONSOURCE)
+    SINK_F(myobj.foo)
+
+
+@expects(3) # $ unresolved_call=expects(..) unresolved_call=expects(..)(..)
 def test_direct_assign():
     myobj = MyObj(NONSOURCE)
+    SINK_F(myobj.foo)
+
     myobj.foo = SOURCE
     SINK(myobj.foo) # $ flow="SOURCE, l:-1 -> myobj.foo"
 
-
-def test_direct_assign_overwrite():
-    myobj = MyObj(NONSOURCE)
-    myobj.foo = SOURCE
     myobj.foo = NONSOURCE
     SINK_F(myobj.foo)
 
@@ -160,40 +182,6 @@ def test_nested_obj_method():
     a.getObj().foo = x
     SINK(a.obj.foo) # $ flow="SOURCE, l:-3 -> a.obj.foo"
 
-# ------------------------------------------------------------------------------
-# Bound Method calls
-# ------------------------------------------------------------------------------
-
-class Foo:
-    def __init__(self, x):
-        self.x = x
-
-    def update_x(self, x):
-        self.x = x
-
-@expects(7) # $ unresolved_call=expects(..) unresolved_call=expects(..)(..)
-def test_bound_method_call():
-    # direct assignment
-    foo = Foo(None)
-    SINK_F(foo.x)
-    foo.x = SOURCE
-    SINK(foo.x) # $ flow="SOURCE, l:-1 -> foo.x"
-    foo.x = None
-    SINK_F(foo.x)
-
-    # assignment through function
-    foo = Foo(SOURCE)
-    SINK(foo.x) # $ flow="SOURCE, l:-1 -> foo.x"
-    foo.update_x(None)
-    SINK_F(foo.x) # $ flow="SOURCE, l:-3 -> foo.x"
-
-    # assignment through bound-method calls
-    foo = Foo(SOURCE)
-    ux = foo.update_x
-    SINK(foo.x) # $ flow="SOURCE, l:-2 -> foo.x"
-    ux(None)
-    SINK_F(foo.x) # $ SPURIOUS: flow="SOURCE, l:-4 -> foo.x"
-
 
 # ------------------------------------------------------------------------------
 # Crosstalk test -- using different function based on conditional

From 98bf3adc7245d094a9d848276098f6cad6f53241 Mon Sep 17 00:00:00 2001
From: Rasmus Wriedt Larsen <rasmuswl@github.com>
Date: Sun, 13 Nov 2022 20:35:23 +0100
Subject: [PATCH 0264/1420] Python: Add enclosing-callable test

---
 .../EnclosingCallable.expected                | 24 +++++++++++++++++++
 .../enclosing-callable/EnclosingCallable.ql   |  6 +++++
 .../enclosing-callable/class_example.py       |  7 ++++++
 .../dataflow/enclosing-callable/generator.py  |  2 ++
 4 files changed, 39 insertions(+)
 create mode 100644 python/ql/test/experimental/dataflow/enclosing-callable/EnclosingCallable.expected
 create mode 100644 python/ql/test/experimental/dataflow/enclosing-callable/EnclosingCallable.ql
 create mode 100644 python/ql/test/experimental/dataflow/enclosing-callable/class_example.py
 create mode 100644 python/ql/test/experimental/dataflow/enclosing-callable/generator.py

diff --git a/python/ql/test/experimental/dataflow/enclosing-callable/EnclosingCallable.expected b/python/ql/test/experimental/dataflow/enclosing-callable/EnclosingCallable.expected
new file mode 100644
index 00000000000..a1e3de562f5
--- /dev/null
+++ b/python/ql/test/experimental/dataflow/enclosing-callable/EnclosingCallable.expected
@@ -0,0 +1,24 @@
+| file://:0:0:0:0 | Function generator_func | generator.py:1:20:1:21 | ControlFlowNode for xs |
+| file://:0:0:0:0 | Function generator_func | generator.py:2:12:2:26 | ControlFlowNode for .0 |
+| file://:0:0:0:0 | Function generator_func | generator.py:2:12:2:26 | ControlFlowNode for .0 |
+| file://:0:0:0:0 | Function generator_func | generator.py:2:12:2:26 | ControlFlowNode for ListComp |
+| file://:0:0:0:0 | Function generator_func | generator.py:2:13:2:13 | ControlFlowNode for Yield |
+| file://:0:0:0:0 | Function generator_func | generator.py:2:13:2:13 | ControlFlowNode for x |
+| file://:0:0:0:0 | Function generator_func | generator.py:2:19:2:19 | ControlFlowNode for x |
+| file://:0:0:0:0 | Function generator_func | generator.py:2:24:2:25 | ControlFlowNode for xs |
+| file://:0:0:0:0 | Module class_example | class_example.py:1:1:1:3 | ControlFlowNode for wat |
+| file://:0:0:0:0 | Module class_example | class_example.py:1:7:1:7 | ControlFlowNode for IntegerLiteral |
+| file://:0:0:0:0 | Module class_example | class_example.py:3:1:3:10 | ControlFlowNode for ClassExpr |
+| file://:0:0:0:0 | Module class_example | class_example.py:3:7:3:9 | ControlFlowNode for Wat |
+| file://:0:0:0:0 | Module class_example | class_example.py:4:5:4:7 | ControlFlowNode for wat |
+| file://:0:0:0:0 | Module class_example | class_example.py:4:11:4:11 | ControlFlowNode for IntegerLiteral |
+| file://:0:0:0:0 | Module class_example | class_example.py:5:5:5:9 | ControlFlowNode for print |
+| file://:0:0:0:0 | Module class_example | class_example.py:5:5:5:26 | ControlFlowNode for print() |
+| file://:0:0:0:0 | Module class_example | class_example.py:5:11:5:20 | ControlFlowNode for Str |
+| file://:0:0:0:0 | Module class_example | class_example.py:5:23:5:25 | ControlFlowNode for wat |
+| file://:0:0:0:0 | Module class_example | class_example.py:7:1:7:5 | ControlFlowNode for print |
+| file://:0:0:0:0 | Module class_example | class_example.py:7:1:7:23 | ControlFlowNode for print() |
+| file://:0:0:0:0 | Module class_example | class_example.py:7:7:7:17 | ControlFlowNode for Str |
+| file://:0:0:0:0 | Module class_example | class_example.py:7:20:7:22 | ControlFlowNode for wat |
+| file://:0:0:0:0 | Module generator | generator.py:1:1:1:23 | ControlFlowNode for FunctionExpr |
+| file://:0:0:0:0 | Module generator | generator.py:1:5:1:18 | ControlFlowNode for generator_func |
diff --git a/python/ql/test/experimental/dataflow/enclosing-callable/EnclosingCallable.ql b/python/ql/test/experimental/dataflow/enclosing-callable/EnclosingCallable.ql
new file mode 100644
index 00000000000..1fa6a8ffc54
--- /dev/null
+++ b/python/ql/test/experimental/dataflow/enclosing-callable/EnclosingCallable.ql
@@ -0,0 +1,6 @@
+import python
+import semmle.python.dataflow.new.DataFlow
+
+from DataFlow::CfgNode node
+where exists(node.getLocation().getFile().getRelativePath())
+select node.getEnclosingCallable() as enclosingCallable, node
diff --git a/python/ql/test/experimental/dataflow/enclosing-callable/class_example.py b/python/ql/test/experimental/dataflow/enclosing-callable/class_example.py
new file mode 100644
index 00000000000..389b293d2bd
--- /dev/null
+++ b/python/ql/test/experimental/dataflow/enclosing-callable/class_example.py
@@ -0,0 +1,7 @@
+wat = 1
+
+class Wat:
+    wat = 2
+    print("in class", wat) # prints 2
+
+print("in module", wat) # prints 1
diff --git a/python/ql/test/experimental/dataflow/enclosing-callable/generator.py b/python/ql/test/experimental/dataflow/enclosing-callable/generator.py
new file mode 100644
index 00000000000..56b6202abd7
--- /dev/null
+++ b/python/ql/test/experimental/dataflow/enclosing-callable/generator.py
@@ -0,0 +1,2 @@
+def generator_func(xs):
+    return [x for x in xs]

From e886b53a947ddce06437dfa1ac06e3ba1250c2f2 Mon Sep 17 00:00:00 2001
From: Rasmus Wriedt Larsen <rasmuswl@github.com>
Date: Tue, 15 Nov 2022 11:16:10 +0100
Subject: [PATCH 0265/1420] Python: CallGraph tests: remove rest of old
 annotations

---
 .../CallGraph/InlineCallGraphTest.expected             | 10 +++++-----
 .../library-tests/CallGraph/code/class_simple.py       |  8 --------
 2 files changed, 5 insertions(+), 13 deletions(-)

diff --git a/python/ql/test/experimental/library-tests/CallGraph/InlineCallGraphTest.expected b/python/ql/test/experimental/library-tests/CallGraph/InlineCallGraphTest.expected
index 975ac22dd2d..02d08ac4c81 100644
--- a/python/ql/test/experimental/library-tests/CallGraph/InlineCallGraphTest.expected
+++ b/python/ql/test/experimental/library-tests/CallGraph/InlineCallGraphTest.expected
@@ -3,11 +3,11 @@ debug_callableNotUnique
 | code/class_advanced.py:18:5:18:18 | Function arg | Qualified function name 'B.arg' is not unique. Please fix. |
 | code/class_advanced.py:23:5:23:25 | Function arg | Qualified function name 'B.arg' is not unique. Please fix. |
 pointsTo_found_typeTracker_notFound
-| code/class_simple.py:28:1:28:15 | ControlFlowNode for Attribute() | A.some_method |
-| code/class_simple.py:30:1:30:21 | ControlFlowNode for Attribute() | A.some_staticmethod |
-| code/class_simple.py:32:1:32:20 | ControlFlowNode for Attribute() | A.some_classmethod |
-| code/class_simple.py:35:1:35:21 | ControlFlowNode for Attribute() | A.some_staticmethod |
-| code/class_simple.py:37:1:37:20 | ControlFlowNode for Attribute() | A.some_classmethod |
+| code/class_simple.py:24:1:24:15 | ControlFlowNode for Attribute() | A.some_method |
+| code/class_simple.py:25:1:25:21 | ControlFlowNode for Attribute() | A.some_staticmethod |
+| code/class_simple.py:26:1:26:20 | ControlFlowNode for Attribute() | A.some_classmethod |
+| code/class_simple.py:28:1:28:21 | ControlFlowNode for Attribute() | A.some_staticmethod |
+| code/class_simple.py:29:1:29:20 | ControlFlowNode for Attribute() | A.some_classmethod |
 | code/runtime_decision.py:18:1:18:6 | ControlFlowNode for func() | rd_bar |
 | code/runtime_decision.py:18:1:18:6 | ControlFlowNode for func() | rd_foo |
 | code/runtime_decision.py:26:1:26:7 | ControlFlowNode for func2() | rd_bar |
diff --git a/python/ql/test/experimental/library-tests/CallGraph/code/class_simple.py b/python/ql/test/experimental/library-tests/CallGraph/code/class_simple.py
index a679cc5e25c..f201e648e3a 100644
--- a/python/ql/test/experimental/library-tests/CallGraph/code/class_simple.py
+++ b/python/ql/test/experimental/library-tests/CallGraph/code/class_simple.py
@@ -4,17 +4,14 @@ class A(object):
         print('A.__init__', arg)
         self.arg = arg
 
-    # name:A.some_method
     def some_method(self):
         print('A.some_method', self)
 
     @staticmethod
-    # name:A.some_staticmethod
     def some_staticmethod():
         print('A.some_staticmethod')
 
     @classmethod
-    # name:A.some_classmethod
     def some_classmethod(cls):
         print('A.some_classmethod', cls)
 
@@ -24,14 +21,9 @@ class A(object):
 # However, current test setup uses "callable" for naming, and expects things to be Function.
 a = A(42)
 
-# calls:A.some_method
 a.some_method() # $ pt=A.some_method
-# calls:A.some_staticmethod
 a.some_staticmethod() # $ pt=A.some_staticmethod
-# calls:A.some_classmethod
 a.some_classmethod() # $ pt=A.some_classmethod
 
-# calls:A.some_staticmethod
 A.some_staticmethod() # $ pt=A.some_staticmethod
-# calls:A.some_classmethod
 A.some_classmethod() # $ pt=A.some_classmethod

From a7492127075ec86a3ed3a2901eb13e95a9ab24a7 Mon Sep 17 00:00:00 2001
From: Tom Hvitved <hvitved@github.com>
Date: Tue, 15 Nov 2022 11:22:19 +0100
Subject: [PATCH 0266/1420] C#: Handle `op_Checked*` operators in the extractor

---
 .../Semmle.Extraction.CSharp/Entities/UserOperator.cs         | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/csharp/extractor/Semmle.Extraction.CSharp/Entities/UserOperator.cs b/csharp/extractor/Semmle.Extraction.CSharp/Entities/UserOperator.cs
index 11e54ddff35..9f0d3c8f4c5 100644
--- a/csharp/extractor/Semmle.Extraction.CSharp/Entities/UserOperator.cs
+++ b/csharp/extractor/Semmle.Extraction.CSharp/Entities/UserOperator.cs
@@ -2,6 +2,7 @@ using Microsoft.CodeAnalysis;
 using Microsoft.CodeAnalysis.CSharp.Syntax;
 using System.IO;
 using System.Linq;
+using System.Text.RegularExpressions;
 
 namespace Semmle.Extraction.CSharp.Entities
 {
@@ -161,6 +162,9 @@ namespace Semmle.Extraction.CSharp.Entities
                 case "op_False":
                     operatorName = "false";
                     break;
+                case var @checked when Regex.IsMatch(@checked, "^op_Checked.*"):
+                    operatorName = @checked;
+                    break;
                 default:
                     operatorName = methodName;
                     success = false;

From dc2cd994d4f2dfa2ad5bdd54a93cda7f2a6e9b10 Mon Sep 17 00:00:00 2001
From: Tom Hvitved <hvitved@github.com>
Date: Tue, 15 Nov 2022 11:22:48 +0100
Subject: [PATCH 0267/1420] C#: Update expected test output

---
 .../library-tests/csharp9/PrintAst.expected   | 27 +++++++++++--------
 1 file changed, 16 insertions(+), 11 deletions(-)

diff --git a/csharp/ql/test/library-tests/csharp9/PrintAst.expected b/csharp/ql/test/library-tests/csharp9/PrintAst.expected
index 3c708935143..aeaea302fa3 100644
--- a/csharp/ql/test/library-tests/csharp9/PrintAst.expected
+++ b/csharp/ql/test/library-tests/csharp9/PrintAst.expected
@@ -5,7 +5,8 @@ AnonymousObjectCreation.cs:
 #    7|       1: [TypeMention] AnonObj
 #    7|     1: [AssignExpr] ... = ...
 #    7|       0: [FieldAccess] access to field l
-#    7|       1: [ObjectCreation] object creation of type List<AnonObj>
+#    7|       1: [CastExpr] (...) ...
+#    7|         1: [ObjectCreation] object creation of type List<AnonObj>
 #    9|   6: [Property] Prop1
 #    9|     -1: [TypeMention] int
 #    9|     3: [Getter] get_Prop1
@@ -21,13 +22,15 @@ AnonymousObjectCreation.cs:
 #   13|       0: [ExprStmt] ...;
 #   13|         0: [MethodCall] call to method M1
 #   13|           -1: [ThisAccess] this access
-#   13|           0: [ObjectCreation] object creation of type AnonObj
-#   13|             -1: [ObjectInitializer] { ..., ... }
-#   13|               0: [MemberInitializer] ... = ...
-#   13|                 0: [PropertyCall] access to property Prop1
-#   13|                 1: [IntLiteral] 1
+#   13|           0: [CastExpr] (...) ...
+#   13|             1: [ObjectCreation] object creation of type AnonObj
+#   13|               -1: [ObjectInitializer] { ..., ... }
+#   13|                 0: [MemberInitializer] ... = ...
+#   13|                   0: [PropertyCall] access to property Prop1
+#   13|                   1: [IntLiteral] 1
 #   14|       1: [ReturnStmt] return ...;
-#   14|         0: [ObjectCreation] object creation of type AnonObj
+#   14|         0: [CastExpr] (...) ...
+#   14|           1: [ObjectCreation] object creation of type AnonObj
 #   17|   8: [DelegateType] D
 #-----|     2: (Parameters)
 #   17|       0: [Parameter] x
@@ -42,9 +45,10 @@ AnonymousObjectCreation.cs:
 #   21|     -1: [TypeMention] D
 #   21|     4: [BlockStmt] {...}
 #   21|       0: [ReturnStmt] return ...;
-#   21|         0: [ExplicitDelegateCreation] delegate creation of type D
-#   21|           0: [ImplicitDelegateCreation] delegate creation of type D
-#   21|             0: [MethodAccess] access to method M2
+#   21|         0: [CastExpr] (...) ...
+#   21|           1: [ExplicitDelegateCreation] delegate creation of type D
+#   21|             0: [ImplicitDelegateCreation] delegate creation of type D
+#   21|               0: [MethodAccess] access to method M2
 #   23|   11: [Method] MethodAdd
 #   23|     -1: [TypeMention] Void
 #   24|     4: [BlockStmt] {...}
@@ -53,7 +57,8 @@ AnonymousObjectCreation.cs:
 #   25|           -1: [TypeMention] List<int>
 #   25|             1: [TypeMention] int
 #   25|           0: [LocalVariableAccess] access to local variable list
-#   25|           1: [ObjectCreation] object creation of type List<Int32>
+#   25|           1: [CastExpr] (...) ...
+#   25|             1: [ObjectCreation] object creation of type List<Int32>
 BinaryPattern.cs:
 #    3| [Class] BinaryPattern
 #    5|   5: [Property] P1

From 32f60fd11281fcbf943e920e40991aad43447127 Mon Sep 17 00:00:00 2001
From: Tom Hvitved <hvitved@github.com>
Date: Mon, 14 Nov 2022 14:07:02 +0100
Subject: [PATCH 0268/1420] Ruby: Add more local flow tests for use-use flow

---
 .../dataflow/local/DataflowStep.expected      | 109 ++++++++++++++++-
 .../dataflow/local/Nodes.expected             |  60 +++++++++
 .../dataflow/local/TaintStep.expected         | 115 +++++++++++++++++-
 .../dataflow/local/local_dataflow.rb          |  26 ++++
 4 files changed, 308 insertions(+), 2 deletions(-)

diff --git a/ruby/ql/test/library-tests/dataflow/local/DataflowStep.expected b/ruby/ql/test/library-tests/dataflow/local/DataflowStep.expected
index c6023a039d3..db3bc7b7296 100644
--- a/ruby/ql/test/library-tests/dataflow/local/DataflowStep.expected
+++ b/ruby/ql/test/library-tests/dataflow/local/DataflowStep.expected
@@ -1,6 +1,6 @@
 | local_dataflow.rb:1:1:7:3 | self (foo) | local_dataflow.rb:3:8:3:10 | self |
 | local_dataflow.rb:1:1:7:3 | self in foo | local_dataflow.rb:1:1:7:3 | self (foo) |
-| local_dataflow.rb:1:1:124:4 | self (local_dataflow.rb) | local_dataflow.rb:49:1:53:3 | self |
+| local_dataflow.rb:1:1:150:3 | self (local_dataflow.rb) | local_dataflow.rb:49:1:53:3 | self |
 | local_dataflow.rb:1:9:1:9 | a | local_dataflow.rb:1:9:1:9 | a |
 | local_dataflow.rb:1:9:1:9 | a | local_dataflow.rb:2:7:2:7 | a |
 | local_dataflow.rb:2:3:2:7 | ... = ... | local_dataflow.rb:3:13:3:13 | b |
@@ -279,3 +279,110 @@
 | local_dataflow.rb:123:8:123:20 | call to dup | local_dataflow.rb:123:8:123:45 | call to tap |
 | local_dataflow.rb:123:8:123:45 | call to tap | local_dataflow.rb:123:8:123:49 | call to dup |
 | local_dataflow.rb:123:26:123:45 | <captured> self | local_dataflow.rb:123:32:123:43 | self |
+| local_dataflow.rb:126:1:128:3 | self (use) | local_dataflow.rb:127:3:127:8 | self |
+| local_dataflow.rb:126:1:128:3 | self in use | local_dataflow.rb:126:1:128:3 | self (use) |
+| local_dataflow.rb:130:1:150:3 | self (use_use_madness) | local_dataflow.rb:132:6:132:11 | self |
+| local_dataflow.rb:130:1:150:3 | self in use_use_madness | local_dataflow.rb:130:1:150:3 | self (use_use_madness) |
+| local_dataflow.rb:131:3:131:8 | ... = ... | local_dataflow.rb:132:10:132:10 | x |
+| local_dataflow.rb:131:7:131:8 | "" | local_dataflow.rb:131:3:131:8 | ... = ... |
+| local_dataflow.rb:131:7:131:8 | "" | local_dataflow.rb:131:3:131:8 | ... = ... |
+| local_dataflow.rb:132:6:132:11 | [post] self | local_dataflow.rb:133:8:133:13 | self |
+| local_dataflow.rb:132:6:132:11 | self | local_dataflow.rb:133:8:133:13 | self |
+| local_dataflow.rb:132:10:132:10 | x | local_dataflow.rb:133:12:133:12 | x |
+| local_dataflow.rb:132:12:148:10 | then ... | local_dataflow.rb:132:3:149:5 | if ... |
+| local_dataflow.rb:133:8:133:13 | [post] self | local_dataflow.rb:133:18:133:23 | self |
+| local_dataflow.rb:133:8:133:13 | [post] self | local_dataflow.rb:134:7:134:12 | self |
+| local_dataflow.rb:133:8:133:13 | call to use | local_dataflow.rb:133:8:133:23 | [false] ... \|\| ... |
+| local_dataflow.rb:133:8:133:13 | call to use | local_dataflow.rb:133:8:133:23 | [true] ... \|\| ... |
+| local_dataflow.rb:133:8:133:13 | self | local_dataflow.rb:133:18:133:23 | self |
+| local_dataflow.rb:133:8:133:13 | self | local_dataflow.rb:134:7:134:12 | self |
+| local_dataflow.rb:133:12:133:12 | x | local_dataflow.rb:133:22:133:22 | x |
+| local_dataflow.rb:133:12:133:12 | x | local_dataflow.rb:134:11:134:11 | x |
+| local_dataflow.rb:133:18:133:23 | [post] self | local_dataflow.rb:134:7:134:12 | self |
+| local_dataflow.rb:133:18:133:23 | [post] self | local_dataflow.rb:136:7:136:12 | self |
+| local_dataflow.rb:133:18:133:23 | call to use | local_dataflow.rb:133:8:133:23 | [false] ... \|\| ... |
+| local_dataflow.rb:133:18:133:23 | call to use | local_dataflow.rb:133:8:133:23 | [true] ... \|\| ... |
+| local_dataflow.rb:133:18:133:23 | self | local_dataflow.rb:134:7:134:12 | self |
+| local_dataflow.rb:133:18:133:23 | self | local_dataflow.rb:136:7:136:12 | self |
+| local_dataflow.rb:133:22:133:22 | x | local_dataflow.rb:134:11:134:11 | x |
+| local_dataflow.rb:133:22:133:22 | x | local_dataflow.rb:136:11:136:11 | x |
+| local_dataflow.rb:133:24:134:12 | then ... | local_dataflow.rb:133:5:139:7 | if ... |
+| local_dataflow.rb:134:7:134:12 | [post] self | local_dataflow.rb:141:9:141:14 | self |
+| local_dataflow.rb:134:7:134:12 | call to use | local_dataflow.rb:133:24:134:12 | then ... |
+| local_dataflow.rb:134:7:134:12 | self | local_dataflow.rb:141:9:141:14 | self |
+| local_dataflow.rb:134:11:134:11 | x | local_dataflow.rb:141:13:141:13 | x |
+| local_dataflow.rb:135:5:138:9 | else ... | local_dataflow.rb:133:5:139:7 | if ... |
+| local_dataflow.rb:136:7:136:12 | [post] self | local_dataflow.rb:137:10:137:15 | self |
+| local_dataflow.rb:136:7:136:12 | self | local_dataflow.rb:137:10:137:15 | self |
+| local_dataflow.rb:136:11:136:11 | x | local_dataflow.rb:137:14:137:14 | x |
+| local_dataflow.rb:137:7:138:9 | if ... | local_dataflow.rb:135:5:138:9 | else ... |
+| local_dataflow.rb:137:10:137:15 | [post] self | local_dataflow.rb:137:21:137:26 | self |
+| local_dataflow.rb:137:10:137:15 | [post] self | local_dataflow.rb:141:9:141:14 | self |
+| local_dataflow.rb:137:10:137:15 | call to use | local_dataflow.rb:137:10:137:26 | [false] ... && ... |
+| local_dataflow.rb:137:10:137:15 | call to use | local_dataflow.rb:137:10:137:26 | [true] ... && ... |
+| local_dataflow.rb:137:10:137:15 | self | local_dataflow.rb:137:21:137:26 | self |
+| local_dataflow.rb:137:10:137:15 | self | local_dataflow.rb:141:9:141:14 | self |
+| local_dataflow.rb:137:14:137:14 | x | local_dataflow.rb:137:25:137:25 | x |
+| local_dataflow.rb:137:14:137:14 | x | local_dataflow.rb:141:13:141:13 | x |
+| local_dataflow.rb:137:20:137:26 | [false] ! ... | local_dataflow.rb:137:10:137:26 | [false] ... && ... |
+| local_dataflow.rb:137:20:137:26 | [true] ! ... | local_dataflow.rb:137:10:137:26 | [true] ... && ... |
+| local_dataflow.rb:137:21:137:26 | [post] self | local_dataflow.rb:141:9:141:14 | self |
+| local_dataflow.rb:137:21:137:26 | self | local_dataflow.rb:141:9:141:14 | self |
+| local_dataflow.rb:137:25:137:25 | x | local_dataflow.rb:141:13:141:13 | x |
+| local_dataflow.rb:141:8:141:14 | [false] ! ... | local_dataflow.rb:141:8:141:37 | [false] ... \|\| ... |
+| local_dataflow.rb:141:8:141:14 | [false] ! ... | local_dataflow.rb:141:8:141:37 | [true] ... \|\| ... |
+| local_dataflow.rb:141:8:141:14 | [true] ! ... | local_dataflow.rb:141:8:141:37 | [true] ... \|\| ... |
+| local_dataflow.rb:141:9:141:14 | [post] self | local_dataflow.rb:141:20:141:25 | self |
+| local_dataflow.rb:141:9:141:14 | [post] self | local_dataflow.rb:147:5:147:10 | self |
+| local_dataflow.rb:141:9:141:14 | self | local_dataflow.rb:141:20:141:25 | self |
+| local_dataflow.rb:141:9:141:14 | self | local_dataflow.rb:147:5:147:10 | self |
+| local_dataflow.rb:141:13:141:13 | x | local_dataflow.rb:141:24:141:24 | x |
+| local_dataflow.rb:141:13:141:13 | x | local_dataflow.rb:147:9:147:9 | x |
+| local_dataflow.rb:141:19:141:37 | [false] ( ... ) | local_dataflow.rb:141:8:141:37 | [false] ... \|\| ... |
+| local_dataflow.rb:141:19:141:37 | [true] ( ... ) | local_dataflow.rb:141:8:141:37 | [true] ... \|\| ... |
+| local_dataflow.rb:141:20:141:25 | [post] self | local_dataflow.rb:141:31:141:36 | self |
+| local_dataflow.rb:141:20:141:25 | [post] self | local_dataflow.rb:143:11:143:16 | self |
+| local_dataflow.rb:141:20:141:25 | call to use | local_dataflow.rb:141:20:141:36 | [false] ... && ... |
+| local_dataflow.rb:141:20:141:25 | call to use | local_dataflow.rb:141:20:141:36 | [true] ... && ... |
+| local_dataflow.rb:141:20:141:25 | self | local_dataflow.rb:141:31:141:36 | self |
+| local_dataflow.rb:141:20:141:25 | self | local_dataflow.rb:143:11:143:16 | self |
+| local_dataflow.rb:141:20:141:36 | [false] ... && ... | local_dataflow.rb:141:19:141:37 | [false] ( ... ) |
+| local_dataflow.rb:141:20:141:36 | [true] ... && ... | local_dataflow.rb:141:19:141:37 | [true] ( ... ) |
+| local_dataflow.rb:141:24:141:24 | x | local_dataflow.rb:141:35:141:35 | x |
+| local_dataflow.rb:141:24:141:24 | x | local_dataflow.rb:143:15:143:15 | x |
+| local_dataflow.rb:141:30:141:36 | [false] ! ... | local_dataflow.rb:141:20:141:36 | [false] ... && ... |
+| local_dataflow.rb:141:30:141:36 | [true] ! ... | local_dataflow.rb:141:20:141:36 | [true] ... && ... |
+| local_dataflow.rb:141:31:141:36 | [post] self | local_dataflow.rb:143:11:143:16 | self |
+| local_dataflow.rb:141:31:141:36 | [post] self | local_dataflow.rb:147:5:147:10 | self |
+| local_dataflow.rb:141:31:141:36 | self | local_dataflow.rb:143:11:143:16 | self |
+| local_dataflow.rb:141:31:141:36 | self | local_dataflow.rb:147:5:147:10 | self |
+| local_dataflow.rb:141:35:141:35 | x | local_dataflow.rb:143:15:143:15 | x |
+| local_dataflow.rb:141:35:141:35 | x | local_dataflow.rb:147:9:147:9 | x |
+| local_dataflow.rb:141:38:142:9 | then ... | local_dataflow.rb:141:5:145:7 | if ... |
+| local_dataflow.rb:142:7:142:9 | nil | local_dataflow.rb:141:38:142:9 | then ... |
+| local_dataflow.rb:143:5:144:16 | elsif ... | local_dataflow.rb:141:5:145:7 | if ... |
+| local_dataflow.rb:143:11:143:16 | [post] self | local_dataflow.rb:143:21:143:26 | self |
+| local_dataflow.rb:143:11:143:16 | [post] self | local_dataflow.rb:144:11:144:16 | self |
+| local_dataflow.rb:143:11:143:16 | call to use | local_dataflow.rb:143:11:143:26 | [false] ... \|\| ... |
+| local_dataflow.rb:143:11:143:16 | call to use | local_dataflow.rb:143:11:143:26 | [true] ... \|\| ... |
+| local_dataflow.rb:143:11:143:16 | self | local_dataflow.rb:143:21:143:26 | self |
+| local_dataflow.rb:143:11:143:16 | self | local_dataflow.rb:144:11:144:16 | self |
+| local_dataflow.rb:143:15:143:15 | x | local_dataflow.rb:143:25:143:25 | x |
+| local_dataflow.rb:143:15:143:15 | x | local_dataflow.rb:144:15:144:15 | x |
+| local_dataflow.rb:143:21:143:26 | [post] self | local_dataflow.rb:144:11:144:16 | self |
+| local_dataflow.rb:143:21:143:26 | [post] self | local_dataflow.rb:147:5:147:10 | self |
+| local_dataflow.rb:143:21:143:26 | call to use | local_dataflow.rb:143:11:143:26 | [false] ... \|\| ... |
+| local_dataflow.rb:143:21:143:26 | call to use | local_dataflow.rb:143:11:143:26 | [true] ... \|\| ... |
+| local_dataflow.rb:143:21:143:26 | self | local_dataflow.rb:144:11:144:16 | self |
+| local_dataflow.rb:143:21:143:26 | self | local_dataflow.rb:147:5:147:10 | self |
+| local_dataflow.rb:143:25:143:25 | x | local_dataflow.rb:144:15:144:15 | x |
+| local_dataflow.rb:143:25:143:25 | x | local_dataflow.rb:147:9:147:9 | x |
+| local_dataflow.rb:143:27:144:16 | then ... | local_dataflow.rb:143:5:144:16 | elsif ... |
+| local_dataflow.rb:144:11:144:16 | [post] self | local_dataflow.rb:147:5:147:10 | self |
+| local_dataflow.rb:144:11:144:16 | call to use | local_dataflow.rb:143:27:144:16 | then ... |
+| local_dataflow.rb:144:11:144:16 | self | local_dataflow.rb:147:5:147:10 | self |
+| local_dataflow.rb:144:15:144:15 | x | local_dataflow.rb:147:9:147:9 | x |
+| local_dataflow.rb:147:5:147:10 | [post] self | local_dataflow.rb:148:5:148:10 | self |
+| local_dataflow.rb:147:5:147:10 | self | local_dataflow.rb:148:5:148:10 | self |
+| local_dataflow.rb:147:9:147:9 | x | local_dataflow.rb:148:9:148:9 | x |
+| local_dataflow.rb:148:5:148:10 | call to use | local_dataflow.rb:132:12:148:10 | then ... |
diff --git a/ruby/ql/test/library-tests/dataflow/local/Nodes.expected b/ruby/ql/test/library-tests/dataflow/local/Nodes.expected
index 353d1f0d2d6..fcb55f6ada7 100644
--- a/ruby/ql/test/library-tests/dataflow/local/Nodes.expected
+++ b/ruby/ql/test/library-tests/dataflow/local/Nodes.expected
@@ -19,6 +19,8 @@ ret
 | local_dataflow.rb:119:3:119:31 | call to sink |
 | local_dataflow.rb:123:3:123:50 | call to sink |
 | local_dataflow.rb:123:32:123:43 | call to puts |
+| local_dataflow.rb:127:3:127:8 | call to rand |
+| local_dataflow.rb:132:3:149:5 | if ... |
 arg
 | local_dataflow.rb:3:8:3:10 | self | local_dataflow.rb:3:8:3:10 | call to p | self |
 | local_dataflow.rb:3:10:3:10 | a | local_dataflow.rb:3:8:3:10 | call to p | position 0 |
@@ -170,3 +172,61 @@ arg
 | local_dataflow.rb:123:26:123:45 | { ... } | local_dataflow.rb:123:8:123:45 | call to tap | block |
 | local_dataflow.rb:123:32:123:43 | self | local_dataflow.rb:123:32:123:43 | call to puts | self |
 | local_dataflow.rb:123:37:123:43 | "hello" | local_dataflow.rb:123:32:123:43 | call to puts | position 0 |
+| local_dataflow.rb:127:3:127:8 | self | local_dataflow.rb:127:3:127:8 | call to rand | self |
+| local_dataflow.rb:132:6:132:11 | self | local_dataflow.rb:132:6:132:11 | call to use | self |
+| local_dataflow.rb:132:10:132:10 | x | local_dataflow.rb:132:6:132:11 | call to use | position 0 |
+| local_dataflow.rb:133:8:133:13 | call to use | local_dataflow.rb:133:8:133:23 | [false] ... \|\| ... | self |
+| local_dataflow.rb:133:8:133:13 | call to use | local_dataflow.rb:133:8:133:23 | [true] ... \|\| ... | self |
+| local_dataflow.rb:133:8:133:13 | self | local_dataflow.rb:133:8:133:13 | call to use | self |
+| local_dataflow.rb:133:12:133:12 | x | local_dataflow.rb:133:8:133:13 | call to use | position 0 |
+| local_dataflow.rb:133:18:133:23 | call to use | local_dataflow.rb:133:8:133:23 | [false] ... \|\| ... | position 0 |
+| local_dataflow.rb:133:18:133:23 | call to use | local_dataflow.rb:133:8:133:23 | [true] ... \|\| ... | position 0 |
+| local_dataflow.rb:133:18:133:23 | self | local_dataflow.rb:133:18:133:23 | call to use | self |
+| local_dataflow.rb:133:22:133:22 | x | local_dataflow.rb:133:18:133:23 | call to use | position 0 |
+| local_dataflow.rb:134:7:134:12 | self | local_dataflow.rb:134:7:134:12 | call to use | self |
+| local_dataflow.rb:134:11:134:11 | x | local_dataflow.rb:134:7:134:12 | call to use | position 0 |
+| local_dataflow.rb:136:7:136:12 | self | local_dataflow.rb:136:7:136:12 | call to use | self |
+| local_dataflow.rb:136:11:136:11 | x | local_dataflow.rb:136:7:136:12 | call to use | position 0 |
+| local_dataflow.rb:137:10:137:15 | call to use | local_dataflow.rb:137:10:137:26 | [false] ... && ... | self |
+| local_dataflow.rb:137:10:137:15 | call to use | local_dataflow.rb:137:10:137:26 | [true] ... && ... | self |
+| local_dataflow.rb:137:10:137:15 | self | local_dataflow.rb:137:10:137:15 | call to use | self |
+| local_dataflow.rb:137:14:137:14 | x | local_dataflow.rb:137:10:137:15 | call to use | position 0 |
+| local_dataflow.rb:137:20:137:26 | [false] ! ... | local_dataflow.rb:137:10:137:26 | [false] ... && ... | position 0 |
+| local_dataflow.rb:137:20:137:26 | [true] ! ... | local_dataflow.rb:137:10:137:26 | [true] ... && ... | position 0 |
+| local_dataflow.rb:137:21:137:26 | call to use | local_dataflow.rb:137:20:137:26 | [false] ! ... | self |
+| local_dataflow.rb:137:21:137:26 | call to use | local_dataflow.rb:137:20:137:26 | [true] ! ... | self |
+| local_dataflow.rb:137:21:137:26 | self | local_dataflow.rb:137:21:137:26 | call to use | self |
+| local_dataflow.rb:137:25:137:25 | x | local_dataflow.rb:137:21:137:26 | call to use | position 0 |
+| local_dataflow.rb:141:8:141:14 | [false] ! ... | local_dataflow.rb:141:8:141:37 | [false] ... \|\| ... | self |
+| local_dataflow.rb:141:8:141:14 | [false] ! ... | local_dataflow.rb:141:8:141:37 | [true] ... \|\| ... | self |
+| local_dataflow.rb:141:8:141:14 | [true] ! ... | local_dataflow.rb:141:8:141:37 | [true] ... \|\| ... | self |
+| local_dataflow.rb:141:9:141:14 | call to use | local_dataflow.rb:141:8:141:14 | [false] ! ... | self |
+| local_dataflow.rb:141:9:141:14 | call to use | local_dataflow.rb:141:8:141:14 | [true] ! ... | self |
+| local_dataflow.rb:141:9:141:14 | self | local_dataflow.rb:141:9:141:14 | call to use | self |
+| local_dataflow.rb:141:13:141:13 | x | local_dataflow.rb:141:9:141:14 | call to use | position 0 |
+| local_dataflow.rb:141:19:141:37 | [false] ( ... ) | local_dataflow.rb:141:8:141:37 | [false] ... \|\| ... | position 0 |
+| local_dataflow.rb:141:19:141:37 | [true] ( ... ) | local_dataflow.rb:141:8:141:37 | [true] ... \|\| ... | position 0 |
+| local_dataflow.rb:141:20:141:25 | call to use | local_dataflow.rb:141:20:141:36 | [false] ... && ... | self |
+| local_dataflow.rb:141:20:141:25 | call to use | local_dataflow.rb:141:20:141:36 | [true] ... && ... | self |
+| local_dataflow.rb:141:20:141:25 | self | local_dataflow.rb:141:20:141:25 | call to use | self |
+| local_dataflow.rb:141:24:141:24 | x | local_dataflow.rb:141:20:141:25 | call to use | position 0 |
+| local_dataflow.rb:141:30:141:36 | [false] ! ... | local_dataflow.rb:141:20:141:36 | [false] ... && ... | position 0 |
+| local_dataflow.rb:141:30:141:36 | [true] ! ... | local_dataflow.rb:141:20:141:36 | [true] ... && ... | position 0 |
+| local_dataflow.rb:141:31:141:36 | call to use | local_dataflow.rb:141:30:141:36 | [false] ! ... | self |
+| local_dataflow.rb:141:31:141:36 | call to use | local_dataflow.rb:141:30:141:36 | [true] ! ... | self |
+| local_dataflow.rb:141:31:141:36 | self | local_dataflow.rb:141:31:141:36 | call to use | self |
+| local_dataflow.rb:141:35:141:35 | x | local_dataflow.rb:141:31:141:36 | call to use | position 0 |
+| local_dataflow.rb:143:11:143:16 | call to use | local_dataflow.rb:143:11:143:26 | [false] ... \|\| ... | self |
+| local_dataflow.rb:143:11:143:16 | call to use | local_dataflow.rb:143:11:143:26 | [true] ... \|\| ... | self |
+| local_dataflow.rb:143:11:143:16 | self | local_dataflow.rb:143:11:143:16 | call to use | self |
+| local_dataflow.rb:143:15:143:15 | x | local_dataflow.rb:143:11:143:16 | call to use | position 0 |
+| local_dataflow.rb:143:21:143:26 | call to use | local_dataflow.rb:143:11:143:26 | [false] ... \|\| ... | position 0 |
+| local_dataflow.rb:143:21:143:26 | call to use | local_dataflow.rb:143:11:143:26 | [true] ... \|\| ... | position 0 |
+| local_dataflow.rb:143:21:143:26 | self | local_dataflow.rb:143:21:143:26 | call to use | self |
+| local_dataflow.rb:143:25:143:25 | x | local_dataflow.rb:143:21:143:26 | call to use | position 0 |
+| local_dataflow.rb:144:11:144:16 | self | local_dataflow.rb:144:11:144:16 | call to use | self |
+| local_dataflow.rb:144:15:144:15 | x | local_dataflow.rb:144:11:144:16 | call to use | position 0 |
+| local_dataflow.rb:147:5:147:10 | self | local_dataflow.rb:147:5:147:10 | call to use | self |
+| local_dataflow.rb:147:9:147:9 | x | local_dataflow.rb:147:5:147:10 | call to use | position 0 |
+| local_dataflow.rb:148:5:148:10 | self | local_dataflow.rb:148:5:148:10 | call to use | self |
+| local_dataflow.rb:148:9:148:9 | x | local_dataflow.rb:148:5:148:10 | call to use | position 0 |
diff --git a/ruby/ql/test/library-tests/dataflow/local/TaintStep.expected b/ruby/ql/test/library-tests/dataflow/local/TaintStep.expected
index 85473aea3dd..f1b8eb2da26 100644
--- a/ruby/ql/test/library-tests/dataflow/local/TaintStep.expected
+++ b/ruby/ql/test/library-tests/dataflow/local/TaintStep.expected
@@ -50,7 +50,7 @@
 | file://:0:0:0:0 | parameter self of each(0) | file://:0:0:0:0 | [summary] read: argument self.any element in each(0) |
 | local_dataflow.rb:1:1:7:3 | self (foo) | local_dataflow.rb:3:8:3:10 | self |
 | local_dataflow.rb:1:1:7:3 | self in foo | local_dataflow.rb:1:1:7:3 | self (foo) |
-| local_dataflow.rb:1:1:124:4 | self (local_dataflow.rb) | local_dataflow.rb:49:1:53:3 | self |
+| local_dataflow.rb:1:1:150:3 | self (local_dataflow.rb) | local_dataflow.rb:49:1:53:3 | self |
 | local_dataflow.rb:1:9:1:9 | a | local_dataflow.rb:1:9:1:9 | a |
 | local_dataflow.rb:1:9:1:9 | a | local_dataflow.rb:2:7:2:7 | a |
 | local_dataflow.rb:2:3:2:7 | ... = ... | local_dataflow.rb:3:13:3:13 | b |
@@ -354,3 +354,116 @@
 | local_dataflow.rb:123:8:123:20 | call to dup | local_dataflow.rb:123:8:123:45 | call to tap |
 | local_dataflow.rb:123:8:123:45 | call to tap | local_dataflow.rb:123:8:123:49 | call to dup |
 | local_dataflow.rb:123:26:123:45 | <captured> self | local_dataflow.rb:123:32:123:43 | self |
+| local_dataflow.rb:126:1:128:3 | self (use) | local_dataflow.rb:127:3:127:8 | self |
+| local_dataflow.rb:126:1:128:3 | self in use | local_dataflow.rb:126:1:128:3 | self (use) |
+| local_dataflow.rb:130:1:150:3 | self (use_use_madness) | local_dataflow.rb:132:6:132:11 | self |
+| local_dataflow.rb:130:1:150:3 | self in use_use_madness | local_dataflow.rb:130:1:150:3 | self (use_use_madness) |
+| local_dataflow.rb:131:3:131:8 | ... = ... | local_dataflow.rb:132:10:132:10 | x |
+| local_dataflow.rb:131:7:131:8 | "" | local_dataflow.rb:131:3:131:8 | ... = ... |
+| local_dataflow.rb:131:7:131:8 | "" | local_dataflow.rb:131:3:131:8 | ... = ... |
+| local_dataflow.rb:132:6:132:11 | [post] self | local_dataflow.rb:133:8:133:13 | self |
+| local_dataflow.rb:132:6:132:11 | self | local_dataflow.rb:133:8:133:13 | self |
+| local_dataflow.rb:132:10:132:10 | x | local_dataflow.rb:133:12:133:12 | x |
+| local_dataflow.rb:132:12:148:10 | then ... | local_dataflow.rb:132:3:149:5 | if ... |
+| local_dataflow.rb:133:8:133:13 | [post] self | local_dataflow.rb:133:18:133:23 | self |
+| local_dataflow.rb:133:8:133:13 | [post] self | local_dataflow.rb:134:7:134:12 | self |
+| local_dataflow.rb:133:8:133:13 | call to use | local_dataflow.rb:133:8:133:23 | [false] ... \|\| ... |
+| local_dataflow.rb:133:8:133:13 | call to use | local_dataflow.rb:133:8:133:23 | [true] ... \|\| ... |
+| local_dataflow.rb:133:8:133:13 | self | local_dataflow.rb:133:18:133:23 | self |
+| local_dataflow.rb:133:8:133:13 | self | local_dataflow.rb:134:7:134:12 | self |
+| local_dataflow.rb:133:12:133:12 | x | local_dataflow.rb:133:22:133:22 | x |
+| local_dataflow.rb:133:12:133:12 | x | local_dataflow.rb:134:11:134:11 | x |
+| local_dataflow.rb:133:18:133:23 | [post] self | local_dataflow.rb:134:7:134:12 | self |
+| local_dataflow.rb:133:18:133:23 | [post] self | local_dataflow.rb:136:7:136:12 | self |
+| local_dataflow.rb:133:18:133:23 | call to use | local_dataflow.rb:133:8:133:23 | [false] ... \|\| ... |
+| local_dataflow.rb:133:18:133:23 | call to use | local_dataflow.rb:133:8:133:23 | [true] ... \|\| ... |
+| local_dataflow.rb:133:18:133:23 | self | local_dataflow.rb:134:7:134:12 | self |
+| local_dataflow.rb:133:18:133:23 | self | local_dataflow.rb:136:7:136:12 | self |
+| local_dataflow.rb:133:22:133:22 | x | local_dataflow.rb:134:11:134:11 | x |
+| local_dataflow.rb:133:22:133:22 | x | local_dataflow.rb:136:11:136:11 | x |
+| local_dataflow.rb:133:24:134:12 | then ... | local_dataflow.rb:133:5:139:7 | if ... |
+| local_dataflow.rb:134:7:134:12 | [post] self | local_dataflow.rb:141:9:141:14 | self |
+| local_dataflow.rb:134:7:134:12 | call to use | local_dataflow.rb:133:24:134:12 | then ... |
+| local_dataflow.rb:134:7:134:12 | self | local_dataflow.rb:141:9:141:14 | self |
+| local_dataflow.rb:134:11:134:11 | x | local_dataflow.rb:141:13:141:13 | x |
+| local_dataflow.rb:135:5:138:9 | else ... | local_dataflow.rb:133:5:139:7 | if ... |
+| local_dataflow.rb:136:7:136:12 | [post] self | local_dataflow.rb:137:10:137:15 | self |
+| local_dataflow.rb:136:7:136:12 | self | local_dataflow.rb:137:10:137:15 | self |
+| local_dataflow.rb:136:11:136:11 | x | local_dataflow.rb:137:14:137:14 | x |
+| local_dataflow.rb:137:7:138:9 | if ... | local_dataflow.rb:135:5:138:9 | else ... |
+| local_dataflow.rb:137:10:137:15 | [post] self | local_dataflow.rb:137:21:137:26 | self |
+| local_dataflow.rb:137:10:137:15 | [post] self | local_dataflow.rb:141:9:141:14 | self |
+| local_dataflow.rb:137:10:137:15 | call to use | local_dataflow.rb:137:10:137:26 | [false] ... && ... |
+| local_dataflow.rb:137:10:137:15 | call to use | local_dataflow.rb:137:10:137:26 | [true] ... && ... |
+| local_dataflow.rb:137:10:137:15 | self | local_dataflow.rb:137:21:137:26 | self |
+| local_dataflow.rb:137:10:137:15 | self | local_dataflow.rb:141:9:141:14 | self |
+| local_dataflow.rb:137:14:137:14 | x | local_dataflow.rb:137:25:137:25 | x |
+| local_dataflow.rb:137:14:137:14 | x | local_dataflow.rb:141:13:141:13 | x |
+| local_dataflow.rb:137:20:137:26 | [false] ! ... | local_dataflow.rb:137:10:137:26 | [false] ... && ... |
+| local_dataflow.rb:137:20:137:26 | [true] ! ... | local_dataflow.rb:137:10:137:26 | [true] ... && ... |
+| local_dataflow.rb:137:21:137:26 | [post] self | local_dataflow.rb:141:9:141:14 | self |
+| local_dataflow.rb:137:21:137:26 | call to use | local_dataflow.rb:137:20:137:26 | [false] ! ... |
+| local_dataflow.rb:137:21:137:26 | call to use | local_dataflow.rb:137:20:137:26 | [true] ! ... |
+| local_dataflow.rb:137:21:137:26 | self | local_dataflow.rb:141:9:141:14 | self |
+| local_dataflow.rb:137:25:137:25 | x | local_dataflow.rb:141:13:141:13 | x |
+| local_dataflow.rb:141:8:141:14 | [false] ! ... | local_dataflow.rb:141:8:141:37 | [false] ... \|\| ... |
+| local_dataflow.rb:141:8:141:14 | [false] ! ... | local_dataflow.rb:141:8:141:37 | [true] ... \|\| ... |
+| local_dataflow.rb:141:8:141:14 | [true] ! ... | local_dataflow.rb:141:8:141:37 | [true] ... \|\| ... |
+| local_dataflow.rb:141:9:141:14 | [post] self | local_dataflow.rb:141:20:141:25 | self |
+| local_dataflow.rb:141:9:141:14 | [post] self | local_dataflow.rb:147:5:147:10 | self |
+| local_dataflow.rb:141:9:141:14 | call to use | local_dataflow.rb:141:8:141:14 | [false] ! ... |
+| local_dataflow.rb:141:9:141:14 | call to use | local_dataflow.rb:141:8:141:14 | [true] ! ... |
+| local_dataflow.rb:141:9:141:14 | self | local_dataflow.rb:141:20:141:25 | self |
+| local_dataflow.rb:141:9:141:14 | self | local_dataflow.rb:147:5:147:10 | self |
+| local_dataflow.rb:141:13:141:13 | x | local_dataflow.rb:141:24:141:24 | x |
+| local_dataflow.rb:141:13:141:13 | x | local_dataflow.rb:147:9:147:9 | x |
+| local_dataflow.rb:141:19:141:37 | [false] ( ... ) | local_dataflow.rb:141:8:141:37 | [false] ... \|\| ... |
+| local_dataflow.rb:141:19:141:37 | [true] ( ... ) | local_dataflow.rb:141:8:141:37 | [true] ... \|\| ... |
+| local_dataflow.rb:141:20:141:25 | [post] self | local_dataflow.rb:141:31:141:36 | self |
+| local_dataflow.rb:141:20:141:25 | [post] self | local_dataflow.rb:143:11:143:16 | self |
+| local_dataflow.rb:141:20:141:25 | call to use | local_dataflow.rb:141:20:141:36 | [false] ... && ... |
+| local_dataflow.rb:141:20:141:25 | call to use | local_dataflow.rb:141:20:141:36 | [true] ... && ... |
+| local_dataflow.rb:141:20:141:25 | self | local_dataflow.rb:141:31:141:36 | self |
+| local_dataflow.rb:141:20:141:25 | self | local_dataflow.rb:143:11:143:16 | self |
+| local_dataflow.rb:141:20:141:36 | [false] ... && ... | local_dataflow.rb:141:19:141:37 | [false] ( ... ) |
+| local_dataflow.rb:141:20:141:36 | [true] ... && ... | local_dataflow.rb:141:19:141:37 | [true] ( ... ) |
+| local_dataflow.rb:141:24:141:24 | x | local_dataflow.rb:141:35:141:35 | x |
+| local_dataflow.rb:141:24:141:24 | x | local_dataflow.rb:143:15:143:15 | x |
+| local_dataflow.rb:141:30:141:36 | [false] ! ... | local_dataflow.rb:141:20:141:36 | [false] ... && ... |
+| local_dataflow.rb:141:30:141:36 | [true] ! ... | local_dataflow.rb:141:20:141:36 | [true] ... && ... |
+| local_dataflow.rb:141:31:141:36 | [post] self | local_dataflow.rb:143:11:143:16 | self |
+| local_dataflow.rb:141:31:141:36 | [post] self | local_dataflow.rb:147:5:147:10 | self |
+| local_dataflow.rb:141:31:141:36 | call to use | local_dataflow.rb:141:30:141:36 | [false] ! ... |
+| local_dataflow.rb:141:31:141:36 | call to use | local_dataflow.rb:141:30:141:36 | [true] ! ... |
+| local_dataflow.rb:141:31:141:36 | self | local_dataflow.rb:143:11:143:16 | self |
+| local_dataflow.rb:141:31:141:36 | self | local_dataflow.rb:147:5:147:10 | self |
+| local_dataflow.rb:141:35:141:35 | x | local_dataflow.rb:143:15:143:15 | x |
+| local_dataflow.rb:141:35:141:35 | x | local_dataflow.rb:147:9:147:9 | x |
+| local_dataflow.rb:141:38:142:9 | then ... | local_dataflow.rb:141:5:145:7 | if ... |
+| local_dataflow.rb:142:7:142:9 | nil | local_dataflow.rb:141:38:142:9 | then ... |
+| local_dataflow.rb:143:5:144:16 | elsif ... | local_dataflow.rb:141:5:145:7 | if ... |
+| local_dataflow.rb:143:11:143:16 | [post] self | local_dataflow.rb:143:21:143:26 | self |
+| local_dataflow.rb:143:11:143:16 | [post] self | local_dataflow.rb:144:11:144:16 | self |
+| local_dataflow.rb:143:11:143:16 | call to use | local_dataflow.rb:143:11:143:26 | [false] ... \|\| ... |
+| local_dataflow.rb:143:11:143:16 | call to use | local_dataflow.rb:143:11:143:26 | [true] ... \|\| ... |
+| local_dataflow.rb:143:11:143:16 | self | local_dataflow.rb:143:21:143:26 | self |
+| local_dataflow.rb:143:11:143:16 | self | local_dataflow.rb:144:11:144:16 | self |
+| local_dataflow.rb:143:15:143:15 | x | local_dataflow.rb:143:25:143:25 | x |
+| local_dataflow.rb:143:15:143:15 | x | local_dataflow.rb:144:15:144:15 | x |
+| local_dataflow.rb:143:21:143:26 | [post] self | local_dataflow.rb:144:11:144:16 | self |
+| local_dataflow.rb:143:21:143:26 | [post] self | local_dataflow.rb:147:5:147:10 | self |
+| local_dataflow.rb:143:21:143:26 | call to use | local_dataflow.rb:143:11:143:26 | [false] ... \|\| ... |
+| local_dataflow.rb:143:21:143:26 | call to use | local_dataflow.rb:143:11:143:26 | [true] ... \|\| ... |
+| local_dataflow.rb:143:21:143:26 | self | local_dataflow.rb:144:11:144:16 | self |
+| local_dataflow.rb:143:21:143:26 | self | local_dataflow.rb:147:5:147:10 | self |
+| local_dataflow.rb:143:25:143:25 | x | local_dataflow.rb:144:15:144:15 | x |
+| local_dataflow.rb:143:25:143:25 | x | local_dataflow.rb:147:9:147:9 | x |
+| local_dataflow.rb:143:27:144:16 | then ... | local_dataflow.rb:143:5:144:16 | elsif ... |
+| local_dataflow.rb:144:11:144:16 | [post] self | local_dataflow.rb:147:5:147:10 | self |
+| local_dataflow.rb:144:11:144:16 | call to use | local_dataflow.rb:143:27:144:16 | then ... |
+| local_dataflow.rb:144:11:144:16 | self | local_dataflow.rb:147:5:147:10 | self |
+| local_dataflow.rb:144:15:144:15 | x | local_dataflow.rb:147:9:147:9 | x |
+| local_dataflow.rb:147:5:147:10 | [post] self | local_dataflow.rb:148:5:148:10 | self |
+| local_dataflow.rb:147:5:147:10 | self | local_dataflow.rb:148:5:148:10 | self |
+| local_dataflow.rb:147:9:147:9 | x | local_dataflow.rb:148:9:148:9 | x |
+| local_dataflow.rb:148:5:148:10 | call to use | local_dataflow.rb:132:12:148:10 | then ... |
diff --git a/ruby/ql/test/library-tests/dataflow/local/local_dataflow.rb b/ruby/ql/test/library-tests/dataflow/local/local_dataflow.rb
index f3c6a097273..d72ed8ac5d4 100644
--- a/ruby/ql/test/library-tests/dataflow/local/local_dataflow.rb
+++ b/ruby/ql/test/library-tests/dataflow/local/local_dataflow.rb
@@ -122,3 +122,29 @@ end
 def dup_tap
   sink(source(1).dup.tap { |x| puts "hello" }.dup)  # $ hasValueFlow=1
 end
+
+def use x
+  rand()
+end
+
+def use_use_madness
+  x = ""
+  if use(x)
+    if use(x) || use(x)
+      use(x)
+    else
+      use(x)
+      if use(x) && !use(x)
+      end
+    end
+
+    if !use(x) || (use(x) && !use(x))
+      nil
+    elsif use(x) || use(x)
+          use(x)
+    end
+
+    use(x)
+    use(x)
+  end
+end
\ No newline at end of file

From 81a1fa167ab6569bb0956ede441af3e1b31bf63b Mon Sep 17 00:00:00 2001
From: Tom Hvitved <hvitved@github.com>
Date: Thu, 10 Nov 2022 16:40:58 +0100
Subject: [PATCH 0269/1420] SSA: Expose phi-reads

---
 shared/ssa/codeql/ssa/Ssa.qll | 591 +++++++++++++++++++++++++---------
 1 file changed, 431 insertions(+), 160 deletions(-)

diff --git a/shared/ssa/codeql/ssa/Ssa.qll b/shared/ssa/codeql/ssa/Ssa.qll
index 19f31f7c8bb..f7f7683d386 100644
--- a/shared/ssa/codeql/ssa/Ssa.qll
+++ b/shared/ssa/codeql/ssa/Ssa.qll
@@ -264,8 +264,22 @@ module Make<InputSig Input> {
     )
   }
 
+  /**
+   * Holds if `bb` is in the dominance frontier of a block containing a
+   * read of `v`.
+   */
+  pragma[nomagic]
+  private predicate inReadDominanceFrontier(BasicBlock bb, SourceVariable v) {
+    exists(BasicBlock readbb | inDominanceFrontier(readbb, bb) |
+      lastRefIsRead(readbb, v)
+      or
+      exists(TPhiReadNode(v, readbb)) and
+      not ref(readbb, _, v, _)
+    )
+  }
+
   cached
-  newtype TDefinition =
+  private newtype TDefinitionExt =
     TWriteDef(SourceVariable v, BasicBlock bb, int i) {
       variableWrite(bb, i, v, _) and
       liveAfterWrite(bb, i, v)
@@ -273,8 +287,16 @@ module Make<InputSig Input> {
     TPhiNode(SourceVariable v, BasicBlock bb) {
       inDefDominanceFrontier(bb, v) and
       liveAtEntry(bb, v)
+    } or
+    TPhiReadNode(SourceVariable v, BasicBlock bb) {
+      inReadDominanceFrontier(bb, v) and
+      liveAtEntry(bb, v) and
+      // no need to create a phi-read if there is already a normal phi
+      not any(PhiNode def).definesAt(v, bb, _)
     }
 
+  private class TDefinition = TWriteDef or TPhiNode;
+
   private module SsaDefReaches {
     newtype TSsaRefKind =
       SsaActualRead() or
@@ -283,6 +305,10 @@ module Make<InputSig Input> {
 
     class SsaRead = SsaActualRead or SsaPhiRead;
 
+    class SsaDefExt = SsaDef or SsaPhiRead;
+
+    SsaDefExt ssaDefExt() { any() }
+
     /**
      * A classification of SSA variable references into reads and definitions.
      */
@@ -307,98 +333,27 @@ module Make<InputSig Input> {
       }
     }
 
-    /**
-     * Holds if `bb` is in the dominance frontier of a block containing a
-     * read of `v`.
-     */
-    pragma[nomagic]
-    private predicate inReadDominanceFrontier(BasicBlock bb, SourceVariable v) {
-      exists(BasicBlock readbb | inDominanceFrontier(readbb, bb) |
-        lastRefIsRead(readbb, v)
-        or
-        phiRead(readbb, v)
-      )
-    }
-
-    /**
-     * Holds if a phi-read node should be inserted for variable `v` at the beginning
-     * of basic block `bb`.
-     *
-     * Phi-read nodes are like normal phi nodes, but they are inserted based on reads
-     * instead of writes, and only if the dominance-frontier block does not already
-     * contain a reference (read or write) to `v`. Unlike normal phi nodes, this is
-     * an internal implementation detail that is not exposed.
-     *
-     * The motivation for adding phi-reads is to improve performance of the use-use
-     * calculation in cases where there is a large number of reads that can reach the
-     * same join-point, and from there reach a large number of basic blocks. Example:
-     *
-     * ```cs
-     * if (a)
-     *   use(x);
-     * else if (b)
-     *   use(x);
-     * else if (c)
-     *   use(x);
-     * else if (d)
-     *   use(x);
-     * // many more ifs ...
-     *
-     * // phi-read for `x` inserted here
-     *
-     * // program not mentioning `x`, with large basic block graph
-     *
-     * use(x);
-     * ```
-     *
-     * Without phi-reads, the analysis has to replicate reachability for each of
-     * the guarded uses of `x`. However, with phi-reads, the analysis will limit
-     * each conditional use of `x` to reach the basic block containing the phi-read
-     * node for `x`, and only that basic block will have to compute reachability
-     * through the remainder of the large program.
-     *
-     * Like normal reads, each phi-read node `phi-read` can be reached from exactly
-     * one SSA definition (without passing through another definition): Assume, for
-     * the sake of contradiction, that there are two reaching definitions `def1` and
-     * `def2`. Now, if both `def1` and `def2` dominate `phi-read`, then the nearest
-     * dominating definition will prevent the other from reaching `phi-read`. So, at
-     * least one of `def1` and `def2` cannot dominate `phi-read`; assume it is `def1`.
-     * Then `def1` must go through one of its dominance-frontier blocks in order to
-     * reach `phi-read`. However, such a block will always start with a (normal) phi
-     * node, which contradicts reachability.
-     *
-     * Also, like normal reads, the unique SSA definition `def` that reaches `phi-read`,
-     * will dominate `phi-read`. Assuming it doesn't means that the path from `def`
-     * to `phi-read` goes through a dominance-frontier block, and hence a phi node,
-     * which contradicts reachability.
-     */
-    pragma[nomagic]
-    predicate phiRead(BasicBlock bb, SourceVariable v) {
-      inReadDominanceFrontier(bb, v) and
-      liveAtEntry(bb, v) and
-      // only if there are no other references to `v` inside `bb`
-      not ref(bb, _, v, _) and
-      not exists(Definition def | def.definesAt(v, bb, _))
-    }
-
     /**
      * Holds if the `i`th node of basic block `bb` is a reference to `v`,
-     * either a read (when `k` is `SsaRead()`) or an SSA definition (when `k`
-     * is `SsaDef()`).
+     * either a read (when `k` is `SsaActualRead()`), an SSA definition (when `k`
+     * is `SsaDef()`), or a phi-read (when `k` is `SsaPhiRead()`).
      *
-     * Unlike `Liveness::ref`, this includes `phi` nodes.
+     * Unlike `Liveness::ref`, this includes `phi` (read) nodes.
      */
     pragma[nomagic]
     predicate ssaRef(BasicBlock bb, int i, SourceVariable v, SsaRefKind k) {
       variableRead(bb, i, v, _) and
       k = SsaActualRead()
       or
-      phiRead(bb, v) and
-      i = -1 and
-      k = SsaPhiRead()
-      or
-      any(Definition def).definesAt(v, bb, i) and
-      k = SsaDef()
+      any(DefinitionExt def).definesAt(v, bb, i, k)
+    }
+
+    /**
+     * Holds if the `i`th node of basic block `bb` is a reference to `v`, and
+     * this reference is not a phi-read.
+     */
+    predicate ssaRefNonPhiRead(BasicBlock bb, int i, SourceVariable v) {
+      ssaRef(bb, i, v, [SsaActualRead().(TSsaRefKind), SsaDef()])
     }
 
     private newtype OrderedSsaRefIndex =
@@ -445,37 +400,36 @@ module Make<InputSig Input> {
      * Holds if the SSA definition `def` reaches rank index `rnk` in its own
      * basic block `bb`.
      */
-    predicate ssaDefReachesRank(BasicBlock bb, Definition def, int rnk, SourceVariable v) {
+    predicate ssaDefReachesRank(BasicBlock bb, DefinitionExt def, int rnk, SourceVariable v) {
       exists(int i |
-        rnk = ssaRefRank(bb, i, v, SsaDef()) and
-        def.definesAt(v, bb, i)
+        rnk = ssaRefRank(bb, i, v, ssaDefExt()) and
+        def.definesAt(v, bb, i, _)
       )
       or
       ssaDefReachesRank(bb, def, rnk - 1, v) and
-      rnk = ssaRefRank(bb, _, v, any(SsaRead k))
+      rnk = ssaRefRank(bb, _, v, SsaActualRead())
     }
 
     /**
      * Holds if the SSA definition of `v` at `def` reaches index `i` in the same
      * basic block `bb`, without crossing another SSA definition of `v`.
      */
-    predicate ssaDefReachesReadWithinBlock(SourceVariable v, Definition def, BasicBlock bb, int i) {
+    predicate ssaDefReachesReadWithinBlock(SourceVariable v, DefinitionExt def, BasicBlock bb, int i) {
       exists(int rnk |
         ssaDefReachesRank(bb, def, rnk, v) and
-        rnk = ssaRefRank(bb, i, v, any(SsaRead k))
+        rnk = ssaRefRank(bb, i, v, SsaActualRead())
       )
     }
 
     /**
      * Same as `ssaRefRank()`, but restricted to a particular SSA definition `def`.
      */
-    int ssaDefRank(Definition def, SourceVariable v, BasicBlock bb, int i, SsaRefKind k) {
-      v = def.getSourceVariable() and
+    int ssaDefRank(DefinitionExt def, SourceVariable v, BasicBlock bb, int i, SsaRefKind k) {
       result = ssaRefRank(bb, i, v, k) and
       (
-        ssaDefReachesRead(_, def, bb, i)
+        ssaDefReachesReadExt(v, def, bb, i)
         or
-        def.definesAt(_, bb, i)
+        def.definesAt(v, bb, i, k)
       )
     }
 
@@ -484,18 +438,38 @@ module Make<InputSig Input> {
      * last reference to `v` inside `bb`.
      */
     pragma[noinline]
-    predicate lastSsaRef(Definition def, SourceVariable v, BasicBlock bb, int i) {
+    predicate lastSsaRefExt(DefinitionExt def, SourceVariable v, BasicBlock bb, int i) {
       ssaDefRank(def, v, bb, i, _) = maxSsaRefRank(bb, v)
     }
 
-    predicate defOccursInBlock(Definition def, BasicBlock bb, SourceVariable v, SsaRefKind k) {
+    /** Gets a phi-read node into which `inp` is an input, if any. */
+    pragma[nomagic]
+    private DefinitionExt getAPhiReadOutput(DefinitionExt inp) {
+      phiHasInputFromBlockExt(result.(PhiReadNode), inp, _)
+    }
+
+    pragma[nomagic]
+    DefinitionExt getAnUltimateOutput(Definition def) { result = getAPhiReadOutput*(def) }
+
+    /**
+     * Same as `lastSsaRefExt`, but ignores phi-reads.
+     */
+    pragma[noinline]
+    predicate lastSsaRef(Definition def, SourceVariable v, BasicBlock bb, int i) {
+      lastSsaRefExt(getAnUltimateOutput(def), v, bb, i) and
+      ssaRefNonPhiRead(bb, i, v)
+    }
+
+    predicate defOccursInBlock(DefinitionExt def, BasicBlock bb, SourceVariable v, SsaRefKind k) {
       exists(ssaDefRank(def, v, bb, _, k))
     }
 
     pragma[noinline]
-    private predicate ssaDefReachesThroughBlock(Definition def, BasicBlock bb) {
-      ssaDefReachesEndOfBlock(bb, def, _) and
-      not defOccursInBlock(_, bb, def.getSourceVariable(), _)
+    private predicate ssaDefReachesThroughBlock(DefinitionExt def, BasicBlock bb) {
+      exists(SourceVariable v |
+        ssaDefReachesEndOfBlockExt(bb, def, v) and
+        not defOccursInBlock(_, bb, v, _)
+      )
     }
 
     /**
@@ -503,85 +477,114 @@ module Make<InputSig Input> {
      * `bb2` is a transitive successor of `bb1`, `def` is live at the end of _some_
      * predecessor of `bb2`, and the underlying variable for `def` is neither read
      * nor written in any block on the path between `bb1` and `bb2`.
-     *
-     * Phi reads are considered as normal reads for this predicate.
      */
     pragma[nomagic]
-    private predicate varBlockReachesInclPhiRead(Definition def, BasicBlock bb1, BasicBlock bb2) {
-      defOccursInBlock(def, bb1, _, _) and
+    predicate varBlockReachesExt(DefinitionExt def, SourceVariable v, BasicBlock bb1, BasicBlock bb2) {
+      defOccursInBlock(def, bb1, v, _) and
       bb2 = getABasicBlockSuccessor(bb1)
       or
       exists(BasicBlock mid |
-        varBlockReachesInclPhiRead(def, bb1, mid) and
+        varBlockReachesExt(def, v, bb1, mid) and
         ssaDefReachesThroughBlock(def, mid) and
         bb2 = getABasicBlockSuccessor(mid)
       )
     }
 
     pragma[nomagic]
-    private predicate phiReadStep(Definition def, SourceVariable v, BasicBlock bb1, BasicBlock bb2) {
-      varBlockReachesInclPhiRead(def, bb1, bb2) and
-      defOccursInBlock(def, bb2, v, SsaPhiRead())
+    private predicate phiReadStep(DefinitionExt def, PhiReadNode phi, BasicBlock bb1, BasicBlock bb2) {
+      exists(SourceVariable v |
+        varBlockReachesExt(pragma[only_bind_into](def), v, bb1, pragma[only_bind_into](bb2)) and
+        phi.definesAt(v, bb2, _, _) and
+        not ref(bb2, _, v, _)
+      )
     }
 
     pragma[nomagic]
-    private predicate varBlockReachesExclPhiRead(Definition def, BasicBlock bb1, BasicBlock bb2) {
-      varBlockReachesInclPhiRead(pragma[only_bind_into](def), bb1, pragma[only_bind_into](bb2)) and
-      ssaRef(bb2, _, def.getSourceVariable(), [SsaActualRead().(TSsaRefKind), SsaDef()])
+    private predicate varBlockReachesExclPhiRead(
+      DefinitionExt def, SourceVariable v, BasicBlock bb1, BasicBlock bb2
+    ) {
+      varBlockReachesExt(def, v, bb1, bb2) and
+      ssaRefNonPhiRead(bb2, _, v)
       or
-      exists(BasicBlock mid |
-        varBlockReachesExclPhiRead(def, mid, bb2) and
-        phiReadStep(def, _, bb1, mid)
+      exists(PhiReadNode phi, BasicBlock mid |
+        varBlockReachesExclPhiRead(phi, v, mid, bb2) and
+        phiReadStep(def, phi, bb1, mid)
       )
     }
 
     /**
-     * Holds if `def` is accessed in basic block `bb1` (either a read or a write),
-     * the underlying variable `v` of `def` is accessed in basic block `bb2`
-     * (either a read or a write), `bb2` is a transitive successor of `bb1`, and
-     * `v` is neither read nor written in any block on the path between `bb1`
-     * and `bb2`.
+     * Same as `varBlockReachesExt`, but ignores phi-reads, and furthermore
+     * `bb2` is restricted to blocks in which the underlying variable `v` of
+     * `def` is referenced (either a read or a write).
      */
     pragma[nomagic]
-    predicate varBlockReaches(Definition def, BasicBlock bb1, BasicBlock bb2) {
-      varBlockReachesExclPhiRead(def, bb1, bb2) and
-      not defOccursInBlock(def, bb1, _, SsaPhiRead())
+    predicate varBlockReachesRef(Definition def, SourceVariable v, BasicBlock bb1, BasicBlock bb2) {
+      varBlockReachesExclPhiRead(getAnUltimateOutput(def), v, bb1, bb2) and
+      ssaRefNonPhiRead(bb1, _, v)
+    }
+
+    pragma[nomagic]
+    predicate defAdjacentReadExt(DefinitionExt def, BasicBlock bb1, BasicBlock bb2, int i2) {
+      exists(SourceVariable v |
+        varBlockReachesExt(def, v, bb1, bb2) and
+        ssaRefRank(bb2, i2, v, SsaActualRead()) = 1
+      )
     }
 
     pragma[nomagic]
     predicate defAdjacentRead(Definition def, BasicBlock bb1, BasicBlock bb2, int i2) {
-      varBlockReaches(def, bb1, bb2) and
-      ssaRefRank(bb2, i2, def.getSourceVariable(), SsaActualRead()) = 1
+      exists(SourceVariable v | varBlockReachesRef(def, v, bb1, bb2) |
+        ssaRefRank(bb2, i2, v, SsaActualRead()) = 1
+        or
+        ssaRefRank(bb2, _, v, SsaPhiRead()) = 1 and
+        ssaRefRank(bb2, i2, v, SsaActualRead()) = 2
+      )
     }
 
     /**
      * Holds if `def` is accessed in basic block `bb` (either a read or a write),
-     * `bb1` can reach a transitive successor `bb2` where `def` is no longer live,
+     * `bb` can reach a transitive successor `bb2` where `def` is no longer live,
      * and `v` is neither read nor written in any block on the path between `bb`
      * and `bb2`.
      */
     pragma[nomagic]
-    predicate varBlockReachesExit(Definition def, BasicBlock bb) {
-      exists(BasicBlock bb2 | varBlockReachesInclPhiRead(def, bb, bb2) |
+    predicate varBlockReachesExitExt(DefinitionExt def, BasicBlock bb) {
+      exists(BasicBlock bb2 | varBlockReachesExt(def, _, bb, bb2) |
         not defOccursInBlock(def, bb2, _, _) and
-        not ssaDefReachesEndOfBlock(bb2, def, _)
-      )
-      or
-      exists(BasicBlock mid |
-        varBlockReachesExit(def, mid) and
-        phiReadStep(def, _, bb, mid)
+        not ssaDefReachesEndOfBlockExt(bb2, def, _)
       )
     }
-  }
 
-  predicate phiReadExposedForTesting = phiRead/2;
+    pragma[nomagic]
+    private predicate varBlockReachesExitExclPhiRead(DefinitionExt def, BasicBlock bb) {
+      exists(BasicBlock bb2, SourceVariable v |
+        varBlockReachesExt(def, v, bb, bb2) and
+        not defOccursInBlock(def, bb2, _, _) and
+        not ssaDefReachesEndOfBlockExt(bb2, def, _) and
+        not any(PhiReadNode phi).definesAt(v, bb2, _, _)
+      )
+      or
+      exists(PhiReadNode phi, BasicBlock bb2 |
+        varBlockReachesExitExclPhiRead(phi, bb2) and
+        phiReadStep(def, phi, bb, bb2)
+      )
+    }
+
+    /**
+     * Same as `varBlockReachesExitExt`, but ignores phi-reads.
+     */
+    pragma[nomagic]
+    predicate varBlockReachesExit(Definition def, BasicBlock bb) {
+      varBlockReachesExitExclPhiRead(getAnUltimateOutput(def), bb)
+    }
+  }
 
   private import SsaDefReaches
 
   pragma[nomagic]
-  private predicate liveThrough(BasicBlock bb, SourceVariable v) {
+  private predicate liveThroughExt(BasicBlock bb, SourceVariable v) {
     liveAtExit(bb, v) and
-    not ssaRef(bb, _, v, SsaDef())
+    not ssaRef(bb, _, v, ssaDefExt())
   }
 
   /**
@@ -592,7 +595,7 @@ module Make<InputSig Input> {
    * SSA definition of `v`.
    */
   pragma[nomagic]
-  predicate ssaDefReachesEndOfBlock(BasicBlock bb, Definition def, SourceVariable v) {
+  predicate ssaDefReachesEndOfBlockExt(BasicBlock bb, DefinitionExt def, SourceVariable v) {
     exists(int last |
       last = maxSsaRefRank(pragma[only_bind_into](bb), pragma[only_bind_into](v)) and
       ssaDefReachesRank(bb, def, last, v) and
@@ -605,8 +608,31 @@ module Make<InputSig Input> {
     // the node. If two definitions dominate a node then one must dominate the
     // other, so therefore the definition of _closest_ is given by the dominator
     // tree. Thus, reaching definitions can be calculated in terms of dominance.
-    ssaDefReachesEndOfBlock(getImmediateBasicBlockDominator(bb), def, pragma[only_bind_into](v)) and
-    liveThrough(bb, pragma[only_bind_into](v))
+    ssaDefReachesEndOfBlockExt(getImmediateBasicBlockDominator(bb), def, pragma[only_bind_into](v)) and
+    liveThroughExt(bb, pragma[only_bind_into](v))
+  }
+
+  pragma[nomagic]
+  private predicate phiReadReachesEndOfBlock(BasicBlock pred, BasicBlock bb, SourceVariable v) {
+    exists(PhiReadNode phi |
+      ssaDefReachesEndOfBlockExt(bb, phi, v) and
+      pred = getImmediateBasicBlockDominator(phi.getBasicBlock())
+    )
+  }
+
+  /**
+   * NB: If this predicate is exposed, it should be cached.
+   *
+   * Same as `ssaDefReachesEndOfBlockExt`, but ignores phi-reads.
+   */
+  pragma[nomagic]
+  predicate ssaDefReachesEndOfBlock(BasicBlock bb, Definition def, SourceVariable v) {
+    ssaDefReachesEndOfBlockExt(bb, def, v)
+    or
+    exists(BasicBlock mid |
+      ssaDefReachesEndOfBlock(mid, def, v) and
+      phiReadReachesEndOfBlock(mid, bb, v)
+    )
   }
 
   /**
@@ -623,20 +649,50 @@ module Make<InputSig Input> {
     )
   }
 
+  /**
+   * NB: If this predicate is exposed, it should be cached.
+   *
+   * Holds if `inp` is an input to the phi (read) node `phi` along the edge originating in `bb`.
+   */
+  pragma[nomagic]
+  predicate phiHasInputFromBlockExt(DefinitionExt phi, DefinitionExt inp, BasicBlock bb) {
+    exists(SourceVariable v, BasicBlock bbDef |
+      phi.definesAt(v, bbDef, _, _) and
+      getABasicBlockPredecessor(bbDef) = bb and
+      ssaDefReachesEndOfBlockExt(bb, inp, v)
+    |
+      phi instanceof PhiNode or
+      phi instanceof PhiReadNode
+    )
+  }
+
   /**
    * NB: If this predicate is exposed, it should be cached.
    *
    * Holds if the SSA definition of `v` at `def` reaches a read at index `i` in
-   * basic block `bb`, without crossing another SSA definition of `v`. The read
-   * is of kind `rk`.
+   * basic block `bb`, without crossing another SSA definition of `v`.
+   */
+  pragma[nomagic]
+  predicate ssaDefReachesReadExt(SourceVariable v, DefinitionExt def, BasicBlock bb, int i) {
+    ssaDefReachesReadWithinBlock(v, def, bb, i)
+    or
+    ssaRef(bb, i, v, SsaActualRead()) and
+    ssaDefReachesEndOfBlockExt(getABasicBlockPredecessor(bb), def, v) and
+    not ssaDefReachesReadWithinBlock(v, _, bb, i)
+  }
+
+  /**
+   * NB: If this predicate is exposed, it should be cached.
+   *
+   * Same as `ssaDefReachesReadExt`, but ignores phi-reads.
    */
   pragma[nomagic]
   predicate ssaDefReachesRead(SourceVariable v, Definition def, BasicBlock bb, int i) {
     ssaDefReachesReadWithinBlock(v, def, bb, i)
     or
-    ssaRef(bb, i, v, any(SsaRead k)) and
+    ssaRef(bb, i, v, SsaActualRead()) and
     ssaDefReachesEndOfBlock(getABasicBlockPredecessor(bb), def, v) and
-    not ssaDefReachesReadWithinBlock(v, _, bb, i)
+    not exists(Definition other | ssaDefReachesReadWithinBlock(v, other, bb, i))
   }
 
   /**
@@ -647,14 +703,32 @@ module Make<InputSig Input> {
    * path between them without any read of `def`.
    */
   pragma[nomagic]
-  predicate adjacentDefRead(Definition def, BasicBlock bb1, int i1, BasicBlock bb2, int i2) {
+  predicate adjacentDefReadExt(
+    DefinitionExt def, SourceVariable v, BasicBlock bb1, int i1, BasicBlock bb2, int i2
+  ) {
     exists(int rnk |
-      rnk = ssaDefRank(def, _, bb1, i1, _) and
-      rnk + 1 = ssaDefRank(def, _, bb1, i2, SsaActualRead()) and
-      variableRead(bb1, i2, _, _) and
+      rnk = ssaDefRank(def, v, bb1, i1, _) and
+      rnk + 1 = ssaDefRank(def, v, bb1, i2, SsaActualRead()) and
+      variableRead(bb1, i2, v, _) and
       bb2 = bb1
     )
     or
+    lastSsaRefExt(def, v, bb1, i1) and
+    defAdjacentReadExt(def, bb1, bb2, i2)
+  }
+
+  /**
+   * NB: If this predicate is exposed, it should be cached.
+   *
+   * Same as `adjacentDefReadExt`, but ignores phi-reads.
+   */
+  pragma[nomagic]
+  predicate adjacentDefRead(Definition def, BasicBlock bb1, int i1, BasicBlock bb2, int i2) {
+    exists(SourceVariable v |
+      adjacentDefReadExt(getAnUltimateOutput(def), v, bb1, i1, bb2, i2) and
+      ssaRefNonPhiRead(bb1, i1, v)
+    )
+    or
     lastSsaRef(def, _, bb1, i1) and
     defAdjacentRead(def, bb1, bb2, i2)
   }
@@ -704,19 +778,41 @@ module Make<InputSig Input> {
    * without passing through another read or write.
    */
   pragma[nomagic]
+  predicate lastRefRedefExt(
+    DefinitionExt def, SourceVariable v, BasicBlock bb, int i, DefinitionExt next
+  ) {
+    // Next reference to `v` inside `bb` is a write
+    exists(int rnk, int j |
+      rnk = ssaDefRank(def, v, bb, i, _) and
+      next.definesAt(v, bb, j, _) and
+      rnk + 1 = ssaRefRank(bb, j, v, ssaDefExt())
+    )
+    or
+    // Can reach a write using one or more steps
+    lastSsaRefExt(def, v, bb, i) and
+    exists(BasicBlock bb2 |
+      varBlockReachesExt(def, v, bb, bb2) and
+      1 = ssaDefRank(next, v, bb2, _, ssaDefExt())
+    )
+  }
+
+  /**
+   * NB: If this predicate is exposed, it should be cached.
+   *
+   * Same as `lastRefRedefExt`, but ignores phi-reads.
+   */
+  pragma[nomagic]
   predicate lastRefRedef(Definition def, BasicBlock bb, int i, Definition next) {
     exists(SourceVariable v |
-      // Next reference to `v` inside `bb` is a write
-      exists(int rnk, int j |
-        rnk = ssaDefRank(def, v, bb, i, _) and
-        next.definesAt(v, bb, j) and
-        rnk + 1 = ssaRefRank(bb, j, v, SsaDef())
-      )
-      or
-      // Can reach a write using one or more steps
+      lastRefRedefExt(getAnUltimateOutput(def), v, bb, i, next) and
+      ssaRefNonPhiRead(bb, i, v)
+    )
+    or
+    // Can reach a write using one or more steps
+    exists(SourceVariable v |
       lastSsaRef(def, v, bb, i) and
       exists(BasicBlock bb2 |
-        varBlockReaches(def, bb, bb2) and
+        varBlockReachesRef(def, v, bb, bb2) and
         1 = ssaDefRank(next, v, bb2, _, SsaDef())
       )
     )
@@ -770,6 +866,25 @@ module Make<InputSig Input> {
    * another read.
    */
   pragma[nomagic]
+  predicate lastRefExt(DefinitionExt def, BasicBlock bb, int i) {
+    // Can reach another definition
+    lastRefRedefExt(def, _, bb, i, _)
+    or
+    exists(SourceVariable v | lastSsaRefExt(def, v, bb, i) |
+      // Can reach exit directly
+      bb instanceof ExitBasicBlock
+      or
+      // Can reach a block using one or more steps, where `def` is no longer live
+      varBlockReachesExitExt(def, bb)
+    )
+  }
+
+  /**
+   * NB: If this predicate is exposed, it should be cached.
+   *
+   * Same as `lastRefExt`, but ignores phi-reads.
+   */
+  pragma[nomagic]
   predicate lastRef(Definition def, BasicBlock bb, int i) {
     // Can reach another definition
     lastRefRedef(def, bb, i, _)
@@ -819,7 +934,7 @@ module Make<InputSig Input> {
     final BasicBlock getBasicBlock() { this.definesAt(_, result, _) }
 
     /** Gets a textual representation of this SSA definition. */
-    string toString() { none() }
+    string toString() { result = "SSA def(" + this.getSourceVariable() + ")" }
   }
 
   /** An SSA definition that corresponds to a write. */
@@ -829,13 +944,11 @@ module Make<InputSig Input> {
     private int i;
 
     WriteDefinition() { this = TWriteDef(v, bb, i) }
-
-    override string toString() { result = "WriteDef" }
   }
 
   /** A phi node. */
   class PhiNode extends Definition, TPhiNode {
-    override string toString() { result = "Phi" }
+    override string toString() { result = "SSA phi(" + this.getSourceVariable() + ")" }
   }
 
   /**
@@ -851,6 +964,120 @@ module Make<InputSig Input> {
     }
   }
 
+  /**
+   * An extended static single assignment (SSA) definition.
+   *
+   * This is either a normal SSA definition (`Definition`) or a
+   * phi-read node (`PhiReadNode`).
+   */
+  class DefinitionExt extends TDefinitionExt {
+    /** Gets the source variable underlying this SSA definition. */
+    SourceVariable getSourceVariable() { this.definesAt(result, _, _, _) }
+
+    /**
+     * Holds if this SSA definition defines `v` at index `i` in basic block `bb`.
+     * Phi nodes are considered to be at index `-1`, while normal variable writes
+     * are at the index of the control flow node they wrap.
+     */
+    final predicate definesAt(SourceVariable v, BasicBlock bb, int i, SsaRefKind kind) {
+      this.(Definition).definesAt(v, bb, i) and
+      kind = SsaDef()
+      or
+      this = TPhiReadNode(v, bb) and i = -1 and kind = SsaPhiRead()
+    }
+
+    /** Gets the basic block to which this SSA definition belongs. */
+    final BasicBlock getBasicBlock() { this.definesAt(_, result, _, _) }
+
+    /** Gets a textual representation of this SSA definition. */
+    string toString() { result = this.(Definition).toString() }
+  }
+
+  /**
+   * A phi-read node.
+   *
+   * Phi-read nodes are like normal phi nodes, but they are inserted based on reads
+   * instead of writes, and only if the dominance-frontier block does not already
+   * contain a normal phi node.
+   *
+   * The motivation for adding phi-reads is to improve performance of the use-use
+   * calculation in cases where there is a large number of reads that can reach the
+   * same join-point, and from there reach a large number of basic blocks. Example:
+   *
+   * ```cs
+   * if (a)
+   *   use(x);
+   * else if (b)
+   *   use(x);
+   * else if (c)
+   *   use(x);
+   * else if (d)
+   *   use(x);
+   * // many more ifs ...
+   *
+   * // phi-read for `x` inserted here
+   *
+   * // program not mentioning `x`, with large basic block graph
+   *
+   * use(x);
+   * ```
+   *
+   * Without phi-reads, the analysis has to replicate reachability for each of
+   * the guarded uses of `x`. However, with phi-reads, the analysis will limit
+   * each conditional use of `x` to reach the basic block containing the phi-read
+   * node for `x`, and only that basic block will have to compute reachability
+   * through the remainder of the large program.
+   *
+   * Another motivation for phi-reads is when a large number of reads can reach
+   * another large number of reads:
+   *
+   * ```cs
+   * if (a)
+   *   use(x);
+   * else if (b)
+   *   use(x);
+   * else if (c)
+   *   use(x);
+   * else if (d)
+   *   use(x);
+   * // many more ifs ...
+   *
+   * // phi-read for `x` inserted here
+   *
+   * if (a)
+   *   use(x);
+   * else if (b)
+   *   use(x);
+   * else if (c)
+   *   use(x);
+   * else if (d)
+   *   use(x);
+   * // many more ifs ...
+   * ```
+   *
+   * Without phi-reads, one needs to add `n*m` data-flow edges (assuming `n` reads
+   * before the phi-read and `m` reads after the phi-read), whereas if we include
+   * phi-reads in the data-flow graph, we only need to add `n+m` edges.
+   *
+   * Like normal reads, each phi-read node `phi-read` can be reached from exactly
+   * one SSA definition (without passing through another definition): Assume, for
+   * the sake of contradiction, that there are two reaching definitions `def1` and
+   * `def2`. Now, if both `def1` and `def2` dominate `phi-read`, then the nearest
+   * dominating definition will prevent the other from reaching `phi-read`. So, at
+   * least one of `def1` and `def2` cannot dominate `phi-read`; assume it is `def1`.
+   * Then `def1` must go through one of its dominance-frontier blocks in order to
+   * reach `phi-read`. However, such a block will always start with a (normal) phi
+   * node, which contradicts reachability.
+   *
+   * Also, like normal reads, the unique SSA definition `def` that reaches `phi-read`,
+   * will dominate `phi-read`. Assuming it doesn't means that the path from `def`
+   * to `phi-read` goes through a dominance-frontier block, and hence a phi node,
+   * which contradicts reachability.
+   */
+  class PhiReadNode extends DefinitionExt, TPhiReadNode {
+    override string toString() { result = "SSA phi read(" + this.getSourceVariable() + ")" }
+  }
+
   /** Provides a set of consistency queries. */
   module Consistency {
     /** A definition that is relevant for the consistency queries. */
@@ -861,18 +1088,40 @@ module Make<InputSig Input> {
       );
     }
 
+    /** A definition that is relevant for the consistency queries. */
+    abstract class RelevantDefinitionExt extends DefinitionExt {
+      /** Override this predicate to ensure locations in consistency results. */
+      abstract predicate hasLocationInfo(
+        string filepath, int startline, int startcolumn, int endline, int endcolumn
+      );
+    }
+
     /** Holds if a read can be reached from multiple definitions. */
     query predicate nonUniqueDef(RelevantDefinition def, SourceVariable v, BasicBlock bb, int i) {
       ssaDefReachesRead(v, def, bb, i) and
       not exists(unique(Definition def0 | ssaDefReachesRead(v, def0, bb, i)))
     }
 
+    /** Holds if a read can be reached from multiple definitions. */
+    query predicate nonUniqueDefExt(
+      RelevantDefinitionExt def, SourceVariable v, BasicBlock bb, int i
+    ) {
+      ssaDefReachesReadExt(v, def, bb, i) and
+      not exists(unique(DefinitionExt def0 | ssaDefReachesReadExt(v, def0, bb, i)))
+    }
+
     /** Holds if a read cannot be reached from a definition. */
     query predicate readWithoutDef(SourceVariable v, BasicBlock bb, int i) {
       variableRead(bb, i, v, _) and
       not ssaDefReachesRead(v, _, bb, i)
     }
 
+    /** Holds if a read cannot be reached from a definition. */
+    query predicate readWithoutDefExt(SourceVariable v, BasicBlock bb, int i) {
+      variableRead(bb, i, v, _) and
+      not ssaDefReachesReadExt(v, _, bb, i)
+    }
+
     /** Holds if a definition cannot reach a read. */
     query predicate deadDef(RelevantDefinition def, SourceVariable v) {
       v = def.getSourceVariable() and
@@ -881,6 +1130,14 @@ module Make<InputSig Input> {
       not uncertainWriteDefinitionInput(_, def)
     }
 
+    /** Holds if a definition cannot reach a read. */
+    query predicate deadDefExt(RelevantDefinitionExt def, SourceVariable v) {
+      v = def.getSourceVariable() and
+      not ssaDefReachesReadExt(_, def, _, _) and
+      not phiHasInputFromBlockExt(_, def, _) and
+      not uncertainWriteDefinitionInput(_, def)
+    }
+
     /** Holds if a read is not dominated by a definition. */
     query predicate notDominatedByDef(RelevantDefinition def, SourceVariable v, BasicBlock bb, int i) {
       exists(BasicBlock bbDef, int iDef | def.definesAt(v, bbDef, iDef) |
@@ -892,5 +1149,19 @@ module Make<InputSig Input> {
         not def.definesAt(v, getImmediateBasicBlockDominator*(bb), _)
       )
     }
+
+    /** Holds if a read is not dominated by a definition. */
+    query predicate notDominatedByDefExt(
+      RelevantDefinitionExt def, SourceVariable v, BasicBlock bb, int i
+    ) {
+      exists(BasicBlock bbDef, int iDef | def.definesAt(v, bbDef, iDef, _) |
+        ssaDefReachesReadWithinBlock(v, def, bb, i) and
+        (bb != bbDef or i < iDef)
+        or
+        ssaDefReachesReadExt(v, def, bb, i) and
+        not ssaDefReachesReadWithinBlock(v, def, bb, i) and
+        not def.definesAt(v, getImmediateBasicBlockDominator*(bb), _, _)
+      )
+    }
   }
 }

From bd78e73131061aa7732278546656e19146016a61 Mon Sep 17 00:00:00 2001
From: Tom Hvitved <hvitved@github.com>
Date: Thu, 10 Nov 2022 16:41:08 +0100
Subject: [PATCH 0270/1420] C#: Add tests for phi reads

---
 .../ql/consistency-queries/SsaConsistency.ql  | 11 ++-
 .../lib/semmle/code/csharp/dataflow/SSA.qll   | 38 +++-----
 .../code/csharp/dataflow/internal/SsaImpl.qll | 91 ++++++++++++++++---
 .../dataflow/ssa/SSAPhiRead.expected          | 34 ++++++-
 .../library-tests/dataflow/ssa/SSAPhiRead.ql  | 17 +++-
 .../test/library-tests/dataflow/ssa/Test.cs   |  2 +-
 6 files changed, 144 insertions(+), 49 deletions(-)

diff --git a/csharp/ql/consistency-queries/SsaConsistency.ql b/csharp/ql/consistency-queries/SsaConsistency.ql
index bd666a71e49..225aeb4e6de 100644
--- a/csharp/ql/consistency-queries/SsaConsistency.ql
+++ b/csharp/ql/consistency-queries/SsaConsistency.ql
@@ -1,5 +1,6 @@
 import csharp
-import semmle.code.csharp.dataflow.internal.SsaImpl::Consistency
+import semmle.code.csharp.dataflow.internal.SsaImpl as Impl
+import Impl::Consistency
 import Ssa
 
 class MyRelevantDefinition extends RelevantDefinition, Ssa::Definition {
@@ -10,6 +11,14 @@ class MyRelevantDefinition extends RelevantDefinition, Ssa::Definition {
   }
 }
 
+class MyRelevantDefinitionExt extends RelevantDefinitionExt, Impl::DefinitionExt {
+  override predicate hasLocationInfo(
+    string filepath, int startline, int startcolumn, int endline, int endcolumn
+  ) {
+    this.getLocation().hasLocationInfo(filepath, startline, startcolumn, endline, endcolumn)
+  }
+}
+
 query predicate localDeclWithSsaDef(LocalVariableDeclExpr d) {
   // Local variables in C# must be initialized before every use, so uninitialized
   // local variables should not have an SSA definition, as that would imply that
diff --git a/csharp/ql/lib/semmle/code/csharp/dataflow/SSA.qll b/csharp/ql/lib/semmle/code/csharp/dataflow/SSA.qll
index f377d94e15c..8764da0a784 100644
--- a/csharp/ql/lib/semmle/code/csharp/dataflow/SSA.qll
+++ b/csharp/ql/lib/semmle/code/csharp/dataflow/SSA.qll
@@ -138,25 +138,6 @@ module Ssa {
     }
   }
 
-  private string getSplitString(Definition def) {
-    exists(ControlFlow::BasicBlock bb, int i, ControlFlow::Node cfn |
-      def.definesAt(_, bb, i) and
-      result = cfn.(ControlFlow::Nodes::ElementNode).getSplitsString()
-    |
-      cfn = bb.getNode(i)
-      or
-      not exists(bb.getNode(i)) and
-      cfn = bb.getFirstNode()
-    )
-  }
-
-  private string getToStringPrefix(Definition def) {
-    result = "[" + getSplitString(def) + "] "
-    or
-    not exists(getSplitString(def)) and
-    result = ""
-  }
-
   /**
    * A static single assignment (SSA) definition. Either an explicit variable
    * definition (`ExplicitDefinition`), an implicit variable definition
@@ -521,8 +502,8 @@ module Ssa {
 
     override string toString() {
       if this.getADefinition() instanceof AssignableDefinitions::ImplicitParameterDefinition
-      then result = getToStringPrefix(this) + "SSA param(" + this.getSourceVariable() + ")"
-      else result = getToStringPrefix(this) + "SSA def(" + this.getSourceVariable() + ")"
+      then result = SsaImpl::getToStringPrefix(this) + "SSA param(" + this.getSourceVariable() + ")"
+      else result = SsaImpl::getToStringPrefix(this) + "SSA def(" + this.getSourceVariable() + ")"
     }
 
     override Location getLocation() { result = ad.getLocation() }
@@ -570,8 +551,12 @@ module Ssa {
 
     override string toString() {
       if this.getSourceVariable().getAssignable() instanceof LocalScopeVariable
-      then result = getToStringPrefix(this) + "SSA capture def(" + this.getSourceVariable() + ")"
-      else result = getToStringPrefix(this) + "SSA entry def(" + this.getSourceVariable() + ")"
+      then
+        result =
+          SsaImpl::getToStringPrefix(this) + "SSA capture def(" + this.getSourceVariable() + ")"
+      else
+        result =
+          SsaImpl::getToStringPrefix(this) + "SSA entry def(" + this.getSourceVariable() + ")"
     }
 
     override Location getLocation() { result = this.getCallable().getLocation() }
@@ -612,7 +597,7 @@ module Ssa {
     }
 
     override string toString() {
-      result = getToStringPrefix(this) + "SSA call def(" + this.getSourceVariable() + ")"
+      result = SsaImpl::getToStringPrefix(this) + "SSA call def(" + this.getSourceVariable() + ")"
     }
 
     override Location getLocation() { result = this.getCall().getLocation() }
@@ -640,7 +625,8 @@ module Ssa {
     final Definition getQualifierDefinition() { result = q }
 
     override string toString() {
-      result = getToStringPrefix(this) + "SSA qualifier def(" + this.getSourceVariable() + ")"
+      result =
+        SsaImpl::getToStringPrefix(this) + "SSA qualifier def(" + this.getSourceVariable() + ")"
     }
 
     override Location getLocation() { result = this.getQualifierDefinition().getLocation() }
@@ -682,7 +668,7 @@ module Ssa {
     }
 
     override string toString() {
-      result = getToStringPrefix(this) + "SSA phi(" + this.getSourceVariable() + ")"
+      result = SsaImpl::getToStringPrefix(this) + "SSA phi(" + this.getSourceVariable() + ")"
     }
 
     /*
diff --git a/csharp/ql/lib/semmle/code/csharp/dataflow/internal/SsaImpl.qll b/csharp/ql/lib/semmle/code/csharp/dataflow/internal/SsaImpl.qll
index adfacd2970a..98a1cad843a 100644
--- a/csharp/ql/lib/semmle/code/csharp/dataflow/internal/SsaImpl.qll
+++ b/csharp/ql/lib/semmle/code/csharp/dataflow/internal/SsaImpl.qll
@@ -49,7 +49,23 @@ private module SsaInput implements SsaImplCommon::InputSig {
   }
 }
 
-import SsaImplCommon::Make<SsaInput>
+private import SsaImplCommon::Make<SsaInput> as Impl
+
+class Definition = Impl::Definition;
+
+class WriteDefinition = Impl::WriteDefinition;
+
+class UncertainWriteDefinition = Impl::UncertainWriteDefinition;
+
+class PhiNode = Impl::PhiNode;
+
+module Consistency = Impl::Consistency;
+
+module ExposedForTestingOnly {
+  predicate ssaDefReachesReadExt = Impl::ssaDefReachesReadExt/4;
+
+  predicate phiHasInputFromBlockExt = Impl::phiHasInputFromBlockExt/3;
+}
 
 /**
  * Holds if the `i`th node of basic block `bb` reads source variable `v`.
@@ -1072,7 +1088,7 @@ private predicate adjacentDefRead(
   Definition def, SsaInput::BasicBlock bb1, int i1, SsaInput::BasicBlock bb2, int i2,
   SsaInput::SourceVariable v
 ) {
-  adjacentDefRead(def, bb1, i1, bb2, i2) and
+  Impl::adjacentDefRead(def, bb1, i1, bb2, i2) and
   v = def.getSourceVariable()
 }
 
@@ -1088,7 +1104,7 @@ private predicate adjacentDefReachesRead(
   exists(SsaInput::BasicBlock bb3, int i3 |
     adjacentDefReachesRead(def, bb1, i1, bb3, i3) and
     SsaInput::variableRead(bb3, i3, _, false) and
-    adjacentDefRead(def, bb3, i3, bb2, i2)
+    Impl::adjacentDefRead(def, bb3, i3, bb2, i2)
   )
 }
 
@@ -1111,11 +1127,11 @@ private predicate adjacentDefReachesUncertainRead(
 /** Same as `lastRefRedef`, but skips uncertain reads. */
 pragma[nomagic]
 private predicate lastRefSkipUncertainReads(Definition def, SsaInput::BasicBlock bb, int i) {
-  lastRef(def, bb, i) and
+  Impl::lastRef(def, bb, i) and
   not SsaInput::variableRead(bb, i, def.getSourceVariable(), false)
   or
   exists(SsaInput::BasicBlock bb0, int i0 |
-    lastRef(def, bb0, i0) and
+    Impl::lastRef(def, bb0, i0) and
     adjacentDefReachesUncertainRead(def, bb, i, bb0, i0)
   )
 }
@@ -1237,7 +1253,7 @@ private module Cached {
       v = def.getSourceVariable() and
       capturedReadIn(_, _, v, edef.getSourceVariable(), c, additionalCalls) and
       def = def0.getAnUltimateDefinition() and
-      ssaDefReachesRead(_, def0, bb, i) and
+      Impl::ssaDefReachesRead(_, def0, bb, i) and
       capturedReadIn(bb, i, v, _, _, _) and
       c = bb.getNode(i)
     )
@@ -1264,18 +1280,18 @@ private module Cached {
 
   cached
   predicate isLiveAtEndOfBlock(Definition def, ControlFlow::BasicBlock bb) {
-    ssaDefReachesEndOfBlock(bb, def, _)
+    Impl::ssaDefReachesEndOfBlock(bb, def, _)
   }
 
   cached
-  Definition phiHasInputFromBlock(PhiNode phi, ControlFlow::BasicBlock bb) {
-    phiHasInputFromBlock(phi, result, bb)
+  Definition phiHasInputFromBlock(Ssa::PhiNode phi, ControlFlow::BasicBlock bb) {
+    Impl::phiHasInputFromBlock(phi, result, bb)
   }
 
   cached
   AssignableRead getAReadAtNode(Definition def, ControlFlow::Node cfn) {
     exists(Ssa::SourceVariable v, ControlFlow::BasicBlock bb, int i |
-      ssaDefReachesRead(v, def, bb, i) and
+      Impl::ssaDefReachesRead(v, def, bb, i) and
       variableReadActual(bb, i, v) and
       cfn = bb.getNode(i) and
       result.getAControlFlowNode() = cfn
@@ -1313,11 +1329,11 @@ private module Cached {
   /** Same as `lastRefRedef`, but skips uncertain reads. */
   cached
   predicate lastRefBeforeRedef(Definition def, ControlFlow::BasicBlock bb, int i, Definition next) {
-    lastRefRedef(def, bb, i, next) and
+    Impl::lastRefRedef(def, bb, i, next) and
     not SsaInput::variableRead(bb, i, def.getSourceVariable(), false)
     or
     exists(SsaInput::BasicBlock bb0, int i0 |
-      lastRefRedef(def, bb0, i0, next) and
+      Impl::lastRefRedef(def, bb0, i0, next) and
       adjacentDefReachesUncertainRead(def, bb, i, bb0, i0)
     )
   }
@@ -1333,7 +1349,7 @@ private module Cached {
 
   cached
   Definition uncertainWriteDefinitionInput(UncertainWriteDefinition def) {
-    uncertainWriteDefinitionInput(def, result)
+    Impl::uncertainWriteDefinitionInput(def, result)
   }
 
   cached
@@ -1343,10 +1359,57 @@ private module Cached {
       v = def.getSourceVariable() and
       p = v.getAssignable() and
       def = def0.getAnUltimateDefinition() and
-      ssaDefReachesRead(_, def0, bb, i) and
+      Impl::ssaDefReachesRead(_, def0, bb, i) and
       outRefExitRead(bb, i, v)
     )
   }
 }
 
 import Cached
+
+private string getSplitString(DefinitionExt def) {
+  exists(ControlFlow::BasicBlock bb, int i, ControlFlow::Node cfn |
+    def.definesAt(_, bb, i, _) and
+    result = cfn.(ControlFlow::Nodes::ElementNode).getSplitsString()
+  |
+    cfn = bb.getNode(i)
+    or
+    not exists(bb.getNode(i)) and
+    cfn = bb.getFirstNode()
+  )
+}
+
+string getToStringPrefix(DefinitionExt def) {
+  result = "[" + getSplitString(def) + "] "
+  or
+  not exists(getSplitString(def)) and
+  result = ""
+}
+
+/**
+ * An extended static single assignment (SSA) definition.
+ *
+ * This is either a normal SSA definition (`Definition`) or a
+ * phi-read node (`PhiReadNode`).
+ *
+ * Only intended for internal use.
+ */
+class DefinitionExt extends Impl::DefinitionExt {
+  override string toString() { result = this.(Ssa::Definition).toString() }
+
+  /** Gets the location of this definition. */
+  Location getLocation() { result = this.(Ssa::Definition).getLocation() }
+}
+
+/**
+ * A phi-read node.
+ *
+ * Only intended for internal use.
+ */
+class PhiReadNode extends DefinitionExt, Impl::PhiReadNode {
+  override string toString() {
+    result = getToStringPrefix(this) + "SSA phi read(" + this.getSourceVariable() + ")"
+  }
+
+  override Location getLocation() { result = this.getBasicBlock().getLocation() }
+}
diff --git a/csharp/ql/test/library-tests/dataflow/ssa/SSAPhiRead.expected b/csharp/ql/test/library-tests/dataflow/ssa/SSAPhiRead.expected
index 19c394b58fd..970e6fce524 100644
--- a/csharp/ql/test/library-tests/dataflow/ssa/SSAPhiRead.expected
+++ b/csharp/ql/test/library-tests/dataflow/ssa/SSAPhiRead.expected
@@ -1,4 +1,30 @@
-| DefUse.cs:63:9:63:14 | this.Field2 | DefUse.cs:80:30:80:31 | access to local variable x1 |
-| Fields.cs:65:24:65:32 | this.LoopField | Fields.cs:63:16:63:28 | this access |
-| Properties.cs:65:24:65:31 | this.LoopProp | Properties.cs:63:16:63:16 | access to parameter i |
-| Test.cs:78:13:78:13 | x | Test.cs:90:9:97:9 | if (...) ... |
+phiReadNode
+| DefUse.cs:80:30:80:31 | SSA phi read(this.Field2) | DefUse.cs:63:9:63:14 | this.Field2 |
+| Fields.cs:63:16:63:28 | SSA phi read(this.LoopField) | Fields.cs:65:24:65:32 | this.LoopField |
+| Patterns.cs:20:9:38:9 | SSA phi read(o) | Patterns.cs:7:16:7:16 | o |
+| Properties.cs:63:16:63:16 | SSA phi read(this.LoopProp) | Properties.cs:65:24:65:31 | this.LoopProp |
+| Test.cs:25:16:25:16 | SSA phi read(x) | Test.cs:8:13:8:13 | x |
+| Test.cs:90:9:97:9 | SSA phi read(x) | Test.cs:78:13:78:13 | x |
+| Test.cs:99:9:99:15 | SSA phi read(x) | Test.cs:78:13:78:13 | x |
+phiReadNodeRead
+| DefUse.cs:80:30:80:31 | SSA phi read(this.Field2) | DefUse.cs:63:9:63:14 | this.Field2 | DefUse.cs:80:37:80:42 | access to field Field2 |
+| Fields.cs:63:16:63:28 | SSA phi read(this.LoopField) | Fields.cs:65:24:65:32 | this.LoopField | Fields.cs:65:24:65:32 | access to field LoopField |
+| Patterns.cs:20:9:38:9 | SSA phi read(o) | Patterns.cs:7:16:7:16 | o | Patterns.cs:20:17:20:17 | access to local variable o |
+| Properties.cs:63:16:63:16 | SSA phi read(this.LoopProp) | Properties.cs:65:24:65:31 | this.LoopProp | Properties.cs:65:24:65:31 | access to property LoopProp |
+| Test.cs:25:16:25:16 | SSA phi read(x) | Test.cs:8:13:8:13 | x | Test.cs:25:16:25:16 | access to local variable x |
+| Test.cs:90:9:97:9 | SSA phi read(x) | Test.cs:78:13:78:13 | x | Test.cs:92:17:92:17 | access to local variable x |
+| Test.cs:90:9:97:9 | SSA phi read(x) | Test.cs:78:13:78:13 | x | Test.cs:96:17:96:17 | access to local variable x |
+| Test.cs:99:9:99:15 | SSA phi read(x) | Test.cs:78:13:78:13 | x | Test.cs:99:13:99:13 | access to local variable x |
+| Test.cs:99:9:99:15 | SSA phi read(x) | Test.cs:78:13:78:13 | x | Test.cs:104:17:104:17 | access to local variable x |
+phiReadInput
+| DefUse.cs:80:30:80:31 | SSA phi read(this.Field2) | DefUse.cs:63:9:63:18 | SSA def(this.Field2) |
+| DefUse.cs:80:30:80:31 | SSA phi read(this.Field2) | DefUse.cs:80:30:80:31 | SSA phi read(this.Field2) |
+| Fields.cs:63:16:63:28 | SSA phi read(this.LoopField) | Fields.cs:61:17:61:17 | SSA entry def(this.LoopField) |
+| Fields.cs:63:16:63:28 | SSA phi read(this.LoopField) | Fields.cs:63:16:63:28 | SSA phi read(this.LoopField) |
+| Patterns.cs:20:9:38:9 | SSA phi read(o) | Patterns.cs:7:16:7:23 | SSA def(o) |
+| Properties.cs:63:16:63:16 | SSA phi read(this.LoopProp) | Properties.cs:61:17:61:17 | SSA entry def(this.LoopProp) |
+| Properties.cs:63:16:63:16 | SSA phi read(this.LoopProp) | Properties.cs:63:16:63:16 | SSA phi read(this.LoopProp) |
+| Test.cs:25:16:25:16 | SSA phi read(x) | Test.cs:24:9:24:15 | SSA phi(x) |
+| Test.cs:25:16:25:16 | SSA phi read(x) | Test.cs:25:16:25:16 | SSA phi read(x) |
+| Test.cs:90:9:97:9 | SSA phi read(x) | Test.cs:78:13:78:17 | SSA def(x) |
+| Test.cs:99:9:99:15 | SSA phi read(x) | Test.cs:90:9:97:9 | SSA phi read(x) |
diff --git a/csharp/ql/test/library-tests/dataflow/ssa/SSAPhiRead.ql b/csharp/ql/test/library-tests/dataflow/ssa/SSAPhiRead.ql
index f9603dc1da2..8fee62217bf 100644
--- a/csharp/ql/test/library-tests/dataflow/ssa/SSAPhiRead.ql
+++ b/csharp/ql/test/library-tests/dataflow/ssa/SSAPhiRead.ql
@@ -1,6 +1,17 @@
 import csharp
 import semmle.code.csharp.dataflow.internal.SsaImpl
+import ExposedForTestingOnly
 
-from Ssa::SourceVariable v, ControlFlow::BasicBlock bb
-where phiReadExposedForTesting(bb, v)
-select v, bb
+query predicate phiReadNode(PhiReadNode phi, Ssa::SourceVariable v) { phi.getSourceVariable() = v }
+
+query predicate phiReadNodeRead(PhiReadNode phi, Ssa::SourceVariable v, ControlFlow::Node read) {
+  phi.getSourceVariable() = v and
+  exists(ControlFlow::BasicBlock bb, int i |
+    ssaDefReachesReadExt(v, phi, bb, i) and
+    read = bb.getNode(i)
+  )
+}
+
+query predicate phiReadInput(PhiReadNode phi, DefinitionExt inp) {
+  phiHasInputFromBlockExt(phi, inp, _)
+}
diff --git a/csharp/ql/test/library-tests/dataflow/ssa/Test.cs b/csharp/ql/test/library-tests/dataflow/ssa/Test.cs
index 5d321d0117d..23fee7d4706 100644
--- a/csharp/ql/test/library-tests/dataflow/ssa/Test.cs
+++ b/csharp/ql/test/library-tests/dataflow/ssa/Test.cs
@@ -95,7 +95,7 @@ class Test
         {
             use(x);
         }
-        // no phi_use for `x`, because actual use exists in the block
+        // phi_use for `x`, even though there is an actual use in the block
         use(x);
 
 

From 67f31ffdf06e30fcf29caff37062a45f9266ede6 Mon Sep 17 00:00:00 2001
From: Tom Hvitved <hvitved@github.com>
Date: Thu, 10 Nov 2022 14:28:35 +0100
Subject: [PATCH 0271/1420] Ruby: Add tests for phi reads

---
 ruby/ql/consistency-queries/SsaConsistency.ql | 11 ++-
 .../codeql/ruby/dataflow/internal/SsaImpl.qll | 67 +++++++++++++---
 .../variables/parameter.expected              |  4 +
 .../test/library-tests/variables/ssa.expected | 77 +++++++++++++++++++
 ruby/ql/test/library-tests/variables/ssa.ql   | 16 ++++
 ruby/ql/test/library-tests/variables/ssa.rb   | 15 ++++
 .../variables/varaccess.expected              | 34 ++++++++
 .../library-tests/variables/variable.expected |  8 +-
 .../variables/varscopes.expected              |  3 +-
 9 files changed, 220 insertions(+), 15 deletions(-)

diff --git a/ruby/ql/consistency-queries/SsaConsistency.ql b/ruby/ql/consistency-queries/SsaConsistency.ql
index 7ba9262baa4..30503e6aa1f 100644
--- a/ruby/ql/consistency-queries/SsaConsistency.ql
+++ b/ruby/ql/consistency-queries/SsaConsistency.ql
@@ -1,5 +1,6 @@
 import codeql.ruby.dataflow.SSA
-import codeql.ruby.dataflow.internal.SsaImpl::Consistency
+import codeql.ruby.dataflow.internal.SsaImpl
+import Consistency
 
 class MyRelevantDefinition extends RelevantDefinition, Ssa::Definition {
   override predicate hasLocationInfo(
@@ -8,3 +9,11 @@ class MyRelevantDefinition extends RelevantDefinition, Ssa::Definition {
     this.getLocation().hasLocationInfo(filepath, startline, startcolumn, endline, endcolumn)
   }
 }
+
+class MyRelevantDefinitionExt extends RelevantDefinitionExt, DefinitionExt {
+  override predicate hasLocationInfo(
+    string filepath, int startline, int startcolumn, int endline, int endcolumn
+  ) {
+    this.getLocation().hasLocationInfo(filepath, startline, startcolumn, endline, endcolumn)
+  }
+}
diff --git a/ruby/ql/lib/codeql/ruby/dataflow/internal/SsaImpl.qll b/ruby/ql/lib/codeql/ruby/dataflow/internal/SsaImpl.qll
index c7154b50d0f..2f3b1e085b0 100644
--- a/ruby/ql/lib/codeql/ruby/dataflow/internal/SsaImpl.qll
+++ b/ruby/ql/lib/codeql/ruby/dataflow/internal/SsaImpl.qll
@@ -2,6 +2,7 @@ private import codeql.ssa.Ssa as SsaImplCommon
 private import codeql.ruby.AST
 private import codeql.ruby.CFG as Cfg
 private import codeql.ruby.controlflow.internal.ControlFlowGraphImplShared as ControlFlowGraphImplShared
+private import codeql.ruby.dataflow.SSA
 private import codeql.ruby.ast.Variable
 private import Cfg::CfgNodes::ExprNodes
 
@@ -61,7 +62,23 @@ private module SsaInput implements SsaImplCommon::InputSig {
   }
 }
 
-import SsaImplCommon::Make<SsaInput>
+private import SsaImplCommon::Make<SsaInput> as Impl
+
+class Definition = Impl::Definition;
+
+class WriteDefinition = Impl::WriteDefinition;
+
+class UncertainWriteDefinition = Impl::UncertainWriteDefinition;
+
+class PhiNode = Impl::PhiNode;
+
+module Consistency = Impl::Consistency;
+
+module ExposedForTestingOnly {
+  predicate ssaDefReachesReadExt = Impl::ssaDefReachesReadExt/4;
+
+  predicate phiHasInputFromBlockExt = Impl::phiHasInputFromBlockExt/3;
+}
 
 /** Holds if `v` is uninitialized at index `i` in entry block `bb`. */
 predicate uninitializedWrite(Cfg::EntryBasicBlock bb, int i, LocalVariable v) {
@@ -204,7 +221,7 @@ private predicate adjacentDefRead(
   Definition def, SsaInput::BasicBlock bb1, int i1, SsaInput::BasicBlock bb2, int i2,
   SsaInput::SourceVariable v
 ) {
-  adjacentDefRead(def, bb1, i1, bb2, i2) and
+  Impl::adjacentDefRead(def, bb1, i1, bb2, i2) and
   v = def.getSourceVariable()
 }
 
@@ -220,7 +237,7 @@ private predicate adjacentDefReachesRead(
   exists(SsaInput::BasicBlock bb3, int i3 |
     adjacentDefReachesRead(def, bb1, i1, bb3, i3) and
     SsaInput::variableRead(bb3, i3, _, false) and
-    adjacentDefRead(def, bb3, i3, bb2, i2)
+    Impl::adjacentDefRead(def, bb3, i3, bb2, i2)
   )
 }
 
@@ -243,11 +260,11 @@ private predicate adjacentDefReachesUncertainRead(
 /** Same as `lastRefRedef`, but skips uncertain reads. */
 pragma[nomagic]
 private predicate lastRefSkipUncertainReads(Definition def, SsaInput::BasicBlock bb, int i) {
-  lastRef(def, bb, i) and
+  Impl::lastRef(def, bb, i) and
   not SsaInput::variableRead(bb, i, def.getSourceVariable(), false)
   or
   exists(SsaInput::BasicBlock bb0, int i0 |
-    lastRef(def, bb0, i0) and
+    Impl::lastRef(def, bb0, i0) and
     adjacentDefReachesUncertainRead(def, bb, i, bb0, i0)
   )
 }
@@ -304,7 +321,7 @@ private module Cached {
   cached
   VariableReadAccessCfgNode getARead(Definition def) {
     exists(LocalVariable v, Cfg::BasicBlock bb, int i |
-      ssaDefReachesRead(v, def, bb, i) and
+      Impl::ssaDefReachesRead(v, def, bb, i) and
       variableReadActual(bb, i, v) and
       result = bb.getNode(i)
     )
@@ -315,7 +332,7 @@ private module Cached {
     Definition def, CallCfgNode call, LocalVariable v, Cfg::CfgScope scope
   ) {
     exists(Cfg::BasicBlock bb, int i |
-      ssaDefReachesRead(v, def, bb, i) and
+      Impl::ssaDefReachesRead(v, def, bb, i) and
       capturedCallRead(call, bb, i, v) and
       scope.getOuterCfgScope() = bb.getScope()
     )
@@ -360,7 +377,7 @@ private module Cached {
     Definition def, LocalVariable v, Cfg::CfgScope scope
   ) {
     exists(Cfg::BasicBlock bb, int i |
-      ssaDefReachesRead(v, def, bb, i) and
+      Impl::ssaDefReachesRead(v, def, bb, i) and
       capturedExitRead(bb, i, v) and
       scope = bb.getScope().getOuterCfgScope*()
     )
@@ -403,7 +420,7 @@ private module Cached {
 
   cached
   Definition phiHasInputFromBlock(PhiNode phi, Cfg::BasicBlock bb) {
-    phiHasInputFromBlock(phi, result, bb)
+    Impl::phiHasInputFromBlock(phi, result, bb)
   }
 
   /**
@@ -459,19 +476,45 @@ private module Cached {
    */
   cached
   predicate lastRefBeforeRedef(Definition def, Cfg::BasicBlock bb, int i, Definition next) {
-    lastRefRedef(def, bb, i, next) and
+    Impl::lastRefRedef(def, bb, i, next) and
     not SsaInput::variableRead(bb, i, def.getSourceVariable(), false)
     or
     exists(SsaInput::BasicBlock bb0, int i0 |
-      lastRefRedef(def, bb0, i0, next) and
+      Impl::lastRefRedef(def, bb0, i0, next) and
       adjacentDefReachesUncertainRead(def, bb, i, bb0, i0)
     )
   }
 
   cached
   Definition uncertainWriteDefinitionInput(UncertainWriteDefinition def) {
-    uncertainWriteDefinitionInput(def, result)
+    Impl::uncertainWriteDefinitionInput(def, result)
   }
 }
 
 import Cached
+
+/**
+ * An extended static single assignment (SSA) definition.
+ *
+ * This is either a normal SSA definition (`Definition`) or a
+ * phi-read node (`PhiReadNode`).
+ *
+ * Only intended for internal use.
+ */
+class DefinitionExt extends Impl::DefinitionExt {
+  override string toString() { result = this.(Ssa::Definition).toString() }
+
+  /** Gets the location of this definition. */
+  Location getLocation() { result = this.(Ssa::Definition).getLocation() }
+}
+
+/**
+ * A phi-read node.
+ *
+ * Only intended for internal use.
+ */
+class PhiReadNode extends DefinitionExt, Impl::PhiReadNode {
+  override string toString() { result = "SSA phi read(" + this.getSourceVariable() + ")" }
+
+  override Location getLocation() { result = this.getBasicBlock().getLocation() }
+}
diff --git a/ruby/ql/test/library-tests/variables/parameter.expected b/ruby/ql/test/library-tests/variables/parameter.expected
index 292ae665964..6e6c8426f86 100644
--- a/ruby/ql/test/library-tests/variables/parameter.expected
+++ b/ruby/ql/test/library-tests/variables/parameter.expected
@@ -38,6 +38,10 @@ parameterVariable
 | ssa.rb:53:8:53:10 | foo | ssa.rb:53:8:53:10 | foo |
 | ssa.rb:64:8:64:8 | a | ssa.rb:64:8:64:8 | a |
 | ssa.rb:66:15:66:15 | a | ssa.rb:66:15:66:15 | a |
+| ssa.rb:90:9:90:10 | b1 | ssa.rb:90:9:90:10 | b1 |
+| ssa.rb:90:13:90:14 | b2 | ssa.rb:90:13:90:14 | b2 |
+| ssa.rb:90:17:90:18 | b3 | ssa.rb:90:17:90:18 | b3 |
+| ssa.rb:90:21:90:22 | b4 | ssa.rb:90:21:90:22 | b4 |
 parameterNoVariable
 | parameters.rb:45:22:45:22 | _ |
 parameterVariableNoAccess
diff --git a/ruby/ql/test/library-tests/variables/ssa.expected b/ruby/ql/test/library-tests/variables/ssa.expected
index e1df08d4285..20133a71857 100644
--- a/ruby/ql/test/library-tests/variables/ssa.expected
+++ b/ruby/ql/test/library-tests/variables/ssa.expected
@@ -164,6 +164,12 @@ definition
 | ssa.rb:83:7:87:5 | <captured> self | ssa.rb:81:1:88:3 | self |
 | ssa.rb:84:10:86:8 | <captured> captured | ssa.rb:82:3:82:10 | captured |
 | ssa.rb:84:10:86:8 | <captured> self | ssa.rb:81:1:88:3 | self |
+| ssa.rb:90:1:103:3 | self (m12) | ssa.rb:90:1:103:3 | self |
+| ssa.rb:90:9:90:10 | b1 | ssa.rb:90:9:90:10 | b1 |
+| ssa.rb:90:13:90:14 | b2 | ssa.rb:90:13:90:14 | b2 |
+| ssa.rb:90:17:90:18 | b3 | ssa.rb:90:17:90:18 | b3 |
+| ssa.rb:90:21:90:22 | b4 | ssa.rb:90:21:90:22 | b4 |
+| ssa.rb:91:3:91:7 | ... = ... | ssa.rb:91:3:91:3 | x |
 read
 | class_variables.rb:1:1:29:4 | self (class_variables.rb) | class_variables.rb:1:1:29:4 | self | class_variables.rb:3:1:3:5 | self |
 | class_variables.rb:5:1:7:3 | self (print) | class_variables.rb:5:1:7:3 | self | class_variables.rb:6:2:6:6 | self |
@@ -347,6 +353,18 @@ read
 | ssa.rb:83:7:87:5 | <captured> self | ssa.rb:81:1:88:3 | self | ssa.rb:84:6:86:8 | self |
 | ssa.rb:84:10:86:8 | <captured> captured | ssa.rb:82:3:82:10 | captured | ssa.rb:85:15:85:22 | captured |
 | ssa.rb:84:10:86:8 | <captured> self | ssa.rb:81:1:88:3 | self | ssa.rb:85:10:85:22 | self |
+| ssa.rb:90:1:103:3 | self (m12) | ssa.rb:90:1:103:3 | self | ssa.rb:93:5:93:10 | self |
+| ssa.rb:90:1:103:3 | self (m12) | ssa.rb:90:1:103:3 | self | ssa.rb:95:5:95:10 | self |
+| ssa.rb:90:1:103:3 | self (m12) | ssa.rb:90:1:103:3 | self | ssa.rb:99:5:99:10 | self |
+| ssa.rb:90:1:103:3 | self (m12) | ssa.rb:90:1:103:3 | self | ssa.rb:101:5:101:10 | self |
+| ssa.rb:90:9:90:10 | b1 | ssa.rb:90:9:90:10 | b1 | ssa.rb:92:7:92:8 | b1 |
+| ssa.rb:90:13:90:14 | b2 | ssa.rb:90:13:90:14 | b2 | ssa.rb:94:10:94:11 | b2 |
+| ssa.rb:90:17:90:18 | b3 | ssa.rb:90:17:90:18 | b3 | ssa.rb:98:7:98:8 | b3 |
+| ssa.rb:90:21:90:22 | b4 | ssa.rb:90:21:90:22 | b4 | ssa.rb:100:10:100:11 | b4 |
+| ssa.rb:91:3:91:7 | ... = ... | ssa.rb:91:3:91:3 | x | ssa.rb:93:10:93:10 | x |
+| ssa.rb:91:3:91:7 | ... = ... | ssa.rb:91:3:91:3 | x | ssa.rb:95:10:95:10 | x |
+| ssa.rb:91:3:91:7 | ... = ... | ssa.rb:91:3:91:3 | x | ssa.rb:99:10:99:10 | x |
+| ssa.rb:91:3:91:7 | ... = ... | ssa.rb:91:3:91:3 | x | ssa.rb:101:10:101:10 | x |
 firstRead
 | class_variables.rb:1:1:29:4 | self (class_variables.rb) | class_variables.rb:1:1:29:4 | self | class_variables.rb:3:1:3:5 | self |
 | class_variables.rb:5:1:7:3 | self (print) | class_variables.rb:5:1:7:3 | self | class_variables.rb:6:2:6:6 | self |
@@ -485,6 +503,18 @@ firstRead
 | ssa.rb:83:7:87:5 | <captured> self | ssa.rb:81:1:88:3 | self | ssa.rb:84:6:86:8 | self |
 | ssa.rb:84:10:86:8 | <captured> captured | ssa.rb:82:3:82:10 | captured | ssa.rb:85:15:85:22 | captured |
 | ssa.rb:84:10:86:8 | <captured> self | ssa.rb:81:1:88:3 | self | ssa.rb:85:10:85:22 | self |
+| ssa.rb:90:1:103:3 | self (m12) | ssa.rb:90:1:103:3 | self | ssa.rb:93:5:93:10 | self |
+| ssa.rb:90:1:103:3 | self (m12) | ssa.rb:90:1:103:3 | self | ssa.rb:95:5:95:10 | self |
+| ssa.rb:90:1:103:3 | self (m12) | ssa.rb:90:1:103:3 | self | ssa.rb:99:5:99:10 | self |
+| ssa.rb:90:1:103:3 | self (m12) | ssa.rb:90:1:103:3 | self | ssa.rb:101:5:101:10 | self |
+| ssa.rb:90:9:90:10 | b1 | ssa.rb:90:9:90:10 | b1 | ssa.rb:92:7:92:8 | b1 |
+| ssa.rb:90:13:90:14 | b2 | ssa.rb:90:13:90:14 | b2 | ssa.rb:94:10:94:11 | b2 |
+| ssa.rb:90:17:90:18 | b3 | ssa.rb:90:17:90:18 | b3 | ssa.rb:98:7:98:8 | b3 |
+| ssa.rb:90:21:90:22 | b4 | ssa.rb:90:21:90:22 | b4 | ssa.rb:100:10:100:11 | b4 |
+| ssa.rb:91:3:91:7 | ... = ... | ssa.rb:91:3:91:3 | x | ssa.rb:93:10:93:10 | x |
+| ssa.rb:91:3:91:7 | ... = ... | ssa.rb:91:3:91:3 | x | ssa.rb:95:10:95:10 | x |
+| ssa.rb:91:3:91:7 | ... = ... | ssa.rb:91:3:91:3 | x | ssa.rb:99:10:99:10 | x |
+| ssa.rb:91:3:91:7 | ... = ... | ssa.rb:91:3:91:3 | x | ssa.rb:101:10:101:10 | x |
 lastRead
 | class_variables.rb:1:1:29:4 | self (class_variables.rb) | class_variables.rb:1:1:29:4 | self | class_variables.rb:3:1:3:5 | self |
 | class_variables.rb:5:1:7:3 | self (print) | class_variables.rb:5:1:7:3 | self | class_variables.rb:6:2:6:6 | self |
@@ -624,6 +654,18 @@ lastRead
 | ssa.rb:83:7:87:5 | <captured> self | ssa.rb:81:1:88:3 | self | ssa.rb:84:6:86:8 | self |
 | ssa.rb:84:10:86:8 | <captured> captured | ssa.rb:82:3:82:10 | captured | ssa.rb:85:15:85:22 | captured |
 | ssa.rb:84:10:86:8 | <captured> self | ssa.rb:81:1:88:3 | self | ssa.rb:85:10:85:22 | self |
+| ssa.rb:90:1:103:3 | self (m12) | ssa.rb:90:1:103:3 | self | ssa.rb:93:5:93:10 | self |
+| ssa.rb:90:1:103:3 | self (m12) | ssa.rb:90:1:103:3 | self | ssa.rb:95:5:95:10 | self |
+| ssa.rb:90:1:103:3 | self (m12) | ssa.rb:90:1:103:3 | self | ssa.rb:99:5:99:10 | self |
+| ssa.rb:90:1:103:3 | self (m12) | ssa.rb:90:1:103:3 | self | ssa.rb:101:5:101:10 | self |
+| ssa.rb:90:9:90:10 | b1 | ssa.rb:90:9:90:10 | b1 | ssa.rb:92:7:92:8 | b1 |
+| ssa.rb:90:13:90:14 | b2 | ssa.rb:90:13:90:14 | b2 | ssa.rb:94:10:94:11 | b2 |
+| ssa.rb:90:17:90:18 | b3 | ssa.rb:90:17:90:18 | b3 | ssa.rb:98:7:98:8 | b3 |
+| ssa.rb:90:21:90:22 | b4 | ssa.rb:90:21:90:22 | b4 | ssa.rb:100:10:100:11 | b4 |
+| ssa.rb:91:3:91:7 | ... = ... | ssa.rb:91:3:91:3 | x | ssa.rb:93:10:93:10 | x |
+| ssa.rb:91:3:91:7 | ... = ... | ssa.rb:91:3:91:3 | x | ssa.rb:95:10:95:10 | x |
+| ssa.rb:91:3:91:7 | ... = ... | ssa.rb:91:3:91:3 | x | ssa.rb:99:10:99:10 | x |
+| ssa.rb:91:3:91:7 | ... = ... | ssa.rb:91:3:91:3 | x | ssa.rb:101:10:101:10 | x |
 adjacentReads
 | class_variables.rb:26:1:29:3 | self (N) | class_variables.rb:26:1:29:3 | self | class_variables.rb:27:3:27:11 | self | class_variables.rb:28:3:28:7 | self |
 | instance_variables.rb:1:1:44:4 | self (instance_variables.rb) | instance_variables.rb:1:1:44:4 | self | instance_variables.rb:1:1:1:4 | self | instance_variables.rb:11:1:11:9 | self |
@@ -674,6 +716,14 @@ adjacentReads
 | ssa.rb:38:1:42:3 | self (m4) | ssa.rb:38:1:42:3 | self | ssa.rb:39:8:39:9 | self | ssa.rb:41:3:41:13 | self |
 | ssa.rb:66:11:70:5 | <captured> captured | ssa.rb:65:3:65:10 | captured | ssa.rb:68:10:68:17 | captured | ssa.rb:69:5:69:12 | captured |
 | ssa.rb:66:11:70:5 | <captured> self | ssa.rb:64:1:72:3 | self | ssa.rb:67:5:67:10 | self | ssa.rb:68:5:68:17 | self |
+| ssa.rb:90:1:103:3 | self (m12) | ssa.rb:90:1:103:3 | self | ssa.rb:93:5:93:10 | self | ssa.rb:99:5:99:10 | self |
+| ssa.rb:90:1:103:3 | self (m12) | ssa.rb:90:1:103:3 | self | ssa.rb:93:5:93:10 | self | ssa.rb:101:5:101:10 | self |
+| ssa.rb:90:1:103:3 | self (m12) | ssa.rb:90:1:103:3 | self | ssa.rb:95:5:95:10 | self | ssa.rb:99:5:99:10 | self |
+| ssa.rb:90:1:103:3 | self (m12) | ssa.rb:90:1:103:3 | self | ssa.rb:95:5:95:10 | self | ssa.rb:101:5:101:10 | self |
+| ssa.rb:91:3:91:7 | ... = ... | ssa.rb:91:3:91:3 | x | ssa.rb:93:10:93:10 | x | ssa.rb:99:10:99:10 | x |
+| ssa.rb:91:3:91:7 | ... = ... | ssa.rb:91:3:91:3 | x | ssa.rb:93:10:93:10 | x | ssa.rb:101:10:101:10 | x |
+| ssa.rb:91:3:91:7 | ... = ... | ssa.rb:91:3:91:3 | x | ssa.rb:95:10:95:10 | x | ssa.rb:99:10:99:10 | x |
+| ssa.rb:91:3:91:7 | ... = ... | ssa.rb:91:3:91:3 | x | ssa.rb:95:10:95:10 | x | ssa.rb:101:10:101:10 | x |
 phi
 | parameters.rb:37:3:37:18 | phi | parameters.rb:35:16:35:16 | b | parameters.rb:35:1:38:3 | <uninitialized> |
 | parameters.rb:37:3:37:18 | phi | parameters.rb:35:16:35:16 | b | parameters.rb:35:16:35:20 | ... = ... |
@@ -689,3 +739,30 @@ phi
 | ssa.rb:45:3:45:12 | phi | ssa.rb:45:3:45:3 | x | ssa.rb:45:3:45:7 | ... = ... |
 | ssa.rb:50:3:50:8 | phi | ssa.rb:49:14:49:14 | y | ssa.rb:49:1:51:3 | <uninitialized> |
 | ssa.rb:50:3:50:8 | phi | ssa.rb:49:14:49:14 | y | ssa.rb:49:14:49:19 | ... = ... |
+phiReadNode
+| parameters.rb:26:3:26:11 | SSA phi read(name) | parameters.rb:25:15:25:18 | name |
+| ssa.rb:5:3:13:5 | SSA phi read(self) | ssa.rb:1:1:16:3 | self |
+| ssa.rb:19:9:19:9 | SSA phi read(self) | ssa.rb:18:1:23:3 | self |
+| ssa.rb:92:3:96:5 | SSA phi read(self) | ssa.rb:90:1:103:3 | self |
+| ssa.rb:92:3:96:5 | SSA phi read(x) | ssa.rb:91:3:91:3 | x |
+| ssa.rb:94:3:95:10 | SSA phi read(self) | ssa.rb:90:1:103:3 | self |
+| ssa.rb:94:3:95:10 | SSA phi read(x) | ssa.rb:91:3:91:3 | x |
+phiReadNodeRead
+| parameters.rb:26:3:26:11 | SSA phi read(name) | parameters.rb:25:15:25:18 | name | parameters.rb:26:8:26:11 | name |
+| ssa.rb:5:3:13:5 | SSA phi read(self) | ssa.rb:1:1:16:3 | self | ssa.rb:15:3:15:8 | self |
+| ssa.rb:19:9:19:9 | SSA phi read(self) | ssa.rb:18:1:23:3 | self | ssa.rb:20:5:20:10 | self |
+| ssa.rb:92:3:96:5 | SSA phi read(self) | ssa.rb:90:1:103:3 | self | ssa.rb:99:5:99:10 | self |
+| ssa.rb:92:3:96:5 | SSA phi read(self) | ssa.rb:90:1:103:3 | self | ssa.rb:101:5:101:10 | self |
+| ssa.rb:92:3:96:5 | SSA phi read(x) | ssa.rb:91:3:91:3 | x | ssa.rb:99:10:99:10 | x |
+| ssa.rb:92:3:96:5 | SSA phi read(x) | ssa.rb:91:3:91:3 | x | ssa.rb:101:10:101:10 | x |
+phiReadInput
+| parameters.rb:26:3:26:11 | SSA phi read(name) | parameters.rb:25:15:25:18 | name |
+| ssa.rb:5:3:13:5 | SSA phi read(self) | ssa.rb:1:1:16:3 | self (m) |
+| ssa.rb:19:9:19:9 | SSA phi read(self) | ssa.rb:18:1:23:3 | self (m1) |
+| ssa.rb:19:9:19:9 | SSA phi read(self) | ssa.rb:19:9:19:9 | SSA phi read(self) |
+| ssa.rb:92:3:96:5 | SSA phi read(self) | ssa.rb:90:1:103:3 | self (m12) |
+| ssa.rb:92:3:96:5 | SSA phi read(self) | ssa.rb:94:3:95:10 | SSA phi read(self) |
+| ssa.rb:92:3:96:5 | SSA phi read(x) | ssa.rb:91:3:91:7 | ... = ... |
+| ssa.rb:92:3:96:5 | SSA phi read(x) | ssa.rb:94:3:95:10 | SSA phi read(x) |
+| ssa.rb:94:3:95:10 | SSA phi read(self) | ssa.rb:90:1:103:3 | self (m12) |
+| ssa.rb:94:3:95:10 | SSA phi read(x) | ssa.rb:91:3:91:7 | ... = ... |
diff --git a/ruby/ql/test/library-tests/variables/ssa.ql b/ruby/ql/test/library-tests/variables/ssa.ql
index 26f3d5f8c0d..b7a8378e8ff 100644
--- a/ruby/ql/test/library-tests/variables/ssa.ql
+++ b/ruby/ql/test/library-tests/variables/ssa.ql
@@ -1,6 +1,8 @@
 import codeql.ruby.AST
 import codeql.ruby.CFG
 import codeql.ruby.dataflow.SSA
+import codeql.ruby.dataflow.internal.SsaImpl
+import ExposedForTestingOnly
 
 query predicate definition(Ssa::Definition def, Variable v) { def.getSourceVariable() = v }
 
@@ -24,3 +26,17 @@ query predicate adjacentReads(Ssa::Definition def, Variable v, CfgNode read1, Cf
 query predicate phi(Ssa::PhiNode phi, Variable v, Ssa::Definition input) {
   phi.getSourceVariable() = v and input = phi.getAnInput()
 }
+
+query predicate phiReadNode(PhiReadNode phi, Variable v) { phi.getSourceVariable() = v }
+
+query predicate phiReadNodeRead(PhiReadNode phi, Variable v, CfgNode read) {
+  phi.getSourceVariable() = v and
+  exists(BasicBlock bb, int i |
+    ssaDefReachesReadExt(v, phi, bb, i) and
+    read = bb.getNode(i)
+  )
+}
+
+query predicate phiReadInput(PhiReadNode phi, DefinitionExt inp) {
+  phiHasInputFromBlockExt(phi, inp, _)
+}
diff --git a/ruby/ql/test/library-tests/variables/ssa.rb b/ruby/ql/test/library-tests/variables/ssa.rb
index bb13dd6c4c9..c8a28e39f07 100644
--- a/ruby/ql/test/library-tests/variables/ssa.rb
+++ b/ruby/ql/test/library-tests/variables/ssa.rb
@@ -85,4 +85,19 @@ def m11
          puts captured
      end
   end
+end
+
+def m12(b1, b2, b3, b4)
+  x = 0
+  if (b1) then
+    puts x
+  elsif (b2) then
+    puts x
+  end
+  # phi read for x
+  if (b3) then
+    puts x
+  elsif (b4) then
+    puts x
+  end
 end
\ No newline at end of file
diff --git a/ruby/ql/test/library-tests/variables/varaccess.expected b/ruby/ql/test/library-tests/variables/varaccess.expected
index 59a5ee362f6..4443373e8c2 100644
--- a/ruby/ql/test/library-tests/variables/varaccess.expected
+++ b/ruby/ql/test/library-tests/variables/varaccess.expected
@@ -279,6 +279,23 @@ variableAccess
 | ssa.rb:84:6:86:8 | self | ssa.rb:81:1:88:3 | self | ssa.rb:81:1:88:3 | m11 |
 | ssa.rb:85:10:85:22 | self | ssa.rb:81:1:88:3 | self | ssa.rb:81:1:88:3 | m11 |
 | ssa.rb:85:15:85:22 | captured | ssa.rb:82:3:82:10 | captured | ssa.rb:81:1:88:3 | m11 |
+| ssa.rb:90:9:90:10 | b1 | ssa.rb:90:9:90:10 | b1 | ssa.rb:90:1:103:3 | m12 |
+| ssa.rb:90:13:90:14 | b2 | ssa.rb:90:13:90:14 | b2 | ssa.rb:90:1:103:3 | m12 |
+| ssa.rb:90:17:90:18 | b3 | ssa.rb:90:17:90:18 | b3 | ssa.rb:90:1:103:3 | m12 |
+| ssa.rb:90:21:90:22 | b4 | ssa.rb:90:21:90:22 | b4 | ssa.rb:90:1:103:3 | m12 |
+| ssa.rb:91:3:91:3 | x | ssa.rb:91:3:91:3 | x | ssa.rb:90:1:103:3 | m12 |
+| ssa.rb:92:7:92:8 | b1 | ssa.rb:90:9:90:10 | b1 | ssa.rb:90:1:103:3 | m12 |
+| ssa.rb:93:5:93:10 | self | ssa.rb:90:1:103:3 | self | ssa.rb:90:1:103:3 | m12 |
+| ssa.rb:93:10:93:10 | x | ssa.rb:91:3:91:3 | x | ssa.rb:90:1:103:3 | m12 |
+| ssa.rb:94:10:94:11 | b2 | ssa.rb:90:13:90:14 | b2 | ssa.rb:90:1:103:3 | m12 |
+| ssa.rb:95:5:95:10 | self | ssa.rb:90:1:103:3 | self | ssa.rb:90:1:103:3 | m12 |
+| ssa.rb:95:10:95:10 | x | ssa.rb:91:3:91:3 | x | ssa.rb:90:1:103:3 | m12 |
+| ssa.rb:98:7:98:8 | b3 | ssa.rb:90:17:90:18 | b3 | ssa.rb:90:1:103:3 | m12 |
+| ssa.rb:99:5:99:10 | self | ssa.rb:90:1:103:3 | self | ssa.rb:90:1:103:3 | m12 |
+| ssa.rb:99:10:99:10 | x | ssa.rb:91:3:91:3 | x | ssa.rb:90:1:103:3 | m12 |
+| ssa.rb:100:10:100:11 | b4 | ssa.rb:90:21:90:22 | b4 | ssa.rb:90:1:103:3 | m12 |
+| ssa.rb:101:5:101:10 | self | ssa.rb:90:1:103:3 | self | ssa.rb:90:1:103:3 | m12 |
+| ssa.rb:101:10:101:10 | x | ssa.rb:91:3:91:3 | x | ssa.rb:90:1:103:3 | m12 |
 explicitWrite
 | class_variables.rb:1:1:1:3 | @@x | class_variables.rb:1:1:1:8 | ... = ... |
 | class_variables.rb:19:3:19:5 | @@x | class_variables.rb:19:3:19:10 | ... = ... |
@@ -349,6 +366,7 @@ explicitWrite
 | ssa.rb:69:5:69:12 | captured | ssa.rb:69:5:69:17 | ... = ... |
 | ssa.rb:75:3:75:10 | captured | ssa.rb:75:3:75:14 | ... = ... |
 | ssa.rb:82:3:82:10 | captured | ssa.rb:82:3:82:14 | ... = ... |
+| ssa.rb:91:3:91:3 | x | ssa.rb:91:3:91:7 | ... = ... |
 implicitWrite
 | nested_scopes.rb:15:23:15:23 | a |
 | nested_scopes.rb:16:26:16:26 | x |
@@ -390,6 +408,10 @@ implicitWrite
 | ssa.rb:53:8:53:10 | foo |
 | ssa.rb:64:8:64:8 | a |
 | ssa.rb:66:15:66:15 | a |
+| ssa.rb:90:9:90:10 | b1 |
+| ssa.rb:90:13:90:14 | b2 |
+| ssa.rb:90:17:90:18 | b3 |
+| ssa.rb:90:21:90:22 | b4 |
 readAccess
 | class_variables.rb:3:1:3:5 | self |
 | class_variables.rb:3:3:3:5 | @@x |
@@ -582,3 +604,15 @@ readAccess
 | ssa.rb:84:6:86:8 | self |
 | ssa.rb:85:10:85:22 | self |
 | ssa.rb:85:15:85:22 | captured |
+| ssa.rb:92:7:92:8 | b1 |
+| ssa.rb:93:5:93:10 | self |
+| ssa.rb:93:10:93:10 | x |
+| ssa.rb:94:10:94:11 | b2 |
+| ssa.rb:95:5:95:10 | self |
+| ssa.rb:95:10:95:10 | x |
+| ssa.rb:98:7:98:8 | b3 |
+| ssa.rb:99:5:99:10 | self |
+| ssa.rb:99:10:99:10 | x |
+| ssa.rb:100:10:100:11 | b4 |
+| ssa.rb:101:5:101:10 | self |
+| ssa.rb:101:10:101:10 | x |
diff --git a/ruby/ql/test/library-tests/variables/variable.expected b/ruby/ql/test/library-tests/variables/variable.expected
index 541ed394653..ccab8a3cdf4 100644
--- a/ruby/ql/test/library-tests/variables/variable.expected
+++ b/ruby/ql/test/library-tests/variables/variable.expected
@@ -120,7 +120,7 @@
 | scopes.rb:43:2:43:4 | foo |
 | scopes.rb:46:5:46:8 | var2 |
 | ssa.rb:1:1:16:3 | self |
-| ssa.rb:1:1:88:3 | self |
+| ssa.rb:1:1:103:3 | self |
 | ssa.rb:1:7:1:7 | b |
 | ssa.rb:2:3:2:3 | i |
 | ssa.rb:18:1:23:3 | self |
@@ -152,3 +152,9 @@
 | ssa.rb:75:3:75:10 | captured |
 | ssa.rb:81:1:88:3 | self |
 | ssa.rb:82:3:82:10 | captured |
+| ssa.rb:90:1:103:3 | self |
+| ssa.rb:90:9:90:10 | b1 |
+| ssa.rb:90:13:90:14 | b2 |
+| ssa.rb:90:17:90:18 | b3 |
+| ssa.rb:90:21:90:22 | b4 |
+| ssa.rb:91:3:91:3 | x |
diff --git a/ruby/ql/test/library-tests/variables/varscopes.expected b/ruby/ql/test/library-tests/variables/varscopes.expected
index 1859ab01550..6b64ca6f97d 100644
--- a/ruby/ql/test/library-tests/variables/varscopes.expected
+++ b/ruby/ql/test/library-tests/variables/varscopes.expected
@@ -57,7 +57,7 @@
 | scopes.rb:37:1:39:3 | foo |
 | scopes.rb:41:1:49:3 | M |
 | ssa.rb:1:1:16:3 | m |
-| ssa.rb:1:1:88:3 | ssa.rb |
+| ssa.rb:1:1:103:3 | ssa.rb |
 | ssa.rb:18:1:23:3 | m1 |
 | ssa.rb:25:1:30:3 | m2 |
 | ssa.rb:26:3:28:5 | { ... } |
@@ -75,3 +75,4 @@
 | ssa.rb:81:1:88:3 | m11 |
 | ssa.rb:83:7:87:5 | do ... end |
 | ssa.rb:84:10:86:8 | do ... end |
+| ssa.rb:90:1:103:3 | m12 |

From dff7b475fbcd1eef192382c437eeb8ce43b7b118 Mon Sep 17 00:00:00 2001
From: erik-krogh <erik-krogh@github.com>
Date: Tue, 15 Nov 2022 11:46:44 +0100
Subject: [PATCH 0272/1420] make the top-level comment in
 SuperlinearBackTracking.qll a QLDoc

---
 shared/regex/codeql/regex/nfa/SuperlinearBackTracking.qll | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/shared/regex/codeql/regex/nfa/SuperlinearBackTracking.qll b/shared/regex/codeql/regex/nfa/SuperlinearBackTracking.qll
index 00f53784554..efe5beb3b4a 100644
--- a/shared/regex/codeql/regex/nfa/SuperlinearBackTracking.qll
+++ b/shared/regex/codeql/regex/nfa/SuperlinearBackTracking.qll
@@ -1,4 +1,4 @@
-/*
+/**
  * This module implements the analysis described in the paper:
  *   Valentin Wustholz, Oswaldo Olivo, Marijn J. H. Heule, and Isil Dillig:
  *     Static Detection of DoS Vulnerabilities in

From 8d9b106be1c437aff320246213de46a0be95c508 Mon Sep 17 00:00:00 2001
From: Joe Farebrother <joefarebrother@github.com>
Date: Tue, 15 Nov 2022 11:19:40 +0000
Subject: [PATCH 0273/1420] Exclude invalid identifiers from generated stubs

---
 java/ql/src/utils/stub-generator/Stubs.qll | 10 ++++++++--
 1 file changed, 8 insertions(+), 2 deletions(-)

diff --git a/java/ql/src/utils/stub-generator/Stubs.qll b/java/ql/src/utils/stub-generator/Stubs.qll
index 5c04dee0090..91e7835f4ba 100644
--- a/java/ql/src/utils/stub-generator/Stubs.qll
+++ b/java/ql/src/utils/stub-generator/Stubs.qll
@@ -7,12 +7,17 @@
 
 import java
 
+/** Holds if `id` is a valid Java identifier. */
+bindingset[id]
+private predicate isValidIdentifier(string id) { id.regexpMatch("[\\w_$]+") }
+
 /** A type that should be in the generated code. */
 abstract private class GeneratedType extends ClassOrInterface {
   GeneratedType() {
     not this instanceof AnonymousClass and
     not this.isLocal() and
-    not this.getPackage() instanceof ExcludedPackage
+    not this.getPackage() instanceof ExcludedPackage and
+    isValidIdentifier(this.getName())
   }
 
   private string stubKeyword() {
@@ -108,7 +113,8 @@ abstract private class GeneratedType extends ClassOrInterface {
     not result.isPrivate() and
     not result.isPackageProtected() and
     not result instanceof StaticInitializer and
-    not result instanceof InstanceInitializer
+    not result instanceof InstanceInitializer and
+    isValidIdentifier(result.getName())
   }
 
   final Type getAGeneratedType() {

From 9b38e1102a7f2e2743c7b8cafe9a661ea18e8cdf Mon Sep 17 00:00:00 2001
From: Geoffrey White <40627776+geoffw0@users.noreply.github.com>
Date: Mon, 14 Nov 2022 17:31:29 +0000
Subject: [PATCH 0274/1420] Swift: Add more tests of optionals.

---
 .../dataflow/dataflow/DataFlow.expected       | 123 +++++++++--------
 .../dataflow/dataflow/LocalFlow.expected      | 130 +++++++++++-------
 .../dataflow/dataflow/test.swift              |  49 +++++--
 3 files changed, 182 insertions(+), 120 deletions(-)

diff --git a/swift/ql/test/library-tests/dataflow/dataflow/DataFlow.expected b/swift/ql/test/library-tests/dataflow/dataflow/DataFlow.expected
index c4e0a7a01e6..0f55b0155c3 100644
--- a/swift/ql/test/library-tests/dataflow/dataflow/DataFlow.expected
+++ b/swift/ql/test/library-tests/dataflow/dataflow/DataFlow.expected
@@ -100,29 +100,30 @@ edges
 | test.swift:225:14:225:21 | call to source() :  | test.swift:235:13:235:15 | .source_value |
 | test.swift:225:14:225:21 | call to source() :  | test.swift:238:13:238:15 | .source_value |
 | test.swift:259:12:259:19 | call to source() :  | test.swift:263:13:263:28 | call to optionalSource() :  |
-| test.swift:263:13:263:28 | call to optionalSource() :  | test.swift:264:15:264:16 | ...! |
-| test.swift:263:13:263:28 | call to optionalSource() :  | test.swift:266:15:266:16 | ...? :  |
-| test.swift:265:15:265:22 | call to source() :  | file://:0:0:0:0 | [summary param] this in signum() :  |
-| test.swift:265:15:265:22 | call to source() :  | test.swift:265:15:265:31 | call to signum() |
-| test.swift:266:15:266:16 | ...? :  | file://:0:0:0:0 | [summary param] this in signum() :  |
-| test.swift:266:15:266:16 | ...? :  | test.swift:266:15:266:25 | call to signum() :  |
-| test.swift:266:15:266:25 | call to signum() :  | test.swift:266:15:266:25 | OptionalEvaluationExpr |
-| test.swift:277:14:277:26 | (...) [Tuple element at index 1] :  | test.swift:281:15:281:15 | t1 [Tuple element at index 1] :  |
-| test.swift:277:18:277:25 | call to source() :  | test.swift:277:14:277:26 | (...) [Tuple element at index 1] :  |
-| test.swift:281:15:281:15 | t1 [Tuple element at index 1] :  | test.swift:281:15:281:18 | .1 |
-| test.swift:289:5:289:5 | [post] t1 [Tuple element at index 0] :  | test.swift:292:15:292:15 | t1 [Tuple element at index 0] :  |
-| test.swift:289:12:289:19 | call to source() :  | test.swift:289:5:289:5 | [post] t1 [Tuple element at index 0] :  |
-| test.swift:292:15:292:15 | t1 [Tuple element at index 0] :  | test.swift:292:15:292:18 | .0 |
-| test.swift:297:14:297:45 | (...) [Tuple element at index 0] :  | test.swift:302:15:302:15 | t1 [Tuple element at index 0] :  |
-| test.swift:297:14:297:45 | (...) [Tuple element at index 0] :  | test.swift:306:15:306:15 | t2 [Tuple element at index 0] :  |
-| test.swift:297:14:297:45 | (...) [Tuple element at index 1] :  | test.swift:303:15:303:15 | t1 [Tuple element at index 1] :  |
-| test.swift:297:14:297:45 | (...) [Tuple element at index 1] :  | test.swift:307:15:307:15 | t2 [Tuple element at index 1] :  |
-| test.swift:297:18:297:25 | call to source() :  | test.swift:297:14:297:45 | (...) [Tuple element at index 0] :  |
-| test.swift:297:31:297:38 | call to source() :  | test.swift:297:14:297:45 | (...) [Tuple element at index 1] :  |
-| test.swift:302:15:302:15 | t1 [Tuple element at index 0] :  | test.swift:302:15:302:18 | .0 |
-| test.swift:303:15:303:15 | t1 [Tuple element at index 1] :  | test.swift:303:15:303:18 | .1 |
-| test.swift:306:15:306:15 | t2 [Tuple element at index 0] :  | test.swift:306:15:306:18 | .0 |
-| test.swift:307:15:307:15 | t2 [Tuple element at index 1] :  | test.swift:307:15:307:18 | .1 |
+| test.swift:263:13:263:28 | call to optionalSource() :  | test.swift:265:15:265:15 | x |
+| test.swift:263:13:263:28 | call to optionalSource() :  | test.swift:267:15:267:16 | ...! |
+| test.swift:263:13:263:28 | call to optionalSource() :  | test.swift:271:15:271:16 | ...? :  |
+| test.swift:270:15:270:22 | call to source() :  | file://:0:0:0:0 | [summary param] this in signum() :  |
+| test.swift:270:15:270:22 | call to source() :  | test.swift:270:15:270:31 | call to signum() |
+| test.swift:271:15:271:16 | ...? :  | file://:0:0:0:0 | [summary param] this in signum() :  |
+| test.swift:271:15:271:16 | ...? :  | test.swift:271:15:271:25 | call to signum() :  |
+| test.swift:271:15:271:25 | call to signum() :  | test.swift:271:15:271:25 | OptionalEvaluationExpr |
+| test.swift:302:14:302:26 | (...) [Tuple element at index 1] :  | test.swift:306:15:306:15 | t1 [Tuple element at index 1] :  |
+| test.swift:302:18:302:25 | call to source() :  | test.swift:302:14:302:26 | (...) [Tuple element at index 1] :  |
+| test.swift:306:15:306:15 | t1 [Tuple element at index 1] :  | test.swift:306:15:306:18 | .1 |
+| test.swift:314:5:314:5 | [post] t1 [Tuple element at index 0] :  | test.swift:317:15:317:15 | t1 [Tuple element at index 0] :  |
+| test.swift:314:12:314:19 | call to source() :  | test.swift:314:5:314:5 | [post] t1 [Tuple element at index 0] :  |
+| test.swift:317:15:317:15 | t1 [Tuple element at index 0] :  | test.swift:317:15:317:18 | .0 |
+| test.swift:322:14:322:45 | (...) [Tuple element at index 0] :  | test.swift:327:15:327:15 | t1 [Tuple element at index 0] :  |
+| test.swift:322:14:322:45 | (...) [Tuple element at index 0] :  | test.swift:331:15:331:15 | t2 [Tuple element at index 0] :  |
+| test.swift:322:14:322:45 | (...) [Tuple element at index 1] :  | test.swift:328:15:328:15 | t1 [Tuple element at index 1] :  |
+| test.swift:322:14:322:45 | (...) [Tuple element at index 1] :  | test.swift:332:15:332:15 | t2 [Tuple element at index 1] :  |
+| test.swift:322:18:322:25 | call to source() :  | test.swift:322:14:322:45 | (...) [Tuple element at index 0] :  |
+| test.swift:322:31:322:38 | call to source() :  | test.swift:322:14:322:45 | (...) [Tuple element at index 1] :  |
+| test.swift:327:15:327:15 | t1 [Tuple element at index 0] :  | test.swift:327:15:327:18 | .0 |
+| test.swift:328:15:328:15 | t1 [Tuple element at index 1] :  | test.swift:328:15:328:18 | .1 |
+| test.swift:331:15:331:15 | t2 [Tuple element at index 0] :  | test.swift:331:15:331:18 | .0 |
+| test.swift:332:15:332:15 | t2 [Tuple element at index 1] :  | test.swift:332:15:332:18 | .1 |
 nodes
 | file://:0:0:0:0 | .a [x] :  | semmle.label | .a [x] :  |
 | file://:0:0:0:0 | .x :  | semmle.label | .x :  |
@@ -237,32 +238,33 @@ nodes
 | test.swift:238:13:238:15 | .source_value | semmle.label | .source_value |
 | test.swift:259:12:259:19 | call to source() :  | semmle.label | call to source() :  |
 | test.swift:263:13:263:28 | call to optionalSource() :  | semmle.label | call to optionalSource() :  |
-| test.swift:264:15:264:16 | ...! | semmle.label | ...! |
-| test.swift:265:15:265:22 | call to source() :  | semmle.label | call to source() :  |
-| test.swift:265:15:265:31 | call to signum() | semmle.label | call to signum() |
-| test.swift:266:15:266:16 | ...? :  | semmle.label | ...? :  |
-| test.swift:266:15:266:25 | OptionalEvaluationExpr | semmle.label | OptionalEvaluationExpr |
-| test.swift:266:15:266:25 | call to signum() :  | semmle.label | call to signum() :  |
-| test.swift:277:14:277:26 | (...) [Tuple element at index 1] :  | semmle.label | (...) [Tuple element at index 1] :  |
-| test.swift:277:18:277:25 | call to source() :  | semmle.label | call to source() :  |
-| test.swift:281:15:281:15 | t1 [Tuple element at index 1] :  | semmle.label | t1 [Tuple element at index 1] :  |
-| test.swift:281:15:281:18 | .1 | semmle.label | .1 |
-| test.swift:289:5:289:5 | [post] t1 [Tuple element at index 0] :  | semmle.label | [post] t1 [Tuple element at index 0] :  |
-| test.swift:289:12:289:19 | call to source() :  | semmle.label | call to source() :  |
-| test.swift:292:15:292:15 | t1 [Tuple element at index 0] :  | semmle.label | t1 [Tuple element at index 0] :  |
-| test.swift:292:15:292:18 | .0 | semmle.label | .0 |
-| test.swift:297:14:297:45 | (...) [Tuple element at index 0] :  | semmle.label | (...) [Tuple element at index 0] :  |
-| test.swift:297:14:297:45 | (...) [Tuple element at index 1] :  | semmle.label | (...) [Tuple element at index 1] :  |
-| test.swift:297:18:297:25 | call to source() :  | semmle.label | call to source() :  |
-| test.swift:297:31:297:38 | call to source() :  | semmle.label | call to source() :  |
-| test.swift:302:15:302:15 | t1 [Tuple element at index 0] :  | semmle.label | t1 [Tuple element at index 0] :  |
-| test.swift:302:15:302:18 | .0 | semmle.label | .0 |
-| test.swift:303:15:303:15 | t1 [Tuple element at index 1] :  | semmle.label | t1 [Tuple element at index 1] :  |
-| test.swift:303:15:303:18 | .1 | semmle.label | .1 |
-| test.swift:306:15:306:15 | t2 [Tuple element at index 0] :  | semmle.label | t2 [Tuple element at index 0] :  |
-| test.swift:306:15:306:18 | .0 | semmle.label | .0 |
-| test.swift:307:15:307:15 | t2 [Tuple element at index 1] :  | semmle.label | t2 [Tuple element at index 1] :  |
-| test.swift:307:15:307:18 | .1 | semmle.label | .1 |
+| test.swift:265:15:265:15 | x | semmle.label | x |
+| test.swift:267:15:267:16 | ...! | semmle.label | ...! |
+| test.swift:270:15:270:22 | call to source() :  | semmle.label | call to source() :  |
+| test.swift:270:15:270:31 | call to signum() | semmle.label | call to signum() |
+| test.swift:271:15:271:16 | ...? :  | semmle.label | ...? :  |
+| test.swift:271:15:271:25 | OptionalEvaluationExpr | semmle.label | OptionalEvaluationExpr |
+| test.swift:271:15:271:25 | call to signum() :  | semmle.label | call to signum() :  |
+| test.swift:302:14:302:26 | (...) [Tuple element at index 1] :  | semmle.label | (...) [Tuple element at index 1] :  |
+| test.swift:302:18:302:25 | call to source() :  | semmle.label | call to source() :  |
+| test.swift:306:15:306:15 | t1 [Tuple element at index 1] :  | semmle.label | t1 [Tuple element at index 1] :  |
+| test.swift:306:15:306:18 | .1 | semmle.label | .1 |
+| test.swift:314:5:314:5 | [post] t1 [Tuple element at index 0] :  | semmle.label | [post] t1 [Tuple element at index 0] :  |
+| test.swift:314:12:314:19 | call to source() :  | semmle.label | call to source() :  |
+| test.swift:317:15:317:15 | t1 [Tuple element at index 0] :  | semmle.label | t1 [Tuple element at index 0] :  |
+| test.swift:317:15:317:18 | .0 | semmle.label | .0 |
+| test.swift:322:14:322:45 | (...) [Tuple element at index 0] :  | semmle.label | (...) [Tuple element at index 0] :  |
+| test.swift:322:14:322:45 | (...) [Tuple element at index 1] :  | semmle.label | (...) [Tuple element at index 1] :  |
+| test.swift:322:18:322:25 | call to source() :  | semmle.label | call to source() :  |
+| test.swift:322:31:322:38 | call to source() :  | semmle.label | call to source() :  |
+| test.swift:327:15:327:15 | t1 [Tuple element at index 0] :  | semmle.label | t1 [Tuple element at index 0] :  |
+| test.swift:327:15:327:18 | .0 | semmle.label | .0 |
+| test.swift:328:15:328:15 | t1 [Tuple element at index 1] :  | semmle.label | t1 [Tuple element at index 1] :  |
+| test.swift:328:15:328:18 | .1 | semmle.label | .1 |
+| test.swift:331:15:331:15 | t2 [Tuple element at index 0] :  | semmle.label | t2 [Tuple element at index 0] :  |
+| test.swift:331:15:331:18 | .0 | semmle.label | .0 |
+| test.swift:332:15:332:15 | t2 [Tuple element at index 1] :  | semmle.label | t2 [Tuple element at index 1] :  |
+| test.swift:332:15:332:18 | .1 | semmle.label | .1 |
 subpaths
 | test.swift:75:21:75:22 | &... :  | test.swift:65:16:65:28 | arg1 :  | test.swift:65:1:70:1 | arg2[return] :  | test.swift:75:31:75:32 | [post] &... :  |
 | test.swift:114:19:114:19 | arg :  | test.swift:109:9:109:14 | arg :  | test.swift:110:12:110:12 | arg :  | test.swift:114:12:114:22 | call to ... :  |
@@ -289,8 +291,8 @@ subpaths
 | test.swift:218:11:218:18 | call to source() :  | test.swift:169:12:169:22 | value :  | test.swift:170:5:170:5 | [post] self [x] :  | test.swift:218:3:218:5 | [post] getter for .a [x] :  |
 | test.swift:219:13:219:13 | b [a, x] :  | test.swift:185:7:185:7 | self [a, x] :  | file://:0:0:0:0 | .a [x] :  | test.swift:219:13:219:15 | .a [x] :  |
 | test.swift:219:13:219:15 | .a [x] :  | test.swift:163:7:163:7 | self [x] :  | file://:0:0:0:0 | .x :  | test.swift:219:13:219:17 | .x |
-| test.swift:265:15:265:22 | call to source() :  | file://:0:0:0:0 | [summary param] this in signum() :  | file://:0:0:0:0 | [summary] to write: return (return) in signum() :  | test.swift:265:15:265:31 | call to signum() |
-| test.swift:266:15:266:16 | ...? :  | file://:0:0:0:0 | [summary param] this in signum() :  | file://:0:0:0:0 | [summary] to write: return (return) in signum() :  | test.swift:266:15:266:25 | call to signum() :  |
+| test.swift:270:15:270:22 | call to source() :  | file://:0:0:0:0 | [summary param] this in signum() :  | file://:0:0:0:0 | [summary] to write: return (return) in signum() :  | test.swift:270:15:270:31 | call to signum() |
+| test.swift:271:15:271:16 | ...? :  | file://:0:0:0:0 | [summary param] this in signum() :  | file://:0:0:0:0 | [summary] to write: return (return) in signum() :  | test.swift:271:15:271:25 | call to signum() :  |
 #select
 | test.swift:7:15:7:15 | t1 | test.swift:6:19:6:26 | call to source() :  | test.swift:7:15:7:15 | t1 | result |
 | test.swift:9:15:9:15 | t1 | test.swift:6:19:6:26 | call to source() :  | test.swift:9:15:9:15 | t1 | result |
@@ -320,12 +322,13 @@ subpaths
 | test.swift:219:13:219:17 | .x | test.swift:218:11:218:18 | call to source() :  | test.swift:219:13:219:17 | .x | result |
 | test.swift:235:13:235:15 | .source_value | test.swift:225:14:225:21 | call to source() :  | test.swift:235:13:235:15 | .source_value | result |
 | test.swift:238:13:238:15 | .source_value | test.swift:225:14:225:21 | call to source() :  | test.swift:238:13:238:15 | .source_value | result |
-| test.swift:264:15:264:16 | ...! | test.swift:259:12:259:19 | call to source() :  | test.swift:264:15:264:16 | ...! | result |
-| test.swift:265:15:265:31 | call to signum() | test.swift:265:15:265:22 | call to source() :  | test.swift:265:15:265:31 | call to signum() | result |
-| test.swift:266:15:266:25 | OptionalEvaluationExpr | test.swift:259:12:259:19 | call to source() :  | test.swift:266:15:266:25 | OptionalEvaluationExpr | result |
-| test.swift:281:15:281:18 | .1 | test.swift:277:18:277:25 | call to source() :  | test.swift:281:15:281:18 | .1 | result |
-| test.swift:292:15:292:18 | .0 | test.swift:289:12:289:19 | call to source() :  | test.swift:292:15:292:18 | .0 | result |
-| test.swift:302:15:302:18 | .0 | test.swift:297:18:297:25 | call to source() :  | test.swift:302:15:302:18 | .0 | result |
-| test.swift:303:15:303:18 | .1 | test.swift:297:31:297:38 | call to source() :  | test.swift:303:15:303:18 | .1 | result |
-| test.swift:306:15:306:18 | .0 | test.swift:297:18:297:25 | call to source() :  | test.swift:306:15:306:18 | .0 | result |
-| test.swift:307:15:307:18 | .1 | test.swift:297:31:297:38 | call to source() :  | test.swift:307:15:307:18 | .1 | result |
+| test.swift:265:15:265:15 | x | test.swift:259:12:259:19 | call to source() :  | test.swift:265:15:265:15 | x | result |
+| test.swift:267:15:267:16 | ...! | test.swift:259:12:259:19 | call to source() :  | test.swift:267:15:267:16 | ...! | result |
+| test.swift:270:15:270:31 | call to signum() | test.swift:270:15:270:22 | call to source() :  | test.swift:270:15:270:31 | call to signum() | result |
+| test.swift:271:15:271:25 | OptionalEvaluationExpr | test.swift:259:12:259:19 | call to source() :  | test.swift:271:15:271:25 | OptionalEvaluationExpr | result |
+| test.swift:306:15:306:18 | .1 | test.swift:302:18:302:25 | call to source() :  | test.swift:306:15:306:18 | .1 | result |
+| test.swift:317:15:317:18 | .0 | test.swift:314:12:314:19 | call to source() :  | test.swift:317:15:317:18 | .0 | result |
+| test.swift:327:15:327:18 | .0 | test.swift:322:18:322:25 | call to source() :  | test.swift:327:15:327:18 | .0 | result |
+| test.swift:328:15:328:18 | .1 | test.swift:322:31:322:38 | call to source() :  | test.swift:328:15:328:18 | .1 | result |
+| test.swift:331:15:331:18 | .0 | test.swift:322:18:322:25 | call to source() :  | test.swift:331:15:331:18 | .0 | result |
+| test.swift:332:15:332:18 | .1 | test.swift:322:31:322:38 | call to source() :  | test.swift:332:15:332:18 | .1 | result |
diff --git a/swift/ql/test/library-tests/dataflow/dataflow/LocalFlow.expected b/swift/ql/test/library-tests/dataflow/dataflow/LocalFlow.expected
index 987d7073b87..91709720aa2 100644
--- a/swift/ql/test/library-tests/dataflow/dataflow/LocalFlow.expected
+++ b/swift/ql/test/library-tests/dataflow/dataflow/LocalFlow.expected
@@ -184,52 +184,86 @@
 | test.swift:247:9:247:9 | [post] self | test.swift:246:5:248:5 | self[return] |
 | test.swift:247:9:247:9 | self | test.swift:246:5:248:5 | self[return] |
 | test.swift:252:23:252:23 | value | test.swift:252:23:252:23 | WriteDef |
-| test.swift:263:9:263:9 | WriteDef | test.swift:264:15:264:15 | x |
+| test.swift:262:21:262:27 | WriteDef | test.swift:266:15:266:15 | y |
+| test.swift:262:21:262:27 | y | test.swift:262:21:262:27 | WriteDef |
+| test.swift:263:9:263:9 | WriteDef | test.swift:265:15:265:15 | x |
 | test.swift:263:13:263:28 | call to optionalSource() | test.swift:263:9:263:9 | WriteDef |
-| test.swift:264:15:264:15 | x | test.swift:264:15:264:16 | ...! |
-| test.swift:264:15:264:15 | x | test.swift:266:15:266:15 | x |
-| test.swift:266:15:266:15 | x | test.swift:266:15:266:16 | ...? |
-| test.swift:266:15:266:15 | x | test.swift:267:15:267:15 | x |
-| test.swift:266:15:266:25 | call to signum() | test.swift:266:15:266:25 | OptionalEvaluationExpr |
-| test.swift:267:15:267:15 | x | test.swift:268:16:268:16 | x |
-| test.swift:277:9:277:9 | WriteDef | test.swift:279:15:279:15 | t1 |
-| test.swift:277:14:277:26 | (...) | test.swift:277:9:277:9 | WriteDef |
-| test.swift:279:15:279:15 | t1 | test.swift:280:15:280:15 | t1 |
-| test.swift:280:15:280:15 | [post] t1 | test.swift:281:15:281:15 | t1 |
-| test.swift:280:15:280:15 | t1 | test.swift:281:15:281:15 | t1 |
-| test.swift:281:15:281:15 | [post] t1 | test.swift:283:5:283:5 | t1 |
-| test.swift:281:15:281:15 | t1 | test.swift:283:5:283:5 | t1 |
-| test.swift:283:5:283:5 | [post] t1 | test.swift:285:15:285:15 | t1 |
-| test.swift:283:5:283:5 | t1 | test.swift:285:15:285:15 | t1 |
-| test.swift:285:15:285:15 | t1 | test.swift:286:15:286:15 | t1 |
-| test.swift:286:15:286:15 | [post] t1 | test.swift:287:15:287:15 | t1 |
-| test.swift:286:15:286:15 | t1 | test.swift:287:15:287:15 | t1 |
-| test.swift:287:15:287:15 | [post] t1 | test.swift:289:5:289:5 | t1 |
-| test.swift:287:15:287:15 | t1 | test.swift:289:5:289:5 | t1 |
-| test.swift:289:5:289:5 | [post] t1 | test.swift:291:15:291:15 | t1 |
-| test.swift:289:5:289:5 | t1 | test.swift:291:15:291:15 | t1 |
-| test.swift:291:15:291:15 | t1 | test.swift:292:15:292:15 | t1 |
-| test.swift:292:15:292:15 | [post] t1 | test.swift:293:15:293:15 | t1 |
-| test.swift:292:15:292:15 | t1 | test.swift:293:15:293:15 | t1 |
-| test.swift:297:9:297:9 | WriteDef | test.swift:298:14:298:14 | t1 |
-| test.swift:297:14:297:45 | (...) | test.swift:297:9:297:9 | WriteDef |
-| test.swift:298:9:298:9 | WriteDef | test.swift:305:15:305:15 | t2 |
-| test.swift:298:14:298:14 | t1 | test.swift:298:9:298:9 | WriteDef |
-| test.swift:298:14:298:14 | t1 | test.swift:299:21:299:21 | t1 |
-| test.swift:299:9:299:17 | WriteDef | test.swift:309:15:309:15 | a |
-| test.swift:299:9:299:17 | WriteDef | test.swift:310:15:310:15 | b |
-| test.swift:299:9:299:17 | WriteDef | test.swift:311:15:311:15 | c |
-| test.swift:299:21:299:21 | t1 | test.swift:299:9:299:17 | WriteDef |
-| test.swift:299:21:299:21 | t1 | test.swift:299:9:299:17 | WriteDef |
-| test.swift:299:21:299:21 | t1 | test.swift:299:9:299:17 | WriteDef |
-| test.swift:299:21:299:21 | t1 | test.swift:301:15:301:15 | t1 |
-| test.swift:301:15:301:15 | t1 | test.swift:302:15:302:15 | t1 |
-| test.swift:302:15:302:15 | [post] t1 | test.swift:303:15:303:15 | t1 |
-| test.swift:302:15:302:15 | t1 | test.swift:303:15:303:15 | t1 |
-| test.swift:303:15:303:15 | [post] t1 | test.swift:304:15:304:15 | t1 |
-| test.swift:303:15:303:15 | t1 | test.swift:304:15:304:15 | t1 |
-| test.swift:305:15:305:15 | t2 | test.swift:306:15:306:15 | t2 |
-| test.swift:306:15:306:15 | [post] t2 | test.swift:307:15:307:15 | t2 |
-| test.swift:306:15:306:15 | t2 | test.swift:307:15:307:15 | t2 |
-| test.swift:307:15:307:15 | [post] t2 | test.swift:308:15:308:15 | t2 |
-| test.swift:307:15:307:15 | t2 | test.swift:308:15:308:15 | t2 |
+| test.swift:265:15:265:15 | x | test.swift:267:15:267:15 | x |
+| test.swift:266:15:266:15 | y | test.swift:268:15:268:15 | y |
+| test.swift:267:15:267:15 | x | test.swift:267:15:267:16 | ...! |
+| test.swift:267:15:267:15 | x | test.swift:271:15:271:15 | x |
+| test.swift:268:15:268:15 | y | test.swift:268:15:268:16 | ...! |
+| test.swift:268:15:268:15 | y | test.swift:272:15:272:15 | y |
+| test.swift:271:15:271:15 | x | test.swift:271:15:271:16 | ...? |
+| test.swift:271:15:271:15 | x | test.swift:274:15:274:15 | x |
+| test.swift:271:15:271:25 | call to signum() | test.swift:271:15:271:25 | OptionalEvaluationExpr |
+| test.swift:272:15:272:15 | y | test.swift:272:15:272:16 | ...? |
+| test.swift:272:15:272:15 | y | test.swift:276:15:276:15 | y |
+| test.swift:272:15:272:25 | call to signum() | test.swift:272:15:272:25 | OptionalEvaluationExpr |
+| test.swift:274:15:274:15 | x | test.swift:275:15:275:15 | x |
+| test.swift:275:15:275:15 | x | test.swift:279:15:279:15 | x |
+| test.swift:276:15:276:15 | y | test.swift:277:15:277:15 | y |
+| test.swift:277:15:277:15 | y | test.swift:281:15:281:15 | y |
+| test.swift:279:15:279:15 | x | test.swift:279:26:279:26 | x |
+| test.swift:279:15:279:15 | x | test.swift:280:15:280:15 | x |
+| test.swift:279:26:279:26 | x | test.swift:279:26:279:27 | ...! |
+| test.swift:279:26:279:26 | x | test.swift:280:15:280:15 | x |
+| test.swift:280:15:280:15 | x | test.swift:280:26:280:26 | x |
+| test.swift:280:15:280:15 | x | test.swift:284:16:284:16 | x |
+| test.swift:280:26:280:26 | x | test.swift:280:26:280:27 | ...! |
+| test.swift:280:26:280:26 | x | test.swift:284:16:284:16 | x |
+| test.swift:281:15:281:15 | y | test.swift:281:26:281:26 | y |
+| test.swift:281:15:281:15 | y | test.swift:282:15:282:15 | y |
+| test.swift:281:26:281:26 | y | test.swift:281:26:281:27 | ...! |
+| test.swift:281:26:281:26 | y | test.swift:282:15:282:15 | y |
+| test.swift:282:15:282:15 | y | test.swift:282:26:282:26 | y |
+| test.swift:282:15:282:15 | y | test.swift:287:16:287:16 | y |
+| test.swift:282:26:282:26 | y | test.swift:282:26:282:27 | ...! |
+| test.swift:282:26:282:26 | y | test.swift:287:16:287:16 | y |
+| test.swift:284:16:284:16 | x | test.swift:290:16:290:16 | x |
+| test.swift:287:16:287:16 | y | test.swift:293:16:293:16 | y |
+| test.swift:290:16:290:16 | x | test.swift:290:16:290:17 | ...? |
+| test.swift:290:16:290:26 | call to signum() | test.swift:290:16:290:26 | OptionalEvaluationExpr |
+| test.swift:293:16:293:16 | y | test.swift:293:16:293:17 | ...? |
+| test.swift:293:16:293:26 | call to signum() | test.swift:293:16:293:26 | OptionalEvaluationExpr |
+| test.swift:304:9:304:9 | WriteDef | test.swift:306:15:306:15 | t1 |
+| test.swift:304:14:304:26 | (...) | test.swift:304:9:304:9 | WriteDef |
+| test.swift:306:15:306:15 | t1 | test.swift:307:15:307:15 | t1 |
+| test.swift:307:15:307:15 | [post] t1 | test.swift:308:15:308:15 | t1 |
+| test.swift:307:15:307:15 | t1 | test.swift:308:15:308:15 | t1 |
+| test.swift:308:15:308:15 | [post] t1 | test.swift:310:5:310:5 | t1 |
+| test.swift:308:15:308:15 | t1 | test.swift:310:5:310:5 | t1 |
+| test.swift:310:5:310:5 | [post] t1 | test.swift:312:15:312:15 | t1 |
+| test.swift:310:5:310:5 | t1 | test.swift:312:15:312:15 | t1 |
+| test.swift:312:15:312:15 | t1 | test.swift:313:15:313:15 | t1 |
+| test.swift:313:15:313:15 | [post] t1 | test.swift:314:15:314:15 | t1 |
+| test.swift:313:15:313:15 | t1 | test.swift:314:15:314:15 | t1 |
+| test.swift:314:15:314:15 | [post] t1 | test.swift:316:5:316:5 | t1 |
+| test.swift:314:15:314:15 | t1 | test.swift:316:5:316:5 | t1 |
+| test.swift:316:5:316:5 | [post] t1 | test.swift:318:15:318:15 | t1 |
+| test.swift:316:5:316:5 | t1 | test.swift:318:15:318:15 | t1 |
+| test.swift:318:15:318:15 | t1 | test.swift:319:15:319:15 | t1 |
+| test.swift:319:15:319:15 | [post] t1 | test.swift:320:15:320:15 | t1 |
+| test.swift:319:15:319:15 | t1 | test.swift:320:15:320:15 | t1 |
+| test.swift:324:9:324:9 | WriteDef | test.swift:325:14:325:14 | t1 |
+| test.swift:324:14:324:45 | (...) | test.swift:324:9:324:9 | WriteDef |
+| test.swift:325:9:325:9 | WriteDef | test.swift:332:15:332:15 | t2 |
+| test.swift:325:14:325:14 | t1 | test.swift:325:9:325:9 | WriteDef |
+| test.swift:325:14:325:14 | t1 | test.swift:326:21:326:21 | t1 |
+| test.swift:326:9:326:17 | WriteDef | test.swift:336:15:336:15 | a |
+| test.swift:326:9:326:17 | WriteDef | test.swift:337:15:337:15 | b |
+| test.swift:326:9:326:17 | WriteDef | test.swift:338:15:338:15 | c |
+| test.swift:326:21:326:21 | t1 | test.swift:326:9:326:17 | WriteDef |
+| test.swift:326:21:326:21 | t1 | test.swift:326:9:326:17 | WriteDef |
+| test.swift:326:21:326:21 | t1 | test.swift:326:9:326:17 | WriteDef |
+| test.swift:326:21:326:21 | t1 | test.swift:328:15:328:15 | t1 |
+| test.swift:328:15:328:15 | t1 | test.swift:329:15:329:15 | t1 |
+| test.swift:329:15:329:15 | [post] t1 | test.swift:330:15:330:15 | t1 |
+| test.swift:329:15:329:15 | t1 | test.swift:330:15:330:15 | t1 |
+| test.swift:330:15:330:15 | [post] t1 | test.swift:331:15:331:15 | t1 |
+| test.swift:330:15:330:15 | t1 | test.swift:331:15:331:15 | t1 |
+| test.swift:332:15:332:15 | t2 | test.swift:333:15:333:15 | t2 |
+| test.swift:333:15:333:15 | [post] t2 | test.swift:334:15:334:15 | t2 |
+| test.swift:333:15:333:15 | t2 | test.swift:334:15:334:15 | t2 |
+| test.swift:334:15:334:15 | [post] t2 | test.swift:335:15:335:15 | t2 |
+| test.swift:334:15:334:15 | t2 | test.swift:335:15:335:15 | t2 |
diff --git a/swift/ql/test/library-tests/dataflow/dataflow/test.swift b/swift/ql/test/library-tests/dataflow/dataflow/test.swift
index 23c8d138a2d..6995754e85c 100644
--- a/swift/ql/test/library-tests/dataflow/dataflow/test.swift
+++ b/swift/ql/test/library-tests/dataflow/dataflow/test.swift
@@ -259,14 +259,39 @@ func optionalSource() -> Int? {
     return source()
 }
 
-func test_optionals() {
+func test_optionals(y: Int?) {
     let x = optionalSource()
+
+    sink(opt: x) // $ flow=259
+    sink(opt: y)
     sink(arg: x!) // $ flow=259
-    sink(arg: source().signum()) // $ flow=265
+    sink(arg: y!)
+
+    sink(arg: source().signum()) // $ flow=270
     sink(opt: x?.signum()) // $ flow=259
+    sink(opt: y?.signum())
+
     sink(arg: x ?? 0) // $ MISSING: flow=259
-    if let y = x {
-        sink(arg: y) // $ MISSING: flow=259
+    sink(arg: x ?? source()) // $ MISSING: flow=259, 276
+    sink(arg: y ?? 0)
+    sink(arg: y ?? source()) // $ MISSING: flow=278
+
+    sink(arg: x != nil ? x! : 0) // $ MISSING: flow=259
+    sink(arg: x != nil ? x! : source()) // $ MISSING: flow=259, 281
+    sink(arg: y != nil ? y! : 0)
+    sink(arg: y != nil ? y! : source()) // $ MISSING: flow=283
+
+    if let z = x {
+        sink(arg: z) // $ MISSING: flow=259
+    }
+    if let z = y {
+        sink(arg: z)
+    }
+    if let z = x?.signum() { // $ MISSING: flow=259
+        sink(arg: z)
+    }
+    if let z = y?.signum() {
+        sink(arg: z)
     }
 }
 
@@ -278,7 +303,7 @@ func testTuples() {
 
     sink(arg: t1)
     sink(arg: t1.0)
-    sink(arg: t1.1) // $ flow=277
+    sink(arg: t1.1) // $ flow=302
 
     t1.1 = 2
 
@@ -289,7 +314,7 @@ func testTuples() {
     t1.0 = source()
 
     sink(arg: t1)
-    sink(arg: t1.0) // $ flow=289
+    sink(arg: t1.0) // $ flow=314
     sink(arg: t1.1)
 }
 
@@ -299,14 +324,14 @@ func testTuples2() {
     let (a, b, c) = t1
 
     sink(arg: t1)
-    sink(arg: t1.x) // $ flow=297
-    sink(arg: t1.y) // $ flow=297
+    sink(arg: t1.x) // $ flow=322
+    sink(arg: t1.y) // $ flow=322
     sink(arg: t1.z)
     sink(arg: t2)
-    sink(arg: t2.x) // $ flow=297
-    sink(arg: t2.y) // $ flow=297
+    sink(arg: t2.x) // $ flow=322
+    sink(arg: t2.y) // $ flow=322
     sink(arg: t2.z)
-    sink(arg: a) // $ MISSING: flow=297
-    sink(arg: b) // $ MISSING: flow=297
+    sink(arg: a) // $ MISSING: flow=322
+    sink(arg: b) // $ MISSING: flow=322
     sink(arg: c)
 }

From 2dbb8919424978a588ed69c1828f8a5ade13d459 Mon Sep 17 00:00:00 2001
From: Geoffrey White <40627776+geoffw0@users.noreply.github.com>
Date: Mon, 14 Nov 2022 18:29:35 +0000
Subject: [PATCH 0275/1420] Swift: Dataflow through ??.

---
 .../dataflow/internal/DataFlowPrivate.qll     |  7 ++
 .../dataflow/dataflow/DataFlow.expected       |  6 ++
 .../dataflow/dataflow/LocalFlow.expected      | 86 ++++++++++---------
 .../dataflow/dataflow/test.swift              |  4 +-
 4 files changed, 62 insertions(+), 41 deletions(-)

diff --git a/swift/ql/lib/codeql/swift/dataflow/internal/DataFlowPrivate.qll b/swift/ql/lib/codeql/swift/dataflow/internal/DataFlowPrivate.qll
index 82332b4c47d..f811a540c97 100644
--- a/swift/ql/lib/codeql/swift/dataflow/internal/DataFlowPrivate.qll
+++ b/swift/ql/lib/codeql/swift/dataflow/internal/DataFlowPrivate.qll
@@ -153,6 +153,13 @@ private module Cached {
     or
     nodeFrom.asExpr() = nodeTo.asExpr().(OptionalEvaluationExpr).getSubExpr()
     or
+    // flow through nil-coalescing operator `??`
+    exists(BinaryExpr nco |
+      nco.getFunction().(DeclRefExpr).getDecl().(FreeFunctionDecl).getName() = "??(_:_:)" and
+      nodeFrom.asExpr() = nco.getAnOperand() and
+      nodeTo.asExpr() = nco
+    )
+    or
     // flow through a flow summary (extension of `SummaryModelCsv`)
     FlowSummaryImpl::Private::Steps::summaryLocalStep(nodeFrom, nodeTo, true)
   }
diff --git a/swift/ql/test/library-tests/dataflow/dataflow/DataFlow.expected b/swift/ql/test/library-tests/dataflow/dataflow/DataFlow.expected
index 0f55b0155c3..8c9c931a4ff 100644
--- a/swift/ql/test/library-tests/dataflow/dataflow/DataFlow.expected
+++ b/swift/ql/test/library-tests/dataflow/dataflow/DataFlow.expected
@@ -103,6 +103,8 @@ edges
 | test.swift:263:13:263:28 | call to optionalSource() :  | test.swift:265:15:265:15 | x |
 | test.swift:263:13:263:28 | call to optionalSource() :  | test.swift:267:15:267:16 | ...! |
 | test.swift:263:13:263:28 | call to optionalSource() :  | test.swift:271:15:271:16 | ...? :  |
+| test.swift:263:13:263:28 | call to optionalSource() :  | test.swift:274:15:274:20 | ... ??(_:_:) ... |
+| test.swift:263:13:263:28 | call to optionalSource() :  | test.swift:275:15:275:27 | ... ??(_:_:) ... |
 | test.swift:270:15:270:22 | call to source() :  | file://:0:0:0:0 | [summary param] this in signum() :  |
 | test.swift:270:15:270:22 | call to source() :  | test.swift:270:15:270:31 | call to signum() |
 | test.swift:271:15:271:16 | ...? :  | file://:0:0:0:0 | [summary param] this in signum() :  |
@@ -245,6 +247,8 @@ nodes
 | test.swift:271:15:271:16 | ...? :  | semmle.label | ...? :  |
 | test.swift:271:15:271:25 | OptionalEvaluationExpr | semmle.label | OptionalEvaluationExpr |
 | test.swift:271:15:271:25 | call to signum() :  | semmle.label | call to signum() :  |
+| test.swift:274:15:274:20 | ... ??(_:_:) ... | semmle.label | ... ??(_:_:) ... |
+| test.swift:275:15:275:27 | ... ??(_:_:) ... | semmle.label | ... ??(_:_:) ... |
 | test.swift:302:14:302:26 | (...) [Tuple element at index 1] :  | semmle.label | (...) [Tuple element at index 1] :  |
 | test.swift:302:18:302:25 | call to source() :  | semmle.label | call to source() :  |
 | test.swift:306:15:306:15 | t1 [Tuple element at index 1] :  | semmle.label | t1 [Tuple element at index 1] :  |
@@ -326,6 +330,8 @@ subpaths
 | test.swift:267:15:267:16 | ...! | test.swift:259:12:259:19 | call to source() :  | test.swift:267:15:267:16 | ...! | result |
 | test.swift:270:15:270:31 | call to signum() | test.swift:270:15:270:22 | call to source() :  | test.swift:270:15:270:31 | call to signum() | result |
 | test.swift:271:15:271:25 | OptionalEvaluationExpr | test.swift:259:12:259:19 | call to source() :  | test.swift:271:15:271:25 | OptionalEvaluationExpr | result |
+| test.swift:274:15:274:20 | ... ??(_:_:) ... | test.swift:259:12:259:19 | call to source() :  | test.swift:274:15:274:20 | ... ??(_:_:) ... | result |
+| test.swift:275:15:275:27 | ... ??(_:_:) ... | test.swift:259:12:259:19 | call to source() :  | test.swift:275:15:275:27 | ... ??(_:_:) ... | result |
 | test.swift:306:15:306:18 | .1 | test.swift:302:18:302:25 | call to source() :  | test.swift:306:15:306:18 | .1 | result |
 | test.swift:317:15:317:18 | .0 | test.swift:314:12:314:19 | call to source() :  | test.swift:317:15:317:18 | .0 | result |
 | test.swift:327:15:327:18 | .0 | test.swift:322:18:322:25 | call to source() :  | test.swift:327:15:327:18 | .0 | result |
diff --git a/swift/ql/test/library-tests/dataflow/dataflow/LocalFlow.expected b/swift/ql/test/library-tests/dataflow/dataflow/LocalFlow.expected
index 91709720aa2..0d48a6af63f 100644
--- a/swift/ql/test/library-tests/dataflow/dataflow/LocalFlow.expected
+++ b/swift/ql/test/library-tests/dataflow/dataflow/LocalFlow.expected
@@ -200,10 +200,18 @@
 | test.swift:272:15:272:15 | y | test.swift:272:15:272:16 | ...? |
 | test.swift:272:15:272:15 | y | test.swift:276:15:276:15 | y |
 | test.swift:272:15:272:25 | call to signum() | test.swift:272:15:272:25 | OptionalEvaluationExpr |
+| test.swift:274:15:274:15 | x | test.swift:274:15:274:20 | ... ??(_:_:) ... |
 | test.swift:274:15:274:15 | x | test.swift:275:15:275:15 | x |
+| test.swift:274:20:274:20 | { ... } | test.swift:274:15:274:20 | ... ??(_:_:) ... |
+| test.swift:275:15:275:15 | x | test.swift:275:15:275:27 | ... ??(_:_:) ... |
 | test.swift:275:15:275:15 | x | test.swift:279:15:279:15 | x |
+| test.swift:275:20:275:27 | { ... } | test.swift:275:15:275:27 | ... ??(_:_:) ... |
+| test.swift:276:15:276:15 | y | test.swift:276:15:276:20 | ... ??(_:_:) ... |
 | test.swift:276:15:276:15 | y | test.swift:277:15:277:15 | y |
+| test.swift:276:20:276:20 | { ... } | test.swift:276:15:276:20 | ... ??(_:_:) ... |
+| test.swift:277:15:277:15 | y | test.swift:277:15:277:27 | ... ??(_:_:) ... |
 | test.swift:277:15:277:15 | y | test.swift:281:15:281:15 | y |
+| test.swift:277:20:277:27 | { ... } | test.swift:277:15:277:27 | ... ??(_:_:) ... |
 | test.swift:279:15:279:15 | x | test.swift:279:26:279:26 | x |
 | test.swift:279:15:279:15 | x | test.swift:280:15:280:15 | x |
 | test.swift:279:26:279:26 | x | test.swift:279:26:279:27 | ...! |
@@ -226,44 +234,44 @@
 | test.swift:290:16:290:26 | call to signum() | test.swift:290:16:290:26 | OptionalEvaluationExpr |
 | test.swift:293:16:293:16 | y | test.swift:293:16:293:17 | ...? |
 | test.swift:293:16:293:26 | call to signum() | test.swift:293:16:293:26 | OptionalEvaluationExpr |
-| test.swift:304:9:304:9 | WriteDef | test.swift:306:15:306:15 | t1 |
-| test.swift:304:14:304:26 | (...) | test.swift:304:9:304:9 | WriteDef |
-| test.swift:306:15:306:15 | t1 | test.swift:307:15:307:15 | t1 |
-| test.swift:307:15:307:15 | [post] t1 | test.swift:308:15:308:15 | t1 |
-| test.swift:307:15:307:15 | t1 | test.swift:308:15:308:15 | t1 |
-| test.swift:308:15:308:15 | [post] t1 | test.swift:310:5:310:5 | t1 |
-| test.swift:308:15:308:15 | t1 | test.swift:310:5:310:5 | t1 |
-| test.swift:310:5:310:5 | [post] t1 | test.swift:312:15:312:15 | t1 |
-| test.swift:310:5:310:5 | t1 | test.swift:312:15:312:15 | t1 |
-| test.swift:312:15:312:15 | t1 | test.swift:313:15:313:15 | t1 |
-| test.swift:313:15:313:15 | [post] t1 | test.swift:314:15:314:15 | t1 |
-| test.swift:313:15:313:15 | t1 | test.swift:314:15:314:15 | t1 |
-| test.swift:314:15:314:15 | [post] t1 | test.swift:316:5:316:5 | t1 |
-| test.swift:314:15:314:15 | t1 | test.swift:316:5:316:5 | t1 |
-| test.swift:316:5:316:5 | [post] t1 | test.swift:318:15:318:15 | t1 |
-| test.swift:316:5:316:5 | t1 | test.swift:318:15:318:15 | t1 |
-| test.swift:318:15:318:15 | t1 | test.swift:319:15:319:15 | t1 |
-| test.swift:319:15:319:15 | [post] t1 | test.swift:320:15:320:15 | t1 |
-| test.swift:319:15:319:15 | t1 | test.swift:320:15:320:15 | t1 |
-| test.swift:324:9:324:9 | WriteDef | test.swift:325:14:325:14 | t1 |
-| test.swift:324:14:324:45 | (...) | test.swift:324:9:324:9 | WriteDef |
-| test.swift:325:9:325:9 | WriteDef | test.swift:332:15:332:15 | t2 |
-| test.swift:325:14:325:14 | t1 | test.swift:325:9:325:9 | WriteDef |
-| test.swift:325:14:325:14 | t1 | test.swift:326:21:326:21 | t1 |
-| test.swift:326:9:326:17 | WriteDef | test.swift:336:15:336:15 | a |
-| test.swift:326:9:326:17 | WriteDef | test.swift:337:15:337:15 | b |
-| test.swift:326:9:326:17 | WriteDef | test.swift:338:15:338:15 | c |
-| test.swift:326:21:326:21 | t1 | test.swift:326:9:326:17 | WriteDef |
-| test.swift:326:21:326:21 | t1 | test.swift:326:9:326:17 | WriteDef |
-| test.swift:326:21:326:21 | t1 | test.swift:326:9:326:17 | WriteDef |
-| test.swift:326:21:326:21 | t1 | test.swift:328:15:328:15 | t1 |
+| test.swift:302:9:302:9 | WriteDef | test.swift:304:15:304:15 | t1 |
+| test.swift:302:14:302:26 | (...) | test.swift:302:9:302:9 | WriteDef |
+| test.swift:304:15:304:15 | t1 | test.swift:305:15:305:15 | t1 |
+| test.swift:305:15:305:15 | [post] t1 | test.swift:306:15:306:15 | t1 |
+| test.swift:305:15:305:15 | t1 | test.swift:306:15:306:15 | t1 |
+| test.swift:306:15:306:15 | [post] t1 | test.swift:308:5:308:5 | t1 |
+| test.swift:306:15:306:15 | t1 | test.swift:308:5:308:5 | t1 |
+| test.swift:308:5:308:5 | [post] t1 | test.swift:310:15:310:15 | t1 |
+| test.swift:308:5:308:5 | t1 | test.swift:310:15:310:15 | t1 |
+| test.swift:310:15:310:15 | t1 | test.swift:311:15:311:15 | t1 |
+| test.swift:311:15:311:15 | [post] t1 | test.swift:312:15:312:15 | t1 |
+| test.swift:311:15:311:15 | t1 | test.swift:312:15:312:15 | t1 |
+| test.swift:312:15:312:15 | [post] t1 | test.swift:314:5:314:5 | t1 |
+| test.swift:312:15:312:15 | t1 | test.swift:314:5:314:5 | t1 |
+| test.swift:314:5:314:5 | [post] t1 | test.swift:316:15:316:15 | t1 |
+| test.swift:314:5:314:5 | t1 | test.swift:316:15:316:15 | t1 |
+| test.swift:316:15:316:15 | t1 | test.swift:317:15:317:15 | t1 |
+| test.swift:317:15:317:15 | [post] t1 | test.swift:318:15:318:15 | t1 |
+| test.swift:317:15:317:15 | t1 | test.swift:318:15:318:15 | t1 |
+| test.swift:322:9:322:9 | WriteDef | test.swift:323:14:323:14 | t1 |
+| test.swift:322:14:322:45 | (...) | test.swift:322:9:322:9 | WriteDef |
+| test.swift:323:9:323:9 | WriteDef | test.swift:330:15:330:15 | t2 |
+| test.swift:323:14:323:14 | t1 | test.swift:323:9:323:9 | WriteDef |
+| test.swift:323:14:323:14 | t1 | test.swift:324:21:324:21 | t1 |
+| test.swift:324:9:324:17 | WriteDef | test.swift:334:15:334:15 | a |
+| test.swift:324:9:324:17 | WriteDef | test.swift:335:15:335:15 | b |
+| test.swift:324:9:324:17 | WriteDef | test.swift:336:15:336:15 | c |
+| test.swift:324:21:324:21 | t1 | test.swift:324:9:324:17 | WriteDef |
+| test.swift:324:21:324:21 | t1 | test.swift:324:9:324:17 | WriteDef |
+| test.swift:324:21:324:21 | t1 | test.swift:324:9:324:17 | WriteDef |
+| test.swift:324:21:324:21 | t1 | test.swift:326:15:326:15 | t1 |
+| test.swift:326:15:326:15 | t1 | test.swift:327:15:327:15 | t1 |
+| test.swift:327:15:327:15 | [post] t1 | test.swift:328:15:328:15 | t1 |
+| test.swift:327:15:327:15 | t1 | test.swift:328:15:328:15 | t1 |
+| test.swift:328:15:328:15 | [post] t1 | test.swift:329:15:329:15 | t1 |
 | test.swift:328:15:328:15 | t1 | test.swift:329:15:329:15 | t1 |
-| test.swift:329:15:329:15 | [post] t1 | test.swift:330:15:330:15 | t1 |
-| test.swift:329:15:329:15 | t1 | test.swift:330:15:330:15 | t1 |
-| test.swift:330:15:330:15 | [post] t1 | test.swift:331:15:331:15 | t1 |
-| test.swift:330:15:330:15 | t1 | test.swift:331:15:331:15 | t1 |
+| test.swift:330:15:330:15 | t2 | test.swift:331:15:331:15 | t2 |
+| test.swift:331:15:331:15 | [post] t2 | test.swift:332:15:332:15 | t2 |
+| test.swift:331:15:331:15 | t2 | test.swift:332:15:332:15 | t2 |
+| test.swift:332:15:332:15 | [post] t2 | test.swift:333:15:333:15 | t2 |
 | test.swift:332:15:332:15 | t2 | test.swift:333:15:333:15 | t2 |
-| test.swift:333:15:333:15 | [post] t2 | test.swift:334:15:334:15 | t2 |
-| test.swift:333:15:333:15 | t2 | test.swift:334:15:334:15 | t2 |
-| test.swift:334:15:334:15 | [post] t2 | test.swift:335:15:335:15 | t2 |
-| test.swift:334:15:334:15 | t2 | test.swift:335:15:335:15 | t2 |
diff --git a/swift/ql/test/library-tests/dataflow/dataflow/test.swift b/swift/ql/test/library-tests/dataflow/dataflow/test.swift
index 6995754e85c..a8a90fd5dca 100644
--- a/swift/ql/test/library-tests/dataflow/dataflow/test.swift
+++ b/swift/ql/test/library-tests/dataflow/dataflow/test.swift
@@ -271,8 +271,8 @@ func test_optionals(y: Int?) {
     sink(opt: x?.signum()) // $ flow=259
     sink(opt: y?.signum())
 
-    sink(arg: x ?? 0) // $ MISSING: flow=259
-    sink(arg: x ?? source()) // $ MISSING: flow=259, 276
+    sink(arg: x ?? 0) // $ flow=259
+    sink(arg: x ?? source()) // $ flow=259 MISSING: flow=276
     sink(arg: y ?? 0)
     sink(arg: y ?? source()) // $ MISSING: flow=278
 

From 52d5578fb5d842e5c07dc40ef2387588b3345893 Mon Sep 17 00:00:00 2001
From: Geoffrey White <40627776+geoffw0@users.noreply.github.com>
Date: Mon, 14 Nov 2022 22:10:17 +0000
Subject: [PATCH 0276/1420] Swift: Dataflow through second argument of ??.

---
 .../codeql/swift/dataflow/internal/DataFlowPrivate.qll   | 9 ++++++++-
 1 file changed, 8 insertions(+), 1 deletion(-)

diff --git a/swift/ql/lib/codeql/swift/dataflow/internal/DataFlowPrivate.qll b/swift/ql/lib/codeql/swift/dataflow/internal/DataFlowPrivate.qll
index f811a540c97..81a8bd4c85a 100644
--- a/swift/ql/lib/codeql/swift/dataflow/internal/DataFlowPrivate.qll
+++ b/swift/ql/lib/codeql/swift/dataflow/internal/DataFlowPrivate.qll
@@ -156,7 +156,14 @@ private module Cached {
     // flow through nil-coalescing operator `??`
     exists(BinaryExpr nco |
       nco.getFunction().(DeclRefExpr).getDecl().(FreeFunctionDecl).getName() = "??(_:_:)" and
-      nodeFrom.asExpr() = nco.getAnOperand() and
+      (
+        // value argument
+        nodeFrom.asExpr() = nco.getAnOperand()
+        or
+        // unpack closure (the second argument is typically an `AutoClosureExpr` argument)
+        nodeFrom.asExpr() =
+          nco.getAnOperand().(AbstractClosureExpr).getBody().getAnElement().(ReturnStmt).getResult()
+      ) and
       nodeTo.asExpr() = nco
     )
     or

From 4c806a442aa6f193af9fcb38b7bcb87d26171519 Mon Sep 17 00:00:00 2001
From: Geoffrey White <40627776+geoffw0@users.noreply.github.com>
Date: Tue, 15 Nov 2022 11:53:34 +0000
Subject: [PATCH 0277/1420] Swift: Dataflow through ? :.

---
 .../swift/dataflow/internal/DataFlowPrivate.qll     |  9 +++++++++
 .../dataflow/dataflow/DataFlow.expected             | 13 +++++++++++++
 .../dataflow/dataflow/LocalFlow.expected            |  8 ++++++++
 .../test/library-tests/dataflow/dataflow/test.swift |  6 +++---
 4 files changed, 33 insertions(+), 3 deletions(-)

diff --git a/swift/ql/lib/codeql/swift/dataflow/internal/DataFlowPrivate.qll b/swift/ql/lib/codeql/swift/dataflow/internal/DataFlowPrivate.qll
index 81a8bd4c85a..7fcabf587ef 100644
--- a/swift/ql/lib/codeql/swift/dataflow/internal/DataFlowPrivate.qll
+++ b/swift/ql/lib/codeql/swift/dataflow/internal/DataFlowPrivate.qll
@@ -167,6 +167,15 @@ private module Cached {
       nodeTo.asExpr() = nco
     )
     or
+    // flow through ternary operator `? :`
+    exists(IfExpr ie |
+      nodeTo.asExpr() = ie and
+      (
+        nodeFrom.asExpr() = ie.getThenExpr() or
+        nodeFrom.asExpr() = ie.getElseExpr()
+      )
+    )
+    or
     // flow through a flow summary (extension of `SummaryModelCsv`)
     FlowSummaryImpl::Private::Steps::summaryLocalStep(nodeFrom, nodeTo, true)
   }
diff --git a/swift/ql/test/library-tests/dataflow/dataflow/DataFlow.expected b/swift/ql/test/library-tests/dataflow/dataflow/DataFlow.expected
index 8c9c931a4ff..1277d30cdc2 100644
--- a/swift/ql/test/library-tests/dataflow/dataflow/DataFlow.expected
+++ b/swift/ql/test/library-tests/dataflow/dataflow/DataFlow.expected
@@ -105,11 +105,15 @@ edges
 | test.swift:263:13:263:28 | call to optionalSource() :  | test.swift:271:15:271:16 | ...? :  |
 | test.swift:263:13:263:28 | call to optionalSource() :  | test.swift:274:15:274:20 | ... ??(_:_:) ... |
 | test.swift:263:13:263:28 | call to optionalSource() :  | test.swift:275:15:275:27 | ... ??(_:_:) ... |
+| test.swift:263:13:263:28 | call to optionalSource() :  | test.swift:279:15:279:31 | ... ? ... : ... |
+| test.swift:263:13:263:28 | call to optionalSource() :  | test.swift:280:15:280:38 | ... ? ... : ... |
 | test.swift:270:15:270:22 | call to source() :  | file://:0:0:0:0 | [summary param] this in signum() :  |
 | test.swift:270:15:270:22 | call to source() :  | test.swift:270:15:270:31 | call to signum() |
 | test.swift:271:15:271:16 | ...? :  | file://:0:0:0:0 | [summary param] this in signum() :  |
 | test.swift:271:15:271:16 | ...? :  | test.swift:271:15:271:25 | call to signum() :  |
 | test.swift:271:15:271:25 | call to signum() :  | test.swift:271:15:271:25 | OptionalEvaluationExpr |
+| test.swift:280:31:280:38 | call to source() :  | test.swift:280:15:280:38 | ... ? ... : ... |
+| test.swift:282:31:282:38 | call to source() :  | test.swift:282:15:282:38 | ... ? ... : ... |
 | test.swift:302:14:302:26 | (...) [Tuple element at index 1] :  | test.swift:306:15:306:15 | t1 [Tuple element at index 1] :  |
 | test.swift:302:18:302:25 | call to source() :  | test.swift:302:14:302:26 | (...) [Tuple element at index 1] :  |
 | test.swift:306:15:306:15 | t1 [Tuple element at index 1] :  | test.swift:306:15:306:18 | .1 |
@@ -249,6 +253,11 @@ nodes
 | test.swift:271:15:271:25 | call to signum() :  | semmle.label | call to signum() :  |
 | test.swift:274:15:274:20 | ... ??(_:_:) ... | semmle.label | ... ??(_:_:) ... |
 | test.swift:275:15:275:27 | ... ??(_:_:) ... | semmle.label | ... ??(_:_:) ... |
+| test.swift:279:15:279:31 | ... ? ... : ... | semmle.label | ... ? ... : ... |
+| test.swift:280:15:280:38 | ... ? ... : ... | semmle.label | ... ? ... : ... |
+| test.swift:280:31:280:38 | call to source() :  | semmle.label | call to source() :  |
+| test.swift:282:15:282:38 | ... ? ... : ... | semmle.label | ... ? ... : ... |
+| test.swift:282:31:282:38 | call to source() :  | semmle.label | call to source() :  |
 | test.swift:302:14:302:26 | (...) [Tuple element at index 1] :  | semmle.label | (...) [Tuple element at index 1] :  |
 | test.swift:302:18:302:25 | call to source() :  | semmle.label | call to source() :  |
 | test.swift:306:15:306:15 | t1 [Tuple element at index 1] :  | semmle.label | t1 [Tuple element at index 1] :  |
@@ -332,6 +341,10 @@ subpaths
 | test.swift:271:15:271:25 | OptionalEvaluationExpr | test.swift:259:12:259:19 | call to source() :  | test.swift:271:15:271:25 | OptionalEvaluationExpr | result |
 | test.swift:274:15:274:20 | ... ??(_:_:) ... | test.swift:259:12:259:19 | call to source() :  | test.swift:274:15:274:20 | ... ??(_:_:) ... | result |
 | test.swift:275:15:275:27 | ... ??(_:_:) ... | test.swift:259:12:259:19 | call to source() :  | test.swift:275:15:275:27 | ... ??(_:_:) ... | result |
+| test.swift:279:15:279:31 | ... ? ... : ... | test.swift:259:12:259:19 | call to source() :  | test.swift:279:15:279:31 | ... ? ... : ... | result |
+| test.swift:280:15:280:38 | ... ? ... : ... | test.swift:259:12:259:19 | call to source() :  | test.swift:280:15:280:38 | ... ? ... : ... | result |
+| test.swift:280:15:280:38 | ... ? ... : ... | test.swift:280:31:280:38 | call to source() :  | test.swift:280:15:280:38 | ... ? ... : ... | result |
+| test.swift:282:15:282:38 | ... ? ... : ... | test.swift:282:31:282:38 | call to source() :  | test.swift:282:15:282:38 | ... ? ... : ... | result |
 | test.swift:306:15:306:18 | .1 | test.swift:302:18:302:25 | call to source() :  | test.swift:306:15:306:18 | .1 | result |
 | test.swift:317:15:317:18 | .0 | test.swift:314:12:314:19 | call to source() :  | test.swift:317:15:317:18 | .0 | result |
 | test.swift:327:15:327:18 | .0 | test.swift:322:18:322:25 | call to source() :  | test.swift:327:15:327:18 | .0 | result |
diff --git a/swift/ql/test/library-tests/dataflow/dataflow/LocalFlow.expected b/swift/ql/test/library-tests/dataflow/dataflow/LocalFlow.expected
index 0d48a6af63f..69e2a3ad207 100644
--- a/swift/ql/test/library-tests/dataflow/dataflow/LocalFlow.expected
+++ b/swift/ql/test/library-tests/dataflow/dataflow/LocalFlow.expected
@@ -216,18 +216,26 @@
 | test.swift:279:15:279:15 | x | test.swift:280:15:280:15 | x |
 | test.swift:279:26:279:26 | x | test.swift:279:26:279:27 | ...! |
 | test.swift:279:26:279:26 | x | test.swift:280:15:280:15 | x |
+| test.swift:279:26:279:27 | ...! | test.swift:279:15:279:31 | ... ? ... : ... |
+| test.swift:279:31:279:31 | 0 | test.swift:279:15:279:31 | ... ? ... : ... |
 | test.swift:280:15:280:15 | x | test.swift:280:26:280:26 | x |
 | test.swift:280:15:280:15 | x | test.swift:284:16:284:16 | x |
 | test.swift:280:26:280:26 | x | test.swift:280:26:280:27 | ...! |
 | test.swift:280:26:280:26 | x | test.swift:284:16:284:16 | x |
+| test.swift:280:26:280:27 | ...! | test.swift:280:15:280:38 | ... ? ... : ... |
+| test.swift:280:31:280:38 | call to source() | test.swift:280:15:280:38 | ... ? ... : ... |
 | test.swift:281:15:281:15 | y | test.swift:281:26:281:26 | y |
 | test.swift:281:15:281:15 | y | test.swift:282:15:282:15 | y |
 | test.swift:281:26:281:26 | y | test.swift:281:26:281:27 | ...! |
 | test.swift:281:26:281:26 | y | test.swift:282:15:282:15 | y |
+| test.swift:281:26:281:27 | ...! | test.swift:281:15:281:31 | ... ? ... : ... |
+| test.swift:281:31:281:31 | 0 | test.swift:281:15:281:31 | ... ? ... : ... |
 | test.swift:282:15:282:15 | y | test.swift:282:26:282:26 | y |
 | test.swift:282:15:282:15 | y | test.swift:287:16:287:16 | y |
 | test.swift:282:26:282:26 | y | test.swift:282:26:282:27 | ...! |
 | test.swift:282:26:282:26 | y | test.swift:287:16:287:16 | y |
+| test.swift:282:26:282:27 | ...! | test.swift:282:15:282:38 | ... ? ... : ... |
+| test.swift:282:31:282:38 | call to source() | test.swift:282:15:282:38 | ... ? ... : ... |
 | test.swift:284:16:284:16 | x | test.swift:290:16:290:16 | x |
 | test.swift:287:16:287:16 | y | test.swift:293:16:293:16 | y |
 | test.swift:290:16:290:16 | x | test.swift:290:16:290:17 | ...? |
diff --git a/swift/ql/test/library-tests/dataflow/dataflow/test.swift b/swift/ql/test/library-tests/dataflow/dataflow/test.swift
index a8a90fd5dca..093e8c2db95 100644
--- a/swift/ql/test/library-tests/dataflow/dataflow/test.swift
+++ b/swift/ql/test/library-tests/dataflow/dataflow/test.swift
@@ -276,10 +276,10 @@ func test_optionals(y: Int?) {
     sink(arg: y ?? 0)
     sink(arg: y ?? source()) // $ MISSING: flow=278
 
-    sink(arg: x != nil ? x! : 0) // $ MISSING: flow=259
-    sink(arg: x != nil ? x! : source()) // $ MISSING: flow=259, 281
+    sink(arg: x != nil ? x! : 0) // $ flow=259
+    sink(arg: x != nil ? x! : source()) // $ flow=259 flow=280
     sink(arg: y != nil ? y! : 0)
-    sink(arg: y != nil ? y! : source()) // $ MISSING: flow=283
+    sink(arg: y != nil ? y! : source()) // $ flow=282
 
     if let z = x {
         sink(arg: z) // $ MISSING: flow=259

From ae5689b2952f64a36f99e1d1a62bd19899ac854f Mon Sep 17 00:00:00 2001
From: Geoffrey White <40627776+geoffw0@users.noreply.github.com>
Date: Tue, 15 Nov 2022 12:04:10 +0000
Subject: [PATCH 0278/1420] Swift: Update comment.

---
 swift/ql/lib/codeql/swift/dataflow/internal/DataFlowPrivate.qll | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/swift/ql/lib/codeql/swift/dataflow/internal/DataFlowPrivate.qll b/swift/ql/lib/codeql/swift/dataflow/internal/DataFlowPrivate.qll
index 7fcabf587ef..565bb4a8e93 100644
--- a/swift/ql/lib/codeql/swift/dataflow/internal/DataFlowPrivate.qll
+++ b/swift/ql/lib/codeql/swift/dataflow/internal/DataFlowPrivate.qll
@@ -148,7 +148,7 @@ private module Cached {
     // flow through `!`
     nodeFrom.asExpr() = nodeTo.asExpr().(ForceValueExpr).getSubExpr()
     or
-    // flow through `?`
+    // flow through `?` and `?.`
     nodeFrom.asExpr() = nodeTo.asExpr().(BindOptionalExpr).getSubExpr()
     or
     nodeFrom.asExpr() = nodeTo.asExpr().(OptionalEvaluationExpr).getSubExpr()

From 65c1e239eb1249d02361e65b0ffc38a1ada60593 Mon Sep 17 00:00:00 2001
From: erik-krogh <erik-krogh@github.com>
Date: Tue, 15 Nov 2022 14:49:06 +0100
Subject: [PATCH 0279/1420] clean up the cache when compiling on main

---
 .github/workflows/compile-queries.yml | 18 +++++++++++++++++-
 1 file changed, 17 insertions(+), 1 deletion(-)

diff --git a/.github/workflows/compile-queries.yml b/.github/workflows/compile-queries.yml
index bdcf0ba8d8a..73b674aff30 100644
--- a/.github/workflows/compile-queries.yml
+++ b/.github/workflows/compile-queries.yml
@@ -56,4 +56,20 @@ jobs:
         # do full compile if running on main - this populates the cache
         if : ${{ github.event_name != 'pull_request' }}
         shell: bash
-        run: codeql query compile -j0 */ql/src --keep-going --warnings=error
\ No newline at end of file
+        run: |
+          # Move all the existing cache into another folder, so we only preserve the cache for the current queries.
+          mkdir -p ${COMBINED_CACHE_DIR}
+          rm */ql/src/.cache/{lock,size}
+          # replicate the folder structure from the .cache folders into the combined cache folder. (because cp doesn't have a "create missing folders" option)
+          find */ql/src/.cache -type d | cut -d "/" -f 6,7 | sort | uniq > folders.txt
+          cat folders.txt | xargs -I {} mkdir -p ${COMBINED_CACHE_DIR}/{}
+          # copy the contents of the .cache folders into the combined cache folder.
+          cp -r */ql/src/.cache/* ${COMBINED_CACHE_DIR}/
+          # clean up the .cache folders
+          rm -rf */ql/src/.cache/*
+          rm folders.txt
+
+          # compile the queries
+          codeql query compile -j0 */ql/src --keep-going --warnings=error --compilation-cache ${COMBINED_CACHE_DIR}
+        env: 
+          COMBINED_CACHE_DIR: ${{ github.workspace }}/compilation-dir
\ No newline at end of file

From c2171c01e1514b331f8cb41a72640a9431286699 Mon Sep 17 00:00:00 2001
From: Paolo Tranquilli <redsun82@github.com>
Date: Tue, 15 Nov 2022 15:00:30 +0100
Subject: [PATCH 0280/1420] Swift: remove double newlines in schema

While PEP8 mandates those, they look bad in the schema file.

`autopep8` already ignores those, and they were single newlines at some
point until an overeager IDE has "fixed" them at some point without me
realizing.

Also, the pre-commit configuration was updated to take `schema.py` into
account.
---
 .pre-commit-config.yaml |   4 +-
 swift/schema.py         | 279 ----------------------------------------
 2 files changed, 2 insertions(+), 281 deletions(-)

diff --git a/.pre-commit-config.yaml b/.pre-commit-config.yaml
index 50a6adf80d9..14845337b36 100644
--- a/.pre-commit-config.yaml
+++ b/.pre-commit-config.yaml
@@ -19,7 +19,7 @@ repos:
     rev: v1.6.0
     hooks:
       - id: autopep8
-        files: ^swift/codegen/.*\.py
+        files: ^swift/.*\.py
 
   - repo: local
     hooks:
@@ -44,7 +44,7 @@ repos:
 
       - id: swift-codegen
         name: Run Swift checked in code generation
-        files: ^swift/(codegen/|.*/generated/|ql/lib/(swift\.dbscheme$|codeql/swift/elements))
+        files: ^swift/(schema.py$|codegen/|.*/generated/|ql/lib/(swift\.dbscheme$|codeql/swift/elements))
         language: system
         entry: bazel run //swift/codegen -- --quiet
         pass_filenames: false
diff --git a/swift/schema.py b/swift/schema.py
index eac52c4e97b..e9e8746d0c3 100644
--- a/swift/schema.py
+++ b/swift/schema.py
@@ -11,17 +11,14 @@ from swift.codegen.lib.schema.defs import *
 
 include("prefix.dbscheme")
 
-
 @qltest.skip
 class Element:
     is_unknown: predicate | cpp.skip
 
-
 @qltest.collapse_hierarchy
 class File(Element):
     name: string
 
-
 @qltest.skip
 @qltest.collapse_hierarchy
 class Location(Element):
@@ -31,19 +28,16 @@ class Location(Element):
     end_line: int
     end_column: int
 
-
 @qltest.skip
 class Locatable(Element):
     location: optional[Location] | cpp.skip | doc("location associated with this element in the code")
 
-
 @qltest.collapse_hierarchy
 @qltest.skip
 class ErrorElement(Locatable):
     """The superclass of all elements indicating some kind of error."""
     pass
 
-
 @use_for_null
 class UnspecifiedElement(ErrorElement):
     parent: optional[Element]
@@ -51,130 +45,103 @@ class UnspecifiedElement(ErrorElement):
     index: optional[int]
     error: string
 
-
 class Comment(Locatable):
     text: string
 
-
 class Diagnostics(Locatable):
     text: string
     kind: int
 
-
 class DbFile(File):
     pass
 
-
 class DbLocation(Location):
     pass
 
-
 @synth.on_arguments()
 class UnknownFile(File):
     pass
 
-
 @synth.on_arguments()
 class UnknownLocation(Location):
     pass
 
-
 class AstNode(Locatable):
     pass
 
-
 @group("type")
 class Type(Element):
     name: string
     canonical_type: "Type"
 
-
 @group("decl")
 class Decl(AstNode):
     module: "ModuleDecl"
 
-
 @group("expr")
 class Expr(AstNode):
     """The base class for all expressions in Swift."""
     type: optional[Type]
 
-
 @group("pattern")
 class Pattern(AstNode):
     pass
 
-
 @group("stmt")
 class Stmt(AstNode):
     pass
 
-
 @group("decl")
 class GenericContext(Element):
     generic_type_params: list["GenericTypeParamDecl"] | child
 
-
 @group("decl")
 class IterableDeclContext(Element):
     members: list[Decl] | child
 
-
 class EnumCaseDecl(Decl):
     elements: list["EnumElementDecl"]
 
-
 class ExtensionDecl(GenericContext, IterableDeclContext, Decl):
     extended_type_decl: "NominalTypeDecl"
 
-
 class IfConfigDecl(Decl):
     active_elements: list[AstNode]
 
-
 class ImportDecl(Decl):
     is_exported: predicate
     imported_module: optional["ModuleDecl"]
     declarations: list["ValueDecl"]
 
-
 @qltest.skip
 class MissingMemberDecl(Decl):
     """A placeholder for missing declarations that can arise on object deserialization."""
     name: string
 
-
 class OperatorDecl(Decl):
     name: string
 
-
 class PatternBindingDecl(Decl):
     inits: list[optional[Expr]] | child
     patterns: list[Pattern] | child
 
-
 class PoundDiagnosticDecl(Decl):
     """ A diagnostic directive, which is either `#error` or `#warning`."""
     kind: int | doc("""This is 1 for `#error` and 2 for `#warning`""")
     message: "StringLiteralExpr" | child
 
-
 class PrecedenceGroupDecl(Decl):
     pass
 
-
 class TopLevelCodeDecl(Decl):
     body: "BraceStmt" | child
 
-
 class ValueDecl(Decl):
     interface_type: Type
 
-
 class AbstractStorageDecl(ValueDecl):
     accessor_decls: list["AccessorDecl"] | child
 
-
 class VarDecl(AbstractStorageDecl):
     name: string
     type: Type
@@ -198,7 +165,6 @@ class VarDecl(AbstractStorageDecl):
         prefixed with `$`.
     """)
 
-
 class ParamDecl(VarDecl):
     is_inout: predicate | doc("this is an `inout` parameter")
     property_wrapper_local_wrapped_var_binding: optional[PatternBindingDecl] | child | desc("""
@@ -210,101 +176,80 @@ class ParamDecl(VarDecl):
         has a property wrapper.
     """)
 
-
 class Callable(Element):
     self_param: optional[ParamDecl] | child
     params: list[ParamDecl] | child
     body: optional["BraceStmt"] | child | desc("The body is absent within protocol declarations.")
 
-
 class AbstractFunctionDecl(GenericContext, ValueDecl, Callable):
     name: string | doc("name of this function")
 
-
 class EnumElementDecl(ValueDecl):
     name: string
     params: list[ParamDecl] | child
 
-
 class InfixOperatorDecl(OperatorDecl):
     precedence_group: optional[PrecedenceGroupDecl]
 
-
 class PostfixOperatorDecl(OperatorDecl):
     pass
 
-
 class PrefixOperatorDecl(OperatorDecl):
     pass
 
-
 class TypeDecl(ValueDecl):
     name: string
     base_types: list[Type]
 
-
 class AbstractTypeParamDecl(TypeDecl):
     pass
 
-
 class ConstructorDecl(AbstractFunctionDecl):
     pass
 
-
 class DestructorDecl(AbstractFunctionDecl):
     pass
 
-
 class FuncDecl(AbstractFunctionDecl):
     pass
 
-
 class GenericTypeDecl(GenericContext, TypeDecl):
     pass
 
-
 class ModuleDecl(TypeDecl):
     is_builtin_module: predicate | doc("this module is the built-in one")
     is_system_module: predicate | doc("this module is a system one")
     imported_modules: list["ModuleDecl"]
     exported_modules: list["ModuleDecl"]
 
-
 class SubscriptDecl(AbstractStorageDecl, GenericContext):
     params: list[ParamDecl] | child
     element_type: Type
     element_type: Type
 
-
 class AccessorDecl(FuncDecl):
     is_getter: predicate | doc('this accessor is a getter')
     is_setter: predicate | doc('this accessor is a setter')
     is_will_set: predicate | doc('this accessor is a `willSet`, called before the property is set')
     is_did_set: predicate | doc('this accessor is a `didSet`, called after the property is set')
 
-
 class AssociatedTypeDecl(AbstractTypeParamDecl):
     pass
 
-
 class ConcreteFuncDecl(FuncDecl):
     pass
 
-
 class ConcreteVarDecl(VarDecl):
     introducer_int: int | doc("introducer enumeration value") | desc("""
         This is 0 if the variable was introduced with `let` and 1 if it was introduced with `var`.
     """)
 
-
 class GenericTypeParamDecl(AbstractTypeParamDecl):
     pass
 
-
 class NominalTypeDecl(GenericTypeDecl, IterableDeclContext):
     type: Type
 
-
 class OpaqueTypeDecl(GenericTypeDecl):
     """
     A declaration of an opaque type, that is formally equivalent to a given type but abstracts it
@@ -321,71 +266,56 @@ class OpaqueTypeDecl(GenericTypeDecl):
     opaque_generic_params: list["GenericTypeParamType"]
     opaque_generic_params: list["GenericTypeParamType"]
 
-
 class TypeAliasDecl(GenericTypeDecl):
     pass
 
-
 class ClassDecl(NominalTypeDecl):
     pass
 
-
 class EnumDecl(NominalTypeDecl):
     pass
 
-
 class ProtocolDecl(NominalTypeDecl):
     pass
 
-
 class StructDecl(NominalTypeDecl):
     pass
 
-
 @group("expr")
 class Argument(Locatable):
     label: string
     expr: Expr | child
 
-
 class AbstractClosureExpr(Expr, Callable):
     pass
 
-
 class AnyTryExpr(Expr):
     sub_expr: Expr | child
 
-
 class AppliedPropertyWrapperExpr(Expr):
     """An implicit application of a property wrapper on the argument of a call."""
     kind: int | desc("This is 1 for a wrapped value and 2 for a projected one.")
     value: Expr | child | desc("The value on which the wrapper is applied.")
     param: ParamDecl | doc("parameter declaration owning this wrapper application")
 
-
 class ApplyExpr(Expr):
     function: Expr | child | doc("function being applied")
     arguments: list[Argument] | child | doc("arguments passed to the applied function")
 
-
 class AssignExpr(Expr):
     dest: Expr | child
     source: Expr | child
 
-
 class BindOptionalExpr(Expr):
     sub_expr: Expr | child
 
-
 class CaptureListExpr(Expr):
     binding_decls: list[PatternBindingDecl] | child
     closure_body: "ClosureExpr" | child
 
-
 class CollectionExpr(Expr):
     pass
 
-
 class DeclRefExpr(Expr):
     decl: Decl
     replacement_types: list[Type]
@@ -393,125 +323,99 @@ class DeclRefExpr(Expr):
     has_direct_to_implementation_semantics: predicate
     has_ordinary_semantics: predicate
 
-
 class DefaultArgumentExpr(Expr):
     param_decl: ParamDecl
     param_index: int
     caller_side_default: optional[Expr]
 
-
 class DiscardAssignmentExpr(Expr):
     pass
 
-
 class DotSyntaxBaseIgnoredExpr(Expr):
     qualifier: Expr | child
     sub_expr: Expr | child
 
-
 class DynamicTypeExpr(Expr):
     base: Expr | child
 
-
 class EnumIsCaseExpr(Expr):
     sub_expr: Expr | child
     element: EnumElementDecl
 
-
 @qltest.skip
 class ErrorExpr(Expr, ErrorElement):
     pass
 
-
 class ExplicitCastExpr(Expr):
     sub_expr: Expr | child
 
-
 class ForceValueExpr(Expr):
     sub_expr: Expr | child
 
-
 @qltest.collapse_hierarchy
 class IdentityExpr(Expr):
     sub_expr: Expr | child
 
-
 class IfExpr(Expr):
     condition: Expr | child
     then_expr: Expr | child
     else_expr: Expr | child
 
-
 @qltest.collapse_hierarchy
 class ImplicitConversionExpr(Expr):
     sub_expr: Expr | child
 
-
 class InOutExpr(Expr):
     sub_expr: Expr | child
 
-
 class KeyPathApplicationExpr(Expr):
     base: Expr | child
     key_path: Expr | child
 
-
 class KeyPathDotExpr(Expr):
     pass
 
-
 class KeyPathExpr(Expr):
     root: optional["TypeRepr"] | child
     parsed_path: optional[Expr] | child
 
-
 class LazyInitializerExpr(Expr):
     sub_expr: Expr | child
 
-
 class LiteralExpr(Expr):
     pass
 
-
 class LookupExpr(Expr):
     base: Expr | child
     member: optional[Decl]
 
-
 class MakeTemporarilyEscapableExpr(Expr):
     escaping_closure: "OpaqueValueExpr" | child
     nonescaping_closure: Expr | child
     sub_expr: Expr | child
 
-
 @qltest.skip
 class ObjCSelectorExpr(Expr):
     sub_expr: Expr | child
     method: AbstractFunctionDecl
 
-
 class OneWayExpr(Expr):
     sub_expr: Expr | child
 
-
 class OpaqueValueExpr(Expr):
     pass
 
-
 class OpenExistentialExpr(Expr):
     sub_expr: Expr | child
     existential: Expr | child
     opaque_expr: OpaqueValueExpr | child
 
-
 class OptionalEvaluationExpr(Expr):
     sub_expr: Expr | child
 
-
 class OtherConstructorDeclRefExpr(Expr):
     constructor_decl: ConstructorDecl
 
-
 class PropertyWrapperValuePlaceholderExpr(Expr):
     """
     A placeholder substituting property initializations with `=` when the property has a property
@@ -520,233 +424,178 @@ class PropertyWrapperValuePlaceholderExpr(Expr):
     wrapped_value: optional[Expr]
     placeholder: OpaqueValueExpr
 
-
 class RebindSelfInConstructorExpr(Expr):
     sub_expr: Expr | child
     self: VarDecl
 
-
 @qltest.skip
 class SequenceExpr(Expr):
     elements: list[Expr] | child
 
-
 class SuperRefExpr(Expr):
     self: VarDecl
 
-
 class TapExpr(Expr):
     sub_expr: optional[Expr] | child
     body: "BraceStmt" | child
     var: VarDecl
 
-
 class TupleElementExpr(Expr):
     sub_expr: Expr | child
     index: int
 
-
 class TupleExpr(Expr):
     elements: list[Expr] | child
 
-
 class TypeExpr(Expr):
     type_repr: optional["TypeRepr"] | child
-
 class UnresolvedDeclRefExpr(Expr, ErrorElement):
     name: optional[string]
-
 class UnresolvedDotExpr(Expr, ErrorElement):
     base: Expr | child
     name: string
-
 class UnresolvedMemberExpr(Expr, ErrorElement):
     name: string
-
 class UnresolvedPatternExpr(Expr, ErrorElement):
     sub_pattern: Pattern | child
-
 class UnresolvedSpecializeExpr(Expr, ErrorElement):
     sub_expr: Expr | child
 
-
 class VarargExpansionExpr(Expr):
     sub_expr: Expr | child
 
-
 class AnyHashableErasureExpr(ImplicitConversionExpr):
     pass
 
-
 class ArchetypeToSuperExpr(ImplicitConversionExpr):
     pass
 
-
 class ArrayExpr(CollectionExpr):
     elements: list[Expr] | child
 
-
 class ArrayToPointerExpr(ImplicitConversionExpr):
     pass
 
-
 class AutoClosureExpr(AbstractClosureExpr):
     pass
 
-
 class AwaitExpr(IdentityExpr):
     pass
 
-
 class BinaryExpr(ApplyExpr):
     pass
 
-
 @qltest.skip
 class BridgeFromObjCExpr(ImplicitConversionExpr):
     pass
 
-
 @qltest.skip
 class BridgeToObjCExpr(ImplicitConversionExpr):
     pass
 
-
 class BuiltinLiteralExpr(LiteralExpr):
     pass
 
-
 class CallExpr(ApplyExpr):
     pass
 
-
 class CheckedCastExpr(ExplicitCastExpr):
     pass
 
-
 class ClassMetatypeToObjectExpr(ImplicitConversionExpr):
     pass
 
-
 class ClosureExpr(AbstractClosureExpr):
     pass
 
-
 class CoerceExpr(ExplicitCastExpr):
     pass
 
-
 class CollectionUpcastConversionExpr(ImplicitConversionExpr):
     pass
 
-
 @qltest.skip
 class ConditionalBridgeFromObjCExpr(ImplicitConversionExpr):
     pass
 
-
 class CovariantFunctionConversionExpr(ImplicitConversionExpr):
     pass
 
-
 class CovariantReturnConversionExpr(ImplicitConversionExpr):
     pass
 
-
 class DerivedToBaseExpr(ImplicitConversionExpr):
     pass
 
-
 class DestructureTupleExpr(ImplicitConversionExpr):
     pass
 
-
 class DictionaryExpr(CollectionExpr):
     elements: list[Expr] | child
 
-
 class DifferentiableFunctionExpr(ImplicitConversionExpr):
     pass
 
-
 class DifferentiableFunctionExtractOriginalExpr(ImplicitConversionExpr):
     pass
 
-
 class DotSelfExpr(IdentityExpr):
     pass
 
-
 @qltest.collapse_hierarchy
 class DynamicLookupExpr(LookupExpr):
     pass
 
-
 class ErasureExpr(ImplicitConversionExpr):
     pass
 
-
 class ExistentialMetatypeToObjectExpr(ImplicitConversionExpr):
     pass
 
-
 class ForceTryExpr(AnyTryExpr):
     pass
 
-
 class ForeignObjectConversionExpr(ImplicitConversionExpr):
     pass
 
-
 class FunctionConversionExpr(ImplicitConversionExpr):
     pass
 
-
 class InOutToPointerExpr(ImplicitConversionExpr):
     pass
 
-
 class InjectIntoOptionalExpr(ImplicitConversionExpr):
     pass
 
-
 class InterpolatedStringLiteralExpr(LiteralExpr):
     interpolation_expr: optional[OpaqueValueExpr]
     interpolation_count_expr: optional[Expr] | child
     literal_capacity_expr: optional[Expr] | child
     appending_expr: optional[TapExpr] | child
 
-
 class LinearFunctionExpr(ImplicitConversionExpr):
     pass
 
-
 class LinearFunctionExtractOriginalExpr(ImplicitConversionExpr):
     pass
 
-
 class LinearToDifferentiableFunctionExpr(ImplicitConversionExpr):
     pass
 
-
 class LoadExpr(ImplicitConversionExpr):
     pass
 
-
 class MemberRefExpr(LookupExpr):
     has_direct_to_storage_semantics: predicate
     has_direct_to_implementation_semantics: predicate
     has_ordinary_semantics: predicate
 
-
 class MetatypeConversionExpr(ImplicitConversionExpr):
     pass
 
-
 class NilLiteralExpr(LiteralExpr):
     pass
 
-
 class ObjectLiteralExpr(LiteralExpr):
     """
     An instance of `#fileLiteral`, `#imageLiteral` or `#colorLiteral` expressions, which are used in playgrounds.
@@ -754,11 +603,9 @@ class ObjectLiteralExpr(LiteralExpr):
     kind: int | desc("""This is 0 for `#fileLiteral`, 1 for `#imageLiteral` and 2 for `#colorLiteral`.""")
     arguments: list[Argument] | child
 
-
 class OptionalTryExpr(AnyTryExpr):
     pass
 
-
 class OverloadedDeclRefExpr(Expr, ErrorElement):
     """
     An ambiguous expression that might refer to multiple declarations. This will be present only
@@ -766,287 +613,222 @@ class OverloadedDeclRefExpr(Expr, ErrorElement):
     """
     possible_declarations: list[ValueDecl]
 
-
 class ParenExpr(IdentityExpr):
     pass
 
-
 class PointerToPointerExpr(ImplicitConversionExpr):
     pass
 
-
 class PostfixUnaryExpr(ApplyExpr):
     pass
 
-
 class PrefixUnaryExpr(ApplyExpr):
     pass
 
-
 class ProtocolMetatypeToObjectExpr(ImplicitConversionExpr):
     pass
 
-
 class RegexLiteralExpr(LiteralExpr):
     pass
 
-
 class SelfApplyExpr(ApplyExpr):
     base: Expr
 
-
 class StringToPointerExpr(ImplicitConversionExpr):
     pass
 
-
 class SubscriptExpr(LookupExpr):
     arguments: list[Argument] | child
     has_direct_to_storage_semantics: predicate
     has_direct_to_implementation_semantics: predicate
     has_ordinary_semantics: predicate
 
-
 class TryExpr(AnyTryExpr):
     pass
 
-
 class UnderlyingToOpaqueExpr(ImplicitConversionExpr):
     pass
 
-
 class UnevaluatedInstanceExpr(ImplicitConversionExpr):
     pass
-
 class UnresolvedMemberChainResultExpr(IdentityExpr, ErrorElement):
     pass
-
 class UnresolvedTypeConversionExpr(ImplicitConversionExpr, ErrorElement):
     pass
-
 class BooleanLiteralExpr(BuiltinLiteralExpr):
     value: boolean
 
-
 class ConditionalCheckedCastExpr(CheckedCastExpr):
     pass
 
-
 class ConstructorRefCallExpr(SelfApplyExpr):
     pass
 
-
 class DotSyntaxCallExpr(SelfApplyExpr):
     pass
 
-
 @synth.from_class(DotSyntaxCallExpr)
 class MethodRefExpr(LookupExpr):
     pass
 
-
 class DynamicMemberRefExpr(DynamicLookupExpr):
     pass
 
-
 class DynamicSubscriptExpr(DynamicLookupExpr):
     pass
 
-
 class ForcedCheckedCastExpr(CheckedCastExpr):
     pass
 
-
 class IsExpr(CheckedCastExpr):
     pass
 
-
 class MagicIdentifierLiteralExpr(BuiltinLiteralExpr):
     kind: string
 
-
 class NumberLiteralExpr(BuiltinLiteralExpr):
     pass
 
-
 class StringLiteralExpr(BuiltinLiteralExpr):
     value: string
 
-
 class FloatLiteralExpr(NumberLiteralExpr):
     string_value: string
 
-
 class IntegerLiteralExpr(NumberLiteralExpr):
     string_value: string
 
-
 class AnyPattern(Pattern):
     pass
 
-
 class BindingPattern(Pattern):
     sub_pattern: Pattern | child
 
-
 class BoolPattern(Pattern):
     value: boolean
 
-
 class EnumElementPattern(Pattern):
     element: EnumElementDecl
     sub_pattern: optional[Pattern] | child
 
-
 class ExprPattern(Pattern):
     sub_expr: Expr | child
 
-
 class IsPattern(Pattern):
     cast_type_repr: optional["TypeRepr"] | child
     sub_pattern: optional[Pattern] | child
 
-
 class NamedPattern(Pattern):
     name: string
 
-
 class OptionalSomePattern(Pattern):
     sub_pattern: Pattern | child
 
-
 class ParenPattern(Pattern):
     sub_pattern: Pattern | child
 
-
 class TuplePattern(Pattern):
     elements: list[Pattern] | child
 
-
 class TypedPattern(Pattern):
     sub_pattern: Pattern | child
     type_repr: optional["TypeRepr"] | child
 
-
 @group("stmt")
 class CaseLabelItem(AstNode):
     pattern: Pattern | child
     guard: optional[Expr] | child
 
-
 @group("stmt")
 class ConditionElement(AstNode):
     boolean: optional[Expr] | child
     pattern: optional[Pattern] | child
     initializer: optional[Expr] | child
 
-
 @group("stmt")
 class StmtCondition(AstNode):
     elements: list[ConditionElement] | child
 
-
 class BraceStmt(Stmt):
     elements: list[AstNode] | child
 
-
 class BreakStmt(Stmt):
     target_name: optional[string]
     target: optional[Stmt]
 
-
 class CaseStmt(Stmt):
     body: Stmt | child
     labels: list[CaseLabelItem] | child
     variables: list[VarDecl]
 
-
 class ContinueStmt(Stmt):
     target_name: optional[string]
     target: optional[Stmt]
 
-
 class DeferStmt(Stmt):
     body: BraceStmt | child
 
-
 class FailStmt(Stmt):
     pass
 
-
 class FallthroughStmt(Stmt):
     fallthrough_source: CaseStmt
     fallthrough_dest: CaseStmt
 
-
 class LabeledStmt(Stmt):
     label: optional[string]
 
-
 class PoundAssertStmt(Stmt):
     condition: Expr
     message: string
 
-
 class ReturnStmt(Stmt):
     result: optional[Expr] | child
 
-
 class ThrowStmt(Stmt):
     sub_expr: Expr | child
 
-
 class YieldStmt(Stmt):
     results: list[Expr] | child
 
-
 class DoCatchStmt(LabeledStmt):
     body: Stmt | child
     catches: list[CaseStmt] | child
 
-
 class DoStmt(LabeledStmt):
     body: BraceStmt | child
 
-
 class ForEachStmt(LabeledStmt):
     pattern: Pattern | child
     sequence: Expr | child
     where: optional[Expr] | child
     body: BraceStmt | child
 
-
 class LabeledConditionalStmt(LabeledStmt):
     condition: StmtCondition | child
 
-
 class RepeatWhileStmt(LabeledStmt):
     condition: Expr | child
     body: Stmt | child
 
-
 class SwitchStmt(LabeledStmt):
     expr: Expr | child
     cases: list[CaseStmt] | child
 
-
 class GuardStmt(LabeledConditionalStmt):
     body: BraceStmt | child
 
-
 class IfStmt(LabeledConditionalStmt):
     then: Stmt | child
     else_: optional[Stmt] | child
 
-
 class WhileStmt(LabeledConditionalStmt):
     body: Stmt | child
 
-
 @group("type")
 class TypeRepr(AstNode):
     type: Type
 
-
 @ql.default_doc_name("function type")
 class AnyFunctionType(Type):
     result: Type
@@ -1055,255 +837,194 @@ class AnyFunctionType(Type):
     is_throwing: predicate | doc("this type refers to a throwing function")
     is_async: predicate | doc("this type refers to an `async` function")
 
-
 class AnyGenericType(Type):
     parent: optional[Type]
     declaration: Decl
 
-
 class AnyMetatypeType(Type):
     pass
 
-
 @qltest.collapse_hierarchy
 class BuiltinType(Type):
     pass
 
-
 class DependentMemberType(Type):
     base_type: Type
     associated_type_decl: AssociatedTypeDecl
 
-
 class DynamicSelfType(Type):
     static_self_type: Type
-
 class ErrorType(Type, ErrorElement):
     pass
 
-
 class ExistentialType(Type):
     constraint: Type
 
-
 class InOutType(Type):
     object_type: Type
 
-
 class LValueType(Type):
     object_type: Type
 
-
 class ModuleType(Type):
     module: ModuleDecl
 
-
 class ProtocolCompositionType(Type):
     members: list[Type]
 
-
 class ReferenceStorageType(Type):
     referent_type: Type
 
-
 class SubstitutableType(Type):
     pass
 
-
 class SugarType(Type):
     pass
 
-
 class TupleType(Type):
     types: list[Type]
     names: list[optional[string]]
-
 class UnresolvedType(Type, ErrorElement):
     pass
-
 class AnyBuiltinIntegerType(BuiltinType):
     pass
 
-
 class ArchetypeType(SubstitutableType):
     interface_type: Type
     superclass: optional[Type]
     protocols: list[ProtocolDecl]
 
-
 class BuiltinBridgeObjectType(BuiltinType):
     pass
 
-
 class BuiltinDefaultActorStorageType(BuiltinType):
     pass
 
-
 class BuiltinExecutorType(BuiltinType):
     pass
 
-
 class BuiltinFloatType(BuiltinType):
     pass
 
-
 class BuiltinJobType(BuiltinType):
     pass
 
-
 class BuiltinNativeObjectType(BuiltinType):
     pass
 
-
 class BuiltinRawPointerType(BuiltinType):
     pass
 
-
 class BuiltinRawUnsafeContinuationType(BuiltinType):
     pass
 
-
 class BuiltinUnsafeValueBufferType(BuiltinType):
     pass
 
-
 class BuiltinVectorType(BuiltinType):
     pass
 
-
 class ExistentialMetatypeType(AnyMetatypeType):
     pass
 
-
 class FunctionType(AnyFunctionType):
     pass
 
-
 class GenericFunctionType(AnyFunctionType):
     """ The type of a generic function with type parameters """
     generic_params: list["GenericTypeParamType"] | doc("type {parameters} of this generic type")
 
-
 class GenericTypeParamType(SubstitutableType):
     pass
 
-
 class MetatypeType(AnyMetatypeType):
     pass
 
-
 class NominalOrBoundGenericNominalType(AnyGenericType):
     pass
 
-
 class ParenType(SugarType):
     type: Type
 
-
 class SyntaxSugarType(SugarType):
     pass
 
-
 class TypeAliasType(SugarType):
     decl: TypeAliasDecl
 
-
 class UnboundGenericType(AnyGenericType):
     pass
 
-
 class UnmanagedStorageType(ReferenceStorageType):
     pass
 
-
 class UnownedStorageType(ReferenceStorageType):
     pass
 
-
 class WeakStorageType(ReferenceStorageType):
     pass
 
-
 class BoundGenericType(NominalOrBoundGenericNominalType):
     arg_types: list[Type]
 
-
 class BuiltinIntegerLiteralType(AnyBuiltinIntegerType):
     pass
 
-
 @qltest.uncollapse_hierarchy
 class BuiltinIntegerType(AnyBuiltinIntegerType):
     width: optional[int]
 
-
 class DictionaryType(SyntaxSugarType):
     key_type: Type
     value_type: Type
 
-
 class NominalType(NominalOrBoundGenericNominalType):
     pass
 
-
 class OpaqueTypeArchetypeType(ArchetypeType):
     """An opaque type, that is a type formally equivalent to an underlying type but abstracting it away.
 
     See https://docs.swift.org/swift-book/LanguageGuide/OpaqueTypes.html."""
     declaration: OpaqueTypeDecl
 
-
 class OpenedArchetypeType(ArchetypeType):
     pass
 
-
 class PrimaryArchetypeType(ArchetypeType):
     pass
-
 class UnarySyntaxSugarType(SyntaxSugarType):
     base_type: Type
 
-
 class ArraySliceType(UnarySyntaxSugarType):
     pass
 
-
 class BoundGenericClassType(BoundGenericType):
     pass
 
-
 class BoundGenericEnumType(BoundGenericType):
     pass
 
-
 class BoundGenericStructType(BoundGenericType):
     pass
 
-
 class ClassType(NominalType):
     pass
 
-
 class EnumType(NominalType):
     pass
 
-
 class OptionalType(UnarySyntaxSugarType):
     pass
 
-
 class ProtocolType(NominalType):
     pass
 
-
 class StructType(NominalType):
     pass
 
-
 class VariadicSequenceType(UnarySyntaxSugarType):
     pass
 
-
 class ParameterizedProtocolType(Type):
     """
     A sugar type of the form `P<X>` with `P` a protocol.

From 635391eae8032f628e463d24383782f6c4df95c1 Mon Sep 17 00:00:00 2001
From: Paolo Tranquilli <redsun82@github.com>
Date: Tue, 15 Nov 2022 15:43:05 +0100
Subject: [PATCH 0281/1420] Swift: autopep8 integration tests

---
 swift/integration-tests/posix-only/cross-references/test.py | 4 ++--
 .../posix-only/frontend-invocations/test.py                 | 2 +-
 swift/integration-tests/posix-only/hello-world/test.py      | 4 ++--
 swift/integration-tests/posix-only/partial-modules/test.py  | 6 +++---
 swift/integration-tests/runner.py                           | 2 +-
 5 files changed, 9 insertions(+), 9 deletions(-)

diff --git a/swift/integration-tests/posix-only/cross-references/test.py b/swift/integration-tests/posix-only/cross-references/test.py
index 19271030c19..6f2b8b26143 100644
--- a/swift/integration-tests/posix-only/cross-references/test.py
+++ b/swift/integration-tests/posix-only/cross-references/test.py
@@ -1,6 +1,6 @@
 from create_database_utils import *
 
 run_codeql_database_create([
- 'swift package clean',
- 'swift build'
+    'swift package clean',
+    'swift build'
 ], lang='swift')
diff --git a/swift/integration-tests/posix-only/frontend-invocations/test.py b/swift/integration-tests/posix-only/frontend-invocations/test.py
index 2c956137cb5..b415c024e56 100644
--- a/swift/integration-tests/posix-only/frontend-invocations/test.py
+++ b/swift/integration-tests/posix-only/frontend-invocations/test.py
@@ -1,5 +1,5 @@
 from create_database_utils import *
 
 run_codeql_database_create([
- 'make',
+    'make',
 ], lang='swift')
diff --git a/swift/integration-tests/posix-only/hello-world/test.py b/swift/integration-tests/posix-only/hello-world/test.py
index 19271030c19..6f2b8b26143 100644
--- a/swift/integration-tests/posix-only/hello-world/test.py
+++ b/swift/integration-tests/posix-only/hello-world/test.py
@@ -1,6 +1,6 @@
 from create_database_utils import *
 
 run_codeql_database_create([
- 'swift package clean',
- 'swift build'
+    'swift package clean',
+    'swift build'
 ], lang='swift')
diff --git a/swift/integration-tests/posix-only/partial-modules/test.py b/swift/integration-tests/posix-only/partial-modules/test.py
index ae89d5da5d7..17320f33628 100644
--- a/swift/integration-tests/posix-only/partial-modules/test.py
+++ b/swift/integration-tests/posix-only/partial-modules/test.py
@@ -1,7 +1,7 @@
 from create_database_utils import *
 
 run_codeql_database_create([
- 'env',
- 'swift package clean',
- 'swift build'
+    'env',
+    'swift package clean',
+    'swift build'
 ], lang='swift', keep_trap=True)
diff --git a/swift/integration-tests/runner.py b/swift/integration-tests/runner.py
index b5c608c2a97..b0b2ecd92b0 100755
--- a/swift/integration-tests/runner.py
+++ b/swift/integration-tests/runner.py
@@ -21,7 +21,7 @@ this_dir = pathlib.Path(__file__).parent.resolve()
 def options():
     p = argparse.ArgumentParser()
     p.add_argument("--test-dir", "-d", type=pathlib.Path, action="append")
-    #FIXME: the following should be the default
+    # FIXME: the following should be the default
     p.add_argument("--check-databases", action="store_true")
     p.add_argument("--learn", action="store_true")
     p.add_argument("--threads", "-j", type=int, default=0)

From 563a56af9d6781af6b1795b7d13a9c1f3f8d7528 Mon Sep 17 00:00:00 2001
From: Mauro Baluda <mbaluda@github.com>
Date: Tue, 15 Nov 2022 15:46:34 +0100
Subject: [PATCH 0282/1420] Update Hapi.qll

---
 .../ql/lib/semmle/javascript/frameworks/Hapi.qll   | 14 ++++++++------
 1 file changed, 8 insertions(+), 6 deletions(-)

diff --git a/javascript/ql/lib/semmle/javascript/frameworks/Hapi.qll b/javascript/ql/lib/semmle/javascript/frameworks/Hapi.qll
index 0d04aac34c6..b3bed8112ad 100644
--- a/javascript/ql/lib/semmle/javascript/frameworks/Hapi.qll
+++ b/javascript/ql/lib/semmle/javascript/frameworks/Hapi.qll
@@ -18,12 +18,14 @@ module Hapi {
       this = DataFlow::moduleMember("@hapi/glue", "compose").getAnInvocation()
       or
       // `register (server, options)`
-      exists(Function f |
-        this.(DataFlow::ParameterNode).getParameter() = f.getParameter(0) and
-        f.getName() = "register" and
-        f.getParameter(0).getName() = "server" and
-        f.getParameter(1).getName() = "options"
-      )
+      // `module.exports.plugin = {register, pkg};`
+      this =
+        any(NodeModule m)
+            .getAnExportedValue("plugin")
+            .(DataFlow::ObjectLiteralNode)
+            .getAPropertySource("register")
+            .(DataFlow::FunctionNode)
+            .getParameter(0)
       or
       // `const after = function (server) {...};`
       // `server.dependency('name', after);`

From 8ca004fde157f5fbc3a2cacf452fd886903ea3d9 Mon Sep 17 00:00:00 2001
From: Tony Torralba <atorralba@users.noreply.github.com>
Date: Tue, 15 Nov 2022 16:14:22 +0100
Subject: [PATCH 0283/1420] Add AdditionalTaintStep

---
 swift/ql/lib/codeql/swift/dataflow/FlowSteps.qll   | 14 ++++++++++++++
 .../dataflow/internal/TaintTrackingPrivate.qll     |  2 ++
 2 files changed, 16 insertions(+)

diff --git a/swift/ql/lib/codeql/swift/dataflow/FlowSteps.qll b/swift/ql/lib/codeql/swift/dataflow/FlowSteps.qll
index e538f44b957..fef6646511d 100644
--- a/swift/ql/lib/codeql/swift/dataflow/FlowSteps.qll
+++ b/swift/ql/lib/codeql/swift/dataflow/FlowSteps.qll
@@ -1,6 +1,20 @@
 import swift
 private import codeql.swift.dataflow.DataFlow
 
+/**
+ * A unit class for adding additional taint steps.
+ *
+ * Extend this class to add additional taint steps that should apply to all
+ * taint configurations.
+ */
+class AdditionalTaintStep extends Unit {
+  /**
+   * Holds if the step from `node1` to `node2` should be considered a taint
+   * step for all configurations.
+   */
+  abstract predicate step(DataFlow::Node node1, DataFlow::Node node2);
+}
+
 /**
  * A `Content` that should be implicitly regarded as tainted whenever an object with such `Content`
  * is itself tainted.
diff --git a/swift/ql/lib/codeql/swift/dataflow/internal/TaintTrackingPrivate.qll b/swift/ql/lib/codeql/swift/dataflow/internal/TaintTrackingPrivate.qll
index cd38648aef9..92724729d0e 100644
--- a/swift/ql/lib/codeql/swift/dataflow/internal/TaintTrackingPrivate.qll
+++ b/swift/ql/lib/codeql/swift/dataflow/internal/TaintTrackingPrivate.qll
@@ -64,6 +64,8 @@ private module Cached {
     or
     // flow through a flow summary (extension of `SummaryModelCsv`)
     FlowSummaryImpl::Private::Steps::summaryLocalStep(nodeFrom, nodeTo, false)
+    or
+    any(AdditionalTaintStep a).step(nodeFrom, nodeTo)
   }
 
   /**

From e5e3bb3705e5272187b02cdf6b103dfb407bc910 Mon Sep 17 00:00:00 2001
From: Mauro Baluda <mbaluda@github.com>
Date: Tue, 15 Nov 2022 16:27:14 +0100
Subject: [PATCH 0284/1420] Generalize the server definition in plugin
 registration

---
 javascript/ql/lib/semmle/javascript/frameworks/Hapi.qll | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/javascript/ql/lib/semmle/javascript/frameworks/Hapi.qll b/javascript/ql/lib/semmle/javascript/frameworks/Hapi.qll
index b3bed8112ad..b0b33c078db 100644
--- a/javascript/ql/lib/semmle/javascript/frameworks/Hapi.qll
+++ b/javascript/ql/lib/semmle/javascript/frameworks/Hapi.qll
@@ -20,11 +20,11 @@ module Hapi {
       // `register (server, options)`
       // `module.exports.plugin = {register, pkg};`
       this =
-        any(NodeModule m)
+        any(Module m)
             .getAnExportedValue("plugin")
-            .(DataFlow::ObjectLiteralNode)
+            .getALocalSource()
             .getAPropertySource("register")
-            .(DataFlow::FunctionNode)
+            .getAFunctionValue()
             .getParameter(0)
       or
       // `const after = function (server) {...};`

From 8109a7b67a6cdb654e03d9ada70d235319cb4e70 Mon Sep 17 00:00:00 2001
From: Mauro Baluda <mbaluda@github.com>
Date: Tue, 15 Nov 2022 16:27:21 +0100
Subject: [PATCH 0285/1420] Update
 javascript/ql/lib/semmle/javascript/frameworks/Hapi.qll

Co-authored-by: Erik Krogh Kristensen <erik-krogh@github.com>
---
 javascript/ql/lib/semmle/javascript/frameworks/Hapi.qll | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/javascript/ql/lib/semmle/javascript/frameworks/Hapi.qll b/javascript/ql/lib/semmle/javascript/frameworks/Hapi.qll
index b0b33c078db..c791cd9e25d 100644
--- a/javascript/ql/lib/semmle/javascript/frameworks/Hapi.qll
+++ b/javascript/ql/lib/semmle/javascript/frameworks/Hapi.qll
@@ -32,7 +32,7 @@ module Hapi {
       exists(ServerDefinition server, DataFlow::MethodCallNode call |
         call = server.ref().getAMethodCall() and
         call.getMethodName() = "dependency" and
-        this = call.getArgument(1).(DataFlow::FunctionNode).getParameter(0)
+        this = call.getABoundCallbackParameter(1, 0)
       )
     }
   }

From da7788dd64a22d51debadcf90f3a74932ed8f332 Mon Sep 17 00:00:00 2001
From: Arthur Baars <aibaars@github.com>
Date: Tue, 15 Nov 2022 16:25:59 +0100
Subject: [PATCH 0286/1420] CodeQL: add 'False positive' issue template

---
 .github/ISSUE_TEMPLATE/ql--false-positive.md | 36 ++++++++++++++++++++
 1 file changed, 36 insertions(+)
 create mode 100644 .github/ISSUE_TEMPLATE/ql--false-positive.md

diff --git a/.github/ISSUE_TEMPLATE/ql--false-positive.md b/.github/ISSUE_TEMPLATE/ql--false-positive.md
new file mode 100644
index 00000000000..b3d942ab5d7
--- /dev/null
+++ b/.github/ISSUE_TEMPLATE/ql--false-positive.md
@@ -0,0 +1,36 @@
+---
+name: False positive
+about: Tell us about an alert that shouldn't be reported
+title: False positive
+labels: false-positive
+assignees: ''
+
+---
+
+**Description of the false positive**
+
+<!-- Please explain briefly why you think it shouldn't be included. -->
+
+**Code samples or links to source code**
+
+<!--
+For open source code: file links with line numbers on GitHub, for example:
+https://github.com/github/codeql/blob/dc440aaee6695deb0d9676b87e06ea984e1b4ae5/javascript/ql/test/query-tests/Security/CWE-078/CommandInjection/exec-sh2.js#L10
+
+For closed source code: (redacted) code samples that illustrate the problem, for example:
+
+```
+function execSh(command, options) {
+    return cp.spawn(getShell(), ["-c", command], options) // <- command line injection
+};
+```
+-->
+
+**URL to the alert on GitHub CodeScanning (optional)**
+
+<!--
+1. Open the project on GitHub.com.
+2. Switch to the `Security` tab.
+3. Browse to the alert that you would like to report.
+4. Copy and paste the page URL here.
+-->

From 56b207e41f250dd0c143c860f4af67b94d97ab9e Mon Sep 17 00:00:00 2001
From: Paolo Tranquilli <redsun82@github.com>
Date: Tue, 15 Nov 2022 17:07:52 +0100
Subject: [PATCH 0287/1420] Swift: remove IPA classes from `cppgen`

---
 swift/codegen/generators/cppgen.py |  9 +++-
 swift/codegen/test/test_cppgen.py  | 79 ++++++++++++++++++++++++++++++
 2 files changed, 87 insertions(+), 1 deletion(-)

diff --git a/swift/codegen/generators/cppgen.py b/swift/codegen/generators/cppgen.py
index 45f0d98949b..18d65d54150 100644
--- a/swift/codegen/generators/cppgen.py
+++ b/swift/codegen/generators/cppgen.py
@@ -80,10 +80,17 @@ class Processor:
             trap_name=trap_name,
         )
 
+    @functools.lru_cache(maxsize=None)
+    def _is_ipa(self, name: str) -> bool:
+        cls = self._classmap[name]
+        return cls.ipa is not None or (
+            cls.derived and all(self._is_ipa(d) for d in cls.derived))
+
     def get_classes(self):
         ret = {'': []}
         for k, cls in self._classmap.items():
-            ret.setdefault(cls.group, []).append(self._get_class(cls.name))
+            if not self._is_ipa(k):
+                ret.setdefault(cls.group, []).append(self._get_class(cls.name))
         return ret
 
 
diff --git a/swift/codegen/test/test_cppgen.py b/swift/codegen/test/test_cppgen.py
index df4925cb70e..54f1fdf1f7a 100644
--- a/swift/codegen/test/test_cppgen.py
+++ b/swift/codegen/test/test_cppgen.py
@@ -180,5 +180,84 @@ def test_cpp_skip_pragma(generate):
     ]
 
 
+def test_ipa_classes_ignored(generate):
+    assert generate([
+        schema.Class(
+            name="X",
+            ipa=schema.IpaInfo(from_class="A"),
+        ),
+        schema.Class(
+            name="Y",
+            ipa=schema.IpaInfo(on_arguments={"a": "A", "b": "int"}),
+        ),
+        schema.Class(
+            name="Z",
+        ),
+    ]) == [
+        cpp.Class(name="Z", final=True, trap_name="Zs"),
+    ]
+
+
+def test_ipa_hierarchy_ignored(generate):
+    assert generate([
+        schema.Class(
+            name="Root",
+            derived={"Base", "Z"},
+        ),
+        schema.Class(
+            name="Base",
+            bases=["Root"],
+            derived={"X", "Y"}
+        ),
+        schema.Class(
+            name="X",
+            bases=["Base"],
+            ipa=schema.IpaInfo(from_class="A"),
+        ),
+        schema.Class(
+            name="Y",
+            bases=["Base"],
+            ipa=schema.IpaInfo(on_arguments={"a": "A", "b": "int"}),
+        ),
+        schema.Class(
+            name="Z",
+            ipa=schema.IpaInfo(from_class="A"),
+        ),
+    ]) == []
+
+
+def test_ipa_hierarchy_not_ignored_with_non_ipa_descendant(generate):
+    root = cpp.Class(name="Root")
+    base = cpp.Class(name="Base", bases=[root])
+    assert generate([
+        schema.Class(
+            name="Root",
+            derived={"Base", "Z"},
+        ),
+        schema.Class(
+            name="Base",
+            bases=["Root"],
+            derived={"X", "Y"}
+        ),
+        schema.Class(
+            name="X",
+            bases=["Base"],
+        ),
+        schema.Class(
+            name="Y",
+            bases=["Base"],
+            ipa=schema.IpaInfo(on_arguments={"a": "A", "b": "int"}),
+        ),
+        schema.Class(
+            name="Z",
+            ipa=schema.IpaInfo(from_class="A"),
+        ),
+    ]) == [
+        root,
+        base,
+        cpp.Class(name="X", bases=[base], final=True, trap_name="Xes"),
+    ]
+
+
 if __name__ == '__main__':
     sys.exit(pytest.main([__file__] + sys.argv[1:]))

From e928777cb7825dcf506fa775ef6deefc2d28c1eb Mon Sep 17 00:00:00 2001
From: erik-krogh <erik-krogh@github.com>
Date: Tue, 1 Nov 2022 10:17:41 +0100
Subject: [PATCH 0288/1420] add codeql/regex as a dependency

---
 javascript/ql/lib/qlpack.yml | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/javascript/ql/lib/qlpack.yml b/javascript/ql/lib/qlpack.yml
index 0a3a773e368..00b2ffcba05 100644
--- a/javascript/ql/lib/qlpack.yml
+++ b/javascript/ql/lib/qlpack.yml
@@ -5,3 +5,5 @@ dbscheme: semmlecode.javascript.dbscheme
 extractor: javascript
 library: true
 upgrades: upgrades
+dependencies:
+  codeql/regex: 0.0.1

From 4a2472a078ed319aaa14ca7ed1ff80aac65b5e0c Mon Sep 17 00:00:00 2001
From: erik-krogh <erik-krogh@github.com>
Date: Tue, 1 Nov 2022 10:18:07 +0100
Subject: [PATCH 0289/1420] add `hasLocationInfo` predicate to regexp terms

---
 javascript/ql/lib/semmle/javascript/Regexp.qll | 7 +++++++
 1 file changed, 7 insertions(+)

diff --git a/javascript/ql/lib/semmle/javascript/Regexp.qll b/javascript/ql/lib/semmle/javascript/Regexp.qll
index e443ede5104..fc82929500b 100644
--- a/javascript/ql/lib/semmle/javascript/Regexp.qll
+++ b/javascript/ql/lib/semmle/javascript/Regexp.qll
@@ -176,6 +176,13 @@ class RegExpTerm extends Locatable, @regexpterm {
    * Gets a string that is matched by this regular-expression term.
    */
   string getAMatchedString() { result = this.getConstantValue() }
+
+  /** Holds if this term has the specified location. */
+  predicate hasLocationInfo(
+    string filepath, int startline, int startcolumn, int endline, int endcolumn
+  ) {
+    this.getLocation().hasLocationInfo(filepath, startline, startcolumn, endline, endcolumn)
+  }
 }
 
 /**

From 031a9109891106d2243cc254ccff29a691549bd2 Mon Sep 17 00:00:00 2001
From: erik-krogh <erik-krogh@github.com>
Date: Tue, 1 Nov 2022 10:20:12 +0100
Subject: [PATCH 0290/1420] add a JS implementation of `RegexTreeViewSig`

---
 .../security/regexp/RegexTreeView.qll         | 73 +++++++++++++++++++
 1 file changed, 73 insertions(+)
 create mode 100644 javascript/ql/lib/semmle/javascript/security/regexp/RegexTreeView.qll

diff --git a/javascript/ql/lib/semmle/javascript/security/regexp/RegexTreeView.qll b/javascript/ql/lib/semmle/javascript/security/regexp/RegexTreeView.qll
new file mode 100644
index 00000000000..9009133f4c0
--- /dev/null
+++ b/javascript/ql/lib/semmle/javascript/security/regexp/RegexTreeView.qll
@@ -0,0 +1,73 @@
+/**
+ * Provides JavaScript-specific definitions for use in the NfaUtils module.
+ */
+
+private import codeql.regex.nfa.NfaUtils as NfaUtils
+private import codeql.regex.RegexTreeView
+
+/** An implementation that parses a regular expression into a tree of `RegExpTerm`s. */
+module RegexTreeView implements RegexTreeViewSig {
+  import javascript
+
+  class Top = Locatable;
+
+  /**
+   * Holds if `term` is an escape class representing e.g. `\d`.
+   * `clazz` is which character class it represents, e.g. "d" for `\d`.
+   */
+  predicate isEscapeClass(RegExpTerm term, string clazz) {
+    exists(RegExpCharacterClassEscape escape | term = escape | escape.getValue() = clazz)
+  }
+
+  /**
+   * Holds if `term` is a possessive quantifier.
+   * As javascript's regexes do not support possessive quantifiers, this never holds, but is used by the shared library.
+   */
+  predicate isPossessive(RegExpQuantifier term) { none() }
+
+  /**
+   * Holds if the regex that `term` is part of is used in a way that ignores any leading prefix of the input it's matched against.
+   * Not yet implemented for JavaScript.
+   */
+  predicate matchesAnyPrefix(RegExpTerm term) { any() }
+
+  /**
+   * Holds if the regex that `term` is part of is used in a way that ignores any trailing suffix of the input it's matched against.
+   * Not yet implemented for JavaScript.
+   */
+  predicate matchesAnySuffix(RegExpTerm term) { any() }
+
+  /**
+   * Holds if the regular expression should not be considered.
+   *
+   * For javascript we make the pragmatic performance optimization to ignore minified files.
+   */
+  predicate isExcluded(RegExpParent parent) { parent.(Expr).getTopLevel().isMinified() }
+
+  /**
+   * Holds if `root` has the `i` flag for case-insensitive matching.
+   */
+  predicate isIgnoreCase(RegExpTerm root) { RegExp::isIgnoreCase(getFlags(root)) }
+
+  /**
+   * Gets the flags for `root`, or the empty string if `root` has no flags.
+   */
+  private string getFlags(RegExpTerm root) {
+    root.isRootTerm() and
+    exists(DataFlow::RegExpCreationNode node | node.getRoot() = root |
+      result = node.getFlags()
+      or
+      not exists(node.getFlags()) and
+      result = ""
+    )
+    or
+    exists(RegExpPatternSource source | source.getRegExpTerm() = root |
+      result = source.getARegExpObject().(DataFlow::RegExpCreationNode).getFlags()
+    )
+  }
+
+  /**
+   * Holds if `root` has the `s` flag for multi-line matching.
+   */
+  predicate isDotAll(RegExpTerm root) { RegExp::isDotAll(getFlags(root)) }
+}

From e18ceba49e2da2e21f193030317d039825bd907d Mon Sep 17 00:00:00 2001
From: erik-krogh <erik-krogh@github.com>
Date: Tue, 1 Nov 2022 10:24:53 +0100
Subject: [PATCH 0291/1420] port the JS regex/redos queries to use the shared
 pack

---
 .../javascript/security/BadTagFilterQuery.qll |  156 +-
 ...leteMultiCharacterSanitizationSpecific.qll |    3 +-
 .../security/OverlyLargeRangeQuery.qll        |  289 +---
 .../regexp/ExponentialBackTracking.qll        |  285 +---
 .../javascript/security/regexp/NfaUtils.qll   | 1333 +----------------
 .../security/regexp/NfaUtilsSpecific.qll      |   70 -
 .../regexp/PolynomialReDoSCustomizations.qll  |    4 +-
 .../security/regexp/RegexpMatching.qll        |  156 +-
 .../regexp/SuperlinearBackTracking.qll        |  385 +----
 .../ql/src/Performance/PolynomialReDoS.ql     |    1 -
 javascript/ql/src/Performance/ReDoS.ql        |    4 +-
 .../src/Security/CWE-020/OverlyLargeRange.ql  |    5 +-
 .../ql/src/Security/CWE-116/BadTagFilter.ql   |    3 +-
 .../CWE-178/CaseSensitiveMiddlewarePath.ql    |    5 +-
 .../CWE-400/ReDoS/PolynomialBackTracking.ql   |    3 +-
 15 files changed, 41 insertions(+), 2661 deletions(-)
 delete mode 100644 javascript/ql/lib/semmle/javascript/security/regexp/NfaUtilsSpecific.qll

diff --git a/javascript/ql/lib/semmle/javascript/security/BadTagFilterQuery.qll b/javascript/ql/lib/semmle/javascript/security/BadTagFilterQuery.qll
index 95bfbeeeb5d..428275df487 100644
--- a/javascript/ql/lib/semmle/javascript/security/BadTagFilterQuery.qll
+++ b/javascript/ql/lib/semmle/javascript/security/BadTagFilterQuery.qll
@@ -2,155 +2,7 @@
  * Provides predicates for reasoning about bad tag filter vulnerabilities.
  */
 
-import regexp.RegexpMatching
-
-/**
- * Holds if the regexp `root` should be tested against `str`.
- * Implements the `isRegexpMatchingCandidateSig` signature from `RegexpMatching`.
- * `ignorePrefix` toggles whether the regular expression should be treated as accepting any prefix if it's unanchored.
- * `testWithGroups` toggles whether it's tested which groups are filled by a given input string.
- */
-private predicate isBadTagFilterCandidate(
-  RootTerm root, string str, boolean ignorePrefix, boolean testWithGroups
-) {
-  // the regexp must mention "<" and ">" explicitly.
-  forall(string angleBracket | angleBracket = ["<", ">"] |
-    any(RegExpConstant term | term.getValue().matches("%" + angleBracket + "%")).getRootTerm() =
-      root
-  ) and
-  ignorePrefix = true and
-  (
-    str = ["<!-- foo -->", "<!-- foo --!>", "<!- foo ->", "<foo>", "<script>"] and
-    testWithGroups = true
-    or
-    str =
-      [
-        "<!-- foo -->", "<!- foo ->", "<!-- foo --!>", "<!-- foo\n -->", "<script>foo</script>",
-        "<script \n>foo</script>", "<script >foo\n</script>", "<foo ></foo>", "<foo>",
-        "<foo src=\"foo\"></foo>", "<script>", "<script src=\"foo\"></script>",
-        "<script src='foo'></script>", "<SCRIPT>foo</SCRIPT>", "<script\tsrc=\"foo\"/>",
-        "<script\tsrc='foo'></script>", "<sCrIpT>foo</ScRiPt>", "<script src=\"foo\">foo</script >",
-        "<script src=\"foo\">foo</script foo=\"bar\">", "<script src=\"foo\">foo</script\t\n bar>"
-      ] and
-    testWithGroups = false
-  )
-}
-
-/**
- * A regexp that matches some string from the `isBadTagFilterCandidate` predicate.
- */
-class HtmlMatchingRegExp extends RootTerm {
-  HtmlMatchingRegExp() { RegexpMatching<isBadTagFilterCandidate/4>::matches(this, _) }
-
-  /** Holds if this regexp matched `str`, where `str` is one of the string from `isBadTagFilterCandidate`. */
-  predicate matches(string str) { RegexpMatching<isBadTagFilterCandidate/4>::matches(this, str) }
-
-  /** Holds if this regexp fills capture group `g' when matching `str', where `str` is one of the string from `isBadTagFilterCandidate`. */
-  predicate fillsCaptureGroup(string str, int g) {
-    RegexpMatching<isBadTagFilterCandidate/4>::fillsCaptureGroup(this, str, g)
-  }
-}
-
-/** DEPRECATED: Alias for HtmlMatchingRegExp */
-deprecated class HTMLMatchingRegExp = HtmlMatchingRegExp;
-
-/**
- * Holds if `regexp` matches some HTML tags, but misses some HTML tags that it should match.
- *
- * When adding a new case to this predicate, make sure the test string used in `matches(..)` calls are present in `HTMLMatchingRegExp::test` / `HTMLMatchingRegExp::testWithGroups`.
- */
-predicate isBadRegexpFilter(HtmlMatchingRegExp regexp, string msg) {
-  // CVE-2021-33829 - matching both "<!-- foo -->" and "<!-- foo --!>", but in different capture groups
-  regexp.matches("<!-- foo -->") and
-  regexp.matches("<!-- foo --!>") and
-  exists(int a, int b | a != b |
-    regexp.fillsCaptureGroup("<!-- foo -->", a) and
-    // <!-- foo --> might be ambiguously parsed (matching both capture groups), and that is ok here.
-    regexp.fillsCaptureGroup("<!-- foo --!>", b) and
-    not regexp.fillsCaptureGroup("<!-- foo --!>", a) and
-    msg =
-      "Comments ending with --> are matched differently from comments ending with --!>. The first is matched with capture group "
-        + a + " and comments ending with --!> are matched with capture group " +
-        strictconcat(int i | regexp.fillsCaptureGroup("<!-- foo --!>", i) | i.toString(), ", ") +
-        "."
-  )
-  or
-  // CVE-2020-17480 - matching "<!-- foo -->" and other tags, but not "<!-- foo --!>".
-  exists(int group, int other |
-    group != other and
-    regexp.fillsCaptureGroup("<!-- foo -->", group) and
-    regexp.fillsCaptureGroup("<foo>", other) and
-    not regexp.matches("<!-- foo --!>") and
-    not regexp.fillsCaptureGroup("<!-- foo -->", any(int i | i != group)) and
-    not regexp.fillsCaptureGroup("<!- foo ->", group) and
-    not regexp.fillsCaptureGroup("<foo>", group) and
-    not regexp.fillsCaptureGroup("<script>", group) and
-    msg =
-      "This regular expression only parses --> (capture group " + group +
-        ") and not --!> as an HTML comment end tag."
-  )
-  or
-  regexp.matches("<!-- foo -->") and
-  not regexp.matches("<!-- foo\n -->") and
-  not regexp.matches("<!- foo ->") and
-  not regexp.matches("<foo>") and
-  not regexp.matches("<script>") and
-  msg = "This regular expression does not match comments containing newlines."
-  or
-  regexp.matches("<script>foo</script>") and
-  regexp.matches("<script src=\"foo\"></script>") and
-  not regexp.matches("<foo ></foo>") and
-  (
-    not regexp.matches("<script \n>foo</script>") and
-    msg = "This regular expression matches <script></script>, but not <script \\n></script>"
-    or
-    not regexp.matches("<script >foo\n</script>") and
-    msg = "This regular expression matches <script>...</script>, but not <script >...\\n</script>"
-  )
-  or
-  regexp.matches("<script>foo</script>") and
-  regexp.matches("<script src=\"foo\"></script>") and
-  not regexp.matches("<script src='foo'></script>") and
-  not regexp.matches("<foo>") and
-  msg = "This regular expression does not match script tags where the attribute uses single-quotes."
-  or
-  regexp.matches("<script>foo</script>") and
-  regexp.matches("<script src='foo'></script>") and
-  not regexp.matches("<script src=\"foo\"></script>") and
-  not regexp.matches("<foo>") and
-  msg = "This regular expression does not match script tags where the attribute uses double-quotes."
-  or
-  regexp.matches("<script>foo</script>") and
-  regexp.matches("<script src='foo'></script>") and
-  not regexp.matches("<script\tsrc='foo'></script>") and
-  not regexp.matches("<foo>") and
-  not regexp.matches("<foo src=\"foo\"></foo>") and
-  msg = "This regular expression does not match script tags where tabs are used between attributes."
-  or
-  regexp.matches("<script>foo</script>") and
-  not RegExpFlags::isIgnoreCase(regexp) and
-  not regexp.matches("<foo>") and
-  not regexp.matches("<foo ></foo>") and
-  (
-    not regexp.matches("<SCRIPT>foo</SCRIPT>") and
-    msg = "This regular expression does not match upper case <SCRIPT> tags."
-    or
-    not regexp.matches("<sCrIpT>foo</ScRiPt>") and
-    regexp.matches("<SCRIPT>foo</SCRIPT>") and
-    msg = "This regular expression does not match mixed case <sCrIpT> tags."
-  )
-  or
-  regexp.matches("<script src=\"foo\"></script>") and
-  not regexp.matches("<foo>") and
-  not regexp.matches("<foo ></foo>") and
-  (
-    not regexp.matches("<script src=\"foo\">foo</script >") and
-    msg = "This regular expression does not match script end tags like </script >."
-    or
-    not regexp.matches("<script src=\"foo\">foo</script foo=\"bar\">") and
-    msg = "This regular expression does not match script end tags like </script foo=\"bar\">."
-    or
-    not regexp.matches("<script src=\"foo\">foo</script\t\n bar>") and
-    msg = "This regular expression does not match script end tags like </script\\t\\n bar>."
-  )
-}
+private import regexp.RegexTreeView::RegexTreeView as TreeView
+// BadTagFilterQuery should be used directly from the shared pack, and not from this file.
+deprecated import codeql.regex.nfa.BadTagFilterQuery::Make<TreeView> as Dep
+import Dep
diff --git a/javascript/ql/lib/semmle/javascript/security/IncompleteMultiCharacterSanitizationSpecific.qll b/javascript/ql/lib/semmle/javascript/security/IncompleteMultiCharacterSanitizationSpecific.qll
index db394e43285..a133c4b8529 100644
--- a/javascript/ql/lib/semmle/javascript/security/IncompleteMultiCharacterSanitizationSpecific.qll
+++ b/javascript/ql/lib/semmle/javascript/security/IncompleteMultiCharacterSanitizationSpecific.qll
@@ -3,7 +3,8 @@
  */
 
 import javascript
-import semmle.javascript.security.regexp.NfaUtils as NfaUtils
+private import semmle.javascript.security.regexp.RegexTreeView::RegexTreeView as TreeView
+import codeql.regex.nfa.NfaUtils::Make<TreeView> as NfaUtils
 
 class StringSubstitutionCall = StringReplaceCall;
 
diff --git a/javascript/ql/lib/semmle/javascript/security/OverlyLargeRangeQuery.qll b/javascript/ql/lib/semmle/javascript/security/OverlyLargeRangeQuery.qll
index 65e662f0bc5..3d9732f1fd6 100644
--- a/javascript/ql/lib/semmle/javascript/security/OverlyLargeRangeQuery.qll
+++ b/javascript/ql/lib/semmle/javascript/security/OverlyLargeRangeQuery.qll
@@ -2,288 +2,7 @@
  * Classes and predicates for working with suspicious character ranges.
  */
 
-// We don't need the NFA utils, just the regexp tree.
-// but the below is a nice shared library that exposes the API we need.
-import regexp.NfaUtils
-
-/**
- * Gets a rank for `range` that is unique for ranges in the same file.
- * Prioritizes ranges that match more characters.
- */
-int rankRange(RegExpCharacterRange range) {
-  range =
-    rank[result](RegExpCharacterRange r, Location l, int low, int high |
-      r.getLocation() = l and
-      isRange(r, low, high)
-    |
-      r order by (high - low) desc, l.getStartLine(), l.getStartColumn()
-    )
-}
-
-/** Holds if `range` spans from the unicode code points `low` to `high` (both inclusive). */
-predicate isRange(RegExpCharacterRange range, int low, int high) {
-  exists(string lowc, string highc |
-    range.isRange(lowc, highc) and
-    low.toUnicode() = lowc and
-    high.toUnicode() = highc
-  )
-}
-
-/** Holds if `char` is an alpha-numeric character. */
-predicate isAlphanumeric(string char) {
-  // written like this to avoid having a bindingset for the predicate
-  char = [[48 .. 57], [65 .. 90], [97 .. 122]].toUnicode() // 0-9, A-Z, a-z
-}
-
-/**
- * Holds if the given ranges are from the same character class
- * and there exists at least one character matched by both ranges.
- */
-predicate overlap(RegExpCharacterRange a, RegExpCharacterRange b) {
-  exists(RegExpCharacterClass clz |
-    a = clz.getAChild() and
-    b = clz.getAChild() and
-    a != b
-  |
-    exists(int alow, int ahigh, int blow, int bhigh |
-      isRange(a, alow, ahigh) and
-      isRange(b, blow, bhigh) and
-      alow <= bhigh and
-      blow <= ahigh
-    )
-  )
-}
-
-/**
- * Holds if `range` overlaps with the char class `escape` from the same character class.
- */
-predicate overlapsWithCharEscape(RegExpCharacterRange range, RegExpCharacterClassEscape escape) {
-  exists(RegExpCharacterClass clz, string low, string high |
-    range = clz.getAChild() and
-    escape = clz.getAChild() and
-    range.isRange(low, high)
-  |
-    escape.getValue() = "w" and
-    getInRange(low, high).regexpMatch("\\w")
-    or
-    escape.getValue() = "d" and
-    getInRange(low, high).regexpMatch("\\d")
-    or
-    escape.getValue() = "s" and
-    getInRange(low, high).regexpMatch("\\s")
-  )
-}
-
-/** Gets the unicode code point for a `char`. */
-bindingset[char]
-int toCodePoint(string char) { result.toUnicode() = char }
-
-/** A character range that appears to be overly wide. */
-class OverlyWideRange extends RegExpCharacterRange {
-  OverlyWideRange() {
-    exists(int low, int high, int numChars |
-      isRange(this, low, high) and
-      numChars = (1 + high - low) and
-      this.getRootTerm().isUsedAsRegExp() and
-      numChars >= 10
-    |
-      // across the Z-a range (which includes backticks)
-      toCodePoint("Z") >= low and
-      toCodePoint("a") <= high
-      or
-      // across the 9-A range (which includes e.g. ; and ?)
-      toCodePoint("9") >= low and
-      toCodePoint("A") <= high
-      or
-      // a non-alphanumeric char as part of the range boundaries
-      exists(int bound | bound = [low, high] | not isAlphanumeric(bound.toUnicode())) and
-      // while still being ascii
-      low < 128 and
-      high < 128
-    ) and
-    // allowlist for known ranges
-    not this = allowedWideRanges()
-  }
-
-  /** Gets a string representation of a character class that matches the same chars as this range. */
-  string printEquivalent() { result = RangePrinter::printEquivalentCharClass(this) }
-}
-
-/** Gets a range that should not be reported as an overly wide range. */
-RegExpCharacterRange allowedWideRanges() {
-  // ~ is the last printable ASCII character, it's used right in various wide ranges.
-  result.isRange(_, "~")
-  or
-  // the same with " " and "!". " " is the first printable character, and "!" is the first non-white-space printable character.
-  result.isRange([" ", "!"], _)
-  or
-  // the `[@-_]` range is intentional
-  result.isRange("@", "_")
-  or
-  // starting from the zero byte is a good indication that it's purposely matching a large range.
-  result.isRange(0.toUnicode(), _)
-}
-
-/** Gets a char between (and including) `low` and `high`. */
-bindingset[low, high]
-private string getInRange(string low, string high) {
-  result = [toCodePoint(low) .. toCodePoint(high)].toUnicode()
-}
-
-/** A module computing an equivalent character class for an overly wide range. */
-module RangePrinter {
-  bindingset[char]
-  bindingset[result]
-  private string next(string char) {
-    exists(int prev, int next |
-      prev.toUnicode() = char and
-      next.toUnicode() = result and
-      next = prev + 1
-    )
-  }
-
-  /** Gets the points where the parts of the pretty printed range should be cut off. */
-  private string cutoffs() { result = ["A", "Z", "a", "z", "0", "9"] }
-
-  /** Gets the char to use in the low end of a range for a given `cut` */
-  private string lowCut(string cut) {
-    cut = ["A", "a", "0"] and
-    result = cut
-    or
-    cut = ["Z", "z", "9"] and
-    result = next(cut)
-  }
-
-  /** Gets the char to use in the high end of a range for a given `cut` */
-  private string highCut(string cut) {
-    cut = ["Z", "z", "9"] and
-    result = cut
-    or
-    cut = ["A", "a", "0"] and
-    next(result) = cut
-  }
-
-  /** Gets the cutoff char used for a given `part` of a range when pretty-printing it. */
-  private string cutoff(OverlyWideRange range, int part) {
-    exists(int low, int high | isRange(range, low, high) |
-      result =
-        rank[part + 1](string cut |
-          cut = cutoffs() and low < toCodePoint(cut) and toCodePoint(cut) < high
-        |
-          cut order by toCodePoint(cut)
-        )
-    )
-  }
-
-  /** Gets the number of parts we should print for a given `range`. */
-  private int parts(OverlyWideRange range) { result = 1 + count(cutoff(range, _)) }
-
-  /** Holds if the given part of a range should span from `low` to `high`. */
-  private predicate part(OverlyWideRange range, int part, string low, string high) {
-    // first part.
-    part = 0 and
-    (
-      range.isRange(low, high) and
-      parts(range) = 1
-      or
-      parts(range) >= 2 and
-      range.isRange(low, _) and
-      high = highCut(cutoff(range, part))
-    )
-    or
-    // middle
-    part >= 1 and
-    part < parts(range) - 1 and
-    low = lowCut(cutoff(range, part - 1)) and
-    high = highCut(cutoff(range, part))
-    or
-    // last.
-    part = parts(range) - 1 and
-    low = lowCut(cutoff(range, part - 1)) and
-    range.isRange(_, high)
-  }
-
-  /** Gets an escaped `char` for use in a character class. */
-  bindingset[char]
-  private string escape(string char) {
-    exists(string reg | reg = "(\\[|\\]|\\\\|-|/)" |
-      if char.regexpMatch(reg) then result = "\\" + char else result = char
-    )
-  }
-
-  /** Gets a part of the equivalent range. */
-  private string printEquivalentCharClass(OverlyWideRange range, int part) {
-    exists(string low, string high | part(range, part, low, high) |
-      if
-        isAlphanumeric(low) and
-        isAlphanumeric(high)
-      then result = low + "-" + high
-      else
-        result =
-          strictconcat(string char | char = getInRange(low, high) | escape(char) order by char)
-    )
-  }
-
-  /** Gets the entire pretty printed equivalent range. */
-  string printEquivalentCharClass(OverlyWideRange range) {
-    result =
-      strictconcat(string r, int part |
-        r = "[" and part = -1 and exists(range)
-        or
-        r = printEquivalentCharClass(range, part)
-        or
-        r = "]" and part = parts(range)
-      |
-        r order by part
-      )
-  }
-}
-
-/** Gets a char range that is overly large because of `reason`. */
-RegExpCharacterRange getABadRange(string reason, int priority) {
-  result instanceof OverlyWideRange and
-  priority = 0 and
-  exists(string equiv | equiv = result.(OverlyWideRange).printEquivalent() |
-    if equiv.length() <= 50
-    then reason = "is equivalent to " + equiv
-    else reason = "is equivalent to " + equiv.substring(0, 50) + "..."
-  )
-  or
-  priority = 1 and
-  exists(RegExpCharacterRange other |
-    reason = "overlaps with " + other + " in the same character class" and
-    rankRange(result) < rankRange(other) and
-    overlap(result, other)
-  )
-  or
-  priority = 2 and
-  exists(RegExpCharacterClassEscape escape |
-    reason = "overlaps with " + escape + " in the same character class" and
-    overlapsWithCharEscape(result, escape)
-  )
-  or
-  reason = "is empty" and
-  priority = 3 and
-  exists(int low, int high |
-    isRange(result, low, high) and
-    low > high
-  )
-}
-
-/** Holds if `range` matches suspiciously many characters. */
-predicate problem(RegExpCharacterRange range, string reason) {
-  reason =
-    strictconcat(string m, int priority |
-      range = getABadRange(m, priority)
-    |
-      m, ", and " order by priority desc
-    ) and
-  // specifying a range using an escape is usually OK.
-  not range.getAChild() instanceof RegExpEscape and
-  // Unicode escapes in strings are interpreted before it turns into a regexp,
-  // so e.g. [\u0001-\uFFFF] will just turn up as a range between two constants.
-  // We therefore exclude these ranges.
-  range.getRootTerm().getParent() instanceof RegExpLiteral and
-  // is used as regexp (mostly for JS where regular expressions are parsed eagerly)
-  range.getRootTerm().isUsedAsRegExp()
-}
+private import regexp.RegexTreeView::RegexTreeView as TreeView
+// OverlyLargeRangeQuery should be used directly from the shared pack, and not from this file.
+deprecated import codeql.regex.OverlyLargeRangeQuery::Make<TreeView> as Dep
+import Dep
diff --git a/javascript/ql/lib/semmle/javascript/security/regexp/ExponentialBackTracking.qll b/javascript/ql/lib/semmle/javascript/security/regexp/ExponentialBackTracking.qll
index 4a608890249..07e0093e8ba 100644
--- a/javascript/ql/lib/semmle/javascript/security/regexp/ExponentialBackTracking.qll
+++ b/javascript/ql/lib/semmle/javascript/security/regexp/ExponentialBackTracking.qll
@@ -62,284 +62,7 @@
  *     a suffix `x` (possible empty) that is most likely __not__ accepted.
  */
 
-import NfaUtils
-
-/**
- * Holds if state `s` might be inside a backtracking repetition.
- */
-pragma[noinline]
-private predicate stateInsideBacktracking(State s) {
-  s.getRepr().getParent*() instanceof MaybeBacktrackingRepetition
-}
-
-/**
- * A infinitely repeating quantifier that might backtrack.
- */
-private class MaybeBacktrackingRepetition extends InfiniteRepetitionQuantifier {
-  MaybeBacktrackingRepetition() {
-    exists(RegExpTerm child |
-      child instanceof RegExpAlt or
-      child instanceof RegExpQuantifier
-    |
-      child.getParent+() = this
-    )
-  }
-}
-
-/**
- * A state in the product automaton.
- */
-private newtype TStatePair =
-  /**
-   * We lazily only construct those states that we are actually
-   * going to need: `(q, q)` for every fork state `q`, and any
-   * pair of states that can be reached from a pair that we have
-   * already constructed. To cut down on the number of states,
-   * we only represent states `(q1, q2)` where `q1` is lexicographically
-   * no bigger than `q2`.
-   *
-   * States are only constructed if both states in the pair are
-   * inside a repetition that might backtrack.
-   */
-  MkStatePair(State q1, State q2) {
-    isFork(q1, _, _, _, _) and q2 = q1
-    or
-    (step(_, _, _, q1, q2) or step(_, _, _, q2, q1)) and
-    rankState(q1) <= rankState(q2)
-  }
-
-/**
- * Gets a unique number for a `state`.
- * Is used to create an ordering of states, where states with the same `toString()` will be ordered differently.
- */
-private int rankState(State state) {
-  state =
-    rank[result](State s, Location l |
-      stateInsideBacktracking(s) and
-      l = s.getRepr().getLocation()
-    |
-      s order by l.getStartLine(), l.getStartColumn(), s.toString()
-    )
-}
-
-/**
- * A state in the product automaton.
- */
-private class StatePair extends TStatePair {
-  State q1;
-  State q2;
-
-  StatePair() { this = MkStatePair(q1, q2) }
-
-  /** Gets a textual representation of this element. */
-  string toString() { result = "(" + q1 + ", " + q2 + ")" }
-
-  /** Gets the first component of the state pair. */
-  State getLeft() { result = q1 }
-
-  /** Gets the second component of the state pair. */
-  State getRight() { result = q2 }
-}
-
-/**
- * Holds for `(fork, fork)` state pairs when `isFork(fork, _, _, _, _)` holds.
- *
- * Used in `statePairDistToFork`
- */
-private predicate isStatePairFork(StatePair p) {
-  exists(State fork | p = MkStatePair(fork, fork) and isFork(fork, _, _, _, _))
-}
-
-/**
- * Holds if there are transitions from the components of `q` to the corresponding
- * components of `r`.
- *
- * Used in `statePairDistToFork`
- */
-private predicate reverseStep(StatePair r, StatePair q) { step(q, _, _, r) }
-
-/**
- * Gets the minimum length of a path from `q` to `r` in the
- * product automaton.
- */
-private int statePairDistToFork(StatePair q, StatePair r) =
-  shortestDistances(isStatePairFork/1, reverseStep/2)(r, q, result)
-
-/**
- * Holds if there are transitions from `q` to `r1` and from `q` to `r2`
- * labelled with `s1` and `s2`, respectively, where `s1` and `s2` do not
- * trivially have an empty intersection.
- *
- * This predicate only holds for states associated with regular expressions
- * that have at least one repetition quantifier in them (otherwise the
- * expression cannot be vulnerable to ReDoS attacks anyway).
- */
-pragma[noopt]
-private predicate isFork(State q, InputSymbol s1, InputSymbol s2, State r1, State r2) {
-  stateInsideBacktracking(q) and
-  exists(State q1, State q2 |
-    q1 = epsilonSucc*(q) and
-    delta(q1, s1, r1) and
-    q2 = epsilonSucc*(q) and
-    delta(q2, s2, r2) and
-    // Use pragma[noopt] to prevent intersect(s1,s2) from being the starting point of the join.
-    // From (s1,s2) it would find a huge number of intermediate state pairs (q1,q2) originating from different literals,
-    // and discover at the end that no `q` can reach both `q1` and `q2` by epsilon transitions.
-    exists(intersect(s1, s2))
-  |
-    s1 != s2
-    or
-    r1 != r2
-    or
-    r1 = r2 and q1 != q2
-    or
-    // If q can reach itself by epsilon transitions, then there are two distinct paths to the q1/q2 state:
-    // one that uses the loop and one that doesn't. The engine will separately attempt to match with each path,
-    // despite ending in the same state. The "fork" thus arises from the choice of whether to use the loop or not.
-    // To avoid every state in the loop becoming a fork state,
-    // we arbitrarily pick the InfiniteRepetitionQuantifier state as the canonical fork state for the loop
-    // (every epsilon-loop must contain such a state).
-    //
-    // We additionally require that the there exists another InfiniteRepetitionQuantifier `mid` on the path from `q` to itself.
-    // This is done to avoid flagging regular expressions such as `/(a?)*b/` - that only has polynomial runtime, and is detected by `js/polynomial-redos`.
-    // The below code is therefore a heuristic, that only flags regular expressions such as `/(a*)*b/`,
-    // and does not flag regular expressions such as `/(a?b?)c/`, but the latter pattern is not used frequently.
-    r1 = r2 and
-    q1 = q2 and
-    epsilonSucc+(q) = q and
-    exists(RegExpTerm term | term = q.getRepr() | term instanceof InfiniteRepetitionQuantifier) and
-    // One of the mid states is an infinite quantifier itself
-    exists(State mid, RegExpTerm term |
-      mid = epsilonSucc+(q) and
-      term = mid.getRepr() and
-      term instanceof InfiniteRepetitionQuantifier and
-      q = epsilonSucc+(mid) and
-      not mid = q
-    )
-  ) and
-  stateInsideBacktracking(r1) and
-  stateInsideBacktracking(r2)
-}
-
-/**
- * Gets the state pair `(q1, q2)` or `(q2, q1)`; note that only
- * one or the other is defined.
- */
-private StatePair mkStatePair(State q1, State q2) {
-  result = MkStatePair(q1, q2) or result = MkStatePair(q2, q1)
-}
-
-/**
- * Holds if there are transitions from the components of `q` to the corresponding
- * components of `r` labelled with `s1` and `s2`, respectively.
- */
-private predicate step(StatePair q, InputSymbol s1, InputSymbol s2, StatePair r) {
-  exists(State r1, State r2 | step(q, s1, s2, r1, r2) and r = mkStatePair(r1, r2))
-}
-
-/**
- * Holds if there are transitions from the components of `q` to `r1` and `r2`
- * labelled with `s1` and `s2`, respectively.
- *
- * We only consider transitions where the resulting states `(r1, r2)` are both
- * inside a repetition that might backtrack.
- */
-pragma[noopt]
-private predicate step(StatePair q, InputSymbol s1, InputSymbol s2, State r1, State r2) {
-  exists(State q1, State q2 | q.getLeft() = q1 and q.getRight() = q2 |
-    deltaClosed(q1, s1, r1) and
-    deltaClosed(q2, s2, r2) and
-    // use noopt to force the join on `intersect` to happen last.
-    exists(intersect(s1, s2))
-  ) and
-  stateInsideBacktracking(r1) and
-  stateInsideBacktracking(r2)
-}
-
-private newtype TTrace =
-  Nil() or
-  Step(InputSymbol s1, InputSymbol s2, TTrace t) { isReachableFromFork(_, _, s1, s2, t, _) }
-
-/**
- * A list of pairs of input symbols that describe a path in the product automaton
- * starting from some fork state.
- */
-private class Trace extends TTrace {
-  /** Gets a textual representation of this element. */
-  string toString() {
-    this = Nil() and result = "Nil()"
-    or
-    exists(InputSymbol s1, InputSymbol s2, Trace t | this = Step(s1, s2, t) |
-      result = "Step(" + s1 + ", " + s2 + ", " + t + ")"
-    )
-  }
-}
-
-/**
- * Holds if `r` is reachable from `(fork, fork)` under input `w`, and there is
- * a path from `r` back to `(fork, fork)` with `rem` steps.
- */
-private predicate isReachableFromFork(State fork, StatePair r, Trace w, int rem) {
-  exists(InputSymbol s1, InputSymbol s2, Trace v |
-    isReachableFromFork(fork, r, s1, s2, v, rem) and
-    w = Step(s1, s2, v)
-  )
-}
-
-private predicate isReachableFromFork(
-  State fork, StatePair r, InputSymbol s1, InputSymbol s2, Trace v, int rem
-) {
-  // base case
-  exists(State q1, State q2 |
-    isFork(fork, s1, s2, q1, q2) and
-    r = MkStatePair(q1, q2) and
-    v = Nil() and
-    rem = statePairDistToFork(r, MkStatePair(fork, fork))
-  )
-  or
-  // recursive case
-  exists(StatePair p |
-    isReachableFromFork(fork, p, v, rem + 1) and
-    step(p, s1, s2, r) and
-    rem = statePairDistToFork(r, MkStatePair(fork, fork))
-  )
-}
-
-/**
- * Gets a state in the product automaton from which `(fork, fork)` is
- * reachable in zero or more epsilon transitions.
- */
-private StatePair getAForkPair(State fork) {
-  isFork(fork, _, _, _, _) and
-  result = MkStatePair(epsilonPred*(fork), epsilonPred*(fork))
-}
-
-/** An implementation of a chain containing chars for use by `Concretizer`. */
-private module CharTreeImpl implements CharTree {
-  class CharNode = Trace;
-
-  CharNode getPrev(CharNode t) { t = Step(_, _, result) }
-
-  /** Holds if `n` is a trace that is used by `concretize` in `isPumpable`. */
-  predicate isARelevantEnd(CharNode n) {
-    exists(State f | isReachableFromFork(f, getAForkPair(f), n, _))
-  }
-
-  string getChar(CharNode t) {
-    exists(InputSymbol s1, InputSymbol s2 | t = Step(s1, s2, _) | result = intersect(s1, s2))
-  }
-}
-
-/**
- * Holds if `fork` is a pumpable fork with word `w`.
- */
-private predicate isPumpable(State fork, string w) {
-  exists(StatePair q, Trace t |
-    isReachableFromFork(fork, q, t, _) and
-    q = getAForkPair(fork) and
-    w = Concretizer<CharTreeImpl>::concretize(t)
-  )
-}
-
-/** Holds if `state` has exponential ReDoS */
-predicate hasReDoSResult = ReDoSPruning<isPumpable/2>::hasReDoSResult/4;
+private import RegexTreeView::RegexTreeView as TreeView
+// ExponentialBackTracking should be used directly from the shared pack, and not from this file.
+deprecated private import codeql.regex.nfa.ExponentialBackTracking::Make<TreeView> as Dep
+import Dep
diff --git a/javascript/ql/lib/semmle/javascript/security/regexp/NfaUtils.qll b/javascript/ql/lib/semmle/javascript/security/regexp/NfaUtils.qll
index 5ff0cb6a39e..030303cde3f 100644
--- a/javascript/ql/lib/semmle/javascript/security/regexp/NfaUtils.qll
+++ b/javascript/ql/lib/semmle/javascript/security/regexp/NfaUtils.qll
@@ -7,1332 +7,7 @@
  * other queries that benefit from reasoning about NFAs.
  */
 
-import NfaUtilsSpecific
-
-/**
- * Gets the char after `c` (from a simplified ASCII table).
- */
-private string nextChar(string c) { exists(int code | code = ascii(c) | code + 1 = ascii(result)) }
-
-/**
- * Gets an approximation for the ASCII code for `char`.
- * Only the easily printable chars are included (so no newline, tab, null, etc).
- */
-private int ascii(string char) {
-  char =
-    rank[result](string c |
-      c =
-        "! \"#$%&'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\\]^_`abcdefghijklmnopqrstuvwxyz{|}~"
-            .charAt(_)
-    )
-}
-
-/**
- * Holds if `t` matches at least an epsilon symbol.
- *
- * That is, this term does not restrict the language of the enclosing regular expression.
- *
- * This is implemented as an under-approximation, and this predicate does not hold for sub-patterns in particular.
- */
-predicate matchesEpsilon(RegExpTerm t) {
-  t instanceof RegExpStar
-  or
-  t instanceof RegExpOpt
-  or
-  t.(RegExpRange).getLowerBound() = 0
-  or
-  exists(RegExpTerm child |
-    child = t.getAChild() and
-    matchesEpsilon(child)
-  |
-    t instanceof RegExpAlt or
-    t instanceof RegExpGroup or
-    t instanceof RegExpPlus or
-    t instanceof RegExpRange
-  )
-  or
-  matchesEpsilon(t.(RegExpBackRef).getGroup())
-  or
-  forex(RegExpTerm child | child = t.(RegExpSequence).getAChild() | matchesEpsilon(child))
-}
-
-/**
- * A lookahead/lookbehind that matches the empty string.
- */
-class EmptyPositiveSubPattern extends RegExpSubPattern {
-  EmptyPositiveSubPattern() {
-    (
-      this instanceof RegExpPositiveLookahead
-      or
-      this instanceof RegExpPositiveLookbehind
-    ) and
-    matchesEpsilon(this.getOperand())
-  }
-}
-
-/** DEPRECATED: Use `EmptyPositiveSubPattern` instead. */
-deprecated class EmptyPositiveSubPatttern = EmptyPositiveSubPattern;
-
-/**
- * A branch in a disjunction that is the root node in a literal, or a literal
- * whose root node is not a disjunction.
- */
-class RegExpRoot extends RegExpTerm {
-  RegExpRoot() {
-    exists(RegExpParent parent |
-      exists(RegExpAlt alt |
-        alt.isRootTerm() and
-        this = alt.getAChild() and
-        parent = alt.getParent()
-      )
-      or
-      this.isRootTerm() and
-      not this instanceof RegExpAlt and
-      parent = this.getParent()
-    )
-  }
-
-  /**
-   * Holds if this root term is relevant to the ReDoS analysis.
-   */
-  predicate isRelevant() {
-    // is actually used as a RegExp
-    this.isUsedAsRegExp() and
-    // not excluded for library specific reasons
-    not isExcluded(this.getRootTerm().getParent())
-  }
-}
-
-/**
- * A constant in a regular expression that represents valid Unicode character(s).
- */
-private class RegexpCharacterConstant extends RegExpConstant {
-  RegexpCharacterConstant() { this.isCharacter() }
-}
-
-/**
- * A regexp term that is relevant for this ReDoS analysis.
- */
-class RelevantRegExpTerm extends RegExpTerm {
-  RelevantRegExpTerm() { getRoot(this).isRelevant() }
-}
-
-/**
- * Holds if `term` is the chosen canonical representative for all terms with string representation `str`.
- * The string representation includes which flags are used with the regular expression.
- *
- * Using canonical representatives gives a huge performance boost when working with tuples containing multiple `InputSymbol`s.
- * The number of `InputSymbol`s is decreased by 3 orders of magnitude or more in some larger benchmarks.
- */
-private predicate isCanonicalTerm(RelevantRegExpTerm term, string str) {
-  term =
-    min(RelevantRegExpTerm t, Location loc, File file |
-      loc = t.getLocation() and
-      file = t.getFile() and
-      str = getCanonicalizationString(t)
-    |
-      t order by t.getFile().getRelativePath(), loc.getStartLine(), loc.getStartColumn()
-    )
-}
-
-/**
- * Gets a string representation of `term` that is used for canonicalization.
- */
-private string getCanonicalizationString(RelevantRegExpTerm term) {
-  exists(string ignoreCase |
-    (if RegExpFlags::isIgnoreCase(term.getRootTerm()) then ignoreCase = "i" else ignoreCase = "") and
-    result = term.getRawValue() + "|" + ignoreCase
-  )
-}
-
-/**
- * An abstract input symbol, representing a set of concrete characters.
- */
-private newtype TInputSymbol =
-  /** An input symbol corresponding to character `c`. */
-  Char(string c) {
-    c =
-      any(RegexpCharacterConstant cc |
-        cc instanceof RelevantRegExpTerm and
-        not RegExpFlags::isIgnoreCase(cc.getRootTerm())
-      ).getValue().charAt(_)
-    or
-    // normalize everything to lower case if the regexp is case insensitive
-    c =
-      any(RegexpCharacterConstant cc, string char |
-        cc instanceof RelevantRegExpTerm and
-        RegExpFlags::isIgnoreCase(cc.getRootTerm()) and
-        char = cc.getValue().charAt(_)
-      |
-        char.toLowerCase()
-      )
-  } or
-  /**
-   * An input symbol representing all characters matched by
-   * a (non-universal) character class that has string representation `charClassString`.
-   */
-  CharClass(string charClassString) {
-    exists(RelevantRegExpTerm recc | isCanonicalTerm(recc, charClassString) |
-      recc instanceof RegExpCharacterClass and
-      not recc.(RegExpCharacterClass).isUniversalClass()
-      or
-      isEscapeClass(recc, _)
-    )
-  } or
-  /** An input symbol representing all characters matched by `.`. */
-  Dot() or
-  /** An input symbol representing all characters. */
-  Any() or
-  /** An epsilon transition in the automaton. */
-  Epsilon()
-
-/**
- * Gets the the CharClass corresponding to the canonical representative `term`.
- */
-private CharClass getCharClassForCanonicalTerm(RegExpTerm term) {
-  exists(string str | isCanonicalTerm(term, str) | result = CharClass(str))
-}
-
-/**
- * Gets a char class that represents `term`, even when `term` is not the canonical representative.
- */
-CharacterClass getCanonicalCharClass(RegExpTerm term) {
-  exists(string str | str = getCanonicalizationString(term) and result = CharClass(str))
-}
-
-/**
- * Holds if `a` and `b` are input symbols from the same regexp.
- */
-private predicate sharesRoot(InputSymbol a, InputSymbol b) {
-  exists(RegExpRoot root |
-    belongsTo(a, root) and
-    belongsTo(b, root)
-  )
-}
-
-/**
- * Holds if the `a` is an input symbol from a regexp that has root `root`.
- */
-private predicate belongsTo(InputSymbol a, RegExpRoot root) {
-  exists(State s | getRoot(s.getRepr()) = root |
-    delta(s, a, _)
-    or
-    delta(_, a, s)
-  )
-}
-
-/**
- * An abstract input symbol, representing a set of concrete characters.
- */
-class InputSymbol extends TInputSymbol {
-  InputSymbol() { not this instanceof Epsilon }
-
-  /**
-   * Gets a string representation of this input symbol.
-   */
-  string toString() {
-    this = Char(result)
-    or
-    this = CharClass(result)
-    or
-    this = Dot() and result = "."
-    or
-    this = Any() and result = "[^]"
-  }
-}
-
-/**
- * An abstract input symbol that represents a character class.
- */
-abstract class CharacterClass extends InputSymbol {
-  /**
-   * Gets a character that is relevant for intersection-tests involving this
-   * character class.
-   *
-   * Specifically, this is any of the characters mentioned explicitly in the
-   * character class, offset by one if it is inverted. For character class escapes,
-   * the result is as if the class had been written out as a series of intervals.
-   *
-   * This set is large enough to ensure that for any two intersecting character
-   * classes, one contains a relevant character from the other.
-   */
-  abstract string getARelevantChar();
-
-  /**
-   * Holds if this character class matches `char`.
-   */
-  bindingset[char]
-  abstract predicate matches(string char);
-
-  /**
-   * Gets a character matched by this character class.
-   */
-  string choose() { result = this.getARelevantChar() and this.matches(result) }
-}
-
-/**
- * Provides implementations for `CharacterClass`.
- */
-private module CharacterClasses {
-  /**
-   * Holds if the character class `cc` has a child (constant or range) that matches `char`.
-   */
-  pragma[noinline]
-  predicate hasChildThatMatches(RegExpCharacterClass cc, string char) {
-    if RegExpFlags::isIgnoreCase(cc.getRootTerm())
-    then
-      // normalize everything to lower case if the regexp is case insensitive
-      exists(string c | hasChildThatMatchesIgnoringCasingFlags(cc, c) | char = c.toLowerCase())
-    else hasChildThatMatchesIgnoringCasingFlags(cc, char)
-  }
-
-  /**
-   * Holds if the character class `cc` has a child (constant or range) that matches `char`.
-   * Ignores whether the character class is inside a regular expression that has the ignore case flag.
-   */
-  pragma[noinline]
-  predicate hasChildThatMatchesIgnoringCasingFlags(RegExpCharacterClass cc, string char) {
-    exists(getCharClassForCanonicalTerm(cc)) and
-    exists(RegExpTerm child | child = cc.getAChild() |
-      char = child.(RegexpCharacterConstant).getValue()
-      or
-      rangeMatchesOnLetterOrDigits(child, char)
-      or
-      not rangeMatchesOnLetterOrDigits(child, _) and
-      char = getARelevantChar() and
-      exists(string lo, string hi | child.(RegExpCharacterRange).isRange(lo, hi) |
-        lo <= char and
-        char <= hi
-      )
-      or
-      exists(string charClass | isEscapeClass(child, charClass) |
-        charClass.toLowerCase() = charClass and
-        classEscapeMatches(charClass, char)
-        or
-        char = getARelevantChar() and
-        charClass.toUpperCase() = charClass and
-        not classEscapeMatches(charClass, char)
-      )
-    )
-  }
-
-  /**
-   * Holds if `range` is a range on lower-case, upper-case, or digits, and matches `char`.
-   * This predicate is used to restrict the searchspace for ranges by only joining `getAnyPossiblyMatchedChar`
-   * on a few ranges.
-   */
-  private predicate rangeMatchesOnLetterOrDigits(RegExpCharacterRange range, string char) {
-    exists(string lo, string hi |
-      range.isRange(lo, hi) and lo = lowercaseLetter() and hi = lowercaseLetter()
-    |
-      lo <= char and
-      char <= hi and
-      char = lowercaseLetter()
-    )
-    or
-    exists(string lo, string hi |
-      range.isRange(lo, hi) and lo = upperCaseLetter() and hi = upperCaseLetter()
-    |
-      lo <= char and
-      char <= hi and
-      char = upperCaseLetter()
-    )
-    or
-    exists(string lo, string hi | range.isRange(lo, hi) and lo = digit() and hi = digit() |
-      lo <= char and
-      char <= hi and
-      char = digit()
-    )
-  }
-
-  private string lowercaseLetter() { result = "abcdefghijklmnopqrstuvwxyz".charAt(_) }
-
-  private string upperCaseLetter() { result = "ABCDEFGHIJKLMNOPQRSTUVWXYZ".charAt(_) }
-
-  private string digit() { result = [0 .. 9].toString() }
-
-  /**
-   * Gets a char that could be matched by a regular expression.
-   * Includes all printable ascii chars, all constants mentioned in a regexp, and all chars matches by the regexp `/\s|\d|\w/`.
-   */
-  string getARelevantChar() {
-    exists(ascii(result))
-    or
-    exists(RegexpCharacterConstant c | result = c.getValue().charAt(_))
-    or
-    classEscapeMatches(_, result)
-  }
-
-  /**
-   * Gets a char that is mentioned in the character class `c`.
-   */
-  private string getAMentionedChar(RegExpCharacterClass c) {
-    exists(RegExpTerm child | child = c.getAChild() |
-      result = child.(RegexpCharacterConstant).getValue()
-      or
-      child.(RegExpCharacterRange).isRange(result, _)
-      or
-      child.(RegExpCharacterRange).isRange(_, result)
-      or
-      exists(string charClass | isEscapeClass(child, charClass) |
-        result = min(string s | classEscapeMatches(charClass.toLowerCase(), s))
-        or
-        result = max(string s | classEscapeMatches(charClass.toLowerCase(), s))
-      )
-    )
-  }
-
-  bindingset[char, cc]
-  private string caseNormalize(string char, RegExpTerm cc) {
-    if RegExpFlags::isIgnoreCase(cc.getRootTerm())
-    then result = char.toLowerCase()
-    else result = char
-  }
-
-  /**
-   * An implementation of `CharacterClass` for positive (non inverted) character classes.
-   */
-  private class PositiveCharacterClass extends CharacterClass {
-    RegExpCharacterClass cc;
-
-    PositiveCharacterClass() { this = getCharClassForCanonicalTerm(cc) and not cc.isInverted() }
-
-    override string getARelevantChar() { result = caseNormalize(getAMentionedChar(cc), cc) }
-
-    override predicate matches(string char) { hasChildThatMatches(cc, char) }
-  }
-
-  /**
-   * An implementation of `CharacterClass` for inverted character classes.
-   */
-  private class InvertedCharacterClass extends CharacterClass {
-    RegExpCharacterClass cc;
-
-    InvertedCharacterClass() { this = getCharClassForCanonicalTerm(cc) and cc.isInverted() }
-
-    override string getARelevantChar() {
-      result = nextChar(caseNormalize(getAMentionedChar(cc), cc)) or
-      nextChar(result) = caseNormalize(getAMentionedChar(cc), cc)
-    }
-
-    bindingset[char]
-    override predicate matches(string char) { not hasChildThatMatches(cc, char) }
-  }
-
-  /**
-   * Holds if the character class escape `clazz` (\d, \s, or \w) matches `char`.
-   */
-  pragma[noinline]
-  private predicate classEscapeMatches(string clazz, string char) {
-    clazz = "d" and
-    char = "0123456789".charAt(_)
-    or
-    clazz = "s" and
-    char = [" ", "\t", "\r", "\n", 11.toUnicode(), 12.toUnicode()] // 11.toUnicode() = \v, 12.toUnicode() = \f
-    or
-    clazz = "w" and
-    char = "abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ0123456789_".charAt(_)
-  }
-
-  /**
-   * An implementation of `CharacterClass` for \d, \s, and \w.
-   */
-  private class PositiveCharacterClassEscape extends CharacterClass {
-    string charClass;
-    RegExpTerm cc;
-
-    PositiveCharacterClassEscape() {
-      isEscapeClass(cc, charClass) and
-      this = getCharClassForCanonicalTerm(cc) and
-      charClass = ["d", "s", "w"]
-    }
-
-    override string getARelevantChar() {
-      charClass = "d" and
-      result = ["0", "9"]
-      or
-      charClass = "s" and
-      result = " "
-      or
-      charClass = "w" and
-      if RegExpFlags::isIgnoreCase(cc.getRootTerm())
-      then result = ["a", "z", "_", "0", "9"]
-      else result = ["a", "Z", "_", "0", "9"]
-    }
-
-    override predicate matches(string char) { classEscapeMatches(charClass, char) }
-
-    override string choose() {
-      charClass = "d" and
-      result = "9"
-      or
-      charClass = "s" and
-      result = " "
-      or
-      charClass = "w" and
-      result = "a"
-    }
-  }
-
-  /**
-   * An implementation of `CharacterClass` for \D, \S, and \W.
-   */
-  private class NegativeCharacterClassEscape extends CharacterClass {
-    string charClass;
-
-    NegativeCharacterClassEscape() {
-      exists(RegExpTerm cc |
-        isEscapeClass(cc, charClass) and
-        this = getCharClassForCanonicalTerm(cc) and
-        charClass = ["D", "S", "W"]
-      )
-    }
-
-    override string getARelevantChar() {
-      charClass = "D" and
-      result = ["a", "Z", "!"]
-      or
-      charClass = "S" and
-      result = ["a", "9", "!"]
-      or
-      charClass = "W" and
-      result = [" ", "!"]
-    }
-
-    bindingset[char]
-    override predicate matches(string char) {
-      not classEscapeMatches(charClass.toLowerCase(), char)
-    }
-  }
-
-  /** Gets a representative for all char classes that match the same chars as `c`. */
-  CharacterClass normalize(CharacterClass c) {
-    exists(string normalization |
-      normalization = getNormalizationString(c) and
-      result =
-        min(CharacterClass cc, string raw |
-          getNormalizationString(cc) = normalization and cc = CharClass(raw)
-        |
-          cc order by raw
-        )
-    )
-  }
-
-  /** Gets a string representing all the chars matched by `c` */
-  private string getNormalizationString(CharacterClass c) {
-    (c instanceof PositiveCharacterClass or c instanceof PositiveCharacterClassEscape) and
-    result = concat(string char | c.matches(char) and char = CharacterClasses::getARelevantChar())
-    or
-    (c instanceof InvertedCharacterClass or c instanceof NegativeCharacterClassEscape) and
-    // the string produced by the concat can not contain repeated chars
-    // so by starting the below with "nn" we can guarantee that
-    // it will not overlap with the above case.
-    // and a negative char class can never match the same chars as a positive one, so we don't miss any results from this.
-    result =
-      "nn:" +
-        concat(string char | not c.matches(char) and char = CharacterClasses::getARelevantChar())
-  }
-}
-
-private class EdgeLabel extends TInputSymbol {
-  string toString() {
-    this = Epsilon() and result = ""
-    or
-    exists(InputSymbol s | this = s and result = s.toString())
-  }
-}
-
-/**
- * A RegExp term that acts like a plus.
- * Either it's a RegExpPlus, or it is a range {1,X} where X is >= 30.
- * 30 has been chosen as a threshold because for exponential blowup 2^30 is enough to get a decent DOS attack.
- */
-private class EffectivelyPlus extends RegExpTerm {
-  EffectivelyPlus() {
-    this instanceof RegExpPlus
-    or
-    exists(RegExpRange range |
-      range.getLowerBound() = 1 and
-      (range.getUpperBound() >= 30 or not exists(range.getUpperBound()))
-    |
-      this = range
-    )
-  }
-}
-
-/**
- * A RegExp term that acts like a star.
- * Either it's a RegExpStar, or it is a range {0,X} where X is >= 30.
- */
-private class EffectivelyStar extends RegExpTerm {
-  EffectivelyStar() {
-    this instanceof RegExpStar
-    or
-    exists(RegExpRange range |
-      range.getLowerBound() = 0 and
-      (range.getUpperBound() >= 30 or not exists(range.getUpperBound()))
-    |
-      this = range
-    )
-  }
-}
-
-/**
- * A RegExp term that acts like a question mark.
- * Either it's a RegExpQuestion, or it is a range {0,1}.
- */
-private class EffectivelyQuestion extends RegExpTerm {
-  EffectivelyQuestion() {
-    this instanceof RegExpOpt
-    or
-    exists(RegExpRange range | range.getLowerBound() = 0 and range.getUpperBound() = 1 |
-      this = range
-    )
-  }
-}
-
-/**
- * Gets the state before matching `t`.
- */
-pragma[inline]
-private State before(RegExpTerm t) { result = Match(t, 0) }
-
-/**
- * Gets a state the NFA may be in after matching `t`.
- */
-State after(RegExpTerm t) {
-  exists(RegExpAlt alt | t = alt.getAChild() | result = after(alt))
-  or
-  exists(RegExpSequence seq, int i | t = seq.getChild(i) |
-    result = before(seq.getChild(i + 1))
-    or
-    i + 1 = seq.getNumChild() and result = after(seq)
-  )
-  or
-  exists(RegExpGroup grp | t = grp.getAChild() | result = after(grp))
-  or
-  exists(EffectivelyStar star | t = star.getAChild() |
-    not isPossessive(star) and
-    result = before(star)
-  )
-  or
-  exists(EffectivelyPlus plus | t = plus.getAChild() |
-    not isPossessive(plus) and
-    result = before(plus)
-    or
-    result = after(plus)
-  )
-  or
-  exists(EffectivelyQuestion opt | t = opt.getAChild() | result = after(opt))
-  or
-  exists(RegExpRoot root | t = root |
-    if matchesAnySuffix(root) then result = AcceptAnySuffix(root) else result = Accept(root)
-  )
-}
-
-/**
- * Holds if the NFA has a transition from `q1` to `q2` labelled with `lbl`.
- */
-predicate delta(State q1, EdgeLabel lbl, State q2) {
-  exists(RegexpCharacterConstant s, int i |
-    q1 = Match(s, i) and
-    (
-      not RegExpFlags::isIgnoreCase(s.getRootTerm()) and
-      lbl = Char(s.getValue().charAt(i))
-      or
-      // normalize everything to lower case if the regexp is case insensitive
-      RegExpFlags::isIgnoreCase(s.getRootTerm()) and
-      exists(string c | c = s.getValue().charAt(i) | lbl = Char(c.toLowerCase()))
-    ) and
-    (
-      q2 = Match(s, i + 1)
-      or
-      s.getValue().length() = i + 1 and
-      q2 = after(s)
-    )
-  )
-  or
-  exists(RegExpDot dot | q1 = before(dot) and q2 = after(dot) |
-    if RegExpFlags::isDotAll(dot.getRootTerm()) then lbl = Any() else lbl = Dot()
-  )
-  or
-  exists(RegExpCharacterClass cc |
-    cc.isUniversalClass() and q1 = before(cc) and lbl = Any() and q2 = after(cc)
-    or
-    q1 = before(cc) and
-    lbl = CharacterClasses::normalize(CharClass(getCanonicalizationString(cc))) and
-    q2 = after(cc)
-  )
-  or
-  exists(RegExpTerm cc | isEscapeClass(cc, _) |
-    q1 = before(cc) and
-    lbl = CharacterClasses::normalize(CharClass(getCanonicalizationString(cc))) and
-    q2 = after(cc)
-  )
-  or
-  exists(RegExpAlt alt | lbl = Epsilon() | q1 = before(alt) and q2 = before(alt.getAChild()))
-  or
-  exists(RegExpSequence seq | lbl = Epsilon() | q1 = before(seq) and q2 = before(seq.getChild(0)))
-  or
-  exists(RegExpGroup grp | lbl = Epsilon() | q1 = before(grp) and q2 = before(grp.getChild(0)))
-  or
-  exists(EffectivelyStar star | lbl = Epsilon() |
-    q1 = before(star) and q2 = before(star.getChild(0))
-    or
-    q1 = before(star) and q2 = after(star)
-  )
-  or
-  exists(EffectivelyPlus plus | lbl = Epsilon() |
-    q1 = before(plus) and q2 = before(plus.getChild(0))
-  )
-  or
-  exists(EffectivelyQuestion opt | lbl = Epsilon() |
-    q1 = before(opt) and q2 = before(opt.getChild(0))
-    or
-    q1 = before(opt) and q2 = after(opt)
-  )
-  or
-  exists(RegExpRoot root | q1 = AcceptAnySuffix(root) |
-    lbl = Any() and q2 = q1
-    or
-    lbl = Epsilon() and q2 = Accept(root)
-  )
-  or
-  exists(RegExpRoot root | q1 = Match(root, 0) | matchesAnyPrefix(root) and lbl = Any() and q2 = q1)
-  or
-  exists(RegExpDollar dollar | q1 = before(dollar) |
-    lbl = Epsilon() and q2 = Accept(getRoot(dollar))
-  )
-  or
-  exists(EmptyPositiveSubPattern empty | q1 = before(empty) | lbl = Epsilon() and q2 = after(empty))
-}
-
-/**
- * Gets a state that `q` has an epsilon transition to.
- */
-State epsilonSucc(State q) { delta(q, Epsilon(), result) }
-
-/**
- * Gets a state that has an epsilon transition to `q`.
- */
-State epsilonPred(State q) { q = epsilonSucc(result) }
-
-/**
- * Holds if there is a state `q` that can be reached from `q1`
- * along epsilon edges, such that there is a transition from
- * `q` to `q2` that consumes symbol `s`.
- */
-predicate deltaClosed(State q1, InputSymbol s, State q2) { delta(epsilonSucc*(q1), s, q2) }
-
-/**
- * Gets the root containing the given term, that is, the root of the literal,
- * or a branch of the root disjunction.
- */
-RegExpRoot getRoot(RegExpTerm term) {
-  result = term or
-  result = getRoot(term.getParent())
-}
-
-/**
- * A state in the NFA.
- */
-newtype TState =
-  /**
-   * A state representing that the NFA is about to match a term.
-   * `i` is used to index into multi-char literals.
-   */
-  Match(RelevantRegExpTerm t, int i) {
-    i = 0
-    or
-    exists(t.(RegexpCharacterConstant).getValue().charAt(i))
-  } or
-  /**
-   * An accept state, where exactly the given input string is accepted.
-   */
-  Accept(RegExpRoot l) { l.isRelevant() } or
-  /**
-   * An accept state, where the given input string, or any string that has this
-   * string as a prefix, is accepted.
-   */
-  AcceptAnySuffix(RegExpRoot l) { l.isRelevant() }
-
-/**
- * Gets a state that is about to match the regular expression `t`.
- */
-State mkMatch(RegExpTerm t) { result = Match(t, 0) }
-
-/**
- * A state in the NFA corresponding to a regular expression.
- *
- * Each regular expression literal `l` has one accepting state
- * `Accept(l)`, one state that accepts all suffixes `AcceptAnySuffix(l)`,
- * and a state `Match(t, i)` for every subterm `t`,
- * which represents the state of the NFA before starting to
- * match `t`, or the `i`th character in `t` if `t` is a constant.
- */
-class State extends TState {
-  RegExpTerm repr;
-
-  State() {
-    this = Match(repr, _) or
-    this = Accept(repr) or
-    this = AcceptAnySuffix(repr)
-  }
-
-  /**
-   * Gets a string representation for this state in a regular expression.
-   */
-  string toString() {
-    exists(int i | this = Match(repr, i) | result = "Match(" + repr + "," + i + ")")
-    or
-    this instanceof Accept and
-    result = "Accept(" + repr + ")"
-    or
-    this instanceof AcceptAnySuffix and
-    result = "AcceptAny(" + repr + ")"
-  }
-
-  /**
-   * Gets the location for this state.
-   */
-  Location getLocation() { result = repr.getLocation() }
-
-  /**
-   * Gets the term represented by this state.
-   */
-  RegExpTerm getRepr() { result = repr }
-}
-
-/**
- * Gets the minimum char that is matched by both the character classes `c` and `d`.
- */
-private string getMinOverlapBetweenCharacterClasses(CharacterClass c, CharacterClass d) {
-  result = min(getAOverlapBetweenCharacterClasses(c, d))
-}
-
-/**
- * Gets a char that is matched by both the character classes `c` and `d`.
- * And `c` and `d` is not the same character class.
- */
-private string getAOverlapBetweenCharacterClasses(CharacterClass c, CharacterClass d) {
-  sharesRoot(c, d) and
-  result = [c.getARelevantChar(), d.getARelevantChar()] and
-  c.matches(result) and
-  d.matches(result) and
-  not c = d
-}
-
-/**
- * Gets a character that is represented by both `c` and `d`.
- */
-string intersect(InputSymbol c, InputSymbol d) {
-  (sharesRoot(c, d) or [c, d] = Any()) and
-  (
-    c = Char(result) and
-    d = getAnInputSymbolMatching(result)
-    or
-    result = getMinOverlapBetweenCharacterClasses(c, d)
-    or
-    result = c.(CharacterClass).choose() and
-    (
-      d = c
-      or
-      d = Dot() and
-      not (result = "\n" or result = "\r")
-      or
-      d = Any()
-    )
-    or
-    (c = Dot() or c = Any()) and
-    (d = Dot() or d = Any()) and
-    result = "a"
-  )
-  or
-  result = intersect(d, c)
-}
-
-/**
- * Gets a symbol that matches `char`.
- */
-bindingset[char]
-InputSymbol getAnInputSymbolMatching(string char) {
-  result = Char(char)
-  or
-  result.(CharacterClass).matches(char)
-  or
-  result = Dot() and
-  not (char = "\n" or char = "\r")
-  or
-  result = Any()
-}
-
-/**
- * Holds if `state` is a start state.
- */
-predicate isStartState(State state) {
-  state = mkMatch(any(RegExpRoot r))
-  or
-  exists(RegExpCaret car | state = after(car))
-}
-
-/**
- * Holds if `state` is a candidate for ReDoS with string `pump`.
- */
-signature predicate isCandidateSig(State state, string pump);
-
-/**
- * Holds if `state` is a candidate for ReDoS.
- */
-signature predicate isCandidateSig(State state);
-
-/**
- * Predicates for constructing a prefix string that leads to a given state.
- */
-module PrefixConstruction<isCandidateSig/1 isCandidate> {
-  /**
-   * Holds if `state` is the textually last start state for the regular expression.
-   */
-  private predicate lastStartState(RelevantState state) {
-    exists(RegExpRoot root |
-      state =
-        max(RelevantState s, Location l |
-          isStartState(s) and
-          getRoot(s.getRepr()) = root and
-          l = s.getRepr().getLocation()
-        |
-          s
-          order by
-            l.getStartLine(), l.getStartColumn(), s.getRepr().toString(), l.getEndColumn(),
-            l.getEndLine()
-        )
-    )
-  }
-
-  /**
-   * Holds if there exists any transition (Epsilon() or other) from `a` to `b`.
-   */
-  private predicate existsTransition(State a, State b) { delta(a, _, b) }
-
-  /**
-   * Gets the minimum number of transitions it takes to reach `state` from the `start` state.
-   */
-  int prefixLength(State start, State state) =
-    shortestDistances(lastStartState/1, existsTransition/2)(start, state, result)
-
-  /**
-   * Gets the minimum number of transitions it takes to reach `state` from the start state.
-   */
-  private int lengthFromStart(State state) { result = prefixLength(_, state) }
-
-  /**
-   * Gets a string for which the regular expression will reach `state`.
-   *
-   * Has at most one result for any given `state`.
-   * This predicate will not always have a result even if there is a ReDoS issue in
-   * the regular expression.
-   */
-  string prefix(State state) {
-    lastStartState(state) and
-    result = ""
-    or
-    // the search stops past the last redos candidate state.
-    lengthFromStart(state) <= max(lengthFromStart(any(State s | isCandidate(s)))) and
-    exists(State prev |
-      // select a unique predecessor (by an arbitrary measure)
-      prev =
-        min(State s, Location loc |
-          lengthFromStart(s) = lengthFromStart(state) - 1 and
-          loc = s.getRepr().getLocation() and
-          delta(s, _, state)
-        |
-          s
-          order by
-            loc.getStartLine(), loc.getStartColumn(), loc.getEndLine(), loc.getEndColumn(),
-            s.getRepr().toString()
-        )
-    |
-      // greedy search for the shortest prefix
-      result = prefix(prev) and delta(prev, Epsilon(), state)
-      or
-      not delta(prev, Epsilon(), state) and
-      result = prefix(prev) + getCanonicalEdgeChar(prev, state)
-    )
-  }
-
-  /**
-   * Gets a canonical char for which there exists a transition from `prev` to `next` in the NFA.
-   */
-  private string getCanonicalEdgeChar(State prev, State next) {
-    result =
-      min(string c | delta(prev, any(InputSymbol symbol | c = intersect(Any(), symbol)), next))
-  }
-
-  /** A state within a regular expression that contains a candidate state. */
-  class RelevantState instanceof State {
-    RelevantState() {
-      exists(State s | isCandidate(s) | getRoot(s.getRepr()) = getRoot(this.getRepr()))
-    }
-
-    /** Gets a string representation for this state in a regular expression. */
-    string toString() { result = State.super.toString() }
-
-    /** Gets the term represented by this state. */
-    RegExpTerm getRepr() { result = State.super.getRepr() }
-  }
-}
-
-/**
- * A module for pruning candidate ReDoS states.
- * The candidates are specified by the `isCandidate` signature predicate.
- * The candidates are checked for rejecting suffixes and deduplicated,
- * and the resulting ReDoS states are read by the `hasReDoSResult` predicate.
- */
-module ReDoSPruning<isCandidateSig/2 isCandidate> {
-  /**
-   * Holds if repeating `pump` starting at `state` is a candidate for causing backtracking.
-   * No check whether a rejected suffix exists has been made.
-   */
-  private predicate isReDoSCandidate(State state, string pump) {
-    isCandidate(state, pump) and
-    not state = acceptsAnySuffix() and // pruning early - these can never get stuck in a rejecting state.
-    (
-      not isCandidate(epsilonSucc+(state), _)
-      or
-      epsilonSucc+(state) = state and
-      state =
-        max(State s, Location l |
-          s = epsilonSucc+(state) and
-          l = s.getRepr().getLocation() and
-          isCandidate(s, _) and
-          s.getRepr() instanceof InfiniteRepetitionQuantifier
-        |
-          s order by l.getStartLine(), l.getStartColumn(), l.getEndColumn(), l.getEndLine()
-        )
-    )
-  }
-
-  /** Gets a state that can reach the `accept-any` state using only epsilon steps. */
-  private State acceptsAnySuffix() { epsilonSucc*(result) = AcceptAnySuffix(_) }
-
-  predicate isCandidateState(State s) { isReDoSCandidate(s, _) }
-
-  import PrefixConstruction<isCandidateState/1> as Prefix
-
-  class RelevantState = Prefix::RelevantState;
-
-  /**
-   * Predicates for testing the presence of a rejecting suffix.
-   *
-   * These predicates are used to ensure that the all states reached from the fork
-   * by repeating `w` have a rejecting suffix.
-   *
-   * For example, a regexp like `/^(a+)+/` will accept any string as long the prefix is
-   * some number of `"a"`s, and it is therefore not possible to construct a rejecting suffix.
-   *
-   * A regexp like `/(a+)+$/` or `/(a+)+b/` trivially has a rejecting suffix,
-   * as the suffix "X" will cause both the regular expressions to be rejected.
-   *
-   * The string `w` is repeated any number of times because it needs to be
-   * infinitely repeatable for the attack to work.
-   * For the regular expression `/((ab)+)*abab/` the accepting state is not reachable from the fork
-   * using epsilon transitions. But any attempt at repeating `w` will end in a state that accepts all suffixes.
-   */
-  private module SuffixConstruction {
-    /**
-     * Holds if all states reachable from `fork` by repeating `w`
-     * are likely rejectable by appending some suffix.
-     */
-    predicate reachesOnlyRejectableSuffixes(State fork, string w) {
-      isReDoSCandidate(fork, w) and
-      forex(State next | next = process(fork, w, w.length() - 1) | isLikelyRejectable(next)) and
-      not getProcessPrevious(fork, _, w) = acceptsAnySuffix() // we stop `process(..)` early if we can, check here if it happened.
-    }
-
-    /**
-     * Holds if there likely exists a suffix starting from `s` that leads to the regular expression being rejected.
-     * This predicate might find impossible suffixes when searching for suffixes of length > 1, which can cause FPs.
-     */
-    pragma[noinline]
-    private predicate isLikelyRejectable(RelevantState s) {
-      // exists a reject edge with some char.
-      hasRejectEdge(s)
-      or
-      hasEdgeToLikelyRejectable(s)
-      or
-      // stopping here is rejection
-      isRejectState(s)
-    }
-
-    /**
-     * Holds if `s` is not an accept state, and there is no epsilon transition to an accept state.
-     */
-    predicate isRejectState(RelevantState s) { not epsilonSucc*(s) = Accept(_) }
-
-    /**
-     * Holds if there is likely a non-empty suffix leading to rejection starting in `s`.
-     */
-    pragma[noopt]
-    predicate hasEdgeToLikelyRejectable(RelevantState s) {
-      // all edges (at least one) with some char leads to another state that is rejectable.
-      // the `next` states might not share a common suffix, which can cause FPs.
-      exists(string char | char = hasEdgeToLikelyRejectableHelper(s) |
-        // noopt to force `hasEdgeToLikelyRejectableHelper` to be first in the join-order.
-        exists(State next | deltaClosedChar(s, char, next) | isLikelyRejectable(next)) and
-        forall(State next | deltaClosedChar(s, char, next) | isLikelyRejectable(next))
-      )
-    }
-
-    /**
-     * Gets a char for there exists a transition away from `s`,
-     * and `s` has not been found to be rejectable by `hasRejectEdge` or `isRejectState`.
-     */
-    pragma[noinline]
-    private string hasEdgeToLikelyRejectableHelper(RelevantState s) {
-      not hasRejectEdge(s) and
-      not isRejectState(s) and
-      deltaClosedChar(s, result, _)
-    }
-
-    /**
-     * Holds if there is a state `next` that can be reached from `prev`
-     * along epsilon edges, such that there is a transition from
-     * `prev` to `next` that the character symbol `char`.
-     */
-    predicate deltaClosedChar(RelevantState prev, string char, RelevantState next) {
-      deltaClosed(prev, getAnInputSymbolMatchingRelevant(char), next)
-    }
-
-    pragma[noinline]
-    InputSymbol getAnInputSymbolMatchingRelevant(string char) {
-      char = relevant(_) and
-      result = getAnInputSymbolMatching(char)
-    }
-
-    pragma[noinline]
-    RegExpRoot relevantRoot() {
-      exists(RegExpTerm term, State s |
-        s.getRepr() = term and isCandidateState(s) and result = term.getRootTerm()
-      )
-    }
-
-    /**
-     * Gets a char used for finding possible suffixes inside `root`.
-     */
-    pragma[noinline]
-    private string relevant(RegExpRoot root) {
-      root = relevantRoot() and
-      (
-        exists(ascii(result)) and exists(root)
-        or
-        exists(InputSymbol s | belongsTo(s, root) | result = intersect(s, _))
-        or
-        // The characters from `hasSimpleRejectEdge`. Only `\n` is really needed (as `\n` is not in the `ascii` relation).
-        // The three chars must be kept in sync with `hasSimpleRejectEdge`.
-        result = ["|", "\n", "Z"] and exists(root)
-      )
-    }
-
-    /**
-     * Holds if there exists a `char` such that there is no edge from `s` labeled `char` in our NFA.
-     * The NFA does not model reject states, so the above is the same as saying there is a reject edge.
-     */
-    private predicate hasRejectEdge(State s) {
-      hasSimpleRejectEdge(s)
-      or
-      not hasSimpleRejectEdge(s) and
-      exists(string char | char = relevant(getRoot(s.getRepr())) | not deltaClosedChar(s, char, _))
-    }
-
-    /**
-     * Holds if there is no edge from `s` labeled with "|", "\n", or "Z" in our NFA.
-     * This predicate is used as a cheap pre-processing to speed up `hasRejectEdge`.
-     */
-    private predicate hasSimpleRejectEdge(State s) {
-      // The three chars were chosen arbitrarily. The three chars must be kept in sync with `relevant`.
-      exists(string char | char = ["|", "\n", "Z"] | not deltaClosedChar(s, char, _))
-    }
-
-    /**
-     * Gets a state that can be reached from pumpable `fork` consuming all
-     * chars in `w` any number of times followed by the first `i+1` characters of `w`.
-     */
-    pragma[noopt]
-    private State process(State fork, string w, int i) {
-      exists(State prev | prev = getProcessPrevious(fork, i, w) |
-        not prev = acceptsAnySuffix() and // we stop `process(..)` early if we can. If the successor accepts any suffix, then we know it can never be rejected.
-        exists(string char, InputSymbol sym |
-          char = w.charAt(i) and
-          deltaClosed(prev, sym, result) and
-          // noopt to prevent joining `prev` with all possible `chars` that could transition away from `prev`.
-          // Instead only join with the set of `chars` where a relevant `InputSymbol` has already been found.
-          sym = getAProcessInputSymbol(char)
-        )
-      )
-    }
-
-    /**
-     * Gets a state that can be reached from pumpable `fork` consuming all
-     * chars in `w` any number of times followed by the first `i` characters of `w`.
-     */
-    private State getProcessPrevious(State fork, int i, string w) {
-      isReDoSCandidate(fork, w) and
-      (
-        i = 0 and result = fork
-        or
-        result = process(fork, w, i - 1)
-        or
-        // repeat until fixpoint
-        i = 0 and
-        result = process(fork, w, w.length() - 1)
-      )
-    }
-
-    /**
-     * Gets an InputSymbol that matches `char`.
-     * The predicate is specialized to only have a result for the `char`s that are relevant for the `process` predicate.
-     */
-    private InputSymbol getAProcessInputSymbol(string char) {
-      char = getAProcessChar() and
-      result = getAnInputSymbolMatching(char)
-    }
-
-    /**
-     * Gets a `char` that occurs in a `pump` string.
-     */
-    private string getAProcessChar() { result = any(string s | isReDoSCandidate(_, s)).charAt(_) }
-  }
-
-  /**
-   * Holds if `term` may cause superlinear backtracking on strings containing many repetitions of `pump`.
-   * Gets the shortest string that causes superlinear backtracking.
-   */
-  private predicate isReDoSAttackable(RegExpTerm term, string pump, State s) {
-    exists(int i, string c | s = Match(term, i) |
-      c =
-        min(string w |
-          isCandidate(s, w) and
-          SuffixConstruction::reachesOnlyRejectableSuffixes(s, w)
-        |
-          w order by w.length(), w
-        ) and
-      pump = escape(rotate(c, i))
-    )
-  }
-
-  /**
-   * Holds if the state `s` (represented by the term `t`) can have backtracking with repetitions of `pump`.
-   *
-   * `prefixMsg` contains a friendly message for a prefix that reaches `s` (or `prefixMsg` is the empty string if the prefix is empty or if no prefix could be found).
-   */
-  predicate hasReDoSResult(RegExpTerm t, string pump, State s, string prefixMsg) {
-    isReDoSAttackable(t, pump, s) and
-    (
-      prefixMsg = "starting with '" + escape(Prefix::prefix(s)) + "' and " and
-      not Prefix::prefix(s) = ""
-      or
-      Prefix::prefix(s) = "" and prefixMsg = ""
-      or
-      not exists(Prefix::prefix(s)) and prefixMsg = ""
-    )
-  }
-
-  /**
-   * Gets the result of backslash-escaping newlines, carriage-returns and
-   * backslashes in `s`.
-   */
-  bindingset[s]
-  private string escape(string s) {
-    result =
-      s.replaceAll("\\", "\\\\")
-          .replaceAll("\n", "\\n")
-          .replaceAll("\r", "\\r")
-          .replaceAll("\t", "\\t")
-  }
-
-  /**
-   * Gets `str` with the last `i` characters moved to the front.
-   *
-   * We use this to adjust the pump string to match with the beginning of
-   * a RegExpTerm, so it doesn't start in the middle of a constant.
-   */
-  bindingset[str, i]
-  private string rotate(string str, int i) {
-    result = str.suffix(str.length() - i) + str.prefix(str.length() - i)
-  }
-}
-
-/**
- * A module that describes a tree where each node has one or more associated characters, also known as a trie.
- * The root node has no associated character.
- * This module is a signature used in `Concretizer`.
- */
-signature module CharTree {
-  /** A node in the tree. */
-  class CharNode;
-
-  /** Gets the previous node in the tree from `t`. */
-  CharNode getPrev(CharNode t);
-
-  /**
-   * Holds if `n` is at the end of a tree. I.e. a node that should have a result in the `Concretizer` module.
-   * Such a node can still have children.
-   */
-  predicate isARelevantEnd(CharNode n);
-
-  /** Gets a char associated with `t`. */
-  string getChar(CharNode t);
-}
-
-/**
- * Implements an algorithm for computing all possible strings
- * from following a tree of nodes (as described in `CharTree`).
- *
- * The string is build using one big concat, where all the chars are computed first.
- * See `concretize`.
- */
-module Concretizer<CharTree Impl> {
-  private class Node = Impl::CharNode;
-
-  private predicate getPrev = Impl::getPrev/1;
-
-  private predicate isARelevantEnd = Impl::isARelevantEnd/1;
-
-  private predicate getChar = Impl::getChar/1;
-
-  /** Holds if `n` is on a path from the root to a leaf, and is therefore relevant for the results in `concretize`. */
-  private predicate isRelevant(Node n) {
-    isARelevantEnd(n)
-    or
-    exists(Node succ | isRelevant(succ) | n = getPrev(succ))
-  }
-
-  /** Holds if `n` is a root with no predecessors. */
-  private predicate isRoot(Node n) { not exists(getPrev(n)) }
-
-  /** Gets the distance from a root to `n`. */
-  private int nodeDepth(Node n) {
-    result = 0 and isRoot(n)
-    or
-    isRelevant(n) and
-    exists(Node prev | result = nodeDepth(prev) + 1 | prev = getPrev(n))
-  }
-
-  /** Gets an ancestor of `end`, where `end` is a node that should have a result in `concretize`. */
-  private Node getAnAncestor(Node end) { isARelevantEnd(end) and result = getPrev*(end) }
-
-  /** Gets the `i`th character on the path from the root to `n`. */
-  pragma[noinline]
-  private string getPrefixChar(Node n, int i) {
-    exists(Node ancestor |
-      result = getChar(ancestor) and
-      ancestor = getAnAncestor(n) and
-      i = nodeDepth(ancestor)
-    )
-  }
-
-  /** Gets a string corresponding to `node`. */
-  language[monotonicAggregates]
-  string concretize(Node n) {
-    result = strictconcat(int i | exists(getPrefixChar(n, i)) | getPrefixChar(n, i) order by i)
-  }
-}
+private import RegexTreeView::RegexTreeView as TreeView
+// NfaUtils should be used directly from the shared pack, and not from this file.
+deprecated private import codeql.regex.nfa.NfaUtils::Make<TreeView> as Dep
+import Dep
diff --git a/javascript/ql/lib/semmle/javascript/security/regexp/NfaUtilsSpecific.qll b/javascript/ql/lib/semmle/javascript/security/regexp/NfaUtilsSpecific.qll
deleted file mode 100644
index b5abec6667a..00000000000
--- a/javascript/ql/lib/semmle/javascript/security/regexp/NfaUtilsSpecific.qll
+++ /dev/null
@@ -1,70 +0,0 @@
-/**
- * Provides JavaScript-specific definitions for use in the NfaUtils module.
- */
-
-import javascript
-
-/**
- * Holds if `term` is an escape class representing e.g. `\d`.
- * `clazz` is which character class it represents, e.g. "d" for `\d`.
- */
-predicate isEscapeClass(RegExpTerm term, string clazz) {
-  exists(RegExpCharacterClassEscape escape | term = escape | escape.getValue() = clazz)
-}
-
-/**
- * Holds if `term` is a possessive quantifier.
- * As javascript's regexes do not support possessive quantifiers, this never holds, but is used by the shared library.
- */
-predicate isPossessive(RegExpQuantifier term) { none() }
-
-/**
- * Holds if the regex that `term` is part of is used in a way that ignores any leading prefix of the input it's matched against.
- * Not yet implemented for JavaScript.
- */
-predicate matchesAnyPrefix(RegExpTerm term) { any() }
-
-/**
- * Holds if the regex that `term` is part of is used in a way that ignores any trailing suffix of the input it's matched against.
- * Not yet implemented for JavaScript.
- */
-predicate matchesAnySuffix(RegExpTerm term) { any() }
-
-/**
- * Holds if the regular expression should not be considered.
- *
- * For javascript we make the pragmatic performance optimization to ignore minified files.
- */
-predicate isExcluded(RegExpParent parent) { parent.(Expr).getTopLevel().isMinified() }
-
-/**
- * A module containing predicates for determining which flags a regular expression have.
- */
-module RegExpFlags {
-  /**
-   * Holds if `root` has the `i` flag for case-insensitive matching.
-   */
-  predicate isIgnoreCase(RegExpTerm root) { RegExp::isIgnoreCase(getFlags(root)) }
-
-  /**
-   * Gets the flags for `root`, or the empty string if `root` has no flags.
-   */
-  string getFlags(RegExpTerm root) {
-    root.isRootTerm() and
-    exists(DataFlow::RegExpCreationNode node | node.getRoot() = root |
-      result = node.getFlags()
-      or
-      not exists(node.getFlags()) and
-      result = ""
-    )
-    or
-    exists(RegExpPatternSource source | source.getRegExpTerm() = root |
-      result = source.getARegExpObject().(DataFlow::RegExpCreationNode).getFlags()
-    )
-  }
-
-  /**
-   * Holds if `root` has the `s` flag for multi-line matching.
-   */
-  predicate isDotAll(RegExpTerm root) { RegExp::isDotAll(getFlags(root)) }
-}
diff --git a/javascript/ql/lib/semmle/javascript/security/regexp/PolynomialReDoSCustomizations.qll b/javascript/ql/lib/semmle/javascript/security/regexp/PolynomialReDoSCustomizations.qll
index 87f9437196f..c802218ffab 100644
--- a/javascript/ql/lib/semmle/javascript/security/regexp/PolynomialReDoSCustomizations.qll
+++ b/javascript/ql/lib/semmle/javascript/security/regexp/PolynomialReDoSCustomizations.qll
@@ -5,10 +5,12 @@
  */
 
 import javascript
-import SuperlinearBackTracking
+private import semmle.javascript.security.regexp.RegexTreeView::RegexTreeView as TreeView
 
 /** Module containing sources, sinks, and sanitizers for polynomial regular expression denial-of-service attacks. */
 module PolynomialReDoS {
+  import codeql.regex.nfa.SuperlinearBackTracking::Make<TreeView>
+
   /**
    * A data flow source node for polynomial regular expression denial-of-service vulnerabilities.
    */
diff --git a/javascript/ql/lib/semmle/javascript/security/regexp/RegexpMatching.qll b/javascript/ql/lib/semmle/javascript/security/regexp/RegexpMatching.qll
index e2c75ff980b..d3f6aae96b3 100644
--- a/javascript/ql/lib/semmle/javascript/security/regexp/RegexpMatching.qll
+++ b/javascript/ql/lib/semmle/javascript/security/regexp/RegexpMatching.qll
@@ -3,155 +3,7 @@
  * and for testing which capture groups are filled when a particular regexp matches a string.
  */
 
-import NfaUtils
-
-/** A root term */
-class RootTerm extends RegExpTerm {
-  RootTerm() { this.isRootTerm() }
-}
-
-/**
- * Holds if it should be tested whether `root` matches `str`.
- *
- * If `ignorePrefix` is true, then a regexp without a start anchor will be treated as if it had a start anchor.
- * E.g. a regular expression `/foo$/` will match any string that ends with "foo",
- * but if `ignorePrefix` is true, it will only match "foo".
- *
- * If `testWithGroups` is true, then the `RegexpMatching::fillsCaptureGroup` predicate can be used to determine which capture
- * groups are filled by a string.
- */
-signature predicate isRegexpMatchingCandidateSig(
-  RootTerm root, string str, boolean ignorePrefix, boolean testWithGroups
-);
-
-/**
- * A module for determining if a regexp matches a given string,
- * and reasoning about which capture groups are filled by a given string.
- *
- * The module parameter `isCandidate` determines which strings should be tested,
- * and the results can be read from the `matches` and `fillsCaptureGroup` predicates.
- */
-module RegexpMatching<isRegexpMatchingCandidateSig/4 isCandidate> {
-  /**
-   * Gets a state the regular expression `reg` can be in after matching the `i`th char in `str`.
-   * The regular expression is modeled as a non-determistic finite automaton,
-   * the regular expression can therefore be in multiple states after matching a character.
-   *
-   * It's a forward search to all possible states, and there is thus no guarantee that the state is on a path to an accepting state.
-   */
-  private State getAState(RootTerm reg, int i, string str, boolean ignorePrefix) {
-    // start state, the -1 position before any chars have been matched
-    i = -1 and
-    isCandidate(reg, str, ignorePrefix, _) and
-    result.getRepr().getRootTerm() = reg and
-    isStartState(result)
-    or
-    // recursive case
-    result = getAStateAfterMatching(reg, _, str, i, _, ignorePrefix)
-  }
-
-  /**
-   * Gets the next state after the `prev` state from `reg`.
-   * `prev` is the state after matching `fromIndex` chars in `str`,
-   * and the result is the state after matching `toIndex` chars in `str`.
-   *
-   * This predicate is used as a step relation in the forwards search (`getAState`),
-   * and also as a step relation in the later backwards search (`getAStateThatReachesAccept`).
-   */
-  private State getAStateAfterMatching(
-    RootTerm reg, State prev, string str, int toIndex, int fromIndex, boolean ignorePrefix
-  ) {
-    // the basic recursive case - outlined into a noopt helper to make performance work out.
-    result = getAStateAfterMatchingAux(reg, prev, str, toIndex, fromIndex, ignorePrefix)
-    or
-    // we can skip past word boundaries if the next char is a non-word char.
-    fromIndex = toIndex and
-    prev.getRepr() instanceof RegExpWordBoundary and
-    prev = getAState(reg, toIndex, str, ignorePrefix) and
-    after(prev.getRepr()) = result and
-    str.charAt(toIndex + 1).regexpMatch("\\W") // \W matches any non-word char.
-  }
-
-  pragma[noopt]
-  private State getAStateAfterMatchingAux(
-    RootTerm reg, State prev, string str, int toIndex, int fromIndex, boolean ignorePrefix
-  ) {
-    prev = getAState(reg, fromIndex, str, ignorePrefix) and
-    fromIndex = toIndex - 1 and
-    exists(string char | char = str.charAt(toIndex) | specializedDeltaClosed(prev, char, result)) and
-    not discardedPrefixStep(prev, result, ignorePrefix)
-  }
-
-  /** Holds if a step from `prev` to `next` should be discarded when the `ignorePrefix` flag is set. */
-  private predicate discardedPrefixStep(State prev, State next, boolean ignorePrefix) {
-    prev = mkMatch(any(RegExpRoot r)) and
-    ignorePrefix = true and
-    next = prev
-  }
-
-  // The `deltaClosed` relation specialized to the chars that exists in strings tested by a `MatchedRegExp`.
-  private predicate specializedDeltaClosed(State prev, string char, State next) {
-    deltaClosed(prev, specializedGetAnInputSymbolMatching(char), next)
-  }
-
-  // The `getAnInputSymbolMatching` relation specialized to the chars that exists in strings tested by a `MatchedRegExp`.
-  pragma[noinline]
-  private InputSymbol specializedGetAnInputSymbolMatching(string char) {
-    exists(string s, RootTerm r | isCandidate(r, s, _, _) | char = s.charAt(_)) and
-    result = getAnInputSymbolMatching(char)
-  }
-
-  /**
-   * Gets the `i`th state on a path to the accepting state when `reg` matches `str`.
-   * Starts with an accepting state as found by `getAState` and searches backwards
-   * to the start state through the reachable states (as found by `getAState`).
-   *
-   * This predicate satisfies the invariant that the result state can be reached with `i` steps from a start state,
-   * and an accepting state can be found after (`str.length() - 1 - i`) steps from the result.
-   * The result state is therefore always on a valid path where `reg` accepts `str`.
-   *
-   * This predicate is only used to find which capture groups a regular expression has filled,
-   * and thus the search is only performed for the strings in the `testWithGroups(..)` predicate.
-   */
-  private State getAStateThatReachesAccept(RootTerm reg, int i, string str, boolean ignorePrefix) {
-    // base case, reaches an accepting state from the last state in `getAState(..)`
-    isCandidate(reg, str, ignorePrefix, true) and
-    i = str.length() - 1 and
-    result = getAState(reg, i, str, ignorePrefix) and
-    epsilonSucc*(result) = Accept(_)
-    or
-    // recursive case. `next` is the next state to be matched after matching `prev`.
-    // this predicate is doing a backwards search, so `prev` is the result we are looking for.
-    exists(State next, State prev, int fromIndex, int toIndex |
-      next = getAStateThatReachesAccept(reg, toIndex, str, ignorePrefix) and
-      next = getAStateAfterMatching(reg, prev, str, toIndex, fromIndex, ignorePrefix) and
-      i = fromIndex and
-      result = prev
-    )
-  }
-
-  /** Gets the capture group number that `term` belongs to. */
-  private int group(RegExpTerm term) {
-    exists(RegExpGroup grp | grp.getNumber() = result | term.getParent*() = grp)
-  }
-
-  /**
-   * Holds if `reg` matches `str`, where `str` is in the `isCandidate` predicate.
-   */
-  predicate matches(RootTerm reg, string str) {
-    exists(State state | state = getAState(reg, str.length() - 1, str, _) |
-      epsilonSucc*(state) = Accept(_)
-    )
-  }
-
-  /**
-   * Holds if matching `str` against `reg` may fill capture group number `g`.
-   * Only holds if `str` is in the `testWithGroups` predicate.
-   */
-  predicate fillsCaptureGroup(RootTerm reg, string str, int g) {
-    exists(State s |
-      s = getAStateThatReachesAccept(reg, _, str, _) and
-      g = group(s.getRepr())
-    )
-  }
-}
+private import RegexTreeView::RegexTreeView as TreeView
+// RegexpMatching should be used directly from the shared pack, and not from this file.
+deprecated import codeql.regex.nfa.RegexpMatching::Make<TreeView> as Dep
+import Dep
diff --git a/javascript/ql/lib/semmle/javascript/security/regexp/SuperlinearBackTracking.qll b/javascript/ql/lib/semmle/javascript/security/regexp/SuperlinearBackTracking.qll
index 14a69dc0644..9996b227ec1 100644
--- a/javascript/ql/lib/semmle/javascript/security/regexp/SuperlinearBackTracking.qll
+++ b/javascript/ql/lib/semmle/javascript/security/regexp/SuperlinearBackTracking.qll
@@ -1,11 +1,4 @@
 /**
- * Provides classes for working with regular expressions that can
- * perform backtracking in superlinear time.
- */
-
-import NfaUtils
-
-/*
  * This module implements the analysis described in the paper:
  *   Valentin Wustholz, Oswaldo Olivo, Marijn J. H. Heule, and Isil Dillig:
  *     Static Detection of DoS Vulnerabilities in
@@ -42,377 +35,7 @@ import NfaUtils
  * It also doesn't find all transitions in the product automaton, which can cause false negatives.
  */
 
-/**
- * Gets any root (start) state of a regular expression.
- */
-private State getRootState() { result = mkMatch(any(RegExpRoot r)) }
-
-private newtype TStateTuple =
-  MkStateTuple(State q1, State q2, State q3) {
-    // starts at (pivot, pivot, succ)
-    isStartLoops(q1, q3) and q1 = q2
-    or
-    step(_, _, _, _, q1, q2, q3) and FeasibleTuple::isFeasibleTuple(q1, q2, q3)
-  }
-
-/**
- * A state in the product automaton.
- * The product automaton contains 3-tuples of states.
- *
- * We lazily only construct those states that we are actually
- * going to need.
- * Either a start state `(pivot, pivot, succ)`, or a state
- * where there exists a transition from an already existing state.
- *
- * The exponential variant of this query (`js/redos`) uses an optimization
- * trick where `q1 <= q2`. This trick cannot be used here as the order
- * of the elements matter.
- */
-class StateTuple extends TStateTuple {
-  State q1;
-  State q2;
-  State q3;
-
-  StateTuple() { this = MkStateTuple(q1, q2, q3) }
-
-  /**
-   * Gest a string representation of this tuple.
-   */
-  string toString() { result = "(" + q1 + ", " + q2 + ", " + q3 + ")" }
-
-  /**
-   * Holds if this tuple is `(r1, r2, r3)`.
-   */
-  pragma[noinline]
-  predicate isTuple(State r1, State r2, State r3) { r1 = q1 and r2 = q2 and r3 = q3 }
-}
-
-/**
- * A module for determining feasible tuples for the product automaton.
- *
- * The implementation is split into many predicates for performance reasons.
- */
-private module FeasibleTuple {
-  /**
-   * Holds if the tuple `(r1, r2, r3)` might be on path from a start-state to an end-state in the product automaton.
-   */
-  pragma[inline]
-  predicate isFeasibleTuple(State r1, State r2, State r3) {
-    // The first element is either inside a repetition (or the start state itself)
-    isRepetitionOrStart(r1) and
-    // The last element is inside a repetition
-    stateInsideRepetition(r3) and
-    // The states are reachable in the NFA in the order r1 -> r2 -> r3
-    delta+(r1) = r2 and
-    delta+(r2) = r3 and
-    // The first element can reach a beginning (the "pivot" state in a `(pivot, succ)` pair).
-    canReachABeginning(r1) and
-    // The last element can reach a target (the "succ" state in a `(pivot, succ)` pair).
-    canReachATarget(r3)
-  }
-
-  /**
-   * Holds if `s` is either inside a repetition, or is the start state (which is a repetition).
-   */
-  pragma[noinline]
-  private predicate isRepetitionOrStart(State s) { stateInsideRepetition(s) or s = getRootState() }
-
-  /**
-   * Holds if state `s` might be inside a backtracking repetition.
-   */
-  pragma[noinline]
-  private predicate stateInsideRepetition(State s) {
-    s.getRepr().getParent*() instanceof InfiniteRepetitionQuantifier
-  }
-
-  /**
-   * Holds if there exists a path in the NFA from `s` to a "pivot" state
-   * (from a `(pivot, succ)` pair that starts the search).
-   */
-  pragma[noinline]
-  private predicate canReachABeginning(State s) {
-    delta+(s) = any(State pivot | isStartLoops(pivot, _))
-  }
-
-  /**
-   * Holds if there exists a path in the NFA from `s` to a "succ" state
-   * (from a `(pivot, succ)` pair that starts the search).
-   */
-  pragma[noinline]
-  private predicate canReachATarget(State s) { delta+(s) = any(State succ | isStartLoops(_, succ)) }
-}
-
-/**
- * Holds if `pivot` and `succ` are a pair of loops that could be the beginning of a quadratic blowup.
- *
- * There is a slight implementation difference compared to the paper: this predicate requires that `pivot != succ`.
- * The case where `pivot = succ` causes exponential backtracking and is handled by the `js/redos` query.
- */
-predicate isStartLoops(State pivot, State succ) {
-  pivot != succ and
-  succ.getRepr() instanceof InfiniteRepetitionQuantifier and
-  delta+(pivot) = succ and
-  (
-    pivot.getRepr() instanceof InfiniteRepetitionQuantifier
-    or
-    pivot = mkMatch(any(RegExpRoot root))
-  )
-}
-
-/**
- * Gets a state for which there exists a transition in the NFA from `s'.
- */
-State delta(State s) { delta(s, _, result) }
-
-/**
- * Holds if there are transitions from the components of `q` to the corresponding
- * components of `r` labelled with `s1`, `s2`, and `s3`, respectively.
- */
-pragma[noinline]
-predicate step(StateTuple q, InputSymbol s1, InputSymbol s2, InputSymbol s3, StateTuple r) {
-  exists(State r1, State r2, State r3 |
-    step(q, s1, s2, s3, r1, r2, r3) and r = MkStateTuple(r1, r2, r3)
-  )
-}
-
-/**
- * Holds if there are transitions from the components of `q` to `r1`, `r2`, and `r3
- * labelled with `s1`, `s2`, and `s3`, respectively.
- */
-pragma[noopt]
-predicate step(
-  StateTuple q, InputSymbol s1, InputSymbol s2, InputSymbol s3, State r1, State r2, State r3
-) {
-  exists(State q1, State q2, State q3 | q.isTuple(q1, q2, q3) |
-    deltaClosed(q1, s1, r1) and
-    deltaClosed(q2, s2, r2) and
-    deltaClosed(q3, s3, r3) and
-    // use noopt to force the join on `getAThreewayIntersect` to happen last.
-    exists(getAThreewayIntersect(s1, s2, s3))
-  )
-}
-
-/**
- * Gets a char that is matched by all the edges `s1`, `s2`, and `s3`.
- *
- * The result is not complete, and might miss some combination of edges that share some character.
- */
-pragma[noinline]
-string getAThreewayIntersect(InputSymbol s1, InputSymbol s2, InputSymbol s3) {
-  result = minAndMaxIntersect(s1, s2) and result = [intersect(s2, s3), intersect(s1, s3)]
-  or
-  result = minAndMaxIntersect(s1, s3) and result = [intersect(s2, s3), intersect(s1, s2)]
-  or
-  result = minAndMaxIntersect(s2, s3) and result = [intersect(s1, s2), intersect(s1, s3)]
-}
-
-/**
- * Gets the minimum and maximum characters that intersect between `a` and `b`.
- * This predicate is used to limit the size of `getAThreewayIntersect`.
- */
-pragma[noinline]
-string minAndMaxIntersect(InputSymbol a, InputSymbol b) {
-  result = [min(intersect(a, b)), max(intersect(a, b))]
-}
-
-private newtype TTrace =
-  Nil() or
-  Step(InputSymbol s1, InputSymbol s2, InputSymbol s3, TTrace t) {
-    isReachableFromStartTuple(_, _, t, s1, s2, s3, _, _)
-  }
-
-/**
- * A list of tuples of input symbols that describe a path in the product automaton
- * starting from some start state.
- */
-class Trace extends TTrace {
-  /**
-   * Gets a string representation of this Trace that can be used for debug purposes.
-   */
-  string toString() {
-    this = Nil() and result = "Nil()"
-    or
-    exists(InputSymbol s1, InputSymbol s2, InputSymbol s3, Trace t | this = Step(s1, s2, s3, t) |
-      result = "Step(" + s1 + ", " + s2 + ", " + s3 + ", " + t + ")"
-    )
-  }
-}
-
-/**
- * Holds if there exists a transition from `r` to `q` in the product automaton.
- * Notice that the arguments are flipped, and thus the direction is backwards.
- */
-pragma[noinline]
-predicate tupleDeltaBackwards(StateTuple q, StateTuple r) { step(r, _, _, _, q) }
-
-/**
- * Holds if `tuple` is an end state in our search.
- * That means there exists a pair of loops `(pivot, succ)` such that `tuple = (pivot, succ, succ)`.
- */
-predicate isEndTuple(StateTuple tuple) { tuple = getAnEndTuple(_, _) }
-
-/**
- * Gets the minimum length of a path from `r` to some an end state `end`.
- *
- * The implementation searches backwards from the end-tuple.
- * This approach was chosen because it is way more efficient if the first predicate given to `shortestDistances` is small.
- * The `end` argument must always be an end state.
- */
-int distBackFromEnd(StateTuple r, StateTuple end) =
-  shortestDistances(isEndTuple/1, tupleDeltaBackwards/2)(end, r, result)
-
-/**
- * Holds if there exists a pair of repetitions `(pivot, succ)` in the regular expression such that:
- * `tuple` is reachable from `(pivot, pivot, succ)` in the product automaton,
- * and there is a distance of `dist` from `tuple` to the nearest end-tuple `(pivot, succ, succ)`,
- * and a path from a start-state to `tuple` follows the transitions in `trace`.
- */
-private predicate isReachableFromStartTuple(
-  State pivot, State succ, StateTuple tuple, Trace trace, int dist
-) {
-  exists(InputSymbol s1, InputSymbol s2, InputSymbol s3, Trace v |
-    isReachableFromStartTuple(pivot, succ, v, s1, s2, s3, tuple, dist) and
-    trace = Step(s1, s2, s3, v)
-  )
-}
-
-private predicate isReachableFromStartTuple(
-  State pivot, State succ, Trace trace, InputSymbol s1, InputSymbol s2, InputSymbol s3,
-  StateTuple tuple, int dist
-) {
-  // base case.
-  exists(State q1, State q2, State q3 |
-    isStartLoops(pivot, succ) and
-    step(MkStateTuple(pivot, pivot, succ), s1, s2, s3, tuple) and
-    tuple = MkStateTuple(q1, q2, q3) and
-    trace = Nil() and
-    dist = distBackFromEnd(tuple, MkStateTuple(pivot, succ, succ))
-  )
-  or
-  // recursive case
-  exists(StateTuple p |
-    isReachableFromStartTuple(pivot, succ, p, trace, dist + 1) and
-    dist = distBackFromEnd(tuple, MkStateTuple(pivot, succ, succ)) and
-    step(p, s1, s2, s3, tuple)
-  )
-}
-
-/**
- * Gets the tuple `(pivot, succ, succ)` from the product automaton.
- */
-StateTuple getAnEndTuple(State pivot, State succ) {
-  isStartLoops(pivot, succ) and
-  result = MkStateTuple(pivot, succ, succ)
-}
-
-/** An implementation of a chain containing chars for use by `Concretizer`. */
-private module CharTreeImpl implements CharTree {
-  class CharNode = Trace;
-
-  CharNode getPrev(CharNode t) { t = Step(_, _, _, result) }
-
-  /** Holds if `n` is used in `isPumpable`. */
-  predicate isARelevantEnd(CharNode n) {
-    exists(State pivot, State succ |
-      isReachableFromStartTuple(pivot, succ, getAnEndTuple(pivot, succ), n, _)
-    )
-  }
-
-  string getChar(CharNode t) {
-    exists(InputSymbol s1, InputSymbol s2, InputSymbol s3 | t = Step(s1, s2, s3, _) |
-      result = getAThreewayIntersect(s1, s2, s3)
-    )
-  }
-}
-
-/**
- * Holds if matching repetitions of `pump` can:
- * 1) Transition from `pivot` back to `pivot`.
- * 2) Transition from `pivot` to `succ`.
- * 3) Transition from `succ` to `succ`.
- *
- * From theorem 3 in the paper linked in the top of this file we can therefore conclude that
- * the regular expression has polynomial backtracking - if a rejecting suffix exists.
- *
- * This predicate is used by `SuperLinearReDoSConfiguration`, and the final results are
- * available in the `hasReDoSResult` predicate.
- */
-predicate isPumpable(State pivot, State succ, string pump) {
-  exists(StateTuple q, Trace t |
-    isReachableFromStartTuple(pivot, succ, q, t, _) and
-    q = getAnEndTuple(pivot, succ) and
-    pump = Concretizer<CharTreeImpl>::concretize(t)
-  )
-}
-
-/**
- * Holds if states starting in `state` can have polynomial backtracking with the string `pump`.
- */
-predicate isReDoSCandidate(State state, string pump) { isPumpable(_, state, pump) }
-
-/**
- * Holds if repetitions of `pump` at `t` will cause polynomial backtracking.
- */
-predicate polynomialReDoS(RegExpTerm t, string pump, string prefixMsg, RegExpTerm prev) {
-  exists(State s, State pivot |
-    ReDoSPruning<isReDoSCandidate/2>::hasReDoSResult(t, pump, s, prefixMsg) and
-    isPumpable(pivot, s, _) and
-    prev = pivot.getRepr()
-  )
-}
-
-/**
- * Gets a message for why `term` can cause polynomial backtracking.
- */
-string getReasonString(RegExpTerm term, string pump, string prefixMsg, RegExpTerm prev) {
-  polynomialReDoS(term, pump, prefixMsg, prev) and
-  result =
-    "Strings " + prefixMsg + "with many repetitions of '" + pump +
-      "' can start matching anywhere after the start of the preceeding " + prev
-}
-
-/**
- * A term that may cause a regular expression engine to perform a
- * polynomial number of match attempts, relative to the input length.
- */
-class PolynomialBackTrackingTerm extends InfiniteRepetitionQuantifier {
-  string reason;
-  string pump;
-  string prefixMsg;
-  RegExpTerm prev;
-
-  PolynomialBackTrackingTerm() {
-    reason = getReasonString(this, pump, prefixMsg, prev) and
-    // there might be many reasons for this term to have polynomial backtracking - we pick the shortest one.
-    reason = min(string msg | msg = getReasonString(this, _, _, _) | msg order by msg.length(), msg)
-  }
-
-  /**
-   * Holds if all non-empty successors to the polynomial backtracking term matches the end of the line.
-   */
-  predicate isAtEndLine() {
-    forall(RegExpTerm succ | this.getSuccessor+() = succ and not matchesEpsilon(succ) |
-      succ instanceof RegExpDollar
-    )
-  }
-
-  /**
-   * Gets the string that should be repeated to cause this regular expression to perform polynomially.
-   */
-  string getPumpString() { result = pump }
-
-  /**
-   * Gets a message for which prefix a matching string must start with for this term to cause polynomial backtracking.
-   */
-  string getPrefixMessage() { result = prefixMsg }
-
-  /**
-   * Gets a predecessor to `this`, which also loops on the pump string, and thereby causes polynomial backtracking.
-   */
-  RegExpTerm getPreviousLoop() { result = prev }
-
-  /**
-   * Gets the reason for the number of match attempts.
-   */
-  string getReason() { result = reason }
-}
+private import RegexTreeView::RegexTreeView as TreeView
+// SuperlinearBackTracking should be used directly from the shared pack, and not from this file.
+deprecated private import codeql.regex.nfa.SuperlinearBackTracking::Make<TreeView> as Dep
+import Dep
diff --git a/javascript/ql/src/Performance/PolynomialReDoS.ql b/javascript/ql/src/Performance/PolynomialReDoS.ql
index 6b66f3812fe..befc556b033 100644
--- a/javascript/ql/src/Performance/PolynomialReDoS.ql
+++ b/javascript/ql/src/Performance/PolynomialReDoS.ql
@@ -15,7 +15,6 @@
 
 import javascript
 import semmle.javascript.security.regexp.PolynomialReDoSQuery
-import semmle.javascript.security.regexp.SuperlinearBackTracking
 import DataFlow::PathGraph
 
 from
diff --git a/javascript/ql/src/Performance/ReDoS.ql b/javascript/ql/src/Performance/ReDoS.ql
index aacf1134fda..850b47cb669 100644
--- a/javascript/ql/src/Performance/ReDoS.ql
+++ b/javascript/ql/src/Performance/ReDoS.ql
@@ -15,8 +15,8 @@
  */
 
 import javascript
-import semmle.javascript.security.regexp.NfaUtils
-import semmle.javascript.security.regexp.ExponentialBackTracking
+private import semmle.javascript.security.regexp.RegexTreeView::RegexTreeView as TreeView
+import codeql.regex.nfa.ExponentialBackTracking::Make<TreeView>
 
 from RegExpTerm t, string pump, State s, string prefixMsg
 where hasReDoSResult(t, pump, s, prefixMsg)
diff --git a/javascript/ql/src/Security/CWE-020/OverlyLargeRange.ql b/javascript/ql/src/Security/CWE-020/OverlyLargeRange.ql
index 77cf0044a34..4083c6e79aa 100644
--- a/javascript/ql/src/Security/CWE-020/OverlyLargeRange.ql
+++ b/javascript/ql/src/Security/CWE-020/OverlyLargeRange.ql
@@ -12,8 +12,9 @@
  *       external/cwe/cwe-020
  */
 
-import semmle.javascript.security.OverlyLargeRangeQuery
+private import semmle.javascript.security.regexp.RegexTreeView::RegexTreeView as TreeView
+import codeql.regex.OverlyLargeRangeQuery::Make<TreeView>
 
-from RegExpCharacterRange range, string reason
+from TreeView::RegExpCharacterRange range, string reason
 where problem(range, reason)
 select range, "Suspicious character range that " + reason + "."
diff --git a/javascript/ql/src/Security/CWE-116/BadTagFilter.ql b/javascript/ql/src/Security/CWE-116/BadTagFilter.ql
index 1de903d6394..46a87e914cd 100644
--- a/javascript/ql/src/Security/CWE-116/BadTagFilter.ql
+++ b/javascript/ql/src/Security/CWE-116/BadTagFilter.ql
@@ -16,7 +16,8 @@
  *       external/cwe/cwe-186
  */
 
-import semmle.javascript.security.BadTagFilterQuery
+private import semmle.javascript.security.regexp.RegexTreeView::RegexTreeView as TreeView
+import codeql.regex.nfa.BadTagFilterQuery::Make<TreeView>
 
 from HtmlMatchingRegExp regexp, string msg
 where msg = min(string m | isBadRegexpFilter(regexp, m) | m order by m.length(), m) // there might be multiple, we arbitrarily pick the shortest one
diff --git a/javascript/ql/src/Security/CWE-178/CaseSensitiveMiddlewarePath.ql b/javascript/ql/src/Security/CWE-178/CaseSensitiveMiddlewarePath.ql
index 18596f57488..ed1f6f4347f 100644
--- a/javascript/ql/src/Security/CWE-178/CaseSensitiveMiddlewarePath.ql
+++ b/javascript/ql/src/Security/CWE-178/CaseSensitiveMiddlewarePath.ql
@@ -20,7 +20,8 @@ string toOtherCase(string s) {
   if s.regexpMatch(".*[a-z].*") then result = s.toUpperCase() else result = s.toLowerCase()
 }
 
-import semmle.javascript.security.regexp.NfaUtils as NfaUtils
+private import semmle.javascript.security.regexp.RegexTreeView::RegexTreeView as TreeView
+import codeql.regex.nfa.NfaUtils::Make<TreeView> as NfaUtils
 
 /** Holds if `s` is a relevant regexp term were we want to compute a string that matches the term (for `getCaseSensitiveBypassExample`). */
 predicate isCand(NfaUtils::State s) {
@@ -92,7 +93,7 @@ string getAnEndpointExample(Routing::RouteSetup endpoint) {
   )
 }
 
-import semmle.javascript.security.regexp.RegexpMatching as RegexpMatching
+import codeql.regex.nfa.RegexpMatching::Make<TreeView> as RegexpMatching
 
 NfaUtils::RegExpRoot getARoot(DataFlow::RegExpCreationNode creator) {
   result.getRootTerm() = creator.getRoot()
diff --git a/javascript/ql/test/query-tests/Security/CWE-400/ReDoS/PolynomialBackTracking.ql b/javascript/ql/test/query-tests/Security/CWE-400/ReDoS/PolynomialBackTracking.ql
index 007683e1c4a..fdd39eb4211 100644
--- a/javascript/ql/test/query-tests/Security/CWE-400/ReDoS/PolynomialBackTracking.ql
+++ b/javascript/ql/test/query-tests/Security/CWE-400/ReDoS/PolynomialBackTracking.ql
@@ -1,4 +1,5 @@
-import semmle.javascript.security.regexp.SuperlinearBackTracking
+private import semmle.javascript.security.regexp.RegexTreeView::RegexTreeView as TreeView
+import codeql.regex.nfa.SuperlinearBackTracking::Make<TreeView>
 
 from PolynomialBackTrackingTerm t
 select t, t.getReason()

From 29cf695b07b7dddfc9f83832e87de6877e8f9cda Mon Sep 17 00:00:00 2001
From: erik-krogh <erik-krogh@github.com>
Date: Tue, 1 Nov 2022 10:25:42 +0100
Subject: [PATCH 0292/1420] update expected output of the queries (some sorting
 changed due to locations being used slightly differently in the shared pack)

---
 .../ReDoS/PolynomialBackTracking.expected     | 42 +++++++++----------
 .../CWE-400/ReDoS/PolynomialReDoS.expected    |  4 +-
 .../Security/CWE-400/ReDoS/ReDoS.expected     | 14 +++----
 3 files changed, 30 insertions(+), 30 deletions(-)

diff --git a/javascript/ql/test/query-tests/Security/CWE-400/ReDoS/PolynomialBackTracking.expected b/javascript/ql/test/query-tests/Security/CWE-400/ReDoS/PolynomialBackTracking.expected
index e1ad3adb91c..194678fd0a4 100644
--- a/javascript/ql/test/query-tests/Security/CWE-400/ReDoS/PolynomialBackTracking.expected
+++ b/javascript/ql/test/query-tests/Security/CWE-400/ReDoS/PolynomialBackTracking.expected
@@ -86,8 +86,8 @@
 | polynomial-redos.js:59:11:59:14 | (.)* | Strings starting with 'fB' and with many repetitions of 'B' can start matching anywhere after the start of the preceeding (B\|Y)+ |
 | polynomial-redos.js:62:7:62:8 | Y* | Strings with many repetitions of 'Y' can start matching anywhere after the start of the preceeding Y* |
 | polynomial-redos.js:63:11:63:12 | Y* | Strings starting with 'K' and with many repetitions of 'Y' can start matching anywhere after the start of the preceeding (K\|Y)+ |
-| polynomial-redos.js:64:14:64:15 | Y* | Strings starting with 'fooK' and with many repetitions of 'Y' can start matching anywhere after the start of the preceeding (K\|Y)+ |
-| polynomial-redos.js:65:14:65:15 | .* | Strings starting with 'fooK' and with many repetitions of 'K' can start matching anywhere after the start of the preceeding (K\|Y)+ |
+| polynomial-redos.js:64:14:64:15 | Y* | Strings starting with 'fooY' and with many repetitions of 'Y' can start matching anywhere after the start of the preceeding (K\|Y)+ |
+| polynomial-redos.js:65:14:65:15 | .* | Strings starting with 'fooY' and with many repetitions of 'K' can start matching anywhere after the start of the preceeding (K\|Y)+ |
 | polynomial-redos.js:66:9:66:10 | .* | Strings starting with 'K' and with many repetitions of 'K' can start matching anywhere after the start of the preceeding (K\|Y).*X |
 | polynomial-redos.js:67:8:67:9 | .* | Strings starting with 'X' and with many repetitions of 'Z' can start matching anywhere after the start of the preceeding [^Y].*X |
 | polynomial-redos.js:68:8:68:9 | .* | Strings starting with 'X' and with many repetitions of 'X' can start matching anywhere after the start of the preceeding [^Y].*$ |
@@ -129,27 +129,27 @@
 | regexplib/address.js:27:93:27:95 | \\s* | Strings with many repetitions of '\\t' can start matching anywhere after the start of the preceeding (\\s*(7\|8)(\\d{7}\|\\d{3}(\\-\|\\s{1})\\d{4})\\s*) |
 | regexplib/address.js:38:39:38:45 | [ 0-9]* | Strings starting with 'po' and with many repetitions of ' ' can start matching anywhere after the start of the preceeding [ \|\\.]* |
 | regexplib/address.js:51:220:51:222 | \\w+ | Strings starting with 'C/O ' and with many repetitions of '0' can start matching anywhere after the start of the preceeding \\x20* |
-| regexplib/address.js:51:331:51:344 | [a-zA-Z0-9\\-]+ | Strings starting with '0 0#' and with many repetitions of 'FL0' can start matching anywhere after the start of the preceeding \\w+ |
-| regexplib/address.js:51:399:51:401 | \\s+ | Strings starting with '0 0' and with many repetitions of ' ' can start matching anywhere after the start of the preceeding \\x20* |
-| regexplib/address.js:51:415:51:419 | \\x20+ | Strings starting with '0 0\\t0' and with many repetitions of ' 0 ' can start matching anywhere after the start of the preceeding \\x20* |
-| regexplib/address.js:51:420:51:422 | \\w+ | Strings starting with '0 0\\t0 ' and with many repetitions of '0 0 ' can start matching anywhere after the start of the preceeding \\w+ |
-| regexplib/address.js:51:616:51:618 | \\w+ | Strings starting with '0 0\\tC/O ' and with many repetitions of '0' can start matching anywhere after the start of the preceeding \\x20* |
-| regexplib/address.js:51:727:51:740 | [a-zA-Z0-9\\-]+ | Strings starting with '0 0\\t0 0#' and with many repetitions of 'FL0' can start matching anywhere after the start of the preceeding \\w+ |
-| regexplib/address.js:51:796:51:798 | \\s+ | Strings starting with '0 0\\t' and with many repetitions of ' ' can start matching anywhere after the start of the preceeding \\s+ |
-| regexplib/address.js:51:803:51:811 | [A-Za-z]+ | Strings starting with '0 0\\t\\t' and with many repetitions of 'A' can start matching anywhere after the start of the preceeding \\w+ |
+| regexplib/address.js:51:331:51:344 | [a-zA-Z0-9\\-]+ | Strings starting with 'C/O 0#' and with many repetitions of 'FL0' can start matching anywhere after the start of the preceeding \\w+ |
+| regexplib/address.js:51:399:51:401 | \\s+ | Strings starting with 'C/O 0' and with many repetitions of ' ' can start matching anywhere after the start of the preceeding \\x20* |
+| regexplib/address.js:51:415:51:419 | \\x20+ | Strings starting with 'C/O 0\\t0' and with many repetitions of ' 0 ' can start matching anywhere after the start of the preceeding \\x20* |
+| regexplib/address.js:51:420:51:422 | \\w+ | Strings starting with 'C/O 0\\t0 ' and with many repetitions of '0 0 ' can start matching anywhere after the start of the preceeding \\w+ |
+| regexplib/address.js:51:616:51:618 | \\w+ | Strings starting with 'C/O 0\\tC/O ' and with many repetitions of '0' can start matching anywhere after the start of the preceeding \\x20* |
+| regexplib/address.js:51:727:51:740 | [a-zA-Z0-9\\-]+ | Strings starting with 'C/O 0\\t0 0#' and with many repetitions of 'FL0' can start matching anywhere after the start of the preceeding \\w+ |
+| regexplib/address.js:51:796:51:798 | \\s+ | Strings starting with 'C/O 0\\t' and with many repetitions of ' ' can start matching anywhere after the start of the preceeding \\s+ |
+| regexplib/address.js:51:803:51:811 | [A-Za-z]+ | Strings starting with 'C/O 0\\t\\t' and with many repetitions of 'A' can start matching anywhere after the start of the preceeding \\w+ |
 | regexplib/address.js:67:379:67:755 | [a-zA-Z0-9&#192;&#193;&#194;&#195;&#196;&#197;&#198;&#199;&#200;&#201;&#202;&#203;&#204;&#205;&#206;&#207;&#208;&#209;&#210;&#211;&#212;&#213;&#214;&#216;&#217;&#218;&#219;&#220;&#221;&#223;&#224;&#225;&#226;&#227;&#228;&#229;&#230;&#231;&#232;&#233;&#234;&#235;&#236;&#237;&#238;&#239;&#241;&#242;&#243;&#244;&#245;&#246;&#248;&#249;&#250;&#251;&#252;&#253;&#255;\\.\\,\\-\\/\\' ]+ | Strings starting with '#' and with many repetitions of '#' can start matching anywhere after the start of the preceeding [a-zA-Z0-9&#192;&#193;&#194;&#195;&#196;&#197;&#198;&#199;&#200;&#201;&#202;&#203;&#204;&#205;&#206;&#207;&#208;&#209;&#210;&#211;&#212;&#213;&#214;&#216;&#217;&#218;&#219;&#220;&#221;&#223;&#224;&#225;&#226;&#227;&#228;&#229;&#230;&#231;&#232;&#233;&#234;&#235;&#236;&#237;&#238;&#239;&#241;&#242;&#243;&#244;&#245;&#246;&#248;&#249;&#250;&#251;&#252;&#253;&#255;\\.\\,\\-\\/\\']+ |
 | regexplib/address.js:69:3:69:5 | \\s* | Strings with many repetitions of '\\t' can start matching anywhere after the start of the preceeding (\\s*\\(?0\\d{4}\\)?(\\s*\|-)\\d{3}(\\s*\|-)\\d{3}\\s*) |
 | regexplib/address.js:69:48:69:50 | \\s* | Strings with many repetitions of '\\t' can start matching anywhere after the start of the preceeding (\\s*\\(?0\\d{3}\\)?(\\s*\|-)\\d{3}(\\s*\|-)\\d{4}\\s*) |
 | regexplib/address.js:69:93:69:95 | \\s* | Strings with many repetitions of '\\t' can start matching anywhere after the start of the preceeding (\\s*(7\|8)(\\d{7}\|\\d{3}(\\-\|\\s{1})\\d{4})\\s*) |
 | regexplib/address.js:75:220:75:222 | \\w+ | Strings starting with 'C/O ' and with many repetitions of '0' can start matching anywhere after the start of the preceeding \\x20* |
-| regexplib/address.js:75:331:75:344 | [a-zA-Z0-9\\-]+ | Strings starting with '0 0#' and with many repetitions of 'FL0' can start matching anywhere after the start of the preceeding \\w+ |
-| regexplib/address.js:75:399:75:401 | \\s+ | Strings starting with '0 0' and with many repetitions of ' ' can start matching anywhere after the start of the preceeding \\x20* |
-| regexplib/address.js:75:415:75:419 | \\x20+ | Strings starting with '0 0\\t0' and with many repetitions of ' 0 ' can start matching anywhere after the start of the preceeding \\x20* |
-| regexplib/address.js:75:420:75:422 | \\w+ | Strings starting with '0 0\\t0 ' and with many repetitions of '0 0 ' can start matching anywhere after the start of the preceeding \\w+ |
-| regexplib/address.js:75:616:75:618 | \\w+ | Strings starting with '0 0\\tC/O ' and with many repetitions of '0' can start matching anywhere after the start of the preceeding \\x20* |
-| regexplib/address.js:75:727:75:740 | [a-zA-Z0-9\\-]+ | Strings starting with '0 0\\t0 0#' and with many repetitions of 'FL0' can start matching anywhere after the start of the preceeding \\w+ |
-| regexplib/address.js:75:796:75:798 | \\s+ | Strings starting with '0 0\\t' and with many repetitions of ' ' can start matching anywhere after the start of the preceeding \\s+ |
-| regexplib/address.js:75:803:75:811 | [A-Za-z]+ | Strings starting with '0 0\\t\\t' and with many repetitions of 'A' can start matching anywhere after the start of the preceeding \\w+ |
+| regexplib/address.js:75:331:75:344 | [a-zA-Z0-9\\-]+ | Strings starting with 'C/O 0#' and with many repetitions of 'FL0' can start matching anywhere after the start of the preceeding \\w+ |
+| regexplib/address.js:75:399:75:401 | \\s+ | Strings starting with 'C/O 0' and with many repetitions of ' ' can start matching anywhere after the start of the preceeding \\x20* |
+| regexplib/address.js:75:415:75:419 | \\x20+ | Strings starting with 'C/O 0\\t0' and with many repetitions of ' 0 ' can start matching anywhere after the start of the preceeding \\x20* |
+| regexplib/address.js:75:420:75:422 | \\w+ | Strings starting with 'C/O 0\\t0 ' and with many repetitions of '0 0 ' can start matching anywhere after the start of the preceeding \\w+ |
+| regexplib/address.js:75:616:75:618 | \\w+ | Strings starting with 'C/O 0\\tC/O ' and with many repetitions of '0' can start matching anywhere after the start of the preceeding \\x20* |
+| regexplib/address.js:75:727:75:740 | [a-zA-Z0-9\\-]+ | Strings starting with 'C/O 0\\t0 0#' and with many repetitions of 'FL0' can start matching anywhere after the start of the preceeding \\w+ |
+| regexplib/address.js:75:796:75:798 | \\s+ | Strings starting with 'C/O 0\\t' and with many repetitions of ' ' can start matching anywhere after the start of the preceeding \\s+ |
+| regexplib/address.js:75:803:75:811 | [A-Za-z]+ | Strings starting with 'C/O 0\\t\\t' and with many repetitions of 'A' can start matching anywhere after the start of the preceeding \\w+ |
 | regexplib/address.js:85:15:85:49 | ([0-9]\|[ ]\|[-]\|[\\(]\|[\\)]\|ext.\|[,])+ | Strings with many repetitions of ' ' can start matching anywhere after the start of the preceeding (?<Telephone>([0-9]\|[ ]\|[-]\|[\\(]\|[\\)]\|ext.\|[,])+)([ ]\|[:]\|\\t\|[-])*(?<Where>Home\|Office\|Work\|Away\|Fax\|FAX\|Phone) |
 | regexplib/address.js:85:51:85:67 | ([ ]\|[:]\|\\t\|[-])* | Strings starting with '0' and with many repetitions of ' ' can start matching anywhere after the start of the preceeding ([0-9]\|[ ]\|[-]\|[\\(]\|[\\)]\|ext.\|[,])+ |
 | regexplib/address.js:93:3:93:5 | \\s* | Strings with many repetitions of '\\t' can start matching anywhere after the start of the preceeding (\\s*\\(?0\\d{4}\\)?(\\s*\|-)\\d{3}(\\s*\|-)\\d{3}\\s*) |
@@ -199,7 +199,7 @@
 | regexplib/markup.js:5:1525:5:1527 | \\s* | Strings starting with '?'DateLiteral' ?# Per the VB Spec : DateLiteral ::= '#'   DateOrTime   '#'  # ?'DateOrTime'  DateValue    ?# TimeValue ::= HourValue : MinuteValue        10 ?# Hour 01 - 24  : 60 ?# Minute 01 - 60  :  ?# Optional Minute :01 - :60       ' and with many repetitions of '     ' can start matching anywhere after the start of the preceeding \\s* |
 | regexplib/markup.js:6:11:6:25 | [\\w\\*\\)\\(\\,\\s]+ | Strings starting with 'SELECT\\t' and with many repetitions of 'SELECT\\t' can start matching anywhere after the start of the preceeding (SELECT\\s[\\w\\*\\)\\(\\,\\s]+\\sFROM\\s[\\w]+) |
 | regexplib/markup.js:6:99:6:113 | [\\s\\w\\d\\)\\(\\,]* | Strings starting with ' INSERT\\tINTO\\t0' and with many repetitions of '0' can start matching anywhere after the start of the preceeding [\\d\\w]+ |
-| regexplib/markup.js:7:15:7:21 | [^\\\\"]* | Strings starting with '"!' and with many repetitions of '\\\\"!!' can start matching anywhere after the start of the preceeding "([^"](?:\\\\.\|[^\\\\"]*)*)" |
+| regexplib/markup.js:7:8:7:23 | (?:\\\\.\|[^\\\\"]*)* | Strings starting with '"!' and with many repetitions of '\\\\"!\\\\a' can start matching anywhere after the start of the preceeding "([^"](?:\\\\.\|[^\\\\"]*)*)" |
 | regexplib/markup.js:9:6:9:13 | [\\s\\S]*? | Strings starting with '<!--' and with many repetitions of '<!--' can start matching anywhere after the start of the preceeding <!--[\\s\\S]*?--[ \\t\\n\\r]*> |
 | regexplib/markup.js:11:6:11:8 | .*? | Strings starting with '<!--' and with many repetitions of '<!--' can start matching anywhere after the start of the preceeding <!--.*?--> |
 | regexplib/markup.js:12:40:12:42 | .*? | Strings starting with '<!--[if' and with many repetitions of '<!--[if' can start matching anywhere after the start of the preceeding (<!--\\[if.*?<!\\[endif\\]-->) |
@@ -282,7 +282,7 @@
 | regexplib/misc.js:112:32:112:34 | \\s* | Strings with many repetitions of '\\t' can start matching anywhere after the start of the preceeding (\\s*\\(?0\\d{3}\\)?\\s*\\d{3}\\s*\\d{4}\\s*) |
 | regexplib/misc.js:114:6:114:8 | \\\|+ | Strings starting with 'a' and with many repetitions of '\|' can start matching anywhere after the start of the preceeding .+ |
 | regexplib/misc.js:116:3:116:4 | .* | Strings starting with '{' and with many repetitions of '{' can start matching anywhere after the start of the preceeding {.*} |
-| regexplib/misc.js:117:25:117:26 | .+ | Strings starting with '{a}' and with many repetitions of 'a)' can start matching anywhere after the start of the preceeding .+ |
+| regexplib/misc.js:117:25:117:26 | .+ | Strings starting with '(a}' and with many repetitions of 'a)' can start matching anywhere after the start of the preceeding .+ |
 | regexplib/misc.js:119:20:119:22 | \\w+ | Strings with many repetitions of '0' can start matching anywhere after the start of the preceeding (NOT)?(\\s*\\(*)\\s*(\\w+)\\s*(=\|<>\|<\|>\|LIKE\|IN)\\s*(\\(([^\\)]*)\\)\|'([^']*)'\|(-?\\d*\\.?\\d+))(\\s*\\)*\\s*)(AND\|OR)? |
 | regexplib/misc.js:119:52:119:57 | [^\\)]* | Strings starting with '0=(' and with many repetitions of '0<((' can start matching anywhere after the start of the preceeding (NOT)?(\\s*\\(*)\\s*(\\w+)\\s*(=\|<>\|<\|>\|LIKE\|IN)\\s*(\\(([^\\)]*)\\)\|'([^']*)'\|(-?\\d*\\.?\\d+))(\\s*\\)*\\s*)(AND\|OR)? |
 | regexplib/misc.js:123:36:123:38 | .*? | Strings starting with '?se[A' and with many repetitions of '?se[Aa' can start matching anywhere after the start of the preceeding (?s)(?:\\e\\[(?:(\\d+);?)*([A-Za-z])(.*?))(?=\\e\\[\|\\z) |
@@ -339,7 +339,7 @@
 | regexplib/strings.js:53:65:53:73 | [a-z0-9]+ | Strings starting with '0' and with many repetitions of '0' can start matching anywhere after the start of the preceeding [a-z0-9]+ |
 | regexplib/strings.js:54:20:54:22 | \\w+ | Strings with many repetitions of '0' can start matching anywhere after the start of the preceeding (NOT)?(\\s*\\(*)\\s*(\\w+)\\s*(=\|<>\|<\|>\|LIKE\|IN)\\s*(\\(([^\\)]*)\\)\|'([^']*)'\|(-?\\d*\\.?\\d+))(\\s*\\)*\\s*)(AND\|OR)? |
 | regexplib/strings.js:54:52:54:57 | [^\\)]* | Strings starting with '0=(' and with many repetitions of '0<((' can start matching anywhere after the start of the preceeding (NOT)?(\\s*\\(*)\\s*(\\w+)\\s*(=\|<>\|<\|>\|LIKE\|IN)\\s*(\\(([^\\)]*)\\)\|'([^']*)'\|(-?\\d*\\.?\\d+))(\\s*\\)*\\s*)(AND\|OR)? |
-| regexplib/strings.js:56:52:56:53 | .+ | Strings starting with 'PRN.' and with many repetitions of '.' can start matching anywhere after the start of the preceeding .* |
+| regexplib/strings.js:56:52:56:53 | .+ | Strings starting with 'AUX.' and with many repetitions of '.' can start matching anywhere after the start of the preceeding .* |
 | regexplib/strings.js:57:36:57:38 | .*? | Strings starting with '?se[A' and with many repetitions of '?se[Aa' can start matching anywhere after the start of the preceeding (?s)(?:\\e\\[(?:(\\d+);?)*([A-Za-z])(.*?))(?=\\e\\[\|\\z) |
 | regexplib/strings.js:64:3:64:5 | \\w+ | Strings with many repetitions of '0' can start matching anywhere after the start of the preceeding (\\w+)\\s+\\1 |
 | regexplib/strings.js:70:6:70:17 | [a-zA-Z,\\s]+ | Strings with many repetitions of '\\t' can start matching anywhere after the start of the preceeding \\s* |
diff --git a/javascript/ql/test/query-tests/Security/CWE-400/ReDoS/PolynomialReDoS.expected b/javascript/ql/test/query-tests/Security/CWE-400/ReDoS/PolynomialReDoS.expected
index 3df7db24964..192416624d9 100644
--- a/javascript/ql/test/query-tests/Security/CWE-400/ReDoS/PolynomialReDoS.expected
+++ b/javascript/ql/test/query-tests/Security/CWE-400/ReDoS/PolynomialReDoS.expected
@@ -490,8 +490,8 @@ edges
 | polynomial-redos.js:59:3:59:30 | /f(B\|Y) ... ainted) | polynomial-redos.js:5:16:5:32 | req.query.tainted | polynomial-redos.js:59:23:59:29 | tainted | This $@ that depends on $@ may run slow on strings starting with 'fB' and with many repetitions of 'B'. | polynomial-redos.js:59:11:59:14 | (.)* | regular expression | polynomial-redos.js:5:16:5:32 | req.query.tainted | a user-provided value |
 | polynomial-redos.js:62:3:62:24 | /^Y*Y*X ... ainted) | polynomial-redos.js:5:16:5:32 | req.query.tainted | polynomial-redos.js:62:17:62:23 | tainted | This $@ that depends on $@ may run slow on strings with many repetitions of 'Y'. | polynomial-redos.js:62:7:62:8 | Y* | regular expression | polynomial-redos.js:5:16:5:32 | req.query.tainted | a user-provided value |
 | polynomial-redos.js:63:3:63:28 | /^(K\|Y) ... ainted) | polynomial-redos.js:5:16:5:32 | req.query.tainted | polynomial-redos.js:63:21:63:27 | tainted | This $@ that depends on $@ may run slow on strings starting with 'K' and with many repetitions of 'Y'. | polynomial-redos.js:63:11:63:12 | Y* | regular expression | polynomial-redos.js:5:16:5:32 | req.query.tainted | a user-provided value |
-| polynomial-redos.js:64:3:64:31 | /^foo(K ... ainted) | polynomial-redos.js:5:16:5:32 | req.query.tainted | polynomial-redos.js:64:24:64:30 | tainted | This $@ that depends on $@ may run slow on strings starting with 'fooK' and with many repetitions of 'Y'. | polynomial-redos.js:64:14:64:15 | Y* | regular expression | polynomial-redos.js:5:16:5:32 | req.query.tainted | a user-provided value |
-| polynomial-redos.js:65:3:65:31 | /^foo(K ... ainted) | polynomial-redos.js:5:16:5:32 | req.query.tainted | polynomial-redos.js:65:24:65:30 | tainted | This $@ that depends on $@ may run slow on strings starting with 'fooK' and with many repetitions of 'K'. | polynomial-redos.js:65:14:65:15 | .* | regular expression | polynomial-redos.js:5:16:5:32 | req.query.tainted | a user-provided value |
+| polynomial-redos.js:64:3:64:31 | /^foo(K ... ainted) | polynomial-redos.js:5:16:5:32 | req.query.tainted | polynomial-redos.js:64:24:64:30 | tainted | This $@ that depends on $@ may run slow on strings starting with 'fooY' and with many repetitions of 'Y'. | polynomial-redos.js:64:14:64:15 | Y* | regular expression | polynomial-redos.js:5:16:5:32 | req.query.tainted | a user-provided value |
+| polynomial-redos.js:65:3:65:31 | /^foo(K ... ainted) | polynomial-redos.js:5:16:5:32 | req.query.tainted | polynomial-redos.js:65:24:65:30 | tainted | This $@ that depends on $@ may run slow on strings starting with 'fooY' and with many repetitions of 'K'. | polynomial-redos.js:65:14:65:15 | .* | regular expression | polynomial-redos.js:5:16:5:32 | req.query.tainted | a user-provided value |
 | polynomial-redos.js:66:3:66:26 | /(K\|Y). ... ainted) | polynomial-redos.js:5:16:5:32 | req.query.tainted | polynomial-redos.js:66:19:66:25 | tainted | This $@ that depends on $@ may run slow on strings starting with 'K' and with many repetitions of 'K'. | polynomial-redos.js:66:9:66:10 | .* | regular expression | polynomial-redos.js:5:16:5:32 | req.query.tainted | a user-provided value |
 | polynomial-redos.js:67:3:67:25 | /[^Y].* ... ainted) | polynomial-redos.js:5:16:5:32 | req.query.tainted | polynomial-redos.js:67:18:67:24 | tainted | This $@ that depends on $@ may run slow on strings starting with 'X' and with many repetitions of 'Z'. | polynomial-redos.js:67:8:67:9 | .* | regular expression | polynomial-redos.js:5:16:5:32 | req.query.tainted | a user-provided value |
 | polynomial-redos.js:69:3:69:26 | /[^Y].* ... q.body) | polynomial-redos.js:69:18:69:25 | req.body | polynomial-redos.js:69:18:69:25 | req.body | This $@ that depends on $@ may run slow on strings starting with 'X' and with many repetitions of 'X'. | polynomial-redos.js:69:8:69:9 | .* | regular expression | polynomial-redos.js:69:18:69:25 | req.body | a user-provided value |
diff --git a/javascript/ql/test/query-tests/Security/CWE-400/ReDoS/ReDoS.expected b/javascript/ql/test/query-tests/Security/CWE-400/ReDoS/ReDoS.expected
index 13a15e87c29..674a0dcc29e 100644
--- a/javascript/ql/test/query-tests/Security/CWE-400/ReDoS/ReDoS.expected
+++ b/javascript/ql/test/query-tests/Security/CWE-400/ReDoS/ReDoS.expected
@@ -19,11 +19,11 @@
 | polynomial-redos.js:41:52:41:63 | [\\x21-\\x7E]* | This part of the regular expression may cause exponential backtracking on strings containing many repetitions of '?'. |
 | polynomial-redos.js:46:33:46:45 | [a-zA-Z_0-9]* | This part of the regular expression may cause exponential backtracking on strings starting with 'A' and containing many repetitions of 'A'. |
 | regexplib/address.js:51:220:51:222 | \\w+ | This part of the regular expression may cause exponential backtracking on strings starting with 'C/O ' and containing many repetitions of '0'. |
-| regexplib/address.js:51:616:51:618 | \\w+ | This part of the regular expression may cause exponential backtracking on strings starting with '0 0\\tC/O ' and containing many repetitions of '0'. |
-| regexplib/address.js:51:803:51:811 | [A-Za-z]+ | This part of the regular expression may cause exponential backtracking on strings starting with '0 0\\t\\t' and containing many repetitions of 'A'. |
+| regexplib/address.js:51:616:51:618 | \\w+ | This part of the regular expression may cause exponential backtracking on strings starting with 'C/O 0\\tC/O ' and containing many repetitions of '0'. |
+| regexplib/address.js:51:803:51:811 | [A-Za-z]+ | This part of the regular expression may cause exponential backtracking on strings starting with 'C/O 0\\t\\t' and containing many repetitions of 'A'. |
 | regexplib/address.js:75:220:75:222 | \\w+ | This part of the regular expression may cause exponential backtracking on strings starting with 'C/O ' and containing many repetitions of '0'. |
-| regexplib/address.js:75:616:75:618 | \\w+ | This part of the regular expression may cause exponential backtracking on strings starting with '0 0\\tC/O ' and containing many repetitions of '0'. |
-| regexplib/address.js:75:803:75:811 | [A-Za-z]+ | This part of the regular expression may cause exponential backtracking on strings starting with '0 0\\t\\t' and containing many repetitions of 'A'. |
+| regexplib/address.js:75:616:75:618 | \\w+ | This part of the regular expression may cause exponential backtracking on strings starting with 'C/O 0\\tC/O ' and containing many repetitions of '0'. |
+| regexplib/address.js:75:803:75:811 | [A-Za-z]+ | This part of the regular expression may cause exponential backtracking on strings starting with 'C/O 0\\t\\t' and containing many repetitions of 'A'. |
 | regexplib/dates.js:27:341:27:348 | [^\\(\\)]* | This part of the regular expression may cause exponential backtracking on strings containing many repetitions of '''. |
 | regexplib/email.js:1:16:1:22 | [-.\\w]* | This part of the regular expression may cause exponential backtracking on strings starting with '0' and containing many repetitions of '0'. |
 | regexplib/email.js:5:24:5:35 | [a-zA-Z0-9]+ | This part of the regular expression may cause exponential backtracking on strings starting with '0' and containing many repetitions of '0'. |
@@ -43,7 +43,7 @@
 | regexplib/email.js:34:24:34:35 | [a-zA-Z0-9]+ | This part of the regular expression may cause exponential backtracking on strings starting with '0' and containing many repetitions of '0'. |
 | regexplib/email.js:34:63:34:74 | [a-zA-Z0-9]+ | This part of the regular expression may cause exponential backtracking on strings starting with '0@0' and containing many repetitions of '0'. |
 | regexplib/markup.js:3:451:3:453 | .+? | This part of the regular expression may cause exponential backtracking on strings starting with '<?i:q\\t' and containing many repetitions of 'a\\t'. |
-| regexplib/markup.js:7:15:7:21 | [^\\\\"]* | This part of the regular expression may cause exponential backtracking on strings starting with '"!' and containing many repetitions of '!'. |
+| regexplib/markup.js:7:8:7:23 | (?:\\\\.\|[^\\\\"]*)* | This part of the regular expression may cause exponential backtracking on strings starting with '"!' and containing many repetitions of '!'. |
 | regexplib/markup.js:13:6:13:12 | [^"']+? | This part of the regular expression may cause exponential backtracking on strings starting with '<' and containing many repetitions of '!'. |
 | regexplib/markup.js:13:14:13:16 | .+? | This part of the regular expression may cause exponential backtracking on strings starting with '<' and containing many repetitions of 'a"'. |
 | regexplib/markup.js:17:17:17:19 | .*? | This part of the regular expression may cause exponential backtracking on strings starting with '<0\\t="' and containing many repetitions of '"\\t="'. |
@@ -51,12 +51,12 @@
 | regexplib/markup.js:24:47:24:118 | (\\s*=\\s*([-\\w\\.]{1,1024}\|&quot;[^&quot;]{0,1024}&quot;\|'[^']{0,1024}'))? | This part of the regular expression may cause exponential backtracking on strings starting with '&lt;A\\t!' and containing many repetitions of '\\t=-\\t!'. |
 | regexplib/markup.js:37:29:37:56 | [a-zA-Z0-9\|:\|\\/\|=\|-\|.\|\\?\|&]* | This part of the regular expression may cause exponential backtracking on strings starting with '[0=' and containing many repetitions of '='. |
 | regexplib/markup.js:40:23:40:25 | \\w+ | This part of the regular expression may cause exponential backtracking on strings containing many repetitions of '0'. |
-| regexplib/markup.js:40:132:40:134 | \\s* | This part of the regular expression may cause exponential backtracking on strings starting with '0[@0=''' and containing many repetitions of '\\t@0<""'. |
+| regexplib/markup.js:40:132:40:134 | \\s* | This part of the regular expression may cause exponential backtracking on strings starting with '0[@0<''' and containing many repetitions of '\\t@0<""'. |
 | regexplib/markup.js:47:43:47:45 | \\S+ | This part of the regular expression may cause exponential backtracking on strings starting with '&lt;A\\t' and containing many repetitions of '!=-\\t'. |
 | regexplib/markup.js:47:47:47:118 | (\\s*=\\s*([-\\w\\.]{1,1024}\|&quot;[^&quot;]{0,1024}&quot;\|'[^']{0,1024}'))? | This part of the regular expression may cause exponential backtracking on strings starting with '&lt;A\\t!' and containing many repetitions of '\\t=-\\t!'. |
 | regexplib/markup.js:53:29:53:56 | [a-zA-Z0-9\|:\|\\/\|=\|-\|.\|\\?\|&]* | This part of the regular expression may cause exponential backtracking on strings starting with '[0=' and containing many repetitions of '='. |
 | regexplib/markup.js:56:23:56:25 | \\w+ | This part of the regular expression may cause exponential backtracking on strings containing many repetitions of '0'. |
-| regexplib/markup.js:56:132:56:134 | \\s* | This part of the regular expression may cause exponential backtracking on strings starting with '0[@0=''' and containing many repetitions of '\\t@0<""'. |
+| regexplib/markup.js:56:132:56:134 | \\s* | This part of the regular expression may cause exponential backtracking on strings starting with '0[@0<''' and containing many repetitions of '\\t@0<""'. |
 | regexplib/misc.js:4:36:4:44 | [a-zA-Z]* | This part of the regular expression may cause exponential backtracking on strings starting with 'A' and containing many repetitions of 'A'. |
 | regexplib/misc.js:15:56:15:118 | (([^\\\\/:\\*\\?"\\\|<>\\. ])\|([^\\\\/:\\*\\?"\\\|<>]*[^\\\\/:\\*\\?"\\\|<>\\. ]))? | This part of the regular expression may cause exponential backtracking on strings starting with '!' and containing many repetitions of '!\\\\!'. |
 | regexplib/misc.js:24:56:24:118 | (([^\\\\/:\\*\\?"\\\|<>\\. ])\|([^\\\\/:\\*\\?"\\\|<>]*[^\\\\/:\\*\\?"\\\|<>\\. ]))? | This part of the regular expression may cause exponential backtracking on strings starting with '!' and containing many repetitions of '!\\\\!'. |

From 39938b4dad88d670ac96f3a6142e445c4538fe5b Mon Sep 17 00:00:00 2001
From: erik-krogh <erik-krogh@github.com>
Date: Tue, 1 Nov 2022 10:25:48 +0100
Subject: [PATCH 0293/1420] add change-note

---
 .../ql/lib/change-notes/2022-10-31-shared-redos-pack.md       | 4 ++++
 1 file changed, 4 insertions(+)
 create mode 100644 javascript/ql/lib/change-notes/2022-10-31-shared-redos-pack.md

diff --git a/javascript/ql/lib/change-notes/2022-10-31-shared-redos-pack.md b/javascript/ql/lib/change-notes/2022-10-31-shared-redos-pack.md
new file mode 100644
index 00000000000..8ce58ade6f9
--- /dev/null
+++ b/javascript/ql/lib/change-notes/2022-10-31-shared-redos-pack.md
@@ -0,0 +1,4 @@
+---
+ category: minorAnalysis
+---
+ * The ReDoS libraries in `semmle.code.javascript.security.regexp` has been moved to a shared pack inside the `shared/` folder, and the previous location has been deprecated.
\ No newline at end of file

From e4dbf0acffb05640543dbc47bc64883e5465db64 Mon Sep 17 00:00:00 2001
From: erik-krogh <erik-krogh@github.com>
Date: Mon, 7 Nov 2022 14:38:41 +0100
Subject: [PATCH 0294/1420] use  instead of a fixed version number

---
 javascript/ql/lib/qlpack.yml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/javascript/ql/lib/qlpack.yml b/javascript/ql/lib/qlpack.yml
index 00b2ffcba05..17ccd44d056 100644
--- a/javascript/ql/lib/qlpack.yml
+++ b/javascript/ql/lib/qlpack.yml
@@ -6,4 +6,4 @@ extractor: javascript
 library: true
 upgrades: upgrades
 dependencies:
-  codeql/regex: 0.0.1
+  codeql/regex: ${workspace}

From 98176007d89ebc991350ad0a9189dc9fccb9ca68 Mon Sep 17 00:00:00 2001
From: Jeroen Ketema <jketema@github.com>
Date: Tue, 15 Nov 2022 17:18:08 +0100
Subject: [PATCH 0295/1420] C++: Fix type in dataflow test comment

---
 cpp/ql/test/library-tests/dataflow/dataflow-tests/dispatch.cpp | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/cpp/ql/test/library-tests/dataflow/dataflow-tests/dispatch.cpp b/cpp/ql/test/library-tests/dataflow/dataflow-tests/dispatch.cpp
index 131f0f5d05d..f9df8c9497c 100644
--- a/cpp/ql/test/library-tests/dataflow/dataflow-tests/dispatch.cpp
+++ b/cpp/ql/test/library-tests/dataflow/dataflow-tests/dispatch.cpp
@@ -87,7 +87,7 @@ Top *identity(Top *top) {
 
 void callIdentityFunctions(Top *top, Bottom *bottom) {
   identity(bottom)->isSink(source()); // $ MISSING: ast,ir
-  identity(top)->isSink(source()); // now flow
+  identity(top)->isSink(source()); // no flow
 }
 
 using SinkFunctionType = void (*)(int);

From 1b6317d584c20c89f600ec693cb89be3f78469d6 Mon Sep 17 00:00:00 2001
From: Geoffrey White <40627776+geoffw0@users.noreply.github.com>
Date: Tue, 15 Nov 2022 17:19:32 +0000
Subject: [PATCH 0296/1420] Update
 swift/ql/lib/codeql/swift/dataflow/internal/DataFlowPrivate.qll

Co-authored-by: Mathias Vorreiter Pedersen <mathiasvp@github.com>
---
 .../lib/codeql/swift/dataflow/internal/DataFlowPrivate.qll   | 5 +----
 1 file changed, 1 insertion(+), 4 deletions(-)

diff --git a/swift/ql/lib/codeql/swift/dataflow/internal/DataFlowPrivate.qll b/swift/ql/lib/codeql/swift/dataflow/internal/DataFlowPrivate.qll
index 565bb4a8e93..afb82dbc9f7 100644
--- a/swift/ql/lib/codeql/swift/dataflow/internal/DataFlowPrivate.qll
+++ b/swift/ql/lib/codeql/swift/dataflow/internal/DataFlowPrivate.qll
@@ -170,10 +170,7 @@ private module Cached {
     // flow through ternary operator `? :`
     exists(IfExpr ie |
       nodeTo.asExpr() = ie and
-      (
-        nodeFrom.asExpr() = ie.getThenExpr() or
-        nodeFrom.asExpr() = ie.getElseExpr()
-      )
+      nodeFrom.asExpr() = ie.getBranch(_)
     )
     or
     // flow through a flow summary (extension of `SummaryModelCsv`)

From 0ce4500b48ae0df011d02348e513e4a453b1201a Mon Sep 17 00:00:00 2001
From: Arthur Baars <aibaars@github.com>
Date: Tue, 15 Nov 2022 18:20:28 +0100
Subject: [PATCH 0297/1420] Apply suggestions from code review

Co-authored-by: Pierre <turbo@github.com>
---
 .github/ISSUE_TEMPLATE/ql--false-positive.md | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/.github/ISSUE_TEMPLATE/ql--false-positive.md b/.github/ISSUE_TEMPLATE/ql--false-positive.md
index b3d942ab5d7..7f22c577d14 100644
--- a/.github/ISSUE_TEMPLATE/ql--false-positive.md
+++ b/.github/ISSUE_TEMPLATE/ql--false-positive.md
@@ -1,6 +1,6 @@
 ---
-name: False positive
-about: Tell us about an alert that shouldn't be reported
+name: CodeQL False positive
+about: Report CodeQL alerts that you think should not have been detected (not applicable, not exploitable, etc.)
 title: False positive
 labels: false-positive
 assignees: ''
@@ -26,7 +26,7 @@ function execSh(command, options) {
 ```
 -->
 
-**URL to the alert on GitHub CodeScanning (optional)**
+**URL to the alert on GitHub code scanning (optional)**
 
 <!--
 1. Open the project on GitHub.com.

From 694930556b35f5ee66d24b636ebfb15a6c28011e Mon Sep 17 00:00:00 2001
From: Ed Minnix <egregius313@github.com>
Date: Tue, 15 Nov 2022 12:35:57 -0500
Subject: [PATCH 0298/1420] Java: documentation cleanup

---
 .../CWE/CWE-200/AndroidWebViewSettingsFileAccess.qhelp         | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/java/ql/src/Security/CWE/CWE-200/AndroidWebViewSettingsFileAccess.qhelp b/java/ql/src/Security/CWE/CWE-200/AndroidWebViewSettingsFileAccess.qhelp
index f54843be7b2..6333fe81a04 100644
--- a/java/ql/src/Security/CWE/CWE-200/AndroidWebViewSettingsFileAccess.qhelp
+++ b/java/ql/src/Security/CWE/CWE-200/AndroidWebViewSettingsFileAccess.qhelp
@@ -40,6 +40,9 @@
     <li>
       Android documentation: <a href="https://developer.android.com/reference/android/webkit/WebSettings#setAllowFileAccessFromFileURLs(boolean)">WebSettings.setAllowFileAccessFromFileURLs</a>.
     </li>
+    <li>
+      Android documentation: <a href="https://developer.android.com/reference/android/webkit/WebSettings#setAllowUniversalAccessFromFileURLs(boolean)">WebSettings.setAllowUniversalAccessFromFileURLs</a>.
+    </li>
   </references>
 
 </qhelp>

From 1d71c38a8f24a8b85d6a154e542757d58ce15163 Mon Sep 17 00:00:00 2001
From: Ed Minnix <egregius313@github.com>
Date: Tue, 15 Nov 2022 12:43:20 -0500
Subject: [PATCH 0299/1420] Java: Fix formatting of WebView file access query

---
 .../Security/CWE/CWE-200/AndroidWebViewSettingsFileAccess.ql  | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

diff --git a/java/ql/src/Security/CWE/CWE-200/AndroidWebViewSettingsFileAccess.ql b/java/ql/src/Security/CWE/CWE-200/AndroidWebViewSettingsFileAccess.ql
index b57fc4ad816..6e88fdf8a55 100644
--- a/java/ql/src/Security/CWE/CWE-200/AndroidWebViewSettingsFileAccess.ql
+++ b/java/ql/src/Security/CWE/CWE-200/AndroidWebViewSettingsFileAccess.ql
@@ -15,4 +15,6 @@ import semmle.code.java.frameworks.android.WebView
 
 from MethodAccess ma
 where ma.getMethod() instanceof CrossOriginAccessMethod
-select ma, "WebView setting " + ma.getMethod().getName() + " may allow for unauthorized access of sensitive information."
+select ma,
+  "WebView setting " + ma.getMethod().getName() +
+    " may allow for unauthorized access of sensitive information."

From fa86e7533010de74084e6760658e04c138b43c52 Mon Sep 17 00:00:00 2001
From: Geoffrey White <40627776+geoffw0@users.noreply.github.com>
Date: Tue, 15 Nov 2022 17:49:23 +0000
Subject: [PATCH 0300/1420] Update
 swift/ql/lib/codeql/swift/dataflow/internal/DataFlowPrivate.qll

Co-authored-by: Mathias Vorreiter Pedersen <mathiasvp@github.com>
---
 .../swift/dataflow/internal/DataFlowPrivate.qll  | 16 +++++++---------
 1 file changed, 7 insertions(+), 9 deletions(-)

diff --git a/swift/ql/lib/codeql/swift/dataflow/internal/DataFlowPrivate.qll b/swift/ql/lib/codeql/swift/dataflow/internal/DataFlowPrivate.qll
index afb82dbc9f7..edb30bb74ce 100644
--- a/swift/ql/lib/codeql/swift/dataflow/internal/DataFlowPrivate.qll
+++ b/swift/ql/lib/codeql/swift/dataflow/internal/DataFlowPrivate.qll
@@ -155,16 +155,14 @@ private module Cached {
     or
     // flow through nil-coalescing operator `??`
     exists(BinaryExpr nco |
-      nco.getFunction().(DeclRefExpr).getDecl().(FreeFunctionDecl).getName() = "??(_:_:)" and
-      (
-        // value argument
-        nodeFrom.asExpr() = nco.getAnOperand()
-        or
-        // unpack closure (the second argument is typically an `AutoClosureExpr` argument)
-        nodeFrom.asExpr() =
-          nco.getAnOperand().(AbstractClosureExpr).getBody().getAnElement().(ReturnStmt).getResult()
-      ) and
+      nco.getStaticTarget().(FreeFunctionDecl).getName() = "??(_:_:)" and
       nodeTo.asExpr() = nco
+    |
+      // value argument
+      nodeFrom.asExpr() = nco.getAnOperand()
+      or
+      // unpack closure (the second argument is typically an `AutoClosureExpr` argument)
+      nodeFrom.asExpr() = nco.getAnOperand().(AutoClosureExpr).getReturn().getResult()
     )
     or
     // flow through ternary operator `? :`

From 3c46b0cad17cba46d86b40ffc18bf27373cedb47 Mon Sep 17 00:00:00 2001
From: Geoffrey White <40627776+geoffw0@users.noreply.github.com>
Date: Tue, 15 Nov 2022 17:59:35 +0000
Subject: [PATCH 0301/1420] Swift: Add BinaryExpr.getOperator().

---
 .../ql/lib/codeql/swift/dataflow/internal/DataFlowPrivate.qll  | 2 +-
 swift/ql/lib/codeql/swift/elements/expr/BinaryExpr.qll         | 3 +++
 2 files changed, 4 insertions(+), 1 deletion(-)

diff --git a/swift/ql/lib/codeql/swift/dataflow/internal/DataFlowPrivate.qll b/swift/ql/lib/codeql/swift/dataflow/internal/DataFlowPrivate.qll
index edb30bb74ce..a66c0065343 100644
--- a/swift/ql/lib/codeql/swift/dataflow/internal/DataFlowPrivate.qll
+++ b/swift/ql/lib/codeql/swift/dataflow/internal/DataFlowPrivate.qll
@@ -155,7 +155,7 @@ private module Cached {
     or
     // flow through nil-coalescing operator `??`
     exists(BinaryExpr nco |
-      nco.getStaticTarget().(FreeFunctionDecl).getName() = "??(_:_:)" and
+      nco.getOperator().(FreeFunctionDecl).getName() = "??(_:_:)" and
       nodeTo.asExpr() = nco
     |
       // value argument
diff --git a/swift/ql/lib/codeql/swift/elements/expr/BinaryExpr.qll b/swift/ql/lib/codeql/swift/elements/expr/BinaryExpr.qll
index b75704bc1b1..d9aec16a069 100644
--- a/swift/ql/lib/codeql/swift/elements/expr/BinaryExpr.qll
+++ b/swift/ql/lib/codeql/swift/elements/expr/BinaryExpr.qll
@@ -1,11 +1,14 @@
 private import codeql.swift.generated.expr.BinaryExpr
 private import codeql.swift.elements.expr.Expr
+private import codeql.swift.elements.decl.AbstractFunctionDecl
 
 class BinaryExpr extends Generated::BinaryExpr {
   Expr getLeftOperand() { result = this.getArgument(0).getExpr() }
 
   Expr getRightOperand() { result = this.getArgument(1).getExpr() }
 
+  AbstractFunctionDecl getOperator() { result = this.getStaticTarget() }
+
   Expr getAnOperand() { result = [this.getLeftOperand(), this.getRightOperand()] }
 
   override string toString() { result = "... " + this.getFunction().toString() + " ..." }

From 88750a700046637b618538719ad37bc28bdc32be Mon Sep 17 00:00:00 2001
From: Andrew Eisenberg <aeisenberg@github.com>
Date: Tue, 15 Nov 2022 10:17:56 -0800
Subject: [PATCH 0302/1420] Add more information about ATM queries for external
 users

---
 javascript/ql/experimental/adaptivethreatmodeling/README.md | 6 ++++--
 1 file changed, 4 insertions(+), 2 deletions(-)

diff --git a/javascript/ql/experimental/adaptivethreatmodeling/README.md b/javascript/ql/experimental/adaptivethreatmodeling/README.md
index 341534e3fdf..556d9d94e8f 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/README.md
+++ b/javascript/ql/experimental/adaptivethreatmodeling/README.md
@@ -1,6 +1,8 @@
-# [Internal only] Adaptive Threat Modeling for JavaScript
+# Adaptive Threat Modeling for JavaScript
 
 This directory contains CodeQL libraries and queries that power adaptive threat modeling for JavaScript.
 All APIs are experimental and may change in the future.
 
-These queries can only be run by internal users; for external users they will return no results.
+Only internal users can run these queries directly. External users can run these queries when performing
+JavaScript analysis on Code Scanning. For more information, see 
+[Code scanning finds more vulnerabilities using machine learning](https://github.blog/2022-02-17-code-scanning-finds-vulnerabilities-using-machine-learning/).

From 70075e28328106625e9dde98ca13505a10a42724 Mon Sep 17 00:00:00 2001
From: Geoffrey White <40627776+geoffw0@users.noreply.github.com>
Date: Tue, 15 Nov 2022 18:03:16 +0000
Subject: [PATCH 0303/1420] Swift: Add qldoc for BinaryExpr.

---
 .../codeql/swift/elements/expr/BinaryExpr.qll | 19 +++++++++++++++++++
 1 file changed, 19 insertions(+)

diff --git a/swift/ql/lib/codeql/swift/elements/expr/BinaryExpr.qll b/swift/ql/lib/codeql/swift/elements/expr/BinaryExpr.qll
index d9aec16a069..29b86fa2adf 100644
--- a/swift/ql/lib/codeql/swift/elements/expr/BinaryExpr.qll
+++ b/swift/ql/lib/codeql/swift/elements/expr/BinaryExpr.qll
@@ -2,13 +2,32 @@ private import codeql.swift.generated.expr.BinaryExpr
 private import codeql.swift.elements.expr.Expr
 private import codeql.swift.elements.decl.AbstractFunctionDecl
 
+/**
+ * A Swift binary expression, that is, an expression that appears between its
+ * two operands. For example:
+ * ```
+ * x + y
+ * ```
+ */
 class BinaryExpr extends Generated::BinaryExpr {
+  /**
+   * Gets the left operand (left expression) of this binary expression.
+   */
   Expr getLeftOperand() { result = this.getArgument(0).getExpr() }
 
+  /**
+   * Gets the right operand (right expression) of this binary expression.
+   */
   Expr getRightOperand() { result = this.getArgument(1).getExpr() }
 
+  /**
+   * Gets the operator of this binary expression (the function that is called).
+   */
   AbstractFunctionDecl getOperator() { result = this.getStaticTarget() }
 
+  /**
+   * Gets an operand of this binary expression (left or right).
+   */
   Expr getAnOperand() { result = [this.getLeftOperand(), this.getRightOperand()] }
 
   override string toString() { result = "... " + this.getFunction().toString() + " ..." }

From 13d6deb9c4a79f5e27fe3fb6fe48cd873fe812e7 Mon Sep 17 00:00:00 2001
From: Geoffrey White <40627776+geoffw0@users.noreply.github.com>
Date: Tue, 15 Nov 2022 18:14:02 +0000
Subject: [PATCH 0304/1420] Swift: Make similar enhancements to unary
 operations.

---
 .../swift/elements/expr/PostfixUnaryExpr.qll  | 22 +++++++++++++++++--
 .../swift/elements/expr/PrefixUnaryExpr.qll   | 16 ++++++++++++++
 2 files changed, 36 insertions(+), 2 deletions(-)

diff --git a/swift/ql/lib/codeql/swift/elements/expr/PostfixUnaryExpr.qll b/swift/ql/lib/codeql/swift/elements/expr/PostfixUnaryExpr.qll
index 46742454650..77150da54a1 100644
--- a/swift/ql/lib/codeql/swift/elements/expr/PostfixUnaryExpr.qll
+++ b/swift/ql/lib/codeql/swift/elements/expr/PostfixUnaryExpr.qll
@@ -1,4 +1,22 @@
-// generated by codegen/codegen.py, remove this comment if you wish to edit this file
 private import codeql.swift.generated.expr.PostfixUnaryExpr
+private import codeql.swift.elements.expr.Expr
+private import codeql.swift.elements.decl.AbstractFunctionDecl
 
-class PostfixUnaryExpr extends Generated::PostfixUnaryExpr { }
+/**
+ * A Swift postfix unary expression, that is, a unary expression that appears
+ * after its operand. For example:
+ * ```
+ * x!
+ * ```
+ */
+class PostfixUnaryExpr extends Generated::PostfixUnaryExpr {
+  /**
+   *  Gets the operand (expression) of this postfix unary expression.
+   */
+  Expr getOperand() { result = this.getAnArgument().getExpr() }
+
+  /**
+   * Gets the operator of this postfix unary expression (the function that is called).
+   */
+  AbstractFunctionDecl getOperator() { result = this.getStaticTarget() }
+}
diff --git a/swift/ql/lib/codeql/swift/elements/expr/PrefixUnaryExpr.qll b/swift/ql/lib/codeql/swift/elements/expr/PrefixUnaryExpr.qll
index b9a1ecd4ee9..0cd1e25ad6b 100644
--- a/swift/ql/lib/codeql/swift/elements/expr/PrefixUnaryExpr.qll
+++ b/swift/ql/lib/codeql/swift/elements/expr/PrefixUnaryExpr.qll
@@ -1,6 +1,22 @@
 private import codeql.swift.generated.expr.PrefixUnaryExpr
 private import codeql.swift.elements.expr.Expr
+private import codeql.swift.elements.decl.AbstractFunctionDecl
 
+/**
+ * A Swift prefix unary expression, that is, a unary expression that appears
+ * before its operand. For example:
+ * ```
+ * -x
+ * ```
+ */
 class PrefixUnaryExpr extends Generated::PrefixUnaryExpr {
+  /**
+   *  Gets the operand (expression) of this prefix unary expression.
+   */
   Expr getOperand() { result = this.getAnArgument().getExpr() }
+
+  /**
+   * Gets the operator of this prefix unary expression (the function that is called).
+   */
+  AbstractFunctionDecl getOperator() { result = this.getStaticTarget() }
 }

From 4eee37529609932d80d815c036e20193ea71251d Mon Sep 17 00:00:00 2001
From: Geoffrey White <40627776+geoffw0@users.noreply.github.com>
Date: Tue, 15 Nov 2022 18:16:40 +0000
Subject: [PATCH 0305/1420] Swift: Add AutoClosureExpr.getExpr.

---
 .../lib/codeql/swift/dataflow/internal/DataFlowPrivate.qll  | 2 +-
 swift/ql/lib/codeql/swift/elements/expr/AutoClosureExpr.qll | 6 ++++++
 2 files changed, 7 insertions(+), 1 deletion(-)

diff --git a/swift/ql/lib/codeql/swift/dataflow/internal/DataFlowPrivate.qll b/swift/ql/lib/codeql/swift/dataflow/internal/DataFlowPrivate.qll
index a66c0065343..e6ad6fb26b4 100644
--- a/swift/ql/lib/codeql/swift/dataflow/internal/DataFlowPrivate.qll
+++ b/swift/ql/lib/codeql/swift/dataflow/internal/DataFlowPrivate.qll
@@ -162,7 +162,7 @@ private module Cached {
       nodeFrom.asExpr() = nco.getAnOperand()
       or
       // unpack closure (the second argument is typically an `AutoClosureExpr` argument)
-      nodeFrom.asExpr() = nco.getAnOperand().(AutoClosureExpr).getReturn().getResult()
+      nodeFrom.asExpr() = nco.getAnOperand().(AutoClosureExpr).getExpr()
     )
     or
     // flow through ternary operator `? :`
diff --git a/swift/ql/lib/codeql/swift/elements/expr/AutoClosureExpr.qll b/swift/ql/lib/codeql/swift/elements/expr/AutoClosureExpr.qll
index 6098a1e04cc..296c9513861 100644
--- a/swift/ql/lib/codeql/swift/elements/expr/AutoClosureExpr.qll
+++ b/swift/ql/lib/codeql/swift/elements/expr/AutoClosureExpr.qll
@@ -1,9 +1,15 @@
 private import codeql.swift.generated.expr.AutoClosureExpr
 private import codeql.swift.elements.stmt.ReturnStmt
+private import codeql.swift.elements.expr.Expr
 
 class AutoClosureExpr extends Generated::AutoClosureExpr {
   /** Gets the implicit return statement generated by this autoclosure expression. */
   ReturnStmt getReturn() { result = unique( | | this.getBody().getAnElement()) }
 
+  /**
+   * Gets the expression returned by this autoclosure expression.
+   */
+  Expr getExpr() { result = this.getReturn().getResult() }
+
   override string toString() { result = this.getBody().toString() }
 }

From 7c1fb5d4a677f767fe04bf8852564ab8b4781fb1 Mon Sep 17 00:00:00 2001
From: Geoffrey White <40627776+geoffw0@users.noreply.github.com>
Date: Tue, 15 Nov 2022 18:24:58 +0000
Subject: [PATCH 0306/1420] Swift: Add qldoc for AutoClosureExpr.

---
 .../swift/elements/expr/AutoClosureExpr.qll      | 16 +++++++++++++++-
 1 file changed, 15 insertions(+), 1 deletion(-)

diff --git a/swift/ql/lib/codeql/swift/elements/expr/AutoClosureExpr.qll b/swift/ql/lib/codeql/swift/elements/expr/AutoClosureExpr.qll
index 296c9513861..aab42ca0af7 100644
--- a/swift/ql/lib/codeql/swift/elements/expr/AutoClosureExpr.qll
+++ b/swift/ql/lib/codeql/swift/elements/expr/AutoClosureExpr.qll
@@ -2,8 +2,22 @@ private import codeql.swift.generated.expr.AutoClosureExpr
 private import codeql.swift.elements.stmt.ReturnStmt
 private import codeql.swift.elements.expr.Expr
 
+/**
+ * A Swift autoclosure expression, that is, a closure automatically generated
+ * around an argument when the parameter has the `@autoclosure` attribute. For
+ * example, there is an `AutoClosureExpr` around the value `0` in:
+ * ```
+ * func myFunction(_ expr: @autoclosure () -> Int) {
+ *   ...
+ * }
+ *
+ * myFunction(0)
+ * ```
+ */
 class AutoClosureExpr extends Generated::AutoClosureExpr {
-  /** Gets the implicit return statement generated by this autoclosure expression. */
+  /**
+   * Gets the implicit return statement generated by this autoclosure expression.
+   */
   ReturnStmt getReturn() { result = unique( | | this.getBody().getAnElement()) }
 
   /**

From e81c62e40262da7db418f11af6fb15a6dc3bb38e Mon Sep 17 00:00:00 2001
From: Geoffrey White <40627776+geoffw0@users.noreply.github.com>
Date: Tue, 15 Nov 2022 18:34:51 +0000
Subject: [PATCH 0307/1420] Swift: Correct comment.

---
 swift/ql/lib/codeql/swift/dataflow/internal/DataFlowPrivate.qll | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/swift/ql/lib/codeql/swift/dataflow/internal/DataFlowPrivate.qll b/swift/ql/lib/codeql/swift/dataflow/internal/DataFlowPrivate.qll
index e6ad6fb26b4..67aba2155db 100644
--- a/swift/ql/lib/codeql/swift/dataflow/internal/DataFlowPrivate.qll
+++ b/swift/ql/lib/codeql/swift/dataflow/internal/DataFlowPrivate.qll
@@ -161,7 +161,7 @@ private module Cached {
       // value argument
       nodeFrom.asExpr() = nco.getAnOperand()
       or
-      // unpack closure (the second argument is typically an `AutoClosureExpr` argument)
+      // unpack closure (the second argument is an `AutoClosureExpr` argument)
       nodeFrom.asExpr() = nco.getAnOperand().(AutoClosureExpr).getExpr()
     )
     or

From 092e019de9b4da42dc66da7a75f89799bf15b7db Mon Sep 17 00:00:00 2001
From: Tiferet Gazit <tiferet@github.com>
Date: Tue, 15 Nov 2022 10:48:32 -0800
Subject: [PATCH 0308/1420] Apply suggestions from code review

Co-authored-by: Stephan Brandauer <kaeluka@github.com>
---
 .../modelbuilding/extraction/ExtractEndpointDataTraining.qll  | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/javascript/ql/experimental/adaptivethreatmodeling/modelbuilding/extraction/ExtractEndpointDataTraining.qll b/javascript/ql/experimental/adaptivethreatmodeling/modelbuilding/extraction/ExtractEndpointDataTraining.qll
index 533f7bb2d9d..d91bdb77189 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/modelbuilding/extraction/ExtractEndpointDataTraining.qll
+++ b/javascript/ql/experimental/adaptivethreatmodeling/modelbuilding/extraction/ExtractEndpointDataTraining.qll
@@ -22,7 +22,7 @@ import experimental.adaptivethreatmodeling.XssATM as XssAtm
  * `endpoint`. To preserve compatibility with the data pipeline, this relation will instead set
  * `featureValue` to the empty string in this case.
  */
-query predicate tokenFeatures(DataFlow::Node endpoint, string featureName, string featureValue) {
+predicate tokenFeatures(DataFlow::Node endpoint, string featureName, string featureValue) {
   trainingEndpoints(endpoint, _, _) and
   (
     EndpointFeatures::tokenFeatures(endpoint, featureName, featureValue)
@@ -209,7 +209,7 @@ DataFlow::Configuration getDataFlowCfg(Query query) {
 }
 
 // TODO: Delete this once we are no longer surfacing `hasFlowFromSource`.
-module FlowFromSource {
+private module FlowFromSource {
   predicate hasFlowFromSource(DataFlow::Node endpoint, Query q) {
     exists(Configuration cfg | cfg.getQuery() = q | cfg.hasFlow(_, endpoint))
   }

From 10875568ec8f99115179d038774aaa9144068444 Mon Sep 17 00:00:00 2001
From: Ed Minnix <egregius313@github.com>
Date: Tue, 15 Nov 2022 13:50:31 -0500
Subject: [PATCH 0309/1420] Java: add negative test cases for WebView file
 access query

---
 .../CWE-200/semmle/tests/WebViewFileAccess.java        | 10 ++++++++++
 1 file changed, 10 insertions(+)

diff --git a/java/ql/test/query-tests/security/CWE-200/semmle/tests/WebViewFileAccess.java b/java/ql/test/query-tests/security/CWE-200/semmle/tests/WebViewFileAccess.java
index 8599f6a4e3a..f42dbfaa84a 100644
--- a/java/ql/test/query-tests/security/CWE-200/semmle/tests/WebViewFileAccess.java
+++ b/java/ql/test/query-tests/security/CWE-200/semmle/tests/WebViewFileAccess.java
@@ -11,4 +11,14 @@ class WebViewFileAccess {
 
         settings.setAllowUniversalAccessFromFileURLs(true);
     }
+
+    void configureSafe(WebView view) {
+        WebSettings settings = view.getSettings();
+
+        settings.setAllowFileAccess(false);
+
+        settings.setAllowFileAccessFromFileURLs(false);
+
+        settings.setAllowUniversalAccessFromFileURLs(false);
+    }
 }

From 013ff79d17d3e1be8d1998d2c925ddf64f0ba697 Mon Sep 17 00:00:00 2001
From: Ed Minnix <egregius313@github.com>
Date: Tue, 15 Nov 2022 13:50:56 -0500
Subject: [PATCH 0310/1420] Java: Check the value of parameter in WebView file
 access query

---
 .../Security/CWE/CWE-200/AndroidWebViewSettingsFileAccess.ql  | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

diff --git a/java/ql/src/Security/CWE/CWE-200/AndroidWebViewSettingsFileAccess.ql b/java/ql/src/Security/CWE/CWE-200/AndroidWebViewSettingsFileAccess.ql
index 6e88fdf8a55..e06b8b7de99 100644
--- a/java/ql/src/Security/CWE/CWE-200/AndroidWebViewSettingsFileAccess.ql
+++ b/java/ql/src/Security/CWE/CWE-200/AndroidWebViewSettingsFileAccess.ql
@@ -14,7 +14,9 @@ import java
 import semmle.code.java.frameworks.android.WebView
 
 from MethodAccess ma
-where ma.getMethod() instanceof CrossOriginAccessMethod
+where
+  ma.getMethod() instanceof CrossOriginAccessMethod and
+  ma.getArgument(0).(CompileTimeConstantExpr).getBooleanValue() = true
 select ma,
   "WebView setting " + ma.getMethod().getName() +
     " may allow for unauthorized access of sensitive information."

From fc078a47fdc257453cad808cd5608ce92bfd4f01 Mon Sep 17 00:00:00 2001
From: tiferet <tiferet@github.com>
Date: Tue, 15 Nov 2022 11:14:01 -0800
Subject: [PATCH 0311/1420] Apply suggestion from code review

---
 .../modelbuilding/extraction/ExtractEndpointDataTraining.qll | 5 ++---
 1 file changed, 2 insertions(+), 3 deletions(-)

diff --git a/javascript/ql/experimental/adaptivethreatmodeling/modelbuilding/extraction/ExtractEndpointDataTraining.qll b/javascript/ql/experimental/adaptivethreatmodeling/modelbuilding/extraction/ExtractEndpointDataTraining.qll
index d91bdb77189..153afdb1b45 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/modelbuilding/extraction/ExtractEndpointDataTraining.qll
+++ b/javascript/ql/experimental/adaptivethreatmodeling/modelbuilding/extraction/ExtractEndpointDataTraining.qll
@@ -42,9 +42,8 @@ predicate tokenFeatures(DataFlow::Node endpoint, string featureName, string feat
  *
  * Params:
  * endpoint: The endpoint to include / exclude.
- * endpointClass: The sink type. Each EndpointType has a predicate getEncoding, which specifies the classifier class
- * for this sink type. Class 0 is the negative class (non-sink). Each positive int corresponds to a single sink type.
- * This gives us the label for the endpoint in the training data.
+ * endpointClass: The sink type. See the documentation of EndpointType.getEncoding for details about the relationship
+ * between an EndpointType and a class in the classifier.
  * characteristic: Provides the list of characteristics that apply to the endpoint, which the modeling code currently
  * uses for type balancing.
  *

From b42482c96000acb324ce451ca81c85aa197bc674 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Nora=20Dimitrijevi=C4=87?= <d10c@users.noreply.github.com>
Date: Tue, 15 Nov 2022 21:14:18 +0100
Subject: [PATCH 0312/1420] Update
 swift/ql/src/queries/Security/CWE-094/UnsafeJsEval.qhelp

Co-authored-by: Sam Browning <106113886+sabrowning1@users.noreply.github.com>
---
 swift/ql/src/queries/Security/CWE-094/UnsafeJsEval.qhelp | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/swift/ql/src/queries/Security/CWE-094/UnsafeJsEval.qhelp b/swift/ql/src/queries/Security/CWE-094/UnsafeJsEval.qhelp
index 26eae7ff91b..e76b62f37f7 100644
--- a/swift/ql/src/queries/Security/CWE-094/UnsafeJsEval.qhelp
+++ b/swift/ql/src/queries/Security/CWE-094/UnsafeJsEval.qhelp
@@ -17,7 +17,7 @@
 
 <sample src="UnsafeJsEvalBad.swift" />
 
-<p>To fix the problem, we sanitize the remote data by passing it using the <code>arguments</code> dictionary of <code>WKWebView.callAsyncJavaScript</code>. This ensures that untrusted data cannot be evaluated as JavaScript source code.</p>
+<p>In the following (good) example, we sanitize the remote data by passing it using the <code>arguments</code> dictionary of <code>WKWebView.callAsyncJavaScript</code>. This ensures that untrusted data cannot be evaluated as JavaScript source code.</p>
 
 <sample src="UnsafeJsEvalGood.swift" />
 

From 8db8f14f9908926dd3efce3d1a32f23f4df5cf8a Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Nora=20Dimitrijevi=C4=87?= <d10c@users.noreply.github.com>
Date: Tue, 15 Nov 2022 21:14:37 +0100
Subject: [PATCH 0313/1420] Update
 swift/ql/src/queries/Security/CWE-094/UnsafeJsEval.qhelp

Co-authored-by: Sam Browning <106113886+sabrowning1@users.noreply.github.com>
---
 swift/ql/src/queries/Security/CWE-094/UnsafeJsEval.qhelp | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/swift/ql/src/queries/Security/CWE-094/UnsafeJsEval.qhelp b/swift/ql/src/queries/Security/CWE-094/UnsafeJsEval.qhelp
index e76b62f37f7..679da6a8fa3 100644
--- a/swift/ql/src/queries/Security/CWE-094/UnsafeJsEval.qhelp
+++ b/swift/ql/src/queries/Security/CWE-094/UnsafeJsEval.qhelp
@@ -13,7 +13,7 @@
 </recommendation>
 <example>
 
-<p>In the following example, a call to <code>WKWebView.evaluateJavaScript</code> evaluates JavaScript source code that is tainted with remote data, potentially introducing a code injection vulnerability.</p>
+<p>In the following (bad) example, a call to <code>WKWebView.evaluateJavaScript</code> evaluates JavaScript source code that is tainted with remote data, potentially introducing a code injection vulnerability.</p>
 
 <sample src="UnsafeJsEvalBad.swift" />
 

From cb7d9d5f3f192e0e1c826ff0521863549fd68deb Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Nora=20Dimitrijevi=C4=87?= <d10c@users.noreply.github.com>
Date: Tue, 15 Nov 2022 21:14:50 +0100
Subject: [PATCH 0314/1420] Update
 swift/ql/src/queries/Security/CWE-094/UnsafeJsEval.qhelp

Co-authored-by: Sam Browning <106113886+sabrowning1@users.noreply.github.com>
---
 swift/ql/src/queries/Security/CWE-094/UnsafeJsEval.qhelp | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/swift/ql/src/queries/Security/CWE-094/UnsafeJsEval.qhelp b/swift/ql/src/queries/Security/CWE-094/UnsafeJsEval.qhelp
index 679da6a8fa3..d63fe635f50 100644
--- a/swift/ql/src/queries/Security/CWE-094/UnsafeJsEval.qhelp
+++ b/swift/ql/src/queries/Security/CWE-094/UnsafeJsEval.qhelp
@@ -3,7 +3,7 @@
   "qhelp.dtd">
 <qhelp>
 <overview>
-<p>Evaluating JavaScript that contains a substring from a remote origin may lead to remote code execution. Code under control of an attacker can execute arbitrary unauthorized actions, including exfiltration of local data by sending it to a third party web service.</p>
+<p>Evaluating JavaScript that contains a substring from a remote origin may lead to remote code execution. Code written by an attacker can execute unauthorized actions, including exfiltration of local data through a third party web service.</p>
 
 </overview>
 <recommendation>

From fccb581765fd25543f27c36a8ebd3c7a8327cfff Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Nora=20Dimitrijevi=C4=87?= <d10c@users.noreply.github.com>
Date: Tue, 15 Nov 2022 21:14:56 +0100
Subject: [PATCH 0315/1420] Update
 swift/ql/src/queries/Security/CWE-094/UnsafeJsEval.qhelp

Co-authored-by: Sam Browning <106113886+sabrowning1@users.noreply.github.com>
---
 swift/ql/src/queries/Security/CWE-094/UnsafeJsEval.qhelp | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/swift/ql/src/queries/Security/CWE-094/UnsafeJsEval.qhelp b/swift/ql/src/queries/Security/CWE-094/UnsafeJsEval.qhelp
index d63fe635f50..ccb07b71785 100644
--- a/swift/ql/src/queries/Security/CWE-094/UnsafeJsEval.qhelp
+++ b/swift/ql/src/queries/Security/CWE-094/UnsafeJsEval.qhelp
@@ -8,7 +8,7 @@
 </overview>
 <recommendation>
 
-<p>When loading JavaScript into a web view, evaluate only known, locally-defined source code. If a part of the input does come from a remote source, instead of injecting it into the JavaScript code to be evaluated, prefer sending it as data to the web view using an API such as <code>WKWebView.callAsyncJavaScript</code> with the <code>arguments</code> dictionary to pass remote data objects.</p>
+<p>When loading JavaScript into a web view, evaluate only known, locally-defined source code. If part of the input comes from a remote source, do not inject it into the JavaScript code to be evaluated. Instead, send it to the web view as data using an API such as <code>WKWebView.callAsyncJavaScript</code> with the <code>arguments</code> dictionary to pass remote data objects.</p>
 
 </recommendation>
 <example>

From 52e5d541ef81e22d41593580826f18d994064a68 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Nora=20Dimitrijevi=C4=87?= <d10c@users.noreply.github.com>
Date: Tue, 15 Nov 2022 21:15:04 +0100
Subject: [PATCH 0316/1420] Update
 swift/ql/src/queries/Security/CWE-094/UnsafeJsEval.qhelp

Co-authored-by: Sam Browning <106113886+sabrowning1@users.noreply.github.com>
---
 swift/ql/src/queries/Security/CWE-094/UnsafeJsEval.qhelp | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/swift/ql/src/queries/Security/CWE-094/UnsafeJsEval.qhelp b/swift/ql/src/queries/Security/CWE-094/UnsafeJsEval.qhelp
index ccb07b71785..a685e1d51d6 100644
--- a/swift/ql/src/queries/Security/CWE-094/UnsafeJsEval.qhelp
+++ b/swift/ql/src/queries/Security/CWE-094/UnsafeJsEval.qhelp
@@ -25,7 +25,7 @@
 <references>
 
 <li>
-  <a href="https://developer.apple.com/documentation/webkit/wkwebview/3824703-callasyncjavascript">Apple Developer Documentation - WKWebView.callAsyncJavaScript(_:arguments:in:contentWorld:)</a>
+  Apple Developer Documentation: <a href="https://developer.apple.com/documentation/webkit/wkwebview/3824703-callasyncjavascript">WKWebView.callAsyncJavaScript(_:arguments:in:contentWorld:)</a>
 </li>
 
 </references>

From 09b669a58448fafa7bde94c5f4d3ddf034b4d721 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Nora=20Dimitrijevi=C4=87?= <d10c@users.noreply.github.com>
Date: Tue, 15 Nov 2022 21:57:46 +0100
Subject: [PATCH 0317/1420] Swift: Add direct call to remote source to a test

Strangely, there are two separate paths to each of the JSEvaluateScript
sinks: one passing through the JSString constructor, one omitting this
step.
---
 .../Security/CWE-094/UnsafeJsEval.expected    | 23 ++++++++++++-------
 .../Security/CWE-094/UnsafeJsEval.swift       |  4 ++--
 2 files changed, 17 insertions(+), 10 deletions(-)

diff --git a/swift/ql/test/query-tests/Security/CWE-094/UnsafeJsEval.expected b/swift/ql/test/query-tests/Security/CWE-094/UnsafeJsEval.expected
index 05881a11eb5..4e04cad1468 100644
--- a/swift/ql/test/query-tests/Security/CWE-094/UnsafeJsEval.expected
+++ b/swift/ql/test/query-tests/Security/CWE-094/UnsafeJsEval.expected
@@ -1,17 +1,17 @@
 edges
 | UnsafeJsEval.swift:124:21:124:42 | string :  | UnsafeJsEval.swift:124:70:124:70 | string :  |
 | UnsafeJsEval.swift:165:10:165:37 | try ... :  | UnsafeJsEval.swift:201:21:201:35 | call to getRemoteData() :  |
-| UnsafeJsEval.swift:165:10:165:37 | try ... :  | UnsafeJsEval.swift:204:7:204:21 | call to getRemoteData() :  |
 | UnsafeJsEval.swift:165:14:165:37 | call to init(contentsOf:) :  | UnsafeJsEval.swift:165:10:165:37 | try ... :  |
 | UnsafeJsEval.swift:201:21:201:35 | call to getRemoteData() :  | UnsafeJsEval.swift:205:7:205:7 | remoteString :  |
 | UnsafeJsEval.swift:201:21:201:35 | call to getRemoteData() :  | UnsafeJsEval.swift:208:7:208:39 | ... .+(_:_:) ... :  |
 | UnsafeJsEval.swift:201:21:201:35 | call to getRemoteData() :  | UnsafeJsEval.swift:214:7:214:49 | call to init(decoding:as:) :  |
-| UnsafeJsEval.swift:204:7:204:21 | call to getRemoteData() :  | UnsafeJsEval.swift:265:13:265:13 | string :  |
-| UnsafeJsEval.swift:204:7:204:21 | call to getRemoteData() :  | UnsafeJsEval.swift:268:13:268:13 | string :  |
-| UnsafeJsEval.swift:204:7:204:21 | call to getRemoteData() :  | UnsafeJsEval.swift:276:13:276:13 | string :  |
-| UnsafeJsEval.swift:204:7:204:21 | call to getRemoteData() :  | UnsafeJsEval.swift:279:13:279:13 | string :  |
-| UnsafeJsEval.swift:204:7:204:21 | call to getRemoteData() :  | UnsafeJsEval.swift:285:13:285:13 | string :  |
-| UnsafeJsEval.swift:204:7:204:21 | call to getRemoteData() :  | UnsafeJsEval.swift:299:13:299:13 | string :  |
+| UnsafeJsEval.swift:204:7:204:66 | try! ... :  | UnsafeJsEval.swift:265:13:265:13 | string :  |
+| UnsafeJsEval.swift:204:7:204:66 | try! ... :  | UnsafeJsEval.swift:268:13:268:13 | string :  |
+| UnsafeJsEval.swift:204:7:204:66 | try! ... :  | UnsafeJsEval.swift:276:13:276:13 | string :  |
+| UnsafeJsEval.swift:204:7:204:66 | try! ... :  | UnsafeJsEval.swift:279:13:279:13 | string :  |
+| UnsafeJsEval.swift:204:7:204:66 | try! ... :  | UnsafeJsEval.swift:285:13:285:13 | string :  |
+| UnsafeJsEval.swift:204:7:204:66 | try! ... :  | UnsafeJsEval.swift:299:13:299:13 | string :  |
+| UnsafeJsEval.swift:204:12:204:66 | call to init(contentsOf:) :  | UnsafeJsEval.swift:204:7:204:66 | try! ... :  |
 | UnsafeJsEval.swift:205:7:205:7 | remoteString :  | UnsafeJsEval.swift:265:13:265:13 | string :  |
 | UnsafeJsEval.swift:205:7:205:7 | remoteString :  | UnsafeJsEval.swift:268:13:268:13 | string :  |
 | UnsafeJsEval.swift:205:7:205:7 | remoteString :  | UnsafeJsEval.swift:276:13:276:13 | string :  |
@@ -56,7 +56,8 @@ nodes
 | UnsafeJsEval.swift:165:10:165:37 | try ... :  | semmle.label | try ... :  |
 | UnsafeJsEval.swift:165:14:165:37 | call to init(contentsOf:) :  | semmle.label | call to init(contentsOf:) :  |
 | UnsafeJsEval.swift:201:21:201:35 | call to getRemoteData() :  | semmle.label | call to getRemoteData() :  |
-| UnsafeJsEval.swift:204:7:204:21 | call to getRemoteData() :  | semmle.label | call to getRemoteData() :  |
+| UnsafeJsEval.swift:204:7:204:66 | try! ... :  | semmle.label | try! ... :  |
+| UnsafeJsEval.swift:204:12:204:66 | call to init(contentsOf:) :  | semmle.label | call to init(contentsOf:) :  |
 | UnsafeJsEval.swift:205:7:205:7 | remoteString :  | semmle.label | remoteString :  |
 | UnsafeJsEval.swift:208:7:208:39 | ... .+(_:_:) ... :  | semmle.label | ... .+(_:_:) ... :  |
 | UnsafeJsEval.swift:214:7:214:49 | call to init(decoding:as:) :  | semmle.label | call to init(decoding:as:) :  |
@@ -85,8 +86,14 @@ subpaths
 | UnsafeJsEval.swift:301:31:301:84 | call to JSStringCreateWithUTF8CString(_:) :  | UnsafeJsEval.swift:124:21:124:42 | string :  | UnsafeJsEval.swift:124:70:124:70 | string :  | UnsafeJsEval.swift:301:16:301:85 | call to JSStringRetain(_:) :  |
 #select
 | UnsafeJsEval.swift:266:22:266:107 | call to init(source:injectionTime:forMainFrameOnly:) | UnsafeJsEval.swift:165:14:165:37 | call to init(contentsOf:) :  | UnsafeJsEval.swift:266:22:266:107 | call to init(source:injectionTime:forMainFrameOnly:) | Evaluation of uncontrolled JavaScript from a remote source. |
+| UnsafeJsEval.swift:266:22:266:107 | call to init(source:injectionTime:forMainFrameOnly:) | UnsafeJsEval.swift:204:12:204:66 | call to init(contentsOf:) :  | UnsafeJsEval.swift:266:22:266:107 | call to init(source:injectionTime:forMainFrameOnly:) | Evaluation of uncontrolled JavaScript from a remote source. |
 | UnsafeJsEval.swift:269:22:269:124 | call to init(source:injectionTime:forMainFrameOnly:in:) | UnsafeJsEval.swift:165:14:165:37 | call to init(contentsOf:) :  | UnsafeJsEval.swift:269:22:269:124 | call to init(source:injectionTime:forMainFrameOnly:in:) | Evaluation of uncontrolled JavaScript from a remote source. |
+| UnsafeJsEval.swift:269:22:269:124 | call to init(source:injectionTime:forMainFrameOnly:in:) | UnsafeJsEval.swift:204:12:204:66 | call to init(contentsOf:) :  | UnsafeJsEval.swift:269:22:269:124 | call to init(source:injectionTime:forMainFrameOnly:in:) | Evaluation of uncontrolled JavaScript from a remote source. |
 | UnsafeJsEval.swift:277:26:277:26 | string | UnsafeJsEval.swift:165:14:165:37 | call to init(contentsOf:) :  | UnsafeJsEval.swift:277:26:277:26 | string | Evaluation of uncontrolled JavaScript from a remote source. |
+| UnsafeJsEval.swift:277:26:277:26 | string | UnsafeJsEval.swift:204:12:204:66 | call to init(contentsOf:) :  | UnsafeJsEval.swift:277:26:277:26 | string | Evaluation of uncontrolled JavaScript from a remote source. |
 | UnsafeJsEval.swift:280:26:280:26 | string | UnsafeJsEval.swift:165:14:165:37 | call to init(contentsOf:) :  | UnsafeJsEval.swift:280:26:280:26 | string | Evaluation of uncontrolled JavaScript from a remote source. |
+| UnsafeJsEval.swift:280:26:280:26 | string | UnsafeJsEval.swift:204:12:204:66 | call to init(contentsOf:) :  | UnsafeJsEval.swift:280:26:280:26 | string | Evaluation of uncontrolled JavaScript from a remote source. |
 | UnsafeJsEval.swift:291:17:291:17 | jsstr | UnsafeJsEval.swift:165:14:165:37 | call to init(contentsOf:) :  | UnsafeJsEval.swift:291:17:291:17 | jsstr | Evaluation of uncontrolled JavaScript from a remote source. |
+| UnsafeJsEval.swift:291:17:291:17 | jsstr | UnsafeJsEval.swift:204:12:204:66 | call to init(contentsOf:) :  | UnsafeJsEval.swift:291:17:291:17 | jsstr | Evaluation of uncontrolled JavaScript from a remote source. |
 | UnsafeJsEval.swift:305:17:305:17 | jsstr | UnsafeJsEval.swift:165:14:165:37 | call to init(contentsOf:) :  | UnsafeJsEval.swift:305:17:305:17 | jsstr | Evaluation of uncontrolled JavaScript from a remote source. |
+| UnsafeJsEval.swift:305:17:305:17 | jsstr | UnsafeJsEval.swift:204:12:204:66 | call to init(contentsOf:) :  | UnsafeJsEval.swift:305:17:305:17 | jsstr | Evaluation of uncontrolled JavaScript from a remote source. |
diff --git a/swift/ql/test/query-tests/Security/CWE-094/UnsafeJsEval.swift b/swift/ql/test/query-tests/Security/CWE-094/UnsafeJsEval.swift
index e65c182a4c3..69ccaba2f81 100644
--- a/swift/ql/test/query-tests/Security/CWE-094/UnsafeJsEval.swift
+++ b/swift/ql/test/query-tests/Security/CWE-094/UnsafeJsEval.swift
@@ -175,7 +175,7 @@ func testAsync(_ sink: @escaping (String) async throws -> ()) {
 		let remoteString = getRemoteData()
 
 		try! await sink(localString) // GOOD: the HTML data is local
-		try! await sink(getRemoteData()) // BAD [NOT DETECTED - TODO: extract Callables of @MainActor method calls]: HTML contains remote input, may access local secrets
+		try! await sink(try String(contentsOf: URL(string: "http://example.com/")!)) // BAD [NOT DETECTED - TODO: extract Callables of @MainActor method calls]: HTML contains remote input, may access local secrets
 		try! await sink(remoteString) // BAD [NOT DETECTED - TODO: extract Callables of @MainActor method calls]
 
 		try! await sink("console.log(" + localStringFragment + ")") // GOOD: the HTML data is local
@@ -201,7 +201,7 @@ func testSync(_ sink: @escaping (String) -> ()) {
 	let remoteString = getRemoteData()
 
 	sink(localString) // GOOD: the HTML data is local
-	sink(getRemoteData()) // BAD: HTML contains remote input, may access local secrets
+	sink(try! String(contentsOf: URL(string: "http://example.com/")!)) // BAD: HTML contains remote input, may access local secrets
 	sink(remoteString) // BAD
 
 	sink("console.log(" + localStringFragment + ")") // GOOD: the HTML data is local

From 30c66303ba6c173e1eaa8da4f4234a9da507db86 Mon Sep 17 00:00:00 2001
From: erik-krogh <erik-krogh@github.com>
Date: Mon, 14 Nov 2022 09:56:10 +0100
Subject: [PATCH 0318/1420] initial skeleton for TypeScript 4.9

---
 docs/codeql/support/reusables/versions-compilers.rst      | 2 +-
 javascript/extractor/lib/typescript/package.json          | 2 +-
 javascript/extractor/lib/typescript/yarn.lock             | 8 ++++----
 .../ql/lib/change-notes/2022-11-15-typescript-4-9.md      | 4 ++++
 4 files changed, 10 insertions(+), 6 deletions(-)
 create mode 100644 javascript/ql/lib/change-notes/2022-11-15-typescript-4-9.md

diff --git a/docs/codeql/support/reusables/versions-compilers.rst b/docs/codeql/support/reusables/versions-compilers.rst
index d84757c81d7..ab09831884b 100644
--- a/docs/codeql/support/reusables/versions-compilers.rst
+++ b/docs/codeql/support/reusables/versions-compilers.rst
@@ -24,7 +24,7 @@
    JavaScript,ECMAScript 2022 or lower,Not applicable,"``.js``, ``.jsx``, ``.mjs``, ``.es``, ``.es6``, ``.htm``, ``.html``, ``.xhtm``, ``.xhtml``, ``.vue``, ``.hbs``, ``.ejs``, ``.njk``, ``.json``, ``.yaml``, ``.yml``, ``.raml``, ``.xml`` [7]_"
    Python [8]_,"2.7, 3.5, 3.6, 3.7, 3.8, 3.9, 3.10",Not applicable,``.py``
    Ruby [9]_,"up to 3.1",Not applicable,"``.rb``, ``.erb``, ``.gemspec``, ``Gemfile``"
-   TypeScript [10]_,"2.6-4.8",Standard TypeScript compiler,"``.ts``, ``.tsx``, ``.mts``, ``.cts``"
+   TypeScript [10]_,"2.6-4.9",Standard TypeScript compiler,"``.ts``, ``.tsx``, ``.mts``, ``.cts``"
 
 .. container:: footnote-group
 
diff --git a/javascript/extractor/lib/typescript/package.json b/javascript/extractor/lib/typescript/package.json
index 2fbc09e8d9e..2426fe0c896 100644
--- a/javascript/extractor/lib/typescript/package.json
+++ b/javascript/extractor/lib/typescript/package.json
@@ -2,7 +2,7 @@
     "name": "typescript-parser-wrapper",
     "private": true,
     "dependencies": {
-        "typescript": "4.8.2"
+        "typescript": "4.9.2-rc"
     },
     "scripts": {
         "build": "tsc --project tsconfig.json",
diff --git a/javascript/extractor/lib/typescript/yarn.lock b/javascript/extractor/lib/typescript/yarn.lock
index 05fb731c9e4..8f5b68aea63 100644
--- a/javascript/extractor/lib/typescript/yarn.lock
+++ b/javascript/extractor/lib/typescript/yarn.lock
@@ -6,7 +6,7 @@
   version "12.7.11"
   resolved node-12.7.11.tgz#be879b52031cfb5d295b047f5462d8ef1a716446
 
-typescript@4.8.2:
-  version "4.8.2"
-  resolved "https://registry.yarnpkg.com/typescript/-/typescript-4.8.2.tgz#e3b33d5ccfb5914e4eeab6699cf208adee3fd790"
-  integrity sha512-C0I1UsrrDHo2fYI5oaCGbSejwX4ch+9Y5jTQELvovfmFkK3HHSZJB8MSJcWLmCUBzQBchCrZ9rMRV6GuNrvGtw==
+typescript@4.9.2-rc:
+  version "4.9.2-rc"
+  resolved "https://registry.yarnpkg.com/typescript/-/typescript-4.9.2-rc.tgz#3525dbeb8458a8c98ce7d60724e4a9380d7b46e7"
+  integrity sha512-Ly9UUxJBfiiFjfegI1gsW9FI8Xhw1cuwRMBJ4wdYg+UXZR4VnZvD1OnBDj/iQ2U+tWbWEjYqJ5xx1Cwr4Vsa4w==
diff --git a/javascript/ql/lib/change-notes/2022-11-15-typescript-4-9.md b/javascript/ql/lib/change-notes/2022-11-15-typescript-4-9.md
new file mode 100644
index 00000000000..723f0a5c65f
--- /dev/null
+++ b/javascript/ql/lib/change-notes/2022-11-15-typescript-4-9.md
@@ -0,0 +1,4 @@
+---
+category: majorAnalysis
+---
+* Added support for TypeScript 4.9.

From 75ef5b1b0b0c505dcca1f98d61b98eadd76ad91a Mon Sep 17 00:00:00 2001
From: erik-krogh <erik-krogh@github.com>
Date: Mon, 14 Nov 2022 15:03:23 +0100
Subject: [PATCH 0319/1420] add support for `satisfies`-expressions

---
 .../lib/typescript/src/ast_extractor.ts       |   1 +
 .../src/com/semmle/js/ast/DefaultVisitor.java |   6 +
 .../src/com/semmle/js/ast/NodeCopier.java     |   9 +
 .../src/com/semmle/js/ast/Visitor.java        |   3 +
 .../com/semmle/js/extractor/ASTExtractor.java |   9 +
 .../com/semmle/js/extractor/CFGExtractor.java |  13 +
 .../com/semmle/js/extractor/ExprKinds.java    |   6 +
 .../src/com/semmle/ts/ast/SatisfiesExpr.java  |  33 +++
 .../ts/extractor/TypeScriptASTConverter.java  |   8 +
 .../ql/lib/semmle/javascript/TypeScript.qll   |  21 ++
 .../ql/lib/semmlecode.javascript.dbscheme     |   1 +
 .../ql/src/Declarations/UnusedProperty.ql     |   5 +
 .../TypeScript/Types/printAst.expected        | 223 +++++++++++++++---
 .../TypeScript/Types/tests.expected           |  61 +++++
 .../library-tests/TypeScript/Types/tst.ts     |  17 ++
 15 files changed, 385 insertions(+), 31 deletions(-)
 create mode 100644 javascript/extractor/src/com/semmle/ts/ast/SatisfiesExpr.java

diff --git a/javascript/extractor/lib/typescript/src/ast_extractor.ts b/javascript/extractor/lib/typescript/src/ast_extractor.ts
index b935294feb6..e462797867b 100644
--- a/javascript/extractor/lib/typescript/src/ast_extractor.ts
+++ b/javascript/extractor/lib/typescript/src/ast_extractor.ts
@@ -317,6 +317,7 @@ function isTypedNode(node: ts.Node): boolean {
         case ts.SyntaxKind.ArrayLiteralExpression:
         case ts.SyntaxKind.ArrowFunction:
         case ts.SyntaxKind.AsExpression:
+        case ts.SyntaxKind.SatisfiesExpression:
         case ts.SyntaxKind.AwaitExpression:
         case ts.SyntaxKind.BinaryExpression:
         case ts.SyntaxKind.CallExpression:
diff --git a/javascript/extractor/src/com/semmle/js/ast/DefaultVisitor.java b/javascript/extractor/src/com/semmle/js/ast/DefaultVisitor.java
index c450fdd0468..cf57a3ead18 100644
--- a/javascript/extractor/src/com/semmle/js/ast/DefaultVisitor.java
+++ b/javascript/extractor/src/com/semmle/js/ast/DefaultVisitor.java
@@ -47,6 +47,7 @@ import com.semmle.ts.ast.TemplateLiteralTypeExpr;
 import com.semmle.ts.ast.TupleTypeExpr;
 import com.semmle.ts.ast.TypeAliasDeclaration;
 import com.semmle.ts.ast.TypeAssertion;
+import com.semmle.ts.ast.SatisfiesExpr;
 import com.semmle.ts.ast.TypeExpression;
 import com.semmle.ts.ast.TypeParameter;
 import com.semmle.ts.ast.TypeofTypeExpr;
@@ -683,6 +684,11 @@ public class DefaultVisitor<C, R> implements Visitor<C, R> {
     return visit((Expression) nd, c);
   }
 
+  @Override
+  public R visit(SatisfiesExpr nd, C c) {
+    return visit((Expression) nd, c);
+  }
+
   @Override
   public R visit(MappedTypeExpr nd, C c) {
     return visit((TypeExpression) nd, c);
diff --git a/javascript/extractor/src/com/semmle/js/ast/NodeCopier.java b/javascript/extractor/src/com/semmle/js/ast/NodeCopier.java
index 83a37e11534..aeea1b79cbc 100644
--- a/javascript/extractor/src/com/semmle/js/ast/NodeCopier.java
+++ b/javascript/extractor/src/com/semmle/js/ast/NodeCopier.java
@@ -46,6 +46,7 @@ import com.semmle.ts.ast.TemplateLiteralTypeExpr;
 import com.semmle.ts.ast.TupleTypeExpr;
 import com.semmle.ts.ast.TypeAliasDeclaration;
 import com.semmle.ts.ast.TypeAssertion;
+import com.semmle.ts.ast.SatisfiesExpr;
 import com.semmle.ts.ast.TypeParameter;
 import com.semmle.ts.ast.TypeofTypeExpr;
 import com.semmle.ts.ast.UnaryTypeExpr;
@@ -782,6 +783,14 @@ public class NodeCopier implements Visitor<Void, INode> {
         nd.isAsExpression());
   }
 
+  @Override
+  public INode visit(SatisfiesExpr nd, Void c) {
+    return new SatisfiesExpr(
+        visit(nd.getLoc()),
+        copy(nd.getExpression()),
+        copy(nd.getTypeAnnotation()));
+  }
+
   @Override
   public INode visit(MappedTypeExpr nd, Void c) {
     return new MappedTypeExpr(
diff --git a/javascript/extractor/src/com/semmle/js/ast/Visitor.java b/javascript/extractor/src/com/semmle/js/ast/Visitor.java
index 3d595b981b8..e748e9b5a36 100644
--- a/javascript/extractor/src/com/semmle/js/ast/Visitor.java
+++ b/javascript/extractor/src/com/semmle/js/ast/Visitor.java
@@ -43,6 +43,7 @@ import com.semmle.ts.ast.TemplateLiteralTypeExpr;
 import com.semmle.ts.ast.TupleTypeExpr;
 import com.semmle.ts.ast.TypeAliasDeclaration;
 import com.semmle.ts.ast.TypeAssertion;
+import com.semmle.ts.ast.SatisfiesExpr;
 import com.semmle.ts.ast.TypeParameter;
 import com.semmle.ts.ast.TypeofTypeExpr;
 import com.semmle.ts.ast.UnaryTypeExpr;
@@ -276,6 +277,8 @@ public interface Visitor<C, R> {
 
   public R visit(TypeAssertion nd, C c);
 
+  public R visit(SatisfiesExpr nd, C c);
+
   public R visit(MappedTypeExpr nd, C c);
 
   public R visit(TypeAliasDeclaration nd, C c);
diff --git a/javascript/extractor/src/com/semmle/js/extractor/ASTExtractor.java b/javascript/extractor/src/com/semmle/js/extractor/ASTExtractor.java
index 1f322935b56..0a85e1e87f0 100644
--- a/javascript/extractor/src/com/semmle/js/extractor/ASTExtractor.java
+++ b/javascript/extractor/src/com/semmle/js/extractor/ASTExtractor.java
@@ -154,6 +154,7 @@ import com.semmle.ts.ast.TemplateLiteralTypeExpr;
 import com.semmle.ts.ast.TupleTypeExpr;
 import com.semmle.ts.ast.TypeAliasDeclaration;
 import com.semmle.ts.ast.TypeAssertion;
+import com.semmle.ts.ast.SatisfiesExpr;
 import com.semmle.ts.ast.TypeExpression;
 import com.semmle.ts.ast.TypeParameter;
 import com.semmle.ts.ast.TypeofTypeExpr;
@@ -2111,6 +2112,14 @@ public class ASTExtractor {
       return key;
     }
 
+    @Override
+    public Label visit(SatisfiesExpr nd, Context c) {
+      Label key = super.visit(nd, c);
+      visit(nd.getExpression(), key, 0);
+      visit(nd.getTypeAnnotation(), key, 1, IdContext.TYPE_BIND);
+      return key;
+    }
+
     @Override
     public Label visit(MappedTypeExpr nd, Context c) {
       Label key = super.visit(nd, c);
diff --git a/javascript/extractor/src/com/semmle/js/extractor/CFGExtractor.java b/javascript/extractor/src/com/semmle/js/extractor/CFGExtractor.java
index fa8452c0b43..5dee9b9f099 100644
--- a/javascript/extractor/src/com/semmle/js/extractor/CFGExtractor.java
+++ b/javascript/extractor/src/com/semmle/js/extractor/CFGExtractor.java
@@ -105,6 +105,7 @@ import com.semmle.ts.ast.ImportWholeDeclaration;
 import com.semmle.ts.ast.NamespaceDeclaration;
 import com.semmle.ts.ast.NonNullAssertion;
 import com.semmle.ts.ast.TypeAssertion;
+import com.semmle.ts.ast.SatisfiesExpr;
 import com.semmle.util.collections.CollectionUtil;
 import com.semmle.util.data.Pair;
 import com.semmle.util.trap.TrapWriter;
@@ -474,6 +475,11 @@ public class CFGExtractor {
       return nd.getExpression().accept(this, c);
     }
 
+    @Override
+    public Node visit(SatisfiesExpr nd, Void c) {
+      return nd.getExpression().accept(this, c);
+    }
+
     @Override
     public Node visit(NonNullAssertion nd, Void c) {
       return nd.getExpression().accept(this, c);
@@ -2028,6 +2034,13 @@ public class CFGExtractor {
       return null;
     }
 
+    @Override
+    public Void visit(SatisfiesExpr nd, SuccessorInfo c) {
+      visitSequence(nd.getExpression(), nd);
+      writeSuccessors(nd, c.getAllSuccessors());
+      return null;
+    }
+
     @Override
     public Void visit(NonNullAssertion nd, SuccessorInfo c) {
       visitSequence(nd.getExpression(), nd);
diff --git a/javascript/extractor/src/com/semmle/js/extractor/ExprKinds.java b/javascript/extractor/src/com/semmle/js/extractor/ExprKinds.java
index 9bb5ae766af..17125a9173a 100644
--- a/javascript/extractor/src/com/semmle/js/extractor/ExprKinds.java
+++ b/javascript/extractor/src/com/semmle/js/extractor/ExprKinds.java
@@ -34,6 +34,7 @@ import com.semmle.js.extractor.ASTExtractor.IdContext;
 import com.semmle.ts.ast.DecoratorList;
 import com.semmle.ts.ast.ExpressionWithTypeArguments;
 import com.semmle.ts.ast.TypeAssertion;
+import com.semmle.ts.ast.SatisfiesExpr;
 import com.semmle.util.exception.CatastrophicError;
 
 /** Map from SpiderMonkey expression types to the numeric kinds used in the DB scheme. */
@@ -283,6 +284,11 @@ public class ExprKinds {
                 return nd.isAsExpression() ? 102 : 101;
               }
 
+              @Override
+              public Integer visit(SatisfiesExpr nd, Void c) {
+                return 121;
+              }
+
               @Override
               public Integer visit(DecoratorList nd, Void c) {
                 return 104;
diff --git a/javascript/extractor/src/com/semmle/ts/ast/SatisfiesExpr.java b/javascript/extractor/src/com/semmle/ts/ast/SatisfiesExpr.java
new file mode 100644
index 00000000000..9ca1d575a68
--- /dev/null
+++ b/javascript/extractor/src/com/semmle/ts/ast/SatisfiesExpr.java
@@ -0,0 +1,33 @@
+package com.semmle.ts.ast;
+
+import com.semmle.js.ast.Expression;
+import com.semmle.js.ast.SourceLocation;
+import com.semmle.js.ast.Visitor;
+
+/** An expression of form <code>E satisfies T</code>. */
+public class SatisfiesExpr extends Expression {
+  private final Expression expression;
+  private final ITypeExpression typeAnnotation;
+
+  public SatisfiesExpr(
+      SourceLocation loc,
+      Expression expression,
+      ITypeExpression typeAnnotation) {
+    super("SatisfiesExpr", loc);
+    this.expression = expression;
+    this.typeAnnotation = typeAnnotation;
+  }
+
+  public Expression getExpression() {
+    return expression;
+  }
+
+  public ITypeExpression getTypeAnnotation() {
+    return typeAnnotation;
+  }
+
+  @Override
+  public <C, R> R accept(Visitor<C, R> v, C c) {
+    return v.visit(this, c);
+  }
+}
diff --git a/javascript/extractor/src/com/semmle/ts/extractor/TypeScriptASTConverter.java b/javascript/extractor/src/com/semmle/ts/extractor/TypeScriptASTConverter.java
index 1cb1913ee75..cc748054923 100644
--- a/javascript/extractor/src/com/semmle/ts/extractor/TypeScriptASTConverter.java
+++ b/javascript/extractor/src/com/semmle/ts/extractor/TypeScriptASTConverter.java
@@ -149,6 +149,7 @@ import com.semmle.ts.ast.TemplateLiteralTypeExpr;
 import com.semmle.ts.ast.TupleTypeExpr;
 import com.semmle.ts.ast.TypeAliasDeclaration;
 import com.semmle.ts.ast.TypeAssertion;
+import com.semmle.ts.ast.SatisfiesExpr;
 import com.semmle.ts.ast.TypeParameter;
 import com.semmle.ts.ast.TypeofTypeExpr;
 import com.semmle.ts.ast.UnaryTypeExpr;
@@ -341,6 +342,8 @@ public class TypeScriptASTConverter {
         return convertArrowFunction(node, loc);
       case "AsExpression":
         return convertTypeAssertionExpression(node, loc);
+      case "SatisfiesExpression": 
+        return convertSatisfiesExpression(node, loc);
       case "AwaitExpression":
         return convertAwaitExpression(node, loc);
       case "BigIntKeyword":
@@ -2273,6 +2276,11 @@ public class TypeScriptASTConverter {
     return new TypeAssertion(loc, convertChild(node, "expression"), type, false);
   }
 
+  private Node convertSatisfiesExpression(JsonObject node, SourceLocation loc) throws ParseError {
+    ITypeExpression type = convertChildAsType(node, "type");
+    return new SatisfiesExpr(loc, convertChild(node, "expression"), type);
+  }
+
   private Node convertTypeLiteral(JsonObject obj, SourceLocation loc) throws ParseError {
     return new InterfaceTypeExpr(loc, convertChildren(obj, "members"));
   }
diff --git a/javascript/ql/lib/semmle/javascript/TypeScript.qll b/javascript/ql/lib/semmle/javascript/TypeScript.qll
index 51b68220a9e..5b8cd763dfe 100644
--- a/javascript/ql/lib/semmle/javascript/TypeScript.qll
+++ b/javascript/ql/lib/semmle/javascript/TypeScript.qll
@@ -1375,6 +1375,27 @@ class AsTypeAssertion extends TypeAssertion, @as_type_assertion { }
  */
 class PrefixTypeAssertion extends TypeAssertion, @prefix_type_assertion { }
 
+/**
+ * A satisfies type asserion of the form `E satisfies T` where `E` is an expression and `T` is a type.
+ */
+class SatisfiesExpr extends Expr, @satisfies_expr {
+  /** Gets the expression whose type to assert, that is, the `E` in `E as T` or `<T> E`. */
+  Expr getExpression() { result = this.getChildExpr(0) }
+
+  /** Gets the type to cast to, that is, the `T` in `E as T` or `<T> E`. */
+  TypeExpr getTypeAnnotation() { result = this.getChildTypeExpr(1) }
+
+  override ControlFlowNode getFirstControlFlowNode() {
+    result = this.getExpression().getFirstControlFlowNode()
+  }
+
+  override Expr getUnderlyingValue() { result = this.getExpression().getUnderlyingValue() }
+
+  override Expr getUnderlyingReference() { result = this.getExpression().getUnderlyingReference() }
+
+  override string getAPrimaryQlClass() { result = "SatisfiesExpr" }
+}
+
 /**
  * A TypeScript expression of form `E!`, asserting that `E` is not null.
  */
diff --git a/javascript/ql/lib/semmlecode.javascript.dbscheme b/javascript/ql/lib/semmlecode.javascript.dbscheme
index c0664d5721c..4d00210ca57 100644
--- a/javascript/ql/lib/semmlecode.javascript.dbscheme
+++ b/javascript/ql/lib/semmlecode.javascript.dbscheme
@@ -357,6 +357,7 @@ case @expr.kind of
 | 118 = @assignnullishcoalescingexpr
 | 119 = @template_pipe_ref
 | 120 = @generated_code_expr
+| 121 = @satisfies_expr
 ;
 
 @varaccess = @proper_varaccess | @export_varaccess;
diff --git a/javascript/ql/src/Declarations/UnusedProperty.ql b/javascript/ql/src/Declarations/UnusedProperty.ql
index 1a8f9ee291f..f5521cfe087 100644
--- a/javascript/ql/src/Declarations/UnusedProperty.ql
+++ b/javascript/ql/src/Declarations/UnusedProperty.ql
@@ -45,6 +45,11 @@ predicate flowsToTypeRestrictedExpression(LocalObject obj) {
       restricted = assertion.getExpression()
     )
     or
+    exists(SatisfiesExpr assertion |
+      type = assertion.getTypeAnnotation() and
+      restricted = assertion.getExpression()
+    )
+    or
     exists(BindingPattern v |
       type = v.getTypeAnnotation() and
       restricted = v.getAVariable().getAnAssignedExpr()
diff --git a/javascript/ql/test/library-tests/TypeScript/Types/printAst.expected b/javascript/ql/test/library-tests/TypeScript/Types/printAst.expected
index 9c271410ecf..6141ec6a73e 100644
--- a/javascript/ql/test/library-tests/TypeScript/Types/printAst.expected
+++ b/javascript/ql/test/library-tests/TypeScript/Types/printAst.expected
@@ -100,6 +100,7 @@ nodes
 | file://:0:0:0:0 | (Arguments) | semmle.label | (Arguments) |
 | file://:0:0:0:0 | (Arguments) | semmle.label | (Arguments) |
 | file://:0:0:0:0 | (Arguments) | semmle.label | (Arguments) |
+| file://:0:0:0:0 | (Arguments) | semmle.label | (Arguments) |
 | file://:0:0:0:0 | (Parameters) | semmle.label | (Parameters) |
 | file://:0:0:0:0 | (Parameters) | semmle.label | (Parameters) |
 | file://:0:0:0:0 | (Parameters) | semmle.label | (Parameters) |
@@ -1424,8 +1425,62 @@ nodes
 | tst.ts:385:56:385:56 | [Literal] 0 | semmle.label | [Literal] 0 |
 | tst.ts:385:59:385:63 | [Literal] false | semmle.label | [Literal] false |
 | tst.ts:385:66:385:71 | [Literal] "bye!" | semmle.label | [Literal] "bye!" |
+| tst.ts:390:1:403:1 | [NamespaceDeclaration] module ... t(0); } | semmle.label | [NamespaceDeclaration] module ... t(0); } |
+| tst.ts:390:1:403:1 | [NamespaceDeclaration] module ... t(0); } | semmle.order | 85 |
+| tst.ts:390:8:390:11 | [VarDecl] TS49 | semmle.label | [VarDecl] TS49 |
+| tst.ts:391:3:391:41 | [TypeAliasDeclaration,TypeDefinition] type Co ... "blue"; | semmle.label | [TypeAliasDeclaration,TypeDefinition] type Co ... "blue"; |
+| tst.ts:391:8:391:13 | [Identifier] Colors | semmle.label | [Identifier] Colors |
+| tst.ts:391:17:391:21 | [LiteralTypeExpr] "red" | semmle.label | [LiteralTypeExpr] "red" |
+| tst.ts:391:17:391:40 | [UnionTypeExpr] "red" \| ... "blue" | semmle.label | [UnionTypeExpr] "red" \| ... "blue" |
+| tst.ts:391:25:391:31 | [LiteralTypeExpr] "green" | semmle.label | [LiteralTypeExpr] "green" |
+| tst.ts:391:35:391:40 | [LiteralTypeExpr] "blue" | semmle.label | [LiteralTypeExpr] "blue" |
+| tst.ts:393:3:393:56 | [TypeAliasDeclaration,TypeDefinition] type RG ... umber]; | semmle.label | [TypeAliasDeclaration,TypeDefinition] type RG ... umber]; |
+| tst.ts:393:8:393:10 | [Identifier] RGB | semmle.label | [Identifier] RGB |
+| tst.ts:393:14:393:55 | [TupleTypeExpr] [red: n ... number] | semmle.label | [TupleTypeExpr] [red: n ... number] |
+| tst.ts:393:15:393:17 | [Identifier] red | semmle.label | [Identifier] red |
+| tst.ts:393:20:393:25 | [KeywordTypeExpr] number | semmle.label | [KeywordTypeExpr] number |
+| tst.ts:393:28:393:32 | [Identifier] green | semmle.label | [Identifier] green |
+| tst.ts:393:35:393:40 | [KeywordTypeExpr] number | semmle.label | [KeywordTypeExpr] number |
+| tst.ts:393:43:393:46 | [Identifier] blue | semmle.label | [Identifier] blue |
+| tst.ts:393:49:393:54 | [KeywordTypeExpr] number | semmle.label | [KeywordTypeExpr] number |
+| tst.ts:395:3:399:43 | [DeclStmt] const palette = ... | semmle.label | [DeclStmt] const palette = ... |
+| tst.ts:395:9:395:15 | [VarDecl] palette | semmle.label | [VarDecl] palette |
+| tst.ts:395:9:399:42 | [VariableDeclarator] palette ... \| RGB> | semmle.label | [VariableDeclarator] palette ... \| RGB> |
+| tst.ts:395:19:399:3 | [ObjectExpr] {red: ...} | semmle.label | [ObjectExpr] {red: ...} |
+| tst.ts:395:19:399:42 | [SatisfiesExpr] { r ... \| RGB> | semmle.label | [SatisfiesExpr] { r ... \| RGB> |
+| tst.ts:396:5:396:7 | [Label] red | semmle.label | [Label] red |
+| tst.ts:396:5:396:20 | [Property] red: [255, 0, 0] | semmle.label | [Property] red: [255, 0, 0] |
+| tst.ts:396:10:396:20 | [ArrayExpr] [255, 0, 0] | semmle.label | [ArrayExpr] [255, 0, 0] |
+| tst.ts:396:11:396:13 | [Literal] 255 | semmle.label | [Literal] 255 |
+| tst.ts:396:16:396:16 | [Literal] 0 | semmle.label | [Literal] 0 |
+| tst.ts:396:19:396:19 | [Literal] 0 | semmle.label | [Literal] 0 |
+| tst.ts:397:5:397:9 | [Label] green | semmle.label | [Label] green |
+| tst.ts:397:5:397:20 | [Property] green: "#00ff00" | semmle.label | [Property] green: "#00ff00" |
+| tst.ts:397:12:397:20 | [Literal] "#00ff00" | semmle.label | [Literal] "#00ff00" |
+| tst.ts:398:5:398:8 | [Label] bleu | semmle.label | [Label] bleu |
+| tst.ts:398:5:398:21 | [Property] bleu: [0, 0, 255] | semmle.label | [Property] bleu: [0, 0, 255] |
+| tst.ts:398:11:398:21 | [ArrayExpr] [0, 0, 255] | semmle.label | [ArrayExpr] [0, 0, 255] |
+| tst.ts:398:12:398:12 | [Literal] 0 | semmle.label | [Literal] 0 |
+| tst.ts:398:15:398:15 | [Literal] 0 | semmle.label | [Literal] 0 |
+| tst.ts:398:18:398:20 | [Literal] 255 | semmle.label | [Literal] 255 |
+| tst.ts:399:15:399:20 | [LocalTypeAccess] Record | semmle.label | [LocalTypeAccess] Record |
+| tst.ts:399:15:399:42 | [GenericTypeExpr] Record< ... \| RGB> | semmle.label | [GenericTypeExpr] Record< ... \| RGB> |
+| tst.ts:399:22:399:27 | [LocalTypeAccess] Colors | semmle.label | [LocalTypeAccess] Colors |
+| tst.ts:399:30:399:35 | [KeywordTypeExpr] string | semmle.label | [KeywordTypeExpr] string |
+| tst.ts:399:30:399:41 | [UnionTypeExpr] string \| RGB | semmle.label | [UnionTypeExpr] string \| RGB |
+| tst.ts:399:39:399:41 | [LocalTypeAccess] RGB | semmle.label | [LocalTypeAccess] RGB |
+| tst.ts:402:3:402:41 | [DeclStmt] const redComponent = ... | semmle.label | [DeclStmt] const redComponent = ... |
+| tst.ts:402:9:402:20 | [VarDecl] redComponent | semmle.label | [VarDecl] redComponent |
+| tst.ts:402:9:402:40 | [VariableDeclarator] redComp ... d.at(0) | semmle.label | [VariableDeclarator] redComp ... d.at(0) |
+| tst.ts:402:24:402:30 | [VarRef] palette | semmle.label | [VarRef] palette |
+| tst.ts:402:24:402:34 | [DotExpr] palette.red | semmle.label | [DotExpr] palette.red |
+| tst.ts:402:24:402:37 | [DotExpr] palette.red.at | semmle.label | [DotExpr] palette.red.at |
+| tst.ts:402:24:402:40 | [MethodCallExpr] palette.red.at(0) | semmle.label | [MethodCallExpr] palette.red.at(0) |
+| tst.ts:402:32:402:34 | [Label] red | semmle.label | [Label] red |
+| tst.ts:402:36:402:37 | [Label] at | semmle.label | [Label] at |
+| tst.ts:402:39:402:39 | [Literal] 0 | semmle.label | [Literal] 0 |
 | tstModuleCJS.cts:1:1:3:1 | [ExportDeclaration] export ... 'b'; } | semmle.label | [ExportDeclaration] export ... 'b'; } |
-| tstModuleCJS.cts:1:1:3:1 | [ExportDeclaration] export ... 'b'; } | semmle.order | 85 |
+| tstModuleCJS.cts:1:1:3:1 | [ExportDeclaration] export ... 'b'; } | semmle.order | 86 |
 | tstModuleCJS.cts:1:8:3:1 | [FunctionDeclStmt] functio ... 'b'; } | semmle.label | [FunctionDeclStmt] functio ... 'b'; } |
 | tstModuleCJS.cts:1:17:1:28 | [VarDecl] tstModuleCJS | semmle.label | [VarDecl] tstModuleCJS |
 | tstModuleCJS.cts:1:33:1:35 | [LiteralTypeExpr] 'a' | semmle.label | [LiteralTypeExpr] 'a' |
@@ -1443,7 +1498,7 @@ nodes
 | tstModuleCJS.cts:2:34:2:36 | [Literal] 'a' | semmle.label | [Literal] 'a' |
 | tstModuleCJS.cts:2:40:2:42 | [Literal] 'b' | semmle.label | [Literal] 'b' |
 | tstModuleES.mts:1:1:3:1 | [ExportDeclaration] export ... 'b'; } | semmle.label | [ExportDeclaration] export ... 'b'; } |
-| tstModuleES.mts:1:1:3:1 | [ExportDeclaration] export ... 'b'; } | semmle.order | 86 |
+| tstModuleES.mts:1:1:3:1 | [ExportDeclaration] export ... 'b'; } | semmle.order | 87 |
 | tstModuleES.mts:1:16:3:1 | [FunctionDeclStmt] functio ... 'b'; } | semmle.label | [FunctionDeclStmt] functio ... 'b'; } |
 | tstModuleES.mts:1:25:1:35 | [VarDecl] tstModuleES | semmle.label | [VarDecl] tstModuleES |
 | tstModuleES.mts:1:40:1:42 | [LiteralTypeExpr] 'a' | semmle.label | [LiteralTypeExpr] 'a' |
@@ -1461,7 +1516,7 @@ nodes
 | tstModuleES.mts:2:34:2:36 | [Literal] 'a' | semmle.label | [Literal] 'a' |
 | tstModuleES.mts:2:40:2:42 | [Literal] 'b' | semmle.label | [Literal] 'b' |
 | tstSuffixA.ts:1:1:3:1 | [ExportDeclaration] export ... .ts'; } | semmle.label | [ExportDeclaration] export ... .ts'; } |
-| tstSuffixA.ts:1:1:3:1 | [ExportDeclaration] export ... .ts'; } | semmle.order | 87 |
+| tstSuffixA.ts:1:1:3:1 | [ExportDeclaration] export ... .ts'; } | semmle.order | 88 |
 | tstSuffixA.ts:1:8:3:1 | [FunctionDeclStmt] functio ... .ts'; } | semmle.label | [FunctionDeclStmt] functio ... .ts'; } |
 | tstSuffixA.ts:1:17:1:28 | [VarDecl] resolvedFile | semmle.label | [VarDecl] resolvedFile |
 | tstSuffixA.ts:1:33:1:47 | [LiteralTypeExpr] 'tstSuffixA.ts' | semmle.label | [LiteralTypeExpr] 'tstSuffixA.ts' |
@@ -1469,7 +1524,7 @@ nodes
 | tstSuffixA.ts:2:5:2:27 | [ReturnStmt] return ... xA.ts'; | semmle.label | [ReturnStmt] return ... xA.ts'; |
 | tstSuffixA.ts:2:12:2:26 | [Literal] 'tstSuffixA.ts' | semmle.label | [Literal] 'tstSuffixA.ts' |
 | tstSuffixB.ios.ts:1:1:3:1 | [ExportDeclaration] export ... .ts'; } | semmle.label | [ExportDeclaration] export ... .ts'; } |
-| tstSuffixB.ios.ts:1:1:3:1 | [ExportDeclaration] export ... .ts'; } | semmle.order | 88 |
+| tstSuffixB.ios.ts:1:1:3:1 | [ExportDeclaration] export ... .ts'; } | semmle.order | 89 |
 | tstSuffixB.ios.ts:1:8:3:1 | [FunctionDeclStmt] functio ... .ts'; } | semmle.label | [FunctionDeclStmt] functio ... .ts'; } |
 | tstSuffixB.ios.ts:1:17:1:28 | [VarDecl] resolvedFile | semmle.label | [VarDecl] resolvedFile |
 | tstSuffixB.ios.ts:1:33:1:51 | [LiteralTypeExpr] 'tstSuffixB.ios.ts' | semmle.label | [LiteralTypeExpr] 'tstSuffixB.ios.ts' |
@@ -1477,7 +1532,7 @@ nodes
 | tstSuffixB.ios.ts:2:5:2:31 | [ReturnStmt] return ... os.ts'; | semmle.label | [ReturnStmt] return ... os.ts'; |
 | tstSuffixB.ios.ts:2:12:2:30 | [Literal] 'tstSuffixB.ios.ts' | semmle.label | [Literal] 'tstSuffixB.ios.ts' |
 | tstSuffixB.ts:1:1:3:1 | [ExportDeclaration] export ... .ts'; } | semmle.label | [ExportDeclaration] export ... .ts'; } |
-| tstSuffixB.ts:1:1:3:1 | [ExportDeclaration] export ... .ts'; } | semmle.order | 89 |
+| tstSuffixB.ts:1:1:3:1 | [ExportDeclaration] export ... .ts'; } | semmle.order | 90 |
 | tstSuffixB.ts:1:8:3:1 | [FunctionDeclStmt] functio ... .ts'; } | semmle.label | [FunctionDeclStmt] functio ... .ts'; } |
 | tstSuffixB.ts:1:17:1:28 | [VarDecl] resolvedFile | semmle.label | [VarDecl] resolvedFile |
 | tstSuffixB.ts:1:33:1:47 | [LiteralTypeExpr] 'tstSuffixB.ts' | semmle.label | [LiteralTypeExpr] 'tstSuffixB.ts' |
@@ -1485,16 +1540,16 @@ nodes
 | tstSuffixB.ts:2:5:2:27 | [ReturnStmt] return ... xB.ts'; | semmle.label | [ReturnStmt] return ... xB.ts'; |
 | tstSuffixB.ts:2:12:2:26 | [Literal] 'tstSuffixB.ts' | semmle.label | [Literal] 'tstSuffixB.ts' |
 | type_alias.ts:1:1:1:17 | [TypeAliasDeclaration,TypeDefinition] type B = boolean; | semmle.label | [TypeAliasDeclaration,TypeDefinition] type B = boolean; |
-| type_alias.ts:1:1:1:17 | [TypeAliasDeclaration,TypeDefinition] type B = boolean; | semmle.order | 90 |
+| type_alias.ts:1:1:1:17 | [TypeAliasDeclaration,TypeDefinition] type B = boolean; | semmle.order | 91 |
 | type_alias.ts:1:6:1:6 | [Identifier] B | semmle.label | [Identifier] B |
 | type_alias.ts:1:10:1:16 | [KeywordTypeExpr] boolean | semmle.label | [KeywordTypeExpr] boolean |
 | type_alias.ts:3:1:3:9 | [DeclStmt] var b = ... | semmle.label | [DeclStmt] var b = ... |
-| type_alias.ts:3:1:3:9 | [DeclStmt] var b = ... | semmle.order | 91 |
+| type_alias.ts:3:1:3:9 | [DeclStmt] var b = ... | semmle.order | 92 |
 | type_alias.ts:3:5:3:5 | [VarDecl] b | semmle.label | [VarDecl] b |
 | type_alias.ts:3:5:3:8 | [VariableDeclarator] b: B | semmle.label | [VariableDeclarator] b: B |
 | type_alias.ts:3:8:3:8 | [LocalTypeAccess] B | semmle.label | [LocalTypeAccess] B |
 | type_alias.ts:5:1:5:50 | [TypeAliasDeclaration,TypeDefinition] type Va ... ay<T>>; | semmle.label | [TypeAliasDeclaration,TypeDefinition] type Va ... ay<T>>; |
-| type_alias.ts:5:1:5:50 | [TypeAliasDeclaration,TypeDefinition] type Va ... ay<T>>; | semmle.order | 92 |
+| type_alias.ts:5:1:5:50 | [TypeAliasDeclaration,TypeDefinition] type Va ... ay<T>>; | semmle.order | 93 |
 | type_alias.ts:5:6:5:17 | [Identifier] ValueOrArray | semmle.label | [Identifier] ValueOrArray |
 | type_alias.ts:5:19:5:19 | [Identifier] T | semmle.label | [Identifier] T |
 | type_alias.ts:5:19:5:19 | [TypeParameter] T | semmle.label | [TypeParameter] T |
@@ -1506,14 +1561,14 @@ nodes
 | type_alias.ts:5:34:5:48 | [GenericTypeExpr] ValueOrArray<T> | semmle.label | [GenericTypeExpr] ValueOrArray<T> |
 | type_alias.ts:5:47:5:47 | [LocalTypeAccess] T | semmle.label | [LocalTypeAccess] T |
 | type_alias.ts:7:1:7:28 | [DeclStmt] var c = ... | semmle.label | [DeclStmt] var c = ... |
-| type_alias.ts:7:1:7:28 | [DeclStmt] var c = ... | semmle.order | 93 |
+| type_alias.ts:7:1:7:28 | [DeclStmt] var c = ... | semmle.order | 94 |
 | type_alias.ts:7:5:7:5 | [VarDecl] c | semmle.label | [VarDecl] c |
 | type_alias.ts:7:5:7:27 | [VariableDeclarator] c: Valu ... number> | semmle.label | [VariableDeclarator] c: Valu ... number> |
 | type_alias.ts:7:8:7:19 | [LocalTypeAccess] ValueOrArray | semmle.label | [LocalTypeAccess] ValueOrArray |
 | type_alias.ts:7:8:7:27 | [GenericTypeExpr] ValueOrArray<number> | semmle.label | [GenericTypeExpr] ValueOrArray<number> |
 | type_alias.ts:7:21:7:26 | [KeywordTypeExpr] number | semmle.label | [KeywordTypeExpr] number |
 | type_alias.ts:9:1:15:13 | [TypeAliasDeclaration,TypeDefinition] type Js ... Json[]; | semmle.label | [TypeAliasDeclaration,TypeDefinition] type Js ... Json[]; |
-| type_alias.ts:9:1:15:13 | [TypeAliasDeclaration,TypeDefinition] type Js ... Json[]; | semmle.order | 94 |
+| type_alias.ts:9:1:15:13 | [TypeAliasDeclaration,TypeDefinition] type Js ... Json[]; | semmle.order | 95 |
 | type_alias.ts:9:6:9:9 | [Identifier] Json | semmle.label | [Identifier] Json |
 | type_alias.ts:10:5:15:12 | [UnionTypeExpr] \| strin ... Json[] | semmle.label | [UnionTypeExpr] \| strin ... Json[] |
 | type_alias.ts:10:7:10:12 | [KeywordTypeExpr] string | semmle.label | [KeywordTypeExpr] string |
@@ -1529,12 +1584,12 @@ nodes
 | type_alias.ts:15:7:15:10 | [LocalTypeAccess] Json | semmle.label | [LocalTypeAccess] Json |
 | type_alias.ts:15:7:15:12 | [ArrayTypeExpr] Json[] | semmle.label | [ArrayTypeExpr] Json[] |
 | type_alias.ts:17:1:17:15 | [DeclStmt] var json = ... | semmle.label | [DeclStmt] var json = ... |
-| type_alias.ts:17:1:17:15 | [DeclStmt] var json = ... | semmle.order | 95 |
+| type_alias.ts:17:1:17:15 | [DeclStmt] var json = ... | semmle.order | 96 |
 | type_alias.ts:17:5:17:8 | [VarDecl] json | semmle.label | [VarDecl] json |
 | type_alias.ts:17:5:17:14 | [VariableDeclarator] json: Json | semmle.label | [VariableDeclarator] json: Json |
 | type_alias.ts:17:11:17:14 | [LocalTypeAccess] Json | semmle.label | [LocalTypeAccess] Json |
 | type_alias.ts:19:1:21:57 | [TypeAliasDeclaration,TypeDefinition] type Vi ... ode[]]; | semmle.label | [TypeAliasDeclaration,TypeDefinition] type Vi ... ode[]]; |
-| type_alias.ts:19:1:21:57 | [TypeAliasDeclaration,TypeDefinition] type Vi ... ode[]]; | semmle.order | 96 |
+| type_alias.ts:19:1:21:57 | [TypeAliasDeclaration,TypeDefinition] type Vi ... ode[]]; | semmle.order | 97 |
 | type_alias.ts:19:6:19:16 | [Identifier] VirtualNode | semmle.label | [Identifier] VirtualNode |
 | type_alias.ts:20:5:21:56 | [UnionTypeExpr] \| strin ... Node[]] | semmle.label | [UnionTypeExpr] \| strin ... Node[]] |
 | type_alias.ts:20:7:20:12 | [KeywordTypeExpr] string | semmle.label | [KeywordTypeExpr] string |
@@ -1550,7 +1605,7 @@ nodes
 | type_alias.ts:21:43:21:53 | [LocalTypeAccess] VirtualNode | semmle.label | [LocalTypeAccess] VirtualNode |
 | type_alias.ts:21:43:21:55 | [ArrayTypeExpr] VirtualNode[] | semmle.label | [ArrayTypeExpr] VirtualNode[] |
 | type_alias.ts:23:1:27:6 | [DeclStmt] const myNode = ... | semmle.label | [DeclStmt] const myNode = ... |
-| type_alias.ts:23:1:27:6 | [DeclStmt] const myNode = ... | semmle.order | 97 |
+| type_alias.ts:23:1:27:6 | [DeclStmt] const myNode = ... | semmle.order | 98 |
 | type_alias.ts:23:7:23:12 | [VarDecl] myNode | semmle.label | [VarDecl] myNode |
 | type_alias.ts:23:7:27:5 | [VariableDeclarator] myNode: ... ] ] | semmle.label | [VariableDeclarator] myNode: ... ] ] |
 | type_alias.ts:23:15:23:25 | [LocalTypeAccess] VirtualNode | semmle.label | [LocalTypeAccess] VirtualNode |
@@ -1575,12 +1630,12 @@ nodes
 | type_alias.ts:26:23:26:36 | [Literal] "second-child" | semmle.label | [Literal] "second-child" |
 | type_alias.ts:26:41:26:62 | [Literal] "I'm the second child" | semmle.label | [Literal] "I'm the second child" |
 | type_definition_objects.ts:1:1:1:33 | [ImportDeclaration] import ... dummy"; | semmle.label | [ImportDeclaration] import ... dummy"; |
-| type_definition_objects.ts:1:1:1:33 | [ImportDeclaration] import ... dummy"; | semmle.order | 98 |
+| type_definition_objects.ts:1:1:1:33 | [ImportDeclaration] import ... dummy"; | semmle.order | 99 |
 | type_definition_objects.ts:1:8:1:17 | [ImportSpecifier] * as dummy | semmle.label | [ImportSpecifier] * as dummy |
 | type_definition_objects.ts:1:13:1:17 | [VarDecl] dummy | semmle.label | [VarDecl] dummy |
 | type_definition_objects.ts:1:24:1:32 | [Literal] "./dummy" | semmle.label | [Literal] "./dummy" |
 | type_definition_objects.ts:3:1:3:17 | [ExportDeclaration] export class C {} | semmle.label | [ExportDeclaration] export class C {} |
-| type_definition_objects.ts:3:1:3:17 | [ExportDeclaration] export class C {} | semmle.order | 99 |
+| type_definition_objects.ts:3:1:3:17 | [ExportDeclaration] export class C {} | semmle.order | 100 |
 | type_definition_objects.ts:3:8:3:17 | [ClassDefinition,TypeDefinition] class C {} | semmle.label | [ClassDefinition,TypeDefinition] class C {} |
 | type_definition_objects.ts:3:14:3:14 | [VarDecl] C | semmle.label | [VarDecl] C |
 | type_definition_objects.ts:3:16:3:15 | [BlockStmt] {} | semmle.label | [BlockStmt] {} |
@@ -1588,36 +1643,36 @@ nodes
 | type_definition_objects.ts:3:16:3:15 | [FunctionExpr] () {} | semmle.label | [FunctionExpr] () {} |
 | type_definition_objects.ts:3:16:3:15 | [Label] constructor | semmle.label | [Label] constructor |
 | type_definition_objects.ts:4:1:4:17 | [DeclStmt] let classObj = ... | semmle.label | [DeclStmt] let classObj = ... |
-| type_definition_objects.ts:4:1:4:17 | [DeclStmt] let classObj = ... | semmle.order | 100 |
+| type_definition_objects.ts:4:1:4:17 | [DeclStmt] let classObj = ... | semmle.order | 101 |
 | type_definition_objects.ts:4:5:4:12 | [VarDecl] classObj | semmle.label | [VarDecl] classObj |
 | type_definition_objects.ts:4:5:4:16 | [VariableDeclarator] classObj = C | semmle.label | [VariableDeclarator] classObj = C |
 | type_definition_objects.ts:4:16:4:16 | [VarRef] C | semmle.label | [VarRef] C |
 | type_definition_objects.ts:6:1:6:16 | [ExportDeclaration] export enum E {} | semmle.label | [ExportDeclaration] export enum E {} |
-| type_definition_objects.ts:6:1:6:16 | [ExportDeclaration] export enum E {} | semmle.order | 101 |
+| type_definition_objects.ts:6:1:6:16 | [ExportDeclaration] export enum E {} | semmle.order | 102 |
 | type_definition_objects.ts:6:8:6:16 | [EnumDeclaration,TypeDefinition] enum E {} | semmle.label | [EnumDeclaration,TypeDefinition] enum E {} |
 | type_definition_objects.ts:6:13:6:13 | [VarDecl] E | semmle.label | [VarDecl] E |
 | type_definition_objects.ts:7:1:7:16 | [DeclStmt] let enumObj = ... | semmle.label | [DeclStmt] let enumObj = ... |
-| type_definition_objects.ts:7:1:7:16 | [DeclStmt] let enumObj = ... | semmle.order | 102 |
+| type_definition_objects.ts:7:1:7:16 | [DeclStmt] let enumObj = ... | semmle.order | 103 |
 | type_definition_objects.ts:7:5:7:11 | [VarDecl] enumObj | semmle.label | [VarDecl] enumObj |
 | type_definition_objects.ts:7:5:7:15 | [VariableDeclarator] enumObj = E | semmle.label | [VariableDeclarator] enumObj = E |
 | type_definition_objects.ts:7:15:7:15 | [VarRef] E | semmle.label | [VarRef] E |
 | type_definition_objects.ts:9:1:9:22 | [ExportDeclaration] export ... e N {;} | semmle.label | [ExportDeclaration] export ... e N {;} |
-| type_definition_objects.ts:9:1:9:22 | [ExportDeclaration] export ... e N {;} | semmle.order | 103 |
+| type_definition_objects.ts:9:1:9:22 | [ExportDeclaration] export ... e N {;} | semmle.order | 104 |
 | type_definition_objects.ts:9:8:9:22 | [NamespaceDeclaration] namespace N {;} | semmle.label | [NamespaceDeclaration] namespace N {;} |
 | type_definition_objects.ts:9:18:9:18 | [VarDecl] N | semmle.label | [VarDecl] N |
 | type_definition_objects.ts:9:21:9:21 | [EmptyStmt] ; | semmle.label | [EmptyStmt] ; |
 | type_definition_objects.ts:10:1:10:21 | [DeclStmt] let namespaceObj = ... | semmle.label | [DeclStmt] let namespaceObj = ... |
-| type_definition_objects.ts:10:1:10:21 | [DeclStmt] let namespaceObj = ... | semmle.order | 104 |
+| type_definition_objects.ts:10:1:10:21 | [DeclStmt] let namespaceObj = ... | semmle.order | 105 |
 | type_definition_objects.ts:10:5:10:16 | [VarDecl] namespaceObj | semmle.label | [VarDecl] namespaceObj |
 | type_definition_objects.ts:10:5:10:20 | [VariableDeclarator] namespaceObj = N | semmle.label | [VariableDeclarator] namespaceObj = N |
 | type_definition_objects.ts:10:20:10:20 | [VarRef] N | semmle.label | [VarRef] N |
 | type_definitions.ts:1:1:1:33 | [ImportDeclaration] import ... dummy"; | semmle.label | [ImportDeclaration] import ... dummy"; |
-| type_definitions.ts:1:1:1:33 | [ImportDeclaration] import ... dummy"; | semmle.order | 105 |
+| type_definitions.ts:1:1:1:33 | [ImportDeclaration] import ... dummy"; | semmle.order | 106 |
 | type_definitions.ts:1:8:1:17 | [ImportSpecifier] * as dummy | semmle.label | [ImportSpecifier] * as dummy |
 | type_definitions.ts:1:13:1:17 | [VarDecl] dummy | semmle.label | [VarDecl] dummy |
 | type_definitions.ts:1:24:1:32 | [Literal] "./dummy" | semmle.label | [Literal] "./dummy" |
 | type_definitions.ts:3:1:5:1 | [InterfaceDeclaration,TypeDefinition] interfa ... x: S; } | semmle.label | [InterfaceDeclaration,TypeDefinition] interfa ... x: S; } |
-| type_definitions.ts:3:1:5:1 | [InterfaceDeclaration,TypeDefinition] interfa ... x: S; } | semmle.order | 106 |
+| type_definitions.ts:3:1:5:1 | [InterfaceDeclaration,TypeDefinition] interfa ... x: S; } | semmle.order | 107 |
 | type_definitions.ts:3:11:3:11 | [Identifier] I | semmle.label | [Identifier] I |
 | type_definitions.ts:3:13:3:13 | [Identifier] S | semmle.label | [Identifier] S |
 | type_definitions.ts:3:13:3:13 | [TypeParameter] S | semmle.label | [TypeParameter] S |
@@ -1625,14 +1680,14 @@ nodes
 | type_definitions.ts:4:3:4:7 | [FieldDeclaration] x: S; | semmle.label | [FieldDeclaration] x: S; |
 | type_definitions.ts:4:6:4:6 | [LocalTypeAccess] S | semmle.label | [LocalTypeAccess] S |
 | type_definitions.ts:6:1:6:16 | [DeclStmt] let i = ... | semmle.label | [DeclStmt] let i = ... |
-| type_definitions.ts:6:1:6:16 | [DeclStmt] let i = ... | semmle.order | 107 |
+| type_definitions.ts:6:1:6:16 | [DeclStmt] let i = ... | semmle.order | 108 |
 | type_definitions.ts:6:5:6:5 | [VarDecl] i | semmle.label | [VarDecl] i |
 | type_definitions.ts:6:5:6:16 | [VariableDeclarator] i: I<number> | semmle.label | [VariableDeclarator] i: I<number> |
 | type_definitions.ts:6:8:6:8 | [LocalTypeAccess] I | semmle.label | [LocalTypeAccess] I |
 | type_definitions.ts:6:8:6:16 | [GenericTypeExpr] I<number> | semmle.label | [GenericTypeExpr] I<number> |
 | type_definitions.ts:6:10:6:15 | [KeywordTypeExpr] number | semmle.label | [KeywordTypeExpr] number |
 | type_definitions.ts:8:1:10:1 | [ClassDefinition,TypeDefinition] class C ... x: T } | semmle.label | [ClassDefinition,TypeDefinition] class C ... x: T } |
-| type_definitions.ts:8:1:10:1 | [ClassDefinition,TypeDefinition] class C ... x: T } | semmle.order | 108 |
+| type_definitions.ts:8:1:10:1 | [ClassDefinition,TypeDefinition] class C ... x: T } | semmle.order | 109 |
 | type_definitions.ts:8:7:8:7 | [VarDecl] C | semmle.label | [VarDecl] C |
 | type_definitions.ts:8:8:8:7 | [BlockStmt] {} | semmle.label | [BlockStmt] {} |
 | type_definitions.ts:8:8:8:7 | [ClassInitializedMember,ConstructorDefinition] constructor() {} | semmle.label | [ClassInitializedMember,ConstructorDefinition] constructor() {} |
@@ -1644,14 +1699,14 @@ nodes
 | type_definitions.ts:9:3:9:6 | [FieldDeclaration] x: T | semmle.label | [FieldDeclaration] x: T |
 | type_definitions.ts:9:6:9:6 | [LocalTypeAccess] T | semmle.label | [LocalTypeAccess] T |
 | type_definitions.ts:11:1:11:17 | [DeclStmt] let c = ... | semmle.label | [DeclStmt] let c = ... |
-| type_definitions.ts:11:1:11:17 | [DeclStmt] let c = ... | semmle.order | 109 |
+| type_definitions.ts:11:1:11:17 | [DeclStmt] let c = ... | semmle.order | 110 |
 | type_definitions.ts:11:5:11:5 | [VarDecl] c | semmle.label | [VarDecl] c |
 | type_definitions.ts:11:5:11:16 | [VariableDeclarator] c: C<number> | semmle.label | [VariableDeclarator] c: C<number> |
 | type_definitions.ts:11:8:11:8 | [LocalTypeAccess] C | semmle.label | [LocalTypeAccess] C |
 | type_definitions.ts:11:8:11:16 | [GenericTypeExpr] C<number> | semmle.label | [GenericTypeExpr] C<number> |
 | type_definitions.ts:11:10:11:15 | [KeywordTypeExpr] number | semmle.label | [KeywordTypeExpr] number |
 | type_definitions.ts:13:1:15:1 | [EnumDeclaration,TypeDefinition] enum Co ... blue } | semmle.label | [EnumDeclaration,TypeDefinition] enum Co ... blue } |
-| type_definitions.ts:13:1:15:1 | [EnumDeclaration,TypeDefinition] enum Co ... blue } | semmle.order | 110 |
+| type_definitions.ts:13:1:15:1 | [EnumDeclaration,TypeDefinition] enum Co ... blue } | semmle.order | 111 |
 | type_definitions.ts:13:6:13:10 | [VarDecl] Color | semmle.label | [VarDecl] Color |
 | type_definitions.ts:14:3:14:5 | [EnumMember,TypeDefinition] red | semmle.label | [EnumMember,TypeDefinition] red |
 | type_definitions.ts:14:3:14:5 | [VarDecl] red | semmle.label | [VarDecl] red |
@@ -1660,29 +1715,29 @@ nodes
 | type_definitions.ts:14:15:14:18 | [EnumMember,TypeDefinition] blue | semmle.label | [EnumMember,TypeDefinition] blue |
 | type_definitions.ts:14:15:14:18 | [VarDecl] blue | semmle.label | [VarDecl] blue |
 | type_definitions.ts:16:1:16:17 | [DeclStmt] let color = ... | semmle.label | [DeclStmt] let color = ... |
-| type_definitions.ts:16:1:16:17 | [DeclStmt] let color = ... | semmle.order | 111 |
+| type_definitions.ts:16:1:16:17 | [DeclStmt] let color = ... | semmle.order | 112 |
 | type_definitions.ts:16:5:16:9 | [VarDecl] color | semmle.label | [VarDecl] color |
 | type_definitions.ts:16:5:16:16 | [VariableDeclarator] color: Color | semmle.label | [VariableDeclarator] color: Color |
 | type_definitions.ts:16:12:16:16 | [LocalTypeAccess] Color | semmle.label | [LocalTypeAccess] Color |
 | type_definitions.ts:18:1:18:33 | [EnumDeclaration,TypeDefinition] enum En ... ember } | semmle.label | [EnumDeclaration,TypeDefinition] enum En ... ember } |
-| type_definitions.ts:18:1:18:33 | [EnumDeclaration,TypeDefinition] enum En ... ember } | semmle.order | 112 |
+| type_definitions.ts:18:1:18:33 | [EnumDeclaration,TypeDefinition] enum En ... ember } | semmle.order | 113 |
 | type_definitions.ts:18:6:18:22 | [VarDecl] EnumWithOneMember | semmle.label | [VarDecl] EnumWithOneMember |
 | type_definitions.ts:18:26:18:31 | [EnumMember,TypeDefinition] member | semmle.label | [EnumMember,TypeDefinition] member |
 | type_definitions.ts:18:26:18:31 | [VarDecl] member | semmle.label | [VarDecl] member |
 | type_definitions.ts:19:1:19:25 | [DeclStmt] let e = ... | semmle.label | [DeclStmt] let e = ... |
-| type_definitions.ts:19:1:19:25 | [DeclStmt] let e = ... | semmle.order | 113 |
+| type_definitions.ts:19:1:19:25 | [DeclStmt] let e = ... | semmle.order | 114 |
 | type_definitions.ts:19:5:19:5 | [VarDecl] e | semmle.label | [VarDecl] e |
 | type_definitions.ts:19:5:19:24 | [VariableDeclarator] e: EnumWithOneMember | semmle.label | [VariableDeclarator] e: EnumWithOneMember |
 | type_definitions.ts:19:8:19:24 | [LocalTypeAccess] EnumWithOneMember | semmle.label | [LocalTypeAccess] EnumWithOneMember |
 | type_definitions.ts:21:1:21:20 | [TypeAliasDeclaration,TypeDefinition] type Alias<T> = T[]; | semmle.label | [TypeAliasDeclaration,TypeDefinition] type Alias<T> = T[]; |
-| type_definitions.ts:21:1:21:20 | [TypeAliasDeclaration,TypeDefinition] type Alias<T> = T[]; | semmle.order | 114 |
+| type_definitions.ts:21:1:21:20 | [TypeAliasDeclaration,TypeDefinition] type Alias<T> = T[]; | semmle.order | 115 |
 | type_definitions.ts:21:6:21:10 | [Identifier] Alias | semmle.label | [Identifier] Alias |
 | type_definitions.ts:21:12:21:12 | [Identifier] T | semmle.label | [Identifier] T |
 | type_definitions.ts:21:12:21:12 | [TypeParameter] T | semmle.label | [TypeParameter] T |
 | type_definitions.ts:21:17:21:17 | [LocalTypeAccess] T | semmle.label | [LocalTypeAccess] T |
 | type_definitions.ts:21:17:21:19 | [ArrayTypeExpr] T[] | semmle.label | [ArrayTypeExpr] T[] |
 | type_definitions.ts:22:1:22:39 | [DeclStmt] let aliasForNumberArray = ... | semmle.label | [DeclStmt] let aliasForNumberArray = ... |
-| type_definitions.ts:22:1:22:39 | [DeclStmt] let aliasForNumberArray = ... | semmle.order | 115 |
+| type_definitions.ts:22:1:22:39 | [DeclStmt] let aliasForNumberArray = ... | semmle.order | 116 |
 | type_definitions.ts:22:5:22:23 | [VarDecl] aliasForNumberArray | semmle.label | [VarDecl] aliasForNumberArray |
 | type_definitions.ts:22:5:22:38 | [VariableDeclarator] aliasFo ... number> | semmle.label | [VariableDeclarator] aliasFo ... number> |
 | type_definitions.ts:22:26:22:30 | [LocalTypeAccess] Alias | semmle.label | [LocalTypeAccess] Alias |
@@ -1841,6 +1896,8 @@ edges
 | file://:0:0:0:0 | (Arguments) | tst.ts:385:36:385:52 | [ArrayExpr] [42, true, "hi!"] | semmle.order | 0 |
 | file://:0:0:0:0 | (Arguments) | tst.ts:385:55:385:72 | [ArrayExpr] [0, false, "bye!"] | semmle.label | 1 |
 | file://:0:0:0:0 | (Arguments) | tst.ts:385:55:385:72 | [ArrayExpr] [0, false, "bye!"] | semmle.order | 1 |
+| file://:0:0:0:0 | (Arguments) | tst.ts:402:39:402:39 | [Literal] 0 | semmle.label | 0 |
+| file://:0:0:0:0 | (Arguments) | tst.ts:402:39:402:39 | [Literal] 0 | semmle.order | 0 |
 | file://:0:0:0:0 | (Parameters) | tst.ts:14:17:14:17 | [SimpleParameter] x | semmle.label | 0 |
 | file://:0:0:0:0 | (Parameters) | tst.ts:14:17:14:17 | [SimpleParameter] x | semmle.order | 0 |
 | file://:0:0:0:0 | (Parameters) | tst.ts:14:28:14:28 | [SimpleParameter] y | semmle.label | 1 |
@@ -4203,6 +4260,110 @@ edges
 | tst.ts:385:55:385:72 | [ArrayExpr] [0, false, "bye!"] | tst.ts:385:59:385:63 | [Literal] false | semmle.order | 2 |
 | tst.ts:385:55:385:72 | [ArrayExpr] [0, false, "bye!"] | tst.ts:385:66:385:71 | [Literal] "bye!" | semmle.label | 3 |
 | tst.ts:385:55:385:72 | [ArrayExpr] [0, false, "bye!"] | tst.ts:385:66:385:71 | [Literal] "bye!" | semmle.order | 3 |
+| tst.ts:390:1:403:1 | [NamespaceDeclaration] module ... t(0); } | tst.ts:390:8:390:11 | [VarDecl] TS49 | semmle.label | 1 |
+| tst.ts:390:1:403:1 | [NamespaceDeclaration] module ... t(0); } | tst.ts:390:8:390:11 | [VarDecl] TS49 | semmle.order | 1 |
+| tst.ts:390:1:403:1 | [NamespaceDeclaration] module ... t(0); } | tst.ts:391:3:391:41 | [TypeAliasDeclaration,TypeDefinition] type Co ... "blue"; | semmle.label | 2 |
+| tst.ts:390:1:403:1 | [NamespaceDeclaration] module ... t(0); } | tst.ts:391:3:391:41 | [TypeAliasDeclaration,TypeDefinition] type Co ... "blue"; | semmle.order | 2 |
+| tst.ts:390:1:403:1 | [NamespaceDeclaration] module ... t(0); } | tst.ts:393:3:393:56 | [TypeAliasDeclaration,TypeDefinition] type RG ... umber]; | semmle.label | 3 |
+| tst.ts:390:1:403:1 | [NamespaceDeclaration] module ... t(0); } | tst.ts:393:3:393:56 | [TypeAliasDeclaration,TypeDefinition] type RG ... umber]; | semmle.order | 3 |
+| tst.ts:390:1:403:1 | [NamespaceDeclaration] module ... t(0); } | tst.ts:395:3:399:43 | [DeclStmt] const palette = ... | semmle.label | 4 |
+| tst.ts:390:1:403:1 | [NamespaceDeclaration] module ... t(0); } | tst.ts:395:3:399:43 | [DeclStmt] const palette = ... | semmle.order | 4 |
+| tst.ts:390:1:403:1 | [NamespaceDeclaration] module ... t(0); } | tst.ts:402:3:402:41 | [DeclStmt] const redComponent = ... | semmle.label | 5 |
+| tst.ts:390:1:403:1 | [NamespaceDeclaration] module ... t(0); } | tst.ts:402:3:402:41 | [DeclStmt] const redComponent = ... | semmle.order | 5 |
+| tst.ts:391:3:391:41 | [TypeAliasDeclaration,TypeDefinition] type Co ... "blue"; | tst.ts:391:8:391:13 | [Identifier] Colors | semmle.label | 1 |
+| tst.ts:391:3:391:41 | [TypeAliasDeclaration,TypeDefinition] type Co ... "blue"; | tst.ts:391:8:391:13 | [Identifier] Colors | semmle.order | 1 |
+| tst.ts:391:3:391:41 | [TypeAliasDeclaration,TypeDefinition] type Co ... "blue"; | tst.ts:391:17:391:40 | [UnionTypeExpr] "red" \| ... "blue" | semmle.label | 2 |
+| tst.ts:391:3:391:41 | [TypeAliasDeclaration,TypeDefinition] type Co ... "blue"; | tst.ts:391:17:391:40 | [UnionTypeExpr] "red" \| ... "blue" | semmle.order | 2 |
+| tst.ts:391:17:391:40 | [UnionTypeExpr] "red" \| ... "blue" | tst.ts:391:17:391:21 | [LiteralTypeExpr] "red" | semmle.label | 1 |
+| tst.ts:391:17:391:40 | [UnionTypeExpr] "red" \| ... "blue" | tst.ts:391:17:391:21 | [LiteralTypeExpr] "red" | semmle.order | 1 |
+| tst.ts:391:17:391:40 | [UnionTypeExpr] "red" \| ... "blue" | tst.ts:391:25:391:31 | [LiteralTypeExpr] "green" | semmle.label | 2 |
+| tst.ts:391:17:391:40 | [UnionTypeExpr] "red" \| ... "blue" | tst.ts:391:25:391:31 | [LiteralTypeExpr] "green" | semmle.order | 2 |
+| tst.ts:391:17:391:40 | [UnionTypeExpr] "red" \| ... "blue" | tst.ts:391:35:391:40 | [LiteralTypeExpr] "blue" | semmle.label | 3 |
+| tst.ts:391:17:391:40 | [UnionTypeExpr] "red" \| ... "blue" | tst.ts:391:35:391:40 | [LiteralTypeExpr] "blue" | semmle.order | 3 |
+| tst.ts:393:3:393:56 | [TypeAliasDeclaration,TypeDefinition] type RG ... umber]; | tst.ts:393:8:393:10 | [Identifier] RGB | semmle.label | 1 |
+| tst.ts:393:3:393:56 | [TypeAliasDeclaration,TypeDefinition] type RG ... umber]; | tst.ts:393:8:393:10 | [Identifier] RGB | semmle.order | 1 |
+| tst.ts:393:3:393:56 | [TypeAliasDeclaration,TypeDefinition] type RG ... umber]; | tst.ts:393:14:393:55 | [TupleTypeExpr] [red: n ... number] | semmle.label | 2 |
+| tst.ts:393:3:393:56 | [TypeAliasDeclaration,TypeDefinition] type RG ... umber]; | tst.ts:393:14:393:55 | [TupleTypeExpr] [red: n ... number] | semmle.order | 2 |
+| tst.ts:393:14:393:55 | [TupleTypeExpr] [red: n ... number] | tst.ts:393:15:393:17 | [Identifier] red | semmle.label | 1 |
+| tst.ts:393:14:393:55 | [TupleTypeExpr] [red: n ... number] | tst.ts:393:15:393:17 | [Identifier] red | semmle.order | 1 |
+| tst.ts:393:14:393:55 | [TupleTypeExpr] [red: n ... number] | tst.ts:393:20:393:25 | [KeywordTypeExpr] number | semmle.label | 2 |
+| tst.ts:393:14:393:55 | [TupleTypeExpr] [red: n ... number] | tst.ts:393:20:393:25 | [KeywordTypeExpr] number | semmle.order | 2 |
+| tst.ts:393:14:393:55 | [TupleTypeExpr] [red: n ... number] | tst.ts:393:28:393:32 | [Identifier] green | semmle.label | 3 |
+| tst.ts:393:14:393:55 | [TupleTypeExpr] [red: n ... number] | tst.ts:393:28:393:32 | [Identifier] green | semmle.order | 3 |
+| tst.ts:393:14:393:55 | [TupleTypeExpr] [red: n ... number] | tst.ts:393:35:393:40 | [KeywordTypeExpr] number | semmle.label | 4 |
+| tst.ts:393:14:393:55 | [TupleTypeExpr] [red: n ... number] | tst.ts:393:35:393:40 | [KeywordTypeExpr] number | semmle.order | 4 |
+| tst.ts:393:14:393:55 | [TupleTypeExpr] [red: n ... number] | tst.ts:393:43:393:46 | [Identifier] blue | semmle.label | 5 |
+| tst.ts:393:14:393:55 | [TupleTypeExpr] [red: n ... number] | tst.ts:393:43:393:46 | [Identifier] blue | semmle.order | 5 |
+| tst.ts:393:14:393:55 | [TupleTypeExpr] [red: n ... number] | tst.ts:393:49:393:54 | [KeywordTypeExpr] number | semmle.label | 6 |
+| tst.ts:393:14:393:55 | [TupleTypeExpr] [red: n ... number] | tst.ts:393:49:393:54 | [KeywordTypeExpr] number | semmle.order | 6 |
+| tst.ts:395:3:399:43 | [DeclStmt] const palette = ... | tst.ts:395:9:399:42 | [VariableDeclarator] palette ... \| RGB> | semmle.label | 1 |
+| tst.ts:395:3:399:43 | [DeclStmt] const palette = ... | tst.ts:395:9:399:42 | [VariableDeclarator] palette ... \| RGB> | semmle.order | 1 |
+| tst.ts:395:9:399:42 | [VariableDeclarator] palette ... \| RGB> | tst.ts:395:9:395:15 | [VarDecl] palette | semmle.label | 1 |
+| tst.ts:395:9:399:42 | [VariableDeclarator] palette ... \| RGB> | tst.ts:395:9:395:15 | [VarDecl] palette | semmle.order | 1 |
+| tst.ts:395:9:399:42 | [VariableDeclarator] palette ... \| RGB> | tst.ts:395:19:399:42 | [SatisfiesExpr] { r ... \| RGB> | semmle.label | 2 |
+| tst.ts:395:9:399:42 | [VariableDeclarator] palette ... \| RGB> | tst.ts:395:19:399:42 | [SatisfiesExpr] { r ... \| RGB> | semmle.order | 2 |
+| tst.ts:395:19:399:3 | [ObjectExpr] {red: ...} | tst.ts:396:5:396:20 | [Property] red: [255, 0, 0] | semmle.label | 1 |
+| tst.ts:395:19:399:3 | [ObjectExpr] {red: ...} | tst.ts:396:5:396:20 | [Property] red: [255, 0, 0] | semmle.order | 1 |
+| tst.ts:395:19:399:3 | [ObjectExpr] {red: ...} | tst.ts:397:5:397:20 | [Property] green: "#00ff00" | semmle.label | 2 |
+| tst.ts:395:19:399:3 | [ObjectExpr] {red: ...} | tst.ts:397:5:397:20 | [Property] green: "#00ff00" | semmle.order | 2 |
+| tst.ts:395:19:399:3 | [ObjectExpr] {red: ...} | tst.ts:398:5:398:21 | [Property] bleu: [0, 0, 255] | semmle.label | 3 |
+| tst.ts:395:19:399:3 | [ObjectExpr] {red: ...} | tst.ts:398:5:398:21 | [Property] bleu: [0, 0, 255] | semmle.order | 3 |
+| tst.ts:395:19:399:42 | [SatisfiesExpr] { r ... \| RGB> | tst.ts:395:19:399:3 | [ObjectExpr] {red: ...} | semmle.label | 1 |
+| tst.ts:395:19:399:42 | [SatisfiesExpr] { r ... \| RGB> | tst.ts:395:19:399:3 | [ObjectExpr] {red: ...} | semmle.order | 1 |
+| tst.ts:395:19:399:42 | [SatisfiesExpr] { r ... \| RGB> | tst.ts:399:15:399:42 | [GenericTypeExpr] Record< ... \| RGB> | semmle.label | 2 |
+| tst.ts:395:19:399:42 | [SatisfiesExpr] { r ... \| RGB> | tst.ts:399:15:399:42 | [GenericTypeExpr] Record< ... \| RGB> | semmle.order | 2 |
+| tst.ts:396:5:396:20 | [Property] red: [255, 0, 0] | tst.ts:396:5:396:7 | [Label] red | semmle.label | 1 |
+| tst.ts:396:5:396:20 | [Property] red: [255, 0, 0] | tst.ts:396:5:396:7 | [Label] red | semmle.order | 1 |
+| tst.ts:396:5:396:20 | [Property] red: [255, 0, 0] | tst.ts:396:10:396:20 | [ArrayExpr] [255, 0, 0] | semmle.label | 2 |
+| tst.ts:396:5:396:20 | [Property] red: [255, 0, 0] | tst.ts:396:10:396:20 | [ArrayExpr] [255, 0, 0] | semmle.order | 2 |
+| tst.ts:396:10:396:20 | [ArrayExpr] [255, 0, 0] | tst.ts:396:11:396:13 | [Literal] 255 | semmle.label | 1 |
+| tst.ts:396:10:396:20 | [ArrayExpr] [255, 0, 0] | tst.ts:396:11:396:13 | [Literal] 255 | semmle.order | 1 |
+| tst.ts:396:10:396:20 | [ArrayExpr] [255, 0, 0] | tst.ts:396:16:396:16 | [Literal] 0 | semmle.label | 2 |
+| tst.ts:396:10:396:20 | [ArrayExpr] [255, 0, 0] | tst.ts:396:16:396:16 | [Literal] 0 | semmle.order | 2 |
+| tst.ts:396:10:396:20 | [ArrayExpr] [255, 0, 0] | tst.ts:396:19:396:19 | [Literal] 0 | semmle.label | 3 |
+| tst.ts:396:10:396:20 | [ArrayExpr] [255, 0, 0] | tst.ts:396:19:396:19 | [Literal] 0 | semmle.order | 3 |
+| tst.ts:397:5:397:20 | [Property] green: "#00ff00" | tst.ts:397:5:397:9 | [Label] green | semmle.label | 1 |
+| tst.ts:397:5:397:20 | [Property] green: "#00ff00" | tst.ts:397:5:397:9 | [Label] green | semmle.order | 1 |
+| tst.ts:397:5:397:20 | [Property] green: "#00ff00" | tst.ts:397:12:397:20 | [Literal] "#00ff00" | semmle.label | 2 |
+| tst.ts:397:5:397:20 | [Property] green: "#00ff00" | tst.ts:397:12:397:20 | [Literal] "#00ff00" | semmle.order | 2 |
+| tst.ts:398:5:398:21 | [Property] bleu: [0, 0, 255] | tst.ts:398:5:398:8 | [Label] bleu | semmle.label | 1 |
+| tst.ts:398:5:398:21 | [Property] bleu: [0, 0, 255] | tst.ts:398:5:398:8 | [Label] bleu | semmle.order | 1 |
+| tst.ts:398:5:398:21 | [Property] bleu: [0, 0, 255] | tst.ts:398:11:398:21 | [ArrayExpr] [0, 0, 255] | semmle.label | 2 |
+| tst.ts:398:5:398:21 | [Property] bleu: [0, 0, 255] | tst.ts:398:11:398:21 | [ArrayExpr] [0, 0, 255] | semmle.order | 2 |
+| tst.ts:398:11:398:21 | [ArrayExpr] [0, 0, 255] | tst.ts:398:12:398:12 | [Literal] 0 | semmle.label | 1 |
+| tst.ts:398:11:398:21 | [ArrayExpr] [0, 0, 255] | tst.ts:398:12:398:12 | [Literal] 0 | semmle.order | 1 |
+| tst.ts:398:11:398:21 | [ArrayExpr] [0, 0, 255] | tst.ts:398:15:398:15 | [Literal] 0 | semmle.label | 2 |
+| tst.ts:398:11:398:21 | [ArrayExpr] [0, 0, 255] | tst.ts:398:15:398:15 | [Literal] 0 | semmle.order | 2 |
+| tst.ts:398:11:398:21 | [ArrayExpr] [0, 0, 255] | tst.ts:398:18:398:20 | [Literal] 255 | semmle.label | 3 |
+| tst.ts:398:11:398:21 | [ArrayExpr] [0, 0, 255] | tst.ts:398:18:398:20 | [Literal] 255 | semmle.order | 3 |
+| tst.ts:399:15:399:42 | [GenericTypeExpr] Record< ... \| RGB> | tst.ts:399:15:399:20 | [LocalTypeAccess] Record | semmle.label | 1 |
+| tst.ts:399:15:399:42 | [GenericTypeExpr] Record< ... \| RGB> | tst.ts:399:15:399:20 | [LocalTypeAccess] Record | semmle.order | 1 |
+| tst.ts:399:15:399:42 | [GenericTypeExpr] Record< ... \| RGB> | tst.ts:399:22:399:27 | [LocalTypeAccess] Colors | semmle.label | 2 |
+| tst.ts:399:15:399:42 | [GenericTypeExpr] Record< ... \| RGB> | tst.ts:399:22:399:27 | [LocalTypeAccess] Colors | semmle.order | 2 |
+| tst.ts:399:15:399:42 | [GenericTypeExpr] Record< ... \| RGB> | tst.ts:399:30:399:41 | [UnionTypeExpr] string \| RGB | semmle.label | 3 |
+| tst.ts:399:15:399:42 | [GenericTypeExpr] Record< ... \| RGB> | tst.ts:399:30:399:41 | [UnionTypeExpr] string \| RGB | semmle.order | 3 |
+| tst.ts:399:30:399:41 | [UnionTypeExpr] string \| RGB | tst.ts:399:30:399:35 | [KeywordTypeExpr] string | semmle.label | 1 |
+| tst.ts:399:30:399:41 | [UnionTypeExpr] string \| RGB | tst.ts:399:30:399:35 | [KeywordTypeExpr] string | semmle.order | 1 |
+| tst.ts:399:30:399:41 | [UnionTypeExpr] string \| RGB | tst.ts:399:39:399:41 | [LocalTypeAccess] RGB | semmle.label | 2 |
+| tst.ts:399:30:399:41 | [UnionTypeExpr] string \| RGB | tst.ts:399:39:399:41 | [LocalTypeAccess] RGB | semmle.order | 2 |
+| tst.ts:402:3:402:41 | [DeclStmt] const redComponent = ... | tst.ts:402:9:402:40 | [VariableDeclarator] redComp ... d.at(0) | semmle.label | 1 |
+| tst.ts:402:3:402:41 | [DeclStmt] const redComponent = ... | tst.ts:402:9:402:40 | [VariableDeclarator] redComp ... d.at(0) | semmle.order | 1 |
+| tst.ts:402:9:402:40 | [VariableDeclarator] redComp ... d.at(0) | tst.ts:402:9:402:20 | [VarDecl] redComponent | semmle.label | 1 |
+| tst.ts:402:9:402:40 | [VariableDeclarator] redComp ... d.at(0) | tst.ts:402:9:402:20 | [VarDecl] redComponent | semmle.order | 1 |
+| tst.ts:402:9:402:40 | [VariableDeclarator] redComp ... d.at(0) | tst.ts:402:24:402:40 | [MethodCallExpr] palette.red.at(0) | semmle.label | 2 |
+| tst.ts:402:9:402:40 | [VariableDeclarator] redComp ... d.at(0) | tst.ts:402:24:402:40 | [MethodCallExpr] palette.red.at(0) | semmle.order | 2 |
+| tst.ts:402:24:402:34 | [DotExpr] palette.red | tst.ts:402:24:402:30 | [VarRef] palette | semmle.label | 1 |
+| tst.ts:402:24:402:34 | [DotExpr] palette.red | tst.ts:402:24:402:30 | [VarRef] palette | semmle.order | 1 |
+| tst.ts:402:24:402:34 | [DotExpr] palette.red | tst.ts:402:32:402:34 | [Label] red | semmle.label | 2 |
+| tst.ts:402:24:402:34 | [DotExpr] palette.red | tst.ts:402:32:402:34 | [Label] red | semmle.order | 2 |
+| tst.ts:402:24:402:37 | [DotExpr] palette.red.at | tst.ts:402:24:402:34 | [DotExpr] palette.red | semmle.label | 1 |
+| tst.ts:402:24:402:37 | [DotExpr] palette.red.at | tst.ts:402:24:402:34 | [DotExpr] palette.red | semmle.order | 1 |
+| tst.ts:402:24:402:37 | [DotExpr] palette.red.at | tst.ts:402:36:402:37 | [Label] at | semmle.label | 2 |
+| tst.ts:402:24:402:37 | [DotExpr] palette.red.at | tst.ts:402:36:402:37 | [Label] at | semmle.order | 2 |
+| tst.ts:402:24:402:40 | [MethodCallExpr] palette.red.at(0) | file://:0:0:0:0 | (Arguments) | semmle.label | 1 |
+| tst.ts:402:24:402:40 | [MethodCallExpr] palette.red.at(0) | file://:0:0:0:0 | (Arguments) | semmle.order | 1 |
+| tst.ts:402:24:402:40 | [MethodCallExpr] palette.red.at(0) | tst.ts:402:24:402:37 | [DotExpr] palette.red.at | semmle.label | 0 |
+| tst.ts:402:24:402:40 | [MethodCallExpr] palette.red.at(0) | tst.ts:402:24:402:37 | [DotExpr] palette.red.at | semmle.order | 0 |
 | tstModuleCJS.cts:1:1:3:1 | [ExportDeclaration] export ... 'b'; } | tstModuleCJS.cts:1:8:3:1 | [FunctionDeclStmt] functio ... 'b'; } | semmle.label | 1 |
 | tstModuleCJS.cts:1:1:3:1 | [ExportDeclaration] export ... 'b'; } | tstModuleCJS.cts:1:8:3:1 | [FunctionDeclStmt] functio ... 'b'; } | semmle.order | 1 |
 | tstModuleCJS.cts:1:8:3:1 | [FunctionDeclStmt] functio ... 'b'; } | tstModuleCJS.cts:1:17:1:28 | [VarDecl] tstModuleCJS | semmle.label | 0 |
diff --git a/javascript/ql/test/library-tests/TypeScript/Types/tests.expected b/javascript/ql/test/library-tests/TypeScript/Types/tests.expected
index 6727ab01b13..4c549a09d56 100644
--- a/javascript/ql/test/library-tests/TypeScript/Types/tests.expected
+++ b/javascript/ql/test/library-tests/TypeScript/Types/tests.expected
@@ -519,6 +519,30 @@ getExprType
 | tst.ts:385:56:385:56 | 0 | 0 |
 | tst.ts:385:59:385:63 | false | false |
 | tst.ts:385:66:385:71 | "bye!" | "bye!" |
+| tst.ts:390:8:390:11 | TS49 | typeof TS49 in library-tests/TypeScript/Types/tst.ts |
+| tst.ts:395:9:395:15 | palette | { red: [number, number, number]; green: string;... |
+| tst.ts:395:19:399:3 | {\\n    r ... 5],\\n  } | Record<Colors, string \| RGB> |
+| tst.ts:395:19:399:42 | {\\n    r ...  \| RGB> | { red: [number, number, number]; green: string;... |
+| tst.ts:396:5:396:7 | red | [red: number, green: number, blue: number] |
+| tst.ts:396:10:396:20 | [255, 0, 0] | string \| RGB |
+| tst.ts:396:11:396:13 | 255 | 255 |
+| tst.ts:396:16:396:16 | 0 | 0 |
+| tst.ts:396:19:396:19 | 0 | 0 |
+| tst.ts:397:5:397:9 | green | string |
+| tst.ts:397:12:397:20 | "#00ff00" | "#00ff00" |
+| tst.ts:398:5:398:8 | bleu | number[] |
+| tst.ts:398:11:398:21 | [0, 0, 255] | number[] |
+| tst.ts:398:12:398:12 | 0 | 0 |
+| tst.ts:398:15:398:15 | 0 | 0 |
+| tst.ts:398:18:398:20 | 255 | 255 |
+| tst.ts:402:9:402:20 | redComponent | number |
+| tst.ts:402:24:402:30 | palette | { red: [number, number, number]; green: string;... |
+| tst.ts:402:24:402:34 | palette.red | [red: number, green: number, blue: number] |
+| tst.ts:402:24:402:37 | palette.red.at | (index: number) => number |
+| tst.ts:402:24:402:40 | palette.red.at(0) | number |
+| tst.ts:402:32:402:34 | red | [red: number, green: number, blue: number] |
+| tst.ts:402:36:402:37 | at | (index: number) => number |
+| tst.ts:402:39:402:39 | 0 | 0 |
 | tstModuleCJS.cts:1:17:1:28 | tstModuleCJS | () => "a" \| "b" |
 | tstModuleCJS.cts:2:12:2:15 | Math | Math |
 | tstModuleCJS.cts:2:12:2:22 | Math.random | () => number |
@@ -624,6 +648,8 @@ getTypeDefinitionType
 | tst.ts:336:1:336:51 | type F  ... lean]>; | "a" \| "b" |
 | tst.ts:342:1:345:1 | interfa ... void;\\n} | State<T> |
 | tst.ts:381:5:381:73 | type So ...  never; | 100 |
+| tst.ts:391:3:391:41 | type Co ... "blue"; | Colors |
+| tst.ts:393:3:393:56 | type RG ... umber]; | RGB |
 | type_alias.ts:1:1:1:17 | type B = boolean; | boolean |
 | type_alias.ts:5:1:5:50 | type Va ... ay<T>>; | ValueOrArray<T> |
 | type_alias.ts:9:1:15:13 | type Js ... Json[]; | Json |
@@ -921,6 +947,25 @@ getTypeExprType
 | tst.ts:383:43:383:43 | T | T |
 | tst.ts:383:49:383:49 | T | T |
 | tst.ts:383:53:383:53 | T | T |
+| tst.ts:391:8:391:13 | Colors | Colors |
+| tst.ts:391:17:391:21 | "red" | "red" |
+| tst.ts:391:17:391:40 | "red" \| ...  "blue" | "red" \| "green" \| "blue" |
+| tst.ts:391:25:391:31 | "green" | "green" |
+| tst.ts:391:35:391:40 | "blue" | "blue" |
+| tst.ts:393:8:393:10 | RGB | RGB |
+| tst.ts:393:14:393:55 | [red: n ... number] | [red: number, green: number, blue: number] |
+| tst.ts:393:15:393:17 | red | any |
+| tst.ts:393:20:393:25 | number | number |
+| tst.ts:393:28:393:32 | green | any |
+| tst.ts:393:35:393:40 | number | number |
+| tst.ts:393:43:393:46 | blue | any |
+| tst.ts:393:49:393:54 | number | number |
+| tst.ts:399:15:399:20 | Record | Record<K, T> |
+| tst.ts:399:15:399:42 | Record< ...  \| RGB> | Record<Colors, string \| RGB> |
+| tst.ts:399:22:399:27 | Colors | Colors |
+| tst.ts:399:30:399:35 | string | string |
+| tst.ts:399:30:399:41 | string \| RGB | string \| RGB |
+| tst.ts:399:39:399:41 | RGB | RGB |
 | tstModuleCJS.cts:1:33:1:35 | 'a' | "a" |
 | tstModuleCJS.cts:1:33:1:41 | 'a' \| 'b' | "a" \| "b" |
 | tstModuleCJS.cts:1:39:1:41 | 'b' | "b" |
@@ -1005,6 +1050,7 @@ referenceDefinition
 | Color.green | type_definitions.ts:14:8:14:12 | green |
 | Color.red | type_definitions.ts:14:3:14:5 | red |
 | Colors | tst.ts:152:5:156:5 | interfa ... ;\\n    } |
+| Colors | tst.ts:391:3:391:41 | type Co ... "blue"; |
 | Data | tst.ts:171:5:173:5 | interfa ... ;\\n    } |
 | Derived | tst.ts:243:3:250:3 | class D ...   }\\n  } |
 | E | type_definition_objects.ts:6:8:6:16 | enum E {} |
@@ -1023,6 +1069,7 @@ referenceDefinition
 | MyUnion2 | tst.ts:68:1:68:49 | type My ...  true}; |
 | NonAbstractDummy | tst.ts:54:1:56:1 | interfa ... mber;\\n} |
 | Person | tst.ts:222:3:234:3 | class P ...   }\\n  } |
+| RGB | tst.ts:393:3:393:56 | type RG ... umber]; |
 | Shape | tst.ts:140:3:142:47 | type Sh ... mber }; |
 | State<T> | tst.ts:342:1:345:1 | interfa ... void;\\n} |
 | State<number> | tst.ts:342:1:345:1 | interfa ... void;\\n} |
@@ -1076,6 +1123,15 @@ tupleTypes
 | tst.ts:385:55:385:72 | [0, false, "bye!"] | [number, boolean, string] | 0 | number | 3 | no-rest |
 | tst.ts:385:55:385:72 | [0, false, "bye!"] | [number, boolean, string] | 1 | boolean | 3 | no-rest |
 | tst.ts:385:55:385:72 | [0, false, "bye!"] | [number, boolean, string] | 2 | string | 3 | no-rest |
+| tst.ts:396:5:396:7 | red | [red: number, green: number, blue: number] | 0 | number | 3 | no-rest |
+| tst.ts:396:5:396:7 | red | [red: number, green: number, blue: number] | 1 | number | 3 | no-rest |
+| tst.ts:396:5:396:7 | red | [red: number, green: number, blue: number] | 2 | number | 3 | no-rest |
+| tst.ts:402:24:402:34 | palette.red | [red: number, green: number, blue: number] | 0 | number | 3 | no-rest |
+| tst.ts:402:24:402:34 | palette.red | [red: number, green: number, blue: number] | 1 | number | 3 | no-rest |
+| tst.ts:402:24:402:34 | palette.red | [red: number, green: number, blue: number] | 2 | number | 3 | no-rest |
+| tst.ts:402:32:402:34 | red | [red: number, green: number, blue: number] | 0 | number | 3 | no-rest |
+| tst.ts:402:32:402:34 | red | [red: number, green: number, blue: number] | 1 | number | 3 | no-rest |
+| tst.ts:402:32:402:34 | red | [red: number, green: number, blue: number] | 2 | number | 3 | no-rest |
 unknownType
 | tst.ts:40:5:40:15 | unknownType | unknown |
 | tst.ts:47:8:47:8 | e | unknown |
@@ -1100,14 +1156,17 @@ unionIndex
 | "b" | 1 | "a" \| "b" |
 | "b" | 4 | number \| boolean \| "a" \| "b" |
 | "bigint" | 2 | "string" \| "number" \| "bigint" \| "boolean" \| "s... |
+| "blue" | 2 | "red" \| "green" \| "blue" |
 | "boolean" | 2 | keyof TypeMap |
 | "boolean" | 3 | "string" \| "number" \| "bigint" \| "boolean" \| "s... |
 | "circle" | 0 | "circle" \| "square" |
 | "function" | 7 | "string" \| "number" \| "bigint" \| "boolean" \| "s... |
+| "green" | 1 | "red" \| "green" \| "blue" |
 | "hello" | 0 | "hello" \| 42 |
 | "number" | 1 | "string" \| "number" \| "bigint" \| "boolean" \| "s... |
 | "number" | 1 | keyof TypeMap |
 | "object" | 6 | "string" \| "number" \| "bigint" \| "boolean" \| "s... |
+| "red" | 0 | "red" \| "green" \| "blue" |
 | "square" | 1 | "circle" \| "square" |
 | "string" | 0 | "string" \| "number" \| "bigint" \| "boolean" \| "s... |
 | "string" | 0 | keyof TypeMap |
@@ -1119,6 +1178,7 @@ unionIndex
 | Promise<number> | 2 | boolean \| Promise<number> |
 | PromiseLike<TResult1> | 1 | TResult1 \| PromiseLike<TResult1> |
 | PromiseLike<TResult2> | 1 | TResult2 \| PromiseLike<TResult2> |
+| RGB | 1 | string \| RGB |
 | Success | 0 | Success \| Error |
 | T | 0 | T \| ValueOrArray<T>[] |
 | TResult1 | 0 | TResult1 \| PromiseLike<TResult1> |
@@ -1147,6 +1207,7 @@ unionIndex
 | number | 1 | string \| number \| true |
 | string | 0 | VirtualNode \| { [key: string]: any; } |
 | string | 0 | string \| Error |
+| string | 0 | string \| RGB |
 | string | 0 | string \| [string, { [key: string]: any; }, ...V... |
 | string | 0 | string \| number |
 | string | 0 | string \| number \| boolean |
diff --git a/javascript/ql/test/library-tests/TypeScript/Types/tst.ts b/javascript/ql/test/library-tests/TypeScript/Types/tst.ts
index 67e31b27afa..6af2e73add8 100644
--- a/javascript/ql/test/library-tests/TypeScript/Types/tst.ts
+++ b/javascript/ql/test/library-tests/TypeScript/Types/tst.ts
@@ -383,4 +383,21 @@ module TS48 {
     declare function chooseRandomly<T>(x: T, y: T): T;
 
     let [a, b, c] = chooseRandomly([42, true, "hi!"], [0, false, "bye!"]);    
+}
+
+/////////////////
+
+module TS49 {
+  type Colors = "red" | "green" | "blue";
+
+  type RGB = [red: number, green: number, blue: number];
+
+  const palette = {
+    red: [255, 0, 0],
+    green: "#00ff00",
+    bleu: [0, 0, 255],
+  } satisfies Record<Colors, string | RGB>;
+
+  // Both of these methods are still accessible!
+  const redComponent = palette.red.at(0);
 }
\ No newline at end of file

From a8973c11471fc5019f449c343cf306bb68f6086a Mon Sep 17 00:00:00 2001
From: erik-krogh <erik-krogh@github.com>
Date: Mon, 14 Nov 2022 15:01:18 +0100
Subject: [PATCH 0320/1420] add test for dataflow

---
 .../test/library-tests/DataFlow/tests.expected   | 16 ++++++++++++++++
 .../ql/test/library-tests/DataFlow/tst2.ts       |  2 ++
 2 files changed, 18 insertions(+)

diff --git a/javascript/ql/test/library-tests/DataFlow/tests.expected b/javascript/ql/test/library-tests/DataFlow/tests.expected
index 28b6ef3e94a..5bf2830c7ed 100644
--- a/javascript/ql/test/library-tests/DataFlow/tests.expected
+++ b/javascript/ql/test/library-tests/DataFlow/tests.expected
@@ -182,6 +182,12 @@ basicBlock
 | tst2.ts:13:39:13:38 | super | tst2.ts:13:39:13:38 | entry node of (...arg ... rgs); } |
 | tst2.ts:13:39:13:38 | super(...args) | tst2.ts:13:39:13:38 | entry node of (...arg ... rgs); } |
 | tst2.ts:13:39:13:38 | this | tst2.ts:13:39:13:38 | entry node of (...arg ... rgs); } |
+| tst2.ts:15:5:15:7 | nd2 | tst2.ts:1:1:1:0 | entry node of <toplevel> |
+| tst2.ts:15:5:15:30 | nd2 = A ...  number | tst2.ts:1:1:1:0 | entry node of <toplevel> |
+| tst2.ts:15:11:15:11 | A | tst2.ts:1:1:1:0 | entry node of <toplevel> |
+| tst2.ts:15:11:15:13 | A.x | tst2.ts:1:1:1:0 | entry node of <toplevel> |
+| tst2.ts:15:11:15:30 | A.x satisfies number | tst2.ts:1:1:1:0 | entry node of <toplevel> |
+| tst2.ts:15:13:15:13 | x | tst2.ts:1:1:1:0 | entry node of <toplevel> |
 | tst.js:1:1:1:0 | this | tst.js:1:1:1:0 | entry node of <toplevel> |
 | tst.js:1:1:1:1 | x | tst.js:1:1:1:0 | entry node of <toplevel> |
 | tst.js:1:1:1:24 | import  ... m 'fs'; | tst.js:1:1:1:0 | entry node of <toplevel> |
@@ -674,6 +680,12 @@ enclosingExpr
 | tst2.ts:13:39:13:38 | constructor | tst2.ts:13:39:13:38 | constructor |
 | tst2.ts:13:39:13:38 | super | tst2.ts:13:39:13:38 | super |
 | tst2.ts:13:39:13:38 | super(...args) | tst2.ts:13:39:13:38 | super(...args) |
+| tst2.ts:15:5:15:7 | nd2 | tst2.ts:15:5:15:7 | nd2 |
+| tst2.ts:15:5:15:30 | nd2 = A ...  number | tst2.ts:15:5:15:30 | nd2 = A ...  number |
+| tst2.ts:15:11:15:11 | A | tst2.ts:15:11:15:11 | A |
+| tst2.ts:15:11:15:13 | A.x | tst2.ts:15:11:15:13 | A.x |
+| tst2.ts:15:11:15:30 | A.x satisfies number | tst2.ts:15:11:15:30 | A.x satisfies number |
+| tst2.ts:15:13:15:13 | x | tst2.ts:15:13:15:13 | x |
 | tst.js:1:10:1:11 | fs | tst.js:1:10:1:11 | fs |
 | tst.js:1:10:1:11 | fs | tst.js:1:10:1:11 | fs |
 | tst.js:1:10:1:11 | fs | tst.js:1:10:1:11 | fs |
@@ -973,6 +985,7 @@ flowStep
 | tst2.ts:1:1:1:1 | A | tst2.ts:1:18:1:18 | A |
 | tst2.ts:1:8:5:1 | A | tst2.ts:1:18:1:18 | A |
 | tst2.ts:1:8:5:1 | A | tst2.ts:11:11:11:11 | A |
+| tst2.ts:1:8:5:1 | A | tst2.ts:15:11:15:11 | A |
 | tst2.ts:1:8:5:1 | namespa ... lysed\\n} | tst2.ts:1:8:5:1 | A |
 | tst2.ts:1:18:1:18 | A | tst2.ts:7:1:7:0 | A |
 | tst2.ts:2:14:2:19 | x | tst2.ts:4:3:4:3 | x |
@@ -1159,6 +1172,7 @@ getImmediatePredecessor
 | sources.js:11:14:11:16 | key | sources.js:11:12:11:18 | key |
 | tst2.ts:1:1:1:1 | A | tst2.ts:1:18:1:18 | A |
 | tst2.ts:1:8:5:1 | A | tst2.ts:11:11:11:11 | A |
+| tst2.ts:1:8:5:1 | A | tst2.ts:15:11:15:11 | A |
 | tst2.ts:1:8:5:1 | namespa ... lysed\\n} | tst2.ts:1:8:5:1 | A |
 | tst2.ts:2:14:2:19 | x | tst2.ts:4:3:4:3 | x |
 | tst2.ts:2:18:2:19 | 42 | tst2.ts:2:14:2:19 | x |
@@ -1340,6 +1354,7 @@ incomplete
 | tst2.ts:13:39:13:38 | exceptional return of super(...args) | call |
 | tst2.ts:13:39:13:38 | super | call |
 | tst2.ts:13:39:13:38 | super(...args) | call |
+| tst2.ts:15:11:15:13 | A.x | heap |
 | tst.js:1:10:1:11 | fs | import |
 | tst.js:16:1:20:9 | exceptional return of (functi ... ("arg") | call |
 | tst.js:16:2:20:1 | exceptional return of function f | call |
@@ -1504,6 +1519,7 @@ sources
 | tst2.ts:13:39:13:38 | return of default constructor of class StringList |
 | tst2.ts:13:39:13:38 | super(...args) |
 | tst2.ts:13:39:13:38 | this |
+| tst2.ts:15:11:15:13 | A.x |
 | tst.js:1:1:1:0 | this |
 | tst.js:1:1:1:24 | import  ... m 'fs'; |
 | tst.js:1:10:1:11 | fs |
diff --git a/javascript/ql/test/library-tests/DataFlow/tst2.ts b/javascript/ql/test/library-tests/DataFlow/tst2.ts
index 29c85cba933..d9a1668adfa 100644
--- a/javascript/ql/test/library-tests/DataFlow/tst2.ts
+++ b/javascript/ql/test/library-tests/DataFlow/tst2.ts
@@ -11,3 +11,5 @@ function setX() {
 var nd2 = A.x as number;                 // flow through type assertions
 
 class StringList extends List<string> {} // flow through expressions with type arguments
+
+var nd2 = A.x satisfies number;          // flow through satisfies expressions

From e98d1df5f49df8ac62ba1ca15960f6a960663923 Mon Sep 17 00:00:00 2001
From: erik-krogh <erik-krogh@github.com>
Date: Mon, 14 Nov 2022 15:01:34 +0100
Subject: [PATCH 0321/1420] add dataflow support

---
 javascript/ql/lib/semmle/javascript/dataflow/DataFlow.qll | 2 ++
 javascript/ql/test/library-tests/DataFlow/tests.expected  | 2 ++
 2 files changed, 4 insertions(+)

diff --git a/javascript/ql/lib/semmle/javascript/dataflow/DataFlow.qll b/javascript/ql/lib/semmle/javascript/dataflow/DataFlow.qll
index 2404fecbd30..c013dab3680 100644
--- a/javascript/ql/lib/semmle/javascript/dataflow/DataFlow.qll
+++ b/javascript/ql/lib/semmle/javascript/dataflow/DataFlow.qll
@@ -1580,6 +1580,8 @@ module DataFlow {
       or
       predExpr = succExpr.(TypeAssertion).getExpression()
       or
+      predExpr = succExpr.(SatisfiesExpr).getExpression()
+      or
       predExpr = succExpr.(NonNullAssertion).getExpression()
       or
       predExpr = succExpr.(ExpressionWithTypeArguments).getExpression()
diff --git a/javascript/ql/test/library-tests/DataFlow/tests.expected b/javascript/ql/test/library-tests/DataFlow/tests.expected
index 5bf2830c7ed..02bfbe09e2d 100644
--- a/javascript/ql/test/library-tests/DataFlow/tests.expected
+++ b/javascript/ql/test/library-tests/DataFlow/tests.expected
@@ -998,6 +998,7 @@ flowStep
 | tst2.ts:13:26:13:29 | List | tst2.ts:13:26:13:37 | List<string> |
 | tst2.ts:13:39:13:38 | args | tst2.ts:13:39:13:38 | args |
 | tst2.ts:13:39:13:38 | args | tst2.ts:13:39:13:38 | args |
+| tst2.ts:15:11:15:13 | A.x | tst2.ts:15:11:15:30 | A.x satisfies number |
 | tst.js:1:1:1:1 | x | tst.js:3:5:3:5 | x |
 | tst.js:1:10:1:11 | fs | tst.js:1:10:1:11 | fs |
 | tst.js:1:10:1:11 | fs | tst.js:7:1:7:2 | fs |
@@ -1184,6 +1185,7 @@ getImmediatePredecessor
 | tst2.ts:13:26:13:29 | List | tst2.ts:13:26:13:37 | List<string> |
 | tst2.ts:13:39:13:38 | args | tst2.ts:13:39:13:38 | args |
 | tst2.ts:13:39:13:38 | args | tst2.ts:13:39:13:38 | args |
+| tst2.ts:15:11:15:13 | A.x | tst2.ts:15:11:15:30 | A.x satisfies number |
 | tst.js:1:10:1:11 | fs | tst.js:1:10:1:11 | fs |
 | tst.js:1:10:1:11 | fs | tst.js:7:1:7:2 | fs |
 | tst.js:1:10:1:11 | fs | tst.js:22:24:22:25 | fs |

From 65567fa1ce0f65f6e9428930c5f08bde5c990c56 Mon Sep 17 00:00:00 2001
From: erik-krogh <erik-krogh@github.com>
Date: Mon, 14 Nov 2022 15:05:16 +0100
Subject: [PATCH 0322/1420] add test for the more precise type-narrowing with
 the in operator

---
 .../TypeScript/Types/printAst.expected        | 105 ++++++++++++++++--
 .../TypeScript/Types/tests.expected           |  22 ++++
 .../library-tests/TypeScript/Types/tst.ts     |  14 +++
 3 files changed, 129 insertions(+), 12 deletions(-)

diff --git a/javascript/ql/test/library-tests/TypeScript/Types/printAst.expected b/javascript/ql/test/library-tests/TypeScript/Types/printAst.expected
index 6141ec6a73e..0e2ed563dcf 100644
--- a/javascript/ql/test/library-tests/TypeScript/Types/printAst.expected
+++ b/javascript/ql/test/library-tests/TypeScript/Types/printAst.expected
@@ -135,6 +135,7 @@ nodes
 | file://:0:0:0:0 | (Parameters) | semmle.label | (Parameters) |
 | file://:0:0:0:0 | (Parameters) | semmle.label | (Parameters) |
 | file://:0:0:0:0 | (Parameters) | semmle.label | (Parameters) |
+| file://:0:0:0:0 | (Parameters) | semmle.label | (Parameters) |
 | file://:0:0:0:0 | (TypeParameters) | semmle.label | (TypeParameters) |
 | file://:0:0:0:0 | (TypeParameters) | semmle.label | (TypeParameters) |
 | file://:0:0:0:0 | (TypeParameters) | semmle.label | (TypeParameters) |
@@ -1425,8 +1426,8 @@ nodes
 | tst.ts:385:56:385:56 | [Literal] 0 | semmle.label | [Literal] 0 |
 | tst.ts:385:59:385:63 | [Literal] false | semmle.label | [Literal] false |
 | tst.ts:385:66:385:71 | [Literal] "bye!" | semmle.label | [Literal] "bye!" |
-| tst.ts:390:1:403:1 | [NamespaceDeclaration] module ... t(0); } | semmle.label | [NamespaceDeclaration] module ... t(0); } |
-| tst.ts:390:1:403:1 | [NamespaceDeclaration] module ... t(0); } | semmle.order | 85 |
+| tst.ts:390:1:417:1 | [NamespaceDeclaration] module ... } } } | semmle.label | [NamespaceDeclaration] module ... } } } |
+| tst.ts:390:1:417:1 | [NamespaceDeclaration] module ... } } } | semmle.order | 85 |
 | tst.ts:390:8:390:11 | [VarDecl] TS49 | semmle.label | [VarDecl] TS49 |
 | tst.ts:391:3:391:41 | [TypeAliasDeclaration,TypeDefinition] type Co ... "blue"; | semmle.label | [TypeAliasDeclaration,TypeDefinition] type Co ... "blue"; |
 | tst.ts:391:8:391:13 | [Identifier] Colors | semmle.label | [Identifier] Colors |
@@ -1479,6 +1480,32 @@ nodes
 | tst.ts:402:32:402:34 | [Label] red | semmle.label | [Label] red |
 | tst.ts:402:36:402:37 | [Label] at | semmle.label | [Label] at |
 | tst.ts:402:39:402:39 | [Literal] 0 | semmle.label | [Literal] 0 |
+| tst.ts:404:3:406:3 | [InterfaceDeclaration,TypeDefinition] interfa ... er; } | semmle.label | [InterfaceDeclaration,TypeDefinition] interfa ... er; } |
+| tst.ts:404:13:404:18 | [Identifier] RGBObj | semmle.label | [Identifier] RGBObj |
+| tst.ts:405:5:405:7 | [Label] red | semmle.label | [Label] red |
+| tst.ts:405:5:405:16 | [FieldDeclaration] red: number; | semmle.label | [FieldDeclaration] red: number; |
+| tst.ts:405:10:405:15 | [KeywordTypeExpr] number | semmle.label | [KeywordTypeExpr] number |
+| tst.ts:408:3:410:3 | [InterfaceDeclaration,TypeDefinition] interfa ... er; } | semmle.label | [InterfaceDeclaration,TypeDefinition] interfa ... er; } |
+| tst.ts:408:13:408:18 | [Identifier] HSVObj | semmle.label | [Identifier] HSVObj |
+| tst.ts:409:5:409:7 | [Label] hue | semmle.label | [Label] hue |
+| tst.ts:409:5:409:16 | [FieldDeclaration] hue: number; | semmle.label | [FieldDeclaration] hue: number; |
+| tst.ts:409:10:409:15 | [KeywordTypeExpr] number | semmle.label | [KeywordTypeExpr] number |
+| tst.ts:412:3:416:3 | [FunctionDeclStmt] functio ... } } | semmle.label | [FunctionDeclStmt] functio ... } } |
+| tst.ts:412:12:412:19 | [VarDecl] setColor | semmle.label | [VarDecl] setColor |
+| tst.ts:412:21:412:25 | [SimpleParameter] color | semmle.label | [SimpleParameter] color |
+| tst.ts:412:28:412:33 | [LocalTypeAccess] RGBObj | semmle.label | [LocalTypeAccess] RGBObj |
+| tst.ts:412:28:412:42 | [UnionTypeExpr] RGBObj \| HSVObj | semmle.label | [UnionTypeExpr] RGBObj \| HSVObj |
+| tst.ts:412:37:412:42 | [LocalTypeAccess] HSVObj | semmle.label | [LocalTypeAccess] HSVObj |
+| tst.ts:412:45:416:3 | [BlockStmt] { i ... } } | semmle.label | [BlockStmt] { i ... } } |
+| tst.ts:413:5:415:5 | [IfStmt] if ("hu ... j } | semmle.label | [IfStmt] if ("hu ... j } |
+| tst.ts:413:9:413:13 | [Literal] "hue" | semmle.label | [Literal] "hue" |
+| tst.ts:413:9:413:22 | [BinaryExpr] "hue" in color | semmle.label | [BinaryExpr] "hue" in color |
+| tst.ts:413:18:413:22 | [VarRef] color | semmle.label | [VarRef] color |
+| tst.ts:413:25:415:5 | [BlockStmt] { ... j } | semmle.label | [BlockStmt] { ... j } |
+| tst.ts:414:7:414:20 | [DeclStmt] let h = ... | semmle.label | [DeclStmt] let h = ... |
+| tst.ts:414:11:414:11 | [VarDecl] h | semmle.label | [VarDecl] h |
+| tst.ts:414:11:414:19 | [VariableDeclarator] h = color | semmle.label | [VariableDeclarator] h = color |
+| tst.ts:414:15:414:19 | [VarRef] color | semmle.label | [VarRef] color |
 | tstModuleCJS.cts:1:1:3:1 | [ExportDeclaration] export ... 'b'; } | semmle.label | [ExportDeclaration] export ... 'b'; } |
 | tstModuleCJS.cts:1:1:3:1 | [ExportDeclaration] export ... 'b'; } | semmle.order | 86 |
 | tstModuleCJS.cts:1:8:3:1 | [FunctionDeclStmt] functio ... 'b'; } | semmle.label | [FunctionDeclStmt] functio ... 'b'; } |
@@ -1974,6 +2001,8 @@ edges
 | file://:0:0:0:0 | (Parameters) | tst.ts:383:40:383:40 | [SimpleParameter] x | semmle.order | 0 |
 | file://:0:0:0:0 | (Parameters) | tst.ts:383:46:383:46 | [SimpleParameter] y | semmle.label | 1 |
 | file://:0:0:0:0 | (Parameters) | tst.ts:383:46:383:46 | [SimpleParameter] y | semmle.order | 1 |
+| file://:0:0:0:0 | (Parameters) | tst.ts:412:21:412:25 | [SimpleParameter] color | semmle.label | 0 |
+| file://:0:0:0:0 | (Parameters) | tst.ts:412:21:412:25 | [SimpleParameter] color | semmle.order | 0 |
 | file://:0:0:0:0 | (Parameters) | type_alias.ts:14:10:14:17 | [SimpleParameter] property | semmle.label | 0 |
 | file://:0:0:0:0 | (Parameters) | type_alias.ts:14:10:14:17 | [SimpleParameter] property | semmle.order | 0 |
 | file://:0:0:0:0 | (Parameters) | type_alias.ts:21:19:21:21 | [SimpleParameter] key | semmle.label | 0 |
@@ -4260,16 +4289,22 @@ edges
 | tst.ts:385:55:385:72 | [ArrayExpr] [0, false, "bye!"] | tst.ts:385:59:385:63 | [Literal] false | semmle.order | 2 |
 | tst.ts:385:55:385:72 | [ArrayExpr] [0, false, "bye!"] | tst.ts:385:66:385:71 | [Literal] "bye!" | semmle.label | 3 |
 | tst.ts:385:55:385:72 | [ArrayExpr] [0, false, "bye!"] | tst.ts:385:66:385:71 | [Literal] "bye!" | semmle.order | 3 |
-| tst.ts:390:1:403:1 | [NamespaceDeclaration] module ... t(0); } | tst.ts:390:8:390:11 | [VarDecl] TS49 | semmle.label | 1 |
-| tst.ts:390:1:403:1 | [NamespaceDeclaration] module ... t(0); } | tst.ts:390:8:390:11 | [VarDecl] TS49 | semmle.order | 1 |
-| tst.ts:390:1:403:1 | [NamespaceDeclaration] module ... t(0); } | tst.ts:391:3:391:41 | [TypeAliasDeclaration,TypeDefinition] type Co ... "blue"; | semmle.label | 2 |
-| tst.ts:390:1:403:1 | [NamespaceDeclaration] module ... t(0); } | tst.ts:391:3:391:41 | [TypeAliasDeclaration,TypeDefinition] type Co ... "blue"; | semmle.order | 2 |
-| tst.ts:390:1:403:1 | [NamespaceDeclaration] module ... t(0); } | tst.ts:393:3:393:56 | [TypeAliasDeclaration,TypeDefinition] type RG ... umber]; | semmle.label | 3 |
-| tst.ts:390:1:403:1 | [NamespaceDeclaration] module ... t(0); } | tst.ts:393:3:393:56 | [TypeAliasDeclaration,TypeDefinition] type RG ... umber]; | semmle.order | 3 |
-| tst.ts:390:1:403:1 | [NamespaceDeclaration] module ... t(0); } | tst.ts:395:3:399:43 | [DeclStmt] const palette = ... | semmle.label | 4 |
-| tst.ts:390:1:403:1 | [NamespaceDeclaration] module ... t(0); } | tst.ts:395:3:399:43 | [DeclStmt] const palette = ... | semmle.order | 4 |
-| tst.ts:390:1:403:1 | [NamespaceDeclaration] module ... t(0); } | tst.ts:402:3:402:41 | [DeclStmt] const redComponent = ... | semmle.label | 5 |
-| tst.ts:390:1:403:1 | [NamespaceDeclaration] module ... t(0); } | tst.ts:402:3:402:41 | [DeclStmt] const redComponent = ... | semmle.order | 5 |
+| tst.ts:390:1:417:1 | [NamespaceDeclaration] module ... } } } | tst.ts:390:8:390:11 | [VarDecl] TS49 | semmle.label | 1 |
+| tst.ts:390:1:417:1 | [NamespaceDeclaration] module ... } } } | tst.ts:390:8:390:11 | [VarDecl] TS49 | semmle.order | 1 |
+| tst.ts:390:1:417:1 | [NamespaceDeclaration] module ... } } } | tst.ts:391:3:391:41 | [TypeAliasDeclaration,TypeDefinition] type Co ... "blue"; | semmle.label | 2 |
+| tst.ts:390:1:417:1 | [NamespaceDeclaration] module ... } } } | tst.ts:391:3:391:41 | [TypeAliasDeclaration,TypeDefinition] type Co ... "blue"; | semmle.order | 2 |
+| tst.ts:390:1:417:1 | [NamespaceDeclaration] module ... } } } | tst.ts:393:3:393:56 | [TypeAliasDeclaration,TypeDefinition] type RG ... umber]; | semmle.label | 3 |
+| tst.ts:390:1:417:1 | [NamespaceDeclaration] module ... } } } | tst.ts:393:3:393:56 | [TypeAliasDeclaration,TypeDefinition] type RG ... umber]; | semmle.order | 3 |
+| tst.ts:390:1:417:1 | [NamespaceDeclaration] module ... } } } | tst.ts:395:3:399:43 | [DeclStmt] const palette = ... | semmle.label | 4 |
+| tst.ts:390:1:417:1 | [NamespaceDeclaration] module ... } } } | tst.ts:395:3:399:43 | [DeclStmt] const palette = ... | semmle.order | 4 |
+| tst.ts:390:1:417:1 | [NamespaceDeclaration] module ... } } } | tst.ts:402:3:402:41 | [DeclStmt] const redComponent = ... | semmle.label | 5 |
+| tst.ts:390:1:417:1 | [NamespaceDeclaration] module ... } } } | tst.ts:402:3:402:41 | [DeclStmt] const redComponent = ... | semmle.order | 5 |
+| tst.ts:390:1:417:1 | [NamespaceDeclaration] module ... } } } | tst.ts:404:3:406:3 | [InterfaceDeclaration,TypeDefinition] interfa ... er; } | semmle.label | 6 |
+| tst.ts:390:1:417:1 | [NamespaceDeclaration] module ... } } } | tst.ts:404:3:406:3 | [InterfaceDeclaration,TypeDefinition] interfa ... er; } | semmle.order | 6 |
+| tst.ts:390:1:417:1 | [NamespaceDeclaration] module ... } } } | tst.ts:408:3:410:3 | [InterfaceDeclaration,TypeDefinition] interfa ... er; } | semmle.label | 7 |
+| tst.ts:390:1:417:1 | [NamespaceDeclaration] module ... } } } | tst.ts:408:3:410:3 | [InterfaceDeclaration,TypeDefinition] interfa ... er; } | semmle.order | 7 |
+| tst.ts:390:1:417:1 | [NamespaceDeclaration] module ... } } } | tst.ts:412:3:416:3 | [FunctionDeclStmt] functio ... } } | semmle.label | 8 |
+| tst.ts:390:1:417:1 | [NamespaceDeclaration] module ... } } } | tst.ts:412:3:416:3 | [FunctionDeclStmt] functio ... } } | semmle.order | 8 |
 | tst.ts:391:3:391:41 | [TypeAliasDeclaration,TypeDefinition] type Co ... "blue"; | tst.ts:391:8:391:13 | [Identifier] Colors | semmle.label | 1 |
 | tst.ts:391:3:391:41 | [TypeAliasDeclaration,TypeDefinition] type Co ... "blue"; | tst.ts:391:8:391:13 | [Identifier] Colors | semmle.order | 1 |
 | tst.ts:391:3:391:41 | [TypeAliasDeclaration,TypeDefinition] type Co ... "blue"; | tst.ts:391:17:391:40 | [UnionTypeExpr] "red" \| ... "blue" | semmle.label | 2 |
@@ -4364,6 +4399,52 @@ edges
 | tst.ts:402:24:402:40 | [MethodCallExpr] palette.red.at(0) | file://:0:0:0:0 | (Arguments) | semmle.order | 1 |
 | tst.ts:402:24:402:40 | [MethodCallExpr] palette.red.at(0) | tst.ts:402:24:402:37 | [DotExpr] palette.red.at | semmle.label | 0 |
 | tst.ts:402:24:402:40 | [MethodCallExpr] palette.red.at(0) | tst.ts:402:24:402:37 | [DotExpr] palette.red.at | semmle.order | 0 |
+| tst.ts:404:3:406:3 | [InterfaceDeclaration,TypeDefinition] interfa ... er; } | tst.ts:404:13:404:18 | [Identifier] RGBObj | semmle.label | 1 |
+| tst.ts:404:3:406:3 | [InterfaceDeclaration,TypeDefinition] interfa ... er; } | tst.ts:404:13:404:18 | [Identifier] RGBObj | semmle.order | 1 |
+| tst.ts:404:3:406:3 | [InterfaceDeclaration,TypeDefinition] interfa ... er; } | tst.ts:405:5:405:16 | [FieldDeclaration] red: number; | semmle.label | 2 |
+| tst.ts:404:3:406:3 | [InterfaceDeclaration,TypeDefinition] interfa ... er; } | tst.ts:405:5:405:16 | [FieldDeclaration] red: number; | semmle.order | 2 |
+| tst.ts:405:5:405:16 | [FieldDeclaration] red: number; | tst.ts:405:5:405:7 | [Label] red | semmle.label | 1 |
+| tst.ts:405:5:405:16 | [FieldDeclaration] red: number; | tst.ts:405:5:405:7 | [Label] red | semmle.order | 1 |
+| tst.ts:405:5:405:16 | [FieldDeclaration] red: number; | tst.ts:405:10:405:15 | [KeywordTypeExpr] number | semmle.label | 2 |
+| tst.ts:405:5:405:16 | [FieldDeclaration] red: number; | tst.ts:405:10:405:15 | [KeywordTypeExpr] number | semmle.order | 2 |
+| tst.ts:408:3:410:3 | [InterfaceDeclaration,TypeDefinition] interfa ... er; } | tst.ts:408:13:408:18 | [Identifier] HSVObj | semmle.label | 1 |
+| tst.ts:408:3:410:3 | [InterfaceDeclaration,TypeDefinition] interfa ... er; } | tst.ts:408:13:408:18 | [Identifier] HSVObj | semmle.order | 1 |
+| tst.ts:408:3:410:3 | [InterfaceDeclaration,TypeDefinition] interfa ... er; } | tst.ts:409:5:409:16 | [FieldDeclaration] hue: number; | semmle.label | 2 |
+| tst.ts:408:3:410:3 | [InterfaceDeclaration,TypeDefinition] interfa ... er; } | tst.ts:409:5:409:16 | [FieldDeclaration] hue: number; | semmle.order | 2 |
+| tst.ts:409:5:409:16 | [FieldDeclaration] hue: number; | tst.ts:409:5:409:7 | [Label] hue | semmle.label | 1 |
+| tst.ts:409:5:409:16 | [FieldDeclaration] hue: number; | tst.ts:409:5:409:7 | [Label] hue | semmle.order | 1 |
+| tst.ts:409:5:409:16 | [FieldDeclaration] hue: number; | tst.ts:409:10:409:15 | [KeywordTypeExpr] number | semmle.label | 2 |
+| tst.ts:409:5:409:16 | [FieldDeclaration] hue: number; | tst.ts:409:10:409:15 | [KeywordTypeExpr] number | semmle.order | 2 |
+| tst.ts:412:3:416:3 | [FunctionDeclStmt] functio ... } } | file://:0:0:0:0 | (Parameters) | semmle.label | 1 |
+| tst.ts:412:3:416:3 | [FunctionDeclStmt] functio ... } } | file://:0:0:0:0 | (Parameters) | semmle.order | 1 |
+| tst.ts:412:3:416:3 | [FunctionDeclStmt] functio ... } } | tst.ts:412:12:412:19 | [VarDecl] setColor | semmle.label | 0 |
+| tst.ts:412:3:416:3 | [FunctionDeclStmt] functio ... } } | tst.ts:412:12:412:19 | [VarDecl] setColor | semmle.order | 0 |
+| tst.ts:412:3:416:3 | [FunctionDeclStmt] functio ... } } | tst.ts:412:45:416:3 | [BlockStmt] { i ... } } | semmle.label | 5 |
+| tst.ts:412:3:416:3 | [FunctionDeclStmt] functio ... } } | tst.ts:412:45:416:3 | [BlockStmt] { i ... } } | semmle.order | 5 |
+| tst.ts:412:21:412:25 | [SimpleParameter] color | tst.ts:412:28:412:42 | [UnionTypeExpr] RGBObj \| HSVObj | semmle.label | 0 |
+| tst.ts:412:21:412:25 | [SimpleParameter] color | tst.ts:412:28:412:42 | [UnionTypeExpr] RGBObj \| HSVObj | semmle.order | 0 |
+| tst.ts:412:28:412:42 | [UnionTypeExpr] RGBObj \| HSVObj | tst.ts:412:28:412:33 | [LocalTypeAccess] RGBObj | semmle.label | 1 |
+| tst.ts:412:28:412:42 | [UnionTypeExpr] RGBObj \| HSVObj | tst.ts:412:28:412:33 | [LocalTypeAccess] RGBObj | semmle.order | 1 |
+| tst.ts:412:28:412:42 | [UnionTypeExpr] RGBObj \| HSVObj | tst.ts:412:37:412:42 | [LocalTypeAccess] HSVObj | semmle.label | 2 |
+| tst.ts:412:28:412:42 | [UnionTypeExpr] RGBObj \| HSVObj | tst.ts:412:37:412:42 | [LocalTypeAccess] HSVObj | semmle.order | 2 |
+| tst.ts:412:45:416:3 | [BlockStmt] { i ... } } | tst.ts:413:5:415:5 | [IfStmt] if ("hu ... j } | semmle.label | 1 |
+| tst.ts:412:45:416:3 | [BlockStmt] { i ... } } | tst.ts:413:5:415:5 | [IfStmt] if ("hu ... j } | semmle.order | 1 |
+| tst.ts:413:5:415:5 | [IfStmt] if ("hu ... j } | tst.ts:413:9:413:22 | [BinaryExpr] "hue" in color | semmle.label | 1 |
+| tst.ts:413:5:415:5 | [IfStmt] if ("hu ... j } | tst.ts:413:9:413:22 | [BinaryExpr] "hue" in color | semmle.order | 1 |
+| tst.ts:413:5:415:5 | [IfStmt] if ("hu ... j } | tst.ts:413:25:415:5 | [BlockStmt] { ... j } | semmle.label | 2 |
+| tst.ts:413:5:415:5 | [IfStmt] if ("hu ... j } | tst.ts:413:25:415:5 | [BlockStmt] { ... j } | semmle.order | 2 |
+| tst.ts:413:9:413:22 | [BinaryExpr] "hue" in color | tst.ts:413:9:413:13 | [Literal] "hue" | semmle.label | 1 |
+| tst.ts:413:9:413:22 | [BinaryExpr] "hue" in color | tst.ts:413:9:413:13 | [Literal] "hue" | semmle.order | 1 |
+| tst.ts:413:9:413:22 | [BinaryExpr] "hue" in color | tst.ts:413:18:413:22 | [VarRef] color | semmle.label | 2 |
+| tst.ts:413:9:413:22 | [BinaryExpr] "hue" in color | tst.ts:413:18:413:22 | [VarRef] color | semmle.order | 2 |
+| tst.ts:413:25:415:5 | [BlockStmt] { ... j } | tst.ts:414:7:414:20 | [DeclStmt] let h = ... | semmle.label | 1 |
+| tst.ts:413:25:415:5 | [BlockStmt] { ... j } | tst.ts:414:7:414:20 | [DeclStmt] let h = ... | semmle.order | 1 |
+| tst.ts:414:7:414:20 | [DeclStmt] let h = ... | tst.ts:414:11:414:19 | [VariableDeclarator] h = color | semmle.label | 1 |
+| tst.ts:414:7:414:20 | [DeclStmt] let h = ... | tst.ts:414:11:414:19 | [VariableDeclarator] h = color | semmle.order | 1 |
+| tst.ts:414:11:414:19 | [VariableDeclarator] h = color | tst.ts:414:11:414:11 | [VarDecl] h | semmle.label | 1 |
+| tst.ts:414:11:414:19 | [VariableDeclarator] h = color | tst.ts:414:11:414:11 | [VarDecl] h | semmle.order | 1 |
+| tst.ts:414:11:414:19 | [VariableDeclarator] h = color | tst.ts:414:15:414:19 | [VarRef] color | semmle.label | 2 |
+| tst.ts:414:11:414:19 | [VariableDeclarator] h = color | tst.ts:414:15:414:19 | [VarRef] color | semmle.order | 2 |
 | tstModuleCJS.cts:1:1:3:1 | [ExportDeclaration] export ... 'b'; } | tstModuleCJS.cts:1:8:3:1 | [FunctionDeclStmt] functio ... 'b'; } | semmle.label | 1 |
 | tstModuleCJS.cts:1:1:3:1 | [ExportDeclaration] export ... 'b'; } | tstModuleCJS.cts:1:8:3:1 | [FunctionDeclStmt] functio ... 'b'; } | semmle.order | 1 |
 | tstModuleCJS.cts:1:8:3:1 | [FunctionDeclStmt] functio ... 'b'; } | tstModuleCJS.cts:1:17:1:28 | [VarDecl] tstModuleCJS | semmle.label | 0 |
diff --git a/javascript/ql/test/library-tests/TypeScript/Types/tests.expected b/javascript/ql/test/library-tests/TypeScript/Types/tests.expected
index 4c549a09d56..c4866b51f81 100644
--- a/javascript/ql/test/library-tests/TypeScript/Types/tests.expected
+++ b/javascript/ql/test/library-tests/TypeScript/Types/tests.expected
@@ -543,6 +543,15 @@ getExprType
 | tst.ts:402:32:402:34 | red | [red: number, green: number, blue: number] |
 | tst.ts:402:36:402:37 | at | (index: number) => number |
 | tst.ts:402:39:402:39 | 0 | 0 |
+| tst.ts:405:5:405:7 | red | number |
+| tst.ts:409:5:409:7 | hue | number |
+| tst.ts:412:12:412:19 | setColor | (color: RGBObj \| HSVObj) => void |
+| tst.ts:412:21:412:25 | color | RGBObj \| HSVObj |
+| tst.ts:413:9:413:13 | "hue" | "hue" |
+| tst.ts:413:9:413:22 | "hue" in color | boolean |
+| tst.ts:413:18:413:22 | color | RGBObj \| HSVObj |
+| tst.ts:414:11:414:11 | h | HSVObj |
+| tst.ts:414:15:414:19 | color | HSVObj |
 | tstModuleCJS.cts:1:17:1:28 | tstModuleCJS | () => "a" \| "b" |
 | tstModuleCJS.cts:2:12:2:15 | Math | Math |
 | tstModuleCJS.cts:2:12:2:22 | Math.random | () => number |
@@ -650,6 +659,8 @@ getTypeDefinitionType
 | tst.ts:381:5:381:73 | type So ...  never; | 100 |
 | tst.ts:391:3:391:41 | type Co ... "blue"; | Colors |
 | tst.ts:393:3:393:56 | type RG ... umber]; | RGB |
+| tst.ts:404:3:406:3 | interfa ... er;\\n  } | RGBObj |
+| tst.ts:408:3:410:3 | interfa ... er;\\n  } | HSVObj |
 | type_alias.ts:1:1:1:17 | type B = boolean; | boolean |
 | type_alias.ts:5:1:5:50 | type Va ... ay<T>>; | ValueOrArray<T> |
 | type_alias.ts:9:1:15:13 | type Js ... Json[]; | Json |
@@ -966,6 +977,13 @@ getTypeExprType
 | tst.ts:399:30:399:35 | string | string |
 | tst.ts:399:30:399:41 | string \| RGB | string \| RGB |
 | tst.ts:399:39:399:41 | RGB | RGB |
+| tst.ts:404:13:404:18 | RGBObj | RGBObj |
+| tst.ts:405:10:405:15 | number | number |
+| tst.ts:408:13:408:18 | HSVObj | HSVObj |
+| tst.ts:409:10:409:15 | number | number |
+| tst.ts:412:28:412:33 | RGBObj | RGBObj |
+| tst.ts:412:28:412:42 | RGBObj \| HSVObj | RGBObj \| HSVObj |
+| tst.ts:412:37:412:42 | HSVObj | HSVObj |
 | tstModuleCJS.cts:1:33:1:35 | 'a' | "a" |
 | tstModuleCJS.cts:1:33:1:41 | 'a' \| 'b' | "a" \| "b" |
 | tstModuleCJS.cts:1:39:1:41 | 'b' | "b" |
@@ -1061,6 +1079,7 @@ referenceDefinition
 | Foo | tst.ts:165:5:167:5 | interfa ... ;\\n    } |
 | Foo | tst.ts:179:3:192:3 | class F ...    \\n  } |
 | Func | tst.ts:289:3:289:63 | type Fu ... > void; |
+| HSVObj | tst.ts:408:3:410:3 | interfa ... er;\\n  } |
 | HasArea | tst.ts:58:1:60:1 | interfa ... mber;\\n} |
 | I<S> | type_definitions.ts:3:1:5:1 | interfa ... x: S;\\n} |
 | I<number> | type_definitions.ts:3:1:5:1 | interfa ... x: S;\\n} |
@@ -1070,6 +1089,7 @@ referenceDefinition
 | NonAbstractDummy | tst.ts:54:1:56:1 | interfa ... mber;\\n} |
 | Person | tst.ts:222:3:234:3 | class P ...   }\\n  } |
 | RGB | tst.ts:393:3:393:56 | type RG ... umber]; |
+| RGBObj | tst.ts:404:3:406:3 | interfa ... er;\\n  } |
 | Shape | tst.ts:140:3:142:47 | type Sh ... mber }; |
 | State<T> | tst.ts:342:1:345:1 | interfa ... void;\\n} |
 | State<number> | tst.ts:342:1:345:1 | interfa ... void;\\n} |
@@ -1174,11 +1194,13 @@ unionIndex
 | "undefined" | 5 | "string" \| "number" \| "bigint" \| "boolean" \| "s... |
 | Error | 1 | Success \| Error |
 | Error | 1 | string \| Error |
+| HSVObj | 1 | RGBObj \| HSVObj |
 | Json[] | 5 | string \| number \| boolean \| { [property: string... |
 | Promise<number> | 2 | boolean \| Promise<number> |
 | PromiseLike<TResult1> | 1 | TResult1 \| PromiseLike<TResult1> |
 | PromiseLike<TResult2> | 1 | TResult2 \| PromiseLike<TResult2> |
 | RGB | 1 | string \| RGB |
+| RGBObj | 0 | RGBObj \| HSVObj |
 | Success | 0 | Success \| Error |
 | T | 0 | T \| ValueOrArray<T>[] |
 | TResult1 | 0 | TResult1 \| PromiseLike<TResult1> |
diff --git a/javascript/ql/test/library-tests/TypeScript/Types/tst.ts b/javascript/ql/test/library-tests/TypeScript/Types/tst.ts
index 6af2e73add8..4bb301ee867 100644
--- a/javascript/ql/test/library-tests/TypeScript/Types/tst.ts
+++ b/javascript/ql/test/library-tests/TypeScript/Types/tst.ts
@@ -400,4 +400,18 @@ module TS49 {
 
   // Both of these methods are still accessible!
   const redComponent = palette.red.at(0);
+
+  interface RGBObj {
+    red: number;
+  }
+
+  interface HSVObj {
+    hue: number;
+  }
+
+  function setColor(color: RGBObj | HSVObj) {
+    if ("hue" in color) {
+      let h = color; // <- HSVObj
+    }
+  }
 }
\ No newline at end of file

From d4c6f873af2c395ca0aa4bc041ec7751671b4bbb Mon Sep 17 00:00:00 2001
From: erik-krogh <erik-krogh@github.com>
Date: Mon, 14 Nov 2022 15:09:30 +0100
Subject: [PATCH 0323/1420] add test for auto-accessors

---
 .../TypeScript/Types/printAst.expected        | 90 +++++++++++++++----
 .../TypeScript/Types/tests.expected           | 12 +++
 .../library-tests/TypeScript/Types/tst.ts     |  9 ++
 3 files changed, 93 insertions(+), 18 deletions(-)

diff --git a/javascript/ql/test/library-tests/TypeScript/Types/printAst.expected b/javascript/ql/test/library-tests/TypeScript/Types/printAst.expected
index 0e2ed563dcf..2d553ec5df3 100644
--- a/javascript/ql/test/library-tests/TypeScript/Types/printAst.expected
+++ b/javascript/ql/test/library-tests/TypeScript/Types/printAst.expected
@@ -136,6 +136,7 @@ nodes
 | file://:0:0:0:0 | (Parameters) | semmle.label | (Parameters) |
 | file://:0:0:0:0 | (Parameters) | semmle.label | (Parameters) |
 | file://:0:0:0:0 | (Parameters) | semmle.label | (Parameters) |
+| file://:0:0:0:0 | (Parameters) | semmle.label | (Parameters) |
 | file://:0:0:0:0 | (TypeParameters) | semmle.label | (TypeParameters) |
 | file://:0:0:0:0 | (TypeParameters) | semmle.label | (TypeParameters) |
 | file://:0:0:0:0 | (TypeParameters) | semmle.label | (TypeParameters) |
@@ -1426,8 +1427,8 @@ nodes
 | tst.ts:385:56:385:56 | [Literal] 0 | semmle.label | [Literal] 0 |
 | tst.ts:385:59:385:63 | [Literal] false | semmle.label | [Literal] false |
 | tst.ts:385:66:385:71 | [Literal] "bye!" | semmle.label | [Literal] "bye!" |
-| tst.ts:390:1:417:1 | [NamespaceDeclaration] module ... } } } | semmle.label | [NamespaceDeclaration] module ... } } } |
-| tst.ts:390:1:417:1 | [NamespaceDeclaration] module ... } } } | semmle.order | 85 |
+| tst.ts:390:1:426:1 | [NamespaceDeclaration] module ... } } } | semmle.label | [NamespaceDeclaration] module ... } } } |
+| tst.ts:390:1:426:1 | [NamespaceDeclaration] module ... } } } | semmle.order | 85 |
 | tst.ts:390:8:390:11 | [VarDecl] TS49 | semmle.label | [VarDecl] TS49 |
 | tst.ts:391:3:391:41 | [TypeAliasDeclaration,TypeDefinition] type Co ... "blue"; | semmle.label | [TypeAliasDeclaration,TypeDefinition] type Co ... "blue"; |
 | tst.ts:391:8:391:13 | [Identifier] Colors | semmle.label | [Identifier] Colors |
@@ -1506,6 +1507,23 @@ nodes
 | tst.ts:414:11:414:11 | [VarDecl] h | semmle.label | [VarDecl] h |
 | tst.ts:414:11:414:19 | [VariableDeclarator] h = color | semmle.label | [VariableDeclarator] h = color |
 | tst.ts:414:15:414:19 | [VarRef] color | semmle.label | [VarRef] color |
+| tst.ts:419:3:425:3 | [ClassDefinition,TypeDefinition] class P ... } } | semmle.label | [ClassDefinition,TypeDefinition] class P ... } } |
+| tst.ts:419:9:419:14 | [VarDecl] Person | semmle.label | [VarDecl] Person |
+| tst.ts:420:5:420:26 | [FieldDeclaration] accesso ... string; | semmle.label | [FieldDeclaration] accesso ... string; |
+| tst.ts:420:14:420:17 | [Label] name | semmle.label | [Label] name |
+| tst.ts:420:20:420:25 | [KeywordTypeExpr] string | semmle.label | [KeywordTypeExpr] string |
+| tst.ts:422:5:424:5 | [ClassInitializedMember,ConstructorDefinition] constru ... ; } | semmle.label | [ClassInitializedMember,ConstructorDefinition] constru ... ; } |
+| tst.ts:422:5:424:5 | [FunctionExpr] constru ... ; } | semmle.label | [FunctionExpr] constru ... ; } |
+| tst.ts:422:5:424:5 | [Label] constructor | semmle.label | [Label] constructor |
+| tst.ts:422:17:422:20 | [SimpleParameter] name | semmle.label | [SimpleParameter] name |
+| tst.ts:422:23:422:28 | [KeywordTypeExpr] string | semmle.label | [KeywordTypeExpr] string |
+| tst.ts:422:31:424:5 | [BlockStmt] { ... ; } | semmle.label | [BlockStmt] { ... ; } |
+| tst.ts:423:7:423:10 | [ThisExpr] this | semmle.label | [ThisExpr] this |
+| tst.ts:423:7:423:15 | [DotExpr] this.name | semmle.label | [DotExpr] this.name |
+| tst.ts:423:7:423:22 | [AssignExpr] this.name = name | semmle.label | [AssignExpr] this.name = name |
+| tst.ts:423:7:423:23 | [ExprStmt] this.name = name; | semmle.label | [ExprStmt] this.name = name; |
+| tst.ts:423:12:423:15 | [Label] name | semmle.label | [Label] name |
+| tst.ts:423:19:423:22 | [VarRef] name | semmle.label | [VarRef] name |
 | tstModuleCJS.cts:1:1:3:1 | [ExportDeclaration] export ... 'b'; } | semmle.label | [ExportDeclaration] export ... 'b'; } |
 | tstModuleCJS.cts:1:1:3:1 | [ExportDeclaration] export ... 'b'; } | semmle.order | 86 |
 | tstModuleCJS.cts:1:8:3:1 | [FunctionDeclStmt] functio ... 'b'; } | semmle.label | [FunctionDeclStmt] functio ... 'b'; } |
@@ -2003,6 +2021,8 @@ edges
 | file://:0:0:0:0 | (Parameters) | tst.ts:383:46:383:46 | [SimpleParameter] y | semmle.order | 1 |
 | file://:0:0:0:0 | (Parameters) | tst.ts:412:21:412:25 | [SimpleParameter] color | semmle.label | 0 |
 | file://:0:0:0:0 | (Parameters) | tst.ts:412:21:412:25 | [SimpleParameter] color | semmle.order | 0 |
+| file://:0:0:0:0 | (Parameters) | tst.ts:422:17:422:20 | [SimpleParameter] name | semmle.label | 0 |
+| file://:0:0:0:0 | (Parameters) | tst.ts:422:17:422:20 | [SimpleParameter] name | semmle.order | 0 |
 | file://:0:0:0:0 | (Parameters) | type_alias.ts:14:10:14:17 | [SimpleParameter] property | semmle.label | 0 |
 | file://:0:0:0:0 | (Parameters) | type_alias.ts:14:10:14:17 | [SimpleParameter] property | semmle.order | 0 |
 | file://:0:0:0:0 | (Parameters) | type_alias.ts:21:19:21:21 | [SimpleParameter] key | semmle.label | 0 |
@@ -4289,22 +4309,24 @@ edges
 | tst.ts:385:55:385:72 | [ArrayExpr] [0, false, "bye!"] | tst.ts:385:59:385:63 | [Literal] false | semmle.order | 2 |
 | tst.ts:385:55:385:72 | [ArrayExpr] [0, false, "bye!"] | tst.ts:385:66:385:71 | [Literal] "bye!" | semmle.label | 3 |
 | tst.ts:385:55:385:72 | [ArrayExpr] [0, false, "bye!"] | tst.ts:385:66:385:71 | [Literal] "bye!" | semmle.order | 3 |
-| tst.ts:390:1:417:1 | [NamespaceDeclaration] module ... } } } | tst.ts:390:8:390:11 | [VarDecl] TS49 | semmle.label | 1 |
-| tst.ts:390:1:417:1 | [NamespaceDeclaration] module ... } } } | tst.ts:390:8:390:11 | [VarDecl] TS49 | semmle.order | 1 |
-| tst.ts:390:1:417:1 | [NamespaceDeclaration] module ... } } } | tst.ts:391:3:391:41 | [TypeAliasDeclaration,TypeDefinition] type Co ... "blue"; | semmle.label | 2 |
-| tst.ts:390:1:417:1 | [NamespaceDeclaration] module ... } } } | tst.ts:391:3:391:41 | [TypeAliasDeclaration,TypeDefinition] type Co ... "blue"; | semmle.order | 2 |
-| tst.ts:390:1:417:1 | [NamespaceDeclaration] module ... } } } | tst.ts:393:3:393:56 | [TypeAliasDeclaration,TypeDefinition] type RG ... umber]; | semmle.label | 3 |
-| tst.ts:390:1:417:1 | [NamespaceDeclaration] module ... } } } | tst.ts:393:3:393:56 | [TypeAliasDeclaration,TypeDefinition] type RG ... umber]; | semmle.order | 3 |
-| tst.ts:390:1:417:1 | [NamespaceDeclaration] module ... } } } | tst.ts:395:3:399:43 | [DeclStmt] const palette = ... | semmle.label | 4 |
-| tst.ts:390:1:417:1 | [NamespaceDeclaration] module ... } } } | tst.ts:395:3:399:43 | [DeclStmt] const palette = ... | semmle.order | 4 |
-| tst.ts:390:1:417:1 | [NamespaceDeclaration] module ... } } } | tst.ts:402:3:402:41 | [DeclStmt] const redComponent = ... | semmle.label | 5 |
-| tst.ts:390:1:417:1 | [NamespaceDeclaration] module ... } } } | tst.ts:402:3:402:41 | [DeclStmt] const redComponent = ... | semmle.order | 5 |
-| tst.ts:390:1:417:1 | [NamespaceDeclaration] module ... } } } | tst.ts:404:3:406:3 | [InterfaceDeclaration,TypeDefinition] interfa ... er; } | semmle.label | 6 |
-| tst.ts:390:1:417:1 | [NamespaceDeclaration] module ... } } } | tst.ts:404:3:406:3 | [InterfaceDeclaration,TypeDefinition] interfa ... er; } | semmle.order | 6 |
-| tst.ts:390:1:417:1 | [NamespaceDeclaration] module ... } } } | tst.ts:408:3:410:3 | [InterfaceDeclaration,TypeDefinition] interfa ... er; } | semmle.label | 7 |
-| tst.ts:390:1:417:1 | [NamespaceDeclaration] module ... } } } | tst.ts:408:3:410:3 | [InterfaceDeclaration,TypeDefinition] interfa ... er; } | semmle.order | 7 |
-| tst.ts:390:1:417:1 | [NamespaceDeclaration] module ... } } } | tst.ts:412:3:416:3 | [FunctionDeclStmt] functio ... } } | semmle.label | 8 |
-| tst.ts:390:1:417:1 | [NamespaceDeclaration] module ... } } } | tst.ts:412:3:416:3 | [FunctionDeclStmt] functio ... } } | semmle.order | 8 |
+| tst.ts:390:1:426:1 | [NamespaceDeclaration] module ... } } } | tst.ts:390:8:390:11 | [VarDecl] TS49 | semmle.label | 1 |
+| tst.ts:390:1:426:1 | [NamespaceDeclaration] module ... } } } | tst.ts:390:8:390:11 | [VarDecl] TS49 | semmle.order | 1 |
+| tst.ts:390:1:426:1 | [NamespaceDeclaration] module ... } } } | tst.ts:391:3:391:41 | [TypeAliasDeclaration,TypeDefinition] type Co ... "blue"; | semmle.label | 2 |
+| tst.ts:390:1:426:1 | [NamespaceDeclaration] module ... } } } | tst.ts:391:3:391:41 | [TypeAliasDeclaration,TypeDefinition] type Co ... "blue"; | semmle.order | 2 |
+| tst.ts:390:1:426:1 | [NamespaceDeclaration] module ... } } } | tst.ts:393:3:393:56 | [TypeAliasDeclaration,TypeDefinition] type RG ... umber]; | semmle.label | 3 |
+| tst.ts:390:1:426:1 | [NamespaceDeclaration] module ... } } } | tst.ts:393:3:393:56 | [TypeAliasDeclaration,TypeDefinition] type RG ... umber]; | semmle.order | 3 |
+| tst.ts:390:1:426:1 | [NamespaceDeclaration] module ... } } } | tst.ts:395:3:399:43 | [DeclStmt] const palette = ... | semmle.label | 4 |
+| tst.ts:390:1:426:1 | [NamespaceDeclaration] module ... } } } | tst.ts:395:3:399:43 | [DeclStmt] const palette = ... | semmle.order | 4 |
+| tst.ts:390:1:426:1 | [NamespaceDeclaration] module ... } } } | tst.ts:402:3:402:41 | [DeclStmt] const redComponent = ... | semmle.label | 5 |
+| tst.ts:390:1:426:1 | [NamespaceDeclaration] module ... } } } | tst.ts:402:3:402:41 | [DeclStmt] const redComponent = ... | semmle.order | 5 |
+| tst.ts:390:1:426:1 | [NamespaceDeclaration] module ... } } } | tst.ts:404:3:406:3 | [InterfaceDeclaration,TypeDefinition] interfa ... er; } | semmle.label | 6 |
+| tst.ts:390:1:426:1 | [NamespaceDeclaration] module ... } } } | tst.ts:404:3:406:3 | [InterfaceDeclaration,TypeDefinition] interfa ... er; } | semmle.order | 6 |
+| tst.ts:390:1:426:1 | [NamespaceDeclaration] module ... } } } | tst.ts:408:3:410:3 | [InterfaceDeclaration,TypeDefinition] interfa ... er; } | semmle.label | 7 |
+| tst.ts:390:1:426:1 | [NamespaceDeclaration] module ... } } } | tst.ts:408:3:410:3 | [InterfaceDeclaration,TypeDefinition] interfa ... er; } | semmle.order | 7 |
+| tst.ts:390:1:426:1 | [NamespaceDeclaration] module ... } } } | tst.ts:412:3:416:3 | [FunctionDeclStmt] functio ... } } | semmle.label | 8 |
+| tst.ts:390:1:426:1 | [NamespaceDeclaration] module ... } } } | tst.ts:412:3:416:3 | [FunctionDeclStmt] functio ... } } | semmle.order | 8 |
+| tst.ts:390:1:426:1 | [NamespaceDeclaration] module ... } } } | tst.ts:419:3:425:3 | [ClassDefinition,TypeDefinition] class P ... } } | semmle.label | 9 |
+| tst.ts:390:1:426:1 | [NamespaceDeclaration] module ... } } } | tst.ts:419:3:425:3 | [ClassDefinition,TypeDefinition] class P ... } } | semmle.order | 9 |
 | tst.ts:391:3:391:41 | [TypeAliasDeclaration,TypeDefinition] type Co ... "blue"; | tst.ts:391:8:391:13 | [Identifier] Colors | semmle.label | 1 |
 | tst.ts:391:3:391:41 | [TypeAliasDeclaration,TypeDefinition] type Co ... "blue"; | tst.ts:391:8:391:13 | [Identifier] Colors | semmle.order | 1 |
 | tst.ts:391:3:391:41 | [TypeAliasDeclaration,TypeDefinition] type Co ... "blue"; | tst.ts:391:17:391:40 | [UnionTypeExpr] "red" \| ... "blue" | semmle.label | 2 |
@@ -4445,6 +4467,38 @@ edges
 | tst.ts:414:11:414:19 | [VariableDeclarator] h = color | tst.ts:414:11:414:11 | [VarDecl] h | semmle.order | 1 |
 | tst.ts:414:11:414:19 | [VariableDeclarator] h = color | tst.ts:414:15:414:19 | [VarRef] color | semmle.label | 2 |
 | tst.ts:414:11:414:19 | [VariableDeclarator] h = color | tst.ts:414:15:414:19 | [VarRef] color | semmle.order | 2 |
+| tst.ts:419:3:425:3 | [ClassDefinition,TypeDefinition] class P ... } } | tst.ts:419:9:419:14 | [VarDecl] Person | semmle.label | 1 |
+| tst.ts:419:3:425:3 | [ClassDefinition,TypeDefinition] class P ... } } | tst.ts:419:9:419:14 | [VarDecl] Person | semmle.order | 1 |
+| tst.ts:419:3:425:3 | [ClassDefinition,TypeDefinition] class P ... } } | tst.ts:420:5:420:26 | [FieldDeclaration] accesso ... string; | semmle.label | 2 |
+| tst.ts:419:3:425:3 | [ClassDefinition,TypeDefinition] class P ... } } | tst.ts:420:5:420:26 | [FieldDeclaration] accesso ... string; | semmle.order | 2 |
+| tst.ts:419:3:425:3 | [ClassDefinition,TypeDefinition] class P ... } } | tst.ts:422:5:424:5 | [ClassInitializedMember,ConstructorDefinition] constru ... ; } | semmle.label | 3 |
+| tst.ts:419:3:425:3 | [ClassDefinition,TypeDefinition] class P ... } } | tst.ts:422:5:424:5 | [ClassInitializedMember,ConstructorDefinition] constru ... ; } | semmle.order | 3 |
+| tst.ts:420:5:420:26 | [FieldDeclaration] accesso ... string; | tst.ts:420:14:420:17 | [Label] name | semmle.label | 1 |
+| tst.ts:420:5:420:26 | [FieldDeclaration] accesso ... string; | tst.ts:420:14:420:17 | [Label] name | semmle.order | 1 |
+| tst.ts:420:5:420:26 | [FieldDeclaration] accesso ... string; | tst.ts:420:20:420:25 | [KeywordTypeExpr] string | semmle.label | 2 |
+| tst.ts:420:5:420:26 | [FieldDeclaration] accesso ... string; | tst.ts:420:20:420:25 | [KeywordTypeExpr] string | semmle.order | 2 |
+| tst.ts:422:5:424:5 | [ClassInitializedMember,ConstructorDefinition] constru ... ; } | tst.ts:422:5:424:5 | [FunctionExpr] constru ... ; } | semmle.label | 2 |
+| tst.ts:422:5:424:5 | [ClassInitializedMember,ConstructorDefinition] constru ... ; } | tst.ts:422:5:424:5 | [FunctionExpr] constru ... ; } | semmle.order | 2 |
+| tst.ts:422:5:424:5 | [ClassInitializedMember,ConstructorDefinition] constru ... ; } | tst.ts:422:5:424:5 | [Label] constructor | semmle.label | 1 |
+| tst.ts:422:5:424:5 | [ClassInitializedMember,ConstructorDefinition] constru ... ; } | tst.ts:422:5:424:5 | [Label] constructor | semmle.order | 1 |
+| tst.ts:422:5:424:5 | [FunctionExpr] constru ... ; } | file://:0:0:0:0 | (Parameters) | semmle.label | 1 |
+| tst.ts:422:5:424:5 | [FunctionExpr] constru ... ; } | file://:0:0:0:0 | (Parameters) | semmle.order | 1 |
+| tst.ts:422:5:424:5 | [FunctionExpr] constru ... ; } | tst.ts:422:31:424:5 | [BlockStmt] { ... ; } | semmle.label | 5 |
+| tst.ts:422:5:424:5 | [FunctionExpr] constru ... ; } | tst.ts:422:31:424:5 | [BlockStmt] { ... ; } | semmle.order | 5 |
+| tst.ts:422:17:422:20 | [SimpleParameter] name | tst.ts:422:23:422:28 | [KeywordTypeExpr] string | semmle.label | 0 |
+| tst.ts:422:17:422:20 | [SimpleParameter] name | tst.ts:422:23:422:28 | [KeywordTypeExpr] string | semmle.order | 0 |
+| tst.ts:422:31:424:5 | [BlockStmt] { ... ; } | tst.ts:423:7:423:23 | [ExprStmt] this.name = name; | semmle.label | 1 |
+| tst.ts:422:31:424:5 | [BlockStmt] { ... ; } | tst.ts:423:7:423:23 | [ExprStmt] this.name = name; | semmle.order | 1 |
+| tst.ts:423:7:423:15 | [DotExpr] this.name | tst.ts:423:7:423:10 | [ThisExpr] this | semmle.label | 1 |
+| tst.ts:423:7:423:15 | [DotExpr] this.name | tst.ts:423:7:423:10 | [ThisExpr] this | semmle.order | 1 |
+| tst.ts:423:7:423:15 | [DotExpr] this.name | tst.ts:423:12:423:15 | [Label] name | semmle.label | 2 |
+| tst.ts:423:7:423:15 | [DotExpr] this.name | tst.ts:423:12:423:15 | [Label] name | semmle.order | 2 |
+| tst.ts:423:7:423:22 | [AssignExpr] this.name = name | tst.ts:423:7:423:15 | [DotExpr] this.name | semmle.label | 1 |
+| tst.ts:423:7:423:22 | [AssignExpr] this.name = name | tst.ts:423:7:423:15 | [DotExpr] this.name | semmle.order | 1 |
+| tst.ts:423:7:423:22 | [AssignExpr] this.name = name | tst.ts:423:19:423:22 | [VarRef] name | semmle.label | 2 |
+| tst.ts:423:7:423:22 | [AssignExpr] this.name = name | tst.ts:423:19:423:22 | [VarRef] name | semmle.order | 2 |
+| tst.ts:423:7:423:23 | [ExprStmt] this.name = name; | tst.ts:423:7:423:22 | [AssignExpr] this.name = name | semmle.label | 1 |
+| tst.ts:423:7:423:23 | [ExprStmt] this.name = name; | tst.ts:423:7:423:22 | [AssignExpr] this.name = name | semmle.order | 1 |
 | tstModuleCJS.cts:1:1:3:1 | [ExportDeclaration] export ... 'b'; } | tstModuleCJS.cts:1:8:3:1 | [FunctionDeclStmt] functio ... 'b'; } | semmle.label | 1 |
 | tstModuleCJS.cts:1:1:3:1 | [ExportDeclaration] export ... 'b'; } | tstModuleCJS.cts:1:8:3:1 | [FunctionDeclStmt] functio ... 'b'; } | semmle.order | 1 |
 | tstModuleCJS.cts:1:8:3:1 | [FunctionDeclStmt] functio ... 'b'; } | tstModuleCJS.cts:1:17:1:28 | [VarDecl] tstModuleCJS | semmle.label | 0 |
diff --git a/javascript/ql/test/library-tests/TypeScript/Types/tests.expected b/javascript/ql/test/library-tests/TypeScript/Types/tests.expected
index c4866b51f81..c265205cf6b 100644
--- a/javascript/ql/test/library-tests/TypeScript/Types/tests.expected
+++ b/javascript/ql/test/library-tests/TypeScript/Types/tests.expected
@@ -552,6 +552,14 @@ getExprType
 | tst.ts:413:18:413:22 | color | RGBObj \| HSVObj |
 | tst.ts:414:11:414:11 | h | HSVObj |
 | tst.ts:414:15:414:19 | color | HSVObj |
+| tst.ts:419:9:419:14 | Person | Person |
+| tst.ts:420:14:420:17 | name | string |
+| tst.ts:422:5:424:5 | constru ... ;\\n    } | any |
+| tst.ts:422:17:422:20 | name | string |
+| tst.ts:423:7:423:15 | this.name | string |
+| tst.ts:423:7:423:22 | this.name = name | string |
+| tst.ts:423:12:423:15 | name | string |
+| tst.ts:423:19:423:22 | name | string |
 | tstModuleCJS.cts:1:17:1:28 | tstModuleCJS | () => "a" \| "b" |
 | tstModuleCJS.cts:2:12:2:15 | Math | Math |
 | tstModuleCJS.cts:2:12:2:22 | Math.random | () => number |
@@ -661,6 +669,7 @@ getTypeDefinitionType
 | tst.ts:393:3:393:56 | type RG ... umber]; | RGB |
 | tst.ts:404:3:406:3 | interfa ... er;\\n  } | RGBObj |
 | tst.ts:408:3:410:3 | interfa ... er;\\n  } | HSVObj |
+| tst.ts:419:3:425:3 | class P ...   }\\n  } | Person |
 | type_alias.ts:1:1:1:17 | type B = boolean; | boolean |
 | type_alias.ts:5:1:5:50 | type Va ... ay<T>>; | ValueOrArray<T> |
 | type_alias.ts:9:1:15:13 | type Js ... Json[]; | Json |
@@ -984,6 +993,8 @@ getTypeExprType
 | tst.ts:412:28:412:33 | RGBObj | RGBObj |
 | tst.ts:412:28:412:42 | RGBObj \| HSVObj | RGBObj \| HSVObj |
 | tst.ts:412:37:412:42 | HSVObj | HSVObj |
+| tst.ts:420:20:420:25 | string | string |
+| tst.ts:422:23:422:28 | string | string |
 | tstModuleCJS.cts:1:33:1:35 | 'a' | "a" |
 | tstModuleCJS.cts:1:33:1:41 | 'a' \| 'b' | "a" \| "b" |
 | tstModuleCJS.cts:1:39:1:41 | 'b' | "b" |
@@ -1088,6 +1099,7 @@ referenceDefinition
 | MyUnion2 | tst.ts:68:1:68:49 | type My ...  true}; |
 | NonAbstractDummy | tst.ts:54:1:56:1 | interfa ... mber;\\n} |
 | Person | tst.ts:222:3:234:3 | class P ...   }\\n  } |
+| Person | tst.ts:419:3:425:3 | class P ...   }\\n  } |
 | RGB | tst.ts:393:3:393:56 | type RG ... umber]; |
 | RGBObj | tst.ts:404:3:406:3 | interfa ... er;\\n  } |
 | Shape | tst.ts:140:3:142:47 | type Sh ... mber }; |
diff --git a/javascript/ql/test/library-tests/TypeScript/Types/tst.ts b/javascript/ql/test/library-tests/TypeScript/Types/tst.ts
index 4bb301ee867..74411db37a9 100644
--- a/javascript/ql/test/library-tests/TypeScript/Types/tst.ts
+++ b/javascript/ql/test/library-tests/TypeScript/Types/tst.ts
@@ -414,4 +414,13 @@ module TS49 {
       let h = color; // <- HSVObj
     }
   }
+
+  // auto-accessors
+  class Person {
+    accessor name: string; // behaves as a normal field for our purposes
+
+    constructor(name: string) {
+      this.name = name;
+    }
+  }
 }
\ No newline at end of file

From 1f90f7dd4d7de9d8aeb870a1cc1fde05b1bfdf05 Mon Sep 17 00:00:00 2001
From: erik-krogh <erik-krogh@github.com>
Date: Mon, 14 Nov 2022 15:26:55 +0100
Subject: [PATCH 0324/1420] add upgrade script

---
 .../old.dbscheme                              | 1217 ++++++++++++++++
 .../semmlecode.javascript.dbscheme            | 1218 +++++++++++++++++
 .../upgrade.properties                        |    2 +
 3 files changed, 2437 insertions(+)
 create mode 100644 javascript/ql/lib/upgrades/c0664d5721c90dd32a5b167efea24f9cc6f57cfb/old.dbscheme
 create mode 100644 javascript/ql/lib/upgrades/c0664d5721c90dd32a5b167efea24f9cc6f57cfb/semmlecode.javascript.dbscheme
 create mode 100644 javascript/ql/lib/upgrades/c0664d5721c90dd32a5b167efea24f9cc6f57cfb/upgrade.properties

diff --git a/javascript/ql/lib/upgrades/c0664d5721c90dd32a5b167efea24f9cc6f57cfb/old.dbscheme b/javascript/ql/lib/upgrades/c0664d5721c90dd32a5b167efea24f9cc6f57cfb/old.dbscheme
new file mode 100644
index 00000000000..c0664d5721c
--- /dev/null
+++ b/javascript/ql/lib/upgrades/c0664d5721c90dd32a5b167efea24f9cc6f57cfb/old.dbscheme
@@ -0,0 +1,1217 @@
+/*** Standard fragments ***/
+
+/** Files and folders **/
+
+@location = @location_default;
+
+locations_default(unique int id: @location_default,
+          int file: @file ref,
+          int beginLine: int ref,
+          int beginColumn: int ref,
+          int endLine: int ref,
+          int endColumn: int ref
+         );
+
+@sourceline = @locatable;
+
+numlines(int element_id: @sourceline ref,
+         int num_lines: int ref,
+         int num_code: int ref,
+         int num_comment: int ref
+        );
+
+files(unique int id: @file,
+      varchar(900) name: string ref);
+
+folders(unique int id: @folder,
+        varchar(900) name: string ref);
+
+
+@container = @folder | @file ;
+
+
+containerparent(int parent: @container ref,
+                unique int child: @container ref);
+
+/** Duplicate code **/
+
+duplicateCode(
+  unique int id : @duplication,
+  varchar(900) relativePath : string ref,
+  int equivClass : int ref);
+
+similarCode(
+  unique int id : @similarity,
+  varchar(900) relativePath : string ref,
+  int equivClass : int ref);
+
+@duplication_or_similarity = @duplication | @similarity;
+
+tokens(
+  int id : @duplication_or_similarity ref,
+  int offset : int ref,
+  int beginLine : int ref,
+  int beginColumn : int ref,
+  int endLine : int ref,
+  int endColumn : int ref);
+
+/** External data **/
+
+externalData(
+  int id : @externalDataElement,
+  varchar(900) path : string ref,
+  int column: int ref,
+  varchar(900) value : string ref
+);
+
+snapshotDate(unique date snapshotDate : date ref);
+
+sourceLocationPrefix(varchar(900) prefix : string ref);
+
+/** Version control data **/
+
+svnentries(
+  int id : @svnentry,
+  varchar(500) revision : string ref,
+  varchar(500) author : string ref,
+  date revisionDate : date ref,
+  int changeSize : int ref
+);
+
+svnaffectedfiles(
+  int id : @svnentry ref,
+  int file : @file ref,
+  varchar(500) action : string ref
+);
+
+svnentrymsg(
+  int id : @svnentry ref,
+  varchar(500) message : string ref
+);
+
+svnchurn(
+  int commit : @svnentry ref,
+  int file : @file ref,
+  int addedLines : int ref,
+  int deletedLines : int ref
+);
+
+
+/*** JavaScript-specific part ***/
+
+filetype(
+  int file: @file ref,
+  string filetype: string ref
+)
+
+// top-level code fragments
+toplevels (unique int id: @toplevel,
+           int kind: int ref);
+
+is_externs (int toplevel: @toplevel ref);
+
+case @toplevel.kind of
+   0 = @script
+|  1 = @inline_script
+|  2 = @event_handler
+|  3 = @javascript_url
+|  4 = @template_toplevel;
+
+is_module (int tl: @toplevel ref);
+is_nodejs (int tl: @toplevel ref);
+is_es2015_module (int tl: @toplevel ref);
+is_closure_module (int tl: @toplevel ref);
+
+@xml_node_with_code = @xmlelement | @xmlattribute | @template_placeholder_tag;
+toplevel_parent_xml_node(
+  unique int toplevel: @toplevel ref,
+  int xmlnode: @xml_node_with_code ref);
+
+xml_element_parent_expression(
+  unique int xmlnode: @xmlelement ref,
+  int expression: @expr ref,
+  int index: int ref);
+
+// statements
+#keyset[parent, idx]
+stmts (unique int id: @stmt,
+       int kind: int ref,
+       int parent: @stmt_parent ref,
+       int idx: int ref,
+       varchar(900) tostring: string ref);
+
+stmt_containers (unique int stmt: @stmt ref,
+       int container: @stmt_container ref);
+
+jump_targets (unique int jump: @stmt ref,
+       int target: @stmt ref);
+
+@stmt_parent = @stmt | @toplevel | @function_expr | @arrow_function_expr | @static_initializer;
+@stmt_container = @toplevel | @function | @namespace_declaration | @external_module_declaration | @global_augmentation_declaration;
+
+case @stmt.kind of
+   0 = @empty_stmt
+|  1 = @block_stmt
+|  2 = @expr_stmt
+|  3 = @if_stmt
+|  4 = @labeled_stmt
+|  5 = @break_stmt
+|  6 = @continue_stmt
+|  7 = @with_stmt
+|  8 = @switch_stmt
+|  9 = @return_stmt
+| 10 = @throw_stmt
+| 11 = @try_stmt
+| 12 = @while_stmt
+| 13 = @do_while_stmt
+| 14 = @for_stmt
+| 15 = @for_in_stmt
+| 16 = @debugger_stmt
+| 17 = @function_decl_stmt
+| 18 = @var_decl_stmt
+| 19 = @case
+| 20 = @catch_clause
+| 21 = @for_of_stmt
+| 22 = @const_decl_stmt
+| 23 = @let_stmt
+| 24 = @legacy_let_stmt
+| 25 = @for_each_stmt
+| 26 = @class_decl_stmt
+| 27 = @import_declaration
+| 28 = @export_all_declaration
+| 29 = @export_default_declaration
+| 30 = @export_named_declaration
+| 31 = @namespace_declaration
+| 32 = @import_equals_declaration
+| 33 = @export_assign_declaration
+| 34 = @interface_declaration
+| 35 = @type_alias_declaration
+| 36 = @enum_declaration
+| 37 = @external_module_declaration
+| 38 = @export_as_namespace_declaration
+| 39 = @global_augmentation_declaration
+;
+
+@decl_stmt = @var_decl_stmt | @const_decl_stmt | @let_stmt | @legacy_let_stmt;
+
+@export_declaration = @export_all_declaration | @export_default_declaration | @export_named_declaration;
+
+@namespace_definition = @namespace_declaration | @enum_declaration;
+@type_definition = @class_definition | @interface_declaration | @enum_declaration | @type_alias_declaration | @enum_member;
+
+is_instantiated(unique int decl: @namespace_declaration ref);
+
+@declarable_node = @decl_stmt | @namespace_declaration | @class_decl_stmt | @function_decl_stmt | @enum_declaration | @external_module_declaration | @global_augmentation_declaration | @field;
+has_declare_keyword(unique int stmt: @declarable_node ref);
+
+is_for_await_of(unique int forof: @for_of_stmt ref);
+
+// expressions
+#keyset[parent, idx]
+exprs (unique int id: @expr,
+       int kind: int ref,
+       int parent: @expr_parent ref,
+       int idx: int ref,
+       varchar(900) tostring: string ref);
+
+literals (varchar(900) value: string ref,
+       varchar(900) raw: string ref,
+       unique int expr: @expr_or_type ref);
+
+enclosing_stmt (unique int expr: @expr_or_type ref,
+       int stmt: @stmt ref);
+
+expr_containers (unique int expr: @expr_or_type ref,
+       int container: @stmt_container ref);
+
+array_size (unique int ae: @arraylike ref,
+       int sz: int ref);
+
+is_delegating (int yield: @yield_expr ref);
+
+@expr_or_stmt = @expr | @stmt;
+@expr_or_type = @expr | @typeexpr;
+@expr_parent = @expr_or_stmt | @property | @function_typeexpr;
+@arraylike = @array_expr | @array_pattern;
+@type_annotation = @typeexpr | @jsdoc_type_expr;
+@node_in_stmt_container = @cfg_node | @type_annotation | @toplevel;
+
+case @expr.kind of
+   0 = @label
+|  1 = @null_literal
+|  2 = @boolean_literal
+|  3 = @number_literal
+|  4 = @string_literal
+|  5 = @regexp_literal
+|  6 = @this_expr
+|  7 = @array_expr
+|  8 = @obj_expr
+|  9 = @function_expr
+| 10 = @seq_expr
+| 11 = @conditional_expr
+| 12 = @new_expr
+| 13 = @call_expr
+| 14 = @dot_expr
+| 15 = @index_expr
+| 16 = @neg_expr
+| 17 = @plus_expr
+| 18 = @log_not_expr
+| 19 = @bit_not_expr
+| 20 = @typeof_expr
+| 21 = @void_expr
+| 22 = @delete_expr
+| 23 = @eq_expr
+| 24 = @neq_expr
+| 25 = @eqq_expr
+| 26 = @neqq_expr
+| 27 = @lt_expr
+| 28 = @le_expr
+| 29 = @gt_expr
+| 30 = @ge_expr
+| 31 = @lshift_expr
+| 32 = @rshift_expr
+| 33 = @urshift_expr
+| 34 = @add_expr
+| 35 = @sub_expr
+| 36 = @mul_expr
+| 37 = @div_expr
+| 38 = @mod_expr
+| 39 = @bitor_expr
+| 40 = @xor_expr
+| 41 = @bitand_expr
+| 42 = @in_expr
+| 43 = @instanceof_expr
+| 44 = @logand_expr
+| 45 = @logor_expr
+| 47 = @assign_expr
+| 48 = @assign_add_expr
+| 49 = @assign_sub_expr
+| 50 = @assign_mul_expr
+| 51 = @assign_div_expr
+| 52 = @assign_mod_expr
+| 53 = @assign_lshift_expr
+| 54 = @assign_rshift_expr
+| 55 = @assign_urshift_expr
+| 56 = @assign_or_expr
+| 57 = @assign_xor_expr
+| 58 = @assign_and_expr
+| 59 = @preinc_expr
+| 60 = @postinc_expr
+| 61 = @predec_expr
+| 62 = @postdec_expr
+| 63 = @par_expr
+| 64 = @var_declarator
+| 65 = @arrow_function_expr
+| 66 = @spread_element
+| 67 = @array_pattern
+| 68 = @object_pattern
+| 69 = @yield_expr
+| 70 = @tagged_template_expr
+| 71 = @template_literal
+| 72 = @template_element
+| 73 = @array_comprehension_expr
+| 74 = @generator_expr
+| 75 = @for_in_comprehension_block
+| 76 = @for_of_comprehension_block
+| 77 = @legacy_letexpr
+| 78 = @var_decl
+| 79 = @proper_varaccess
+| 80 = @class_expr
+| 81 = @super_expr
+| 82 = @newtarget_expr
+| 83 = @named_import_specifier
+| 84 = @import_default_specifier
+| 85 = @import_namespace_specifier
+| 86 = @named_export_specifier
+| 87 = @exp_expr
+| 88 = @assign_exp_expr
+| 89 = @jsx_element
+| 90 = @jsx_qualified_name
+| 91 = @jsx_empty_expr
+| 92 = @await_expr
+| 93 = @function_sent_expr
+| 94 = @decorator
+| 95 = @export_default_specifier
+| 96 = @export_namespace_specifier
+| 97 = @bind_expr
+| 98 = @external_module_reference
+| 99 = @dynamic_import
+| 100 = @expression_with_type_arguments
+| 101 = @prefix_type_assertion
+| 102 = @as_type_assertion
+| 103 = @export_varaccess
+| 104 = @decorator_list
+| 105 = @non_null_assertion
+| 106 = @bigint_literal
+| 107 = @nullishcoalescing_expr
+| 108 = @e4x_xml_anyname
+| 109 = @e4x_xml_static_attribute_selector
+| 110 = @e4x_xml_dynamic_attribute_selector
+| 111 = @e4x_xml_filter_expression
+| 112 = @e4x_xml_static_qualident
+| 113 = @e4x_xml_dynamic_qualident
+| 114 = @e4x_xml_dotdotexpr
+| 115 = @import_meta_expr
+| 116 = @assignlogandexpr
+| 117 = @assignlogorexpr
+| 118 = @assignnullishcoalescingexpr
+| 119 = @template_pipe_ref
+| 120 = @generated_code_expr
+;
+
+@varaccess = @proper_varaccess | @export_varaccess;
+@varref = @var_decl | @varaccess;
+
+@identifier = @label | @varref | @type_identifier;
+
+@literal = @null_literal | @boolean_literal | @number_literal | @string_literal | @regexp_literal | @bigint_literal;
+
+@propaccess = @dot_expr | @index_expr;
+
+@invokeexpr = @new_expr | @call_expr;
+
+@unaryexpr = @neg_expr | @plus_expr | @log_not_expr | @bit_not_expr | @typeof_expr | @void_expr | @delete_expr | @spread_element;
+
+@equality_test = @eq_expr | @neq_expr | @eqq_expr | @neqq_expr;
+
+@comparison = @equality_test | @lt_expr | @le_expr | @gt_expr | @ge_expr;
+
+@binaryexpr = @comparison | @lshift_expr | @rshift_expr | @urshift_expr | @add_expr | @sub_expr | @mul_expr | @div_expr | @mod_expr | @exp_expr | @bitor_expr | @xor_expr | @bitand_expr | @in_expr | @instanceof_expr | @logand_expr | @logor_expr | @nullishcoalescing_expr;
+
+@assignment = @assign_expr | @assign_add_expr | @assign_sub_expr | @assign_mul_expr | @assign_div_expr | @assign_mod_expr | @assign_exp_expr | @assign_lshift_expr | @assign_rshift_expr | @assign_urshift_expr | @assign_or_expr | @assign_xor_expr | @assign_and_expr | @assignlogandexpr | @assignlogorexpr | @assignnullishcoalescingexpr;
+
+@updateexpr = @preinc_expr | @postinc_expr | @predec_expr | @postdec_expr;
+
+@pattern = @varref | @array_pattern | @object_pattern;
+
+@comprehension_expr = @array_comprehension_expr | @generator_expr;
+
+@comprehension_block = @for_in_comprehension_block | @for_of_comprehension_block;
+
+@import_specifier = @named_import_specifier | @import_default_specifier | @import_namespace_specifier;
+
+@exportspecifier = @named_export_specifier | @export_default_specifier | @export_namespace_specifier;
+
+@type_keyword_operand = @import_declaration | @export_declaration | @import_specifier;
+
+@type_assertion = @as_type_assertion | @prefix_type_assertion;
+
+@class_definition = @class_decl_stmt | @class_expr;
+@interface_definition = @interface_declaration | @interface_typeexpr;
+@class_or_interface = @class_definition | @interface_definition;
+
+@lexical_decl = @var_decl | @type_decl;
+@lexical_access = @varaccess | @local_type_access | @local_var_type_access | @local_namespace_access;
+@lexical_ref = @lexical_decl | @lexical_access;
+
+@e4x_xml_attribute_selector = @e4x_xml_static_attribute_selector | @e4x_xml_dynamic_attribute_selector;
+@e4x_xml_qualident = @e4x_xml_static_qualident | @e4x_xml_dynamic_qualident;
+
+expr_contains_template_tag_location(
+  int expr: @expr ref,
+  int location: @location ref
+);
+
+@template_placeholder_tag_parent = @xmlelement | @xmlattribute | @file;
+
+template_placeholder_tag_info(
+  unique int node: @template_placeholder_tag,
+  int parentNode: @template_placeholder_tag_parent ref,
+  varchar(900) raw: string ref
+);
+
+// scopes
+scopes (unique int id: @scope,
+        int kind: int ref);
+
+case @scope.kind of
+   0 = @global_scope
+|  1 = @function_scope
+|  2 = @catch_scope
+|  3 = @module_scope
+|  4 = @block_scope
+|  5 = @for_scope
+|  6 = @for_in_scope // for-of scopes work the same as for-in scopes
+|  7 = @comprehension_block_scope
+|  8 = @class_expr_scope
+|  9 = @namespace_scope
+| 10 = @class_decl_scope
+| 11 = @interface_scope
+| 12 = @type_alias_scope
+| 13 = @mapped_type_scope
+| 14 = @enum_scope
+| 15 = @external_module_scope
+| 16 = @conditional_type_scope;
+
+scopenodes (unique int node: @ast_node ref,
+            int scope: @scope ref);
+
+scopenesting (unique int inner: @scope ref,
+              int outer: @scope ref);
+
+// functions
+@function = @function_decl_stmt | @function_expr | @arrow_function_expr;
+
+@parameterized = @function | @catch_clause;
+@type_parameterized = @function | @class_or_interface | @type_alias_declaration | @mapped_typeexpr | @infer_typeexpr;
+
+is_generator (int fun: @function ref);
+has_rest_parameter (int fun: @function ref);
+is_async (int fun: @function ref);
+
+// variables and lexically scoped type names
+#keyset[scope, name]
+variables (unique int id: @variable,
+           varchar(900) name: string ref,
+           int scope: @scope ref);
+
+#keyset[scope, name]
+local_type_names (unique int id: @local_type_name,
+                  varchar(900) name: string ref,
+                  int scope: @scope ref);
+
+#keyset[scope, name]
+local_namespace_names (unique int id: @local_namespace_name,
+                       varchar(900) name: string ref,
+                       int scope: @scope ref);
+
+is_arguments_object (int id: @variable ref);
+
+@lexical_name = @variable | @local_type_name | @local_namespace_name;
+
+@bind_id = @varaccess | @local_var_type_access;
+bind (unique int id: @bind_id ref,
+      int decl: @variable ref);
+
+decl (unique int id: @var_decl ref,
+      int decl: @variable ref);
+
+@typebind_id = @local_type_access | @export_varaccess;
+typebind (unique int id: @typebind_id ref,
+          int decl: @local_type_name ref);
+
+@typedecl_id = @type_decl | @var_decl;
+typedecl (unique int id: @typedecl_id ref,
+          int decl: @local_type_name ref);
+
+namespacedecl (unique int id: @var_decl ref,
+               int decl: @local_namespace_name ref);
+
+@namespacebind_id = @local_namespace_access | @export_varaccess;
+namespacebind (unique int id: @namespacebind_id ref,
+               int decl: @local_namespace_name ref);
+
+
+// properties in object literals, property patterns in object patterns, and method declarations in classes
+#keyset[parent, index]
+properties (unique int id: @property,
+            int parent: @property_parent ref,
+            int index: int ref,
+            int kind: int ref,
+            varchar(900) tostring: string ref);
+
+case @property.kind of
+  0 = @value_property
+| 1 = @property_getter
+| 2 = @property_setter
+| 3 = @jsx_attribute
+| 4 = @function_call_signature
+| 5 = @constructor_call_signature
+| 6 = @index_signature
+| 7 = @enum_member
+| 8 = @proper_field
+| 9 = @parameter_field
+| 10 = @static_initializer
+;
+
+@property_parent = @obj_expr | @object_pattern | @class_definition | @jsx_element | @interface_definition | @enum_declaration;
+@property_accessor = @property_getter | @property_setter;
+@call_signature = @function_call_signature | @constructor_call_signature;
+@field = @proper_field | @parameter_field;
+@field_or_vardeclarator = @field | @var_declarator;
+
+is_computed (int id: @property ref);
+is_method   (int id: @property ref);
+is_static   (int id: @property ref);
+is_abstract_member (int id: @property ref);
+is_const_enum (int id: @enum_declaration ref);
+is_abstract_class (int id: @class_decl_stmt ref);
+
+has_public_keyword (int id: @property ref);
+has_private_keyword (int id: @property ref);
+has_protected_keyword (int id: @property ref);
+has_readonly_keyword (int id: @property ref);
+has_type_keyword (int id: @type_keyword_operand ref);
+is_optional_member (int id: @property ref);
+has_definite_assignment_assertion (int id: @field_or_vardeclarator ref);
+is_optional_parameter_declaration (unique int parameter: @pattern ref);
+
+#keyset[constructor, param_index]
+parameter_fields(
+  unique int field: @parameter_field ref,
+  int constructor: @function_expr ref,
+  int param_index: int ref
+);
+
+// types
+#keyset[parent, idx]
+typeexprs (
+  unique int id: @typeexpr,
+  int kind: int ref,
+  int parent: @typeexpr_parent ref,
+  int idx: int ref,
+  varchar(900) tostring: string ref
+);
+
+case @typeexpr.kind of
+  0 = @local_type_access
+| 1 = @type_decl
+| 2 = @keyword_typeexpr
+| 3 = @string_literal_typeexpr
+| 4 = @number_literal_typeexpr
+| 5 = @boolean_literal_typeexpr
+| 6 = @array_typeexpr
+| 7 = @union_typeexpr
+| 8 = @indexed_access_typeexpr
+| 9 = @intersection_typeexpr
+| 10 = @parenthesized_typeexpr
+| 11 = @tuple_typeexpr
+| 12 = @keyof_typeexpr
+| 13 = @qualified_type_access
+| 14 = @generic_typeexpr
+| 15 = @type_label
+| 16 = @typeof_typeexpr
+| 17 = @local_var_type_access
+| 18 = @qualified_var_type_access
+| 19 = @this_var_type_access
+| 20 = @predicate_typeexpr
+| 21 = @interface_typeexpr
+| 22 = @type_parameter
+| 23 = @plain_function_typeexpr
+| 24 = @constructor_typeexpr
+| 25 = @local_namespace_access
+| 26 = @qualified_namespace_access
+| 27 = @mapped_typeexpr
+| 28 = @conditional_typeexpr
+| 29 = @infer_typeexpr
+| 30 = @import_type_access
+| 31 = @import_namespace_access
+| 32 = @import_var_type_access
+| 33 = @optional_typeexpr
+| 34 = @rest_typeexpr
+| 35 = @bigint_literal_typeexpr
+| 36 = @readonly_typeexpr
+| 37 = @template_literal_typeexpr
+;
+
+@typeref = @typeaccess | @type_decl;
+@type_identifier = @type_decl | @local_type_access | @type_label | @local_var_type_access | @local_namespace_access;
+@typeexpr_parent = @expr | @stmt | @property | @typeexpr;
+@literal_typeexpr = @string_literal_typeexpr | @number_literal_typeexpr | @boolean_literal_typeexpr | @bigint_literal_typeexpr;
+@typeaccess = @local_type_access | @qualified_type_access | @import_type_access;
+@vartypeaccess = @local_var_type_access | @qualified_var_type_access | @this_var_type_access | @import_var_type_access;
+@namespace_access = @local_namespace_access | @qualified_namespace_access | @import_namespace_access;
+@import_typeexpr = @import_type_access | @import_namespace_access | @import_var_type_access;
+
+@function_typeexpr = @plain_function_typeexpr | @constructor_typeexpr;
+
+// types
+types (
+  unique int id: @type,
+  int kind: int ref,
+  varchar(900) tostring: string ref
+);
+
+#keyset[parent, idx]
+type_child (
+  int child: @type ref,
+  int parent: @type ref,
+  int idx: int ref
+);
+
+case @type.kind of
+  0 = @any_type
+| 1 = @string_type
+| 2 = @number_type
+| 3 = @union_type
+| 4 = @true_type
+| 5 = @false_type
+| 6 = @type_reference
+| 7 = @object_type
+| 8 = @canonical_type_variable_type
+| 9 = @typeof_type
+| 10 = @void_type
+| 11 = @undefined_type
+| 12 = @null_type
+| 13 = @never_type
+| 14 = @plain_symbol_type
+| 15 = @unique_symbol_type
+| 16 = @objectkeyword_type
+| 17 = @intersection_type
+| 18 = @tuple_type
+| 19 = @lexical_type_variable_type
+| 20 = @this_type
+| 21 = @number_literal_type
+| 22 = @string_literal_type
+| 23 = @unknown_type
+| 24 = @bigint_type
+| 25 = @bigint_literal_type
+;
+
+@boolean_literal_type = @true_type | @false_type;
+@symbol_type = @plain_symbol_type | @unique_symbol_type;
+@union_or_intersection_type = @union_type | @intersection_type;
+@typevariable_type = @canonical_type_variable_type | @lexical_type_variable_type;
+
+has_asserts_keyword(int node: @predicate_typeexpr ref);
+
+@typed_ast_node = @expr | @typeexpr | @function;
+ast_node_type(
+  unique int node: @typed_ast_node ref,
+  int typ: @type ref);
+
+declared_function_signature(
+  unique int node: @function ref,
+  int sig: @signature_type ref
+);
+
+invoke_expr_signature(
+  unique int node: @invokeexpr ref,
+  int sig: @signature_type ref
+);
+
+invoke_expr_overload_index(
+  unique int node: @invokeexpr ref,
+  int index: int ref
+);
+
+symbols (
+  unique int id: @symbol,
+  int kind: int ref,
+  varchar(900) name: string ref
+);
+
+symbol_parent (
+  unique int symbol: @symbol ref,
+  int parent: @symbol ref
+);
+
+symbol_module (
+  int symbol: @symbol ref,
+  varchar(900) moduleName: string ref
+);
+
+symbol_global (
+  int symbol: @symbol ref,
+  varchar(900) globalName: string ref
+);
+
+case @symbol.kind of
+  0 = @root_symbol
+| 1 = @member_symbol
+| 2 = @other_symbol
+;
+
+@type_with_symbol = @type_reference | @typevariable_type | @typeof_type | @unique_symbol_type;
+@ast_node_with_symbol = @type_definition | @namespace_definition | @toplevel | @typeaccess | @namespace_access | @var_decl | @function | @invokeexpr | @import_declaration | @external_module_reference | @external_module_declaration;
+
+ast_node_symbol(
+  unique int node: @ast_node_with_symbol ref,
+  int symbol: @symbol ref);
+
+type_symbol(
+  unique int typ: @type_with_symbol ref,
+  int symbol: @symbol ref);
+
+#keyset[typ, name]
+type_property(
+  int typ: @type ref,
+  varchar(900) name: string ref,
+  int propertyType: @type ref);
+
+type_alias(
+  unique int aliasType: @type ref,
+  int underlyingType: @type ref);
+
+@literal_type = @string_literal_type | @number_literal_type | @boolean_literal_type | @bigint_literal_type;
+@type_with_literal_value = @string_literal_type | @number_literal_type | @bigint_literal_type;
+type_literal_value(
+  unique int typ: @type_with_literal_value ref,
+  varchar(900) value: string ref);
+
+signature_types (
+  unique int id: @signature_type,
+  int kind: int ref,
+  varchar(900) tostring: string ref,
+  int type_parameters: int ref,
+  int required_params: int ref
+);
+
+is_abstract_signature(
+  unique int sig: @signature_type ref
+);
+
+signature_rest_parameter(
+  unique int sig: @signature_type ref,
+  int rest_param_arra_type: @type ref
+);
+
+case @signature_type.kind of
+  0 = @function_signature_type
+| 1 = @constructor_signature_type
+;
+
+#keyset[typ, kind, index]
+type_contains_signature (
+  int typ: @type ref,
+  int kind: int ref,  // constructor/call/index
+  int index: int ref, // ordering of overloaded signatures
+  int sig: @signature_type ref
+);
+
+#keyset[parent, index]
+signature_contains_type (
+  int child: @type ref,
+  int parent: @signature_type ref,
+  int index: int ref
+);
+
+#keyset[sig, index]
+signature_parameter_name (
+  int sig: @signature_type ref,
+  int index: int ref,
+  varchar(900) name: string ref
+);
+
+number_index_type (
+  unique int baseType: @type ref,
+  int propertyType: @type ref
+);
+
+string_index_type (
+  unique int baseType: @type ref,
+  int propertyType: @type ref
+);
+
+base_type_names(
+  int typeName: @symbol ref,
+  int baseTypeName: @symbol ref
+);
+
+self_types(
+  int typeName: @symbol ref,
+  int selfType: @type_reference ref
+);
+
+tuple_type_min_length(
+  unique int typ: @type ref,
+  int minLength: int ref
+);
+
+tuple_type_rest_index(
+  unique int typ: @type ref,
+  int index: int ref
+);
+
+// comments
+comments (unique int id: @comment,
+          int kind: int ref,
+          int toplevel: @toplevel ref,
+          varchar(900) text: string ref,
+          varchar(900) tostring: string ref);
+
+case @comment.kind of
+  0 = @slashslash_comment
+| 1 = @slashstar_comment
+| 2 = @doc_comment
+| 3 = @html_comment_start
+| 4 = @htmlcommentend;
+
+@html_comment = @html_comment_start | @htmlcommentend;
+@line_comment = @slashslash_comment | @html_comment;
+@block_comment = @slashstar_comment | @doc_comment;
+
+// source lines
+lines (unique int id: @line,
+       int toplevel: @toplevel ref,
+       varchar(900) text: string ref,
+       varchar(2) terminator: string ref);
+indentation (int file: @file ref,
+            int lineno: int ref,
+            varchar(1) indentChar: string ref,
+            int indentDepth: int ref);
+
+// JavaScript parse errors
+js_parse_errors (unique int id: @js_parse_error,
+        int toplevel: @toplevel ref,
+        varchar(900) message: string ref,
+        varchar(900) line: string ref);
+
+// regular expressions
+#keyset[parent, idx]
+regexpterm (unique int id: @regexpterm,
+        int kind: int ref,
+        int parent: @regexpparent ref,
+        int idx: int ref,
+        varchar(900) tostring: string ref);
+
+@regexpparent = @regexpterm | @regexp_literal | @string_literal | @add_expr;
+
+case @regexpterm.kind of
+   0 = @regexp_alt
+|  1 = @regexp_seq
+|  2 = @regexp_caret
+|  3 = @regexp_dollar
+|  4 = @regexp_wordboundary
+|  5 = @regexp_nonwordboundary
+|  6 = @regexp_positive_lookahead
+|  7 = @regexp_negative_lookahead
+|  8 = @regexp_star
+|  9 = @regexp_plus
+| 10 = @regexp_opt
+| 11 = @regexp_range
+| 12 = @regexp_dot
+| 13 = @regexp_group
+| 14 = @regexp_normal_constant
+| 15 = @regexp_hex_escape
+| 16 = @regexp_unicode_escape
+| 17 = @regexp_dec_escape
+| 18 = @regexp_oct_escape
+| 19 = @regexp_ctrl_escape
+| 20 = @regexp_char_class_escape
+| 21 = @regexp_id_escape
+| 22 = @regexp_backref
+| 23 = @regexp_char_class
+| 24 = @regexp_char_range
+| 25 = @regexp_positive_lookbehind
+| 26 = @regexp_negative_lookbehind
+| 27 = @regexp_unicode_property_escape;
+
+regexp_parse_errors (unique int id: @regexp_parse_error,
+    int regexp: @regexpterm ref,
+    varchar(900) message: string ref);
+
+@regexp_quantifier = @regexp_star | @regexp_plus | @regexp_opt | @regexp_range;
+@regexp_escape = @regexp_char_escape | @regexp_char_class_escape | @regexp_unicode_property_escape;
+@regexp_char_escape = @regexp_hex_escape | @regexp_unicode_escape | @regexp_dec_escape | @regexp_oct_escape | @regexp_ctrl_escape | @regexp_id_escape;
+@regexp_constant = @regexp_normal_constant | @regexp_char_escape;
+@regexp_lookahead = @regexp_positive_lookahead | @regexp_negative_lookahead;
+@regexp_lookbehind = @regexp_positive_lookbehind | @regexp_negative_lookbehind;
+@regexp_subpattern = @regexp_lookahead | @regexp_lookbehind;
+@regexp_anchor = @regexp_dollar | @regexp_caret;
+
+is_greedy (int id: @regexp_quantifier ref);
+range_quantifier_lower_bound (unique int id: @regexp_range ref, int lo: int ref);
+range_quantifier_upper_bound (unique int id: @regexp_range ref, int hi: int ref);
+is_capture (unique int id: @regexp_group ref, int number: int ref);
+is_named_capture (unique int id: @regexp_group ref, string name: string ref);
+is_inverted (int id: @regexp_char_class ref);
+regexp_const_value (unique int id: @regexp_constant ref, varchar(1) value: string ref);
+char_class_escape (unique int id: @regexp_char_class_escape ref, varchar(1) value: string ref);
+backref (unique int id: @regexp_backref ref, int value: int ref);
+named_backref (unique int id: @regexp_backref ref, string name: string ref);
+unicode_property_escapename (unique int id: @regexp_unicode_property_escape ref, string name: string ref);
+unicode_property_escapevalue (unique int id: @regexp_unicode_property_escape ref, string value: string ref);
+
+// tokens
+#keyset[toplevel, idx]
+tokeninfo (unique int id: @token,
+    int kind: int ref,
+    int toplevel: @toplevel ref,
+    int idx: int ref,
+    varchar(900) value: string ref);
+
+case @token.kind of
+  0 = @token_eof
+| 1 = @token_null_literal
+| 2 = @token_boolean_literal
+| 3 = @token_numeric_literal
+| 4 = @token_string_literal
+| 5 = @token_regular_expression
+| 6 = @token_identifier
+| 7 = @token_keyword
+| 8 = @token_punctuator;
+
+// associate comments with the token immediately following them (which may be EOF)
+next_token (int comment: @comment ref, int token: @token ref);
+
+// JSON
+#keyset[parent, idx]
+json (unique int id: @json_value,
+      int kind: int ref,
+      int parent: @json_parent ref,
+      int idx: int ref,
+      varchar(900) tostring: string ref);
+
+json_literals (varchar(900) value: string ref,
+      varchar(900) raw: string ref,
+      unique int expr: @json_value ref);
+
+json_properties (int obj: @json_object ref,
+      varchar(900) property: string ref,
+      int value: @json_value ref);
+
+json_errors (unique int id: @json_parse_error,
+      varchar(900) message: string ref);
+
+json_locations(unique int locatable: @json_locatable ref,
+      int location: @location_default ref);
+
+case @json_value.kind of
+  0 = @json_null
+| 1 = @json_boolean
+| 2 = @json_number
+| 3 = @json_string
+| 4 = @json_array
+| 5 = @json_object;
+
+@json_parent = @json_object | @json_array | @file;
+
+@json_locatable = @json_value | @json_parse_error;
+
+// locations
+@ast_node = @toplevel | @stmt | @expr | @property | @typeexpr;
+
+@locatable = @file
+    | @ast_node
+    | @comment
+    | @line
+    | @js_parse_error | @regexp_parse_error
+    | @regexpterm
+    | @json_locatable
+    | @token
+    | @cfg_node
+    | @jsdoc | @jsdoc_type_expr | @jsdoc_tag
+    | @yaml_locatable
+    | @xmllocatable
+    | @configLocatable
+    | @template_placeholder_tag;
+
+hasLocation (unique int locatable: @locatable ref,
+    int location: @location ref);
+
+// CFG
+entry_cfg_node (unique int id: @entry_node, int container: @stmt_container ref);
+exit_cfg_node (unique int id: @exit_node, int container: @stmt_container ref);
+guard_node (unique int id: @guard_node, int kind: int ref, int test: @expr ref);
+case @guard_node.kind of
+  0 = @falsy_guard
+| 1 = @truthy_guard;
+@condition_guard = @falsy_guard | @truthy_guard;
+
+@synthetic_cfg_node = @entry_node | @exit_node | @guard_node;
+@cfg_node = @synthetic_cfg_node | @expr_parent;
+
+successor (int pred: @cfg_node ref, int succ: @cfg_node ref);
+
+// JSDoc comments
+jsdoc (unique int id: @jsdoc, varchar(900) description: string ref, int comment: @comment ref);
+#keyset[parent, idx]
+jsdoc_tags (unique int id: @jsdoc_tag, varchar(900) title: string ref,
+            int parent: @jsdoc ref, int idx: int ref, varchar(900) tostring: string ref);
+jsdoc_tag_descriptions (unique int tag: @jsdoc_tag ref, varchar(900) text: string ref);
+jsdoc_tag_names (unique int tag: @jsdoc_tag ref, varchar(900) text: string ref);
+
+#keyset[parent, idx]
+jsdoc_type_exprs (unique int id: @jsdoc_type_expr,
+                  int kind: int ref,
+                  int parent: @jsdoc_type_expr_parent ref,
+                  int idx: int ref,
+                  varchar(900) tostring: string ref);
+case @jsdoc_type_expr.kind of
+    0 = @jsdoc_any_type_expr
+|   1 = @jsdoc_null_type_expr
+|   2 = @jsdoc_undefined_type_expr
+|   3 = @jsdoc_unknown_type_expr
+|   4 = @jsdoc_void_type_expr
+|   5 = @jsdoc_named_type_expr
+|   6 = @jsdoc_applied_type_expr
+|   7 = @jsdoc_nullable_type_expr
+|   8 = @jsdoc_non_nullable_type_expr
+|   9 = @jsdoc_record_type_expr
+|  10 = @jsdoc_array_type_expr
+|  11 = @jsdoc_union_type_expr
+|  12 = @jsdoc_function_type_expr
+|  13 = @jsdoc_optional_type_expr
+|  14 = @jsdoc_rest_type_expr
+;
+
+#keyset[id, idx]
+jsdoc_record_field_name (int id: @jsdoc_record_type_expr ref, int idx: int ref, varchar(900) name: string ref);
+jsdoc_prefix_qualifier (int id: @jsdoc_type_expr ref);
+jsdoc_has_new_parameter (int fn: @jsdoc_function_type_expr ref);
+
+@jsdoc_type_expr_parent = @jsdoc_type_expr | @jsdoc_tag;
+
+jsdoc_errors (unique int id: @jsdoc_error, int tag: @jsdoc_tag ref, varchar(900) message: string ref, varchar(900) tostring: string ref);
+
+// YAML
+#keyset[parent, idx]
+yaml (unique int id: @yaml_node,
+      int kind: int ref,
+      int parent: @yaml_node_parent ref,
+      int idx: int ref,
+      varchar(900) tag: string ref,
+      varchar(900) tostring: string ref);
+
+case @yaml_node.kind of
+  0 = @yaml_scalar_node
+| 1 = @yaml_mapping_node
+| 2 = @yaml_sequence_node
+| 3 = @yaml_alias_node
+;
+
+@yaml_collection_node = @yaml_mapping_node | @yaml_sequence_node;
+
+@yaml_node_parent = @yaml_collection_node | @file;
+
+yaml_anchors (unique int node: @yaml_node ref,
+              varchar(900) anchor: string ref);
+
+yaml_aliases (unique int alias: @yaml_alias_node ref,
+              varchar(900) target: string ref);
+
+yaml_scalars (unique int scalar: @yaml_scalar_node ref,
+              int style: int ref,
+              varchar(900) value: string ref);
+
+yaml_errors (unique int id: @yaml_error,
+             varchar(900) message: string ref);
+
+yaml_locations(unique int locatable: @yaml_locatable ref,
+             int location: @location_default ref);
+
+@yaml_locatable = @yaml_node | @yaml_error;
+
+/* XML Files */
+
+xmlEncoding(
+  unique int id: @file ref,
+  varchar(900) encoding: string ref
+);
+
+xmlDTDs(
+  unique int id: @xmldtd,
+  varchar(900) root: string ref,
+  varchar(900) publicId: string ref,
+  varchar(900) systemId: string ref,
+  int fileid: @file ref
+);
+
+xmlElements(
+  unique int id: @xmlelement,
+  varchar(900) name: string ref,
+  int parentid: @xmlparent ref,
+  int idx: int ref,
+  int fileid: @file ref
+);
+
+xmlAttrs(
+  unique int id: @xmlattribute,
+  int elementid: @xmlelement ref,
+  varchar(900) name: string ref,
+  varchar(3600) value: string ref,
+  int idx: int ref,
+  int fileid: @file ref
+);
+
+xmlNs(
+  int id: @xmlnamespace,
+  varchar(900) prefixName: string ref,
+  varchar(900) URI: string ref,
+  int fileid: @file ref
+);
+
+xmlHasNs(
+  int elementId: @xmlnamespaceable ref,
+  int nsId: @xmlnamespace ref,
+  int fileid: @file ref
+);
+
+xmlComments(
+  unique int id: @xmlcomment,
+  varchar(3600) text: string ref,
+  int parentid: @xmlparent ref,
+  int fileid: @file ref
+);
+
+xmlChars(
+  unique int id: @xmlcharacters,
+  varchar(3600) text: string ref,
+  int parentid: @xmlparent ref,
+  int idx: int ref,
+  int isCDATA: int ref,
+  int fileid: @file ref
+);
+
+@xmlparent = @file | @xmlelement;
+@xmlnamespaceable = @xmlelement | @xmlattribute;
+
+xmllocations(
+  int xmlElement: @xmllocatable ref,
+  int location: @location_default ref
+);
+
+@xmllocatable = @xmlcharacters | @xmlelement | @xmlcomment | @xmlattribute | @xmldtd | @file | @xmlnamespace;
+
+@dataflownode = @expr | @function_decl_stmt | @class_decl_stmt | @namespace_declaration | @enum_declaration | @property;
+
+@optionalchainable = @call_expr | @propaccess;
+
+isOptionalChaining(int id: @optionalchainable ref);
+
+/*
+ * configuration files with key value pairs
+ */
+
+configs(
+  unique int id: @config
+);
+
+configNames(
+  unique int id: @configName,
+  int config: @config ref,
+  string name: string ref
+);
+
+configValues(
+  unique int id: @configValue,
+  int config: @config ref,
+  string value: string ref
+);
+
+configLocations(
+  int locatable: @configLocatable ref,
+  int location: @location_default ref
+);
+
+@configLocatable = @config | @configName | @configValue;
+
+/**
+ * The time taken for the extraction of a file.
+ * This table contains non-deterministic content.
+ *
+ * The sum of the `time` column for each (`file`, `timerKind`) pair
+ * is the total time taken for extraction of `file`.  The `extractionPhase`
+ * column provides a granular view of the extraction time of the file.
+ */
+extraction_time(
+   int file : @file ref,
+   // see `com.semmle.js.extractor.ExtractionMetrics.ExtractionPhase`.
+   int extractionPhase: int ref,
+   // 0 for the elapsed CPU time in nanoseconds, 1 for the elapsed wallclock time in nanoseconds
+   int timerKind: int ref,
+   float time: float ref
+)
+
+/**
+ * Non-timing related data for the extraction of a single file.
+ * This table contains non-deterministic content.
+ */
+extraction_data(
+   int file : @file ref,
+   // the absolute path to the cache file
+   varchar(900) cacheFile: string ref,
+   boolean fromCache: boolean ref,
+   int length: int ref
+)
diff --git a/javascript/ql/lib/upgrades/c0664d5721c90dd32a5b167efea24f9cc6f57cfb/semmlecode.javascript.dbscheme b/javascript/ql/lib/upgrades/c0664d5721c90dd32a5b167efea24f9cc6f57cfb/semmlecode.javascript.dbscheme
new file mode 100644
index 00000000000..4d00210ca57
--- /dev/null
+++ b/javascript/ql/lib/upgrades/c0664d5721c90dd32a5b167efea24f9cc6f57cfb/semmlecode.javascript.dbscheme
@@ -0,0 +1,1218 @@
+/*** Standard fragments ***/
+
+/** Files and folders **/
+
+@location = @location_default;
+
+locations_default(unique int id: @location_default,
+          int file: @file ref,
+          int beginLine: int ref,
+          int beginColumn: int ref,
+          int endLine: int ref,
+          int endColumn: int ref
+         );
+
+@sourceline = @locatable;
+
+numlines(int element_id: @sourceline ref,
+         int num_lines: int ref,
+         int num_code: int ref,
+         int num_comment: int ref
+        );
+
+files(unique int id: @file,
+      varchar(900) name: string ref);
+
+folders(unique int id: @folder,
+        varchar(900) name: string ref);
+
+
+@container = @folder | @file ;
+
+
+containerparent(int parent: @container ref,
+                unique int child: @container ref);
+
+/** Duplicate code **/
+
+duplicateCode(
+  unique int id : @duplication,
+  varchar(900) relativePath : string ref,
+  int equivClass : int ref);
+
+similarCode(
+  unique int id : @similarity,
+  varchar(900) relativePath : string ref,
+  int equivClass : int ref);
+
+@duplication_or_similarity = @duplication | @similarity;
+
+tokens(
+  int id : @duplication_or_similarity ref,
+  int offset : int ref,
+  int beginLine : int ref,
+  int beginColumn : int ref,
+  int endLine : int ref,
+  int endColumn : int ref);
+
+/** External data **/
+
+externalData(
+  int id : @externalDataElement,
+  varchar(900) path : string ref,
+  int column: int ref,
+  varchar(900) value : string ref
+);
+
+snapshotDate(unique date snapshotDate : date ref);
+
+sourceLocationPrefix(varchar(900) prefix : string ref);
+
+/** Version control data **/
+
+svnentries(
+  int id : @svnentry,
+  varchar(500) revision : string ref,
+  varchar(500) author : string ref,
+  date revisionDate : date ref,
+  int changeSize : int ref
+);
+
+svnaffectedfiles(
+  int id : @svnentry ref,
+  int file : @file ref,
+  varchar(500) action : string ref
+);
+
+svnentrymsg(
+  int id : @svnentry ref,
+  varchar(500) message : string ref
+);
+
+svnchurn(
+  int commit : @svnentry ref,
+  int file : @file ref,
+  int addedLines : int ref,
+  int deletedLines : int ref
+);
+
+
+/*** JavaScript-specific part ***/
+
+filetype(
+  int file: @file ref,
+  string filetype: string ref
+)
+
+// top-level code fragments
+toplevels (unique int id: @toplevel,
+           int kind: int ref);
+
+is_externs (int toplevel: @toplevel ref);
+
+case @toplevel.kind of
+   0 = @script
+|  1 = @inline_script
+|  2 = @event_handler
+|  3 = @javascript_url
+|  4 = @template_toplevel;
+
+is_module (int tl: @toplevel ref);
+is_nodejs (int tl: @toplevel ref);
+is_es2015_module (int tl: @toplevel ref);
+is_closure_module (int tl: @toplevel ref);
+
+@xml_node_with_code = @xmlelement | @xmlattribute | @template_placeholder_tag;
+toplevel_parent_xml_node(
+  unique int toplevel: @toplevel ref,
+  int xmlnode: @xml_node_with_code ref);
+
+xml_element_parent_expression(
+  unique int xmlnode: @xmlelement ref,
+  int expression: @expr ref,
+  int index: int ref);
+
+// statements
+#keyset[parent, idx]
+stmts (unique int id: @stmt,
+       int kind: int ref,
+       int parent: @stmt_parent ref,
+       int idx: int ref,
+       varchar(900) tostring: string ref);
+
+stmt_containers (unique int stmt: @stmt ref,
+       int container: @stmt_container ref);
+
+jump_targets (unique int jump: @stmt ref,
+       int target: @stmt ref);
+
+@stmt_parent = @stmt | @toplevel | @function_expr | @arrow_function_expr | @static_initializer;
+@stmt_container = @toplevel | @function | @namespace_declaration | @external_module_declaration | @global_augmentation_declaration;
+
+case @stmt.kind of
+   0 = @empty_stmt
+|  1 = @block_stmt
+|  2 = @expr_stmt
+|  3 = @if_stmt
+|  4 = @labeled_stmt
+|  5 = @break_stmt
+|  6 = @continue_stmt
+|  7 = @with_stmt
+|  8 = @switch_stmt
+|  9 = @return_stmt
+| 10 = @throw_stmt
+| 11 = @try_stmt
+| 12 = @while_stmt
+| 13 = @do_while_stmt
+| 14 = @for_stmt
+| 15 = @for_in_stmt
+| 16 = @debugger_stmt
+| 17 = @function_decl_stmt
+| 18 = @var_decl_stmt
+| 19 = @case
+| 20 = @catch_clause
+| 21 = @for_of_stmt
+| 22 = @const_decl_stmt
+| 23 = @let_stmt
+| 24 = @legacy_let_stmt
+| 25 = @for_each_stmt
+| 26 = @class_decl_stmt
+| 27 = @import_declaration
+| 28 = @export_all_declaration
+| 29 = @export_default_declaration
+| 30 = @export_named_declaration
+| 31 = @namespace_declaration
+| 32 = @import_equals_declaration
+| 33 = @export_assign_declaration
+| 34 = @interface_declaration
+| 35 = @type_alias_declaration
+| 36 = @enum_declaration
+| 37 = @external_module_declaration
+| 38 = @export_as_namespace_declaration
+| 39 = @global_augmentation_declaration
+;
+
+@decl_stmt = @var_decl_stmt | @const_decl_stmt | @let_stmt | @legacy_let_stmt;
+
+@export_declaration = @export_all_declaration | @export_default_declaration | @export_named_declaration;
+
+@namespace_definition = @namespace_declaration | @enum_declaration;
+@type_definition = @class_definition | @interface_declaration | @enum_declaration | @type_alias_declaration | @enum_member;
+
+is_instantiated(unique int decl: @namespace_declaration ref);
+
+@declarable_node = @decl_stmt | @namespace_declaration | @class_decl_stmt | @function_decl_stmt | @enum_declaration | @external_module_declaration | @global_augmentation_declaration | @field;
+has_declare_keyword(unique int stmt: @declarable_node ref);
+
+is_for_await_of(unique int forof: @for_of_stmt ref);
+
+// expressions
+#keyset[parent, idx]
+exprs (unique int id: @expr,
+       int kind: int ref,
+       int parent: @expr_parent ref,
+       int idx: int ref,
+       varchar(900) tostring: string ref);
+
+literals (varchar(900) value: string ref,
+       varchar(900) raw: string ref,
+       unique int expr: @expr_or_type ref);
+
+enclosing_stmt (unique int expr: @expr_or_type ref,
+       int stmt: @stmt ref);
+
+expr_containers (unique int expr: @expr_or_type ref,
+       int container: @stmt_container ref);
+
+array_size (unique int ae: @arraylike ref,
+       int sz: int ref);
+
+is_delegating (int yield: @yield_expr ref);
+
+@expr_or_stmt = @expr | @stmt;
+@expr_or_type = @expr | @typeexpr;
+@expr_parent = @expr_or_stmt | @property | @function_typeexpr;
+@arraylike = @array_expr | @array_pattern;
+@type_annotation = @typeexpr | @jsdoc_type_expr;
+@node_in_stmt_container = @cfg_node | @type_annotation | @toplevel;
+
+case @expr.kind of
+   0 = @label
+|  1 = @null_literal
+|  2 = @boolean_literal
+|  3 = @number_literal
+|  4 = @string_literal
+|  5 = @regexp_literal
+|  6 = @this_expr
+|  7 = @array_expr
+|  8 = @obj_expr
+|  9 = @function_expr
+| 10 = @seq_expr
+| 11 = @conditional_expr
+| 12 = @new_expr
+| 13 = @call_expr
+| 14 = @dot_expr
+| 15 = @index_expr
+| 16 = @neg_expr
+| 17 = @plus_expr
+| 18 = @log_not_expr
+| 19 = @bit_not_expr
+| 20 = @typeof_expr
+| 21 = @void_expr
+| 22 = @delete_expr
+| 23 = @eq_expr
+| 24 = @neq_expr
+| 25 = @eqq_expr
+| 26 = @neqq_expr
+| 27 = @lt_expr
+| 28 = @le_expr
+| 29 = @gt_expr
+| 30 = @ge_expr
+| 31 = @lshift_expr
+| 32 = @rshift_expr
+| 33 = @urshift_expr
+| 34 = @add_expr
+| 35 = @sub_expr
+| 36 = @mul_expr
+| 37 = @div_expr
+| 38 = @mod_expr
+| 39 = @bitor_expr
+| 40 = @xor_expr
+| 41 = @bitand_expr
+| 42 = @in_expr
+| 43 = @instanceof_expr
+| 44 = @logand_expr
+| 45 = @logor_expr
+| 47 = @assign_expr
+| 48 = @assign_add_expr
+| 49 = @assign_sub_expr
+| 50 = @assign_mul_expr
+| 51 = @assign_div_expr
+| 52 = @assign_mod_expr
+| 53 = @assign_lshift_expr
+| 54 = @assign_rshift_expr
+| 55 = @assign_urshift_expr
+| 56 = @assign_or_expr
+| 57 = @assign_xor_expr
+| 58 = @assign_and_expr
+| 59 = @preinc_expr
+| 60 = @postinc_expr
+| 61 = @predec_expr
+| 62 = @postdec_expr
+| 63 = @par_expr
+| 64 = @var_declarator
+| 65 = @arrow_function_expr
+| 66 = @spread_element
+| 67 = @array_pattern
+| 68 = @object_pattern
+| 69 = @yield_expr
+| 70 = @tagged_template_expr
+| 71 = @template_literal
+| 72 = @template_element
+| 73 = @array_comprehension_expr
+| 74 = @generator_expr
+| 75 = @for_in_comprehension_block
+| 76 = @for_of_comprehension_block
+| 77 = @legacy_letexpr
+| 78 = @var_decl
+| 79 = @proper_varaccess
+| 80 = @class_expr
+| 81 = @super_expr
+| 82 = @newtarget_expr
+| 83 = @named_import_specifier
+| 84 = @import_default_specifier
+| 85 = @import_namespace_specifier
+| 86 = @named_export_specifier
+| 87 = @exp_expr
+| 88 = @assign_exp_expr
+| 89 = @jsx_element
+| 90 = @jsx_qualified_name
+| 91 = @jsx_empty_expr
+| 92 = @await_expr
+| 93 = @function_sent_expr
+| 94 = @decorator
+| 95 = @export_default_specifier
+| 96 = @export_namespace_specifier
+| 97 = @bind_expr
+| 98 = @external_module_reference
+| 99 = @dynamic_import
+| 100 = @expression_with_type_arguments
+| 101 = @prefix_type_assertion
+| 102 = @as_type_assertion
+| 103 = @export_varaccess
+| 104 = @decorator_list
+| 105 = @non_null_assertion
+| 106 = @bigint_literal
+| 107 = @nullishcoalescing_expr
+| 108 = @e4x_xml_anyname
+| 109 = @e4x_xml_static_attribute_selector
+| 110 = @e4x_xml_dynamic_attribute_selector
+| 111 = @e4x_xml_filter_expression
+| 112 = @e4x_xml_static_qualident
+| 113 = @e4x_xml_dynamic_qualident
+| 114 = @e4x_xml_dotdotexpr
+| 115 = @import_meta_expr
+| 116 = @assignlogandexpr
+| 117 = @assignlogorexpr
+| 118 = @assignnullishcoalescingexpr
+| 119 = @template_pipe_ref
+| 120 = @generated_code_expr
+| 121 = @satisfies_expr
+;
+
+@varaccess = @proper_varaccess | @export_varaccess;
+@varref = @var_decl | @varaccess;
+
+@identifier = @label | @varref | @type_identifier;
+
+@literal = @null_literal | @boolean_literal | @number_literal | @string_literal | @regexp_literal | @bigint_literal;
+
+@propaccess = @dot_expr | @index_expr;
+
+@invokeexpr = @new_expr | @call_expr;
+
+@unaryexpr = @neg_expr | @plus_expr | @log_not_expr | @bit_not_expr | @typeof_expr | @void_expr | @delete_expr | @spread_element;
+
+@equality_test = @eq_expr | @neq_expr | @eqq_expr | @neqq_expr;
+
+@comparison = @equality_test | @lt_expr | @le_expr | @gt_expr | @ge_expr;
+
+@binaryexpr = @comparison | @lshift_expr | @rshift_expr | @urshift_expr | @add_expr | @sub_expr | @mul_expr | @div_expr | @mod_expr | @exp_expr | @bitor_expr | @xor_expr | @bitand_expr | @in_expr | @instanceof_expr | @logand_expr | @logor_expr | @nullishcoalescing_expr;
+
+@assignment = @assign_expr | @assign_add_expr | @assign_sub_expr | @assign_mul_expr | @assign_div_expr | @assign_mod_expr | @assign_exp_expr | @assign_lshift_expr | @assign_rshift_expr | @assign_urshift_expr | @assign_or_expr | @assign_xor_expr | @assign_and_expr | @assignlogandexpr | @assignlogorexpr | @assignnullishcoalescingexpr;
+
+@updateexpr = @preinc_expr | @postinc_expr | @predec_expr | @postdec_expr;
+
+@pattern = @varref | @array_pattern | @object_pattern;
+
+@comprehension_expr = @array_comprehension_expr | @generator_expr;
+
+@comprehension_block = @for_in_comprehension_block | @for_of_comprehension_block;
+
+@import_specifier = @named_import_specifier | @import_default_specifier | @import_namespace_specifier;
+
+@exportspecifier = @named_export_specifier | @export_default_specifier | @export_namespace_specifier;
+
+@type_keyword_operand = @import_declaration | @export_declaration | @import_specifier;
+
+@type_assertion = @as_type_assertion | @prefix_type_assertion;
+
+@class_definition = @class_decl_stmt | @class_expr;
+@interface_definition = @interface_declaration | @interface_typeexpr;
+@class_or_interface = @class_definition | @interface_definition;
+
+@lexical_decl = @var_decl | @type_decl;
+@lexical_access = @varaccess | @local_type_access | @local_var_type_access | @local_namespace_access;
+@lexical_ref = @lexical_decl | @lexical_access;
+
+@e4x_xml_attribute_selector = @e4x_xml_static_attribute_selector | @e4x_xml_dynamic_attribute_selector;
+@e4x_xml_qualident = @e4x_xml_static_qualident | @e4x_xml_dynamic_qualident;
+
+expr_contains_template_tag_location(
+  int expr: @expr ref,
+  int location: @location ref
+);
+
+@template_placeholder_tag_parent = @xmlelement | @xmlattribute | @file;
+
+template_placeholder_tag_info(
+  unique int node: @template_placeholder_tag,
+  int parentNode: @template_placeholder_tag_parent ref,
+  varchar(900) raw: string ref
+);
+
+// scopes
+scopes (unique int id: @scope,
+        int kind: int ref);
+
+case @scope.kind of
+   0 = @global_scope
+|  1 = @function_scope
+|  2 = @catch_scope
+|  3 = @module_scope
+|  4 = @block_scope
+|  5 = @for_scope
+|  6 = @for_in_scope // for-of scopes work the same as for-in scopes
+|  7 = @comprehension_block_scope
+|  8 = @class_expr_scope
+|  9 = @namespace_scope
+| 10 = @class_decl_scope
+| 11 = @interface_scope
+| 12 = @type_alias_scope
+| 13 = @mapped_type_scope
+| 14 = @enum_scope
+| 15 = @external_module_scope
+| 16 = @conditional_type_scope;
+
+scopenodes (unique int node: @ast_node ref,
+            int scope: @scope ref);
+
+scopenesting (unique int inner: @scope ref,
+              int outer: @scope ref);
+
+// functions
+@function = @function_decl_stmt | @function_expr | @arrow_function_expr;
+
+@parameterized = @function | @catch_clause;
+@type_parameterized = @function | @class_or_interface | @type_alias_declaration | @mapped_typeexpr | @infer_typeexpr;
+
+is_generator (int fun: @function ref);
+has_rest_parameter (int fun: @function ref);
+is_async (int fun: @function ref);
+
+// variables and lexically scoped type names
+#keyset[scope, name]
+variables (unique int id: @variable,
+           varchar(900) name: string ref,
+           int scope: @scope ref);
+
+#keyset[scope, name]
+local_type_names (unique int id: @local_type_name,
+                  varchar(900) name: string ref,
+                  int scope: @scope ref);
+
+#keyset[scope, name]
+local_namespace_names (unique int id: @local_namespace_name,
+                       varchar(900) name: string ref,
+                       int scope: @scope ref);
+
+is_arguments_object (int id: @variable ref);
+
+@lexical_name = @variable | @local_type_name | @local_namespace_name;
+
+@bind_id = @varaccess | @local_var_type_access;
+bind (unique int id: @bind_id ref,
+      int decl: @variable ref);
+
+decl (unique int id: @var_decl ref,
+      int decl: @variable ref);
+
+@typebind_id = @local_type_access | @export_varaccess;
+typebind (unique int id: @typebind_id ref,
+          int decl: @local_type_name ref);
+
+@typedecl_id = @type_decl | @var_decl;
+typedecl (unique int id: @typedecl_id ref,
+          int decl: @local_type_name ref);
+
+namespacedecl (unique int id: @var_decl ref,
+               int decl: @local_namespace_name ref);
+
+@namespacebind_id = @local_namespace_access | @export_varaccess;
+namespacebind (unique int id: @namespacebind_id ref,
+               int decl: @local_namespace_name ref);
+
+
+// properties in object literals, property patterns in object patterns, and method declarations in classes
+#keyset[parent, index]
+properties (unique int id: @property,
+            int parent: @property_parent ref,
+            int index: int ref,
+            int kind: int ref,
+            varchar(900) tostring: string ref);
+
+case @property.kind of
+  0 = @value_property
+| 1 = @property_getter
+| 2 = @property_setter
+| 3 = @jsx_attribute
+| 4 = @function_call_signature
+| 5 = @constructor_call_signature
+| 6 = @index_signature
+| 7 = @enum_member
+| 8 = @proper_field
+| 9 = @parameter_field
+| 10 = @static_initializer
+;
+
+@property_parent = @obj_expr | @object_pattern | @class_definition | @jsx_element | @interface_definition | @enum_declaration;
+@property_accessor = @property_getter | @property_setter;
+@call_signature = @function_call_signature | @constructor_call_signature;
+@field = @proper_field | @parameter_field;
+@field_or_vardeclarator = @field | @var_declarator;
+
+is_computed (int id: @property ref);
+is_method   (int id: @property ref);
+is_static   (int id: @property ref);
+is_abstract_member (int id: @property ref);
+is_const_enum (int id: @enum_declaration ref);
+is_abstract_class (int id: @class_decl_stmt ref);
+
+has_public_keyword (int id: @property ref);
+has_private_keyword (int id: @property ref);
+has_protected_keyword (int id: @property ref);
+has_readonly_keyword (int id: @property ref);
+has_type_keyword (int id: @type_keyword_operand ref);
+is_optional_member (int id: @property ref);
+has_definite_assignment_assertion (int id: @field_or_vardeclarator ref);
+is_optional_parameter_declaration (unique int parameter: @pattern ref);
+
+#keyset[constructor, param_index]
+parameter_fields(
+  unique int field: @parameter_field ref,
+  int constructor: @function_expr ref,
+  int param_index: int ref
+);
+
+// types
+#keyset[parent, idx]
+typeexprs (
+  unique int id: @typeexpr,
+  int kind: int ref,
+  int parent: @typeexpr_parent ref,
+  int idx: int ref,
+  varchar(900) tostring: string ref
+);
+
+case @typeexpr.kind of
+  0 = @local_type_access
+| 1 = @type_decl
+| 2 = @keyword_typeexpr
+| 3 = @string_literal_typeexpr
+| 4 = @number_literal_typeexpr
+| 5 = @boolean_literal_typeexpr
+| 6 = @array_typeexpr
+| 7 = @union_typeexpr
+| 8 = @indexed_access_typeexpr
+| 9 = @intersection_typeexpr
+| 10 = @parenthesized_typeexpr
+| 11 = @tuple_typeexpr
+| 12 = @keyof_typeexpr
+| 13 = @qualified_type_access
+| 14 = @generic_typeexpr
+| 15 = @type_label
+| 16 = @typeof_typeexpr
+| 17 = @local_var_type_access
+| 18 = @qualified_var_type_access
+| 19 = @this_var_type_access
+| 20 = @predicate_typeexpr
+| 21 = @interface_typeexpr
+| 22 = @type_parameter
+| 23 = @plain_function_typeexpr
+| 24 = @constructor_typeexpr
+| 25 = @local_namespace_access
+| 26 = @qualified_namespace_access
+| 27 = @mapped_typeexpr
+| 28 = @conditional_typeexpr
+| 29 = @infer_typeexpr
+| 30 = @import_type_access
+| 31 = @import_namespace_access
+| 32 = @import_var_type_access
+| 33 = @optional_typeexpr
+| 34 = @rest_typeexpr
+| 35 = @bigint_literal_typeexpr
+| 36 = @readonly_typeexpr
+| 37 = @template_literal_typeexpr
+;
+
+@typeref = @typeaccess | @type_decl;
+@type_identifier = @type_decl | @local_type_access | @type_label | @local_var_type_access | @local_namespace_access;
+@typeexpr_parent = @expr | @stmt | @property | @typeexpr;
+@literal_typeexpr = @string_literal_typeexpr | @number_literal_typeexpr | @boolean_literal_typeexpr | @bigint_literal_typeexpr;
+@typeaccess = @local_type_access | @qualified_type_access | @import_type_access;
+@vartypeaccess = @local_var_type_access | @qualified_var_type_access | @this_var_type_access | @import_var_type_access;
+@namespace_access = @local_namespace_access | @qualified_namespace_access | @import_namespace_access;
+@import_typeexpr = @import_type_access | @import_namespace_access | @import_var_type_access;
+
+@function_typeexpr = @plain_function_typeexpr | @constructor_typeexpr;
+
+// types
+types (
+  unique int id: @type,
+  int kind: int ref,
+  varchar(900) tostring: string ref
+);
+
+#keyset[parent, idx]
+type_child (
+  int child: @type ref,
+  int parent: @type ref,
+  int idx: int ref
+);
+
+case @type.kind of
+  0 = @any_type
+| 1 = @string_type
+| 2 = @number_type
+| 3 = @union_type
+| 4 = @true_type
+| 5 = @false_type
+| 6 = @type_reference
+| 7 = @object_type
+| 8 = @canonical_type_variable_type
+| 9 = @typeof_type
+| 10 = @void_type
+| 11 = @undefined_type
+| 12 = @null_type
+| 13 = @never_type
+| 14 = @plain_symbol_type
+| 15 = @unique_symbol_type
+| 16 = @objectkeyword_type
+| 17 = @intersection_type
+| 18 = @tuple_type
+| 19 = @lexical_type_variable_type
+| 20 = @this_type
+| 21 = @number_literal_type
+| 22 = @string_literal_type
+| 23 = @unknown_type
+| 24 = @bigint_type
+| 25 = @bigint_literal_type
+;
+
+@boolean_literal_type = @true_type | @false_type;
+@symbol_type = @plain_symbol_type | @unique_symbol_type;
+@union_or_intersection_type = @union_type | @intersection_type;
+@typevariable_type = @canonical_type_variable_type | @lexical_type_variable_type;
+
+has_asserts_keyword(int node: @predicate_typeexpr ref);
+
+@typed_ast_node = @expr | @typeexpr | @function;
+ast_node_type(
+  unique int node: @typed_ast_node ref,
+  int typ: @type ref);
+
+declared_function_signature(
+  unique int node: @function ref,
+  int sig: @signature_type ref
+);
+
+invoke_expr_signature(
+  unique int node: @invokeexpr ref,
+  int sig: @signature_type ref
+);
+
+invoke_expr_overload_index(
+  unique int node: @invokeexpr ref,
+  int index: int ref
+);
+
+symbols (
+  unique int id: @symbol,
+  int kind: int ref,
+  varchar(900) name: string ref
+);
+
+symbol_parent (
+  unique int symbol: @symbol ref,
+  int parent: @symbol ref
+);
+
+symbol_module (
+  int symbol: @symbol ref,
+  varchar(900) moduleName: string ref
+);
+
+symbol_global (
+  int symbol: @symbol ref,
+  varchar(900) globalName: string ref
+);
+
+case @symbol.kind of
+  0 = @root_symbol
+| 1 = @member_symbol
+| 2 = @other_symbol
+;
+
+@type_with_symbol = @type_reference | @typevariable_type | @typeof_type | @unique_symbol_type;
+@ast_node_with_symbol = @type_definition | @namespace_definition | @toplevel | @typeaccess | @namespace_access | @var_decl | @function | @invokeexpr | @import_declaration | @external_module_reference | @external_module_declaration;
+
+ast_node_symbol(
+  unique int node: @ast_node_with_symbol ref,
+  int symbol: @symbol ref);
+
+type_symbol(
+  unique int typ: @type_with_symbol ref,
+  int symbol: @symbol ref);
+
+#keyset[typ, name]
+type_property(
+  int typ: @type ref,
+  varchar(900) name: string ref,
+  int propertyType: @type ref);
+
+type_alias(
+  unique int aliasType: @type ref,
+  int underlyingType: @type ref);
+
+@literal_type = @string_literal_type | @number_literal_type | @boolean_literal_type | @bigint_literal_type;
+@type_with_literal_value = @string_literal_type | @number_literal_type | @bigint_literal_type;
+type_literal_value(
+  unique int typ: @type_with_literal_value ref,
+  varchar(900) value: string ref);
+
+signature_types (
+  unique int id: @signature_type,
+  int kind: int ref,
+  varchar(900) tostring: string ref,
+  int type_parameters: int ref,
+  int required_params: int ref
+);
+
+is_abstract_signature(
+  unique int sig: @signature_type ref
+);
+
+signature_rest_parameter(
+  unique int sig: @signature_type ref,
+  int rest_param_arra_type: @type ref
+);
+
+case @signature_type.kind of
+  0 = @function_signature_type
+| 1 = @constructor_signature_type
+;
+
+#keyset[typ, kind, index]
+type_contains_signature (
+  int typ: @type ref,
+  int kind: int ref,  // constructor/call/index
+  int index: int ref, // ordering of overloaded signatures
+  int sig: @signature_type ref
+);
+
+#keyset[parent, index]
+signature_contains_type (
+  int child: @type ref,
+  int parent: @signature_type ref,
+  int index: int ref
+);
+
+#keyset[sig, index]
+signature_parameter_name (
+  int sig: @signature_type ref,
+  int index: int ref,
+  varchar(900) name: string ref
+);
+
+number_index_type (
+  unique int baseType: @type ref,
+  int propertyType: @type ref
+);
+
+string_index_type (
+  unique int baseType: @type ref,
+  int propertyType: @type ref
+);
+
+base_type_names(
+  int typeName: @symbol ref,
+  int baseTypeName: @symbol ref
+);
+
+self_types(
+  int typeName: @symbol ref,
+  int selfType: @type_reference ref
+);
+
+tuple_type_min_length(
+  unique int typ: @type ref,
+  int minLength: int ref
+);
+
+tuple_type_rest_index(
+  unique int typ: @type ref,
+  int index: int ref
+);
+
+// comments
+comments (unique int id: @comment,
+          int kind: int ref,
+          int toplevel: @toplevel ref,
+          varchar(900) text: string ref,
+          varchar(900) tostring: string ref);
+
+case @comment.kind of
+  0 = @slashslash_comment
+| 1 = @slashstar_comment
+| 2 = @doc_comment
+| 3 = @html_comment_start
+| 4 = @htmlcommentend;
+
+@html_comment = @html_comment_start | @htmlcommentend;
+@line_comment = @slashslash_comment | @html_comment;
+@block_comment = @slashstar_comment | @doc_comment;
+
+// source lines
+lines (unique int id: @line,
+       int toplevel: @toplevel ref,
+       varchar(900) text: string ref,
+       varchar(2) terminator: string ref);
+indentation (int file: @file ref,
+            int lineno: int ref,
+            varchar(1) indentChar: string ref,
+            int indentDepth: int ref);
+
+// JavaScript parse errors
+js_parse_errors (unique int id: @js_parse_error,
+        int toplevel: @toplevel ref,
+        varchar(900) message: string ref,
+        varchar(900) line: string ref);
+
+// regular expressions
+#keyset[parent, idx]
+regexpterm (unique int id: @regexpterm,
+        int kind: int ref,
+        int parent: @regexpparent ref,
+        int idx: int ref,
+        varchar(900) tostring: string ref);
+
+@regexpparent = @regexpterm | @regexp_literal | @string_literal | @add_expr;
+
+case @regexpterm.kind of
+   0 = @regexp_alt
+|  1 = @regexp_seq
+|  2 = @regexp_caret
+|  3 = @regexp_dollar
+|  4 = @regexp_wordboundary
+|  5 = @regexp_nonwordboundary
+|  6 = @regexp_positive_lookahead
+|  7 = @regexp_negative_lookahead
+|  8 = @regexp_star
+|  9 = @regexp_plus
+| 10 = @regexp_opt
+| 11 = @regexp_range
+| 12 = @regexp_dot
+| 13 = @regexp_group
+| 14 = @regexp_normal_constant
+| 15 = @regexp_hex_escape
+| 16 = @regexp_unicode_escape
+| 17 = @regexp_dec_escape
+| 18 = @regexp_oct_escape
+| 19 = @regexp_ctrl_escape
+| 20 = @regexp_char_class_escape
+| 21 = @regexp_id_escape
+| 22 = @regexp_backref
+| 23 = @regexp_char_class
+| 24 = @regexp_char_range
+| 25 = @regexp_positive_lookbehind
+| 26 = @regexp_negative_lookbehind
+| 27 = @regexp_unicode_property_escape;
+
+regexp_parse_errors (unique int id: @regexp_parse_error,
+    int regexp: @regexpterm ref,
+    varchar(900) message: string ref);
+
+@regexp_quantifier = @regexp_star | @regexp_plus | @regexp_opt | @regexp_range;
+@regexp_escape = @regexp_char_escape | @regexp_char_class_escape | @regexp_unicode_property_escape;
+@regexp_char_escape = @regexp_hex_escape | @regexp_unicode_escape | @regexp_dec_escape | @regexp_oct_escape | @regexp_ctrl_escape | @regexp_id_escape;
+@regexp_constant = @regexp_normal_constant | @regexp_char_escape;
+@regexp_lookahead = @regexp_positive_lookahead | @regexp_negative_lookahead;
+@regexp_lookbehind = @regexp_positive_lookbehind | @regexp_negative_lookbehind;
+@regexp_subpattern = @regexp_lookahead | @regexp_lookbehind;
+@regexp_anchor = @regexp_dollar | @regexp_caret;
+
+is_greedy (int id: @regexp_quantifier ref);
+range_quantifier_lower_bound (unique int id: @regexp_range ref, int lo: int ref);
+range_quantifier_upper_bound (unique int id: @regexp_range ref, int hi: int ref);
+is_capture (unique int id: @regexp_group ref, int number: int ref);
+is_named_capture (unique int id: @regexp_group ref, string name: string ref);
+is_inverted (int id: @regexp_char_class ref);
+regexp_const_value (unique int id: @regexp_constant ref, varchar(1) value: string ref);
+char_class_escape (unique int id: @regexp_char_class_escape ref, varchar(1) value: string ref);
+backref (unique int id: @regexp_backref ref, int value: int ref);
+named_backref (unique int id: @regexp_backref ref, string name: string ref);
+unicode_property_escapename (unique int id: @regexp_unicode_property_escape ref, string name: string ref);
+unicode_property_escapevalue (unique int id: @regexp_unicode_property_escape ref, string value: string ref);
+
+// tokens
+#keyset[toplevel, idx]
+tokeninfo (unique int id: @token,
+    int kind: int ref,
+    int toplevel: @toplevel ref,
+    int idx: int ref,
+    varchar(900) value: string ref);
+
+case @token.kind of
+  0 = @token_eof
+| 1 = @token_null_literal
+| 2 = @token_boolean_literal
+| 3 = @token_numeric_literal
+| 4 = @token_string_literal
+| 5 = @token_regular_expression
+| 6 = @token_identifier
+| 7 = @token_keyword
+| 8 = @token_punctuator;
+
+// associate comments with the token immediately following them (which may be EOF)
+next_token (int comment: @comment ref, int token: @token ref);
+
+// JSON
+#keyset[parent, idx]
+json (unique int id: @json_value,
+      int kind: int ref,
+      int parent: @json_parent ref,
+      int idx: int ref,
+      varchar(900) tostring: string ref);
+
+json_literals (varchar(900) value: string ref,
+      varchar(900) raw: string ref,
+      unique int expr: @json_value ref);
+
+json_properties (int obj: @json_object ref,
+      varchar(900) property: string ref,
+      int value: @json_value ref);
+
+json_errors (unique int id: @json_parse_error,
+      varchar(900) message: string ref);
+
+json_locations(unique int locatable: @json_locatable ref,
+      int location: @location_default ref);
+
+case @json_value.kind of
+  0 = @json_null
+| 1 = @json_boolean
+| 2 = @json_number
+| 3 = @json_string
+| 4 = @json_array
+| 5 = @json_object;
+
+@json_parent = @json_object | @json_array | @file;
+
+@json_locatable = @json_value | @json_parse_error;
+
+// locations
+@ast_node = @toplevel | @stmt | @expr | @property | @typeexpr;
+
+@locatable = @file
+    | @ast_node
+    | @comment
+    | @line
+    | @js_parse_error | @regexp_parse_error
+    | @regexpterm
+    | @json_locatable
+    | @token
+    | @cfg_node
+    | @jsdoc | @jsdoc_type_expr | @jsdoc_tag
+    | @yaml_locatable
+    | @xmllocatable
+    | @configLocatable
+    | @template_placeholder_tag;
+
+hasLocation (unique int locatable: @locatable ref,
+    int location: @location ref);
+
+// CFG
+entry_cfg_node (unique int id: @entry_node, int container: @stmt_container ref);
+exit_cfg_node (unique int id: @exit_node, int container: @stmt_container ref);
+guard_node (unique int id: @guard_node, int kind: int ref, int test: @expr ref);
+case @guard_node.kind of
+  0 = @falsy_guard
+| 1 = @truthy_guard;
+@condition_guard = @falsy_guard | @truthy_guard;
+
+@synthetic_cfg_node = @entry_node | @exit_node | @guard_node;
+@cfg_node = @synthetic_cfg_node | @expr_parent;
+
+successor (int pred: @cfg_node ref, int succ: @cfg_node ref);
+
+// JSDoc comments
+jsdoc (unique int id: @jsdoc, varchar(900) description: string ref, int comment: @comment ref);
+#keyset[parent, idx]
+jsdoc_tags (unique int id: @jsdoc_tag, varchar(900) title: string ref,
+            int parent: @jsdoc ref, int idx: int ref, varchar(900) tostring: string ref);
+jsdoc_tag_descriptions (unique int tag: @jsdoc_tag ref, varchar(900) text: string ref);
+jsdoc_tag_names (unique int tag: @jsdoc_tag ref, varchar(900) text: string ref);
+
+#keyset[parent, idx]
+jsdoc_type_exprs (unique int id: @jsdoc_type_expr,
+                  int kind: int ref,
+                  int parent: @jsdoc_type_expr_parent ref,
+                  int idx: int ref,
+                  varchar(900) tostring: string ref);
+case @jsdoc_type_expr.kind of
+    0 = @jsdoc_any_type_expr
+|   1 = @jsdoc_null_type_expr
+|   2 = @jsdoc_undefined_type_expr
+|   3 = @jsdoc_unknown_type_expr
+|   4 = @jsdoc_void_type_expr
+|   5 = @jsdoc_named_type_expr
+|   6 = @jsdoc_applied_type_expr
+|   7 = @jsdoc_nullable_type_expr
+|   8 = @jsdoc_non_nullable_type_expr
+|   9 = @jsdoc_record_type_expr
+|  10 = @jsdoc_array_type_expr
+|  11 = @jsdoc_union_type_expr
+|  12 = @jsdoc_function_type_expr
+|  13 = @jsdoc_optional_type_expr
+|  14 = @jsdoc_rest_type_expr
+;
+
+#keyset[id, idx]
+jsdoc_record_field_name (int id: @jsdoc_record_type_expr ref, int idx: int ref, varchar(900) name: string ref);
+jsdoc_prefix_qualifier (int id: @jsdoc_type_expr ref);
+jsdoc_has_new_parameter (int fn: @jsdoc_function_type_expr ref);
+
+@jsdoc_type_expr_parent = @jsdoc_type_expr | @jsdoc_tag;
+
+jsdoc_errors (unique int id: @jsdoc_error, int tag: @jsdoc_tag ref, varchar(900) message: string ref, varchar(900) tostring: string ref);
+
+// YAML
+#keyset[parent, idx]
+yaml (unique int id: @yaml_node,
+      int kind: int ref,
+      int parent: @yaml_node_parent ref,
+      int idx: int ref,
+      varchar(900) tag: string ref,
+      varchar(900) tostring: string ref);
+
+case @yaml_node.kind of
+  0 = @yaml_scalar_node
+| 1 = @yaml_mapping_node
+| 2 = @yaml_sequence_node
+| 3 = @yaml_alias_node
+;
+
+@yaml_collection_node = @yaml_mapping_node | @yaml_sequence_node;
+
+@yaml_node_parent = @yaml_collection_node | @file;
+
+yaml_anchors (unique int node: @yaml_node ref,
+              varchar(900) anchor: string ref);
+
+yaml_aliases (unique int alias: @yaml_alias_node ref,
+              varchar(900) target: string ref);
+
+yaml_scalars (unique int scalar: @yaml_scalar_node ref,
+              int style: int ref,
+              varchar(900) value: string ref);
+
+yaml_errors (unique int id: @yaml_error,
+             varchar(900) message: string ref);
+
+yaml_locations(unique int locatable: @yaml_locatable ref,
+             int location: @location_default ref);
+
+@yaml_locatable = @yaml_node | @yaml_error;
+
+/* XML Files */
+
+xmlEncoding(
+  unique int id: @file ref,
+  varchar(900) encoding: string ref
+);
+
+xmlDTDs(
+  unique int id: @xmldtd,
+  varchar(900) root: string ref,
+  varchar(900) publicId: string ref,
+  varchar(900) systemId: string ref,
+  int fileid: @file ref
+);
+
+xmlElements(
+  unique int id: @xmlelement,
+  varchar(900) name: string ref,
+  int parentid: @xmlparent ref,
+  int idx: int ref,
+  int fileid: @file ref
+);
+
+xmlAttrs(
+  unique int id: @xmlattribute,
+  int elementid: @xmlelement ref,
+  varchar(900) name: string ref,
+  varchar(3600) value: string ref,
+  int idx: int ref,
+  int fileid: @file ref
+);
+
+xmlNs(
+  int id: @xmlnamespace,
+  varchar(900) prefixName: string ref,
+  varchar(900) URI: string ref,
+  int fileid: @file ref
+);
+
+xmlHasNs(
+  int elementId: @xmlnamespaceable ref,
+  int nsId: @xmlnamespace ref,
+  int fileid: @file ref
+);
+
+xmlComments(
+  unique int id: @xmlcomment,
+  varchar(3600) text: string ref,
+  int parentid: @xmlparent ref,
+  int fileid: @file ref
+);
+
+xmlChars(
+  unique int id: @xmlcharacters,
+  varchar(3600) text: string ref,
+  int parentid: @xmlparent ref,
+  int idx: int ref,
+  int isCDATA: int ref,
+  int fileid: @file ref
+);
+
+@xmlparent = @file | @xmlelement;
+@xmlnamespaceable = @xmlelement | @xmlattribute;
+
+xmllocations(
+  int xmlElement: @xmllocatable ref,
+  int location: @location_default ref
+);
+
+@xmllocatable = @xmlcharacters | @xmlelement | @xmlcomment | @xmlattribute | @xmldtd | @file | @xmlnamespace;
+
+@dataflownode = @expr | @function_decl_stmt | @class_decl_stmt | @namespace_declaration | @enum_declaration | @property;
+
+@optionalchainable = @call_expr | @propaccess;
+
+isOptionalChaining(int id: @optionalchainable ref);
+
+/*
+ * configuration files with key value pairs
+ */
+
+configs(
+  unique int id: @config
+);
+
+configNames(
+  unique int id: @configName,
+  int config: @config ref,
+  string name: string ref
+);
+
+configValues(
+  unique int id: @configValue,
+  int config: @config ref,
+  string value: string ref
+);
+
+configLocations(
+  int locatable: @configLocatable ref,
+  int location: @location_default ref
+);
+
+@configLocatable = @config | @configName | @configValue;
+
+/**
+ * The time taken for the extraction of a file.
+ * This table contains non-deterministic content.
+ *
+ * The sum of the `time` column for each (`file`, `timerKind`) pair
+ * is the total time taken for extraction of `file`.  The `extractionPhase`
+ * column provides a granular view of the extraction time of the file.
+ */
+extraction_time(
+   int file : @file ref,
+   // see `com.semmle.js.extractor.ExtractionMetrics.ExtractionPhase`.
+   int extractionPhase: int ref,
+   // 0 for the elapsed CPU time in nanoseconds, 1 for the elapsed wallclock time in nanoseconds
+   int timerKind: int ref,
+   float time: float ref
+)
+
+/**
+ * Non-timing related data for the extraction of a single file.
+ * This table contains non-deterministic content.
+ */
+extraction_data(
+   int file : @file ref,
+   // the absolute path to the cache file
+   varchar(900) cacheFile: string ref,
+   boolean fromCache: boolean ref,
+   int length: int ref
+)
diff --git a/javascript/ql/lib/upgrades/c0664d5721c90dd32a5b167efea24f9cc6f57cfb/upgrade.properties b/javascript/ql/lib/upgrades/c0664d5721c90dd32a5b167efea24f9cc6f57cfb/upgrade.properties
new file mode 100644
index 00000000000..476d9aba57e
--- /dev/null
+++ b/javascript/ql/lib/upgrades/c0664d5721c90dd32a5b167efea24f9cc6f57cfb/upgrade.properties
@@ -0,0 +1,2 @@
+description: add support for TypeScript 4.9
+compatibility: backwards

From 364336e22a0189c3d71b5abc7ae40c34b7c5149a Mon Sep 17 00:00:00 2001
From: erik-krogh <erik-krogh@github.com>
Date: Mon, 14 Nov 2022 15:29:54 +0100
Subject: [PATCH 0325/1420] add downgrade script

---
 .../old.dbscheme                              | 1218 +++++++++++++++++
 .../semmlecode.javascript.dbscheme            | 1217 ++++++++++++++++
 .../upgrade.properties                        |    2 +
 3 files changed, 2437 insertions(+)
 create mode 100644 javascript/downgrades/4d00210ca570d55c4833af11d3372b774dbc63f2/old.dbscheme
 create mode 100644 javascript/downgrades/4d00210ca570d55c4833af11d3372b774dbc63f2/semmlecode.javascript.dbscheme
 create mode 100644 javascript/downgrades/4d00210ca570d55c4833af11d3372b774dbc63f2/upgrade.properties

diff --git a/javascript/downgrades/4d00210ca570d55c4833af11d3372b774dbc63f2/old.dbscheme b/javascript/downgrades/4d00210ca570d55c4833af11d3372b774dbc63f2/old.dbscheme
new file mode 100644
index 00000000000..4d00210ca57
--- /dev/null
+++ b/javascript/downgrades/4d00210ca570d55c4833af11d3372b774dbc63f2/old.dbscheme
@@ -0,0 +1,1218 @@
+/*** Standard fragments ***/
+
+/** Files and folders **/
+
+@location = @location_default;
+
+locations_default(unique int id: @location_default,
+          int file: @file ref,
+          int beginLine: int ref,
+          int beginColumn: int ref,
+          int endLine: int ref,
+          int endColumn: int ref
+         );
+
+@sourceline = @locatable;
+
+numlines(int element_id: @sourceline ref,
+         int num_lines: int ref,
+         int num_code: int ref,
+         int num_comment: int ref
+        );
+
+files(unique int id: @file,
+      varchar(900) name: string ref);
+
+folders(unique int id: @folder,
+        varchar(900) name: string ref);
+
+
+@container = @folder | @file ;
+
+
+containerparent(int parent: @container ref,
+                unique int child: @container ref);
+
+/** Duplicate code **/
+
+duplicateCode(
+  unique int id : @duplication,
+  varchar(900) relativePath : string ref,
+  int equivClass : int ref);
+
+similarCode(
+  unique int id : @similarity,
+  varchar(900) relativePath : string ref,
+  int equivClass : int ref);
+
+@duplication_or_similarity = @duplication | @similarity;
+
+tokens(
+  int id : @duplication_or_similarity ref,
+  int offset : int ref,
+  int beginLine : int ref,
+  int beginColumn : int ref,
+  int endLine : int ref,
+  int endColumn : int ref);
+
+/** External data **/
+
+externalData(
+  int id : @externalDataElement,
+  varchar(900) path : string ref,
+  int column: int ref,
+  varchar(900) value : string ref
+);
+
+snapshotDate(unique date snapshotDate : date ref);
+
+sourceLocationPrefix(varchar(900) prefix : string ref);
+
+/** Version control data **/
+
+svnentries(
+  int id : @svnentry,
+  varchar(500) revision : string ref,
+  varchar(500) author : string ref,
+  date revisionDate : date ref,
+  int changeSize : int ref
+);
+
+svnaffectedfiles(
+  int id : @svnentry ref,
+  int file : @file ref,
+  varchar(500) action : string ref
+);
+
+svnentrymsg(
+  int id : @svnentry ref,
+  varchar(500) message : string ref
+);
+
+svnchurn(
+  int commit : @svnentry ref,
+  int file : @file ref,
+  int addedLines : int ref,
+  int deletedLines : int ref
+);
+
+
+/*** JavaScript-specific part ***/
+
+filetype(
+  int file: @file ref,
+  string filetype: string ref
+)
+
+// top-level code fragments
+toplevels (unique int id: @toplevel,
+           int kind: int ref);
+
+is_externs (int toplevel: @toplevel ref);
+
+case @toplevel.kind of
+   0 = @script
+|  1 = @inline_script
+|  2 = @event_handler
+|  3 = @javascript_url
+|  4 = @template_toplevel;
+
+is_module (int tl: @toplevel ref);
+is_nodejs (int tl: @toplevel ref);
+is_es2015_module (int tl: @toplevel ref);
+is_closure_module (int tl: @toplevel ref);
+
+@xml_node_with_code = @xmlelement | @xmlattribute | @template_placeholder_tag;
+toplevel_parent_xml_node(
+  unique int toplevel: @toplevel ref,
+  int xmlnode: @xml_node_with_code ref);
+
+xml_element_parent_expression(
+  unique int xmlnode: @xmlelement ref,
+  int expression: @expr ref,
+  int index: int ref);
+
+// statements
+#keyset[parent, idx]
+stmts (unique int id: @stmt,
+       int kind: int ref,
+       int parent: @stmt_parent ref,
+       int idx: int ref,
+       varchar(900) tostring: string ref);
+
+stmt_containers (unique int stmt: @stmt ref,
+       int container: @stmt_container ref);
+
+jump_targets (unique int jump: @stmt ref,
+       int target: @stmt ref);
+
+@stmt_parent = @stmt | @toplevel | @function_expr | @arrow_function_expr | @static_initializer;
+@stmt_container = @toplevel | @function | @namespace_declaration | @external_module_declaration | @global_augmentation_declaration;
+
+case @stmt.kind of
+   0 = @empty_stmt
+|  1 = @block_stmt
+|  2 = @expr_stmt
+|  3 = @if_stmt
+|  4 = @labeled_stmt
+|  5 = @break_stmt
+|  6 = @continue_stmt
+|  7 = @with_stmt
+|  8 = @switch_stmt
+|  9 = @return_stmt
+| 10 = @throw_stmt
+| 11 = @try_stmt
+| 12 = @while_stmt
+| 13 = @do_while_stmt
+| 14 = @for_stmt
+| 15 = @for_in_stmt
+| 16 = @debugger_stmt
+| 17 = @function_decl_stmt
+| 18 = @var_decl_stmt
+| 19 = @case
+| 20 = @catch_clause
+| 21 = @for_of_stmt
+| 22 = @const_decl_stmt
+| 23 = @let_stmt
+| 24 = @legacy_let_stmt
+| 25 = @for_each_stmt
+| 26 = @class_decl_stmt
+| 27 = @import_declaration
+| 28 = @export_all_declaration
+| 29 = @export_default_declaration
+| 30 = @export_named_declaration
+| 31 = @namespace_declaration
+| 32 = @import_equals_declaration
+| 33 = @export_assign_declaration
+| 34 = @interface_declaration
+| 35 = @type_alias_declaration
+| 36 = @enum_declaration
+| 37 = @external_module_declaration
+| 38 = @export_as_namespace_declaration
+| 39 = @global_augmentation_declaration
+;
+
+@decl_stmt = @var_decl_stmt | @const_decl_stmt | @let_stmt | @legacy_let_stmt;
+
+@export_declaration = @export_all_declaration | @export_default_declaration | @export_named_declaration;
+
+@namespace_definition = @namespace_declaration | @enum_declaration;
+@type_definition = @class_definition | @interface_declaration | @enum_declaration | @type_alias_declaration | @enum_member;
+
+is_instantiated(unique int decl: @namespace_declaration ref);
+
+@declarable_node = @decl_stmt | @namespace_declaration | @class_decl_stmt | @function_decl_stmt | @enum_declaration | @external_module_declaration | @global_augmentation_declaration | @field;
+has_declare_keyword(unique int stmt: @declarable_node ref);
+
+is_for_await_of(unique int forof: @for_of_stmt ref);
+
+// expressions
+#keyset[parent, idx]
+exprs (unique int id: @expr,
+       int kind: int ref,
+       int parent: @expr_parent ref,
+       int idx: int ref,
+       varchar(900) tostring: string ref);
+
+literals (varchar(900) value: string ref,
+       varchar(900) raw: string ref,
+       unique int expr: @expr_or_type ref);
+
+enclosing_stmt (unique int expr: @expr_or_type ref,
+       int stmt: @stmt ref);
+
+expr_containers (unique int expr: @expr_or_type ref,
+       int container: @stmt_container ref);
+
+array_size (unique int ae: @arraylike ref,
+       int sz: int ref);
+
+is_delegating (int yield: @yield_expr ref);
+
+@expr_or_stmt = @expr | @stmt;
+@expr_or_type = @expr | @typeexpr;
+@expr_parent = @expr_or_stmt | @property | @function_typeexpr;
+@arraylike = @array_expr | @array_pattern;
+@type_annotation = @typeexpr | @jsdoc_type_expr;
+@node_in_stmt_container = @cfg_node | @type_annotation | @toplevel;
+
+case @expr.kind of
+   0 = @label
+|  1 = @null_literal
+|  2 = @boolean_literal
+|  3 = @number_literal
+|  4 = @string_literal
+|  5 = @regexp_literal
+|  6 = @this_expr
+|  7 = @array_expr
+|  8 = @obj_expr
+|  9 = @function_expr
+| 10 = @seq_expr
+| 11 = @conditional_expr
+| 12 = @new_expr
+| 13 = @call_expr
+| 14 = @dot_expr
+| 15 = @index_expr
+| 16 = @neg_expr
+| 17 = @plus_expr
+| 18 = @log_not_expr
+| 19 = @bit_not_expr
+| 20 = @typeof_expr
+| 21 = @void_expr
+| 22 = @delete_expr
+| 23 = @eq_expr
+| 24 = @neq_expr
+| 25 = @eqq_expr
+| 26 = @neqq_expr
+| 27 = @lt_expr
+| 28 = @le_expr
+| 29 = @gt_expr
+| 30 = @ge_expr
+| 31 = @lshift_expr
+| 32 = @rshift_expr
+| 33 = @urshift_expr
+| 34 = @add_expr
+| 35 = @sub_expr
+| 36 = @mul_expr
+| 37 = @div_expr
+| 38 = @mod_expr
+| 39 = @bitor_expr
+| 40 = @xor_expr
+| 41 = @bitand_expr
+| 42 = @in_expr
+| 43 = @instanceof_expr
+| 44 = @logand_expr
+| 45 = @logor_expr
+| 47 = @assign_expr
+| 48 = @assign_add_expr
+| 49 = @assign_sub_expr
+| 50 = @assign_mul_expr
+| 51 = @assign_div_expr
+| 52 = @assign_mod_expr
+| 53 = @assign_lshift_expr
+| 54 = @assign_rshift_expr
+| 55 = @assign_urshift_expr
+| 56 = @assign_or_expr
+| 57 = @assign_xor_expr
+| 58 = @assign_and_expr
+| 59 = @preinc_expr
+| 60 = @postinc_expr
+| 61 = @predec_expr
+| 62 = @postdec_expr
+| 63 = @par_expr
+| 64 = @var_declarator
+| 65 = @arrow_function_expr
+| 66 = @spread_element
+| 67 = @array_pattern
+| 68 = @object_pattern
+| 69 = @yield_expr
+| 70 = @tagged_template_expr
+| 71 = @template_literal
+| 72 = @template_element
+| 73 = @array_comprehension_expr
+| 74 = @generator_expr
+| 75 = @for_in_comprehension_block
+| 76 = @for_of_comprehension_block
+| 77 = @legacy_letexpr
+| 78 = @var_decl
+| 79 = @proper_varaccess
+| 80 = @class_expr
+| 81 = @super_expr
+| 82 = @newtarget_expr
+| 83 = @named_import_specifier
+| 84 = @import_default_specifier
+| 85 = @import_namespace_specifier
+| 86 = @named_export_specifier
+| 87 = @exp_expr
+| 88 = @assign_exp_expr
+| 89 = @jsx_element
+| 90 = @jsx_qualified_name
+| 91 = @jsx_empty_expr
+| 92 = @await_expr
+| 93 = @function_sent_expr
+| 94 = @decorator
+| 95 = @export_default_specifier
+| 96 = @export_namespace_specifier
+| 97 = @bind_expr
+| 98 = @external_module_reference
+| 99 = @dynamic_import
+| 100 = @expression_with_type_arguments
+| 101 = @prefix_type_assertion
+| 102 = @as_type_assertion
+| 103 = @export_varaccess
+| 104 = @decorator_list
+| 105 = @non_null_assertion
+| 106 = @bigint_literal
+| 107 = @nullishcoalescing_expr
+| 108 = @e4x_xml_anyname
+| 109 = @e4x_xml_static_attribute_selector
+| 110 = @e4x_xml_dynamic_attribute_selector
+| 111 = @e4x_xml_filter_expression
+| 112 = @e4x_xml_static_qualident
+| 113 = @e4x_xml_dynamic_qualident
+| 114 = @e4x_xml_dotdotexpr
+| 115 = @import_meta_expr
+| 116 = @assignlogandexpr
+| 117 = @assignlogorexpr
+| 118 = @assignnullishcoalescingexpr
+| 119 = @template_pipe_ref
+| 120 = @generated_code_expr
+| 121 = @satisfies_expr
+;
+
+@varaccess = @proper_varaccess | @export_varaccess;
+@varref = @var_decl | @varaccess;
+
+@identifier = @label | @varref | @type_identifier;
+
+@literal = @null_literal | @boolean_literal | @number_literal | @string_literal | @regexp_literal | @bigint_literal;
+
+@propaccess = @dot_expr | @index_expr;
+
+@invokeexpr = @new_expr | @call_expr;
+
+@unaryexpr = @neg_expr | @plus_expr | @log_not_expr | @bit_not_expr | @typeof_expr | @void_expr | @delete_expr | @spread_element;
+
+@equality_test = @eq_expr | @neq_expr | @eqq_expr | @neqq_expr;
+
+@comparison = @equality_test | @lt_expr | @le_expr | @gt_expr | @ge_expr;
+
+@binaryexpr = @comparison | @lshift_expr | @rshift_expr | @urshift_expr | @add_expr | @sub_expr | @mul_expr | @div_expr | @mod_expr | @exp_expr | @bitor_expr | @xor_expr | @bitand_expr | @in_expr | @instanceof_expr | @logand_expr | @logor_expr | @nullishcoalescing_expr;
+
+@assignment = @assign_expr | @assign_add_expr | @assign_sub_expr | @assign_mul_expr | @assign_div_expr | @assign_mod_expr | @assign_exp_expr | @assign_lshift_expr | @assign_rshift_expr | @assign_urshift_expr | @assign_or_expr | @assign_xor_expr | @assign_and_expr | @assignlogandexpr | @assignlogorexpr | @assignnullishcoalescingexpr;
+
+@updateexpr = @preinc_expr | @postinc_expr | @predec_expr | @postdec_expr;
+
+@pattern = @varref | @array_pattern | @object_pattern;
+
+@comprehension_expr = @array_comprehension_expr | @generator_expr;
+
+@comprehension_block = @for_in_comprehension_block | @for_of_comprehension_block;
+
+@import_specifier = @named_import_specifier | @import_default_specifier | @import_namespace_specifier;
+
+@exportspecifier = @named_export_specifier | @export_default_specifier | @export_namespace_specifier;
+
+@type_keyword_operand = @import_declaration | @export_declaration | @import_specifier;
+
+@type_assertion = @as_type_assertion | @prefix_type_assertion;
+
+@class_definition = @class_decl_stmt | @class_expr;
+@interface_definition = @interface_declaration | @interface_typeexpr;
+@class_or_interface = @class_definition | @interface_definition;
+
+@lexical_decl = @var_decl | @type_decl;
+@lexical_access = @varaccess | @local_type_access | @local_var_type_access | @local_namespace_access;
+@lexical_ref = @lexical_decl | @lexical_access;
+
+@e4x_xml_attribute_selector = @e4x_xml_static_attribute_selector | @e4x_xml_dynamic_attribute_selector;
+@e4x_xml_qualident = @e4x_xml_static_qualident | @e4x_xml_dynamic_qualident;
+
+expr_contains_template_tag_location(
+  int expr: @expr ref,
+  int location: @location ref
+);
+
+@template_placeholder_tag_parent = @xmlelement | @xmlattribute | @file;
+
+template_placeholder_tag_info(
+  unique int node: @template_placeholder_tag,
+  int parentNode: @template_placeholder_tag_parent ref,
+  varchar(900) raw: string ref
+);
+
+// scopes
+scopes (unique int id: @scope,
+        int kind: int ref);
+
+case @scope.kind of
+   0 = @global_scope
+|  1 = @function_scope
+|  2 = @catch_scope
+|  3 = @module_scope
+|  4 = @block_scope
+|  5 = @for_scope
+|  6 = @for_in_scope // for-of scopes work the same as for-in scopes
+|  7 = @comprehension_block_scope
+|  8 = @class_expr_scope
+|  9 = @namespace_scope
+| 10 = @class_decl_scope
+| 11 = @interface_scope
+| 12 = @type_alias_scope
+| 13 = @mapped_type_scope
+| 14 = @enum_scope
+| 15 = @external_module_scope
+| 16 = @conditional_type_scope;
+
+scopenodes (unique int node: @ast_node ref,
+            int scope: @scope ref);
+
+scopenesting (unique int inner: @scope ref,
+              int outer: @scope ref);
+
+// functions
+@function = @function_decl_stmt | @function_expr | @arrow_function_expr;
+
+@parameterized = @function | @catch_clause;
+@type_parameterized = @function | @class_or_interface | @type_alias_declaration | @mapped_typeexpr | @infer_typeexpr;
+
+is_generator (int fun: @function ref);
+has_rest_parameter (int fun: @function ref);
+is_async (int fun: @function ref);
+
+// variables and lexically scoped type names
+#keyset[scope, name]
+variables (unique int id: @variable,
+           varchar(900) name: string ref,
+           int scope: @scope ref);
+
+#keyset[scope, name]
+local_type_names (unique int id: @local_type_name,
+                  varchar(900) name: string ref,
+                  int scope: @scope ref);
+
+#keyset[scope, name]
+local_namespace_names (unique int id: @local_namespace_name,
+                       varchar(900) name: string ref,
+                       int scope: @scope ref);
+
+is_arguments_object (int id: @variable ref);
+
+@lexical_name = @variable | @local_type_name | @local_namespace_name;
+
+@bind_id = @varaccess | @local_var_type_access;
+bind (unique int id: @bind_id ref,
+      int decl: @variable ref);
+
+decl (unique int id: @var_decl ref,
+      int decl: @variable ref);
+
+@typebind_id = @local_type_access | @export_varaccess;
+typebind (unique int id: @typebind_id ref,
+          int decl: @local_type_name ref);
+
+@typedecl_id = @type_decl | @var_decl;
+typedecl (unique int id: @typedecl_id ref,
+          int decl: @local_type_name ref);
+
+namespacedecl (unique int id: @var_decl ref,
+               int decl: @local_namespace_name ref);
+
+@namespacebind_id = @local_namespace_access | @export_varaccess;
+namespacebind (unique int id: @namespacebind_id ref,
+               int decl: @local_namespace_name ref);
+
+
+// properties in object literals, property patterns in object patterns, and method declarations in classes
+#keyset[parent, index]
+properties (unique int id: @property,
+            int parent: @property_parent ref,
+            int index: int ref,
+            int kind: int ref,
+            varchar(900) tostring: string ref);
+
+case @property.kind of
+  0 = @value_property
+| 1 = @property_getter
+| 2 = @property_setter
+| 3 = @jsx_attribute
+| 4 = @function_call_signature
+| 5 = @constructor_call_signature
+| 6 = @index_signature
+| 7 = @enum_member
+| 8 = @proper_field
+| 9 = @parameter_field
+| 10 = @static_initializer
+;
+
+@property_parent = @obj_expr | @object_pattern | @class_definition | @jsx_element | @interface_definition | @enum_declaration;
+@property_accessor = @property_getter | @property_setter;
+@call_signature = @function_call_signature | @constructor_call_signature;
+@field = @proper_field | @parameter_field;
+@field_or_vardeclarator = @field | @var_declarator;
+
+is_computed (int id: @property ref);
+is_method   (int id: @property ref);
+is_static   (int id: @property ref);
+is_abstract_member (int id: @property ref);
+is_const_enum (int id: @enum_declaration ref);
+is_abstract_class (int id: @class_decl_stmt ref);
+
+has_public_keyword (int id: @property ref);
+has_private_keyword (int id: @property ref);
+has_protected_keyword (int id: @property ref);
+has_readonly_keyword (int id: @property ref);
+has_type_keyword (int id: @type_keyword_operand ref);
+is_optional_member (int id: @property ref);
+has_definite_assignment_assertion (int id: @field_or_vardeclarator ref);
+is_optional_parameter_declaration (unique int parameter: @pattern ref);
+
+#keyset[constructor, param_index]
+parameter_fields(
+  unique int field: @parameter_field ref,
+  int constructor: @function_expr ref,
+  int param_index: int ref
+);
+
+// types
+#keyset[parent, idx]
+typeexprs (
+  unique int id: @typeexpr,
+  int kind: int ref,
+  int parent: @typeexpr_parent ref,
+  int idx: int ref,
+  varchar(900) tostring: string ref
+);
+
+case @typeexpr.kind of
+  0 = @local_type_access
+| 1 = @type_decl
+| 2 = @keyword_typeexpr
+| 3 = @string_literal_typeexpr
+| 4 = @number_literal_typeexpr
+| 5 = @boolean_literal_typeexpr
+| 6 = @array_typeexpr
+| 7 = @union_typeexpr
+| 8 = @indexed_access_typeexpr
+| 9 = @intersection_typeexpr
+| 10 = @parenthesized_typeexpr
+| 11 = @tuple_typeexpr
+| 12 = @keyof_typeexpr
+| 13 = @qualified_type_access
+| 14 = @generic_typeexpr
+| 15 = @type_label
+| 16 = @typeof_typeexpr
+| 17 = @local_var_type_access
+| 18 = @qualified_var_type_access
+| 19 = @this_var_type_access
+| 20 = @predicate_typeexpr
+| 21 = @interface_typeexpr
+| 22 = @type_parameter
+| 23 = @plain_function_typeexpr
+| 24 = @constructor_typeexpr
+| 25 = @local_namespace_access
+| 26 = @qualified_namespace_access
+| 27 = @mapped_typeexpr
+| 28 = @conditional_typeexpr
+| 29 = @infer_typeexpr
+| 30 = @import_type_access
+| 31 = @import_namespace_access
+| 32 = @import_var_type_access
+| 33 = @optional_typeexpr
+| 34 = @rest_typeexpr
+| 35 = @bigint_literal_typeexpr
+| 36 = @readonly_typeexpr
+| 37 = @template_literal_typeexpr
+;
+
+@typeref = @typeaccess | @type_decl;
+@type_identifier = @type_decl | @local_type_access | @type_label | @local_var_type_access | @local_namespace_access;
+@typeexpr_parent = @expr | @stmt | @property | @typeexpr;
+@literal_typeexpr = @string_literal_typeexpr | @number_literal_typeexpr | @boolean_literal_typeexpr | @bigint_literal_typeexpr;
+@typeaccess = @local_type_access | @qualified_type_access | @import_type_access;
+@vartypeaccess = @local_var_type_access | @qualified_var_type_access | @this_var_type_access | @import_var_type_access;
+@namespace_access = @local_namespace_access | @qualified_namespace_access | @import_namespace_access;
+@import_typeexpr = @import_type_access | @import_namespace_access | @import_var_type_access;
+
+@function_typeexpr = @plain_function_typeexpr | @constructor_typeexpr;
+
+// types
+types (
+  unique int id: @type,
+  int kind: int ref,
+  varchar(900) tostring: string ref
+);
+
+#keyset[parent, idx]
+type_child (
+  int child: @type ref,
+  int parent: @type ref,
+  int idx: int ref
+);
+
+case @type.kind of
+  0 = @any_type
+| 1 = @string_type
+| 2 = @number_type
+| 3 = @union_type
+| 4 = @true_type
+| 5 = @false_type
+| 6 = @type_reference
+| 7 = @object_type
+| 8 = @canonical_type_variable_type
+| 9 = @typeof_type
+| 10 = @void_type
+| 11 = @undefined_type
+| 12 = @null_type
+| 13 = @never_type
+| 14 = @plain_symbol_type
+| 15 = @unique_symbol_type
+| 16 = @objectkeyword_type
+| 17 = @intersection_type
+| 18 = @tuple_type
+| 19 = @lexical_type_variable_type
+| 20 = @this_type
+| 21 = @number_literal_type
+| 22 = @string_literal_type
+| 23 = @unknown_type
+| 24 = @bigint_type
+| 25 = @bigint_literal_type
+;
+
+@boolean_literal_type = @true_type | @false_type;
+@symbol_type = @plain_symbol_type | @unique_symbol_type;
+@union_or_intersection_type = @union_type | @intersection_type;
+@typevariable_type = @canonical_type_variable_type | @lexical_type_variable_type;
+
+has_asserts_keyword(int node: @predicate_typeexpr ref);
+
+@typed_ast_node = @expr | @typeexpr | @function;
+ast_node_type(
+  unique int node: @typed_ast_node ref,
+  int typ: @type ref);
+
+declared_function_signature(
+  unique int node: @function ref,
+  int sig: @signature_type ref
+);
+
+invoke_expr_signature(
+  unique int node: @invokeexpr ref,
+  int sig: @signature_type ref
+);
+
+invoke_expr_overload_index(
+  unique int node: @invokeexpr ref,
+  int index: int ref
+);
+
+symbols (
+  unique int id: @symbol,
+  int kind: int ref,
+  varchar(900) name: string ref
+);
+
+symbol_parent (
+  unique int symbol: @symbol ref,
+  int parent: @symbol ref
+);
+
+symbol_module (
+  int symbol: @symbol ref,
+  varchar(900) moduleName: string ref
+);
+
+symbol_global (
+  int symbol: @symbol ref,
+  varchar(900) globalName: string ref
+);
+
+case @symbol.kind of
+  0 = @root_symbol
+| 1 = @member_symbol
+| 2 = @other_symbol
+;
+
+@type_with_symbol = @type_reference | @typevariable_type | @typeof_type | @unique_symbol_type;
+@ast_node_with_symbol = @type_definition | @namespace_definition | @toplevel | @typeaccess | @namespace_access | @var_decl | @function | @invokeexpr | @import_declaration | @external_module_reference | @external_module_declaration;
+
+ast_node_symbol(
+  unique int node: @ast_node_with_symbol ref,
+  int symbol: @symbol ref);
+
+type_symbol(
+  unique int typ: @type_with_symbol ref,
+  int symbol: @symbol ref);
+
+#keyset[typ, name]
+type_property(
+  int typ: @type ref,
+  varchar(900) name: string ref,
+  int propertyType: @type ref);
+
+type_alias(
+  unique int aliasType: @type ref,
+  int underlyingType: @type ref);
+
+@literal_type = @string_literal_type | @number_literal_type | @boolean_literal_type | @bigint_literal_type;
+@type_with_literal_value = @string_literal_type | @number_literal_type | @bigint_literal_type;
+type_literal_value(
+  unique int typ: @type_with_literal_value ref,
+  varchar(900) value: string ref);
+
+signature_types (
+  unique int id: @signature_type,
+  int kind: int ref,
+  varchar(900) tostring: string ref,
+  int type_parameters: int ref,
+  int required_params: int ref
+);
+
+is_abstract_signature(
+  unique int sig: @signature_type ref
+);
+
+signature_rest_parameter(
+  unique int sig: @signature_type ref,
+  int rest_param_arra_type: @type ref
+);
+
+case @signature_type.kind of
+  0 = @function_signature_type
+| 1 = @constructor_signature_type
+;
+
+#keyset[typ, kind, index]
+type_contains_signature (
+  int typ: @type ref,
+  int kind: int ref,  // constructor/call/index
+  int index: int ref, // ordering of overloaded signatures
+  int sig: @signature_type ref
+);
+
+#keyset[parent, index]
+signature_contains_type (
+  int child: @type ref,
+  int parent: @signature_type ref,
+  int index: int ref
+);
+
+#keyset[sig, index]
+signature_parameter_name (
+  int sig: @signature_type ref,
+  int index: int ref,
+  varchar(900) name: string ref
+);
+
+number_index_type (
+  unique int baseType: @type ref,
+  int propertyType: @type ref
+);
+
+string_index_type (
+  unique int baseType: @type ref,
+  int propertyType: @type ref
+);
+
+base_type_names(
+  int typeName: @symbol ref,
+  int baseTypeName: @symbol ref
+);
+
+self_types(
+  int typeName: @symbol ref,
+  int selfType: @type_reference ref
+);
+
+tuple_type_min_length(
+  unique int typ: @type ref,
+  int minLength: int ref
+);
+
+tuple_type_rest_index(
+  unique int typ: @type ref,
+  int index: int ref
+);
+
+// comments
+comments (unique int id: @comment,
+          int kind: int ref,
+          int toplevel: @toplevel ref,
+          varchar(900) text: string ref,
+          varchar(900) tostring: string ref);
+
+case @comment.kind of
+  0 = @slashslash_comment
+| 1 = @slashstar_comment
+| 2 = @doc_comment
+| 3 = @html_comment_start
+| 4 = @htmlcommentend;
+
+@html_comment = @html_comment_start | @htmlcommentend;
+@line_comment = @slashslash_comment | @html_comment;
+@block_comment = @slashstar_comment | @doc_comment;
+
+// source lines
+lines (unique int id: @line,
+       int toplevel: @toplevel ref,
+       varchar(900) text: string ref,
+       varchar(2) terminator: string ref);
+indentation (int file: @file ref,
+            int lineno: int ref,
+            varchar(1) indentChar: string ref,
+            int indentDepth: int ref);
+
+// JavaScript parse errors
+js_parse_errors (unique int id: @js_parse_error,
+        int toplevel: @toplevel ref,
+        varchar(900) message: string ref,
+        varchar(900) line: string ref);
+
+// regular expressions
+#keyset[parent, idx]
+regexpterm (unique int id: @regexpterm,
+        int kind: int ref,
+        int parent: @regexpparent ref,
+        int idx: int ref,
+        varchar(900) tostring: string ref);
+
+@regexpparent = @regexpterm | @regexp_literal | @string_literal | @add_expr;
+
+case @regexpterm.kind of
+   0 = @regexp_alt
+|  1 = @regexp_seq
+|  2 = @regexp_caret
+|  3 = @regexp_dollar
+|  4 = @regexp_wordboundary
+|  5 = @regexp_nonwordboundary
+|  6 = @regexp_positive_lookahead
+|  7 = @regexp_negative_lookahead
+|  8 = @regexp_star
+|  9 = @regexp_plus
+| 10 = @regexp_opt
+| 11 = @regexp_range
+| 12 = @regexp_dot
+| 13 = @regexp_group
+| 14 = @regexp_normal_constant
+| 15 = @regexp_hex_escape
+| 16 = @regexp_unicode_escape
+| 17 = @regexp_dec_escape
+| 18 = @regexp_oct_escape
+| 19 = @regexp_ctrl_escape
+| 20 = @regexp_char_class_escape
+| 21 = @regexp_id_escape
+| 22 = @regexp_backref
+| 23 = @regexp_char_class
+| 24 = @regexp_char_range
+| 25 = @regexp_positive_lookbehind
+| 26 = @regexp_negative_lookbehind
+| 27 = @regexp_unicode_property_escape;
+
+regexp_parse_errors (unique int id: @regexp_parse_error,
+    int regexp: @regexpterm ref,
+    varchar(900) message: string ref);
+
+@regexp_quantifier = @regexp_star | @regexp_plus | @regexp_opt | @regexp_range;
+@regexp_escape = @regexp_char_escape | @regexp_char_class_escape | @regexp_unicode_property_escape;
+@regexp_char_escape = @regexp_hex_escape | @regexp_unicode_escape | @regexp_dec_escape | @regexp_oct_escape | @regexp_ctrl_escape | @regexp_id_escape;
+@regexp_constant = @regexp_normal_constant | @regexp_char_escape;
+@regexp_lookahead = @regexp_positive_lookahead | @regexp_negative_lookahead;
+@regexp_lookbehind = @regexp_positive_lookbehind | @regexp_negative_lookbehind;
+@regexp_subpattern = @regexp_lookahead | @regexp_lookbehind;
+@regexp_anchor = @regexp_dollar | @regexp_caret;
+
+is_greedy (int id: @regexp_quantifier ref);
+range_quantifier_lower_bound (unique int id: @regexp_range ref, int lo: int ref);
+range_quantifier_upper_bound (unique int id: @regexp_range ref, int hi: int ref);
+is_capture (unique int id: @regexp_group ref, int number: int ref);
+is_named_capture (unique int id: @regexp_group ref, string name: string ref);
+is_inverted (int id: @regexp_char_class ref);
+regexp_const_value (unique int id: @regexp_constant ref, varchar(1) value: string ref);
+char_class_escape (unique int id: @regexp_char_class_escape ref, varchar(1) value: string ref);
+backref (unique int id: @regexp_backref ref, int value: int ref);
+named_backref (unique int id: @regexp_backref ref, string name: string ref);
+unicode_property_escapename (unique int id: @regexp_unicode_property_escape ref, string name: string ref);
+unicode_property_escapevalue (unique int id: @regexp_unicode_property_escape ref, string value: string ref);
+
+// tokens
+#keyset[toplevel, idx]
+tokeninfo (unique int id: @token,
+    int kind: int ref,
+    int toplevel: @toplevel ref,
+    int idx: int ref,
+    varchar(900) value: string ref);
+
+case @token.kind of
+  0 = @token_eof
+| 1 = @token_null_literal
+| 2 = @token_boolean_literal
+| 3 = @token_numeric_literal
+| 4 = @token_string_literal
+| 5 = @token_regular_expression
+| 6 = @token_identifier
+| 7 = @token_keyword
+| 8 = @token_punctuator;
+
+// associate comments with the token immediately following them (which may be EOF)
+next_token (int comment: @comment ref, int token: @token ref);
+
+// JSON
+#keyset[parent, idx]
+json (unique int id: @json_value,
+      int kind: int ref,
+      int parent: @json_parent ref,
+      int idx: int ref,
+      varchar(900) tostring: string ref);
+
+json_literals (varchar(900) value: string ref,
+      varchar(900) raw: string ref,
+      unique int expr: @json_value ref);
+
+json_properties (int obj: @json_object ref,
+      varchar(900) property: string ref,
+      int value: @json_value ref);
+
+json_errors (unique int id: @json_parse_error,
+      varchar(900) message: string ref);
+
+json_locations(unique int locatable: @json_locatable ref,
+      int location: @location_default ref);
+
+case @json_value.kind of
+  0 = @json_null
+| 1 = @json_boolean
+| 2 = @json_number
+| 3 = @json_string
+| 4 = @json_array
+| 5 = @json_object;
+
+@json_parent = @json_object | @json_array | @file;
+
+@json_locatable = @json_value | @json_parse_error;
+
+// locations
+@ast_node = @toplevel | @stmt | @expr | @property | @typeexpr;
+
+@locatable = @file
+    | @ast_node
+    | @comment
+    | @line
+    | @js_parse_error | @regexp_parse_error
+    | @regexpterm
+    | @json_locatable
+    | @token
+    | @cfg_node
+    | @jsdoc | @jsdoc_type_expr | @jsdoc_tag
+    | @yaml_locatable
+    | @xmllocatable
+    | @configLocatable
+    | @template_placeholder_tag;
+
+hasLocation (unique int locatable: @locatable ref,
+    int location: @location ref);
+
+// CFG
+entry_cfg_node (unique int id: @entry_node, int container: @stmt_container ref);
+exit_cfg_node (unique int id: @exit_node, int container: @stmt_container ref);
+guard_node (unique int id: @guard_node, int kind: int ref, int test: @expr ref);
+case @guard_node.kind of
+  0 = @falsy_guard
+| 1 = @truthy_guard;
+@condition_guard = @falsy_guard | @truthy_guard;
+
+@synthetic_cfg_node = @entry_node | @exit_node | @guard_node;
+@cfg_node = @synthetic_cfg_node | @expr_parent;
+
+successor (int pred: @cfg_node ref, int succ: @cfg_node ref);
+
+// JSDoc comments
+jsdoc (unique int id: @jsdoc, varchar(900) description: string ref, int comment: @comment ref);
+#keyset[parent, idx]
+jsdoc_tags (unique int id: @jsdoc_tag, varchar(900) title: string ref,
+            int parent: @jsdoc ref, int idx: int ref, varchar(900) tostring: string ref);
+jsdoc_tag_descriptions (unique int tag: @jsdoc_tag ref, varchar(900) text: string ref);
+jsdoc_tag_names (unique int tag: @jsdoc_tag ref, varchar(900) text: string ref);
+
+#keyset[parent, idx]
+jsdoc_type_exprs (unique int id: @jsdoc_type_expr,
+                  int kind: int ref,
+                  int parent: @jsdoc_type_expr_parent ref,
+                  int idx: int ref,
+                  varchar(900) tostring: string ref);
+case @jsdoc_type_expr.kind of
+    0 = @jsdoc_any_type_expr
+|   1 = @jsdoc_null_type_expr
+|   2 = @jsdoc_undefined_type_expr
+|   3 = @jsdoc_unknown_type_expr
+|   4 = @jsdoc_void_type_expr
+|   5 = @jsdoc_named_type_expr
+|   6 = @jsdoc_applied_type_expr
+|   7 = @jsdoc_nullable_type_expr
+|   8 = @jsdoc_non_nullable_type_expr
+|   9 = @jsdoc_record_type_expr
+|  10 = @jsdoc_array_type_expr
+|  11 = @jsdoc_union_type_expr
+|  12 = @jsdoc_function_type_expr
+|  13 = @jsdoc_optional_type_expr
+|  14 = @jsdoc_rest_type_expr
+;
+
+#keyset[id, idx]
+jsdoc_record_field_name (int id: @jsdoc_record_type_expr ref, int idx: int ref, varchar(900) name: string ref);
+jsdoc_prefix_qualifier (int id: @jsdoc_type_expr ref);
+jsdoc_has_new_parameter (int fn: @jsdoc_function_type_expr ref);
+
+@jsdoc_type_expr_parent = @jsdoc_type_expr | @jsdoc_tag;
+
+jsdoc_errors (unique int id: @jsdoc_error, int tag: @jsdoc_tag ref, varchar(900) message: string ref, varchar(900) tostring: string ref);
+
+// YAML
+#keyset[parent, idx]
+yaml (unique int id: @yaml_node,
+      int kind: int ref,
+      int parent: @yaml_node_parent ref,
+      int idx: int ref,
+      varchar(900) tag: string ref,
+      varchar(900) tostring: string ref);
+
+case @yaml_node.kind of
+  0 = @yaml_scalar_node
+| 1 = @yaml_mapping_node
+| 2 = @yaml_sequence_node
+| 3 = @yaml_alias_node
+;
+
+@yaml_collection_node = @yaml_mapping_node | @yaml_sequence_node;
+
+@yaml_node_parent = @yaml_collection_node | @file;
+
+yaml_anchors (unique int node: @yaml_node ref,
+              varchar(900) anchor: string ref);
+
+yaml_aliases (unique int alias: @yaml_alias_node ref,
+              varchar(900) target: string ref);
+
+yaml_scalars (unique int scalar: @yaml_scalar_node ref,
+              int style: int ref,
+              varchar(900) value: string ref);
+
+yaml_errors (unique int id: @yaml_error,
+             varchar(900) message: string ref);
+
+yaml_locations(unique int locatable: @yaml_locatable ref,
+             int location: @location_default ref);
+
+@yaml_locatable = @yaml_node | @yaml_error;
+
+/* XML Files */
+
+xmlEncoding(
+  unique int id: @file ref,
+  varchar(900) encoding: string ref
+);
+
+xmlDTDs(
+  unique int id: @xmldtd,
+  varchar(900) root: string ref,
+  varchar(900) publicId: string ref,
+  varchar(900) systemId: string ref,
+  int fileid: @file ref
+);
+
+xmlElements(
+  unique int id: @xmlelement,
+  varchar(900) name: string ref,
+  int parentid: @xmlparent ref,
+  int idx: int ref,
+  int fileid: @file ref
+);
+
+xmlAttrs(
+  unique int id: @xmlattribute,
+  int elementid: @xmlelement ref,
+  varchar(900) name: string ref,
+  varchar(3600) value: string ref,
+  int idx: int ref,
+  int fileid: @file ref
+);
+
+xmlNs(
+  int id: @xmlnamespace,
+  varchar(900) prefixName: string ref,
+  varchar(900) URI: string ref,
+  int fileid: @file ref
+);
+
+xmlHasNs(
+  int elementId: @xmlnamespaceable ref,
+  int nsId: @xmlnamespace ref,
+  int fileid: @file ref
+);
+
+xmlComments(
+  unique int id: @xmlcomment,
+  varchar(3600) text: string ref,
+  int parentid: @xmlparent ref,
+  int fileid: @file ref
+);
+
+xmlChars(
+  unique int id: @xmlcharacters,
+  varchar(3600) text: string ref,
+  int parentid: @xmlparent ref,
+  int idx: int ref,
+  int isCDATA: int ref,
+  int fileid: @file ref
+);
+
+@xmlparent = @file | @xmlelement;
+@xmlnamespaceable = @xmlelement | @xmlattribute;
+
+xmllocations(
+  int xmlElement: @xmllocatable ref,
+  int location: @location_default ref
+);
+
+@xmllocatable = @xmlcharacters | @xmlelement | @xmlcomment | @xmlattribute | @xmldtd | @file | @xmlnamespace;
+
+@dataflownode = @expr | @function_decl_stmt | @class_decl_stmt | @namespace_declaration | @enum_declaration | @property;
+
+@optionalchainable = @call_expr | @propaccess;
+
+isOptionalChaining(int id: @optionalchainable ref);
+
+/*
+ * configuration files with key value pairs
+ */
+
+configs(
+  unique int id: @config
+);
+
+configNames(
+  unique int id: @configName,
+  int config: @config ref,
+  string name: string ref
+);
+
+configValues(
+  unique int id: @configValue,
+  int config: @config ref,
+  string value: string ref
+);
+
+configLocations(
+  int locatable: @configLocatable ref,
+  int location: @location_default ref
+);
+
+@configLocatable = @config | @configName | @configValue;
+
+/**
+ * The time taken for the extraction of a file.
+ * This table contains non-deterministic content.
+ *
+ * The sum of the `time` column for each (`file`, `timerKind`) pair
+ * is the total time taken for extraction of `file`.  The `extractionPhase`
+ * column provides a granular view of the extraction time of the file.
+ */
+extraction_time(
+   int file : @file ref,
+   // see `com.semmle.js.extractor.ExtractionMetrics.ExtractionPhase`.
+   int extractionPhase: int ref,
+   // 0 for the elapsed CPU time in nanoseconds, 1 for the elapsed wallclock time in nanoseconds
+   int timerKind: int ref,
+   float time: float ref
+)
+
+/**
+ * Non-timing related data for the extraction of a single file.
+ * This table contains non-deterministic content.
+ */
+extraction_data(
+   int file : @file ref,
+   // the absolute path to the cache file
+   varchar(900) cacheFile: string ref,
+   boolean fromCache: boolean ref,
+   int length: int ref
+)
diff --git a/javascript/downgrades/4d00210ca570d55c4833af11d3372b774dbc63f2/semmlecode.javascript.dbscheme b/javascript/downgrades/4d00210ca570d55c4833af11d3372b774dbc63f2/semmlecode.javascript.dbscheme
new file mode 100644
index 00000000000..c0664d5721c
--- /dev/null
+++ b/javascript/downgrades/4d00210ca570d55c4833af11d3372b774dbc63f2/semmlecode.javascript.dbscheme
@@ -0,0 +1,1217 @@
+/*** Standard fragments ***/
+
+/** Files and folders **/
+
+@location = @location_default;
+
+locations_default(unique int id: @location_default,
+          int file: @file ref,
+          int beginLine: int ref,
+          int beginColumn: int ref,
+          int endLine: int ref,
+          int endColumn: int ref
+         );
+
+@sourceline = @locatable;
+
+numlines(int element_id: @sourceline ref,
+         int num_lines: int ref,
+         int num_code: int ref,
+         int num_comment: int ref
+        );
+
+files(unique int id: @file,
+      varchar(900) name: string ref);
+
+folders(unique int id: @folder,
+        varchar(900) name: string ref);
+
+
+@container = @folder | @file ;
+
+
+containerparent(int parent: @container ref,
+                unique int child: @container ref);
+
+/** Duplicate code **/
+
+duplicateCode(
+  unique int id : @duplication,
+  varchar(900) relativePath : string ref,
+  int equivClass : int ref);
+
+similarCode(
+  unique int id : @similarity,
+  varchar(900) relativePath : string ref,
+  int equivClass : int ref);
+
+@duplication_or_similarity = @duplication | @similarity;
+
+tokens(
+  int id : @duplication_or_similarity ref,
+  int offset : int ref,
+  int beginLine : int ref,
+  int beginColumn : int ref,
+  int endLine : int ref,
+  int endColumn : int ref);
+
+/** External data **/
+
+externalData(
+  int id : @externalDataElement,
+  varchar(900) path : string ref,
+  int column: int ref,
+  varchar(900) value : string ref
+);
+
+snapshotDate(unique date snapshotDate : date ref);
+
+sourceLocationPrefix(varchar(900) prefix : string ref);
+
+/** Version control data **/
+
+svnentries(
+  int id : @svnentry,
+  varchar(500) revision : string ref,
+  varchar(500) author : string ref,
+  date revisionDate : date ref,
+  int changeSize : int ref
+);
+
+svnaffectedfiles(
+  int id : @svnentry ref,
+  int file : @file ref,
+  varchar(500) action : string ref
+);
+
+svnentrymsg(
+  int id : @svnentry ref,
+  varchar(500) message : string ref
+);
+
+svnchurn(
+  int commit : @svnentry ref,
+  int file : @file ref,
+  int addedLines : int ref,
+  int deletedLines : int ref
+);
+
+
+/*** JavaScript-specific part ***/
+
+filetype(
+  int file: @file ref,
+  string filetype: string ref
+)
+
+// top-level code fragments
+toplevels (unique int id: @toplevel,
+           int kind: int ref);
+
+is_externs (int toplevel: @toplevel ref);
+
+case @toplevel.kind of
+   0 = @script
+|  1 = @inline_script
+|  2 = @event_handler
+|  3 = @javascript_url
+|  4 = @template_toplevel;
+
+is_module (int tl: @toplevel ref);
+is_nodejs (int tl: @toplevel ref);
+is_es2015_module (int tl: @toplevel ref);
+is_closure_module (int tl: @toplevel ref);
+
+@xml_node_with_code = @xmlelement | @xmlattribute | @template_placeholder_tag;
+toplevel_parent_xml_node(
+  unique int toplevel: @toplevel ref,
+  int xmlnode: @xml_node_with_code ref);
+
+xml_element_parent_expression(
+  unique int xmlnode: @xmlelement ref,
+  int expression: @expr ref,
+  int index: int ref);
+
+// statements
+#keyset[parent, idx]
+stmts (unique int id: @stmt,
+       int kind: int ref,
+       int parent: @stmt_parent ref,
+       int idx: int ref,
+       varchar(900) tostring: string ref);
+
+stmt_containers (unique int stmt: @stmt ref,
+       int container: @stmt_container ref);
+
+jump_targets (unique int jump: @stmt ref,
+       int target: @stmt ref);
+
+@stmt_parent = @stmt | @toplevel | @function_expr | @arrow_function_expr | @static_initializer;
+@stmt_container = @toplevel | @function | @namespace_declaration | @external_module_declaration | @global_augmentation_declaration;
+
+case @stmt.kind of
+   0 = @empty_stmt
+|  1 = @block_stmt
+|  2 = @expr_stmt
+|  3 = @if_stmt
+|  4 = @labeled_stmt
+|  5 = @break_stmt
+|  6 = @continue_stmt
+|  7 = @with_stmt
+|  8 = @switch_stmt
+|  9 = @return_stmt
+| 10 = @throw_stmt
+| 11 = @try_stmt
+| 12 = @while_stmt
+| 13 = @do_while_stmt
+| 14 = @for_stmt
+| 15 = @for_in_stmt
+| 16 = @debugger_stmt
+| 17 = @function_decl_stmt
+| 18 = @var_decl_stmt
+| 19 = @case
+| 20 = @catch_clause
+| 21 = @for_of_stmt
+| 22 = @const_decl_stmt
+| 23 = @let_stmt
+| 24 = @legacy_let_stmt
+| 25 = @for_each_stmt
+| 26 = @class_decl_stmt
+| 27 = @import_declaration
+| 28 = @export_all_declaration
+| 29 = @export_default_declaration
+| 30 = @export_named_declaration
+| 31 = @namespace_declaration
+| 32 = @import_equals_declaration
+| 33 = @export_assign_declaration
+| 34 = @interface_declaration
+| 35 = @type_alias_declaration
+| 36 = @enum_declaration
+| 37 = @external_module_declaration
+| 38 = @export_as_namespace_declaration
+| 39 = @global_augmentation_declaration
+;
+
+@decl_stmt = @var_decl_stmt | @const_decl_stmt | @let_stmt | @legacy_let_stmt;
+
+@export_declaration = @export_all_declaration | @export_default_declaration | @export_named_declaration;
+
+@namespace_definition = @namespace_declaration | @enum_declaration;
+@type_definition = @class_definition | @interface_declaration | @enum_declaration | @type_alias_declaration | @enum_member;
+
+is_instantiated(unique int decl: @namespace_declaration ref);
+
+@declarable_node = @decl_stmt | @namespace_declaration | @class_decl_stmt | @function_decl_stmt | @enum_declaration | @external_module_declaration | @global_augmentation_declaration | @field;
+has_declare_keyword(unique int stmt: @declarable_node ref);
+
+is_for_await_of(unique int forof: @for_of_stmt ref);
+
+// expressions
+#keyset[parent, idx]
+exprs (unique int id: @expr,
+       int kind: int ref,
+       int parent: @expr_parent ref,
+       int idx: int ref,
+       varchar(900) tostring: string ref);
+
+literals (varchar(900) value: string ref,
+       varchar(900) raw: string ref,
+       unique int expr: @expr_or_type ref);
+
+enclosing_stmt (unique int expr: @expr_or_type ref,
+       int stmt: @stmt ref);
+
+expr_containers (unique int expr: @expr_or_type ref,
+       int container: @stmt_container ref);
+
+array_size (unique int ae: @arraylike ref,
+       int sz: int ref);
+
+is_delegating (int yield: @yield_expr ref);
+
+@expr_or_stmt = @expr | @stmt;
+@expr_or_type = @expr | @typeexpr;
+@expr_parent = @expr_or_stmt | @property | @function_typeexpr;
+@arraylike = @array_expr | @array_pattern;
+@type_annotation = @typeexpr | @jsdoc_type_expr;
+@node_in_stmt_container = @cfg_node | @type_annotation | @toplevel;
+
+case @expr.kind of
+   0 = @label
+|  1 = @null_literal
+|  2 = @boolean_literal
+|  3 = @number_literal
+|  4 = @string_literal
+|  5 = @regexp_literal
+|  6 = @this_expr
+|  7 = @array_expr
+|  8 = @obj_expr
+|  9 = @function_expr
+| 10 = @seq_expr
+| 11 = @conditional_expr
+| 12 = @new_expr
+| 13 = @call_expr
+| 14 = @dot_expr
+| 15 = @index_expr
+| 16 = @neg_expr
+| 17 = @plus_expr
+| 18 = @log_not_expr
+| 19 = @bit_not_expr
+| 20 = @typeof_expr
+| 21 = @void_expr
+| 22 = @delete_expr
+| 23 = @eq_expr
+| 24 = @neq_expr
+| 25 = @eqq_expr
+| 26 = @neqq_expr
+| 27 = @lt_expr
+| 28 = @le_expr
+| 29 = @gt_expr
+| 30 = @ge_expr
+| 31 = @lshift_expr
+| 32 = @rshift_expr
+| 33 = @urshift_expr
+| 34 = @add_expr
+| 35 = @sub_expr
+| 36 = @mul_expr
+| 37 = @div_expr
+| 38 = @mod_expr
+| 39 = @bitor_expr
+| 40 = @xor_expr
+| 41 = @bitand_expr
+| 42 = @in_expr
+| 43 = @instanceof_expr
+| 44 = @logand_expr
+| 45 = @logor_expr
+| 47 = @assign_expr
+| 48 = @assign_add_expr
+| 49 = @assign_sub_expr
+| 50 = @assign_mul_expr
+| 51 = @assign_div_expr
+| 52 = @assign_mod_expr
+| 53 = @assign_lshift_expr
+| 54 = @assign_rshift_expr
+| 55 = @assign_urshift_expr
+| 56 = @assign_or_expr
+| 57 = @assign_xor_expr
+| 58 = @assign_and_expr
+| 59 = @preinc_expr
+| 60 = @postinc_expr
+| 61 = @predec_expr
+| 62 = @postdec_expr
+| 63 = @par_expr
+| 64 = @var_declarator
+| 65 = @arrow_function_expr
+| 66 = @spread_element
+| 67 = @array_pattern
+| 68 = @object_pattern
+| 69 = @yield_expr
+| 70 = @tagged_template_expr
+| 71 = @template_literal
+| 72 = @template_element
+| 73 = @array_comprehension_expr
+| 74 = @generator_expr
+| 75 = @for_in_comprehension_block
+| 76 = @for_of_comprehension_block
+| 77 = @legacy_letexpr
+| 78 = @var_decl
+| 79 = @proper_varaccess
+| 80 = @class_expr
+| 81 = @super_expr
+| 82 = @newtarget_expr
+| 83 = @named_import_specifier
+| 84 = @import_default_specifier
+| 85 = @import_namespace_specifier
+| 86 = @named_export_specifier
+| 87 = @exp_expr
+| 88 = @assign_exp_expr
+| 89 = @jsx_element
+| 90 = @jsx_qualified_name
+| 91 = @jsx_empty_expr
+| 92 = @await_expr
+| 93 = @function_sent_expr
+| 94 = @decorator
+| 95 = @export_default_specifier
+| 96 = @export_namespace_specifier
+| 97 = @bind_expr
+| 98 = @external_module_reference
+| 99 = @dynamic_import
+| 100 = @expression_with_type_arguments
+| 101 = @prefix_type_assertion
+| 102 = @as_type_assertion
+| 103 = @export_varaccess
+| 104 = @decorator_list
+| 105 = @non_null_assertion
+| 106 = @bigint_literal
+| 107 = @nullishcoalescing_expr
+| 108 = @e4x_xml_anyname
+| 109 = @e4x_xml_static_attribute_selector
+| 110 = @e4x_xml_dynamic_attribute_selector
+| 111 = @e4x_xml_filter_expression
+| 112 = @e4x_xml_static_qualident
+| 113 = @e4x_xml_dynamic_qualident
+| 114 = @e4x_xml_dotdotexpr
+| 115 = @import_meta_expr
+| 116 = @assignlogandexpr
+| 117 = @assignlogorexpr
+| 118 = @assignnullishcoalescingexpr
+| 119 = @template_pipe_ref
+| 120 = @generated_code_expr
+;
+
+@varaccess = @proper_varaccess | @export_varaccess;
+@varref = @var_decl | @varaccess;
+
+@identifier = @label | @varref | @type_identifier;
+
+@literal = @null_literal | @boolean_literal | @number_literal | @string_literal | @regexp_literal | @bigint_literal;
+
+@propaccess = @dot_expr | @index_expr;
+
+@invokeexpr = @new_expr | @call_expr;
+
+@unaryexpr = @neg_expr | @plus_expr | @log_not_expr | @bit_not_expr | @typeof_expr | @void_expr | @delete_expr | @spread_element;
+
+@equality_test = @eq_expr | @neq_expr | @eqq_expr | @neqq_expr;
+
+@comparison = @equality_test | @lt_expr | @le_expr | @gt_expr | @ge_expr;
+
+@binaryexpr = @comparison | @lshift_expr | @rshift_expr | @urshift_expr | @add_expr | @sub_expr | @mul_expr | @div_expr | @mod_expr | @exp_expr | @bitor_expr | @xor_expr | @bitand_expr | @in_expr | @instanceof_expr | @logand_expr | @logor_expr | @nullishcoalescing_expr;
+
+@assignment = @assign_expr | @assign_add_expr | @assign_sub_expr | @assign_mul_expr | @assign_div_expr | @assign_mod_expr | @assign_exp_expr | @assign_lshift_expr | @assign_rshift_expr | @assign_urshift_expr | @assign_or_expr | @assign_xor_expr | @assign_and_expr | @assignlogandexpr | @assignlogorexpr | @assignnullishcoalescingexpr;
+
+@updateexpr = @preinc_expr | @postinc_expr | @predec_expr | @postdec_expr;
+
+@pattern = @varref | @array_pattern | @object_pattern;
+
+@comprehension_expr = @array_comprehension_expr | @generator_expr;
+
+@comprehension_block = @for_in_comprehension_block | @for_of_comprehension_block;
+
+@import_specifier = @named_import_specifier | @import_default_specifier | @import_namespace_specifier;
+
+@exportspecifier = @named_export_specifier | @export_default_specifier | @export_namespace_specifier;
+
+@type_keyword_operand = @import_declaration | @export_declaration | @import_specifier;
+
+@type_assertion = @as_type_assertion | @prefix_type_assertion;
+
+@class_definition = @class_decl_stmt | @class_expr;
+@interface_definition = @interface_declaration | @interface_typeexpr;
+@class_or_interface = @class_definition | @interface_definition;
+
+@lexical_decl = @var_decl | @type_decl;
+@lexical_access = @varaccess | @local_type_access | @local_var_type_access | @local_namespace_access;
+@lexical_ref = @lexical_decl | @lexical_access;
+
+@e4x_xml_attribute_selector = @e4x_xml_static_attribute_selector | @e4x_xml_dynamic_attribute_selector;
+@e4x_xml_qualident = @e4x_xml_static_qualident | @e4x_xml_dynamic_qualident;
+
+expr_contains_template_tag_location(
+  int expr: @expr ref,
+  int location: @location ref
+);
+
+@template_placeholder_tag_parent = @xmlelement | @xmlattribute | @file;
+
+template_placeholder_tag_info(
+  unique int node: @template_placeholder_tag,
+  int parentNode: @template_placeholder_tag_parent ref,
+  varchar(900) raw: string ref
+);
+
+// scopes
+scopes (unique int id: @scope,
+        int kind: int ref);
+
+case @scope.kind of
+   0 = @global_scope
+|  1 = @function_scope
+|  2 = @catch_scope
+|  3 = @module_scope
+|  4 = @block_scope
+|  5 = @for_scope
+|  6 = @for_in_scope // for-of scopes work the same as for-in scopes
+|  7 = @comprehension_block_scope
+|  8 = @class_expr_scope
+|  9 = @namespace_scope
+| 10 = @class_decl_scope
+| 11 = @interface_scope
+| 12 = @type_alias_scope
+| 13 = @mapped_type_scope
+| 14 = @enum_scope
+| 15 = @external_module_scope
+| 16 = @conditional_type_scope;
+
+scopenodes (unique int node: @ast_node ref,
+            int scope: @scope ref);
+
+scopenesting (unique int inner: @scope ref,
+              int outer: @scope ref);
+
+// functions
+@function = @function_decl_stmt | @function_expr | @arrow_function_expr;
+
+@parameterized = @function | @catch_clause;
+@type_parameterized = @function | @class_or_interface | @type_alias_declaration | @mapped_typeexpr | @infer_typeexpr;
+
+is_generator (int fun: @function ref);
+has_rest_parameter (int fun: @function ref);
+is_async (int fun: @function ref);
+
+// variables and lexically scoped type names
+#keyset[scope, name]
+variables (unique int id: @variable,
+           varchar(900) name: string ref,
+           int scope: @scope ref);
+
+#keyset[scope, name]
+local_type_names (unique int id: @local_type_name,
+                  varchar(900) name: string ref,
+                  int scope: @scope ref);
+
+#keyset[scope, name]
+local_namespace_names (unique int id: @local_namespace_name,
+                       varchar(900) name: string ref,
+                       int scope: @scope ref);
+
+is_arguments_object (int id: @variable ref);
+
+@lexical_name = @variable | @local_type_name | @local_namespace_name;
+
+@bind_id = @varaccess | @local_var_type_access;
+bind (unique int id: @bind_id ref,
+      int decl: @variable ref);
+
+decl (unique int id: @var_decl ref,
+      int decl: @variable ref);
+
+@typebind_id = @local_type_access | @export_varaccess;
+typebind (unique int id: @typebind_id ref,
+          int decl: @local_type_name ref);
+
+@typedecl_id = @type_decl | @var_decl;
+typedecl (unique int id: @typedecl_id ref,
+          int decl: @local_type_name ref);
+
+namespacedecl (unique int id: @var_decl ref,
+               int decl: @local_namespace_name ref);
+
+@namespacebind_id = @local_namespace_access | @export_varaccess;
+namespacebind (unique int id: @namespacebind_id ref,
+               int decl: @local_namespace_name ref);
+
+
+// properties in object literals, property patterns in object patterns, and method declarations in classes
+#keyset[parent, index]
+properties (unique int id: @property,
+            int parent: @property_parent ref,
+            int index: int ref,
+            int kind: int ref,
+            varchar(900) tostring: string ref);
+
+case @property.kind of
+  0 = @value_property
+| 1 = @property_getter
+| 2 = @property_setter
+| 3 = @jsx_attribute
+| 4 = @function_call_signature
+| 5 = @constructor_call_signature
+| 6 = @index_signature
+| 7 = @enum_member
+| 8 = @proper_field
+| 9 = @parameter_field
+| 10 = @static_initializer
+;
+
+@property_parent = @obj_expr | @object_pattern | @class_definition | @jsx_element | @interface_definition | @enum_declaration;
+@property_accessor = @property_getter | @property_setter;
+@call_signature = @function_call_signature | @constructor_call_signature;
+@field = @proper_field | @parameter_field;
+@field_or_vardeclarator = @field | @var_declarator;
+
+is_computed (int id: @property ref);
+is_method   (int id: @property ref);
+is_static   (int id: @property ref);
+is_abstract_member (int id: @property ref);
+is_const_enum (int id: @enum_declaration ref);
+is_abstract_class (int id: @class_decl_stmt ref);
+
+has_public_keyword (int id: @property ref);
+has_private_keyword (int id: @property ref);
+has_protected_keyword (int id: @property ref);
+has_readonly_keyword (int id: @property ref);
+has_type_keyword (int id: @type_keyword_operand ref);
+is_optional_member (int id: @property ref);
+has_definite_assignment_assertion (int id: @field_or_vardeclarator ref);
+is_optional_parameter_declaration (unique int parameter: @pattern ref);
+
+#keyset[constructor, param_index]
+parameter_fields(
+  unique int field: @parameter_field ref,
+  int constructor: @function_expr ref,
+  int param_index: int ref
+);
+
+// types
+#keyset[parent, idx]
+typeexprs (
+  unique int id: @typeexpr,
+  int kind: int ref,
+  int parent: @typeexpr_parent ref,
+  int idx: int ref,
+  varchar(900) tostring: string ref
+);
+
+case @typeexpr.kind of
+  0 = @local_type_access
+| 1 = @type_decl
+| 2 = @keyword_typeexpr
+| 3 = @string_literal_typeexpr
+| 4 = @number_literal_typeexpr
+| 5 = @boolean_literal_typeexpr
+| 6 = @array_typeexpr
+| 7 = @union_typeexpr
+| 8 = @indexed_access_typeexpr
+| 9 = @intersection_typeexpr
+| 10 = @parenthesized_typeexpr
+| 11 = @tuple_typeexpr
+| 12 = @keyof_typeexpr
+| 13 = @qualified_type_access
+| 14 = @generic_typeexpr
+| 15 = @type_label
+| 16 = @typeof_typeexpr
+| 17 = @local_var_type_access
+| 18 = @qualified_var_type_access
+| 19 = @this_var_type_access
+| 20 = @predicate_typeexpr
+| 21 = @interface_typeexpr
+| 22 = @type_parameter
+| 23 = @plain_function_typeexpr
+| 24 = @constructor_typeexpr
+| 25 = @local_namespace_access
+| 26 = @qualified_namespace_access
+| 27 = @mapped_typeexpr
+| 28 = @conditional_typeexpr
+| 29 = @infer_typeexpr
+| 30 = @import_type_access
+| 31 = @import_namespace_access
+| 32 = @import_var_type_access
+| 33 = @optional_typeexpr
+| 34 = @rest_typeexpr
+| 35 = @bigint_literal_typeexpr
+| 36 = @readonly_typeexpr
+| 37 = @template_literal_typeexpr
+;
+
+@typeref = @typeaccess | @type_decl;
+@type_identifier = @type_decl | @local_type_access | @type_label | @local_var_type_access | @local_namespace_access;
+@typeexpr_parent = @expr | @stmt | @property | @typeexpr;
+@literal_typeexpr = @string_literal_typeexpr | @number_literal_typeexpr | @boolean_literal_typeexpr | @bigint_literal_typeexpr;
+@typeaccess = @local_type_access | @qualified_type_access | @import_type_access;
+@vartypeaccess = @local_var_type_access | @qualified_var_type_access | @this_var_type_access | @import_var_type_access;
+@namespace_access = @local_namespace_access | @qualified_namespace_access | @import_namespace_access;
+@import_typeexpr = @import_type_access | @import_namespace_access | @import_var_type_access;
+
+@function_typeexpr = @plain_function_typeexpr | @constructor_typeexpr;
+
+// types
+types (
+  unique int id: @type,
+  int kind: int ref,
+  varchar(900) tostring: string ref
+);
+
+#keyset[parent, idx]
+type_child (
+  int child: @type ref,
+  int parent: @type ref,
+  int idx: int ref
+);
+
+case @type.kind of
+  0 = @any_type
+| 1 = @string_type
+| 2 = @number_type
+| 3 = @union_type
+| 4 = @true_type
+| 5 = @false_type
+| 6 = @type_reference
+| 7 = @object_type
+| 8 = @canonical_type_variable_type
+| 9 = @typeof_type
+| 10 = @void_type
+| 11 = @undefined_type
+| 12 = @null_type
+| 13 = @never_type
+| 14 = @plain_symbol_type
+| 15 = @unique_symbol_type
+| 16 = @objectkeyword_type
+| 17 = @intersection_type
+| 18 = @tuple_type
+| 19 = @lexical_type_variable_type
+| 20 = @this_type
+| 21 = @number_literal_type
+| 22 = @string_literal_type
+| 23 = @unknown_type
+| 24 = @bigint_type
+| 25 = @bigint_literal_type
+;
+
+@boolean_literal_type = @true_type | @false_type;
+@symbol_type = @plain_symbol_type | @unique_symbol_type;
+@union_or_intersection_type = @union_type | @intersection_type;
+@typevariable_type = @canonical_type_variable_type | @lexical_type_variable_type;
+
+has_asserts_keyword(int node: @predicate_typeexpr ref);
+
+@typed_ast_node = @expr | @typeexpr | @function;
+ast_node_type(
+  unique int node: @typed_ast_node ref,
+  int typ: @type ref);
+
+declared_function_signature(
+  unique int node: @function ref,
+  int sig: @signature_type ref
+);
+
+invoke_expr_signature(
+  unique int node: @invokeexpr ref,
+  int sig: @signature_type ref
+);
+
+invoke_expr_overload_index(
+  unique int node: @invokeexpr ref,
+  int index: int ref
+);
+
+symbols (
+  unique int id: @symbol,
+  int kind: int ref,
+  varchar(900) name: string ref
+);
+
+symbol_parent (
+  unique int symbol: @symbol ref,
+  int parent: @symbol ref
+);
+
+symbol_module (
+  int symbol: @symbol ref,
+  varchar(900) moduleName: string ref
+);
+
+symbol_global (
+  int symbol: @symbol ref,
+  varchar(900) globalName: string ref
+);
+
+case @symbol.kind of
+  0 = @root_symbol
+| 1 = @member_symbol
+| 2 = @other_symbol
+;
+
+@type_with_symbol = @type_reference | @typevariable_type | @typeof_type | @unique_symbol_type;
+@ast_node_with_symbol = @type_definition | @namespace_definition | @toplevel | @typeaccess | @namespace_access | @var_decl | @function | @invokeexpr | @import_declaration | @external_module_reference | @external_module_declaration;
+
+ast_node_symbol(
+  unique int node: @ast_node_with_symbol ref,
+  int symbol: @symbol ref);
+
+type_symbol(
+  unique int typ: @type_with_symbol ref,
+  int symbol: @symbol ref);
+
+#keyset[typ, name]
+type_property(
+  int typ: @type ref,
+  varchar(900) name: string ref,
+  int propertyType: @type ref);
+
+type_alias(
+  unique int aliasType: @type ref,
+  int underlyingType: @type ref);
+
+@literal_type = @string_literal_type | @number_literal_type | @boolean_literal_type | @bigint_literal_type;
+@type_with_literal_value = @string_literal_type | @number_literal_type | @bigint_literal_type;
+type_literal_value(
+  unique int typ: @type_with_literal_value ref,
+  varchar(900) value: string ref);
+
+signature_types (
+  unique int id: @signature_type,
+  int kind: int ref,
+  varchar(900) tostring: string ref,
+  int type_parameters: int ref,
+  int required_params: int ref
+);
+
+is_abstract_signature(
+  unique int sig: @signature_type ref
+);
+
+signature_rest_parameter(
+  unique int sig: @signature_type ref,
+  int rest_param_arra_type: @type ref
+);
+
+case @signature_type.kind of
+  0 = @function_signature_type
+| 1 = @constructor_signature_type
+;
+
+#keyset[typ, kind, index]
+type_contains_signature (
+  int typ: @type ref,
+  int kind: int ref,  // constructor/call/index
+  int index: int ref, // ordering of overloaded signatures
+  int sig: @signature_type ref
+);
+
+#keyset[parent, index]
+signature_contains_type (
+  int child: @type ref,
+  int parent: @signature_type ref,
+  int index: int ref
+);
+
+#keyset[sig, index]
+signature_parameter_name (
+  int sig: @signature_type ref,
+  int index: int ref,
+  varchar(900) name: string ref
+);
+
+number_index_type (
+  unique int baseType: @type ref,
+  int propertyType: @type ref
+);
+
+string_index_type (
+  unique int baseType: @type ref,
+  int propertyType: @type ref
+);
+
+base_type_names(
+  int typeName: @symbol ref,
+  int baseTypeName: @symbol ref
+);
+
+self_types(
+  int typeName: @symbol ref,
+  int selfType: @type_reference ref
+);
+
+tuple_type_min_length(
+  unique int typ: @type ref,
+  int minLength: int ref
+);
+
+tuple_type_rest_index(
+  unique int typ: @type ref,
+  int index: int ref
+);
+
+// comments
+comments (unique int id: @comment,
+          int kind: int ref,
+          int toplevel: @toplevel ref,
+          varchar(900) text: string ref,
+          varchar(900) tostring: string ref);
+
+case @comment.kind of
+  0 = @slashslash_comment
+| 1 = @slashstar_comment
+| 2 = @doc_comment
+| 3 = @html_comment_start
+| 4 = @htmlcommentend;
+
+@html_comment = @html_comment_start | @htmlcommentend;
+@line_comment = @slashslash_comment | @html_comment;
+@block_comment = @slashstar_comment | @doc_comment;
+
+// source lines
+lines (unique int id: @line,
+       int toplevel: @toplevel ref,
+       varchar(900) text: string ref,
+       varchar(2) terminator: string ref);
+indentation (int file: @file ref,
+            int lineno: int ref,
+            varchar(1) indentChar: string ref,
+            int indentDepth: int ref);
+
+// JavaScript parse errors
+js_parse_errors (unique int id: @js_parse_error,
+        int toplevel: @toplevel ref,
+        varchar(900) message: string ref,
+        varchar(900) line: string ref);
+
+// regular expressions
+#keyset[parent, idx]
+regexpterm (unique int id: @regexpterm,
+        int kind: int ref,
+        int parent: @regexpparent ref,
+        int idx: int ref,
+        varchar(900) tostring: string ref);
+
+@regexpparent = @regexpterm | @regexp_literal | @string_literal | @add_expr;
+
+case @regexpterm.kind of
+   0 = @regexp_alt
+|  1 = @regexp_seq
+|  2 = @regexp_caret
+|  3 = @regexp_dollar
+|  4 = @regexp_wordboundary
+|  5 = @regexp_nonwordboundary
+|  6 = @regexp_positive_lookahead
+|  7 = @regexp_negative_lookahead
+|  8 = @regexp_star
+|  9 = @regexp_plus
+| 10 = @regexp_opt
+| 11 = @regexp_range
+| 12 = @regexp_dot
+| 13 = @regexp_group
+| 14 = @regexp_normal_constant
+| 15 = @regexp_hex_escape
+| 16 = @regexp_unicode_escape
+| 17 = @regexp_dec_escape
+| 18 = @regexp_oct_escape
+| 19 = @regexp_ctrl_escape
+| 20 = @regexp_char_class_escape
+| 21 = @regexp_id_escape
+| 22 = @regexp_backref
+| 23 = @regexp_char_class
+| 24 = @regexp_char_range
+| 25 = @regexp_positive_lookbehind
+| 26 = @regexp_negative_lookbehind
+| 27 = @regexp_unicode_property_escape;
+
+regexp_parse_errors (unique int id: @regexp_parse_error,
+    int regexp: @regexpterm ref,
+    varchar(900) message: string ref);
+
+@regexp_quantifier = @regexp_star | @regexp_plus | @regexp_opt | @regexp_range;
+@regexp_escape = @regexp_char_escape | @regexp_char_class_escape | @regexp_unicode_property_escape;
+@regexp_char_escape = @regexp_hex_escape | @regexp_unicode_escape | @regexp_dec_escape | @regexp_oct_escape | @regexp_ctrl_escape | @regexp_id_escape;
+@regexp_constant = @regexp_normal_constant | @regexp_char_escape;
+@regexp_lookahead = @regexp_positive_lookahead | @regexp_negative_lookahead;
+@regexp_lookbehind = @regexp_positive_lookbehind | @regexp_negative_lookbehind;
+@regexp_subpattern = @regexp_lookahead | @regexp_lookbehind;
+@regexp_anchor = @regexp_dollar | @regexp_caret;
+
+is_greedy (int id: @regexp_quantifier ref);
+range_quantifier_lower_bound (unique int id: @regexp_range ref, int lo: int ref);
+range_quantifier_upper_bound (unique int id: @regexp_range ref, int hi: int ref);
+is_capture (unique int id: @regexp_group ref, int number: int ref);
+is_named_capture (unique int id: @regexp_group ref, string name: string ref);
+is_inverted (int id: @regexp_char_class ref);
+regexp_const_value (unique int id: @regexp_constant ref, varchar(1) value: string ref);
+char_class_escape (unique int id: @regexp_char_class_escape ref, varchar(1) value: string ref);
+backref (unique int id: @regexp_backref ref, int value: int ref);
+named_backref (unique int id: @regexp_backref ref, string name: string ref);
+unicode_property_escapename (unique int id: @regexp_unicode_property_escape ref, string name: string ref);
+unicode_property_escapevalue (unique int id: @regexp_unicode_property_escape ref, string value: string ref);
+
+// tokens
+#keyset[toplevel, idx]
+tokeninfo (unique int id: @token,
+    int kind: int ref,
+    int toplevel: @toplevel ref,
+    int idx: int ref,
+    varchar(900) value: string ref);
+
+case @token.kind of
+  0 = @token_eof
+| 1 = @token_null_literal
+| 2 = @token_boolean_literal
+| 3 = @token_numeric_literal
+| 4 = @token_string_literal
+| 5 = @token_regular_expression
+| 6 = @token_identifier
+| 7 = @token_keyword
+| 8 = @token_punctuator;
+
+// associate comments with the token immediately following them (which may be EOF)
+next_token (int comment: @comment ref, int token: @token ref);
+
+// JSON
+#keyset[parent, idx]
+json (unique int id: @json_value,
+      int kind: int ref,
+      int parent: @json_parent ref,
+      int idx: int ref,
+      varchar(900) tostring: string ref);
+
+json_literals (varchar(900) value: string ref,
+      varchar(900) raw: string ref,
+      unique int expr: @json_value ref);
+
+json_properties (int obj: @json_object ref,
+      varchar(900) property: string ref,
+      int value: @json_value ref);
+
+json_errors (unique int id: @json_parse_error,
+      varchar(900) message: string ref);
+
+json_locations(unique int locatable: @json_locatable ref,
+      int location: @location_default ref);
+
+case @json_value.kind of
+  0 = @json_null
+| 1 = @json_boolean
+| 2 = @json_number
+| 3 = @json_string
+| 4 = @json_array
+| 5 = @json_object;
+
+@json_parent = @json_object | @json_array | @file;
+
+@json_locatable = @json_value | @json_parse_error;
+
+// locations
+@ast_node = @toplevel | @stmt | @expr | @property | @typeexpr;
+
+@locatable = @file
+    | @ast_node
+    | @comment
+    | @line
+    | @js_parse_error | @regexp_parse_error
+    | @regexpterm
+    | @json_locatable
+    | @token
+    | @cfg_node
+    | @jsdoc | @jsdoc_type_expr | @jsdoc_tag
+    | @yaml_locatable
+    | @xmllocatable
+    | @configLocatable
+    | @template_placeholder_tag;
+
+hasLocation (unique int locatable: @locatable ref,
+    int location: @location ref);
+
+// CFG
+entry_cfg_node (unique int id: @entry_node, int container: @stmt_container ref);
+exit_cfg_node (unique int id: @exit_node, int container: @stmt_container ref);
+guard_node (unique int id: @guard_node, int kind: int ref, int test: @expr ref);
+case @guard_node.kind of
+  0 = @falsy_guard
+| 1 = @truthy_guard;
+@condition_guard = @falsy_guard | @truthy_guard;
+
+@synthetic_cfg_node = @entry_node | @exit_node | @guard_node;
+@cfg_node = @synthetic_cfg_node | @expr_parent;
+
+successor (int pred: @cfg_node ref, int succ: @cfg_node ref);
+
+// JSDoc comments
+jsdoc (unique int id: @jsdoc, varchar(900) description: string ref, int comment: @comment ref);
+#keyset[parent, idx]
+jsdoc_tags (unique int id: @jsdoc_tag, varchar(900) title: string ref,
+            int parent: @jsdoc ref, int idx: int ref, varchar(900) tostring: string ref);
+jsdoc_tag_descriptions (unique int tag: @jsdoc_tag ref, varchar(900) text: string ref);
+jsdoc_tag_names (unique int tag: @jsdoc_tag ref, varchar(900) text: string ref);
+
+#keyset[parent, idx]
+jsdoc_type_exprs (unique int id: @jsdoc_type_expr,
+                  int kind: int ref,
+                  int parent: @jsdoc_type_expr_parent ref,
+                  int idx: int ref,
+                  varchar(900) tostring: string ref);
+case @jsdoc_type_expr.kind of
+    0 = @jsdoc_any_type_expr
+|   1 = @jsdoc_null_type_expr
+|   2 = @jsdoc_undefined_type_expr
+|   3 = @jsdoc_unknown_type_expr
+|   4 = @jsdoc_void_type_expr
+|   5 = @jsdoc_named_type_expr
+|   6 = @jsdoc_applied_type_expr
+|   7 = @jsdoc_nullable_type_expr
+|   8 = @jsdoc_non_nullable_type_expr
+|   9 = @jsdoc_record_type_expr
+|  10 = @jsdoc_array_type_expr
+|  11 = @jsdoc_union_type_expr
+|  12 = @jsdoc_function_type_expr
+|  13 = @jsdoc_optional_type_expr
+|  14 = @jsdoc_rest_type_expr
+;
+
+#keyset[id, idx]
+jsdoc_record_field_name (int id: @jsdoc_record_type_expr ref, int idx: int ref, varchar(900) name: string ref);
+jsdoc_prefix_qualifier (int id: @jsdoc_type_expr ref);
+jsdoc_has_new_parameter (int fn: @jsdoc_function_type_expr ref);
+
+@jsdoc_type_expr_parent = @jsdoc_type_expr | @jsdoc_tag;
+
+jsdoc_errors (unique int id: @jsdoc_error, int tag: @jsdoc_tag ref, varchar(900) message: string ref, varchar(900) tostring: string ref);
+
+// YAML
+#keyset[parent, idx]
+yaml (unique int id: @yaml_node,
+      int kind: int ref,
+      int parent: @yaml_node_parent ref,
+      int idx: int ref,
+      varchar(900) tag: string ref,
+      varchar(900) tostring: string ref);
+
+case @yaml_node.kind of
+  0 = @yaml_scalar_node
+| 1 = @yaml_mapping_node
+| 2 = @yaml_sequence_node
+| 3 = @yaml_alias_node
+;
+
+@yaml_collection_node = @yaml_mapping_node | @yaml_sequence_node;
+
+@yaml_node_parent = @yaml_collection_node | @file;
+
+yaml_anchors (unique int node: @yaml_node ref,
+              varchar(900) anchor: string ref);
+
+yaml_aliases (unique int alias: @yaml_alias_node ref,
+              varchar(900) target: string ref);
+
+yaml_scalars (unique int scalar: @yaml_scalar_node ref,
+              int style: int ref,
+              varchar(900) value: string ref);
+
+yaml_errors (unique int id: @yaml_error,
+             varchar(900) message: string ref);
+
+yaml_locations(unique int locatable: @yaml_locatable ref,
+             int location: @location_default ref);
+
+@yaml_locatable = @yaml_node | @yaml_error;
+
+/* XML Files */
+
+xmlEncoding(
+  unique int id: @file ref,
+  varchar(900) encoding: string ref
+);
+
+xmlDTDs(
+  unique int id: @xmldtd,
+  varchar(900) root: string ref,
+  varchar(900) publicId: string ref,
+  varchar(900) systemId: string ref,
+  int fileid: @file ref
+);
+
+xmlElements(
+  unique int id: @xmlelement,
+  varchar(900) name: string ref,
+  int parentid: @xmlparent ref,
+  int idx: int ref,
+  int fileid: @file ref
+);
+
+xmlAttrs(
+  unique int id: @xmlattribute,
+  int elementid: @xmlelement ref,
+  varchar(900) name: string ref,
+  varchar(3600) value: string ref,
+  int idx: int ref,
+  int fileid: @file ref
+);
+
+xmlNs(
+  int id: @xmlnamespace,
+  varchar(900) prefixName: string ref,
+  varchar(900) URI: string ref,
+  int fileid: @file ref
+);
+
+xmlHasNs(
+  int elementId: @xmlnamespaceable ref,
+  int nsId: @xmlnamespace ref,
+  int fileid: @file ref
+);
+
+xmlComments(
+  unique int id: @xmlcomment,
+  varchar(3600) text: string ref,
+  int parentid: @xmlparent ref,
+  int fileid: @file ref
+);
+
+xmlChars(
+  unique int id: @xmlcharacters,
+  varchar(3600) text: string ref,
+  int parentid: @xmlparent ref,
+  int idx: int ref,
+  int isCDATA: int ref,
+  int fileid: @file ref
+);
+
+@xmlparent = @file | @xmlelement;
+@xmlnamespaceable = @xmlelement | @xmlattribute;
+
+xmllocations(
+  int xmlElement: @xmllocatable ref,
+  int location: @location_default ref
+);
+
+@xmllocatable = @xmlcharacters | @xmlelement | @xmlcomment | @xmlattribute | @xmldtd | @file | @xmlnamespace;
+
+@dataflownode = @expr | @function_decl_stmt | @class_decl_stmt | @namespace_declaration | @enum_declaration | @property;
+
+@optionalchainable = @call_expr | @propaccess;
+
+isOptionalChaining(int id: @optionalchainable ref);
+
+/*
+ * configuration files with key value pairs
+ */
+
+configs(
+  unique int id: @config
+);
+
+configNames(
+  unique int id: @configName,
+  int config: @config ref,
+  string name: string ref
+);
+
+configValues(
+  unique int id: @configValue,
+  int config: @config ref,
+  string value: string ref
+);
+
+configLocations(
+  int locatable: @configLocatable ref,
+  int location: @location_default ref
+);
+
+@configLocatable = @config | @configName | @configValue;
+
+/**
+ * The time taken for the extraction of a file.
+ * This table contains non-deterministic content.
+ *
+ * The sum of the `time` column for each (`file`, `timerKind`) pair
+ * is the total time taken for extraction of `file`.  The `extractionPhase`
+ * column provides a granular view of the extraction time of the file.
+ */
+extraction_time(
+   int file : @file ref,
+   // see `com.semmle.js.extractor.ExtractionMetrics.ExtractionPhase`.
+   int extractionPhase: int ref,
+   // 0 for the elapsed CPU time in nanoseconds, 1 for the elapsed wallclock time in nanoseconds
+   int timerKind: int ref,
+   float time: float ref
+)
+
+/**
+ * Non-timing related data for the extraction of a single file.
+ * This table contains non-deterministic content.
+ */
+extraction_data(
+   int file : @file ref,
+   // the absolute path to the cache file
+   varchar(900) cacheFile: string ref,
+   boolean fromCache: boolean ref,
+   int length: int ref
+)
diff --git a/javascript/downgrades/4d00210ca570d55c4833af11d3372b774dbc63f2/upgrade.properties b/javascript/downgrades/4d00210ca570d55c4833af11d3372b774dbc63f2/upgrade.properties
new file mode 100644
index 00000000000..476d9aba57e
--- /dev/null
+++ b/javascript/downgrades/4d00210ca570d55c4833af11d3372b774dbc63f2/upgrade.properties
@@ -0,0 +1,2 @@
+description: add support for TypeScript 4.9
+compatibility: backwards

From b0b5761a8c60d54a7dc67aa0677710046d89a579 Mon Sep 17 00:00:00 2001
From: erik-krogh <erik-krogh@github.com>
Date: Tue, 15 Nov 2022 22:08:54 +0100
Subject: [PATCH 0326/1420] update TS from 4.9.2-rc to 4.9.3

---
 javascript/extractor/lib/typescript/package.json | 2 +-
 javascript/extractor/lib/typescript/yarn.lock    | 8 ++++----
 2 files changed, 5 insertions(+), 5 deletions(-)

diff --git a/javascript/extractor/lib/typescript/package.json b/javascript/extractor/lib/typescript/package.json
index 2426fe0c896..87c37660479 100644
--- a/javascript/extractor/lib/typescript/package.json
+++ b/javascript/extractor/lib/typescript/package.json
@@ -2,7 +2,7 @@
     "name": "typescript-parser-wrapper",
     "private": true,
     "dependencies": {
-        "typescript": "4.9.2-rc"
+        "typescript": "4.9.3"
     },
     "scripts": {
         "build": "tsc --project tsconfig.json",
diff --git a/javascript/extractor/lib/typescript/yarn.lock b/javascript/extractor/lib/typescript/yarn.lock
index 8f5b68aea63..03b6581fadb 100644
--- a/javascript/extractor/lib/typescript/yarn.lock
+++ b/javascript/extractor/lib/typescript/yarn.lock
@@ -6,7 +6,7 @@
   version "12.7.11"
   resolved node-12.7.11.tgz#be879b52031cfb5d295b047f5462d8ef1a716446
 
-typescript@4.9.2-rc:
-  version "4.9.2-rc"
-  resolved "https://registry.yarnpkg.com/typescript/-/typescript-4.9.2-rc.tgz#3525dbeb8458a8c98ce7d60724e4a9380d7b46e7"
-  integrity sha512-Ly9UUxJBfiiFjfegI1gsW9FI8Xhw1cuwRMBJ4wdYg+UXZR4VnZvD1OnBDj/iQ2U+tWbWEjYqJ5xx1Cwr4Vsa4w==
+typescript@4.9.3:
+  version "4.9.3"
+  resolved "https://registry.yarnpkg.com/typescript/-/typescript-4.9.3.tgz#3aea307c1746b8c384435d8ac36b8a2e580d85db"
+  integrity sha512-CIfGzTelbKNEnLpLdGFgdyKhG23CKdKgQPOBc+OUNrkJ2vr+KSzsSV5kq5iWhEQbok+quxgGzrAtGWCyU7tHnA==

From 8cb68b79c147c962481e525cee8a2b181bd1b26f Mon Sep 17 00:00:00 2001
From: erik-krogh <erik-krogh@github.com>
Date: Tue, 15 Nov 2022 22:09:09 +0100
Subject: [PATCH 0327/1420] bump extractor version

---
 javascript/extractor/src/com/semmle/js/extractor/Main.java | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/javascript/extractor/src/com/semmle/js/extractor/Main.java b/javascript/extractor/src/com/semmle/js/extractor/Main.java
index f03702ac10d..b7ab9b7e62b 100644
--- a/javascript/extractor/src/com/semmle/js/extractor/Main.java
+++ b/javascript/extractor/src/com/semmle/js/extractor/Main.java
@@ -41,7 +41,7 @@ public class Main {
    * A version identifier that should be updated every time the extractor changes in such a way that
    * it may produce different tuples for the same file under the same {@link ExtractorConfig}.
    */
-  public static final String EXTRACTOR_VERSION = "2022-11-15";
+  public static final String EXTRACTOR_VERSION = "2022-11-16";
 
   public static final Pattern NEWLINE = Pattern.compile("\n");
 

From ec04f0c88f79482386bcef2ddda2613e2ede860f Mon Sep 17 00:00:00 2001
From: Mauro Baluda <mbaluda@github.com>
Date: Tue, 15 Nov 2022 23:45:27 +0100
Subject: [PATCH 0328/1420] hapi/glue tests

---
 .../frameworks/hapi/src/hapiglue.js           | 50 +++++++++++++
 .../frameworks/hapi/tests.expected            | 70 +++++++++++++++++++
 2 files changed, 120 insertions(+)
 create mode 100644 javascript/ql/test/library-tests/frameworks/hapi/src/hapiglue.js

diff --git a/javascript/ql/test/library-tests/frameworks/hapi/src/hapiglue.js b/javascript/ql/test/library-tests/frameworks/hapi/src/hapiglue.js
new file mode 100644
index 00000000000..d2401209028
--- /dev/null
+++ b/javascript/ql/test/library-tests/frameworks/hapi/src/hapiglue.js
@@ -0,0 +1,50 @@
+var server1 = new (require('@hapi/glue')).compose(require("./manifest"), composeOptions); // test_ServerDefinition
+
+var Hapi = require('@hapi/glue');
+var server2 = new Hapi.compose(require("./manifest"), composeOptions); // test_ServerDefinition
+
+function handler1(){} // HTTP::RouteHandler
+server2.route({
+    handler: handler1
+});
+
+
+server2.route({
+    handler: function handler2(request, reply){ // HTTP::RouteHandler
+        request.response.header('HEADER1', '') // HTTP::HeaderDefinition
+    }});
+
+server2.ext('onPreResponse', function handler3(request, reply) { // HTTP::RouteHandler
+})
+
+function handler4(request, reply){
+  request.rawPayload;
+  request.payload.foo;
+  request.query.bar;
+  request.params.bar;
+  request.url.path;
+  request.url.origin;
+  request.headers.baz;
+  request.state.token;
+}
+var route = {handler: handler4};
+server2.route(route);
+
+server2.cache({ segment: 'countries', expiresIn: 60*60*1000 });
+
+function getHandler() {
+    return function (req, hapi){}
+}
+server2.route({handler: getHandler()});
+
+function after(server) {
+};
+
+function register(server, options) {// test_ServerDefinition
+    server.dependency(options.dependencies, server_ => after(server_, options)); // test_ServerDefinition
+}
+
+module.exports.plugin = {
+    register,
+    pkg
+};
diff --git a/javascript/ql/test/library-tests/frameworks/hapi/tests.expected b/javascript/ql/test/library-tests/frameworks/hapi/tests.expected
index fb73a32acf6..57d3d4a81f7 100644
--- a/javascript/ql/test/library-tests/frameworks/hapi/tests.expected
+++ b/javascript/ql/test/library-tests/frameworks/hapi/tests.expected
@@ -4,6 +4,11 @@ test_RouteSetup
 | src/hapi.js:17:1:18:2 | server2 ... dler\\n}) |
 | src/hapi.js:29:1:29:20 | server2.route(route) |
 | src/hapi.js:36:1:36:38 | server2 ... ler()}) |
+| src/hapiglue.js:7:1:9:2 | server2 ... ler1\\n}) |
+| src/hapiglue.js:12:1:15:7 | server2 ...     }}) |
+| src/hapiglue.js:17:1:18:2 | server2 ... dler\\n}) |
+| src/hapiglue.js:31:1:31:20 | server2.route(route) |
+| src/hapiglue.js:38:1:38:38 | server2 ... ler()}) |
 test_RequestInputAccess
 | src/hapi.js:21:3:21:20 | request.rawPayload | body | src/hapi.js:20:1:27:1 | functio ... oken;\\n} |
 | src/hapi.js:22:3:22:21 | request.payload.foo | body | src/hapi.js:20:1:27:1 | functio ... oken;\\n} |
@@ -11,27 +16,50 @@ test_RequestInputAccess
 | src/hapi.js:24:3:24:18 | request.url.path | url | src/hapi.js:20:1:27:1 | functio ... oken;\\n} |
 | src/hapi.js:25:3:25:21 | request.headers.baz | header | src/hapi.js:20:1:27:1 | functio ... oken;\\n} |
 | src/hapi.js:26:3:26:21 | request.state.token | cookie | src/hapi.js:20:1:27:1 | functio ... oken;\\n} |
+| src/hapiglue.js:21:3:21:20 | request.rawPayload | body | src/hapiglue.js:20:1:29:1 | functio ... oken;\\n} |
+| src/hapiglue.js:22:3:22:21 | request.payload.foo | body | src/hapiglue.js:20:1:29:1 | functio ... oken;\\n} |
+| src/hapiglue.js:23:3:23:19 | request.query.bar | parameter | src/hapiglue.js:20:1:29:1 | functio ... oken;\\n} |
+| src/hapiglue.js:24:3:24:20 | request.params.bar | parameter | src/hapiglue.js:20:1:29:1 | functio ... oken;\\n} |
+| src/hapiglue.js:25:3:25:18 | request.url.path | url | src/hapiglue.js:20:1:29:1 | functio ... oken;\\n} |
+| src/hapiglue.js:26:3:26:20 | request.url.origin | url | src/hapiglue.js:20:1:29:1 | functio ... oken;\\n} |
+| src/hapiglue.js:27:3:27:21 | request.headers.baz | header | src/hapiglue.js:20:1:29:1 | functio ... oken;\\n} |
+| src/hapiglue.js:28:3:28:21 | request.state.token | cookie | src/hapiglue.js:20:1:29:1 | functio ... oken;\\n} |
 test_RouteHandler_getAResponseHeader
 | src/hapi.js:13:14:15:5 | functio ... n\\n    } | header1 | src/hapi.js:14:9:14:46 | request ... 1', '') |
+| src/hapiglue.js:13:14:15:5 | functio ... n\\n    } | header1 | src/hapiglue.js:14:9:14:46 | request ... 1', '') |
 test_HeaderDefinition_defines
 | src/hapi.js:14:9:14:46 | request ... 1', '') | header1 |  |
+| src/hapiglue.js:14:9:14:46 | request ... 1', '') | header1 |  |
 test_ResponseExpr
 | src/hapi.js:14:9:14:24 | request.response | src/hapi.js:13:14:15:5 | functio ... n\\n    } |
+| src/hapiglue.js:14:9:14:24 | request.response | src/hapiglue.js:13:14:15:5 | functio ... n\\n    } |
 test_HeaderDefinition
 | src/hapi.js:14:9:14:46 | request ... 1', '') | src/hapi.js:13:14:15:5 | functio ... n\\n    } |
+| src/hapiglue.js:14:9:14:46 | request ... 1', '') | src/hapiglue.js:13:14:15:5 | functio ... n\\n    } |
 test_RouteSetup_getServer
 | src/hapi.js:7:1:9:2 | server2 ... ler1\\n}) | src/hapi.js:4:15:4:31 | new Hapi.Server() |
 | src/hapi.js:12:1:15:7 | server2 ...     }}) | src/hapi.js:4:15:4:31 | new Hapi.Server() |
 | src/hapi.js:17:1:18:2 | server2 ... dler\\n}) | src/hapi.js:4:15:4:31 | new Hapi.Server() |
 | src/hapi.js:29:1:29:20 | server2.route(route) | src/hapi.js:4:15:4:31 | new Hapi.Server() |
 | src/hapi.js:36:1:36:38 | server2 ... ler()}) | src/hapi.js:4:15:4:31 | new Hapi.Server() |
+| src/hapiglue.js:7:1:9:2 | server2 ... ler1\\n}) | src/hapiglue.js:4:15:4:69 | new Hap ... ptions) |
+| src/hapiglue.js:12:1:15:7 | server2 ...     }}) | src/hapiglue.js:4:15:4:69 | new Hap ... ptions) |
+| src/hapiglue.js:17:1:18:2 | server2 ... dler\\n}) | src/hapiglue.js:4:15:4:69 | new Hap ... ptions) |
+| src/hapiglue.js:31:1:31:20 | server2.route(route) | src/hapiglue.js:4:15:4:69 | new Hap ... ptions) |
+| src/hapiglue.js:38:1:38:38 | server2 ... ler()}) | src/hapiglue.js:4:15:4:69 | new Hap ... ptions) |
 test_HeaderDefinition_getAHeaderName
 | src/hapi.js:14:9:14:46 | request ... 1', '') | header1 |
+| src/hapiglue.js:14:9:14:46 | request ... 1', '') | header1 |
 test_ServerDefinition
 | src/hapi.js:1:15:1:44 | new (re ... erver() |
 | src/hapi.js:4:15:4:31 | new Hapi.Server() |
+| src/hapiglue.js:1:15:1:88 | new (re ... ptions) |
+| src/hapiglue.js:4:15:4:69 | new Hap ... ptions) |
+| src/hapiglue.js:43:19:43:24 | server |
+| src/hapiglue.js:44:45:44:51 | server_ |
 test_HeaderAccess
 | src/hapi.js:25:3:25:21 | request.headers.baz | baz |
+| src/hapiglue.js:27:3:27:21 | request.headers.baz | baz |
 test_RouteSetup_getARouteHandler
 | src/hapi.js:7:1:9:2 | server2 ... ler1\\n}) | src/hapi.js:6:1:6:21 | functio ... er1(){} |
 | src/hapi.js:12:1:15:7 | server2 ...     }}) | src/hapi.js:13:14:15:5 | functio ... n\\n    } |
@@ -40,12 +68,24 @@ test_RouteSetup_getARouteHandler
 | src/hapi.js:36:1:36:38 | server2 ... ler()}) | src/hapi.js:33:1:35:1 | return of function getHandler |
 | src/hapi.js:36:1:36:38 | server2 ... ler()}) | src/hapi.js:34:12:34:30 | function (req, h){} |
 | src/hapi.js:36:1:36:38 | server2 ... ler()}) | src/hapi.js:36:25:36:36 | getHandler() |
+| src/hapiglue.js:7:1:9:2 | server2 ... ler1\\n}) | src/hapiglue.js:6:1:6:21 | functio ... er1(){} |
+| src/hapiglue.js:12:1:15:7 | server2 ...     }}) | src/hapiglue.js:13:14:15:5 | functio ... n\\n    } |
+| src/hapiglue.js:17:1:18:2 | server2 ... dler\\n}) | src/hapiglue.js:17:30:18:1 | functio ... ndler\\n} |
+| src/hapiglue.js:31:1:31:20 | server2.route(route) | src/hapiglue.js:20:1:29:1 | functio ... oken;\\n} |
+| src/hapiglue.js:38:1:38:38 | server2 ... ler()}) | src/hapiglue.js:35:1:37:1 | return of function getHandler |
+| src/hapiglue.js:38:1:38:38 | server2 ... ler()}) | src/hapiglue.js:36:12:36:33 | functio ... hapi){} |
+| src/hapiglue.js:38:1:38:38 | server2 ... ler()}) | src/hapiglue.js:38:25:38:36 | getHandler() |
 test_RouteHandler
 | src/hapi.js:6:1:6:21 | functio ... er1(){} | src/hapi.js:4:15:4:31 | new Hapi.Server() |
 | src/hapi.js:13:14:15:5 | functio ... n\\n    } | src/hapi.js:4:15:4:31 | new Hapi.Server() |
 | src/hapi.js:17:30:18:1 | functio ... ndler\\n} | src/hapi.js:4:15:4:31 | new Hapi.Server() |
 | src/hapi.js:20:1:27:1 | functio ... oken;\\n} | src/hapi.js:4:15:4:31 | new Hapi.Server() |
 | src/hapi.js:34:12:34:30 | function (req, h){} | src/hapi.js:4:15:4:31 | new Hapi.Server() |
+| src/hapiglue.js:6:1:6:21 | functio ... er1(){} | src/hapiglue.js:4:15:4:69 | new Hap ... ptions) |
+| src/hapiglue.js:13:14:15:5 | functio ... n\\n    } | src/hapiglue.js:4:15:4:69 | new Hap ... ptions) |
+| src/hapiglue.js:17:30:18:1 | functio ... ndler\\n} | src/hapiglue.js:4:15:4:69 | new Hap ... ptions) |
+| src/hapiglue.js:20:1:29:1 | functio ... oken;\\n} | src/hapiglue.js:4:15:4:69 | new Hap ... ptions) |
+| src/hapiglue.js:36:12:36:33 | functio ... hapi){} | src/hapiglue.js:4:15:4:69 | new Hap ... ptions) |
 test_RequestExpr
 | src/hapi.js:13:32:13:38 | request | src/hapi.js:13:14:15:5 | functio ... n\\n    } |
 | src/hapi.js:13:32:13:38 | request | src/hapi.js:13:14:15:5 | functio ... n\\n    } |
@@ -60,6 +100,21 @@ test_RequestExpr
 | src/hapi.js:25:3:25:9 | request | src/hapi.js:20:1:27:1 | functio ... oken;\\n} |
 | src/hapi.js:26:3:26:9 | request | src/hapi.js:20:1:27:1 | functio ... oken;\\n} |
 | src/hapi.js:34:22:34:24 | req | src/hapi.js:34:12:34:30 | function (req, h){} |
+| src/hapiglue.js:13:32:13:38 | request | src/hapiglue.js:13:14:15:5 | functio ... n\\n    } |
+| src/hapiglue.js:13:32:13:38 | request | src/hapiglue.js:13:14:15:5 | functio ... n\\n    } |
+| src/hapiglue.js:14:9:14:15 | request | src/hapiglue.js:13:14:15:5 | functio ... n\\n    } |
+| src/hapiglue.js:17:48:17:54 | request | src/hapiglue.js:17:30:18:1 | functio ... ndler\\n} |
+| src/hapiglue.js:20:19:20:25 | request | src/hapiglue.js:20:1:29:1 | functio ... oken;\\n} |
+| src/hapiglue.js:20:19:20:25 | request | src/hapiglue.js:20:1:29:1 | functio ... oken;\\n} |
+| src/hapiglue.js:21:3:21:9 | request | src/hapiglue.js:20:1:29:1 | functio ... oken;\\n} |
+| src/hapiglue.js:22:3:22:9 | request | src/hapiglue.js:20:1:29:1 | functio ... oken;\\n} |
+| src/hapiglue.js:23:3:23:9 | request | src/hapiglue.js:20:1:29:1 | functio ... oken;\\n} |
+| src/hapiglue.js:24:3:24:9 | request | src/hapiglue.js:20:1:29:1 | functio ... oken;\\n} |
+| src/hapiglue.js:25:3:25:9 | request | src/hapiglue.js:20:1:29:1 | functio ... oken;\\n} |
+| src/hapiglue.js:26:3:26:9 | request | src/hapiglue.js:20:1:29:1 | functio ... oken;\\n} |
+| src/hapiglue.js:27:3:27:9 | request | src/hapiglue.js:20:1:29:1 | functio ... oken;\\n} |
+| src/hapiglue.js:28:3:28:9 | request | src/hapiglue.js:20:1:29:1 | functio ... oken;\\n} |
+| src/hapiglue.js:36:22:36:24 | req | src/hapiglue.js:36:12:36:33 | functio ... hapi){} |
 test_RouteHandler_getARequestExpr
 | src/hapi.js:13:14:15:5 | functio ... n\\n    } | src/hapi.js:13:32:13:38 | request |
 | src/hapi.js:13:14:15:5 | functio ... n\\n    } | src/hapi.js:13:32:13:38 | request |
@@ -74,3 +129,18 @@ test_RouteHandler_getARequestExpr
 | src/hapi.js:20:1:27:1 | functio ... oken;\\n} | src/hapi.js:25:3:25:9 | request |
 | src/hapi.js:20:1:27:1 | functio ... oken;\\n} | src/hapi.js:26:3:26:9 | request |
 | src/hapi.js:34:12:34:30 | function (req, h){} | src/hapi.js:34:22:34:24 | req |
+| src/hapiglue.js:13:14:15:5 | functio ... n\\n    } | src/hapiglue.js:13:32:13:38 | request |
+| src/hapiglue.js:13:14:15:5 | functio ... n\\n    } | src/hapiglue.js:13:32:13:38 | request |
+| src/hapiglue.js:13:14:15:5 | functio ... n\\n    } | src/hapiglue.js:14:9:14:15 | request |
+| src/hapiglue.js:17:30:18:1 | functio ... ndler\\n} | src/hapiglue.js:17:48:17:54 | request |
+| src/hapiglue.js:20:1:29:1 | functio ... oken;\\n} | src/hapiglue.js:20:19:20:25 | request |
+| src/hapiglue.js:20:1:29:1 | functio ... oken;\\n} | src/hapiglue.js:20:19:20:25 | request |
+| src/hapiglue.js:20:1:29:1 | functio ... oken;\\n} | src/hapiglue.js:21:3:21:9 | request |
+| src/hapiglue.js:20:1:29:1 | functio ... oken;\\n} | src/hapiglue.js:22:3:22:9 | request |
+| src/hapiglue.js:20:1:29:1 | functio ... oken;\\n} | src/hapiglue.js:23:3:23:9 | request |
+| src/hapiglue.js:20:1:29:1 | functio ... oken;\\n} | src/hapiglue.js:24:3:24:9 | request |
+| src/hapiglue.js:20:1:29:1 | functio ... oken;\\n} | src/hapiglue.js:25:3:25:9 | request |
+| src/hapiglue.js:20:1:29:1 | functio ... oken;\\n} | src/hapiglue.js:26:3:26:9 | request |
+| src/hapiglue.js:20:1:29:1 | functio ... oken;\\n} | src/hapiglue.js:27:3:27:9 | request |
+| src/hapiglue.js:20:1:29:1 | functio ... oken;\\n} | src/hapiglue.js:28:3:28:9 | request |
+| src/hapiglue.js:36:12:36:33 | functio ... hapi){} | src/hapiglue.js:36:22:36:24 | req |

From 27681ac987a49a139027f91e27447fb545367da1 Mon Sep 17 00:00:00 2001
From: Harry Maclean <hmac@github.com>
Date: Tue, 1 Nov 2022 11:51:53 +1300
Subject: [PATCH 0329/1420] Ruby: Move ActionController tests to own directory

---
 .../frameworks/ActionController.expected      | 410 ------------------
 .../ActionController.expected                 | 272 ++++++++++++
 .../ActionController.ql                       |   0
 .../controllers/comments_controller.rb        |  40 ++
 .../controllers/foo/bars_controller.rb        |  46 ++
 .../controllers/photos_controller.rb          |   4 +
 .../controllers/posts_controller.rb           |  10 +
 .../controllers/tags_controller.rb            |   2 +
 .../users/notifications_controller.rb         |   6 +
 9 files changed, 380 insertions(+), 410 deletions(-)
 delete mode 100644 ruby/ql/test/library-tests/frameworks/ActionController.expected
 create mode 100644 ruby/ql/test/library-tests/frameworks/action_controller/ActionController.expected
 rename ruby/ql/test/library-tests/frameworks/{ => action_controller}/ActionController.ql (100%)
 create mode 100644 ruby/ql/test/library-tests/frameworks/action_controller/controllers/comments_controller.rb
 create mode 100644 ruby/ql/test/library-tests/frameworks/action_controller/controllers/foo/bars_controller.rb
 create mode 100644 ruby/ql/test/library-tests/frameworks/action_controller/controllers/photos_controller.rb
 create mode 100644 ruby/ql/test/library-tests/frameworks/action_controller/controllers/posts_controller.rb
 create mode 100644 ruby/ql/test/library-tests/frameworks/action_controller/controllers/tags_controller.rb
 create mode 100644 ruby/ql/test/library-tests/frameworks/action_controller/controllers/users/notifications_controller.rb

diff --git a/ruby/ql/test/library-tests/frameworks/ActionController.expected b/ruby/ql/test/library-tests/frameworks/ActionController.expected
deleted file mode 100644
index 862fd93c424..00000000000
--- a/ruby/ql/test/library-tests/frameworks/ActionController.expected
+++ /dev/null
@@ -1,410 +0,0 @@
-actionControllerControllerClasses
-| action_controller/input_access.rb:1:1:50:3 | UsersController |
-| action_controller/params_flow.rb:1:1:162:3 | MyController |
-| action_controller/params_flow.rb:170:1:178:3 | Subclass |
-| active_record/ActiveRecord.rb:23:1:39:3 | FooController |
-| active_record/ActiveRecord.rb:41:1:64:3 | BarController |
-| active_record/ActiveRecord.rb:66:1:98:3 | BazController |
-| active_record/ActiveRecord.rb:100:1:108:3 | AnnotatedController |
-| active_storage/active_storage.rb:39:1:45:3 | PostsController2 |
-| app/controllers/comments_controller.rb:1:1:40:3 | CommentsController |
-| app/controllers/foo/bars_controller.rb:3:1:46:3 | BarsController |
-| app/controllers/photos_controller.rb:1:1:4:3 | PhotosController |
-| app/controllers/posts_controller.rb:1:1:10:3 | PostsController |
-| app/controllers/tags_controller.rb:1:1:2:3 | TagsController |
-| app/controllers/users/notifications_controller.rb:2:3:5:5 | Users::NotificationsController |
-actionControllerActionMethods
-| action_controller/input_access.rb:2:3:49:5 | index |
-| action_controller/params_flow.rb:2:3:4:5 | m1 |
-| action_controller/params_flow.rb:6:3:8:5 | m2 |
-| action_controller/params_flow.rb:10:3:12:5 | m2 |
-| action_controller/params_flow.rb:14:3:16:5 | m3 |
-| action_controller/params_flow.rb:18:3:20:5 | m4 |
-| action_controller/params_flow.rb:22:3:24:5 | m5 |
-| action_controller/params_flow.rb:26:3:28:5 | m6 |
-| action_controller/params_flow.rb:30:3:32:5 | m7 |
-| action_controller/params_flow.rb:34:3:36:5 | m8 |
-| action_controller/params_flow.rb:38:3:40:5 | m9 |
-| action_controller/params_flow.rb:42:3:44:5 | m10 |
-| action_controller/params_flow.rb:46:3:48:5 | m11 |
-| action_controller/params_flow.rb:50:3:52:5 | m12 |
-| action_controller/params_flow.rb:54:3:56:5 | m13 |
-| action_controller/params_flow.rb:58:3:60:5 | m14 |
-| action_controller/params_flow.rb:62:3:64:5 | m15 |
-| action_controller/params_flow.rb:66:3:68:5 | m16 |
-| action_controller/params_flow.rb:70:3:72:5 | m17 |
-| action_controller/params_flow.rb:74:3:76:5 | m18 |
-| action_controller/params_flow.rb:78:3:80:5 | m19 |
-| action_controller/params_flow.rb:82:3:84:5 | m20 |
-| action_controller/params_flow.rb:86:3:88:5 | m21 |
-| action_controller/params_flow.rb:90:3:92:5 | m22 |
-| action_controller/params_flow.rb:94:3:96:5 | m23 |
-| action_controller/params_flow.rb:98:3:100:5 | m24 |
-| action_controller/params_flow.rb:102:3:104:5 | m25 |
-| action_controller/params_flow.rb:106:3:108:5 | m26 |
-| action_controller/params_flow.rb:110:3:113:5 | m27 |
-| action_controller/params_flow.rb:115:3:118:5 | m28 |
-| action_controller/params_flow.rb:120:3:123:5 | m29 |
-| action_controller/params_flow.rb:125:3:132:5 | m30 |
-| action_controller/params_flow.rb:134:3:141:5 | m31 |
-| action_controller/params_flow.rb:143:3:150:5 | m32 |
-| action_controller/params_flow.rb:152:3:159:5 | m33 |
-| action_controller/params_flow.rb:165:3:167:5 | m34 |
-| action_controller/params_flow.rb:171:3:173:5 | m35 |
-| active_record/ActiveRecord.rb:27:3:38:5 | some_request_handler |
-| active_record/ActiveRecord.rb:42:3:47:5 | some_other_request_handler |
-| active_record/ActiveRecord.rb:49:3:63:5 | safe_paths |
-| active_record/ActiveRecord.rb:67:3:69:5 | yet_another_handler |
-| active_record/ActiveRecord.rb:71:3:73:5 | create1 |
-| active_record/ActiveRecord.rb:75:3:77:5 | create2 |
-| active_record/ActiveRecord.rb:79:3:81:5 | create3 |
-| active_record/ActiveRecord.rb:83:3:85:5 | create4 |
-| active_record/ActiveRecord.rb:87:3:89:5 | update1 |
-| active_record/ActiveRecord.rb:91:3:93:5 | update2 |
-| active_record/ActiveRecord.rb:95:3:97:5 | update3 |
-| active_record/ActiveRecord.rb:101:3:103:5 | index |
-| active_record/ActiveRecord.rb:105:3:107:5 | unsafe_action |
-| active_storage/active_storage.rb:40:3:44:5 | create |
-| app/controllers/comments_controller.rb:2:3:36:5 | index |
-| app/controllers/comments_controller.rb:38:3:39:5 | show |
-| app/controllers/foo/bars_controller.rb:5:3:7:5 | index |
-| app/controllers/foo/bars_controller.rb:9:3:18:5 | show_debug |
-| app/controllers/foo/bars_controller.rb:20:3:24:5 | show |
-| app/controllers/foo/bars_controller.rb:26:3:28:5 | go_back |
-| app/controllers/foo/bars_controller.rb:30:3:32:5 | go_back_2 |
-| app/controllers/foo/bars_controller.rb:34:3:39:5 | show_2 |
-| app/controllers/photos_controller.rb:2:3:3:5 | show |
-| app/controllers/posts_controller.rb:2:3:3:5 | index |
-| app/controllers/posts_controller.rb:5:3:6:5 | show |
-| app/controllers/posts_controller.rb:8:3:9:5 | upvote |
-| app/controllers/users/notifications_controller.rb:3:5:4:7 | mark_as_read |
-paramsCalls
-| action_controller/params_flow.rb:3:10:3:15 | call to params |
-| action_controller/params_flow.rb:7:10:7:15 | call to params |
-| action_controller/params_flow.rb:11:10:11:15 | call to params |
-| action_controller/params_flow.rb:15:10:15:15 | call to params |
-| action_controller/params_flow.rb:19:10:19:15 | call to params |
-| action_controller/params_flow.rb:23:10:23:15 | call to params |
-| action_controller/params_flow.rb:27:10:27:15 | call to params |
-| action_controller/params_flow.rb:31:10:31:15 | call to params |
-| action_controller/params_flow.rb:35:10:35:15 | call to params |
-| action_controller/params_flow.rb:39:10:39:15 | call to params |
-| action_controller/params_flow.rb:43:10:43:15 | call to params |
-| action_controller/params_flow.rb:47:10:47:15 | call to params |
-| action_controller/params_flow.rb:51:10:51:15 | call to params |
-| action_controller/params_flow.rb:55:10:55:15 | call to params |
-| action_controller/params_flow.rb:59:10:59:15 | call to params |
-| action_controller/params_flow.rb:63:10:63:15 | call to params |
-| action_controller/params_flow.rb:67:10:67:15 | call to params |
-| action_controller/params_flow.rb:71:10:71:15 | call to params |
-| action_controller/params_flow.rb:75:10:75:15 | call to params |
-| action_controller/params_flow.rb:79:10:79:15 | call to params |
-| action_controller/params_flow.rb:83:10:83:15 | call to params |
-| action_controller/params_flow.rb:87:10:87:15 | call to params |
-| action_controller/params_flow.rb:91:10:91:15 | call to params |
-| action_controller/params_flow.rb:95:10:95:15 | call to params |
-| action_controller/params_flow.rb:99:10:99:15 | call to params |
-| action_controller/params_flow.rb:103:10:103:15 | call to params |
-| action_controller/params_flow.rb:107:10:107:15 | call to params |
-| action_controller/params_flow.rb:111:10:111:15 | call to params |
-| action_controller/params_flow.rb:112:23:112:28 | call to params |
-| action_controller/params_flow.rb:116:10:116:15 | call to params |
-| action_controller/params_flow.rb:117:31:117:36 | call to params |
-| action_controller/params_flow.rb:121:10:121:15 | call to params |
-| action_controller/params_flow.rb:122:31:122:36 | call to params |
-| action_controller/params_flow.rb:126:10:126:15 | call to params |
-| action_controller/params_flow.rb:127:24:127:29 | call to params |
-| action_controller/params_flow.rb:130:14:130:19 | call to params |
-| action_controller/params_flow.rb:135:10:135:15 | call to params |
-| action_controller/params_flow.rb:136:32:136:37 | call to params |
-| action_controller/params_flow.rb:139:22:139:27 | call to params |
-| action_controller/params_flow.rb:144:10:144:15 | call to params |
-| action_controller/params_flow.rb:145:32:145:37 | call to params |
-| action_controller/params_flow.rb:148:22:148:27 | call to params |
-| action_controller/params_flow.rb:153:10:153:15 | call to params |
-| action_controller/params_flow.rb:154:32:154:37 | call to params |
-| action_controller/params_flow.rb:157:22:157:27 | call to params |
-| action_controller/params_flow.rb:166:10:166:15 | call to params |
-| action_controller/params_flow.rb:172:10:172:15 | call to params |
-| action_controller/params_flow.rb:176:10:176:15 | call to params |
-| action_mailer/mailer.rb:3:10:3:15 | call to params |
-| active_record/ActiveRecord.rb:28:30:28:35 | call to params |
-| active_record/ActiveRecord.rb:29:29:29:34 | call to params |
-| active_record/ActiveRecord.rb:30:31:30:36 | call to params |
-| active_record/ActiveRecord.rb:32:21:32:26 | call to params |
-| active_record/ActiveRecord.rb:34:34:34:39 | call to params |
-| active_record/ActiveRecord.rb:35:23:35:28 | call to params |
-| active_record/ActiveRecord.rb:35:38:35:43 | call to params |
-| active_record/ActiveRecord.rb:43:10:43:15 | call to params |
-| active_record/ActiveRecord.rb:50:11:50:16 | call to params |
-| active_record/ActiveRecord.rb:54:12:54:17 | call to params |
-| active_record/ActiveRecord.rb:59:12:59:17 | call to params |
-| active_record/ActiveRecord.rb:62:15:62:20 | call to params |
-| active_record/ActiveRecord.rb:68:21:68:26 | call to params |
-| active_record/ActiveRecord.rb:72:18:72:23 | call to params |
-| active_record/ActiveRecord.rb:76:24:76:29 | call to params |
-| active_record/ActiveRecord.rb:76:49:76:54 | call to params |
-| active_record/ActiveRecord.rb:80:25:80:30 | call to params |
-| active_record/ActiveRecord.rb:80:50:80:55 | call to params |
-| active_record/ActiveRecord.rb:88:21:88:26 | call to params |
-| active_record/ActiveRecord.rb:92:27:92:32 | call to params |
-| active_record/ActiveRecord.rb:92:52:92:57 | call to params |
-| active_record/ActiveRecord.rb:96:28:96:33 | call to params |
-| active_record/ActiveRecord.rb:96:53:96:58 | call to params |
-| active_record/ActiveRecord.rb:106:59:106:64 | call to params |
-| active_storage/active_storage.rb:41:21:41:26 | call to params |
-| active_storage/active_storage.rb:42:24:42:29 | call to params |
-| app/controllers/foo/bars_controller.rb:13:21:13:26 | call to params |
-| app/controllers/foo/bars_controller.rb:14:10:14:15 | call to params |
-| app/controllers/foo/bars_controller.rb:21:21:21:26 | call to params |
-| app/controllers/foo/bars_controller.rb:22:10:22:15 | call to params |
-| app/views/foo/bars/show.html.erb:5:9:5:14 | call to params |
-paramsSources
-| action_controller/params_flow.rb:3:10:3:15 | call to params |
-| action_controller/params_flow.rb:7:10:7:15 | call to params |
-| action_controller/params_flow.rb:11:10:11:15 | call to params |
-| action_controller/params_flow.rb:15:10:15:15 | call to params |
-| action_controller/params_flow.rb:19:10:19:15 | call to params |
-| action_controller/params_flow.rb:23:10:23:15 | call to params |
-| action_controller/params_flow.rb:27:10:27:15 | call to params |
-| action_controller/params_flow.rb:31:10:31:15 | call to params |
-| action_controller/params_flow.rb:35:10:35:15 | call to params |
-| action_controller/params_flow.rb:39:10:39:15 | call to params |
-| action_controller/params_flow.rb:43:10:43:15 | call to params |
-| action_controller/params_flow.rb:47:10:47:15 | call to params |
-| action_controller/params_flow.rb:51:10:51:15 | call to params |
-| action_controller/params_flow.rb:55:10:55:15 | call to params |
-| action_controller/params_flow.rb:59:10:59:15 | call to params |
-| action_controller/params_flow.rb:63:10:63:15 | call to params |
-| action_controller/params_flow.rb:67:10:67:15 | call to params |
-| action_controller/params_flow.rb:71:10:71:15 | call to params |
-| action_controller/params_flow.rb:75:10:75:15 | call to params |
-| action_controller/params_flow.rb:79:10:79:15 | call to params |
-| action_controller/params_flow.rb:83:10:83:15 | call to params |
-| action_controller/params_flow.rb:87:10:87:15 | call to params |
-| action_controller/params_flow.rb:91:10:91:15 | call to params |
-| action_controller/params_flow.rb:95:10:95:15 | call to params |
-| action_controller/params_flow.rb:99:10:99:15 | call to params |
-| action_controller/params_flow.rb:103:10:103:15 | call to params |
-| action_controller/params_flow.rb:107:10:107:15 | call to params |
-| action_controller/params_flow.rb:111:10:111:15 | call to params |
-| action_controller/params_flow.rb:112:23:112:28 | call to params |
-| action_controller/params_flow.rb:116:10:116:15 | call to params |
-| action_controller/params_flow.rb:117:31:117:36 | call to params |
-| action_controller/params_flow.rb:121:10:121:15 | call to params |
-| action_controller/params_flow.rb:122:31:122:36 | call to params |
-| action_controller/params_flow.rb:126:10:126:15 | call to params |
-| action_controller/params_flow.rb:127:24:127:29 | call to params |
-| action_controller/params_flow.rb:130:14:130:19 | call to params |
-| action_controller/params_flow.rb:135:10:135:15 | call to params |
-| action_controller/params_flow.rb:136:32:136:37 | call to params |
-| action_controller/params_flow.rb:139:22:139:27 | call to params |
-| action_controller/params_flow.rb:144:10:144:15 | call to params |
-| action_controller/params_flow.rb:145:32:145:37 | call to params |
-| action_controller/params_flow.rb:148:22:148:27 | call to params |
-| action_controller/params_flow.rb:153:10:153:15 | call to params |
-| action_controller/params_flow.rb:154:32:154:37 | call to params |
-| action_controller/params_flow.rb:157:22:157:27 | call to params |
-| action_controller/params_flow.rb:166:10:166:15 | call to params |
-| action_controller/params_flow.rb:172:10:172:15 | call to params |
-| action_controller/params_flow.rb:176:10:176:15 | call to params |
-| action_mailer/mailer.rb:3:10:3:15 | call to params |
-| active_record/ActiveRecord.rb:28:30:28:35 | call to params |
-| active_record/ActiveRecord.rb:29:29:29:34 | call to params |
-| active_record/ActiveRecord.rb:30:31:30:36 | call to params |
-| active_record/ActiveRecord.rb:32:21:32:26 | call to params |
-| active_record/ActiveRecord.rb:34:34:34:39 | call to params |
-| active_record/ActiveRecord.rb:35:23:35:28 | call to params |
-| active_record/ActiveRecord.rb:35:38:35:43 | call to params |
-| active_record/ActiveRecord.rb:43:10:43:15 | call to params |
-| active_record/ActiveRecord.rb:50:11:50:16 | call to params |
-| active_record/ActiveRecord.rb:54:12:54:17 | call to params |
-| active_record/ActiveRecord.rb:59:12:59:17 | call to params |
-| active_record/ActiveRecord.rb:62:15:62:20 | call to params |
-| active_record/ActiveRecord.rb:68:21:68:26 | call to params |
-| active_record/ActiveRecord.rb:72:18:72:23 | call to params |
-| active_record/ActiveRecord.rb:76:24:76:29 | call to params |
-| active_record/ActiveRecord.rb:76:49:76:54 | call to params |
-| active_record/ActiveRecord.rb:80:25:80:30 | call to params |
-| active_record/ActiveRecord.rb:80:50:80:55 | call to params |
-| active_record/ActiveRecord.rb:88:21:88:26 | call to params |
-| active_record/ActiveRecord.rb:92:27:92:32 | call to params |
-| active_record/ActiveRecord.rb:92:52:92:57 | call to params |
-| active_record/ActiveRecord.rb:96:28:96:33 | call to params |
-| active_record/ActiveRecord.rb:96:53:96:58 | call to params |
-| active_record/ActiveRecord.rb:106:59:106:64 | call to params |
-| active_storage/active_storage.rb:41:21:41:26 | call to params |
-| active_storage/active_storage.rb:42:24:42:29 | call to params |
-| app/controllers/foo/bars_controller.rb:13:21:13:26 | call to params |
-| app/controllers/foo/bars_controller.rb:14:10:14:15 | call to params |
-| app/controllers/foo/bars_controller.rb:21:21:21:26 | call to params |
-| app/controllers/foo/bars_controller.rb:22:10:22:15 | call to params |
-| app/views/foo/bars/show.html.erb:5:9:5:14 | call to params |
-httpInputAccesses
-| action_controller/input_access.rb:3:5:3:18 | call to params | ActionDispatch::Request#params |
-| action_controller/input_access.rb:4:5:4:22 | call to parameters | ActionDispatch::Request#parameters |
-| action_controller/input_access.rb:5:5:5:15 | call to GET | ActionDispatch::Request#GET |
-| action_controller/input_access.rb:6:5:6:16 | call to POST | ActionDispatch::Request#POST |
-| action_controller/input_access.rb:7:5:7:28 | call to query_parameters | ActionDispatch::Request#query_parameters |
-| action_controller/input_access.rb:8:5:8:30 | call to request_parameters | ActionDispatch::Request#request_parameters |
-| action_controller/input_access.rb:9:5:9:31 | call to filtered_parameters | ActionDispatch::Request#filtered_parameters |
-| action_controller/input_access.rb:11:5:11:25 | call to authorization | ActionDispatch::Request#authorization |
-| action_controller/input_access.rb:12:5:12:23 | call to script_name | ActionDispatch::Request#script_name |
-| action_controller/input_access.rb:13:5:13:21 | call to path_info | ActionDispatch::Request#path_info |
-| action_controller/input_access.rb:14:5:14:22 | call to user_agent | ActionDispatch::Request#user_agent |
-| action_controller/input_access.rb:15:5:15:19 | call to referer | ActionDispatch::Request#referer |
-| action_controller/input_access.rb:16:5:16:20 | call to referrer | ActionDispatch::Request#referrer |
-| action_controller/input_access.rb:17:5:17:26 | call to host_authority | ActionDispatch::Request#host_authority |
-| action_controller/input_access.rb:18:5:18:24 | call to content_type | ActionDispatch::Request#content_type |
-| action_controller/input_access.rb:19:5:19:16 | call to host | ActionDispatch::Request#host |
-| action_controller/input_access.rb:20:5:20:20 | call to hostname | ActionDispatch::Request#hostname |
-| action_controller/input_access.rb:21:5:21:27 | call to accept_encoding | ActionDispatch::Request#accept_encoding |
-| action_controller/input_access.rb:22:5:22:27 | call to accept_language | ActionDispatch::Request#accept_language |
-| action_controller/input_access.rb:23:5:23:25 | call to if_none_match | ActionDispatch::Request#if_none_match |
-| action_controller/input_access.rb:24:5:24:31 | call to if_none_match_etags | ActionDispatch::Request#if_none_match_etags |
-| action_controller/input_access.rb:25:5:25:29 | call to content_mime_type | ActionDispatch::Request#content_mime_type |
-| action_controller/input_access.rb:27:5:27:21 | call to authority | ActionDispatch::Request#authority |
-| action_controller/input_access.rb:28:5:28:16 | call to host | ActionDispatch::Request#host |
-| action_controller/input_access.rb:29:5:29:26 | call to host_authority | ActionDispatch::Request#host_authority |
-| action_controller/input_access.rb:30:5:30:26 | call to host_with_port | ActionDispatch::Request#host_with_port |
-| action_controller/input_access.rb:31:5:31:20 | call to hostname | ActionDispatch::Request#hostname |
-| action_controller/input_access.rb:32:5:32:25 | call to forwarded_for | ActionDispatch::Request#forwarded_for |
-| action_controller/input_access.rb:33:5:33:26 | call to forwarded_host | ActionDispatch::Request#forwarded_host |
-| action_controller/input_access.rb:34:5:34:16 | call to port | ActionDispatch::Request#port |
-| action_controller/input_access.rb:35:5:35:26 | call to forwarded_port | ActionDispatch::Request#forwarded_port |
-| action_controller/input_access.rb:37:5:37:22 | call to media_type | ActionDispatch::Request#media_type |
-| action_controller/input_access.rb:38:5:38:29 | call to media_type_params | ActionDispatch::Request#media_type_params |
-| action_controller/input_access.rb:39:5:39:27 | call to content_charset | ActionDispatch::Request#content_charset |
-| action_controller/input_access.rb:40:5:40:20 | call to base_url | ActionDispatch::Request#base_url |
-| action_controller/input_access.rb:42:5:42:16 | call to body | ActionDispatch::Request#body |
-| action_controller/input_access.rb:43:5:43:20 | call to raw_post | ActionDispatch::Request#raw_post |
-| action_controller/input_access.rb:45:5:45:30 | ...[...] | ActionDispatch::Request#env[] |
-| action_controller/input_access.rb:47:5:47:39 | ...[...] | ActionDispatch::Request#env[] |
-| action_controller/params_flow.rb:3:10:3:15 | call to params | ActionController::Metal#params |
-| action_controller/params_flow.rb:7:10:7:15 | call to params | ActionController::Metal#params |
-| action_controller/params_flow.rb:11:10:11:15 | call to params | ActionController::Metal#params |
-| action_controller/params_flow.rb:15:10:15:15 | call to params | ActionController::Metal#params |
-| action_controller/params_flow.rb:19:10:19:15 | call to params | ActionController::Metal#params |
-| action_controller/params_flow.rb:23:10:23:15 | call to params | ActionController::Metal#params |
-| action_controller/params_flow.rb:27:10:27:15 | call to params | ActionController::Metal#params |
-| action_controller/params_flow.rb:31:10:31:15 | call to params | ActionController::Metal#params |
-| action_controller/params_flow.rb:35:10:35:15 | call to params | ActionController::Metal#params |
-| action_controller/params_flow.rb:39:10:39:15 | call to params | ActionController::Metal#params |
-| action_controller/params_flow.rb:43:10:43:15 | call to params | ActionController::Metal#params |
-| action_controller/params_flow.rb:47:10:47:15 | call to params | ActionController::Metal#params |
-| action_controller/params_flow.rb:51:10:51:15 | call to params | ActionController::Metal#params |
-| action_controller/params_flow.rb:55:10:55:15 | call to params | ActionController::Metal#params |
-| action_controller/params_flow.rb:59:10:59:15 | call to params | ActionController::Metal#params |
-| action_controller/params_flow.rb:63:10:63:15 | call to params | ActionController::Metal#params |
-| action_controller/params_flow.rb:67:10:67:15 | call to params | ActionController::Metal#params |
-| action_controller/params_flow.rb:71:10:71:15 | call to params | ActionController::Metal#params |
-| action_controller/params_flow.rb:75:10:75:15 | call to params | ActionController::Metal#params |
-| action_controller/params_flow.rb:79:10:79:15 | call to params | ActionController::Metal#params |
-| action_controller/params_flow.rb:83:10:83:15 | call to params | ActionController::Metal#params |
-| action_controller/params_flow.rb:87:10:87:15 | call to params | ActionController::Metal#params |
-| action_controller/params_flow.rb:91:10:91:15 | call to params | ActionController::Metal#params |
-| action_controller/params_flow.rb:95:10:95:15 | call to params | ActionController::Metal#params |
-| action_controller/params_flow.rb:99:10:99:15 | call to params | ActionController::Metal#params |
-| action_controller/params_flow.rb:103:10:103:15 | call to params | ActionController::Metal#params |
-| action_controller/params_flow.rb:107:10:107:15 | call to params | ActionController::Metal#params |
-| action_controller/params_flow.rb:111:10:111:15 | call to params | ActionController::Metal#params |
-| action_controller/params_flow.rb:112:23:112:28 | call to params | ActionController::Metal#params |
-| action_controller/params_flow.rb:116:10:116:15 | call to params | ActionController::Metal#params |
-| action_controller/params_flow.rb:117:31:117:36 | call to params | ActionController::Metal#params |
-| action_controller/params_flow.rb:121:10:121:15 | call to params | ActionController::Metal#params |
-| action_controller/params_flow.rb:122:31:122:36 | call to params | ActionController::Metal#params |
-| action_controller/params_flow.rb:126:10:126:15 | call to params | ActionController::Metal#params |
-| action_controller/params_flow.rb:127:24:127:29 | call to params | ActionController::Metal#params |
-| action_controller/params_flow.rb:130:14:130:19 | call to params | ActionController::Metal#params |
-| action_controller/params_flow.rb:135:10:135:15 | call to params | ActionController::Metal#params |
-| action_controller/params_flow.rb:136:32:136:37 | call to params | ActionController::Metal#params |
-| action_controller/params_flow.rb:139:22:139:27 | call to params | ActionController::Metal#params |
-| action_controller/params_flow.rb:144:10:144:15 | call to params | ActionController::Metal#params |
-| action_controller/params_flow.rb:145:32:145:37 | call to params | ActionController::Metal#params |
-| action_controller/params_flow.rb:148:22:148:27 | call to params | ActionController::Metal#params |
-| action_controller/params_flow.rb:153:10:153:15 | call to params | ActionController::Metal#params |
-| action_controller/params_flow.rb:154:32:154:37 | call to params | ActionController::Metal#params |
-| action_controller/params_flow.rb:157:22:157:27 | call to params | ActionController::Metal#params |
-| action_controller/params_flow.rb:166:10:166:15 | call to params | ActionController::Metal#params |
-| action_controller/params_flow.rb:172:10:172:15 | call to params | ActionController::Metal#params |
-| action_controller/params_flow.rb:176:10:176:15 | call to params | ActionController::Metal#params |
-| action_mailer/mailer.rb:3:10:3:15 | call to params | ActionController::Metal#params |
-| active_record/ActiveRecord.rb:28:30:28:35 | call to params | ActionController::Metal#params |
-| active_record/ActiveRecord.rb:29:29:29:34 | call to params | ActionController::Metal#params |
-| active_record/ActiveRecord.rb:30:31:30:36 | call to params | ActionController::Metal#params |
-| active_record/ActiveRecord.rb:32:21:32:26 | call to params | ActionController::Metal#params |
-| active_record/ActiveRecord.rb:34:34:34:39 | call to params | ActionController::Metal#params |
-| active_record/ActiveRecord.rb:35:23:35:28 | call to params | ActionController::Metal#params |
-| active_record/ActiveRecord.rb:35:38:35:43 | call to params | ActionController::Metal#params |
-| active_record/ActiveRecord.rb:43:10:43:15 | call to params | ActionController::Metal#params |
-| active_record/ActiveRecord.rb:50:11:50:16 | call to params | ActionController::Metal#params |
-| active_record/ActiveRecord.rb:54:12:54:17 | call to params | ActionController::Metal#params |
-| active_record/ActiveRecord.rb:59:12:59:17 | call to params | ActionController::Metal#params |
-| active_record/ActiveRecord.rb:62:15:62:20 | call to params | ActionController::Metal#params |
-| active_record/ActiveRecord.rb:68:21:68:26 | call to params | ActionController::Metal#params |
-| active_record/ActiveRecord.rb:72:18:72:23 | call to params | ActionController::Metal#params |
-| active_record/ActiveRecord.rb:76:24:76:29 | call to params | ActionController::Metal#params |
-| active_record/ActiveRecord.rb:76:49:76:54 | call to params | ActionController::Metal#params |
-| active_record/ActiveRecord.rb:80:25:80:30 | call to params | ActionController::Metal#params |
-| active_record/ActiveRecord.rb:80:50:80:55 | call to params | ActionController::Metal#params |
-| active_record/ActiveRecord.rb:88:21:88:26 | call to params | ActionController::Metal#params |
-| active_record/ActiveRecord.rb:92:27:92:32 | call to params | ActionController::Metal#params |
-| active_record/ActiveRecord.rb:92:52:92:57 | call to params | ActionController::Metal#params |
-| active_record/ActiveRecord.rb:96:28:96:33 | call to params | ActionController::Metal#params |
-| active_record/ActiveRecord.rb:96:53:96:58 | call to params | ActionController::Metal#params |
-| active_record/ActiveRecord.rb:106:59:106:64 | call to params | ActionController::Metal#params |
-| active_storage/active_storage.rb:41:21:41:26 | call to params | ActionController::Metal#params |
-| active_storage/active_storage.rb:42:24:42:29 | call to params | ActionController::Metal#params |
-| app/controllers/comments_controller.rb:3:5:3:18 | call to params | ActionDispatch::Request#params |
-| app/controllers/comments_controller.rb:4:5:4:22 | call to parameters | ActionDispatch::Request#parameters |
-| app/controllers/comments_controller.rb:5:5:5:15 | call to GET | ActionDispatch::Request#GET |
-| app/controllers/comments_controller.rb:6:5:6:16 | call to POST | ActionDispatch::Request#POST |
-| app/controllers/comments_controller.rb:7:5:7:28 | call to query_parameters | ActionDispatch::Request#query_parameters |
-| app/controllers/comments_controller.rb:8:5:8:30 | call to request_parameters | ActionDispatch::Request#request_parameters |
-| app/controllers/comments_controller.rb:9:5:9:31 | call to filtered_parameters | ActionDispatch::Request#filtered_parameters |
-| app/controllers/foo/bars_controller.rb:10:27:10:33 | call to cookies | ActionController::Metal#cookies |
-| app/controllers/foo/bars_controller.rb:13:21:13:26 | call to params | ActionController::Metal#params |
-| app/controllers/foo/bars_controller.rb:14:10:14:15 | call to params | ActionController::Metal#params |
-| app/controllers/foo/bars_controller.rb:21:21:21:26 | call to params | ActionController::Metal#params |
-| app/controllers/foo/bars_controller.rb:22:10:22:15 | call to params | ActionController::Metal#params |
-| app/graphql/mutations/dummy.rb:5:24:5:25 | id | GraphQL RoutedParameter |
-| app/graphql/mutations/dummy.rb:9:17:9:25 | something | GraphQL RoutedParameter |
-| app/graphql/resolvers/dummy_resolver.rb:6:24:6:25 | id | GraphQL RoutedParameter |
-| app/graphql/resolvers/dummy_resolver.rb:10:17:10:25 | something | GraphQL RoutedParameter |
-| app/graphql/types/query_type.rb:10:18:10:23 | number | GraphQL RoutedParameter |
-| app/graphql/types/query_type.rb:18:23:18:33 | blah_number | GraphQL RoutedParameter |
-| app/graphql/types/query_type.rb:27:20:27:25 | **args | GraphQL RoutedParameter |
-| app/graphql/types/query_type.rb:36:34:36:37 | arg1 | GraphQL RoutedParameter |
-| app/graphql/types/query_type.rb:36:41:36:46 | **rest | GraphQL RoutedParameter |
-| app/views/foo/bars/show.html.erb:5:9:5:14 | call to params | ActionController::Metal#params |
-cookiesCalls
-| app/controllers/foo/bars_controller.rb:10:27:10:33 | call to cookies |
-cookiesSources
-| app/controllers/foo/bars_controller.rb:10:27:10:33 | call to cookies |
-redirectToCalls
-| app/controllers/foo/bars_controller.rb:17:5:17:30 | call to redirect_to |
-| app/controllers/foo/bars_controller.rb:27:5:27:39 | call to redirect_back_or_to |
-| app/controllers/foo/bars_controller.rb:31:5:31:56 | call to redirect_back |
-actionControllerHelperMethods
-getAssociatedControllerClasses
-| app/controllers/foo/bars_controller.rb:3:1:46:3 | BarsController | app/views/foo/bars/_widget.html.erb:0:0:0:0 | app/views/foo/bars/_widget.html.erb |
-| app/controllers/foo/bars_controller.rb:3:1:46:3 | BarsController | app/views/foo/bars/show.html.erb:0:0:0:0 | app/views/foo/bars/show.html.erb |
-controllerTemplateFiles
-| app/controllers/foo/bars_controller.rb:3:1:46:3 | BarsController | app/views/foo/bars/_widget.html.erb:0:0:0:0 | app/views/foo/bars/_widget.html.erb |
-| app/controllers/foo/bars_controller.rb:3:1:46:3 | BarsController | app/views/foo/bars/show.html.erb:0:0:0:0 | app/views/foo/bars/show.html.erb |
-headerWriteAccesses
-| app/controllers/comments_controller.rb:15:5:15:35 | call to []= | content-type | app/controllers/comments_controller.rb:15:39:15:49 | ... = ... |
-| app/controllers/comments_controller.rb:16:5:16:46 | call to set_header | content-length | app/controllers/comments_controller.rb:16:43:16:45 | 100 |
-| app/controllers/comments_controller.rb:17:5:17:39 | call to []= | x-custom-header | app/controllers/comments_controller.rb:17:43:17:46 | ... = ... |
-| app/controllers/comments_controller.rb:18:5:18:39 | call to []= | x-another-custom-header | app/controllers/comments_controller.rb:18:43:18:47 | ... = ... |
-| app/controllers/comments_controller.rb:19:5:19:49 | call to add_header | x-yet-another | app/controllers/comments_controller.rb:19:42:19:49 | "indeed" |
-| app/controllers/comments_controller.rb:25:5:25:21 | call to location= | location | app/controllers/comments_controller.rb:25:25:25:36 | ... = ... |
-| app/controllers/comments_controller.rb:26:5:26:26 | call to cache_control= | cache-control | app/controllers/comments_controller.rb:26:30:26:36 | ... = ... |
-| app/controllers/comments_controller.rb:27:5:27:27 | call to _cache_control= | cache-control | app/controllers/comments_controller.rb:27:31:27:37 | ... = ... |
-| app/controllers/comments_controller.rb:28:5:28:17 | call to etag= | etag | app/controllers/comments_controller.rb:28:21:28:27 | ... = ... |
-| app/controllers/comments_controller.rb:29:5:29:20 | call to charset= | content-type | app/controllers/comments_controller.rb:29:24:29:30 | ... = ... |
-| app/controllers/comments_controller.rb:30:5:30:25 | call to content_type= | content-type | app/controllers/comments_controller.rb:30:29:30:35 | ... = ... |
-| app/controllers/comments_controller.rb:32:5:32:17 | call to date= | date | app/controllers/comments_controller.rb:32:21:32:30 | ... = ... |
-| app/controllers/comments_controller.rb:33:5:33:26 | call to last_modified= | last-modified | app/controllers/comments_controller.rb:33:30:33:43 | ... = ... |
-| app/controllers/comments_controller.rb:34:5:34:22 | call to weak_etag= | etag | app/controllers/comments_controller.rb:34:26:34:32 | ... = ... |
-| app/controllers/comments_controller.rb:35:5:35:24 | call to strong_etag= | etag | app/controllers/comments_controller.rb:35:28:35:34 | ... = ... |
diff --git a/ruby/ql/test/library-tests/frameworks/action_controller/ActionController.expected b/ruby/ql/test/library-tests/frameworks/action_controller/ActionController.expected
new file mode 100644
index 00000000000..e390c376a60
--- /dev/null
+++ b/ruby/ql/test/library-tests/frameworks/action_controller/ActionController.expected
@@ -0,0 +1,272 @@
+actionControllerControllerClasses
+| controllers/comments_controller.rb:1:1:40:3 | CommentsController |
+| controllers/foo/bars_controller.rb:3:1:46:3 | BarsController |
+| controllers/photos_controller.rb:1:1:4:3 | PhotosController |
+| controllers/posts_controller.rb:1:1:10:3 | PostsController |
+| controllers/tags_controller.rb:1:1:2:3 | TagsController |
+| controllers/users/notifications_controller.rb:2:3:5:5 | NotificationsController |
+| input_access.rb:1:1:50:3 | UsersController |
+| params_flow.rb:1:1:151:3 | MyController |
+actionControllerActionMethods
+| controllers/comments_controller.rb:2:3:36:5 | index |
+| controllers/comments_controller.rb:38:3:39:5 | show |
+| controllers/foo/bars_controller.rb:5:3:7:5 | index |
+| controllers/foo/bars_controller.rb:9:3:18:5 | show_debug |
+| controllers/foo/bars_controller.rb:20:3:24:5 | show |
+| controllers/foo/bars_controller.rb:26:3:28:5 | go_back |
+| controllers/foo/bars_controller.rb:30:3:32:5 | go_back_2 |
+| controllers/foo/bars_controller.rb:34:3:39:5 | show_2 |
+| controllers/photos_controller.rb:2:3:3:5 | show |
+| controllers/posts_controller.rb:2:3:3:5 | index |
+| controllers/posts_controller.rb:5:3:6:5 | show |
+| controllers/posts_controller.rb:8:3:9:5 | upvote |
+| controllers/users/notifications_controller.rb:3:5:4:7 | mark_as_read |
+| input_access.rb:2:3:49:5 | index |
+| params_flow.rb:2:3:4:5 | m1 |
+| params_flow.rb:6:3:8:5 | m2 |
+| params_flow.rb:10:3:12:5 | m2 |
+| params_flow.rb:14:3:16:5 | m3 |
+| params_flow.rb:18:3:20:5 | m4 |
+| params_flow.rb:22:3:24:5 | m5 |
+| params_flow.rb:26:3:28:5 | m6 |
+| params_flow.rb:30:3:32:5 | m7 |
+| params_flow.rb:34:3:36:5 | m8 |
+| params_flow.rb:38:3:40:5 | m9 |
+| params_flow.rb:42:3:44:5 | m10 |
+| params_flow.rb:46:3:48:5 | m11 |
+| params_flow.rb:50:3:52:5 | m12 |
+| params_flow.rb:54:3:56:5 | m13 |
+| params_flow.rb:58:3:60:5 | m14 |
+| params_flow.rb:62:3:64:5 | m15 |
+| params_flow.rb:66:3:68:5 | m16 |
+| params_flow.rb:70:3:72:5 | m17 |
+| params_flow.rb:74:3:76:5 | m18 |
+| params_flow.rb:78:3:80:5 | m19 |
+| params_flow.rb:82:3:84:5 | m20 |
+| params_flow.rb:86:3:88:5 | m21 |
+| params_flow.rb:90:3:92:5 | m22 |
+| params_flow.rb:94:3:96:5 | m23 |
+| params_flow.rb:98:3:100:5 | m24 |
+| params_flow.rb:102:3:104:5 | m25 |
+| params_flow.rb:106:3:108:5 | m26 |
+| params_flow.rb:110:3:113:5 | m27 |
+| params_flow.rb:115:3:118:5 | m28 |
+| params_flow.rb:120:3:123:5 | m29 |
+| params_flow.rb:125:3:132:5 | m30 |
+| params_flow.rb:134:3:141:5 | m31 |
+| params_flow.rb:143:3:150:5 | m32 |
+paramsCalls
+| controllers/foo/bars_controller.rb:13:21:13:26 | call to params |
+| controllers/foo/bars_controller.rb:14:10:14:15 | call to params |
+| controllers/foo/bars_controller.rb:21:21:21:26 | call to params |
+| controllers/foo/bars_controller.rb:22:10:22:15 | call to params |
+| params_flow.rb:3:10:3:15 | call to params |
+| params_flow.rb:7:10:7:15 | call to params |
+| params_flow.rb:11:10:11:15 | call to params |
+| params_flow.rb:15:10:15:15 | call to params |
+| params_flow.rb:19:10:19:15 | call to params |
+| params_flow.rb:23:10:23:15 | call to params |
+| params_flow.rb:27:10:27:15 | call to params |
+| params_flow.rb:31:10:31:15 | call to params |
+| params_flow.rb:35:10:35:15 | call to params |
+| params_flow.rb:39:10:39:15 | call to params |
+| params_flow.rb:43:10:43:15 | call to params |
+| params_flow.rb:47:10:47:15 | call to params |
+| params_flow.rb:51:10:51:15 | call to params |
+| params_flow.rb:55:10:55:15 | call to params |
+| params_flow.rb:59:10:59:15 | call to params |
+| params_flow.rb:63:10:63:15 | call to params |
+| params_flow.rb:67:10:67:15 | call to params |
+| params_flow.rb:71:10:71:15 | call to params |
+| params_flow.rb:75:10:75:15 | call to params |
+| params_flow.rb:79:10:79:15 | call to params |
+| params_flow.rb:83:10:83:15 | call to params |
+| params_flow.rb:87:10:87:15 | call to params |
+| params_flow.rb:91:10:91:15 | call to params |
+| params_flow.rb:95:10:95:15 | call to params |
+| params_flow.rb:99:10:99:15 | call to params |
+| params_flow.rb:103:10:103:15 | call to params |
+| params_flow.rb:107:10:107:15 | call to params |
+| params_flow.rb:111:10:111:15 | call to params |
+| params_flow.rb:112:23:112:28 | call to params |
+| params_flow.rb:116:10:116:15 | call to params |
+| params_flow.rb:117:31:117:36 | call to params |
+| params_flow.rb:121:10:121:15 | call to params |
+| params_flow.rb:122:31:122:36 | call to params |
+| params_flow.rb:126:10:126:15 | call to params |
+| params_flow.rb:127:24:127:29 | call to params |
+| params_flow.rb:130:14:130:19 | call to params |
+| params_flow.rb:135:10:135:15 | call to params |
+| params_flow.rb:136:32:136:37 | call to params |
+| params_flow.rb:139:22:139:27 | call to params |
+| params_flow.rb:144:10:144:15 | call to params |
+| params_flow.rb:145:32:145:37 | call to params |
+| params_flow.rb:148:22:148:27 | call to params |
+paramsSources
+| controllers/foo/bars_controller.rb:13:21:13:26 | call to params |
+| controllers/foo/bars_controller.rb:14:10:14:15 | call to params |
+| controllers/foo/bars_controller.rb:21:21:21:26 | call to params |
+| controllers/foo/bars_controller.rb:22:10:22:15 | call to params |
+| params_flow.rb:3:10:3:15 | call to params |
+| params_flow.rb:7:10:7:15 | call to params |
+| params_flow.rb:11:10:11:15 | call to params |
+| params_flow.rb:15:10:15:15 | call to params |
+| params_flow.rb:19:10:19:15 | call to params |
+| params_flow.rb:23:10:23:15 | call to params |
+| params_flow.rb:27:10:27:15 | call to params |
+| params_flow.rb:31:10:31:15 | call to params |
+| params_flow.rb:35:10:35:15 | call to params |
+| params_flow.rb:39:10:39:15 | call to params |
+| params_flow.rb:43:10:43:15 | call to params |
+| params_flow.rb:47:10:47:15 | call to params |
+| params_flow.rb:51:10:51:15 | call to params |
+| params_flow.rb:55:10:55:15 | call to params |
+| params_flow.rb:59:10:59:15 | call to params |
+| params_flow.rb:63:10:63:15 | call to params |
+| params_flow.rb:67:10:67:15 | call to params |
+| params_flow.rb:71:10:71:15 | call to params |
+| params_flow.rb:75:10:75:15 | call to params |
+| params_flow.rb:79:10:79:15 | call to params |
+| params_flow.rb:83:10:83:15 | call to params |
+| params_flow.rb:87:10:87:15 | call to params |
+| params_flow.rb:91:10:91:15 | call to params |
+| params_flow.rb:95:10:95:15 | call to params |
+| params_flow.rb:99:10:99:15 | call to params |
+| params_flow.rb:103:10:103:15 | call to params |
+| params_flow.rb:107:10:107:15 | call to params |
+| params_flow.rb:111:10:111:15 | call to params |
+| params_flow.rb:112:23:112:28 | call to params |
+| params_flow.rb:116:10:116:15 | call to params |
+| params_flow.rb:117:31:117:36 | call to params |
+| params_flow.rb:121:10:121:15 | call to params |
+| params_flow.rb:122:31:122:36 | call to params |
+| params_flow.rb:126:10:126:15 | call to params |
+| params_flow.rb:127:24:127:29 | call to params |
+| params_flow.rb:130:14:130:19 | call to params |
+| params_flow.rb:135:10:135:15 | call to params |
+| params_flow.rb:136:32:136:37 | call to params |
+| params_flow.rb:139:22:139:27 | call to params |
+| params_flow.rb:144:10:144:15 | call to params |
+| params_flow.rb:145:32:145:37 | call to params |
+| params_flow.rb:148:22:148:27 | call to params |
+httpInputAccesses
+| controllers/comments_controller.rb:3:5:3:18 | call to params | ActionDispatch::Request#params |
+| controllers/comments_controller.rb:4:5:4:22 | call to parameters | ActionDispatch::Request#parameters |
+| controllers/comments_controller.rb:5:5:5:15 | call to GET | ActionDispatch::Request#GET |
+| controllers/comments_controller.rb:6:5:6:16 | call to POST | ActionDispatch::Request#POST |
+| controllers/comments_controller.rb:7:5:7:28 | call to query_parameters | ActionDispatch::Request#query_parameters |
+| controllers/comments_controller.rb:8:5:8:30 | call to request_parameters | ActionDispatch::Request#request_parameters |
+| controllers/comments_controller.rb:9:5:9:31 | call to filtered_parameters | ActionDispatch::Request#filtered_parameters |
+| controllers/foo/bars_controller.rb:10:27:10:33 | call to cookies | ActionController::Metal#cookies |
+| controllers/foo/bars_controller.rb:13:21:13:26 | call to params | ActionController::Metal#params |
+| controllers/foo/bars_controller.rb:14:10:14:15 | call to params | ActionController::Metal#params |
+| controllers/foo/bars_controller.rb:21:21:21:26 | call to params | ActionController::Metal#params |
+| controllers/foo/bars_controller.rb:22:10:22:15 | call to params | ActionController::Metal#params |
+| input_access.rb:3:5:3:18 | call to params | ActionDispatch::Request#params |
+| input_access.rb:4:5:4:22 | call to parameters | ActionDispatch::Request#parameters |
+| input_access.rb:5:5:5:15 | call to GET | ActionDispatch::Request#GET |
+| input_access.rb:6:5:6:16 | call to POST | ActionDispatch::Request#POST |
+| input_access.rb:7:5:7:28 | call to query_parameters | ActionDispatch::Request#query_parameters |
+| input_access.rb:8:5:8:30 | call to request_parameters | ActionDispatch::Request#request_parameters |
+| input_access.rb:9:5:9:31 | call to filtered_parameters | ActionDispatch::Request#filtered_parameters |
+| input_access.rb:11:5:11:25 | call to authorization | ActionDispatch::Request#authorization |
+| input_access.rb:12:5:12:23 | call to script_name | ActionDispatch::Request#script_name |
+| input_access.rb:13:5:13:21 | call to path_info | ActionDispatch::Request#path_info |
+| input_access.rb:14:5:14:22 | call to user_agent | ActionDispatch::Request#user_agent |
+| input_access.rb:15:5:15:19 | call to referer | ActionDispatch::Request#referer |
+| input_access.rb:16:5:16:20 | call to referrer | ActionDispatch::Request#referrer |
+| input_access.rb:17:5:17:26 | call to host_authority | ActionDispatch::Request#host_authority |
+| input_access.rb:18:5:18:24 | call to content_type | ActionDispatch::Request#content_type |
+| input_access.rb:19:5:19:16 | call to host | ActionDispatch::Request#host |
+| input_access.rb:20:5:20:20 | call to hostname | ActionDispatch::Request#hostname |
+| input_access.rb:21:5:21:27 | call to accept_encoding | ActionDispatch::Request#accept_encoding |
+| input_access.rb:22:5:22:27 | call to accept_language | ActionDispatch::Request#accept_language |
+| input_access.rb:23:5:23:25 | call to if_none_match | ActionDispatch::Request#if_none_match |
+| input_access.rb:24:5:24:31 | call to if_none_match_etags | ActionDispatch::Request#if_none_match_etags |
+| input_access.rb:25:5:25:29 | call to content_mime_type | ActionDispatch::Request#content_mime_type |
+| input_access.rb:27:5:27:21 | call to authority | ActionDispatch::Request#authority |
+| input_access.rb:28:5:28:16 | call to host | ActionDispatch::Request#host |
+| input_access.rb:29:5:29:26 | call to host_authority | ActionDispatch::Request#host_authority |
+| input_access.rb:30:5:30:26 | call to host_with_port | ActionDispatch::Request#host_with_port |
+| input_access.rb:31:5:31:20 | call to hostname | ActionDispatch::Request#hostname |
+| input_access.rb:32:5:32:25 | call to forwarded_for | ActionDispatch::Request#forwarded_for |
+| input_access.rb:33:5:33:26 | call to forwarded_host | ActionDispatch::Request#forwarded_host |
+| input_access.rb:34:5:34:16 | call to port | ActionDispatch::Request#port |
+| input_access.rb:35:5:35:26 | call to forwarded_port | ActionDispatch::Request#forwarded_port |
+| input_access.rb:37:5:37:22 | call to media_type | ActionDispatch::Request#media_type |
+| input_access.rb:38:5:38:29 | call to media_type_params | ActionDispatch::Request#media_type_params |
+| input_access.rb:39:5:39:27 | call to content_charset | ActionDispatch::Request#content_charset |
+| input_access.rb:40:5:40:20 | call to base_url | ActionDispatch::Request#base_url |
+| input_access.rb:42:5:42:16 | call to body | ActionDispatch::Request#body |
+| input_access.rb:43:5:43:20 | call to raw_post | ActionDispatch::Request#raw_post |
+| input_access.rb:45:5:45:30 | ...[...] | ActionDispatch::Request#env[] |
+| input_access.rb:47:5:47:39 | ...[...] | ActionDispatch::Request#env[] |
+| params_flow.rb:3:10:3:15 | call to params | ActionController::Metal#params |
+| params_flow.rb:7:10:7:15 | call to params | ActionController::Metal#params |
+| params_flow.rb:11:10:11:15 | call to params | ActionController::Metal#params |
+| params_flow.rb:15:10:15:15 | call to params | ActionController::Metal#params |
+| params_flow.rb:19:10:19:15 | call to params | ActionController::Metal#params |
+| params_flow.rb:23:10:23:15 | call to params | ActionController::Metal#params |
+| params_flow.rb:27:10:27:15 | call to params | ActionController::Metal#params |
+| params_flow.rb:31:10:31:15 | call to params | ActionController::Metal#params |
+| params_flow.rb:35:10:35:15 | call to params | ActionController::Metal#params |
+| params_flow.rb:39:10:39:15 | call to params | ActionController::Metal#params |
+| params_flow.rb:43:10:43:15 | call to params | ActionController::Metal#params |
+| params_flow.rb:47:10:47:15 | call to params | ActionController::Metal#params |
+| params_flow.rb:51:10:51:15 | call to params | ActionController::Metal#params |
+| params_flow.rb:55:10:55:15 | call to params | ActionController::Metal#params |
+| params_flow.rb:59:10:59:15 | call to params | ActionController::Metal#params |
+| params_flow.rb:63:10:63:15 | call to params | ActionController::Metal#params |
+| params_flow.rb:67:10:67:15 | call to params | ActionController::Metal#params |
+| params_flow.rb:71:10:71:15 | call to params | ActionController::Metal#params |
+| params_flow.rb:75:10:75:15 | call to params | ActionController::Metal#params |
+| params_flow.rb:79:10:79:15 | call to params | ActionController::Metal#params |
+| params_flow.rb:83:10:83:15 | call to params | ActionController::Metal#params |
+| params_flow.rb:87:10:87:15 | call to params | ActionController::Metal#params |
+| params_flow.rb:91:10:91:15 | call to params | ActionController::Metal#params |
+| params_flow.rb:95:10:95:15 | call to params | ActionController::Metal#params |
+| params_flow.rb:99:10:99:15 | call to params | ActionController::Metal#params |
+| params_flow.rb:103:10:103:15 | call to params | ActionController::Metal#params |
+| params_flow.rb:107:10:107:15 | call to params | ActionController::Metal#params |
+| params_flow.rb:111:10:111:15 | call to params | ActionController::Metal#params |
+| params_flow.rb:112:23:112:28 | call to params | ActionController::Metal#params |
+| params_flow.rb:116:10:116:15 | call to params | ActionController::Metal#params |
+| params_flow.rb:117:31:117:36 | call to params | ActionController::Metal#params |
+| params_flow.rb:121:10:121:15 | call to params | ActionController::Metal#params |
+| params_flow.rb:122:31:122:36 | call to params | ActionController::Metal#params |
+| params_flow.rb:126:10:126:15 | call to params | ActionController::Metal#params |
+| params_flow.rb:127:24:127:29 | call to params | ActionController::Metal#params |
+| params_flow.rb:130:14:130:19 | call to params | ActionController::Metal#params |
+| params_flow.rb:135:10:135:15 | call to params | ActionController::Metal#params |
+| params_flow.rb:136:32:136:37 | call to params | ActionController::Metal#params |
+| params_flow.rb:139:22:139:27 | call to params | ActionController::Metal#params |
+| params_flow.rb:144:10:144:15 | call to params | ActionController::Metal#params |
+| params_flow.rb:145:32:145:37 | call to params | ActionController::Metal#params |
+| params_flow.rb:148:22:148:27 | call to params | ActionController::Metal#params |
+cookiesCalls
+| controllers/foo/bars_controller.rb:10:27:10:33 | call to cookies |
+cookiesSources
+| controllers/foo/bars_controller.rb:10:27:10:33 | call to cookies |
+redirectToCalls
+| controllers/foo/bars_controller.rb:17:5:17:30 | call to redirect_to |
+| controllers/foo/bars_controller.rb:27:5:27:39 | call to redirect_back_or_to |
+| controllers/foo/bars_controller.rb:31:5:31:56 | call to redirect_back |
+actionControllerHelperMethods
+getAssociatedControllerClasses
+controllerTemplateFiles
+headerWriteAccesses
+| controllers/comments_controller.rb:15:5:15:35 | call to []= | content-type | controllers/comments_controller.rb:15:39:15:49 | ... = ... |
+| controllers/comments_controller.rb:16:5:16:46 | call to set_header | content-length | controllers/comments_controller.rb:16:43:16:45 | 100 |
+| controllers/comments_controller.rb:17:5:17:39 | call to []= | x-custom-header | controllers/comments_controller.rb:17:43:17:46 | ... = ... |
+| controllers/comments_controller.rb:18:5:18:39 | call to []= | x-another-custom-header | controllers/comments_controller.rb:18:43:18:47 | ... = ... |
+| controllers/comments_controller.rb:19:5:19:49 | call to add_header | x-yet-another | controllers/comments_controller.rb:19:42:19:49 | "indeed" |
+| controllers/comments_controller.rb:25:5:25:21 | call to location= | location | controllers/comments_controller.rb:25:25:25:36 | ... = ... |
+| controllers/comments_controller.rb:26:5:26:26 | call to cache_control= | cache-control | controllers/comments_controller.rb:26:30:26:36 | ... = ... |
+| controllers/comments_controller.rb:27:5:27:27 | call to _cache_control= | cache-control | controllers/comments_controller.rb:27:31:27:37 | ... = ... |
+| controllers/comments_controller.rb:28:5:28:17 | call to etag= | etag | controllers/comments_controller.rb:28:21:28:27 | ... = ... |
+| controllers/comments_controller.rb:29:5:29:20 | call to charset= | content-type | controllers/comments_controller.rb:29:24:29:30 | ... = ... |
+| controllers/comments_controller.rb:30:5:30:25 | call to content_type= | content-type | controllers/comments_controller.rb:30:29:30:35 | ... = ... |
+| controllers/comments_controller.rb:32:5:32:17 | call to date= | date | controllers/comments_controller.rb:32:21:32:30 | ... = ... |
+| controllers/comments_controller.rb:33:5:33:26 | call to last_modified= | last-modified | controllers/comments_controller.rb:33:30:33:43 | ... = ... |
+| controllers/comments_controller.rb:34:5:34:22 | call to weak_etag= | etag | controllers/comments_controller.rb:34:26:34:32 | ... = ... |
+| controllers/comments_controller.rb:35:5:35:24 | call to strong_etag= | etag | controllers/comments_controller.rb:35:28:35:34 | ... = ... |
diff --git a/ruby/ql/test/library-tests/frameworks/ActionController.ql b/ruby/ql/test/library-tests/frameworks/action_controller/ActionController.ql
similarity index 100%
rename from ruby/ql/test/library-tests/frameworks/ActionController.ql
rename to ruby/ql/test/library-tests/frameworks/action_controller/ActionController.ql
diff --git a/ruby/ql/test/library-tests/frameworks/action_controller/controllers/comments_controller.rb b/ruby/ql/test/library-tests/frameworks/action_controller/controllers/comments_controller.rb
new file mode 100644
index 00000000000..57fac7797bd
--- /dev/null
+++ b/ruby/ql/test/library-tests/frameworks/action_controller/controllers/comments_controller.rb
@@ -0,0 +1,40 @@
+class CommentsController < ApplicationController
+  def index
+    request.params
+    request.parameters
+    request.GET
+    request.POST
+    request.query_parameters
+    request.request_parameters
+    request.filtered_parameters
+
+    response.body = "some content"
+
+    response.status = 200
+
+    response.header["Content-Type"] = "text/html"
+    response.set_header("Content-Length", 100)
+    response.headers["X-Custom-Header"] = "hi"
+    response["X-Another-Custom-Header"] = "yes"
+    response.add_header "X-Yet-Another", "indeed"
+
+    response.send_file("my-file.ext")
+
+    response.request
+
+    response.location = "http://..." # relevant for url redirect query
+    response.cache_control = "value"
+    response._cache_control = "value"
+    response.etag = "value"
+    response.charset = "value" # sets the charset part of the content-type header
+    response.content_type = "value" # sets the main part of the content-type header
+
+    response.date = Date.today
+    response.last_modified = Date.yesterday
+    response.weak_etag = "value"
+    response.strong_etag = "value"
+  end
+
+  def show
+  end
+end
diff --git a/ruby/ql/test/library-tests/frameworks/action_controller/controllers/foo/bars_controller.rb b/ruby/ql/test/library-tests/frameworks/action_controller/controllers/foo/bars_controller.rb
new file mode 100644
index 00000000000..9778b8d5bcc
--- /dev/null
+++ b/ruby/ql/test/library-tests/frameworks/action_controller/controllers/foo/bars_controller.rb
@@ -0,0 +1,46 @@
+require 'json'
+
+class BarsController < ApplicationController
+
+  def index
+    render template: "foo/bars/index"
+  end
+
+  def show_debug
+    user_info = JSON.load cookies[:user_info]
+    puts "User: #{user_info['name']}"
+
+    @user_website = params[:website]
+    dt = params[:text]
+    rendered = render_to_string "foo/bars/show", locals: { display_text: dt, safe_text: "hello" }
+    puts rendered
+    redirect_to action: "show"
+  end
+
+  def show
+    @user_website = params[:website]
+    dt = params[:text]
+    render "foo/bars/show", locals: { display_text: dt, safe_text: "hello" }
+  end
+  
+  def go_back
+    redirect_back_or_to action: "index"
+  end
+
+  def go_back_2
+    redirect_back fallback_location: { action: "index" }
+  end
+
+  def show_2
+    render json: { some: "data" }
+    body = render_to_string @user, content_type: "application/json"
+  rescue => e
+    render e.backtrace, content_type: "text/plain"
+  end
+
+  private
+
+  def unreachable_action
+    render "show"
+  end
+end
diff --git a/ruby/ql/test/library-tests/frameworks/action_controller/controllers/photos_controller.rb b/ruby/ql/test/library-tests/frameworks/action_controller/controllers/photos_controller.rb
new file mode 100644
index 00000000000..0de193b9029
--- /dev/null
+++ b/ruby/ql/test/library-tests/frameworks/action_controller/controllers/photos_controller.rb
@@ -0,0 +1,4 @@
+class PhotosController < ApplicationController
+  def show
+  end
+end
\ No newline at end of file
diff --git a/ruby/ql/test/library-tests/frameworks/action_controller/controllers/posts_controller.rb b/ruby/ql/test/library-tests/frameworks/action_controller/controllers/posts_controller.rb
new file mode 100644
index 00000000000..9760219cdf2
--- /dev/null
+++ b/ruby/ql/test/library-tests/frameworks/action_controller/controllers/posts_controller.rb
@@ -0,0 +1,10 @@
+class PostsController < ApplicationController
+  def index
+  end
+
+  def show
+  end
+  
+  def upvote
+  end
+end
\ No newline at end of file
diff --git a/ruby/ql/test/library-tests/frameworks/action_controller/controllers/tags_controller.rb b/ruby/ql/test/library-tests/frameworks/action_controller/controllers/tags_controller.rb
new file mode 100644
index 00000000000..ba10ea8ea2e
--- /dev/null
+++ b/ruby/ql/test/library-tests/frameworks/action_controller/controllers/tags_controller.rb
@@ -0,0 +1,2 @@
+class TagsController < ActionController::Metal
+end
diff --git a/ruby/ql/test/library-tests/frameworks/action_controller/controllers/users/notifications_controller.rb b/ruby/ql/test/library-tests/frameworks/action_controller/controllers/users/notifications_controller.rb
new file mode 100644
index 00000000000..c5ff9cd3f5f
--- /dev/null
+++ b/ruby/ql/test/library-tests/frameworks/action_controller/controllers/users/notifications_controller.rb
@@ -0,0 +1,6 @@
+module Users
+  class NotificationsController < ApplicationController
+    def mark_as_read
+    end
+  end
+end
\ No newline at end of file

From b7e14311be2c8973fb59edecc5d602afb1c3ce05 Mon Sep 17 00:00:00 2001
From: Harry Maclean <hmac@github.com>
Date: Tue, 1 Nov 2022 12:37:30 +1300
Subject: [PATCH 0330/1420] Ruby: Model ActionController logger

---
 .../ruby/frameworks/ActionController.qll      | 27 +++++++++++++++++++
 .../ActionController.expected                 |  8 ++++++
 .../action_controller/ActionController.ql     |  2 ++
 .../frameworks/action_controller/logging.rb   |  9 +++++++
 4 files changed, 46 insertions(+)
 create mode 100644 ruby/ql/test/library-tests/frameworks/action_controller/logging.rb

diff --git a/ruby/ql/lib/codeql/ruby/frameworks/ActionController.qll b/ruby/ql/lib/codeql/ruby/frameworks/ActionController.qll
index 7b6db787732..77321d3fa32 100644
--- a/ruby/ql/lib/codeql/ruby/frameworks/ActionController.qll
+++ b/ruby/ql/lib/codeql/ruby/frameworks/ActionController.qll
@@ -12,6 +12,7 @@ private import codeql.ruby.frameworks.ActionDispatch
 private import codeql.ruby.frameworks.ActionView
 private import codeql.ruby.frameworks.Rails
 private import codeql.ruby.frameworks.internal.Rails
+private import codeql.ruby.dataflow.internal.DataFlowDispatch
 
 /**
  * DEPRECATED: Import `codeql.ruby.frameworks.Rails` and use `Rails::ParamsCall` instead.
@@ -733,3 +734,29 @@ private module Response {
     override DataFlow::Node getValue() { result = this.getArgument(0) }
   }
 }
+
+private class ActionControllerLoggerInstance extends DataFlow::Node {
+  ActionControllerLoggerInstance() {
+    this.asExpr().getExpr() instanceof ActionControllerContextCall and
+    this.(DataFlow::CallNode).getMethodName() = "logger"
+    or
+    any(ActionControllerLoggerInstance i).(DataFlow::LocalSourceNode).flowsTo(this)
+  }
+}
+
+private class ActionControllerLoggingCall extends DataFlow::CallNode, Logging::Range {
+  ActionControllerLoggingCall() {
+    this.getReceiver() instanceof ActionControllerLoggerInstance and
+    this.getMethodName() = ["debug", "error", "fatal", "info", "unknown", "warn"]
+  }
+
+  // Note: this is identical to the definition `stdlib.Logger.LoggerInfoStyleCall`.
+  override DataFlow::Node getAnInput() {
+    // `msg` from `Logger#info(msg)`,
+    // or `progname` from `Logger#info(progname) <block>`
+    result = this.getArgument(0)
+    or
+    // a return value from the block in `Logger#info(progname) <block>`
+    exprNodeReturnedFrom(result, this.getBlock().asExpr().getExpr())
+  }
+}
diff --git a/ruby/ql/test/library-tests/frameworks/action_controller/ActionController.expected b/ruby/ql/test/library-tests/frameworks/action_controller/ActionController.expected
index e390c376a60..14283543aab 100644
--- a/ruby/ql/test/library-tests/frameworks/action_controller/ActionController.expected
+++ b/ruby/ql/test/library-tests/frameworks/action_controller/ActionController.expected
@@ -6,6 +6,7 @@ actionControllerControllerClasses
 | controllers/tags_controller.rb:1:1:2:3 | TagsController |
 | controllers/users/notifications_controller.rb:2:3:5:5 | NotificationsController |
 | input_access.rb:1:1:50:3 | UsersController |
+| logging.rb:1:1:9:3 | UsersController |
 | params_flow.rb:1:1:151:3 | MyController |
 actionControllerActionMethods
 | controllers/comments_controller.rb:2:3:36:5 | index |
@@ -22,6 +23,7 @@ actionControllerActionMethods
 | controllers/posts_controller.rb:8:3:9:5 | upvote |
 | controllers/users/notifications_controller.rb:3:5:4:7 | mark_as_read |
 | input_access.rb:2:3:49:5 | index |
+| logging.rb:2:5:8:7 | index |
 | params_flow.rb:2:3:4:5 | m1 |
 | params_flow.rb:6:3:8:5 | m2 |
 | params_flow.rb:10:3:12:5 | m2 |
@@ -201,6 +203,7 @@ httpInputAccesses
 | input_access.rb:43:5:43:20 | call to raw_post | ActionDispatch::Request#raw_post |
 | input_access.rb:45:5:45:30 | ...[...] | ActionDispatch::Request#env[] |
 | input_access.rb:47:5:47:39 | ...[...] | ActionDispatch::Request#env[] |
+| logging.rb:5:22:5:35 | call to params | ActionDispatch::Request#params |
 | params_flow.rb:3:10:3:15 | call to params | ActionController::Metal#params |
 | params_flow.rb:7:10:7:15 | call to params | ActionController::Metal#params |
 | params_flow.rb:11:10:11:15 | call to params | ActionController::Metal#params |
@@ -270,3 +273,8 @@ headerWriteAccesses
 | controllers/comments_controller.rb:33:5:33:26 | call to last_modified= | last-modified | controllers/comments_controller.rb:33:30:33:43 | ... = ... |
 | controllers/comments_controller.rb:34:5:34:22 | call to weak_etag= | etag | controllers/comments_controller.rb:34:26:34:32 | ... = ... |
 | controllers/comments_controller.rb:35:5:35:24 | call to strong_etag= | etag | controllers/comments_controller.rb:35:28:35:34 | ... = ... |
+loggingCalls
+| logging.rb:3:9:3:31 | call to info | logging.rb:3:21:3:31 | "some info" |
+| logging.rb:4:9:4:31 | call to warn | logging.rb:4:21:4:31 | "a warning" |
+| logging.rb:5:9:5:35 | call to debug | logging.rb:5:22:5:35 | call to params |
+| logging.rb:7:9:7:26 | call to info | logging.rb:7:16:7:26 | "more info" |
diff --git a/ruby/ql/test/library-tests/frameworks/action_controller/ActionController.ql b/ruby/ql/test/library-tests/frameworks/action_controller/ActionController.ql
index 406c95d3194..9f1aaace14d 100644
--- a/ruby/ql/test/library-tests/frameworks/action_controller/ActionController.ql
+++ b/ruby/ql/test/library-tests/frameworks/action_controller/ActionController.ql
@@ -38,3 +38,5 @@ query predicate headerWriteAccesses(
 ) {
   name = a.getName() and value = a.getValue()
 }
+
+query predicate loggingCalls(Logging c, DataFlow::Node input) { input = c.getAnInput() }
diff --git a/ruby/ql/test/library-tests/frameworks/action_controller/logging.rb b/ruby/ql/test/library-tests/frameworks/action_controller/logging.rb
new file mode 100644
index 00000000000..7d3636e408c
--- /dev/null
+++ b/ruby/ql/test/library-tests/frameworks/action_controller/logging.rb
@@ -0,0 +1,9 @@
+class UsersController < ActionController::Base
+    def index
+        logger.info "some info"
+        logger.warn "a warning"
+        logger.debug request.params
+        l = logger
+        l.info "more info"
+    end
+end

From 155b64d3fcb728ed5d2bcc5945f5072697faecc3 Mon Sep 17 00:00:00 2001
From: Harry Maclean <hmac@github.com>
Date: Tue, 1 Nov 2022 12:49:18 +1300
Subject: [PATCH 0331/1420] Ruby: Add test for render calls

---
 .../frameworks/action_controller/ActionController.expected  | 6 ++++++
 .../frameworks/action_controller/ActionController.ql        | 2 ++
 2 files changed, 8 insertions(+)

diff --git a/ruby/ql/test/library-tests/frameworks/action_controller/ActionController.expected b/ruby/ql/test/library-tests/frameworks/action_controller/ActionController.expected
index 14283543aab..f8021520f5f 100644
--- a/ruby/ql/test/library-tests/frameworks/action_controller/ActionController.expected
+++ b/ruby/ql/test/library-tests/frameworks/action_controller/ActionController.expected
@@ -254,6 +254,12 @@ redirectToCalls
 | controllers/foo/bars_controller.rb:17:5:17:30 | call to redirect_to |
 | controllers/foo/bars_controller.rb:27:5:27:39 | call to redirect_back_or_to |
 | controllers/foo/bars_controller.rb:31:5:31:56 | call to redirect_back |
+renderCalls
+| controllers/foo/bars_controller.rb:6:5:6:37 | call to render |
+| controllers/foo/bars_controller.rb:23:5:23:76 | call to render |
+| controllers/foo/bars_controller.rb:35:5:35:33 | call to render |
+| controllers/foo/bars_controller.rb:38:5:38:50 | call to render |
+| controllers/foo/bars_controller.rb:44:5:44:17 | call to render |
 actionControllerHelperMethods
 getAssociatedControllerClasses
 controllerTemplateFiles
diff --git a/ruby/ql/test/library-tests/frameworks/action_controller/ActionController.ql b/ruby/ql/test/library-tests/frameworks/action_controller/ActionController.ql
index 9f1aaace14d..b451d4fdbbb 100644
--- a/ruby/ql/test/library-tests/frameworks/action_controller/ActionController.ql
+++ b/ruby/ql/test/library-tests/frameworks/action_controller/ActionController.ql
@@ -23,6 +23,8 @@ query predicate cookiesSources(CookiesSource src) { any() }
 
 query predicate redirectToCalls(RedirectToCall c) { any() }
 
+query predicate renderCalls(Rails::RenderCall c) { any() }
+
 query predicate actionControllerHelperMethods(ActionControllerHelperMethod m) { any() }
 
 query predicate getAssociatedControllerClasses(ActionControllerClass cls, ErbFile f) {

From 5cfc494e16aafb5a3fe7bd04883d7a1d322fe07c Mon Sep 17 00:00:00 2001
From: Harry Maclean <hmac@github.com>
Date: Tue, 1 Nov 2022 12:51:50 +1300
Subject: [PATCH 0332/1420] Ruby: Test render inside redirect_to

This test shows that we correctly identify redirect_to and render calls
inside respond_to blocks.
---
 .../frameworks/action_controller/ActionController.expected  | 6 ++++--
 .../action_controller/controllers/comments_controller.rb    | 5 +++++
 2 files changed, 9 insertions(+), 2 deletions(-)

diff --git a/ruby/ql/test/library-tests/frameworks/action_controller/ActionController.expected b/ruby/ql/test/library-tests/frameworks/action_controller/ActionController.expected
index f8021520f5f..af40c67d7cc 100644
--- a/ruby/ql/test/library-tests/frameworks/action_controller/ActionController.expected
+++ b/ruby/ql/test/library-tests/frameworks/action_controller/ActionController.expected
@@ -1,5 +1,5 @@
 actionControllerControllerClasses
-| controllers/comments_controller.rb:1:1:40:3 | CommentsController |
+| controllers/comments_controller.rb:1:1:45:3 | CommentsController |
 | controllers/foo/bars_controller.rb:3:1:46:3 | BarsController |
 | controllers/photos_controller.rb:1:1:4:3 | PhotosController |
 | controllers/posts_controller.rb:1:1:10:3 | PostsController |
@@ -10,7 +10,7 @@ actionControllerControllerClasses
 | params_flow.rb:1:1:151:3 | MyController |
 actionControllerActionMethods
 | controllers/comments_controller.rb:2:3:36:5 | index |
-| controllers/comments_controller.rb:38:3:39:5 | show |
+| controllers/comments_controller.rb:38:3:44:5 | show |
 | controllers/foo/bars_controller.rb:5:3:7:5 | index |
 | controllers/foo/bars_controller.rb:9:3:18:5 | show_debug |
 | controllers/foo/bars_controller.rb:20:3:24:5 | show |
@@ -251,10 +251,12 @@ cookiesCalls
 cookiesSources
 | controllers/foo/bars_controller.rb:10:27:10:33 | call to cookies |
 redirectToCalls
+| controllers/comments_controller.rb:40:21:40:49 | call to redirect_to |
 | controllers/foo/bars_controller.rb:17:5:17:30 | call to redirect_to |
 | controllers/foo/bars_controller.rb:27:5:27:39 | call to redirect_back_or_to |
 | controllers/foo/bars_controller.rb:31:5:31:56 | call to redirect_back |
 renderCalls
+| controllers/comments_controller.rb:42:21:42:64 | call to render |
 | controllers/foo/bars_controller.rb:6:5:6:37 | call to render |
 | controllers/foo/bars_controller.rb:23:5:23:76 | call to render |
 | controllers/foo/bars_controller.rb:35:5:35:33 | call to render |
diff --git a/ruby/ql/test/library-tests/frameworks/action_controller/controllers/comments_controller.rb b/ruby/ql/test/library-tests/frameworks/action_controller/controllers/comments_controller.rb
index 57fac7797bd..c2e32706c1a 100644
--- a/ruby/ql/test/library-tests/frameworks/action_controller/controllers/comments_controller.rb
+++ b/ruby/ql/test/library-tests/frameworks/action_controller/controllers/comments_controller.rb
@@ -36,5 +36,10 @@ class CommentsController < ApplicationController
   end
 
   def show
+    respond_to do |format|
+      format.html { redirect_to(comment_view_url) }
+      format.json
+      format.xml  { render xml: @comment.to_xml(include: @photo) }
+    end
   end
 end

From 9f357837faad3707ed45a4f3d554baa79a66b8c2 Mon Sep 17 00:00:00 2001
From: Harry Maclean <hmac@github.com>
Date: Tue, 1 Nov 2022 13:13:12 +1300
Subject: [PATCH 0333/1420] Ruby: Model send_data as an HTTP response

---
 .../ruby/frameworks/ActionController.qll      | 28 ++++++++++++++++++-
 .../ActionController.expected                 | 13 ++++++++-
 .../action_controller/ActionController.ql     |  4 +++
 .../controllers/comments_controller.rb        |  4 +++
 4 files changed, 47 insertions(+), 2 deletions(-)

diff --git a/ruby/ql/lib/codeql/ruby/frameworks/ActionController.qll b/ruby/ql/lib/codeql/ruby/frameworks/ActionController.qll
index 77321d3fa32..e55a1673cb2 100644
--- a/ruby/ql/lib/codeql/ruby/frameworks/ActionController.qll
+++ b/ruby/ql/lib/codeql/ruby/frameworks/ActionController.qll
@@ -539,12 +539,38 @@ private class ActionControllerProtectFromForgeryCall extends CsrfProtectionSetti
 /**
  * A call to `send_file`, which sends the file at the given path to the client.
  */
-private class SendFile extends FileSystemAccess::Range, DataFlow::CallNode {
+private class SendFile extends FileSystemAccess::Range, Http::Server::HttpResponse::Range,
+  DataFlow::CallNode {
   SendFile() {
     this = [actionControllerInstance(), Response::response()].getAMethodCall("send_file")
   }
 
   override DataFlow::Node getAPathArgument() { result = this.getArgument(0) }
+
+  override DataFlow::Node getBody() { result = this.getArgument(0) }
+
+  override DataFlow::Node getMimetypeOrContentTypeArg() { none() }
+
+  override string getMimetypeDefault() { result = "application/octet-stream" }
+}
+
+/**
+ * A call to `send_data`, which sends the given data to the client.
+ */
+class SendDataCall extends DataFlow::CallNode, Http::Server::HttpResponse::Range {
+  SendDataCall() {
+    this.getMethodName() = "send_data" and
+    (
+      this.asExpr().getExpr() instanceof ActionControllerContextCall or
+      this.getReceiver().asExpr().getExpr() instanceof Response::ResponseCall
+    )
+  }
+
+  override DataFlow::Node getBody() { result = this.getArgument(0) }
+
+  override DataFlow::Node getMimetypeOrContentTypeArg() { none() }
+
+  override string getMimetypeDefault() { result = "application/octet-stream" }
 }
 
 private module ParamsSummaries {
diff --git a/ruby/ql/test/library-tests/frameworks/action_controller/ActionController.expected b/ruby/ql/test/library-tests/frameworks/action_controller/ActionController.expected
index af40c67d7cc..6d9baed55df 100644
--- a/ruby/ql/test/library-tests/frameworks/action_controller/ActionController.expected
+++ b/ruby/ql/test/library-tests/frameworks/action_controller/ActionController.expected
@@ -1,5 +1,5 @@
 actionControllerControllerClasses
-| controllers/comments_controller.rb:1:1:45:3 | CommentsController |
+| controllers/comments_controller.rb:1:1:49:3 | CommentsController |
 | controllers/foo/bars_controller.rb:3:1:46:3 | BarsController |
 | controllers/photos_controller.rb:1:1:4:3 | PhotosController |
 | controllers/posts_controller.rb:1:1:10:3 | PostsController |
@@ -11,6 +11,7 @@ actionControllerControllerClasses
 actionControllerActionMethods
 | controllers/comments_controller.rb:2:3:36:5 | index |
 | controllers/comments_controller.rb:38:3:44:5 | show |
+| controllers/comments_controller.rb:46:3:48:5 | photo |
 | controllers/foo/bars_controller.rb:5:3:7:5 | index |
 | controllers/foo/bars_controller.rb:9:3:18:5 | show_debug |
 | controllers/foo/bars_controller.rb:20:3:24:5 | show |
@@ -262,6 +263,16 @@ renderCalls
 | controllers/foo/bars_controller.rb:35:5:35:33 | call to render |
 | controllers/foo/bars_controller.rb:38:5:38:50 | call to render |
 | controllers/foo/bars_controller.rb:44:5:44:17 | call to render |
+httpResponses
+| controllers/comments_controller.rb:11:5:11:17 | call to body= | controllers/comments_controller.rb:11:21:11:34 | ... = ... |
+| controllers/comments_controller.rb:21:5:21:37 | call to send_file | controllers/comments_controller.rb:21:24:21:36 | "my-file.ext" |
+| controllers/comments_controller.rb:47:5:47:20 | call to send_data | controllers/comments_controller.rb:47:15:47:20 | @photo |
+| controllers/foo/bars_controller.rb:15:16:15:97 | call to render_to_string | controllers/foo/bars_controller.rb:15:33:15:47 | "foo/bars/show" |
+| controllers/foo/bars_controller.rb:23:5:23:76 | call to render | controllers/foo/bars_controller.rb:23:12:23:26 | "foo/bars/show" |
+| controllers/foo/bars_controller.rb:35:5:35:33 | call to render | controllers/foo/bars_controller.rb:35:18:35:33 | call to [] |
+| controllers/foo/bars_controller.rb:36:12:36:67 | call to render_to_string | controllers/foo/bars_controller.rb:36:29:36:33 | @user |
+| controllers/foo/bars_controller.rb:38:5:38:50 | call to render | controllers/foo/bars_controller.rb:38:12:38:22 | call to backtrace |
+| controllers/foo/bars_controller.rb:44:5:44:17 | call to render | controllers/foo/bars_controller.rb:44:12:44:17 | "show" |
 actionControllerHelperMethods
 getAssociatedControllerClasses
 controllerTemplateFiles
diff --git a/ruby/ql/test/library-tests/frameworks/action_controller/ActionController.ql b/ruby/ql/test/library-tests/frameworks/action_controller/ActionController.ql
index b451d4fdbbb..bf72cbd3271 100644
--- a/ruby/ql/test/library-tests/frameworks/action_controller/ActionController.ql
+++ b/ruby/ql/test/library-tests/frameworks/action_controller/ActionController.ql
@@ -25,6 +25,10 @@ query predicate redirectToCalls(RedirectToCall c) { any() }
 
 query predicate renderCalls(Rails::RenderCall c) { any() }
 
+query predicate httpResponses(Http::Server::HttpResponse r, DataFlow::Node body) {
+  body = r.getBody()
+}
+
 query predicate actionControllerHelperMethods(ActionControllerHelperMethod m) { any() }
 
 query predicate getAssociatedControllerClasses(ActionControllerClass cls, ErbFile f) {
diff --git a/ruby/ql/test/library-tests/frameworks/action_controller/controllers/comments_controller.rb b/ruby/ql/test/library-tests/frameworks/action_controller/controllers/comments_controller.rb
index c2e32706c1a..189b556995a 100644
--- a/ruby/ql/test/library-tests/frameworks/action_controller/controllers/comments_controller.rb
+++ b/ruby/ql/test/library-tests/frameworks/action_controller/controllers/comments_controller.rb
@@ -42,4 +42,8 @@ class CommentsController < ApplicationController
       format.xml  { render xml: @comment.to_xml(include: @photo) }
     end
   end
+
+  def photo
+    send_data @photo
+  end
 end

From d2c0250b41662246cdaff04a56c12d5dd5c0d291 Mon Sep 17 00:00:00 2001
From: Harry Maclean <hmac@github.com>
Date: Tue, 1 Nov 2022 14:13:33 +1300
Subject: [PATCH 0334/1420] Ruby: Model ActionDispatch::Request#body_stream

---
 ruby/ql/lib/codeql/ruby/frameworks/ActionController.qll       | 2 +-
 .../frameworks/action_controller/ActionController.expected    | 4 +++-
 .../action_controller/controllers/comments_controller.rb      | 4 ++++
 3 files changed, 8 insertions(+), 2 deletions(-)

diff --git a/ruby/ql/lib/codeql/ruby/frameworks/ActionController.qll b/ruby/ql/lib/codeql/ruby/frameworks/ActionController.qll
index e55a1673cb2..e1d0828b8af 100644
--- a/ruby/ql/lib/codeql/ruby/frameworks/ActionController.qll
+++ b/ruby/ql/lib/codeql/ruby/frameworks/ActionController.qll
@@ -296,7 +296,7 @@ private module Request {
 
   /** A method call on `request` which returns the request body. */
   private class BodyCall extends RequestInputAccess {
-    BodyCall() { this.getMethodName() = ["body", "raw_post"] }
+    BodyCall() { this.getMethodName() = ["body", "raw_post", "body_stream"] }
 
     override Http::Server::RequestInputKind getKind() { result = Http::Server::bodyInputKind() }
   }
diff --git a/ruby/ql/test/library-tests/frameworks/action_controller/ActionController.expected b/ruby/ql/test/library-tests/frameworks/action_controller/ActionController.expected
index 6d9baed55df..81acd71f8fe 100644
--- a/ruby/ql/test/library-tests/frameworks/action_controller/ActionController.expected
+++ b/ruby/ql/test/library-tests/frameworks/action_controller/ActionController.expected
@@ -1,5 +1,5 @@
 actionControllerControllerClasses
-| controllers/comments_controller.rb:1:1:49:3 | CommentsController |
+| controllers/comments_controller.rb:1:1:53:3 | CommentsController |
 | controllers/foo/bars_controller.rb:3:1:46:3 | BarsController |
 | controllers/photos_controller.rb:1:1:4:3 | PhotosController |
 | controllers/posts_controller.rb:1:1:10:3 | PostsController |
@@ -12,6 +12,7 @@ actionControllerActionMethods
 | controllers/comments_controller.rb:2:3:36:5 | index |
 | controllers/comments_controller.rb:38:3:44:5 | show |
 | controllers/comments_controller.rb:46:3:48:5 | photo |
+| controllers/comments_controller.rb:50:3:52:5 | destroy |
 | controllers/foo/bars_controller.rb:5:3:7:5 | index |
 | controllers/foo/bars_controller.rb:9:3:18:5 | show_debug |
 | controllers/foo/bars_controller.rb:20:3:24:5 | show |
@@ -160,6 +161,7 @@ httpInputAccesses
 | controllers/comments_controller.rb:7:5:7:28 | call to query_parameters | ActionDispatch::Request#query_parameters |
 | controllers/comments_controller.rb:8:5:8:30 | call to request_parameters | ActionDispatch::Request#request_parameters |
 | controllers/comments_controller.rb:9:5:9:31 | call to filtered_parameters | ActionDispatch::Request#filtered_parameters |
+| controllers/comments_controller.rb:51:12:51:30 | call to body_stream | ActionDispatch::Request#body_stream |
 | controllers/foo/bars_controller.rb:10:27:10:33 | call to cookies | ActionController::Metal#cookies |
 | controllers/foo/bars_controller.rb:13:21:13:26 | call to params | ActionController::Metal#params |
 | controllers/foo/bars_controller.rb:14:10:14:15 | call to params | ActionController::Metal#params |
diff --git a/ruby/ql/test/library-tests/frameworks/action_controller/controllers/comments_controller.rb b/ruby/ql/test/library-tests/frameworks/action_controller/controllers/comments_controller.rb
index 189b556995a..daa96090b09 100644
--- a/ruby/ql/test/library-tests/frameworks/action_controller/controllers/comments_controller.rb
+++ b/ruby/ql/test/library-tests/frameworks/action_controller/controllers/comments_controller.rb
@@ -46,4 +46,8 @@ class CommentsController < ApplicationController
   def photo
     send_data @photo
   end
+
+  def destroy
+    body = request.body_stream
+  end
 end

From d0521f15f1398b6ce9a6e1fd52859a63d9511d3e Mon Sep 17 00:00:00 2001
From: Harry Maclean <hmac@github.com>
Date: Tue, 1 Nov 2022 14:25:13 +1300
Subject: [PATCH 0335/1420] Ruby: Update tests

---
 .../frameworks/ActionDispatch.expected          | 11 +++++++++++
 .../frameworks/ActionView.expected              | 17 +++++++++++++++++
 2 files changed, 28 insertions(+)

diff --git a/ruby/ql/test/library-tests/frameworks/ActionDispatch.expected b/ruby/ql/test/library-tests/frameworks/ActionDispatch.expected
index b3499beda45..849ed702151 100644
--- a/ruby/ql/test/library-tests/frameworks/ActionDispatch.expected
+++ b/ruby/ql/test/library-tests/frameworks/ActionDispatch.expected
@@ -34,15 +34,26 @@ actionDispatchRoutes
 | app/config/routes.rb:49:5:49:95 | call to delete | delete | users/:user/notifications | users/notifications | destroy |
 | app/config/routes.rb:50:5:50:94 | call to post | post | users/:user/notifications/:notification_id/mark_as_read | users/notifications | mark_as_read |
 actionDispatchControllerMethods
+| app/config/routes.rb:2:3:8:5 | call to resources | action_controller/controllers/posts_controller.rb:2:3:3:5 | index |
+| app/config/routes.rb:2:3:8:5 | call to resources | action_controller/controllers/posts_controller.rb:5:3:6:5 | show |
 | app/config/routes.rb:2:3:8:5 | call to resources | app/controllers/posts_controller.rb:2:3:3:5 | index |
 | app/config/routes.rb:2:3:8:5 | call to resources | app/controllers/posts_controller.rb:5:3:6:5 | show |
+| app/config/routes.rb:3:5:6:7 | call to resources | action_controller/controllers/comments_controller.rb:2:3:36:5 | index |
+| app/config/routes.rb:3:5:6:7 | call to resources | action_controller/controllers/comments_controller.rb:38:3:44:5 | show |
+| app/config/routes.rb:3:5:6:7 | call to resources | action_controller/controllers/comments_controller.rb:50:3:52:5 | destroy |
 | app/config/routes.rb:3:5:6:7 | call to resources | app/controllers/comments_controller.rb:2:3:36:5 | index |
 | app/config/routes.rb:3:5:6:7 | call to resources | app/controllers/comments_controller.rb:38:3:39:5 | show |
+| app/config/routes.rb:7:5:7:37 | call to post | action_controller/controllers/posts_controller.rb:8:3:9:5 | upvote |
 | app/config/routes.rb:7:5:7:37 | call to post | app/controllers/posts_controller.rb:8:3:9:5 | upvote |
+| app/config/routes.rb:27:3:27:48 | call to match | action_controller/controllers/photos_controller.rb:2:3:3:5 | show |
 | app/config/routes.rb:27:3:27:48 | call to match | app/controllers/photos_controller.rb:2:3:3:5 | show |
+| app/config/routes.rb:28:3:28:50 | call to match | action_controller/controllers/photos_controller.rb:2:3:3:5 | show |
 | app/config/routes.rb:28:3:28:50 | call to match | app/controllers/photos_controller.rb:2:3:3:5 | show |
+| app/config/routes.rb:29:3:29:69 | call to match | action_controller/controllers/photos_controller.rb:2:3:3:5 | show |
 | app/config/routes.rb:29:3:29:69 | call to match | app/controllers/photos_controller.rb:2:3:3:5 | show |
+| app/config/routes.rb:30:3:30:50 | call to match | action_controller/controllers/photos_controller.rb:2:3:3:5 | show |
 | app/config/routes.rb:30:3:30:50 | call to match | app/controllers/photos_controller.rb:2:3:3:5 | show |
+| app/config/routes.rb:50:5:50:94 | call to post | action_controller/controllers/users/notifications_controller.rb:3:5:4:7 | mark_as_read |
 | app/config/routes.rb:50:5:50:94 | call to post | app/controllers/users/notifications_controller.rb:3:5:4:7 | mark_as_read |
 underscore
 | Foo | foo |
diff --git a/ruby/ql/test/library-tests/frameworks/ActionView.expected b/ruby/ql/test/library-tests/frameworks/ActionView.expected
index 5a1abf0a37e..1ad020a2394 100644
--- a/ruby/ql/test/library-tests/frameworks/ActionView.expected
+++ b/ruby/ql/test/library-tests/frameworks/ActionView.expected
@@ -9,6 +9,12 @@ rawCalls
 | app/views/foo/bars/show.html.erb:5:5:5:21 | call to raw |
 | app/views/foo/bars/show.html.erb:7:5:7:19 | call to raw |
 renderCalls
+| action_controller/controllers/comments_controller.rb:42:21:42:64 | call to render |
+| action_controller/controllers/foo/bars_controller.rb:6:5:6:37 | call to render |
+| action_controller/controllers/foo/bars_controller.rb:23:5:23:76 | call to render |
+| action_controller/controllers/foo/bars_controller.rb:35:5:35:33 | call to render |
+| action_controller/controllers/foo/bars_controller.rb:38:5:38:50 | call to render |
+| action_controller/controllers/foo/bars_controller.rb:44:5:44:17 | call to render |
 | app/controllers/foo/bars_controller.rb:6:5:6:37 | call to render |
 | app/controllers/foo/bars_controller.rb:23:5:23:76 | call to render |
 | app/controllers/foo/bars_controller.rb:35:5:35:33 | call to render |
@@ -16,11 +22,22 @@ renderCalls
 | app/controllers/foo/bars_controller.rb:44:5:44:17 | call to render |
 | app/views/foo/bars/show.html.erb:31:5:31:89 | call to render |
 renderToCalls
+| action_controller/controllers/foo/bars_controller.rb:15:16:15:97 | call to render_to_string |
+| action_controller/controllers/foo/bars_controller.rb:36:12:36:67 | call to render_to_string |
 | app/controllers/foo/bars_controller.rb:15:16:15:97 | call to render_to_string |
 | app/controllers/foo/bars_controller.rb:36:12:36:67 | call to render_to_string |
 linkToCalls
 | app/views/foo/bars/show.html.erb:33:5:33:41 | call to link_to |
 httpResponses
+| action_controller/controllers/comments_controller.rb:11:5:11:17 | call to body= | action_controller/controllers/comments_controller.rb:11:21:11:34 | ... = ... | text/http |
+| action_controller/controllers/comments_controller.rb:21:5:21:37 | call to send_file | action_controller/controllers/comments_controller.rb:21:24:21:36 | "my-file.ext" | application/octet-stream |
+| action_controller/controllers/comments_controller.rb:47:5:47:20 | call to send_data | action_controller/controllers/comments_controller.rb:47:15:47:20 | @photo | application/octet-stream |
+| action_controller/controllers/foo/bars_controller.rb:15:16:15:97 | call to render_to_string | action_controller/controllers/foo/bars_controller.rb:15:33:15:47 | "foo/bars/show" | text/html |
+| action_controller/controllers/foo/bars_controller.rb:23:5:23:76 | call to render | action_controller/controllers/foo/bars_controller.rb:23:12:23:26 | "foo/bars/show" | text/html |
+| action_controller/controllers/foo/bars_controller.rb:35:5:35:33 | call to render | action_controller/controllers/foo/bars_controller.rb:35:18:35:33 | call to [] | application/json |
+| action_controller/controllers/foo/bars_controller.rb:36:12:36:67 | call to render_to_string | action_controller/controllers/foo/bars_controller.rb:36:29:36:33 | @user | application/json |
+| action_controller/controllers/foo/bars_controller.rb:38:5:38:50 | call to render | action_controller/controllers/foo/bars_controller.rb:38:12:38:22 | call to backtrace | text/plain |
+| action_controller/controllers/foo/bars_controller.rb:44:5:44:17 | call to render | action_controller/controllers/foo/bars_controller.rb:44:12:44:17 | "show" | text/html |
 | app/controllers/comments_controller.rb:11:5:11:17 | call to body= | app/controllers/comments_controller.rb:11:21:11:34 | ... = ... | text/http |
 | app/controllers/comments_controller.rb:21:5:21:37 | call to send_file | app/controllers/comments_controller.rb:21:24:21:36 | "my-file.ext" | application/octet-stream |
 | app/controllers/foo/bars_controller.rb:15:16:15:97 | call to render_to_string | app/controllers/foo/bars_controller.rb:15:33:15:47 | "foo/bars/show" | text/html |

From 762ebad66ed47fddea44770bb2d2c13ee0d4667a Mon Sep 17 00:00:00 2001
From: Harry Maclean <hmac@github.com>
Date: Tue, 1 Nov 2022 14:58:08 +1300
Subject: [PATCH 0336/1420] Ruby: Add change note

---
 .../lib/change-notes/2022-11-01-actioncontroller-logger.md  | 6 ++++++
 1 file changed, 6 insertions(+)
 create mode 100644 ruby/ql/lib/change-notes/2022-11-01-actioncontroller-logger.md

diff --git a/ruby/ql/lib/change-notes/2022-11-01-actioncontroller-logger.md b/ruby/ql/lib/change-notes/2022-11-01-actioncontroller-logger.md
new file mode 100644
index 00000000000..367665ac61a
--- /dev/null
+++ b/ruby/ql/lib/change-notes/2022-11-01-actioncontroller-logger.md
@@ -0,0 +1,6 @@
+---
+category: minorAnalysis
+---
+* Calls to `logger` in `ActiveSupport` actions are now recognised as logger instances.
+* Calls to `send_data` in `ActiveSupport` actions are recognised as HTTP responses.
+* Calls to `body_stream` in `ActiveSupport` actions are recognised as HTTP request accesses.

From 2e2fcd49bf695d7647ec96683457b01d46e24680 Mon Sep 17 00:00:00 2001
From: Harry Maclean <hmac@github.com>
Date: Fri, 4 Nov 2022 10:52:29 +1300
Subject: [PATCH 0337/1420] Ruby: Consider Object#inspect a log sanitizer

The behaviour of `Object#inspect` depends on whether it has been
overridden by a subclass, but it will typically produce output on a
single line. Calling `inspect` on a String will replace newlines with
`\n`, which is then safe for interpolation into a log line.
---
 .../ql/lib/codeql/ruby/security/LogInjectionQuery.qll |  8 ++++++++
 .../security/cwe-117/LogInjection.expected            |  4 ++++
 .../cwe-117/app/controllers/users_controller.rb       | 11 +++++++++--
 3 files changed, 21 insertions(+), 2 deletions(-)

diff --git a/ruby/ql/lib/codeql/ruby/security/LogInjectionQuery.qll b/ruby/ql/lib/codeql/ruby/security/LogInjectionQuery.qll
index beb21d0e734..9c67132565a 100644
--- a/ruby/ql/lib/codeql/ruby/security/LogInjectionQuery.qll
+++ b/ruby/ql/lib/codeql/ruby/security/LogInjectionQuery.qll
@@ -60,6 +60,14 @@ class StringReplaceSanitizer extends Sanitizer {
   }
 }
 
+/**
+ * A call to `Object#inspect`, considered as a sanitizer.
+ * This is because `inspect` will replace newlines in strings with `\n`.
+ */
+class InspectSanitizer extends Sanitizer {
+  InspectSanitizer() { this.(DataFlow::CallNode).getMethodName() = "inspect" }
+}
+
 /**
  * A call to an HTML escape method is considered to sanitize its input.
  */
diff --git a/ruby/ql/test/query-tests/security/cwe-117/LogInjection.expected b/ruby/ql/test/query-tests/security/cwe-117/LogInjection.expected
index 2bfcbf85dcb..b0da6305e8a 100644
--- a/ruby/ql/test/query-tests/security/cwe-117/LogInjection.expected
+++ b/ruby/ql/test/query-tests/security/cwe-117/LogInjection.expected
@@ -11,6 +11,7 @@ edges
 | app/controllers/users_controller.rb:33:5:33:31 | ... = ... :  | app/controllers/users_controller.rb:35:33:35:55 | ... + ... |
 | app/controllers/users_controller.rb:33:19:33:25 | call to cookies :  | app/controllers/users_controller.rb:33:19:33:31 | ...[...] :  |
 | app/controllers/users_controller.rb:33:19:33:31 | ...[...] :  | app/controllers/users_controller.rb:33:5:33:31 | ... = ... :  |
+| app/controllers/users_controller.rb:49:19:49:24 | call to params :  | app/controllers/users_controller.rb:49:19:49:30 | ...[...] |
 nodes
 | app/controllers/users_controller.rb:15:19:15:24 | call to params :  | semmle.label | call to params :  |
 | app/controllers/users_controller.rb:15:19:15:30 | ...[...] :  | semmle.label | ...[...] :  |
@@ -26,6 +27,8 @@ nodes
 | app/controllers/users_controller.rb:33:19:33:31 | ...[...] :  | semmle.label | ...[...] :  |
 | app/controllers/users_controller.rb:34:33:34:43 | unsanitized | semmle.label | unsanitized |
 | app/controllers/users_controller.rb:35:33:35:55 | ... + ... | semmle.label | ... + ... |
+| app/controllers/users_controller.rb:49:19:49:24 | call to params :  | semmle.label | call to params :  |
+| app/controllers/users_controller.rb:49:19:49:30 | ...[...] | semmle.label | ...[...] |
 subpaths
 #select
 | app/controllers/users_controller.rb:16:19:16:29 | unsanitized | app/controllers/users_controller.rb:15:19:15:24 | call to params :  | app/controllers/users_controller.rb:16:19:16:29 | unsanitized | Log entry depends on a $@. | app/controllers/users_controller.rb:15:19:15:24 | call to params | user-provided value |
@@ -34,3 +37,4 @@ subpaths
 | app/controllers/users_controller.rb:27:16:27:39 | ... + ... | app/controllers/users_controller.rb:15:19:15:24 | call to params :  | app/controllers/users_controller.rb:27:16:27:39 | ... + ... | Log entry depends on a $@. | app/controllers/users_controller.rb:15:19:15:24 | call to params | user-provided value |
 | app/controllers/users_controller.rb:34:33:34:43 | unsanitized | app/controllers/users_controller.rb:33:19:33:25 | call to cookies :  | app/controllers/users_controller.rb:34:33:34:43 | unsanitized | Log entry depends on a $@. | app/controllers/users_controller.rb:33:19:33:25 | call to cookies | user-provided value |
 | app/controllers/users_controller.rb:35:33:35:55 | ... + ... | app/controllers/users_controller.rb:33:19:33:25 | call to cookies :  | app/controllers/users_controller.rb:35:33:35:55 | ... + ... | Log entry depends on a $@. | app/controllers/users_controller.rb:33:19:33:25 | call to cookies | user-provided value |
+| app/controllers/users_controller.rb:49:19:49:30 | ...[...] | app/controllers/users_controller.rb:49:19:49:24 | call to params :  | app/controllers/users_controller.rb:49:19:49:30 | ...[...] | Log entry depends on a $@. | app/controllers/users_controller.rb:49:19:49:24 | call to params | user-provided value |
diff --git a/ruby/ql/test/query-tests/security/cwe-117/app/controllers/users_controller.rb b/ruby/ql/test/query-tests/security/cwe-117/app/controllers/users_controller.rb
index 8c87659a221..67e0e1cb1a7 100644
--- a/ruby/ql/test/query-tests/security/cwe-117/app/controllers/users_controller.rb
+++ b/ruby/ql/test/query-tests/security/cwe-117/app/controllers/users_controller.rb
@@ -39,7 +39,14 @@ class UsersController < ApplicationController
     init_logger
 
     sanitized = html_escape params[:baz]
-    @logger.debug unsanitized             # GOOD: sanitized user input
-    @logger.debug "input: " + unsanitized # GOOD: sanitized user input
+    @logger.debug sanitized             # GOOD: sanitized user input
+    @logger.debug "input: " + sanitized # GOOD: sanitized user input
+  end
+
+  def inspect_sanitization
+    init_logger
+
+    @logger.debug params[:foo]         # BAD: unsanitized user input
+    @logger.debug params[:foo].inspect # GOOD: sanitized user input
   end
 end

From ed3270fb04420e9474d3eb3271397ef8b9d80220 Mon Sep 17 00:00:00 2001
From: Harry Maclean <hmac@github.com>
Date: Wed, 16 Nov 2022 14:06:32 +1300
Subject: [PATCH 0338/1420] Ruby: Update for upstream changes

---
 .../ruby/frameworks/ActionController.qll      |  9 ++-----
 .../ActionController.expected                 | 27 ++++++++++++++++---
 2 files changed, 26 insertions(+), 10 deletions(-)

diff --git a/ruby/ql/lib/codeql/ruby/frameworks/ActionController.qll b/ruby/ql/lib/codeql/ruby/frameworks/ActionController.qll
index e1d0828b8af..2f7841befb8 100644
--- a/ruby/ql/lib/codeql/ruby/frameworks/ActionController.qll
+++ b/ruby/ql/lib/codeql/ruby/frameworks/ActionController.qll
@@ -559,11 +559,7 @@ private class SendFile extends FileSystemAccess::Range, Http::Server::HttpRespon
  */
 class SendDataCall extends DataFlow::CallNode, Http::Server::HttpResponse::Range {
   SendDataCall() {
-    this.getMethodName() = "send_data" and
-    (
-      this.asExpr().getExpr() instanceof ActionControllerContextCall or
-      this.getReceiver().asExpr().getExpr() instanceof Response::ResponseCall
-    )
+    this = [actionControllerInstance(), Response::response()].getAMethodCall("send_data")
   }
 
   override DataFlow::Node getBody() { result = this.getArgument(0) }
@@ -763,8 +759,7 @@ private module Response {
 
 private class ActionControllerLoggerInstance extends DataFlow::Node {
   ActionControllerLoggerInstance() {
-    this.asExpr().getExpr() instanceof ActionControllerContextCall and
-    this.(DataFlow::CallNode).getMethodName() = "logger"
+    this = actionControllerInstance().getAMethodCall("logger")
     or
     any(ActionControllerLoggerInstance i).(DataFlow::LocalSourceNode).flowsTo(this)
   }
diff --git a/ruby/ql/test/library-tests/frameworks/action_controller/ActionController.expected b/ruby/ql/test/library-tests/frameworks/action_controller/ActionController.expected
index 81acd71f8fe..f4a21655355 100644
--- a/ruby/ql/test/library-tests/frameworks/action_controller/ActionController.expected
+++ b/ruby/ql/test/library-tests/frameworks/action_controller/ActionController.expected
@@ -4,10 +4,10 @@ actionControllerControllerClasses
 | controllers/photos_controller.rb:1:1:4:3 | PhotosController |
 | controllers/posts_controller.rb:1:1:10:3 | PostsController |
 | controllers/tags_controller.rb:1:1:2:3 | TagsController |
-| controllers/users/notifications_controller.rb:2:3:5:5 | NotificationsController |
+| controllers/users/notifications_controller.rb:2:3:5:5 | Users::NotificationsController |
 | input_access.rb:1:1:50:3 | UsersController |
-| logging.rb:1:1:9:3 | UsersController |
-| params_flow.rb:1:1:151:3 | MyController |
+| params_flow.rb:1:1:162:3 | MyController |
+| params_flow.rb:170:1:178:3 | Subclass |
 actionControllerActionMethods
 | controllers/comments_controller.rb:2:3:36:5 | index |
 | controllers/comments_controller.rb:38:3:44:5 | show |
@@ -59,6 +59,9 @@ actionControllerActionMethods
 | params_flow.rb:125:3:132:5 | m30 |
 | params_flow.rb:134:3:141:5 | m31 |
 | params_flow.rb:143:3:150:5 | m32 |
+| params_flow.rb:152:3:159:5 | m33 |
+| params_flow.rb:165:3:167:5 | m34 |
+| params_flow.rb:171:3:173:5 | m35 |
 paramsCalls
 | controllers/foo/bars_controller.rb:13:21:13:26 | call to params |
 | controllers/foo/bars_controller.rb:14:10:14:15 | call to params |
@@ -106,6 +109,12 @@ paramsCalls
 | params_flow.rb:144:10:144:15 | call to params |
 | params_flow.rb:145:32:145:37 | call to params |
 | params_flow.rb:148:22:148:27 | call to params |
+| params_flow.rb:153:10:153:15 | call to params |
+| params_flow.rb:154:32:154:37 | call to params |
+| params_flow.rb:157:22:157:27 | call to params |
+| params_flow.rb:166:10:166:15 | call to params |
+| params_flow.rb:172:10:172:15 | call to params |
+| params_flow.rb:176:10:176:15 | call to params |
 paramsSources
 | controllers/foo/bars_controller.rb:13:21:13:26 | call to params |
 | controllers/foo/bars_controller.rb:14:10:14:15 | call to params |
@@ -153,6 +162,12 @@ paramsSources
 | params_flow.rb:144:10:144:15 | call to params |
 | params_flow.rb:145:32:145:37 | call to params |
 | params_flow.rb:148:22:148:27 | call to params |
+| params_flow.rb:153:10:153:15 | call to params |
+| params_flow.rb:154:32:154:37 | call to params |
+| params_flow.rb:157:22:157:27 | call to params |
+| params_flow.rb:166:10:166:15 | call to params |
+| params_flow.rb:172:10:172:15 | call to params |
+| params_flow.rb:176:10:176:15 | call to params |
 httpInputAccesses
 | controllers/comments_controller.rb:3:5:3:18 | call to params | ActionDispatch::Request#params |
 | controllers/comments_controller.rb:4:5:4:22 | call to parameters | ActionDispatch::Request#parameters |
@@ -249,6 +264,12 @@ httpInputAccesses
 | params_flow.rb:144:10:144:15 | call to params | ActionController::Metal#params |
 | params_flow.rb:145:32:145:37 | call to params | ActionController::Metal#params |
 | params_flow.rb:148:22:148:27 | call to params | ActionController::Metal#params |
+| params_flow.rb:153:10:153:15 | call to params | ActionController::Metal#params |
+| params_flow.rb:154:32:154:37 | call to params | ActionController::Metal#params |
+| params_flow.rb:157:22:157:27 | call to params | ActionController::Metal#params |
+| params_flow.rb:166:10:166:15 | call to params | ActionController::Metal#params |
+| params_flow.rb:172:10:172:15 | call to params | ActionController::Metal#params |
+| params_flow.rb:176:10:176:15 | call to params | ActionController::Metal#params |
 cookiesCalls
 | controllers/foo/bars_controller.rb:10:27:10:33 | call to cookies |
 cookiesSources

From cb632b3534d8772edc4a05c9c8b172857dbf9eea Mon Sep 17 00:00:00 2001
From: tiferet <tiferet@github.com>
Date: Tue, 15 Nov 2022 17:11:34 -0800
Subject: [PATCH 0339/1420] Delete the file `ExtractEndpointData.expected`
 which was leftover in the last PR

---
 .../ExtractEndpointData.expected              | 49956 ----------------
 1 file changed, 49956 deletions(-)
 delete mode 100644 javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/ExtractEndpointData.expected

diff --git a/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/ExtractEndpointData.expected b/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/ExtractEndpointData.expected
deleted file mode 100644
index 6a06015ed47..00000000000
--- a/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/ExtractEndpointData.expected
+++ /dev/null
@@ -1,49956 +0,0 @@
-endpoints
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:3:25:3:33 | "express" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:3:25:3:33 | "express" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:3:25:3:33 | "express" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:3:25:3:33 | "express" | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:4:28:4:40 | "body-parser" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:4:28:4:40 | "body-parser" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:4:28:4:40 | "body-parser" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:4:28:4:40 | "body-parser" | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:10:9:10:25 | bodyParser.json() | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:10:9:10:25 | bodyParser.json() | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:10:9:10:25 | bodyParser.json() | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:10:9:10:25 | bodyParser.json() | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:10:9:10:25 | bodyParser.json() | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:10:9:10:25 | bodyParser.json() | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:10:9:10:25 | bodyParser.json() | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:10:9:10:25 | bodyParser.json() | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:10:9:10:25 | bodyParser.json() | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:10:9:10:25 | bodyParser.json() | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:10:9:10:25 | bodyParser.json() | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:10:9:10:25 | bodyParser.json() | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:10:9:10:25 | bodyParser.json() | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:10:9:10:25 | bodyParser.json() | Xss | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:10:9:10:25 | bodyParser.json() | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:10:9:10:25 | bodyParser.json() | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:12:10:12:16 | "/find" | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:12:10:12:16 | "/find" | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:12:10:12:16 | "/find" | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:12:10:12:16 | "/find" | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:12:10:12:16 | "/find" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:12:10:12:16 | "/find" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:12:10:12:16 | "/find" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:12:10:12:16 | "/find" | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:12:10:12:16 | "/find" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:12:10:12:16 | "/find" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:12:10:12:16 | "/find" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:12:10:12:16 | "/find" | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:12:10:12:16 | "/find" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:12:10:12:16 | "/find" | Xss | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:12:10:12:16 | "/find" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:12:10:12:16 | "/find" | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:12:19:15:1 | (req, r ... OT OK\\n} | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:12:19:15:1 | (req, r ... OT OK\\n} | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:12:19:15:1 | (req, r ... OT OK\\n} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:12:19:15:1 | (req, r ... OT OK\\n} | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:12:19:15:1 | (req, r ... OT OK\\n} | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:12:19:15:1 | (req, r ... OT OK\\n} | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:12:19:15:1 | (req, r ... OT OK\\n} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:12:19:15:1 | (req, r ... OT OK\\n} | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:12:19:15:1 | (req, r ... OT OK\\n} | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:12:19:15:1 | (req, r ... OT OK\\n} | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:12:19:15:1 | (req, r ... OT OK\\n} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:12:19:15:1 | (req, r ... OT OK\\n} | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:12:19:15:1 | (req, r ... OT OK\\n} | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:12:19:15:1 | (req, r ... OT OK\\n} | Xss | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:12:19:15:1 | (req, r ... OT OK\\n} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:12:19:15:1 | (req, r ... OT OK\\n} | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:14:24:14:32 | { id: v } | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:14:24:14:32 | { id: v } | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:14:24:14:32 | { id: v } | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:14:24:14:32 | { id: v } | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:14:24:14:32 | { id: v } | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:14:24:14:32 | { id: v } | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:14:24:14:32 | { id: v } | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:14:24:14:32 | { id: v } | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:14:24:14:32 | { id: v } | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:14:24:14:32 | { id: v } | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:14:24:14:32 | { id: v } | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:14:24:14:32 | { id: v } | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:14:24:14:32 | { id: v } | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:14:24:14:32 | { id: v } | Xss | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:14:24:14:32 | { id: v } | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:14:24:14:32 | { id: v } | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:14:30:14:30 | v | SqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:14:30:14:30 | v | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:14:30:14:30 | v | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:14:30:14:30 | v | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:14:30:14:30 | v | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:14:30:14:30 | v | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:14:30:14:30 | v | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:14:30:14:30 | v | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:14:30:14:30 | v | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:14:30:14:30 | v | Xss | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:14:30:14:30 | v | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:14:30:14:30 | v | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:20:10:20:16 | "/find" | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:20:10:20:16 | "/find" | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:20:10:20:16 | "/find" | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:20:10:20:16 | "/find" | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:20:10:20:16 | "/find" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:20:10:20:16 | "/find" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:20:10:20:16 | "/find" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:20:10:20:16 | "/find" | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:20:10:20:16 | "/find" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:20:10:20:16 | "/find" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:20:10:20:16 | "/find" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:20:10:20:16 | "/find" | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:20:10:20:16 | "/find" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:20:10:20:16 | "/find" | Xss | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:20:10:20:16 | "/find" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:20:10:20:16 | "/find" | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:20:19:24:1 | (req, r ... OT OK\\n} | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:20:19:24:1 | (req, r ... OT OK\\n} | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:20:19:24:1 | (req, r ... OT OK\\n} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:20:19:24:1 | (req, r ... OT OK\\n} | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:20:19:24:1 | (req, r ... OT OK\\n} | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:20:19:24:1 | (req, r ... OT OK\\n} | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:20:19:24:1 | (req, r ... OT OK\\n} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:20:19:24:1 | (req, r ... OT OK\\n} | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:20:19:24:1 | (req, r ... OT OK\\n} | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:20:19:24:1 | (req, r ... OT OK\\n} | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:20:19:24:1 | (req, r ... OT OK\\n} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:20:19:24:1 | (req, r ... OT OK\\n} | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:20:19:24:1 | (req, r ... OT OK\\n} | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:20:19:24:1 | (req, r ... OT OK\\n} | Xss | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:20:19:24:1 | (req, r ... OT OK\\n} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:20:19:24:1 | (req, r ... OT OK\\n} | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:22:27:22:35 | { id: v } | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:22:27:22:35 | { id: v } | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:22:27:22:35 | { id: v } | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:22:27:22:35 | { id: v } | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:22:27:22:35 | { id: v } | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:22:27:22:35 | { id: v } | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:22:27:22:35 | { id: v } | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:22:27:22:35 | { id: v } | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:22:27:22:35 | { id: v } | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:22:27:22:35 | { id: v } | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:22:27:22:35 | { id: v } | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:22:27:22:35 | { id: v } | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:22:27:22:35 | { id: v } | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:22:27:22:35 | { id: v } | Xss | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:22:27:22:35 | { id: v } | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:22:27:22:35 | { id: v } | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:22:33:22:33 | v | SqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:22:33:22:33 | v | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:22:33:22:33 | v | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:22:33:22:33 | v | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:22:33:22:33 | v | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:22:33:22:33 | v | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:22:33:22:33 | v | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:22:33:22:33 | v | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:22:33:22:33 | v | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:22:33:22:33 | v | Xss | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:22:33:22:33 | v | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:22:33:22:33 | v | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:23:27:23:35 | { id: v } | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:23:27:23:35 | { id: v } | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:23:27:23:35 | { id: v } | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:23:27:23:35 | { id: v } | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:23:27:23:35 | { id: v } | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:23:27:23:35 | { id: v } | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:23:27:23:35 | { id: v } | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:23:27:23:35 | { id: v } | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:23:27:23:35 | { id: v } | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:23:27:23:35 | { id: v } | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:23:27:23:35 | { id: v } | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:23:27:23:35 | { id: v } | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:23:27:23:35 | { id: v } | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:23:27:23:35 | { id: v } | Xss | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:23:27:23:35 | { id: v } | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:23:27:23:35 | { id: v } | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:23:33:23:33 | v | SqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:23:33:23:33 | v | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:23:33:23:33 | v | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:23:33:23:33 | v | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:23:33:23:33 | v | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:23:33:23:33 | v | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:23:33:23:33 | v | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:23:33:23:33 | v | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:23:33:23:33 | v | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:23:33:23:33 | v | Xss | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:23:33:23:33 | v | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:23:33:23:33 | v | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/dbo.js:1:24:1:32 | "mongodb" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/dbo.js:1:24:1:32 | "mongodb" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/dbo.js:1:24:1:32 | "mongodb" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/dbo.js:1:24:1:32 | "mongodb" | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/dbo.js:8:22:8:39 | process.env.DB_URL | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/dbo.js:8:22:8:39 | process.env.DB_URL | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/dbo.js:8:22:8:39 | process.env.DB_URL | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/dbo.js:8:22:8:39 | process.env.DB_URL | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/dbo.js:8:22:8:39 | process.env.DB_URL | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/dbo.js:8:22:8:39 | process.env.DB_URL | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/dbo.js:8:22:8:39 | process.env.DB_URL | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/dbo.js:8:22:8:39 | process.env.DB_URL | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/dbo.js:8:22:8:39 | process.env.DB_URL | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/dbo.js:8:22:8:39 | process.env.DB_URL | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/dbo.js:8:22:8:39 | process.env.DB_URL | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/dbo.js:8:22:8:39 | process.env.DB_URL | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/dbo.js:8:22:8:39 | process.env.DB_URL | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/dbo.js:8:22:8:39 | process.env.DB_URL | Xss | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/dbo.js:8:22:8:39 | process.env.DB_URL | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/dbo.js:8:22:8:39 | process.env.DB_URL | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/dbo.js:8:42:8:43 | {} | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/dbo.js:8:42:8:43 | {} | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/dbo.js:8:42:8:43 | {} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/dbo.js:8:42:8:43 | {} | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/dbo.js:8:42:8:43 | {} | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/dbo.js:8:42:8:43 | {} | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/dbo.js:8:42:8:43 | {} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/dbo.js:8:42:8:43 | {} | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/dbo.js:8:42:8:43 | {} | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/dbo.js:8:42:8:43 | {} | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/dbo.js:8:42:8:43 | {} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/dbo.js:8:42:8:43 | {} | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/dbo.js:8:42:8:43 | {} | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/dbo.js:8:42:8:43 | {} | Xss | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/dbo.js:8:42:8:43 | {} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/dbo.js:8:42:8:43 | {} | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/dbo.js:8:46:11:5 | (err, c ... ;\\n    } | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/dbo.js:8:46:11:5 | (err, c ... ;\\n    } | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/dbo.js:8:46:11:5 | (err, c ... ;\\n    } | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/dbo.js:8:46:11:5 | (err, c ... ;\\n    } | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/dbo.js:8:46:11:5 | (err, c ... ;\\n    } | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/dbo.js:8:46:11:5 | (err, c ... ;\\n    } | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/dbo.js:8:46:11:5 | (err, c ... ;\\n    } | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/dbo.js:8:46:11:5 | (err, c ... ;\\n    } | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/dbo.js:8:46:11:5 | (err, c ... ;\\n    } | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/dbo.js:8:46:11:5 | (err, c ... ;\\n    } | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/dbo.js:8:46:11:5 | (err, c ... ;\\n    } | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/dbo.js:8:46:11:5 | (err, c ... ;\\n    } | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/dbo.js:8:46:11:5 | (err, c ... ;\\n    } | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/dbo.js:8:46:11:5 | (err, c ... ;\\n    } | Xss | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/dbo.js:8:46:11:5 | (err, c ... ;\\n    } | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/dbo.js:8:46:11:5 | (err, c ... ;\\n    } | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/dbo.js:9:22:9:40 | process.env.DB_NAME | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/dbo.js:9:22:9:40 | process.env.DB_NAME | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/dbo.js:9:22:9:40 | process.env.DB_NAME | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/dbo.js:9:22:9:40 | process.env.DB_NAME | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/dbo.js:9:22:9:40 | process.env.DB_NAME | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/dbo.js:9:22:9:40 | process.env.DB_NAME | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/dbo.js:9:22:9:40 | process.env.DB_NAME | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/dbo.js:9:22:9:40 | process.env.DB_NAME | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/dbo.js:9:22:9:40 | process.env.DB_NAME | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/dbo.js:9:22:9:40 | process.env.DB_NAME | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/dbo.js:9:22:9:40 | process.env.DB_NAME | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/dbo.js:9:22:9:40 | process.env.DB_NAME | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/dbo.js:9:22:9:40 | process.env.DB_NAME | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/dbo.js:9:22:9:40 | process.env.DB_NAME | Xss | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/dbo.js:9:22:9:40 | process.env.DB_NAME | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/dbo.js:9:22:9:40 | process.env.DB_NAME | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/dbo.js:10:17:10:19 | err | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/dbo.js:10:17:10:19 | err | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/dbo.js:10:17:10:19 | err | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/dbo.js:10:17:10:19 | err | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/dbo.js:10:17:10:19 | err | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/dbo.js:10:17:10:19 | err | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/dbo.js:10:17:10:19 | err | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/dbo.js:10:17:10:19 | err | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/dbo.js:10:17:10:19 | err | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/dbo.js:10:17:10:19 | err | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/dbo.js:10:17:10:19 | err | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/dbo.js:10:17:10:19 | err | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/dbo.js:10:17:10:19 | err | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/dbo.js:10:17:10:19 | err | Xss | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/dbo.js:10:17:10:19 | err | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/dbo.js:10:17:10:19 | err | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:15:33:15:38 | schema | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:15:33:15:38 | schema | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:15:33:15:38 | schema | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:15:33:15:38 | schema | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:15:33:15:38 | schema | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:15:33:15:38 | schema | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:15:33:15:38 | schema | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:15:33:15:38 | schema | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:15:33:15:38 | schema | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:15:33:15:38 | schema | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:15:33:15:38 | schema | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:15:33:15:38 | schema | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:15:33:15:38 | schema | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:15:33:15:38 | schema | Xss | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:15:33:15:38 | schema | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:15:33:15:38 | schema | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:21:10:21:26 | '/documents/find' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:21:10:21:26 | '/documents/find' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:21:10:21:26 | '/documents/find' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:21:10:21:26 | '/documents/find' | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:21:10:21:26 | '/documents/find' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:21:10:21:26 | '/documents/find' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:21:10:21:26 | '/documents/find' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:21:10:21:26 | '/documents/find' | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:21:10:21:26 | '/documents/find' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:21:10:21:26 | '/documents/find' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:21:10:21:26 | '/documents/find' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:21:10:21:26 | '/documents/find' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:21:10:21:26 | '/documents/find' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:21:10:21:26 | '/documents/find' | Xss | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:21:10:21:26 | '/documents/find' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:21:10:21:26 | '/documents/find' | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:21:29:37:1 | (req, r ...   });\\n} | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:21:29:37:1 | (req, r ...   });\\n} | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:21:29:37:1 | (req, r ...   });\\n} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:21:29:37:1 | (req, r ...   });\\n} | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:21:29:37:1 | (req, r ...   });\\n} | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:21:29:37:1 | (req, r ...   });\\n} | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:21:29:37:1 | (req, r ...   });\\n} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:21:29:37:1 | (req, r ...   });\\n} | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:21:29:37:1 | (req, r ...   });\\n} | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:21:29:37:1 | (req, r ...   });\\n} | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:21:29:37:1 | (req, r ...   });\\n} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:21:29:37:1 | (req, r ...   });\\n} | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:21:29:37:1 | (req, r ...   });\\n} | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:21:29:37:1 | (req, r ...   });\\n} | Xss | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:21:29:37:1 | (req, r ...   });\\n} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:21:29:37:1 | (req, r ...   });\\n} | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:22:25:22:56 | 'mongod ... 7/test' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:22:25:22:56 | 'mongod ... 7/test' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:22:25:22:56 | 'mongod ... 7/test' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:22:25:22:56 | 'mongod ... 7/test' | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:22:25:22:56 | 'mongod ... 7/test' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:22:25:22:56 | 'mongod ... 7/test' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:22:25:22:56 | 'mongod ... 7/test' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:22:25:22:56 | 'mongod ... 7/test' | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:22:25:22:56 | 'mongod ... 7/test' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:22:25:22:56 | 'mongod ... 7/test' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:22:25:22:56 | 'mongod ... 7/test' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:22:25:22:56 | 'mongod ... 7/test' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:22:25:22:56 | 'mongod ... 7/test' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:22:25:22:56 | 'mongod ... 7/test' | Xss | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:22:25:22:56 | 'mongod ... 7/test' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:22:25:22:56 | 'mongod ... 7/test' | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:22:59:36:5 | (err, d ... K\\n    } | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:22:59:36:5 | (err, d ... K\\n    } | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:22:59:36:5 | (err, d ... K\\n    } | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:22:59:36:5 | (err, d ... K\\n    } | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:22:59:36:5 | (err, d ... K\\n    } | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:22:59:36:5 | (err, d ... K\\n    } | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:22:59:36:5 | (err, d ... K\\n    } | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:22:59:36:5 | (err, d ... K\\n    } | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:22:59:36:5 | (err, d ... K\\n    } | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:22:59:36:5 | (err, d ... K\\n    } | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:22:59:36:5 | (err, d ... K\\n    } | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:22:59:36:5 | (err, d ... K\\n    } | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:22:59:36:5 | (err, d ... K\\n    } | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:22:59:36:5 | (err, d ... K\\n    } | Xss | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:22:59:36:5 | (err, d ... K\\n    } | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:22:59:36:5 | (err, d ... K\\n    } | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:23:33:23:37 | 'doc' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:23:33:23:37 | 'doc' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:23:33:23:37 | 'doc' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:23:33:23:37 | 'doc' | NosqlInjection | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:23:33:23:37 | 'doc' | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:23:33:23:37 | 'doc' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:23:33:23:37 | 'doc' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:23:33:23:37 | 'doc' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:23:33:23:37 | 'doc' | SqlInjection | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:23:33:23:37 | 'doc' | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:23:33:23:37 | 'doc' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:23:33:23:37 | 'doc' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:23:33:23:37 | 'doc' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:23:33:23:37 | 'doc' | TaintedPath | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:23:33:23:37 | 'doc' | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:23:33:23:37 | 'doc' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:23:33:23:37 | 'doc' | Xss | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:23:33:23:37 | 'doc' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:23:33:23:37 | 'doc' | Xss | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:23:33:23:37 | 'doc' | Xss | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:25:23:25:48 | JSON.pa ... y.data) | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:25:23:25:48 | JSON.pa ... y.data) | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:25:23:25:48 | JSON.pa ... y.data) | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:25:23:25:48 | JSON.pa ... y.data) | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:25:23:25:48 | JSON.pa ... y.data) | SqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:25:23:25:48 | JSON.pa ... y.data) | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:25:23:25:48 | JSON.pa ... y.data) | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:25:23:25:48 | JSON.pa ... y.data) | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:26:25:26:29 | query | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:26:25:26:29 | query | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:26:25:26:29 | query | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:26:25:26:29 | query | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:26:25:26:29 | query | SqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:26:25:26:29 | query | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:26:25:26:29 | query | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:26:25:26:29 | query | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:26:25:26:29 | query | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:26:25:26:29 | query | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:26:25:26:29 | query | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:26:25:26:29 | query | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:26:25:26:29 | query | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:26:25:26:29 | query | Xss | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:26:25:26:29 | query | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:26:25:26:29 | query | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:27:22:27:26 | query | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:27:22:27:26 | query | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:27:22:27:26 | query | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:27:22:27:26 | query | NosqlInjection | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:30:22:30:26 | query | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:30:22:30:26 | query | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:30:22:30:26 | query | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:30:22:30:26 | query | NosqlInjection | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:33:22:33:26 | query | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:33:22:33:26 | query | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:33:22:33:26 | query | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:33:22:33:26 | query | NosqlInjection | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:35:18:35:22 | query | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:35:18:35:22 | query | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:35:18:35:22 | query | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:35:18:35:22 | query | NosqlInjection | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-from.js:1:24:1:31 | "marsdb" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-from.js:1:24:1:31 | "marsdb" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-from.js:1:24:1:31 | "marsdb" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-from.js:1:24:1:31 | "marsdb" | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:1:25:1:33 | "express" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:1:25:1:33 | "express" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:1:25:1:33 | "express" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:1:25:1:33 | "express" | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:2:28:2:40 | "body-parser" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:2:28:2:40 | "body-parser" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:2:28:2:40 | "body-parser" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:2:28:2:40 | "body-parser" | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:3:20:3:39 | './marsdb-flow-from' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:3:20:3:39 | './marsdb-flow-from' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:3:20:3:39 | './marsdb-flow-from' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:3:20:3:39 | './marsdb-flow-from' | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:7:9:7:49 | bodyPar ... true }) | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:7:9:7:49 | bodyPar ... true }) | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:7:9:7:49 | bodyPar ... true }) | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:7:9:7:49 | bodyPar ... true }) | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:7:9:7:49 | bodyPar ... true }) | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:7:9:7:49 | bodyPar ... true }) | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:7:9:7:49 | bodyPar ... true }) | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:7:9:7:49 | bodyPar ... true }) | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:7:9:7:49 | bodyPar ... true }) | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:7:9:7:49 | bodyPar ... true }) | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:7:9:7:49 | bodyPar ... true }) | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:7:9:7:49 | bodyPar ... true }) | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:7:9:7:49 | bodyPar ... true }) | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:7:9:7:49 | bodyPar ... true }) | Xss | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:7:9:7:49 | bodyPar ... true }) | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:7:9:7:49 | bodyPar ... true }) | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:7:31:7:48 | { extended: true } | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:7:31:7:48 | { extended: true } | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:7:31:7:48 | { extended: true } | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:7:31:7:48 | { extended: true } | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:7:31:7:48 | { extended: true } | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:7:31:7:48 | { extended: true } | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:7:31:7:48 | { extended: true } | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:7:31:7:48 | { extended: true } | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:7:31:7:48 | { extended: true } | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:7:31:7:48 | { extended: true } | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:7:31:7:48 | { extended: true } | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:7:31:7:48 | { extended: true } | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:7:31:7:48 | { extended: true } | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:7:31:7:48 | { extended: true } | Xss | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:7:31:7:48 | { extended: true } | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:7:31:7:48 | { extended: true } | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:7:43:7:46 | true | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:7:43:7:46 | true | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:7:43:7:46 | true | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:7:43:7:46 | true | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:7:43:7:46 | true | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:7:43:7:46 | true | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:7:43:7:46 | true | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:7:43:7:46 | true | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:7:43:7:46 | true | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:7:43:7:46 | true | Xss | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:7:43:7:46 | true | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:7:43:7:46 | true | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:9:10:9:26 | "/documents/find" | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:9:10:9:26 | "/documents/find" | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:9:10:9:26 | "/documents/find" | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:9:10:9:26 | "/documents/find" | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:9:10:9:26 | "/documents/find" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:9:10:9:26 | "/documents/find" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:9:10:9:26 | "/documents/find" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:9:10:9:26 | "/documents/find" | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:9:10:9:26 | "/documents/find" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:9:10:9:26 | "/documents/find" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:9:10:9:26 | "/documents/find" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:9:10:9:26 | "/documents/find" | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:9:10:9:26 | "/documents/find" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:9:10:9:26 | "/documents/find" | Xss | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:9:10:9:26 | "/documents/find" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:9:10:9:26 | "/documents/find" | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:9:29:15:1 | (req, r ... ery);\\n} | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:9:29:15:1 | (req, r ... ery);\\n} | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:9:29:15:1 | (req, r ... ery);\\n} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:9:29:15:1 | (req, r ... ery);\\n} | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:9:29:15:1 | (req, r ... ery);\\n} | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:9:29:15:1 | (req, r ... ery);\\n} | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:9:29:15:1 | (req, r ... ery);\\n} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:9:29:15:1 | (req, r ... ery);\\n} | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:9:29:15:1 | (req, r ... ery);\\n} | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:9:29:15:1 | (req, r ... ery);\\n} | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:9:29:15:1 | (req, r ... ery);\\n} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:9:29:15:1 | (req, r ... ery);\\n} | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:9:29:15:1 | (req, r ... ery);\\n} | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:9:29:15:1 | (req, r ... ery);\\n} | Xss | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:9:29:15:1 | (req, r ... ery);\\n} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:9:29:15:1 | (req, r ... ery);\\n} | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:10:17:10:18 | {} | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:10:17:10:18 | {} | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:10:17:10:18 | {} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:10:17:10:18 | {} | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:10:17:10:18 | {} | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:10:17:10:18 | {} | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:10:17:10:18 | {} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:10:17:10:18 | {} | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:14:17:14:21 | query | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:14:17:14:21 | query | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:14:17:14:21 | query | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:14:17:14:21 | query | NosqlInjection | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:1:25:1:33 | "express" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:1:25:1:33 | "express" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:1:25:1:33 | "express" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:1:25:1:33 | "express" | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:2:20:2:27 | "marsdb" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:2:20:2:27 | "marsdb" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:2:20:2:27 | "marsdb" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:2:20:2:27 | "marsdb" | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:3:24:3:36 | "body-parser" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:3:24:3:36 | "body-parser" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:3:24:3:36 | "body-parser" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:3:24:3:36 | "body-parser" | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:9:9:9:49 | bodyPar ... true }) | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:9:9:9:49 | bodyPar ... true }) | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:9:9:9:49 | bodyPar ... true }) | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:9:9:9:49 | bodyPar ... true }) | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:9:9:9:49 | bodyPar ... true }) | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:9:9:9:49 | bodyPar ... true }) | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:9:9:9:49 | bodyPar ... true }) | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:9:9:9:49 | bodyPar ... true }) | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:9:9:9:49 | bodyPar ... true }) | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:9:9:9:49 | bodyPar ... true }) | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:9:9:9:49 | bodyPar ... true }) | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:9:9:9:49 | bodyPar ... true }) | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:9:9:9:49 | bodyPar ... true }) | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:9:9:9:49 | bodyPar ... true }) | Xss | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:9:9:9:49 | bodyPar ... true }) | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:9:9:9:49 | bodyPar ... true }) | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:9:31:9:48 | { extended: true } | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:9:31:9:48 | { extended: true } | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:9:31:9:48 | { extended: true } | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:9:31:9:48 | { extended: true } | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:9:31:9:48 | { extended: true } | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:9:31:9:48 | { extended: true } | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:9:31:9:48 | { extended: true } | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:9:31:9:48 | { extended: true } | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:9:31:9:48 | { extended: true } | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:9:31:9:48 | { extended: true } | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:9:31:9:48 | { extended: true } | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:9:31:9:48 | { extended: true } | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:9:31:9:48 | { extended: true } | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:9:31:9:48 | { extended: true } | Xss | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:9:31:9:48 | { extended: true } | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:9:31:9:48 | { extended: true } | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:9:43:9:46 | true | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:9:43:9:46 | true | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:9:43:9:46 | true | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:9:43:9:46 | true | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:9:43:9:46 | true | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:9:43:9:46 | true | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:9:43:9:46 | true | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:9:43:9:46 | true | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:9:43:9:46 | true | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:9:43:9:46 | true | Xss | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:9:43:9:46 | true | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:9:43:9:46 | true | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:11:10:11:26 | "/documents/find" | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:11:10:11:26 | "/documents/find" | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:11:10:11:26 | "/documents/find" | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:11:10:11:26 | "/documents/find" | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:11:10:11:26 | "/documents/find" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:11:10:11:26 | "/documents/find" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:11:10:11:26 | "/documents/find" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:11:10:11:26 | "/documents/find" | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:11:10:11:26 | "/documents/find" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:11:10:11:26 | "/documents/find" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:11:10:11:26 | "/documents/find" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:11:10:11:26 | "/documents/find" | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:11:10:11:26 | "/documents/find" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:11:10:11:26 | "/documents/find" | Xss | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:11:10:11:26 | "/documents/find" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:11:10:11:26 | "/documents/find" | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:11:29:17:1 | (req, r ... ery);\\n} | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:11:29:17:1 | (req, r ... ery);\\n} | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:11:29:17:1 | (req, r ... ery);\\n} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:11:29:17:1 | (req, r ... ery);\\n} | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:11:29:17:1 | (req, r ... ery);\\n} | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:11:29:17:1 | (req, r ... ery);\\n} | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:11:29:17:1 | (req, r ... ery);\\n} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:11:29:17:1 | (req, r ... ery);\\n} | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:11:29:17:1 | (req, r ... ery);\\n} | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:11:29:17:1 | (req, r ... ery);\\n} | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:11:29:17:1 | (req, r ... ery);\\n} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:11:29:17:1 | (req, r ... ery);\\n} | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:11:29:17:1 | (req, r ... ery);\\n} | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:11:29:17:1 | (req, r ... ery);\\n} | Xss | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:11:29:17:1 | (req, r ... ery);\\n} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:11:29:17:1 | (req, r ... ery);\\n} | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:12:17:12:18 | {} | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:12:17:12:18 | {} | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:12:17:12:18 | {} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:12:17:12:18 | {} | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:12:17:12:18 | {} | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:12:17:12:18 | {} | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:12:17:12:18 | {} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:12:17:12:18 | {} | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:16:12:16:16 | query | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:16:12:16:16 | query | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:16:12:16:16 | query | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:16:12:16:16 | query | NosqlInjection | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:1:25:1:33 | "express" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:1:25:1:33 | "express" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:1:25:1:33 | "express" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:1:25:1:33 | "express" | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:2:23:2:33 | "minimongo" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:2:23:2:33 | "minimongo" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:2:23:2:33 | "minimongo" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:2:23:2:33 | "minimongo" | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:3:24:3:36 | "body-parser" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:3:24:3:36 | "body-parser" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:3:24:3:36 | "body-parser" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:3:24:3:36 | "body-parser" | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:11:9:11:49 | bodyPar ... true }) | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:11:9:11:49 | bodyPar ... true }) | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:11:9:11:49 | bodyPar ... true }) | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:11:9:11:49 | bodyPar ... true }) | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:11:9:11:49 | bodyPar ... true }) | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:11:9:11:49 | bodyPar ... true }) | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:11:9:11:49 | bodyPar ... true }) | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:11:9:11:49 | bodyPar ... true }) | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:11:9:11:49 | bodyPar ... true }) | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:11:9:11:49 | bodyPar ... true }) | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:11:9:11:49 | bodyPar ... true }) | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:11:9:11:49 | bodyPar ... true }) | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:11:9:11:49 | bodyPar ... true }) | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:11:9:11:49 | bodyPar ... true }) | Xss | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:11:9:11:49 | bodyPar ... true }) | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:11:9:11:49 | bodyPar ... true }) | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:11:31:11:48 | { extended: true } | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:11:31:11:48 | { extended: true } | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:11:31:11:48 | { extended: true } | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:11:31:11:48 | { extended: true } | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:11:31:11:48 | { extended: true } | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:11:31:11:48 | { extended: true } | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:11:31:11:48 | { extended: true } | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:11:31:11:48 | { extended: true } | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:11:31:11:48 | { extended: true } | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:11:31:11:48 | { extended: true } | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:11:31:11:48 | { extended: true } | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:11:31:11:48 | { extended: true } | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:11:31:11:48 | { extended: true } | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:11:31:11:48 | { extended: true } | Xss | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:11:31:11:48 | { extended: true } | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:11:31:11:48 | { extended: true } | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:11:43:11:46 | true | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:11:43:11:46 | true | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:11:43:11:46 | true | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:11:43:11:46 | true | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:11:43:11:46 | true | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:11:43:11:46 | true | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:11:43:11:46 | true | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:11:43:11:46 | true | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:11:43:11:46 | true | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:11:43:11:46 | true | Xss | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:11:43:11:46 | true | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:11:43:11:46 | true | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:13:10:13:26 | "/documents/find" | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:13:10:13:26 | "/documents/find" | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:13:10:13:26 | "/documents/find" | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:13:10:13:26 | "/documents/find" | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:13:10:13:26 | "/documents/find" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:13:10:13:26 | "/documents/find" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:13:10:13:26 | "/documents/find" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:13:10:13:26 | "/documents/find" | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:13:10:13:26 | "/documents/find" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:13:10:13:26 | "/documents/find" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:13:10:13:26 | "/documents/find" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:13:10:13:26 | "/documents/find" | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:13:10:13:26 | "/documents/find" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:13:10:13:26 | "/documents/find" | Xss | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:13:10:13:26 | "/documents/find" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:13:10:13:26 | "/documents/find" | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:13:29:19:1 | (req, r ... ery);\\n} | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:13:29:19:1 | (req, r ... ery);\\n} | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:13:29:19:1 | (req, r ... ery);\\n} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:13:29:19:1 | (req, r ... ery);\\n} | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:13:29:19:1 | (req, r ... ery);\\n} | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:13:29:19:1 | (req, r ... ery);\\n} | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:13:29:19:1 | (req, r ... ery);\\n} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:13:29:19:1 | (req, r ... ery);\\n} | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:13:29:19:1 | (req, r ... ery);\\n} | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:13:29:19:1 | (req, r ... ery);\\n} | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:13:29:19:1 | (req, r ... ery);\\n} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:13:29:19:1 | (req, r ... ery);\\n} | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:13:29:19:1 | (req, r ... ery);\\n} | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:13:29:19:1 | (req, r ... ery);\\n} | Xss | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:13:29:19:1 | (req, r ... ery);\\n} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:13:29:19:1 | (req, r ... ery);\\n} | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:14:17:14:18 | {} | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:14:17:14:18 | {} | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:14:17:14:18 | {} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:14:17:14:18 | {} | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:14:17:14:18 | {} | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:14:17:14:18 | {} | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:14:17:14:18 | {} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:14:17:14:18 | {} | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:18:12:18:16 | query | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:18:12:18:16 | query | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:18:12:18:16 | query | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:18:12:18:16 | query | NosqlInjection | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:1:25:1:33 | 'express' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:1:25:1:33 | 'express' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:1:25:1:33 | 'express' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:1:25:1:33 | 'express' | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:2:25:2:33 | 'mongodb' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:2:25:2:33 | 'mongodb' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:2:25:2:33 | 'mongodb' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:2:25:2:33 | 'mongodb' | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:3:28:3:40 | 'body-parser' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:3:28:3:40 | 'body-parser' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:3:28:3:40 | 'body-parser' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:3:28:3:40 | 'body-parser' | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:9:9:9:49 | bodyPar ... true }) | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:9:9:9:49 | bodyPar ... true }) | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:9:9:9:49 | bodyPar ... true }) | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:9:9:9:49 | bodyPar ... true }) | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:9:9:9:49 | bodyPar ... true }) | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:9:9:9:49 | bodyPar ... true }) | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:9:9:9:49 | bodyPar ... true }) | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:9:9:9:49 | bodyPar ... true }) | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:9:9:9:49 | bodyPar ... true }) | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:9:9:9:49 | bodyPar ... true }) | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:9:9:9:49 | bodyPar ... true }) | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:9:9:9:49 | bodyPar ... true }) | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:9:9:9:49 | bodyPar ... true }) | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:9:9:9:49 | bodyPar ... true }) | Xss | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:9:9:9:49 | bodyPar ... true }) | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:9:9:9:49 | bodyPar ... true }) | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:9:31:9:48 | { extended: true } | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:9:31:9:48 | { extended: true } | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:9:31:9:48 | { extended: true } | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:9:31:9:48 | { extended: true } | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:9:31:9:48 | { extended: true } | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:9:31:9:48 | { extended: true } | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:9:31:9:48 | { extended: true } | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:9:31:9:48 | { extended: true } | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:9:31:9:48 | { extended: true } | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:9:31:9:48 | { extended: true } | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:9:31:9:48 | { extended: true } | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:9:31:9:48 | { extended: true } | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:9:31:9:48 | { extended: true } | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:9:31:9:48 | { extended: true } | Xss | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:9:31:9:48 | { extended: true } | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:9:31:9:48 | { extended: true } | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:9:43:9:46 | true | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:9:43:9:46 | true | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:9:43:9:46 | true | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:9:43:9:46 | true | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:9:43:9:46 | true | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:9:43:9:46 | true | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:9:43:9:46 | true | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:9:43:9:46 | true | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:9:43:9:46 | true | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:9:43:9:46 | true | Xss | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:9:43:9:46 | true | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:9:43:9:46 | true | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:11:10:11:26 | '/documents/find' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:11:10:11:26 | '/documents/find' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:11:10:11:26 | '/documents/find' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:11:10:11:26 | '/documents/find' | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:11:10:11:26 | '/documents/find' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:11:10:11:26 | '/documents/find' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:11:10:11:26 | '/documents/find' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:11:10:11:26 | '/documents/find' | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:11:10:11:26 | '/documents/find' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:11:10:11:26 | '/documents/find' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:11:10:11:26 | '/documents/find' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:11:10:11:26 | '/documents/find' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:11:10:11:26 | '/documents/find' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:11:10:11:26 | '/documents/find' | Xss | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:11:10:11:26 | '/documents/find' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:11:10:11:26 | '/documents/find' | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:11:29:35:1 | (req, r ...   });\\n} | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:11:29:35:1 | (req, r ...   });\\n} | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:11:29:35:1 | (req, r ...   });\\n} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:11:29:35:1 | (req, r ...   });\\n} | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:11:29:35:1 | (req, r ...   });\\n} | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:11:29:35:1 | (req, r ...   });\\n} | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:11:29:35:1 | (req, r ...   });\\n} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:11:29:35:1 | (req, r ...   });\\n} | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:11:29:35:1 | (req, r ...   });\\n} | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:11:29:35:1 | (req, r ...   });\\n} | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:11:29:35:1 | (req, r ...   });\\n} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:11:29:35:1 | (req, r ...   });\\n} | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:11:29:35:1 | (req, r ...   });\\n} | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:11:29:35:1 | (req, r ...   });\\n} | Xss | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:11:29:35:1 | (req, r ...   });\\n} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:11:29:35:1 | (req, r ...   });\\n} | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:12:19:12:20 | {} | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:12:19:12:20 | {} | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:12:19:12:20 | {} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:12:19:12:20 | {} | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:12:19:12:20 | {} | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:12:19:12:20 | {} | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:12:19:12:20 | {} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:12:19:12:20 | {} | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:14:25:14:56 | 'mongod ... 7/test' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:14:25:14:56 | 'mongod ... 7/test' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:14:25:14:56 | 'mongod ... 7/test' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:14:25:14:56 | 'mongod ... 7/test' | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:14:25:14:56 | 'mongod ... 7/test' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:14:25:14:56 | 'mongod ... 7/test' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:14:25:14:56 | 'mongod ... 7/test' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:14:25:14:56 | 'mongod ... 7/test' | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:14:25:14:56 | 'mongod ... 7/test' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:14:25:14:56 | 'mongod ... 7/test' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:14:25:14:56 | 'mongod ... 7/test' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:14:25:14:56 | 'mongod ... 7/test' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:14:25:14:56 | 'mongod ... 7/test' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:14:25:14:56 | 'mongod ... 7/test' | Xss | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:14:25:14:56 | 'mongod ... 7/test' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:14:25:14:56 | 'mongod ... 7/test' | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:14:59:34:5 | (err, d ... }\\n    } | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:14:59:34:5 | (err, d ... }\\n    } | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:14:59:34:5 | (err, d ... }\\n    } | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:14:59:34:5 | (err, d ... }\\n    } | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:14:59:34:5 | (err, d ... }\\n    } | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:14:59:34:5 | (err, d ... }\\n    } | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:14:59:34:5 | (err, d ... }\\n    } | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:14:59:34:5 | (err, d ... }\\n    } | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:14:59:34:5 | (err, d ... }\\n    } | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:14:59:34:5 | (err, d ... }\\n    } | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:14:59:34:5 | (err, d ... }\\n    } | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:14:59:34:5 | (err, d ... }\\n    } | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:14:59:34:5 | (err, d ... }\\n    } | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:14:59:34:5 | (err, d ... }\\n    } | Xss | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:14:59:34:5 | (err, d ... }\\n    } | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:14:59:34:5 | (err, d ... }\\n    } | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:15:31:15:35 | 'doc' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:15:31:15:35 | 'doc' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:15:31:15:35 | 'doc' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:15:31:15:35 | 'doc' | NosqlInjection | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:15:31:15:35 | 'doc' | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:15:31:15:35 | 'doc' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:15:31:15:35 | 'doc' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:15:31:15:35 | 'doc' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:15:31:15:35 | 'doc' | SqlInjection | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:15:31:15:35 | 'doc' | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:15:31:15:35 | 'doc' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:15:31:15:35 | 'doc' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:15:31:15:35 | 'doc' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:15:31:15:35 | 'doc' | TaintedPath | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:15:31:15:35 | 'doc' | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:15:31:15:35 | 'doc' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:15:31:15:35 | 'doc' | Xss | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:15:31:15:35 | 'doc' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:15:31:15:35 | 'doc' | Xss | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:15:31:15:35 | 'doc' | Xss | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:18:16:18:20 | query | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:18:16:18:20 | query | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:18:16:18:20 | query | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:18:16:18:20 | query | NosqlInjection | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:21:16:21:47 | { title ... title } | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:21:16:21:47 | { title ... title } | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:21:16:21:47 | { title ... title } | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:21:16:21:47 | { title ... title } | NosqlInjection | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:21:25:21:45 | '' + qu ... y.title | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:21:25:21:45 | '' + qu ... y.title | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:21:25:21:45 | '' + qu ... y.title | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:21:25:21:45 | '' + qu ... y.title | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:21:25:21:45 | '' + qu ... y.title | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:21:25:21:45 | '' + qu ... y.title | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:21:25:21:45 | '' + qu ... y.title | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:21:25:21:45 | '' + qu ... y.title | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:21:25:21:45 | '' + qu ... y.title | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:21:25:21:45 | '' + qu ... y.title | Xss | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:21:25:21:45 | '' + qu ... y.title | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:21:25:21:45 | '' + qu ... y.title | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:24:16:24:52 | { title ... tr(1) } | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:24:16:24:52 | { title ... tr(1) } | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:24:16:24:52 | { title ... tr(1) } | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:24:16:24:52 | { title ... tr(1) } | NosqlInjection | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:24:25:24:50 | query.b ... bstr(1) | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:24:25:24:50 | query.b ... bstr(1) | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:24:25:24:50 | query.b ... bstr(1) | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:24:25:24:50 | query.b ... bstr(1) | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:24:25:24:50 | query.b ... bstr(1) | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:24:25:24:50 | query.b ... bstr(1) | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:24:25:24:50 | query.b ... bstr(1) | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:24:25:24:50 | query.b ... bstr(1) | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:24:25:24:50 | query.b ... bstr(1) | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:24:25:24:50 | query.b ... bstr(1) | Xss | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:24:25:24:50 | query.b ... bstr(1) | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:24:25:24:50 | query.b ... bstr(1) | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:24:49:24:49 | 1 | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:24:49:24:49 | 1 | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:24:49:24:49 | 1 | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:24:49:24:49 | 1 | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:24:49:24:49 | 1 | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:24:49:24:49 | 1 | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:24:49:24:49 | 1 | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:24:49:24:49 | 1 | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:24:49:24:49 | 1 | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:24:49:24:49 | 1 | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:24:49:24:49 | 1 | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:24:49:24:49 | 1 | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:24:49:24:49 | 1 | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:24:49:24:49 | 1 | Xss | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:24:49:24:49 | 1 | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:24:49:24:49 | 1 | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:29:18:29:33 | { title: title } | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:29:18:29:33 | { title: title } | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:29:18:29:33 | { title: title } | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:29:18:29:33 | { title: title } | NosqlInjection | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:29:27:29:31 | title | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:29:27:29:31 | title | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:29:27:29:31 | title | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:29:27:29:31 | title | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:29:27:29:31 | title | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:29:27:29:31 | title | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:29:27:29:31 | title | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:29:27:29:31 | title | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:29:27:29:31 | title | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:29:27:29:31 | title | Xss | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:29:27:29:31 | title | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:29:27:29:31 | title | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:32:18:32:45 | { title ... itle) } | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:32:18:32:45 | { title ... itle) } | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:32:18:32:45 | { title ... itle) } | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:32:18:32:45 | { title ... itle) } | NosqlInjection | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:32:27:32:43 | JSON.parse(title) | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:32:27:32:43 | JSON.parse(title) | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:32:27:32:43 | JSON.parse(title) | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:32:27:32:43 | JSON.parse(title) | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:32:27:32:43 | JSON.parse(title) | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:32:27:32:43 | JSON.parse(title) | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:32:27:32:43 | JSON.parse(title) | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:32:27:32:43 | JSON.parse(title) | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:32:27:32:43 | JSON.parse(title) | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:32:27:32:43 | JSON.parse(title) | Xss | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:32:27:32:43 | JSON.parse(title) | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:32:27:32:43 | JSON.parse(title) | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:37:9:37:14 | '/:id' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:37:9:37:14 | '/:id' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:37:9:37:14 | '/:id' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:37:9:37:14 | '/:id' | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:37:9:37:14 | '/:id' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:37:9:37:14 | '/:id' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:37:9:37:14 | '/:id' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:37:9:37:14 | '/:id' | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:37:9:37:14 | '/:id' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:37:9:37:14 | '/:id' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:37:9:37:14 | '/:id' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:37:9:37:14 | '/:id' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:37:9:37:14 | '/:id' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:37:9:37:14 | '/:id' | Xss | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:37:9:37:14 | '/:id' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:37:9:37:14 | '/:id' | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:37:17:45:1 | (req, r ...   });\\n} | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:37:17:45:1 | (req, r ...   });\\n} | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:37:17:45:1 | (req, r ...   });\\n} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:37:17:45:1 | (req, r ...   });\\n} | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:37:17:45:1 | (req, r ...   });\\n} | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:37:17:45:1 | (req, r ...   });\\n} | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:37:17:45:1 | (req, r ...   });\\n} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:37:17:45:1 | (req, r ...   });\\n} | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:37:17:45:1 | (req, r ...   });\\n} | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:37:17:45:1 | (req, r ...   });\\n} | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:37:17:45:1 | (req, r ...   });\\n} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:37:17:45:1 | (req, r ...   });\\n} | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:37:17:45:1 | (req, r ...   });\\n} | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:37:17:45:1 | (req, r ...   });\\n} | Xss | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:37:17:45:1 | (req, r ...   });\\n} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:37:17:45:1 | (req, r ...   });\\n} | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:38:17:38:36 | { id: req.param.id } | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:38:17:38:36 | { id: req.param.id } | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:38:17:38:36 | { id: req.param.id } | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:38:17:38:36 | { id: req.param.id } | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:38:17:38:36 | { id: req.param.id } | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:38:17:38:36 | { id: req.param.id } | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:38:17:38:36 | { id: req.param.id } | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:38:17:38:36 | { id: req.param.id } | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:39:25:39:56 | 'mongod ... 7/test' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:39:25:39:56 | 'mongod ... 7/test' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:39:25:39:56 | 'mongod ... 7/test' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:39:25:39:56 | 'mongod ... 7/test' | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:39:25:39:56 | 'mongod ... 7/test' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:39:25:39:56 | 'mongod ... 7/test' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:39:25:39:56 | 'mongod ... 7/test' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:39:25:39:56 | 'mongod ... 7/test' | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:39:25:39:56 | 'mongod ... 7/test' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:39:25:39:56 | 'mongod ... 7/test' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:39:25:39:56 | 'mongod ... 7/test' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:39:25:39:56 | 'mongod ... 7/test' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:39:25:39:56 | 'mongod ... 7/test' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:39:25:39:56 | 'mongod ... 7/test' | Xss | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:39:25:39:56 | 'mongod ... 7/test' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:39:25:39:56 | 'mongod ... 7/test' | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:39:59:44:5 | (err, d ... ;\\n    } | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:39:59:44:5 | (err, d ... ;\\n    } | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:39:59:44:5 | (err, d ... ;\\n    } | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:39:59:44:5 | (err, d ... ;\\n    } | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:39:59:44:5 | (err, d ... ;\\n    } | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:39:59:44:5 | (err, d ... ;\\n    } | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:39:59:44:5 | (err, d ... ;\\n    } | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:39:59:44:5 | (err, d ... ;\\n    } | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:39:59:44:5 | (err, d ... ;\\n    } | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:39:59:44:5 | (err, d ... ;\\n    } | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:39:59:44:5 | (err, d ... ;\\n    } | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:39:59:44:5 | (err, d ... ;\\n    } | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:39:59:44:5 | (err, d ... ;\\n    } | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:39:59:44:5 | (err, d ... ;\\n    } | Xss | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:39:59:44:5 | (err, d ... ;\\n    } | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:39:59:44:5 | (err, d ... ;\\n    } | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:40:31:40:35 | 'doc' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:40:31:40:35 | 'doc' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:40:31:40:35 | 'doc' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:40:31:40:35 | 'doc' | NosqlInjection | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:40:31:40:35 | 'doc' | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:40:31:40:35 | 'doc' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:40:31:40:35 | 'doc' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:40:31:40:35 | 'doc' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:40:31:40:35 | 'doc' | SqlInjection | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:40:31:40:35 | 'doc' | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:40:31:40:35 | 'doc' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:40:31:40:35 | 'doc' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:40:31:40:35 | 'doc' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:40:31:40:35 | 'doc' | TaintedPath | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:40:31:40:35 | 'doc' | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:40:31:40:35 | 'doc' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:40:31:40:35 | 'doc' | Xss | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:40:31:40:35 | 'doc' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:40:31:40:35 | 'doc' | Xss | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:40:31:40:35 | 'doc' | Xss | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:43:16:43:20 | query | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:43:16:43:20 | query | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:43:16:43:20 | query | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:43:16:43:20 | query | NosqlInjection | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:47:10:47:26 | '/documents/find' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:47:10:47:26 | '/documents/find' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:47:10:47:26 | '/documents/find' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:47:10:47:26 | '/documents/find' | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:47:10:47:26 | '/documents/find' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:47:10:47:26 | '/documents/find' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:47:10:47:26 | '/documents/find' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:47:10:47:26 | '/documents/find' | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:47:10:47:26 | '/documents/find' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:47:10:47:26 | '/documents/find' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:47:10:47:26 | '/documents/find' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:47:10:47:26 | '/documents/find' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:47:10:47:26 | '/documents/find' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:47:10:47:26 | '/documents/find' | Xss | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:47:10:47:26 | '/documents/find' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:47:10:47:26 | '/documents/find' | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:47:29:56:1 | (req, r ...   });\\n} | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:47:29:56:1 | (req, r ...   });\\n} | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:47:29:56:1 | (req, r ...   });\\n} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:47:29:56:1 | (req, r ...   });\\n} | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:47:29:56:1 | (req, r ...   });\\n} | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:47:29:56:1 | (req, r ...   });\\n} | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:47:29:56:1 | (req, r ...   });\\n} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:47:29:56:1 | (req, r ...   });\\n} | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:47:29:56:1 | (req, r ...   });\\n} | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:47:29:56:1 | (req, r ...   });\\n} | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:47:29:56:1 | (req, r ...   });\\n} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:47:29:56:1 | (req, r ...   });\\n} | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:47:29:56:1 | (req, r ...   });\\n} | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:47:29:56:1 | (req, r ...   });\\n} | Xss | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:47:29:56:1 | (req, r ...   });\\n} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:47:29:56:1 | (req, r ...   });\\n} | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:48:19:48:20 | {} | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:48:19:48:20 | {} | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:48:19:48:20 | {} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:48:19:48:20 | {} | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:48:19:48:20 | {} | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:48:19:48:20 | {} | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:48:19:48:20 | {} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:48:19:48:20 | {} | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:50:25:50:56 | 'mongod ... 7/test' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:50:25:50:56 | 'mongod ... 7/test' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:50:25:50:56 | 'mongod ... 7/test' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:50:25:50:56 | 'mongod ... 7/test' | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:50:25:50:56 | 'mongod ... 7/test' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:50:25:50:56 | 'mongod ... 7/test' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:50:25:50:56 | 'mongod ... 7/test' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:50:25:50:56 | 'mongod ... 7/test' | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:50:25:50:56 | 'mongod ... 7/test' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:50:25:50:56 | 'mongod ... 7/test' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:50:25:50:56 | 'mongod ... 7/test' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:50:25:50:56 | 'mongod ... 7/test' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:50:25:50:56 | 'mongod ... 7/test' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:50:25:50:56 | 'mongod ... 7/test' | Xss | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:50:25:50:56 | 'mongod ... 7/test' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:50:25:50:56 | 'mongod ... 7/test' | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:50:59:55:5 | (err, d ... ;\\n    } | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:50:59:55:5 | (err, d ... ;\\n    } | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:50:59:55:5 | (err, d ... ;\\n    } | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:50:59:55:5 | (err, d ... ;\\n    } | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:50:59:55:5 | (err, d ... ;\\n    } | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:50:59:55:5 | (err, d ... ;\\n    } | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:50:59:55:5 | (err, d ... ;\\n    } | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:50:59:55:5 | (err, d ... ;\\n    } | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:50:59:55:5 | (err, d ... ;\\n    } | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:50:59:55:5 | (err, d ... ;\\n    } | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:50:59:55:5 | (err, d ... ;\\n    } | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:50:59:55:5 | (err, d ... ;\\n    } | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:50:59:55:5 | (err, d ... ;\\n    } | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:50:59:55:5 | (err, d ... ;\\n    } | Xss | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:50:59:55:5 | (err, d ... ;\\n    } | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:50:59:55:5 | (err, d ... ;\\n    } | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:51:31:51:35 | 'doc' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:51:31:51:35 | 'doc' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:51:31:51:35 | 'doc' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:51:31:51:35 | 'doc' | NosqlInjection | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:51:31:51:35 | 'doc' | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:51:31:51:35 | 'doc' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:51:31:51:35 | 'doc' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:51:31:51:35 | 'doc' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:51:31:51:35 | 'doc' | SqlInjection | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:51:31:51:35 | 'doc' | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:51:31:51:35 | 'doc' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:51:31:51:35 | 'doc' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:51:31:51:35 | 'doc' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:51:31:51:35 | 'doc' | TaintedPath | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:51:31:51:35 | 'doc' | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:51:31:51:35 | 'doc' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:51:31:51:35 | 'doc' | Xss | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:51:31:51:35 | 'doc' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:51:31:51:35 | 'doc' | Xss | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:51:31:51:35 | 'doc' | Xss | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:54:16:54:20 | query | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:54:16:54:20 | query | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:54:16:54:20 | query | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:54:16:54:20 | query | NosqlInjection | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:58:10:58:26 | '/documents/find' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:58:10:58:26 | '/documents/find' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:58:10:58:26 | '/documents/find' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:58:10:58:26 | '/documents/find' | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:58:10:58:26 | '/documents/find' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:58:10:58:26 | '/documents/find' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:58:10:58:26 | '/documents/find' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:58:10:58:26 | '/documents/find' | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:58:10:58:26 | '/documents/find' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:58:10:58:26 | '/documents/find' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:58:10:58:26 | '/documents/find' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:58:10:58:26 | '/documents/find' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:58:10:58:26 | '/documents/find' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:58:10:58:26 | '/documents/find' | Xss | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:58:10:58:26 | '/documents/find' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:58:10:58:26 | '/documents/find' | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:58:29:67:1 | (req, r ... \\n\\t});\\n} | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:58:29:67:1 | (req, r ... \\n\\t});\\n} | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:58:29:67:1 | (req, r ... \\n\\t});\\n} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:58:29:67:1 | (req, r ... \\n\\t});\\n} | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:58:29:67:1 | (req, r ... \\n\\t});\\n} | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:58:29:67:1 | (req, r ... \\n\\t});\\n} | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:58:29:67:1 | (req, r ... \\n\\t});\\n} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:58:29:67:1 | (req, r ... \\n\\t});\\n} | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:58:29:67:1 | (req, r ... \\n\\t});\\n} | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:58:29:67:1 | (req, r ... \\n\\t});\\n} | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:58:29:67:1 | (req, r ... \\n\\t});\\n} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:58:29:67:1 | (req, r ... \\n\\t});\\n} | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:58:29:67:1 | (req, r ... \\n\\t});\\n} | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:58:29:67:1 | (req, r ... \\n\\t});\\n} | Xss | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:58:29:67:1 | (req, r ... \\n\\t});\\n} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:58:29:67:1 | (req, r ... \\n\\t});\\n} | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:59:16:59:17 | {} | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:59:16:59:17 | {} | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:59:16:59:17 | {} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:59:16:59:17 | {} | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:59:16:59:17 | {} | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:59:16:59:17 | {} | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:59:16:59:17 | {} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:59:16:59:17 | {} | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:61:22:61:53 | 'mongod ... 7/test' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:61:22:61:53 | 'mongod ... 7/test' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:61:22:61:53 | 'mongod ... 7/test' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:61:22:61:53 | 'mongod ... 7/test' | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:61:22:61:53 | 'mongod ... 7/test' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:61:22:61:53 | 'mongod ... 7/test' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:61:22:61:53 | 'mongod ... 7/test' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:61:22:61:53 | 'mongod ... 7/test' | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:61:22:61:53 | 'mongod ... 7/test' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:61:22:61:53 | 'mongod ... 7/test' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:61:22:61:53 | 'mongod ... 7/test' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:61:22:61:53 | 'mongod ... 7/test' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:61:22:61:53 | 'mongod ... 7/test' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:61:22:61:53 | 'mongod ... 7/test' | Xss | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:61:22:61:53 | 'mongod ... 7/test' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:61:22:61:53 | 'mongod ... 7/test' | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:61:56:66:2 | (err, c ... ry);\\n\\t} | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:61:56:66:2 | (err, c ... ry);\\n\\t} | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:61:56:66:2 | (err, c ... ry);\\n\\t} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:61:56:66:2 | (err, c ... ry);\\n\\t} | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:61:56:66:2 | (err, c ... ry);\\n\\t} | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:61:56:66:2 | (err, c ... ry);\\n\\t} | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:61:56:66:2 | (err, c ... ry);\\n\\t} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:61:56:66:2 | (err, c ... ry);\\n\\t} | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:61:56:66:2 | (err, c ... ry);\\n\\t} | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:61:56:66:2 | (err, c ... ry);\\n\\t} | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:61:56:66:2 | (err, c ... ry);\\n\\t} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:61:56:66:2 | (err, c ... ry);\\n\\t} | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:61:56:66:2 | (err, c ... ry);\\n\\t} | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:61:56:66:2 | (err, c ... ry);\\n\\t} | Xss | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:61:56:66:2 | (err, c ... ry);\\n\\t} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:61:56:66:2 | (err, c ... ry);\\n\\t} | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:62:23:62:30 | "MASTER" | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:62:23:62:30 | "MASTER" | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:62:23:62:30 | "MASTER" | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:62:23:62:30 | "MASTER" | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:62:23:62:30 | "MASTER" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:62:23:62:30 | "MASTER" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:62:23:62:30 | "MASTER" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:62:23:62:30 | "MASTER" | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:62:23:62:30 | "MASTER" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:62:23:62:30 | "MASTER" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:62:23:62:30 | "MASTER" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:62:23:62:30 | "MASTER" | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:62:23:62:30 | "MASTER" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:62:23:62:30 | "MASTER" | Xss | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:62:23:62:30 | "MASTER" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:62:23:62:30 | "MASTER" | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:62:44:62:48 | 'doc' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:62:44:62:48 | 'doc' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:62:44:62:48 | 'doc' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:62:44:62:48 | 'doc' | NosqlInjection | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:62:44:62:48 | 'doc' | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:62:44:62:48 | 'doc' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:62:44:62:48 | 'doc' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:62:44:62:48 | 'doc' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:62:44:62:48 | 'doc' | SqlInjection | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:62:44:62:48 | 'doc' | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:62:44:62:48 | 'doc' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:62:44:62:48 | 'doc' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:62:44:62:48 | 'doc' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:62:44:62:48 | 'doc' | TaintedPath | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:62:44:62:48 | 'doc' | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:62:44:62:48 | 'doc' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:62:44:62:48 | 'doc' | Xss | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:62:44:62:48 | 'doc' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:62:44:62:48 | 'doc' | Xss | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:62:44:62:48 | 'doc' | Xss | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:65:12:65:16 | query | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:65:12:65:16 | query | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:65:12:65:16 | query | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:65:12:65:16 | query | NosqlInjection | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:69:10:69:29 | "/logs/count-by-tag" | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:69:10:69:29 | "/logs/count-by-tag" | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:69:10:69:29 | "/logs/count-by-tag" | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:69:10:69:29 | "/logs/count-by-tag" | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:69:10:69:29 | "/logs/count-by-tag" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:69:10:69:29 | "/logs/count-by-tag" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:69:10:69:29 | "/logs/count-by-tag" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:69:10:69:29 | "/logs/count-by-tag" | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:69:10:69:29 | "/logs/count-by-tag" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:69:10:69:29 | "/logs/count-by-tag" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:69:10:69:29 | "/logs/count-by-tag" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:69:10:69:29 | "/logs/count-by-tag" | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:69:10:69:29 | "/logs/count-by-tag" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:69:10:69:29 | "/logs/count-by-tag" | Xss | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:69:10:69:29 | "/logs/count-by-tag" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:69:10:69:29 | "/logs/count-by-tag" | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:69:32:86:1 | (req, r ... g });\\n} | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:69:32:86:1 | (req, r ... g });\\n} | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:69:32:86:1 | (req, r ... g });\\n} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:69:32:86:1 | (req, r ... g });\\n} | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:69:32:86:1 | (req, r ... g });\\n} | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:69:32:86:1 | (req, r ... g });\\n} | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:69:32:86:1 | (req, r ... g });\\n} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:69:32:86:1 | (req, r ... g });\\n} | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:69:32:86:1 | (req, r ... g });\\n} | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:69:32:86:1 | (req, r ... g });\\n} | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:69:32:86:1 | (req, r ... g });\\n} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:69:32:86:1 | (req, r ... g });\\n} | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:69:32:86:1 | (req, r ... g });\\n} | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:69:32:86:1 | (req, r ... g });\\n} | Xss | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:69:32:86:1 | (req, r ... g });\\n} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:69:32:86:1 | (req, r ... g });\\n} | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:72:23:72:40 | process.env.DB_URL | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:72:23:72:40 | process.env.DB_URL | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:72:23:72:40 | process.env.DB_URL | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:72:23:72:40 | process.env.DB_URL | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:72:23:72:40 | process.env.DB_URL | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:72:23:72:40 | process.env.DB_URL | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:72:23:72:40 | process.env.DB_URL | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:72:23:72:40 | process.env.DB_URL | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:72:23:72:40 | process.env.DB_URL | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:72:23:72:40 | process.env.DB_URL | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:72:23:72:40 | process.env.DB_URL | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:72:23:72:40 | process.env.DB_URL | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:72:23:72:40 | process.env.DB_URL | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:72:23:72:40 | process.env.DB_URL | Xss | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:72:23:72:40 | process.env.DB_URL | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:72:23:72:40 | process.env.DB_URL | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:72:43:72:44 | {} | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:72:43:72:44 | {} | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:72:43:72:44 | {} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:72:43:72:44 | {} | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:72:43:72:44 | {} | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:72:43:72:44 | {} | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:72:43:72:44 | {} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:72:43:72:44 | {} | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:72:43:72:44 | {} | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:72:43:72:44 | {} | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:72:43:72:44 | {} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:72:43:72:44 | {} | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:72:43:72:44 | {} | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:72:43:72:44 | {} | Xss | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:72:43:72:44 | {} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:72:43:72:44 | {} | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:72:47:78:3 | (err, c ... });\\n  } | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:72:47:78:3 | (err, c ... });\\n  } | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:72:47:78:3 | (err, c ... });\\n  } | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:72:47:78:3 | (err, c ... });\\n  } | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:72:47:78:3 | (err, c ... });\\n  } | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:72:47:78:3 | (err, c ... });\\n  } | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:72:47:78:3 | (err, c ... });\\n  } | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:72:47:78:3 | (err, c ... });\\n  } | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:72:47:78:3 | (err, c ... });\\n  } | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:72:47:78:3 | (err, c ... });\\n  } | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:72:47:78:3 | (err, c ... });\\n  } | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:72:47:78:3 | (err, c ... });\\n  } | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:72:47:78:3 | (err, c ... });\\n  } | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:72:47:78:3 | (err, c ... });\\n  } | Xss | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:72:47:78:3 | (err, c ... });\\n  } | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:72:47:78:3 | (err, c ... });\\n  } | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:74:11:74:29 | process.env.DB_NAME | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:74:11:74:29 | process.env.DB_NAME | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:74:11:74:29 | process.env.DB_NAME | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:74:11:74:29 | process.env.DB_NAME | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:74:11:74:29 | process.env.DB_NAME | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:74:11:74:29 | process.env.DB_NAME | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:74:11:74:29 | process.env.DB_NAME | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:74:11:74:29 | process.env.DB_NAME | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:74:11:74:29 | process.env.DB_NAME | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:74:11:74:29 | process.env.DB_NAME | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:74:11:74:29 | process.env.DB_NAME | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:74:11:74:29 | process.env.DB_NAME | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:74:11:74:29 | process.env.DB_NAME | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:74:11:74:29 | process.env.DB_NAME | Xss | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:74:11:74:29 | process.env.DB_NAME | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:74:11:74:29 | process.env.DB_NAME | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:75:19:75:24 | "logs" | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:75:19:75:24 | "logs" | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:75:19:75:24 | "logs" | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:75:19:75:24 | "logs" | NosqlInjection | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:75:19:75:24 | "logs" | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:75:19:75:24 | "logs" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:75:19:75:24 | "logs" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:75:19:75:24 | "logs" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:75:19:75:24 | "logs" | SqlInjection | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:75:19:75:24 | "logs" | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:75:19:75:24 | "logs" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:75:19:75:24 | "logs" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:75:19:75:24 | "logs" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:75:19:75:24 | "logs" | TaintedPath | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:75:19:75:24 | "logs" | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:75:19:75:24 | "logs" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:75:19:75:24 | "logs" | Xss | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:75:19:75:24 | "logs" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:75:19:75:24 | "logs" | Xss | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:75:19:75:24 | "logs" | Xss | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:77:14:77:26 | { tags: tag } | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:77:14:77:26 | { tags: tag } | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:77:14:77:26 | { tags: tag } | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:77:14:77:26 | { tags: tag } | NosqlInjection | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:77:22:77:24 | tag | SqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:77:22:77:24 | tag | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:77:22:77:24 | tag | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:77:22:77:24 | tag | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:77:22:77:24 | tag | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:77:22:77:24 | tag | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:77:22:77:24 | tag | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:77:22:77:24 | tag | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:77:22:77:24 | tag | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:77:22:77:24 | tag | Xss | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:77:22:77:24 | tag | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:77:22:77:24 | tag | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:80:29:80:38 | "./dbo.js" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:80:29:80:38 | "./dbo.js" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:80:29:80:38 | "./dbo.js" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:80:29:80:38 | "./dbo.js" | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:83:17:83:22 | "logs" | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:83:17:83:22 | "logs" | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:83:17:83:22 | "logs" | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:83:17:83:22 | "logs" | NosqlInjection | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:83:17:83:22 | "logs" | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:83:17:83:22 | "logs" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:83:17:83:22 | "logs" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:83:17:83:22 | "logs" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:83:17:83:22 | "logs" | SqlInjection | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:83:17:83:22 | "logs" | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:83:17:83:22 | "logs" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:83:17:83:22 | "logs" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:83:17:83:22 | "logs" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:83:17:83:22 | "logs" | TaintedPath | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:83:17:83:22 | "logs" | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:83:17:83:22 | "logs" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:83:17:83:22 | "logs" | Xss | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:83:17:83:22 | "logs" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:83:17:83:22 | "logs" | Xss | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:83:17:83:22 | "logs" | Xss | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:85:12:85:24 | { tags: tag } | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:85:12:85:24 | { tags: tag } | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:85:12:85:24 | { tags: tag } | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:85:12:85:24 | { tags: tag } | NosqlInjection | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:85:20:85:22 | tag | SqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:85:20:85:22 | tag | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:85:20:85:22 | tag | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:85:20:85:22 | tag | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:85:20:85:22 | tag | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:85:20:85:22 | tag | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:85:20:85:22 | tag | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:85:20:85:22 | tag | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:85:20:85:22 | tag | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:85:20:85:22 | tag | Xss | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:85:20:85:22 | tag | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:85:20:85:22 | tag | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:89:9:89:14 | '/:id' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:89:9:89:14 | '/:id' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:89:9:89:14 | '/:id' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:89:9:89:14 | '/:id' | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:89:9:89:14 | '/:id' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:89:9:89:14 | '/:id' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:89:9:89:14 | '/:id' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:89:9:89:14 | '/:id' | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:89:9:89:14 | '/:id' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:89:9:89:14 | '/:id' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:89:9:89:14 | '/:id' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:89:9:89:14 | '/:id' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:89:9:89:14 | '/:id' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:89:9:89:14 | '/:id' | Xss | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:89:9:89:14 | '/:id' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:89:9:89:14 | '/:id' | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:89:17:91:1 | (req, r ... ram);\\n} | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:89:17:91:1 | (req, r ... ram);\\n} | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:89:17:91:1 | (req, r ... ram);\\n} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:89:17:91:1 | (req, r ... ram);\\n} | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:89:17:91:1 | (req, r ... ram);\\n} | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:89:17:91:1 | (req, r ... ram);\\n} | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:89:17:91:1 | (req, r ... ram);\\n} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:89:17:91:1 | (req, r ... ram);\\n} | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:89:17:91:1 | (req, r ... ram);\\n} | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:89:17:91:1 | (req, r ... ram);\\n} | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:89:17:91:1 | (req, r ... ram);\\n} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:89:17:91:1 | (req, r ... ram);\\n} | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:89:17:91:1 | (req, r ... ram);\\n} | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:89:17:91:1 | (req, r ... ram);\\n} | Xss | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:89:17:91:1 | (req, r ... ram);\\n} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:89:17:91:1 | (req, r ... ram);\\n} | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:93:15:93:31 | { id: params.id } | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:93:15:93:31 | { id: params.id } | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:93:15:93:31 | { id: params.id } | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:93:15:93:31 | { id: params.id } | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:93:15:93:31 | { id: params.id } | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:93:15:93:31 | { id: params.id } | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:93:15:93:31 | { id: params.id } | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:93:15:93:31 | { id: params.id } | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:94:23:94:54 | 'mongod ... 7/test' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:94:23:94:54 | 'mongod ... 7/test' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:94:23:94:54 | 'mongod ... 7/test' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:94:23:94:54 | 'mongod ... 7/test' | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:94:23:94:54 | 'mongod ... 7/test' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:94:23:94:54 | 'mongod ... 7/test' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:94:23:94:54 | 'mongod ... 7/test' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:94:23:94:54 | 'mongod ... 7/test' | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:94:23:94:54 | 'mongod ... 7/test' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:94:23:94:54 | 'mongod ... 7/test' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:94:23:94:54 | 'mongod ... 7/test' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:94:23:94:54 | 'mongod ... 7/test' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:94:23:94:54 | 'mongod ... 7/test' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:94:23:94:54 | 'mongod ... 7/test' | Xss | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:94:23:94:54 | 'mongod ... 7/test' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:94:23:94:54 | 'mongod ... 7/test' | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:94:57:99:3 | (err, d ... y);\\n  } | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:94:57:99:3 | (err, d ... y);\\n  } | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:94:57:99:3 | (err, d ... y);\\n  } | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:94:57:99:3 | (err, d ... y);\\n  } | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:94:57:99:3 | (err, d ... y);\\n  } | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:94:57:99:3 | (err, d ... y);\\n  } | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:94:57:99:3 | (err, d ... y);\\n  } | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:94:57:99:3 | (err, d ... y);\\n  } | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:94:57:99:3 | (err, d ... y);\\n  } | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:94:57:99:3 | (err, d ... y);\\n  } | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:94:57:99:3 | (err, d ... y);\\n  } | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:94:57:99:3 | (err, d ... y);\\n  } | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:94:57:99:3 | (err, d ... y);\\n  } | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:94:57:99:3 | (err, d ... y);\\n  } | Xss | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:94:57:99:3 | (err, d ... y);\\n  } | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:94:57:99:3 | (err, d ... y);\\n  } | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:95:29:95:33 | 'doc' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:95:29:95:33 | 'doc' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:95:29:95:33 | 'doc' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:95:29:95:33 | 'doc' | NosqlInjection | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:95:29:95:33 | 'doc' | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:95:29:95:33 | 'doc' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:95:29:95:33 | 'doc' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:95:29:95:33 | 'doc' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:95:29:95:33 | 'doc' | SqlInjection | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:95:29:95:33 | 'doc' | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:95:29:95:33 | 'doc' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:95:29:95:33 | 'doc' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:95:29:95:33 | 'doc' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:95:29:95:33 | 'doc' | TaintedPath | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:95:29:95:33 | 'doc' | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:95:29:95:33 | 'doc' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:95:29:95:33 | 'doc' | Xss | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:95:29:95:33 | 'doc' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:95:29:95:33 | 'doc' | Xss | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:95:29:95:33 | 'doc' | Xss | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:98:14:98:18 | query | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:98:14:98:18 | query | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:98:14:98:18 | query | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:98:14:98:18 | query | NosqlInjection | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:102:10:102:26 | '/documents/find' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:102:10:102:26 | '/documents/find' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:102:10:102:26 | '/documents/find' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:102:10:102:26 | '/documents/find' | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:102:10:102:26 | '/documents/find' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:102:10:102:26 | '/documents/find' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:102:10:102:26 | '/documents/find' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:102:10:102:26 | '/documents/find' | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:102:10:102:26 | '/documents/find' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:102:10:102:26 | '/documents/find' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:102:10:102:26 | '/documents/find' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:102:10:102:26 | '/documents/find' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:102:10:102:26 | '/documents/find' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:102:10:102:26 | '/documents/find' | Xss | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:102:10:102:26 | '/documents/find' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:102:10:102:26 | '/documents/find' | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:102:29:104:1 | (req, r ... ery);\\n} | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:102:29:104:1 | (req, r ... ery);\\n} | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:102:29:104:1 | (req, r ... ery);\\n} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:102:29:104:1 | (req, r ... ery);\\n} | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:102:29:104:1 | (req, r ... ery);\\n} | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:102:29:104:1 | (req, r ... ery);\\n} | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:102:29:104:1 | (req, r ... ery);\\n} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:102:29:104:1 | (req, r ... ery);\\n} | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:102:29:104:1 | (req, r ... ery);\\n} | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:102:29:104:1 | (req, r ... ery);\\n} | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:102:29:104:1 | (req, r ... ery);\\n} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:102:29:104:1 | (req, r ... ery);\\n} | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:102:29:104:1 | (req, r ... ery);\\n} | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:102:29:104:1 | (req, r ... ery);\\n} | Xss | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:102:29:104:1 | (req, r ... ery);\\n} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:102:29:104:1 | (req, r ... ery);\\n} | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:106:17:106:18 | {} | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:106:17:106:18 | {} | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:106:17:106:18 | {} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:106:17:106:18 | {} | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:106:17:106:18 | {} | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:106:17:106:18 | {} | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:106:17:106:18 | {} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:106:17:106:18 | {} | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:108:23:108:54 | 'mongod ... 7/test' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:108:23:108:54 | 'mongod ... 7/test' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:108:23:108:54 | 'mongod ... 7/test' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:108:23:108:54 | 'mongod ... 7/test' | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:108:23:108:54 | 'mongod ... 7/test' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:108:23:108:54 | 'mongod ... 7/test' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:108:23:108:54 | 'mongod ... 7/test' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:108:23:108:54 | 'mongod ... 7/test' | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:108:23:108:54 | 'mongod ... 7/test' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:108:23:108:54 | 'mongod ... 7/test' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:108:23:108:54 | 'mongod ... 7/test' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:108:23:108:54 | 'mongod ... 7/test' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:108:23:108:54 | 'mongod ... 7/test' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:108:23:108:54 | 'mongod ... 7/test' | Xss | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:108:23:108:54 | 'mongod ... 7/test' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:108:23:108:54 | 'mongod ... 7/test' | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:108:57:113:3 | (err, d ... y);\\n  } | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:108:57:113:3 | (err, d ... y);\\n  } | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:108:57:113:3 | (err, d ... y);\\n  } | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:108:57:113:3 | (err, d ... y);\\n  } | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:108:57:113:3 | (err, d ... y);\\n  } | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:108:57:113:3 | (err, d ... y);\\n  } | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:108:57:113:3 | (err, d ... y);\\n  } | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:108:57:113:3 | (err, d ... y);\\n  } | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:108:57:113:3 | (err, d ... y);\\n  } | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:108:57:113:3 | (err, d ... y);\\n  } | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:108:57:113:3 | (err, d ... y);\\n  } | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:108:57:113:3 | (err, d ... y);\\n  } | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:108:57:113:3 | (err, d ... y);\\n  } | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:108:57:113:3 | (err, d ... y);\\n  } | Xss | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:108:57:113:3 | (err, d ... y);\\n  } | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:108:57:113:3 | (err, d ... y);\\n  } | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:109:29:109:33 | 'doc' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:109:29:109:33 | 'doc' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:109:29:109:33 | 'doc' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:109:29:109:33 | 'doc' | NosqlInjection | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:109:29:109:33 | 'doc' | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:109:29:109:33 | 'doc' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:109:29:109:33 | 'doc' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:109:29:109:33 | 'doc' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:109:29:109:33 | 'doc' | SqlInjection | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:109:29:109:33 | 'doc' | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:109:29:109:33 | 'doc' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:109:29:109:33 | 'doc' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:109:29:109:33 | 'doc' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:109:29:109:33 | 'doc' | TaintedPath | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:109:29:109:33 | 'doc' | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:109:29:109:33 | 'doc' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:109:29:109:33 | 'doc' | Xss | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:109:29:109:33 | 'doc' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:109:29:109:33 | 'doc' | Xss | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:109:29:109:33 | 'doc' | Xss | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:112:14:112:18 | query | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:112:14:112:18 | query | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:112:14:112:18 | query | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:112:14:112:18 | query | NosqlInjection | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:1:25:1:33 | 'express' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:1:25:1:33 | 'express' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:1:25:1:33 | 'express' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:1:25:1:33 | 'express' | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:2:25:2:33 | 'mongodb' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:2:25:2:33 | 'mongodb' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:2:25:2:33 | 'mongodb' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:2:25:2:33 | 'mongodb' | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:3:28:3:40 | 'body-parser' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:3:28:3:40 | 'body-parser' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:3:28:3:40 | 'body-parser' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:3:28:3:40 | 'body-parser' | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:9:9:9:50 | bodyPar ... alse }) | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:9:9:9:50 | bodyPar ... alse }) | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:9:9:9:50 | bodyPar ... alse }) | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:9:9:9:50 | bodyPar ... alse }) | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:9:9:9:50 | bodyPar ... alse }) | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:9:9:9:50 | bodyPar ... alse }) | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:9:9:9:50 | bodyPar ... alse }) | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:9:9:9:50 | bodyPar ... alse }) | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:9:9:9:50 | bodyPar ... alse }) | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:9:9:9:50 | bodyPar ... alse }) | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:9:9:9:50 | bodyPar ... alse }) | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:9:9:9:50 | bodyPar ... alse }) | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:9:9:9:50 | bodyPar ... alse }) | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:9:9:9:50 | bodyPar ... alse }) | Xss | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:9:9:9:50 | bodyPar ... alse }) | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:9:9:9:50 | bodyPar ... alse }) | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:9:31:9:49 | { extended: false } | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:9:31:9:49 | { extended: false } | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:9:31:9:49 | { extended: false } | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:9:31:9:49 | { extended: false } | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:9:31:9:49 | { extended: false } | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:9:31:9:49 | { extended: false } | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:9:31:9:49 | { extended: false } | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:9:31:9:49 | { extended: false } | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:9:31:9:49 | { extended: false } | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:9:31:9:49 | { extended: false } | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:9:31:9:49 | { extended: false } | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:9:31:9:49 | { extended: false } | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:9:31:9:49 | { extended: false } | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:9:31:9:49 | { extended: false } | Xss | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:9:31:9:49 | { extended: false } | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:9:31:9:49 | { extended: false } | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:9:43:9:47 | false | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:9:43:9:47 | false | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:9:43:9:47 | false | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:9:43:9:47 | false | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:9:43:9:47 | false | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:9:43:9:47 | false | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:9:43:9:47 | false | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:9:43:9:47 | false | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:9:43:9:47 | false | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:9:43:9:47 | false | Xss | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:9:43:9:47 | false | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:9:43:9:47 | false | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:11:10:11:26 | '/documents/find' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:11:10:11:26 | '/documents/find' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:11:10:11:26 | '/documents/find' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:11:10:11:26 | '/documents/find' | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:11:10:11:26 | '/documents/find' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:11:10:11:26 | '/documents/find' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:11:10:11:26 | '/documents/find' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:11:10:11:26 | '/documents/find' | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:11:10:11:26 | '/documents/find' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:11:10:11:26 | '/documents/find' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:11:10:11:26 | '/documents/find' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:11:10:11:26 | '/documents/find' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:11:10:11:26 | '/documents/find' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:11:10:11:26 | '/documents/find' | Xss | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:11:10:11:26 | '/documents/find' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:11:10:11:26 | '/documents/find' | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:11:29:20:1 | (req, r ...   });\\n} | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:11:29:20:1 | (req, r ...   });\\n} | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:11:29:20:1 | (req, r ...   });\\n} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:11:29:20:1 | (req, r ...   });\\n} | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:11:29:20:1 | (req, r ...   });\\n} | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:11:29:20:1 | (req, r ...   });\\n} | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:11:29:20:1 | (req, r ...   });\\n} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:11:29:20:1 | (req, r ...   });\\n} | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:11:29:20:1 | (req, r ...   });\\n} | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:11:29:20:1 | (req, r ...   });\\n} | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:11:29:20:1 | (req, r ...   });\\n} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:11:29:20:1 | (req, r ...   });\\n} | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:11:29:20:1 | (req, r ...   });\\n} | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:11:29:20:1 | (req, r ...   });\\n} | Xss | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:11:29:20:1 | (req, r ...   });\\n} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:11:29:20:1 | (req, r ...   });\\n} | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:12:19:12:20 | {} | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:12:19:12:20 | {} | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:12:19:12:20 | {} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:12:19:12:20 | {} | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:12:19:12:20 | {} | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:12:19:12:20 | {} | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:12:19:12:20 | {} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:12:19:12:20 | {} | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:14:25:14:56 | 'mongod ... 7/test' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:14:25:14:56 | 'mongod ... 7/test' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:14:25:14:56 | 'mongod ... 7/test' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:14:25:14:56 | 'mongod ... 7/test' | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:14:25:14:56 | 'mongod ... 7/test' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:14:25:14:56 | 'mongod ... 7/test' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:14:25:14:56 | 'mongod ... 7/test' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:14:25:14:56 | 'mongod ... 7/test' | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:14:25:14:56 | 'mongod ... 7/test' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:14:25:14:56 | 'mongod ... 7/test' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:14:25:14:56 | 'mongod ... 7/test' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:14:25:14:56 | 'mongod ... 7/test' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:14:25:14:56 | 'mongod ... 7/test' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:14:25:14:56 | 'mongod ... 7/test' | Xss | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:14:25:14:56 | 'mongod ... 7/test' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:14:25:14:56 | 'mongod ... 7/test' | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:14:59:19:5 | (err, d ... ;\\n    } | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:14:59:19:5 | (err, d ... ;\\n    } | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:14:59:19:5 | (err, d ... ;\\n    } | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:14:59:19:5 | (err, d ... ;\\n    } | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:14:59:19:5 | (err, d ... ;\\n    } | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:14:59:19:5 | (err, d ... ;\\n    } | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:14:59:19:5 | (err, d ... ;\\n    } | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:14:59:19:5 | (err, d ... ;\\n    } | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:14:59:19:5 | (err, d ... ;\\n    } | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:14:59:19:5 | (err, d ... ;\\n    } | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:14:59:19:5 | (err, d ... ;\\n    } | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:14:59:19:5 | (err, d ... ;\\n    } | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:14:59:19:5 | (err, d ... ;\\n    } | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:14:59:19:5 | (err, d ... ;\\n    } | Xss | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:14:59:19:5 | (err, d ... ;\\n    } | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:14:59:19:5 | (err, d ... ;\\n    } | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:15:31:15:35 | 'doc' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:15:31:15:35 | 'doc' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:15:31:15:35 | 'doc' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:15:31:15:35 | 'doc' | NosqlInjection | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:15:31:15:35 | 'doc' | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:15:31:15:35 | 'doc' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:15:31:15:35 | 'doc' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:15:31:15:35 | 'doc' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:15:31:15:35 | 'doc' | SqlInjection | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:15:31:15:35 | 'doc' | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:15:31:15:35 | 'doc' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:15:31:15:35 | 'doc' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:15:31:15:35 | 'doc' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:15:31:15:35 | 'doc' | TaintedPath | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:15:31:15:35 | 'doc' | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:15:31:15:35 | 'doc' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:15:31:15:35 | 'doc' | Xss | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:15:31:15:35 | 'doc' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:15:31:15:35 | 'doc' | Xss | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:15:31:15:35 | 'doc' | Xss | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:18:16:18:20 | query | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:18:16:18:20 | query | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:18:16:18:20 | query | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:18:16:18:20 | query | NosqlInjection | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:22:10:22:26 | '/documents/find' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:22:10:22:26 | '/documents/find' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:22:10:22:26 | '/documents/find' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:22:10:22:26 | '/documents/find' | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:22:10:22:26 | '/documents/find' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:22:10:22:26 | '/documents/find' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:22:10:22:26 | '/documents/find' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:22:10:22:26 | '/documents/find' | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:22:10:22:26 | '/documents/find' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:22:10:22:26 | '/documents/find' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:22:10:22:26 | '/documents/find' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:22:10:22:26 | '/documents/find' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:22:10:22:26 | '/documents/find' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:22:10:22:26 | '/documents/find' | Xss | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:22:10:22:26 | '/documents/find' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:22:10:22:26 | '/documents/find' | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:22:29:31:1 | (req, r ...   });\\n} | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:22:29:31:1 | (req, r ...   });\\n} | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:22:29:31:1 | (req, r ...   });\\n} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:22:29:31:1 | (req, r ...   });\\n} | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:22:29:31:1 | (req, r ...   });\\n} | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:22:29:31:1 | (req, r ...   });\\n} | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:22:29:31:1 | (req, r ...   });\\n} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:22:29:31:1 | (req, r ...   });\\n} | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:22:29:31:1 | (req, r ...   });\\n} | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:22:29:31:1 | (req, r ...   });\\n} | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:22:29:31:1 | (req, r ...   });\\n} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:22:29:31:1 | (req, r ...   });\\n} | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:22:29:31:1 | (req, r ...   });\\n} | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:22:29:31:1 | (req, r ...   });\\n} | Xss | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:22:29:31:1 | (req, r ...   });\\n} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:22:29:31:1 | (req, r ...   });\\n} | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:23:19:23:20 | {} | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:23:19:23:20 | {} | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:23:19:23:20 | {} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:23:19:23:20 | {} | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:23:19:23:20 | {} | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:23:19:23:20 | {} | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:23:19:23:20 | {} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:23:19:23:20 | {} | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:25:25:25:56 | 'mongod ... 7/test' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:25:25:25:56 | 'mongod ... 7/test' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:25:25:25:56 | 'mongod ... 7/test' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:25:25:25:56 | 'mongod ... 7/test' | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:25:25:25:56 | 'mongod ... 7/test' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:25:25:25:56 | 'mongod ... 7/test' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:25:25:25:56 | 'mongod ... 7/test' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:25:25:25:56 | 'mongod ... 7/test' | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:25:25:25:56 | 'mongod ... 7/test' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:25:25:25:56 | 'mongod ... 7/test' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:25:25:25:56 | 'mongod ... 7/test' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:25:25:25:56 | 'mongod ... 7/test' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:25:25:25:56 | 'mongod ... 7/test' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:25:25:25:56 | 'mongod ... 7/test' | Xss | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:25:25:25:56 | 'mongod ... 7/test' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:25:25:25:56 | 'mongod ... 7/test' | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:25:59:30:5 | (err, d ... ;\\n    } | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:25:59:30:5 | (err, d ... ;\\n    } | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:25:59:30:5 | (err, d ... ;\\n    } | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:25:59:30:5 | (err, d ... ;\\n    } | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:25:59:30:5 | (err, d ... ;\\n    } | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:25:59:30:5 | (err, d ... ;\\n    } | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:25:59:30:5 | (err, d ... ;\\n    } | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:25:59:30:5 | (err, d ... ;\\n    } | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:25:59:30:5 | (err, d ... ;\\n    } | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:25:59:30:5 | (err, d ... ;\\n    } | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:25:59:30:5 | (err, d ... ;\\n    } | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:25:59:30:5 | (err, d ... ;\\n    } | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:25:59:30:5 | (err, d ... ;\\n    } | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:25:59:30:5 | (err, d ... ;\\n    } | Xss | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:25:59:30:5 | (err, d ... ;\\n    } | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:25:59:30:5 | (err, d ... ;\\n    } | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:26:31:26:35 | 'doc' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:26:31:26:35 | 'doc' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:26:31:26:35 | 'doc' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:26:31:26:35 | 'doc' | NosqlInjection | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:26:31:26:35 | 'doc' | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:26:31:26:35 | 'doc' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:26:31:26:35 | 'doc' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:26:31:26:35 | 'doc' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:26:31:26:35 | 'doc' | SqlInjection | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:26:31:26:35 | 'doc' | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:26:31:26:35 | 'doc' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:26:31:26:35 | 'doc' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:26:31:26:35 | 'doc' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:26:31:26:35 | 'doc' | TaintedPath | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:26:31:26:35 | 'doc' | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:26:31:26:35 | 'doc' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:26:31:26:35 | 'doc' | Xss | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:26:31:26:35 | 'doc' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:26:31:26:35 | 'doc' | Xss | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:26:31:26:35 | 'doc' | Xss | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:29:16:29:20 | query | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:29:16:29:20 | query | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:29:16:29:20 | query | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:29:16:29:20 | query | NosqlInjection | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:2:25:2:33 | 'express' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:2:25:2:33 | 'express' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:2:25:2:33 | 'express' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:2:25:2:33 | 'express' | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:3:28:3:40 | 'body-parser' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:3:28:3:40 | 'body-parser' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:3:28:3:40 | 'body-parser' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:3:28:3:40 | 'body-parser' | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:4:26:4:35 | 'mongoose' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:4:26:4:35 | 'mongoose' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:4:26:4:35 | 'mongoose' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:4:26:4:35 | 'mongoose' | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:6:18:6:50 | 'mongod ... table1' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:6:18:6:50 | 'mongod ... table1' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:6:18:6:50 | 'mongod ... table1' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:6:18:6:50 | 'mongod ... table1' | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:6:18:6:50 | 'mongod ... table1' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:6:18:6:50 | 'mongod ... table1' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:6:18:6:50 | 'mongod ... table1' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:6:18:6:50 | 'mongod ... table1' | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:6:18:6:50 | 'mongod ... table1' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:6:18:6:50 | 'mongod ... table1' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:6:18:6:50 | 'mongod ... table1' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:6:18:6:50 | 'mongod ... table1' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:6:18:6:50 | 'mongod ... table1' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:6:18:6:50 | 'mongod ... table1' | Xss | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:6:18:6:50 | 'mongod ... table1' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:6:18:6:50 | 'mongod ... table1' | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:9:9:9:25 | BodyParser.json() | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:9:9:9:25 | BodyParser.json() | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:9:9:9:25 | BodyParser.json() | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:9:9:9:25 | BodyParser.json() | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:9:9:9:25 | BodyParser.json() | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:9:9:9:25 | BodyParser.json() | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:9:9:9:25 | BodyParser.json() | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:9:9:9:25 | BodyParser.json() | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:9:9:9:25 | BodyParser.json() | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:9:9:9:25 | BodyParser.json() | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:9:9:9:25 | BodyParser.json() | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:9:9:9:25 | BodyParser.json() | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:9:9:9:25 | BodyParser.json() | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:9:9:9:25 | BodyParser.json() | Xss | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:9:9:9:25 | BodyParser.json() | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:9:9:9:25 | BodyParser.json() | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:11:33:11:42 | 'Document' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:11:33:11:42 | 'Document' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:11:33:11:42 | 'Document' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:11:33:11:42 | 'Document' | NosqlInjection | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:11:33:11:42 | 'Document' | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:11:33:11:42 | 'Document' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:11:33:11:42 | 'Document' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:11:33:11:42 | 'Document' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:11:33:11:42 | 'Document' | SqlInjection | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:11:33:11:42 | 'Document' | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:11:33:11:42 | 'Document' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:11:33:11:42 | 'Document' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:11:33:11:42 | 'Document' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:11:33:11:42 | 'Document' | TaintedPath | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:11:33:11:42 | 'Document' | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:11:33:11:42 | 'Document' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:11:33:11:42 | 'Document' | Xss | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:11:33:11:42 | 'Document' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:11:33:11:42 | 'Document' | Xss | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:11:33:11:42 | 'Document' | Xss | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:11:45:17:1 | {\\n    t ... tring\\n} | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:11:45:17:1 | {\\n    t ... tring\\n} | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:11:45:17:1 | {\\n    t ... tring\\n} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:11:45:17:1 | {\\n    t ... tring\\n} | NosqlInjection | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:11:45:17:1 | {\\n    t ... tring\\n} | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:11:45:17:1 | {\\n    t ... tring\\n} | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:11:45:17:1 | {\\n    t ... tring\\n} | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:11:45:17:1 | {\\n    t ... tring\\n} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:11:45:17:1 | {\\n    t ... tring\\n} | SqlInjection | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:11:45:17:1 | {\\n    t ... tring\\n} | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:11:45:17:1 | {\\n    t ... tring\\n} | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:11:45:17:1 | {\\n    t ... tring\\n} | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:11:45:17:1 | {\\n    t ... tring\\n} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:11:45:17:1 | {\\n    t ... tring\\n} | TaintedPath | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:11:45:17:1 | {\\n    t ... tring\\n} | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:11:45:17:1 | {\\n    t ... tring\\n} | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:11:45:17:1 | {\\n    t ... tring\\n} | Xss | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:11:45:17:1 | {\\n    t ... tring\\n} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:11:45:17:1 | {\\n    t ... tring\\n} | Xss | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:11:45:17:1 | {\\n    t ... tring\\n} | Xss | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:12:12:15:5 | {\\n      ... e\\n    } | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:12:12:15:5 | {\\n      ... e\\n    } | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:12:12:15:5 | {\\n      ... e\\n    } | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:12:12:15:5 | {\\n      ... e\\n    } | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:12:12:15:5 | {\\n      ... e\\n    } | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:12:12:15:5 | {\\n      ... e\\n    } | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:12:12:15:5 | {\\n      ... e\\n    } | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:12:12:15:5 | {\\n      ... e\\n    } | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:12:12:15:5 | {\\n      ... e\\n    } | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:12:12:15:5 | {\\n      ... e\\n    } | Xss | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:12:12:15:5 | {\\n      ... e\\n    } | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:12:12:15:5 | {\\n      ... e\\n    } | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:13:15:13:20 | String | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:13:15:13:20 | String | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:13:15:13:20 | String | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:13:15:13:20 | String | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:13:15:13:20 | String | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:13:15:13:20 | String | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:13:15:13:20 | String | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:13:15:13:20 | String | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:13:15:13:20 | String | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:13:15:13:20 | String | Xss | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:13:15:13:20 | String | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:13:15:13:20 | String | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:14:17:14:20 | true | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:14:17:14:20 | true | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:14:17:14:20 | true | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:14:17:14:20 | true | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:14:17:14:20 | true | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:14:17:14:20 | true | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:14:17:14:20 | true | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:14:17:14:20 | true | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:14:17:14:20 | true | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:14:17:14:20 | true | Xss | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:14:17:14:20 | true | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:14:17:14:20 | true | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:16:11:16:16 | String | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:16:11:16:16 | String | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:16:11:16:16 | String | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:16:11:16:16 | String | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:16:11:16:16 | String | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:16:11:16:16 | String | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:16:11:16:16 | String | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:16:11:16:16 | String | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:16:11:16:16 | String | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:16:11:16:16 | String | Xss | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:16:11:16:16 | String | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:16:11:16:16 | String | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:19:10:19:26 | '/documents/find' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:19:10:19:26 | '/documents/find' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:19:10:19:26 | '/documents/find' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:19:10:19:26 | '/documents/find' | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:19:10:19:26 | '/documents/find' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:19:10:19:26 | '/documents/find' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:19:10:19:26 | '/documents/find' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:19:10:19:26 | '/documents/find' | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:19:10:19:26 | '/documents/find' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:19:10:19:26 | '/documents/find' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:19:10:19:26 | '/documents/find' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:19:10:19:26 | '/documents/find' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:19:10:19:26 | '/documents/find' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:19:10:19:26 | '/documents/find' | Xss | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:19:10:19:26 | '/documents/find' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:19:10:19:26 | '/documents/find' | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:19:29:132:1 | (req, r ... // OK\\n} | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:19:29:132:1 | (req, r ... // OK\\n} | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:19:29:132:1 | (req, r ... // OK\\n} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:19:29:132:1 | (req, r ... // OK\\n} | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:19:29:132:1 | (req, r ... // OK\\n} | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:19:29:132:1 | (req, r ... // OK\\n} | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:19:29:132:1 | (req, r ... // OK\\n} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:19:29:132:1 | (req, r ... // OK\\n} | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:19:29:132:1 | (req, r ... // OK\\n} | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:19:29:132:1 | (req, r ... // OK\\n} | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:19:29:132:1 | (req, r ... // OK\\n} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:19:29:132:1 | (req, r ... // OK\\n} | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:19:29:132:1 | (req, r ... // OK\\n} | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:19:29:132:1 | (req, r ... // OK\\n} | Xss | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:19:29:132:1 | (req, r ... // OK\\n} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:19:29:132:1 | (req, r ... // OK\\n} | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:20:19:20:20 | {} | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:20:19:20:20 | {} | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:20:19:20:20 | {} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:20:19:20:20 | {} | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:20:19:20:20 | {} | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:20:19:20:20 | {} | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:20:19:20:20 | {} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:20:19:20:20 | {} | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:24:24:24:30 | [query] | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:24:24:24:30 | [query] | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:24:24:24:30 | [query] | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:24:24:24:30 | [query] | NosqlInjection | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:24:25:24:29 | query | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:24:25:24:29 | query | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:24:25:24:29 | query | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:24:25:24:29 | query | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:24:25:24:29 | query | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:24:25:24:29 | query | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:24:25:24:29 | query | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:24:25:24:29 | query | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:24:25:24:29 | query | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:24:25:24:29 | query | Xss | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:24:25:24:29 | query | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:24:25:24:29 | query | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:27:20:27:24 | query | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:27:20:27:24 | query | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:27:20:27:24 | query | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:27:20:27:24 | query | NosqlInjection | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:30:25:30:29 | query | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:30:25:30:29 | query | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:30:25:30:29 | query | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:30:25:30:29 | query | NosqlInjection | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:33:24:33:28 | query | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:33:24:33:28 | query | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:33:24:33:28 | query | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:33:24:33:28 | query | NosqlInjection | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:36:31:36:35 | query | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:36:31:36:35 | query | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:36:31:36:35 | query | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:36:31:36:35 | query | NosqlInjection | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:39:19:39:23 | query | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:39:19:39:23 | query | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:39:19:39:23 | query | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:39:19:39:23 | query | NosqlInjection | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:42:22:42:26 | query | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:42:22:42:26 | query | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:42:22:42:26 | query | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:42:22:42:26 | query | NosqlInjection | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:45:31:45:35 | query | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:45:31:45:35 | query | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:45:31:45:35 | query | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:45:31:45:35 | query | NosqlInjection | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:48:31:48:35 | query | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:48:31:48:35 | query | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:48:31:48:35 | query | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:48:31:48:35 | query | NosqlInjection | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:51:31:51:35 | query | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:51:31:51:35 | query | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:51:31:51:35 | query | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:51:31:51:35 | query | NosqlInjection | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:54:25:54:29 | query | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:54:25:54:29 | query | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:54:25:54:29 | query | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:54:25:54:29 | query | NosqlInjection | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:57:21:57:25 | query | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:57:21:57:25 | query | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:57:21:57:25 | query | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:57:21:57:25 | query | NosqlInjection | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:60:25:60:29 | query | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:60:25:60:29 | query | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:60:25:60:29 | query | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:60:25:60:29 | query | NosqlInjection | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:63:21:63:25 | query | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:63:21:63:25 | query | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:63:21:63:25 | query | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:63:21:63:25 | query | NosqlInjection | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:63:33:63:33 | X | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:63:33:63:33 | X | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:63:33:63:33 | X | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:63:33:63:33 | X | NosqlInjection | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:63:33:63:33 | X | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:63:33:63:33 | X | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:63:33:63:33 | X | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:63:33:63:33 | X | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:63:33:63:33 | X | SqlInjection | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:63:33:63:33 | X | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:63:33:63:33 | X | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:63:33:63:33 | X | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:63:33:63:33 | X | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:63:33:63:33 | X | TaintedPath | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:63:33:63:33 | X | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:63:33:63:33 | X | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:63:33:63:33 | X | Xss | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:63:33:63:33 | X | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:63:33:63:33 | X | Xss | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:63:33:63:33 | X | Xss | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:65:29:65:29 | X | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:65:29:65:29 | X | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:65:29:65:29 | X | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:65:29:65:29 | X | NosqlInjection | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:65:32:65:36 | query | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:65:32:65:36 | query | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:65:32:65:36 | query | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:65:32:65:36 | query | NosqlInjection | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:65:39:65:50 | function(){} | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:65:39:65:50 | function(){} | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:65:39:65:50 | function(){} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:65:39:65:50 | function(){} | NosqlInjection | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:65:39:65:50 | function(){} | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:65:39:65:50 | function(){} | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:65:39:65:50 | function(){} | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:65:39:65:50 | function(){} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:65:39:65:50 | function(){} | SqlInjection | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:65:39:65:50 | function(){} | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:65:39:65:50 | function(){} | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:65:39:65:50 | function(){} | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:65:39:65:50 | function(){} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:65:39:65:50 | function(){} | TaintedPath | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:65:39:65:50 | function(){} | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:65:39:65:50 | function(){} | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:65:39:65:50 | function(){} | Xss | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:65:39:65:50 | function(){} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:65:39:65:50 | function(){} | Xss | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:65:39:65:50 | function(){} | Xss | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:67:27:67:31 | query | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:67:27:67:31 | query | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:67:27:67:31 | query | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:67:27:67:31 | query | NosqlInjection | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:68:8:68:12 | query | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:68:8:68:12 | query | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:68:8:68:12 | query | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:68:8:68:12 | query | NosqlInjection | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:68:15:68:26 | function(){} | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:68:15:68:26 | function(){} | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:68:15:68:26 | function(){} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:68:15:68:26 | function(){} | NosqlInjection | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:68:15:68:26 | function(){} | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:68:15:68:26 | function(){} | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:68:15:68:26 | function(){} | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:68:15:68:26 | function(){} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:68:15:68:26 | function(){} | SqlInjection | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:68:15:68:26 | function(){} | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:68:15:68:26 | function(){} | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:68:15:68:26 | function(){} | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:68:15:68:26 | function(){} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:68:15:68:26 | function(){} | TaintedPath | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:68:15:68:26 | function(){} | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:68:15:68:26 | function(){} | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:68:15:68:26 | function(){} | Xss | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:68:15:68:26 | function(){} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:68:15:68:26 | function(){} | Xss | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:68:15:68:26 | function(){} | Xss | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:71:20:71:24 | query | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:71:20:71:24 | query | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:71:20:71:24 | query | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:71:20:71:24 | query | NosqlInjection | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:72:16:72:20 | query | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:72:16:72:20 | query | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:72:16:72:20 | query | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:72:16:72:20 | query | NosqlInjection | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:73:8:73:12 | query | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:73:8:73:12 | query | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:73:8:73:12 | query | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:73:8:73:12 | query | NosqlInjection | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:74:7:74:11 | query | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:74:7:74:11 | query | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:74:7:74:11 | query | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:74:7:74:11 | query | NosqlInjection | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:75:16:75:20 | query | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:75:16:75:20 | query | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:75:16:75:20 | query | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:75:16:75:20 | query | NosqlInjection | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:76:12:76:16 | query | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:76:12:76:16 | query | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:76:12:76:16 | query | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:76:12:76:16 | query | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:76:12:76:16 | query | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:76:12:76:16 | query | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:76:12:76:16 | query | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:76:12:76:16 | query | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:76:12:76:16 | query | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:76:12:76:16 | query | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:76:12:76:16 | query | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:76:12:76:16 | query | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:76:12:76:16 | query | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:76:12:76:16 | query | Xss | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:76:12:76:16 | query | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:76:12:76:16 | query | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:77:10:77:14 | query | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:77:10:77:14 | query | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:77:10:77:14 | query | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:77:10:77:14 | query | NosqlInjection | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:81:28:81:28 | X | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:81:28:81:28 | X | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:81:28:81:28 | X | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:81:28:81:28 | X | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:81:28:81:28 | X | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:81:28:81:28 | X | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:81:28:81:28 | X | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:81:28:81:28 | X | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:81:28:81:28 | X | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:81:28:81:28 | X | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:81:28:81:28 | X | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:81:28:81:28 | X | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:81:28:81:28 | X | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:81:28:81:28 | X | Xss | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:81:28:81:28 | X | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:81:28:81:28 | X | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:81:37:81:41 | query | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:81:37:81:41 | query | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:81:37:81:41 | query | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:81:37:81:41 | query | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:81:37:81:41 | query | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:81:37:81:41 | query | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:81:37:81:41 | query | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:81:37:81:41 | query | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:81:37:81:41 | query | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:81:37:81:41 | query | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:81:37:81:41 | query | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:81:37:81:41 | query | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:81:37:81:41 | query | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:81:37:81:41 | query | Xss | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:81:37:81:41 | query | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:81:37:81:41 | query | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:82:28:82:28 | X | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:82:28:82:28 | X | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:82:28:82:28 | X | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:82:28:82:28 | X | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:82:28:82:28 | X | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:82:28:82:28 | X | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:82:28:82:28 | X | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:82:28:82:28 | X | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:82:28:82:28 | X | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:82:28:82:28 | X | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:82:28:82:28 | X | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:82:28:82:28 | X | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:82:28:82:28 | X | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:82:28:82:28 | X | Xss | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:82:28:82:28 | X | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:82:28:82:28 | X | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:82:37:82:37 | Y | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:82:37:82:37 | Y | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:82:37:82:37 | Y | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:82:37:82:37 | Y | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:82:37:82:37 | Y | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:82:37:82:37 | Y | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:82:37:82:37 | Y | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:82:37:82:37 | Y | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:82:37:82:37 | Y | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:82:37:82:37 | Y | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:82:37:82:37 | Y | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:82:37:82:37 | Y | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:82:37:82:37 | Y | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:82:37:82:37 | Y | Xss | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:82:37:82:37 | Y | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:82:37:82:37 | Y | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:82:46:82:50 | query | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:82:46:82:50 | query | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:82:46:82:50 | query | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:82:46:82:50 | query | NosqlInjection | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:83:28:83:28 | X | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:83:28:83:28 | X | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:83:28:83:28 | X | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:83:28:83:28 | X | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:83:28:83:28 | X | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:83:28:83:28 | X | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:83:28:83:28 | X | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:83:28:83:28 | X | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:83:28:83:28 | X | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:83:28:83:28 | X | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:83:28:83:28 | X | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:83:28:83:28 | X | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:83:28:83:28 | X | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:83:28:83:28 | X | Xss | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:83:28:83:28 | X | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:83:28:83:28 | X | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:83:47:83:51 | query | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:83:47:83:51 | query | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:83:47:83:51 | query | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:83:47:83:51 | query | NosqlInjection | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:85:19:85:19 | X | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:85:19:85:19 | X | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:85:19:85:19 | X | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:85:19:85:19 | X | NosqlInjection | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:85:22:85:51 | (err, r ... (query) | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:85:22:85:51 | (err, r ... (query) | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:85:22:85:51 | (err, r ... (query) | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:85:22:85:51 | (err, r ... (query) | NosqlInjection | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:85:22:85:51 | (err, r ... (query) | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:85:22:85:51 | (err, r ... (query) | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:85:22:85:51 | (err, r ... (query) | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:85:22:85:51 | (err, r ... (query) | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:85:22:85:51 | (err, r ... (query) | SqlInjection | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:85:22:85:51 | (err, r ... (query) | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:85:22:85:51 | (err, r ... (query) | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:85:22:85:51 | (err, r ... (query) | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:85:22:85:51 | (err, r ... (query) | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:85:22:85:51 | (err, r ... (query) | TaintedPath | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:85:22:85:51 | (err, r ... (query) | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:85:22:85:51 | (err, r ... (query) | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:85:22:85:51 | (err, r ... (query) | Xss | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:85:22:85:51 | (err, r ... (query) | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:85:22:85:51 | (err, r ... (query) | Xss | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:85:22:85:51 | (err, r ... (query) | Xss | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:85:46:85:50 | query | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:85:46:85:50 | query | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:85:46:85:50 | query | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:85:46:85:50 | query | NosqlInjection | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:86:19:86:19 | X | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:86:19:86:19 | X | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:86:19:86:19 | X | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:86:19:86:19 | X | NosqlInjection | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:86:22:86:51 | (err, r ... (query) | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:86:22:86:51 | (err, r ... (query) | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:86:22:86:51 | (err, r ... (query) | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:86:22:86:51 | (err, r ... (query) | NosqlInjection | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:86:22:86:51 | (err, r ... (query) | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:86:22:86:51 | (err, r ... (query) | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:86:22:86:51 | (err, r ... (query) | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:86:22:86:51 | (err, r ... (query) | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:86:22:86:51 | (err, r ... (query) | SqlInjection | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:86:22:86:51 | (err, r ... (query) | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:86:22:86:51 | (err, r ... (query) | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:86:22:86:51 | (err, r ... (query) | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:86:22:86:51 | (err, r ... (query) | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:86:22:86:51 | (err, r ... (query) | TaintedPath | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:86:22:86:51 | (err, r ... (query) | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:86:22:86:51 | (err, r ... (query) | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:86:22:86:51 | (err, r ... (query) | Xss | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:86:22:86:51 | (err, r ... (query) | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:86:22:86:51 | (err, r ... (query) | Xss | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:86:22:86:51 | (err, r ... (query) | Xss | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:86:46:86:50 | query | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:86:46:86:50 | query | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:86:46:86:50 | query | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:86:46:86:50 | query | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:86:46:86:50 | query | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:86:46:86:50 | query | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:86:46:86:50 | query | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:86:46:86:50 | query | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:86:46:86:50 | query | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:86:46:86:50 | query | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:86:46:86:50 | query | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:86:46:86:50 | query | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:86:46:86:50 | query | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:86:46:86:50 | query | Xss | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:86:46:86:50 | query | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:86:46:86:50 | query | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:87:19:87:19 | X | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:87:19:87:19 | X | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:87:19:87:19 | X | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:87:19:87:19 | X | NosqlInjection | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:87:27:87:56 | (err, r ... (query) | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:87:27:87:56 | (err, r ... (query) | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:87:27:87:56 | (err, r ... (query) | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:87:27:87:56 | (err, r ... (query) | NosqlInjection | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:87:27:87:56 | (err, r ... (query) | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:87:27:87:56 | (err, r ... (query) | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:87:27:87:56 | (err, r ... (query) | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:87:27:87:56 | (err, r ... (query) | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:87:27:87:56 | (err, r ... (query) | SqlInjection | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:87:27:87:56 | (err, r ... (query) | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:87:27:87:56 | (err, r ... (query) | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:87:27:87:56 | (err, r ... (query) | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:87:27:87:56 | (err, r ... (query) | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:87:27:87:56 | (err, r ... (query) | TaintedPath | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:87:27:87:56 | (err, r ... (query) | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:87:27:87:56 | (err, r ... (query) | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:87:27:87:56 | (err, r ... (query) | Xss | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:87:27:87:56 | (err, r ... (query) | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:87:27:87:56 | (err, r ... (query) | Xss | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:87:27:87:56 | (err, r ... (query) | Xss | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:87:51:87:55 | query | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:87:51:87:55 | query | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:87:51:87:55 | query | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:87:51:87:55 | query | NosqlInjection | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:88:19:88:19 | X | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:88:19:88:19 | X | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:88:19:88:19 | X | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:88:19:88:19 | X | NosqlInjection | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:88:27:88:56 | (err, r ... (query) | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:88:27:88:56 | (err, r ... (query) | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:88:27:88:56 | (err, r ... (query) | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:88:27:88:56 | (err, r ... (query) | NosqlInjection | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:88:27:88:56 | (err, r ... (query) | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:88:27:88:56 | (err, r ... (query) | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:88:27:88:56 | (err, r ... (query) | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:88:27:88:56 | (err, r ... (query) | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:88:27:88:56 | (err, r ... (query) | SqlInjection | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:88:27:88:56 | (err, r ... (query) | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:88:27:88:56 | (err, r ... (query) | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:88:27:88:56 | (err, r ... (query) | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:88:27:88:56 | (err, r ... (query) | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:88:27:88:56 | (err, r ... (query) | TaintedPath | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:88:27:88:56 | (err, r ... (query) | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:88:27:88:56 | (err, r ... (query) | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:88:27:88:56 | (err, r ... (query) | Xss | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:88:27:88:56 | (err, r ... (query) | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:88:27:88:56 | (err, r ... (query) | Xss | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:88:27:88:56 | (err, r ... (query) | Xss | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:88:51:88:55 | query | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:88:51:88:55 | query | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:88:51:88:55 | query | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:88:51:88:55 | query | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:88:51:88:55 | query | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:88:51:88:55 | query | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:88:51:88:55 | query | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:88:51:88:55 | query | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:88:51:88:55 | query | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:88:51:88:55 | query | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:88:51:88:55 | query | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:88:51:88:55 | query | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:88:51:88:55 | query | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:88:51:88:55 | query | Xss | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:88:51:88:55 | query | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:88:51:88:55 | query | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:89:19:89:19 | X | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:89:19:89:19 | X | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:89:19:89:19 | X | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:89:19:89:19 | X | NosqlInjection | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:89:27:89:51 | (res) = ... (query) | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:89:27:89:51 | (res) = ... (query) | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:89:27:89:51 | (res) = ... (query) | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:89:27:89:51 | (res) = ... (query) | NosqlInjection | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:89:27:89:51 | (res) = ... (query) | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:89:27:89:51 | (res) = ... (query) | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:89:27:89:51 | (res) = ... (query) | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:89:27:89:51 | (res) = ... (query) | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:89:27:89:51 | (res) = ... (query) | SqlInjection | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:89:27:89:51 | (res) = ... (query) | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:89:27:89:51 | (res) = ... (query) | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:89:27:89:51 | (res) = ... (query) | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:89:27:89:51 | (res) = ... (query) | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:89:27:89:51 | (res) = ... (query) | TaintedPath | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:89:27:89:51 | (res) = ... (query) | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:89:27:89:51 | (res) = ... (query) | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:89:27:89:51 | (res) = ... (query) | Xss | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:89:27:89:51 | (res) = ... (query) | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:89:27:89:51 | (res) = ... (query) | Xss | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:89:27:89:51 | (res) = ... (query) | Xss | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:89:46:89:50 | query | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:89:46:89:50 | query | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:89:46:89:50 | query | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:89:46:89:50 | query | NosqlInjection | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:90:19:90:19 | X | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:90:19:90:19 | X | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:90:19:90:19 | X | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:90:19:90:19 | X | NosqlInjection | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:90:27:90:27 | Y | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:90:27:90:27 | Y | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:90:27:90:27 | Y | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:90:27:90:27 | Y | NosqlInjection | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:90:27:90:27 | Y | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:90:27:90:27 | Y | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:90:27:90:27 | Y | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:90:27:90:27 | Y | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:90:27:90:27 | Y | SqlInjection | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:90:27:90:27 | Y | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:90:27:90:27 | Y | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:90:27:90:27 | Y | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:90:27:90:27 | Y | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:90:27:90:27 | Y | TaintedPath | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:90:27:90:27 | Y | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:90:27:90:27 | Y | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:90:27:90:27 | Y | Xss | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:90:27:90:27 | Y | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:90:27:90:27 | Y | Xss | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:90:27:90:27 | Y | Xss | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:90:30:90:54 | (err) = ... (query) | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:90:30:90:54 | (err) = ... (query) | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:90:30:90:54 | (err) = ... (query) | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:90:30:90:54 | (err) = ... (query) | NosqlInjection | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:90:30:90:54 | (err) = ... (query) | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:90:30:90:54 | (err) = ... (query) | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:90:30:90:54 | (err) = ... (query) | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:90:30:90:54 | (err) = ... (query) | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:90:30:90:54 | (err) = ... (query) | SqlInjection | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:90:30:90:54 | (err) = ... (query) | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:90:30:90:54 | (err) = ... (query) | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:90:30:90:54 | (err) = ... (query) | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:90:30:90:54 | (err) = ... (query) | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:90:30:90:54 | (err) = ... (query) | TaintedPath | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:90:30:90:54 | (err) = ... (query) | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:90:30:90:54 | (err) = ... (query) | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:90:30:90:54 | (err) = ... (query) | Xss | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:90:30:90:54 | (err) = ... (query) | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:90:30:90:54 | (err) = ... (query) | Xss | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:90:30:90:54 | (err) = ... (query) | Xss | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:90:49:90:53 | query | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:90:49:90:53 | query | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:90:49:90:53 | query | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:90:49:90:53 | query | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:90:49:90:53 | query | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:90:49:90:53 | query | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:90:49:90:53 | query | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:90:49:90:53 | query | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:90:49:90:53 | query | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:90:49:90:53 | query | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:90:49:90:53 | query | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:90:49:90:53 | query | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:90:49:90:53 | query | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:90:49:90:53 | query | Xss | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:90:49:90:53 | query | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:90:49:90:53 | query | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:92:16:92:16 | X | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:92:16:92:16 | X | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:92:16:92:16 | X | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:92:16:92:16 | X | NosqlInjection | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:92:19:92:51 | (err, r ... (query) | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:92:19:92:51 | (err, r ... (query) | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:92:19:92:51 | (err, r ... (query) | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:92:19:92:51 | (err, r ... (query) | NosqlInjection | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:92:19:92:51 | (err, r ... (query) | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:92:19:92:51 | (err, r ... (query) | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:92:19:92:51 | (err, r ... (query) | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:92:19:92:51 | (err, r ... (query) | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:92:19:92:51 | (err, r ... (query) | SqlInjection | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:92:19:92:51 | (err, r ... (query) | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:92:19:92:51 | (err, r ... (query) | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:92:19:92:51 | (err, r ... (query) | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:92:19:92:51 | (err, r ... (query) | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:92:19:92:51 | (err, r ... (query) | TaintedPath | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:92:19:92:51 | (err, r ... (query) | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:92:19:92:51 | (err, r ... (query) | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:92:19:92:51 | (err, r ... (query) | Xss | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:92:19:92:51 | (err, r ... (query) | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:92:19:92:51 | (err, r ... (query) | Xss | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:92:19:92:51 | (err, r ... (query) | Xss | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:92:46:92:50 | query | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:92:46:92:50 | query | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:92:46:92:50 | query | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:92:46:92:50 | query | NosqlInjection | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:93:16:93:16 | X | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:93:16:93:16 | X | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:93:16:93:16 | X | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:93:16:93:16 | X | NosqlInjection | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:93:19:93:48 | (err, r ... (query) | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:93:19:93:48 | (err, r ... (query) | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:93:19:93:48 | (err, r ... (query) | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:93:19:93:48 | (err, r ... (query) | NosqlInjection | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:93:19:93:48 | (err, r ... (query) | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:93:19:93:48 | (err, r ... (query) | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:93:19:93:48 | (err, r ... (query) | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:93:19:93:48 | (err, r ... (query) | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:93:19:93:48 | (err, r ... (query) | SqlInjection | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:93:19:93:48 | (err, r ... (query) | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:93:19:93:48 | (err, r ... (query) | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:93:19:93:48 | (err, r ... (query) | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:93:19:93:48 | (err, r ... (query) | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:93:19:93:48 | (err, r ... (query) | TaintedPath | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:93:19:93:48 | (err, r ... (query) | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:93:19:93:48 | (err, r ... (query) | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:93:19:93:48 | (err, r ... (query) | Xss | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:93:19:93:48 | (err, r ... (query) | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:93:19:93:48 | (err, r ... (query) | Xss | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:93:19:93:48 | (err, r ... (query) | Xss | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:93:43:93:47 | query | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:93:43:93:47 | query | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:93:43:93:47 | query | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:93:43:93:47 | query | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:93:43:93:47 | query | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:93:43:93:47 | query | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:93:43:93:47 | query | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:93:43:93:47 | query | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:93:43:93:47 | query | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:93:43:93:47 | query | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:93:43:93:47 | query | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:93:43:93:47 | query | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:93:43:93:47 | query | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:93:43:93:47 | query | Xss | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:93:43:93:47 | query | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:93:43:93:47 | query | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:94:16:94:16 | X | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:94:16:94:16 | X | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:94:16:94:16 | X | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:94:16:94:16 | X | NosqlInjection | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:94:24:94:56 | (err, r ... (query) | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:94:24:94:56 | (err, r ... (query) | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:94:24:94:56 | (err, r ... (query) | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:94:24:94:56 | (err, r ... (query) | NosqlInjection | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:94:24:94:56 | (err, r ... (query) | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:94:24:94:56 | (err, r ... (query) | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:94:24:94:56 | (err, r ... (query) | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:94:24:94:56 | (err, r ... (query) | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:94:24:94:56 | (err, r ... (query) | SqlInjection | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:94:24:94:56 | (err, r ... (query) | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:94:24:94:56 | (err, r ... (query) | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:94:24:94:56 | (err, r ... (query) | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:94:24:94:56 | (err, r ... (query) | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:94:24:94:56 | (err, r ... (query) | TaintedPath | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:94:24:94:56 | (err, r ... (query) | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:94:24:94:56 | (err, r ... (query) | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:94:24:94:56 | (err, r ... (query) | Xss | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:94:24:94:56 | (err, r ... (query) | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:94:24:94:56 | (err, r ... (query) | Xss | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:94:24:94:56 | (err, r ... (query) | Xss | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:94:51:94:55 | query | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:94:51:94:55 | query | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:94:51:94:55 | query | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:94:51:94:55 | query | NosqlInjection | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:95:16:95:16 | X | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:95:16:95:16 | X | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:95:16:95:16 | X | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:95:16:95:16 | X | NosqlInjection | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:95:24:95:53 | (err, r ... (query) | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:95:24:95:53 | (err, r ... (query) | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:95:24:95:53 | (err, r ... (query) | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:95:24:95:53 | (err, r ... (query) | NosqlInjection | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:95:24:95:53 | (err, r ... (query) | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:95:24:95:53 | (err, r ... (query) | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:95:24:95:53 | (err, r ... (query) | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:95:24:95:53 | (err, r ... (query) | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:95:24:95:53 | (err, r ... (query) | SqlInjection | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:95:24:95:53 | (err, r ... (query) | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:95:24:95:53 | (err, r ... (query) | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:95:24:95:53 | (err, r ... (query) | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:95:24:95:53 | (err, r ... (query) | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:95:24:95:53 | (err, r ... (query) | TaintedPath | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:95:24:95:53 | (err, r ... (query) | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:95:24:95:53 | (err, r ... (query) | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:95:24:95:53 | (err, r ... (query) | Xss | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:95:24:95:53 | (err, r ... (query) | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:95:24:95:53 | (err, r ... (query) | Xss | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:95:24:95:53 | (err, r ... (query) | Xss | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:95:48:95:52 | query | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:95:48:95:52 | query | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:95:48:95:52 | query | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:95:48:95:52 | query | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:95:48:95:52 | query | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:95:48:95:52 | query | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:95:48:95:52 | query | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:95:48:95:52 | query | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:95:48:95:52 | query | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:95:48:95:52 | query | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:95:48:95:52 | query | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:95:48:95:52 | query | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:95:48:95:52 | query | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:95:48:95:52 | query | Xss | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:95:48:95:52 | query | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:95:48:95:52 | query | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:96:16:96:16 | X | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:96:16:96:16 | X | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:96:16:96:16 | X | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:96:16:96:16 | X | NosqlInjection | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:96:24:96:51 | (res) = ... (query) | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:96:24:96:51 | (res) = ... (query) | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:96:24:96:51 | (res) = ... (query) | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:96:24:96:51 | (res) = ... (query) | NosqlInjection | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:96:24:96:51 | (res) = ... (query) | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:96:24:96:51 | (res) = ... (query) | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:96:24:96:51 | (res) = ... (query) | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:96:24:96:51 | (res) = ... (query) | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:96:24:96:51 | (res) = ... (query) | SqlInjection | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:96:24:96:51 | (res) = ... (query) | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:96:24:96:51 | (res) = ... (query) | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:96:24:96:51 | (res) = ... (query) | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:96:24:96:51 | (res) = ... (query) | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:96:24:96:51 | (res) = ... (query) | TaintedPath | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:96:24:96:51 | (res) = ... (query) | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:96:24:96:51 | (res) = ... (query) | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:96:24:96:51 | (res) = ... (query) | Xss | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:96:24:96:51 | (res) = ... (query) | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:96:24:96:51 | (res) = ... (query) | Xss | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:96:24:96:51 | (res) = ... (query) | Xss | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:96:46:96:50 | query | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:96:46:96:50 | query | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:96:46:96:50 | query | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:96:46:96:50 | query | NosqlInjection | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:97:16:97:16 | X | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:97:16:97:16 | X | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:97:16:97:16 | X | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:97:16:97:16 | X | NosqlInjection | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:97:24:97:24 | Y | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:97:24:97:24 | Y | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:97:24:97:24 | Y | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:97:24:97:24 | Y | NosqlInjection | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:97:24:97:24 | Y | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:97:24:97:24 | Y | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:97:24:97:24 | Y | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:97:24:97:24 | Y | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:97:24:97:24 | Y | SqlInjection | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:97:24:97:24 | Y | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:97:24:97:24 | Y | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:97:24:97:24 | Y | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:97:24:97:24 | Y | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:97:24:97:24 | Y | TaintedPath | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:97:24:97:24 | Y | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:97:24:97:24 | Y | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:97:24:97:24 | Y | Xss | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:97:24:97:24 | Y | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:97:24:97:24 | Y | Xss | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:97:24:97:24 | Y | Xss | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:97:27:97:51 | (err) = ... (query) | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:97:27:97:51 | (err) = ... (query) | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:97:27:97:51 | (err) = ... (query) | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:97:27:97:51 | (err) = ... (query) | NosqlInjection | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:97:27:97:51 | (err) = ... (query) | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:97:27:97:51 | (err) = ... (query) | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:97:27:97:51 | (err) = ... (query) | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:97:27:97:51 | (err) = ... (query) | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:97:27:97:51 | (err) = ... (query) | SqlInjection | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:97:27:97:51 | (err) = ... (query) | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:97:27:97:51 | (err) = ... (query) | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:97:27:97:51 | (err) = ... (query) | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:97:27:97:51 | (err) = ... (query) | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:97:27:97:51 | (err) = ... (query) | TaintedPath | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:97:27:97:51 | (err) = ... (query) | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:97:27:97:51 | (err) = ... (query) | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:97:27:97:51 | (err) = ... (query) | Xss | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:97:27:97:51 | (err) = ... (query) | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:97:27:97:51 | (err) = ... (query) | Xss | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:97:27:97:51 | (err) = ... (query) | Xss | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:97:46:97:50 | query | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:97:46:97:50 | query | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:97:46:97:50 | query | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:97:46:97:50 | query | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:97:46:97:50 | query | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:97:46:97:50 | query | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:97:46:97:50 | query | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:97:46:97:50 | query | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:97:46:97:50 | query | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:97:46:97:50 | query | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:97:46:97:50 | query | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:97:46:97:50 | query | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:97:46:97:50 | query | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:97:46:97:50 | query | Xss | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:97:46:97:50 | query | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:97:46:97:50 | query | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:99:17:99:17 | X | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:99:17:99:17 | X | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:99:17:99:17 | X | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:99:17:99:17 | X | NosqlInjection | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:99:20:99:49 | (err, r ... (query) | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:99:20:99:49 | (err, r ... (query) | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:99:20:99:49 | (err, r ... (query) | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:99:20:99:49 | (err, r ... (query) | NosqlInjection | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:99:20:99:49 | (err, r ... (query) | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:99:20:99:49 | (err, r ... (query) | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:99:20:99:49 | (err, r ... (query) | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:99:20:99:49 | (err, r ... (query) | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:99:20:99:49 | (err, r ... (query) | SqlInjection | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:99:20:99:49 | (err, r ... (query) | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:99:20:99:49 | (err, r ... (query) | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:99:20:99:49 | (err, r ... (query) | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:99:20:99:49 | (err, r ... (query) | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:99:20:99:49 | (err, r ... (query) | TaintedPath | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:99:20:99:49 | (err, r ... (query) | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:99:20:99:49 | (err, r ... (query) | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:99:20:99:49 | (err, r ... (query) | Xss | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:99:20:99:49 | (err, r ... (query) | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:99:20:99:49 | (err, r ... (query) | Xss | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:99:20:99:49 | (err, r ... (query) | Xss | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:99:44:99:48 | query | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:99:44:99:48 | query | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:99:44:99:48 | query | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:99:44:99:48 | query | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:99:44:99:48 | query | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:99:44:99:48 | query | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:99:44:99:48 | query | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:99:44:99:48 | query | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:99:44:99:48 | query | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:99:44:99:48 | query | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:99:44:99:48 | query | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:99:44:99:48 | query | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:99:44:99:48 | query | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:99:44:99:48 | query | Xss | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:99:44:99:48 | query | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:99:44:99:48 | query | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:102:53:102:62 | "constant" | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:102:53:102:62 | "constant" | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:102:53:102:62 | "constant" | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:102:53:102:62 | "constant" | NosqlInjection | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:111:14:111:18 | query | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:111:14:111:18 | query | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:111:14:111:18 | query | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:111:14:111:18 | query | NosqlInjection | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:113:28:113:28 | X | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:113:28:113:28 | X | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:113:28:113:28 | X | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:113:28:113:28 | X | NosqlInjection | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:113:31:113:35 | query | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:113:31:113:35 | query | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:113:31:113:35 | query | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:113:31:113:35 | query | NosqlInjection | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:113:38:113:52 | function () { } | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:113:38:113:52 | function () { } | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:113:38:113:52 | function () { } | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:113:38:113:52 | function () { } | NosqlInjection | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:113:38:113:52 | function () { } | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:113:38:113:52 | function () { } | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:113:38:113:52 | function () { } | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:113:38:113:52 | function () { } | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:113:38:113:52 | function () { } | SqlInjection | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:113:38:113:52 | function () { } | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:113:38:113:52 | function () { } | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:113:38:113:52 | function () { } | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:113:38:113:52 | function () { } | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:113:38:113:52 | function () { } | TaintedPath | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:113:38:113:52 | function () { } | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:113:38:113:52 | function () { } | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:113:38:113:52 | function () { } | Xss | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:113:38:113:52 | function () { } | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:113:38:113:52 | function () { } | Xss | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:113:38:113:52 | function () { } | Xss | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:116:22:116:25 | cond | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:116:22:116:25 | cond | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:116:22:116:25 | cond | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:116:22:116:25 | cond | NosqlInjection | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:117:21:117:24 | cond | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:117:21:117:24 | cond | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:117:21:117:24 | cond | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:117:21:117:24 | cond | NosqlInjection | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:118:21:118:24 | cond | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:118:21:118:24 | cond | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:118:21:118:24 | cond | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:118:21:118:24 | cond | NosqlInjection | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:119:18:119:21 | cond | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:119:18:119:21 | cond | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:119:18:119:21 | cond | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:119:18:119:21 | cond | NosqlInjection | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:120:22:120:25 | cond | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:120:22:120:25 | cond | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:120:22:120:25 | cond | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:120:22:120:25 | cond | NosqlInjection | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:121:16:121:19 | cond | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:121:16:121:19 | cond | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:121:16:121:19 | cond | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:121:16:121:19 | cond | NosqlInjection | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:122:19:122:22 | cond | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:122:19:122:22 | cond | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:122:19:122:22 | cond | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:122:19:122:22 | cond | NosqlInjection | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:123:20:123:21 | id | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:123:20:123:21 | id | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:123:20:123:21 | id | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:123:20:123:21 | id | NosqlInjection | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:124:28:124:31 | cond | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:124:28:124:31 | cond | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:124:28:124:31 | cond | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:124:28:124:31 | cond | NosqlInjection | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:125:28:125:31 | cond | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:125:28:125:31 | cond | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:125:28:125:31 | cond | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:125:28:125:31 | cond | NosqlInjection | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:126:28:126:31 | cond | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:126:28:126:31 | cond | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:126:28:126:31 | cond | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:126:28:126:31 | cond | NosqlInjection | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:126:34:126:34 | Y | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:126:34:126:34 | Y | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:126:34:126:34 | Y | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:126:34:126:34 | Y | NosqlInjection | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:127:18:127:21 | cond | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:127:18:127:21 | cond | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:127:18:127:21 | cond | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:127:18:127:21 | cond | NosqlInjection | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:127:24:127:24 | Y | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:127:24:127:24 | Y | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:127:24:127:24 | Y | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:127:24:127:24 | Y | NosqlInjection | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:128:22:128:25 | cond | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:128:22:128:25 | cond | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:128:22:128:25 | cond | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:128:22:128:25 | cond | NosqlInjection | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:128:28:128:28 | Y | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:128:28:128:28 | Y | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:128:28:128:28 | Y | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:128:28:128:28 | Y | NosqlInjection | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:129:21:129:24 | cond | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:129:21:129:24 | cond | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:129:21:129:24 | cond | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:129:21:129:24 | cond | NosqlInjection | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:129:27:129:27 | Y | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:129:27:129:27 | Y | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:129:27:129:27 | Y | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:129:27:129:27 | Y | NosqlInjection | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:130:16:130:26 | { _id: id } | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:130:16:130:26 | { _id: id } | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:130:16:130:26 | { _id: id } | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:130:16:130:26 | { _id: id } | NosqlInjection | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:130:23:130:24 | id | SqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:130:23:130:24 | id | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:130:23:130:24 | id | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:130:23:130:24 | id | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:130:23:130:24 | id | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:130:23:130:24 | id | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:130:23:130:24 | id | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:130:23:130:24 | id | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:130:23:130:24 | id | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:130:23:130:24 | id | Xss | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:130:23:130:24 | id | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:130:23:130:24 | id | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:131:16:131:35 | { _id: { $eq: id } } | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:131:16:131:35 | { _id: { $eq: id } } | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:131:16:131:35 | { _id: { $eq: id } } | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:131:16:131:35 | { _id: { $eq: id } } | NosqlInjection | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:131:23:131:33 | { $eq: id } | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:131:23:131:33 | { $eq: id } | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:131:23:131:33 | { $eq: id } | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:131:23:131:33 | { $eq: id } | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:131:23:131:33 | { $eq: id } | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:131:23:131:33 | { $eq: id } | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:131:23:131:33 | { $eq: id } | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:131:23:131:33 | { $eq: id } | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:131:23:131:33 | { $eq: id } | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:131:23:131:33 | { $eq: id } | Xss | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:131:23:131:33 | { $eq: id } | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:131:23:131:33 | { $eq: id } | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:131:30:131:31 | id | SqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:131:30:131:31 | id | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:131:30:131:31 | id | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:131:30:131:31 | id | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:131:30:131:31 | id | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:131:30:131:31 | id | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:131:30:131:31 | id | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:131:30:131:31 | id | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:131:30:131:31 | id | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:131:30:131:31 | id | Xss | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:131:30:131:31 | id | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:131:30:131:31 | id | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:2:25:2:33 | 'express' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:2:25:2:33 | 'express' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:2:25:2:33 | 'express' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:2:25:2:33 | 'express' | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:3:28:3:40 | 'body-parser' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:3:28:3:40 | 'body-parser' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:3:28:3:40 | 'body-parser' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:3:28:3:40 | 'body-parser' | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:4:26:4:35 | 'mongoose' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:4:26:4:35 | 'mongoose' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:4:26:4:35 | 'mongoose' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:4:26:4:35 | 'mongoose' | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:6:18:6:50 | 'mongod ... table1' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:6:18:6:50 | 'mongod ... table1' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:6:18:6:50 | 'mongod ... table1' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:6:18:6:50 | 'mongod ... table1' | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:6:18:6:50 | 'mongod ... table1' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:6:18:6:50 | 'mongod ... table1' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:6:18:6:50 | 'mongod ... table1' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:6:18:6:50 | 'mongod ... table1' | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:6:18:6:50 | 'mongod ... table1' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:6:18:6:50 | 'mongod ... table1' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:6:18:6:50 | 'mongod ... table1' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:6:18:6:50 | 'mongod ... table1' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:6:18:6:50 | 'mongod ... table1' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:6:18:6:50 | 'mongod ... table1' | Xss | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:6:18:6:50 | 'mongod ... table1' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:6:18:6:50 | 'mongod ... table1' | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:10:33:10:42 | 'Document' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:10:33:10:42 | 'Document' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:10:33:10:42 | 'Document' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:10:33:10:42 | 'Document' | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:10:33:10:42 | 'Document' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:10:33:10:42 | 'Document' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:10:33:10:42 | 'Document' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:10:33:10:42 | 'Document' | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:10:33:10:42 | 'Document' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:10:33:10:42 | 'Document' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:10:33:10:42 | 'Document' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:10:33:10:42 | 'Document' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:10:33:10:42 | 'Document' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:10:33:10:42 | 'Document' | Xss | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:10:33:10:42 | 'Document' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:10:33:10:42 | 'Document' | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:10:45:16:1 | {\\n    t ... tring\\n} | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:10:45:16:1 | {\\n    t ... tring\\n} | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:10:45:16:1 | {\\n    t ... tring\\n} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:10:45:16:1 | {\\n    t ... tring\\n} | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:10:45:16:1 | {\\n    t ... tring\\n} | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:10:45:16:1 | {\\n    t ... tring\\n} | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:10:45:16:1 | {\\n    t ... tring\\n} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:10:45:16:1 | {\\n    t ... tring\\n} | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:10:45:16:1 | {\\n    t ... tring\\n} | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:10:45:16:1 | {\\n    t ... tring\\n} | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:10:45:16:1 | {\\n    t ... tring\\n} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:10:45:16:1 | {\\n    t ... tring\\n} | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:10:45:16:1 | {\\n    t ... tring\\n} | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:10:45:16:1 | {\\n    t ... tring\\n} | Xss | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:10:45:16:1 | {\\n    t ... tring\\n} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:10:45:16:1 | {\\n    t ... tring\\n} | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:11:12:14:5 | {\\n      ... e\\n    } | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:11:12:14:5 | {\\n      ... e\\n    } | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:11:12:14:5 | {\\n      ... e\\n    } | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:11:12:14:5 | {\\n      ... e\\n    } | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:11:12:14:5 | {\\n      ... e\\n    } | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:11:12:14:5 | {\\n      ... e\\n    } | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:11:12:14:5 | {\\n      ... e\\n    } | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:11:12:14:5 | {\\n      ... e\\n    } | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:11:12:14:5 | {\\n      ... e\\n    } | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:11:12:14:5 | {\\n      ... e\\n    } | Xss | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:11:12:14:5 | {\\n      ... e\\n    } | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:11:12:14:5 | {\\n      ... e\\n    } | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:12:15:12:20 | String | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:12:15:12:20 | String | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:12:15:12:20 | String | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:12:15:12:20 | String | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:12:15:12:20 | String | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:12:15:12:20 | String | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:12:15:12:20 | String | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:12:15:12:20 | String | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:12:15:12:20 | String | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:12:15:12:20 | String | Xss | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:12:15:12:20 | String | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:12:15:12:20 | String | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:13:17:13:20 | true | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:13:17:13:20 | true | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:13:17:13:20 | true | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:13:17:13:20 | true | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:13:17:13:20 | true | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:13:17:13:20 | true | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:13:17:13:20 | true | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:13:17:13:20 | true | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:13:17:13:20 | true | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:13:17:13:20 | true | Xss | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:13:17:13:20 | true | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:13:17:13:20 | true | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:15:11:15:16 | String | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:15:11:15:16 | String | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:15:11:15:16 | String | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:15:11:15:16 | String | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:15:11:15:16 | String | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:15:11:15:16 | String | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:15:11:15:16 | String | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:15:11:15:16 | String | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:15:11:15:16 | String | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:15:11:15:16 | String | Xss | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:15:11:15:16 | String | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:15:11:15:16 | String | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:18:9:18:25 | '/documents/find' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:18:9:18:25 | '/documents/find' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:18:9:18:25 | '/documents/find' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:18:9:18:25 | '/documents/find' | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:18:9:18:25 | '/documents/find' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:18:9:18:25 | '/documents/find' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:18:9:18:25 | '/documents/find' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:18:9:18:25 | '/documents/find' | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:18:9:18:25 | '/documents/find' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:18:9:18:25 | '/documents/find' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:18:9:18:25 | '/documents/find' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:18:9:18:25 | '/documents/find' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:18:9:18:25 | '/documents/find' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:18:9:18:25 | '/documents/find' | Xss | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:18:9:18:25 | '/documents/find' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:18:9:18:25 | '/documents/find' | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:18:28:24:1 | (req, r ... ery);\\n} | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:18:28:24:1 | (req, r ... ery);\\n} | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:18:28:24:1 | (req, r ... ery);\\n} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:18:28:24:1 | (req, r ... ery);\\n} | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:18:28:24:1 | (req, r ... ery);\\n} | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:18:28:24:1 | (req, r ... ery);\\n} | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:18:28:24:1 | (req, r ... ery);\\n} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:18:28:24:1 | (req, r ... ery);\\n} | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:18:28:24:1 | (req, r ... ery);\\n} | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:18:28:24:1 | (req, r ... ery);\\n} | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:18:28:24:1 | (req, r ... ery);\\n} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:18:28:24:1 | (req, r ... ery);\\n} | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:18:28:24:1 | (req, r ... ery);\\n} | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:18:28:24:1 | (req, r ... ery);\\n} | Xss | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:18:28:24:1 | (req, r ... ery);\\n} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:18:28:24:1 | (req, r ... ery);\\n} | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:19:19:19:20 | {} | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:19:19:19:20 | {} | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:19:19:19:20 | {} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:19:19:19:20 | {} | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:19:19:19:20 | {} | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:19:19:19:20 | {} | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:19:19:19:20 | {} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:19:19:19:20 | {} | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:23:19:23:23 | query | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:23:19:23:23 | query | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:23:19:23:23 | query | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:23:19:23:23 | query | NosqlInjection | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModel.js:3:39:3:47 | 'MyModel' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModel.js:3:39:3:47 | 'MyModel' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModel.js:3:39:3:47 | 'MyModel' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModel.js:3:39:3:47 | 'MyModel' | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModel.js:3:39:3:47 | 'MyModel' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModel.js:3:39:3:47 | 'MyModel' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModel.js:3:39:3:47 | 'MyModel' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModel.js:3:39:3:47 | 'MyModel' | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModel.js:3:39:3:47 | 'MyModel' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModel.js:3:39:3:47 | 'MyModel' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModel.js:3:39:3:47 | 'MyModel' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModel.js:3:39:3:47 | 'MyModel' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModel.js:3:39:3:47 | 'MyModel' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModel.js:3:39:3:47 | 'MyModel' | Xss | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModel.js:3:39:3:47 | 'MyModel' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModel.js:3:39:3:47 | 'MyModel' | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModel.js:3:50:3:60 | getSchema() | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModel.js:3:50:3:60 | getSchema() | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModel.js:3:50:3:60 | getSchema() | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModel.js:3:50:3:60 | getSchema() | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModel.js:3:50:3:60 | getSchema() | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModel.js:3:50:3:60 | getSchema() | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModel.js:3:50:3:60 | getSchema() | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModel.js:3:50:3:60 | getSchema() | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModel.js:3:50:3:60 | getSchema() | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModel.js:3:50:3:60 | getSchema() | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModel.js:3:50:3:60 | getSchema() | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModel.js:3:50:3:60 | getSchema() | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModel.js:3:50:3:60 | getSchema() | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModel.js:3:50:3:60 | getSchema() | Xss | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModel.js:3:50:3:60 | getSchema() | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModel.js:3:50:3:60 | getSchema() | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:7:9:7:25 | bodyParser.json() | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:7:9:7:25 | bodyParser.json() | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:7:9:7:25 | bodyParser.json() | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:7:9:7:25 | bodyParser.json() | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:7:9:7:25 | bodyParser.json() | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:7:9:7:25 | bodyParser.json() | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:7:9:7:25 | bodyParser.json() | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:7:9:7:25 | bodyParser.json() | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:7:9:7:25 | bodyParser.json() | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:7:9:7:25 | bodyParser.json() | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:7:9:7:25 | bodyParser.json() | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:7:9:7:25 | bodyParser.json() | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:7:9:7:25 | bodyParser.json() | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:7:9:7:25 | bodyParser.json() | Xss | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:7:9:7:25 | bodyParser.json() | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:7:9:7:25 | bodyParser.json() | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:9:10:9:16 | '/find' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:9:10:9:16 | '/find' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:9:10:9:16 | '/find' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:9:10:9:16 | '/find' | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:9:10:9:16 | '/find' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:9:10:9:16 | '/find' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:9:10:9:16 | '/find' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:9:10:9:16 | '/find' | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:9:10:9:16 | '/find' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:9:10:9:16 | '/find' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:9:10:9:16 | '/find' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:9:10:9:16 | '/find' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:9:10:9:16 | '/find' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:9:10:9:16 | '/find' | Xss | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:9:10:9:16 | '/find' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:9:10:9:16 | '/find' | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:9:19:14:1 | (req, r ... // OK\\n} | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:9:19:14:1 | (req, r ... // OK\\n} | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:9:19:14:1 | (req, r ... // OK\\n} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:9:19:14:1 | (req, r ... // OK\\n} | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:9:19:14:1 | (req, r ... // OK\\n} | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:9:19:14:1 | (req, r ... // OK\\n} | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:9:19:14:1 | (req, r ... // OK\\n} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:9:19:14:1 | (req, r ... // OK\\n} | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:9:19:14:1 | (req, r ... // OK\\n} | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:9:19:14:1 | (req, r ... // OK\\n} | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:9:19:14:1 | (req, r ... // OK\\n} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:9:19:14:1 | (req, r ... // OK\\n} | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:9:19:14:1 | (req, r ... // OK\\n} | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:9:19:14:1 | (req, r ... // OK\\n} | Xss | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:9:19:14:1 | (req, r ... // OK\\n} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:9:19:14:1 | (req, r ... // OK\\n} | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:11:16:11:24 | { id: v } | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:11:16:11:24 | { id: v } | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:11:16:11:24 | { id: v } | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:11:16:11:24 | { id: v } | NosqlInjection | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:11:22:11:22 | v | SqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:11:22:11:22 | v | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:11:22:11:22 | v | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:11:22:11:22 | v | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:11:22:11:22 | v | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:11:22:11:22 | v | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:11:22:11:22 | v | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:11:22:11:22 | v | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:11:22:11:22 | v | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:11:22:11:22 | v | Xss | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:11:22:11:22 | v | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:11:22:11:22 | v | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:12:16:12:34 | { id: req.body.id } | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:12:16:12:34 | { id: req.body.id } | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:12:16:12:34 | { id: req.body.id } | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:12:16:12:34 | { id: req.body.id } | NosqlInjection | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:12:22:12:32 | req.body.id | SqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:12:22:12:32 | req.body.id | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:12:22:12:32 | req.body.id | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:12:22:12:32 | req.body.id | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:12:22:12:32 | req.body.id | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:12:22:12:32 | req.body.id | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:12:22:12:32 | req.body.id | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:12:22:12:32 | req.body.id | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:12:22:12:32 | req.body.id | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:12:22:12:32 | req.body.id | Xss | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:12:22:12:32 | req.body.id | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:12:22:12:32 | req.body.id | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:13:16:13:39 | { id: ` ... .id}` } | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:13:16:13:39 | { id: ` ... .id}` } | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:13:16:13:39 | { id: ` ... .id}` } | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:13:16:13:39 | { id: ` ... .id}` } | NosqlInjection | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:13:22:13:37 | `${req.body.id}` | SqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:13:22:13:37 | `${req.body.id}` | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:13:22:13:37 | `${req.body.id}` | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:13:22:13:37 | `${req.body.id}` | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:13:22:13:37 | `${req.body.id}` | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:13:22:13:37 | `${req.body.id}` | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:13:22:13:37 | `${req.body.id}` | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:13:22:13:37 | `${req.body.id}` | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:13:22:13:37 | `${req.body.id}` | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:13:22:13:37 | `${req.body.id}` | Xss | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:13:22:13:37 | `${req.body.id}` | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:13:22:13:37 | `${req.body.id}` | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise-types.ts:8:17:8:21 | taint | SqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise-types.ts:8:17:8:21 | taint | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise-types.ts:8:17:8:21 | taint | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise-types.ts:8:17:8:21 | taint | SqlInjection | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise-types.ts:13:9:13:17 | 'express' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise-types.ts:13:9:13:17 | 'express' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise-types.ts:13:9:13:17 | 'express' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise-types.ts:13:9:13:17 | 'express' | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise-types.ts:13:26:13:31 | '/foo' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise-types.ts:13:26:13:31 | '/foo' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise-types.ts:13:26:13:31 | '/foo' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise-types.ts:13:26:13:31 | '/foo' | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise-types.ts:13:26:13:31 | '/foo' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise-types.ts:13:26:13:31 | '/foo' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise-types.ts:13:26:13:31 | '/foo' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise-types.ts:13:26:13:31 | '/foo' | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise-types.ts:13:26:13:31 | '/foo' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise-types.ts:13:26:13:31 | '/foo' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise-types.ts:13:26:13:31 | '/foo' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise-types.ts:13:26:13:31 | '/foo' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise-types.ts:13:26:13:31 | '/foo' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise-types.ts:13:26:13:31 | '/foo' | Xss | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise-types.ts:13:26:13:31 | '/foo' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise-types.ts:13:26:13:31 | '/foo' | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise-types.ts:13:34:13:76 | (req, r ... q, res) | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise-types.ts:13:34:13:76 | (req, r ... q, res) | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise-types.ts:13:34:13:76 | (req, r ... q, res) | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise-types.ts:13:34:13:76 | (req, r ... q, res) | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise-types.ts:13:34:13:76 | (req, r ... q, res) | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise-types.ts:13:34:13:76 | (req, r ... q, res) | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise-types.ts:13:34:13:76 | (req, r ... q, res) | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise-types.ts:13:34:13:76 | (req, r ... q, res) | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise-types.ts:13:34:13:76 | (req, r ... q, res) | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise-types.ts:13:34:13:76 | (req, r ... q, res) | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise-types.ts:13:34:13:76 | (req, r ... q, res) | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise-types.ts:13:34:13:76 | (req, r ... q, res) | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise-types.ts:13:34:13:76 | (req, r ... q, res) | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise-types.ts:13:34:13:76 | (req, r ... q, res) | Xss | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise-types.ts:13:34:13:76 | (req, r ... q, res) | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise-types.ts:13:34:13:76 | (req, r ... q, res) | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:1:21:1:32 | 'pg-promise' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:1:21:1:32 | 'pg-promise' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:1:21:1:32 | 'pg-promise' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:1:21:1:32 | 'pg-promise' | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:3:9:3:17 | 'express' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:3:9:3:17 | 'express' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:3:9:3:17 | 'express' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:3:9:3:17 | 'express' | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:3:26:3:31 | '/foo' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:3:26:3:31 | '/foo' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:3:26:3:31 | '/foo' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:3:26:3:31 | '/foo' | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:3:26:3:31 | '/foo' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:3:26:3:31 | '/foo' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:3:26:3:31 | '/foo' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:3:26:3:31 | '/foo' | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:3:26:3:31 | '/foo' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:3:26:3:31 | '/foo' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:3:26:3:31 | '/foo' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:3:26:3:31 | '/foo' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:3:26:3:31 | '/foo' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:3:26:3:31 | '/foo' | Xss | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:3:26:3:31 | '/foo' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:3:26:3:31 | '/foo' | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:3:34:66:1 | (req, r ... \\n  );\\n} | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:3:34:66:1 | (req, r ... \\n  );\\n} | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:3:34:66:1 | (req, r ... \\n  );\\n} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:3:34:66:1 | (req, r ... \\n  );\\n} | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:3:34:66:1 | (req, r ... \\n  );\\n} | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:3:34:66:1 | (req, r ... \\n  );\\n} | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:3:34:66:1 | (req, r ... \\n  );\\n} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:3:34:66:1 | (req, r ... \\n  );\\n} | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:3:34:66:1 | (req, r ... \\n  );\\n} | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:3:34:66:1 | (req, r ... \\n  );\\n} | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:3:34:66:1 | (req, r ... \\n  );\\n} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:3:34:66:1 | (req, r ... \\n  );\\n} | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:3:34:66:1 | (req, r ... \\n  );\\n} | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:3:34:66:1 | (req, r ... \\n  );\\n} | Xss | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:3:34:66:1 | (req, r ... \\n  );\\n} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:3:34:66:1 | (req, r ... \\n  );\\n} | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:4:18:4:52 | process ... TRING'] | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:4:18:4:52 | process ... TRING'] | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:4:18:4:52 | process ... TRING'] | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:4:18:4:52 | process ... TRING'] | NosqlInjection | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:4:18:4:52 | process ... TRING'] | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:4:18:4:52 | process ... TRING'] | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:4:18:4:52 | process ... TRING'] | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:4:18:4:52 | process ... TRING'] | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:4:18:4:52 | process ... TRING'] | SqlInjection | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:4:18:4:52 | process ... TRING'] | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:4:18:4:52 | process ... TRING'] | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:4:18:4:52 | process ... TRING'] | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:4:18:4:52 | process ... TRING'] | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:4:18:4:52 | process ... TRING'] | TaintedPath | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:4:18:4:52 | process ... TRING'] | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:4:18:4:52 | process ... TRING'] | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:4:18:4:52 | process ... TRING'] | Xss | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:4:18:4:52 | process ... TRING'] | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:4:18:4:52 | process ... TRING'] | Xss | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:4:18:4:52 | process ... TRING'] | Xss | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:6:15:7:34 | "SELECT ... ategory | SqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:6:15:7:34 | "SELECT ... ategory | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:6:15:7:34 | "SELECT ... ategory | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:6:15:7:34 | "SELECT ... ategory | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:6:15:7:55 | "SELECT ...  PRICE" | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:6:15:7:55 | "SELECT ...  PRICE" | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:6:15:7:55 | "SELECT ...  PRICE" | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:6:15:7:55 | "SELECT ...  PRICE" | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:6:15:7:55 | "SELECT ...  PRICE" | SqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:6:15:7:55 | "SELECT ...  PRICE" | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:6:15:7:55 | "SELECT ...  PRICE" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:6:15:7:55 | "SELECT ...  PRICE" | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:9:10:9:14 | query | SqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:9:10:9:14 | query | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:9:10:9:14 | query | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:9:10:9:14 | query | SqlInjection | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:10:11:10:15 | query | SqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:10:11:10:15 | query | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:10:11:10:15 | query | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:10:11:10:15 | query | SqlInjection | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:11:17:11:21 | query | SqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:11:17:11:21 | query | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:11:17:11:21 | query | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:11:17:11:21 | query | SqlInjection | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:12:10:12:14 | query | SqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:12:10:12:14 | query | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:12:10:12:14 | query | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:12:10:12:14 | query | SqlInjection | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:13:12:13:16 | query | SqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:13:12:13:16 | query | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:13:12:13:16 | query | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:13:12:13:16 | query | SqlInjection | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:14:18:14:22 | query | SqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:14:18:14:22 | query | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:14:18:14:22 | query | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:14:18:14:22 | query | SqlInjection | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:15:11:15:15 | query | SqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:15:11:15:15 | query | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:15:11:15:15 | query | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:15:11:15:15 | query | SqlInjection | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:16:10:16:14 | query | SqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:16:10:16:14 | query | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:16:10:16:14 | query | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:16:10:16:14 | query | SqlInjection | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:17:16:17:20 | query | SqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:17:16:17:20 | query | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:17:16:17:20 | query | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:17:16:17:20 | query | SqlInjection | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:18:12:18:16 | query | SqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:18:12:18:16 | query | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:18:12:18:16 | query | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:18:12:18:16 | query | SqlInjection | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:19:13:19:17 | query | SqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:19:13:19:17 | query | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:19:13:19:17 | query | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:19:13:19:17 | query | SqlInjection | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:21:10:23:3 | {\\n    t ...  OK\\n  } | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:21:10:23:3 | {\\n    t ...  OK\\n  } | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:21:10:23:3 | {\\n    t ...  OK\\n  } | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:21:10:23:3 | {\\n    t ...  OK\\n  } | SqlInjection | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:22:11:22:15 | query | SqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:22:11:22:15 | query | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:22:11:22:15 | query | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:22:11:22:15 | query | SqlInjection | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:22:11:22:15 | query | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:22:11:22:15 | query | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:22:11:22:15 | query | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:22:11:22:15 | query | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:22:11:22:15 | query | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:22:11:22:15 | query | Xss | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:22:11:22:15 | query | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:22:11:22:15 | query | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:24:10:27:3 | {\\n    t ...  OK\\n  } | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:24:10:27:3 | {\\n    t ...  OK\\n  } | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:24:10:27:3 | {\\n    t ...  OK\\n  } | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:24:10:27:3 | {\\n    t ...  OK\\n  } | SqlInjection | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:25:11:25:44 | 'SELECT ... d = $1' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:25:11:25:44 | 'SELECT ... d = $1' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:25:11:25:44 | 'SELECT ... d = $1' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:25:11:25:44 | 'SELECT ... d = $1' | SqlInjection | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:25:11:25:44 | 'SELECT ... d = $1' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:25:11:25:44 | 'SELECT ... d = $1' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:25:11:25:44 | 'SELECT ... d = $1' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:25:11:25:44 | 'SELECT ... d = $1' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:25:11:25:44 | 'SELECT ... d = $1' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:25:11:25:44 | 'SELECT ... d = $1' | Xss | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:25:11:25:44 | 'SELECT ... d = $1' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:25:11:25:44 | 'SELECT ... d = $1' | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:26:13:26:25 | req.params.id | SqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:26:13:26:25 | req.params.id | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:26:13:26:25 | req.params.id | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:26:13:26:25 | req.params.id | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:26:13:26:25 | req.params.id | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:26:13:26:25 | req.params.id | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:26:13:26:25 | req.params.id | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:26:13:26:25 | req.params.id | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:26:13:26:25 | req.params.id | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:26:13:26:25 | req.params.id | Xss | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:26:13:26:25 | req.params.id | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:26:13:26:25 | req.params.id | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:28:10:31:3 | {\\n    t ... ter\\n  } | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:28:10:31:3 | {\\n    t ... ter\\n  } | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:28:10:31:3 | {\\n    t ... ter\\n  } | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:28:10:31:3 | {\\n    t ... ter\\n  } | SqlInjection | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:29:11:29:48 | 'SELECT ... $1:raw' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:29:11:29:48 | 'SELECT ... $1:raw' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:29:11:29:48 | 'SELECT ... $1:raw' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:29:11:29:48 | 'SELECT ... $1:raw' | SqlInjection | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:29:11:29:48 | 'SELECT ... $1:raw' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:29:11:29:48 | 'SELECT ... $1:raw' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:29:11:29:48 | 'SELECT ... $1:raw' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:29:11:29:48 | 'SELECT ... $1:raw' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:29:11:29:48 | 'SELECT ... $1:raw' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:29:11:29:48 | 'SELECT ... $1:raw' | Xss | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:29:11:29:48 | 'SELECT ... $1:raw' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:29:11:29:48 | 'SELECT ... $1:raw' | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:30:13:30:25 | req.params.id | SqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:30:13:30:25 | req.params.id | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:30:13:30:25 | req.params.id | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:30:13:30:25 | req.params.id | SqlInjection | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:30:13:30:25 | req.params.id | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:30:13:30:25 | req.params.id | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:30:13:30:25 | req.params.id | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:30:13:30:25 | req.params.id | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:30:13:30:25 | req.params.id | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:30:13:30:25 | req.params.id | Xss | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:30:13:30:25 | req.params.id | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:30:13:30:25 | req.params.id | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:32:10:35:3 | {\\n    t ...  OK\\n  } | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:32:10:35:3 | {\\n    t ...  OK\\n  } | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:32:10:35:3 | {\\n    t ...  OK\\n  } | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:32:10:35:3 | {\\n    t ...  OK\\n  } | SqlInjection | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:33:11:33:45 | 'SELECT ...  = $1^' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:33:11:33:45 | 'SELECT ...  = $1^' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:33:11:33:45 | 'SELECT ...  = $1^' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:33:11:33:45 | 'SELECT ...  = $1^' | SqlInjection | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:33:11:33:45 | 'SELECT ...  = $1^' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:33:11:33:45 | 'SELECT ...  = $1^' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:33:11:33:45 | 'SELECT ...  = $1^' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:33:11:33:45 | 'SELECT ...  = $1^' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:33:11:33:45 | 'SELECT ...  = $1^' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:33:11:33:45 | 'SELECT ...  = $1^' | Xss | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:33:11:33:45 | 'SELECT ...  = $1^' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:33:11:33:45 | 'SELECT ...  = $1^' | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:34:13:34:25 | req.params.id | SqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:34:13:34:25 | req.params.id | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:34:13:34:25 | req.params.id | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:34:13:34:25 | req.params.id | SqlInjection | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:34:13:34:25 | req.params.id | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:34:13:34:25 | req.params.id | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:34:13:34:25 | req.params.id | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:34:13:34:25 | req.params.id | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:34:13:34:25 | req.params.id | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:34:13:34:25 | req.params.id | Xss | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:34:13:34:25 | req.params.id | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:34:13:34:25 | req.params.id | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:36:10:43:3 | {\\n    t ...   ]\\n  } | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:36:10:43:3 | {\\n    t ...   ]\\n  } | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:36:10:43:3 | {\\n    t ...   ]\\n  } | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:36:10:43:3 | {\\n    t ...   ]\\n  } | SqlInjection | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:37:11:37:79 | 'SELECT ... o = $3' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:37:11:37:79 | 'SELECT ... o = $3' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:37:11:37:79 | 'SELECT ... o = $3' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:37:11:37:79 | 'SELECT ... o = $3' | SqlInjection | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:37:11:37:79 | 'SELECT ... o = $3' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:37:11:37:79 | 'SELECT ... o = $3' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:37:11:37:79 | 'SELECT ... o = $3' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:37:11:37:79 | 'SELECT ... o = $3' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:37:11:37:79 | 'SELECT ... o = $3' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:37:11:37:79 | 'SELECT ... o = $3' | Xss | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:37:11:37:79 | 'SELECT ... o = $3' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:37:11:37:79 | 'SELECT ... o = $3' | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:38:13:42:5 | [\\n      ... n\\n    ] | SqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:38:13:42:5 | [\\n      ... n\\n    ] | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:38:13:42:5 | [\\n      ... n\\n    ] | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:38:13:42:5 | [\\n      ... n\\n    ] | SqlInjection | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:38:13:42:5 | [\\n      ... n\\n    ] | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:38:13:42:5 | [\\n      ... n\\n    ] | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:38:13:42:5 | [\\n      ... n\\n    ] | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:38:13:42:5 | [\\n      ... n\\n    ] | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:38:13:42:5 | [\\n      ... n\\n    ] | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:38:13:42:5 | [\\n      ... n\\n    ] | Xss | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:38:13:42:5 | [\\n      ... n\\n    ] | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:38:13:42:5 | [\\n      ... n\\n    ] | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:39:7:39:19 | req.params.id | SqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:39:7:39:19 | req.params.id | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:39:7:39:19 | req.params.id | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:39:7:39:19 | req.params.id | SqlInjection | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:39:7:39:19 | req.params.id | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:39:7:39:19 | req.params.id | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:39:7:39:19 | req.params.id | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:39:7:39:19 | req.params.id | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:39:7:39:19 | req.params.id | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:39:7:39:19 | req.params.id | Xss | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:39:7:39:19 | req.params.id | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:39:7:39:19 | req.params.id | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:40:7:40:21 | req.params.name | SqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:40:7:40:21 | req.params.name | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:40:7:40:21 | req.params.name | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:40:7:40:21 | req.params.name | SqlInjection | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:40:7:40:21 | req.params.name | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:40:7:40:21 | req.params.name | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:40:7:40:21 | req.params.name | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:40:7:40:21 | req.params.name | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:40:7:40:21 | req.params.name | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:40:7:40:21 | req.params.name | Xss | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:40:7:40:21 | req.params.name | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:40:7:40:21 | req.params.name | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:41:7:41:20 | req.params.foo | SqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:41:7:41:20 | req.params.foo | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:41:7:41:20 | req.params.foo | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:41:7:41:20 | req.params.foo | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:41:7:41:20 | req.params.foo | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:41:7:41:20 | req.params.foo | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:41:7:41:20 | req.params.foo | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:41:7:41:20 | req.params.foo | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:41:7:41:20 | req.params.foo | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:41:7:41:20 | req.params.foo | Xss | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:41:7:41:20 | req.params.foo | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:41:7:41:20 | req.params.foo | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:44:10:50:3 | {\\n    t ...   }\\n  } | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:44:10:50:3 | {\\n    t ...   }\\n  } | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:44:10:50:3 | {\\n    t ...   }\\n  } | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:44:10:50:3 | {\\n    t ...   }\\n  } | SqlInjection | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:45:11:45:70 | 'SELECT ... {name}' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:45:11:45:70 | 'SELECT ... {name}' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:45:11:45:70 | 'SELECT ... {name}' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:45:11:45:70 | 'SELECT ... {name}' | SqlInjection | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:45:11:45:70 | 'SELECT ... {name}' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:45:11:45:70 | 'SELECT ... {name}' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:45:11:45:70 | 'SELECT ... {name}' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:45:11:45:70 | 'SELECT ... {name}' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:45:11:45:70 | 'SELECT ... {name}' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:45:11:45:70 | 'SELECT ... {name}' | Xss | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:45:11:45:70 | 'SELECT ... {name}' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:45:11:45:70 | 'SELECT ... {name}' | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:46:13:49:5 | {\\n      ... n\\n    } | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:46:13:49:5 | {\\n      ... n\\n    } | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:46:13:49:5 | {\\n      ... n\\n    } | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:46:13:49:5 | {\\n      ... n\\n    } | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:46:13:49:5 | {\\n      ... n\\n    } | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:46:13:49:5 | {\\n      ... n\\n    } | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:46:13:49:5 | {\\n      ... n\\n    } | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:46:13:49:5 | {\\n      ... n\\n    } | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:46:13:49:5 | {\\n      ... n\\n    } | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:46:13:49:5 | {\\n      ... n\\n    } | Xss | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:46:13:49:5 | {\\n      ... n\\n    } | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:46:13:49:5 | {\\n      ... n\\n    } | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:47:11:47:23 | req.params.id | SqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:47:11:47:23 | req.params.id | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:47:11:47:23 | req.params.id | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:47:11:47:23 | req.params.id | SqlInjection | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:47:11:47:23 | req.params.id | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:47:11:47:23 | req.params.id | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:47:11:47:23 | req.params.id | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:47:11:47:23 | req.params.id | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:47:11:47:23 | req.params.id | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:47:11:47:23 | req.params.id | Xss | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:47:11:47:23 | req.params.id | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:47:11:47:23 | req.params.id | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:48:13:48:27 | req.params.name | SqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:48:13:48:27 | req.params.name | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:48:13:48:27 | req.params.name | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:48:13:48:27 | req.params.name | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:48:13:48:27 | req.params.name | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:48:13:48:27 | req.params.name | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:48:13:48:27 | req.params.name | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:48:13:48:27 | req.params.name | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:48:13:48:27 | req.params.name | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:48:13:48:27 | req.params.name | Xss | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:48:13:48:27 | req.params.name | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:48:13:48:27 | req.params.name | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:51:10:58:3 | {\\n    t ...   }\\n  } | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:51:10:58:3 | {\\n    t ...   }\\n  } | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:51:10:58:3 | {\\n    t ...   }\\n  } | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:51:10:58:3 | {\\n    t ...   }\\n  } | SqlInjection | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:52:11:52:121 | "SELECT ... lue%\\"" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:52:11:52:121 | "SELECT ... lue%\\"" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:52:11:52:121 | "SELECT ... lue%\\"" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:52:11:52:121 | "SELECT ... lue%\\"" | SqlInjection | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:52:11:52:121 | "SELECT ... lue%\\"" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:52:11:52:121 | "SELECT ... lue%\\"" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:52:11:52:121 | "SELECT ... lue%\\"" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:52:11:52:121 | "SELECT ... lue%\\"" | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:52:11:52:121 | "SELECT ... lue%\\"" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:52:11:52:121 | "SELECT ... lue%\\"" | Xss | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:52:11:52:121 | "SELECT ... lue%\\"" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:52:11:52:121 | "SELECT ... lue%\\"" | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:53:13:57:5 | {\\n      ... e\\n    } | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:53:13:57:5 | {\\n      ... e\\n    } | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:53:13:57:5 | {\\n      ... e\\n    } | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:53:13:57:5 | {\\n      ... e\\n    } | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:53:13:57:5 | {\\n      ... e\\n    } | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:53:13:57:5 | {\\n      ... e\\n    } | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:53:13:57:5 | {\\n      ... e\\n    } | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:53:13:57:5 | {\\n      ... e\\n    } | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:53:13:57:5 | {\\n      ... e\\n    } | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:53:13:57:5 | {\\n      ... e\\n    } | Xss | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:53:13:57:5 | {\\n      ... e\\n    } | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:53:13:57:5 | {\\n      ... e\\n    } | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:54:11:54:23 | req.params.id | SqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:54:11:54:23 | req.params.id | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:54:11:54:23 | req.params.id | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:54:11:54:23 | req.params.id | SqlInjection | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:54:11:54:23 | req.params.id | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:54:11:54:23 | req.params.id | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:54:11:54:23 | req.params.id | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:54:11:54:23 | req.params.id | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:54:11:54:23 | req.params.id | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:54:11:54:23 | req.params.id | Xss | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:54:11:54:23 | req.params.id | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:54:11:54:23 | req.params.id | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:55:13:55:27 | req.params.name | SqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:55:13:55:27 | req.params.name | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:55:13:55:27 | req.params.name | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:55:13:55:27 | req.params.name | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:55:13:55:27 | req.params.name | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:55:13:55:27 | req.params.name | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:55:13:55:27 | req.params.name | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:55:13:55:27 | req.params.name | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:55:13:55:27 | req.params.name | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:55:13:55:27 | req.params.name | Xss | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:55:13:55:27 | req.params.name | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:55:13:55:27 | req.params.name | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:56:14:56:29 | req.params.title | SqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:56:14:56:29 | req.params.title | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:56:14:56:29 | req.params.title | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:56:14:56:29 | req.params.title | SqlInjection | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:56:14:56:29 | req.params.title | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:56:14:56:29 | req.params.title | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:56:14:56:29 | req.params.title | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:56:14:56:29 | req.params.title | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:56:14:56:29 | req.params.title | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:56:14:56:29 | req.params.title | Xss | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:56:14:56:29 | req.params.title | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:56:14:56:29 | req.params.title | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:59:11:61:3 | t => {\\n ...  OK\\n  } | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:59:11:61:3 | t => {\\n ...  OK\\n  } | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:59:11:61:3 | t => {\\n ...  OK\\n  } | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:59:11:61:3 | t => {\\n ...  OK\\n  } | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:59:11:61:3 | t => {\\n ...  OK\\n  } | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:59:11:61:3 | t => {\\n ...  OK\\n  } | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:59:11:61:3 | t => {\\n ...  OK\\n  } | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:59:11:61:3 | t => {\\n ...  OK\\n  } | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:59:11:61:3 | t => {\\n ...  OK\\n  } | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:59:11:61:3 | t => {\\n ...  OK\\n  } | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:59:11:61:3 | t => {\\n ...  OK\\n  } | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:59:11:61:3 | t => {\\n ...  OK\\n  } | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:59:11:61:3 | t => {\\n ...  OK\\n  } | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:59:11:61:3 | t => {\\n ...  OK\\n  } | Xss | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:59:11:61:3 | t => {\\n ...  OK\\n  } | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:59:11:61:3 | t => {\\n ...  OK\\n  } | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:60:20:60:24 | query | SqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:60:20:60:24 | query | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:60:20:60:24 | query | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:60:20:60:24 | query | SqlInjection | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:63:5:63:30 | { cnd:  ... uery) } | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:63:5:63:30 | { cnd:  ... uery) } | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:63:5:63:30 | { cnd:  ... uery) } | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:63:5:63:30 | { cnd:  ... uery) } | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:63:5:63:30 | { cnd:  ... uery) } | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:63:5:63:30 | { cnd:  ... uery) } | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:63:5:63:30 | { cnd:  ... uery) } | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:63:5:63:30 | { cnd:  ... uery) } | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:63:5:63:30 | { cnd:  ... uery) } | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:63:5:63:30 | { cnd:  ... uery) } | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:63:5:63:30 | { cnd:  ... uery) } | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:63:5:63:30 | { cnd:  ... uery) } | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:63:5:63:30 | { cnd:  ... uery) } | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:63:5:63:30 | { cnd:  ... uery) } | Xss | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:63:5:63:30 | { cnd:  ... uery) } | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:63:5:63:30 | { cnd:  ... uery) } | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:63:12:63:28 | t => t.one(query) | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:63:12:63:28 | t => t.one(query) | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:63:12:63:28 | t => t.one(query) | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:63:12:63:28 | t => t.one(query) | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:63:12:63:28 | t => t.one(query) | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:63:12:63:28 | t => t.one(query) | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:63:12:63:28 | t => t.one(query) | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:63:12:63:28 | t => t.one(query) | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:63:12:63:28 | t => t.one(query) | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:63:12:63:28 | t => t.one(query) | Xss | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:63:12:63:28 | t => t.one(query) | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:63:12:63:28 | t => t.one(query) | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:63:23:63:27 | query | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:63:23:63:27 | query | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:63:23:63:27 | query | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:63:23:63:27 | query | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:63:23:63:27 | query | SqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:63:23:63:27 | query | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:63:23:63:27 | query | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:63:23:63:27 | query | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:63:23:63:27 | query | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:63:23:63:27 | query | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:63:23:63:27 | query | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:63:23:63:27 | query | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:63:23:63:27 | query | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:63:23:63:27 | query | Xss | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:63:23:63:27 | query | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:63:23:63:27 | query | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:64:5:64:21 | t => t.one(query) | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:64:5:64:21 | t => t.one(query) | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:64:5:64:21 | t => t.one(query) | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:64:5:64:21 | t => t.one(query) | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:64:5:64:21 | t => t.one(query) | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:64:5:64:21 | t => t.one(query) | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:64:5:64:21 | t => t.one(query) | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:64:5:64:21 | t => t.one(query) | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:64:5:64:21 | t => t.one(query) | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:64:5:64:21 | t => t.one(query) | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:64:5:64:21 | t => t.one(query) | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:64:5:64:21 | t => t.one(query) | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:64:5:64:21 | t => t.one(query) | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:64:5:64:21 | t => t.one(query) | Xss | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:64:5:64:21 | t => t.one(query) | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:64:5:64:21 | t => t.one(query) | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:64:16:64:20 | query | SqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:64:16:64:20 | query | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:64:16:64:20 | query | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:64:16:64:20 | query | SqlInjection | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:2:23:2:29 | "redis" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:2:23:2:29 | "redis" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:2:23:2:29 | "redis" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:2:23:2:29 | "redis" | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:5:25:5:33 | 'express' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:5:25:5:33 | 'express' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:5:25:5:33 | 'express' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:5:25:5:33 | 'express' | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:7:9:7:37 | require ... .json() | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:7:9:7:37 | require ... .json() | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:7:9:7:37 | require ... .json() | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:7:9:7:37 | require ... .json() | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:7:9:7:37 | require ... .json() | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:7:9:7:37 | require ... .json() | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:7:9:7:37 | require ... .json() | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:7:9:7:37 | require ... .json() | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:7:9:7:37 | require ... .json() | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:7:9:7:37 | require ... .json() | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:7:9:7:37 | require ... .json() | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:7:9:7:37 | require ... .json() | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:7:9:7:37 | require ... .json() | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:7:9:7:37 | require ... .json() | Xss | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:7:9:7:37 | require ... .json() | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:7:9:7:37 | require ... .json() | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:7:17:7:29 | 'body-parser' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:7:17:7:29 | 'body-parser' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:7:17:7:29 | 'body-parser' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:7:17:7:29 | 'body-parser' | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:9:10:9:26 | '/documents/find' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:9:10:9:26 | '/documents/find' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:9:10:9:26 | '/documents/find' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:9:10:9:26 | '/documents/find' | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:9:10:9:26 | '/documents/find' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:9:10:9:26 | '/documents/find' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:9:10:9:26 | '/documents/find' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:9:10:9:26 | '/documents/find' | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:9:10:9:26 | '/documents/find' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:9:10:9:26 | '/documents/find' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:9:10:9:26 | '/documents/find' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:9:10:9:26 | '/documents/find' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:9:10:9:26 | '/documents/find' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:9:10:9:26 | '/documents/find' | Xss | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:9:10:9:26 | '/documents/find' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:9:10:9:26 | '/documents/find' | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:9:29:33:1 | (req, r ... OT OK\\n} | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:9:29:33:1 | (req, r ... OT OK\\n} | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:9:29:33:1 | (req, r ... OT OK\\n} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:9:29:33:1 | (req, r ... OT OK\\n} | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:9:29:33:1 | (req, r ... OT OK\\n} | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:9:29:33:1 | (req, r ... OT OK\\n} | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:9:29:33:1 | (req, r ... OT OK\\n} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:9:29:33:1 | (req, r ... OT OK\\n} | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:9:29:33:1 | (req, r ... OT OK\\n} | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:9:29:33:1 | (req, r ... OT OK\\n} | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:9:29:33:1 | (req, r ... OT OK\\n} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:9:29:33:1 | (req, r ... OT OK\\n} | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:9:29:33:1 | (req, r ... OT OK\\n} | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:9:29:33:1 | (req, r ... OT OK\\n} | Xss | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:9:29:33:1 | (req, r ... OT OK\\n} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:9:29:33:1 | (req, r ... OT OK\\n} | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:10:16:10:27 | req.body.key | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:10:16:10:27 | req.body.key | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:10:16:10:27 | req.body.key | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:10:16:10:27 | req.body.key | NosqlInjection | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:10:30:10:36 | "value" | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:10:30:10:36 | "value" | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:10:30:10:36 | "value" | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:10:30:10:36 | "value" | NosqlInjection | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:10:30:10:36 | "value" | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:10:30:10:36 | "value" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:10:30:10:36 | "value" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:10:30:10:36 | "value" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:10:30:10:36 | "value" | SqlInjection | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:10:30:10:36 | "value" | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:10:30:10:36 | "value" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:10:30:10:36 | "value" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:10:30:10:36 | "value" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:10:30:10:36 | "value" | TaintedPath | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:10:30:10:36 | "value" | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:10:30:10:36 | "value" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:10:30:10:36 | "value" | Xss | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:10:30:10:36 | "value" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:10:30:10:36 | "value" | Xss | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:10:30:10:36 | "value" | Xss | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:14:20:14:22 | key | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:14:20:14:22 | key | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:14:20:14:22 | key | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:14:20:14:22 | key | NosqlInjection | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:14:25:14:31 | "value" | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:14:25:14:31 | "value" | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:14:25:14:31 | "value" | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:14:25:14:31 | "value" | NosqlInjection | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:14:25:14:31 | "value" | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:14:25:14:31 | "value" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:14:25:14:31 | "value" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:14:25:14:31 | "value" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:14:25:14:31 | "value" | SqlInjection | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:14:25:14:31 | "value" | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:14:25:14:31 | "value" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:14:25:14:31 | "value" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:14:25:14:31 | "value" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:14:25:14:31 | "value" | TaintedPath | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:14:25:14:31 | "value" | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:14:25:14:31 | "value" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:14:25:14:31 | "value" | Xss | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:14:25:14:31 | "value" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:14:25:14:31 | "value" | Xss | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:14:25:14:31 | "value" | Xss | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:15:20:15:35 | ["key", "value"] | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:15:20:15:35 | ["key", "value"] | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:15:20:15:35 | ["key", "value"] | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:15:20:15:35 | ["key", "value"] | NosqlInjection | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:15:21:15:25 | "key" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:15:21:15:25 | "key" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:15:21:15:25 | "key" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:15:21:15:25 | "key" | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:15:21:15:25 | "key" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:15:21:15:25 | "key" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:15:21:15:25 | "key" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:15:21:15:25 | "key" | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:15:21:15:25 | "key" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:15:21:15:25 | "key" | Xss | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:15:21:15:25 | "key" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:15:21:15:25 | "key" | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:15:28:15:34 | "value" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:15:28:15:34 | "value" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:15:28:15:34 | "value" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:15:28:15:34 | "value" | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:15:28:15:34 | "value" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:15:28:15:34 | "value" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:15:28:15:34 | "value" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:15:28:15:34 | "value" | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:15:28:15:34 | "value" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:15:28:15:34 | "value" | Xss | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:15:28:15:34 | "value" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:15:28:15:34 | "value" | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:18:16:18:18 | key | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:18:16:18:18 | key | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:18:16:18:18 | key | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:18:16:18:18 | key | NosqlInjection | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:18:21:18:27 | "value" | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:18:21:18:27 | "value" | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:18:21:18:27 | "value" | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:18:21:18:27 | "value" | NosqlInjection | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:18:21:18:27 | "value" | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:18:21:18:27 | "value" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:18:21:18:27 | "value" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:18:21:18:27 | "value" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:18:21:18:27 | "value" | SqlInjection | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:18:21:18:27 | "value" | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:18:21:18:27 | "value" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:18:21:18:27 | "value" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:18:21:18:27 | "value" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:18:21:18:27 | "value" | TaintedPath | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:18:21:18:27 | "value" | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:18:21:18:27 | "value" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:18:21:18:27 | "value" | Xss | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:18:21:18:27 | "value" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:18:21:18:27 | "value" | Xss | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:18:21:18:27 | "value" | Xss | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:19:18:19:22 | "key" | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:19:18:19:22 | "key" | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:19:18:19:22 | "key" | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:19:18:19:22 | "key" | NosqlInjection | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:19:25:19:31 | "field" | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:19:25:19:31 | "field" | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:19:25:19:31 | "field" | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:19:25:19:31 | "field" | NosqlInjection | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:19:34:19:40 | "value" | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:19:34:19:40 | "value" | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:19:34:19:40 | "value" | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:19:34:19:40 | "value" | NosqlInjection | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:19:43:19:45 | key | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:19:43:19:45 | key | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:19:43:19:45 | key | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:19:43:19:45 | key | NosqlInjection | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:19:48:19:55 | "value2" | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:19:48:19:55 | "value2" | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:19:48:19:55 | "value2" | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:19:48:19:55 | "value2" | NosqlInjection | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:24:14:24:23 | "constant" | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:24:14:24:23 | "constant" | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:24:14:24:23 | "constant" | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:24:14:24:23 | "constant" | NosqlInjection | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:24:26:24:32 | "value" | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:24:26:24:32 | "value" | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:24:26:24:32 | "value" | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:24:26:24:32 | "value" | NosqlInjection | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:24:26:24:32 | "value" | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:24:26:24:32 | "value" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:24:26:24:32 | "value" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:24:26:24:32 | "value" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:24:26:24:32 | "value" | SqlInjection | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:24:26:24:32 | "value" | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:24:26:24:32 | "value" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:24:26:24:32 | "value" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:24:26:24:32 | "value" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:24:26:24:32 | "value" | TaintedPath | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:24:26:24:32 | "value" | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:24:26:24:32 | "value" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:24:26:24:32 | "value" | Xss | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:24:26:24:32 | "value" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:24:26:24:32 | "value" | Xss | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:24:26:24:32 | "value" | Xss | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:25:14:25:16 | key | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:25:14:25:16 | key | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:25:14:25:16 | key | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:25:14:25:16 | key | NosqlInjection | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:25:19:25:25 | "value" | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:25:19:25:25 | "value" | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:25:19:25:25 | "value" | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:25:19:25:25 | "value" | NosqlInjection | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:25:19:25:25 | "value" | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:25:19:25:25 | "value" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:25:19:25:25 | "value" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:25:19:25:25 | "value" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:25:19:25:25 | "value" | SqlInjection | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:25:19:25:25 | "value" | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:25:19:25:25 | "value" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:25:19:25:25 | "value" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:25:19:25:25 | "value" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:25:19:25:25 | "value" | TaintedPath | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:25:19:25:25 | "value" | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:25:19:25:25 | "value" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:25:19:25:25 | "value" | Xss | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:25:19:25:25 | "value" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:25:19:25:25 | "value" | Xss | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:25:19:25:25 | "value" | Xss | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:26:14:26:16 | key | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:26:14:26:16 | key | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:26:14:26:16 | key | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:26:14:26:16 | key | NosqlInjection | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:26:14:26:16 | key | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:26:14:26:16 | key | SqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:26:14:26:16 | key | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:26:14:26:16 | key | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:26:14:26:16 | key | SqlInjection | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:26:14:26:16 | key | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:26:14:26:16 | key | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:26:14:26:16 | key | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:26:14:26:16 | key | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:26:14:26:16 | key | TaintedPath | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:26:14:26:16 | key | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:26:14:26:16 | key | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:26:14:26:16 | key | Xss | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:26:14:26:16 | key | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:26:14:26:16 | key | Xss | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:26:14:26:16 | key | Xss | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:27:15:27:41 | functio ... es) { } | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:27:15:27:41 | functio ... es) { } | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:27:15:27:41 | functio ... es) { } | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:27:15:27:41 | functio ... es) { } | NosqlInjection | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:27:15:27:41 | functio ... es) { } | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:27:15:27:41 | functio ... es) { } | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:27:15:27:41 | functio ... es) { } | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:27:15:27:41 | functio ... es) { } | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:27:15:27:41 | functio ... es) { } | SqlInjection | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:27:15:27:41 | functio ... es) { } | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:27:15:27:41 | functio ... es) { } | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:27:15:27:41 | functio ... es) { } | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:27:15:27:41 | functio ... es) { } | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:27:15:27:41 | functio ... es) { } | TaintedPath | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:27:15:27:41 | functio ... es) { } | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:27:15:27:41 | functio ... es) { } | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:27:15:27:41 | functio ... es) { } | Xss | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:27:15:27:41 | functio ... es) { } | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:27:15:27:41 | functio ... es) { } | Xss | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:27:15:27:41 | functio ... es) { } | Xss | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:29:22:31:5 | (err, n ... K\\n    } | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:29:22:31:5 | (err, n ... K\\n    } | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:29:22:31:5 | (err, n ... K\\n    } | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:29:22:31:5 | (err, n ... K\\n    } | NosqlInjection | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:29:22:31:5 | (err, n ... K\\n    } | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:29:22:31:5 | (err, n ... K\\n    } | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:29:22:31:5 | (err, n ... K\\n    } | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:29:22:31:5 | (err, n ... K\\n    } | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:29:22:31:5 | (err, n ... K\\n    } | SqlInjection | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:29:22:31:5 | (err, n ... K\\n    } | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:29:22:31:5 | (err, n ... K\\n    } | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:29:22:31:5 | (err, n ... K\\n    } | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:29:22:31:5 | (err, n ... K\\n    } | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:29:22:31:5 | (err, n ... K\\n    } | TaintedPath | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:29:22:31:5 | (err, n ... K\\n    } | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:29:22:31:5 | (err, n ... K\\n    } | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:29:22:31:5 | (err, n ... K\\n    } | Xss | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:29:22:31:5 | (err, n ... K\\n    } | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:29:22:31:5 | (err, n ... K\\n    } | Xss | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:29:22:31:5 | (err, n ... K\\n    } | Xss | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:30:23:30:25 | key | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:30:23:30:25 | key | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:30:23:30:25 | key | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:30:23:30:25 | key | NosqlInjection | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:30:28:30:34 | "value" | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:30:28:30:34 | "value" | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:30:28:30:34 | "value" | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:30:28:30:34 | "value" | NosqlInjection | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:30:28:30:34 | "value" | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:30:28:30:34 | "value" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:30:28:30:34 | "value" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:30:28:30:34 | "value" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:30:28:30:34 | "value" | SqlInjection | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:30:28:30:34 | "value" | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:30:28:30:34 | "value" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:30:28:30:34 | "value" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:30:28:30:34 | "value" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:30:28:30:34 | "value" | TaintedPath | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:30:28:30:34 | "value" | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:30:28:30:34 | "value" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:30:28:30:34 | "value" | Xss | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:30:28:30:34 | "value" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:30:28:30:34 | "value" | Xss | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:30:28:30:34 | "value" | Xss | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:32:28:32:30 | key | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:32:28:32:30 | key | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:32:28:32:30 | key | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:32:28:32:30 | key | NosqlInjection | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:32:33:32:39 | "value" | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:32:33:32:39 | "value" | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:32:33:32:39 | "value" | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:32:33:32:39 | "value" | NosqlInjection | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:32:33:32:39 | "value" | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:32:33:32:39 | "value" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:32:33:32:39 | "value" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:32:33:32:39 | "value" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:32:33:32:39 | "value" | SqlInjection | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:32:33:32:39 | "value" | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:32:33:32:39 | "value" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:32:33:32:39 | "value" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:32:33:32:39 | "value" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:32:33:32:39 | "value" | TaintedPath | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:32:33:32:39 | "value" | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:32:33:32:39 | "value" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:32:33:32:39 | "value" | Xss | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:32:33:32:39 | "value" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:32:33:32:39 | "value" | Xss | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:32:33:32:39 | "value" | Xss | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:37:10:37:26 | '/documents/find' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:37:10:37:26 | '/documents/find' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:37:10:37:26 | '/documents/find' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:37:10:37:26 | '/documents/find' | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:37:10:37:26 | '/documents/find' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:37:10:37:26 | '/documents/find' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:37:10:37:26 | '/documents/find' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:37:10:37:26 | '/documents/find' | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:37:10:37:26 | '/documents/find' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:37:10:37:26 | '/documents/find' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:37:10:37:26 | '/documents/find' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:37:10:37:26 | '/documents/find' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:37:10:37:26 | '/documents/find' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:37:10:37:26 | '/documents/find' | Xss | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:37:10:37:26 | '/documents/find' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:37:10:37:26 | '/documents/find' | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:37:29:53:1 | (req, r ... // OK\\n} | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:37:29:53:1 | (req, r ... // OK\\n} | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:37:29:53:1 | (req, r ... // OK\\n} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:37:29:53:1 | (req, r ... // OK\\n} | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:37:29:53:1 | (req, r ... // OK\\n} | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:37:29:53:1 | (req, r ... // OK\\n} | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:37:29:53:1 | (req, r ... // OK\\n} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:37:29:53:1 | (req, r ... // OK\\n} | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:37:29:53:1 | (req, r ... // OK\\n} | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:37:29:53:1 | (req, r ... // OK\\n} | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:37:29:53:1 | (req, r ... // OK\\n} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:37:29:53:1 | (req, r ... // OK\\n} | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:37:29:53:1 | (req, r ... // OK\\n} | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:37:29:53:1 | (req, r ... // OK\\n} | Xss | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:37:29:53:1 | (req, r ... // OK\\n} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:37:29:53:1 | (req, r ... // OK\\n} | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:39:16:39:18 | key | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:39:16:39:18 | key | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:39:16:39:18 | key | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:39:16:39:18 | key | NosqlInjection | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:39:21:39:27 | "value" | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:39:21:39:27 | "value" | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:39:21:39:27 | "value" | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:39:21:39:27 | "value" | NosqlInjection | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:39:21:39:27 | "value" | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:39:21:39:27 | "value" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:39:21:39:27 | "value" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:39:21:39:27 | "value" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:39:21:39:27 | "value" | SqlInjection | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:39:21:39:27 | "value" | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:39:21:39:27 | "value" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:39:21:39:27 | "value" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:39:21:39:27 | "value" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:39:21:39:27 | "value" | TaintedPath | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:39:21:39:27 | "value" | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:39:21:39:27 | "value" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:39:21:39:27 | "value" | Xss | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:39:21:39:27 | "value" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:39:21:39:27 | "value" | Xss | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:39:21:39:27 | "value" | Xss | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:41:32:41:41 | client.set | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:41:32:41:41 | client.set | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:41:32:41:41 | client.set | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:41:32:41:41 | client.set | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:41:32:41:41 | client.set | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:41:32:41:41 | client.set | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:41:32:41:41 | client.set | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:41:32:41:41 | client.set | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:41:32:41:41 | client.set | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:41:32:41:41 | client.set | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:41:32:41:41 | client.set | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:41:32:41:41 | client.set | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:41:32:41:41 | client.set | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:41:32:41:41 | client.set | Xss | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:41:32:41:41 | client.set | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:41:32:41:41 | client.set | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:41:49:41:54 | client | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:41:49:41:54 | client | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:41:49:41:54 | client | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:41:49:41:54 | client | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:41:49:41:54 | client | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:41:49:41:54 | client | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:41:49:41:54 | client | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:41:49:41:54 | client | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:41:49:41:54 | client | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:41:49:41:54 | client | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:41:49:41:54 | client | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:41:49:41:54 | client | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:41:49:41:54 | client | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:41:49:41:54 | client | Xss | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:41:49:41:54 | client | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:41:49:41:54 | client | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:43:27:43:29 | key | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:43:27:43:29 | key | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:43:27:43:29 | key | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:43:27:43:29 | key | NosqlInjection | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:45:33:45:42 | client.set | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:45:33:45:42 | client.set | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:45:33:45:42 | client.set | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:45:33:45:42 | client.set | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:45:33:45:42 | client.set | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:45:33:45:42 | client.set | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:45:33:45:42 | client.set | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:45:33:45:42 | client.set | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:45:33:45:42 | client.set | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:45:33:45:42 | client.set | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:45:33:45:42 | client.set | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:45:33:45:42 | client.set | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:45:33:45:42 | client.set | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:45:33:45:42 | client.set | Xss | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:45:33:45:42 | client.set | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:45:33:45:42 | client.set | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:46:34:46:36 | key | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:46:34:46:36 | key | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:46:34:46:36 | key | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:46:34:46:36 | key | NosqlInjection | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:46:39:46:45 | "value" | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:46:39:46:45 | "value" | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:46:39:46:45 | "value" | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:46:39:46:45 | "value" | NosqlInjection | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:46:39:46:45 | "value" | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:46:39:46:45 | "value" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:46:39:46:45 | "value" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:46:39:46:45 | "value" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:46:39:46:45 | "value" | SqlInjection | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:46:39:46:45 | "value" | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:46:39:46:45 | "value" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:46:39:46:45 | "value" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:46:39:46:45 | "value" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:46:39:46:45 | "value" | TaintedPath | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:46:39:46:45 | "value" | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:46:39:46:45 | "value" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:46:39:46:45 | "value" | Xss | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:46:39:46:45 | "value" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:46:39:46:45 | "value" | Xss | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:46:39:46:45 | "value" | Xss | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:48:34:48:41 | () => {} | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:48:34:48:41 | () => {} | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:48:34:48:41 | () => {} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:48:34:48:41 | () => {} | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:48:34:48:41 | () => {} | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:48:34:48:41 | () => {} | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:48:34:48:41 | () => {} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:48:34:48:41 | () => {} | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:48:34:48:41 | () => {} | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:48:34:48:41 | () => {} | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:48:34:48:41 | () => {} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:48:34:48:41 | () => {} | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:48:34:48:41 | () => {} | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:48:34:48:41 | () => {} | Xss | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:48:34:48:41 | () => {} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:48:34:48:41 | () => {} | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:49:35:49:37 | key | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:49:35:49:37 | key | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:49:35:49:37 | key | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:49:35:49:37 | key | NosqlInjection | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:49:35:49:37 | key | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:49:35:49:37 | key | SqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:49:35:49:37 | key | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:49:35:49:37 | key | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:49:35:49:37 | key | SqlInjection | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:49:35:49:37 | key | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:49:35:49:37 | key | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:49:35:49:37 | key | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:49:35:49:37 | key | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:49:35:49:37 | key | TaintedPath | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:49:35:49:37 | key | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:49:35:49:37 | key | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:49:35:49:37 | key | Xss | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:49:35:49:37 | key | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:49:35:49:37 | key | Xss | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:49:35:49:37 | key | Xss | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:49:40:49:46 | "value" | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:49:40:49:46 | "value" | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:49:40:49:46 | "value" | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:49:40:49:46 | "value" | NosqlInjection | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:49:40:49:46 | "value" | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:49:40:49:46 | "value" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:49:40:49:46 | "value" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:49:40:49:46 | "value" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:49:40:49:46 | "value" | SqlInjection | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:49:40:49:46 | "value" | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:49:40:49:46 | "value" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:49:40:49:46 | "value" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:49:40:49:46 | "value" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:49:40:49:46 | "value" | TaintedPath | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:49:40:49:46 | "value" | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:49:40:49:46 | "value" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:49:40:49:46 | "value" | Xss | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:49:40:49:46 | "value" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:49:40:49:46 | "value" | Xss | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:49:40:49:46 | "value" | Xss | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:51:33:51:45 | client.foobar | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:51:33:51:45 | client.foobar | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:51:33:51:45 | client.foobar | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:51:33:51:45 | client.foobar | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:51:33:51:45 | client.foobar | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:51:33:51:45 | client.foobar | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:51:33:51:45 | client.foobar | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:51:33:51:45 | client.foobar | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:51:33:51:45 | client.foobar | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:51:33:51:45 | client.foobar | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:51:33:51:45 | client.foobar | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:51:33:51:45 | client.foobar | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:51:33:51:45 | client.foobar | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:51:33:51:45 | client.foobar | Xss | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:51:33:51:45 | client.foobar | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:51:33:51:45 | client.foobar | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:51:53:51:58 | client | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:51:53:51:58 | client | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:51:53:51:58 | client | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:51:53:51:58 | client | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:51:53:51:58 | client | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:51:53:51:58 | client | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:51:53:51:58 | client | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:51:53:51:58 | client | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:51:53:51:58 | client | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:51:53:51:58 | client | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:51:53:51:58 | client | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:51:53:51:58 | client | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:51:53:51:58 | client | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:51:53:51:58 | client | Xss | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:51:53:51:58 | client | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:51:53:51:58 | client | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:52:28:52:30 | key | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:52:28:52:30 | key | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:52:28:52:30 | key | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:52:28:52:30 | key | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:52:28:52:30 | key | SqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:52:28:52:30 | key | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:52:28:52:30 | key | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:52:28:52:30 | key | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:52:28:52:30 | key | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:52:28:52:30 | key | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:52:28:52:30 | key | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:52:28:52:30 | key | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:52:28:52:30 | key | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:52:28:52:30 | key | Xss | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:52:28:52:30 | key | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:52:28:52:30 | key | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:52:33:52:39 | "value" | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:52:33:52:39 | "value" | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:52:33:52:39 | "value" | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:52:33:52:39 | "value" | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:52:33:52:39 | "value" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:52:33:52:39 | "value" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:52:33:52:39 | "value" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:52:33:52:39 | "value" | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:52:33:52:39 | "value" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:52:33:52:39 | "value" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:52:33:52:39 | "value" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:52:33:52:39 | "value" | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:52:33:52:39 | "value" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:52:33:52:39 | "value" | Xss | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:52:33:52:39 | "value" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:52:33:52:39 | "value" | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:4:23:4:31 | 'express' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:4:23:4:31 | 'express' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:4:23:4:31 | 'express' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:4:23:4:31 | 'express' | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:5:23:5:31 | 'sqlite3' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:5:23:5:31 | 'sqlite3' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:5:23:5:31 | 'sqlite3' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:5:23:5:31 | 'sqlite3' | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:8:18:8:28 | 'socket.io' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:8:18:8:28 | 'socket.io' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:8:18:8:28 | 'socket.io' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:8:18:8:28 | 'socket.io' | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:9:7:9:18 | 'connection' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:9:7:9:18 | 'connection' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:9:7:9:18 | 'connection' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:9:7:9:18 | 'connection' | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:9:7:9:18 | 'connection' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:9:7:9:18 | 'connection' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:9:7:9:18 | 'connection' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:9:7:9:18 | 'connection' | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:9:7:9:18 | 'connection' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:9:7:9:18 | 'connection' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:9:7:9:18 | 'connection' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:9:7:9:18 | 'connection' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:9:7:9:18 | 'connection' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:9:7:9:18 | 'connection' | Xss | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:9:7:9:18 | 'connection' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:9:7:9:18 | 'connection' | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:9:21:13:1 | (socket ...   });\\n} | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:9:21:13:1 | (socket ...   });\\n} | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:9:21:13:1 | (socket ...   });\\n} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:9:21:13:1 | (socket ...   });\\n} | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:9:21:13:1 | (socket ...   });\\n} | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:9:21:13:1 | (socket ...   });\\n} | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:9:21:13:1 | (socket ...   });\\n} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:9:21:13:1 | (socket ...   });\\n} | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:9:21:13:1 | (socket ...   });\\n} | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:9:21:13:1 | (socket ...   });\\n} | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:9:21:13:1 | (socket ...   });\\n} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:9:21:13:1 | (socket ...   });\\n} | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:9:21:13:1 | (socket ...   });\\n} | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:9:21:13:1 | (socket ...   });\\n} | Xss | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:9:21:13:1 | (socket ...   });\\n} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:9:21:13:1 | (socket ...   });\\n} | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:10:13:10:21 | 'newuser' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:10:13:10:21 | 'newuser' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:10:13:10:21 | 'newuser' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:10:13:10:21 | 'newuser' | NosqlInjection | notASinkReason | EventRegistration | string |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:10:13:10:21 | 'newuser' | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:10:13:10:21 | 'newuser' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:10:13:10:21 | 'newuser' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:10:13:10:21 | 'newuser' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:10:13:10:21 | 'newuser' | SqlInjection | notASinkReason | EventRegistration | string |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:10:13:10:21 | 'newuser' | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:10:13:10:21 | 'newuser' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:10:13:10:21 | 'newuser' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:10:13:10:21 | 'newuser' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:10:13:10:21 | 'newuser' | TaintedPath | notASinkReason | EventRegistration | string |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:10:13:10:21 | 'newuser' | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:10:13:10:21 | 'newuser' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:10:13:10:21 | 'newuser' | Xss | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:10:13:10:21 | 'newuser' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:10:13:10:21 | 'newuser' | Xss | notASinkReason | EventRegistration | string |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:10:13:10:21 | 'newuser' | Xss | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:10:24:12:3 | (handle ... `);\\n  } | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:10:24:12:3 | (handle ... `);\\n  } | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:10:24:12:3 | (handle ... `);\\n  } | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:10:24:12:3 | (handle ... `);\\n  } | NosqlInjection | notASinkReason | EventRegistration | string |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:10:24:12:3 | (handle ... `);\\n  } | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:10:24:12:3 | (handle ... `);\\n  } | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:10:24:12:3 | (handle ... `);\\n  } | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:10:24:12:3 | (handle ... `);\\n  } | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:10:24:12:3 | (handle ... `);\\n  } | SqlInjection | notASinkReason | EventRegistration | string |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:10:24:12:3 | (handle ... `);\\n  } | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:10:24:12:3 | (handle ... `);\\n  } | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:10:24:12:3 | (handle ... `);\\n  } | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:10:24:12:3 | (handle ... `);\\n  } | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:10:24:12:3 | (handle ... `);\\n  } | TaintedPath | notASinkReason | EventRegistration | string |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:10:24:12:3 | (handle ... `);\\n  } | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:10:24:12:3 | (handle ... `);\\n  } | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:10:24:12:3 | (handle ... `);\\n  } | Xss | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:10:24:12:3 | (handle ... `);\\n  } | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:10:24:12:3 | (handle ... `);\\n  } | Xss | notASinkReason | EventRegistration | string |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:10:24:12:3 | (handle ... `);\\n  } | Xss | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:11:12:11:53 | `INSERT ... andle}` | SqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:11:12:11:53 | `INSERT ... andle}` | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:11:12:11:53 | `INSERT ... andle}` | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:11:12:11:53 | `INSERT ... andle}` | SqlInjection | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/tst2.js:1:23:1:31 | 'express' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst2.js:1:23:1:31 | 'express' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst2.js:1:23:1:31 | 'express' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst2.js:1:23:1:31 | 'express' | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/tst2.js:2:13:2:28 | require('mssql') | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst2.js:2:13:2:28 | require('mssql') | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst2.js:2:13:2:28 | require('mssql') | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst2.js:2:13:2:28 | require('mssql') | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/tst2.js:2:21:2:27 | 'mssql' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst2.js:2:21:2:27 | 'mssql' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst2.js:2:21:2:27 | 'mssql' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst2.js:2:21:2:27 | 'mssql' | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/tst2.js:5:9:5:19 | '/post/:id' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst2.js:5:9:5:19 | '/post/:id' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst2.js:5:9:5:19 | '/post/:id' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst2.js:5:9:5:19 | '/post/:id' | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/tst2.js:5:9:5:19 | '/post/:id' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst2.js:5:9:5:19 | '/post/:id' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst2.js:5:9:5:19 | '/post/:id' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst2.js:5:9:5:19 | '/post/:id' | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/tst2.js:5:9:5:19 | '/post/:id' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst2.js:5:9:5:19 | '/post/:id' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst2.js:5:9:5:19 | '/post/:id' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst2.js:5:9:5:19 | '/post/:id' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/tst2.js:5:9:5:19 | '/post/:id' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst2.js:5:9:5:19 | '/post/:id' | Xss | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst2.js:5:9:5:19 | '/post/:id' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst2.js:5:9:5:19 | '/post/:id' | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/tst2.js:5:22:10:1 | async f ... "'");\\n} | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst2.js:5:22:10:1 | async f ... "'");\\n} | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst2.js:5:22:10:1 | async f ... "'");\\n} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst2.js:5:22:10:1 | async f ... "'");\\n} | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/tst2.js:5:22:10:1 | async f ... "'");\\n} | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst2.js:5:22:10:1 | async f ... "'");\\n} | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst2.js:5:22:10:1 | async f ... "'");\\n} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst2.js:5:22:10:1 | async f ... "'");\\n} | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/tst2.js:5:22:10:1 | async f ... "'");\\n} | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst2.js:5:22:10:1 | async f ... "'");\\n} | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst2.js:5:22:10:1 | async f ... "'");\\n} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst2.js:5:22:10:1 | async f ... "'");\\n} | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/tst2.js:5:22:10:1 | async f ... "'");\\n} | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst2.js:5:22:10:1 | async f ... "'");\\n} | Xss | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst2.js:5:22:10:1 | async f ... "'");\\n} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst2.js:5:22:10:1 | async f ... "'");\\n} | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/tst2.js:7:13:7:45 | select  ... e id =  | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst2.js:7:13:7:45 | select  ... e id =  | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst2.js:7:13:7:45 | select  ... e id =  | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst2.js:7:13:7:45 | select  ... e id =  | SqlInjection | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/tst2.js:7:48:7:60 | req.params.id | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst2.js:7:48:7:60 | req.params.id | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst2.js:7:48:7:60 | req.params.id | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst2.js:7:48:7:60 | req.params.id | SqlInjection | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/tst2.js:9:27:9:84 | "select ... d + "'" | SqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst2.js:9:27:9:84 | "select ... d + "'" | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst2.js:9:27:9:84 | "select ... d + "'" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst2.js:9:27:9:84 | "select ... d + "'" | SqlInjection | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:3:20:3:23 | 'pg' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:3:20:3:23 | 'pg' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:3:20:3:23 | 'pg' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:3:20:3:23 | 'pg' | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:7:16:8:34 | "SELECT ... ategory | SqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:7:16:8:34 | "SELECT ... ategory | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:7:16:8:34 | "SELECT ... ategory | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:7:16:8:34 | "SELECT ... ategory | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:7:16:8:55 | "SELECT ...  PRICE" | SqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:7:16:8:55 | "SELECT ...  PRICE" | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:7:16:8:55 | "SELECT ...  PRICE" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:7:16:8:55 | "SELECT ...  PRICE" | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:9:14:9:19 | query1 | SqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:9:14:9:19 | query1 | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:9:14:9:19 | query1 | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:9:14:9:19 | query1 | SqlInjection | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:9:22:9:23 | [] | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:9:22:9:23 | [] | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:9:22:9:23 | [] | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:9:22:9:23 | [] | NosqlInjection | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:9:22:9:23 | [] | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:9:22:9:23 | [] | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:9:22:9:23 | [] | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:9:22:9:23 | [] | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:9:22:9:23 | [] | SqlInjection | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:9:22:9:23 | [] | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:9:22:9:23 | [] | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:9:22:9:23 | [] | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:9:22:9:23 | [] | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:9:22:9:23 | [] | TaintedPath | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:9:22:9:23 | [] | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:9:22:9:23 | [] | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:9:22:9:23 | [] | Xss | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:9:22:9:23 | [] | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:9:22:9:23 | [] | Xss | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:9:22:9:23 | [] | Xss | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:9:26:11:3 | functio ... lts\\n  } | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:9:26:11:3 | functio ... lts\\n  } | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:9:26:11:3 | functio ... lts\\n  } | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:9:26:11:3 | functio ... lts\\n  } | NosqlInjection | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:9:26:11:3 | functio ... lts\\n  } | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:9:26:11:3 | functio ... lts\\n  } | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:9:26:11:3 | functio ... lts\\n  } | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:9:26:11:3 | functio ... lts\\n  } | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:9:26:11:3 | functio ... lts\\n  } | SqlInjection | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:9:26:11:3 | functio ... lts\\n  } | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:9:26:11:3 | functio ... lts\\n  } | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:9:26:11:3 | functio ... lts\\n  } | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:9:26:11:3 | functio ... lts\\n  } | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:9:26:11:3 | functio ... lts\\n  } | TaintedPath | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:9:26:11:3 | functio ... lts\\n  } | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:9:26:11:3 | functio ... lts\\n  } | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:9:26:11:3 | functio ... lts\\n  } | Xss | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:9:26:11:3 | functio ... lts\\n  } | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:9:26:11:3 | functio ... lts\\n  } | Xss | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:9:26:11:3 | functio ... lts\\n  } | Xss | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:14:16:15:32 | "SELECT ...  PRICE" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:14:16:15:32 | "SELECT ...  PRICE" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:14:16:15:32 | "SELECT ...  PRICE" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:14:16:15:32 | "SELECT ...  PRICE" | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:16:14:16:19 | query2 | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:16:14:16:19 | query2 | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:16:14:16:19 | query2 | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:16:14:16:19 | query2 | SqlInjection | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:16:22:16:42 | [req.pa ... tegory] | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:16:22:16:42 | [req.pa ... tegory] | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:16:22:16:42 | [req.pa ... tegory] | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:16:22:16:42 | [req.pa ... tegory] | NosqlInjection | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:16:22:16:42 | [req.pa ... tegory] | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:16:22:16:42 | [req.pa ... tegory] | SqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:16:22:16:42 | [req.pa ... tegory] | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:16:22:16:42 | [req.pa ... tegory] | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:16:22:16:42 | [req.pa ... tegory] | SqlInjection | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:16:22:16:42 | [req.pa ... tegory] | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:16:22:16:42 | [req.pa ... tegory] | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:16:22:16:42 | [req.pa ... tegory] | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:16:22:16:42 | [req.pa ... tegory] | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:16:22:16:42 | [req.pa ... tegory] | TaintedPath | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:16:22:16:42 | [req.pa ... tegory] | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:16:22:16:42 | [req.pa ... tegory] | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:16:22:16:42 | [req.pa ... tegory] | Xss | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:16:22:16:42 | [req.pa ... tegory] | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:16:22:16:42 | [req.pa ... tegory] | Xss | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:16:22:16:42 | [req.pa ... tegory] | Xss | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:16:23:16:41 | req.params.category | SqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:16:23:16:41 | req.params.category | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:16:23:16:41 | req.params.category | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:16:23:16:41 | req.params.category | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:16:23:16:41 | req.params.category | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:16:23:16:41 | req.params.category | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:16:23:16:41 | req.params.category | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:16:23:16:41 | req.params.category | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:16:23:16:41 | req.params.category | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:16:23:16:41 | req.params.category | Xss | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:16:23:16:41 | req.params.category | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:16:23:16:41 | req.params.category | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:16:45:18:3 | functio ... lts\\n  } | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:16:45:18:3 | functio ... lts\\n  } | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:16:45:18:3 | functio ... lts\\n  } | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:16:45:18:3 | functio ... lts\\n  } | NosqlInjection | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:16:45:18:3 | functio ... lts\\n  } | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:16:45:18:3 | functio ... lts\\n  } | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:16:45:18:3 | functio ... lts\\n  } | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:16:45:18:3 | functio ... lts\\n  } | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:16:45:18:3 | functio ... lts\\n  } | SqlInjection | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:16:45:18:3 | functio ... lts\\n  } | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:16:45:18:3 | functio ... lts\\n  } | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:16:45:18:3 | functio ... lts\\n  } | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:16:45:18:3 | functio ... lts\\n  } | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:16:45:18:3 | functio ... lts\\n  } | TaintedPath | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:16:45:18:3 | functio ... lts\\n  } | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:16:45:18:3 | functio ... lts\\n  } | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:16:45:18:3 | functio ... lts\\n  } | Xss | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:16:45:18:3 | functio ... lts\\n  } | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:16:45:18:3 | functio ... lts\\n  } | Xss | notASinkReason | DatabaseAccess | string |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:16:45:18:3 | functio ... lts\\n  } | Xss | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:21:9:21:17 | 'express' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:21:9:21:17 | 'express' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:21:9:21:17 | 'express' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:21:9:21:17 | 'express' | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:21:26:21:31 | '/foo' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:21:26:21:31 | '/foo' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:21:26:21:31 | '/foo' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:21:26:21:31 | '/foo' | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:21:26:21:31 | '/foo' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:21:26:21:31 | '/foo' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:21:26:21:31 | '/foo' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:21:26:21:31 | '/foo' | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:21:26:21:31 | '/foo' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:21:26:21:31 | '/foo' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:21:26:21:31 | '/foo' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:21:26:21:31 | '/foo' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:21:26:21:31 | '/foo' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:21:26:21:31 | '/foo' | Xss | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:21:26:21:31 | '/foo' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:21:26:21:31 | '/foo' | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:21:34:21:40 | handler | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:21:34:21:40 | handler | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:21:34:21:40 | handler | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:21:34:21:40 | handler | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:21:34:21:40 | handler | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:21:34:21:40 | handler | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:21:34:21:40 | handler | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:21:34:21:40 | handler | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:21:34:21:40 | handler | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:21:34:21:40 | handler | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:21:34:21:40 | handler | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:21:34:21:40 | handler | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:21:34:21:40 | handler | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:21:34:21:40 | handler | Xss | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:21:34:21:40 | handler | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:21:34:21:40 | handler | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:3:23:3:31 | 'sqlite3' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:3:23:3:31 | 'sqlite3' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:3:23:3:31 | 'sqlite3' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:3:23:3:31 | 'sqlite3' | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:6:16:6:22 | 'myApp' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:6:16:6:22 | 'myApp' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:6:16:6:22 | 'myApp' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:6:16:6:22 | 'myApp' | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:6:16:6:22 | 'myApp' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:6:16:6:22 | 'myApp' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:6:16:6:22 | 'myApp' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:6:16:6:22 | 'myApp' | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:6:16:6:22 | 'myApp' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:6:16:6:22 | 'myApp' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:6:16:6:22 | 'myApp' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:6:16:6:22 | 'myApp' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:6:16:6:22 | 'myApp' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:6:16:6:22 | 'myApp' | Xss | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:6:16:6:22 | 'myApp' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:6:16:6:22 | 'myApp' | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:6:25:6:35 | ['ngRoute'] | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:6:25:6:35 | ['ngRoute'] | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:6:25:6:35 | ['ngRoute'] | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:6:25:6:35 | ['ngRoute'] | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:6:25:6:35 | ['ngRoute'] | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:6:25:6:35 | ['ngRoute'] | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:6:25:6:35 | ['ngRoute'] | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:6:25:6:35 | ['ngRoute'] | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:6:25:6:35 | ['ngRoute'] | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:6:25:6:35 | ['ngRoute'] | Xss | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:6:25:6:35 | ['ngRoute'] | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:6:25:6:35 | ['ngRoute'] | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:6:26:6:34 | 'ngRoute' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:6:26:6:34 | 'ngRoute' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:6:26:6:34 | 'ngRoute' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:6:26:6:34 | 'ngRoute' | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:6:26:6:34 | 'ngRoute' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:6:26:6:34 | 'ngRoute' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:6:26:6:34 | 'ngRoute' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:6:26:6:34 | 'ngRoute' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:6:26:6:34 | 'ngRoute' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:6:26:6:34 | 'ngRoute' | Xss | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:6:26:6:34 | 'ngRoute' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:6:26:6:34 | 'ngRoute' | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:7:13:7:22 | 'FindPost' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:7:13:7:22 | 'FindPost' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:7:13:7:22 | 'FindPost' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:7:13:7:22 | 'FindPost' | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:7:13:7:22 | 'FindPost' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:7:13:7:22 | 'FindPost' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:7:13:7:22 | 'FindPost' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:7:13:7:22 | 'FindPost' | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:7:13:7:22 | 'FindPost' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:7:13:7:22 | 'FindPost' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:7:13:7:22 | 'FindPost' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:7:13:7:22 | 'FindPost' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:7:13:7:22 | 'FindPost' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:7:13:7:22 | 'FindPost' | Xss | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:7:13:7:22 | 'FindPost' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:7:13:7:22 | 'FindPost' | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:7:25:9:1 | functio ... '"');\\n} | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:7:25:9:1 | functio ... '"');\\n} | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:7:25:9:1 | functio ... '"');\\n} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:7:25:9:1 | functio ... '"');\\n} | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:7:25:9:1 | functio ... '"');\\n} | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:7:25:9:1 | functio ... '"');\\n} | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:7:25:9:1 | functio ... '"');\\n} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:7:25:9:1 | functio ... '"');\\n} | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:7:25:9:1 | functio ... '"');\\n} | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:7:25:9:1 | functio ... '"');\\n} | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:7:25:9:1 | functio ... '"');\\n} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:7:25:9:1 | functio ... '"');\\n} | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:7:25:9:1 | functio ... '"');\\n} | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:7:25:9:1 | functio ... '"');\\n} | Xss | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:7:25:9:1 | functio ... '"');\\n} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:7:25:9:1 | functio ... '"');\\n} | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:8:10:8:60 | 'SELECT ... rams.id | SqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:8:10:8:60 | 'SELECT ... rams.id | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:8:10:8:60 | 'SELECT ... rams.id | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:8:10:8:60 | 'SELECT ... rams.id | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:8:10:8:66 | 'SELECT ... d + '"' | SqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:8:10:8:66 | 'SELECT ... d + '"' | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:8:10:8:66 | 'SELECT ... d + '"' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:8:10:8:66 | 'SELECT ... d + '"' | SqlInjection | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/tst.js:4:23:4:31 | 'express' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst.js:4:23:4:31 | 'express' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst.js:4:23:4:31 | 'express' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst.js:4:23:4:31 | 'express' | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/tst.js:5:23:5:31 | 'sqlite3' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst.js:5:23:5:31 | 'sqlite3' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst.js:5:23:5:31 | 'sqlite3' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst.js:5:23:5:31 | 'sqlite3' | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/tst.js:9:9:9:19 | '/post/:id' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst.js:9:9:9:19 | '/post/:id' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst.js:9:9:9:19 | '/post/:id' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst.js:9:9:9:19 | '/post/:id' | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/tst.js:9:9:9:19 | '/post/:id' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst.js:9:9:9:19 | '/post/:id' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst.js:9:9:9:19 | '/post/:id' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst.js:9:9:9:19 | '/post/:id' | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/tst.js:9:9:9:19 | '/post/:id' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst.js:9:9:9:19 | '/post/:id' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst.js:9:9:9:19 | '/post/:id' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst.js:9:9:9:19 | '/post/:id' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/tst.js:9:9:9:19 | '/post/:id' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst.js:9:9:9:19 | '/post/:id' | Xss | isConstantExpression | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst.js:9:9:9:19 | '/post/:id' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst.js:9:9:9:19 | '/post/:id' | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/tst.js:9:22:11:1 | functio ... '"');\\n} | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst.js:9:22:11:1 | functio ... '"');\\n} | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst.js:9:22:11:1 | functio ... '"');\\n} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst.js:9:22:11:1 | functio ... '"');\\n} | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/tst.js:9:22:11:1 | functio ... '"');\\n} | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst.js:9:22:11:1 | functio ... '"');\\n} | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst.js:9:22:11:1 | functio ... '"');\\n} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst.js:9:22:11:1 | functio ... '"');\\n} | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/tst.js:9:22:11:1 | functio ... '"');\\n} | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst.js:9:22:11:1 | functio ... '"');\\n} | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst.js:9:22:11:1 | functio ... '"');\\n} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst.js:9:22:11:1 | functio ... '"');\\n} | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/tst.js:9:22:11:1 | functio ... '"');\\n} | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst.js:9:22:11:1 | functio ... '"');\\n} | Xss | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst.js:9:22:11:1 | functio ... '"');\\n} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst.js:9:22:11:1 | functio ... '"');\\n} | Xss | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/tst.js:10:10:10:58 | 'SELECT ... rams.id | SqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst.js:10:10:10:58 | 'SELECT ... rams.id | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst.js:10:10:10:58 | 'SELECT ... rams.id | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst.js:10:10:10:58 | 'SELECT ... rams.id | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/NosqlAndSqlInjection/untyped/tst.js:10:10:10:64 | 'SELECT ... d + '"' | SqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst.js:10:10:10:64 | 'SELECT ... d + '"' | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst.js:10:10:10:64 | 'SELECT ... d + '"' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/NosqlAndSqlInjection/untyped/tst.js:10:10:10:64 | 'SELECT ... d + '"' | SqlInjection | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/TaintedPath-es6.js:6:27:11:1 | functio ... h)));\\n} | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/TaintedPath-es6.js:6:27:11:1 | functio ... h)));\\n} | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/TaintedPath-es6.js:6:27:11:1 | functio ... h)));\\n} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath-es6.js:6:27:11:1 | functio ... h)));\\n} | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/TaintedPath-es6.js:6:27:11:1 | functio ... h)));\\n} | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/TaintedPath-es6.js:6:27:11:1 | functio ... h)));\\n} | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/TaintedPath-es6.js:6:27:11:1 | functio ... h)));\\n} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath-es6.js:6:27:11:1 | functio ... h)));\\n} | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/TaintedPath-es6.js:6:27:11:1 | functio ... h)));\\n} | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/TaintedPath-es6.js:6:27:11:1 | functio ... h)));\\n} | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/TaintedPath-es6.js:6:27:11:1 | functio ... h)));\\n} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath-es6.js:6:27:11:1 | functio ... h)));\\n} | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/TaintedPath-es6.js:6:27:11:1 | functio ... h)));\\n} | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/TaintedPath-es6.js:6:27:11:1 | functio ... h)));\\n} | Xss | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/TaintedPath-es6.js:6:27:11:1 | functio ... h)));\\n} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath-es6.js:6:27:11:1 | functio ... h)));\\n} | Xss | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/TaintedPath-es6.js:10:26:10:45 | join("public", path) | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/TaintedPath-es6.js:10:26:10:45 | join("public", path) | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/TaintedPath-es6.js:10:26:10:45 | join("public", path) | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath-es6.js:10:26:10:45 | join("public", path) | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/TaintedPath.js:1:18:1:21 | 'fs' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:1:18:1:21 | 'fs' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:1:18:1:21 | 'fs' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:1:18:1:21 | 'fs' | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/TaintedPath.js:2:20:2:25 | 'http' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:2:20:2:25 | 'http' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:2:20:2:25 | 'http' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:2:20:2:25 | 'http' | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/TaintedPath.js:3:19:3:23 | 'url' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:3:19:3:23 | 'url' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:3:19:3:23 | 'url' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:3:19:3:23 | 'url' | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/TaintedPath.js:4:24:4:42 | 'sanitize-filename' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:4:24:4:42 | 'sanitize-filename' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:4:24:4:42 | 'sanitize-filename' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:4:24:4:42 | 'sanitize-filename' | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/TaintedPath.js:5:26:5:31 | 'path' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:5:26:5:31 | 'path' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:5:26:5:31 | 'path' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:5:26:5:31 | 'path' | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/TaintedPath.js:8:32:61:1 | functio ... h)));\\n} | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:8:32:61:1 | functio ... h)));\\n} | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:8:32:61:1 | functio ... h)));\\n} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:8:32:61:1 | functio ... h)));\\n} | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/TaintedPath.js:8:32:61:1 | functio ... h)));\\n} | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:8:32:61:1 | functio ... h)));\\n} | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:8:32:61:1 | functio ... h)));\\n} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:8:32:61:1 | functio ... h)));\\n} | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/TaintedPath.js:8:32:61:1 | functio ... h)));\\n} | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:8:32:61:1 | functio ... h)));\\n} | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:8:32:61:1 | functio ... h)));\\n} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:8:32:61:1 | functio ... h)));\\n} | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/TaintedPath.js:8:32:61:1 | functio ... h)));\\n} | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:8:32:61:1 | functio ... h)));\\n} | Xss | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:8:32:61:1 | functio ... h)));\\n} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:8:32:61:1 | functio ... h)));\\n} | Xss | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/TaintedPath.js:12:29:12:32 | path | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:12:29:12:32 | path | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:12:29:12:32 | path | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:12:29:12:32 | path | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/TaintedPath.js:15:29:15:48 | "/home/user/" + path | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:15:29:15:48 | "/home/user/" + path | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:15:29:15:48 | "/home/user/" + path | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:15:29:15:48 | "/home/user/" + path | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/TaintedPath.js:17:23:17:35 | "/home/user/" | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:17:23:17:35 | "/home/user/" | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:17:23:17:35 | "/home/user/" | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:17:23:17:35 | "/home/user/" | NosqlInjection | notASinkReason | StringStartsWith | string |
-| autogenerated/TaintedPath/TaintedPath.js:17:23:17:35 | "/home/user/" | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/TaintedPath.js:17:23:17:35 | "/home/user/" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:17:23:17:35 | "/home/user/" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:17:23:17:35 | "/home/user/" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:17:23:17:35 | "/home/user/" | SqlInjection | notASinkReason | StringStartsWith | string |
-| autogenerated/TaintedPath/TaintedPath.js:17:23:17:35 | "/home/user/" | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/TaintedPath.js:17:23:17:35 | "/home/user/" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:17:23:17:35 | "/home/user/" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:17:23:17:35 | "/home/user/" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:17:23:17:35 | "/home/user/" | TaintedPath | notASinkReason | StringStartsWith | string |
-| autogenerated/TaintedPath/TaintedPath.js:17:23:17:35 | "/home/user/" | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/TaintedPath.js:17:23:17:35 | "/home/user/" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:17:23:17:35 | "/home/user/" | Xss | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:17:23:17:35 | "/home/user/" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:17:23:17:35 | "/home/user/" | Xss | notASinkReason | StringStartsWith | string |
-| autogenerated/TaintedPath/TaintedPath.js:17:23:17:35 | "/home/user/" | Xss | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/TaintedPath.js:18:33:18:36 | path | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:18:33:18:36 | path | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:18:33:18:36 | path | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:18:33:18:36 | path | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/TaintedPath.js:20:20:20:27 | "secret" | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:20:20:20:27 | "secret" | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:20:20:20:27 | "secret" | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:20:20:20:27 | "secret" | NosqlInjection | notASinkReason | BuiltinCallName | string |
-| autogenerated/TaintedPath/TaintedPath.js:20:20:20:27 | "secret" | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/TaintedPath.js:20:20:20:27 | "secret" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:20:20:20:27 | "secret" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:20:20:20:27 | "secret" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:20:20:20:27 | "secret" | SqlInjection | notASinkReason | BuiltinCallName | string |
-| autogenerated/TaintedPath/TaintedPath.js:20:20:20:27 | "secret" | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/TaintedPath.js:20:20:20:27 | "secret" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:20:20:20:27 | "secret" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:20:20:20:27 | "secret" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:20:20:20:27 | "secret" | TaintedPath | notASinkReason | BuiltinCallName | string |
-| autogenerated/TaintedPath/TaintedPath.js:20:20:20:27 | "secret" | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/TaintedPath.js:20:20:20:27 | "secret" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:20:20:20:27 | "secret" | Xss | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:20:20:20:27 | "secret" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:20:20:20:27 | "secret" | Xss | notASinkReason | BuiltinCallName | string |
-| autogenerated/TaintedPath/TaintedPath.js:20:20:20:27 | "secret" | Xss | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/TaintedPath.js:21:33:21:36 | path | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:21:33:21:36 | path | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:21:33:21:36 | path | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:21:33:21:36 | path | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/TaintedPath.js:23:21:23:24 | path | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:23:21:23:24 | path | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:23:21:23:24 | path | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:23:21:23:24 | path | NosqlInjection | notASinkReason | FileSystemAccess | string |
-| autogenerated/TaintedPath/TaintedPath.js:23:21:23:24 | path | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/TaintedPath.js:23:21:23:24 | path | SqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:23:21:23:24 | path | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:23:21:23:24 | path | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:23:21:23:24 | path | SqlInjection | notASinkReason | FileSystemAccess | string |
-| autogenerated/TaintedPath/TaintedPath.js:23:21:23:24 | path | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/TaintedPath.js:23:21:23:24 | path | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:23:21:23:24 | path | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:23:21:23:24 | path | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:23:21:23:24 | path | TaintedPath | notASinkReason | FileSystemAccess | string |
-| autogenerated/TaintedPath/TaintedPath.js:23:21:23:24 | path | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/TaintedPath.js:23:21:23:24 | path | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:23:21:23:24 | path | Xss | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:23:21:23:24 | path | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:23:21:23:24 | path | Xss | notASinkReason | FileSystemAccess | string |
-| autogenerated/TaintedPath/TaintedPath.js:23:21:23:24 | path | Xss | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/TaintedPath.js:24:33:24:36 | path | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:24:33:24:36 | path | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:24:33:24:36 | path | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:24:33:24:36 | path | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/TaintedPath.js:27:31:27:34 | path | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:27:31:27:34 | path | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:27:31:27:34 | path | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:27:31:27:34 | path | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/TaintedPath.js:30:31:30:34 | path | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:30:31:30:34 | path | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:30:31:30:34 | path | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:30:31:30:34 | path | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/TaintedPath.js:33:31:33:34 | path | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:33:31:33:34 | path | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:33:31:33:34 | path | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:33:31:33:34 | path | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/TaintedPath.js:35:10:35:23 | sanitize(path) | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:35:10:35:23 | sanitize(path) | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:35:10:35:23 | sanitize(path) | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:35:10:35:23 | sanitize(path) | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/TaintedPath.js:36:29:36:32 | path | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:36:29:36:32 | path | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:36:29:36:32 | path | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:36:29:36:32 | path | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/TaintedPath.js:40:29:40:53 | pathMod ... e(path) | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:40:29:40:53 | pathMod ... e(path) | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:40:29:40:53 | pathMod ... e(path) | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:40:29:40:53 | pathMod ... e(path) | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/TaintedPath.js:42:29:42:52 | pathMod ... e(path) | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:42:29:42:52 | pathMod ... e(path) | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:42:29:42:52 | pathMod ... e(path) | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:42:29:42:52 | pathMod ... e(path) | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/TaintedPath.js:44:29:44:52 | pathMod ... e(path) | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:44:29:44:52 | pathMod ... e(path) | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:44:29:44:52 | pathMod ... e(path) | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:44:29:44:52 | pathMod ... e(path) | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/TaintedPath.js:46:29:46:49 | pathMod ... n(path) | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:46:29:46:49 | pathMod ... n(path) | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:46:29:46:49 | pathMod ... n(path) | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:46:29:46:49 | pathMod ... n(path) | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/TaintedPath.js:48:29:48:58 | pathMod ... ath, z) | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:48:29:48:58 | pathMod ... ath, z) | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:48:29:48:58 | pathMod ... ath, z) | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:48:29:48:58 | pathMod ... ath, z) | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/TaintedPath.js:50:29:50:54 | pathMod ... e(path) | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:50:29:50:54 | pathMod ... e(path) | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:50:29:50:54 | pathMod ... e(path) | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:50:29:50:54 | pathMod ... e(path) | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/TaintedPath.js:52:29:52:56 | pathMod ... , path) | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:52:29:52:56 | pathMod ... , path) | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:52:29:52:56 | pathMod ... , path) | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:52:29:52:56 | pathMod ... , path) | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/TaintedPath.js:54:29:54:56 | pathMod ... ath, x) | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:54:29:54:56 | pathMod ... ath, x) | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:54:29:54:56 | pathMod ... ath, x) | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:54:29:54:56 | pathMod ... ath, x) | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/TaintedPath.js:56:29:56:52 | pathMod ... e(path) | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:56:29:56:52 | pathMod ... e(path) | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:56:29:56:52 | pathMod ... e(path) | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:56:29:56:52 | pathMod ... e(path) | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/TaintedPath.js:58:29:58:61 | pathMod ... ath, z) | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:58:29:58:61 | pathMod ... ath, z) | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:58:29:58:61 | pathMod ... ath, z) | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:58:29:58:61 | pathMod ... ath, z) | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/TaintedPath.js:60:29:60:61 | pathMod ... h(path) | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:60:29:60:61 | pathMod ... h(path) | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:60:29:60:61 | pathMod ... h(path) | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:60:29:60:61 | pathMod ... h(path) | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/TaintedPath.js:63:16:63:22 | 'myApp' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:63:16:63:22 | 'myApp' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:63:16:63:22 | 'myApp' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:63:16:63:22 | 'myApp' | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/TaintedPath.js:63:16:63:22 | 'myApp' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:63:16:63:22 | 'myApp' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:63:16:63:22 | 'myApp' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:63:16:63:22 | 'myApp' | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/TaintedPath.js:63:16:63:22 | 'myApp' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:63:16:63:22 | 'myApp' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:63:16:63:22 | 'myApp' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:63:16:63:22 | 'myApp' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/TaintedPath.js:63:16:63:22 | 'myApp' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:63:16:63:22 | 'myApp' | Xss | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:63:16:63:22 | 'myApp' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:63:16:63:22 | 'myApp' | Xss | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/TaintedPath.js:63:25:63:26 | [] | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:63:25:63:26 | [] | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:63:25:63:26 | [] | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:63:25:63:26 | [] | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/TaintedPath.js:63:25:63:26 | [] | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:63:25:63:26 | [] | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:63:25:63:26 | [] | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:63:25:63:26 | [] | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/TaintedPath.js:63:25:63:26 | [] | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:63:25:63:26 | [] | Xss | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:63:25:63:26 | [] | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:63:25:63:26 | [] | Xss | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/TaintedPath.js:64:16:64:27 | 'myCustomer' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:64:16:64:27 | 'myCustomer' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:64:16:64:27 | 'myCustomer' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:64:16:64:27 | 'myCustomer' | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/TaintedPath.js:64:16:64:27 | 'myCustomer' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:64:16:64:27 | 'myCustomer' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:64:16:64:27 | 'myCustomer' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:64:16:64:27 | 'myCustomer' | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/TaintedPath.js:64:16:64:27 | 'myCustomer' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:64:16:64:27 | 'myCustomer' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:64:16:64:27 | 'myCustomer' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:64:16:64:27 | 'myCustomer' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/TaintedPath.js:64:16:64:27 | 'myCustomer' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:64:16:64:27 | 'myCustomer' | Xss | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:64:16:64:27 | 'myCustomer' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:64:16:64:27 | 'myCustomer' | Xss | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/TaintedPath.js:64:30:68:5 | functio ... }\\n    } | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:64:30:68:5 | functio ... }\\n    } | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:64:30:68:5 | functio ... }\\n    } | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:64:30:68:5 | functio ... }\\n    } | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/TaintedPath.js:64:30:68:5 | functio ... }\\n    } | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:64:30:68:5 | functio ... }\\n    } | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:64:30:68:5 | functio ... }\\n    } | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:64:30:68:5 | functio ... }\\n    } | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/TaintedPath.js:64:30:68:5 | functio ... }\\n    } | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:64:30:68:5 | functio ... }\\n    } | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:64:30:68:5 | functio ... }\\n    } | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:64:30:68:5 | functio ... }\\n    } | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/TaintedPath.js:64:30:68:5 | functio ... }\\n    } | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:64:30:68:5 | functio ... }\\n    } | Xss | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:64:30:68:5 | functio ... }\\n    } | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:64:30:68:5 | functio ... }\\n    } | Xss | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/TaintedPath.js:66:26:66:31 | "SAFE" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:66:26:66:31 | "SAFE" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:66:26:66:31 | "SAFE" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:66:26:66:31 | "SAFE" | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/TaintedPath.js:69:16:69:27 | 'myCustomer' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:69:16:69:27 | 'myCustomer' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:69:16:69:27 | 'myCustomer' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:69:16:69:27 | 'myCustomer' | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/TaintedPath.js:69:16:69:27 | 'myCustomer' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:69:16:69:27 | 'myCustomer' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:69:16:69:27 | 'myCustomer' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:69:16:69:27 | 'myCustomer' | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/TaintedPath.js:69:16:69:27 | 'myCustomer' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:69:16:69:27 | 'myCustomer' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:69:16:69:27 | 'myCustomer' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:69:16:69:27 | 'myCustomer' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/TaintedPath.js:69:16:69:27 | 'myCustomer' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:69:16:69:27 | 'myCustomer' | Xss | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:69:16:69:27 | 'myCustomer' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:69:16:69:27 | 'myCustomer' | Xss | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/TaintedPath.js:69:30:73:5 | functio ... }\\n    } | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:69:30:73:5 | functio ... }\\n    } | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:69:30:73:5 | functio ... }\\n    } | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:69:30:73:5 | functio ... }\\n    } | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/TaintedPath.js:69:30:73:5 | functio ... }\\n    } | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:69:30:73:5 | functio ... }\\n    } | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:69:30:73:5 | functio ... }\\n    } | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:69:30:73:5 | functio ... }\\n    } | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/TaintedPath.js:69:30:73:5 | functio ... }\\n    } | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:69:30:73:5 | functio ... }\\n    } | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:69:30:73:5 | functio ... }\\n    } | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:69:30:73:5 | functio ... }\\n    } | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/TaintedPath.js:69:30:73:5 | functio ... }\\n    } | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:69:30:73:5 | functio ... }\\n    } | Xss | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:69:30:73:5 | functio ... }\\n    } | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:69:30:73:5 | functio ... }\\n    } | Xss | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/TaintedPath.js:71:26:71:45 | Cookie.get("unsafe") | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:71:26:71:45 | Cookie.get("unsafe") | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:71:26:71:45 | Cookie.get("unsafe") | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:71:26:71:45 | Cookie.get("unsafe") | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/TaintedPath.js:71:37:71:44 | "unsafe" | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:71:37:71:44 | "unsafe" | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:71:37:71:44 | "unsafe" | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:71:37:71:44 | "unsafe" | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/TaintedPath.js:71:37:71:44 | "unsafe" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:71:37:71:44 | "unsafe" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:71:37:71:44 | "unsafe" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:71:37:71:44 | "unsafe" | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/TaintedPath.js:71:37:71:44 | "unsafe" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:71:37:71:44 | "unsafe" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:71:37:71:44 | "unsafe" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:71:37:71:44 | "unsafe" | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/TaintedPath.js:71:37:71:44 | "unsafe" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:71:37:71:44 | "unsafe" | Xss | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:71:37:71:44 | "unsafe" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:71:37:71:44 | "unsafe" | Xss | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/TaintedPath.js:75:32:80:1 | functio ... OT OK\\n} | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:75:32:80:1 | functio ... OT OK\\n} | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:75:32:80:1 | functio ... OT OK\\n} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:75:32:80:1 | functio ... OT OK\\n} | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/TaintedPath.js:75:32:80:1 | functio ... OT OK\\n} | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:75:32:80:1 | functio ... OT OK\\n} | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:75:32:80:1 | functio ... OT OK\\n} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:75:32:80:1 | functio ... OT OK\\n} | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/TaintedPath.js:75:32:80:1 | functio ... OT OK\\n} | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:75:32:80:1 | functio ... OT OK\\n} | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:75:32:80:1 | functio ... OT OK\\n} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:75:32:80:1 | functio ... OT OK\\n} | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/TaintedPath.js:75:32:80:1 | functio ... OT OK\\n} | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:75:32:80:1 | functio ... OT OK\\n} | Xss | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:75:32:80:1 | functio ... OT OK\\n} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:75:32:80:1 | functio ... OT OK\\n} | Xss | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/TaintedPath.js:77:31:77:76 | require ... ).query | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:77:31:77:76 | require ... ).query | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:77:31:77:76 | require ... ).query | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:77:31:77:76 | require ... ).query | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/TaintedPath.js:77:39:77:54 | "querystringify" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:77:39:77:54 | "querystringify" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:77:39:77:54 | "querystringify" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:77:39:77:54 | "querystringify" | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/TaintedPath.js:78:31:78:74 | require ... ).query | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:78:31:78:74 | require ... ).query | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:78:31:78:74 | require ... ).query | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:78:31:78:74 | require ... ).query | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/TaintedPath.js:78:39:78:52 | "query-string" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:78:39:78:52 | "query-string" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:78:39:78:52 | "query-string" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:78:39:78:52 | "query-string" | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/TaintedPath.js:79:31:79:73 | require ... ).query | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:79:31:79:73 | require ... ).query | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:79:31:79:73 | require ... ).query | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:79:31:79:73 | require ... ).query | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/TaintedPath.js:79:39:79:51 | "querystring" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:79:39:79:51 | "querystring" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:79:39:79:51 | "querystring" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:79:39:79:51 | "querystring" | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/TaintedPath.js:84:27:84:35 | 'express' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:84:27:84:35 | 'express' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:84:27:84:35 | 'express' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:84:27:84:35 | 'express' | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/TaintedPath.js:87:48:87:60 | req.params[0] | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:87:48:87:60 | req.params[0] | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:87:48:87:60 | req.params[0] | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:87:48:87:60 | req.params[0] | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/TaintedPath.js:88:21:88:30 | '/views/*' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:88:21:88:30 | '/views/*' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:88:21:88:30 | '/views/*' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:88:21:88:30 | '/views/*' | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/TaintedPath.js:88:21:88:30 | '/views/*' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:88:21:88:30 | '/views/*' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:88:21:88:30 | '/views/*' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:88:21:88:30 | '/views/*' | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/TaintedPath.js:88:21:88:30 | '/views/*' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:88:21:88:30 | '/views/*' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:88:21:88:30 | '/views/*' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:88:21:88:30 | '/views/*' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/TaintedPath.js:88:21:88:30 | '/views/*' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:88:21:88:30 | '/views/*' | Xss | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:88:21:88:30 | '/views/*' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:88:21:88:30 | '/views/*' | Xss | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/TaintedPath.js:88:33:88:43 | views_local | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:88:33:88:43 | views_local | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:88:33:88:43 | views_local | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:88:33:88:43 | views_local | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/TaintedPath.js:88:33:88:43 | views_local | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:88:33:88:43 | views_local | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:88:33:88:43 | views_local | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:88:33:88:43 | views_local | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/TaintedPath.js:88:33:88:43 | views_local | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:88:33:88:43 | views_local | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:88:33:88:43 | views_local | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:88:33:88:43 | views_local | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/TaintedPath.js:88:33:88:43 | views_local | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:88:33:88:43 | views_local | Xss | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:88:33:88:43 | views_local | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:88:33:88:43 | views_local | Xss | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/TaintedPath.js:90:34:90:42 | "./views" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:90:34:90:42 | "./views" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:90:34:90:42 | "./views" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:90:34:90:42 | "./views" | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/TaintedPath.js:91:21:91:30 | '/views/*' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:91:21:91:30 | '/views/*' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:91:21:91:30 | '/views/*' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:91:21:91:30 | '/views/*' | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/TaintedPath.js:91:21:91:30 | '/views/*' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:91:21:91:30 | '/views/*' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:91:21:91:30 | '/views/*' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:91:21:91:30 | '/views/*' | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/TaintedPath.js:91:21:91:30 | '/views/*' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:91:21:91:30 | '/views/*' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:91:21:91:30 | '/views/*' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:91:21:91:30 | '/views/*' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/TaintedPath.js:91:21:91:30 | '/views/*' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:91:21:91:30 | '/views/*' | Xss | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:91:21:91:30 | '/views/*' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:91:21:91:30 | '/views/*' | Xss | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/TaintedPath.js:91:33:91:46 | views_imported | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:91:33:91:46 | views_imported | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:91:33:91:46 | views_imported | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:91:33:91:46 | views_imported | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/TaintedPath.js:91:33:91:46 | views_imported | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:91:33:91:46 | views_imported | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:91:33:91:46 | views_imported | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:91:33:91:46 | views_imported | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/TaintedPath.js:91:33:91:46 | views_imported | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:91:33:91:46 | views_imported | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:91:33:91:46 | views_imported | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:91:33:91:46 | views_imported | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/TaintedPath.js:91:33:91:46 | views_imported | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:91:33:91:46 | views_imported | Xss | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:91:33:91:46 | views_imported | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:91:33:91:46 | views_imported | Xss | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/TaintedPath.js:95:18:95:26 | 'message' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:95:18:95:26 | 'message' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:95:18:95:26 | 'message' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:95:18:95:26 | 'message' | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/TaintedPath.js:95:18:95:26 | 'message' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:95:18:95:26 | 'message' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:95:18:95:26 | 'message' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:95:18:95:26 | 'message' | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/TaintedPath.js:95:18:95:26 | 'message' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:95:18:95:26 | 'message' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:95:18:95:26 | 'message' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:95:18:95:26 | 'message' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/TaintedPath.js:95:18:95:26 | 'message' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:95:18:95:26 | 'message' | Xss | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:95:18:95:26 | 'message' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:95:18:95:26 | 'message' | Xss | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/TaintedPath.js:95:29:97:1 | (ev) => ... ata);\\n} | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:95:29:97:1 | (ev) => ... ata);\\n} | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:95:29:97:1 | (ev) => ... ata);\\n} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:95:29:97:1 | (ev) => ... ata);\\n} | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/TaintedPath.js:95:29:97:1 | (ev) => ... ata);\\n} | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:95:29:97:1 | (ev) => ... ata);\\n} | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:95:29:97:1 | (ev) => ... ata);\\n} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:95:29:97:1 | (ev) => ... ata);\\n} | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/TaintedPath.js:95:29:97:1 | (ev) => ... ata);\\n} | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:95:29:97:1 | (ev) => ... ata);\\n} | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:95:29:97:1 | (ev) => ... ata);\\n} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:95:29:97:1 | (ev) => ... ata);\\n} | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/TaintedPath.js:95:29:97:1 | (ev) => ... ata);\\n} | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:95:29:97:1 | (ev) => ... ata);\\n} | Xss | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:95:29:97:1 | (ev) => ... ata);\\n} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:95:29:97:1 | (ev) => ... ata);\\n} | Xss | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/TaintedPath.js:99:32:109:1 | functio ...   );\\n\\n} | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:99:32:109:1 | functio ...   );\\n\\n} | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:99:32:109:1 | functio ...   );\\n\\n} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:99:32:109:1 | functio ...   );\\n\\n} | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/TaintedPath.js:99:32:109:1 | functio ...   );\\n\\n} | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:99:32:109:1 | functio ...   );\\n\\n} | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:99:32:109:1 | functio ...   );\\n\\n} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:99:32:109:1 | functio ...   );\\n\\n} | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/TaintedPath.js:99:32:109:1 | functio ...   );\\n\\n} | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:99:32:109:1 | functio ...   );\\n\\n} | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:99:32:109:1 | functio ...   );\\n\\n} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:99:32:109:1 | functio ...   );\\n\\n} | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/TaintedPath.js:99:32:109:1 | functio ...   );\\n\\n} | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:99:32:109:1 | functio ...   );\\n\\n} | Xss | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:99:32:109:1 | functio ...   );\\n\\n} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:99:32:109:1 | functio ...   );\\n\\n} | Xss | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/TaintedPath.js:102:28:102:48 | fs.real ... c(path) | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:102:28:102:48 | fs.real ... c(path) | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:102:28:102:48 | fs.real ... c(path) | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:102:28:102:48 | fs.real ... c(path) | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/TaintedPath.js:102:44:102:47 | path | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:102:44:102:47 | path | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:102:44:102:47 | path | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:102:44:102:47 | path | NosqlInjection | notASinkReason | FileSystemAccess | string |
-| autogenerated/TaintedPath/TaintedPath.js:102:44:102:47 | path | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/TaintedPath.js:102:44:102:47 | path | SqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:102:44:102:47 | path | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:102:44:102:47 | path | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:102:44:102:47 | path | SqlInjection | notASinkReason | FileSystemAccess | string |
-| autogenerated/TaintedPath/TaintedPath.js:102:44:102:47 | path | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/TaintedPath.js:102:44:102:47 | path | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:102:44:102:47 | path | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:102:44:102:47 | path | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:102:44:102:47 | path | TaintedPath | notASinkReason | FileSystemAccess | string |
-| autogenerated/TaintedPath/TaintedPath.js:102:44:102:47 | path | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/TaintedPath.js:102:44:102:47 | path | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:102:44:102:47 | path | Xss | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:102:44:102:47 | path | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:102:44:102:47 | path | Xss | notASinkReason | FileSystemAccess | string |
-| autogenerated/TaintedPath/TaintedPath.js:102:44:102:47 | path | Xss | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/TaintedPath.js:103:14:103:17 | path | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:103:14:103:17 | path | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:103:14:103:17 | path | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:103:14:103:17 | path | NosqlInjection | notASinkReason | FileSystemAccess | string |
-| autogenerated/TaintedPath/TaintedPath.js:103:14:103:17 | path | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/TaintedPath.js:103:14:103:17 | path | SqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:103:14:103:17 | path | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:103:14:103:17 | path | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:103:14:103:17 | path | SqlInjection | notASinkReason | FileSystemAccess | string |
-| autogenerated/TaintedPath/TaintedPath.js:103:14:103:17 | path | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/TaintedPath.js:103:14:103:17 | path | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:103:14:103:17 | path | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:103:14:103:17 | path | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:103:14:103:17 | path | TaintedPath | notASinkReason | FileSystemAccess | string |
-| autogenerated/TaintedPath/TaintedPath.js:103:14:103:17 | path | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/TaintedPath.js:103:14:103:17 | path | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:103:14:103:17 | path | Xss | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:103:14:103:17 | path | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:103:14:103:17 | path | Xss | notASinkReason | FileSystemAccess | string |
-| autogenerated/TaintedPath/TaintedPath.js:103:14:103:17 | path | Xss | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/TaintedPath.js:104:18:106:18 | functio ...       } | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:104:18:106:18 | functio ...       } | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:104:18:106:18 | functio ...       } | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:104:18:106:18 | functio ...       } | NosqlInjection | notASinkReason | FileSystemAccess | string |
-| autogenerated/TaintedPath/TaintedPath.js:104:18:106:18 | functio ...       } | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/TaintedPath.js:104:18:106:18 | functio ...       } | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:104:18:106:18 | functio ...       } | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:104:18:106:18 | functio ...       } | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:104:18:106:18 | functio ...       } | SqlInjection | notASinkReason | FileSystemAccess | string |
-| autogenerated/TaintedPath/TaintedPath.js:104:18:106:18 | functio ...       } | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/TaintedPath.js:104:18:106:18 | functio ...       } | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:104:18:106:18 | functio ...       } | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:104:18:106:18 | functio ...       } | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:104:18:106:18 | functio ...       } | TaintedPath | notASinkReason | FileSystemAccess | string |
-| autogenerated/TaintedPath/TaintedPath.js:104:18:106:18 | functio ...       } | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/TaintedPath.js:104:18:106:18 | functio ...       } | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:104:18:106:18 | functio ...       } | Xss | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:104:18:106:18 | functio ...       } | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:104:18:106:18 | functio ...       } | Xss | notASinkReason | FileSystemAccess | string |
-| autogenerated/TaintedPath/TaintedPath.js:104:18:106:18 | functio ...       } | Xss | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/TaintedPath.js:105:45:105:52 | realpath | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:105:45:105:52 | realpath | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:105:45:105:52 | realpath | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:105:45:105:52 | realpath | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/TaintedPath.js:111:32:120:1 | functio ... bove.\\n} | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:111:32:120:1 | functio ... bove.\\n} | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:111:32:120:1 | functio ... bove.\\n} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:111:32:120:1 | functio ... bove.\\n} | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/TaintedPath.js:111:32:120:1 | functio ... bove.\\n} | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:111:32:120:1 | functio ... bove.\\n} | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:111:32:120:1 | functio ... bove.\\n} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:111:32:120:1 | functio ... bove.\\n} | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/TaintedPath.js:111:32:120:1 | functio ... bove.\\n} | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:111:32:120:1 | functio ... bove.\\n} | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:111:32:120:1 | functio ... bove.\\n} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:111:32:120:1 | functio ... bove.\\n} | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/TaintedPath.js:111:32:120:1 | functio ... bove.\\n} | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:111:32:120:1 | functio ... bove.\\n} | Xss | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:111:32:120:1 | functio ... bove.\\n} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:111:32:120:1 | functio ... bove.\\n} | Xss | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/TaintedPath.js:115:12:115:51 | path.re ... /g, '') | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:115:12:115:51 | path.re ... /g, '') | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:115:12:115:51 | path.re ... /g, '') | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:115:12:115:51 | path.re ... /g, '') | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/TaintedPath.js:116:12:116:36 | path.re ... /g, '') | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:116:12:116:36 | path.re ... /g, '') | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:116:12:116:36 | path.re ... /g, '') | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:116:12:116:36 | path.re ... /g, '') | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/TaintedPath.js:119:29:119:32 | path | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:119:29:119:32 | path | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:119:29:119:32 | path | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:119:29:119:32 | path | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/TaintedPath.js:122:32:133:1 | functio ... bove.\\n} | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:122:32:133:1 | functio ... bove.\\n} | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:122:32:133:1 | functio ... bove.\\n} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:122:32:133:1 | functio ... bove.\\n} | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/TaintedPath.js:122:32:133:1 | functio ... bove.\\n} | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:122:32:133:1 | functio ... bove.\\n} | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:122:32:133:1 | functio ... bove.\\n} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:122:32:133:1 | functio ... bove.\\n} | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/TaintedPath.js:122:32:133:1 | functio ... bove.\\n} | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:122:32:133:1 | functio ... bove.\\n} | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:122:32:133:1 | functio ... bove.\\n} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:122:32:133:1 | functio ... bove.\\n} | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/TaintedPath.js:122:32:133:1 | functio ... bove.\\n} | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:122:32:133:1 | functio ... bove.\\n} | Xss | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:122:32:133:1 | functio ... bove.\\n} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:122:32:133:1 | functio ... bove.\\n} | Xss | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/TaintedPath.js:128:11:128:50 | path.re ... /g, '') | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:128:11:128:50 | path.re ... /g, '') | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:128:11:128:50 | path.re ... /g, '') | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:128:11:128:50 | path.re ... /g, '') | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/TaintedPath.js:129:12:129:36 | path.re ... /g, '') | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:129:12:129:36 | path.re ... /g, '') | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:129:12:129:36 | path.re ... /g, '') | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:129:12:129:36 | path.re ... /g, '') | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/TaintedPath.js:132:29:132:32 | path | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:132:29:132:32 | path | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:132:29:132:32 | path | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:132:29:132:32 | path | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/TaintedPath.js:135:32:139:1 | functio ... OT OK\\n} | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:135:32:139:1 | functio ... OT OK\\n} | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:135:32:139:1 | functio ... OT OK\\n} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:135:32:139:1 | functio ... OT OK\\n} | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/TaintedPath.js:135:32:139:1 | functio ... OT OK\\n} | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:135:32:139:1 | functio ... OT OK\\n} | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:135:32:139:1 | functio ... OT OK\\n} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:135:32:139:1 | functio ... OT OK\\n} | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/TaintedPath.js:135:32:139:1 | functio ... OT OK\\n} | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:135:32:139:1 | functio ... OT OK\\n} | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:135:32:139:1 | functio ... OT OK\\n} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:135:32:139:1 | functio ... OT OK\\n} | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/TaintedPath.js:135:32:139:1 | functio ... OT OK\\n} | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:135:32:139:1 | functio ... OT OK\\n} | Xss | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:135:32:139:1 | functio ... OT OK\\n} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:135:32:139:1 | functio ... OT OK\\n} | Xss | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/TaintedPath.js:138:10:138:15 | 'send' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:138:10:138:15 | 'send' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:138:10:138:15 | 'send' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:138:10:138:15 | 'send' | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/TaintedPath.js:138:23:138:26 | path | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:138:23:138:26 | path | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:138:23:138:26 | path | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:138:23:138:26 | path | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/TaintedPath.js:141:32:163:1 | functio ...  OK \\n\\n} | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:141:32:163:1 | functio ...  OK \\n\\n} | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:141:32:163:1 | functio ...  OK \\n\\n} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:141:32:163:1 | functio ...  OK \\n\\n} | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/TaintedPath.js:141:32:163:1 | functio ...  OK \\n\\n} | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:141:32:163:1 | functio ...  OK \\n\\n} | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:141:32:163:1 | functio ...  OK \\n\\n} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:141:32:163:1 | functio ...  OK \\n\\n} | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/TaintedPath.js:141:32:163:1 | functio ...  OK \\n\\n} | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:141:32:163:1 | functio ...  OK \\n\\n} | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:141:32:163:1 | functio ...  OK \\n\\n} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:141:32:163:1 | functio ...  OK \\n\\n} | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/TaintedPath.js:141:32:163:1 | functio ...  OK \\n\\n} | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:141:32:163:1 | functio ...  OK \\n\\n} | Xss | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:141:32:163:1 | functio ...  OK \\n\\n} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:141:32:163:1 | functio ...  OK \\n\\n} | Xss | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/TaintedPath.js:144:19:144:22 | path | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:144:19:144:22 | path | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:144:19:144:22 | path | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:144:19:144:22 | path | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/TaintedPath.js:146:26:146:28 | "/" | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:146:26:146:28 | "/" | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:146:26:146:28 | "/" | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:146:26:146:28 | "/" | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/TaintedPath.js:146:26:146:28 | "/" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:146:26:146:28 | "/" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:146:26:146:28 | "/" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:146:26:146:28 | "/" | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/TaintedPath.js:146:26:146:28 | "/" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:146:26:146:28 | "/" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:146:26:146:28 | "/" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:146:26:146:28 | "/" | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/TaintedPath.js:146:26:146:28 | "/" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:146:26:146:28 | "/" | Xss | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:146:26:146:28 | "/" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:146:26:146:28 | "/" | Xss | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/TaintedPath.js:148:19:148:33 | split.join("/") | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:148:19:148:33 | split.join("/") | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:148:19:148:33 | split.join("/") | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:148:19:148:33 | split.join("/") | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/TaintedPath.js:148:30:148:32 | "/" | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:148:30:148:32 | "/" | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:148:30:148:32 | "/" | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:148:30:148:32 | "/" | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/TaintedPath.js:148:30:148:32 | "/" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:148:30:148:32 | "/" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:148:30:148:32 | "/" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:148:30:148:32 | "/" | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/TaintedPath.js:148:30:148:32 | "/" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:148:30:148:32 | "/" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:148:30:148:32 | "/" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:148:30:148:32 | "/" | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/TaintedPath.js:148:30:148:32 | "/" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:148:30:148:32 | "/" | Xss | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:148:30:148:32 | "/" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:148:30:148:32 | "/" | Xss | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/TaintedPath.js:150:19:150:50 | prefix  ... th - 1] | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:150:19:150:50 | prefix  ... th - 1] | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:150:19:150:50 | prefix  ... th - 1] | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:150:19:150:50 | prefix  ... th - 1] | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/TaintedPath.js:152:19:152:26 | split[x] | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:152:19:152:26 | split[x] | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:152:19:152:26 | split[x] | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:152:19:152:26 | split[x] | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/TaintedPath.js:153:19:153:35 | prefix + split[x] | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:153:19:153:35 | prefix + split[x] | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:153:19:153:35 | prefix + split[x] | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:153:19:153:35 | prefix + split[x] | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/TaintedPath.js:156:19:156:37 | concatted.join("/") | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:156:19:156:37 | concatted.join("/") | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:156:19:156:37 | concatted.join("/") | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:156:19:156:37 | concatted.join("/") | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/TaintedPath.js:156:34:156:36 | "/" | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:156:34:156:36 | "/" | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:156:34:156:36 | "/" | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:156:34:156:36 | "/" | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/TaintedPath.js:156:34:156:36 | "/" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:156:34:156:36 | "/" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:156:34:156:36 | "/" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:156:34:156:36 | "/" | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/TaintedPath.js:156:34:156:36 | "/" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:156:34:156:36 | "/" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:156:34:156:36 | "/" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:156:34:156:36 | "/" | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/TaintedPath.js:156:34:156:36 | "/" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:156:34:156:36 | "/" | Xss | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:156:34:156:36 | "/" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:156:34:156:36 | "/" | Xss | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/TaintedPath.js:159:19:159:38 | concatted2.join("/") | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:159:19:159:38 | concatted2.join("/") | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:159:19:159:38 | concatted2.join("/") | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:159:19:159:38 | concatted2.join("/") | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/TaintedPath.js:159:35:159:37 | "/" | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:159:35:159:37 | "/" | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:159:35:159:37 | "/" | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:159:35:159:37 | "/" | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/TaintedPath.js:159:35:159:37 | "/" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:159:35:159:37 | "/" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:159:35:159:37 | "/" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:159:35:159:37 | "/" | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/TaintedPath.js:159:35:159:37 | "/" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:159:35:159:37 | "/" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:159:35:159:37 | "/" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:159:35:159:37 | "/" | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/TaintedPath.js:159:35:159:37 | "/" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:159:35:159:37 | "/" | Xss | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:159:35:159:37 | "/" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:159:35:159:37 | "/" | Xss | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/TaintedPath.js:161:19:161:29 | split.pop() | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:161:19:161:29 | split.pop() | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:161:19:161:29 | split.pop() | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:161:19:161:29 | split.pop() | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/TaintedPath.js:165:32:196:1 | functio ... lute)\\n} | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:165:32:196:1 | functio ... lute)\\n} | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:165:32:196:1 | functio ... lute)\\n} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:165:32:196:1 | functio ... lute)\\n} | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/TaintedPath.js:165:32:196:1 | functio ... lute)\\n} | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:165:32:196:1 | functio ... lute)\\n} | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:165:32:196:1 | functio ... lute)\\n} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:165:32:196:1 | functio ... lute)\\n} | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/TaintedPath.js:165:32:196:1 | functio ... lute)\\n} | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:165:32:196:1 | functio ... lute)\\n} | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:165:32:196:1 | functio ... lute)\\n} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:165:32:196:1 | functio ... lute)\\n} | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/TaintedPath.js:165:32:196:1 | functio ... lute)\\n} | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:165:32:196:1 | functio ... lute)\\n} | Xss | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:165:32:196:1 | functio ... lute)\\n} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:165:32:196:1 | functio ... lute)\\n} | Xss | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/TaintedPath.js:169:29:169:68 | path.re ... /g, '') | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:169:29:169:68 | path.re ... /g, '') | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:169:29:169:68 | path.re ... /g, '') | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:169:29:169:68 | path.re ... /g, '') | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/TaintedPath.js:170:29:170:55 | path.re ... /g, '') | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:170:29:170:55 | path.re ... /g, '') | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:170:29:170:55 | path.re ... /g, '') | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:170:29:170:55 | path.re ... /g, '') | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/TaintedPath.js:171:29:171:53 | path.re ... /g, '') | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:171:29:171:53 | path.re ... /g, '') | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:171:29:171:53 | path.re ... /g, '') | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:171:29:171:53 | path.re ... /g, '') | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/TaintedPath.js:172:29:172:64 | path.re ... /g, '') | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:172:29:172:64 | path.re ... /g, '') | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:172:29:172:64 | path.re ... /g, '') | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:172:29:172:64 | path.re ... /g, '') | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/TaintedPath.js:173:29:173:51 | path.re ... /g, '') | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:173:29:173:51 | path.re ... /g, '') | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:173:29:173:51 | path.re ... /g, '') | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:173:29:173:51 | path.re ... /g, '') | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/TaintedPath.js:174:29:174:54 | path.re ... /g, '') | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:174:29:174:54 | path.re ... /g, '') | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:174:29:174:54 | path.re ... /g, '') | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:174:29:174:54 | path.re ... /g, '') | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/TaintedPath.js:176:29:176:52 | path.re ... /g, '') | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:176:29:176:52 | path.re ... /g, '') | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:176:29:176:52 | path.re ... /g, '') | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:176:29:176:52 | path.re ... /g, '') | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/TaintedPath.js:177:29:177:53 | path.re ... /g, '') | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:177:29:177:53 | path.re ... /g, '') | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:177:29:177:53 | path.re ... /g, '') | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:177:29:177:53 | path.re ... /g, '') | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/TaintedPath.js:178:29:178:51 | path.re ... /g, '') | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:178:29:178:51 | path.re ... /g, '') | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:178:29:178:51 | path.re ... /g, '') | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:178:29:178:51 | path.re ... /g, '') | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/TaintedPath.js:179:29:179:57 | path.re ... /g, '') | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:179:29:179:57 | path.re ... /g, '') | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:179:29:179:57 | path.re ... /g, '') | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:179:29:179:57 | path.re ... /g, '') | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/TaintedPath.js:182:31:182:54 | path.re ... /g, '') | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:182:31:182:54 | path.re ... /g, '') | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:182:31:182:54 | path.re ... /g, '') | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:182:31:182:54 | path.re ... /g, '') | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/TaintedPath.js:183:30:183:54 | path.re ... /g, '') | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:183:30:183:54 | path.re ... /g, '') | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:183:30:183:54 | path.re ... /g, '') | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:183:30:183:54 | path.re ... /g, '') | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/TaintedPath.js:184:31:184:53 | path.re ... /g, '') | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:184:31:184:53 | path.re ... /g, '') | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:184:31:184:53 | path.re ... /g, '') | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:184:31:184:53 | path.re ... /g, '') | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/TaintedPath.js:185:30:185:58 | path.re ... /g, '') | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:185:30:185:58 | path.re ... /g, '') | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:185:30:185:58 | path.re ... /g, '') | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:185:30:185:58 | path.re ... /g, '') | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/TaintedPath.js:189:29:189:95 | "prefix ... +/, '') | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:189:29:189:95 | "prefix ... +/, '') | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:189:29:189:95 | "prefix ... +/, '') | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:189:29:189:95 | "prefix ... +/, '') | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/TaintedPath.js:190:29:190:94 | "prefix ... +/, '') | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:190:29:190:94 | "prefix ... +/, '') | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:190:29:190:94 | "prefix ... +/, '') | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:190:29:190:94 | "prefix ... +/, '') | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/TaintedPath.js:191:29:191:90 | "prefix ... +/, '') | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:191:29:191:90 | "prefix ... +/, '') | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:191:29:191:90 | "prefix ... +/, '') | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:191:29:191:90 | "prefix ... +/, '') | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/TaintedPath.js:192:29:192:90 | "prefix ... */, '') | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:192:29:192:90 | "prefix ... */, '') | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:192:29:192:90 | "prefix ... */, '') | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:192:29:192:90 | "prefix ... */, '') | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/TaintedPath.js:194:29:194:73 | "prefix ... +/, '') | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:194:29:194:73 | "prefix ... +/, '') | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:194:29:194:73 | "prefix ... +/, '') | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:194:29:194:73 | "prefix ... +/, '') | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/TaintedPath.js:195:29:195:84 | pathMod ... +/, '') | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:195:29:195:84 | pathMod ... +/, '') | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:195:29:195:84 | pathMod ... +/, '') | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/TaintedPath.js:195:29:195:84 | pathMod ... +/, '') | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/my-async-fs-module.js:1:20:1:23 | 'fs' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/my-async-fs-module.js:1:20:1:23 | 'fs' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/my-async-fs-module.js:1:20:1:23 | 'fs' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/my-async-fs-module.js:1:20:1:23 | 'fs' | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/my-async-fs-module.js:2:29:2:38 | 'bluebird' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/my-async-fs-module.js:2:29:2:38 | 'bluebird' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/my-async-fs-module.js:2:29:2:38 | 'bluebird' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/my-async-fs-module.js:2:29:2:38 | 'bluebird' | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/my-async-fs-module.js:12:27:12:36 | fs[method] | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/my-async-fs-module.js:12:27:12:36 | fs[method] | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/my-async-fs-module.js:12:27:12:36 | fs[method] | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/my-async-fs-module.js:12:27:12:36 | fs[method] | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/my-async-fs-module.js:12:27:12:36 | fs[method] | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/my-async-fs-module.js:12:27:12:36 | fs[method] | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/my-async-fs-module.js:12:27:12:36 | fs[method] | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/my-async-fs-module.js:12:27:12:36 | fs[method] | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/my-async-fs-module.js:12:27:12:36 | fs[method] | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/my-async-fs-module.js:12:27:12:36 | fs[method] | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/my-async-fs-module.js:12:27:12:36 | fs[method] | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/my-async-fs-module.js:12:27:12:36 | fs[method] | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/my-async-fs-module.js:12:27:12:36 | fs[method] | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/my-async-fs-module.js:12:27:12:36 | fs[method] | Xss | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/my-async-fs-module.js:12:27:12:36 | fs[method] | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/my-async-fs-module.js:12:27:12:36 | fs[method] | Xss | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/my-fs-module.js:3:18:3:21 | "fs" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/my-fs-module.js:3:18:3:21 | "fs" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/my-fs-module.js:3:18:3:21 | "fs" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/my-fs-module.js:3:18:3:21 | "fs" | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/my-fs-module.js:5:18:5:30 | "original-fs" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/my-fs-module.js:5:18:5:30 | "original-fs" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/my-fs-module.js:5:18:5:30 | "original-fs" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/my-fs-module.js:5:18:5:30 | "original-fs" | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:1:18:1:21 | 'fs' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:1:18:1:21 | 'fs' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:1:18:1:21 | 'fs' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:1:18:1:21 | 'fs' | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:2:23:2:31 | 'express' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:2:23:2:31 | 'express' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:2:23:2:31 | 'express' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:2:23:2:31 | 'express' | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:3:19:3:23 | 'url' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:3:19:3:23 | 'url' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:3:19:3:23 | 'url' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:3:19:3:23 | 'url' | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:4:24:4:42 | 'sanitize-filename' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:4:24:4:42 | 'sanitize-filename' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:4:24:4:42 | 'sanitize-filename' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:4:24:4:42 | 'sanitize-filename' | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:5:26:5:31 | 'path' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:5:26:5:31 | 'path' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:5:26:5:31 | 'path' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:5:26:5:31 | 'path' | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:10:9:10:16 | '/basic' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:10:9:10:16 | '/basic' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:10:9:10:16 | '/basic' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:10:9:10:16 | '/basic' | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:10:9:10:16 | '/basic' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:10:9:10:16 | '/basic' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:10:9:10:16 | '/basic' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:10:9:10:16 | '/basic' | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:10:9:10:16 | '/basic' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:10:9:10:16 | '/basic' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:10:9:10:16 | '/basic' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:10:9:10:16 | '/basic' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:10:9:10:16 | '/basic' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:10:9:10:16 | '/basic' | Xss | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:10:9:10:16 | '/basic' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:10:9:10:16 | '/basic' | Xss | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:10:19:18:1 | (req, r ... OT OK\\n} | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:10:19:18:1 | (req, r ... OT OK\\n} | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:10:19:18:1 | (req, r ... OT OK\\n} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:10:19:18:1 | (req, r ... OT OK\\n} | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:10:19:18:1 | (req, r ... OT OK\\n} | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:10:19:18:1 | (req, r ... OT OK\\n} | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:10:19:18:1 | (req, r ... OT OK\\n} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:10:19:18:1 | (req, r ... OT OK\\n} | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:10:19:18:1 | (req, r ... OT OK\\n} | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:10:19:18:1 | (req, r ... OT OK\\n} | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:10:19:18:1 | (req, r ... OT OK\\n} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:10:19:18:1 | (req, r ... OT OK\\n} | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:10:19:18:1 | (req, r ... OT OK\\n} | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:10:19:18:1 | (req, r ... OT OK\\n} | Xss | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:10:19:18:1 | (req, r ... OT OK\\n} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:10:19:18:1 | (req, r ... OT OK\\n} | Xss | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:13:19:13:22 | path | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:13:19:13:22 | path | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:13:19:13:22 | path | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:13:19:13:22 | path | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:14:19:14:29 | './' + path | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:14:19:14:29 | './' + path | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:14:19:14:29 | './' + path | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:14:19:14:29 | './' + path | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:15:19:15:38 | path + '/index.html' | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:15:19:15:38 | path + '/index.html' | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:15:19:15:38 | path + '/index.html' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:15:19:15:38 | path + '/index.html' | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:16:19:16:53 | pathMod ... .html') | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:16:19:16:53 | pathMod ... .html') | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:16:19:16:53 | pathMod ... .html') | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:16:19:16:53 | pathMod ... .html') | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:17:19:17:57 | pathMod ... , path) | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:17:19:17:57 | pathMod ... , path) | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:17:19:17:57 | pathMod ... , path) | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:17:19:17:57 | pathMod ... , path) | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:20:9:20:20 | '/normalize' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:20:9:20:20 | '/normalize' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:20:9:20:20 | '/normalize' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:20:9:20:20 | '/normalize' | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:20:9:20:20 | '/normalize' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:20:9:20:20 | '/normalize' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:20:9:20:20 | '/normalize' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:20:9:20:20 | '/normalize' | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:20:9:20:20 | '/normalize' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:20:9:20:20 | '/normalize' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:20:9:20:20 | '/normalize' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:20:9:20:20 | '/normalize' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:20:9:20:20 | '/normalize' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:20:9:20:20 | '/normalize' | Xss | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:20:9:20:20 | '/normalize' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:20:9:20:20 | '/normalize' | Xss | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:20:23:28:1 | (req, r ... OT OK\\n} | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:20:23:28:1 | (req, r ... OT OK\\n} | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:20:23:28:1 | (req, r ... OT OK\\n} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:20:23:28:1 | (req, r ... OT OK\\n} | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:20:23:28:1 | (req, r ... OT OK\\n} | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:20:23:28:1 | (req, r ... OT OK\\n} | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:20:23:28:1 | (req, r ... OT OK\\n} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:20:23:28:1 | (req, r ... OT OK\\n} | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:20:23:28:1 | (req, r ... OT OK\\n} | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:20:23:28:1 | (req, r ... OT OK\\n} | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:20:23:28:1 | (req, r ... OT OK\\n} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:20:23:28:1 | (req, r ... OT OK\\n} | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:20:23:28:1 | (req, r ... OT OK\\n} | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:20:23:28:1 | (req, r ... OT OK\\n} | Xss | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:20:23:28:1 | (req, r ... OT OK\\n} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:20:23:28:1 | (req, r ... OT OK\\n} | Xss | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:21:14:21:49 | pathMod ... y.path) | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:21:14:21:49 | pathMod ... y.path) | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:21:14:21:49 | pathMod ... y.path) | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:21:14:21:49 | pathMod ... y.path) | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:23:19:23:22 | path | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:23:19:23:22 | path | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:23:19:23:22 | path | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:23:19:23:22 | path | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:24:19:24:29 | './' + path | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:24:19:24:29 | './' + path | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:24:19:24:29 | './' + path | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:24:19:24:29 | './' + path | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:25:19:25:38 | path + '/index.html' | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:25:19:25:38 | path + '/index.html' | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:25:19:25:38 | path + '/index.html' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:25:19:25:38 | path + '/index.html' | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:26:19:26:53 | pathMod ... .html') | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:26:19:26:53 | pathMod ... .html') | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:26:19:26:53 | pathMod ... .html') | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:26:19:26:53 | pathMod ... .html') | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:27:19:27:57 | pathMod ... , path) | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:27:19:27:57 | pathMod ... , path) | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:27:19:27:57 | pathMod ... , path) | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:27:19:27:57 | pathMod ... , path) | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:30:9:30:32 | '/norma ... solute' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:30:9:30:32 | '/norma ... solute' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:30:9:30:32 | '/norma ... solute' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:30:9:30:32 | '/norma ... solute' | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:30:9:30:32 | '/norma ... solute' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:30:9:30:32 | '/norma ... solute' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:30:9:30:32 | '/norma ... solute' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:30:9:30:32 | '/norma ... solute' | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:30:9:30:32 | '/norma ... solute' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:30:9:30:32 | '/norma ... solute' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:30:9:30:32 | '/norma ... solute' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:30:9:30:32 | '/norma ... solute' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:30:9:30:32 | '/norma ... solute' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:30:9:30:32 | '/norma ... solute' | Xss | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:30:9:30:32 | '/norma ... solute' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:30:9:30:32 | '/norma ... solute' | Xss | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:30:35:51:1 | (req, r ... // OK\\n} | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:30:35:51:1 | (req, r ... // OK\\n} | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:30:35:51:1 | (req, r ... // OK\\n} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:30:35:51:1 | (req, r ... // OK\\n} | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:30:35:51:1 | (req, r ... // OK\\n} | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:30:35:51:1 | (req, r ... // OK\\n} | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:30:35:51:1 | (req, r ... // OK\\n} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:30:35:51:1 | (req, r ... // OK\\n} | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:30:35:51:1 | (req, r ... // OK\\n} | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:30:35:51:1 | (req, r ... // OK\\n} | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:30:35:51:1 | (req, r ... // OK\\n} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:30:35:51:1 | (req, r ... // OK\\n} | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:30:35:51:1 | (req, r ... // OK\\n} | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:30:35:51:1 | (req, r ... // OK\\n} | Xss | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:30:35:51:1 | (req, r ... // OK\\n} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:30:35:51:1 | (req, r ... // OK\\n} | Xss | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:31:14:31:49 | pathMod ... y.path) | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:31:14:31:49 | pathMod ... y.path) | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:31:14:31:49 | pathMod ... y.path) | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:31:14:31:49 | pathMod ... y.path) | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:36:19:36:22 | path | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:36:19:36:22 | path | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:36:19:36:22 | path | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:36:19:36:22 | path | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:38:24:38:26 | "." | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:38:24:38:26 | "." | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:38:24:38:26 | "." | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:38:24:38:26 | "." | NosqlInjection | notASinkReason | StringStartsWith | string |
-| autogenerated/TaintedPath/normalizedPaths.js:38:24:38:26 | "." | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:38:24:38:26 | "." | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:38:24:38:26 | "." | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:38:24:38:26 | "." | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:38:24:38:26 | "." | SqlInjection | notASinkReason | StringStartsWith | string |
-| autogenerated/TaintedPath/normalizedPaths.js:38:24:38:26 | "." | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:38:24:38:26 | "." | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:38:24:38:26 | "." | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:38:24:38:26 | "." | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:38:24:38:26 | "." | TaintedPath | notASinkReason | StringStartsWith | string |
-| autogenerated/TaintedPath/normalizedPaths.js:38:24:38:26 | "." | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:38:24:38:26 | "." | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:38:24:38:26 | "." | Xss | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:38:24:38:26 | "." | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:38:24:38:26 | "." | Xss | notASinkReason | StringStartsWith | string |
-| autogenerated/TaintedPath/normalizedPaths.js:38:24:38:26 | "." | Xss | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:39:21:39:24 | path | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:39:21:39:24 | path | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:39:21:39:24 | path | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:39:21:39:24 | path | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:41:21:41:24 | path | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:41:21:41:24 | path | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:41:21:41:24 | path | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:41:21:41:24 | path | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:43:24:43:27 | ".." | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:43:24:43:27 | ".." | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:43:24:43:27 | ".." | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:43:24:43:27 | ".." | NosqlInjection | notASinkReason | StringStartsWith | string |
-| autogenerated/TaintedPath/normalizedPaths.js:43:24:43:27 | ".." | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:43:24:43:27 | ".." | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:43:24:43:27 | ".." | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:43:24:43:27 | ".." | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:43:24:43:27 | ".." | SqlInjection | notASinkReason | StringStartsWith | string |
-| autogenerated/TaintedPath/normalizedPaths.js:43:24:43:27 | ".." | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:43:24:43:27 | ".." | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:43:24:43:27 | ".." | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:43:24:43:27 | ".." | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:43:24:43:27 | ".." | TaintedPath | notASinkReason | StringStartsWith | string |
-| autogenerated/TaintedPath/normalizedPaths.js:43:24:43:27 | ".." | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:43:24:43:27 | ".." | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:43:24:43:27 | ".." | Xss | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:43:24:43:27 | ".." | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:43:24:43:27 | ".." | Xss | notASinkReason | StringStartsWith | string |
-| autogenerated/TaintedPath/normalizedPaths.js:43:24:43:27 | ".." | Xss | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:44:21:44:24 | path | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:44:21:44:24 | path | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:44:21:44:24 | path | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:44:21:44:24 | path | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:46:24:46:28 | "../" | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:46:24:46:28 | "../" | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:46:24:46:28 | "../" | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:46:24:46:28 | "../" | NosqlInjection | notASinkReason | StringStartsWith | string |
-| autogenerated/TaintedPath/normalizedPaths.js:46:24:46:28 | "../" | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:46:24:46:28 | "../" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:46:24:46:28 | "../" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:46:24:46:28 | "../" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:46:24:46:28 | "../" | SqlInjection | notASinkReason | StringStartsWith | string |
-| autogenerated/TaintedPath/normalizedPaths.js:46:24:46:28 | "../" | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:46:24:46:28 | "../" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:46:24:46:28 | "../" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:46:24:46:28 | "../" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:46:24:46:28 | "../" | TaintedPath | notASinkReason | StringStartsWith | string |
-| autogenerated/TaintedPath/normalizedPaths.js:46:24:46:28 | "../" | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:46:24:46:28 | "../" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:46:24:46:28 | "../" | Xss | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:46:24:46:28 | "../" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:46:24:46:28 | "../" | Xss | notASinkReason | StringStartsWith | string |
-| autogenerated/TaintedPath/normalizedPaths.js:46:24:46:28 | "../" | Xss | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:47:21:47:24 | path | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:47:21:47:24 | path | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:47:21:47:24 | path | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:47:21:47:24 | path | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:49:24:49:44 | ".." +  ... ule.sep | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:49:24:49:44 | ".." +  ... ule.sep | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:49:24:49:44 | ".." +  ... ule.sep | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:49:24:49:44 | ".." +  ... ule.sep | NosqlInjection | notASinkReason | StringStartsWith | string |
-| autogenerated/TaintedPath/normalizedPaths.js:49:24:49:44 | ".." +  ... ule.sep | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:49:24:49:44 | ".." +  ... ule.sep | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:49:24:49:44 | ".." +  ... ule.sep | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:49:24:49:44 | ".." +  ... ule.sep | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:49:24:49:44 | ".." +  ... ule.sep | SqlInjection | notASinkReason | StringStartsWith | string |
-| autogenerated/TaintedPath/normalizedPaths.js:49:24:49:44 | ".." +  ... ule.sep | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:49:24:49:44 | ".." +  ... ule.sep | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:49:24:49:44 | ".." +  ... ule.sep | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:49:24:49:44 | ".." +  ... ule.sep | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:49:24:49:44 | ".." +  ... ule.sep | TaintedPath | notASinkReason | StringStartsWith | string |
-| autogenerated/TaintedPath/normalizedPaths.js:49:24:49:44 | ".." +  ... ule.sep | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:49:24:49:44 | ".." +  ... ule.sep | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:49:24:49:44 | ".." +  ... ule.sep | Xss | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:49:24:49:44 | ".." +  ... ule.sep | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:49:24:49:44 | ".." +  ... ule.sep | Xss | notASinkReason | StringStartsWith | string |
-| autogenerated/TaintedPath/normalizedPaths.js:49:24:49:44 | ".." +  ... ule.sep | Xss | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:50:21:50:24 | path | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:50:21:50:24 | path | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:50:21:50:24 | path | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:50:21:50:24 | path | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:53:9:53:36 | '/norma ... DotDot' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:53:9:53:36 | '/norma ... DotDot' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:53:9:53:36 | '/norma ... DotDot' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:53:9:53:36 | '/norma ... DotDot' | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:53:9:53:36 | '/norma ... DotDot' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:53:9:53:36 | '/norma ... DotDot' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:53:9:53:36 | '/norma ... DotDot' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:53:9:53:36 | '/norma ... DotDot' | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:53:9:53:36 | '/norma ... DotDot' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:53:9:53:36 | '/norma ... DotDot' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:53:9:53:36 | '/norma ... DotDot' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:53:9:53:36 | '/norma ... DotDot' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:53:9:53:36 | '/norma ... DotDot' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:53:9:53:36 | '/norma ... DotDot' | Xss | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:53:9:53:36 | '/norma ... DotDot' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:53:9:53:36 | '/norma ... DotDot' | Xss | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:53:39:69:1 | (req, r ... OT OK\\n} | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:53:39:69:1 | (req, r ... OT OK\\n} | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:53:39:69:1 | (req, r ... OT OK\\n} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:53:39:69:1 | (req, r ... OT OK\\n} | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:53:39:69:1 | (req, r ... OT OK\\n} | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:53:39:69:1 | (req, r ... OT OK\\n} | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:53:39:69:1 | (req, r ... OT OK\\n} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:53:39:69:1 | (req, r ... OT OK\\n} | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:53:39:69:1 | (req, r ... OT OK\\n} | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:53:39:69:1 | (req, r ... OT OK\\n} | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:53:39:69:1 | (req, r ... OT OK\\n} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:53:39:69:1 | (req, r ... OT OK\\n} | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:53:39:69:1 | (req, r ... OT OK\\n} | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:53:39:69:1 | (req, r ... OT OK\\n} | Xss | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:53:39:69:1 | (req, r ... OT OK\\n} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:53:39:69:1 | (req, r ... OT OK\\n} | Xss | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:54:14:54:49 | pathMod ... y.path) | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:54:14:54:49 | pathMod ... y.path) | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:54:14:54:49 | pathMod ... y.path) | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:54:14:54:49 | pathMod ... y.path) | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:56:23:56:26 | ".." | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:56:23:56:26 | ".." | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:56:23:56:26 | ".." | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:56:23:56:26 | ".." | NosqlInjection | notASinkReason | StringStartsWith | string |
-| autogenerated/TaintedPath/normalizedPaths.js:56:23:56:26 | ".." | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:56:23:56:26 | ".." | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:56:23:56:26 | ".." | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:56:23:56:26 | ".." | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:56:23:56:26 | ".." | SqlInjection | notASinkReason | StringStartsWith | string |
-| autogenerated/TaintedPath/normalizedPaths.js:56:23:56:26 | ".." | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:56:23:56:26 | ".." | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:56:23:56:26 | ".." | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:56:23:56:26 | ".." | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:56:23:56:26 | ".." | TaintedPath | notASinkReason | StringStartsWith | string |
-| autogenerated/TaintedPath/normalizedPaths.js:56:23:56:26 | ".." | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:56:23:56:26 | ".." | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:56:23:56:26 | ".." | Xss | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:56:23:56:26 | ".." | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:56:23:56:26 | ".." | Xss | notASinkReason | StringStartsWith | string |
-| autogenerated/TaintedPath/normalizedPaths.js:56:23:56:26 | ".." | Xss | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:59:19:59:22 | path | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:59:19:59:22 | path | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:59:19:59:22 | path | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:59:19:59:22 | path | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:61:19:61:29 | "./" + path | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:61:19:61:29 | "./" + path | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:61:19:61:29 | "./" + path | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:61:19:61:29 | "./" + path | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:63:19:63:38 | path + "/index.html" | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:63:19:63:38 | path + "/index.html" | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:63:19:63:38 | path + "/index.html" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:63:19:63:38 | path + "/index.html" | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:66:21:66:24 | path | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:66:21:66:24 | path | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:66:21:66:24 | path | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:66:21:66:24 | path | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:68:21:68:24 | path | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:68:21:68:24 | path | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:68:21:68:24 | path | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:68:21:68:24 | path | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:71:9:71:28 | '/prepend-normalize' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:71:9:71:28 | '/prepend-normalize' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:71:9:71:28 | '/prepend-normalize' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:71:9:71:28 | '/prepend-normalize' | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:71:9:71:28 | '/prepend-normalize' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:71:9:71:28 | '/prepend-normalize' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:71:9:71:28 | '/prepend-normalize' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:71:9:71:28 | '/prepend-normalize' | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:71:9:71:28 | '/prepend-normalize' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:71:9:71:28 | '/prepend-normalize' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:71:9:71:28 | '/prepend-normalize' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:71:9:71:28 | '/prepend-normalize' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:71:9:71:28 | '/prepend-normalize' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:71:9:71:28 | '/prepend-normalize' | Xss | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:71:9:71:28 | '/prepend-normalize' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:71:9:71:28 | '/prepend-normalize' | Xss | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:71:31:79:1 | (req, r ... OT OK\\n} | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:71:31:79:1 | (req, r ... OT OK\\n} | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:71:31:79:1 | (req, r ... OT OK\\n} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:71:31:79:1 | (req, r ... OT OK\\n} | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:71:31:79:1 | (req, r ... OT OK\\n} | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:71:31:79:1 | (req, r ... OT OK\\n} | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:71:31:79:1 | (req, r ... OT OK\\n} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:71:31:79:1 | (req, r ... OT OK\\n} | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:71:31:79:1 | (req, r ... OT OK\\n} | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:71:31:79:1 | (req, r ... OT OK\\n} | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:71:31:79:1 | (req, r ... OT OK\\n} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:71:31:79:1 | (req, r ... OT OK\\n} | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:71:31:79:1 | (req, r ... OT OK\\n} | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:71:31:79:1 | (req, r ... OT OK\\n} | Xss | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:71:31:79:1 | (req, r ... OT OK\\n} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:71:31:79:1 | (req, r ... OT OK\\n} | Xss | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:73:14:73:56 | pathMod ... y.path) | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:73:14:73:56 | pathMod ... y.path) | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:73:14:73:56 | pathMod ... y.path) | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:73:14:73:56 | pathMod ... y.path) | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:75:24:75:27 | ".." | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:75:24:75:27 | ".." | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:75:24:75:27 | ".." | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:75:24:75:27 | ".." | NosqlInjection | notASinkReason | StringStartsWith | string |
-| autogenerated/TaintedPath/normalizedPaths.js:75:24:75:27 | ".." | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:75:24:75:27 | ".." | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:75:24:75:27 | ".." | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:75:24:75:27 | ".." | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:75:24:75:27 | ".." | SqlInjection | notASinkReason | StringStartsWith | string |
-| autogenerated/TaintedPath/normalizedPaths.js:75:24:75:27 | ".." | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:75:24:75:27 | ".." | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:75:24:75:27 | ".." | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:75:24:75:27 | ".." | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:75:24:75:27 | ".." | TaintedPath | notASinkReason | StringStartsWith | string |
-| autogenerated/TaintedPath/normalizedPaths.js:75:24:75:27 | ".." | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:75:24:75:27 | ".." | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:75:24:75:27 | ".." | Xss | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:75:24:75:27 | ".." | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:75:24:75:27 | ".." | Xss | notASinkReason | StringStartsWith | string |
-| autogenerated/TaintedPath/normalizedPaths.js:75:24:75:27 | ".." | Xss | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:76:21:76:24 | path | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:76:21:76:24 | path | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:76:21:76:24 | path | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:76:21:76:24 | path | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:78:22:78:25 | path | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:78:22:78:25 | path | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:78:22:78:25 | path | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:78:22:78:25 | path | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:81:9:81:19 | '/absolute' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:81:9:81:19 | '/absolute' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:81:9:81:19 | '/absolute' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:81:9:81:19 | '/absolute' | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:81:9:81:19 | '/absolute' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:81:9:81:19 | '/absolute' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:81:9:81:19 | '/absolute' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:81:9:81:19 | '/absolute' | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:81:9:81:19 | '/absolute' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:81:9:81:19 | '/absolute' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:81:9:81:19 | '/absolute' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:81:9:81:19 | '/absolute' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:81:9:81:19 | '/absolute' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:81:9:81:19 | '/absolute' | Xss | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:81:9:81:19 | '/absolute' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:81:9:81:19 | '/absolute' | Xss | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:81:22:91:1 | (req, r ... '../'\\n} | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:81:22:91:1 | (req, r ... '../'\\n} | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:81:22:91:1 | (req, r ... '../'\\n} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:81:22:91:1 | (req, r ... '../'\\n} | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:81:22:91:1 | (req, r ... '../'\\n} | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:81:22:91:1 | (req, r ... '../'\\n} | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:81:22:91:1 | (req, r ... '../'\\n} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:81:22:91:1 | (req, r ... '../'\\n} | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:81:22:91:1 | (req, r ... '../'\\n} | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:81:22:91:1 | (req, r ... '../'\\n} | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:81:22:91:1 | (req, r ... '../'\\n} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:81:22:91:1 | (req, r ... '../'\\n} | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:81:22:91:1 | (req, r ... '../'\\n} | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:81:22:91:1 | (req, r ... '../'\\n} | Xss | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:81:22:91:1 | (req, r ... '../'\\n} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:81:22:91:1 | (req, r ... '../'\\n} | Xss | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:87:29:87:32 | path | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:87:29:87:32 | path | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:87:29:87:32 | path | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:87:29:87:32 | path | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:89:23:89:38 | '/home/user/www' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:89:23:89:38 | '/home/user/www' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:89:23:89:38 | '/home/user/www' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:89:23:89:38 | '/home/user/www' | NosqlInjection | notASinkReason | StringStartsWith | string |
-| autogenerated/TaintedPath/normalizedPaths.js:89:23:89:38 | '/home/user/www' | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:89:23:89:38 | '/home/user/www' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:89:23:89:38 | '/home/user/www' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:89:23:89:38 | '/home/user/www' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:89:23:89:38 | '/home/user/www' | SqlInjection | notASinkReason | StringStartsWith | string |
-| autogenerated/TaintedPath/normalizedPaths.js:89:23:89:38 | '/home/user/www' | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:89:23:89:38 | '/home/user/www' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:89:23:89:38 | '/home/user/www' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:89:23:89:38 | '/home/user/www' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:89:23:89:38 | '/home/user/www' | TaintedPath | notASinkReason | StringStartsWith | string |
-| autogenerated/TaintedPath/normalizedPaths.js:89:23:89:38 | '/home/user/www' | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:89:23:89:38 | '/home/user/www' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:89:23:89:38 | '/home/user/www' | Xss | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:89:23:89:38 | '/home/user/www' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:89:23:89:38 | '/home/user/www' | Xss | notASinkReason | StringStartsWith | string |
-| autogenerated/TaintedPath/normalizedPaths.js:89:23:89:38 | '/home/user/www' | Xss | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:90:31:90:34 | path | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:90:31:90:34 | path | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:90:31:90:34 | path | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:90:31:90:34 | path | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:93:9:93:30 | '/norma ... solute' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:93:9:93:30 | '/norma ... solute' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:93:9:93:30 | '/norma ... solute' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:93:9:93:30 | '/norma ... solute' | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:93:9:93:30 | '/norma ... solute' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:93:9:93:30 | '/norma ... solute' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:93:9:93:30 | '/norma ... solute' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:93:9:93:30 | '/norma ... solute' | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:93:9:93:30 | '/norma ... solute' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:93:9:93:30 | '/norma ... solute' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:93:9:93:30 | '/norma ... solute' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:93:9:93:30 | '/norma ... solute' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:93:9:93:30 | '/norma ... solute' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:93:9:93:30 | '/norma ... solute' | Xss | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:93:9:93:30 | '/norma ... solute' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:93:9:93:30 | '/norma ... solute' | Xss | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:93:33:103:1 | (req, r ... // OK\\n} | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:93:33:103:1 | (req, r ... // OK\\n} | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:93:33:103:1 | (req, r ... // OK\\n} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:93:33:103:1 | (req, r ... // OK\\n} | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:93:33:103:1 | (req, r ... // OK\\n} | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:93:33:103:1 | (req, r ... // OK\\n} | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:93:33:103:1 | (req, r ... // OK\\n} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:93:33:103:1 | (req, r ... // OK\\n} | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:93:33:103:1 | (req, r ... // OK\\n} | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:93:33:103:1 | (req, r ... // OK\\n} | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:93:33:103:1 | (req, r ... // OK\\n} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:93:33:103:1 | (req, r ... // OK\\n} | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:93:33:103:1 | (req, r ... // OK\\n} | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:93:33:103:1 | (req, r ... // OK\\n} | Xss | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:93:33:103:1 | (req, r ... // OK\\n} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:93:33:103:1 | (req, r ... // OK\\n} | Xss | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:94:14:94:49 | pathMod ... y.path) | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:94:14:94:49 | pathMod ... y.path) | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:94:14:94:49 | pathMod ... y.path) | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:94:14:94:49 | pathMod ... y.path) | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:99:29:99:32 | path | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:99:29:99:32 | path | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:99:29:99:32 | path | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:99:29:99:32 | path | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:101:23:101:38 | '/home/user/www' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:101:23:101:38 | '/home/user/www' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:101:23:101:38 | '/home/user/www' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:101:23:101:38 | '/home/user/www' | NosqlInjection | notASinkReason | StringStartsWith | string |
-| autogenerated/TaintedPath/normalizedPaths.js:101:23:101:38 | '/home/user/www' | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:101:23:101:38 | '/home/user/www' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:101:23:101:38 | '/home/user/www' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:101:23:101:38 | '/home/user/www' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:101:23:101:38 | '/home/user/www' | SqlInjection | notASinkReason | StringStartsWith | string |
-| autogenerated/TaintedPath/normalizedPaths.js:101:23:101:38 | '/home/user/www' | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:101:23:101:38 | '/home/user/www' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:101:23:101:38 | '/home/user/www' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:101:23:101:38 | '/home/user/www' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:101:23:101:38 | '/home/user/www' | TaintedPath | notASinkReason | StringStartsWith | string |
-| autogenerated/TaintedPath/normalizedPaths.js:101:23:101:38 | '/home/user/www' | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:101:23:101:38 | '/home/user/www' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:101:23:101:38 | '/home/user/www' | Xss | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:101:23:101:38 | '/home/user/www' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:101:23:101:38 | '/home/user/www' | Xss | notASinkReason | StringStartsWith | string |
-| autogenerated/TaintedPath/normalizedPaths.js:101:23:101:38 | '/home/user/www' | Xss | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:102:31:102:34 | path | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:102:31:102:34 | path | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:102:31:102:34 | path | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:102:31:102:34 | path | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:105:9:105:25 | '/combined-check' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:105:9:105:25 | '/combined-check' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:105:9:105:25 | '/combined-check' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:105:9:105:25 | '/combined-check' | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:105:9:105:25 | '/combined-check' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:105:9:105:25 | '/combined-check' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:105:9:105:25 | '/combined-check' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:105:9:105:25 | '/combined-check' | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:105:9:105:25 | '/combined-check' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:105:9:105:25 | '/combined-check' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:105:9:105:25 | '/combined-check' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:105:9:105:25 | '/combined-check' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:105:9:105:25 | '/combined-check' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:105:9:105:25 | '/combined-check' | Xss | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:105:9:105:25 | '/combined-check' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:105:9:105:25 | '/combined-check' | Xss | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:105:28:114:1 | (req, r ... // OK\\n} | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:105:28:114:1 | (req, r ... // OK\\n} | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:105:28:114:1 | (req, r ... // OK\\n} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:105:28:114:1 | (req, r ... // OK\\n} | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:105:28:114:1 | (req, r ... // OK\\n} | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:105:28:114:1 | (req, r ... // OK\\n} | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:105:28:114:1 | (req, r ... // OK\\n} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:105:28:114:1 | (req, r ... // OK\\n} | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:105:28:114:1 | (req, r ... // OK\\n} | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:105:28:114:1 | (req, r ... // OK\\n} | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:105:28:114:1 | (req, r ... // OK\\n} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:105:28:114:1 | (req, r ... // OK\\n} | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:105:28:114:1 | (req, r ... // OK\\n} | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:105:28:114:1 | (req, r ... // OK\\n} | Xss | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:105:28:114:1 | (req, r ... // OK\\n} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:105:28:114:1 | (req, r ... // OK\\n} | Xss | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:106:14:106:49 | pathMod ... y.path) | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:106:14:106:49 | pathMod ... y.path) | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:106:14:106:49 | pathMod ... y.path) | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:106:14:106:49 | pathMod ... y.path) | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:109:23:109:38 | "/home/user/www" | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:109:23:109:38 | "/home/user/www" | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:109:23:109:38 | "/home/user/www" | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:109:23:109:38 | "/home/user/www" | NosqlInjection | notASinkReason | StringStartsWith | string |
-| autogenerated/TaintedPath/normalizedPaths.js:109:23:109:38 | "/home/user/www" | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:109:23:109:38 | "/home/user/www" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:109:23:109:38 | "/home/user/www" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:109:23:109:38 | "/home/user/www" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:109:23:109:38 | "/home/user/www" | SqlInjection | notASinkReason | StringStartsWith | string |
-| autogenerated/TaintedPath/normalizedPaths.js:109:23:109:38 | "/home/user/www" | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:109:23:109:38 | "/home/user/www" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:109:23:109:38 | "/home/user/www" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:109:23:109:38 | "/home/user/www" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:109:23:109:38 | "/home/user/www" | TaintedPath | notASinkReason | StringStartsWith | string |
-| autogenerated/TaintedPath/normalizedPaths.js:109:23:109:38 | "/home/user/www" | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:109:23:109:38 | "/home/user/www" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:109:23:109:38 | "/home/user/www" | Xss | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:109:23:109:38 | "/home/user/www" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:109:23:109:38 | "/home/user/www" | Xss | notASinkReason | StringStartsWith | string |
-| autogenerated/TaintedPath/normalizedPaths.js:109:23:109:38 | "/home/user/www" | Xss | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:110:21:110:24 | path | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:110:21:110:24 | path | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:110:21:110:24 | path | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:110:21:110:24 | path | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:113:21:113:24 | path | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:113:21:113:24 | path | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:113:21:113:24 | path | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:113:21:113:24 | path | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:116:9:116:19 | '/realpath' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:116:9:116:19 | '/realpath' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:116:9:116:19 | '/realpath' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:116:9:116:19 | '/realpath' | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:116:9:116:19 | '/realpath' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:116:9:116:19 | '/realpath' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:116:9:116:19 | '/realpath' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:116:9:116:19 | '/realpath' | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:116:9:116:19 | '/realpath' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:116:9:116:19 | '/realpath' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:116:9:116:19 | '/realpath' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:116:9:116:19 | '/realpath' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:116:9:116:19 | '/realpath' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:116:9:116:19 | '/realpath' | Xss | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:116:9:116:19 | '/realpath' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:116:9:116:19 | '/realpath' | Xss | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:116:22:127:1 | (req, r ... // OK\\n} | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:116:22:127:1 | (req, r ... // OK\\n} | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:116:22:127:1 | (req, r ... // OK\\n} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:116:22:127:1 | (req, r ... // OK\\n} | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:116:22:127:1 | (req, r ... // OK\\n} | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:116:22:127:1 | (req, r ... // OK\\n} | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:116:22:127:1 | (req, r ... // OK\\n} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:116:22:127:1 | (req, r ... // OK\\n} | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:116:22:127:1 | (req, r ... // OK\\n} | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:116:22:127:1 | (req, r ... // OK\\n} | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:116:22:127:1 | (req, r ... // OK\\n} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:116:22:127:1 | (req, r ... // OK\\n} | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:116:22:127:1 | (req, r ... // OK\\n} | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:116:22:127:1 | (req, r ... // OK\\n} | Xss | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:116:22:127:1 | (req, r ... // OK\\n} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:116:22:127:1 | (req, r ... // OK\\n} | Xss | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:117:14:117:44 | fs.real ... y.path) | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:117:14:117:44 | fs.real ... y.path) | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:117:14:117:44 | fs.real ... y.path) | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:117:14:117:44 | fs.real ... y.path) | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:117:30:117:43 | req.query.path | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:117:30:117:43 | req.query.path | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:117:30:117:43 | req.query.path | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:117:30:117:43 | req.query.path | NosqlInjection | notASinkReason | FileSystemAccess | string |
-| autogenerated/TaintedPath/normalizedPaths.js:117:30:117:43 | req.query.path | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:117:30:117:43 | req.query.path | SqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:117:30:117:43 | req.query.path | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:117:30:117:43 | req.query.path | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:117:30:117:43 | req.query.path | SqlInjection | notASinkReason | FileSystemAccess | string |
-| autogenerated/TaintedPath/normalizedPaths.js:117:30:117:43 | req.query.path | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:117:30:117:43 | req.query.path | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:117:30:117:43 | req.query.path | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:117:30:117:43 | req.query.path | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:117:30:117:43 | req.query.path | TaintedPath | notASinkReason | FileSystemAccess | string |
-| autogenerated/TaintedPath/normalizedPaths.js:117:30:117:43 | req.query.path | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:117:30:117:43 | req.query.path | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:117:30:117:43 | req.query.path | Xss | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:117:30:117:43 | req.query.path | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:117:30:117:43 | req.query.path | Xss | notASinkReason | FileSystemAccess | string |
-| autogenerated/TaintedPath/normalizedPaths.js:117:30:117:43 | req.query.path | Xss | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:119:19:119:22 | path | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:119:19:119:22 | path | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:119:19:119:22 | path | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:119:19:119:22 | path | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:120:19:120:53 | pathMod ... .html') | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:120:19:120:53 | pathMod ... .html') | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:120:19:120:53 | pathMod ... .html') | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:120:19:120:53 | pathMod ... .html') | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:122:23:122:38 | "/home/user/www" | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:122:23:122:38 | "/home/user/www" | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:122:23:122:38 | "/home/user/www" | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:122:23:122:38 | "/home/user/www" | NosqlInjection | notASinkReason | StringStartsWith | string |
-| autogenerated/TaintedPath/normalizedPaths.js:122:23:122:38 | "/home/user/www" | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:122:23:122:38 | "/home/user/www" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:122:23:122:38 | "/home/user/www" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:122:23:122:38 | "/home/user/www" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:122:23:122:38 | "/home/user/www" | SqlInjection | notASinkReason | StringStartsWith | string |
-| autogenerated/TaintedPath/normalizedPaths.js:122:23:122:38 | "/home/user/www" | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:122:23:122:38 | "/home/user/www" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:122:23:122:38 | "/home/user/www" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:122:23:122:38 | "/home/user/www" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:122:23:122:38 | "/home/user/www" | TaintedPath | notASinkReason | StringStartsWith | string |
-| autogenerated/TaintedPath/normalizedPaths.js:122:23:122:38 | "/home/user/www" | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:122:23:122:38 | "/home/user/www" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:122:23:122:38 | "/home/user/www" | Xss | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:122:23:122:38 | "/home/user/www" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:122:23:122:38 | "/home/user/www" | Xss | notASinkReason | StringStartsWith | string |
-| autogenerated/TaintedPath/normalizedPaths.js:122:23:122:38 | "/home/user/www" | Xss | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:123:21:123:24 | path | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:123:21:123:24 | path | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:123:21:123:24 | path | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:123:21:123:24 | path | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:125:19:125:44 | pathMod ... , path) | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:125:19:125:44 | pathMod ... , path) | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:125:19:125:44 | pathMod ... , path) | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:125:19:125:44 | pathMod ... , path) | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:126:19:126:57 | pathMod ... , path) | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:126:19:126:57 | pathMod ... , path) | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:126:19:126:57 | pathMod ... , path) | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:126:19:126:57 | pathMod ... , path) | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:129:9:129:26 | '/coerce-relative' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:129:9:129:26 | '/coerce-relative' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:129:9:129:26 | '/coerce-relative' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:129:9:129:26 | '/coerce-relative' | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:129:9:129:26 | '/coerce-relative' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:129:9:129:26 | '/coerce-relative' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:129:9:129:26 | '/coerce-relative' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:129:9:129:26 | '/coerce-relative' | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:129:9:129:26 | '/coerce-relative' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:129:9:129:26 | '/coerce-relative' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:129:9:129:26 | '/coerce-relative' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:129:9:129:26 | '/coerce-relative' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:129:9:129:26 | '/coerce-relative' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:129:9:129:26 | '/coerce-relative' | Xss | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:129:9:129:26 | '/coerce-relative' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:129:9:129:26 | '/coerce-relative' | Xss | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:129:29:136:1 | (req, r ... OT OK\\n} | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:129:29:136:1 | (req, r ... OT OK\\n} | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:129:29:136:1 | (req, r ... OT OK\\n} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:129:29:136:1 | (req, r ... OT OK\\n} | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:129:29:136:1 | (req, r ... OT OK\\n} | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:129:29:136:1 | (req, r ... OT OK\\n} | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:129:29:136:1 | (req, r ... OT OK\\n} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:129:29:136:1 | (req, r ... OT OK\\n} | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:129:29:136:1 | (req, r ... OT OK\\n} | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:129:29:136:1 | (req, r ... OT OK\\n} | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:129:29:136:1 | (req, r ... OT OK\\n} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:129:29:136:1 | (req, r ... OT OK\\n} | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:129:29:136:1 | (req, r ... OT OK\\n} | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:129:29:136:1 | (req, r ... OT OK\\n} | Xss | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:129:29:136:1 | (req, r ... OT OK\\n} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:129:29:136:1 | (req, r ... OT OK\\n} | Xss | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:130:14:130:49 | pathMod ... y.path) | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:130:14:130:49 | pathMod ... y.path) | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:130:14:130:49 | pathMod ... y.path) | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:130:14:130:49 | pathMod ... y.path) | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:132:24:132:27 | '..' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:132:24:132:27 | '..' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:132:24:132:27 | '..' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:132:24:132:27 | '..' | NosqlInjection | notASinkReason | StringStartsWith | string |
-| autogenerated/TaintedPath/normalizedPaths.js:132:24:132:27 | '..' | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:132:24:132:27 | '..' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:132:24:132:27 | '..' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:132:24:132:27 | '..' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:132:24:132:27 | '..' | SqlInjection | notASinkReason | StringStartsWith | string |
-| autogenerated/TaintedPath/normalizedPaths.js:132:24:132:27 | '..' | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:132:24:132:27 | '..' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:132:24:132:27 | '..' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:132:24:132:27 | '..' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:132:24:132:27 | '..' | TaintedPath | notASinkReason | StringStartsWith | string |
-| autogenerated/TaintedPath/normalizedPaths.js:132:24:132:27 | '..' | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:132:24:132:27 | '..' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:132:24:132:27 | '..' | Xss | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:132:24:132:27 | '..' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:132:24:132:27 | '..' | Xss | notASinkReason | StringStartsWith | string |
-| autogenerated/TaintedPath/normalizedPaths.js:132:24:132:27 | '..' | Xss | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:133:21:133:24 | path | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:133:21:133:24 | path | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:133:21:133:24 | path | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:133:21:133:24 | path | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:135:21:135:24 | path | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:135:21:135:24 | path | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:135:21:135:24 | path | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:135:21:135:24 | path | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:138:9:138:26 | '/coerce-absolute' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:138:9:138:26 | '/coerce-absolute' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:138:9:138:26 | '/coerce-absolute' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:138:9:138:26 | '/coerce-absolute' | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:138:9:138:26 | '/coerce-absolute' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:138:9:138:26 | '/coerce-absolute' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:138:9:138:26 | '/coerce-absolute' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:138:9:138:26 | '/coerce-absolute' | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:138:9:138:26 | '/coerce-absolute' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:138:9:138:26 | '/coerce-absolute' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:138:9:138:26 | '/coerce-absolute' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:138:9:138:26 | '/coerce-absolute' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:138:9:138:26 | '/coerce-absolute' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:138:9:138:26 | '/coerce-absolute' | Xss | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:138:9:138:26 | '/coerce-absolute' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:138:9:138:26 | '/coerce-absolute' | Xss | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:138:29:145:1 | (req, r ... OT OK\\n} | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:138:29:145:1 | (req, r ... OT OK\\n} | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:138:29:145:1 | (req, r ... OT OK\\n} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:138:29:145:1 | (req, r ... OT OK\\n} | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:138:29:145:1 | (req, r ... OT OK\\n} | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:138:29:145:1 | (req, r ... OT OK\\n} | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:138:29:145:1 | (req, r ... OT OK\\n} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:138:29:145:1 | (req, r ... OT OK\\n} | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:138:29:145:1 | (req, r ... OT OK\\n} | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:138:29:145:1 | (req, r ... OT OK\\n} | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:138:29:145:1 | (req, r ... OT OK\\n} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:138:29:145:1 | (req, r ... OT OK\\n} | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:138:29:145:1 | (req, r ... OT OK\\n} | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:138:29:145:1 | (req, r ... OT OK\\n} | Xss | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:138:29:145:1 | (req, r ... OT OK\\n} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:138:29:145:1 | (req, r ... OT OK\\n} | Xss | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:139:14:139:62 | pathMod ... y.path) | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:139:14:139:62 | pathMod ... y.path) | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:139:14:139:62 | pathMod ... y.path) | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:139:14:139:62 | pathMod ... y.path) | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:141:23:141:38 | '/home/user/www' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:141:23:141:38 | '/home/user/www' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:141:23:141:38 | '/home/user/www' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:141:23:141:38 | '/home/user/www' | NosqlInjection | notASinkReason | StringStartsWith | string |
-| autogenerated/TaintedPath/normalizedPaths.js:141:23:141:38 | '/home/user/www' | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:141:23:141:38 | '/home/user/www' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:141:23:141:38 | '/home/user/www' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:141:23:141:38 | '/home/user/www' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:141:23:141:38 | '/home/user/www' | SqlInjection | notASinkReason | StringStartsWith | string |
-| autogenerated/TaintedPath/normalizedPaths.js:141:23:141:38 | '/home/user/www' | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:141:23:141:38 | '/home/user/www' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:141:23:141:38 | '/home/user/www' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:141:23:141:38 | '/home/user/www' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:141:23:141:38 | '/home/user/www' | TaintedPath | notASinkReason | StringStartsWith | string |
-| autogenerated/TaintedPath/normalizedPaths.js:141:23:141:38 | '/home/user/www' | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:141:23:141:38 | '/home/user/www' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:141:23:141:38 | '/home/user/www' | Xss | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:141:23:141:38 | '/home/user/www' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:141:23:141:38 | '/home/user/www' | Xss | notASinkReason | StringStartsWith | string |
-| autogenerated/TaintedPath/normalizedPaths.js:141:23:141:38 | '/home/user/www' | Xss | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:142:21:142:24 | path | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:142:21:142:24 | path | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:142:21:142:24 | path | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:142:21:142:24 | path | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:144:21:144:24 | path | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:144:21:144:24 | path | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:144:21:144:24 | path | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:144:21:144:24 | path | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:147:9:147:37 | '/conca ... zation' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:147:9:147:37 | '/conca ... zation' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:147:9:147:37 | '/conca ... zation' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:147:9:147:37 | '/conca ... zation' | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:147:9:147:37 | '/conca ... zation' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:147:9:147:37 | '/conca ... zation' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:147:9:147:37 | '/conca ... zation' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:147:9:147:37 | '/conca ... zation' | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:147:9:147:37 | '/conca ... zation' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:147:9:147:37 | '/conca ... zation' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:147:9:147:37 | '/conca ... zation' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:147:9:147:37 | '/conca ... zation' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:147:9:147:37 | '/conca ... zation' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:147:9:147:37 | '/conca ... zation' | Xss | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:147:9:147:37 | '/conca ... zation' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:147:9:147:37 | '/conca ... zation' | Xss | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:147:40:157:1 | (req, r ... // OK\\n} | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:147:40:157:1 | (req, r ... // OK\\n} | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:147:40:157:1 | (req, r ... // OK\\n} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:147:40:157:1 | (req, r ... // OK\\n} | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:147:40:157:1 | (req, r ... // OK\\n} | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:147:40:157:1 | (req, r ... // OK\\n} | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:147:40:157:1 | (req, r ... // OK\\n} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:147:40:157:1 | (req, r ... // OK\\n} | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:147:40:157:1 | (req, r ... // OK\\n} | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:147:40:157:1 | (req, r ... // OK\\n} | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:147:40:157:1 | (req, r ... // OK\\n} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:147:40:157:1 | (req, r ... // OK\\n} | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:147:40:157:1 | (req, r ... // OK\\n} | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:147:40:157:1 | (req, r ... // OK\\n} | Xss | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:147:40:157:1 | (req, r ... // OK\\n} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:147:40:157:1 | (req, r ... // OK\\n} | Xss | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:148:14:148:58 | 'foo/'  ... y.path) | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:148:14:148:58 | 'foo/'  ... y.path) | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:148:14:148:58 | 'foo/'  ... y.path) | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:148:14:148:58 | 'foo/'  ... y.path) | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:150:24:150:27 | '..' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:150:24:150:27 | '..' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:150:24:150:27 | '..' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:150:24:150:27 | '..' | NosqlInjection | notASinkReason | StringStartsWith | string |
-| autogenerated/TaintedPath/normalizedPaths.js:150:24:150:27 | '..' | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:150:24:150:27 | '..' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:150:24:150:27 | '..' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:150:24:150:27 | '..' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:150:24:150:27 | '..' | SqlInjection | notASinkReason | StringStartsWith | string |
-| autogenerated/TaintedPath/normalizedPaths.js:150:24:150:27 | '..' | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:150:24:150:27 | '..' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:150:24:150:27 | '..' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:150:24:150:27 | '..' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:150:24:150:27 | '..' | TaintedPath | notASinkReason | StringStartsWith | string |
-| autogenerated/TaintedPath/normalizedPaths.js:150:24:150:27 | '..' | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:150:24:150:27 | '..' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:150:24:150:27 | '..' | Xss | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:150:24:150:27 | '..' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:150:24:150:27 | '..' | Xss | notASinkReason | StringStartsWith | string |
-| autogenerated/TaintedPath/normalizedPaths.js:150:24:150:27 | '..' | Xss | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:151:21:151:24 | path | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:151:21:151:24 | path | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:151:21:151:24 | path | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:151:21:151:24 | path | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:153:21:153:24 | path | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:153:21:153:24 | path | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:153:21:153:24 | path | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:153:21:153:24 | path | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:155:22:155:25 | '..' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:155:22:155:25 | '..' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:155:22:155:25 | '..' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:155:22:155:25 | '..' | NosqlInjection | notASinkReason | MembershipCandidateTest | string |
-| autogenerated/TaintedPath/normalizedPaths.js:155:22:155:25 | '..' | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:155:22:155:25 | '..' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:155:22:155:25 | '..' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:155:22:155:25 | '..' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:155:22:155:25 | '..' | SqlInjection | notASinkReason | MembershipCandidateTest | string |
-| autogenerated/TaintedPath/normalizedPaths.js:155:22:155:25 | '..' | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:155:22:155:25 | '..' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:155:22:155:25 | '..' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:155:22:155:25 | '..' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:155:22:155:25 | '..' | TaintedPath | notASinkReason | MembershipCandidateTest | string |
-| autogenerated/TaintedPath/normalizedPaths.js:155:22:155:25 | '..' | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:155:22:155:25 | '..' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:155:22:155:25 | '..' | Xss | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:155:22:155:25 | '..' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:155:22:155:25 | '..' | Xss | notASinkReason | MembershipCandidateTest | string |
-| autogenerated/TaintedPath/normalizedPaths.js:155:22:155:25 | '..' | Xss | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:156:21:156:24 | path | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:156:21:156:24 | path | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:156:21:156:24 | path | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:156:21:156:24 | path | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:159:9:159:19 | '/noDotDot' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:159:9:159:19 | '/noDotDot' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:159:9:159:19 | '/noDotDot' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:159:9:159:19 | '/noDotDot' | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:159:9:159:19 | '/noDotDot' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:159:9:159:19 | '/noDotDot' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:159:9:159:19 | '/noDotDot' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:159:9:159:19 | '/noDotDot' | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:159:9:159:19 | '/noDotDot' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:159:9:159:19 | '/noDotDot' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:159:9:159:19 | '/noDotDot' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:159:9:159:19 | '/noDotDot' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:159:9:159:19 | '/noDotDot' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:159:9:159:19 | '/noDotDot' | Xss | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:159:9:159:19 | '/noDotDot' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:159:9:159:19 | '/noDotDot' | Xss | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:159:22:171:1 | (req, r ... OT OK\\n} | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:159:22:171:1 | (req, r ... OT OK\\n} | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:159:22:171:1 | (req, r ... OT OK\\n} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:159:22:171:1 | (req, r ... OT OK\\n} | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:159:22:171:1 | (req, r ... OT OK\\n} | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:159:22:171:1 | (req, r ... OT OK\\n} | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:159:22:171:1 | (req, r ... OT OK\\n} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:159:22:171:1 | (req, r ... OT OK\\n} | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:159:22:171:1 | (req, r ... OT OK\\n} | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:159:22:171:1 | (req, r ... OT OK\\n} | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:159:22:171:1 | (req, r ... OT OK\\n} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:159:22:171:1 | (req, r ... OT OK\\n} | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:159:22:171:1 | (req, r ... OT OK\\n} | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:159:22:171:1 | (req, r ... OT OK\\n} | Xss | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:159:22:171:1 | (req, r ... OT OK\\n} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:159:22:171:1 | (req, r ... OT OK\\n} | Xss | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:160:14:160:49 | pathMod ... y.path) | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:160:14:160:49 | pathMod ... y.path) | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:160:14:160:49 | pathMod ... y.path) | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:160:14:160:49 | pathMod ... y.path) | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:162:21:162:24 | '..' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:162:21:162:24 | '..' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:162:21:162:24 | '..' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:162:21:162:24 | '..' | NosqlInjection | notASinkReason | MembershipCandidateTest | string |
-| autogenerated/TaintedPath/normalizedPaths.js:162:21:162:24 | '..' | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:162:21:162:24 | '..' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:162:21:162:24 | '..' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:162:21:162:24 | '..' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:162:21:162:24 | '..' | SqlInjection | notASinkReason | MembershipCandidateTest | string |
-| autogenerated/TaintedPath/normalizedPaths.js:162:21:162:24 | '..' | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:162:21:162:24 | '..' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:162:21:162:24 | '..' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:162:21:162:24 | '..' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:162:21:162:24 | '..' | TaintedPath | notASinkReason | MembershipCandidateTest | string |
-| autogenerated/TaintedPath/normalizedPaths.js:162:21:162:24 | '..' | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:162:21:162:24 | '..' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:162:21:162:24 | '..' | Xss | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:162:21:162:24 | '..' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:162:21:162:24 | '..' | Xss | notASinkReason | MembershipCandidateTest | string |
-| autogenerated/TaintedPath/normalizedPaths.js:162:21:162:24 | '..' | Xss | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:165:19:165:22 | path | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:165:19:165:22 | path | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:165:19:165:22 | path | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:165:19:165:22 | path | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:168:21:168:24 | path | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:168:21:168:24 | path | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:168:21:168:24 | path | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:168:21:168:24 | path | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:170:21:170:24 | path | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:170:21:170:24 | path | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:170:21:170:24 | path | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:170:21:170:24 | path | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:173:9:173:26 | '/join-regression' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:173:9:173:26 | '/join-regression' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:173:9:173:26 | '/join-regression' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:173:9:173:26 | '/join-regression' | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:173:9:173:26 | '/join-regression' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:173:9:173:26 | '/join-regression' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:173:9:173:26 | '/join-regression' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:173:9:173:26 | '/join-regression' | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:173:9:173:26 | '/join-regression' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:173:9:173:26 | '/join-regression' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:173:9:173:26 | '/join-regression' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:173:9:173:26 | '/join-regression' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:173:9:173:26 | '/join-regression' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:173:9:173:26 | '/join-regression' | Xss | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:173:9:173:26 | '/join-regression' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:173:9:173:26 | '/join-regression' | Xss | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:173:29:211:1 | (req, r ... OT OK\\n} | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:173:29:211:1 | (req, r ... OT OK\\n} | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:173:29:211:1 | (req, r ... OT OK\\n} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:173:29:211:1 | (req, r ... OT OK\\n} | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:173:29:211:1 | (req, r ... OT OK\\n} | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:173:29:211:1 | (req, r ... OT OK\\n} | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:173:29:211:1 | (req, r ... OT OK\\n} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:173:29:211:1 | (req, r ... OT OK\\n} | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:173:29:211:1 | (req, r ... OT OK\\n} | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:173:29:211:1 | (req, r ... OT OK\\n} | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:173:29:211:1 | (req, r ... OT OK\\n} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:173:29:211:1 | (req, r ... OT OK\\n} | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:173:29:211:1 | (req, r ... OT OK\\n} | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:173:29:211:1 | (req, r ... OT OK\\n} | Xss | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:173:29:211:1 | (req, r ... OT OK\\n} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:173:29:211:1 | (req, r ... OT OK\\n} | Xss | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:180:23:180:25 | '/' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:180:23:180:25 | '/' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:180:23:180:25 | '/' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:180:23:180:25 | '/' | NosqlInjection | notASinkReason | StringStartsWith | string |
-| autogenerated/TaintedPath/normalizedPaths.js:180:23:180:25 | '/' | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:180:23:180:25 | '/' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:180:23:180:25 | '/' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:180:23:180:25 | '/' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:180:23:180:25 | '/' | SqlInjection | notASinkReason | StringStartsWith | string |
-| autogenerated/TaintedPath/normalizedPaths.js:180:23:180:25 | '/' | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:180:23:180:25 | '/' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:180:23:180:25 | '/' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:180:23:180:25 | '/' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:180:23:180:25 | '/' | TaintedPath | notASinkReason | StringStartsWith | string |
-| autogenerated/TaintedPath/normalizedPaths.js:180:23:180:25 | '/' | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:180:23:180:25 | '/' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:180:23:180:25 | '/' | Xss | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:180:23:180:25 | '/' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:180:23:180:25 | '/' | Xss | notASinkReason | StringStartsWith | string |
-| autogenerated/TaintedPath/normalizedPaths.js:180:23:180:25 | '/' | Xss | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:181:23:181:26 | '/x' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:181:23:181:26 | '/x' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:181:23:181:26 | '/x' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:181:23:181:26 | '/x' | NosqlInjection | notASinkReason | StringStartsWith | string |
-| autogenerated/TaintedPath/normalizedPaths.js:181:23:181:26 | '/x' | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:181:23:181:26 | '/x' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:181:23:181:26 | '/x' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:181:23:181:26 | '/x' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:181:23:181:26 | '/x' | SqlInjection | notASinkReason | StringStartsWith | string |
-| autogenerated/TaintedPath/normalizedPaths.js:181:23:181:26 | '/x' | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:181:23:181:26 | '/x' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:181:23:181:26 | '/x' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:181:23:181:26 | '/x' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:181:23:181:26 | '/x' | TaintedPath | notASinkReason | StringStartsWith | string |
-| autogenerated/TaintedPath/normalizedPaths.js:181:23:181:26 | '/x' | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:181:23:181:26 | '/x' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:181:23:181:26 | '/x' | Xss | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:181:23:181:26 | '/x' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:181:23:181:26 | '/x' | Xss | notASinkReason | StringStartsWith | string |
-| autogenerated/TaintedPath/normalizedPaths.js:181:23:181:26 | '/x' | Xss | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:182:23:182:25 | '.' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:182:23:182:25 | '.' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:182:23:182:25 | '.' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:182:23:182:25 | '.' | NosqlInjection | notASinkReason | StringStartsWith | string |
-| autogenerated/TaintedPath/normalizedPaths.js:182:23:182:25 | '.' | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:182:23:182:25 | '.' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:182:23:182:25 | '.' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:182:23:182:25 | '.' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:182:23:182:25 | '.' | SqlInjection | notASinkReason | StringStartsWith | string |
-| autogenerated/TaintedPath/normalizedPaths.js:182:23:182:25 | '.' | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:182:23:182:25 | '.' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:182:23:182:25 | '.' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:182:23:182:25 | '.' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:182:23:182:25 | '.' | TaintedPath | notASinkReason | StringStartsWith | string |
-| autogenerated/TaintedPath/normalizedPaths.js:182:23:182:25 | '.' | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:182:23:182:25 | '.' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:182:23:182:25 | '.' | Xss | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:182:23:182:25 | '.' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:182:23:182:25 | '.' | Xss | notASinkReason | StringStartsWith | string |
-| autogenerated/TaintedPath/normalizedPaths.js:182:23:182:25 | '.' | Xss | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:184:19:184:22 | path | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:184:19:184:22 | path | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:184:19:184:22 | path | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:184:19:184:22 | path | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:187:21:187:24 | path | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:187:21:187:24 | path | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:187:21:187:24 | path | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:187:21:187:24 | path | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:189:21:189:24 | path | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:189:21:189:24 | path | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:189:21:189:24 | path | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:189:21:189:24 | path | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:191:21:191:24 | '..' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:191:21:191:24 | '..' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:191:21:191:24 | '..' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:191:21:191:24 | '..' | NosqlInjection | notASinkReason | MembershipCandidateTest | string |
-| autogenerated/TaintedPath/normalizedPaths.js:191:21:191:24 | '..' | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:191:21:191:24 | '..' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:191:21:191:24 | '..' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:191:21:191:24 | '..' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:191:21:191:24 | '..' | SqlInjection | notASinkReason | MembershipCandidateTest | string |
-| autogenerated/TaintedPath/normalizedPaths.js:191:21:191:24 | '..' | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:191:21:191:24 | '..' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:191:21:191:24 | '..' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:191:21:191:24 | '..' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:191:21:191:24 | '..' | TaintedPath | notASinkReason | MembershipCandidateTest | string |
-| autogenerated/TaintedPath/normalizedPaths.js:191:21:191:24 | '..' | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:191:21:191:24 | '..' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:191:21:191:24 | '..' | Xss | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:191:21:191:24 | '..' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:191:21:191:24 | '..' | Xss | notASinkReason | MembershipCandidateTest | string |
-| autogenerated/TaintedPath/normalizedPaths.js:191:21:191:24 | '..' | Xss | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:192:21:192:24 | path | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:192:21:192:24 | path | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:192:21:192:24 | path | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:192:21:192:24 | path | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:194:21:194:24 | path | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:194:21:194:24 | path | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:194:21:194:24 | path | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:194:21:194:24 | path | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:196:22:196:25 | '..' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:196:22:196:25 | '..' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:196:22:196:25 | '..' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:196:22:196:25 | '..' | NosqlInjection | notASinkReason | MembershipCandidateTest | string |
-| autogenerated/TaintedPath/normalizedPaths.js:196:22:196:25 | '..' | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:196:22:196:25 | '..' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:196:22:196:25 | '..' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:196:22:196:25 | '..' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:196:22:196:25 | '..' | SqlInjection | notASinkReason | MembershipCandidateTest | string |
-| autogenerated/TaintedPath/normalizedPaths.js:196:22:196:25 | '..' | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:196:22:196:25 | '..' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:196:22:196:25 | '..' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:196:22:196:25 | '..' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:196:22:196:25 | '..' | TaintedPath | notASinkReason | MembershipCandidateTest | string |
-| autogenerated/TaintedPath/normalizedPaths.js:196:22:196:25 | '..' | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:196:22:196:25 | '..' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:196:22:196:25 | '..' | Xss | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:196:22:196:25 | '..' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:196:22:196:25 | '..' | Xss | notASinkReason | MembershipCandidateTest | string |
-| autogenerated/TaintedPath/normalizedPaths.js:196:22:196:25 | '..' | Xss | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:197:21:197:24 | path | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:197:21:197:24 | path | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:197:21:197:24 | path | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:197:21:197:24 | path | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:199:21:199:24 | path | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:199:21:199:24 | path | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:199:21:199:24 | path | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:199:21:199:24 | path | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:202:33:202:48 | '/home/user/www' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:202:33:202:48 | '/home/user/www' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:202:33:202:48 | '/home/user/www' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:202:33:202:48 | '/home/user/www' | NosqlInjection | notASinkReason | StringStartsWith | string |
-| autogenerated/TaintedPath/normalizedPaths.js:202:33:202:48 | '/home/user/www' | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:202:33:202:48 | '/home/user/www' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:202:33:202:48 | '/home/user/www' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:202:33:202:48 | '/home/user/www' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:202:33:202:48 | '/home/user/www' | SqlInjection | notASinkReason | StringStartsWith | string |
-| autogenerated/TaintedPath/normalizedPaths.js:202:33:202:48 | '/home/user/www' | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:202:33:202:48 | '/home/user/www' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:202:33:202:48 | '/home/user/www' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:202:33:202:48 | '/home/user/www' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:202:33:202:48 | '/home/user/www' | TaintedPath | notASinkReason | StringStartsWith | string |
-| autogenerated/TaintedPath/normalizedPaths.js:202:33:202:48 | '/home/user/www' | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:202:33:202:48 | '/home/user/www' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:202:33:202:48 | '/home/user/www' | Xss | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:202:33:202:48 | '/home/user/www' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:202:33:202:48 | '/home/user/www' | Xss | notASinkReason | StringStartsWith | string |
-| autogenerated/TaintedPath/normalizedPaths.js:202:33:202:48 | '/home/user/www' | Xss | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:203:21:203:34 | normalizedPath | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:203:21:203:34 | normalizedPath | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:203:21:203:34 | normalizedPath | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:203:21:203:34 | normalizedPath | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:205:21:205:34 | normalizedPath | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:205:21:205:34 | normalizedPath | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:205:21:205:34 | normalizedPath | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:205:21:205:34 | normalizedPath | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:207:33:207:48 | '/home/user/www' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:207:33:207:48 | '/home/user/www' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:207:33:207:48 | '/home/user/www' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:207:33:207:48 | '/home/user/www' | NosqlInjection | notASinkReason | StringStartsWith | string |
-| autogenerated/TaintedPath/normalizedPaths.js:207:33:207:48 | '/home/user/www' | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:207:33:207:48 | '/home/user/www' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:207:33:207:48 | '/home/user/www' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:207:33:207:48 | '/home/user/www' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:207:33:207:48 | '/home/user/www' | SqlInjection | notASinkReason | StringStartsWith | string |
-| autogenerated/TaintedPath/normalizedPaths.js:207:33:207:48 | '/home/user/www' | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:207:33:207:48 | '/home/user/www' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:207:33:207:48 | '/home/user/www' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:207:33:207:48 | '/home/user/www' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:207:33:207:48 | '/home/user/www' | TaintedPath | notASinkReason | StringStartsWith | string |
-| autogenerated/TaintedPath/normalizedPaths.js:207:33:207:48 | '/home/user/www' | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:207:33:207:48 | '/home/user/www' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:207:33:207:48 | '/home/user/www' | Xss | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:207:33:207:48 | '/home/user/www' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:207:33:207:48 | '/home/user/www' | Xss | notASinkReason | StringStartsWith | string |
-| autogenerated/TaintedPath/normalizedPaths.js:207:33:207:48 | '/home/user/www' | Xss | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:207:80:207:98 | '/home/user/public' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:207:80:207:98 | '/home/user/public' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:207:80:207:98 | '/home/user/public' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:207:80:207:98 | '/home/user/public' | NosqlInjection | notASinkReason | StringStartsWith | string |
-| autogenerated/TaintedPath/normalizedPaths.js:207:80:207:98 | '/home/user/public' | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:207:80:207:98 | '/home/user/public' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:207:80:207:98 | '/home/user/public' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:207:80:207:98 | '/home/user/public' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:207:80:207:98 | '/home/user/public' | SqlInjection | notASinkReason | StringStartsWith | string |
-| autogenerated/TaintedPath/normalizedPaths.js:207:80:207:98 | '/home/user/public' | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:207:80:207:98 | '/home/user/public' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:207:80:207:98 | '/home/user/public' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:207:80:207:98 | '/home/user/public' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:207:80:207:98 | '/home/user/public' | TaintedPath | notASinkReason | StringStartsWith | string |
-| autogenerated/TaintedPath/normalizedPaths.js:207:80:207:98 | '/home/user/public' | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:207:80:207:98 | '/home/user/public' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:207:80:207:98 | '/home/user/public' | Xss | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:207:80:207:98 | '/home/user/public' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:207:80:207:98 | '/home/user/public' | Xss | notASinkReason | StringStartsWith | string |
-| autogenerated/TaintedPath/normalizedPaths.js:207:80:207:98 | '/home/user/public' | Xss | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:208:21:208:34 | normalizedPath | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:208:21:208:34 | normalizedPath | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:208:21:208:34 | normalizedPath | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:208:21:208:34 | normalizedPath | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:210:21:210:34 | normalizedPath | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:210:21:210:34 | normalizedPath | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:210:21:210:34 | normalizedPath | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:210:21:210:34 | normalizedPath | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:213:9:213:37 | '/decod ... zation' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:213:9:213:37 | '/decod ... zation' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:213:9:213:37 | '/decod ... zation' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:213:9:213:37 | '/decod ... zation' | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:213:9:213:37 | '/decod ... zation' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:213:9:213:37 | '/decod ... zation' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:213:9:213:37 | '/decod ... zation' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:213:9:213:37 | '/decod ... zation' | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:213:9:213:37 | '/decod ... zation' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:213:9:213:37 | '/decod ... zation' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:213:9:213:37 | '/decod ... zation' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:213:9:213:37 | '/decod ... zation' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:213:9:213:37 | '/decod ... zation' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:213:9:213:37 | '/decod ... zation' | Xss | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:213:9:213:37 | '/decod ... zation' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:213:9:213:37 | '/decod ... zation' | Xss | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:213:40:223:1 | (req, r ... lized\\n} | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:213:40:223:1 | (req, r ... lized\\n} | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:213:40:223:1 | (req, r ... lized\\n} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:213:40:223:1 | (req, r ... lized\\n} | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:213:40:223:1 | (req, r ... lized\\n} | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:213:40:223:1 | (req, r ... lized\\n} | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:213:40:223:1 | (req, r ... lized\\n} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:213:40:223:1 | (req, r ... lized\\n} | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:213:40:223:1 | (req, r ... lized\\n} | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:213:40:223:1 | (req, r ... lized\\n} | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:213:40:223:1 | (req, r ... lized\\n} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:213:40:223:1 | (req, r ... lized\\n} | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:213:40:223:1 | (req, r ... lized\\n} | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:213:40:223:1 | (req, r ... lized\\n} | Xss | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:213:40:223:1 | (req, r ... lized\\n} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:213:40:223:1 | (req, r ... lized\\n} | Xss | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:214:14:214:49 | pathMod ... y.path) | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:214:14:214:49 | pathMod ... y.path) | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:214:14:214:49 | pathMod ... y.path) | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:214:14:214:49 | pathMod ... y.path) | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:216:56:216:59 | '..' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:216:56:216:59 | '..' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:216:56:216:59 | '..' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:216:56:216:59 | '..' | NosqlInjection | notASinkReason | StringStartsWith | string |
-| autogenerated/TaintedPath/normalizedPaths.js:216:56:216:59 | '..' | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:216:56:216:59 | '..' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:216:56:216:59 | '..' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:216:56:216:59 | '..' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:216:56:216:59 | '..' | SqlInjection | notASinkReason | StringStartsWith | string |
-| autogenerated/TaintedPath/normalizedPaths.js:216:56:216:59 | '..' | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:216:56:216:59 | '..' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:216:56:216:59 | '..' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:216:56:216:59 | '..' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:216:56:216:59 | '..' | TaintedPath | notASinkReason | StringStartsWith | string |
-| autogenerated/TaintedPath/normalizedPaths.js:216:56:216:59 | '..' | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:216:56:216:59 | '..' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:216:56:216:59 | '..' | Xss | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:216:56:216:59 | '..' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:216:56:216:59 | '..' | Xss | notASinkReason | StringStartsWith | string |
-| autogenerated/TaintedPath/normalizedPaths.js:216:56:216:59 | '..' | Xss | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:217:21:217:24 | path | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:217:21:217:24 | path | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:217:21:217:24 | path | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:217:21:217:24 | path | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:219:10:219:33 | decodeU ... t(path) | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:219:10:219:33 | decodeU ... t(path) | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:219:10:219:33 | decodeU ... t(path) | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:219:10:219:33 | decodeU ... t(path) | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:221:56:221:59 | '..' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:221:56:221:59 | '..' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:221:56:221:59 | '..' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:221:56:221:59 | '..' | NosqlInjection | notASinkReason | StringStartsWith | string |
-| autogenerated/TaintedPath/normalizedPaths.js:221:56:221:59 | '..' | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:221:56:221:59 | '..' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:221:56:221:59 | '..' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:221:56:221:59 | '..' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:221:56:221:59 | '..' | SqlInjection | notASinkReason | StringStartsWith | string |
-| autogenerated/TaintedPath/normalizedPaths.js:221:56:221:59 | '..' | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:221:56:221:59 | '..' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:221:56:221:59 | '..' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:221:56:221:59 | '..' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:221:56:221:59 | '..' | TaintedPath | notASinkReason | StringStartsWith | string |
-| autogenerated/TaintedPath/normalizedPaths.js:221:56:221:59 | '..' | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:221:56:221:59 | '..' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:221:56:221:59 | '..' | Xss | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:221:56:221:59 | '..' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:221:56:221:59 | '..' | Xss | notASinkReason | StringStartsWith | string |
-| autogenerated/TaintedPath/normalizedPaths.js:221:56:221:59 | '..' | Xss | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:222:21:222:24 | path | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:222:21:222:24 | path | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:222:21:222:24 | path | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:222:21:222:24 | path | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:225:9:225:18 | '/replace' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:225:9:225:18 | '/replace' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:225:9:225:18 | '/replace' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:225:9:225:18 | '/replace' | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:225:9:225:18 | '/replace' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:225:9:225:18 | '/replace' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:225:9:225:18 | '/replace' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:225:9:225:18 | '/replace' | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:225:9:225:18 | '/replace' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:225:9:225:18 | '/replace' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:225:9:225:18 | '/replace' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:225:9:225:18 | '/replace' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:225:9:225:18 | '/replace' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:225:9:225:18 | '/replace' | Xss | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:225:9:225:18 | '/replace' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:225:9:225:18 | '/replace' | Xss | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:225:21:233:1 | (req, r ... K\\n  }\\n} | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:225:21:233:1 | (req, r ... K\\n  }\\n} | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:225:21:233:1 | (req, r ... K\\n  }\\n} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:225:21:233:1 | (req, r ... K\\n  }\\n} | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:225:21:233:1 | (req, r ... K\\n  }\\n} | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:225:21:233:1 | (req, r ... K\\n  }\\n} | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:225:21:233:1 | (req, r ... K\\n  }\\n} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:225:21:233:1 | (req, r ... K\\n  }\\n} | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:225:21:233:1 | (req, r ... K\\n  }\\n} | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:225:21:233:1 | (req, r ... K\\n  }\\n} | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:225:21:233:1 | (req, r ... K\\n  }\\n} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:225:21:233:1 | (req, r ... K\\n  }\\n} | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:225:21:233:1 | (req, r ... K\\n  }\\n} | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:225:21:233:1 | (req, r ... K\\n  }\\n} | Xss | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:225:21:233:1 | (req, r ... K\\n  }\\n} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:225:21:233:1 | (req, r ... K\\n  }\\n} | Xss | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:226:14:226:70 | pathMod ... g, ' ') | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:226:14:226:70 | pathMod ... g, ' ') | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:226:14:226:70 | pathMod ... g, ' ') | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:226:14:226:70 | pathMod ... g, ' ') | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:228:21:228:24 | path | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:228:21:228:24 | path | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:228:21:228:24 | path | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:228:21:228:24 | path | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:230:12:230:36 | path.re ... /g, '') | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:230:12:230:36 | path.re ... /g, '') | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:230:12:230:36 | path.re ... /g, '') | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:230:12:230:36 | path.re ... /g, '') | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:231:21:231:24 | path | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:231:21:231:24 | path | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:231:21:231:24 | path | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:231:21:231:24 | path | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:235:9:235:23 | '/resolve-path' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:235:9:235:23 | '/resolve-path' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:235:9:235:23 | '/resolve-path' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:235:9:235:23 | '/resolve-path' | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:235:9:235:23 | '/resolve-path' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:235:9:235:23 | '/resolve-path' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:235:9:235:23 | '/resolve-path' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:235:9:235:23 | '/resolve-path' | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:235:9:235:23 | '/resolve-path' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:235:9:235:23 | '/resolve-path' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:235:9:235:23 | '/resolve-path' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:235:9:235:23 | '/resolve-path' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:235:9:235:23 | '/resolve-path' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:235:9:235:23 | '/resolve-path' | Xss | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:235:9:235:23 | '/resolve-path' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:235:9:235:23 | '/resolve-path' | Xss | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:235:26:251:1 | (req, r ... arity\\n} | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:235:26:251:1 | (req, r ... arity\\n} | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:235:26:251:1 | (req, r ... arity\\n} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:235:26:251:1 | (req, r ... arity\\n} | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:235:26:251:1 | (req, r ... arity\\n} | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:235:26:251:1 | (req, r ... arity\\n} | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:235:26:251:1 | (req, r ... arity\\n} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:235:26:251:1 | (req, r ... arity\\n} | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:235:26:251:1 | (req, r ... arity\\n} | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:235:26:251:1 | (req, r ... arity\\n} | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:235:26:251:1 | (req, r ... arity\\n} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:235:26:251:1 | (req, r ... arity\\n} | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:235:26:251:1 | (req, r ... arity\\n} | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:235:26:251:1 | (req, r ... arity\\n} | Xss | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:235:26:251:1 | (req, r ... arity\\n} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:235:26:251:1 | (req, r ... arity\\n} | Xss | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:236:14:236:47 | pathMod ... y.path) | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:236:14:236:47 | pathMod ... y.path) | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:236:14:236:47 | pathMod ... y.path) | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:236:14:236:47 | pathMod ... y.path) | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:238:19:238:22 | path | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:238:19:238:22 | path | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:238:19:238:22 | path | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:238:19:238:22 | path | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:242:22:242:22 | 0 | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:242:22:242:22 | 0 | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:242:22:242:22 | 0 | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:242:22:242:22 | 0 | NosqlInjection | notASinkReason | BuiltinCallName | string |
-| autogenerated/TaintedPath/normalizedPaths.js:242:22:242:22 | 0 | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:242:22:242:22 | 0 | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:242:22:242:22 | 0 | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:242:22:242:22 | 0 | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:242:22:242:22 | 0 | SqlInjection | notASinkReason | BuiltinCallName | string |
-| autogenerated/TaintedPath/normalizedPaths.js:242:22:242:22 | 0 | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:242:22:242:22 | 0 | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:242:22:242:22 | 0 | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:242:22:242:22 | 0 | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:242:22:242:22 | 0 | TaintedPath | notASinkReason | BuiltinCallName | string |
-| autogenerated/TaintedPath/normalizedPaths.js:242:22:242:22 | 0 | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:242:22:242:22 | 0 | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:242:22:242:22 | 0 | Xss | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:242:22:242:22 | 0 | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:242:22:242:22 | 0 | Xss | notASinkReason | BuiltinCallName | string |
-| autogenerated/TaintedPath/normalizedPaths.js:242:22:242:22 | 0 | Xss | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:242:25:242:39 | self.dir.length | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:242:25:242:39 | self.dir.length | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:242:25:242:39 | self.dir.length | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:242:25:242:39 | self.dir.length | NosqlInjection | notASinkReason | BuiltinCallName | string |
-| autogenerated/TaintedPath/normalizedPaths.js:242:25:242:39 | self.dir.length | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:242:25:242:39 | self.dir.length | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:242:25:242:39 | self.dir.length | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:242:25:242:39 | self.dir.length | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:242:25:242:39 | self.dir.length | SqlInjection | notASinkReason | BuiltinCallName | string |
-| autogenerated/TaintedPath/normalizedPaths.js:242:25:242:39 | self.dir.length | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:242:25:242:39 | self.dir.length | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:242:25:242:39 | self.dir.length | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:242:25:242:39 | self.dir.length | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:242:25:242:39 | self.dir.length | TaintedPath | notASinkReason | BuiltinCallName | string |
-| autogenerated/TaintedPath/normalizedPaths.js:242:25:242:39 | self.dir.length | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:242:25:242:39 | self.dir.length | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:242:25:242:39 | self.dir.length | Xss | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:242:25:242:39 | self.dir.length | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:242:25:242:39 | self.dir.length | Xss | notASinkReason | BuiltinCallName | string |
-| autogenerated/TaintedPath/normalizedPaths.js:242:25:242:39 | self.dir.length | Xss | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:243:21:243:24 | path | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:243:21:243:24 | path | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:243:21:243:24 | path | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:243:21:243:24 | path | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:245:21:245:24 | path | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:245:21:245:24 | path | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:245:21:245:24 | path | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:245:21:245:24 | path | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:247:18:247:18 | 0 | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:247:18:247:18 | 0 | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:247:18:247:18 | 0 | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:247:18:247:18 | 0 | NosqlInjection | notASinkReason | BuiltinCallName | string |
-| autogenerated/TaintedPath/normalizedPaths.js:247:18:247:18 | 0 | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:247:18:247:18 | 0 | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:247:18:247:18 | 0 | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:247:18:247:18 | 0 | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:247:18:247:18 | 0 | SqlInjection | notASinkReason | BuiltinCallName | string |
-| autogenerated/TaintedPath/normalizedPaths.js:247:18:247:18 | 0 | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:247:18:247:18 | 0 | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:247:18:247:18 | 0 | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:247:18:247:18 | 0 | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:247:18:247:18 | 0 | TaintedPath | notASinkReason | BuiltinCallName | string |
-| autogenerated/TaintedPath/normalizedPaths.js:247:18:247:18 | 0 | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:247:18:247:18 | 0 | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:247:18:247:18 | 0 | Xss | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:247:18:247:18 | 0 | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:247:18:247:18 | 0 | Xss | notASinkReason | BuiltinCallName | string |
-| autogenerated/TaintedPath/normalizedPaths.js:247:18:247:18 | 0 | Xss | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:247:21:247:35 | self.dir.length | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:247:21:247:35 | self.dir.length | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:247:21:247:35 | self.dir.length | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:247:21:247:35 | self.dir.length | NosqlInjection | notASinkReason | BuiltinCallName | string |
-| autogenerated/TaintedPath/normalizedPaths.js:247:21:247:35 | self.dir.length | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:247:21:247:35 | self.dir.length | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:247:21:247:35 | self.dir.length | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:247:21:247:35 | self.dir.length | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:247:21:247:35 | self.dir.length | SqlInjection | notASinkReason | BuiltinCallName | string |
-| autogenerated/TaintedPath/normalizedPaths.js:247:21:247:35 | self.dir.length | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:247:21:247:35 | self.dir.length | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:247:21:247:35 | self.dir.length | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:247:21:247:35 | self.dir.length | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:247:21:247:35 | self.dir.length | TaintedPath | notASinkReason | BuiltinCallName | string |
-| autogenerated/TaintedPath/normalizedPaths.js:247:21:247:35 | self.dir.length | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:247:21:247:35 | self.dir.length | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:247:21:247:35 | self.dir.length | Xss | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:247:21:247:35 | self.dir.length | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:247:21:247:35 | self.dir.length | Xss | notASinkReason | BuiltinCallName | string |
-| autogenerated/TaintedPath/normalizedPaths.js:247:21:247:35 | self.dir.length | Xss | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:248:21:248:24 | path | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:248:21:248:24 | path | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:248:21:248:24 | path | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:248:21:248:24 | path | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:250:21:250:24 | path | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:250:21:250:24 | path | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:250:21:250:24 | path | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:250:21:250:24 | path | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:253:9:253:30 | '/relat ... tswith' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:253:9:253:30 | '/relat ... tswith' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:253:9:253:30 | '/relat ... tswith' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:253:9:253:30 | '/relat ... tswith' | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:253:9:253:30 | '/relat ... tswith' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:253:9:253:30 | '/relat ... tswith' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:253:9:253:30 | '/relat ... tswith' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:253:9:253:30 | '/relat ... tswith' | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:253:9:253:30 | '/relat ... tswith' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:253:9:253:30 | '/relat ... tswith' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:253:9:253:30 | '/relat ... tswith' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:253:9:253:30 | '/relat ... tswith' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:253:9:253:30 | '/relat ... tswith' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:253:9:253:30 | '/relat ... tswith' | Xss | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:253:9:253:30 | '/relat ... tswith' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:253:9:253:30 | '/relat ... tswith' | Xss | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:253:33:298:1 | (req, r ...  \\n  }\\n} | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:253:33:298:1 | (req, r ...  \\n  }\\n} | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:253:33:298:1 | (req, r ...  \\n  }\\n} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:253:33:298:1 | (req, r ...  \\n  }\\n} | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:253:33:298:1 | (req, r ...  \\n  }\\n} | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:253:33:298:1 | (req, r ...  \\n  }\\n} | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:253:33:298:1 | (req, r ...  \\n  }\\n} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:253:33:298:1 | (req, r ...  \\n  }\\n} | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:253:33:298:1 | (req, r ...  \\n  }\\n} | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:253:33:298:1 | (req, r ...  \\n  }\\n} | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:253:33:298:1 | (req, r ...  \\n  }\\n} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:253:33:298:1 | (req, r ...  \\n  }\\n} | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:253:33:298:1 | (req, r ...  \\n  }\\n} | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:253:33:298:1 | (req, r ...  \\n  }\\n} | Xss | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:253:33:298:1 | (req, r ...  \\n  }\\n} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:253:33:298:1 | (req, r ...  \\n  }\\n} | Xss | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:254:14:254:47 | pathMod ... y.path) | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:254:14:254:47 | pathMod ... y.path) | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:254:14:254:47 | pathMod ... y.path) | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:254:14:254:47 | pathMod ... y.path) | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:256:19:256:22 | path | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:256:19:256:22 | path | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:256:19:256:22 | path | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:256:19:256:22 | path | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:261:26:261:46 | ".." +  ... ule.sep | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:261:26:261:46 | ".." +  ... ule.sep | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:261:26:261:46 | ".." +  ... ule.sep | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:261:26:261:46 | ".." +  ... ule.sep | NosqlInjection | notASinkReason | StringStartsWith | string |
-| autogenerated/TaintedPath/normalizedPaths.js:261:26:261:46 | ".." +  ... ule.sep | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:261:26:261:46 | ".." +  ... ule.sep | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:261:26:261:46 | ".." +  ... ule.sep | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:261:26:261:46 | ".." +  ... ule.sep | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:261:26:261:46 | ".." +  ... ule.sep | SqlInjection | notASinkReason | StringStartsWith | string |
-| autogenerated/TaintedPath/normalizedPaths.js:261:26:261:46 | ".." +  ... ule.sep | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:261:26:261:46 | ".." +  ... ule.sep | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:261:26:261:46 | ".." +  ... ule.sep | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:261:26:261:46 | ".." +  ... ule.sep | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:261:26:261:46 | ".." +  ... ule.sep | TaintedPath | notASinkReason | StringStartsWith | string |
-| autogenerated/TaintedPath/normalizedPaths.js:261:26:261:46 | ".." +  ... ule.sep | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:261:26:261:46 | ".." +  ... ule.sep | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:261:26:261:46 | ".." +  ... ule.sep | Xss | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:261:26:261:46 | ".." +  ... ule.sep | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:261:26:261:46 | ".." +  ... ule.sep | Xss | notASinkReason | StringStartsWith | string |
-| autogenerated/TaintedPath/normalizedPaths.js:261:26:261:46 | ".." +  ... ule.sep | Xss | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:262:21:262:24 | path | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:262:21:262:24 | path | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:262:21:262:24 | path | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:262:21:262:24 | path | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:264:21:264:24 | path | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:264:21:264:24 | path | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:264:21:264:24 | path | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:264:21:264:24 | path | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:269:28:269:48 | '..' +  ... ule.sep | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:269:28:269:48 | '..' +  ... ule.sep | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:269:28:269:48 | '..' +  ... ule.sep | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:269:28:269:48 | '..' +  ... ule.sep | NosqlInjection | notASinkReason | BuiltinCallName | string |
-| autogenerated/TaintedPath/normalizedPaths.js:269:28:269:48 | '..' +  ... ule.sep | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:269:28:269:48 | '..' +  ... ule.sep | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:269:28:269:48 | '..' +  ... ule.sep | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:269:28:269:48 | '..' +  ... ule.sep | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:269:28:269:48 | '..' +  ... ule.sep | SqlInjection | notASinkReason | BuiltinCallName | string |
-| autogenerated/TaintedPath/normalizedPaths.js:269:28:269:48 | '..' +  ... ule.sep | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:269:28:269:48 | '..' +  ... ule.sep | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:269:28:269:48 | '..' +  ... ule.sep | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:269:28:269:48 | '..' +  ... ule.sep | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:269:28:269:48 | '..' +  ... ule.sep | TaintedPath | notASinkReason | BuiltinCallName | string |
-| autogenerated/TaintedPath/normalizedPaths.js:269:28:269:48 | '..' +  ... ule.sep | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:269:28:269:48 | '..' +  ... ule.sep | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:269:28:269:48 | '..' +  ... ule.sep | Xss | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:269:28:269:48 | '..' +  ... ule.sep | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:269:28:269:48 | '..' +  ... ule.sep | Xss | notASinkReason | BuiltinCallName | string |
-| autogenerated/TaintedPath/normalizedPaths.js:269:28:269:48 | '..' +  ... ule.sep | Xss | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:270:21:270:27 | newpath | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:270:21:270:27 | newpath | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:270:21:270:27 | newpath | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:270:21:270:27 | newpath | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:272:21:272:27 | newpath | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:272:21:272:27 | newpath | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:272:21:272:27 | newpath | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:272:21:272:27 | newpath | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:277:28:277:32 | '../' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:277:28:277:32 | '../' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:277:28:277:32 | '../' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:277:28:277:32 | '../' | NosqlInjection | notASinkReason | BuiltinCallName | string |
-| autogenerated/TaintedPath/normalizedPaths.js:277:28:277:32 | '../' | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:277:28:277:32 | '../' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:277:28:277:32 | '../' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:277:28:277:32 | '../' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:277:28:277:32 | '../' | SqlInjection | notASinkReason | BuiltinCallName | string |
-| autogenerated/TaintedPath/normalizedPaths.js:277:28:277:32 | '../' | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:277:28:277:32 | '../' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:277:28:277:32 | '../' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:277:28:277:32 | '../' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:277:28:277:32 | '../' | TaintedPath | notASinkReason | BuiltinCallName | string |
-| autogenerated/TaintedPath/normalizedPaths.js:277:28:277:32 | '../' | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:277:28:277:32 | '../' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:277:28:277:32 | '../' | Xss | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:277:28:277:32 | '../' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:277:28:277:32 | '../' | Xss | notASinkReason | BuiltinCallName | string |
-| autogenerated/TaintedPath/normalizedPaths.js:277:28:277:32 | '../' | Xss | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:278:21:278:27 | newpath | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:278:21:278:27 | newpath | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:278:21:278:27 | newpath | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:278:21:278:27 | newpath | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:280:21:280:27 | newpath | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:280:21:280:27 | newpath | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:280:21:280:27 | newpath | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:280:21:280:27 | newpath | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:285:50:285:54 | '../' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:285:50:285:54 | '../' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:285:50:285:54 | '../' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:285:50:285:54 | '../' | NosqlInjection | notASinkReason | BuiltinCallName | string |
-| autogenerated/TaintedPath/normalizedPaths.js:285:50:285:54 | '../' | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:285:50:285:54 | '../' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:285:50:285:54 | '../' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:285:50:285:54 | '../' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:285:50:285:54 | '../' | SqlInjection | notASinkReason | BuiltinCallName | string |
-| autogenerated/TaintedPath/normalizedPaths.js:285:50:285:54 | '../' | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:285:50:285:54 | '../' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:285:50:285:54 | '../' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:285:50:285:54 | '../' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:285:50:285:54 | '../' | TaintedPath | notASinkReason | BuiltinCallName | string |
-| autogenerated/TaintedPath/normalizedPaths.js:285:50:285:54 | '../' | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:285:50:285:54 | '../' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:285:50:285:54 | '../' | Xss | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:285:50:285:54 | '../' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:285:50:285:54 | '../' | Xss | notASinkReason | BuiltinCallName | string |
-| autogenerated/TaintedPath/normalizedPaths.js:285:50:285:54 | '../' | Xss | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:286:21:286:27 | newpath | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:286:21:286:27 | newpath | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:286:21:286:27 | newpath | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:286:21:286:27 | newpath | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:288:21:288:27 | newpath | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:288:21:288:27 | newpath | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:288:21:288:27 | newpath | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:288:21:288:27 | newpath | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:293:50:293:54 | '../' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:293:50:293:54 | '../' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:293:50:293:54 | '../' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:293:50:293:54 | '../' | NosqlInjection | notASinkReason | BuiltinCallName | string |
-| autogenerated/TaintedPath/normalizedPaths.js:293:50:293:54 | '../' | NosqlInjection | notASinkReason | StringStartsWith | string |
-| autogenerated/TaintedPath/normalizedPaths.js:293:50:293:54 | '../' | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:293:50:293:54 | '../' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:293:50:293:54 | '../' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:293:50:293:54 | '../' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:293:50:293:54 | '../' | SqlInjection | notASinkReason | BuiltinCallName | string |
-| autogenerated/TaintedPath/normalizedPaths.js:293:50:293:54 | '../' | SqlInjection | notASinkReason | StringStartsWith | string |
-| autogenerated/TaintedPath/normalizedPaths.js:293:50:293:54 | '../' | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:293:50:293:54 | '../' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:293:50:293:54 | '../' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:293:50:293:54 | '../' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:293:50:293:54 | '../' | TaintedPath | notASinkReason | BuiltinCallName | string |
-| autogenerated/TaintedPath/normalizedPaths.js:293:50:293:54 | '../' | TaintedPath | notASinkReason | StringStartsWith | string |
-| autogenerated/TaintedPath/normalizedPaths.js:293:50:293:54 | '../' | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:293:50:293:54 | '../' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:293:50:293:54 | '../' | Xss | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:293:50:293:54 | '../' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:293:50:293:54 | '../' | Xss | notASinkReason | BuiltinCallName | string |
-| autogenerated/TaintedPath/normalizedPaths.js:293:50:293:54 | '../' | Xss | notASinkReason | StringStartsWith | string |
-| autogenerated/TaintedPath/normalizedPaths.js:293:50:293:54 | '../' | Xss | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:294:21:294:27 | newpath | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:294:21:294:27 | newpath | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:294:21:294:27 | newpath | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:294:21:294:27 | newpath | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:296:21:296:27 | newpath | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:296:21:296:27 | newpath | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:296:21:296:27 | newpath | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:296:21:296:27 | newpath | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:300:28:300:43 | "is-path-inside" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:300:28:300:43 | "is-path-inside" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:300:28:300:43 | "is-path-inside" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:300:28:300:43 | "is-path-inside" | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:301:28:301:43 | "path-is-inside" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:301:28:301:43 | "path-is-inside" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:301:28:301:43 | "path-is-inside" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:301:28:301:43 | "path-is-inside" | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:302:9:302:32 | '/pseud ... ations' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:302:9:302:32 | '/pseud ... ations' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:302:9:302:32 | '/pseud ... ations' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:302:9:302:32 | '/pseud ... ations' | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:302:9:302:32 | '/pseud ... ations' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:302:9:302:32 | '/pseud ... ations' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:302:9:302:32 | '/pseud ... ations' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:302:9:302:32 | '/pseud ... ations' | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:302:9:302:32 | '/pseud ... ations' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:302:9:302:32 | '/pseud ... ations' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:302:9:302:32 | '/pseud ... ations' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:302:9:302:32 | '/pseud ... ations' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:302:9:302:32 | '/pseud ... ations' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:302:9:302:32 | '/pseud ... ations' | Xss | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:302:9:302:32 | '/pseud ... ations' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:302:9:302:32 | '/pseud ... ations' | Xss | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:302:35:336:1 | (req, r ... \\n\\n\\t}\\n\\n} | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:302:35:336:1 | (req, r ... \\n\\n\\t}\\n\\n} | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:302:35:336:1 | (req, r ... \\n\\n\\t}\\n\\n} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:302:35:336:1 | (req, r ... \\n\\n\\t}\\n\\n} | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:302:35:336:1 | (req, r ... \\n\\n\\t}\\n\\n} | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:302:35:336:1 | (req, r ... \\n\\n\\t}\\n\\n} | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:302:35:336:1 | (req, r ... \\n\\n\\t}\\n\\n} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:302:35:336:1 | (req, r ... \\n\\n\\t}\\n\\n} | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:302:35:336:1 | (req, r ... \\n\\n\\t}\\n\\n} | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:302:35:336:1 | (req, r ... \\n\\n\\t}\\n\\n} | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:302:35:336:1 | (req, r ... \\n\\n\\t}\\n\\n} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:302:35:336:1 | (req, r ... \\n\\n\\t}\\n\\n} | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:302:35:336:1 | (req, r ... \\n\\n\\t}\\n\\n} | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:302:35:336:1 | (req, r ... \\n\\n\\t}\\n\\n} | Xss | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:302:35:336:1 | (req, r ... \\n\\n\\t}\\n\\n} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:302:35:336:1 | (req, r ... \\n\\n\\t}\\n\\n} | Xss | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:304:18:304:21 | path | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:304:18:304:21 | path | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:304:18:304:21 | path | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:304:18:304:21 | path | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:306:19:306:22 | path | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:306:19:306:22 | path | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:306:19:306:22 | path | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:306:19:306:22 | path | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:309:19:309:22 | path | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:309:19:309:22 | path | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:309:19:309:22 | path | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:309:19:309:22 | path | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:312:19:312:22 | path | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:312:19:312:22 | path | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:312:19:312:22 | path | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:312:19:312:22 | path | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:312:19:312:22 | path | SqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:312:19:312:22 | path | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:312:19:312:22 | path | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:312:19:312:22 | path | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:312:19:312:22 | path | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:312:19:312:22 | path | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:312:19:312:22 | path | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:312:19:312:22 | path | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:312:19:312:22 | path | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:312:19:312:22 | path | Xss | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:312:19:312:22 | path | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:312:19:312:22 | path | Xss | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:312:25:312:28 | SAFE | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:312:25:312:28 | SAFE | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:312:25:312:28 | SAFE | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:312:25:312:28 | SAFE | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:312:25:312:28 | SAFE | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:312:25:312:28 | SAFE | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:312:25:312:28 | SAFE | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:312:25:312:28 | SAFE | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:312:25:312:28 | SAFE | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:312:25:312:28 | SAFE | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:312:25:312:28 | SAFE | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:312:25:312:28 | SAFE | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:312:25:312:28 | SAFE | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:312:25:312:28 | SAFE | Xss | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:312:25:312:28 | SAFE | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:312:25:312:28 | SAFE | Xss | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:313:19:313:22 | path | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:313:19:313:22 | path | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:313:19:313:22 | path | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:313:19:313:22 | path | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:316:19:316:22 | path | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:316:19:316:22 | path | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:316:19:316:22 | path | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:316:19:316:22 | path | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:321:19:321:32 | normalizedPath | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:321:19:321:32 | normalizedPath | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:321:19:321:32 | normalizedPath | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:321:19:321:32 | normalizedPath | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:321:19:321:32 | normalizedPath | SqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:321:19:321:32 | normalizedPath | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:321:19:321:32 | normalizedPath | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:321:19:321:32 | normalizedPath | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:321:19:321:32 | normalizedPath | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:321:19:321:32 | normalizedPath | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:321:19:321:32 | normalizedPath | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:321:19:321:32 | normalizedPath | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:321:19:321:32 | normalizedPath | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:321:19:321:32 | normalizedPath | Xss | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:321:19:321:32 | normalizedPath | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:321:19:321:32 | normalizedPath | Xss | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:321:35:321:38 | SAFE | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:321:35:321:38 | SAFE | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:321:35:321:38 | SAFE | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:321:35:321:38 | SAFE | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:321:35:321:38 | SAFE | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:321:35:321:38 | SAFE | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:321:35:321:38 | SAFE | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:321:35:321:38 | SAFE | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:321:35:321:38 | SAFE | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:321:35:321:38 | SAFE | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:321:35:321:38 | SAFE | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:321:35:321:38 | SAFE | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:321:35:321:38 | SAFE | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:321:35:321:38 | SAFE | Xss | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:321:35:321:38 | SAFE | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:321:35:321:38 | SAFE | Xss | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:322:19:322:32 | normalizedPath | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:322:19:322:32 | normalizedPath | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:322:19:322:32 | normalizedPath | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:322:19:322:32 | normalizedPath | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:325:19:325:32 | normalizedPath | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:325:19:325:32 | normalizedPath | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:325:19:325:32 | normalizedPath | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:325:19:325:32 | normalizedPath | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:328:19:328:32 | normalizedPath | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:328:19:328:32 | normalizedPath | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:328:19:328:32 | normalizedPath | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:328:19:328:32 | normalizedPath | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:328:19:328:32 | normalizedPath | SqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:328:19:328:32 | normalizedPath | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:328:19:328:32 | normalizedPath | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:328:19:328:32 | normalizedPath | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:328:19:328:32 | normalizedPath | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:328:19:328:32 | normalizedPath | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:328:19:328:32 | normalizedPath | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:328:19:328:32 | normalizedPath | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:328:19:328:32 | normalizedPath | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:328:19:328:32 | normalizedPath | Xss | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:328:19:328:32 | normalizedPath | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:328:19:328:32 | normalizedPath | Xss | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:328:35:328:38 | SAFE | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:328:35:328:38 | SAFE | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:328:35:328:38 | SAFE | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:328:35:328:38 | SAFE | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:328:35:328:38 | SAFE | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:328:35:328:38 | SAFE | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:328:35:328:38 | SAFE | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:328:35:328:38 | SAFE | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:328:35:328:38 | SAFE | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:328:35:328:38 | SAFE | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:328:35:328:38 | SAFE | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:328:35:328:38 | SAFE | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:328:35:328:38 | SAFE | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:328:35:328:38 | SAFE | Xss | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:328:35:328:38 | SAFE | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:328:35:328:38 | SAFE | Xss | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:329:19:329:32 | normalizedPath | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:329:19:329:32 | normalizedPath | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:329:19:329:32 | normalizedPath | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:329:19:329:32 | normalizedPath | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:332:19:332:32 | normalizedPath | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:332:19:332:32 | normalizedPath | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:332:19:332:32 | normalizedPath | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:332:19:332:32 | normalizedPath | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:338:9:338:29 | '/yet-a ... prefix' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:338:9:338:29 | '/yet-a ... prefix' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:338:9:338:29 | '/yet-a ... prefix' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:338:9:338:29 | '/yet-a ... prefix' | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:338:9:338:29 | '/yet-a ... prefix' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:338:9:338:29 | '/yet-a ... prefix' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:338:9:338:29 | '/yet-a ... prefix' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:338:9:338:29 | '/yet-a ... prefix' | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:338:9:338:29 | '/yet-a ... prefix' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:338:9:338:29 | '/yet-a ... prefix' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:338:9:338:29 | '/yet-a ... prefix' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:338:9:338:29 | '/yet-a ... prefix' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:338:9:338:29 | '/yet-a ... prefix' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:338:9:338:29 | '/yet-a ... prefix' | Xss | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:338:9:338:29 | '/yet-a ... prefix' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:338:9:338:29 | '/yet-a ... prefix' | Xss | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:338:32:350:1 | (req, r ... // OK\\n} | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:338:32:350:1 | (req, r ... // OK\\n} | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:338:32:350:1 | (req, r ... // OK\\n} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:338:32:350:1 | (req, r ... // OK\\n} | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:338:32:350:1 | (req, r ... // OK\\n} | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:338:32:350:1 | (req, r ... // OK\\n} | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:338:32:350:1 | (req, r ... // OK\\n} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:338:32:350:1 | (req, r ... // OK\\n} | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:338:32:350:1 | (req, r ... // OK\\n} | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:338:32:350:1 | (req, r ... // OK\\n} | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:338:32:350:1 | (req, r ... // OK\\n} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:338:32:350:1 | (req, r ... // OK\\n} | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:338:32:350:1 | (req, r ... // OK\\n} | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:338:32:350:1 | (req, r ... // OK\\n} | Xss | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:338:32:350:1 | (req, r ... // OK\\n} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:338:32:350:1 | (req, r ... // OK\\n} | Xss | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:339:13:339:46 | pathMod ... y.path) | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:339:13:339:46 | pathMod ... y.path) | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:339:13:339:46 | pathMod ... y.path) | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:339:13:339:46 | pathMod ... y.path) | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:341:18:341:21 | path | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:341:18:341:21 | path | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:341:18:341:21 | path | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:341:18:341:21 | path | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:345:18:345:21 | root | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:345:18:345:21 | root | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:345:18:345:21 | root | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:345:18:345:21 | root | NosqlInjection | notASinkReason | BuiltinCallName | string |
-| autogenerated/TaintedPath/normalizedPaths.js:345:18:345:21 | root | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:345:18:345:21 | root | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:345:18:345:21 | root | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:345:18:345:21 | root | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:345:18:345:21 | root | SqlInjection | notASinkReason | BuiltinCallName | string |
-| autogenerated/TaintedPath/normalizedPaths.js:345:18:345:21 | root | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:345:18:345:21 | root | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:345:18:345:21 | root | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:345:18:345:21 | root | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:345:18:345:21 | root | TaintedPath | notASinkReason | BuiltinCallName | string |
-| autogenerated/TaintedPath/normalizedPaths.js:345:18:345:21 | root | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:345:18:345:21 | root | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:345:18:345:21 | root | Xss | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:345:18:345:21 | root | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:345:18:345:21 | root | Xss | notASinkReason | BuiltinCallName | string |
-| autogenerated/TaintedPath/normalizedPaths.js:345:18:345:21 | root | Xss | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:346:19:346:22 | path | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:346:19:346:22 | path | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:346:19:346:22 | path | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:346:19:346:22 | path | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:349:18:349:21 | path | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:349:18:349:21 | path | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:349:18:349:21 | path | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:349:18:349:21 | path | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:353:9:353:30 | '/yet-a ... refix2' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:353:9:353:30 | '/yet-a ... refix2' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:353:9:353:30 | '/yet-a ... refix2' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:353:9:353:30 | '/yet-a ... refix2' | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:353:9:353:30 | '/yet-a ... refix2' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:353:9:353:30 | '/yet-a ... refix2' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:353:9:353:30 | '/yet-a ... refix2' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:353:9:353:30 | '/yet-a ... refix2' | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:353:9:353:30 | '/yet-a ... refix2' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:353:9:353:30 | '/yet-a ... refix2' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:353:9:353:30 | '/yet-a ... refix2' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:353:9:353:30 | '/yet-a ... refix2' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:353:9:353:30 | '/yet-a ... refix2' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:353:9:353:30 | '/yet-a ... refix2' | Xss | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:353:9:353:30 | '/yet-a ... refix2' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:353:9:353:30 | '/yet-a ... refix2' | Xss | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:353:33:373:1 | (req, r ... ;\\n  }\\n} | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:353:33:373:1 | (req, r ... ;\\n  }\\n} | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:353:33:373:1 | (req, r ... ;\\n  }\\n} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:353:33:373:1 | (req, r ... ;\\n  }\\n} | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:353:33:373:1 | (req, r ... ;\\n  }\\n} | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:353:33:373:1 | (req, r ... ;\\n  }\\n} | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:353:33:373:1 | (req, r ... ;\\n  }\\n} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:353:33:373:1 | (req, r ... ;\\n  }\\n} | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:353:33:373:1 | (req, r ... ;\\n  }\\n} | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:353:33:373:1 | (req, r ... ;\\n  }\\n} | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:353:33:373:1 | (req, r ... ;\\n  }\\n} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:353:33:373:1 | (req, r ... ;\\n  }\\n} | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:353:33:373:1 | (req, r ... ;\\n  }\\n} | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:353:33:373:1 | (req, r ... ;\\n  }\\n} | Xss | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:353:33:373:1 | (req, r ... ;\\n  }\\n} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:353:33:373:1 | (req, r ... ;\\n  }\\n} | Xss | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/normalizedPaths.js:356:19:356:22 | path | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:356:19:356:22 | path | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:356:19:356:22 | path | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:356:19:356:22 | path | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:361:18:361:28 | requestPath | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:361:18:361:28 | requestPath | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:361:18:361:28 | requestPath | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:361:18:361:28 | requestPath | NosqlInjection | notASinkReason | StringStartsWith | string |
-| autogenerated/TaintedPath/normalizedPaths.js:361:18:361:28 | requestPath | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:361:18:361:28 | requestPath | SqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:361:18:361:28 | requestPath | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:361:18:361:28 | requestPath | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:361:18:361:28 | requestPath | SqlInjection | notASinkReason | StringStartsWith | string |
-| autogenerated/TaintedPath/normalizedPaths.js:361:18:361:28 | requestPath | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:361:18:361:28 | requestPath | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:361:18:361:28 | requestPath | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:361:18:361:28 | requestPath | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:361:18:361:28 | requestPath | TaintedPath | notASinkReason | StringStartsWith | string |
-| autogenerated/TaintedPath/normalizedPaths.js:361:18:361:28 | requestPath | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:361:18:361:28 | requestPath | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:361:18:361:28 | requestPath | Xss | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:361:18:361:28 | requestPath | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:361:18:361:28 | requestPath | Xss | notASinkReason | StringStartsWith | string |
-| autogenerated/TaintedPath/normalizedPaths.js:361:18:361:28 | requestPath | Xss | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:361:31:361:38 | rootPath | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:361:31:361:38 | rootPath | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:361:31:361:38 | rootPath | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:361:31:361:38 | rootPath | NosqlInjection | notASinkReason | StringStartsWith | string |
-| autogenerated/TaintedPath/normalizedPaths.js:361:31:361:38 | rootPath | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:361:31:361:38 | rootPath | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:361:31:361:38 | rootPath | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:361:31:361:38 | rootPath | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:361:31:361:38 | rootPath | SqlInjection | notASinkReason | StringStartsWith | string |
-| autogenerated/TaintedPath/normalizedPaths.js:361:31:361:38 | rootPath | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:361:31:361:38 | rootPath | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:361:31:361:38 | rootPath | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:361:31:361:38 | rootPath | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:361:31:361:38 | rootPath | TaintedPath | notASinkReason | StringStartsWith | string |
-| autogenerated/TaintedPath/normalizedPaths.js:361:31:361:38 | rootPath | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:361:31:361:38 | rootPath | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:361:31:361:38 | rootPath | Xss | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:361:31:361:38 | rootPath | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:361:31:361:38 | rootPath | Xss | notASinkReason | StringStartsWith | string |
-| autogenerated/TaintedPath/normalizedPaths.js:361:31:361:38 | rootPath | Xss | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:363:21:363:31 | requestPath | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:363:21:363:31 | requestPath | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:363:21:363:31 | requestPath | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:363:21:363:31 | requestPath | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:366:21:366:31 | requestPath | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:366:21:366:31 | requestPath | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:366:21:366:31 | requestPath | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:366:21:366:31 | requestPath | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:368:19:368:28 | targetPath | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:368:19:368:28 | targetPath | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:368:19:368:28 | targetPath | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:368:19:368:28 | targetPath | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:371:32:371:39 | rootPath | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:371:32:371:39 | rootPath | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:371:32:371:39 | rootPath | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:371:32:371:39 | rootPath | NosqlInjection | notASinkReason | BuiltinCallName | string |
-| autogenerated/TaintedPath/normalizedPaths.js:371:32:371:39 | rootPath | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:371:32:371:39 | rootPath | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:371:32:371:39 | rootPath | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:371:32:371:39 | rootPath | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:371:32:371:39 | rootPath | SqlInjection | notASinkReason | BuiltinCallName | string |
-| autogenerated/TaintedPath/normalizedPaths.js:371:32:371:39 | rootPath | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:371:32:371:39 | rootPath | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:371:32:371:39 | rootPath | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:371:32:371:39 | rootPath | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:371:32:371:39 | rootPath | TaintedPath | notASinkReason | BuiltinCallName | string |
-| autogenerated/TaintedPath/normalizedPaths.js:371:32:371:39 | rootPath | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/normalizedPaths.js:371:32:371:39 | rootPath | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:371:32:371:39 | rootPath | Xss | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:371:32:371:39 | rootPath | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/normalizedPaths.js:371:32:371:39 | rootPath | Xss | notASinkReason | BuiltinCallName | string |
-| autogenerated/TaintedPath/normalizedPaths.js:371:32:371:39 | rootPath | Xss | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/other-fs-libraries.js:1:20:1:25 | "http" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/other-fs-libraries.js:1:20:1:25 | "http" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/other-fs-libraries.js:1:20:1:25 | "http" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/other-fs-libraries.js:1:20:1:25 | "http" | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/other-fs-libraries.js:2:17:2:21 | "url" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/other-fs-libraries.js:2:17:2:21 | "url" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/other-fs-libraries.js:2:17:2:21 | "url" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/other-fs-libraries.js:2:17:2:21 | "url" | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/other-fs-libraries.js:3:16:3:19 | "fs" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/other-fs-libraries.js:3:16:3:19 | "fs" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/other-fs-libraries.js:3:16:3:19 | "fs" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/other-fs-libraries.js:3:16:3:19 | "fs" | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/other-fs-libraries.js:4:24:4:36 | "graceful-fs" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/other-fs-libraries.js:4:24:4:36 | "graceful-fs" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/other-fs-libraries.js:4:24:4:36 | "graceful-fs" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/other-fs-libraries.js:4:24:4:36 | "graceful-fs" | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/other-fs-libraries.js:5:21:5:30 | "fs-extra" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/other-fs-libraries.js:5:21:5:30 | "fs-extra" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/other-fs-libraries.js:5:21:5:30 | "fs-extra" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/other-fs-libraries.js:5:21:5:30 | "fs-extra" | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/other-fs-libraries.js:6:24:6:36 | "original-fs" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/other-fs-libraries.js:6:24:6:36 | "original-fs" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/other-fs-libraries.js:6:24:6:36 | "original-fs" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/other-fs-libraries.js:6:24:6:36 | "original-fs" | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/other-fs-libraries.js:8:32:25:1 | functio ... OT OK\\n} | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/other-fs-libraries.js:8:32:25:1 | functio ... OT OK\\n} | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/other-fs-libraries.js:8:32:25:1 | functio ... OT OK\\n} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/other-fs-libraries.js:8:32:25:1 | functio ... OT OK\\n} | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/other-fs-libraries.js:8:32:25:1 | functio ... OT OK\\n} | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/other-fs-libraries.js:8:32:25:1 | functio ... OT OK\\n} | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/other-fs-libraries.js:8:32:25:1 | functio ... OT OK\\n} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/other-fs-libraries.js:8:32:25:1 | functio ... OT OK\\n} | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/other-fs-libraries.js:8:32:25:1 | functio ... OT OK\\n} | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/other-fs-libraries.js:8:32:25:1 | functio ... OT OK\\n} | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/other-fs-libraries.js:8:32:25:1 | functio ... OT OK\\n} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/other-fs-libraries.js:8:32:25:1 | functio ... OT OK\\n} | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/other-fs-libraries.js:8:32:25:1 | functio ... OT OK\\n} | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/other-fs-libraries.js:8:32:25:1 | functio ... OT OK\\n} | Xss | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/other-fs-libraries.js:8:32:25:1 | functio ... OT OK\\n} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/other-fs-libraries.js:8:32:25:1 | functio ... OT OK\\n} | Xss | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/other-fs-libraries.js:11:19:11:22 | path | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/other-fs-libraries.js:11:19:11:22 | path | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/other-fs-libraries.js:11:19:11:22 | path | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/other-fs-libraries.js:11:19:11:22 | path | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/other-fs-libraries.js:12:27:12:30 | path | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/other-fs-libraries.js:12:27:12:30 | path | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/other-fs-libraries.js:12:27:12:30 | path | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/other-fs-libraries.js:12:27:12:30 | path | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/other-fs-libraries.js:13:24:13:27 | path | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/other-fs-libraries.js:13:24:13:27 | path | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/other-fs-libraries.js:13:24:13:27 | path | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/other-fs-libraries.js:13:24:13:27 | path | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/other-fs-libraries.js:14:27:14:30 | path | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/other-fs-libraries.js:14:27:14:30 | path | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/other-fs-libraries.js:14:27:14:30 | path | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/other-fs-libraries.js:14:27:14:30 | path | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/other-fs-libraries.js:16:34:16:37 | path | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/other-fs-libraries.js:16:34:16:37 | path | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/other-fs-libraries.js:16:34:16:37 | path | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/other-fs-libraries.js:16:34:16:37 | path | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/other-fs-libraries.js:17:35:17:38 | path | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/other-fs-libraries.js:17:35:17:38 | path | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/other-fs-libraries.js:17:35:17:38 | path | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/other-fs-libraries.js:17:35:17:38 | path | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/other-fs-libraries.js:19:11:19:26 | "./my-fs-module" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/other-fs-libraries.js:19:11:19:26 | "./my-fs-module" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/other-fs-libraries.js:19:11:19:26 | "./my-fs-module" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/other-fs-libraries.js:19:11:19:26 | "./my-fs-module" | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/other-fs-libraries.js:19:56:19:59 | path | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/other-fs-libraries.js:19:56:19:59 | path | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/other-fs-libraries.js:19:56:19:59 | path | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/other-fs-libraries.js:19:56:19:59 | path | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/other-fs-libraries.js:21:36:23:10 | process ...  : "fs" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/other-fs-libraries.js:21:36:23:10 | process ...  : "fs" | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/other-fs-libraries.js:21:36:23:10 | process ...  : "fs" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/other-fs-libraries.js:21:36:23:10 | process ...  : "fs" | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/other-fs-libraries.js:24:35:24:38 | path | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/other-fs-libraries.js:24:35:24:38 | path | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/other-fs-libraries.js:24:35:24:38 | path | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/other-fs-libraries.js:24:35:24:38 | path | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/other-fs-libraries.js:29:20:29:23 | "fs" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/other-fs-libraries.js:29:20:29:23 | "fs" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/other-fs-libraries.js:29:20:29:23 | "fs" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/other-fs-libraries.js:29:20:29:23 | "fs" | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/other-fs-libraries.js:31:20:31:32 | "original-fs" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/other-fs-libraries.js:31:20:31:32 | "original-fs" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/other-fs-libraries.js:31:20:31:32 | "original-fs" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/other-fs-libraries.js:31:20:31:32 | "original-fs" | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/other-fs-libraries.js:35:20:35:25 | "util" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/other-fs-libraries.js:35:20:35:25 | "util" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/other-fs-libraries.js:35:20:35:25 | "util" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/other-fs-libraries.js:35:20:35:25 | "util" | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/other-fs-libraries.js:37:19:43:1 | functio ... OT OK\\n} | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/other-fs-libraries.js:37:19:43:1 | functio ... OT OK\\n} | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/other-fs-libraries.js:37:19:43:1 | functio ... OT OK\\n} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/other-fs-libraries.js:37:19:43:1 | functio ... OT OK\\n} | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/other-fs-libraries.js:37:19:43:1 | functio ... OT OK\\n} | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/other-fs-libraries.js:37:19:43:1 | functio ... OT OK\\n} | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/other-fs-libraries.js:37:19:43:1 | functio ... OT OK\\n} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/other-fs-libraries.js:37:19:43:1 | functio ... OT OK\\n} | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/other-fs-libraries.js:37:19:43:1 | functio ... OT OK\\n} | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/other-fs-libraries.js:37:19:43:1 | functio ... OT OK\\n} | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/other-fs-libraries.js:37:19:43:1 | functio ... OT OK\\n} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/other-fs-libraries.js:37:19:43:1 | functio ... OT OK\\n} | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/other-fs-libraries.js:37:19:43:1 | functio ... OT OK\\n} | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/other-fs-libraries.js:37:19:43:1 | functio ... OT OK\\n} | Xss | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/other-fs-libraries.js:37:19:43:1 | functio ... OT OK\\n} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/other-fs-libraries.js:37:19:43:1 | functio ... OT OK\\n} | Xss | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/other-fs-libraries.js:40:18:40:32 | fs.readFileSync | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/other-fs-libraries.js:40:18:40:32 | fs.readFileSync | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/other-fs-libraries.js:40:18:40:32 | fs.readFileSync | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/other-fs-libraries.js:40:18:40:32 | fs.readFileSync | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/other-fs-libraries.js:40:18:40:32 | fs.readFileSync | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/other-fs-libraries.js:40:18:40:32 | fs.readFileSync | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/other-fs-libraries.js:40:18:40:32 | fs.readFileSync | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/other-fs-libraries.js:40:18:40:32 | fs.readFileSync | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/other-fs-libraries.js:40:18:40:32 | fs.readFileSync | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/other-fs-libraries.js:40:18:40:32 | fs.readFileSync | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/other-fs-libraries.js:40:18:40:32 | fs.readFileSync | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/other-fs-libraries.js:40:18:40:32 | fs.readFileSync | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/other-fs-libraries.js:40:18:40:32 | fs.readFileSync | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/other-fs-libraries.js:40:18:40:32 | fs.readFileSync | Xss | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/other-fs-libraries.js:40:18:40:32 | fs.readFileSync | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/other-fs-libraries.js:40:18:40:32 | fs.readFileSync | Xss | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/other-fs-libraries.js:40:35:40:38 | path | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/other-fs-libraries.js:40:35:40:38 | path | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/other-fs-libraries.js:40:35:40:38 | path | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/other-fs-libraries.js:40:35:40:38 | path | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/other-fs-libraries.js:41:11:41:20 | "bluebird" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/other-fs-libraries.js:41:11:41:20 | "bluebird" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/other-fs-libraries.js:41:11:41:20 | "bluebird" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/other-fs-libraries.js:41:11:41:20 | "bluebird" | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/other-fs-libraries.js:41:33:41:47 | fs.readFileSync | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/other-fs-libraries.js:41:33:41:47 | fs.readFileSync | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/other-fs-libraries.js:41:33:41:47 | fs.readFileSync | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/other-fs-libraries.js:41:33:41:47 | fs.readFileSync | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/other-fs-libraries.js:41:33:41:47 | fs.readFileSync | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/other-fs-libraries.js:41:33:41:47 | fs.readFileSync | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/other-fs-libraries.js:41:33:41:47 | fs.readFileSync | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/other-fs-libraries.js:41:33:41:47 | fs.readFileSync | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/other-fs-libraries.js:41:33:41:47 | fs.readFileSync | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/other-fs-libraries.js:41:33:41:47 | fs.readFileSync | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/other-fs-libraries.js:41:33:41:47 | fs.readFileSync | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/other-fs-libraries.js:41:33:41:47 | fs.readFileSync | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/other-fs-libraries.js:41:33:41:47 | fs.readFileSync | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/other-fs-libraries.js:41:33:41:47 | fs.readFileSync | Xss | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/other-fs-libraries.js:41:33:41:47 | fs.readFileSync | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/other-fs-libraries.js:41:33:41:47 | fs.readFileSync | Xss | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/other-fs-libraries.js:41:50:41:53 | path | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/other-fs-libraries.js:41:50:41:53 | path | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/other-fs-libraries.js:41:50:41:53 | path | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/other-fs-libraries.js:41:50:41:53 | path | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/other-fs-libraries.js:42:11:42:20 | "bluebird" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/other-fs-libraries.js:42:11:42:20 | "bluebird" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/other-fs-libraries.js:42:11:42:20 | "bluebird" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/other-fs-libraries.js:42:11:42:20 | "bluebird" | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/other-fs-libraries.js:42:36:42:37 | fs | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/other-fs-libraries.js:42:36:42:37 | fs | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/other-fs-libraries.js:42:36:42:37 | fs | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/other-fs-libraries.js:42:36:42:37 | fs | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/other-fs-libraries.js:42:36:42:37 | fs | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/other-fs-libraries.js:42:36:42:37 | fs | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/other-fs-libraries.js:42:36:42:37 | fs | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/other-fs-libraries.js:42:36:42:37 | fs | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/other-fs-libraries.js:42:36:42:37 | fs | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/other-fs-libraries.js:42:36:42:37 | fs | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/other-fs-libraries.js:42:36:42:37 | fs | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/other-fs-libraries.js:42:36:42:37 | fs | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/other-fs-libraries.js:42:36:42:37 | fs | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/other-fs-libraries.js:42:36:42:37 | fs | Xss | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/other-fs-libraries.js:42:36:42:37 | fs | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/other-fs-libraries.js:42:36:42:37 | fs | Xss | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/other-fs-libraries.js:42:53:42:56 | path | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/other-fs-libraries.js:42:53:42:56 | path | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/other-fs-libraries.js:42:53:42:56 | path | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/other-fs-libraries.js:42:53:42:56 | path | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/other-fs-libraries.js:46:25:46:46 | "./my-a ... module" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/other-fs-libraries.js:46:25:46:46 | "./my-a ... module" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/other-fs-libraries.js:46:25:46:46 | "./my-a ... module" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/other-fs-libraries.js:46:25:46:46 | "./my-a ... module" | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/other-fs-libraries.js:48:19:53:1 | functio ... OT OK\\n} | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/other-fs-libraries.js:48:19:53:1 | functio ... OT OK\\n} | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/other-fs-libraries.js:48:19:53:1 | functio ... OT OK\\n} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/other-fs-libraries.js:48:19:53:1 | functio ... OT OK\\n} | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/other-fs-libraries.js:48:19:53:1 | functio ... OT OK\\n} | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/other-fs-libraries.js:48:19:53:1 | functio ... OT OK\\n} | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/other-fs-libraries.js:48:19:53:1 | functio ... OT OK\\n} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/other-fs-libraries.js:48:19:53:1 | functio ... OT OK\\n} | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/other-fs-libraries.js:48:19:53:1 | functio ... OT OK\\n} | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/other-fs-libraries.js:48:19:53:1 | functio ... OT OK\\n} | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/other-fs-libraries.js:48:19:53:1 | functio ... OT OK\\n} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/other-fs-libraries.js:48:19:53:1 | functio ... OT OK\\n} | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/other-fs-libraries.js:48:19:53:1 | functio ... OT OK\\n} | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/other-fs-libraries.js:48:19:53:1 | functio ... OT OK\\n} | Xss | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/other-fs-libraries.js:48:19:53:1 | functio ... OT OK\\n} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/other-fs-libraries.js:48:19:53:1 | functio ... OT OK\\n} | Xss | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/other-fs-libraries.js:51:19:51:22 | path | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/other-fs-libraries.js:51:19:51:22 | path | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/other-fs-libraries.js:51:19:51:22 | path | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/other-fs-libraries.js:51:19:51:22 | path | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/other-fs-libraries.js:52:24:52:27 | path | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/other-fs-libraries.js:52:24:52:27 | path | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/other-fs-libraries.js:52:24:52:27 | path | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/other-fs-libraries.js:52:24:52:27 | path | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/pupeteer.js:1:27:1:37 | 'puppeteer' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/pupeteer.js:1:27:1:37 | 'puppeteer' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/pupeteer.js:1:27:1:37 | 'puppeteer' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/pupeteer.js:1:27:1:37 | 'puppeteer' | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/pupeteer.js:2:30:2:44 | 'parse-torrent' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/pupeteer.js:2:30:2:44 | 'parse-torrent' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/pupeteer.js:2:30:2:44 | 'parse-torrent' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/pupeteer.js:2:30:2:44 | 'parse-torrent' | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/pupeteer.js:5:41:5:47 | torrent | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/pupeteer.js:5:41:5:47 | torrent | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/pupeteer.js:5:41:5:47 | torrent | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/pupeteer.js:5:41:5:47 | torrent | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/pupeteer.js:5:41:5:47 | torrent | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/pupeteer.js:5:41:5:47 | torrent | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/pupeteer.js:5:41:5:47 | torrent | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/pupeteer.js:5:41:5:47 | torrent | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/pupeteer.js:5:41:5:47 | torrent | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/pupeteer.js:5:41:5:47 | torrent | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/pupeteer.js:5:41:5:47 | torrent | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/pupeteer.js:5:41:5:47 | torrent | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/pupeteer.js:5:41:5:47 | torrent | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/pupeteer.js:5:41:5:47 | torrent | Xss | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/pupeteer.js:5:41:5:47 | torrent | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/pupeteer.js:5:41:5:47 | torrent | Xss | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/pupeteer.js:9:20:9:50 | { path: ...  'a4' } | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/pupeteer.js:9:20:9:50 | { path: ...  'a4' } | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/pupeteer.js:9:20:9:50 | { path: ...  'a4' } | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/pupeteer.js:9:20:9:50 | { path: ...  'a4' } | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/pupeteer.js:9:20:9:50 | { path: ...  'a4' } | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/pupeteer.js:9:20:9:50 | { path: ...  'a4' } | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/pupeteer.js:9:20:9:50 | { path: ...  'a4' } | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/pupeteer.js:9:20:9:50 | { path: ...  'a4' } | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/pupeteer.js:9:20:9:50 | { path: ...  'a4' } | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/pupeteer.js:9:20:9:50 | { path: ...  'a4' } | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/pupeteer.js:9:20:9:50 | { path: ...  'a4' } | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/pupeteer.js:9:20:9:50 | { path: ...  'a4' } | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/pupeteer.js:9:20:9:50 | { path: ...  'a4' } | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/pupeteer.js:9:20:9:50 | { path: ...  'a4' } | Xss | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/pupeteer.js:9:20:9:50 | { path: ...  'a4' } | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/pupeteer.js:9:20:9:50 | { path: ...  'a4' } | Xss | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/pupeteer.js:9:28:9:34 | tainted | SqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/pupeteer.js:9:28:9:34 | tainted | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/pupeteer.js:9:28:9:34 | tainted | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/pupeteer.js:9:28:9:34 | tainted | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/pupeteer.js:9:28:9:34 | tainted | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/pupeteer.js:9:28:9:34 | tainted | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/pupeteer.js:9:28:9:34 | tainted | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/pupeteer.js:9:28:9:34 | tainted | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/pupeteer.js:9:28:9:34 | tainted | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/pupeteer.js:9:28:9:34 | tainted | Xss | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/pupeteer.js:9:28:9:34 | tainted | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/pupeteer.js:9:28:9:34 | tainted | Xss | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/pupeteer.js:9:45:9:48 | 'a4' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/pupeteer.js:9:45:9:48 | 'a4' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/pupeteer.js:9:45:9:48 | 'a4' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/pupeteer.js:9:45:9:48 | 'a4' | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/pupeteer.js:9:45:9:48 | 'a4' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/pupeteer.js:9:45:9:48 | 'a4' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/pupeteer.js:9:45:9:48 | 'a4' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/pupeteer.js:9:45:9:48 | 'a4' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/pupeteer.js:9:45:9:48 | 'a4' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/pupeteer.js:9:45:9:48 | 'a4' | Xss | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/pupeteer.js:9:45:9:48 | 'a4' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/pupeteer.js:9:45:9:48 | 'a4' | Xss | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/pupeteer.js:13:29:13:45 | { path: tainted } | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/pupeteer.js:13:29:13:45 | { path: tainted } | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/pupeteer.js:13:29:13:45 | { path: tainted } | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/pupeteer.js:13:29:13:45 | { path: tainted } | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/pupeteer.js:13:29:13:45 | { path: tainted } | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/pupeteer.js:13:29:13:45 | { path: tainted } | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/pupeteer.js:13:29:13:45 | { path: tainted } | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/pupeteer.js:13:29:13:45 | { path: tainted } | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/pupeteer.js:13:29:13:45 | { path: tainted } | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/pupeteer.js:13:29:13:45 | { path: tainted } | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/pupeteer.js:13:29:13:45 | { path: tainted } | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/pupeteer.js:13:29:13:45 | { path: tainted } | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/pupeteer.js:13:29:13:45 | { path: tainted } | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/pupeteer.js:13:29:13:45 | { path: tainted } | Xss | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/pupeteer.js:13:29:13:45 | { path: tainted } | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/pupeteer.js:13:29:13:45 | { path: tainted } | Xss | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/pupeteer.js:13:37:13:43 | tainted | SqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/pupeteer.js:13:37:13:43 | tainted | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/pupeteer.js:13:37:13:43 | tainted | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/pupeteer.js:13:37:13:43 | tainted | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/pupeteer.js:13:37:13:43 | tainted | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/pupeteer.js:13:37:13:43 | tainted | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/pupeteer.js:13:37:13:43 | tainted | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/pupeteer.js:13:37:13:43 | tainted | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/pupeteer.js:13:37:13:43 | tainted | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/pupeteer.js:13:37:13:43 | tainted | Xss | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/pupeteer.js:13:37:13:43 | tainted | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/pupeteer.js:13:37:13:43 | tainted | Xss | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/tainted-access-paths.js:1:18:1:21 | 'fs' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/tainted-access-paths.js:1:18:1:21 | 'fs' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/tainted-access-paths.js:1:18:1:21 | 'fs' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-access-paths.js:1:18:1:21 | 'fs' | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/tainted-access-paths.js:2:20:2:25 | 'http' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/tainted-access-paths.js:2:20:2:25 | 'http' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/tainted-access-paths.js:2:20:2:25 | 'http' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-access-paths.js:2:20:2:25 | 'http' | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/tainted-access-paths.js:3:19:3:23 | 'url' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/tainted-access-paths.js:3:19:3:23 | 'url' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/tainted-access-paths.js:3:19:3:23 | 'url' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-access-paths.js:3:19:3:23 | 'url' | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/tainted-access-paths.js:5:32:32:1 | functio ... OT OK\\n} | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/tainted-access-paths.js:5:32:32:1 | functio ... OT OK\\n} | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/tainted-access-paths.js:5:32:32:1 | functio ... OT OK\\n} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-access-paths.js:5:32:32:1 | functio ... OT OK\\n} | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/tainted-access-paths.js:5:32:32:1 | functio ... OT OK\\n} | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/tainted-access-paths.js:5:32:32:1 | functio ... OT OK\\n} | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/tainted-access-paths.js:5:32:32:1 | functio ... OT OK\\n} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-access-paths.js:5:32:32:1 | functio ... OT OK\\n} | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/tainted-access-paths.js:5:32:32:1 | functio ... OT OK\\n} | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/tainted-access-paths.js:5:32:32:1 | functio ... OT OK\\n} | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/tainted-access-paths.js:5:32:32:1 | functio ... OT OK\\n} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-access-paths.js:5:32:32:1 | functio ... OT OK\\n} | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/tainted-access-paths.js:5:32:32:1 | functio ... OT OK\\n} | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/tainted-access-paths.js:5:32:32:1 | functio ... OT OK\\n} | Xss | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/tainted-access-paths.js:5:32:32:1 | functio ... OT OK\\n} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-access-paths.js:5:32:32:1 | functio ... OT OK\\n} | Xss | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/tainted-access-paths.js:8:19:8:22 | path | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/tainted-access-paths.js:8:19:8:22 | path | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/tainted-access-paths.js:8:19:8:22 | path | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-access-paths.js:8:19:8:22 | path | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/tainted-access-paths.js:12:19:12:25 | obj.sub | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/tainted-access-paths.js:12:19:12:25 | obj.sub | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/tainted-access-paths.js:12:19:12:25 | obj.sub | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-access-paths.js:12:19:12:25 | obj.sub | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/tainted-access-paths.js:16:19:16:25 | obj.sub | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/tainted-access-paths.js:16:19:16:25 | obj.sub | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/tainted-access-paths.js:16:19:16:25 | obj.sub | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-access-paths.js:16:19:16:25 | obj.sub | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/tainted-access-paths.js:20:21:20:28 | obj.sub2 | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/tainted-access-paths.js:20:21:20:28 | obj.sub2 | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/tainted-access-paths.js:20:21:20:28 | obj.sub2 | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-access-paths.js:20:21:20:28 | obj.sub2 | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/tainted-access-paths.js:26:19:26:26 | obj.sub3 | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/tainted-access-paths.js:26:19:26:26 | obj.sub3 | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/tainted-access-paths.js:26:19:26:26 | obj.sub3 | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-access-paths.js:26:19:26:26 | obj.sub3 | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/tainted-access-paths.js:29:21:29:28 | obj.sub4 | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/tainted-access-paths.js:29:21:29:28 | obj.sub4 | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/tainted-access-paths.js:29:21:29:28 | obj.sub4 | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-access-paths.js:29:21:29:28 | obj.sub4 | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/tainted-access-paths.js:30:23:30:30 | obj.sub4 | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/tainted-access-paths.js:30:23:30:30 | obj.sub4 | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/tainted-access-paths.js:30:23:30:30 | obj.sub4 | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-access-paths.js:30:23:30:30 | obj.sub4 | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/tainted-access-paths.js:31:23:31:30 | obj.sub4 | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/tainted-access-paths.js:31:23:31:30 | obj.sub4 | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/tainted-access-paths.js:31:23:31:30 | obj.sub4 | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-access-paths.js:31:23:31:30 | obj.sub4 | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/tainted-array-steps.js:1:18:1:21 | 'fs' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/tainted-array-steps.js:1:18:1:21 | 'fs' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/tainted-array-steps.js:1:18:1:21 | 'fs' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-array-steps.js:1:18:1:21 | 'fs' | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/tainted-array-steps.js:2:20:2:25 | 'http' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/tainted-array-steps.js:2:20:2:25 | 'http' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/tainted-array-steps.js:2:20:2:25 | 'http' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-array-steps.js:2:20:2:25 | 'http' | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/tainted-array-steps.js:3:19:3:23 | 'url' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/tainted-array-steps.js:3:19:3:23 | 'url' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/tainted-array-steps.js:3:19:3:23 | 'url' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-array-steps.js:3:19:3:23 | 'url' | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/tainted-array-steps.js:4:24:4:42 | 'sanitize-filename' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/tainted-array-steps.js:4:24:4:42 | 'sanitize-filename' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/tainted-array-steps.js:4:24:4:42 | 'sanitize-filename' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-array-steps.js:4:24:4:42 | 'sanitize-filename' | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/tainted-array-steps.js:5:26:5:31 | 'path' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/tainted-array-steps.js:5:26:5:31 | 'path' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/tainted-array-steps.js:5:26:5:31 | 'path' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-array-steps.js:5:26:5:31 | 'path' | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/tainted-array-steps.js:8:32:15:1 | functio ... ENCY]\\n} | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/tainted-array-steps.js:8:32:15:1 | functio ... ENCY]\\n} | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/tainted-array-steps.js:8:32:15:1 | functio ... ENCY]\\n} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-array-steps.js:8:32:15:1 | functio ... ENCY]\\n} | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/tainted-array-steps.js:8:32:15:1 | functio ... ENCY]\\n} | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/tainted-array-steps.js:8:32:15:1 | functio ... ENCY]\\n} | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/tainted-array-steps.js:8:32:15:1 | functio ... ENCY]\\n} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-array-steps.js:8:32:15:1 | functio ... ENCY]\\n} | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/tainted-array-steps.js:8:32:15:1 | functio ... ENCY]\\n} | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/tainted-array-steps.js:8:32:15:1 | functio ... ENCY]\\n} | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/tainted-array-steps.js:8:32:15:1 | functio ... ENCY]\\n} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-array-steps.js:8:32:15:1 | functio ... ENCY]\\n} | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/tainted-array-steps.js:8:32:15:1 | functio ... ENCY]\\n} | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/tainted-array-steps.js:8:32:15:1 | functio ... ENCY]\\n} | Xss | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/tainted-array-steps.js:8:32:15:1 | functio ... ENCY]\\n} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-array-steps.js:8:32:15:1 | functio ... ENCY]\\n} | Xss | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/tainted-array-steps.js:10:29:10:54 | ['publi ... in('/') | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/tainted-array-steps.js:10:29:10:54 | ['publi ... in('/') | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/tainted-array-steps.js:10:29:10:54 | ['publi ... in('/') | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-array-steps.js:10:29:10:54 | ['publi ... in('/') | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/tainted-array-steps.js:14:29:14:43 | parts.join('/') | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/tainted-array-steps.js:14:29:14:43 | parts.join('/') | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/tainted-array-steps.js:14:29:14:43 | parts.join('/') | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-array-steps.js:14:29:14:43 | parts.join('/') | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/tainted-array-steps.js:14:40:14:42 | '/' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/tainted-array-steps.js:14:40:14:42 | '/' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/tainted-array-steps.js:14:40:14:42 | '/' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-array-steps.js:14:40:14:42 | '/' | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/tainted-array-steps.js:14:40:14:42 | '/' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/tainted-array-steps.js:14:40:14:42 | '/' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/tainted-array-steps.js:14:40:14:42 | '/' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-array-steps.js:14:40:14:42 | '/' | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/tainted-array-steps.js:14:40:14:42 | '/' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/tainted-array-steps.js:14:40:14:42 | '/' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/tainted-array-steps.js:14:40:14:42 | '/' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-array-steps.js:14:40:14:42 | '/' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/tainted-array-steps.js:14:40:14:42 | '/' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/tainted-array-steps.js:14:40:14:42 | '/' | Xss | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/tainted-array-steps.js:14:40:14:42 | '/' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-array-steps.js:14:40:14:42 | '/' | Xss | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/tainted-require.js:1:23:1:31 | 'express' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/tainted-require.js:1:23:1:31 | 'express' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/tainted-require.js:1:23:1:31 | 'express' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-require.js:1:23:1:31 | 'express' | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/tainted-require.js:5:9:5:20 | '/some/path' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/tainted-require.js:5:9:5:20 | '/some/path' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/tainted-require.js:5:9:5:20 | '/some/path' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-require.js:5:9:5:20 | '/some/path' | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/tainted-require.js:5:9:5:20 | '/some/path' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/tainted-require.js:5:9:5:20 | '/some/path' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/tainted-require.js:5:9:5:20 | '/some/path' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-require.js:5:9:5:20 | '/some/path' | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/tainted-require.js:5:9:5:20 | '/some/path' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/tainted-require.js:5:9:5:20 | '/some/path' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/tainted-require.js:5:9:5:20 | '/some/path' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-require.js:5:9:5:20 | '/some/path' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/tainted-require.js:5:9:5:20 | '/some/path' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/tainted-require.js:5:9:5:20 | '/some/path' | Xss | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/tainted-require.js:5:9:5:20 | '/some/path' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-require.js:5:9:5:20 | '/some/path' | Xss | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/tainted-require.js:5:23:8:1 | functio ... e"));\\n} | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/tainted-require.js:5:23:8:1 | functio ... e"));\\n} | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/tainted-require.js:5:23:8:1 | functio ... e"));\\n} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-require.js:5:23:8:1 | functio ... e"));\\n} | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/tainted-require.js:5:23:8:1 | functio ... e"));\\n} | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/tainted-require.js:5:23:8:1 | functio ... e"));\\n} | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/tainted-require.js:5:23:8:1 | functio ... e"));\\n} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-require.js:5:23:8:1 | functio ... e"));\\n} | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/tainted-require.js:5:23:8:1 | functio ... e"));\\n} | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/tainted-require.js:5:23:8:1 | functio ... e"));\\n} | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/tainted-require.js:5:23:8:1 | functio ... e"));\\n} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-require.js:5:23:8:1 | functio ... e"));\\n} | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/tainted-require.js:5:23:8:1 | functio ... e"));\\n} | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/tainted-require.js:5:23:8:1 | functio ... e"));\\n} | Xss | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/tainted-require.js:5:23:8:1 | functio ... e"));\\n} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-require.js:5:23:8:1 | functio ... e"));\\n} | Xss | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/tainted-require.js:7:19:7:37 | req.param("module") | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/tainted-require.js:7:19:7:37 | req.param("module") | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/tainted-require.js:7:19:7:37 | req.param("module") | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-require.js:7:19:7:37 | req.param("module") | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/tainted-require.js:7:29:7:36 | "module" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/tainted-require.js:7:29:7:36 | "module" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/tainted-require.js:7:29:7:36 | "module" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-require.js:7:29:7:36 | "module" | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/tainted-require.js:7:29:7:36 | "module" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/tainted-require.js:7:29:7:36 | "module" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/tainted-require.js:7:29:7:36 | "module" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-require.js:7:29:7:36 | "module" | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/tainted-require.js:7:29:7:36 | "module" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/tainted-require.js:7:29:7:36 | "module" | Xss | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/tainted-require.js:7:29:7:36 | "module" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-require.js:7:29:7:36 | "module" | Xss | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/tainted-sendFile.js:1:23:1:31 | 'express' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:1:23:1:31 | 'express' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:1:23:1:31 | 'express' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:1:23:1:31 | 'express' | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/tainted-sendFile.js:2:12:2:26 | require('path') | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:2:12:2:26 | require('path') | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:2:12:2:26 | require('path') | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:2:12:2:26 | require('path') | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/tainted-sendFile.js:2:20:2:25 | 'path' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:2:20:2:25 | 'path' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:2:20:2:25 | 'path' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:2:20:2:25 | 'path' | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/tainted-sendFile.js:6:9:6:23 | '/some/path/:x' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:6:9:6:23 | '/some/path/:x' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:6:9:6:23 | '/some/path/:x' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:6:9:6:23 | '/some/path/:x' | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/tainted-sendFile.js:6:9:6:23 | '/some/path/:x' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:6:9:6:23 | '/some/path/:x' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:6:9:6:23 | '/some/path/:x' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:6:9:6:23 | '/some/path/:x' | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/tainted-sendFile.js:6:9:6:23 | '/some/path/:x' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:6:9:6:23 | '/some/path/:x' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:6:9:6:23 | '/some/path/:x' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:6:9:6:23 | '/some/path/:x' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/tainted-sendFile.js:6:9:6:23 | '/some/path/:x' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:6:9:6:23 | '/some/path/:x' | Xss | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:6:9:6:23 | '/some/path/:x' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:6:9:6:23 | '/some/path/:x' | Xss | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/tainted-sendFile.js:6:26:28:1 | functio ... ata/'\\n} | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:6:26:28:1 | functio ... ata/'\\n} | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:6:26:28:1 | functio ... ata/'\\n} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:6:26:28:1 | functio ... ata/'\\n} | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/tainted-sendFile.js:6:26:28:1 | functio ... ata/'\\n} | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:6:26:28:1 | functio ... ata/'\\n} | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:6:26:28:1 | functio ... ata/'\\n} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:6:26:28:1 | functio ... ata/'\\n} | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/tainted-sendFile.js:6:26:28:1 | functio ... ata/'\\n} | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:6:26:28:1 | functio ... ata/'\\n} | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:6:26:28:1 | functio ... ata/'\\n} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:6:26:28:1 | functio ... ata/'\\n} | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/tainted-sendFile.js:6:26:28:1 | functio ... ata/'\\n} | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:6:26:28:1 | functio ... ata/'\\n} | Xss | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:6:26:28:1 | functio ... ata/'\\n} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:6:26:28:1 | functio ... ata/'\\n} | Xss | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/tainted-sendFile.js:8:16:8:33 | req.param("gimme") | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:8:16:8:33 | req.param("gimme") | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:8:16:8:33 | req.param("gimme") | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:8:16:8:33 | req.param("gimme") | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/tainted-sendFile.js:8:26:8:32 | "gimme" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:8:26:8:32 | "gimme" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:8:26:8:32 | "gimme" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:8:26:8:32 | "gimme" | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/tainted-sendFile.js:8:26:8:32 | "gimme" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:8:26:8:32 | "gimme" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:8:26:8:32 | "gimme" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:8:26:8:32 | "gimme" | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/tainted-sendFile.js:8:26:8:32 | "gimme" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:8:26:8:32 | "gimme" | Xss | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:8:26:8:32 | "gimme" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:8:26:8:32 | "gimme" | Xss | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/tainted-sendFile.js:10:16:10:33 | req.param("gimme") | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:10:16:10:33 | req.param("gimme") | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:10:16:10:33 | req.param("gimme") | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:10:16:10:33 | req.param("gimme") | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/tainted-sendFile.js:10:26:10:32 | "gimme" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:10:26:10:32 | "gimme" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:10:26:10:32 | "gimme" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:10:26:10:32 | "gimme" | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/tainted-sendFile.js:10:26:10:32 | "gimme" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:10:26:10:32 | "gimme" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:10:26:10:32 | "gimme" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:10:26:10:32 | "gimme" | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/tainted-sendFile.js:10:26:10:32 | "gimme" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:10:26:10:32 | "gimme" | Xss | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:10:26:10:32 | "gimme" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:10:26:10:32 | "gimme" | Xss | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/tainted-sendFile.js:13:16:13:33 | req.param("gimme") | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:13:16:13:33 | req.param("gimme") | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:13:16:13:33 | req.param("gimme") | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:13:16:13:33 | req.param("gimme") | NosqlInjection | notASinkReason | FileSystemAccess | string |
-| autogenerated/TaintedPath/tainted-sendFile.js:13:16:13:33 | req.param("gimme") | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/tainted-sendFile.js:13:16:13:33 | req.param("gimme") | SqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:13:16:13:33 | req.param("gimme") | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:13:16:13:33 | req.param("gimme") | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:13:16:13:33 | req.param("gimme") | SqlInjection | notASinkReason | FileSystemAccess | string |
-| autogenerated/TaintedPath/tainted-sendFile.js:13:16:13:33 | req.param("gimme") | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/tainted-sendFile.js:13:16:13:33 | req.param("gimme") | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:13:16:13:33 | req.param("gimme") | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:13:16:13:33 | req.param("gimme") | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:13:16:13:33 | req.param("gimme") | TaintedPath | notASinkReason | FileSystemAccess | string |
-| autogenerated/TaintedPath/tainted-sendFile.js:13:16:13:33 | req.param("gimme") | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/tainted-sendFile.js:13:16:13:33 | req.param("gimme") | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:13:16:13:33 | req.param("gimme") | Xss | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:13:16:13:33 | req.param("gimme") | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:13:16:13:33 | req.param("gimme") | Xss | notASinkReason | FileSystemAccess | string |
-| autogenerated/TaintedPath/tainted-sendFile.js:13:16:13:33 | req.param("gimme") | Xss | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/tainted-sendFile.js:13:26:13:32 | "gimme" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:13:26:13:32 | "gimme" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:13:26:13:32 | "gimme" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:13:26:13:32 | "gimme" | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/tainted-sendFile.js:13:26:13:32 | "gimme" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:13:26:13:32 | "gimme" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:13:26:13:32 | "gimme" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:13:26:13:32 | "gimme" | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/tainted-sendFile.js:13:26:13:32 | "gimme" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:13:26:13:32 | "gimme" | Xss | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:13:26:13:32 | "gimme" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:13:26:13:32 | "gimme" | Xss | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/tainted-sendFile.js:13:36:13:58 | { root: ... cwd() } | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:13:36:13:58 | { root: ... cwd() } | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:13:36:13:58 | { root: ... cwd() } | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:13:36:13:58 | { root: ... cwd() } | NosqlInjection | notASinkReason | FileSystemAccess | string |
-| autogenerated/TaintedPath/tainted-sendFile.js:13:36:13:58 | { root: ... cwd() } | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/tainted-sendFile.js:13:36:13:58 | { root: ... cwd() } | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:13:36:13:58 | { root: ... cwd() } | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:13:36:13:58 | { root: ... cwd() } | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:13:36:13:58 | { root: ... cwd() } | SqlInjection | notASinkReason | FileSystemAccess | string |
-| autogenerated/TaintedPath/tainted-sendFile.js:13:36:13:58 | { root: ... cwd() } | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/tainted-sendFile.js:13:36:13:58 | { root: ... cwd() } | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:13:36:13:58 | { root: ... cwd() } | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:13:36:13:58 | { root: ... cwd() } | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:13:36:13:58 | { root: ... cwd() } | TaintedPath | notASinkReason | FileSystemAccess | string |
-| autogenerated/TaintedPath/tainted-sendFile.js:13:36:13:58 | { root: ... cwd() } | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/tainted-sendFile.js:13:36:13:58 | { root: ... cwd() } | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:13:36:13:58 | { root: ... cwd() } | Xss | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:13:36:13:58 | { root: ... cwd() } | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:13:36:13:58 | { root: ... cwd() } | Xss | notASinkReason | FileSystemAccess | string |
-| autogenerated/TaintedPath/tainted-sendFile.js:13:36:13:58 | { root: ... cwd() } | Xss | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/tainted-sendFile.js:13:44:13:56 | process.cwd() | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:13:44:13:56 | process.cwd() | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:13:44:13:56 | process.cwd() | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:13:44:13:56 | process.cwd() | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/tainted-sendFile.js:13:44:13:56 | process.cwd() | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:13:44:13:56 | process.cwd() | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:13:44:13:56 | process.cwd() | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:13:44:13:56 | process.cwd() | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/tainted-sendFile.js:13:44:13:56 | process.cwd() | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:13:44:13:56 | process.cwd() | Xss | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:13:44:13:56 | process.cwd() | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:13:44:13:56 | process.cwd() | Xss | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/tainted-sendFile.js:15:16:15:33 | req.param("gimme") | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:15:16:15:33 | req.param("gimme") | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:15:16:15:33 | req.param("gimme") | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:15:16:15:33 | req.param("gimme") | NosqlInjection | notASinkReason | FileSystemAccess | string |
-| autogenerated/TaintedPath/tainted-sendFile.js:15:16:15:33 | req.param("gimme") | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/tainted-sendFile.js:15:16:15:33 | req.param("gimme") | SqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:15:16:15:33 | req.param("gimme") | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:15:16:15:33 | req.param("gimme") | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:15:16:15:33 | req.param("gimme") | SqlInjection | notASinkReason | FileSystemAccess | string |
-| autogenerated/TaintedPath/tainted-sendFile.js:15:16:15:33 | req.param("gimme") | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/tainted-sendFile.js:15:16:15:33 | req.param("gimme") | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:15:16:15:33 | req.param("gimme") | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:15:16:15:33 | req.param("gimme") | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:15:16:15:33 | req.param("gimme") | TaintedPath | notASinkReason | FileSystemAccess | string |
-| autogenerated/TaintedPath/tainted-sendFile.js:15:16:15:33 | req.param("gimme") | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/tainted-sendFile.js:15:16:15:33 | req.param("gimme") | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:15:16:15:33 | req.param("gimme") | Xss | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:15:16:15:33 | req.param("gimme") | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:15:16:15:33 | req.param("gimme") | Xss | notASinkReason | FileSystemAccess | string |
-| autogenerated/TaintedPath/tainted-sendFile.js:15:16:15:33 | req.param("gimme") | Xss | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/tainted-sendFile.js:15:26:15:32 | "gimme" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:15:26:15:32 | "gimme" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:15:26:15:32 | "gimme" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:15:26:15:32 | "gimme" | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/tainted-sendFile.js:15:26:15:32 | "gimme" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:15:26:15:32 | "gimme" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:15:26:15:32 | "gimme" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:15:26:15:32 | "gimme" | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/tainted-sendFile.js:15:26:15:32 | "gimme" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:15:26:15:32 | "gimme" | Xss | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:15:26:15:32 | "gimme" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:15:26:15:32 | "gimme" | Xss | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/tainted-sendFile.js:15:36:15:58 | { root: ... cwd() } | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:15:36:15:58 | { root: ... cwd() } | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:15:36:15:58 | { root: ... cwd() } | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:15:36:15:58 | { root: ... cwd() } | NosqlInjection | notASinkReason | FileSystemAccess | string |
-| autogenerated/TaintedPath/tainted-sendFile.js:15:36:15:58 | { root: ... cwd() } | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/tainted-sendFile.js:15:36:15:58 | { root: ... cwd() } | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:15:36:15:58 | { root: ... cwd() } | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:15:36:15:58 | { root: ... cwd() } | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:15:36:15:58 | { root: ... cwd() } | SqlInjection | notASinkReason | FileSystemAccess | string |
-| autogenerated/TaintedPath/tainted-sendFile.js:15:36:15:58 | { root: ... cwd() } | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/tainted-sendFile.js:15:36:15:58 | { root: ... cwd() } | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:15:36:15:58 | { root: ... cwd() } | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:15:36:15:58 | { root: ... cwd() } | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:15:36:15:58 | { root: ... cwd() } | TaintedPath | notASinkReason | FileSystemAccess | string |
-| autogenerated/TaintedPath/tainted-sendFile.js:15:36:15:58 | { root: ... cwd() } | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/tainted-sendFile.js:15:36:15:58 | { root: ... cwd() } | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:15:36:15:58 | { root: ... cwd() } | Xss | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:15:36:15:58 | { root: ... cwd() } | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:15:36:15:58 | { root: ... cwd() } | Xss | notASinkReason | FileSystemAccess | string |
-| autogenerated/TaintedPath/tainted-sendFile.js:15:36:15:58 | { root: ... cwd() } | Xss | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/tainted-sendFile.js:15:44:15:56 | process.cwd() | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:15:44:15:56 | process.cwd() | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:15:44:15:56 | process.cwd() | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:15:44:15:56 | process.cwd() | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/tainted-sendFile.js:15:44:15:56 | process.cwd() | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:15:44:15:56 | process.cwd() | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:15:44:15:56 | process.cwd() | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:15:44:15:56 | process.cwd() | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/tainted-sendFile.js:15:44:15:56 | process.cwd() | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:15:44:15:56 | process.cwd() | Xss | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:15:44:15:56 | process.cwd() | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:15:44:15:56 | process.cwd() | Xss | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/tainted-sendFile.js:18:16:18:32 | req.param("file") | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:18:16:18:32 | req.param("file") | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:18:16:18:32 | req.param("file") | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:18:16:18:32 | req.param("file") | NosqlInjection | notASinkReason | FileSystemAccess | string |
-| autogenerated/TaintedPath/tainted-sendFile.js:18:16:18:32 | req.param("file") | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/tainted-sendFile.js:18:16:18:32 | req.param("file") | SqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:18:16:18:32 | req.param("file") | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:18:16:18:32 | req.param("file") | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:18:16:18:32 | req.param("file") | SqlInjection | notASinkReason | FileSystemAccess | string |
-| autogenerated/TaintedPath/tainted-sendFile.js:18:16:18:32 | req.param("file") | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/tainted-sendFile.js:18:16:18:32 | req.param("file") | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:18:16:18:32 | req.param("file") | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:18:16:18:32 | req.param("file") | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:18:16:18:32 | req.param("file") | TaintedPath | notASinkReason | FileSystemAccess | string |
-| autogenerated/TaintedPath/tainted-sendFile.js:18:16:18:32 | req.param("file") | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/tainted-sendFile.js:18:16:18:32 | req.param("file") | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:18:16:18:32 | req.param("file") | Xss | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:18:16:18:32 | req.param("file") | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:18:16:18:32 | req.param("file") | Xss | notASinkReason | FileSystemAccess | string |
-| autogenerated/TaintedPath/tainted-sendFile.js:18:16:18:32 | req.param("file") | Xss | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/tainted-sendFile.js:18:26:18:31 | "file" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:18:26:18:31 | "file" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:18:26:18:31 | "file" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:18:26:18:31 | "file" | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/tainted-sendFile.js:18:26:18:31 | "file" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:18:26:18:31 | "file" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:18:26:18:31 | "file" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:18:26:18:31 | "file" | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/tainted-sendFile.js:18:26:18:31 | "file" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:18:26:18:31 | "file" | Xss | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:18:26:18:31 | "file" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:18:26:18:31 | "file" | Xss | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/tainted-sendFile.js:18:35:18:60 | { root: ... dir") } | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:18:35:18:60 | { root: ... dir") } | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:18:35:18:60 | { root: ... dir") } | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:18:35:18:60 | { root: ... dir") } | NosqlInjection | notASinkReason | FileSystemAccess | string |
-| autogenerated/TaintedPath/tainted-sendFile.js:18:35:18:60 | { root: ... dir") } | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/tainted-sendFile.js:18:35:18:60 | { root: ... dir") } | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:18:35:18:60 | { root: ... dir") } | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:18:35:18:60 | { root: ... dir") } | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:18:35:18:60 | { root: ... dir") } | SqlInjection | notASinkReason | FileSystemAccess | string |
-| autogenerated/TaintedPath/tainted-sendFile.js:18:35:18:60 | { root: ... dir") } | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/tainted-sendFile.js:18:35:18:60 | { root: ... dir") } | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:18:35:18:60 | { root: ... dir") } | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:18:35:18:60 | { root: ... dir") } | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:18:35:18:60 | { root: ... dir") } | TaintedPath | notASinkReason | FileSystemAccess | string |
-| autogenerated/TaintedPath/tainted-sendFile.js:18:35:18:60 | { root: ... dir") } | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/tainted-sendFile.js:18:35:18:60 | { root: ... dir") } | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:18:35:18:60 | { root: ... dir") } | Xss | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:18:35:18:60 | { root: ... dir") } | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:18:35:18:60 | { root: ... dir") } | Xss | notASinkReason | FileSystemAccess | string |
-| autogenerated/TaintedPath/tainted-sendFile.js:18:35:18:60 | { root: ... dir") } | Xss | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/tainted-sendFile.js:18:43:18:58 | req.param("dir") | SqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:18:43:18:58 | req.param("dir") | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:18:43:18:58 | req.param("dir") | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:18:43:18:58 | req.param("dir") | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/tainted-sendFile.js:18:43:18:58 | req.param("dir") | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:18:43:18:58 | req.param("dir") | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:18:43:18:58 | req.param("dir") | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:18:43:18:58 | req.param("dir") | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/tainted-sendFile.js:18:43:18:58 | req.param("dir") | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:18:43:18:58 | req.param("dir") | Xss | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:18:43:18:58 | req.param("dir") | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:18:43:18:58 | req.param("dir") | Xss | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/tainted-sendFile.js:18:53:18:57 | "dir" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:18:53:18:57 | "dir" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:18:53:18:57 | "dir" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:18:53:18:57 | "dir" | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/tainted-sendFile.js:18:53:18:57 | "dir" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:18:53:18:57 | "dir" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:18:53:18:57 | "dir" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:18:53:18:57 | "dir" | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/tainted-sendFile.js:18:53:18:57 | "dir" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:18:53:18:57 | "dir" | Xss | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:18:53:18:57 | "dir" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:18:53:18:57 | "dir" | Xss | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/tainted-sendFile.js:21:16:21:48 | homeDir ... arams.x | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:21:16:21:48 | homeDir ... arams.x | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:21:16:21:48 | homeDir ... arams.x | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:21:16:21:48 | homeDir ... arams.x | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/tainted-sendFile.js:22:16:22:37 | 'data/' ... arams.x | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:22:16:22:37 | 'data/' ... arams.x | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:22:16:22:37 | 'data/' ... arams.x | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:22:16:22:37 | 'data/' ... arams.x | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/tainted-sendFile.js:24:16:24:49 | path.re ... rams.x) | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:24:16:24:49 | path.re ... rams.x) | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:24:16:24:49 | path.re ... rams.x) | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:24:16:24:49 | path.re ... rams.x) | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/tainted-sendFile.js:25:16:25:46 | path.jo ... rams.x) | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:25:16:25:46 | path.jo ... rams.x) | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:25:16:25:46 | path.jo ... rams.x) | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:25:16:25:46 | path.jo ... rams.x) | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/tainted-sendFile.js:27:16:27:56 | homeDir ... rams.x) | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:27:16:27:56 | homeDir ... rams.x) | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:27:16:27:56 | homeDir ... rams.x) | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-sendFile.js:27:16:27:56 | homeDir ... rams.x) | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/tainted-string-steps.js:1:18:1:21 | 'fs' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:1:18:1:21 | 'fs' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:1:18:1:21 | 'fs' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:1:18:1:21 | 'fs' | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/tainted-string-steps.js:2:20:2:25 | 'http' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:2:20:2:25 | 'http' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:2:20:2:25 | 'http' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:2:20:2:25 | 'http' | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/tainted-string-steps.js:3:19:3:23 | 'url' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:3:19:3:23 | 'url' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:3:19:3:23 | 'url' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:3:19:3:23 | 'url' | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/tainted-string-steps.js:5:32:29:1 | functio ... ENCY]\\n} | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:5:32:29:1 | functio ... ENCY]\\n} | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:5:32:29:1 | functio ... ENCY]\\n} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:5:32:29:1 | functio ... ENCY]\\n} | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/tainted-string-steps.js:5:32:29:1 | functio ... ENCY]\\n} | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:5:32:29:1 | functio ... ENCY]\\n} | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:5:32:29:1 | functio ... ENCY]\\n} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:5:32:29:1 | functio ... ENCY]\\n} | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/tainted-string-steps.js:5:32:29:1 | functio ... ENCY]\\n} | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:5:32:29:1 | functio ... ENCY]\\n} | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:5:32:29:1 | functio ... ENCY]\\n} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:5:32:29:1 | functio ... ENCY]\\n} | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/tainted-string-steps.js:5:32:29:1 | functio ... ENCY]\\n} | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:5:32:29:1 | functio ... ENCY]\\n} | Xss | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:5:32:29:1 | functio ... ENCY]\\n} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:5:32:29:1 | functio ... ENCY]\\n} | Xss | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/tainted-string-steps.js:7:18:7:37 | path.substring(i, j) | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:7:18:7:37 | path.substring(i, j) | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:7:18:7:37 | path.substring(i, j) | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:7:18:7:37 | path.substring(i, j) | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/tainted-string-steps.js:7:33:7:33 | i | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:7:33:7:33 | i | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:7:33:7:33 | i | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:7:33:7:33 | i | NosqlInjection | notASinkReason | BuiltinCallName | string |
-| autogenerated/TaintedPath/tainted-string-steps.js:7:33:7:33 | i | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/tainted-string-steps.js:7:33:7:33 | i | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:7:33:7:33 | i | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:7:33:7:33 | i | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:7:33:7:33 | i | SqlInjection | notASinkReason | BuiltinCallName | string |
-| autogenerated/TaintedPath/tainted-string-steps.js:7:33:7:33 | i | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/tainted-string-steps.js:7:33:7:33 | i | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:7:33:7:33 | i | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:7:33:7:33 | i | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:7:33:7:33 | i | TaintedPath | notASinkReason | BuiltinCallName | string |
-| autogenerated/TaintedPath/tainted-string-steps.js:7:33:7:33 | i | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/tainted-string-steps.js:7:33:7:33 | i | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:7:33:7:33 | i | Xss | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:7:33:7:33 | i | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:7:33:7:33 | i | Xss | notASinkReason | BuiltinCallName | string |
-| autogenerated/TaintedPath/tainted-string-steps.js:7:33:7:33 | i | Xss | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/tainted-string-steps.js:7:36:7:36 | j | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:7:36:7:36 | j | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:7:36:7:36 | j | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:7:36:7:36 | j | NosqlInjection | notASinkReason | BuiltinCallName | string |
-| autogenerated/TaintedPath/tainted-string-steps.js:7:36:7:36 | j | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/tainted-string-steps.js:7:36:7:36 | j | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:7:36:7:36 | j | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:7:36:7:36 | j | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:7:36:7:36 | j | SqlInjection | notASinkReason | BuiltinCallName | string |
-| autogenerated/TaintedPath/tainted-string-steps.js:7:36:7:36 | j | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/tainted-string-steps.js:7:36:7:36 | j | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:7:36:7:36 | j | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:7:36:7:36 | j | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:7:36:7:36 | j | TaintedPath | notASinkReason | BuiltinCallName | string |
-| autogenerated/TaintedPath/tainted-string-steps.js:7:36:7:36 | j | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/tainted-string-steps.js:7:36:7:36 | j | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:7:36:7:36 | j | Xss | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:7:36:7:36 | j | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:7:36:7:36 | j | Xss | notASinkReason | BuiltinCallName | string |
-| autogenerated/TaintedPath/tainted-string-steps.js:7:36:7:36 | j | Xss | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/tainted-string-steps.js:8:18:8:34 | path.substring(4) | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:8:18:8:34 | path.substring(4) | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:8:18:8:34 | path.substring(4) | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:8:18:8:34 | path.substring(4) | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/tainted-string-steps.js:8:33:8:33 | 4 | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:8:33:8:33 | 4 | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:8:33:8:33 | 4 | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:8:33:8:33 | 4 | NosqlInjection | notASinkReason | BuiltinCallName | string |
-| autogenerated/TaintedPath/tainted-string-steps.js:8:33:8:33 | 4 | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/tainted-string-steps.js:8:33:8:33 | 4 | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:8:33:8:33 | 4 | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:8:33:8:33 | 4 | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:8:33:8:33 | 4 | SqlInjection | notASinkReason | BuiltinCallName | string |
-| autogenerated/TaintedPath/tainted-string-steps.js:8:33:8:33 | 4 | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/tainted-string-steps.js:8:33:8:33 | 4 | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:8:33:8:33 | 4 | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:8:33:8:33 | 4 | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:8:33:8:33 | 4 | TaintedPath | notASinkReason | BuiltinCallName | string |
-| autogenerated/TaintedPath/tainted-string-steps.js:8:33:8:33 | 4 | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/tainted-string-steps.js:8:33:8:33 | 4 | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:8:33:8:33 | 4 | Xss | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:8:33:8:33 | 4 | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:8:33:8:33 | 4 | Xss | notASinkReason | BuiltinCallName | string |
-| autogenerated/TaintedPath/tainted-string-steps.js:8:33:8:33 | 4 | Xss | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/tainted-string-steps.js:9:18:9:37 | path.substring(0, i) | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:9:18:9:37 | path.substring(0, i) | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:9:18:9:37 | path.substring(0, i) | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:9:18:9:37 | path.substring(0, i) | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/tainted-string-steps.js:9:33:9:33 | 0 | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:9:33:9:33 | 0 | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:9:33:9:33 | 0 | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:9:33:9:33 | 0 | NosqlInjection | notASinkReason | BuiltinCallName | string |
-| autogenerated/TaintedPath/tainted-string-steps.js:9:33:9:33 | 0 | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/tainted-string-steps.js:9:33:9:33 | 0 | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:9:33:9:33 | 0 | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:9:33:9:33 | 0 | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:9:33:9:33 | 0 | SqlInjection | notASinkReason | BuiltinCallName | string |
-| autogenerated/TaintedPath/tainted-string-steps.js:9:33:9:33 | 0 | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/tainted-string-steps.js:9:33:9:33 | 0 | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:9:33:9:33 | 0 | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:9:33:9:33 | 0 | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:9:33:9:33 | 0 | TaintedPath | notASinkReason | BuiltinCallName | string |
-| autogenerated/TaintedPath/tainted-string-steps.js:9:33:9:33 | 0 | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/tainted-string-steps.js:9:33:9:33 | 0 | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:9:33:9:33 | 0 | Xss | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:9:33:9:33 | 0 | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:9:33:9:33 | 0 | Xss | notASinkReason | BuiltinCallName | string |
-| autogenerated/TaintedPath/tainted-string-steps.js:9:33:9:33 | 0 | Xss | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/tainted-string-steps.js:9:36:9:36 | i | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:9:36:9:36 | i | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:9:36:9:36 | i | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:9:36:9:36 | i | NosqlInjection | notASinkReason | BuiltinCallName | string |
-| autogenerated/TaintedPath/tainted-string-steps.js:9:36:9:36 | i | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/tainted-string-steps.js:9:36:9:36 | i | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:9:36:9:36 | i | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:9:36:9:36 | i | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:9:36:9:36 | i | SqlInjection | notASinkReason | BuiltinCallName | string |
-| autogenerated/TaintedPath/tainted-string-steps.js:9:36:9:36 | i | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/tainted-string-steps.js:9:36:9:36 | i | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:9:36:9:36 | i | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:9:36:9:36 | i | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:9:36:9:36 | i | TaintedPath | notASinkReason | BuiltinCallName | string |
-| autogenerated/TaintedPath/tainted-string-steps.js:9:36:9:36 | i | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/tainted-string-steps.js:9:36:9:36 | i | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:9:36:9:36 | i | Xss | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:9:36:9:36 | i | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:9:36:9:36 | i | Xss | notASinkReason | BuiltinCallName | string |
-| autogenerated/TaintedPath/tainted-string-steps.js:9:36:9:36 | i | Xss | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/tainted-string-steps.js:10:18:10:31 | path.substr(4) | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:10:18:10:31 | path.substr(4) | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:10:18:10:31 | path.substr(4) | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:10:18:10:31 | path.substr(4) | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/tainted-string-steps.js:10:30:10:30 | 4 | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:10:30:10:30 | 4 | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:10:30:10:30 | 4 | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:10:30:10:30 | 4 | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/tainted-string-steps.js:10:30:10:30 | 4 | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:10:30:10:30 | 4 | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:10:30:10:30 | 4 | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:10:30:10:30 | 4 | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/tainted-string-steps.js:10:30:10:30 | 4 | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:10:30:10:30 | 4 | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:10:30:10:30 | 4 | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:10:30:10:30 | 4 | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/tainted-string-steps.js:10:30:10:30 | 4 | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:10:30:10:30 | 4 | Xss | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:10:30:10:30 | 4 | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:10:30:10:30 | 4 | Xss | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/tainted-string-steps.js:11:18:11:30 | path.slice(4) | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:11:18:11:30 | path.slice(4) | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:11:18:11:30 | path.slice(4) | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:11:18:11:30 | path.slice(4) | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/tainted-string-steps.js:11:29:11:29 | 4 | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:11:29:11:29 | 4 | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:11:29:11:29 | 4 | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:11:29:11:29 | 4 | NosqlInjection | notASinkReason | BuiltinCallName | string |
-| autogenerated/TaintedPath/tainted-string-steps.js:11:29:11:29 | 4 | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/tainted-string-steps.js:11:29:11:29 | 4 | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:11:29:11:29 | 4 | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:11:29:11:29 | 4 | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:11:29:11:29 | 4 | SqlInjection | notASinkReason | BuiltinCallName | string |
-| autogenerated/TaintedPath/tainted-string-steps.js:11:29:11:29 | 4 | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/tainted-string-steps.js:11:29:11:29 | 4 | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:11:29:11:29 | 4 | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:11:29:11:29 | 4 | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:11:29:11:29 | 4 | TaintedPath | notASinkReason | BuiltinCallName | string |
-| autogenerated/TaintedPath/tainted-string-steps.js:11:29:11:29 | 4 | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/tainted-string-steps.js:11:29:11:29 | 4 | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:11:29:11:29 | 4 | Xss | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:11:29:11:29 | 4 | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:11:29:11:29 | 4 | Xss | notASinkReason | BuiltinCallName | string |
-| autogenerated/TaintedPath/tainted-string-steps.js:11:29:11:29 | 4 | Xss | sinkLabel | NotASink | string |
-| autogenerated/TaintedPath/tainted-string-steps.js:13:18:13:37 | path.concat(unknown) | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:13:18:13:37 | path.concat(unknown) | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:13:18:13:37 | path.concat(unknown) | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:13:18:13:37 | path.concat(unknown) | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/tainted-string-steps.js:14:18:14:37 | unknown.concat(path) | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:14:18:14:37 | unknown.concat(path) | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:14:18:14:37 | unknown.concat(path) | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:14:18:14:37 | unknown.concat(path) | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/tainted-string-steps.js:15:18:15:46 | unknown ... , path) | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:15:18:15:46 | unknown ... , path) | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:15:18:15:46 | unknown ... , path) | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:15:18:15:46 | unknown ... , path) | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/tainted-string-steps.js:17:18:17:28 | path.trim() | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:17:18:17:28 | path.trim() | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:17:18:17:28 | path.trim() | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:17:18:17:28 | path.trim() | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/tainted-string-steps.js:18:18:18:35 | path.toLowerCase() | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:18:18:18:35 | path.toLowerCase() | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:18:18:18:35 | path.toLowerCase() | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:18:18:18:35 | path.toLowerCase() | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/tainted-string-steps.js:20:18:20:32 | path.split('/') | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:20:18:20:32 | path.split('/') | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:20:18:20:32 | path.split('/') | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:20:18:20:32 | path.split('/') | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/tainted-string-steps.js:20:29:20:31 | '/' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:20:29:20:31 | '/' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:20:29:20:31 | '/' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:20:29:20:31 | '/' | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/tainted-string-steps.js:20:29:20:31 | '/' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:20:29:20:31 | '/' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:20:29:20:31 | '/' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:20:29:20:31 | '/' | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/tainted-string-steps.js:20:29:20:31 | '/' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:20:29:20:31 | '/' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:20:29:20:31 | '/' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:20:29:20:31 | '/' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/tainted-string-steps.js:20:29:20:31 | '/' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:20:29:20:31 | '/' | Xss | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:20:29:20:31 | '/' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:20:29:20:31 | '/' | Xss | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/tainted-string-steps.js:21:18:21:35 | path.split('/')[0] | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:21:18:21:35 | path.split('/')[0] | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:21:18:21:35 | path.split('/')[0] | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:21:18:21:35 | path.split('/')[0] | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/tainted-string-steps.js:21:29:21:31 | '/' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:21:29:21:31 | '/' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:21:29:21:31 | '/' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:21:29:21:31 | '/' | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/tainted-string-steps.js:21:29:21:31 | '/' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:21:29:21:31 | '/' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:21:29:21:31 | '/' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:21:29:21:31 | '/' | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/tainted-string-steps.js:21:29:21:31 | '/' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:21:29:21:31 | '/' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:21:29:21:31 | '/' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:21:29:21:31 | '/' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/tainted-string-steps.js:21:29:21:31 | '/' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:21:29:21:31 | '/' | Xss | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:21:29:21:31 | '/' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:21:29:21:31 | '/' | Xss | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/tainted-string-steps.js:22:18:22:35 | path.split('/')[i] | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:22:18:22:35 | path.split('/')[i] | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:22:18:22:35 | path.split('/')[i] | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:22:18:22:35 | path.split('/')[i] | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/tainted-string-steps.js:22:29:22:31 | '/' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:22:29:22:31 | '/' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:22:29:22:31 | '/' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:22:29:22:31 | '/' | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/tainted-string-steps.js:22:29:22:31 | '/' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:22:29:22:31 | '/' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:22:29:22:31 | '/' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:22:29:22:31 | '/' | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/tainted-string-steps.js:22:29:22:31 | '/' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:22:29:22:31 | '/' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:22:29:22:31 | '/' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:22:29:22:31 | '/' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/tainted-string-steps.js:22:29:22:31 | '/' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:22:29:22:31 | '/' | Xss | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:22:29:22:31 | '/' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:22:29:22:31 | '/' | Xss | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/tainted-string-steps.js:23:18:23:36 | path.split(/\\//)[i] | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:23:18:23:36 | path.split(/\\//)[i] | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:23:18:23:36 | path.split(/\\//)[i] | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:23:18:23:36 | path.split(/\\//)[i] | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/tainted-string-steps.js:23:29:23:32 | /\\// | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:23:29:23:32 | /\\// | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:23:29:23:32 | /\\// | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:23:29:23:32 | /\\// | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/tainted-string-steps.js:23:29:23:32 | /\\// | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:23:29:23:32 | /\\// | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:23:29:23:32 | /\\// | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:23:29:23:32 | /\\// | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/tainted-string-steps.js:23:29:23:32 | /\\// | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:23:29:23:32 | /\\// | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:23:29:23:32 | /\\// | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:23:29:23:32 | /\\// | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/tainted-string-steps.js:23:29:23:32 | /\\// | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:23:29:23:32 | /\\// | Xss | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:23:29:23:32 | /\\// | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:23:29:23:32 | /\\// | Xss | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/tainted-string-steps.js:24:18:24:35 | path.split("?")[0] | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:24:18:24:35 | path.split("?")[0] | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:24:18:24:35 | path.split("?")[0] | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:24:18:24:35 | path.split("?")[0] | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/tainted-string-steps.js:24:29:24:31 | "?" | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:24:29:24:31 | "?" | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:24:29:24:31 | "?" | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:24:29:24:31 | "?" | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/tainted-string-steps.js:24:29:24:31 | "?" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:24:29:24:31 | "?" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:24:29:24:31 | "?" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:24:29:24:31 | "?" | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/tainted-string-steps.js:24:29:24:31 | "?" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:24:29:24:31 | "?" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:24:29:24:31 | "?" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:24:29:24:31 | "?" | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/tainted-string-steps.js:24:29:24:31 | "?" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:24:29:24:31 | "?" | Xss | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:24:29:24:31 | "?" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:24:29:24:31 | "?" | Xss | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/tainted-string-steps.js:25:18:25:39 | path.sp ... own)[i] | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:25:18:25:39 | path.sp ... own)[i] | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:25:18:25:39 | path.sp ... own)[i] | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:25:18:25:39 | path.sp ... own)[i] | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/tainted-string-steps.js:25:29:25:35 | unknown | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:25:29:25:35 | unknown | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:25:29:25:35 | unknown | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:25:29:25:35 | unknown | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/tainted-string-steps.js:25:29:25:35 | unknown | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:25:29:25:35 | unknown | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:25:29:25:35 | unknown | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:25:29:25:35 | unknown | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/tainted-string-steps.js:25:29:25:35 | unknown | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:25:29:25:35 | unknown | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:25:29:25:35 | unknown | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:25:29:25:35 | unknown | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/tainted-string-steps.js:25:29:25:35 | unknown | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:25:29:25:35 | unknown | Xss | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:25:29:25:35 | unknown | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:25:29:25:35 | unknown | Xss | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/tainted-string-steps.js:26:18:26:45 | path.sp ... hatever | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:26:18:26:45 | path.sp ... hatever | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:26:18:26:45 | path.sp ... hatever | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:26:18:26:45 | path.sp ... hatever | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/tainted-string-steps.js:26:29:26:35 | unknown | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:26:29:26:35 | unknown | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:26:29:26:35 | unknown | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:26:29:26:35 | unknown | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/tainted-string-steps.js:26:29:26:35 | unknown | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:26:29:26:35 | unknown | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:26:29:26:35 | unknown | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:26:29:26:35 | unknown | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/tainted-string-steps.js:26:29:26:35 | unknown | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:26:29:26:35 | unknown | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:26:29:26:35 | unknown | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:26:29:26:35 | unknown | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/tainted-string-steps.js:26:29:26:35 | unknown | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:26:29:26:35 | unknown | Xss | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:26:29:26:35 | unknown | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:26:29:26:35 | unknown | Xss | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/tainted-string-steps.js:27:18:27:36 | path.split(unknown) | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:27:18:27:36 | path.split(unknown) | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:27:18:27:36 | path.split(unknown) | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:27:18:27:36 | path.split(unknown) | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/tainted-string-steps.js:27:29:27:35 | unknown | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:27:29:27:35 | unknown | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:27:29:27:35 | unknown | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:27:29:27:35 | unknown | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/tainted-string-steps.js:27:29:27:35 | unknown | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:27:29:27:35 | unknown | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:27:29:27:35 | unknown | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:27:29:27:35 | unknown | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/tainted-string-steps.js:27:29:27:35 | unknown | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:27:29:27:35 | unknown | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:27:29:27:35 | unknown | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:27:29:27:35 | unknown | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/tainted-string-steps.js:27:29:27:35 | unknown | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:27:29:27:35 | unknown | Xss | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:27:29:27:35 | unknown | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:27:29:27:35 | unknown | Xss | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/tainted-string-steps.js:28:18:28:35 | path.split("?")[i] | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:28:18:28:35 | path.split("?")[i] | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:28:18:28:35 | path.split("?")[i] | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:28:18:28:35 | path.split("?")[i] | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/tainted-string-steps.js:28:29:28:31 | "?" | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:28:29:28:31 | "?" | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:28:29:28:31 | "?" | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:28:29:28:31 | "?" | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/tainted-string-steps.js:28:29:28:31 | "?" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:28:29:28:31 | "?" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:28:29:28:31 | "?" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:28:29:28:31 | "?" | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/tainted-string-steps.js:28:29:28:31 | "?" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:28:29:28:31 | "?" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:28:29:28:31 | "?" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:28:29:28:31 | "?" | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/tainted-string-steps.js:28:29:28:31 | "?" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:28:29:28:31 | "?" | Xss | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:28:29:28:31 | "?" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/tainted-string-steps.js:28:29:28:31 | "?" | Xss | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/torrents.js:1:30:1:44 | 'parse-torrent' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/torrents.js:1:30:1:44 | 'parse-torrent' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/torrents.js:1:30:1:44 | 'parse-torrent' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/torrents.js:1:30:1:44 | 'parse-torrent' | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/torrents.js:2:20:2:23 | 'fs' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/torrents.js:2:20:2:23 | 'fs' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/torrents.js:2:20:2:23 | 'fs' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/torrents.js:2:20:2:23 | 'fs' | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/torrents.js:5:26:5:32 | torrent | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/torrents.js:5:26:5:32 | torrent | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/torrents.js:5:26:5:32 | torrent | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/torrents.js:5:26:5:32 | torrent | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/torrents.js:5:26:5:32 | torrent | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/torrents.js:5:26:5:32 | torrent | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/torrents.js:5:26:5:32 | torrent | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/torrents.js:5:26:5:32 | torrent | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/torrents.js:5:26:5:32 | torrent | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/torrents.js:5:26:5:32 | torrent | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/torrents.js:5:26:5:32 | torrent | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/torrents.js:5:26:5:32 | torrent | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/torrents.js:5:26:5:32 | torrent | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/torrents.js:5:26:5:32 | torrent | Xss | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/torrents.js:5:26:5:32 | torrent | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/torrents.js:5:26:5:32 | torrent | Xss | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/torrents.js:6:12:6:20 | dir + "/" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/torrents.js:6:12:6:20 | dir + "/" | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/torrents.js:6:12:6:20 | dir + "/" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/torrents.js:6:12:6:20 | dir + "/" | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/torrents.js:7:25:7:27 | loc | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/torrents.js:7:25:7:27 | loc | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/torrents.js:7:25:7:27 | loc | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/torrents.js:7:25:7:27 | loc | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/typescript.ts:1:18:1:21 | 'fs' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/typescript.ts:1:18:1:21 | 'fs' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/typescript.ts:1:18:1:21 | 'fs' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/typescript.ts:1:18:1:21 | 'fs' | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/typescript.ts:2:20:2:25 | 'http' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/typescript.ts:2:20:2:25 | 'http' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/typescript.ts:2:20:2:25 | 'http' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/typescript.ts:2:20:2:25 | 'http' | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/typescript.ts:3:19:3:23 | 'url' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/typescript.ts:3:19:3:23 | 'url' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/typescript.ts:3:19:3:23 | 'url' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/typescript.ts:3:19:3:23 | 'url' | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/typescript.ts:4:24:4:42 | 'sanitize-filename' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/typescript.ts:4:24:4:42 | 'sanitize-filename' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/typescript.ts:4:24:4:42 | 'sanitize-filename' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/typescript.ts:4:24:4:42 | 'sanitize-filename' | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/typescript.ts:5:26:5:31 | 'path' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/typescript.ts:5:26:5:31 | 'path' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/TaintedPath/typescript.ts:5:26:5:31 | 'path' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/typescript.ts:5:26:5:31 | 'path' | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/typescript.ts:8:32:34:1 | functio ... nted\\n\\n} | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/typescript.ts:8:32:34:1 | functio ... nted\\n\\n} | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/typescript.ts:8:32:34:1 | functio ... nted\\n\\n} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/typescript.ts:8:32:34:1 | functio ... nted\\n\\n} | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/typescript.ts:8:32:34:1 | functio ... nted\\n\\n} | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/typescript.ts:8:32:34:1 | functio ... nted\\n\\n} | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/typescript.ts:8:32:34:1 | functio ... nted\\n\\n} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/typescript.ts:8:32:34:1 | functio ... nted\\n\\n} | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/typescript.ts:8:32:34:1 | functio ... nted\\n\\n} | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/typescript.ts:8:32:34:1 | functio ... nted\\n\\n} | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/typescript.ts:8:32:34:1 | functio ... nted\\n\\n} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/typescript.ts:8:32:34:1 | functio ... nted\\n\\n} | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/typescript.ts:8:32:34:1 | functio ... nted\\n\\n} | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/typescript.ts:8:32:34:1 | functio ... nted\\n\\n} | Xss | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/typescript.ts:8:32:34:1 | functio ... nted\\n\\n} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/typescript.ts:8:32:34:1 | functio ... nted\\n\\n} | Xss | sinkLabel | Unknown | string |
-| autogenerated/TaintedPath/typescript.ts:12:29:12:32 | path | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/typescript.ts:12:29:12:32 | path | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/typescript.ts:12:29:12:32 | path | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/typescript.ts:12:29:12:32 | path | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/typescript.ts:15:31:15:34 | path | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/typescript.ts:15:31:15:34 | path | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/typescript.ts:15:31:15:34 | path | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/typescript.ts:15:31:15:34 | path | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/typescript.ts:18:39:18:43 | path2 | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/typescript.ts:18:39:18:43 | path2 | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/typescript.ts:18:39:18:43 | path2 | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/typescript.ts:18:39:18:43 | path2 | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/typescript.ts:21:39:21:43 | path3 | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/typescript.ts:21:39:21:43 | path3 | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/typescript.ts:21:39:21:43 | path3 | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/typescript.ts:21:39:21:43 | path3 | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/typescript.ts:24:39:24:43 | path4 | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/typescript.ts:24:39:24:43 | path4 | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/typescript.ts:24:39:24:43 | path4 | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/typescript.ts:24:39:24:43 | path4 | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/typescript.ts:28:29:28:33 | path5 | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/TaintedPath/typescript.ts:28:29:28:33 | path5 | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/typescript.ts:28:29:28:33 | path5 | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/typescript.ts:28:29:28:33 | path5 | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/typescript.ts:32:29:32:33 | path6 | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/typescript.ts:32:29:32:33 | path6 | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/typescript.ts:32:29:32:33 | path6 | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/typescript.ts:32:29:32:33 | path6 | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/TaintedPath/views.js:1:43:1:55 | req.params[0] | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/TaintedPath/views.js:1:43:1:55 | req.params[0] | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/TaintedPath/views.js:1:43:1:55 | req.params[0] | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/TaintedPath/views.js:1:43:1:55 | req.params[0] | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:1:23:1:31 | 'message' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:1:23:1:31 | 'message' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:1:23:1:31 | 'message' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:1:23:1:31 | 'message' | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:1:23:1:31 | 'message' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:1:23:1:31 | 'message' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:1:23:1:31 | 'message' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:1:23:1:31 | 'message' | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:1:23:1:31 | 'message' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:1:23:1:31 | 'message' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:1:23:1:31 | 'message' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:1:23:1:31 | 'message' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:1:23:1:31 | 'message' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:1:23:1:31 | 'message' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:1:23:1:31 | 'message' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:1:23:1:31 | 'message' | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:1:34:3:1 | functio ... OT OK\\n} | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:1:34:3:1 | functio ... OT OK\\n} | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:1:34:3:1 | functio ... OT OK\\n} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:1:34:3:1 | functio ... OT OK\\n} | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:1:34:3:1 | functio ... OT OK\\n} | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:1:34:3:1 | functio ... OT OK\\n} | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:1:34:3:1 | functio ... OT OK\\n} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:1:34:3:1 | functio ... OT OK\\n} | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:1:34:3:1 | functio ... OT OK\\n} | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:1:34:3:1 | functio ... OT OK\\n} | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:1:34:3:1 | functio ... OT OK\\n} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:1:34:3:1 | functio ... OT OK\\n} | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:1:34:3:1 | functio ... OT OK\\n} | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:1:34:3:1 | functio ... OT OK\\n} | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:1:34:3:1 | functio ... OT OK\\n} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:1:34:3:1 | functio ... OT OK\\n} | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:2:20:2:29 | event.data | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:2:20:2:29 | event.data | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:2:20:2:29 | event.data | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:2:20:2:29 | event.data | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:5:23:5:31 | 'message' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:5:23:5:31 | 'message' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:5:23:5:31 | 'message' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:5:23:5:31 | 'message' | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:5:23:5:31 | 'message' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:5:23:5:31 | 'message' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:5:23:5:31 | 'message' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:5:23:5:31 | 'message' | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:5:23:5:31 | 'message' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:5:23:5:31 | 'message' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:5:23:5:31 | 'message' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:5:23:5:31 | 'message' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:5:23:5:31 | 'message' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:5:23:5:31 | 'message' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:5:23:5:31 | 'message' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:5:23:5:31 | 'message' | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:5:34:7:1 | functio ... OT OK\\n} | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:5:34:7:1 | functio ... OT OK\\n} | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:5:34:7:1 | functio ... OT OK\\n} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:5:34:7:1 | functio ... OT OK\\n} | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:5:34:7:1 | functio ... OT OK\\n} | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:5:34:7:1 | functio ... OT OK\\n} | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:5:34:7:1 | functio ... OT OK\\n} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:5:34:7:1 | functio ... OT OK\\n} | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:5:34:7:1 | functio ... OT OK\\n} | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:5:34:7:1 | functio ... OT OK\\n} | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:5:34:7:1 | functio ... OT OK\\n} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:5:34:7:1 | functio ... OT OK\\n} | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:5:34:7:1 | functio ... OT OK\\n} | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:5:34:7:1 | functio ... OT OK\\n} | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:5:34:7:1 | functio ... OT OK\\n} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:5:34:7:1 | functio ... OT OK\\n} | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:6:20:6:23 | data | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:6:20:6:23 | data | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:6:20:6:23 | data | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:6:20:6:23 | data | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:11:24:11:29 | x.data | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:11:24:11:29 | x.data | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:11:24:11:29 | x.data | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:11:24:11:29 | x.data | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:12:24:12:33 | event.data | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:12:24:12:33 | event.data | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:12:24:12:33 | event.data | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:12:24:12:33 | event.data | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:13:24:13:29 | y.data | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:13:24:13:29 | y.data | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:13:24:13:29 | y.data | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:13:24:13:29 | y.data | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:16:29:16:37 | "message" | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:16:29:16:37 | "message" | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:16:29:16:37 | "message" | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:16:29:16:37 | "message" | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:16:29:16:37 | "message" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:16:29:16:37 | "message" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:16:29:16:37 | "message" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:16:29:16:37 | "message" | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:16:29:16:37 | "message" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:16:29:16:37 | "message" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:16:29:16:37 | "message" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:16:29:16:37 | "message" | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:16:29:16:37 | "message" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:16:29:16:37 | "message" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:16:29:16:37 | "message" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:16:29:16:37 | "message" | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:16:40:16:70 | foo.bin ... tems'}) | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:16:40:16:70 | foo.bin ... tems'}) | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:16:40:16:70 | foo.bin ... tems'}) | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:16:40:16:70 | foo.bin ... tems'}) | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:16:40:16:70 | foo.bin ... tems'}) | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:16:40:16:70 | foo.bin ... tems'}) | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:16:40:16:70 | foo.bin ... tems'}) | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:16:40:16:70 | foo.bin ... tems'}) | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:16:40:16:70 | foo.bin ... tems'}) | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:16:40:16:70 | foo.bin ... tems'}) | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:16:40:16:70 | foo.bin ... tems'}) | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:16:40:16:70 | foo.bin ... tems'}) | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:16:40:16:70 | foo.bin ... tems'}) | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:16:40:16:70 | foo.bin ... tems'}) | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:16:40:16:70 | foo.bin ... tems'}) | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:16:40:16:70 | foo.bin ... tems'}) | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:16:49:16:52 | null | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:16:49:16:52 | null | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:16:49:16:52 | null | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:16:49:16:52 | null | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:16:49:16:52 | null | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:16:49:16:52 | null | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:16:49:16:52 | null | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:16:49:16:52 | null | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:16:49:16:52 | null | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:16:49:16:52 | null | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:16:49:16:52 | null | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:16:49:16:52 | null | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:16:49:16:52 | null | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:16:49:16:52 | null | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:16:49:16:52 | null | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:16:49:16:52 | null | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:16:55:16:69 | {data: 'items'} | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:16:55:16:69 | {data: 'items'} | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:16:55:16:69 | {data: 'items'} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:16:55:16:69 | {data: 'items'} | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:16:55:16:69 | {data: 'items'} | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:16:55:16:69 | {data: 'items'} | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:16:55:16:69 | {data: 'items'} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:16:55:16:69 | {data: 'items'} | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:16:55:16:69 | {data: 'items'} | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:16:55:16:69 | {data: 'items'} | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:16:55:16:69 | {data: 'items'} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:16:55:16:69 | {data: 'items'} | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:16:55:16:69 | {data: 'items'} | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:16:55:16:69 | {data: 'items'} | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:16:55:16:69 | {data: 'items'} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:16:55:16:69 | {data: 'items'} | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:16:62:16:68 | 'items' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:16:62:16:68 | 'items' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:16:62:16:68 | 'items' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:16:62:16:68 | 'items' | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:16:62:16:68 | 'items' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:16:62:16:68 | 'items' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:16:62:16:68 | 'items' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:16:62:16:68 | 'items' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:16:62:16:68 | 'items' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:16:62:16:68 | 'items' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:16:62:16:68 | 'items' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:16:62:16:68 | 'items' | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:7:13:7:22 | 'app-root' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:7:13:7:22 | 'app-root' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:7:13:7:22 | 'app-root' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:7:13:7:22 | 'app-root' | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:7:13:7:22 | 'app-root' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:7:13:7:22 | 'app-root' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:7:13:7:22 | 'app-root' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:7:13:7:22 | 'app-root' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:7:13:7:22 | 'app-root' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:7:13:7:22 | 'app-root' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:7:13:7:22 | 'app-root' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:7:13:7:22 | 'app-root' | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:8:16:8:37 | './app. ... t.html' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:8:16:8:37 | './app. ... t.html' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:8:16:8:37 | './app. ... t.html' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:8:16:8:37 | './app. ... t.html' | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:8:16:8:37 | './app. ... t.html' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:8:16:8:37 | './app. ... t.html' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:8:16:8:37 | './app. ... t.html' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:8:16:8:37 | './app. ... t.html' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:8:16:8:37 | './app. ... t.html' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:8:16:8:37 | './app. ... t.html' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:8:16:8:37 | './app. ... t.html' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:8:16:8:37 | './app. ... t.html' | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:9:14:9:36 | ['./app ... t.css'] | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:9:14:9:36 | ['./app ... t.css'] | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:9:14:9:36 | ['./app ... t.css'] | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:9:14:9:36 | ['./app ... t.css'] | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:9:14:9:36 | ['./app ... t.css'] | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:9:14:9:36 | ['./app ... t.css'] | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:9:14:9:36 | ['./app ... t.css'] | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:9:14:9:36 | ['./app ... t.css'] | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:9:14:9:36 | ['./app ... t.css'] | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:9:14:9:36 | ['./app ... t.css'] | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:9:14:9:36 | ['./app ... t.css'] | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:9:14:9:36 | ['./app ... t.css'] | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:9:15:9:35 | './app. ... nt.css' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:9:15:9:35 | './app. ... nt.css' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:9:15:9:35 | './app. ... nt.css' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:9:15:9:35 | './app. ... nt.css' | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:9:15:9:35 | './app. ... nt.css' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:9:15:9:35 | './app. ... nt.css' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:9:15:9:35 | './app. ... nt.css' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:9:15:9:35 | './app. ... nt.css' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:9:15:9:35 | './app. ... nt.css' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:9:15:9:35 | './app. ... nt.css' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:9:15:9:35 | './app. ... nt.css' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:9:15:9:35 | './app. ... nt.css' | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:22:44:22:71 | \\u0275getDOM ... ().href | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:22:44:22:71 | \\u0275getDOM ... ().href | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:22:44:22:71 | \\u0275getDOM ... ().href | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:22:44:22:71 | \\u0275getDOM ... ().href | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:24:44:24:73 | this.ro ... ams.foo | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:24:44:24:73 | this.ro ... ams.foo | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:24:44:24:73 | this.ro ... ams.foo | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:24:44:24:73 | this.ro ... ams.foo | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:25:44:25:78 | this.ro ... ams.foo | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:25:44:25:78 | this.ro ... ams.foo | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:25:44:25:78 | this.ro ... ams.foo | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:25:44:25:78 | this.ro ... ams.foo | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:26:44:26:71 | this.ro ... ragment | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:26:44:26:71 | this.ro ... ragment | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:26:44:26:71 | this.ro ... ragment | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:26:44:26:71 | this.ro ... ragment | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:27:44:27:82 | this.ro ... ('foo') | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:27:44:27:82 | this.ro ... ('foo') | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:27:44:27:82 | this.ro ... ('foo') | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:27:44:27:82 | this.ro ... ('foo') | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:27:77:27:81 | 'foo' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:27:77:27:81 | 'foo' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:27:77:27:81 | 'foo' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:27:77:27:81 | 'foo' | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:27:77:27:81 | 'foo' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:27:77:27:81 | 'foo' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:27:77:27:81 | 'foo' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:27:77:27:81 | 'foo' | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:27:77:27:81 | 'foo' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:27:77:27:81 | 'foo' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:27:77:27:81 | 'foo' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:27:77:27:81 | 'foo' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:27:77:27:81 | 'foo' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:27:77:27:81 | 'foo' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:27:77:27:81 | 'foo' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:27:77:27:81 | 'foo' | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:28:44:28:87 | this.ro ... ('foo') | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:28:44:28:87 | this.ro ... ('foo') | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:28:44:28:87 | this.ro ... ('foo') | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:28:44:28:87 | this.ro ... ('foo') | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:28:82:28:86 | 'foo' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:28:82:28:86 | 'foo' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:28:82:28:86 | 'foo' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:28:82:28:86 | 'foo' | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:28:82:28:86 | 'foo' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:28:82:28:86 | 'foo' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:28:82:28:86 | 'foo' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:28:82:28:86 | 'foo' | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:28:82:28:86 | 'foo' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:28:82:28:86 | 'foo' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:28:82:28:86 | 'foo' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:28:82:28:86 | 'foo' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:28:82:28:86 | 'foo' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:28:82:28:86 | 'foo' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:28:82:28:86 | 'foo' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:28:82:28:86 | 'foo' | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:29:35:31:5 | map =>  ... K\\n    } | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:29:35:31:5 | map =>  ... K\\n    } | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:29:35:31:5 | map =>  ... K\\n    } | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:29:35:31:5 | map =>  ... K\\n    } | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:29:35:31:5 | map =>  ... K\\n    } | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:29:35:31:5 | map =>  ... K\\n    } | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:29:35:31:5 | map =>  ... K\\n    } | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:29:35:31:5 | map =>  ... K\\n    } | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:29:35:31:5 | map =>  ... K\\n    } | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:29:35:31:5 | map =>  ... K\\n    } | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:29:35:31:5 | map =>  ... K\\n    } | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:29:35:31:5 | map =>  ... K\\n    } | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:29:35:31:5 | map =>  ... K\\n    } | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:29:35:31:5 | map =>  ... K\\n    } | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:29:35:31:5 | map =>  ... K\\n    } | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:29:35:31:5 | map =>  ... K\\n    } | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:30:46:30:59 | map.get('foo') | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:30:46:30:59 | map.get('foo') | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:30:46:30:59 | map.get('foo') | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:30:46:30:59 | map.get('foo') | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:30:54:30:58 | 'foo' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:30:54:30:58 | 'foo' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:30:54:30:58 | 'foo' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:30:54:30:58 | 'foo' | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:30:54:30:58 | 'foo' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:30:54:30:58 | 'foo' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:30:54:30:58 | 'foo' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:30:54:30:58 | 'foo' | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:30:54:30:58 | 'foo' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:30:54:30:58 | 'foo' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:30:54:30:58 | 'foo' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:30:54:30:58 | 'foo' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:30:54:30:58 | 'foo' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:30:54:30:58 | 'foo' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:30:54:30:58 | 'foo' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:30:54:30:58 | 'foo' | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:33:44:33:74 | this.ro ... 1].path | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:33:44:33:74 | this.ro ... 1].path | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:33:44:33:74 | this.ro ... 1].path | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:33:44:33:74 | this.ro ... 1].path | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:34:44:34:82 | this.ro ... eters.x | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:34:44:34:82 | this.ro ... eters.x | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:34:44:34:82 | this.ro ... eters.x | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:34:44:34:82 | this.ro ... eters.x | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:35:44:35:91 | this.ro ... et('x') | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:35:44:35:91 | this.ro ... et('x') | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:35:44:35:91 | this.ro ... et('x') | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:35:44:35:91 | this.ro ... et('x') | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:35:88:35:90 | 'x' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:35:88:35:90 | 'x' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:35:88:35:90 | 'x' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:35:88:35:90 | 'x' | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:35:88:35:90 | 'x' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:35:88:35:90 | 'x' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:35:88:35:90 | 'x' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:35:88:35:90 | 'x' | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:35:88:35:90 | 'x' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:35:88:35:90 | 'x' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:35:88:35:90 | 'x' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:35:88:35:90 | 'x' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:35:88:35:90 | 'x' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:35:88:35:90 | 'x' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:35:88:35:90 | 'x' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:35:88:35:90 | 'x' | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:36:44:36:91 | this.ro ... arams.x | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:36:44:36:91 | this.ro ... arams.x | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:36:44:36:91 | this.ro ... arams.x | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:36:44:36:91 | this.ro ... arams.x | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:38:44:38:58 | this.router.url | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:38:44:38:58 | this.router.url | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:38:44:38:58 | this.router.url | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:38:44:38:58 | this.router.url | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:40:45:40:59 | this.router.url | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:40:45:40:59 | this.router.url | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:40:45:40:59 | this.router.url | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:40:45:40:59 | this.router.url | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:44:44:44:76 | routeSn ... ('foo') | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:44:44:44:76 | routeSn ... ('foo') | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:44:44:44:76 | routeSn ... ('foo') | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:44:44:44:76 | routeSn ... ('foo') | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:44:71:44:75 | 'foo' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:44:71:44:75 | 'foo' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:44:71:44:75 | 'foo' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:44:71:44:75 | 'foo' | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:44:71:44:75 | 'foo' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:44:71:44:75 | 'foo' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:44:71:44:75 | 'foo' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:44:71:44:75 | 'foo' | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:44:71:44:75 | 'foo' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:44:71:44:75 | 'foo' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:44:71:44:75 | 'foo' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:44:71:44:75 | 'foo' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:44:71:44:75 | 'foo' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:44:71:44:75 | 'foo' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:44:71:44:75 | 'foo' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:44:71:44:75 | 'foo' | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/classnames.js:7:31:7:84 | `<span  ... <span>` | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/classnames.js:7:31:7:84 | `<span  ... <span>` | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/classnames.js:7:31:7:84 | `<span  ... <span>` | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/classnames.js:7:31:7:84 | `<span  ... <span>` | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/classnames.js:7:32:7:44 | <span class=" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/classnames.js:7:32:7:44 | <span class=" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/classnames.js:7:32:7:44 | <span class=" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/classnames.js:7:32:7:44 | <span class=" | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/classnames.js:7:47:7:69 | classNa ... w.name) | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/classnames.js:7:47:7:69 | classNa ... w.name) | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/classnames.js:7:47:7:69 | classNa ... w.name) | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/classnames.js:7:47:7:69 | classNa ... w.name) | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/classnames.js:7:71:7:83 | ">Hello<span> | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/classnames.js:7:71:7:83 | ">Hello<span> | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/classnames.js:7:71:7:83 | ">Hello<span> | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/classnames.js:7:71:7:83 | ">Hello<span> | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/classnames.js:8:31:8:85 | `<span  ... <span>` | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/classnames.js:8:31:8:85 | `<span  ... <span>` | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/classnames.js:8:31:8:85 | `<span  ... <span>` | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/classnames.js:8:31:8:85 | `<span  ... <span>` | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/classnames.js:8:32:8:44 | <span class=" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/classnames.js:8:32:8:44 | <span class=" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/classnames.js:8:32:8:44 | <span class=" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/classnames.js:8:32:8:44 | <span class=" | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/classnames.js:8:47:8:70 | classNa ... w.name) | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/classnames.js:8:47:8:70 | classNa ... w.name) | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/classnames.js:8:47:8:70 | classNa ... w.name) | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/classnames.js:8:47:8:70 | classNa ... w.name) | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/classnames.js:8:72:8:84 | ">Hello<span> | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/classnames.js:8:72:8:84 | ">Hello<span> | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/classnames.js:8:72:8:84 | ">Hello<span> | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/classnames.js:8:72:8:84 | ">Hello<span> | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/classnames.js:9:31:9:85 | `<span  ... <span>` | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/classnames.js:9:31:9:85 | `<span  ... <span>` | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/classnames.js:9:31:9:85 | `<span  ... <span>` | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/classnames.js:9:31:9:85 | `<span  ... <span>` | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/classnames.js:9:32:9:44 | <span class=" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/classnames.js:9:32:9:44 | <span class=" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/classnames.js:9:32:9:44 | <span class=" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/classnames.js:9:32:9:44 | <span class=" | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/classnames.js:9:47:9:70 | classNa ... w.name) | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/classnames.js:9:47:9:70 | classNa ... w.name) | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/classnames.js:9:47:9:70 | classNa ... w.name) | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/classnames.js:9:47:9:70 | classNa ... w.name) | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/classnames.js:9:72:9:84 | ">Hello<span> | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/classnames.js:9:72:9:84 | ">Hello<span> | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/classnames.js:9:72:9:84 | ">Hello<span> | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/classnames.js:9:72:9:84 | ">Hello<span> | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/classnames.js:10:45:10:55 | window.name | SqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/classnames.js:10:45:10:55 | window.name | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/classnames.js:10:45:10:55 | window.name | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/classnames.js:10:45:10:55 | window.name | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/classnames.js:10:45:10:55 | window.name | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/classnames.js:10:45:10:55 | window.name | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/classnames.js:10:45:10:55 | window.name | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/classnames.js:10:45:10:55 | window.name | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/classnames.js:10:45:10:55 | window.name | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/classnames.js:10:45:10:55 | window.name | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/classnames.js:10:45:10:55 | window.name | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/classnames.js:10:45:10:55 | window.name | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/classnames.js:11:31:11:79 | `<span  ... <span>` | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/classnames.js:11:31:11:79 | `<span  ... <span>` | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/classnames.js:11:31:11:79 | `<span  ... <span>` | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/classnames.js:11:31:11:79 | `<span  ... <span>` | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/classnames.js:11:32:11:44 | <span class=" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/classnames.js:11:32:11:44 | <span class=" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/classnames.js:11:32:11:44 | <span class=" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/classnames.js:11:32:11:44 | <span class=" | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/classnames.js:11:47:11:64 | unsafeStyle('foo') | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/classnames.js:11:47:11:64 | unsafeStyle('foo') | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/classnames.js:11:47:11:64 | unsafeStyle('foo') | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/classnames.js:11:47:11:64 | unsafeStyle('foo') | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/classnames.js:11:66:11:78 | ">Hello<span> | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/classnames.js:11:66:11:78 | ">Hello<span> | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/classnames.js:11:66:11:78 | ">Hello<span> | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/classnames.js:11:66:11:78 | ">Hello<span> | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/classnames.js:13:31:13:83 | `<span  ... <span>` | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/classnames.js:13:31:13:83 | `<span  ... <span>` | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/classnames.js:13:31:13:83 | `<span  ... <span>` | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/classnames.js:13:31:13:83 | `<span  ... <span>` | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/classnames.js:13:32:13:44 | <span class=" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/classnames.js:13:32:13:44 | <span class=" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/classnames.js:13:32:13:44 | <span class=" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/classnames.js:13:32:13:44 | <span class=" | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/classnames.js:13:47:13:68 | safeSty ... w.name) | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/classnames.js:13:47:13:68 | safeSty ... w.name) | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/classnames.js:13:47:13:68 | safeSty ... w.name) | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/classnames.js:13:47:13:68 | safeSty ... w.name) | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/classnames.js:13:70:13:82 | ">Hello<span> | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/classnames.js:13:70:13:82 | ">Hello<span> | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/classnames.js:13:70:13:82 | ">Hello<span> | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/classnames.js:13:70:13:82 | ">Hello<span> | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/classnames.js:14:31:14:77 | `<span  ... <span>` | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/classnames.js:14:31:14:77 | `<span  ... <span>` | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/classnames.js:14:31:14:77 | `<span  ... <span>` | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/classnames.js:14:31:14:77 | `<span  ... <span>` | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/classnames.js:14:32:14:44 | <span class=" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/classnames.js:14:32:14:44 | <span class=" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/classnames.js:14:32:14:44 | <span class=" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/classnames.js:14:32:14:44 | <span class=" | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/classnames.js:14:47:14:62 | safeStyle('foo') | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/classnames.js:14:47:14:62 | safeStyle('foo') | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/classnames.js:14:47:14:62 | safeStyle('foo') | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/classnames.js:14:47:14:62 | safeStyle('foo') | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/classnames.js:14:64:14:76 | ">Hello<span> | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/classnames.js:14:64:14:76 | ">Hello<span> | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/classnames.js:14:64:14:76 | ">Hello<span> | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/classnames.js:14:64:14:76 | ">Hello<span> | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/classnames.js:15:31:15:78 | `<span  ... <span>` | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/classnames.js:15:31:15:78 | `<span  ... <span>` | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/classnames.js:15:31:15:78 | `<span  ... <span>` | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/classnames.js:15:31:15:78 | `<span  ... <span>` | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/classnames.js:15:32:15:44 | <span class=" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/classnames.js:15:32:15:44 | <span class=" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/classnames.js:15:32:15:44 | <span class=" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/classnames.js:15:32:15:44 | <span class=" | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/classnames.js:15:47:15:63 | clsx(window.name) | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/classnames.js:15:47:15:63 | clsx(window.name) | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/classnames.js:15:47:15:63 | clsx(window.name) | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/classnames.js:15:47:15:63 | clsx(window.name) | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/classnames.js:15:65:15:77 | ">Hello<span> | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/classnames.js:15:65:15:77 | ">Hello<span> | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/classnames.js:15:65:15:77 | ">Hello<span> | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/classnames.js:15:65:15:77 | ">Hello<span> | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/d3.js:1:20:1:23 | 'd3' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/d3.js:1:20:1:23 | 'd3' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/d3.js:1:20:1:23 | 'd3' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/d3.js:1:20:1:23 | 'd3' | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/d3.js:8:15:8:21 | '#main' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/d3.js:8:15:8:21 | '#main' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/d3.js:8:15:8:21 | '#main' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/d3.js:8:15:8:21 | '#main' | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/d3.js:8:15:8:21 | '#main' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/d3.js:8:15:8:21 | '#main' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/d3.js:8:15:8:21 | '#main' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/d3.js:8:15:8:21 | '#main' | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/d3.js:8:15:8:21 | '#main' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/d3.js:8:15:8:21 | '#main' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/d3.js:8:15:8:21 | '#main' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/d3.js:8:15:8:21 | '#main' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/d3.js:8:15:8:21 | '#main' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/d3.js:8:15:8:21 | '#main' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/d3.js:8:15:8:21 | '#main' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/d3.js:8:15:8:21 | '#main' | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/d3.js:9:15:9:21 | 'width' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/d3.js:9:15:9:21 | 'width' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/d3.js:9:15:9:21 | 'width' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/d3.js:9:15:9:21 | 'width' | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/d3.js:9:15:9:21 | 'width' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/d3.js:9:15:9:21 | 'width' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/d3.js:9:15:9:21 | 'width' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/d3.js:9:15:9:21 | 'width' | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/d3.js:9:15:9:21 | 'width' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/d3.js:9:15:9:21 | 'width' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/d3.js:9:15:9:21 | 'width' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/d3.js:9:15:9:21 | 'width' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/d3.js:9:15:9:21 | 'width' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/d3.js:9:15:9:21 | 'width' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/d3.js:9:15:9:21 | 'width' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/d3.js:9:15:9:21 | 'width' | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/d3.js:9:24:9:26 | 100 | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/d3.js:9:24:9:26 | 100 | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/d3.js:9:24:9:26 | 100 | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/d3.js:9:24:9:26 | 100 | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/d3.js:9:24:9:26 | 100 | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/d3.js:9:24:9:26 | 100 | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/d3.js:9:24:9:26 | 100 | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/d3.js:9:24:9:26 | 100 | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/d3.js:9:24:9:26 | 100 | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/d3.js:9:24:9:26 | 100 | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/d3.js:9:24:9:26 | 100 | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/d3.js:9:24:9:26 | 100 | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/d3.js:9:24:9:26 | 100 | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/d3.js:9:24:9:26 | 100 | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/d3.js:9:24:9:26 | 100 | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/d3.js:9:24:9:26 | 100 | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/d3.js:10:16:10:22 | 'color' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/d3.js:10:16:10:22 | 'color' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/d3.js:10:16:10:22 | 'color' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/d3.js:10:16:10:22 | 'color' | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/d3.js:10:16:10:22 | 'color' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/d3.js:10:16:10:22 | 'color' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/d3.js:10:16:10:22 | 'color' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/d3.js:10:16:10:22 | 'color' | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/d3.js:10:16:10:22 | 'color' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/d3.js:10:16:10:22 | 'color' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/d3.js:10:16:10:22 | 'color' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/d3.js:10:16:10:22 | 'color' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/d3.js:10:16:10:22 | 'color' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/d3.js:10:16:10:22 | 'color' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/d3.js:10:16:10:22 | 'color' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/d3.js:10:16:10:22 | 'color' | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/d3.js:10:25:10:29 | 'red' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/d3.js:10:25:10:29 | 'red' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/d3.js:10:25:10:29 | 'red' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/d3.js:10:25:10:29 | 'red' | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/d3.js:10:25:10:29 | 'red' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/d3.js:10:25:10:29 | 'red' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/d3.js:10:25:10:29 | 'red' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/d3.js:10:25:10:29 | 'red' | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/d3.js:10:25:10:29 | 'red' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/d3.js:10:25:10:29 | 'red' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/d3.js:10:25:10:29 | 'red' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/d3.js:10:25:10:29 | 'red' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/d3.js:10:25:10:29 | 'red' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/d3.js:10:25:10:29 | 'red' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/d3.js:10:25:10:29 | 'red' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/d3.js:10:25:10:29 | 'red' | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/d3.js:11:15:11:24 | getTaint() | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/d3.js:11:15:11:24 | getTaint() | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/d3.js:11:15:11:24 | getTaint() | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/d3.js:11:15:11:24 | getTaint() | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/d3.js:12:15:12:29 | d => getTaint() | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/d3.js:12:15:12:29 | d => getTaint() | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/d3.js:12:15:12:29 | d => getTaint() | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/d3.js:12:15:12:29 | d => getTaint() | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/d3.js:12:20:12:29 | getTaint() | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/d3.js:12:20:12:29 | getTaint() | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/d3.js:12:20:12:29 | getTaint() | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/d3.js:12:20:12:29 | getTaint() | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/d3.js:13:15:13:27 | otherFunction | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/d3.js:13:15:13:27 | otherFunction | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/d3.js:13:15:13:27 | otherFunction | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/d3.js:13:15:13:27 | otherFunction | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/d3.js:13:15:13:27 | otherFunction | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/d3.js:13:15:13:27 | otherFunction | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/d3.js:13:15:13:27 | otherFunction | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/d3.js:13:15:13:27 | otherFunction | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/d3.js:13:15:13:27 | otherFunction | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/d3.js:13:15:13:27 | otherFunction | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/d3.js:13:15:13:27 | otherFunction | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/d3.js:13:15:13:27 | otherFunction | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/d3.js:13:15:13:27 | otherFunction | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/d3.js:13:15:13:27 | otherFunction | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/d3.js:13:15:13:27 | otherFunction | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/d3.js:13:15:13:27 | otherFunction | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/d3.js:14:15:14:29 | d => getTaint() | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/d3.js:14:15:14:29 | d => getTaint() | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/d3.js:14:15:14:29 | d => getTaint() | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/d3.js:14:15:14:29 | d => getTaint() | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/d3.js:14:20:14:29 | getTaint() | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/d3.js:14:20:14:29 | getTaint() | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/d3.js:14:20:14:29 | getTaint() | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/d3.js:14:20:14:29 | getTaint() | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/d3.js:20:15:20:19 | 'foo' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/d3.js:20:15:20:19 | 'foo' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/d3.js:20:15:20:19 | 'foo' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/d3.js:20:15:20:19 | 'foo' | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/d3.js:20:15:20:19 | 'foo' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/d3.js:20:15:20:19 | 'foo' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/d3.js:20:15:20:19 | 'foo' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/d3.js:20:15:20:19 | 'foo' | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/d3.js:20:15:20:19 | 'foo' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/d3.js:20:15:20:19 | 'foo' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/d3.js:20:15:20:19 | 'foo' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/d3.js:20:15:20:19 | 'foo' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/d3.js:20:15:20:19 | 'foo' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/d3.js:20:15:20:19 | 'foo' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/d3.js:20:15:20:19 | 'foo' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/d3.js:20:15:20:19 | 'foo' | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/d3.js:20:22:20:26 | 'bar' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/d3.js:20:22:20:26 | 'bar' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/d3.js:20:22:20:26 | 'bar' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/d3.js:20:22:20:26 | 'bar' | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/d3.js:20:22:20:26 | 'bar' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/d3.js:20:22:20:26 | 'bar' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/d3.js:20:22:20:26 | 'bar' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/d3.js:20:22:20:26 | 'bar' | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/d3.js:20:22:20:26 | 'bar' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/d3.js:20:22:20:26 | 'bar' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/d3.js:20:22:20:26 | 'bar' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/d3.js:20:22:20:26 | 'bar' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/d3.js:20:22:20:26 | 'bar' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/d3.js:20:22:20:26 | 'bar' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/d3.js:20:22:20:26 | 'bar' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/d3.js:20:22:20:26 | 'bar' | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/d3.js:21:15:21:24 | getTaint() | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/d3.js:21:15:21:24 | getTaint() | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/d3.js:21:15:21:24 | getTaint() | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/d3.js:21:15:21:24 | getTaint() | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/dates.js:9:67:9:67 | 1 | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/dates.js:9:67:9:67 | 1 | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/dates.js:9:67:9:67 | 1 | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/dates.js:9:67:9:67 | 1 | NosqlInjection | notASinkReason | BuiltinCallName | string |
-| autogenerated/Xss/DomBasedXss/dates.js:9:67:9:67 | 1 | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/dates.js:9:67:9:67 | 1 | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/dates.js:9:67:9:67 | 1 | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/dates.js:9:67:9:67 | 1 | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/dates.js:9:67:9:67 | 1 | SqlInjection | notASinkReason | BuiltinCallName | string |
-| autogenerated/Xss/DomBasedXss/dates.js:9:67:9:67 | 1 | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/dates.js:9:67:9:67 | 1 | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/dates.js:9:67:9:67 | 1 | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/dates.js:9:67:9:67 | 1 | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/dates.js:9:67:9:67 | 1 | TaintedPath | notASinkReason | BuiltinCallName | string |
-| autogenerated/Xss/DomBasedXss/dates.js:9:67:9:67 | 1 | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/dates.js:9:67:9:67 | 1 | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/dates.js:9:67:9:67 | 1 | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/dates.js:9:67:9:67 | 1 | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/dates.js:9:67:9:67 | 1 | Xss | notASinkReason | BuiltinCallName | string |
-| autogenerated/Xss/DomBasedXss/dates.js:9:67:9:67 | 1 | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/dates.js:11:31:11:70 | `Time i ... aint)}` | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/dates.js:11:31:11:70 | `Time i ... aint)}` | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/dates.js:11:31:11:70 | `Time i ... aint)}` | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/dates.js:11:31:11:70 | `Time i ... aint)}` | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/dates.js:12:31:12:73 | `Time i ... aint)}` | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/dates.js:12:31:12:73 | `Time i ... aint)}` | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/dates.js:12:31:12:73 | `Time i ... aint)}` | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/dates.js:12:31:12:73 | `Time i ... aint)}` | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/dates.js:13:31:13:72 | `Time i ... time)}` | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/dates.js:13:31:13:72 | `Time i ... time)}` | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/dates.js:13:31:13:72 | `Time i ... time)}` | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/dates.js:13:31:13:72 | `Time i ... time)}` | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/dates.js:13:66:13:69 | time | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/dates.js:13:66:13:69 | time | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/dates.js:13:66:13:69 | time | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/dates.js:13:66:13:69 | time | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/dates.js:13:66:13:69 | time | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/dates.js:13:66:13:69 | time | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/dates.js:13:66:13:69 | time | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/dates.js:13:66:13:69 | time | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/dates.js:13:66:13:69 | time | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/dates.js:13:66:13:69 | time | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/dates.js:13:66:13:69 | time | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/dates.js:13:66:13:69 | time | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/dates.js:13:66:13:69 | time | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/dates.js:13:66:13:69 | time | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/dates.js:13:66:13:69 | time | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/dates.js:13:66:13:69 | time | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/dates.js:14:31:14:70 | `Time i ... time)}` | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/dates.js:14:31:14:70 | `Time i ... time)}` | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/dates.js:14:31:14:70 | `Time i ... time)}` | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/dates.js:14:31:14:70 | `Time i ... time)}` | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/dates.js:15:31:15:72 | `Time i ... aint)}` | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/dates.js:15:31:15:72 | `Time i ... aint)}` | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/dates.js:15:31:15:72 | `Time i ... aint)}` | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/dates.js:15:31:15:72 | `Time i ... aint)}` | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/dates.js:15:65:15:69 | taint | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/dates.js:15:65:15:69 | taint | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/dates.js:15:65:15:69 | taint | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/dates.js:15:65:15:69 | taint | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/dates.js:15:65:15:69 | taint | SqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/dates.js:15:65:15:69 | taint | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/dates.js:15:65:15:69 | taint | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/dates.js:15:65:15:69 | taint | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/dates.js:15:65:15:69 | taint | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/dates.js:15:65:15:69 | taint | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/dates.js:15:65:15:69 | taint | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/dates.js:15:65:15:69 | taint | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/dates.js:15:65:15:69 | taint | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/dates.js:15:65:15:69 | taint | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/dates.js:15:65:15:69 | taint | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/dates.js:15:65:15:69 | taint | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/dates.js:16:31:16:69 | `Time i ... aint)}` | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/dates.js:16:31:16:69 | `Time i ... aint)}` | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/dates.js:16:31:16:69 | `Time i ... aint)}` | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/dates.js:16:31:16:69 | `Time i ... aint)}` | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/dates.js:16:49:16:52 | time | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/dates.js:16:49:16:52 | time | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/dates.js:16:49:16:52 | time | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/dates.js:16:49:16:52 | time | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/dates.js:16:49:16:52 | time | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/dates.js:16:49:16:52 | time | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/dates.js:16:49:16:52 | time | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/dates.js:16:49:16:52 | time | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/dates.js:16:49:16:52 | time | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/dates.js:16:49:16:52 | time | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/dates.js:16:49:16:52 | time | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/dates.js:16:49:16:52 | time | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/dates.js:16:49:16:52 | time | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/dates.js:16:49:16:52 | time | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/dates.js:16:49:16:52 | time | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/dates.js:16:49:16:52 | time | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/dates.js:17:31:17:65 | `Time i ... mat()}` | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/dates.js:17:31:17:65 | `Time i ... mat()}` | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/dates.js:17:31:17:65 | `Time i ... mat()}` | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/dates.js:17:31:17:65 | `Time i ... mat()}` | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/dates.js:17:49:17:53 | taint | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/dates.js:17:49:17:53 | taint | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/dates.js:17:49:17:53 | taint | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/dates.js:17:49:17:53 | taint | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/dates.js:17:49:17:53 | taint | SqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/dates.js:17:49:17:53 | taint | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/dates.js:17:49:17:53 | taint | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/dates.js:17:49:17:53 | taint | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/dates.js:17:49:17:53 | taint | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/dates.js:17:49:17:53 | taint | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/dates.js:17:49:17:53 | taint | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/dates.js:17:49:17:53 | taint | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/dates.js:17:49:17:53 | taint | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/dates.js:17:49:17:53 | taint | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/dates.js:17:49:17:53 | taint | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/dates.js:17:49:17:53 | taint | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/dates.js:18:31:18:66 | `Time i ... aint)}` | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/dates.js:18:31:18:66 | `Time i ... aint)}` | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/dates.js:18:31:18:66 | `Time i ... aint)}` | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/dates.js:18:31:18:66 | `Time i ... aint)}` | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/encodeuri.js:3:5:3:15 | '<a href="' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/encodeuri.js:3:5:3:15 | '<a href="' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/encodeuri.js:3:5:3:15 | '<a href="' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/encodeuri.js:3:5:3:15 | '<a href="' | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/encodeuri.js:3:5:3:57 | '<a hre ... ck</a>' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/encodeuri.js:3:5:3:57 | '<a hre ... ck</a>' | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/encodeuri.js:3:5:3:57 | '<a hre ... ck</a>' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/encodeuri.js:3:5:3:57 | '<a hre ... ck</a>' | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/encodeuri.js:3:19:3:41 | encodeU ... nt(loc) | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/encodeuri.js:3:19:3:41 | encodeU ... nt(loc) | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/encodeuri.js:3:19:3:41 | encodeU ... nt(loc) | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/encodeuri.js:3:19:3:41 | encodeU ... nt(loc) | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/encodeuri.js:3:45:3:57 | '">click</a>' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/encodeuri.js:3:45:3:57 | '">click</a>' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/encodeuri.js:3:45:3:57 | '">click</a>' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/encodeuri.js:3:45:3:57 | '">click</a>' | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/event-handler-receiver.js:1:25:1:31 | 'my-id' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/event-handler-receiver.js:1:25:1:31 | 'my-id' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/event-handler-receiver.js:1:25:1:31 | 'my-id' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/event-handler-receiver.js:1:25:1:31 | 'my-id' | NosqlInjection | notASinkReason | DOM | string |
-| autogenerated/Xss/DomBasedXss/event-handler-receiver.js:1:25:1:31 | 'my-id' | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/event-handler-receiver.js:1:25:1:31 | 'my-id' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/event-handler-receiver.js:1:25:1:31 | 'my-id' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/event-handler-receiver.js:1:25:1:31 | 'my-id' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/event-handler-receiver.js:1:25:1:31 | 'my-id' | SqlInjection | notASinkReason | DOM | string |
-| autogenerated/Xss/DomBasedXss/event-handler-receiver.js:1:25:1:31 | 'my-id' | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/event-handler-receiver.js:1:25:1:31 | 'my-id' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/event-handler-receiver.js:1:25:1:31 | 'my-id' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/event-handler-receiver.js:1:25:1:31 | 'my-id' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/event-handler-receiver.js:1:25:1:31 | 'my-id' | TaintedPath | notASinkReason | DOM | string |
-| autogenerated/Xss/DomBasedXss/event-handler-receiver.js:1:25:1:31 | 'my-id' | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/event-handler-receiver.js:1:25:1:31 | 'my-id' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/event-handler-receiver.js:1:25:1:31 | 'my-id' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/event-handler-receiver.js:1:25:1:31 | 'my-id' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/event-handler-receiver.js:1:25:1:31 | 'my-id' | Xss | notASinkReason | DOM | string |
-| autogenerated/Xss/DomBasedXss/event-handler-receiver.js:1:25:1:31 | 'my-id' | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/event-handler-receiver.js:2:31:2:45 | '<h2><a href="' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/event-handler-receiver.js:2:31:2:45 | '<h2><a href="' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/event-handler-receiver.js:2:31:2:45 | '<h2><a href="' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/event-handler-receiver.js:2:31:2:45 | '<h2><a href="' | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/event-handler-receiver.js:2:31:2:83 | '<h2><a ... ></h2>' | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/event-handler-receiver.js:2:31:2:83 | '<h2><a ... ></h2>' | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/event-handler-receiver.js:2:31:2:83 | '<h2><a ... ></h2>' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/event-handler-receiver.js:2:31:2:83 | '<h2><a ... ></h2>' | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/event-handler-receiver.js:2:49:2:61 | location.href | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/event-handler-receiver.js:2:49:2:61 | location.href | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/event-handler-receiver.js:2:49:2:61 | location.href | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/event-handler-receiver.js:2:49:2:61 | location.href | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/event-handler-receiver.js:2:65:2:83 | '">A link</a></h2>' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/event-handler-receiver.js:2:65:2:83 | '">A link</a></h2>' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/event-handler-receiver.js:2:65:2:83 | '">A link</a></h2>' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/event-handler-receiver.js:2:65:2:83 | '">A link</a></h2>' | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/express.js:1:23:1:31 | 'express' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/express.js:1:23:1:31 | 'express' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/express.js:1:23:1:31 | 'express' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/express.js:1:23:1:31 | 'express' | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/express.js:5:9:5:20 | '/some/path' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/express.js:5:9:5:20 | '/some/path' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/express.js:5:9:5:20 | '/some/path' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/express.js:5:9:5:20 | '/some/path' | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/express.js:5:9:5:20 | '/some/path' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/express.js:5:9:5:20 | '/some/path' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/express.js:5:9:5:20 | '/some/path' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/express.js:5:9:5:20 | '/some/path' | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/express.js:5:9:5:20 | '/some/path' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/express.js:5:9:5:20 | '/some/path' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/express.js:5:9:5:20 | '/some/path' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/express.js:5:9:5:20 | '/some/path' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/express.js:5:9:5:20 | '/some/path' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/express.js:5:9:5:20 | '/some/path' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/express.js:5:9:5:20 | '/some/path' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/express.js:5:9:5:20 | '/some/path' | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/express.js:5:23:11:1 | functio ... " });\\n} | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/express.js:5:23:11:1 | functio ... " });\\n} | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/express.js:5:23:11:1 | functio ... " });\\n} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/express.js:5:23:11:1 | functio ... " });\\n} | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/express.js:5:23:11:1 | functio ... " });\\n} | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/express.js:5:23:11:1 | functio ... " });\\n} | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/express.js:5:23:11:1 | functio ... " });\\n} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/express.js:5:23:11:1 | functio ... " });\\n} | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/express.js:5:23:11:1 | functio ... " });\\n} | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/express.js:5:23:11:1 | functio ... " });\\n} | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/express.js:5:23:11:1 | functio ... " });\\n} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/express.js:5:23:11:1 | functio ... " });\\n} | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/express.js:5:23:11:1 | functio ... " });\\n} | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/express.js:5:23:11:1 | functio ... " });\\n} | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/express.js:5:23:11:1 | functio ... " });\\n} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/express.js:5:23:11:1 | functio ... " });\\n} | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/express.js:7:15:7:33 | req.param("wobble") | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/express.js:7:15:7:33 | req.param("wobble") | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/express.js:7:15:7:33 | req.param("wobble") | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/express.js:7:15:7:33 | req.param("wobble") | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/express.js:7:25:7:32 | "wobble" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/express.js:7:25:7:32 | "wobble" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/express.js:7:25:7:32 | "wobble" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/express.js:7:25:7:32 | "wobble" | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/express.js:7:25:7:32 | "wobble" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/express.js:7:25:7:32 | "wobble" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/express.js:7:25:7:32 | "wobble" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/express.js:7:25:7:32 | "wobble" | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/express.js:7:25:7:32 | "wobble" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/express.js:7:25:7:32 | "wobble" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/express.js:7:25:7:32 | "wobble" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/express.js:7:25:7:32 | "wobble" | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/express.js:10:25:10:32 | "wobble" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/express.js:10:25:10:32 | "wobble" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/express.js:10:25:10:32 | "wobble" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/express.js:10:25:10:32 | "wobble" | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/express.js:10:25:10:32 | "wobble" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/express.js:10:25:10:32 | "wobble" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/express.js:10:25:10:32 | "wobble" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/express.js:10:25:10:32 | "wobble" | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/express.js:10:25:10:32 | "wobble" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/express.js:10:25:10:32 | "wobble" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/express.js:10:25:10:32 | "wobble" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/express.js:10:25:10:32 | "wobble" | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/jquery.js:4:5:4:11 | tainted | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/jquery.js:4:5:4:11 | tainted | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/jquery.js:4:5:4:11 | tainted | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/jquery.js:4:5:4:11 | tainted | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/jquery.js:5:5:5:10 | "body" | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/jquery.js:5:5:5:10 | "body" | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/jquery.js:5:5:5:10 | "body" | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/jquery.js:5:5:5:10 | "body" | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/jquery.js:5:5:5:10 | "body" | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/jquery.js:5:5:5:10 | "body" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/jquery.js:5:5:5:10 | "body" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/jquery.js:5:5:5:10 | "body" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/jquery.js:5:5:5:10 | "body" | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/jquery.js:5:5:5:10 | "body" | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/jquery.js:5:5:5:10 | "body" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/jquery.js:5:5:5:10 | "body" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/jquery.js:5:5:5:10 | "body" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/jquery.js:5:5:5:10 | "body" | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/jquery.js:5:5:5:10 | "body" | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/jquery.js:5:5:5:10 | "body" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/jquery.js:5:5:5:10 | "body" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/jquery.js:5:5:5:10 | "body" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/jquery.js:5:5:5:10 | "body" | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/jquery.js:5:5:5:10 | "body" | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/jquery.js:5:13:5:19 | tainted | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/jquery.js:5:13:5:19 | tainted | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/jquery.js:5:13:5:19 | tainted | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/jquery.js:5:13:5:19 | tainted | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/jquery.js:5:13:5:19 | tainted | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/jquery.js:5:13:5:19 | tainted | SqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/jquery.js:5:13:5:19 | tainted | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/jquery.js:5:13:5:19 | tainted | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/jquery.js:5:13:5:19 | tainted | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/jquery.js:5:13:5:19 | tainted | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/jquery.js:5:13:5:19 | tainted | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/jquery.js:5:13:5:19 | tainted | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/jquery.js:5:13:5:19 | tainted | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/jquery.js:5:13:5:19 | tainted | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/jquery.js:5:13:5:19 | tainted | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/jquery.js:5:13:5:19 | tainted | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/jquery.js:5:13:5:19 | tainted | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/jquery.js:5:13:5:19 | tainted | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/jquery.js:5:13:5:19 | tainted | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/jquery.js:5:13:5:19 | tainted | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/jquery.js:6:5:6:17 | "." + tainted | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/jquery.js:6:5:6:17 | "." + tainted | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/jquery.js:6:5:6:17 | "." + tainted | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/jquery.js:6:5:6:17 | "." + tainted | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/jquery.js:6:5:6:17 | "." + tainted | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/jquery.js:6:5:6:17 | "." + tainted | SqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/jquery.js:6:5:6:17 | "." + tainted | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/jquery.js:6:5:6:17 | "." + tainted | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/jquery.js:6:5:6:17 | "." + tainted | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/jquery.js:6:5:6:17 | "." + tainted | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/jquery.js:6:5:6:17 | "." + tainted | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/jquery.js:6:5:6:17 | "." + tainted | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/jquery.js:6:5:6:17 | "." + tainted | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/jquery.js:6:5:6:17 | "." + tainted | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/jquery.js:6:5:6:17 | "." + tainted | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/jquery.js:6:5:6:17 | "." + tainted | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/jquery.js:6:5:6:17 | "." + tainted | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/jquery.js:6:5:6:17 | "." + tainted | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/jquery.js:6:5:6:17 | "." + tainted | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/jquery.js:6:5:6:17 | "." + tainted | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/jquery.js:7:5:7:16 | "<div id=\\"" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/jquery.js:7:5:7:16 | "<div id=\\"" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/jquery.js:7:5:7:16 | "<div id=\\"" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/jquery.js:7:5:7:16 | "<div id=\\"" | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/jquery.js:7:5:7:34 | "<div i ... + "\\">" | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/jquery.js:7:5:7:34 | "<div i ... + "\\">" | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/jquery.js:7:5:7:34 | "<div i ... + "\\">" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/jquery.js:7:5:7:34 | "<div i ... + "\\">" | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/jquery.js:7:20:7:26 | tainted | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/jquery.js:7:20:7:26 | tainted | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/jquery.js:7:20:7:26 | tainted | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/jquery.js:7:20:7:26 | tainted | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/jquery.js:7:30:7:34 | "\\">" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/jquery.js:7:30:7:34 | "\\">" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/jquery.js:7:30:7:34 | "\\">" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/jquery.js:7:30:7:34 | "\\">" | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/jquery.js:8:5:8:10 | "body" | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/jquery.js:8:5:8:10 | "body" | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/jquery.js:8:5:8:10 | "body" | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/jquery.js:8:5:8:10 | "body" | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/jquery.js:8:5:8:10 | "body" | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/jquery.js:8:5:8:10 | "body" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/jquery.js:8:5:8:10 | "body" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/jquery.js:8:5:8:10 | "body" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/jquery.js:8:5:8:10 | "body" | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/jquery.js:8:5:8:10 | "body" | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/jquery.js:8:5:8:10 | "body" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/jquery.js:8:5:8:10 | "body" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/jquery.js:8:5:8:10 | "body" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/jquery.js:8:5:8:10 | "body" | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/jquery.js:8:5:8:10 | "body" | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/jquery.js:8:5:8:10 | "body" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/jquery.js:8:5:8:10 | "body" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/jquery.js:8:5:8:10 | "body" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/jquery.js:8:5:8:10 | "body" | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/jquery.js:8:5:8:10 | "body" | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/jquery.js:8:18:8:34 | "XSS: " + tainted | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/jquery.js:8:18:8:34 | "XSS: " + tainted | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/jquery.js:8:18:8:34 | "XSS: " + tainted | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/jquery.js:8:18:8:34 | "XSS: " + tainted | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/jquery.js:9:5:9:24 | window.location.hash | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/jquery.js:9:5:9:24 | window.location.hash | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/jquery.js:9:5:9:24 | window.location.hash | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/jquery.js:9:5:9:24 | window.location.hash | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/jquery.js:10:5:10:9 | "<b>" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/jquery.js:10:5:10:9 | "<b>" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/jquery.js:10:5:10:9 | "<b>" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/jquery.js:10:5:10:9 | "<b>" | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/jquery.js:10:5:10:40 | "<b>" + ...  "</b>" | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/jquery.js:10:5:10:40 | "<b>" + ...  "</b>" | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/jquery.js:10:5:10:40 | "<b>" + ...  "</b>" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/jquery.js:10:5:10:40 | "<b>" + ...  "</b>" | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/jquery.js:10:13:10:31 | location.toString() | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/jquery.js:10:13:10:31 | location.toString() | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/jquery.js:10:13:10:31 | location.toString() | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/jquery.js:10:13:10:31 | location.toString() | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/jquery.js:10:35:10:40 | "</b>" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/jquery.js:10:35:10:40 | "</b>" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/jquery.js:10:35:10:40 | "</b>" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/jquery.js:10:35:10:40 | "</b>" | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/jquery.js:13:37:13:39 | 'x' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/jquery.js:13:37:13:39 | 'x' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/jquery.js:13:37:13:39 | 'x' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/jquery.js:13:37:13:39 | 'x' | NosqlInjection | notASinkReason | DOM | string |
-| autogenerated/Xss/DomBasedXss/jquery.js:13:37:13:39 | 'x' | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/jquery.js:13:37:13:39 | 'x' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/jquery.js:13:37:13:39 | 'x' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/jquery.js:13:37:13:39 | 'x' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/jquery.js:13:37:13:39 | 'x' | SqlInjection | notASinkReason | DOM | string |
-| autogenerated/Xss/DomBasedXss/jquery.js:13:37:13:39 | 'x' | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/jquery.js:13:37:13:39 | 'x' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/jquery.js:13:37:13:39 | 'x' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/jquery.js:13:37:13:39 | 'x' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/jquery.js:13:37:13:39 | 'x' | TaintedPath | notASinkReason | DOM | string |
-| autogenerated/Xss/DomBasedXss/jquery.js:13:37:13:39 | 'x' | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/jquery.js:13:37:13:39 | 'x' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/jquery.js:13:37:13:39 | 'x' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/jquery.js:13:37:13:39 | 'x' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/jquery.js:13:37:13:39 | 'x' | Xss | notASinkReason | DOM | string |
-| autogenerated/Xss/DomBasedXss/jquery.js:13:37:13:39 | 'x' | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/jquery.js:14:19:14:58 | decodeU ... n.hash) | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/jquery.js:14:19:14:58 | decodeU ... n.hash) | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/jquery.js:14:19:14:58 | decodeU ... n.hash) | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/jquery.js:14:19:14:58 | decodeU ... n.hash) | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/jquery.js:15:19:15:60 | decodeU ... search) | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/jquery.js:15:19:15:60 | decodeU ... search) | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/jquery.js:15:19:15:60 | decodeU ... search) | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/jquery.js:15:19:15:60 | decodeU ... search) | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/jquery.js:16:19:16:64 | decodeU ... ring()) | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/jquery.js:16:19:16:64 | decodeU ... ring()) | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/jquery.js:16:19:16:64 | decodeU ... ring()) | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/jquery.js:16:19:16:64 | decodeU ... ring()) | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/jwt-server.js:1:23:1:31 | 'express' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/jwt-server.js:1:23:1:31 | 'express' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/jwt-server.js:1:23:1:31 | 'express' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/jwt-server.js:1:23:1:31 | 'express' | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/jwt-server.js:6:9:6:20 | '/some/path' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/jwt-server.js:6:9:6:20 | '/some/path' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/jwt-server.js:6:9:6:20 | '/some/path' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/jwt-server.js:6:9:6:20 | '/some/path' | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/jwt-server.js:6:9:6:20 | '/some/path' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/jwt-server.js:6:9:6:20 | '/some/path' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/jwt-server.js:6:9:6:20 | '/some/path' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/jwt-server.js:6:9:6:20 | '/some/path' | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/jwt-server.js:6:9:6:20 | '/some/path' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/jwt-server.js:6:9:6:20 | '/some/path' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/jwt-server.js:6:9:6:20 | '/some/path' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/jwt-server.js:6:9:6:20 | '/some/path' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/jwt-server.js:6:9:6:20 | '/some/path' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/jwt-server.js:6:9:6:20 | '/some/path' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/jwt-server.js:6:9:6:20 | '/some/path' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/jwt-server.js:6:9:6:20 | '/some/path' | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/jwt-server.js:6:23:13:1 | functio ...   });\\n} | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/jwt-server.js:6:23:13:1 | functio ...   });\\n} | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/jwt-server.js:6:23:13:1 | functio ...   });\\n} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/jwt-server.js:6:23:13:1 | functio ...   });\\n} | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/jwt-server.js:6:23:13:1 | functio ...   });\\n} | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/jwt-server.js:6:23:13:1 | functio ...   });\\n} | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/jwt-server.js:6:23:13:1 | functio ...   });\\n} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/jwt-server.js:6:23:13:1 | functio ...   });\\n} | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/jwt-server.js:6:23:13:1 | functio ...   });\\n} | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/jwt-server.js:6:23:13:1 | functio ...   });\\n} | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/jwt-server.js:6:23:13:1 | functio ...   });\\n} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/jwt-server.js:6:23:13:1 | functio ...   });\\n} | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/jwt-server.js:6:23:13:1 | functio ...   });\\n} | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/jwt-server.js:6:23:13:1 | functio ...   });\\n} | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/jwt-server.js:6:23:13:1 | functio ...   });\\n} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/jwt-server.js:6:23:13:1 | functio ...   });\\n} | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/jwt-server.js:7:27:7:34 | "wobble" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/jwt-server.js:7:27:7:34 | "wobble" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/jwt-server.js:7:27:7:34 | "wobble" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/jwt-server.js:7:27:7:34 | "wobble" | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/jwt-server.js:7:27:7:34 | "wobble" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/jwt-server.js:7:27:7:34 | "wobble" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/jwt-server.js:7:27:7:34 | "wobble" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/jwt-server.js:7:27:7:34 | "wobble" | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/jwt-server.js:7:27:7:34 | "wobble" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/jwt-server.js:7:27:7:34 | "wobble" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/jwt-server.js:7:27:7:34 | "wobble" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/jwt-server.js:7:27:7:34 | "wobble" | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/jwt-server.js:11:19:11:29 | decoded.foo | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/jwt-server.js:11:19:11:29 | decoded.foo | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/jwt-server.js:11:19:11:29 | decoded.foo | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/jwt-server.js:11:19:11:29 | decoded.foo | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/jwt.js:4:8:4:17 | loginUrl() | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/jwt.js:4:8:4:17 | loginUrl() | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/jwt.js:4:8:4:17 | loginUrl() | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/jwt.js:4:8:4:17 | loginUrl() | NosqlInjection | notASinkReason | ClientRequest | string |
-| autogenerated/Xss/DomBasedXss/jwt.js:4:8:4:17 | loginUrl() | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/jwt.js:4:8:4:17 | loginUrl() | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/jwt.js:4:8:4:17 | loginUrl() | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/jwt.js:4:8:4:17 | loginUrl() | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/jwt.js:4:8:4:17 | loginUrl() | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/jwt.js:4:8:4:17 | loginUrl() | SqlInjection | notASinkReason | ClientRequest | string |
-| autogenerated/Xss/DomBasedXss/jwt.js:4:8:4:17 | loginUrl() | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/jwt.js:4:8:4:17 | loginUrl() | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/jwt.js:4:8:4:17 | loginUrl() | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/jwt.js:4:8:4:17 | loginUrl() | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/jwt.js:4:8:4:17 | loginUrl() | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/jwt.js:4:8:4:17 | loginUrl() | TaintedPath | notASinkReason | ClientRequest | string |
-| autogenerated/Xss/DomBasedXss/jwt.js:4:8:4:17 | loginUrl() | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/jwt.js:4:8:4:17 | loginUrl() | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/jwt.js:4:8:4:17 | loginUrl() | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/jwt.js:4:8:4:17 | loginUrl() | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/jwt.js:4:8:4:17 | loginUrl() | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/jwt.js:4:8:4:17 | loginUrl() | Xss | notASinkReason | ClientRequest | string |
-| autogenerated/Xss/DomBasedXss/jwt.js:4:8:4:17 | loginUrl() | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/jwt.js:4:8:4:17 | loginUrl() | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/jwt.js:4:20:4:32 | {data: "foo"} | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/jwt.js:4:20:4:32 | {data: "foo"} | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/jwt.js:4:20:4:32 | {data: "foo"} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/jwt.js:4:20:4:32 | {data: "foo"} | NosqlInjection | notASinkReason | ClientRequest | string |
-| autogenerated/Xss/DomBasedXss/jwt.js:4:20:4:32 | {data: "foo"} | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/jwt.js:4:20:4:32 | {data: "foo"} | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/jwt.js:4:20:4:32 | {data: "foo"} | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/jwt.js:4:20:4:32 | {data: "foo"} | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/jwt.js:4:20:4:32 | {data: "foo"} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/jwt.js:4:20:4:32 | {data: "foo"} | SqlInjection | notASinkReason | ClientRequest | string |
-| autogenerated/Xss/DomBasedXss/jwt.js:4:20:4:32 | {data: "foo"} | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/jwt.js:4:20:4:32 | {data: "foo"} | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/jwt.js:4:20:4:32 | {data: "foo"} | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/jwt.js:4:20:4:32 | {data: "foo"} | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/jwt.js:4:20:4:32 | {data: "foo"} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/jwt.js:4:20:4:32 | {data: "foo"} | TaintedPath | notASinkReason | ClientRequest | string |
-| autogenerated/Xss/DomBasedXss/jwt.js:4:20:4:32 | {data: "foo"} | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/jwt.js:4:20:4:32 | {data: "foo"} | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/jwt.js:4:20:4:32 | {data: "foo"} | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/jwt.js:4:20:4:32 | {data: "foo"} | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/jwt.js:4:20:4:32 | {data: "foo"} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/jwt.js:4:20:4:32 | {data: "foo"} | Xss | notASinkReason | ClientRequest | string |
-| autogenerated/Xss/DomBasedXss/jwt.js:4:20:4:32 | {data: "foo"} | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/jwt.js:4:20:4:32 | {data: "foo"} | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/jwt.js:4:27:4:31 | "foo" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/jwt.js:4:27:4:31 | "foo" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/jwt.js:4:27:4:31 | "foo" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/jwt.js:4:27:4:31 | "foo" | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/jwt.js:4:27:4:31 | "foo" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/jwt.js:4:27:4:31 | "foo" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/jwt.js:4:27:4:31 | "foo" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/jwt.js:4:27:4:31 | "foo" | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/jwt.js:4:27:4:31 | "foo" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/jwt.js:4:27:4:31 | "foo" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/jwt.js:4:27:4:31 | "foo" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/jwt.js:4:27:4:31 | "foo" | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/jwt.js:4:35:7:1 | (data,  ... ENCY]\\n} | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/jwt.js:4:35:7:1 | (data,  ... ENCY]\\n} | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/jwt.js:4:35:7:1 | (data,  ... ENCY]\\n} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/jwt.js:4:35:7:1 | (data,  ... ENCY]\\n} | NosqlInjection | notASinkReason | ClientRequest | string |
-| autogenerated/Xss/DomBasedXss/jwt.js:4:35:7:1 | (data,  ... ENCY]\\n} | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/jwt.js:4:35:7:1 | (data,  ... ENCY]\\n} | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/jwt.js:4:35:7:1 | (data,  ... ENCY]\\n} | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/jwt.js:4:35:7:1 | (data,  ... ENCY]\\n} | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/jwt.js:4:35:7:1 | (data,  ... ENCY]\\n} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/jwt.js:4:35:7:1 | (data,  ... ENCY]\\n} | SqlInjection | notASinkReason | ClientRequest | string |
-| autogenerated/Xss/DomBasedXss/jwt.js:4:35:7:1 | (data,  ... ENCY]\\n} | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/jwt.js:4:35:7:1 | (data,  ... ENCY]\\n} | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/jwt.js:4:35:7:1 | (data,  ... ENCY]\\n} | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/jwt.js:4:35:7:1 | (data,  ... ENCY]\\n} | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/jwt.js:4:35:7:1 | (data,  ... ENCY]\\n} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/jwt.js:4:35:7:1 | (data,  ... ENCY]\\n} | TaintedPath | notASinkReason | ClientRequest | string |
-| autogenerated/Xss/DomBasedXss/jwt.js:4:35:7:1 | (data,  ... ENCY]\\n} | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/jwt.js:4:35:7:1 | (data,  ... ENCY]\\n} | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/jwt.js:4:35:7:1 | (data,  ... ENCY]\\n} | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/jwt.js:4:35:7:1 | (data,  ... ENCY]\\n} | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/jwt.js:4:35:7:1 | (data,  ... ENCY]\\n} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/jwt.js:4:35:7:1 | (data,  ... ENCY]\\n} | Xss | notASinkReason | ClientRequest | string |
-| autogenerated/Xss/DomBasedXss/jwt.js:4:35:7:1 | (data,  ... ENCY]\\n} | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/jwt.js:4:35:7:1 | (data,  ... ENCY]\\n} | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/jwt.js:6:14:6:20 | decoded | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/jwt.js:6:14:6:20 | decoded | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/jwt.js:6:14:6:20 | decoded | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/jwt.js:6:14:6:20 | decoded | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:1:26:1:37 | 'nodemailer' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:1:26:1:37 | 'nodemailer' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:1:26:1:37 | 'nodemailer' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:1:26:1:37 | 'nodemailer' | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:2:23:2:31 | 'express' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:2:23:2:31 | 'express' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:2:23:2:31 | 'express' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:2:23:2:31 | 'express' | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:4:23:4:33 | './backend' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:4:23:4:33 | './backend' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:4:23:4:33 | './backend' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:4:23:4:33 | './backend' | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:6:10:6:27 | '/private_message' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:6:10:6:27 | '/private_message' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:6:10:6:27 | '/private_message' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:6:10:6:27 | '/private_message' | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:6:10:6:27 | '/private_message' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:6:10:6:27 | '/private_message' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:6:10:6:27 | '/private_message' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:6:10:6:27 | '/private_message' | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:6:10:6:27 | '/private_message' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:6:10:6:27 | '/private_message' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:6:10:6:27 | '/private_message' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:6:10:6:27 | '/private_message' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:6:10:6:27 | '/private_message' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:6:10:6:27 | '/private_message' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:6:10:6:27 | '/private_message' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:6:10:6:27 | '/private_message' | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:6:30:15:1 | (req, r ...   });\\n} | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:6:30:15:1 | (req, r ...   });\\n} | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:6:30:15:1 | (req, r ...   });\\n} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:6:30:15:1 | (req, r ...   });\\n} | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:6:30:15:1 | (req, r ...   });\\n} | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:6:30:15:1 | (req, r ...   });\\n} | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:6:30:15:1 | (req, r ...   });\\n} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:6:30:15:1 | (req, r ...   });\\n} | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:6:30:15:1 | (req, r ...   });\\n} | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:6:30:15:1 | (req, r ...   });\\n} | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:6:30:15:1 | (req, r ...   });\\n} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:6:30:15:1 | (req, r ...   });\\n} | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:6:30:15:1 | (req, r ...   });\\n} | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:6:30:15:1 | (req, r ...   });\\n} | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:6:30:15:1 | (req, r ...   });\\n} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:6:30:15:1 | (req, r ...   });\\n} | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:7:46:7:47 | {} | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:7:46:7:47 | {} | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:7:46:7:47 | {} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:7:46:7:47 | {} | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:7:46:7:47 | {} | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:7:46:7:47 | {} | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:7:46:7:47 | {} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:7:46:7:47 | {} | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:7:46:7:47 | {} | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:7:46:7:47 | {} | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:7:46:7:47 | {} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:7:46:7:47 | {} | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:7:46:7:47 | {} | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:7:46:7:47 | {} | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:7:46:7:47 | {} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:7:46:7:47 | {} | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:8:22:14:3 | {\\n    f ...  OK\\n  } | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:8:22:14:3 | {\\n    f ...  OK\\n  } | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:8:22:14:3 | {\\n    f ...  OK\\n  } | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:8:22:14:3 | {\\n    f ...  OK\\n  } | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:8:22:14:3 | {\\n    f ...  OK\\n  } | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:8:22:14:3 | {\\n    f ...  OK\\n  } | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:8:22:14:3 | {\\n    f ...  OK\\n  } | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:8:22:14:3 | {\\n    f ...  OK\\n  } | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:8:22:14:3 | {\\n    f ...  OK\\n  } | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:8:22:14:3 | {\\n    f ...  OK\\n  } | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:8:22:14:3 | {\\n    f ...  OK\\n  } | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:8:22:14:3 | {\\n    f ...  OK\\n  } | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:8:22:14:3 | {\\n    f ...  OK\\n  } | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:8:22:14:3 | {\\n    f ...  OK\\n  } | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:8:22:14:3 | {\\n    f ...  OK\\n  } | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:8:22:14:3 | {\\n    f ...  OK\\n  } | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:9:11:9:33 | 'webmas ... le.com' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:9:11:9:33 | 'webmas ... le.com' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:9:11:9:33 | 'webmas ... le.com' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:9:11:9:33 | 'webmas ... le.com' | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:9:11:9:33 | 'webmas ... le.com' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:9:11:9:33 | 'webmas ... le.com' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:9:11:9:33 | 'webmas ... le.com' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:9:11:9:33 | 'webmas ... le.com' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:9:11:9:33 | 'webmas ... le.com' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:9:11:9:33 | 'webmas ... le.com' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:9:11:9:33 | 'webmas ... le.com' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:9:11:9:33 | 'webmas ... le.com' | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:10:9:10:48 | backend ... ceiver) | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:10:9:10:48 | backend ... ceiver) | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:10:9:10:48 | backend ... ceiver) | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:10:9:10:48 | backend ... ceiver) | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:10:9:10:48 | backend ... ceiver) | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:10:9:10:48 | backend ... ceiver) | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:10:9:10:48 | backend ... ceiver) | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:10:9:10:48 | backend ... ceiver) | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:10:9:10:48 | backend ... ceiver) | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:10:9:10:48 | backend ... ceiver) | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:10:9:10:48 | backend ... ceiver) | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:10:9:10:48 | backend ... ceiver) | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:10:30:10:47 | req.query.receiver | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:10:30:10:47 | req.query.receiver | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:10:30:10:47 | req.query.receiver | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:10:30:10:47 | req.query.receiver | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:10:30:10:47 | req.query.receiver | SqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:10:30:10:47 | req.query.receiver | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:10:30:10:47 | req.query.receiver | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:10:30:10:47 | req.query.receiver | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:10:30:10:47 | req.query.receiver | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:10:30:10:47 | req.query.receiver | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:10:30:10:47 | req.query.receiver | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:10:30:10:47 | req.query.receiver | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:10:30:10:47 | req.query.receiver | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:10:30:10:47 | req.query.receiver | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:10:30:10:47 | req.query.receiver | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:10:30:10:47 | req.query.receiver | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:11:14:11:30 | 'Private message' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:11:14:11:30 | 'Private message' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:11:14:11:30 | 'Private message' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:11:14:11:30 | 'Private message' | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:11:14:11:30 | 'Private message' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:11:14:11:30 | 'Private message' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:11:14:11:30 | 'Private message' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:11:14:11:30 | 'Private message' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:11:14:11:30 | 'Private message' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:11:14:11:30 | 'Private message' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:11:14:11:30 | 'Private message' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:11:14:11:30 | 'Private message' | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:12:11:12:69 | `Hi, yo ... sage}.` | SqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:12:11:12:69 | `Hi, yo ... sage}.` | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:12:11:12:69 | `Hi, yo ... sage}.` | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:12:11:12:69 | `Hi, yo ... sage}.` | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:12:11:12:69 | `Hi, yo ... sage}.` | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:12:11:12:69 | `Hi, yo ... sage}.` | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:12:11:12:69 | `Hi, yo ... sage}.` | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:12:11:12:69 | `Hi, yo ... sage}.` | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:12:11:12:69 | `Hi, yo ... sage}.` | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:12:11:12:69 | `Hi, yo ... sage}.` | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:12:11:12:69 | `Hi, yo ... sage}.` | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:12:11:12:69 | `Hi, yo ... sage}.` | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:13:11:13:69 | `Hi, yo ... sage}.` | SqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:13:11:13:69 | `Hi, yo ... sage}.` | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:13:11:13:69 | `Hi, yo ... sage}.` | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:13:11:13:69 | `Hi, yo ... sage}.` | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:13:11:13:69 | `Hi, yo ... sage}.` | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:13:11:13:69 | `Hi, yo ... sage}.` | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:13:11:13:69 | `Hi, yo ... sage}.` | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:13:11:13:69 | `Hi, yo ... sage}.` | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:13:11:13:69 | `Hi, yo ... sage}.` | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:13:11:13:69 | `Hi, yo ... sage}.` | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:13:11:13:69 | `Hi, yo ... sage}.` | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:13:11:13:69 | `Hi, yo ... sage}.` | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:4:5:4:10 | 'myId' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:4:5:4:10 | 'myId' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:4:5:4:10 | 'myId' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:4:5:4:10 | 'myId' | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:4:5:4:10 | 'myId' | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:4:5:4:10 | 'myId' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:4:5:4:10 | 'myId' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:4:5:4:10 | 'myId' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:4:5:4:10 | 'myId' | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:4:5:4:10 | 'myId' | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:4:5:4:10 | 'myId' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:4:5:4:10 | 'myId' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:4:5:4:10 | 'myId' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:4:5:4:10 | 'myId' | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:4:5:4:10 | 'myId' | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:4:5:4:10 | 'myId' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:4:5:4:10 | 'myId' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:4:5:4:10 | 'myId' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:4:5:4:10 | 'myId' | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:4:5:4:10 | 'myId' | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:4:18:4:63 | sanitiz ...  target | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:4:18:4:63 | sanitiz ...  target | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:4:18:4:63 | sanitiz ...  target | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:4:18:4:63 | sanitiz ...  target | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:6:5:6:10 | 'myId' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:6:5:6:10 | 'myId' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:6:5:6:10 | 'myId' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:6:5:6:10 | 'myId' | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:6:5:6:10 | 'myId' | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:6:5:6:10 | 'myId' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:6:5:6:10 | 'myId' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:6:5:6:10 | 'myId' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:6:5:6:10 | 'myId' | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:6:5:6:10 | 'myId' | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:6:5:6:10 | 'myId' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:6:5:6:10 | 'myId' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:6:5:6:10 | 'myId' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:6:5:6:10 | 'myId' | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:6:5:6:10 | 'myId' | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:6:5:6:10 | 'myId' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:6:5:6:10 | 'myId' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:6:5:6:10 | 'myId' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:6:5:6:10 | 'myId' | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:6:5:6:10 | 'myId' | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:6:18:6:23 | target | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:6:18:6:23 | target | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:6:18:6:23 | target | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:6:18:6:23 | target | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:9:5:9:10 | 'myId' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:9:5:9:10 | 'myId' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:9:5:9:10 | 'myId' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:9:5:9:10 | 'myId' | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:9:5:9:10 | 'myId' | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:9:5:9:10 | 'myId' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:9:5:9:10 | 'myId' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:9:5:9:10 | 'myId' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:9:5:9:10 | 'myId' | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:9:5:9:10 | 'myId' | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:9:5:9:10 | 'myId' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:9:5:9:10 | 'myId' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:9:5:9:10 | 'myId' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:9:5:9:10 | 'myId' | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:9:5:9:10 | 'myId' | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:9:5:9:10 | 'myId' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:9:5:9:10 | 'myId' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:9:5:9:10 | 'myId' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:9:5:9:10 | 'myId' | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:9:5:9:10 | 'myId' | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:9:18:9:24 | tainted | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:9:18:9:24 | tainted | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:9:18:9:24 | tainted | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:9:18:9:24 | tainted | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:13:5:13:10 | 'myId' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:13:5:13:10 | 'myId' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:13:5:13:10 | 'myId' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:13:5:13:10 | 'myId' | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:13:5:13:10 | 'myId' | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:13:5:13:10 | 'myId' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:13:5:13:10 | 'myId' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:13:5:13:10 | 'myId' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:13:5:13:10 | 'myId' | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:13:5:13:10 | 'myId' | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:13:5:13:10 | 'myId' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:13:5:13:10 | 'myId' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:13:5:13:10 | 'myId' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:13:5:13:10 | 'myId' | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:13:5:13:10 | 'myId' | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:13:5:13:10 | 'myId' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:13:5:13:10 | 'myId' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:13:5:13:10 | 'myId' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:13:5:13:10 | 'myId' | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:13:5:13:10 | 'myId' | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:13:18:13:24 | tainted | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:13:18:13:24 | tainted | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:13:18:13:24 | tainted | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:13:18:13:24 | tainted | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:17:7:17:12 | 'myId' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:17:7:17:12 | 'myId' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:17:7:17:12 | 'myId' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:17:7:17:12 | 'myId' | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:17:7:17:12 | 'myId' | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:17:7:17:12 | 'myId' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:17:7:17:12 | 'myId' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:17:7:17:12 | 'myId' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:17:7:17:12 | 'myId' | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:17:7:17:12 | 'myId' | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:17:7:17:12 | 'myId' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:17:7:17:12 | 'myId' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:17:7:17:12 | 'myId' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:17:7:17:12 | 'myId' | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:17:7:17:12 | 'myId' | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:17:7:17:12 | 'myId' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:17:7:17:12 | 'myId' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:17:7:17:12 | 'myId' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:17:7:17:12 | 'myId' | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:17:7:17:12 | 'myId' | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:17:20:17:20 | x | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:17:20:17:20 | x | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:17:20:17:20 | x | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:17:20:17:20 | x | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:21:7:21:12 | 'myId' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:21:7:21:12 | 'myId' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:21:7:21:12 | 'myId' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:21:7:21:12 | 'myId' | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:21:7:21:12 | 'myId' | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:21:7:21:12 | 'myId' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:21:7:21:12 | 'myId' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:21:7:21:12 | 'myId' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:21:7:21:12 | 'myId' | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:21:7:21:12 | 'myId' | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:21:7:21:12 | 'myId' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:21:7:21:12 | 'myId' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:21:7:21:12 | 'myId' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:21:7:21:12 | 'myId' | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:21:7:21:12 | 'myId' | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:21:7:21:12 | 'myId' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:21:7:21:12 | 'myId' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:21:7:21:12 | 'myId' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:21:7:21:12 | 'myId' | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:21:7:21:12 | 'myId' | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:21:20:21:20 | x | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:21:20:21:20 | x | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:21:20:21:20 | x | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:21:20:21:20 | x | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:32:5:32:10 | 'myId' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:32:5:32:10 | 'myId' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:32:5:32:10 | 'myId' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:32:5:32:10 | 'myId' | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:32:5:32:10 | 'myId' | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:32:5:32:10 | 'myId' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:32:5:32:10 | 'myId' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:32:5:32:10 | 'myId' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:32:5:32:10 | 'myId' | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:32:5:32:10 | 'myId' | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:32:5:32:10 | 'myId' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:32:5:32:10 | 'myId' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:32:5:32:10 | 'myId' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:32:5:32:10 | 'myId' | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:32:5:32:10 | 'myId' | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:32:5:32:10 | 'myId' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:32:5:32:10 | 'myId' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:32:5:32:10 | 'myId' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:32:5:32:10 | 'myId' | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:32:5:32:10 | 'myId' | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:32:18:32:25 | tainted2 | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:32:18:32:25 | tainted2 | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:32:18:32:25 | tainted2 | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:32:18:32:25 | tainted2 | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:34:28:34:35 | tainted2 | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:34:28:34:35 | tainted2 | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:34:28:34:35 | tainted2 | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:34:28:34:35 | tainted2 | NosqlInjection | notASinkReason | DOM | string |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:34:28:34:35 | tainted2 | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:34:28:34:35 | tainted2 | SqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:34:28:34:35 | tainted2 | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:34:28:34:35 | tainted2 | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:34:28:34:35 | tainted2 | SqlInjection | notASinkReason | DOM | string |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:34:28:34:35 | tainted2 | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:34:28:34:35 | tainted2 | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:34:28:34:35 | tainted2 | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:34:28:34:35 | tainted2 | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:34:28:34:35 | tainted2 | TaintedPath | notASinkReason | DOM | string |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:34:28:34:35 | tainted2 | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:34:28:34:35 | tainted2 | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:34:28:34:35 | tainted2 | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:34:28:34:35 | tainted2 | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:34:28:34:35 | tainted2 | Xss | notASinkReason | DOM | string |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:34:28:34:35 | tainted2 | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:36:5:36:10 | 'myId' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:36:5:36:10 | 'myId' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:36:5:36:10 | 'myId' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:36:5:36:10 | 'myId' | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:36:5:36:10 | 'myId' | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:36:5:36:10 | 'myId' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:36:5:36:10 | 'myId' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:36:5:36:10 | 'myId' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:36:5:36:10 | 'myId' | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:36:5:36:10 | 'myId' | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:36:5:36:10 | 'myId' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:36:5:36:10 | 'myId' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:36:5:36:10 | 'myId' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:36:5:36:10 | 'myId' | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:36:5:36:10 | 'myId' | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:36:5:36:10 | 'myId' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:36:5:36:10 | 'myId' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:36:5:36:10 | 'myId' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:36:5:36:10 | 'myId' | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:36:5:36:10 | 'myId' | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:36:18:36:25 | tainted2 | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:36:18:36:25 | tainted2 | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:36:18:36:25 | tainted2 | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:36:18:36:25 | tainted2 | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:39:5:39:10 | 'myId' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:39:5:39:10 | 'myId' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:39:5:39:10 | 'myId' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:39:5:39:10 | 'myId' | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:39:5:39:10 | 'myId' | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:39:5:39:10 | 'myId' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:39:5:39:10 | 'myId' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:39:5:39:10 | 'myId' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:39:5:39:10 | 'myId' | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:39:5:39:10 | 'myId' | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:39:5:39:10 | 'myId' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:39:5:39:10 | 'myId' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:39:5:39:10 | 'myId' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:39:5:39:10 | 'myId' | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:39:5:39:10 | 'myId' | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:39:5:39:10 | 'myId' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:39:5:39:10 | 'myId' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:39:5:39:10 | 'myId' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:39:5:39:10 | 'myId' | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:39:5:39:10 | 'myId' | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:39:18:39:25 | tainted3 | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:39:18:39:25 | tainted3 | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:39:18:39:25 | tainted3 | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:39:18:39:25 | tainted3 | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:41:28:41:35 | tainted3 | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:41:28:41:35 | tainted3 | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:41:28:41:35 | tainted3 | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:41:28:41:35 | tainted3 | NosqlInjection | notASinkReason | DOM | string |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:41:28:41:35 | tainted3 | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:41:28:41:35 | tainted3 | SqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:41:28:41:35 | tainted3 | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:41:28:41:35 | tainted3 | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:41:28:41:35 | tainted3 | SqlInjection | notASinkReason | DOM | string |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:41:28:41:35 | tainted3 | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:41:28:41:35 | tainted3 | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:41:28:41:35 | tainted3 | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:41:28:41:35 | tainted3 | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:41:28:41:35 | tainted3 | TaintedPath | notASinkReason | DOM | string |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:41:28:41:35 | tainted3 | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:41:28:41:35 | tainted3 | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:41:28:41:35 | tainted3 | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:41:28:41:35 | tainted3 | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:41:28:41:35 | tainted3 | Xss | notASinkReason | DOM | string |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:41:28:41:35 | tainted3 | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:43:5:43:10 | 'myId' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:43:5:43:10 | 'myId' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:43:5:43:10 | 'myId' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:43:5:43:10 | 'myId' | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:43:5:43:10 | 'myId' | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:43:5:43:10 | 'myId' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:43:5:43:10 | 'myId' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:43:5:43:10 | 'myId' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:43:5:43:10 | 'myId' | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:43:5:43:10 | 'myId' | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:43:5:43:10 | 'myId' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:43:5:43:10 | 'myId' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:43:5:43:10 | 'myId' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:43:5:43:10 | 'myId' | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:43:5:43:10 | 'myId' | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:43:5:43:10 | 'myId' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:43:5:43:10 | 'myId' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:43:5:43:10 | 'myId' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:43:5:43:10 | 'myId' | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:43:5:43:10 | 'myId' | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:43:18:43:25 | tainted3 | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:43:18:43:25 | tainted3 | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:43:18:43:25 | tainted3 | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:43:18:43:25 | tainted3 | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:45:5:45:10 | 'myId' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:45:5:45:10 | 'myId' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:45:5:45:10 | 'myId' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:45:5:45:10 | 'myId' | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:45:5:45:10 | 'myId' | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:45:5:45:10 | 'myId' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:45:5:45:10 | 'myId' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:45:5:45:10 | 'myId' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:45:5:45:10 | 'myId' | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:45:5:45:10 | 'myId' | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:45:5:45:10 | 'myId' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:45:5:45:10 | 'myId' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:45:5:45:10 | 'myId' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:45:5:45:10 | 'myId' | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:45:5:45:10 | 'myId' | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:45:5:45:10 | 'myId' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:45:5:45:10 | 'myId' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:45:5:45:10 | 'myId' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:45:5:45:10 | 'myId' | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:45:5:45:10 | 'myId' | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:45:18:45:56 | sanitiz ...  target | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:45:18:45:56 | sanitiz ...  target | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:45:18:45:56 | sanitiz ...  target | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:45:18:45:56 | sanitiz ...  target | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:45:41:45:46 | target | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:45:41:45:46 | target | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:45:41:45:46 | target | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:45:41:45:46 | target | NosqlInjection | notASinkReason | DOM | string |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:45:41:45:46 | target | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:45:41:45:46 | target | SqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:45:41:45:46 | target | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:45:41:45:46 | target | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:45:41:45:46 | target | SqlInjection | notASinkReason | DOM | string |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:45:41:45:46 | target | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:45:41:45:46 | target | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:45:41:45:46 | target | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:45:41:45:46 | target | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:45:41:45:46 | target | TaintedPath | notASinkReason | DOM | string |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:45:41:45:46 | target | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:45:41:45:46 | target | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:45:41:45:46 | target | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:45:41:45:46 | target | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:45:41:45:46 | target | Xss | notASinkReason | DOM | string |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:45:41:45:46 | target | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/react-create-context.js:3:45:3:48 | null | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/react-create-context.js:3:45:3:48 | null | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/react-create-context.js:3:45:3:48 | null | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/react-create-context.js:3:45:3:48 | null | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/react-create-context.js:3:45:3:48 | null | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/react-create-context.js:3:45:3:48 | null | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/react-create-context.js:3:45:3:48 | null | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/react-create-context.js:3:45:3:48 | null | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/react-create-context.js:3:45:3:48 | null | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/react-create-context.js:3:45:3:48 | null | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/react-create-context.js:3:45:3:48 | null | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/react-create-context.js:3:45:3:48 | null | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/react-native.js:6:9:6:20 | '/some/path' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/react-native.js:6:9:6:20 | '/some/path' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/react-native.js:6:9:6:20 | '/some/path' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/react-native.js:6:9:6:20 | '/some/path' | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/react-native.js:6:9:6:20 | '/some/path' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/react-native.js:6:9:6:20 | '/some/path' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/react-native.js:6:9:6:20 | '/some/path' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/react-native.js:6:9:6:20 | '/some/path' | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/react-native.js:6:9:6:20 | '/some/path' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/react-native.js:6:9:6:20 | '/some/path' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/react-native.js:6:9:6:20 | '/some/path' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/react-native.js:6:9:6:20 | '/some/path' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/react-native.js:6:9:6:20 | '/some/path' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/react-native.js:6:9:6:20 | '/some/path' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/react-native.js:6:9:6:20 | '/some/path' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/react-native.js:6:9:6:20 | '/some/path' | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/react-native.js:6:23:10:1 | functio ... OT OK\\n} | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/react-native.js:6:23:10:1 | functio ... OT OK\\n} | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/react-native.js:6:23:10:1 | functio ... OT OK\\n} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/react-native.js:6:23:10:1 | functio ... OT OK\\n} | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/react-native.js:6:23:10:1 | functio ... OT OK\\n} | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/react-native.js:6:23:10:1 | functio ... OT OK\\n} | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/react-native.js:6:23:10:1 | functio ... OT OK\\n} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/react-native.js:6:23:10:1 | functio ... OT OK\\n} | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/react-native.js:6:23:10:1 | functio ... OT OK\\n} | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/react-native.js:6:23:10:1 | functio ... OT OK\\n} | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/react-native.js:6:23:10:1 | functio ... OT OK\\n} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/react-native.js:6:23:10:1 | functio ... OT OK\\n} | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/react-native.js:6:23:10:1 | functio ... OT OK\\n} | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/react-native.js:6:23:10:1 | functio ... OT OK\\n} | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/react-native.js:6:23:10:1 | functio ... OT OK\\n} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/react-native.js:6:23:10:1 | functio ... OT OK\\n} | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/react-native.js:7:27:7:32 | "code" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/react-native.js:7:27:7:32 | "code" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/react-native.js:7:27:7:32 | "code" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/react-native.js:7:27:7:32 | "code" | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/react-native.js:7:27:7:32 | "code" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/react-native.js:7:27:7:32 | "code" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/react-native.js:7:27:7:32 | "code" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/react-native.js:7:27:7:32 | "code" | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/react-native.js:7:27:7:32 | "code" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/react-native.js:7:27:7:32 | "code" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/react-native.js:7:27:7:32 | "code" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/react-native.js:7:27:7:32 | "code" | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/react-native.js:8:18:8:24 | tainted | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/react-native.js:8:18:8:24 | tainted | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/react-native.js:8:18:8:24 | tainted | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/react-native.js:8:18:8:24 | tainted | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/react-native.js:9:27:9:33 | tainted | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/react-native.js:9:27:9:33 | tainted | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/react-native.js:9:27:9:33 | tainted | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/react-native.js:9:27:9:33 | tainted | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/react-use-context.js:5:23:5:31 | MyContext | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/react-use-context.js:5:23:5:31 | MyContext | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/react-use-context.js:5:23:5:31 | MyContext | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/react-use-context.js:5:23:5:31 | MyContext | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/react-use-context.js:5:23:5:31 | MyContext | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/react-use-context.js:5:23:5:31 | MyContext | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/react-use-context.js:5:23:5:31 | MyContext | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/react-use-context.js:5:23:5:31 | MyContext | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/react-use-context.js:5:23:5:31 | MyContext | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/react-use-context.js:5:23:5:31 | MyContext | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/react-use-context.js:5:23:5:31 | MyContext | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/react-use-context.js:5:23:5:31 | MyContext | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/react-use-context.js:5:23:5:31 | MyContext | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/react-use-context.js:5:23:5:31 | MyContext | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/react-use-context.js:5:23:5:31 | MyContext | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/react-use-context.js:5:23:5:31 | MyContext | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/react-use-context.js:10:22:10:32 | window.name | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/react-use-context.js:10:22:10:32 | window.name | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/react-use-context.js:10:22:10:32 | window.name | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/react-use-context.js:10:22:10:32 | window.name | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/react-use-context.js:16:26:16:36 | window.name | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/react-use-context.js:16:26:16:36 | window.name | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/react-use-context.js:16:26:16:36 | window.name | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/react-use-context.js:16:26:16:36 | window.name | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/react-use-state.js:5:42:5:56 | {__html: state} | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/react-use-state.js:5:42:5:56 | {__html: state} | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/react-use-state.js:5:42:5:56 | {__html: state} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/react-use-state.js:5:42:5:56 | {__html: state} | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/react-use-state.js:5:51:5:55 | state | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/react-use-state.js:5:51:5:55 | state | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/react-use-state.js:5:51:5:55 | state | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/react-use-state.js:5:51:5:55 | state | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/react-use-state.js:11:42:11:56 | {__html: state} | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/react-use-state.js:11:42:11:56 | {__html: state} | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/react-use-state.js:11:42:11:56 | {__html: state} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/react-use-state.js:11:42:11:56 | {__html: state} | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/react-use-state.js:11:51:11:55 | state | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/react-use-state.js:11:51:11:55 | state | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/react-use-state.js:11:51:11:55 | state | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/react-use-state.js:11:51:11:55 | state | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/react-use-state.js:17:42:17:56 | {__html: state} | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/react-use-state.js:17:42:17:56 | {__html: state} | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/react-use-state.js:17:42:17:56 | {__html: state} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/react-use-state.js:17:42:17:56 | {__html: state} | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/react-use-state.js:17:51:17:55 | state | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/react-use-state.js:17:51:17:55 | state | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/react-use-state.js:17:51:17:55 | state | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/react-use-state.js:17:51:17:55 | state | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/react-use-state.js:23:35:23:38 | prev | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/react-use-state.js:23:35:23:38 | prev | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/react-use-state.js:23:35:23:38 | prev | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/react-use-state.js:23:35:23:38 | prev | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/react-use-state.js:32:42:32:56 | {__html: state} | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/react-use-state.js:32:42:32:56 | {__html: state} | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/react-use-state.js:32:42:32:56 | {__html: state} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/react-use-state.js:32:42:32:56 | {__html: state} | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/react-use-state.js:32:51:32:55 | state | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/react-use-state.js:32:51:32:55 | state | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/react-use-state.js:32:51:32:55 | state | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/react-use-state.js:32:51:32:55 | state | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:18:19:18:30 | "<a href=\\"" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:18:19:18:30 | "<a href=\\"" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:18:19:18:30 | "<a href=\\"" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:18:19:18:30 | "<a href=\\"" | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:18:19:18:91 | "<a hre ...  "</a>" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:18:19:18:91 | "<a hre ...  "</a>" | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:18:19:18:91 | "<a hre ...  "</a>" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:18:19:18:91 | "<a hre ...  "</a>" | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:18:34:18:52 | escapeAttr(tainted) | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:18:34:18:52 | escapeAttr(tainted) | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:18:34:18:52 | escapeAttr(tainted) | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:18:34:18:52 | escapeAttr(tainted) | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:18:56:18:60 | "\\">" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:18:56:18:60 | "\\">" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:18:56:18:60 | "\\">" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:18:56:18:60 | "\\">" | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:18:64:18:82 | escapeHtml(tainted) | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:18:64:18:82 | escapeHtml(tainted) | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:18:64:18:82 | escapeHtml(tainted) | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:18:64:18:82 | escapeHtml(tainted) | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:18:86:18:91 | "</a>" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:18:86:18:91 | "</a>" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:18:86:18:91 | "</a>" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:18:86:18:91 | "</a>" | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:19:19:19:25 | "<div>" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:19:19:19:25 | "<div>" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:19:19:19:25 | "<div>" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:19:19:19:25 | "<div>" | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:19:19:19:58 | "<div>" ... </div>" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:19:19:19:58 | "<div>" ... </div>" | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:19:19:19:58 | "<div>" ... </div>" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:19:19:19:58 | "<div>" ... </div>" | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:19:29:19:47 | escapeAttr(tainted) | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:19:29:19:47 | escapeAttr(tainted) | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:19:29:19:47 | escapeAttr(tainted) | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:19:29:19:47 | escapeAttr(tainted) | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:19:51:19:58 | "</div>" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:19:51:19:58 | "</div>" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:19:51:19:58 | "</div>" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:19:51:19:58 | "</div>" | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:22:18:22:24 | tainted | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:22:18:22:24 | tainted | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:22:18:22:24 | tainted | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:22:18:22:24 | tainted | NosqlInjection | notASinkReason | StringRegExpTest | string |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:22:18:22:24 | tainted | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:22:18:22:24 | tainted | SqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:22:18:22:24 | tainted | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:22:18:22:24 | tainted | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:22:18:22:24 | tainted | SqlInjection | notASinkReason | StringRegExpTest | string |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:22:18:22:24 | tainted | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:22:18:22:24 | tainted | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:22:18:22:24 | tainted | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:22:18:22:24 | tainted | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:22:18:22:24 | tainted | TaintedPath | notASinkReason | StringRegExpTest | string |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:22:18:22:24 | tainted | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:22:18:22:24 | tainted | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:22:18:22:24 | tainted | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:22:18:22:24 | tainted | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:22:18:22:24 | tainted | Xss | notASinkReason | StringRegExpTest | string |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:22:18:22:24 | tainted | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:23:21:23:25 | '<b>' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:23:21:23:25 | '<b>' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:23:21:23:25 | '<b>' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:23:21:23:25 | '<b>' | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:23:21:23:44 | '<b>' + ...  '</b>' | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:23:21:23:44 | '<b>' + ...  '</b>' | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:23:21:23:44 | '<b>' + ...  '</b>' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:23:21:23:44 | '<b>' + ...  '</b>' | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:23:29:23:35 | tainted | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:23:29:23:35 | tainted | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:23:29:23:35 | tainted | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:23:29:23:35 | tainted | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:23:39:23:44 | '</b>' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:23:39:23:44 | '</b>' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:23:39:23:44 | '</b>' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:23:39:23:44 | '</b>' | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:25:21:25:25 | '<b>' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:25:21:25:25 | '<b>' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:25:21:25:25 | '<b>' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:25:21:25:25 | '<b>' | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:25:21:25:44 | '<b>' + ...  '</b>' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:25:21:25:44 | '<b>' + ...  '</b>' | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:25:21:25:44 | '<b>' + ...  '</b>' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:25:21:25:44 | '<b>' + ...  '</b>' | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:25:29:25:35 | tainted | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:25:29:25:35 | tainted | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:25:29:25:35 | tainted | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:25:29:25:35 | tainted | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:25:39:25:44 | '</b>' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:25:39:25:44 | '</b>' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:25:39:25:44 | '</b>' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:25:39:25:44 | '</b>' | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:27:19:27:25 | tainted | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:27:19:27:25 | tainted | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:27:19:27:25 | tainted | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:27:19:27:25 | tainted | NosqlInjection | notASinkReason | StringRegExpTest | string |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:27:19:27:25 | tainted | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:27:19:27:25 | tainted | SqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:27:19:27:25 | tainted | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:27:19:27:25 | tainted | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:27:19:27:25 | tainted | SqlInjection | notASinkReason | StringRegExpTest | string |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:27:19:27:25 | tainted | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:27:19:27:25 | tainted | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:27:19:27:25 | tainted | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:27:19:27:25 | tainted | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:27:19:27:25 | tainted | TaintedPath | notASinkReason | StringRegExpTest | string |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:27:19:27:25 | tainted | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:27:19:27:25 | tainted | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:27:19:27:25 | tainted | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:27:19:27:25 | tainted | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:27:19:27:25 | tainted | Xss | notASinkReason | StringRegExpTest | string |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:27:19:27:25 | tainted | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:28:21:28:25 | '<b>' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:28:21:28:25 | '<b>' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:28:21:28:25 | '<b>' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:28:21:28:25 | '<b>' | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:28:21:28:44 | '<b>' + ...  '</b>' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:28:21:28:44 | '<b>' + ...  '</b>' | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:28:21:28:44 | '<b>' + ...  '</b>' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:28:21:28:44 | '<b>' + ...  '</b>' | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:28:29:28:35 | tainted | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:28:29:28:35 | tainted | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:28:29:28:35 | tainted | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:28:29:28:35 | tainted | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:28:39:28:44 | '</b>' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:28:39:28:44 | '</b>' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:28:39:28:44 | '</b>' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:28:39:28:44 | '</b>' | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:30:21:30:25 | '<b>' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:30:21:30:25 | '<b>' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:30:21:30:25 | '<b>' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:30:21:30:25 | '<b>' | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:30:21:30:44 | '<b>' + ...  '</b>' | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:30:21:30:44 | '<b>' + ...  '</b>' | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:30:21:30:44 | '<b>' + ...  '</b>' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:30:21:30:44 | '<b>' + ...  '</b>' | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:30:29:30:35 | tainted | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:30:29:30:35 | tainted | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:30:29:30:35 | tainted | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:30:29:30:35 | tainted | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:30:39:30:44 | '</b>' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:30:39:30:44 | '</b>' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:30:39:30:44 | '</b>' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:30:39:30:44 | '</b>' | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:32:18:32:24 | tainted | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:32:18:32:24 | tainted | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:32:18:32:24 | tainted | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:32:18:32:24 | tainted | NosqlInjection | notASinkReason | StringRegExpTest | string |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:32:18:32:24 | tainted | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:32:18:32:24 | tainted | SqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:32:18:32:24 | tainted | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:32:18:32:24 | tainted | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:32:18:32:24 | tainted | SqlInjection | notASinkReason | StringRegExpTest | string |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:32:18:32:24 | tainted | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:32:18:32:24 | tainted | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:32:18:32:24 | tainted | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:32:18:32:24 | tainted | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:32:18:32:24 | tainted | TaintedPath | notASinkReason | StringRegExpTest | string |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:32:18:32:24 | tainted | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:32:18:32:24 | tainted | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:32:18:32:24 | tainted | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:32:18:32:24 | tainted | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:32:18:32:24 | tainted | Xss | notASinkReason | StringRegExpTest | string |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:32:18:32:24 | tainted | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:33:21:33:25 | '<b>' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:33:21:33:25 | '<b>' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:33:21:33:25 | '<b>' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:33:21:33:25 | '<b>' | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:33:21:33:44 | '<b>' + ...  '</b>' | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:33:21:33:44 | '<b>' + ...  '</b>' | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:33:21:33:44 | '<b>' + ...  '</b>' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:33:21:33:44 | '<b>' + ...  '</b>' | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:33:29:33:35 | tainted | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:33:29:33:35 | tainted | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:33:29:33:35 | tainted | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:33:29:33:35 | tainted | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:33:39:33:44 | '</b>' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:33:39:33:44 | '</b>' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:33:39:33:44 | '</b>' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:33:39:33:44 | '</b>' | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:35:21:35:25 | '<b>' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:35:21:35:25 | '<b>' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:35:21:35:25 | '<b>' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:35:21:35:25 | '<b>' | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:35:21:35:44 | '<b>' + ...  '</b>' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:35:21:35:44 | '<b>' + ...  '</b>' | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:35:21:35:44 | '<b>' + ...  '</b>' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:35:21:35:44 | '<b>' + ...  '</b>' | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:35:29:35:35 | tainted | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:35:29:35:35 | tainted | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:35:29:35:35 | tainted | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:35:29:35:35 | tainted | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:35:39:35:44 | '</b>' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:35:39:35:44 | '</b>' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:35:39:35:44 | '</b>' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:35:39:35:44 | '</b>' | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:38:21:38:25 | '<b>' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:38:21:38:25 | '<b>' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:38:21:38:25 | '<b>' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:38:21:38:25 | '<b>' | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:38:21:38:44 | '<b>' + ...  '</b>' | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:38:21:38:44 | '<b>' + ...  '</b>' | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:38:21:38:44 | '<b>' + ...  '</b>' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:38:21:38:44 | '<b>' + ...  '</b>' | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:38:29:38:35 | tainted | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:38:29:38:35 | tainted | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:38:29:38:35 | tainted | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:38:29:38:35 | tainted | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:38:39:38:44 | '</b>' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:38:39:38:44 | '</b>' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:38:39:38:44 | '</b>' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:38:39:38:44 | '</b>' | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:40:21:40:25 | '<b>' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:40:21:40:25 | '<b>' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:40:21:40:25 | '<b>' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:40:21:40:25 | '<b>' | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:40:21:40:44 | '<b>' + ...  '</b>' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:40:21:40:44 | '<b>' + ...  '</b>' | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:40:21:40:44 | '<b>' + ...  '</b>' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:40:21:40:44 | '<b>' + ...  '</b>' | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:40:29:40:35 | tainted | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:40:29:40:35 | tainted | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:40:29:40:35 | tainted | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:40:29:40:35 | tainted | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:40:39:40:44 | '</b>' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:40:39:40:44 | '</b>' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:40:39:40:44 | '</b>' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:40:39:40:44 | '</b>' | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:43:21:43:25 | '<b>' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:43:21:43:25 | '<b>' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:43:21:43:25 | '<b>' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:43:21:43:25 | '<b>' | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:43:21:43:44 | '<b>' + ...  '</b>' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:43:21:43:44 | '<b>' + ...  '</b>' | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:43:21:43:44 | '<b>' + ...  '</b>' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:43:21:43:44 | '<b>' + ...  '</b>' | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:43:29:43:35 | tainted | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:43:29:43:35 | tainted | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:43:29:43:35 | tainted | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:43:29:43:35 | tainted | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:43:39:43:44 | '</b>' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:43:39:43:44 | '</b>' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:43:39:43:44 | '</b>' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:43:39:43:44 | '</b>' | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:45:21:45:25 | '<b>' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:45:21:45:25 | '<b>' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:45:21:45:25 | '<b>' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:45:21:45:25 | '<b>' | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:45:21:45:44 | '<b>' + ...  '</b>' | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:45:21:45:44 | '<b>' + ...  '</b>' | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:45:21:45:44 | '<b>' + ...  '</b>' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:45:21:45:44 | '<b>' + ...  '</b>' | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:45:29:45:35 | tainted | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:45:29:45:35 | tainted | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:45:29:45:35 | tainted | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:45:29:45:35 | tainted | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:45:39:45:44 | '</b>' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:45:39:45:44 | '</b>' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:45:39:45:44 | '</b>' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:45:39:45:44 | '</b>' | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:48:19:48:46 | tainted ... /g, '') | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:48:19:48:46 | tainted ... /g, '') | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:48:19:48:46 | tainted ... /g, '') | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:48:19:48:46 | tainted ... /g, '') | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:2:28:2:36 | 'session' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:2:28:2:36 | 'session' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:2:28:2:36 | 'session' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:2:28:2:36 | 'session' | NosqlInjection | notASinkReason | ReceiverStorage | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:2:28:2:36 | 'session' | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:2:28:2:36 | 'session' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:2:28:2:36 | 'session' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:2:28:2:36 | 'session' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:2:28:2:36 | 'session' | SqlInjection | notASinkReason | ReceiverStorage | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:2:28:2:36 | 'session' | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:2:28:2:36 | 'session' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:2:28:2:36 | 'session' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:2:28:2:36 | 'session' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:2:28:2:36 | 'session' | TaintedPath | notASinkReason | ReceiverStorage | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:2:28:2:36 | 'session' | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:2:28:2:36 | 'session' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:2:28:2:36 | 'session' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:2:28:2:36 | 'session' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:2:28:2:36 | 'session' | Xss | notASinkReason | ReceiverStorage | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:2:28:2:36 | 'session' | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:2:39:2:62 | documen ... .search | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:2:39:2:62 | documen ... .search | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:2:39:2:62 | documen ... .search | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:2:39:2:62 | documen ... .search | NosqlInjection | notASinkReason | ReceiverStorage | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:2:39:2:62 | documen ... .search | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:2:39:2:62 | documen ... .search | SqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:2:39:2:62 | documen ... .search | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:2:39:2:62 | documen ... .search | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:2:39:2:62 | documen ... .search | SqlInjection | notASinkReason | ReceiverStorage | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:2:39:2:62 | documen ... .search | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:2:39:2:62 | documen ... .search | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:2:39:2:62 | documen ... .search | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:2:39:2:62 | documen ... .search | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:2:39:2:62 | documen ... .search | TaintedPath | notASinkReason | ReceiverStorage | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:2:39:2:62 | documen ... .search | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:2:39:2:62 | documen ... .search | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:2:39:2:62 | documen ... .search | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:2:39:2:62 | documen ... .search | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:2:39:2:62 | documen ... .search | Xss | notASinkReason | ReceiverStorage | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:2:39:2:62 | documen ... .search | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:3:26:3:32 | 'local' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:3:26:3:32 | 'local' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:3:26:3:32 | 'local' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:3:26:3:32 | 'local' | NosqlInjection | notASinkReason | ReceiverStorage | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:3:26:3:32 | 'local' | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:3:26:3:32 | 'local' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:3:26:3:32 | 'local' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:3:26:3:32 | 'local' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:3:26:3:32 | 'local' | SqlInjection | notASinkReason | ReceiverStorage | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:3:26:3:32 | 'local' | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:3:26:3:32 | 'local' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:3:26:3:32 | 'local' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:3:26:3:32 | 'local' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:3:26:3:32 | 'local' | TaintedPath | notASinkReason | ReceiverStorage | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:3:26:3:32 | 'local' | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:3:26:3:32 | 'local' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:3:26:3:32 | 'local' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:3:26:3:32 | 'local' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:3:26:3:32 | 'local' | Xss | notASinkReason | ReceiverStorage | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:3:26:3:32 | 'local' | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:3:35:3:58 | documen ... .search | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:3:35:3:58 | documen ... .search | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:3:35:3:58 | documen ... .search | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:3:35:3:58 | documen ... .search | NosqlInjection | notASinkReason | ReceiverStorage | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:3:35:3:58 | documen ... .search | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:3:35:3:58 | documen ... .search | SqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:3:35:3:58 | documen ... .search | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:3:35:3:58 | documen ... .search | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:3:35:3:58 | documen ... .search | SqlInjection | notASinkReason | ReceiverStorage | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:3:35:3:58 | documen ... .search | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:3:35:3:58 | documen ... .search | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:3:35:3:58 | documen ... .search | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:3:35:3:58 | documen ... .search | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:3:35:3:58 | documen ... .search | TaintedPath | notASinkReason | ReceiverStorage | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:3:35:3:58 | documen ... .search | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:3:35:3:58 | documen ... .search | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:3:35:3:58 | documen ... .search | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:3:35:3:58 | documen ... .search | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:3:35:3:58 | documen ... .search | Xss | notASinkReason | ReceiverStorage | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:3:35:3:58 | documen ... .search | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:5:7:5:12 | 'myId' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:5:7:5:12 | 'myId' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:5:7:5:12 | 'myId' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:5:7:5:12 | 'myId' | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:5:7:5:12 | 'myId' | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:5:7:5:12 | 'myId' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:5:7:5:12 | 'myId' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:5:7:5:12 | 'myId' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:5:7:5:12 | 'myId' | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:5:7:5:12 | 'myId' | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:5:7:5:12 | 'myId' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:5:7:5:12 | 'myId' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:5:7:5:12 | 'myId' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:5:7:5:12 | 'myId' | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:5:7:5:12 | 'myId' | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:5:7:5:12 | 'myId' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:5:7:5:12 | 'myId' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:5:7:5:12 | 'myId' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:5:7:5:12 | 'myId' | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:5:7:5:12 | 'myId' | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:5:20:5:52 | session ... ssion') | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:5:20:5:52 | session ... ssion') | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:5:20:5:52 | session ... ssion') | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:5:20:5:52 | session ... ssion') | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:5:43:5:51 | 'session' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:5:43:5:51 | 'session' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:5:43:5:51 | 'session' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:5:43:5:51 | 'session' | NosqlInjection | notASinkReason | ReceiverStorage | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:5:43:5:51 | 'session' | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:5:43:5:51 | 'session' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:5:43:5:51 | 'session' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:5:43:5:51 | 'session' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:5:43:5:51 | 'session' | SqlInjection | notASinkReason | ReceiverStorage | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:5:43:5:51 | 'session' | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:5:43:5:51 | 'session' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:5:43:5:51 | 'session' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:5:43:5:51 | 'session' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:5:43:5:51 | 'session' | TaintedPath | notASinkReason | ReceiverStorage | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:5:43:5:51 | 'session' | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:5:43:5:51 | 'session' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:5:43:5:51 | 'session' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:5:43:5:51 | 'session' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:5:43:5:51 | 'session' | Xss | notASinkReason | ReceiverStorage | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:5:43:5:51 | 'session' | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:6:7:6:12 | 'myId' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:6:7:6:12 | 'myId' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:6:7:6:12 | 'myId' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:6:7:6:12 | 'myId' | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:6:7:6:12 | 'myId' | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:6:7:6:12 | 'myId' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:6:7:6:12 | 'myId' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:6:7:6:12 | 'myId' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:6:7:6:12 | 'myId' | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:6:7:6:12 | 'myId' | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:6:7:6:12 | 'myId' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:6:7:6:12 | 'myId' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:6:7:6:12 | 'myId' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:6:7:6:12 | 'myId' | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:6:7:6:12 | 'myId' | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:6:7:6:12 | 'myId' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:6:7:6:12 | 'myId' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:6:7:6:12 | 'myId' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:6:7:6:12 | 'myId' | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:6:7:6:12 | 'myId' | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:6:20:6:50 | localSt ... ssion') | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:6:20:6:50 | localSt ... ssion') | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:6:20:6:50 | localSt ... ssion') | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:6:20:6:50 | localSt ... ssion') | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:6:41:6:49 | 'session' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:6:41:6:49 | 'session' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:6:41:6:49 | 'session' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:6:41:6:49 | 'session' | NosqlInjection | notASinkReason | ReceiverStorage | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:6:41:6:49 | 'session' | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:6:41:6:49 | 'session' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:6:41:6:49 | 'session' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:6:41:6:49 | 'session' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:6:41:6:49 | 'session' | SqlInjection | notASinkReason | ReceiverStorage | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:6:41:6:49 | 'session' | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:6:41:6:49 | 'session' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:6:41:6:49 | 'session' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:6:41:6:49 | 'session' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:6:41:6:49 | 'session' | TaintedPath | notASinkReason | ReceiverStorage | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:6:41:6:49 | 'session' | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:6:41:6:49 | 'session' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:6:41:6:49 | 'session' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:6:41:6:49 | 'session' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:6:41:6:49 | 'session' | Xss | notASinkReason | ReceiverStorage | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:6:41:6:49 | 'session' | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:7:7:7:12 | 'myId' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:7:7:7:12 | 'myId' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:7:7:7:12 | 'myId' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:7:7:7:12 | 'myId' | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:7:7:7:12 | 'myId' | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:7:7:7:12 | 'myId' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:7:7:7:12 | 'myId' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:7:7:7:12 | 'myId' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:7:7:7:12 | 'myId' | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:7:7:7:12 | 'myId' | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:7:7:7:12 | 'myId' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:7:7:7:12 | 'myId' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:7:7:7:12 | 'myId' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:7:7:7:12 | 'myId' | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:7:7:7:12 | 'myId' | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:7:7:7:12 | 'myId' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:7:7:7:12 | 'myId' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:7:7:7:12 | 'myId' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:7:7:7:12 | 'myId' | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:7:7:7:12 | 'myId' | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:7:20:7:50 | session ... local') | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:7:20:7:50 | session ... local') | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:7:20:7:50 | session ... local') | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:7:20:7:50 | session ... local') | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:7:43:7:49 | 'local' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:7:43:7:49 | 'local' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:7:43:7:49 | 'local' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:7:43:7:49 | 'local' | NosqlInjection | notASinkReason | ReceiverStorage | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:7:43:7:49 | 'local' | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:7:43:7:49 | 'local' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:7:43:7:49 | 'local' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:7:43:7:49 | 'local' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:7:43:7:49 | 'local' | SqlInjection | notASinkReason | ReceiverStorage | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:7:43:7:49 | 'local' | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:7:43:7:49 | 'local' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:7:43:7:49 | 'local' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:7:43:7:49 | 'local' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:7:43:7:49 | 'local' | TaintedPath | notASinkReason | ReceiverStorage | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:7:43:7:49 | 'local' | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:7:43:7:49 | 'local' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:7:43:7:49 | 'local' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:7:43:7:49 | 'local' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:7:43:7:49 | 'local' | Xss | notASinkReason | ReceiverStorage | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:7:43:7:49 | 'local' | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:8:7:8:12 | 'myId' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:8:7:8:12 | 'myId' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:8:7:8:12 | 'myId' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:8:7:8:12 | 'myId' | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:8:7:8:12 | 'myId' | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:8:7:8:12 | 'myId' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:8:7:8:12 | 'myId' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:8:7:8:12 | 'myId' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:8:7:8:12 | 'myId' | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:8:7:8:12 | 'myId' | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:8:7:8:12 | 'myId' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:8:7:8:12 | 'myId' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:8:7:8:12 | 'myId' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:8:7:8:12 | 'myId' | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:8:7:8:12 | 'myId' | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:8:7:8:12 | 'myId' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:8:7:8:12 | 'myId' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:8:7:8:12 | 'myId' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:8:7:8:12 | 'myId' | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:8:7:8:12 | 'myId' | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:8:20:8:48 | localSt ... local') | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:8:20:8:48 | localSt ... local') | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:8:20:8:48 | localSt ... local') | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:8:20:8:48 | localSt ... local') | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:8:41:8:47 | 'local' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:8:41:8:47 | 'local' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:8:41:8:47 | 'local' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:8:41:8:47 | 'local' | NosqlInjection | notASinkReason | ReceiverStorage | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:8:41:8:47 | 'local' | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:8:41:8:47 | 'local' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:8:41:8:47 | 'local' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:8:41:8:47 | 'local' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:8:41:8:47 | 'local' | SqlInjection | notASinkReason | ReceiverStorage | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:8:41:8:47 | 'local' | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:8:41:8:47 | 'local' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:8:41:8:47 | 'local' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:8:41:8:47 | 'local' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:8:41:8:47 | 'local' | TaintedPath | notASinkReason | ReceiverStorage | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:8:41:8:47 | 'local' | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:8:41:8:47 | 'local' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:8:41:8:47 | 'local' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:8:41:8:47 | 'local' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:8:41:8:47 | 'local' | Xss | notASinkReason | ReceiverStorage | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:8:41:8:47 | 'local' | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:10:37:10:43 | 'local' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:10:37:10:43 | 'local' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:10:37:10:43 | 'local' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:10:37:10:43 | 'local' | NosqlInjection | notASinkReason | ReceiverStorage | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:10:37:10:43 | 'local' | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:10:37:10:43 | 'local' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:10:37:10:43 | 'local' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:10:37:10:43 | 'local' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:10:37:10:43 | 'local' | SqlInjection | notASinkReason | ReceiverStorage | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:10:37:10:43 | 'local' | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:10:37:10:43 | 'local' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:10:37:10:43 | 'local' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:10:37:10:43 | 'local' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:10:37:10:43 | 'local' | TaintedPath | notASinkReason | ReceiverStorage | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:10:37:10:43 | 'local' | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:10:37:10:43 | 'local' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:10:37:10:43 | 'local' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:10:37:10:43 | 'local' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:10:37:10:43 | 'local' | Xss | notASinkReason | ReceiverStorage | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:10:37:10:43 | 'local' | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:12:7:12:12 | 'myId' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:12:7:12:12 | 'myId' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:12:7:12:12 | 'myId' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:12:7:12:12 | 'myId' | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:12:7:12:12 | 'myId' | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:12:7:12:12 | 'myId' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:12:7:12:12 | 'myId' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:12:7:12:12 | 'myId' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:12:7:12:12 | 'myId' | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:12:7:12:12 | 'myId' | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:12:7:12:12 | 'myId' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:12:7:12:12 | 'myId' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:12:7:12:12 | 'myId' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:12:7:12:12 | 'myId' | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:12:7:12:12 | 'myId' | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:12:7:12:12 | 'myId' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:12:7:12:12 | 'myId' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:12:7:12:12 | 'myId' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:12:7:12:12 | 'myId' | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:12:7:12:12 | 'myId' | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:12:20:12:31 | "<a href=\\"" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:12:20:12:31 | "<a href=\\"" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:12:20:12:31 | "<a href=\\"" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:12:20:12:31 | "<a href=\\"" | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:12:20:12:54 | "<a hre ... ar</a>" | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:12:20:12:54 | "<a hre ... ar</a>" | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:12:20:12:54 | "<a hre ... ar</a>" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:12:20:12:54 | "<a hre ... ar</a>" | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:12:35:12:38 | href | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:12:35:12:38 | href | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:12:35:12:38 | href | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:12:35:12:38 | href | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:12:42:12:54 | ">foobar</a>" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:12:42:12:54 | ">foobar</a>" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:12:42:12:54 | ">foobar</a>" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:12:42:12:54 | ">foobar</a>" | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:14:22:14:25 | "\\"" | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:14:22:14:25 | "\\"" | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:14:22:14:25 | "\\"" | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:14:22:14:25 | "\\"" | NosqlInjection | notASinkReason | BuiltinCallName | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:14:22:14:25 | "\\"" | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:14:22:14:25 | "\\"" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:14:22:14:25 | "\\"" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:14:22:14:25 | "\\"" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:14:22:14:25 | "\\"" | SqlInjection | notASinkReason | BuiltinCallName | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:14:22:14:25 | "\\"" | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:14:22:14:25 | "\\"" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:14:22:14:25 | "\\"" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:14:22:14:25 | "\\"" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:14:22:14:25 | "\\"" | TaintedPath | notASinkReason | BuiltinCallName | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:14:22:14:25 | "\\"" | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:14:22:14:25 | "\\"" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:14:22:14:25 | "\\"" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:14:22:14:25 | "\\"" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:14:22:14:25 | "\\"" | Xss | notASinkReason | BuiltinCallName | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:14:22:14:25 | "\\"" | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:17:7:17:12 | 'myId' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:17:7:17:12 | 'myId' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:17:7:17:12 | 'myId' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:17:7:17:12 | 'myId' | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:17:7:17:12 | 'myId' | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:17:7:17:12 | 'myId' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:17:7:17:12 | 'myId' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:17:7:17:12 | 'myId' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:17:7:17:12 | 'myId' | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:17:7:17:12 | 'myId' | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:17:7:17:12 | 'myId' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:17:7:17:12 | 'myId' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:17:7:17:12 | 'myId' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:17:7:17:12 | 'myId' | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:17:7:17:12 | 'myId' | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:17:7:17:12 | 'myId' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:17:7:17:12 | 'myId' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:17:7:17:12 | 'myId' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:17:7:17:12 | 'myId' | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:17:7:17:12 | 'myId' | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:17:20:17:31 | "<a href=\\"" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:17:20:17:31 | "<a href=\\"" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:17:20:17:31 | "<a href=\\"" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:17:20:17:31 | "<a href=\\"" | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:17:20:17:45 | "<a hre ...  + "/>" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:17:20:17:45 | "<a hre ...  + "/>" | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:17:20:17:45 | "<a hre ...  + "/>" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:17:20:17:45 | "<a hre ...  + "/>" | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:17:35:17:38 | href | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:17:35:17:38 | href | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:17:35:17:38 | href | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:17:35:17:38 | href | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:17:42:17:45 | "/>" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:17:42:17:45 | "/>" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:17:42:17:45 | "/>" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:17:42:17:45 | "/>" | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:19:38:19:44 | 'local' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:19:38:19:44 | 'local' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:19:38:19:44 | 'local' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:19:38:19:44 | 'local' | NosqlInjection | notASinkReason | ReceiverStorage | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:19:38:19:44 | 'local' | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:19:38:19:44 | 'local' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:19:38:19:44 | 'local' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:19:38:19:44 | 'local' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:19:38:19:44 | 'local' | SqlInjection | notASinkReason | ReceiverStorage | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:19:38:19:44 | 'local' | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:19:38:19:44 | 'local' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:19:38:19:44 | 'local' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:19:38:19:44 | 'local' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:19:38:19:44 | 'local' | TaintedPath | notASinkReason | ReceiverStorage | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:19:38:19:44 | 'local' | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:19:38:19:44 | 'local' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:19:38:19:44 | 'local' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:19:38:19:44 | 'local' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:19:38:19:44 | 'local' | Xss | notASinkReason | ReceiverStorage | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:19:38:19:44 | 'local' | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:20:23:20:26 | "\\"" | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:20:23:20:26 | "\\"" | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:20:23:20:26 | "\\"" | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:20:23:20:26 | "\\"" | NosqlInjection | notASinkReason | BuiltinCallName | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:20:23:20:26 | "\\"" | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:20:23:20:26 | "\\"" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:20:23:20:26 | "\\"" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:20:23:20:26 | "\\"" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:20:23:20:26 | "\\"" | SqlInjection | notASinkReason | BuiltinCallName | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:20:23:20:26 | "\\"" | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:20:23:20:26 | "\\"" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:20:23:20:26 | "\\"" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:20:23:20:26 | "\\"" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:20:23:20:26 | "\\"" | TaintedPath | notASinkReason | BuiltinCallName | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:20:23:20:26 | "\\"" | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:20:23:20:26 | "\\"" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:20:23:20:26 | "\\"" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:20:23:20:26 | "\\"" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:20:23:20:26 | "\\"" | Xss | notASinkReason | BuiltinCallName | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:20:23:20:26 | "\\"" | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:23:7:23:12 | 'myId' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:23:7:23:12 | 'myId' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:23:7:23:12 | 'myId' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:23:7:23:12 | 'myId' | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:23:7:23:12 | 'myId' | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:23:7:23:12 | 'myId' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:23:7:23:12 | 'myId' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:23:7:23:12 | 'myId' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:23:7:23:12 | 'myId' | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:23:7:23:12 | 'myId' | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:23:7:23:12 | 'myId' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:23:7:23:12 | 'myId' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:23:7:23:12 | 'myId' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:23:7:23:12 | 'myId' | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:23:7:23:12 | 'myId' | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:23:7:23:12 | 'myId' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:23:7:23:12 | 'myId' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:23:7:23:12 | 'myId' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:23:7:23:12 | 'myId' | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:23:7:23:12 | 'myId' | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:23:20:23:33 | "\\n<a href=\\"" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:23:20:23:33 | "\\n<a href=\\"" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:23:20:23:33 | "\\n<a href=\\"" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:23:20:23:33 | "\\n<a href=\\"" | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:23:20:23:57 | "\\n<a h ... ar</a>" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:23:20:23:57 | "\\n<a h ... ar</a>" | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:23:20:23:57 | "\\n<a h ... ar</a>" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:23:20:23:57 | "\\n<a h ... ar</a>" | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:23:37:23:41 | href2 | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:23:37:23:41 | href2 | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:23:37:23:41 | href2 | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:23:37:23:41 | href2 | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:23:45:23:57 | ">foobar</a>" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:23:45:23:57 | ">foobar</a>" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:23:45:23:57 | ">foobar</a>" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:23:45:23:57 | ">foobar</a>" | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:25:38:25:44 | 'local' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:25:38:25:44 | 'local' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:25:38:25:44 | 'local' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:25:38:25:44 | 'local' | NosqlInjection | notASinkReason | ReceiverStorage | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:25:38:25:44 | 'local' | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:25:38:25:44 | 'local' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:25:38:25:44 | 'local' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:25:38:25:44 | 'local' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:25:38:25:44 | 'local' | SqlInjection | notASinkReason | ReceiverStorage | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:25:38:25:44 | 'local' | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:25:38:25:44 | 'local' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:25:38:25:44 | 'local' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:25:38:25:44 | 'local' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:25:38:25:44 | 'local' | TaintedPath | notASinkReason | ReceiverStorage | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:25:38:25:44 | 'local' | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:25:38:25:44 | 'local' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:25:38:25:44 | 'local' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:25:38:25:44 | 'local' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:25:38:25:44 | 'local' | Xss | notASinkReason | ReceiverStorage | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:25:38:25:44 | 'local' | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:26:23:26:26 | "\\"" | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:26:23:26:26 | "\\"" | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:26:23:26:26 | "\\"" | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:26:23:26:26 | "\\"" | NosqlInjection | notASinkReason | BuiltinCallName | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:26:23:26:26 | "\\"" | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:26:23:26:26 | "\\"" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:26:23:26:26 | "\\"" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:26:23:26:26 | "\\"" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:26:23:26:26 | "\\"" | SqlInjection | notASinkReason | BuiltinCallName | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:26:23:26:26 | "\\"" | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:26:23:26:26 | "\\"" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:26:23:26:26 | "\\"" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:26:23:26:26 | "\\"" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:26:23:26:26 | "\\"" | TaintedPath | notASinkReason | BuiltinCallName | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:26:23:26:26 | "\\"" | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:26:23:26:26 | "\\"" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:26:23:26:26 | "\\"" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:26:23:26:26 | "\\"" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:26:23:26:26 | "\\"" | Xss | notASinkReason | BuiltinCallName | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:26:23:26:26 | "\\"" | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:29:7:29:12 | 'myId' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:29:7:29:12 | 'myId' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:29:7:29:12 | 'myId' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:29:7:29:12 | 'myId' | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:29:7:29:12 | 'myId' | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:29:7:29:12 | 'myId' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:29:7:29:12 | 'myId' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:29:7:29:12 | 'myId' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:29:7:29:12 | 'myId' | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:29:7:29:12 | 'myId' | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:29:7:29:12 | 'myId' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:29:7:29:12 | 'myId' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:29:7:29:12 | 'myId' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:29:7:29:12 | 'myId' | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:29:7:29:12 | 'myId' | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:29:7:29:12 | 'myId' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:29:7:29:12 | 'myId' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:29:7:29:12 | 'myId' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:29:7:29:12 | 'myId' | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:29:7:29:12 | 'myId' | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:29:20:29:35 | '\\r\\n<a href="/' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:29:20:29:35 | '\\r\\n<a href="/' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:29:20:29:35 | '\\r\\n<a href="/' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:29:20:29:35 | '\\r\\n<a href="/' | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:29:20:29:73 | '\\r\\n<a ...  '</a>' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:29:20:29:73 | '\\r\\n<a ...  '</a>' | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:29:20:29:73 | '\\r\\n<a ...  '</a>' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:29:20:29:73 | '\\r\\n<a ...  '</a>' | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:29:39:29:43 | href3 | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:29:39:29:43 | href3 | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:29:39:29:43 | href3 | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:29:39:29:43 | href3 | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:29:47:29:50 | '">' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:29:47:29:50 | '">' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:29:47:29:50 | '">' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:29:47:29:50 | '">' | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:29:54:29:64 | "something" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:29:54:29:64 | "something" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:29:54:29:64 | "something" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:29:54:29:64 | "something" | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:29:68:29:73 | '</a>' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:29:68:29:73 | '</a>' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:29:68:29:73 | '</a>' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:29:68:29:73 | '</a>' | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:1:16:1:51 | documen ... deAt(0) | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:1:16:1:51 | documen ... deAt(0) | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:1:16:1:51 | documen ... deAt(0) | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:1:16:1:51 | documen ... deAt(0) | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:1:50:1:50 | 0 | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:1:50:1:50 | 0 | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:1:50:1:50 | 0 | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:1:50:1:50 | 0 | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:1:50:1:50 | 0 | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:1:50:1:50 | 0 | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:1:50:1:50 | 0 | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:1:50:1:50 | 0 | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:1:50:1:50 | 0 | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:1:50:1:50 | 0 | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:1:50:1:50 | 0 | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:1:50:1:50 | 0 | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:1:50:1:50 | 0 | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:1:50:1:50 | 0 | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:1:50:1:50 | 0 | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:1:50:1:50 | 0 | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:3:16:3:32 | document.location | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:3:16:3:32 | document.location | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:3:16:3:32 | document.location | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:3:16:3:32 | document.location | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:4:16:4:37 | documen ... on.href | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:4:16:4:37 | documen ... on.href | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:4:16:4:37 | documen ... on.href | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:4:16:4:37 | documen ... on.href | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:5:16:5:47 | documen ... lueOf() | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:5:16:5:47 | documen ... lueOf() | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:5:16:5:47 | documen ... lueOf() | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:5:16:5:47 | documen ... lueOf() | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:6:16:6:43 | documen ... f.sup() | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:6:16:6:43 | documen ... f.sup() | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:6:16:6:43 | documen ... f.sup() | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:6:16:6:43 | documen ... f.sup() | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:7:16:7:51 | documen ... rCase() | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:7:16:7:51 | documen ... rCase() | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:7:16:7:51 | documen ... rCase() | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:7:16:7:51 | documen ... rCase() | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:8:16:8:48 | documen ... mLeft() | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:8:16:8:48 | documen ... mLeft() | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:8:16:8:48 | documen ... mLeft() | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:8:16:8:48 | documen ... mLeft() | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:9:16:9:58 | String. ... n.href) | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:9:16:9:58 | String. ... n.href) | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:9:16:9:58 | String. ... n.href) | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:9:16:9:58 | String. ... n.href) | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:10:16:10:45 | String( ... n.href) | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:10:16:10:45 | String( ... n.href) | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:10:16:10:45 | String( ... n.href) | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:10:16:10:45 | String( ... n.href) | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:11:16:11:45 | escape( ... n.href) | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:11:16:11:45 | escape( ... n.href) | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:11:16:11:45 | escape( ... n.href) | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:11:16:11:45 | escape( ... n.href) | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:12:16:12:61 | escape( ... href))) | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:12:16:12:61 | escape( ... href))) | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:12:16:12:61 | escape( ... href))) | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:12:16:12:61 | escape( ... href))) | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/translate.js:7:59:7:59 | 1 | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/translate.js:7:59:7:59 | 1 | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/translate.js:7:59:7:59 | 1 | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/translate.js:7:59:7:59 | 1 | NosqlInjection | notASinkReason | BuiltinCallName | string |
-| autogenerated/Xss/DomBasedXss/translate.js:7:59:7:59 | 1 | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/translate.js:7:59:7:59 | 1 | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/translate.js:7:59:7:59 | 1 | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/translate.js:7:59:7:59 | 1 | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/translate.js:7:59:7:59 | 1 | SqlInjection | notASinkReason | BuiltinCallName | string |
-| autogenerated/Xss/DomBasedXss/translate.js:7:59:7:59 | 1 | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/translate.js:7:59:7:59 | 1 | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/translate.js:7:59:7:59 | 1 | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/translate.js:7:59:7:59 | 1 | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/translate.js:7:59:7:59 | 1 | TaintedPath | notASinkReason | BuiltinCallName | string |
-| autogenerated/Xss/DomBasedXss/translate.js:7:59:7:59 | 1 | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/translate.js:7:59:7:59 | 1 | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/translate.js:7:59:7:59 | 1 | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/translate.js:7:59:7:59 | 1 | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/translate.js:7:59:7:59 | 1 | Xss | notASinkReason | BuiltinCallName | string |
-| autogenerated/Xss/DomBasedXss/translate.js:7:59:7:59 | 1 | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/translate.js:9:5:9:19 | 'original-term' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/translate.js:9:5:9:19 | 'original-term' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/translate.js:9:5:9:19 | 'original-term' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/translate.js:9:5:9:19 | 'original-term' | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/translate.js:9:5:9:19 | 'original-term' | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/translate.js:9:5:9:19 | 'original-term' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/translate.js:9:5:9:19 | 'original-term' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/translate.js:9:5:9:19 | 'original-term' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/translate.js:9:5:9:19 | 'original-term' | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/translate.js:9:5:9:19 | 'original-term' | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/translate.js:9:5:9:19 | 'original-term' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/translate.js:9:5:9:19 | 'original-term' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/translate.js:9:5:9:19 | 'original-term' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/translate.js:9:5:9:19 | 'original-term' | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/translate.js:9:5:9:19 | 'original-term' | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/translate.js:9:5:9:19 | 'original-term' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/translate.js:9:5:9:19 | 'original-term' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/translate.js:9:5:9:19 | 'original-term' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/translate.js:9:5:9:19 | 'original-term' | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/translate.js:9:5:9:19 | 'original-term' | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/translate.js:9:27:9:50 | searchP ... 'term') | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/translate.js:9:27:9:50 | searchP ... 'term') | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/translate.js:9:27:9:50 | searchP ... 'term') | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/translate.js:9:27:9:50 | searchP ... 'term') | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/translate.js:9:44:9:49 | 'term' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/translate.js:9:44:9:49 | 'term' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/translate.js:9:44:9:49 | 'term' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/translate.js:9:44:9:49 | 'term' | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/translate.js:9:44:9:49 | 'term' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/translate.js:9:44:9:49 | 'term' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/translate.js:9:44:9:49 | 'term' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/translate.js:9:44:9:49 | 'term' | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/translate.js:9:44:9:49 | 'term' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/translate.js:9:44:9:49 | 'term' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/translate.js:9:44:9:49 | 'term' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/translate.js:9:44:9:49 | 'term' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/translate.js:9:44:9:49 | 'term' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/translate.js:9:44:9:49 | 'term' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/translate.js:9:44:9:49 | 'term' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/translate.js:9:44:9:49 | 'term' | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/translate.js:11:5:11:21 | 'translated-term' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/translate.js:11:5:11:21 | 'translated-term' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/translate.js:11:5:11:21 | 'translated-term' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/translate.js:11:5:11:21 | 'translated-term' | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/translate.js:11:5:11:21 | 'translated-term' | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/translate.js:11:5:11:21 | 'translated-term' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/translate.js:11:5:11:21 | 'translated-term' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/translate.js:11:5:11:21 | 'translated-term' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/translate.js:11:5:11:21 | 'translated-term' | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/translate.js:11:5:11:21 | 'translated-term' | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/translate.js:11:5:11:21 | 'translated-term' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/translate.js:11:5:11:21 | 'translated-term' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/translate.js:11:5:11:21 | 'translated-term' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/translate.js:11:5:11:21 | 'translated-term' | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/translate.js:11:5:11:21 | 'translated-term' | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/translate.js:11:5:11:21 | 'translated-term' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/translate.js:11:5:11:21 | 'translated-term' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/translate.js:11:5:11:21 | 'translated-term' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/translate.js:11:5:11:21 | 'translated-term' | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/translate.js:11:5:11:21 | 'translated-term' | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/translate.js:11:29:11:63 | transla ... term')] | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/translate.js:11:29:11:63 | transla ... term')] | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/translate.js:11:29:11:63 | transla ... term')] | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/translate.js:11:29:11:63 | transla ... term')] | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/translate.js:11:56:11:61 | 'term' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/translate.js:11:56:11:61 | 'term' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/translate.js:11:56:11:61 | 'term' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/translate.js:11:56:11:61 | 'term' | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/translate.js:11:56:11:61 | 'term' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/translate.js:11:56:11:61 | 'term' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/translate.js:11:56:11:61 | 'term' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/translate.js:11:56:11:61 | 'term' | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/translate.js:11:56:11:61 | 'term' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/translate.js:11:56:11:61 | 'term' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/translate.js:11:56:11:61 | 'term' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/translate.js:11:56:11:61 | 'term' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/translate.js:11:56:11:61 | 'term' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/translate.js:11:56:11:61 | 'term' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/translate.js:11:56:11:61 | 'term' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/translate.js:11:56:11:61 | 'term' | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst3.js:1:35:1:39 | "foo" | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst3.js:1:35:1:39 | "foo" | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst3.js:1:35:1:39 | "foo" | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst3.js:1:35:1:39 | "foo" | NosqlInjection | notASinkReason | DOM | string |
-| autogenerated/Xss/DomBasedXss/tst3.js:1:35:1:39 | "foo" | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst3.js:1:35:1:39 | "foo" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst3.js:1:35:1:39 | "foo" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst3.js:1:35:1:39 | "foo" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst3.js:1:35:1:39 | "foo" | SqlInjection | notASinkReason | DOM | string |
-| autogenerated/Xss/DomBasedXss/tst3.js:1:35:1:39 | "foo" | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst3.js:1:35:1:39 | "foo" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst3.js:1:35:1:39 | "foo" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst3.js:1:35:1:39 | "foo" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst3.js:1:35:1:39 | "foo" | TaintedPath | notASinkReason | DOM | string |
-| autogenerated/Xss/DomBasedXss/tst3.js:1:35:1:39 | "foo" | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst3.js:1:35:1:39 | "foo" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst3.js:1:35:1:39 | "foo" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst3.js:1:35:1:39 | "foo" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst3.js:1:35:1:39 | "foo" | Xss | notASinkReason | DOM | string |
-| autogenerated/Xss/DomBasedXss/tst3.js:1:35:1:39 | "foo" | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst3.js:2:72:2:72 | 1 | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst3.js:2:72:2:72 | 1 | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst3.js:2:72:2:72 | 1 | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst3.js:2:72:2:72 | 1 | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst3.js:2:72:2:72 | 1 | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst3.js:2:72:2:72 | 1 | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst3.js:2:72:2:72 | 1 | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst3.js:2:72:2:72 | 1 | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst3.js:2:72:2:72 | 1 | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst3.js:2:72:2:72 | 1 | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst3.js:2:72:2:72 | 1 | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst3.js:2:72:2:72 | 1 | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst3.js:2:72:2:72 | 1 | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst3.js:2:72:2:72 | 1 | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst3.js:2:72:2:72 | 1 | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst3.js:2:72:2:72 | 1 | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst3.js:4:25:4:32 | data.src | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst3.js:4:25:4:32 | data.src | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst3.js:4:25:4:32 | data.src | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst3.js:4:25:4:32 | data.src | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/tst3.js:5:26:5:31 | data.p | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst3.js:5:26:5:31 | data.p | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst3.js:5:26:5:31 | data.p | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst3.js:5:26:5:31 | data.p | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/tst3.js:6:18:6:24 | "width" | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst3.js:6:18:6:24 | "width" | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst3.js:6:18:6:24 | "width" | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst3.js:6:18:6:24 | "width" | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst3.js:6:18:6:24 | "width" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst3.js:6:18:6:24 | "width" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst3.js:6:18:6:24 | "width" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst3.js:6:18:6:24 | "width" | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst3.js:6:18:6:24 | "width" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst3.js:6:18:6:24 | "width" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst3.js:6:18:6:24 | "width" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst3.js:6:18:6:24 | "width" | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst3.js:6:18:6:24 | "width" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst3.js:6:18:6:24 | "width" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst3.js:6:18:6:24 | "width" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst3.js:6:18:6:24 | "width" | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst3.js:6:27:6:32 | data.w | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst3.js:6:27:6:32 | data.w | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst3.js:6:27:6:32 | data.w | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst3.js:6:27:6:32 | data.w | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst3.js:6:27:6:32 | data.w | SqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst3.js:6:27:6:32 | data.w | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst3.js:6:27:6:32 | data.w | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst3.js:6:27:6:32 | data.w | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst3.js:6:27:6:32 | data.w | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst3.js:6:27:6:32 | data.w | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst3.js:6:27:6:32 | data.w | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst3.js:6:27:6:32 | data.w | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst3.js:6:27:6:32 | data.w | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst3.js:6:27:6:32 | data.w | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst3.js:6:27:6:32 | data.w | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst3.js:6:27:6:32 | data.w | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst3.js:7:32:7:37 | data.p | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst3.js:7:32:7:37 | data.p | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst3.js:7:32:7:37 | data.p | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst3.js:7:32:7:37 | data.p | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/tst3.js:9:37:9:42 | data.p | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst3.js:9:37:9:42 | data.p | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst3.js:9:37:9:42 | data.p | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst3.js:9:37:9:42 | data.p | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/tst3.js:10:38:10:43 | data.p | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst3.js:10:38:10:43 | data.p | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst3.js:10:38:10:43 | data.p | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst3.js:10:38:10:43 | data.p | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/tst3.js:11:20:11:24 | 'baz' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst3.js:11:20:11:24 | 'baz' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst3.js:11:20:11:24 | 'baz' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst3.js:11:20:11:24 | 'baz' | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst3.js:11:20:11:24 | 'baz' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst3.js:11:20:11:24 | 'baz' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst3.js:11:20:11:24 | 'baz' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst3.js:11:20:11:24 | 'baz' | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst3.js:11:20:11:24 | 'baz' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst3.js:11:20:11:24 | 'baz' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst3.js:11:20:11:24 | 'baz' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst3.js:11:20:11:24 | 'baz' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst3.js:11:20:11:24 | 'baz' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst3.js:11:20:11:24 | 'baz' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst3.js:11:20:11:24 | 'baz' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst3.js:11:20:11:24 | 'baz' | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst3.js:11:27:11:33 | 'width' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst3.js:11:27:11:33 | 'width' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst3.js:11:27:11:33 | 'width' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst3.js:11:27:11:33 | 'width' | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst3.js:11:27:11:33 | 'width' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst3.js:11:27:11:33 | 'width' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst3.js:11:27:11:33 | 'width' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst3.js:11:27:11:33 | 'width' | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst3.js:11:27:11:33 | 'width' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst3.js:11:27:11:33 | 'width' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst3.js:11:27:11:33 | 'width' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst3.js:11:27:11:33 | 'width' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst3.js:11:27:11:33 | 'width' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst3.js:11:27:11:33 | 'width' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst3.js:11:27:11:33 | 'width' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst3.js:11:27:11:33 | 'width' | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst3.js:11:36:11:41 | data.w | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst3.js:11:36:11:41 | data.w | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst3.js:11:36:11:41 | data.w | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst3.js:11:36:11:41 | data.w | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst3.js:11:36:11:41 | data.w | SqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst3.js:11:36:11:41 | data.w | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst3.js:11:36:11:41 | data.w | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst3.js:11:36:11:41 | data.w | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst3.js:11:36:11:41 | data.w | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst3.js:11:36:11:41 | data.w | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst3.js:11:36:11:41 | data.w | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst3.js:11:36:11:41 | data.w | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst3.js:11:36:11:41 | data.w | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst3.js:11:36:11:41 | data.w | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst3.js:11:36:11:41 | data.w | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst3.js:11:36:11:41 | data.w | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst3.js:15:20:15:20 | p | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst3.js:15:20:15:20 | p | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst3.js:15:20:15:20 | p | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst3.js:15:20:15:20 | p | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst3.js:15:20:15:20 | p | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst3.js:15:20:15:20 | p | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst3.js:15:20:15:20 | p | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst3.js:15:20:15:20 | p | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst3.js:15:20:15:20 | p | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst3.js:15:20:15:20 | p | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst3.js:15:20:15:20 | p | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst3.js:15:20:15:20 | p | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst3.js:15:20:15:20 | p | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst3.js:15:20:15:20 | p | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst3.js:15:20:15:20 | p | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst3.js:15:20:15:20 | p | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst3.js:15:23:15:29 | data[p] | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst3.js:15:23:15:29 | data[p] | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst3.js:15:23:15:29 | data[p] | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst3.js:15:23:15:29 | data[p] | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst3.js:15:23:15:29 | data[p] | SqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst3.js:15:23:15:29 | data[p] | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst3.js:15:23:15:29 | data[p] | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst3.js:15:23:15:29 | data[p] | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst3.js:15:23:15:29 | data[p] | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst3.js:15:23:15:29 | data[p] | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst3.js:15:23:15:29 | data[p] | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst3.js:15:23:15:29 | data[p] | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst3.js:15:23:15:29 | data[p] | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst3.js:15:23:15:29 | data[p] | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst3.js:15:23:15:29 | data[p] | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst3.js:15:23:15:29 | data[p] | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:5:5:5:10 | 'myId' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:5:5:5:10 | 'myId' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:5:5:5:10 | 'myId' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:5:5:5:10 | 'myId' | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:5:5:5:10 | 'myId' | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:5:5:5:10 | 'myId' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:5:5:5:10 | 'myId' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:5:5:5:10 | 'myId' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:5:5:5:10 | 'myId' | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:5:5:5:10 | 'myId' | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:5:5:5:10 | 'myId' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:5:5:5:10 | 'myId' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:5:5:5:10 | 'myId' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:5:5:5:10 | 'myId' | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:5:5:5:10 | 'myId' | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:5:5:5:10 | 'myId' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:5:5:5:10 | 'myId' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:5:5:5:10 | 'myId' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:5:5:5:10 | 'myId' | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:5:5:5:10 | 'myId' | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:5:18:5:23 | target | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:5:18:5:23 | target | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:5:18:5:23 | target | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:5:18:5:23 | target | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:8:18:8:35 | "<OPTION value=1>" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:8:18:8:35 | "<OPTION value=1>" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:8:18:8:35 | "<OPTION value=1>" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:8:18:8:35 | "<OPTION value=1>" | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:8:18:8:126 | "<OPTIO ... PTION>" | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:8:18:8:126 | "<OPTIO ... PTION>" | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:8:18:8:126 | "<OPTIO ... PTION>" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:8:18:8:126 | "<OPTIO ... PTION>" | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:8:37:8:114 | documen ... t=")+8) | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:8:37:8:114 | documen ... t=")+8) | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:8:37:8:114 | documen ... t=")+8) | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:8:37:8:114 | documen ... t=")+8) | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:8:70:8:113 | documen ... lt=")+8 | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:8:70:8:113 | documen ... lt=")+8 | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:8:70:8:113 | documen ... lt=")+8 | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:8:70:8:113 | documen ... lt=")+8 | NosqlInjection | notASinkReason | BuiltinCallName | string |
-| autogenerated/Xss/DomBasedXss/tst.js:8:70:8:113 | documen ... lt=")+8 | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:8:70:8:113 | documen ... lt=")+8 | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:8:70:8:113 | documen ... lt=")+8 | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:8:70:8:113 | documen ... lt=")+8 | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:8:70:8:113 | documen ... lt=")+8 | SqlInjection | notASinkReason | BuiltinCallName | string |
-| autogenerated/Xss/DomBasedXss/tst.js:8:70:8:113 | documen ... lt=")+8 | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:8:70:8:113 | documen ... lt=")+8 | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:8:70:8:113 | documen ... lt=")+8 | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:8:70:8:113 | documen ... lt=")+8 | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:8:70:8:113 | documen ... lt=")+8 | TaintedPath | notASinkReason | BuiltinCallName | string |
-| autogenerated/Xss/DomBasedXss/tst.js:8:70:8:113 | documen ... lt=")+8 | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:8:70:8:113 | documen ... lt=")+8 | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:8:70:8:113 | documen ... lt=")+8 | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:8:70:8:113 | documen ... lt=")+8 | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:8:70:8:113 | documen ... lt=")+8 | Xss | notASinkReason | BuiltinCallName | string |
-| autogenerated/Xss/DomBasedXss/tst.js:8:70:8:113 | documen ... lt=")+8 | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:8:101:8:110 | "default=" | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:8:101:8:110 | "default=" | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:8:101:8:110 | "default=" | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:8:101:8:110 | "default=" | NosqlInjection | notASinkReason | BuiltinCallName | string |
-| autogenerated/Xss/DomBasedXss/tst.js:8:101:8:110 | "default=" | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:8:101:8:110 | "default=" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:8:101:8:110 | "default=" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:8:101:8:110 | "default=" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:8:101:8:110 | "default=" | SqlInjection | notASinkReason | BuiltinCallName | string |
-| autogenerated/Xss/DomBasedXss/tst.js:8:101:8:110 | "default=" | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:8:101:8:110 | "default=" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:8:101:8:110 | "default=" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:8:101:8:110 | "default=" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:8:101:8:110 | "default=" | TaintedPath | notASinkReason | BuiltinCallName | string |
-| autogenerated/Xss/DomBasedXss/tst.js:8:101:8:110 | "default=" | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:8:101:8:110 | "default=" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:8:101:8:110 | "default=" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:8:101:8:110 | "default=" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:8:101:8:110 | "default=" | Xss | notASinkReason | BuiltinCallName | string |
-| autogenerated/Xss/DomBasedXss/tst.js:8:101:8:110 | "default=" | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:8:116:8:126 | "</OPTION>" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:8:116:8:126 | "</OPTION>" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:8:116:8:126 | "</OPTION>" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:8:116:8:126 | "</OPTION>" | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:9:18:9:51 | "<OPTIO ... PTION>" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:9:18:9:51 | "<OPTIO ... PTION>" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:9:18:9:51 | "<OPTIO ... PTION>" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:9:18:9:51 | "<OPTIO ... PTION>" | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:12:5:12:24 | '<div style="width:' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:12:5:12:24 | '<div style="width:' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:12:5:12:24 | '<div style="width:' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:12:5:12:24 | '<div style="width:' | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:12:5:12:42 | '<div s ...  'px">' | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:12:5:12:42 | '<div s ...  'px">' | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:12:5:12:42 | '<div s ...  'px">' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:12:5:12:42 | '<div s ...  'px">' | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:12:28:12:33 | target | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:12:28:12:33 | target | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:12:28:12:33 | target | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:12:28:12:33 | target | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:12:37:12:42 | 'px">' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:12:37:12:42 | 'px">' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:12:37:12:42 | 'px">' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:12:37:12:42 | 'px">' | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:14:5:14:24 | '<div style="width:' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:14:5:14:24 | '<div style="width:' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:14:5:14:24 | '<div style="width:' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:14:5:14:24 | '<div style="width:' | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:14:5:14:43 | '<div s ...  'px">' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:14:5:14:43 | '<div s ...  'px">' | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:14:5:14:43 | '<div s ...  'px">' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:14:5:14:43 | '<div s ...  'px">' | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:14:28:14:34 | +target | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:14:28:14:34 | +target | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:14:28:14:34 | +target | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:14:28:14:34 | +target | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:14:38:14:43 | 'px">' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:14:38:14:43 | 'px">' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:14:38:14:43 | 'px">' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:14:38:14:43 | 'px">' | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:15:5:15:24 | '<div style="width:' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:15:5:15:24 | '<div style="width:' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:15:5:15:24 | '<div style="width:' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:15:5:15:24 | '<div style="width:' | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:15:5:15:52 | '<div s ...  'px">' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:15:5:15:52 | '<div s ...  'px">' | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:15:5:15:52 | '<div s ...  'px">' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:15:5:15:52 | '<div s ...  'px">' | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:15:28:15:43 | parseInt(target) | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:15:28:15:43 | parseInt(target) | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:15:28:15:43 | parseInt(target) | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:15:28:15:43 | parseInt(target) | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:15:37:15:42 | target | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:15:37:15:42 | target | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:15:37:15:42 | target | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:15:37:15:42 | target | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:15:37:15:42 | target | SqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:15:37:15:42 | target | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:15:37:15:42 | target | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:15:37:15:42 | target | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:15:37:15:42 | target | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:15:37:15:42 | target | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:15:37:15:42 | target | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:15:37:15:42 | target | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:15:37:15:42 | target | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:15:37:15:42 | target | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:15:37:15:42 | target | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:15:37:15:42 | target | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:15:47:15:52 | 'px">' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:15:47:15:52 | 'px">' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:15:47:15:52 | 'px">' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:15:47:15:52 | 'px">' | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:18:5:18:10 | 'name' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:18:5:18:10 | 'name' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:18:5:18:10 | 'name' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:18:5:18:10 | 'name' | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:18:5:18:10 | 'name' | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:18:5:18:10 | 'name' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:18:5:18:10 | 'name' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:18:5:18:10 | 'name' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:18:5:18:10 | 'name' | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:18:5:18:10 | 'name' | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:18:5:18:10 | 'name' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:18:5:18:10 | 'name' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:18:5:18:10 | 'name' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:18:5:18:10 | 'name' | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:18:5:18:10 | 'name' | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:18:5:18:10 | 'name' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:18:5:18:10 | 'name' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:18:5:18:10 | 'name' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:18:5:18:10 | 'name' | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:18:5:18:10 | 'name' | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:18:18:18:35 | params.get('name') | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:18:18:18:35 | params.get('name') | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:18:18:18:35 | params.get('name') | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:18:18:18:35 | params.get('name') | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:18:29:18:34 | 'name' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:18:29:18:34 | 'name' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:18:29:18:34 | 'name' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:18:29:18:34 | 'name' | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:18:29:18:34 | 'name' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:18:29:18:34 | 'name' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:18:29:18:34 | 'name' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:18:29:18:34 | 'name' | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:18:29:18:34 | 'name' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:18:29:18:34 | 'name' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:18:29:18:34 | 'name' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:18:29:18:34 | 'name' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:18:29:18:34 | 'name' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:18:29:18:34 | 'name' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:18:29:18:34 | 'name' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:18:29:18:34 | 'name' | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:20:59:20:59 | 1 | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:20:59:20:59 | 1 | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:20:59:20:59 | 1 | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:20:59:20:59 | 1 | NosqlInjection | notASinkReason | BuiltinCallName | string |
-| autogenerated/Xss/DomBasedXss/tst.js:20:59:20:59 | 1 | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:20:59:20:59 | 1 | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:20:59:20:59 | 1 | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:20:59:20:59 | 1 | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:20:59:20:59 | 1 | SqlInjection | notASinkReason | BuiltinCallName | string |
-| autogenerated/Xss/DomBasedXss/tst.js:20:59:20:59 | 1 | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:20:59:20:59 | 1 | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:20:59:20:59 | 1 | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:20:59:20:59 | 1 | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:20:59:20:59 | 1 | TaintedPath | notASinkReason | BuiltinCallName | string |
-| autogenerated/Xss/DomBasedXss/tst.js:20:59:20:59 | 1 | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:20:59:20:59 | 1 | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:20:59:20:59 | 1 | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:20:59:20:59 | 1 | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:20:59:20:59 | 1 | Xss | notASinkReason | BuiltinCallName | string |
-| autogenerated/Xss/DomBasedXss/tst.js:20:59:20:59 | 1 | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:21:5:21:10 | 'name' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:21:5:21:10 | 'name' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:21:5:21:10 | 'name' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:21:5:21:10 | 'name' | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:21:5:21:10 | 'name' | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:21:5:21:10 | 'name' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:21:5:21:10 | 'name' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:21:5:21:10 | 'name' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:21:5:21:10 | 'name' | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:21:5:21:10 | 'name' | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:21:5:21:10 | 'name' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:21:5:21:10 | 'name' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:21:5:21:10 | 'name' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:21:5:21:10 | 'name' | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:21:5:21:10 | 'name' | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:21:5:21:10 | 'name' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:21:5:21:10 | 'name' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:21:5:21:10 | 'name' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:21:5:21:10 | 'name' | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:21:5:21:10 | 'name' | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:21:18:21:41 | searchP ... 'name') | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:21:18:21:41 | searchP ... 'name') | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:21:18:21:41 | searchP ... 'name') | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:21:18:21:41 | searchP ... 'name') | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:21:35:21:40 | 'name' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:21:35:21:40 | 'name' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:21:35:21:40 | 'name' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:21:35:21:40 | 'name' | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:21:35:21:40 | 'name' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:21:35:21:40 | 'name' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:21:35:21:40 | 'name' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:21:35:21:40 | 'name' | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:21:35:21:40 | 'name' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:21:35:21:40 | 'name' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:21:35:21:40 | 'name' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:21:35:21:40 | 'name' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:21:35:21:40 | 'name' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:21:35:21:40 | 'name' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:21:35:21:40 | 'name' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:21:35:21:40 | 'name' | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:26:5:26:10 | 'myId' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:26:5:26:10 | 'myId' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:26:5:26:10 | 'myId' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:26:5:26:10 | 'myId' | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:26:5:26:10 | 'myId' | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:26:5:26:10 | 'myId' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:26:5:26:10 | 'myId' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:26:5:26:10 | 'myId' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:26:5:26:10 | 'myId' | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:26:5:26:10 | 'myId' | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:26:5:26:10 | 'myId' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:26:5:26:10 | 'myId' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:26:5:26:10 | 'myId' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:26:5:26:10 | 'myId' | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:26:5:26:10 | 'myId' | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:26:5:26:10 | 'myId' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:26:5:26:10 | 'myId' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:26:5:26:10 | 'myId' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:26:5:26:10 | 'myId' | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:26:5:26:10 | 'myId' | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:26:18:26:23 | target | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:26:18:26:23 | target | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:26:18:26:23 | target | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:26:18:26:23 | target | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:34:3:34:8 | 'myId' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:34:3:34:8 | 'myId' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:34:3:34:8 | 'myId' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:34:3:34:8 | 'myId' | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:34:3:34:8 | 'myId' | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:34:3:34:8 | 'myId' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:34:3:34:8 | 'myId' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:34:3:34:8 | 'myId' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:34:3:34:8 | 'myId' | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:34:3:34:8 | 'myId' | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:34:3:34:8 | 'myId' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:34:3:34:8 | 'myId' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:34:3:34:8 | 'myId' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:34:3:34:8 | 'myId' | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:34:3:34:8 | 'myId' | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:34:3:34:8 | 'myId' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:34:3:34:8 | 'myId' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:34:3:34:8 | 'myId' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:34:3:34:8 | 'myId' | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:34:3:34:8 | 'myId' | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:34:16:34:20 | bar() | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:34:16:34:20 | bar() | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:34:16:34:20 | bar() | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:34:16:34:20 | bar() | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:40:3:40:8 | 'myId' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:40:3:40:8 | 'myId' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:40:3:40:8 | 'myId' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:40:3:40:8 | 'myId' | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:40:3:40:8 | 'myId' | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:40:3:40:8 | 'myId' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:40:3:40:8 | 'myId' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:40:3:40:8 | 'myId' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:40:3:40:8 | 'myId' | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:40:3:40:8 | 'myId' | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:40:3:40:8 | 'myId' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:40:3:40:8 | 'myId' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:40:3:40:8 | 'myId' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:40:3:40:8 | 'myId' | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:40:3:40:8 | 'myId' | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:40:3:40:8 | 'myId' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:40:3:40:8 | 'myId' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:40:3:40:8 | 'myId' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:40:3:40:8 | 'myId' | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:40:3:40:8 | 'myId' | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:40:16:40:44 | baz(doc ... search) | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:40:16:40:44 | baz(doc ... search) | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:40:16:40:44 | baz(doc ... search) | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:40:16:40:44 | baz(doc ... search) | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:40:20:40:43 | documen ... .search | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:40:20:40:43 | documen ... .search | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:40:20:40:43 | documen ... .search | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:40:20:40:43 | documen ... .search | NosqlInjection | notASinkReason | DOM | string |
-| autogenerated/Xss/DomBasedXss/tst.js:40:20:40:43 | documen ... .search | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:40:20:40:43 | documen ... .search | SqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:40:20:40:43 | documen ... .search | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:40:20:40:43 | documen ... .search | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:40:20:40:43 | documen ... .search | SqlInjection | notASinkReason | DOM | string |
-| autogenerated/Xss/DomBasedXss/tst.js:40:20:40:43 | documen ... .search | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:40:20:40:43 | documen ... .search | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:40:20:40:43 | documen ... .search | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:40:20:40:43 | documen ... .search | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:40:20:40:43 | documen ... .search | TaintedPath | notASinkReason | DOM | string |
-| autogenerated/Xss/DomBasedXss/tst.js:40:20:40:43 | documen ... .search | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:40:20:40:43 | documen ... .search | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:40:20:40:43 | documen ... .search | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:40:20:40:43 | documen ... .search | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:40:20:40:43 | documen ... .search | Xss | notASinkReason | DOM | string |
-| autogenerated/Xss/DomBasedXss/tst.js:40:20:40:43 | documen ... .search | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:43:10:43:16 | "<div>" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:43:10:43:16 | "<div>" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:43:10:43:16 | "<div>" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:43:10:43:16 | "<div>" | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:43:20:43:20 | s | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:43:20:43:20 | s | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:43:20:43:20 | s | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:43:20:43:20 | s | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:43:24:43:31 | "</div>" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:43:24:43:31 | "</div>" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:43:24:43:31 | "</div>" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:43:24:43:31 | "</div>" | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:46:3:46:8 | 'myId' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:46:3:46:8 | 'myId' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:46:3:46:8 | 'myId' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:46:3:46:8 | 'myId' | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:46:3:46:8 | 'myId' | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:46:3:46:8 | 'myId' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:46:3:46:8 | 'myId' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:46:3:46:8 | 'myId' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:46:3:46:8 | 'myId' | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:46:3:46:8 | 'myId' | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:46:3:46:8 | 'myId' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:46:3:46:8 | 'myId' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:46:3:46:8 | 'myId' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:46:3:46:8 | 'myId' | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:46:3:46:8 | 'myId' | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:46:3:46:8 | 'myId' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:46:3:46:8 | 'myId' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:46:3:46:8 | 'myId' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:46:3:46:8 | 'myId' | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:46:3:46:8 | 'myId' | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:46:16:46:45 | wrap(do ... search) | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:46:16:46:45 | wrap(do ... search) | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:46:16:46:45 | wrap(do ... search) | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:46:16:46:45 | wrap(do ... search) | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:50:21:50:21 | 1 | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:50:21:50:21 | 1 | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:50:21:50:21 | 1 | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:50:21:50:21 | 1 | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:50:21:50:21 | 1 | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:50:21:50:21 | 1 | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:50:21:50:21 | 1 | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:50:21:50:21 | 1 | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:50:21:50:21 | 1 | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:50:21:50:21 | 1 | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:50:21:50:21 | 1 | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:50:21:50:21 | 1 | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:50:21:50:21 | 1 | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:50:21:50:21 | 1 | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:50:21:50:21 | 1 | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:50:21:50:21 | 1 | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:54:3:54:8 | 'myId' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:54:3:54:8 | 'myId' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:54:3:54:8 | 'myId' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:54:3:54:8 | 'myId' | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:54:3:54:8 | 'myId' | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:54:3:54:8 | 'myId' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:54:3:54:8 | 'myId' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:54:3:54:8 | 'myId' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:54:3:54:8 | 'myId' | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:54:3:54:8 | 'myId' | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:54:3:54:8 | 'myId' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:54:3:54:8 | 'myId' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:54:3:54:8 | 'myId' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:54:3:54:8 | 'myId' | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:54:3:54:8 | 'myId' | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:54:3:54:8 | 'myId' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:54:3:54:8 | 'myId' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:54:3:54:8 | 'myId' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:54:3:54:8 | 'myId' | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:54:3:54:8 | 'myId' | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:54:16:54:45 | chop(do ... search) | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:54:16:54:45 | chop(do ... search) | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:54:16:54:45 | chop(do ... search) | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:54:16:54:45 | chop(do ... search) | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:56:3:56:8 | 'myId' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:56:3:56:8 | 'myId' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:56:3:56:8 | 'myId' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:56:3:56:8 | 'myId' | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:56:3:56:8 | 'myId' | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:56:3:56:8 | 'myId' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:56:3:56:8 | 'myId' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:56:3:56:8 | 'myId' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:56:3:56:8 | 'myId' | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:56:3:56:8 | 'myId' | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:56:3:56:8 | 'myId' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:56:3:56:8 | 'myId' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:56:3:56:8 | 'myId' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:56:3:56:8 | 'myId' | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:56:3:56:8 | 'myId' | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:56:3:56:8 | 'myId' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:56:3:56:8 | 'myId' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:56:3:56:8 | 'myId' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:56:3:56:8 | 'myId' | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:56:3:56:8 | 'myId' | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:56:16:56:45 | chop(do ... search) | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:56:16:56:45 | chop(do ... search) | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:56:16:56:45 | chop(do ... search) | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:56:16:56:45 | chop(do ... search) | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:58:3:58:8 | 'myId' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:58:3:58:8 | 'myId' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:58:3:58:8 | 'myId' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:58:3:58:8 | 'myId' | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:58:3:58:8 | 'myId' | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:58:3:58:8 | 'myId' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:58:3:58:8 | 'myId' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:58:3:58:8 | 'myId' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:58:3:58:8 | 'myId' | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:58:3:58:8 | 'myId' | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:58:3:58:8 | 'myId' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:58:3:58:8 | 'myId' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:58:3:58:8 | 'myId' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:58:3:58:8 | 'myId' | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:58:3:58:8 | 'myId' | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:58:3:58:8 | 'myId' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:58:3:58:8 | 'myId' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:58:3:58:8 | 'myId' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:58:3:58:8 | 'myId' | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:58:3:58:8 | 'myId' | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:58:16:58:32 | wrap(chop(bar())) | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:58:16:58:32 | wrap(chop(bar())) | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:58:16:58:32 | wrap(chop(bar())) | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:58:16:58:32 | wrap(chop(bar())) | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:62:5:62:10 | 'myId' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:62:5:62:10 | 'myId' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:62:5:62:10 | 'myId' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:62:5:62:10 | 'myId' | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:62:5:62:10 | 'myId' | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:62:5:62:10 | 'myId' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:62:5:62:10 | 'myId' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:62:5:62:10 | 'myId' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:62:5:62:10 | 'myId' | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:62:5:62:10 | 'myId' | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:62:5:62:10 | 'myId' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:62:5:62:10 | 'myId' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:62:5:62:10 | 'myId' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:62:5:62:10 | 'myId' | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:62:5:62:10 | 'myId' | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:62:5:62:10 | 'myId' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:62:5:62:10 | 'myId' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:62:5:62:10 | 'myId' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:62:5:62:10 | 'myId' | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:62:5:62:10 | 'myId' | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:62:18:62:18 | s | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:62:18:62:18 | s | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:62:18:62:18 | s | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:62:18:62:18 | s | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:68:3:68:8 | 'myId' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:68:3:68:8 | 'myId' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:68:3:68:8 | 'myId' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:68:3:68:8 | 'myId' | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:68:3:68:8 | 'myId' | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:68:3:68:8 | 'myId' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:68:3:68:8 | 'myId' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:68:3:68:8 | 'myId' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:68:3:68:8 | 'myId' | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:68:3:68:8 | 'myId' | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:68:3:68:8 | 'myId' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:68:3:68:8 | 'myId' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:68:3:68:8 | 'myId' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:68:3:68:8 | 'myId' | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:68:3:68:8 | 'myId' | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:68:3:68:8 | 'myId' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:68:3:68:8 | 'myId' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:68:3:68:8 | 'myId' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:68:3:68:8 | 'myId' | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:68:3:68:8 | 'myId' | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:68:16:68:20 | bar() | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:68:16:68:20 | bar() | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:68:16:68:20 | bar() | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:68:16:68:20 | bar() | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:73:7:73:12 | 'myId' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:73:7:73:12 | 'myId' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:73:7:73:12 | 'myId' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:73:7:73:12 | 'myId' | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:73:7:73:12 | 'myId' | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:73:7:73:12 | 'myId' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:73:7:73:12 | 'myId' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:73:7:73:12 | 'myId' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:73:7:73:12 | 'myId' | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:73:7:73:12 | 'myId' | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:73:7:73:12 | 'myId' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:73:7:73:12 | 'myId' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:73:7:73:12 | 'myId' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:73:7:73:12 | 'myId' | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:73:7:73:12 | 'myId' | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:73:7:73:12 | 'myId' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:73:7:73:12 | 'myId' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:73:7:73:12 | 'myId' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:73:7:73:12 | 'myId' | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:73:7:73:12 | 'myId' | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:73:20:73:20 | x | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:73:20:73:20 | x | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:73:20:73:20 | x | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:73:20:73:20 | x | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:77:40:77:73 | {__html ... search} | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:77:40:77:73 | {__html ... search} | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:77:40:77:73 | {__html ... search} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:77:40:77:73 | {__html ... search} | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:77:49:77:72 | documen ... .search | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:77:49:77:72 | documen ... .search | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:77:49:77:72 | documen ... .search | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:77:49:77:72 | documen ... .search | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:79:16:79:22 | 'myApp' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:79:16:79:22 | 'myApp' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:79:16:79:22 | 'myApp' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:79:16:79:22 | 'myApp' | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:79:16:79:22 | 'myApp' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:79:16:79:22 | 'myApp' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:79:16:79:22 | 'myApp' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:79:16:79:22 | 'myApp' | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:79:16:79:22 | 'myApp' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:79:16:79:22 | 'myApp' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:79:16:79:22 | 'myApp' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:79:16:79:22 | 'myApp' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:79:16:79:22 | 'myApp' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:79:16:79:22 | 'myApp' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:79:16:79:22 | 'myApp' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:79:16:79:22 | 'myApp' | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:79:25:79:26 | [] | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:79:25:79:26 | [] | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:79:25:79:26 | [] | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:79:25:79:26 | [] | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:79:25:79:26 | [] | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:79:25:79:26 | [] | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:79:25:79:26 | [] | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:79:25:79:26 | [] | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:79:25:79:26 | [] | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:79:25:79:26 | [] | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:79:25:79:26 | [] | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:79:25:79:26 | [] | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:80:14:80:24 | "myService" | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:80:14:80:24 | "myService" | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:80:14:80:24 | "myService" | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:80:14:80:24 | "myService" | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:80:14:80:24 | "myService" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:80:14:80:24 | "myService" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:80:14:80:24 | "myService" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:80:14:80:24 | "myService" | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:80:14:80:24 | "myService" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:80:14:80:24 | "myService" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:80:14:80:24 | "myService" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:80:14:80:24 | "myService" | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:80:14:80:24 | "myService" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:80:14:80:24 | "myService" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:80:14:80:24 | "myService" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:80:14:80:24 | "myService" | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:80:27:88:5 | functio ... K\\n    } | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:80:27:88:5 | functio ... K\\n    } | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:80:27:88:5 | functio ... K\\n    } | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:80:27:88:5 | functio ... K\\n    } | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:80:27:88:5 | functio ... K\\n    } | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:80:27:88:5 | functio ... K\\n    } | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:80:27:88:5 | functio ... K\\n    } | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:80:27:88:5 | functio ... K\\n    } | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:80:27:88:5 | functio ... K\\n    } | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:80:27:88:5 | functio ... K\\n    } | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:80:27:88:5 | functio ... K\\n    } | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:80:27:88:5 | functio ... K\\n    } | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:80:27:88:5 | functio ... K\\n    } | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:80:27:88:5 | functio ... K\\n    } | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:80:27:88:5 | functio ... K\\n    } | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:80:27:88:5 | functio ... K\\n    } | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:81:26:81:49 | documen ... .search | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:81:26:81:49 | documen ... .search | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:81:26:81:49 | documen ... .search | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:81:26:81:49 | documen ... .search | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:82:25:82:48 | documen ... .search | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:82:25:82:48 | documen ... .search | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:82:25:82:48 | documen ... .search | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:82:25:82:48 | documen ... .search | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:83:29:83:52 | documen ... .search | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:83:29:83:52 | documen ... .search | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:83:29:83:52 | documen ... .search | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:83:29:83:52 | documen ... .search | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:83:29:83:52 | documen ... .search | SqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:83:29:83:52 | documen ... .search | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:83:29:83:52 | documen ... .search | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:83:29:83:52 | documen ... .search | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:83:29:83:52 | documen ... .search | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:83:29:83:52 | documen ... .search | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:83:29:83:52 | documen ... .search | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:83:29:83:52 | documen ... .search | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:83:29:83:52 | documen ... .search | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:83:29:83:52 | documen ... .search | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:83:29:83:52 | documen ... .search | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:83:29:83:52 | documen ... .search | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:84:33:84:56 | documen ... .search | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:84:33:84:56 | documen ... .search | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:84:33:84:56 | documen ... .search | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:84:33:84:56 | documen ... .search | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:85:32:85:55 | documen ... .search | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:85:32:85:55 | documen ... .search | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:85:32:85:55 | documen ... .search | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:85:32:85:55 | documen ... .search | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:86:22:86:28 | UNKNOWN | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:86:22:86:28 | UNKNOWN | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:86:22:86:28 | UNKNOWN | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:86:22:86:28 | UNKNOWN | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:86:22:86:28 | UNKNOWN | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:86:22:86:28 | UNKNOWN | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:86:22:86:28 | UNKNOWN | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:86:22:86:28 | UNKNOWN | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:86:22:86:28 | UNKNOWN | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:86:22:86:28 | UNKNOWN | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:86:22:86:28 | UNKNOWN | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:86:22:86:28 | UNKNOWN | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:86:22:86:28 | UNKNOWN | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:86:22:86:28 | UNKNOWN | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:86:22:86:28 | UNKNOWN | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:86:22:86:28 | UNKNOWN | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:86:31:86:54 | documen ... .search | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:86:31:86:54 | documen ... .search | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:86:31:86:54 | documen ... .search | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:86:31:86:54 | documen ... .search | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:86:31:86:54 | documen ... .search | SqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:86:31:86:54 | documen ... .search | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:86:31:86:54 | documen ... .search | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:86:31:86:54 | documen ... .search | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:86:31:86:54 | documen ... .search | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:86:31:86:54 | documen ... .search | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:86:31:86:54 | documen ... .search | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:86:31:86:54 | documen ... .search | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:86:31:86:54 | documen ... .search | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:86:31:86:54 | documen ... .search | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:86:31:86:54 | documen ... .search | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:86:31:86:54 | documen ... .search | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:87:28:87:51 | documen ... .search | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:87:28:87:51 | documen ... .search | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:87:28:87:51 | documen ... .search | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:87:28:87:51 | documen ... .search | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:87:28:87:51 | documen ... .search | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:87:28:87:51 | documen ... .search | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:87:28:87:51 | documen ... .search | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:87:28:87:51 | documen ... .search | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:87:28:87:51 | documen ... .search | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:87:28:87:51 | documen ... .search | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:87:28:87:51 | documen ... .search | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:87:28:87:51 | documen ... .search | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:89:14:89:25 | "myService2" | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:89:14:89:25 | "myService2" | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:89:14:89:25 | "myService2" | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:89:14:89:25 | "myService2" | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:89:14:89:25 | "myService2" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:89:14:89:25 | "myService2" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:89:14:89:25 | "myService2" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:89:14:89:25 | "myService2" | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:89:14:89:25 | "myService2" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:89:14:89:25 | "myService2" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:89:14:89:25 | "myService2" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:89:14:89:25 | "myService2" | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:89:14:89:25 | "myService2" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:89:14:89:25 | "myService2" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:89:14:89:25 | "myService2" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:89:14:89:25 | "myService2" | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:89:28:92:5 | functio ... K\\n    } | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:89:28:92:5 | functio ... K\\n    } | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:89:28:92:5 | functio ... K\\n    } | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:89:28:92:5 | functio ... K\\n    } | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:89:28:92:5 | functio ... K\\n    } | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:89:28:92:5 | functio ... K\\n    } | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:89:28:92:5 | functio ... K\\n    } | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:89:28:92:5 | functio ... K\\n    } | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:89:28:92:5 | functio ... K\\n    } | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:89:28:92:5 | functio ... K\\n    } | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:89:28:92:5 | functio ... K\\n    } | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:89:28:92:5 | functio ... K\\n    } | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:89:28:92:5 | functio ... K\\n    } | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:89:28:92:5 | functio ... K\\n    } | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:89:28:92:5 | functio ... K\\n    } | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:89:28:92:5 | functio ... K\\n    } | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:90:25:90:31 | '<div>' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:90:25:90:31 | '<div>' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:90:25:90:31 | '<div>' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:90:25:90:31 | '<div>' | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:90:39:90:62 | documen ... .search | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:90:39:90:62 | documen ... .search | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:90:39:90:62 | documen ... .search | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:90:39:90:62 | documen ... .search | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:91:25:91:31 | '<div>' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:91:25:91:31 | '<div>' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:91:25:91:31 | '<div>' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:91:25:91:31 | '<div>' | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:91:39:91:44 | 'SAFE' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:91:39:91:44 | 'SAFE' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:91:39:91:44 | 'SAFE' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:91:39:91:44 | 'SAFE' | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:93:16:93:27 | 'myCustomer' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:93:16:93:27 | 'myCustomer' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:93:16:93:27 | 'myCustomer' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:93:16:93:27 | 'myCustomer' | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:93:16:93:27 | 'myCustomer' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:93:16:93:27 | 'myCustomer' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:93:16:93:27 | 'myCustomer' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:93:16:93:27 | 'myCustomer' | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:93:16:93:27 | 'myCustomer' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:93:16:93:27 | 'myCustomer' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:93:16:93:27 | 'myCustomer' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:93:16:93:27 | 'myCustomer' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:93:16:93:27 | 'myCustomer' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:93:16:93:27 | 'myCustomer' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:93:16:93:27 | 'myCustomer' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:93:16:93:27 | 'myCustomer' | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:93:30:100:5 | functio ... ;\\n    } | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:93:30:100:5 | functio ... ;\\n    } | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:93:30:100:5 | functio ... ;\\n    } | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:93:30:100:5 | functio ... ;\\n    } | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:93:30:100:5 | functio ... ;\\n    } | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:93:30:100:5 | functio ... ;\\n    } | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:93:30:100:5 | functio ... ;\\n    } | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:93:30:100:5 | functio ... ;\\n    } | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:93:30:100:5 | functio ... ;\\n    } | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:93:30:100:5 | functio ... ;\\n    } | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:93:30:100:5 | functio ... ;\\n    } | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:93:30:100:5 | functio ... ;\\n    } | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:93:30:100:5 | functio ... ;\\n    } | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:93:30:100:5 | functio ... ;\\n    } | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:93:30:100:5 | functio ... ;\\n    } | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:93:30:100:5 | functio ... ;\\n    } | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:96:30:96:53 | documen ... .search | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:96:30:96:53 | documen ... .search | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:96:30:96:53 | documen ... .search | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:96:30:96:53 | documen ... .search | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:97:30:97:35 | 'SAFE' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:97:30:97:35 | 'SAFE' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:97:30:97:35 | 'SAFE' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:97:30:97:35 | 'SAFE' | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:101:14:101:25 | "myService3" | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:101:14:101:25 | "myService3" | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:101:14:101:25 | "myService3" | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:101:14:101:25 | "myService3" | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:101:14:101:25 | "myService3" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:101:14:101:25 | "myService3" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:101:14:101:25 | "myService3" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:101:14:101:25 | "myService3" | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:101:14:101:25 | "myService3" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:101:14:101:25 | "myService3" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:101:14:101:25 | "myService3" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:101:14:101:25 | "myService3" | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:101:14:101:25 | "myService3" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:101:14:101:25 | "myService3" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:101:14:101:25 | "myService3" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:101:14:101:25 | "myService3" | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:101:28:104:5 | functio ... K\\n    } | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:101:28:104:5 | functio ... K\\n    } | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:101:28:104:5 | functio ... K\\n    } | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:101:28:104:5 | functio ... K\\n    } | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:101:28:104:5 | functio ... K\\n    } | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:101:28:104:5 | functio ... K\\n    } | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:101:28:104:5 | functio ... K\\n    } | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:101:28:104:5 | functio ... K\\n    } | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:101:28:104:5 | functio ... K\\n    } | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:101:28:104:5 | functio ... K\\n    } | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:101:28:104:5 | functio ... K\\n    } | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:101:28:104:5 | functio ... K\\n    } | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:101:28:104:5 | functio ... K\\n    } | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:101:28:104:5 | functio ... K\\n    } | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:101:28:104:5 | functio ... K\\n    } | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:101:28:104:5 | functio ... K\\n    } | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:102:25:102:48 | documen ... .search | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:102:25:102:48 | documen ... .search | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:102:25:102:48 | documen ... .search | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:102:25:102:48 | documen ... .search | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:103:25:103:30 | 'SAFE' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:103:25:103:30 | 'SAFE' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:103:25:103:30 | 'SAFE' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:103:25:103:30 | 'SAFE' | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:107:43:107:43 | 1 | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:107:43:107:43 | 1 | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:107:43:107:43 | 1 | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:107:43:107:43 | 1 | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:107:43:107:43 | 1 | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:107:43:107:43 | 1 | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:107:43:107:43 | 1 | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:107:43:107:43 | 1 | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:107:43:107:43 | 1 | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:107:43:107:43 | 1 | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:107:43:107:43 | 1 | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:107:43:107:43 | 1 | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:107:43:107:43 | 1 | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:107:43:107:43 | 1 | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:107:43:107:43 | 1 | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:107:43:107:43 | 1 | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:110:18:110:18 | v | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:110:18:110:18 | v | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:110:18:110:18 | v | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:110:18:110:18 | v | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:112:20:112:20 | v | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:112:20:112:20 | v | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:112:20:112:20 | v | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:112:20:112:20 | v | NosqlInjection | notASinkReason | MembershipCandidateTest | string |
-| autogenerated/Xss/DomBasedXss/tst.js:112:20:112:20 | v | NosqlInjection | notASinkReason | StringRegExpTest | string |
-| autogenerated/Xss/DomBasedXss/tst.js:112:20:112:20 | v | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:112:20:112:20 | v | SqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:112:20:112:20 | v | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:112:20:112:20 | v | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:112:20:112:20 | v | SqlInjection | notASinkReason | MembershipCandidateTest | string |
-| autogenerated/Xss/DomBasedXss/tst.js:112:20:112:20 | v | SqlInjection | notASinkReason | StringRegExpTest | string |
-| autogenerated/Xss/DomBasedXss/tst.js:112:20:112:20 | v | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:112:20:112:20 | v | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:112:20:112:20 | v | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:112:20:112:20 | v | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:112:20:112:20 | v | TaintedPath | notASinkReason | MembershipCandidateTest | string |
-| autogenerated/Xss/DomBasedXss/tst.js:112:20:112:20 | v | TaintedPath | notASinkReason | StringRegExpTest | string |
-| autogenerated/Xss/DomBasedXss/tst.js:112:20:112:20 | v | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:112:20:112:20 | v | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:112:20:112:20 | v | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:112:20:112:20 | v | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:112:20:112:20 | v | Xss | notASinkReason | MembershipCandidateTest | string |
-| autogenerated/Xss/DomBasedXss/tst.js:112:20:112:20 | v | Xss | notASinkReason | StringRegExpTest | string |
-| autogenerated/Xss/DomBasedXss/tst.js:112:20:112:20 | v | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:114:20:114:20 | v | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:114:20:114:20 | v | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:114:20:114:20 | v | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:114:20:114:20 | v | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:119:20:119:20 | v | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:119:20:119:20 | v | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:119:20:119:20 | v | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:119:20:119:20 | v | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:122:15:122:21 | /^\\d+$/ | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:122:15:122:21 | /^\\d+$/ | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:122:15:122:21 | /^\\d+$/ | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:122:15:122:21 | /^\\d+$/ | NosqlInjection | notASinkReason | MembershipCandidateTest | string |
-| autogenerated/Xss/DomBasedXss/tst.js:122:15:122:21 | /^\\d+$/ | NosqlInjection | notASinkReason | StringRegExpTest | string |
-| autogenerated/Xss/DomBasedXss/tst.js:122:15:122:21 | /^\\d+$/ | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:122:15:122:21 | /^\\d+$/ | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:122:15:122:21 | /^\\d+$/ | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:122:15:122:21 | /^\\d+$/ | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:122:15:122:21 | /^\\d+$/ | SqlInjection | notASinkReason | MembershipCandidateTest | string |
-| autogenerated/Xss/DomBasedXss/tst.js:122:15:122:21 | /^\\d+$/ | SqlInjection | notASinkReason | StringRegExpTest | string |
-| autogenerated/Xss/DomBasedXss/tst.js:122:15:122:21 | /^\\d+$/ | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:122:15:122:21 | /^\\d+$/ | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:122:15:122:21 | /^\\d+$/ | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:122:15:122:21 | /^\\d+$/ | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:122:15:122:21 | /^\\d+$/ | TaintedPath | notASinkReason | MembershipCandidateTest | string |
-| autogenerated/Xss/DomBasedXss/tst.js:122:15:122:21 | /^\\d+$/ | TaintedPath | notASinkReason | StringRegExpTest | string |
-| autogenerated/Xss/DomBasedXss/tst.js:122:15:122:21 | /^\\d+$/ | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:122:15:122:21 | /^\\d+$/ | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:122:15:122:21 | /^\\d+$/ | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:122:15:122:21 | /^\\d+$/ | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:122:15:122:21 | /^\\d+$/ | Xss | notASinkReason | MembershipCandidateTest | string |
-| autogenerated/Xss/DomBasedXss/tst.js:122:15:122:21 | /^\\d+$/ | Xss | notASinkReason | StringRegExpTest | string |
-| autogenerated/Xss/DomBasedXss/tst.js:122:15:122:21 | /^\\d+$/ | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:124:22:124:22 | v | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:124:22:124:22 | v | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:124:22:124:22 | v | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:124:22:124:22 | v | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:127:15:127:22 | "^\\\\d+$" | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:127:15:127:22 | "^\\\\d+$" | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:127:15:127:22 | "^\\\\d+$" | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:127:15:127:22 | "^\\\\d+$" | NosqlInjection | notASinkReason | MembershipCandidateTest | string |
-| autogenerated/Xss/DomBasedXss/tst.js:127:15:127:22 | "^\\\\d+$" | NosqlInjection | notASinkReason | StringRegExpTest | string |
-| autogenerated/Xss/DomBasedXss/tst.js:127:15:127:22 | "^\\\\d+$" | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:127:15:127:22 | "^\\\\d+$" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:127:15:127:22 | "^\\\\d+$" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:127:15:127:22 | "^\\\\d+$" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:127:15:127:22 | "^\\\\d+$" | SqlInjection | notASinkReason | MembershipCandidateTest | string |
-| autogenerated/Xss/DomBasedXss/tst.js:127:15:127:22 | "^\\\\d+$" | SqlInjection | notASinkReason | StringRegExpTest | string |
-| autogenerated/Xss/DomBasedXss/tst.js:127:15:127:22 | "^\\\\d+$" | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:127:15:127:22 | "^\\\\d+$" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:127:15:127:22 | "^\\\\d+$" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:127:15:127:22 | "^\\\\d+$" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:127:15:127:22 | "^\\\\d+$" | TaintedPath | notASinkReason | MembershipCandidateTest | string |
-| autogenerated/Xss/DomBasedXss/tst.js:127:15:127:22 | "^\\\\d+$" | TaintedPath | notASinkReason | StringRegExpTest | string |
-| autogenerated/Xss/DomBasedXss/tst.js:127:15:127:22 | "^\\\\d+$" | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:127:15:127:22 | "^\\\\d+$" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:127:15:127:22 | "^\\\\d+$" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:127:15:127:22 | "^\\\\d+$" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:127:15:127:22 | "^\\\\d+$" | Xss | notASinkReason | MembershipCandidateTest | string |
-| autogenerated/Xss/DomBasedXss/tst.js:127:15:127:22 | "^\\\\d+$" | Xss | notASinkReason | StringRegExpTest | string |
-| autogenerated/Xss/DomBasedXss/tst.js:127:15:127:22 | "^\\\\d+$" | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:129:22:129:22 | v | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:129:22:129:22 | v | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:129:22:129:22 | v | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:129:22:129:22 | v | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:132:20:132:20 | v | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:132:20:132:20 | v | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:132:20:132:20 | v | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:132:20:132:20 | v | NosqlInjection | notASinkReason | StringRegExpTest | string |
-| autogenerated/Xss/DomBasedXss/tst.js:132:20:132:20 | v | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:132:20:132:20 | v | SqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:132:20:132:20 | v | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:132:20:132:20 | v | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:132:20:132:20 | v | SqlInjection | notASinkReason | StringRegExpTest | string |
-| autogenerated/Xss/DomBasedXss/tst.js:132:20:132:20 | v | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:132:20:132:20 | v | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:132:20:132:20 | v | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:132:20:132:20 | v | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:132:20:132:20 | v | TaintedPath | notASinkReason | StringRegExpTest | string |
-| autogenerated/Xss/DomBasedXss/tst.js:132:20:132:20 | v | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:132:20:132:20 | v | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:132:20:132:20 | v | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:132:20:132:20 | v | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:132:20:132:20 | v | Xss | notASinkReason | StringRegExpTest | string |
-| autogenerated/Xss/DomBasedXss/tst.js:132:20:132:20 | v | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:136:18:136:18 | v | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:136:18:136:18 | v | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:136:18:136:18 | v | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:136:18:136:18 | v | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:138:22:138:22 | v | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:138:22:138:22 | v | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:138:22:138:22 | v | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:138:22:138:22 | v | NosqlInjection | notASinkReason | MembershipCandidateTest | string |
-| autogenerated/Xss/DomBasedXss/tst.js:138:22:138:22 | v | NosqlInjection | notASinkReason | StringRegExpTest | string |
-| autogenerated/Xss/DomBasedXss/tst.js:138:22:138:22 | v | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:138:22:138:22 | v | SqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:138:22:138:22 | v | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:138:22:138:22 | v | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:138:22:138:22 | v | SqlInjection | notASinkReason | MembershipCandidateTest | string |
-| autogenerated/Xss/DomBasedXss/tst.js:138:22:138:22 | v | SqlInjection | notASinkReason | StringRegExpTest | string |
-| autogenerated/Xss/DomBasedXss/tst.js:138:22:138:22 | v | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:138:22:138:22 | v | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:138:22:138:22 | v | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:138:22:138:22 | v | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:138:22:138:22 | v | TaintedPath | notASinkReason | MembershipCandidateTest | string |
-| autogenerated/Xss/DomBasedXss/tst.js:138:22:138:22 | v | TaintedPath | notASinkReason | StringRegExpTest | string |
-| autogenerated/Xss/DomBasedXss/tst.js:138:22:138:22 | v | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:138:22:138:22 | v | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:138:22:138:22 | v | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:138:22:138:22 | v | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:138:22:138:22 | v | Xss | notASinkReason | MembershipCandidateTest | string |
-| autogenerated/Xss/DomBasedXss/tst.js:138:22:138:22 | v | Xss | notASinkReason | StringRegExpTest | string |
-| autogenerated/Xss/DomBasedXss/tst.js:138:22:138:22 | v | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:142:18:142:18 | v | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:142:18:142:18 | v | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:142:18:142:18 | v | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:142:18:142:18 | v | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:146:20:146:26 | 'myApp' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:146:20:146:26 | 'myApp' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:146:20:146:26 | 'myApp' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:146:20:146:26 | 'myApp' | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:146:20:146:26 | 'myApp' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:146:20:146:26 | 'myApp' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:146:20:146:26 | 'myApp' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:146:20:146:26 | 'myApp' | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:146:20:146:26 | 'myApp' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:146:20:146:26 | 'myApp' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:146:20:146:26 | 'myApp' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:146:20:146:26 | 'myApp' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:146:20:146:26 | 'myApp' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:146:20:146:26 | 'myApp' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:146:20:146:26 | 'myApp' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:146:20:146:26 | 'myApp' | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:146:29:146:30 | [] | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:146:29:146:30 | [] | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:146:29:146:30 | [] | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:146:29:146:30 | [] | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:146:29:146:30 | [] | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:146:29:146:30 | [] | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:146:29:146:30 | [] | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:146:29:146:30 | [] | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:146:29:146:30 | [] | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:146:29:146:30 | [] | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:146:29:146:30 | [] | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:146:29:146:30 | [] | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:147:18:147:39 | "xssSou ... ervice" | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:147:18:147:39 | "xssSou ... ervice" | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:147:18:147:39 | "xssSou ... ervice" | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:147:18:147:39 | "xssSou ... ervice" | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:147:18:147:39 | "xssSou ... ervice" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:147:18:147:39 | "xssSou ... ervice" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:147:18:147:39 | "xssSou ... ervice" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:147:18:147:39 | "xssSou ... ervice" | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:147:18:147:39 | "xssSou ... ervice" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:147:18:147:39 | "xssSou ... ervice" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:147:18:147:39 | "xssSou ... ervice" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:147:18:147:39 | "xssSou ... ervice" | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:147:18:147:39 | "xssSou ... ervice" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:147:18:147:39 | "xssSou ... ervice" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:147:18:147:39 | "xssSou ... ervice" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:147:18:147:39 | "xssSou ... ervice" | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:147:42:149:10 | ["xssSi ...      }] | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:147:42:149:10 | ["xssSi ...      }] | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:147:42:149:10 | ["xssSi ...      }] | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:147:42:149:10 | ["xssSi ...      }] | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:147:42:149:10 | ["xssSi ...      }] | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:147:42:149:10 | ["xssSi ...      }] | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:147:42:149:10 | ["xssSi ...      }] | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:147:42:149:10 | ["xssSi ...      }] | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:147:42:149:10 | ["xssSi ...      }] | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:147:42:149:10 | ["xssSi ...      }] | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:147:42:149:10 | ["xssSi ...      }] | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:147:42:149:10 | ["xssSi ...      }] | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:147:43:147:59 | "xssSinkService1" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:147:43:147:59 | "xssSinkService1" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:147:43:147:59 | "xssSinkService1" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:147:43:147:59 | "xssSinkService1" | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:147:43:147:59 | "xssSinkService1" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:147:43:147:59 | "xssSinkService1" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:147:43:147:59 | "xssSinkService1" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:147:43:147:59 | "xssSinkService1" | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:147:43:147:59 | "xssSinkService1" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:147:43:147:59 | "xssSinkService1" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:147:43:147:59 | "xssSinkService1" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:147:43:147:59 | "xssSinkService1" | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:147:62:149:9 | functio ...       } | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:147:62:149:9 | functio ...       } | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:147:62:149:9 | functio ...       } | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:147:62:149:9 | functio ...       } | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:147:62:149:9 | functio ...       } | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:147:62:149:9 | functio ...       } | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:147:62:149:9 | functio ...       } | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:147:62:149:9 | functio ...       } | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:147:62:149:9 | functio ...       } | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:147:62:149:9 | functio ...       } | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:147:62:149:9 | functio ...       } | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:147:62:149:9 | functio ...       } | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:150:18:150:34 | "xssSinkService1" | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:150:18:150:34 | "xssSinkService1" | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:150:18:150:34 | "xssSinkService1" | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:150:18:150:34 | "xssSinkService1" | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:150:18:150:34 | "xssSinkService1" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:150:18:150:34 | "xssSinkService1" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:150:18:150:34 | "xssSinkService1" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:150:18:150:34 | "xssSinkService1" | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:150:18:150:34 | "xssSinkService1" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:150:18:150:34 | "xssSinkService1" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:150:18:150:34 | "xssSinkService1" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:150:18:150:34 | "xssSinkService1" | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:150:18:150:34 | "xssSinkService1" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:150:18:150:34 | "xssSinkService1" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:150:18:150:34 | "xssSinkService1" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:150:18:150:34 | "xssSinkService1" | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:150:37:152:9 | functio ...       } | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:150:37:152:9 | functio ...       } | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:150:37:152:9 | functio ...       } | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:150:37:152:9 | functio ...       } | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:150:37:152:9 | functio ...       } | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:150:37:152:9 | functio ...       } | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:150:37:152:9 | functio ...       } | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:150:37:152:9 | functio ...       } | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:150:37:152:9 | functio ...       } | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:150:37:152:9 | functio ...       } | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:150:37:152:9 | functio ...       } | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:150:37:152:9 | functio ...       } | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:150:37:152:9 | functio ...       } | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:150:37:152:9 | functio ...       } | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:150:37:152:9 | functio ...       } | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:150:37:152:9 | functio ...       } | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:151:35:151:41 | "<div>" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:151:35:151:41 | "<div>" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:151:35:151:41 | "<div>" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:151:35:151:41 | "<div>" | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:151:49:151:49 | v | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:151:49:151:49 | v | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:151:49:151:49 | v | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:151:49:151:49 | v | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:154:18:154:41 | "xssSou ... ervice" | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:154:18:154:41 | "xssSou ... ervice" | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:154:18:154:41 | "xssSou ... ervice" | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:154:18:154:41 | "xssSou ... ervice" | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:154:18:154:41 | "xssSou ... ervice" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:154:18:154:41 | "xssSou ... ervice" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:154:18:154:41 | "xssSou ... ervice" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:154:18:154:41 | "xssSou ... ervice" | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:154:18:154:41 | "xssSou ... ervice" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:154:18:154:41 | "xssSou ... ervice" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:154:18:154:41 | "xssSou ... ervice" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:154:18:154:41 | "xssSou ... ervice" | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:154:18:154:41 | "xssSou ... ervice" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:154:18:154:41 | "xssSou ... ervice" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:154:18:154:41 | "xssSou ... ervice" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:154:18:154:41 | "xssSou ... ervice" | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:154:44:156:10 | ["xssSo ...      }] | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:154:44:156:10 | ["xssSo ...      }] | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:154:44:156:10 | ["xssSo ...      }] | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:154:44:156:10 | ["xssSo ...      }] | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:154:44:156:10 | ["xssSo ...      }] | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:154:44:156:10 | ["xssSo ...      }] | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:154:44:156:10 | ["xssSo ...      }] | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:154:44:156:10 | ["xssSo ...      }] | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:154:44:156:10 | ["xssSo ...      }] | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:154:44:156:10 | ["xssSo ...      }] | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:154:44:156:10 | ["xssSo ...      }] | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:154:44:156:10 | ["xssSo ...      }] | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:154:45:154:62 | "xssSourceService" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:154:45:154:62 | "xssSourceService" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:154:45:154:62 | "xssSourceService" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:154:45:154:62 | "xssSourceService" | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:154:45:154:62 | "xssSourceService" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:154:45:154:62 | "xssSourceService" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:154:45:154:62 | "xssSourceService" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:154:45:154:62 | "xssSourceService" | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:154:45:154:62 | "xssSourceService" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:154:45:154:62 | "xssSourceService" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:154:45:154:62 | "xssSourceService" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:154:45:154:62 | "xssSourceService" | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:154:65:156:9 | functio ...       } | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:154:65:156:9 | functio ...       } | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:154:65:156:9 | functio ...       } | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:154:65:156:9 | functio ...       } | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:154:65:156:9 | functio ...       } | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:154:65:156:9 | functio ...       } | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:154:65:156:9 | functio ...       } | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:154:65:156:9 | functio ...       } | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:154:65:156:9 | functio ...       } | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:154:65:156:9 | functio ...       } | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:154:65:156:9 | functio ...       } | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:154:65:156:9 | functio ...       } | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:155:15:155:21 | "<div>" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:155:15:155:21 | "<div>" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:155:15:155:21 | "<div>" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:155:15:155:21 | "<div>" | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:155:29:155:46 | xssSourceService() | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:155:29:155:46 | xssSourceService() | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:155:29:155:46 | xssSourceService() | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:155:29:155:46 | xssSourceService() | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:157:18:157:35 | "xssSourceService" | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:157:18:157:35 | "xssSourceService" | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:157:18:157:35 | "xssSourceService" | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:157:18:157:35 | "xssSourceService" | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:157:18:157:35 | "xssSourceService" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:157:18:157:35 | "xssSourceService" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:157:18:157:35 | "xssSourceService" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:157:18:157:35 | "xssSourceService" | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:157:18:157:35 | "xssSourceService" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:157:18:157:35 | "xssSourceService" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:157:18:157:35 | "xssSourceService" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:157:18:157:35 | "xssSourceService" | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:157:18:157:35 | "xssSourceService" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:157:18:157:35 | "xssSourceService" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:157:18:157:35 | "xssSourceService" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:157:18:157:35 | "xssSourceService" | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:157:38:159:9 | functio ...       } | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:157:38:159:9 | functio ...       } | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:157:38:159:9 | functio ...       } | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:157:38:159:9 | functio ...       } | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:157:38:159:9 | functio ...       } | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:157:38:159:9 | functio ...       } | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:157:38:159:9 | functio ...       } | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:157:38:159:9 | functio ...       } | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:157:38:159:9 | functio ...       } | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:157:38:159:9 | functio ...       } | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:157:38:159:9 | functio ...       } | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:157:38:159:9 | functio ...       } | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:157:38:159:9 | functio ...       } | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:157:38:159:9 | functio ...       } | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:157:38:159:9 | functio ...       } | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:157:38:159:9 | functio ...       } | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:161:18:161:44 | "innoce ... ervice" | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:161:18:161:44 | "innoce ... ervice" | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:161:18:161:44 | "innoce ... ervice" | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:161:18:161:44 | "innoce ... ervice" | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:161:18:161:44 | "innoce ... ervice" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:161:18:161:44 | "innoce ... ervice" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:161:18:161:44 | "innoce ... ervice" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:161:18:161:44 | "innoce ... ervice" | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:161:18:161:44 | "innoce ... ervice" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:161:18:161:44 | "innoce ... ervice" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:161:18:161:44 | "innoce ... ervice" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:161:18:161:44 | "innoce ... ervice" | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:161:18:161:44 | "innoce ... ervice" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:161:18:161:44 | "innoce ... ervice" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:161:18:161:44 | "innoce ... ervice" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:161:18:161:44 | "innoce ... ervice" | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:161:47:163:10 | ["xssSi ...      }] | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:161:47:163:10 | ["xssSi ...      }] | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:161:47:163:10 | ["xssSi ...      }] | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:161:47:163:10 | ["xssSi ...      }] | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:161:47:163:10 | ["xssSi ...      }] | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:161:47:163:10 | ["xssSi ...      }] | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:161:47:163:10 | ["xssSi ...      }] | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:161:47:163:10 | ["xssSi ...      }] | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:161:47:163:10 | ["xssSi ...      }] | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:161:47:163:10 | ["xssSi ...      }] | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:161:47:163:10 | ["xssSi ...      }] | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:161:47:163:10 | ["xssSi ...      }] | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:161:48:161:64 | "xssSinkService2" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:161:48:161:64 | "xssSinkService2" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:161:48:161:64 | "xssSinkService2" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:161:48:161:64 | "xssSinkService2" | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:161:48:161:64 | "xssSinkService2" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:161:48:161:64 | "xssSinkService2" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:161:48:161:64 | "xssSinkService2" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:161:48:161:64 | "xssSinkService2" | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:161:48:161:64 | "xssSinkService2" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:161:48:161:64 | "xssSinkService2" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:161:48:161:64 | "xssSinkService2" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:161:48:161:64 | "xssSinkService2" | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:161:67:163:9 | functio ...       } | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:161:67:163:9 | functio ...       } | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:161:67:163:9 | functio ...       } | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:161:67:163:9 | functio ...       } | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:161:67:163:9 | functio ...       } | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:161:67:163:9 | functio ...       } | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:161:67:163:9 | functio ...       } | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:161:67:163:9 | functio ...       } | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:161:67:163:9 | functio ...       } | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:161:67:163:9 | functio ...       } | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:161:67:163:9 | functio ...       } | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:161:67:163:9 | functio ...       } | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:164:18:164:34 | "xssSinkService2" | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:164:18:164:34 | "xssSinkService2" | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:164:18:164:34 | "xssSinkService2" | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:164:18:164:34 | "xssSinkService2" | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:164:18:164:34 | "xssSinkService2" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:164:18:164:34 | "xssSinkService2" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:164:18:164:34 | "xssSinkService2" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:164:18:164:34 | "xssSinkService2" | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:164:18:164:34 | "xssSinkService2" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:164:18:164:34 | "xssSinkService2" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:164:18:164:34 | "xssSinkService2" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:164:18:164:34 | "xssSinkService2" | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:164:18:164:34 | "xssSinkService2" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:164:18:164:34 | "xssSinkService2" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:164:18:164:34 | "xssSinkService2" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:164:18:164:34 | "xssSinkService2" | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:164:37:166:9 | functio ...       } | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:164:37:166:9 | functio ...       } | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:164:37:166:9 | functio ...       } | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:164:37:166:9 | functio ...       } | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:164:37:166:9 | functio ...       } | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:164:37:166:9 | functio ...       } | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:164:37:166:9 | functio ...       } | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:164:37:166:9 | functio ...       } | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:164:37:166:9 | functio ...       } | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:164:37:166:9 | functio ...       } | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:164:37:166:9 | functio ...       } | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:164:37:166:9 | functio ...       } | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:164:37:166:9 | functio ...       } | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:164:37:166:9 | functio ...       } | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:164:37:166:9 | functio ...       } | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:164:37:166:9 | functio ...       } | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:165:35:165:41 | "<div>" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:165:35:165:41 | "<div>" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:165:35:165:41 | "<div>" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:165:35:165:41 | "<div>" | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:165:49:165:49 | v | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:165:49:165:49 | v | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:165:49:165:49 | v | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:165:49:165:49 | v | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:168:18:168:46 | "innoce ... ervice" | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:168:18:168:46 | "innoce ... ervice" | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:168:18:168:46 | "innoce ... ervice" | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:168:18:168:46 | "innoce ... ervice" | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:168:18:168:46 | "innoce ... ervice" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:168:18:168:46 | "innoce ... ervice" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:168:18:168:46 | "innoce ... ervice" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:168:18:168:46 | "innoce ... ervice" | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:168:18:168:46 | "innoce ... ervice" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:168:18:168:46 | "innoce ... ervice" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:168:18:168:46 | "innoce ... ervice" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:168:18:168:46 | "innoce ... ervice" | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:168:18:168:46 | "innoce ... ervice" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:168:18:168:46 | "innoce ... ervice" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:168:18:168:46 | "innoce ... ervice" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:168:18:168:46 | "innoce ... ervice" | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:168:49:170:10 | ["innoc ...      }] | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:168:49:170:10 | ["innoc ...      }] | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:168:49:170:10 | ["innoc ...      }] | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:168:49:170:10 | ["innoc ...      }] | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:168:49:170:10 | ["innoc ...      }] | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:168:49:170:10 | ["innoc ...      }] | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:168:49:170:10 | ["innoc ...      }] | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:168:49:170:10 | ["innoc ...      }] | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:168:49:170:10 | ["innoc ...      }] | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:168:49:170:10 | ["innoc ...      }] | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:168:49:170:10 | ["innoc ...      }] | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:168:49:170:10 | ["innoc ...      }] | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:168:50:168:72 | "innoce ... ervice" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:168:50:168:72 | "innoce ... ervice" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:168:50:168:72 | "innoce ... ervice" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:168:50:168:72 | "innoce ... ervice" | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:168:50:168:72 | "innoce ... ervice" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:168:50:168:72 | "innoce ... ervice" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:168:50:168:72 | "innoce ... ervice" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:168:50:168:72 | "innoce ... ervice" | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:168:50:168:72 | "innoce ... ervice" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:168:50:168:72 | "innoce ... ervice" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:168:50:168:72 | "innoce ... ervice" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:168:50:168:72 | "innoce ... ervice" | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:168:75:170:9 | functio ...       } | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:168:75:170:9 | functio ...       } | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:168:75:170:9 | functio ...       } | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:168:75:170:9 | functio ...       } | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:168:75:170:9 | functio ...       } | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:168:75:170:9 | functio ...       } | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:168:75:170:9 | functio ...       } | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:168:75:170:9 | functio ...       } | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:168:75:170:9 | functio ...       } | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:168:75:170:9 | functio ...       } | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:168:75:170:9 | functio ...       } | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:168:75:170:9 | functio ...       } | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:169:15:169:21 | "<div>" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:169:15:169:21 | "<div>" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:169:15:169:21 | "<div>" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:169:15:169:21 | "<div>" | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:169:29:169:51 | innocen ... rvice() | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:169:29:169:51 | innocen ... rvice() | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:169:29:169:51 | innocen ... rvice() | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:169:29:169:51 | innocen ... rvice() | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:171:18:171:40 | "innoce ... ervice" | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:171:18:171:40 | "innoce ... ervice" | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:171:18:171:40 | "innoce ... ervice" | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:171:18:171:40 | "innoce ... ervice" | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:171:18:171:40 | "innoce ... ervice" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:171:18:171:40 | "innoce ... ervice" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:171:18:171:40 | "innoce ... ervice" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:171:18:171:40 | "innoce ... ervice" | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:171:18:171:40 | "innoce ... ervice" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:171:18:171:40 | "innoce ... ervice" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:171:18:171:40 | "innoce ... ervice" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:171:18:171:40 | "innoce ... ervice" | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:171:18:171:40 | "innoce ... ervice" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:171:18:171:40 | "innoce ... ervice" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:171:18:171:40 | "innoce ... ervice" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:171:18:171:40 | "innoce ... ervice" | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:171:43:173:9 | functio ...       } | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:171:43:173:9 | functio ...       } | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:171:43:173:9 | functio ...       } | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:171:43:173:9 | functio ...       } | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:171:43:173:9 | functio ...       } | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:171:43:173:9 | functio ...       } | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:171:43:173:9 | functio ...       } | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:171:43:173:9 | functio ...       } | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:171:43:173:9 | functio ...       } | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:171:43:173:9 | functio ...       } | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:171:43:173:9 | functio ...       } | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:171:43:173:9 | functio ...       } | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:171:43:173:9 | functio ...       } | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:171:43:173:9 | functio ...       } | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:171:43:173:9 | functio ...       } | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:171:43:173:9 | functio ...       } | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:180:28:180:33 | target | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:180:28:180:33 | target | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:180:28:180:33 | target | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:180:28:180:33 | target | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:186:31:186:37 | tainted | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:186:31:186:37 | tainted | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:186:31:186:37 | tainted | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:186:31:186:37 | tainted | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:188:42:188:48 | tainted | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:188:42:188:48 | tainted | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:188:42:188:48 | tainted | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:188:42:188:48 | tainted | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:189:33:189:39 | tainted | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:189:33:189:39 | tainted | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:189:33:189:39 | tainted | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:189:33:189:39 | tainted | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:191:54:191:60 | tainted | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:191:54:191:60 | tainted | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:191:54:191:60 | tainted | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:191:54:191:60 | tainted | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:192:45:192:51 | tainted | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:192:45:192:51 | tainted | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:192:45:192:51 | tainted | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:192:45:192:51 | tainted | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:193:49:193:55 | tainted | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:193:49:193:55 | tainted | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:193:49:193:55 | tainted | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:193:49:193:55 | tainted | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:199:25:199:29 | "div" | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:199:25:199:29 | "div" | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:199:25:199:29 | "div" | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:199:25:199:29 | "div" | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:199:25:199:29 | "div" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:199:25:199:29 | "div" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:199:25:199:29 | "div" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:199:25:199:29 | "div" | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:199:25:199:29 | "div" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:199:25:199:29 | "div" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:199:25:199:29 | "div" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:199:25:199:29 | "div" | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:199:25:199:29 | "div" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:199:25:199:29 | "div" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:199:25:199:29 | "div" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:199:25:199:29 | "div" | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:199:32:199:75 | {danger ... inted}} | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:199:32:199:75 | {danger ... inted}} | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:199:32:199:75 | {danger ... inted}} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:199:32:199:75 | {danger ... inted}} | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:199:32:199:75 | {danger ... inted}} | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:199:32:199:75 | {danger ... inted}} | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:199:32:199:75 | {danger ... inted}} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:199:32:199:75 | {danger ... inted}} | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:199:32:199:75 | {danger ... inted}} | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:199:32:199:75 | {danger ... inted}} | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:199:32:199:75 | {danger ... inted}} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:199:32:199:75 | {danger ... inted}} | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:199:32:199:75 | {danger ... inted}} | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:199:32:199:75 | {danger ... inted}} | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:199:32:199:75 | {danger ... inted}} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:199:32:199:75 | {danger ... inted}} | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:199:58:199:74 | {__html: tainted} | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:199:58:199:74 | {__html: tainted} | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:199:58:199:74 | {__html: tainted} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:199:58:199:74 | {__html: tainted} | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:199:58:199:74 | {__html: tainted} | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:199:58:199:74 | {__html: tainted} | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:199:58:199:74 | {__html: tainted} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:199:58:199:74 | {__html: tainted} | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:199:58:199:74 | {__html: tainted} | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:199:58:199:74 | {__html: tainted} | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:199:58:199:74 | {__html: tainted} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:199:58:199:74 | {__html: tainted} | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:199:67:199:73 | tainted | SqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:199:67:199:73 | tainted | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:199:67:199:73 | tainted | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:199:67:199:73 | tainted | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:199:67:199:73 | tainted | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:199:67:199:73 | tainted | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:199:67:199:73 | tainted | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:199:67:199:73 | tainted | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:199:67:199:73 | tainted | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:199:67:199:73 | tainted | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:199:67:199:73 | tainted | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:199:67:199:73 | tainted | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:200:25:200:29 | "div" | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:200:25:200:29 | "div" | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:200:25:200:29 | "div" | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:200:25:200:29 | "div" | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:200:25:200:29 | "div" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:200:25:200:29 | "div" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:200:25:200:29 | "div" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:200:25:200:29 | "div" | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:200:25:200:29 | "div" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:200:25:200:29 | "div" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:200:25:200:29 | "div" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:200:25:200:29 | "div" | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:200:25:200:29 | "div" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:200:25:200:29 | "div" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:200:25:200:29 | "div" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:200:25:200:29 | "div" | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:200:32:200:75 | {danger ... inted}} | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:200:32:200:75 | {danger ... inted}} | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:200:32:200:75 | {danger ... inted}} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:200:32:200:75 | {danger ... inted}} | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:200:32:200:75 | {danger ... inted}} | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:200:32:200:75 | {danger ... inted}} | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:200:32:200:75 | {danger ... inted}} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:200:32:200:75 | {danger ... inted}} | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:200:32:200:75 | {danger ... inted}} | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:200:32:200:75 | {danger ... inted}} | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:200:32:200:75 | {danger ... inted}} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:200:32:200:75 | {danger ... inted}} | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:200:32:200:75 | {danger ... inted}} | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:200:32:200:75 | {danger ... inted}} | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:200:32:200:75 | {danger ... inted}} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:200:32:200:75 | {danger ... inted}} | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:200:58:200:74 | {__html: tainted} | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:200:58:200:74 | {__html: tainted} | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:200:58:200:74 | {__html: tainted} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:200:58:200:74 | {__html: tainted} | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:200:58:200:74 | {__html: tainted} | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:200:58:200:74 | {__html: tainted} | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:200:58:200:74 | {__html: tainted} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:200:58:200:74 | {__html: tainted} | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:200:58:200:74 | {__html: tainted} | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:200:58:200:74 | {__html: tainted} | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:200:58:200:74 | {__html: tainted} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:200:58:200:74 | {__html: tainted} | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:200:67:200:73 | tainted | SqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:200:67:200:73 | tainted | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:200:67:200:73 | tainted | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:200:67:200:73 | tainted | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:200:67:200:73 | tainted | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:200:67:200:73 | tainted | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:200:67:200:73 | tainted | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:200:67:200:73 | tainted | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:200:67:200:73 | tainted | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:200:67:200:73 | tainted | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:200:67:200:73 | tainted | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:200:67:200:73 | tainted | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:206:27:206:55 | () => ( ... nted }) | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:206:27:206:55 | () => ( ... nted }) | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:206:27:206:55 | () => ( ... nted }) | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:206:27:206:55 | () => ( ... nted }) | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:206:27:206:55 | () => ( ... nted }) | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:206:27:206:55 | () => ( ... nted }) | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:206:27:206:55 | () => ( ... nted }) | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:206:27:206:55 | () => ( ... nted }) | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:206:27:206:55 | () => ( ... nted }) | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:206:27:206:55 | () => ( ... nted }) | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:206:27:206:55 | () => ( ... nted }) | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:206:27:206:55 | () => ( ... nted }) | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:212:15:212:20 | 'myId' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:212:15:212:20 | 'myId' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:212:15:212:20 | 'myId' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:212:15:212:20 | 'myId' | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:212:15:212:20 | 'myId' | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:212:15:212:20 | 'myId' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:212:15:212:20 | 'myId' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:212:15:212:20 | 'myId' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:212:15:212:20 | 'myId' | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:212:15:212:20 | 'myId' | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:212:15:212:20 | 'myId' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:212:15:212:20 | 'myId' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:212:15:212:20 | 'myId' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:212:15:212:20 | 'myId' | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:212:15:212:20 | 'myId' | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:212:15:212:20 | 'myId' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:212:15:212:20 | 'myId' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:212:15:212:20 | 'myId' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:212:15:212:20 | 'myId' | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:212:15:212:20 | 'myId' | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:212:28:212:46 | this.state.tainted1 | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:212:28:212:46 | this.state.tainted1 | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:212:28:212:46 | this.state.tainted1 | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:212:28:212:46 | this.state.tainted1 | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:213:15:213:20 | 'myId' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:213:15:213:20 | 'myId' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:213:15:213:20 | 'myId' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:213:15:213:20 | 'myId' | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:213:15:213:20 | 'myId' | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:213:15:213:20 | 'myId' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:213:15:213:20 | 'myId' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:213:15:213:20 | 'myId' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:213:15:213:20 | 'myId' | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:213:15:213:20 | 'myId' | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:213:15:213:20 | 'myId' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:213:15:213:20 | 'myId' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:213:15:213:20 | 'myId' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:213:15:213:20 | 'myId' | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:213:15:213:20 | 'myId' | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:213:15:213:20 | 'myId' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:213:15:213:20 | 'myId' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:213:15:213:20 | 'myId' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:213:15:213:20 | 'myId' | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:213:15:213:20 | 'myId' | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:213:28:213:46 | this.state.tainted2 | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:213:28:213:46 | this.state.tainted2 | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:213:28:213:46 | this.state.tainted2 | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:213:28:213:46 | this.state.tainted2 | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:214:15:214:20 | 'myId' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:214:15:214:20 | 'myId' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:214:15:214:20 | 'myId' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:214:15:214:20 | 'myId' | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:214:15:214:20 | 'myId' | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:214:15:214:20 | 'myId' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:214:15:214:20 | 'myId' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:214:15:214:20 | 'myId' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:214:15:214:20 | 'myId' | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:214:15:214:20 | 'myId' | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:214:15:214:20 | 'myId' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:214:15:214:20 | 'myId' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:214:15:214:20 | 'myId' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:214:15:214:20 | 'myId' | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:214:15:214:20 | 'myId' | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:214:15:214:20 | 'myId' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:214:15:214:20 | 'myId' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:214:15:214:20 | 'myId' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:214:15:214:20 | 'myId' | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:214:15:214:20 | 'myId' | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:214:28:214:46 | this.state.tainted3 | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:214:28:214:46 | this.state.tainted3 | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:214:28:214:46 | this.state.tainted3 | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:214:28:214:46 | this.state.tainted3 | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:215:15:215:20 | 'myId' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:215:15:215:20 | 'myId' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:215:15:215:20 | 'myId' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:215:15:215:20 | 'myId' | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:215:15:215:20 | 'myId' | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:215:15:215:20 | 'myId' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:215:15:215:20 | 'myId' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:215:15:215:20 | 'myId' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:215:15:215:20 | 'myId' | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:215:15:215:20 | 'myId' | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:215:15:215:20 | 'myId' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:215:15:215:20 | 'myId' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:215:15:215:20 | 'myId' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:215:15:215:20 | 'myId' | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:215:15:215:20 | 'myId' | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:215:15:215:20 | 'myId' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:215:15:215:20 | 'myId' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:215:15:215:20 | 'myId' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:215:15:215:20 | 'myId' | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:215:15:215:20 | 'myId' | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:215:28:215:48 | this.st ... Tainted | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:215:28:215:48 | this.st ... Tainted | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:215:28:215:48 | this.st ... Tainted | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:215:28:215:48 | this.st ... Tainted | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:217:27:219:13 | prevSta ...       } | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:217:27:219:13 | prevSta ...       } | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:217:27:219:13 | prevSta ...       } | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:217:27:219:13 | prevSta ...       } | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:217:27:219:13 | prevSta ...       } | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:217:27:219:13 | prevSta ...       } | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:217:27:219:13 | prevSta ...       } | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:217:27:219:13 | prevSta ...       } | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:217:27:219:13 | prevSta ...       } | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:217:27:219:13 | prevSta ...       } | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:217:27:219:13 | prevSta ...       } | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:217:27:219:13 | prevSta ...       } | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:218:19:218:24 | 'myId' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:218:19:218:24 | 'myId' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:218:19:218:24 | 'myId' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:218:19:218:24 | 'myId' | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:218:19:218:24 | 'myId' | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:218:19:218:24 | 'myId' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:218:19:218:24 | 'myId' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:218:19:218:24 | 'myId' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:218:19:218:24 | 'myId' | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:218:19:218:24 | 'myId' | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:218:19:218:24 | 'myId' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:218:19:218:24 | 'myId' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:218:19:218:24 | 'myId' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:218:19:218:24 | 'myId' | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:218:19:218:24 | 'myId' | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:218:19:218:24 | 'myId' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:218:19:218:24 | 'myId' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:218:19:218:24 | 'myId' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:218:19:218:24 | 'myId' | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:218:19:218:24 | 'myId' | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:218:32:218:49 | prevState.tainted4 | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:218:32:218:49 | prevState.tainted4 | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:218:32:218:49 | prevState.tainted4 | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:218:32:218:49 | prevState.tainted4 | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:225:15:225:20 | 'myId' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:225:15:225:20 | 'myId' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:225:15:225:20 | 'myId' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:225:15:225:20 | 'myId' | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:225:15:225:20 | 'myId' | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:225:15:225:20 | 'myId' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:225:15:225:20 | 'myId' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:225:15:225:20 | 'myId' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:225:15:225:20 | 'myId' | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:225:15:225:20 | 'myId' | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:225:15:225:20 | 'myId' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:225:15:225:20 | 'myId' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:225:15:225:20 | 'myId' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:225:15:225:20 | 'myId' | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:225:15:225:20 | 'myId' | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:225:15:225:20 | 'myId' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:225:15:225:20 | 'myId' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:225:15:225:20 | 'myId' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:225:15:225:20 | 'myId' | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:225:15:225:20 | 'myId' | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:225:28:225:46 | this.props.tainted1 | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:225:28:225:46 | this.props.tainted1 | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:225:28:225:46 | this.props.tainted1 | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:225:28:225:46 | this.props.tainted1 | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:226:15:226:20 | 'myId' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:226:15:226:20 | 'myId' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:226:15:226:20 | 'myId' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:226:15:226:20 | 'myId' | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:226:15:226:20 | 'myId' | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:226:15:226:20 | 'myId' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:226:15:226:20 | 'myId' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:226:15:226:20 | 'myId' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:226:15:226:20 | 'myId' | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:226:15:226:20 | 'myId' | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:226:15:226:20 | 'myId' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:226:15:226:20 | 'myId' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:226:15:226:20 | 'myId' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:226:15:226:20 | 'myId' | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:226:15:226:20 | 'myId' | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:226:15:226:20 | 'myId' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:226:15:226:20 | 'myId' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:226:15:226:20 | 'myId' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:226:15:226:20 | 'myId' | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:226:15:226:20 | 'myId' | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:226:28:226:46 | this.props.tainted2 | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:226:28:226:46 | this.props.tainted2 | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:226:28:226:46 | this.props.tainted2 | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:226:28:226:46 | this.props.tainted2 | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:227:15:227:20 | 'myId' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:227:15:227:20 | 'myId' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:227:15:227:20 | 'myId' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:227:15:227:20 | 'myId' | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:227:15:227:20 | 'myId' | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:227:15:227:20 | 'myId' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:227:15:227:20 | 'myId' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:227:15:227:20 | 'myId' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:227:15:227:20 | 'myId' | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:227:15:227:20 | 'myId' | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:227:15:227:20 | 'myId' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:227:15:227:20 | 'myId' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:227:15:227:20 | 'myId' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:227:15:227:20 | 'myId' | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:227:15:227:20 | 'myId' | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:227:15:227:20 | 'myId' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:227:15:227:20 | 'myId' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:227:15:227:20 | 'myId' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:227:15:227:20 | 'myId' | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:227:15:227:20 | 'myId' | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:227:28:227:46 | this.props.tainted3 | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:227:28:227:46 | this.props.tainted3 | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:227:28:227:46 | this.props.tainted3 | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:227:28:227:46 | this.props.tainted3 | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:228:15:228:20 | 'myId' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:228:15:228:20 | 'myId' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:228:15:228:20 | 'myId' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:228:15:228:20 | 'myId' | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:228:15:228:20 | 'myId' | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:228:15:228:20 | 'myId' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:228:15:228:20 | 'myId' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:228:15:228:20 | 'myId' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:228:15:228:20 | 'myId' | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:228:15:228:20 | 'myId' | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:228:15:228:20 | 'myId' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:228:15:228:20 | 'myId' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:228:15:228:20 | 'myId' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:228:15:228:20 | 'myId' | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:228:15:228:20 | 'myId' | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:228:15:228:20 | 'myId' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:228:15:228:20 | 'myId' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:228:15:228:20 | 'myId' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:228:15:228:20 | 'myId' | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:228:15:228:20 | 'myId' | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:228:28:228:48 | this.pr ... Tainted | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:228:28:228:48 | this.pr ... Tainted | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:228:28:228:48 | this.pr ... Tainted | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:228:28:228:48 | this.pr ... Tainted | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:230:27:232:13 | (prevSt ...       } | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:230:27:232:13 | (prevSt ...       } | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:230:27:232:13 | (prevSt ...       } | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:230:27:232:13 | (prevSt ...       } | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:230:27:232:13 | (prevSt ...       } | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:230:27:232:13 | (prevSt ...       } | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:230:27:232:13 | (prevSt ...       } | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:230:27:232:13 | (prevSt ...       } | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:230:27:232:13 | (prevSt ...       } | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:230:27:232:13 | (prevSt ...       } | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:230:27:232:13 | (prevSt ...       } | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:230:27:232:13 | (prevSt ...       } | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:231:19:231:24 | 'myId' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:231:19:231:24 | 'myId' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:231:19:231:24 | 'myId' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:231:19:231:24 | 'myId' | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:231:19:231:24 | 'myId' | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:231:19:231:24 | 'myId' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:231:19:231:24 | 'myId' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:231:19:231:24 | 'myId' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:231:19:231:24 | 'myId' | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:231:19:231:24 | 'myId' | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:231:19:231:24 | 'myId' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:231:19:231:24 | 'myId' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:231:19:231:24 | 'myId' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:231:19:231:24 | 'myId' | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:231:19:231:24 | 'myId' | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:231:19:231:24 | 'myId' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:231:19:231:24 | 'myId' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:231:19:231:24 | 'myId' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:231:19:231:24 | 'myId' | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:231:19:231:24 | 'myId' | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:231:32:231:49 | prevProps.tainted4 | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:231:32:231:49 | prevProps.tainted4 | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:231:32:231:49 | prevProps.tainted4 | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:231:32:231:49 | prevProps.tainted4 | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:246:19:246:23 | props | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:246:19:246:23 | props | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:246:19:246:23 | props | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:246:19:246:23 | props | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:246:19:246:23 | props | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:246:19:246:23 | props | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:246:19:246:23 | props | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:246:19:246:23 | props | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:246:19:246:23 | props | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:246:19:246:23 | props | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:246:19:246:23 | props | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:246:19:246:23 | props | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:246:19:246:23 | props | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:246:19:246:23 | props | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:246:19:246:23 | props | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:246:19:246:23 | props | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:251:51:251:83 | {__html ... ainted} | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:251:51:251:83 | {__html ... ainted} | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:251:51:251:83 | {__html ... ainted} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:251:51:251:83 | {__html ... ainted} | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:251:60:251:82 | this.st ... Tainted | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:251:60:251:82 | this.st ... Tainted | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:251:60:251:82 | this.st ... Tainted | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:251:60:251:82 | this.st ... Tainted | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:259:7:259:17 | window.name | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:259:7:259:17 | window.name | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:259:7:259:17 | window.name | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:259:7:259:17 | window.name | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:260:7:260:10 | name | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:260:7:260:10 | name | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:260:7:260:10 | name | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:260:7:260:10 | name | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:264:11:264:21 | window.name | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:264:11:264:21 | window.name | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:264:11:264:21 | window.name | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:264:11:264:21 | window.name | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:265:11:265:14 | name | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:265:11:265:14 | name | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:265:11:265:14 | name | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:265:11:265:14 | name | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:270:7:270:14 | location | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:270:7:270:14 | location | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:270:7:270:14 | location | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:270:7:270:14 | location | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:271:7:271:21 | window.location | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:271:7:271:21 | window.location | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:271:7:271:21 | window.location | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:271:7:271:21 | window.location | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:272:7:272:23 | document.location | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:272:7:272:23 | document.location | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:272:7:272:23 | document.location | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:272:7:272:23 | document.location | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:276:7:276:10 | loc1 | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:276:7:276:10 | loc1 | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:276:7:276:10 | loc1 | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:276:7:276:10 | loc1 | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:277:7:277:10 | loc2 | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:277:7:277:10 | loc2 | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:277:7:277:10 | loc2 | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:277:7:277:10 | loc2 | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:278:7:278:10 | loc3 | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:278:7:278:10 | loc3 | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:278:7:278:10 | loc3 | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:278:7:278:10 | loc3 | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:280:7:280:12 | "body" | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:280:7:280:12 | "body" | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:280:7:280:12 | "body" | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:280:7:280:12 | "body" | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:280:7:280:12 | "body" | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:280:7:280:12 | "body" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:280:7:280:12 | "body" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:280:7:280:12 | "body" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:280:7:280:12 | "body" | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:280:7:280:12 | "body" | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:280:7:280:12 | "body" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:280:7:280:12 | "body" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:280:7:280:12 | "body" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:280:7:280:12 | "body" | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:280:7:280:12 | "body" | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:280:7:280:12 | "body" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:280:7:280:12 | "body" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:280:7:280:12 | "body" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:280:7:280:12 | "body" | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:280:7:280:12 | "body" | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:280:22:280:29 | location | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:280:22:280:29 | location | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:280:22:280:29 | location | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:280:22:280:29 | location | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:287:22:287:65 | documen ... item(0) | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:287:22:287:65 | documen ... item(0) | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:287:22:287:65 | documen ... item(0) | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:287:22:287:65 | documen ... item(0) | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:287:22:287:65 | documen ... item(0) | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:287:22:287:65 | documen ... item(0) | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:287:22:287:65 | documen ... item(0) | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:287:22:287:65 | documen ... item(0) | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:287:22:287:65 | documen ... item(0) | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:287:22:287:65 | documen ... item(0) | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:287:22:287:65 | documen ... item(0) | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:287:22:287:65 | documen ... item(0) | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:287:22:287:65 | documen ... item(0) | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:287:22:287:65 | documen ... item(0) | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:287:22:287:65 | documen ... item(0) | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:287:22:287:65 | documen ... item(0) | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:287:52:287:56 | "div" | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:287:52:287:56 | "div" | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:287:52:287:56 | "div" | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:287:52:287:56 | "div" | NosqlInjection | notASinkReason | DOM | string |
-| autogenerated/Xss/DomBasedXss/tst.js:287:52:287:56 | "div" | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:287:52:287:56 | "div" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:287:52:287:56 | "div" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:287:52:287:56 | "div" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:287:52:287:56 | "div" | SqlInjection | notASinkReason | DOM | string |
-| autogenerated/Xss/DomBasedXss/tst.js:287:52:287:56 | "div" | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:287:52:287:56 | "div" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:287:52:287:56 | "div" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:287:52:287:56 | "div" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:287:52:287:56 | "div" | TaintedPath | notASinkReason | DOM | string |
-| autogenerated/Xss/DomBasedXss/tst.js:287:52:287:56 | "div" | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:287:52:287:56 | "div" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:287:52:287:56 | "div" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:287:52:287:56 | "div" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:287:52:287:56 | "div" | Xss | notASinkReason | DOM | string |
-| autogenerated/Xss/DomBasedXss/tst.js:287:52:287:56 | "div" | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:287:64:287:64 | 0 | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:287:64:287:64 | 0 | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:287:64:287:64 | 0 | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:287:64:287:64 | 0 | NosqlInjection | notASinkReason | DOM | string |
-| autogenerated/Xss/DomBasedXss/tst.js:287:64:287:64 | 0 | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:287:64:287:64 | 0 | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:287:64:287:64 | 0 | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:287:64:287:64 | 0 | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:287:64:287:64 | 0 | SqlInjection | notASinkReason | DOM | string |
-| autogenerated/Xss/DomBasedXss/tst.js:287:64:287:64 | 0 | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:287:64:287:64 | 0 | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:287:64:287:64 | 0 | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:287:64:287:64 | 0 | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:287:64:287:64 | 0 | TaintedPath | notASinkReason | DOM | string |
-| autogenerated/Xss/DomBasedXss/tst.js:287:64:287:64 | 0 | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:287:64:287:64 | 0 | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:287:64:287:64 | 0 | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:287:64:287:64 | 0 | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:287:64:287:64 | 0 | Xss | notASinkReason | DOM | string |
-| autogenerated/Xss/DomBasedXss/tst.js:287:64:287:64 | 0 | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:288:59:288:65 | tainted | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:288:59:288:65 | tainted | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:288:59:288:65 | tainted | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:288:59:288:65 | tainted | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:289:31:289:46 | documentFragment | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:289:31:289:46 | documentFragment | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:289:31:289:46 | documentFragment | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:289:31:289:46 | documentFragment | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:296:9:296:9 | p | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:296:9:296:9 | p | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:296:9:296:9 | p | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:296:9:296:9 | p | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:303:5:303:10 | "body" | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:303:5:303:10 | "body" | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:303:5:303:10 | "body" | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:303:5:303:10 | "body" | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:303:5:303:10 | "body" | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:303:5:303:10 | "body" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:303:5:303:10 | "body" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:303:5:303:10 | "body" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:303:5:303:10 | "body" | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:303:5:303:10 | "body" | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:303:5:303:10 | "body" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:303:5:303:10 | "body" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:303:5:303:10 | "body" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:303:5:303:10 | "body" | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:303:5:303:10 | "body" | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:303:5:303:10 | "body" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:303:5:303:10 | "body" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:303:5:303:10 | "body" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:303:5:303:10 | "body" | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:303:5:303:10 | "body" | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:303:20:303:20 | e | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:303:20:303:20 | e | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:303:20:303:20 | e | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:303:20:303:20 | e | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:311:5:311:10 | "body" | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:311:5:311:10 | "body" | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:311:5:311:10 | "body" | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:311:5:311:10 | "body" | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:311:5:311:10 | "body" | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:311:5:311:10 | "body" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:311:5:311:10 | "body" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:311:5:311:10 | "body" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:311:5:311:10 | "body" | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:311:5:311:10 | "body" | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:311:5:311:10 | "body" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:311:5:311:10 | "body" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:311:5:311:10 | "body" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:311:5:311:10 | "body" | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:311:5:311:10 | "body" | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:311:5:311:10 | "body" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:311:5:311:10 | "body" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:311:5:311:10 | "body" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:311:5:311:10 | "body" | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:311:5:311:10 | "body" | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:311:20:311:20 | e | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:311:20:311:20 | e | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:311:20:311:20 | e | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:311:20:311:20 | e | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:316:35:316:42 | location | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:316:35:316:42 | location | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:316:35:316:42 | location | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:316:35:316:42 | location | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:323:5:323:10 | 'myId' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:323:5:323:10 | 'myId' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:323:5:323:10 | 'myId' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:323:5:323:10 | 'myId' | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:323:5:323:10 | 'myId' | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:323:5:323:10 | 'myId' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:323:5:323:10 | 'myId' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:323:5:323:10 | 'myId' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:323:5:323:10 | 'myId' | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:323:5:323:10 | 'myId' | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:323:5:323:10 | 'myId' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:323:5:323:10 | 'myId' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:323:5:323:10 | 'myId' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:323:5:323:10 | 'myId' | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:323:5:323:10 | 'myId' | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:323:5:323:10 | 'myId' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:323:5:323:10 | 'myId' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:323:5:323:10 | 'myId' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:323:5:323:10 | 'myId' | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:323:5:323:10 | 'myId' | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:323:18:323:30 | target.length | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:323:18:323:30 | target.length | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:323:18:323:30 | target.length | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:323:18:323:30 | target.length | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:332:5:332:10 | 'name' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:332:5:332:10 | 'name' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:332:5:332:10 | 'name' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:332:5:332:10 | 'name' | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:332:5:332:10 | 'name' | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:332:5:332:10 | 'name' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:332:5:332:10 | 'name' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:332:5:332:10 | 'name' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:332:5:332:10 | 'name' | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:332:5:332:10 | 'name' | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:332:5:332:10 | 'name' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:332:5:332:10 | 'name' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:332:5:332:10 | 'name' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:332:5:332:10 | 'name' | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:332:5:332:10 | 'name' | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:332:5:332:10 | 'name' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:332:5:332:10 | 'name' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:332:5:332:10 | 'name' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:332:5:332:10 | 'name' | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:332:5:332:10 | 'name' | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:332:18:332:35 | params.get('name') | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:332:18:332:35 | params.get('name') | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:332:18:332:35 | params.get('name') | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:332:18:332:35 | params.get('name') | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:332:29:332:34 | 'name' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:332:29:332:34 | 'name' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:332:29:332:34 | 'name' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:332:29:332:34 | 'name' | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:332:29:332:34 | 'name' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:332:29:332:34 | 'name' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:332:29:332:34 | 'name' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:332:29:332:34 | 'name' | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:332:29:332:34 | 'name' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:332:29:332:34 | 'name' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:332:29:332:34 | 'name' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:332:29:332:34 | 'name' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:332:29:332:34 | 'name' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:332:29:332:34 | 'name' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:332:29:332:34 | 'name' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:332:29:332:34 | 'name' | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:335:5:335:10 | 'name' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:335:5:335:10 | 'name' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:335:5:335:10 | 'name' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:335:5:335:10 | 'name' | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:335:5:335:10 | 'name' | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:335:5:335:10 | 'name' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:335:5:335:10 | 'name' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:335:5:335:10 | 'name' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:335:5:335:10 | 'name' | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:335:5:335:10 | 'name' | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:335:5:335:10 | 'name' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:335:5:335:10 | 'name' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:335:5:335:10 | 'name' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:335:5:335:10 | 'name' | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:335:5:335:10 | 'name' | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:335:5:335:10 | 'name' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:335:5:335:10 | 'name' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:335:5:335:10 | 'name' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:335:5:335:10 | 'name' | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:335:5:335:10 | 'name' | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:335:18:335:34 | myUrl.get('name') | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:335:18:335:34 | myUrl.get('name') | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:335:18:335:34 | myUrl.get('name') | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:335:18:335:34 | myUrl.get('name') | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:335:28:335:33 | 'name' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:335:28:335:33 | 'name' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:335:28:335:33 | 'name' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:335:28:335:33 | 'name' | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:335:28:335:33 | 'name' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:335:28:335:33 | 'name' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:335:28:335:33 | 'name' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:335:28:335:33 | 'name' | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:335:28:335:33 | 'name' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:335:28:335:33 | 'name' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:335:28:335:33 | 'name' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:335:28:335:33 | 'name' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:335:28:335:33 | 'name' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:335:28:335:33 | 'name' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:335:28:335:33 | 'name' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:335:28:335:33 | 'name' | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:343:5:343:30 | getUrl( ... ring(1) | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:343:5:343:30 | getUrl( ... ring(1) | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:343:5:343:30 | getUrl( ... ring(1) | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:343:5:343:30 | getUrl( ... ring(1) | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:343:29:343:29 | 1 | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:343:29:343:29 | 1 | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:343:29:343:29 | 1 | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:343:29:343:29 | 1 | NosqlInjection | notASinkReason | BuiltinCallName | string |
-| autogenerated/Xss/DomBasedXss/tst.js:343:29:343:29 | 1 | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:343:29:343:29 | 1 | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:343:29:343:29 | 1 | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:343:29:343:29 | 1 | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:343:29:343:29 | 1 | SqlInjection | notASinkReason | BuiltinCallName | string |
-| autogenerated/Xss/DomBasedXss/tst.js:343:29:343:29 | 1 | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:343:29:343:29 | 1 | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:343:29:343:29 | 1 | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:343:29:343:29 | 1 | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:343:29:343:29 | 1 | TaintedPath | notASinkReason | BuiltinCallName | string |
-| autogenerated/Xss/DomBasedXss/tst.js:343:29:343:29 | 1 | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:343:29:343:29 | 1 | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:343:29:343:29 | 1 | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:343:29:343:29 | 1 | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:343:29:343:29 | 1 | Xss | notASinkReason | BuiltinCallName | string |
-| autogenerated/Xss/DomBasedXss/tst.js:343:29:343:29 | 1 | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:349:12:349:17 | target | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:349:12:349:17 | target | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:349:12:349:17 | target | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:349:12:349:17 | target | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:356:16:356:21 | target | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:356:16:356:21 | target | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:356:16:356:21 | target | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:356:16:356:21 | target | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:357:20:357:25 | target | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:357:20:357:25 | target | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:357:20:357:25 | target | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:357:20:357:25 | target | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:359:13:364:3 | functio ... OK.\\n\\t\\t} | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:359:13:364:3 | functio ... OK.\\n\\t\\t} | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:359:13:364:3 | functio ... OK.\\n\\t\\t} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:359:13:364:3 | functio ... OK.\\n\\t\\t} | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:359:13:364:3 | functio ... OK.\\n\\t\\t} | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:359:13:364:3 | functio ... OK.\\n\\t\\t} | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:359:13:364:3 | functio ... OK.\\n\\t\\t} | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:359:13:364:3 | functio ... OK.\\n\\t\\t} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:359:13:364:3 | functio ... OK.\\n\\t\\t} | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:359:13:364:3 | functio ... OK.\\n\\t\\t} | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:359:13:364:3 | functio ... OK.\\n\\t\\t} | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:359:13:364:3 | functio ... OK.\\n\\t\\t} | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:359:13:364:3 | functio ... OK.\\n\\t\\t} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:359:13:364:3 | functio ... OK.\\n\\t\\t} | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:359:13:364:3 | functio ... OK.\\n\\t\\t} | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:359:13:364:3 | functio ... OK.\\n\\t\\t} | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:359:13:364:3 | functio ... OK.\\n\\t\\t} | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:359:13:364:3 | functio ... OK.\\n\\t\\t} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:359:13:364:3 | functio ... OK.\\n\\t\\t} | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:359:13:364:3 | functio ... OK.\\n\\t\\t} | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:360:21:360:26 | target | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:360:21:360:26 | target | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:360:21:360:26 | target | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:360:21:360:26 | target | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:361:14:361:19 | target | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:361:14:361:19 | target | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:361:14:361:19 | target | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:361:14:361:19 | target | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:361:14:361:19 | target | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:361:14:361:19 | target | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:361:14:361:19 | target | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:361:14:361:19 | target | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:361:14:361:19 | target | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:361:14:361:19 | target | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:361:14:361:19 | target | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:361:14:361:19 | target | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:363:18:363:23 | target | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:363:18:363:23 | target | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:363:18:363:23 | target | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:363:18:363:23 | target | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:374:5:374:10 | 'myId' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:374:5:374:10 | 'myId' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:374:5:374:10 | 'myId' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:374:5:374:10 | 'myId' | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:374:5:374:10 | 'myId' | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:374:5:374:10 | 'myId' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:374:5:374:10 | 'myId' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:374:5:374:10 | 'myId' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:374:5:374:10 | 'myId' | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:374:5:374:10 | 'myId' | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:374:5:374:10 | 'myId' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:374:5:374:10 | 'myId' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:374:5:374:10 | 'myId' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:374:5:374:10 | 'myId' | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:374:5:374:10 | 'myId' | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:374:5:374:10 | 'myId' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:374:5:374:10 | 'myId' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:374:5:374:10 | 'myId' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:374:5:374:10 | 'myId' | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:374:5:374:10 | 'myId' | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:374:18:374:23 | target | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:374:18:374:23 | target | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:374:18:374:23 | target | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:374:18:374:23 | target | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:377:5:377:10 | 'myid' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:377:5:377:10 | 'myid' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:377:5:377:10 | 'myid' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:377:5:377:10 | 'myid' | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:377:5:377:10 | 'myid' | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:377:5:377:10 | 'myid' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:377:5:377:10 | 'myid' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:377:5:377:10 | 'myid' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:377:5:377:10 | 'myid' | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:377:5:377:10 | 'myid' | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:377:5:377:10 | 'myid' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:377:5:377:10 | 'myid' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:377:5:377:10 | 'myid' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:377:5:377:10 | 'myid' | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:377:5:377:10 | 'myid' | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:377:5:377:10 | 'myid' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:377:5:377:10 | 'myid' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:377:5:377:10 | 'myid' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:377:5:377:10 | 'myid' | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:377:5:377:10 | 'myid' | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:377:18:377:53 | documen ... "?")[0] | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:377:18:377:53 | documen ... "?")[0] | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:377:18:377:53 | documen ... "?")[0] | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:377:18:377:53 | documen ... "?")[0] | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:377:47:377:49 | "?" | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:377:47:377:49 | "?" | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:377:47:377:49 | "?" | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:377:47:377:49 | "?" | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:377:47:377:49 | "?" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:377:47:377:49 | "?" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:377:47:377:49 | "?" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:377:47:377:49 | "?" | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:377:47:377:49 | "?" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:377:47:377:49 | "?" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:377:47:377:49 | "?" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:377:47:377:49 | "?" | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:377:47:377:49 | "?" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:377:47:377:49 | "?" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:377:47:377:49 | "?" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:377:47:377:49 | "?" | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:384:5:384:10 | 'myId' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:384:5:384:10 | 'myId' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:384:5:384:10 | 'myId' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:384:5:384:10 | 'myId' | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:384:5:384:10 | 'myId' | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:384:5:384:10 | 'myId' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:384:5:384:10 | 'myId' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:384:5:384:10 | 'myId' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:384:5:384:10 | 'myId' | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:384:5:384:10 | 'myId' | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:384:5:384:10 | 'myId' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:384:5:384:10 | 'myId' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:384:5:384:10 | 'myId' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:384:5:384:10 | 'myId' | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:384:5:384:10 | 'myId' | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:384:5:384:10 | 'myId' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:384:5:384:10 | 'myId' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:384:5:384:10 | 'myId' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:384:5:384:10 | 'myId' | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:384:5:384:10 | 'myId' | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:384:18:384:23 | target | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:384:18:384:23 | target | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:384:18:384:23 | target | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:384:18:384:23 | target | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:386:5:386:10 | 'myId' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:386:5:386:10 | 'myId' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:386:5:386:10 | 'myId' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:386:5:386:10 | 'myId' | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:386:5:386:10 | 'myId' | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:386:5:386:10 | 'myId' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:386:5:386:10 | 'myId' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:386:5:386:10 | 'myId' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:386:5:386:10 | 'myId' | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:386:5:386:10 | 'myId' | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:386:5:386:10 | 'myId' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:386:5:386:10 | 'myId' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:386:5:386:10 | 'myId' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:386:5:386:10 | 'myId' | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:386:5:386:10 | 'myId' | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:386:5:386:10 | 'myId' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:386:5:386:10 | 'myId' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:386:5:386:10 | 'myId' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:386:5:386:10 | 'myId' | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:386:5:386:10 | 'myId' | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:386:18:386:29 | target.taint | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:386:18:386:29 | target.taint | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:386:18:386:29 | target.taint | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:386:18:386:29 | target.taint | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:389:5:389:10 | 'myId' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:389:5:389:10 | 'myId' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:389:5:389:10 | 'myId' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:389:5:389:10 | 'myId' | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:389:5:389:10 | 'myId' | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:389:5:389:10 | 'myId' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:389:5:389:10 | 'myId' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:389:5:389:10 | 'myId' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:389:5:389:10 | 'myId' | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:389:5:389:10 | 'myId' | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:389:5:389:10 | 'myId' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:389:5:389:10 | 'myId' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:389:5:389:10 | 'myId' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:389:5:389:10 | 'myId' | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:389:5:389:10 | 'myId' | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:389:5:389:10 | 'myId' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:389:5:389:10 | 'myId' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:389:5:389:10 | 'myId' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:389:5:389:10 | 'myId' | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:389:5:389:10 | 'myId' | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:389:18:389:30 | target.taint2 | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:389:18:389:30 | target.taint2 | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:389:18:389:30 | target.taint2 | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:389:18:389:30 | target.taint2 | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:392:5:392:10 | 'myId' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:392:5:392:10 | 'myId' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:392:5:392:10 | 'myId' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:392:5:392:10 | 'myId' | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:392:5:392:10 | 'myId' | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:392:5:392:10 | 'myId' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:392:5:392:10 | 'myId' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:392:5:392:10 | 'myId' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:392:5:392:10 | 'myId' | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:392:5:392:10 | 'myId' | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:392:5:392:10 | 'myId' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:392:5:392:10 | 'myId' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:392:5:392:10 | 'myId' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:392:5:392:10 | 'myId' | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:392:5:392:10 | 'myId' | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:392:5:392:10 | 'myId' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:392:5:392:10 | 'myId' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:392:5:392:10 | 'myId' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:392:5:392:10 | 'myId' | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:392:5:392:10 | 'myId' | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:392:18:392:30 | target.taint3 | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:392:18:392:30 | target.taint3 | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:392:18:392:30 | target.taint3 | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:392:18:392:30 | target.taint3 | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:395:5:395:10 | 'myId' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:395:5:395:10 | 'myId' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:395:5:395:10 | 'myId' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:395:5:395:10 | 'myId' | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:395:5:395:10 | 'myId' | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:395:5:395:10 | 'myId' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:395:5:395:10 | 'myId' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:395:5:395:10 | 'myId' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:395:5:395:10 | 'myId' | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:395:5:395:10 | 'myId' | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:395:5:395:10 | 'myId' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:395:5:395:10 | 'myId' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:395:5:395:10 | 'myId' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:395:5:395:10 | 'myId' | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:395:5:395:10 | 'myId' | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:395:5:395:10 | 'myId' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:395:5:395:10 | 'myId' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:395:5:395:10 | 'myId' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:395:5:395:10 | 'myId' | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:395:5:395:10 | 'myId' | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:395:18:395:34 | target.sub.taint4 | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:395:18:395:34 | target.sub.taint4 | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:395:18:395:34 | target.sub.taint4 | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:395:18:395:34 | target.sub.taint4 | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:397:5:397:10 | 'myId' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:397:5:397:10 | 'myId' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:397:5:397:10 | 'myId' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:397:5:397:10 | 'myId' | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:397:5:397:10 | 'myId' | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:397:5:397:10 | 'myId' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:397:5:397:10 | 'myId' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:397:5:397:10 | 'myId' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:397:5:397:10 | 'myId' | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:397:5:397:10 | 'myId' | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:397:5:397:10 | 'myId' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:397:5:397:10 | 'myId' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:397:5:397:10 | 'myId' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:397:5:397:10 | 'myId' | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:397:5:397:10 | 'myId' | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:397:5:397:10 | 'myId' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:397:5:397:10 | 'myId' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:397:5:397:10 | 'myId' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:397:5:397:10 | 'myId' | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:397:5:397:10 | 'myId' | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:397:18:397:30 | target.taint5 | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:397:18:397:30 | target.taint5 | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:397:18:397:30 | target.taint5 | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:397:18:397:30 | target.taint5 | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:402:5:402:10 | 'myId' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:402:5:402:10 | 'myId' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:402:5:402:10 | 'myId' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:402:5:402:10 | 'myId' | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:402:5:402:10 | 'myId' | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:402:5:402:10 | 'myId' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:402:5:402:10 | 'myId' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:402:5:402:10 | 'myId' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:402:5:402:10 | 'myId' | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:402:5:402:10 | 'myId' | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:402:5:402:10 | 'myId' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:402:5:402:10 | 'myId' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:402:5:402:10 | 'myId' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:402:5:402:10 | 'myId' | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:402:5:402:10 | 'myId' | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:402:5:402:10 | 'myId' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:402:5:402:10 | 'myId' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:402:5:402:10 | 'myId' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:402:5:402:10 | 'myId' | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:402:5:402:10 | 'myId' | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:402:18:402:30 | target.taint6 | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:402:18:402:30 | target.taint6 | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:402:18:402:30 | target.taint6 | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:402:18:402:30 | target.taint6 | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:406:5:406:10 | 'myId' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:406:5:406:10 | 'myId' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:406:5:406:10 | 'myId' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:406:5:406:10 | 'myId' | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:406:5:406:10 | 'myId' | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:406:5:406:10 | 'myId' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:406:5:406:10 | 'myId' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:406:5:406:10 | 'myId' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:406:5:406:10 | 'myId' | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:406:5:406:10 | 'myId' | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:406:5:406:10 | 'myId' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:406:5:406:10 | 'myId' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:406:5:406:10 | 'myId' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:406:5:406:10 | 'myId' | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:406:5:406:10 | 'myId' | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:406:5:406:10 | 'myId' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:406:5:406:10 | 'myId' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:406:5:406:10 | 'myId' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:406:5:406:10 | 'myId' | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:406:5:406:10 | 'myId' | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:406:18:406:30 | target.taint7 | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:406:18:406:30 | target.taint7 | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:406:18:406:30 | target.taint7 | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:406:18:406:30 | target.taint7 | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:409:5:409:10 | 'myId' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:409:5:409:10 | 'myId' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:409:5:409:10 | 'myId' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:409:5:409:10 | 'myId' | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:409:5:409:10 | 'myId' | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:409:5:409:10 | 'myId' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:409:5:409:10 | 'myId' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:409:5:409:10 | 'myId' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:409:5:409:10 | 'myId' | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:409:5:409:10 | 'myId' | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:409:5:409:10 | 'myId' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:409:5:409:10 | 'myId' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:409:5:409:10 | 'myId' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:409:5:409:10 | 'myId' | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:409:5:409:10 | 'myId' | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:409:5:409:10 | 'myId' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:409:5:409:10 | 'myId' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:409:5:409:10 | 'myId' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:409:5:409:10 | 'myId' | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:409:5:409:10 | 'myId' | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:409:18:409:30 | target.taint8 | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:409:18:409:30 | target.taint8 | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:409:18:409:30 | target.taint8 | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:409:18:409:30 | target.taint8 | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:412:5:412:10 | 'myId' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:412:5:412:10 | 'myId' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:412:5:412:10 | 'myId' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:412:5:412:10 | 'myId' | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:412:5:412:10 | 'myId' | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:412:5:412:10 | 'myId' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:412:5:412:10 | 'myId' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:412:5:412:10 | 'myId' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:412:5:412:10 | 'myId' | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:412:5:412:10 | 'myId' | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:412:5:412:10 | 'myId' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:412:5:412:10 | 'myId' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:412:5:412:10 | 'myId' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:412:5:412:10 | 'myId' | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:412:5:412:10 | 'myId' | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:412:5:412:10 | 'myId' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:412:5:412:10 | 'myId' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:412:5:412:10 | 'myId' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:412:5:412:10 | 'myId' | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:412:5:412:10 | 'myId' | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:412:18:412:30 | target.taint9 | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:412:18:412:30 | target.taint9 | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:412:18:412:30 | target.taint9 | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:412:18:412:30 | target.taint9 | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:416:45:416:45 | 1 | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:416:45:416:45 | 1 | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:416:45:416:45 | 1 | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:416:45:416:45 | 1 | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:416:45:416:45 | 1 | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:416:45:416:45 | 1 | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:416:45:416:45 | 1 | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:416:45:416:45 | 1 | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:416:45:416:45 | 1 | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:416:45:416:45 | 1 | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:416:45:416:45 | 1 | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:416:45:416:45 | 1 | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:416:45:416:45 | 1 | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:416:45:416:45 | 1 | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:416:45:416:45 | 1 | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:416:45:416:45 | 1 | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:417:18:417:24 | payload | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:417:18:417:24 | payload | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:417:18:417:24 | payload | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:417:18:417:24 | payload | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:419:42:419:54 | /hello (\\w+)/ | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:419:42:419:54 | /hello (\\w+)/ | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:419:42:419:54 | /hello (\\w+)/ | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:419:42:419:54 | /hello (\\w+)/ | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:419:42:419:54 | /hello (\\w+)/ | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:419:42:419:54 | /hello (\\w+)/ | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:419:42:419:54 | /hello (\\w+)/ | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:419:42:419:54 | /hello (\\w+)/ | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:419:42:419:54 | /hello (\\w+)/ | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:419:42:419:54 | /hello (\\w+)/ | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:419:42:419:54 | /hello (\\w+)/ | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:419:42:419:54 | /hello (\\w+)/ | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:419:42:419:54 | /hello (\\w+)/ | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:419:42:419:54 | /hello (\\w+)/ | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:419:42:419:54 | /hello (\\w+)/ | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:419:42:419:54 | /hello (\\w+)/ | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:421:20:421:27 | match[1] | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:421:20:421:27 | match[1] | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:421:20:421:27 | match[1] | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:421:20:421:27 | match[1] | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:424:18:424:51 | window. ... '#')[1] | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:424:18:424:51 | window. ... '#')[1] | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:424:18:424:51 | window. ... '#')[1] | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:424:18:424:51 | window. ... '#')[1] | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:424:45:424:47 | '#' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:424:45:424:47 | '#' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:424:45:424:47 | '#' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:424:45:424:47 | '#' | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:424:45:424:47 | '#' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:424:45:424:47 | '#' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:424:45:424:47 | '#' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:424:45:424:47 | '#' | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:424:45:424:47 | '#' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:424:45:424:47 | '#' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:424:45:424:47 | '#' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:424:45:424:47 | '#' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:424:45:424:47 | '#' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:424:45:424:47 | '#' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:424:45:424:47 | '#' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:424:45:424:47 | '#' | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/tst.js:430:5:430:10 | "#foo" | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:430:5:430:10 | "#foo" | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:430:5:430:10 | "#foo" | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:430:5:430:10 | "#foo" | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:430:5:430:10 | "#foo" | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:430:5:430:10 | "#foo" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:430:5:430:10 | "#foo" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:430:5:430:10 | "#foo" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:430:5:430:10 | "#foo" | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:430:5:430:10 | "#foo" | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:430:5:430:10 | "#foo" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:430:5:430:10 | "#foo" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:430:5:430:10 | "#foo" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:430:5:430:10 | "#foo" | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:430:5:430:10 | "#foo" | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:430:5:430:10 | "#foo" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:430:5:430:10 | "#foo" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:430:5:430:10 | "#foo" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:430:5:430:10 | "#foo" | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:430:5:430:10 | "#foo" | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:430:18:430:89 | target. ... data>') | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:430:18:430:89 | target. ... data>') | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:430:18:430:89 | target. ... data>') | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:430:18:430:89 | target. ... data>') | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:432:5:432:10 | "#foo" | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:432:5:432:10 | "#foo" | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:432:5:432:10 | "#foo" | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:432:5:432:10 | "#foo" | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:432:5:432:10 | "#foo" | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:432:5:432:10 | "#foo" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:432:5:432:10 | "#foo" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:432:5:432:10 | "#foo" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:432:5:432:10 | "#foo" | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:432:5:432:10 | "#foo" | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:432:5:432:10 | "#foo" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:432:5:432:10 | "#foo" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:432:5:432:10 | "#foo" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:432:5:432:10 | "#foo" | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:432:5:432:10 | "#foo" | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:432:5:432:10 | "#foo" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:432:5:432:10 | "#foo" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:432:5:432:10 | "#foo" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:432:5:432:10 | "#foo" | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/tst.js:432:5:432:10 | "#foo" | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/tst.js:432:18:432:43 | target. ... /g, '') | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:432:18:432:43 | target. ... /g, '') | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:432:18:432:43 | target. ... /g, '') | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/tst.js:432:18:432:43 | target. ... /g, '') | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/typeahead.js:2:38:4:3 | {\\n    p ... Url\\n  } | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/typeahead.js:2:38:4:3 | {\\n    p ... Url\\n  } | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/typeahead.js:2:38:4:3 | {\\n    p ... Url\\n  } | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/typeahead.js:2:38:4:3 | {\\n    p ... Url\\n  } | NosqlInjection | notASinkReason | ClientRequest | string |
-| autogenerated/Xss/DomBasedXss/typeahead.js:2:38:4:3 | {\\n    p ... Url\\n  } | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/typeahead.js:2:38:4:3 | {\\n    p ... Url\\n  } | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/typeahead.js:2:38:4:3 | {\\n    p ... Url\\n  } | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/typeahead.js:2:38:4:3 | {\\n    p ... Url\\n  } | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/typeahead.js:2:38:4:3 | {\\n    p ... Url\\n  } | SqlInjection | notASinkReason | ClientRequest | string |
-| autogenerated/Xss/DomBasedXss/typeahead.js:2:38:4:3 | {\\n    p ... Url\\n  } | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/typeahead.js:2:38:4:3 | {\\n    p ... Url\\n  } | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/typeahead.js:2:38:4:3 | {\\n    p ... Url\\n  } | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/typeahead.js:2:38:4:3 | {\\n    p ... Url\\n  } | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/typeahead.js:2:38:4:3 | {\\n    p ... Url\\n  } | TaintedPath | notASinkReason | ClientRequest | string |
-| autogenerated/Xss/DomBasedXss/typeahead.js:2:38:4:3 | {\\n    p ... Url\\n  } | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/typeahead.js:2:38:4:3 | {\\n    p ... Url\\n  } | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/typeahead.js:2:38:4:3 | {\\n    p ... Url\\n  } | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/typeahead.js:2:38:4:3 | {\\n    p ... Url\\n  } | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/typeahead.js:2:38:4:3 | {\\n    p ... Url\\n  } | Xss | notASinkReason | ClientRequest | string |
-| autogenerated/Xss/DomBasedXss/typeahead.js:2:38:4:3 | {\\n    p ... Url\\n  } | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/typeahead.js:3:15:3:23 | remoteUrl | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/typeahead.js:3:15:3:23 | remoteUrl | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/typeahead.js:3:15:3:23 | remoteUrl | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/typeahead.js:3:15:3:23 | remoteUrl | NosqlInjection | notASinkReason | ClientRequest | string |
-| autogenerated/Xss/DomBasedXss/typeahead.js:3:15:3:23 | remoteUrl | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/typeahead.js:3:15:3:23 | remoteUrl | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/typeahead.js:3:15:3:23 | remoteUrl | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/typeahead.js:3:15:3:23 | remoteUrl | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/typeahead.js:3:15:3:23 | remoteUrl | SqlInjection | notASinkReason | ClientRequest | string |
-| autogenerated/Xss/DomBasedXss/typeahead.js:3:15:3:23 | remoteUrl | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/typeahead.js:3:15:3:23 | remoteUrl | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/typeahead.js:3:15:3:23 | remoteUrl | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/typeahead.js:3:15:3:23 | remoteUrl | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/typeahead.js:3:15:3:23 | remoteUrl | TaintedPath | notASinkReason | ClientRequest | string |
-| autogenerated/Xss/DomBasedXss/typeahead.js:3:15:3:23 | remoteUrl | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/typeahead.js:3:15:3:23 | remoteUrl | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/typeahead.js:3:15:3:23 | remoteUrl | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/typeahead.js:3:15:3:23 | remoteUrl | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/typeahead.js:3:15:3:23 | remoteUrl | Xss | notASinkReason | ClientRequest | string |
-| autogenerated/Xss/DomBasedXss/typeahead.js:3:15:3:23 | remoteUrl | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/typeahead.js:6:5:6:16 | '.typeahead' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/typeahead.js:6:5:6:16 | '.typeahead' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/typeahead.js:6:5:6:16 | '.typeahead' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/typeahead.js:6:5:6:16 | '.typeahead' | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/typeahead.js:6:5:6:16 | '.typeahead' | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/typeahead.js:6:5:6:16 | '.typeahead' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/typeahead.js:6:5:6:16 | '.typeahead' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/typeahead.js:6:5:6:16 | '.typeahead' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/typeahead.js:6:5:6:16 | '.typeahead' | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/typeahead.js:6:5:6:16 | '.typeahead' | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/typeahead.js:6:5:6:16 | '.typeahead' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/typeahead.js:6:5:6:16 | '.typeahead' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/typeahead.js:6:5:6:16 | '.typeahead' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/typeahead.js:6:5:6:16 | '.typeahead' | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/typeahead.js:6:5:6:16 | '.typeahead' | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/typeahead.js:6:5:6:16 | '.typeahead' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/typeahead.js:6:5:6:16 | '.typeahead' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/typeahead.js:6:5:6:16 | '.typeahead' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/typeahead.js:6:5:6:16 | '.typeahead' | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/typeahead.js:6:5:6:16 | '.typeahead' | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/typeahead.js:6:29:6:30 | {} | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/typeahead.js:6:29:6:30 | {} | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/typeahead.js:6:29:6:30 | {} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/typeahead.js:6:29:6:30 | {} | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/typeahead.js:6:29:6:30 | {} | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/typeahead.js:6:29:6:30 | {} | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/typeahead.js:6:29:6:30 | {} | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/typeahead.js:6:29:6:30 | {} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/typeahead.js:6:29:6:30 | {} | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/typeahead.js:6:29:6:30 | {} | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/typeahead.js:6:29:6:30 | {} | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/typeahead.js:6:29:6:30 | {} | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/typeahead.js:6:29:6:30 | {} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/typeahead.js:6:29:6:30 | {} | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/typeahead.js:6:29:6:30 | {} | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/typeahead.js:6:29:6:30 | {} | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/typeahead.js:6:29:6:30 | {} | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/typeahead.js:6:29:6:30 | {} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/typeahead.js:6:29:6:30 | {} | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/typeahead.js:6:29:6:30 | {} | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/typeahead.js:6:33:13:3 | {\\n    s ...   }\\n  } | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/typeahead.js:6:33:13:3 | {\\n    s ...   }\\n  } | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/typeahead.js:6:33:13:3 | {\\n    s ...   }\\n  } | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/typeahead.js:6:33:13:3 | {\\n    s ...   }\\n  } | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/typeahead.js:6:33:13:3 | {\\n    s ...   }\\n  } | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/typeahead.js:6:33:13:3 | {\\n    s ...   }\\n  } | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/typeahead.js:6:33:13:3 | {\\n    s ...   }\\n  } | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/typeahead.js:6:33:13:3 | {\\n    s ...   }\\n  } | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/typeahead.js:6:33:13:3 | {\\n    s ...   }\\n  } | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/typeahead.js:6:33:13:3 | {\\n    s ...   }\\n  } | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/typeahead.js:6:33:13:3 | {\\n    s ...   }\\n  } | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/typeahead.js:6:33:13:3 | {\\n    s ...   }\\n  } | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/typeahead.js:6:33:13:3 | {\\n    s ...   }\\n  } | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/typeahead.js:6:33:13:3 | {\\n    s ...   }\\n  } | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/typeahead.js:6:33:13:3 | {\\n    s ...   }\\n  } | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/typeahead.js:6:33:13:3 | {\\n    s ...   }\\n  } | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/typeahead.js:6:33:13:3 | {\\n    s ...   }\\n  } | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/typeahead.js:6:33:13:3 | {\\n    s ...   }\\n  } | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/typeahead.js:6:33:13:3 | {\\n    s ...   }\\n  } | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/typeahead.js:6:33:13:3 | {\\n    s ...   }\\n  } | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/typeahead.js:7:13:7:37 | autocom ... apter() | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/typeahead.js:7:13:7:37 | autocom ... apter() | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/typeahead.js:7:13:7:37 | autocom ... apter() | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/typeahead.js:7:13:7:37 | autocom ... apter() | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/typeahead.js:7:13:7:37 | autocom ... apter() | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/typeahead.js:7:13:7:37 | autocom ... apter() | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/typeahead.js:7:13:7:37 | autocom ... apter() | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/typeahead.js:7:13:7:37 | autocom ... apter() | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/typeahead.js:7:13:7:37 | autocom ... apter() | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/typeahead.js:7:13:7:37 | autocom ... apter() | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/typeahead.js:7:13:7:37 | autocom ... apter() | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/typeahead.js:7:13:7:37 | autocom ... apter() | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/typeahead.js:8:16:12:5 | {\\n      ... }\\n    } | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/typeahead.js:8:16:12:5 | {\\n      ... }\\n    } | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/typeahead.js:8:16:12:5 | {\\n      ... }\\n    } | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/typeahead.js:8:16:12:5 | {\\n      ... }\\n    } | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/typeahead.js:8:16:12:5 | {\\n      ... }\\n    } | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/typeahead.js:8:16:12:5 | {\\n      ... }\\n    } | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/typeahead.js:8:16:12:5 | {\\n      ... }\\n    } | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/typeahead.js:8:16:12:5 | {\\n      ... }\\n    } | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/typeahead.js:8:16:12:5 | {\\n      ... }\\n    } | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/typeahead.js:8:16:12:5 | {\\n      ... }\\n    } | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/typeahead.js:8:16:12:5 | {\\n      ... }\\n    } | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/typeahead.js:8:16:12:5 | {\\n      ... }\\n    } | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/typeahead.js:9:19:11:7 | functio ...       } | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/typeahead.js:9:19:11:7 | functio ...       } | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/typeahead.js:9:19:11:7 | functio ...       } | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/typeahead.js:9:19:11:7 | functio ...       } | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/typeahead.js:9:19:11:7 | functio ...       } | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/typeahead.js:9:19:11:7 | functio ...       } | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/typeahead.js:9:19:11:7 | functio ...       } | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/typeahead.js:9:19:11:7 | functio ...       } | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/typeahead.js:9:19:11:7 | functio ...       } | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/typeahead.js:9:19:11:7 | functio ...       } | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/typeahead.js:9:19:11:7 | functio ...       } | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/typeahead.js:9:19:11:7 | functio ...       } | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/typeahead.js:10:16:10:18 | loc | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/typeahead.js:10:16:10:18 | loc | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/typeahead.js:10:16:10:18 | loc | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/typeahead.js:10:16:10:18 | loc | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/typeahead.js:16:5:16:16 | '.typeahead' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/typeahead.js:16:5:16:16 | '.typeahead' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/typeahead.js:16:5:16:16 | '.typeahead' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/typeahead.js:16:5:16:16 | '.typeahead' | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/typeahead.js:16:5:16:16 | '.typeahead' | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/typeahead.js:16:5:16:16 | '.typeahead' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/typeahead.js:16:5:16:16 | '.typeahead' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/typeahead.js:16:5:16:16 | '.typeahead' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/typeahead.js:16:5:16:16 | '.typeahead' | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/typeahead.js:16:5:16:16 | '.typeahead' | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/typeahead.js:16:5:16:16 | '.typeahead' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/typeahead.js:16:5:16:16 | '.typeahead' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/typeahead.js:16:5:16:16 | '.typeahead' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/typeahead.js:16:5:16:16 | '.typeahead' | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/typeahead.js:16:5:16:16 | '.typeahead' | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/typeahead.js:16:5:16:16 | '.typeahead' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/typeahead.js:16:5:16:16 | '.typeahead' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/typeahead.js:16:5:16:16 | '.typeahead' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/typeahead.js:16:5:16:16 | '.typeahead' | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/typeahead.js:16:5:16:16 | '.typeahead' | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/typeahead.js:16:29:16:30 | {} | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/typeahead.js:16:29:16:30 | {} | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/typeahead.js:16:29:16:30 | {} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/typeahead.js:16:29:16:30 | {} | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/typeahead.js:16:29:16:30 | {} | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/typeahead.js:16:29:16:30 | {} | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/typeahead.js:16:29:16:30 | {} | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/typeahead.js:16:29:16:30 | {} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/typeahead.js:16:29:16:30 | {} | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/typeahead.js:16:29:16:30 | {} | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/typeahead.js:16:29:16:30 | {} | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/typeahead.js:16:29:16:30 | {} | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/typeahead.js:16:29:16:30 | {} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/typeahead.js:16:29:16:30 | {} | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/typeahead.js:16:29:16:30 | {} | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/typeahead.js:16:29:16:30 | {} | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/typeahead.js:16:29:16:30 | {} | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/typeahead.js:16:29:16:30 | {} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/typeahead.js:16:29:16:30 | {} | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/typeahead.js:16:29:16:30 | {} | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/typeahead.js:17:5:28:5 | {\\n      ... }\\n    } | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/typeahead.js:17:5:28:5 | {\\n      ... }\\n    } | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/typeahead.js:17:5:28:5 | {\\n      ... }\\n    } | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/typeahead.js:17:5:28:5 | {\\n      ... }\\n    } | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/typeahead.js:17:5:28:5 | {\\n      ... }\\n    } | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/typeahead.js:17:5:28:5 | {\\n      ... }\\n    } | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/typeahead.js:17:5:28:5 | {\\n      ... }\\n    } | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/typeahead.js:17:5:28:5 | {\\n      ... }\\n    } | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/typeahead.js:17:5:28:5 | {\\n      ... }\\n    } | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/typeahead.js:17:5:28:5 | {\\n      ... }\\n    } | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/typeahead.js:17:5:28:5 | {\\n      ... }\\n    } | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/typeahead.js:17:5:28:5 | {\\n      ... }\\n    } | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/typeahead.js:17:5:28:5 | {\\n      ... }\\n    } | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/typeahead.js:17:5:28:5 | {\\n      ... }\\n    } | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/typeahead.js:17:5:28:5 | {\\n      ... }\\n    } | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/typeahead.js:17:5:28:5 | {\\n      ... }\\n    } | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/typeahead.js:17:5:28:5 | {\\n      ... }\\n    } | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/typeahead.js:17:5:28:5 | {\\n      ... }\\n    } | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/typeahead.js:17:5:28:5 | {\\n      ... }\\n    } | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/typeahead.js:17:5:28:5 | {\\n      ... }\\n    } | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/typeahead.js:18:13:18:24 | 'dashboards' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/typeahead.js:18:13:18:24 | 'dashboards' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/typeahead.js:18:13:18:24 | 'dashboards' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/typeahead.js:18:13:18:24 | 'dashboards' | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/typeahead.js:18:13:18:24 | 'dashboards' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/typeahead.js:18:13:18:24 | 'dashboards' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/typeahead.js:18:13:18:24 | 'dashboards' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/typeahead.js:18:13:18:24 | 'dashboards' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/typeahead.js:18:13:18:24 | 'dashboards' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/typeahead.js:18:13:18:24 | 'dashboards' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/typeahead.js:18:13:18:24 | 'dashboards' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/typeahead.js:18:13:18:24 | 'dashboards' | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/typeahead.js:19:15:22:7 | functio ...       } | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/typeahead.js:19:15:22:7 | functio ...       } | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/typeahead.js:19:15:22:7 | functio ...       } | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/typeahead.js:19:15:22:7 | functio ...       } | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/typeahead.js:19:15:22:7 | functio ...       } | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/typeahead.js:19:15:22:7 | functio ...       } | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/typeahead.js:19:15:22:7 | functio ...       } | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/typeahead.js:19:15:22:7 | functio ...       } | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/typeahead.js:19:15:22:7 | functio ...       } | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/typeahead.js:19:15:22:7 | functio ...       } | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/typeahead.js:19:15:22:7 | functio ...       } | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/typeahead.js:19:15:22:7 | functio ...       } | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/typeahead.js:23:18:27:7 | {\\n      ...       } | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/typeahead.js:23:18:27:7 | {\\n      ...       } | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/typeahead.js:23:18:27:7 | {\\n      ...       } | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/typeahead.js:23:18:27:7 | {\\n      ...       } | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/typeahead.js:23:18:27:7 | {\\n      ...       } | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/typeahead.js:23:18:27:7 | {\\n      ...       } | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/typeahead.js:23:18:27:7 | {\\n      ...       } | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/typeahead.js:23:18:27:7 | {\\n      ...       } | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/typeahead.js:23:18:27:7 | {\\n      ...       } | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/typeahead.js:23:18:27:7 | {\\n      ...       } | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/typeahead.js:23:18:27:7 | {\\n      ...       } | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/typeahead.js:23:18:27:7 | {\\n      ...       } | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/typeahead.js:24:21:26:9 | functio ...       } | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/typeahead.js:24:21:26:9 | functio ...       } | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/typeahead.js:24:21:26:9 | functio ...       } | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/typeahead.js:24:21:26:9 | functio ...       } | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/typeahead.js:24:21:26:9 | functio ...       } | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/typeahead.js:24:21:26:9 | functio ...       } | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/typeahead.js:24:21:26:9 | functio ...       } | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/typeahead.js:24:21:26:9 | functio ...       } | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/typeahead.js:24:21:26:9 | functio ...       } | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/typeahead.js:24:21:26:9 | functio ...       } | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/typeahead.js:24:21:26:9 | functio ...       } | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/typeahead.js:24:21:26:9 | functio ...       } | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/typeahead.js:25:18:25:20 | val | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/typeahead.js:25:18:25:20 | val | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/typeahead.js:25:18:25:20 | val | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/typeahead.js:25:18:25:20 | val | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:4:4:4:10 | "<div>" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:4:4:4:10 | "<div>" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:4:4:4:10 | "<div>" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:4:4:4:10 | "<div>" | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:4:4:4:31 | "<div>" ... </div>" | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:4:4:4:31 | "<div>" ... </div>" | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:4:4:4:31 | "<div>" ... </div>" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:4:4:4:31 | "<div>" ... </div>" | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:4:14:4:20 | tainted | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:4:14:4:20 | tainted | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:4:14:4:20 | tainted | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:4:14:4:20 | tainted | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:4:24:4:31 | "</div>" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:4:24:4:31 | "</div>" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:4:24:4:31 | "</div>" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:4:24:4:31 | "</div>" | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:5:4:5:26 | `<div>$ ... </div>` | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:5:4:5:26 | `<div>$ ... </div>` | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:5:4:5:26 | `<div>$ ... </div>` | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:5:4:5:26 | `<div>$ ... </div>` | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:5:5:5:9 | <div> | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:5:5:5:9 | <div> | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:5:5:5:9 | <div> | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:5:5:5:9 | <div> | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:5:12:5:18 | tainted | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:5:12:5:18 | tainted | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:5:12:5:18 | tainted | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:5:12:5:18 | tainted | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:5:20:5:25 | </div> | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:5:20:5:25 | </div> | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:5:20:5:25 | </div> | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:5:20:5:25 | </div> | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:6:4:6:10 | "<div>" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:6:4:6:10 | "<div>" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:6:4:6:10 | "<div>" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:6:4:6:10 | "<div>" | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:6:4:6:43 | "<div>" ... /div>") | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:6:4:6:43 | "<div>" ... /div>") | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:6:4:6:43 | "<div>" ... /div>") | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:6:4:6:43 | "<div>" ... /div>") | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:6:19:6:25 | tainted | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:6:19:6:25 | tainted | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:6:19:6:25 | tainted | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:6:19:6:25 | tainted | NosqlInjection | notASinkReason | ConstantReceiver | string |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:6:19:6:25 | tainted | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:6:19:6:25 | tainted | SqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:6:19:6:25 | tainted | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:6:19:6:25 | tainted | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:6:19:6:25 | tainted | SqlInjection | notASinkReason | ConstantReceiver | string |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:6:19:6:25 | tainted | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:6:19:6:25 | tainted | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:6:19:6:25 | tainted | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:6:19:6:25 | tainted | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:6:19:6:25 | tainted | TaintedPath | notASinkReason | ConstantReceiver | string |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:6:19:6:25 | tainted | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:6:19:6:25 | tainted | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:6:19:6:25 | tainted | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:6:19:6:25 | tainted | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:6:19:6:25 | tainted | Xss | notASinkReason | ConstantReceiver | string |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:6:19:6:25 | tainted | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:7:4:7:38 | ["<div> ... .join() | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:7:4:7:38 | ["<div> ... .join() | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:7:4:7:38 | ["<div> ... .join() | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:7:4:7:38 | ["<div> ... .join() | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:7:5:7:11 | "<div>" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:7:5:7:11 | "<div>" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:7:5:7:11 | "<div>" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:7:5:7:11 | "<div>" | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:7:14:7:20 | tainted | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:7:14:7:20 | tainted | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:7:14:7:20 | tainted | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:7:14:7:20 | tainted | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:7:23:7:30 | "</div>" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:7:23:7:30 | "</div>" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:7:23:7:30 | "</div>" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:7:23:7:30 | "</div>" | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:9:4:9:15 | "<div id=\\"" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:9:4:9:15 | "<div id=\\"" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:9:4:9:15 | "<div id=\\"" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:9:4:9:15 | "<div id=\\"" | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:9:4:9:34 | "<div i ...  "\\"/>" | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:9:4:9:34 | "<div i ...  "\\"/>" | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:9:4:9:34 | "<div i ...  "\\"/>" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:9:4:9:34 | "<div i ...  "\\"/>" | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:9:19:9:25 | tainted | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:9:19:9:25 | tainted | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:9:19:9:25 | tainted | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:9:19:9:25 | tainted | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:9:29:9:34 | "\\"/>" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:9:29:9:34 | "\\"/>" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:9:29:9:34 | "\\"/>" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:9:29:9:34 | "\\"/>" | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:10:4:10:27 | `<div i ... ed}"/>` | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:10:4:10:27 | `<div i ... ed}"/>` | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:10:4:10:27 | `<div i ... ed}"/>` | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:10:4:10:27 | `<div i ... ed}"/>` | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:10:5:10:13 | <div id=" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:10:5:10:13 | <div id=" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:10:5:10:13 | <div id=" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:10:5:10:13 | <div id=" | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:10:16:10:22 | tainted | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:10:16:10:22 | tainted | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:10:16:10:22 | tainted | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:10:16:10:22 | tainted | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:10:24:10:26 | "/> | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:10:24:10:26 | "/> | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:10:24:10:26 | "/> | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:10:24:10:26 | "/> | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:11:4:11:15 | "<div id=\\"" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:11:4:11:15 | "<div id=\\"" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:11:4:11:15 | "<div id=\\"" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:11:4:11:15 | "<div id=\\"" | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:11:4:11:44 | "<div i ... t("/>") | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:11:4:11:44 | "<div i ... t("/>") | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:11:4:11:44 | "<div i ... t("/>") | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:11:4:11:44 | "<div i ... t("/>") | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:11:24:11:30 | tainted | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:11:24:11:30 | tainted | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:11:24:11:30 | tainted | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:11:24:11:30 | tainted | NosqlInjection | notASinkReason | ConstantReceiver | string |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:11:24:11:30 | tainted | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:11:24:11:30 | tainted | SqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:11:24:11:30 | tainted | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:11:24:11:30 | tainted | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:11:24:11:30 | tainted | SqlInjection | notASinkReason | ConstantReceiver | string |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:11:24:11:30 | tainted | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:11:24:11:30 | tainted | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:11:24:11:30 | tainted | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:11:24:11:30 | tainted | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:11:24:11:30 | tainted | TaintedPath | notASinkReason | ConstantReceiver | string |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:11:24:11:30 | tainted | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:11:24:11:30 | tainted | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:11:24:11:30 | tainted | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:11:24:11:30 | tainted | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:11:24:11:30 | tainted | Xss | notASinkReason | ConstantReceiver | string |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:11:24:11:30 | tainted | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:12:4:12:41 | ["<div  ... .join() | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:12:4:12:41 | ["<div  ... .join() | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:12:4:12:41 | ["<div  ... .join() | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:12:4:12:41 | ["<div  ... .join() | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:12:5:12:16 | "<div id=\\"" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:12:5:12:16 | "<div id=\\"" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:12:5:12:16 | "<div id=\\"" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:12:5:12:16 | "<div id=\\"" | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:12:19:12:25 | tainted | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:12:19:12:25 | tainted | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:12:19:12:25 | tainted | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:12:19:12:25 | tainted | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:12:28:12:33 | "\\"/>" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:12:28:12:33 | "\\"/>" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:12:28:12:33 | "\\"/>" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:12:28:12:33 | "\\"/>" | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:15:10:15:23 | '<div align="' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:15:10:15:23 | '<div align="' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:15:10:15:23 | '<div align="' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:15:10:15:23 | '<div align="' | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:15:27:15:55 | (attrs. ... 'left') | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:15:27:15:55 | (attrs. ... 'left') | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:15:27:15:55 | (attrs. ... 'left') | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:15:27:15:55 | (attrs. ... 'left') | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:15:59:15:62 | '">' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:15:59:15:62 | '">' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:15:59:15:62 | '">' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:15:59:15:62 | '">' | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:15:66:15:72 | content | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:15:66:15:72 | content | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:15:66:15:72 | content | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:15:66:15:72 | content | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:15:76:15:83 | '</div>' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:15:76:15:83 | '</div>' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:15:76:15:83 | '</div>' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:15:76:15:83 | '</div>' | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:18:10:18:23 | '<div align="' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:18:10:18:23 | '<div align="' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:18:10:18:23 | '<div align="' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:18:10:18:23 | '<div align="' | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:18:32:18:58 | attrs.d ...  'left' | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:18:32:18:58 | attrs.d ...  'left' | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:18:32:18:58 | attrs.d ...  'left' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:18:32:18:58 | attrs.d ...  'left' | NosqlInjection | notASinkReason | ConstantReceiver | string |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:18:32:18:58 | attrs.d ...  'left' | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:18:32:18:58 | attrs.d ...  'left' | SqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:18:32:18:58 | attrs.d ...  'left' | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:18:32:18:58 | attrs.d ...  'left' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:18:32:18:58 | attrs.d ...  'left' | SqlInjection | notASinkReason | ConstantReceiver | string |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:18:32:18:58 | attrs.d ...  'left' | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:18:32:18:58 | attrs.d ...  'left' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:18:32:18:58 | attrs.d ...  'left' | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:18:32:18:58 | attrs.d ...  'left' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:18:32:18:58 | attrs.d ...  'left' | TaintedPath | notASinkReason | ConstantReceiver | string |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:18:32:18:58 | attrs.d ...  'left' | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:18:32:18:58 | attrs.d ...  'left' | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:18:32:18:58 | attrs.d ...  'left' | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:18:32:18:58 | attrs.d ...  'left' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:18:32:18:58 | attrs.d ...  'left' | Xss | notASinkReason | ConstantReceiver | string |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:18:32:18:58 | attrs.d ...  'left' | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:18:68:18:71 | '">' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:18:68:18:71 | '">' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:18:68:18:71 | '">' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:18:68:18:71 | '">' | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:18:80:18:86 | content | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:18:80:18:86 | content | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:18:80:18:86 | content | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:18:80:18:86 | content | NosqlInjection | notASinkReason | ConstantReceiver | string |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:18:80:18:86 | content | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:18:80:18:86 | content | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:18:80:18:86 | content | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:18:80:18:86 | content | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:18:80:18:86 | content | SqlInjection | notASinkReason | ConstantReceiver | string |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:18:80:18:86 | content | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:18:80:18:86 | content | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:18:80:18:86 | content | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:18:80:18:86 | content | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:18:80:18:86 | content | TaintedPath | notASinkReason | ConstantReceiver | string |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:18:80:18:86 | content | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:18:80:18:86 | content | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:18:80:18:86 | content | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:18:80:18:86 | content | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:18:80:18:86 | content | Xss | notASinkReason | ConstantReceiver | string |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:18:80:18:86 | content | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:20:4:20:47 | indirec ... .attrs) | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:20:4:20:47 | indirec ... .attrs) | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:20:4:20:47 | indirec ... .attrs) | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:20:4:20:47 | indirec ... .attrs) | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:21:4:21:47 | indirec ... .attrs) | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:21:4:21:47 | indirec ... .attrs) | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:21:4:21:47 | indirec ... .attrs) | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:21:4:21:47 | indirec ... .attrs) | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/winjs.js:2:52:2:52 | 1 | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/winjs.js:2:52:2:52 | 1 | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/winjs.js:2:52:2:52 | 1 | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/winjs.js:2:52:2:52 | 1 | NosqlInjection | notASinkReason | BuiltinCallName | string |
-| autogenerated/Xss/DomBasedXss/winjs.js:2:52:2:52 | 1 | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/winjs.js:2:52:2:52 | 1 | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/winjs.js:2:52:2:52 | 1 | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/winjs.js:2:52:2:52 | 1 | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/winjs.js:2:52:2:52 | 1 | SqlInjection | notASinkReason | BuiltinCallName | string |
-| autogenerated/Xss/DomBasedXss/winjs.js:2:52:2:52 | 1 | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/winjs.js:2:52:2:52 | 1 | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/winjs.js:2:52:2:52 | 1 | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/winjs.js:2:52:2:52 | 1 | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/winjs.js:2:52:2:52 | 1 | TaintedPath | notASinkReason | BuiltinCallName | string |
-| autogenerated/Xss/DomBasedXss/winjs.js:2:52:2:52 | 1 | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/winjs.js:2:52:2:52 | 1 | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/winjs.js:2:52:2:52 | 1 | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/winjs.js:2:52:2:52 | 1 | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/winjs.js:2:52:2:52 | 1 | Xss | notASinkReason | BuiltinCallName | string |
-| autogenerated/Xss/DomBasedXss/winjs.js:2:52:2:52 | 1 | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/winjs.js:3:43:3:49 | tainted | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/winjs.js:3:43:3:49 | tainted | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/winjs.js:3:43:3:49 | tainted | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/winjs.js:3:43:3:49 | tainted | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/winjs.js:4:43:4:49 | tainted | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/DomBasedXss/winjs.js:4:43:4:49 | tainted | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/winjs.js:4:43:4:49 | tainted | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/winjs.js:4:43:4:49 | tainted | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:1:3:1:10 | document | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:1:3:1:10 | document | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:1:3:1:10 | document | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:1:3:1:10 | document | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:1:19:16:1 | functio ...     }\\n} | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:1:19:16:1 | functio ...     }\\n} | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:1:19:16:1 | functio ...     }\\n} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:1:19:16:1 | functio ...     }\\n} | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:1:19:16:1 | functio ...     }\\n} | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:1:19:16:1 | functio ...     }\\n} | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:1:19:16:1 | functio ...     }\\n} | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:1:19:16:1 | functio ...     }\\n} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:1:19:16:1 | functio ...     }\\n} | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:1:19:16:1 | functio ...     }\\n} | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:1:19:16:1 | functio ...     }\\n} | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:1:19:16:1 | functio ...     }\\n} | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:1:19:16:1 | functio ...     }\\n} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:1:19:16:1 | functio ...     }\\n} | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:1:19:16:1 | functio ...     }\\n} | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:1:19:16:1 | functio ...     }\\n} | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:1:19:16:1 | functio ...     }\\n} | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:1:19:16:1 | functio ...     }\\n} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:1:19:16:1 | functio ...     }\\n} | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:1:19:16:1 | functio ...     }\\n} | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:4:21:4:23 | url | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:4:21:4:23 | url | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:4:21:4:23 | url | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:4:21:4:23 | url | NosqlInjection | notASinkReason | ClientRequest | string |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:4:21:4:23 | url | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:4:21:4:23 | url | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:4:21:4:23 | url | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:4:21:4:23 | url | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:4:21:4:23 | url | SqlInjection | notASinkReason | ClientRequest | string |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:4:21:4:23 | url | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:4:21:4:23 | url | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:4:21:4:23 | url | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:4:21:4:23 | url | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:4:21:4:23 | url | TaintedPath | notASinkReason | ClientRequest | string |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:4:21:4:23 | url | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:4:21:4:23 | url | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:4:21:4:23 | url | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:4:21:4:23 | url | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:4:21:4:23 | url | Xss | notASinkReason | ClientRequest | string |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:4:21:4:23 | url | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:5:26:5:39 | "Content-Type" | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:5:26:5:39 | "Content-Type" | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:5:26:5:39 | "Content-Type" | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:5:26:5:39 | "Content-Type" | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:5:26:5:39 | "Content-Type" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:5:26:5:39 | "Content-Type" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:5:26:5:39 | "Content-Type" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:5:26:5:39 | "Content-Type" | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:5:26:5:39 | "Content-Type" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:5:26:5:39 | "Content-Type" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:5:26:5:39 | "Content-Type" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:5:26:5:39 | "Content-Type" | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:5:26:5:39 | "Content-Type" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:5:26:5:39 | "Content-Type" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:5:26:5:39 | "Content-Type" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:5:26:5:39 | "Content-Type" | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:5:42:5:59 | "application/json" | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:5:42:5:59 | "application/json" | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:5:42:5:59 | "application/json" | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:5:42:5:59 | "application/json" | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:5:42:5:59 | "application/json" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:5:42:5:59 | "application/json" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:5:42:5:59 | "application/json" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:5:42:5:59 | "application/json" | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:5:42:5:59 | "application/json" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:5:42:5:59 | "application/json" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:5:42:5:59 | "application/json" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:5:42:5:59 | "application/json" | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:5:42:5:59 | "application/json" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:5:42:5:59 | "application/json" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:5:42:5:59 | "application/json" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:5:42:5:59 | "application/json" | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:9:11:9:20 | "#myThing" | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:9:11:9:20 | "#myThing" | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:9:11:9:20 | "#myThing" | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:9:11:9:20 | "#myThing" | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:9:11:9:20 | "#myThing" | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:9:11:9:20 | "#myThing" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:9:11:9:20 | "#myThing" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:9:11:9:20 | "#myThing" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:9:11:9:20 | "#myThing" | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:9:11:9:20 | "#myThing" | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:9:11:9:20 | "#myThing" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:9:11:9:20 | "#myThing" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:9:11:9:20 | "#myThing" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:9:11:9:20 | "#myThing" | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:9:11:9:20 | "#myThing" | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:9:11:9:20 | "#myThing" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:9:11:9:20 | "#myThing" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:9:11:9:20 | "#myThing" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:9:11:9:20 | "#myThing" | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:9:11:9:20 | "#myThing" | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:9:28:9:39 | json.message | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:9:28:9:39 | json.message | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:9:28:9:39 | json.message | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:9:28:9:39 | json.message | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:14:21:14:25 | error | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:14:21:14:25 | error | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:14:21:14:25 | error | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:14:21:14:25 | error | NosqlInjection | notASinkReason | LoggerMethod | string |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:14:21:14:25 | error | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:14:21:14:25 | error | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:14:21:14:25 | error | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:14:21:14:25 | error | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:14:21:14:25 | error | SqlInjection | notASinkReason | LoggerMethod | string |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:14:21:14:25 | error | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:14:21:14:25 | error | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:14:21:14:25 | error | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:14:21:14:25 | error | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:14:21:14:25 | error | TaintedPath | notASinkReason | LoggerMethod | string |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:14:21:14:25 | error | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:14:21:14:25 | error | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:14:21:14:25 | error | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:14:21:14:25 | error | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:14:21:14:25 | error | Xss | notASinkReason | LoggerMethod | string |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:14:21:14:25 | error | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/ExceptionXss/ajv.js:7:15:7:70 | {type:  ... mber'}} | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/ajv.js:7:15:7:70 | {type:  ... mber'}} | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/ajv.js:7:15:7:70 | {type:  ... mber'}} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/ajv.js:7:15:7:70 | {type:  ... mber'}} | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ExceptionXss/ajv.js:7:15:7:70 | {type:  ... mber'}} | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/ajv.js:7:15:7:70 | {type:  ... mber'}} | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/ajv.js:7:15:7:70 | {type:  ... mber'}} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/ajv.js:7:15:7:70 | {type:  ... mber'}} | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ExceptionXss/ajv.js:7:15:7:70 | {type:  ... mber'}} | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/ajv.js:7:15:7:70 | {type:  ... mber'}} | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/ajv.js:7:15:7:70 | {type:  ... mber'}} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/ajv.js:7:15:7:70 | {type:  ... mber'}} | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ExceptionXss/ajv.js:7:15:7:70 | {type:  ... mber'}} | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/ajv.js:7:15:7:70 | {type:  ... mber'}} | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/ajv.js:7:15:7:70 | {type:  ... mber'}} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/ajv.js:7:15:7:70 | {type:  ... mber'}} | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ExceptionXss/ajv.js:7:22:7:29 | 'object' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/ajv.js:7:22:7:29 | 'object' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ExceptionXss/ajv.js:7:22:7:29 | 'object' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/ajv.js:7:22:7:29 | 'object' | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ExceptionXss/ajv.js:7:22:7:29 | 'object' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/ajv.js:7:22:7:29 | 'object' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/ExceptionXss/ajv.js:7:22:7:29 | 'object' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/ajv.js:7:22:7:29 | 'object' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ExceptionXss/ajv.js:7:22:7:29 | 'object' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/ajv.js:7:22:7:29 | 'object' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/ExceptionXss/ajv.js:7:22:7:29 | 'object' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/ajv.js:7:22:7:29 | 'object' | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ExceptionXss/ajv.js:7:54:7:69 | {type: 'number'} | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/ajv.js:7:54:7:69 | {type: 'number'} | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/ajv.js:7:54:7:69 | {type: 'number'} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/ajv.js:7:54:7:69 | {type: 'number'} | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ExceptionXss/ajv.js:7:54:7:69 | {type: 'number'} | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/ajv.js:7:54:7:69 | {type: 'number'} | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/ajv.js:7:54:7:69 | {type: 'number'} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/ajv.js:7:54:7:69 | {type: 'number'} | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ExceptionXss/ajv.js:7:54:7:69 | {type: 'number'} | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/ajv.js:7:54:7:69 | {type: 'number'} | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/ajv.js:7:54:7:69 | {type: 'number'} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/ajv.js:7:54:7:69 | {type: 'number'} | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ExceptionXss/ajv.js:7:61:7:68 | 'number' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/ajv.js:7:61:7:68 | 'number' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ExceptionXss/ajv.js:7:61:7:68 | 'number' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/ajv.js:7:61:7:68 | 'number' | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ExceptionXss/ajv.js:7:61:7:68 | 'number' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/ajv.js:7:61:7:68 | 'number' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/ExceptionXss/ajv.js:7:61:7:68 | 'number' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/ajv.js:7:61:7:68 | 'number' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ExceptionXss/ajv.js:7:61:7:68 | 'number' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/ajv.js:7:61:7:68 | 'number' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/ExceptionXss/ajv.js:7:61:7:68 | 'number' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/ajv.js:7:61:7:68 | 'number' | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ExceptionXss/ajv.js:7:73:7:82 | 'pollData' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/ajv.js:7:73:7:82 | 'pollData' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ExceptionXss/ajv.js:7:73:7:82 | 'pollData' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/ajv.js:7:73:7:82 | 'pollData' | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ExceptionXss/ajv.js:7:73:7:82 | 'pollData' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/ajv.js:7:73:7:82 | 'pollData' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ExceptionXss/ajv.js:7:73:7:82 | 'pollData' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/ajv.js:7:73:7:82 | 'pollData' | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ExceptionXss/ajv.js:7:73:7:82 | 'pollData' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/ajv.js:7:73:7:82 | 'pollData' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/ExceptionXss/ajv.js:7:73:7:82 | 'pollData' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/ajv.js:7:73:7:82 | 'pollData' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ExceptionXss/ajv.js:7:73:7:82 | 'pollData' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/ajv.js:7:73:7:82 | 'pollData' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/ExceptionXss/ajv.js:7:73:7:82 | 'pollData' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/ajv.js:7:73:7:82 | 'pollData' | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ExceptionXss/ajv.js:9:10:9:20 | '/polldata' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/ajv.js:9:10:9:20 | '/polldata' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ExceptionXss/ajv.js:9:10:9:20 | '/polldata' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/ajv.js:9:10:9:20 | '/polldata' | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ExceptionXss/ajv.js:9:10:9:20 | '/polldata' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/ajv.js:9:10:9:20 | '/polldata' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ExceptionXss/ajv.js:9:10:9:20 | '/polldata' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/ajv.js:9:10:9:20 | '/polldata' | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ExceptionXss/ajv.js:9:10:9:20 | '/polldata' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/ajv.js:9:10:9:20 | '/polldata' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/ExceptionXss/ajv.js:9:10:9:20 | '/polldata' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/ajv.js:9:10:9:20 | '/polldata' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ExceptionXss/ajv.js:9:10:9:20 | '/polldata' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/ajv.js:9:10:9:20 | '/polldata' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/ExceptionXss/ajv.js:9:10:9:20 | '/polldata' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/ajv.js:9:10:9:20 | '/polldata' | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ExceptionXss/ajv.js:9:23:13:1 | (req, r ...     }\\n} | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/ajv.js:9:23:13:1 | (req, r ...     }\\n} | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/ajv.js:9:23:13:1 | (req, r ...     }\\n} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/ajv.js:9:23:13:1 | (req, r ...     }\\n} | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ExceptionXss/ajv.js:9:23:13:1 | (req, r ...     }\\n} | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/ajv.js:9:23:13:1 | (req, r ...     }\\n} | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/ajv.js:9:23:13:1 | (req, r ...     }\\n} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/ajv.js:9:23:13:1 | (req, r ...     }\\n} | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ExceptionXss/ajv.js:9:23:13:1 | (req, r ...     }\\n} | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/ajv.js:9:23:13:1 | (req, r ...     }\\n} | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/ajv.js:9:23:13:1 | (req, r ...     }\\n} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/ajv.js:9:23:13:1 | (req, r ...     }\\n} | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ExceptionXss/ajv.js:9:23:13:1 | (req, r ...     }\\n} | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/ajv.js:9:23:13:1 | (req, r ...     }\\n} | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/ajv.js:9:23:13:1 | (req, r ...     }\\n} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/ajv.js:9:23:13:1 | (req, r ...     }\\n} | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:5:11:5:11 | x | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:5:11:5:11 | x | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:5:11:5:11 | x | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:5:11:5:11 | x | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:5:11:5:11 | x | SqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:5:11:5:11 | x | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:5:11:5:11 | x | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:5:11:5:11 | x | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:5:11:5:11 | x | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:5:11:5:11 | x | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:5:11:5:11 | x | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:5:11:5:11 | x | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:5:11:5:11 | x | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:5:11:5:11 | x | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:5:11:5:11 | x | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:5:11:5:11 | x | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:9:11:9:13 | foo | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:9:11:9:13 | foo | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:9:11:9:13 | foo | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:9:11:9:13 | foo | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:9:11:9:13 | foo | SqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:9:11:9:13 | foo | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:9:11:9:13 | foo | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:9:11:9:13 | foo | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:9:11:9:13 | foo | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:9:11:9:13 | foo | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:9:11:9:13 | foo | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:9:11:9:13 | foo | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:9:11:9:13 | foo | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:9:11:9:13 | foo | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:9:11:9:13 | foo | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:9:11:9:13 | foo | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:11:5:11:10 | 'myId' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:11:5:11:10 | 'myId' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:11:5:11:10 | 'myId' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:11:5:11:10 | 'myId' | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:11:5:11:10 | 'myId' | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:11:5:11:10 | 'myId' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:11:5:11:10 | 'myId' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:11:5:11:10 | 'myId' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:11:5:11:10 | 'myId' | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:11:5:11:10 | 'myId' | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:11:5:11:10 | 'myId' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:11:5:11:10 | 'myId' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:11:5:11:10 | 'myId' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:11:5:11:10 | 'myId' | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:11:5:11:10 | 'myId' | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:11:5:11:10 | 'myId' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:11:5:11:10 | 'myId' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:11:5:11:10 | 'myId' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:11:5:11:10 | 'myId' | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:11:5:11:10 | 'myId' | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:11:18:11:18 | e | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:11:18:11:18 | e | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:11:18:11:18 | e | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:11:18:11:18 | e | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:17:5:17:10 | 'myId' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:17:5:17:10 | 'myId' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:17:5:17:10 | 'myId' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:17:5:17:10 | 'myId' | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:17:5:17:10 | 'myId' | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:17:5:17:10 | 'myId' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:17:5:17:10 | 'myId' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:17:5:17:10 | 'myId' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:17:5:17:10 | 'myId' | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:17:5:17:10 | 'myId' | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:17:5:17:10 | 'myId' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:17:5:17:10 | 'myId' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:17:5:17:10 | 'myId' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:17:5:17:10 | 'myId' | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:17:5:17:10 | 'myId' | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:17:5:17:10 | 'myId' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:17:5:17:10 | 'myId' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:17:5:17:10 | 'myId' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:17:5:17:10 | 'myId' | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:17:5:17:10 | 'myId' | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:17:18:17:18 | e | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:17:18:17:18 | e | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:17:18:17:18 | e | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:17:18:17:18 | e | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:21:11:21:21 | foo + "bar" | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:21:11:21:21 | foo + "bar" | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:21:11:21:21 | foo + "bar" | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:21:11:21:21 | foo + "bar" | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:21:11:21:21 | foo + "bar" | SqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:21:11:21:21 | foo + "bar" | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:21:11:21:21 | foo + "bar" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:21:11:21:21 | foo + "bar" | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:21:11:21:21 | foo + "bar" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:21:11:21:21 | foo + "bar" | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:21:11:21:21 | foo + "bar" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:21:11:21:21 | foo + "bar" | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:21:11:21:21 | foo + "bar" | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:21:11:21:21 | foo + "bar" | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:21:11:21:21 | foo + "bar" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:21:11:21:21 | foo + "bar" | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:23:5:23:10 | 'myId' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:23:5:23:10 | 'myId' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:23:5:23:10 | 'myId' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:23:5:23:10 | 'myId' | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:23:5:23:10 | 'myId' | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:23:5:23:10 | 'myId' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:23:5:23:10 | 'myId' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:23:5:23:10 | 'myId' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:23:5:23:10 | 'myId' | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:23:5:23:10 | 'myId' | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:23:5:23:10 | 'myId' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:23:5:23:10 | 'myId' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:23:5:23:10 | 'myId' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:23:5:23:10 | 'myId' | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:23:5:23:10 | 'myId' | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:23:5:23:10 | 'myId' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:23:5:23:10 | 'myId' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:23:5:23:10 | 'myId' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:23:5:23:10 | 'myId' | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:23:5:23:10 | 'myId' | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:23:18:23:18 | e | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:23:18:23:18 | e | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:23:18:23:18 | e | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:23:18:23:18 | e | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:27:11:27:23 | { prop: foo } | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:27:11:27:23 | { prop: foo } | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:27:11:27:23 | { prop: foo } | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:27:11:27:23 | { prop: foo } | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:27:11:27:23 | { prop: foo } | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:27:11:27:23 | { prop: foo } | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:27:11:27:23 | { prop: foo } | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:27:11:27:23 | { prop: foo } | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:27:11:27:23 | { prop: foo } | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:27:11:27:23 | { prop: foo } | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:27:11:27:23 | { prop: foo } | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:27:11:27:23 | { prop: foo } | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:27:11:27:23 | { prop: foo } | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:27:11:27:23 | { prop: foo } | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:27:11:27:23 | { prop: foo } | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:27:11:27:23 | { prop: foo } | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:27:19:27:21 | foo | SqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:27:19:27:21 | foo | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:27:19:27:21 | foo | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:27:19:27:21 | foo | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:27:19:27:21 | foo | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:27:19:27:21 | foo | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:27:19:27:21 | foo | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:27:19:27:21 | foo | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:27:19:27:21 | foo | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:27:19:27:21 | foo | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:27:19:27:21 | foo | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:27:19:27:21 | foo | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:29:5:29:10 | 'myId' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:29:5:29:10 | 'myId' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:29:5:29:10 | 'myId' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:29:5:29:10 | 'myId' | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:29:5:29:10 | 'myId' | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:29:5:29:10 | 'myId' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:29:5:29:10 | 'myId' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:29:5:29:10 | 'myId' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:29:5:29:10 | 'myId' | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:29:5:29:10 | 'myId' | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:29:5:29:10 | 'myId' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:29:5:29:10 | 'myId' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:29:5:29:10 | 'myId' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:29:5:29:10 | 'myId' | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:29:5:29:10 | 'myId' | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:29:5:29:10 | 'myId' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:29:5:29:10 | 'myId' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:29:5:29:10 | 'myId' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:29:5:29:10 | 'myId' | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:29:5:29:10 | 'myId' | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:29:18:29:18 | e | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:29:18:29:18 | e | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:29:18:29:18 | e | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:29:18:29:18 | e | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:33:11:33:22 | ["bar", foo] | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:33:11:33:22 | ["bar", foo] | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:33:11:33:22 | ["bar", foo] | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:33:11:33:22 | ["bar", foo] | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:33:11:33:22 | ["bar", foo] | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:33:11:33:22 | ["bar", foo] | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:33:11:33:22 | ["bar", foo] | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:33:11:33:22 | ["bar", foo] | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:33:11:33:22 | ["bar", foo] | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:33:11:33:22 | ["bar", foo] | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:33:11:33:22 | ["bar", foo] | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:33:11:33:22 | ["bar", foo] | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:33:12:33:16 | "bar" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:33:12:33:16 | "bar" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:33:12:33:16 | "bar" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:33:12:33:16 | "bar" | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:33:12:33:16 | "bar" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:33:12:33:16 | "bar" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:33:12:33:16 | "bar" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:33:12:33:16 | "bar" | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:33:12:33:16 | "bar" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:33:12:33:16 | "bar" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:33:12:33:16 | "bar" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:33:12:33:16 | "bar" | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:33:19:33:21 | foo | SqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:33:19:33:21 | foo | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:33:19:33:21 | foo | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:33:19:33:21 | foo | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:33:19:33:21 | foo | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:33:19:33:21 | foo | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:33:19:33:21 | foo | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:33:19:33:21 | foo | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:33:19:33:21 | foo | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:33:19:33:21 | foo | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:33:19:33:21 | foo | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:33:19:33:21 | foo | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:35:5:35:10 | 'myId' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:35:5:35:10 | 'myId' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:35:5:35:10 | 'myId' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:35:5:35:10 | 'myId' | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:35:5:35:10 | 'myId' | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:35:5:35:10 | 'myId' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:35:5:35:10 | 'myId' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:35:5:35:10 | 'myId' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:35:5:35:10 | 'myId' | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:35:5:35:10 | 'myId' | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:35:5:35:10 | 'myId' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:35:5:35:10 | 'myId' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:35:5:35:10 | 'myId' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:35:5:35:10 | 'myId' | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:35:5:35:10 | 'myId' | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:35:5:35:10 | 'myId' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:35:5:35:10 | 'myId' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:35:5:35:10 | 'myId' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:35:5:35:10 | 'myId' | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:35:5:35:10 | 'myId' | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:35:18:35:18 | e | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:35:18:35:18 | e | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:35:18:35:18 | e | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:35:18:35:18 | e | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:48:5:48:10 | 'myId' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:48:5:48:10 | 'myId' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:48:5:48:10 | 'myId' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:48:5:48:10 | 'myId' | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:48:5:48:10 | 'myId' | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:48:5:48:10 | 'myId' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:48:5:48:10 | 'myId' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:48:5:48:10 | 'myId' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:48:5:48:10 | 'myId' | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:48:5:48:10 | 'myId' | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:48:5:48:10 | 'myId' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:48:5:48:10 | 'myId' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:48:5:48:10 | 'myId' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:48:5:48:10 | 'myId' | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:48:5:48:10 | 'myId' | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:48:5:48:10 | 'myId' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:48:5:48:10 | 'myId' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:48:5:48:10 | 'myId' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:48:5:48:10 | 'myId' | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:48:5:48:10 | 'myId' | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:48:18:48:18 | e | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:48:18:48:18 | e | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:48:18:48:18 | e | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:48:18:48:18 | e | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:54:5:54:10 | 'myId' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:54:5:54:10 | 'myId' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:54:5:54:10 | 'myId' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:54:5:54:10 | 'myId' | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:54:5:54:10 | 'myId' | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:54:5:54:10 | 'myId' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:54:5:54:10 | 'myId' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:54:5:54:10 | 'myId' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:54:5:54:10 | 'myId' | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:54:5:54:10 | 'myId' | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:54:5:54:10 | 'myId' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:54:5:54:10 | 'myId' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:54:5:54:10 | 'myId' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:54:5:54:10 | 'myId' | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:54:5:54:10 | 'myId' | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:54:5:54:10 | 'myId' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:54:5:54:10 | 'myId' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:54:5:54:10 | 'myId' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:54:5:54:10 | 'myId' | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:54:5:54:10 | 'myId' | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:54:18:54:18 | e | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:54:18:54:18 | e | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:54:18:54:18 | e | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:54:18:54:18 | e | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:64:5:64:10 | 'myId' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:64:5:64:10 | 'myId' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:64:5:64:10 | 'myId' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:64:5:64:10 | 'myId' | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:64:5:64:10 | 'myId' | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:64:5:64:10 | 'myId' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:64:5:64:10 | 'myId' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:64:5:64:10 | 'myId' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:64:5:64:10 | 'myId' | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:64:5:64:10 | 'myId' | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:64:5:64:10 | 'myId' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:64:5:64:10 | 'myId' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:64:5:64:10 | 'myId' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:64:5:64:10 | 'myId' | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:64:5:64:10 | 'myId' | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:64:5:64:10 | 'myId' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:64:5:64:10 | 'myId' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:64:5:64:10 | 'myId' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:64:5:64:10 | 'myId' | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:64:5:64:10 | 'myId' | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:64:18:64:18 | e | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:64:18:64:18 | e | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:64:18:64:18 | e | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:64:18:64:18 | e | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:68:13:68:16 | null | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:68:13:68:16 | null | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:68:13:68:16 | null | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:68:13:68:16 | null | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:68:13:68:16 | null | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:68:13:68:16 | null | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:68:13:68:16 | null | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:68:13:68:16 | null | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:68:13:68:16 | null | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:68:13:68:16 | null | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:68:13:68:16 | null | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:68:13:68:16 | null | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:68:13:68:16 | null | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:68:13:68:16 | null | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:68:13:68:16 | null | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:68:13:68:16 | null | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:68:19:68:21 | foo | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:68:19:68:21 | foo | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:68:19:68:21 | foo | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:68:19:68:21 | foo | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:68:19:68:21 | foo | SqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:68:19:68:21 | foo | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:68:19:68:21 | foo | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:68:19:68:21 | foo | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:68:19:68:21 | foo | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:68:19:68:21 | foo | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:68:19:68:21 | foo | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:68:19:68:21 | foo | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:68:19:68:21 | foo | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:68:19:68:21 | foo | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:68:19:68:21 | foo | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:68:19:68:21 | foo | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:70:5:70:10 | 'myId' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:70:5:70:10 | 'myId' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:70:5:70:10 | 'myId' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:70:5:70:10 | 'myId' | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:70:5:70:10 | 'myId' | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:70:5:70:10 | 'myId' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:70:5:70:10 | 'myId' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:70:5:70:10 | 'myId' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:70:5:70:10 | 'myId' | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:70:5:70:10 | 'myId' | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:70:5:70:10 | 'myId' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:70:5:70:10 | 'myId' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:70:5:70:10 | 'myId' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:70:5:70:10 | 'myId' | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:70:5:70:10 | 'myId' | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:70:5:70:10 | 'myId' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:70:5:70:10 | 'myId' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:70:5:70:10 | 'myId' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:70:5:70:10 | 'myId' | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:70:5:70:10 | 'myId' | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:70:18:70:18 | e | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:70:18:70:18 | e | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:70:18:70:18 | e | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:70:18:70:18 | e | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:78:5:78:10 | 'myId' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:78:5:78:10 | 'myId' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:78:5:78:10 | 'myId' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:78:5:78:10 | 'myId' | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:78:5:78:10 | 'myId' | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:78:5:78:10 | 'myId' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:78:5:78:10 | 'myId' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:78:5:78:10 | 'myId' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:78:5:78:10 | 'myId' | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:78:5:78:10 | 'myId' | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:78:5:78:10 | 'myId' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:78:5:78:10 | 'myId' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:78:5:78:10 | 'myId' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:78:5:78:10 | 'myId' | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:78:5:78:10 | 'myId' | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:78:5:78:10 | 'myId' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:78:5:78:10 | 'myId' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:78:5:78:10 | 'myId' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:78:5:78:10 | 'myId' | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:78:5:78:10 | 'myId' | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:78:18:78:18 | e | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:78:18:78:18 | e | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:78:18:78:18 | e | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:78:18:78:18 | e | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:83:5:83:10 | 'myId' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:83:5:83:10 | 'myId' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:83:5:83:10 | 'myId' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:83:5:83:10 | 'myId' | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:83:5:83:10 | 'myId' | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:83:5:83:10 | 'myId' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:83:5:83:10 | 'myId' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:83:5:83:10 | 'myId' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:83:5:83:10 | 'myId' | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:83:5:83:10 | 'myId' | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:83:5:83:10 | 'myId' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:83:5:83:10 | 'myId' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:83:5:83:10 | 'myId' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:83:5:83:10 | 'myId' | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:83:5:83:10 | 'myId' | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:83:5:83:10 | 'myId' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:83:5:83:10 | 'myId' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:83:5:83:10 | 'myId' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:83:5:83:10 | 'myId' | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:83:5:83:10 | 'myId' | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:83:18:83:18 | e | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:83:18:83:18 | e | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:83:18:83:18 | e | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:83:18:83:18 | e | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:86:4:86:9 | 'myId' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:86:4:86:9 | 'myId' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:86:4:86:9 | 'myId' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:86:4:86:9 | 'myId' | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:86:4:86:9 | 'myId' | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:86:4:86:9 | 'myId' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:86:4:86:9 | 'myId' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:86:4:86:9 | 'myId' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:86:4:86:9 | 'myId' | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:86:4:86:9 | 'myId' | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:86:4:86:9 | 'myId' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:86:4:86:9 | 'myId' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:86:4:86:9 | 'myId' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:86:4:86:9 | 'myId' | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:86:4:86:9 | 'myId' | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:86:4:86:9 | 'myId' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:86:4:86:9 | 'myId' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:86:4:86:9 | 'myId' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:86:4:86:9 | 'myId' | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:86:4:86:9 | 'myId' | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:86:17:86:19 | foo | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:86:17:86:19 | foo | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:86:17:86:19 | foo | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:86:17:86:19 | foo | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:89:11:89:26 | foo.match(/foo/) | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:89:11:89:26 | foo.match(/foo/) | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:89:11:89:26 | foo.match(/foo/) | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:89:11:89:26 | foo.match(/foo/) | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:89:11:89:26 | foo.match(/foo/) | SqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:89:11:89:26 | foo.match(/foo/) | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:89:11:89:26 | foo.match(/foo/) | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:89:11:89:26 | foo.match(/foo/) | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:89:11:89:26 | foo.match(/foo/) | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:89:11:89:26 | foo.match(/foo/) | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:89:11:89:26 | foo.match(/foo/) | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:89:11:89:26 | foo.match(/foo/) | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:89:11:89:26 | foo.match(/foo/) | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:89:11:89:26 | foo.match(/foo/) | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:89:11:89:26 | foo.match(/foo/) | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:89:11:89:26 | foo.match(/foo/) | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:89:21:89:25 | /foo/ | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:89:21:89:25 | /foo/ | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:89:21:89:25 | /foo/ | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:89:21:89:25 | /foo/ | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:89:21:89:25 | /foo/ | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:89:21:89:25 | /foo/ | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:89:21:89:25 | /foo/ | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:89:21:89:25 | /foo/ | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:89:21:89:25 | /foo/ | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:89:21:89:25 | /foo/ | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:89:21:89:25 | /foo/ | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:89:21:89:25 | /foo/ | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:89:21:89:25 | /foo/ | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:89:21:89:25 | /foo/ | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:89:21:89:25 | /foo/ | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:89:21:89:25 | /foo/ | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:91:5:91:10 | 'myId' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:91:5:91:10 | 'myId' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:91:5:91:10 | 'myId' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:91:5:91:10 | 'myId' | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:91:5:91:10 | 'myId' | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:91:5:91:10 | 'myId' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:91:5:91:10 | 'myId' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:91:5:91:10 | 'myId' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:91:5:91:10 | 'myId' | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:91:5:91:10 | 'myId' | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:91:5:91:10 | 'myId' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:91:5:91:10 | 'myId' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:91:5:91:10 | 'myId' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:91:5:91:10 | 'myId' | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:91:5:91:10 | 'myId' | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:91:5:91:10 | 'myId' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:91:5:91:10 | 'myId' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:91:5:91:10 | 'myId' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:91:5:91:10 | 'myId' | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:91:5:91:10 | 'myId' | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:91:18:91:18 | e | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:91:18:91:18 | e | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:91:18:91:18 | e | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:91:18:91:18 | e | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:95:11:95:22 | [foo, "bar"] | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:95:11:95:22 | [foo, "bar"] | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:95:11:95:22 | [foo, "bar"] | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:95:11:95:22 | [foo, "bar"] | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:95:11:95:22 | [foo, "bar"] | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:95:11:95:22 | [foo, "bar"] | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:95:11:95:22 | [foo, "bar"] | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:95:11:95:22 | [foo, "bar"] | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:95:11:95:22 | [foo, "bar"] | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:95:11:95:22 | [foo, "bar"] | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:95:11:95:22 | [foo, "bar"] | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:95:11:95:22 | [foo, "bar"] | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:95:12:95:14 | foo | SqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:95:12:95:14 | foo | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:95:12:95:14 | foo | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:95:12:95:14 | foo | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:95:12:95:14 | foo | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:95:12:95:14 | foo | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:95:12:95:14 | foo | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:95:12:95:14 | foo | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:95:12:95:14 | foo | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:95:12:95:14 | foo | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:95:12:95:14 | foo | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:95:12:95:14 | foo | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:95:17:95:21 | "bar" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:95:17:95:21 | "bar" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:95:17:95:21 | "bar" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:95:17:95:21 | "bar" | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:95:17:95:21 | "bar" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:95:17:95:21 | "bar" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:95:17:95:21 | "bar" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:95:17:95:21 | "bar" | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:95:17:95:21 | "bar" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:95:17:95:21 | "bar" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:95:17:95:21 | "bar" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:95:17:95:21 | "bar" | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:97:5:97:10 | 'myId' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:97:5:97:10 | 'myId' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:97:5:97:10 | 'myId' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:97:5:97:10 | 'myId' | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:97:5:97:10 | 'myId' | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:97:5:97:10 | 'myId' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:97:5:97:10 | 'myId' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:97:5:97:10 | 'myId' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:97:5:97:10 | 'myId' | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:97:5:97:10 | 'myId' | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:97:5:97:10 | 'myId' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:97:5:97:10 | 'myId' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:97:5:97:10 | 'myId' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:97:5:97:10 | 'myId' | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:97:5:97:10 | 'myId' | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:97:5:97:10 | 'myId' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:97:5:97:10 | 'myId' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:97:5:97:10 | 'myId' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:97:5:97:10 | 'myId' | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:97:5:97:10 | 'myId' | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:97:18:97:18 | e | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:97:18:97:18 | e | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:97:18:97:18 | e | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:97:18:97:18 | e | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:102:12:102:14 | foo | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:102:12:102:14 | foo | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:102:12:102:14 | foo | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:102:12:102:14 | foo | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:102:12:102:14 | foo | SqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:102:12:102:14 | foo | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:102:12:102:14 | foo | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:102:12:102:14 | foo | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:102:12:102:14 | foo | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:102:12:102:14 | foo | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:102:12:102:14 | foo | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:102:12:102:14 | foo | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:102:12:102:14 | foo | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:102:12:102:14 | foo | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:102:12:102:14 | foo | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:102:12:102:14 | foo | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:107:5:107:10 | 'myId' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:107:5:107:10 | 'myId' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:107:5:107:10 | 'myId' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:107:5:107:10 | 'myId' | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:107:5:107:10 | 'myId' | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:107:5:107:10 | 'myId' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:107:5:107:10 | 'myId' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:107:5:107:10 | 'myId' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:107:5:107:10 | 'myId' | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:107:5:107:10 | 'myId' | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:107:5:107:10 | 'myId' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:107:5:107:10 | 'myId' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:107:5:107:10 | 'myId' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:107:5:107:10 | 'myId' | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:107:5:107:10 | 'myId' | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:107:5:107:10 | 'myId' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:107:5:107:10 | 'myId' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:107:5:107:10 | 'myId' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:107:5:107:10 | 'myId' | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:107:5:107:10 | 'myId' | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:107:18:107:18 | e | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:107:18:107:18 | e | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:107:18:107:18 | e | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:107:18:107:18 | e | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:111:23:111:31 | 'express' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:111:23:111:31 | 'express' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:111:23:111:31 | 'express' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:111:23:111:31 | 'express' | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:115:9:115:19 | '/user/:id' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:115:9:115:19 | '/user/:id' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:115:9:115:19 | '/user/:id' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:115:9:115:19 | '/user/:id' | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:115:9:115:19 | '/user/:id' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:115:9:115:19 | '/user/:id' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:115:9:115:19 | '/user/:id' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:115:9:115:19 | '/user/:id' | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:115:9:115:19 | '/user/:id' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:115:9:115:19 | '/user/:id' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:115:9:115:19 | '/user/:id' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:115:9:115:19 | '/user/:id' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:115:9:115:19 | '/user/:id' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:115:9:115:19 | '/user/:id' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:115:9:115:19 | '/user/:id' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:115:9:115:19 | '/user/:id' | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:115:22:121:1 | functio ... K!\\n\\t}\\n} | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:115:22:121:1 | functio ... K!\\n\\t}\\n} | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:115:22:121:1 | functio ... K!\\n\\t}\\n} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:115:22:121:1 | functio ... K!\\n\\t}\\n} | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:115:22:121:1 | functio ... K!\\n\\t}\\n} | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:115:22:121:1 | functio ... K!\\n\\t}\\n} | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:115:22:121:1 | functio ... K!\\n\\t}\\n} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:115:22:121:1 | functio ... K!\\n\\t}\\n} | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:115:22:121:1 | functio ... K!\\n\\t}\\n} | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:115:22:121:1 | functio ... K!\\n\\t}\\n} | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:115:22:121:1 | functio ... K!\\n\\t}\\n} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:115:22:121:1 | functio ... K!\\n\\t}\\n} | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:115:22:121:1 | functio ... K!\\n\\t}\\n} | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:115:22:121:1 | functio ... K!\\n\\t}\\n} | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:115:22:121:1 | functio ... K!\\n\\t}\\n} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:115:22:121:1 | functio ... K!\\n\\t}\\n} | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:117:11:117:23 | req.params.id | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:117:11:117:23 | req.params.id | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:117:11:117:23 | req.params.id | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:117:11:117:23 | req.params.id | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:117:11:117:23 | req.params.id | SqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:117:11:117:23 | req.params.id | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:117:11:117:23 | req.params.id | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:117:11:117:23 | req.params.id | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:117:11:117:23 | req.params.id | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:117:11:117:23 | req.params.id | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:117:11:117:23 | req.params.id | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:117:11:117:23 | req.params.id | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:117:11:117:23 | req.params.id | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:117:11:117:23 | req.params.id | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:117:11:117:23 | req.params.id | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:117:11:117:23 | req.params.id | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:125:25:125:42 | 'exceptionSession' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:125:25:125:42 | 'exceptionSession' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:125:25:125:42 | 'exceptionSession' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:125:25:125:42 | 'exceptionSession' | NosqlInjection | notASinkReason | ReceiverStorage | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:125:25:125:42 | 'exceptionSession' | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:125:25:125:42 | 'exceptionSession' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:125:25:125:42 | 'exceptionSession' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:125:25:125:42 | 'exceptionSession' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:125:25:125:42 | 'exceptionSession' | SqlInjection | notASinkReason | ReceiverStorage | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:125:25:125:42 | 'exceptionSession' | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:125:25:125:42 | 'exceptionSession' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:125:25:125:42 | 'exceptionSession' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:125:25:125:42 | 'exceptionSession' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:125:25:125:42 | 'exceptionSession' | TaintedPath | notASinkReason | ReceiverStorage | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:125:25:125:42 | 'exceptionSession' | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:125:25:125:42 | 'exceptionSession' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:125:25:125:42 | 'exceptionSession' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:125:25:125:42 | 'exceptionSession' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:125:25:125:42 | 'exceptionSession' | Xss | notASinkReason | ReceiverStorage | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:125:25:125:42 | 'exceptionSession' | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:125:45:125:68 | documen ... .search | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:125:45:125:68 | documen ... .search | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:125:45:125:68 | documen ... .search | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:125:45:125:68 | documen ... .search | NosqlInjection | notASinkReason | ReceiverStorage | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:125:45:125:68 | documen ... .search | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:125:45:125:68 | documen ... .search | SqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:125:45:125:68 | documen ... .search | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:125:45:125:68 | documen ... .search | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:125:45:125:68 | documen ... .search | SqlInjection | notASinkReason | ReceiverStorage | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:125:45:125:68 | documen ... .search | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:125:45:125:68 | documen ... .search | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:125:45:125:68 | documen ... .search | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:125:45:125:68 | documen ... .search | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:125:45:125:68 | documen ... .search | TaintedPath | notASinkReason | ReceiverStorage | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:125:45:125:68 | documen ... .search | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:125:45:125:68 | documen ... .search | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:125:45:125:68 | documen ... .search | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:125:45:125:68 | documen ... .search | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:125:45:125:68 | documen ... .search | Xss | notASinkReason | ReceiverStorage | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:125:45:125:68 | documen ... .search | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:128:11:128:52 | session ... ssion') | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:128:11:128:52 | session ... ssion') | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:128:11:128:52 | session ... ssion') | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:128:11:128:52 | session ... ssion') | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:128:11:128:52 | session ... ssion') | SqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:128:11:128:52 | session ... ssion') | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:128:11:128:52 | session ... ssion') | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:128:11:128:52 | session ... ssion') | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:128:11:128:52 | session ... ssion') | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:128:11:128:52 | session ... ssion') | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:128:11:128:52 | session ... ssion') | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:128:11:128:52 | session ... ssion') | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:128:11:128:52 | session ... ssion') | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:128:11:128:52 | session ... ssion') | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:128:11:128:52 | session ... ssion') | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:128:11:128:52 | session ... ssion') | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:128:34:128:51 | 'exceptionSession' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:128:34:128:51 | 'exceptionSession' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:128:34:128:51 | 'exceptionSession' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:128:34:128:51 | 'exceptionSession' | NosqlInjection | notASinkReason | ReceiverStorage | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:128:34:128:51 | 'exceptionSession' | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:128:34:128:51 | 'exceptionSession' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:128:34:128:51 | 'exceptionSession' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:128:34:128:51 | 'exceptionSession' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:128:34:128:51 | 'exceptionSession' | SqlInjection | notASinkReason | ReceiverStorage | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:128:34:128:51 | 'exceptionSession' | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:128:34:128:51 | 'exceptionSession' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:128:34:128:51 | 'exceptionSession' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:128:34:128:51 | 'exceptionSession' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:128:34:128:51 | 'exceptionSession' | TaintedPath | notASinkReason | ReceiverStorage | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:128:34:128:51 | 'exceptionSession' | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:128:34:128:51 | 'exceptionSession' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:128:34:128:51 | 'exceptionSession' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:128:34:128:51 | 'exceptionSession' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:128:34:128:51 | 'exceptionSession' | Xss | notASinkReason | ReceiverStorage | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:128:34:128:51 | 'exceptionSession' | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:130:5:130:10 | 'myId' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:130:5:130:10 | 'myId' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:130:5:130:10 | 'myId' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:130:5:130:10 | 'myId' | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:130:5:130:10 | 'myId' | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:130:5:130:10 | 'myId' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:130:5:130:10 | 'myId' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:130:5:130:10 | 'myId' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:130:5:130:10 | 'myId' | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:130:5:130:10 | 'myId' | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:130:5:130:10 | 'myId' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:130:5:130:10 | 'myId' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:130:5:130:10 | 'myId' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:130:5:130:10 | 'myId' | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:130:5:130:10 | 'myId' | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:130:5:130:10 | 'myId' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:130:5:130:10 | 'myId' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:130:5:130:10 | 'myId' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:130:5:130:10 | 'myId' | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:130:5:130:10 | 'myId' | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:130:18:130:18 | e | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:130:18:130:18 | e | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:130:18:130:18 | e | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:130:18:130:18 | e | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:135:9:135:19 | '/user/:id' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:135:9:135:19 | '/user/:id' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:135:9:135:19 | '/user/:id' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:135:9:135:19 | '/user/:id' | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:135:9:135:19 | '/user/:id' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:135:9:135:19 | '/user/:id' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:135:9:135:19 | '/user/:id' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:135:9:135:19 | '/user/:id' | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:135:9:135:19 | '/user/:id' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:135:9:135:19 | '/user/:id' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:135:9:135:19 | '/user/:id' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:135:9:135:19 | '/user/:id' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:135:9:135:19 | '/user/:id' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:135:9:135:19 | '/user/:id' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:135:9:135:19 | '/user/:id' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:135:9:135:19 | '/user/:id' | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:135:22:143:1 | functio ... \\n\\t});\\n} | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:135:22:143:1 | functio ... \\n\\t});\\n} | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:135:22:143:1 | functio ... \\n\\t});\\n} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:135:22:143:1 | functio ... \\n\\t});\\n} | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:135:22:143:1 | functio ... \\n\\t});\\n} | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:135:22:143:1 | functio ... \\n\\t});\\n} | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:135:22:143:1 | functio ... \\n\\t});\\n} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:135:22:143:1 | functio ... \\n\\t});\\n} | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:135:22:143:1 | functio ... \\n\\t});\\n} | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:135:22:143:1 | functio ... \\n\\t});\\n} | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:135:22:143:1 | functio ... \\n\\t});\\n} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:135:22:143:1 | functio ... \\n\\t});\\n} | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:135:22:143:1 | functio ... \\n\\t});\\n} | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:135:22:143:1 | functio ... \\n\\t});\\n} | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:135:22:143:1 | functio ... \\n\\t});\\n} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:135:22:143:1 | functio ... \\n\\t});\\n} | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:136:10:136:22 | req.params.id | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:136:10:136:22 | req.params.id | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:136:10:136:22 | req.params.id | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:136:10:136:22 | req.params.id | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:136:10:136:22 | req.params.id | SqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:136:10:136:22 | req.params.id | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:136:10:136:22 | req.params.id | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:136:10:136:22 | req.params.id | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:136:10:136:22 | req.params.id | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:136:10:136:22 | req.params.id | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:136:10:136:22 | req.params.id | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:136:10:136:22 | req.params.id | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:136:10:136:22 | req.params.id | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:136:10:136:22 | req.params.id | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:136:10:136:22 | req.params.id | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:136:10:136:22 | req.params.id | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:136:25:142:2 | (error, ... ow?)\\n\\t} | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:136:25:142:2 | (error, ... ow?)\\n\\t} | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:136:25:142:2 | (error, ... ow?)\\n\\t} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:136:25:142:2 | (error, ... ow?)\\n\\t} | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:136:25:142:2 | (error, ... ow?)\\n\\t} | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:136:25:142:2 | (error, ... ow?)\\n\\t} | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:136:25:142:2 | (error, ... ow?)\\n\\t} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:136:25:142:2 | (error, ... ow?)\\n\\t} | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:136:25:142:2 | (error, ... ow?)\\n\\t} | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:136:25:142:2 | (error, ... ow?)\\n\\t} | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:136:25:142:2 | (error, ... ow?)\\n\\t} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:136:25:142:2 | (error, ... ow?)\\n\\t} | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:136:25:142:2 | (error, ... ow?)\\n\\t} | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:136:25:142:2 | (error, ... ow?)\\n\\t} | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:136:25:142:2 | (error, ... ow?)\\n\\t} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:136:25:142:2 | (error, ... ow?)\\n\\t} | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:138:6:138:11 | 'myId' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:138:6:138:11 | 'myId' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:138:6:138:11 | 'myId' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:138:6:138:11 | 'myId' | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:138:6:138:11 | 'myId' | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:138:6:138:11 | 'myId' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:138:6:138:11 | 'myId' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:138:6:138:11 | 'myId' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:138:6:138:11 | 'myId' | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:138:6:138:11 | 'myId' | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:138:6:138:11 | 'myId' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:138:6:138:11 | 'myId' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:138:6:138:11 | 'myId' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:138:6:138:11 | 'myId' | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:138:6:138:11 | 'myId' | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:138:6:138:11 | 'myId' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:138:6:138:11 | 'myId' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:138:6:138:11 | 'myId' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:138:6:138:11 | 'myId' | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:138:6:138:11 | 'myId' | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:138:19:138:23 | error | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:138:19:138:23 | error | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:138:19:138:23 | error | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:138:19:138:23 | error | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:141:5:141:10 | 'myId' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:141:5:141:10 | 'myId' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:141:5:141:10 | 'myId' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:141:5:141:10 | 'myId' | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:141:5:141:10 | 'myId' | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:141:5:141:10 | 'myId' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:141:5:141:10 | 'myId' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:141:5:141:10 | 'myId' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:141:5:141:10 | 'myId' | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:141:5:141:10 | 'myId' | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:141:5:141:10 | 'myId' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:141:5:141:10 | 'myId' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:141:5:141:10 | 'myId' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:141:5:141:10 | 'myId' | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:141:5:141:10 | 'myId' | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:141:5:141:10 | 'myId' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:141:5:141:10 | 'myId' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:141:5:141:10 | 'myId' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:141:5:141:10 | 'myId' | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:141:5:141:10 | 'myId' | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:141:18:141:20 | res | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:141:18:141:20 | res | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:141:18:141:20 | res | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:141:18:141:20 | res | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:148:33:148:35 | foo | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:148:33:148:35 | foo | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:148:33:148:35 | foo | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:148:33:148:35 | foo | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:148:33:148:35 | foo | SqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:148:33:148:35 | foo | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:148:33:148:35 | foo | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:148:33:148:35 | foo | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:148:33:148:35 | foo | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:148:33:148:35 | foo | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:148:33:148:35 | foo | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:148:33:148:35 | foo | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:148:33:148:35 | foo | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:148:33:148:35 | foo | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:148:33:148:35 | foo | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:148:33:148:35 | foo | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:148:38:148:44 | resolve | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:148:38:148:44 | resolve | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:148:38:148:44 | resolve | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:148:38:148:44 | resolve | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:148:38:148:44 | resolve | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:148:38:148:44 | resolve | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:148:38:148:44 | resolve | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:148:38:148:44 | resolve | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:148:38:148:44 | resolve | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:148:38:148:44 | resolve | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:148:38:148:44 | resolve | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:148:38:148:44 | resolve | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:148:38:148:44 | resolve | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:148:38:148:44 | resolve | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:148:38:148:44 | resolve | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:148:38:148:44 | resolve | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:148:54:150:2 | (e) =>  ... T OK\\n\\t} | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:148:54:150:2 | (e) =>  ... T OK\\n\\t} | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:148:54:150:2 | (e) =>  ... T OK\\n\\t} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:148:54:150:2 | (e) =>  ... T OK\\n\\t} | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:148:54:150:2 | (e) =>  ... T OK\\n\\t} | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:148:54:150:2 | (e) =>  ... T OK\\n\\t} | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:148:54:150:2 | (e) =>  ... T OK\\n\\t} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:148:54:150:2 | (e) =>  ... T OK\\n\\t} | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:148:54:150:2 | (e) =>  ... T OK\\n\\t} | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:148:54:150:2 | (e) =>  ... T OK\\n\\t} | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:148:54:150:2 | (e) =>  ... T OK\\n\\t} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:148:54:150:2 | (e) =>  ... T OK\\n\\t} | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:148:54:150:2 | (e) =>  ... T OK\\n\\t} | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:148:54:150:2 | (e) =>  ... T OK\\n\\t} | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:148:54:150:2 | (e) =>  ... T OK\\n\\t} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:148:54:150:2 | (e) =>  ... T OK\\n\\t} | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:149:5:149:10 | 'myId' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:149:5:149:10 | 'myId' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:149:5:149:10 | 'myId' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:149:5:149:10 | 'myId' | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:149:5:149:10 | 'myId' | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:149:5:149:10 | 'myId' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:149:5:149:10 | 'myId' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:149:5:149:10 | 'myId' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:149:5:149:10 | 'myId' | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:149:5:149:10 | 'myId' | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:149:5:149:10 | 'myId' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:149:5:149:10 | 'myId' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:149:5:149:10 | 'myId' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:149:5:149:10 | 'myId' | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:149:5:149:10 | 'myId' | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:149:5:149:10 | 'myId' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:149:5:149:10 | 'myId' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:149:5:149:10 | 'myId' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:149:5:149:10 | 'myId' | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:149:5:149:10 | 'myId' | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:149:18:149:18 | e | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:149:18:149:18 | e | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:149:18:149:18 | e | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:149:18:149:18 | e | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:155:5:155:10 | 'myId' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:155:5:155:10 | 'myId' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:155:5:155:10 | 'myId' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:155:5:155:10 | 'myId' | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:155:5:155:10 | 'myId' | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:155:5:155:10 | 'myId' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:155:5:155:10 | 'myId' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:155:5:155:10 | 'myId' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:155:5:155:10 | 'myId' | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:155:5:155:10 | 'myId' | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:155:5:155:10 | 'myId' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:155:5:155:10 | 'myId' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:155:5:155:10 | 'myId' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:155:5:155:10 | 'myId' | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:155:5:155:10 | 'myId' | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:155:5:155:10 | 'myId' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:155:5:155:10 | 'myId' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:155:5:155:10 | 'myId' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:155:5:155:10 | 'myId' | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:155:5:155:10 | 'myId' | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:155:18:155:18 | e | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:155:18:155:18 | e | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:155:18:155:18 | e | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:155:18:155:18 | e | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:161:5:161:10 | 'myId' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:161:5:161:10 | 'myId' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:161:5:161:10 | 'myId' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:161:5:161:10 | 'myId' | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:161:5:161:10 | 'myId' | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:161:5:161:10 | 'myId' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:161:5:161:10 | 'myId' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:161:5:161:10 | 'myId' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:161:5:161:10 | 'myId' | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:161:5:161:10 | 'myId' | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:161:5:161:10 | 'myId' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:161:5:161:10 | 'myId' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:161:5:161:10 | 'myId' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:161:5:161:10 | 'myId' | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:161:5:161:10 | 'myId' | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:161:5:161:10 | 'myId' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:161:5:161:10 | 'myId' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:161:5:161:10 | 'myId' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:161:5:161:10 | 'myId' | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:161:5:161:10 | 'myId' | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:161:18:161:18 | e | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:161:18:161:18 | e | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:161:18:161:18 | e | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:161:18:161:18 | e | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:167:5:167:10 | 'myId' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:167:5:167:10 | 'myId' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:167:5:167:10 | 'myId' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:167:5:167:10 | 'myId' | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:167:5:167:10 | 'myId' | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:167:5:167:10 | 'myId' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:167:5:167:10 | 'myId' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:167:5:167:10 | 'myId' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:167:5:167:10 | 'myId' | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:167:5:167:10 | 'myId' | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:167:5:167:10 | 'myId' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:167:5:167:10 | 'myId' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:167:5:167:10 | 'myId' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:167:5:167:10 | 'myId' | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:167:5:167:10 | 'myId' | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:167:5:167:10 | 'myId' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:167:5:167:10 | 'myId' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:167:5:167:10 | 'myId' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:167:5:167:10 | 'myId' | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:167:5:167:10 | 'myId' | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:167:18:167:18 | e | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:167:18:167:18 | e | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:167:18:167:18 | e | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:167:18:167:18 | e | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:171:11:171:17 | tainted | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:171:11:171:17 | tainted | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:171:11:171:17 | tainted | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:171:11:171:17 | tainted | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:171:11:171:17 | tainted | SqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:171:11:171:17 | tainted | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:171:11:171:17 | tainted | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:171:11:171:17 | tainted | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:171:11:171:17 | tainted | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:171:11:171:17 | tainted | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:171:11:171:17 | tainted | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:171:11:171:17 | tainted | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:171:11:171:17 | tainted | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:171:11:171:17 | tainted | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:171:11:171:17 | tainted | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:171:11:171:17 | tainted | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:171:20:171:26 | resolve | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:171:20:171:26 | resolve | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:171:20:171:26 | resolve | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:171:20:171:26 | resolve | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:171:20:171:26 | resolve | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:171:20:171:26 | resolve | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:171:20:171:26 | resolve | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:171:20:171:26 | resolve | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:171:20:171:26 | resolve | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:171:20:171:26 | resolve | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:171:20:171:26 | resolve | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:171:20:171:26 | resolve | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:171:20:171:26 | resolve | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:171:20:171:26 | resolve | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:171:20:171:26 | resolve | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:171:20:171:26 | resolve | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:174:52:176:2 | (e) =>  ... T OK\\n\\t} | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:174:52:176:2 | (e) =>  ... T OK\\n\\t} | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:174:52:176:2 | (e) =>  ... T OK\\n\\t} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:174:52:176:2 | (e) =>  ... T OK\\n\\t} | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:174:52:176:2 | (e) =>  ... T OK\\n\\t} | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:174:52:176:2 | (e) =>  ... T OK\\n\\t} | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:174:52:176:2 | (e) =>  ... T OK\\n\\t} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:174:52:176:2 | (e) =>  ... T OK\\n\\t} | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:174:52:176:2 | (e) =>  ... T OK\\n\\t} | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:174:52:176:2 | (e) =>  ... T OK\\n\\t} | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:174:52:176:2 | (e) =>  ... T OK\\n\\t} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:174:52:176:2 | (e) =>  ... T OK\\n\\t} | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:174:52:176:2 | (e) =>  ... T OK\\n\\t} | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:174:52:176:2 | (e) =>  ... T OK\\n\\t} | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:174:52:176:2 | (e) =>  ... T OK\\n\\t} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:174:52:176:2 | (e) =>  ... T OK\\n\\t} | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:175:5:175:10 | 'myId' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:175:5:175:10 | 'myId' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:175:5:175:10 | 'myId' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:175:5:175:10 | 'myId' | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:175:5:175:10 | 'myId' | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:175:5:175:10 | 'myId' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:175:5:175:10 | 'myId' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:175:5:175:10 | 'myId' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:175:5:175:10 | 'myId' | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:175:5:175:10 | 'myId' | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:175:5:175:10 | 'myId' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:175:5:175:10 | 'myId' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:175:5:175:10 | 'myId' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:175:5:175:10 | 'myId' | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:175:5:175:10 | 'myId' | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:175:5:175:10 | 'myId' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:175:5:175:10 | 'myId' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:175:5:175:10 | 'myId' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:175:5:175:10 | 'myId' | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:175:5:175:10 | 'myId' | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:175:18:175:18 | e | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:175:18:175:18 | e | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:175:18:175:18 | e | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:175:18:175:18 | e | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:179:9:179:19 | '/user/:id' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:179:9:179:19 | '/user/:id' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:179:9:179:19 | '/user/:id' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:179:9:179:19 | '/user/:id' | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:179:9:179:19 | '/user/:id' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:179:9:179:19 | '/user/:id' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:179:9:179:19 | '/user/:id' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:179:9:179:19 | '/user/:id' | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:179:9:179:19 | '/user/:id' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:179:9:179:19 | '/user/:id' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:179:9:179:19 | '/user/:id' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:179:9:179:19 | '/user/:id' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:179:9:179:19 | '/user/:id' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:179:9:179:19 | '/user/:id' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:179:9:179:19 | '/user/:id' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:179:9:179:19 | '/user/:id' | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:179:22:186:1 | functio ... \\n\\t});\\n} | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:179:22:186:1 | functio ... \\n\\t});\\n} | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:179:22:186:1 | functio ... \\n\\t});\\n} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:179:22:186:1 | functio ... \\n\\t});\\n} | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:179:22:186:1 | functio ... \\n\\t});\\n} | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:179:22:186:1 | functio ... \\n\\t});\\n} | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:179:22:186:1 | functio ... \\n\\t});\\n} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:179:22:186:1 | functio ... \\n\\t});\\n} | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:179:22:186:1 | functio ... \\n\\t});\\n} | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:179:22:186:1 | functio ... \\n\\t});\\n} | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:179:22:186:1 | functio ... \\n\\t});\\n} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:179:22:186:1 | functio ... \\n\\t});\\n} | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:179:22:186:1 | functio ... \\n\\t});\\n} | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:179:22:186:1 | functio ... \\n\\t});\\n} | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:179:22:186:1 | functio ... \\n\\t});\\n} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:179:22:186:1 | functio ... \\n\\t});\\n} | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:180:10:180:22 | req.params.id | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:180:10:180:22 | req.params.id | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:180:10:180:22 | req.params.id | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:180:10:180:22 | req.params.id | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:180:10:180:22 | req.params.id | SqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:180:10:180:22 | req.params.id | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:180:10:180:22 | req.params.id | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:180:10:180:22 | req.params.id | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:180:10:180:22 | req.params.id | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:180:10:180:22 | req.params.id | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:180:10:180:22 | req.params.id | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:180:10:180:22 | req.params.id | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:180:10:180:22 | req.params.id | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:180:10:180:22 | req.params.id | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:180:10:180:22 | req.params.id | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:180:10:180:22 | req.params.id | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:180:25:185:2 | (error, ... wn. \\n\\t} | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:180:25:185:2 | (error, ... wn. \\n\\t} | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:180:25:185:2 | (error, ... wn. \\n\\t} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:180:25:185:2 | (error, ... wn. \\n\\t} | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:180:25:185:2 | (error, ... wn. \\n\\t} | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:180:25:185:2 | (error, ... wn. \\n\\t} | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:180:25:185:2 | (error, ... wn. \\n\\t} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:180:25:185:2 | (error, ... wn. \\n\\t} | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:180:25:185:2 | (error, ... wn. \\n\\t} | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:180:25:185:2 | (error, ... wn. \\n\\t} | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:180:25:185:2 | (error, ... wn. \\n\\t} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:180:25:185:2 | (error, ... wn. \\n\\t} | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:180:25:185:2 | (error, ... wn. \\n\\t} | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:180:25:185:2 | (error, ... wn. \\n\\t} | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:180:25:185:2 | (error, ... wn. \\n\\t} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:180:25:185:2 | (error, ... wn. \\n\\t} | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:182:6:182:11 | 'myId' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:182:6:182:11 | 'myId' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:182:6:182:11 | 'myId' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:182:6:182:11 | 'myId' | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:182:6:182:11 | 'myId' | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:182:6:182:11 | 'myId' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:182:6:182:11 | 'myId' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:182:6:182:11 | 'myId' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:182:6:182:11 | 'myId' | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:182:6:182:11 | 'myId' | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:182:6:182:11 | 'myId' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:182:6:182:11 | 'myId' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:182:6:182:11 | 'myId' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:182:6:182:11 | 'myId' | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:182:6:182:11 | 'myId' | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:182:6:182:11 | 'myId' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:182:6:182:11 | 'myId' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:182:6:182:11 | 'myId' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:182:6:182:11 | 'myId' | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:182:6:182:11 | 'myId' | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:182:19:182:23 | error | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:182:19:182:23 | error | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:182:19:182:23 | error | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:182:19:182:23 | error | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:184:5:184:10 | 'myId' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:184:5:184:10 | 'myId' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:184:5:184:10 | 'myId' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:184:5:184:10 | 'myId' | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:184:5:184:10 | 'myId' | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:184:5:184:10 | 'myId' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:184:5:184:10 | 'myId' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:184:5:184:10 | 'myId' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:184:5:184:10 | 'myId' | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:184:5:184:10 | 'myId' | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:184:5:184:10 | 'myId' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:184:5:184:10 | 'myId' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:184:5:184:10 | 'myId' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:184:5:184:10 | 'myId' | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:184:5:184:10 | 'myId' | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:184:5:184:10 | 'myId' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:184:5:184:10 | 'myId' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:184:5:184:10 | 'myId' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:184:5:184:10 | 'myId' | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:184:5:184:10 | 'myId' | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:184:18:184:20 | res | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:184:18:184:20 | res | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:184:18:184:20 | res | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:184:18:184:20 | res | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:188:9:188:19 | '/user/:id' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:188:9:188:19 | '/user/:id' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:188:9:188:19 | '/user/:id' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:188:9:188:19 | '/user/:id' | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:188:9:188:19 | '/user/:id' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:188:9:188:19 | '/user/:id' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:188:9:188:19 | '/user/:id' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:188:9:188:19 | '/user/:id' | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:188:9:188:19 | '/user/:id' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:188:9:188:19 | '/user/:id' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:188:9:188:19 | '/user/:id' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:188:9:188:19 | '/user/:id' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:188:9:188:19 | '/user/:id' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:188:9:188:19 | '/user/:id' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:188:9:188:19 | '/user/:id' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:188:9:188:19 | '/user/:id' | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:188:22:194:1 | functio ... s)\\n\\t}\\n} | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:188:22:194:1 | functio ... s)\\n\\t}\\n} | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:188:22:194:1 | functio ... s)\\n\\t}\\n} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:188:22:194:1 | functio ... s)\\n\\t}\\n} | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:188:22:194:1 | functio ... s)\\n\\t}\\n} | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:188:22:194:1 | functio ... s)\\n\\t}\\n} | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:188:22:194:1 | functio ... s)\\n\\t}\\n} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:188:22:194:1 | functio ... s)\\n\\t}\\n} | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:188:22:194:1 | functio ... s)\\n\\t}\\n} | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:188:22:194:1 | functio ... s)\\n\\t}\\n} | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:188:22:194:1 | functio ... s)\\n\\t}\\n} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:188:22:194:1 | functio ... s)\\n\\t}\\n} | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:188:22:194:1 | functio ... s)\\n\\t}\\n} | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:188:22:194:1 | functio ... s)\\n\\t}\\n} | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:188:22:194:1 | functio ... s)\\n\\t}\\n} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:188:22:194:1 | functio ... s)\\n\\t}\\n} | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:196:18:196:21 | "fs" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:196:18:196:21 | "fs" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:196:18:196:21 | "fs" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:196:18:196:21 | "fs" | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:204:10:204:12 | foo | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:204:10:204:12 | foo | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:204:10:204:12 | foo | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:204:10:204:12 | foo | NosqlInjection | notASinkReason | LodashUnderscoreArgument | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:204:10:204:12 | foo | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:204:10:204:12 | foo | SqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:204:10:204:12 | foo | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:204:10:204:12 | foo | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:204:10:204:12 | foo | SqlInjection | notASinkReason | LodashUnderscoreArgument | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:204:10:204:12 | foo | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:204:10:204:12 | foo | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:204:10:204:12 | foo | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:204:10:204:12 | foo | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:204:10:204:12 | foo | TaintedPath | notASinkReason | LodashUnderscoreArgument | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:204:10:204:12 | foo | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:204:10:204:12 | foo | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:204:10:204:12 | foo | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:204:10:204:12 | foo | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:204:10:204:12 | foo | Xss | notASinkReason | LodashUnderscoreArgument | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:204:10:204:12 | foo | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:204:15:204:17 | foo | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:204:15:204:17 | foo | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:204:15:204:17 | foo | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:204:15:204:17 | foo | NosqlInjection | notASinkReason | LodashUnderscoreArgument | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:204:15:204:17 | foo | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:204:15:204:17 | foo | SqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:204:15:204:17 | foo | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:204:15:204:17 | foo | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:204:15:204:17 | foo | SqlInjection | notASinkReason | LodashUnderscoreArgument | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:204:15:204:17 | foo | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:204:15:204:17 | foo | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:204:15:204:17 | foo | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:204:15:204:17 | foo | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:204:15:204:17 | foo | TaintedPath | notASinkReason | LodashUnderscoreArgument | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:204:15:204:17 | foo | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:204:15:204:17 | foo | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:204:15:204:17 | foo | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:204:15:204:17 | foo | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:204:15:204:17 | foo | Xss | notASinkReason | LodashUnderscoreArgument | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:204:15:204:17 | foo | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:206:9:206:11 | foo | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:206:9:206:11 | foo | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:206:9:206:11 | foo | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:206:9:206:11 | foo | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:206:9:206:11 | foo | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:206:9:206:11 | foo | SqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:206:9:206:11 | foo | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:206:9:206:11 | foo | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:206:9:206:11 | foo | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:206:9:206:11 | foo | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:206:9:206:11 | foo | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:206:9:206:11 | foo | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:206:9:206:11 | foo | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:206:9:206:11 | foo | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:206:9:206:11 | foo | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:206:9:206:11 | foo | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:206:9:206:11 | foo | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:206:9:206:11 | foo | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:206:9:206:11 | foo | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:206:9:206:11 | foo | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:208:14:208:16 | foo | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:208:14:208:16 | foo | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:208:14:208:16 | foo | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:208:14:208:16 | foo | NosqlInjection | notASinkReason | StringRegExpTest | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:208:14:208:16 | foo | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:208:14:208:16 | foo | SqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:208:14:208:16 | foo | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:208:14:208:16 | foo | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:208:14:208:16 | foo | SqlInjection | notASinkReason | StringRegExpTest | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:208:14:208:16 | foo | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:208:14:208:16 | foo | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:208:14:208:16 | foo | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:208:14:208:16 | foo | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:208:14:208:16 | foo | TaintedPath | notASinkReason | StringRegExpTest | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:208:14:208:16 | foo | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:208:14:208:16 | foo | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:208:14:208:16 | foo | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:208:14:208:16 | foo | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:208:14:208:16 | foo | Xss | notASinkReason | StringRegExpTest | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:208:14:208:16 | foo | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:209:15:209:17 | foo | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:209:15:209:17 | foo | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:209:15:209:17 | foo | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:209:15:209:17 | foo | NosqlInjection | notASinkReason | LoggerMethod | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:209:15:209:17 | foo | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:209:15:209:17 | foo | SqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:209:15:209:17 | foo | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:209:15:209:17 | foo | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:209:15:209:17 | foo | SqlInjection | notASinkReason | LoggerMethod | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:209:15:209:17 | foo | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:209:15:209:17 | foo | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:209:15:209:17 | foo | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:209:15:209:17 | foo | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:209:15:209:17 | foo | TaintedPath | notASinkReason | LoggerMethod | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:209:15:209:17 | foo | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:209:15:209:17 | foo | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:209:15:209:17 | foo | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:209:15:209:17 | foo | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:209:15:209:17 | foo | Xss | notASinkReason | LoggerMethod | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:209:15:209:17 | foo | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:210:12:210:14 | foo | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:210:12:210:14 | foo | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:210:12:210:14 | foo | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:210:12:210:14 | foo | NosqlInjection | notASinkReason | LoggerMethod | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:210:12:210:14 | foo | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:210:12:210:14 | foo | SqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:210:12:210:14 | foo | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:210:12:210:14 | foo | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:210:12:210:14 | foo | SqlInjection | notASinkReason | LoggerMethod | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:210:12:210:14 | foo | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:210:12:210:14 | foo | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:210:12:210:14 | foo | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:210:12:210:14 | foo | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:210:12:210:14 | foo | TaintedPath | notASinkReason | LoggerMethod | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:210:12:210:14 | foo | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:210:12:210:14 | foo | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:210:12:210:14 | foo | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:210:12:210:14 | foo | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:210:12:210:14 | foo | Xss | notASinkReason | LoggerMethod | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:210:12:210:14 | foo | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:211:24:211:26 | foo | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:211:24:211:26 | foo | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:211:24:211:26 | foo | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:211:24:211:26 | foo | NosqlInjection | notASinkReason | ReceiverStorage | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:211:24:211:26 | foo | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:211:24:211:26 | foo | SqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:211:24:211:26 | foo | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:211:24:211:26 | foo | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:211:24:211:26 | foo | SqlInjection | notASinkReason | ReceiverStorage | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:211:24:211:26 | foo | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:211:24:211:26 | foo | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:211:24:211:26 | foo | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:211:24:211:26 | foo | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:211:24:211:26 | foo | TaintedPath | notASinkReason | ReceiverStorage | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:211:24:211:26 | foo | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:211:24:211:26 | foo | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:211:24:211:26 | foo | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:211:24:211:26 | foo | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:211:24:211:26 | foo | Xss | notASinkReason | ReceiverStorage | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:211:24:211:26 | foo | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:213:5:213:10 | 'myId' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:213:5:213:10 | 'myId' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:213:5:213:10 | 'myId' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:213:5:213:10 | 'myId' | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:213:5:213:10 | 'myId' | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:213:5:213:10 | 'myId' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:213:5:213:10 | 'myId' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:213:5:213:10 | 'myId' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:213:5:213:10 | 'myId' | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:213:5:213:10 | 'myId' | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:213:5:213:10 | 'myId' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:213:5:213:10 | 'myId' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:213:5:213:10 | 'myId' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:213:5:213:10 | 'myId' | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:213:5:213:10 | 'myId' | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:213:5:213:10 | 'myId' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:213:5:213:10 | 'myId' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:213:5:213:10 | 'myId' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:213:5:213:10 | 'myId' | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:213:5:213:10 | 'myId' | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:213:18:213:18 | e | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:213:18:213:18 | e | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:213:18:213:18 | e | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:213:18:213:18 | e | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:1:23:1:31 | 'express' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:1:23:1:31 | 'express' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:1:23:1:31 | 'express' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:1:23:1:31 | 'express' | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:5:9:5:19 | '/user/:id' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:5:9:5:19 | '/user/:id' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:5:9:5:19 | '/user/:id' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:5:9:5:19 | '/user/:id' | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:5:9:5:19 | '/user/:id' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:5:9:5:19 | '/user/:id' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:5:9:5:19 | '/user/:id' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:5:9:5:19 | '/user/:id' | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:5:9:5:19 | '/user/:id' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:5:9:5:19 | '/user/:id' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:5:9:5:19 | '/user/:id' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:5:9:5:19 | '/user/:id' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:5:9:5:19 | '/user/:id' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:5:9:5:19 | '/user/:id' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:5:9:5:19 | '/user/:id' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:5:9:5:19 | '/user/:id' | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:5:22:14:1 | functio ... ;\\n  }\\n} | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:5:22:14:1 | functio ... ;\\n  }\\n} | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:5:22:14:1 | functio ... ;\\n  }\\n} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:5:22:14:1 | functio ... ;\\n  }\\n} | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:5:22:14:1 | functio ... ;\\n  }\\n} | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:5:22:14:1 | functio ... ;\\n  }\\n} | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:5:22:14:1 | functio ... ;\\n  }\\n} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:5:22:14:1 | functio ... ;\\n  }\\n} | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:5:22:14:1 | functio ... ;\\n  }\\n} | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:5:22:14:1 | functio ... ;\\n  }\\n} | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:5:22:14:1 | functio ... ;\\n  }\\n} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:5:22:14:1 | functio ... ;\\n  }\\n} | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:5:22:14:1 | functio ... ;\\n  }\\n} | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:5:22:14:1 | functio ... ;\\n  }\\n} | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:5:22:14:1 | functio ... ;\\n  }\\n} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:5:22:14:1 | functio ... ;\\n  }\\n} | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:20:22:20:29 | "marked" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:20:22:20:29 | "marked" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:20:22:20:29 | "marked" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:20:22:20:29 | "marked" | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:21:9:21:19 | '/user/:id' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:21:9:21:19 | '/user/:id' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:21:9:21:19 | '/user/:id' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:21:9:21:19 | '/user/:id' | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:21:9:21:19 | '/user/:id' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:21:9:21:19 | '/user/:id' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:21:9:21:19 | '/user/:id' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:21:9:21:19 | '/user/:id' | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:21:9:21:19 | '/user/:id' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:21:9:21:19 | '/user/:id' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:21:9:21:19 | '/user/:id' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:21:9:21:19 | '/user/:id' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:21:9:21:19 | '/user/:id' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:21:9:21:19 | '/user/:id' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:21:9:21:19 | '/user/:id' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:21:9:21:19 | '/user/:id' | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:21:22:24:1 | functio ... OT OK\\n} | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:21:22:24:1 | functio ... OT OK\\n} | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:21:22:24:1 | functio ... OT OK\\n} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:21:22:24:1 | functio ... OT OK\\n} | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:21:22:24:1 | functio ... OT OK\\n} | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:21:22:24:1 | functio ... OT OK\\n} | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:21:22:24:1 | functio ... OT OK\\n} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:21:22:24:1 | functio ... OT OK\\n} | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:21:22:24:1 | functio ... OT OK\\n} | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:21:22:24:1 | functio ... OT OK\\n} | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:21:22:24:1 | functio ... OT OK\\n} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:21:22:24:1 | functio ... OT OK\\n} | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:21:22:24:1 | functio ... OT OK\\n} | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:21:22:24:1 | functio ... OT OK\\n} | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:21:22:24:1 | functio ... OT OK\\n} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:21:22:24:1 | functio ... OT OK\\n} | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:27:21:27:36 | 'markdown-table' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:27:21:27:36 | 'markdown-table' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:27:21:27:36 | 'markdown-table' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:27:21:27:36 | 'markdown-table' | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:28:9:28:19 | '/user/:id' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:28:9:28:19 | '/user/:id' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:28:9:28:19 | '/user/:id' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:28:9:28:19 | '/user/:id' | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:28:9:28:19 | '/user/:id' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:28:9:28:19 | '/user/:id' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:28:9:28:19 | '/user/:id' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:28:9:28:19 | '/user/:id' | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:28:9:28:19 | '/user/:id' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:28:9:28:19 | '/user/:id' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:28:9:28:19 | '/user/:id' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:28:9:28:19 | '/user/:id' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:28:9:28:19 | '/user/:id' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:28:9:28:19 | '/user/:id' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:28:9:28:19 | '/user/:id' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:28:9:28:19 | '/user/:id' | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:28:22:35:1 | functio ... OT OK\\n} | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:28:22:35:1 | functio ... OT OK\\n} | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:28:22:35:1 | functio ... OT OK\\n} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:28:22:35:1 | functio ... OT OK\\n} | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:28:22:35:1 | functio ... OT OK\\n} | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:28:22:35:1 | functio ... OT OK\\n} | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:28:22:35:1 | functio ... OT OK\\n} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:28:22:35:1 | functio ... OT OK\\n} | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:28:22:35:1 | functio ... OT OK\\n} | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:28:22:35:1 | functio ... OT OK\\n} | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:28:22:35:1 | functio ... OT OK\\n} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:28:22:35:1 | functio ... OT OK\\n} | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:28:22:35:1 | functio ... OT OK\\n} | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:28:22:35:1 | functio ... OT OK\\n} | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:28:22:35:1 | functio ... OT OK\\n} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:28:22:35:1 | functio ... OT OK\\n} | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:31:5:31:23 | ['Name', 'Content'] | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:31:5:31:23 | ['Name', 'Content'] | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:31:5:31:23 | ['Name', 'Content'] | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:31:5:31:23 | ['Name', 'Content'] | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:31:5:31:23 | ['Name', 'Content'] | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:31:5:31:23 | ['Name', 'Content'] | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:31:5:31:23 | ['Name', 'Content'] | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:31:5:31:23 | ['Name', 'Content'] | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:31:5:31:23 | ['Name', 'Content'] | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:31:5:31:23 | ['Name', 'Content'] | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:31:5:31:23 | ['Name', 'Content'] | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:31:5:31:23 | ['Name', 'Content'] | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:31:6:31:11 | 'Name' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:31:6:31:11 | 'Name' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:31:6:31:11 | 'Name' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:31:6:31:11 | 'Name' | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:31:6:31:11 | 'Name' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:31:6:31:11 | 'Name' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:31:6:31:11 | 'Name' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:31:6:31:11 | 'Name' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:31:6:31:11 | 'Name' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:31:6:31:11 | 'Name' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:31:6:31:11 | 'Name' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:31:6:31:11 | 'Name' | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:31:14:31:22 | 'Content' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:31:14:31:22 | 'Content' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:31:14:31:22 | 'Content' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:31:14:31:22 | 'Content' | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:31:14:31:22 | 'Content' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:31:14:31:22 | 'Content' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:31:14:31:22 | 'Content' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:31:14:31:22 | 'Content' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:31:14:31:22 | 'Content' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:31:14:31:22 | 'Content' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:31:14:31:22 | 'Content' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:31:14:31:22 | 'Content' | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:32:5:32:22 | ['body', req.body] | SqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:32:5:32:22 | ['body', req.body] | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:32:5:32:22 | ['body', req.body] | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:32:5:32:22 | ['body', req.body] | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:32:5:32:22 | ['body', req.body] | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:32:5:32:22 | ['body', req.body] | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:32:5:32:22 | ['body', req.body] | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:32:5:32:22 | ['body', req.body] | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:32:5:32:22 | ['body', req.body] | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:32:5:32:22 | ['body', req.body] | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:32:5:32:22 | ['body', req.body] | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:32:5:32:22 | ['body', req.body] | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:32:6:32:11 | 'body' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:32:6:32:11 | 'body' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:32:6:32:11 | 'body' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:32:6:32:11 | 'body' | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:32:6:32:11 | 'body' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:32:6:32:11 | 'body' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:32:6:32:11 | 'body' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:32:6:32:11 | 'body' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:32:6:32:11 | 'body' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:32:6:32:11 | 'body' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:32:6:32:11 | 'body' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:32:6:32:11 | 'body' | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:32:14:32:21 | req.body | SqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:32:14:32:21 | req.body | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:32:14:32:21 | req.body | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:32:14:32:21 | req.body | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:32:14:32:21 | req.body | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:32:14:32:21 | req.body | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:32:14:32:21 | req.body | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:32:14:32:21 | req.body | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:32:14:32:21 | req.body | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:32:14:32:21 | req.body | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:32:14:32:21 | req.body | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:32:14:32:21 | req.body | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:37:25:37:34 | 'showdown' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:37:25:37:34 | 'showdown' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:37:25:37:34 | 'showdown' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:37:25:37:34 | 'showdown' | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:40:9:40:19 | '/user/:id' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:40:9:40:19 | '/user/:id' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:40:9:40:19 | '/user/:id' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:40:9:40:19 | '/user/:id' | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:40:9:40:19 | '/user/:id' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:40:9:40:19 | '/user/:id' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:40:9:40:19 | '/user/:id' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:40:9:40:19 | '/user/:id' | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:40:9:40:19 | '/user/:id' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:40:9:40:19 | '/user/:id' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:40:9:40:19 | '/user/:id' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:40:9:40:19 | '/user/:id' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:40:9:40:19 | '/user/:id' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:40:9:40:19 | '/user/:id' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:40:9:40:19 | '/user/:id' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:40:9:40:19 | '/user/:id' | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:40:22:43:1 | functio ... OT OK\\n} | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:40:22:43:1 | functio ... OT OK\\n} | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:40:22:43:1 | functio ... OT OK\\n} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:40:22:43:1 | functio ... OT OK\\n} | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:40:22:43:1 | functio ... OT OK\\n} | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:40:22:43:1 | functio ... OT OK\\n} | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:40:22:43:1 | functio ... OT OK\\n} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:40:22:43:1 | functio ... OT OK\\n} | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:40:22:43:1 | functio ... OT OK\\n} | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:40:22:43:1 | functio ... OT OK\\n} | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:40:22:43:1 | functio ... OT OK\\n} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:40:22:43:1 | functio ... OT OK\\n} | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:40:22:43:1 | functio ... OT OK\\n} | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:40:22:43:1 | functio ... OT OK\\n} | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:40:22:43:1 | functio ... OT OK\\n} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:40:22:43:1 | functio ... OT OK\\n} | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:45:23:45:31 | 'unified' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:45:23:45:31 | 'unified' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:45:23:45:31 | 'unified' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:45:23:45:31 | 'unified' | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:46:24:46:37 | 'remark-parse' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:46:24:46:37 | 'remark-parse' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:46:24:46:37 | 'remark-parse' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:46:24:46:37 | 'remark-parse' | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:47:29:47:43 | 'remark-rehype' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:47:29:47:43 | 'remark-rehype' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:47:29:47:43 | 'remark-rehype' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:47:29:47:43 | 'remark-rehype' | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:48:19:48:35 | 'rehype-document' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:48:19:48:35 | 'rehype-document' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:48:19:48:35 | 'rehype-document' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:48:19:48:35 | 'rehype-document' | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:49:22:49:36 | 'rehype-format' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:49:22:49:36 | 'rehype-format' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:49:22:49:36 | 'rehype-format' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:49:22:49:36 | 'rehype-format' | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:50:12:50:38 | require ... ngify') | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:50:12:50:38 | require ... ngify') | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:50:12:50:38 | require ... ngify') | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:50:12:50:38 | require ... ngify') | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:50:20:50:37 | 'rehype-stringify' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:50:20:50:37 | 'rehype-stringify' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:50:20:50:37 | 'rehype-stringify' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:50:20:50:37 | 'rehype-stringify' | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:51:22:51:29 | "remark" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:51:22:51:29 | "remark" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:51:22:51:29 | "remark" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:51:22:51:29 | "remark" | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:52:24:52:40 | "rehype-sanitize" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:52:24:52:40 | "rehype-sanitize" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:52:24:52:40 | "rehype-sanitize" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:52:24:52:40 | "rehype-sanitize" | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:53:37:53:46 | 'showdown' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:53:37:53:46 | 'showdown' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:53:37:53:46 | 'showdown' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:53:37:53:46 | 'showdown' | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:55:9:55:19 | '/user/:id' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:55:9:55:19 | '/user/:id' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:55:9:55:19 | '/user/:id' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:55:9:55:19 | '/user/:id' | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:55:9:55:19 | '/user/:id' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:55:9:55:19 | '/user/:id' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:55:9:55:19 | '/user/:id' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:55:9:55:19 | '/user/:id' | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:55:9:55:19 | '/user/:id' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:55:9:55:19 | '/user/:id' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:55:9:55:19 | '/user/:id' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:55:9:55:19 | '/user/:id' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:55:9:55:19 | '/user/:id' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:55:9:55:19 | '/user/:id' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:55:9:55:19 | '/user/:id' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:55:9:55:19 | '/user/:id' | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:55:22:77:1 | functio ... \\n  })\\n} | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:55:22:77:1 | functio ... \\n  })\\n} | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:55:22:77:1 | functio ... \\n  })\\n} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:55:22:77:1 | functio ... \\n  })\\n} | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:55:22:77:1 | functio ... \\n  })\\n} | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:55:22:77:1 | functio ... \\n  })\\n} | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:55:22:77:1 | functio ... \\n  })\\n} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:55:22:77:1 | functio ... \\n  })\\n} | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:55:22:77:1 | functio ... \\n  })\\n} | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:55:22:77:1 | functio ... \\n  })\\n} | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:55:22:77:1 | functio ... \\n  })\\n} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:55:22:77:1 | functio ... \\n  })\\n} | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:55:22:77:1 | functio ... \\n  })\\n} | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:55:22:77:1 | functio ... \\n  })\\n} | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:55:22:77:1 | functio ... \\n  })\\n} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:55:22:77:1 | functio ... \\n  })\\n} | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:59:10:59:17 | markdown | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:59:10:59:17 | markdown | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:59:10:59:17 | markdown | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:59:10:59:17 | markdown | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:59:10:59:17 | markdown | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:59:10:59:17 | markdown | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:59:10:59:17 | markdown | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:59:10:59:17 | markdown | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:59:10:59:17 | markdown | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:59:10:59:17 | markdown | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:59:10:59:17 | markdown | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:59:10:59:17 | markdown | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:59:10:59:17 | markdown | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:59:10:59:17 | markdown | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:59:10:59:17 | markdown | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:59:10:59:17 | markdown | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:60:10:60:22 | remark2rehype | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:60:10:60:22 | remark2rehype | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:60:10:60:22 | remark2rehype | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:60:10:60:22 | remark2rehype | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:60:10:60:22 | remark2rehype | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:60:10:60:22 | remark2rehype | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:60:10:60:22 | remark2rehype | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:60:10:60:22 | remark2rehype | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:60:10:60:22 | remark2rehype | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:60:10:60:22 | remark2rehype | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:60:10:60:22 | remark2rehype | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:60:10:60:22 | remark2rehype | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:60:10:60:22 | remark2rehype | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:60:10:60:22 | remark2rehype | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:60:10:60:22 | remark2rehype | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:60:10:60:22 | remark2rehype | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:61:10:61:12 | doc | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:61:10:61:12 | doc | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:61:10:61:12 | doc | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:61:10:61:12 | doc | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:61:10:61:12 | doc | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:61:10:61:12 | doc | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:61:10:61:12 | doc | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:61:10:61:12 | doc | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:61:10:61:12 | doc | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:61:10:61:12 | doc | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:61:10:61:12 | doc | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:61:10:61:12 | doc | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:61:10:61:12 | doc | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:61:10:61:12 | doc | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:61:10:61:12 | doc | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:61:10:61:12 | doc | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:61:15:61:31 | { title: '\\u1f44b\\udc4b\\u1f30d\\udf0d' } | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:61:15:61:31 | { title: '\\u1f44b\\udc4b\\u1f30d\\udf0d' } | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:61:15:61:31 | { title: '\\u1f44b\\udc4b\\u1f30d\\udf0d' } | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:61:15:61:31 | { title: '\\u1f44b\\udc4b\\u1f30d\\udf0d' } | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:61:15:61:31 | { title: '\\u1f44b\\udc4b\\u1f30d\\udf0d' } | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:61:15:61:31 | { title: '\\u1f44b\\udc4b\\u1f30d\\udf0d' } | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:61:15:61:31 | { title: '\\u1f44b\\udc4b\\u1f30d\\udf0d' } | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:61:15:61:31 | { title: '\\u1f44b\\udc4b\\u1f30d\\udf0d' } | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:61:15:61:31 | { title: '\\u1f44b\\udc4b\\u1f30d\\udf0d' } | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:61:15:61:31 | { title: '\\u1f44b\\udc4b\\u1f30d\\udf0d' } | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:61:15:61:31 | { title: '\\u1f44b\\udc4b\\u1f30d\\udf0d' } | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:61:15:61:31 | { title: '\\u1f44b\\udc4b\\u1f30d\\udf0d' } | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:61:15:61:31 | { title: '\\u1f44b\\udc4b\\u1f30d\\udf0d' } | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:61:15:61:31 | { title: '\\u1f44b\\udc4b\\u1f30d\\udf0d' } | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:61:15:61:31 | { title: '\\u1f44b\\udc4b\\u1f30d\\udf0d' } | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:61:15:61:31 | { title: '\\u1f44b\\udc4b\\u1f30d\\udf0d' } | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:61:24:61:29 | '\\u1f44b\\udc4b\\u1f30d\\udf0d' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:61:24:61:29 | '\\u1f44b\\udc4b\\u1f30d\\udf0d' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:61:24:61:29 | '\\u1f44b\\udc4b\\u1f30d\\udf0d' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:61:24:61:29 | '\\u1f44b\\udc4b\\u1f30d\\udf0d' | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:61:24:61:29 | '\\u1f44b\\udc4b\\u1f30d\\udf0d' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:61:24:61:29 | '\\u1f44b\\udc4b\\u1f30d\\udf0d' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:61:24:61:29 | '\\u1f44b\\udc4b\\u1f30d\\udf0d' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:61:24:61:29 | '\\u1f44b\\udc4b\\u1f30d\\udf0d' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:61:24:61:29 | '\\u1f44b\\udc4b\\u1f30d\\udf0d' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:61:24:61:29 | '\\u1f44b\\udc4b\\u1f30d\\udf0d' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:61:24:61:29 | '\\u1f44b\\udc4b\\u1f30d\\udf0d' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:61:24:61:29 | '\\u1f44b\\udc4b\\u1f30d\\udf0d' | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:62:10:62:15 | format | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:62:10:62:15 | format | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:62:10:62:15 | format | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:62:10:62:15 | format | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:62:10:62:15 | format | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:62:10:62:15 | format | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:62:10:62:15 | format | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:62:10:62:15 | format | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:62:10:62:15 | format | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:62:10:62:15 | format | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:62:10:62:15 | format | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:62:10:62:15 | format | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:62:10:62:15 | format | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:62:10:62:15 | format | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:62:10:62:15 | format | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:62:10:62:15 | format | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:63:10:63:13 | html | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:63:10:63:13 | html | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:63:10:63:13 | html | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:63:10:63:13 | html | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:63:10:63:13 | html | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:63:10:63:13 | html | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:63:10:63:13 | html | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:63:10:63:13 | html | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:63:10:63:13 | html | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:63:10:63:13 | html | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:63:10:63:13 | html | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:63:10:63:13 | html | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:63:10:63:13 | html | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:63:10:63:13 | html | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:63:10:63:13 | html | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:63:10:63:13 | html | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:70:25:70:32 | sanitize | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:70:25:70:32 | sanitize | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:70:25:70:32 | sanitize | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:70:25:70:32 | sanitize | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:70:25:70:32 | sanitize | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:70:25:70:32 | sanitize | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:70:25:70:32 | sanitize | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:70:25:70:32 | sanitize | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:70:25:70:32 | sanitize | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:70:25:70:32 | sanitize | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:70:25:70:32 | sanitize | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:70:25:70:32 | sanitize | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:70:25:70:32 | sanitize | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:70:25:70:32 | sanitize | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:70:25:70:32 | sanitize | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:70:25:70:32 | sanitize | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:70:47:70:54 | req.body | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:70:47:70:54 | req.body | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:70:47:70:54 | req.body | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:70:47:70:54 | req.body | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:70:47:70:54 | req.body | SqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:70:47:70:54 | req.body | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:70:47:70:54 | req.body | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:70:47:70:54 | req.body | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:70:47:70:54 | req.body | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:70:47:70:54 | req.body | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:70:47:70:54 | req.body | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:70:47:70:54 | req.body | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:70:47:70:54 | req.body | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:70:47:70:54 | req.body | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:70:47:70:54 | req.body | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:70:47:70:54 | req.body | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:72:26:72:33 | markdown | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:72:26:72:33 | markdown | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:72:26:72:33 | markdown | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:72:26:72:33 | markdown | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:72:26:72:33 | markdown | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:72:26:72:33 | markdown | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:72:26:72:33 | markdown | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:72:26:72:33 | markdown | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:72:26:72:33 | markdown | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:72:26:72:33 | markdown | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:72:26:72:33 | markdown | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:72:26:72:33 | markdown | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:72:26:72:33 | markdown | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:72:26:72:33 | markdown | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:72:26:72:33 | markdown | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:72:26:72:33 | markdown | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:80:26:80:36 | "snarkdown" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:80:26:80:36 | "snarkdown" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:80:26:80:36 | "snarkdown" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:80:26:80:36 | "snarkdown" | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:82:9:82:19 | '/user/:id' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:82:9:82:19 | '/user/:id' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:82:9:82:19 | '/user/:id' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:82:9:82:19 | '/user/:id' | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:82:9:82:19 | '/user/:id' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:82:9:82:19 | '/user/:id' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:82:9:82:19 | '/user/:id' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:82:9:82:19 | '/user/:id' | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:82:9:82:19 | '/user/:id' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:82:9:82:19 | '/user/:id' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:82:9:82:19 | '/user/:id' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:82:9:82:19 | '/user/:id' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:82:9:82:19 | '/user/:id' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:82:9:82:19 | '/user/:id' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:82:9:82:19 | '/user/:id' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:82:9:82:19 | '/user/:id' | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:82:22:86:1 | functio ... OT OK\\n} | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:82:22:86:1 | functio ... OT OK\\n} | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:82:22:86:1 | functio ... OT OK\\n} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:82:22:86:1 | functio ... OT OK\\n} | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:82:22:86:1 | functio ... OT OK\\n} | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:82:22:86:1 | functio ... OT OK\\n} | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:82:22:86:1 | functio ... OT OK\\n} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:82:22:86:1 | functio ... OT OK\\n} | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:82:22:86:1 | functio ... OT OK\\n} | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:82:22:86:1 | functio ... OT OK\\n} | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:82:22:86:1 | functio ... OT OK\\n} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:82:22:86:1 | functio ... OT OK\\n} | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:82:22:86:1 | functio ... OT OK\\n} | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:82:22:86:1 | functio ... OT OK\\n} | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:82:22:86:1 | functio ... OT OK\\n} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:82:22:86:1 | functio ... OT OK\\n} | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:88:28:88:40 | 'markdown-it' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:88:28:88:40 | 'markdown-it' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:88:28:88:40 | 'markdown-it' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:88:28:88:40 | 'markdown-it' | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:88:43:90:1 | {\\n  html: true\\n} | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:88:43:90:1 | {\\n  html: true\\n} | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:88:43:90:1 | {\\n  html: true\\n} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:88:43:90:1 | {\\n  html: true\\n} | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:88:43:90:1 | {\\n  html: true\\n} | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:88:43:90:1 | {\\n  html: true\\n} | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:88:43:90:1 | {\\n  html: true\\n} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:88:43:90:1 | {\\n  html: true\\n} | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:88:43:90:1 | {\\n  html: true\\n} | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:88:43:90:1 | {\\n  html: true\\n} | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:88:43:90:1 | {\\n  html: true\\n} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:88:43:90:1 | {\\n  html: true\\n} | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:88:43:90:1 | {\\n  html: true\\n} | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:88:43:90:1 | {\\n  html: true\\n} | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:88:43:90:1 | {\\n  html: true\\n} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:88:43:90:1 | {\\n  html: true\\n} | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:89:9:89:12 | true | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:89:9:89:12 | true | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:89:9:89:12 | true | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:89:9:89:12 | true | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:89:9:89:12 | true | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:89:9:89:12 | true | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:89:9:89:12 | true | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:89:9:89:12 | true | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:89:9:89:12 | true | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:89:9:89:12 | true | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:89:9:89:12 | true | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:89:9:89:12 | true | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:91:29:91:41 | 'markdown-it' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:91:29:91:41 | 'markdown-it' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:91:29:91:41 | 'markdown-it' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:91:29:91:41 | 'markdown-it' | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:91:44:91:45 | {} | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:91:44:91:45 | {} | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:91:44:91:45 | {} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:91:44:91:45 | {} | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:91:44:91:45 | {} | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:91:44:91:45 | {} | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:91:44:91:45 | {} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:91:44:91:45 | {} | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:91:44:91:45 | {} | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:91:44:91:45 | {} | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:91:44:91:45 | {} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:91:44:91:45 | {} | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:91:44:91:45 | {} | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:91:44:91:45 | {} | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:91:44:91:45 | {} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:91:44:91:45 | {} | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:93:29:93:41 | 'markdown-it' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:93:29:93:41 | 'markdown-it' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:93:29:93:41 | 'markdown-it' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:93:29:93:41 | 'markdown-it' | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:93:44:93:55 | {html: true} | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:93:44:93:55 | {html: true} | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:93:44:93:55 | {html: true} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:93:44:93:55 | {html: true} | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:93:44:93:55 | {html: true} | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:93:44:93:55 | {html: true} | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:93:44:93:55 | {html: true} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:93:44:93:55 | {html: true} | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:93:44:93:55 | {html: true} | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:93:44:93:55 | {html: true} | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:93:44:93:55 | {html: true} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:93:44:93:55 | {html: true} | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:93:44:93:55 | {html: true} | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:93:44:93:55 | {html: true} | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:93:44:93:55 | {html: true} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:93:44:93:55 | {html: true} | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:93:51:93:54 | true | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:93:51:93:54 | true | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:93:51:93:54 | true | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:93:51:93:54 | true | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:93:51:93:54 | true | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:93:51:93:54 | true | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:93:51:93:54 | true | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:93:51:93:54 | true | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:93:51:93:54 | true | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:93:51:93:54 | true | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:93:51:93:54 | true | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:93:51:93:54 | true | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:94:8:94:41 | require ... ghtjs') | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:94:8:94:41 | require ... ghtjs') | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:94:8:94:41 | require ... ghtjs') | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:94:8:94:41 | require ... ghtjs') | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:94:8:94:41 | require ... ghtjs') | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:94:8:94:41 | require ... ghtjs') | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:94:8:94:41 | require ... ghtjs') | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:94:8:94:41 | require ... ghtjs') | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:94:8:94:41 | require ... ghtjs') | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:94:8:94:41 | require ... ghtjs') | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:94:8:94:41 | require ... ghtjs') | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:94:8:94:41 | require ... ghtjs') | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:94:8:94:41 | require ... ghtjs') | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:94:8:94:41 | require ... ghtjs') | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:94:8:94:41 | require ... ghtjs') | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:94:8:94:41 | require ... ghtjs') | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:94:16:94:40 | 'markdo ... ightjs' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:94:16:94:40 | 'markdo ... ightjs' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:94:16:94:40 | 'markdo ... ightjs' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:94:16:94:40 | 'markdo ... ightjs' | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:96:9:96:19 | '/user/:id' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:96:9:96:19 | '/user/:id' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:96:9:96:19 | '/user/:id' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:96:9:96:19 | '/user/:id' | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:96:9:96:19 | '/user/:id' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:96:9:96:19 | '/user/:id' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:96:9:96:19 | '/user/:id' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:96:9:96:19 | '/user/:id' | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:96:9:96:19 | '/user/:id' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:96:9:96:19 | '/user/:id' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:96:9:96:19 | '/user/:id' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:96:9:96:19 | '/user/:id' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:96:9:96:19 | '/user/:id' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:96:9:96:19 | '/user/:id' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:96:9:96:19 | '/user/:id' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:96:9:96:19 | '/user/:id' | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:96:22:104:1 | functio ... OT OK\\n} | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:96:22:104:1 | functio ... OT OK\\n} | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:96:22:104:1 | functio ... OT OK\\n} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:96:22:104:1 | functio ... OT OK\\n} | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:96:22:104:1 | functio ... OT OK\\n} | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:96:22:104:1 | functio ... OT OK\\n} | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:96:22:104:1 | functio ... OT OK\\n} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:96:22:104:1 | functio ... OT OK\\n} | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:96:22:104:1 | functio ... OT OK\\n} | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:96:22:104:1 | functio ... OT OK\\n} | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:96:22:104:1 | functio ... OT OK\\n} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:96:22:104:1 | functio ... OT OK\\n} | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:96:22:104:1 | functio ... OT OK\\n} | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:96:22:104:1 | functio ... OT OK\\n} | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:96:22:104:1 | functio ... OT OK\\n} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:96:22:104:1 | functio ... OT OK\\n} | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:99:31:99:38 | req.body | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:99:31:99:38 | req.body | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:99:31:99:38 | req.body | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:99:31:99:38 | req.body | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:99:31:99:38 | req.body | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:99:31:99:38 | req.body | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:99:31:99:38 | req.body | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:99:31:99:38 | req.body | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:99:31:99:38 | req.body | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:99:31:99:38 | req.body | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:99:31:99:38 | req.body | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:99:31:99:38 | req.body | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:102:27:102:58 | require ... tizer') | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:102:27:102:58 | require ... tizer') | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:102:27:102:58 | require ... tizer') | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:102:27:102:58 | require ... tizer') | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:102:27:102:58 | require ... tizer') | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:102:27:102:58 | require ... tizer') | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:102:27:102:58 | require ... tizer') | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:102:27:102:58 | require ... tizer') | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:102:27:102:58 | require ... tizer') | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:102:27:102:58 | require ... tizer') | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:102:27:102:58 | require ... tizer') | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:102:27:102:58 | require ... tizer') | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:102:27:102:58 | require ... tizer') | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:102:27:102:58 | require ... tizer') | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:102:27:102:58 | require ... tizer') | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:102:27:102:58 | require ... tizer') | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:102:35:102:57 | 'markdo ... itizer' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:102:35:102:57 | 'markdo ... itizer' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:102:35:102:57 | 'markdo ... itizer' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:102:35:102:57 | 'markdo ... itizer' | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:102:68:102:75 | req.body | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:102:68:102:75 | req.body | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:102:68:102:75 | req.body | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:102:68:102:75 | req.body | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:102:68:102:75 | req.body | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:102:68:102:75 | req.body | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:102:68:102:75 | req.body | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:102:68:102:75 | req.body | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:102:68:102:75 | req.body | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:102:68:102:75 | req.body | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:102:68:102:75 | req.body | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:102:68:102:75 | req.body | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:103:27:103:53 | require ... -abbr') | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:103:27:103:53 | require ... -abbr') | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:103:27:103:53 | require ... -abbr') | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:103:27:103:53 | require ... -abbr') | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:103:27:103:53 | require ... -abbr') | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:103:27:103:53 | require ... -abbr') | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:103:27:103:53 | require ... -abbr') | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:103:27:103:53 | require ... -abbr') | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:103:27:103:53 | require ... -abbr') | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:103:27:103:53 | require ... -abbr') | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:103:27:103:53 | require ... -abbr') | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:103:27:103:53 | require ... -abbr') | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:103:27:103:53 | require ... -abbr') | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:103:27:103:53 | require ... -abbr') | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:103:27:103:53 | require ... -abbr') | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:103:27:103:53 | require ... -abbr') | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:103:35:103:52 | 'markdown-it-abbr' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:103:35:103:52 | 'markdown-it-abbr' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:103:35:103:52 | 'markdown-it-abbr' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:103:35:103:52 | 'markdown-it-abbr' | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:103:60:103:66 | unknown | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:103:60:103:66 | unknown | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:103:60:103:66 | unknown | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:103:60:103:66 | unknown | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:103:60:103:66 | unknown | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:103:60:103:66 | unknown | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:103:60:103:66 | unknown | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:103:60:103:66 | unknown | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:103:60:103:66 | unknown | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:103:60:103:66 | unknown | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:103:60:103:66 | unknown | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:103:60:103:66 | unknown | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:103:60:103:66 | unknown | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:103:60:103:66 | unknown | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:103:60:103:66 | unknown | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:103:60:103:66 | unknown | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:1:23:1:31 | 'express' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:1:23:1:31 | 'express' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:1:23:1:31 | 'express' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:1:23:1:31 | 'express' | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:4:9:4:19 | '/user/:id' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:4:9:4:19 | '/user/:id' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:4:9:4:19 | '/user/:id' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:4:9:4:19 | '/user/:id' | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:4:9:4:19 | '/user/:id' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:4:9:4:19 | '/user/:id' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:4:9:4:19 | '/user/:id' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:4:9:4:19 | '/user/:id' | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:4:9:4:19 | '/user/:id' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:4:9:4:19 | '/user/:id' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:4:9:4:19 | '/user/:id' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:4:9:4:19 | '/user/:id' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:4:9:4:19 | '/user/:id' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:4:9:4:19 | '/user/:id' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:4:9:4:19 | '/user/:id' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:4:9:4:19 | '/user/:id' | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:4:22:12:1 | functio ... .\\n  }\\n} | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:4:22:12:1 | functio ... .\\n  }\\n} | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:4:22:12:1 | functio ... .\\n  }\\n} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:4:22:12:1 | functio ... .\\n  }\\n} | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:4:22:12:1 | functio ... .\\n  }\\n} | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:4:22:12:1 | functio ... .\\n  }\\n} | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:4:22:12:1 | functio ... .\\n  }\\n} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:4:22:12:1 | functio ... .\\n  }\\n} | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:4:22:12:1 | functio ... .\\n  }\\n} | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:4:22:12:1 | functio ... .\\n  }\\n} | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:4:22:12:1 | functio ... .\\n  }\\n} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:4:22:12:1 | functio ... .\\n  }\\n} | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:4:22:12:1 | functio ... .\\n  }\\n} | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:4:22:12:1 | functio ... .\\n  }\\n} | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:4:22:12:1 | functio ... .\\n  }\\n} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:4:22:12:1 | functio ... .\\n  }\\n} | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:6:13:6:26 | 'Content-Type' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:6:13:6:26 | 'Content-Type' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:6:13:6:26 | 'Content-Type' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:6:13:6:26 | 'Content-Type' | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:6:13:6:26 | 'Content-Type' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:6:13:6:26 | 'Content-Type' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:6:13:6:26 | 'Content-Type' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:6:13:6:26 | 'Content-Type' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:6:13:6:26 | 'Content-Type' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:6:13:6:26 | 'Content-Type' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:6:13:6:26 | 'Content-Type' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:6:13:6:26 | 'Content-Type' | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:6:29:6:40 | 'text/plain' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:6:29:6:40 | 'text/plain' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:6:29:6:40 | 'text/plain' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:6:29:6:40 | 'text/plain' | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:6:29:6:40 | 'text/plain' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:6:29:6:40 | 'text/plain' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:6:29:6:40 | 'text/plain' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:6:29:6:40 | 'text/plain' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:6:29:6:40 | 'text/plain' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:6:29:6:40 | 'text/plain' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:6:29:6:40 | 'text/plain' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:6:29:6:40 | 'text/plain' | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:9:13:9:26 | 'Content-Type' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:9:13:9:26 | 'Content-Type' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:9:13:9:26 | 'Content-Type' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:9:13:9:26 | 'Content-Type' | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:9:13:9:26 | 'Content-Type' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:9:13:9:26 | 'Content-Type' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:9:13:9:26 | 'Content-Type' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:9:13:9:26 | 'Content-Type' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:9:13:9:26 | 'Content-Type' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:9:13:9:26 | 'Content-Type' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:9:13:9:26 | 'Content-Type' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:9:13:9:26 | 'Content-Type' | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:9:29:9:39 | 'text/html' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:9:29:9:39 | 'text/html' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:9:29:9:39 | 'text/html' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:9:29:9:39 | 'text/html' | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:9:29:9:39 | 'text/html' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:9:29:9:39 | 'text/html' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:9:29:9:39 | 'text/html' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:9:29:9:39 | 'text/html' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:9:29:9:39 | 'text/html' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:9:29:9:39 | 'text/html' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:9:29:9:39 | 'text/html' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:9:29:9:39 | 'text/html' | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:14:9:14:19 | '/user/:id' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:14:9:14:19 | '/user/:id' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:14:9:14:19 | '/user/:id' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:14:9:14:19 | '/user/:id' | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:14:9:14:19 | '/user/:id' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:14:9:14:19 | '/user/:id' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:14:9:14:19 | '/user/:id' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:14:9:14:19 | '/user/:id' | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:14:9:14:19 | '/user/:id' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:14:9:14:19 | '/user/:id' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:14:9:14:19 | '/user/:id' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:14:9:14:19 | '/user/:id' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:14:9:14:19 | '/user/:id' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:14:9:14:19 | '/user/:id' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:14:9:14:19 | '/user/:id' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:14:9:14:19 | '/user/:id' | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:14:22:22:1 | functio ... .\\n  }\\n} | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:14:22:22:1 | functio ... .\\n  }\\n} | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:14:22:22:1 | functio ... .\\n  }\\n} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:14:22:22:1 | functio ... .\\n  }\\n} | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:14:22:22:1 | functio ... .\\n  }\\n} | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:14:22:22:1 | functio ... .\\n  }\\n} | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:14:22:22:1 | functio ... .\\n  }\\n} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:14:22:22:1 | functio ... .\\n  }\\n} | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:14:22:22:1 | functio ... .\\n  }\\n} | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:14:22:22:1 | functio ... .\\n  }\\n} | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:14:22:22:1 | functio ... .\\n  }\\n} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:14:22:22:1 | functio ... .\\n  }\\n} | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:14:22:22:1 | functio ... .\\n  }\\n} | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:14:22:22:1 | functio ... .\\n  }\\n} | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:14:22:22:1 | functio ... .\\n  }\\n} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:14:22:22:1 | functio ... .\\n  }\\n} | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:16:19:16:21 | 200 | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:16:19:16:21 | 200 | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:16:19:16:21 | 200 | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:16:19:16:21 | 200 | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:16:19:16:21 | 200 | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:16:19:16:21 | 200 | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:16:19:16:21 | 200 | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:16:19:16:21 | 200 | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:16:19:16:21 | 200 | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:16:19:16:21 | 200 | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:16:19:16:21 | 200 | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:16:19:16:21 | 200 | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:16:24:16:59 | {'Conte ... /json'} | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:16:24:16:59 | {'Conte ... /json'} | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:16:24:16:59 | {'Conte ... /json'} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:16:24:16:59 | {'Conte ... /json'} | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:16:24:16:59 | {'Conte ... /json'} | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:16:24:16:59 | {'Conte ... /json'} | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:16:24:16:59 | {'Conte ... /json'} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:16:24:16:59 | {'Conte ... /json'} | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:16:24:16:59 | {'Conte ... /json'} | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:16:24:16:59 | {'Conte ... /json'} | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:16:24:16:59 | {'Conte ... /json'} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:16:24:16:59 | {'Conte ... /json'} | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:16:41:16:58 | 'application/json' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:16:41:16:58 | 'application/json' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:16:41:16:58 | 'application/json' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:16:41:16:58 | 'application/json' | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:16:41:16:58 | 'application/json' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:16:41:16:58 | 'application/json' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:16:41:16:58 | 'application/json' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:16:41:16:58 | 'application/json' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:16:41:16:58 | 'application/json' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:16:41:16:58 | 'application/json' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:16:41:16:58 | 'application/json' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:16:41:16:58 | 'application/json' | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:19:19:19:21 | 404 | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:19:19:19:21 | 404 | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:19:19:19:21 | 404 | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:19:19:19:21 | 404 | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:19:19:19:21 | 404 | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:19:19:19:21 | 404 | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:19:19:19:21 | 404 | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:19:19:19:21 | 404 | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:19:19:19:21 | 404 | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:19:19:19:21 | 404 | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:19:19:19:21 | 404 | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:19:19:19:21 | 404 | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:25:9:25:19 | '/user/:id' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:25:9:25:19 | '/user/:id' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:25:9:25:19 | '/user/:id' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:25:9:25:19 | '/user/:id' | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:25:9:25:19 | '/user/:id' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:25:9:25:19 | '/user/:id' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:25:9:25:19 | '/user/:id' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:25:9:25:19 | '/user/:id' | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:25:9:25:19 | '/user/:id' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:25:9:25:19 | '/user/:id' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:25:9:25:19 | '/user/:id' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:25:9:25:19 | '/user/:id' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:25:9:25:19 | '/user/:id' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:25:9:25:19 | '/user/:id' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:25:9:25:19 | '/user/:id' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:25:9:25:19 | '/user/:id' | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:25:22:33:1 | functio ...  JSON\\n} | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:25:22:33:1 | functio ...  JSON\\n} | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:25:22:33:1 | functio ...  JSON\\n} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:25:22:33:1 | functio ...  JSON\\n} | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:25:22:33:1 | functio ...  JSON\\n} | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:25:22:33:1 | functio ...  JSON\\n} | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:25:22:33:1 | functio ...  JSON\\n} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:25:22:33:1 | functio ...  JSON\\n} | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:25:22:33:1 | functio ...  JSON\\n} | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:25:22:33:1 | functio ...  JSON\\n} | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:25:22:33:1 | functio ...  JSON\\n} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:25:22:33:1 | functio ...  JSON\\n} | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:25:22:33:1 | functio ...  JSON\\n} | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:25:22:33:1 | functio ...  JSON\\n} | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:25:22:33:1 | functio ...  JSON\\n} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:25:22:33:1 | functio ...  JSON\\n} | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:26:17:26:19 | 200 | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:26:17:26:19 | 200 | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:26:17:26:19 | 200 | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:26:17:26:19 | 200 | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:26:17:26:19 | 200 | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:26:17:26:19 | 200 | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:26:17:26:19 | 200 | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:26:17:26:19 | 200 | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:26:17:26:19 | 200 | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:26:17:26:19 | 200 | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:26:17:26:19 | 200 | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:26:17:26:19 | 200 | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:26:22:26:57 | {'Conte ... /json'} | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:26:22:26:57 | {'Conte ... /json'} | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:26:22:26:57 | {'Conte ... /json'} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:26:22:26:57 | {'Conte ... /json'} | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:26:22:26:57 | {'Conte ... /json'} | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:26:22:26:57 | {'Conte ... /json'} | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:26:22:26:57 | {'Conte ... /json'} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:26:22:26:57 | {'Conte ... /json'} | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:26:22:26:57 | {'Conte ... /json'} | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:26:22:26:57 | {'Conte ... /json'} | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:26:22:26:57 | {'Conte ... /json'} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:26:22:26:57 | {'Conte ... /json'} | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:26:39:26:56 | 'application/json' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:26:39:26:56 | 'application/json' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:26:39:26:56 | 'application/json' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:26:39:26:56 | 'application/json' | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:26:39:26:56 | 'application/json' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:26:39:26:56 | 'application/json' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:26:39:26:56 | 'application/json' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:26:39:26:56 | 'application/json' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:26:39:26:56 | 'application/json' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:26:39:26:56 | 'application/json' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:26:39:26:56 | 'application/json' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:26:39:26:56 | 'application/json' | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:36:9:36:19 | '/user/:id' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:36:9:36:19 | '/user/:id' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:36:9:36:19 | '/user/:id' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:36:9:36:19 | '/user/:id' | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:36:9:36:19 | '/user/:id' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:36:9:36:19 | '/user/:id' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:36:9:36:19 | '/user/:id' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:36:9:36:19 | '/user/:id' | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:36:9:36:19 | '/user/:id' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:36:9:36:19 | '/user/:id' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:36:9:36:19 | '/user/:id' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:36:9:36:19 | '/user/:id' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:36:9:36:19 | '/user/:id' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:36:9:36:19 | '/user/:id' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:36:9:36:19 | '/user/:id' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:36:9:36:19 | '/user/:id' | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:36:22:44:1 | functio ... K\\n  }\\n} | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:36:22:44:1 | functio ... K\\n  }\\n} | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:36:22:44:1 | functio ... K\\n  }\\n} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:36:22:44:1 | functio ... K\\n  }\\n} | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:36:22:44:1 | functio ... K\\n  }\\n} | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:36:22:44:1 | functio ... K\\n  }\\n} | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:36:22:44:1 | functio ... K\\n  }\\n} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:36:22:44:1 | functio ... K\\n  }\\n} | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:36:22:44:1 | functio ... K\\n  }\\n} | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:36:22:44:1 | functio ... K\\n  }\\n} | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:36:22:44:1 | functio ... K\\n  }\\n} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:36:22:44:1 | functio ... K\\n  }\\n} | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:36:22:44:1 | functio ... K\\n  }\\n} | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:36:22:44:1 | functio ... K\\n  }\\n} | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:36:22:44:1 | functio ... K\\n  }\\n} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:36:22:44:1 | functio ... K\\n  }\\n} | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:41:19:41:32 | 'Content-Type' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:41:19:41:32 | 'Content-Type' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:41:19:41:32 | 'Content-Type' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:41:19:41:32 | 'Content-Type' | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:41:19:41:32 | 'Content-Type' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:41:19:41:32 | 'Content-Type' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:41:19:41:32 | 'Content-Type' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:41:19:41:32 | 'Content-Type' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:41:19:41:32 | 'Content-Type' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:41:19:41:32 | 'Content-Type' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:41:19:41:32 | 'Content-Type' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:41:19:41:32 | 'Content-Type' | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:41:35:41:59 | 'text/p ... t=utf8' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:41:35:41:59 | 'text/p ... t=utf8' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:41:35:41:59 | 'text/p ... t=utf8' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:41:35:41:59 | 'text/p ... t=utf8' | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:41:35:41:59 | 'text/p ... t=utf8' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:41:35:41:59 | 'text/p ... t=utf8' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:41:35:41:59 | 'text/p ... t=utf8' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:41:35:41:59 | 'text/p ... t=utf8' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:41:35:41:59 | 'text/p ... t=utf8' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:41:35:41:59 | 'text/p ... t=utf8' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:41:35:41:59 | 'text/p ... t=utf8' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:41:35:41:59 | 'text/p ... t=utf8' | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:50:9:50:19 | '/user/:id' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:50:9:50:19 | '/user/:id' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:50:9:50:19 | '/user/:id' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:50:9:50:19 | '/user/:id' | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:50:9:50:19 | '/user/:id' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:50:9:50:19 | '/user/:id' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:50:9:50:19 | '/user/:id' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:50:9:50:19 | '/user/:id' | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:50:9:50:19 | '/user/:id' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:50:9:50:19 | '/user/:id' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:50:9:50:19 | '/user/:id' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:50:9:50:19 | '/user/:id' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:50:9:50:19 | '/user/:id' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:50:9:50:19 | '/user/:id' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:50:9:50:19 | '/user/:id' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:50:9:50:19 | '/user/:id' | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:50:22:58:1 | functio ... K\\n  }\\n} | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:50:22:58:1 | functio ... K\\n  }\\n} | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:50:22:58:1 | functio ... K\\n  }\\n} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:50:22:58:1 | functio ... K\\n  }\\n} | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:50:22:58:1 | functio ... K\\n  }\\n} | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:50:22:58:1 | functio ... K\\n  }\\n} | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:50:22:58:1 | functio ... K\\n  }\\n} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:50:22:58:1 | functio ... K\\n  }\\n} | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:50:22:58:1 | functio ... K\\n  }\\n} | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:50:22:58:1 | functio ... K\\n  }\\n} | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:50:22:58:1 | functio ... K\\n  }\\n} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:50:22:58:1 | functio ... K\\n  }\\n} | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:50:22:58:1 | functio ... K\\n  }\\n} | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:50:22:58:1 | functio ... K\\n  }\\n} | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:50:22:58:1 | functio ... K\\n  }\\n} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:50:22:58:1 | functio ... K\\n  }\\n} | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:52:16:52:50 | {'Conte ... Type()} | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:52:16:52:50 | {'Conte ... Type()} | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:52:16:52:50 | {'Conte ... Type()} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:52:16:52:50 | {'Conte ... Type()} | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:52:16:52:50 | {'Conte ... Type()} | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:52:16:52:50 | {'Conte ... Type()} | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:52:16:52:50 | {'Conte ... Type()} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:52:16:52:50 | {'Conte ... Type()} | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:52:16:52:50 | {'Conte ... Type()} | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:52:16:52:50 | {'Conte ... Type()} | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:52:16:52:50 | {'Conte ... Type()} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:52:16:52:50 | {'Conte ... Type()} | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:52:33:52:49 | textContentType() | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:52:33:52:49 | textContentType() | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:52:33:52:49 | textContentType() | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:52:33:52:49 | textContentType() | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:52:33:52:49 | textContentType() | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:52:33:52:49 | textContentType() | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:52:33:52:49 | textContentType() | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:52:33:52:49 | textContentType() | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:52:33:52:49 | textContentType() | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:52:33:52:49 | textContentType() | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:52:33:52:49 | textContentType() | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:52:33:52:49 | textContentType() | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:55:19:55:32 | 'Content-Type' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:55:19:55:32 | 'Content-Type' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:55:19:55:32 | 'Content-Type' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:55:19:55:32 | 'Content-Type' | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:55:19:55:32 | 'Content-Type' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:55:19:55:32 | 'Content-Type' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:55:19:55:32 | 'Content-Type' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:55:19:55:32 | 'Content-Type' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:55:19:55:32 | 'Content-Type' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:55:19:55:32 | 'Content-Type' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:55:19:55:32 | 'Content-Type' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:55:19:55:32 | 'Content-Type' | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:55:35:55:59 | 'text/p ... t=utf8' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:55:35:55:59 | 'text/p ... t=utf8' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:55:35:55:59 | 'text/p ... t=utf8' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:55:35:55:59 | 'text/p ... t=utf8' | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:55:35:55:59 | 'text/p ... t=utf8' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:55:35:55:59 | 'text/p ... t=utf8' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:55:35:55:59 | 'text/p ... t=utf8' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:55:35:55:59 | 'text/p ... t=utf8' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:55:35:55:59 | 'text/p ... t=utf8' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:55:35:55:59 | 'text/p ... t=utf8' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:55:35:55:59 | 'text/p ... t=utf8' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:55:35:55:59 | 'text/p ... t=utf8' | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:60:9:60:19 | '/user/:id' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:60:9:60:19 | '/user/:id' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:60:9:60:19 | '/user/:id' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:60:9:60:19 | '/user/:id' | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:60:9:60:19 | '/user/:id' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:60:9:60:19 | '/user/:id' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:60:9:60:19 | '/user/:id' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:60:9:60:19 | '/user/:id' | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:60:9:60:19 | '/user/:id' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:60:9:60:19 | '/user/:id' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:60:9:60:19 | '/user/:id' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:60:9:60:19 | '/user/:id' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:60:9:60:19 | '/user/:id' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:60:9:60:19 | '/user/:id' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:60:9:60:19 | '/user/:id' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:60:9:60:19 | '/user/:id' | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:60:22:71:1 | functio ...  set.\\n} | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:60:22:71:1 | functio ...  set.\\n} | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:60:22:71:1 | functio ...  set.\\n} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:60:22:71:1 | functio ...  set.\\n} | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:60:22:71:1 | functio ...  set.\\n} | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:60:22:71:1 | functio ...  set.\\n} | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:60:22:71:1 | functio ...  set.\\n} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:60:22:71:1 | functio ...  set.\\n} | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:60:22:71:1 | functio ...  set.\\n} | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:60:22:71:1 | functio ...  set.\\n} | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:60:22:71:1 | functio ...  set.\\n} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:60:22:71:1 | functio ...  set.\\n} | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:60:22:71:1 | functio ...  set.\\n} | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:60:22:71:1 | functio ...  set.\\n} | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:60:22:71:1 | functio ...  set.\\n} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:60:22:71:1 | functio ...  set.\\n} | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:62:19:62:21 | 200 | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:62:19:62:21 | 200 | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:62:19:62:21 | 200 | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:62:19:62:21 | 200 | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:62:19:62:21 | 200 | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:62:19:62:21 | 200 | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:62:19:62:21 | 200 | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:62:19:62:21 | 200 | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:62:19:62:21 | 200 | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:62:19:62:21 | 200 | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:62:19:62:21 | 200 | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:62:19:62:21 | 200 | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:62:24:62:59 | {'Conte ... /json'} | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:62:24:62:59 | {'Conte ... /json'} | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:62:24:62:59 | {'Conte ... /json'} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:62:24:62:59 | {'Conte ... /json'} | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:62:24:62:59 | {'Conte ... /json'} | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:62:24:62:59 | {'Conte ... /json'} | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:62:24:62:59 | {'Conte ... /json'} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:62:24:62:59 | {'Conte ... /json'} | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:62:24:62:59 | {'Conte ... /json'} | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:62:24:62:59 | {'Conte ... /json'} | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:62:24:62:59 | {'Conte ... /json'} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:62:24:62:59 | {'Conte ... /json'} | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:62:41:62:58 | 'application/json' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:62:41:62:58 | 'application/json' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:62:41:62:58 | 'application/json' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:62:41:62:58 | 'application/json' | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:62:41:62:58 | 'application/json' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:62:41:62:58 | 'application/json' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:62:41:62:58 | 'application/json' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:62:41:62:58 | 'application/json' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:62:41:62:58 | 'application/json' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:62:41:62:58 | 'application/json' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:62:41:62:58 | 'application/json' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:62:41:62:58 | 'application/json' | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:69:17:69:19 | 404 | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:69:17:69:19 | 404 | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:69:17:69:19 | 404 | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:69:17:69:19 | 404 | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:69:17:69:19 | 404 | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:69:17:69:19 | 404 | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:69:17:69:19 | 404 | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:69:17:69:19 | 404 | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:69:17:69:19 | 404 | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:69:17:69:19 | 404 | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:69:17:69:19 | 404 | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:69:17:69:19 | 404 | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:73:9:73:19 | '/user/:id' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:73:9:73:19 | '/user/:id' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:73:9:73:19 | '/user/:id' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:73:9:73:19 | '/user/:id' | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:73:9:73:19 | '/user/:id' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:73:9:73:19 | '/user/:id' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:73:9:73:19 | '/user/:id' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:73:9:73:19 | '/user/:id' | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:73:9:73:19 | '/user/:id' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:73:9:73:19 | '/user/:id' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:73:9:73:19 | '/user/:id' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:73:9:73:19 | '/user/:id' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:73:9:73:19 | '/user/:id' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:73:9:73:19 | '/user/:id' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:73:9:73:19 | '/user/:id' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:73:9:73:19 | '/user/:id' | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:73:22:79:1 | functio ... // OK\\n} | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:73:22:79:1 | functio ... // OK\\n} | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:73:22:79:1 | functio ... // OK\\n} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:73:22:79:1 | functio ... // OK\\n} | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:73:22:79:1 | functio ... // OK\\n} | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:73:22:79:1 | functio ... // OK\\n} | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:73:22:79:1 | functio ... // OK\\n} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:73:22:79:1 | functio ... // OK\\n} | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:73:22:79:1 | functio ... // OK\\n} | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:73:22:79:1 | functio ... // OK\\n} | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:73:22:79:1 | functio ... // OK\\n} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:73:22:79:1 | functio ... // OK\\n} | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:73:22:79:1 | functio ... // OK\\n} | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:73:22:79:1 | functio ... // OK\\n} | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:73:22:79:1 | functio ... // OK\\n} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:73:22:79:1 | functio ... // OK\\n} | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:74:14:74:48 | {'Conte ... Type()} | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:74:14:74:48 | {'Conte ... Type()} | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:74:14:74:48 | {'Conte ... Type()} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:74:14:74:48 | {'Conte ... Type()} | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:74:14:74:48 | {'Conte ... Type()} | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:74:14:74:48 | {'Conte ... Type()} | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:74:14:74:48 | {'Conte ... Type()} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:74:14:74:48 | {'Conte ... Type()} | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:74:14:74:48 | {'Conte ... Type()} | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:74:14:74:48 | {'Conte ... Type()} | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:74:14:74:48 | {'Conte ... Type()} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:74:14:74:48 | {'Conte ... Type()} | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:74:31:74:47 | textContentType() | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:74:31:74:47 | textContentType() | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:74:31:74:47 | textContentType() | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:74:31:74:47 | textContentType() | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:74:31:74:47 | textContentType() | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:74:31:74:47 | textContentType() | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:74:31:74:47 | textContentType() | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:74:31:74:47 | textContentType() | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:74:31:74:47 | textContentType() | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:74:31:74:47 | textContentType() | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:74:31:74:47 | textContentType() | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:74:31:74:47 | textContentType() | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:75:19:77:3 | () => { ...  OK\\n  } | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:75:19:77:3 | () => { ...  OK\\n  } | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:75:19:77:3 | () => { ...  OK\\n  } | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:75:19:77:3 | () => { ...  OK\\n  } | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:75:19:77:3 | () => { ...  OK\\n  } | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:75:19:77:3 | () => { ...  OK\\n  } | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:75:19:77:3 | () => { ...  OK\\n  } | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:75:19:77:3 | () => { ...  OK\\n  } | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:75:19:77:3 | () => { ...  OK\\n  } | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:75:19:77:3 | () => { ...  OK\\n  } | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:75:19:77:3 | () => { ...  OK\\n  } | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:75:19:77:3 | () => { ...  OK\\n  } | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:75:19:77:3 | () => { ...  OK\\n  } | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:75:19:77:3 | () => { ...  OK\\n  } | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:75:19:77:3 | () => { ...  OK\\n  } | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:75:19:77:3 | () => { ...  OK\\n  } | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood2.js:1:21:1:25 | "url" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood2.js:1:21:1:25 | "url" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood2.js:1:21:1:25 | "url" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood2.js:1:21:1:25 | "url" | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood2.js:3:9:3:14 | "http" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood2.js:3:9:3:14 | "http" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood2.js:3:9:3:14 | "http" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood2.js:3:9:3:14 | "http" | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood2.js:3:30:6:1 | functio ... name)\\n} | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood2.js:3:30:6:1 | functio ... name)\\n} | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood2.js:3:30:6:1 | functio ... name)\\n} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood2.js:3:30:6:1 | functio ... name)\\n} | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood2.js:3:30:6:1 | functio ... name)\\n} | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood2.js:3:30:6:1 | functio ... name)\\n} | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood2.js:3:30:6:1 | functio ... name)\\n} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood2.js:3:30:6:1 | functio ... name)\\n} | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood2.js:3:30:6:1 | functio ... name)\\n} | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood2.js:3:30:6:1 | functio ... name)\\n} | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood2.js:3:30:6:1 | functio ... name)\\n} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood2.js:3:30:6:1 | functio ... name)\\n} | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood2.js:3:30:6:1 | functio ... name)\\n} | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood2.js:3:30:6:1 | functio ... name)\\n} | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood2.js:3:30:6:1 | functio ... name)\\n} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood2.js:3:30:6:1 | functio ... name)\\n} | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood2.js:9:18:9:20 | 200 | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood2.js:9:18:9:20 | 200 | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood2.js:9:18:9:20 | 200 | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood2.js:9:18:9:20 | 200 | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood2.js:9:18:9:20 | 200 | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood2.js:9:18:9:20 | 200 | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood2.js:9:18:9:20 | 200 | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood2.js:9:18:9:20 | 200 | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood2.js:9:18:9:20 | 200 | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood2.js:9:18:9:20 | 200 | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood2.js:9:18:9:20 | 200 | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood2.js:9:18:9:20 | 200 | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood2.js:9:23:9:67 | {"conte ... utf-8"} | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood2.js:9:23:9:67 | {"conte ... utf-8"} | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood2.js:9:23:9:67 | {"conte ... utf-8"} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood2.js:9:23:9:67 | {"conte ... utf-8"} | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood2.js:9:23:9:67 | {"conte ... utf-8"} | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood2.js:9:23:9:67 | {"conte ... utf-8"} | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood2.js:9:23:9:67 | {"conte ... utf-8"} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood2.js:9:23:9:67 | {"conte ... utf-8"} | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood2.js:9:23:9:67 | {"conte ... utf-8"} | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood2.js:9:23:9:67 | {"conte ... utf-8"} | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood2.js:9:23:9:67 | {"conte ... utf-8"} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood2.js:9:23:9:67 | {"conte ... utf-8"} | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood2.js:9:40:9:66 | "text/p ... =utf-8" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood2.js:9:40:9:66 | "text/p ... =utf-8" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood2.js:9:40:9:66 | "text/p ... =utf-8" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood2.js:9:40:9:66 | "text/p ... =utf-8" | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood2.js:9:40:9:66 | "text/p ... =utf-8" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood2.js:9:40:9:66 | "text/p ... =utf-8" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood2.js:9:40:9:66 | "text/p ... =utf-8" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood2.js:9:40:9:66 | "text/p ... =utf-8" | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood2.js:9:40:9:66 | "text/p ... =utf-8" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood2.js:9:40:9:66 | "text/p ... =utf-8" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood2.js:9:40:9:66 | "text/p ... =utf-8" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood2.js:9:40:9:66 | "text/p ... =utf-8" | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:1:23:1:31 | 'express' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:1:23:1:31 | 'express' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:1:23:1:31 | 'express' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:1:23:1:31 | 'express' | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:8:14:8:15 | '' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:8:14:8:15 | '' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:8:14:8:15 | '' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:8:14:8:15 | '' | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:33:7:33:45 | html | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:33:7:33:45 | html | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:33:7:33:45 | html | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:33:7:33:45 | html | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:33:7:33:45 | html += ...  index) | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:33:7:33:45 | html += ...  index) | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:33:7:33:45 | html += ...  index) | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:33:7:33:45 | html += ...  index) | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:33:15:33:45 | str.sub ...  index) | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:33:15:33:45 | str.sub ...  index) | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:33:15:33:45 | str.sub ...  index) | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:33:15:33:45 | str.sub ...  index) | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:33:29:33:37 | lastIndex | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:33:29:33:37 | lastIndex | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:33:29:33:37 | lastIndex | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:33:29:33:37 | lastIndex | NosqlInjection | notASinkReason | BuiltinCallName | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:33:29:33:37 | lastIndex | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:33:29:33:37 | lastIndex | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:33:29:33:37 | lastIndex | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:33:29:33:37 | lastIndex | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:33:29:33:37 | lastIndex | SqlInjection | notASinkReason | BuiltinCallName | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:33:29:33:37 | lastIndex | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:33:29:33:37 | lastIndex | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:33:29:33:37 | lastIndex | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:33:29:33:37 | lastIndex | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:33:29:33:37 | lastIndex | TaintedPath | notASinkReason | BuiltinCallName | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:33:29:33:37 | lastIndex | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:33:29:33:37 | lastIndex | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:33:29:33:37 | lastIndex | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:33:29:33:37 | lastIndex | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:33:29:33:37 | lastIndex | Xss | notASinkReason | BuiltinCallName | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:33:29:33:37 | lastIndex | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:33:40:33:44 | index | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:33:40:33:44 | index | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:33:40:33:44 | index | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:33:40:33:44 | index | NosqlInjection | notASinkReason | BuiltinCallName | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:33:40:33:44 | index | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:33:40:33:44 | index | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:33:40:33:44 | index | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:33:40:33:44 | index | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:33:40:33:44 | index | SqlInjection | notASinkReason | BuiltinCallName | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:33:40:33:44 | index | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:33:40:33:44 | index | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:33:40:33:44 | index | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:33:40:33:44 | index | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:33:40:33:44 | index | TaintedPath | notASinkReason | BuiltinCallName | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:33:40:33:44 | index | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:33:40:33:44 | index | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:33:40:33:44 | index | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:33:40:33:44 | index | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:33:40:33:44 | index | Xss | notASinkReason | BuiltinCallName | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:33:40:33:44 | index | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:37:5:37:18 | html | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:37:5:37:18 | html | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:37:5:37:18 | html | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:37:5:37:18 | html | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:37:5:37:18 | html += escape | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:37:5:37:18 | html += escape | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:37:5:37:18 | html += escape | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:37:5:37:18 | html += escape | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:37:13:37:18 | escape | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:37:13:37:18 | escape | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:37:13:37:18 | escape | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:37:13:37:18 | escape | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:41:7:41:44 | html +  ...  index) | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:41:7:41:44 | html +  ...  index) | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:41:7:41:44 | html +  ...  index) | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:41:7:41:44 | html +  ...  index) | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:41:28:41:36 | lastIndex | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:41:28:41:36 | lastIndex | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:41:28:41:36 | lastIndex | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:41:28:41:36 | lastIndex | NosqlInjection | notASinkReason | BuiltinCallName | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:41:28:41:36 | lastIndex | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:41:28:41:36 | lastIndex | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:41:28:41:36 | lastIndex | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:41:28:41:36 | lastIndex | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:41:28:41:36 | lastIndex | SqlInjection | notASinkReason | BuiltinCallName | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:41:28:41:36 | lastIndex | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:41:28:41:36 | lastIndex | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:41:28:41:36 | lastIndex | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:41:28:41:36 | lastIndex | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:41:28:41:36 | lastIndex | TaintedPath | notASinkReason | BuiltinCallName | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:41:28:41:36 | lastIndex | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:41:28:41:36 | lastIndex | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:41:28:41:36 | lastIndex | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:41:28:41:36 | lastIndex | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:41:28:41:36 | lastIndex | Xss | notASinkReason | BuiltinCallName | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:41:28:41:36 | lastIndex | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:41:39:41:43 | index | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:41:39:41:43 | index | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:41:39:41:43 | index | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:41:39:41:43 | index | NosqlInjection | notASinkReason | BuiltinCallName | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:41:39:41:43 | index | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:41:39:41:43 | index | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:41:39:41:43 | index | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:41:39:41:43 | index | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:41:39:41:43 | index | SqlInjection | notASinkReason | BuiltinCallName | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:41:39:41:43 | index | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:41:39:41:43 | index | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:41:39:41:43 | index | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:41:39:41:43 | index | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:41:39:41:43 | index | TaintedPath | notASinkReason | BuiltinCallName | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:41:39:41:43 | index | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:41:39:41:43 | index | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:41:39:41:43 | index | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:41:39:41:43 | index | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:41:39:41:43 | index | Xss | notASinkReason | BuiltinCallName | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:41:39:41:43 | index | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:77:32:77:32 | 0 | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:77:32:77:32 | 0 | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:77:32:77:32 | 0 | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:77:32:77:32 | 0 | NosqlInjection | notASinkReason | BuiltinCallName | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:77:32:77:32 | 0 | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:77:32:77:32 | 0 | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:77:32:77:32 | 0 | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:77:32:77:32 | 0 | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:77:32:77:32 | 0 | SqlInjection | notASinkReason | BuiltinCallName | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:77:32:77:32 | 0 | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:77:32:77:32 | 0 | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:77:32:77:32 | 0 | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:77:32:77:32 | 0 | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:77:32:77:32 | 0 | TaintedPath | notASinkReason | BuiltinCallName | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:77:32:77:32 | 0 | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:77:32:77:32 | 0 | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:77:32:77:32 | 0 | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:77:32:77:32 | 0 | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:77:32:77:32 | 0 | Xss | notASinkReason | BuiltinCallName | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:77:32:77:32 | 0 | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:77:35:77:35 | i | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:77:35:77:35 | i | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:77:35:77:35 | i | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:77:35:77:35 | i | NosqlInjection | notASinkReason | BuiltinCallName | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:77:35:77:35 | i | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:77:35:77:35 | i | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:77:35:77:35 | i | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:77:35:77:35 | i | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:77:35:77:35 | i | SqlInjection | notASinkReason | BuiltinCallName | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:77:35:77:35 | i | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:77:35:77:35 | i | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:77:35:77:35 | i | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:77:35:77:35 | i | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:77:35:77:35 | i | TaintedPath | notASinkReason | BuiltinCallName | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:77:35:77:35 | i | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:77:35:77:35 | i | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:77:35:77:35 | i | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:77:35:77:35 | i | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:77:35:77:35 | i | Xss | notASinkReason | BuiltinCallName | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:77:35:77:35 | i | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:96:29:96:29 | i | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:96:29:96:29 | i | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:96:29:96:29 | i | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:96:29:96:29 | i | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:96:29:96:29 | i | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:96:29:96:29 | i | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:96:29:96:29 | i | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:96:29:96:29 | i | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:96:29:96:29 | i | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:96:29:96:29 | i | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:96:29:96:29 | i | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:96:29:96:29 | i | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:96:29:96:29 | i | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:96:29:96:29 | i | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:96:29:96:29 | i | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:96:29:96:29 | i | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:105:34:105:34 | j | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:105:34:105:34 | j | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:105:34:105:34 | j | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:105:34:105:34 | j | NosqlInjection | notASinkReason | BuiltinCallName | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:105:34:105:34 | j | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:105:34:105:34 | j | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:105:34:105:34 | j | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:105:34:105:34 | j | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:105:34:105:34 | j | SqlInjection | notASinkReason | BuiltinCallName | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:105:34:105:34 | j | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:105:34:105:34 | j | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:105:34:105:34 | j | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:105:34:105:34 | j | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:105:34:105:34 | j | TaintedPath | notASinkReason | BuiltinCallName | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:105:34:105:34 | j | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:105:34:105:34 | j | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:105:34:105:34 | j | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:105:34:105:34 | j | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:105:34:105:34 | j | Xss | notASinkReason | BuiltinCallName | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:105:34:105:34 | j | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:105:37:105:37 | i | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:105:37:105:37 | i | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:105:37:105:37 | i | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:105:37:105:37 | i | NosqlInjection | notASinkReason | BuiltinCallName | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:105:37:105:37 | i | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:105:37:105:37 | i | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:105:37:105:37 | i | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:105:37:105:37 | i | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:105:37:105:37 | i | SqlInjection | notASinkReason | BuiltinCallName | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:105:37:105:37 | i | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:105:37:105:37 | i | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:105:37:105:37 | i | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:105:37:105:37 | i | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:105:37:105:37 | i | TaintedPath | notASinkReason | BuiltinCallName | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:105:37:105:37 | i | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:105:37:105:37 | i | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:105:37:105:37 | i | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:105:37:105:37 | i | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:105:37:105:37 | i | Xss | notASinkReason | BuiltinCallName | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:105:37:105:37 | i | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:115:23:115:25 | i++ | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:115:23:115:25 | i++ | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:115:23:115:25 | i++ | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:115:23:115:25 | i++ | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:115:23:115:25 | i++ | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:115:23:115:25 | i++ | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:115:23:115:25 | i++ | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:115:23:115:25 | i++ | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:115:23:115:25 | i++ | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:115:23:115:25 | i++ | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:115:23:115:25 | i++ | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:115:23:115:25 | i++ | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:115:23:115:25 | i++ | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:115:23:115:25 | i++ | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:115:23:115:25 | i++ | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:115:23:115:25 | i++ | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:134:9:134:19 | '/user/:id' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:134:9:134:19 | '/user/:id' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:134:9:134:19 | '/user/:id' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:134:9:134:19 | '/user/:id' | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:134:9:134:19 | '/user/:id' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:134:9:134:19 | '/user/:id' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:134:9:134:19 | '/user/:id' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:134:9:134:19 | '/user/:id' | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:134:9:134:19 | '/user/:id' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:134:9:134:19 | '/user/:id' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:134:9:134:19 | '/user/:id' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:134:9:134:19 | '/user/:id' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:134:9:134:19 | '/user/:id' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:134:9:134:19 | '/user/:id' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:134:9:134:19 | '/user/:id' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:134:9:134:19 | '/user/:id' | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:134:22:141:1 | functio ... // OK\\n} | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:134:22:141:1 | functio ... // OK\\n} | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:134:22:141:1 | functio ... // OK\\n} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:134:22:141:1 | functio ... // OK\\n} | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:134:22:141:1 | functio ... // OK\\n} | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:134:22:141:1 | functio ... // OK\\n} | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:134:22:141:1 | functio ... // OK\\n} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:134:22:141:1 | functio ... // OK\\n} | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:134:22:141:1 | functio ... // OK\\n} | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:134:22:141:1 | functio ... // OK\\n} | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:134:22:141:1 | functio ... // OK\\n} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:134:22:141:1 | functio ... // OK\\n} | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:134:22:141:1 | functio ... // OK\\n} | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:134:22:141:1 | functio ... // OK\\n} | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:134:22:141:1 | functio ... // OK\\n} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:134:22:141:1 | functio ... // OK\\n} | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:1:22:1:34 | 'escape-html' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:1:22:1:34 | 'escape-html' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:1:22:1:34 | 'escape-html' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:1:22:1:34 | 'escape-html' | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:2:23:2:31 | 'express' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:2:23:2:31 | 'express' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:2:23:2:31 | 'express' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:2:23:2:31 | 'express' | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:6:9:6:19 | '/user/:id' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:6:9:6:19 | '/user/:id' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:6:9:6:19 | '/user/:id' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:6:9:6:19 | '/user/:id' | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:6:9:6:19 | '/user/:id' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:6:9:6:19 | '/user/:id' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:6:9:6:19 | '/user/:id' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:6:9:6:19 | '/user/:id' | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:6:9:6:19 | '/user/:id' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:6:9:6:19 | '/user/:id' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:6:9:6:19 | '/user/:id' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:6:9:6:19 | '/user/:id' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:6:9:6:19 | '/user/:id' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:6:9:6:19 | '/user/:id' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:6:9:6:19 | '/user/:id' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:6:9:6:19 | '/user/:id' | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:6:22:13:1 | functio ...     ;\\n} | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:6:22:13:1 | functio ...     ;\\n} | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:6:22:13:1 | functio ...     ;\\n} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:6:22:13:1 | functio ...     ;\\n} | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:6:22:13:1 | functio ...     ;\\n} | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:6:22:13:1 | functio ...     ;\\n} | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:6:22:13:1 | functio ...     ;\\n} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:6:22:13:1 | functio ...     ;\\n} | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:6:22:13:1 | functio ...     ;\\n} | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:6:22:13:1 | functio ...     ;\\n} | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:6:22:13:1 | functio ...     ;\\n} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:6:22:13:1 | functio ...     ;\\n} | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:6:22:13:1 | functio ...     ;\\n} | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:6:22:13:1 | functio ...     ;\\n} | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:6:22:13:1 | functio ...     ;\\n} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:6:22:13:1 | functio ...     ;\\n} | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:16:9:16:19 | '/user/:id' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:16:9:16:19 | '/user/:id' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:16:9:16:19 | '/user/:id' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:16:9:16:19 | '/user/:id' | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:16:9:16:19 | '/user/:id' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:16:9:16:19 | '/user/:id' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:16:9:16:19 | '/user/:id' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:16:9:16:19 | '/user/:id' | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:16:9:16:19 | '/user/:id' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:16:9:16:19 | '/user/:id' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:16:9:16:19 | '/user/:id' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:16:9:16:19 | '/user/:id' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:16:9:16:19 | '/user/:id' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:16:9:16:19 | '/user/:id' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:16:9:16:19 | '/user/:id' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:16:9:16:19 | '/user/:id' | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:16:22:20:1 | functio ... d });\\n} | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:16:22:20:1 | functio ... d });\\n} | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:16:22:20:1 | functio ... d });\\n} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:16:22:20:1 | functio ... d });\\n} | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:16:22:20:1 | functio ... d });\\n} | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:16:22:20:1 | functio ... d });\\n} | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:16:22:20:1 | functio ... d });\\n} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:16:22:20:1 | functio ... d });\\n} | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:16:22:20:1 | functio ... d });\\n} | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:16:22:20:1 | functio ... d });\\n} | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:16:22:20:1 | functio ... d });\\n} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:16:22:20:1 | functio ... d });\\n} | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:16:22:20:1 | functio ... d });\\n} | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:16:22:20:1 | functio ... d });\\n} | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:16:22:20:1 | functio ... d });\\n} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:16:22:20:1 | functio ... d });\\n} | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:19:16:19:36 | invalid ... emplate | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:19:16:19:36 | invalid ... emplate | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:19:16:19:36 | invalid ... emplate | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:19:16:19:36 | invalid ... emplate | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:19:45:19:57 | req.params.id | SqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:19:45:19:57 | req.params.id | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:19:45:19:57 | req.params.id | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:19:45:19:57 | req.params.id | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:19:45:19:57 | req.params.id | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:19:45:19:57 | req.params.id | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:19:45:19:57 | req.params.id | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:19:45:19:57 | req.params.id | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:19:45:19:57 | req.params.id | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:19:45:19:57 | req.params.id | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:19:45:19:57 | req.params.id | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:19:45:19:57 | req.params.id | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:22:9:22:19 | '/user/:id' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:22:9:22:19 | '/user/:id' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:22:9:22:19 | '/user/:id' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:22:9:22:19 | '/user/:id' | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:22:9:22:19 | '/user/:id' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:22:9:22:19 | '/user/:id' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:22:9:22:19 | '/user/:id' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:22:9:22:19 | '/user/:id' | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:22:9:22:19 | '/user/:id' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:22:9:22:19 | '/user/:id' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:22:9:22:19 | '/user/:id' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:22:9:22:19 | '/user/:id' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:22:9:22:19 | '/user/:id' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:22:9:22:19 | '/user/:id' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:22:9:22:19 | '/user/:id' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:22:9:22:19 | '/user/:id' | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:22:22:30:1 | functio ...     ;\\n} | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:22:22:30:1 | functio ...     ;\\n} | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:22:22:30:1 | functio ...     ;\\n} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:22:22:30:1 | functio ...     ;\\n} | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:22:22:30:1 | functio ...     ;\\n} | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:22:22:30:1 | functio ...     ;\\n} | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:22:22:30:1 | functio ...     ;\\n} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:22:22:30:1 | functio ...     ;\\n} | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:22:22:30:1 | functio ...     ;\\n} | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:22:22:30:1 | functio ...     ;\\n} | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:22:22:30:1 | functio ...     ;\\n} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:22:22:30:1 | functio ...     ;\\n} | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:22:22:30:1 | functio ...     ;\\n} | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:22:22:30:1 | functio ...     ;\\n} | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:22:22:30:1 | functio ...     ;\\n} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:22:22:30:1 | functio ...     ;\\n} | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:25:13:25:26 | 'Content-Type' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:25:13:25:26 | 'Content-Type' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:25:13:25:26 | 'Content-Type' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:25:13:25:26 | 'Content-Type' | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:25:13:25:26 | 'Content-Type' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:25:13:25:26 | 'Content-Type' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:25:13:25:26 | 'Content-Type' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:25:13:25:26 | 'Content-Type' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:25:13:25:26 | 'Content-Type' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:25:13:25:26 | 'Content-Type' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:25:13:25:26 | 'Content-Type' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:25:13:25:26 | 'Content-Type' | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:25:29:25:40 | 'text/plain' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:25:29:25:40 | 'text/plain' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:25:29:25:40 | 'text/plain' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:25:29:25:40 | 'text/plain' | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:25:29:25:40 | 'text/plain' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:25:29:25:40 | 'text/plain' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:25:29:25:40 | 'text/plain' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:25:29:25:40 | 'text/plain' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:25:29:25:40 | 'text/plain' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:25:29:25:40 | 'text/plain' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:25:29:25:40 | 'text/plain' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:25:29:25:40 | 'text/plain' | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:36:9:36:19 | '/user/:id' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:36:9:36:19 | '/user/:id' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:36:9:36:19 | '/user/:id' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:36:9:36:19 | '/user/:id' | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:36:9:36:19 | '/user/:id' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:36:9:36:19 | '/user/:id' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:36:9:36:19 | '/user/:id' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:36:9:36:19 | '/user/:id' | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:36:9:36:19 | '/user/:id' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:36:9:36:19 | '/user/:id' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:36:9:36:19 | '/user/:id' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:36:9:36:19 | '/user/:id' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:36:9:36:19 | '/user/:id' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:36:9:36:19 | '/user/:id' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:36:9:36:19 | '/user/:id' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:36:9:36:19 | '/user/:id' | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:36:22:44:1 | functio ...     ;\\n} | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:36:22:44:1 | functio ...     ;\\n} | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:36:22:44:1 | functio ...     ;\\n} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:36:22:44:1 | functio ...     ;\\n} | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:36:22:44:1 | functio ...     ;\\n} | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:36:22:44:1 | functio ...     ;\\n} | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:36:22:44:1 | functio ...     ;\\n} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:36:22:44:1 | functio ...     ;\\n} | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:36:22:44:1 | functio ...     ;\\n} | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:36:22:44:1 | functio ...     ;\\n} | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:36:22:44:1 | functio ...     ;\\n} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:36:22:44:1 | functio ...     ;\\n} | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:36:22:44:1 | functio ...     ;\\n} | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:36:22:44:1 | functio ...     ;\\n} | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:36:22:44:1 | functio ...     ;\\n} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:36:22:44:1 | functio ...     ;\\n} | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:39:13:39:26 | 'Content-Type' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:39:13:39:26 | 'Content-Type' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:39:13:39:26 | 'Content-Type' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:39:13:39:26 | 'Content-Type' | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:39:13:39:26 | 'Content-Type' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:39:13:39:26 | 'Content-Type' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:39:13:39:26 | 'Content-Type' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:39:13:39:26 | 'Content-Type' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:39:13:39:26 | 'Content-Type' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:39:13:39:26 | 'Content-Type' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:39:13:39:26 | 'Content-Type' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:39:13:39:26 | 'Content-Type' | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:39:29:39:45 | textContentType() | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:39:29:39:45 | textContentType() | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:39:29:39:45 | textContentType() | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:39:29:39:45 | textContentType() | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:39:29:39:45 | textContentType() | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:39:29:39:45 | textContentType() | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:39:29:39:45 | textContentType() | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:39:29:39:45 | textContentType() | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:39:29:39:45 | textContentType() | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:39:29:39:45 | textContentType() | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:39:29:39:45 | textContentType() | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:39:29:39:45 | textContentType() | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:46:9:46:15 | '/echo' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:46:9:46:15 | '/echo' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:46:9:46:15 | '/echo' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:46:9:46:15 | '/echo' | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:46:9:46:15 | '/echo' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:46:9:46:15 | '/echo' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:46:9:46:15 | '/echo' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:46:9:46:15 | '/echo' | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:46:9:46:15 | '/echo' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:46:9:46:15 | '/echo' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:46:9:46:15 | '/echo' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:46:9:46:15 | '/echo' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:46:9:46:15 | '/echo' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:46:9:46:15 | '/echo' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:46:9:46:15 | '/echo' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:46:9:46:15 | '/echo' | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:46:18:51:1 | functio ... msg);\\n} | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:46:18:51:1 | functio ... msg);\\n} | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:46:18:51:1 | functio ... msg);\\n} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:46:18:51:1 | functio ... msg);\\n} | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:46:18:51:1 | functio ... msg);\\n} | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:46:18:51:1 | functio ... msg);\\n} | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:46:18:51:1 | functio ... msg);\\n} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:46:18:51:1 | functio ... msg);\\n} | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:46:18:51:1 | functio ... msg);\\n} | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:46:18:51:1 | functio ... msg);\\n} | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:46:18:51:1 | functio ... msg);\\n} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:46:18:51:1 | functio ... msg);\\n} | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:46:18:51:1 | functio ... msg);\\n} | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:46:18:51:1 | functio ... msg);\\n} | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:46:18:51:1 | functio ... msg);\\n} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:46:18:51:1 | functio ... msg);\\n} | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:48:16:48:29 | 'Content-Type' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:48:16:48:29 | 'Content-Type' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:48:16:48:29 | 'Content-Type' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:48:16:48:29 | 'Content-Type' | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:48:16:48:29 | 'Content-Type' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:48:16:48:29 | 'Content-Type' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:48:16:48:29 | 'Content-Type' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:48:16:48:29 | 'Content-Type' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:48:16:48:29 | 'Content-Type' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:48:16:48:29 | 'Content-Type' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:48:16:48:29 | 'Content-Type' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:48:16:48:29 | 'Content-Type' | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:48:32:48:49 | 'application/json' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:48:32:48:49 | 'application/json' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:48:32:48:49 | 'application/json' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:48:32:48:49 | 'application/json' | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:48:32:48:49 | 'application/json' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:48:32:48:49 | 'application/json' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:48:32:48:49 | 'application/json' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:48:32:48:49 | 'application/json' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:48:32:48:49 | 'application/json' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:48:32:48:49 | 'application/json' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:48:32:48:49 | 'application/json' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:48:32:48:49 | 'application/json' | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:49:16:49:31 | 'Content-Length' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:49:16:49:31 | 'Content-Length' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:49:16:49:31 | 'Content-Length' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:49:16:49:31 | 'Content-Length' | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:49:16:49:31 | 'Content-Length' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:49:16:49:31 | 'Content-Length' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:49:16:49:31 | 'Content-Length' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:49:16:49:31 | 'Content-Length' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:49:16:49:31 | 'Content-Length' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:49:16:49:31 | 'Content-Length' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:49:16:49:31 | 'Content-Length' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:49:16:49:31 | 'Content-Length' | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:49:34:49:43 | msg.length | SqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:49:34:49:43 | msg.length | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:49:34:49:43 | msg.length | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:49:34:49:43 | msg.length | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:49:34:49:43 | msg.length | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:49:34:49:43 | msg.length | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:49:34:49:43 | msg.length | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:49:34:49:43 | msg.length | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:49:34:49:43 | msg.length | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:49:34:49:43 | msg.length | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:49:34:49:43 | msg.length | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:49:34:49:43 | msg.length | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:53:9:53:19 | '/user/:id' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:53:9:53:19 | '/user/:id' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:53:9:53:19 | '/user/:id' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:53:9:53:19 | '/user/:id' | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:53:9:53:19 | '/user/:id' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:53:9:53:19 | '/user/:id' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:53:9:53:19 | '/user/:id' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:53:9:53:19 | '/user/:id' | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:53:9:53:19 | '/user/:id' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:53:9:53:19 | '/user/:id' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:53:9:53:19 | '/user/:id' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:53:9:53:19 | '/user/:id' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:53:9:53:19 | '/user/:id' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:53:9:53:19 | '/user/:id' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:53:9:53:19 | '/user/:id' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:53:9:53:19 | '/user/:id' | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:53:22:58:1 | functio ... K\\n  }\\n} | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:53:22:58:1 | functio ... K\\n  }\\n} | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:53:22:58:1 | functio ... K\\n  }\\n} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:53:22:58:1 | functio ... K\\n  }\\n} | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:53:22:58:1 | functio ... K\\n  }\\n} | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:53:22:58:1 | functio ... K\\n  }\\n} | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:53:22:58:1 | functio ... K\\n  }\\n} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:53:22:58:1 | functio ... K\\n  }\\n} | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:53:22:58:1 | functio ... K\\n  }\\n} | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:53:22:58:1 | functio ... K\\n  }\\n} | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:53:22:58:1 | functio ... K\\n  }\\n} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:53:22:58:1 | functio ... K\\n  }\\n} | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:53:22:58:1 | functio ... K\\n  }\\n} | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:53:22:58:1 | functio ... K\\n  }\\n} | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:53:22:58:1 | functio ... K\\n  }\\n} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:53:22:58:1 | functio ... K\\n  }\\n} | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:55:23:55:25 | url | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:55:23:55:25 | url | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:55:23:55:25 | url | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:55:23:55:25 | url | NosqlInjection | notASinkReason | StringRegExpTest | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:55:23:55:25 | url | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:55:23:55:25 | url | SqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:55:23:55:25 | url | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:55:23:55:25 | url | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:55:23:55:25 | url | SqlInjection | notASinkReason | StringRegExpTest | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:55:23:55:25 | url | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:55:23:55:25 | url | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:55:23:55:25 | url | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:55:23:55:25 | url | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:55:23:55:25 | url | TaintedPath | notASinkReason | StringRegExpTest | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:55:23:55:25 | url | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:55:23:55:25 | url | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:55:23:55:25 | url | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:55:23:55:25 | url | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:55:23:55:25 | url | Xss | notASinkReason | StringRegExpTest | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:55:23:55:25 | url | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:61:23:61:25 | str | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:61:23:61:25 | str | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:61:23:61:25 | str | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:61:23:61:25 | str | NosqlInjection | notASinkReason | StringRegExpTest | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:61:23:61:25 | str | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:61:23:61:25 | str | SqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:61:23:61:25 | str | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:61:23:61:25 | str | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:61:23:61:25 | str | SqlInjection | notASinkReason | StringRegExpTest | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:61:23:61:25 | str | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:61:23:61:25 | str | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:61:23:61:25 | str | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:61:23:61:25 | str | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:61:23:61:25 | str | TaintedPath | notASinkReason | StringRegExpTest | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:61:23:61:25 | str | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:61:23:61:25 | str | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:61:23:61:25 | str | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:61:23:61:25 | str | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:61:23:61:25 | str | Xss | notASinkReason | StringRegExpTest | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:61:23:61:25 | str | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:66:9:66:19 | '/user/:id' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:66:9:66:19 | '/user/:id' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:66:9:66:19 | '/user/:id' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:66:9:66:19 | '/user/:id' | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:66:9:66:19 | '/user/:id' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:66:9:66:19 | '/user/:id' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:66:9:66:19 | '/user/:id' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:66:9:66:19 | '/user/:id' | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:66:9:66:19 | '/user/:id' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:66:9:66:19 | '/user/:id' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:66:9:66:19 | '/user/:id' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:66:9:66:19 | '/user/:id' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:66:9:66:19 | '/user/:id' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:66:9:66:19 | '/user/:id' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:66:9:66:19 | '/user/:id' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:66:9:66:19 | '/user/:id' | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:66:22:70:1 | functio ... // OK\\n} | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:66:22:70:1 | functio ... // OK\\n} | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:66:22:70:1 | functio ... // OK\\n} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:66:22:70:1 | functio ... // OK\\n} | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:66:22:70:1 | functio ... // OK\\n} | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:66:22:70:1 | functio ... // OK\\n} | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:66:22:70:1 | functio ... // OK\\n} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:66:22:70:1 | functio ... // OK\\n} | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:66:22:70:1 | functio ... // OK\\n} | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:66:22:70:1 | functio ... // OK\\n} | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:66:22:70:1 | functio ... // OK\\n} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:66:22:70:1 | functio ... // OK\\n} | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:66:22:70:1 | functio ... // OK\\n} | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:66:22:70:1 | functio ... // OK\\n} | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:66:22:70:1 | functio ... // OK\\n} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:66:22:70:1 | functio ... // OK\\n} | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:82:9:82:19 | '/user/:id' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:82:9:82:19 | '/user/:id' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:82:9:82:19 | '/user/:id' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:82:9:82:19 | '/user/:id' | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:82:9:82:19 | '/user/:id' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:82:9:82:19 | '/user/:id' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:82:9:82:19 | '/user/:id' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:82:9:82:19 | '/user/:id' | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:82:9:82:19 | '/user/:id' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:82:9:82:19 | '/user/:id' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:82:9:82:19 | '/user/:id' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:82:9:82:19 | '/user/:id' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:82:9:82:19 | '/user/:id' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:82:9:82:19 | '/user/:id' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:82:9:82:19 | '/user/:id' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:82:9:82:19 | '/user/:id' | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:82:22:86:1 | functio ... // OK\\n} | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:82:22:86:1 | functio ... // OK\\n} | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:82:22:86:1 | functio ... // OK\\n} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:82:22:86:1 | functio ... // OK\\n} | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:82:22:86:1 | functio ... // OK\\n} | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:82:22:86:1 | functio ... // OK\\n} | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:82:22:86:1 | functio ... // OK\\n} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:82:22:86:1 | functio ... // OK\\n} | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:82:22:86:1 | functio ... // OK\\n} | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:82:22:86:1 | functio ... // OK\\n} | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:82:22:86:1 | functio ... // OK\\n} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:82:22:86:1 | functio ... // OK\\n} | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:82:22:86:1 | functio ... // OK\\n} | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:82:22:86:1 | functio ... // OK\\n} | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:82:22:86:1 | functio ... // OK\\n} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:82:22:86:1 | functio ... // OK\\n} | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/cookies.js:1:23:1:31 | 'express' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/cookies.js:1:23:1:31 | 'express' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/cookies.js:1:23:1:31 | 'express' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/cookies.js:1:23:1:31 | 'express' | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/Xss/ReflectedXss/cookies.js:2:28:2:42 | 'cookie-parser' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/cookies.js:2:28:2:42 | 'cookie-parser' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/cookies.js:2:28:2:42 | 'cookie-parser' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/cookies.js:2:28:2:42 | 'cookie-parser' | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/Xss/ReflectedXss/cookies.js:5:9:5:22 | cookieParser() | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/cookies.js:5:9:5:22 | cookieParser() | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/cookies.js:5:9:5:22 | cookieParser() | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/cookies.js:5:9:5:22 | cookieParser() | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/cookies.js:5:9:5:22 | cookieParser() | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/cookies.js:5:9:5:22 | cookieParser() | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/cookies.js:5:9:5:22 | cookieParser() | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/cookies.js:5:9:5:22 | cookieParser() | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/cookies.js:5:9:5:22 | cookieParser() | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/cookies.js:5:9:5:22 | cookieParser() | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/cookies.js:5:9:5:22 | cookieParser() | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/cookies.js:5:9:5:22 | cookieParser() | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/cookies.js:5:9:5:22 | cookieParser() | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/cookies.js:5:9:5:22 | cookieParser() | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/cookies.js:5:9:5:22 | cookieParser() | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/cookies.js:5:9:5:22 | cookieParser() | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/cookies.js:7:9:7:23 | '/cookie/:name' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/cookies.js:7:9:7:23 | '/cookie/:name' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/cookies.js:7:9:7:23 | '/cookie/:name' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/cookies.js:7:9:7:23 | '/cookie/:name' | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/cookies.js:7:9:7:23 | '/cookie/:name' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/cookies.js:7:9:7:23 | '/cookie/:name' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/cookies.js:7:9:7:23 | '/cookie/:name' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/cookies.js:7:9:7:23 | '/cookie/:name' | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/cookies.js:7:9:7:23 | '/cookie/:name' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/cookies.js:7:9:7:23 | '/cookie/:name' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/cookies.js:7:9:7:23 | '/cookie/:name' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/cookies.js:7:9:7:23 | '/cookie/:name' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/cookies.js:7:9:7:23 | '/cookie/:name' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/cookies.js:7:9:7:23 | '/cookie/:name' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/cookies.js:7:9:7:23 | '/cookie/:name' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/cookies.js:7:9:7:23 | '/cookie/:name' | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/cookies.js:7:26:10:1 | functio ... me]);\\n} | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/cookies.js:7:26:10:1 | functio ... me]);\\n} | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/cookies.js:7:26:10:1 | functio ... me]);\\n} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/cookies.js:7:26:10:1 | functio ... me]);\\n} | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/cookies.js:7:26:10:1 | functio ... me]);\\n} | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/cookies.js:7:26:10:1 | functio ... me]);\\n} | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/cookies.js:7:26:10:1 | functio ... me]);\\n} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/cookies.js:7:26:10:1 | functio ... me]);\\n} | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/cookies.js:7:26:10:1 | functio ... me]);\\n} | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/cookies.js:7:26:10:1 | functio ... me]);\\n} | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/cookies.js:7:26:10:1 | functio ... me]);\\n} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/cookies.js:7:26:10:1 | functio ... me]);\\n} | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/cookies.js:7:26:10:1 | functio ... me]);\\n} | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/cookies.js:7:26:10:1 | functio ... me]);\\n} | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/cookies.js:7:26:10:1 | functio ... me]);\\n} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/cookies.js:7:26:10:1 | functio ... me]);\\n} | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/etherpad.js:1:23:1:31 | 'express' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/etherpad.js:1:23:1:31 | 'express' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/etherpad.js:1:23:1:31 | 'express' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/etherpad.js:1:23:1:31 | 'express' | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/Xss/ReflectedXss/etherpad.js:2:25:2:37 | 'is-var-name' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/etherpad.js:2:25:2:37 | 'is-var-name' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/etherpad.js:2:25:2:37 | 'is-var-name' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/etherpad.js:2:25:2:37 | 'is-var-name' | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/Xss/ReflectedXss/etherpad.js:5:9:5:20 | "/some/path" | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/etherpad.js:5:9:5:20 | "/some/path" | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/etherpad.js:5:9:5:20 | "/some/path" | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/etherpad.js:5:9:5:20 | "/some/path" | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/etherpad.js:5:9:5:20 | "/some/path" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/etherpad.js:5:9:5:20 | "/some/path" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/etherpad.js:5:9:5:20 | "/some/path" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/etherpad.js:5:9:5:20 | "/some/path" | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/etherpad.js:5:9:5:20 | "/some/path" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/etherpad.js:5:9:5:20 | "/some/path" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/etherpad.js:5:9:5:20 | "/some/path" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/etherpad.js:5:9:5:20 | "/some/path" | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/etherpad.js:5:9:5:20 | "/some/path" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/etherpad.js:5:9:5:20 | "/some/path" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/etherpad.js:5:9:5:20 | "/some/path" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/etherpad.js:5:9:5:20 | "/some/path" | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/etherpad.js:5:23:12:1 | (req, r ... nse);\\n} | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/etherpad.js:5:23:12:1 | (req, r ... nse);\\n} | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/etherpad.js:5:23:12:1 | (req, r ... nse);\\n} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/etherpad.js:5:23:12:1 | (req, r ... nse);\\n} | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/etherpad.js:5:23:12:1 | (req, r ... nse);\\n} | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/etherpad.js:5:23:12:1 | (req, r ... nse);\\n} | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/etherpad.js:5:23:12:1 | (req, r ... nse);\\n} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/etherpad.js:5:23:12:1 | (req, r ... nse);\\n} | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/etherpad.js:5:23:12:1 | (req, r ... nse);\\n} | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/etherpad.js:5:23:12:1 | (req, r ... nse);\\n} | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/etherpad.js:5:23:12:1 | (req, r ... nse);\\n} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/etherpad.js:5:23:12:1 | (req, r ... nse);\\n} | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/etherpad.js:5:23:12:1 | (req, r ... nse);\\n} | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/etherpad.js:5:23:12:1 | (req, r ... nse);\\n} | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/etherpad.js:5:23:12:1 | (req, r ... nse);\\n} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/etherpad.js:5:23:12:1 | (req, r ... nse);\\n} | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/formatting.js:1:23:1:31 | 'express' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/formatting.js:1:23:1:31 | 'express' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/formatting.js:1:23:1:31 | 'express' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/formatting.js:1:23:1:31 | 'express' | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/Xss/ReflectedXss/formatting.js:3:15:3:22 | '/user/' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/formatting.js:3:15:3:22 | '/user/' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/formatting.js:3:15:3:22 | '/user/' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/formatting.js:3:15:3:22 | '/user/' | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/formatting.js:3:15:3:22 | '/user/' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/formatting.js:3:15:3:22 | '/user/' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/formatting.js:3:15:3:22 | '/user/' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/formatting.js:3:15:3:22 | '/user/' | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/formatting.js:3:15:3:22 | '/user/' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/formatting.js:3:15:3:22 | '/user/' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/formatting.js:3:15:3:22 | '/user/' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/formatting.js:3:15:3:22 | '/user/' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/formatting.js:3:15:3:22 | '/user/' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/formatting.js:3:15:3:22 | '/user/' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/formatting.js:3:15:3:22 | '/user/' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/formatting.js:3:15:3:22 | '/user/' | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/formatting.js:3:25:8:1 | functio ... OT OK\\n} | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/formatting.js:3:25:8:1 | functio ... OT OK\\n} | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/formatting.js:3:25:8:1 | functio ... OT OK\\n} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/formatting.js:3:25:8:1 | functio ... OT OK\\n} | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/formatting.js:3:25:8:1 | functio ... OT OK\\n} | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/formatting.js:3:25:8:1 | functio ... OT OK\\n} | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/formatting.js:3:25:8:1 | functio ... OT OK\\n} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/formatting.js:3:25:8:1 | functio ... OT OK\\n} | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/formatting.js:3:25:8:1 | functio ... OT OK\\n} | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/formatting.js:3:25:8:1 | functio ... OT OK\\n} | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/formatting.js:3:25:8:1 | functio ... OT OK\\n} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/formatting.js:3:25:8:1 | functio ... OT OK\\n} | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/formatting.js:3:25:8:1 | functio ... OT OK\\n} | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/formatting.js:3:25:8:1 | functio ... OT OK\\n} | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/formatting.js:3:25:8:1 | functio ... OT OK\\n} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/formatting.js:3:25:8:1 | functio ... OT OK\\n} | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/formatting.js:5:26:5:40 | "<div>%s</div>" | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/formatting.js:5:26:5:40 | "<div>%s</div>" | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/formatting.js:5:26:5:40 | "<div>%s</div>" | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/formatting.js:5:26:5:40 | "<div>%s</div>" | NosqlInjection | notASinkReason | LoggerMethod | string |
-| autogenerated/Xss/ReflectedXss/formatting.js:5:26:5:40 | "<div>%s</div>" | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/ReflectedXss/formatting.js:5:26:5:40 | "<div>%s</div>" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/formatting.js:5:26:5:40 | "<div>%s</div>" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/formatting.js:5:26:5:40 | "<div>%s</div>" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/formatting.js:5:26:5:40 | "<div>%s</div>" | SqlInjection | notASinkReason | LoggerMethod | string |
-| autogenerated/Xss/ReflectedXss/formatting.js:5:26:5:40 | "<div>%s</div>" | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/ReflectedXss/formatting.js:5:26:5:40 | "<div>%s</div>" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/formatting.js:5:26:5:40 | "<div>%s</div>" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/formatting.js:5:26:5:40 | "<div>%s</div>" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/formatting.js:5:26:5:40 | "<div>%s</div>" | TaintedPath | notASinkReason | LoggerMethod | string |
-| autogenerated/Xss/ReflectedXss/formatting.js:5:26:5:40 | "<div>%s</div>" | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/ReflectedXss/formatting.js:5:26:5:40 | "<div>%s</div>" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/formatting.js:5:26:5:40 | "<div>%s</div>" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/formatting.js:5:26:5:40 | "<div>%s</div>" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/formatting.js:5:26:5:40 | "<div>%s</div>" | Xss | notASinkReason | LoggerMethod | string |
-| autogenerated/Xss/ReflectedXss/formatting.js:5:26:5:40 | "<div>%s</div>" | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/ReflectedXss/formatting.js:5:43:5:46 | evil | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/ReflectedXss/formatting.js:5:43:5:46 | evil | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/formatting.js:5:43:5:46 | evil | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/formatting.js:5:43:5:46 | evil | NosqlInjection | notASinkReason | LoggerMethod | string |
-| autogenerated/Xss/ReflectedXss/formatting.js:5:43:5:46 | evil | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/ReflectedXss/formatting.js:5:43:5:46 | evil | SqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/ReflectedXss/formatting.js:5:43:5:46 | evil | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/formatting.js:5:43:5:46 | evil | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/formatting.js:5:43:5:46 | evil | SqlInjection | notASinkReason | LoggerMethod | string |
-| autogenerated/Xss/ReflectedXss/formatting.js:5:43:5:46 | evil | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/ReflectedXss/formatting.js:5:43:5:46 | evil | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/ReflectedXss/formatting.js:5:43:5:46 | evil | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/formatting.js:5:43:5:46 | evil | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/formatting.js:5:43:5:46 | evil | TaintedPath | notASinkReason | LoggerMethod | string |
-| autogenerated/Xss/ReflectedXss/formatting.js:5:43:5:46 | evil | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/ReflectedXss/formatting.js:5:43:5:46 | evil | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/ReflectedXss/formatting.js:5:43:5:46 | evil | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/formatting.js:5:43:5:46 | evil | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/formatting.js:5:43:5:46 | evil | Xss | notASinkReason | LoggerMethod | string |
-| autogenerated/Xss/ReflectedXss/formatting.js:5:43:5:46 | evil | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/ReflectedXss/formatting.js:7:22:7:29 | "printf" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/formatting.js:7:22:7:29 | "printf" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/formatting.js:7:22:7:29 | "printf" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/formatting.js:7:22:7:29 | "printf" | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/Xss/ReflectedXss/pages/api/myapi.js:2:14:2:20 | req.url | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/pages/api/myapi.js:2:14:2:20 | req.url | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/pages/api/myapi.js:2:14:2:20 | req.url | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/pages/api/myapi.js:2:14:2:20 | req.url | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/pages/api/myapi.js:2:14:2:20 | req.url | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/pages/api/myapi.js:2:14:2:20 | req.url | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/pages/api/myapi.js:2:14:2:20 | req.url | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/pages/api/myapi.js:2:14:2:20 | req.url | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/pages/api/myapi.js:2:14:2:20 | req.url | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/pages/api/myapi.js:2:14:2:20 | req.url | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/pages/api/myapi.js:2:14:2:20 | req.url | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/pages/api/myapi.js:2:14:2:20 | req.url | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/pages/api/myapi.js:2:14:2:20 | req.url | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/pages/api/myapi.js:2:14:2:20 | req.url | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/pages/api/myapi.js:2:14:2:20 | req.url | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/pages/api/myapi.js:2:14:2:20 | req.url | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/partial.js:1:23:1:31 | 'express' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:1:23:1:31 | 'express' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:1:23:1:31 | 'express' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:1:23:1:31 | 'express' | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/Xss/ReflectedXss/partial.js:2:26:2:37 | 'underscore' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:2:26:2:37 | 'underscore' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:2:26:2:37 | 'underscore' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:2:26:2:37 | 'underscore' | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/Xss/ReflectedXss/partial.js:3:22:3:29 | 'lodash' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:3:22:3:29 | 'lodash' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:3:22:3:29 | 'lodash' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:3:22:3:29 | 'lodash' | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/Xss/ReflectedXss/partial.js:4:17:4:23 | 'ramda' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:4:17:4:23 | 'ramda' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:4:17:4:23 | 'ramda' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:4:17:4:23 | 'ramda' | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/Xss/ReflectedXss/partial.js:8:9:8:20 | "/some/path" | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:8:9:8:20 | "/some/path" | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:8:9:8:20 | "/some/path" | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:8:9:8:20 | "/some/path" | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/partial.js:8:9:8:20 | "/some/path" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:8:9:8:20 | "/some/path" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:8:9:8:20 | "/some/path" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:8:9:8:20 | "/some/path" | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/partial.js:8:9:8:20 | "/some/path" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:8:9:8:20 | "/some/path" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:8:9:8:20 | "/some/path" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:8:9:8:20 | "/some/path" | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/partial.js:8:9:8:20 | "/some/path" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:8:9:8:20 | "/some/path" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:8:9:8:20 | "/some/path" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:8:9:8:20 | "/some/path" | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/partial.js:8:23:15:1 | (req, r ... ack);\\n} | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:8:23:15:1 | (req, r ... ack);\\n} | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:8:23:15:1 | (req, r ... ack);\\n} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:8:23:15:1 | (req, r ... ack);\\n} | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/partial.js:8:23:15:1 | (req, r ... ack);\\n} | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:8:23:15:1 | (req, r ... ack);\\n} | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:8:23:15:1 | (req, r ... ack);\\n} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:8:23:15:1 | (req, r ... ack);\\n} | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/partial.js:8:23:15:1 | (req, r ... ack);\\n} | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:8:23:15:1 | (req, r ... ack);\\n} | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:8:23:15:1 | (req, r ... ack);\\n} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:8:23:15:1 | (req, r ... ack);\\n} | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/partial.js:8:23:15:1 | (req, r ... ack);\\n} | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:8:23:15:1 | (req, r ... ack);\\n} | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:8:23:15:1 | (req, r ... ack);\\n} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:8:23:15:1 | (req, r ... ack);\\n} | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/partial.js:13:36:13:39 | null | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:13:36:13:39 | null | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:13:36:13:39 | null | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:13:36:13:39 | null | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/partial.js:13:36:13:39 | null | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:13:36:13:39 | null | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:13:36:13:39 | null | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:13:36:13:39 | null | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/partial.js:13:36:13:39 | null | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:13:36:13:39 | null | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:13:36:13:39 | null | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:13:36:13:39 | null | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/partial.js:13:36:13:39 | null | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:13:36:13:39 | null | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:13:36:13:39 | null | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:13:36:13:39 | null | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/partial.js:13:42:13:48 | req.url | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:13:42:13:48 | req.url | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:13:42:13:48 | req.url | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:13:42:13:48 | req.url | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/partial.js:13:42:13:48 | req.url | SqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:13:42:13:48 | req.url | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:13:42:13:48 | req.url | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:13:42:13:48 | req.url | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/partial.js:13:42:13:48 | req.url | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:13:42:13:48 | req.url | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:13:42:13:48 | req.url | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:13:42:13:48 | req.url | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/partial.js:13:42:13:48 | req.url | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:13:42:13:48 | req.url | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:13:42:13:48 | req.url | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:13:42:13:48 | req.url | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/partial.js:17:9:17:21 | "/underscore" | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:17:9:17:21 | "/underscore" | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:17:9:17:21 | "/underscore" | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:17:9:17:21 | "/underscore" | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/partial.js:17:9:17:21 | "/underscore" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:17:9:17:21 | "/underscore" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:17:9:17:21 | "/underscore" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:17:9:17:21 | "/underscore" | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/partial.js:17:9:17:21 | "/underscore" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:17:9:17:21 | "/underscore" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:17:9:17:21 | "/underscore" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:17:9:17:21 | "/underscore" | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/partial.js:17:9:17:21 | "/underscore" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:17:9:17:21 | "/underscore" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:17:9:17:21 | "/underscore" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:17:9:17:21 | "/underscore" | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/partial.js:17:24:24:1 | (req, r ... ack);\\n} | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:17:24:24:1 | (req, r ... ack);\\n} | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:17:24:24:1 | (req, r ... ack);\\n} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:17:24:24:1 | (req, r ... ack);\\n} | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/partial.js:17:24:24:1 | (req, r ... ack);\\n} | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:17:24:24:1 | (req, r ... ack);\\n} | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:17:24:24:1 | (req, r ... ack);\\n} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:17:24:24:1 | (req, r ... ack);\\n} | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/partial.js:17:24:24:1 | (req, r ... ack);\\n} | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:17:24:24:1 | (req, r ... ack);\\n} | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:17:24:24:1 | (req, r ... ack);\\n} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:17:24:24:1 | (req, r ... ack);\\n} | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/partial.js:17:24:24:1 | (req, r ... ack);\\n} | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:17:24:24:1 | (req, r ... ack);\\n} | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:17:24:24:1 | (req, r ... ack);\\n} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:17:24:24:1 | (req, r ... ack);\\n} | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/partial.js:22:37:22:48 | sendResponse | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:22:37:22:48 | sendResponse | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:22:37:22:48 | sendResponse | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:22:37:22:48 | sendResponse | NosqlInjection | notASinkReason | LodashUnderscoreArgument | string |
-| autogenerated/Xss/ReflectedXss/partial.js:22:37:22:48 | sendResponse | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/ReflectedXss/partial.js:22:37:22:48 | sendResponse | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:22:37:22:48 | sendResponse | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:22:37:22:48 | sendResponse | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:22:37:22:48 | sendResponse | SqlInjection | notASinkReason | LodashUnderscoreArgument | string |
-| autogenerated/Xss/ReflectedXss/partial.js:22:37:22:48 | sendResponse | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/ReflectedXss/partial.js:22:37:22:48 | sendResponse | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:22:37:22:48 | sendResponse | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:22:37:22:48 | sendResponse | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:22:37:22:48 | sendResponse | TaintedPath | notASinkReason | LodashUnderscoreArgument | string |
-| autogenerated/Xss/ReflectedXss/partial.js:22:37:22:48 | sendResponse | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/ReflectedXss/partial.js:22:37:22:48 | sendResponse | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:22:37:22:48 | sendResponse | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:22:37:22:48 | sendResponse | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:22:37:22:48 | sendResponse | Xss | notASinkReason | LodashUnderscoreArgument | string |
-| autogenerated/Xss/ReflectedXss/partial.js:22:37:22:48 | sendResponse | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/ReflectedXss/partial.js:22:51:22:57 | req.url | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:22:51:22:57 | req.url | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:22:51:22:57 | req.url | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:22:51:22:57 | req.url | NosqlInjection | notASinkReason | LodashUnderscoreArgument | string |
-| autogenerated/Xss/ReflectedXss/partial.js:22:51:22:57 | req.url | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/ReflectedXss/partial.js:22:51:22:57 | req.url | SqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:22:51:22:57 | req.url | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:22:51:22:57 | req.url | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:22:51:22:57 | req.url | SqlInjection | notASinkReason | LodashUnderscoreArgument | string |
-| autogenerated/Xss/ReflectedXss/partial.js:22:51:22:57 | req.url | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/ReflectedXss/partial.js:22:51:22:57 | req.url | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:22:51:22:57 | req.url | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:22:51:22:57 | req.url | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:22:51:22:57 | req.url | TaintedPath | notASinkReason | LodashUnderscoreArgument | string |
-| autogenerated/Xss/ReflectedXss/partial.js:22:51:22:57 | req.url | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/ReflectedXss/partial.js:22:51:22:57 | req.url | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:22:51:22:57 | req.url | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:22:51:22:57 | req.url | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:22:51:22:57 | req.url | Xss | notASinkReason | LodashUnderscoreArgument | string |
-| autogenerated/Xss/ReflectedXss/partial.js:22:51:22:57 | req.url | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/ReflectedXss/partial.js:26:9:26:17 | "/lodash" | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:26:9:26:17 | "/lodash" | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:26:9:26:17 | "/lodash" | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:26:9:26:17 | "/lodash" | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/partial.js:26:9:26:17 | "/lodash" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:26:9:26:17 | "/lodash" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:26:9:26:17 | "/lodash" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:26:9:26:17 | "/lodash" | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/partial.js:26:9:26:17 | "/lodash" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:26:9:26:17 | "/lodash" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:26:9:26:17 | "/lodash" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:26:9:26:17 | "/lodash" | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/partial.js:26:9:26:17 | "/lodash" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:26:9:26:17 | "/lodash" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:26:9:26:17 | "/lodash" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:26:9:26:17 | "/lodash" | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/partial.js:26:20:33:1 | (req, r ... ack);\\n} | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:26:20:33:1 | (req, r ... ack);\\n} | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:26:20:33:1 | (req, r ... ack);\\n} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:26:20:33:1 | (req, r ... ack);\\n} | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/partial.js:26:20:33:1 | (req, r ... ack);\\n} | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:26:20:33:1 | (req, r ... ack);\\n} | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:26:20:33:1 | (req, r ... ack);\\n} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:26:20:33:1 | (req, r ... ack);\\n} | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/partial.js:26:20:33:1 | (req, r ... ack);\\n} | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:26:20:33:1 | (req, r ... ack);\\n} | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:26:20:33:1 | (req, r ... ack);\\n} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:26:20:33:1 | (req, r ... ack);\\n} | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/partial.js:26:20:33:1 | (req, r ... ack);\\n} | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:26:20:33:1 | (req, r ... ack);\\n} | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:26:20:33:1 | (req, r ... ack);\\n} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:26:20:33:1 | (req, r ... ack);\\n} | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/partial.js:31:33:31:44 | sendResponse | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:31:33:31:44 | sendResponse | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:31:33:31:44 | sendResponse | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:31:33:31:44 | sendResponse | NosqlInjection | notASinkReason | LodashUnderscoreArgument | string |
-| autogenerated/Xss/ReflectedXss/partial.js:31:33:31:44 | sendResponse | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/ReflectedXss/partial.js:31:33:31:44 | sendResponse | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:31:33:31:44 | sendResponse | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:31:33:31:44 | sendResponse | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:31:33:31:44 | sendResponse | SqlInjection | notASinkReason | LodashUnderscoreArgument | string |
-| autogenerated/Xss/ReflectedXss/partial.js:31:33:31:44 | sendResponse | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/ReflectedXss/partial.js:31:33:31:44 | sendResponse | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:31:33:31:44 | sendResponse | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:31:33:31:44 | sendResponse | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:31:33:31:44 | sendResponse | TaintedPath | notASinkReason | LodashUnderscoreArgument | string |
-| autogenerated/Xss/ReflectedXss/partial.js:31:33:31:44 | sendResponse | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/ReflectedXss/partial.js:31:33:31:44 | sendResponse | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:31:33:31:44 | sendResponse | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:31:33:31:44 | sendResponse | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:31:33:31:44 | sendResponse | Xss | notASinkReason | LodashUnderscoreArgument | string |
-| autogenerated/Xss/ReflectedXss/partial.js:31:33:31:44 | sendResponse | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/ReflectedXss/partial.js:31:47:31:53 | req.url | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:31:47:31:53 | req.url | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:31:47:31:53 | req.url | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:31:47:31:53 | req.url | NosqlInjection | notASinkReason | LodashUnderscoreArgument | string |
-| autogenerated/Xss/ReflectedXss/partial.js:31:47:31:53 | req.url | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/ReflectedXss/partial.js:31:47:31:53 | req.url | SqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:31:47:31:53 | req.url | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:31:47:31:53 | req.url | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:31:47:31:53 | req.url | SqlInjection | notASinkReason | LodashUnderscoreArgument | string |
-| autogenerated/Xss/ReflectedXss/partial.js:31:47:31:53 | req.url | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/ReflectedXss/partial.js:31:47:31:53 | req.url | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:31:47:31:53 | req.url | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:31:47:31:53 | req.url | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:31:47:31:53 | req.url | TaintedPath | notASinkReason | LodashUnderscoreArgument | string |
-| autogenerated/Xss/ReflectedXss/partial.js:31:47:31:53 | req.url | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/ReflectedXss/partial.js:31:47:31:53 | req.url | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:31:47:31:53 | req.url | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:31:47:31:53 | req.url | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:31:47:31:53 | req.url | Xss | notASinkReason | LodashUnderscoreArgument | string |
-| autogenerated/Xss/ReflectedXss/partial.js:31:47:31:53 | req.url | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/ReflectedXss/partial.js:35:9:35:16 | "/ramda" | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:35:9:35:16 | "/ramda" | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:35:9:35:16 | "/ramda" | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:35:9:35:16 | "/ramda" | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/partial.js:35:9:35:16 | "/ramda" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:35:9:35:16 | "/ramda" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:35:9:35:16 | "/ramda" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:35:9:35:16 | "/ramda" | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/partial.js:35:9:35:16 | "/ramda" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:35:9:35:16 | "/ramda" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:35:9:35:16 | "/ramda" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:35:9:35:16 | "/ramda" | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/partial.js:35:9:35:16 | "/ramda" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:35:9:35:16 | "/ramda" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:35:9:35:16 | "/ramda" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:35:9:35:16 | "/ramda" | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/partial.js:35:19:42:1 | (req, r ... ack);\\n} | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:35:19:42:1 | (req, r ... ack);\\n} | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:35:19:42:1 | (req, r ... ack);\\n} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:35:19:42:1 | (req, r ... ack);\\n} | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/partial.js:35:19:42:1 | (req, r ... ack);\\n} | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:35:19:42:1 | (req, r ... ack);\\n} | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:35:19:42:1 | (req, r ... ack);\\n} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:35:19:42:1 | (req, r ... ack);\\n} | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/partial.js:35:19:42:1 | (req, r ... ack);\\n} | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:35:19:42:1 | (req, r ... ack);\\n} | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:35:19:42:1 | (req, r ... ack);\\n} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:35:19:42:1 | (req, r ... ack);\\n} | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/partial.js:35:19:42:1 | (req, r ... ack);\\n} | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:35:19:42:1 | (req, r ... ack);\\n} | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:35:19:42:1 | (req, r ... ack);\\n} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:35:19:42:1 | (req, r ... ack);\\n} | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/partial.js:40:28:40:39 | sendResponse | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:40:28:40:39 | sendResponse | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:40:28:40:39 | sendResponse | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:40:28:40:39 | sendResponse | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/partial.js:40:28:40:39 | sendResponse | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:40:28:40:39 | sendResponse | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:40:28:40:39 | sendResponse | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:40:28:40:39 | sendResponse | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/partial.js:40:28:40:39 | sendResponse | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:40:28:40:39 | sendResponse | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:40:28:40:39 | sendResponse | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:40:28:40:39 | sendResponse | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/partial.js:40:28:40:39 | sendResponse | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:40:28:40:39 | sendResponse | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:40:28:40:39 | sendResponse | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:40:28:40:39 | sendResponse | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/partial.js:40:42:40:50 | [req.url] | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:40:42:40:50 | [req.url] | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:40:42:40:50 | [req.url] | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:40:42:40:50 | [req.url] | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/partial.js:40:42:40:50 | [req.url] | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:40:42:40:50 | [req.url] | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:40:42:40:50 | [req.url] | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:40:42:40:50 | [req.url] | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/partial.js:40:42:40:50 | [req.url] | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:40:42:40:50 | [req.url] | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:40:42:40:50 | [req.url] | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:40:42:40:50 | [req.url] | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/partial.js:40:43:40:49 | req.url | SqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:40:43:40:49 | req.url | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:40:43:40:49 | req.url | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:40:43:40:49 | req.url | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/partial.js:40:43:40:49 | req.url | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:40:43:40:49 | req.url | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:40:43:40:49 | req.url | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:40:43:40:49 | req.url | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/partial.js:40:43:40:49 | req.url | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:40:43:40:49 | req.url | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:40:43:40:49 | req.url | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:40:43:40:49 | req.url | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/partial.js:44:9:44:17 | "/return" | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:44:9:44:17 | "/return" | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:44:9:44:17 | "/return" | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:44:9:44:17 | "/return" | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/partial.js:44:9:44:17 | "/return" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:44:9:44:17 | "/return" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:44:9:44:17 | "/return" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:44:9:44:17 | "/return" | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/partial.js:44:9:44:17 | "/return" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:44:9:44:17 | "/return" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:44:9:44:17 | "/return" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:44:9:44:17 | "/return" | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/partial.js:44:9:44:17 | "/return" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:44:9:44:17 | "/return" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:44:9:44:17 | "/return" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:44:9:44:17 | "/return" | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/partial.js:44:20:55:1 | (req, r ...  site\\n} | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:44:20:55:1 | (req, r ...  site\\n} | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:44:20:55:1 | (req, r ...  site\\n} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:44:20:55:1 | (req, r ...  site\\n} | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/partial.js:44:20:55:1 | (req, r ...  site\\n} | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:44:20:55:1 | (req, r ...  site\\n} | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:44:20:55:1 | (req, r ...  site\\n} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:44:20:55:1 | (req, r ...  site\\n} | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/partial.js:44:20:55:1 | (req, r ...  site\\n} | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:44:20:55:1 | (req, r ...  site\\n} | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:44:20:55:1 | (req, r ...  site\\n} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:44:20:55:1 | (req, r ...  site\\n} | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/partial.js:44:20:55:1 | (req, r ...  site\\n} | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:44:20:55:1 | (req, r ...  site\\n} | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:44:20:55:1 | (req, r ...  site\\n} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:44:20:55:1 | (req, r ...  site\\n} | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/partial.js:49:32:49:35 | null | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:49:32:49:35 | null | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:49:32:49:35 | null | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:49:32:49:35 | null | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/partial.js:49:32:49:35 | null | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:49:32:49:35 | null | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:49:32:49:35 | null | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:49:32:49:35 | null | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/partial.js:49:32:49:35 | null | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:49:32:49:35 | null | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:49:32:49:35 | null | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:49:32:49:35 | null | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/partial.js:49:32:49:35 | null | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:49:32:49:35 | null | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:49:32:49:35 | null | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:49:32:49:35 | null | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/partial.js:49:38:49:44 | req.url | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:49:38:49:44 | req.url | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:49:38:49:44 | req.url | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:49:38:49:44 | req.url | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/partial.js:49:38:49:44 | req.url | SqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:49:38:49:44 | req.url | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:49:38:49:44 | req.url | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:49:38:49:44 | req.url | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/partial.js:49:38:49:44 | req.url | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:49:38:49:44 | req.url | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:49:38:49:44 | req.url | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:49:38:49:44 | req.url | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/partial.js:49:38:49:44 | req.url | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:49:38:49:44 | req.url | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:49:38:49:44 | req.url | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/partial.js:49:38:49:44 | req.url | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/promises.js:1:23:1:31 | 'express' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/promises.js:1:23:1:31 | 'express' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/promises.js:1:23:1:31 | 'express' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/promises.js:1:23:1:31 | 'express' | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/Xss/ReflectedXss/promises.js:4:9:4:20 | "/some/path" | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/promises.js:4:9:4:20 | "/some/path" | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/promises.js:4:9:4:20 | "/some/path" | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/promises.js:4:9:4:20 | "/some/path" | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/promises.js:4:9:4:20 | "/some/path" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/promises.js:4:9:4:20 | "/some/path" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/promises.js:4:9:4:20 | "/some/path" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/promises.js:4:9:4:20 | "/some/path" | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/promises.js:4:9:4:20 | "/some/path" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/promises.js:4:9:4:20 | "/some/path" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/promises.js:4:9:4:20 | "/some/path" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/promises.js:4:9:4:20 | "/some/path" | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/promises.js:4:9:4:20 | "/some/path" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/promises.js:4:9:4:20 | "/some/path" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/promises.js:4:9:4:20 | "/some/path" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/promises.js:4:9:4:20 | "/some/path" | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/promises.js:4:23:11:1 | (req, r ... // OK\\n} | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/promises.js:4:23:11:1 | (req, r ... // OK\\n} | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/promises.js:4:23:11:1 | (req, r ... // OK\\n} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/promises.js:4:23:11:1 | (req, r ... // OK\\n} | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/promises.js:4:23:11:1 | (req, r ... // OK\\n} | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/promises.js:4:23:11:1 | (req, r ... // OK\\n} | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/promises.js:4:23:11:1 | (req, r ... // OK\\n} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/promises.js:4:23:11:1 | (req, r ... // OK\\n} | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/promises.js:4:23:11:1 | (req, r ... // OK\\n} | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/promises.js:4:23:11:1 | (req, r ... // OK\\n} | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/promises.js:4:23:11:1 | (req, r ... // OK\\n} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/promises.js:4:23:11:1 | (req, r ... // OK\\n} | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/promises.js:4:23:11:1 | (req, r ... // OK\\n} | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/promises.js:4:23:11:1 | (req, r ... // OK\\n} | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/promises.js:4:23:11:1 | (req, r ... // OK\\n} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/promises.js:4:23:11:1 | (req, r ... // OK\\n} | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/promises.js:5:44:5:57 | req.query.data | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/ReflectedXss/promises.js:5:44:5:57 | req.query.data | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/promises.js:5:44:5:57 | req.query.data | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/promises.js:5:44:5:57 | req.query.data | NosqlInjection | notASinkReason | PromiseDefinition | string |
-| autogenerated/Xss/ReflectedXss/promises.js:5:44:5:57 | req.query.data | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/ReflectedXss/promises.js:5:44:5:57 | req.query.data | SqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/ReflectedXss/promises.js:5:44:5:57 | req.query.data | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/promises.js:5:44:5:57 | req.query.data | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/promises.js:5:44:5:57 | req.query.data | SqlInjection | notASinkReason | PromiseDefinition | string |
-| autogenerated/Xss/ReflectedXss/promises.js:5:44:5:57 | req.query.data | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/ReflectedXss/promises.js:5:44:5:57 | req.query.data | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/ReflectedXss/promises.js:5:44:5:57 | req.query.data | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/promises.js:5:44:5:57 | req.query.data | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/promises.js:5:44:5:57 | req.query.data | TaintedPath | notASinkReason | PromiseDefinition | string |
-| autogenerated/Xss/ReflectedXss/promises.js:5:44:5:57 | req.query.data | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/ReflectedXss/promises.js:5:44:5:57 | req.query.data | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/ReflectedXss/promises.js:5:44:5:57 | req.query.data | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/promises.js:5:44:5:57 | req.query.data | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/promises.js:5:44:5:57 | req.query.data | Xss | notASinkReason | PromiseDefinition | string |
-| autogenerated/Xss/ReflectedXss/promises.js:5:44:5:57 | req.query.data | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/ReflectedXss/promises.js:6:11:6:26 | x => res.send(x) | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/promises.js:6:11:6:26 | x => res.send(x) | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/promises.js:6:11:6:26 | x => res.send(x) | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/promises.js:6:11:6:26 | x => res.send(x) | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/promises.js:6:11:6:26 | x => res.send(x) | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/promises.js:6:11:6:26 | x => res.send(x) | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/promises.js:6:11:6:26 | x => res.send(x) | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/promises.js:6:11:6:26 | x => res.send(x) | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/promises.js:6:11:6:26 | x => res.send(x) | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/promises.js:6:11:6:26 | x => res.send(x) | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/promises.js:6:11:6:26 | x => res.send(x) | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/promises.js:6:11:6:26 | x => res.send(x) | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/promises.js:6:11:6:26 | x => res.send(x) | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/promises.js:6:11:6:26 | x => res.send(x) | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/promises.js:6:11:6:26 | x => res.send(x) | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/promises.js:6:11:6:26 | x => res.send(x) | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/promises.js:8:44:8:57 | req.query.data | NosqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/ReflectedXss/promises.js:8:44:8:57 | req.query.data | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/promises.js:8:44:8:57 | req.query.data | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/promises.js:8:44:8:57 | req.query.data | NosqlInjection | notASinkReason | PromiseDefinition | string |
-| autogenerated/Xss/ReflectedXss/promises.js:8:44:8:57 | req.query.data | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/ReflectedXss/promises.js:8:44:8:57 | req.query.data | SqlInjection | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/ReflectedXss/promises.js:8:44:8:57 | req.query.data | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/promises.js:8:44:8:57 | req.query.data | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/promises.js:8:44:8:57 | req.query.data | SqlInjection | notASinkReason | PromiseDefinition | string |
-| autogenerated/Xss/ReflectedXss/promises.js:8:44:8:57 | req.query.data | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/ReflectedXss/promises.js:8:44:8:57 | req.query.data | TaintedPath | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/ReflectedXss/promises.js:8:44:8:57 | req.query.data | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/promises.js:8:44:8:57 | req.query.data | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/promises.js:8:44:8:57 | req.query.data | TaintedPath | notASinkReason | PromiseDefinition | string |
-| autogenerated/Xss/ReflectedXss/promises.js:8:44:8:57 | req.query.data | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/ReflectedXss/promises.js:8:44:8:57 | req.query.data | Xss | hasFlowFromSource | true | boolean |
-| autogenerated/Xss/ReflectedXss/promises.js:8:44:8:57 | req.query.data | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/promises.js:8:44:8:57 | req.query.data | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/promises.js:8:44:8:57 | req.query.data | Xss | notASinkReason | PromiseDefinition | string |
-| autogenerated/Xss/ReflectedXss/promises.js:8:44:8:57 | req.query.data | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/ReflectedXss/promises.js:9:11:9:28 | x => escapeHtml(x) | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/promises.js:9:11:9:28 | x => escapeHtml(x) | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/promises.js:9:11:9:28 | x => escapeHtml(x) | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/promises.js:9:11:9:28 | x => escapeHtml(x) | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/promises.js:9:11:9:28 | x => escapeHtml(x) | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/promises.js:9:11:9:28 | x => escapeHtml(x) | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/promises.js:9:11:9:28 | x => escapeHtml(x) | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/promises.js:9:11:9:28 | x => escapeHtml(x) | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/promises.js:9:11:9:28 | x => escapeHtml(x) | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/promises.js:9:11:9:28 | x => escapeHtml(x) | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/promises.js:9:11:9:28 | x => escapeHtml(x) | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/promises.js:9:11:9:28 | x => escapeHtml(x) | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/promises.js:9:11:9:28 | x => escapeHtml(x) | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/promises.js:9:11:9:28 | x => escapeHtml(x) | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/promises.js:9:11:9:28 | x => escapeHtml(x) | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/promises.js:9:11:9:28 | x => escapeHtml(x) | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/promises.js:10:11:10:26 | x => res.send(x) | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/promises.js:10:11:10:26 | x => res.send(x) | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/promises.js:10:11:10:26 | x => res.send(x) | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/promises.js:10:11:10:26 | x => res.send(x) | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/promises.js:10:11:10:26 | x => res.send(x) | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/promises.js:10:11:10:26 | x => res.send(x) | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/promises.js:10:11:10:26 | x => res.send(x) | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/promises.js:10:11:10:26 | x => res.send(x) | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/promises.js:10:11:10:26 | x => res.send(x) | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/promises.js:10:11:10:26 | x => res.send(x) | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/promises.js:10:11:10:26 | x => res.send(x) | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/promises.js:10:11:10:26 | x => res.send(x) | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/promises.js:10:11:10:26 | x => res.send(x) | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/promises.js:10:11:10:26 | x => res.send(x) | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/promises.js:10:11:10:26 | x => res.send(x) | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/promises.js:10:11:10:26 | x => res.send(x) | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/tst2.js:1:23:1:31 | 'express' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/tst2.js:1:23:1:31 | 'express' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/tst2.js:1:23:1:31 | 'express' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/tst2.js:1:23:1:31 | 'express' | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/Xss/ReflectedXss/tst2.js:5:9:5:19 | '/user/:id' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/tst2.js:5:9:5:19 | '/user/:id' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/tst2.js:5:9:5:19 | '/user/:id' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/tst2.js:5:9:5:19 | '/user/:id' | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/tst2.js:5:9:5:19 | '/user/:id' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/tst2.js:5:9:5:19 | '/user/:id' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/tst2.js:5:9:5:19 | '/user/:id' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/tst2.js:5:9:5:19 | '/user/:id' | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/tst2.js:5:9:5:19 | '/user/:id' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/tst2.js:5:9:5:19 | '/user/:id' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/tst2.js:5:9:5:19 | '/user/:id' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/tst2.js:5:9:5:19 | '/user/:id' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/tst2.js:5:9:5:19 | '/user/:id' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/tst2.js:5:9:5:19 | '/user/:id' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/tst2.js:5:9:5:19 | '/user/:id' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/tst2.js:5:9:5:19 | '/user/:id' | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/tst2.js:5:22:9:1 | functio ... OT OK\\n} | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/tst2.js:5:22:9:1 | functio ... OT OK\\n} | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/tst2.js:5:22:9:1 | functio ... OT OK\\n} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/tst2.js:5:22:9:1 | functio ... OT OK\\n} | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/tst2.js:5:22:9:1 | functio ... OT OK\\n} | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/tst2.js:5:22:9:1 | functio ... OT OK\\n} | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/tst2.js:5:22:9:1 | functio ... OT OK\\n} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/tst2.js:5:22:9:1 | functio ... OT OK\\n} | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/tst2.js:5:22:9:1 | functio ... OT OK\\n} | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/tst2.js:5:22:9:1 | functio ... OT OK\\n} | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/tst2.js:5:22:9:1 | functio ... OT OK\\n} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/tst2.js:5:22:9:1 | functio ... OT OK\\n} | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/tst2.js:5:22:9:1 | functio ... OT OK\\n} | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/tst2.js:5:22:9:1 | functio ... OT OK\\n} | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/tst2.js:5:22:9:1 | functio ... OT OK\\n} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/tst2.js:5:22:9:1 | functio ... OT OK\\n} | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/tst2.js:13:9:13:14 | '/bar' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/tst2.js:13:9:13:14 | '/bar' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/tst2.js:13:9:13:14 | '/bar' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/tst2.js:13:9:13:14 | '/bar' | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/tst2.js:13:9:13:14 | '/bar' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/tst2.js:13:9:13:14 | '/bar' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/tst2.js:13:9:13:14 | '/bar' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/tst2.js:13:9:13:14 | '/bar' | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/tst2.js:13:9:13:14 | '/bar' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/tst2.js:13:9:13:14 | '/bar' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/tst2.js:13:9:13:14 | '/bar' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/tst2.js:13:9:13:14 | '/bar' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/tst2.js:13:9:13:14 | '/bar' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/tst2.js:13:9:13:14 | '/bar' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/ReflectedXss/tst2.js:13:9:13:14 | '/bar' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/tst2.js:13:9:13:14 | '/bar' | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/tst2.js:13:17:24:1 | functio ... // OK\\n} | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/tst2.js:13:17:24:1 | functio ... // OK\\n} | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/tst2.js:13:17:24:1 | functio ... // OK\\n} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/tst2.js:13:17:24:1 | functio ... // OK\\n} | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/tst2.js:13:17:24:1 | functio ... // OK\\n} | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/tst2.js:13:17:24:1 | functio ... // OK\\n} | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/tst2.js:13:17:24:1 | functio ... // OK\\n} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/tst2.js:13:17:24:1 | functio ... // OK\\n} | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/tst2.js:13:17:24:1 | functio ... // OK\\n} | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/tst2.js:13:17:24:1 | functio ... // OK\\n} | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/tst2.js:13:17:24:1 | functio ... // OK\\n} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/tst2.js:13:17:24:1 | functio ... // OK\\n} | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/ReflectedXss/tst2.js:13:17:24:1 | functio ... // OK\\n} | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/ReflectedXss/tst2.js:13:17:24:1 | functio ... // OK\\n} | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/ReflectedXss/tst2.js:13:17:24:1 | functio ... // OK\\n} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/ReflectedXss/tst2.js:13:17:24:1 | functio ... // OK\\n} | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:1:20:1:25 | 'http' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:1:20:1:25 | 'http' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:1:20:1:25 | 'http' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:1:20:1:25 | 'http' | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:2:18:2:21 | 'fs' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:2:18:2:21 | 'fs' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:2:18:2:21 | 'fs' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:2:18:2:21 | 'fs' | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:4:23:4:31 | 'express' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:4:23:4:31 | 'express' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:4:23:4:31 | 'express' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:4:23:4:31 | 'express' | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:6:15:6:17 | '/' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:6:15:6:17 | '/' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:6:15:6:17 | '/' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:6:15:6:17 | '/' | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:6:15:6:17 | '/' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:6:15:6:17 | '/' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:6:15:6:17 | '/' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:6:15:6:17 | '/' | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:6:15:6:17 | '/' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:6:15:6:17 | '/' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:6:15:6:17 | '/' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:6:15:6:17 | '/' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:6:15:6:17 | '/' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:6:15:6:17 | '/' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:6:15:6:17 | '/' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:6:15:6:17 | '/' | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:6:20:10:1 | functio ...   });\\n} | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:6:20:10:1 | functio ...   });\\n} | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:6:20:10:1 | functio ...   });\\n} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:6:20:10:1 | functio ...   });\\n} | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:6:20:10:1 | functio ...   });\\n} | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:6:20:10:1 | functio ...   });\\n} | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:6:20:10:1 | functio ...   });\\n} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:6:20:10:1 | functio ...   });\\n} | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:6:20:10:1 | functio ...   });\\n} | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:6:20:10:1 | functio ...   });\\n} | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:6:20:10:1 | functio ...   });\\n} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:6:20:10:1 | functio ...   });\\n} | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:6:20:10:1 | functio ...   });\\n} | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:6:20:10:1 | functio ...   });\\n} | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:6:20:10:1 | functio ...   });\\n} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:6:20:10:1 | functio ...   });\\n} | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:7:16:7:23 | "/myDir" | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:7:16:7:23 | "/myDir" | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:7:16:7:23 | "/myDir" | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:7:16:7:23 | "/myDir" | NosqlInjection | notASinkReason | FileSystemAccess | string |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:7:16:7:23 | "/myDir" | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:7:16:7:23 | "/myDir" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:7:16:7:23 | "/myDir" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:7:16:7:23 | "/myDir" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:7:16:7:23 | "/myDir" | SqlInjection | notASinkReason | FileSystemAccess | string |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:7:16:7:23 | "/myDir" | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:7:16:7:23 | "/myDir" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:7:16:7:23 | "/myDir" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:7:16:7:23 | "/myDir" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:7:16:7:23 | "/myDir" | TaintedPath | notASinkReason | FileSystemAccess | string |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:7:16:7:23 | "/myDir" | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:7:16:7:23 | "/myDir" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:7:16:7:23 | "/myDir" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:7:16:7:23 | "/myDir" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:7:16:7:23 | "/myDir" | Xss | notASinkReason | FileSystemAccess | string |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:7:16:7:23 | "/myDir" | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:7:26:9:5 | functio ... K\\n    } | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:7:26:9:5 | functio ... K\\n    } | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:7:26:9:5 | functio ... K\\n    } | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:7:26:9:5 | functio ... K\\n    } | NosqlInjection | notASinkReason | FileSystemAccess | string |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:7:26:9:5 | functio ... K\\n    } | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:7:26:9:5 | functio ... K\\n    } | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:7:26:9:5 | functio ... K\\n    } | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:7:26:9:5 | functio ... K\\n    } | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:7:26:9:5 | functio ... K\\n    } | SqlInjection | notASinkReason | FileSystemAccess | string |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:7:26:9:5 | functio ... K\\n    } | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:7:26:9:5 | functio ... K\\n    } | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:7:26:9:5 | functio ... K\\n    } | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:7:26:9:5 | functio ... K\\n    } | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:7:26:9:5 | functio ... K\\n    } | TaintedPath | notASinkReason | FileSystemAccess | string |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:7:26:9:5 | functio ... K\\n    } | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:7:26:9:5 | functio ... K\\n    } | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:7:26:9:5 | functio ... K\\n    } | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:7:26:9:5 | functio ... K\\n    } | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:7:26:9:5 | functio ... K\\n    } | Xss | notASinkReason | FileSystemAccess | string |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:7:26:9:5 | functio ... K\\n    } | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:15:19:40:1 | functio ...   });\\n} | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:15:19:40:1 | functio ...   });\\n} | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:15:19:40:1 | functio ...   });\\n} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:15:19:40:1 | functio ...   });\\n} | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:15:19:40:1 | functio ...   });\\n} | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:15:19:40:1 | functio ...   });\\n} | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:15:19:40:1 | functio ...   });\\n} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:15:19:40:1 | functio ...   });\\n} | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:15:19:40:1 | functio ...   });\\n} | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:15:19:40:1 | functio ...   });\\n} | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:15:19:40:1 | functio ...   });\\n} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:15:19:40:1 | functio ...   });\\n} | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:15:19:40:1 | functio ...   });\\n} | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:15:19:40:1 | functio ...   });\\n} | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:15:19:40:1 | functio ...   });\\n} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:15:19:40:1 | functio ...   });\\n} | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:19:21:19:24 | sort | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:19:21:19:24 | sort | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:19:21:19:24 | sort | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:19:21:19:24 | sort | NosqlInjection | notASinkReason | BuiltinCallName | string |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:19:21:19:24 | sort | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:19:21:19:24 | sort | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:19:21:19:24 | sort | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:19:21:19:24 | sort | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:19:21:19:24 | sort | SqlInjection | notASinkReason | BuiltinCallName | string |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:19:21:19:24 | sort | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:19:21:19:24 | sort | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:19:21:19:24 | sort | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:19:21:19:24 | sort | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:19:21:19:24 | sort | TaintedPath | notASinkReason | BuiltinCallName | string |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:19:21:19:24 | sort | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:19:21:19:24 | sort | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:19:21:19:24 | sort | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:19:21:19:24 | sort | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:19:21:19:24 | sort | Xss | notASinkReason | BuiltinCallName | string |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:19:21:19:24 | sort | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:19:35:21:9 | functio ...       } | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:19:35:21:9 | functio ...       } | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:19:35:21:9 | functio ...       } | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:19:35:21:9 | functio ...       } | NosqlInjection | notASinkReason | BuiltinCallName | string |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:19:35:21:9 | functio ...       } | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:19:35:21:9 | functio ...       } | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:19:35:21:9 | functio ...       } | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:19:35:21:9 | functio ...       } | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:19:35:21:9 | functio ...       } | SqlInjection | notASinkReason | BuiltinCallName | string |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:19:35:21:9 | functio ...       } | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:19:35:21:9 | functio ...       } | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:19:35:21:9 | functio ...       } | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:19:35:21:9 | functio ...       } | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:19:35:21:9 | functio ...       } | TaintedPath | notASinkReason | BuiltinCallName | string |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:19:35:21:9 | functio ...       } | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:19:35:21:9 | functio ...       } | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:19:35:21:9 | functio ...       } | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:19:35:21:9 | functio ...       } | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:19:35:21:9 | functio ...       } | Xss | notASinkReason | BuiltinCallName | string |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:19:35:21:9 | functio ...       } | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:20:25:20:30 | '<li>' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:20:25:20:30 | '<li>' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:20:25:20:30 | '<li>' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:20:25:20:30 | '<li>' | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:20:25:20:37 | '<li>' + file | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:20:25:20:37 | '<li>' + file | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:20:25:20:37 | '<li>' + file | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:20:25:20:37 | '<li>' + file | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:20:34:20:37 | file | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:20:34:20:37 | file | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:20:34:20:37 | file | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:20:34:20:37 | file | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:20:41:20:47 | '</li>' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:20:41:20:47 | '</li>' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:20:41:20:47 | '</li>' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:20:41:20:47 | '</li>' | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:25:16:25:23 | "/myDir" | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:25:16:25:23 | "/myDir" | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:25:16:25:23 | "/myDir" | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:25:16:25:23 | "/myDir" | NosqlInjection | notASinkReason | FileSystemAccess | string |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:25:16:25:23 | "/myDir" | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:25:16:25:23 | "/myDir" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:25:16:25:23 | "/myDir" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:25:16:25:23 | "/myDir" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:25:16:25:23 | "/myDir" | SqlInjection | notASinkReason | FileSystemAccess | string |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:25:16:25:23 | "/myDir" | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:25:16:25:23 | "/myDir" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:25:16:25:23 | "/myDir" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:25:16:25:23 | "/myDir" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:25:16:25:23 | "/myDir" | TaintedPath | notASinkReason | FileSystemAccess | string |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:25:16:25:23 | "/myDir" | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:25:16:25:23 | "/myDir" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:25:16:25:23 | "/myDir" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:25:16:25:23 | "/myDir" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:25:16:25:23 | "/myDir" | Xss | notASinkReason | FileSystemAccess | string |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:25:16:25:23 | "/myDir" | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:25:26:39:5 | functio ... \\n\\n    } | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:25:26:39:5 | functio ... \\n\\n    } | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:25:26:39:5 | functio ... \\n\\n    } | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:25:26:39:5 | functio ... \\n\\n    } | NosqlInjection | notASinkReason | FileSystemAccess | string |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:25:26:39:5 | functio ... \\n\\n    } | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:25:26:39:5 | functio ... \\n\\n    } | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:25:26:39:5 | functio ... \\n\\n    } | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:25:26:39:5 | functio ... \\n\\n    } | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:25:26:39:5 | functio ... \\n\\n    } | SqlInjection | notASinkReason | FileSystemAccess | string |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:25:26:39:5 | functio ... \\n\\n    } | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:25:26:39:5 | functio ... \\n\\n    } | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:25:26:39:5 | functio ... \\n\\n    } | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:25:26:39:5 | functio ... \\n\\n    } | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:25:26:39:5 | functio ... \\n\\n    } | TaintedPath | notASinkReason | FileSystemAccess | string |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:25:26:39:5 | functio ... \\n\\n    } | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:25:26:39:5 | functio ... \\n\\n    } | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:25:26:39:5 | functio ... \\n\\n    } | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:25:26:39:5 | functio ... \\n\\n    } | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:25:26:39:5 | functio ... \\n\\n    } | Xss | notASinkReason | FileSystemAccess | string |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:25:26:39:5 | functio ... \\n\\n    } | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:30:24:32:9 | functio ...       } | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:30:24:32:9 | functio ...       } | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:30:24:32:9 | functio ...       } | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:30:24:32:9 | functio ...       } | NosqlInjection | notASinkReason | BuiltinCallName | string |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:30:24:32:9 | functio ...       } | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:30:24:32:9 | functio ...       } | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:30:24:32:9 | functio ...       } | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:30:24:32:9 | functio ...       } | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:30:24:32:9 | functio ...       } | SqlInjection | notASinkReason | BuiltinCallName | string |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:30:24:32:9 | functio ...       } | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:30:24:32:9 | functio ...       } | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:30:24:32:9 | functio ...       } | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:30:24:32:9 | functio ...       } | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:30:24:32:9 | functio ...       } | TaintedPath | notASinkReason | BuiltinCallName | string |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:30:24:32:9 | functio ...       } | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:30:24:32:9 | functio ...       } | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:30:24:32:9 | functio ...       } | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:30:24:32:9 | functio ...       } | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:30:24:32:9 | functio ...       } | Xss | notASinkReason | BuiltinCallName | string |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:30:24:32:9 | functio ...       } | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/StoredXss/xss-through-torrent.js:1:30:1:44 | 'parse-torrent' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/StoredXss/xss-through-torrent.js:1:30:1:44 | 'parse-torrent' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/StoredXss/xss-through-torrent.js:1:30:1:44 | 'parse-torrent' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/StoredXss/xss-through-torrent.js:1:30:1:44 | 'parse-torrent' | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/Xss/StoredXss/xss-through-torrent.js:2:25:2:33 | 'express' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/StoredXss/xss-through-torrent.js:2:25:2:33 | 'express' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/StoredXss/xss-through-torrent.js:2:25:2:33 | 'express' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/StoredXss/xss-through-torrent.js:2:25:2:33 | 'express' | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/Xss/StoredXss/xss-through-torrent.js:4:15:4:25 | '/user/:id' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/StoredXss/xss-through-torrent.js:4:15:4:25 | '/user/:id' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/StoredXss/xss-through-torrent.js:4:15:4:25 | '/user/:id' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/StoredXss/xss-through-torrent.js:4:15:4:25 | '/user/:id' | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/StoredXss/xss-through-torrent.js:4:15:4:25 | '/user/:id' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/StoredXss/xss-through-torrent.js:4:15:4:25 | '/user/:id' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/StoredXss/xss-through-torrent.js:4:15:4:25 | '/user/:id' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/StoredXss/xss-through-torrent.js:4:15:4:25 | '/user/:id' | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/StoredXss/xss-through-torrent.js:4:15:4:25 | '/user/:id' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/StoredXss/xss-through-torrent.js:4:15:4:25 | '/user/:id' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/StoredXss/xss-through-torrent.js:4:15:4:25 | '/user/:id' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/StoredXss/xss-through-torrent.js:4:15:4:25 | '/user/:id' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/StoredXss/xss-through-torrent.js:4:15:4:25 | '/user/:id' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/StoredXss/xss-through-torrent.js:4:15:4:25 | '/user/:id' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/StoredXss/xss-through-torrent.js:4:15:4:25 | '/user/:id' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/StoredXss/xss-through-torrent.js:4:15:4:25 | '/user/:id' | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/StoredXss/xss-through-torrent.js:4:28:8:1 | functio ... OT OK\\n} | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/StoredXss/xss-through-torrent.js:4:28:8:1 | functio ... OT OK\\n} | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/StoredXss/xss-through-torrent.js:4:28:8:1 | functio ... OT OK\\n} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/StoredXss/xss-through-torrent.js:4:28:8:1 | functio ... OT OK\\n} | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/StoredXss/xss-through-torrent.js:4:28:8:1 | functio ... OT OK\\n} | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/StoredXss/xss-through-torrent.js:4:28:8:1 | functio ... OT OK\\n} | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/StoredXss/xss-through-torrent.js:4:28:8:1 | functio ... OT OK\\n} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/StoredXss/xss-through-torrent.js:4:28:8:1 | functio ... OT OK\\n} | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/StoredXss/xss-through-torrent.js:4:28:8:1 | functio ... OT OK\\n} | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/StoredXss/xss-through-torrent.js:4:28:8:1 | functio ... OT OK\\n} | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/StoredXss/xss-through-torrent.js:4:28:8:1 | functio ... OT OK\\n} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/StoredXss/xss-through-torrent.js:4:28:8:1 | functio ... OT OK\\n} | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/StoredXss/xss-through-torrent.js:4:28:8:1 | functio ... OT OK\\n} | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/StoredXss/xss-through-torrent.js:4:28:8:1 | functio ... OT OK\\n} | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/StoredXss/xss-through-torrent.js:4:28:8:1 | functio ... OT OK\\n} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/StoredXss/xss-through-torrent.js:4:28:8:1 | functio ... OT OK\\n} | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/StoredXss/xss-through-torrent.js:5:29:5:35 | unknown | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/StoredXss/xss-through-torrent.js:5:29:5:35 | unknown | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/StoredXss/xss-through-torrent.js:5:29:5:35 | unknown | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/StoredXss/xss-through-torrent.js:5:29:5:35 | unknown | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/StoredXss/xss-through-torrent.js:5:29:5:35 | unknown | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/StoredXss/xss-through-torrent.js:5:29:5:35 | unknown | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/StoredXss/xss-through-torrent.js:5:29:5:35 | unknown | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/StoredXss/xss-through-torrent.js:5:29:5:35 | unknown | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/StoredXss/xss-through-torrent.js:5:29:5:35 | unknown | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/StoredXss/xss-through-torrent.js:5:29:5:35 | unknown | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/StoredXss/xss-through-torrent.js:5:29:5:35 | unknown | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/StoredXss/xss-through-torrent.js:5:29:5:35 | unknown | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/StoredXss/xss-through-torrent.js:5:29:5:35 | unknown | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/StoredXss/xss-through-torrent.js:5:29:5:35 | unknown | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/StoredXss/xss-through-torrent.js:5:29:5:35 | unknown | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/StoredXss/xss-through-torrent.js:5:29:5:35 | unknown | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:3:10:3:32 | ['jquer ... ry-ui'] | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:3:10:3:32 | ['jquer ... ry-ui'] | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:3:10:3:32 | ['jquer ... ry-ui'] | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:3:10:3:32 | ['jquer ... ry-ui'] | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:3:11:3:18 | 'jquery' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:3:11:3:18 | 'jquery' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:3:11:3:18 | 'jquery' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:3:11:3:18 | 'jquery' | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:3:11:3:18 | 'jquery' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:3:11:3:18 | 'jquery' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:3:11:3:18 | 'jquery' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:3:11:3:18 | 'jquery' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:3:11:3:18 | 'jquery' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:3:11:3:18 | 'jquery' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:3:11:3:18 | 'jquery' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:3:11:3:18 | 'jquery' | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:3:21:3:31 | 'jquery-ui' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:3:21:3:31 | 'jquery-ui' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:3:21:3:31 | 'jquery-ui' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:3:21:3:31 | 'jquery-ui' | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:3:21:3:31 | 'jquery-ui' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:3:21:3:31 | 'jquery-ui' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:3:21:3:31 | 'jquery-ui' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:3:21:3:31 | 'jquery-ui' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:3:21:3:31 | 'jquery-ui' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:3:21:3:31 | 'jquery-ui' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:3:21:3:31 | 'jquery-ui' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:3:21:3:31 | 'jquery-ui' | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:8:7:8:14 | "<span>" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:8:7:8:14 | "<span>" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:8:7:8:14 | "<span>" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:8:7:8:14 | "<span>" | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:8:7:8:42 | "<span> ... /span>" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:8:7:8:42 | "<span> ... /span>" | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:8:7:8:42 | "<span> ... /span>" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:8:7:8:42 | "<span> ... /span>" | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:8:18:8:30 | $.trim("foo") | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:8:18:8:30 | $.trim("foo") | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:8:18:8:30 | $.trim("foo") | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:8:18:8:30 | $.trim("foo") | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:8:25:8:29 | "foo" | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:8:25:8:29 | "foo" | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:8:25:8:29 | "foo" | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:8:25:8:29 | "foo" | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:8:25:8:29 | "foo" | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:8:25:8:29 | "foo" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:8:25:8:29 | "foo" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:8:25:8:29 | "foo" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:8:25:8:29 | "foo" | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:8:25:8:29 | "foo" | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:8:25:8:29 | "foo" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:8:25:8:29 | "foo" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:8:25:8:29 | "foo" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:8:25:8:29 | "foo" | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:8:25:8:29 | "foo" | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:8:25:8:29 | "foo" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:8:25:8:29 | "foo" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:8:25:8:29 | "foo" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:8:25:8:29 | "foo" | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:8:25:8:29 | "foo" | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:8:34:8:42 | "</span>" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:8:34:8:42 | "</span>" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:8:34:8:42 | "</span>" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:8:34:8:42 | "</span>" | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:2:18:2:25 | "<span>" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:2:18:2:25 | "<span>" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:2:18:2:25 | "<span>" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:2:18:2:25 | "<span>" | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:2:18:2:41 | "<span> ... /span>" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:2:18:2:41 | "<span> ... /span>" | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:2:18:2:41 | "<span> ... /span>" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:2:18:2:41 | "<span> ... /span>" | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:2:29:2:29 | s | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:2:29:2:29 | s | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:2:29:2:29 | s | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:2:29:2:29 | s | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:2:33:2:41 | "</span>" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:2:33:2:41 | "</span>" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:2:33:2:41 | "</span>" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:2:33:2:41 | "</span>" | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:3:28:3:34 | "#html" | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:3:28:3:34 | "#html" | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:3:28:3:34 | "#html" | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:3:28:3:34 | "#html" | NosqlInjection | notASinkReason | DOM | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:3:28:3:34 | "#html" | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:3:28:3:34 | "#html" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:3:28:3:34 | "#html" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:3:28:3:34 | "#html" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:3:28:3:34 | "#html" | SqlInjection | notASinkReason | DOM | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:3:28:3:34 | "#html" | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:3:28:3:34 | "#html" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:3:28:3:34 | "#html" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:3:28:3:34 | "#html" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:3:28:3:34 | "#html" | TaintedPath | notASinkReason | DOM | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:3:28:3:34 | "#html" | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:3:28:3:34 | "#html" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:3:28:3:34 | "#html" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:3:28:3:34 | "#html" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:3:28:3:34 | "#html" | Xss | notASinkReason | DOM | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:3:28:3:34 | "#html" | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:3:49:3:52 | html | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:3:49:3:52 | html | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:3:49:3:52 | html | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:3:49:3:52 | html | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:7:49:7:49 | s | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:7:49:7:49 | s | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:7:49:7:49 | s | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:7:49:7:49 | s | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:8:28:8:33 | "#xml" | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:8:28:8:33 | "#xml" | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:8:28:8:33 | "#xml" | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:8:28:8:33 | "#xml" | NosqlInjection | notASinkReason | DOM | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:8:28:8:33 | "#xml" | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:8:28:8:33 | "#xml" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:8:28:8:33 | "#xml" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:8:28:8:33 | "#xml" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:8:28:8:33 | "#xml" | SqlInjection | notASinkReason | DOM | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:8:28:8:33 | "#xml" | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:8:28:8:33 | "#xml" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:8:28:8:33 | "#xml" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:8:28:8:33 | "#xml" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:8:28:8:33 | "#xml" | TaintedPath | notASinkReason | DOM | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:8:28:8:33 | "#xml" | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:8:28:8:33 | "#xml" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:8:28:8:33 | "#xml" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:8:28:8:33 | "#xml" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:8:28:8:33 | "#xml" | Xss | notASinkReason | DOM | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:8:28:8:33 | "#xml" | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:8:48:8:66 | doc.documentElement | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:8:48:8:66 | doc.documentElement | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:8:48:8:66 | doc.documentElement | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:8:48:8:66 | doc.documentElement | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:12:49:12:49 | s | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:12:49:12:49 | s | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:12:49:12:49 | s | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:12:49:12:49 | s | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:15:40:15:45 | 'span' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:15:40:15:45 | 'span' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:15:40:15:45 | 'span' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:15:40:15:45 | 'span' | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:16:21:16:35 | xml.cloneNode() | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:16:21:16:35 | xml.cloneNode() | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:16:21:16:35 | xml.cloneNode() | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:16:21:16:35 | xml.cloneNode() | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:17:28:17:33 | "#xml" | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:17:28:17:33 | "#xml" | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:17:28:17:33 | "#xml" | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:17:28:17:33 | "#xml" | NosqlInjection | notASinkReason | DOM | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:17:28:17:33 | "#xml" | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:17:28:17:33 | "#xml" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:17:28:17:33 | "#xml" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:17:28:17:33 | "#xml" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:17:28:17:33 | "#xml" | SqlInjection | notASinkReason | DOM | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:17:28:17:33 | "#xml" | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:17:28:17:33 | "#xml" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:17:28:17:33 | "#xml" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:17:28:17:33 | "#xml" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:17:28:17:33 | "#xml" | TaintedPath | notASinkReason | DOM | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:17:28:17:33 | "#xml" | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:17:28:17:33 | "#xml" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:17:28:17:33 | "#xml" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:17:28:17:33 | "#xml" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:17:28:17:33 | "#xml" | Xss | notASinkReason | DOM | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:17:28:17:33 | "#xml" | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:17:48:17:50 | tmp | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:17:48:17:50 | tmp | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:17:48:17:50 | tmp | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:17:48:17:50 | tmp | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:20:26:20:38 | 'markdown-it' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:20:26:20:38 | 'markdown-it' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:20:26:20:38 | 'markdown-it' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:20:26:20:38 | 'markdown-it' | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:20:41:20:52 | {html: true} | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:20:41:20:52 | {html: true} | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:20:41:20:52 | {html: true} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:20:41:20:52 | {html: true} | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:20:41:20:52 | {html: true} | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:20:41:20:52 | {html: true} | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:20:41:20:52 | {html: true} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:20:41:20:52 | {html: true} | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:20:41:20:52 | {html: true} | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:20:41:20:52 | {html: true} | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:20:41:20:52 | {html: true} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:20:41:20:52 | {html: true} | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:20:41:20:52 | {html: true} | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:20:41:20:52 | {html: true} | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:20:41:20:52 | {html: true} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:20:41:20:52 | {html: true} | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:20:48:20:51 | true | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:20:48:20:51 | true | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:20:48:20:51 | true | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:20:48:20:51 | true | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:20:48:20:51 | true | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:20:48:20:51 | true | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:20:48:20:51 | true | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:20:48:20:51 | true | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:20:48:20:51 | true | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:20:48:20:51 | true | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:20:48:20:51 | true | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:20:48:20:51 | true | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:22:18:22:35 | markdown.render(s) | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:22:18:22:35 | markdown.render(s) | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:22:18:22:35 | markdown.render(s) | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:22:18:22:35 | markdown.render(s) | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:23:28:23:38 | "#markdown" | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:23:28:23:38 | "#markdown" | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:23:28:23:38 | "#markdown" | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:23:28:23:38 | "#markdown" | NosqlInjection | notASinkReason | DOM | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:23:28:23:38 | "#markdown" | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:23:28:23:38 | "#markdown" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:23:28:23:38 | "#markdown" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:23:28:23:38 | "#markdown" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:23:28:23:38 | "#markdown" | SqlInjection | notASinkReason | DOM | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:23:28:23:38 | "#markdown" | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:23:28:23:38 | "#markdown" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:23:28:23:38 | "#markdown" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:23:28:23:38 | "#markdown" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:23:28:23:38 | "#markdown" | TaintedPath | notASinkReason | DOM | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:23:28:23:38 | "#markdown" | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:23:28:23:38 | "#markdown" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:23:28:23:38 | "#markdown" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:23:28:23:38 | "#markdown" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:23:28:23:38 | "#markdown" | Xss | notASinkReason | DOM | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:23:28:23:38 | "#markdown" | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:23:53:23:56 | html | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:23:53:23:56 | html | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:23:53:23:56 | html | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:23:53:23:56 | html | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:26:27:26:37 | 'striptags' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:26:27:26:37 | 'striptags' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:26:27:26:37 | 'striptags' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:26:27:26:37 | 'striptags' | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:27:32:30:1 | functio ... html;\\n} | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:27:32:30:1 | functio ... html;\\n} | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:27:32:30:1 | functio ... html;\\n} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:27:32:30:1 | functio ... html;\\n} | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:28:18:28:52 | stripta ... span>") | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:28:18:28:52 | stripta ... span>") | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:28:18:28:52 | stripta ... span>") | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:28:18:28:52 | stripta ... span>") | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:28:28:28:35 | "<span>" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:28:28:28:35 | "<span>" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:28:28:28:35 | "<span>" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:28:28:28:35 | "<span>" | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:28:39:28:39 | s | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:28:39:28:39 | s | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:28:39:28:39 | s | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:28:39:28:39 | s | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:28:43:28:51 | "</span>" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:28:43:28:51 | "</span>" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:28:43:28:51 | "</span>" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:28:43:28:51 | "</span>" | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:29:28:29:39 | "#sanitized" | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:29:28:29:39 | "#sanitized" | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:29:28:29:39 | "#sanitized" | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:29:28:29:39 | "#sanitized" | NosqlInjection | notASinkReason | DOM | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:29:28:29:39 | "#sanitized" | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:29:28:29:39 | "#sanitized" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:29:28:29:39 | "#sanitized" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:29:28:29:39 | "#sanitized" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:29:28:29:39 | "#sanitized" | SqlInjection | notASinkReason | DOM | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:29:28:29:39 | "#sanitized" | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:29:28:29:39 | "#sanitized" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:29:28:29:39 | "#sanitized" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:29:28:29:39 | "#sanitized" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:29:28:29:39 | "#sanitized" | TaintedPath | notASinkReason | DOM | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:29:28:29:39 | "#sanitized" | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:29:28:29:39 | "#sanitized" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:29:28:29:39 | "#sanitized" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:29:28:29:39 | "#sanitized" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:29:28:29:39 | "#sanitized" | Xss | notASinkReason | DOM | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:29:28:29:39 | "#sanitized" | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:29:54:29:57 | html | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:29:54:29:57 | html | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:29:54:29:57 | html | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:29:54:29:57 | html | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:32:29:32:37 | "./typed" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:32:29:32:37 | "./typed" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:32:29:32:37 | "./typed" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:32:29:32:37 | "./typed" | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:34:33:34:49 | "./jquery-plugin" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:34:33:34:49 | "./jquery-plugin" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:34:33:34:49 | "./jquery-plugin" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:34:33:34:49 | "./jquery-plugin" | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:37:49:37:49 | s | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:37:49:37:49 | s | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:37:49:37:49 | s | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:37:49:37:49 | s | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:47:32:47:39 | "#class" | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:47:32:47:39 | "#class" | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:47:32:47:39 | "#class" | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:47:32:47:39 | "#class" | NosqlInjection | notASinkReason | DOM | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:47:32:47:39 | "#class" | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:47:32:47:39 | "#class" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:47:32:47:39 | "#class" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:47:32:47:39 | "#class" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:47:32:47:39 | "#class" | SqlInjection | notASinkReason | DOM | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:47:32:47:39 | "#class" | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:47:32:47:39 | "#class" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:47:32:47:39 | "#class" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:47:32:47:39 | "#class" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:47:32:47:39 | "#class" | TaintedPath | notASinkReason | DOM | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:47:32:47:39 | "#class" | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:47:32:47:39 | "#class" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:47:32:47:39 | "#class" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:47:32:47:39 | "#class" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:47:32:47:39 | "#class" | Xss | notASinkReason | DOM | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:47:32:47:39 | "#class" | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:47:54:47:61 | "<span>" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:47:54:47:61 | "<span>" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:47:54:47:61 | "<span>" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:47:54:47:61 | "<span>" | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:47:54:47:85 | "<span> ... /span>" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:47:54:47:85 | "<span> ... /span>" | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:47:54:47:85 | "<span> ... /span>" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:47:54:47:85 | "<span> ... /span>" | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:47:65:47:73 | this.step | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:47:65:47:73 | this.step | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:47:65:47:73 | this.step | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:47:65:47:73 | this.step | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:47:77:47:85 | "</span>" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:47:77:47:85 | "</span>" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:47:77:47:85 | "</span>" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:47:77:47:85 | "</span>" | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:60:31:60:38 | defaults | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:60:31:60:38 | defaults | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:60:31:60:38 | defaults | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:60:31:60:38 | defaults | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:60:31:60:38 | defaults | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:60:31:60:38 | defaults | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:60:31:60:38 | defaults | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:60:31:60:38 | defaults | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:60:31:60:38 | defaults | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:60:31:60:38 | defaults | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:60:31:60:38 | defaults | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:60:31:60:38 | defaults | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:60:31:60:38 | defaults | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:60:31:60:38 | defaults | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:60:31:60:38 | defaults | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:60:31:60:38 | defaults | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:60:31:60:38 | defaults | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:60:31:60:38 | defaults | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:60:31:60:38 | defaults | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:60:31:60:38 | defaults | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:60:41:60:47 | options | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:60:41:60:47 | options | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:60:41:60:47 | options | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:60:41:60:47 | options | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:60:41:60:47 | options | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:60:41:60:47 | options | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:60:41:60:47 | options | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:60:41:60:47 | options | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:60:41:60:47 | options | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:60:41:60:47 | options | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:60:41:60:47 | options | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:60:41:60:47 | options | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:60:41:60:47 | options | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:60:41:60:47 | options | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:60:41:60:47 | options | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:60:41:60:47 | options | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:60:41:60:47 | options | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:60:41:60:47 | options | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:60:41:60:47 | options | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:60:41:60:47 | options | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:61:22:63:5 | functio ... K\\n    } | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:61:22:63:5 | functio ... K\\n    } | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:61:22:63:5 | functio ... K\\n    } | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:61:22:63:5 | functio ... K\\n    } | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:61:22:63:5 | functio ... K\\n    } | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:61:22:63:5 | functio ... K\\n    } | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:61:22:63:5 | functio ... K\\n    } | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:61:22:63:5 | functio ... K\\n    } | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:61:22:63:5 | functio ... K\\n    } | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:61:22:63:5 | functio ... K\\n    } | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:61:22:63:5 | functio ... K\\n    } | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:61:22:63:5 | functio ... K\\n    } | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:61:22:63:5 | functio ... K\\n    } | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:61:22:63:5 | functio ... K\\n    } | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:61:22:63:5 | functio ... K\\n    } | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:61:22:63:5 | functio ... K\\n    } | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:61:22:63:5 | functio ... K\\n    } | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:61:22:63:5 | functio ... K\\n    } | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:61:22:63:5 | functio ... K\\n    } | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:61:22:63:5 | functio ... K\\n    } | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:62:11:62:15 | "<b>" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:62:11:62:15 | "<b>" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:62:11:62:15 | "<b>" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:62:11:62:15 | "<b>" | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:62:11:62:40 | "<b>" + ...  "</b>" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:62:11:62:40 | "<b>" + ...  "</b>" | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:62:11:62:40 | "<b>" + ...  "</b>" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:62:11:62:40 | "<b>" + ...  "</b>" | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:62:19:62:31 | settings.name | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:62:19:62:31 | settings.name | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:62:19:62:31 | settings.name | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:62:19:62:31 | settings.name | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:62:35:62:40 | "</b>" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:62:35:62:40 | "</b>" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:62:35:62:40 | "</b>" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:62:35:62:40 | "</b>" | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:62:52:62:55 | this | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:62:52:62:55 | this | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:62:52:62:55 | this | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:62:52:62:55 | this | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:67:28:67:32 | "#id" | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:67:28:67:32 | "#id" | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:67:28:67:32 | "#id" | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:67:28:67:32 | "#id" | NosqlInjection | notASinkReason | DOM | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:67:28:67:32 | "#id" | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:67:28:67:32 | "#id" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:67:28:67:32 | "#id" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:67:28:67:32 | "#id" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:67:28:67:32 | "#id" | SqlInjection | notASinkReason | DOM | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:67:28:67:32 | "#id" | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:67:28:67:32 | "#id" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:67:28:67:32 | "#id" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:67:28:67:32 | "#id" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:67:28:67:32 | "#id" | TaintedPath | notASinkReason | DOM | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:67:28:67:32 | "#id" | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:67:28:67:32 | "#id" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:67:28:67:32 | "#id" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:67:28:67:32 | "#id" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:67:28:67:32 | "#id" | Xss | notASinkReason | DOM | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:67:28:67:32 | "#id" | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:67:47:67:59 | "<img alt=\\"" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:67:47:67:59 | "<img alt=\\"" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:67:47:67:59 | "<img alt=\\"" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:67:47:67:59 | "<img alt=\\"" | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:67:47:67:78 | "<img a ...  "\\"/>" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:67:47:67:78 | "<img a ...  "\\"/>" | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:67:47:67:78 | "<img a ...  "\\"/>" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:67:47:67:78 | "<img a ...  "\\"/>" | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:67:63:67:69 | attrVal | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:67:63:67:69 | attrVal | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:67:63:67:69 | attrVal | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:67:63:67:69 | attrVal | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:67:73:67:78 | "\\"/>" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:67:73:67:78 | "\\"/>" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:67:73:67:78 | "\\"/>" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:67:73:67:78 | "\\"/>" | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:28:68:32 | "#id" | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:28:68:32 | "#id" | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:28:68:32 | "#id" | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:28:68:32 | "#id" | NosqlInjection | notASinkReason | DOM | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:28:68:32 | "#id" | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:28:68:32 | "#id" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:28:68:32 | "#id" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:28:68:32 | "#id" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:28:68:32 | "#id" | SqlInjection | notASinkReason | DOM | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:28:68:32 | "#id" | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:28:68:32 | "#id" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:28:68:32 | "#id" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:28:68:32 | "#id" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:28:68:32 | "#id" | TaintedPath | notASinkReason | DOM | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:28:68:32 | "#id" | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:28:68:32 | "#id" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:28:68:32 | "#id" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:28:68:32 | "#id" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:28:68:32 | "#id" | Xss | notASinkReason | DOM | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:28:68:32 | "#id" | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:47:68:59 | "<img alt=\\"" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:47:68:59 | "<img alt=\\"" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:47:68:59 | "<img alt=\\"" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:47:68:59 | "<img alt=\\"" | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:47:68:98 | "<img a ...  "\\"/>" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:47:68:98 | "<img a ...  "\\"/>" | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:47:68:98 | "<img a ...  "\\"/>" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:47:68:98 | "<img a ...  "\\"/>" | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:63:68:89 | attrVal ... /g, "") | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:63:68:89 | attrVal ... /g, "") | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:63:68:89 | attrVal ... /g, "") | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:63:68:89 | attrVal ... /g, "") | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:93:68:98 | "\\"/>" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:93:68:98 | "\\"/>" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:93:68:98 | "\\"/>" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:93:68:98 | "\\"/>" | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:69:25:69:28 | "\\"" | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:69:25:69:28 | "\\"" | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:69:25:69:28 | "\\"" | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:69:25:69:28 | "\\"" | NosqlInjection | notASinkReason | BuiltinCallName | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:69:25:69:28 | "\\"" | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:69:25:69:28 | "\\"" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:69:25:69:28 | "\\"" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:69:25:69:28 | "\\"" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:69:25:69:28 | "\\"" | SqlInjection | notASinkReason | BuiltinCallName | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:69:25:69:28 | "\\"" | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:69:25:69:28 | "\\"" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:69:25:69:28 | "\\"" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:69:25:69:28 | "\\"" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:69:25:69:28 | "\\"" | TaintedPath | notASinkReason | BuiltinCallName | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:69:25:69:28 | "\\"" | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:69:25:69:28 | "\\"" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:69:25:69:28 | "\\"" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:69:25:69:28 | "\\"" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:69:25:69:28 | "\\"" | Xss | notASinkReason | BuiltinCallName | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:69:25:69:28 | "\\"" | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:69:57:69:59 | "'" | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:69:57:69:59 | "'" | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:69:57:69:59 | "'" | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:69:57:69:59 | "'" | NosqlInjection | notASinkReason | BuiltinCallName | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:69:57:69:59 | "'" | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:69:57:69:59 | "'" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:69:57:69:59 | "'" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:69:57:69:59 | "'" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:69:57:69:59 | "'" | SqlInjection | notASinkReason | BuiltinCallName | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:69:57:69:59 | "'" | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:69:57:69:59 | "'" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:69:57:69:59 | "'" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:69:57:69:59 | "'" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:69:57:69:59 | "'" | TaintedPath | notASinkReason | BuiltinCallName | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:69:57:69:59 | "'" | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:69:57:69:59 | "'" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:69:57:69:59 | "'" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:69:57:69:59 | "'" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:69:57:69:59 | "'" | Xss | notASinkReason | BuiltinCallName | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:69:57:69:59 | "'" | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:70:32:70:36 | "#id" | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:70:32:70:36 | "#id" | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:70:32:70:36 | "#id" | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:70:32:70:36 | "#id" | NosqlInjection | notASinkReason | DOM | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:70:32:70:36 | "#id" | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:70:32:70:36 | "#id" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:70:32:70:36 | "#id" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:70:32:70:36 | "#id" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:70:32:70:36 | "#id" | SqlInjection | notASinkReason | DOM | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:70:32:70:36 | "#id" | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:70:32:70:36 | "#id" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:70:32:70:36 | "#id" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:70:32:70:36 | "#id" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:70:32:70:36 | "#id" | TaintedPath | notASinkReason | DOM | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:70:32:70:36 | "#id" | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:70:32:70:36 | "#id" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:70:32:70:36 | "#id" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:70:32:70:36 | "#id" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:70:32:70:36 | "#id" | Xss | notASinkReason | DOM | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:70:32:70:36 | "#id" | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:70:51:70:63 | "<img alt=\\"" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:70:51:70:63 | "<img alt=\\"" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:70:51:70:63 | "<img alt=\\"" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:70:51:70:63 | "<img alt=\\"" | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:70:51:70:82 | "<img a ...  "\\"/>" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:70:51:70:82 | "<img a ...  "\\"/>" | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:70:51:70:82 | "<img a ...  "\\"/>" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:70:51:70:82 | "<img a ...  "\\"/>" | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:70:67:70:73 | attrVal | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:70:67:70:73 | attrVal | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:70:67:70:73 | attrVal | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:70:67:70:73 | attrVal | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:70:77:70:82 | "\\"/>" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:70:77:70:82 | "\\"/>" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:70:77:70:82 | "\\"/>" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:70:77:70:82 | "\\"/>" | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:75:18:75:25 | "<span>" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:75:18:75:25 | "<span>" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:75:18:75:25 | "<span>" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:75:18:75:25 | "<span>" | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:75:18:75:56 | "<span> ... /span>" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:75:18:75:56 | "<span> ... /span>" | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:75:18:75:56 | "<span> ... /span>" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:75:18:75:56 | "<span> ... /span>" | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:75:29:75:44 | obj.spanTemplate | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:75:29:75:44 | obj.spanTemplate | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:75:29:75:44 | obj.spanTemplate | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:75:29:75:44 | obj.spanTemplate | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:75:48:75:56 | "</span>" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:75:48:75:56 | "</span>" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:75:48:75:56 | "</span>" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:75:48:75:56 | "</span>" | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:76:28:76:38 | "#template" | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:76:28:76:38 | "#template" | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:76:28:76:38 | "#template" | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:76:28:76:38 | "#template" | NosqlInjection | notASinkReason | DOM | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:76:28:76:38 | "#template" | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:76:28:76:38 | "#template" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:76:28:76:38 | "#template" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:76:28:76:38 | "#template" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:76:28:76:38 | "#template" | SqlInjection | notASinkReason | DOM | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:76:28:76:38 | "#template" | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:76:28:76:38 | "#template" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:76:28:76:38 | "#template" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:76:28:76:38 | "#template" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:76:28:76:38 | "#template" | TaintedPath | notASinkReason | DOM | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:76:28:76:38 | "#template" | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:76:28:76:38 | "#template" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:76:28:76:38 | "#template" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:76:28:76:38 | "#template" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:76:28:76:38 | "#template" | Xss | notASinkReason | DOM | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:76:28:76:38 | "#template" | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:76:53:76:56 | html | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:76:53:76:56 | html | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:76:53:76:56 | html | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:76:53:76:56 | html | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:2:18:2:25 | "<span>" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:2:18:2:25 | "<span>" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:2:18:2:25 | "<span>" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:2:18:2:25 | "<span>" | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:2:18:2:41 | "<span> ... /span>" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:2:18:2:41 | "<span> ... /span>" | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:2:18:2:41 | "<span> ... /span>" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:2:18:2:41 | "<span> ... /span>" | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:2:29:2:29 | s | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:2:29:2:29 | s | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:2:29:2:29 | s | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:2:29:2:29 | s | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:2:33:2:41 | "</span>" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:2:33:2:41 | "</span>" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:2:33:2:41 | "</span>" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:2:33:2:41 | "</span>" | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:3:31:3:34 | html | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:3:31:3:34 | html | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:3:31:3:34 | html | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:3:31:3:34 | html | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:7:63:7:64 | "" | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:7:63:7:64 | "" | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:7:63:7:64 | "" | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:7:63:7:64 | "" | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:7:63:7:64 | "" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:7:63:7:64 | "" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:7:63:7:64 | "" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:7:63:7:64 | "" | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:7:63:7:64 | "" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:7:63:7:64 | "" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:7:63:7:64 | "" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:7:63:7:64 | "" | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:8:29:8:36 | "<span>" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:8:29:8:36 | "<span>" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:8:29:8:36 | "<span>" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:8:29:8:36 | "<span>" | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:8:29:8:52 | "<span> ... /span>" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:8:29:8:52 | "<span> ... /span>" | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:8:29:8:52 | "<span> ... /span>" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:8:29:8:52 | "<span> ... /span>" | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:8:40:8:40 | s | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:8:40:8:40 | s | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:8:40:8:40 | s | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:8:40:8:40 | s | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:8:44:8:52 | "</span>" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:8:44:8:52 | "</span>" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:8:44:8:52 | "</span>" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:8:44:8:52 | "</span>" | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:17:18:17:25 | "<span>" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:17:18:17:25 | "<span>" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:17:18:17:25 | "<span>" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:17:18:17:25 | "<span>" | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:17:18:17:41 | "<span> ... /span>" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:17:18:17:41 | "<span> ... /span>" | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:17:18:17:41 | "<span> ... /span>" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:17:18:17:41 | "<span> ... /span>" | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:17:29:17:29 | s | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:17:29:17:29 | s | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:17:29:17:29 | s | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:17:29:17:29 | s | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:17:33:17:41 | "</span>" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:17:33:17:41 | "</span>" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:17:33:17:41 | "</span>" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:17:33:17:41 | "</span>" | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:18:31:18:34 | html | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:18:31:18:34 | html | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:18:31:18:34 | html | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:18:31:18:34 | html | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:3:5:3:11 | options | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:3:5:3:11 | options | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:3:5:3:11 | options | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:3:5:3:11 | options | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:5:5:5:18 | options.target | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:5:5:5:18 | options.target | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:5:5:5:18 | options.target | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:5:5:5:18 | options.target | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:8:6:8:19 | options.target | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:8:6:8:19 | options.target | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:8:6:8:19 | options.target | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:8:6:8:19 | options.target | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:14:6:14:11 | target | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:14:6:14:11 | target | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:14:6:14:11 | target | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:14:6:14:11 | target | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:18:6:18:11 | target | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:18:6:18:11 | target | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:18:6:18:11 | target | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:18:6:18:11 | target | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:18:6:18:11 | target | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:18:6:18:11 | target | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:18:6:18:11 | target | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:18:6:18:11 | target | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:18:6:18:11 | target | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:18:6:18:11 | target | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:18:6:18:11 | target | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:18:6:18:11 | target | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:18:6:18:11 | target | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:18:6:18:11 | target | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:18:6:18:11 | target | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:18:6:18:11 | target | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:18:6:18:11 | target | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:18:6:18:11 | target | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:18:6:18:11 | target | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:18:6:18:11 | target | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:22:6:22:11 | target | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:22:6:22:11 | target | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:22:6:22:11 | target | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:22:6:22:11 | target | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:24:6:24:11 | target | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:24:6:24:11 | target | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:24:6:24:11 | target | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:24:6:24:11 | target | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:28:6:28:11 | target | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:28:6:28:11 | target | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:28:6:28:11 | target | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:28:6:28:11 | target | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:30:6:30:11 | target | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:30:6:30:11 | target | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:30:6:30:11 | target | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:30:6:30:11 | target | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:34:6:34:11 | target | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:34:6:34:11 | target | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:34:6:34:11 | target | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:34:6:34:11 | target | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:36:6:36:11 | target | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:36:6:36:11 | target | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:36:6:36:11 | target | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:36:6:36:11 | target | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:40:6:40:11 | target | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:40:6:40:11 | target | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:40:6:40:11 | target | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:40:6:40:11 | target | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:42:6:42:11 | target | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:42:6:42:11 | target | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:42:6:42:11 | target | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:42:6:42:11 | target | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:46:6:46:11 | target | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:46:6:46:11 | target | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:46:6:46:11 | target | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:46:6:46:11 | target | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:48:6:48:11 | target | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:48:6:48:11 | target | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:48:6:48:11 | target | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:48:6:48:11 | target | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:52:6:52:11 | target | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:52:6:52:11 | target | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:52:6:52:11 | target | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:52:6:52:11 | target | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:54:6:54:11 | target | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:54:6:54:11 | target | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:54:6:54:11 | target | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:54:6:54:11 | target | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:58:6:58:11 | target | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:58:6:58:11 | target | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:58:6:58:11 | target | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:58:6:58:11 | target | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:60:6:60:11 | target | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:60:6:60:11 | target | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:60:6:60:11 | target | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:60:6:60:11 | target | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:66:26:66:32 | element | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:66:26:66:32 | element | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:66:26:66:32 | element | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:66:26:66:32 | element | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:67:33:67:34 | {} | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:67:33:67:34 | {} | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:67:33:67:34 | {} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:67:33:67:34 | {} | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:67:33:67:34 | {} | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:67:33:67:34 | {} | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:67:33:67:34 | {} | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:67:33:67:34 | {} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:67:33:67:34 | {} | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:67:33:67:34 | {} | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:67:33:67:34 | {} | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:67:33:67:34 | {} | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:67:33:67:34 | {} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:67:33:67:34 | {} | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:67:33:67:34 | {} | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:67:33:67:34 | {} | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:67:33:67:34 | {} | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:67:33:67:34 | {} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:67:33:67:34 | {} | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:67:33:67:34 | {} | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:67:37:67:43 | options | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:67:37:67:43 | options | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:67:37:67:43 | options | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:67:37:67:43 | options | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:67:37:67:43 | options | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:67:37:67:43 | options | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:67:37:67:43 | options | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:67:37:67:43 | options | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:67:37:67:43 | options | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:67:37:67:43 | options | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:67:37:67:43 | options | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:67:37:67:43 | options | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:67:37:67:43 | options | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:67:37:67:43 | options | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:67:37:67:43 | options | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:67:37:67:43 | options | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:67:37:67:43 | options | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:67:37:67:43 | options | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:67:37:67:43 | options | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:67:37:67:43 | options | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:68:45:68:63 | this.options.parent | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:68:45:68:63 | this.options.parent | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:68:45:68:63 | this.options.parent | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:68:45:68:63 | this.options.parent | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:72:5:72:23 | options.foo.bar.baz | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:72:5:72:23 | options.foo.bar.baz | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:72:5:72:23 | options.foo.bar.baz | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:72:5:72:23 | options.foo.bar.baz | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:73:5:73:16 | options.html | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:73:5:73:16 | options.html | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:73:5:73:16 | options.html | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:73:5:73:16 | options.html | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:77:5:77:5 | x | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:77:5:77:5 | x | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:77:5:77:5 | x | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:77:5:77:5 | x | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:77:17:77:35 | options.foo.bar.baz | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:77:17:77:35 | options.foo.bar.baz | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:77:17:77:35 | options.foo.bar.baz | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:77:17:77:35 | options.foo.bar.baz | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:81:5:81:24 | "#" + options.target | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:81:5:81:24 | "#" + options.target | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:81:5:81:24 | "#" + options.target | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:81:5:81:24 | "#" + options.target | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:81:5:81:24 | "#" + options.target | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:81:5:81:24 | "#" + options.target | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:81:5:81:24 | "#" + options.target | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:81:5:81:24 | "#" + options.target | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:81:5:81:24 | "#" + options.target | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:81:5:81:24 | "#" + options.target | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:81:5:81:24 | "#" + options.target | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:81:5:81:24 | "#" + options.target | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:81:5:81:24 | "#" + options.target | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:81:5:81:24 | "#" + options.target | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:81:5:81:24 | "#" + options.target | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:81:5:81:24 | "#" + options.target | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:81:5:81:24 | "#" + options.target | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:81:5:81:24 | "#" + options.target | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:81:5:81:24 | "#" + options.target | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:81:5:81:24 | "#" + options.target | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:86:22:86:23 | {} | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:86:22:86:23 | {} | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:86:22:86:23 | {} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:86:22:86:23 | {} | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:86:22:86:23 | {} | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:86:22:86:23 | {} | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:86:22:86:23 | {} | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:86:22:86:23 | {} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:86:22:86:23 | {} | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:86:22:86:23 | {} | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:86:22:86:23 | {} | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:86:22:86:23 | {} | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:86:22:86:23 | {} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:86:22:86:23 | {} | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:86:22:86:23 | {} | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:86:22:86:23 | {} | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:86:22:86:23 | {} | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:86:22:86:23 | {} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:86:22:86:23 | {} | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:86:22:86:23 | {} | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:86:26:86:26 | o | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:86:26:86:26 | o | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:86:26:86:26 | o | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:86:26:86:26 | o | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:86:26:86:26 | o | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:86:26:86:26 | o | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:86:26:86:26 | o | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:86:26:86:26 | o | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:86:26:86:26 | o | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:86:26:86:26 | o | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:86:26:86:26 | o | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:86:26:86:26 | o | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:86:26:86:26 | o | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:86:26:86:26 | o | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:86:26:86:26 | o | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:86:26:86:26 | o | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:86:26:86:26 | o | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:86:26:86:26 | o | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:86:26:86:26 | o | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:86:26:86:26 | o | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:89:16:89:16 | t | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:89:16:89:16 | t | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:89:16:89:16 | t | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:89:16:89:16 | t | NosqlInjection | notASinkReason | LoggerMethod | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:89:16:89:16 | t | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:89:16:89:16 | t | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:89:16:89:16 | t | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:89:16:89:16 | t | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:89:16:89:16 | t | SqlInjection | notASinkReason | LoggerMethod | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:89:16:89:16 | t | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:89:16:89:16 | t | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:89:16:89:16 | t | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:89:16:89:16 | t | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:89:16:89:16 | t | TaintedPath | notASinkReason | LoggerMethod | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:89:16:89:16 | t | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:89:16:89:16 | t | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:89:16:89:16 | t | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:89:16:89:16 | t | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:89:16:89:16 | t | Xss | notASinkReason | LoggerMethod | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:89:16:89:16 | t | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:90:6:90:6 | t | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:90:6:90:6 | t | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:90:6:90:6 | t | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:90:6:90:6 | t | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:97:16:97:21 | target | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:97:16:97:21 | target | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:97:16:97:21 | target | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:97:16:97:21 | target | NosqlInjection | notASinkReason | MembershipCandidateTest | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:97:16:97:21 | target | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:97:16:97:21 | target | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:97:16:97:21 | target | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:97:16:97:21 | target | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:97:16:97:21 | target | SqlInjection | notASinkReason | MembershipCandidateTest | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:97:16:97:21 | target | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:97:16:97:21 | target | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:97:16:97:21 | target | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:97:16:97:21 | target | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:97:16:97:21 | target | TaintedPath | notASinkReason | MembershipCandidateTest | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:97:16:97:21 | target | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:97:16:97:21 | target | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:97:16:97:21 | target | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:97:16:97:21 | target | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:97:16:97:21 | target | Xss | notASinkReason | MembershipCandidateTest | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:97:16:97:21 | target | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:98:6:98:11 | target | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:98:6:98:11 | target | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:98:6:98:11 | target | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:98:6:98:11 | target | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:102:22:105:3 | {\\n\\t\\t\\tme ... in'\\n\\t\\t} | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:102:22:105:3 | {\\n\\t\\t\\tme ... in'\\n\\t\\t} | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:102:22:105:3 | {\\n\\t\\t\\tme ... in'\\n\\t\\t} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:102:22:105:3 | {\\n\\t\\t\\tme ... in'\\n\\t\\t} | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:102:22:105:3 | {\\n\\t\\t\\tme ... in'\\n\\t\\t} | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:102:22:105:3 | {\\n\\t\\t\\tme ... in'\\n\\t\\t} | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:102:22:105:3 | {\\n\\t\\t\\tme ... in'\\n\\t\\t} | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:102:22:105:3 | {\\n\\t\\t\\tme ... in'\\n\\t\\t} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:102:22:105:3 | {\\n\\t\\t\\tme ... in'\\n\\t\\t} | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:102:22:105:3 | {\\n\\t\\t\\tme ... in'\\n\\t\\t} | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:102:22:105:3 | {\\n\\t\\t\\tme ... in'\\n\\t\\t} | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:102:22:105:3 | {\\n\\t\\t\\tme ... in'\\n\\t\\t} | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:102:22:105:3 | {\\n\\t\\t\\tme ... in'\\n\\t\\t} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:102:22:105:3 | {\\n\\t\\t\\tme ... in'\\n\\t\\t} | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:102:22:105:3 | {\\n\\t\\t\\tme ... in'\\n\\t\\t} | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:102:22:105:3 | {\\n\\t\\t\\tme ... in'\\n\\t\\t} | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:102:22:105:3 | {\\n\\t\\t\\tme ... in'\\n\\t\\t} | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:102:22:105:3 | {\\n\\t\\t\\tme ... in'\\n\\t\\t} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:102:22:105:3 | {\\n\\t\\t\\tme ... in'\\n\\t\\t} | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:102:22:105:3 | {\\n\\t\\t\\tme ... in'\\n\\t\\t} | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:103:10:103:22 | '<div></div>' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:103:10:103:22 | '<div></div>' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:103:10:103:22 | '<div></div>' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:103:10:103:22 | '<div></div>' | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:103:10:103:22 | '<div></div>' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:103:10:103:22 | '<div></div>' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:103:10:103:22 | '<div></div>' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:103:10:103:22 | '<div></div>' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:103:10:103:22 | '<div></div>' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:103:10:103:22 | '<div></div>' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:103:10:103:22 | '<div></div>' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:103:10:103:22 | '<div></div>' | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:104:12:104:23 | '.my_plugin' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:104:12:104:23 | '.my_plugin' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:104:12:104:23 | '.my_plugin' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:104:12:104:23 | '.my_plugin' | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:104:12:104:23 | '.my_plugin' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:104:12:104:23 | '.my_plugin' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:104:12:104:23 | '.my_plugin' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:104:12:104:23 | '.my_plugin' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:104:12:104:23 | '.my_plugin' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:104:12:104:23 | '.my_plugin' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:104:12:104:23 | '.my_plugin' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:104:12:104:23 | '.my_plugin' | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:105:6:105:12 | options | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:105:6:105:12 | options | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:105:6:105:12 | options | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:105:6:105:12 | options | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:105:6:105:12 | options | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:105:6:105:12 | options | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:105:6:105:12 | options | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:105:6:105:12 | options | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:105:6:105:12 | options | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:105:6:105:12 | options | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:105:6:105:12 | options | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:105:6:105:12 | options | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:105:6:105:12 | options | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:105:6:105:12 | options | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:105:6:105:12 | options | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:105:6:105:12 | options | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:105:6:105:12 | options | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:105:6:105:12 | options | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:105:6:105:12 | options | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:105:6:105:12 | options | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:106:5:106:16 | options.menu | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:106:5:106:16 | options.menu | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:106:5:106:16 | options.menu | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:106:5:106:16 | options.menu | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:107:5:107:18 | options.target | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:107:5:107:18 | options.target | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:107:5:107:18 | options.target | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:107:5:107:18 | options.target | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:22:115:23 | {} | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:22:115:23 | {} | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:22:115:23 | {} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:22:115:23 | {} | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:22:115:23 | {} | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:22:115:23 | {} | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:22:115:23 | {} | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:22:115:23 | {} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:22:115:23 | {} | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:22:115:23 | {} | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:22:115:23 | {} | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:22:115:23 | {} | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:22:115:23 | {} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:22:115:23 | {} | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:22:115:23 | {} | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:22:115:23 | {} | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:22:115:23 | {} | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:22:115:23 | {} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:22:115:23 | {} | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:22:115:23 | {} | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:26:115:48 | $.fn.my ... efaults | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:26:115:48 | $.fn.my ... efaults | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:26:115:48 | $.fn.my ... efaults | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:26:115:48 | $.fn.my ... efaults | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:26:115:48 | $.fn.my ... efaults | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:26:115:48 | $.fn.my ... efaults | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:26:115:48 | $.fn.my ... efaults | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:26:115:48 | $.fn.my ... efaults | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:26:115:48 | $.fn.my ... efaults | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:26:115:48 | $.fn.my ... efaults | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:26:115:48 | $.fn.my ... efaults | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:26:115:48 | $.fn.my ... efaults | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:26:115:48 | $.fn.my ... efaults | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:26:115:48 | $.fn.my ... efaults | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:26:115:48 | $.fn.my ... efaults | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:26:115:48 | $.fn.my ... efaults | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:26:115:48 | $.fn.my ... efaults | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:26:115:48 | $.fn.my ... efaults | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:26:115:48 | $.fn.my ... efaults | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:26:115:48 | $.fn.my ... efaults | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:51:115:57 | options | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:51:115:57 | options | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:51:115:57 | options | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:51:115:57 | options | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:51:115:57 | options | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:51:115:57 | options | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:51:115:57 | options | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:51:115:57 | options | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:51:115:57 | options | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:51:115:57 | options | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:51:115:57 | options | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:51:115:57 | options | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:51:115:57 | options | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:51:115:57 | options | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:51:115:57 | options | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:51:115:57 | options | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:51:115:57 | options | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:51:115:57 | options | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:51:115:57 | options | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:51:115:57 | options | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:116:5:116:16 | options.menu | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:116:5:116:16 | options.menu | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:116:5:116:16 | options.menu | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:116:5:116:16 | options.menu | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:117:5:117:18 | options.target | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:117:5:117:18 | options.target | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:117:5:117:18 | options.target | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:117:5:117:18 | options.target | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:122:5:122:18 | options.target | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:122:5:122:18 | options.target | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:122:5:122:18 | options.target | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:122:5:122:18 | options.target | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:125:11:125:14 | $.fn | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:125:11:125:14 | $.fn | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:125:11:125:14 | $.fn | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:125:11:125:14 | $.fn | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:125:11:125:14 | $.fn | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:125:11:125:14 | $.fn | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:125:11:125:14 | $.fn | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:125:11:125:14 | $.fn | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:125:11:125:14 | $.fn | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:125:11:125:14 | $.fn | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:125:11:125:14 | $.fn | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:125:11:125:14 | $.fn | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:125:11:125:14 | $.fn | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:125:11:125:14 | $.fn | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:125:11:125:14 | $.fn | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:125:11:125:14 | $.fn | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:125:11:125:14 | $.fn | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:125:11:125:14 | $.fn | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:125:11:125:14 | $.fn | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:125:11:125:14 | $.fn | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:125:17:129:2 | {\\n\\t\\tmy_ ... \\n\\t\\t}\\n\\t} | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:125:17:129:2 | {\\n\\t\\tmy_ ... \\n\\t\\t}\\n\\t} | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:125:17:129:2 | {\\n\\t\\tmy_ ... \\n\\t\\t}\\n\\t} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:125:17:129:2 | {\\n\\t\\tmy_ ... \\n\\t\\t}\\n\\t} | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:125:17:129:2 | {\\n\\t\\tmy_ ... \\n\\t\\t}\\n\\t} | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:125:17:129:2 | {\\n\\t\\tmy_ ... \\n\\t\\t}\\n\\t} | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:125:17:129:2 | {\\n\\t\\tmy_ ... \\n\\t\\t}\\n\\t} | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:125:17:129:2 | {\\n\\t\\tmy_ ... \\n\\t\\t}\\n\\t} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:125:17:129:2 | {\\n\\t\\tmy_ ... \\n\\t\\t}\\n\\t} | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:125:17:129:2 | {\\n\\t\\tmy_ ... \\n\\t\\t}\\n\\t} | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:125:17:129:2 | {\\n\\t\\tmy_ ... \\n\\t\\t}\\n\\t} | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:125:17:129:2 | {\\n\\t\\tmy_ ... \\n\\t\\t}\\n\\t} | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:125:17:129:2 | {\\n\\t\\tmy_ ... \\n\\t\\t}\\n\\t} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:125:17:129:2 | {\\n\\t\\tmy_ ... \\n\\t\\t}\\n\\t} | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:125:17:129:2 | {\\n\\t\\tmy_ ... \\n\\t\\t}\\n\\t} | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:125:17:129:2 | {\\n\\t\\tmy_ ... \\n\\t\\t}\\n\\t} | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:125:17:129:2 | {\\n\\t\\tmy_ ... \\n\\t\\t}\\n\\t} | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:125:17:129:2 | {\\n\\t\\tmy_ ... \\n\\t\\t}\\n\\t} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:125:17:129:2 | {\\n\\t\\tmy_ ... \\n\\t\\t}\\n\\t} | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:125:17:129:2 | {\\n\\t\\tmy_ ... \\n\\t\\t}\\n\\t} | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:126:14:128:3 | functio ...  OK\\n\\t\\t} | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:126:14:128:3 | functio ...  OK\\n\\t\\t} | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:126:14:128:3 | functio ...  OK\\n\\t\\t} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:126:14:128:3 | functio ...  OK\\n\\t\\t} | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:126:14:128:3 | functio ...  OK\\n\\t\\t} | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:126:14:128:3 | functio ...  OK\\n\\t\\t} | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:126:14:128:3 | functio ...  OK\\n\\t\\t} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:126:14:128:3 | functio ...  OK\\n\\t\\t} | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:126:14:128:3 | functio ...  OK\\n\\t\\t} | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:126:14:128:3 | functio ...  OK\\n\\t\\t} | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:126:14:128:3 | functio ...  OK\\n\\t\\t} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:126:14:128:3 | functio ...  OK\\n\\t\\t} | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:127:6:127:19 | options.target | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:127:6:127:19 | options.target | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:127:6:127:19 | options.target | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:127:6:127:19 | options.target | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:132:5:132:18 | options.target | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:132:5:132:18 | options.target | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:132:5:132:18 | options.target | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:132:5:132:18 | options.target | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:136:5:136:29 | options ... elector | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:136:5:136:29 | options ... elector | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:136:5:136:29 | options ... elector | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:136:5:136:29 | options ... elector | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:140:41:140:56 | <div>hello</div> | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:140:41:140:56 | <div>hello</div> | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:140:41:140:56 | <div>hello</div> | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:140:41:140:56 | <div>hello</div> | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:141:5:141:16 | intentional1 | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:141:5:141:16 | intentional1 | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:141:5:141:16 | intentional1 | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:141:5:141:16 | intentional1 | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:143:23:143:27 | <div> | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:143:23:143:27 | <div> | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:143:23:143:27 | <div> | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:143:23:143:27 | <div> | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:143:30:143:43 | options.target | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:143:30:143:43 | options.target | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:143:30:143:43 | options.target | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:143:30:143:43 | options.target | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:143:45:143:50 | </div> | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:143:45:143:50 | </div> | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:143:45:143:50 | </div> | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:143:45:143:50 | </div> | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:144:5:144:16 | intentional2 | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:144:5:144:16 | intentional2 | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:144:5:144:16 | intentional2 | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:144:5:144:16 | intentional2 | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:146:23:146:27 | <div> | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:146:23:146:27 | <div> | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:146:23:146:27 | <div> | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:146:23:146:27 | <div> | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:146:32:146:54 | options ... </div>` | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:146:32:146:54 | options ... </div>` | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:146:32:146:54 | options ... </div>` | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:146:32:146:54 | options ... </div>` | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:147:5:147:16 | intentional3 | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:147:5:147:16 | intentional3 | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:147:5:147:16 | intentional3 | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:147:5:147:16 | intentional3 | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:149:24:149:35 | <div class=" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:149:24:149:35 | <div class=" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:149:24:149:35 | <div class=" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:149:24:149:35 | <div class=" | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:149:38:149:51 | options.target | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:149:38:149:51 | options.target | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:149:38:149:51 | options.target | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:149:38:149:51 | options.target | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:149:53:149:60 | "></div> | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:149:53:149:60 | "></div> | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:149:53:149:60 | "></div> | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:149:53:149:60 | "></div> | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:150:5:150:17 | unintentional | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:150:5:150:17 | unintentional | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:150:5:150:17 | unintentional | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:150:5:150:17 | unintentional | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:155:33:155:38 | target | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:155:33:155:38 | target | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:155:33:155:38 | target | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:155:33:155:38 | target | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:155:44:155:51 | document | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:155:44:155:51 | document | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:155:44:155:51 | document | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:155:44:155:51 | document | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:155:59:155:64 | target | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:155:59:155:64 | target | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:155:59:155:64 | target | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:155:59:155:64 | target | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:155:59:155:64 | target | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:155:59:155:64 | target | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:155:59:155:64 | target | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:155:59:155:64 | target | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:155:59:155:64 | target | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:155:59:155:64 | target | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:155:59:155:64 | target | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:155:59:155:64 | target | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:155:59:155:64 | target | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:155:59:155:64 | target | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:155:59:155:64 | target | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:155:59:155:64 | target | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:155:59:155:64 | target | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:155:59:155:64 | target | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:155:59:155:64 | target | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:155:59:155:64 | target | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:156:41:156:54 | options.target | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:156:41:156:54 | options.target | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:156:41:156:54 | options.target | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:156:41:156:54 | options.target | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:156:60:156:67 | document | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:156:60:156:67 | document | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:156:60:156:67 | document | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:156:60:156:67 | document | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:156:75:156:88 | options.target | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:156:75:156:88 | options.target | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:156:75:156:88 | options.target | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:156:75:156:88 | options.target | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:156:75:156:88 | options.target | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:156:75:156:88 | options.target | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:156:75:156:88 | options.target | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:156:75:156:88 | options.target | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:156:75:156:88 | options.target | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:156:75:156:88 | options.target | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:156:75:156:88 | options.target | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:156:75:156:88 | options.target | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:156:75:156:88 | options.target | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:156:75:156:88 | options.target | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:156:75:156:88 | options.target | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:156:75:156:88 | options.target | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:156:75:156:88 | options.target | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:156:75:156:88 | options.target | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:156:75:156:88 | options.target | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:156:75:156:88 | options.target | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:157:44:157:59 | options.target.a | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:157:44:157:59 | options.target.a | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:157:44:157:59 | options.target.a | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:157:44:157:59 | options.target.a | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:157:65:157:72 | document | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:157:65:157:72 | document | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:157:65:157:72 | document | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:157:65:157:72 | document | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:157:80:157:95 | options.target.a | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:157:80:157:95 | options.target.a | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:157:80:157:95 | options.target.a | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:157:80:157:95 | options.target.a | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:157:80:157:95 | options.target.a | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:157:80:157:95 | options.target.a | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:157:80:157:95 | options.target.a | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:157:80:157:95 | options.target.a | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:157:80:157:95 | options.target.a | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:157:80:157:95 | options.target.a | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:157:80:157:95 | options.target.a | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:157:80:157:95 | options.target.a | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:157:80:157:95 | options.target.a | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:157:80:157:95 | options.target.a | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:157:80:157:95 | options.target.a | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:157:80:157:95 | options.target.a | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:157:80:157:95 | options.target.a | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:157:80:157:95 | options.target.a | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:157:80:157:95 | options.target.a | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:157:80:157:95 | options.target.a | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:161:5:161:30 | anyPref ... .target | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:161:5:161:30 | anyPref ... .target | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:161:5:161:30 | anyPref ... .target | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:161:5:161:30 | anyPref ... .target | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:163:5:163:54 | somethi ... target) | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:163:5:163:54 | somethi ... target) | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:163:5:163:54 | somethi ... target) | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:163:5:163:54 | somethi ... target) | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:167:6:167:11 | target | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:167:6:167:11 | target | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:167:6:167:11 | target | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:167:6:167:11 | target | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:170:6:170:11 | target | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:170:6:170:11 | target | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:170:6:170:11 | target | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:170:6:170:11 | target | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:179:5:179:18 | options.target | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:179:5:179:18 | options.target | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:179:5:179:18 | options.target | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:179:5:179:18 | options.target | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:182:5:182:12 | document | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:182:5:182:12 | document | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:182:5:182:12 | document | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:182:5:182:12 | document | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:182:20:182:33 | options.target | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:182:20:182:33 | options.target | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:182:20:182:33 | options.target | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:182:20:182:33 | options.target | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:182:20:182:33 | options.target | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:182:20:182:33 | options.target | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:182:20:182:33 | options.target | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:182:20:182:33 | options.target | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:182:20:182:33 | options.target | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:182:20:182:33 | options.target | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:182:20:182:33 | options.target | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:182:20:182:33 | options.target | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:182:20:182:33 | options.target | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:182:20:182:33 | options.target | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:182:20:182:33 | options.target | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:182:20:182:33 | options.target | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:182:20:182:33 | options.target | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:182:20:182:33 | options.target | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:182:20:182:33 | options.target | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:182:20:182:33 | options.target | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/forms.js:9:19:9:23 | "#id" | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:9:19:9:23 | "#id" | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:9:19:9:23 | "#id" | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:9:19:9:23 | "#id" | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/forms.js:9:19:9:23 | "#id" | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/forms.js:9:19:9:23 | "#id" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:9:19:9:23 | "#id" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:9:19:9:23 | "#id" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:9:19:9:23 | "#id" | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/forms.js:9:19:9:23 | "#id" | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/forms.js:9:19:9:23 | "#id" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:9:19:9:23 | "#id" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:9:19:9:23 | "#id" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:9:19:9:23 | "#id" | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/forms.js:9:19:9:23 | "#id" | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/forms.js:9:19:9:23 | "#id" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:9:19:9:23 | "#id" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:9:19:9:23 | "#id" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:9:19:9:23 | "#id" | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/forms.js:9:19:9:23 | "#id" | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/forms.js:9:31:9:40 | values.foo | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:9:31:9:40 | values.foo | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:9:31:9:40 | values.foo | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:9:31:9:40 | values.foo | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/XssThroughDom/forms.js:12:19:12:23 | "#id" | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:12:19:12:23 | "#id" | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:12:19:12:23 | "#id" | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:12:19:12:23 | "#id" | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/forms.js:12:19:12:23 | "#id" | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/forms.js:12:19:12:23 | "#id" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:12:19:12:23 | "#id" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:12:19:12:23 | "#id" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:12:19:12:23 | "#id" | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/forms.js:12:19:12:23 | "#id" | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/forms.js:12:19:12:23 | "#id" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:12:19:12:23 | "#id" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:12:19:12:23 | "#id" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:12:19:12:23 | "#id" | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/forms.js:12:19:12:23 | "#id" | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/forms.js:12:19:12:23 | "#id" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:12:19:12:23 | "#id" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:12:19:12:23 | "#id" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:12:19:12:23 | "#id" | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/forms.js:12:19:12:23 | "#id" | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/forms.js:12:31:12:40 | values.bar | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:12:31:12:40 | values.bar | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:12:31:12:40 | values.bar | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:12:31:12:40 | values.bar | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/XssThroughDom/forms.js:22:35:31:1 | {\\n    m ...     }\\n} | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:22:35:31:1 | {\\n    m ...     }\\n} | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:22:35:31:1 | {\\n    m ...     }\\n} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:22:35:31:1 | {\\n    m ...     }\\n} | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/XssThroughDom/forms.js:22:35:31:1 | {\\n    m ...     }\\n} | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:22:35:31:1 | {\\n    m ...     }\\n} | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:22:35:31:1 | {\\n    m ...     }\\n} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:22:35:31:1 | {\\n    m ...     }\\n} | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/XssThroughDom/forms.js:22:35:31:1 | {\\n    m ...     }\\n} | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:22:35:31:1 | {\\n    m ...     }\\n} | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:22:35:31:1 | {\\n    m ...     }\\n} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:22:35:31:1 | {\\n    m ...     }\\n} | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/XssThroughDom/forms.js:22:35:31:1 | {\\n    m ...     }\\n} | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:22:35:31:1 | {\\n    m ...     }\\n} | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:22:35:31:1 | {\\n    m ...     }\\n} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:22:35:31:1 | {\\n    m ...     }\\n} | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/XssThroughDom/forms.js:23:23:23:42 | () => ({ name: '' }) | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:23:23:23:42 | () => ({ name: '' }) | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:23:23:23:42 | () => ({ name: '' }) | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:23:23:23:42 | () => ({ name: '' }) | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/XssThroughDom/forms.js:23:23:23:42 | () => ({ name: '' }) | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:23:23:23:42 | () => ({ name: '' }) | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:23:23:23:42 | () => ({ name: '' }) | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:23:23:23:42 | () => ({ name: '' }) | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/XssThroughDom/forms.js:23:23:23:42 | () => ({ name: '' }) | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:23:23:23:42 | () => ({ name: '' }) | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:23:23:23:42 | () => ({ name: '' }) | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:23:23:23:42 | () => ({ name: '' }) | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/XssThroughDom/forms.js:24:15:26:5 | values  ... K\\n    } | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:24:15:26:5 | values  ... K\\n    } | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:24:15:26:5 | values  ... K\\n    } | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:24:15:26:5 | values  ... K\\n    } | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/XssThroughDom/forms.js:24:15:26:5 | values  ... K\\n    } | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:24:15:26:5 | values  ... K\\n    } | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:24:15:26:5 | values  ... K\\n    } | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:24:15:26:5 | values  ... K\\n    } | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/XssThroughDom/forms.js:24:15:26:5 | values  ... K\\n    } | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:24:15:26:5 | values  ... K\\n    } | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:24:15:26:5 | values  ... K\\n    } | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:24:15:26:5 | values  ... K\\n    } | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/XssThroughDom/forms.js:25:11:25:15 | "#id" | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:25:11:25:15 | "#id" | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:25:11:25:15 | "#id" | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:25:11:25:15 | "#id" | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/forms.js:25:11:25:15 | "#id" | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/forms.js:25:11:25:15 | "#id" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:25:11:25:15 | "#id" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:25:11:25:15 | "#id" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:25:11:25:15 | "#id" | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/forms.js:25:11:25:15 | "#id" | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/forms.js:25:11:25:15 | "#id" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:25:11:25:15 | "#id" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:25:11:25:15 | "#id" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:25:11:25:15 | "#id" | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/forms.js:25:11:25:15 | "#id" | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/forms.js:25:11:25:15 | "#id" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:25:11:25:15 | "#id" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:25:11:25:15 | "#id" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:25:11:25:15 | "#id" | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/forms.js:25:11:25:15 | "#id" | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/forms.js:25:23:25:34 | values.email | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:25:23:25:34 | values.email | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:25:23:25:34 | values.email | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:25:23:25:34 | values.email | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/XssThroughDom/forms.js:28:19:30:5 | (values ... K\\n    } | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:28:19:30:5 | (values ... K\\n    } | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:28:19:30:5 | (values ... K\\n    } | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:28:19:30:5 | (values ... K\\n    } | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/XssThroughDom/forms.js:28:19:30:5 | (values ... K\\n    } | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:28:19:30:5 | (values ... K\\n    } | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:28:19:30:5 | (values ... K\\n    } | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:28:19:30:5 | (values ... K\\n    } | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/XssThroughDom/forms.js:28:19:30:5 | (values ... K\\n    } | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:28:19:30:5 | (values ... K\\n    } | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:28:19:30:5 | (values ... K\\n    } | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:28:19:30:5 | (values ... K\\n    } | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/XssThroughDom/forms.js:29:11:29:15 | "#id" | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:29:11:29:15 | "#id" | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:29:11:29:15 | "#id" | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:29:11:29:15 | "#id" | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/forms.js:29:11:29:15 | "#id" | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/forms.js:29:11:29:15 | "#id" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:29:11:29:15 | "#id" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:29:11:29:15 | "#id" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:29:11:29:15 | "#id" | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/forms.js:29:11:29:15 | "#id" | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/forms.js:29:11:29:15 | "#id" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:29:11:29:15 | "#id" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:29:11:29:15 | "#id" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:29:11:29:15 | "#id" | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/forms.js:29:11:29:15 | "#id" | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/forms.js:29:11:29:15 | "#id" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:29:11:29:15 | "#id" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:29:11:29:15 | "#id" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:29:11:29:15 | "#id" | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/forms.js:29:11:29:15 | "#id" | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/forms.js:29:23:29:34 | values.email | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:29:23:29:34 | values.email | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:29:23:29:34 | values.email | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:29:23:29:34 | values.email | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/XssThroughDom/forms.js:31:4:31:9 | MyForm | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:31:4:31:9 | MyForm | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:31:4:31:9 | MyForm | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:31:4:31:9 | MyForm | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/XssThroughDom/forms.js:31:4:31:9 | MyForm | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:31:4:31:9 | MyForm | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:31:4:31:9 | MyForm | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:31:4:31:9 | MyForm | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/XssThroughDom/forms.js:31:4:31:9 | MyForm | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:31:4:31:9 | MyForm | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:31:4:31:9 | MyForm | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:31:4:31:9 | MyForm | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/XssThroughDom/forms.js:31:4:31:9 | MyForm | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:31:4:31:9 | MyForm | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:31:4:31:9 | MyForm | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:31:4:31:9 | MyForm | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/XssThroughDom/forms.js:35:7:35:11 | "#id" | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:35:7:35:11 | "#id" | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:35:7:35:11 | "#id" | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:35:7:35:11 | "#id" | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/forms.js:35:7:35:11 | "#id" | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/forms.js:35:7:35:11 | "#id" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:35:7:35:11 | "#id" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:35:7:35:11 | "#id" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:35:7:35:11 | "#id" | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/forms.js:35:7:35:11 | "#id" | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/forms.js:35:7:35:11 | "#id" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:35:7:35:11 | "#id" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:35:7:35:11 | "#id" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:35:7:35:11 | "#id" | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/forms.js:35:7:35:11 | "#id" | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/forms.js:35:7:35:11 | "#id" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:35:7:35:11 | "#id" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:35:7:35:11 | "#id" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:35:7:35:11 | "#id" | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/forms.js:35:7:35:11 | "#id" | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/forms.js:35:19:35:30 | values.email | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:35:19:35:30 | values.email | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:35:19:35:30 | values.email | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:35:19:35:30 | values.email | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/XssThroughDom/forms.js:37:7:37:11 | "#id" | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:37:7:37:11 | "#id" | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:37:7:37:11 | "#id" | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:37:7:37:11 | "#id" | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/forms.js:37:7:37:11 | "#id" | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/forms.js:37:7:37:11 | "#id" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:37:7:37:11 | "#id" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:37:7:37:11 | "#id" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:37:7:37:11 | "#id" | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/forms.js:37:7:37:11 | "#id" | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/forms.js:37:7:37:11 | "#id" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:37:7:37:11 | "#id" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:37:7:37:11 | "#id" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:37:7:37:11 | "#id" | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/forms.js:37:7:37:11 | "#id" | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/forms.js:37:7:37:11 | "#id" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:37:7:37:11 | "#id" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:37:7:37:11 | "#id" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:37:7:37:11 | "#id" | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/forms.js:37:7:37:11 | "#id" | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/forms.js:37:19:37:34 | submitForm.email | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:37:19:37:34 | submitForm.email | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:37:19:37:34 | submitForm.email | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:37:19:37:34 | submitForm.email | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/XssThroughDom/forms.js:45:9:45:13 | "#id" | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:45:9:45:13 | "#id" | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:45:9:45:13 | "#id" | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:45:9:45:13 | "#id" | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/forms.js:45:9:45:13 | "#id" | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/forms.js:45:9:45:13 | "#id" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:45:9:45:13 | "#id" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:45:9:45:13 | "#id" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:45:9:45:13 | "#id" | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/forms.js:45:9:45:13 | "#id" | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/forms.js:45:9:45:13 | "#id" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:45:9:45:13 | "#id" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:45:9:45:13 | "#id" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:45:9:45:13 | "#id" | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/forms.js:45:9:45:13 | "#id" | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/forms.js:45:9:45:13 | "#id" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:45:9:45:13 | "#id" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:45:9:45:13 | "#id" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:45:9:45:13 | "#id" | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/forms.js:45:9:45:13 | "#id" | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/forms.js:45:21:45:33 | values.stooge | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:45:21:45:33 | values.stooge | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:45:21:45:33 | values.stooge | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:45:21:45:33 | values.stooge | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/XssThroughDom/forms.js:57:7:57:11 | "#id" | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:57:7:57:11 | "#id" | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:57:7:57:11 | "#id" | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:57:7:57:11 | "#id" | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/forms.js:57:7:57:11 | "#id" | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/forms.js:57:7:57:11 | "#id" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:57:7:57:11 | "#id" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:57:7:57:11 | "#id" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:57:7:57:11 | "#id" | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/forms.js:57:7:57:11 | "#id" | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/forms.js:57:7:57:11 | "#id" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:57:7:57:11 | "#id" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:57:7:57:11 | "#id" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:57:7:57:11 | "#id" | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/forms.js:57:7:57:11 | "#id" | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/forms.js:57:7:57:11 | "#id" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:57:7:57:11 | "#id" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:57:7:57:11 | "#id" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:57:7:57:11 | "#id" | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/forms.js:57:7:57:11 | "#id" | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/forms.js:57:19:57:32 | e.target.value | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:57:19:57:32 | e.target.value | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:57:19:57:32 | e.target.value | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:57:19:57:32 | e.target.value | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/XssThroughDom/forms.js:72:7:72:11 | "#id" | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:72:7:72:11 | "#id" | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:72:7:72:11 | "#id" | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:72:7:72:11 | "#id" | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/forms.js:72:7:72:11 | "#id" | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/forms.js:72:7:72:11 | "#id" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:72:7:72:11 | "#id" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:72:7:72:11 | "#id" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:72:7:72:11 | "#id" | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/forms.js:72:7:72:11 | "#id" | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/forms.js:72:7:72:11 | "#id" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:72:7:72:11 | "#id" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:72:7:72:11 | "#id" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:72:7:72:11 | "#id" | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/forms.js:72:7:72:11 | "#id" | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/forms.js:72:7:72:11 | "#id" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:72:7:72:11 | "#id" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:72:7:72:11 | "#id" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:72:7:72:11 | "#id" | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/forms.js:72:7:72:11 | "#id" | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/forms.js:72:19:72:27 | data.name | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:72:19:72:27 | data.name | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:72:19:72:27 | data.name | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:72:19:72:27 | data.name | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/XssThroughDom/forms.js:76:34:76:41 | onSubmit | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:76:34:76:41 | onSubmit | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:76:34:76:41 | onSubmit | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:76:34:76:41 | onSubmit | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/XssThroughDom/forms.js:76:34:76:41 | onSubmit | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:76:34:76:41 | onSubmit | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:76:34:76:41 | onSubmit | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:76:34:76:41 | onSubmit | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/XssThroughDom/forms.js:76:34:76:41 | onSubmit | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:76:34:76:41 | onSubmit | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:76:34:76:41 | onSubmit | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:76:34:76:41 | onSubmit | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/XssThroughDom/forms.js:76:34:76:41 | onSubmit | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:76:34:76:41 | onSubmit | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:76:34:76:41 | onSubmit | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:76:34:76:41 | onSubmit | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/XssThroughDom/forms.js:77:42:77:59 | { required: true } | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:77:42:77:59 | { required: true } | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:77:42:77:59 | { required: true } | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:77:42:77:59 | { required: true } | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/XssThroughDom/forms.js:77:42:77:59 | { required: true } | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:77:42:77:59 | { required: true } | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:77:42:77:59 | { required: true } | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:77:42:77:59 | { required: true } | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/XssThroughDom/forms.js:77:42:77:59 | { required: true } | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:77:42:77:59 | { required: true } | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:77:42:77:59 | { required: true } | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:77:42:77:59 | { required: true } | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/XssThroughDom/forms.js:77:42:77:59 | { required: true } | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:77:42:77:59 | { required: true } | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:77:42:77:59 | { required: true } | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:77:42:77:59 | { required: true } | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/XssThroughDom/forms.js:77:54:77:57 | true | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:77:54:77:57 | true | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:77:54:77:57 | true | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:77:54:77:57 | true | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/XssThroughDom/forms.js:77:54:77:57 | true | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:77:54:77:57 | true | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:77:54:77:57 | true | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:77:54:77:57 | true | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/XssThroughDom/forms.js:77:54:77:57 | true | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:77:54:77:57 | true | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:77:54:77:57 | true | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:77:54:77:57 | true | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/XssThroughDom/forms.js:93:13:93:17 | "#id" | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:93:13:93:17 | "#id" | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:93:13:93:17 | "#id" | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:93:13:93:17 | "#id" | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/forms.js:93:13:93:17 | "#id" | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/forms.js:93:13:93:17 | "#id" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:93:13:93:17 | "#id" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:93:13:93:17 | "#id" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:93:13:93:17 | "#id" | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/forms.js:93:13:93:17 | "#id" | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/forms.js:93:13:93:17 | "#id" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:93:13:93:17 | "#id" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:93:13:93:17 | "#id" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:93:13:93:17 | "#id" | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/forms.js:93:13:93:17 | "#id" | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/forms.js:93:13:93:17 | "#id" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:93:13:93:17 | "#id" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:93:13:93:17 | "#id" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:93:13:93:17 | "#id" | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/forms.js:93:13:93:17 | "#id" | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/forms.js:93:25:93:35 | values.name | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:93:25:93:35 | values.name | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:93:25:93:35 | values.name | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:93:25:93:35 | values.name | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/XssThroughDom/forms.js:102:28:102:40 | "form.myform" | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:102:28:102:40 | "form.myform" | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:102:28:102:40 | "form.myform" | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:102:28:102:40 | "form.myform" | NosqlInjection | notASinkReason | DOM | string |
-| autogenerated/Xss/XssThroughDom/forms.js:102:28:102:40 | "form.myform" | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/forms.js:102:28:102:40 | "form.myform" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:102:28:102:40 | "form.myform" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:102:28:102:40 | "form.myform" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:102:28:102:40 | "form.myform" | SqlInjection | notASinkReason | DOM | string |
-| autogenerated/Xss/XssThroughDom/forms.js:102:28:102:40 | "form.myform" | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/forms.js:102:28:102:40 | "form.myform" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:102:28:102:40 | "form.myform" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:102:28:102:40 | "form.myform" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:102:28:102:40 | "form.myform" | TaintedPath | notASinkReason | DOM | string |
-| autogenerated/Xss/XssThroughDom/forms.js:102:28:102:40 | "form.myform" | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/forms.js:102:28:102:40 | "form.myform" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:102:28:102:40 | "form.myform" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:102:28:102:40 | "form.myform" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:102:28:102:40 | "form.myform" | Xss | notASinkReason | DOM | string |
-| autogenerated/Xss/XssThroughDom/forms.js:102:28:102:40 | "form.myform" | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/forms.js:102:60:102:67 | "submit" | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:102:60:102:67 | "submit" | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:102:60:102:67 | "submit" | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:102:60:102:67 | "submit" | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/XssThroughDom/forms.js:102:60:102:67 | "submit" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:102:60:102:67 | "submit" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:102:60:102:67 | "submit" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:102:60:102:67 | "submit" | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/XssThroughDom/forms.js:102:60:102:67 | "submit" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:102:60:102:67 | "submit" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:102:60:102:67 | "submit" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:102:60:102:67 | "submit" | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/XssThroughDom/forms.js:102:60:102:67 | "submit" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:102:60:102:67 | "submit" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:102:60:102:67 | "submit" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:102:60:102:67 | "submit" | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/XssThroughDom/forms.js:102:70:104:5 | e => {\\n ... K\\n    } | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:102:70:104:5 | e => {\\n ... K\\n    } | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:102:70:104:5 | e => {\\n ... K\\n    } | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:102:70:104:5 | e => {\\n ... K\\n    } | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/XssThroughDom/forms.js:102:70:104:5 | e => {\\n ... K\\n    } | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:102:70:104:5 | e => {\\n ... K\\n    } | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:102:70:104:5 | e => {\\n ... K\\n    } | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:102:70:104:5 | e => {\\n ... K\\n    } | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/XssThroughDom/forms.js:102:70:104:5 | e => {\\n ... K\\n    } | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:102:70:104:5 | e => {\\n ... K\\n    } | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:102:70:104:5 | e => {\\n ... K\\n    } | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:102:70:104:5 | e => {\\n ... K\\n    } | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/XssThroughDom/forms.js:102:70:104:5 | e => {\\n ... K\\n    } | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:102:70:104:5 | e => {\\n ... K\\n    } | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:102:70:104:5 | e => {\\n ... K\\n    } | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:102:70:104:5 | e => {\\n ... K\\n    } | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/XssThroughDom/forms.js:103:11:103:15 | "#id" | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:103:11:103:15 | "#id" | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:103:11:103:15 | "#id" | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:103:11:103:15 | "#id" | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/forms.js:103:11:103:15 | "#id" | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/forms.js:103:11:103:15 | "#id" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:103:11:103:15 | "#id" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:103:11:103:15 | "#id" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:103:11:103:15 | "#id" | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/forms.js:103:11:103:15 | "#id" | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/forms.js:103:11:103:15 | "#id" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:103:11:103:15 | "#id" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:103:11:103:15 | "#id" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:103:11:103:15 | "#id" | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/forms.js:103:11:103:15 | "#id" | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/forms.js:103:11:103:15 | "#id" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:103:11:103:15 | "#id" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:103:11:103:15 | "#id" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:103:11:103:15 | "#id" | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/forms.js:103:11:103:15 | "#id" | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/forms.js:103:23:103:36 | e.target.value | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:103:23:103:36 | e.target.value | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:103:23:103:36 | e.target.value | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:103:23:103:36 | e.target.value | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/XssThroughDom/forms.js:106:28:106:40 | "form.myform" | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:106:28:106:40 | "form.myform" | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:106:28:106:40 | "form.myform" | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:106:28:106:40 | "form.myform" | NosqlInjection | notASinkReason | DOM | string |
-| autogenerated/Xss/XssThroughDom/forms.js:106:28:106:40 | "form.myform" | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/forms.js:106:28:106:40 | "form.myform" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:106:28:106:40 | "form.myform" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:106:28:106:40 | "form.myform" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:106:28:106:40 | "form.myform" | SqlInjection | notASinkReason | DOM | string |
-| autogenerated/Xss/XssThroughDom/forms.js:106:28:106:40 | "form.myform" | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/forms.js:106:28:106:40 | "form.myform" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:106:28:106:40 | "form.myform" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:106:28:106:40 | "form.myform" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:106:28:106:40 | "form.myform" | TaintedPath | notASinkReason | DOM | string |
-| autogenerated/Xss/XssThroughDom/forms.js:106:28:106:40 | "form.myform" | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/forms.js:106:28:106:40 | "form.myform" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:106:28:106:40 | "form.myform" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:106:28:106:40 | "form.myform" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:106:28:106:40 | "form.myform" | Xss | notASinkReason | DOM | string |
-| autogenerated/Xss/XssThroughDom/forms.js:106:28:106:40 | "form.myform" | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/forms.js:107:11:107:15 | "#id" | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:107:11:107:15 | "#id" | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:107:11:107:15 | "#id" | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:107:11:107:15 | "#id" | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/forms.js:107:11:107:15 | "#id" | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/forms.js:107:11:107:15 | "#id" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:107:11:107:15 | "#id" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:107:11:107:15 | "#id" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:107:11:107:15 | "#id" | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/forms.js:107:11:107:15 | "#id" | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/forms.js:107:11:107:15 | "#id" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:107:11:107:15 | "#id" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:107:11:107:15 | "#id" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:107:11:107:15 | "#id" | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/forms.js:107:11:107:15 | "#id" | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/forms.js:107:11:107:15 | "#id" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:107:11:107:15 | "#id" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:107:11:107:15 | "#id" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:107:11:107:15 | "#id" | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/forms.js:107:11:107:15 | "#id" | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/forms.js:107:23:107:36 | e.target.value | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:107:23:107:36 | e.target.value | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:107:23:107:36 | e.target.value | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/forms.js:107:23:107:36 | e.target.value | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:2:4:2:8 | "#id" | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:2:4:2:8 | "#id" | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:2:4:2:8 | "#id" | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:2:4:2:8 | "#id" | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:2:4:2:8 | "#id" | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:2:4:2:8 | "#id" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:2:4:2:8 | "#id" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:2:4:2:8 | "#id" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:2:4:2:8 | "#id" | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:2:4:2:8 | "#id" | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:2:4:2:8 | "#id" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:2:4:2:8 | "#id" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:2:4:2:8 | "#id" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:2:4:2:8 | "#id" | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:2:4:2:8 | "#id" | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:2:4:2:8 | "#id" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:2:4:2:8 | "#id" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:2:4:2:8 | "#id" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:2:4:2:8 | "#id" | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:2:4:2:8 | "#id" | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:2:16:2:34 | $("textarea").val() | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:2:16:2:34 | $("textarea").val() | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:2:16:2:34 | $("textarea").val() | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:2:16:2:34 | $("textarea").val() | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:2:18:2:27 | "textarea" | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:2:18:2:27 | "textarea" | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:2:18:2:27 | "textarea" | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:2:18:2:27 | "textarea" | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:2:18:2:27 | "textarea" | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:2:18:2:27 | "textarea" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:2:18:2:27 | "textarea" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:2:18:2:27 | "textarea" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:2:18:2:27 | "textarea" | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:2:18:2:27 | "textarea" | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:2:18:2:27 | "textarea" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:2:18:2:27 | "textarea" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:2:18:2:27 | "textarea" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:2:18:2:27 | "textarea" | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:2:18:2:27 | "textarea" | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:2:18:2:27 | "textarea" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:2:18:2:27 | "textarea" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:2:18:2:27 | "textarea" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:2:18:2:27 | "textarea" | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:2:18:2:27 | "textarea" | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:4:4:4:8 | "#id" | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:4:4:4:8 | "#id" | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:4:4:4:8 | "#id" | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:4:4:4:8 | "#id" | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:4:4:4:8 | "#id" | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:4:4:4:8 | "#id" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:4:4:4:8 | "#id" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:4:4:4:8 | "#id" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:4:4:4:8 | "#id" | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:4:4:4:8 | "#id" | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:4:4:4:8 | "#id" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:4:4:4:8 | "#id" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:4:4:4:8 | "#id" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:4:4:4:8 | "#id" | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:4:4:4:8 | "#id" | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:4:4:4:8 | "#id" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:4:4:4:8 | "#id" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:4:4:4:8 | "#id" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:4:4:4:8 | "#id" | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:4:4:4:8 | "#id" | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:4:16:4:40 | $(".som ... .text() | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:4:16:4:40 | $(".som ... .text() | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:4:16:4:40 | $(".som ... .text() | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:4:16:4:40 | $(".som ... .text() | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:4:18:4:32 | ".some-element" | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:4:18:4:32 | ".some-element" | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:4:18:4:32 | ".some-element" | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:4:18:4:32 | ".some-element" | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:4:18:4:32 | ".some-element" | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:4:18:4:32 | ".some-element" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:4:18:4:32 | ".some-element" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:4:18:4:32 | ".some-element" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:4:18:4:32 | ".some-element" | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:4:18:4:32 | ".some-element" | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:4:18:4:32 | ".some-element" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:4:18:4:32 | ".some-element" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:4:18:4:32 | ".some-element" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:4:18:4:32 | ".some-element" | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:4:18:4:32 | ".some-element" | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:4:18:4:32 | ".some-element" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:4:18:4:32 | ".some-element" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:4:18:4:32 | ".some-element" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:4:18:4:32 | ".some-element" | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:4:18:4:32 | ".some-element" | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:4:6:8 | "#id" | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:4:6:8 | "#id" | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:4:6:8 | "#id" | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:4:6:8 | "#id" | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:4:6:8 | "#id" | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:4:6:8 | "#id" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:4:6:8 | "#id" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:4:6:8 | "#id" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:4:6:8 | "#id" | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:4:6:8 | "#id" | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:4:6:8 | "#id" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:4:6:8 | "#id" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:4:6:8 | "#id" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:4:6:8 | "#id" | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:4:6:8 | "#id" | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:4:6:8 | "#id" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:4:6:8 | "#id" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:4:6:8 | "#id" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:4:6:8 | "#id" | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:4:6:8 | "#id" | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:16:6:52 | $(".som ...  "bar") | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:16:6:52 | $(".som ...  "bar") | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:16:6:52 | $(".som ...  "bar") | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:16:6:52 | $(".som ...  "bar") | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:18:6:32 | ".some-element" | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:18:6:32 | ".some-element" | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:18:6:32 | ".some-element" | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:18:6:32 | ".some-element" | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:18:6:32 | ".some-element" | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:18:6:32 | ".some-element" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:18:6:32 | ".some-element" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:18:6:32 | ".some-element" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:18:6:32 | ".some-element" | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:18:6:32 | ".some-element" | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:18:6:32 | ".some-element" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:18:6:32 | ".some-element" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:18:6:32 | ".some-element" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:18:6:32 | ".some-element" | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:18:6:32 | ".some-element" | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:18:6:32 | ".some-element" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:18:6:32 | ".some-element" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:18:6:32 | ".some-element" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:18:6:32 | ".some-element" | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:18:6:32 | ".some-element" | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:40:6:44 | "foo" | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:40:6:44 | "foo" | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:40:6:44 | "foo" | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:40:6:44 | "foo" | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:40:6:44 | "foo" | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:40:6:44 | "foo" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:40:6:44 | "foo" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:40:6:44 | "foo" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:40:6:44 | "foo" | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:40:6:44 | "foo" | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:40:6:44 | "foo" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:40:6:44 | "foo" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:40:6:44 | "foo" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:40:6:44 | "foo" | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:40:6:44 | "foo" | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:40:6:44 | "foo" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:40:6:44 | "foo" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:40:6:44 | "foo" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:40:6:44 | "foo" | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:40:6:44 | "foo" | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:47:6:51 | "bar" | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:47:6:51 | "bar" | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:47:6:51 | "bar" | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:47:6:51 | "bar" | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:47:6:51 | "bar" | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:47:6:51 | "bar" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:47:6:51 | "bar" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:47:6:51 | "bar" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:47:6:51 | "bar" | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:47:6:51 | "bar" | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:47:6:51 | "bar" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:47:6:51 | "bar" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:47:6:51 | "bar" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:47:6:51 | "bar" | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:47:6:51 | "bar" | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:47:6:51 | "bar" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:47:6:51 | "bar" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:47:6:51 | "bar" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:47:6:51 | "bar" | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:47:6:51 | "bar" | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:4:7:8 | "#id" | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:4:7:8 | "#id" | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:4:7:8 | "#id" | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:4:7:8 | "#id" | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:4:7:8 | "#id" | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:4:7:8 | "#id" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:4:7:8 | "#id" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:4:7:8 | "#id" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:4:7:8 | "#id" | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:4:7:8 | "#id" | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:4:7:8 | "#id" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:4:7:8 | "#id" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:4:7:8 | "#id" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:4:7:8 | "#id" | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:4:7:8 | "#id" | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:4:7:8 | "#id" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:4:7:8 | "#id" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:4:7:8 | "#id" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:4:7:8 | "#id" | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:4:7:8 | "#id" | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:16:7:54 | $(".som ... "bar"}) | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:16:7:54 | $(".som ... "bar"}) | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:16:7:54 | $(".som ... "bar"}) | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:16:7:54 | $(".som ... "bar"}) | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:18:7:32 | ".some-element" | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:18:7:32 | ".some-element" | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:18:7:32 | ".some-element" | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:18:7:32 | ".some-element" | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:18:7:32 | ".some-element" | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:18:7:32 | ".some-element" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:18:7:32 | ".some-element" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:18:7:32 | ".some-element" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:18:7:32 | ".some-element" | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:18:7:32 | ".some-element" | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:18:7:32 | ".some-element" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:18:7:32 | ".some-element" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:18:7:32 | ".some-element" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:18:7:32 | ".some-element" | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:18:7:32 | ".some-element" | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:18:7:32 | ".some-element" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:18:7:32 | ".some-element" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:18:7:32 | ".some-element" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:18:7:32 | ".some-element" | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:18:7:32 | ".some-element" | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:40:7:53 | {"foo": "bar"} | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:40:7:53 | {"foo": "bar"} | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:40:7:53 | {"foo": "bar"} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:40:7:53 | {"foo": "bar"} | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:40:7:53 | {"foo": "bar"} | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:40:7:53 | {"foo": "bar"} | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:40:7:53 | {"foo": "bar"} | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:40:7:53 | {"foo": "bar"} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:40:7:53 | {"foo": "bar"} | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:40:7:53 | {"foo": "bar"} | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:40:7:53 | {"foo": "bar"} | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:40:7:53 | {"foo": "bar"} | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:40:7:53 | {"foo": "bar"} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:40:7:53 | {"foo": "bar"} | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:40:7:53 | {"foo": "bar"} | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:40:7:53 | {"foo": "bar"} | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:40:7:53 | {"foo": "bar"} | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:40:7:53 | {"foo": "bar"} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:40:7:53 | {"foo": "bar"} | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:40:7:53 | {"foo": "bar"} | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:48:7:52 | "bar" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:48:7:52 | "bar" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:48:7:52 | "bar" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:48:7:52 | "bar" | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:48:7:52 | "bar" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:48:7:52 | "bar" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:48:7:52 | "bar" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:48:7:52 | "bar" | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:48:7:52 | "bar" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:48:7:52 | "bar" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:48:7:52 | "bar" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:48:7:52 | "bar" | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:8:4:8:8 | "#id" | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:8:4:8:8 | "#id" | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:8:4:8:8 | "#id" | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:8:4:8:8 | "#id" | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:8:4:8:8 | "#id" | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:8:4:8:8 | "#id" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:8:4:8:8 | "#id" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:8:4:8:8 | "#id" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:8:4:8:8 | "#id" | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:8:4:8:8 | "#id" | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:8:4:8:8 | "#id" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:8:4:8:8 | "#id" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:8:4:8:8 | "#id" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:8:4:8:8 | "#id" | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:8:4:8:8 | "#id" | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:8:4:8:8 | "#id" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:8:4:8:8 | "#id" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:8:4:8:8 | "#id" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:8:4:8:8 | "#id" | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:8:4:8:8 | "#id" | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:8:16:8:53 | $(".som ... arget") | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:8:16:8:53 | $(".som ... arget") | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:8:16:8:53 | $(".som ... arget") | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:8:16:8:53 | $(".som ... arget") | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:8:18:8:32 | ".some-element" | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:8:18:8:32 | ".some-element" | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:8:18:8:32 | ".some-element" | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:8:18:8:32 | ".some-element" | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:8:18:8:32 | ".some-element" | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:8:18:8:32 | ".some-element" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:8:18:8:32 | ".some-element" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:8:18:8:32 | ".some-element" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:8:18:8:32 | ".some-element" | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:8:18:8:32 | ".some-element" | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:8:18:8:32 | ".some-element" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:8:18:8:32 | ".some-element" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:8:18:8:32 | ".some-element" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:8:18:8:32 | ".some-element" | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:8:18:8:32 | ".some-element" | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:8:18:8:32 | ".some-element" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:8:18:8:32 | ".some-element" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:8:18:8:32 | ".some-element" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:8:18:8:32 | ".some-element" | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:8:18:8:32 | ".some-element" | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:8:40:8:52 | "data-target" | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:8:40:8:52 | "data-target" | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:8:40:8:52 | "data-target" | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:8:40:8:52 | "data-target" | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:8:40:8:52 | "data-target" | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:8:40:8:52 | "data-target" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:8:40:8:52 | "data-target" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:8:40:8:52 | "data-target" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:8:40:8:52 | "data-target" | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:8:40:8:52 | "data-target" | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:8:40:8:52 | "data-target" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:8:40:8:52 | "data-target" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:8:40:8:52 | "data-target" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:8:40:8:52 | "data-target" | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:8:40:8:52 | "data-target" | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:8:40:8:52 | "data-target" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:8:40:8:52 | "data-target" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:8:40:8:52 | "data-target" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:8:40:8:52 | "data-target" | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:8:40:8:52 | "data-target" | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:10:4:10:8 | "#id" | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:10:4:10:8 | "#id" | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:10:4:10:8 | "#id" | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:10:4:10:8 | "#id" | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:10:4:10:8 | "#id" | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:10:4:10:8 | "#id" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:10:4:10:8 | "#id" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:10:4:10:8 | "#id" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:10:4:10:8 | "#id" | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:10:4:10:8 | "#id" | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:10:4:10:8 | "#id" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:10:4:10:8 | "#id" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:10:4:10:8 | "#id" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:10:4:10:8 | "#id" | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:10:4:10:8 | "#id" | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:10:4:10:8 | "#id" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:10:4:10:8 | "#id" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:10:4:10:8 | "#id" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:10:4:10:8 | "#id" | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:10:4:10:8 | "#id" | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:11:3:11:42 | documen ... nerText | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:11:3:11:42 | documen ... nerText | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:11:3:11:42 | documen ... nerText | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:11:3:11:42 | documen ... nerText | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:11:27:11:31 | "foo" | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:11:27:11:31 | "foo" | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:11:27:11:31 | "foo" | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:11:27:11:31 | "foo" | NosqlInjection | notASinkReason | DOM | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:11:27:11:31 | "foo" | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:11:27:11:31 | "foo" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:11:27:11:31 | "foo" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:11:27:11:31 | "foo" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:11:27:11:31 | "foo" | SqlInjection | notASinkReason | DOM | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:11:27:11:31 | "foo" | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:11:27:11:31 | "foo" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:11:27:11:31 | "foo" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:11:27:11:31 | "foo" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:11:27:11:31 | "foo" | TaintedPath | notASinkReason | DOM | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:11:27:11:31 | "foo" | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:11:27:11:31 | "foo" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:11:27:11:31 | "foo" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:11:27:11:31 | "foo" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:11:27:11:31 | "foo" | Xss | notASinkReason | DOM | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:11:27:11:31 | "foo" | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:14:4:14:8 | "#id" | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:14:4:14:8 | "#id" | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:14:4:14:8 | "#id" | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:14:4:14:8 | "#id" | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:14:4:14:8 | "#id" | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:14:4:14:8 | "#id" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:14:4:14:8 | "#id" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:14:4:14:8 | "#id" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:14:4:14:8 | "#id" | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:14:4:14:8 | "#id" | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:14:4:14:8 | "#id" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:14:4:14:8 | "#id" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:14:4:14:8 | "#id" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:14:4:14:8 | "#id" | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:14:4:14:8 | "#id" | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:14:4:14:8 | "#id" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:14:4:14:8 | "#id" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:14:4:14:8 | "#id" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:14:4:14:8 | "#id" | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:14:4:14:8 | "#id" | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:15:3:15:42 | documen ... nerHTML | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:15:3:15:42 | documen ... nerHTML | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:15:3:15:42 | documen ... nerHTML | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:15:3:15:42 | documen ... nerHTML | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:15:27:15:31 | "foo" | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:15:27:15:31 | "foo" | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:15:27:15:31 | "foo" | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:15:27:15:31 | "foo" | NosqlInjection | notASinkReason | DOM | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:15:27:15:31 | "foo" | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:15:27:15:31 | "foo" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:15:27:15:31 | "foo" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:15:27:15:31 | "foo" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:15:27:15:31 | "foo" | SqlInjection | notASinkReason | DOM | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:15:27:15:31 | "foo" | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:15:27:15:31 | "foo" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:15:27:15:31 | "foo" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:15:27:15:31 | "foo" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:15:27:15:31 | "foo" | TaintedPath | notASinkReason | DOM | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:15:27:15:31 | "foo" | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:15:27:15:31 | "foo" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:15:27:15:31 | "foo" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:15:27:15:31 | "foo" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:15:27:15:31 | "foo" | Xss | notASinkReason | DOM | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:15:27:15:31 | "foo" | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:18:4:18:8 | "#id" | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:18:4:18:8 | "#id" | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:18:4:18:8 | "#id" | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:18:4:18:8 | "#id" | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:18:4:18:8 | "#id" | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:18:4:18:8 | "#id" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:18:4:18:8 | "#id" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:18:4:18:8 | "#id" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:18:4:18:8 | "#id" | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:18:4:18:8 | "#id" | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:18:4:18:8 | "#id" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:18:4:18:8 | "#id" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:18:4:18:8 | "#id" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:18:4:18:8 | "#id" | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:18:4:18:8 | "#id" | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:18:4:18:8 | "#id" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:18:4:18:8 | "#id" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:18:4:18:8 | "#id" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:18:4:18:8 | "#id" | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:18:4:18:8 | "#id" | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:19:3:19:44 | documen ... Content | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:19:3:19:44 | documen ... Content | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:19:3:19:44 | documen ... Content | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:19:3:19:44 | documen ... Content | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:19:27:19:31 | "foo" | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:19:27:19:31 | "foo" | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:19:27:19:31 | "foo" | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:19:27:19:31 | "foo" | NosqlInjection | notASinkReason | DOM | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:19:27:19:31 | "foo" | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:19:27:19:31 | "foo" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:19:27:19:31 | "foo" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:19:27:19:31 | "foo" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:19:27:19:31 | "foo" | SqlInjection | notASinkReason | DOM | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:19:27:19:31 | "foo" | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:19:27:19:31 | "foo" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:19:27:19:31 | "foo" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:19:27:19:31 | "foo" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:19:27:19:31 | "foo" | TaintedPath | notASinkReason | DOM | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:19:27:19:31 | "foo" | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:19:27:19:31 | "foo" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:19:27:19:31 | "foo" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:19:27:19:31 | "foo" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:19:27:19:31 | "foo" | Xss | notASinkReason | DOM | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:19:27:19:31 | "foo" | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:22:4:22:8 | "#id" | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:22:4:22:8 | "#id" | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:22:4:22:8 | "#id" | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:22:4:22:8 | "#id" | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:22:4:22:8 | "#id" | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:22:4:22:8 | "#id" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:22:4:22:8 | "#id" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:22:4:22:8 | "#id" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:22:4:22:8 | "#id" | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:22:4:22:8 | "#id" | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:22:4:22:8 | "#id" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:22:4:22:8 | "#id" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:22:4:22:8 | "#id" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:22:4:22:8 | "#id" | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:22:4:22:8 | "#id" | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:22:4:22:8 | "#id" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:22:4:22:8 | "#id" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:22:4:22:8 | "#id" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:22:4:22:8 | "#id" | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:22:4:22:8 | "#id" | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:23:3:23:48 | documen ... ].value | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:23:3:23:48 | documen ... ].value | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:23:3:23:48 | documen ... ].value | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:23:3:23:48 | documen ... ].value | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:23:29:23:38 | "textarea" | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:23:29:23:38 | "textarea" | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:23:29:23:38 | "textarea" | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:23:29:23:38 | "textarea" | NosqlInjection | notASinkReason | DOM | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:23:29:23:38 | "textarea" | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:23:29:23:38 | "textarea" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:23:29:23:38 | "textarea" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:23:29:23:38 | "textarea" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:23:29:23:38 | "textarea" | SqlInjection | notASinkReason | DOM | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:23:29:23:38 | "textarea" | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:23:29:23:38 | "textarea" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:23:29:23:38 | "textarea" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:23:29:23:38 | "textarea" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:23:29:23:38 | "textarea" | TaintedPath | notASinkReason | DOM | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:23:29:23:38 | "textarea" | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:23:29:23:38 | "textarea" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:23:29:23:38 | "textarea" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:23:29:23:38 | "textarea" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:23:29:23:38 | "textarea" | Xss | notASinkReason | DOM | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:23:29:23:38 | "textarea" | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:26:4:26:8 | "#id" | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:26:4:26:8 | "#id" | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:26:4:26:8 | "#id" | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:26:4:26:8 | "#id" | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:26:4:26:8 | "#id" | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:26:4:26:8 | "#id" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:26:4:26:8 | "#id" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:26:4:26:8 | "#id" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:26:4:26:8 | "#id" | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:26:4:26:8 | "#id" | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:26:4:26:8 | "#id" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:26:4:26:8 | "#id" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:26:4:26:8 | "#id" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:26:4:26:8 | "#id" | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:26:4:26:8 | "#id" | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:26:4:26:8 | "#id" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:26:4:26:8 | "#id" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:26:4:26:8 | "#id" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:26:4:26:8 | "#id" | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:26:4:26:8 | "#id" | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:27:3:27:61 | documen ... arget') | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:27:3:27:61 | documen ... arget') | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:27:3:27:61 | documen ... arget') | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:27:3:27:61 | documen ... arget') | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:27:27:27:32 | 'div1' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:27:27:27:32 | 'div1' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:27:27:27:32 | 'div1' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:27:27:27:32 | 'div1' | NosqlInjection | notASinkReason | DOM | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:27:27:27:32 | 'div1' | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:27:27:27:32 | 'div1' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:27:27:27:32 | 'div1' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:27:27:27:32 | 'div1' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:27:27:27:32 | 'div1' | SqlInjection | notASinkReason | DOM | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:27:27:27:32 | 'div1' | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:27:27:27:32 | 'div1' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:27:27:27:32 | 'div1' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:27:27:27:32 | 'div1' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:27:27:27:32 | 'div1' | TaintedPath | notASinkReason | DOM | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:27:27:27:32 | 'div1' | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:27:27:27:32 | 'div1' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:27:27:27:32 | 'div1' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:27:27:27:32 | 'div1' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:27:27:27:32 | 'div1' | Xss | notASinkReason | DOM | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:27:27:27:32 | 'div1' | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:27:48:27:60 | 'data-target' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:27:48:27:60 | 'data-target' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:27:48:27:60 | 'data-target' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:27:48:27:60 | 'data-target' | NosqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:27:48:27:60 | 'data-target' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:27:48:27:60 | 'data-target' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:27:48:27:60 | 'data-target' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:27:48:27:60 | 'data-target' | SqlInjection | sinkLabel | Unknown | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:27:48:27:60 | 'data-target' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:27:48:27:60 | 'data-target' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:27:48:27:60 | 'data-target' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:27:48:27:60 | 'data-target' | TaintedPath | sinkLabel | Unknown | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:27:48:27:60 | 'data-target' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:27:48:27:60 | 'data-target' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:27:48:27:60 | 'data-target' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:27:48:27:60 | 'data-target' | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:32:16:32:16 | x | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:32:16:32:16 | x | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:32:16:32:16 | x | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:32:16:32:16 | x | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:36:10:36:19 | "textarea" | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:36:10:36:19 | "textarea" | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:36:10:36:19 | "textarea" | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:36:10:36:19 | "textarea" | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:36:10:36:19 | "textarea" | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:36:10:36:19 | "textarea" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:36:10:36:19 | "textarea" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:36:10:36:19 | "textarea" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:36:10:36:19 | "textarea" | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:36:10:36:19 | "textarea" | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:36:10:36:19 | "textarea" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:36:10:36:19 | "textarea" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:36:10:36:19 | "textarea" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:36:10:36:19 | "textarea" | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:36:10:36:19 | "textarea" | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:36:10:36:19 | "textarea" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:36:10:36:19 | "textarea" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:36:10:36:19 | "textarea" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:36:10:36:19 | "textarea" | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:36:10:36:19 | "textarea" | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:40:16:40:16 | x | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:40:16:40:16 | x | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:40:16:40:16 | x | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:40:16:40:16 | x | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:40:16:40:16 | x | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:40:16:40:16 | x | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:40:16:40:16 | x | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:40:16:40:16 | x | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:40:16:40:16 | x | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:40:16:40:16 | x | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:40:16:40:16 | x | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:40:16:40:16 | x | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:40:16:40:16 | x | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:40:16:40:16 | x | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:40:16:40:16 | x | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:40:16:40:16 | x | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:40:16:40:16 | x | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:40:16:40:16 | x | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:40:16:40:16 | x | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:40:16:40:16 | x | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:43:10:43:19 | "textarea" | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:43:10:43:19 | "textarea" | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:43:10:43:19 | "textarea" | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:43:10:43:19 | "textarea" | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:43:10:43:19 | "textarea" | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:43:10:43:19 | "textarea" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:43:10:43:19 | "textarea" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:43:10:43:19 | "textarea" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:43:10:43:19 | "textarea" | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:43:10:43:19 | "textarea" | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:43:10:43:19 | "textarea" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:43:10:43:19 | "textarea" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:43:10:43:19 | "textarea" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:43:10:43:19 | "textarea" | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:43:10:43:19 | "textarea" | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:43:10:43:19 | "textarea" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:43:10:43:19 | "textarea" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:43:10:43:19 | "textarea" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:43:10:43:19 | "textarea" | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:43:10:43:19 | "textarea" | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:46:4:46:8 | "#id" | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:46:4:46:8 | "#id" | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:46:4:46:8 | "#id" | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:46:4:46:8 | "#id" | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:46:4:46:8 | "#id" | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:46:4:46:8 | "#id" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:46:4:46:8 | "#id" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:46:4:46:8 | "#id" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:46:4:46:8 | "#id" | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:46:4:46:8 | "#id" | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:46:4:46:8 | "#id" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:46:4:46:8 | "#id" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:46:4:46:8 | "#id" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:46:4:46:8 | "#id" | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:46:4:46:8 | "#id" | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:46:4:46:8 | "#id" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:46:4:46:8 | "#id" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:46:4:46:8 | "#id" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:46:4:46:8 | "#id" | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:46:4:46:8 | "#id" | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:47:3:47:40 | $("<p>" ... .text() | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:47:3:47:40 | $("<p>" ... .text() | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:47:3:47:40 | $("<p>" ... .text() | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:47:3:47:40 | $("<p>" ... .text() | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:47:5:47:9 | "<p>" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:47:5:47:9 | "<p>" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:47:5:47:9 | "<p>" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:47:5:47:9 | "<p>" | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:47:5:47:32 | "<p>" + ...  "</p>" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:47:5:47:32 | "<p>" + ...  "</p>" | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:47:5:47:32 | "<p>" + ...  "</p>" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:47:5:47:32 | "<p>" + ...  "</p>" | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:47:13:47:23 | something() | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:47:13:47:23 | something() | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:47:13:47:23 | something() | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:47:13:47:23 | something() | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:47:27:47:32 | "</p>" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:47:27:47:32 | "</p>" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:47:27:47:32 | "</p>" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:47:27:47:32 | "</p>" | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:51:4:51:8 | "#id" | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:51:4:51:8 | "#id" | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:51:4:51:8 | "#id" | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:51:4:51:8 | "#id" | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:51:4:51:8 | "#id" | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:51:4:51:8 | "#id" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:51:4:51:8 | "#id" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:51:4:51:8 | "#id" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:51:4:51:8 | "#id" | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:51:4:51:8 | "#id" | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:51:4:51:8 | "#id" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:51:4:51:8 | "#id" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:51:4:51:8 | "#id" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:51:4:51:8 | "#id" | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:51:4:51:8 | "#id" | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:51:4:51:8 | "#id" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:51:4:51:8 | "#id" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:51:4:51:8 | "#id" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:51:4:51:8 | "#id" | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:51:4:51:8 | "#id" | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:51:15:51:15 | 0 | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:51:15:51:15 | 0 | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:51:15:51:15 | 0 | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:51:15:51:15 | 0 | NosqlInjection | notASinkReason | DOM | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:51:15:51:15 | 0 | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:51:15:51:15 | 0 | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:51:15:51:15 | 0 | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:51:15:51:15 | 0 | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:51:15:51:15 | 0 | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:51:15:51:15 | 0 | SqlInjection | notASinkReason | DOM | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:51:15:51:15 | 0 | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:51:15:51:15 | 0 | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:51:15:51:15 | 0 | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:51:15:51:15 | 0 | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:51:15:51:15 | 0 | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:51:15:51:15 | 0 | TaintedPath | notASinkReason | DOM | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:51:15:51:15 | 0 | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:51:15:51:15 | 0 | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:51:15:51:15 | 0 | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:51:15:51:15 | 0 | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:51:15:51:15 | 0 | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:51:15:51:15 | 0 | Xss | notASinkReason | DOM | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:51:15:51:15 | 0 | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:51:15:51:15 | 0 | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:51:30:51:48 | $("textarea").val() | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:51:30:51:48 | $("textarea").val() | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:51:30:51:48 | $("textarea").val() | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:51:30:51:48 | $("textarea").val() | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:51:32:51:41 | "textarea" | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:51:32:51:41 | "textarea" | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:51:32:51:41 | "textarea" | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:51:32:51:41 | "textarea" | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:51:32:51:41 | "textarea" | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:51:32:51:41 | "textarea" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:51:32:51:41 | "textarea" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:51:32:51:41 | "textarea" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:51:32:51:41 | "textarea" | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:51:32:51:41 | "textarea" | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:51:32:51:41 | "textarea" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:51:32:51:41 | "textarea" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:51:32:51:41 | "textarea" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:51:32:51:41 | "textarea" | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:51:32:51:41 | "textarea" | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:51:32:51:41 | "textarea" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:51:32:51:41 | "textarea" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:51:32:51:41 | "textarea" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:51:32:51:41 | "textarea" | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:51:32:51:41 | "textarea" | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:53:15:53:19 | "#id" | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:53:15:53:19 | "#id" | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:53:15:53:19 | "#id" | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:53:15:53:19 | "#id" | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:53:15:53:19 | "#id" | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:53:15:53:19 | "#id" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:53:15:53:19 | "#id" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:53:15:53:19 | "#id" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:53:15:53:19 | "#id" | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:53:15:53:19 | "#id" | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:53:15:53:19 | "#id" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:53:15:53:19 | "#id" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:53:15:53:19 | "#id" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:53:15:53:19 | "#id" | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:53:15:53:19 | "#id" | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:53:15:53:19 | "#id" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:53:15:53:19 | "#id" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:53:15:53:19 | "#id" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:53:15:53:19 | "#id" | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:53:15:53:19 | "#id" | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:54:31:54:49 | $("textarea").val() | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:54:31:54:49 | $("textarea").val() | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:54:31:54:49 | $("textarea").val() | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:54:31:54:49 | $("textarea").val() | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:54:33:54:42 | "textarea" | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:54:33:54:42 | "textarea" | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:54:33:54:42 | "textarea" | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:54:33:54:42 | "textarea" | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:54:33:54:42 | "textarea" | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:54:33:54:42 | "textarea" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:54:33:54:42 | "textarea" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:54:33:54:42 | "textarea" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:54:33:54:42 | "textarea" | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:54:33:54:42 | "textarea" | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:54:33:54:42 | "textarea" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:54:33:54:42 | "textarea" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:54:33:54:42 | "textarea" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:54:33:54:42 | "textarea" | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:54:33:54:42 | "textarea" | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:54:33:54:42 | "textarea" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:54:33:54:42 | "textarea" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:54:33:54:42 | "textarea" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:54:33:54:42 | "textarea" | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:54:33:54:42 | "textarea" | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:4:56:8 | "#id" | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:4:56:8 | "#id" | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:4:56:8 | "#id" | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:4:56:8 | "#id" | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:4:56:8 | "#id" | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:4:56:8 | "#id" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:4:56:8 | "#id" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:4:56:8 | "#id" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:4:56:8 | "#id" | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:4:56:8 | "#id" | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:4:56:8 | "#id" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:4:56:8 | "#id" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:4:56:8 | "#id" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:4:56:8 | "#id" | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:4:56:8 | "#id" | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:4:56:8 | "#id" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:4:56:8 | "#id" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:4:56:8 | "#id" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:4:56:8 | "#id" | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:4:56:8 | "#id" | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:15:56:15 | 0 | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:15:56:15 | 0 | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:15:56:15 | 0 | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:15:56:15 | 0 | NosqlInjection | notASinkReason | DOM | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:15:56:15 | 0 | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:15:56:15 | 0 | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:15:56:15 | 0 | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:15:56:15 | 0 | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:15:56:15 | 0 | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:15:56:15 | 0 | SqlInjection | notASinkReason | DOM | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:15:56:15 | 0 | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:15:56:15 | 0 | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:15:56:15 | 0 | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:15:56:15 | 0 | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:15:56:15 | 0 | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:15:56:15 | 0 | TaintedPath | notASinkReason | DOM | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:15:56:15 | 0 | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:15:56:15 | 0 | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:15:56:15 | 0 | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:15:56:15 | 0 | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:15:56:15 | 0 | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:15:56:15 | 0 | Xss | notASinkReason | DOM | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:15:56:15 | 0 | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:15:56:15 | 0 | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:30:56:51 | $("inpu ... 0).name | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:30:56:51 | $("inpu ... 0).name | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:30:56:51 | $("inpu ... 0).name | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:30:56:51 | $("inpu ... 0).name | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:32:56:38 | "input" | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:32:56:38 | "input" | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:32:56:38 | "input" | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:32:56:38 | "input" | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:32:56:38 | "input" | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:32:56:38 | "input" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:32:56:38 | "input" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:32:56:38 | "input" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:32:56:38 | "input" | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:32:56:38 | "input" | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:32:56:38 | "input" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:32:56:38 | "input" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:32:56:38 | "input" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:32:56:38 | "input" | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:32:56:38 | "input" | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:32:56:38 | "input" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:32:56:38 | "input" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:32:56:38 | "input" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:32:56:38 | "input" | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:32:56:38 | "input" | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:45:56:45 | 0 | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:45:56:45 | 0 | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:45:56:45 | 0 | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:45:56:45 | 0 | NosqlInjection | notASinkReason | DOM | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:45:56:45 | 0 | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:45:56:45 | 0 | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:45:56:45 | 0 | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:45:56:45 | 0 | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:45:56:45 | 0 | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:45:56:45 | 0 | SqlInjection | notASinkReason | DOM | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:45:56:45 | 0 | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:45:56:45 | 0 | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:45:56:45 | 0 | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:45:56:45 | 0 | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:45:56:45 | 0 | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:45:56:45 | 0 | TaintedPath | notASinkReason | DOM | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:45:56:45 | 0 | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:45:56:45 | 0 | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:45:56:45 | 0 | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:45:56:45 | 0 | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:45:56:45 | 0 | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:45:56:45 | 0 | Xss | notASinkReason | DOM | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:45:56:45 | 0 | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:45:56:45 | 0 | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:4:57:8 | "#id" | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:4:57:8 | "#id" | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:4:57:8 | "#id" | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:4:57:8 | "#id" | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:4:57:8 | "#id" | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:4:57:8 | "#id" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:4:57:8 | "#id" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:4:57:8 | "#id" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:4:57:8 | "#id" | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:4:57:8 | "#id" | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:4:57:8 | "#id" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:4:57:8 | "#id" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:4:57:8 | "#id" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:4:57:8 | "#id" | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:4:57:8 | "#id" | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:4:57:8 | "#id" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:4:57:8 | "#id" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:4:57:8 | "#id" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:4:57:8 | "#id" | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:4:57:8 | "#id" | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:15:57:15 | 0 | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:15:57:15 | 0 | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:15:57:15 | 0 | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:15:57:15 | 0 | NosqlInjection | notASinkReason | DOM | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:15:57:15 | 0 | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:15:57:15 | 0 | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:15:57:15 | 0 | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:15:57:15 | 0 | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:15:57:15 | 0 | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:15:57:15 | 0 | SqlInjection | notASinkReason | DOM | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:15:57:15 | 0 | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:15:57:15 | 0 | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:15:57:15 | 0 | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:15:57:15 | 0 | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:15:57:15 | 0 | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:15:57:15 | 0 | TaintedPath | notASinkReason | DOM | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:15:57:15 | 0 | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:15:57:15 | 0 | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:15:57:15 | 0 | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:15:57:15 | 0 | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:15:57:15 | 0 | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:15:57:15 | 0 | Xss | notASinkReason | DOM | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:15:57:15 | 0 | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:15:57:15 | 0 | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:30:57:67 | $("inpu ... "name") | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:30:57:67 | $("inpu ... "name") | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:30:57:67 | $("inpu ... "name") | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:30:57:67 | $("inpu ... "name") | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:32:57:38 | "input" | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:32:57:38 | "input" | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:32:57:38 | "input" | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:32:57:38 | "input" | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:32:57:38 | "input" | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:32:57:38 | "input" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:32:57:38 | "input" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:32:57:38 | "input" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:32:57:38 | "input" | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:32:57:38 | "input" | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:32:57:38 | "input" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:32:57:38 | "input" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:32:57:38 | "input" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:32:57:38 | "input" | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:32:57:38 | "input" | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:32:57:38 | "input" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:32:57:38 | "input" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:32:57:38 | "input" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:32:57:38 | "input" | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:32:57:38 | "input" | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:45:57:45 | 0 | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:45:57:45 | 0 | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:45:57:45 | 0 | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:45:57:45 | 0 | NosqlInjection | notASinkReason | DOM | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:45:57:45 | 0 | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:45:57:45 | 0 | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:45:57:45 | 0 | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:45:57:45 | 0 | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:45:57:45 | 0 | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:45:57:45 | 0 | SqlInjection | notASinkReason | DOM | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:45:57:45 | 0 | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:45:57:45 | 0 | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:45:57:45 | 0 | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:45:57:45 | 0 | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:45:57:45 | 0 | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:45:57:45 | 0 | TaintedPath | notASinkReason | DOM | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:45:57:45 | 0 | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:45:57:45 | 0 | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:45:57:45 | 0 | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:45:57:45 | 0 | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:45:57:45 | 0 | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:45:57:45 | 0 | Xss | notASinkReason | DOM | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:45:57:45 | 0 | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:45:57:45 | 0 | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:61:57:66 | "name" | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:61:57:66 | "name" | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:61:57:66 | "name" | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:61:57:66 | "name" | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:61:57:66 | "name" | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:61:57:66 | "name" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:61:57:66 | "name" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:61:57:66 | "name" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:61:57:66 | "name" | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:61:57:66 | "name" | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:61:57:66 | "name" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:61:57:66 | "name" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:61:57:66 | "name" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:61:57:66 | "name" | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:61:57:66 | "name" | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:61:57:66 | "name" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:61:57:66 | "name" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:61:57:66 | "name" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:61:57:66 | "name" | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:61:57:66 | "name" | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:4:59:8 | "#id" | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:4:59:8 | "#id" | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:4:59:8 | "#id" | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:4:59:8 | "#id" | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:4:59:8 | "#id" | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:4:59:8 | "#id" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:4:59:8 | "#id" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:4:59:8 | "#id" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:4:59:8 | "#id" | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:4:59:8 | "#id" | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:4:59:8 | "#id" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:4:59:8 | "#id" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:4:59:8 | "#id" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:4:59:8 | "#id" | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:4:59:8 | "#id" | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:4:59:8 | "#id" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:4:59:8 | "#id" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:4:59:8 | "#id" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:4:59:8 | "#id" | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:4:59:8 | "#id" | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:15:59:15 | 0 | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:15:59:15 | 0 | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:15:59:15 | 0 | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:15:59:15 | 0 | NosqlInjection | notASinkReason | DOM | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:15:59:15 | 0 | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:15:59:15 | 0 | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:15:59:15 | 0 | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:15:59:15 | 0 | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:15:59:15 | 0 | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:15:59:15 | 0 | SqlInjection | notASinkReason | DOM | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:15:59:15 | 0 | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:15:59:15 | 0 | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:15:59:15 | 0 | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:15:59:15 | 0 | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:15:59:15 | 0 | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:15:59:15 | 0 | TaintedPath | notASinkReason | DOM | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:15:59:15 | 0 | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:15:59:15 | 0 | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:15:59:15 | 0 | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:15:59:15 | 0 | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:15:59:15 | 0 | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:15:59:15 | 0 | Xss | notASinkReason | DOM | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:15:59:15 | 0 | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:15:59:15 | 0 | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:30:59:58 | $("inpu ... e("id") | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:30:59:58 | $("inpu ... e("id") | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:30:59:58 | $("inpu ... e("id") | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:30:59:58 | $("inpu ... e("id") | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:32:59:38 | "input" | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:32:59:38 | "input" | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:32:59:38 | "input" | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:32:59:38 | "input" | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:32:59:38 | "input" | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:32:59:38 | "input" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:32:59:38 | "input" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:32:59:38 | "input" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:32:59:38 | "input" | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:32:59:38 | "input" | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:32:59:38 | "input" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:32:59:38 | "input" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:32:59:38 | "input" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:32:59:38 | "input" | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:32:59:38 | "input" | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:32:59:38 | "input" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:32:59:38 | "input" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:32:59:38 | "input" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:32:59:38 | "input" | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:32:59:38 | "input" | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:54:59:57 | "id" | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:54:59:57 | "id" | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:54:59:57 | "id" | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:54:59:57 | "id" | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:54:59:57 | "id" | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:54:59:57 | "id" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:54:59:57 | "id" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:54:59:57 | "id" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:54:59:57 | "id" | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:54:59:57 | "id" | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:54:59:57 | "id" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:54:59:57 | "id" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:54:59:57 | "id" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:54:59:57 | "id" | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:54:59:57 | "id" | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:54:59:57 | "id" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:54:59:57 | "id" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:54:59:57 | "id" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:54:59:57 | "id" | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:54:59:57 | "id" | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:4:61:8 | "#id" | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:4:61:8 | "#id" | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:4:61:8 | "#id" | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:4:61:8 | "#id" | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:4:61:8 | "#id" | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:4:61:8 | "#id" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:4:61:8 | "#id" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:4:61:8 | "#id" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:4:61:8 | "#id" | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:4:61:8 | "#id" | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:4:61:8 | "#id" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:4:61:8 | "#id" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:4:61:8 | "#id" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:4:61:8 | "#id" | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:4:61:8 | "#id" | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:4:61:8 | "#id" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:4:61:8 | "#id" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:4:61:8 | "#id" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:4:61:8 | "#id" | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:4:61:8 | "#id" | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:15:61:15 | 0 | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:15:61:15 | 0 | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:15:61:15 | 0 | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:15:61:15 | 0 | NosqlInjection | notASinkReason | DOM | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:15:61:15 | 0 | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:15:61:15 | 0 | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:15:61:15 | 0 | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:15:61:15 | 0 | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:15:61:15 | 0 | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:15:61:15 | 0 | SqlInjection | notASinkReason | DOM | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:15:61:15 | 0 | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:15:61:15 | 0 | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:15:61:15 | 0 | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:15:61:15 | 0 | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:15:61:15 | 0 | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:15:61:15 | 0 | TaintedPath | notASinkReason | DOM | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:15:61:15 | 0 | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:15:61:15 | 0 | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:15:61:15 | 0 | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:15:61:15 | 0 | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:15:61:15 | 0 | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:15:61:15 | 0 | Xss | notASinkReason | DOM | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:15:61:15 | 0 | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:15:61:15 | 0 | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:30:61:69 | $(docum ... value") | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:30:61:69 | $(docum ... value") | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:30:61:69 | $(docum ... value") | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:30:61:69 | $(docum ... value") | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:32:61:39 | document | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:32:61:39 | document | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:32:61:39 | document | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:32:61:39 | document | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:47:61:54 | "option" | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:47:61:54 | "option" | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:47:61:54 | "option" | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:47:61:54 | "option" | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:47:61:54 | "option" | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:47:61:54 | "option" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:47:61:54 | "option" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:47:61:54 | "option" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:47:61:54 | "option" | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:47:61:54 | "option" | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:47:61:54 | "option" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:47:61:54 | "option" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:47:61:54 | "option" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:47:61:54 | "option" | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:47:61:54 | "option" | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:47:61:54 | "option" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:47:61:54 | "option" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:47:61:54 | "option" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:47:61:54 | "option" | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:47:61:54 | "option" | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:62:61:68 | "value" | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:62:61:68 | "value" | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:62:61:68 | "value" | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:62:61:68 | "value" | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:62:61:68 | "value" | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:62:61:68 | "value" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:62:61:68 | "value" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:62:61:68 | "value" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:62:61:68 | "value" | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:62:61:68 | "value" | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:62:61:68 | "value" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:62:61:68 | "value" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:62:61:68 | "value" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:62:61:68 | "value" | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:62:61:68 | "value" | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:62:61:68 | "value" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:62:61:68 | "value" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:62:61:68 | "value" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:62:61:68 | "value" | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:62:61:68 | "value" | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:63:20:63:29 | "textarea" | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:63:20:63:29 | "textarea" | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:63:20:63:29 | "textarea" | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:63:20:63:29 | "textarea" | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:63:20:63:29 | "textarea" | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:63:20:63:29 | "textarea" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:63:20:63:29 | "textarea" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:63:20:63:29 | "textarea" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:63:20:63:29 | "textarea" | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:63:20:63:29 | "textarea" | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:63:20:63:29 | "textarea" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:63:20:63:29 | "textarea" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:63:20:63:29 | "textarea" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:63:20:63:29 | "textarea" | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:63:20:63:29 | "textarea" | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:63:20:63:29 | "textarea" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:63:20:63:29 | "textarea" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:63:20:63:29 | "textarea" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:63:20:63:29 | "textarea" | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:63:20:63:29 | "textarea" | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:64:4:64:8 | "#id" | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:64:4:64:8 | "#id" | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:64:4:64:8 | "#id" | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:64:4:64:8 | "#id" | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:64:4:64:8 | "#id" | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:64:4:64:8 | "#id" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:64:4:64:8 | "#id" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:64:4:64:8 | "#id" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:64:4:64:8 | "#id" | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:64:4:64:8 | "#id" | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:64:4:64:8 | "#id" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:64:4:64:8 | "#id" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:64:4:64:8 | "#id" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:64:4:64:8 | "#id" | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:64:4:64:8 | "#id" | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:64:4:64:8 | "#id" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:64:4:64:8 | "#id" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:64:4:64:8 | "#id" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:64:4:64:8 | "#id" | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:64:4:64:8 | "#id" | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:64:15:64:15 | 0 | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:64:15:64:15 | 0 | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:64:15:64:15 | 0 | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:64:15:64:15 | 0 | NosqlInjection | notASinkReason | DOM | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:64:15:64:15 | 0 | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:64:15:64:15 | 0 | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:64:15:64:15 | 0 | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:64:15:64:15 | 0 | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:64:15:64:15 | 0 | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:64:15:64:15 | 0 | SqlInjection | notASinkReason | DOM | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:64:15:64:15 | 0 | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:64:15:64:15 | 0 | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:64:15:64:15 | 0 | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:64:15:64:15 | 0 | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:64:15:64:15 | 0 | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:64:15:64:15 | 0 | TaintedPath | notASinkReason | DOM | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:64:15:64:15 | 0 | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:64:15:64:15 | 0 | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:64:15:64:15 | 0 | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:64:15:64:15 | 0 | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:64:15:64:15 | 0 | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:64:15:64:15 | 0 | Xss | notASinkReason | DOM | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:64:15:64:15 | 0 | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:64:15:64:15 | 0 | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:64:30:64:40 | valMethod() | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:64:30:64:40 | valMethod() | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:64:30:64:40 | valMethod() | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:64:30:64:40 | valMethod() | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:66:18:66:25 | document | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:66:18:66:25 | document | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:66:18:66:25 | document | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:66:18:66:25 | document | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:66:33:66:40 | "option" | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:66:33:66:40 | "option" | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:66:33:66:40 | "option" | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:66:33:66:40 | "option" | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:66:33:66:40 | "option" | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:66:33:66:40 | "option" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:66:33:66:40 | "option" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:66:33:66:40 | "option" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:66:33:66:40 | "option" | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:66:33:66:40 | "option" | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:66:33:66:40 | "option" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:66:33:66:40 | "option" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:66:33:66:40 | "option" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:66:33:66:40 | "option" | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:66:33:66:40 | "option" | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:66:33:66:40 | "option" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:66:33:66:40 | "option" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:66:33:66:40 | "option" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:66:33:66:40 | "option" | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:66:33:66:40 | "option" | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:66:48:66:54 | "value" | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:66:48:66:54 | "value" | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:66:48:66:54 | "value" | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:66:48:66:54 | "value" | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:66:48:66:54 | "value" | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:66:48:66:54 | "value" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:66:48:66:54 | "value" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:66:48:66:54 | "value" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:66:48:66:54 | "value" | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:66:48:66:54 | "value" | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:66:48:66:54 | "value" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:66:48:66:54 | "value" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:66:48:66:54 | "value" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:66:48:66:54 | "value" | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:66:48:66:54 | "value" | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:66:48:66:54 | "value" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:66:48:66:54 | "value" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:66:48:66:54 | "value" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:66:48:66:54 | "value" | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:66:48:66:54 | "value" | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:68:5:68:9 | "#id" | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:68:5:68:9 | "#id" | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:68:5:68:9 | "#id" | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:68:5:68:9 | "#id" | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:68:5:68:9 | "#id" | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:68:5:68:9 | "#id" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:68:5:68:9 | "#id" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:68:5:68:9 | "#id" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:68:5:68:9 | "#id" | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:68:5:68:9 | "#id" | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:68:5:68:9 | "#id" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:68:5:68:9 | "#id" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:68:5:68:9 | "#id" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:68:5:68:9 | "#id" | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:68:5:68:9 | "#id" | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:68:5:68:9 | "#id" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:68:5:68:9 | "#id" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:68:5:68:9 | "#id" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:68:5:68:9 | "#id" | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:68:5:68:9 | "#id" | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:68:16:68:16 | 0 | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:68:16:68:16 | 0 | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:68:16:68:16 | 0 | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:68:16:68:16 | 0 | NosqlInjection | notASinkReason | DOM | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:68:16:68:16 | 0 | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:68:16:68:16 | 0 | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:68:16:68:16 | 0 | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:68:16:68:16 | 0 | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:68:16:68:16 | 0 | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:68:16:68:16 | 0 | SqlInjection | notASinkReason | DOM | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:68:16:68:16 | 0 | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:68:16:68:16 | 0 | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:68:16:68:16 | 0 | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:68:16:68:16 | 0 | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:68:16:68:16 | 0 | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:68:16:68:16 | 0 | TaintedPath | notASinkReason | DOM | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:68:16:68:16 | 0 | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:68:16:68:16 | 0 | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:68:16:68:16 | 0 | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:68:16:68:16 | 0 | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:68:16:68:16 | 0 | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:68:16:68:16 | 0 | Xss | notASinkReason | DOM | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:68:16:68:16 | 0 | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:68:16:68:16 | 0 | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:68:31:68:37 | myValue | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:68:31:68:37 | myValue | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:68:31:68:37 | myValue | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:68:31:68:37 | myValue | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:71:11:71:32 | $("inpu ... 0).name | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:71:11:71:32 | $("inpu ... 0).name | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:71:11:71:32 | $("inpu ... 0).name | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:71:11:71:32 | $("inpu ... 0).name | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:71:13:71:19 | "input" | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:71:13:71:19 | "input" | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:71:13:71:19 | "input" | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:71:13:71:19 | "input" | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:71:13:71:19 | "input" | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:71:13:71:19 | "input" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:71:13:71:19 | "input" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:71:13:71:19 | "input" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:71:13:71:19 | "input" | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:71:13:71:19 | "input" | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:71:13:71:19 | "input" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:71:13:71:19 | "input" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:71:13:71:19 | "input" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:71:13:71:19 | "input" | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:71:13:71:19 | "input" | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:71:13:71:19 | "input" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:71:13:71:19 | "input" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:71:13:71:19 | "input" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:71:13:71:19 | "input" | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:71:13:71:19 | "input" | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:71:26:71:26 | 0 | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:71:26:71:26 | 0 | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:71:26:71:26 | 0 | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:71:26:71:26 | 0 | NosqlInjection | notASinkReason | DOM | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:71:26:71:26 | 0 | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:71:26:71:26 | 0 | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:71:26:71:26 | 0 | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:71:26:71:26 | 0 | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:71:26:71:26 | 0 | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:71:26:71:26 | 0 | SqlInjection | notASinkReason | DOM | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:71:26:71:26 | 0 | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:71:26:71:26 | 0 | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:71:26:71:26 | 0 | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:71:26:71:26 | 0 | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:71:26:71:26 | 0 | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:71:26:71:26 | 0 | TaintedPath | notASinkReason | DOM | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:71:26:71:26 | 0 | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:71:26:71:26 | 0 | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:71:26:71:26 | 0 | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:71:26:71:26 | 0 | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:71:26:71:26 | 0 | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:71:26:71:26 | 0 | Xss | notASinkReason | DOM | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:71:26:71:26 | 0 | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:71:26:71:26 | 0 | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:73:22:73:28 | "input" | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:73:22:73:28 | "input" | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:73:22:73:28 | "input" | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:73:22:73:28 | "input" | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:73:22:73:28 | "input" | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:73:22:73:28 | "input" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:73:22:73:28 | "input" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:73:22:73:28 | "input" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:73:22:73:28 | "input" | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:73:22:73:28 | "input" | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:73:22:73:28 | "input" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:73:22:73:28 | "input" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:73:22:73:28 | "input" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:73:22:73:28 | "input" | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:73:22:73:28 | "input" | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:73:22:73:28 | "input" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:73:22:73:28 | "input" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:73:22:73:28 | "input" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:73:22:73:28 | "input" | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:73:22:73:28 | "input" | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:73:35:73:35 | 0 | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:73:35:73:35 | 0 | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:73:35:73:35 | 0 | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:73:35:73:35 | 0 | NosqlInjection | notASinkReason | DOM | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:73:35:73:35 | 0 | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:73:35:73:35 | 0 | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:73:35:73:35 | 0 | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:73:35:73:35 | 0 | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:73:35:73:35 | 0 | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:73:35:73:35 | 0 | SqlInjection | notASinkReason | DOM | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:73:35:73:35 | 0 | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:73:35:73:35 | 0 | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:73:35:73:35 | 0 | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:73:35:73:35 | 0 | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:73:35:73:35 | 0 | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:73:35:73:35 | 0 | TaintedPath | notASinkReason | DOM | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:73:35:73:35 | 0 | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:73:35:73:35 | 0 | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:73:35:73:35 | 0 | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:73:35:73:35 | 0 | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:73:35:73:35 | 0 | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:73:35:73:35 | 0 | Xss | notASinkReason | DOM | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:73:35:73:35 | 0 | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:73:35:73:35 | 0 | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:75:22:75:31 | "textarea" | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:75:22:75:31 | "textarea" | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:75:22:75:31 | "textarea" | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:75:22:75:31 | "textarea" | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:75:22:75:31 | "textarea" | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:75:22:75:31 | "textarea" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:75:22:75:31 | "textarea" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:75:22:75:31 | "textarea" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:75:22:75:31 | "textarea" | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:75:22:75:31 | "textarea" | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:75:22:75:31 | "textarea" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:75:22:75:31 | "textarea" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:75:22:75:31 | "textarea" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:75:22:75:31 | "textarea" | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:75:22:75:31 | "textarea" | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:75:22:75:31 | "textarea" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:75:22:75:31 | "textarea" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:75:22:75:31 | "textarea" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:75:22:75:31 | "textarea" | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:75:22:75:31 | "textarea" | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:77:4:77:11 | selector | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:77:4:77:11 | selector | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:77:4:77:11 | selector | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:77:4:77:11 | selector | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:79:4:79:34 | documen ... t.value | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:79:4:79:34 | documen ... t.value | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:79:4:79:34 | documen ... t.value | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:79:4:79:34 | documen ... t.value | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:81:4:81:8 | "#id" | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:81:4:81:8 | "#id" | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:81:4:81:8 | "#id" | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:81:4:81:8 | "#id" | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:81:4:81:8 | "#id" | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:81:4:81:8 | "#id" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:81:4:81:8 | "#id" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:81:4:81:8 | "#id" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:81:4:81:8 | "#id" | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:81:4:81:8 | "#id" | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:81:4:81:8 | "#id" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:81:4:81:8 | "#id" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:81:4:81:8 | "#id" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:81:4:81:8 | "#id" | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:81:4:81:8 | "#id" | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:81:4:81:8 | "#id" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:81:4:81:8 | "#id" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:81:4:81:8 | "#id" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:81:4:81:8 | "#id" | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:81:4:81:8 | "#id" | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:81:17:81:43 | $('#foo ... rText') | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:81:17:81:43 | $('#foo ... rText') | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:81:17:81:43 | $('#foo ... rText') | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:81:17:81:43 | $('#foo ... rText') | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:81:19:81:24 | '#foo' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:81:19:81:24 | '#foo' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:81:19:81:24 | '#foo' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:81:19:81:24 | '#foo' | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:81:19:81:24 | '#foo' | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:81:19:81:24 | '#foo' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:81:19:81:24 | '#foo' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:81:19:81:24 | '#foo' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:81:19:81:24 | '#foo' | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:81:19:81:24 | '#foo' | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:81:19:81:24 | '#foo' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:81:19:81:24 | '#foo' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:81:19:81:24 | '#foo' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:81:19:81:24 | '#foo' | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:81:19:81:24 | '#foo' | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:81:19:81:24 | '#foo' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:81:19:81:24 | '#foo' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:81:19:81:24 | '#foo' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:81:19:81:24 | '#foo' | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:81:19:81:24 | '#foo' | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:81:32:81:42 | 'innerText' | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:81:32:81:42 | 'innerText' | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:81:32:81:42 | 'innerText' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:81:32:81:42 | 'innerText' | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:81:32:81:42 | 'innerText' | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:81:32:81:42 | 'innerText' | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:81:32:81:42 | 'innerText' | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:81:32:81:42 | 'innerText' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:81:32:81:42 | 'innerText' | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:81:32:81:42 | 'innerText' | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:81:32:81:42 | 'innerText' | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:81:32:81:42 | 'innerText' | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:81:32:81:42 | 'innerText' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:81:32:81:42 | 'innerText' | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:81:32:81:42 | 'innerText' | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:81:32:81:42 | 'innerText' | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:81:32:81:42 | 'innerText' | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:81:32:81:42 | 'innerText' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:81:32:81:42 | 'innerText' | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:81:32:81:42 | 'innerText' | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:83:24:83:30 | "anser" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:83:24:83:30 | "anser" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:83:24:83:30 | "anser" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:83:24:83:30 | "anser" | TaintedPath | sinkLabel | Sink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:84:17:84:22 | "text" | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:84:17:84:22 | "text" | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:84:17:84:22 | "text" | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:84:17:84:22 | "text" | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:84:17:84:22 | "text" | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:84:17:84:22 | "text" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:84:17:84:22 | "text" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:84:17:84:22 | "text" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:84:17:84:22 | "text" | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:84:17:84:22 | "text" | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:84:17:84:22 | "text" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:84:17:84:22 | "text" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:84:17:84:22 | "text" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:84:17:84:22 | "text" | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:84:17:84:22 | "text" | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:84:17:84:22 | "text" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:84:17:84:22 | "text" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:84:17:84:22 | "text" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:84:17:84:22 | "text" | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:84:17:84:22 | "text" | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:86:4:86:8 | "#id" | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:86:4:86:8 | "#id" | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:86:4:86:8 | "#id" | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:86:4:86:8 | "#id" | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:86:4:86:8 | "#id" | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:86:4:86:8 | "#id" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:86:4:86:8 | "#id" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:86:4:86:8 | "#id" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:86:4:86:8 | "#id" | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:86:4:86:8 | "#id" | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:86:4:86:8 | "#id" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:86:4:86:8 | "#id" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:86:4:86:8 | "#id" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:86:4:86:8 | "#id" | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:86:4:86:8 | "#id" | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:86:4:86:8 | "#id" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:86:4:86:8 | "#id" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:86:4:86:8 | "#id" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:86:4:86:8 | "#id" | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:86:4:86:8 | "#id" | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:86:16:86:37 | anser.a ... l(text) | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:86:16:86:37 | anser.a ... l(text) | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:86:16:86:37 | anser.a ... l(text) | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:86:16:86:37 | anser.a ... l(text) | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:87:4:87:8 | "#id" | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:87:4:87:8 | "#id" | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:87:4:87:8 | "#id" | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:87:4:87:8 | "#id" | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:87:4:87:8 | "#id" | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:87:4:87:8 | "#id" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:87:4:87:8 | "#id" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:87:4:87:8 | "#id" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:87:4:87:8 | "#id" | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:87:4:87:8 | "#id" | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:87:4:87:8 | "#id" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:87:4:87:8 | "#id" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:87:4:87:8 | "#id" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:87:4:87:8 | "#id" | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:87:4:87:8 | "#id" | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:87:4:87:8 | "#id" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:87:4:87:8 | "#id" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:87:4:87:8 | "#id" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:87:4:87:8 | "#id" | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:87:4:87:8 | "#id" | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:87:16:87:40 | new ans ... s(text) | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:87:16:87:40 | new ans ... s(text) | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:87:16:87:40 | new ans ... s(text) | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:87:16:87:40 | new ans ... s(text) | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:89:4:89:15 | "section h1" | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:89:4:89:15 | "section h1" | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:89:4:89:15 | "section h1" | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:89:4:89:15 | "section h1" | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:89:4:89:15 | "section h1" | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:89:4:89:15 | "section h1" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:89:4:89:15 | "section h1" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:89:4:89:15 | "section h1" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:89:4:89:15 | "section h1" | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:89:4:89:15 | "section h1" | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:89:4:89:15 | "section h1" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:89:4:89:15 | "section h1" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:89:4:89:15 | "section h1" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:89:4:89:15 | "section h1" | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:89:4:89:15 | "section h1" | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:89:4:89:15 | "section h1" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:89:4:89:15 | "section h1" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:89:4:89:15 | "section h1" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:89:4:89:15 | "section h1" | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:89:4:89:15 | "section h1" | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:89:23:91:2 | functio ... / OK\\n\\t} | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:89:23:91:2 | functio ... / OK\\n\\t} | NosqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:89:23:91:2 | functio ... / OK\\n\\t} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:89:23:91:2 | functio ... / OK\\n\\t} | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:89:23:91:2 | functio ... / OK\\n\\t} | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:89:23:91:2 | functio ... / OK\\n\\t} | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:89:23:91:2 | functio ... / OK\\n\\t} | SqlInjection | isConstantExpression | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:89:23:91:2 | functio ... / OK\\n\\t} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:89:23:91:2 | functio ... / OK\\n\\t} | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:89:23:91:2 | functio ... / OK\\n\\t} | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:89:23:91:2 | functio ... / OK\\n\\t} | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:89:23:91:2 | functio ... / OK\\n\\t} | TaintedPath | isConstantExpression | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:89:23:91:2 | functio ... / OK\\n\\t} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:89:23:91:2 | functio ... / OK\\n\\t} | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:89:23:91:2 | functio ... / OK\\n\\t} | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:89:23:91:2 | functio ... / OK\\n\\t} | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:89:23:91:2 | functio ... / OK\\n\\t} | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:89:23:91:2 | functio ... / OK\\n\\t} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:89:23:91:2 | functio ... / OK\\n\\t} | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:89:23:91:2 | functio ... / OK\\n\\t} | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:5:90:12 | "nav ul" | NosqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:5:90:12 | "nav ul" | NosqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:5:90:12 | "nav ul" | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:5:90:12 | "nav ul" | NosqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:5:90:12 | "nav ul" | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:5:90:12 | "nav ul" | SqlInjection | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:5:90:12 | "nav ul" | SqlInjection | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:5:90:12 | "nav ul" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:5:90:12 | "nav ul" | SqlInjection | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:5:90:12 | "nav ul" | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:5:90:12 | "nav ul" | TaintedPath | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:5:90:12 | "nav ul" | TaintedPath | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:5:90:12 | "nav ul" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:5:90:12 | "nav ul" | TaintedPath | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:5:90:12 | "nav ul" | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:5:90:12 | "nav ul" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:5:90:12 | "nav ul" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:5:90:12 | "nav ul" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:5:90:12 | "nav ul" | Xss | notASinkReason | JQueryArgument | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:5:90:12 | "nav ul" | Xss | sinkLabel | NotASink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:22:90:33 | "<a href='#" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:22:90:33 | "<a href='#" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:22:90:33 | "<a href='#" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:22:90:33 | "<a href='#" | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:22:90:124 | "<a hre ... on</a>" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:22:90:124 | "<a hre ... on</a>" | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:22:90:124 | "<a hre ... on</a>" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:22:90:124 | "<a hre ... on</a>" | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:37:90:106 | $(this) ... +/g,'') | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:37:90:106 | $(this) ... +/g,'') | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:37:90:106 | $(this) ... +/g,'') | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:37:90:106 | $(this) ... +/g,'') | Xss | sinkLabel | Unknown | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:39:90:42 | this | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:39:90:42 | this | Xss | isConstantExpression | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:39:90:42 | this | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:39:90:42 | this | Xss | sinkLabel | Sink | string |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:110:90:124 | "'>Section</a>" | Xss | hasFlowFromSource | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:110:90:124 | "'>Section</a>" | Xss | isConstantExpression | true | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:110:90:124 | "'>Section</a>" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:110:90:124 | "'>Section</a>" | Xss | sinkLabel | Unknown | string |
-| index.js:1:20:1:23 | "fs" | TaintedPath | hasFlowFromSource | false | boolean |
-| index.js:1:20:1:23 | "fs" | TaintedPath | isConstantExpression | true | boolean |
-| index.js:1:20:1:23 | "fs" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| index.js:1:20:1:23 | "fs" | TaintedPath | sinkLabel | Sink | string |
-| index.js:16:19:16:30 | "underscore" | TaintedPath | hasFlowFromSource | false | boolean |
-| index.js:16:19:16:30 | "underscore" | TaintedPath | isConstantExpression | true | boolean |
-| index.js:16:19:16:30 | "underscore" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| index.js:16:19:16:30 | "underscore" | TaintedPath | sinkLabel | Sink | string |
-| index.js:17:16:17:30 | "child_process" | TaintedPath | hasFlowFromSource | false | boolean |
-| index.js:17:16:17:30 | "child_process" | TaintedPath | isConstantExpression | true | boolean |
-| index.js:17:16:17:30 | "child_process" | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| index.js:17:16:17:30 | "child_process" | TaintedPath | sinkLabel | Sink | string |
-| index.js:21:9:21:9 | x | NosqlInjection | hasFlowFromSource | false | boolean |
-| index.js:21:9:21:9 | x | NosqlInjection | isConstantExpression | false | boolean |
-| index.js:21:9:21:9 | x | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| index.js:21:9:21:9 | x | NosqlInjection | notASinkReason | LodashUnderscoreArgument | string |
-| index.js:21:9:21:9 | x | NosqlInjection | sinkLabel | NotASink | string |
-| index.js:21:9:21:9 | x | SqlInjection | hasFlowFromSource | false | boolean |
-| index.js:21:9:21:9 | x | SqlInjection | isConstantExpression | false | boolean |
-| index.js:21:9:21:9 | x | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| index.js:21:9:21:9 | x | SqlInjection | notASinkReason | LodashUnderscoreArgument | string |
-| index.js:21:9:21:9 | x | SqlInjection | sinkLabel | NotASink | string |
-| index.js:21:9:21:9 | x | TaintedPath | hasFlowFromSource | false | boolean |
-| index.js:21:9:21:9 | x | TaintedPath | isConstantExpression | false | boolean |
-| index.js:21:9:21:9 | x | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| index.js:21:9:21:9 | x | TaintedPath | notASinkReason | LodashUnderscoreArgument | string |
-| index.js:21:9:21:9 | x | TaintedPath | sinkLabel | NotASink | string |
-| index.js:21:9:21:9 | x | Xss | hasFlowFromSource | false | boolean |
-| index.js:21:9:21:9 | x | Xss | isConstantExpression | false | boolean |
-| index.js:21:9:21:9 | x | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| index.js:21:9:21:9 | x | Xss | notASinkReason | LodashUnderscoreArgument | string |
-| index.js:21:9:21:9 | x | Xss | sinkLabel | NotASink | string |
-| index.js:25:26:25:35 | 'mongoose' | TaintedPath | hasFlowFromSource | false | boolean |
-| index.js:25:26:25:35 | 'mongoose' | TaintedPath | isConstantExpression | true | boolean |
-| index.js:25:26:25:35 | 'mongoose' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| index.js:25:26:25:35 | 'mongoose' | TaintedPath | sinkLabel | Sink | string |
-| index.js:26:25:26:30 | 'User' | NosqlInjection | hasFlowFromSource | false | boolean |
-| index.js:26:25:26:30 | 'User' | NosqlInjection | isConstantExpression | true | boolean |
-| index.js:26:25:26:30 | 'User' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| index.js:26:25:26:30 | 'User' | NosqlInjection | sinkLabel | Unknown | string |
-| index.js:26:25:26:30 | 'User' | SqlInjection | hasFlowFromSource | false | boolean |
-| index.js:26:25:26:30 | 'User' | SqlInjection | isConstantExpression | true | boolean |
-| index.js:26:25:26:30 | 'User' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| index.js:26:25:26:30 | 'User' | SqlInjection | sinkLabel | Unknown | string |
-| index.js:26:25:26:30 | 'User' | TaintedPath | hasFlowFromSource | false | boolean |
-| index.js:26:25:26:30 | 'User' | TaintedPath | isConstantExpression | true | boolean |
-| index.js:26:25:26:30 | 'User' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| index.js:26:25:26:30 | 'User' | TaintedPath | sinkLabel | Unknown | string |
-| index.js:26:25:26:30 | 'User' | Xss | hasFlowFromSource | false | boolean |
-| index.js:26:25:26:30 | 'User' | Xss | isConstantExpression | true | boolean |
-| index.js:26:25:26:30 | 'User' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| index.js:26:25:26:30 | 'User' | Xss | sinkLabel | Unknown | string |
-| index.js:26:33:26:36 | null | NosqlInjection | hasFlowFromSource | false | boolean |
-| index.js:26:33:26:36 | null | NosqlInjection | isConstantExpression | true | boolean |
-| index.js:26:33:26:36 | null | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| index.js:26:33:26:36 | null | NosqlInjection | sinkLabel | Unknown | string |
-| index.js:26:33:26:36 | null | SqlInjection | hasFlowFromSource | false | boolean |
-| index.js:26:33:26:36 | null | SqlInjection | isConstantExpression | true | boolean |
-| index.js:26:33:26:36 | null | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| index.js:26:33:26:36 | null | SqlInjection | sinkLabel | Unknown | string |
-| index.js:26:33:26:36 | null | TaintedPath | hasFlowFromSource | false | boolean |
-| index.js:26:33:26:36 | null | TaintedPath | isConstantExpression | true | boolean |
-| index.js:26:33:26:36 | null | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| index.js:26:33:26:36 | null | TaintedPath | sinkLabel | Unknown | string |
-| index.js:26:33:26:36 | null | Xss | hasFlowFromSource | false | boolean |
-| index.js:26:33:26:36 | null | Xss | isConstantExpression | true | boolean |
-| index.js:26:33:26:36 | null | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| index.js:26:33:26:36 | null | Xss | sinkLabel | Unknown | string |
-| index.js:29:13:29:31 | { 'isAdmin': true } | NosqlInjection | hasFlowFromSource | false | boolean |
-| index.js:29:13:29:31 | { 'isAdmin': true } | NosqlInjection | isConstantExpression | false | boolean |
-| index.js:29:13:29:31 | { 'isAdmin': true } | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| index.js:29:13:29:31 | { 'isAdmin': true } | NosqlInjection | sinkLabel | Sink | string |
-| index.js:29:26:29:29 | true | SqlInjection | hasFlowFromSource | false | boolean |
-| index.js:29:26:29:29 | true | SqlInjection | isConstantExpression | true | boolean |
-| index.js:29:26:29:29 | true | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| index.js:29:26:29:29 | true | SqlInjection | sinkLabel | Unknown | string |
-| index.js:29:26:29:29 | true | TaintedPath | hasFlowFromSource | false | boolean |
-| index.js:29:26:29:29 | true | TaintedPath | isConstantExpression | true | boolean |
-| index.js:29:26:29:29 | true | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| index.js:29:26:29:29 | true | TaintedPath | sinkLabel | Unknown | string |
-| index.js:29:26:29:29 | true | Xss | hasFlowFromSource | false | boolean |
-| index.js:29:26:29:29 | true | Xss | isConstantExpression | true | boolean |
-| index.js:29:26:29:29 | true | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| index.js:29:26:29:29 | true | Xss | sinkLabel | Unknown | string |
-| index.js:30:11:38:5 | functio ... }\\n    } | NosqlInjection | hasFlowFromSource | false | boolean |
-| index.js:30:11:38:5 | functio ... }\\n    } | NosqlInjection | isConstantExpression | false | boolean |
-| index.js:30:11:38:5 | functio ... }\\n    } | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| index.js:30:11:38:5 | functio ... }\\n    } | NosqlInjection | notASinkReason | DatabaseAccess | string |
-| index.js:30:11:38:5 | functio ... }\\n    } | NosqlInjection | sinkLabel | NotASink | string |
-| index.js:30:11:38:5 | functio ... }\\n    } | SqlInjection | hasFlowFromSource | false | boolean |
-| index.js:30:11:38:5 | functio ... }\\n    } | SqlInjection | isConstantExpression | false | boolean |
-| index.js:30:11:38:5 | functio ... }\\n    } | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| index.js:30:11:38:5 | functio ... }\\n    } | SqlInjection | notASinkReason | DatabaseAccess | string |
-| index.js:30:11:38:5 | functio ... }\\n    } | SqlInjection | sinkLabel | NotASink | string |
-| index.js:30:11:38:5 | functio ... }\\n    } | TaintedPath | hasFlowFromSource | false | boolean |
-| index.js:30:11:38:5 | functio ... }\\n    } | TaintedPath | isConstantExpression | false | boolean |
-| index.js:30:11:38:5 | functio ... }\\n    } | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| index.js:30:11:38:5 | functio ... }\\n    } | TaintedPath | notASinkReason | DatabaseAccess | string |
-| index.js:30:11:38:5 | functio ... }\\n    } | TaintedPath | sinkLabel | NotASink | string |
-| index.js:30:11:38:5 | functio ... }\\n    } | Xss | hasFlowFromSource | false | boolean |
-| index.js:30:11:38:5 | functio ... }\\n    } | Xss | isConstantExpression | false | boolean |
-| index.js:30:11:38:5 | functio ... }\\n    } | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| index.js:30:11:38:5 | functio ... }\\n    } | Xss | notASinkReason | DatabaseAccess | string |
-| index.js:30:11:38:5 | functio ... }\\n    } | Xss | sinkLabel | NotASink | string |
-| index.js:36:21:36:33 | adminUsers[i] | NosqlInjection | hasFlowFromSource | false | boolean |
-| index.js:36:21:36:33 | adminUsers[i] | NosqlInjection | isConstantExpression | false | boolean |
-| index.js:36:21:36:33 | adminUsers[i] | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| index.js:36:21:36:33 | adminUsers[i] | NosqlInjection | notASinkReason | LoggerMethod | string |
-| index.js:36:21:36:33 | adminUsers[i] | NosqlInjection | sinkLabel | NotASink | string |
-| index.js:36:21:36:33 | adminUsers[i] | SqlInjection | hasFlowFromSource | false | boolean |
-| index.js:36:21:36:33 | adminUsers[i] | SqlInjection | isConstantExpression | false | boolean |
-| index.js:36:21:36:33 | adminUsers[i] | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| index.js:36:21:36:33 | adminUsers[i] | SqlInjection | notASinkReason | LoggerMethod | string |
-| index.js:36:21:36:33 | adminUsers[i] | SqlInjection | sinkLabel | NotASink | string |
-| index.js:36:21:36:33 | adminUsers[i] | TaintedPath | hasFlowFromSource | false | boolean |
-| index.js:36:21:36:33 | adminUsers[i] | TaintedPath | isConstantExpression | false | boolean |
-| index.js:36:21:36:33 | adminUsers[i] | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| index.js:36:21:36:33 | adminUsers[i] | TaintedPath | notASinkReason | LoggerMethod | string |
-| index.js:36:21:36:33 | adminUsers[i] | TaintedPath | sinkLabel | NotASink | string |
-| index.js:36:21:36:33 | adminUsers[i] | Xss | hasFlowFromSource | false | boolean |
-| index.js:36:21:36:33 | adminUsers[i] | Xss | isConstantExpression | false | boolean |
-| index.js:36:21:36:33 | adminUsers[i] | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| index.js:36:21:36:33 | adminUsers[i] | Xss | notASinkReason | LoggerMethod | string |
-| index.js:36:21:36:33 | adminUsers[i] | Xss | sinkLabel | NotASink | string |
-| index.js:44:22:44:36 | o.success_scope | NosqlInjection | hasFlowFromSource | false | boolean |
-| index.js:44:22:44:36 | o.success_scope | NosqlInjection | isConstantExpression | false | boolean |
-| index.js:44:22:44:36 | o.success_scope | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| index.js:44:22:44:36 | o.success_scope | NosqlInjection | sinkLabel | Unknown | string |
-| index.js:44:22:44:36 | o.success_scope | SqlInjection | hasFlowFromSource | false | boolean |
-| index.js:44:22:44:36 | o.success_scope | SqlInjection | isConstantExpression | false | boolean |
-| index.js:44:22:44:36 | o.success_scope | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| index.js:44:22:44:36 | o.success_scope | SqlInjection | sinkLabel | Unknown | string |
-| index.js:44:22:44:36 | o.success_scope | TaintedPath | hasFlowFromSource | false | boolean |
-| index.js:44:22:44:36 | o.success_scope | TaintedPath | isConstantExpression | false | boolean |
-| index.js:44:22:44:36 | o.success_scope | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| index.js:44:22:44:36 | o.success_scope | TaintedPath | sinkLabel | Unknown | string |
-| index.js:44:22:44:36 | o.success_scope | Xss | hasFlowFromSource | false | boolean |
-| index.js:44:22:44:36 | o.success_scope | Xss | isConstantExpression | false | boolean |
-| index.js:44:22:44:36 | o.success_scope | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| index.js:44:22:44:36 | o.success_scope | Xss | sinkLabel | Unknown | string |
-| index.js:44:39:44:57 | '' + x.responseText | NosqlInjection | hasFlowFromSource | false | boolean |
-| index.js:44:39:44:57 | '' + x.responseText | NosqlInjection | isConstantExpression | false | boolean |
-| index.js:44:39:44:57 | '' + x.responseText | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| index.js:44:39:44:57 | '' + x.responseText | NosqlInjection | sinkLabel | Unknown | string |
-| index.js:44:39:44:57 | '' + x.responseText | SqlInjection | hasFlowFromSource | false | boolean |
-| index.js:44:39:44:57 | '' + x.responseText | SqlInjection | isConstantExpression | false | boolean |
-| index.js:44:39:44:57 | '' + x.responseText | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| index.js:44:39:44:57 | '' + x.responseText | SqlInjection | sinkLabel | Unknown | string |
-| index.js:44:39:44:57 | '' + x.responseText | TaintedPath | hasFlowFromSource | false | boolean |
-| index.js:44:39:44:57 | '' + x.responseText | TaintedPath | isConstantExpression | false | boolean |
-| index.js:44:39:44:57 | '' + x.responseText | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| index.js:44:39:44:57 | '' + x.responseText | TaintedPath | sinkLabel | Unknown | string |
-| index.js:44:39:44:57 | '' + x.responseText | Xss | hasFlowFromSource | false | boolean |
-| index.js:44:39:44:57 | '' + x.responseText | Xss | isConstantExpression | false | boolean |
-| index.js:44:39:44:57 | '' + x.responseText | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| index.js:44:39:44:57 | '' + x.responseText | Xss | sinkLabel | Unknown | string |
-| index.js:44:60:44:60 | x | NosqlInjection | hasFlowFromSource | false | boolean |
-| index.js:44:60:44:60 | x | NosqlInjection | isConstantExpression | false | boolean |
-| index.js:44:60:44:60 | x | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| index.js:44:60:44:60 | x | NosqlInjection | sinkLabel | Unknown | string |
-| index.js:44:60:44:60 | x | SqlInjection | hasFlowFromSource | false | boolean |
-| index.js:44:60:44:60 | x | SqlInjection | isConstantExpression | false | boolean |
-| index.js:44:60:44:60 | x | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| index.js:44:60:44:60 | x | SqlInjection | sinkLabel | Unknown | string |
-| index.js:44:60:44:60 | x | TaintedPath | hasFlowFromSource | false | boolean |
-| index.js:44:60:44:60 | x | TaintedPath | isConstantExpression | false | boolean |
-| index.js:44:60:44:60 | x | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| index.js:44:60:44:60 | x | TaintedPath | sinkLabel | Unknown | string |
-| index.js:44:60:44:60 | x | Xss | hasFlowFromSource | false | boolean |
-| index.js:44:60:44:60 | x | Xss | isConstantExpression | false | boolean |
-| index.js:44:60:44:60 | x | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| index.js:44:60:44:60 | x | Xss | sinkLabel | Unknown | string |
-| index.js:44:63:44:63 | o | NosqlInjection | hasFlowFromSource | false | boolean |
-| index.js:44:63:44:63 | o | NosqlInjection | isConstantExpression | false | boolean |
-| index.js:44:63:44:63 | o | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| index.js:44:63:44:63 | o | NosqlInjection | sinkLabel | Unknown | string |
-| index.js:44:63:44:63 | o | SqlInjection | hasFlowFromSource | false | boolean |
-| index.js:44:63:44:63 | o | SqlInjection | isConstantExpression | false | boolean |
-| index.js:44:63:44:63 | o | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| index.js:44:63:44:63 | o | SqlInjection | sinkLabel | Unknown | string |
-| index.js:44:63:44:63 | o | TaintedPath | hasFlowFromSource | false | boolean |
-| index.js:44:63:44:63 | o | TaintedPath | isConstantExpression | false | boolean |
-| index.js:44:63:44:63 | o | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| index.js:44:63:44:63 | o | TaintedPath | sinkLabel | Unknown | string |
-| index.js:44:63:44:63 | o | Xss | hasFlowFromSource | false | boolean |
-| index.js:44:63:44:63 | o | Xss | isConstantExpression | false | boolean |
-| index.js:44:63:44:63 | o | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| index.js:44:63:44:63 | o | Xss | sinkLabel | Unknown | string |
-| index.js:46:35:46:69 | c > 100 ... ENERAL' | NosqlInjection | hasFlowFromSource | false | boolean |
-| index.js:46:35:46:69 | c > 100 ... ENERAL' | NosqlInjection | isConstantExpression | false | boolean |
-| index.js:46:35:46:69 | c > 100 ... ENERAL' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| index.js:46:35:46:69 | c > 100 ... ENERAL' | NosqlInjection | notASinkReason | LoggerMethod | string |
-| index.js:46:35:46:69 | c > 100 ... ENERAL' | NosqlInjection | sinkLabel | NotASink | string |
-| index.js:46:35:46:69 | c > 100 ... ENERAL' | SqlInjection | hasFlowFromSource | false | boolean |
-| index.js:46:35:46:69 | c > 100 ... ENERAL' | SqlInjection | isConstantExpression | false | boolean |
-| index.js:46:35:46:69 | c > 100 ... ENERAL' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| index.js:46:35:46:69 | c > 100 ... ENERAL' | SqlInjection | notASinkReason | LoggerMethod | string |
-| index.js:46:35:46:69 | c > 100 ... ENERAL' | SqlInjection | sinkLabel | NotASink | string |
-| index.js:46:35:46:69 | c > 100 ... ENERAL' | TaintedPath | hasFlowFromSource | false | boolean |
-| index.js:46:35:46:69 | c > 100 ... ENERAL' | TaintedPath | isConstantExpression | false | boolean |
-| index.js:46:35:46:69 | c > 100 ... ENERAL' | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| index.js:46:35:46:69 | c > 100 ... ENERAL' | TaintedPath | notASinkReason | LoggerMethod | string |
-| index.js:46:35:46:69 | c > 100 ... ENERAL' | TaintedPath | sinkLabel | NotASink | string |
-| index.js:46:35:46:69 | c > 100 ... ENERAL' | Xss | hasFlowFromSource | false | boolean |
-| index.js:46:35:46:69 | c > 100 ... ENERAL' | Xss | isConstantExpression | false | boolean |
-| index.js:46:35:46:69 | c > 100 ... ENERAL' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| index.js:46:35:46:69 | c > 100 ... ENERAL' | Xss | notASinkReason | LoggerMethod | string |
-| index.js:46:35:46:69 | c > 100 ... ENERAL' | Xss | sinkLabel | NotASink | string |
-| index.js:46:72:46:72 | x | NosqlInjection | hasFlowFromSource | false | boolean |
-| index.js:46:72:46:72 | x | NosqlInjection | isConstantExpression | false | boolean |
-| index.js:46:72:46:72 | x | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| index.js:46:72:46:72 | x | NosqlInjection | notASinkReason | LoggerMethod | string |
-| index.js:46:72:46:72 | x | NosqlInjection | sinkLabel | NotASink | string |
-| index.js:46:72:46:72 | x | SqlInjection | hasFlowFromSource | false | boolean |
-| index.js:46:72:46:72 | x | SqlInjection | isConstantExpression | false | boolean |
-| index.js:46:72:46:72 | x | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| index.js:46:72:46:72 | x | SqlInjection | notASinkReason | LoggerMethod | string |
-| index.js:46:72:46:72 | x | SqlInjection | sinkLabel | NotASink | string |
-| index.js:46:72:46:72 | x | TaintedPath | hasFlowFromSource | false | boolean |
-| index.js:46:72:46:72 | x | TaintedPath | isConstantExpression | false | boolean |
-| index.js:46:72:46:72 | x | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| index.js:46:72:46:72 | x | TaintedPath | notASinkReason | LoggerMethod | string |
-| index.js:46:72:46:72 | x | TaintedPath | sinkLabel | NotASink | string |
-| index.js:46:72:46:72 | x | Xss | hasFlowFromSource | false | boolean |
-| index.js:46:72:46:72 | x | Xss | isConstantExpression | false | boolean |
-| index.js:46:72:46:72 | x | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| index.js:46:72:46:72 | x | Xss | notASinkReason | LoggerMethod | string |
-| index.js:46:72:46:72 | x | Xss | sinkLabel | NotASink | string |
-| index.js:46:75:46:75 | o | NosqlInjection | hasFlowFromSource | false | boolean |
-| index.js:46:75:46:75 | o | NosqlInjection | isConstantExpression | false | boolean |
-| index.js:46:75:46:75 | o | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| index.js:46:75:46:75 | o | NosqlInjection | notASinkReason | LoggerMethod | string |
-| index.js:46:75:46:75 | o | NosqlInjection | sinkLabel | NotASink | string |
-| index.js:46:75:46:75 | o | SqlInjection | hasFlowFromSource | false | boolean |
-| index.js:46:75:46:75 | o | SqlInjection | isConstantExpression | false | boolean |
-| index.js:46:75:46:75 | o | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| index.js:46:75:46:75 | o | SqlInjection | notASinkReason | LoggerMethod | string |
-| index.js:46:75:46:75 | o | SqlInjection | sinkLabel | NotASink | string |
-| index.js:46:75:46:75 | o | TaintedPath | hasFlowFromSource | false | boolean |
-| index.js:46:75:46:75 | o | TaintedPath | isConstantExpression | false | boolean |
-| index.js:46:75:46:75 | o | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| index.js:46:75:46:75 | o | TaintedPath | notASinkReason | LoggerMethod | string |
-| index.js:46:75:46:75 | o | TaintedPath | sinkLabel | NotASink | string |
-| index.js:46:75:46:75 | o | Xss | hasFlowFromSource | false | boolean |
-| index.js:46:75:46:75 | o | Xss | isConstantExpression | false | boolean |
-| index.js:46:75:46:75 | o | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| index.js:46:75:46:75 | o | Xss | notASinkReason | LoggerMethod | string |
-| index.js:46:75:46:75 | o | Xss | sinkLabel | NotASink | string |
-| index.js:50:15:50:19 | ready | NosqlInjection | hasFlowFromSource | false | boolean |
-| index.js:50:15:50:19 | ready | NosqlInjection | isConstantExpression | false | boolean |
-| index.js:50:15:50:19 | ready | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| index.js:50:15:50:19 | ready | NosqlInjection | notASinkReason | Timeout | string |
-| index.js:50:15:50:19 | ready | NosqlInjection | sinkLabel | NotASink | string |
-| index.js:50:15:50:19 | ready | SqlInjection | hasFlowFromSource | false | boolean |
-| index.js:50:15:50:19 | ready | SqlInjection | isConstantExpression | false | boolean |
-| index.js:50:15:50:19 | ready | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| index.js:50:15:50:19 | ready | SqlInjection | notASinkReason | Timeout | string |
-| index.js:50:15:50:19 | ready | SqlInjection | sinkLabel | NotASink | string |
-| index.js:50:15:50:19 | ready | TaintedPath | hasFlowFromSource | false | boolean |
-| index.js:50:15:50:19 | ready | TaintedPath | isConstantExpression | false | boolean |
-| index.js:50:15:50:19 | ready | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| index.js:50:15:50:19 | ready | TaintedPath | notASinkReason | Timeout | string |
-| index.js:50:15:50:19 | ready | TaintedPath | sinkLabel | NotASink | string |
-| index.js:50:15:50:19 | ready | Xss | hasFlowFromSource | false | boolean |
-| index.js:50:15:50:19 | ready | Xss | isConstantExpression | false | boolean |
-| index.js:50:15:50:19 | ready | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| index.js:50:15:50:19 | ready | Xss | notASinkReason | Timeout | string |
-| index.js:50:15:50:19 | ready | Xss | sinkLabel | NotASink | string |
-| index.js:50:22:50:23 | 10 | NosqlInjection | hasFlowFromSource | false | boolean |
-| index.js:50:22:50:23 | 10 | NosqlInjection | isConstantExpression | true | boolean |
-| index.js:50:22:50:23 | 10 | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| index.js:50:22:50:23 | 10 | NosqlInjection | notASinkReason | Timeout | string |
-| index.js:50:22:50:23 | 10 | NosqlInjection | sinkLabel | NotASink | string |
-| index.js:50:22:50:23 | 10 | SqlInjection | hasFlowFromSource | false | boolean |
-| index.js:50:22:50:23 | 10 | SqlInjection | isConstantExpression | true | boolean |
-| index.js:50:22:50:23 | 10 | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
-| index.js:50:22:50:23 | 10 | SqlInjection | notASinkReason | Timeout | string |
-| index.js:50:22:50:23 | 10 | SqlInjection | sinkLabel | NotASink | string |
-| index.js:50:22:50:23 | 10 | TaintedPath | hasFlowFromSource | false | boolean |
-| index.js:50:22:50:23 | 10 | TaintedPath | isConstantExpression | true | boolean |
-| index.js:50:22:50:23 | 10 | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
-| index.js:50:22:50:23 | 10 | TaintedPath | notASinkReason | Timeout | string |
-| index.js:50:22:50:23 | 10 | TaintedPath | sinkLabel | NotASink | string |
-| index.js:50:22:50:23 | 10 | Xss | hasFlowFromSource | false | boolean |
-| index.js:50:22:50:23 | 10 | Xss | isConstantExpression | true | boolean |
-| index.js:50:22:50:23 | 10 | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
-| index.js:50:22:50:23 | 10 | Xss | notASinkReason | Timeout | string |
-| index.js:50:22:50:23 | 10 | Xss | sinkLabel | NotASink | string |
-tokenFeatures
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:3:25:3:33 | "express" | CalleeFlexibleAccessPath | require |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:3:25:3:33 | "express" | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:3:25:3:33 | "express" | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:3:25:3:33 | "express" | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:3:25:3:33 | "express" | calleeImports |  |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:3:25:3:33 | "express" | contextFunctionInterfaces | getCollection()\ngetMongooseModel()\ngetMongooseQuery() |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:3:25:3:33 | "express" | contextSurroundingFunctionParameters |  |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:3:25:3:33 | "express" | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:3:25:3:33 | "express" | enclosingFunctionName |  |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:3:25:3:33 | "express" | fileImports | body-parser express mongodb mongoose |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:3:25:3:33 | "express" | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:3:25:3:33 | "express" | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:4:28:4:40 | "body-parser" | CalleeFlexibleAccessPath | require |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:4:28:4:40 | "body-parser" | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:4:28:4:40 | "body-parser" | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:4:28:4:40 | "body-parser" | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:4:28:4:40 | "body-parser" | calleeImports |  |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:4:28:4:40 | "body-parser" | contextFunctionInterfaces | getCollection()\ngetMongooseModel()\ngetMongooseQuery() |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:4:28:4:40 | "body-parser" | contextSurroundingFunctionParameters |  |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:4:28:4:40 | "body-parser" | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:4:28:4:40 | "body-parser" | enclosingFunctionName |  |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:4:28:4:40 | "body-parser" | fileImports | body-parser express mongodb mongoose |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:4:28:4:40 | "body-parser" | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:4:28:4:40 | "body-parser" | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:10:9:10:25 | bodyParser.json() | CalleeFlexibleAccessPath | app.use |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:10:9:10:25 | bodyParser.json() | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:10:9:10:25 | bodyParser.json() | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:10:9:10:25 | bodyParser.json() | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:10:9:10:25 | bodyParser.json() | calleeImports | express |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:10:9:10:25 | bodyParser.json() | contextFunctionInterfaces | getCollection()\ngetMongooseModel()\ngetMongooseQuery() |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:10:9:10:25 | bodyParser.json() | contextSurroundingFunctionParameters |  |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:10:9:10:25 | bodyParser.json() | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:10:9:10:25 | bodyParser.json() | enclosingFunctionName |  |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:10:9:10:25 | bodyParser.json() | fileImports | body-parser express mongodb mongoose |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:10:9:10:25 | bodyParser.json() | receiverName | app |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:10:9:10:25 | bodyParser.json() | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:12:10:12:16 | "/find" | CalleeFlexibleAccessPath | app.post |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:12:10:12:16 | "/find" | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:12:10:12:16 | "/find" | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:12:10:12:16 | "/find" | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:12:10:12:16 | "/find" | calleeImports | express |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:12:10:12:16 | "/find" | contextFunctionInterfaces | getCollection()\ngetMongooseModel()\ngetMongooseQuery() |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:12:10:12:16 | "/find" | contextSurroundingFunctionParameters |  |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:12:10:12:16 | "/find" | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:12:10:12:16 | "/find" | enclosingFunctionName |  |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:12:10:12:16 | "/find" | fileImports | body-parser express mongodb mongoose |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:12:10:12:16 | "/find" | receiverName | app |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:12:10:12:16 | "/find" | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:12:19:15:1 | (req, r ... OT OK\\n} | CalleeFlexibleAccessPath | app.post |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:12:19:15:1 | (req, r ... OT OK\\n} | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:12:19:15:1 | (req, r ... OT OK\\n} | InputArgumentIndex | 1 |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:12:19:15:1 | (req, r ... OT OK\\n} | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:12:19:15:1 | (req, r ... OT OK\\n} | calleeImports | express |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:12:19:15:1 | (req, r ... OT OK\\n} | contextFunctionInterfaces | getCollection()\ngetMongooseModel()\ngetMongooseQuery() |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:12:19:15:1 | (req, r ... OT OK\\n} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:12:19:15:1 | (req, r ... OT OK\\n} | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:12:19:15:1 | (req, r ... OT OK\\n} | enclosingFunctionName |  |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:12:19:15:1 | (req, r ... OT OK\\n} | fileImports | body-parser express mongodb mongoose |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:12:19:15:1 | (req, r ... OT OK\\n} | receiverName | app |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:12:19:15:1 | (req, r ... OT OK\\n} | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:14:24:14:32 | { id: v } | CalleeFlexibleAccessPath | getCollection().find |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:14:24:14:32 | { id: v } | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:14:24:14:32 | { id: v } | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:14:24:14:32 | { id: v } | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:14:24:14:32 | { id: v } | calleeImports |  |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:14:24:14:32 | { id: v } | contextFunctionInterfaces | getCollection()\ngetMongooseModel()\ngetMongooseQuery() |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:14:24:14:32 | { id: v } | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:14:24:14:32 | { id: v } | enclosingFunctionBody | req res v JSON parse req body x getCollection find id v |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:14:24:14:32 | { id: v } | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:14:24:14:32 | { id: v } | fileImports | body-parser express mongodb mongoose |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:14:24:14:32 | { id: v } | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:14:24:14:32 | { id: v } | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:14:30:14:30 | v | CalleeFlexibleAccessPath | getCollection().find |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:14:30:14:30 | v | InputAccessPathFromCallee | 0.id |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:14:30:14:30 | v | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:14:30:14:30 | v | assignedToPropName | id |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:14:30:14:30 | v | calleeImports |  |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:14:30:14:30 | v | contextFunctionInterfaces | getCollection()\ngetMongooseModel()\ngetMongooseQuery() |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:14:30:14:30 | v | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:14:30:14:30 | v | enclosingFunctionBody | req res v JSON parse req body x getCollection find id v |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:14:30:14:30 | v | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:14:30:14:30 | v | fileImports | body-parser express mongodb mongoose |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:14:30:14:30 | v | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:14:30:14:30 | v | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:20:10:20:16 | "/find" | CalleeFlexibleAccessPath | app.post |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:20:10:20:16 | "/find" | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:20:10:20:16 | "/find" | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:20:10:20:16 | "/find" | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:20:10:20:16 | "/find" | calleeImports | express |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:20:10:20:16 | "/find" | contextFunctionInterfaces | getCollection()\ngetMongooseModel()\ngetMongooseQuery() |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:20:10:20:16 | "/find" | contextSurroundingFunctionParameters |  |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:20:10:20:16 | "/find" | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:20:10:20:16 | "/find" | enclosingFunctionName |  |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:20:10:20:16 | "/find" | fileImports | body-parser express mongodb mongoose |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:20:10:20:16 | "/find" | receiverName | app |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:20:10:20:16 | "/find" | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:20:19:24:1 | (req, r ... OT OK\\n} | CalleeFlexibleAccessPath | app.post |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:20:19:24:1 | (req, r ... OT OK\\n} | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:20:19:24:1 | (req, r ... OT OK\\n} | InputArgumentIndex | 1 |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:20:19:24:1 | (req, r ... OT OK\\n} | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:20:19:24:1 | (req, r ... OT OK\\n} | calleeImports | express |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:20:19:24:1 | (req, r ... OT OK\\n} | contextFunctionInterfaces | getCollection()\ngetMongooseModel()\ngetMongooseQuery() |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:20:19:24:1 | (req, r ... OT OK\\n} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:20:19:24:1 | (req, r ... OT OK\\n} | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:20:19:24:1 | (req, r ... OT OK\\n} | enclosingFunctionName |  |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:20:19:24:1 | (req, r ... OT OK\\n} | fileImports | body-parser express mongodb mongoose |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:20:19:24:1 | (req, r ... OT OK\\n} | receiverName | app |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:20:19:24:1 | (req, r ... OT OK\\n} | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:22:27:22:35 | { id: v } | CalleeFlexibleAccessPath | getMongooseModel().find |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:22:27:22:35 | { id: v } | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:22:27:22:35 | { id: v } | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:22:27:22:35 | { id: v } | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:22:27:22:35 | { id: v } | calleeImports |  |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:22:27:22:35 | { id: v } | contextFunctionInterfaces | getCollection()\ngetMongooseModel()\ngetMongooseQuery() |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:22:27:22:35 | { id: v } | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:22:27:22:35 | { id: v } | enclosingFunctionBody | req res v JSON parse req body x getMongooseModel find id v getMongooseQuery find id v |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:22:27:22:35 | { id: v } | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:22:27:22:35 | { id: v } | fileImports | body-parser express mongodb mongoose |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:22:27:22:35 | { id: v } | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:22:27:22:35 | { id: v } | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:22:33:22:33 | v | CalleeFlexibleAccessPath | getMongooseModel().find |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:22:33:22:33 | v | InputAccessPathFromCallee | 0.id |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:22:33:22:33 | v | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:22:33:22:33 | v | assignedToPropName | id |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:22:33:22:33 | v | calleeImports |  |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:22:33:22:33 | v | contextFunctionInterfaces | getCollection()\ngetMongooseModel()\ngetMongooseQuery() |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:22:33:22:33 | v | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:22:33:22:33 | v | enclosingFunctionBody | req res v JSON parse req body x getMongooseModel find id v getMongooseQuery find id v |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:22:33:22:33 | v | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:22:33:22:33 | v | fileImports | body-parser express mongodb mongoose |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:22:33:22:33 | v | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:22:33:22:33 | v | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:23:27:23:35 | { id: v } | CalleeFlexibleAccessPath | getMongooseQuery().find |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:23:27:23:35 | { id: v } | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:23:27:23:35 | { id: v } | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:23:27:23:35 | { id: v } | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:23:27:23:35 | { id: v } | calleeImports |  |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:23:27:23:35 | { id: v } | contextFunctionInterfaces | getCollection()\ngetMongooseModel()\ngetMongooseQuery() |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:23:27:23:35 | { id: v } | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:23:27:23:35 | { id: v } | enclosingFunctionBody | req res v JSON parse req body x getMongooseModel find id v getMongooseQuery find id v |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:23:27:23:35 | { id: v } | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:23:27:23:35 | { id: v } | fileImports | body-parser express mongodb mongoose |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:23:27:23:35 | { id: v } | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:23:27:23:35 | { id: v } | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:23:33:23:33 | v | CalleeFlexibleAccessPath | getMongooseQuery().find |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:23:33:23:33 | v | InputAccessPathFromCallee | 0.id |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:23:33:23:33 | v | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:23:33:23:33 | v | assignedToPropName | id |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:23:33:23:33 | v | calleeImports |  |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:23:33:23:33 | v | contextFunctionInterfaces | getCollection()\ngetMongooseModel()\ngetMongooseQuery() |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:23:33:23:33 | v | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:23:33:23:33 | v | enclosingFunctionBody | req res v JSON parse req body x getMongooseModel find id v getMongooseQuery find id v |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:23:33:23:33 | v | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:23:33:23:33 | v | fileImports | body-parser express mongodb mongoose |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:23:33:23:33 | v | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:23:33:23:33 | v | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/dbo.js:1:24:1:32 | "mongodb" | CalleeFlexibleAccessPath | require |
-| autogenerated/NosqlAndSqlInjection/untyped/dbo.js:1:24:1:32 | "mongodb" | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/dbo.js:1:24:1:32 | "mongodb" | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/dbo.js:1:24:1:32 | "mongodb" | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/dbo.js:1:24:1:32 | "mongodb" | calleeImports |  |
-| autogenerated/NosqlAndSqlInjection/untyped/dbo.js:1:24:1:32 | "mongodb" | contextFunctionInterfaces | connect(fn)\ndb() |
-| autogenerated/NosqlAndSqlInjection/untyped/dbo.js:1:24:1:32 | "mongodb" | contextSurroundingFunctionParameters |  |
-| autogenerated/NosqlAndSqlInjection/untyped/dbo.js:1:24:1:32 | "mongodb" | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/dbo.js:1:24:1:32 | "mongodb" | enclosingFunctionName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/dbo.js:1:24:1:32 | "mongodb" | fileImports | mongodb |
-| autogenerated/NosqlAndSqlInjection/untyped/dbo.js:1:24:1:32 | "mongodb" | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/dbo.js:1:24:1:32 | "mongodb" | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/dbo.js:8:22:8:39 | process.env.DB_URL | CalleeFlexibleAccessPath | dbClient.connect |
-| autogenerated/NosqlAndSqlInjection/untyped/dbo.js:8:22:8:39 | process.env.DB_URL | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/dbo.js:8:22:8:39 | process.env.DB_URL | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/dbo.js:8:22:8:39 | process.env.DB_URL | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/dbo.js:8:22:8:39 | process.env.DB_URL | calleeImports | mongodb |
-| autogenerated/NosqlAndSqlInjection/untyped/dbo.js:8:22:8:39 | process.env.DB_URL | contextFunctionInterfaces | connect(fn)\ndb() |
-| autogenerated/NosqlAndSqlInjection/untyped/dbo.js:8:22:8:39 | process.env.DB_URL | contextSurroundingFunctionParameters | (fn) |
-| autogenerated/NosqlAndSqlInjection/untyped/dbo.js:8:22:8:39 | process.env.DB_URL | enclosingFunctionBody | fn dbClient connect process env DB_URL err client db client db process env DB_NAME fn err |
-| autogenerated/NosqlAndSqlInjection/untyped/dbo.js:8:22:8:39 | process.env.DB_URL | enclosingFunctionName | connect |
-| autogenerated/NosqlAndSqlInjection/untyped/dbo.js:8:22:8:39 | process.env.DB_URL | fileImports | mongodb |
-| autogenerated/NosqlAndSqlInjection/untyped/dbo.js:8:22:8:39 | process.env.DB_URL | receiverName | dbClient |
-| autogenerated/NosqlAndSqlInjection/untyped/dbo.js:8:22:8:39 | process.env.DB_URL | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/dbo.js:8:42:8:43 | {} | CalleeFlexibleAccessPath | dbClient.connect |
-| autogenerated/NosqlAndSqlInjection/untyped/dbo.js:8:42:8:43 | {} | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/dbo.js:8:42:8:43 | {} | InputArgumentIndex | 1 |
-| autogenerated/NosqlAndSqlInjection/untyped/dbo.js:8:42:8:43 | {} | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/dbo.js:8:42:8:43 | {} | calleeImports | mongodb |
-| autogenerated/NosqlAndSqlInjection/untyped/dbo.js:8:42:8:43 | {} | contextFunctionInterfaces | connect(fn)\ndb() |
-| autogenerated/NosqlAndSqlInjection/untyped/dbo.js:8:42:8:43 | {} | contextSurroundingFunctionParameters | (fn) |
-| autogenerated/NosqlAndSqlInjection/untyped/dbo.js:8:42:8:43 | {} | enclosingFunctionBody | fn dbClient connect process env DB_URL err client db client db process env DB_NAME fn err |
-| autogenerated/NosqlAndSqlInjection/untyped/dbo.js:8:42:8:43 | {} | enclosingFunctionName | connect |
-| autogenerated/NosqlAndSqlInjection/untyped/dbo.js:8:42:8:43 | {} | fileImports | mongodb |
-| autogenerated/NosqlAndSqlInjection/untyped/dbo.js:8:42:8:43 | {} | receiverName | dbClient |
-| autogenerated/NosqlAndSqlInjection/untyped/dbo.js:8:42:8:43 | {} | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/dbo.js:8:46:11:5 | (err, c ... ;\\n    } | CalleeFlexibleAccessPath | dbClient.connect |
-| autogenerated/NosqlAndSqlInjection/untyped/dbo.js:8:46:11:5 | (err, c ... ;\\n    } | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/dbo.js:8:46:11:5 | (err, c ... ;\\n    } | InputArgumentIndex | 2 |
-| autogenerated/NosqlAndSqlInjection/untyped/dbo.js:8:46:11:5 | (err, c ... ;\\n    } | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/dbo.js:8:46:11:5 | (err, c ... ;\\n    } | calleeImports | mongodb |
-| autogenerated/NosqlAndSqlInjection/untyped/dbo.js:8:46:11:5 | (err, c ... ;\\n    } | contextFunctionInterfaces | connect(fn)\ndb() |
-| autogenerated/NosqlAndSqlInjection/untyped/dbo.js:8:46:11:5 | (err, c ... ;\\n    } | contextSurroundingFunctionParameters | (fn)\n(err, client) |
-| autogenerated/NosqlAndSqlInjection/untyped/dbo.js:8:46:11:5 | (err, c ... ;\\n    } | enclosingFunctionBody | fn dbClient connect process env DB_URL err client db client db process env DB_NAME fn err |
-| autogenerated/NosqlAndSqlInjection/untyped/dbo.js:8:46:11:5 | (err, c ... ;\\n    } | enclosingFunctionName | connect |
-| autogenerated/NosqlAndSqlInjection/untyped/dbo.js:8:46:11:5 | (err, c ... ;\\n    } | fileImports | mongodb |
-| autogenerated/NosqlAndSqlInjection/untyped/dbo.js:8:46:11:5 | (err, c ... ;\\n    } | receiverName | dbClient |
-| autogenerated/NosqlAndSqlInjection/untyped/dbo.js:8:46:11:5 | (err, c ... ;\\n    } | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/dbo.js:9:22:9:40 | process.env.DB_NAME | CalleeFlexibleAccessPath | client.db |
-| autogenerated/NosqlAndSqlInjection/untyped/dbo.js:9:22:9:40 | process.env.DB_NAME | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/dbo.js:9:22:9:40 | process.env.DB_NAME | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/dbo.js:9:22:9:40 | process.env.DB_NAME | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/dbo.js:9:22:9:40 | process.env.DB_NAME | calleeImports |  |
-| autogenerated/NosqlAndSqlInjection/untyped/dbo.js:9:22:9:40 | process.env.DB_NAME | contextFunctionInterfaces | connect(fn)\ndb() |
-| autogenerated/NosqlAndSqlInjection/untyped/dbo.js:9:22:9:40 | process.env.DB_NAME | contextSurroundingFunctionParameters | (fn)\n(err, client) |
-| autogenerated/NosqlAndSqlInjection/untyped/dbo.js:9:22:9:40 | process.env.DB_NAME | enclosingFunctionBody | fn dbClient connect process env DB_URL err client db client db process env DB_NAME fn err |
-| autogenerated/NosqlAndSqlInjection/untyped/dbo.js:9:22:9:40 | process.env.DB_NAME | enclosingFunctionName | connect |
-| autogenerated/NosqlAndSqlInjection/untyped/dbo.js:9:22:9:40 | process.env.DB_NAME | fileImports | mongodb |
-| autogenerated/NosqlAndSqlInjection/untyped/dbo.js:9:22:9:40 | process.env.DB_NAME | receiverName | client |
-| autogenerated/NosqlAndSqlInjection/untyped/dbo.js:9:22:9:40 | process.env.DB_NAME | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/dbo.js:10:17:10:19 | err | CalleeFlexibleAccessPath | fn |
-| autogenerated/NosqlAndSqlInjection/untyped/dbo.js:10:17:10:19 | err | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/dbo.js:10:17:10:19 | err | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/dbo.js:10:17:10:19 | err | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/dbo.js:10:17:10:19 | err | calleeImports |  |
-| autogenerated/NosqlAndSqlInjection/untyped/dbo.js:10:17:10:19 | err | contextFunctionInterfaces | connect(fn)\ndb() |
-| autogenerated/NosqlAndSqlInjection/untyped/dbo.js:10:17:10:19 | err | contextSurroundingFunctionParameters | (fn)\n(err, client) |
-| autogenerated/NosqlAndSqlInjection/untyped/dbo.js:10:17:10:19 | err | enclosingFunctionBody | fn dbClient connect process env DB_URL err client db client db process env DB_NAME fn err |
-| autogenerated/NosqlAndSqlInjection/untyped/dbo.js:10:17:10:19 | err | enclosingFunctionName | connect |
-| autogenerated/NosqlAndSqlInjection/untyped/dbo.js:10:17:10:19 | err | fileImports | mongodb |
-| autogenerated/NosqlAndSqlInjection/untyped/dbo.js:10:17:10:19 | err | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/dbo.js:10:17:10:19 | err | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:15:33:15:38 | schema | CalleeFlexibleAccessPath | ajv.compile |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:15:33:15:38 | schema | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:15:33:15:38 | schema | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:15:33:15:38 | schema | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:15:33:15:38 | schema | calleeImports | ajv |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:15:33:15:38 | schema | contextFunctionInterfaces | validate(x) |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:15:33:15:38 | schema | contextSurroundingFunctionParameters |  |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:15:33:15:38 | schema | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:15:33:15:38 | schema | enclosingFunctionName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:15:33:15:38 | schema | fileImports | ajv express mongodb |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:15:33:15:38 | schema | receiverName | ajv |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:15:33:15:38 | schema | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:21:10:21:26 | '/documents/find' | CalleeFlexibleAccessPath | app.post |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:21:10:21:26 | '/documents/find' | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:21:10:21:26 | '/documents/find' | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:21:10:21:26 | '/documents/find' | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:21:10:21:26 | '/documents/find' | calleeImports | express |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:21:10:21:26 | '/documents/find' | contextFunctionInterfaces | validate(x) |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:21:10:21:26 | '/documents/find' | contextSurroundingFunctionParameters |  |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:21:10:21:26 | '/documents/find' | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:21:10:21:26 | '/documents/find' | enclosingFunctionName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:21:10:21:26 | '/documents/find' | fileImports | ajv express mongodb |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:21:10:21:26 | '/documents/find' | receiverName | app |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:21:10:21:26 | '/documents/find' | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:21:29:37:1 | (req, r ...   });\\n} | CalleeFlexibleAccessPath | app.post |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:21:29:37:1 | (req, r ...   });\\n} | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:21:29:37:1 | (req, r ...   });\\n} | InputArgumentIndex | 1 |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:21:29:37:1 | (req, r ...   });\\n} | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:21:29:37:1 | (req, r ...   });\\n} | calleeImports | express |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:21:29:37:1 | (req, r ...   });\\n} | contextFunctionInterfaces | validate(x) |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:21:29:37:1 | (req, r ...   });\\n} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:21:29:37:1 | (req, r ...   });\\n} | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:21:29:37:1 | (req, r ...   });\\n} | enclosingFunctionName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:21:29:37:1 | (req, r ...   });\\n} | fileImports | ajv express mongodb |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:21:29:37:1 | (req, r ...   });\\n} | receiverName | app |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:21:29:37:1 | (req, r ...   });\\n} | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:22:25:22:56 | 'mongod ... 7/test' | CalleeFlexibleAccessPath | MongoClient.connect |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:22:25:22:56 | 'mongod ... 7/test' | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:22:25:22:56 | 'mongod ... 7/test' | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:22:25:22:56 | 'mongod ... 7/test' | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:22:25:22:56 | 'mongod ... 7/test' | calleeImports | mongodb |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:22:25:22:56 | 'mongod ... 7/test' | contextFunctionInterfaces | validate(x) |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:22:25:22:56 | 'mongod ... 7/test' | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:22:25:22:56 | 'mongod ... 7/test' | enclosingFunctionBody | req res MongoClient connect mongodb://localhost:27017/test err db doc db collection doc query JSON parse req query data checkSchema query doc find query ajv validate schema query doc find query validate query doc find query doc find query |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:22:25:22:56 | 'mongod ... 7/test' | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:22:25:22:56 | 'mongod ... 7/test' | fileImports | ajv express mongodb |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:22:25:22:56 | 'mongod ... 7/test' | receiverName | MongoClient |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:22:25:22:56 | 'mongod ... 7/test' | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:22:59:36:5 | (err, d ... K\\n    } | CalleeFlexibleAccessPath | MongoClient.connect |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:22:59:36:5 | (err, d ... K\\n    } | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:22:59:36:5 | (err, d ... K\\n    } | InputArgumentIndex | 1 |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:22:59:36:5 | (err, d ... K\\n    } | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:22:59:36:5 | (err, d ... K\\n    } | calleeImports | mongodb |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:22:59:36:5 | (err, d ... K\\n    } | contextFunctionInterfaces | validate(x) |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:22:59:36:5 | (err, d ... K\\n    } | contextSurroundingFunctionParameters | (req, res)\n(err, db) |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:22:59:36:5 | (err, d ... K\\n    } | enclosingFunctionBody | req res MongoClient connect mongodb://localhost:27017/test err db doc db collection doc query JSON parse req query data checkSchema query doc find query ajv validate schema query doc find query validate query doc find query doc find query |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:22:59:36:5 | (err, d ... K\\n    } | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:22:59:36:5 | (err, d ... K\\n    } | fileImports | ajv express mongodb |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:22:59:36:5 | (err, d ... K\\n    } | receiverName | MongoClient |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:22:59:36:5 | (err, d ... K\\n    } | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:23:33:23:37 | 'doc' | CalleeFlexibleAccessPath | db.collection |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:23:33:23:37 | 'doc' | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:23:33:23:37 | 'doc' | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:23:33:23:37 | 'doc' | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:23:33:23:37 | 'doc' | calleeImports |  |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:23:33:23:37 | 'doc' | contextFunctionInterfaces | validate(x) |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:23:33:23:37 | 'doc' | contextSurroundingFunctionParameters | (req, res)\n(err, db) |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:23:33:23:37 | 'doc' | enclosingFunctionBody | req res MongoClient connect mongodb://localhost:27017/test err db doc db collection doc query JSON parse req query data checkSchema query doc find query ajv validate schema query doc find query validate query doc find query doc find query |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:23:33:23:37 | 'doc' | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:23:33:23:37 | 'doc' | fileImports | ajv express mongodb |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:23:33:23:37 | 'doc' | receiverName | db |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:23:33:23:37 | 'doc' | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:25:23:25:48 | JSON.pa ... y.data) | CalleeFlexibleAccessPath |  |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:25:23:25:48 | JSON.pa ... y.data) | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:25:23:25:48 | JSON.pa ... y.data) | InputArgumentIndex |  |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:25:23:25:48 | JSON.pa ... y.data) | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:25:23:25:48 | JSON.pa ... y.data) | calleeImports |  |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:25:23:25:48 | JSON.pa ... y.data) | contextFunctionInterfaces | validate(x) |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:25:23:25:48 | JSON.pa ... y.data) | contextSurroundingFunctionParameters | (req, res)\n(err, db) |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:25:23:25:48 | JSON.pa ... y.data) | enclosingFunctionBody | req res MongoClient connect mongodb://localhost:27017/test err db doc db collection doc query JSON parse req query data checkSchema query doc find query ajv validate schema query doc find query validate query doc find query doc find query |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:25:23:25:48 | JSON.pa ... y.data) | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:25:23:25:48 | JSON.pa ... y.data) | fileImports | ajv express mongodb |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:25:23:25:48 | JSON.pa ... y.data) | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:25:23:25:48 | JSON.pa ... y.data) | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:26:25:26:29 | query | CalleeFlexibleAccessPath | checkSchema |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:26:25:26:29 | query | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:26:25:26:29 | query | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:26:25:26:29 | query | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:26:25:26:29 | query | calleeImports | ajv |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:26:25:26:29 | query | contextFunctionInterfaces | validate(x) |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:26:25:26:29 | query | contextSurroundingFunctionParameters | (req, res)\n(err, db) |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:26:25:26:29 | query | enclosingFunctionBody | req res MongoClient connect mongodb://localhost:27017/test err db doc db collection doc query JSON parse req query data checkSchema query doc find query ajv validate schema query doc find query validate query doc find query doc find query |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:26:25:26:29 | query | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:26:25:26:29 | query | fileImports | ajv express mongodb |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:26:25:26:29 | query | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:26:25:26:29 | query | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:27:22:27:26 | query | CalleeFlexibleAccessPath | doc.find |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:27:22:27:26 | query | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:27:22:27:26 | query | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:27:22:27:26 | query | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:27:22:27:26 | query | calleeImports |  |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:27:22:27:26 | query | contextFunctionInterfaces | validate(x) |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:27:22:27:26 | query | contextSurroundingFunctionParameters | (req, res)\n(err, db) |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:27:22:27:26 | query | enclosingFunctionBody | req res MongoClient connect mongodb://localhost:27017/test err db doc db collection doc query JSON parse req query data checkSchema query doc find query ajv validate schema query doc find query validate query doc find query doc find query |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:27:22:27:26 | query | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:27:22:27:26 | query | fileImports | ajv express mongodb |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:27:22:27:26 | query | receiverName | doc |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:27:22:27:26 | query | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:30:22:30:26 | query | CalleeFlexibleAccessPath | doc.find |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:30:22:30:26 | query | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:30:22:30:26 | query | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:30:22:30:26 | query | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:30:22:30:26 | query | calleeImports |  |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:30:22:30:26 | query | contextFunctionInterfaces | validate(x) |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:30:22:30:26 | query | contextSurroundingFunctionParameters | (req, res)\n(err, db) |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:30:22:30:26 | query | enclosingFunctionBody | req res MongoClient connect mongodb://localhost:27017/test err db doc db collection doc query JSON parse req query data checkSchema query doc find query ajv validate schema query doc find query validate query doc find query doc find query |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:30:22:30:26 | query | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:30:22:30:26 | query | fileImports | ajv express mongodb |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:30:22:30:26 | query | receiverName | doc |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:30:22:30:26 | query | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:33:22:33:26 | query | CalleeFlexibleAccessPath | doc.find |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:33:22:33:26 | query | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:33:22:33:26 | query | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:33:22:33:26 | query | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:33:22:33:26 | query | calleeImports |  |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:33:22:33:26 | query | contextFunctionInterfaces | validate(x) |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:33:22:33:26 | query | contextSurroundingFunctionParameters | (req, res)\n(err, db) |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:33:22:33:26 | query | enclosingFunctionBody | req res MongoClient connect mongodb://localhost:27017/test err db doc db collection doc query JSON parse req query data checkSchema query doc find query ajv validate schema query doc find query validate query doc find query doc find query |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:33:22:33:26 | query | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:33:22:33:26 | query | fileImports | ajv express mongodb |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:33:22:33:26 | query | receiverName | doc |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:33:22:33:26 | query | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:35:18:35:22 | query | CalleeFlexibleAccessPath | doc.find |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:35:18:35:22 | query | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:35:18:35:22 | query | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:35:18:35:22 | query | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:35:18:35:22 | query | calleeImports |  |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:35:18:35:22 | query | contextFunctionInterfaces | validate(x) |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:35:18:35:22 | query | contextSurroundingFunctionParameters | (req, res)\n(err, db) |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:35:18:35:22 | query | enclosingFunctionBody | req res MongoClient connect mongodb://localhost:27017/test err db doc db collection doc query JSON parse req query data checkSchema query doc find query ajv validate schema query doc find query validate query doc find query doc find query |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:35:18:35:22 | query | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:35:18:35:22 | query | fileImports | ajv express mongodb |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:35:18:35:22 | query | receiverName | doc |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:35:18:35:22 | query | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-from.js:1:24:1:31 | "marsdb" | CalleeFlexibleAccessPath | require |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-from.js:1:24:1:31 | "marsdb" | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-from.js:1:24:1:31 | "marsdb" | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-from.js:1:24:1:31 | "marsdb" | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-from.js:1:24:1:31 | "marsdb" | calleeImports |  |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-from.js:1:24:1:31 | "marsdb" | contextFunctionInterfaces |  |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-from.js:1:24:1:31 | "marsdb" | contextSurroundingFunctionParameters |  |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-from.js:1:24:1:31 | "marsdb" | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-from.js:1:24:1:31 | "marsdb" | enclosingFunctionName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-from.js:1:24:1:31 | "marsdb" | fileImports | marsdb |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-from.js:1:24:1:31 | "marsdb" | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-from.js:1:24:1:31 | "marsdb" | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:1:25:1:33 | "express" | CalleeFlexibleAccessPath | require |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:1:25:1:33 | "express" | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:1:25:1:33 | "express" | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:1:25:1:33 | "express" | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:1:25:1:33 | "express" | calleeImports |  |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:1:25:1:33 | "express" | contextFunctionInterfaces |  |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:1:25:1:33 | "express" | contextSurroundingFunctionParameters |  |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:1:25:1:33 | "express" | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:1:25:1:33 | "express" | enclosingFunctionName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:1:25:1:33 | "express" | fileImports | ./marsdb-flow-from body-parser express |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:1:25:1:33 | "express" | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:1:25:1:33 | "express" | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:2:28:2:40 | "body-parser" | CalleeFlexibleAccessPath | require |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:2:28:2:40 | "body-parser" | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:2:28:2:40 | "body-parser" | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:2:28:2:40 | "body-parser" | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:2:28:2:40 | "body-parser" | calleeImports |  |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:2:28:2:40 | "body-parser" | contextFunctionInterfaces |  |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:2:28:2:40 | "body-parser" | contextSurroundingFunctionParameters |  |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:2:28:2:40 | "body-parser" | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:2:28:2:40 | "body-parser" | enclosingFunctionName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:2:28:2:40 | "body-parser" | fileImports | ./marsdb-flow-from body-parser express |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:2:28:2:40 | "body-parser" | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:2:28:2:40 | "body-parser" | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:3:20:3:39 | './marsdb-flow-from' | CalleeFlexibleAccessPath | require |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:3:20:3:39 | './marsdb-flow-from' | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:3:20:3:39 | './marsdb-flow-from' | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:3:20:3:39 | './marsdb-flow-from' | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:3:20:3:39 | './marsdb-flow-from' | calleeImports |  |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:3:20:3:39 | './marsdb-flow-from' | contextFunctionInterfaces |  |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:3:20:3:39 | './marsdb-flow-from' | contextSurroundingFunctionParameters |  |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:3:20:3:39 | './marsdb-flow-from' | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:3:20:3:39 | './marsdb-flow-from' | enclosingFunctionName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:3:20:3:39 | './marsdb-flow-from' | fileImports | ./marsdb-flow-from body-parser express |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:3:20:3:39 | './marsdb-flow-from' | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:3:20:3:39 | './marsdb-flow-from' | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:7:9:7:49 | bodyPar ... true }) | CalleeFlexibleAccessPath | app.use |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:7:9:7:49 | bodyPar ... true }) | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:7:9:7:49 | bodyPar ... true }) | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:7:9:7:49 | bodyPar ... true }) | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:7:9:7:49 | bodyPar ... true }) | calleeImports | express |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:7:9:7:49 | bodyPar ... true }) | contextFunctionInterfaces |  |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:7:9:7:49 | bodyPar ... true }) | contextSurroundingFunctionParameters |  |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:7:9:7:49 | bodyPar ... true }) | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:7:9:7:49 | bodyPar ... true }) | enclosingFunctionName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:7:9:7:49 | bodyPar ... true }) | fileImports | ./marsdb-flow-from body-parser express |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:7:9:7:49 | bodyPar ... true }) | receiverName | app |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:7:9:7:49 | bodyPar ... true }) | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:7:31:7:48 | { extended: true } | CalleeFlexibleAccessPath | bodyParser.urlencoded |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:7:31:7:48 | { extended: true } | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:7:31:7:48 | { extended: true } | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:7:31:7:48 | { extended: true } | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:7:31:7:48 | { extended: true } | calleeImports | body-parser |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:7:31:7:48 | { extended: true } | contextFunctionInterfaces |  |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:7:31:7:48 | { extended: true } | contextSurroundingFunctionParameters |  |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:7:31:7:48 | { extended: true } | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:7:31:7:48 | { extended: true } | enclosingFunctionName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:7:31:7:48 | { extended: true } | fileImports | ./marsdb-flow-from body-parser express |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:7:31:7:48 | { extended: true } | receiverName | bodyParser |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:7:31:7:48 | { extended: true } | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:7:43:7:46 | true | CalleeFlexibleAccessPath | bodyParser.urlencoded |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:7:43:7:46 | true | InputAccessPathFromCallee | 0.extended |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:7:43:7:46 | true | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:7:43:7:46 | true | assignedToPropName | extended |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:7:43:7:46 | true | calleeImports | body-parser |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:7:43:7:46 | true | contextFunctionInterfaces |  |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:7:43:7:46 | true | contextSurroundingFunctionParameters |  |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:7:43:7:46 | true | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:7:43:7:46 | true | enclosingFunctionName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:7:43:7:46 | true | fileImports | ./marsdb-flow-from body-parser express |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:7:43:7:46 | true | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:7:43:7:46 | true | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:9:10:9:26 | "/documents/find" | CalleeFlexibleAccessPath | app.post |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:9:10:9:26 | "/documents/find" | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:9:10:9:26 | "/documents/find" | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:9:10:9:26 | "/documents/find" | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:9:10:9:26 | "/documents/find" | calleeImports | express |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:9:10:9:26 | "/documents/find" | contextFunctionInterfaces |  |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:9:10:9:26 | "/documents/find" | contextSurroundingFunctionParameters |  |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:9:10:9:26 | "/documents/find" | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:9:10:9:26 | "/documents/find" | enclosingFunctionName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:9:10:9:26 | "/documents/find" | fileImports | ./marsdb-flow-from body-parser express |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:9:10:9:26 | "/documents/find" | receiverName | app |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:9:10:9:26 | "/documents/find" | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:9:29:15:1 | (req, r ... ery);\\n} | CalleeFlexibleAccessPath | app.post |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:9:29:15:1 | (req, r ... ery);\\n} | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:9:29:15:1 | (req, r ... ery);\\n} | InputArgumentIndex | 1 |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:9:29:15:1 | (req, r ... ery);\\n} | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:9:29:15:1 | (req, r ... ery);\\n} | calleeImports | express |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:9:29:15:1 | (req, r ... ery);\\n} | contextFunctionInterfaces |  |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:9:29:15:1 | (req, r ... ery);\\n} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:9:29:15:1 | (req, r ... ery);\\n} | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:9:29:15:1 | (req, r ... ery);\\n} | enclosingFunctionName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:9:29:15:1 | (req, r ... ery);\\n} | fileImports | ./marsdb-flow-from body-parser express |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:9:29:15:1 | (req, r ... ery);\\n} | receiverName | app |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:9:29:15:1 | (req, r ... ery);\\n} | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:10:17:10:18 | {} | CalleeFlexibleAccessPath |  |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:10:17:10:18 | {} | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:10:17:10:18 | {} | InputArgumentIndex |  |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:10:17:10:18 | {} | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:10:17:10:18 | {} | calleeImports |  |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:10:17:10:18 | {} | contextFunctionInterfaces |  |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:10:17:10:18 | {} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:10:17:10:18 | {} | enclosingFunctionBody | req res query query title req body title db myDoc find query |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:10:17:10:18 | {} | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:10:17:10:18 | {} | fileImports | ./marsdb-flow-from body-parser express |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:10:17:10:18 | {} | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:10:17:10:18 | {} | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:14:17:14:21 | query | CalleeFlexibleAccessPath | db.myDoc.find |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:14:17:14:21 | query | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:14:17:14:21 | query | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:14:17:14:21 | query | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:14:17:14:21 | query | calleeImports | ./marsdb-flow-from |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:14:17:14:21 | query | contextFunctionInterfaces |  |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:14:17:14:21 | query | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:14:17:14:21 | query | enclosingFunctionBody | req res query query title req body title db myDoc find query |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:14:17:14:21 | query | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:14:17:14:21 | query | fileImports | ./marsdb-flow-from body-parser express |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:14:17:14:21 | query | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:14:17:14:21 | query | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:1:25:1:33 | "express" | CalleeFlexibleAccessPath | require |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:1:25:1:33 | "express" | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:1:25:1:33 | "express" | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:1:25:1:33 | "express" | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:1:25:1:33 | "express" | calleeImports |  |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:1:25:1:33 | "express" | contextFunctionInterfaces |  |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:1:25:1:33 | "express" | contextSurroundingFunctionParameters |  |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:1:25:1:33 | "express" | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:1:25:1:33 | "express" | enclosingFunctionName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:1:25:1:33 | "express" | fileImports | body-parser express marsdb |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:1:25:1:33 | "express" | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:1:25:1:33 | "express" | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:2:20:2:27 | "marsdb" | CalleeFlexibleAccessPath | require |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:2:20:2:27 | "marsdb" | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:2:20:2:27 | "marsdb" | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:2:20:2:27 | "marsdb" | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:2:20:2:27 | "marsdb" | calleeImports |  |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:2:20:2:27 | "marsdb" | contextFunctionInterfaces |  |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:2:20:2:27 | "marsdb" | contextSurroundingFunctionParameters |  |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:2:20:2:27 | "marsdb" | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:2:20:2:27 | "marsdb" | enclosingFunctionName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:2:20:2:27 | "marsdb" | fileImports | body-parser express marsdb |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:2:20:2:27 | "marsdb" | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:2:20:2:27 | "marsdb" | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:3:24:3:36 | "body-parser" | CalleeFlexibleAccessPath | require |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:3:24:3:36 | "body-parser" | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:3:24:3:36 | "body-parser" | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:3:24:3:36 | "body-parser" | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:3:24:3:36 | "body-parser" | calleeImports |  |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:3:24:3:36 | "body-parser" | contextFunctionInterfaces |  |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:3:24:3:36 | "body-parser" | contextSurroundingFunctionParameters |  |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:3:24:3:36 | "body-parser" | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:3:24:3:36 | "body-parser" | enclosingFunctionName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:3:24:3:36 | "body-parser" | fileImports | body-parser express marsdb |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:3:24:3:36 | "body-parser" | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:3:24:3:36 | "body-parser" | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:9:9:9:49 | bodyPar ... true }) | CalleeFlexibleAccessPath | app.use |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:9:9:9:49 | bodyPar ... true }) | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:9:9:9:49 | bodyPar ... true }) | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:9:9:9:49 | bodyPar ... true }) | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:9:9:9:49 | bodyPar ... true }) | calleeImports | express |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:9:9:9:49 | bodyPar ... true }) | contextFunctionInterfaces |  |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:9:9:9:49 | bodyPar ... true }) | contextSurroundingFunctionParameters |  |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:9:9:9:49 | bodyPar ... true }) | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:9:9:9:49 | bodyPar ... true }) | enclosingFunctionName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:9:9:9:49 | bodyPar ... true }) | fileImports | body-parser express marsdb |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:9:9:9:49 | bodyPar ... true }) | receiverName | app |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:9:9:9:49 | bodyPar ... true }) | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:9:31:9:48 | { extended: true } | CalleeFlexibleAccessPath | bodyParser.urlencoded |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:9:31:9:48 | { extended: true } | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:9:31:9:48 | { extended: true } | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:9:31:9:48 | { extended: true } | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:9:31:9:48 | { extended: true } | calleeImports | body-parser |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:9:31:9:48 | { extended: true } | contextFunctionInterfaces |  |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:9:31:9:48 | { extended: true } | contextSurroundingFunctionParameters |  |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:9:31:9:48 | { extended: true } | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:9:31:9:48 | { extended: true } | enclosingFunctionName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:9:31:9:48 | { extended: true } | fileImports | body-parser express marsdb |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:9:31:9:48 | { extended: true } | receiverName | bodyParser |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:9:31:9:48 | { extended: true } | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:9:43:9:46 | true | CalleeFlexibleAccessPath | bodyParser.urlencoded |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:9:43:9:46 | true | InputAccessPathFromCallee | 0.extended |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:9:43:9:46 | true | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:9:43:9:46 | true | assignedToPropName | extended |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:9:43:9:46 | true | calleeImports | body-parser |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:9:43:9:46 | true | contextFunctionInterfaces |  |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:9:43:9:46 | true | contextSurroundingFunctionParameters |  |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:9:43:9:46 | true | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:9:43:9:46 | true | enclosingFunctionName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:9:43:9:46 | true | fileImports | body-parser express marsdb |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:9:43:9:46 | true | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:9:43:9:46 | true | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:11:10:11:26 | "/documents/find" | CalleeFlexibleAccessPath | app.post |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:11:10:11:26 | "/documents/find" | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:11:10:11:26 | "/documents/find" | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:11:10:11:26 | "/documents/find" | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:11:10:11:26 | "/documents/find" | calleeImports | express |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:11:10:11:26 | "/documents/find" | contextFunctionInterfaces |  |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:11:10:11:26 | "/documents/find" | contextSurroundingFunctionParameters |  |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:11:10:11:26 | "/documents/find" | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:11:10:11:26 | "/documents/find" | enclosingFunctionName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:11:10:11:26 | "/documents/find" | fileImports | body-parser express marsdb |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:11:10:11:26 | "/documents/find" | receiverName | app |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:11:10:11:26 | "/documents/find" | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:11:29:17:1 | (req, r ... ery);\\n} | CalleeFlexibleAccessPath | app.post |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:11:29:17:1 | (req, r ... ery);\\n} | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:11:29:17:1 | (req, r ... ery);\\n} | InputArgumentIndex | 1 |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:11:29:17:1 | (req, r ... ery);\\n} | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:11:29:17:1 | (req, r ... ery);\\n} | calleeImports | express |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:11:29:17:1 | (req, r ... ery);\\n} | contextFunctionInterfaces |  |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:11:29:17:1 | (req, r ... ery);\\n} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:11:29:17:1 | (req, r ... ery);\\n} | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:11:29:17:1 | (req, r ... ery);\\n} | enclosingFunctionName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:11:29:17:1 | (req, r ... ery);\\n} | fileImports | body-parser express marsdb |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:11:29:17:1 | (req, r ... ery);\\n} | receiverName | app |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:11:29:17:1 | (req, r ... ery);\\n} | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:12:17:12:18 | {} | CalleeFlexibleAccessPath |  |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:12:17:12:18 | {} | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:12:17:12:18 | {} | InputArgumentIndex |  |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:12:17:12:18 | {} | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:12:17:12:18 | {} | calleeImports |  |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:12:17:12:18 | {} | contextFunctionInterfaces |  |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:12:17:12:18 | {} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:12:17:12:18 | {} | enclosingFunctionBody | req res query query title req body title doc find query |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:12:17:12:18 | {} | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:12:17:12:18 | {} | fileImports | body-parser express marsdb |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:12:17:12:18 | {} | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:12:17:12:18 | {} | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:16:12:16:16 | query | CalleeFlexibleAccessPath | doc.find |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:16:12:16:16 | query | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:16:12:16:16 | query | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:16:12:16:16 | query | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:16:12:16:16 | query | calleeImports | marsdb |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:16:12:16:16 | query | contextFunctionInterfaces |  |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:16:12:16:16 | query | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:16:12:16:16 | query | enclosingFunctionBody | req res query query title req body title doc find query |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:16:12:16:16 | query | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:16:12:16:16 | query | fileImports | body-parser express marsdb |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:16:12:16:16 | query | receiverName | doc |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:16:12:16:16 | query | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:1:25:1:33 | "express" | CalleeFlexibleAccessPath | require |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:1:25:1:33 | "express" | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:1:25:1:33 | "express" | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:1:25:1:33 | "express" | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:1:25:1:33 | "express" | calleeImports |  |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:1:25:1:33 | "express" | contextFunctionInterfaces |  |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:1:25:1:33 | "express" | contextSurroundingFunctionParameters |  |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:1:25:1:33 | "express" | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:1:25:1:33 | "express" | enclosingFunctionName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:1:25:1:33 | "express" | fileImports | body-parser express minimongo |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:1:25:1:33 | "express" | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:1:25:1:33 | "express" | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:2:23:2:33 | "minimongo" | CalleeFlexibleAccessPath | require |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:2:23:2:33 | "minimongo" | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:2:23:2:33 | "minimongo" | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:2:23:2:33 | "minimongo" | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:2:23:2:33 | "minimongo" | calleeImports |  |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:2:23:2:33 | "minimongo" | contextFunctionInterfaces |  |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:2:23:2:33 | "minimongo" | contextSurroundingFunctionParameters |  |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:2:23:2:33 | "minimongo" | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:2:23:2:33 | "minimongo" | enclosingFunctionName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:2:23:2:33 | "minimongo" | fileImports | body-parser express minimongo |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:2:23:2:33 | "minimongo" | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:2:23:2:33 | "minimongo" | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:3:24:3:36 | "body-parser" | CalleeFlexibleAccessPath | require |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:3:24:3:36 | "body-parser" | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:3:24:3:36 | "body-parser" | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:3:24:3:36 | "body-parser" | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:3:24:3:36 | "body-parser" | calleeImports |  |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:3:24:3:36 | "body-parser" | contextFunctionInterfaces |  |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:3:24:3:36 | "body-parser" | contextSurroundingFunctionParameters |  |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:3:24:3:36 | "body-parser" | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:3:24:3:36 | "body-parser" | enclosingFunctionName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:3:24:3:36 | "body-parser" | fileImports | body-parser express minimongo |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:3:24:3:36 | "body-parser" | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:3:24:3:36 | "body-parser" | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:11:9:11:49 | bodyPar ... true }) | CalleeFlexibleAccessPath | app.use |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:11:9:11:49 | bodyPar ... true }) | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:11:9:11:49 | bodyPar ... true }) | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:11:9:11:49 | bodyPar ... true }) | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:11:9:11:49 | bodyPar ... true }) | calleeImports | express |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:11:9:11:49 | bodyPar ... true }) | contextFunctionInterfaces |  |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:11:9:11:49 | bodyPar ... true }) | contextSurroundingFunctionParameters |  |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:11:9:11:49 | bodyPar ... true }) | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:11:9:11:49 | bodyPar ... true }) | enclosingFunctionName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:11:9:11:49 | bodyPar ... true }) | fileImports | body-parser express minimongo |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:11:9:11:49 | bodyPar ... true }) | receiverName | app |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:11:9:11:49 | bodyPar ... true }) | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:11:31:11:48 | { extended: true } | CalleeFlexibleAccessPath | bodyParser.urlencoded |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:11:31:11:48 | { extended: true } | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:11:31:11:48 | { extended: true } | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:11:31:11:48 | { extended: true } | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:11:31:11:48 | { extended: true } | calleeImports | body-parser |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:11:31:11:48 | { extended: true } | contextFunctionInterfaces |  |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:11:31:11:48 | { extended: true } | contextSurroundingFunctionParameters |  |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:11:31:11:48 | { extended: true } | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:11:31:11:48 | { extended: true } | enclosingFunctionName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:11:31:11:48 | { extended: true } | fileImports | body-parser express minimongo |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:11:31:11:48 | { extended: true } | receiverName | bodyParser |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:11:31:11:48 | { extended: true } | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:11:43:11:46 | true | CalleeFlexibleAccessPath | bodyParser.urlencoded |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:11:43:11:46 | true | InputAccessPathFromCallee | 0.extended |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:11:43:11:46 | true | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:11:43:11:46 | true | assignedToPropName | extended |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:11:43:11:46 | true | calleeImports | body-parser |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:11:43:11:46 | true | contextFunctionInterfaces |  |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:11:43:11:46 | true | contextSurroundingFunctionParameters |  |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:11:43:11:46 | true | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:11:43:11:46 | true | enclosingFunctionName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:11:43:11:46 | true | fileImports | body-parser express minimongo |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:11:43:11:46 | true | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:11:43:11:46 | true | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:13:10:13:26 | "/documents/find" | CalleeFlexibleAccessPath | app.post |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:13:10:13:26 | "/documents/find" | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:13:10:13:26 | "/documents/find" | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:13:10:13:26 | "/documents/find" | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:13:10:13:26 | "/documents/find" | calleeImports | express |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:13:10:13:26 | "/documents/find" | contextFunctionInterfaces |  |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:13:10:13:26 | "/documents/find" | contextSurroundingFunctionParameters |  |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:13:10:13:26 | "/documents/find" | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:13:10:13:26 | "/documents/find" | enclosingFunctionName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:13:10:13:26 | "/documents/find" | fileImports | body-parser express minimongo |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:13:10:13:26 | "/documents/find" | receiverName | app |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:13:10:13:26 | "/documents/find" | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:13:29:19:1 | (req, r ... ery);\\n} | CalleeFlexibleAccessPath | app.post |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:13:29:19:1 | (req, r ... ery);\\n} | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:13:29:19:1 | (req, r ... ery);\\n} | InputArgumentIndex | 1 |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:13:29:19:1 | (req, r ... ery);\\n} | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:13:29:19:1 | (req, r ... ery);\\n} | calleeImports | express |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:13:29:19:1 | (req, r ... ery);\\n} | contextFunctionInterfaces |  |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:13:29:19:1 | (req, r ... ery);\\n} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:13:29:19:1 | (req, r ... ery);\\n} | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:13:29:19:1 | (req, r ... ery);\\n} | enclosingFunctionName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:13:29:19:1 | (req, r ... ery);\\n} | fileImports | body-parser express minimongo |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:13:29:19:1 | (req, r ... ery);\\n} | receiverName | app |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:13:29:19:1 | (req, r ... ery);\\n} | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:14:17:14:18 | {} | CalleeFlexibleAccessPath |  |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:14:17:14:18 | {} | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:14:17:14:18 | {} | InputArgumentIndex |  |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:14:17:14:18 | {} | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:14:17:14:18 | {} | calleeImports |  |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:14:17:14:18 | {} | contextFunctionInterfaces |  |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:14:17:14:18 | {} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:14:17:14:18 | {} | enclosingFunctionBody | req res query query title req body title doc find query |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:14:17:14:18 | {} | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:14:17:14:18 | {} | fileImports | body-parser express minimongo |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:14:17:14:18 | {} | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:14:17:14:18 | {} | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:18:12:18:16 | query | CalleeFlexibleAccessPath | doc.find |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:18:12:18:16 | query | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:18:12:18:16 | query | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:18:12:18:16 | query | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:18:12:18:16 | query | calleeImports | minimongo |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:18:12:18:16 | query | contextFunctionInterfaces |  |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:18:12:18:16 | query | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:18:12:18:16 | query | enclosingFunctionBody | req res query query title req body title doc find query |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:18:12:18:16 | query | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:18:12:18:16 | query | fileImports | body-parser express minimongo |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:18:12:18:16 | query | receiverName | doc |
-| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:18:12:18:16 | query | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:1:25:1:33 | 'express' | CalleeFlexibleAccessPath | require |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:1:25:1:33 | 'express' | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:1:25:1:33 | 'express' | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:1:25:1:33 | 'express' | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:1:25:1:33 | 'express' | calleeImports |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:1:25:1:33 | 'express' | contextFunctionInterfaces | useParams(params)\nuseQuery(queries) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:1:25:1:33 | 'express' | contextSurroundingFunctionParameters |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:1:25:1:33 | 'express' | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:1:25:1:33 | 'express' | enclosingFunctionName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:1:25:1:33 | 'express' | fileImports | ./dbo.js body-parser express mongodb |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:1:25:1:33 | 'express' | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:1:25:1:33 | 'express' | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:2:25:2:33 | 'mongodb' | CalleeFlexibleAccessPath | require |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:2:25:2:33 | 'mongodb' | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:2:25:2:33 | 'mongodb' | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:2:25:2:33 | 'mongodb' | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:2:25:2:33 | 'mongodb' | calleeImports |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:2:25:2:33 | 'mongodb' | contextFunctionInterfaces | useParams(params)\nuseQuery(queries) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:2:25:2:33 | 'mongodb' | contextSurroundingFunctionParameters |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:2:25:2:33 | 'mongodb' | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:2:25:2:33 | 'mongodb' | enclosingFunctionName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:2:25:2:33 | 'mongodb' | fileImports | ./dbo.js body-parser express mongodb |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:2:25:2:33 | 'mongodb' | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:2:25:2:33 | 'mongodb' | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:3:28:3:40 | 'body-parser' | CalleeFlexibleAccessPath | require |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:3:28:3:40 | 'body-parser' | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:3:28:3:40 | 'body-parser' | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:3:28:3:40 | 'body-parser' | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:3:28:3:40 | 'body-parser' | calleeImports |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:3:28:3:40 | 'body-parser' | contextFunctionInterfaces | useParams(params)\nuseQuery(queries) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:3:28:3:40 | 'body-parser' | contextSurroundingFunctionParameters |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:3:28:3:40 | 'body-parser' | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:3:28:3:40 | 'body-parser' | enclosingFunctionName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:3:28:3:40 | 'body-parser' | fileImports | ./dbo.js body-parser express mongodb |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:3:28:3:40 | 'body-parser' | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:3:28:3:40 | 'body-parser' | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:9:9:9:49 | bodyPar ... true }) | CalleeFlexibleAccessPath | app.use |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:9:9:9:49 | bodyPar ... true }) | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:9:9:9:49 | bodyPar ... true }) | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:9:9:9:49 | bodyPar ... true }) | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:9:9:9:49 | bodyPar ... true }) | calleeImports | express |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:9:9:9:49 | bodyPar ... true }) | contextFunctionInterfaces | useParams(params)\nuseQuery(queries) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:9:9:9:49 | bodyPar ... true }) | contextSurroundingFunctionParameters |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:9:9:9:49 | bodyPar ... true }) | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:9:9:9:49 | bodyPar ... true }) | enclosingFunctionName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:9:9:9:49 | bodyPar ... true }) | fileImports | ./dbo.js body-parser express mongodb |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:9:9:9:49 | bodyPar ... true }) | receiverName | app |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:9:9:9:49 | bodyPar ... true }) | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:9:31:9:48 | { extended: true } | CalleeFlexibleAccessPath | bodyParser.urlencoded |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:9:31:9:48 | { extended: true } | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:9:31:9:48 | { extended: true } | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:9:31:9:48 | { extended: true } | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:9:31:9:48 | { extended: true } | calleeImports | body-parser |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:9:31:9:48 | { extended: true } | contextFunctionInterfaces | useParams(params)\nuseQuery(queries) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:9:31:9:48 | { extended: true } | contextSurroundingFunctionParameters |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:9:31:9:48 | { extended: true } | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:9:31:9:48 | { extended: true } | enclosingFunctionName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:9:31:9:48 | { extended: true } | fileImports | ./dbo.js body-parser express mongodb |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:9:31:9:48 | { extended: true } | receiverName | bodyParser |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:9:31:9:48 | { extended: true } | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:9:43:9:46 | true | CalleeFlexibleAccessPath | bodyParser.urlencoded |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:9:43:9:46 | true | InputAccessPathFromCallee | 0.extended |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:9:43:9:46 | true | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:9:43:9:46 | true | assignedToPropName | extended |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:9:43:9:46 | true | calleeImports | body-parser |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:9:43:9:46 | true | contextFunctionInterfaces | useParams(params)\nuseQuery(queries) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:9:43:9:46 | true | contextSurroundingFunctionParameters |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:9:43:9:46 | true | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:9:43:9:46 | true | enclosingFunctionName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:9:43:9:46 | true | fileImports | ./dbo.js body-parser express mongodb |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:9:43:9:46 | true | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:9:43:9:46 | true | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:11:10:11:26 | '/documents/find' | CalleeFlexibleAccessPath | app.post |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:11:10:11:26 | '/documents/find' | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:11:10:11:26 | '/documents/find' | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:11:10:11:26 | '/documents/find' | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:11:10:11:26 | '/documents/find' | calleeImports | express |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:11:10:11:26 | '/documents/find' | contextFunctionInterfaces | useParams(params)\nuseQuery(queries) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:11:10:11:26 | '/documents/find' | contextSurroundingFunctionParameters |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:11:10:11:26 | '/documents/find' | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:11:10:11:26 | '/documents/find' | enclosingFunctionName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:11:10:11:26 | '/documents/find' | fileImports | ./dbo.js body-parser express mongodb |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:11:10:11:26 | '/documents/find' | receiverName | app |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:11:10:11:26 | '/documents/find' | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:11:29:35:1 | (req, r ...   });\\n} | CalleeFlexibleAccessPath | app.post |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:11:29:35:1 | (req, r ...   });\\n} | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:11:29:35:1 | (req, r ...   });\\n} | InputArgumentIndex | 1 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:11:29:35:1 | (req, r ...   });\\n} | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:11:29:35:1 | (req, r ...   });\\n} | calleeImports | express |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:11:29:35:1 | (req, r ...   });\\n} | contextFunctionInterfaces | useParams(params)\nuseQuery(queries) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:11:29:35:1 | (req, r ...   });\\n} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:11:29:35:1 | (req, r ...   });\\n} | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:11:29:35:1 | (req, r ...   });\\n} | enclosingFunctionName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:11:29:35:1 | (req, r ...   });\\n} | fileImports | ./dbo.js body-parser express mongodb |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:11:29:35:1 | (req, r ...   });\\n} | receiverName | app |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:11:29:35:1 | (req, r ...   });\\n} | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:12:19:12:20 | {} | CalleeFlexibleAccessPath |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:12:19:12:20 | {} | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:12:19:12:20 | {} | InputArgumentIndex |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:12:19:12:20 | {} | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:12:19:12:20 | {} | calleeImports |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:12:19:12:20 | {} | contextFunctionInterfaces | useParams(params)\nuseQuery(queries) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:12:19:12:20 | {} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:12:19:12:20 | {} | enclosingFunctionBody | req res query query title req body title MongoClient connect mongodb://localhost:27017/test err db doc db collection doc doc find query doc find title  query body title doc find title query body title substr 1 title req body title title string doc find title title doc find title JSON parse title |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:12:19:12:20 | {} | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:12:19:12:20 | {} | fileImports | ./dbo.js body-parser express mongodb |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:12:19:12:20 | {} | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:12:19:12:20 | {} | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:14:25:14:56 | 'mongod ... 7/test' | CalleeFlexibleAccessPath | MongoClient.connect |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:14:25:14:56 | 'mongod ... 7/test' | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:14:25:14:56 | 'mongod ... 7/test' | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:14:25:14:56 | 'mongod ... 7/test' | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:14:25:14:56 | 'mongod ... 7/test' | calleeImports | mongodb |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:14:25:14:56 | 'mongod ... 7/test' | contextFunctionInterfaces | useParams(params)\nuseQuery(queries) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:14:25:14:56 | 'mongod ... 7/test' | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:14:25:14:56 | 'mongod ... 7/test' | enclosingFunctionBody | req res query query title req body title MongoClient connect mongodb://localhost:27017/test err db doc db collection doc doc find query doc find title  query body title doc find title query body title substr 1 title req body title title string doc find title title doc find title JSON parse title |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:14:25:14:56 | 'mongod ... 7/test' | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:14:25:14:56 | 'mongod ... 7/test' | fileImports | ./dbo.js body-parser express mongodb |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:14:25:14:56 | 'mongod ... 7/test' | receiverName | MongoClient |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:14:25:14:56 | 'mongod ... 7/test' | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:14:59:34:5 | (err, d ... }\\n    } | CalleeFlexibleAccessPath | MongoClient.connect |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:14:59:34:5 | (err, d ... }\\n    } | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:14:59:34:5 | (err, d ... }\\n    } | InputArgumentIndex | 1 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:14:59:34:5 | (err, d ... }\\n    } | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:14:59:34:5 | (err, d ... }\\n    } | calleeImports | mongodb |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:14:59:34:5 | (err, d ... }\\n    } | contextFunctionInterfaces | useParams(params)\nuseQuery(queries) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:14:59:34:5 | (err, d ... }\\n    } | contextSurroundingFunctionParameters | (req, res)\n(err, db) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:14:59:34:5 | (err, d ... }\\n    } | enclosingFunctionBody | req res query query title req body title MongoClient connect mongodb://localhost:27017/test err db doc db collection doc doc find query doc find title  query body title doc find title query body title substr 1 title req body title title string doc find title title doc find title JSON parse title |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:14:59:34:5 | (err, d ... }\\n    } | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:14:59:34:5 | (err, d ... }\\n    } | fileImports | ./dbo.js body-parser express mongodb |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:14:59:34:5 | (err, d ... }\\n    } | receiverName | MongoClient |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:14:59:34:5 | (err, d ... }\\n    } | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:15:31:15:35 | 'doc' | CalleeFlexibleAccessPath | db.collection |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:15:31:15:35 | 'doc' | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:15:31:15:35 | 'doc' | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:15:31:15:35 | 'doc' | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:15:31:15:35 | 'doc' | calleeImports |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:15:31:15:35 | 'doc' | contextFunctionInterfaces | useParams(params)\nuseQuery(queries) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:15:31:15:35 | 'doc' | contextSurroundingFunctionParameters | (req, res)\n(err, db) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:15:31:15:35 | 'doc' | enclosingFunctionBody | req res query query title req body title MongoClient connect mongodb://localhost:27017/test err db doc db collection doc doc find query doc find title  query body title doc find title query body title substr 1 title req body title title string doc find title title doc find title JSON parse title |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:15:31:15:35 | 'doc' | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:15:31:15:35 | 'doc' | fileImports | ./dbo.js body-parser express mongodb |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:15:31:15:35 | 'doc' | receiverName | db |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:15:31:15:35 | 'doc' | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:18:16:18:20 | query | CalleeFlexibleAccessPath | doc.find |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:18:16:18:20 | query | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:18:16:18:20 | query | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:18:16:18:20 | query | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:18:16:18:20 | query | calleeImports |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:18:16:18:20 | query | contextFunctionInterfaces | useParams(params)\nuseQuery(queries) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:18:16:18:20 | query | contextSurroundingFunctionParameters | (req, res)\n(err, db) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:18:16:18:20 | query | enclosingFunctionBody | req res query query title req body title MongoClient connect mongodb://localhost:27017/test err db doc db collection doc doc find query doc find title  query body title doc find title query body title substr 1 title req body title title string doc find title title doc find title JSON parse title |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:18:16:18:20 | query | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:18:16:18:20 | query | fileImports | ./dbo.js body-parser express mongodb |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:18:16:18:20 | query | receiverName | doc |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:18:16:18:20 | query | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:21:16:21:47 | { title ... title } | CalleeFlexibleAccessPath | doc.find |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:21:16:21:47 | { title ... title } | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:21:16:21:47 | { title ... title } | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:21:16:21:47 | { title ... title } | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:21:16:21:47 | { title ... title } | calleeImports |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:21:16:21:47 | { title ... title } | contextFunctionInterfaces | useParams(params)\nuseQuery(queries) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:21:16:21:47 | { title ... title } | contextSurroundingFunctionParameters | (req, res)\n(err, db) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:21:16:21:47 | { title ... title } | enclosingFunctionBody | req res query query title req body title MongoClient connect mongodb://localhost:27017/test err db doc db collection doc doc find query doc find title  query body title doc find title query body title substr 1 title req body title title string doc find title title doc find title JSON parse title |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:21:16:21:47 | { title ... title } | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:21:16:21:47 | { title ... title } | fileImports | ./dbo.js body-parser express mongodb |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:21:16:21:47 | { title ... title } | receiverName | doc |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:21:16:21:47 | { title ... title } | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:21:25:21:45 | '' + qu ... y.title | CalleeFlexibleAccessPath | doc.find |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:21:25:21:45 | '' + qu ... y.title | InputAccessPathFromCallee | 0.title |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:21:25:21:45 | '' + qu ... y.title | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:21:25:21:45 | '' + qu ... y.title | assignedToPropName | title |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:21:25:21:45 | '' + qu ... y.title | calleeImports |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:21:25:21:45 | '' + qu ... y.title | contextFunctionInterfaces | useParams(params)\nuseQuery(queries) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:21:25:21:45 | '' + qu ... y.title | contextSurroundingFunctionParameters | (req, res)\n(err, db) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:21:25:21:45 | '' + qu ... y.title | enclosingFunctionBody | req res query query title req body title MongoClient connect mongodb://localhost:27017/test err db doc db collection doc doc find query doc find title  query body title doc find title query body title substr 1 title req body title title string doc find title title doc find title JSON parse title |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:21:25:21:45 | '' + qu ... y.title | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:21:25:21:45 | '' + qu ... y.title | fileImports | ./dbo.js body-parser express mongodb |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:21:25:21:45 | '' + qu ... y.title | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:21:25:21:45 | '' + qu ... y.title | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:24:16:24:52 | { title ... tr(1) } | CalleeFlexibleAccessPath | doc.find |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:24:16:24:52 | { title ... tr(1) } | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:24:16:24:52 | { title ... tr(1) } | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:24:16:24:52 | { title ... tr(1) } | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:24:16:24:52 | { title ... tr(1) } | calleeImports |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:24:16:24:52 | { title ... tr(1) } | contextFunctionInterfaces | useParams(params)\nuseQuery(queries) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:24:16:24:52 | { title ... tr(1) } | contextSurroundingFunctionParameters | (req, res)\n(err, db) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:24:16:24:52 | { title ... tr(1) } | enclosingFunctionBody | req res query query title req body title MongoClient connect mongodb://localhost:27017/test err db doc db collection doc doc find query doc find title  query body title doc find title query body title substr 1 title req body title title string doc find title title doc find title JSON parse title |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:24:16:24:52 | { title ... tr(1) } | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:24:16:24:52 | { title ... tr(1) } | fileImports | ./dbo.js body-parser express mongodb |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:24:16:24:52 | { title ... tr(1) } | receiverName | doc |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:24:16:24:52 | { title ... tr(1) } | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:24:25:24:50 | query.b ... bstr(1) | CalleeFlexibleAccessPath | doc.find |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:24:25:24:50 | query.b ... bstr(1) | InputAccessPathFromCallee | 0.title |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:24:25:24:50 | query.b ... bstr(1) | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:24:25:24:50 | query.b ... bstr(1) | assignedToPropName | title |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:24:25:24:50 | query.b ... bstr(1) | calleeImports |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:24:25:24:50 | query.b ... bstr(1) | contextFunctionInterfaces | useParams(params)\nuseQuery(queries) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:24:25:24:50 | query.b ... bstr(1) | contextSurroundingFunctionParameters | (req, res)\n(err, db) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:24:25:24:50 | query.b ... bstr(1) | enclosingFunctionBody | req res query query title req body title MongoClient connect mongodb://localhost:27017/test err db doc db collection doc doc find query doc find title  query body title doc find title query body title substr 1 title req body title title string doc find title title doc find title JSON parse title |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:24:25:24:50 | query.b ... bstr(1) | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:24:25:24:50 | query.b ... bstr(1) | fileImports | ./dbo.js body-parser express mongodb |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:24:25:24:50 | query.b ... bstr(1) | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:24:25:24:50 | query.b ... bstr(1) | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:24:49:24:49 | 1 | CalleeFlexibleAccessPath | query.body.title.substr |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:24:49:24:49 | 1 | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:24:49:24:49 | 1 | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:24:49:24:49 | 1 | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:24:49:24:49 | 1 | calleeImports |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:24:49:24:49 | 1 | contextFunctionInterfaces | useParams(params)\nuseQuery(queries) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:24:49:24:49 | 1 | contextSurroundingFunctionParameters | (req, res)\n(err, db) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:24:49:24:49 | 1 | enclosingFunctionBody | req res query query title req body title MongoClient connect mongodb://localhost:27017/test err db doc db collection doc doc find query doc find title  query body title doc find title query body title substr 1 title req body title title string doc find title title doc find title JSON parse title |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:24:49:24:49 | 1 | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:24:49:24:49 | 1 | fileImports | ./dbo.js body-parser express mongodb |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:24:49:24:49 | 1 | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:24:49:24:49 | 1 | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:29:18:29:33 | { title: title } | CalleeFlexibleAccessPath | doc.find |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:29:18:29:33 | { title: title } | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:29:18:29:33 | { title: title } | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:29:18:29:33 | { title: title } | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:29:18:29:33 | { title: title } | calleeImports |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:29:18:29:33 | { title: title } | contextFunctionInterfaces | useParams(params)\nuseQuery(queries) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:29:18:29:33 | { title: title } | contextSurroundingFunctionParameters | (req, res)\n(err, db) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:29:18:29:33 | { title: title } | enclosingFunctionBody | req res query query title req body title MongoClient connect mongodb://localhost:27017/test err db doc db collection doc doc find query doc find title  query body title doc find title query body title substr 1 title req body title title string doc find title title doc find title JSON parse title |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:29:18:29:33 | { title: title } | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:29:18:29:33 | { title: title } | fileImports | ./dbo.js body-parser express mongodb |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:29:18:29:33 | { title: title } | receiverName | doc |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:29:18:29:33 | { title: title } | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:29:27:29:31 | title | CalleeFlexibleAccessPath | doc.find |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:29:27:29:31 | title | InputAccessPathFromCallee | 0.title |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:29:27:29:31 | title | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:29:27:29:31 | title | assignedToPropName | title |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:29:27:29:31 | title | calleeImports |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:29:27:29:31 | title | contextFunctionInterfaces | useParams(params)\nuseQuery(queries) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:29:27:29:31 | title | contextSurroundingFunctionParameters | (req, res)\n(err, db) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:29:27:29:31 | title | enclosingFunctionBody | req res query query title req body title MongoClient connect mongodb://localhost:27017/test err db doc db collection doc doc find query doc find title  query body title doc find title query body title substr 1 title req body title title string doc find title title doc find title JSON parse title |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:29:27:29:31 | title | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:29:27:29:31 | title | fileImports | ./dbo.js body-parser express mongodb |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:29:27:29:31 | title | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:29:27:29:31 | title | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:32:18:32:45 | { title ... itle) } | CalleeFlexibleAccessPath | doc.find |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:32:18:32:45 | { title ... itle) } | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:32:18:32:45 | { title ... itle) } | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:32:18:32:45 | { title ... itle) } | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:32:18:32:45 | { title ... itle) } | calleeImports |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:32:18:32:45 | { title ... itle) } | contextFunctionInterfaces | useParams(params)\nuseQuery(queries) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:32:18:32:45 | { title ... itle) } | contextSurroundingFunctionParameters | (req, res)\n(err, db) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:32:18:32:45 | { title ... itle) } | enclosingFunctionBody | req res query query title req body title MongoClient connect mongodb://localhost:27017/test err db doc db collection doc doc find query doc find title  query body title doc find title query body title substr 1 title req body title title string doc find title title doc find title JSON parse title |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:32:18:32:45 | { title ... itle) } | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:32:18:32:45 | { title ... itle) } | fileImports | ./dbo.js body-parser express mongodb |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:32:18:32:45 | { title ... itle) } | receiverName | doc |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:32:18:32:45 | { title ... itle) } | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:32:27:32:43 | JSON.parse(title) | CalleeFlexibleAccessPath | doc.find |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:32:27:32:43 | JSON.parse(title) | InputAccessPathFromCallee | 0.title |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:32:27:32:43 | JSON.parse(title) | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:32:27:32:43 | JSON.parse(title) | assignedToPropName | title |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:32:27:32:43 | JSON.parse(title) | calleeImports |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:32:27:32:43 | JSON.parse(title) | contextFunctionInterfaces | useParams(params)\nuseQuery(queries) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:32:27:32:43 | JSON.parse(title) | contextSurroundingFunctionParameters | (req, res)\n(err, db) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:32:27:32:43 | JSON.parse(title) | enclosingFunctionBody | req res query query title req body title MongoClient connect mongodb://localhost:27017/test err db doc db collection doc doc find query doc find title  query body title doc find title query body title substr 1 title req body title title string doc find title title doc find title JSON parse title |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:32:27:32:43 | JSON.parse(title) | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:32:27:32:43 | JSON.parse(title) | fileImports | ./dbo.js body-parser express mongodb |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:32:27:32:43 | JSON.parse(title) | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:32:27:32:43 | JSON.parse(title) | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:37:9:37:14 | '/:id' | CalleeFlexibleAccessPath | app.get |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:37:9:37:14 | '/:id' | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:37:9:37:14 | '/:id' | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:37:9:37:14 | '/:id' | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:37:9:37:14 | '/:id' | calleeImports | express |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:37:9:37:14 | '/:id' | contextFunctionInterfaces | useParams(params)\nuseQuery(queries) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:37:9:37:14 | '/:id' | contextSurroundingFunctionParameters |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:37:9:37:14 | '/:id' | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:37:9:37:14 | '/:id' | enclosingFunctionName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:37:9:37:14 | '/:id' | fileImports | ./dbo.js body-parser express mongodb |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:37:9:37:14 | '/:id' | receiverName | app |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:37:9:37:14 | '/:id' | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:37:17:45:1 | (req, r ...   });\\n} | CalleeFlexibleAccessPath | app.get |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:37:17:45:1 | (req, r ...   });\\n} | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:37:17:45:1 | (req, r ...   });\\n} | InputArgumentIndex | 1 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:37:17:45:1 | (req, r ...   });\\n} | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:37:17:45:1 | (req, r ...   });\\n} | calleeImports | express |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:37:17:45:1 | (req, r ...   });\\n} | contextFunctionInterfaces | useParams(params)\nuseQuery(queries) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:37:17:45:1 | (req, r ...   });\\n} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:37:17:45:1 | (req, r ...   });\\n} | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:37:17:45:1 | (req, r ...   });\\n} | enclosingFunctionName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:37:17:45:1 | (req, r ...   });\\n} | fileImports | ./dbo.js body-parser express mongodb |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:37:17:45:1 | (req, r ...   });\\n} | receiverName | app |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:37:17:45:1 | (req, r ...   });\\n} | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:38:17:38:36 | { id: req.param.id } | CalleeFlexibleAccessPath |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:38:17:38:36 | { id: req.param.id } | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:38:17:38:36 | { id: req.param.id } | InputArgumentIndex |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:38:17:38:36 | { id: req.param.id } | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:38:17:38:36 | { id: req.param.id } | calleeImports |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:38:17:38:36 | { id: req.param.id } | contextFunctionInterfaces | useParams(params)\nuseQuery(queries) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:38:17:38:36 | { id: req.param.id } | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:38:17:38:36 | { id: req.param.id } | enclosingFunctionBody | req res query id req param id MongoClient connect mongodb://localhost:27017/test err db doc db collection doc doc find query |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:38:17:38:36 | { id: req.param.id } | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:38:17:38:36 | { id: req.param.id } | fileImports | ./dbo.js body-parser express mongodb |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:38:17:38:36 | { id: req.param.id } | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:38:17:38:36 | { id: req.param.id } | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:39:25:39:56 | 'mongod ... 7/test' | CalleeFlexibleAccessPath | MongoClient.connect |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:39:25:39:56 | 'mongod ... 7/test' | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:39:25:39:56 | 'mongod ... 7/test' | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:39:25:39:56 | 'mongod ... 7/test' | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:39:25:39:56 | 'mongod ... 7/test' | calleeImports | mongodb |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:39:25:39:56 | 'mongod ... 7/test' | contextFunctionInterfaces | useParams(params)\nuseQuery(queries) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:39:25:39:56 | 'mongod ... 7/test' | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:39:25:39:56 | 'mongod ... 7/test' | enclosingFunctionBody | req res query id req param id MongoClient connect mongodb://localhost:27017/test err db doc db collection doc doc find query |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:39:25:39:56 | 'mongod ... 7/test' | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:39:25:39:56 | 'mongod ... 7/test' | fileImports | ./dbo.js body-parser express mongodb |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:39:25:39:56 | 'mongod ... 7/test' | receiverName | MongoClient |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:39:25:39:56 | 'mongod ... 7/test' | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:39:59:44:5 | (err, d ... ;\\n    } | CalleeFlexibleAccessPath | MongoClient.connect |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:39:59:44:5 | (err, d ... ;\\n    } | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:39:59:44:5 | (err, d ... ;\\n    } | InputArgumentIndex | 1 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:39:59:44:5 | (err, d ... ;\\n    } | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:39:59:44:5 | (err, d ... ;\\n    } | calleeImports | mongodb |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:39:59:44:5 | (err, d ... ;\\n    } | contextFunctionInterfaces | useParams(params)\nuseQuery(queries) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:39:59:44:5 | (err, d ... ;\\n    } | contextSurroundingFunctionParameters | (req, res)\n(err, db) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:39:59:44:5 | (err, d ... ;\\n    } | enclosingFunctionBody | req res query id req param id MongoClient connect mongodb://localhost:27017/test err db doc db collection doc doc find query |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:39:59:44:5 | (err, d ... ;\\n    } | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:39:59:44:5 | (err, d ... ;\\n    } | fileImports | ./dbo.js body-parser express mongodb |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:39:59:44:5 | (err, d ... ;\\n    } | receiverName | MongoClient |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:39:59:44:5 | (err, d ... ;\\n    } | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:40:31:40:35 | 'doc' | CalleeFlexibleAccessPath | db.collection |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:40:31:40:35 | 'doc' | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:40:31:40:35 | 'doc' | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:40:31:40:35 | 'doc' | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:40:31:40:35 | 'doc' | calleeImports |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:40:31:40:35 | 'doc' | contextFunctionInterfaces | useParams(params)\nuseQuery(queries) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:40:31:40:35 | 'doc' | contextSurroundingFunctionParameters | (req, res)\n(err, db) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:40:31:40:35 | 'doc' | enclosingFunctionBody | req res query id req param id MongoClient connect mongodb://localhost:27017/test err db doc db collection doc doc find query |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:40:31:40:35 | 'doc' | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:40:31:40:35 | 'doc' | fileImports | ./dbo.js body-parser express mongodb |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:40:31:40:35 | 'doc' | receiverName | db |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:40:31:40:35 | 'doc' | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:43:16:43:20 | query | CalleeFlexibleAccessPath | doc.find |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:43:16:43:20 | query | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:43:16:43:20 | query | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:43:16:43:20 | query | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:43:16:43:20 | query | calleeImports |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:43:16:43:20 | query | contextFunctionInterfaces | useParams(params)\nuseQuery(queries) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:43:16:43:20 | query | contextSurroundingFunctionParameters | (req, res)\n(err, db) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:43:16:43:20 | query | enclosingFunctionBody | req res query id req param id MongoClient connect mongodb://localhost:27017/test err db doc db collection doc doc find query |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:43:16:43:20 | query | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:43:16:43:20 | query | fileImports | ./dbo.js body-parser express mongodb |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:43:16:43:20 | query | receiverName | doc |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:43:16:43:20 | query | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:47:10:47:26 | '/documents/find' | CalleeFlexibleAccessPath | app.post |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:47:10:47:26 | '/documents/find' | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:47:10:47:26 | '/documents/find' | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:47:10:47:26 | '/documents/find' | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:47:10:47:26 | '/documents/find' | calleeImports | express |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:47:10:47:26 | '/documents/find' | contextFunctionInterfaces | useParams(params)\nuseQuery(queries) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:47:10:47:26 | '/documents/find' | contextSurroundingFunctionParameters |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:47:10:47:26 | '/documents/find' | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:47:10:47:26 | '/documents/find' | enclosingFunctionName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:47:10:47:26 | '/documents/find' | fileImports | ./dbo.js body-parser express mongodb |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:47:10:47:26 | '/documents/find' | receiverName | app |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:47:10:47:26 | '/documents/find' | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:47:29:56:1 | (req, r ...   });\\n} | CalleeFlexibleAccessPath | app.post |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:47:29:56:1 | (req, r ...   });\\n} | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:47:29:56:1 | (req, r ...   });\\n} | InputArgumentIndex | 1 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:47:29:56:1 | (req, r ...   });\\n} | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:47:29:56:1 | (req, r ...   });\\n} | calleeImports | express |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:47:29:56:1 | (req, r ...   });\\n} | contextFunctionInterfaces | useParams(params)\nuseQuery(queries) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:47:29:56:1 | (req, r ...   });\\n} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:47:29:56:1 | (req, r ...   });\\n} | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:47:29:56:1 | (req, r ...   });\\n} | enclosingFunctionName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:47:29:56:1 | (req, r ...   });\\n} | fileImports | ./dbo.js body-parser express mongodb |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:47:29:56:1 | (req, r ...   });\\n} | receiverName | app |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:47:29:56:1 | (req, r ...   });\\n} | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:48:19:48:20 | {} | CalleeFlexibleAccessPath |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:48:19:48:20 | {} | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:48:19:48:20 | {} | InputArgumentIndex |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:48:19:48:20 | {} | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:48:19:48:20 | {} | calleeImports |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:48:19:48:20 | {} | contextFunctionInterfaces | useParams(params)\nuseQuery(queries) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:48:19:48:20 | {} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:48:19:48:20 | {} | enclosingFunctionBody | req res query query title req query title MongoClient connect mongodb://localhost:27017/test err db doc db collection doc doc find query |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:48:19:48:20 | {} | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:48:19:48:20 | {} | fileImports | ./dbo.js body-parser express mongodb |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:48:19:48:20 | {} | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:48:19:48:20 | {} | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:50:25:50:56 | 'mongod ... 7/test' | CalleeFlexibleAccessPath | MongoClient.connect |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:50:25:50:56 | 'mongod ... 7/test' | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:50:25:50:56 | 'mongod ... 7/test' | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:50:25:50:56 | 'mongod ... 7/test' | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:50:25:50:56 | 'mongod ... 7/test' | calleeImports | mongodb |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:50:25:50:56 | 'mongod ... 7/test' | contextFunctionInterfaces | useParams(params)\nuseQuery(queries) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:50:25:50:56 | 'mongod ... 7/test' | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:50:25:50:56 | 'mongod ... 7/test' | enclosingFunctionBody | req res query query title req query title MongoClient connect mongodb://localhost:27017/test err db doc db collection doc doc find query |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:50:25:50:56 | 'mongod ... 7/test' | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:50:25:50:56 | 'mongod ... 7/test' | fileImports | ./dbo.js body-parser express mongodb |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:50:25:50:56 | 'mongod ... 7/test' | receiverName | MongoClient |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:50:25:50:56 | 'mongod ... 7/test' | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:50:59:55:5 | (err, d ... ;\\n    } | CalleeFlexibleAccessPath | MongoClient.connect |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:50:59:55:5 | (err, d ... ;\\n    } | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:50:59:55:5 | (err, d ... ;\\n    } | InputArgumentIndex | 1 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:50:59:55:5 | (err, d ... ;\\n    } | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:50:59:55:5 | (err, d ... ;\\n    } | calleeImports | mongodb |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:50:59:55:5 | (err, d ... ;\\n    } | contextFunctionInterfaces | useParams(params)\nuseQuery(queries) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:50:59:55:5 | (err, d ... ;\\n    } | contextSurroundingFunctionParameters | (req, res)\n(err, db) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:50:59:55:5 | (err, d ... ;\\n    } | enclosingFunctionBody | req res query query title req query title MongoClient connect mongodb://localhost:27017/test err db doc db collection doc doc find query |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:50:59:55:5 | (err, d ... ;\\n    } | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:50:59:55:5 | (err, d ... ;\\n    } | fileImports | ./dbo.js body-parser express mongodb |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:50:59:55:5 | (err, d ... ;\\n    } | receiverName | MongoClient |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:50:59:55:5 | (err, d ... ;\\n    } | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:51:31:51:35 | 'doc' | CalleeFlexibleAccessPath | db.collection |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:51:31:51:35 | 'doc' | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:51:31:51:35 | 'doc' | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:51:31:51:35 | 'doc' | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:51:31:51:35 | 'doc' | calleeImports |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:51:31:51:35 | 'doc' | contextFunctionInterfaces | useParams(params)\nuseQuery(queries) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:51:31:51:35 | 'doc' | contextSurroundingFunctionParameters | (req, res)\n(err, db) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:51:31:51:35 | 'doc' | enclosingFunctionBody | req res query query title req query title MongoClient connect mongodb://localhost:27017/test err db doc db collection doc doc find query |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:51:31:51:35 | 'doc' | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:51:31:51:35 | 'doc' | fileImports | ./dbo.js body-parser express mongodb |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:51:31:51:35 | 'doc' | receiverName | db |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:51:31:51:35 | 'doc' | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:54:16:54:20 | query | CalleeFlexibleAccessPath | doc.find |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:54:16:54:20 | query | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:54:16:54:20 | query | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:54:16:54:20 | query | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:54:16:54:20 | query | calleeImports |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:54:16:54:20 | query | contextFunctionInterfaces | useParams(params)\nuseQuery(queries) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:54:16:54:20 | query | contextSurroundingFunctionParameters | (req, res)\n(err, db) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:54:16:54:20 | query | enclosingFunctionBody | req res query query title req query title MongoClient connect mongodb://localhost:27017/test err db doc db collection doc doc find query |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:54:16:54:20 | query | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:54:16:54:20 | query | fileImports | ./dbo.js body-parser express mongodb |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:54:16:54:20 | query | receiverName | doc |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:54:16:54:20 | query | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:58:10:58:26 | '/documents/find' | CalleeFlexibleAccessPath | app.post |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:58:10:58:26 | '/documents/find' | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:58:10:58:26 | '/documents/find' | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:58:10:58:26 | '/documents/find' | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:58:10:58:26 | '/documents/find' | calleeImports | express |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:58:10:58:26 | '/documents/find' | contextFunctionInterfaces | useParams(params)\nuseQuery(queries) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:58:10:58:26 | '/documents/find' | contextSurroundingFunctionParameters |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:58:10:58:26 | '/documents/find' | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:58:10:58:26 | '/documents/find' | enclosingFunctionName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:58:10:58:26 | '/documents/find' | fileImports | ./dbo.js body-parser express mongodb |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:58:10:58:26 | '/documents/find' | receiverName | app |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:58:10:58:26 | '/documents/find' | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:58:29:67:1 | (req, r ... \\n\\t});\\n} | CalleeFlexibleAccessPath | app.post |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:58:29:67:1 | (req, r ... \\n\\t});\\n} | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:58:29:67:1 | (req, r ... \\n\\t});\\n} | InputArgumentIndex | 1 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:58:29:67:1 | (req, r ... \\n\\t});\\n} | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:58:29:67:1 | (req, r ... \\n\\t});\\n} | calleeImports | express |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:58:29:67:1 | (req, r ... \\n\\t});\\n} | contextFunctionInterfaces | useParams(params)\nuseQuery(queries) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:58:29:67:1 | (req, r ... \\n\\t});\\n} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:58:29:67:1 | (req, r ... \\n\\t});\\n} | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:58:29:67:1 | (req, r ... \\n\\t});\\n} | enclosingFunctionName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:58:29:67:1 | (req, r ... \\n\\t});\\n} | fileImports | ./dbo.js body-parser express mongodb |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:58:29:67:1 | (req, r ... \\n\\t});\\n} | receiverName | app |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:58:29:67:1 | (req, r ... \\n\\t});\\n} | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:59:16:59:17 | {} | CalleeFlexibleAccessPath |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:59:16:59:17 | {} | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:59:16:59:17 | {} | InputArgumentIndex |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:59:16:59:17 | {} | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:59:16:59:17 | {} | calleeImports |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:59:16:59:17 | {} | contextFunctionInterfaces | useParams(params)\nuseQuery(queries) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:59:16:59:17 | {} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:59:16:59:17 | {} | enclosingFunctionBody | req res query query title req query title MongoClient connect mongodb://localhost:27017/test err client doc client db MASTER collection doc doc find query |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:59:16:59:17 | {} | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:59:16:59:17 | {} | fileImports | ./dbo.js body-parser express mongodb |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:59:16:59:17 | {} | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:59:16:59:17 | {} | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:61:22:61:53 | 'mongod ... 7/test' | CalleeFlexibleAccessPath | MongoClient.connect |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:61:22:61:53 | 'mongod ... 7/test' | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:61:22:61:53 | 'mongod ... 7/test' | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:61:22:61:53 | 'mongod ... 7/test' | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:61:22:61:53 | 'mongod ... 7/test' | calleeImports | mongodb |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:61:22:61:53 | 'mongod ... 7/test' | contextFunctionInterfaces | useParams(params)\nuseQuery(queries) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:61:22:61:53 | 'mongod ... 7/test' | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:61:22:61:53 | 'mongod ... 7/test' | enclosingFunctionBody | req res query query title req query title MongoClient connect mongodb://localhost:27017/test err client doc client db MASTER collection doc doc find query |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:61:22:61:53 | 'mongod ... 7/test' | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:61:22:61:53 | 'mongod ... 7/test' | fileImports | ./dbo.js body-parser express mongodb |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:61:22:61:53 | 'mongod ... 7/test' | receiverName | MongoClient |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:61:22:61:53 | 'mongod ... 7/test' | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:61:56:66:2 | (err, c ... ry);\\n\\t} | CalleeFlexibleAccessPath | MongoClient.connect |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:61:56:66:2 | (err, c ... ry);\\n\\t} | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:61:56:66:2 | (err, c ... ry);\\n\\t} | InputArgumentIndex | 1 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:61:56:66:2 | (err, c ... ry);\\n\\t} | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:61:56:66:2 | (err, c ... ry);\\n\\t} | calleeImports | mongodb |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:61:56:66:2 | (err, c ... ry);\\n\\t} | contextFunctionInterfaces | useParams(params)\nuseQuery(queries) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:61:56:66:2 | (err, c ... ry);\\n\\t} | contextSurroundingFunctionParameters | (req, res)\n(err, client) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:61:56:66:2 | (err, c ... ry);\\n\\t} | enclosingFunctionBody | req res query query title req query title MongoClient connect mongodb://localhost:27017/test err client doc client db MASTER collection doc doc find query |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:61:56:66:2 | (err, c ... ry);\\n\\t} | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:61:56:66:2 | (err, c ... ry);\\n\\t} | fileImports | ./dbo.js body-parser express mongodb |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:61:56:66:2 | (err, c ... ry);\\n\\t} | receiverName | MongoClient |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:61:56:66:2 | (err, c ... ry);\\n\\t} | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:62:23:62:30 | "MASTER" | CalleeFlexibleAccessPath | client.db |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:62:23:62:30 | "MASTER" | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:62:23:62:30 | "MASTER" | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:62:23:62:30 | "MASTER" | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:62:23:62:30 | "MASTER" | calleeImports |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:62:23:62:30 | "MASTER" | contextFunctionInterfaces | useParams(params)\nuseQuery(queries) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:62:23:62:30 | "MASTER" | contextSurroundingFunctionParameters | (req, res)\n(err, client) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:62:23:62:30 | "MASTER" | enclosingFunctionBody | req res query query title req query title MongoClient connect mongodb://localhost:27017/test err client doc client db MASTER collection doc doc find query |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:62:23:62:30 | "MASTER" | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:62:23:62:30 | "MASTER" | fileImports | ./dbo.js body-parser express mongodb |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:62:23:62:30 | "MASTER" | receiverName | client |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:62:23:62:30 | "MASTER" | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:62:44:62:48 | 'doc' | CalleeFlexibleAccessPath | client.db().collection |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:62:44:62:48 | 'doc' | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:62:44:62:48 | 'doc' | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:62:44:62:48 | 'doc' | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:62:44:62:48 | 'doc' | calleeImports |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:62:44:62:48 | 'doc' | contextFunctionInterfaces | useParams(params)\nuseQuery(queries) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:62:44:62:48 | 'doc' | contextSurroundingFunctionParameters | (req, res)\n(err, client) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:62:44:62:48 | 'doc' | enclosingFunctionBody | req res query query title req query title MongoClient connect mongodb://localhost:27017/test err client doc client db MASTER collection doc doc find query |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:62:44:62:48 | 'doc' | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:62:44:62:48 | 'doc' | fileImports | ./dbo.js body-parser express mongodb |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:62:44:62:48 | 'doc' | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:62:44:62:48 | 'doc' | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:65:12:65:16 | query | CalleeFlexibleAccessPath | doc.find |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:65:12:65:16 | query | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:65:12:65:16 | query | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:65:12:65:16 | query | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:65:12:65:16 | query | calleeImports |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:65:12:65:16 | query | contextFunctionInterfaces | useParams(params)\nuseQuery(queries) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:65:12:65:16 | query | contextSurroundingFunctionParameters | (req, res)\n(err, client) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:65:12:65:16 | query | enclosingFunctionBody | req res query query title req query title MongoClient connect mongodb://localhost:27017/test err client doc client db MASTER collection doc doc find query |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:65:12:65:16 | query | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:65:12:65:16 | query | fileImports | ./dbo.js body-parser express mongodb |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:65:12:65:16 | query | receiverName | doc |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:65:12:65:16 | query | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:69:10:69:29 | "/logs/count-by-tag" | CalleeFlexibleAccessPath | app.post |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:69:10:69:29 | "/logs/count-by-tag" | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:69:10:69:29 | "/logs/count-by-tag" | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:69:10:69:29 | "/logs/count-by-tag" | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:69:10:69:29 | "/logs/count-by-tag" | calleeImports | express |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:69:10:69:29 | "/logs/count-by-tag" | contextFunctionInterfaces | useParams(params)\nuseQuery(queries) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:69:10:69:29 | "/logs/count-by-tag" | contextSurroundingFunctionParameters |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:69:10:69:29 | "/logs/count-by-tag" | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:69:10:69:29 | "/logs/count-by-tag" | enclosingFunctionName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:69:10:69:29 | "/logs/count-by-tag" | fileImports | ./dbo.js body-parser express mongodb |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:69:10:69:29 | "/logs/count-by-tag" | receiverName | app |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:69:10:69:29 | "/logs/count-by-tag" | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:69:32:86:1 | (req, r ... g });\\n} | CalleeFlexibleAccessPath | app.post |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:69:32:86:1 | (req, r ... g });\\n} | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:69:32:86:1 | (req, r ... g });\\n} | InputArgumentIndex | 1 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:69:32:86:1 | (req, r ... g });\\n} | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:69:32:86:1 | (req, r ... g });\\n} | calleeImports | express |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:69:32:86:1 | (req, r ... g });\\n} | contextFunctionInterfaces | useParams(params)\nuseQuery(queries) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:69:32:86:1 | (req, r ... g });\\n} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:69:32:86:1 | (req, r ... g });\\n} | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:69:32:86:1 | (req, r ... g });\\n} | enclosingFunctionName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:69:32:86:1 | (req, r ... g });\\n} | fileImports | ./dbo.js body-parser express mongodb |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:69:32:86:1 | (req, r ... g });\\n} | receiverName | app |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:69:32:86:1 | (req, r ... g });\\n} | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:72:23:72:40 | process.env.DB_URL | CalleeFlexibleAccessPath | MongoClient.connect |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:72:23:72:40 | process.env.DB_URL | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:72:23:72:40 | process.env.DB_URL | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:72:23:72:40 | process.env.DB_URL | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:72:23:72:40 | process.env.DB_URL | calleeImports | mongodb |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:72:23:72:40 | process.env.DB_URL | contextFunctionInterfaces | useParams(params)\nuseQuery(queries) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:72:23:72:40 | process.env.DB_URL | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:72:23:72:40 | process.env.DB_URL | enclosingFunctionBody | req res tag req query tag MongoClient connect process env DB_URL err client client db process env DB_NAME collection logs count tags tag importedDbo require ./dbo.js importedDbo db collection logs count tags tag |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:72:23:72:40 | process.env.DB_URL | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:72:23:72:40 | process.env.DB_URL | fileImports | ./dbo.js body-parser express mongodb |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:72:23:72:40 | process.env.DB_URL | receiverName | MongoClient |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:72:23:72:40 | process.env.DB_URL | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:72:43:72:44 | {} | CalleeFlexibleAccessPath | MongoClient.connect |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:72:43:72:44 | {} | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:72:43:72:44 | {} | InputArgumentIndex | 1 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:72:43:72:44 | {} | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:72:43:72:44 | {} | calleeImports | mongodb |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:72:43:72:44 | {} | contextFunctionInterfaces | useParams(params)\nuseQuery(queries) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:72:43:72:44 | {} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:72:43:72:44 | {} | enclosingFunctionBody | req res tag req query tag MongoClient connect process env DB_URL err client client db process env DB_NAME collection logs count tags tag importedDbo require ./dbo.js importedDbo db collection logs count tags tag |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:72:43:72:44 | {} | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:72:43:72:44 | {} | fileImports | ./dbo.js body-parser express mongodb |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:72:43:72:44 | {} | receiverName | MongoClient |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:72:43:72:44 | {} | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:72:47:78:3 | (err, c ... });\\n  } | CalleeFlexibleAccessPath | MongoClient.connect |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:72:47:78:3 | (err, c ... });\\n  } | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:72:47:78:3 | (err, c ... });\\n  } | InputArgumentIndex | 2 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:72:47:78:3 | (err, c ... });\\n  } | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:72:47:78:3 | (err, c ... });\\n  } | calleeImports | mongodb |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:72:47:78:3 | (err, c ... });\\n  } | contextFunctionInterfaces | useParams(params)\nuseQuery(queries) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:72:47:78:3 | (err, c ... });\\n  } | contextSurroundingFunctionParameters | (req, res)\n(err, client) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:72:47:78:3 | (err, c ... });\\n  } | enclosingFunctionBody | req res tag req query tag MongoClient connect process env DB_URL err client client db process env DB_NAME collection logs count tags tag importedDbo require ./dbo.js importedDbo db collection logs count tags tag |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:72:47:78:3 | (err, c ... });\\n  } | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:72:47:78:3 | (err, c ... });\\n  } | fileImports | ./dbo.js body-parser express mongodb |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:72:47:78:3 | (err, c ... });\\n  } | receiverName | MongoClient |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:72:47:78:3 | (err, c ... });\\n  } | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:74:11:74:29 | process.env.DB_NAME | CalleeFlexibleAccessPath | client.db |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:74:11:74:29 | process.env.DB_NAME | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:74:11:74:29 | process.env.DB_NAME | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:74:11:74:29 | process.env.DB_NAME | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:74:11:74:29 | process.env.DB_NAME | calleeImports |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:74:11:74:29 | process.env.DB_NAME | contextFunctionInterfaces | useParams(params)\nuseQuery(queries) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:74:11:74:29 | process.env.DB_NAME | contextSurroundingFunctionParameters | (req, res)\n(err, client) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:74:11:74:29 | process.env.DB_NAME | enclosingFunctionBody | req res tag req query tag MongoClient connect process env DB_URL err client client db process env DB_NAME collection logs count tags tag importedDbo require ./dbo.js importedDbo db collection logs count tags tag |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:74:11:74:29 | process.env.DB_NAME | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:74:11:74:29 | process.env.DB_NAME | fileImports | ./dbo.js body-parser express mongodb |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:74:11:74:29 | process.env.DB_NAME | receiverName | client |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:74:11:74:29 | process.env.DB_NAME | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:75:19:75:24 | "logs" | CalleeFlexibleAccessPath | client.db().collection |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:75:19:75:24 | "logs" | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:75:19:75:24 | "logs" | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:75:19:75:24 | "logs" | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:75:19:75:24 | "logs" | calleeImports |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:75:19:75:24 | "logs" | contextFunctionInterfaces | useParams(params)\nuseQuery(queries) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:75:19:75:24 | "logs" | contextSurroundingFunctionParameters | (req, res)\n(err, client) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:75:19:75:24 | "logs" | enclosingFunctionBody | req res tag req query tag MongoClient connect process env DB_URL err client client db process env DB_NAME collection logs count tags tag importedDbo require ./dbo.js importedDbo db collection logs count tags tag |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:75:19:75:24 | "logs" | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:75:19:75:24 | "logs" | fileImports | ./dbo.js body-parser express mongodb |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:75:19:75:24 | "logs" | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:75:19:75:24 | "logs" | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:77:14:77:26 | { tags: tag } | CalleeFlexibleAccessPath | client.db().collection().count |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:77:14:77:26 | { tags: tag } | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:77:14:77:26 | { tags: tag } | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:77:14:77:26 | { tags: tag } | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:77:14:77:26 | { tags: tag } | calleeImports |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:77:14:77:26 | { tags: tag } | contextFunctionInterfaces | useParams(params)\nuseQuery(queries) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:77:14:77:26 | { tags: tag } | contextSurroundingFunctionParameters | (req, res)\n(err, client) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:77:14:77:26 | { tags: tag } | enclosingFunctionBody | req res tag req query tag MongoClient connect process env DB_URL err client client db process env DB_NAME collection logs count tags tag importedDbo require ./dbo.js importedDbo db collection logs count tags tag |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:77:14:77:26 | { tags: tag } | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:77:14:77:26 | { tags: tag } | fileImports | ./dbo.js body-parser express mongodb |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:77:14:77:26 | { tags: tag } | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:77:14:77:26 | { tags: tag } | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:77:22:77:24 | tag | CalleeFlexibleAccessPath | client.db().collection().count |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:77:22:77:24 | tag | InputAccessPathFromCallee | 0.tags |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:77:22:77:24 | tag | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:77:22:77:24 | tag | assignedToPropName | tags |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:77:22:77:24 | tag | calleeImports |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:77:22:77:24 | tag | contextFunctionInterfaces | useParams(params)\nuseQuery(queries) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:77:22:77:24 | tag | contextSurroundingFunctionParameters | (req, res)\n(err, client) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:77:22:77:24 | tag | enclosingFunctionBody | req res tag req query tag MongoClient connect process env DB_URL err client client db process env DB_NAME collection logs count tags tag importedDbo require ./dbo.js importedDbo db collection logs count tags tag |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:77:22:77:24 | tag | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:77:22:77:24 | tag | fileImports | ./dbo.js body-parser express mongodb |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:77:22:77:24 | tag | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:77:22:77:24 | tag | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:80:29:80:38 | "./dbo.js" | CalleeFlexibleAccessPath | require |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:80:29:80:38 | "./dbo.js" | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:80:29:80:38 | "./dbo.js" | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:80:29:80:38 | "./dbo.js" | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:80:29:80:38 | "./dbo.js" | calleeImports |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:80:29:80:38 | "./dbo.js" | contextFunctionInterfaces | useParams(params)\nuseQuery(queries) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:80:29:80:38 | "./dbo.js" | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:80:29:80:38 | "./dbo.js" | enclosingFunctionBody | req res tag req query tag MongoClient connect process env DB_URL err client client db process env DB_NAME collection logs count tags tag importedDbo require ./dbo.js importedDbo db collection logs count tags tag |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:80:29:80:38 | "./dbo.js" | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:80:29:80:38 | "./dbo.js" | fileImports | ./dbo.js body-parser express mongodb |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:80:29:80:38 | "./dbo.js" | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:80:29:80:38 | "./dbo.js" | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:83:17:83:22 | "logs" | CalleeFlexibleAccessPath | importedDbo.db().collection |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:83:17:83:22 | "logs" | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:83:17:83:22 | "logs" | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:83:17:83:22 | "logs" | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:83:17:83:22 | "logs" | calleeImports | ./dbo.js |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:83:17:83:22 | "logs" | contextFunctionInterfaces | useParams(params)\nuseQuery(queries) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:83:17:83:22 | "logs" | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:83:17:83:22 | "logs" | enclosingFunctionBody | req res tag req query tag MongoClient connect process env DB_URL err client client db process env DB_NAME collection logs count tags tag importedDbo require ./dbo.js importedDbo db collection logs count tags tag |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:83:17:83:22 | "logs" | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:83:17:83:22 | "logs" | fileImports | ./dbo.js body-parser express mongodb |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:83:17:83:22 | "logs" | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:83:17:83:22 | "logs" | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:85:12:85:24 | { tags: tag } | CalleeFlexibleAccessPath | importedDbo.db().collection().count |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:85:12:85:24 | { tags: tag } | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:85:12:85:24 | { tags: tag } | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:85:12:85:24 | { tags: tag } | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:85:12:85:24 | { tags: tag } | calleeImports | ./dbo.js |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:85:12:85:24 | { tags: tag } | contextFunctionInterfaces | useParams(params)\nuseQuery(queries) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:85:12:85:24 | { tags: tag } | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:85:12:85:24 | { tags: tag } | enclosingFunctionBody | req res tag req query tag MongoClient connect process env DB_URL err client client db process env DB_NAME collection logs count tags tag importedDbo require ./dbo.js importedDbo db collection logs count tags tag |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:85:12:85:24 | { tags: tag } | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:85:12:85:24 | { tags: tag } | fileImports | ./dbo.js body-parser express mongodb |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:85:12:85:24 | { tags: tag } | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:85:12:85:24 | { tags: tag } | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:85:20:85:22 | tag | CalleeFlexibleAccessPath | importedDbo.db().collection().count |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:85:20:85:22 | tag | InputAccessPathFromCallee | 0.tags |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:85:20:85:22 | tag | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:85:20:85:22 | tag | assignedToPropName | tags |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:85:20:85:22 | tag | calleeImports | ./dbo.js |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:85:20:85:22 | tag | contextFunctionInterfaces | useParams(params)\nuseQuery(queries) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:85:20:85:22 | tag | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:85:20:85:22 | tag | enclosingFunctionBody | req res tag req query tag MongoClient connect process env DB_URL err client client db process env DB_NAME collection logs count tags tag importedDbo require ./dbo.js importedDbo db collection logs count tags tag |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:85:20:85:22 | tag | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:85:20:85:22 | tag | fileImports | ./dbo.js body-parser express mongodb |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:85:20:85:22 | tag | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:85:20:85:22 | tag | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:89:9:89:14 | '/:id' | CalleeFlexibleAccessPath | app.get |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:89:9:89:14 | '/:id' | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:89:9:89:14 | '/:id' | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:89:9:89:14 | '/:id' | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:89:9:89:14 | '/:id' | calleeImports | express |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:89:9:89:14 | '/:id' | contextFunctionInterfaces | useParams(params)\nuseQuery(queries) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:89:9:89:14 | '/:id' | contextSurroundingFunctionParameters |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:89:9:89:14 | '/:id' | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:89:9:89:14 | '/:id' | enclosingFunctionName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:89:9:89:14 | '/:id' | fileImports | ./dbo.js body-parser express mongodb |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:89:9:89:14 | '/:id' | receiverName | app |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:89:9:89:14 | '/:id' | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:89:17:91:1 | (req, r ... ram);\\n} | CalleeFlexibleAccessPath | app.get |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:89:17:91:1 | (req, r ... ram);\\n} | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:89:17:91:1 | (req, r ... ram);\\n} | InputArgumentIndex | 1 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:89:17:91:1 | (req, r ... ram);\\n} | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:89:17:91:1 | (req, r ... ram);\\n} | calleeImports | express |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:89:17:91:1 | (req, r ... ram);\\n} | contextFunctionInterfaces | useParams(params)\nuseQuery(queries) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:89:17:91:1 | (req, r ... ram);\\n} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:89:17:91:1 | (req, r ... ram);\\n} | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:89:17:91:1 | (req, r ... ram);\\n} | enclosingFunctionName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:89:17:91:1 | (req, r ... ram);\\n} | fileImports | ./dbo.js body-parser express mongodb |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:89:17:91:1 | (req, r ... ram);\\n} | receiverName | app |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:89:17:91:1 | (req, r ... ram);\\n} | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:93:15:93:31 | { id: params.id } | CalleeFlexibleAccessPath |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:93:15:93:31 | { id: params.id } | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:93:15:93:31 | { id: params.id } | InputArgumentIndex |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:93:15:93:31 | { id: params.id } | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:93:15:93:31 | { id: params.id } | calleeImports |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:93:15:93:31 | { id: params.id } | contextFunctionInterfaces | useParams(params)\nuseQuery(queries) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:93:15:93:31 | { id: params.id } | contextSurroundingFunctionParameters | (params) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:93:15:93:31 | { id: params.id } | enclosingFunctionBody | params query id params id MongoClient connect mongodb://localhost:27017/test err db doc db collection doc doc find query |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:93:15:93:31 | { id: params.id } | enclosingFunctionName | useParams |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:93:15:93:31 | { id: params.id } | fileImports | ./dbo.js body-parser express mongodb |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:93:15:93:31 | { id: params.id } | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:93:15:93:31 | { id: params.id } | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:94:23:94:54 | 'mongod ... 7/test' | CalleeFlexibleAccessPath | MongoClient.connect |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:94:23:94:54 | 'mongod ... 7/test' | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:94:23:94:54 | 'mongod ... 7/test' | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:94:23:94:54 | 'mongod ... 7/test' | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:94:23:94:54 | 'mongod ... 7/test' | calleeImports | mongodb |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:94:23:94:54 | 'mongod ... 7/test' | contextFunctionInterfaces | useParams(params)\nuseQuery(queries) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:94:23:94:54 | 'mongod ... 7/test' | contextSurroundingFunctionParameters | (params) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:94:23:94:54 | 'mongod ... 7/test' | enclosingFunctionBody | params query id params id MongoClient connect mongodb://localhost:27017/test err db doc db collection doc doc find query |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:94:23:94:54 | 'mongod ... 7/test' | enclosingFunctionName | useParams |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:94:23:94:54 | 'mongod ... 7/test' | fileImports | ./dbo.js body-parser express mongodb |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:94:23:94:54 | 'mongod ... 7/test' | receiverName | MongoClient |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:94:23:94:54 | 'mongod ... 7/test' | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:94:57:99:3 | (err, d ... y);\\n  } | CalleeFlexibleAccessPath | MongoClient.connect |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:94:57:99:3 | (err, d ... y);\\n  } | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:94:57:99:3 | (err, d ... y);\\n  } | InputArgumentIndex | 1 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:94:57:99:3 | (err, d ... y);\\n  } | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:94:57:99:3 | (err, d ... y);\\n  } | calleeImports | mongodb |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:94:57:99:3 | (err, d ... y);\\n  } | contextFunctionInterfaces | useParams(params)\nuseQuery(queries) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:94:57:99:3 | (err, d ... y);\\n  } | contextSurroundingFunctionParameters | (params)\n(err, db) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:94:57:99:3 | (err, d ... y);\\n  } | enclosingFunctionBody | params query id params id MongoClient connect mongodb://localhost:27017/test err db doc db collection doc doc find query |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:94:57:99:3 | (err, d ... y);\\n  } | enclosingFunctionName | useParams |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:94:57:99:3 | (err, d ... y);\\n  } | fileImports | ./dbo.js body-parser express mongodb |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:94:57:99:3 | (err, d ... y);\\n  } | receiverName | MongoClient |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:94:57:99:3 | (err, d ... y);\\n  } | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:95:29:95:33 | 'doc' | CalleeFlexibleAccessPath | db.collection |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:95:29:95:33 | 'doc' | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:95:29:95:33 | 'doc' | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:95:29:95:33 | 'doc' | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:95:29:95:33 | 'doc' | calleeImports |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:95:29:95:33 | 'doc' | contextFunctionInterfaces | useParams(params)\nuseQuery(queries) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:95:29:95:33 | 'doc' | contextSurroundingFunctionParameters | (params)\n(err, db) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:95:29:95:33 | 'doc' | enclosingFunctionBody | params query id params id MongoClient connect mongodb://localhost:27017/test err db doc db collection doc doc find query |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:95:29:95:33 | 'doc' | enclosingFunctionName | useParams |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:95:29:95:33 | 'doc' | fileImports | ./dbo.js body-parser express mongodb |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:95:29:95:33 | 'doc' | receiverName | db |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:95:29:95:33 | 'doc' | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:98:14:98:18 | query | CalleeFlexibleAccessPath | doc.find |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:98:14:98:18 | query | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:98:14:98:18 | query | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:98:14:98:18 | query | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:98:14:98:18 | query | calleeImports |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:98:14:98:18 | query | contextFunctionInterfaces | useParams(params)\nuseQuery(queries) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:98:14:98:18 | query | contextSurroundingFunctionParameters | (params)\n(err, db) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:98:14:98:18 | query | enclosingFunctionBody | params query id params id MongoClient connect mongodb://localhost:27017/test err db doc db collection doc doc find query |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:98:14:98:18 | query | enclosingFunctionName | useParams |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:98:14:98:18 | query | fileImports | ./dbo.js body-parser express mongodb |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:98:14:98:18 | query | receiverName | doc |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:98:14:98:18 | query | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:102:10:102:26 | '/documents/find' | CalleeFlexibleAccessPath | app.post |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:102:10:102:26 | '/documents/find' | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:102:10:102:26 | '/documents/find' | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:102:10:102:26 | '/documents/find' | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:102:10:102:26 | '/documents/find' | calleeImports | express |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:102:10:102:26 | '/documents/find' | contextFunctionInterfaces | useParams(params)\nuseQuery(queries) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:102:10:102:26 | '/documents/find' | contextSurroundingFunctionParameters |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:102:10:102:26 | '/documents/find' | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:102:10:102:26 | '/documents/find' | enclosingFunctionName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:102:10:102:26 | '/documents/find' | fileImports | ./dbo.js body-parser express mongodb |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:102:10:102:26 | '/documents/find' | receiverName | app |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:102:10:102:26 | '/documents/find' | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:102:29:104:1 | (req, r ... ery);\\n} | CalleeFlexibleAccessPath | app.post |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:102:29:104:1 | (req, r ... ery);\\n} | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:102:29:104:1 | (req, r ... ery);\\n} | InputArgumentIndex | 1 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:102:29:104:1 | (req, r ... ery);\\n} | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:102:29:104:1 | (req, r ... ery);\\n} | calleeImports | express |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:102:29:104:1 | (req, r ... ery);\\n} | contextFunctionInterfaces | useParams(params)\nuseQuery(queries) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:102:29:104:1 | (req, r ... ery);\\n} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:102:29:104:1 | (req, r ... ery);\\n} | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:102:29:104:1 | (req, r ... ery);\\n} | enclosingFunctionName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:102:29:104:1 | (req, r ... ery);\\n} | fileImports | ./dbo.js body-parser express mongodb |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:102:29:104:1 | (req, r ... ery);\\n} | receiverName | app |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:102:29:104:1 | (req, r ... ery);\\n} | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:106:17:106:18 | {} | CalleeFlexibleAccessPath |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:106:17:106:18 | {} | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:106:17:106:18 | {} | InputArgumentIndex |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:106:17:106:18 | {} | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:106:17:106:18 | {} | calleeImports |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:106:17:106:18 | {} | contextFunctionInterfaces | useParams(params)\nuseQuery(queries) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:106:17:106:18 | {} | contextSurroundingFunctionParameters | (queries) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:106:17:106:18 | {} | enclosingFunctionBody | queries query query title queries title MongoClient connect mongodb://localhost:27017/test err db doc db collection doc doc find query |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:106:17:106:18 | {} | enclosingFunctionName | useQuery |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:106:17:106:18 | {} | fileImports | ./dbo.js body-parser express mongodb |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:106:17:106:18 | {} | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:106:17:106:18 | {} | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:108:23:108:54 | 'mongod ... 7/test' | CalleeFlexibleAccessPath | MongoClient.connect |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:108:23:108:54 | 'mongod ... 7/test' | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:108:23:108:54 | 'mongod ... 7/test' | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:108:23:108:54 | 'mongod ... 7/test' | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:108:23:108:54 | 'mongod ... 7/test' | calleeImports | mongodb |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:108:23:108:54 | 'mongod ... 7/test' | contextFunctionInterfaces | useParams(params)\nuseQuery(queries) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:108:23:108:54 | 'mongod ... 7/test' | contextSurroundingFunctionParameters | (queries) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:108:23:108:54 | 'mongod ... 7/test' | enclosingFunctionBody | queries query query title queries title MongoClient connect mongodb://localhost:27017/test err db doc db collection doc doc find query |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:108:23:108:54 | 'mongod ... 7/test' | enclosingFunctionName | useQuery |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:108:23:108:54 | 'mongod ... 7/test' | fileImports | ./dbo.js body-parser express mongodb |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:108:23:108:54 | 'mongod ... 7/test' | receiverName | MongoClient |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:108:23:108:54 | 'mongod ... 7/test' | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:108:57:113:3 | (err, d ... y);\\n  } | CalleeFlexibleAccessPath | MongoClient.connect |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:108:57:113:3 | (err, d ... y);\\n  } | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:108:57:113:3 | (err, d ... y);\\n  } | InputArgumentIndex | 1 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:108:57:113:3 | (err, d ... y);\\n  } | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:108:57:113:3 | (err, d ... y);\\n  } | calleeImports | mongodb |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:108:57:113:3 | (err, d ... y);\\n  } | contextFunctionInterfaces | useParams(params)\nuseQuery(queries) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:108:57:113:3 | (err, d ... y);\\n  } | contextSurroundingFunctionParameters | (queries)\n(err, db) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:108:57:113:3 | (err, d ... y);\\n  } | enclosingFunctionBody | queries query query title queries title MongoClient connect mongodb://localhost:27017/test err db doc db collection doc doc find query |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:108:57:113:3 | (err, d ... y);\\n  } | enclosingFunctionName | useQuery |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:108:57:113:3 | (err, d ... y);\\n  } | fileImports | ./dbo.js body-parser express mongodb |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:108:57:113:3 | (err, d ... y);\\n  } | receiverName | MongoClient |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:108:57:113:3 | (err, d ... y);\\n  } | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:109:29:109:33 | 'doc' | CalleeFlexibleAccessPath | db.collection |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:109:29:109:33 | 'doc' | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:109:29:109:33 | 'doc' | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:109:29:109:33 | 'doc' | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:109:29:109:33 | 'doc' | calleeImports |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:109:29:109:33 | 'doc' | contextFunctionInterfaces | useParams(params)\nuseQuery(queries) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:109:29:109:33 | 'doc' | contextSurroundingFunctionParameters | (queries)\n(err, db) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:109:29:109:33 | 'doc' | enclosingFunctionBody | queries query query title queries title MongoClient connect mongodb://localhost:27017/test err db doc db collection doc doc find query |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:109:29:109:33 | 'doc' | enclosingFunctionName | useQuery |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:109:29:109:33 | 'doc' | fileImports | ./dbo.js body-parser express mongodb |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:109:29:109:33 | 'doc' | receiverName | db |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:109:29:109:33 | 'doc' | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:112:14:112:18 | query | CalleeFlexibleAccessPath | doc.find |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:112:14:112:18 | query | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:112:14:112:18 | query | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:112:14:112:18 | query | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:112:14:112:18 | query | calleeImports |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:112:14:112:18 | query | contextFunctionInterfaces | useParams(params)\nuseQuery(queries) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:112:14:112:18 | query | contextSurroundingFunctionParameters | (queries)\n(err, db) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:112:14:112:18 | query | enclosingFunctionBody | queries query query title queries title MongoClient connect mongodb://localhost:27017/test err db doc db collection doc doc find query |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:112:14:112:18 | query | enclosingFunctionName | useQuery |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:112:14:112:18 | query | fileImports | ./dbo.js body-parser express mongodb |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:112:14:112:18 | query | receiverName | doc |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:112:14:112:18 | query | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:1:25:1:33 | 'express' | CalleeFlexibleAccessPath | require |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:1:25:1:33 | 'express' | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:1:25:1:33 | 'express' | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:1:25:1:33 | 'express' | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:1:25:1:33 | 'express' | calleeImports |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:1:25:1:33 | 'express' | contextFunctionInterfaces |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:1:25:1:33 | 'express' | contextSurroundingFunctionParameters |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:1:25:1:33 | 'express' | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:1:25:1:33 | 'express' | enclosingFunctionName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:1:25:1:33 | 'express' | fileImports | body-parser express mongodb |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:1:25:1:33 | 'express' | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:1:25:1:33 | 'express' | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:2:25:2:33 | 'mongodb' | CalleeFlexibleAccessPath | require |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:2:25:2:33 | 'mongodb' | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:2:25:2:33 | 'mongodb' | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:2:25:2:33 | 'mongodb' | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:2:25:2:33 | 'mongodb' | calleeImports |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:2:25:2:33 | 'mongodb' | contextFunctionInterfaces |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:2:25:2:33 | 'mongodb' | contextSurroundingFunctionParameters |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:2:25:2:33 | 'mongodb' | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:2:25:2:33 | 'mongodb' | enclosingFunctionName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:2:25:2:33 | 'mongodb' | fileImports | body-parser express mongodb |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:2:25:2:33 | 'mongodb' | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:2:25:2:33 | 'mongodb' | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:3:28:3:40 | 'body-parser' | CalleeFlexibleAccessPath | require |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:3:28:3:40 | 'body-parser' | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:3:28:3:40 | 'body-parser' | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:3:28:3:40 | 'body-parser' | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:3:28:3:40 | 'body-parser' | calleeImports |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:3:28:3:40 | 'body-parser' | contextFunctionInterfaces |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:3:28:3:40 | 'body-parser' | contextSurroundingFunctionParameters |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:3:28:3:40 | 'body-parser' | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:3:28:3:40 | 'body-parser' | enclosingFunctionName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:3:28:3:40 | 'body-parser' | fileImports | body-parser express mongodb |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:3:28:3:40 | 'body-parser' | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:3:28:3:40 | 'body-parser' | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:9:9:9:50 | bodyPar ... alse }) | CalleeFlexibleAccessPath | app.use |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:9:9:9:50 | bodyPar ... alse }) | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:9:9:9:50 | bodyPar ... alse }) | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:9:9:9:50 | bodyPar ... alse }) | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:9:9:9:50 | bodyPar ... alse }) | calleeImports | express |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:9:9:9:50 | bodyPar ... alse }) | contextFunctionInterfaces |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:9:9:9:50 | bodyPar ... alse }) | contextSurroundingFunctionParameters |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:9:9:9:50 | bodyPar ... alse }) | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:9:9:9:50 | bodyPar ... alse }) | enclosingFunctionName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:9:9:9:50 | bodyPar ... alse }) | fileImports | body-parser express mongodb |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:9:9:9:50 | bodyPar ... alse }) | receiverName | app |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:9:9:9:50 | bodyPar ... alse }) | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:9:31:9:49 | { extended: false } | CalleeFlexibleAccessPath | bodyParser.urlencoded |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:9:31:9:49 | { extended: false } | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:9:31:9:49 | { extended: false } | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:9:31:9:49 | { extended: false } | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:9:31:9:49 | { extended: false } | calleeImports | body-parser |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:9:31:9:49 | { extended: false } | contextFunctionInterfaces |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:9:31:9:49 | { extended: false } | contextSurroundingFunctionParameters |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:9:31:9:49 | { extended: false } | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:9:31:9:49 | { extended: false } | enclosingFunctionName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:9:31:9:49 | { extended: false } | fileImports | body-parser express mongodb |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:9:31:9:49 | { extended: false } | receiverName | bodyParser |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:9:31:9:49 | { extended: false } | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:9:43:9:47 | false | CalleeFlexibleAccessPath | bodyParser.urlencoded |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:9:43:9:47 | false | InputAccessPathFromCallee | 0.extended |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:9:43:9:47 | false | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:9:43:9:47 | false | assignedToPropName | extended |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:9:43:9:47 | false | calleeImports | body-parser |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:9:43:9:47 | false | contextFunctionInterfaces |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:9:43:9:47 | false | contextSurroundingFunctionParameters |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:9:43:9:47 | false | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:9:43:9:47 | false | enclosingFunctionName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:9:43:9:47 | false | fileImports | body-parser express mongodb |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:9:43:9:47 | false | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:9:43:9:47 | false | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:11:10:11:26 | '/documents/find' | CalleeFlexibleAccessPath | app.post |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:11:10:11:26 | '/documents/find' | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:11:10:11:26 | '/documents/find' | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:11:10:11:26 | '/documents/find' | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:11:10:11:26 | '/documents/find' | calleeImports | express |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:11:10:11:26 | '/documents/find' | contextFunctionInterfaces |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:11:10:11:26 | '/documents/find' | contextSurroundingFunctionParameters |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:11:10:11:26 | '/documents/find' | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:11:10:11:26 | '/documents/find' | enclosingFunctionName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:11:10:11:26 | '/documents/find' | fileImports | body-parser express mongodb |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:11:10:11:26 | '/documents/find' | receiverName | app |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:11:10:11:26 | '/documents/find' | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:11:29:20:1 | (req, r ...   });\\n} | CalleeFlexibleAccessPath | app.post |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:11:29:20:1 | (req, r ...   });\\n} | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:11:29:20:1 | (req, r ...   });\\n} | InputArgumentIndex | 1 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:11:29:20:1 | (req, r ...   });\\n} | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:11:29:20:1 | (req, r ...   });\\n} | calleeImports | express |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:11:29:20:1 | (req, r ...   });\\n} | contextFunctionInterfaces |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:11:29:20:1 | (req, r ...   });\\n} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:11:29:20:1 | (req, r ...   });\\n} | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:11:29:20:1 | (req, r ...   });\\n} | enclosingFunctionName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:11:29:20:1 | (req, r ...   });\\n} | fileImports | body-parser express mongodb |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:11:29:20:1 | (req, r ...   });\\n} | receiverName | app |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:11:29:20:1 | (req, r ...   });\\n} | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:12:19:12:20 | {} | CalleeFlexibleAccessPath |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:12:19:12:20 | {} | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:12:19:12:20 | {} | InputArgumentIndex |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:12:19:12:20 | {} | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:12:19:12:20 | {} | calleeImports |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:12:19:12:20 | {} | contextFunctionInterfaces |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:12:19:12:20 | {} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:12:19:12:20 | {} | enclosingFunctionBody | req res query query title req body title MongoClient connect mongodb://localhost:27017/test err db doc db collection doc doc find query |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:12:19:12:20 | {} | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:12:19:12:20 | {} | fileImports | body-parser express mongodb |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:12:19:12:20 | {} | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:12:19:12:20 | {} | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:14:25:14:56 | 'mongod ... 7/test' | CalleeFlexibleAccessPath | MongoClient.connect |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:14:25:14:56 | 'mongod ... 7/test' | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:14:25:14:56 | 'mongod ... 7/test' | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:14:25:14:56 | 'mongod ... 7/test' | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:14:25:14:56 | 'mongod ... 7/test' | calleeImports | mongodb |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:14:25:14:56 | 'mongod ... 7/test' | contextFunctionInterfaces |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:14:25:14:56 | 'mongod ... 7/test' | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:14:25:14:56 | 'mongod ... 7/test' | enclosingFunctionBody | req res query query title req body title MongoClient connect mongodb://localhost:27017/test err db doc db collection doc doc find query |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:14:25:14:56 | 'mongod ... 7/test' | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:14:25:14:56 | 'mongod ... 7/test' | fileImports | body-parser express mongodb |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:14:25:14:56 | 'mongod ... 7/test' | receiverName | MongoClient |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:14:25:14:56 | 'mongod ... 7/test' | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:14:59:19:5 | (err, d ... ;\\n    } | CalleeFlexibleAccessPath | MongoClient.connect |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:14:59:19:5 | (err, d ... ;\\n    } | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:14:59:19:5 | (err, d ... ;\\n    } | InputArgumentIndex | 1 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:14:59:19:5 | (err, d ... ;\\n    } | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:14:59:19:5 | (err, d ... ;\\n    } | calleeImports | mongodb |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:14:59:19:5 | (err, d ... ;\\n    } | contextFunctionInterfaces |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:14:59:19:5 | (err, d ... ;\\n    } | contextSurroundingFunctionParameters | (req, res)\n(err, db) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:14:59:19:5 | (err, d ... ;\\n    } | enclosingFunctionBody | req res query query title req body title MongoClient connect mongodb://localhost:27017/test err db doc db collection doc doc find query |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:14:59:19:5 | (err, d ... ;\\n    } | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:14:59:19:5 | (err, d ... ;\\n    } | fileImports | body-parser express mongodb |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:14:59:19:5 | (err, d ... ;\\n    } | receiverName | MongoClient |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:14:59:19:5 | (err, d ... ;\\n    } | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:15:31:15:35 | 'doc' | CalleeFlexibleAccessPath | db.collection |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:15:31:15:35 | 'doc' | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:15:31:15:35 | 'doc' | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:15:31:15:35 | 'doc' | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:15:31:15:35 | 'doc' | calleeImports |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:15:31:15:35 | 'doc' | contextFunctionInterfaces |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:15:31:15:35 | 'doc' | contextSurroundingFunctionParameters | (req, res)\n(err, db) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:15:31:15:35 | 'doc' | enclosingFunctionBody | req res query query title req body title MongoClient connect mongodb://localhost:27017/test err db doc db collection doc doc find query |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:15:31:15:35 | 'doc' | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:15:31:15:35 | 'doc' | fileImports | body-parser express mongodb |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:15:31:15:35 | 'doc' | receiverName | db |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:15:31:15:35 | 'doc' | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:18:16:18:20 | query | CalleeFlexibleAccessPath | doc.find |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:18:16:18:20 | query | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:18:16:18:20 | query | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:18:16:18:20 | query | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:18:16:18:20 | query | calleeImports |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:18:16:18:20 | query | contextFunctionInterfaces |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:18:16:18:20 | query | contextSurroundingFunctionParameters | (req, res)\n(err, db) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:18:16:18:20 | query | enclosingFunctionBody | req res query query title req body title MongoClient connect mongodb://localhost:27017/test err db doc db collection doc doc find query |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:18:16:18:20 | query | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:18:16:18:20 | query | fileImports | body-parser express mongodb |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:18:16:18:20 | query | receiverName | doc |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:18:16:18:20 | query | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:22:10:22:26 | '/documents/find' | CalleeFlexibleAccessPath | app.post |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:22:10:22:26 | '/documents/find' | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:22:10:22:26 | '/documents/find' | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:22:10:22:26 | '/documents/find' | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:22:10:22:26 | '/documents/find' | calleeImports | express |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:22:10:22:26 | '/documents/find' | contextFunctionInterfaces |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:22:10:22:26 | '/documents/find' | contextSurroundingFunctionParameters |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:22:10:22:26 | '/documents/find' | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:22:10:22:26 | '/documents/find' | enclosingFunctionName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:22:10:22:26 | '/documents/find' | fileImports | body-parser express mongodb |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:22:10:22:26 | '/documents/find' | receiverName | app |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:22:10:22:26 | '/documents/find' | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:22:29:31:1 | (req, r ...   });\\n} | CalleeFlexibleAccessPath | app.post |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:22:29:31:1 | (req, r ...   });\\n} | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:22:29:31:1 | (req, r ...   });\\n} | InputArgumentIndex | 1 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:22:29:31:1 | (req, r ...   });\\n} | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:22:29:31:1 | (req, r ...   });\\n} | calleeImports | express |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:22:29:31:1 | (req, r ...   });\\n} | contextFunctionInterfaces |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:22:29:31:1 | (req, r ...   });\\n} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:22:29:31:1 | (req, r ...   });\\n} | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:22:29:31:1 | (req, r ...   });\\n} | enclosingFunctionName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:22:29:31:1 | (req, r ...   });\\n} | fileImports | body-parser express mongodb |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:22:29:31:1 | (req, r ...   });\\n} | receiverName | app |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:22:29:31:1 | (req, r ...   });\\n} | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:23:19:23:20 | {} | CalleeFlexibleAccessPath |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:23:19:23:20 | {} | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:23:19:23:20 | {} | InputArgumentIndex |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:23:19:23:20 | {} | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:23:19:23:20 | {} | calleeImports |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:23:19:23:20 | {} | contextFunctionInterfaces |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:23:19:23:20 | {} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:23:19:23:20 | {} | enclosingFunctionBody | req res query query title req query title MongoClient connect mongodb://localhost:27017/test err db doc db collection doc doc find query |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:23:19:23:20 | {} | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:23:19:23:20 | {} | fileImports | body-parser express mongodb |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:23:19:23:20 | {} | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:23:19:23:20 | {} | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:25:25:25:56 | 'mongod ... 7/test' | CalleeFlexibleAccessPath | MongoClient.connect |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:25:25:25:56 | 'mongod ... 7/test' | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:25:25:25:56 | 'mongod ... 7/test' | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:25:25:25:56 | 'mongod ... 7/test' | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:25:25:25:56 | 'mongod ... 7/test' | calleeImports | mongodb |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:25:25:25:56 | 'mongod ... 7/test' | contextFunctionInterfaces |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:25:25:25:56 | 'mongod ... 7/test' | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:25:25:25:56 | 'mongod ... 7/test' | enclosingFunctionBody | req res query query title req query title MongoClient connect mongodb://localhost:27017/test err db doc db collection doc doc find query |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:25:25:25:56 | 'mongod ... 7/test' | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:25:25:25:56 | 'mongod ... 7/test' | fileImports | body-parser express mongodb |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:25:25:25:56 | 'mongod ... 7/test' | receiverName | MongoClient |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:25:25:25:56 | 'mongod ... 7/test' | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:25:59:30:5 | (err, d ... ;\\n    } | CalleeFlexibleAccessPath | MongoClient.connect |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:25:59:30:5 | (err, d ... ;\\n    } | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:25:59:30:5 | (err, d ... ;\\n    } | InputArgumentIndex | 1 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:25:59:30:5 | (err, d ... ;\\n    } | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:25:59:30:5 | (err, d ... ;\\n    } | calleeImports | mongodb |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:25:59:30:5 | (err, d ... ;\\n    } | contextFunctionInterfaces |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:25:59:30:5 | (err, d ... ;\\n    } | contextSurroundingFunctionParameters | (req, res)\n(err, db) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:25:59:30:5 | (err, d ... ;\\n    } | enclosingFunctionBody | req res query query title req query title MongoClient connect mongodb://localhost:27017/test err db doc db collection doc doc find query |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:25:59:30:5 | (err, d ... ;\\n    } | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:25:59:30:5 | (err, d ... ;\\n    } | fileImports | body-parser express mongodb |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:25:59:30:5 | (err, d ... ;\\n    } | receiverName | MongoClient |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:25:59:30:5 | (err, d ... ;\\n    } | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:26:31:26:35 | 'doc' | CalleeFlexibleAccessPath | db.collection |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:26:31:26:35 | 'doc' | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:26:31:26:35 | 'doc' | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:26:31:26:35 | 'doc' | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:26:31:26:35 | 'doc' | calleeImports |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:26:31:26:35 | 'doc' | contextFunctionInterfaces |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:26:31:26:35 | 'doc' | contextSurroundingFunctionParameters | (req, res)\n(err, db) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:26:31:26:35 | 'doc' | enclosingFunctionBody | req res query query title req query title MongoClient connect mongodb://localhost:27017/test err db doc db collection doc doc find query |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:26:31:26:35 | 'doc' | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:26:31:26:35 | 'doc' | fileImports | body-parser express mongodb |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:26:31:26:35 | 'doc' | receiverName | db |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:26:31:26:35 | 'doc' | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:29:16:29:20 | query | CalleeFlexibleAccessPath | doc.find |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:29:16:29:20 | query | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:29:16:29:20 | query | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:29:16:29:20 | query | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:29:16:29:20 | query | calleeImports |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:29:16:29:20 | query | contextFunctionInterfaces |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:29:16:29:20 | query | contextSurroundingFunctionParameters | (req, res)\n(err, db) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:29:16:29:20 | query | enclosingFunctionBody | req res query query title req query title MongoClient connect mongodb://localhost:27017/test err db doc db collection doc doc find query |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:29:16:29:20 | query | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:29:16:29:20 | query | fileImports | body-parser express mongodb |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:29:16:29:20 | query | receiverName | doc |
-| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:29:16:29:20 | query | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:2:25:2:33 | 'express' | CalleeFlexibleAccessPath | require |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:2:25:2:33 | 'express' | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:2:25:2:33 | 'express' | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:2:25:2:33 | 'express' | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:2:25:2:33 | 'express' | calleeImports |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:2:25:2:33 | 'express' | contextFunctionInterfaces | getQueryConstructor()\ninnocent(X, Y, query) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:2:25:2:33 | 'express' | contextSurroundingFunctionParameters |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:2:25:2:33 | 'express' | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:2:25:2:33 | 'express' | enclosingFunctionName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:2:25:2:33 | 'express' | fileImports | body-parser express mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:2:25:2:33 | 'express' | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:2:25:2:33 | 'express' | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:3:28:3:40 | 'body-parser' | CalleeFlexibleAccessPath | require |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:3:28:3:40 | 'body-parser' | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:3:28:3:40 | 'body-parser' | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:3:28:3:40 | 'body-parser' | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:3:28:3:40 | 'body-parser' | calleeImports |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:3:28:3:40 | 'body-parser' | contextFunctionInterfaces | getQueryConstructor()\ninnocent(X, Y, query) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:3:28:3:40 | 'body-parser' | contextSurroundingFunctionParameters |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:3:28:3:40 | 'body-parser' | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:3:28:3:40 | 'body-parser' | enclosingFunctionName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:3:28:3:40 | 'body-parser' | fileImports | body-parser express mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:3:28:3:40 | 'body-parser' | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:3:28:3:40 | 'body-parser' | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:4:26:4:35 | 'mongoose' | CalleeFlexibleAccessPath | require |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:4:26:4:35 | 'mongoose' | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:4:26:4:35 | 'mongoose' | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:4:26:4:35 | 'mongoose' | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:4:26:4:35 | 'mongoose' | calleeImports |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:4:26:4:35 | 'mongoose' | contextFunctionInterfaces | getQueryConstructor()\ninnocent(X, Y, query) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:4:26:4:35 | 'mongoose' | contextSurroundingFunctionParameters |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:4:26:4:35 | 'mongoose' | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:4:26:4:35 | 'mongoose' | enclosingFunctionName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:4:26:4:35 | 'mongoose' | fileImports | body-parser express mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:4:26:4:35 | 'mongoose' | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:4:26:4:35 | 'mongoose' | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:6:18:6:50 | 'mongod ... table1' | CalleeFlexibleAccessPath | Mongoose.connect |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:6:18:6:50 | 'mongod ... table1' | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:6:18:6:50 | 'mongod ... table1' | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:6:18:6:50 | 'mongod ... table1' | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:6:18:6:50 | 'mongod ... table1' | calleeImports | mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:6:18:6:50 | 'mongod ... table1' | contextFunctionInterfaces | getQueryConstructor()\ninnocent(X, Y, query) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:6:18:6:50 | 'mongod ... table1' | contextSurroundingFunctionParameters |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:6:18:6:50 | 'mongod ... table1' | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:6:18:6:50 | 'mongod ... table1' | enclosingFunctionName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:6:18:6:50 | 'mongod ... table1' | fileImports | body-parser express mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:6:18:6:50 | 'mongod ... table1' | receiverName | Mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:6:18:6:50 | 'mongod ... table1' | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:9:9:9:25 | BodyParser.json() | CalleeFlexibleAccessPath | app.use |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:9:9:9:25 | BodyParser.json() | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:9:9:9:25 | BodyParser.json() | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:9:9:9:25 | BodyParser.json() | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:9:9:9:25 | BodyParser.json() | calleeImports | express |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:9:9:9:25 | BodyParser.json() | contextFunctionInterfaces | getQueryConstructor()\ninnocent(X, Y, query) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:9:9:9:25 | BodyParser.json() | contextSurroundingFunctionParameters |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:9:9:9:25 | BodyParser.json() | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:9:9:9:25 | BodyParser.json() | enclosingFunctionName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:9:9:9:25 | BodyParser.json() | fileImports | body-parser express mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:9:9:9:25 | BodyParser.json() | receiverName | app |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:9:9:9:25 | BodyParser.json() | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:11:33:11:42 | 'Document' | CalleeFlexibleAccessPath | Mongoose.model |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:11:33:11:42 | 'Document' | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:11:33:11:42 | 'Document' | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:11:33:11:42 | 'Document' | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:11:33:11:42 | 'Document' | calleeImports | mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:11:33:11:42 | 'Document' | contextFunctionInterfaces | getQueryConstructor()\ninnocent(X, Y, query) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:11:33:11:42 | 'Document' | contextSurroundingFunctionParameters |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:11:33:11:42 | 'Document' | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:11:33:11:42 | 'Document' | enclosingFunctionName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:11:33:11:42 | 'Document' | fileImports | body-parser express mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:11:33:11:42 | 'Document' | receiverName | Mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:11:33:11:42 | 'Document' | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:11:45:17:1 | {\\n    t ... tring\\n} | CalleeFlexibleAccessPath | Mongoose.model |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:11:45:17:1 | {\\n    t ... tring\\n} | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:11:45:17:1 | {\\n    t ... tring\\n} | InputArgumentIndex | 1 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:11:45:17:1 | {\\n    t ... tring\\n} | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:11:45:17:1 | {\\n    t ... tring\\n} | calleeImports | mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:11:45:17:1 | {\\n    t ... tring\\n} | contextFunctionInterfaces | getQueryConstructor()\ninnocent(X, Y, query) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:11:45:17:1 | {\\n    t ... tring\\n} | contextSurroundingFunctionParameters |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:11:45:17:1 | {\\n    t ... tring\\n} | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:11:45:17:1 | {\\n    t ... tring\\n} | enclosingFunctionName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:11:45:17:1 | {\\n    t ... tring\\n} | fileImports | body-parser express mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:11:45:17:1 | {\\n    t ... tring\\n} | receiverName | Mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:11:45:17:1 | {\\n    t ... tring\\n} | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:12:12:15:5 | {\\n      ... e\\n    } | CalleeFlexibleAccessPath | Mongoose.model |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:12:12:15:5 | {\\n      ... e\\n    } | InputAccessPathFromCallee | 1.title |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:12:12:15:5 | {\\n      ... e\\n    } | InputArgumentIndex | 1 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:12:12:15:5 | {\\n      ... e\\n    } | assignedToPropName | title |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:12:12:15:5 | {\\n      ... e\\n    } | calleeImports | mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:12:12:15:5 | {\\n      ... e\\n    } | contextFunctionInterfaces | getQueryConstructor()\ninnocent(X, Y, query) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:12:12:15:5 | {\\n      ... e\\n    } | contextSurroundingFunctionParameters |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:12:12:15:5 | {\\n      ... e\\n    } | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:12:12:15:5 | {\\n      ... e\\n    } | enclosingFunctionName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:12:12:15:5 | {\\n      ... e\\n    } | fileImports | body-parser express mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:12:12:15:5 | {\\n      ... e\\n    } | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:12:12:15:5 | {\\n      ... e\\n    } | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:13:15:13:20 | String | CalleeFlexibleAccessPath | Mongoose.model |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:13:15:13:20 | String | InputAccessPathFromCallee | 1.title.type |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:13:15:13:20 | String | InputArgumentIndex | 1 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:13:15:13:20 | String | assignedToPropName | type |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:13:15:13:20 | String | calleeImports | mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:13:15:13:20 | String | contextFunctionInterfaces | getQueryConstructor()\ninnocent(X, Y, query) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:13:15:13:20 | String | contextSurroundingFunctionParameters |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:13:15:13:20 | String | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:13:15:13:20 | String | enclosingFunctionName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:13:15:13:20 | String | fileImports | body-parser express mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:13:15:13:20 | String | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:13:15:13:20 | String | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:14:17:14:20 | true | CalleeFlexibleAccessPath | Mongoose.model |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:14:17:14:20 | true | InputAccessPathFromCallee | 1.title.unique |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:14:17:14:20 | true | InputArgumentIndex | 1 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:14:17:14:20 | true | assignedToPropName | unique |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:14:17:14:20 | true | calleeImports | mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:14:17:14:20 | true | contextFunctionInterfaces | getQueryConstructor()\ninnocent(X, Y, query) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:14:17:14:20 | true | contextSurroundingFunctionParameters |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:14:17:14:20 | true | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:14:17:14:20 | true | enclosingFunctionName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:14:17:14:20 | true | fileImports | body-parser express mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:14:17:14:20 | true | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:14:17:14:20 | true | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:16:11:16:16 | String | CalleeFlexibleAccessPath | Mongoose.model |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:16:11:16:16 | String | InputAccessPathFromCallee | 1.type |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:16:11:16:16 | String | InputArgumentIndex | 1 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:16:11:16:16 | String | assignedToPropName | type |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:16:11:16:16 | String | calleeImports | mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:16:11:16:16 | String | contextFunctionInterfaces | getQueryConstructor()\ninnocent(X, Y, query) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:16:11:16:16 | String | contextSurroundingFunctionParameters |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:16:11:16:16 | String | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:16:11:16:16 | String | enclosingFunctionName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:16:11:16:16 | String | fileImports | body-parser express mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:16:11:16:16 | String | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:16:11:16:16 | String | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:19:10:19:26 | '/documents/find' | CalleeFlexibleAccessPath | app.post |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:19:10:19:26 | '/documents/find' | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:19:10:19:26 | '/documents/find' | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:19:10:19:26 | '/documents/find' | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:19:10:19:26 | '/documents/find' | calleeImports | express |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:19:10:19:26 | '/documents/find' | contextFunctionInterfaces | getQueryConstructor()\ninnocent(X, Y, query) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:19:10:19:26 | '/documents/find' | contextSurroundingFunctionParameters |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:19:10:19:26 | '/documents/find' | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:19:10:19:26 | '/documents/find' | enclosingFunctionName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:19:10:19:26 | '/documents/find' | fileImports | body-parser express mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:19:10:19:26 | '/documents/find' | receiverName | app |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:19:10:19:26 | '/documents/find' | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:19:29:132:1 | (req, r ... // OK\\n} | CalleeFlexibleAccessPath | app.post |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:19:29:132:1 | (req, r ... // OK\\n} | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:19:29:132:1 | (req, r ... // OK\\n} | InputArgumentIndex | 1 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:19:29:132:1 | (req, r ... // OK\\n} | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:19:29:132:1 | (req, r ... // OK\\n} | calleeImports | express |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:19:29:132:1 | (req, r ... // OK\\n} | contextFunctionInterfaces | getQueryConstructor()\ninnocent(X, Y, query) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:19:29:132:1 | (req, r ... // OK\\n} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:19:29:132:1 | (req, r ... // OK\\n} | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:19:29:132:1 | (req, r ... // OK\\n} | enclosingFunctionName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:19:29:132:1 | (req, r ... // OK\\n} | fileImports | body-parser express mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:19:29:132:1 | (req, r ... // OK\\n} | receiverName | app |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:19:29:132:1 | (req, r ... // OK\\n} | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:20:19:20:20 | {} | CalleeFlexibleAccessPath |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:20:19:20:20 | {} | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:20:19:20:20 | {} | InputArgumentIndex |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:20:19:20:20 | {} | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:20:19:20:20 | {} | calleeImports |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:20:19:20:20 | {} | contextFunctionInterfaces | getQueryConstructor()\ninnocent(X, Y, query) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:20:19:20:20 | {} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:20:19:20:20 | {} | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:20:19:20:20 | {} | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:20:19:20:20 | {} | fileImports | body-parser express mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:20:19:20:20 | {} | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:20:19:20:20 | {} | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:24:24:24:30 | [query] | CalleeFlexibleAccessPath | Document.aggregate |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:24:24:24:30 | [query] | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:24:24:24:30 | [query] | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:24:24:24:30 | [query] | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:24:24:24:30 | [query] | calleeImports | mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:24:24:24:30 | [query] | contextFunctionInterfaces | getQueryConstructor()\ninnocent(X, Y, query) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:24:24:24:30 | [query] | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:24:24:24:30 | [query] | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:24:24:24:30 | [query] | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:24:24:24:30 | [query] | fileImports | body-parser express mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:24:24:24:30 | [query] | receiverName | Document |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:24:24:24:30 | [query] | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:24:25:24:29 | query | CalleeFlexibleAccessPath |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:24:25:24:29 | query | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:24:25:24:29 | query | InputArgumentIndex |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:24:25:24:29 | query | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:24:25:24:29 | query | calleeImports |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:24:25:24:29 | query | contextFunctionInterfaces | getQueryConstructor()\ninnocent(X, Y, query) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:24:25:24:29 | query | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:24:25:24:29 | query | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:24:25:24:29 | query | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:24:25:24:29 | query | fileImports | body-parser express mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:24:25:24:29 | query | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:24:25:24:29 | query | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:27:20:27:24 | query | CalleeFlexibleAccessPath | Document.count |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:27:20:27:24 | query | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:27:20:27:24 | query | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:27:20:27:24 | query | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:27:20:27:24 | query | calleeImports | mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:27:20:27:24 | query | contextFunctionInterfaces | getQueryConstructor()\ninnocent(X, Y, query) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:27:20:27:24 | query | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:27:20:27:24 | query | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:27:20:27:24 | query | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:27:20:27:24 | query | fileImports | body-parser express mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:27:20:27:24 | query | receiverName | Document |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:27:20:27:24 | query | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:30:25:30:29 | query | CalleeFlexibleAccessPath | Document.deleteMany |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:30:25:30:29 | query | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:30:25:30:29 | query | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:30:25:30:29 | query | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:30:25:30:29 | query | calleeImports | mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:30:25:30:29 | query | contextFunctionInterfaces | getQueryConstructor()\ninnocent(X, Y, query) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:30:25:30:29 | query | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:30:25:30:29 | query | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:30:25:30:29 | query | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:30:25:30:29 | query | fileImports | body-parser express mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:30:25:30:29 | query | receiverName | Document |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:30:25:30:29 | query | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:33:24:33:28 | query | CalleeFlexibleAccessPath | Document.deleteOne |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:33:24:33:28 | query | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:33:24:33:28 | query | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:33:24:33:28 | query | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:33:24:33:28 | query | calleeImports | mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:33:24:33:28 | query | contextFunctionInterfaces | getQueryConstructor()\ninnocent(X, Y, query) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:33:24:33:28 | query | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:33:24:33:28 | query | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:33:24:33:28 | query | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:33:24:33:28 | query | fileImports | body-parser express mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:33:24:33:28 | query | receiverName | Document |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:33:24:33:28 | query | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:36:31:36:35 | query | CalleeFlexibleAccessPath | Document.distinct |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:36:31:36:35 | query | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:36:31:36:35 | query | InputArgumentIndex | 1 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:36:31:36:35 | query | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:36:31:36:35 | query | calleeImports | mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:36:31:36:35 | query | contextFunctionInterfaces | getQueryConstructor()\ninnocent(X, Y, query) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:36:31:36:35 | query | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:36:31:36:35 | query | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:36:31:36:35 | query | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:36:31:36:35 | query | fileImports | body-parser express mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:36:31:36:35 | query | receiverName | Document |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:36:31:36:35 | query | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:39:19:39:23 | query | CalleeFlexibleAccessPath | Document.find |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:39:19:39:23 | query | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:39:19:39:23 | query | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:39:19:39:23 | query | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:39:19:39:23 | query | calleeImports | mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:39:19:39:23 | query | contextFunctionInterfaces | getQueryConstructor()\ninnocent(X, Y, query) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:39:19:39:23 | query | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:39:19:39:23 | query | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:39:19:39:23 | query | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:39:19:39:23 | query | fileImports | body-parser express mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:39:19:39:23 | query | receiverName | Document |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:39:19:39:23 | query | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:42:22:42:26 | query | CalleeFlexibleAccessPath | Document.findOne |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:42:22:42:26 | query | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:42:22:42:26 | query | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:42:22:42:26 | query | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:42:22:42:26 | query | calleeImports | mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:42:22:42:26 | query | contextFunctionInterfaces | getQueryConstructor()\ninnocent(X, Y, query) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:42:22:42:26 | query | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:42:22:42:26 | query | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:42:22:42:26 | query | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:42:22:42:26 | query | fileImports | body-parser express mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:42:22:42:26 | query | receiverName | Document |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:42:22:42:26 | query | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:45:31:45:35 | query | CalleeFlexibleAccessPath | Document.findOneAndDelete |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:45:31:45:35 | query | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:45:31:45:35 | query | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:45:31:45:35 | query | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:45:31:45:35 | query | calleeImports | mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:45:31:45:35 | query | contextFunctionInterfaces | getQueryConstructor()\ninnocent(X, Y, query) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:45:31:45:35 | query | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:45:31:45:35 | query | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:45:31:45:35 | query | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:45:31:45:35 | query | fileImports | body-parser express mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:45:31:45:35 | query | receiverName | Document |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:45:31:45:35 | query | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:48:31:48:35 | query | CalleeFlexibleAccessPath | Document.findOneAndRemove |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:48:31:48:35 | query | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:48:31:48:35 | query | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:48:31:48:35 | query | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:48:31:48:35 | query | calleeImports | mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:48:31:48:35 | query | contextFunctionInterfaces | getQueryConstructor()\ninnocent(X, Y, query) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:48:31:48:35 | query | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:48:31:48:35 | query | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:48:31:48:35 | query | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:48:31:48:35 | query | fileImports | body-parser express mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:48:31:48:35 | query | receiverName | Document |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:48:31:48:35 | query | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:51:31:51:35 | query | CalleeFlexibleAccessPath | Document.findOneAndUpdate |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:51:31:51:35 | query | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:51:31:51:35 | query | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:51:31:51:35 | query | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:51:31:51:35 | query | calleeImports | mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:51:31:51:35 | query | contextFunctionInterfaces | getQueryConstructor()\ninnocent(X, Y, query) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:51:31:51:35 | query | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:51:31:51:35 | query | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:51:31:51:35 | query | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:51:31:51:35 | query | fileImports | body-parser express mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:51:31:51:35 | query | receiverName | Document |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:51:31:51:35 | query | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:54:25:54:29 | query | CalleeFlexibleAccessPath | Document.replaceOne |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:54:25:54:29 | query | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:54:25:54:29 | query | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:54:25:54:29 | query | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:54:25:54:29 | query | calleeImports | mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:54:25:54:29 | query | contextFunctionInterfaces | getQueryConstructor()\ninnocent(X, Y, query) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:54:25:54:29 | query | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:54:25:54:29 | query | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:54:25:54:29 | query | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:54:25:54:29 | query | fileImports | body-parser express mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:54:25:54:29 | query | receiverName | Document |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:54:25:54:29 | query | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:57:21:57:25 | query | CalleeFlexibleAccessPath | Document.update |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:57:21:57:25 | query | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:57:21:57:25 | query | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:57:21:57:25 | query | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:57:21:57:25 | query | calleeImports | mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:57:21:57:25 | query | contextFunctionInterfaces | getQueryConstructor()\ninnocent(X, Y, query) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:57:21:57:25 | query | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:57:21:57:25 | query | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:57:21:57:25 | query | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:57:21:57:25 | query | fileImports | body-parser express mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:57:21:57:25 | query | receiverName | Document |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:57:21:57:25 | query | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:60:25:60:29 | query | CalleeFlexibleAccessPath | Document.updateMany |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:60:25:60:29 | query | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:60:25:60:29 | query | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:60:25:60:29 | query | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:60:25:60:29 | query | calleeImports | mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:60:25:60:29 | query | contextFunctionInterfaces | getQueryConstructor()\ninnocent(X, Y, query) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:60:25:60:29 | query | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:60:25:60:29 | query | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:60:25:60:29 | query | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:60:25:60:29 | query | fileImports | body-parser express mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:60:25:60:29 | query | receiverName | Document |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:60:25:60:29 | query | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:63:21:63:25 | query | CalleeFlexibleAccessPath | Document.updateOne |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:63:21:63:25 | query | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:63:21:63:25 | query | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:63:21:63:25 | query | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:63:21:63:25 | query | calleeImports | mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:63:21:63:25 | query | contextFunctionInterfaces | getQueryConstructor()\ninnocent(X, Y, query) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:63:21:63:25 | query | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:63:21:63:25 | query | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:63:21:63:25 | query | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:63:21:63:25 | query | fileImports | body-parser express mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:63:21:63:25 | query | receiverName | Document |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:63:21:63:25 | query | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:63:33:63:33 | X | CalleeFlexibleAccessPath | Document.updateOne().then |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:63:33:63:33 | X | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:63:33:63:33 | X | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:63:33:63:33 | X | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:63:33:63:33 | X | calleeImports | mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:63:33:63:33 | X | contextFunctionInterfaces | getQueryConstructor()\ninnocent(X, Y, query) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:63:33:63:33 | X | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:63:33:63:33 | X | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:63:33:63:33 | X | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:63:33:63:33 | X | fileImports | body-parser express mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:63:33:63:33 | X | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:63:33:63:33 | X | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:65:29:65:29 | X | CalleeFlexibleAccessPath | Document.findByIdAndUpdate |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:65:29:65:29 | X | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:65:29:65:29 | X | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:65:29:65:29 | X | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:65:29:65:29 | X | calleeImports | mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:65:29:65:29 | X | contextFunctionInterfaces | getQueryConstructor()\ninnocent(X, Y, query) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:65:29:65:29 | X | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:65:29:65:29 | X | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:65:29:65:29 | X | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:65:29:65:29 | X | fileImports | body-parser express mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:65:29:65:29 | X | receiverName | Document |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:65:29:65:29 | X | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:65:32:65:36 | query | CalleeFlexibleAccessPath | Document.findByIdAndUpdate |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:65:32:65:36 | query | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:65:32:65:36 | query | InputArgumentIndex | 1 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:65:32:65:36 | query | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:65:32:65:36 | query | calleeImports | mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:65:32:65:36 | query | contextFunctionInterfaces | getQueryConstructor()\ninnocent(X, Y, query) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:65:32:65:36 | query | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:65:32:65:36 | query | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:65:32:65:36 | query | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:65:32:65:36 | query | fileImports | body-parser express mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:65:32:65:36 | query | receiverName | Document |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:65:32:65:36 | query | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:65:39:65:50 | function(){} | CalleeFlexibleAccessPath | Document.findByIdAndUpdate |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:65:39:65:50 | function(){} | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:65:39:65:50 | function(){} | InputArgumentIndex | 2 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:65:39:65:50 | function(){} | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:65:39:65:50 | function(){} | calleeImports | mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:65:39:65:50 | function(){} | contextFunctionInterfaces | getQueryConstructor()\ninnocent(X, Y, query) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:65:39:65:50 | function(){} | contextSurroundingFunctionParameters | (req, res)\n() |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:65:39:65:50 | function(){} | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:65:39:65:50 | function(){} | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:65:39:65:50 | function(){} | fileImports | body-parser express mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:65:39:65:50 | function(){} | receiverName | Document |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:65:39:65:50 | function(){} | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:67:27:67:31 | query | CalleeFlexibleAccessPath | Mongoose.Query |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:67:27:67:31 | query | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:67:27:67:31 | query | InputArgumentIndex | 2 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:67:27:67:31 | query | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:67:27:67:31 | query | calleeImports | mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:67:27:67:31 | query | contextFunctionInterfaces | getQueryConstructor()\ninnocent(X, Y, query) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:67:27:67:31 | query | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:67:27:67:31 | query | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:67:27:67:31 | query | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:67:27:67:31 | query | fileImports | body-parser express mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:67:27:67:31 | query | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:67:27:67:31 | query | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:68:8:68:12 | query | CalleeFlexibleAccessPath | Mongoose.Query().and |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:68:8:68:12 | query | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:68:8:68:12 | query | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:68:8:68:12 | query | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:68:8:68:12 | query | calleeImports | mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:68:8:68:12 | query | contextFunctionInterfaces | getQueryConstructor()\ninnocent(X, Y, query) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:68:8:68:12 | query | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:68:8:68:12 | query | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:68:8:68:12 | query | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:68:8:68:12 | query | fileImports | body-parser express mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:68:8:68:12 | query | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:68:8:68:12 | query | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:68:15:68:26 | function(){} | CalleeFlexibleAccessPath | Mongoose.Query().and |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:68:15:68:26 | function(){} | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:68:15:68:26 | function(){} | InputArgumentIndex | 1 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:68:15:68:26 | function(){} | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:68:15:68:26 | function(){} | calleeImports | mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:68:15:68:26 | function(){} | contextFunctionInterfaces | getQueryConstructor()\ninnocent(X, Y, query) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:68:15:68:26 | function(){} | contextSurroundingFunctionParameters | (req, res)\n() |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:68:15:68:26 | function(){} | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:68:15:68:26 | function(){} | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:68:15:68:26 | function(){} | fileImports | body-parser express mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:68:15:68:26 | function(){} | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:68:15:68:26 | function(){} | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:71:20:71:24 | query | CalleeFlexibleAccessPath | Document.where |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:71:20:71:24 | query | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:71:20:71:24 | query | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:71:20:71:24 | query | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:71:20:71:24 | query | calleeImports | mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:71:20:71:24 | query | contextFunctionInterfaces | getQueryConstructor()\ninnocent(X, Y, query) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:71:20:71:24 | query | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:71:20:71:24 | query | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:71:20:71:24 | query | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:71:20:71:24 | query | fileImports | body-parser express mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:71:20:71:24 | query | receiverName | Document |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:71:20:71:24 | query | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:72:16:72:20 | query | CalleeFlexibleAccessPath | Document.where().where |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:72:16:72:20 | query | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:72:16:72:20 | query | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:72:16:72:20 | query | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:72:16:72:20 | query | calleeImports | mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:72:16:72:20 | query | contextFunctionInterfaces | getQueryConstructor()\ninnocent(X, Y, query) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:72:16:72:20 | query | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:72:16:72:20 | query | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:72:16:72:20 | query | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:72:16:72:20 | query | fileImports | body-parser express mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:72:16:72:20 | query | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:72:16:72:20 | query | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:73:8:73:12 | query | CalleeFlexibleAccessPath | Document.where().where().and |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:73:8:73:12 | query | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:73:8:73:12 | query | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:73:8:73:12 | query | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:73:8:73:12 | query | calleeImports | mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:73:8:73:12 | query | contextFunctionInterfaces | getQueryConstructor()\ninnocent(X, Y, query) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:73:8:73:12 | query | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:73:8:73:12 | query | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:73:8:73:12 | query | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:73:8:73:12 | query | fileImports | body-parser express mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:73:8:73:12 | query | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:73:8:73:12 | query | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:74:7:74:11 | query | CalleeFlexibleAccessPath | Document.where().where().and().or |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:74:7:74:11 | query | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:74:7:74:11 | query | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:74:7:74:11 | query | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:74:7:74:11 | query | calleeImports | mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:74:7:74:11 | query | contextFunctionInterfaces | getQueryConstructor()\ninnocent(X, Y, query) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:74:7:74:11 | query | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:74:7:74:11 | query | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:74:7:74:11 | query | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:74:7:74:11 | query | fileImports | body-parser express mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:74:7:74:11 | query | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:74:7:74:11 | query | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:75:16:75:20 | query | CalleeFlexibleAccessPath | Document.where().where().and().or().distinct |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:75:16:75:20 | query | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:75:16:75:20 | query | InputArgumentIndex | 1 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:75:16:75:20 | query | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:75:16:75:20 | query | calleeImports | mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:75:16:75:20 | query | contextFunctionInterfaces | getQueryConstructor()\ninnocent(X, Y, query) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:75:16:75:20 | query | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:75:16:75:20 | query | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:75:16:75:20 | query | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:75:16:75:20 | query | fileImports | body-parser express mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:75:16:75:20 | query | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:75:16:75:20 | query | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:76:12:76:16 | query | CalleeFlexibleAccessPath | Document.where().where().and().or().distinct().comment |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:76:12:76:16 | query | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:76:12:76:16 | query | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:76:12:76:16 | query | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:76:12:76:16 | query | calleeImports | mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:76:12:76:16 | query | contextFunctionInterfaces | getQueryConstructor()\ninnocent(X, Y, query) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:76:12:76:16 | query | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:76:12:76:16 | query | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:76:12:76:16 | query | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:76:12:76:16 | query | fileImports | body-parser express mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:76:12:76:16 | query | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:76:12:76:16 | query | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:77:10:77:14 | query | CalleeFlexibleAccessPath | Document.where().where().and().or().distinct().comment().count |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:77:10:77:14 | query | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:77:10:77:14 | query | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:77:10:77:14 | query | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:77:10:77:14 | query | calleeImports | mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:77:10:77:14 | query | contextFunctionInterfaces | getQueryConstructor()\ninnocent(X, Y, query) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:77:10:77:14 | query | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:77:10:77:14 | query | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:77:10:77:14 | query | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:77:10:77:14 | query | fileImports | body-parser express mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:77:10:77:14 | query | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:77:10:77:14 | query | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:81:28:81:28 | X | CalleeFlexibleAccessPath | Mongoose.createConnection |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:81:28:81:28 | X | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:81:28:81:28 | X | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:81:28:81:28 | X | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:81:28:81:28 | X | calleeImports | mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:81:28:81:28 | X | contextFunctionInterfaces | getQueryConstructor()\ninnocent(X, Y, query) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:81:28:81:28 | X | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:81:28:81:28 | X | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:81:28:81:28 | X | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:81:28:81:28 | X | fileImports | body-parser express mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:81:28:81:28 | X | receiverName | Mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:81:28:81:28 | X | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:81:37:81:41 | query | CalleeFlexibleAccessPath | Mongoose.createConnection().count |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:81:37:81:41 | query | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:81:37:81:41 | query | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:81:37:81:41 | query | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:81:37:81:41 | query | calleeImports | mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:81:37:81:41 | query | contextFunctionInterfaces | getQueryConstructor()\ninnocent(X, Y, query) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:81:37:81:41 | query | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:81:37:81:41 | query | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:81:37:81:41 | query | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:81:37:81:41 | query | fileImports | body-parser express mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:81:37:81:41 | query | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:81:37:81:41 | query | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:82:28:82:28 | X | CalleeFlexibleAccessPath | Mongoose.createConnection |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:82:28:82:28 | X | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:82:28:82:28 | X | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:82:28:82:28 | X | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:82:28:82:28 | X | calleeImports | mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:82:28:82:28 | X | contextFunctionInterfaces | getQueryConstructor()\ninnocent(X, Y, query) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:82:28:82:28 | X | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:82:28:82:28 | X | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:82:28:82:28 | X | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:82:28:82:28 | X | fileImports | body-parser express mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:82:28:82:28 | X | receiverName | Mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:82:28:82:28 | X | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:82:37:82:37 | Y | CalleeFlexibleAccessPath | Mongoose.createConnection().model |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:82:37:82:37 | Y | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:82:37:82:37 | Y | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:82:37:82:37 | Y | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:82:37:82:37 | Y | calleeImports | mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:82:37:82:37 | Y | contextFunctionInterfaces | getQueryConstructor()\ninnocent(X, Y, query) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:82:37:82:37 | Y | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:82:37:82:37 | Y | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:82:37:82:37 | Y | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:82:37:82:37 | Y | fileImports | body-parser express mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:82:37:82:37 | Y | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:82:37:82:37 | Y | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:82:46:82:50 | query | CalleeFlexibleAccessPath | Mongoose.createConnection().model().count |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:82:46:82:50 | query | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:82:46:82:50 | query | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:82:46:82:50 | query | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:82:46:82:50 | query | calleeImports | mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:82:46:82:50 | query | contextFunctionInterfaces | getQueryConstructor()\ninnocent(X, Y, query) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:82:46:82:50 | query | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:82:46:82:50 | query | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:82:46:82:50 | query | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:82:46:82:50 | query | fileImports | body-parser express mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:82:46:82:50 | query | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:82:46:82:50 | query | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:83:28:83:28 | X | CalleeFlexibleAccessPath | Mongoose.createConnection |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:83:28:83:28 | X | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:83:28:83:28 | X | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:83:28:83:28 | X | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:83:28:83:28 | X | calleeImports | mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:83:28:83:28 | X | contextFunctionInterfaces | getQueryConstructor()\ninnocent(X, Y, query) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:83:28:83:28 | X | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:83:28:83:28 | X | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:83:28:83:28 | X | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:83:28:83:28 | X | fileImports | body-parser express mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:83:28:83:28 | X | receiverName | Mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:83:28:83:28 | X | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:83:47:83:51 | query | CalleeFlexibleAccessPath | Mongoose.createConnection().models.?.count |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:83:47:83:51 | query | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:83:47:83:51 | query | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:83:47:83:51 | query | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:83:47:83:51 | query | calleeImports | mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:83:47:83:51 | query | contextFunctionInterfaces | getQueryConstructor()\ninnocent(X, Y, query) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:83:47:83:51 | query | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:83:47:83:51 | query | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:83:47:83:51 | query | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:83:47:83:51 | query | fileImports | body-parser express mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:83:47:83:51 | query | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:83:47:83:51 | query | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:85:19:85:19 | X | CalleeFlexibleAccessPath | Document.findOne |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:85:19:85:19 | X | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:85:19:85:19 | X | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:85:19:85:19 | X | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:85:19:85:19 | X | calleeImports | mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:85:19:85:19 | X | contextFunctionInterfaces | getQueryConstructor()\ninnocent(X, Y, query) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:85:19:85:19 | X | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:85:19:85:19 | X | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:85:19:85:19 | X | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:85:19:85:19 | X | fileImports | body-parser express mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:85:19:85:19 | X | receiverName | Document |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:85:19:85:19 | X | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:85:22:85:51 | (err, r ... (query) | CalleeFlexibleAccessPath | Document.findOne |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:85:22:85:51 | (err, r ... (query) | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:85:22:85:51 | (err, r ... (query) | InputArgumentIndex | 1 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:85:22:85:51 | (err, r ... (query) | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:85:22:85:51 | (err, r ... (query) | calleeImports | mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:85:22:85:51 | (err, r ... (query) | contextFunctionInterfaces | getQueryConstructor()\ninnocent(X, Y, query) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:85:22:85:51 | (err, r ... (query) | contextSurroundingFunctionParameters | (req, res)\n(err, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:85:22:85:51 | (err, r ... (query) | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:85:22:85:51 | (err, r ... (query) | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:85:22:85:51 | (err, r ... (query) | fileImports | body-parser express mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:85:22:85:51 | (err, r ... (query) | receiverName | Document |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:85:22:85:51 | (err, r ... (query) | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:85:46:85:50 | query | CalleeFlexibleAccessPath | res.count |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:85:46:85:50 | query | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:85:46:85:50 | query | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:85:46:85:50 | query | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:85:46:85:50 | query | calleeImports |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:85:46:85:50 | query | contextFunctionInterfaces | getQueryConstructor()\ninnocent(X, Y, query) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:85:46:85:50 | query | contextSurroundingFunctionParameters | (req, res)\n(err, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:85:46:85:50 | query | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:85:46:85:50 | query | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:85:46:85:50 | query | fileImports | body-parser express mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:85:46:85:50 | query | receiverName | res |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:85:46:85:50 | query | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:86:19:86:19 | X | CalleeFlexibleAccessPath | Document.findOne |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:86:19:86:19 | X | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:86:19:86:19 | X | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:86:19:86:19 | X | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:86:19:86:19 | X | calleeImports | mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:86:19:86:19 | X | contextFunctionInterfaces | getQueryConstructor()\ninnocent(X, Y, query) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:86:19:86:19 | X | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:86:19:86:19 | X | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:86:19:86:19 | X | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:86:19:86:19 | X | fileImports | body-parser express mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:86:19:86:19 | X | receiverName | Document |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:86:19:86:19 | X | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:86:22:86:51 | (err, r ... (query) | CalleeFlexibleAccessPath | Document.findOne |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:86:22:86:51 | (err, r ... (query) | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:86:22:86:51 | (err, r ... (query) | InputArgumentIndex | 1 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:86:22:86:51 | (err, r ... (query) | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:86:22:86:51 | (err, r ... (query) | calleeImports | mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:86:22:86:51 | (err, r ... (query) | contextFunctionInterfaces | getQueryConstructor()\ninnocent(X, Y, query) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:86:22:86:51 | (err, r ... (query) | contextSurroundingFunctionParameters | (req, res)\n(err, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:86:22:86:51 | (err, r ... (query) | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:86:22:86:51 | (err, r ... (query) | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:86:22:86:51 | (err, r ... (query) | fileImports | body-parser express mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:86:22:86:51 | (err, r ... (query) | receiverName | Document |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:86:22:86:51 | (err, r ... (query) | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:86:46:86:50 | query | CalleeFlexibleAccessPath | err.count |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:86:46:86:50 | query | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:86:46:86:50 | query | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:86:46:86:50 | query | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:86:46:86:50 | query | calleeImports |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:86:46:86:50 | query | contextFunctionInterfaces | getQueryConstructor()\ninnocent(X, Y, query) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:86:46:86:50 | query | contextSurroundingFunctionParameters | (req, res)\n(err, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:86:46:86:50 | query | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:86:46:86:50 | query | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:86:46:86:50 | query | fileImports | body-parser express mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:86:46:86:50 | query | receiverName | err |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:86:46:86:50 | query | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:87:19:87:19 | X | CalleeFlexibleAccessPath | Document.findOne |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:87:19:87:19 | X | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:87:19:87:19 | X | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:87:19:87:19 | X | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:87:19:87:19 | X | calleeImports | mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:87:19:87:19 | X | contextFunctionInterfaces | getQueryConstructor()\ninnocent(X, Y, query) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:87:19:87:19 | X | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:87:19:87:19 | X | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:87:19:87:19 | X | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:87:19:87:19 | X | fileImports | body-parser express mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:87:19:87:19 | X | receiverName | Document |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:87:19:87:19 | X | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:87:27:87:56 | (err, r ... (query) | CalleeFlexibleAccessPath | Document.findOne().exec |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:87:27:87:56 | (err, r ... (query) | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:87:27:87:56 | (err, r ... (query) | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:87:27:87:56 | (err, r ... (query) | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:87:27:87:56 | (err, r ... (query) | calleeImports | mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:87:27:87:56 | (err, r ... (query) | contextFunctionInterfaces | getQueryConstructor()\ninnocent(X, Y, query) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:87:27:87:56 | (err, r ... (query) | contextSurroundingFunctionParameters | (req, res)\n(err, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:87:27:87:56 | (err, r ... (query) | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:87:27:87:56 | (err, r ... (query) | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:87:27:87:56 | (err, r ... (query) | fileImports | body-parser express mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:87:27:87:56 | (err, r ... (query) | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:87:27:87:56 | (err, r ... (query) | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:87:51:87:55 | query | CalleeFlexibleAccessPath | res.count |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:87:51:87:55 | query | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:87:51:87:55 | query | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:87:51:87:55 | query | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:87:51:87:55 | query | calleeImports |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:87:51:87:55 | query | contextFunctionInterfaces | getQueryConstructor()\ninnocent(X, Y, query) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:87:51:87:55 | query | contextSurroundingFunctionParameters | (req, res)\n(err, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:87:51:87:55 | query | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:87:51:87:55 | query | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:87:51:87:55 | query | fileImports | body-parser express mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:87:51:87:55 | query | receiverName | res |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:87:51:87:55 | query | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:88:19:88:19 | X | CalleeFlexibleAccessPath | Document.findOne |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:88:19:88:19 | X | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:88:19:88:19 | X | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:88:19:88:19 | X | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:88:19:88:19 | X | calleeImports | mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:88:19:88:19 | X | contextFunctionInterfaces | getQueryConstructor()\ninnocent(X, Y, query) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:88:19:88:19 | X | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:88:19:88:19 | X | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:88:19:88:19 | X | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:88:19:88:19 | X | fileImports | body-parser express mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:88:19:88:19 | X | receiverName | Document |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:88:19:88:19 | X | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:88:27:88:56 | (err, r ... (query) | CalleeFlexibleAccessPath | Document.findOne().exec |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:88:27:88:56 | (err, r ... (query) | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:88:27:88:56 | (err, r ... (query) | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:88:27:88:56 | (err, r ... (query) | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:88:27:88:56 | (err, r ... (query) | calleeImports | mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:88:27:88:56 | (err, r ... (query) | contextFunctionInterfaces | getQueryConstructor()\ninnocent(X, Y, query) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:88:27:88:56 | (err, r ... (query) | contextSurroundingFunctionParameters | (req, res)\n(err, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:88:27:88:56 | (err, r ... (query) | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:88:27:88:56 | (err, r ... (query) | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:88:27:88:56 | (err, r ... (query) | fileImports | body-parser express mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:88:27:88:56 | (err, r ... (query) | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:88:27:88:56 | (err, r ... (query) | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:88:51:88:55 | query | CalleeFlexibleAccessPath | err.count |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:88:51:88:55 | query | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:88:51:88:55 | query | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:88:51:88:55 | query | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:88:51:88:55 | query | calleeImports |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:88:51:88:55 | query | contextFunctionInterfaces | getQueryConstructor()\ninnocent(X, Y, query) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:88:51:88:55 | query | contextSurroundingFunctionParameters | (req, res)\n(err, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:88:51:88:55 | query | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:88:51:88:55 | query | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:88:51:88:55 | query | fileImports | body-parser express mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:88:51:88:55 | query | receiverName | err |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:88:51:88:55 | query | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:89:19:89:19 | X | CalleeFlexibleAccessPath | Document.findOne |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:89:19:89:19 | X | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:89:19:89:19 | X | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:89:19:89:19 | X | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:89:19:89:19 | X | calleeImports | mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:89:19:89:19 | X | contextFunctionInterfaces | getQueryConstructor()\ninnocent(X, Y, query) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:89:19:89:19 | X | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:89:19:89:19 | X | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:89:19:89:19 | X | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:89:19:89:19 | X | fileImports | body-parser express mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:89:19:89:19 | X | receiverName | Document |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:89:19:89:19 | X | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:89:27:89:51 | (res) = ... (query) | CalleeFlexibleAccessPath | Document.findOne().then |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:89:27:89:51 | (res) = ... (query) | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:89:27:89:51 | (res) = ... (query) | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:89:27:89:51 | (res) = ... (query) | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:89:27:89:51 | (res) = ... (query) | calleeImports | mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:89:27:89:51 | (res) = ... (query) | contextFunctionInterfaces | getQueryConstructor()\ninnocent(X, Y, query) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:89:27:89:51 | (res) = ... (query) | contextSurroundingFunctionParameters | (req, res)\n(res) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:89:27:89:51 | (res) = ... (query) | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:89:27:89:51 | (res) = ... (query) | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:89:27:89:51 | (res) = ... (query) | fileImports | body-parser express mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:89:27:89:51 | (res) = ... (query) | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:89:27:89:51 | (res) = ... (query) | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:89:46:89:50 | query | CalleeFlexibleAccessPath | res.count |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:89:46:89:50 | query | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:89:46:89:50 | query | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:89:46:89:50 | query | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:89:46:89:50 | query | calleeImports |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:89:46:89:50 | query | contextFunctionInterfaces | getQueryConstructor()\ninnocent(X, Y, query) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:89:46:89:50 | query | contextSurroundingFunctionParameters | (req, res)\n(res) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:89:46:89:50 | query | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:89:46:89:50 | query | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:89:46:89:50 | query | fileImports | body-parser express mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:89:46:89:50 | query | receiverName | res |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:89:46:89:50 | query | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:90:19:90:19 | X | CalleeFlexibleAccessPath | Document.findOne |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:90:19:90:19 | X | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:90:19:90:19 | X | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:90:19:90:19 | X | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:90:19:90:19 | X | calleeImports | mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:90:19:90:19 | X | contextFunctionInterfaces | getQueryConstructor()\ninnocent(X, Y, query) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:90:19:90:19 | X | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:90:19:90:19 | X | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:90:19:90:19 | X | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:90:19:90:19 | X | fileImports | body-parser express mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:90:19:90:19 | X | receiverName | Document |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:90:19:90:19 | X | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:90:27:90:27 | Y | CalleeFlexibleAccessPath | Document.findOne().then |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:90:27:90:27 | Y | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:90:27:90:27 | Y | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:90:27:90:27 | Y | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:90:27:90:27 | Y | calleeImports | mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:90:27:90:27 | Y | contextFunctionInterfaces | getQueryConstructor()\ninnocent(X, Y, query) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:90:27:90:27 | Y | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:90:27:90:27 | Y | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:90:27:90:27 | Y | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:90:27:90:27 | Y | fileImports | body-parser express mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:90:27:90:27 | Y | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:90:27:90:27 | Y | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:90:30:90:54 | (err) = ... (query) | CalleeFlexibleAccessPath | Document.findOne().then |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:90:30:90:54 | (err) = ... (query) | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:90:30:90:54 | (err) = ... (query) | InputArgumentIndex | 1 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:90:30:90:54 | (err) = ... (query) | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:90:30:90:54 | (err) = ... (query) | calleeImports | mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:90:30:90:54 | (err) = ... (query) | contextFunctionInterfaces | getQueryConstructor()\ninnocent(X, Y, query) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:90:30:90:54 | (err) = ... (query) | contextSurroundingFunctionParameters | (req, res)\n(err) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:90:30:90:54 | (err) = ... (query) | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:90:30:90:54 | (err) = ... (query) | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:90:30:90:54 | (err) = ... (query) | fileImports | body-parser express mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:90:30:90:54 | (err) = ... (query) | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:90:30:90:54 | (err) = ... (query) | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:90:49:90:53 | query | CalleeFlexibleAccessPath | err.count |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:90:49:90:53 | query | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:90:49:90:53 | query | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:90:49:90:53 | query | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:90:49:90:53 | query | calleeImports |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:90:49:90:53 | query | contextFunctionInterfaces | getQueryConstructor()\ninnocent(X, Y, query) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:90:49:90:53 | query | contextSurroundingFunctionParameters | (req, res)\n(err) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:90:49:90:53 | query | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:90:49:90:53 | query | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:90:49:90:53 | query | fileImports | body-parser express mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:90:49:90:53 | query | receiverName | err |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:90:49:90:53 | query | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:92:16:92:16 | X | CalleeFlexibleAccessPath | Document.find |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:92:16:92:16 | X | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:92:16:92:16 | X | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:92:16:92:16 | X | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:92:16:92:16 | X | calleeImports | mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:92:16:92:16 | X | contextFunctionInterfaces | getQueryConstructor()\ninnocent(X, Y, query) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:92:16:92:16 | X | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:92:16:92:16 | X | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:92:16:92:16 | X | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:92:16:92:16 | X | fileImports | body-parser express mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:92:16:92:16 | X | receiverName | Document |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:92:16:92:16 | X | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:92:19:92:51 | (err, r ... (query) | CalleeFlexibleAccessPath | Document.find |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:92:19:92:51 | (err, r ... (query) | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:92:19:92:51 | (err, r ... (query) | InputArgumentIndex | 1 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:92:19:92:51 | (err, r ... (query) | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:92:19:92:51 | (err, r ... (query) | calleeImports | mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:92:19:92:51 | (err, r ... (query) | contextFunctionInterfaces | getQueryConstructor()\ninnocent(X, Y, query) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:92:19:92:51 | (err, r ... (query) | contextSurroundingFunctionParameters | (req, res)\n(err, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:92:19:92:51 | (err, r ... (query) | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:92:19:92:51 | (err, r ... (query) | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:92:19:92:51 | (err, r ... (query) | fileImports | body-parser express mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:92:19:92:51 | (err, r ... (query) | receiverName | Document |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:92:19:92:51 | (err, r ... (query) | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:92:46:92:50 | query | CalleeFlexibleAccessPath | res.?.count |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:92:46:92:50 | query | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:92:46:92:50 | query | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:92:46:92:50 | query | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:92:46:92:50 | query | calleeImports |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:92:46:92:50 | query | contextFunctionInterfaces | getQueryConstructor()\ninnocent(X, Y, query) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:92:46:92:50 | query | contextSurroundingFunctionParameters | (req, res)\n(err, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:92:46:92:50 | query | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:92:46:92:50 | query | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:92:46:92:50 | query | fileImports | body-parser express mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:92:46:92:50 | query | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:92:46:92:50 | query | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:93:16:93:16 | X | CalleeFlexibleAccessPath | Document.find |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:93:16:93:16 | X | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:93:16:93:16 | X | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:93:16:93:16 | X | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:93:16:93:16 | X | calleeImports | mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:93:16:93:16 | X | contextFunctionInterfaces | getQueryConstructor()\ninnocent(X, Y, query) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:93:16:93:16 | X | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:93:16:93:16 | X | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:93:16:93:16 | X | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:93:16:93:16 | X | fileImports | body-parser express mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:93:16:93:16 | X | receiverName | Document |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:93:16:93:16 | X | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:93:19:93:48 | (err, r ... (query) | CalleeFlexibleAccessPath | Document.find |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:93:19:93:48 | (err, r ... (query) | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:93:19:93:48 | (err, r ... (query) | InputArgumentIndex | 1 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:93:19:93:48 | (err, r ... (query) | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:93:19:93:48 | (err, r ... (query) | calleeImports | mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:93:19:93:48 | (err, r ... (query) | contextFunctionInterfaces | getQueryConstructor()\ninnocent(X, Y, query) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:93:19:93:48 | (err, r ... (query) | contextSurroundingFunctionParameters | (req, res)\n(err, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:93:19:93:48 | (err, r ... (query) | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:93:19:93:48 | (err, r ... (query) | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:93:19:93:48 | (err, r ... (query) | fileImports | body-parser express mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:93:19:93:48 | (err, r ... (query) | receiverName | Document |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:93:19:93:48 | (err, r ... (query) | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:93:43:93:47 | query | CalleeFlexibleAccessPath | err.count |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:93:43:93:47 | query | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:93:43:93:47 | query | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:93:43:93:47 | query | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:93:43:93:47 | query | calleeImports |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:93:43:93:47 | query | contextFunctionInterfaces | getQueryConstructor()\ninnocent(X, Y, query) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:93:43:93:47 | query | contextSurroundingFunctionParameters | (req, res)\n(err, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:93:43:93:47 | query | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:93:43:93:47 | query | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:93:43:93:47 | query | fileImports | body-parser express mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:93:43:93:47 | query | receiverName | err |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:93:43:93:47 | query | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:94:16:94:16 | X | CalleeFlexibleAccessPath | Document.find |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:94:16:94:16 | X | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:94:16:94:16 | X | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:94:16:94:16 | X | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:94:16:94:16 | X | calleeImports | mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:94:16:94:16 | X | contextFunctionInterfaces | getQueryConstructor()\ninnocent(X, Y, query) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:94:16:94:16 | X | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:94:16:94:16 | X | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:94:16:94:16 | X | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:94:16:94:16 | X | fileImports | body-parser express mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:94:16:94:16 | X | receiverName | Document |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:94:16:94:16 | X | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:94:24:94:56 | (err, r ... (query) | CalleeFlexibleAccessPath | Document.find().exec |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:94:24:94:56 | (err, r ... (query) | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:94:24:94:56 | (err, r ... (query) | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:94:24:94:56 | (err, r ... (query) | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:94:24:94:56 | (err, r ... (query) | calleeImports | mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:94:24:94:56 | (err, r ... (query) | contextFunctionInterfaces | getQueryConstructor()\ninnocent(X, Y, query) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:94:24:94:56 | (err, r ... (query) | contextSurroundingFunctionParameters | (req, res)\n(err, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:94:24:94:56 | (err, r ... (query) | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:94:24:94:56 | (err, r ... (query) | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:94:24:94:56 | (err, r ... (query) | fileImports | body-parser express mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:94:24:94:56 | (err, r ... (query) | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:94:24:94:56 | (err, r ... (query) | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:94:51:94:55 | query | CalleeFlexibleAccessPath | res.?.count |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:94:51:94:55 | query | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:94:51:94:55 | query | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:94:51:94:55 | query | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:94:51:94:55 | query | calleeImports |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:94:51:94:55 | query | contextFunctionInterfaces | getQueryConstructor()\ninnocent(X, Y, query) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:94:51:94:55 | query | contextSurroundingFunctionParameters | (req, res)\n(err, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:94:51:94:55 | query | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:94:51:94:55 | query | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:94:51:94:55 | query | fileImports | body-parser express mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:94:51:94:55 | query | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:94:51:94:55 | query | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:95:16:95:16 | X | CalleeFlexibleAccessPath | Document.find |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:95:16:95:16 | X | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:95:16:95:16 | X | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:95:16:95:16 | X | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:95:16:95:16 | X | calleeImports | mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:95:16:95:16 | X | contextFunctionInterfaces | getQueryConstructor()\ninnocent(X, Y, query) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:95:16:95:16 | X | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:95:16:95:16 | X | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:95:16:95:16 | X | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:95:16:95:16 | X | fileImports | body-parser express mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:95:16:95:16 | X | receiverName | Document |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:95:16:95:16 | X | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:95:24:95:53 | (err, r ... (query) | CalleeFlexibleAccessPath | Document.find().exec |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:95:24:95:53 | (err, r ... (query) | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:95:24:95:53 | (err, r ... (query) | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:95:24:95:53 | (err, r ... (query) | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:95:24:95:53 | (err, r ... (query) | calleeImports | mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:95:24:95:53 | (err, r ... (query) | contextFunctionInterfaces | getQueryConstructor()\ninnocent(X, Y, query) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:95:24:95:53 | (err, r ... (query) | contextSurroundingFunctionParameters | (req, res)\n(err, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:95:24:95:53 | (err, r ... (query) | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:95:24:95:53 | (err, r ... (query) | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:95:24:95:53 | (err, r ... (query) | fileImports | body-parser express mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:95:24:95:53 | (err, r ... (query) | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:95:24:95:53 | (err, r ... (query) | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:95:48:95:52 | query | CalleeFlexibleAccessPath | err.count |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:95:48:95:52 | query | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:95:48:95:52 | query | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:95:48:95:52 | query | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:95:48:95:52 | query | calleeImports |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:95:48:95:52 | query | contextFunctionInterfaces | getQueryConstructor()\ninnocent(X, Y, query) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:95:48:95:52 | query | contextSurroundingFunctionParameters | (req, res)\n(err, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:95:48:95:52 | query | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:95:48:95:52 | query | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:95:48:95:52 | query | fileImports | body-parser express mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:95:48:95:52 | query | receiverName | err |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:95:48:95:52 | query | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:96:16:96:16 | X | CalleeFlexibleAccessPath | Document.find |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:96:16:96:16 | X | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:96:16:96:16 | X | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:96:16:96:16 | X | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:96:16:96:16 | X | calleeImports | mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:96:16:96:16 | X | contextFunctionInterfaces | getQueryConstructor()\ninnocent(X, Y, query) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:96:16:96:16 | X | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:96:16:96:16 | X | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:96:16:96:16 | X | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:96:16:96:16 | X | fileImports | body-parser express mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:96:16:96:16 | X | receiverName | Document |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:96:16:96:16 | X | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:96:24:96:51 | (res) = ... (query) | CalleeFlexibleAccessPath | Document.find().then |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:96:24:96:51 | (res) = ... (query) | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:96:24:96:51 | (res) = ... (query) | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:96:24:96:51 | (res) = ... (query) | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:96:24:96:51 | (res) = ... (query) | calleeImports | mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:96:24:96:51 | (res) = ... (query) | contextFunctionInterfaces | getQueryConstructor()\ninnocent(X, Y, query) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:96:24:96:51 | (res) = ... (query) | contextSurroundingFunctionParameters | (req, res)\n(res) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:96:24:96:51 | (res) = ... (query) | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:96:24:96:51 | (res) = ... (query) | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:96:24:96:51 | (res) = ... (query) | fileImports | body-parser express mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:96:24:96:51 | (res) = ... (query) | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:96:24:96:51 | (res) = ... (query) | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:96:46:96:50 | query | CalleeFlexibleAccessPath | res.?.count |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:96:46:96:50 | query | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:96:46:96:50 | query | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:96:46:96:50 | query | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:96:46:96:50 | query | calleeImports |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:96:46:96:50 | query | contextFunctionInterfaces | getQueryConstructor()\ninnocent(X, Y, query) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:96:46:96:50 | query | contextSurroundingFunctionParameters | (req, res)\n(res) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:96:46:96:50 | query | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:96:46:96:50 | query | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:96:46:96:50 | query | fileImports | body-parser express mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:96:46:96:50 | query | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:96:46:96:50 | query | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:97:16:97:16 | X | CalleeFlexibleAccessPath | Document.find |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:97:16:97:16 | X | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:97:16:97:16 | X | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:97:16:97:16 | X | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:97:16:97:16 | X | calleeImports | mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:97:16:97:16 | X | contextFunctionInterfaces | getQueryConstructor()\ninnocent(X, Y, query) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:97:16:97:16 | X | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:97:16:97:16 | X | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:97:16:97:16 | X | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:97:16:97:16 | X | fileImports | body-parser express mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:97:16:97:16 | X | receiverName | Document |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:97:16:97:16 | X | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:97:24:97:24 | Y | CalleeFlexibleAccessPath | Document.find().then |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:97:24:97:24 | Y | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:97:24:97:24 | Y | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:97:24:97:24 | Y | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:97:24:97:24 | Y | calleeImports | mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:97:24:97:24 | Y | contextFunctionInterfaces | getQueryConstructor()\ninnocent(X, Y, query) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:97:24:97:24 | Y | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:97:24:97:24 | Y | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:97:24:97:24 | Y | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:97:24:97:24 | Y | fileImports | body-parser express mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:97:24:97:24 | Y | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:97:24:97:24 | Y | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:97:27:97:51 | (err) = ... (query) | CalleeFlexibleAccessPath | Document.find().then |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:97:27:97:51 | (err) = ... (query) | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:97:27:97:51 | (err) = ... (query) | InputArgumentIndex | 1 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:97:27:97:51 | (err) = ... (query) | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:97:27:97:51 | (err) = ... (query) | calleeImports | mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:97:27:97:51 | (err) = ... (query) | contextFunctionInterfaces | getQueryConstructor()\ninnocent(X, Y, query) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:97:27:97:51 | (err) = ... (query) | contextSurroundingFunctionParameters | (req, res)\n(err) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:97:27:97:51 | (err) = ... (query) | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:97:27:97:51 | (err) = ... (query) | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:97:27:97:51 | (err) = ... (query) | fileImports | body-parser express mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:97:27:97:51 | (err) = ... (query) | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:97:27:97:51 | (err) = ... (query) | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:97:46:97:50 | query | CalleeFlexibleAccessPath | err.count |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:97:46:97:50 | query | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:97:46:97:50 | query | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:97:46:97:50 | query | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:97:46:97:50 | query | calleeImports |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:97:46:97:50 | query | contextFunctionInterfaces | getQueryConstructor()\ninnocent(X, Y, query) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:97:46:97:50 | query | contextSurroundingFunctionParameters | (req, res)\n(err) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:97:46:97:50 | query | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:97:46:97:50 | query | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:97:46:97:50 | query | fileImports | body-parser express mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:97:46:97:50 | query | receiverName | err |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:97:46:97:50 | query | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:99:17:99:17 | X | CalleeFlexibleAccessPath | Document.count |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:99:17:99:17 | X | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:99:17:99:17 | X | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:99:17:99:17 | X | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:99:17:99:17 | X | calleeImports | mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:99:17:99:17 | X | contextFunctionInterfaces | getQueryConstructor()\ninnocent(X, Y, query) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:99:17:99:17 | X | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:99:17:99:17 | X | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:99:17:99:17 | X | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:99:17:99:17 | X | fileImports | body-parser express mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:99:17:99:17 | X | receiverName | Document |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:99:17:99:17 | X | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:99:20:99:49 | (err, r ... (query) | CalleeFlexibleAccessPath | Document.count |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:99:20:99:49 | (err, r ... (query) | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:99:20:99:49 | (err, r ... (query) | InputArgumentIndex | 1 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:99:20:99:49 | (err, r ... (query) | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:99:20:99:49 | (err, r ... (query) | calleeImports | mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:99:20:99:49 | (err, r ... (query) | contextFunctionInterfaces | getQueryConstructor()\ninnocent(X, Y, query) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:99:20:99:49 | (err, r ... (query) | contextSurroundingFunctionParameters | (req, res)\n(err, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:99:20:99:49 | (err, r ... (query) | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:99:20:99:49 | (err, r ... (query) | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:99:20:99:49 | (err, r ... (query) | fileImports | body-parser express mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:99:20:99:49 | (err, r ... (query) | receiverName | Document |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:99:20:99:49 | (err, r ... (query) | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:99:44:99:48 | query | CalleeFlexibleAccessPath | res.count |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:99:44:99:48 | query | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:99:44:99:48 | query | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:99:44:99:48 | query | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:99:44:99:48 | query | calleeImports |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:99:44:99:48 | query | contextFunctionInterfaces | getQueryConstructor()\ninnocent(X, Y, query) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:99:44:99:48 | query | contextSurroundingFunctionParameters | (req, res)\n(err, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:99:44:99:48 | query | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:99:44:99:48 | query | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:99:44:99:48 | query | fileImports | body-parser express mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:99:44:99:48 | query | receiverName | res |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:99:44:99:48 | query | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:102:53:102:62 | "constant" | CalleeFlexibleAccessPath | Mongoose.Query |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:102:53:102:62 | "constant" | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:102:53:102:62 | "constant" | InputArgumentIndex | 2 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:102:53:102:62 | "constant" | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:102:53:102:62 | "constant" | calleeImports | mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:102:53:102:62 | "constant" | contextFunctionInterfaces | getQueryConstructor()\ninnocent(X, Y, query) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:102:53:102:62 | "constant" | contextSurroundingFunctionParameters | (X, Y, query) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:102:53:102:62 | "constant" | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:102:53:102:62 | "constant" | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:102:53:102:62 | "constant" | fileImports | body-parser express mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:102:53:102:62 | "constant" | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:102:53:102:62 | "constant" | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:111:14:111:18 | query | CalleeFlexibleAccessPath | C |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:111:14:111:18 | query | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:111:14:111:18 | query | InputArgumentIndex | 2 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:111:14:111:18 | query | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:111:14:111:18 | query | calleeImports |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:111:14:111:18 | query | contextFunctionInterfaces | getQueryConstructor()\ninnocent(X, Y, query) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:111:14:111:18 | query | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:111:14:111:18 | query | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:111:14:111:18 | query | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:111:14:111:18 | query | fileImports | body-parser express mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:111:14:111:18 | query | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:111:14:111:18 | query | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:113:28:113:28 | X | CalleeFlexibleAccessPath | Document.findOneAndUpdate |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:113:28:113:28 | X | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:113:28:113:28 | X | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:113:28:113:28 | X | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:113:28:113:28 | X | calleeImports | mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:113:28:113:28 | X | contextFunctionInterfaces | getQueryConstructor()\ninnocent(X, Y, query) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:113:28:113:28 | X | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:113:28:113:28 | X | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:113:28:113:28 | X | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:113:28:113:28 | X | fileImports | body-parser express mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:113:28:113:28 | X | receiverName | Document |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:113:28:113:28 | X | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:113:31:113:35 | query | CalleeFlexibleAccessPath | Document.findOneAndUpdate |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:113:31:113:35 | query | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:113:31:113:35 | query | InputArgumentIndex | 1 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:113:31:113:35 | query | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:113:31:113:35 | query | calleeImports | mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:113:31:113:35 | query | contextFunctionInterfaces | getQueryConstructor()\ninnocent(X, Y, query) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:113:31:113:35 | query | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:113:31:113:35 | query | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:113:31:113:35 | query | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:113:31:113:35 | query | fileImports | body-parser express mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:113:31:113:35 | query | receiverName | Document |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:113:31:113:35 | query | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:113:38:113:52 | function () { } | CalleeFlexibleAccessPath | Document.findOneAndUpdate |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:113:38:113:52 | function () { } | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:113:38:113:52 | function () { } | InputArgumentIndex | 2 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:113:38:113:52 | function () { } | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:113:38:113:52 | function () { } | calleeImports | mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:113:38:113:52 | function () { } | contextFunctionInterfaces | getQueryConstructor()\ninnocent(X, Y, query) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:113:38:113:52 | function () { } | contextSurroundingFunctionParameters | (req, res)\n() |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:113:38:113:52 | function () { } | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:113:38:113:52 | function () { } | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:113:38:113:52 | function () { } | fileImports | body-parser express mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:113:38:113:52 | function () { } | receiverName | Document |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:113:38:113:52 | function () { } | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:116:22:116:25 | cond | CalleeFlexibleAccessPath | Document.deleteMany |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:116:22:116:25 | cond | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:116:22:116:25 | cond | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:116:22:116:25 | cond | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:116:22:116:25 | cond | calleeImports | mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:116:22:116:25 | cond | contextFunctionInterfaces | getQueryConstructor()\ninnocent(X, Y, query) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:116:22:116:25 | cond | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:116:22:116:25 | cond | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:116:22:116:25 | cond | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:116:22:116:25 | cond | fileImports | body-parser express mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:116:22:116:25 | cond | receiverName | Document |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:116:22:116:25 | cond | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:117:21:117:24 | cond | CalleeFlexibleAccessPath | Document.deleteOne |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:117:21:117:24 | cond | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:117:21:117:24 | cond | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:117:21:117:24 | cond | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:117:21:117:24 | cond | calleeImports | mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:117:21:117:24 | cond | contextFunctionInterfaces | getQueryConstructor()\ninnocent(X, Y, query) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:117:21:117:24 | cond | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:117:21:117:24 | cond | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:117:21:117:24 | cond | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:117:21:117:24 | cond | fileImports | body-parser express mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:117:21:117:24 | cond | receiverName | Document |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:117:21:117:24 | cond | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:118:21:118:24 | cond | CalleeFlexibleAccessPath | Document.geoSearch |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:118:21:118:24 | cond | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:118:21:118:24 | cond | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:118:21:118:24 | cond | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:118:21:118:24 | cond | calleeImports | mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:118:21:118:24 | cond | contextFunctionInterfaces | getQueryConstructor()\ninnocent(X, Y, query) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:118:21:118:24 | cond | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:118:21:118:24 | cond | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:118:21:118:24 | cond | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:118:21:118:24 | cond | fileImports | body-parser express mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:118:21:118:24 | cond | receiverName | Document |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:118:21:118:24 | cond | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:119:18:119:21 | cond | CalleeFlexibleAccessPath | Document.remove |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:119:18:119:21 | cond | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:119:18:119:21 | cond | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:119:18:119:21 | cond | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:119:18:119:21 | cond | calleeImports | mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:119:18:119:21 | cond | contextFunctionInterfaces | getQueryConstructor()\ninnocent(X, Y, query) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:119:18:119:21 | cond | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:119:18:119:21 | cond | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:119:18:119:21 | cond | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:119:18:119:21 | cond | fileImports | body-parser express mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:119:18:119:21 | cond | receiverName | Document |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:119:18:119:21 | cond | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:120:22:120:25 | cond | CalleeFlexibleAccessPath | Document.replaceOne |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:120:22:120:25 | cond | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:120:22:120:25 | cond | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:120:22:120:25 | cond | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:120:22:120:25 | cond | calleeImports | mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:120:22:120:25 | cond | contextFunctionInterfaces | getQueryConstructor()\ninnocent(X, Y, query) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:120:22:120:25 | cond | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:120:22:120:25 | cond | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:120:22:120:25 | cond | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:120:22:120:25 | cond | fileImports | body-parser express mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:120:22:120:25 | cond | receiverName | Document |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:120:22:120:25 | cond | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:121:16:121:19 | cond | CalleeFlexibleAccessPath | Document.find |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:121:16:121:19 | cond | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:121:16:121:19 | cond | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:121:16:121:19 | cond | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:121:16:121:19 | cond | calleeImports | mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:121:16:121:19 | cond | contextFunctionInterfaces | getQueryConstructor()\ninnocent(X, Y, query) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:121:16:121:19 | cond | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:121:16:121:19 | cond | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:121:16:121:19 | cond | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:121:16:121:19 | cond | fileImports | body-parser express mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:121:16:121:19 | cond | receiverName | Document |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:121:16:121:19 | cond | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:122:19:122:22 | cond | CalleeFlexibleAccessPath | Document.findOne |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:122:19:122:22 | cond | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:122:19:122:22 | cond | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:122:19:122:22 | cond | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:122:19:122:22 | cond | calleeImports | mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:122:19:122:22 | cond | contextFunctionInterfaces | getQueryConstructor()\ninnocent(X, Y, query) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:122:19:122:22 | cond | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:122:19:122:22 | cond | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:122:19:122:22 | cond | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:122:19:122:22 | cond | fileImports | body-parser express mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:122:19:122:22 | cond | receiverName | Document |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:122:19:122:22 | cond | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:123:20:123:21 | id | CalleeFlexibleAccessPath | Document.findById |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:123:20:123:21 | id | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:123:20:123:21 | id | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:123:20:123:21 | id | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:123:20:123:21 | id | calleeImports | mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:123:20:123:21 | id | contextFunctionInterfaces | getQueryConstructor()\ninnocent(X, Y, query) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:123:20:123:21 | id | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:123:20:123:21 | id | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:123:20:123:21 | id | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:123:20:123:21 | id | fileImports | body-parser express mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:123:20:123:21 | id | receiverName | Document |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:123:20:123:21 | id | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:124:28:124:31 | cond | CalleeFlexibleAccessPath | Document.findOneAndDelete |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:124:28:124:31 | cond | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:124:28:124:31 | cond | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:124:28:124:31 | cond | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:124:28:124:31 | cond | calleeImports | mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:124:28:124:31 | cond | contextFunctionInterfaces | getQueryConstructor()\ninnocent(X, Y, query) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:124:28:124:31 | cond | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:124:28:124:31 | cond | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:124:28:124:31 | cond | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:124:28:124:31 | cond | fileImports | body-parser express mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:124:28:124:31 | cond | receiverName | Document |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:124:28:124:31 | cond | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:125:28:125:31 | cond | CalleeFlexibleAccessPath | Document.findOneAndRemove |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:125:28:125:31 | cond | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:125:28:125:31 | cond | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:125:28:125:31 | cond | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:125:28:125:31 | cond | calleeImports | mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:125:28:125:31 | cond | contextFunctionInterfaces | getQueryConstructor()\ninnocent(X, Y, query) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:125:28:125:31 | cond | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:125:28:125:31 | cond | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:125:28:125:31 | cond | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:125:28:125:31 | cond | fileImports | body-parser express mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:125:28:125:31 | cond | receiverName | Document |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:125:28:125:31 | cond | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:126:28:126:31 | cond | CalleeFlexibleAccessPath | Document.findOneAndUpdate |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:126:28:126:31 | cond | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:126:28:126:31 | cond | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:126:28:126:31 | cond | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:126:28:126:31 | cond | calleeImports | mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:126:28:126:31 | cond | contextFunctionInterfaces | getQueryConstructor()\ninnocent(X, Y, query) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:126:28:126:31 | cond | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:126:28:126:31 | cond | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:126:28:126:31 | cond | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:126:28:126:31 | cond | fileImports | body-parser express mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:126:28:126:31 | cond | receiverName | Document |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:126:28:126:31 | cond | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:126:34:126:34 | Y | CalleeFlexibleAccessPath | Document.findOneAndUpdate |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:126:34:126:34 | Y | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:126:34:126:34 | Y | InputArgumentIndex | 1 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:126:34:126:34 | Y | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:126:34:126:34 | Y | calleeImports | mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:126:34:126:34 | Y | contextFunctionInterfaces | getQueryConstructor()\ninnocent(X, Y, query) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:126:34:126:34 | Y | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:126:34:126:34 | Y | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:126:34:126:34 | Y | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:126:34:126:34 | Y | fileImports | body-parser express mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:126:34:126:34 | Y | receiverName | Document |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:126:34:126:34 | Y | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:127:18:127:21 | cond | CalleeFlexibleAccessPath | Document.update |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:127:18:127:21 | cond | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:127:18:127:21 | cond | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:127:18:127:21 | cond | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:127:18:127:21 | cond | calleeImports | mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:127:18:127:21 | cond | contextFunctionInterfaces | getQueryConstructor()\ninnocent(X, Y, query) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:127:18:127:21 | cond | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:127:18:127:21 | cond | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:127:18:127:21 | cond | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:127:18:127:21 | cond | fileImports | body-parser express mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:127:18:127:21 | cond | receiverName | Document |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:127:18:127:21 | cond | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:127:24:127:24 | Y | CalleeFlexibleAccessPath | Document.update |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:127:24:127:24 | Y | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:127:24:127:24 | Y | InputArgumentIndex | 1 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:127:24:127:24 | Y | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:127:24:127:24 | Y | calleeImports | mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:127:24:127:24 | Y | contextFunctionInterfaces | getQueryConstructor()\ninnocent(X, Y, query) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:127:24:127:24 | Y | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:127:24:127:24 | Y | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:127:24:127:24 | Y | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:127:24:127:24 | Y | fileImports | body-parser express mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:127:24:127:24 | Y | receiverName | Document |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:127:24:127:24 | Y | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:128:22:128:25 | cond | CalleeFlexibleAccessPath | Document.updateMany |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:128:22:128:25 | cond | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:128:22:128:25 | cond | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:128:22:128:25 | cond | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:128:22:128:25 | cond | calleeImports | mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:128:22:128:25 | cond | contextFunctionInterfaces | getQueryConstructor()\ninnocent(X, Y, query) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:128:22:128:25 | cond | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:128:22:128:25 | cond | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:128:22:128:25 | cond | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:128:22:128:25 | cond | fileImports | body-parser express mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:128:22:128:25 | cond | receiverName | Document |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:128:22:128:25 | cond | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:128:28:128:28 | Y | CalleeFlexibleAccessPath | Document.updateMany |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:128:28:128:28 | Y | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:128:28:128:28 | Y | InputArgumentIndex | 1 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:128:28:128:28 | Y | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:128:28:128:28 | Y | calleeImports | mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:128:28:128:28 | Y | contextFunctionInterfaces | getQueryConstructor()\ninnocent(X, Y, query) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:128:28:128:28 | Y | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:128:28:128:28 | Y | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:128:28:128:28 | Y | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:128:28:128:28 | Y | fileImports | body-parser express mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:128:28:128:28 | Y | receiverName | Document |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:128:28:128:28 | Y | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:129:21:129:24 | cond | CalleeFlexibleAccessPath | Document.updateOne |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:129:21:129:24 | cond | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:129:21:129:24 | cond | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:129:21:129:24 | cond | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:129:21:129:24 | cond | calleeImports | mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:129:21:129:24 | cond | contextFunctionInterfaces | getQueryConstructor()\ninnocent(X, Y, query) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:129:21:129:24 | cond | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:129:21:129:24 | cond | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:129:21:129:24 | cond | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:129:21:129:24 | cond | fileImports | body-parser express mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:129:21:129:24 | cond | receiverName | Document |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:129:21:129:24 | cond | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:129:27:129:27 | Y | CalleeFlexibleAccessPath | Document.updateOne |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:129:27:129:27 | Y | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:129:27:129:27 | Y | InputArgumentIndex | 1 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:129:27:129:27 | Y | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:129:27:129:27 | Y | calleeImports | mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:129:27:129:27 | Y | contextFunctionInterfaces | getQueryConstructor()\ninnocent(X, Y, query) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:129:27:129:27 | Y | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:129:27:129:27 | Y | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:129:27:129:27 | Y | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:129:27:129:27 | Y | fileImports | body-parser express mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:129:27:129:27 | Y | receiverName | Document |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:129:27:129:27 | Y | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:130:16:130:26 | { _id: id } | CalleeFlexibleAccessPath | Document.find |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:130:16:130:26 | { _id: id } | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:130:16:130:26 | { _id: id } | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:130:16:130:26 | { _id: id } | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:130:16:130:26 | { _id: id } | calleeImports | mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:130:16:130:26 | { _id: id } | contextFunctionInterfaces | getQueryConstructor()\ninnocent(X, Y, query) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:130:16:130:26 | { _id: id } | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:130:16:130:26 | { _id: id } | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:130:16:130:26 | { _id: id } | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:130:16:130:26 | { _id: id } | fileImports | body-parser express mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:130:16:130:26 | { _id: id } | receiverName | Document |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:130:16:130:26 | { _id: id } | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:130:23:130:24 | id | CalleeFlexibleAccessPath | Document.find |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:130:23:130:24 | id | InputAccessPathFromCallee | 0._id |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:130:23:130:24 | id | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:130:23:130:24 | id | assignedToPropName | _id |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:130:23:130:24 | id | calleeImports | mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:130:23:130:24 | id | contextFunctionInterfaces | getQueryConstructor()\ninnocent(X, Y, query) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:130:23:130:24 | id | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:130:23:130:24 | id | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:130:23:130:24 | id | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:130:23:130:24 | id | fileImports | body-parser express mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:130:23:130:24 | id | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:130:23:130:24 | id | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:131:16:131:35 | { _id: { $eq: id } } | CalleeFlexibleAccessPath | Document.find |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:131:16:131:35 | { _id: { $eq: id } } | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:131:16:131:35 | { _id: { $eq: id } } | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:131:16:131:35 | { _id: { $eq: id } } | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:131:16:131:35 | { _id: { $eq: id } } | calleeImports | mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:131:16:131:35 | { _id: { $eq: id } } | contextFunctionInterfaces | getQueryConstructor()\ninnocent(X, Y, query) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:131:16:131:35 | { _id: { $eq: id } } | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:131:16:131:35 | { _id: { $eq: id } } | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:131:16:131:35 | { _id: { $eq: id } } | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:131:16:131:35 | { _id: { $eq: id } } | fileImports | body-parser express mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:131:16:131:35 | { _id: { $eq: id } } | receiverName | Document |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:131:16:131:35 | { _id: { $eq: id } } | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:131:23:131:33 | { $eq: id } | CalleeFlexibleAccessPath | Document.find |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:131:23:131:33 | { $eq: id } | InputAccessPathFromCallee | 0._id |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:131:23:131:33 | { $eq: id } | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:131:23:131:33 | { $eq: id } | assignedToPropName | _id |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:131:23:131:33 | { $eq: id } | calleeImports | mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:131:23:131:33 | { $eq: id } | contextFunctionInterfaces | getQueryConstructor()\ninnocent(X, Y, query) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:131:23:131:33 | { $eq: id } | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:131:23:131:33 | { $eq: id } | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:131:23:131:33 | { $eq: id } | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:131:23:131:33 | { $eq: id } | fileImports | body-parser express mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:131:23:131:33 | { $eq: id } | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:131:23:131:33 | { $eq: id } | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:131:30:131:31 | id | CalleeFlexibleAccessPath | Document.find |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:131:30:131:31 | id | InputAccessPathFromCallee | 0._id.$eq |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:131:30:131:31 | id | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:131:30:131:31 | id | assignedToPropName | $eq |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:131:30:131:31 | id | calleeImports | mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:131:30:131:31 | id | contextFunctionInterfaces | getQueryConstructor()\ninnocent(X, Y, query) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:131:30:131:31 | id | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:131:30:131:31 | id | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:131:30:131:31 | id | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:131:30:131:31 | id | fileImports | body-parser express mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:131:30:131:31 | id | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:131:30:131:31 | id | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:2:25:2:33 | 'express' | CalleeFlexibleAccessPath | require |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:2:25:2:33 | 'express' | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:2:25:2:33 | 'express' | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:2:25:2:33 | 'express' | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:2:25:2:33 | 'express' | calleeImports |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:2:25:2:33 | 'express' | contextFunctionInterfaces |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:2:25:2:33 | 'express' | contextSurroundingFunctionParameters |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:2:25:2:33 | 'express' | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:2:25:2:33 | 'express' | enclosingFunctionName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:2:25:2:33 | 'express' | fileImports | body-parser express mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:2:25:2:33 | 'express' | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:2:25:2:33 | 'express' | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:3:28:3:40 | 'body-parser' | CalleeFlexibleAccessPath | require |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:3:28:3:40 | 'body-parser' | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:3:28:3:40 | 'body-parser' | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:3:28:3:40 | 'body-parser' | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:3:28:3:40 | 'body-parser' | calleeImports |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:3:28:3:40 | 'body-parser' | contextFunctionInterfaces |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:3:28:3:40 | 'body-parser' | contextSurroundingFunctionParameters |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:3:28:3:40 | 'body-parser' | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:3:28:3:40 | 'body-parser' | enclosingFunctionName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:3:28:3:40 | 'body-parser' | fileImports | body-parser express mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:3:28:3:40 | 'body-parser' | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:3:28:3:40 | 'body-parser' | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:4:26:4:35 | 'mongoose' | CalleeFlexibleAccessPath | require |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:4:26:4:35 | 'mongoose' | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:4:26:4:35 | 'mongoose' | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:4:26:4:35 | 'mongoose' | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:4:26:4:35 | 'mongoose' | calleeImports |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:4:26:4:35 | 'mongoose' | contextFunctionInterfaces |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:4:26:4:35 | 'mongoose' | contextSurroundingFunctionParameters |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:4:26:4:35 | 'mongoose' | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:4:26:4:35 | 'mongoose' | enclosingFunctionName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:4:26:4:35 | 'mongoose' | fileImports | body-parser express mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:4:26:4:35 | 'mongoose' | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:4:26:4:35 | 'mongoose' | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:6:18:6:50 | 'mongod ... table1' | CalleeFlexibleAccessPath | Mongoose.connect |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:6:18:6:50 | 'mongod ... table1' | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:6:18:6:50 | 'mongod ... table1' | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:6:18:6:50 | 'mongod ... table1' | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:6:18:6:50 | 'mongod ... table1' | calleeImports | mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:6:18:6:50 | 'mongod ... table1' | contextFunctionInterfaces |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:6:18:6:50 | 'mongod ... table1' | contextSurroundingFunctionParameters |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:6:18:6:50 | 'mongod ... table1' | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:6:18:6:50 | 'mongod ... table1' | enclosingFunctionName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:6:18:6:50 | 'mongod ... table1' | fileImports | body-parser express mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:6:18:6:50 | 'mongod ... table1' | receiverName | Mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:6:18:6:50 | 'mongod ... table1' | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:10:33:10:42 | 'Document' | CalleeFlexibleAccessPath | Mongoose.model |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:10:33:10:42 | 'Document' | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:10:33:10:42 | 'Document' | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:10:33:10:42 | 'Document' | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:10:33:10:42 | 'Document' | calleeImports | mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:10:33:10:42 | 'Document' | contextFunctionInterfaces |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:10:33:10:42 | 'Document' | contextSurroundingFunctionParameters |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:10:33:10:42 | 'Document' | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:10:33:10:42 | 'Document' | enclosingFunctionName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:10:33:10:42 | 'Document' | fileImports | body-parser express mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:10:33:10:42 | 'Document' | receiverName | Mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:10:33:10:42 | 'Document' | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:10:45:16:1 | {\\n    t ... tring\\n} | CalleeFlexibleAccessPath | Mongoose.model |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:10:45:16:1 | {\\n    t ... tring\\n} | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:10:45:16:1 | {\\n    t ... tring\\n} | InputArgumentIndex | 1 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:10:45:16:1 | {\\n    t ... tring\\n} | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:10:45:16:1 | {\\n    t ... tring\\n} | calleeImports | mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:10:45:16:1 | {\\n    t ... tring\\n} | contextFunctionInterfaces |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:10:45:16:1 | {\\n    t ... tring\\n} | contextSurroundingFunctionParameters |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:10:45:16:1 | {\\n    t ... tring\\n} | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:10:45:16:1 | {\\n    t ... tring\\n} | enclosingFunctionName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:10:45:16:1 | {\\n    t ... tring\\n} | fileImports | body-parser express mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:10:45:16:1 | {\\n    t ... tring\\n} | receiverName | Mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:10:45:16:1 | {\\n    t ... tring\\n} | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:11:12:14:5 | {\\n      ... e\\n    } | CalleeFlexibleAccessPath | Mongoose.model |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:11:12:14:5 | {\\n      ... e\\n    } | InputAccessPathFromCallee | 1.title |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:11:12:14:5 | {\\n      ... e\\n    } | InputArgumentIndex | 1 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:11:12:14:5 | {\\n      ... e\\n    } | assignedToPropName | title |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:11:12:14:5 | {\\n      ... e\\n    } | calleeImports | mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:11:12:14:5 | {\\n      ... e\\n    } | contextFunctionInterfaces |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:11:12:14:5 | {\\n      ... e\\n    } | contextSurroundingFunctionParameters |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:11:12:14:5 | {\\n      ... e\\n    } | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:11:12:14:5 | {\\n      ... e\\n    } | enclosingFunctionName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:11:12:14:5 | {\\n      ... e\\n    } | fileImports | body-parser express mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:11:12:14:5 | {\\n      ... e\\n    } | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:11:12:14:5 | {\\n      ... e\\n    } | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:12:15:12:20 | String | CalleeFlexibleAccessPath | Mongoose.model |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:12:15:12:20 | String | InputAccessPathFromCallee | 1.title.type |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:12:15:12:20 | String | InputArgumentIndex | 1 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:12:15:12:20 | String | assignedToPropName | type |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:12:15:12:20 | String | calleeImports | mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:12:15:12:20 | String | contextFunctionInterfaces |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:12:15:12:20 | String | contextSurroundingFunctionParameters |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:12:15:12:20 | String | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:12:15:12:20 | String | enclosingFunctionName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:12:15:12:20 | String | fileImports | body-parser express mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:12:15:12:20 | String | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:12:15:12:20 | String | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:13:17:13:20 | true | CalleeFlexibleAccessPath | Mongoose.model |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:13:17:13:20 | true | InputAccessPathFromCallee | 1.title.unique |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:13:17:13:20 | true | InputArgumentIndex | 1 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:13:17:13:20 | true | assignedToPropName | unique |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:13:17:13:20 | true | calleeImports | mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:13:17:13:20 | true | contextFunctionInterfaces |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:13:17:13:20 | true | contextSurroundingFunctionParameters |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:13:17:13:20 | true | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:13:17:13:20 | true | enclosingFunctionName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:13:17:13:20 | true | fileImports | body-parser express mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:13:17:13:20 | true | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:13:17:13:20 | true | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:15:11:15:16 | String | CalleeFlexibleAccessPath | Mongoose.model |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:15:11:15:16 | String | InputAccessPathFromCallee | 1.type |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:15:11:15:16 | String | InputArgumentIndex | 1 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:15:11:15:16 | String | assignedToPropName | type |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:15:11:15:16 | String | calleeImports | mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:15:11:15:16 | String | contextFunctionInterfaces |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:15:11:15:16 | String | contextSurroundingFunctionParameters |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:15:11:15:16 | String | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:15:11:15:16 | String | enclosingFunctionName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:15:11:15:16 | String | fileImports | body-parser express mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:15:11:15:16 | String | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:15:11:15:16 | String | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:18:9:18:25 | '/documents/find' | CalleeFlexibleAccessPath | app.get |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:18:9:18:25 | '/documents/find' | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:18:9:18:25 | '/documents/find' | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:18:9:18:25 | '/documents/find' | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:18:9:18:25 | '/documents/find' | calleeImports | express |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:18:9:18:25 | '/documents/find' | contextFunctionInterfaces |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:18:9:18:25 | '/documents/find' | contextSurroundingFunctionParameters |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:18:9:18:25 | '/documents/find' | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:18:9:18:25 | '/documents/find' | enclosingFunctionName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:18:9:18:25 | '/documents/find' | fileImports | body-parser express mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:18:9:18:25 | '/documents/find' | receiverName | app |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:18:9:18:25 | '/documents/find' | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:18:28:24:1 | (req, r ... ery);\\n} | CalleeFlexibleAccessPath | app.get |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:18:28:24:1 | (req, r ... ery);\\n} | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:18:28:24:1 | (req, r ... ery);\\n} | InputArgumentIndex | 1 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:18:28:24:1 | (req, r ... ery);\\n} | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:18:28:24:1 | (req, r ... ery);\\n} | calleeImports | express |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:18:28:24:1 | (req, r ... ery);\\n} | contextFunctionInterfaces |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:18:28:24:1 | (req, r ... ery);\\n} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:18:28:24:1 | (req, r ... ery);\\n} | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:18:28:24:1 | (req, r ... ery);\\n} | enclosingFunctionName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:18:28:24:1 | (req, r ... ery);\\n} | fileImports | body-parser express mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:18:28:24:1 | (req, r ... ery);\\n} | receiverName | app |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:18:28:24:1 | (req, r ... ery);\\n} | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:19:19:19:20 | {} | CalleeFlexibleAccessPath |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:19:19:19:20 | {} | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:19:19:19:20 | {} | InputArgumentIndex |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:19:19:19:20 | {} | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:19:19:19:20 | {} | calleeImports |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:19:19:19:20 | {} | contextFunctionInterfaces |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:19:19:19:20 | {} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:19:19:19:20 | {} | enclosingFunctionBody | req res query query title JSON parse req query data title Document find query |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:19:19:19:20 | {} | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:19:19:19:20 | {} | fileImports | body-parser express mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:19:19:19:20 | {} | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:19:19:19:20 | {} | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:23:19:23:23 | query | CalleeFlexibleAccessPath | Document.find |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:23:19:23:23 | query | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:23:19:23:23 | query | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:23:19:23:23 | query | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:23:19:23:23 | query | calleeImports | mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:23:19:23:23 | query | contextFunctionInterfaces |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:23:19:23:23 | query | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:23:19:23:23 | query | enclosingFunctionBody | req res query query title JSON parse req query data title Document find query |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:23:19:23:23 | query | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:23:19:23:23 | query | fileImports | body-parser express mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:23:19:23:23 | query | receiverName | Document |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:23:19:23:23 | query | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModel.js:3:39:3:47 | 'MyModel' | CalleeFlexibleAccessPath | mongoose.model |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModel.js:3:39:3:47 | 'MyModel' | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModel.js:3:39:3:47 | 'MyModel' | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModel.js:3:39:3:47 | 'MyModel' | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModel.js:3:39:3:47 | 'MyModel' | calleeImports | mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModel.js:3:39:3:47 | 'MyModel' | contextFunctionInterfaces |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModel.js:3:39:3:47 | 'MyModel' | contextSurroundingFunctionParameters |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModel.js:3:39:3:47 | 'MyModel' | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModel.js:3:39:3:47 | 'MyModel' | enclosingFunctionName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModel.js:3:39:3:47 | 'MyModel' | fileImports | mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModel.js:3:39:3:47 | 'MyModel' | receiverName | mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModel.js:3:39:3:47 | 'MyModel' | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModel.js:3:50:3:60 | getSchema() | CalleeFlexibleAccessPath | mongoose.model |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModel.js:3:50:3:60 | getSchema() | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModel.js:3:50:3:60 | getSchema() | InputArgumentIndex | 1 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModel.js:3:50:3:60 | getSchema() | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModel.js:3:50:3:60 | getSchema() | calleeImports | mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModel.js:3:50:3:60 | getSchema() | contextFunctionInterfaces |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModel.js:3:50:3:60 | getSchema() | contextSurroundingFunctionParameters |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModel.js:3:50:3:60 | getSchema() | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModel.js:3:50:3:60 | getSchema() | enclosingFunctionName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModel.js:3:50:3:60 | getSchema() | fileImports | mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModel.js:3:50:3:60 | getSchema() | receiverName | mongoose |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModel.js:3:50:3:60 | getSchema() | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:7:9:7:25 | bodyParser.json() | CalleeFlexibleAccessPath | app.use |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:7:9:7:25 | bodyParser.json() | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:7:9:7:25 | bodyParser.json() | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:7:9:7:25 | bodyParser.json() | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:7:9:7:25 | bodyParser.json() | calleeImports | express |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:7:9:7:25 | bodyParser.json() | contextFunctionInterfaces |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:7:9:7:25 | bodyParser.json() | contextSurroundingFunctionParameters |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:7:9:7:25 | bodyParser.json() | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:7:9:7:25 | bodyParser.json() | enclosingFunctionName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:7:9:7:25 | bodyParser.json() | fileImports | ./mongooseModel body-parser express |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:7:9:7:25 | bodyParser.json() | receiverName | app |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:7:9:7:25 | bodyParser.json() | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:9:10:9:16 | '/find' | CalleeFlexibleAccessPath | app.post |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:9:10:9:16 | '/find' | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:9:10:9:16 | '/find' | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:9:10:9:16 | '/find' | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:9:10:9:16 | '/find' | calleeImports | express |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:9:10:9:16 | '/find' | contextFunctionInterfaces |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:9:10:9:16 | '/find' | contextSurroundingFunctionParameters |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:9:10:9:16 | '/find' | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:9:10:9:16 | '/find' | enclosingFunctionName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:9:10:9:16 | '/find' | fileImports | ./mongooseModel body-parser express |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:9:10:9:16 | '/find' | receiverName | app |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:9:10:9:16 | '/find' | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:9:19:14:1 | (req, r ... // OK\\n} | CalleeFlexibleAccessPath | app.post |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:9:19:14:1 | (req, r ... // OK\\n} | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:9:19:14:1 | (req, r ... // OK\\n} | InputArgumentIndex | 1 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:9:19:14:1 | (req, r ... // OK\\n} | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:9:19:14:1 | (req, r ... // OK\\n} | calleeImports | express |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:9:19:14:1 | (req, r ... // OK\\n} | contextFunctionInterfaces |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:9:19:14:1 | (req, r ... // OK\\n} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:9:19:14:1 | (req, r ... // OK\\n} | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:9:19:14:1 | (req, r ... // OK\\n} | enclosingFunctionName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:9:19:14:1 | (req, r ... // OK\\n} | fileImports | ./mongooseModel body-parser express |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:9:19:14:1 | (req, r ... // OK\\n} | receiverName | app |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:9:19:14:1 | (req, r ... // OK\\n} | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:11:16:11:24 | { id: v } | CalleeFlexibleAccessPath | MyModel.find |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:11:16:11:24 | { id: v } | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:11:16:11:24 | { id: v } | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:11:16:11:24 | { id: v } | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:11:16:11:24 | { id: v } | calleeImports | ./mongooseModel |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:11:16:11:24 | { id: v } | contextFunctionInterfaces |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:11:16:11:24 | { id: v } | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:11:16:11:24 | { id: v } | enclosingFunctionBody | req res v JSON parse req body x MyModel find id v MyModel find id req body id MyModel find id req body id |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:11:16:11:24 | { id: v } | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:11:16:11:24 | { id: v } | fileImports | ./mongooseModel body-parser express |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:11:16:11:24 | { id: v } | receiverName | MyModel |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:11:16:11:24 | { id: v } | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:11:22:11:22 | v | CalleeFlexibleAccessPath | MyModel.find |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:11:22:11:22 | v | InputAccessPathFromCallee | 0.id |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:11:22:11:22 | v | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:11:22:11:22 | v | assignedToPropName | id |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:11:22:11:22 | v | calleeImports | ./mongooseModel |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:11:22:11:22 | v | contextFunctionInterfaces |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:11:22:11:22 | v | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:11:22:11:22 | v | enclosingFunctionBody | req res v JSON parse req body x MyModel find id v MyModel find id req body id MyModel find id req body id |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:11:22:11:22 | v | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:11:22:11:22 | v | fileImports | ./mongooseModel body-parser express |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:11:22:11:22 | v | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:11:22:11:22 | v | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:12:16:12:34 | { id: req.body.id } | CalleeFlexibleAccessPath | MyModel.find |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:12:16:12:34 | { id: req.body.id } | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:12:16:12:34 | { id: req.body.id } | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:12:16:12:34 | { id: req.body.id } | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:12:16:12:34 | { id: req.body.id } | calleeImports | ./mongooseModel |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:12:16:12:34 | { id: req.body.id } | contextFunctionInterfaces |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:12:16:12:34 | { id: req.body.id } | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:12:16:12:34 | { id: req.body.id } | enclosingFunctionBody | req res v JSON parse req body x MyModel find id v MyModel find id req body id MyModel find id req body id |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:12:16:12:34 | { id: req.body.id } | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:12:16:12:34 | { id: req.body.id } | fileImports | ./mongooseModel body-parser express |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:12:16:12:34 | { id: req.body.id } | receiverName | MyModel |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:12:16:12:34 | { id: req.body.id } | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:12:22:12:32 | req.body.id | CalleeFlexibleAccessPath | MyModel.find |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:12:22:12:32 | req.body.id | InputAccessPathFromCallee | 0.id |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:12:22:12:32 | req.body.id | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:12:22:12:32 | req.body.id | assignedToPropName | id |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:12:22:12:32 | req.body.id | calleeImports | ./mongooseModel |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:12:22:12:32 | req.body.id | contextFunctionInterfaces |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:12:22:12:32 | req.body.id | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:12:22:12:32 | req.body.id | enclosingFunctionBody | req res v JSON parse req body x MyModel find id v MyModel find id req body id MyModel find id req body id |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:12:22:12:32 | req.body.id | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:12:22:12:32 | req.body.id | fileImports | ./mongooseModel body-parser express |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:12:22:12:32 | req.body.id | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:12:22:12:32 | req.body.id | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:13:16:13:39 | { id: ` ... .id}` } | CalleeFlexibleAccessPath | MyModel.find |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:13:16:13:39 | { id: ` ... .id}` } | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:13:16:13:39 | { id: ` ... .id}` } | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:13:16:13:39 | { id: ` ... .id}` } | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:13:16:13:39 | { id: ` ... .id}` } | calleeImports | ./mongooseModel |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:13:16:13:39 | { id: ` ... .id}` } | contextFunctionInterfaces |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:13:16:13:39 | { id: ` ... .id}` } | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:13:16:13:39 | { id: ` ... .id}` } | enclosingFunctionBody | req res v JSON parse req body x MyModel find id v MyModel find id req body id MyModel find id req body id |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:13:16:13:39 | { id: ` ... .id}` } | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:13:16:13:39 | { id: ` ... .id}` } | fileImports | ./mongooseModel body-parser express |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:13:16:13:39 | { id: ` ... .id}` } | receiverName | MyModel |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:13:16:13:39 | { id: ` ... .id}` } | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:13:22:13:37 | `${req.body.id}` | CalleeFlexibleAccessPath | MyModel.find |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:13:22:13:37 | `${req.body.id}` | InputAccessPathFromCallee | 0.id |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:13:22:13:37 | `${req.body.id}` | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:13:22:13:37 | `${req.body.id}` | assignedToPropName | id |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:13:22:13:37 | `${req.body.id}` | calleeImports | ./mongooseModel |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:13:22:13:37 | `${req.body.id}` | contextFunctionInterfaces |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:13:22:13:37 | `${req.body.id}` | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:13:22:13:37 | `${req.body.id}` | enclosingFunctionBody | req res v JSON parse req body x MyModel find id v MyModel find id req body id MyModel find id req body id |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:13:22:13:37 | `${req.body.id}` | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:13:22:13:37 | `${req.body.id}` | fileImports | ./mongooseModel body-parser express |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:13:22:13:37 | `${req.body.id}` | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:13:22:13:37 | `${req.body.id}` | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise-types.ts:8:17:8:21 | taint | CalleeFlexibleAccessPath | this.db.one |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise-types.ts:8:17:8:21 | taint | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise-types.ts:8:17:8:21 | taint | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise-types.ts:8:17:8:21 | taint | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise-types.ts:8:17:8:21 | taint | calleeImports |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise-types.ts:8:17:8:21 | taint | contextFunctionInterfaces | constructor()\nonRequest(req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise-types.ts:8:17:8:21 | taint | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise-types.ts:8:17:8:21 | taint | enclosingFunctionBody | req res taint req params x db one taint res end |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise-types.ts:8:17:8:21 | taint | enclosingFunctionName | onRequest |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise-types.ts:8:17:8:21 | taint | fileImports | express pg-promise |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise-types.ts:8:17:8:21 | taint | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise-types.ts:8:17:8:21 | taint | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise-types.ts:13:9:13:17 | 'express' | CalleeFlexibleAccessPath | require |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise-types.ts:13:9:13:17 | 'express' | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise-types.ts:13:9:13:17 | 'express' | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise-types.ts:13:9:13:17 | 'express' | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise-types.ts:13:9:13:17 | 'express' | calleeImports |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise-types.ts:13:9:13:17 | 'express' | contextFunctionInterfaces | constructor()\nonRequest(req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise-types.ts:13:9:13:17 | 'express' | contextSurroundingFunctionParameters |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise-types.ts:13:9:13:17 | 'express' | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise-types.ts:13:9:13:17 | 'express' | enclosingFunctionName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise-types.ts:13:9:13:17 | 'express' | fileImports | express pg-promise |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise-types.ts:13:9:13:17 | 'express' | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise-types.ts:13:9:13:17 | 'express' | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise-types.ts:13:26:13:31 | '/foo' | CalleeFlexibleAccessPath | import(!)().get |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise-types.ts:13:26:13:31 | '/foo' | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise-types.ts:13:26:13:31 | '/foo' | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise-types.ts:13:26:13:31 | '/foo' | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise-types.ts:13:26:13:31 | '/foo' | calleeImports | express |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise-types.ts:13:26:13:31 | '/foo' | contextFunctionInterfaces | constructor()\nonRequest(req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise-types.ts:13:26:13:31 | '/foo' | contextSurroundingFunctionParameters |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise-types.ts:13:26:13:31 | '/foo' | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise-types.ts:13:26:13:31 | '/foo' | enclosingFunctionName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise-types.ts:13:26:13:31 | '/foo' | fileImports | express pg-promise |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise-types.ts:13:26:13:31 | '/foo' | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise-types.ts:13:26:13:31 | '/foo' | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise-types.ts:13:34:13:76 | (req, r ... q, res) | CalleeFlexibleAccessPath | import(!)().get |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise-types.ts:13:34:13:76 | (req, r ... q, res) | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise-types.ts:13:34:13:76 | (req, r ... q, res) | InputArgumentIndex | 1 |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise-types.ts:13:34:13:76 | (req, r ... q, res) | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise-types.ts:13:34:13:76 | (req, r ... q, res) | calleeImports | express |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise-types.ts:13:34:13:76 | (req, r ... q, res) | contextFunctionInterfaces | constructor()\nonRequest(req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise-types.ts:13:34:13:76 | (req, r ... q, res) | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise-types.ts:13:34:13:76 | (req, r ... q, res) | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise-types.ts:13:34:13:76 | (req, r ... q, res) | enclosingFunctionName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise-types.ts:13:34:13:76 | (req, r ... q, res) | fileImports | express pg-promise |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise-types.ts:13:34:13:76 | (req, r ... q, res) | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise-types.ts:13:34:13:76 | (req, r ... q, res) | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:1:21:1:32 | 'pg-promise' | CalleeFlexibleAccessPath | require |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:1:21:1:32 | 'pg-promise' | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:1:21:1:32 | 'pg-promise' | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:1:21:1:32 | 'pg-promise' | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:1:21:1:32 | 'pg-promise' | calleeImports |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:1:21:1:32 | 'pg-promise' | contextFunctionInterfaces | cnd(t) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:1:21:1:32 | 'pg-promise' | contextSurroundingFunctionParameters |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:1:21:1:32 | 'pg-promise' | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:1:21:1:32 | 'pg-promise' | enclosingFunctionName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:1:21:1:32 | 'pg-promise' | fileImports | express pg-promise |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:1:21:1:32 | 'pg-promise' | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:1:21:1:32 | 'pg-promise' | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:3:9:3:17 | 'express' | CalleeFlexibleAccessPath | require |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:3:9:3:17 | 'express' | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:3:9:3:17 | 'express' | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:3:9:3:17 | 'express' | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:3:9:3:17 | 'express' | calleeImports |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:3:9:3:17 | 'express' | contextFunctionInterfaces | cnd(t) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:3:9:3:17 | 'express' | contextSurroundingFunctionParameters |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:3:9:3:17 | 'express' | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:3:9:3:17 | 'express' | enclosingFunctionName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:3:9:3:17 | 'express' | fileImports | express pg-promise |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:3:9:3:17 | 'express' | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:3:9:3:17 | 'express' | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:3:26:3:31 | '/foo' | CalleeFlexibleAccessPath | import(!)().get |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:3:26:3:31 | '/foo' | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:3:26:3:31 | '/foo' | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:3:26:3:31 | '/foo' | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:3:26:3:31 | '/foo' | calleeImports | express |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:3:26:3:31 | '/foo' | contextFunctionInterfaces | cnd(t) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:3:26:3:31 | '/foo' | contextSurroundingFunctionParameters |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:3:26:3:31 | '/foo' | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:3:26:3:31 | '/foo' | enclosingFunctionName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:3:26:3:31 | '/foo' | fileImports | express pg-promise |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:3:26:3:31 | '/foo' | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:3:26:3:31 | '/foo' | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:3:34:66:1 | (req, r ... \\n  );\\n} | CalleeFlexibleAccessPath | import(!)().get |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:3:34:66:1 | (req, r ... \\n  );\\n} | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:3:34:66:1 | (req, r ... \\n  );\\n} | InputArgumentIndex | 1 |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:3:34:66:1 | (req, r ... \\n  );\\n} | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:3:34:66:1 | (req, r ... \\n  );\\n} | calleeImports | express |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:3:34:66:1 | (req, r ... \\n  );\\n} | contextFunctionInterfaces | cnd(t) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:3:34:66:1 | (req, r ... \\n  );\\n} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:3:34:66:1 | (req, r ... \\n  );\\n} | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:3:34:66:1 | (req, r ... \\n  );\\n} | enclosingFunctionName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:3:34:66:1 | (req, r ... \\n  );\\n} | fileImports | express pg-promise |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:3:34:66:1 | (req, r ... \\n  );\\n} | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:3:34:66:1 | (req, r ... \\n  );\\n} | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:4:18:4:52 | process ... TRING'] | CalleeFlexibleAccessPath | pgp |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:4:18:4:52 | process ... TRING'] | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:4:18:4:52 | process ... TRING'] | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:4:18:4:52 | process ... TRING'] | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:4:18:4:52 | process ... TRING'] | calleeImports | pg-promise |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:4:18:4:52 | process ... TRING'] | contextFunctionInterfaces | cnd(t) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:4:18:4:52 | process ... TRING'] | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:4:18:4:52 | process ... TRING'] | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db task cnd t t one query t t one query |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:4:18:4:52 | process ... TRING'] | enclosingFunctionName | get#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:4:18:4:52 | process ... TRING'] | fileImports | express pg-promise |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:4:18:4:52 | process ... TRING'] | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:4:18:4:52 | process ... TRING'] | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:6:15:7:34 | "SELECT ... ategory | CalleeFlexibleAccessPath |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:6:15:7:34 | "SELECT ... ategory | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:6:15:7:34 | "SELECT ... ategory | InputArgumentIndex |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:6:15:7:34 | "SELECT ... ategory | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:6:15:7:34 | "SELECT ... ategory | calleeImports |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:6:15:7:34 | "SELECT ... ategory | contextFunctionInterfaces | cnd(t) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:6:15:7:34 | "SELECT ... ategory | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:6:15:7:34 | "SELECT ... ategory | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db task cnd t t one query t t one query |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:6:15:7:34 | "SELECT ... ategory | enclosingFunctionName | get#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:6:15:7:34 | "SELECT ... ategory | fileImports | express pg-promise |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:6:15:7:34 | "SELECT ... ategory | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:6:15:7:34 | "SELECT ... ategory | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:6:15:7:55 | "SELECT ...  PRICE" | CalleeFlexibleAccessPath |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:6:15:7:55 | "SELECT ...  PRICE" | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:6:15:7:55 | "SELECT ...  PRICE" | InputArgumentIndex |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:6:15:7:55 | "SELECT ...  PRICE" | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:6:15:7:55 | "SELECT ...  PRICE" | calleeImports |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:6:15:7:55 | "SELECT ...  PRICE" | contextFunctionInterfaces | cnd(t) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:6:15:7:55 | "SELECT ...  PRICE" | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:6:15:7:55 | "SELECT ...  PRICE" | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db task cnd t t one query t t one query |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:6:15:7:55 | "SELECT ...  PRICE" | enclosingFunctionName | get#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:6:15:7:55 | "SELECT ...  PRICE" | fileImports | express pg-promise |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:6:15:7:55 | "SELECT ...  PRICE" | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:6:15:7:55 | "SELECT ...  PRICE" | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:9:10:9:14 | query | CalleeFlexibleAccessPath | db.any |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:9:10:9:14 | query | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:9:10:9:14 | query | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:9:10:9:14 | query | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:9:10:9:14 | query | calleeImports | pg-promise |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:9:10:9:14 | query | contextFunctionInterfaces | cnd(t) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:9:10:9:14 | query | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:9:10:9:14 | query | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db task cnd t t one query t t one query |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:9:10:9:14 | query | enclosingFunctionName | get#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:9:10:9:14 | query | fileImports | express pg-promise |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:9:10:9:14 | query | receiverName | db |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:9:10:9:14 | query | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:10:11:10:15 | query | CalleeFlexibleAccessPath | db.many |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:10:11:10:15 | query | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:10:11:10:15 | query | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:10:11:10:15 | query | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:10:11:10:15 | query | calleeImports | pg-promise |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:10:11:10:15 | query | contextFunctionInterfaces | cnd(t) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:10:11:10:15 | query | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:10:11:10:15 | query | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db task cnd t t one query t t one query |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:10:11:10:15 | query | enclosingFunctionName | get#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:10:11:10:15 | query | fileImports | express pg-promise |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:10:11:10:15 | query | receiverName | db |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:10:11:10:15 | query | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:11:17:11:21 | query | CalleeFlexibleAccessPath | db.manyOrNone |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:11:17:11:21 | query | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:11:17:11:21 | query | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:11:17:11:21 | query | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:11:17:11:21 | query | calleeImports | pg-promise |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:11:17:11:21 | query | contextFunctionInterfaces | cnd(t) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:11:17:11:21 | query | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:11:17:11:21 | query | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db task cnd t t one query t t one query |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:11:17:11:21 | query | enclosingFunctionName | get#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:11:17:11:21 | query | fileImports | express pg-promise |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:11:17:11:21 | query | receiverName | db |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:11:17:11:21 | query | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:12:10:12:14 | query | CalleeFlexibleAccessPath | db.map |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:12:10:12:14 | query | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:12:10:12:14 | query | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:12:10:12:14 | query | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:12:10:12:14 | query | calleeImports | pg-promise |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:12:10:12:14 | query | contextFunctionInterfaces | cnd(t) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:12:10:12:14 | query | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:12:10:12:14 | query | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db task cnd t t one query t t one query |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:12:10:12:14 | query | enclosingFunctionName | get#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:12:10:12:14 | query | fileImports | express pg-promise |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:12:10:12:14 | query | receiverName | db |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:12:10:12:14 | query | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:13:12:13:16 | query | CalleeFlexibleAccessPath | db.multi |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:13:12:13:16 | query | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:13:12:13:16 | query | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:13:12:13:16 | query | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:13:12:13:16 | query | calleeImports | pg-promise |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:13:12:13:16 | query | contextFunctionInterfaces | cnd(t) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:13:12:13:16 | query | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:13:12:13:16 | query | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db task cnd t t one query t t one query |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:13:12:13:16 | query | enclosingFunctionName | get#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:13:12:13:16 | query | fileImports | express pg-promise |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:13:12:13:16 | query | receiverName | db |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:13:12:13:16 | query | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:14:18:14:22 | query | CalleeFlexibleAccessPath | db.multiResult |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:14:18:14:22 | query | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:14:18:14:22 | query | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:14:18:14:22 | query | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:14:18:14:22 | query | calleeImports | pg-promise |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:14:18:14:22 | query | contextFunctionInterfaces | cnd(t) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:14:18:14:22 | query | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:14:18:14:22 | query | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db task cnd t t one query t t one query |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:14:18:14:22 | query | enclosingFunctionName | get#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:14:18:14:22 | query | fileImports | express pg-promise |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:14:18:14:22 | query | receiverName | db |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:14:18:14:22 | query | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:15:11:15:15 | query | CalleeFlexibleAccessPath | db.none |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:15:11:15:15 | query | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:15:11:15:15 | query | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:15:11:15:15 | query | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:15:11:15:15 | query | calleeImports | pg-promise |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:15:11:15:15 | query | contextFunctionInterfaces | cnd(t) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:15:11:15:15 | query | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:15:11:15:15 | query | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db task cnd t t one query t t one query |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:15:11:15:15 | query | enclosingFunctionName | get#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:15:11:15:15 | query | fileImports | express pg-promise |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:15:11:15:15 | query | receiverName | db |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:15:11:15:15 | query | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:16:10:16:14 | query | CalleeFlexibleAccessPath | db.one |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:16:10:16:14 | query | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:16:10:16:14 | query | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:16:10:16:14 | query | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:16:10:16:14 | query | calleeImports | pg-promise |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:16:10:16:14 | query | contextFunctionInterfaces | cnd(t) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:16:10:16:14 | query | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:16:10:16:14 | query | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db task cnd t t one query t t one query |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:16:10:16:14 | query | enclosingFunctionName | get#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:16:10:16:14 | query | fileImports | express pg-promise |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:16:10:16:14 | query | receiverName | db |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:16:10:16:14 | query | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:17:16:17:20 | query | CalleeFlexibleAccessPath | db.oneOrNone |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:17:16:17:20 | query | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:17:16:17:20 | query | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:17:16:17:20 | query | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:17:16:17:20 | query | calleeImports | pg-promise |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:17:16:17:20 | query | contextFunctionInterfaces | cnd(t) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:17:16:17:20 | query | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:17:16:17:20 | query | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db task cnd t t one query t t one query |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:17:16:17:20 | query | enclosingFunctionName | get#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:17:16:17:20 | query | fileImports | express pg-promise |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:17:16:17:20 | query | receiverName | db |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:17:16:17:20 | query | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:18:12:18:16 | query | CalleeFlexibleAccessPath | db.query |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:18:12:18:16 | query | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:18:12:18:16 | query | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:18:12:18:16 | query | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:18:12:18:16 | query | calleeImports | pg-promise |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:18:12:18:16 | query | contextFunctionInterfaces | cnd(t) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:18:12:18:16 | query | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:18:12:18:16 | query | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db task cnd t t one query t t one query |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:18:12:18:16 | query | enclosingFunctionName | get#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:18:12:18:16 | query | fileImports | express pg-promise |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:18:12:18:16 | query | receiverName | db |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:18:12:18:16 | query | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:19:13:19:17 | query | CalleeFlexibleAccessPath | db.result |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:19:13:19:17 | query | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:19:13:19:17 | query | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:19:13:19:17 | query | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:19:13:19:17 | query | calleeImports | pg-promise |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:19:13:19:17 | query | contextFunctionInterfaces | cnd(t) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:19:13:19:17 | query | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:19:13:19:17 | query | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db task cnd t t one query t t one query |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:19:13:19:17 | query | enclosingFunctionName | get#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:19:13:19:17 | query | fileImports | express pg-promise |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:19:13:19:17 | query | receiverName | db |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:19:13:19:17 | query | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:21:10:23:3 | {\\n    t ...  OK\\n  } | CalleeFlexibleAccessPath | db.one |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:21:10:23:3 | {\\n    t ...  OK\\n  } | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:21:10:23:3 | {\\n    t ...  OK\\n  } | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:21:10:23:3 | {\\n    t ...  OK\\n  } | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:21:10:23:3 | {\\n    t ...  OK\\n  } | calleeImports | pg-promise |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:21:10:23:3 | {\\n    t ...  OK\\n  } | contextFunctionInterfaces | cnd(t) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:21:10:23:3 | {\\n    t ...  OK\\n  } | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:21:10:23:3 | {\\n    t ...  OK\\n  } | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db task cnd t t one query t t one query |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:21:10:23:3 | {\\n    t ...  OK\\n  } | enclosingFunctionName | get#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:21:10:23:3 | {\\n    t ...  OK\\n  } | fileImports | express pg-promise |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:21:10:23:3 | {\\n    t ...  OK\\n  } | receiverName | db |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:21:10:23:3 | {\\n    t ...  OK\\n  } | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:22:11:22:15 | query | CalleeFlexibleAccessPath | db.one |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:22:11:22:15 | query | InputAccessPathFromCallee | 0.text |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:22:11:22:15 | query | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:22:11:22:15 | query | assignedToPropName | text |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:22:11:22:15 | query | calleeImports | pg-promise |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:22:11:22:15 | query | contextFunctionInterfaces | cnd(t) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:22:11:22:15 | query | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:22:11:22:15 | query | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db task cnd t t one query t t one query |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:22:11:22:15 | query | enclosingFunctionName | get#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:22:11:22:15 | query | fileImports | express pg-promise |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:22:11:22:15 | query | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:22:11:22:15 | query | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:24:10:27:3 | {\\n    t ...  OK\\n  } | CalleeFlexibleAccessPath | db.one |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:24:10:27:3 | {\\n    t ...  OK\\n  } | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:24:10:27:3 | {\\n    t ...  OK\\n  } | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:24:10:27:3 | {\\n    t ...  OK\\n  } | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:24:10:27:3 | {\\n    t ...  OK\\n  } | calleeImports | pg-promise |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:24:10:27:3 | {\\n    t ...  OK\\n  } | contextFunctionInterfaces | cnd(t) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:24:10:27:3 | {\\n    t ...  OK\\n  } | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:24:10:27:3 | {\\n    t ...  OK\\n  } | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db task cnd t t one query t t one query |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:24:10:27:3 | {\\n    t ...  OK\\n  } | enclosingFunctionName | get#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:24:10:27:3 | {\\n    t ...  OK\\n  } | fileImports | express pg-promise |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:24:10:27:3 | {\\n    t ...  OK\\n  } | receiverName | db |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:24:10:27:3 | {\\n    t ...  OK\\n  } | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:25:11:25:44 | 'SELECT ... d = $1' | CalleeFlexibleAccessPath | db.one |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:25:11:25:44 | 'SELECT ... d = $1' | InputAccessPathFromCallee | 0.text |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:25:11:25:44 | 'SELECT ... d = $1' | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:25:11:25:44 | 'SELECT ... d = $1' | assignedToPropName | text |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:25:11:25:44 | 'SELECT ... d = $1' | calleeImports | pg-promise |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:25:11:25:44 | 'SELECT ... d = $1' | contextFunctionInterfaces | cnd(t) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:25:11:25:44 | 'SELECT ... d = $1' | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:25:11:25:44 | 'SELECT ... d = $1' | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db task cnd t t one query t t one query |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:25:11:25:44 | 'SELECT ... d = $1' | enclosingFunctionName | get#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:25:11:25:44 | 'SELECT ... d = $1' | fileImports | express pg-promise |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:25:11:25:44 | 'SELECT ... d = $1' | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:25:11:25:44 | 'SELECT ... d = $1' | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:26:13:26:25 | req.params.id | CalleeFlexibleAccessPath | db.one |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:26:13:26:25 | req.params.id | InputAccessPathFromCallee | 0.values |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:26:13:26:25 | req.params.id | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:26:13:26:25 | req.params.id | assignedToPropName | values |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:26:13:26:25 | req.params.id | calleeImports | pg-promise |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:26:13:26:25 | req.params.id | contextFunctionInterfaces | cnd(t) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:26:13:26:25 | req.params.id | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:26:13:26:25 | req.params.id | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db task cnd t t one query t t one query |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:26:13:26:25 | req.params.id | enclosingFunctionName | get#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:26:13:26:25 | req.params.id | fileImports | express pg-promise |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:26:13:26:25 | req.params.id | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:26:13:26:25 | req.params.id | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:28:10:31:3 | {\\n    t ... ter\\n  } | CalleeFlexibleAccessPath | db.one |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:28:10:31:3 | {\\n    t ... ter\\n  } | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:28:10:31:3 | {\\n    t ... ter\\n  } | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:28:10:31:3 | {\\n    t ... ter\\n  } | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:28:10:31:3 | {\\n    t ... ter\\n  } | calleeImports | pg-promise |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:28:10:31:3 | {\\n    t ... ter\\n  } | contextFunctionInterfaces | cnd(t) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:28:10:31:3 | {\\n    t ... ter\\n  } | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:28:10:31:3 | {\\n    t ... ter\\n  } | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db task cnd t t one query t t one query |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:28:10:31:3 | {\\n    t ... ter\\n  } | enclosingFunctionName | get#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:28:10:31:3 | {\\n    t ... ter\\n  } | fileImports | express pg-promise |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:28:10:31:3 | {\\n    t ... ter\\n  } | receiverName | db |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:28:10:31:3 | {\\n    t ... ter\\n  } | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:29:11:29:48 | 'SELECT ... $1:raw' | CalleeFlexibleAccessPath | db.one |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:29:11:29:48 | 'SELECT ... $1:raw' | InputAccessPathFromCallee | 0.text |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:29:11:29:48 | 'SELECT ... $1:raw' | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:29:11:29:48 | 'SELECT ... $1:raw' | assignedToPropName | text |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:29:11:29:48 | 'SELECT ... $1:raw' | calleeImports | pg-promise |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:29:11:29:48 | 'SELECT ... $1:raw' | contextFunctionInterfaces | cnd(t) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:29:11:29:48 | 'SELECT ... $1:raw' | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:29:11:29:48 | 'SELECT ... $1:raw' | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db task cnd t t one query t t one query |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:29:11:29:48 | 'SELECT ... $1:raw' | enclosingFunctionName | get#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:29:11:29:48 | 'SELECT ... $1:raw' | fileImports | express pg-promise |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:29:11:29:48 | 'SELECT ... $1:raw' | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:29:11:29:48 | 'SELECT ... $1:raw' | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:30:13:30:25 | req.params.id | CalleeFlexibleAccessPath | db.one |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:30:13:30:25 | req.params.id | InputAccessPathFromCallee | 0.values |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:30:13:30:25 | req.params.id | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:30:13:30:25 | req.params.id | assignedToPropName | values |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:30:13:30:25 | req.params.id | calleeImports | pg-promise |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:30:13:30:25 | req.params.id | contextFunctionInterfaces | cnd(t) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:30:13:30:25 | req.params.id | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:30:13:30:25 | req.params.id | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db task cnd t t one query t t one query |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:30:13:30:25 | req.params.id | enclosingFunctionName | get#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:30:13:30:25 | req.params.id | fileImports | express pg-promise |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:30:13:30:25 | req.params.id | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:30:13:30:25 | req.params.id | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:32:10:35:3 | {\\n    t ...  OK\\n  } | CalleeFlexibleAccessPath | db.one |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:32:10:35:3 | {\\n    t ...  OK\\n  } | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:32:10:35:3 | {\\n    t ...  OK\\n  } | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:32:10:35:3 | {\\n    t ...  OK\\n  } | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:32:10:35:3 | {\\n    t ...  OK\\n  } | calleeImports | pg-promise |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:32:10:35:3 | {\\n    t ...  OK\\n  } | contextFunctionInterfaces | cnd(t) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:32:10:35:3 | {\\n    t ...  OK\\n  } | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:32:10:35:3 | {\\n    t ...  OK\\n  } | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db task cnd t t one query t t one query |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:32:10:35:3 | {\\n    t ...  OK\\n  } | enclosingFunctionName | get#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:32:10:35:3 | {\\n    t ...  OK\\n  } | fileImports | express pg-promise |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:32:10:35:3 | {\\n    t ...  OK\\n  } | receiverName | db |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:32:10:35:3 | {\\n    t ...  OK\\n  } | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:33:11:33:45 | 'SELECT ...  = $1^' | CalleeFlexibleAccessPath | db.one |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:33:11:33:45 | 'SELECT ...  = $1^' | InputAccessPathFromCallee | 0.text |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:33:11:33:45 | 'SELECT ...  = $1^' | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:33:11:33:45 | 'SELECT ...  = $1^' | assignedToPropName | text |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:33:11:33:45 | 'SELECT ...  = $1^' | calleeImports | pg-promise |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:33:11:33:45 | 'SELECT ...  = $1^' | contextFunctionInterfaces | cnd(t) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:33:11:33:45 | 'SELECT ...  = $1^' | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:33:11:33:45 | 'SELECT ...  = $1^' | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db task cnd t t one query t t one query |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:33:11:33:45 | 'SELECT ...  = $1^' | enclosingFunctionName | get#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:33:11:33:45 | 'SELECT ...  = $1^' | fileImports | express pg-promise |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:33:11:33:45 | 'SELECT ...  = $1^' | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:33:11:33:45 | 'SELECT ...  = $1^' | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:34:13:34:25 | req.params.id | CalleeFlexibleAccessPath | db.one |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:34:13:34:25 | req.params.id | InputAccessPathFromCallee | 0.values |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:34:13:34:25 | req.params.id | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:34:13:34:25 | req.params.id | assignedToPropName | values |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:34:13:34:25 | req.params.id | calleeImports | pg-promise |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:34:13:34:25 | req.params.id | contextFunctionInterfaces | cnd(t) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:34:13:34:25 | req.params.id | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:34:13:34:25 | req.params.id | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db task cnd t t one query t t one query |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:34:13:34:25 | req.params.id | enclosingFunctionName | get#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:34:13:34:25 | req.params.id | fileImports | express pg-promise |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:34:13:34:25 | req.params.id | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:34:13:34:25 | req.params.id | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:36:10:43:3 | {\\n    t ...   ]\\n  } | CalleeFlexibleAccessPath | db.one |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:36:10:43:3 | {\\n    t ...   ]\\n  } | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:36:10:43:3 | {\\n    t ...   ]\\n  } | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:36:10:43:3 | {\\n    t ...   ]\\n  } | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:36:10:43:3 | {\\n    t ...   ]\\n  } | calleeImports | pg-promise |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:36:10:43:3 | {\\n    t ...   ]\\n  } | contextFunctionInterfaces | cnd(t) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:36:10:43:3 | {\\n    t ...   ]\\n  } | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:36:10:43:3 | {\\n    t ...   ]\\n  } | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db task cnd t t one query t t one query |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:36:10:43:3 | {\\n    t ...   ]\\n  } | enclosingFunctionName | get#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:36:10:43:3 | {\\n    t ...   ]\\n  } | fileImports | express pg-promise |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:36:10:43:3 | {\\n    t ...   ]\\n  } | receiverName | db |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:36:10:43:3 | {\\n    t ...   ]\\n  } | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:37:11:37:79 | 'SELECT ... o = $3' | CalleeFlexibleAccessPath | db.one |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:37:11:37:79 | 'SELECT ... o = $3' | InputAccessPathFromCallee | 0.text |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:37:11:37:79 | 'SELECT ... o = $3' | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:37:11:37:79 | 'SELECT ... o = $3' | assignedToPropName | text |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:37:11:37:79 | 'SELECT ... o = $3' | calleeImports | pg-promise |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:37:11:37:79 | 'SELECT ... o = $3' | contextFunctionInterfaces | cnd(t) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:37:11:37:79 | 'SELECT ... o = $3' | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:37:11:37:79 | 'SELECT ... o = $3' | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db task cnd t t one query t t one query |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:37:11:37:79 | 'SELECT ... o = $3' | enclosingFunctionName | get#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:37:11:37:79 | 'SELECT ... o = $3' | fileImports | express pg-promise |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:37:11:37:79 | 'SELECT ... o = $3' | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:37:11:37:79 | 'SELECT ... o = $3' | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:38:13:42:5 | [\\n      ... n\\n    ] | CalleeFlexibleAccessPath | db.one |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:38:13:42:5 | [\\n      ... n\\n    ] | InputAccessPathFromCallee | 0.values |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:38:13:42:5 | [\\n      ... n\\n    ] | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:38:13:42:5 | [\\n      ... n\\n    ] | assignedToPropName | values |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:38:13:42:5 | [\\n      ... n\\n    ] | calleeImports | pg-promise |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:38:13:42:5 | [\\n      ... n\\n    ] | contextFunctionInterfaces | cnd(t) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:38:13:42:5 | [\\n      ... n\\n    ] | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:38:13:42:5 | [\\n      ... n\\n    ] | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db task cnd t t one query t t one query |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:38:13:42:5 | [\\n      ... n\\n    ] | enclosingFunctionName | get#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:38:13:42:5 | [\\n      ... n\\n    ] | fileImports | express pg-promise |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:38:13:42:5 | [\\n      ... n\\n    ] | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:38:13:42:5 | [\\n      ... n\\n    ] | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:39:7:39:19 | req.params.id | CalleeFlexibleAccessPath |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:39:7:39:19 | req.params.id | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:39:7:39:19 | req.params.id | InputArgumentIndex |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:39:7:39:19 | req.params.id | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:39:7:39:19 | req.params.id | calleeImports |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:39:7:39:19 | req.params.id | contextFunctionInterfaces | cnd(t) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:39:7:39:19 | req.params.id | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:39:7:39:19 | req.params.id | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db task cnd t t one query t t one query |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:39:7:39:19 | req.params.id | enclosingFunctionName | get#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:39:7:39:19 | req.params.id | fileImports | express pg-promise |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:39:7:39:19 | req.params.id | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:39:7:39:19 | req.params.id | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:40:7:40:21 | req.params.name | CalleeFlexibleAccessPath |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:40:7:40:21 | req.params.name | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:40:7:40:21 | req.params.name | InputArgumentIndex |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:40:7:40:21 | req.params.name | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:40:7:40:21 | req.params.name | calleeImports |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:40:7:40:21 | req.params.name | contextFunctionInterfaces | cnd(t) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:40:7:40:21 | req.params.name | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:40:7:40:21 | req.params.name | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db task cnd t t one query t t one query |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:40:7:40:21 | req.params.name | enclosingFunctionName | get#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:40:7:40:21 | req.params.name | fileImports | express pg-promise |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:40:7:40:21 | req.params.name | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:40:7:40:21 | req.params.name | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:41:7:41:20 | req.params.foo | CalleeFlexibleAccessPath |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:41:7:41:20 | req.params.foo | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:41:7:41:20 | req.params.foo | InputArgumentIndex |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:41:7:41:20 | req.params.foo | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:41:7:41:20 | req.params.foo | calleeImports |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:41:7:41:20 | req.params.foo | contextFunctionInterfaces | cnd(t) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:41:7:41:20 | req.params.foo | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:41:7:41:20 | req.params.foo | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db task cnd t t one query t t one query |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:41:7:41:20 | req.params.foo | enclosingFunctionName | get#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:41:7:41:20 | req.params.foo | fileImports | express pg-promise |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:41:7:41:20 | req.params.foo | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:41:7:41:20 | req.params.foo | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:44:10:50:3 | {\\n    t ...   }\\n  } | CalleeFlexibleAccessPath | db.one |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:44:10:50:3 | {\\n    t ...   }\\n  } | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:44:10:50:3 | {\\n    t ...   }\\n  } | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:44:10:50:3 | {\\n    t ...   }\\n  } | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:44:10:50:3 | {\\n    t ...   }\\n  } | calleeImports | pg-promise |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:44:10:50:3 | {\\n    t ...   }\\n  } | contextFunctionInterfaces | cnd(t) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:44:10:50:3 | {\\n    t ...   }\\n  } | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:44:10:50:3 | {\\n    t ...   }\\n  } | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db task cnd t t one query t t one query |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:44:10:50:3 | {\\n    t ...   }\\n  } | enclosingFunctionName | get#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:44:10:50:3 | {\\n    t ...   }\\n  } | fileImports | express pg-promise |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:44:10:50:3 | {\\n    t ...   }\\n  } | receiverName | db |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:44:10:50:3 | {\\n    t ...   }\\n  } | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:45:11:45:70 | 'SELECT ... {name}' | CalleeFlexibleAccessPath | db.one |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:45:11:45:70 | 'SELECT ... {name}' | InputAccessPathFromCallee | 0.text |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:45:11:45:70 | 'SELECT ... {name}' | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:45:11:45:70 | 'SELECT ... {name}' | assignedToPropName | text |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:45:11:45:70 | 'SELECT ... {name}' | calleeImports | pg-promise |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:45:11:45:70 | 'SELECT ... {name}' | contextFunctionInterfaces | cnd(t) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:45:11:45:70 | 'SELECT ... {name}' | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:45:11:45:70 | 'SELECT ... {name}' | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db task cnd t t one query t t one query |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:45:11:45:70 | 'SELECT ... {name}' | enclosingFunctionName | get#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:45:11:45:70 | 'SELECT ... {name}' | fileImports | express pg-promise |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:45:11:45:70 | 'SELECT ... {name}' | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:45:11:45:70 | 'SELECT ... {name}' | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:46:13:49:5 | {\\n      ... n\\n    } | CalleeFlexibleAccessPath | db.one |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:46:13:49:5 | {\\n      ... n\\n    } | InputAccessPathFromCallee | 0.values |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:46:13:49:5 | {\\n      ... n\\n    } | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:46:13:49:5 | {\\n      ... n\\n    } | assignedToPropName | values |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:46:13:49:5 | {\\n      ... n\\n    } | calleeImports | pg-promise |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:46:13:49:5 | {\\n      ... n\\n    } | contextFunctionInterfaces | cnd(t) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:46:13:49:5 | {\\n      ... n\\n    } | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:46:13:49:5 | {\\n      ... n\\n    } | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db task cnd t t one query t t one query |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:46:13:49:5 | {\\n      ... n\\n    } | enclosingFunctionName | get#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:46:13:49:5 | {\\n      ... n\\n    } | fileImports | express pg-promise |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:46:13:49:5 | {\\n      ... n\\n    } | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:46:13:49:5 | {\\n      ... n\\n    } | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:47:11:47:23 | req.params.id | CalleeFlexibleAccessPath | db.one |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:47:11:47:23 | req.params.id | InputAccessPathFromCallee | 0.values.id |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:47:11:47:23 | req.params.id | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:47:11:47:23 | req.params.id | assignedToPropName | id |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:47:11:47:23 | req.params.id | calleeImports | pg-promise |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:47:11:47:23 | req.params.id | contextFunctionInterfaces | cnd(t) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:47:11:47:23 | req.params.id | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:47:11:47:23 | req.params.id | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db task cnd t t one query t t one query |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:47:11:47:23 | req.params.id | enclosingFunctionName | get#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:47:11:47:23 | req.params.id | fileImports | express pg-promise |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:47:11:47:23 | req.params.id | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:47:11:47:23 | req.params.id | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:48:13:48:27 | req.params.name | CalleeFlexibleAccessPath | db.one |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:48:13:48:27 | req.params.name | InputAccessPathFromCallee | 0.values.name |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:48:13:48:27 | req.params.name | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:48:13:48:27 | req.params.name | assignedToPropName | name |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:48:13:48:27 | req.params.name | calleeImports | pg-promise |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:48:13:48:27 | req.params.name | contextFunctionInterfaces | cnd(t) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:48:13:48:27 | req.params.name | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:48:13:48:27 | req.params.name | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db task cnd t t one query t t one query |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:48:13:48:27 | req.params.name | enclosingFunctionName | get#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:48:13:48:27 | req.params.name | fileImports | express pg-promise |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:48:13:48:27 | req.params.name | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:48:13:48:27 | req.params.name | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:51:10:58:3 | {\\n    t ...   }\\n  } | CalleeFlexibleAccessPath | db.one |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:51:10:58:3 | {\\n    t ...   }\\n  } | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:51:10:58:3 | {\\n    t ...   }\\n  } | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:51:10:58:3 | {\\n    t ...   }\\n  } | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:51:10:58:3 | {\\n    t ...   }\\n  } | calleeImports | pg-promise |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:51:10:58:3 | {\\n    t ...   }\\n  } | contextFunctionInterfaces | cnd(t) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:51:10:58:3 | {\\n    t ...   }\\n  } | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:51:10:58:3 | {\\n    t ...   }\\n  } | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db task cnd t t one query t t one query |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:51:10:58:3 | {\\n    t ...   }\\n  } | enclosingFunctionName | get#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:51:10:58:3 | {\\n    t ...   }\\n  } | fileImports | express pg-promise |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:51:10:58:3 | {\\n    t ...   }\\n  } | receiverName | db |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:51:10:58:3 | {\\n    t ...   }\\n  } | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:52:11:52:121 | "SELECT ... lue%\\"" | CalleeFlexibleAccessPath | db.one |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:52:11:52:121 | "SELECT ... lue%\\"" | InputAccessPathFromCallee | 0.text |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:52:11:52:121 | "SELECT ... lue%\\"" | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:52:11:52:121 | "SELECT ... lue%\\"" | assignedToPropName | text |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:52:11:52:121 | "SELECT ... lue%\\"" | calleeImports | pg-promise |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:52:11:52:121 | "SELECT ... lue%\\"" | contextFunctionInterfaces | cnd(t) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:52:11:52:121 | "SELECT ... lue%\\"" | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:52:11:52:121 | "SELECT ... lue%\\"" | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db task cnd t t one query t t one query |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:52:11:52:121 | "SELECT ... lue%\\"" | enclosingFunctionName | get#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:52:11:52:121 | "SELECT ... lue%\\"" | fileImports | express pg-promise |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:52:11:52:121 | "SELECT ... lue%\\"" | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:52:11:52:121 | "SELECT ... lue%\\"" | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:53:13:57:5 | {\\n      ... e\\n    } | CalleeFlexibleAccessPath | db.one |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:53:13:57:5 | {\\n      ... e\\n    } | InputAccessPathFromCallee | 0.values |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:53:13:57:5 | {\\n      ... e\\n    } | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:53:13:57:5 | {\\n      ... e\\n    } | assignedToPropName | values |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:53:13:57:5 | {\\n      ... e\\n    } | calleeImports | pg-promise |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:53:13:57:5 | {\\n      ... e\\n    } | contextFunctionInterfaces | cnd(t) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:53:13:57:5 | {\\n      ... e\\n    } | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:53:13:57:5 | {\\n      ... e\\n    } | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db task cnd t t one query t t one query |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:53:13:57:5 | {\\n      ... e\\n    } | enclosingFunctionName | get#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:53:13:57:5 | {\\n      ... e\\n    } | fileImports | express pg-promise |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:53:13:57:5 | {\\n      ... e\\n    } | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:53:13:57:5 | {\\n      ... e\\n    } | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:54:11:54:23 | req.params.id | CalleeFlexibleAccessPath | db.one |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:54:11:54:23 | req.params.id | InputAccessPathFromCallee | 0.values.id |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:54:11:54:23 | req.params.id | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:54:11:54:23 | req.params.id | assignedToPropName | id |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:54:11:54:23 | req.params.id | calleeImports | pg-promise |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:54:11:54:23 | req.params.id | contextFunctionInterfaces | cnd(t) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:54:11:54:23 | req.params.id | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:54:11:54:23 | req.params.id | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db task cnd t t one query t t one query |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:54:11:54:23 | req.params.id | enclosingFunctionName | get#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:54:11:54:23 | req.params.id | fileImports | express pg-promise |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:54:11:54:23 | req.params.id | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:54:11:54:23 | req.params.id | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:55:13:55:27 | req.params.name | CalleeFlexibleAccessPath | db.one |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:55:13:55:27 | req.params.name | InputAccessPathFromCallee | 0.values.name |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:55:13:55:27 | req.params.name | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:55:13:55:27 | req.params.name | assignedToPropName | name |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:55:13:55:27 | req.params.name | calleeImports | pg-promise |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:55:13:55:27 | req.params.name | contextFunctionInterfaces | cnd(t) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:55:13:55:27 | req.params.name | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:55:13:55:27 | req.params.name | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db task cnd t t one query t t one query |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:55:13:55:27 | req.params.name | enclosingFunctionName | get#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:55:13:55:27 | req.params.name | fileImports | express pg-promise |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:55:13:55:27 | req.params.name | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:55:13:55:27 | req.params.name | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:56:14:56:29 | req.params.title | CalleeFlexibleAccessPath | db.one |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:56:14:56:29 | req.params.title | InputAccessPathFromCallee | 0.values.title |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:56:14:56:29 | req.params.title | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:56:14:56:29 | req.params.title | assignedToPropName | title |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:56:14:56:29 | req.params.title | calleeImports | pg-promise |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:56:14:56:29 | req.params.title | contextFunctionInterfaces | cnd(t) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:56:14:56:29 | req.params.title | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:56:14:56:29 | req.params.title | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db task cnd t t one query t t one query |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:56:14:56:29 | req.params.title | enclosingFunctionName | get#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:56:14:56:29 | req.params.title | fileImports | express pg-promise |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:56:14:56:29 | req.params.title | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:56:14:56:29 | req.params.title | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:59:11:61:3 | t => {\\n ...  OK\\n  } | CalleeFlexibleAccessPath | db.task |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:59:11:61:3 | t => {\\n ...  OK\\n  } | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:59:11:61:3 | t => {\\n ...  OK\\n  } | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:59:11:61:3 | t => {\\n ...  OK\\n  } | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:59:11:61:3 | t => {\\n ...  OK\\n  } | calleeImports | pg-promise |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:59:11:61:3 | t => {\\n ...  OK\\n  } | contextFunctionInterfaces | cnd(t) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:59:11:61:3 | t => {\\n ...  OK\\n  } | contextSurroundingFunctionParameters | (req, res)\n(t) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:59:11:61:3 | t => {\\n ...  OK\\n  } | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db task cnd t t one query t t one query |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:59:11:61:3 | t => {\\n ...  OK\\n  } | enclosingFunctionName | get#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:59:11:61:3 | t => {\\n ...  OK\\n  } | fileImports | express pg-promise |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:59:11:61:3 | t => {\\n ...  OK\\n  } | receiverName | db |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:59:11:61:3 | t => {\\n ...  OK\\n  } | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:60:20:60:24 | query | CalleeFlexibleAccessPath | t.one |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:60:20:60:24 | query | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:60:20:60:24 | query | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:60:20:60:24 | query | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:60:20:60:24 | query | calleeImports |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:60:20:60:24 | query | contextFunctionInterfaces | cnd(t) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:60:20:60:24 | query | contextSurroundingFunctionParameters | (req, res)\n(t) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:60:20:60:24 | query | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db task cnd t t one query t t one query |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:60:20:60:24 | query | enclosingFunctionName | get#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:60:20:60:24 | query | fileImports | express pg-promise |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:60:20:60:24 | query | receiverName | t |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:60:20:60:24 | query | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:63:5:63:30 | { cnd:  ... uery) } | CalleeFlexibleAccessPath | db.task |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:63:5:63:30 | { cnd:  ... uery) } | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:63:5:63:30 | { cnd:  ... uery) } | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:63:5:63:30 | { cnd:  ... uery) } | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:63:5:63:30 | { cnd:  ... uery) } | calleeImports | pg-promise |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:63:5:63:30 | { cnd:  ... uery) } | contextFunctionInterfaces | cnd(t) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:63:5:63:30 | { cnd:  ... uery) } | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:63:5:63:30 | { cnd:  ... uery) } | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db task cnd t t one query t t one query |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:63:5:63:30 | { cnd:  ... uery) } | enclosingFunctionName | get#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:63:5:63:30 | { cnd:  ... uery) } | fileImports | express pg-promise |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:63:5:63:30 | { cnd:  ... uery) } | receiverName | db |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:63:5:63:30 | { cnd:  ... uery) } | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:63:12:63:28 | t => t.one(query) | CalleeFlexibleAccessPath | db.task |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:63:12:63:28 | t => t.one(query) | InputAccessPathFromCallee | 0.cnd |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:63:12:63:28 | t => t.one(query) | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:63:12:63:28 | t => t.one(query) | assignedToPropName | cnd |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:63:12:63:28 | t => t.one(query) | calleeImports | pg-promise |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:63:12:63:28 | t => t.one(query) | contextFunctionInterfaces | cnd(t) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:63:12:63:28 | t => t.one(query) | contextSurroundingFunctionParameters | (req, res)\n(t) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:63:12:63:28 | t => t.one(query) | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db task cnd t t one query t t one query |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:63:12:63:28 | t => t.one(query) | enclosingFunctionName | get#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:63:12:63:28 | t => t.one(query) | fileImports | express pg-promise |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:63:12:63:28 | t => t.one(query) | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:63:12:63:28 | t => t.one(query) | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:63:23:63:27 | query | CalleeFlexibleAccessPath | t.one |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:63:23:63:27 | query | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:63:23:63:27 | query | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:63:23:63:27 | query | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:63:23:63:27 | query | calleeImports |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:63:23:63:27 | query | contextFunctionInterfaces | cnd(t) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:63:23:63:27 | query | contextSurroundingFunctionParameters | (req, res)\n(t) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:63:23:63:27 | query | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db task cnd t t one query t t one query |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:63:23:63:27 | query | enclosingFunctionName | get#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:63:23:63:27 | query | fileImports | express pg-promise |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:63:23:63:27 | query | receiverName | t |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:63:23:63:27 | query | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:64:5:64:21 | t => t.one(query) | CalleeFlexibleAccessPath | db.task |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:64:5:64:21 | t => t.one(query) | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:64:5:64:21 | t => t.one(query) | InputArgumentIndex | 1 |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:64:5:64:21 | t => t.one(query) | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:64:5:64:21 | t => t.one(query) | calleeImports | pg-promise |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:64:5:64:21 | t => t.one(query) | contextFunctionInterfaces | cnd(t) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:64:5:64:21 | t => t.one(query) | contextSurroundingFunctionParameters | (req, res)\n(t) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:64:5:64:21 | t => t.one(query) | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db task cnd t t one query t t one query |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:64:5:64:21 | t => t.one(query) | enclosingFunctionName | get#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:64:5:64:21 | t => t.one(query) | fileImports | express pg-promise |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:64:5:64:21 | t => t.one(query) | receiverName | db |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:64:5:64:21 | t => t.one(query) | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:64:16:64:20 | query | CalleeFlexibleAccessPath | t.one |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:64:16:64:20 | query | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:64:16:64:20 | query | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:64:16:64:20 | query | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:64:16:64:20 | query | calleeImports |  |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:64:16:64:20 | query | contextFunctionInterfaces | cnd(t) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:64:16:64:20 | query | contextSurroundingFunctionParameters | (req, res)\n(t) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:64:16:64:20 | query | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db task cnd t t one query t t one query |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:64:16:64:20 | query | enclosingFunctionName | get#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:64:16:64:20 | query | fileImports | express pg-promise |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:64:16:64:20 | query | receiverName | t |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:64:16:64:20 | query | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:2:23:2:29 | "redis" | CalleeFlexibleAccessPath | require |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:2:23:2:29 | "redis" | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:2:23:2:29 | "redis" | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:2:23:2:29 | "redis" | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:2:23:2:29 | "redis" | calleeImports |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:2:23:2:29 | "redis" | contextFunctionInterfaces |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:2:23:2:29 | "redis" | contextSurroundingFunctionParameters |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:2:23:2:29 | "redis" | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:2:23:2:29 | "redis" | enclosingFunctionName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:2:23:2:29 | "redis" | fileImports | body-parser express redis util |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:2:23:2:29 | "redis" | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:2:23:2:29 | "redis" | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:5:25:5:33 | 'express' | CalleeFlexibleAccessPath | require |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:5:25:5:33 | 'express' | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:5:25:5:33 | 'express' | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:5:25:5:33 | 'express' | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:5:25:5:33 | 'express' | calleeImports |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:5:25:5:33 | 'express' | contextFunctionInterfaces |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:5:25:5:33 | 'express' | contextSurroundingFunctionParameters |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:5:25:5:33 | 'express' | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:5:25:5:33 | 'express' | enclosingFunctionName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:5:25:5:33 | 'express' | fileImports | body-parser express redis util |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:5:25:5:33 | 'express' | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:5:25:5:33 | 'express' | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:7:9:7:37 | require ... .json() | CalleeFlexibleAccessPath | app.use |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:7:9:7:37 | require ... .json() | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:7:9:7:37 | require ... .json() | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:7:9:7:37 | require ... .json() | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:7:9:7:37 | require ... .json() | calleeImports | express |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:7:9:7:37 | require ... .json() | contextFunctionInterfaces |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:7:9:7:37 | require ... .json() | contextSurroundingFunctionParameters |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:7:9:7:37 | require ... .json() | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:7:9:7:37 | require ... .json() | enclosingFunctionName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:7:9:7:37 | require ... .json() | fileImports | body-parser express redis util |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:7:9:7:37 | require ... .json() | receiverName | app |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:7:9:7:37 | require ... .json() | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:7:17:7:29 | 'body-parser' | CalleeFlexibleAccessPath | require |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:7:17:7:29 | 'body-parser' | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:7:17:7:29 | 'body-parser' | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:7:17:7:29 | 'body-parser' | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:7:17:7:29 | 'body-parser' | calleeImports |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:7:17:7:29 | 'body-parser' | contextFunctionInterfaces |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:7:17:7:29 | 'body-parser' | contextSurroundingFunctionParameters |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:7:17:7:29 | 'body-parser' | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:7:17:7:29 | 'body-parser' | enclosingFunctionName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:7:17:7:29 | 'body-parser' | fileImports | body-parser express redis util |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:7:17:7:29 | 'body-parser' | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:7:17:7:29 | 'body-parser' | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:9:10:9:26 | '/documents/find' | CalleeFlexibleAccessPath | app.post |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:9:10:9:26 | '/documents/find' | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:9:10:9:26 | '/documents/find' | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:9:10:9:26 | '/documents/find' | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:9:10:9:26 | '/documents/find' | calleeImports | express |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:9:10:9:26 | '/documents/find' | contextFunctionInterfaces |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:9:10:9:26 | '/documents/find' | contextSurroundingFunctionParameters |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:9:10:9:26 | '/documents/find' | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:9:10:9:26 | '/documents/find' | enclosingFunctionName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:9:10:9:26 | '/documents/find' | fileImports | body-parser express redis util |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:9:10:9:26 | '/documents/find' | receiverName | app |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:9:10:9:26 | '/documents/find' | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:9:29:33:1 | (req, r ... OT OK\\n} | CalleeFlexibleAccessPath | app.post |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:9:29:33:1 | (req, r ... OT OK\\n} | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:9:29:33:1 | (req, r ... OT OK\\n} | InputArgumentIndex | 1 |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:9:29:33:1 | (req, r ... OT OK\\n} | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:9:29:33:1 | (req, r ... OT OK\\n} | calleeImports | express |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:9:29:33:1 | (req, r ... OT OK\\n} | contextFunctionInterfaces |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:9:29:33:1 | (req, r ... OT OK\\n} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:9:29:33:1 | (req, r ... OT OK\\n} | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:9:29:33:1 | (req, r ... OT OK\\n} | enclosingFunctionName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:9:29:33:1 | (req, r ... OT OK\\n} | fileImports | body-parser express redis util |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:9:29:33:1 | (req, r ... OT OK\\n} | receiverName | app |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:9:29:33:1 | (req, r ... OT OK\\n} | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:10:16:10:27 | req.body.key | CalleeFlexibleAccessPath | client.set |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:10:16:10:27 | req.body.key | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:10:16:10:27 | req.body.key | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:10:16:10:27 | req.body.key | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:10:16:10:27 | req.body.key | calleeImports | redis |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:10:16:10:27 | req.body.key | contextFunctionInterfaces |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:10:16:10:27 | req.body.key | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:10:16:10:27 | req.body.key | enclosingFunctionBody | req res client set req body key value key req body key key string client set key value client set key value client set key value client hmset key field value key value2 client multi set constant value set key value get key exec err replies client duplicate err newClient newClient set key value client duplicate set key value |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:10:16:10:27 | req.body.key | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:10:16:10:27 | req.body.key | fileImports | body-parser express redis util |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:10:16:10:27 | req.body.key | receiverName | client |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:10:16:10:27 | req.body.key | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:10:30:10:36 | "value" | CalleeFlexibleAccessPath | client.set |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:10:30:10:36 | "value" | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:10:30:10:36 | "value" | InputArgumentIndex | 1 |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:10:30:10:36 | "value" | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:10:30:10:36 | "value" | calleeImports | redis |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:10:30:10:36 | "value" | contextFunctionInterfaces |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:10:30:10:36 | "value" | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:10:30:10:36 | "value" | enclosingFunctionBody | req res client set req body key value key req body key key string client set key value client set key value client set key value client hmset key field value key value2 client multi set constant value set key value get key exec err replies client duplicate err newClient newClient set key value client duplicate set key value |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:10:30:10:36 | "value" | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:10:30:10:36 | "value" | fileImports | body-parser express redis util |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:10:30:10:36 | "value" | receiverName | client |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:10:30:10:36 | "value" | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:14:20:14:22 | key | CalleeFlexibleAccessPath | client.set |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:14:20:14:22 | key | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:14:20:14:22 | key | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:14:20:14:22 | key | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:14:20:14:22 | key | calleeImports | redis |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:14:20:14:22 | key | contextFunctionInterfaces |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:14:20:14:22 | key | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:14:20:14:22 | key | enclosingFunctionBody | req res client set req body key value key req body key key string client set key value client set key value client set key value client hmset key field value key value2 client multi set constant value set key value get key exec err replies client duplicate err newClient newClient set key value client duplicate set key value |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:14:20:14:22 | key | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:14:20:14:22 | key | fileImports | body-parser express redis util |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:14:20:14:22 | key | receiverName | client |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:14:20:14:22 | key | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:14:25:14:31 | "value" | CalleeFlexibleAccessPath | client.set |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:14:25:14:31 | "value" | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:14:25:14:31 | "value" | InputArgumentIndex | 1 |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:14:25:14:31 | "value" | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:14:25:14:31 | "value" | calleeImports | redis |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:14:25:14:31 | "value" | contextFunctionInterfaces |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:14:25:14:31 | "value" | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:14:25:14:31 | "value" | enclosingFunctionBody | req res client set req body key value key req body key key string client set key value client set key value client set key value client hmset key field value key value2 client multi set constant value set key value get key exec err replies client duplicate err newClient newClient set key value client duplicate set key value |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:14:25:14:31 | "value" | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:14:25:14:31 | "value" | fileImports | body-parser express redis util |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:14:25:14:31 | "value" | receiverName | client |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:14:25:14:31 | "value" | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:15:20:15:35 | ["key", "value"] | CalleeFlexibleAccessPath | client.set |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:15:20:15:35 | ["key", "value"] | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:15:20:15:35 | ["key", "value"] | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:15:20:15:35 | ["key", "value"] | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:15:20:15:35 | ["key", "value"] | calleeImports | redis |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:15:20:15:35 | ["key", "value"] | contextFunctionInterfaces |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:15:20:15:35 | ["key", "value"] | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:15:20:15:35 | ["key", "value"] | enclosingFunctionBody | req res client set req body key value key req body key key string client set key value client set key value client set key value client hmset key field value key value2 client multi set constant value set key value get key exec err replies client duplicate err newClient newClient set key value client duplicate set key value |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:15:20:15:35 | ["key", "value"] | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:15:20:15:35 | ["key", "value"] | fileImports | body-parser express redis util |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:15:20:15:35 | ["key", "value"] | receiverName | client |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:15:20:15:35 | ["key", "value"] | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:15:21:15:25 | "key" | CalleeFlexibleAccessPath |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:15:21:15:25 | "key" | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:15:21:15:25 | "key" | InputArgumentIndex |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:15:21:15:25 | "key" | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:15:21:15:25 | "key" | calleeImports |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:15:21:15:25 | "key" | contextFunctionInterfaces |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:15:21:15:25 | "key" | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:15:21:15:25 | "key" | enclosingFunctionBody | req res client set req body key value key req body key key string client set key value client set key value client set key value client hmset key field value key value2 client multi set constant value set key value get key exec err replies client duplicate err newClient newClient set key value client duplicate set key value |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:15:21:15:25 | "key" | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:15:21:15:25 | "key" | fileImports | body-parser express redis util |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:15:21:15:25 | "key" | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:15:21:15:25 | "key" | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:15:28:15:34 | "value" | CalleeFlexibleAccessPath |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:15:28:15:34 | "value" | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:15:28:15:34 | "value" | InputArgumentIndex |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:15:28:15:34 | "value" | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:15:28:15:34 | "value" | calleeImports |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:15:28:15:34 | "value" | contextFunctionInterfaces |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:15:28:15:34 | "value" | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:15:28:15:34 | "value" | enclosingFunctionBody | req res client set req body key value key req body key key string client set key value client set key value client set key value client hmset key field value key value2 client multi set constant value set key value get key exec err replies client duplicate err newClient newClient set key value client duplicate set key value |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:15:28:15:34 | "value" | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:15:28:15:34 | "value" | fileImports | body-parser express redis util |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:15:28:15:34 | "value" | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:15:28:15:34 | "value" | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:18:16:18:18 | key | CalleeFlexibleAccessPath | client.set |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:18:16:18:18 | key | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:18:16:18:18 | key | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:18:16:18:18 | key | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:18:16:18:18 | key | calleeImports | redis |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:18:16:18:18 | key | contextFunctionInterfaces |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:18:16:18:18 | key | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:18:16:18:18 | key | enclosingFunctionBody | req res client set req body key value key req body key key string client set key value client set key value client set key value client hmset key field value key value2 client multi set constant value set key value get key exec err replies client duplicate err newClient newClient set key value client duplicate set key value |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:18:16:18:18 | key | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:18:16:18:18 | key | fileImports | body-parser express redis util |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:18:16:18:18 | key | receiverName | client |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:18:16:18:18 | key | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:18:21:18:27 | "value" | CalleeFlexibleAccessPath | client.set |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:18:21:18:27 | "value" | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:18:21:18:27 | "value" | InputArgumentIndex | 1 |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:18:21:18:27 | "value" | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:18:21:18:27 | "value" | calleeImports | redis |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:18:21:18:27 | "value" | contextFunctionInterfaces |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:18:21:18:27 | "value" | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:18:21:18:27 | "value" | enclosingFunctionBody | req res client set req body key value key req body key key string client set key value client set key value client set key value client hmset key field value key value2 client multi set constant value set key value get key exec err replies client duplicate err newClient newClient set key value client duplicate set key value |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:18:21:18:27 | "value" | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:18:21:18:27 | "value" | fileImports | body-parser express redis util |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:18:21:18:27 | "value" | receiverName | client |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:18:21:18:27 | "value" | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:19:18:19:22 | "key" | CalleeFlexibleAccessPath | client.hmset |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:19:18:19:22 | "key" | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:19:18:19:22 | "key" | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:19:18:19:22 | "key" | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:19:18:19:22 | "key" | calleeImports | redis |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:19:18:19:22 | "key" | contextFunctionInterfaces |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:19:18:19:22 | "key" | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:19:18:19:22 | "key" | enclosingFunctionBody | req res client set req body key value key req body key key string client set key value client set key value client set key value client hmset key field value key value2 client multi set constant value set key value get key exec err replies client duplicate err newClient newClient set key value client duplicate set key value |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:19:18:19:22 | "key" | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:19:18:19:22 | "key" | fileImports | body-parser express redis util |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:19:18:19:22 | "key" | receiverName | client |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:19:18:19:22 | "key" | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:19:25:19:31 | "field" | CalleeFlexibleAccessPath | client.hmset |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:19:25:19:31 | "field" | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:19:25:19:31 | "field" | InputArgumentIndex | 1 |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:19:25:19:31 | "field" | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:19:25:19:31 | "field" | calleeImports | redis |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:19:25:19:31 | "field" | contextFunctionInterfaces |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:19:25:19:31 | "field" | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:19:25:19:31 | "field" | enclosingFunctionBody | req res client set req body key value key req body key key string client set key value client set key value client set key value client hmset key field value key value2 client multi set constant value set key value get key exec err replies client duplicate err newClient newClient set key value client duplicate set key value |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:19:25:19:31 | "field" | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:19:25:19:31 | "field" | fileImports | body-parser express redis util |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:19:25:19:31 | "field" | receiverName | client |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:19:25:19:31 | "field" | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:19:34:19:40 | "value" | CalleeFlexibleAccessPath | client.hmset |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:19:34:19:40 | "value" | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:19:34:19:40 | "value" | InputArgumentIndex | 2 |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:19:34:19:40 | "value" | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:19:34:19:40 | "value" | calleeImports | redis |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:19:34:19:40 | "value" | contextFunctionInterfaces |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:19:34:19:40 | "value" | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:19:34:19:40 | "value" | enclosingFunctionBody | req res client set req body key value key req body key key string client set key value client set key value client set key value client hmset key field value key value2 client multi set constant value set key value get key exec err replies client duplicate err newClient newClient set key value client duplicate set key value |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:19:34:19:40 | "value" | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:19:34:19:40 | "value" | fileImports | body-parser express redis util |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:19:34:19:40 | "value" | receiverName | client |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:19:34:19:40 | "value" | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:19:43:19:45 | key | CalleeFlexibleAccessPath | client.hmset |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:19:43:19:45 | key | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:19:43:19:45 | key | InputArgumentIndex | 3 |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:19:43:19:45 | key | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:19:43:19:45 | key | calleeImports | redis |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:19:43:19:45 | key | contextFunctionInterfaces |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:19:43:19:45 | key | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:19:43:19:45 | key | enclosingFunctionBody | req res client set req body key value key req body key key string client set key value client set key value client set key value client hmset key field value key value2 client multi set constant value set key value get key exec err replies client duplicate err newClient newClient set key value client duplicate set key value |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:19:43:19:45 | key | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:19:43:19:45 | key | fileImports | body-parser express redis util |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:19:43:19:45 | key | receiverName | client |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:19:43:19:45 | key | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:19:48:19:55 | "value2" | CalleeFlexibleAccessPath | client.hmset |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:19:48:19:55 | "value2" | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:19:48:19:55 | "value2" | InputArgumentIndex | 4 |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:19:48:19:55 | "value2" | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:19:48:19:55 | "value2" | calleeImports | redis |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:19:48:19:55 | "value2" | contextFunctionInterfaces |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:19:48:19:55 | "value2" | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:19:48:19:55 | "value2" | enclosingFunctionBody | req res client set req body key value key req body key key string client set key value client set key value client set key value client hmset key field value key value2 client multi set constant value set key value get key exec err replies client duplicate err newClient newClient set key value client duplicate set key value |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:19:48:19:55 | "value2" | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:19:48:19:55 | "value2" | fileImports | body-parser express redis util |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:19:48:19:55 | "value2" | receiverName | client |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:19:48:19:55 | "value2" | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:24:14:24:23 | "constant" | CalleeFlexibleAccessPath | client.multi().set |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:24:14:24:23 | "constant" | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:24:14:24:23 | "constant" | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:24:14:24:23 | "constant" | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:24:14:24:23 | "constant" | calleeImports | redis |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:24:14:24:23 | "constant" | contextFunctionInterfaces |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:24:14:24:23 | "constant" | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:24:14:24:23 | "constant" | enclosingFunctionBody | req res client set req body key value key req body key key string client set key value client set key value client set key value client hmset key field value key value2 client multi set constant value set key value get key exec err replies client duplicate err newClient newClient set key value client duplicate set key value |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:24:14:24:23 | "constant" | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:24:14:24:23 | "constant" | fileImports | body-parser express redis util |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:24:14:24:23 | "constant" | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:24:14:24:23 | "constant" | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:24:26:24:32 | "value" | CalleeFlexibleAccessPath | client.multi().set |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:24:26:24:32 | "value" | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:24:26:24:32 | "value" | InputArgumentIndex | 1 |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:24:26:24:32 | "value" | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:24:26:24:32 | "value" | calleeImports | redis |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:24:26:24:32 | "value" | contextFunctionInterfaces |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:24:26:24:32 | "value" | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:24:26:24:32 | "value" | enclosingFunctionBody | req res client set req body key value key req body key key string client set key value client set key value client set key value client hmset key field value key value2 client multi set constant value set key value get key exec err replies client duplicate err newClient newClient set key value client duplicate set key value |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:24:26:24:32 | "value" | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:24:26:24:32 | "value" | fileImports | body-parser express redis util |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:24:26:24:32 | "value" | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:24:26:24:32 | "value" | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:25:14:25:16 | key | CalleeFlexibleAccessPath | client.multi().set().set |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:25:14:25:16 | key | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:25:14:25:16 | key | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:25:14:25:16 | key | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:25:14:25:16 | key | calleeImports | redis |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:25:14:25:16 | key | contextFunctionInterfaces |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:25:14:25:16 | key | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:25:14:25:16 | key | enclosingFunctionBody | req res client set req body key value key req body key key string client set key value client set key value client set key value client hmset key field value key value2 client multi set constant value set key value get key exec err replies client duplicate err newClient newClient set key value client duplicate set key value |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:25:14:25:16 | key | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:25:14:25:16 | key | fileImports | body-parser express redis util |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:25:14:25:16 | key | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:25:14:25:16 | key | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:25:19:25:25 | "value" | CalleeFlexibleAccessPath | client.multi().set().set |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:25:19:25:25 | "value" | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:25:19:25:25 | "value" | InputArgumentIndex | 1 |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:25:19:25:25 | "value" | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:25:19:25:25 | "value" | calleeImports | redis |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:25:19:25:25 | "value" | contextFunctionInterfaces |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:25:19:25:25 | "value" | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:25:19:25:25 | "value" | enclosingFunctionBody | req res client set req body key value key req body key key string client set key value client set key value client set key value client hmset key field value key value2 client multi set constant value set key value get key exec err replies client duplicate err newClient newClient set key value client duplicate set key value |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:25:19:25:25 | "value" | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:25:19:25:25 | "value" | fileImports | body-parser express redis util |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:25:19:25:25 | "value" | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:25:19:25:25 | "value" | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:26:14:26:16 | key | CalleeFlexibleAccessPath | client.multi().set().set().get |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:26:14:26:16 | key | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:26:14:26:16 | key | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:26:14:26:16 | key | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:26:14:26:16 | key | calleeImports | redis |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:26:14:26:16 | key | contextFunctionInterfaces |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:26:14:26:16 | key | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:26:14:26:16 | key | enclosingFunctionBody | req res client set req body key value key req body key key string client set key value client set key value client set key value client hmset key field value key value2 client multi set constant value set key value get key exec err replies client duplicate err newClient newClient set key value client duplicate set key value |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:26:14:26:16 | key | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:26:14:26:16 | key | fileImports | body-parser express redis util |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:26:14:26:16 | key | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:26:14:26:16 | key | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:27:15:27:41 | functio ... es) { } | CalleeFlexibleAccessPath | client.multi().set().set().get().exec |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:27:15:27:41 | functio ... es) { } | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:27:15:27:41 | functio ... es) { } | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:27:15:27:41 | functio ... es) { } | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:27:15:27:41 | functio ... es) { } | calleeImports | redis |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:27:15:27:41 | functio ... es) { } | contextFunctionInterfaces |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:27:15:27:41 | functio ... es) { } | contextSurroundingFunctionParameters | (req, res)\n(err, replies) |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:27:15:27:41 | functio ... es) { } | enclosingFunctionBody | req res client set req body key value key req body key key string client set key value client set key value client set key value client hmset key field value key value2 client multi set constant value set key value get key exec err replies client duplicate err newClient newClient set key value client duplicate set key value |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:27:15:27:41 | functio ... es) { } | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:27:15:27:41 | functio ... es) { } | fileImports | body-parser express redis util |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:27:15:27:41 | functio ... es) { } | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:27:15:27:41 | functio ... es) { } | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:29:22:31:5 | (err, n ... K\\n    } | CalleeFlexibleAccessPath | client.duplicate |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:29:22:31:5 | (err, n ... K\\n    } | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:29:22:31:5 | (err, n ... K\\n    } | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:29:22:31:5 | (err, n ... K\\n    } | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:29:22:31:5 | (err, n ... K\\n    } | calleeImports | redis |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:29:22:31:5 | (err, n ... K\\n    } | contextFunctionInterfaces |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:29:22:31:5 | (err, n ... K\\n    } | contextSurroundingFunctionParameters | (req, res)\n(err, newClient) |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:29:22:31:5 | (err, n ... K\\n    } | enclosingFunctionBody | req res client set req body key value key req body key key string client set key value client set key value client set key value client hmset key field value key value2 client multi set constant value set key value get key exec err replies client duplicate err newClient newClient set key value client duplicate set key value |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:29:22:31:5 | (err, n ... K\\n    } | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:29:22:31:5 | (err, n ... K\\n    } | fileImports | body-parser express redis util |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:29:22:31:5 | (err, n ... K\\n    } | receiverName | client |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:29:22:31:5 | (err, n ... K\\n    } | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:30:23:30:25 | key | CalleeFlexibleAccessPath | newClient.set |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:30:23:30:25 | key | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:30:23:30:25 | key | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:30:23:30:25 | key | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:30:23:30:25 | key | calleeImports |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:30:23:30:25 | key | contextFunctionInterfaces |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:30:23:30:25 | key | contextSurroundingFunctionParameters | (req, res)\n(err, newClient) |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:30:23:30:25 | key | enclosingFunctionBody | req res client set req body key value key req body key key string client set key value client set key value client set key value client hmset key field value key value2 client multi set constant value set key value get key exec err replies client duplicate err newClient newClient set key value client duplicate set key value |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:30:23:30:25 | key | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:30:23:30:25 | key | fileImports | body-parser express redis util |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:30:23:30:25 | key | receiverName | newClient |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:30:23:30:25 | key | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:30:28:30:34 | "value" | CalleeFlexibleAccessPath | newClient.set |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:30:28:30:34 | "value" | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:30:28:30:34 | "value" | InputArgumentIndex | 1 |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:30:28:30:34 | "value" | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:30:28:30:34 | "value" | calleeImports |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:30:28:30:34 | "value" | contextFunctionInterfaces |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:30:28:30:34 | "value" | contextSurroundingFunctionParameters | (req, res)\n(err, newClient) |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:30:28:30:34 | "value" | enclosingFunctionBody | req res client set req body key value key req body key key string client set key value client set key value client set key value client hmset key field value key value2 client multi set constant value set key value get key exec err replies client duplicate err newClient newClient set key value client duplicate set key value |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:30:28:30:34 | "value" | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:30:28:30:34 | "value" | fileImports | body-parser express redis util |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:30:28:30:34 | "value" | receiverName | newClient |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:30:28:30:34 | "value" | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:32:28:32:30 | key | CalleeFlexibleAccessPath | client.duplicate().set |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:32:28:32:30 | key | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:32:28:32:30 | key | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:32:28:32:30 | key | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:32:28:32:30 | key | calleeImports | redis |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:32:28:32:30 | key | contextFunctionInterfaces |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:32:28:32:30 | key | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:32:28:32:30 | key | enclosingFunctionBody | req res client set req body key value key req body key key string client set key value client set key value client set key value client hmset key field value key value2 client multi set constant value set key value get key exec err replies client duplicate err newClient newClient set key value client duplicate set key value |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:32:28:32:30 | key | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:32:28:32:30 | key | fileImports | body-parser express redis util |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:32:28:32:30 | key | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:32:28:32:30 | key | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:32:33:32:39 | "value" | CalleeFlexibleAccessPath | client.duplicate().set |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:32:33:32:39 | "value" | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:32:33:32:39 | "value" | InputArgumentIndex | 1 |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:32:33:32:39 | "value" | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:32:33:32:39 | "value" | calleeImports | redis |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:32:33:32:39 | "value" | contextFunctionInterfaces |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:32:33:32:39 | "value" | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:32:33:32:39 | "value" | enclosingFunctionBody | req res client set req body key value key req body key key string client set key value client set key value client set key value client hmset key field value key value2 client multi set constant value set key value get key exec err replies client duplicate err newClient newClient set key value client duplicate set key value |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:32:33:32:39 | "value" | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:32:33:32:39 | "value" | fileImports | body-parser express redis util |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:32:33:32:39 | "value" | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:32:33:32:39 | "value" | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:37:10:37:26 | '/documents/find' | CalleeFlexibleAccessPath | app.post |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:37:10:37:26 | '/documents/find' | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:37:10:37:26 | '/documents/find' | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:37:10:37:26 | '/documents/find' | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:37:10:37:26 | '/documents/find' | calleeImports | express |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:37:10:37:26 | '/documents/find' | contextFunctionInterfaces |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:37:10:37:26 | '/documents/find' | contextSurroundingFunctionParameters |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:37:10:37:26 | '/documents/find' | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:37:10:37:26 | '/documents/find' | enclosingFunctionName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:37:10:37:26 | '/documents/find' | fileImports | body-parser express redis util |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:37:10:37:26 | '/documents/find' | receiverName | app |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:37:10:37:26 | '/documents/find' | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:37:29:53:1 | (req, r ... // OK\\n} | CalleeFlexibleAccessPath | app.post |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:37:29:53:1 | (req, r ... // OK\\n} | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:37:29:53:1 | (req, r ... // OK\\n} | InputArgumentIndex | 1 |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:37:29:53:1 | (req, r ... // OK\\n} | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:37:29:53:1 | (req, r ... // OK\\n} | calleeImports | express |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:37:29:53:1 | (req, r ... // OK\\n} | contextFunctionInterfaces |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:37:29:53:1 | (req, r ... // OK\\n} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:37:29:53:1 | (req, r ... // OK\\n} | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:37:29:53:1 | (req, r ... // OK\\n} | enclosingFunctionName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:37:29:53:1 | (req, r ... // OK\\n} | fileImports | body-parser express redis util |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:37:29:53:1 | (req, r ... // OK\\n} | receiverName | app |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:37:29:53:1 | (req, r ... // OK\\n} | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:39:16:39:18 | key | CalleeFlexibleAccessPath | client.set |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:39:16:39:18 | key | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:39:16:39:18 | key | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:39:16:39:18 | key | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:39:16:39:18 | key | calleeImports | redis |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:39:16:39:18 | key | contextFunctionInterfaces |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:39:16:39:18 | key | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:39:16:39:18 | key | enclosingFunctionBody | req res key req body key client set key value setAsync promisify client set bind client foo1 setAsync key value client setAsync promisify client set foo2 client setAsync key value client unrelated promisify foo3 client unrelated key value unrelated promisify client foobar bind client foo4 unrelated key value |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:39:16:39:18 | key | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:39:16:39:18 | key | fileImports | body-parser express redis util |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:39:16:39:18 | key | receiverName | client |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:39:16:39:18 | key | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:39:21:39:27 | "value" | CalleeFlexibleAccessPath | client.set |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:39:21:39:27 | "value" | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:39:21:39:27 | "value" | InputArgumentIndex | 1 |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:39:21:39:27 | "value" | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:39:21:39:27 | "value" | calleeImports | redis |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:39:21:39:27 | "value" | contextFunctionInterfaces |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:39:21:39:27 | "value" | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:39:21:39:27 | "value" | enclosingFunctionBody | req res key req body key client set key value setAsync promisify client set bind client foo1 setAsync key value client setAsync promisify client set foo2 client setAsync key value client unrelated promisify foo3 client unrelated key value unrelated promisify client foobar bind client foo4 unrelated key value |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:39:21:39:27 | "value" | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:39:21:39:27 | "value" | fileImports | body-parser express redis util |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:39:21:39:27 | "value" | receiverName | client |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:39:21:39:27 | "value" | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:41:32:41:41 | client.set | CalleeFlexibleAccessPath | promisify |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:41:32:41:41 | client.set | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:41:32:41:41 | client.set | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:41:32:41:41 | client.set | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:41:32:41:41 | client.set | calleeImports | util |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:41:32:41:41 | client.set | contextFunctionInterfaces |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:41:32:41:41 | client.set | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:41:32:41:41 | client.set | enclosingFunctionBody | req res key req body key client set key value setAsync promisify client set bind client foo1 setAsync key value client setAsync promisify client set foo2 client setAsync key value client unrelated promisify foo3 client unrelated key value unrelated promisify client foobar bind client foo4 unrelated key value |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:41:32:41:41 | client.set | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:41:32:41:41 | client.set | fileImports | body-parser express redis util |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:41:32:41:41 | client.set | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:41:32:41:41 | client.set | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:41:49:41:54 | client | CalleeFlexibleAccessPath | promisify().bind |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:41:49:41:54 | client | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:41:49:41:54 | client | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:41:49:41:54 | client | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:41:49:41:54 | client | calleeImports | util |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:41:49:41:54 | client | contextFunctionInterfaces |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:41:49:41:54 | client | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:41:49:41:54 | client | enclosingFunctionBody | req res key req body key client set key value setAsync promisify client set bind client foo1 setAsync key value client setAsync promisify client set foo2 client setAsync key value client unrelated promisify foo3 client unrelated key value unrelated promisify client foobar bind client foo4 unrelated key value |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:41:49:41:54 | client | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:41:49:41:54 | client | fileImports | body-parser express redis util |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:41:49:41:54 | client | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:41:49:41:54 | client | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:43:27:43:29 | key | CalleeFlexibleAccessPath | setAsync |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:43:27:43:29 | key | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:43:27:43:29 | key | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:43:27:43:29 | key | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:43:27:43:29 | key | calleeImports | util |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:43:27:43:29 | key | contextFunctionInterfaces |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:43:27:43:29 | key | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:43:27:43:29 | key | enclosingFunctionBody | req res key req body key client set key value setAsync promisify client set bind client foo1 setAsync key value client setAsync promisify client set foo2 client setAsync key value client unrelated promisify foo3 client unrelated key value unrelated promisify client foobar bind client foo4 unrelated key value |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:43:27:43:29 | key | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:43:27:43:29 | key | fileImports | body-parser express redis util |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:43:27:43:29 | key | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:43:27:43:29 | key | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:45:33:45:42 | client.set | CalleeFlexibleAccessPath | promisify |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:45:33:45:42 | client.set | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:45:33:45:42 | client.set | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:45:33:45:42 | client.set | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:45:33:45:42 | client.set | calleeImports | util |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:45:33:45:42 | client.set | contextFunctionInterfaces |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:45:33:45:42 | client.set | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:45:33:45:42 | client.set | enclosingFunctionBody | req res key req body key client set key value setAsync promisify client set bind client foo1 setAsync key value client setAsync promisify client set foo2 client setAsync key value client unrelated promisify foo3 client unrelated key value unrelated promisify client foobar bind client foo4 unrelated key value |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:45:33:45:42 | client.set | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:45:33:45:42 | client.set | fileImports | body-parser express redis util |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:45:33:45:42 | client.set | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:45:33:45:42 | client.set | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:46:34:46:36 | key | CalleeFlexibleAccessPath | client.setAsync |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:46:34:46:36 | key | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:46:34:46:36 | key | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:46:34:46:36 | key | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:46:34:46:36 | key | calleeImports | redis |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:46:34:46:36 | key | contextFunctionInterfaces |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:46:34:46:36 | key | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:46:34:46:36 | key | enclosingFunctionBody | req res key req body key client set key value setAsync promisify client set bind client foo1 setAsync key value client setAsync promisify client set foo2 client setAsync key value client unrelated promisify foo3 client unrelated key value unrelated promisify client foobar bind client foo4 unrelated key value |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:46:34:46:36 | key | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:46:34:46:36 | key | fileImports | body-parser express redis util |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:46:34:46:36 | key | receiverName | client |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:46:34:46:36 | key | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:46:39:46:45 | "value" | CalleeFlexibleAccessPath | client.setAsync |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:46:39:46:45 | "value" | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:46:39:46:45 | "value" | InputArgumentIndex | 1 |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:46:39:46:45 | "value" | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:46:39:46:45 | "value" | calleeImports | redis |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:46:39:46:45 | "value" | contextFunctionInterfaces |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:46:39:46:45 | "value" | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:46:39:46:45 | "value" | enclosingFunctionBody | req res key req body key client set key value setAsync promisify client set bind client foo1 setAsync key value client setAsync promisify client set foo2 client setAsync key value client unrelated promisify foo3 client unrelated key value unrelated promisify client foobar bind client foo4 unrelated key value |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:46:39:46:45 | "value" | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:46:39:46:45 | "value" | fileImports | body-parser express redis util |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:46:39:46:45 | "value" | receiverName | client |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:46:39:46:45 | "value" | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:48:34:48:41 | () => {} | CalleeFlexibleAccessPath | promisify |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:48:34:48:41 | () => {} | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:48:34:48:41 | () => {} | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:48:34:48:41 | () => {} | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:48:34:48:41 | () => {} | calleeImports | util |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:48:34:48:41 | () => {} | contextFunctionInterfaces |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:48:34:48:41 | () => {} | contextSurroundingFunctionParameters | (req, res)\n() |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:48:34:48:41 | () => {} | enclosingFunctionBody | req res key req body key client set key value setAsync promisify client set bind client foo1 setAsync key value client setAsync promisify client set foo2 client setAsync key value client unrelated promisify foo3 client unrelated key value unrelated promisify client foobar bind client foo4 unrelated key value |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:48:34:48:41 | () => {} | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:48:34:48:41 | () => {} | fileImports | body-parser express redis util |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:48:34:48:41 | () => {} | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:48:34:48:41 | () => {} | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:49:35:49:37 | key | CalleeFlexibleAccessPath | client.unrelated |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:49:35:49:37 | key | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:49:35:49:37 | key | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:49:35:49:37 | key | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:49:35:49:37 | key | calleeImports | redis |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:49:35:49:37 | key | contextFunctionInterfaces |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:49:35:49:37 | key | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:49:35:49:37 | key | enclosingFunctionBody | req res key req body key client set key value setAsync promisify client set bind client foo1 setAsync key value client setAsync promisify client set foo2 client setAsync key value client unrelated promisify foo3 client unrelated key value unrelated promisify client foobar bind client foo4 unrelated key value |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:49:35:49:37 | key | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:49:35:49:37 | key | fileImports | body-parser express redis util |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:49:35:49:37 | key | receiverName | client |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:49:35:49:37 | key | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:49:40:49:46 | "value" | CalleeFlexibleAccessPath | client.unrelated |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:49:40:49:46 | "value" | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:49:40:49:46 | "value" | InputArgumentIndex | 1 |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:49:40:49:46 | "value" | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:49:40:49:46 | "value" | calleeImports | redis |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:49:40:49:46 | "value" | contextFunctionInterfaces |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:49:40:49:46 | "value" | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:49:40:49:46 | "value" | enclosingFunctionBody | req res key req body key client set key value setAsync promisify client set bind client foo1 setAsync key value client setAsync promisify client set foo2 client setAsync key value client unrelated promisify foo3 client unrelated key value unrelated promisify client foobar bind client foo4 unrelated key value |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:49:40:49:46 | "value" | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:49:40:49:46 | "value" | fileImports | body-parser express redis util |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:49:40:49:46 | "value" | receiverName | client |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:49:40:49:46 | "value" | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:51:33:51:45 | client.foobar | CalleeFlexibleAccessPath | promisify |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:51:33:51:45 | client.foobar | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:51:33:51:45 | client.foobar | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:51:33:51:45 | client.foobar | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:51:33:51:45 | client.foobar | calleeImports | util |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:51:33:51:45 | client.foobar | contextFunctionInterfaces |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:51:33:51:45 | client.foobar | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:51:33:51:45 | client.foobar | enclosingFunctionBody | req res key req body key client set key value setAsync promisify client set bind client foo1 setAsync key value client setAsync promisify client set foo2 client setAsync key value client unrelated promisify foo3 client unrelated key value unrelated promisify client foobar bind client foo4 unrelated key value |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:51:33:51:45 | client.foobar | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:51:33:51:45 | client.foobar | fileImports | body-parser express redis util |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:51:33:51:45 | client.foobar | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:51:33:51:45 | client.foobar | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:51:53:51:58 | client | CalleeFlexibleAccessPath | promisify().bind |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:51:53:51:58 | client | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:51:53:51:58 | client | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:51:53:51:58 | client | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:51:53:51:58 | client | calleeImports | util |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:51:53:51:58 | client | contextFunctionInterfaces |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:51:53:51:58 | client | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:51:53:51:58 | client | enclosingFunctionBody | req res key req body key client set key value setAsync promisify client set bind client foo1 setAsync key value client setAsync promisify client set foo2 client setAsync key value client unrelated promisify foo3 client unrelated key value unrelated promisify client foobar bind client foo4 unrelated key value |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:51:53:51:58 | client | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:51:53:51:58 | client | fileImports | body-parser express redis util |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:51:53:51:58 | client | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:51:53:51:58 | client | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:52:28:52:30 | key | CalleeFlexibleAccessPath | unrelated |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:52:28:52:30 | key | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:52:28:52:30 | key | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:52:28:52:30 | key | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:52:28:52:30 | key | calleeImports | util |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:52:28:52:30 | key | contextFunctionInterfaces |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:52:28:52:30 | key | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:52:28:52:30 | key | enclosingFunctionBody | req res key req body key client set key value setAsync promisify client set bind client foo1 setAsync key value client setAsync promisify client set foo2 client setAsync key value client unrelated promisify foo3 client unrelated key value unrelated promisify client foobar bind client foo4 unrelated key value |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:52:28:52:30 | key | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:52:28:52:30 | key | fileImports | body-parser express redis util |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:52:28:52:30 | key | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:52:28:52:30 | key | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:52:33:52:39 | "value" | CalleeFlexibleAccessPath | unrelated |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:52:33:52:39 | "value" | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:52:33:52:39 | "value" | InputArgumentIndex | 1 |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:52:33:52:39 | "value" | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:52:33:52:39 | "value" | calleeImports | util |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:52:33:52:39 | "value" | contextFunctionInterfaces |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:52:33:52:39 | "value" | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:52:33:52:39 | "value" | enclosingFunctionBody | req res key req body key client set key value setAsync promisify client set bind client foo1 setAsync key value client setAsync promisify client set foo2 client setAsync key value client unrelated promisify foo3 client unrelated key value unrelated promisify client foobar bind client foo4 unrelated key value |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:52:33:52:39 | "value" | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:52:33:52:39 | "value" | fileImports | body-parser express redis util |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:52:33:52:39 | "value" | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:52:33:52:39 | "value" | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:4:23:4:31 | 'express' | CalleeFlexibleAccessPath | require |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:4:23:4:31 | 'express' | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:4:23:4:31 | 'express' | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:4:23:4:31 | 'express' | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:4:23:4:31 | 'express' | calleeImports |  |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:4:23:4:31 | 'express' | contextFunctionInterfaces |  |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:4:23:4:31 | 'express' | contextSurroundingFunctionParameters |  |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:4:23:4:31 | 'express' | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:4:23:4:31 | 'express' | enclosingFunctionName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:4:23:4:31 | 'express' | fileImports | express socket.io sqlite3 |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:4:23:4:31 | 'express' | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:4:23:4:31 | 'express' | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:5:23:5:31 | 'sqlite3' | CalleeFlexibleAccessPath | require |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:5:23:5:31 | 'sqlite3' | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:5:23:5:31 | 'sqlite3' | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:5:23:5:31 | 'sqlite3' | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:5:23:5:31 | 'sqlite3' | calleeImports |  |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:5:23:5:31 | 'sqlite3' | contextFunctionInterfaces |  |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:5:23:5:31 | 'sqlite3' | contextSurroundingFunctionParameters |  |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:5:23:5:31 | 'sqlite3' | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:5:23:5:31 | 'sqlite3' | enclosingFunctionName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:5:23:5:31 | 'sqlite3' | fileImports | express socket.io sqlite3 |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:5:23:5:31 | 'sqlite3' | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:5:23:5:31 | 'sqlite3' | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:8:18:8:28 | 'socket.io' | CalleeFlexibleAccessPath | require |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:8:18:8:28 | 'socket.io' | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:8:18:8:28 | 'socket.io' | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:8:18:8:28 | 'socket.io' | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:8:18:8:28 | 'socket.io' | calleeImports |  |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:8:18:8:28 | 'socket.io' | contextFunctionInterfaces |  |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:8:18:8:28 | 'socket.io' | contextSurroundingFunctionParameters |  |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:8:18:8:28 | 'socket.io' | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:8:18:8:28 | 'socket.io' | enclosingFunctionName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:8:18:8:28 | 'socket.io' | fileImports | express socket.io sqlite3 |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:8:18:8:28 | 'socket.io' | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:8:18:8:28 | 'socket.io' | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:9:7:9:18 | 'connection' | CalleeFlexibleAccessPath | io.on |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:9:7:9:18 | 'connection' | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:9:7:9:18 | 'connection' | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:9:7:9:18 | 'connection' | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:9:7:9:18 | 'connection' | calleeImports | socket.io |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:9:7:9:18 | 'connection' | contextFunctionInterfaces |  |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:9:7:9:18 | 'connection' | contextSurroundingFunctionParameters |  |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:9:7:9:18 | 'connection' | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:9:7:9:18 | 'connection' | enclosingFunctionName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:9:7:9:18 | 'connection' | fileImports | express socket.io sqlite3 |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:9:7:9:18 | 'connection' | receiverName | io |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:9:7:9:18 | 'connection' | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:9:21:13:1 | (socket ...   });\\n} | CalleeFlexibleAccessPath | io.on |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:9:21:13:1 | (socket ...   });\\n} | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:9:21:13:1 | (socket ...   });\\n} | InputArgumentIndex | 1 |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:9:21:13:1 | (socket ...   });\\n} | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:9:21:13:1 | (socket ...   });\\n} | calleeImports | socket.io |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:9:21:13:1 | (socket ...   });\\n} | contextFunctionInterfaces |  |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:9:21:13:1 | (socket ...   });\\n} | contextSurroundingFunctionParameters | (socket) |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:9:21:13:1 | (socket ...   });\\n} | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:9:21:13:1 | (socket ...   });\\n} | enclosingFunctionName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:9:21:13:1 | (socket ...   });\\n} | fileImports | express socket.io sqlite3 |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:9:21:13:1 | (socket ...   });\\n} | receiverName | io |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:9:21:13:1 | (socket ...   });\\n} | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:10:13:10:21 | 'newuser' | CalleeFlexibleAccessPath | socket.on |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:10:13:10:21 | 'newuser' | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:10:13:10:21 | 'newuser' | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:10:13:10:21 | 'newuser' | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:10:13:10:21 | 'newuser' | calleeImports |  |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:10:13:10:21 | 'newuser' | contextFunctionInterfaces |  |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:10:13:10:21 | 'newuser' | contextSurroundingFunctionParameters | (socket) |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:10:13:10:21 | 'newuser' | enclosingFunctionBody | socket socket on newuser handle db run INSERT INTO users(name) VALUES  handle |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:10:13:10:21 | 'newuser' | enclosingFunctionName | io.on#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:10:13:10:21 | 'newuser' | fileImports | express socket.io sqlite3 |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:10:13:10:21 | 'newuser' | receiverName | socket |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:10:13:10:21 | 'newuser' | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:10:24:12:3 | (handle ... `);\\n  } | CalleeFlexibleAccessPath | socket.on |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:10:24:12:3 | (handle ... `);\\n  } | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:10:24:12:3 | (handle ... `);\\n  } | InputArgumentIndex | 1 |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:10:24:12:3 | (handle ... `);\\n  } | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:10:24:12:3 | (handle ... `);\\n  } | calleeImports |  |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:10:24:12:3 | (handle ... `);\\n  } | contextFunctionInterfaces |  |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:10:24:12:3 | (handle ... `);\\n  } | contextSurroundingFunctionParameters | (socket)\n(handle) |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:10:24:12:3 | (handle ... `);\\n  } | enclosingFunctionBody | socket socket on newuser handle db run INSERT INTO users(name) VALUES  handle |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:10:24:12:3 | (handle ... `);\\n  } | enclosingFunctionName | io.on#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:10:24:12:3 | (handle ... `);\\n  } | fileImports | express socket.io sqlite3 |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:10:24:12:3 | (handle ... `);\\n  } | receiverName | socket |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:10:24:12:3 | (handle ... `);\\n  } | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:11:12:11:53 | `INSERT ... andle}` | CalleeFlexibleAccessPath | db.run |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:11:12:11:53 | `INSERT ... andle}` | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:11:12:11:53 | `INSERT ... andle}` | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:11:12:11:53 | `INSERT ... andle}` | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:11:12:11:53 | `INSERT ... andle}` | calleeImports | sqlite3 |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:11:12:11:53 | `INSERT ... andle}` | contextFunctionInterfaces |  |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:11:12:11:53 | `INSERT ... andle}` | contextSurroundingFunctionParameters | (socket)\n(handle) |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:11:12:11:53 | `INSERT ... andle}` | enclosingFunctionBody | socket socket on newuser handle db run INSERT INTO users(name) VALUES  handle |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:11:12:11:53 | `INSERT ... andle}` | enclosingFunctionName | io.on#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:11:12:11:53 | `INSERT ... andle}` | fileImports | express socket.io sqlite3 |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:11:12:11:53 | `INSERT ... andle}` | receiverName | db |
-| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:11:12:11:53 | `INSERT ... andle}` | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst2.js:1:23:1:31 | 'express' | CalleeFlexibleAccessPath | require |
-| autogenerated/NosqlAndSqlInjection/untyped/tst2.js:1:23:1:31 | 'express' | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst2.js:1:23:1:31 | 'express' | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/tst2.js:1:23:1:31 | 'express' | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst2.js:1:23:1:31 | 'express' | calleeImports |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst2.js:1:23:1:31 | 'express' | contextFunctionInterfaces |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst2.js:1:23:1:31 | 'express' | contextSurroundingFunctionParameters |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst2.js:1:23:1:31 | 'express' | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst2.js:1:23:1:31 | 'express' | enclosingFunctionName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst2.js:1:23:1:31 | 'express' | fileImports | express mssql |
-| autogenerated/NosqlAndSqlInjection/untyped/tst2.js:1:23:1:31 | 'express' | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst2.js:1:23:1:31 | 'express' | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst2.js:2:13:2:28 | require('mssql') | CalleeFlexibleAccessPath |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst2.js:2:13:2:28 | require('mssql') | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst2.js:2:13:2:28 | require('mssql') | InputArgumentIndex |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst2.js:2:13:2:28 | require('mssql') | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst2.js:2:13:2:28 | require('mssql') | calleeImports |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst2.js:2:13:2:28 | require('mssql') | contextFunctionInterfaces |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst2.js:2:13:2:28 | require('mssql') | contextSurroundingFunctionParameters |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst2.js:2:13:2:28 | require('mssql') | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst2.js:2:13:2:28 | require('mssql') | enclosingFunctionName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst2.js:2:13:2:28 | require('mssql') | fileImports | express mssql |
-| autogenerated/NosqlAndSqlInjection/untyped/tst2.js:2:13:2:28 | require('mssql') | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst2.js:2:13:2:28 | require('mssql') | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst2.js:2:21:2:27 | 'mssql' | CalleeFlexibleAccessPath | require |
-| autogenerated/NosqlAndSqlInjection/untyped/tst2.js:2:21:2:27 | 'mssql' | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst2.js:2:21:2:27 | 'mssql' | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/tst2.js:2:21:2:27 | 'mssql' | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst2.js:2:21:2:27 | 'mssql' | calleeImports |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst2.js:2:21:2:27 | 'mssql' | contextFunctionInterfaces |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst2.js:2:21:2:27 | 'mssql' | contextSurroundingFunctionParameters |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst2.js:2:21:2:27 | 'mssql' | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst2.js:2:21:2:27 | 'mssql' | enclosingFunctionName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst2.js:2:21:2:27 | 'mssql' | fileImports | express mssql |
-| autogenerated/NosqlAndSqlInjection/untyped/tst2.js:2:21:2:27 | 'mssql' | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst2.js:2:21:2:27 | 'mssql' | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst2.js:5:9:5:19 | '/post/:id' | CalleeFlexibleAccessPath | app.get |
-| autogenerated/NosqlAndSqlInjection/untyped/tst2.js:5:9:5:19 | '/post/:id' | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst2.js:5:9:5:19 | '/post/:id' | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/tst2.js:5:9:5:19 | '/post/:id' | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst2.js:5:9:5:19 | '/post/:id' | calleeImports | express |
-| autogenerated/NosqlAndSqlInjection/untyped/tst2.js:5:9:5:19 | '/post/:id' | contextFunctionInterfaces |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst2.js:5:9:5:19 | '/post/:id' | contextSurroundingFunctionParameters |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst2.js:5:9:5:19 | '/post/:id' | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst2.js:5:9:5:19 | '/post/:id' | enclosingFunctionName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst2.js:5:9:5:19 | '/post/:id' | fileImports | express mssql |
-| autogenerated/NosqlAndSqlInjection/untyped/tst2.js:5:9:5:19 | '/post/:id' | receiverName | app |
-| autogenerated/NosqlAndSqlInjection/untyped/tst2.js:5:9:5:19 | '/post/:id' | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst2.js:5:22:10:1 | async f ... "'");\\n} | CalleeFlexibleAccessPath | app.get |
-| autogenerated/NosqlAndSqlInjection/untyped/tst2.js:5:22:10:1 | async f ... "'");\\n} | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst2.js:5:22:10:1 | async f ... "'");\\n} | InputArgumentIndex | 1 |
-| autogenerated/NosqlAndSqlInjection/untyped/tst2.js:5:22:10:1 | async f ... "'");\\n} | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst2.js:5:22:10:1 | async f ... "'");\\n} | calleeImports | express |
-| autogenerated/NosqlAndSqlInjection/untyped/tst2.js:5:22:10:1 | async f ... "'");\\n} | contextFunctionInterfaces |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst2.js:5:22:10:1 | async f ... "'");\\n} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/tst2.js:5:22:10:1 | async f ... "'");\\n} | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst2.js:5:22:10:1 | async f ... "'");\\n} | enclosingFunctionName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst2.js:5:22:10:1 | async f ... "'");\\n} | fileImports | express mssql |
-| autogenerated/NosqlAndSqlInjection/untyped/tst2.js:5:22:10:1 | async f ... "'");\\n} | receiverName | app |
-| autogenerated/NosqlAndSqlInjection/untyped/tst2.js:5:22:10:1 | async f ... "'");\\n} | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst2.js:7:13:7:45 | select  ... e id =  | CalleeFlexibleAccessPath |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst2.js:7:13:7:45 | select  ... e id =  | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst2.js:7:13:7:45 | select  ... e id =  | InputArgumentIndex |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst2.js:7:13:7:45 | select  ... e id =  | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst2.js:7:13:7:45 | select  ... e id =  | calleeImports |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst2.js:7:13:7:45 | select  ... e id =  | contextFunctionInterfaces |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst2.js:7:13:7:45 | select  ... e id =  | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/tst2.js:7:13:7:45 | select  ... e id =  | enclosingFunctionBody | req res sql query select * from mytable where id =  req params id sql Request query select * from mytable where id = ' req params id ' |
-| autogenerated/NosqlAndSqlInjection/untyped/tst2.js:7:13:7:45 | select  ... e id =  | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/tst2.js:7:13:7:45 | select  ... e id =  | fileImports | express mssql |
-| autogenerated/NosqlAndSqlInjection/untyped/tst2.js:7:13:7:45 | select  ... e id =  | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst2.js:7:13:7:45 | select  ... e id =  | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst2.js:7:48:7:60 | req.params.id | CalleeFlexibleAccessPath |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst2.js:7:48:7:60 | req.params.id | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst2.js:7:48:7:60 | req.params.id | InputArgumentIndex |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst2.js:7:48:7:60 | req.params.id | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst2.js:7:48:7:60 | req.params.id | calleeImports |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst2.js:7:48:7:60 | req.params.id | contextFunctionInterfaces |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst2.js:7:48:7:60 | req.params.id | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/tst2.js:7:48:7:60 | req.params.id | enclosingFunctionBody | req res sql query select * from mytable where id =  req params id sql Request query select * from mytable where id = ' req params id ' |
-| autogenerated/NosqlAndSqlInjection/untyped/tst2.js:7:48:7:60 | req.params.id | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/tst2.js:7:48:7:60 | req.params.id | fileImports | express mssql |
-| autogenerated/NosqlAndSqlInjection/untyped/tst2.js:7:48:7:60 | req.params.id | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst2.js:7:48:7:60 | req.params.id | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst2.js:9:27:9:84 | "select ... d + "'" | CalleeFlexibleAccessPath | sql.Request().query |
-| autogenerated/NosqlAndSqlInjection/untyped/tst2.js:9:27:9:84 | "select ... d + "'" | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst2.js:9:27:9:84 | "select ... d + "'" | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/tst2.js:9:27:9:84 | "select ... d + "'" | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst2.js:9:27:9:84 | "select ... d + "'" | calleeImports | mssql |
-| autogenerated/NosqlAndSqlInjection/untyped/tst2.js:9:27:9:84 | "select ... d + "'" | contextFunctionInterfaces |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst2.js:9:27:9:84 | "select ... d + "'" | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/tst2.js:9:27:9:84 | "select ... d + "'" | enclosingFunctionBody | req res sql query select * from mytable where id =  req params id sql Request query select * from mytable where id = ' req params id ' |
-| autogenerated/NosqlAndSqlInjection/untyped/tst2.js:9:27:9:84 | "select ... d + "'" | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/tst2.js:9:27:9:84 | "select ... d + "'" | fileImports | express mssql |
-| autogenerated/NosqlAndSqlInjection/untyped/tst2.js:9:27:9:84 | "select ... d + "'" | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst2.js:9:27:9:84 | "select ... d + "'" | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:3:20:3:23 | 'pg' | CalleeFlexibleAccessPath | require |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:3:20:3:23 | 'pg' | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:3:20:3:23 | 'pg' | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:3:20:3:23 | 'pg' | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:3:20:3:23 | 'pg' | calleeImports |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:3:20:3:23 | 'pg' | contextFunctionInterfaces | handler(req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:3:20:3:23 | 'pg' | contextSurroundingFunctionParameters |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:3:20:3:23 | 'pg' | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:3:20:3:23 | 'pg' | enclosingFunctionName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:3:20:3:23 | 'pg' | fileImports | express pg |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:3:20:3:23 | 'pg' | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:3:20:3:23 | 'pg' | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:7:16:8:34 | "SELECT ... ategory | CalleeFlexibleAccessPath |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:7:16:8:34 | "SELECT ... ategory | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:7:16:8:34 | "SELECT ... ategory | InputArgumentIndex |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:7:16:8:34 | "SELECT ... ategory | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:7:16:8:34 | "SELECT ... ategory | calleeImports |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:7:16:8:34 | "SELECT ... ategory | contextFunctionInterfaces | handler(req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:7:16:8:34 | "SELECT ... ategory | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:7:16:8:34 | "SELECT ... ategory | enclosingFunctionBody | req res query1 SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE pool query query1 err results query2 SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=$1  ORDER BY PRICE pool query query2 req params category err results |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:7:16:8:34 | "SELECT ... ategory | enclosingFunctionName | handler |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:7:16:8:34 | "SELECT ... ategory | fileImports | express pg |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:7:16:8:34 | "SELECT ... ategory | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:7:16:8:34 | "SELECT ... ategory | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:7:16:8:55 | "SELECT ...  PRICE" | CalleeFlexibleAccessPath |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:7:16:8:55 | "SELECT ...  PRICE" | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:7:16:8:55 | "SELECT ...  PRICE" | InputArgumentIndex |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:7:16:8:55 | "SELECT ...  PRICE" | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:7:16:8:55 | "SELECT ...  PRICE" | calleeImports |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:7:16:8:55 | "SELECT ...  PRICE" | contextFunctionInterfaces | handler(req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:7:16:8:55 | "SELECT ...  PRICE" | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:7:16:8:55 | "SELECT ...  PRICE" | enclosingFunctionBody | req res query1 SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE pool query query1 err results query2 SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=$1  ORDER BY PRICE pool query query2 req params category err results |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:7:16:8:55 | "SELECT ...  PRICE" | enclosingFunctionName | handler |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:7:16:8:55 | "SELECT ...  PRICE" | fileImports | express pg |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:7:16:8:55 | "SELECT ...  PRICE" | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:7:16:8:55 | "SELECT ...  PRICE" | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:9:14:9:19 | query1 | CalleeFlexibleAccessPath | pool.query |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:9:14:9:19 | query1 | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:9:14:9:19 | query1 | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:9:14:9:19 | query1 | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:9:14:9:19 | query1 | calleeImports | pg |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:9:14:9:19 | query1 | contextFunctionInterfaces | handler(req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:9:14:9:19 | query1 | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:9:14:9:19 | query1 | enclosingFunctionBody | req res query1 SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE pool query query1 err results query2 SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=$1  ORDER BY PRICE pool query query2 req params category err results |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:9:14:9:19 | query1 | enclosingFunctionName | handler |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:9:14:9:19 | query1 | fileImports | express pg |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:9:14:9:19 | query1 | receiverName | pool |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:9:14:9:19 | query1 | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:9:22:9:23 | [] | CalleeFlexibleAccessPath | pool.query |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:9:22:9:23 | [] | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:9:22:9:23 | [] | InputArgumentIndex | 1 |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:9:22:9:23 | [] | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:9:22:9:23 | [] | calleeImports | pg |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:9:22:9:23 | [] | contextFunctionInterfaces | handler(req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:9:22:9:23 | [] | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:9:22:9:23 | [] | enclosingFunctionBody | req res query1 SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE pool query query1 err results query2 SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=$1  ORDER BY PRICE pool query query2 req params category err results |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:9:22:9:23 | [] | enclosingFunctionName | handler |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:9:22:9:23 | [] | fileImports | express pg |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:9:22:9:23 | [] | receiverName | pool |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:9:22:9:23 | [] | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:9:26:11:3 | functio ... lts\\n  } | CalleeFlexibleAccessPath | pool.query |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:9:26:11:3 | functio ... lts\\n  } | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:9:26:11:3 | functio ... lts\\n  } | InputArgumentIndex | 2 |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:9:26:11:3 | functio ... lts\\n  } | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:9:26:11:3 | functio ... lts\\n  } | calleeImports | pg |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:9:26:11:3 | functio ... lts\\n  } | contextFunctionInterfaces | handler(req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:9:26:11:3 | functio ... lts\\n  } | contextSurroundingFunctionParameters | (req, res)\n(err, results) |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:9:26:11:3 | functio ... lts\\n  } | enclosingFunctionBody | req res query1 SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE pool query query1 err results query2 SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=$1  ORDER BY PRICE pool query query2 req params category err results |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:9:26:11:3 | functio ... lts\\n  } | enclosingFunctionName | handler |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:9:26:11:3 | functio ... lts\\n  } | fileImports | express pg |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:9:26:11:3 | functio ... lts\\n  } | receiverName | pool |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:9:26:11:3 | functio ... lts\\n  } | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:14:16:15:32 | "SELECT ...  PRICE" | CalleeFlexibleAccessPath |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:14:16:15:32 | "SELECT ...  PRICE" | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:14:16:15:32 | "SELECT ...  PRICE" | InputArgumentIndex |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:14:16:15:32 | "SELECT ...  PRICE" | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:14:16:15:32 | "SELECT ...  PRICE" | calleeImports |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:14:16:15:32 | "SELECT ...  PRICE" | contextFunctionInterfaces | handler(req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:14:16:15:32 | "SELECT ...  PRICE" | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:14:16:15:32 | "SELECT ...  PRICE" | enclosingFunctionBody | req res query1 SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE pool query query1 err results query2 SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=$1  ORDER BY PRICE pool query query2 req params category err results |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:14:16:15:32 | "SELECT ...  PRICE" | enclosingFunctionName | handler |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:14:16:15:32 | "SELECT ...  PRICE" | fileImports | express pg |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:14:16:15:32 | "SELECT ...  PRICE" | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:14:16:15:32 | "SELECT ...  PRICE" | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:16:14:16:19 | query2 | CalleeFlexibleAccessPath | pool.query |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:16:14:16:19 | query2 | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:16:14:16:19 | query2 | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:16:14:16:19 | query2 | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:16:14:16:19 | query2 | calleeImports | pg |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:16:14:16:19 | query2 | contextFunctionInterfaces | handler(req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:16:14:16:19 | query2 | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:16:14:16:19 | query2 | enclosingFunctionBody | req res query1 SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE pool query query1 err results query2 SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=$1  ORDER BY PRICE pool query query2 req params category err results |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:16:14:16:19 | query2 | enclosingFunctionName | handler |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:16:14:16:19 | query2 | fileImports | express pg |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:16:14:16:19 | query2 | receiverName | pool |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:16:14:16:19 | query2 | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:16:22:16:42 | [req.pa ... tegory] | CalleeFlexibleAccessPath | pool.query |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:16:22:16:42 | [req.pa ... tegory] | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:16:22:16:42 | [req.pa ... tegory] | InputArgumentIndex | 1 |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:16:22:16:42 | [req.pa ... tegory] | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:16:22:16:42 | [req.pa ... tegory] | calleeImports | pg |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:16:22:16:42 | [req.pa ... tegory] | contextFunctionInterfaces | handler(req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:16:22:16:42 | [req.pa ... tegory] | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:16:22:16:42 | [req.pa ... tegory] | enclosingFunctionBody | req res query1 SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE pool query query1 err results query2 SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=$1  ORDER BY PRICE pool query query2 req params category err results |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:16:22:16:42 | [req.pa ... tegory] | enclosingFunctionName | handler |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:16:22:16:42 | [req.pa ... tegory] | fileImports | express pg |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:16:22:16:42 | [req.pa ... tegory] | receiverName | pool |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:16:22:16:42 | [req.pa ... tegory] | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:16:23:16:41 | req.params.category | CalleeFlexibleAccessPath |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:16:23:16:41 | req.params.category | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:16:23:16:41 | req.params.category | InputArgumentIndex |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:16:23:16:41 | req.params.category | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:16:23:16:41 | req.params.category | calleeImports |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:16:23:16:41 | req.params.category | contextFunctionInterfaces | handler(req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:16:23:16:41 | req.params.category | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:16:23:16:41 | req.params.category | enclosingFunctionBody | req res query1 SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE pool query query1 err results query2 SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=$1  ORDER BY PRICE pool query query2 req params category err results |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:16:23:16:41 | req.params.category | enclosingFunctionName | handler |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:16:23:16:41 | req.params.category | fileImports | express pg |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:16:23:16:41 | req.params.category | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:16:23:16:41 | req.params.category | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:16:45:18:3 | functio ... lts\\n  } | CalleeFlexibleAccessPath | pool.query |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:16:45:18:3 | functio ... lts\\n  } | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:16:45:18:3 | functio ... lts\\n  } | InputArgumentIndex | 2 |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:16:45:18:3 | functio ... lts\\n  } | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:16:45:18:3 | functio ... lts\\n  } | calleeImports | pg |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:16:45:18:3 | functio ... lts\\n  } | contextFunctionInterfaces | handler(req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:16:45:18:3 | functio ... lts\\n  } | contextSurroundingFunctionParameters | (req, res)\n(err, results) |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:16:45:18:3 | functio ... lts\\n  } | enclosingFunctionBody | req res query1 SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE pool query query1 err results query2 SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=$1  ORDER BY PRICE pool query query2 req params category err results |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:16:45:18:3 | functio ... lts\\n  } | enclosingFunctionName | handler |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:16:45:18:3 | functio ... lts\\n  } | fileImports | express pg |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:16:45:18:3 | functio ... lts\\n  } | receiverName | pool |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:16:45:18:3 | functio ... lts\\n  } | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:21:9:21:17 | 'express' | CalleeFlexibleAccessPath | require |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:21:9:21:17 | 'express' | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:21:9:21:17 | 'express' | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:21:9:21:17 | 'express' | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:21:9:21:17 | 'express' | calleeImports |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:21:9:21:17 | 'express' | contextFunctionInterfaces | handler(req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:21:9:21:17 | 'express' | contextSurroundingFunctionParameters |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:21:9:21:17 | 'express' | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:21:9:21:17 | 'express' | enclosingFunctionName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:21:9:21:17 | 'express' | fileImports | express pg |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:21:9:21:17 | 'express' | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:21:9:21:17 | 'express' | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:21:26:21:31 | '/foo' | CalleeFlexibleAccessPath | import(!)().get |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:21:26:21:31 | '/foo' | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:21:26:21:31 | '/foo' | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:21:26:21:31 | '/foo' | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:21:26:21:31 | '/foo' | calleeImports | express |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:21:26:21:31 | '/foo' | contextFunctionInterfaces | handler(req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:21:26:21:31 | '/foo' | contextSurroundingFunctionParameters |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:21:26:21:31 | '/foo' | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:21:26:21:31 | '/foo' | enclosingFunctionName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:21:26:21:31 | '/foo' | fileImports | express pg |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:21:26:21:31 | '/foo' | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:21:26:21:31 | '/foo' | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:21:34:21:40 | handler | CalleeFlexibleAccessPath | import(!)().get |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:21:34:21:40 | handler | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:21:34:21:40 | handler | InputArgumentIndex | 1 |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:21:34:21:40 | handler | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:21:34:21:40 | handler | calleeImports | express |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:21:34:21:40 | handler | contextFunctionInterfaces | handler(req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:21:34:21:40 | handler | contextSurroundingFunctionParameters |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:21:34:21:40 | handler | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:21:34:21:40 | handler | enclosingFunctionName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:21:34:21:40 | handler | fileImports | express pg |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:21:34:21:40 | handler | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:21:34:21:40 | handler | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:3:23:3:31 | 'sqlite3' | CalleeFlexibleAccessPath | require |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:3:23:3:31 | 'sqlite3' | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:3:23:3:31 | 'sqlite3' | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:3:23:3:31 | 'sqlite3' | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:3:23:3:31 | 'sqlite3' | calleeImports |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:3:23:3:31 | 'sqlite3' | contextFunctionInterfaces |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:3:23:3:31 | 'sqlite3' | contextSurroundingFunctionParameters |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:3:23:3:31 | 'sqlite3' | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:3:23:3:31 | 'sqlite3' | enclosingFunctionName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:3:23:3:31 | 'sqlite3' | fileImports | sqlite3 |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:3:23:3:31 | 'sqlite3' | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:3:23:3:31 | 'sqlite3' | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:6:16:6:22 | 'myApp' | CalleeFlexibleAccessPath | angular.module |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:6:16:6:22 | 'myApp' | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:6:16:6:22 | 'myApp' | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:6:16:6:22 | 'myApp' | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:6:16:6:22 | 'myApp' | calleeImports |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:6:16:6:22 | 'myApp' | contextFunctionInterfaces |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:6:16:6:22 | 'myApp' | contextSurroundingFunctionParameters |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:6:16:6:22 | 'myApp' | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:6:16:6:22 | 'myApp' | enclosingFunctionName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:6:16:6:22 | 'myApp' | fileImports | sqlite3 |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:6:16:6:22 | 'myApp' | receiverName | angular |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:6:16:6:22 | 'myApp' | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:6:25:6:35 | ['ngRoute'] | CalleeFlexibleAccessPath | angular.module |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:6:25:6:35 | ['ngRoute'] | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:6:25:6:35 | ['ngRoute'] | InputArgumentIndex | 1 |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:6:25:6:35 | ['ngRoute'] | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:6:25:6:35 | ['ngRoute'] | calleeImports |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:6:25:6:35 | ['ngRoute'] | contextFunctionInterfaces |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:6:25:6:35 | ['ngRoute'] | contextSurroundingFunctionParameters |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:6:25:6:35 | ['ngRoute'] | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:6:25:6:35 | ['ngRoute'] | enclosingFunctionName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:6:25:6:35 | ['ngRoute'] | fileImports | sqlite3 |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:6:25:6:35 | ['ngRoute'] | receiverName | angular |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:6:25:6:35 | ['ngRoute'] | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:6:26:6:34 | 'ngRoute' | CalleeFlexibleAccessPath |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:6:26:6:34 | 'ngRoute' | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:6:26:6:34 | 'ngRoute' | InputArgumentIndex |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:6:26:6:34 | 'ngRoute' | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:6:26:6:34 | 'ngRoute' | calleeImports |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:6:26:6:34 | 'ngRoute' | contextFunctionInterfaces |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:6:26:6:34 | 'ngRoute' | contextSurroundingFunctionParameters |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:6:26:6:34 | 'ngRoute' | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:6:26:6:34 | 'ngRoute' | enclosingFunctionName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:6:26:6:34 | 'ngRoute' | fileImports | sqlite3 |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:6:26:6:34 | 'ngRoute' | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:6:26:6:34 | 'ngRoute' | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:7:13:7:22 | 'FindPost' | CalleeFlexibleAccessPath | angular.module().controller |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:7:13:7:22 | 'FindPost' | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:7:13:7:22 | 'FindPost' | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:7:13:7:22 | 'FindPost' | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:7:13:7:22 | 'FindPost' | calleeImports |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:7:13:7:22 | 'FindPost' | contextFunctionInterfaces |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:7:13:7:22 | 'FindPost' | contextSurroundingFunctionParameters |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:7:13:7:22 | 'FindPost' | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:7:13:7:22 | 'FindPost' | enclosingFunctionName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:7:13:7:22 | 'FindPost' | fileImports | sqlite3 |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:7:13:7:22 | 'FindPost' | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:7:13:7:22 | 'FindPost' | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:7:25:9:1 | functio ... '"');\\n} | CalleeFlexibleAccessPath | angular.module().controller |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:7:25:9:1 | functio ... '"');\\n} | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:7:25:9:1 | functio ... '"');\\n} | InputArgumentIndex | 1 |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:7:25:9:1 | functio ... '"');\\n} | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:7:25:9:1 | functio ... '"');\\n} | calleeImports |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:7:25:9:1 | functio ... '"');\\n} | contextFunctionInterfaces |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:7:25:9:1 | functio ... '"');\\n} | contextSurroundingFunctionParameters | ($routeParams) |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:7:25:9:1 | functio ... '"');\\n} | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:7:25:9:1 | functio ... '"');\\n} | enclosingFunctionName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:7:25:9:1 | functio ... '"');\\n} | fileImports | sqlite3 |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:7:25:9:1 | functio ... '"');\\n} | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:7:25:9:1 | functio ... '"');\\n} | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:8:10:8:60 | 'SELECT ... rams.id | CalleeFlexibleAccessPath |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:8:10:8:60 | 'SELECT ... rams.id | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:8:10:8:60 | 'SELECT ... rams.id | InputArgumentIndex |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:8:10:8:60 | 'SELECT ... rams.id | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:8:10:8:60 | 'SELECT ... rams.id | calleeImports |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:8:10:8:60 | 'SELECT ... rams.id | contextFunctionInterfaces |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:8:10:8:60 | 'SELECT ... rams.id | contextSurroundingFunctionParameters | ($routeParams) |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:8:10:8:60 | 'SELECT ... rams.id | enclosingFunctionBody | $routeParams db get SELECT * FROM Post WHERE id = " $routeParams id " |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:8:10:8:60 | 'SELECT ... rams.id | enclosingFunctionName | controller#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:8:10:8:60 | 'SELECT ... rams.id | fileImports | sqlite3 |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:8:10:8:60 | 'SELECT ... rams.id | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:8:10:8:60 | 'SELECT ... rams.id | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:8:10:8:66 | 'SELECT ... d + '"' | CalleeFlexibleAccessPath | db.get |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:8:10:8:66 | 'SELECT ... d + '"' | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:8:10:8:66 | 'SELECT ... d + '"' | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:8:10:8:66 | 'SELECT ... d + '"' | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:8:10:8:66 | 'SELECT ... d + '"' | calleeImports | sqlite3 |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:8:10:8:66 | 'SELECT ... d + '"' | contextFunctionInterfaces |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:8:10:8:66 | 'SELECT ... d + '"' | contextSurroundingFunctionParameters | ($routeParams) |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:8:10:8:66 | 'SELECT ... d + '"' | enclosingFunctionBody | $routeParams db get SELECT * FROM Post WHERE id = " $routeParams id " |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:8:10:8:66 | 'SELECT ... d + '"' | enclosingFunctionName | controller#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:8:10:8:66 | 'SELECT ... d + '"' | fileImports | sqlite3 |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:8:10:8:66 | 'SELECT ... d + '"' | receiverName | db |
-| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:8:10:8:66 | 'SELECT ... d + '"' | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst.js:4:23:4:31 | 'express' | CalleeFlexibleAccessPath | require |
-| autogenerated/NosqlAndSqlInjection/untyped/tst.js:4:23:4:31 | 'express' | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst.js:4:23:4:31 | 'express' | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/tst.js:4:23:4:31 | 'express' | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst.js:4:23:4:31 | 'express' | calleeImports |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst.js:4:23:4:31 | 'express' | contextFunctionInterfaces |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst.js:4:23:4:31 | 'express' | contextSurroundingFunctionParameters |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst.js:4:23:4:31 | 'express' | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst.js:4:23:4:31 | 'express' | enclosingFunctionName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst.js:4:23:4:31 | 'express' | fileImports | express sqlite3 |
-| autogenerated/NosqlAndSqlInjection/untyped/tst.js:4:23:4:31 | 'express' | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst.js:4:23:4:31 | 'express' | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst.js:5:23:5:31 | 'sqlite3' | CalleeFlexibleAccessPath | require |
-| autogenerated/NosqlAndSqlInjection/untyped/tst.js:5:23:5:31 | 'sqlite3' | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst.js:5:23:5:31 | 'sqlite3' | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/tst.js:5:23:5:31 | 'sqlite3' | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst.js:5:23:5:31 | 'sqlite3' | calleeImports |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst.js:5:23:5:31 | 'sqlite3' | contextFunctionInterfaces |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst.js:5:23:5:31 | 'sqlite3' | contextSurroundingFunctionParameters |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst.js:5:23:5:31 | 'sqlite3' | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst.js:5:23:5:31 | 'sqlite3' | enclosingFunctionName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst.js:5:23:5:31 | 'sqlite3' | fileImports | express sqlite3 |
-| autogenerated/NosqlAndSqlInjection/untyped/tst.js:5:23:5:31 | 'sqlite3' | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst.js:5:23:5:31 | 'sqlite3' | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst.js:9:9:9:19 | '/post/:id' | CalleeFlexibleAccessPath | app.get |
-| autogenerated/NosqlAndSqlInjection/untyped/tst.js:9:9:9:19 | '/post/:id' | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst.js:9:9:9:19 | '/post/:id' | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/tst.js:9:9:9:19 | '/post/:id' | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst.js:9:9:9:19 | '/post/:id' | calleeImports | express |
-| autogenerated/NosqlAndSqlInjection/untyped/tst.js:9:9:9:19 | '/post/:id' | contextFunctionInterfaces |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst.js:9:9:9:19 | '/post/:id' | contextSurroundingFunctionParameters |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst.js:9:9:9:19 | '/post/:id' | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst.js:9:9:9:19 | '/post/:id' | enclosingFunctionName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst.js:9:9:9:19 | '/post/:id' | fileImports | express sqlite3 |
-| autogenerated/NosqlAndSqlInjection/untyped/tst.js:9:9:9:19 | '/post/:id' | receiverName | app |
-| autogenerated/NosqlAndSqlInjection/untyped/tst.js:9:9:9:19 | '/post/:id' | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst.js:9:22:11:1 | functio ... '"');\\n} | CalleeFlexibleAccessPath | app.get |
-| autogenerated/NosqlAndSqlInjection/untyped/tst.js:9:22:11:1 | functio ... '"');\\n} | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst.js:9:22:11:1 | functio ... '"');\\n} | InputArgumentIndex | 1 |
-| autogenerated/NosqlAndSqlInjection/untyped/tst.js:9:22:11:1 | functio ... '"');\\n} | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst.js:9:22:11:1 | functio ... '"');\\n} | calleeImports | express |
-| autogenerated/NosqlAndSqlInjection/untyped/tst.js:9:22:11:1 | functio ... '"');\\n} | contextFunctionInterfaces |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst.js:9:22:11:1 | functio ... '"');\\n} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/tst.js:9:22:11:1 | functio ... '"');\\n} | enclosingFunctionBody |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst.js:9:22:11:1 | functio ... '"');\\n} | enclosingFunctionName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst.js:9:22:11:1 | functio ... '"');\\n} | fileImports | express sqlite3 |
-| autogenerated/NosqlAndSqlInjection/untyped/tst.js:9:22:11:1 | functio ... '"');\\n} | receiverName | app |
-| autogenerated/NosqlAndSqlInjection/untyped/tst.js:9:22:11:1 | functio ... '"');\\n} | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst.js:10:10:10:58 | 'SELECT ... rams.id | CalleeFlexibleAccessPath |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst.js:10:10:10:58 | 'SELECT ... rams.id | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst.js:10:10:10:58 | 'SELECT ... rams.id | InputArgumentIndex |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst.js:10:10:10:58 | 'SELECT ... rams.id | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst.js:10:10:10:58 | 'SELECT ... rams.id | calleeImports |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst.js:10:10:10:58 | 'SELECT ... rams.id | contextFunctionInterfaces |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst.js:10:10:10:58 | 'SELECT ... rams.id | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/tst.js:10:10:10:58 | 'SELECT ... rams.id | enclosingFunctionBody | req res db get SELECT * FROM Post WHERE id = " req params id " |
-| autogenerated/NosqlAndSqlInjection/untyped/tst.js:10:10:10:58 | 'SELECT ... rams.id | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/tst.js:10:10:10:58 | 'SELECT ... rams.id | fileImports | express sqlite3 |
-| autogenerated/NosqlAndSqlInjection/untyped/tst.js:10:10:10:58 | 'SELECT ... rams.id | receiverName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst.js:10:10:10:58 | 'SELECT ... rams.id | stringConcatenatedWith |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst.js:10:10:10:64 | 'SELECT ... d + '"' | CalleeFlexibleAccessPath | db.get |
-| autogenerated/NosqlAndSqlInjection/untyped/tst.js:10:10:10:64 | 'SELECT ... d + '"' | InputAccessPathFromCallee |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst.js:10:10:10:64 | 'SELECT ... d + '"' | InputArgumentIndex | 0 |
-| autogenerated/NosqlAndSqlInjection/untyped/tst.js:10:10:10:64 | 'SELECT ... d + '"' | assignedToPropName |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst.js:10:10:10:64 | 'SELECT ... d + '"' | calleeImports | sqlite3 |
-| autogenerated/NosqlAndSqlInjection/untyped/tst.js:10:10:10:64 | 'SELECT ... d + '"' | contextFunctionInterfaces |  |
-| autogenerated/NosqlAndSqlInjection/untyped/tst.js:10:10:10:64 | 'SELECT ... d + '"' | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/tst.js:10:10:10:64 | 'SELECT ... d + '"' | enclosingFunctionBody | req res db get SELECT * FROM Post WHERE id = " req params id " |
-| autogenerated/NosqlAndSqlInjection/untyped/tst.js:10:10:10:64 | 'SELECT ... d + '"' | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/tst.js:10:10:10:64 | 'SELECT ... d + '"' | fileImports | express sqlite3 |
-| autogenerated/NosqlAndSqlInjection/untyped/tst.js:10:10:10:64 | 'SELECT ... d + '"' | receiverName | db |
-| autogenerated/NosqlAndSqlInjection/untyped/tst.js:10:10:10:64 | 'SELECT ... d + '"' | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/TaintedPath-es6.js:6:27:11:1 | functio ... h)));\\n} | CalleeFlexibleAccessPath | createServer |
-| autogenerated/TaintedPath/TaintedPath-es6.js:6:27:11:1 | functio ... h)));\\n} | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/TaintedPath-es6.js:6:27:11:1 | functio ... h)));\\n} | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/TaintedPath-es6.js:6:27:11:1 | functio ... h)));\\n} | assignedToPropName |  |
-| autogenerated/TaintedPath/TaintedPath-es6.js:6:27:11:1 | functio ... h)));\\n} | calleeImports | http |
-| autogenerated/TaintedPath/TaintedPath-es6.js:6:27:11:1 | functio ... h)));\\n} | contextFunctionInterfaces |  |
-| autogenerated/TaintedPath/TaintedPath-es6.js:6:27:11:1 | functio ... h)));\\n} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/TaintedPath-es6.js:6:27:11:1 | functio ... h)));\\n} | enclosingFunctionBody |  |
-| autogenerated/TaintedPath/TaintedPath-es6.js:6:27:11:1 | functio ... h)));\\n} | enclosingFunctionName |  |
-| autogenerated/TaintedPath/TaintedPath-es6.js:6:27:11:1 | functio ... h)));\\n} | fileImports | fs http path url |
-| autogenerated/TaintedPath/TaintedPath-es6.js:6:27:11:1 | functio ... h)));\\n} | receiverName |  |
-| autogenerated/TaintedPath/TaintedPath-es6.js:6:27:11:1 | functio ... h)));\\n} | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/TaintedPath-es6.js:10:26:10:45 | join("public", path) | CalleeFlexibleAccessPath | readFileSync |
-| autogenerated/TaintedPath/TaintedPath-es6.js:10:26:10:45 | join("public", path) | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/TaintedPath-es6.js:10:26:10:45 | join("public", path) | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/TaintedPath-es6.js:10:26:10:45 | join("public", path) | assignedToPropName |  |
-| autogenerated/TaintedPath/TaintedPath-es6.js:10:26:10:45 | join("public", path) | calleeImports | fs |
-| autogenerated/TaintedPath/TaintedPath-es6.js:10:26:10:45 | join("public", path) | contextFunctionInterfaces |  |
-| autogenerated/TaintedPath/TaintedPath-es6.js:10:26:10:45 | join("public", path) | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/TaintedPath-es6.js:10:26:10:45 | join("public", path) | enclosingFunctionBody | req res path parse req url true query path res write readFileSync join public path |
-| autogenerated/TaintedPath/TaintedPath-es6.js:10:26:10:45 | join("public", path) | enclosingFunctionName | createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath-es6.js:10:26:10:45 | join("public", path) | fileImports | fs http path url |
-| autogenerated/TaintedPath/TaintedPath-es6.js:10:26:10:45 | join("public", path) | receiverName |  |
-| autogenerated/TaintedPath/TaintedPath-es6.js:10:26:10:45 | join("public", path) | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/TaintedPath.js:1:18:1:21 | 'fs' | CalleeFlexibleAccessPath | require |
-| autogenerated/TaintedPath/TaintedPath.js:1:18:1:21 | 'fs' | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/TaintedPath.js:1:18:1:21 | 'fs' | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/TaintedPath.js:1:18:1:21 | 'fs' | assignedToPropName |  |
-| autogenerated/TaintedPath/TaintedPath.js:1:18:1:21 | 'fs' | calleeImports |  |
-| autogenerated/TaintedPath/TaintedPath.js:1:18:1:21 | 'fs' | contextFunctionInterfaces | views_local(req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:1:18:1:21 | 'fs' | contextSurroundingFunctionParameters |  |
-| autogenerated/TaintedPath/TaintedPath.js:1:18:1:21 | 'fs' | enclosingFunctionBody |  |
-| autogenerated/TaintedPath/TaintedPath.js:1:18:1:21 | 'fs' | enclosingFunctionName |  |
-| autogenerated/TaintedPath/TaintedPath.js:1:18:1:21 | 'fs' | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
-| autogenerated/TaintedPath/TaintedPath.js:1:18:1:21 | 'fs' | receiverName |  |
-| autogenerated/TaintedPath/TaintedPath.js:1:18:1:21 | 'fs' | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/TaintedPath.js:2:20:2:25 | 'http' | CalleeFlexibleAccessPath | require |
-| autogenerated/TaintedPath/TaintedPath.js:2:20:2:25 | 'http' | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/TaintedPath.js:2:20:2:25 | 'http' | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/TaintedPath.js:2:20:2:25 | 'http' | assignedToPropName |  |
-| autogenerated/TaintedPath/TaintedPath.js:2:20:2:25 | 'http' | calleeImports |  |
-| autogenerated/TaintedPath/TaintedPath.js:2:20:2:25 | 'http' | contextFunctionInterfaces | views_local(req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:2:20:2:25 | 'http' | contextSurroundingFunctionParameters |  |
-| autogenerated/TaintedPath/TaintedPath.js:2:20:2:25 | 'http' | enclosingFunctionBody |  |
-| autogenerated/TaintedPath/TaintedPath.js:2:20:2:25 | 'http' | enclosingFunctionName |  |
-| autogenerated/TaintedPath/TaintedPath.js:2:20:2:25 | 'http' | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
-| autogenerated/TaintedPath/TaintedPath.js:2:20:2:25 | 'http' | receiverName |  |
-| autogenerated/TaintedPath/TaintedPath.js:2:20:2:25 | 'http' | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/TaintedPath.js:3:19:3:23 | 'url' | CalleeFlexibleAccessPath | require |
-| autogenerated/TaintedPath/TaintedPath.js:3:19:3:23 | 'url' | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/TaintedPath.js:3:19:3:23 | 'url' | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/TaintedPath.js:3:19:3:23 | 'url' | assignedToPropName |  |
-| autogenerated/TaintedPath/TaintedPath.js:3:19:3:23 | 'url' | calleeImports |  |
-| autogenerated/TaintedPath/TaintedPath.js:3:19:3:23 | 'url' | contextFunctionInterfaces | views_local(req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:3:19:3:23 | 'url' | contextSurroundingFunctionParameters |  |
-| autogenerated/TaintedPath/TaintedPath.js:3:19:3:23 | 'url' | enclosingFunctionBody |  |
-| autogenerated/TaintedPath/TaintedPath.js:3:19:3:23 | 'url' | enclosingFunctionName |  |
-| autogenerated/TaintedPath/TaintedPath.js:3:19:3:23 | 'url' | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
-| autogenerated/TaintedPath/TaintedPath.js:3:19:3:23 | 'url' | receiverName |  |
-| autogenerated/TaintedPath/TaintedPath.js:3:19:3:23 | 'url' | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/TaintedPath.js:4:24:4:42 | 'sanitize-filename' | CalleeFlexibleAccessPath | require |
-| autogenerated/TaintedPath/TaintedPath.js:4:24:4:42 | 'sanitize-filename' | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/TaintedPath.js:4:24:4:42 | 'sanitize-filename' | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/TaintedPath.js:4:24:4:42 | 'sanitize-filename' | assignedToPropName |  |
-| autogenerated/TaintedPath/TaintedPath.js:4:24:4:42 | 'sanitize-filename' | calleeImports |  |
-| autogenerated/TaintedPath/TaintedPath.js:4:24:4:42 | 'sanitize-filename' | contextFunctionInterfaces | views_local(req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:4:24:4:42 | 'sanitize-filename' | contextSurroundingFunctionParameters |  |
-| autogenerated/TaintedPath/TaintedPath.js:4:24:4:42 | 'sanitize-filename' | enclosingFunctionBody |  |
-| autogenerated/TaintedPath/TaintedPath.js:4:24:4:42 | 'sanitize-filename' | enclosingFunctionName |  |
-| autogenerated/TaintedPath/TaintedPath.js:4:24:4:42 | 'sanitize-filename' | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
-| autogenerated/TaintedPath/TaintedPath.js:4:24:4:42 | 'sanitize-filename' | receiverName |  |
-| autogenerated/TaintedPath/TaintedPath.js:4:24:4:42 | 'sanitize-filename' | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/TaintedPath.js:5:26:5:31 | 'path' | CalleeFlexibleAccessPath | require |
-| autogenerated/TaintedPath/TaintedPath.js:5:26:5:31 | 'path' | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/TaintedPath.js:5:26:5:31 | 'path' | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/TaintedPath.js:5:26:5:31 | 'path' | assignedToPropName |  |
-| autogenerated/TaintedPath/TaintedPath.js:5:26:5:31 | 'path' | calleeImports |  |
-| autogenerated/TaintedPath/TaintedPath.js:5:26:5:31 | 'path' | contextFunctionInterfaces | views_local(req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:5:26:5:31 | 'path' | contextSurroundingFunctionParameters |  |
-| autogenerated/TaintedPath/TaintedPath.js:5:26:5:31 | 'path' | enclosingFunctionBody |  |
-| autogenerated/TaintedPath/TaintedPath.js:5:26:5:31 | 'path' | enclosingFunctionName |  |
-| autogenerated/TaintedPath/TaintedPath.js:5:26:5:31 | 'path' | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
-| autogenerated/TaintedPath/TaintedPath.js:5:26:5:31 | 'path' | receiverName |  |
-| autogenerated/TaintedPath/TaintedPath.js:5:26:5:31 | 'path' | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/TaintedPath.js:8:32:61:1 | functio ... h)));\\n} | CalleeFlexibleAccessPath | http.createServer |
-| autogenerated/TaintedPath/TaintedPath.js:8:32:61:1 | functio ... h)));\\n} | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/TaintedPath.js:8:32:61:1 | functio ... h)));\\n} | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/TaintedPath.js:8:32:61:1 | functio ... h)));\\n} | assignedToPropName |  |
-| autogenerated/TaintedPath/TaintedPath.js:8:32:61:1 | functio ... h)));\\n} | calleeImports | http |
-| autogenerated/TaintedPath/TaintedPath.js:8:32:61:1 | functio ... h)));\\n} | contextFunctionInterfaces | views_local(req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:8:32:61:1 | functio ... h)));\\n} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:8:32:61:1 | functio ... h)));\\n} | enclosingFunctionBody |  |
-| autogenerated/TaintedPath/TaintedPath.js:8:32:61:1 | functio ... h)));\\n} | enclosingFunctionName |  |
-| autogenerated/TaintedPath/TaintedPath.js:8:32:61:1 | functio ... h)));\\n} | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
-| autogenerated/TaintedPath/TaintedPath.js:8:32:61:1 | functio ... h)));\\n} | receiverName | http |
-| autogenerated/TaintedPath/TaintedPath.js:8:32:61:1 | functio ... h)));\\n} | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/TaintedPath.js:12:29:12:32 | path | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/TaintedPath.js:12:29:12:32 | path | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/TaintedPath.js:12:29:12:32 | path | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/TaintedPath.js:12:29:12:32 | path | assignedToPropName |  |
-| autogenerated/TaintedPath/TaintedPath.js:12:29:12:32 | path | calleeImports | fs |
-| autogenerated/TaintedPath/TaintedPath.js:12:29:12:32 | path | contextFunctionInterfaces | views_local(req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:12:29:12:32 | path | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:12:29:12:32 | path | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path res write fs readFileSync /home/user/ path path startsWith /home/user/ res write fs readFileSync path path indexOf secret 1 res write fs readFileSync path fs existsSync path res write fs readFileSync path path foo.txt res write fs readFileSync path path foo.txt path bar.txt res write fs readFileSync path path foo.txt path bar.txt someOpaqueCondition res write fs readFileSync path path sanitize path res write fs readFileSync path path url parse req url true query path res write fs readFileSync pathModule basename path res write fs readFileSync pathModule dirname path res write fs readFileSync pathModule extname path res write fs readFileSync pathModule join path res write fs readFileSync pathModule join x y path z res write fs readFileSync pathModule normalize path res write fs readFileSync pathModule relative x path res write fs readFileSync pathModule relative path x res write fs readFileSync pathModule resolve path res write fs readFileSync pathModule resolve x y path z res write fs readFileSync pathModule toNamespacedPath path |
-| autogenerated/TaintedPath/TaintedPath.js:12:29:12:32 | path | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:12:29:12:32 | path | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
-| autogenerated/TaintedPath/TaintedPath.js:12:29:12:32 | path | receiverName | fs |
-| autogenerated/TaintedPath/TaintedPath.js:12:29:12:32 | path | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/TaintedPath.js:15:29:15:48 | "/home/user/" + path | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/TaintedPath.js:15:29:15:48 | "/home/user/" + path | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/TaintedPath.js:15:29:15:48 | "/home/user/" + path | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/TaintedPath.js:15:29:15:48 | "/home/user/" + path | assignedToPropName |  |
-| autogenerated/TaintedPath/TaintedPath.js:15:29:15:48 | "/home/user/" + path | calleeImports | fs |
-| autogenerated/TaintedPath/TaintedPath.js:15:29:15:48 | "/home/user/" + path | contextFunctionInterfaces | views_local(req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:15:29:15:48 | "/home/user/" + path | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:15:29:15:48 | "/home/user/" + path | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path res write fs readFileSync /home/user/ path path startsWith /home/user/ res write fs readFileSync path path indexOf secret 1 res write fs readFileSync path fs existsSync path res write fs readFileSync path path foo.txt res write fs readFileSync path path foo.txt path bar.txt res write fs readFileSync path path foo.txt path bar.txt someOpaqueCondition res write fs readFileSync path path sanitize path res write fs readFileSync path path url parse req url true query path res write fs readFileSync pathModule basename path res write fs readFileSync pathModule dirname path res write fs readFileSync pathModule extname path res write fs readFileSync pathModule join path res write fs readFileSync pathModule join x y path z res write fs readFileSync pathModule normalize path res write fs readFileSync pathModule relative x path res write fs readFileSync pathModule relative path x res write fs readFileSync pathModule resolve path res write fs readFileSync pathModule resolve x y path z res write fs readFileSync pathModule toNamespacedPath path |
-| autogenerated/TaintedPath/TaintedPath.js:15:29:15:48 | "/home/user/" + path | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:15:29:15:48 | "/home/user/" + path | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
-| autogenerated/TaintedPath/TaintedPath.js:15:29:15:48 | "/home/user/" + path | receiverName | fs |
-| autogenerated/TaintedPath/TaintedPath.js:15:29:15:48 | "/home/user/" + path | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/TaintedPath.js:17:23:17:35 | "/home/user/" | CalleeFlexibleAccessPath | path.startsWith |
-| autogenerated/TaintedPath/TaintedPath.js:17:23:17:35 | "/home/user/" | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/TaintedPath.js:17:23:17:35 | "/home/user/" | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/TaintedPath.js:17:23:17:35 | "/home/user/" | assignedToPropName |  |
-| autogenerated/TaintedPath/TaintedPath.js:17:23:17:35 | "/home/user/" | calleeImports | url |
-| autogenerated/TaintedPath/TaintedPath.js:17:23:17:35 | "/home/user/" | contextFunctionInterfaces | views_local(req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:17:23:17:35 | "/home/user/" | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:17:23:17:35 | "/home/user/" | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path res write fs readFileSync /home/user/ path path startsWith /home/user/ res write fs readFileSync path path indexOf secret 1 res write fs readFileSync path fs existsSync path res write fs readFileSync path path foo.txt res write fs readFileSync path path foo.txt path bar.txt res write fs readFileSync path path foo.txt path bar.txt someOpaqueCondition res write fs readFileSync path path sanitize path res write fs readFileSync path path url parse req url true query path res write fs readFileSync pathModule basename path res write fs readFileSync pathModule dirname path res write fs readFileSync pathModule extname path res write fs readFileSync pathModule join path res write fs readFileSync pathModule join x y path z res write fs readFileSync pathModule normalize path res write fs readFileSync pathModule relative x path res write fs readFileSync pathModule relative path x res write fs readFileSync pathModule resolve path res write fs readFileSync pathModule resolve x y path z res write fs readFileSync pathModule toNamespacedPath path |
-| autogenerated/TaintedPath/TaintedPath.js:17:23:17:35 | "/home/user/" | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:17:23:17:35 | "/home/user/" | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
-| autogenerated/TaintedPath/TaintedPath.js:17:23:17:35 | "/home/user/" | receiverName | path |
-| autogenerated/TaintedPath/TaintedPath.js:17:23:17:35 | "/home/user/" | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/TaintedPath.js:18:33:18:36 | path | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/TaintedPath.js:18:33:18:36 | path | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/TaintedPath.js:18:33:18:36 | path | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/TaintedPath.js:18:33:18:36 | path | assignedToPropName |  |
-| autogenerated/TaintedPath/TaintedPath.js:18:33:18:36 | path | calleeImports | fs |
-| autogenerated/TaintedPath/TaintedPath.js:18:33:18:36 | path | contextFunctionInterfaces | views_local(req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:18:33:18:36 | path | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:18:33:18:36 | path | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path res write fs readFileSync /home/user/ path path startsWith /home/user/ res write fs readFileSync path path indexOf secret 1 res write fs readFileSync path fs existsSync path res write fs readFileSync path path foo.txt res write fs readFileSync path path foo.txt path bar.txt res write fs readFileSync path path foo.txt path bar.txt someOpaqueCondition res write fs readFileSync path path sanitize path res write fs readFileSync path path url parse req url true query path res write fs readFileSync pathModule basename path res write fs readFileSync pathModule dirname path res write fs readFileSync pathModule extname path res write fs readFileSync pathModule join path res write fs readFileSync pathModule join x y path z res write fs readFileSync pathModule normalize path res write fs readFileSync pathModule relative x path res write fs readFileSync pathModule relative path x res write fs readFileSync pathModule resolve path res write fs readFileSync pathModule resolve x y path z res write fs readFileSync pathModule toNamespacedPath path |
-| autogenerated/TaintedPath/TaintedPath.js:18:33:18:36 | path | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:18:33:18:36 | path | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
-| autogenerated/TaintedPath/TaintedPath.js:18:33:18:36 | path | receiverName | fs |
-| autogenerated/TaintedPath/TaintedPath.js:18:33:18:36 | path | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/TaintedPath.js:20:20:20:27 | "secret" | CalleeFlexibleAccessPath | path.indexOf |
-| autogenerated/TaintedPath/TaintedPath.js:20:20:20:27 | "secret" | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/TaintedPath.js:20:20:20:27 | "secret" | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/TaintedPath.js:20:20:20:27 | "secret" | assignedToPropName |  |
-| autogenerated/TaintedPath/TaintedPath.js:20:20:20:27 | "secret" | calleeImports | url |
-| autogenerated/TaintedPath/TaintedPath.js:20:20:20:27 | "secret" | contextFunctionInterfaces | views_local(req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:20:20:20:27 | "secret" | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:20:20:20:27 | "secret" | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path res write fs readFileSync /home/user/ path path startsWith /home/user/ res write fs readFileSync path path indexOf secret 1 res write fs readFileSync path fs existsSync path res write fs readFileSync path path foo.txt res write fs readFileSync path path foo.txt path bar.txt res write fs readFileSync path path foo.txt path bar.txt someOpaqueCondition res write fs readFileSync path path sanitize path res write fs readFileSync path path url parse req url true query path res write fs readFileSync pathModule basename path res write fs readFileSync pathModule dirname path res write fs readFileSync pathModule extname path res write fs readFileSync pathModule join path res write fs readFileSync pathModule join x y path z res write fs readFileSync pathModule normalize path res write fs readFileSync pathModule relative x path res write fs readFileSync pathModule relative path x res write fs readFileSync pathModule resolve path res write fs readFileSync pathModule resolve x y path z res write fs readFileSync pathModule toNamespacedPath path |
-| autogenerated/TaintedPath/TaintedPath.js:20:20:20:27 | "secret" | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:20:20:20:27 | "secret" | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
-| autogenerated/TaintedPath/TaintedPath.js:20:20:20:27 | "secret" | receiverName | path |
-| autogenerated/TaintedPath/TaintedPath.js:20:20:20:27 | "secret" | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/TaintedPath.js:21:33:21:36 | path | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/TaintedPath.js:21:33:21:36 | path | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/TaintedPath.js:21:33:21:36 | path | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/TaintedPath.js:21:33:21:36 | path | assignedToPropName |  |
-| autogenerated/TaintedPath/TaintedPath.js:21:33:21:36 | path | calleeImports | fs |
-| autogenerated/TaintedPath/TaintedPath.js:21:33:21:36 | path | contextFunctionInterfaces | views_local(req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:21:33:21:36 | path | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:21:33:21:36 | path | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path res write fs readFileSync /home/user/ path path startsWith /home/user/ res write fs readFileSync path path indexOf secret 1 res write fs readFileSync path fs existsSync path res write fs readFileSync path path foo.txt res write fs readFileSync path path foo.txt path bar.txt res write fs readFileSync path path foo.txt path bar.txt someOpaqueCondition res write fs readFileSync path path sanitize path res write fs readFileSync path path url parse req url true query path res write fs readFileSync pathModule basename path res write fs readFileSync pathModule dirname path res write fs readFileSync pathModule extname path res write fs readFileSync pathModule join path res write fs readFileSync pathModule join x y path z res write fs readFileSync pathModule normalize path res write fs readFileSync pathModule relative x path res write fs readFileSync pathModule relative path x res write fs readFileSync pathModule resolve path res write fs readFileSync pathModule resolve x y path z res write fs readFileSync pathModule toNamespacedPath path |
-| autogenerated/TaintedPath/TaintedPath.js:21:33:21:36 | path | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:21:33:21:36 | path | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
-| autogenerated/TaintedPath/TaintedPath.js:21:33:21:36 | path | receiverName | fs |
-| autogenerated/TaintedPath/TaintedPath.js:21:33:21:36 | path | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/TaintedPath.js:23:21:23:24 | path | CalleeFlexibleAccessPath | fs.existsSync |
-| autogenerated/TaintedPath/TaintedPath.js:23:21:23:24 | path | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/TaintedPath.js:23:21:23:24 | path | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/TaintedPath.js:23:21:23:24 | path | assignedToPropName |  |
-| autogenerated/TaintedPath/TaintedPath.js:23:21:23:24 | path | calleeImports | fs |
-| autogenerated/TaintedPath/TaintedPath.js:23:21:23:24 | path | contextFunctionInterfaces | views_local(req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:23:21:23:24 | path | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:23:21:23:24 | path | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path res write fs readFileSync /home/user/ path path startsWith /home/user/ res write fs readFileSync path path indexOf secret 1 res write fs readFileSync path fs existsSync path res write fs readFileSync path path foo.txt res write fs readFileSync path path foo.txt path bar.txt res write fs readFileSync path path foo.txt path bar.txt someOpaqueCondition res write fs readFileSync path path sanitize path res write fs readFileSync path path url parse req url true query path res write fs readFileSync pathModule basename path res write fs readFileSync pathModule dirname path res write fs readFileSync pathModule extname path res write fs readFileSync pathModule join path res write fs readFileSync pathModule join x y path z res write fs readFileSync pathModule normalize path res write fs readFileSync pathModule relative x path res write fs readFileSync pathModule relative path x res write fs readFileSync pathModule resolve path res write fs readFileSync pathModule resolve x y path z res write fs readFileSync pathModule toNamespacedPath path |
-| autogenerated/TaintedPath/TaintedPath.js:23:21:23:24 | path | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:23:21:23:24 | path | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
-| autogenerated/TaintedPath/TaintedPath.js:23:21:23:24 | path | receiverName | fs |
-| autogenerated/TaintedPath/TaintedPath.js:23:21:23:24 | path | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/TaintedPath.js:24:33:24:36 | path | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/TaintedPath.js:24:33:24:36 | path | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/TaintedPath.js:24:33:24:36 | path | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/TaintedPath.js:24:33:24:36 | path | assignedToPropName |  |
-| autogenerated/TaintedPath/TaintedPath.js:24:33:24:36 | path | calleeImports | fs |
-| autogenerated/TaintedPath/TaintedPath.js:24:33:24:36 | path | contextFunctionInterfaces | views_local(req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:24:33:24:36 | path | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:24:33:24:36 | path | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path res write fs readFileSync /home/user/ path path startsWith /home/user/ res write fs readFileSync path path indexOf secret 1 res write fs readFileSync path fs existsSync path res write fs readFileSync path path foo.txt res write fs readFileSync path path foo.txt path bar.txt res write fs readFileSync path path foo.txt path bar.txt someOpaqueCondition res write fs readFileSync path path sanitize path res write fs readFileSync path path url parse req url true query path res write fs readFileSync pathModule basename path res write fs readFileSync pathModule dirname path res write fs readFileSync pathModule extname path res write fs readFileSync pathModule join path res write fs readFileSync pathModule join x y path z res write fs readFileSync pathModule normalize path res write fs readFileSync pathModule relative x path res write fs readFileSync pathModule relative path x res write fs readFileSync pathModule resolve path res write fs readFileSync pathModule resolve x y path z res write fs readFileSync pathModule toNamespacedPath path |
-| autogenerated/TaintedPath/TaintedPath.js:24:33:24:36 | path | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:24:33:24:36 | path | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
-| autogenerated/TaintedPath/TaintedPath.js:24:33:24:36 | path | receiverName | fs |
-| autogenerated/TaintedPath/TaintedPath.js:24:33:24:36 | path | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/TaintedPath.js:27:31:27:34 | path | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/TaintedPath.js:27:31:27:34 | path | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/TaintedPath.js:27:31:27:34 | path | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/TaintedPath.js:27:31:27:34 | path | assignedToPropName |  |
-| autogenerated/TaintedPath/TaintedPath.js:27:31:27:34 | path | calleeImports | fs |
-| autogenerated/TaintedPath/TaintedPath.js:27:31:27:34 | path | contextFunctionInterfaces | views_local(req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:27:31:27:34 | path | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:27:31:27:34 | path | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path res write fs readFileSync /home/user/ path path startsWith /home/user/ res write fs readFileSync path path indexOf secret 1 res write fs readFileSync path fs existsSync path res write fs readFileSync path path foo.txt res write fs readFileSync path path foo.txt path bar.txt res write fs readFileSync path path foo.txt path bar.txt someOpaqueCondition res write fs readFileSync path path sanitize path res write fs readFileSync path path url parse req url true query path res write fs readFileSync pathModule basename path res write fs readFileSync pathModule dirname path res write fs readFileSync pathModule extname path res write fs readFileSync pathModule join path res write fs readFileSync pathModule join x y path z res write fs readFileSync pathModule normalize path res write fs readFileSync pathModule relative x path res write fs readFileSync pathModule relative path x res write fs readFileSync pathModule resolve path res write fs readFileSync pathModule resolve x y path z res write fs readFileSync pathModule toNamespacedPath path |
-| autogenerated/TaintedPath/TaintedPath.js:27:31:27:34 | path | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:27:31:27:34 | path | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
-| autogenerated/TaintedPath/TaintedPath.js:27:31:27:34 | path | receiverName | fs |
-| autogenerated/TaintedPath/TaintedPath.js:27:31:27:34 | path | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/TaintedPath.js:30:31:30:34 | path | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/TaintedPath.js:30:31:30:34 | path | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/TaintedPath.js:30:31:30:34 | path | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/TaintedPath.js:30:31:30:34 | path | assignedToPropName |  |
-| autogenerated/TaintedPath/TaintedPath.js:30:31:30:34 | path | calleeImports | fs |
-| autogenerated/TaintedPath/TaintedPath.js:30:31:30:34 | path | contextFunctionInterfaces | views_local(req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:30:31:30:34 | path | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:30:31:30:34 | path | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path res write fs readFileSync /home/user/ path path startsWith /home/user/ res write fs readFileSync path path indexOf secret 1 res write fs readFileSync path fs existsSync path res write fs readFileSync path path foo.txt res write fs readFileSync path path foo.txt path bar.txt res write fs readFileSync path path foo.txt path bar.txt someOpaqueCondition res write fs readFileSync path path sanitize path res write fs readFileSync path path url parse req url true query path res write fs readFileSync pathModule basename path res write fs readFileSync pathModule dirname path res write fs readFileSync pathModule extname path res write fs readFileSync pathModule join path res write fs readFileSync pathModule join x y path z res write fs readFileSync pathModule normalize path res write fs readFileSync pathModule relative x path res write fs readFileSync pathModule relative path x res write fs readFileSync pathModule resolve path res write fs readFileSync pathModule resolve x y path z res write fs readFileSync pathModule toNamespacedPath path |
-| autogenerated/TaintedPath/TaintedPath.js:30:31:30:34 | path | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:30:31:30:34 | path | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
-| autogenerated/TaintedPath/TaintedPath.js:30:31:30:34 | path | receiverName | fs |
-| autogenerated/TaintedPath/TaintedPath.js:30:31:30:34 | path | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/TaintedPath.js:33:31:33:34 | path | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/TaintedPath.js:33:31:33:34 | path | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/TaintedPath.js:33:31:33:34 | path | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/TaintedPath.js:33:31:33:34 | path | assignedToPropName |  |
-| autogenerated/TaintedPath/TaintedPath.js:33:31:33:34 | path | calleeImports | fs |
-| autogenerated/TaintedPath/TaintedPath.js:33:31:33:34 | path | contextFunctionInterfaces | views_local(req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:33:31:33:34 | path | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:33:31:33:34 | path | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path res write fs readFileSync /home/user/ path path startsWith /home/user/ res write fs readFileSync path path indexOf secret 1 res write fs readFileSync path fs existsSync path res write fs readFileSync path path foo.txt res write fs readFileSync path path foo.txt path bar.txt res write fs readFileSync path path foo.txt path bar.txt someOpaqueCondition res write fs readFileSync path path sanitize path res write fs readFileSync path path url parse req url true query path res write fs readFileSync pathModule basename path res write fs readFileSync pathModule dirname path res write fs readFileSync pathModule extname path res write fs readFileSync pathModule join path res write fs readFileSync pathModule join x y path z res write fs readFileSync pathModule normalize path res write fs readFileSync pathModule relative x path res write fs readFileSync pathModule relative path x res write fs readFileSync pathModule resolve path res write fs readFileSync pathModule resolve x y path z res write fs readFileSync pathModule toNamespacedPath path |
-| autogenerated/TaintedPath/TaintedPath.js:33:31:33:34 | path | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:33:31:33:34 | path | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
-| autogenerated/TaintedPath/TaintedPath.js:33:31:33:34 | path | receiverName | fs |
-| autogenerated/TaintedPath/TaintedPath.js:33:31:33:34 | path | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/TaintedPath.js:35:10:35:23 | sanitize(path) | CalleeFlexibleAccessPath |  |
-| autogenerated/TaintedPath/TaintedPath.js:35:10:35:23 | sanitize(path) | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/TaintedPath.js:35:10:35:23 | sanitize(path) | InputArgumentIndex |  |
-| autogenerated/TaintedPath/TaintedPath.js:35:10:35:23 | sanitize(path) | assignedToPropName |  |
-| autogenerated/TaintedPath/TaintedPath.js:35:10:35:23 | sanitize(path) | calleeImports |  |
-| autogenerated/TaintedPath/TaintedPath.js:35:10:35:23 | sanitize(path) | contextFunctionInterfaces | views_local(req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:35:10:35:23 | sanitize(path) | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:35:10:35:23 | sanitize(path) | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path res write fs readFileSync /home/user/ path path startsWith /home/user/ res write fs readFileSync path path indexOf secret 1 res write fs readFileSync path fs existsSync path res write fs readFileSync path path foo.txt res write fs readFileSync path path foo.txt path bar.txt res write fs readFileSync path path foo.txt path bar.txt someOpaqueCondition res write fs readFileSync path path sanitize path res write fs readFileSync path path url parse req url true query path res write fs readFileSync pathModule basename path res write fs readFileSync pathModule dirname path res write fs readFileSync pathModule extname path res write fs readFileSync pathModule join path res write fs readFileSync pathModule join x y path z res write fs readFileSync pathModule normalize path res write fs readFileSync pathModule relative x path res write fs readFileSync pathModule relative path x res write fs readFileSync pathModule resolve path res write fs readFileSync pathModule resolve x y path z res write fs readFileSync pathModule toNamespacedPath path |
-| autogenerated/TaintedPath/TaintedPath.js:35:10:35:23 | sanitize(path) | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:35:10:35:23 | sanitize(path) | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
-| autogenerated/TaintedPath/TaintedPath.js:35:10:35:23 | sanitize(path) | receiverName |  |
-| autogenerated/TaintedPath/TaintedPath.js:35:10:35:23 | sanitize(path) | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/TaintedPath.js:36:29:36:32 | path | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/TaintedPath.js:36:29:36:32 | path | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/TaintedPath.js:36:29:36:32 | path | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/TaintedPath.js:36:29:36:32 | path | assignedToPropName |  |
-| autogenerated/TaintedPath/TaintedPath.js:36:29:36:32 | path | calleeImports | fs |
-| autogenerated/TaintedPath/TaintedPath.js:36:29:36:32 | path | contextFunctionInterfaces | views_local(req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:36:29:36:32 | path | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:36:29:36:32 | path | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path res write fs readFileSync /home/user/ path path startsWith /home/user/ res write fs readFileSync path path indexOf secret 1 res write fs readFileSync path fs existsSync path res write fs readFileSync path path foo.txt res write fs readFileSync path path foo.txt path bar.txt res write fs readFileSync path path foo.txt path bar.txt someOpaqueCondition res write fs readFileSync path path sanitize path res write fs readFileSync path path url parse req url true query path res write fs readFileSync pathModule basename path res write fs readFileSync pathModule dirname path res write fs readFileSync pathModule extname path res write fs readFileSync pathModule join path res write fs readFileSync pathModule join x y path z res write fs readFileSync pathModule normalize path res write fs readFileSync pathModule relative x path res write fs readFileSync pathModule relative path x res write fs readFileSync pathModule resolve path res write fs readFileSync pathModule resolve x y path z res write fs readFileSync pathModule toNamespacedPath path |
-| autogenerated/TaintedPath/TaintedPath.js:36:29:36:32 | path | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:36:29:36:32 | path | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
-| autogenerated/TaintedPath/TaintedPath.js:36:29:36:32 | path | receiverName | fs |
-| autogenerated/TaintedPath/TaintedPath.js:36:29:36:32 | path | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/TaintedPath.js:40:29:40:53 | pathMod ... e(path) | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/TaintedPath.js:40:29:40:53 | pathMod ... e(path) | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/TaintedPath.js:40:29:40:53 | pathMod ... e(path) | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/TaintedPath.js:40:29:40:53 | pathMod ... e(path) | assignedToPropName |  |
-| autogenerated/TaintedPath/TaintedPath.js:40:29:40:53 | pathMod ... e(path) | calleeImports | fs |
-| autogenerated/TaintedPath/TaintedPath.js:40:29:40:53 | pathMod ... e(path) | contextFunctionInterfaces | views_local(req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:40:29:40:53 | pathMod ... e(path) | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:40:29:40:53 | pathMod ... e(path) | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path res write fs readFileSync /home/user/ path path startsWith /home/user/ res write fs readFileSync path path indexOf secret 1 res write fs readFileSync path fs existsSync path res write fs readFileSync path path foo.txt res write fs readFileSync path path foo.txt path bar.txt res write fs readFileSync path path foo.txt path bar.txt someOpaqueCondition res write fs readFileSync path path sanitize path res write fs readFileSync path path url parse req url true query path res write fs readFileSync pathModule basename path res write fs readFileSync pathModule dirname path res write fs readFileSync pathModule extname path res write fs readFileSync pathModule join path res write fs readFileSync pathModule join x y path z res write fs readFileSync pathModule normalize path res write fs readFileSync pathModule relative x path res write fs readFileSync pathModule relative path x res write fs readFileSync pathModule resolve path res write fs readFileSync pathModule resolve x y path z res write fs readFileSync pathModule toNamespacedPath path |
-| autogenerated/TaintedPath/TaintedPath.js:40:29:40:53 | pathMod ... e(path) | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:40:29:40:53 | pathMod ... e(path) | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
-| autogenerated/TaintedPath/TaintedPath.js:40:29:40:53 | pathMod ... e(path) | receiverName | fs |
-| autogenerated/TaintedPath/TaintedPath.js:40:29:40:53 | pathMod ... e(path) | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/TaintedPath.js:42:29:42:52 | pathMod ... e(path) | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/TaintedPath.js:42:29:42:52 | pathMod ... e(path) | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/TaintedPath.js:42:29:42:52 | pathMod ... e(path) | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/TaintedPath.js:42:29:42:52 | pathMod ... e(path) | assignedToPropName |  |
-| autogenerated/TaintedPath/TaintedPath.js:42:29:42:52 | pathMod ... e(path) | calleeImports | fs |
-| autogenerated/TaintedPath/TaintedPath.js:42:29:42:52 | pathMod ... e(path) | contextFunctionInterfaces | views_local(req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:42:29:42:52 | pathMod ... e(path) | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:42:29:42:52 | pathMod ... e(path) | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path res write fs readFileSync /home/user/ path path startsWith /home/user/ res write fs readFileSync path path indexOf secret 1 res write fs readFileSync path fs existsSync path res write fs readFileSync path path foo.txt res write fs readFileSync path path foo.txt path bar.txt res write fs readFileSync path path foo.txt path bar.txt someOpaqueCondition res write fs readFileSync path path sanitize path res write fs readFileSync path path url parse req url true query path res write fs readFileSync pathModule basename path res write fs readFileSync pathModule dirname path res write fs readFileSync pathModule extname path res write fs readFileSync pathModule join path res write fs readFileSync pathModule join x y path z res write fs readFileSync pathModule normalize path res write fs readFileSync pathModule relative x path res write fs readFileSync pathModule relative path x res write fs readFileSync pathModule resolve path res write fs readFileSync pathModule resolve x y path z res write fs readFileSync pathModule toNamespacedPath path |
-| autogenerated/TaintedPath/TaintedPath.js:42:29:42:52 | pathMod ... e(path) | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:42:29:42:52 | pathMod ... e(path) | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
-| autogenerated/TaintedPath/TaintedPath.js:42:29:42:52 | pathMod ... e(path) | receiverName | fs |
-| autogenerated/TaintedPath/TaintedPath.js:42:29:42:52 | pathMod ... e(path) | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/TaintedPath.js:44:29:44:52 | pathMod ... e(path) | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/TaintedPath.js:44:29:44:52 | pathMod ... e(path) | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/TaintedPath.js:44:29:44:52 | pathMod ... e(path) | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/TaintedPath.js:44:29:44:52 | pathMod ... e(path) | assignedToPropName |  |
-| autogenerated/TaintedPath/TaintedPath.js:44:29:44:52 | pathMod ... e(path) | calleeImports | fs |
-| autogenerated/TaintedPath/TaintedPath.js:44:29:44:52 | pathMod ... e(path) | contextFunctionInterfaces | views_local(req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:44:29:44:52 | pathMod ... e(path) | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:44:29:44:52 | pathMod ... e(path) | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path res write fs readFileSync /home/user/ path path startsWith /home/user/ res write fs readFileSync path path indexOf secret 1 res write fs readFileSync path fs existsSync path res write fs readFileSync path path foo.txt res write fs readFileSync path path foo.txt path bar.txt res write fs readFileSync path path foo.txt path bar.txt someOpaqueCondition res write fs readFileSync path path sanitize path res write fs readFileSync path path url parse req url true query path res write fs readFileSync pathModule basename path res write fs readFileSync pathModule dirname path res write fs readFileSync pathModule extname path res write fs readFileSync pathModule join path res write fs readFileSync pathModule join x y path z res write fs readFileSync pathModule normalize path res write fs readFileSync pathModule relative x path res write fs readFileSync pathModule relative path x res write fs readFileSync pathModule resolve path res write fs readFileSync pathModule resolve x y path z res write fs readFileSync pathModule toNamespacedPath path |
-| autogenerated/TaintedPath/TaintedPath.js:44:29:44:52 | pathMod ... e(path) | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:44:29:44:52 | pathMod ... e(path) | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
-| autogenerated/TaintedPath/TaintedPath.js:44:29:44:52 | pathMod ... e(path) | receiverName | fs |
-| autogenerated/TaintedPath/TaintedPath.js:44:29:44:52 | pathMod ... e(path) | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/TaintedPath.js:46:29:46:49 | pathMod ... n(path) | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/TaintedPath.js:46:29:46:49 | pathMod ... n(path) | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/TaintedPath.js:46:29:46:49 | pathMod ... n(path) | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/TaintedPath.js:46:29:46:49 | pathMod ... n(path) | assignedToPropName |  |
-| autogenerated/TaintedPath/TaintedPath.js:46:29:46:49 | pathMod ... n(path) | calleeImports | fs |
-| autogenerated/TaintedPath/TaintedPath.js:46:29:46:49 | pathMod ... n(path) | contextFunctionInterfaces | views_local(req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:46:29:46:49 | pathMod ... n(path) | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:46:29:46:49 | pathMod ... n(path) | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path res write fs readFileSync /home/user/ path path startsWith /home/user/ res write fs readFileSync path path indexOf secret 1 res write fs readFileSync path fs existsSync path res write fs readFileSync path path foo.txt res write fs readFileSync path path foo.txt path bar.txt res write fs readFileSync path path foo.txt path bar.txt someOpaqueCondition res write fs readFileSync path path sanitize path res write fs readFileSync path path url parse req url true query path res write fs readFileSync pathModule basename path res write fs readFileSync pathModule dirname path res write fs readFileSync pathModule extname path res write fs readFileSync pathModule join path res write fs readFileSync pathModule join x y path z res write fs readFileSync pathModule normalize path res write fs readFileSync pathModule relative x path res write fs readFileSync pathModule relative path x res write fs readFileSync pathModule resolve path res write fs readFileSync pathModule resolve x y path z res write fs readFileSync pathModule toNamespacedPath path |
-| autogenerated/TaintedPath/TaintedPath.js:46:29:46:49 | pathMod ... n(path) | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:46:29:46:49 | pathMod ... n(path) | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
-| autogenerated/TaintedPath/TaintedPath.js:46:29:46:49 | pathMod ... n(path) | receiverName | fs |
-| autogenerated/TaintedPath/TaintedPath.js:46:29:46:49 | pathMod ... n(path) | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/TaintedPath.js:48:29:48:58 | pathMod ... ath, z) | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/TaintedPath.js:48:29:48:58 | pathMod ... ath, z) | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/TaintedPath.js:48:29:48:58 | pathMod ... ath, z) | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/TaintedPath.js:48:29:48:58 | pathMod ... ath, z) | assignedToPropName |  |
-| autogenerated/TaintedPath/TaintedPath.js:48:29:48:58 | pathMod ... ath, z) | calleeImports | fs |
-| autogenerated/TaintedPath/TaintedPath.js:48:29:48:58 | pathMod ... ath, z) | contextFunctionInterfaces | views_local(req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:48:29:48:58 | pathMod ... ath, z) | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:48:29:48:58 | pathMod ... ath, z) | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path res write fs readFileSync /home/user/ path path startsWith /home/user/ res write fs readFileSync path path indexOf secret 1 res write fs readFileSync path fs existsSync path res write fs readFileSync path path foo.txt res write fs readFileSync path path foo.txt path bar.txt res write fs readFileSync path path foo.txt path bar.txt someOpaqueCondition res write fs readFileSync path path sanitize path res write fs readFileSync path path url parse req url true query path res write fs readFileSync pathModule basename path res write fs readFileSync pathModule dirname path res write fs readFileSync pathModule extname path res write fs readFileSync pathModule join path res write fs readFileSync pathModule join x y path z res write fs readFileSync pathModule normalize path res write fs readFileSync pathModule relative x path res write fs readFileSync pathModule relative path x res write fs readFileSync pathModule resolve path res write fs readFileSync pathModule resolve x y path z res write fs readFileSync pathModule toNamespacedPath path |
-| autogenerated/TaintedPath/TaintedPath.js:48:29:48:58 | pathMod ... ath, z) | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:48:29:48:58 | pathMod ... ath, z) | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
-| autogenerated/TaintedPath/TaintedPath.js:48:29:48:58 | pathMod ... ath, z) | receiverName | fs |
-| autogenerated/TaintedPath/TaintedPath.js:48:29:48:58 | pathMod ... ath, z) | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/TaintedPath.js:50:29:50:54 | pathMod ... e(path) | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/TaintedPath.js:50:29:50:54 | pathMod ... e(path) | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/TaintedPath.js:50:29:50:54 | pathMod ... e(path) | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/TaintedPath.js:50:29:50:54 | pathMod ... e(path) | assignedToPropName |  |
-| autogenerated/TaintedPath/TaintedPath.js:50:29:50:54 | pathMod ... e(path) | calleeImports | fs |
-| autogenerated/TaintedPath/TaintedPath.js:50:29:50:54 | pathMod ... e(path) | contextFunctionInterfaces | views_local(req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:50:29:50:54 | pathMod ... e(path) | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:50:29:50:54 | pathMod ... e(path) | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path res write fs readFileSync /home/user/ path path startsWith /home/user/ res write fs readFileSync path path indexOf secret 1 res write fs readFileSync path fs existsSync path res write fs readFileSync path path foo.txt res write fs readFileSync path path foo.txt path bar.txt res write fs readFileSync path path foo.txt path bar.txt someOpaqueCondition res write fs readFileSync path path sanitize path res write fs readFileSync path path url parse req url true query path res write fs readFileSync pathModule basename path res write fs readFileSync pathModule dirname path res write fs readFileSync pathModule extname path res write fs readFileSync pathModule join path res write fs readFileSync pathModule join x y path z res write fs readFileSync pathModule normalize path res write fs readFileSync pathModule relative x path res write fs readFileSync pathModule relative path x res write fs readFileSync pathModule resolve path res write fs readFileSync pathModule resolve x y path z res write fs readFileSync pathModule toNamespacedPath path |
-| autogenerated/TaintedPath/TaintedPath.js:50:29:50:54 | pathMod ... e(path) | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:50:29:50:54 | pathMod ... e(path) | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
-| autogenerated/TaintedPath/TaintedPath.js:50:29:50:54 | pathMod ... e(path) | receiverName | fs |
-| autogenerated/TaintedPath/TaintedPath.js:50:29:50:54 | pathMod ... e(path) | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/TaintedPath.js:52:29:52:56 | pathMod ... , path) | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/TaintedPath.js:52:29:52:56 | pathMod ... , path) | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/TaintedPath.js:52:29:52:56 | pathMod ... , path) | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/TaintedPath.js:52:29:52:56 | pathMod ... , path) | assignedToPropName |  |
-| autogenerated/TaintedPath/TaintedPath.js:52:29:52:56 | pathMod ... , path) | calleeImports | fs |
-| autogenerated/TaintedPath/TaintedPath.js:52:29:52:56 | pathMod ... , path) | contextFunctionInterfaces | views_local(req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:52:29:52:56 | pathMod ... , path) | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:52:29:52:56 | pathMod ... , path) | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path res write fs readFileSync /home/user/ path path startsWith /home/user/ res write fs readFileSync path path indexOf secret 1 res write fs readFileSync path fs existsSync path res write fs readFileSync path path foo.txt res write fs readFileSync path path foo.txt path bar.txt res write fs readFileSync path path foo.txt path bar.txt someOpaqueCondition res write fs readFileSync path path sanitize path res write fs readFileSync path path url parse req url true query path res write fs readFileSync pathModule basename path res write fs readFileSync pathModule dirname path res write fs readFileSync pathModule extname path res write fs readFileSync pathModule join path res write fs readFileSync pathModule join x y path z res write fs readFileSync pathModule normalize path res write fs readFileSync pathModule relative x path res write fs readFileSync pathModule relative path x res write fs readFileSync pathModule resolve path res write fs readFileSync pathModule resolve x y path z res write fs readFileSync pathModule toNamespacedPath path |
-| autogenerated/TaintedPath/TaintedPath.js:52:29:52:56 | pathMod ... , path) | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:52:29:52:56 | pathMod ... , path) | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
-| autogenerated/TaintedPath/TaintedPath.js:52:29:52:56 | pathMod ... , path) | receiverName | fs |
-| autogenerated/TaintedPath/TaintedPath.js:52:29:52:56 | pathMod ... , path) | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/TaintedPath.js:54:29:54:56 | pathMod ... ath, x) | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/TaintedPath.js:54:29:54:56 | pathMod ... ath, x) | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/TaintedPath.js:54:29:54:56 | pathMod ... ath, x) | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/TaintedPath.js:54:29:54:56 | pathMod ... ath, x) | assignedToPropName |  |
-| autogenerated/TaintedPath/TaintedPath.js:54:29:54:56 | pathMod ... ath, x) | calleeImports | fs |
-| autogenerated/TaintedPath/TaintedPath.js:54:29:54:56 | pathMod ... ath, x) | contextFunctionInterfaces | views_local(req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:54:29:54:56 | pathMod ... ath, x) | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:54:29:54:56 | pathMod ... ath, x) | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path res write fs readFileSync /home/user/ path path startsWith /home/user/ res write fs readFileSync path path indexOf secret 1 res write fs readFileSync path fs existsSync path res write fs readFileSync path path foo.txt res write fs readFileSync path path foo.txt path bar.txt res write fs readFileSync path path foo.txt path bar.txt someOpaqueCondition res write fs readFileSync path path sanitize path res write fs readFileSync path path url parse req url true query path res write fs readFileSync pathModule basename path res write fs readFileSync pathModule dirname path res write fs readFileSync pathModule extname path res write fs readFileSync pathModule join path res write fs readFileSync pathModule join x y path z res write fs readFileSync pathModule normalize path res write fs readFileSync pathModule relative x path res write fs readFileSync pathModule relative path x res write fs readFileSync pathModule resolve path res write fs readFileSync pathModule resolve x y path z res write fs readFileSync pathModule toNamespacedPath path |
-| autogenerated/TaintedPath/TaintedPath.js:54:29:54:56 | pathMod ... ath, x) | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:54:29:54:56 | pathMod ... ath, x) | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
-| autogenerated/TaintedPath/TaintedPath.js:54:29:54:56 | pathMod ... ath, x) | receiverName | fs |
-| autogenerated/TaintedPath/TaintedPath.js:54:29:54:56 | pathMod ... ath, x) | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/TaintedPath.js:56:29:56:52 | pathMod ... e(path) | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/TaintedPath.js:56:29:56:52 | pathMod ... e(path) | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/TaintedPath.js:56:29:56:52 | pathMod ... e(path) | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/TaintedPath.js:56:29:56:52 | pathMod ... e(path) | assignedToPropName |  |
-| autogenerated/TaintedPath/TaintedPath.js:56:29:56:52 | pathMod ... e(path) | calleeImports | fs |
-| autogenerated/TaintedPath/TaintedPath.js:56:29:56:52 | pathMod ... e(path) | contextFunctionInterfaces | views_local(req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:56:29:56:52 | pathMod ... e(path) | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:56:29:56:52 | pathMod ... e(path) | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path res write fs readFileSync /home/user/ path path startsWith /home/user/ res write fs readFileSync path path indexOf secret 1 res write fs readFileSync path fs existsSync path res write fs readFileSync path path foo.txt res write fs readFileSync path path foo.txt path bar.txt res write fs readFileSync path path foo.txt path bar.txt someOpaqueCondition res write fs readFileSync path path sanitize path res write fs readFileSync path path url parse req url true query path res write fs readFileSync pathModule basename path res write fs readFileSync pathModule dirname path res write fs readFileSync pathModule extname path res write fs readFileSync pathModule join path res write fs readFileSync pathModule join x y path z res write fs readFileSync pathModule normalize path res write fs readFileSync pathModule relative x path res write fs readFileSync pathModule relative path x res write fs readFileSync pathModule resolve path res write fs readFileSync pathModule resolve x y path z res write fs readFileSync pathModule toNamespacedPath path |
-| autogenerated/TaintedPath/TaintedPath.js:56:29:56:52 | pathMod ... e(path) | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:56:29:56:52 | pathMod ... e(path) | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
-| autogenerated/TaintedPath/TaintedPath.js:56:29:56:52 | pathMod ... e(path) | receiverName | fs |
-| autogenerated/TaintedPath/TaintedPath.js:56:29:56:52 | pathMod ... e(path) | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/TaintedPath.js:58:29:58:61 | pathMod ... ath, z) | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/TaintedPath.js:58:29:58:61 | pathMod ... ath, z) | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/TaintedPath.js:58:29:58:61 | pathMod ... ath, z) | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/TaintedPath.js:58:29:58:61 | pathMod ... ath, z) | assignedToPropName |  |
-| autogenerated/TaintedPath/TaintedPath.js:58:29:58:61 | pathMod ... ath, z) | calleeImports | fs |
-| autogenerated/TaintedPath/TaintedPath.js:58:29:58:61 | pathMod ... ath, z) | contextFunctionInterfaces | views_local(req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:58:29:58:61 | pathMod ... ath, z) | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:58:29:58:61 | pathMod ... ath, z) | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path res write fs readFileSync /home/user/ path path startsWith /home/user/ res write fs readFileSync path path indexOf secret 1 res write fs readFileSync path fs existsSync path res write fs readFileSync path path foo.txt res write fs readFileSync path path foo.txt path bar.txt res write fs readFileSync path path foo.txt path bar.txt someOpaqueCondition res write fs readFileSync path path sanitize path res write fs readFileSync path path url parse req url true query path res write fs readFileSync pathModule basename path res write fs readFileSync pathModule dirname path res write fs readFileSync pathModule extname path res write fs readFileSync pathModule join path res write fs readFileSync pathModule join x y path z res write fs readFileSync pathModule normalize path res write fs readFileSync pathModule relative x path res write fs readFileSync pathModule relative path x res write fs readFileSync pathModule resolve path res write fs readFileSync pathModule resolve x y path z res write fs readFileSync pathModule toNamespacedPath path |
-| autogenerated/TaintedPath/TaintedPath.js:58:29:58:61 | pathMod ... ath, z) | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:58:29:58:61 | pathMod ... ath, z) | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
-| autogenerated/TaintedPath/TaintedPath.js:58:29:58:61 | pathMod ... ath, z) | receiverName | fs |
-| autogenerated/TaintedPath/TaintedPath.js:58:29:58:61 | pathMod ... ath, z) | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/TaintedPath.js:60:29:60:61 | pathMod ... h(path) | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/TaintedPath.js:60:29:60:61 | pathMod ... h(path) | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/TaintedPath.js:60:29:60:61 | pathMod ... h(path) | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/TaintedPath.js:60:29:60:61 | pathMod ... h(path) | assignedToPropName |  |
-| autogenerated/TaintedPath/TaintedPath.js:60:29:60:61 | pathMod ... h(path) | calleeImports | fs |
-| autogenerated/TaintedPath/TaintedPath.js:60:29:60:61 | pathMod ... h(path) | contextFunctionInterfaces | views_local(req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:60:29:60:61 | pathMod ... h(path) | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:60:29:60:61 | pathMod ... h(path) | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path res write fs readFileSync /home/user/ path path startsWith /home/user/ res write fs readFileSync path path indexOf secret 1 res write fs readFileSync path fs existsSync path res write fs readFileSync path path foo.txt res write fs readFileSync path path foo.txt path bar.txt res write fs readFileSync path path foo.txt path bar.txt someOpaqueCondition res write fs readFileSync path path sanitize path res write fs readFileSync path path url parse req url true query path res write fs readFileSync pathModule basename path res write fs readFileSync pathModule dirname path res write fs readFileSync pathModule extname path res write fs readFileSync pathModule join path res write fs readFileSync pathModule join x y path z res write fs readFileSync pathModule normalize path res write fs readFileSync pathModule relative x path res write fs readFileSync pathModule relative path x res write fs readFileSync pathModule resolve path res write fs readFileSync pathModule resolve x y path z res write fs readFileSync pathModule toNamespacedPath path |
-| autogenerated/TaintedPath/TaintedPath.js:60:29:60:61 | pathMod ... h(path) | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:60:29:60:61 | pathMod ... h(path) | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
-| autogenerated/TaintedPath/TaintedPath.js:60:29:60:61 | pathMod ... h(path) | receiverName | fs |
-| autogenerated/TaintedPath/TaintedPath.js:60:29:60:61 | pathMod ... h(path) | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/TaintedPath.js:63:16:63:22 | 'myApp' | CalleeFlexibleAccessPath | angular.module |
-| autogenerated/TaintedPath/TaintedPath.js:63:16:63:22 | 'myApp' | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/TaintedPath.js:63:16:63:22 | 'myApp' | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/TaintedPath.js:63:16:63:22 | 'myApp' | assignedToPropName |  |
-| autogenerated/TaintedPath/TaintedPath.js:63:16:63:22 | 'myApp' | calleeImports |  |
-| autogenerated/TaintedPath/TaintedPath.js:63:16:63:22 | 'myApp' | contextFunctionInterfaces | views_local(req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:63:16:63:22 | 'myApp' | contextSurroundingFunctionParameters |  |
-| autogenerated/TaintedPath/TaintedPath.js:63:16:63:22 | 'myApp' | enclosingFunctionBody |  |
-| autogenerated/TaintedPath/TaintedPath.js:63:16:63:22 | 'myApp' | enclosingFunctionName |  |
-| autogenerated/TaintedPath/TaintedPath.js:63:16:63:22 | 'myApp' | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
-| autogenerated/TaintedPath/TaintedPath.js:63:16:63:22 | 'myApp' | receiverName | angular |
-| autogenerated/TaintedPath/TaintedPath.js:63:16:63:22 | 'myApp' | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/TaintedPath.js:63:25:63:26 | [] | CalleeFlexibleAccessPath | angular.module |
-| autogenerated/TaintedPath/TaintedPath.js:63:25:63:26 | [] | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/TaintedPath.js:63:25:63:26 | [] | InputArgumentIndex | 1 |
-| autogenerated/TaintedPath/TaintedPath.js:63:25:63:26 | [] | assignedToPropName |  |
-| autogenerated/TaintedPath/TaintedPath.js:63:25:63:26 | [] | calleeImports |  |
-| autogenerated/TaintedPath/TaintedPath.js:63:25:63:26 | [] | contextFunctionInterfaces | views_local(req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:63:25:63:26 | [] | contextSurroundingFunctionParameters |  |
-| autogenerated/TaintedPath/TaintedPath.js:63:25:63:26 | [] | enclosingFunctionBody |  |
-| autogenerated/TaintedPath/TaintedPath.js:63:25:63:26 | [] | enclosingFunctionName |  |
-| autogenerated/TaintedPath/TaintedPath.js:63:25:63:26 | [] | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
-| autogenerated/TaintedPath/TaintedPath.js:63:25:63:26 | [] | receiverName | angular |
-| autogenerated/TaintedPath/TaintedPath.js:63:25:63:26 | [] | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/TaintedPath.js:64:16:64:27 | 'myCustomer' | CalleeFlexibleAccessPath | angular.module().directive |
-| autogenerated/TaintedPath/TaintedPath.js:64:16:64:27 | 'myCustomer' | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/TaintedPath.js:64:16:64:27 | 'myCustomer' | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/TaintedPath.js:64:16:64:27 | 'myCustomer' | assignedToPropName |  |
-| autogenerated/TaintedPath/TaintedPath.js:64:16:64:27 | 'myCustomer' | calleeImports |  |
-| autogenerated/TaintedPath/TaintedPath.js:64:16:64:27 | 'myCustomer' | contextFunctionInterfaces | views_local(req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:64:16:64:27 | 'myCustomer' | contextSurroundingFunctionParameters |  |
-| autogenerated/TaintedPath/TaintedPath.js:64:16:64:27 | 'myCustomer' | enclosingFunctionBody |  |
-| autogenerated/TaintedPath/TaintedPath.js:64:16:64:27 | 'myCustomer' | enclosingFunctionName |  |
-| autogenerated/TaintedPath/TaintedPath.js:64:16:64:27 | 'myCustomer' | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
-| autogenerated/TaintedPath/TaintedPath.js:64:16:64:27 | 'myCustomer' | receiverName |  |
-| autogenerated/TaintedPath/TaintedPath.js:64:16:64:27 | 'myCustomer' | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/TaintedPath.js:64:30:68:5 | functio ... }\\n    } | CalleeFlexibleAccessPath | angular.module().directive |
-| autogenerated/TaintedPath/TaintedPath.js:64:30:68:5 | functio ... }\\n    } | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/TaintedPath.js:64:30:68:5 | functio ... }\\n    } | InputArgumentIndex | 1 |
-| autogenerated/TaintedPath/TaintedPath.js:64:30:68:5 | functio ... }\\n    } | assignedToPropName |  |
-| autogenerated/TaintedPath/TaintedPath.js:64:30:68:5 | functio ... }\\n    } | calleeImports |  |
-| autogenerated/TaintedPath/TaintedPath.js:64:30:68:5 | functio ... }\\n    } | contextFunctionInterfaces | views_local(req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:64:30:68:5 | functio ... }\\n    } | contextSurroundingFunctionParameters | () |
-| autogenerated/TaintedPath/TaintedPath.js:64:30:68:5 | functio ... }\\n    } | enclosingFunctionBody |  |
-| autogenerated/TaintedPath/TaintedPath.js:64:30:68:5 | functio ... }\\n    } | enclosingFunctionName |  |
-| autogenerated/TaintedPath/TaintedPath.js:64:30:68:5 | functio ... }\\n    } | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
-| autogenerated/TaintedPath/TaintedPath.js:64:30:68:5 | functio ... }\\n    } | receiverName |  |
-| autogenerated/TaintedPath/TaintedPath.js:64:30:68:5 | functio ... }\\n    } | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/TaintedPath.js:66:26:66:31 | "SAFE" | CalleeFlexibleAccessPath |  |
-| autogenerated/TaintedPath/TaintedPath.js:66:26:66:31 | "SAFE" | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/TaintedPath.js:66:26:66:31 | "SAFE" | InputArgumentIndex |  |
-| autogenerated/TaintedPath/TaintedPath.js:66:26:66:31 | "SAFE" | assignedToPropName | templateUrl |
-| autogenerated/TaintedPath/TaintedPath.js:66:26:66:31 | "SAFE" | calleeImports |  |
-| autogenerated/TaintedPath/TaintedPath.js:66:26:66:31 | "SAFE" | contextFunctionInterfaces | views_local(req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:66:26:66:31 | "SAFE" | contextSurroundingFunctionParameters | () |
-| autogenerated/TaintedPath/TaintedPath.js:66:26:66:31 | "SAFE" | enclosingFunctionBody | templateUrl SAFE |
-| autogenerated/TaintedPath/TaintedPath.js:66:26:66:31 | "SAFE" | enclosingFunctionName | directive#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:66:26:66:31 | "SAFE" | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
-| autogenerated/TaintedPath/TaintedPath.js:66:26:66:31 | "SAFE" | receiverName |  |
-| autogenerated/TaintedPath/TaintedPath.js:66:26:66:31 | "SAFE" | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/TaintedPath.js:69:16:69:27 | 'myCustomer' | CalleeFlexibleAccessPath | angular.module().directive().directive |
-| autogenerated/TaintedPath/TaintedPath.js:69:16:69:27 | 'myCustomer' | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/TaintedPath.js:69:16:69:27 | 'myCustomer' | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/TaintedPath.js:69:16:69:27 | 'myCustomer' | assignedToPropName |  |
-| autogenerated/TaintedPath/TaintedPath.js:69:16:69:27 | 'myCustomer' | calleeImports |  |
-| autogenerated/TaintedPath/TaintedPath.js:69:16:69:27 | 'myCustomer' | contextFunctionInterfaces | views_local(req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:69:16:69:27 | 'myCustomer' | contextSurroundingFunctionParameters |  |
-| autogenerated/TaintedPath/TaintedPath.js:69:16:69:27 | 'myCustomer' | enclosingFunctionBody |  |
-| autogenerated/TaintedPath/TaintedPath.js:69:16:69:27 | 'myCustomer' | enclosingFunctionName |  |
-| autogenerated/TaintedPath/TaintedPath.js:69:16:69:27 | 'myCustomer' | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
-| autogenerated/TaintedPath/TaintedPath.js:69:16:69:27 | 'myCustomer' | receiverName |  |
-| autogenerated/TaintedPath/TaintedPath.js:69:16:69:27 | 'myCustomer' | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/TaintedPath.js:69:30:73:5 | functio ... }\\n    } | CalleeFlexibleAccessPath | angular.module().directive().directive |
-| autogenerated/TaintedPath/TaintedPath.js:69:30:73:5 | functio ... }\\n    } | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/TaintedPath.js:69:30:73:5 | functio ... }\\n    } | InputArgumentIndex | 1 |
-| autogenerated/TaintedPath/TaintedPath.js:69:30:73:5 | functio ... }\\n    } | assignedToPropName |  |
-| autogenerated/TaintedPath/TaintedPath.js:69:30:73:5 | functio ... }\\n    } | calleeImports |  |
-| autogenerated/TaintedPath/TaintedPath.js:69:30:73:5 | functio ... }\\n    } | contextFunctionInterfaces | views_local(req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:69:30:73:5 | functio ... }\\n    } | contextSurroundingFunctionParameters | () |
-| autogenerated/TaintedPath/TaintedPath.js:69:30:73:5 | functio ... }\\n    } | enclosingFunctionBody |  |
-| autogenerated/TaintedPath/TaintedPath.js:69:30:73:5 | functio ... }\\n    } | enclosingFunctionName |  |
-| autogenerated/TaintedPath/TaintedPath.js:69:30:73:5 | functio ... }\\n    } | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
-| autogenerated/TaintedPath/TaintedPath.js:69:30:73:5 | functio ... }\\n    } | receiverName |  |
-| autogenerated/TaintedPath/TaintedPath.js:69:30:73:5 | functio ... }\\n    } | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/TaintedPath.js:71:26:71:45 | Cookie.get("unsafe") | CalleeFlexibleAccessPath |  |
-| autogenerated/TaintedPath/TaintedPath.js:71:26:71:45 | Cookie.get("unsafe") | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/TaintedPath.js:71:26:71:45 | Cookie.get("unsafe") | InputArgumentIndex |  |
-| autogenerated/TaintedPath/TaintedPath.js:71:26:71:45 | Cookie.get("unsafe") | assignedToPropName | templateUrl |
-| autogenerated/TaintedPath/TaintedPath.js:71:26:71:45 | Cookie.get("unsafe") | calleeImports |  |
-| autogenerated/TaintedPath/TaintedPath.js:71:26:71:45 | Cookie.get("unsafe") | contextFunctionInterfaces | views_local(req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:71:26:71:45 | Cookie.get("unsafe") | contextSurroundingFunctionParameters | () |
-| autogenerated/TaintedPath/TaintedPath.js:71:26:71:45 | Cookie.get("unsafe") | enclosingFunctionBody | templateUrl Cookie get unsafe |
-| autogenerated/TaintedPath/TaintedPath.js:71:26:71:45 | Cookie.get("unsafe") | enclosingFunctionName | directive#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:71:26:71:45 | Cookie.get("unsafe") | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
-| autogenerated/TaintedPath/TaintedPath.js:71:26:71:45 | Cookie.get("unsafe") | receiverName |  |
-| autogenerated/TaintedPath/TaintedPath.js:71:26:71:45 | Cookie.get("unsafe") | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/TaintedPath.js:71:37:71:44 | "unsafe" | CalleeFlexibleAccessPath | Cookie.get |
-| autogenerated/TaintedPath/TaintedPath.js:71:37:71:44 | "unsafe" | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/TaintedPath.js:71:37:71:44 | "unsafe" | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/TaintedPath.js:71:37:71:44 | "unsafe" | assignedToPropName |  |
-| autogenerated/TaintedPath/TaintedPath.js:71:37:71:44 | "unsafe" | calleeImports |  |
-| autogenerated/TaintedPath/TaintedPath.js:71:37:71:44 | "unsafe" | contextFunctionInterfaces | views_local(req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:71:37:71:44 | "unsafe" | contextSurroundingFunctionParameters | () |
-| autogenerated/TaintedPath/TaintedPath.js:71:37:71:44 | "unsafe" | enclosingFunctionBody | templateUrl Cookie get unsafe |
-| autogenerated/TaintedPath/TaintedPath.js:71:37:71:44 | "unsafe" | enclosingFunctionName | directive#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:71:37:71:44 | "unsafe" | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
-| autogenerated/TaintedPath/TaintedPath.js:71:37:71:44 | "unsafe" | receiverName | Cookie |
-| autogenerated/TaintedPath/TaintedPath.js:71:37:71:44 | "unsafe" | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/TaintedPath.js:75:32:80:1 | functio ... OT OK\\n} | CalleeFlexibleAccessPath | http.createServer |
-| autogenerated/TaintedPath/TaintedPath.js:75:32:80:1 | functio ... OT OK\\n} | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/TaintedPath.js:75:32:80:1 | functio ... OT OK\\n} | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/TaintedPath.js:75:32:80:1 | functio ... OT OK\\n} | assignedToPropName |  |
-| autogenerated/TaintedPath/TaintedPath.js:75:32:80:1 | functio ... OT OK\\n} | calleeImports | http |
-| autogenerated/TaintedPath/TaintedPath.js:75:32:80:1 | functio ... OT OK\\n} | contextFunctionInterfaces | views_local(req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:75:32:80:1 | functio ... OT OK\\n} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:75:32:80:1 | functio ... OT OK\\n} | enclosingFunctionBody |  |
-| autogenerated/TaintedPath/TaintedPath.js:75:32:80:1 | functio ... OT OK\\n} | enclosingFunctionName |  |
-| autogenerated/TaintedPath/TaintedPath.js:75:32:80:1 | functio ... OT OK\\n} | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
-| autogenerated/TaintedPath/TaintedPath.js:75:32:80:1 | functio ... OT OK\\n} | receiverName | http |
-| autogenerated/TaintedPath/TaintedPath.js:75:32:80:1 | functio ... OT OK\\n} | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/TaintedPath.js:77:31:77:76 | require ... ).query | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/TaintedPath.js:77:31:77:76 | require ... ).query | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/TaintedPath.js:77:31:77:76 | require ... ).query | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/TaintedPath.js:77:31:77:76 | require ... ).query | assignedToPropName |  |
-| autogenerated/TaintedPath/TaintedPath.js:77:31:77:76 | require ... ).query | calleeImports | fs |
-| autogenerated/TaintedPath/TaintedPath.js:77:31:77:76 | require ... ).query | contextFunctionInterfaces | views_local(req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:77:31:77:76 | require ... ).query | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:77:31:77:76 | require ... ).query | enclosingFunctionBody | req res res write fs readFileSync require querystringify parse req url query res write fs readFileSync require query-string parse req url query res write fs readFileSync require querystring parse req url query |
-| autogenerated/TaintedPath/TaintedPath.js:77:31:77:76 | require ... ).query | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:77:31:77:76 | require ... ).query | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
-| autogenerated/TaintedPath/TaintedPath.js:77:31:77:76 | require ... ).query | receiverName | fs |
-| autogenerated/TaintedPath/TaintedPath.js:77:31:77:76 | require ... ).query | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/TaintedPath.js:77:39:77:54 | "querystringify" | CalleeFlexibleAccessPath | require |
-| autogenerated/TaintedPath/TaintedPath.js:77:39:77:54 | "querystringify" | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/TaintedPath.js:77:39:77:54 | "querystringify" | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/TaintedPath.js:77:39:77:54 | "querystringify" | assignedToPropName |  |
-| autogenerated/TaintedPath/TaintedPath.js:77:39:77:54 | "querystringify" | calleeImports |  |
-| autogenerated/TaintedPath/TaintedPath.js:77:39:77:54 | "querystringify" | contextFunctionInterfaces | views_local(req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:77:39:77:54 | "querystringify" | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:77:39:77:54 | "querystringify" | enclosingFunctionBody | req res res write fs readFileSync require querystringify parse req url query res write fs readFileSync require query-string parse req url query res write fs readFileSync require querystring parse req url query |
-| autogenerated/TaintedPath/TaintedPath.js:77:39:77:54 | "querystringify" | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:77:39:77:54 | "querystringify" | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
-| autogenerated/TaintedPath/TaintedPath.js:77:39:77:54 | "querystringify" | receiverName |  |
-| autogenerated/TaintedPath/TaintedPath.js:77:39:77:54 | "querystringify" | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/TaintedPath.js:78:31:78:74 | require ... ).query | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/TaintedPath.js:78:31:78:74 | require ... ).query | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/TaintedPath.js:78:31:78:74 | require ... ).query | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/TaintedPath.js:78:31:78:74 | require ... ).query | assignedToPropName |  |
-| autogenerated/TaintedPath/TaintedPath.js:78:31:78:74 | require ... ).query | calleeImports | fs |
-| autogenerated/TaintedPath/TaintedPath.js:78:31:78:74 | require ... ).query | contextFunctionInterfaces | views_local(req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:78:31:78:74 | require ... ).query | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:78:31:78:74 | require ... ).query | enclosingFunctionBody | req res res write fs readFileSync require querystringify parse req url query res write fs readFileSync require query-string parse req url query res write fs readFileSync require querystring parse req url query |
-| autogenerated/TaintedPath/TaintedPath.js:78:31:78:74 | require ... ).query | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:78:31:78:74 | require ... ).query | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
-| autogenerated/TaintedPath/TaintedPath.js:78:31:78:74 | require ... ).query | receiverName | fs |
-| autogenerated/TaintedPath/TaintedPath.js:78:31:78:74 | require ... ).query | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/TaintedPath.js:78:39:78:52 | "query-string" | CalleeFlexibleAccessPath | require |
-| autogenerated/TaintedPath/TaintedPath.js:78:39:78:52 | "query-string" | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/TaintedPath.js:78:39:78:52 | "query-string" | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/TaintedPath.js:78:39:78:52 | "query-string" | assignedToPropName |  |
-| autogenerated/TaintedPath/TaintedPath.js:78:39:78:52 | "query-string" | calleeImports |  |
-| autogenerated/TaintedPath/TaintedPath.js:78:39:78:52 | "query-string" | contextFunctionInterfaces | views_local(req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:78:39:78:52 | "query-string" | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:78:39:78:52 | "query-string" | enclosingFunctionBody | req res res write fs readFileSync require querystringify parse req url query res write fs readFileSync require query-string parse req url query res write fs readFileSync require querystring parse req url query |
-| autogenerated/TaintedPath/TaintedPath.js:78:39:78:52 | "query-string" | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:78:39:78:52 | "query-string" | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
-| autogenerated/TaintedPath/TaintedPath.js:78:39:78:52 | "query-string" | receiverName |  |
-| autogenerated/TaintedPath/TaintedPath.js:78:39:78:52 | "query-string" | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/TaintedPath.js:79:31:79:73 | require ... ).query | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/TaintedPath.js:79:31:79:73 | require ... ).query | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/TaintedPath.js:79:31:79:73 | require ... ).query | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/TaintedPath.js:79:31:79:73 | require ... ).query | assignedToPropName |  |
-| autogenerated/TaintedPath/TaintedPath.js:79:31:79:73 | require ... ).query | calleeImports | fs |
-| autogenerated/TaintedPath/TaintedPath.js:79:31:79:73 | require ... ).query | contextFunctionInterfaces | views_local(req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:79:31:79:73 | require ... ).query | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:79:31:79:73 | require ... ).query | enclosingFunctionBody | req res res write fs readFileSync require querystringify parse req url query res write fs readFileSync require query-string parse req url query res write fs readFileSync require querystring parse req url query |
-| autogenerated/TaintedPath/TaintedPath.js:79:31:79:73 | require ... ).query | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:79:31:79:73 | require ... ).query | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
-| autogenerated/TaintedPath/TaintedPath.js:79:31:79:73 | require ... ).query | receiverName | fs |
-| autogenerated/TaintedPath/TaintedPath.js:79:31:79:73 | require ... ).query | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/TaintedPath.js:79:39:79:51 | "querystring" | CalleeFlexibleAccessPath | require |
-| autogenerated/TaintedPath/TaintedPath.js:79:39:79:51 | "querystring" | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/TaintedPath.js:79:39:79:51 | "querystring" | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/TaintedPath.js:79:39:79:51 | "querystring" | assignedToPropName |  |
-| autogenerated/TaintedPath/TaintedPath.js:79:39:79:51 | "querystring" | calleeImports |  |
-| autogenerated/TaintedPath/TaintedPath.js:79:39:79:51 | "querystring" | contextFunctionInterfaces | views_local(req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:79:39:79:51 | "querystring" | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:79:39:79:51 | "querystring" | enclosingFunctionBody | req res res write fs readFileSync require querystringify parse req url query res write fs readFileSync require query-string parse req url query res write fs readFileSync require querystring parse req url query |
-| autogenerated/TaintedPath/TaintedPath.js:79:39:79:51 | "querystring" | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:79:39:79:51 | "querystring" | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
-| autogenerated/TaintedPath/TaintedPath.js:79:39:79:51 | "querystring" | receiverName |  |
-| autogenerated/TaintedPath/TaintedPath.js:79:39:79:51 | "querystring" | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/TaintedPath.js:84:27:84:35 | 'express' | CalleeFlexibleAccessPath | require |
-| autogenerated/TaintedPath/TaintedPath.js:84:27:84:35 | 'express' | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/TaintedPath.js:84:27:84:35 | 'express' | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/TaintedPath.js:84:27:84:35 | 'express' | assignedToPropName |  |
-| autogenerated/TaintedPath/TaintedPath.js:84:27:84:35 | 'express' | calleeImports |  |
-| autogenerated/TaintedPath/TaintedPath.js:84:27:84:35 | 'express' | contextFunctionInterfaces | views_local(req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:84:27:84:35 | 'express' | contextSurroundingFunctionParameters | () |
-| autogenerated/TaintedPath/TaintedPath.js:84:27:84:35 | 'express' | enclosingFunctionBody | express require express application express views_local req res res render req 0 params 0 application get /views/* views_local views_imported require ./views application get /views/* views_imported |
-| autogenerated/TaintedPath/TaintedPath.js:84:27:84:35 | 'express' | enclosingFunctionName |  |
-| autogenerated/TaintedPath/TaintedPath.js:84:27:84:35 | 'express' | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
-| autogenerated/TaintedPath/TaintedPath.js:84:27:84:35 | 'express' | receiverName |  |
-| autogenerated/TaintedPath/TaintedPath.js:84:27:84:35 | 'express' | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/TaintedPath.js:87:48:87:60 | req.params[0] | CalleeFlexibleAccessPath | res.render |
-| autogenerated/TaintedPath/TaintedPath.js:87:48:87:60 | req.params[0] | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/TaintedPath.js:87:48:87:60 | req.params[0] | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/TaintedPath.js:87:48:87:60 | req.params[0] | assignedToPropName |  |
-| autogenerated/TaintedPath/TaintedPath.js:87:48:87:60 | req.params[0] | calleeImports |  |
-| autogenerated/TaintedPath/TaintedPath.js:87:48:87:60 | req.params[0] | contextFunctionInterfaces | views_local(req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:87:48:87:60 | req.params[0] | contextSurroundingFunctionParameters | ()\n(req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:87:48:87:60 | req.params[0] | enclosingFunctionBody | express require express application express views_local req res res render req 0 params 0 application get /views/* views_local views_imported require ./views application get /views/* views_imported |
-| autogenerated/TaintedPath/TaintedPath.js:87:48:87:60 | req.params[0] | enclosingFunctionName |  |
-| autogenerated/TaintedPath/TaintedPath.js:87:48:87:60 | req.params[0] | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
-| autogenerated/TaintedPath/TaintedPath.js:87:48:87:60 | req.params[0] | receiverName | res |
-| autogenerated/TaintedPath/TaintedPath.js:87:48:87:60 | req.params[0] | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/TaintedPath.js:88:21:88:30 | '/views/*' | CalleeFlexibleAccessPath | application.get |
-| autogenerated/TaintedPath/TaintedPath.js:88:21:88:30 | '/views/*' | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/TaintedPath.js:88:21:88:30 | '/views/*' | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/TaintedPath.js:88:21:88:30 | '/views/*' | assignedToPropName |  |
-| autogenerated/TaintedPath/TaintedPath.js:88:21:88:30 | '/views/*' | calleeImports | express |
-| autogenerated/TaintedPath/TaintedPath.js:88:21:88:30 | '/views/*' | contextFunctionInterfaces | views_local(req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:88:21:88:30 | '/views/*' | contextSurroundingFunctionParameters | () |
-| autogenerated/TaintedPath/TaintedPath.js:88:21:88:30 | '/views/*' | enclosingFunctionBody | express require express application express views_local req res res render req 0 params 0 application get /views/* views_local views_imported require ./views application get /views/* views_imported |
-| autogenerated/TaintedPath/TaintedPath.js:88:21:88:30 | '/views/*' | enclosingFunctionName |  |
-| autogenerated/TaintedPath/TaintedPath.js:88:21:88:30 | '/views/*' | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
-| autogenerated/TaintedPath/TaintedPath.js:88:21:88:30 | '/views/*' | receiverName | application |
-| autogenerated/TaintedPath/TaintedPath.js:88:21:88:30 | '/views/*' | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/TaintedPath.js:88:33:88:43 | views_local | CalleeFlexibleAccessPath | application.get |
-| autogenerated/TaintedPath/TaintedPath.js:88:33:88:43 | views_local | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/TaintedPath.js:88:33:88:43 | views_local | InputArgumentIndex | 1 |
-| autogenerated/TaintedPath/TaintedPath.js:88:33:88:43 | views_local | assignedToPropName |  |
-| autogenerated/TaintedPath/TaintedPath.js:88:33:88:43 | views_local | calleeImports | express |
-| autogenerated/TaintedPath/TaintedPath.js:88:33:88:43 | views_local | contextFunctionInterfaces | views_local(req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:88:33:88:43 | views_local | contextSurroundingFunctionParameters | () |
-| autogenerated/TaintedPath/TaintedPath.js:88:33:88:43 | views_local | enclosingFunctionBody | express require express application express views_local req res res render req 0 params 0 application get /views/* views_local views_imported require ./views application get /views/* views_imported |
-| autogenerated/TaintedPath/TaintedPath.js:88:33:88:43 | views_local | enclosingFunctionName |  |
-| autogenerated/TaintedPath/TaintedPath.js:88:33:88:43 | views_local | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
-| autogenerated/TaintedPath/TaintedPath.js:88:33:88:43 | views_local | receiverName | application |
-| autogenerated/TaintedPath/TaintedPath.js:88:33:88:43 | views_local | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/TaintedPath.js:90:34:90:42 | "./views" | CalleeFlexibleAccessPath | require |
-| autogenerated/TaintedPath/TaintedPath.js:90:34:90:42 | "./views" | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/TaintedPath.js:90:34:90:42 | "./views" | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/TaintedPath.js:90:34:90:42 | "./views" | assignedToPropName |  |
-| autogenerated/TaintedPath/TaintedPath.js:90:34:90:42 | "./views" | calleeImports |  |
-| autogenerated/TaintedPath/TaintedPath.js:90:34:90:42 | "./views" | contextFunctionInterfaces | views_local(req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:90:34:90:42 | "./views" | contextSurroundingFunctionParameters | () |
-| autogenerated/TaintedPath/TaintedPath.js:90:34:90:42 | "./views" | enclosingFunctionBody | express require express application express views_local req res res render req 0 params 0 application get /views/* views_local views_imported require ./views application get /views/* views_imported |
-| autogenerated/TaintedPath/TaintedPath.js:90:34:90:42 | "./views" | enclosingFunctionName |  |
-| autogenerated/TaintedPath/TaintedPath.js:90:34:90:42 | "./views" | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
-| autogenerated/TaintedPath/TaintedPath.js:90:34:90:42 | "./views" | receiverName |  |
-| autogenerated/TaintedPath/TaintedPath.js:90:34:90:42 | "./views" | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/TaintedPath.js:91:21:91:30 | '/views/*' | CalleeFlexibleAccessPath | application.get |
-| autogenerated/TaintedPath/TaintedPath.js:91:21:91:30 | '/views/*' | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/TaintedPath.js:91:21:91:30 | '/views/*' | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/TaintedPath.js:91:21:91:30 | '/views/*' | assignedToPropName |  |
-| autogenerated/TaintedPath/TaintedPath.js:91:21:91:30 | '/views/*' | calleeImports | express |
-| autogenerated/TaintedPath/TaintedPath.js:91:21:91:30 | '/views/*' | contextFunctionInterfaces | views_local(req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:91:21:91:30 | '/views/*' | contextSurroundingFunctionParameters | () |
-| autogenerated/TaintedPath/TaintedPath.js:91:21:91:30 | '/views/*' | enclosingFunctionBody | express require express application express views_local req res res render req 0 params 0 application get /views/* views_local views_imported require ./views application get /views/* views_imported |
-| autogenerated/TaintedPath/TaintedPath.js:91:21:91:30 | '/views/*' | enclosingFunctionName |  |
-| autogenerated/TaintedPath/TaintedPath.js:91:21:91:30 | '/views/*' | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
-| autogenerated/TaintedPath/TaintedPath.js:91:21:91:30 | '/views/*' | receiverName | application |
-| autogenerated/TaintedPath/TaintedPath.js:91:21:91:30 | '/views/*' | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/TaintedPath.js:91:33:91:46 | views_imported | CalleeFlexibleAccessPath | application.get |
-| autogenerated/TaintedPath/TaintedPath.js:91:33:91:46 | views_imported | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/TaintedPath.js:91:33:91:46 | views_imported | InputArgumentIndex | 1 |
-| autogenerated/TaintedPath/TaintedPath.js:91:33:91:46 | views_imported | assignedToPropName |  |
-| autogenerated/TaintedPath/TaintedPath.js:91:33:91:46 | views_imported | calleeImports | express |
-| autogenerated/TaintedPath/TaintedPath.js:91:33:91:46 | views_imported | contextFunctionInterfaces | views_local(req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:91:33:91:46 | views_imported | contextSurroundingFunctionParameters | () |
-| autogenerated/TaintedPath/TaintedPath.js:91:33:91:46 | views_imported | enclosingFunctionBody | express require express application express views_local req res res render req 0 params 0 application get /views/* views_local views_imported require ./views application get /views/* views_imported |
-| autogenerated/TaintedPath/TaintedPath.js:91:33:91:46 | views_imported | enclosingFunctionName |  |
-| autogenerated/TaintedPath/TaintedPath.js:91:33:91:46 | views_imported | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
-| autogenerated/TaintedPath/TaintedPath.js:91:33:91:46 | views_imported | receiverName | application |
-| autogenerated/TaintedPath/TaintedPath.js:91:33:91:46 | views_imported | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/TaintedPath.js:95:18:95:26 | 'message' | CalleeFlexibleAccessPath | addEventListener |
-| autogenerated/TaintedPath/TaintedPath.js:95:18:95:26 | 'message' | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/TaintedPath.js:95:18:95:26 | 'message' | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/TaintedPath.js:95:18:95:26 | 'message' | assignedToPropName |  |
-| autogenerated/TaintedPath/TaintedPath.js:95:18:95:26 | 'message' | calleeImports |  |
-| autogenerated/TaintedPath/TaintedPath.js:95:18:95:26 | 'message' | contextFunctionInterfaces | views_local(req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:95:18:95:26 | 'message' | contextSurroundingFunctionParameters |  |
-| autogenerated/TaintedPath/TaintedPath.js:95:18:95:26 | 'message' | enclosingFunctionBody |  |
-| autogenerated/TaintedPath/TaintedPath.js:95:18:95:26 | 'message' | enclosingFunctionName |  |
-| autogenerated/TaintedPath/TaintedPath.js:95:18:95:26 | 'message' | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
-| autogenerated/TaintedPath/TaintedPath.js:95:18:95:26 | 'message' | receiverName |  |
-| autogenerated/TaintedPath/TaintedPath.js:95:18:95:26 | 'message' | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/TaintedPath.js:95:29:97:1 | (ev) => ... ata);\\n} | CalleeFlexibleAccessPath | addEventListener |
-| autogenerated/TaintedPath/TaintedPath.js:95:29:97:1 | (ev) => ... ata);\\n} | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/TaintedPath.js:95:29:97:1 | (ev) => ... ata);\\n} | InputArgumentIndex | 1 |
-| autogenerated/TaintedPath/TaintedPath.js:95:29:97:1 | (ev) => ... ata);\\n} | assignedToPropName |  |
-| autogenerated/TaintedPath/TaintedPath.js:95:29:97:1 | (ev) => ... ata);\\n} | calleeImports |  |
-| autogenerated/TaintedPath/TaintedPath.js:95:29:97:1 | (ev) => ... ata);\\n} | contextFunctionInterfaces | views_local(req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:95:29:97:1 | (ev) => ... ata);\\n} | contextSurroundingFunctionParameters | (ev) |
-| autogenerated/TaintedPath/TaintedPath.js:95:29:97:1 | (ev) => ... ata);\\n} | enclosingFunctionBody |  |
-| autogenerated/TaintedPath/TaintedPath.js:95:29:97:1 | (ev) => ... ata);\\n} | enclosingFunctionName |  |
-| autogenerated/TaintedPath/TaintedPath.js:95:29:97:1 | (ev) => ... ata);\\n} | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
-| autogenerated/TaintedPath/TaintedPath.js:95:29:97:1 | (ev) => ... ata);\\n} | receiverName |  |
-| autogenerated/TaintedPath/TaintedPath.js:95:29:97:1 | (ev) => ... ata);\\n} | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/TaintedPath.js:99:32:109:1 | functio ...   );\\n\\n} | CalleeFlexibleAccessPath | http.createServer |
-| autogenerated/TaintedPath/TaintedPath.js:99:32:109:1 | functio ...   );\\n\\n} | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/TaintedPath.js:99:32:109:1 | functio ...   );\\n\\n} | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/TaintedPath.js:99:32:109:1 | functio ...   );\\n\\n} | assignedToPropName |  |
-| autogenerated/TaintedPath/TaintedPath.js:99:32:109:1 | functio ...   );\\n\\n} | calleeImports | http |
-| autogenerated/TaintedPath/TaintedPath.js:99:32:109:1 | functio ...   );\\n\\n} | contextFunctionInterfaces | views_local(req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:99:32:109:1 | functio ...   );\\n\\n} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:99:32:109:1 | functio ...   );\\n\\n} | enclosingFunctionBody |  |
-| autogenerated/TaintedPath/TaintedPath.js:99:32:109:1 | functio ...   );\\n\\n} | enclosingFunctionName |  |
-| autogenerated/TaintedPath/TaintedPath.js:99:32:109:1 | functio ...   );\\n\\n} | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
-| autogenerated/TaintedPath/TaintedPath.js:99:32:109:1 | functio ...   );\\n\\n} | receiverName | http |
-| autogenerated/TaintedPath/TaintedPath.js:99:32:109:1 | functio ...   );\\n\\n} | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/TaintedPath.js:102:28:102:48 | fs.real ... c(path) | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/TaintedPath.js:102:28:102:48 | fs.real ... c(path) | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/TaintedPath.js:102:28:102:48 | fs.real ... c(path) | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/TaintedPath.js:102:28:102:48 | fs.real ... c(path) | assignedToPropName |  |
-| autogenerated/TaintedPath/TaintedPath.js:102:28:102:48 | fs.real ... c(path) | calleeImports | fs |
-| autogenerated/TaintedPath/TaintedPath.js:102:28:102:48 | fs.real ... c(path) | contextFunctionInterfaces | views_local(req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:102:28:102:48 | fs.real ... c(path) | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:102:28:102:48 | fs.real ... c(path) | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync fs realpathSync path fs realpath path err realpath res write fs readFileSync realpath |
-| autogenerated/TaintedPath/TaintedPath.js:102:28:102:48 | fs.real ... c(path) | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:102:28:102:48 | fs.real ... c(path) | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
-| autogenerated/TaintedPath/TaintedPath.js:102:28:102:48 | fs.real ... c(path) | receiverName | fs |
-| autogenerated/TaintedPath/TaintedPath.js:102:28:102:48 | fs.real ... c(path) | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/TaintedPath.js:102:44:102:47 | path | CalleeFlexibleAccessPath | fs.realpathSync |
-| autogenerated/TaintedPath/TaintedPath.js:102:44:102:47 | path | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/TaintedPath.js:102:44:102:47 | path | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/TaintedPath.js:102:44:102:47 | path | assignedToPropName |  |
-| autogenerated/TaintedPath/TaintedPath.js:102:44:102:47 | path | calleeImports | fs |
-| autogenerated/TaintedPath/TaintedPath.js:102:44:102:47 | path | contextFunctionInterfaces | views_local(req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:102:44:102:47 | path | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:102:44:102:47 | path | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync fs realpathSync path fs realpath path err realpath res write fs readFileSync realpath |
-| autogenerated/TaintedPath/TaintedPath.js:102:44:102:47 | path | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:102:44:102:47 | path | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
-| autogenerated/TaintedPath/TaintedPath.js:102:44:102:47 | path | receiverName | fs |
-| autogenerated/TaintedPath/TaintedPath.js:102:44:102:47 | path | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/TaintedPath.js:103:14:103:17 | path | CalleeFlexibleAccessPath | fs.realpath |
-| autogenerated/TaintedPath/TaintedPath.js:103:14:103:17 | path | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/TaintedPath.js:103:14:103:17 | path | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/TaintedPath.js:103:14:103:17 | path | assignedToPropName |  |
-| autogenerated/TaintedPath/TaintedPath.js:103:14:103:17 | path | calleeImports | fs |
-| autogenerated/TaintedPath/TaintedPath.js:103:14:103:17 | path | contextFunctionInterfaces | views_local(req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:103:14:103:17 | path | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:103:14:103:17 | path | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync fs realpathSync path fs realpath path err realpath res write fs readFileSync realpath |
-| autogenerated/TaintedPath/TaintedPath.js:103:14:103:17 | path | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:103:14:103:17 | path | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
-| autogenerated/TaintedPath/TaintedPath.js:103:14:103:17 | path | receiverName | fs |
-| autogenerated/TaintedPath/TaintedPath.js:103:14:103:17 | path | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/TaintedPath.js:104:18:106:18 | functio ...       } | CalleeFlexibleAccessPath | fs.realpath |
-| autogenerated/TaintedPath/TaintedPath.js:104:18:106:18 | functio ...       } | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/TaintedPath.js:104:18:106:18 | functio ...       } | InputArgumentIndex | 1 |
-| autogenerated/TaintedPath/TaintedPath.js:104:18:106:18 | functio ...       } | assignedToPropName |  |
-| autogenerated/TaintedPath/TaintedPath.js:104:18:106:18 | functio ...       } | calleeImports | fs |
-| autogenerated/TaintedPath/TaintedPath.js:104:18:106:18 | functio ...       } | contextFunctionInterfaces | views_local(req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:104:18:106:18 | functio ...       } | contextSurroundingFunctionParameters | (req, res)\n(err, realpath) |
-| autogenerated/TaintedPath/TaintedPath.js:104:18:106:18 | functio ...       } | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync fs realpathSync path fs realpath path err realpath res write fs readFileSync realpath |
-| autogenerated/TaintedPath/TaintedPath.js:104:18:106:18 | functio ...       } | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:104:18:106:18 | functio ...       } | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
-| autogenerated/TaintedPath/TaintedPath.js:104:18:106:18 | functio ...       } | receiverName | fs |
-| autogenerated/TaintedPath/TaintedPath.js:104:18:106:18 | functio ...       } | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/TaintedPath.js:105:45:105:52 | realpath | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/TaintedPath.js:105:45:105:52 | realpath | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/TaintedPath.js:105:45:105:52 | realpath | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/TaintedPath.js:105:45:105:52 | realpath | assignedToPropName |  |
-| autogenerated/TaintedPath/TaintedPath.js:105:45:105:52 | realpath | calleeImports | fs |
-| autogenerated/TaintedPath/TaintedPath.js:105:45:105:52 | realpath | contextFunctionInterfaces | views_local(req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:105:45:105:52 | realpath | contextSurroundingFunctionParameters | (req, res)\n(err, realpath) |
-| autogenerated/TaintedPath/TaintedPath.js:105:45:105:52 | realpath | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync fs realpathSync path fs realpath path err realpath res write fs readFileSync realpath |
-| autogenerated/TaintedPath/TaintedPath.js:105:45:105:52 | realpath | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:105:45:105:52 | realpath | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
-| autogenerated/TaintedPath/TaintedPath.js:105:45:105:52 | realpath | receiverName | fs |
-| autogenerated/TaintedPath/TaintedPath.js:105:45:105:52 | realpath | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/TaintedPath.js:111:32:120:1 | functio ... bove.\\n} | CalleeFlexibleAccessPath | http.createServer |
-| autogenerated/TaintedPath/TaintedPath.js:111:32:120:1 | functio ... bove.\\n} | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/TaintedPath.js:111:32:120:1 | functio ... bove.\\n} | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/TaintedPath.js:111:32:120:1 | functio ... bove.\\n} | assignedToPropName |  |
-| autogenerated/TaintedPath/TaintedPath.js:111:32:120:1 | functio ... bove.\\n} | calleeImports | http |
-| autogenerated/TaintedPath/TaintedPath.js:111:32:120:1 | functio ... bove.\\n} | contextFunctionInterfaces | views_local(req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:111:32:120:1 | functio ... bove.\\n} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:111:32:120:1 | functio ... bove.\\n} | enclosingFunctionBody |  |
-| autogenerated/TaintedPath/TaintedPath.js:111:32:120:1 | functio ... bove.\\n} | enclosingFunctionName |  |
-| autogenerated/TaintedPath/TaintedPath.js:111:32:120:1 | functio ... bove.\\n} | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
-| autogenerated/TaintedPath/TaintedPath.js:111:32:120:1 | functio ... bove.\\n} | receiverName | http |
-| autogenerated/TaintedPath/TaintedPath.js:111:32:120:1 | functio ... bove.\\n} | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/TaintedPath.js:115:12:115:51 | path.re ... /g, '') | CalleeFlexibleAccessPath |  |
-| autogenerated/TaintedPath/TaintedPath.js:115:12:115:51 | path.re ... /g, '') | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/TaintedPath.js:115:12:115:51 | path.re ... /g, '') | InputArgumentIndex |  |
-| autogenerated/TaintedPath/TaintedPath.js:115:12:115:51 | path.re ... /g, '') | assignedToPropName |  |
-| autogenerated/TaintedPath/TaintedPath.js:115:12:115:51 | path.re ... /g, '') | calleeImports |  |
-| autogenerated/TaintedPath/TaintedPath.js:115:12:115:51 | path.re ... /g, '') | contextFunctionInterfaces | views_local(req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:115:12:115:51 | path.re ... /g, '') | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:115:12:115:51 | path.re ... /g, '') | enclosingFunctionBody | req res path url parse req url true query path path path path replace /[\\]\\[*,;'"`<>\\\\?\\/]/g  path path replace /\\.\\./g  res write fs readFileSync path |
-| autogenerated/TaintedPath/TaintedPath.js:115:12:115:51 | path.re ... /g, '') | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:115:12:115:51 | path.re ... /g, '') | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
-| autogenerated/TaintedPath/TaintedPath.js:115:12:115:51 | path.re ... /g, '') | receiverName |  |
-| autogenerated/TaintedPath/TaintedPath.js:115:12:115:51 | path.re ... /g, '') | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/TaintedPath.js:116:12:116:36 | path.re ... /g, '') | CalleeFlexibleAccessPath |  |
-| autogenerated/TaintedPath/TaintedPath.js:116:12:116:36 | path.re ... /g, '') | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/TaintedPath.js:116:12:116:36 | path.re ... /g, '') | InputArgumentIndex |  |
-| autogenerated/TaintedPath/TaintedPath.js:116:12:116:36 | path.re ... /g, '') | assignedToPropName |  |
-| autogenerated/TaintedPath/TaintedPath.js:116:12:116:36 | path.re ... /g, '') | calleeImports |  |
-| autogenerated/TaintedPath/TaintedPath.js:116:12:116:36 | path.re ... /g, '') | contextFunctionInterfaces | views_local(req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:116:12:116:36 | path.re ... /g, '') | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:116:12:116:36 | path.re ... /g, '') | enclosingFunctionBody | req res path url parse req url true query path path path path replace /[\\]\\[*,;'"`<>\\\\?\\/]/g  path path replace /\\.\\./g  res write fs readFileSync path |
-| autogenerated/TaintedPath/TaintedPath.js:116:12:116:36 | path.re ... /g, '') | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:116:12:116:36 | path.re ... /g, '') | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
-| autogenerated/TaintedPath/TaintedPath.js:116:12:116:36 | path.re ... /g, '') | receiverName |  |
-| autogenerated/TaintedPath/TaintedPath.js:116:12:116:36 | path.re ... /g, '') | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/TaintedPath.js:119:29:119:32 | path | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/TaintedPath.js:119:29:119:32 | path | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/TaintedPath.js:119:29:119:32 | path | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/TaintedPath.js:119:29:119:32 | path | assignedToPropName |  |
-| autogenerated/TaintedPath/TaintedPath.js:119:29:119:32 | path | calleeImports | fs |
-| autogenerated/TaintedPath/TaintedPath.js:119:29:119:32 | path | contextFunctionInterfaces | views_local(req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:119:29:119:32 | path | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:119:29:119:32 | path | enclosingFunctionBody | req res path url parse req url true query path path path path replace /[\\]\\[*,;'"`<>\\\\?\\/]/g  path path replace /\\.\\./g  res write fs readFileSync path |
-| autogenerated/TaintedPath/TaintedPath.js:119:29:119:32 | path | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:119:29:119:32 | path | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
-| autogenerated/TaintedPath/TaintedPath.js:119:29:119:32 | path | receiverName | fs |
-| autogenerated/TaintedPath/TaintedPath.js:119:29:119:32 | path | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/TaintedPath.js:122:32:133:1 | functio ... bove.\\n} | CalleeFlexibleAccessPath | http.createServer |
-| autogenerated/TaintedPath/TaintedPath.js:122:32:133:1 | functio ... bove.\\n} | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/TaintedPath.js:122:32:133:1 | functio ... bove.\\n} | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/TaintedPath.js:122:32:133:1 | functio ... bove.\\n} | assignedToPropName |  |
-| autogenerated/TaintedPath/TaintedPath.js:122:32:133:1 | functio ... bove.\\n} | calleeImports | http |
-| autogenerated/TaintedPath/TaintedPath.js:122:32:133:1 | functio ... bove.\\n} | contextFunctionInterfaces | views_local(req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:122:32:133:1 | functio ... bove.\\n} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:122:32:133:1 | functio ... bove.\\n} | enclosingFunctionBody |  |
-| autogenerated/TaintedPath/TaintedPath.js:122:32:133:1 | functio ... bove.\\n} | enclosingFunctionName |  |
-| autogenerated/TaintedPath/TaintedPath.js:122:32:133:1 | functio ... bove.\\n} | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
-| autogenerated/TaintedPath/TaintedPath.js:122:32:133:1 | functio ... bove.\\n} | receiverName | http |
-| autogenerated/TaintedPath/TaintedPath.js:122:32:133:1 | functio ... bove.\\n} | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/TaintedPath.js:128:11:128:50 | path.re ... /g, '') | CalleeFlexibleAccessPath |  |
-| autogenerated/TaintedPath/TaintedPath.js:128:11:128:50 | path.re ... /g, '') | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/TaintedPath.js:128:11:128:50 | path.re ... /g, '') | InputArgumentIndex |  |
-| autogenerated/TaintedPath/TaintedPath.js:128:11:128:50 | path.re ... /g, '') | assignedToPropName |  |
-| autogenerated/TaintedPath/TaintedPath.js:128:11:128:50 | path.re ... /g, '') | calleeImports |  |
-| autogenerated/TaintedPath/TaintedPath.js:128:11:128:50 | path.re ... /g, '') | contextFunctionInterfaces | views_local(req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:128:11:128:50 | path.re ... /g, '') | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:128:11:128:50 | path.re ... /g, '') | enclosingFunctionBody | req res path url parse req url true query path path path path replace /[\\]\\[*,;'"`<>\\\\?\\/]/g  path path replace /\\.\\./g  res write fs readFileSync path |
-| autogenerated/TaintedPath/TaintedPath.js:128:11:128:50 | path.re ... /g, '') | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:128:11:128:50 | path.re ... /g, '') | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
-| autogenerated/TaintedPath/TaintedPath.js:128:11:128:50 | path.re ... /g, '') | receiverName |  |
-| autogenerated/TaintedPath/TaintedPath.js:128:11:128:50 | path.re ... /g, '') | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/TaintedPath.js:129:12:129:36 | path.re ... /g, '') | CalleeFlexibleAccessPath |  |
-| autogenerated/TaintedPath/TaintedPath.js:129:12:129:36 | path.re ... /g, '') | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/TaintedPath.js:129:12:129:36 | path.re ... /g, '') | InputArgumentIndex |  |
-| autogenerated/TaintedPath/TaintedPath.js:129:12:129:36 | path.re ... /g, '') | assignedToPropName |  |
-| autogenerated/TaintedPath/TaintedPath.js:129:12:129:36 | path.re ... /g, '') | calleeImports |  |
-| autogenerated/TaintedPath/TaintedPath.js:129:12:129:36 | path.re ... /g, '') | contextFunctionInterfaces | views_local(req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:129:12:129:36 | path.re ... /g, '') | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:129:12:129:36 | path.re ... /g, '') | enclosingFunctionBody | req res path url parse req url true query path path path path replace /[\\]\\[*,;'"`<>\\\\?\\/]/g  path path replace /\\.\\./g  res write fs readFileSync path |
-| autogenerated/TaintedPath/TaintedPath.js:129:12:129:36 | path.re ... /g, '') | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:129:12:129:36 | path.re ... /g, '') | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
-| autogenerated/TaintedPath/TaintedPath.js:129:12:129:36 | path.re ... /g, '') | receiverName |  |
-| autogenerated/TaintedPath/TaintedPath.js:129:12:129:36 | path.re ... /g, '') | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/TaintedPath.js:132:29:132:32 | path | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/TaintedPath.js:132:29:132:32 | path | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/TaintedPath.js:132:29:132:32 | path | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/TaintedPath.js:132:29:132:32 | path | assignedToPropName |  |
-| autogenerated/TaintedPath/TaintedPath.js:132:29:132:32 | path | calleeImports | fs |
-| autogenerated/TaintedPath/TaintedPath.js:132:29:132:32 | path | contextFunctionInterfaces | views_local(req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:132:29:132:32 | path | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:132:29:132:32 | path | enclosingFunctionBody | req res path url parse req url true query path path path path replace /[\\]\\[*,;'"`<>\\\\?\\/]/g  path path replace /\\.\\./g  res write fs readFileSync path |
-| autogenerated/TaintedPath/TaintedPath.js:132:29:132:32 | path | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:132:29:132:32 | path | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
-| autogenerated/TaintedPath/TaintedPath.js:132:29:132:32 | path | receiverName | fs |
-| autogenerated/TaintedPath/TaintedPath.js:132:29:132:32 | path | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/TaintedPath.js:135:32:139:1 | functio ... OT OK\\n} | CalleeFlexibleAccessPath | http.createServer |
-| autogenerated/TaintedPath/TaintedPath.js:135:32:139:1 | functio ... OT OK\\n} | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/TaintedPath.js:135:32:139:1 | functio ... OT OK\\n} | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/TaintedPath.js:135:32:139:1 | functio ... OT OK\\n} | assignedToPropName |  |
-| autogenerated/TaintedPath/TaintedPath.js:135:32:139:1 | functio ... OT OK\\n} | calleeImports | http |
-| autogenerated/TaintedPath/TaintedPath.js:135:32:139:1 | functio ... OT OK\\n} | contextFunctionInterfaces | views_local(req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:135:32:139:1 | functio ... OT OK\\n} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:135:32:139:1 | functio ... OT OK\\n} | enclosingFunctionBody |  |
-| autogenerated/TaintedPath/TaintedPath.js:135:32:139:1 | functio ... OT OK\\n} | enclosingFunctionName |  |
-| autogenerated/TaintedPath/TaintedPath.js:135:32:139:1 | functio ... OT OK\\n} | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
-| autogenerated/TaintedPath/TaintedPath.js:135:32:139:1 | functio ... OT OK\\n} | receiverName | http |
-| autogenerated/TaintedPath/TaintedPath.js:135:32:139:1 | functio ... OT OK\\n} | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/TaintedPath.js:138:10:138:15 | 'send' | CalleeFlexibleAccessPath | require |
-| autogenerated/TaintedPath/TaintedPath.js:138:10:138:15 | 'send' | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/TaintedPath.js:138:10:138:15 | 'send' | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/TaintedPath.js:138:10:138:15 | 'send' | assignedToPropName |  |
-| autogenerated/TaintedPath/TaintedPath.js:138:10:138:15 | 'send' | calleeImports |  |
-| autogenerated/TaintedPath/TaintedPath.js:138:10:138:15 | 'send' | contextFunctionInterfaces | views_local(req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:138:10:138:15 | 'send' | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:138:10:138:15 | 'send' | enclosingFunctionBody | req res path url parse req url true query path require send req path |
-| autogenerated/TaintedPath/TaintedPath.js:138:10:138:15 | 'send' | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:138:10:138:15 | 'send' | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
-| autogenerated/TaintedPath/TaintedPath.js:138:10:138:15 | 'send' | receiverName |  |
-| autogenerated/TaintedPath/TaintedPath.js:138:10:138:15 | 'send' | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/TaintedPath.js:138:23:138:26 | path | CalleeFlexibleAccessPath | import(!) |
-| autogenerated/TaintedPath/TaintedPath.js:138:23:138:26 | path | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/TaintedPath.js:138:23:138:26 | path | InputArgumentIndex | 1 |
-| autogenerated/TaintedPath/TaintedPath.js:138:23:138:26 | path | assignedToPropName |  |
-| autogenerated/TaintedPath/TaintedPath.js:138:23:138:26 | path | calleeImports | send |
-| autogenerated/TaintedPath/TaintedPath.js:138:23:138:26 | path | contextFunctionInterfaces | views_local(req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:138:23:138:26 | path | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:138:23:138:26 | path | enclosingFunctionBody | req res path url parse req url true query path require send req path |
-| autogenerated/TaintedPath/TaintedPath.js:138:23:138:26 | path | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:138:23:138:26 | path | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
-| autogenerated/TaintedPath/TaintedPath.js:138:23:138:26 | path | receiverName |  |
-| autogenerated/TaintedPath/TaintedPath.js:138:23:138:26 | path | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/TaintedPath.js:141:32:163:1 | functio ...  OK \\n\\n} | CalleeFlexibleAccessPath | http.createServer |
-| autogenerated/TaintedPath/TaintedPath.js:141:32:163:1 | functio ...  OK \\n\\n} | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/TaintedPath.js:141:32:163:1 | functio ...  OK \\n\\n} | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/TaintedPath.js:141:32:163:1 | functio ...  OK \\n\\n} | assignedToPropName |  |
-| autogenerated/TaintedPath/TaintedPath.js:141:32:163:1 | functio ...  OK \\n\\n} | calleeImports | http |
-| autogenerated/TaintedPath/TaintedPath.js:141:32:163:1 | functio ...  OK \\n\\n} | contextFunctionInterfaces | views_local(req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:141:32:163:1 | functio ...  OK \\n\\n} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:141:32:163:1 | functio ...  OK \\n\\n} | enclosingFunctionBody |  |
-| autogenerated/TaintedPath/TaintedPath.js:141:32:163:1 | functio ...  OK \\n\\n} | enclosingFunctionName |  |
-| autogenerated/TaintedPath/TaintedPath.js:141:32:163:1 | functio ...  OK \\n\\n} | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
-| autogenerated/TaintedPath/TaintedPath.js:141:32:163:1 | functio ...  OK \\n\\n} | receiverName | http |
-| autogenerated/TaintedPath/TaintedPath.js:141:32:163:1 | functio ...  OK \\n\\n} | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/TaintedPath.js:144:19:144:22 | path | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/TaintedPath.js:144:19:144:22 | path | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/TaintedPath.js:144:19:144:22 | path | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/TaintedPath.js:144:19:144:22 | path | assignedToPropName |  |
-| autogenerated/TaintedPath/TaintedPath.js:144:19:144:22 | path | calleeImports | fs |
-| autogenerated/TaintedPath/TaintedPath.js:144:19:144:22 | path | contextFunctionInterfaces | views_local(req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:144:19:144:22 | path | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:144:19:144:22 | path | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path split path split / fs readFileSync split join / fs readFileSync prefix split split length 1 fs readFileSync split x fs readFileSync prefix split x concatted prefix concat split fs readFileSync concatted join / concatted2 split concat prefix fs readFileSync concatted2 join / fs readFileSync split pop |
-| autogenerated/TaintedPath/TaintedPath.js:144:19:144:22 | path | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:144:19:144:22 | path | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
-| autogenerated/TaintedPath/TaintedPath.js:144:19:144:22 | path | receiverName | fs |
-| autogenerated/TaintedPath/TaintedPath.js:144:19:144:22 | path | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/TaintedPath.js:146:26:146:28 | "/" | CalleeFlexibleAccessPath | path.split |
-| autogenerated/TaintedPath/TaintedPath.js:146:26:146:28 | "/" | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/TaintedPath.js:146:26:146:28 | "/" | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/TaintedPath.js:146:26:146:28 | "/" | assignedToPropName |  |
-| autogenerated/TaintedPath/TaintedPath.js:146:26:146:28 | "/" | calleeImports | url |
-| autogenerated/TaintedPath/TaintedPath.js:146:26:146:28 | "/" | contextFunctionInterfaces | views_local(req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:146:26:146:28 | "/" | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:146:26:146:28 | "/" | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path split path split / fs readFileSync split join / fs readFileSync prefix split split length 1 fs readFileSync split x fs readFileSync prefix split x concatted prefix concat split fs readFileSync concatted join / concatted2 split concat prefix fs readFileSync concatted2 join / fs readFileSync split pop |
-| autogenerated/TaintedPath/TaintedPath.js:146:26:146:28 | "/" | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:146:26:146:28 | "/" | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
-| autogenerated/TaintedPath/TaintedPath.js:146:26:146:28 | "/" | receiverName | path |
-| autogenerated/TaintedPath/TaintedPath.js:146:26:146:28 | "/" | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/TaintedPath.js:148:19:148:33 | split.join("/") | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/TaintedPath.js:148:19:148:33 | split.join("/") | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/TaintedPath.js:148:19:148:33 | split.join("/") | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/TaintedPath.js:148:19:148:33 | split.join("/") | assignedToPropName |  |
-| autogenerated/TaintedPath/TaintedPath.js:148:19:148:33 | split.join("/") | calleeImports | fs |
-| autogenerated/TaintedPath/TaintedPath.js:148:19:148:33 | split.join("/") | contextFunctionInterfaces | views_local(req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:148:19:148:33 | split.join("/") | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:148:19:148:33 | split.join("/") | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path split path split / fs readFileSync split join / fs readFileSync prefix split split length 1 fs readFileSync split x fs readFileSync prefix split x concatted prefix concat split fs readFileSync concatted join / concatted2 split concat prefix fs readFileSync concatted2 join / fs readFileSync split pop |
-| autogenerated/TaintedPath/TaintedPath.js:148:19:148:33 | split.join("/") | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:148:19:148:33 | split.join("/") | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
-| autogenerated/TaintedPath/TaintedPath.js:148:19:148:33 | split.join("/") | receiverName | fs |
-| autogenerated/TaintedPath/TaintedPath.js:148:19:148:33 | split.join("/") | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/TaintedPath.js:148:30:148:32 | "/" | CalleeFlexibleAccessPath | split.join |
-| autogenerated/TaintedPath/TaintedPath.js:148:30:148:32 | "/" | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/TaintedPath.js:148:30:148:32 | "/" | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/TaintedPath.js:148:30:148:32 | "/" | assignedToPropName |  |
-| autogenerated/TaintedPath/TaintedPath.js:148:30:148:32 | "/" | calleeImports | url |
-| autogenerated/TaintedPath/TaintedPath.js:148:30:148:32 | "/" | contextFunctionInterfaces | views_local(req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:148:30:148:32 | "/" | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:148:30:148:32 | "/" | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path split path split / fs readFileSync split join / fs readFileSync prefix split split length 1 fs readFileSync split x fs readFileSync prefix split x concatted prefix concat split fs readFileSync concatted join / concatted2 split concat prefix fs readFileSync concatted2 join / fs readFileSync split pop |
-| autogenerated/TaintedPath/TaintedPath.js:148:30:148:32 | "/" | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:148:30:148:32 | "/" | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
-| autogenerated/TaintedPath/TaintedPath.js:148:30:148:32 | "/" | receiverName | split |
-| autogenerated/TaintedPath/TaintedPath.js:148:30:148:32 | "/" | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/TaintedPath.js:150:19:150:50 | prefix  ... th - 1] | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/TaintedPath.js:150:19:150:50 | prefix  ... th - 1] | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/TaintedPath.js:150:19:150:50 | prefix  ... th - 1] | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/TaintedPath.js:150:19:150:50 | prefix  ... th - 1] | assignedToPropName |  |
-| autogenerated/TaintedPath/TaintedPath.js:150:19:150:50 | prefix  ... th - 1] | calleeImports | fs |
-| autogenerated/TaintedPath/TaintedPath.js:150:19:150:50 | prefix  ... th - 1] | contextFunctionInterfaces | views_local(req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:150:19:150:50 | prefix  ... th - 1] | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:150:19:150:50 | prefix  ... th - 1] | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path split path split / fs readFileSync split join / fs readFileSync prefix split split length 1 fs readFileSync split x fs readFileSync prefix split x concatted prefix concat split fs readFileSync concatted join / concatted2 split concat prefix fs readFileSync concatted2 join / fs readFileSync split pop |
-| autogenerated/TaintedPath/TaintedPath.js:150:19:150:50 | prefix  ... th - 1] | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:150:19:150:50 | prefix  ... th - 1] | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
-| autogenerated/TaintedPath/TaintedPath.js:150:19:150:50 | prefix  ... th - 1] | receiverName | fs |
-| autogenerated/TaintedPath/TaintedPath.js:150:19:150:50 | prefix  ... th - 1] | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/TaintedPath.js:152:19:152:26 | split[x] | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/TaintedPath.js:152:19:152:26 | split[x] | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/TaintedPath.js:152:19:152:26 | split[x] | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/TaintedPath.js:152:19:152:26 | split[x] | assignedToPropName |  |
-| autogenerated/TaintedPath/TaintedPath.js:152:19:152:26 | split[x] | calleeImports | fs |
-| autogenerated/TaintedPath/TaintedPath.js:152:19:152:26 | split[x] | contextFunctionInterfaces | views_local(req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:152:19:152:26 | split[x] | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:152:19:152:26 | split[x] | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path split path split / fs readFileSync split join / fs readFileSync prefix split split length 1 fs readFileSync split x fs readFileSync prefix split x concatted prefix concat split fs readFileSync concatted join / concatted2 split concat prefix fs readFileSync concatted2 join / fs readFileSync split pop |
-| autogenerated/TaintedPath/TaintedPath.js:152:19:152:26 | split[x] | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:152:19:152:26 | split[x] | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
-| autogenerated/TaintedPath/TaintedPath.js:152:19:152:26 | split[x] | receiverName | fs |
-| autogenerated/TaintedPath/TaintedPath.js:152:19:152:26 | split[x] | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/TaintedPath.js:153:19:153:35 | prefix + split[x] | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/TaintedPath.js:153:19:153:35 | prefix + split[x] | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/TaintedPath.js:153:19:153:35 | prefix + split[x] | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/TaintedPath.js:153:19:153:35 | prefix + split[x] | assignedToPropName |  |
-| autogenerated/TaintedPath/TaintedPath.js:153:19:153:35 | prefix + split[x] | calleeImports | fs |
-| autogenerated/TaintedPath/TaintedPath.js:153:19:153:35 | prefix + split[x] | contextFunctionInterfaces | views_local(req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:153:19:153:35 | prefix + split[x] | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:153:19:153:35 | prefix + split[x] | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path split path split / fs readFileSync split join / fs readFileSync prefix split split length 1 fs readFileSync split x fs readFileSync prefix split x concatted prefix concat split fs readFileSync concatted join / concatted2 split concat prefix fs readFileSync concatted2 join / fs readFileSync split pop |
-| autogenerated/TaintedPath/TaintedPath.js:153:19:153:35 | prefix + split[x] | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:153:19:153:35 | prefix + split[x] | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
-| autogenerated/TaintedPath/TaintedPath.js:153:19:153:35 | prefix + split[x] | receiverName | fs |
-| autogenerated/TaintedPath/TaintedPath.js:153:19:153:35 | prefix + split[x] | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/TaintedPath.js:156:19:156:37 | concatted.join("/") | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/TaintedPath.js:156:19:156:37 | concatted.join("/") | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/TaintedPath.js:156:19:156:37 | concatted.join("/") | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/TaintedPath.js:156:19:156:37 | concatted.join("/") | assignedToPropName |  |
-| autogenerated/TaintedPath/TaintedPath.js:156:19:156:37 | concatted.join("/") | calleeImports | fs |
-| autogenerated/TaintedPath/TaintedPath.js:156:19:156:37 | concatted.join("/") | contextFunctionInterfaces | views_local(req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:156:19:156:37 | concatted.join("/") | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:156:19:156:37 | concatted.join("/") | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path split path split / fs readFileSync split join / fs readFileSync prefix split split length 1 fs readFileSync split x fs readFileSync prefix split x concatted prefix concat split fs readFileSync concatted join / concatted2 split concat prefix fs readFileSync concatted2 join / fs readFileSync split pop |
-| autogenerated/TaintedPath/TaintedPath.js:156:19:156:37 | concatted.join("/") | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:156:19:156:37 | concatted.join("/") | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
-| autogenerated/TaintedPath/TaintedPath.js:156:19:156:37 | concatted.join("/") | receiverName | fs |
-| autogenerated/TaintedPath/TaintedPath.js:156:19:156:37 | concatted.join("/") | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/TaintedPath.js:156:34:156:36 | "/" | CalleeFlexibleAccessPath | concatted.join |
-| autogenerated/TaintedPath/TaintedPath.js:156:34:156:36 | "/" | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/TaintedPath.js:156:34:156:36 | "/" | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/TaintedPath.js:156:34:156:36 | "/" | assignedToPropName |  |
-| autogenerated/TaintedPath/TaintedPath.js:156:34:156:36 | "/" | calleeImports |  |
-| autogenerated/TaintedPath/TaintedPath.js:156:34:156:36 | "/" | contextFunctionInterfaces | views_local(req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:156:34:156:36 | "/" | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:156:34:156:36 | "/" | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path split path split / fs readFileSync split join / fs readFileSync prefix split split length 1 fs readFileSync split x fs readFileSync prefix split x concatted prefix concat split fs readFileSync concatted join / concatted2 split concat prefix fs readFileSync concatted2 join / fs readFileSync split pop |
-| autogenerated/TaintedPath/TaintedPath.js:156:34:156:36 | "/" | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:156:34:156:36 | "/" | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
-| autogenerated/TaintedPath/TaintedPath.js:156:34:156:36 | "/" | receiverName | concatted |
-| autogenerated/TaintedPath/TaintedPath.js:156:34:156:36 | "/" | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/TaintedPath.js:159:19:159:38 | concatted2.join("/") | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/TaintedPath.js:159:19:159:38 | concatted2.join("/") | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/TaintedPath.js:159:19:159:38 | concatted2.join("/") | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/TaintedPath.js:159:19:159:38 | concatted2.join("/") | assignedToPropName |  |
-| autogenerated/TaintedPath/TaintedPath.js:159:19:159:38 | concatted2.join("/") | calleeImports | fs |
-| autogenerated/TaintedPath/TaintedPath.js:159:19:159:38 | concatted2.join("/") | contextFunctionInterfaces | views_local(req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:159:19:159:38 | concatted2.join("/") | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:159:19:159:38 | concatted2.join("/") | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path split path split / fs readFileSync split join / fs readFileSync prefix split split length 1 fs readFileSync split x fs readFileSync prefix split x concatted prefix concat split fs readFileSync concatted join / concatted2 split concat prefix fs readFileSync concatted2 join / fs readFileSync split pop |
-| autogenerated/TaintedPath/TaintedPath.js:159:19:159:38 | concatted2.join("/") | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:159:19:159:38 | concatted2.join("/") | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
-| autogenerated/TaintedPath/TaintedPath.js:159:19:159:38 | concatted2.join("/") | receiverName | fs |
-| autogenerated/TaintedPath/TaintedPath.js:159:19:159:38 | concatted2.join("/") | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/TaintedPath.js:159:35:159:37 | "/" | CalleeFlexibleAccessPath | concatted2.join |
-| autogenerated/TaintedPath/TaintedPath.js:159:35:159:37 | "/" | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/TaintedPath.js:159:35:159:37 | "/" | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/TaintedPath.js:159:35:159:37 | "/" | assignedToPropName |  |
-| autogenerated/TaintedPath/TaintedPath.js:159:35:159:37 | "/" | calleeImports | url |
-| autogenerated/TaintedPath/TaintedPath.js:159:35:159:37 | "/" | contextFunctionInterfaces | views_local(req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:159:35:159:37 | "/" | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:159:35:159:37 | "/" | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path split path split / fs readFileSync split join / fs readFileSync prefix split split length 1 fs readFileSync split x fs readFileSync prefix split x concatted prefix concat split fs readFileSync concatted join / concatted2 split concat prefix fs readFileSync concatted2 join / fs readFileSync split pop |
-| autogenerated/TaintedPath/TaintedPath.js:159:35:159:37 | "/" | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:159:35:159:37 | "/" | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
-| autogenerated/TaintedPath/TaintedPath.js:159:35:159:37 | "/" | receiverName | concatted2 |
-| autogenerated/TaintedPath/TaintedPath.js:159:35:159:37 | "/" | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/TaintedPath.js:161:19:161:29 | split.pop() | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/TaintedPath.js:161:19:161:29 | split.pop() | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/TaintedPath.js:161:19:161:29 | split.pop() | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/TaintedPath.js:161:19:161:29 | split.pop() | assignedToPropName |  |
-| autogenerated/TaintedPath/TaintedPath.js:161:19:161:29 | split.pop() | calleeImports | fs |
-| autogenerated/TaintedPath/TaintedPath.js:161:19:161:29 | split.pop() | contextFunctionInterfaces | views_local(req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:161:19:161:29 | split.pop() | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:161:19:161:29 | split.pop() | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path split path split / fs readFileSync split join / fs readFileSync prefix split split length 1 fs readFileSync split x fs readFileSync prefix split x concatted prefix concat split fs readFileSync concatted join / concatted2 split concat prefix fs readFileSync concatted2 join / fs readFileSync split pop |
-| autogenerated/TaintedPath/TaintedPath.js:161:19:161:29 | split.pop() | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:161:19:161:29 | split.pop() | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
-| autogenerated/TaintedPath/TaintedPath.js:161:19:161:29 | split.pop() | receiverName | fs |
-| autogenerated/TaintedPath/TaintedPath.js:161:19:161:29 | split.pop() | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/TaintedPath.js:165:32:196:1 | functio ... lute)\\n} | CalleeFlexibleAccessPath | http.createServer |
-| autogenerated/TaintedPath/TaintedPath.js:165:32:196:1 | functio ... lute)\\n} | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/TaintedPath.js:165:32:196:1 | functio ... lute)\\n} | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/TaintedPath.js:165:32:196:1 | functio ... lute)\\n} | assignedToPropName |  |
-| autogenerated/TaintedPath/TaintedPath.js:165:32:196:1 | functio ... lute)\\n} | calleeImports | http |
-| autogenerated/TaintedPath/TaintedPath.js:165:32:196:1 | functio ... lute)\\n} | contextFunctionInterfaces | views_local(req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:165:32:196:1 | functio ... lute)\\n} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:165:32:196:1 | functio ... lute)\\n} | enclosingFunctionBody |  |
-| autogenerated/TaintedPath/TaintedPath.js:165:32:196:1 | functio ... lute)\\n} | enclosingFunctionName |  |
-| autogenerated/TaintedPath/TaintedPath.js:165:32:196:1 | functio ... lute)\\n} | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
-| autogenerated/TaintedPath/TaintedPath.js:165:32:196:1 | functio ... lute)\\n} | receiverName | http |
-| autogenerated/TaintedPath/TaintedPath.js:165:32:196:1 | functio ... lute)\\n} | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/TaintedPath.js:169:29:169:68 | path.re ... /g, '') | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/TaintedPath.js:169:29:169:68 | path.re ... /g, '') | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/TaintedPath.js:169:29:169:68 | path.re ... /g, '') | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/TaintedPath.js:169:29:169:68 | path.re ... /g, '') | assignedToPropName |  |
-| autogenerated/TaintedPath/TaintedPath.js:169:29:169:68 | path.re ... /g, '') | calleeImports | fs |
-| autogenerated/TaintedPath/TaintedPath.js:169:29:169:68 | path.re ... /g, '') | contextFunctionInterfaces | views_local(req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:169:29:169:68 | path.re ... /g, '') | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:169:29:169:68 | path.re ... /g, '') | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path replace /[\\]\\[*,;'"`<>\\\\?\\/]/g  res write fs readFileSync path replace /[abcd]/g  res write fs readFileSync path replace /[./]/g  res write fs readFileSync path replace /[foobar/foobar]/g  res write fs readFileSync path replace /\\//g  res write fs readFileSync path replace /\\.\|\\//g  res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  pathModule isAbsolute path res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  res write fs readFileSync prefix pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)*/  res write fs readFileSync prefix path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  |
-| autogenerated/TaintedPath/TaintedPath.js:169:29:169:68 | path.re ... /g, '') | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:169:29:169:68 | path.re ... /g, '') | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
-| autogenerated/TaintedPath/TaintedPath.js:169:29:169:68 | path.re ... /g, '') | receiverName | fs |
-| autogenerated/TaintedPath/TaintedPath.js:169:29:169:68 | path.re ... /g, '') | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/TaintedPath.js:170:29:170:55 | path.re ... /g, '') | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/TaintedPath.js:170:29:170:55 | path.re ... /g, '') | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/TaintedPath.js:170:29:170:55 | path.re ... /g, '') | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/TaintedPath.js:170:29:170:55 | path.re ... /g, '') | assignedToPropName |  |
-| autogenerated/TaintedPath/TaintedPath.js:170:29:170:55 | path.re ... /g, '') | calleeImports | fs |
-| autogenerated/TaintedPath/TaintedPath.js:170:29:170:55 | path.re ... /g, '') | contextFunctionInterfaces | views_local(req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:170:29:170:55 | path.re ... /g, '') | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:170:29:170:55 | path.re ... /g, '') | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path replace /[\\]\\[*,;'"`<>\\\\?\\/]/g  res write fs readFileSync path replace /[abcd]/g  res write fs readFileSync path replace /[./]/g  res write fs readFileSync path replace /[foobar/foobar]/g  res write fs readFileSync path replace /\\//g  res write fs readFileSync path replace /\\.\|\\//g  res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  pathModule isAbsolute path res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  res write fs readFileSync prefix pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)*/  res write fs readFileSync prefix path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  |
-| autogenerated/TaintedPath/TaintedPath.js:170:29:170:55 | path.re ... /g, '') | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:170:29:170:55 | path.re ... /g, '') | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
-| autogenerated/TaintedPath/TaintedPath.js:170:29:170:55 | path.re ... /g, '') | receiverName | fs |
-| autogenerated/TaintedPath/TaintedPath.js:170:29:170:55 | path.re ... /g, '') | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/TaintedPath.js:171:29:171:53 | path.re ... /g, '') | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/TaintedPath.js:171:29:171:53 | path.re ... /g, '') | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/TaintedPath.js:171:29:171:53 | path.re ... /g, '') | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/TaintedPath.js:171:29:171:53 | path.re ... /g, '') | assignedToPropName |  |
-| autogenerated/TaintedPath/TaintedPath.js:171:29:171:53 | path.re ... /g, '') | calleeImports | fs |
-| autogenerated/TaintedPath/TaintedPath.js:171:29:171:53 | path.re ... /g, '') | contextFunctionInterfaces | views_local(req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:171:29:171:53 | path.re ... /g, '') | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:171:29:171:53 | path.re ... /g, '') | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path replace /[\\]\\[*,;'"`<>\\\\?\\/]/g  res write fs readFileSync path replace /[abcd]/g  res write fs readFileSync path replace /[./]/g  res write fs readFileSync path replace /[foobar/foobar]/g  res write fs readFileSync path replace /\\//g  res write fs readFileSync path replace /\\.\|\\//g  res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  pathModule isAbsolute path res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  res write fs readFileSync prefix pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)*/  res write fs readFileSync prefix path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  |
-| autogenerated/TaintedPath/TaintedPath.js:171:29:171:53 | path.re ... /g, '') | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:171:29:171:53 | path.re ... /g, '') | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
-| autogenerated/TaintedPath/TaintedPath.js:171:29:171:53 | path.re ... /g, '') | receiverName | fs |
-| autogenerated/TaintedPath/TaintedPath.js:171:29:171:53 | path.re ... /g, '') | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/TaintedPath.js:172:29:172:64 | path.re ... /g, '') | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/TaintedPath.js:172:29:172:64 | path.re ... /g, '') | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/TaintedPath.js:172:29:172:64 | path.re ... /g, '') | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/TaintedPath.js:172:29:172:64 | path.re ... /g, '') | assignedToPropName |  |
-| autogenerated/TaintedPath/TaintedPath.js:172:29:172:64 | path.re ... /g, '') | calleeImports | fs |
-| autogenerated/TaintedPath/TaintedPath.js:172:29:172:64 | path.re ... /g, '') | contextFunctionInterfaces | views_local(req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:172:29:172:64 | path.re ... /g, '') | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:172:29:172:64 | path.re ... /g, '') | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path replace /[\\]\\[*,;'"`<>\\\\?\\/]/g  res write fs readFileSync path replace /[abcd]/g  res write fs readFileSync path replace /[./]/g  res write fs readFileSync path replace /[foobar/foobar]/g  res write fs readFileSync path replace /\\//g  res write fs readFileSync path replace /\\.\|\\//g  res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  pathModule isAbsolute path res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  res write fs readFileSync prefix pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)*/  res write fs readFileSync prefix path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  |
-| autogenerated/TaintedPath/TaintedPath.js:172:29:172:64 | path.re ... /g, '') | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:172:29:172:64 | path.re ... /g, '') | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
-| autogenerated/TaintedPath/TaintedPath.js:172:29:172:64 | path.re ... /g, '') | receiverName | fs |
-| autogenerated/TaintedPath/TaintedPath.js:172:29:172:64 | path.re ... /g, '') | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/TaintedPath.js:173:29:173:51 | path.re ... /g, '') | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/TaintedPath.js:173:29:173:51 | path.re ... /g, '') | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/TaintedPath.js:173:29:173:51 | path.re ... /g, '') | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/TaintedPath.js:173:29:173:51 | path.re ... /g, '') | assignedToPropName |  |
-| autogenerated/TaintedPath/TaintedPath.js:173:29:173:51 | path.re ... /g, '') | calleeImports | fs |
-| autogenerated/TaintedPath/TaintedPath.js:173:29:173:51 | path.re ... /g, '') | contextFunctionInterfaces | views_local(req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:173:29:173:51 | path.re ... /g, '') | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:173:29:173:51 | path.re ... /g, '') | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path replace /[\\]\\[*,;'"`<>\\\\?\\/]/g  res write fs readFileSync path replace /[abcd]/g  res write fs readFileSync path replace /[./]/g  res write fs readFileSync path replace /[foobar/foobar]/g  res write fs readFileSync path replace /\\//g  res write fs readFileSync path replace /\\.\|\\//g  res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  pathModule isAbsolute path res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  res write fs readFileSync prefix pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)*/  res write fs readFileSync prefix path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  |
-| autogenerated/TaintedPath/TaintedPath.js:173:29:173:51 | path.re ... /g, '') | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:173:29:173:51 | path.re ... /g, '') | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
-| autogenerated/TaintedPath/TaintedPath.js:173:29:173:51 | path.re ... /g, '') | receiverName | fs |
-| autogenerated/TaintedPath/TaintedPath.js:173:29:173:51 | path.re ... /g, '') | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/TaintedPath.js:174:29:174:54 | path.re ... /g, '') | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/TaintedPath.js:174:29:174:54 | path.re ... /g, '') | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/TaintedPath.js:174:29:174:54 | path.re ... /g, '') | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/TaintedPath.js:174:29:174:54 | path.re ... /g, '') | assignedToPropName |  |
-| autogenerated/TaintedPath/TaintedPath.js:174:29:174:54 | path.re ... /g, '') | calleeImports | fs |
-| autogenerated/TaintedPath/TaintedPath.js:174:29:174:54 | path.re ... /g, '') | contextFunctionInterfaces | views_local(req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:174:29:174:54 | path.re ... /g, '') | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:174:29:174:54 | path.re ... /g, '') | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path replace /[\\]\\[*,;'"`<>\\\\?\\/]/g  res write fs readFileSync path replace /[abcd]/g  res write fs readFileSync path replace /[./]/g  res write fs readFileSync path replace /[foobar/foobar]/g  res write fs readFileSync path replace /\\//g  res write fs readFileSync path replace /\\.\|\\//g  res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  pathModule isAbsolute path res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  res write fs readFileSync prefix pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)*/  res write fs readFileSync prefix path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  |
-| autogenerated/TaintedPath/TaintedPath.js:174:29:174:54 | path.re ... /g, '') | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:174:29:174:54 | path.re ... /g, '') | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
-| autogenerated/TaintedPath/TaintedPath.js:174:29:174:54 | path.re ... /g, '') | receiverName | fs |
-| autogenerated/TaintedPath/TaintedPath.js:174:29:174:54 | path.re ... /g, '') | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/TaintedPath.js:176:29:176:52 | path.re ... /g, '') | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/TaintedPath.js:176:29:176:52 | path.re ... /g, '') | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/TaintedPath.js:176:29:176:52 | path.re ... /g, '') | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/TaintedPath.js:176:29:176:52 | path.re ... /g, '') | assignedToPropName |  |
-| autogenerated/TaintedPath/TaintedPath.js:176:29:176:52 | path.re ... /g, '') | calleeImports | fs |
-| autogenerated/TaintedPath/TaintedPath.js:176:29:176:52 | path.re ... /g, '') | contextFunctionInterfaces | views_local(req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:176:29:176:52 | path.re ... /g, '') | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:176:29:176:52 | path.re ... /g, '') | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path replace /[\\]\\[*,;'"`<>\\\\?\\/]/g  res write fs readFileSync path replace /[abcd]/g  res write fs readFileSync path replace /[./]/g  res write fs readFileSync path replace /[foobar/foobar]/g  res write fs readFileSync path replace /\\//g  res write fs readFileSync path replace /\\.\|\\//g  res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  pathModule isAbsolute path res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  res write fs readFileSync prefix pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)*/  res write fs readFileSync prefix path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  |
-| autogenerated/TaintedPath/TaintedPath.js:176:29:176:52 | path.re ... /g, '') | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:176:29:176:52 | path.re ... /g, '') | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
-| autogenerated/TaintedPath/TaintedPath.js:176:29:176:52 | path.re ... /g, '') | receiverName | fs |
-| autogenerated/TaintedPath/TaintedPath.js:176:29:176:52 | path.re ... /g, '') | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/TaintedPath.js:177:29:177:53 | path.re ... /g, '') | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/TaintedPath.js:177:29:177:53 | path.re ... /g, '') | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/TaintedPath.js:177:29:177:53 | path.re ... /g, '') | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/TaintedPath.js:177:29:177:53 | path.re ... /g, '') | assignedToPropName |  |
-| autogenerated/TaintedPath/TaintedPath.js:177:29:177:53 | path.re ... /g, '') | calleeImports | fs |
-| autogenerated/TaintedPath/TaintedPath.js:177:29:177:53 | path.re ... /g, '') | contextFunctionInterfaces | views_local(req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:177:29:177:53 | path.re ... /g, '') | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:177:29:177:53 | path.re ... /g, '') | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path replace /[\\]\\[*,;'"`<>\\\\?\\/]/g  res write fs readFileSync path replace /[abcd]/g  res write fs readFileSync path replace /[./]/g  res write fs readFileSync path replace /[foobar/foobar]/g  res write fs readFileSync path replace /\\//g  res write fs readFileSync path replace /\\.\|\\//g  res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  pathModule isAbsolute path res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  res write fs readFileSync prefix pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)*/  res write fs readFileSync prefix path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  |
-| autogenerated/TaintedPath/TaintedPath.js:177:29:177:53 | path.re ... /g, '') | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:177:29:177:53 | path.re ... /g, '') | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
-| autogenerated/TaintedPath/TaintedPath.js:177:29:177:53 | path.re ... /g, '') | receiverName | fs |
-| autogenerated/TaintedPath/TaintedPath.js:177:29:177:53 | path.re ... /g, '') | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/TaintedPath.js:178:29:178:51 | path.re ... /g, '') | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/TaintedPath.js:178:29:178:51 | path.re ... /g, '') | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/TaintedPath.js:178:29:178:51 | path.re ... /g, '') | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/TaintedPath.js:178:29:178:51 | path.re ... /g, '') | assignedToPropName |  |
-| autogenerated/TaintedPath/TaintedPath.js:178:29:178:51 | path.re ... /g, '') | calleeImports | fs |
-| autogenerated/TaintedPath/TaintedPath.js:178:29:178:51 | path.re ... /g, '') | contextFunctionInterfaces | views_local(req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:178:29:178:51 | path.re ... /g, '') | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:178:29:178:51 | path.re ... /g, '') | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path replace /[\\]\\[*,;'"`<>\\\\?\\/]/g  res write fs readFileSync path replace /[abcd]/g  res write fs readFileSync path replace /[./]/g  res write fs readFileSync path replace /[foobar/foobar]/g  res write fs readFileSync path replace /\\//g  res write fs readFileSync path replace /\\.\|\\//g  res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  pathModule isAbsolute path res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  res write fs readFileSync prefix pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)*/  res write fs readFileSync prefix path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  |
-| autogenerated/TaintedPath/TaintedPath.js:178:29:178:51 | path.re ... /g, '') | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:178:29:178:51 | path.re ... /g, '') | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
-| autogenerated/TaintedPath/TaintedPath.js:178:29:178:51 | path.re ... /g, '') | receiverName | fs |
-| autogenerated/TaintedPath/TaintedPath.js:178:29:178:51 | path.re ... /g, '') | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/TaintedPath.js:179:29:179:57 | path.re ... /g, '') | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/TaintedPath.js:179:29:179:57 | path.re ... /g, '') | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/TaintedPath.js:179:29:179:57 | path.re ... /g, '') | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/TaintedPath.js:179:29:179:57 | path.re ... /g, '') | assignedToPropName |  |
-| autogenerated/TaintedPath/TaintedPath.js:179:29:179:57 | path.re ... /g, '') | calleeImports | fs |
-| autogenerated/TaintedPath/TaintedPath.js:179:29:179:57 | path.re ... /g, '') | contextFunctionInterfaces | views_local(req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:179:29:179:57 | path.re ... /g, '') | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:179:29:179:57 | path.re ... /g, '') | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path replace /[\\]\\[*,;'"`<>\\\\?\\/]/g  res write fs readFileSync path replace /[abcd]/g  res write fs readFileSync path replace /[./]/g  res write fs readFileSync path replace /[foobar/foobar]/g  res write fs readFileSync path replace /\\//g  res write fs readFileSync path replace /\\.\|\\//g  res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  pathModule isAbsolute path res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  res write fs readFileSync prefix pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)*/  res write fs readFileSync prefix path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  |
-| autogenerated/TaintedPath/TaintedPath.js:179:29:179:57 | path.re ... /g, '') | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:179:29:179:57 | path.re ... /g, '') | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
-| autogenerated/TaintedPath/TaintedPath.js:179:29:179:57 | path.re ... /g, '') | receiverName | fs |
-| autogenerated/TaintedPath/TaintedPath.js:179:29:179:57 | path.re ... /g, '') | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/TaintedPath.js:182:31:182:54 | path.re ... /g, '') | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/TaintedPath.js:182:31:182:54 | path.re ... /g, '') | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/TaintedPath.js:182:31:182:54 | path.re ... /g, '') | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/TaintedPath.js:182:31:182:54 | path.re ... /g, '') | assignedToPropName |  |
-| autogenerated/TaintedPath/TaintedPath.js:182:31:182:54 | path.re ... /g, '') | calleeImports | fs |
-| autogenerated/TaintedPath/TaintedPath.js:182:31:182:54 | path.re ... /g, '') | contextFunctionInterfaces | views_local(req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:182:31:182:54 | path.re ... /g, '') | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:182:31:182:54 | path.re ... /g, '') | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path replace /[\\]\\[*,;'"`<>\\\\?\\/]/g  res write fs readFileSync path replace /[abcd]/g  res write fs readFileSync path replace /[./]/g  res write fs readFileSync path replace /[foobar/foobar]/g  res write fs readFileSync path replace /\\//g  res write fs readFileSync path replace /\\.\|\\//g  res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  pathModule isAbsolute path res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  res write fs readFileSync prefix pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)*/  res write fs readFileSync prefix path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  |
-| autogenerated/TaintedPath/TaintedPath.js:182:31:182:54 | path.re ... /g, '') | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:182:31:182:54 | path.re ... /g, '') | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
-| autogenerated/TaintedPath/TaintedPath.js:182:31:182:54 | path.re ... /g, '') | receiverName | fs |
-| autogenerated/TaintedPath/TaintedPath.js:182:31:182:54 | path.re ... /g, '') | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/TaintedPath.js:183:30:183:54 | path.re ... /g, '') | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/TaintedPath.js:183:30:183:54 | path.re ... /g, '') | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/TaintedPath.js:183:30:183:54 | path.re ... /g, '') | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/TaintedPath.js:183:30:183:54 | path.re ... /g, '') | assignedToPropName |  |
-| autogenerated/TaintedPath/TaintedPath.js:183:30:183:54 | path.re ... /g, '') | calleeImports | fs |
-| autogenerated/TaintedPath/TaintedPath.js:183:30:183:54 | path.re ... /g, '') | contextFunctionInterfaces | views_local(req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:183:30:183:54 | path.re ... /g, '') | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:183:30:183:54 | path.re ... /g, '') | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path replace /[\\]\\[*,;'"`<>\\\\?\\/]/g  res write fs readFileSync path replace /[abcd]/g  res write fs readFileSync path replace /[./]/g  res write fs readFileSync path replace /[foobar/foobar]/g  res write fs readFileSync path replace /\\//g  res write fs readFileSync path replace /\\.\|\\//g  res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  pathModule isAbsolute path res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  res write fs readFileSync prefix pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)*/  res write fs readFileSync prefix path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  |
-| autogenerated/TaintedPath/TaintedPath.js:183:30:183:54 | path.re ... /g, '') | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:183:30:183:54 | path.re ... /g, '') | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
-| autogenerated/TaintedPath/TaintedPath.js:183:30:183:54 | path.re ... /g, '') | receiverName | fs |
-| autogenerated/TaintedPath/TaintedPath.js:183:30:183:54 | path.re ... /g, '') | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/TaintedPath.js:184:31:184:53 | path.re ... /g, '') | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/TaintedPath.js:184:31:184:53 | path.re ... /g, '') | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/TaintedPath.js:184:31:184:53 | path.re ... /g, '') | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/TaintedPath.js:184:31:184:53 | path.re ... /g, '') | assignedToPropName |  |
-| autogenerated/TaintedPath/TaintedPath.js:184:31:184:53 | path.re ... /g, '') | calleeImports | fs |
-| autogenerated/TaintedPath/TaintedPath.js:184:31:184:53 | path.re ... /g, '') | contextFunctionInterfaces | views_local(req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:184:31:184:53 | path.re ... /g, '') | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:184:31:184:53 | path.re ... /g, '') | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path replace /[\\]\\[*,;'"`<>\\\\?\\/]/g  res write fs readFileSync path replace /[abcd]/g  res write fs readFileSync path replace /[./]/g  res write fs readFileSync path replace /[foobar/foobar]/g  res write fs readFileSync path replace /\\//g  res write fs readFileSync path replace /\\.\|\\//g  res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  pathModule isAbsolute path res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  res write fs readFileSync prefix pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)*/  res write fs readFileSync prefix path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  |
-| autogenerated/TaintedPath/TaintedPath.js:184:31:184:53 | path.re ... /g, '') | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:184:31:184:53 | path.re ... /g, '') | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
-| autogenerated/TaintedPath/TaintedPath.js:184:31:184:53 | path.re ... /g, '') | receiverName | fs |
-| autogenerated/TaintedPath/TaintedPath.js:184:31:184:53 | path.re ... /g, '') | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/TaintedPath.js:185:30:185:58 | path.re ... /g, '') | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/TaintedPath.js:185:30:185:58 | path.re ... /g, '') | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/TaintedPath.js:185:30:185:58 | path.re ... /g, '') | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/TaintedPath.js:185:30:185:58 | path.re ... /g, '') | assignedToPropName |  |
-| autogenerated/TaintedPath/TaintedPath.js:185:30:185:58 | path.re ... /g, '') | calleeImports | fs |
-| autogenerated/TaintedPath/TaintedPath.js:185:30:185:58 | path.re ... /g, '') | contextFunctionInterfaces | views_local(req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:185:30:185:58 | path.re ... /g, '') | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:185:30:185:58 | path.re ... /g, '') | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path replace /[\\]\\[*,;'"`<>\\\\?\\/]/g  res write fs readFileSync path replace /[abcd]/g  res write fs readFileSync path replace /[./]/g  res write fs readFileSync path replace /[foobar/foobar]/g  res write fs readFileSync path replace /\\//g  res write fs readFileSync path replace /\\.\|\\//g  res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  pathModule isAbsolute path res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  res write fs readFileSync prefix pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)*/  res write fs readFileSync prefix path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  |
-| autogenerated/TaintedPath/TaintedPath.js:185:30:185:58 | path.re ... /g, '') | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:185:30:185:58 | path.re ... /g, '') | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
-| autogenerated/TaintedPath/TaintedPath.js:185:30:185:58 | path.re ... /g, '') | receiverName | fs |
-| autogenerated/TaintedPath/TaintedPath.js:185:30:185:58 | path.re ... /g, '') | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/TaintedPath.js:189:29:189:95 | "prefix ... +/, '') | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/TaintedPath.js:189:29:189:95 | "prefix ... +/, '') | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/TaintedPath.js:189:29:189:95 | "prefix ... +/, '') | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/TaintedPath.js:189:29:189:95 | "prefix ... +/, '') | assignedToPropName |  |
-| autogenerated/TaintedPath/TaintedPath.js:189:29:189:95 | "prefix ... +/, '') | calleeImports | fs |
-| autogenerated/TaintedPath/TaintedPath.js:189:29:189:95 | "prefix ... +/, '') | contextFunctionInterfaces | views_local(req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:189:29:189:95 | "prefix ... +/, '') | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:189:29:189:95 | "prefix ... +/, '') | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path replace /[\\]\\[*,;'"`<>\\\\?\\/]/g  res write fs readFileSync path replace /[abcd]/g  res write fs readFileSync path replace /[./]/g  res write fs readFileSync path replace /[foobar/foobar]/g  res write fs readFileSync path replace /\\//g  res write fs readFileSync path replace /\\.\|\\//g  res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  pathModule isAbsolute path res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  res write fs readFileSync prefix pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)*/  res write fs readFileSync prefix path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  |
-| autogenerated/TaintedPath/TaintedPath.js:189:29:189:95 | "prefix ... +/, '') | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:189:29:189:95 | "prefix ... +/, '') | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
-| autogenerated/TaintedPath/TaintedPath.js:189:29:189:95 | "prefix ... +/, '') | receiverName | fs |
-| autogenerated/TaintedPath/TaintedPath.js:189:29:189:95 | "prefix ... +/, '') | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/TaintedPath.js:190:29:190:94 | "prefix ... +/, '') | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/TaintedPath.js:190:29:190:94 | "prefix ... +/, '') | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/TaintedPath.js:190:29:190:94 | "prefix ... +/, '') | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/TaintedPath.js:190:29:190:94 | "prefix ... +/, '') | assignedToPropName |  |
-| autogenerated/TaintedPath/TaintedPath.js:190:29:190:94 | "prefix ... +/, '') | calleeImports | fs |
-| autogenerated/TaintedPath/TaintedPath.js:190:29:190:94 | "prefix ... +/, '') | contextFunctionInterfaces | views_local(req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:190:29:190:94 | "prefix ... +/, '') | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:190:29:190:94 | "prefix ... +/, '') | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path replace /[\\]\\[*,;'"`<>\\\\?\\/]/g  res write fs readFileSync path replace /[abcd]/g  res write fs readFileSync path replace /[./]/g  res write fs readFileSync path replace /[foobar/foobar]/g  res write fs readFileSync path replace /\\//g  res write fs readFileSync path replace /\\.\|\\//g  res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  pathModule isAbsolute path res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  res write fs readFileSync prefix pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)*/  res write fs readFileSync prefix path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  |
-| autogenerated/TaintedPath/TaintedPath.js:190:29:190:94 | "prefix ... +/, '') | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:190:29:190:94 | "prefix ... +/, '') | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
-| autogenerated/TaintedPath/TaintedPath.js:190:29:190:94 | "prefix ... +/, '') | receiverName | fs |
-| autogenerated/TaintedPath/TaintedPath.js:190:29:190:94 | "prefix ... +/, '') | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/TaintedPath.js:191:29:191:90 | "prefix ... +/, '') | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/TaintedPath.js:191:29:191:90 | "prefix ... +/, '') | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/TaintedPath.js:191:29:191:90 | "prefix ... +/, '') | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/TaintedPath.js:191:29:191:90 | "prefix ... +/, '') | assignedToPropName |  |
-| autogenerated/TaintedPath/TaintedPath.js:191:29:191:90 | "prefix ... +/, '') | calleeImports | fs |
-| autogenerated/TaintedPath/TaintedPath.js:191:29:191:90 | "prefix ... +/, '') | contextFunctionInterfaces | views_local(req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:191:29:191:90 | "prefix ... +/, '') | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:191:29:191:90 | "prefix ... +/, '') | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path replace /[\\]\\[*,;'"`<>\\\\?\\/]/g  res write fs readFileSync path replace /[abcd]/g  res write fs readFileSync path replace /[./]/g  res write fs readFileSync path replace /[foobar/foobar]/g  res write fs readFileSync path replace /\\//g  res write fs readFileSync path replace /\\.\|\\//g  res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  pathModule isAbsolute path res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  res write fs readFileSync prefix pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)*/  res write fs readFileSync prefix path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  |
-| autogenerated/TaintedPath/TaintedPath.js:191:29:191:90 | "prefix ... +/, '') | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:191:29:191:90 | "prefix ... +/, '') | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
-| autogenerated/TaintedPath/TaintedPath.js:191:29:191:90 | "prefix ... +/, '') | receiverName | fs |
-| autogenerated/TaintedPath/TaintedPath.js:191:29:191:90 | "prefix ... +/, '') | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/TaintedPath.js:192:29:192:90 | "prefix ... */, '') | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/TaintedPath.js:192:29:192:90 | "prefix ... */, '') | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/TaintedPath.js:192:29:192:90 | "prefix ... */, '') | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/TaintedPath.js:192:29:192:90 | "prefix ... */, '') | assignedToPropName |  |
-| autogenerated/TaintedPath/TaintedPath.js:192:29:192:90 | "prefix ... */, '') | calleeImports | fs |
-| autogenerated/TaintedPath/TaintedPath.js:192:29:192:90 | "prefix ... */, '') | contextFunctionInterfaces | views_local(req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:192:29:192:90 | "prefix ... */, '') | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:192:29:192:90 | "prefix ... */, '') | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path replace /[\\]\\[*,;'"`<>\\\\?\\/]/g  res write fs readFileSync path replace /[abcd]/g  res write fs readFileSync path replace /[./]/g  res write fs readFileSync path replace /[foobar/foobar]/g  res write fs readFileSync path replace /\\//g  res write fs readFileSync path replace /\\.\|\\//g  res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  pathModule isAbsolute path res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  res write fs readFileSync prefix pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)*/  res write fs readFileSync prefix path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  |
-| autogenerated/TaintedPath/TaintedPath.js:192:29:192:90 | "prefix ... */, '') | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:192:29:192:90 | "prefix ... */, '') | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
-| autogenerated/TaintedPath/TaintedPath.js:192:29:192:90 | "prefix ... */, '') | receiverName | fs |
-| autogenerated/TaintedPath/TaintedPath.js:192:29:192:90 | "prefix ... */, '') | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/TaintedPath.js:194:29:194:73 | "prefix ... +/, '') | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/TaintedPath.js:194:29:194:73 | "prefix ... +/, '') | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/TaintedPath.js:194:29:194:73 | "prefix ... +/, '') | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/TaintedPath.js:194:29:194:73 | "prefix ... +/, '') | assignedToPropName |  |
-| autogenerated/TaintedPath/TaintedPath.js:194:29:194:73 | "prefix ... +/, '') | calleeImports | fs |
-| autogenerated/TaintedPath/TaintedPath.js:194:29:194:73 | "prefix ... +/, '') | contextFunctionInterfaces | views_local(req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:194:29:194:73 | "prefix ... +/, '') | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:194:29:194:73 | "prefix ... +/, '') | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path replace /[\\]\\[*,;'"`<>\\\\?\\/]/g  res write fs readFileSync path replace /[abcd]/g  res write fs readFileSync path replace /[./]/g  res write fs readFileSync path replace /[foobar/foobar]/g  res write fs readFileSync path replace /\\//g  res write fs readFileSync path replace /\\.\|\\//g  res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  pathModule isAbsolute path res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  res write fs readFileSync prefix pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)*/  res write fs readFileSync prefix path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  |
-| autogenerated/TaintedPath/TaintedPath.js:194:29:194:73 | "prefix ... +/, '') | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:194:29:194:73 | "prefix ... +/, '') | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
-| autogenerated/TaintedPath/TaintedPath.js:194:29:194:73 | "prefix ... +/, '') | receiverName | fs |
-| autogenerated/TaintedPath/TaintedPath.js:194:29:194:73 | "prefix ... +/, '') | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/TaintedPath.js:195:29:195:84 | pathMod ... +/, '') | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/TaintedPath.js:195:29:195:84 | pathMod ... +/, '') | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/TaintedPath.js:195:29:195:84 | pathMod ... +/, '') | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/TaintedPath.js:195:29:195:84 | pathMod ... +/, '') | assignedToPropName |  |
-| autogenerated/TaintedPath/TaintedPath.js:195:29:195:84 | pathMod ... +/, '') | calleeImports | fs |
-| autogenerated/TaintedPath/TaintedPath.js:195:29:195:84 | pathMod ... +/, '') | contextFunctionInterfaces | views_local(req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:195:29:195:84 | pathMod ... +/, '') | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:195:29:195:84 | pathMod ... +/, '') | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path replace /[\\]\\[*,;'"`<>\\\\?\\/]/g  res write fs readFileSync path replace /[abcd]/g  res write fs readFileSync path replace /[./]/g  res write fs readFileSync path replace /[foobar/foobar]/g  res write fs readFileSync path replace /\\//g  res write fs readFileSync path replace /\\.\|\\//g  res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  pathModule isAbsolute path res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  res write fs readFileSync prefix pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)*/  res write fs readFileSync prefix path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  |
-| autogenerated/TaintedPath/TaintedPath.js:195:29:195:84 | pathMod ... +/, '') | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:195:29:195:84 | pathMod ... +/, '') | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
-| autogenerated/TaintedPath/TaintedPath.js:195:29:195:84 | pathMod ... +/, '') | receiverName | fs |
-| autogenerated/TaintedPath/TaintedPath.js:195:29:195:84 | pathMod ... +/, '') | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/my-async-fs-module.js:1:20:1:23 | 'fs' | CalleeFlexibleAccessPath | require |
-| autogenerated/TaintedPath/my-async-fs-module.js:1:20:1:23 | 'fs' | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/my-async-fs-module.js:1:20:1:23 | 'fs' | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/my-async-fs-module.js:1:20:1:23 | 'fs' | assignedToPropName |  |
-| autogenerated/TaintedPath/my-async-fs-module.js:1:20:1:23 | 'fs' | calleeImports |  |
-| autogenerated/TaintedPath/my-async-fs-module.js:1:20:1:23 | 'fs' | contextFunctionInterfaces |  |
-| autogenerated/TaintedPath/my-async-fs-module.js:1:20:1:23 | 'fs' | contextSurroundingFunctionParameters |  |
-| autogenerated/TaintedPath/my-async-fs-module.js:1:20:1:23 | 'fs' | enclosingFunctionBody |  |
-| autogenerated/TaintedPath/my-async-fs-module.js:1:20:1:23 | 'fs' | enclosingFunctionName |  |
-| autogenerated/TaintedPath/my-async-fs-module.js:1:20:1:23 | 'fs' | fileImports | bluebird fs |
-| autogenerated/TaintedPath/my-async-fs-module.js:1:20:1:23 | 'fs' | receiverName |  |
-| autogenerated/TaintedPath/my-async-fs-module.js:1:20:1:23 | 'fs' | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/my-async-fs-module.js:2:29:2:38 | 'bluebird' | CalleeFlexibleAccessPath | require |
-| autogenerated/TaintedPath/my-async-fs-module.js:2:29:2:38 | 'bluebird' | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/my-async-fs-module.js:2:29:2:38 | 'bluebird' | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/my-async-fs-module.js:2:29:2:38 | 'bluebird' | assignedToPropName |  |
-| autogenerated/TaintedPath/my-async-fs-module.js:2:29:2:38 | 'bluebird' | calleeImports |  |
-| autogenerated/TaintedPath/my-async-fs-module.js:2:29:2:38 | 'bluebird' | contextFunctionInterfaces |  |
-| autogenerated/TaintedPath/my-async-fs-module.js:2:29:2:38 | 'bluebird' | contextSurroundingFunctionParameters |  |
-| autogenerated/TaintedPath/my-async-fs-module.js:2:29:2:38 | 'bluebird' | enclosingFunctionBody |  |
-| autogenerated/TaintedPath/my-async-fs-module.js:2:29:2:38 | 'bluebird' | enclosingFunctionName |  |
-| autogenerated/TaintedPath/my-async-fs-module.js:2:29:2:38 | 'bluebird' | fileImports | bluebird fs |
-| autogenerated/TaintedPath/my-async-fs-module.js:2:29:2:38 | 'bluebird' | receiverName |  |
-| autogenerated/TaintedPath/my-async-fs-module.js:2:29:2:38 | 'bluebird' | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/my-async-fs-module.js:12:27:12:36 | fs[method] | CalleeFlexibleAccessPath | promisify |
-| autogenerated/TaintedPath/my-async-fs-module.js:12:27:12:36 | fs[method] | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/my-async-fs-module.js:12:27:12:36 | fs[method] | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/my-async-fs-module.js:12:27:12:36 | fs[method] | assignedToPropName |  |
-| autogenerated/TaintedPath/my-async-fs-module.js:12:27:12:36 | fs[method] | calleeImports | bluebird |
-| autogenerated/TaintedPath/my-async-fs-module.js:12:27:12:36 | fs[method] | contextFunctionInterfaces |  |
-| autogenerated/TaintedPath/my-async-fs-module.js:12:27:12:36 | fs[method] | contextSurroundingFunctionParameters | (obj, method) |
-| autogenerated/TaintedPath/my-async-fs-module.js:12:27:12:36 | fs[method] | enclosingFunctionBody | obj method obj method promisify fs method obj |
-| autogenerated/TaintedPath/my-async-fs-module.js:12:27:12:36 | fs[method] | enclosingFunctionName | methods.reduce#functionalargument |
-| autogenerated/TaintedPath/my-async-fs-module.js:12:27:12:36 | fs[method] | fileImports | bluebird fs |
-| autogenerated/TaintedPath/my-async-fs-module.js:12:27:12:36 | fs[method] | receiverName |  |
-| autogenerated/TaintedPath/my-async-fs-module.js:12:27:12:36 | fs[method] | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/my-fs-module.js:3:18:3:21 | "fs" | CalleeFlexibleAccessPath | require |
-| autogenerated/TaintedPath/my-fs-module.js:3:18:3:21 | "fs" | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/my-fs-module.js:3:18:3:21 | "fs" | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/my-fs-module.js:3:18:3:21 | "fs" | assignedToPropName |  |
-| autogenerated/TaintedPath/my-fs-module.js:3:18:3:21 | "fs" | calleeImports |  |
-| autogenerated/TaintedPath/my-fs-module.js:3:18:3:21 | "fs" | contextFunctionInterfaces | require(special) |
-| autogenerated/TaintedPath/my-fs-module.js:3:18:3:21 | "fs" | contextSurroundingFunctionParameters | (special) |
-| autogenerated/TaintedPath/my-fs-module.js:3:18:3:21 | "fs" | enclosingFunctionBody | special special require fs require original-fs |
-| autogenerated/TaintedPath/my-fs-module.js:3:18:3:21 | "fs" | enclosingFunctionName | require |
-| autogenerated/TaintedPath/my-fs-module.js:3:18:3:21 | "fs" | fileImports | fs original-fs |
-| autogenerated/TaintedPath/my-fs-module.js:3:18:3:21 | "fs" | receiverName |  |
-| autogenerated/TaintedPath/my-fs-module.js:3:18:3:21 | "fs" | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/my-fs-module.js:5:18:5:30 | "original-fs" | CalleeFlexibleAccessPath | require |
-| autogenerated/TaintedPath/my-fs-module.js:5:18:5:30 | "original-fs" | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/my-fs-module.js:5:18:5:30 | "original-fs" | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/my-fs-module.js:5:18:5:30 | "original-fs" | assignedToPropName |  |
-| autogenerated/TaintedPath/my-fs-module.js:5:18:5:30 | "original-fs" | calleeImports |  |
-| autogenerated/TaintedPath/my-fs-module.js:5:18:5:30 | "original-fs" | contextFunctionInterfaces | require(special) |
-| autogenerated/TaintedPath/my-fs-module.js:5:18:5:30 | "original-fs" | contextSurroundingFunctionParameters | (special) |
-| autogenerated/TaintedPath/my-fs-module.js:5:18:5:30 | "original-fs" | enclosingFunctionBody | special special require fs require original-fs |
-| autogenerated/TaintedPath/my-fs-module.js:5:18:5:30 | "original-fs" | enclosingFunctionName | require |
-| autogenerated/TaintedPath/my-fs-module.js:5:18:5:30 | "original-fs" | fileImports | fs original-fs |
-| autogenerated/TaintedPath/my-fs-module.js:5:18:5:30 | "original-fs" | receiverName |  |
-| autogenerated/TaintedPath/my-fs-module.js:5:18:5:30 | "original-fs" | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:1:18:1:21 | 'fs' | CalleeFlexibleAccessPath | require |
-| autogenerated/TaintedPath/normalizedPaths.js:1:18:1:21 | 'fs' | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:1:18:1:21 | 'fs' | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/normalizedPaths.js:1:18:1:21 | 'fs' | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:1:18:1:21 | 'fs' | calleeImports |  |
-| autogenerated/TaintedPath/normalizedPaths.js:1:18:1:21 | 'fs' | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:1:18:1:21 | 'fs' | contextSurroundingFunctionParameters |  |
-| autogenerated/TaintedPath/normalizedPaths.js:1:18:1:21 | 'fs' | enclosingFunctionBody |  |
-| autogenerated/TaintedPath/normalizedPaths.js:1:18:1:21 | 'fs' | enclosingFunctionName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:1:18:1:21 | 'fs' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:1:18:1:21 | 'fs' | receiverName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:1:18:1:21 | 'fs' | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:2:23:2:31 | 'express' | CalleeFlexibleAccessPath | require |
-| autogenerated/TaintedPath/normalizedPaths.js:2:23:2:31 | 'express' | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:2:23:2:31 | 'express' | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/normalizedPaths.js:2:23:2:31 | 'express' | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:2:23:2:31 | 'express' | calleeImports |  |
-| autogenerated/TaintedPath/normalizedPaths.js:2:23:2:31 | 'express' | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:2:23:2:31 | 'express' | contextSurroundingFunctionParameters |  |
-| autogenerated/TaintedPath/normalizedPaths.js:2:23:2:31 | 'express' | enclosingFunctionBody |  |
-| autogenerated/TaintedPath/normalizedPaths.js:2:23:2:31 | 'express' | enclosingFunctionName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:2:23:2:31 | 'express' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:2:23:2:31 | 'express' | receiverName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:2:23:2:31 | 'express' | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:3:19:3:23 | 'url' | CalleeFlexibleAccessPath | require |
-| autogenerated/TaintedPath/normalizedPaths.js:3:19:3:23 | 'url' | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:3:19:3:23 | 'url' | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/normalizedPaths.js:3:19:3:23 | 'url' | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:3:19:3:23 | 'url' | calleeImports |  |
-| autogenerated/TaintedPath/normalizedPaths.js:3:19:3:23 | 'url' | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:3:19:3:23 | 'url' | contextSurroundingFunctionParameters |  |
-| autogenerated/TaintedPath/normalizedPaths.js:3:19:3:23 | 'url' | enclosingFunctionBody |  |
-| autogenerated/TaintedPath/normalizedPaths.js:3:19:3:23 | 'url' | enclosingFunctionName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:3:19:3:23 | 'url' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:3:19:3:23 | 'url' | receiverName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:3:19:3:23 | 'url' | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:4:24:4:42 | 'sanitize-filename' | CalleeFlexibleAccessPath | require |
-| autogenerated/TaintedPath/normalizedPaths.js:4:24:4:42 | 'sanitize-filename' | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:4:24:4:42 | 'sanitize-filename' | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/normalizedPaths.js:4:24:4:42 | 'sanitize-filename' | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:4:24:4:42 | 'sanitize-filename' | calleeImports |  |
-| autogenerated/TaintedPath/normalizedPaths.js:4:24:4:42 | 'sanitize-filename' | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:4:24:4:42 | 'sanitize-filename' | contextSurroundingFunctionParameters |  |
-| autogenerated/TaintedPath/normalizedPaths.js:4:24:4:42 | 'sanitize-filename' | enclosingFunctionBody |  |
-| autogenerated/TaintedPath/normalizedPaths.js:4:24:4:42 | 'sanitize-filename' | enclosingFunctionName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:4:24:4:42 | 'sanitize-filename' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:4:24:4:42 | 'sanitize-filename' | receiverName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:4:24:4:42 | 'sanitize-filename' | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:5:26:5:31 | 'path' | CalleeFlexibleAccessPath | require |
-| autogenerated/TaintedPath/normalizedPaths.js:5:26:5:31 | 'path' | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:5:26:5:31 | 'path' | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/normalizedPaths.js:5:26:5:31 | 'path' | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:5:26:5:31 | 'path' | calleeImports |  |
-| autogenerated/TaintedPath/normalizedPaths.js:5:26:5:31 | 'path' | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:5:26:5:31 | 'path' | contextSurroundingFunctionParameters |  |
-| autogenerated/TaintedPath/normalizedPaths.js:5:26:5:31 | 'path' | enclosingFunctionBody |  |
-| autogenerated/TaintedPath/normalizedPaths.js:5:26:5:31 | 'path' | enclosingFunctionName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:5:26:5:31 | 'path' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:5:26:5:31 | 'path' | receiverName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:5:26:5:31 | 'path' | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:10:9:10:16 | '/basic' | CalleeFlexibleAccessPath | app.get |
-| autogenerated/TaintedPath/normalizedPaths.js:10:9:10:16 | '/basic' | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:10:9:10:16 | '/basic' | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/normalizedPaths.js:10:9:10:16 | '/basic' | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:10:9:10:16 | '/basic' | calleeImports | express |
-| autogenerated/TaintedPath/normalizedPaths.js:10:9:10:16 | '/basic' | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:10:9:10:16 | '/basic' | contextSurroundingFunctionParameters |  |
-| autogenerated/TaintedPath/normalizedPaths.js:10:9:10:16 | '/basic' | enclosingFunctionBody |  |
-| autogenerated/TaintedPath/normalizedPaths.js:10:9:10:16 | '/basic' | enclosingFunctionName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:10:9:10:16 | '/basic' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:10:9:10:16 | '/basic' | receiverName | app |
-| autogenerated/TaintedPath/normalizedPaths.js:10:9:10:16 | '/basic' | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:10:19:18:1 | (req, r ... OT OK\\n} | CalleeFlexibleAccessPath | app.get |
-| autogenerated/TaintedPath/normalizedPaths.js:10:19:18:1 | (req, r ... OT OK\\n} | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:10:19:18:1 | (req, r ... OT OK\\n} | InputArgumentIndex | 1 |
-| autogenerated/TaintedPath/normalizedPaths.js:10:19:18:1 | (req, r ... OT OK\\n} | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:10:19:18:1 | (req, r ... OT OK\\n} | calleeImports | express |
-| autogenerated/TaintedPath/normalizedPaths.js:10:19:18:1 | (req, r ... OT OK\\n} | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:10:19:18:1 | (req, r ... OT OK\\n} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:10:19:18:1 | (req, r ... OT OK\\n} | enclosingFunctionBody |  |
-| autogenerated/TaintedPath/normalizedPaths.js:10:19:18:1 | (req, r ... OT OK\\n} | enclosingFunctionName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:10:19:18:1 | (req, r ... OT OK\\n} | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:10:19:18:1 | (req, r ... OT OK\\n} | receiverName | app |
-| autogenerated/TaintedPath/normalizedPaths.js:10:19:18:1 | (req, r ... OT OK\\n} | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:13:19:13:22 | path | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/normalizedPaths.js:13:19:13:22 | path | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:13:19:13:22 | path | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/normalizedPaths.js:13:19:13:22 | path | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:13:19:13:22 | path | calleeImports | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:13:19:13:22 | path | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:13:19:13:22 | path | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:13:19:13:22 | path | enclosingFunctionBody | req res path req query path fs readFileSync path fs readFileSync ./ path fs readFileSync path /index.html fs readFileSync pathModule join path index.html fs readFileSync pathModule join /home/user/www path |
-| autogenerated/TaintedPath/normalizedPaths.js:13:19:13:22 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:13:19:13:22 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:13:19:13:22 | path | receiverName | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:13:19:13:22 | path | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:14:19:14:29 | './' + path | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/normalizedPaths.js:14:19:14:29 | './' + path | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:14:19:14:29 | './' + path | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/normalizedPaths.js:14:19:14:29 | './' + path | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:14:19:14:29 | './' + path | calleeImports | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:14:19:14:29 | './' + path | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:14:19:14:29 | './' + path | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:14:19:14:29 | './' + path | enclosingFunctionBody | req res path req query path fs readFileSync path fs readFileSync ./ path fs readFileSync path /index.html fs readFileSync pathModule join path index.html fs readFileSync pathModule join /home/user/www path |
-| autogenerated/TaintedPath/normalizedPaths.js:14:19:14:29 | './' + path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:14:19:14:29 | './' + path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:14:19:14:29 | './' + path | receiverName | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:14:19:14:29 | './' + path | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:15:19:15:38 | path + '/index.html' | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/normalizedPaths.js:15:19:15:38 | path + '/index.html' | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:15:19:15:38 | path + '/index.html' | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/normalizedPaths.js:15:19:15:38 | path + '/index.html' | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:15:19:15:38 | path + '/index.html' | calleeImports | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:15:19:15:38 | path + '/index.html' | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:15:19:15:38 | path + '/index.html' | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:15:19:15:38 | path + '/index.html' | enclosingFunctionBody | req res path req query path fs readFileSync path fs readFileSync ./ path fs readFileSync path /index.html fs readFileSync pathModule join path index.html fs readFileSync pathModule join /home/user/www path |
-| autogenerated/TaintedPath/normalizedPaths.js:15:19:15:38 | path + '/index.html' | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:15:19:15:38 | path + '/index.html' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:15:19:15:38 | path + '/index.html' | receiverName | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:15:19:15:38 | path + '/index.html' | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:16:19:16:53 | pathMod ... .html') | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/normalizedPaths.js:16:19:16:53 | pathMod ... .html') | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:16:19:16:53 | pathMod ... .html') | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/normalizedPaths.js:16:19:16:53 | pathMod ... .html') | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:16:19:16:53 | pathMod ... .html') | calleeImports | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:16:19:16:53 | pathMod ... .html') | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:16:19:16:53 | pathMod ... .html') | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:16:19:16:53 | pathMod ... .html') | enclosingFunctionBody | req res path req query path fs readFileSync path fs readFileSync ./ path fs readFileSync path /index.html fs readFileSync pathModule join path index.html fs readFileSync pathModule join /home/user/www path |
-| autogenerated/TaintedPath/normalizedPaths.js:16:19:16:53 | pathMod ... .html') | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:16:19:16:53 | pathMod ... .html') | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:16:19:16:53 | pathMod ... .html') | receiverName | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:16:19:16:53 | pathMod ... .html') | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:17:19:17:57 | pathMod ... , path) | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/normalizedPaths.js:17:19:17:57 | pathMod ... , path) | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:17:19:17:57 | pathMod ... , path) | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/normalizedPaths.js:17:19:17:57 | pathMod ... , path) | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:17:19:17:57 | pathMod ... , path) | calleeImports | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:17:19:17:57 | pathMod ... , path) | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:17:19:17:57 | pathMod ... , path) | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:17:19:17:57 | pathMod ... , path) | enclosingFunctionBody | req res path req query path fs readFileSync path fs readFileSync ./ path fs readFileSync path /index.html fs readFileSync pathModule join path index.html fs readFileSync pathModule join /home/user/www path |
-| autogenerated/TaintedPath/normalizedPaths.js:17:19:17:57 | pathMod ... , path) | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:17:19:17:57 | pathMod ... , path) | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:17:19:17:57 | pathMod ... , path) | receiverName | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:17:19:17:57 | pathMod ... , path) | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:20:9:20:20 | '/normalize' | CalleeFlexibleAccessPath | app.get |
-| autogenerated/TaintedPath/normalizedPaths.js:20:9:20:20 | '/normalize' | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:20:9:20:20 | '/normalize' | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/normalizedPaths.js:20:9:20:20 | '/normalize' | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:20:9:20:20 | '/normalize' | calleeImports | express |
-| autogenerated/TaintedPath/normalizedPaths.js:20:9:20:20 | '/normalize' | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:20:9:20:20 | '/normalize' | contextSurroundingFunctionParameters |  |
-| autogenerated/TaintedPath/normalizedPaths.js:20:9:20:20 | '/normalize' | enclosingFunctionBody |  |
-| autogenerated/TaintedPath/normalizedPaths.js:20:9:20:20 | '/normalize' | enclosingFunctionName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:20:9:20:20 | '/normalize' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:20:9:20:20 | '/normalize' | receiverName | app |
-| autogenerated/TaintedPath/normalizedPaths.js:20:9:20:20 | '/normalize' | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:20:23:28:1 | (req, r ... OT OK\\n} | CalleeFlexibleAccessPath | app.get |
-| autogenerated/TaintedPath/normalizedPaths.js:20:23:28:1 | (req, r ... OT OK\\n} | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:20:23:28:1 | (req, r ... OT OK\\n} | InputArgumentIndex | 1 |
-| autogenerated/TaintedPath/normalizedPaths.js:20:23:28:1 | (req, r ... OT OK\\n} | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:20:23:28:1 | (req, r ... OT OK\\n} | calleeImports | express |
-| autogenerated/TaintedPath/normalizedPaths.js:20:23:28:1 | (req, r ... OT OK\\n} | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:20:23:28:1 | (req, r ... OT OK\\n} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:20:23:28:1 | (req, r ... OT OK\\n} | enclosingFunctionBody |  |
-| autogenerated/TaintedPath/normalizedPaths.js:20:23:28:1 | (req, r ... OT OK\\n} | enclosingFunctionName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:20:23:28:1 | (req, r ... OT OK\\n} | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:20:23:28:1 | (req, r ... OT OK\\n} | receiverName | app |
-| autogenerated/TaintedPath/normalizedPaths.js:20:23:28:1 | (req, r ... OT OK\\n} | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:21:14:21:49 | pathMod ... y.path) | CalleeFlexibleAccessPath |  |
-| autogenerated/TaintedPath/normalizedPaths.js:21:14:21:49 | pathMod ... y.path) | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:21:14:21:49 | pathMod ... y.path) | InputArgumentIndex |  |
-| autogenerated/TaintedPath/normalizedPaths.js:21:14:21:49 | pathMod ... y.path) | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:21:14:21:49 | pathMod ... y.path) | calleeImports |  |
-| autogenerated/TaintedPath/normalizedPaths.js:21:14:21:49 | pathMod ... y.path) | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:21:14:21:49 | pathMod ... y.path) | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:21:14:21:49 | pathMod ... y.path) | enclosingFunctionBody | req res path pathModule normalize req query path fs readFileSync path fs readFileSync ./ path fs readFileSync path /index.html fs readFileSync pathModule join path index.html fs readFileSync pathModule join /home/user/www path |
-| autogenerated/TaintedPath/normalizedPaths.js:21:14:21:49 | pathMod ... y.path) | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:21:14:21:49 | pathMod ... y.path) | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:21:14:21:49 | pathMod ... y.path) | receiverName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:21:14:21:49 | pathMod ... y.path) | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:23:19:23:22 | path | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/normalizedPaths.js:23:19:23:22 | path | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:23:19:23:22 | path | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/normalizedPaths.js:23:19:23:22 | path | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:23:19:23:22 | path | calleeImports | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:23:19:23:22 | path | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:23:19:23:22 | path | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:23:19:23:22 | path | enclosingFunctionBody | req res path pathModule normalize req query path fs readFileSync path fs readFileSync ./ path fs readFileSync path /index.html fs readFileSync pathModule join path index.html fs readFileSync pathModule join /home/user/www path |
-| autogenerated/TaintedPath/normalizedPaths.js:23:19:23:22 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:23:19:23:22 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:23:19:23:22 | path | receiverName | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:23:19:23:22 | path | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:24:19:24:29 | './' + path | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/normalizedPaths.js:24:19:24:29 | './' + path | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:24:19:24:29 | './' + path | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/normalizedPaths.js:24:19:24:29 | './' + path | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:24:19:24:29 | './' + path | calleeImports | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:24:19:24:29 | './' + path | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:24:19:24:29 | './' + path | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:24:19:24:29 | './' + path | enclosingFunctionBody | req res path pathModule normalize req query path fs readFileSync path fs readFileSync ./ path fs readFileSync path /index.html fs readFileSync pathModule join path index.html fs readFileSync pathModule join /home/user/www path |
-| autogenerated/TaintedPath/normalizedPaths.js:24:19:24:29 | './' + path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:24:19:24:29 | './' + path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:24:19:24:29 | './' + path | receiverName | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:24:19:24:29 | './' + path | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:25:19:25:38 | path + '/index.html' | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/normalizedPaths.js:25:19:25:38 | path + '/index.html' | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:25:19:25:38 | path + '/index.html' | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/normalizedPaths.js:25:19:25:38 | path + '/index.html' | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:25:19:25:38 | path + '/index.html' | calleeImports | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:25:19:25:38 | path + '/index.html' | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:25:19:25:38 | path + '/index.html' | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:25:19:25:38 | path + '/index.html' | enclosingFunctionBody | req res path pathModule normalize req query path fs readFileSync path fs readFileSync ./ path fs readFileSync path /index.html fs readFileSync pathModule join path index.html fs readFileSync pathModule join /home/user/www path |
-| autogenerated/TaintedPath/normalizedPaths.js:25:19:25:38 | path + '/index.html' | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:25:19:25:38 | path + '/index.html' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:25:19:25:38 | path + '/index.html' | receiverName | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:25:19:25:38 | path + '/index.html' | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:26:19:26:53 | pathMod ... .html') | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/normalizedPaths.js:26:19:26:53 | pathMod ... .html') | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:26:19:26:53 | pathMod ... .html') | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/normalizedPaths.js:26:19:26:53 | pathMod ... .html') | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:26:19:26:53 | pathMod ... .html') | calleeImports | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:26:19:26:53 | pathMod ... .html') | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:26:19:26:53 | pathMod ... .html') | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:26:19:26:53 | pathMod ... .html') | enclosingFunctionBody | req res path pathModule normalize req query path fs readFileSync path fs readFileSync ./ path fs readFileSync path /index.html fs readFileSync pathModule join path index.html fs readFileSync pathModule join /home/user/www path |
-| autogenerated/TaintedPath/normalizedPaths.js:26:19:26:53 | pathMod ... .html') | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:26:19:26:53 | pathMod ... .html') | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:26:19:26:53 | pathMod ... .html') | receiverName | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:26:19:26:53 | pathMod ... .html') | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:27:19:27:57 | pathMod ... , path) | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/normalizedPaths.js:27:19:27:57 | pathMod ... , path) | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:27:19:27:57 | pathMod ... , path) | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/normalizedPaths.js:27:19:27:57 | pathMod ... , path) | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:27:19:27:57 | pathMod ... , path) | calleeImports | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:27:19:27:57 | pathMod ... , path) | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:27:19:27:57 | pathMod ... , path) | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:27:19:27:57 | pathMod ... , path) | enclosingFunctionBody | req res path pathModule normalize req query path fs readFileSync path fs readFileSync ./ path fs readFileSync path /index.html fs readFileSync pathModule join path index.html fs readFileSync pathModule join /home/user/www path |
-| autogenerated/TaintedPath/normalizedPaths.js:27:19:27:57 | pathMod ... , path) | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:27:19:27:57 | pathMod ... , path) | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:27:19:27:57 | pathMod ... , path) | receiverName | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:27:19:27:57 | pathMod ... , path) | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:30:9:30:32 | '/norma ... solute' | CalleeFlexibleAccessPath | app.get |
-| autogenerated/TaintedPath/normalizedPaths.js:30:9:30:32 | '/norma ... solute' | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:30:9:30:32 | '/norma ... solute' | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/normalizedPaths.js:30:9:30:32 | '/norma ... solute' | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:30:9:30:32 | '/norma ... solute' | calleeImports | express |
-| autogenerated/TaintedPath/normalizedPaths.js:30:9:30:32 | '/norma ... solute' | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:30:9:30:32 | '/norma ... solute' | contextSurroundingFunctionParameters |  |
-| autogenerated/TaintedPath/normalizedPaths.js:30:9:30:32 | '/norma ... solute' | enclosingFunctionBody |  |
-| autogenerated/TaintedPath/normalizedPaths.js:30:9:30:32 | '/norma ... solute' | enclosingFunctionName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:30:9:30:32 | '/norma ... solute' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:30:9:30:32 | '/norma ... solute' | receiverName | app |
-| autogenerated/TaintedPath/normalizedPaths.js:30:9:30:32 | '/norma ... solute' | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:30:35:51:1 | (req, r ... // OK\\n} | CalleeFlexibleAccessPath | app.get |
-| autogenerated/TaintedPath/normalizedPaths.js:30:35:51:1 | (req, r ... // OK\\n} | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:30:35:51:1 | (req, r ... // OK\\n} | InputArgumentIndex | 1 |
-| autogenerated/TaintedPath/normalizedPaths.js:30:35:51:1 | (req, r ... // OK\\n} | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:30:35:51:1 | (req, r ... // OK\\n} | calleeImports | express |
-| autogenerated/TaintedPath/normalizedPaths.js:30:35:51:1 | (req, r ... // OK\\n} | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:30:35:51:1 | (req, r ... // OK\\n} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:30:35:51:1 | (req, r ... // OK\\n} | enclosingFunctionBody |  |
-| autogenerated/TaintedPath/normalizedPaths.js:30:35:51:1 | (req, r ... // OK\\n} | enclosingFunctionName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:30:35:51:1 | (req, r ... // OK\\n} | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:30:35:51:1 | (req, r ... // OK\\n} | receiverName | app |
-| autogenerated/TaintedPath/normalizedPaths.js:30:35:51:1 | (req, r ... // OK\\n} | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:31:14:31:49 | pathMod ... y.path) | CalleeFlexibleAccessPath |  |
-| autogenerated/TaintedPath/normalizedPaths.js:31:14:31:49 | pathMod ... y.path) | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:31:14:31:49 | pathMod ... y.path) | InputArgumentIndex |  |
-| autogenerated/TaintedPath/normalizedPaths.js:31:14:31:49 | pathMod ... y.path) | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:31:14:31:49 | pathMod ... y.path) | calleeImports |  |
-| autogenerated/TaintedPath/normalizedPaths.js:31:14:31:49 | pathMod ... y.path) | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:31:14:31:49 | pathMod ... y.path) | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:31:14:31:49 | pathMod ... y.path) | enclosingFunctionBody | req res path pathModule normalize req query path pathModule isAbsolute path fs readFileSync path path startsWith . fs readFileSync path fs readFileSync path path startsWith .. fs readFileSync path path startsWith ../ fs readFileSync path path startsWith .. pathModule sep fs readFileSync path |
-| autogenerated/TaintedPath/normalizedPaths.js:31:14:31:49 | pathMod ... y.path) | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:31:14:31:49 | pathMod ... y.path) | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:31:14:31:49 | pathMod ... y.path) | receiverName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:31:14:31:49 | pathMod ... y.path) | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:36:19:36:22 | path | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/normalizedPaths.js:36:19:36:22 | path | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:36:19:36:22 | path | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/normalizedPaths.js:36:19:36:22 | path | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:36:19:36:22 | path | calleeImports | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:36:19:36:22 | path | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:36:19:36:22 | path | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:36:19:36:22 | path | enclosingFunctionBody | req res path pathModule normalize req query path pathModule isAbsolute path fs readFileSync path path startsWith . fs readFileSync path fs readFileSync path path startsWith .. fs readFileSync path path startsWith ../ fs readFileSync path path startsWith .. pathModule sep fs readFileSync path |
-| autogenerated/TaintedPath/normalizedPaths.js:36:19:36:22 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:36:19:36:22 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:36:19:36:22 | path | receiverName | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:36:19:36:22 | path | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:38:24:38:26 | "." | CalleeFlexibleAccessPath | path.startsWith |
-| autogenerated/TaintedPath/normalizedPaths.js:38:24:38:26 | "." | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:38:24:38:26 | "." | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/normalizedPaths.js:38:24:38:26 | "." | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:38:24:38:26 | "." | calleeImports | path |
-| autogenerated/TaintedPath/normalizedPaths.js:38:24:38:26 | "." | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:38:24:38:26 | "." | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:38:24:38:26 | "." | enclosingFunctionBody | req res path pathModule normalize req query path pathModule isAbsolute path fs readFileSync path path startsWith . fs readFileSync path fs readFileSync path path startsWith .. fs readFileSync path path startsWith ../ fs readFileSync path path startsWith .. pathModule sep fs readFileSync path |
-| autogenerated/TaintedPath/normalizedPaths.js:38:24:38:26 | "." | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:38:24:38:26 | "." | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:38:24:38:26 | "." | receiverName | path |
-| autogenerated/TaintedPath/normalizedPaths.js:38:24:38:26 | "." | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:39:21:39:24 | path | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/normalizedPaths.js:39:21:39:24 | path | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:39:21:39:24 | path | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/normalizedPaths.js:39:21:39:24 | path | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:39:21:39:24 | path | calleeImports | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:39:21:39:24 | path | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:39:21:39:24 | path | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:39:21:39:24 | path | enclosingFunctionBody | req res path pathModule normalize req query path pathModule isAbsolute path fs readFileSync path path startsWith . fs readFileSync path fs readFileSync path path startsWith .. fs readFileSync path path startsWith ../ fs readFileSync path path startsWith .. pathModule sep fs readFileSync path |
-| autogenerated/TaintedPath/normalizedPaths.js:39:21:39:24 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:39:21:39:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:39:21:39:24 | path | receiverName | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:39:21:39:24 | path | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:41:21:41:24 | path | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/normalizedPaths.js:41:21:41:24 | path | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:41:21:41:24 | path | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/normalizedPaths.js:41:21:41:24 | path | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:41:21:41:24 | path | calleeImports | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:41:21:41:24 | path | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:41:21:41:24 | path | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:41:21:41:24 | path | enclosingFunctionBody | req res path pathModule normalize req query path pathModule isAbsolute path fs readFileSync path path startsWith . fs readFileSync path fs readFileSync path path startsWith .. fs readFileSync path path startsWith ../ fs readFileSync path path startsWith .. pathModule sep fs readFileSync path |
-| autogenerated/TaintedPath/normalizedPaths.js:41:21:41:24 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:41:21:41:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:41:21:41:24 | path | receiverName | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:41:21:41:24 | path | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:43:24:43:27 | ".." | CalleeFlexibleAccessPath | path.startsWith |
-| autogenerated/TaintedPath/normalizedPaths.js:43:24:43:27 | ".." | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:43:24:43:27 | ".." | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/normalizedPaths.js:43:24:43:27 | ".." | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:43:24:43:27 | ".." | calleeImports | path |
-| autogenerated/TaintedPath/normalizedPaths.js:43:24:43:27 | ".." | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:43:24:43:27 | ".." | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:43:24:43:27 | ".." | enclosingFunctionBody | req res path pathModule normalize req query path pathModule isAbsolute path fs readFileSync path path startsWith . fs readFileSync path fs readFileSync path path startsWith .. fs readFileSync path path startsWith ../ fs readFileSync path path startsWith .. pathModule sep fs readFileSync path |
-| autogenerated/TaintedPath/normalizedPaths.js:43:24:43:27 | ".." | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:43:24:43:27 | ".." | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:43:24:43:27 | ".." | receiverName | path |
-| autogenerated/TaintedPath/normalizedPaths.js:43:24:43:27 | ".." | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:44:21:44:24 | path | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/normalizedPaths.js:44:21:44:24 | path | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:44:21:44:24 | path | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/normalizedPaths.js:44:21:44:24 | path | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:44:21:44:24 | path | calleeImports | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:44:21:44:24 | path | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:44:21:44:24 | path | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:44:21:44:24 | path | enclosingFunctionBody | req res path pathModule normalize req query path pathModule isAbsolute path fs readFileSync path path startsWith . fs readFileSync path fs readFileSync path path startsWith .. fs readFileSync path path startsWith ../ fs readFileSync path path startsWith .. pathModule sep fs readFileSync path |
-| autogenerated/TaintedPath/normalizedPaths.js:44:21:44:24 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:44:21:44:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:44:21:44:24 | path | receiverName | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:44:21:44:24 | path | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:46:24:46:28 | "../" | CalleeFlexibleAccessPath | path.startsWith |
-| autogenerated/TaintedPath/normalizedPaths.js:46:24:46:28 | "../" | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:46:24:46:28 | "../" | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/normalizedPaths.js:46:24:46:28 | "../" | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:46:24:46:28 | "../" | calleeImports | path |
-| autogenerated/TaintedPath/normalizedPaths.js:46:24:46:28 | "../" | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:46:24:46:28 | "../" | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:46:24:46:28 | "../" | enclosingFunctionBody | req res path pathModule normalize req query path pathModule isAbsolute path fs readFileSync path path startsWith . fs readFileSync path fs readFileSync path path startsWith .. fs readFileSync path path startsWith ../ fs readFileSync path path startsWith .. pathModule sep fs readFileSync path |
-| autogenerated/TaintedPath/normalizedPaths.js:46:24:46:28 | "../" | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:46:24:46:28 | "../" | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:46:24:46:28 | "../" | receiverName | path |
-| autogenerated/TaintedPath/normalizedPaths.js:46:24:46:28 | "../" | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:47:21:47:24 | path | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/normalizedPaths.js:47:21:47:24 | path | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:47:21:47:24 | path | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/normalizedPaths.js:47:21:47:24 | path | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:47:21:47:24 | path | calleeImports | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:47:21:47:24 | path | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:47:21:47:24 | path | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:47:21:47:24 | path | enclosingFunctionBody | req res path pathModule normalize req query path pathModule isAbsolute path fs readFileSync path path startsWith . fs readFileSync path fs readFileSync path path startsWith .. fs readFileSync path path startsWith ../ fs readFileSync path path startsWith .. pathModule sep fs readFileSync path |
-| autogenerated/TaintedPath/normalizedPaths.js:47:21:47:24 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:47:21:47:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:47:21:47:24 | path | receiverName | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:47:21:47:24 | path | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:49:24:49:44 | ".." +  ... ule.sep | CalleeFlexibleAccessPath | path.startsWith |
-| autogenerated/TaintedPath/normalizedPaths.js:49:24:49:44 | ".." +  ... ule.sep | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:49:24:49:44 | ".." +  ... ule.sep | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/normalizedPaths.js:49:24:49:44 | ".." +  ... ule.sep | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:49:24:49:44 | ".." +  ... ule.sep | calleeImports | path |
-| autogenerated/TaintedPath/normalizedPaths.js:49:24:49:44 | ".." +  ... ule.sep | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:49:24:49:44 | ".." +  ... ule.sep | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:49:24:49:44 | ".." +  ... ule.sep | enclosingFunctionBody | req res path pathModule normalize req query path pathModule isAbsolute path fs readFileSync path path startsWith . fs readFileSync path fs readFileSync path path startsWith .. fs readFileSync path path startsWith ../ fs readFileSync path path startsWith .. pathModule sep fs readFileSync path |
-| autogenerated/TaintedPath/normalizedPaths.js:49:24:49:44 | ".." +  ... ule.sep | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:49:24:49:44 | ".." +  ... ule.sep | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:49:24:49:44 | ".." +  ... ule.sep | receiverName | path |
-| autogenerated/TaintedPath/normalizedPaths.js:49:24:49:44 | ".." +  ... ule.sep | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:50:21:50:24 | path | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/normalizedPaths.js:50:21:50:24 | path | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:50:21:50:24 | path | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/normalizedPaths.js:50:21:50:24 | path | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:50:21:50:24 | path | calleeImports | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:50:21:50:24 | path | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:50:21:50:24 | path | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:50:21:50:24 | path | enclosingFunctionBody | req res path pathModule normalize req query path pathModule isAbsolute path fs readFileSync path path startsWith . fs readFileSync path fs readFileSync path path startsWith .. fs readFileSync path path startsWith ../ fs readFileSync path path startsWith .. pathModule sep fs readFileSync path |
-| autogenerated/TaintedPath/normalizedPaths.js:50:21:50:24 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:50:21:50:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:50:21:50:24 | path | receiverName | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:50:21:50:24 | path | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:53:9:53:36 | '/norma ... DotDot' | CalleeFlexibleAccessPath | app.get |
-| autogenerated/TaintedPath/normalizedPaths.js:53:9:53:36 | '/norma ... DotDot' | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:53:9:53:36 | '/norma ... DotDot' | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/normalizedPaths.js:53:9:53:36 | '/norma ... DotDot' | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:53:9:53:36 | '/norma ... DotDot' | calleeImports | express |
-| autogenerated/TaintedPath/normalizedPaths.js:53:9:53:36 | '/norma ... DotDot' | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:53:9:53:36 | '/norma ... DotDot' | contextSurroundingFunctionParameters |  |
-| autogenerated/TaintedPath/normalizedPaths.js:53:9:53:36 | '/norma ... DotDot' | enclosingFunctionBody |  |
-| autogenerated/TaintedPath/normalizedPaths.js:53:9:53:36 | '/norma ... DotDot' | enclosingFunctionName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:53:9:53:36 | '/norma ... DotDot' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:53:9:53:36 | '/norma ... DotDot' | receiverName | app |
-| autogenerated/TaintedPath/normalizedPaths.js:53:9:53:36 | '/norma ... DotDot' | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:53:39:69:1 | (req, r ... OT OK\\n} | CalleeFlexibleAccessPath | app.get |
-| autogenerated/TaintedPath/normalizedPaths.js:53:39:69:1 | (req, r ... OT OK\\n} | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:53:39:69:1 | (req, r ... OT OK\\n} | InputArgumentIndex | 1 |
-| autogenerated/TaintedPath/normalizedPaths.js:53:39:69:1 | (req, r ... OT OK\\n} | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:53:39:69:1 | (req, r ... OT OK\\n} | calleeImports | express |
-| autogenerated/TaintedPath/normalizedPaths.js:53:39:69:1 | (req, r ... OT OK\\n} | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:53:39:69:1 | (req, r ... OT OK\\n} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:53:39:69:1 | (req, r ... OT OK\\n} | enclosingFunctionBody |  |
-| autogenerated/TaintedPath/normalizedPaths.js:53:39:69:1 | (req, r ... OT OK\\n} | enclosingFunctionName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:53:39:69:1 | (req, r ... OT OK\\n} | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:53:39:69:1 | (req, r ... OT OK\\n} | receiverName | app |
-| autogenerated/TaintedPath/normalizedPaths.js:53:39:69:1 | (req, r ... OT OK\\n} | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:54:14:54:49 | pathMod ... y.path) | CalleeFlexibleAccessPath |  |
-| autogenerated/TaintedPath/normalizedPaths.js:54:14:54:49 | pathMod ... y.path) | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:54:14:54:49 | pathMod ... y.path) | InputArgumentIndex |  |
-| autogenerated/TaintedPath/normalizedPaths.js:54:14:54:49 | pathMod ... y.path) | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:54:14:54:49 | pathMod ... y.path) | calleeImports |  |
-| autogenerated/TaintedPath/normalizedPaths.js:54:14:54:49 | pathMod ... y.path) | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:54:14:54:49 | pathMod ... y.path) | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:54:14:54:49 | pathMod ... y.path) | enclosingFunctionBody | req res path pathModule normalize req query path path startsWith .. fs readFileSync path fs readFileSync ./ path fs readFileSync path /index.html pathModule isAbsolute path fs readFileSync path fs readFileSync path |
-| autogenerated/TaintedPath/normalizedPaths.js:54:14:54:49 | pathMod ... y.path) | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:54:14:54:49 | pathMod ... y.path) | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:54:14:54:49 | pathMod ... y.path) | receiverName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:54:14:54:49 | pathMod ... y.path) | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:56:23:56:26 | ".." | CalleeFlexibleAccessPath | path.startsWith |
-| autogenerated/TaintedPath/normalizedPaths.js:56:23:56:26 | ".." | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:56:23:56:26 | ".." | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/normalizedPaths.js:56:23:56:26 | ".." | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:56:23:56:26 | ".." | calleeImports | path |
-| autogenerated/TaintedPath/normalizedPaths.js:56:23:56:26 | ".." | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:56:23:56:26 | ".." | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:56:23:56:26 | ".." | enclosingFunctionBody | req res path pathModule normalize req query path path startsWith .. fs readFileSync path fs readFileSync ./ path fs readFileSync path /index.html pathModule isAbsolute path fs readFileSync path fs readFileSync path |
-| autogenerated/TaintedPath/normalizedPaths.js:56:23:56:26 | ".." | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:56:23:56:26 | ".." | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:56:23:56:26 | ".." | receiverName | path |
-| autogenerated/TaintedPath/normalizedPaths.js:56:23:56:26 | ".." | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:59:19:59:22 | path | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/normalizedPaths.js:59:19:59:22 | path | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:59:19:59:22 | path | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/normalizedPaths.js:59:19:59:22 | path | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:59:19:59:22 | path | calleeImports | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:59:19:59:22 | path | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:59:19:59:22 | path | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:59:19:59:22 | path | enclosingFunctionBody | req res path pathModule normalize req query path path startsWith .. fs readFileSync path fs readFileSync ./ path fs readFileSync path /index.html pathModule isAbsolute path fs readFileSync path fs readFileSync path |
-| autogenerated/TaintedPath/normalizedPaths.js:59:19:59:22 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:59:19:59:22 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:59:19:59:22 | path | receiverName | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:59:19:59:22 | path | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:61:19:61:29 | "./" + path | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/normalizedPaths.js:61:19:61:29 | "./" + path | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:61:19:61:29 | "./" + path | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/normalizedPaths.js:61:19:61:29 | "./" + path | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:61:19:61:29 | "./" + path | calleeImports | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:61:19:61:29 | "./" + path | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:61:19:61:29 | "./" + path | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:61:19:61:29 | "./" + path | enclosingFunctionBody | req res path pathModule normalize req query path path startsWith .. fs readFileSync path fs readFileSync ./ path fs readFileSync path /index.html pathModule isAbsolute path fs readFileSync path fs readFileSync path |
-| autogenerated/TaintedPath/normalizedPaths.js:61:19:61:29 | "./" + path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:61:19:61:29 | "./" + path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:61:19:61:29 | "./" + path | receiverName | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:61:19:61:29 | "./" + path | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:63:19:63:38 | path + "/index.html" | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/normalizedPaths.js:63:19:63:38 | path + "/index.html" | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:63:19:63:38 | path + "/index.html" | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/normalizedPaths.js:63:19:63:38 | path + "/index.html" | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:63:19:63:38 | path + "/index.html" | calleeImports | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:63:19:63:38 | path + "/index.html" | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:63:19:63:38 | path + "/index.html" | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:63:19:63:38 | path + "/index.html" | enclosingFunctionBody | req res path pathModule normalize req query path path startsWith .. fs readFileSync path fs readFileSync ./ path fs readFileSync path /index.html pathModule isAbsolute path fs readFileSync path fs readFileSync path |
-| autogenerated/TaintedPath/normalizedPaths.js:63:19:63:38 | path + "/index.html" | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:63:19:63:38 | path + "/index.html" | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:63:19:63:38 | path + "/index.html" | receiverName | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:63:19:63:38 | path + "/index.html" | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:66:21:66:24 | path | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/normalizedPaths.js:66:21:66:24 | path | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:66:21:66:24 | path | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/normalizedPaths.js:66:21:66:24 | path | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:66:21:66:24 | path | calleeImports | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:66:21:66:24 | path | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:66:21:66:24 | path | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:66:21:66:24 | path | enclosingFunctionBody | req res path pathModule normalize req query path path startsWith .. fs readFileSync path fs readFileSync ./ path fs readFileSync path /index.html pathModule isAbsolute path fs readFileSync path fs readFileSync path |
-| autogenerated/TaintedPath/normalizedPaths.js:66:21:66:24 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:66:21:66:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:66:21:66:24 | path | receiverName | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:66:21:66:24 | path | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:68:21:68:24 | path | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/normalizedPaths.js:68:21:68:24 | path | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:68:21:68:24 | path | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/normalizedPaths.js:68:21:68:24 | path | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:68:21:68:24 | path | calleeImports | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:68:21:68:24 | path | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:68:21:68:24 | path | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:68:21:68:24 | path | enclosingFunctionBody | req res path pathModule normalize req query path path startsWith .. fs readFileSync path fs readFileSync ./ path fs readFileSync path /index.html pathModule isAbsolute path fs readFileSync path fs readFileSync path |
-| autogenerated/TaintedPath/normalizedPaths.js:68:21:68:24 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:68:21:68:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:68:21:68:24 | path | receiverName | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:68:21:68:24 | path | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:71:9:71:28 | '/prepend-normalize' | CalleeFlexibleAccessPath | app.get |
-| autogenerated/TaintedPath/normalizedPaths.js:71:9:71:28 | '/prepend-normalize' | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:71:9:71:28 | '/prepend-normalize' | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/normalizedPaths.js:71:9:71:28 | '/prepend-normalize' | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:71:9:71:28 | '/prepend-normalize' | calleeImports | express |
-| autogenerated/TaintedPath/normalizedPaths.js:71:9:71:28 | '/prepend-normalize' | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:71:9:71:28 | '/prepend-normalize' | contextSurroundingFunctionParameters |  |
-| autogenerated/TaintedPath/normalizedPaths.js:71:9:71:28 | '/prepend-normalize' | enclosingFunctionBody |  |
-| autogenerated/TaintedPath/normalizedPaths.js:71:9:71:28 | '/prepend-normalize' | enclosingFunctionName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:71:9:71:28 | '/prepend-normalize' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:71:9:71:28 | '/prepend-normalize' | receiverName | app |
-| autogenerated/TaintedPath/normalizedPaths.js:71:9:71:28 | '/prepend-normalize' | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:71:31:79:1 | (req, r ... OT OK\\n} | CalleeFlexibleAccessPath | app.get |
-| autogenerated/TaintedPath/normalizedPaths.js:71:31:79:1 | (req, r ... OT OK\\n} | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:71:31:79:1 | (req, r ... OT OK\\n} | InputArgumentIndex | 1 |
-| autogenerated/TaintedPath/normalizedPaths.js:71:31:79:1 | (req, r ... OT OK\\n} | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:71:31:79:1 | (req, r ... OT OK\\n} | calleeImports | express |
-| autogenerated/TaintedPath/normalizedPaths.js:71:31:79:1 | (req, r ... OT OK\\n} | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:71:31:79:1 | (req, r ... OT OK\\n} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:71:31:79:1 | (req, r ... OT OK\\n} | enclosingFunctionBody |  |
-| autogenerated/TaintedPath/normalizedPaths.js:71:31:79:1 | (req, r ... OT OK\\n} | enclosingFunctionName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:71:31:79:1 | (req, r ... OT OK\\n} | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:71:31:79:1 | (req, r ... OT OK\\n} | receiverName | app |
-| autogenerated/TaintedPath/normalizedPaths.js:71:31:79:1 | (req, r ... OT OK\\n} | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:73:14:73:56 | pathMod ... y.path) | CalleeFlexibleAccessPath |  |
-| autogenerated/TaintedPath/normalizedPaths.js:73:14:73:56 | pathMod ... y.path) | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:73:14:73:56 | pathMod ... y.path) | InputArgumentIndex |  |
-| autogenerated/TaintedPath/normalizedPaths.js:73:14:73:56 | pathMod ... y.path) | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:73:14:73:56 | pathMod ... y.path) | calleeImports |  |
-| autogenerated/TaintedPath/normalizedPaths.js:73:14:73:56 | pathMod ... y.path) | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:73:14:73:56 | pathMod ... y.path) | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:73:14:73:56 | pathMod ... y.path) | enclosingFunctionBody | req res path pathModule normalize ./ req query path path startsWith .. fs readFileSync path fs readFileSync path |
-| autogenerated/TaintedPath/normalizedPaths.js:73:14:73:56 | pathMod ... y.path) | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:73:14:73:56 | pathMod ... y.path) | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:73:14:73:56 | pathMod ... y.path) | receiverName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:73:14:73:56 | pathMod ... y.path) | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:75:24:75:27 | ".." | CalleeFlexibleAccessPath | path.startsWith |
-| autogenerated/TaintedPath/normalizedPaths.js:75:24:75:27 | ".." | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:75:24:75:27 | ".." | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/normalizedPaths.js:75:24:75:27 | ".." | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:75:24:75:27 | ".." | calleeImports | path |
-| autogenerated/TaintedPath/normalizedPaths.js:75:24:75:27 | ".." | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:75:24:75:27 | ".." | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:75:24:75:27 | ".." | enclosingFunctionBody | req res path pathModule normalize ./ req query path path startsWith .. fs readFileSync path fs readFileSync path |
-| autogenerated/TaintedPath/normalizedPaths.js:75:24:75:27 | ".." | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:75:24:75:27 | ".." | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:75:24:75:27 | ".." | receiverName | path |
-| autogenerated/TaintedPath/normalizedPaths.js:75:24:75:27 | ".." | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:76:21:76:24 | path | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/normalizedPaths.js:76:21:76:24 | path | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:76:21:76:24 | path | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/normalizedPaths.js:76:21:76:24 | path | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:76:21:76:24 | path | calleeImports | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:76:21:76:24 | path | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:76:21:76:24 | path | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:76:21:76:24 | path | enclosingFunctionBody | req res path pathModule normalize ./ req query path path startsWith .. fs readFileSync path fs readFileSync path |
-| autogenerated/TaintedPath/normalizedPaths.js:76:21:76:24 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:76:21:76:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:76:21:76:24 | path | receiverName | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:76:21:76:24 | path | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:78:22:78:25 | path | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/normalizedPaths.js:78:22:78:25 | path | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:78:22:78:25 | path | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/normalizedPaths.js:78:22:78:25 | path | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:78:22:78:25 | path | calleeImports | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:78:22:78:25 | path | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:78:22:78:25 | path | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:78:22:78:25 | path | enclosingFunctionBody | req res path pathModule normalize ./ req query path path startsWith .. fs readFileSync path fs readFileSync path |
-| autogenerated/TaintedPath/normalizedPaths.js:78:22:78:25 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:78:22:78:25 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:78:22:78:25 | path | receiverName | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:78:22:78:25 | path | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:81:9:81:19 | '/absolute' | CalleeFlexibleAccessPath | app.get |
-| autogenerated/TaintedPath/normalizedPaths.js:81:9:81:19 | '/absolute' | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:81:9:81:19 | '/absolute' | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/normalizedPaths.js:81:9:81:19 | '/absolute' | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:81:9:81:19 | '/absolute' | calleeImports | express |
-| autogenerated/TaintedPath/normalizedPaths.js:81:9:81:19 | '/absolute' | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:81:9:81:19 | '/absolute' | contextSurroundingFunctionParameters |  |
-| autogenerated/TaintedPath/normalizedPaths.js:81:9:81:19 | '/absolute' | enclosingFunctionBody |  |
-| autogenerated/TaintedPath/normalizedPaths.js:81:9:81:19 | '/absolute' | enclosingFunctionName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:81:9:81:19 | '/absolute' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:81:9:81:19 | '/absolute' | receiverName | app |
-| autogenerated/TaintedPath/normalizedPaths.js:81:9:81:19 | '/absolute' | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:81:22:91:1 | (req, r ... '../'\\n} | CalleeFlexibleAccessPath | app.get |
-| autogenerated/TaintedPath/normalizedPaths.js:81:22:91:1 | (req, r ... '../'\\n} | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:81:22:91:1 | (req, r ... '../'\\n} | InputArgumentIndex | 1 |
-| autogenerated/TaintedPath/normalizedPaths.js:81:22:91:1 | (req, r ... '../'\\n} | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:81:22:91:1 | (req, r ... '../'\\n} | calleeImports | express |
-| autogenerated/TaintedPath/normalizedPaths.js:81:22:91:1 | (req, r ... '../'\\n} | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:81:22:91:1 | (req, r ... '../'\\n} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:81:22:91:1 | (req, r ... '../'\\n} | enclosingFunctionBody |  |
-| autogenerated/TaintedPath/normalizedPaths.js:81:22:91:1 | (req, r ... '../'\\n} | enclosingFunctionName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:81:22:91:1 | (req, r ... '../'\\n} | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:81:22:91:1 | (req, r ... '../'\\n} | receiverName | app |
-| autogenerated/TaintedPath/normalizedPaths.js:81:22:91:1 | (req, r ... '../'\\n} | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:87:29:87:32 | path | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/normalizedPaths.js:87:29:87:32 | path | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:87:29:87:32 | path | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/normalizedPaths.js:87:29:87:32 | path | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:87:29:87:32 | path | calleeImports | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:87:29:87:32 | path | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:87:29:87:32 | path | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:87:29:87:32 | path | enclosingFunctionBody | req res path req query path pathModule isAbsolute path res write fs readFileSync path path startsWith /home/user/www res write fs readFileSync path |
-| autogenerated/TaintedPath/normalizedPaths.js:87:29:87:32 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:87:29:87:32 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:87:29:87:32 | path | receiverName | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:87:29:87:32 | path | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:89:23:89:38 | '/home/user/www' | CalleeFlexibleAccessPath | path.startsWith |
-| autogenerated/TaintedPath/normalizedPaths.js:89:23:89:38 | '/home/user/www' | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:89:23:89:38 | '/home/user/www' | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/normalizedPaths.js:89:23:89:38 | '/home/user/www' | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:89:23:89:38 | '/home/user/www' | calleeImports |  |
-| autogenerated/TaintedPath/normalizedPaths.js:89:23:89:38 | '/home/user/www' | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:89:23:89:38 | '/home/user/www' | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:89:23:89:38 | '/home/user/www' | enclosingFunctionBody | req res path req query path pathModule isAbsolute path res write fs readFileSync path path startsWith /home/user/www res write fs readFileSync path |
-| autogenerated/TaintedPath/normalizedPaths.js:89:23:89:38 | '/home/user/www' | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:89:23:89:38 | '/home/user/www' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:89:23:89:38 | '/home/user/www' | receiverName | path |
-| autogenerated/TaintedPath/normalizedPaths.js:89:23:89:38 | '/home/user/www' | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:90:31:90:34 | path | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/normalizedPaths.js:90:31:90:34 | path | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:90:31:90:34 | path | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/normalizedPaths.js:90:31:90:34 | path | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:90:31:90:34 | path | calleeImports | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:90:31:90:34 | path | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:90:31:90:34 | path | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:90:31:90:34 | path | enclosingFunctionBody | req res path req query path pathModule isAbsolute path res write fs readFileSync path path startsWith /home/user/www res write fs readFileSync path |
-| autogenerated/TaintedPath/normalizedPaths.js:90:31:90:34 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:90:31:90:34 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:90:31:90:34 | path | receiverName | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:90:31:90:34 | path | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:93:9:93:30 | '/norma ... solute' | CalleeFlexibleAccessPath | app.get |
-| autogenerated/TaintedPath/normalizedPaths.js:93:9:93:30 | '/norma ... solute' | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:93:9:93:30 | '/norma ... solute' | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/normalizedPaths.js:93:9:93:30 | '/norma ... solute' | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:93:9:93:30 | '/norma ... solute' | calleeImports | express |
-| autogenerated/TaintedPath/normalizedPaths.js:93:9:93:30 | '/norma ... solute' | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:93:9:93:30 | '/norma ... solute' | contextSurroundingFunctionParameters |  |
-| autogenerated/TaintedPath/normalizedPaths.js:93:9:93:30 | '/norma ... solute' | enclosingFunctionBody |  |
-| autogenerated/TaintedPath/normalizedPaths.js:93:9:93:30 | '/norma ... solute' | enclosingFunctionName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:93:9:93:30 | '/norma ... solute' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:93:9:93:30 | '/norma ... solute' | receiverName | app |
-| autogenerated/TaintedPath/normalizedPaths.js:93:9:93:30 | '/norma ... solute' | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:93:33:103:1 | (req, r ... // OK\\n} | CalleeFlexibleAccessPath | app.get |
-| autogenerated/TaintedPath/normalizedPaths.js:93:33:103:1 | (req, r ... // OK\\n} | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:93:33:103:1 | (req, r ... // OK\\n} | InputArgumentIndex | 1 |
-| autogenerated/TaintedPath/normalizedPaths.js:93:33:103:1 | (req, r ... // OK\\n} | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:93:33:103:1 | (req, r ... // OK\\n} | calleeImports | express |
-| autogenerated/TaintedPath/normalizedPaths.js:93:33:103:1 | (req, r ... // OK\\n} | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:93:33:103:1 | (req, r ... // OK\\n} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:93:33:103:1 | (req, r ... // OK\\n} | enclosingFunctionBody |  |
-| autogenerated/TaintedPath/normalizedPaths.js:93:33:103:1 | (req, r ... // OK\\n} | enclosingFunctionName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:93:33:103:1 | (req, r ... // OK\\n} | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:93:33:103:1 | (req, r ... // OK\\n} | receiverName | app |
-| autogenerated/TaintedPath/normalizedPaths.js:93:33:103:1 | (req, r ... // OK\\n} | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:94:14:94:49 | pathMod ... y.path) | CalleeFlexibleAccessPath |  |
-| autogenerated/TaintedPath/normalizedPaths.js:94:14:94:49 | pathMod ... y.path) | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:94:14:94:49 | pathMod ... y.path) | InputArgumentIndex |  |
-| autogenerated/TaintedPath/normalizedPaths.js:94:14:94:49 | pathMod ... y.path) | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:94:14:94:49 | pathMod ... y.path) | calleeImports |  |
-| autogenerated/TaintedPath/normalizedPaths.js:94:14:94:49 | pathMod ... y.path) | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:94:14:94:49 | pathMod ... y.path) | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:94:14:94:49 | pathMod ... y.path) | enclosingFunctionBody | req res path pathModule normalize req query path pathModule isAbsolute path res write fs readFileSync path path startsWith /home/user/www res write fs readFileSync path |
-| autogenerated/TaintedPath/normalizedPaths.js:94:14:94:49 | pathMod ... y.path) | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:94:14:94:49 | pathMod ... y.path) | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:94:14:94:49 | pathMod ... y.path) | receiverName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:94:14:94:49 | pathMod ... y.path) | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:99:29:99:32 | path | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/normalizedPaths.js:99:29:99:32 | path | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:99:29:99:32 | path | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/normalizedPaths.js:99:29:99:32 | path | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:99:29:99:32 | path | calleeImports | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:99:29:99:32 | path | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:99:29:99:32 | path | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:99:29:99:32 | path | enclosingFunctionBody | req res path pathModule normalize req query path pathModule isAbsolute path res write fs readFileSync path path startsWith /home/user/www res write fs readFileSync path |
-| autogenerated/TaintedPath/normalizedPaths.js:99:29:99:32 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:99:29:99:32 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:99:29:99:32 | path | receiverName | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:99:29:99:32 | path | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:101:23:101:38 | '/home/user/www' | CalleeFlexibleAccessPath | path.startsWith |
-| autogenerated/TaintedPath/normalizedPaths.js:101:23:101:38 | '/home/user/www' | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:101:23:101:38 | '/home/user/www' | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/normalizedPaths.js:101:23:101:38 | '/home/user/www' | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:101:23:101:38 | '/home/user/www' | calleeImports | path |
-| autogenerated/TaintedPath/normalizedPaths.js:101:23:101:38 | '/home/user/www' | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:101:23:101:38 | '/home/user/www' | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:101:23:101:38 | '/home/user/www' | enclosingFunctionBody | req res path pathModule normalize req query path pathModule isAbsolute path res write fs readFileSync path path startsWith /home/user/www res write fs readFileSync path |
-| autogenerated/TaintedPath/normalizedPaths.js:101:23:101:38 | '/home/user/www' | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:101:23:101:38 | '/home/user/www' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:101:23:101:38 | '/home/user/www' | receiverName | path |
-| autogenerated/TaintedPath/normalizedPaths.js:101:23:101:38 | '/home/user/www' | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:102:31:102:34 | path | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/normalizedPaths.js:102:31:102:34 | path | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:102:31:102:34 | path | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/normalizedPaths.js:102:31:102:34 | path | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:102:31:102:34 | path | calleeImports | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:102:31:102:34 | path | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:102:31:102:34 | path | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:102:31:102:34 | path | enclosingFunctionBody | req res path pathModule normalize req query path pathModule isAbsolute path res write fs readFileSync path path startsWith /home/user/www res write fs readFileSync path |
-| autogenerated/TaintedPath/normalizedPaths.js:102:31:102:34 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:102:31:102:34 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:102:31:102:34 | path | receiverName | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:102:31:102:34 | path | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:105:9:105:25 | '/combined-check' | CalleeFlexibleAccessPath | app.get |
-| autogenerated/TaintedPath/normalizedPaths.js:105:9:105:25 | '/combined-check' | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:105:9:105:25 | '/combined-check' | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/normalizedPaths.js:105:9:105:25 | '/combined-check' | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:105:9:105:25 | '/combined-check' | calleeImports | express |
-| autogenerated/TaintedPath/normalizedPaths.js:105:9:105:25 | '/combined-check' | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:105:9:105:25 | '/combined-check' | contextSurroundingFunctionParameters |  |
-| autogenerated/TaintedPath/normalizedPaths.js:105:9:105:25 | '/combined-check' | enclosingFunctionBody |  |
-| autogenerated/TaintedPath/normalizedPaths.js:105:9:105:25 | '/combined-check' | enclosingFunctionName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:105:9:105:25 | '/combined-check' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:105:9:105:25 | '/combined-check' | receiverName | app |
-| autogenerated/TaintedPath/normalizedPaths.js:105:9:105:25 | '/combined-check' | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:105:28:114:1 | (req, r ... // OK\\n} | CalleeFlexibleAccessPath | app.get |
-| autogenerated/TaintedPath/normalizedPaths.js:105:28:114:1 | (req, r ... // OK\\n} | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:105:28:114:1 | (req, r ... // OK\\n} | InputArgumentIndex | 1 |
-| autogenerated/TaintedPath/normalizedPaths.js:105:28:114:1 | (req, r ... // OK\\n} | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:105:28:114:1 | (req, r ... // OK\\n} | calleeImports | express |
-| autogenerated/TaintedPath/normalizedPaths.js:105:28:114:1 | (req, r ... // OK\\n} | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:105:28:114:1 | (req, r ... // OK\\n} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:105:28:114:1 | (req, r ... // OK\\n} | enclosingFunctionBody |  |
-| autogenerated/TaintedPath/normalizedPaths.js:105:28:114:1 | (req, r ... // OK\\n} | enclosingFunctionName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:105:28:114:1 | (req, r ... // OK\\n} | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:105:28:114:1 | (req, r ... // OK\\n} | receiverName | app |
-| autogenerated/TaintedPath/normalizedPaths.js:105:28:114:1 | (req, r ... // OK\\n} | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:106:14:106:49 | pathMod ... y.path) | CalleeFlexibleAccessPath |  |
-| autogenerated/TaintedPath/normalizedPaths.js:106:14:106:49 | pathMod ... y.path) | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:106:14:106:49 | pathMod ... y.path) | InputArgumentIndex |  |
-| autogenerated/TaintedPath/normalizedPaths.js:106:14:106:49 | pathMod ... y.path) | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:106:14:106:49 | pathMod ... y.path) | calleeImports |  |
-| autogenerated/TaintedPath/normalizedPaths.js:106:14:106:49 | pathMod ... y.path) | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:106:14:106:49 | pathMod ... y.path) | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:106:14:106:49 | pathMod ... y.path) | enclosingFunctionBody | req res path pathModule normalize req query path path startsWith /home/user/www fs readFileSync path path 0 0 / path 0 0 . fs readFileSync path |
-| autogenerated/TaintedPath/normalizedPaths.js:106:14:106:49 | pathMod ... y.path) | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:106:14:106:49 | pathMod ... y.path) | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:106:14:106:49 | pathMod ... y.path) | receiverName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:106:14:106:49 | pathMod ... y.path) | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:109:23:109:38 | "/home/user/www" | CalleeFlexibleAccessPath | path.startsWith |
-| autogenerated/TaintedPath/normalizedPaths.js:109:23:109:38 | "/home/user/www" | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:109:23:109:38 | "/home/user/www" | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/normalizedPaths.js:109:23:109:38 | "/home/user/www" | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:109:23:109:38 | "/home/user/www" | calleeImports | path |
-| autogenerated/TaintedPath/normalizedPaths.js:109:23:109:38 | "/home/user/www" | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:109:23:109:38 | "/home/user/www" | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:109:23:109:38 | "/home/user/www" | enclosingFunctionBody | req res path pathModule normalize req query path path startsWith /home/user/www fs readFileSync path path 0 0 / path 0 0 . fs readFileSync path |
-| autogenerated/TaintedPath/normalizedPaths.js:109:23:109:38 | "/home/user/www" | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:109:23:109:38 | "/home/user/www" | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:109:23:109:38 | "/home/user/www" | receiverName | path |
-| autogenerated/TaintedPath/normalizedPaths.js:109:23:109:38 | "/home/user/www" | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:110:21:110:24 | path | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/normalizedPaths.js:110:21:110:24 | path | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:110:21:110:24 | path | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/normalizedPaths.js:110:21:110:24 | path | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:110:21:110:24 | path | calleeImports | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:110:21:110:24 | path | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:110:21:110:24 | path | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:110:21:110:24 | path | enclosingFunctionBody | req res path pathModule normalize req query path path startsWith /home/user/www fs readFileSync path path 0 0 / path 0 0 . fs readFileSync path |
-| autogenerated/TaintedPath/normalizedPaths.js:110:21:110:24 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:110:21:110:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:110:21:110:24 | path | receiverName | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:110:21:110:24 | path | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:113:21:113:24 | path | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/normalizedPaths.js:113:21:113:24 | path | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:113:21:113:24 | path | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/normalizedPaths.js:113:21:113:24 | path | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:113:21:113:24 | path | calleeImports | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:113:21:113:24 | path | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:113:21:113:24 | path | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:113:21:113:24 | path | enclosingFunctionBody | req res path pathModule normalize req query path path startsWith /home/user/www fs readFileSync path path 0 0 / path 0 0 . fs readFileSync path |
-| autogenerated/TaintedPath/normalizedPaths.js:113:21:113:24 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:113:21:113:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:113:21:113:24 | path | receiverName | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:113:21:113:24 | path | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:116:9:116:19 | '/realpath' | CalleeFlexibleAccessPath | app.get |
-| autogenerated/TaintedPath/normalizedPaths.js:116:9:116:19 | '/realpath' | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:116:9:116:19 | '/realpath' | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/normalizedPaths.js:116:9:116:19 | '/realpath' | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:116:9:116:19 | '/realpath' | calleeImports | express |
-| autogenerated/TaintedPath/normalizedPaths.js:116:9:116:19 | '/realpath' | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:116:9:116:19 | '/realpath' | contextSurroundingFunctionParameters |  |
-| autogenerated/TaintedPath/normalizedPaths.js:116:9:116:19 | '/realpath' | enclosingFunctionBody |  |
-| autogenerated/TaintedPath/normalizedPaths.js:116:9:116:19 | '/realpath' | enclosingFunctionName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:116:9:116:19 | '/realpath' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:116:9:116:19 | '/realpath' | receiverName | app |
-| autogenerated/TaintedPath/normalizedPaths.js:116:9:116:19 | '/realpath' | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:116:22:127:1 | (req, r ... // OK\\n} | CalleeFlexibleAccessPath | app.get |
-| autogenerated/TaintedPath/normalizedPaths.js:116:22:127:1 | (req, r ... // OK\\n} | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:116:22:127:1 | (req, r ... // OK\\n} | InputArgumentIndex | 1 |
-| autogenerated/TaintedPath/normalizedPaths.js:116:22:127:1 | (req, r ... // OK\\n} | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:116:22:127:1 | (req, r ... // OK\\n} | calleeImports | express |
-| autogenerated/TaintedPath/normalizedPaths.js:116:22:127:1 | (req, r ... // OK\\n} | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:116:22:127:1 | (req, r ... // OK\\n} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:116:22:127:1 | (req, r ... // OK\\n} | enclosingFunctionBody |  |
-| autogenerated/TaintedPath/normalizedPaths.js:116:22:127:1 | (req, r ... // OK\\n} | enclosingFunctionName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:116:22:127:1 | (req, r ... // OK\\n} | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:116:22:127:1 | (req, r ... // OK\\n} | receiverName | app |
-| autogenerated/TaintedPath/normalizedPaths.js:116:22:127:1 | (req, r ... // OK\\n} | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:117:14:117:44 | fs.real ... y.path) | CalleeFlexibleAccessPath |  |
-| autogenerated/TaintedPath/normalizedPaths.js:117:14:117:44 | fs.real ... y.path) | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:117:14:117:44 | fs.real ... y.path) | InputArgumentIndex |  |
-| autogenerated/TaintedPath/normalizedPaths.js:117:14:117:44 | fs.real ... y.path) | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:117:14:117:44 | fs.real ... y.path) | calleeImports |  |
-| autogenerated/TaintedPath/normalizedPaths.js:117:14:117:44 | fs.real ... y.path) | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:117:14:117:44 | fs.real ... y.path) | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:117:14:117:44 | fs.real ... y.path) | enclosingFunctionBody | req res path fs realpathSync req query path fs readFileSync path fs readFileSync pathModule join path index.html path startsWith /home/user/www fs readFileSync path fs readFileSync pathModule join . path fs readFileSync pathModule join /home/user/www path |
-| autogenerated/TaintedPath/normalizedPaths.js:117:14:117:44 | fs.real ... y.path) | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:117:14:117:44 | fs.real ... y.path) | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:117:14:117:44 | fs.real ... y.path) | receiverName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:117:14:117:44 | fs.real ... y.path) | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:117:30:117:43 | req.query.path | CalleeFlexibleAccessPath | fs.realpathSync |
-| autogenerated/TaintedPath/normalizedPaths.js:117:30:117:43 | req.query.path | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:117:30:117:43 | req.query.path | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/normalizedPaths.js:117:30:117:43 | req.query.path | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:117:30:117:43 | req.query.path | calleeImports | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:117:30:117:43 | req.query.path | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:117:30:117:43 | req.query.path | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:117:30:117:43 | req.query.path | enclosingFunctionBody | req res path fs realpathSync req query path fs readFileSync path fs readFileSync pathModule join path index.html path startsWith /home/user/www fs readFileSync path fs readFileSync pathModule join . path fs readFileSync pathModule join /home/user/www path |
-| autogenerated/TaintedPath/normalizedPaths.js:117:30:117:43 | req.query.path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:117:30:117:43 | req.query.path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:117:30:117:43 | req.query.path | receiverName | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:117:30:117:43 | req.query.path | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:119:19:119:22 | path | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/normalizedPaths.js:119:19:119:22 | path | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:119:19:119:22 | path | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/normalizedPaths.js:119:19:119:22 | path | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:119:19:119:22 | path | calleeImports | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:119:19:119:22 | path | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:119:19:119:22 | path | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:119:19:119:22 | path | enclosingFunctionBody | req res path fs realpathSync req query path fs readFileSync path fs readFileSync pathModule join path index.html path startsWith /home/user/www fs readFileSync path fs readFileSync pathModule join . path fs readFileSync pathModule join /home/user/www path |
-| autogenerated/TaintedPath/normalizedPaths.js:119:19:119:22 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:119:19:119:22 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:119:19:119:22 | path | receiverName | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:119:19:119:22 | path | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:120:19:120:53 | pathMod ... .html') | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/normalizedPaths.js:120:19:120:53 | pathMod ... .html') | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:120:19:120:53 | pathMod ... .html') | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/normalizedPaths.js:120:19:120:53 | pathMod ... .html') | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:120:19:120:53 | pathMod ... .html') | calleeImports | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:120:19:120:53 | pathMod ... .html') | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:120:19:120:53 | pathMod ... .html') | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:120:19:120:53 | pathMod ... .html') | enclosingFunctionBody | req res path fs realpathSync req query path fs readFileSync path fs readFileSync pathModule join path index.html path startsWith /home/user/www fs readFileSync path fs readFileSync pathModule join . path fs readFileSync pathModule join /home/user/www path |
-| autogenerated/TaintedPath/normalizedPaths.js:120:19:120:53 | pathMod ... .html') | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:120:19:120:53 | pathMod ... .html') | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:120:19:120:53 | pathMod ... .html') | receiverName | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:120:19:120:53 | pathMod ... .html') | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:122:23:122:38 | "/home/user/www" | CalleeFlexibleAccessPath | path.startsWith |
-| autogenerated/TaintedPath/normalizedPaths.js:122:23:122:38 | "/home/user/www" | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:122:23:122:38 | "/home/user/www" | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/normalizedPaths.js:122:23:122:38 | "/home/user/www" | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:122:23:122:38 | "/home/user/www" | calleeImports | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:122:23:122:38 | "/home/user/www" | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:122:23:122:38 | "/home/user/www" | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:122:23:122:38 | "/home/user/www" | enclosingFunctionBody | req res path fs realpathSync req query path fs readFileSync path fs readFileSync pathModule join path index.html path startsWith /home/user/www fs readFileSync path fs readFileSync pathModule join . path fs readFileSync pathModule join /home/user/www path |
-| autogenerated/TaintedPath/normalizedPaths.js:122:23:122:38 | "/home/user/www" | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:122:23:122:38 | "/home/user/www" | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:122:23:122:38 | "/home/user/www" | receiverName | path |
-| autogenerated/TaintedPath/normalizedPaths.js:122:23:122:38 | "/home/user/www" | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:123:21:123:24 | path | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/normalizedPaths.js:123:21:123:24 | path | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:123:21:123:24 | path | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/normalizedPaths.js:123:21:123:24 | path | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:123:21:123:24 | path | calleeImports | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:123:21:123:24 | path | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:123:21:123:24 | path | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:123:21:123:24 | path | enclosingFunctionBody | req res path fs realpathSync req query path fs readFileSync path fs readFileSync pathModule join path index.html path startsWith /home/user/www fs readFileSync path fs readFileSync pathModule join . path fs readFileSync pathModule join /home/user/www path |
-| autogenerated/TaintedPath/normalizedPaths.js:123:21:123:24 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:123:21:123:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:123:21:123:24 | path | receiverName | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:123:21:123:24 | path | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:125:19:125:44 | pathMod ... , path) | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/normalizedPaths.js:125:19:125:44 | pathMod ... , path) | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:125:19:125:44 | pathMod ... , path) | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/normalizedPaths.js:125:19:125:44 | pathMod ... , path) | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:125:19:125:44 | pathMod ... , path) | calleeImports | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:125:19:125:44 | pathMod ... , path) | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:125:19:125:44 | pathMod ... , path) | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:125:19:125:44 | pathMod ... , path) | enclosingFunctionBody | req res path fs realpathSync req query path fs readFileSync path fs readFileSync pathModule join path index.html path startsWith /home/user/www fs readFileSync path fs readFileSync pathModule join . path fs readFileSync pathModule join /home/user/www path |
-| autogenerated/TaintedPath/normalizedPaths.js:125:19:125:44 | pathMod ... , path) | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:125:19:125:44 | pathMod ... , path) | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:125:19:125:44 | pathMod ... , path) | receiverName | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:125:19:125:44 | pathMod ... , path) | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:126:19:126:57 | pathMod ... , path) | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/normalizedPaths.js:126:19:126:57 | pathMod ... , path) | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:126:19:126:57 | pathMod ... , path) | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/normalizedPaths.js:126:19:126:57 | pathMod ... , path) | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:126:19:126:57 | pathMod ... , path) | calleeImports | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:126:19:126:57 | pathMod ... , path) | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:126:19:126:57 | pathMod ... , path) | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:126:19:126:57 | pathMod ... , path) | enclosingFunctionBody | req res path fs realpathSync req query path fs readFileSync path fs readFileSync pathModule join path index.html path startsWith /home/user/www fs readFileSync path fs readFileSync pathModule join . path fs readFileSync pathModule join /home/user/www path |
-| autogenerated/TaintedPath/normalizedPaths.js:126:19:126:57 | pathMod ... , path) | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:126:19:126:57 | pathMod ... , path) | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:126:19:126:57 | pathMod ... , path) | receiverName | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:126:19:126:57 | pathMod ... , path) | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:129:9:129:26 | '/coerce-relative' | CalleeFlexibleAccessPath | app.get |
-| autogenerated/TaintedPath/normalizedPaths.js:129:9:129:26 | '/coerce-relative' | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:129:9:129:26 | '/coerce-relative' | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/normalizedPaths.js:129:9:129:26 | '/coerce-relative' | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:129:9:129:26 | '/coerce-relative' | calleeImports | express |
-| autogenerated/TaintedPath/normalizedPaths.js:129:9:129:26 | '/coerce-relative' | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:129:9:129:26 | '/coerce-relative' | contextSurroundingFunctionParameters |  |
-| autogenerated/TaintedPath/normalizedPaths.js:129:9:129:26 | '/coerce-relative' | enclosingFunctionBody |  |
-| autogenerated/TaintedPath/normalizedPaths.js:129:9:129:26 | '/coerce-relative' | enclosingFunctionName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:129:9:129:26 | '/coerce-relative' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:129:9:129:26 | '/coerce-relative' | receiverName | app |
-| autogenerated/TaintedPath/normalizedPaths.js:129:9:129:26 | '/coerce-relative' | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:129:29:136:1 | (req, r ... OT OK\\n} | CalleeFlexibleAccessPath | app.get |
-| autogenerated/TaintedPath/normalizedPaths.js:129:29:136:1 | (req, r ... OT OK\\n} | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:129:29:136:1 | (req, r ... OT OK\\n} | InputArgumentIndex | 1 |
-| autogenerated/TaintedPath/normalizedPaths.js:129:29:136:1 | (req, r ... OT OK\\n} | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:129:29:136:1 | (req, r ... OT OK\\n} | calleeImports | express |
-| autogenerated/TaintedPath/normalizedPaths.js:129:29:136:1 | (req, r ... OT OK\\n} | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:129:29:136:1 | (req, r ... OT OK\\n} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:129:29:136:1 | (req, r ... OT OK\\n} | enclosingFunctionBody |  |
-| autogenerated/TaintedPath/normalizedPaths.js:129:29:136:1 | (req, r ... OT OK\\n} | enclosingFunctionName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:129:29:136:1 | (req, r ... OT OK\\n} | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:129:29:136:1 | (req, r ... OT OK\\n} | receiverName | app |
-| autogenerated/TaintedPath/normalizedPaths.js:129:29:136:1 | (req, r ... OT OK\\n} | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:130:14:130:49 | pathMod ... y.path) | CalleeFlexibleAccessPath |  |
-| autogenerated/TaintedPath/normalizedPaths.js:130:14:130:49 | pathMod ... y.path) | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:130:14:130:49 | pathMod ... y.path) | InputArgumentIndex |  |
-| autogenerated/TaintedPath/normalizedPaths.js:130:14:130:49 | pathMod ... y.path) | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:130:14:130:49 | pathMod ... y.path) | calleeImports |  |
-| autogenerated/TaintedPath/normalizedPaths.js:130:14:130:49 | pathMod ... y.path) | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:130:14:130:49 | pathMod ... y.path) | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:130:14:130:49 | pathMod ... y.path) | enclosingFunctionBody | req res path pathModule join . req query path path startsWith .. fs readFileSync path fs readFileSync path |
-| autogenerated/TaintedPath/normalizedPaths.js:130:14:130:49 | pathMod ... y.path) | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:130:14:130:49 | pathMod ... y.path) | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:130:14:130:49 | pathMod ... y.path) | receiverName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:130:14:130:49 | pathMod ... y.path) | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:132:24:132:27 | '..' | CalleeFlexibleAccessPath | path.startsWith |
-| autogenerated/TaintedPath/normalizedPaths.js:132:24:132:27 | '..' | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:132:24:132:27 | '..' | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/normalizedPaths.js:132:24:132:27 | '..' | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:132:24:132:27 | '..' | calleeImports | path |
-| autogenerated/TaintedPath/normalizedPaths.js:132:24:132:27 | '..' | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:132:24:132:27 | '..' | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:132:24:132:27 | '..' | enclosingFunctionBody | req res path pathModule join . req query path path startsWith .. fs readFileSync path fs readFileSync path |
-| autogenerated/TaintedPath/normalizedPaths.js:132:24:132:27 | '..' | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:132:24:132:27 | '..' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:132:24:132:27 | '..' | receiverName | path |
-| autogenerated/TaintedPath/normalizedPaths.js:132:24:132:27 | '..' | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:133:21:133:24 | path | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/normalizedPaths.js:133:21:133:24 | path | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:133:21:133:24 | path | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/normalizedPaths.js:133:21:133:24 | path | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:133:21:133:24 | path | calleeImports | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:133:21:133:24 | path | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:133:21:133:24 | path | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:133:21:133:24 | path | enclosingFunctionBody | req res path pathModule join . req query path path startsWith .. fs readFileSync path fs readFileSync path |
-| autogenerated/TaintedPath/normalizedPaths.js:133:21:133:24 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:133:21:133:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:133:21:133:24 | path | receiverName | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:133:21:133:24 | path | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:135:21:135:24 | path | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/normalizedPaths.js:135:21:135:24 | path | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:135:21:135:24 | path | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/normalizedPaths.js:135:21:135:24 | path | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:135:21:135:24 | path | calleeImports | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:135:21:135:24 | path | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:135:21:135:24 | path | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:135:21:135:24 | path | enclosingFunctionBody | req res path pathModule join . req query path path startsWith .. fs readFileSync path fs readFileSync path |
-| autogenerated/TaintedPath/normalizedPaths.js:135:21:135:24 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:135:21:135:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:135:21:135:24 | path | receiverName | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:135:21:135:24 | path | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:138:9:138:26 | '/coerce-absolute' | CalleeFlexibleAccessPath | app.get |
-| autogenerated/TaintedPath/normalizedPaths.js:138:9:138:26 | '/coerce-absolute' | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:138:9:138:26 | '/coerce-absolute' | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/normalizedPaths.js:138:9:138:26 | '/coerce-absolute' | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:138:9:138:26 | '/coerce-absolute' | calleeImports | express |
-| autogenerated/TaintedPath/normalizedPaths.js:138:9:138:26 | '/coerce-absolute' | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:138:9:138:26 | '/coerce-absolute' | contextSurroundingFunctionParameters |  |
-| autogenerated/TaintedPath/normalizedPaths.js:138:9:138:26 | '/coerce-absolute' | enclosingFunctionBody |  |
-| autogenerated/TaintedPath/normalizedPaths.js:138:9:138:26 | '/coerce-absolute' | enclosingFunctionName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:138:9:138:26 | '/coerce-absolute' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:138:9:138:26 | '/coerce-absolute' | receiverName | app |
-| autogenerated/TaintedPath/normalizedPaths.js:138:9:138:26 | '/coerce-absolute' | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:138:29:145:1 | (req, r ... OT OK\\n} | CalleeFlexibleAccessPath | app.get |
-| autogenerated/TaintedPath/normalizedPaths.js:138:29:145:1 | (req, r ... OT OK\\n} | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:138:29:145:1 | (req, r ... OT OK\\n} | InputArgumentIndex | 1 |
-| autogenerated/TaintedPath/normalizedPaths.js:138:29:145:1 | (req, r ... OT OK\\n} | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:138:29:145:1 | (req, r ... OT OK\\n} | calleeImports | express |
-| autogenerated/TaintedPath/normalizedPaths.js:138:29:145:1 | (req, r ... OT OK\\n} | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:138:29:145:1 | (req, r ... OT OK\\n} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:138:29:145:1 | (req, r ... OT OK\\n} | enclosingFunctionBody |  |
-| autogenerated/TaintedPath/normalizedPaths.js:138:29:145:1 | (req, r ... OT OK\\n} | enclosingFunctionName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:138:29:145:1 | (req, r ... OT OK\\n} | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:138:29:145:1 | (req, r ... OT OK\\n} | receiverName | app |
-| autogenerated/TaintedPath/normalizedPaths.js:138:29:145:1 | (req, r ... OT OK\\n} | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:139:14:139:62 | pathMod ... y.path) | CalleeFlexibleAccessPath |  |
-| autogenerated/TaintedPath/normalizedPaths.js:139:14:139:62 | pathMod ... y.path) | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:139:14:139:62 | pathMod ... y.path) | InputArgumentIndex |  |
-| autogenerated/TaintedPath/normalizedPaths.js:139:14:139:62 | pathMod ... y.path) | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:139:14:139:62 | pathMod ... y.path) | calleeImports |  |
-| autogenerated/TaintedPath/normalizedPaths.js:139:14:139:62 | pathMod ... y.path) | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:139:14:139:62 | pathMod ... y.path) | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:139:14:139:62 | pathMod ... y.path) | enclosingFunctionBody | req res path pathModule join /home/user/www req query path path startsWith /home/user/www fs readFileSync path fs readFileSync path |
-| autogenerated/TaintedPath/normalizedPaths.js:139:14:139:62 | pathMod ... y.path) | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:139:14:139:62 | pathMod ... y.path) | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:139:14:139:62 | pathMod ... y.path) | receiverName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:139:14:139:62 | pathMod ... y.path) | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:141:23:141:38 | '/home/user/www' | CalleeFlexibleAccessPath | path.startsWith |
-| autogenerated/TaintedPath/normalizedPaths.js:141:23:141:38 | '/home/user/www' | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:141:23:141:38 | '/home/user/www' | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/normalizedPaths.js:141:23:141:38 | '/home/user/www' | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:141:23:141:38 | '/home/user/www' | calleeImports | path |
-| autogenerated/TaintedPath/normalizedPaths.js:141:23:141:38 | '/home/user/www' | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:141:23:141:38 | '/home/user/www' | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:141:23:141:38 | '/home/user/www' | enclosingFunctionBody | req res path pathModule join /home/user/www req query path path startsWith /home/user/www fs readFileSync path fs readFileSync path |
-| autogenerated/TaintedPath/normalizedPaths.js:141:23:141:38 | '/home/user/www' | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:141:23:141:38 | '/home/user/www' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:141:23:141:38 | '/home/user/www' | receiverName | path |
-| autogenerated/TaintedPath/normalizedPaths.js:141:23:141:38 | '/home/user/www' | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:142:21:142:24 | path | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/normalizedPaths.js:142:21:142:24 | path | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:142:21:142:24 | path | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/normalizedPaths.js:142:21:142:24 | path | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:142:21:142:24 | path | calleeImports | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:142:21:142:24 | path | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:142:21:142:24 | path | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:142:21:142:24 | path | enclosingFunctionBody | req res path pathModule join /home/user/www req query path path startsWith /home/user/www fs readFileSync path fs readFileSync path |
-| autogenerated/TaintedPath/normalizedPaths.js:142:21:142:24 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:142:21:142:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:142:21:142:24 | path | receiverName | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:142:21:142:24 | path | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:144:21:144:24 | path | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/normalizedPaths.js:144:21:144:24 | path | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:144:21:144:24 | path | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/normalizedPaths.js:144:21:144:24 | path | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:144:21:144:24 | path | calleeImports | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:144:21:144:24 | path | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:144:21:144:24 | path | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:144:21:144:24 | path | enclosingFunctionBody | req res path pathModule join /home/user/www req query path path startsWith /home/user/www fs readFileSync path fs readFileSync path |
-| autogenerated/TaintedPath/normalizedPaths.js:144:21:144:24 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:144:21:144:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:144:21:144:24 | path | receiverName | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:144:21:144:24 | path | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:147:9:147:37 | '/conca ... zation' | CalleeFlexibleAccessPath | app.get |
-| autogenerated/TaintedPath/normalizedPaths.js:147:9:147:37 | '/conca ... zation' | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:147:9:147:37 | '/conca ... zation' | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/normalizedPaths.js:147:9:147:37 | '/conca ... zation' | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:147:9:147:37 | '/conca ... zation' | calleeImports | express |
-| autogenerated/TaintedPath/normalizedPaths.js:147:9:147:37 | '/conca ... zation' | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:147:9:147:37 | '/conca ... zation' | contextSurroundingFunctionParameters |  |
-| autogenerated/TaintedPath/normalizedPaths.js:147:9:147:37 | '/conca ... zation' | enclosingFunctionBody |  |
-| autogenerated/TaintedPath/normalizedPaths.js:147:9:147:37 | '/conca ... zation' | enclosingFunctionName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:147:9:147:37 | '/conca ... zation' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:147:9:147:37 | '/conca ... zation' | receiverName | app |
-| autogenerated/TaintedPath/normalizedPaths.js:147:9:147:37 | '/conca ... zation' | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:147:40:157:1 | (req, r ... // OK\\n} | CalleeFlexibleAccessPath | app.get |
-| autogenerated/TaintedPath/normalizedPaths.js:147:40:157:1 | (req, r ... // OK\\n} | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:147:40:157:1 | (req, r ... // OK\\n} | InputArgumentIndex | 1 |
-| autogenerated/TaintedPath/normalizedPaths.js:147:40:157:1 | (req, r ... // OK\\n} | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:147:40:157:1 | (req, r ... // OK\\n} | calleeImports | express |
-| autogenerated/TaintedPath/normalizedPaths.js:147:40:157:1 | (req, r ... // OK\\n} | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:147:40:157:1 | (req, r ... // OK\\n} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:147:40:157:1 | (req, r ... // OK\\n} | enclosingFunctionBody |  |
-| autogenerated/TaintedPath/normalizedPaths.js:147:40:157:1 | (req, r ... // OK\\n} | enclosingFunctionName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:147:40:157:1 | (req, r ... // OK\\n} | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:147:40:157:1 | (req, r ... // OK\\n} | receiverName | app |
-| autogenerated/TaintedPath/normalizedPaths.js:147:40:157:1 | (req, r ... // OK\\n} | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:148:14:148:58 | 'foo/'  ... y.path) | CalleeFlexibleAccessPath |  |
-| autogenerated/TaintedPath/normalizedPaths.js:148:14:148:58 | 'foo/'  ... y.path) | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:148:14:148:58 | 'foo/'  ... y.path) | InputArgumentIndex |  |
-| autogenerated/TaintedPath/normalizedPaths.js:148:14:148:58 | 'foo/'  ... y.path) | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:148:14:148:58 | 'foo/'  ... y.path) | calleeImports |  |
-| autogenerated/TaintedPath/normalizedPaths.js:148:14:148:58 | 'foo/'  ... y.path) | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:148:14:148:58 | 'foo/'  ... y.path) | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:148:14:148:58 | 'foo/'  ... y.path) | enclosingFunctionBody | req res path foo/ pathModule normalize req query path path startsWith .. fs readFileSync path fs readFileSync path path includes .. fs readFileSync path |
-| autogenerated/TaintedPath/normalizedPaths.js:148:14:148:58 | 'foo/'  ... y.path) | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:148:14:148:58 | 'foo/'  ... y.path) | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:148:14:148:58 | 'foo/'  ... y.path) | receiverName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:148:14:148:58 | 'foo/'  ... y.path) | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:150:24:150:27 | '..' | CalleeFlexibleAccessPath | path.startsWith |
-| autogenerated/TaintedPath/normalizedPaths.js:150:24:150:27 | '..' | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:150:24:150:27 | '..' | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/normalizedPaths.js:150:24:150:27 | '..' | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:150:24:150:27 | '..' | calleeImports |  |
-| autogenerated/TaintedPath/normalizedPaths.js:150:24:150:27 | '..' | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:150:24:150:27 | '..' | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:150:24:150:27 | '..' | enclosingFunctionBody | req res path foo/ pathModule normalize req query path path startsWith .. fs readFileSync path fs readFileSync path path includes .. fs readFileSync path |
-| autogenerated/TaintedPath/normalizedPaths.js:150:24:150:27 | '..' | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:150:24:150:27 | '..' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:150:24:150:27 | '..' | receiverName | path |
-| autogenerated/TaintedPath/normalizedPaths.js:150:24:150:27 | '..' | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:151:21:151:24 | path | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/normalizedPaths.js:151:21:151:24 | path | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:151:21:151:24 | path | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/normalizedPaths.js:151:21:151:24 | path | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:151:21:151:24 | path | calleeImports | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:151:21:151:24 | path | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:151:21:151:24 | path | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:151:21:151:24 | path | enclosingFunctionBody | req res path foo/ pathModule normalize req query path path startsWith .. fs readFileSync path fs readFileSync path path includes .. fs readFileSync path |
-| autogenerated/TaintedPath/normalizedPaths.js:151:21:151:24 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:151:21:151:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:151:21:151:24 | path | receiverName | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:151:21:151:24 | path | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:153:21:153:24 | path | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/normalizedPaths.js:153:21:153:24 | path | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:153:21:153:24 | path | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/normalizedPaths.js:153:21:153:24 | path | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:153:21:153:24 | path | calleeImports | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:153:21:153:24 | path | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:153:21:153:24 | path | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:153:21:153:24 | path | enclosingFunctionBody | req res path foo/ pathModule normalize req query path path startsWith .. fs readFileSync path fs readFileSync path path includes .. fs readFileSync path |
-| autogenerated/TaintedPath/normalizedPaths.js:153:21:153:24 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:153:21:153:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:153:21:153:24 | path | receiverName | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:153:21:153:24 | path | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:155:22:155:25 | '..' | CalleeFlexibleAccessPath | path.includes |
-| autogenerated/TaintedPath/normalizedPaths.js:155:22:155:25 | '..' | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:155:22:155:25 | '..' | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/normalizedPaths.js:155:22:155:25 | '..' | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:155:22:155:25 | '..' | calleeImports |  |
-| autogenerated/TaintedPath/normalizedPaths.js:155:22:155:25 | '..' | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:155:22:155:25 | '..' | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:155:22:155:25 | '..' | enclosingFunctionBody | req res path foo/ pathModule normalize req query path path startsWith .. fs readFileSync path fs readFileSync path path includes .. fs readFileSync path |
-| autogenerated/TaintedPath/normalizedPaths.js:155:22:155:25 | '..' | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:155:22:155:25 | '..' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:155:22:155:25 | '..' | receiverName | path |
-| autogenerated/TaintedPath/normalizedPaths.js:155:22:155:25 | '..' | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:156:21:156:24 | path | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/normalizedPaths.js:156:21:156:24 | path | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:156:21:156:24 | path | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/normalizedPaths.js:156:21:156:24 | path | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:156:21:156:24 | path | calleeImports | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:156:21:156:24 | path | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:156:21:156:24 | path | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:156:21:156:24 | path | enclosingFunctionBody | req res path foo/ pathModule normalize req query path path startsWith .. fs readFileSync path fs readFileSync path path includes .. fs readFileSync path |
-| autogenerated/TaintedPath/normalizedPaths.js:156:21:156:24 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:156:21:156:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:156:21:156:24 | path | receiverName | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:156:21:156:24 | path | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:159:9:159:19 | '/noDotDot' | CalleeFlexibleAccessPath | app.get |
-| autogenerated/TaintedPath/normalizedPaths.js:159:9:159:19 | '/noDotDot' | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:159:9:159:19 | '/noDotDot' | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/normalizedPaths.js:159:9:159:19 | '/noDotDot' | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:159:9:159:19 | '/noDotDot' | calleeImports | express |
-| autogenerated/TaintedPath/normalizedPaths.js:159:9:159:19 | '/noDotDot' | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:159:9:159:19 | '/noDotDot' | contextSurroundingFunctionParameters |  |
-| autogenerated/TaintedPath/normalizedPaths.js:159:9:159:19 | '/noDotDot' | enclosingFunctionBody |  |
-| autogenerated/TaintedPath/normalizedPaths.js:159:9:159:19 | '/noDotDot' | enclosingFunctionName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:159:9:159:19 | '/noDotDot' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:159:9:159:19 | '/noDotDot' | receiverName | app |
-| autogenerated/TaintedPath/normalizedPaths.js:159:9:159:19 | '/noDotDot' | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:159:22:171:1 | (req, r ... OT OK\\n} | CalleeFlexibleAccessPath | app.get |
-| autogenerated/TaintedPath/normalizedPaths.js:159:22:171:1 | (req, r ... OT OK\\n} | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:159:22:171:1 | (req, r ... OT OK\\n} | InputArgumentIndex | 1 |
-| autogenerated/TaintedPath/normalizedPaths.js:159:22:171:1 | (req, r ... OT OK\\n} | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:159:22:171:1 | (req, r ... OT OK\\n} | calleeImports | express |
-| autogenerated/TaintedPath/normalizedPaths.js:159:22:171:1 | (req, r ... OT OK\\n} | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:159:22:171:1 | (req, r ... OT OK\\n} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:159:22:171:1 | (req, r ... OT OK\\n} | enclosingFunctionBody |  |
-| autogenerated/TaintedPath/normalizedPaths.js:159:22:171:1 | (req, r ... OT OK\\n} | enclosingFunctionName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:159:22:171:1 | (req, r ... OT OK\\n} | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:159:22:171:1 | (req, r ... OT OK\\n} | receiverName | app |
-| autogenerated/TaintedPath/normalizedPaths.js:159:22:171:1 | (req, r ... OT OK\\n} | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:160:14:160:49 | pathMod ... y.path) | CalleeFlexibleAccessPath |  |
-| autogenerated/TaintedPath/normalizedPaths.js:160:14:160:49 | pathMod ... y.path) | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:160:14:160:49 | pathMod ... y.path) | InputArgumentIndex |  |
-| autogenerated/TaintedPath/normalizedPaths.js:160:14:160:49 | pathMod ... y.path) | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:160:14:160:49 | pathMod ... y.path) | calleeImports |  |
-| autogenerated/TaintedPath/normalizedPaths.js:160:14:160:49 | pathMod ... y.path) | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:160:14:160:49 | pathMod ... y.path) | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:160:14:160:49 | pathMod ... y.path) | enclosingFunctionBody | req res path pathModule normalize req query path path includes .. fs readFileSync path pathModule isAbsolute path fs readFileSync path fs readFileSync path |
-| autogenerated/TaintedPath/normalizedPaths.js:160:14:160:49 | pathMod ... y.path) | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:160:14:160:49 | pathMod ... y.path) | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:160:14:160:49 | pathMod ... y.path) | receiverName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:160:14:160:49 | pathMod ... y.path) | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:162:21:162:24 | '..' | CalleeFlexibleAccessPath | path.includes |
-| autogenerated/TaintedPath/normalizedPaths.js:162:21:162:24 | '..' | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:162:21:162:24 | '..' | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/normalizedPaths.js:162:21:162:24 | '..' | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:162:21:162:24 | '..' | calleeImports | path |
-| autogenerated/TaintedPath/normalizedPaths.js:162:21:162:24 | '..' | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:162:21:162:24 | '..' | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:162:21:162:24 | '..' | enclosingFunctionBody | req res path pathModule normalize req query path path includes .. fs readFileSync path pathModule isAbsolute path fs readFileSync path fs readFileSync path |
-| autogenerated/TaintedPath/normalizedPaths.js:162:21:162:24 | '..' | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:162:21:162:24 | '..' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:162:21:162:24 | '..' | receiverName | path |
-| autogenerated/TaintedPath/normalizedPaths.js:162:21:162:24 | '..' | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:165:19:165:22 | path | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/normalizedPaths.js:165:19:165:22 | path | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:165:19:165:22 | path | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/normalizedPaths.js:165:19:165:22 | path | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:165:19:165:22 | path | calleeImports | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:165:19:165:22 | path | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:165:19:165:22 | path | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:165:19:165:22 | path | enclosingFunctionBody | req res path pathModule normalize req query path path includes .. fs readFileSync path pathModule isAbsolute path fs readFileSync path fs readFileSync path |
-| autogenerated/TaintedPath/normalizedPaths.js:165:19:165:22 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:165:19:165:22 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:165:19:165:22 | path | receiverName | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:165:19:165:22 | path | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:168:21:168:24 | path | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/normalizedPaths.js:168:21:168:24 | path | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:168:21:168:24 | path | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/normalizedPaths.js:168:21:168:24 | path | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:168:21:168:24 | path | calleeImports | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:168:21:168:24 | path | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:168:21:168:24 | path | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:168:21:168:24 | path | enclosingFunctionBody | req res path pathModule normalize req query path path includes .. fs readFileSync path pathModule isAbsolute path fs readFileSync path fs readFileSync path |
-| autogenerated/TaintedPath/normalizedPaths.js:168:21:168:24 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:168:21:168:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:168:21:168:24 | path | receiverName | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:168:21:168:24 | path | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:170:21:170:24 | path | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/normalizedPaths.js:170:21:170:24 | path | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:170:21:170:24 | path | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/normalizedPaths.js:170:21:170:24 | path | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:170:21:170:24 | path | calleeImports | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:170:21:170:24 | path | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:170:21:170:24 | path | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:170:21:170:24 | path | enclosingFunctionBody | req res path pathModule normalize req query path path includes .. fs readFileSync path pathModule isAbsolute path fs readFileSync path fs readFileSync path |
-| autogenerated/TaintedPath/normalizedPaths.js:170:21:170:24 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:170:21:170:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:170:21:170:24 | path | receiverName | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:170:21:170:24 | path | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:173:9:173:26 | '/join-regression' | CalleeFlexibleAccessPath | app.get |
-| autogenerated/TaintedPath/normalizedPaths.js:173:9:173:26 | '/join-regression' | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:173:9:173:26 | '/join-regression' | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/normalizedPaths.js:173:9:173:26 | '/join-regression' | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:173:9:173:26 | '/join-regression' | calleeImports | express |
-| autogenerated/TaintedPath/normalizedPaths.js:173:9:173:26 | '/join-regression' | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:173:9:173:26 | '/join-regression' | contextSurroundingFunctionParameters |  |
-| autogenerated/TaintedPath/normalizedPaths.js:173:9:173:26 | '/join-regression' | enclosingFunctionBody |  |
-| autogenerated/TaintedPath/normalizedPaths.js:173:9:173:26 | '/join-regression' | enclosingFunctionName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:173:9:173:26 | '/join-regression' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:173:9:173:26 | '/join-regression' | receiverName | app |
-| autogenerated/TaintedPath/normalizedPaths.js:173:9:173:26 | '/join-regression' | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:173:29:211:1 | (req, r ... OT OK\\n} | CalleeFlexibleAccessPath | app.get |
-| autogenerated/TaintedPath/normalizedPaths.js:173:29:211:1 | (req, r ... OT OK\\n} | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:173:29:211:1 | (req, r ... OT OK\\n} | InputArgumentIndex | 1 |
-| autogenerated/TaintedPath/normalizedPaths.js:173:29:211:1 | (req, r ... OT OK\\n} | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:173:29:211:1 | (req, r ... OT OK\\n} | calleeImports | express |
-| autogenerated/TaintedPath/normalizedPaths.js:173:29:211:1 | (req, r ... OT OK\\n} | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:173:29:211:1 | (req, r ... OT OK\\n} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:173:29:211:1 | (req, r ... OT OK\\n} | enclosingFunctionBody |  |
-| autogenerated/TaintedPath/normalizedPaths.js:173:29:211:1 | (req, r ... OT OK\\n} | enclosingFunctionName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:173:29:211:1 | (req, r ... OT OK\\n} | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:173:29:211:1 | (req, r ... OT OK\\n} | receiverName | app |
-| autogenerated/TaintedPath/normalizedPaths.js:173:29:211:1 | (req, r ... OT OK\\n} | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:180:23:180:25 | '/' | CalleeFlexibleAccessPath | path.startsWith |
-| autogenerated/TaintedPath/normalizedPaths.js:180:23:180:25 | '/' | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:180:23:180:25 | '/' | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/normalizedPaths.js:180:23:180:25 | '/' | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:180:23:180:25 | '/' | calleeImports |  |
-| autogenerated/TaintedPath/normalizedPaths.js:180:23:180:25 | '/' | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:180:23:180:25 | '/' | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:180:23:180:25 | '/' | enclosingFunctionBody | req res path req query path pathModule isAbsolute path path path path startsWith / path path path startsWith /x path path path startsWith . path path fs readFileSync path pathModule isAbsolute path fs readFileSync path fs readFileSync path path includes .. fs readFileSync path fs readFileSync path path includes .. pathModule isAbsolute path fs readFileSync path fs readFileSync path normalizedPath pathModule normalize path normalizedPath startsWith /home/user/www fs readFileSync normalizedPath fs readFileSync normalizedPath normalizedPath startsWith /home/user/www normalizedPath startsWith /home/user/public fs readFileSync normalizedPath fs readFileSync normalizedPath |
-| autogenerated/TaintedPath/normalizedPaths.js:180:23:180:25 | '/' | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:180:23:180:25 | '/' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:180:23:180:25 | '/' | receiverName | path |
-| autogenerated/TaintedPath/normalizedPaths.js:180:23:180:25 | '/' | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:181:23:181:26 | '/x' | CalleeFlexibleAccessPath | path.startsWith |
-| autogenerated/TaintedPath/normalizedPaths.js:181:23:181:26 | '/x' | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:181:23:181:26 | '/x' | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/normalizedPaths.js:181:23:181:26 | '/x' | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:181:23:181:26 | '/x' | calleeImports |  |
-| autogenerated/TaintedPath/normalizedPaths.js:181:23:181:26 | '/x' | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:181:23:181:26 | '/x' | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:181:23:181:26 | '/x' | enclosingFunctionBody | req res path req query path pathModule isAbsolute path path path path startsWith / path path path startsWith /x path path path startsWith . path path fs readFileSync path pathModule isAbsolute path fs readFileSync path fs readFileSync path path includes .. fs readFileSync path fs readFileSync path path includes .. pathModule isAbsolute path fs readFileSync path fs readFileSync path normalizedPath pathModule normalize path normalizedPath startsWith /home/user/www fs readFileSync normalizedPath fs readFileSync normalizedPath normalizedPath startsWith /home/user/www normalizedPath startsWith /home/user/public fs readFileSync normalizedPath fs readFileSync normalizedPath |
-| autogenerated/TaintedPath/normalizedPaths.js:181:23:181:26 | '/x' | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:181:23:181:26 | '/x' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:181:23:181:26 | '/x' | receiverName | path |
-| autogenerated/TaintedPath/normalizedPaths.js:181:23:181:26 | '/x' | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:182:23:182:25 | '.' | CalleeFlexibleAccessPath | path.startsWith |
-| autogenerated/TaintedPath/normalizedPaths.js:182:23:182:25 | '.' | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:182:23:182:25 | '.' | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/normalizedPaths.js:182:23:182:25 | '.' | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:182:23:182:25 | '.' | calleeImports |  |
-| autogenerated/TaintedPath/normalizedPaths.js:182:23:182:25 | '.' | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:182:23:182:25 | '.' | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:182:23:182:25 | '.' | enclosingFunctionBody | req res path req query path pathModule isAbsolute path path path path startsWith / path path path startsWith /x path path path startsWith . path path fs readFileSync path pathModule isAbsolute path fs readFileSync path fs readFileSync path path includes .. fs readFileSync path fs readFileSync path path includes .. pathModule isAbsolute path fs readFileSync path fs readFileSync path normalizedPath pathModule normalize path normalizedPath startsWith /home/user/www fs readFileSync normalizedPath fs readFileSync normalizedPath normalizedPath startsWith /home/user/www normalizedPath startsWith /home/user/public fs readFileSync normalizedPath fs readFileSync normalizedPath |
-| autogenerated/TaintedPath/normalizedPaths.js:182:23:182:25 | '.' | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:182:23:182:25 | '.' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:182:23:182:25 | '.' | receiverName | path |
-| autogenerated/TaintedPath/normalizedPaths.js:182:23:182:25 | '.' | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:184:19:184:22 | path | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/normalizedPaths.js:184:19:184:22 | path | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:184:19:184:22 | path | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/normalizedPaths.js:184:19:184:22 | path | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:184:19:184:22 | path | calleeImports | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:184:19:184:22 | path | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:184:19:184:22 | path | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:184:19:184:22 | path | enclosingFunctionBody | req res path req query path pathModule isAbsolute path path path path startsWith / path path path startsWith /x path path path startsWith . path path fs readFileSync path pathModule isAbsolute path fs readFileSync path fs readFileSync path path includes .. fs readFileSync path fs readFileSync path path includes .. pathModule isAbsolute path fs readFileSync path fs readFileSync path normalizedPath pathModule normalize path normalizedPath startsWith /home/user/www fs readFileSync normalizedPath fs readFileSync normalizedPath normalizedPath startsWith /home/user/www normalizedPath startsWith /home/user/public fs readFileSync normalizedPath fs readFileSync normalizedPath |
-| autogenerated/TaintedPath/normalizedPaths.js:184:19:184:22 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:184:19:184:22 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:184:19:184:22 | path | receiverName | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:184:19:184:22 | path | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:187:21:187:24 | path | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/normalizedPaths.js:187:21:187:24 | path | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:187:21:187:24 | path | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/normalizedPaths.js:187:21:187:24 | path | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:187:21:187:24 | path | calleeImports | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:187:21:187:24 | path | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:187:21:187:24 | path | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:187:21:187:24 | path | enclosingFunctionBody | req res path req query path pathModule isAbsolute path path path path startsWith / path path path startsWith /x path path path startsWith . path path fs readFileSync path pathModule isAbsolute path fs readFileSync path fs readFileSync path path includes .. fs readFileSync path fs readFileSync path path includes .. pathModule isAbsolute path fs readFileSync path fs readFileSync path normalizedPath pathModule normalize path normalizedPath startsWith /home/user/www fs readFileSync normalizedPath fs readFileSync normalizedPath normalizedPath startsWith /home/user/www normalizedPath startsWith /home/user/public fs readFileSync normalizedPath fs readFileSync normalizedPath |
-| autogenerated/TaintedPath/normalizedPaths.js:187:21:187:24 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:187:21:187:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:187:21:187:24 | path | receiverName | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:187:21:187:24 | path | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:189:21:189:24 | path | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/normalizedPaths.js:189:21:189:24 | path | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:189:21:189:24 | path | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/normalizedPaths.js:189:21:189:24 | path | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:189:21:189:24 | path | calleeImports | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:189:21:189:24 | path | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:189:21:189:24 | path | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:189:21:189:24 | path | enclosingFunctionBody | req res path req query path pathModule isAbsolute path path path path startsWith / path path path startsWith /x path path path startsWith . path path fs readFileSync path pathModule isAbsolute path fs readFileSync path fs readFileSync path path includes .. fs readFileSync path fs readFileSync path path includes .. pathModule isAbsolute path fs readFileSync path fs readFileSync path normalizedPath pathModule normalize path normalizedPath startsWith /home/user/www fs readFileSync normalizedPath fs readFileSync normalizedPath normalizedPath startsWith /home/user/www normalizedPath startsWith /home/user/public fs readFileSync normalizedPath fs readFileSync normalizedPath |
-| autogenerated/TaintedPath/normalizedPaths.js:189:21:189:24 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:189:21:189:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:189:21:189:24 | path | receiverName | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:189:21:189:24 | path | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:191:21:191:24 | '..' | CalleeFlexibleAccessPath | path.includes |
-| autogenerated/TaintedPath/normalizedPaths.js:191:21:191:24 | '..' | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:191:21:191:24 | '..' | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/normalizedPaths.js:191:21:191:24 | '..' | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:191:21:191:24 | '..' | calleeImports |  |
-| autogenerated/TaintedPath/normalizedPaths.js:191:21:191:24 | '..' | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:191:21:191:24 | '..' | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:191:21:191:24 | '..' | enclosingFunctionBody | req res path req query path pathModule isAbsolute path path path path startsWith / path path path startsWith /x path path path startsWith . path path fs readFileSync path pathModule isAbsolute path fs readFileSync path fs readFileSync path path includes .. fs readFileSync path fs readFileSync path path includes .. pathModule isAbsolute path fs readFileSync path fs readFileSync path normalizedPath pathModule normalize path normalizedPath startsWith /home/user/www fs readFileSync normalizedPath fs readFileSync normalizedPath normalizedPath startsWith /home/user/www normalizedPath startsWith /home/user/public fs readFileSync normalizedPath fs readFileSync normalizedPath |
-| autogenerated/TaintedPath/normalizedPaths.js:191:21:191:24 | '..' | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:191:21:191:24 | '..' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:191:21:191:24 | '..' | receiverName | path |
-| autogenerated/TaintedPath/normalizedPaths.js:191:21:191:24 | '..' | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:192:21:192:24 | path | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/normalizedPaths.js:192:21:192:24 | path | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:192:21:192:24 | path | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/normalizedPaths.js:192:21:192:24 | path | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:192:21:192:24 | path | calleeImports | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:192:21:192:24 | path | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:192:21:192:24 | path | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:192:21:192:24 | path | enclosingFunctionBody | req res path req query path pathModule isAbsolute path path path path startsWith / path path path startsWith /x path path path startsWith . path path fs readFileSync path pathModule isAbsolute path fs readFileSync path fs readFileSync path path includes .. fs readFileSync path fs readFileSync path path includes .. pathModule isAbsolute path fs readFileSync path fs readFileSync path normalizedPath pathModule normalize path normalizedPath startsWith /home/user/www fs readFileSync normalizedPath fs readFileSync normalizedPath normalizedPath startsWith /home/user/www normalizedPath startsWith /home/user/public fs readFileSync normalizedPath fs readFileSync normalizedPath |
-| autogenerated/TaintedPath/normalizedPaths.js:192:21:192:24 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:192:21:192:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:192:21:192:24 | path | receiverName | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:192:21:192:24 | path | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:194:21:194:24 | path | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/normalizedPaths.js:194:21:194:24 | path | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:194:21:194:24 | path | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/normalizedPaths.js:194:21:194:24 | path | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:194:21:194:24 | path | calleeImports | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:194:21:194:24 | path | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:194:21:194:24 | path | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:194:21:194:24 | path | enclosingFunctionBody | req res path req query path pathModule isAbsolute path path path path startsWith / path path path startsWith /x path path path startsWith . path path fs readFileSync path pathModule isAbsolute path fs readFileSync path fs readFileSync path path includes .. fs readFileSync path fs readFileSync path path includes .. pathModule isAbsolute path fs readFileSync path fs readFileSync path normalizedPath pathModule normalize path normalizedPath startsWith /home/user/www fs readFileSync normalizedPath fs readFileSync normalizedPath normalizedPath startsWith /home/user/www normalizedPath startsWith /home/user/public fs readFileSync normalizedPath fs readFileSync normalizedPath |
-| autogenerated/TaintedPath/normalizedPaths.js:194:21:194:24 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:194:21:194:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:194:21:194:24 | path | receiverName | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:194:21:194:24 | path | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:196:22:196:25 | '..' | CalleeFlexibleAccessPath | path.includes |
-| autogenerated/TaintedPath/normalizedPaths.js:196:22:196:25 | '..' | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:196:22:196:25 | '..' | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/normalizedPaths.js:196:22:196:25 | '..' | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:196:22:196:25 | '..' | calleeImports |  |
-| autogenerated/TaintedPath/normalizedPaths.js:196:22:196:25 | '..' | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:196:22:196:25 | '..' | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:196:22:196:25 | '..' | enclosingFunctionBody | req res path req query path pathModule isAbsolute path path path path startsWith / path path path startsWith /x path path path startsWith . path path fs readFileSync path pathModule isAbsolute path fs readFileSync path fs readFileSync path path includes .. fs readFileSync path fs readFileSync path path includes .. pathModule isAbsolute path fs readFileSync path fs readFileSync path normalizedPath pathModule normalize path normalizedPath startsWith /home/user/www fs readFileSync normalizedPath fs readFileSync normalizedPath normalizedPath startsWith /home/user/www normalizedPath startsWith /home/user/public fs readFileSync normalizedPath fs readFileSync normalizedPath |
-| autogenerated/TaintedPath/normalizedPaths.js:196:22:196:25 | '..' | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:196:22:196:25 | '..' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:196:22:196:25 | '..' | receiverName | path |
-| autogenerated/TaintedPath/normalizedPaths.js:196:22:196:25 | '..' | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:197:21:197:24 | path | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/normalizedPaths.js:197:21:197:24 | path | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:197:21:197:24 | path | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/normalizedPaths.js:197:21:197:24 | path | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:197:21:197:24 | path | calleeImports | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:197:21:197:24 | path | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:197:21:197:24 | path | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:197:21:197:24 | path | enclosingFunctionBody | req res path req query path pathModule isAbsolute path path path path startsWith / path path path startsWith /x path path path startsWith . path path fs readFileSync path pathModule isAbsolute path fs readFileSync path fs readFileSync path path includes .. fs readFileSync path fs readFileSync path path includes .. pathModule isAbsolute path fs readFileSync path fs readFileSync path normalizedPath pathModule normalize path normalizedPath startsWith /home/user/www fs readFileSync normalizedPath fs readFileSync normalizedPath normalizedPath startsWith /home/user/www normalizedPath startsWith /home/user/public fs readFileSync normalizedPath fs readFileSync normalizedPath |
-| autogenerated/TaintedPath/normalizedPaths.js:197:21:197:24 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:197:21:197:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:197:21:197:24 | path | receiverName | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:197:21:197:24 | path | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:199:21:199:24 | path | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/normalizedPaths.js:199:21:199:24 | path | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:199:21:199:24 | path | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/normalizedPaths.js:199:21:199:24 | path | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:199:21:199:24 | path | calleeImports | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:199:21:199:24 | path | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:199:21:199:24 | path | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:199:21:199:24 | path | enclosingFunctionBody | req res path req query path pathModule isAbsolute path path path path startsWith / path path path startsWith /x path path path startsWith . path path fs readFileSync path pathModule isAbsolute path fs readFileSync path fs readFileSync path path includes .. fs readFileSync path fs readFileSync path path includes .. pathModule isAbsolute path fs readFileSync path fs readFileSync path normalizedPath pathModule normalize path normalizedPath startsWith /home/user/www fs readFileSync normalizedPath fs readFileSync normalizedPath normalizedPath startsWith /home/user/www normalizedPath startsWith /home/user/public fs readFileSync normalizedPath fs readFileSync normalizedPath |
-| autogenerated/TaintedPath/normalizedPaths.js:199:21:199:24 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:199:21:199:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:199:21:199:24 | path | receiverName | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:199:21:199:24 | path | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:202:33:202:48 | '/home/user/www' | CalleeFlexibleAccessPath | normalizedPath.startsWith |
-| autogenerated/TaintedPath/normalizedPaths.js:202:33:202:48 | '/home/user/www' | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:202:33:202:48 | '/home/user/www' | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/normalizedPaths.js:202:33:202:48 | '/home/user/www' | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:202:33:202:48 | '/home/user/www' | calleeImports | path |
-| autogenerated/TaintedPath/normalizedPaths.js:202:33:202:48 | '/home/user/www' | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:202:33:202:48 | '/home/user/www' | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:202:33:202:48 | '/home/user/www' | enclosingFunctionBody | req res path req query path pathModule isAbsolute path path path path startsWith / path path path startsWith /x path path path startsWith . path path fs readFileSync path pathModule isAbsolute path fs readFileSync path fs readFileSync path path includes .. fs readFileSync path fs readFileSync path path includes .. pathModule isAbsolute path fs readFileSync path fs readFileSync path normalizedPath pathModule normalize path normalizedPath startsWith /home/user/www fs readFileSync normalizedPath fs readFileSync normalizedPath normalizedPath startsWith /home/user/www normalizedPath startsWith /home/user/public fs readFileSync normalizedPath fs readFileSync normalizedPath |
-| autogenerated/TaintedPath/normalizedPaths.js:202:33:202:48 | '/home/user/www' | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:202:33:202:48 | '/home/user/www' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:202:33:202:48 | '/home/user/www' | receiverName | normalizedPath |
-| autogenerated/TaintedPath/normalizedPaths.js:202:33:202:48 | '/home/user/www' | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:203:21:203:34 | normalizedPath | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/normalizedPaths.js:203:21:203:34 | normalizedPath | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:203:21:203:34 | normalizedPath | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/normalizedPaths.js:203:21:203:34 | normalizedPath | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:203:21:203:34 | normalizedPath | calleeImports | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:203:21:203:34 | normalizedPath | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:203:21:203:34 | normalizedPath | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:203:21:203:34 | normalizedPath | enclosingFunctionBody | req res path req query path pathModule isAbsolute path path path path startsWith / path path path startsWith /x path path path startsWith . path path fs readFileSync path pathModule isAbsolute path fs readFileSync path fs readFileSync path path includes .. fs readFileSync path fs readFileSync path path includes .. pathModule isAbsolute path fs readFileSync path fs readFileSync path normalizedPath pathModule normalize path normalizedPath startsWith /home/user/www fs readFileSync normalizedPath fs readFileSync normalizedPath normalizedPath startsWith /home/user/www normalizedPath startsWith /home/user/public fs readFileSync normalizedPath fs readFileSync normalizedPath |
-| autogenerated/TaintedPath/normalizedPaths.js:203:21:203:34 | normalizedPath | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:203:21:203:34 | normalizedPath | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:203:21:203:34 | normalizedPath | receiverName | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:203:21:203:34 | normalizedPath | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:205:21:205:34 | normalizedPath | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/normalizedPaths.js:205:21:205:34 | normalizedPath | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:205:21:205:34 | normalizedPath | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/normalizedPaths.js:205:21:205:34 | normalizedPath | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:205:21:205:34 | normalizedPath | calleeImports | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:205:21:205:34 | normalizedPath | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:205:21:205:34 | normalizedPath | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:205:21:205:34 | normalizedPath | enclosingFunctionBody | req res path req query path pathModule isAbsolute path path path path startsWith / path path path startsWith /x path path path startsWith . path path fs readFileSync path pathModule isAbsolute path fs readFileSync path fs readFileSync path path includes .. fs readFileSync path fs readFileSync path path includes .. pathModule isAbsolute path fs readFileSync path fs readFileSync path normalizedPath pathModule normalize path normalizedPath startsWith /home/user/www fs readFileSync normalizedPath fs readFileSync normalizedPath normalizedPath startsWith /home/user/www normalizedPath startsWith /home/user/public fs readFileSync normalizedPath fs readFileSync normalizedPath |
-| autogenerated/TaintedPath/normalizedPaths.js:205:21:205:34 | normalizedPath | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:205:21:205:34 | normalizedPath | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:205:21:205:34 | normalizedPath | receiverName | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:205:21:205:34 | normalizedPath | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:207:33:207:48 | '/home/user/www' | CalleeFlexibleAccessPath | normalizedPath.startsWith |
-| autogenerated/TaintedPath/normalizedPaths.js:207:33:207:48 | '/home/user/www' | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:207:33:207:48 | '/home/user/www' | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/normalizedPaths.js:207:33:207:48 | '/home/user/www' | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:207:33:207:48 | '/home/user/www' | calleeImports | path |
-| autogenerated/TaintedPath/normalizedPaths.js:207:33:207:48 | '/home/user/www' | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:207:33:207:48 | '/home/user/www' | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:207:33:207:48 | '/home/user/www' | enclosingFunctionBody | req res path req query path pathModule isAbsolute path path path path startsWith / path path path startsWith /x path path path startsWith . path path fs readFileSync path pathModule isAbsolute path fs readFileSync path fs readFileSync path path includes .. fs readFileSync path fs readFileSync path path includes .. pathModule isAbsolute path fs readFileSync path fs readFileSync path normalizedPath pathModule normalize path normalizedPath startsWith /home/user/www fs readFileSync normalizedPath fs readFileSync normalizedPath normalizedPath startsWith /home/user/www normalizedPath startsWith /home/user/public fs readFileSync normalizedPath fs readFileSync normalizedPath |
-| autogenerated/TaintedPath/normalizedPaths.js:207:33:207:48 | '/home/user/www' | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:207:33:207:48 | '/home/user/www' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:207:33:207:48 | '/home/user/www' | receiverName | normalizedPath |
-| autogenerated/TaintedPath/normalizedPaths.js:207:33:207:48 | '/home/user/www' | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:207:80:207:98 | '/home/user/public' | CalleeFlexibleAccessPath | normalizedPath.startsWith |
-| autogenerated/TaintedPath/normalizedPaths.js:207:80:207:98 | '/home/user/public' | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:207:80:207:98 | '/home/user/public' | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/normalizedPaths.js:207:80:207:98 | '/home/user/public' | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:207:80:207:98 | '/home/user/public' | calleeImports | path |
-| autogenerated/TaintedPath/normalizedPaths.js:207:80:207:98 | '/home/user/public' | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:207:80:207:98 | '/home/user/public' | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:207:80:207:98 | '/home/user/public' | enclosingFunctionBody | req res path req query path pathModule isAbsolute path path path path startsWith / path path path startsWith /x path path path startsWith . path path fs readFileSync path pathModule isAbsolute path fs readFileSync path fs readFileSync path path includes .. fs readFileSync path fs readFileSync path path includes .. pathModule isAbsolute path fs readFileSync path fs readFileSync path normalizedPath pathModule normalize path normalizedPath startsWith /home/user/www fs readFileSync normalizedPath fs readFileSync normalizedPath normalizedPath startsWith /home/user/www normalizedPath startsWith /home/user/public fs readFileSync normalizedPath fs readFileSync normalizedPath |
-| autogenerated/TaintedPath/normalizedPaths.js:207:80:207:98 | '/home/user/public' | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:207:80:207:98 | '/home/user/public' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:207:80:207:98 | '/home/user/public' | receiverName | normalizedPath |
-| autogenerated/TaintedPath/normalizedPaths.js:207:80:207:98 | '/home/user/public' | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:208:21:208:34 | normalizedPath | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/normalizedPaths.js:208:21:208:34 | normalizedPath | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:208:21:208:34 | normalizedPath | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/normalizedPaths.js:208:21:208:34 | normalizedPath | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:208:21:208:34 | normalizedPath | calleeImports | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:208:21:208:34 | normalizedPath | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:208:21:208:34 | normalizedPath | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:208:21:208:34 | normalizedPath | enclosingFunctionBody | req res path req query path pathModule isAbsolute path path path path startsWith / path path path startsWith /x path path path startsWith . path path fs readFileSync path pathModule isAbsolute path fs readFileSync path fs readFileSync path path includes .. fs readFileSync path fs readFileSync path path includes .. pathModule isAbsolute path fs readFileSync path fs readFileSync path normalizedPath pathModule normalize path normalizedPath startsWith /home/user/www fs readFileSync normalizedPath fs readFileSync normalizedPath normalizedPath startsWith /home/user/www normalizedPath startsWith /home/user/public fs readFileSync normalizedPath fs readFileSync normalizedPath |
-| autogenerated/TaintedPath/normalizedPaths.js:208:21:208:34 | normalizedPath | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:208:21:208:34 | normalizedPath | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:208:21:208:34 | normalizedPath | receiverName | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:208:21:208:34 | normalizedPath | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:210:21:210:34 | normalizedPath | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/normalizedPaths.js:210:21:210:34 | normalizedPath | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:210:21:210:34 | normalizedPath | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/normalizedPaths.js:210:21:210:34 | normalizedPath | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:210:21:210:34 | normalizedPath | calleeImports | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:210:21:210:34 | normalizedPath | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:210:21:210:34 | normalizedPath | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:210:21:210:34 | normalizedPath | enclosingFunctionBody | req res path req query path pathModule isAbsolute path path path path startsWith / path path path startsWith /x path path path startsWith . path path fs readFileSync path pathModule isAbsolute path fs readFileSync path fs readFileSync path path includes .. fs readFileSync path fs readFileSync path path includes .. pathModule isAbsolute path fs readFileSync path fs readFileSync path normalizedPath pathModule normalize path normalizedPath startsWith /home/user/www fs readFileSync normalizedPath fs readFileSync normalizedPath normalizedPath startsWith /home/user/www normalizedPath startsWith /home/user/public fs readFileSync normalizedPath fs readFileSync normalizedPath |
-| autogenerated/TaintedPath/normalizedPaths.js:210:21:210:34 | normalizedPath | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:210:21:210:34 | normalizedPath | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:210:21:210:34 | normalizedPath | receiverName | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:210:21:210:34 | normalizedPath | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:213:9:213:37 | '/decod ... zation' | CalleeFlexibleAccessPath | app.get |
-| autogenerated/TaintedPath/normalizedPaths.js:213:9:213:37 | '/decod ... zation' | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:213:9:213:37 | '/decod ... zation' | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/normalizedPaths.js:213:9:213:37 | '/decod ... zation' | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:213:9:213:37 | '/decod ... zation' | calleeImports | express |
-| autogenerated/TaintedPath/normalizedPaths.js:213:9:213:37 | '/decod ... zation' | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:213:9:213:37 | '/decod ... zation' | contextSurroundingFunctionParameters |  |
-| autogenerated/TaintedPath/normalizedPaths.js:213:9:213:37 | '/decod ... zation' | enclosingFunctionBody |  |
-| autogenerated/TaintedPath/normalizedPaths.js:213:9:213:37 | '/decod ... zation' | enclosingFunctionName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:213:9:213:37 | '/decod ... zation' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:213:9:213:37 | '/decod ... zation' | receiverName | app |
-| autogenerated/TaintedPath/normalizedPaths.js:213:9:213:37 | '/decod ... zation' | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:213:40:223:1 | (req, r ... lized\\n} | CalleeFlexibleAccessPath | app.get |
-| autogenerated/TaintedPath/normalizedPaths.js:213:40:223:1 | (req, r ... lized\\n} | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:213:40:223:1 | (req, r ... lized\\n} | InputArgumentIndex | 1 |
-| autogenerated/TaintedPath/normalizedPaths.js:213:40:223:1 | (req, r ... lized\\n} | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:213:40:223:1 | (req, r ... lized\\n} | calleeImports | express |
-| autogenerated/TaintedPath/normalizedPaths.js:213:40:223:1 | (req, r ... lized\\n} | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:213:40:223:1 | (req, r ... lized\\n} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:213:40:223:1 | (req, r ... lized\\n} | enclosingFunctionBody |  |
-| autogenerated/TaintedPath/normalizedPaths.js:213:40:223:1 | (req, r ... lized\\n} | enclosingFunctionName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:213:40:223:1 | (req, r ... lized\\n} | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:213:40:223:1 | (req, r ... lized\\n} | receiverName | app |
-| autogenerated/TaintedPath/normalizedPaths.js:213:40:223:1 | (req, r ... lized\\n} | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:214:14:214:49 | pathMod ... y.path) | CalleeFlexibleAccessPath |  |
-| autogenerated/TaintedPath/normalizedPaths.js:214:14:214:49 | pathMod ... y.path) | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:214:14:214:49 | pathMod ... y.path) | InputArgumentIndex |  |
-| autogenerated/TaintedPath/normalizedPaths.js:214:14:214:49 | pathMod ... y.path) | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:214:14:214:49 | pathMod ... y.path) | calleeImports |  |
-| autogenerated/TaintedPath/normalizedPaths.js:214:14:214:49 | pathMod ... y.path) | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:214:14:214:49 | pathMod ... y.path) | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:214:14:214:49 | pathMod ... y.path) | enclosingFunctionBody | req res path pathModule normalize req query path pathModule isAbsolute path path startsWith .. fs readFileSync path path decodeURIComponent path pathModule isAbsolute path path startsWith .. fs readFileSync path |
-| autogenerated/TaintedPath/normalizedPaths.js:214:14:214:49 | pathMod ... y.path) | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:214:14:214:49 | pathMod ... y.path) | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:214:14:214:49 | pathMod ... y.path) | receiverName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:214:14:214:49 | pathMod ... y.path) | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:216:56:216:59 | '..' | CalleeFlexibleAccessPath | path.startsWith |
-| autogenerated/TaintedPath/normalizedPaths.js:216:56:216:59 | '..' | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:216:56:216:59 | '..' | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/normalizedPaths.js:216:56:216:59 | '..' | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:216:56:216:59 | '..' | calleeImports | path |
-| autogenerated/TaintedPath/normalizedPaths.js:216:56:216:59 | '..' | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:216:56:216:59 | '..' | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:216:56:216:59 | '..' | enclosingFunctionBody | req res path pathModule normalize req query path pathModule isAbsolute path path startsWith .. fs readFileSync path path decodeURIComponent path pathModule isAbsolute path path startsWith .. fs readFileSync path |
-| autogenerated/TaintedPath/normalizedPaths.js:216:56:216:59 | '..' | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:216:56:216:59 | '..' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:216:56:216:59 | '..' | receiverName | path |
-| autogenerated/TaintedPath/normalizedPaths.js:216:56:216:59 | '..' | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:217:21:217:24 | path | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/normalizedPaths.js:217:21:217:24 | path | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:217:21:217:24 | path | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/normalizedPaths.js:217:21:217:24 | path | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:217:21:217:24 | path | calleeImports | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:217:21:217:24 | path | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:217:21:217:24 | path | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:217:21:217:24 | path | enclosingFunctionBody | req res path pathModule normalize req query path pathModule isAbsolute path path startsWith .. fs readFileSync path path decodeURIComponent path pathModule isAbsolute path path startsWith .. fs readFileSync path |
-| autogenerated/TaintedPath/normalizedPaths.js:217:21:217:24 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:217:21:217:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:217:21:217:24 | path | receiverName | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:217:21:217:24 | path | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:219:10:219:33 | decodeU ... t(path) | CalleeFlexibleAccessPath |  |
-| autogenerated/TaintedPath/normalizedPaths.js:219:10:219:33 | decodeU ... t(path) | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:219:10:219:33 | decodeU ... t(path) | InputArgumentIndex |  |
-| autogenerated/TaintedPath/normalizedPaths.js:219:10:219:33 | decodeU ... t(path) | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:219:10:219:33 | decodeU ... t(path) | calleeImports |  |
-| autogenerated/TaintedPath/normalizedPaths.js:219:10:219:33 | decodeU ... t(path) | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:219:10:219:33 | decodeU ... t(path) | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:219:10:219:33 | decodeU ... t(path) | enclosingFunctionBody | req res path pathModule normalize req query path pathModule isAbsolute path path startsWith .. fs readFileSync path path decodeURIComponent path pathModule isAbsolute path path startsWith .. fs readFileSync path |
-| autogenerated/TaintedPath/normalizedPaths.js:219:10:219:33 | decodeU ... t(path) | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:219:10:219:33 | decodeU ... t(path) | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:219:10:219:33 | decodeU ... t(path) | receiverName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:219:10:219:33 | decodeU ... t(path) | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:221:56:221:59 | '..' | CalleeFlexibleAccessPath | path.startsWith |
-| autogenerated/TaintedPath/normalizedPaths.js:221:56:221:59 | '..' | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:221:56:221:59 | '..' | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/normalizedPaths.js:221:56:221:59 | '..' | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:221:56:221:59 | '..' | calleeImports |  |
-| autogenerated/TaintedPath/normalizedPaths.js:221:56:221:59 | '..' | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:221:56:221:59 | '..' | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:221:56:221:59 | '..' | enclosingFunctionBody | req res path pathModule normalize req query path pathModule isAbsolute path path startsWith .. fs readFileSync path path decodeURIComponent path pathModule isAbsolute path path startsWith .. fs readFileSync path |
-| autogenerated/TaintedPath/normalizedPaths.js:221:56:221:59 | '..' | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:221:56:221:59 | '..' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:221:56:221:59 | '..' | receiverName | path |
-| autogenerated/TaintedPath/normalizedPaths.js:221:56:221:59 | '..' | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:222:21:222:24 | path | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/normalizedPaths.js:222:21:222:24 | path | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:222:21:222:24 | path | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/normalizedPaths.js:222:21:222:24 | path | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:222:21:222:24 | path | calleeImports | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:222:21:222:24 | path | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:222:21:222:24 | path | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:222:21:222:24 | path | enclosingFunctionBody | req res path pathModule normalize req query path pathModule isAbsolute path path startsWith .. fs readFileSync path path decodeURIComponent path pathModule isAbsolute path path startsWith .. fs readFileSync path |
-| autogenerated/TaintedPath/normalizedPaths.js:222:21:222:24 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:222:21:222:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:222:21:222:24 | path | receiverName | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:222:21:222:24 | path | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:225:9:225:18 | '/replace' | CalleeFlexibleAccessPath | app.get |
-| autogenerated/TaintedPath/normalizedPaths.js:225:9:225:18 | '/replace' | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:225:9:225:18 | '/replace' | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/normalizedPaths.js:225:9:225:18 | '/replace' | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:225:9:225:18 | '/replace' | calleeImports | express |
-| autogenerated/TaintedPath/normalizedPaths.js:225:9:225:18 | '/replace' | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:225:9:225:18 | '/replace' | contextSurroundingFunctionParameters |  |
-| autogenerated/TaintedPath/normalizedPaths.js:225:9:225:18 | '/replace' | enclosingFunctionBody |  |
-| autogenerated/TaintedPath/normalizedPaths.js:225:9:225:18 | '/replace' | enclosingFunctionName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:225:9:225:18 | '/replace' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:225:9:225:18 | '/replace' | receiverName | app |
-| autogenerated/TaintedPath/normalizedPaths.js:225:9:225:18 | '/replace' | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:225:21:233:1 | (req, r ... K\\n  }\\n} | CalleeFlexibleAccessPath | app.get |
-| autogenerated/TaintedPath/normalizedPaths.js:225:21:233:1 | (req, r ... K\\n  }\\n} | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:225:21:233:1 | (req, r ... K\\n  }\\n} | InputArgumentIndex | 1 |
-| autogenerated/TaintedPath/normalizedPaths.js:225:21:233:1 | (req, r ... K\\n  }\\n} | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:225:21:233:1 | (req, r ... K\\n  }\\n} | calleeImports | express |
-| autogenerated/TaintedPath/normalizedPaths.js:225:21:233:1 | (req, r ... K\\n  }\\n} | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:225:21:233:1 | (req, r ... K\\n  }\\n} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:225:21:233:1 | (req, r ... K\\n  }\\n} | enclosingFunctionBody |  |
-| autogenerated/TaintedPath/normalizedPaths.js:225:21:233:1 | (req, r ... K\\n  }\\n} | enclosingFunctionName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:225:21:233:1 | (req, r ... K\\n  }\\n} | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:225:21:233:1 | (req, r ... K\\n  }\\n} | receiverName | app |
-| autogenerated/TaintedPath/normalizedPaths.js:225:21:233:1 | (req, r ... K\\n  }\\n} | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:226:14:226:70 | pathMod ... g, ' ') | CalleeFlexibleAccessPath |  |
-| autogenerated/TaintedPath/normalizedPaths.js:226:14:226:70 | pathMod ... g, ' ') | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:226:14:226:70 | pathMod ... g, ' ') | InputArgumentIndex |  |
-| autogenerated/TaintedPath/normalizedPaths.js:226:14:226:70 | pathMod ... g, ' ') | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:226:14:226:70 | pathMod ... g, ' ') | calleeImports |  |
-| autogenerated/TaintedPath/normalizedPaths.js:226:14:226:70 | pathMod ... g, ' ') | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:226:14:226:70 | pathMod ... g, ' ') | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:226:14:226:70 | pathMod ... g, ' ') | enclosingFunctionBody | req res path pathModule normalize req query path replace /%20/g   pathModule isAbsolute path fs readFileSync path path path replace /\\.\\./g  fs readFileSync path |
-| autogenerated/TaintedPath/normalizedPaths.js:226:14:226:70 | pathMod ... g, ' ') | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:226:14:226:70 | pathMod ... g, ' ') | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:226:14:226:70 | pathMod ... g, ' ') | receiverName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:226:14:226:70 | pathMod ... g, ' ') | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:228:21:228:24 | path | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/normalizedPaths.js:228:21:228:24 | path | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:228:21:228:24 | path | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/normalizedPaths.js:228:21:228:24 | path | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:228:21:228:24 | path | calleeImports | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:228:21:228:24 | path | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:228:21:228:24 | path | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:228:21:228:24 | path | enclosingFunctionBody | req res path pathModule normalize req query path replace /%20/g   pathModule isAbsolute path fs readFileSync path path path replace /\\.\\./g  fs readFileSync path |
-| autogenerated/TaintedPath/normalizedPaths.js:228:21:228:24 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:228:21:228:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:228:21:228:24 | path | receiverName | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:228:21:228:24 | path | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:230:12:230:36 | path.re ... /g, '') | CalleeFlexibleAccessPath |  |
-| autogenerated/TaintedPath/normalizedPaths.js:230:12:230:36 | path.re ... /g, '') | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:230:12:230:36 | path.re ... /g, '') | InputArgumentIndex |  |
-| autogenerated/TaintedPath/normalizedPaths.js:230:12:230:36 | path.re ... /g, '') | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:230:12:230:36 | path.re ... /g, '') | calleeImports |  |
-| autogenerated/TaintedPath/normalizedPaths.js:230:12:230:36 | path.re ... /g, '') | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:230:12:230:36 | path.re ... /g, '') | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:230:12:230:36 | path.re ... /g, '') | enclosingFunctionBody | req res path pathModule normalize req query path replace /%20/g   pathModule isAbsolute path fs readFileSync path path path replace /\\.\\./g  fs readFileSync path |
-| autogenerated/TaintedPath/normalizedPaths.js:230:12:230:36 | path.re ... /g, '') | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:230:12:230:36 | path.re ... /g, '') | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:230:12:230:36 | path.re ... /g, '') | receiverName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:230:12:230:36 | path.re ... /g, '') | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:231:21:231:24 | path | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/normalizedPaths.js:231:21:231:24 | path | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:231:21:231:24 | path | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/normalizedPaths.js:231:21:231:24 | path | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:231:21:231:24 | path | calleeImports | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:231:21:231:24 | path | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:231:21:231:24 | path | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:231:21:231:24 | path | enclosingFunctionBody | req res path pathModule normalize req query path replace /%20/g   pathModule isAbsolute path fs readFileSync path path path replace /\\.\\./g  fs readFileSync path |
-| autogenerated/TaintedPath/normalizedPaths.js:231:21:231:24 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:231:21:231:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:231:21:231:24 | path | receiverName | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:231:21:231:24 | path | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:235:9:235:23 | '/resolve-path' | CalleeFlexibleAccessPath | app.get |
-| autogenerated/TaintedPath/normalizedPaths.js:235:9:235:23 | '/resolve-path' | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:235:9:235:23 | '/resolve-path' | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/normalizedPaths.js:235:9:235:23 | '/resolve-path' | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:235:9:235:23 | '/resolve-path' | calleeImports | express |
-| autogenerated/TaintedPath/normalizedPaths.js:235:9:235:23 | '/resolve-path' | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:235:9:235:23 | '/resolve-path' | contextSurroundingFunctionParameters |  |
-| autogenerated/TaintedPath/normalizedPaths.js:235:9:235:23 | '/resolve-path' | enclosingFunctionBody |  |
-| autogenerated/TaintedPath/normalizedPaths.js:235:9:235:23 | '/resolve-path' | enclosingFunctionName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:235:9:235:23 | '/resolve-path' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:235:9:235:23 | '/resolve-path' | receiverName | app |
-| autogenerated/TaintedPath/normalizedPaths.js:235:9:235:23 | '/resolve-path' | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:235:26:251:1 | (req, r ... arity\\n} | CalleeFlexibleAccessPath | app.get |
-| autogenerated/TaintedPath/normalizedPaths.js:235:26:251:1 | (req, r ... arity\\n} | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:235:26:251:1 | (req, r ... arity\\n} | InputArgumentIndex | 1 |
-| autogenerated/TaintedPath/normalizedPaths.js:235:26:251:1 | (req, r ... arity\\n} | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:235:26:251:1 | (req, r ... arity\\n} | calleeImports | express |
-| autogenerated/TaintedPath/normalizedPaths.js:235:26:251:1 | (req, r ... arity\\n} | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:235:26:251:1 | (req, r ... arity\\n} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:235:26:251:1 | (req, r ... arity\\n} | enclosingFunctionBody |  |
-| autogenerated/TaintedPath/normalizedPaths.js:235:26:251:1 | (req, r ... arity\\n} | enclosingFunctionName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:235:26:251:1 | (req, r ... arity\\n} | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:235:26:251:1 | (req, r ... arity\\n} | receiverName | app |
-| autogenerated/TaintedPath/normalizedPaths.js:235:26:251:1 | (req, r ... arity\\n} | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:236:14:236:47 | pathMod ... y.path) | CalleeFlexibleAccessPath |  |
-| autogenerated/TaintedPath/normalizedPaths.js:236:14:236:47 | pathMod ... y.path) | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:236:14:236:47 | pathMod ... y.path) | InputArgumentIndex |  |
-| autogenerated/TaintedPath/normalizedPaths.js:236:14:236:47 | pathMod ... y.path) | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:236:14:236:47 | pathMod ... y.path) | calleeImports |  |
-| autogenerated/TaintedPath/normalizedPaths.js:236:14:236:47 | pathMod ... y.path) | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:236:14:236:47 | pathMod ... y.path) | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:236:14:236:47 | pathMod ... y.path) | enclosingFunctionBody | req res path pathModule resolve req query path fs readFileSync path self something path substring 0 self dir length self dir fs readFileSync path fs readFileSync path path slice 0 self dir length self dir fs readFileSync path fs readFileSync path |
-| autogenerated/TaintedPath/normalizedPaths.js:236:14:236:47 | pathMod ... y.path) | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:236:14:236:47 | pathMod ... y.path) | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:236:14:236:47 | pathMod ... y.path) | receiverName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:236:14:236:47 | pathMod ... y.path) | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:238:19:238:22 | path | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/normalizedPaths.js:238:19:238:22 | path | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:238:19:238:22 | path | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/normalizedPaths.js:238:19:238:22 | path | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:238:19:238:22 | path | calleeImports | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:238:19:238:22 | path | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:238:19:238:22 | path | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:238:19:238:22 | path | enclosingFunctionBody | req res path pathModule resolve req query path fs readFileSync path self something path substring 0 self dir length self dir fs readFileSync path fs readFileSync path path slice 0 self dir length self dir fs readFileSync path fs readFileSync path |
-| autogenerated/TaintedPath/normalizedPaths.js:238:19:238:22 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:238:19:238:22 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:238:19:238:22 | path | receiverName | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:238:19:238:22 | path | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:242:22:242:22 | 0 | CalleeFlexibleAccessPath | path.substring |
-| autogenerated/TaintedPath/normalizedPaths.js:242:22:242:22 | 0 | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:242:22:242:22 | 0 | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/normalizedPaths.js:242:22:242:22 | 0 | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:242:22:242:22 | 0 | calleeImports | path |
-| autogenerated/TaintedPath/normalizedPaths.js:242:22:242:22 | 0 | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:242:22:242:22 | 0 | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:242:22:242:22 | 0 | enclosingFunctionBody | req res path pathModule resolve req query path fs readFileSync path self something path substring 0 self dir length self dir fs readFileSync path fs readFileSync path path slice 0 self dir length self dir fs readFileSync path fs readFileSync path |
-| autogenerated/TaintedPath/normalizedPaths.js:242:22:242:22 | 0 | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:242:22:242:22 | 0 | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:242:22:242:22 | 0 | receiverName | path |
-| autogenerated/TaintedPath/normalizedPaths.js:242:22:242:22 | 0 | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:242:25:242:39 | self.dir.length | CalleeFlexibleAccessPath | path.substring |
-| autogenerated/TaintedPath/normalizedPaths.js:242:25:242:39 | self.dir.length | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:242:25:242:39 | self.dir.length | InputArgumentIndex | 1 |
-| autogenerated/TaintedPath/normalizedPaths.js:242:25:242:39 | self.dir.length | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:242:25:242:39 | self.dir.length | calleeImports | path |
-| autogenerated/TaintedPath/normalizedPaths.js:242:25:242:39 | self.dir.length | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:242:25:242:39 | self.dir.length | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:242:25:242:39 | self.dir.length | enclosingFunctionBody | req res path pathModule resolve req query path fs readFileSync path self something path substring 0 self dir length self dir fs readFileSync path fs readFileSync path path slice 0 self dir length self dir fs readFileSync path fs readFileSync path |
-| autogenerated/TaintedPath/normalizedPaths.js:242:25:242:39 | self.dir.length | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:242:25:242:39 | self.dir.length | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:242:25:242:39 | self.dir.length | receiverName | path |
-| autogenerated/TaintedPath/normalizedPaths.js:242:25:242:39 | self.dir.length | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:243:21:243:24 | path | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/normalizedPaths.js:243:21:243:24 | path | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:243:21:243:24 | path | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/normalizedPaths.js:243:21:243:24 | path | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:243:21:243:24 | path | calleeImports | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:243:21:243:24 | path | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:243:21:243:24 | path | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:243:21:243:24 | path | enclosingFunctionBody | req res path pathModule resolve req query path fs readFileSync path self something path substring 0 self dir length self dir fs readFileSync path fs readFileSync path path slice 0 self dir length self dir fs readFileSync path fs readFileSync path |
-| autogenerated/TaintedPath/normalizedPaths.js:243:21:243:24 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:243:21:243:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:243:21:243:24 | path | receiverName | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:243:21:243:24 | path | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:245:21:245:24 | path | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/normalizedPaths.js:245:21:245:24 | path | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:245:21:245:24 | path | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/normalizedPaths.js:245:21:245:24 | path | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:245:21:245:24 | path | calleeImports | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:245:21:245:24 | path | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:245:21:245:24 | path | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:245:21:245:24 | path | enclosingFunctionBody | req res path pathModule resolve req query path fs readFileSync path self something path substring 0 self dir length self dir fs readFileSync path fs readFileSync path path slice 0 self dir length self dir fs readFileSync path fs readFileSync path |
-| autogenerated/TaintedPath/normalizedPaths.js:245:21:245:24 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:245:21:245:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:245:21:245:24 | path | receiverName | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:245:21:245:24 | path | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:247:18:247:18 | 0 | CalleeFlexibleAccessPath | path.slice |
-| autogenerated/TaintedPath/normalizedPaths.js:247:18:247:18 | 0 | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:247:18:247:18 | 0 | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/normalizedPaths.js:247:18:247:18 | 0 | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:247:18:247:18 | 0 | calleeImports | path |
-| autogenerated/TaintedPath/normalizedPaths.js:247:18:247:18 | 0 | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:247:18:247:18 | 0 | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:247:18:247:18 | 0 | enclosingFunctionBody | req res path pathModule resolve req query path fs readFileSync path self something path substring 0 self dir length self dir fs readFileSync path fs readFileSync path path slice 0 self dir length self dir fs readFileSync path fs readFileSync path |
-| autogenerated/TaintedPath/normalizedPaths.js:247:18:247:18 | 0 | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:247:18:247:18 | 0 | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:247:18:247:18 | 0 | receiverName | path |
-| autogenerated/TaintedPath/normalizedPaths.js:247:18:247:18 | 0 | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:247:21:247:35 | self.dir.length | CalleeFlexibleAccessPath | path.slice |
-| autogenerated/TaintedPath/normalizedPaths.js:247:21:247:35 | self.dir.length | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:247:21:247:35 | self.dir.length | InputArgumentIndex | 1 |
-| autogenerated/TaintedPath/normalizedPaths.js:247:21:247:35 | self.dir.length | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:247:21:247:35 | self.dir.length | calleeImports | path |
-| autogenerated/TaintedPath/normalizedPaths.js:247:21:247:35 | self.dir.length | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:247:21:247:35 | self.dir.length | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:247:21:247:35 | self.dir.length | enclosingFunctionBody | req res path pathModule resolve req query path fs readFileSync path self something path substring 0 self dir length self dir fs readFileSync path fs readFileSync path path slice 0 self dir length self dir fs readFileSync path fs readFileSync path |
-| autogenerated/TaintedPath/normalizedPaths.js:247:21:247:35 | self.dir.length | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:247:21:247:35 | self.dir.length | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:247:21:247:35 | self.dir.length | receiverName | path |
-| autogenerated/TaintedPath/normalizedPaths.js:247:21:247:35 | self.dir.length | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:248:21:248:24 | path | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/normalizedPaths.js:248:21:248:24 | path | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:248:21:248:24 | path | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/normalizedPaths.js:248:21:248:24 | path | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:248:21:248:24 | path | calleeImports | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:248:21:248:24 | path | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:248:21:248:24 | path | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:248:21:248:24 | path | enclosingFunctionBody | req res path pathModule resolve req query path fs readFileSync path self something path substring 0 self dir length self dir fs readFileSync path fs readFileSync path path slice 0 self dir length self dir fs readFileSync path fs readFileSync path |
-| autogenerated/TaintedPath/normalizedPaths.js:248:21:248:24 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:248:21:248:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:248:21:248:24 | path | receiverName | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:248:21:248:24 | path | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:250:21:250:24 | path | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/normalizedPaths.js:250:21:250:24 | path | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:250:21:250:24 | path | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/normalizedPaths.js:250:21:250:24 | path | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:250:21:250:24 | path | calleeImports | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:250:21:250:24 | path | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:250:21:250:24 | path | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:250:21:250:24 | path | enclosingFunctionBody | req res path pathModule resolve req query path fs readFileSync path self something path substring 0 self dir length self dir fs readFileSync path fs readFileSync path path slice 0 self dir length self dir fs readFileSync path fs readFileSync path |
-| autogenerated/TaintedPath/normalizedPaths.js:250:21:250:24 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:250:21:250:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:250:21:250:24 | path | receiverName | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:250:21:250:24 | path | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:253:9:253:30 | '/relat ... tswith' | CalleeFlexibleAccessPath | app.get |
-| autogenerated/TaintedPath/normalizedPaths.js:253:9:253:30 | '/relat ... tswith' | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:253:9:253:30 | '/relat ... tswith' | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/normalizedPaths.js:253:9:253:30 | '/relat ... tswith' | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:253:9:253:30 | '/relat ... tswith' | calleeImports | express |
-| autogenerated/TaintedPath/normalizedPaths.js:253:9:253:30 | '/relat ... tswith' | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:253:9:253:30 | '/relat ... tswith' | contextSurroundingFunctionParameters |  |
-| autogenerated/TaintedPath/normalizedPaths.js:253:9:253:30 | '/relat ... tswith' | enclosingFunctionBody |  |
-| autogenerated/TaintedPath/normalizedPaths.js:253:9:253:30 | '/relat ... tswith' | enclosingFunctionName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:253:9:253:30 | '/relat ... tswith' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:253:9:253:30 | '/relat ... tswith' | receiverName | app |
-| autogenerated/TaintedPath/normalizedPaths.js:253:9:253:30 | '/relat ... tswith' | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:253:33:298:1 | (req, r ...  \\n  }\\n} | CalleeFlexibleAccessPath | app.get |
-| autogenerated/TaintedPath/normalizedPaths.js:253:33:298:1 | (req, r ...  \\n  }\\n} | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:253:33:298:1 | (req, r ...  \\n  }\\n} | InputArgumentIndex | 1 |
-| autogenerated/TaintedPath/normalizedPaths.js:253:33:298:1 | (req, r ...  \\n  }\\n} | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:253:33:298:1 | (req, r ...  \\n  }\\n} | calleeImports | express |
-| autogenerated/TaintedPath/normalizedPaths.js:253:33:298:1 | (req, r ...  \\n  }\\n} | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:253:33:298:1 | (req, r ...  \\n  }\\n} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:253:33:298:1 | (req, r ...  \\n  }\\n} | enclosingFunctionBody |  |
-| autogenerated/TaintedPath/normalizedPaths.js:253:33:298:1 | (req, r ...  \\n  }\\n} | enclosingFunctionName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:253:33:298:1 | (req, r ...  \\n  }\\n} | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:253:33:298:1 | (req, r ...  \\n  }\\n} | receiverName | app |
-| autogenerated/TaintedPath/normalizedPaths.js:253:33:298:1 | (req, r ...  \\n  }\\n} | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:254:14:254:47 | pathMod ... y.path) | CalleeFlexibleAccessPath |  |
-| autogenerated/TaintedPath/normalizedPaths.js:254:14:254:47 | pathMod ... y.path) | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:254:14:254:47 | pathMod ... y.path) | InputArgumentIndex |  |
-| autogenerated/TaintedPath/normalizedPaths.js:254:14:254:47 | pathMod ... y.path) | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:254:14:254:47 | pathMod ... y.path) | calleeImports |  |
-| autogenerated/TaintedPath/normalizedPaths.js:254:14:254:47 | pathMod ... y.path) | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:254:14:254:47 | pathMod ... y.path) | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:254:14:254:47 | pathMod ... y.path) | enclosingFunctionBody | req res path pathModule resolve req query path fs readFileSync path self something relative pathModule relative self webroot path relative startsWith .. pathModule sep relative .. fs readFileSync path fs readFileSync path newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath relativePath indexOf .. pathModule sep 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath relativePath indexOf ../ 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath pathModule normalize relativePath indexOf ../ 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath pathModule normalize relativePath indexOf ../ fs readFileSync newpath fs readFileSync newpath |
-| autogenerated/TaintedPath/normalizedPaths.js:254:14:254:47 | pathMod ... y.path) | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:254:14:254:47 | pathMod ... y.path) | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:254:14:254:47 | pathMod ... y.path) | receiverName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:254:14:254:47 | pathMod ... y.path) | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:256:19:256:22 | path | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/normalizedPaths.js:256:19:256:22 | path | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:256:19:256:22 | path | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/normalizedPaths.js:256:19:256:22 | path | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:256:19:256:22 | path | calleeImports | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:256:19:256:22 | path | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:256:19:256:22 | path | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:256:19:256:22 | path | enclosingFunctionBody | req res path pathModule resolve req query path fs readFileSync path self something relative pathModule relative self webroot path relative startsWith .. pathModule sep relative .. fs readFileSync path fs readFileSync path newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath relativePath indexOf .. pathModule sep 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath relativePath indexOf ../ 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath pathModule normalize relativePath indexOf ../ 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath pathModule normalize relativePath indexOf ../ fs readFileSync newpath fs readFileSync newpath |
-| autogenerated/TaintedPath/normalizedPaths.js:256:19:256:22 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:256:19:256:22 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:256:19:256:22 | path | receiverName | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:256:19:256:22 | path | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:261:26:261:46 | ".." +  ... ule.sep | CalleeFlexibleAccessPath | relative.startsWith |
-| autogenerated/TaintedPath/normalizedPaths.js:261:26:261:46 | ".." +  ... ule.sep | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:261:26:261:46 | ".." +  ... ule.sep | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/normalizedPaths.js:261:26:261:46 | ".." +  ... ule.sep | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:261:26:261:46 | ".." +  ... ule.sep | calleeImports | path |
-| autogenerated/TaintedPath/normalizedPaths.js:261:26:261:46 | ".." +  ... ule.sep | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:261:26:261:46 | ".." +  ... ule.sep | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:261:26:261:46 | ".." +  ... ule.sep | enclosingFunctionBody | req res path pathModule resolve req query path fs readFileSync path self something relative pathModule relative self webroot path relative startsWith .. pathModule sep relative .. fs readFileSync path fs readFileSync path newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath relativePath indexOf .. pathModule sep 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath relativePath indexOf ../ 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath pathModule normalize relativePath indexOf ../ 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath pathModule normalize relativePath indexOf ../ fs readFileSync newpath fs readFileSync newpath |
-| autogenerated/TaintedPath/normalizedPaths.js:261:26:261:46 | ".." +  ... ule.sep | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:261:26:261:46 | ".." +  ... ule.sep | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:261:26:261:46 | ".." +  ... ule.sep | receiverName | relative |
-| autogenerated/TaintedPath/normalizedPaths.js:261:26:261:46 | ".." +  ... ule.sep | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:262:21:262:24 | path | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/normalizedPaths.js:262:21:262:24 | path | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:262:21:262:24 | path | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/normalizedPaths.js:262:21:262:24 | path | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:262:21:262:24 | path | calleeImports | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:262:21:262:24 | path | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:262:21:262:24 | path | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:262:21:262:24 | path | enclosingFunctionBody | req res path pathModule resolve req query path fs readFileSync path self something relative pathModule relative self webroot path relative startsWith .. pathModule sep relative .. fs readFileSync path fs readFileSync path newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath relativePath indexOf .. pathModule sep 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath relativePath indexOf ../ 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath pathModule normalize relativePath indexOf ../ 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath pathModule normalize relativePath indexOf ../ fs readFileSync newpath fs readFileSync newpath |
-| autogenerated/TaintedPath/normalizedPaths.js:262:21:262:24 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:262:21:262:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:262:21:262:24 | path | receiverName | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:262:21:262:24 | path | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:264:21:264:24 | path | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/normalizedPaths.js:264:21:264:24 | path | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:264:21:264:24 | path | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/normalizedPaths.js:264:21:264:24 | path | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:264:21:264:24 | path | calleeImports | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:264:21:264:24 | path | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:264:21:264:24 | path | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:264:21:264:24 | path | enclosingFunctionBody | req res path pathModule resolve req query path fs readFileSync path self something relative pathModule relative self webroot path relative startsWith .. pathModule sep relative .. fs readFileSync path fs readFileSync path newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath relativePath indexOf .. pathModule sep 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath relativePath indexOf ../ 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath pathModule normalize relativePath indexOf ../ 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath pathModule normalize relativePath indexOf ../ fs readFileSync newpath fs readFileSync newpath |
-| autogenerated/TaintedPath/normalizedPaths.js:264:21:264:24 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:264:21:264:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:264:21:264:24 | path | receiverName | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:264:21:264:24 | path | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:269:28:269:48 | '..' +  ... ule.sep | CalleeFlexibleAccessPath | relativePath.indexOf |
-| autogenerated/TaintedPath/normalizedPaths.js:269:28:269:48 | '..' +  ... ule.sep | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:269:28:269:48 | '..' +  ... ule.sep | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/normalizedPaths.js:269:28:269:48 | '..' +  ... ule.sep | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:269:28:269:48 | '..' +  ... ule.sep | calleeImports | path |
-| autogenerated/TaintedPath/normalizedPaths.js:269:28:269:48 | '..' +  ... ule.sep | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:269:28:269:48 | '..' +  ... ule.sep | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:269:28:269:48 | '..' +  ... ule.sep | enclosingFunctionBody | req res path pathModule resolve req query path fs readFileSync path self something relative pathModule relative self webroot path relative startsWith .. pathModule sep relative .. fs readFileSync path fs readFileSync path newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath relativePath indexOf .. pathModule sep 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath relativePath indexOf ../ 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath pathModule normalize relativePath indexOf ../ 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath pathModule normalize relativePath indexOf ../ fs readFileSync newpath fs readFileSync newpath |
-| autogenerated/TaintedPath/normalizedPaths.js:269:28:269:48 | '..' +  ... ule.sep | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:269:28:269:48 | '..' +  ... ule.sep | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:269:28:269:48 | '..' +  ... ule.sep | receiverName | relativePath |
-| autogenerated/TaintedPath/normalizedPaths.js:269:28:269:48 | '..' +  ... ule.sep | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:270:21:270:27 | newpath | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/normalizedPaths.js:270:21:270:27 | newpath | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:270:21:270:27 | newpath | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/normalizedPaths.js:270:21:270:27 | newpath | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:270:21:270:27 | newpath | calleeImports | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:270:21:270:27 | newpath | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:270:21:270:27 | newpath | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:270:21:270:27 | newpath | enclosingFunctionBody | req res path pathModule resolve req query path fs readFileSync path self something relative pathModule relative self webroot path relative startsWith .. pathModule sep relative .. fs readFileSync path fs readFileSync path newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath relativePath indexOf .. pathModule sep 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath relativePath indexOf ../ 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath pathModule normalize relativePath indexOf ../ 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath pathModule normalize relativePath indexOf ../ fs readFileSync newpath fs readFileSync newpath |
-| autogenerated/TaintedPath/normalizedPaths.js:270:21:270:27 | newpath | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:270:21:270:27 | newpath | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:270:21:270:27 | newpath | receiverName | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:270:21:270:27 | newpath | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:272:21:272:27 | newpath | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/normalizedPaths.js:272:21:272:27 | newpath | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:272:21:272:27 | newpath | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/normalizedPaths.js:272:21:272:27 | newpath | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:272:21:272:27 | newpath | calleeImports | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:272:21:272:27 | newpath | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:272:21:272:27 | newpath | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:272:21:272:27 | newpath | enclosingFunctionBody | req res path pathModule resolve req query path fs readFileSync path self something relative pathModule relative self webroot path relative startsWith .. pathModule sep relative .. fs readFileSync path fs readFileSync path newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath relativePath indexOf .. pathModule sep 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath relativePath indexOf ../ 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath pathModule normalize relativePath indexOf ../ 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath pathModule normalize relativePath indexOf ../ fs readFileSync newpath fs readFileSync newpath |
-| autogenerated/TaintedPath/normalizedPaths.js:272:21:272:27 | newpath | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:272:21:272:27 | newpath | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:272:21:272:27 | newpath | receiverName | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:272:21:272:27 | newpath | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:277:28:277:32 | '../' | CalleeFlexibleAccessPath | relativePath.indexOf |
-| autogenerated/TaintedPath/normalizedPaths.js:277:28:277:32 | '../' | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:277:28:277:32 | '../' | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/normalizedPaths.js:277:28:277:32 | '../' | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:277:28:277:32 | '../' | calleeImports | path |
-| autogenerated/TaintedPath/normalizedPaths.js:277:28:277:32 | '../' | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:277:28:277:32 | '../' | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:277:28:277:32 | '../' | enclosingFunctionBody | req res path pathModule resolve req query path fs readFileSync path self something relative pathModule relative self webroot path relative startsWith .. pathModule sep relative .. fs readFileSync path fs readFileSync path newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath relativePath indexOf .. pathModule sep 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath relativePath indexOf ../ 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath pathModule normalize relativePath indexOf ../ 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath pathModule normalize relativePath indexOf ../ fs readFileSync newpath fs readFileSync newpath |
-| autogenerated/TaintedPath/normalizedPaths.js:277:28:277:32 | '../' | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:277:28:277:32 | '../' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:277:28:277:32 | '../' | receiverName | relativePath |
-| autogenerated/TaintedPath/normalizedPaths.js:277:28:277:32 | '../' | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:278:21:278:27 | newpath | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/normalizedPaths.js:278:21:278:27 | newpath | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:278:21:278:27 | newpath | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/normalizedPaths.js:278:21:278:27 | newpath | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:278:21:278:27 | newpath | calleeImports | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:278:21:278:27 | newpath | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:278:21:278:27 | newpath | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:278:21:278:27 | newpath | enclosingFunctionBody | req res path pathModule resolve req query path fs readFileSync path self something relative pathModule relative self webroot path relative startsWith .. pathModule sep relative .. fs readFileSync path fs readFileSync path newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath relativePath indexOf .. pathModule sep 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath relativePath indexOf ../ 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath pathModule normalize relativePath indexOf ../ 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath pathModule normalize relativePath indexOf ../ fs readFileSync newpath fs readFileSync newpath |
-| autogenerated/TaintedPath/normalizedPaths.js:278:21:278:27 | newpath | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:278:21:278:27 | newpath | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:278:21:278:27 | newpath | receiverName | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:278:21:278:27 | newpath | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:280:21:280:27 | newpath | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/normalizedPaths.js:280:21:280:27 | newpath | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:280:21:280:27 | newpath | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/normalizedPaths.js:280:21:280:27 | newpath | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:280:21:280:27 | newpath | calleeImports | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:280:21:280:27 | newpath | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:280:21:280:27 | newpath | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:280:21:280:27 | newpath | enclosingFunctionBody | req res path pathModule resolve req query path fs readFileSync path self something relative pathModule relative self webroot path relative startsWith .. pathModule sep relative .. fs readFileSync path fs readFileSync path newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath relativePath indexOf .. pathModule sep 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath relativePath indexOf ../ 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath pathModule normalize relativePath indexOf ../ 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath pathModule normalize relativePath indexOf ../ fs readFileSync newpath fs readFileSync newpath |
-| autogenerated/TaintedPath/normalizedPaths.js:280:21:280:27 | newpath | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:280:21:280:27 | newpath | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:280:21:280:27 | newpath | receiverName | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:280:21:280:27 | newpath | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:285:50:285:54 | '../' | CalleeFlexibleAccessPath | pathModule.normalize().indexOf |
-| autogenerated/TaintedPath/normalizedPaths.js:285:50:285:54 | '../' | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:285:50:285:54 | '../' | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/normalizedPaths.js:285:50:285:54 | '../' | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:285:50:285:54 | '../' | calleeImports | path |
-| autogenerated/TaintedPath/normalizedPaths.js:285:50:285:54 | '../' | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:285:50:285:54 | '../' | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:285:50:285:54 | '../' | enclosingFunctionBody | req res path pathModule resolve req query path fs readFileSync path self something relative pathModule relative self webroot path relative startsWith .. pathModule sep relative .. fs readFileSync path fs readFileSync path newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath relativePath indexOf .. pathModule sep 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath relativePath indexOf ../ 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath pathModule normalize relativePath indexOf ../ 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath pathModule normalize relativePath indexOf ../ fs readFileSync newpath fs readFileSync newpath |
-| autogenerated/TaintedPath/normalizedPaths.js:285:50:285:54 | '../' | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:285:50:285:54 | '../' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:285:50:285:54 | '../' | receiverName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:285:50:285:54 | '../' | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:286:21:286:27 | newpath | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/normalizedPaths.js:286:21:286:27 | newpath | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:286:21:286:27 | newpath | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/normalizedPaths.js:286:21:286:27 | newpath | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:286:21:286:27 | newpath | calleeImports | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:286:21:286:27 | newpath | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:286:21:286:27 | newpath | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:286:21:286:27 | newpath | enclosingFunctionBody | req res path pathModule resolve req query path fs readFileSync path self something relative pathModule relative self webroot path relative startsWith .. pathModule sep relative .. fs readFileSync path fs readFileSync path newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath relativePath indexOf .. pathModule sep 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath relativePath indexOf ../ 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath pathModule normalize relativePath indexOf ../ 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath pathModule normalize relativePath indexOf ../ fs readFileSync newpath fs readFileSync newpath |
-| autogenerated/TaintedPath/normalizedPaths.js:286:21:286:27 | newpath | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:286:21:286:27 | newpath | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:286:21:286:27 | newpath | receiverName | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:286:21:286:27 | newpath | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:288:21:288:27 | newpath | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/normalizedPaths.js:288:21:288:27 | newpath | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:288:21:288:27 | newpath | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/normalizedPaths.js:288:21:288:27 | newpath | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:288:21:288:27 | newpath | calleeImports | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:288:21:288:27 | newpath | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:288:21:288:27 | newpath | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:288:21:288:27 | newpath | enclosingFunctionBody | req res path pathModule resolve req query path fs readFileSync path self something relative pathModule relative self webroot path relative startsWith .. pathModule sep relative .. fs readFileSync path fs readFileSync path newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath relativePath indexOf .. pathModule sep 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath relativePath indexOf ../ 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath pathModule normalize relativePath indexOf ../ 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath pathModule normalize relativePath indexOf ../ fs readFileSync newpath fs readFileSync newpath |
-| autogenerated/TaintedPath/normalizedPaths.js:288:21:288:27 | newpath | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:288:21:288:27 | newpath | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:288:21:288:27 | newpath | receiverName | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:288:21:288:27 | newpath | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:293:50:293:54 | '../' | CalleeFlexibleAccessPath | pathModule.normalize().indexOf |
-| autogenerated/TaintedPath/normalizedPaths.js:293:50:293:54 | '../' | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:293:50:293:54 | '../' | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/normalizedPaths.js:293:50:293:54 | '../' | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:293:50:293:54 | '../' | calleeImports | path |
-| autogenerated/TaintedPath/normalizedPaths.js:293:50:293:54 | '../' | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:293:50:293:54 | '../' | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:293:50:293:54 | '../' | enclosingFunctionBody | req res path pathModule resolve req query path fs readFileSync path self something relative pathModule relative self webroot path relative startsWith .. pathModule sep relative .. fs readFileSync path fs readFileSync path newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath relativePath indexOf .. pathModule sep 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath relativePath indexOf ../ 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath pathModule normalize relativePath indexOf ../ 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath pathModule normalize relativePath indexOf ../ fs readFileSync newpath fs readFileSync newpath |
-| autogenerated/TaintedPath/normalizedPaths.js:293:50:293:54 | '../' | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:293:50:293:54 | '../' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:293:50:293:54 | '../' | receiverName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:293:50:293:54 | '../' | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:294:21:294:27 | newpath | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/normalizedPaths.js:294:21:294:27 | newpath | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:294:21:294:27 | newpath | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/normalizedPaths.js:294:21:294:27 | newpath | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:294:21:294:27 | newpath | calleeImports | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:294:21:294:27 | newpath | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:294:21:294:27 | newpath | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:294:21:294:27 | newpath | enclosingFunctionBody | req res path pathModule resolve req query path fs readFileSync path self something relative pathModule relative self webroot path relative startsWith .. pathModule sep relative .. fs readFileSync path fs readFileSync path newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath relativePath indexOf .. pathModule sep 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath relativePath indexOf ../ 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath pathModule normalize relativePath indexOf ../ 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath pathModule normalize relativePath indexOf ../ fs readFileSync newpath fs readFileSync newpath |
-| autogenerated/TaintedPath/normalizedPaths.js:294:21:294:27 | newpath | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:294:21:294:27 | newpath | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:294:21:294:27 | newpath | receiverName | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:294:21:294:27 | newpath | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:296:21:296:27 | newpath | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/normalizedPaths.js:296:21:296:27 | newpath | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:296:21:296:27 | newpath | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/normalizedPaths.js:296:21:296:27 | newpath | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:296:21:296:27 | newpath | calleeImports | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:296:21:296:27 | newpath | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:296:21:296:27 | newpath | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:296:21:296:27 | newpath | enclosingFunctionBody | req res path pathModule resolve req query path fs readFileSync path self something relative pathModule relative self webroot path relative startsWith .. pathModule sep relative .. fs readFileSync path fs readFileSync path newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath relativePath indexOf .. pathModule sep 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath relativePath indexOf ../ 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath pathModule normalize relativePath indexOf ../ 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath pathModule normalize relativePath indexOf ../ fs readFileSync newpath fs readFileSync newpath |
-| autogenerated/TaintedPath/normalizedPaths.js:296:21:296:27 | newpath | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:296:21:296:27 | newpath | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:296:21:296:27 | newpath | receiverName | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:296:21:296:27 | newpath | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:300:28:300:43 | "is-path-inside" | CalleeFlexibleAccessPath | require |
-| autogenerated/TaintedPath/normalizedPaths.js:300:28:300:43 | "is-path-inside" | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:300:28:300:43 | "is-path-inside" | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/normalizedPaths.js:300:28:300:43 | "is-path-inside" | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:300:28:300:43 | "is-path-inside" | calleeImports |  |
-| autogenerated/TaintedPath/normalizedPaths.js:300:28:300:43 | "is-path-inside" | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:300:28:300:43 | "is-path-inside" | contextSurroundingFunctionParameters |  |
-| autogenerated/TaintedPath/normalizedPaths.js:300:28:300:43 | "is-path-inside" | enclosingFunctionBody |  |
-| autogenerated/TaintedPath/normalizedPaths.js:300:28:300:43 | "is-path-inside" | enclosingFunctionName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:300:28:300:43 | "is-path-inside" | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:300:28:300:43 | "is-path-inside" | receiverName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:300:28:300:43 | "is-path-inside" | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:301:28:301:43 | "path-is-inside" | CalleeFlexibleAccessPath | require |
-| autogenerated/TaintedPath/normalizedPaths.js:301:28:301:43 | "path-is-inside" | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:301:28:301:43 | "path-is-inside" | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/normalizedPaths.js:301:28:301:43 | "path-is-inside" | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:301:28:301:43 | "path-is-inside" | calleeImports |  |
-| autogenerated/TaintedPath/normalizedPaths.js:301:28:301:43 | "path-is-inside" | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:301:28:301:43 | "path-is-inside" | contextSurroundingFunctionParameters |  |
-| autogenerated/TaintedPath/normalizedPaths.js:301:28:301:43 | "path-is-inside" | enclosingFunctionBody |  |
-| autogenerated/TaintedPath/normalizedPaths.js:301:28:301:43 | "path-is-inside" | enclosingFunctionName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:301:28:301:43 | "path-is-inside" | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:301:28:301:43 | "path-is-inside" | receiverName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:301:28:301:43 | "path-is-inside" | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:302:9:302:32 | '/pseud ... ations' | CalleeFlexibleAccessPath | app.get |
-| autogenerated/TaintedPath/normalizedPaths.js:302:9:302:32 | '/pseud ... ations' | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:302:9:302:32 | '/pseud ... ations' | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/normalizedPaths.js:302:9:302:32 | '/pseud ... ations' | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:302:9:302:32 | '/pseud ... ations' | calleeImports | express |
-| autogenerated/TaintedPath/normalizedPaths.js:302:9:302:32 | '/pseud ... ations' | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:302:9:302:32 | '/pseud ... ations' | contextSurroundingFunctionParameters |  |
-| autogenerated/TaintedPath/normalizedPaths.js:302:9:302:32 | '/pseud ... ations' | enclosingFunctionBody |  |
-| autogenerated/TaintedPath/normalizedPaths.js:302:9:302:32 | '/pseud ... ations' | enclosingFunctionName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:302:9:302:32 | '/pseud ... ations' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:302:9:302:32 | '/pseud ... ations' | receiverName | app |
-| autogenerated/TaintedPath/normalizedPaths.js:302:9:302:32 | '/pseud ... ations' | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:302:35:336:1 | (req, r ... \\n\\n\\t}\\n\\n} | CalleeFlexibleAccessPath | app.get |
-| autogenerated/TaintedPath/normalizedPaths.js:302:35:336:1 | (req, r ... \\n\\n\\t}\\n\\n} | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:302:35:336:1 | (req, r ... \\n\\n\\t}\\n\\n} | InputArgumentIndex | 1 |
-| autogenerated/TaintedPath/normalizedPaths.js:302:35:336:1 | (req, r ... \\n\\n\\t}\\n\\n} | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:302:35:336:1 | (req, r ... \\n\\n\\t}\\n\\n} | calleeImports | express |
-| autogenerated/TaintedPath/normalizedPaths.js:302:35:336:1 | (req, r ... \\n\\n\\t}\\n\\n} | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:302:35:336:1 | (req, r ... \\n\\n\\t}\\n\\n} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:302:35:336:1 | (req, r ... \\n\\n\\t}\\n\\n} | enclosingFunctionBody |  |
-| autogenerated/TaintedPath/normalizedPaths.js:302:35:336:1 | (req, r ... \\n\\n\\t}\\n\\n} | enclosingFunctionName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:302:35:336:1 | (req, r ... \\n\\n\\t}\\n\\n} | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:302:35:336:1 | (req, r ... \\n\\n\\t}\\n\\n} | receiverName | app |
-| autogenerated/TaintedPath/normalizedPaths.js:302:35:336:1 | (req, r ... \\n\\n\\t}\\n\\n} | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:304:18:304:21 | path | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/normalizedPaths.js:304:18:304:21 | path | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:304:18:304:21 | path | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/normalizedPaths.js:304:18:304:21 | path | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:304:18:304:21 | path | calleeImports | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:304:18:304:21 | path | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:304:18:304:21 | path | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:304:18:304:21 | path | enclosingFunctionBody | req res path req query path fs readFileSync path isPathInside path SAFE fs readFileSync path fs readFileSync path pathIsInside path SAFE fs readFileSync path fs readFileSync path normalizedPath pathModule join SAFE path pathIsInside normalizedPath SAFE fs readFileSync normalizedPath fs readFileSync normalizedPath pathIsInside normalizedPath SAFE fs readFileSync normalizedPath fs readFileSync normalizedPath |
-| autogenerated/TaintedPath/normalizedPaths.js:304:18:304:21 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:304:18:304:21 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:304:18:304:21 | path | receiverName | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:304:18:304:21 | path | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:306:19:306:22 | path | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/normalizedPaths.js:306:19:306:22 | path | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:306:19:306:22 | path | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/normalizedPaths.js:306:19:306:22 | path | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:306:19:306:22 | path | calleeImports | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:306:19:306:22 | path | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:306:19:306:22 | path | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:306:19:306:22 | path | enclosingFunctionBody | req res path req query path fs readFileSync path isPathInside path SAFE fs readFileSync path fs readFileSync path pathIsInside path SAFE fs readFileSync path fs readFileSync path normalizedPath pathModule join SAFE path pathIsInside normalizedPath SAFE fs readFileSync normalizedPath fs readFileSync normalizedPath pathIsInside normalizedPath SAFE fs readFileSync normalizedPath fs readFileSync normalizedPath |
-| autogenerated/TaintedPath/normalizedPaths.js:306:19:306:22 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:306:19:306:22 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:306:19:306:22 | path | receiverName | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:306:19:306:22 | path | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:309:19:309:22 | path | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/normalizedPaths.js:309:19:309:22 | path | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:309:19:309:22 | path | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/normalizedPaths.js:309:19:309:22 | path | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:309:19:309:22 | path | calleeImports | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:309:19:309:22 | path | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:309:19:309:22 | path | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:309:19:309:22 | path | enclosingFunctionBody | req res path req query path fs readFileSync path isPathInside path SAFE fs readFileSync path fs readFileSync path pathIsInside path SAFE fs readFileSync path fs readFileSync path normalizedPath pathModule join SAFE path pathIsInside normalizedPath SAFE fs readFileSync normalizedPath fs readFileSync normalizedPath pathIsInside normalizedPath SAFE fs readFileSync normalizedPath fs readFileSync normalizedPath |
-| autogenerated/TaintedPath/normalizedPaths.js:309:19:309:22 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:309:19:309:22 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:309:19:309:22 | path | receiverName | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:309:19:309:22 | path | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:312:19:312:22 | path | CalleeFlexibleAccessPath | pathIsInside |
-| autogenerated/TaintedPath/normalizedPaths.js:312:19:312:22 | path | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:312:19:312:22 | path | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/normalizedPaths.js:312:19:312:22 | path | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:312:19:312:22 | path | calleeImports | path-is-inside |
-| autogenerated/TaintedPath/normalizedPaths.js:312:19:312:22 | path | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:312:19:312:22 | path | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:312:19:312:22 | path | enclosingFunctionBody | req res path req query path fs readFileSync path isPathInside path SAFE fs readFileSync path fs readFileSync path pathIsInside path SAFE fs readFileSync path fs readFileSync path normalizedPath pathModule join SAFE path pathIsInside normalizedPath SAFE fs readFileSync normalizedPath fs readFileSync normalizedPath pathIsInside normalizedPath SAFE fs readFileSync normalizedPath fs readFileSync normalizedPath |
-| autogenerated/TaintedPath/normalizedPaths.js:312:19:312:22 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:312:19:312:22 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:312:19:312:22 | path | receiverName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:312:19:312:22 | path | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:312:25:312:28 | SAFE | CalleeFlexibleAccessPath | pathIsInside |
-| autogenerated/TaintedPath/normalizedPaths.js:312:25:312:28 | SAFE | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:312:25:312:28 | SAFE | InputArgumentIndex | 1 |
-| autogenerated/TaintedPath/normalizedPaths.js:312:25:312:28 | SAFE | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:312:25:312:28 | SAFE | calleeImports | path-is-inside |
-| autogenerated/TaintedPath/normalizedPaths.js:312:25:312:28 | SAFE | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:312:25:312:28 | SAFE | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:312:25:312:28 | SAFE | enclosingFunctionBody | req res path req query path fs readFileSync path isPathInside path SAFE fs readFileSync path fs readFileSync path pathIsInside path SAFE fs readFileSync path fs readFileSync path normalizedPath pathModule join SAFE path pathIsInside normalizedPath SAFE fs readFileSync normalizedPath fs readFileSync normalizedPath pathIsInside normalizedPath SAFE fs readFileSync normalizedPath fs readFileSync normalizedPath |
-| autogenerated/TaintedPath/normalizedPaths.js:312:25:312:28 | SAFE | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:312:25:312:28 | SAFE | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:312:25:312:28 | SAFE | receiverName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:312:25:312:28 | SAFE | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:313:19:313:22 | path | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/normalizedPaths.js:313:19:313:22 | path | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:313:19:313:22 | path | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/normalizedPaths.js:313:19:313:22 | path | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:313:19:313:22 | path | calleeImports | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:313:19:313:22 | path | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:313:19:313:22 | path | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:313:19:313:22 | path | enclosingFunctionBody | req res path req query path fs readFileSync path isPathInside path SAFE fs readFileSync path fs readFileSync path pathIsInside path SAFE fs readFileSync path fs readFileSync path normalizedPath pathModule join SAFE path pathIsInside normalizedPath SAFE fs readFileSync normalizedPath fs readFileSync normalizedPath pathIsInside normalizedPath SAFE fs readFileSync normalizedPath fs readFileSync normalizedPath |
-| autogenerated/TaintedPath/normalizedPaths.js:313:19:313:22 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:313:19:313:22 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:313:19:313:22 | path | receiverName | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:313:19:313:22 | path | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:316:19:316:22 | path | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/normalizedPaths.js:316:19:316:22 | path | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:316:19:316:22 | path | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/normalizedPaths.js:316:19:316:22 | path | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:316:19:316:22 | path | calleeImports | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:316:19:316:22 | path | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:316:19:316:22 | path | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:316:19:316:22 | path | enclosingFunctionBody | req res path req query path fs readFileSync path isPathInside path SAFE fs readFileSync path fs readFileSync path pathIsInside path SAFE fs readFileSync path fs readFileSync path normalizedPath pathModule join SAFE path pathIsInside normalizedPath SAFE fs readFileSync normalizedPath fs readFileSync normalizedPath pathIsInside normalizedPath SAFE fs readFileSync normalizedPath fs readFileSync normalizedPath |
-| autogenerated/TaintedPath/normalizedPaths.js:316:19:316:22 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:316:19:316:22 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:316:19:316:22 | path | receiverName | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:316:19:316:22 | path | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:321:19:321:32 | normalizedPath | CalleeFlexibleAccessPath | pathIsInside |
-| autogenerated/TaintedPath/normalizedPaths.js:321:19:321:32 | normalizedPath | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:321:19:321:32 | normalizedPath | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/normalizedPaths.js:321:19:321:32 | normalizedPath | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:321:19:321:32 | normalizedPath | calleeImports | path-is-inside |
-| autogenerated/TaintedPath/normalizedPaths.js:321:19:321:32 | normalizedPath | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:321:19:321:32 | normalizedPath | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:321:19:321:32 | normalizedPath | enclosingFunctionBody | req res path req query path fs readFileSync path isPathInside path SAFE fs readFileSync path fs readFileSync path pathIsInside path SAFE fs readFileSync path fs readFileSync path normalizedPath pathModule join SAFE path pathIsInside normalizedPath SAFE fs readFileSync normalizedPath fs readFileSync normalizedPath pathIsInside normalizedPath SAFE fs readFileSync normalizedPath fs readFileSync normalizedPath |
-| autogenerated/TaintedPath/normalizedPaths.js:321:19:321:32 | normalizedPath | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:321:19:321:32 | normalizedPath | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:321:19:321:32 | normalizedPath | receiverName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:321:19:321:32 | normalizedPath | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:321:35:321:38 | SAFE | CalleeFlexibleAccessPath | pathIsInside |
-| autogenerated/TaintedPath/normalizedPaths.js:321:35:321:38 | SAFE | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:321:35:321:38 | SAFE | InputArgumentIndex | 1 |
-| autogenerated/TaintedPath/normalizedPaths.js:321:35:321:38 | SAFE | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:321:35:321:38 | SAFE | calleeImports | path-is-inside |
-| autogenerated/TaintedPath/normalizedPaths.js:321:35:321:38 | SAFE | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:321:35:321:38 | SAFE | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:321:35:321:38 | SAFE | enclosingFunctionBody | req res path req query path fs readFileSync path isPathInside path SAFE fs readFileSync path fs readFileSync path pathIsInside path SAFE fs readFileSync path fs readFileSync path normalizedPath pathModule join SAFE path pathIsInside normalizedPath SAFE fs readFileSync normalizedPath fs readFileSync normalizedPath pathIsInside normalizedPath SAFE fs readFileSync normalizedPath fs readFileSync normalizedPath |
-| autogenerated/TaintedPath/normalizedPaths.js:321:35:321:38 | SAFE | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:321:35:321:38 | SAFE | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:321:35:321:38 | SAFE | receiverName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:321:35:321:38 | SAFE | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:322:19:322:32 | normalizedPath | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/normalizedPaths.js:322:19:322:32 | normalizedPath | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:322:19:322:32 | normalizedPath | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/normalizedPaths.js:322:19:322:32 | normalizedPath | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:322:19:322:32 | normalizedPath | calleeImports | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:322:19:322:32 | normalizedPath | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:322:19:322:32 | normalizedPath | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:322:19:322:32 | normalizedPath | enclosingFunctionBody | req res path req query path fs readFileSync path isPathInside path SAFE fs readFileSync path fs readFileSync path pathIsInside path SAFE fs readFileSync path fs readFileSync path normalizedPath pathModule join SAFE path pathIsInside normalizedPath SAFE fs readFileSync normalizedPath fs readFileSync normalizedPath pathIsInside normalizedPath SAFE fs readFileSync normalizedPath fs readFileSync normalizedPath |
-| autogenerated/TaintedPath/normalizedPaths.js:322:19:322:32 | normalizedPath | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:322:19:322:32 | normalizedPath | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:322:19:322:32 | normalizedPath | receiverName | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:322:19:322:32 | normalizedPath | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:325:19:325:32 | normalizedPath | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/normalizedPaths.js:325:19:325:32 | normalizedPath | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:325:19:325:32 | normalizedPath | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/normalizedPaths.js:325:19:325:32 | normalizedPath | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:325:19:325:32 | normalizedPath | calleeImports | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:325:19:325:32 | normalizedPath | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:325:19:325:32 | normalizedPath | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:325:19:325:32 | normalizedPath | enclosingFunctionBody | req res path req query path fs readFileSync path isPathInside path SAFE fs readFileSync path fs readFileSync path pathIsInside path SAFE fs readFileSync path fs readFileSync path normalizedPath pathModule join SAFE path pathIsInside normalizedPath SAFE fs readFileSync normalizedPath fs readFileSync normalizedPath pathIsInside normalizedPath SAFE fs readFileSync normalizedPath fs readFileSync normalizedPath |
-| autogenerated/TaintedPath/normalizedPaths.js:325:19:325:32 | normalizedPath | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:325:19:325:32 | normalizedPath | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:325:19:325:32 | normalizedPath | receiverName | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:325:19:325:32 | normalizedPath | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:328:19:328:32 | normalizedPath | CalleeFlexibleAccessPath | pathIsInside |
-| autogenerated/TaintedPath/normalizedPaths.js:328:19:328:32 | normalizedPath | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:328:19:328:32 | normalizedPath | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/normalizedPaths.js:328:19:328:32 | normalizedPath | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:328:19:328:32 | normalizedPath | calleeImports | path-is-inside |
-| autogenerated/TaintedPath/normalizedPaths.js:328:19:328:32 | normalizedPath | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:328:19:328:32 | normalizedPath | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:328:19:328:32 | normalizedPath | enclosingFunctionBody | req res path req query path fs readFileSync path isPathInside path SAFE fs readFileSync path fs readFileSync path pathIsInside path SAFE fs readFileSync path fs readFileSync path normalizedPath pathModule join SAFE path pathIsInside normalizedPath SAFE fs readFileSync normalizedPath fs readFileSync normalizedPath pathIsInside normalizedPath SAFE fs readFileSync normalizedPath fs readFileSync normalizedPath |
-| autogenerated/TaintedPath/normalizedPaths.js:328:19:328:32 | normalizedPath | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:328:19:328:32 | normalizedPath | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:328:19:328:32 | normalizedPath | receiverName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:328:19:328:32 | normalizedPath | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:328:35:328:38 | SAFE | CalleeFlexibleAccessPath | pathIsInside |
-| autogenerated/TaintedPath/normalizedPaths.js:328:35:328:38 | SAFE | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:328:35:328:38 | SAFE | InputArgumentIndex | 1 |
-| autogenerated/TaintedPath/normalizedPaths.js:328:35:328:38 | SAFE | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:328:35:328:38 | SAFE | calleeImports | path-is-inside |
-| autogenerated/TaintedPath/normalizedPaths.js:328:35:328:38 | SAFE | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:328:35:328:38 | SAFE | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:328:35:328:38 | SAFE | enclosingFunctionBody | req res path req query path fs readFileSync path isPathInside path SAFE fs readFileSync path fs readFileSync path pathIsInside path SAFE fs readFileSync path fs readFileSync path normalizedPath pathModule join SAFE path pathIsInside normalizedPath SAFE fs readFileSync normalizedPath fs readFileSync normalizedPath pathIsInside normalizedPath SAFE fs readFileSync normalizedPath fs readFileSync normalizedPath |
-| autogenerated/TaintedPath/normalizedPaths.js:328:35:328:38 | SAFE | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:328:35:328:38 | SAFE | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:328:35:328:38 | SAFE | receiverName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:328:35:328:38 | SAFE | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:329:19:329:32 | normalizedPath | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/normalizedPaths.js:329:19:329:32 | normalizedPath | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:329:19:329:32 | normalizedPath | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/normalizedPaths.js:329:19:329:32 | normalizedPath | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:329:19:329:32 | normalizedPath | calleeImports | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:329:19:329:32 | normalizedPath | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:329:19:329:32 | normalizedPath | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:329:19:329:32 | normalizedPath | enclosingFunctionBody | req res path req query path fs readFileSync path isPathInside path SAFE fs readFileSync path fs readFileSync path pathIsInside path SAFE fs readFileSync path fs readFileSync path normalizedPath pathModule join SAFE path pathIsInside normalizedPath SAFE fs readFileSync normalizedPath fs readFileSync normalizedPath pathIsInside normalizedPath SAFE fs readFileSync normalizedPath fs readFileSync normalizedPath |
-| autogenerated/TaintedPath/normalizedPaths.js:329:19:329:32 | normalizedPath | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:329:19:329:32 | normalizedPath | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:329:19:329:32 | normalizedPath | receiverName | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:329:19:329:32 | normalizedPath | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:332:19:332:32 | normalizedPath | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/normalizedPaths.js:332:19:332:32 | normalizedPath | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:332:19:332:32 | normalizedPath | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/normalizedPaths.js:332:19:332:32 | normalizedPath | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:332:19:332:32 | normalizedPath | calleeImports | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:332:19:332:32 | normalizedPath | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:332:19:332:32 | normalizedPath | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:332:19:332:32 | normalizedPath | enclosingFunctionBody | req res path req query path fs readFileSync path isPathInside path SAFE fs readFileSync path fs readFileSync path pathIsInside path SAFE fs readFileSync path fs readFileSync path normalizedPath pathModule join SAFE path pathIsInside normalizedPath SAFE fs readFileSync normalizedPath fs readFileSync normalizedPath pathIsInside normalizedPath SAFE fs readFileSync normalizedPath fs readFileSync normalizedPath |
-| autogenerated/TaintedPath/normalizedPaths.js:332:19:332:32 | normalizedPath | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:332:19:332:32 | normalizedPath | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:332:19:332:32 | normalizedPath | receiverName | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:332:19:332:32 | normalizedPath | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:338:9:338:29 | '/yet-a ... prefix' | CalleeFlexibleAccessPath | app.get |
-| autogenerated/TaintedPath/normalizedPaths.js:338:9:338:29 | '/yet-a ... prefix' | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:338:9:338:29 | '/yet-a ... prefix' | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/normalizedPaths.js:338:9:338:29 | '/yet-a ... prefix' | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:338:9:338:29 | '/yet-a ... prefix' | calleeImports | express |
-| autogenerated/TaintedPath/normalizedPaths.js:338:9:338:29 | '/yet-a ... prefix' | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:338:9:338:29 | '/yet-a ... prefix' | contextSurroundingFunctionParameters |  |
-| autogenerated/TaintedPath/normalizedPaths.js:338:9:338:29 | '/yet-a ... prefix' | enclosingFunctionBody |  |
-| autogenerated/TaintedPath/normalizedPaths.js:338:9:338:29 | '/yet-a ... prefix' | enclosingFunctionName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:338:9:338:29 | '/yet-a ... prefix' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:338:9:338:29 | '/yet-a ... prefix' | receiverName | app |
-| autogenerated/TaintedPath/normalizedPaths.js:338:9:338:29 | '/yet-a ... prefix' | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:338:32:350:1 | (req, r ... // OK\\n} | CalleeFlexibleAccessPath | app.get |
-| autogenerated/TaintedPath/normalizedPaths.js:338:32:350:1 | (req, r ... // OK\\n} | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:338:32:350:1 | (req, r ... // OK\\n} | InputArgumentIndex | 1 |
-| autogenerated/TaintedPath/normalizedPaths.js:338:32:350:1 | (req, r ... // OK\\n} | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:338:32:350:1 | (req, r ... // OK\\n} | calleeImports | express |
-| autogenerated/TaintedPath/normalizedPaths.js:338:32:350:1 | (req, r ... // OK\\n} | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:338:32:350:1 | (req, r ... // OK\\n} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:338:32:350:1 | (req, r ... // OK\\n} | enclosingFunctionBody |  |
-| autogenerated/TaintedPath/normalizedPaths.js:338:32:350:1 | (req, r ... // OK\\n} | enclosingFunctionName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:338:32:350:1 | (req, r ... // OK\\n} | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:338:32:350:1 | (req, r ... // OK\\n} | receiverName | app |
-| autogenerated/TaintedPath/normalizedPaths.js:338:32:350:1 | (req, r ... // OK\\n} | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:339:13:339:46 | pathMod ... y.path) | CalleeFlexibleAccessPath |  |
-| autogenerated/TaintedPath/normalizedPaths.js:339:13:339:46 | pathMod ... y.path) | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:339:13:339:46 | pathMod ... y.path) | InputArgumentIndex |  |
-| autogenerated/TaintedPath/normalizedPaths.js:339:13:339:46 | pathMod ... y.path) | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:339:13:339:46 | pathMod ... y.path) | calleeImports |  |
-| autogenerated/TaintedPath/normalizedPaths.js:339:13:339:46 | pathMod ... y.path) | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:339:13:339:46 | pathMod ... y.path) | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:339:13:339:46 | pathMod ... y.path) | enclosingFunctionBody | req res path pathModule resolve req query path fs readFileSync path abs pathModule resolve path abs indexOf root 0 fs readFileSync path fs readFileSync path |
-| autogenerated/TaintedPath/normalizedPaths.js:339:13:339:46 | pathMod ... y.path) | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:339:13:339:46 | pathMod ... y.path) | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:339:13:339:46 | pathMod ... y.path) | receiverName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:339:13:339:46 | pathMod ... y.path) | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:341:18:341:21 | path | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/normalizedPaths.js:341:18:341:21 | path | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:341:18:341:21 | path | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/normalizedPaths.js:341:18:341:21 | path | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:341:18:341:21 | path | calleeImports | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:341:18:341:21 | path | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:341:18:341:21 | path | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:341:18:341:21 | path | enclosingFunctionBody | req res path pathModule resolve req query path fs readFileSync path abs pathModule resolve path abs indexOf root 0 fs readFileSync path fs readFileSync path |
-| autogenerated/TaintedPath/normalizedPaths.js:341:18:341:21 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:341:18:341:21 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:341:18:341:21 | path | receiverName | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:341:18:341:21 | path | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:345:18:345:21 | root | CalleeFlexibleAccessPath | abs.indexOf |
-| autogenerated/TaintedPath/normalizedPaths.js:345:18:345:21 | root | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:345:18:345:21 | root | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/normalizedPaths.js:345:18:345:21 | root | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:345:18:345:21 | root | calleeImports | path |
-| autogenerated/TaintedPath/normalizedPaths.js:345:18:345:21 | root | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:345:18:345:21 | root | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:345:18:345:21 | root | enclosingFunctionBody | req res path pathModule resolve req query path fs readFileSync path abs pathModule resolve path abs indexOf root 0 fs readFileSync path fs readFileSync path |
-| autogenerated/TaintedPath/normalizedPaths.js:345:18:345:21 | root | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:345:18:345:21 | root | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:345:18:345:21 | root | receiverName | abs |
-| autogenerated/TaintedPath/normalizedPaths.js:345:18:345:21 | root | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:346:19:346:22 | path | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/normalizedPaths.js:346:19:346:22 | path | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:346:19:346:22 | path | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/normalizedPaths.js:346:19:346:22 | path | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:346:19:346:22 | path | calleeImports | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:346:19:346:22 | path | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:346:19:346:22 | path | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:346:19:346:22 | path | enclosingFunctionBody | req res path pathModule resolve req query path fs readFileSync path abs pathModule resolve path abs indexOf root 0 fs readFileSync path fs readFileSync path |
-| autogenerated/TaintedPath/normalizedPaths.js:346:19:346:22 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:346:19:346:22 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:346:19:346:22 | path | receiverName | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:346:19:346:22 | path | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:349:18:349:21 | path | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/normalizedPaths.js:349:18:349:21 | path | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:349:18:349:21 | path | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/normalizedPaths.js:349:18:349:21 | path | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:349:18:349:21 | path | calleeImports | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:349:18:349:21 | path | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:349:18:349:21 | path | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:349:18:349:21 | path | enclosingFunctionBody | req res path pathModule resolve req query path fs readFileSync path abs pathModule resolve path abs indexOf root 0 fs readFileSync path fs readFileSync path |
-| autogenerated/TaintedPath/normalizedPaths.js:349:18:349:21 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:349:18:349:21 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:349:18:349:21 | path | receiverName | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:349:18:349:21 | path | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:353:9:353:30 | '/yet-a ... refix2' | CalleeFlexibleAccessPath | app.get |
-| autogenerated/TaintedPath/normalizedPaths.js:353:9:353:30 | '/yet-a ... refix2' | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:353:9:353:30 | '/yet-a ... refix2' | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/normalizedPaths.js:353:9:353:30 | '/yet-a ... refix2' | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:353:9:353:30 | '/yet-a ... refix2' | calleeImports | express |
-| autogenerated/TaintedPath/normalizedPaths.js:353:9:353:30 | '/yet-a ... refix2' | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:353:9:353:30 | '/yet-a ... refix2' | contextSurroundingFunctionParameters |  |
-| autogenerated/TaintedPath/normalizedPaths.js:353:9:353:30 | '/yet-a ... refix2' | enclosingFunctionBody |  |
-| autogenerated/TaintedPath/normalizedPaths.js:353:9:353:30 | '/yet-a ... refix2' | enclosingFunctionName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:353:9:353:30 | '/yet-a ... refix2' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:353:9:353:30 | '/yet-a ... refix2' | receiverName | app |
-| autogenerated/TaintedPath/normalizedPaths.js:353:9:353:30 | '/yet-a ... refix2' | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:353:33:373:1 | (req, r ... ;\\n  }\\n} | CalleeFlexibleAccessPath | app.get |
-| autogenerated/TaintedPath/normalizedPaths.js:353:33:373:1 | (req, r ... ;\\n  }\\n} | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:353:33:373:1 | (req, r ... ;\\n  }\\n} | InputArgumentIndex | 1 |
-| autogenerated/TaintedPath/normalizedPaths.js:353:33:373:1 | (req, r ... ;\\n  }\\n} | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:353:33:373:1 | (req, r ... ;\\n  }\\n} | calleeImports | express |
-| autogenerated/TaintedPath/normalizedPaths.js:353:33:373:1 | (req, r ... ;\\n  }\\n} | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:353:33:373:1 | (req, r ... ;\\n  }\\n} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:353:33:373:1 | (req, r ... ;\\n  }\\n} | enclosingFunctionBody |  |
-| autogenerated/TaintedPath/normalizedPaths.js:353:33:373:1 | (req, r ... ;\\n  }\\n} | enclosingFunctionName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:353:33:373:1 | (req, r ... ;\\n  }\\n} | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:353:33:373:1 | (req, r ... ;\\n  }\\n} | receiverName | app |
-| autogenerated/TaintedPath/normalizedPaths.js:353:33:373:1 | (req, r ... ;\\n  }\\n} | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:356:19:356:22 | path | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/normalizedPaths.js:356:19:356:22 | path | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:356:19:356:22 | path | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/normalizedPaths.js:356:19:356:22 | path | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:356:19:356:22 | path | calleeImports | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:356:19:356:22 | path | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:356:19:356:22 | path | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:356:19:356:22 | path | enclosingFunctionBody | req res path req query path fs readFileSync path requestPath pathModule join rootPath path targetPath allowPath requestPath rootPath targetPath rootPath fs readFileSync requestPath targetPath requestPath fs readFileSync requestPath fs readFileSync targetPath allowPath requestPath rootPath requestPath indexOf rootPath 0 |
-| autogenerated/TaintedPath/normalizedPaths.js:356:19:356:22 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:356:19:356:22 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:356:19:356:22 | path | receiverName | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:356:19:356:22 | path | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:361:18:361:28 | requestPath | CalleeFlexibleAccessPath | allowPath |
-| autogenerated/TaintedPath/normalizedPaths.js:361:18:361:28 | requestPath | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:361:18:361:28 | requestPath | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/normalizedPaths.js:361:18:361:28 | requestPath | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:361:18:361:28 | requestPath | calleeImports |  |
-| autogenerated/TaintedPath/normalizedPaths.js:361:18:361:28 | requestPath | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:361:18:361:28 | requestPath | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:361:18:361:28 | requestPath | enclosingFunctionBody | req res path req query path fs readFileSync path requestPath pathModule join rootPath path targetPath allowPath requestPath rootPath targetPath rootPath fs readFileSync requestPath targetPath requestPath fs readFileSync requestPath fs readFileSync targetPath allowPath requestPath rootPath requestPath indexOf rootPath 0 |
-| autogenerated/TaintedPath/normalizedPaths.js:361:18:361:28 | requestPath | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:361:18:361:28 | requestPath | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:361:18:361:28 | requestPath | receiverName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:361:18:361:28 | requestPath | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:361:31:361:38 | rootPath | CalleeFlexibleAccessPath | allowPath |
-| autogenerated/TaintedPath/normalizedPaths.js:361:31:361:38 | rootPath | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:361:31:361:38 | rootPath | InputArgumentIndex | 1 |
-| autogenerated/TaintedPath/normalizedPaths.js:361:31:361:38 | rootPath | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:361:31:361:38 | rootPath | calleeImports |  |
-| autogenerated/TaintedPath/normalizedPaths.js:361:31:361:38 | rootPath | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:361:31:361:38 | rootPath | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:361:31:361:38 | rootPath | enclosingFunctionBody | req res path req query path fs readFileSync path requestPath pathModule join rootPath path targetPath allowPath requestPath rootPath targetPath rootPath fs readFileSync requestPath targetPath requestPath fs readFileSync requestPath fs readFileSync targetPath allowPath requestPath rootPath requestPath indexOf rootPath 0 |
-| autogenerated/TaintedPath/normalizedPaths.js:361:31:361:38 | rootPath | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:361:31:361:38 | rootPath | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:361:31:361:38 | rootPath | receiverName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:361:31:361:38 | rootPath | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:363:21:363:31 | requestPath | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/normalizedPaths.js:363:21:363:31 | requestPath | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:363:21:363:31 | requestPath | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/normalizedPaths.js:363:21:363:31 | requestPath | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:363:21:363:31 | requestPath | calleeImports | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:363:21:363:31 | requestPath | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:363:21:363:31 | requestPath | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:363:21:363:31 | requestPath | enclosingFunctionBody | req res path req query path fs readFileSync path requestPath pathModule join rootPath path targetPath allowPath requestPath rootPath targetPath rootPath fs readFileSync requestPath targetPath requestPath fs readFileSync requestPath fs readFileSync targetPath allowPath requestPath rootPath requestPath indexOf rootPath 0 |
-| autogenerated/TaintedPath/normalizedPaths.js:363:21:363:31 | requestPath | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:363:21:363:31 | requestPath | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:363:21:363:31 | requestPath | receiverName | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:363:21:363:31 | requestPath | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:366:21:366:31 | requestPath | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/normalizedPaths.js:366:21:366:31 | requestPath | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:366:21:366:31 | requestPath | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/normalizedPaths.js:366:21:366:31 | requestPath | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:366:21:366:31 | requestPath | calleeImports | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:366:21:366:31 | requestPath | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:366:21:366:31 | requestPath | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:366:21:366:31 | requestPath | enclosingFunctionBody | req res path req query path fs readFileSync path requestPath pathModule join rootPath path targetPath allowPath requestPath rootPath targetPath rootPath fs readFileSync requestPath targetPath requestPath fs readFileSync requestPath fs readFileSync targetPath allowPath requestPath rootPath requestPath indexOf rootPath 0 |
-| autogenerated/TaintedPath/normalizedPaths.js:366:21:366:31 | requestPath | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:366:21:366:31 | requestPath | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:366:21:366:31 | requestPath | receiverName | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:366:21:366:31 | requestPath | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:368:19:368:28 | targetPath | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/normalizedPaths.js:368:19:368:28 | targetPath | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:368:19:368:28 | targetPath | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/normalizedPaths.js:368:19:368:28 | targetPath | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:368:19:368:28 | targetPath | calleeImports | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:368:19:368:28 | targetPath | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:368:19:368:28 | targetPath | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:368:19:368:28 | targetPath | enclosingFunctionBody | req res path req query path fs readFileSync path requestPath pathModule join rootPath path targetPath allowPath requestPath rootPath targetPath rootPath fs readFileSync requestPath targetPath requestPath fs readFileSync requestPath fs readFileSync targetPath allowPath requestPath rootPath requestPath indexOf rootPath 0 |
-| autogenerated/TaintedPath/normalizedPaths.js:368:19:368:28 | targetPath | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:368:19:368:28 | targetPath | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:368:19:368:28 | targetPath | receiverName | fs |
-| autogenerated/TaintedPath/normalizedPaths.js:368:19:368:28 | targetPath | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/normalizedPaths.js:371:32:371:39 | rootPath | CalleeFlexibleAccessPath | requestPath.indexOf |
-| autogenerated/TaintedPath/normalizedPaths.js:371:32:371:39 | rootPath | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/normalizedPaths.js:371:32:371:39 | rootPath | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/normalizedPaths.js:371:32:371:39 | rootPath | assignedToPropName |  |
-| autogenerated/TaintedPath/normalizedPaths.js:371:32:371:39 | rootPath | calleeImports |  |
-| autogenerated/TaintedPath/normalizedPaths.js:371:32:371:39 | rootPath | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:371:32:371:39 | rootPath | contextSurroundingFunctionParameters | (requestPath, rootPath) |
-| autogenerated/TaintedPath/normalizedPaths.js:371:32:371:39 | rootPath | enclosingFunctionBody | req res path req query path fs readFileSync path requestPath pathModule join rootPath path targetPath allowPath requestPath rootPath targetPath rootPath fs readFileSync requestPath targetPath requestPath fs readFileSync requestPath fs readFileSync targetPath allowPath requestPath rootPath requestPath indexOf rootPath 0 |
-| autogenerated/TaintedPath/normalizedPaths.js:371:32:371:39 | rootPath | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:371:32:371:39 | rootPath | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
-| autogenerated/TaintedPath/normalizedPaths.js:371:32:371:39 | rootPath | receiverName | requestPath |
-| autogenerated/TaintedPath/normalizedPaths.js:371:32:371:39 | rootPath | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:1:20:1:25 | "http" | CalleeFlexibleAccessPath | require |
-| autogenerated/TaintedPath/other-fs-libraries.js:1:20:1:25 | "http" | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:1:20:1:25 | "http" | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/other-fs-libraries.js:1:20:1:25 | "http" | assignedToPropName |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:1:20:1:25 | "http" | calleeImports |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:1:20:1:25 | "http" | contextFunctionInterfaces | getFsModule(special) |
-| autogenerated/TaintedPath/other-fs-libraries.js:1:20:1:25 | "http" | contextSurroundingFunctionParameters |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:1:20:1:25 | "http" | enclosingFunctionBody |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:1:20:1:25 | "http" | enclosingFunctionName |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:1:20:1:25 | "http" | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http original-fs url util |
-| autogenerated/TaintedPath/other-fs-libraries.js:1:20:1:25 | "http" | receiverName |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:1:20:1:25 | "http" | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:2:17:2:21 | "url" | CalleeFlexibleAccessPath | require |
-| autogenerated/TaintedPath/other-fs-libraries.js:2:17:2:21 | "url" | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:2:17:2:21 | "url" | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/other-fs-libraries.js:2:17:2:21 | "url" | assignedToPropName |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:2:17:2:21 | "url" | calleeImports |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:2:17:2:21 | "url" | contextFunctionInterfaces | getFsModule(special) |
-| autogenerated/TaintedPath/other-fs-libraries.js:2:17:2:21 | "url" | contextSurroundingFunctionParameters |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:2:17:2:21 | "url" | enclosingFunctionBody |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:2:17:2:21 | "url" | enclosingFunctionName |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:2:17:2:21 | "url" | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http original-fs url util |
-| autogenerated/TaintedPath/other-fs-libraries.js:2:17:2:21 | "url" | receiverName |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:2:17:2:21 | "url" | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:3:16:3:19 | "fs" | CalleeFlexibleAccessPath | require |
-| autogenerated/TaintedPath/other-fs-libraries.js:3:16:3:19 | "fs" | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:3:16:3:19 | "fs" | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/other-fs-libraries.js:3:16:3:19 | "fs" | assignedToPropName |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:3:16:3:19 | "fs" | calleeImports |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:3:16:3:19 | "fs" | contextFunctionInterfaces | getFsModule(special) |
-| autogenerated/TaintedPath/other-fs-libraries.js:3:16:3:19 | "fs" | contextSurroundingFunctionParameters |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:3:16:3:19 | "fs" | enclosingFunctionBody |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:3:16:3:19 | "fs" | enclosingFunctionName |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:3:16:3:19 | "fs" | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http original-fs url util |
-| autogenerated/TaintedPath/other-fs-libraries.js:3:16:3:19 | "fs" | receiverName |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:3:16:3:19 | "fs" | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:4:24:4:36 | "graceful-fs" | CalleeFlexibleAccessPath | require |
-| autogenerated/TaintedPath/other-fs-libraries.js:4:24:4:36 | "graceful-fs" | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:4:24:4:36 | "graceful-fs" | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/other-fs-libraries.js:4:24:4:36 | "graceful-fs" | assignedToPropName |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:4:24:4:36 | "graceful-fs" | calleeImports |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:4:24:4:36 | "graceful-fs" | contextFunctionInterfaces | getFsModule(special) |
-| autogenerated/TaintedPath/other-fs-libraries.js:4:24:4:36 | "graceful-fs" | contextSurroundingFunctionParameters |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:4:24:4:36 | "graceful-fs" | enclosingFunctionBody |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:4:24:4:36 | "graceful-fs" | enclosingFunctionName |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:4:24:4:36 | "graceful-fs" | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http original-fs url util |
-| autogenerated/TaintedPath/other-fs-libraries.js:4:24:4:36 | "graceful-fs" | receiverName |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:4:24:4:36 | "graceful-fs" | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:5:21:5:30 | "fs-extra" | CalleeFlexibleAccessPath | require |
-| autogenerated/TaintedPath/other-fs-libraries.js:5:21:5:30 | "fs-extra" | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:5:21:5:30 | "fs-extra" | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/other-fs-libraries.js:5:21:5:30 | "fs-extra" | assignedToPropName |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:5:21:5:30 | "fs-extra" | calleeImports |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:5:21:5:30 | "fs-extra" | contextFunctionInterfaces | getFsModule(special) |
-| autogenerated/TaintedPath/other-fs-libraries.js:5:21:5:30 | "fs-extra" | contextSurroundingFunctionParameters |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:5:21:5:30 | "fs-extra" | enclosingFunctionBody |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:5:21:5:30 | "fs-extra" | enclosingFunctionName |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:5:21:5:30 | "fs-extra" | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http original-fs url util |
-| autogenerated/TaintedPath/other-fs-libraries.js:5:21:5:30 | "fs-extra" | receiverName |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:5:21:5:30 | "fs-extra" | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:6:24:6:36 | "original-fs" | CalleeFlexibleAccessPath | require |
-| autogenerated/TaintedPath/other-fs-libraries.js:6:24:6:36 | "original-fs" | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:6:24:6:36 | "original-fs" | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/other-fs-libraries.js:6:24:6:36 | "original-fs" | assignedToPropName |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:6:24:6:36 | "original-fs" | calleeImports |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:6:24:6:36 | "original-fs" | contextFunctionInterfaces | getFsModule(special) |
-| autogenerated/TaintedPath/other-fs-libraries.js:6:24:6:36 | "original-fs" | contextSurroundingFunctionParameters |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:6:24:6:36 | "original-fs" | enclosingFunctionBody |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:6:24:6:36 | "original-fs" | enclosingFunctionName |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:6:24:6:36 | "original-fs" | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http original-fs url util |
-| autogenerated/TaintedPath/other-fs-libraries.js:6:24:6:36 | "original-fs" | receiverName |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:6:24:6:36 | "original-fs" | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:8:32:25:1 | functio ... OT OK\\n} | CalleeFlexibleAccessPath | http.createServer |
-| autogenerated/TaintedPath/other-fs-libraries.js:8:32:25:1 | functio ... OT OK\\n} | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:8:32:25:1 | functio ... OT OK\\n} | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/other-fs-libraries.js:8:32:25:1 | functio ... OT OK\\n} | assignedToPropName |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:8:32:25:1 | functio ... OT OK\\n} | calleeImports | http |
-| autogenerated/TaintedPath/other-fs-libraries.js:8:32:25:1 | functio ... OT OK\\n} | contextFunctionInterfaces | getFsModule(special) |
-| autogenerated/TaintedPath/other-fs-libraries.js:8:32:25:1 | functio ... OT OK\\n} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/other-fs-libraries.js:8:32:25:1 | functio ... OT OK\\n} | enclosingFunctionBody |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:8:32:25:1 | functio ... OT OK\\n} | enclosingFunctionName |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:8:32:25:1 | functio ... OT OK\\n} | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http original-fs url util |
-| autogenerated/TaintedPath/other-fs-libraries.js:8:32:25:1 | functio ... OT OK\\n} | receiverName | http |
-| autogenerated/TaintedPath/other-fs-libraries.js:8:32:25:1 | functio ... OT OK\\n} | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:11:19:11:22 | path | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/other-fs-libraries.js:11:19:11:22 | path | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:11:19:11:22 | path | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/other-fs-libraries.js:11:19:11:22 | path | assignedToPropName |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:11:19:11:22 | path | calleeImports | fs |
-| autogenerated/TaintedPath/other-fs-libraries.js:11:19:11:22 | path | contextFunctionInterfaces | getFsModule(special) |
-| autogenerated/TaintedPath/other-fs-libraries.js:11:19:11:22 | path | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/other-fs-libraries.js:11:19:11:22 | path | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path gracefulFs readFileSync path fsExtra readFileSync path originalFs readFileSync path getFsModule true readFileSync path getFsModule false readFileSync path require ./my-fs-module require true readFileSync path flexibleModuleName require process electron versions electron original-fs fs flexibleModuleName readFileSync path |
-| autogenerated/TaintedPath/other-fs-libraries.js:11:19:11:22 | path | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/other-fs-libraries.js:11:19:11:22 | path | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http original-fs url util |
-| autogenerated/TaintedPath/other-fs-libraries.js:11:19:11:22 | path | receiverName | fs |
-| autogenerated/TaintedPath/other-fs-libraries.js:11:19:11:22 | path | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:12:27:12:30 | path | CalleeFlexibleAccessPath | gracefulFs.readFileSync |
-| autogenerated/TaintedPath/other-fs-libraries.js:12:27:12:30 | path | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:12:27:12:30 | path | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/other-fs-libraries.js:12:27:12:30 | path | assignedToPropName |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:12:27:12:30 | path | calleeImports | graceful-fs |
-| autogenerated/TaintedPath/other-fs-libraries.js:12:27:12:30 | path | contextFunctionInterfaces | getFsModule(special) |
-| autogenerated/TaintedPath/other-fs-libraries.js:12:27:12:30 | path | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/other-fs-libraries.js:12:27:12:30 | path | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path gracefulFs readFileSync path fsExtra readFileSync path originalFs readFileSync path getFsModule true readFileSync path getFsModule false readFileSync path require ./my-fs-module require true readFileSync path flexibleModuleName require process electron versions electron original-fs fs flexibleModuleName readFileSync path |
-| autogenerated/TaintedPath/other-fs-libraries.js:12:27:12:30 | path | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/other-fs-libraries.js:12:27:12:30 | path | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http original-fs url util |
-| autogenerated/TaintedPath/other-fs-libraries.js:12:27:12:30 | path | receiverName | gracefulFs |
-| autogenerated/TaintedPath/other-fs-libraries.js:12:27:12:30 | path | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:13:24:13:27 | path | CalleeFlexibleAccessPath | fsExtra.readFileSync |
-| autogenerated/TaintedPath/other-fs-libraries.js:13:24:13:27 | path | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:13:24:13:27 | path | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/other-fs-libraries.js:13:24:13:27 | path | assignedToPropName |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:13:24:13:27 | path | calleeImports | fs-extra |
-| autogenerated/TaintedPath/other-fs-libraries.js:13:24:13:27 | path | contextFunctionInterfaces | getFsModule(special) |
-| autogenerated/TaintedPath/other-fs-libraries.js:13:24:13:27 | path | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/other-fs-libraries.js:13:24:13:27 | path | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path gracefulFs readFileSync path fsExtra readFileSync path originalFs readFileSync path getFsModule true readFileSync path getFsModule false readFileSync path require ./my-fs-module require true readFileSync path flexibleModuleName require process electron versions electron original-fs fs flexibleModuleName readFileSync path |
-| autogenerated/TaintedPath/other-fs-libraries.js:13:24:13:27 | path | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/other-fs-libraries.js:13:24:13:27 | path | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http original-fs url util |
-| autogenerated/TaintedPath/other-fs-libraries.js:13:24:13:27 | path | receiverName | fsExtra |
-| autogenerated/TaintedPath/other-fs-libraries.js:13:24:13:27 | path | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:14:27:14:30 | path | CalleeFlexibleAccessPath | originalFs.readFileSync |
-| autogenerated/TaintedPath/other-fs-libraries.js:14:27:14:30 | path | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:14:27:14:30 | path | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/other-fs-libraries.js:14:27:14:30 | path | assignedToPropName |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:14:27:14:30 | path | calleeImports | original-fs |
-| autogenerated/TaintedPath/other-fs-libraries.js:14:27:14:30 | path | contextFunctionInterfaces | getFsModule(special) |
-| autogenerated/TaintedPath/other-fs-libraries.js:14:27:14:30 | path | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/other-fs-libraries.js:14:27:14:30 | path | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path gracefulFs readFileSync path fsExtra readFileSync path originalFs readFileSync path getFsModule true readFileSync path getFsModule false readFileSync path require ./my-fs-module require true readFileSync path flexibleModuleName require process electron versions electron original-fs fs flexibleModuleName readFileSync path |
-| autogenerated/TaintedPath/other-fs-libraries.js:14:27:14:30 | path | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/other-fs-libraries.js:14:27:14:30 | path | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http original-fs url util |
-| autogenerated/TaintedPath/other-fs-libraries.js:14:27:14:30 | path | receiverName | originalFs |
-| autogenerated/TaintedPath/other-fs-libraries.js:14:27:14:30 | path | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:16:34:16:37 | path | CalleeFlexibleAccessPath | getFsModule().readFileSync |
-| autogenerated/TaintedPath/other-fs-libraries.js:16:34:16:37 | path | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:16:34:16:37 | path | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/other-fs-libraries.js:16:34:16:37 | path | assignedToPropName |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:16:34:16:37 | path | calleeImports |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:16:34:16:37 | path | contextFunctionInterfaces | getFsModule(special) |
-| autogenerated/TaintedPath/other-fs-libraries.js:16:34:16:37 | path | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/other-fs-libraries.js:16:34:16:37 | path | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path gracefulFs readFileSync path fsExtra readFileSync path originalFs readFileSync path getFsModule true readFileSync path getFsModule false readFileSync path require ./my-fs-module require true readFileSync path flexibleModuleName require process electron versions electron original-fs fs flexibleModuleName readFileSync path |
-| autogenerated/TaintedPath/other-fs-libraries.js:16:34:16:37 | path | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/other-fs-libraries.js:16:34:16:37 | path | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http original-fs url util |
-| autogenerated/TaintedPath/other-fs-libraries.js:16:34:16:37 | path | receiverName |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:16:34:16:37 | path | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:17:35:17:38 | path | CalleeFlexibleAccessPath | getFsModule().readFileSync |
-| autogenerated/TaintedPath/other-fs-libraries.js:17:35:17:38 | path | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:17:35:17:38 | path | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/other-fs-libraries.js:17:35:17:38 | path | assignedToPropName |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:17:35:17:38 | path | calleeImports |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:17:35:17:38 | path | contextFunctionInterfaces | getFsModule(special) |
-| autogenerated/TaintedPath/other-fs-libraries.js:17:35:17:38 | path | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/other-fs-libraries.js:17:35:17:38 | path | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path gracefulFs readFileSync path fsExtra readFileSync path originalFs readFileSync path getFsModule true readFileSync path getFsModule false readFileSync path require ./my-fs-module require true readFileSync path flexibleModuleName require process electron versions electron original-fs fs flexibleModuleName readFileSync path |
-| autogenerated/TaintedPath/other-fs-libraries.js:17:35:17:38 | path | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/other-fs-libraries.js:17:35:17:38 | path | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http original-fs url util |
-| autogenerated/TaintedPath/other-fs-libraries.js:17:35:17:38 | path | receiverName |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:17:35:17:38 | path | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:19:11:19:26 | "./my-fs-module" | CalleeFlexibleAccessPath | require |
-| autogenerated/TaintedPath/other-fs-libraries.js:19:11:19:26 | "./my-fs-module" | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:19:11:19:26 | "./my-fs-module" | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/other-fs-libraries.js:19:11:19:26 | "./my-fs-module" | assignedToPropName |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:19:11:19:26 | "./my-fs-module" | calleeImports |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:19:11:19:26 | "./my-fs-module" | contextFunctionInterfaces | getFsModule(special) |
-| autogenerated/TaintedPath/other-fs-libraries.js:19:11:19:26 | "./my-fs-module" | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/other-fs-libraries.js:19:11:19:26 | "./my-fs-module" | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path gracefulFs readFileSync path fsExtra readFileSync path originalFs readFileSync path getFsModule true readFileSync path getFsModule false readFileSync path require ./my-fs-module require true readFileSync path flexibleModuleName require process electron versions electron original-fs fs flexibleModuleName readFileSync path |
-| autogenerated/TaintedPath/other-fs-libraries.js:19:11:19:26 | "./my-fs-module" | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/other-fs-libraries.js:19:11:19:26 | "./my-fs-module" | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http original-fs url util |
-| autogenerated/TaintedPath/other-fs-libraries.js:19:11:19:26 | "./my-fs-module" | receiverName |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:19:11:19:26 | "./my-fs-module" | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:19:56:19:59 | path | CalleeFlexibleAccessPath | import("p").require().readFileSync |
-| autogenerated/TaintedPath/other-fs-libraries.js:19:56:19:59 | path | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:19:56:19:59 | path | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/other-fs-libraries.js:19:56:19:59 | path | assignedToPropName |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:19:56:19:59 | path | calleeImports | ./my-fs-module |
-| autogenerated/TaintedPath/other-fs-libraries.js:19:56:19:59 | path | contextFunctionInterfaces | getFsModule(special) |
-| autogenerated/TaintedPath/other-fs-libraries.js:19:56:19:59 | path | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/other-fs-libraries.js:19:56:19:59 | path | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path gracefulFs readFileSync path fsExtra readFileSync path originalFs readFileSync path getFsModule true readFileSync path getFsModule false readFileSync path require ./my-fs-module require true readFileSync path flexibleModuleName require process electron versions electron original-fs fs flexibleModuleName readFileSync path |
-| autogenerated/TaintedPath/other-fs-libraries.js:19:56:19:59 | path | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/other-fs-libraries.js:19:56:19:59 | path | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http original-fs url util |
-| autogenerated/TaintedPath/other-fs-libraries.js:19:56:19:59 | path | receiverName |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:19:56:19:59 | path | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:21:36:23:10 | process ...  : "fs" | CalleeFlexibleAccessPath | require |
-| autogenerated/TaintedPath/other-fs-libraries.js:21:36:23:10 | process ...  : "fs" | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:21:36:23:10 | process ...  : "fs" | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/other-fs-libraries.js:21:36:23:10 | process ...  : "fs" | assignedToPropName |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:21:36:23:10 | process ...  : "fs" | calleeImports |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:21:36:23:10 | process ...  : "fs" | contextFunctionInterfaces | getFsModule(special) |
-| autogenerated/TaintedPath/other-fs-libraries.js:21:36:23:10 | process ...  : "fs" | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/other-fs-libraries.js:21:36:23:10 | process ...  : "fs" | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path gracefulFs readFileSync path fsExtra readFileSync path originalFs readFileSync path getFsModule true readFileSync path getFsModule false readFileSync path require ./my-fs-module require true readFileSync path flexibleModuleName require process electron versions electron original-fs fs flexibleModuleName readFileSync path |
-| autogenerated/TaintedPath/other-fs-libraries.js:21:36:23:10 | process ...  : "fs" | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/other-fs-libraries.js:21:36:23:10 | process ...  : "fs" | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http original-fs url util |
-| autogenerated/TaintedPath/other-fs-libraries.js:21:36:23:10 | process ...  : "fs" | receiverName |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:21:36:23:10 | process ...  : "fs" | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:24:35:24:38 | path | CalleeFlexibleAccessPath | flexibleModuleName.readFileSync |
-| autogenerated/TaintedPath/other-fs-libraries.js:24:35:24:38 | path | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:24:35:24:38 | path | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/other-fs-libraries.js:24:35:24:38 | path | assignedToPropName |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:24:35:24:38 | path | calleeImports |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:24:35:24:38 | path | contextFunctionInterfaces | getFsModule(special) |
-| autogenerated/TaintedPath/other-fs-libraries.js:24:35:24:38 | path | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/other-fs-libraries.js:24:35:24:38 | path | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path gracefulFs readFileSync path fsExtra readFileSync path originalFs readFileSync path getFsModule true readFileSync path getFsModule false readFileSync path require ./my-fs-module require true readFileSync path flexibleModuleName require process electron versions electron original-fs fs flexibleModuleName readFileSync path |
-| autogenerated/TaintedPath/other-fs-libraries.js:24:35:24:38 | path | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/other-fs-libraries.js:24:35:24:38 | path | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http original-fs url util |
-| autogenerated/TaintedPath/other-fs-libraries.js:24:35:24:38 | path | receiverName | flexibleModuleName |
-| autogenerated/TaintedPath/other-fs-libraries.js:24:35:24:38 | path | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:29:20:29:23 | "fs" | CalleeFlexibleAccessPath | require |
-| autogenerated/TaintedPath/other-fs-libraries.js:29:20:29:23 | "fs" | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:29:20:29:23 | "fs" | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/other-fs-libraries.js:29:20:29:23 | "fs" | assignedToPropName |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:29:20:29:23 | "fs" | calleeImports |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:29:20:29:23 | "fs" | contextFunctionInterfaces | getFsModule(special) |
-| autogenerated/TaintedPath/other-fs-libraries.js:29:20:29:23 | "fs" | contextSurroundingFunctionParameters | (special) |
-| autogenerated/TaintedPath/other-fs-libraries.js:29:20:29:23 | "fs" | enclosingFunctionBody | special special require fs require original-fs |
-| autogenerated/TaintedPath/other-fs-libraries.js:29:20:29:23 | "fs" | enclosingFunctionName | getFsModule |
-| autogenerated/TaintedPath/other-fs-libraries.js:29:20:29:23 | "fs" | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http original-fs url util |
-| autogenerated/TaintedPath/other-fs-libraries.js:29:20:29:23 | "fs" | receiverName |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:29:20:29:23 | "fs" | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:31:20:31:32 | "original-fs" | CalleeFlexibleAccessPath | require |
-| autogenerated/TaintedPath/other-fs-libraries.js:31:20:31:32 | "original-fs" | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:31:20:31:32 | "original-fs" | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/other-fs-libraries.js:31:20:31:32 | "original-fs" | assignedToPropName |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:31:20:31:32 | "original-fs" | calleeImports |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:31:20:31:32 | "original-fs" | contextFunctionInterfaces | getFsModule(special) |
-| autogenerated/TaintedPath/other-fs-libraries.js:31:20:31:32 | "original-fs" | contextSurroundingFunctionParameters | (special) |
-| autogenerated/TaintedPath/other-fs-libraries.js:31:20:31:32 | "original-fs" | enclosingFunctionBody | special special require fs require original-fs |
-| autogenerated/TaintedPath/other-fs-libraries.js:31:20:31:32 | "original-fs" | enclosingFunctionName | getFsModule |
-| autogenerated/TaintedPath/other-fs-libraries.js:31:20:31:32 | "original-fs" | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http original-fs url util |
-| autogenerated/TaintedPath/other-fs-libraries.js:31:20:31:32 | "original-fs" | receiverName |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:31:20:31:32 | "original-fs" | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:35:20:35:25 | "util" | CalleeFlexibleAccessPath | require |
-| autogenerated/TaintedPath/other-fs-libraries.js:35:20:35:25 | "util" | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:35:20:35:25 | "util" | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/other-fs-libraries.js:35:20:35:25 | "util" | assignedToPropName |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:35:20:35:25 | "util" | calleeImports |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:35:20:35:25 | "util" | contextFunctionInterfaces | getFsModule(special) |
-| autogenerated/TaintedPath/other-fs-libraries.js:35:20:35:25 | "util" | contextSurroundingFunctionParameters |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:35:20:35:25 | "util" | enclosingFunctionBody |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:35:20:35:25 | "util" | enclosingFunctionName |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:35:20:35:25 | "util" | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http original-fs url util |
-| autogenerated/TaintedPath/other-fs-libraries.js:35:20:35:25 | "util" | receiverName |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:35:20:35:25 | "util" | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:37:19:43:1 | functio ... OT OK\\n} | CalleeFlexibleAccessPath | http.createServer |
-| autogenerated/TaintedPath/other-fs-libraries.js:37:19:43:1 | functio ... OT OK\\n} | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:37:19:43:1 | functio ... OT OK\\n} | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/other-fs-libraries.js:37:19:43:1 | functio ... OT OK\\n} | assignedToPropName |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:37:19:43:1 | functio ... OT OK\\n} | calleeImports | http |
-| autogenerated/TaintedPath/other-fs-libraries.js:37:19:43:1 | functio ... OT OK\\n} | contextFunctionInterfaces | getFsModule(special) |
-| autogenerated/TaintedPath/other-fs-libraries.js:37:19:43:1 | functio ... OT OK\\n} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/other-fs-libraries.js:37:19:43:1 | functio ... OT OK\\n} | enclosingFunctionBody |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:37:19:43:1 | functio ... OT OK\\n} | enclosingFunctionName |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:37:19:43:1 | functio ... OT OK\\n} | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http original-fs url util |
-| autogenerated/TaintedPath/other-fs-libraries.js:37:19:43:1 | functio ... OT OK\\n} | receiverName | http |
-| autogenerated/TaintedPath/other-fs-libraries.js:37:19:43:1 | functio ... OT OK\\n} | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:40:18:40:32 | fs.readFileSync | CalleeFlexibleAccessPath | util.promisify |
-| autogenerated/TaintedPath/other-fs-libraries.js:40:18:40:32 | fs.readFileSync | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:40:18:40:32 | fs.readFileSync | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/other-fs-libraries.js:40:18:40:32 | fs.readFileSync | assignedToPropName |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:40:18:40:32 | fs.readFileSync | calleeImports | util |
-| autogenerated/TaintedPath/other-fs-libraries.js:40:18:40:32 | fs.readFileSync | contextFunctionInterfaces | getFsModule(special) |
-| autogenerated/TaintedPath/other-fs-libraries.js:40:18:40:32 | fs.readFileSync | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/other-fs-libraries.js:40:18:40:32 | fs.readFileSync | enclosingFunctionBody | req res path url parse req url true query path util promisify fs readFileSync path require bluebird promisify fs readFileSync path require bluebird promisifyAll fs readFileSync path |
-| autogenerated/TaintedPath/other-fs-libraries.js:40:18:40:32 | fs.readFileSync | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/other-fs-libraries.js:40:18:40:32 | fs.readFileSync | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http original-fs url util |
-| autogenerated/TaintedPath/other-fs-libraries.js:40:18:40:32 | fs.readFileSync | receiverName | util |
-| autogenerated/TaintedPath/other-fs-libraries.js:40:18:40:32 | fs.readFileSync | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:40:35:40:38 | path | CalleeFlexibleAccessPath | util.promisify() |
-| autogenerated/TaintedPath/other-fs-libraries.js:40:35:40:38 | path | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:40:35:40:38 | path | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/other-fs-libraries.js:40:35:40:38 | path | assignedToPropName |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:40:35:40:38 | path | calleeImports | util |
-| autogenerated/TaintedPath/other-fs-libraries.js:40:35:40:38 | path | contextFunctionInterfaces | getFsModule(special) |
-| autogenerated/TaintedPath/other-fs-libraries.js:40:35:40:38 | path | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/other-fs-libraries.js:40:35:40:38 | path | enclosingFunctionBody | req res path url parse req url true query path util promisify fs readFileSync path require bluebird promisify fs readFileSync path require bluebird promisifyAll fs readFileSync path |
-| autogenerated/TaintedPath/other-fs-libraries.js:40:35:40:38 | path | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/other-fs-libraries.js:40:35:40:38 | path | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http original-fs url util |
-| autogenerated/TaintedPath/other-fs-libraries.js:40:35:40:38 | path | receiverName |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:40:35:40:38 | path | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:41:11:41:20 | "bluebird" | CalleeFlexibleAccessPath | require |
-| autogenerated/TaintedPath/other-fs-libraries.js:41:11:41:20 | "bluebird" | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:41:11:41:20 | "bluebird" | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/other-fs-libraries.js:41:11:41:20 | "bluebird" | assignedToPropName |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:41:11:41:20 | "bluebird" | calleeImports |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:41:11:41:20 | "bluebird" | contextFunctionInterfaces | getFsModule(special) |
-| autogenerated/TaintedPath/other-fs-libraries.js:41:11:41:20 | "bluebird" | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/other-fs-libraries.js:41:11:41:20 | "bluebird" | enclosingFunctionBody | req res path url parse req url true query path util promisify fs readFileSync path require bluebird promisify fs readFileSync path require bluebird promisifyAll fs readFileSync path |
-| autogenerated/TaintedPath/other-fs-libraries.js:41:11:41:20 | "bluebird" | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/other-fs-libraries.js:41:11:41:20 | "bluebird" | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http original-fs url util |
-| autogenerated/TaintedPath/other-fs-libraries.js:41:11:41:20 | "bluebird" | receiverName |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:41:11:41:20 | "bluebird" | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:41:33:41:47 | fs.readFileSync | CalleeFlexibleAccessPath | import(!).promisify |
-| autogenerated/TaintedPath/other-fs-libraries.js:41:33:41:47 | fs.readFileSync | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:41:33:41:47 | fs.readFileSync | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/other-fs-libraries.js:41:33:41:47 | fs.readFileSync | assignedToPropName |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:41:33:41:47 | fs.readFileSync | calleeImports | bluebird |
-| autogenerated/TaintedPath/other-fs-libraries.js:41:33:41:47 | fs.readFileSync | contextFunctionInterfaces | getFsModule(special) |
-| autogenerated/TaintedPath/other-fs-libraries.js:41:33:41:47 | fs.readFileSync | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/other-fs-libraries.js:41:33:41:47 | fs.readFileSync | enclosingFunctionBody | req res path url parse req url true query path util promisify fs readFileSync path require bluebird promisify fs readFileSync path require bluebird promisifyAll fs readFileSync path |
-| autogenerated/TaintedPath/other-fs-libraries.js:41:33:41:47 | fs.readFileSync | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/other-fs-libraries.js:41:33:41:47 | fs.readFileSync | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http original-fs url util |
-| autogenerated/TaintedPath/other-fs-libraries.js:41:33:41:47 | fs.readFileSync | receiverName |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:41:33:41:47 | fs.readFileSync | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:41:50:41:53 | path | CalleeFlexibleAccessPath | import(!).promisify() |
-| autogenerated/TaintedPath/other-fs-libraries.js:41:50:41:53 | path | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:41:50:41:53 | path | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/other-fs-libraries.js:41:50:41:53 | path | assignedToPropName |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:41:50:41:53 | path | calleeImports | bluebird |
-| autogenerated/TaintedPath/other-fs-libraries.js:41:50:41:53 | path | contextFunctionInterfaces | getFsModule(special) |
-| autogenerated/TaintedPath/other-fs-libraries.js:41:50:41:53 | path | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/other-fs-libraries.js:41:50:41:53 | path | enclosingFunctionBody | req res path url parse req url true query path util promisify fs readFileSync path require bluebird promisify fs readFileSync path require bluebird promisifyAll fs readFileSync path |
-| autogenerated/TaintedPath/other-fs-libraries.js:41:50:41:53 | path | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/other-fs-libraries.js:41:50:41:53 | path | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http original-fs url util |
-| autogenerated/TaintedPath/other-fs-libraries.js:41:50:41:53 | path | receiverName |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:41:50:41:53 | path | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:42:11:42:20 | "bluebird" | CalleeFlexibleAccessPath | require |
-| autogenerated/TaintedPath/other-fs-libraries.js:42:11:42:20 | "bluebird" | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:42:11:42:20 | "bluebird" | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/other-fs-libraries.js:42:11:42:20 | "bluebird" | assignedToPropName |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:42:11:42:20 | "bluebird" | calleeImports |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:42:11:42:20 | "bluebird" | contextFunctionInterfaces | getFsModule(special) |
-| autogenerated/TaintedPath/other-fs-libraries.js:42:11:42:20 | "bluebird" | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/other-fs-libraries.js:42:11:42:20 | "bluebird" | enclosingFunctionBody | req res path url parse req url true query path util promisify fs readFileSync path require bluebird promisify fs readFileSync path require bluebird promisifyAll fs readFileSync path |
-| autogenerated/TaintedPath/other-fs-libraries.js:42:11:42:20 | "bluebird" | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/other-fs-libraries.js:42:11:42:20 | "bluebird" | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http original-fs url util |
-| autogenerated/TaintedPath/other-fs-libraries.js:42:11:42:20 | "bluebird" | receiverName |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:42:11:42:20 | "bluebird" | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:42:36:42:37 | fs | CalleeFlexibleAccessPath | import(!).promisifyAll |
-| autogenerated/TaintedPath/other-fs-libraries.js:42:36:42:37 | fs | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:42:36:42:37 | fs | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/other-fs-libraries.js:42:36:42:37 | fs | assignedToPropName |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:42:36:42:37 | fs | calleeImports | bluebird |
-| autogenerated/TaintedPath/other-fs-libraries.js:42:36:42:37 | fs | contextFunctionInterfaces | getFsModule(special) |
-| autogenerated/TaintedPath/other-fs-libraries.js:42:36:42:37 | fs | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/other-fs-libraries.js:42:36:42:37 | fs | enclosingFunctionBody | req res path url parse req url true query path util promisify fs readFileSync path require bluebird promisify fs readFileSync path require bluebird promisifyAll fs readFileSync path |
-| autogenerated/TaintedPath/other-fs-libraries.js:42:36:42:37 | fs | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/other-fs-libraries.js:42:36:42:37 | fs | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http original-fs url util |
-| autogenerated/TaintedPath/other-fs-libraries.js:42:36:42:37 | fs | receiverName |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:42:36:42:37 | fs | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:42:53:42:56 | path | CalleeFlexibleAccessPath | import(!).promisifyAll().readFileSync |
-| autogenerated/TaintedPath/other-fs-libraries.js:42:53:42:56 | path | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:42:53:42:56 | path | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/other-fs-libraries.js:42:53:42:56 | path | assignedToPropName |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:42:53:42:56 | path | calleeImports | bluebird |
-| autogenerated/TaintedPath/other-fs-libraries.js:42:53:42:56 | path | contextFunctionInterfaces | getFsModule(special) |
-| autogenerated/TaintedPath/other-fs-libraries.js:42:53:42:56 | path | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/other-fs-libraries.js:42:53:42:56 | path | enclosingFunctionBody | req res path url parse req url true query path util promisify fs readFileSync path require bluebird promisify fs readFileSync path require bluebird promisifyAll fs readFileSync path |
-| autogenerated/TaintedPath/other-fs-libraries.js:42:53:42:56 | path | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/other-fs-libraries.js:42:53:42:56 | path | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http original-fs url util |
-| autogenerated/TaintedPath/other-fs-libraries.js:42:53:42:56 | path | receiverName |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:42:53:42:56 | path | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:46:25:46:46 | "./my-a ... module" | CalleeFlexibleAccessPath | require |
-| autogenerated/TaintedPath/other-fs-libraries.js:46:25:46:46 | "./my-a ... module" | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:46:25:46:46 | "./my-a ... module" | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/other-fs-libraries.js:46:25:46:46 | "./my-a ... module" | assignedToPropName |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:46:25:46:46 | "./my-a ... module" | calleeImports |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:46:25:46:46 | "./my-a ... module" | contextFunctionInterfaces | getFsModule(special) |
-| autogenerated/TaintedPath/other-fs-libraries.js:46:25:46:46 | "./my-a ... module" | contextSurroundingFunctionParameters |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:46:25:46:46 | "./my-a ... module" | enclosingFunctionBody |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:46:25:46:46 | "./my-a ... module" | enclosingFunctionName |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:46:25:46:46 | "./my-a ... module" | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http original-fs url util |
-| autogenerated/TaintedPath/other-fs-libraries.js:46:25:46:46 | "./my-a ... module" | receiverName |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:46:25:46:46 | "./my-a ... module" | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:48:19:53:1 | functio ... OT OK\\n} | CalleeFlexibleAccessPath | http.createServer |
-| autogenerated/TaintedPath/other-fs-libraries.js:48:19:53:1 | functio ... OT OK\\n} | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:48:19:53:1 | functio ... OT OK\\n} | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/other-fs-libraries.js:48:19:53:1 | functio ... OT OK\\n} | assignedToPropName |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:48:19:53:1 | functio ... OT OK\\n} | calleeImports | http |
-| autogenerated/TaintedPath/other-fs-libraries.js:48:19:53:1 | functio ... OT OK\\n} | contextFunctionInterfaces | getFsModule(special) |
-| autogenerated/TaintedPath/other-fs-libraries.js:48:19:53:1 | functio ... OT OK\\n} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/other-fs-libraries.js:48:19:53:1 | functio ... OT OK\\n} | enclosingFunctionBody |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:48:19:53:1 | functio ... OT OK\\n} | enclosingFunctionName |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:48:19:53:1 | functio ... OT OK\\n} | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http original-fs url util |
-| autogenerated/TaintedPath/other-fs-libraries.js:48:19:53:1 | functio ... OT OK\\n} | receiverName | http |
-| autogenerated/TaintedPath/other-fs-libraries.js:48:19:53:1 | functio ... OT OK\\n} | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:51:19:51:22 | path | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/other-fs-libraries.js:51:19:51:22 | path | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:51:19:51:22 | path | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/other-fs-libraries.js:51:19:51:22 | path | assignedToPropName |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:51:19:51:22 | path | calleeImports | fs |
-| autogenerated/TaintedPath/other-fs-libraries.js:51:19:51:22 | path | contextFunctionInterfaces | getFsModule(special) |
-| autogenerated/TaintedPath/other-fs-libraries.js:51:19:51:22 | path | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/other-fs-libraries.js:51:19:51:22 | path | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path asyncFS readFileSync path |
-| autogenerated/TaintedPath/other-fs-libraries.js:51:19:51:22 | path | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/other-fs-libraries.js:51:19:51:22 | path | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http original-fs url util |
-| autogenerated/TaintedPath/other-fs-libraries.js:51:19:51:22 | path | receiverName | fs |
-| autogenerated/TaintedPath/other-fs-libraries.js:51:19:51:22 | path | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:52:24:52:27 | path | CalleeFlexibleAccessPath | asyncFS.readFileSync |
-| autogenerated/TaintedPath/other-fs-libraries.js:52:24:52:27 | path | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:52:24:52:27 | path | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/other-fs-libraries.js:52:24:52:27 | path | assignedToPropName |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:52:24:52:27 | path | calleeImports | ./my-async-fs-module |
-| autogenerated/TaintedPath/other-fs-libraries.js:52:24:52:27 | path | contextFunctionInterfaces | getFsModule(special) |
-| autogenerated/TaintedPath/other-fs-libraries.js:52:24:52:27 | path | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/other-fs-libraries.js:52:24:52:27 | path | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path asyncFS readFileSync path |
-| autogenerated/TaintedPath/other-fs-libraries.js:52:24:52:27 | path | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/other-fs-libraries.js:52:24:52:27 | path | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http original-fs url util |
-| autogenerated/TaintedPath/other-fs-libraries.js:52:24:52:27 | path | receiverName | asyncFS |
-| autogenerated/TaintedPath/other-fs-libraries.js:52:24:52:27 | path | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/pupeteer.js:1:27:1:37 | 'puppeteer' | CalleeFlexibleAccessPath | require |
-| autogenerated/TaintedPath/pupeteer.js:1:27:1:37 | 'puppeteer' | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/pupeteer.js:1:27:1:37 | 'puppeteer' | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/pupeteer.js:1:27:1:37 | 'puppeteer' | assignedToPropName |  |
-| autogenerated/TaintedPath/pupeteer.js:1:27:1:37 | 'puppeteer' | calleeImports |  |
-| autogenerated/TaintedPath/pupeteer.js:1:27:1:37 | 'puppeteer' | contextFunctionInterfaces |  |
-| autogenerated/TaintedPath/pupeteer.js:1:27:1:37 | 'puppeteer' | contextSurroundingFunctionParameters |  |
-| autogenerated/TaintedPath/pupeteer.js:1:27:1:37 | 'puppeteer' | enclosingFunctionBody |  |
-| autogenerated/TaintedPath/pupeteer.js:1:27:1:37 | 'puppeteer' | enclosingFunctionName |  |
-| autogenerated/TaintedPath/pupeteer.js:1:27:1:37 | 'puppeteer' | fileImports | parse-torrent puppeteer |
-| autogenerated/TaintedPath/pupeteer.js:1:27:1:37 | 'puppeteer' | receiverName |  |
-| autogenerated/TaintedPath/pupeteer.js:1:27:1:37 | 'puppeteer' | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/pupeteer.js:2:30:2:44 | 'parse-torrent' | CalleeFlexibleAccessPath | require |
-| autogenerated/TaintedPath/pupeteer.js:2:30:2:44 | 'parse-torrent' | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/pupeteer.js:2:30:2:44 | 'parse-torrent' | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/pupeteer.js:2:30:2:44 | 'parse-torrent' | assignedToPropName |  |
-| autogenerated/TaintedPath/pupeteer.js:2:30:2:44 | 'parse-torrent' | calleeImports |  |
-| autogenerated/TaintedPath/pupeteer.js:2:30:2:44 | 'parse-torrent' | contextFunctionInterfaces |  |
-| autogenerated/TaintedPath/pupeteer.js:2:30:2:44 | 'parse-torrent' | contextSurroundingFunctionParameters |  |
-| autogenerated/TaintedPath/pupeteer.js:2:30:2:44 | 'parse-torrent' | enclosingFunctionBody |  |
-| autogenerated/TaintedPath/pupeteer.js:2:30:2:44 | 'parse-torrent' | enclosingFunctionName |  |
-| autogenerated/TaintedPath/pupeteer.js:2:30:2:44 | 'parse-torrent' | fileImports | parse-torrent puppeteer |
-| autogenerated/TaintedPath/pupeteer.js:2:30:2:44 | 'parse-torrent' | receiverName |  |
-| autogenerated/TaintedPath/pupeteer.js:2:30:2:44 | 'parse-torrent' | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/pupeteer.js:5:41:5:47 | torrent | CalleeFlexibleAccessPath | parseTorrent |
-| autogenerated/TaintedPath/pupeteer.js:5:41:5:47 | torrent | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/pupeteer.js:5:41:5:47 | torrent | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/pupeteer.js:5:41:5:47 | torrent | assignedToPropName |  |
-| autogenerated/TaintedPath/pupeteer.js:5:41:5:47 | torrent | calleeImports | parse-torrent |
-| autogenerated/TaintedPath/pupeteer.js:5:41:5:47 | torrent | contextFunctionInterfaces |  |
-| autogenerated/TaintedPath/pupeteer.js:5:41:5:47 | torrent | contextSurroundingFunctionParameters | () |
-| autogenerated/TaintedPath/pupeteer.js:5:41:5:47 | torrent | enclosingFunctionBody | tainted dir/ parseTorrent torrent name .torrent.data browser puppeteer launch page browser newPage page pdf path tainted format a4 pages browser pages i 0 i something i pages i screenshot path tainted browser close |
-| autogenerated/TaintedPath/pupeteer.js:5:41:5:47 | torrent | enclosingFunctionName |  |
-| autogenerated/TaintedPath/pupeteer.js:5:41:5:47 | torrent | fileImports | parse-torrent puppeteer |
-| autogenerated/TaintedPath/pupeteer.js:5:41:5:47 | torrent | receiverName |  |
-| autogenerated/TaintedPath/pupeteer.js:5:41:5:47 | torrent | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/pupeteer.js:9:20:9:50 | { path: ...  'a4' } | CalleeFlexibleAccessPath | page.pdf |
-| autogenerated/TaintedPath/pupeteer.js:9:20:9:50 | { path: ...  'a4' } | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/pupeteer.js:9:20:9:50 | { path: ...  'a4' } | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/pupeteer.js:9:20:9:50 | { path: ...  'a4' } | assignedToPropName |  |
-| autogenerated/TaintedPath/pupeteer.js:9:20:9:50 | { path: ...  'a4' } | calleeImports | puppeteer |
-| autogenerated/TaintedPath/pupeteer.js:9:20:9:50 | { path: ...  'a4' } | contextFunctionInterfaces |  |
-| autogenerated/TaintedPath/pupeteer.js:9:20:9:50 | { path: ...  'a4' } | contextSurroundingFunctionParameters | () |
-| autogenerated/TaintedPath/pupeteer.js:9:20:9:50 | { path: ...  'a4' } | enclosingFunctionBody | tainted dir/ parseTorrent torrent name .torrent.data browser puppeteer launch page browser newPage page pdf path tainted format a4 pages browser pages i 0 i something i pages i screenshot path tainted browser close |
-| autogenerated/TaintedPath/pupeteer.js:9:20:9:50 | { path: ...  'a4' } | enclosingFunctionName |  |
-| autogenerated/TaintedPath/pupeteer.js:9:20:9:50 | { path: ...  'a4' } | fileImports | parse-torrent puppeteer |
-| autogenerated/TaintedPath/pupeteer.js:9:20:9:50 | { path: ...  'a4' } | receiverName | page |
-| autogenerated/TaintedPath/pupeteer.js:9:20:9:50 | { path: ...  'a4' } | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/pupeteer.js:9:28:9:34 | tainted | CalleeFlexibleAccessPath | page.pdf |
-| autogenerated/TaintedPath/pupeteer.js:9:28:9:34 | tainted | InputAccessPathFromCallee | 0.path |
-| autogenerated/TaintedPath/pupeteer.js:9:28:9:34 | tainted | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/pupeteer.js:9:28:9:34 | tainted | assignedToPropName | path |
-| autogenerated/TaintedPath/pupeteer.js:9:28:9:34 | tainted | calleeImports | puppeteer |
-| autogenerated/TaintedPath/pupeteer.js:9:28:9:34 | tainted | contextFunctionInterfaces |  |
-| autogenerated/TaintedPath/pupeteer.js:9:28:9:34 | tainted | contextSurroundingFunctionParameters | () |
-| autogenerated/TaintedPath/pupeteer.js:9:28:9:34 | tainted | enclosingFunctionBody | tainted dir/ parseTorrent torrent name .torrent.data browser puppeteer launch page browser newPage page pdf path tainted format a4 pages browser pages i 0 i something i pages i screenshot path tainted browser close |
-| autogenerated/TaintedPath/pupeteer.js:9:28:9:34 | tainted | enclosingFunctionName |  |
-| autogenerated/TaintedPath/pupeteer.js:9:28:9:34 | tainted | fileImports | parse-torrent puppeteer |
-| autogenerated/TaintedPath/pupeteer.js:9:28:9:34 | tainted | receiverName |  |
-| autogenerated/TaintedPath/pupeteer.js:9:28:9:34 | tainted | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/pupeteer.js:9:45:9:48 | 'a4' | CalleeFlexibleAccessPath | page.pdf |
-| autogenerated/TaintedPath/pupeteer.js:9:45:9:48 | 'a4' | InputAccessPathFromCallee | 0.format |
-| autogenerated/TaintedPath/pupeteer.js:9:45:9:48 | 'a4' | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/pupeteer.js:9:45:9:48 | 'a4' | assignedToPropName | format |
-| autogenerated/TaintedPath/pupeteer.js:9:45:9:48 | 'a4' | calleeImports | puppeteer |
-| autogenerated/TaintedPath/pupeteer.js:9:45:9:48 | 'a4' | contextFunctionInterfaces |  |
-| autogenerated/TaintedPath/pupeteer.js:9:45:9:48 | 'a4' | contextSurroundingFunctionParameters | () |
-| autogenerated/TaintedPath/pupeteer.js:9:45:9:48 | 'a4' | enclosingFunctionBody | tainted dir/ parseTorrent torrent name .torrent.data browser puppeteer launch page browser newPage page pdf path tainted format a4 pages browser pages i 0 i something i pages i screenshot path tainted browser close |
-| autogenerated/TaintedPath/pupeteer.js:9:45:9:48 | 'a4' | enclosingFunctionName |  |
-| autogenerated/TaintedPath/pupeteer.js:9:45:9:48 | 'a4' | fileImports | parse-torrent puppeteer |
-| autogenerated/TaintedPath/pupeteer.js:9:45:9:48 | 'a4' | receiverName |  |
-| autogenerated/TaintedPath/pupeteer.js:9:45:9:48 | 'a4' | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/pupeteer.js:13:29:13:45 | { path: tainted } | CalleeFlexibleAccessPath | pages.?.screenshot |
-| autogenerated/TaintedPath/pupeteer.js:13:29:13:45 | { path: tainted } | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/pupeteer.js:13:29:13:45 | { path: tainted } | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/pupeteer.js:13:29:13:45 | { path: tainted } | assignedToPropName |  |
-| autogenerated/TaintedPath/pupeteer.js:13:29:13:45 | { path: tainted } | calleeImports | puppeteer |
-| autogenerated/TaintedPath/pupeteer.js:13:29:13:45 | { path: tainted } | contextFunctionInterfaces |  |
-| autogenerated/TaintedPath/pupeteer.js:13:29:13:45 | { path: tainted } | contextSurroundingFunctionParameters | () |
-| autogenerated/TaintedPath/pupeteer.js:13:29:13:45 | { path: tainted } | enclosingFunctionBody | tainted dir/ parseTorrent torrent name .torrent.data browser puppeteer launch page browser newPage page pdf path tainted format a4 pages browser pages i 0 i something i pages i screenshot path tainted browser close |
-| autogenerated/TaintedPath/pupeteer.js:13:29:13:45 | { path: tainted } | enclosingFunctionName |  |
-| autogenerated/TaintedPath/pupeteer.js:13:29:13:45 | { path: tainted } | fileImports | parse-torrent puppeteer |
-| autogenerated/TaintedPath/pupeteer.js:13:29:13:45 | { path: tainted } | receiverName |  |
-| autogenerated/TaintedPath/pupeteer.js:13:29:13:45 | { path: tainted } | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/pupeteer.js:13:37:13:43 | tainted | CalleeFlexibleAccessPath | pages.?.screenshot |
-| autogenerated/TaintedPath/pupeteer.js:13:37:13:43 | tainted | InputAccessPathFromCallee | 0.path |
-| autogenerated/TaintedPath/pupeteer.js:13:37:13:43 | tainted | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/pupeteer.js:13:37:13:43 | tainted | assignedToPropName | path |
-| autogenerated/TaintedPath/pupeteer.js:13:37:13:43 | tainted | calleeImports | puppeteer |
-| autogenerated/TaintedPath/pupeteer.js:13:37:13:43 | tainted | contextFunctionInterfaces |  |
-| autogenerated/TaintedPath/pupeteer.js:13:37:13:43 | tainted | contextSurroundingFunctionParameters | () |
-| autogenerated/TaintedPath/pupeteer.js:13:37:13:43 | tainted | enclosingFunctionBody | tainted dir/ parseTorrent torrent name .torrent.data browser puppeteer launch page browser newPage page pdf path tainted format a4 pages browser pages i 0 i something i pages i screenshot path tainted browser close |
-| autogenerated/TaintedPath/pupeteer.js:13:37:13:43 | tainted | enclosingFunctionName |  |
-| autogenerated/TaintedPath/pupeteer.js:13:37:13:43 | tainted | fileImports | parse-torrent puppeteer |
-| autogenerated/TaintedPath/pupeteer.js:13:37:13:43 | tainted | receiverName |  |
-| autogenerated/TaintedPath/pupeteer.js:13:37:13:43 | tainted | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/tainted-access-paths.js:1:18:1:21 | 'fs' | CalleeFlexibleAccessPath | require |
-| autogenerated/TaintedPath/tainted-access-paths.js:1:18:1:21 | 'fs' | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/tainted-access-paths.js:1:18:1:21 | 'fs' | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/tainted-access-paths.js:1:18:1:21 | 'fs' | assignedToPropName |  |
-| autogenerated/TaintedPath/tainted-access-paths.js:1:18:1:21 | 'fs' | calleeImports |  |
-| autogenerated/TaintedPath/tainted-access-paths.js:1:18:1:21 | 'fs' | contextFunctionInterfaces |  |
-| autogenerated/TaintedPath/tainted-access-paths.js:1:18:1:21 | 'fs' | contextSurroundingFunctionParameters |  |
-| autogenerated/TaintedPath/tainted-access-paths.js:1:18:1:21 | 'fs' | enclosingFunctionBody |  |
-| autogenerated/TaintedPath/tainted-access-paths.js:1:18:1:21 | 'fs' | enclosingFunctionName |  |
-| autogenerated/TaintedPath/tainted-access-paths.js:1:18:1:21 | 'fs' | fileImports | fs http url |
-| autogenerated/TaintedPath/tainted-access-paths.js:1:18:1:21 | 'fs' | receiverName |  |
-| autogenerated/TaintedPath/tainted-access-paths.js:1:18:1:21 | 'fs' | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/tainted-access-paths.js:2:20:2:25 | 'http' | CalleeFlexibleAccessPath | require |
-| autogenerated/TaintedPath/tainted-access-paths.js:2:20:2:25 | 'http' | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/tainted-access-paths.js:2:20:2:25 | 'http' | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/tainted-access-paths.js:2:20:2:25 | 'http' | assignedToPropName |  |
-| autogenerated/TaintedPath/tainted-access-paths.js:2:20:2:25 | 'http' | calleeImports |  |
-| autogenerated/TaintedPath/tainted-access-paths.js:2:20:2:25 | 'http' | contextFunctionInterfaces |  |
-| autogenerated/TaintedPath/tainted-access-paths.js:2:20:2:25 | 'http' | contextSurroundingFunctionParameters |  |
-| autogenerated/TaintedPath/tainted-access-paths.js:2:20:2:25 | 'http' | enclosingFunctionBody |  |
-| autogenerated/TaintedPath/tainted-access-paths.js:2:20:2:25 | 'http' | enclosingFunctionName |  |
-| autogenerated/TaintedPath/tainted-access-paths.js:2:20:2:25 | 'http' | fileImports | fs http url |
-| autogenerated/TaintedPath/tainted-access-paths.js:2:20:2:25 | 'http' | receiverName |  |
-| autogenerated/TaintedPath/tainted-access-paths.js:2:20:2:25 | 'http' | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/tainted-access-paths.js:3:19:3:23 | 'url' | CalleeFlexibleAccessPath | require |
-| autogenerated/TaintedPath/tainted-access-paths.js:3:19:3:23 | 'url' | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/tainted-access-paths.js:3:19:3:23 | 'url' | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/tainted-access-paths.js:3:19:3:23 | 'url' | assignedToPropName |  |
-| autogenerated/TaintedPath/tainted-access-paths.js:3:19:3:23 | 'url' | calleeImports |  |
-| autogenerated/TaintedPath/tainted-access-paths.js:3:19:3:23 | 'url' | contextFunctionInterfaces |  |
-| autogenerated/TaintedPath/tainted-access-paths.js:3:19:3:23 | 'url' | contextSurroundingFunctionParameters |  |
-| autogenerated/TaintedPath/tainted-access-paths.js:3:19:3:23 | 'url' | enclosingFunctionBody |  |
-| autogenerated/TaintedPath/tainted-access-paths.js:3:19:3:23 | 'url' | enclosingFunctionName |  |
-| autogenerated/TaintedPath/tainted-access-paths.js:3:19:3:23 | 'url' | fileImports | fs http url |
-| autogenerated/TaintedPath/tainted-access-paths.js:3:19:3:23 | 'url' | receiverName |  |
-| autogenerated/TaintedPath/tainted-access-paths.js:3:19:3:23 | 'url' | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/tainted-access-paths.js:5:32:32:1 | functio ... OT OK\\n} | CalleeFlexibleAccessPath | http.createServer |
-| autogenerated/TaintedPath/tainted-access-paths.js:5:32:32:1 | functio ... OT OK\\n} | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/tainted-access-paths.js:5:32:32:1 | functio ... OT OK\\n} | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/tainted-access-paths.js:5:32:32:1 | functio ... OT OK\\n} | assignedToPropName |  |
-| autogenerated/TaintedPath/tainted-access-paths.js:5:32:32:1 | functio ... OT OK\\n} | calleeImports | http |
-| autogenerated/TaintedPath/tainted-access-paths.js:5:32:32:1 | functio ... OT OK\\n} | contextFunctionInterfaces |  |
-| autogenerated/TaintedPath/tainted-access-paths.js:5:32:32:1 | functio ... OT OK\\n} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/tainted-access-paths.js:5:32:32:1 | functio ... OT OK\\n} | enclosingFunctionBody |  |
-| autogenerated/TaintedPath/tainted-access-paths.js:5:32:32:1 | functio ... OT OK\\n} | enclosingFunctionName |  |
-| autogenerated/TaintedPath/tainted-access-paths.js:5:32:32:1 | functio ... OT OK\\n} | fileImports | fs http url |
-| autogenerated/TaintedPath/tainted-access-paths.js:5:32:32:1 | functio ... OT OK\\n} | receiverName | http |
-| autogenerated/TaintedPath/tainted-access-paths.js:5:32:32:1 | functio ... OT OK\\n} | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/tainted-access-paths.js:8:19:8:22 | path | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/tainted-access-paths.js:8:19:8:22 | path | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/tainted-access-paths.js:8:19:8:22 | path | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/tainted-access-paths.js:8:19:8:22 | path | assignedToPropName |  |
-| autogenerated/TaintedPath/tainted-access-paths.js:8:19:8:22 | path | calleeImports | fs |
-| autogenerated/TaintedPath/tainted-access-paths.js:8:19:8:22 | path | contextFunctionInterfaces |  |
-| autogenerated/TaintedPath/tainted-access-paths.js:8:19:8:22 | path | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/tainted-access-paths.js:8:19:8:22 | path | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path obj bla something path fs readFileSync obj sub obj sub safe fs readFileSync obj sub obj sub2 safe random fs readFileSync obj sub2 random obj sub3 safe fs readFileSync obj sub3 obj sub4 fs readFileSync obj sub4 fs readFileSync obj sub4 fs readFileSync obj sub4 |
-| autogenerated/TaintedPath/tainted-access-paths.js:8:19:8:22 | path | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/tainted-access-paths.js:8:19:8:22 | path | fileImports | fs http url |
-| autogenerated/TaintedPath/tainted-access-paths.js:8:19:8:22 | path | receiverName | fs |
-| autogenerated/TaintedPath/tainted-access-paths.js:8:19:8:22 | path | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/tainted-access-paths.js:12:19:12:25 | obj.sub | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/tainted-access-paths.js:12:19:12:25 | obj.sub | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/tainted-access-paths.js:12:19:12:25 | obj.sub | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/tainted-access-paths.js:12:19:12:25 | obj.sub | assignedToPropName |  |
-| autogenerated/TaintedPath/tainted-access-paths.js:12:19:12:25 | obj.sub | calleeImports | fs |
-| autogenerated/TaintedPath/tainted-access-paths.js:12:19:12:25 | obj.sub | contextFunctionInterfaces |  |
-| autogenerated/TaintedPath/tainted-access-paths.js:12:19:12:25 | obj.sub | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/tainted-access-paths.js:12:19:12:25 | obj.sub | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path obj bla something path fs readFileSync obj sub obj sub safe fs readFileSync obj sub obj sub2 safe random fs readFileSync obj sub2 random obj sub3 safe fs readFileSync obj sub3 obj sub4 fs readFileSync obj sub4 fs readFileSync obj sub4 fs readFileSync obj sub4 |
-| autogenerated/TaintedPath/tainted-access-paths.js:12:19:12:25 | obj.sub | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/tainted-access-paths.js:12:19:12:25 | obj.sub | fileImports | fs http url |
-| autogenerated/TaintedPath/tainted-access-paths.js:12:19:12:25 | obj.sub | receiverName | fs |
-| autogenerated/TaintedPath/tainted-access-paths.js:12:19:12:25 | obj.sub | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/tainted-access-paths.js:16:19:16:25 | obj.sub | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/tainted-access-paths.js:16:19:16:25 | obj.sub | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/tainted-access-paths.js:16:19:16:25 | obj.sub | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/tainted-access-paths.js:16:19:16:25 | obj.sub | assignedToPropName |  |
-| autogenerated/TaintedPath/tainted-access-paths.js:16:19:16:25 | obj.sub | calleeImports | fs |
-| autogenerated/TaintedPath/tainted-access-paths.js:16:19:16:25 | obj.sub | contextFunctionInterfaces |  |
-| autogenerated/TaintedPath/tainted-access-paths.js:16:19:16:25 | obj.sub | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/tainted-access-paths.js:16:19:16:25 | obj.sub | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path obj bla something path fs readFileSync obj sub obj sub safe fs readFileSync obj sub obj sub2 safe random fs readFileSync obj sub2 random obj sub3 safe fs readFileSync obj sub3 obj sub4 fs readFileSync obj sub4 fs readFileSync obj sub4 fs readFileSync obj sub4 |
-| autogenerated/TaintedPath/tainted-access-paths.js:16:19:16:25 | obj.sub | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/tainted-access-paths.js:16:19:16:25 | obj.sub | fileImports | fs http url |
-| autogenerated/TaintedPath/tainted-access-paths.js:16:19:16:25 | obj.sub | receiverName | fs |
-| autogenerated/TaintedPath/tainted-access-paths.js:16:19:16:25 | obj.sub | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/tainted-access-paths.js:20:21:20:28 | obj.sub2 | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/tainted-access-paths.js:20:21:20:28 | obj.sub2 | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/tainted-access-paths.js:20:21:20:28 | obj.sub2 | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/tainted-access-paths.js:20:21:20:28 | obj.sub2 | assignedToPropName |  |
-| autogenerated/TaintedPath/tainted-access-paths.js:20:21:20:28 | obj.sub2 | calleeImports | fs |
-| autogenerated/TaintedPath/tainted-access-paths.js:20:21:20:28 | obj.sub2 | contextFunctionInterfaces |  |
-| autogenerated/TaintedPath/tainted-access-paths.js:20:21:20:28 | obj.sub2 | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/tainted-access-paths.js:20:21:20:28 | obj.sub2 | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path obj bla something path fs readFileSync obj sub obj sub safe fs readFileSync obj sub obj sub2 safe random fs readFileSync obj sub2 random obj sub3 safe fs readFileSync obj sub3 obj sub4 fs readFileSync obj sub4 fs readFileSync obj sub4 fs readFileSync obj sub4 |
-| autogenerated/TaintedPath/tainted-access-paths.js:20:21:20:28 | obj.sub2 | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/tainted-access-paths.js:20:21:20:28 | obj.sub2 | fileImports | fs http url |
-| autogenerated/TaintedPath/tainted-access-paths.js:20:21:20:28 | obj.sub2 | receiverName | fs |
-| autogenerated/TaintedPath/tainted-access-paths.js:20:21:20:28 | obj.sub2 | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/tainted-access-paths.js:26:19:26:26 | obj.sub3 | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/tainted-access-paths.js:26:19:26:26 | obj.sub3 | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/tainted-access-paths.js:26:19:26:26 | obj.sub3 | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/tainted-access-paths.js:26:19:26:26 | obj.sub3 | assignedToPropName |  |
-| autogenerated/TaintedPath/tainted-access-paths.js:26:19:26:26 | obj.sub3 | calleeImports | fs |
-| autogenerated/TaintedPath/tainted-access-paths.js:26:19:26:26 | obj.sub3 | contextFunctionInterfaces |  |
-| autogenerated/TaintedPath/tainted-access-paths.js:26:19:26:26 | obj.sub3 | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/tainted-access-paths.js:26:19:26:26 | obj.sub3 | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path obj bla something path fs readFileSync obj sub obj sub safe fs readFileSync obj sub obj sub2 safe random fs readFileSync obj sub2 random obj sub3 safe fs readFileSync obj sub3 obj sub4 fs readFileSync obj sub4 fs readFileSync obj sub4 fs readFileSync obj sub4 |
-| autogenerated/TaintedPath/tainted-access-paths.js:26:19:26:26 | obj.sub3 | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/tainted-access-paths.js:26:19:26:26 | obj.sub3 | fileImports | fs http url |
-| autogenerated/TaintedPath/tainted-access-paths.js:26:19:26:26 | obj.sub3 | receiverName | fs |
-| autogenerated/TaintedPath/tainted-access-paths.js:26:19:26:26 | obj.sub3 | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/tainted-access-paths.js:29:21:29:28 | obj.sub4 | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/tainted-access-paths.js:29:21:29:28 | obj.sub4 | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/tainted-access-paths.js:29:21:29:28 | obj.sub4 | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/tainted-access-paths.js:29:21:29:28 | obj.sub4 | assignedToPropName |  |
-| autogenerated/TaintedPath/tainted-access-paths.js:29:21:29:28 | obj.sub4 | calleeImports | fs |
-| autogenerated/TaintedPath/tainted-access-paths.js:29:21:29:28 | obj.sub4 | contextFunctionInterfaces |  |
-| autogenerated/TaintedPath/tainted-access-paths.js:29:21:29:28 | obj.sub4 | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/tainted-access-paths.js:29:21:29:28 | obj.sub4 | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path obj bla something path fs readFileSync obj sub obj sub safe fs readFileSync obj sub obj sub2 safe random fs readFileSync obj sub2 random obj sub3 safe fs readFileSync obj sub3 obj sub4 fs readFileSync obj sub4 fs readFileSync obj sub4 fs readFileSync obj sub4 |
-| autogenerated/TaintedPath/tainted-access-paths.js:29:21:29:28 | obj.sub4 | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/tainted-access-paths.js:29:21:29:28 | obj.sub4 | fileImports | fs http url |
-| autogenerated/TaintedPath/tainted-access-paths.js:29:21:29:28 | obj.sub4 | receiverName | fs |
-| autogenerated/TaintedPath/tainted-access-paths.js:29:21:29:28 | obj.sub4 | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/tainted-access-paths.js:30:23:30:30 | obj.sub4 | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/tainted-access-paths.js:30:23:30:30 | obj.sub4 | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/tainted-access-paths.js:30:23:30:30 | obj.sub4 | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/tainted-access-paths.js:30:23:30:30 | obj.sub4 | assignedToPropName |  |
-| autogenerated/TaintedPath/tainted-access-paths.js:30:23:30:30 | obj.sub4 | calleeImports | fs |
-| autogenerated/TaintedPath/tainted-access-paths.js:30:23:30:30 | obj.sub4 | contextFunctionInterfaces |  |
-| autogenerated/TaintedPath/tainted-access-paths.js:30:23:30:30 | obj.sub4 | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/tainted-access-paths.js:30:23:30:30 | obj.sub4 | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path obj bla something path fs readFileSync obj sub obj sub safe fs readFileSync obj sub obj sub2 safe random fs readFileSync obj sub2 random obj sub3 safe fs readFileSync obj sub3 obj sub4 fs readFileSync obj sub4 fs readFileSync obj sub4 fs readFileSync obj sub4 |
-| autogenerated/TaintedPath/tainted-access-paths.js:30:23:30:30 | obj.sub4 | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/tainted-access-paths.js:30:23:30:30 | obj.sub4 | fileImports | fs http url |
-| autogenerated/TaintedPath/tainted-access-paths.js:30:23:30:30 | obj.sub4 | receiverName | fs |
-| autogenerated/TaintedPath/tainted-access-paths.js:30:23:30:30 | obj.sub4 | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/tainted-access-paths.js:31:23:31:30 | obj.sub4 | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/tainted-access-paths.js:31:23:31:30 | obj.sub4 | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/tainted-access-paths.js:31:23:31:30 | obj.sub4 | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/tainted-access-paths.js:31:23:31:30 | obj.sub4 | assignedToPropName |  |
-| autogenerated/TaintedPath/tainted-access-paths.js:31:23:31:30 | obj.sub4 | calleeImports | fs |
-| autogenerated/TaintedPath/tainted-access-paths.js:31:23:31:30 | obj.sub4 | contextFunctionInterfaces |  |
-| autogenerated/TaintedPath/tainted-access-paths.js:31:23:31:30 | obj.sub4 | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/tainted-access-paths.js:31:23:31:30 | obj.sub4 | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path obj bla something path fs readFileSync obj sub obj sub safe fs readFileSync obj sub obj sub2 safe random fs readFileSync obj sub2 random obj sub3 safe fs readFileSync obj sub3 obj sub4 fs readFileSync obj sub4 fs readFileSync obj sub4 fs readFileSync obj sub4 |
-| autogenerated/TaintedPath/tainted-access-paths.js:31:23:31:30 | obj.sub4 | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/tainted-access-paths.js:31:23:31:30 | obj.sub4 | fileImports | fs http url |
-| autogenerated/TaintedPath/tainted-access-paths.js:31:23:31:30 | obj.sub4 | receiverName | fs |
-| autogenerated/TaintedPath/tainted-access-paths.js:31:23:31:30 | obj.sub4 | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/tainted-array-steps.js:1:18:1:21 | 'fs' | CalleeFlexibleAccessPath | require |
-| autogenerated/TaintedPath/tainted-array-steps.js:1:18:1:21 | 'fs' | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/tainted-array-steps.js:1:18:1:21 | 'fs' | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/tainted-array-steps.js:1:18:1:21 | 'fs' | assignedToPropName |  |
-| autogenerated/TaintedPath/tainted-array-steps.js:1:18:1:21 | 'fs' | calleeImports |  |
-| autogenerated/TaintedPath/tainted-array-steps.js:1:18:1:21 | 'fs' | contextFunctionInterfaces |  |
-| autogenerated/TaintedPath/tainted-array-steps.js:1:18:1:21 | 'fs' | contextSurroundingFunctionParameters |  |
-| autogenerated/TaintedPath/tainted-array-steps.js:1:18:1:21 | 'fs' | enclosingFunctionBody |  |
-| autogenerated/TaintedPath/tainted-array-steps.js:1:18:1:21 | 'fs' | enclosingFunctionName |  |
-| autogenerated/TaintedPath/tainted-array-steps.js:1:18:1:21 | 'fs' | fileImports | fs http path sanitize-filename url |
-| autogenerated/TaintedPath/tainted-array-steps.js:1:18:1:21 | 'fs' | receiverName |  |
-| autogenerated/TaintedPath/tainted-array-steps.js:1:18:1:21 | 'fs' | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/tainted-array-steps.js:2:20:2:25 | 'http' | CalleeFlexibleAccessPath | require |
-| autogenerated/TaintedPath/tainted-array-steps.js:2:20:2:25 | 'http' | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/tainted-array-steps.js:2:20:2:25 | 'http' | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/tainted-array-steps.js:2:20:2:25 | 'http' | assignedToPropName |  |
-| autogenerated/TaintedPath/tainted-array-steps.js:2:20:2:25 | 'http' | calleeImports |  |
-| autogenerated/TaintedPath/tainted-array-steps.js:2:20:2:25 | 'http' | contextFunctionInterfaces |  |
-| autogenerated/TaintedPath/tainted-array-steps.js:2:20:2:25 | 'http' | contextSurroundingFunctionParameters |  |
-| autogenerated/TaintedPath/tainted-array-steps.js:2:20:2:25 | 'http' | enclosingFunctionBody |  |
-| autogenerated/TaintedPath/tainted-array-steps.js:2:20:2:25 | 'http' | enclosingFunctionName |  |
-| autogenerated/TaintedPath/tainted-array-steps.js:2:20:2:25 | 'http' | fileImports | fs http path sanitize-filename url |
-| autogenerated/TaintedPath/tainted-array-steps.js:2:20:2:25 | 'http' | receiverName |  |
-| autogenerated/TaintedPath/tainted-array-steps.js:2:20:2:25 | 'http' | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/tainted-array-steps.js:3:19:3:23 | 'url' | CalleeFlexibleAccessPath | require |
-| autogenerated/TaintedPath/tainted-array-steps.js:3:19:3:23 | 'url' | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/tainted-array-steps.js:3:19:3:23 | 'url' | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/tainted-array-steps.js:3:19:3:23 | 'url' | assignedToPropName |  |
-| autogenerated/TaintedPath/tainted-array-steps.js:3:19:3:23 | 'url' | calleeImports |  |
-| autogenerated/TaintedPath/tainted-array-steps.js:3:19:3:23 | 'url' | contextFunctionInterfaces |  |
-| autogenerated/TaintedPath/tainted-array-steps.js:3:19:3:23 | 'url' | contextSurroundingFunctionParameters |  |
-| autogenerated/TaintedPath/tainted-array-steps.js:3:19:3:23 | 'url' | enclosingFunctionBody |  |
-| autogenerated/TaintedPath/tainted-array-steps.js:3:19:3:23 | 'url' | enclosingFunctionName |  |
-| autogenerated/TaintedPath/tainted-array-steps.js:3:19:3:23 | 'url' | fileImports | fs http path sanitize-filename url |
-| autogenerated/TaintedPath/tainted-array-steps.js:3:19:3:23 | 'url' | receiverName |  |
-| autogenerated/TaintedPath/tainted-array-steps.js:3:19:3:23 | 'url' | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/tainted-array-steps.js:4:24:4:42 | 'sanitize-filename' | CalleeFlexibleAccessPath | require |
-| autogenerated/TaintedPath/tainted-array-steps.js:4:24:4:42 | 'sanitize-filename' | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/tainted-array-steps.js:4:24:4:42 | 'sanitize-filename' | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/tainted-array-steps.js:4:24:4:42 | 'sanitize-filename' | assignedToPropName |  |
-| autogenerated/TaintedPath/tainted-array-steps.js:4:24:4:42 | 'sanitize-filename' | calleeImports |  |
-| autogenerated/TaintedPath/tainted-array-steps.js:4:24:4:42 | 'sanitize-filename' | contextFunctionInterfaces |  |
-| autogenerated/TaintedPath/tainted-array-steps.js:4:24:4:42 | 'sanitize-filename' | contextSurroundingFunctionParameters |  |
-| autogenerated/TaintedPath/tainted-array-steps.js:4:24:4:42 | 'sanitize-filename' | enclosingFunctionBody |  |
-| autogenerated/TaintedPath/tainted-array-steps.js:4:24:4:42 | 'sanitize-filename' | enclosingFunctionName |  |
-| autogenerated/TaintedPath/tainted-array-steps.js:4:24:4:42 | 'sanitize-filename' | fileImports | fs http path sanitize-filename url |
-| autogenerated/TaintedPath/tainted-array-steps.js:4:24:4:42 | 'sanitize-filename' | receiverName |  |
-| autogenerated/TaintedPath/tainted-array-steps.js:4:24:4:42 | 'sanitize-filename' | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/tainted-array-steps.js:5:26:5:31 | 'path' | CalleeFlexibleAccessPath | require |
-| autogenerated/TaintedPath/tainted-array-steps.js:5:26:5:31 | 'path' | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/tainted-array-steps.js:5:26:5:31 | 'path' | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/tainted-array-steps.js:5:26:5:31 | 'path' | assignedToPropName |  |
-| autogenerated/TaintedPath/tainted-array-steps.js:5:26:5:31 | 'path' | calleeImports |  |
-| autogenerated/TaintedPath/tainted-array-steps.js:5:26:5:31 | 'path' | contextFunctionInterfaces |  |
-| autogenerated/TaintedPath/tainted-array-steps.js:5:26:5:31 | 'path' | contextSurroundingFunctionParameters |  |
-| autogenerated/TaintedPath/tainted-array-steps.js:5:26:5:31 | 'path' | enclosingFunctionBody |  |
-| autogenerated/TaintedPath/tainted-array-steps.js:5:26:5:31 | 'path' | enclosingFunctionName |  |
-| autogenerated/TaintedPath/tainted-array-steps.js:5:26:5:31 | 'path' | fileImports | fs http path sanitize-filename url |
-| autogenerated/TaintedPath/tainted-array-steps.js:5:26:5:31 | 'path' | receiverName |  |
-| autogenerated/TaintedPath/tainted-array-steps.js:5:26:5:31 | 'path' | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/tainted-array-steps.js:8:32:15:1 | functio ... ENCY]\\n} | CalleeFlexibleAccessPath | http.createServer |
-| autogenerated/TaintedPath/tainted-array-steps.js:8:32:15:1 | functio ... ENCY]\\n} | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/tainted-array-steps.js:8:32:15:1 | functio ... ENCY]\\n} | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/tainted-array-steps.js:8:32:15:1 | functio ... ENCY]\\n} | assignedToPropName |  |
-| autogenerated/TaintedPath/tainted-array-steps.js:8:32:15:1 | functio ... ENCY]\\n} | calleeImports | http |
-| autogenerated/TaintedPath/tainted-array-steps.js:8:32:15:1 | functio ... ENCY]\\n} | contextFunctionInterfaces |  |
-| autogenerated/TaintedPath/tainted-array-steps.js:8:32:15:1 | functio ... ENCY]\\n} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/tainted-array-steps.js:8:32:15:1 | functio ... ENCY]\\n} | enclosingFunctionBody |  |
-| autogenerated/TaintedPath/tainted-array-steps.js:8:32:15:1 | functio ... ENCY]\\n} | enclosingFunctionName |  |
-| autogenerated/TaintedPath/tainted-array-steps.js:8:32:15:1 | functio ... ENCY]\\n} | fileImports | fs http path sanitize-filename url |
-| autogenerated/TaintedPath/tainted-array-steps.js:8:32:15:1 | functio ... ENCY]\\n} | receiverName | http |
-| autogenerated/TaintedPath/tainted-array-steps.js:8:32:15:1 | functio ... ENCY]\\n} | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/tainted-array-steps.js:10:29:10:54 | ['publi ... in('/') | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/tainted-array-steps.js:10:29:10:54 | ['publi ... in('/') | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/tainted-array-steps.js:10:29:10:54 | ['publi ... in('/') | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/tainted-array-steps.js:10:29:10:54 | ['publi ... in('/') | assignedToPropName |  |
-| autogenerated/TaintedPath/tainted-array-steps.js:10:29:10:54 | ['publi ... in('/') | calleeImports | fs |
-| autogenerated/TaintedPath/tainted-array-steps.js:10:29:10:54 | ['publi ... in('/') | contextFunctionInterfaces |  |
-| autogenerated/TaintedPath/tainted-array-steps.js:10:29:10:54 | ['publi ... in('/') | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/tainted-array-steps.js:10:29:10:54 | ['publi ... in('/') | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync public path join / parts public path parts parts map x x toLowerCase res write fs readFileSync parts join / |
-| autogenerated/TaintedPath/tainted-array-steps.js:10:29:10:54 | ['publi ... in('/') | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/tainted-array-steps.js:10:29:10:54 | ['publi ... in('/') | fileImports | fs http path sanitize-filename url |
-| autogenerated/TaintedPath/tainted-array-steps.js:10:29:10:54 | ['publi ... in('/') | receiverName | fs |
-| autogenerated/TaintedPath/tainted-array-steps.js:10:29:10:54 | ['publi ... in('/') | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/tainted-array-steps.js:14:29:14:43 | parts.join('/') | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/tainted-array-steps.js:14:29:14:43 | parts.join('/') | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/tainted-array-steps.js:14:29:14:43 | parts.join('/') | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/tainted-array-steps.js:14:29:14:43 | parts.join('/') | assignedToPropName |  |
-| autogenerated/TaintedPath/tainted-array-steps.js:14:29:14:43 | parts.join('/') | calleeImports | fs |
-| autogenerated/TaintedPath/tainted-array-steps.js:14:29:14:43 | parts.join('/') | contextFunctionInterfaces |  |
-| autogenerated/TaintedPath/tainted-array-steps.js:14:29:14:43 | parts.join('/') | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/tainted-array-steps.js:14:29:14:43 | parts.join('/') | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync public path join / parts public path parts parts map x x toLowerCase res write fs readFileSync parts join / |
-| autogenerated/TaintedPath/tainted-array-steps.js:14:29:14:43 | parts.join('/') | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/tainted-array-steps.js:14:29:14:43 | parts.join('/') | fileImports | fs http path sanitize-filename url |
-| autogenerated/TaintedPath/tainted-array-steps.js:14:29:14:43 | parts.join('/') | receiverName | fs |
-| autogenerated/TaintedPath/tainted-array-steps.js:14:29:14:43 | parts.join('/') | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/tainted-array-steps.js:14:40:14:42 | '/' | CalleeFlexibleAccessPath | parts.join |
-| autogenerated/TaintedPath/tainted-array-steps.js:14:40:14:42 | '/' | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/tainted-array-steps.js:14:40:14:42 | '/' | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/tainted-array-steps.js:14:40:14:42 | '/' | assignedToPropName |  |
-| autogenerated/TaintedPath/tainted-array-steps.js:14:40:14:42 | '/' | calleeImports |  |
-| autogenerated/TaintedPath/tainted-array-steps.js:14:40:14:42 | '/' | contextFunctionInterfaces |  |
-| autogenerated/TaintedPath/tainted-array-steps.js:14:40:14:42 | '/' | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/tainted-array-steps.js:14:40:14:42 | '/' | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync public path join / parts public path parts parts map x x toLowerCase res write fs readFileSync parts join / |
-| autogenerated/TaintedPath/tainted-array-steps.js:14:40:14:42 | '/' | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/tainted-array-steps.js:14:40:14:42 | '/' | fileImports | fs http path sanitize-filename url |
-| autogenerated/TaintedPath/tainted-array-steps.js:14:40:14:42 | '/' | receiverName | parts |
-| autogenerated/TaintedPath/tainted-array-steps.js:14:40:14:42 | '/' | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/tainted-require.js:1:23:1:31 | 'express' | CalleeFlexibleAccessPath | require |
-| autogenerated/TaintedPath/tainted-require.js:1:23:1:31 | 'express' | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/tainted-require.js:1:23:1:31 | 'express' | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/tainted-require.js:1:23:1:31 | 'express' | assignedToPropName |  |
-| autogenerated/TaintedPath/tainted-require.js:1:23:1:31 | 'express' | calleeImports |  |
-| autogenerated/TaintedPath/tainted-require.js:1:23:1:31 | 'express' | contextFunctionInterfaces |  |
-| autogenerated/TaintedPath/tainted-require.js:1:23:1:31 | 'express' | contextSurroundingFunctionParameters |  |
-| autogenerated/TaintedPath/tainted-require.js:1:23:1:31 | 'express' | enclosingFunctionBody |  |
-| autogenerated/TaintedPath/tainted-require.js:1:23:1:31 | 'express' | enclosingFunctionName |  |
-| autogenerated/TaintedPath/tainted-require.js:1:23:1:31 | 'express' | fileImports | express |
-| autogenerated/TaintedPath/tainted-require.js:1:23:1:31 | 'express' | receiverName |  |
-| autogenerated/TaintedPath/tainted-require.js:1:23:1:31 | 'express' | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/tainted-require.js:5:9:5:20 | '/some/path' | CalleeFlexibleAccessPath | app.get |
-| autogenerated/TaintedPath/tainted-require.js:5:9:5:20 | '/some/path' | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/tainted-require.js:5:9:5:20 | '/some/path' | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/tainted-require.js:5:9:5:20 | '/some/path' | assignedToPropName |  |
-| autogenerated/TaintedPath/tainted-require.js:5:9:5:20 | '/some/path' | calleeImports | express |
-| autogenerated/TaintedPath/tainted-require.js:5:9:5:20 | '/some/path' | contextFunctionInterfaces |  |
-| autogenerated/TaintedPath/tainted-require.js:5:9:5:20 | '/some/path' | contextSurroundingFunctionParameters |  |
-| autogenerated/TaintedPath/tainted-require.js:5:9:5:20 | '/some/path' | enclosingFunctionBody |  |
-| autogenerated/TaintedPath/tainted-require.js:5:9:5:20 | '/some/path' | enclosingFunctionName |  |
-| autogenerated/TaintedPath/tainted-require.js:5:9:5:20 | '/some/path' | fileImports | express |
-| autogenerated/TaintedPath/tainted-require.js:5:9:5:20 | '/some/path' | receiverName | app |
-| autogenerated/TaintedPath/tainted-require.js:5:9:5:20 | '/some/path' | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/tainted-require.js:5:23:8:1 | functio ... e"));\\n} | CalleeFlexibleAccessPath | app.get |
-| autogenerated/TaintedPath/tainted-require.js:5:23:8:1 | functio ... e"));\\n} | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/tainted-require.js:5:23:8:1 | functio ... e"));\\n} | InputArgumentIndex | 1 |
-| autogenerated/TaintedPath/tainted-require.js:5:23:8:1 | functio ... e"));\\n} | assignedToPropName |  |
-| autogenerated/TaintedPath/tainted-require.js:5:23:8:1 | functio ... e"));\\n} | calleeImports | express |
-| autogenerated/TaintedPath/tainted-require.js:5:23:8:1 | functio ... e"));\\n} | contextFunctionInterfaces |  |
-| autogenerated/TaintedPath/tainted-require.js:5:23:8:1 | functio ... e"));\\n} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/tainted-require.js:5:23:8:1 | functio ... e"));\\n} | enclosingFunctionBody |  |
-| autogenerated/TaintedPath/tainted-require.js:5:23:8:1 | functio ... e"));\\n} | enclosingFunctionName |  |
-| autogenerated/TaintedPath/tainted-require.js:5:23:8:1 | functio ... e"));\\n} | fileImports | express |
-| autogenerated/TaintedPath/tainted-require.js:5:23:8:1 | functio ... e"));\\n} | receiverName | app |
-| autogenerated/TaintedPath/tainted-require.js:5:23:8:1 | functio ... e"));\\n} | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/tainted-require.js:7:19:7:37 | req.param("module") | CalleeFlexibleAccessPath | require |
-| autogenerated/TaintedPath/tainted-require.js:7:19:7:37 | req.param("module") | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/tainted-require.js:7:19:7:37 | req.param("module") | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/tainted-require.js:7:19:7:37 | req.param("module") | assignedToPropName |  |
-| autogenerated/TaintedPath/tainted-require.js:7:19:7:37 | req.param("module") | calleeImports |  |
-| autogenerated/TaintedPath/tainted-require.js:7:19:7:37 | req.param("module") | contextFunctionInterfaces |  |
-| autogenerated/TaintedPath/tainted-require.js:7:19:7:37 | req.param("module") | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/tainted-require.js:7:19:7:37 | req.param("module") | enclosingFunctionBody | req res m require req param module |
-| autogenerated/TaintedPath/tainted-require.js:7:19:7:37 | req.param("module") | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/tainted-require.js:7:19:7:37 | req.param("module") | fileImports | express |
-| autogenerated/TaintedPath/tainted-require.js:7:19:7:37 | req.param("module") | receiverName |  |
-| autogenerated/TaintedPath/tainted-require.js:7:19:7:37 | req.param("module") | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/tainted-require.js:7:29:7:36 | "module" | CalleeFlexibleAccessPath | req.param |
-| autogenerated/TaintedPath/tainted-require.js:7:29:7:36 | "module" | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/tainted-require.js:7:29:7:36 | "module" | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/tainted-require.js:7:29:7:36 | "module" | assignedToPropName |  |
-| autogenerated/TaintedPath/tainted-require.js:7:29:7:36 | "module" | calleeImports |  |
-| autogenerated/TaintedPath/tainted-require.js:7:29:7:36 | "module" | contextFunctionInterfaces |  |
-| autogenerated/TaintedPath/tainted-require.js:7:29:7:36 | "module" | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/tainted-require.js:7:29:7:36 | "module" | enclosingFunctionBody | req res m require req param module |
-| autogenerated/TaintedPath/tainted-require.js:7:29:7:36 | "module" | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/tainted-require.js:7:29:7:36 | "module" | fileImports | express |
-| autogenerated/TaintedPath/tainted-require.js:7:29:7:36 | "module" | receiverName | req |
-| autogenerated/TaintedPath/tainted-require.js:7:29:7:36 | "module" | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/tainted-sendFile.js:1:23:1:31 | 'express' | CalleeFlexibleAccessPath | require |
-| autogenerated/TaintedPath/tainted-sendFile.js:1:23:1:31 | 'express' | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/tainted-sendFile.js:1:23:1:31 | 'express' | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/tainted-sendFile.js:1:23:1:31 | 'express' | assignedToPropName |  |
-| autogenerated/TaintedPath/tainted-sendFile.js:1:23:1:31 | 'express' | calleeImports |  |
-| autogenerated/TaintedPath/tainted-sendFile.js:1:23:1:31 | 'express' | contextFunctionInterfaces |  |
-| autogenerated/TaintedPath/tainted-sendFile.js:1:23:1:31 | 'express' | contextSurroundingFunctionParameters |  |
-| autogenerated/TaintedPath/tainted-sendFile.js:1:23:1:31 | 'express' | enclosingFunctionBody |  |
-| autogenerated/TaintedPath/tainted-sendFile.js:1:23:1:31 | 'express' | enclosingFunctionName |  |
-| autogenerated/TaintedPath/tainted-sendFile.js:1:23:1:31 | 'express' | fileImports | express path |
-| autogenerated/TaintedPath/tainted-sendFile.js:1:23:1:31 | 'express' | receiverName |  |
-| autogenerated/TaintedPath/tainted-sendFile.js:1:23:1:31 | 'express' | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/tainted-sendFile.js:2:12:2:26 | require('path') | CalleeFlexibleAccessPath |  |
-| autogenerated/TaintedPath/tainted-sendFile.js:2:12:2:26 | require('path') | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/tainted-sendFile.js:2:12:2:26 | require('path') | InputArgumentIndex |  |
-| autogenerated/TaintedPath/tainted-sendFile.js:2:12:2:26 | require('path') | assignedToPropName |  |
-| autogenerated/TaintedPath/tainted-sendFile.js:2:12:2:26 | require('path') | calleeImports |  |
-| autogenerated/TaintedPath/tainted-sendFile.js:2:12:2:26 | require('path') | contextFunctionInterfaces |  |
-| autogenerated/TaintedPath/tainted-sendFile.js:2:12:2:26 | require('path') | contextSurroundingFunctionParameters |  |
-| autogenerated/TaintedPath/tainted-sendFile.js:2:12:2:26 | require('path') | enclosingFunctionBody |  |
-| autogenerated/TaintedPath/tainted-sendFile.js:2:12:2:26 | require('path') | enclosingFunctionName |  |
-| autogenerated/TaintedPath/tainted-sendFile.js:2:12:2:26 | require('path') | fileImports | express path |
-| autogenerated/TaintedPath/tainted-sendFile.js:2:12:2:26 | require('path') | receiverName |  |
-| autogenerated/TaintedPath/tainted-sendFile.js:2:12:2:26 | require('path') | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/tainted-sendFile.js:2:20:2:25 | 'path' | CalleeFlexibleAccessPath | require |
-| autogenerated/TaintedPath/tainted-sendFile.js:2:20:2:25 | 'path' | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/tainted-sendFile.js:2:20:2:25 | 'path' | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/tainted-sendFile.js:2:20:2:25 | 'path' | assignedToPropName |  |
-| autogenerated/TaintedPath/tainted-sendFile.js:2:20:2:25 | 'path' | calleeImports |  |
-| autogenerated/TaintedPath/tainted-sendFile.js:2:20:2:25 | 'path' | contextFunctionInterfaces |  |
-| autogenerated/TaintedPath/tainted-sendFile.js:2:20:2:25 | 'path' | contextSurroundingFunctionParameters |  |
-| autogenerated/TaintedPath/tainted-sendFile.js:2:20:2:25 | 'path' | enclosingFunctionBody |  |
-| autogenerated/TaintedPath/tainted-sendFile.js:2:20:2:25 | 'path' | enclosingFunctionName |  |
-| autogenerated/TaintedPath/tainted-sendFile.js:2:20:2:25 | 'path' | fileImports | express path |
-| autogenerated/TaintedPath/tainted-sendFile.js:2:20:2:25 | 'path' | receiverName |  |
-| autogenerated/TaintedPath/tainted-sendFile.js:2:20:2:25 | 'path' | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/tainted-sendFile.js:6:9:6:23 | '/some/path/:x' | CalleeFlexibleAccessPath | app.get |
-| autogenerated/TaintedPath/tainted-sendFile.js:6:9:6:23 | '/some/path/:x' | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/tainted-sendFile.js:6:9:6:23 | '/some/path/:x' | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/tainted-sendFile.js:6:9:6:23 | '/some/path/:x' | assignedToPropName |  |
-| autogenerated/TaintedPath/tainted-sendFile.js:6:9:6:23 | '/some/path/:x' | calleeImports | express |
-| autogenerated/TaintedPath/tainted-sendFile.js:6:9:6:23 | '/some/path/:x' | contextFunctionInterfaces |  |
-| autogenerated/TaintedPath/tainted-sendFile.js:6:9:6:23 | '/some/path/:x' | contextSurroundingFunctionParameters |  |
-| autogenerated/TaintedPath/tainted-sendFile.js:6:9:6:23 | '/some/path/:x' | enclosingFunctionBody |  |
-| autogenerated/TaintedPath/tainted-sendFile.js:6:9:6:23 | '/some/path/:x' | enclosingFunctionName |  |
-| autogenerated/TaintedPath/tainted-sendFile.js:6:9:6:23 | '/some/path/:x' | fileImports | express path |
-| autogenerated/TaintedPath/tainted-sendFile.js:6:9:6:23 | '/some/path/:x' | receiverName | app |
-| autogenerated/TaintedPath/tainted-sendFile.js:6:9:6:23 | '/some/path/:x' | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/tainted-sendFile.js:6:26:28:1 | functio ... ata/'\\n} | CalleeFlexibleAccessPath | app.get |
-| autogenerated/TaintedPath/tainted-sendFile.js:6:26:28:1 | functio ... ata/'\\n} | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/tainted-sendFile.js:6:26:28:1 | functio ... ata/'\\n} | InputArgumentIndex | 1 |
-| autogenerated/TaintedPath/tainted-sendFile.js:6:26:28:1 | functio ... ata/'\\n} | assignedToPropName |  |
-| autogenerated/TaintedPath/tainted-sendFile.js:6:26:28:1 | functio ... ata/'\\n} | calleeImports | express |
-| autogenerated/TaintedPath/tainted-sendFile.js:6:26:28:1 | functio ... ata/'\\n} | contextFunctionInterfaces |  |
-| autogenerated/TaintedPath/tainted-sendFile.js:6:26:28:1 | functio ... ata/'\\n} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/tainted-sendFile.js:6:26:28:1 | functio ... ata/'\\n} | enclosingFunctionBody |  |
-| autogenerated/TaintedPath/tainted-sendFile.js:6:26:28:1 | functio ... ata/'\\n} | enclosingFunctionName |  |
-| autogenerated/TaintedPath/tainted-sendFile.js:6:26:28:1 | functio ... ata/'\\n} | fileImports | express path |
-| autogenerated/TaintedPath/tainted-sendFile.js:6:26:28:1 | functio ... ata/'\\n} | receiverName | app |
-| autogenerated/TaintedPath/tainted-sendFile.js:6:26:28:1 | functio ... ata/'\\n} | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/tainted-sendFile.js:8:16:8:33 | req.param("gimme") | CalleeFlexibleAccessPath | res.sendFile |
-| autogenerated/TaintedPath/tainted-sendFile.js:8:16:8:33 | req.param("gimme") | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/tainted-sendFile.js:8:16:8:33 | req.param("gimme") | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/tainted-sendFile.js:8:16:8:33 | req.param("gimme") | assignedToPropName |  |
-| autogenerated/TaintedPath/tainted-sendFile.js:8:16:8:33 | req.param("gimme") | calleeImports |  |
-| autogenerated/TaintedPath/tainted-sendFile.js:8:16:8:33 | req.param("gimme") | contextFunctionInterfaces |  |
-| autogenerated/TaintedPath/tainted-sendFile.js:8:16:8:33 | req.param("gimme") | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/tainted-sendFile.js:8:16:8:33 | req.param("gimme") | enclosingFunctionBody | req res res sendFile req param gimme res sendfile req param gimme res sendFile req param gimme root process cwd res sendfile req param gimme root process cwd res sendFile req param file root req param dir homeDir path resolve . res sendFile homeDir /data/ req params x res sendfile data/ req params x res sendFile path resolve data req params x res sendfile path join data req params x res sendFile homeDir path join data req params x |
-| autogenerated/TaintedPath/tainted-sendFile.js:8:16:8:33 | req.param("gimme") | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/tainted-sendFile.js:8:16:8:33 | req.param("gimme") | fileImports | express path |
-| autogenerated/TaintedPath/tainted-sendFile.js:8:16:8:33 | req.param("gimme") | receiverName | res |
-| autogenerated/TaintedPath/tainted-sendFile.js:8:16:8:33 | req.param("gimme") | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/tainted-sendFile.js:8:26:8:32 | "gimme" | CalleeFlexibleAccessPath | req.param |
-| autogenerated/TaintedPath/tainted-sendFile.js:8:26:8:32 | "gimme" | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/tainted-sendFile.js:8:26:8:32 | "gimme" | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/tainted-sendFile.js:8:26:8:32 | "gimme" | assignedToPropName |  |
-| autogenerated/TaintedPath/tainted-sendFile.js:8:26:8:32 | "gimme" | calleeImports |  |
-| autogenerated/TaintedPath/tainted-sendFile.js:8:26:8:32 | "gimme" | contextFunctionInterfaces |  |
-| autogenerated/TaintedPath/tainted-sendFile.js:8:26:8:32 | "gimme" | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/tainted-sendFile.js:8:26:8:32 | "gimme" | enclosingFunctionBody | req res res sendFile req param gimme res sendfile req param gimme res sendFile req param gimme root process cwd res sendfile req param gimme root process cwd res sendFile req param file root req param dir homeDir path resolve . res sendFile homeDir /data/ req params x res sendfile data/ req params x res sendFile path resolve data req params x res sendfile path join data req params x res sendFile homeDir path join data req params x |
-| autogenerated/TaintedPath/tainted-sendFile.js:8:26:8:32 | "gimme" | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/tainted-sendFile.js:8:26:8:32 | "gimme" | fileImports | express path |
-| autogenerated/TaintedPath/tainted-sendFile.js:8:26:8:32 | "gimme" | receiverName | req |
-| autogenerated/TaintedPath/tainted-sendFile.js:8:26:8:32 | "gimme" | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/tainted-sendFile.js:10:16:10:33 | req.param("gimme") | CalleeFlexibleAccessPath | res.sendfile |
-| autogenerated/TaintedPath/tainted-sendFile.js:10:16:10:33 | req.param("gimme") | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/tainted-sendFile.js:10:16:10:33 | req.param("gimme") | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/tainted-sendFile.js:10:16:10:33 | req.param("gimme") | assignedToPropName |  |
-| autogenerated/TaintedPath/tainted-sendFile.js:10:16:10:33 | req.param("gimme") | calleeImports |  |
-| autogenerated/TaintedPath/tainted-sendFile.js:10:16:10:33 | req.param("gimme") | contextFunctionInterfaces |  |
-| autogenerated/TaintedPath/tainted-sendFile.js:10:16:10:33 | req.param("gimme") | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/tainted-sendFile.js:10:16:10:33 | req.param("gimme") | enclosingFunctionBody | req res res sendFile req param gimme res sendfile req param gimme res sendFile req param gimme root process cwd res sendfile req param gimme root process cwd res sendFile req param file root req param dir homeDir path resolve . res sendFile homeDir /data/ req params x res sendfile data/ req params x res sendFile path resolve data req params x res sendfile path join data req params x res sendFile homeDir path join data req params x |
-| autogenerated/TaintedPath/tainted-sendFile.js:10:16:10:33 | req.param("gimme") | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/tainted-sendFile.js:10:16:10:33 | req.param("gimme") | fileImports | express path |
-| autogenerated/TaintedPath/tainted-sendFile.js:10:16:10:33 | req.param("gimme") | receiverName | res |
-| autogenerated/TaintedPath/tainted-sendFile.js:10:16:10:33 | req.param("gimme") | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/tainted-sendFile.js:10:26:10:32 | "gimme" | CalleeFlexibleAccessPath | req.param |
-| autogenerated/TaintedPath/tainted-sendFile.js:10:26:10:32 | "gimme" | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/tainted-sendFile.js:10:26:10:32 | "gimme" | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/tainted-sendFile.js:10:26:10:32 | "gimme" | assignedToPropName |  |
-| autogenerated/TaintedPath/tainted-sendFile.js:10:26:10:32 | "gimme" | calleeImports |  |
-| autogenerated/TaintedPath/tainted-sendFile.js:10:26:10:32 | "gimme" | contextFunctionInterfaces |  |
-| autogenerated/TaintedPath/tainted-sendFile.js:10:26:10:32 | "gimme" | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/tainted-sendFile.js:10:26:10:32 | "gimme" | enclosingFunctionBody | req res res sendFile req param gimme res sendfile req param gimme res sendFile req param gimme root process cwd res sendfile req param gimme root process cwd res sendFile req param file root req param dir homeDir path resolve . res sendFile homeDir /data/ req params x res sendfile data/ req params x res sendFile path resolve data req params x res sendfile path join data req params x res sendFile homeDir path join data req params x |
-| autogenerated/TaintedPath/tainted-sendFile.js:10:26:10:32 | "gimme" | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/tainted-sendFile.js:10:26:10:32 | "gimme" | fileImports | express path |
-| autogenerated/TaintedPath/tainted-sendFile.js:10:26:10:32 | "gimme" | receiverName | req |
-| autogenerated/TaintedPath/tainted-sendFile.js:10:26:10:32 | "gimme" | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/tainted-sendFile.js:13:16:13:33 | req.param("gimme") | CalleeFlexibleAccessPath | res.sendFile |
-| autogenerated/TaintedPath/tainted-sendFile.js:13:16:13:33 | req.param("gimme") | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/tainted-sendFile.js:13:16:13:33 | req.param("gimme") | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/tainted-sendFile.js:13:16:13:33 | req.param("gimme") | assignedToPropName |  |
-| autogenerated/TaintedPath/tainted-sendFile.js:13:16:13:33 | req.param("gimme") | calleeImports |  |
-| autogenerated/TaintedPath/tainted-sendFile.js:13:16:13:33 | req.param("gimme") | contextFunctionInterfaces |  |
-| autogenerated/TaintedPath/tainted-sendFile.js:13:16:13:33 | req.param("gimme") | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/tainted-sendFile.js:13:16:13:33 | req.param("gimme") | enclosingFunctionBody | req res res sendFile req param gimme res sendfile req param gimme res sendFile req param gimme root process cwd res sendfile req param gimme root process cwd res sendFile req param file root req param dir homeDir path resolve . res sendFile homeDir /data/ req params x res sendfile data/ req params x res sendFile path resolve data req params x res sendfile path join data req params x res sendFile homeDir path join data req params x |
-| autogenerated/TaintedPath/tainted-sendFile.js:13:16:13:33 | req.param("gimme") | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/tainted-sendFile.js:13:16:13:33 | req.param("gimme") | fileImports | express path |
-| autogenerated/TaintedPath/tainted-sendFile.js:13:16:13:33 | req.param("gimme") | receiverName | res |
-| autogenerated/TaintedPath/tainted-sendFile.js:13:16:13:33 | req.param("gimme") | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/tainted-sendFile.js:13:26:13:32 | "gimme" | CalleeFlexibleAccessPath | req.param |
-| autogenerated/TaintedPath/tainted-sendFile.js:13:26:13:32 | "gimme" | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/tainted-sendFile.js:13:26:13:32 | "gimme" | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/tainted-sendFile.js:13:26:13:32 | "gimme" | assignedToPropName |  |
-| autogenerated/TaintedPath/tainted-sendFile.js:13:26:13:32 | "gimme" | calleeImports |  |
-| autogenerated/TaintedPath/tainted-sendFile.js:13:26:13:32 | "gimme" | contextFunctionInterfaces |  |
-| autogenerated/TaintedPath/tainted-sendFile.js:13:26:13:32 | "gimme" | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/tainted-sendFile.js:13:26:13:32 | "gimme" | enclosingFunctionBody | req res res sendFile req param gimme res sendfile req param gimme res sendFile req param gimme root process cwd res sendfile req param gimme root process cwd res sendFile req param file root req param dir homeDir path resolve . res sendFile homeDir /data/ req params x res sendfile data/ req params x res sendFile path resolve data req params x res sendfile path join data req params x res sendFile homeDir path join data req params x |
-| autogenerated/TaintedPath/tainted-sendFile.js:13:26:13:32 | "gimme" | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/tainted-sendFile.js:13:26:13:32 | "gimme" | fileImports | express path |
-| autogenerated/TaintedPath/tainted-sendFile.js:13:26:13:32 | "gimme" | receiverName | req |
-| autogenerated/TaintedPath/tainted-sendFile.js:13:26:13:32 | "gimme" | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/tainted-sendFile.js:13:36:13:58 | { root: ... cwd() } | CalleeFlexibleAccessPath | res.sendFile |
-| autogenerated/TaintedPath/tainted-sendFile.js:13:36:13:58 | { root: ... cwd() } | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/tainted-sendFile.js:13:36:13:58 | { root: ... cwd() } | InputArgumentIndex | 1 |
-| autogenerated/TaintedPath/tainted-sendFile.js:13:36:13:58 | { root: ... cwd() } | assignedToPropName |  |
-| autogenerated/TaintedPath/tainted-sendFile.js:13:36:13:58 | { root: ... cwd() } | calleeImports |  |
-| autogenerated/TaintedPath/tainted-sendFile.js:13:36:13:58 | { root: ... cwd() } | contextFunctionInterfaces |  |
-| autogenerated/TaintedPath/tainted-sendFile.js:13:36:13:58 | { root: ... cwd() } | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/tainted-sendFile.js:13:36:13:58 | { root: ... cwd() } | enclosingFunctionBody | req res res sendFile req param gimme res sendfile req param gimme res sendFile req param gimme root process cwd res sendfile req param gimme root process cwd res sendFile req param file root req param dir homeDir path resolve . res sendFile homeDir /data/ req params x res sendfile data/ req params x res sendFile path resolve data req params x res sendfile path join data req params x res sendFile homeDir path join data req params x |
-| autogenerated/TaintedPath/tainted-sendFile.js:13:36:13:58 | { root: ... cwd() } | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/tainted-sendFile.js:13:36:13:58 | { root: ... cwd() } | fileImports | express path |
-| autogenerated/TaintedPath/tainted-sendFile.js:13:36:13:58 | { root: ... cwd() } | receiverName | res |
-| autogenerated/TaintedPath/tainted-sendFile.js:13:36:13:58 | { root: ... cwd() } | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/tainted-sendFile.js:13:44:13:56 | process.cwd() | CalleeFlexibleAccessPath | res.sendFile |
-| autogenerated/TaintedPath/tainted-sendFile.js:13:44:13:56 | process.cwd() | InputAccessPathFromCallee | 1.root |
-| autogenerated/TaintedPath/tainted-sendFile.js:13:44:13:56 | process.cwd() | InputArgumentIndex | 1 |
-| autogenerated/TaintedPath/tainted-sendFile.js:13:44:13:56 | process.cwd() | assignedToPropName | root |
-| autogenerated/TaintedPath/tainted-sendFile.js:13:44:13:56 | process.cwd() | calleeImports |  |
-| autogenerated/TaintedPath/tainted-sendFile.js:13:44:13:56 | process.cwd() | contextFunctionInterfaces |  |
-| autogenerated/TaintedPath/tainted-sendFile.js:13:44:13:56 | process.cwd() | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/tainted-sendFile.js:13:44:13:56 | process.cwd() | enclosingFunctionBody | req res res sendFile req param gimme res sendfile req param gimme res sendFile req param gimme root process cwd res sendfile req param gimme root process cwd res sendFile req param file root req param dir homeDir path resolve . res sendFile homeDir /data/ req params x res sendfile data/ req params x res sendFile path resolve data req params x res sendfile path join data req params x res sendFile homeDir path join data req params x |
-| autogenerated/TaintedPath/tainted-sendFile.js:13:44:13:56 | process.cwd() | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/tainted-sendFile.js:13:44:13:56 | process.cwd() | fileImports | express path |
-| autogenerated/TaintedPath/tainted-sendFile.js:13:44:13:56 | process.cwd() | receiverName |  |
-| autogenerated/TaintedPath/tainted-sendFile.js:13:44:13:56 | process.cwd() | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/tainted-sendFile.js:15:16:15:33 | req.param("gimme") | CalleeFlexibleAccessPath | res.sendfile |
-| autogenerated/TaintedPath/tainted-sendFile.js:15:16:15:33 | req.param("gimme") | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/tainted-sendFile.js:15:16:15:33 | req.param("gimme") | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/tainted-sendFile.js:15:16:15:33 | req.param("gimme") | assignedToPropName |  |
-| autogenerated/TaintedPath/tainted-sendFile.js:15:16:15:33 | req.param("gimme") | calleeImports |  |
-| autogenerated/TaintedPath/tainted-sendFile.js:15:16:15:33 | req.param("gimme") | contextFunctionInterfaces |  |
-| autogenerated/TaintedPath/tainted-sendFile.js:15:16:15:33 | req.param("gimme") | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/tainted-sendFile.js:15:16:15:33 | req.param("gimme") | enclosingFunctionBody | req res res sendFile req param gimme res sendfile req param gimme res sendFile req param gimme root process cwd res sendfile req param gimme root process cwd res sendFile req param file root req param dir homeDir path resolve . res sendFile homeDir /data/ req params x res sendfile data/ req params x res sendFile path resolve data req params x res sendfile path join data req params x res sendFile homeDir path join data req params x |
-| autogenerated/TaintedPath/tainted-sendFile.js:15:16:15:33 | req.param("gimme") | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/tainted-sendFile.js:15:16:15:33 | req.param("gimme") | fileImports | express path |
-| autogenerated/TaintedPath/tainted-sendFile.js:15:16:15:33 | req.param("gimme") | receiverName | res |
-| autogenerated/TaintedPath/tainted-sendFile.js:15:16:15:33 | req.param("gimme") | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/tainted-sendFile.js:15:26:15:32 | "gimme" | CalleeFlexibleAccessPath | req.param |
-| autogenerated/TaintedPath/tainted-sendFile.js:15:26:15:32 | "gimme" | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/tainted-sendFile.js:15:26:15:32 | "gimme" | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/tainted-sendFile.js:15:26:15:32 | "gimme" | assignedToPropName |  |
-| autogenerated/TaintedPath/tainted-sendFile.js:15:26:15:32 | "gimme" | calleeImports |  |
-| autogenerated/TaintedPath/tainted-sendFile.js:15:26:15:32 | "gimme" | contextFunctionInterfaces |  |
-| autogenerated/TaintedPath/tainted-sendFile.js:15:26:15:32 | "gimme" | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/tainted-sendFile.js:15:26:15:32 | "gimme" | enclosingFunctionBody | req res res sendFile req param gimme res sendfile req param gimme res sendFile req param gimme root process cwd res sendfile req param gimme root process cwd res sendFile req param file root req param dir homeDir path resolve . res sendFile homeDir /data/ req params x res sendfile data/ req params x res sendFile path resolve data req params x res sendfile path join data req params x res sendFile homeDir path join data req params x |
-| autogenerated/TaintedPath/tainted-sendFile.js:15:26:15:32 | "gimme" | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/tainted-sendFile.js:15:26:15:32 | "gimme" | fileImports | express path |
-| autogenerated/TaintedPath/tainted-sendFile.js:15:26:15:32 | "gimme" | receiverName | req |
-| autogenerated/TaintedPath/tainted-sendFile.js:15:26:15:32 | "gimme" | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/tainted-sendFile.js:15:36:15:58 | { root: ... cwd() } | CalleeFlexibleAccessPath | res.sendfile |
-| autogenerated/TaintedPath/tainted-sendFile.js:15:36:15:58 | { root: ... cwd() } | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/tainted-sendFile.js:15:36:15:58 | { root: ... cwd() } | InputArgumentIndex | 1 |
-| autogenerated/TaintedPath/tainted-sendFile.js:15:36:15:58 | { root: ... cwd() } | assignedToPropName |  |
-| autogenerated/TaintedPath/tainted-sendFile.js:15:36:15:58 | { root: ... cwd() } | calleeImports |  |
-| autogenerated/TaintedPath/tainted-sendFile.js:15:36:15:58 | { root: ... cwd() } | contextFunctionInterfaces |  |
-| autogenerated/TaintedPath/tainted-sendFile.js:15:36:15:58 | { root: ... cwd() } | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/tainted-sendFile.js:15:36:15:58 | { root: ... cwd() } | enclosingFunctionBody | req res res sendFile req param gimme res sendfile req param gimme res sendFile req param gimme root process cwd res sendfile req param gimme root process cwd res sendFile req param file root req param dir homeDir path resolve . res sendFile homeDir /data/ req params x res sendfile data/ req params x res sendFile path resolve data req params x res sendfile path join data req params x res sendFile homeDir path join data req params x |
-| autogenerated/TaintedPath/tainted-sendFile.js:15:36:15:58 | { root: ... cwd() } | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/tainted-sendFile.js:15:36:15:58 | { root: ... cwd() } | fileImports | express path |
-| autogenerated/TaintedPath/tainted-sendFile.js:15:36:15:58 | { root: ... cwd() } | receiverName | res |
-| autogenerated/TaintedPath/tainted-sendFile.js:15:36:15:58 | { root: ... cwd() } | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/tainted-sendFile.js:15:44:15:56 | process.cwd() | CalleeFlexibleAccessPath | res.sendfile |
-| autogenerated/TaintedPath/tainted-sendFile.js:15:44:15:56 | process.cwd() | InputAccessPathFromCallee | 1.root |
-| autogenerated/TaintedPath/tainted-sendFile.js:15:44:15:56 | process.cwd() | InputArgumentIndex | 1 |
-| autogenerated/TaintedPath/tainted-sendFile.js:15:44:15:56 | process.cwd() | assignedToPropName | root |
-| autogenerated/TaintedPath/tainted-sendFile.js:15:44:15:56 | process.cwd() | calleeImports |  |
-| autogenerated/TaintedPath/tainted-sendFile.js:15:44:15:56 | process.cwd() | contextFunctionInterfaces |  |
-| autogenerated/TaintedPath/tainted-sendFile.js:15:44:15:56 | process.cwd() | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/tainted-sendFile.js:15:44:15:56 | process.cwd() | enclosingFunctionBody | req res res sendFile req param gimme res sendfile req param gimme res sendFile req param gimme root process cwd res sendfile req param gimme root process cwd res sendFile req param file root req param dir homeDir path resolve . res sendFile homeDir /data/ req params x res sendfile data/ req params x res sendFile path resolve data req params x res sendfile path join data req params x res sendFile homeDir path join data req params x |
-| autogenerated/TaintedPath/tainted-sendFile.js:15:44:15:56 | process.cwd() | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/tainted-sendFile.js:15:44:15:56 | process.cwd() | fileImports | express path |
-| autogenerated/TaintedPath/tainted-sendFile.js:15:44:15:56 | process.cwd() | receiverName |  |
-| autogenerated/TaintedPath/tainted-sendFile.js:15:44:15:56 | process.cwd() | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/tainted-sendFile.js:18:16:18:32 | req.param("file") | CalleeFlexibleAccessPath | res.sendFile |
-| autogenerated/TaintedPath/tainted-sendFile.js:18:16:18:32 | req.param("file") | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/tainted-sendFile.js:18:16:18:32 | req.param("file") | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/tainted-sendFile.js:18:16:18:32 | req.param("file") | assignedToPropName |  |
-| autogenerated/TaintedPath/tainted-sendFile.js:18:16:18:32 | req.param("file") | calleeImports |  |
-| autogenerated/TaintedPath/tainted-sendFile.js:18:16:18:32 | req.param("file") | contextFunctionInterfaces |  |
-| autogenerated/TaintedPath/tainted-sendFile.js:18:16:18:32 | req.param("file") | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/tainted-sendFile.js:18:16:18:32 | req.param("file") | enclosingFunctionBody | req res res sendFile req param gimme res sendfile req param gimme res sendFile req param gimme root process cwd res sendfile req param gimme root process cwd res sendFile req param file root req param dir homeDir path resolve . res sendFile homeDir /data/ req params x res sendfile data/ req params x res sendFile path resolve data req params x res sendfile path join data req params x res sendFile homeDir path join data req params x |
-| autogenerated/TaintedPath/tainted-sendFile.js:18:16:18:32 | req.param("file") | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/tainted-sendFile.js:18:16:18:32 | req.param("file") | fileImports | express path |
-| autogenerated/TaintedPath/tainted-sendFile.js:18:16:18:32 | req.param("file") | receiverName | res |
-| autogenerated/TaintedPath/tainted-sendFile.js:18:16:18:32 | req.param("file") | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/tainted-sendFile.js:18:26:18:31 | "file" | CalleeFlexibleAccessPath | req.param |
-| autogenerated/TaintedPath/tainted-sendFile.js:18:26:18:31 | "file" | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/tainted-sendFile.js:18:26:18:31 | "file" | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/tainted-sendFile.js:18:26:18:31 | "file" | assignedToPropName |  |
-| autogenerated/TaintedPath/tainted-sendFile.js:18:26:18:31 | "file" | calleeImports |  |
-| autogenerated/TaintedPath/tainted-sendFile.js:18:26:18:31 | "file" | contextFunctionInterfaces |  |
-| autogenerated/TaintedPath/tainted-sendFile.js:18:26:18:31 | "file" | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/tainted-sendFile.js:18:26:18:31 | "file" | enclosingFunctionBody | req res res sendFile req param gimme res sendfile req param gimme res sendFile req param gimme root process cwd res sendfile req param gimme root process cwd res sendFile req param file root req param dir homeDir path resolve . res sendFile homeDir /data/ req params x res sendfile data/ req params x res sendFile path resolve data req params x res sendfile path join data req params x res sendFile homeDir path join data req params x |
-| autogenerated/TaintedPath/tainted-sendFile.js:18:26:18:31 | "file" | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/tainted-sendFile.js:18:26:18:31 | "file" | fileImports | express path |
-| autogenerated/TaintedPath/tainted-sendFile.js:18:26:18:31 | "file" | receiverName | req |
-| autogenerated/TaintedPath/tainted-sendFile.js:18:26:18:31 | "file" | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/tainted-sendFile.js:18:35:18:60 | { root: ... dir") } | CalleeFlexibleAccessPath | res.sendFile |
-| autogenerated/TaintedPath/tainted-sendFile.js:18:35:18:60 | { root: ... dir") } | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/tainted-sendFile.js:18:35:18:60 | { root: ... dir") } | InputArgumentIndex | 1 |
-| autogenerated/TaintedPath/tainted-sendFile.js:18:35:18:60 | { root: ... dir") } | assignedToPropName |  |
-| autogenerated/TaintedPath/tainted-sendFile.js:18:35:18:60 | { root: ... dir") } | calleeImports |  |
-| autogenerated/TaintedPath/tainted-sendFile.js:18:35:18:60 | { root: ... dir") } | contextFunctionInterfaces |  |
-| autogenerated/TaintedPath/tainted-sendFile.js:18:35:18:60 | { root: ... dir") } | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/tainted-sendFile.js:18:35:18:60 | { root: ... dir") } | enclosingFunctionBody | req res res sendFile req param gimme res sendfile req param gimme res sendFile req param gimme root process cwd res sendfile req param gimme root process cwd res sendFile req param file root req param dir homeDir path resolve . res sendFile homeDir /data/ req params x res sendfile data/ req params x res sendFile path resolve data req params x res sendfile path join data req params x res sendFile homeDir path join data req params x |
-| autogenerated/TaintedPath/tainted-sendFile.js:18:35:18:60 | { root: ... dir") } | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/tainted-sendFile.js:18:35:18:60 | { root: ... dir") } | fileImports | express path |
-| autogenerated/TaintedPath/tainted-sendFile.js:18:35:18:60 | { root: ... dir") } | receiverName | res |
-| autogenerated/TaintedPath/tainted-sendFile.js:18:35:18:60 | { root: ... dir") } | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/tainted-sendFile.js:18:43:18:58 | req.param("dir") | CalleeFlexibleAccessPath | res.sendFile |
-| autogenerated/TaintedPath/tainted-sendFile.js:18:43:18:58 | req.param("dir") | InputAccessPathFromCallee | 1.root |
-| autogenerated/TaintedPath/tainted-sendFile.js:18:43:18:58 | req.param("dir") | InputArgumentIndex | 1 |
-| autogenerated/TaintedPath/tainted-sendFile.js:18:43:18:58 | req.param("dir") | assignedToPropName | root |
-| autogenerated/TaintedPath/tainted-sendFile.js:18:43:18:58 | req.param("dir") | calleeImports |  |
-| autogenerated/TaintedPath/tainted-sendFile.js:18:43:18:58 | req.param("dir") | contextFunctionInterfaces |  |
-| autogenerated/TaintedPath/tainted-sendFile.js:18:43:18:58 | req.param("dir") | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/tainted-sendFile.js:18:43:18:58 | req.param("dir") | enclosingFunctionBody | req res res sendFile req param gimme res sendfile req param gimme res sendFile req param gimme root process cwd res sendfile req param gimme root process cwd res sendFile req param file root req param dir homeDir path resolve . res sendFile homeDir /data/ req params x res sendfile data/ req params x res sendFile path resolve data req params x res sendfile path join data req params x res sendFile homeDir path join data req params x |
-| autogenerated/TaintedPath/tainted-sendFile.js:18:43:18:58 | req.param("dir") | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/tainted-sendFile.js:18:43:18:58 | req.param("dir") | fileImports | express path |
-| autogenerated/TaintedPath/tainted-sendFile.js:18:43:18:58 | req.param("dir") | receiverName |  |
-| autogenerated/TaintedPath/tainted-sendFile.js:18:43:18:58 | req.param("dir") | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/tainted-sendFile.js:18:53:18:57 | "dir" | CalleeFlexibleAccessPath | req.param |
-| autogenerated/TaintedPath/tainted-sendFile.js:18:53:18:57 | "dir" | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/tainted-sendFile.js:18:53:18:57 | "dir" | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/tainted-sendFile.js:18:53:18:57 | "dir" | assignedToPropName |  |
-| autogenerated/TaintedPath/tainted-sendFile.js:18:53:18:57 | "dir" | calleeImports |  |
-| autogenerated/TaintedPath/tainted-sendFile.js:18:53:18:57 | "dir" | contextFunctionInterfaces |  |
-| autogenerated/TaintedPath/tainted-sendFile.js:18:53:18:57 | "dir" | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/tainted-sendFile.js:18:53:18:57 | "dir" | enclosingFunctionBody | req res res sendFile req param gimme res sendfile req param gimme res sendFile req param gimme root process cwd res sendfile req param gimme root process cwd res sendFile req param file root req param dir homeDir path resolve . res sendFile homeDir /data/ req params x res sendfile data/ req params x res sendFile path resolve data req params x res sendfile path join data req params x res sendFile homeDir path join data req params x |
-| autogenerated/TaintedPath/tainted-sendFile.js:18:53:18:57 | "dir" | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/tainted-sendFile.js:18:53:18:57 | "dir" | fileImports | express path |
-| autogenerated/TaintedPath/tainted-sendFile.js:18:53:18:57 | "dir" | receiverName | req |
-| autogenerated/TaintedPath/tainted-sendFile.js:18:53:18:57 | "dir" | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/tainted-sendFile.js:21:16:21:48 | homeDir ... arams.x | CalleeFlexibleAccessPath | res.sendFile |
-| autogenerated/TaintedPath/tainted-sendFile.js:21:16:21:48 | homeDir ... arams.x | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/tainted-sendFile.js:21:16:21:48 | homeDir ... arams.x | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/tainted-sendFile.js:21:16:21:48 | homeDir ... arams.x | assignedToPropName |  |
-| autogenerated/TaintedPath/tainted-sendFile.js:21:16:21:48 | homeDir ... arams.x | calleeImports |  |
-| autogenerated/TaintedPath/tainted-sendFile.js:21:16:21:48 | homeDir ... arams.x | contextFunctionInterfaces |  |
-| autogenerated/TaintedPath/tainted-sendFile.js:21:16:21:48 | homeDir ... arams.x | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/tainted-sendFile.js:21:16:21:48 | homeDir ... arams.x | enclosingFunctionBody | req res res sendFile req param gimme res sendfile req param gimme res sendFile req param gimme root process cwd res sendfile req param gimme root process cwd res sendFile req param file root req param dir homeDir path resolve . res sendFile homeDir /data/ req params x res sendfile data/ req params x res sendFile path resolve data req params x res sendfile path join data req params x res sendFile homeDir path join data req params x |
-| autogenerated/TaintedPath/tainted-sendFile.js:21:16:21:48 | homeDir ... arams.x | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/tainted-sendFile.js:21:16:21:48 | homeDir ... arams.x | fileImports | express path |
-| autogenerated/TaintedPath/tainted-sendFile.js:21:16:21:48 | homeDir ... arams.x | receiverName | res |
-| autogenerated/TaintedPath/tainted-sendFile.js:21:16:21:48 | homeDir ... arams.x | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/tainted-sendFile.js:22:16:22:37 | 'data/' ... arams.x | CalleeFlexibleAccessPath | res.sendfile |
-| autogenerated/TaintedPath/tainted-sendFile.js:22:16:22:37 | 'data/' ... arams.x | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/tainted-sendFile.js:22:16:22:37 | 'data/' ... arams.x | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/tainted-sendFile.js:22:16:22:37 | 'data/' ... arams.x | assignedToPropName |  |
-| autogenerated/TaintedPath/tainted-sendFile.js:22:16:22:37 | 'data/' ... arams.x | calleeImports |  |
-| autogenerated/TaintedPath/tainted-sendFile.js:22:16:22:37 | 'data/' ... arams.x | contextFunctionInterfaces |  |
-| autogenerated/TaintedPath/tainted-sendFile.js:22:16:22:37 | 'data/' ... arams.x | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/tainted-sendFile.js:22:16:22:37 | 'data/' ... arams.x | enclosingFunctionBody | req res res sendFile req param gimme res sendfile req param gimme res sendFile req param gimme root process cwd res sendfile req param gimme root process cwd res sendFile req param file root req param dir homeDir path resolve . res sendFile homeDir /data/ req params x res sendfile data/ req params x res sendFile path resolve data req params x res sendfile path join data req params x res sendFile homeDir path join data req params x |
-| autogenerated/TaintedPath/tainted-sendFile.js:22:16:22:37 | 'data/' ... arams.x | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/tainted-sendFile.js:22:16:22:37 | 'data/' ... arams.x | fileImports | express path |
-| autogenerated/TaintedPath/tainted-sendFile.js:22:16:22:37 | 'data/' ... arams.x | receiverName | res |
-| autogenerated/TaintedPath/tainted-sendFile.js:22:16:22:37 | 'data/' ... arams.x | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/tainted-sendFile.js:24:16:24:49 | path.re ... rams.x) | CalleeFlexibleAccessPath | res.sendFile |
-| autogenerated/TaintedPath/tainted-sendFile.js:24:16:24:49 | path.re ... rams.x) | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/tainted-sendFile.js:24:16:24:49 | path.re ... rams.x) | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/tainted-sendFile.js:24:16:24:49 | path.re ... rams.x) | assignedToPropName |  |
-| autogenerated/TaintedPath/tainted-sendFile.js:24:16:24:49 | path.re ... rams.x) | calleeImports |  |
-| autogenerated/TaintedPath/tainted-sendFile.js:24:16:24:49 | path.re ... rams.x) | contextFunctionInterfaces |  |
-| autogenerated/TaintedPath/tainted-sendFile.js:24:16:24:49 | path.re ... rams.x) | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/tainted-sendFile.js:24:16:24:49 | path.re ... rams.x) | enclosingFunctionBody | req res res sendFile req param gimme res sendfile req param gimme res sendFile req param gimme root process cwd res sendfile req param gimme root process cwd res sendFile req param file root req param dir homeDir path resolve . res sendFile homeDir /data/ req params x res sendfile data/ req params x res sendFile path resolve data req params x res sendfile path join data req params x res sendFile homeDir path join data req params x |
-| autogenerated/TaintedPath/tainted-sendFile.js:24:16:24:49 | path.re ... rams.x) | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/tainted-sendFile.js:24:16:24:49 | path.re ... rams.x) | fileImports | express path |
-| autogenerated/TaintedPath/tainted-sendFile.js:24:16:24:49 | path.re ... rams.x) | receiverName | res |
-| autogenerated/TaintedPath/tainted-sendFile.js:24:16:24:49 | path.re ... rams.x) | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/tainted-sendFile.js:25:16:25:46 | path.jo ... rams.x) | CalleeFlexibleAccessPath | res.sendfile |
-| autogenerated/TaintedPath/tainted-sendFile.js:25:16:25:46 | path.jo ... rams.x) | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/tainted-sendFile.js:25:16:25:46 | path.jo ... rams.x) | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/tainted-sendFile.js:25:16:25:46 | path.jo ... rams.x) | assignedToPropName |  |
-| autogenerated/TaintedPath/tainted-sendFile.js:25:16:25:46 | path.jo ... rams.x) | calleeImports |  |
-| autogenerated/TaintedPath/tainted-sendFile.js:25:16:25:46 | path.jo ... rams.x) | contextFunctionInterfaces |  |
-| autogenerated/TaintedPath/tainted-sendFile.js:25:16:25:46 | path.jo ... rams.x) | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/tainted-sendFile.js:25:16:25:46 | path.jo ... rams.x) | enclosingFunctionBody | req res res sendFile req param gimme res sendfile req param gimme res sendFile req param gimme root process cwd res sendfile req param gimme root process cwd res sendFile req param file root req param dir homeDir path resolve . res sendFile homeDir /data/ req params x res sendfile data/ req params x res sendFile path resolve data req params x res sendfile path join data req params x res sendFile homeDir path join data req params x |
-| autogenerated/TaintedPath/tainted-sendFile.js:25:16:25:46 | path.jo ... rams.x) | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/tainted-sendFile.js:25:16:25:46 | path.jo ... rams.x) | fileImports | express path |
-| autogenerated/TaintedPath/tainted-sendFile.js:25:16:25:46 | path.jo ... rams.x) | receiverName | res |
-| autogenerated/TaintedPath/tainted-sendFile.js:25:16:25:46 | path.jo ... rams.x) | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/tainted-sendFile.js:27:16:27:56 | homeDir ... rams.x) | CalleeFlexibleAccessPath | res.sendFile |
-| autogenerated/TaintedPath/tainted-sendFile.js:27:16:27:56 | homeDir ... rams.x) | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/tainted-sendFile.js:27:16:27:56 | homeDir ... rams.x) | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/tainted-sendFile.js:27:16:27:56 | homeDir ... rams.x) | assignedToPropName |  |
-| autogenerated/TaintedPath/tainted-sendFile.js:27:16:27:56 | homeDir ... rams.x) | calleeImports |  |
-| autogenerated/TaintedPath/tainted-sendFile.js:27:16:27:56 | homeDir ... rams.x) | contextFunctionInterfaces |  |
-| autogenerated/TaintedPath/tainted-sendFile.js:27:16:27:56 | homeDir ... rams.x) | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/tainted-sendFile.js:27:16:27:56 | homeDir ... rams.x) | enclosingFunctionBody | req res res sendFile req param gimme res sendfile req param gimme res sendFile req param gimme root process cwd res sendfile req param gimme root process cwd res sendFile req param file root req param dir homeDir path resolve . res sendFile homeDir /data/ req params x res sendfile data/ req params x res sendFile path resolve data req params x res sendfile path join data req params x res sendFile homeDir path join data req params x |
-| autogenerated/TaintedPath/tainted-sendFile.js:27:16:27:56 | homeDir ... rams.x) | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/tainted-sendFile.js:27:16:27:56 | homeDir ... rams.x) | fileImports | express path |
-| autogenerated/TaintedPath/tainted-sendFile.js:27:16:27:56 | homeDir ... rams.x) | receiverName | res |
-| autogenerated/TaintedPath/tainted-sendFile.js:27:16:27:56 | homeDir ... rams.x) | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:1:18:1:21 | 'fs' | CalleeFlexibleAccessPath | require |
-| autogenerated/TaintedPath/tainted-string-steps.js:1:18:1:21 | 'fs' | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:1:18:1:21 | 'fs' | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/tainted-string-steps.js:1:18:1:21 | 'fs' | assignedToPropName |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:1:18:1:21 | 'fs' | calleeImports |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:1:18:1:21 | 'fs' | contextFunctionInterfaces |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:1:18:1:21 | 'fs' | contextSurroundingFunctionParameters |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:1:18:1:21 | 'fs' | enclosingFunctionBody |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:1:18:1:21 | 'fs' | enclosingFunctionName |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:1:18:1:21 | 'fs' | fileImports | fs http url |
-| autogenerated/TaintedPath/tainted-string-steps.js:1:18:1:21 | 'fs' | receiverName |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:1:18:1:21 | 'fs' | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:2:20:2:25 | 'http' | CalleeFlexibleAccessPath | require |
-| autogenerated/TaintedPath/tainted-string-steps.js:2:20:2:25 | 'http' | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:2:20:2:25 | 'http' | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/tainted-string-steps.js:2:20:2:25 | 'http' | assignedToPropName |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:2:20:2:25 | 'http' | calleeImports |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:2:20:2:25 | 'http' | contextFunctionInterfaces |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:2:20:2:25 | 'http' | contextSurroundingFunctionParameters |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:2:20:2:25 | 'http' | enclosingFunctionBody |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:2:20:2:25 | 'http' | enclosingFunctionName |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:2:20:2:25 | 'http' | fileImports | fs http url |
-| autogenerated/TaintedPath/tainted-string-steps.js:2:20:2:25 | 'http' | receiverName |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:2:20:2:25 | 'http' | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:3:19:3:23 | 'url' | CalleeFlexibleAccessPath | require |
-| autogenerated/TaintedPath/tainted-string-steps.js:3:19:3:23 | 'url' | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:3:19:3:23 | 'url' | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/tainted-string-steps.js:3:19:3:23 | 'url' | assignedToPropName |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:3:19:3:23 | 'url' | calleeImports |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:3:19:3:23 | 'url' | contextFunctionInterfaces |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:3:19:3:23 | 'url' | contextSurroundingFunctionParameters |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:3:19:3:23 | 'url' | enclosingFunctionBody |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:3:19:3:23 | 'url' | enclosingFunctionName |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:3:19:3:23 | 'url' | fileImports | fs http url |
-| autogenerated/TaintedPath/tainted-string-steps.js:3:19:3:23 | 'url' | receiverName |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:3:19:3:23 | 'url' | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:5:32:29:1 | functio ... ENCY]\\n} | CalleeFlexibleAccessPath | http.createServer |
-| autogenerated/TaintedPath/tainted-string-steps.js:5:32:29:1 | functio ... ENCY]\\n} | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:5:32:29:1 | functio ... ENCY]\\n} | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/tainted-string-steps.js:5:32:29:1 | functio ... ENCY]\\n} | assignedToPropName |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:5:32:29:1 | functio ... ENCY]\\n} | calleeImports | http |
-| autogenerated/TaintedPath/tainted-string-steps.js:5:32:29:1 | functio ... ENCY]\\n} | contextFunctionInterfaces |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:5:32:29:1 | functio ... ENCY]\\n} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/tainted-string-steps.js:5:32:29:1 | functio ... ENCY]\\n} | enclosingFunctionBody |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:5:32:29:1 | functio ... ENCY]\\n} | enclosingFunctionName |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:5:32:29:1 | functio ... ENCY]\\n} | fileImports | fs http url |
-| autogenerated/TaintedPath/tainted-string-steps.js:5:32:29:1 | functio ... ENCY]\\n} | receiverName | http |
-| autogenerated/TaintedPath/tainted-string-steps.js:5:32:29:1 | functio ... ENCY]\\n} | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:7:18:7:37 | path.substring(i, j) | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/tainted-string-steps.js:7:18:7:37 | path.substring(i, j) | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:7:18:7:37 | path.substring(i, j) | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/tainted-string-steps.js:7:18:7:37 | path.substring(i, j) | assignedToPropName |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:7:18:7:37 | path.substring(i, j) | calleeImports | fs |
-| autogenerated/TaintedPath/tainted-string-steps.js:7:18:7:37 | path.substring(i, j) | contextFunctionInterfaces |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:7:18:7:37 | path.substring(i, j) | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/tainted-string-steps.js:7:18:7:37 | path.substring(i, j) | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path substring i j fs readFileSync path substring 4 fs readFileSync path substring 0 i fs readFileSync path substr 4 fs readFileSync path slice 4 fs readFileSync path concat unknown fs readFileSync unknown concat path fs readFileSync unknown concat unknown path fs readFileSync path trim fs readFileSync path toLowerCase fs readFileSync path split / fs readFileSync path 0 split / 0 fs readFileSync path split / i fs readFileSync path split /\\// i fs readFileSync path 0 split ? 0 fs readFileSync path split unknown i fs readFileSync path split unknown whatever fs readFileSync path split unknown fs readFileSync path split ? i |
-| autogenerated/TaintedPath/tainted-string-steps.js:7:18:7:37 | path.substring(i, j) | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/tainted-string-steps.js:7:18:7:37 | path.substring(i, j) | fileImports | fs http url |
-| autogenerated/TaintedPath/tainted-string-steps.js:7:18:7:37 | path.substring(i, j) | receiverName | fs |
-| autogenerated/TaintedPath/tainted-string-steps.js:7:18:7:37 | path.substring(i, j) | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:7:33:7:33 | i | CalleeFlexibleAccessPath | path.substring |
-| autogenerated/TaintedPath/tainted-string-steps.js:7:33:7:33 | i | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:7:33:7:33 | i | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/tainted-string-steps.js:7:33:7:33 | i | assignedToPropName |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:7:33:7:33 | i | calleeImports | url |
-| autogenerated/TaintedPath/tainted-string-steps.js:7:33:7:33 | i | contextFunctionInterfaces |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:7:33:7:33 | i | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/tainted-string-steps.js:7:33:7:33 | i | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path substring i j fs readFileSync path substring 4 fs readFileSync path substring 0 i fs readFileSync path substr 4 fs readFileSync path slice 4 fs readFileSync path concat unknown fs readFileSync unknown concat path fs readFileSync unknown concat unknown path fs readFileSync path trim fs readFileSync path toLowerCase fs readFileSync path split / fs readFileSync path 0 split / 0 fs readFileSync path split / i fs readFileSync path split /\\// i fs readFileSync path 0 split ? 0 fs readFileSync path split unknown i fs readFileSync path split unknown whatever fs readFileSync path split unknown fs readFileSync path split ? i |
-| autogenerated/TaintedPath/tainted-string-steps.js:7:33:7:33 | i | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/tainted-string-steps.js:7:33:7:33 | i | fileImports | fs http url |
-| autogenerated/TaintedPath/tainted-string-steps.js:7:33:7:33 | i | receiverName | path |
-| autogenerated/TaintedPath/tainted-string-steps.js:7:33:7:33 | i | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:7:36:7:36 | j | CalleeFlexibleAccessPath | path.substring |
-| autogenerated/TaintedPath/tainted-string-steps.js:7:36:7:36 | j | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:7:36:7:36 | j | InputArgumentIndex | 1 |
-| autogenerated/TaintedPath/tainted-string-steps.js:7:36:7:36 | j | assignedToPropName |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:7:36:7:36 | j | calleeImports | url |
-| autogenerated/TaintedPath/tainted-string-steps.js:7:36:7:36 | j | contextFunctionInterfaces |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:7:36:7:36 | j | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/tainted-string-steps.js:7:36:7:36 | j | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path substring i j fs readFileSync path substring 4 fs readFileSync path substring 0 i fs readFileSync path substr 4 fs readFileSync path slice 4 fs readFileSync path concat unknown fs readFileSync unknown concat path fs readFileSync unknown concat unknown path fs readFileSync path trim fs readFileSync path toLowerCase fs readFileSync path split / fs readFileSync path 0 split / 0 fs readFileSync path split / i fs readFileSync path split /\\// i fs readFileSync path 0 split ? 0 fs readFileSync path split unknown i fs readFileSync path split unknown whatever fs readFileSync path split unknown fs readFileSync path split ? i |
-| autogenerated/TaintedPath/tainted-string-steps.js:7:36:7:36 | j | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/tainted-string-steps.js:7:36:7:36 | j | fileImports | fs http url |
-| autogenerated/TaintedPath/tainted-string-steps.js:7:36:7:36 | j | receiverName | path |
-| autogenerated/TaintedPath/tainted-string-steps.js:7:36:7:36 | j | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:8:18:8:34 | path.substring(4) | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/tainted-string-steps.js:8:18:8:34 | path.substring(4) | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:8:18:8:34 | path.substring(4) | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/tainted-string-steps.js:8:18:8:34 | path.substring(4) | assignedToPropName |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:8:18:8:34 | path.substring(4) | calleeImports | fs |
-| autogenerated/TaintedPath/tainted-string-steps.js:8:18:8:34 | path.substring(4) | contextFunctionInterfaces |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:8:18:8:34 | path.substring(4) | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/tainted-string-steps.js:8:18:8:34 | path.substring(4) | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path substring i j fs readFileSync path substring 4 fs readFileSync path substring 0 i fs readFileSync path substr 4 fs readFileSync path slice 4 fs readFileSync path concat unknown fs readFileSync unknown concat path fs readFileSync unknown concat unknown path fs readFileSync path trim fs readFileSync path toLowerCase fs readFileSync path split / fs readFileSync path 0 split / 0 fs readFileSync path split / i fs readFileSync path split /\\// i fs readFileSync path 0 split ? 0 fs readFileSync path split unknown i fs readFileSync path split unknown whatever fs readFileSync path split unknown fs readFileSync path split ? i |
-| autogenerated/TaintedPath/tainted-string-steps.js:8:18:8:34 | path.substring(4) | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/tainted-string-steps.js:8:18:8:34 | path.substring(4) | fileImports | fs http url |
-| autogenerated/TaintedPath/tainted-string-steps.js:8:18:8:34 | path.substring(4) | receiverName | fs |
-| autogenerated/TaintedPath/tainted-string-steps.js:8:18:8:34 | path.substring(4) | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:8:33:8:33 | 4 | CalleeFlexibleAccessPath | path.substring |
-| autogenerated/TaintedPath/tainted-string-steps.js:8:33:8:33 | 4 | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:8:33:8:33 | 4 | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/tainted-string-steps.js:8:33:8:33 | 4 | assignedToPropName |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:8:33:8:33 | 4 | calleeImports | url |
-| autogenerated/TaintedPath/tainted-string-steps.js:8:33:8:33 | 4 | contextFunctionInterfaces |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:8:33:8:33 | 4 | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/tainted-string-steps.js:8:33:8:33 | 4 | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path substring i j fs readFileSync path substring 4 fs readFileSync path substring 0 i fs readFileSync path substr 4 fs readFileSync path slice 4 fs readFileSync path concat unknown fs readFileSync unknown concat path fs readFileSync unknown concat unknown path fs readFileSync path trim fs readFileSync path toLowerCase fs readFileSync path split / fs readFileSync path 0 split / 0 fs readFileSync path split / i fs readFileSync path split /\\// i fs readFileSync path 0 split ? 0 fs readFileSync path split unknown i fs readFileSync path split unknown whatever fs readFileSync path split unknown fs readFileSync path split ? i |
-| autogenerated/TaintedPath/tainted-string-steps.js:8:33:8:33 | 4 | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/tainted-string-steps.js:8:33:8:33 | 4 | fileImports | fs http url |
-| autogenerated/TaintedPath/tainted-string-steps.js:8:33:8:33 | 4 | receiverName | path |
-| autogenerated/TaintedPath/tainted-string-steps.js:8:33:8:33 | 4 | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:9:18:9:37 | path.substring(0, i) | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/tainted-string-steps.js:9:18:9:37 | path.substring(0, i) | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:9:18:9:37 | path.substring(0, i) | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/tainted-string-steps.js:9:18:9:37 | path.substring(0, i) | assignedToPropName |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:9:18:9:37 | path.substring(0, i) | calleeImports | fs |
-| autogenerated/TaintedPath/tainted-string-steps.js:9:18:9:37 | path.substring(0, i) | contextFunctionInterfaces |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:9:18:9:37 | path.substring(0, i) | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/tainted-string-steps.js:9:18:9:37 | path.substring(0, i) | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path substring i j fs readFileSync path substring 4 fs readFileSync path substring 0 i fs readFileSync path substr 4 fs readFileSync path slice 4 fs readFileSync path concat unknown fs readFileSync unknown concat path fs readFileSync unknown concat unknown path fs readFileSync path trim fs readFileSync path toLowerCase fs readFileSync path split / fs readFileSync path 0 split / 0 fs readFileSync path split / i fs readFileSync path split /\\// i fs readFileSync path 0 split ? 0 fs readFileSync path split unknown i fs readFileSync path split unknown whatever fs readFileSync path split unknown fs readFileSync path split ? i |
-| autogenerated/TaintedPath/tainted-string-steps.js:9:18:9:37 | path.substring(0, i) | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/tainted-string-steps.js:9:18:9:37 | path.substring(0, i) | fileImports | fs http url |
-| autogenerated/TaintedPath/tainted-string-steps.js:9:18:9:37 | path.substring(0, i) | receiverName | fs |
-| autogenerated/TaintedPath/tainted-string-steps.js:9:18:9:37 | path.substring(0, i) | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:9:33:9:33 | 0 | CalleeFlexibleAccessPath | path.substring |
-| autogenerated/TaintedPath/tainted-string-steps.js:9:33:9:33 | 0 | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:9:33:9:33 | 0 | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/tainted-string-steps.js:9:33:9:33 | 0 | assignedToPropName |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:9:33:9:33 | 0 | calleeImports | url |
-| autogenerated/TaintedPath/tainted-string-steps.js:9:33:9:33 | 0 | contextFunctionInterfaces |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:9:33:9:33 | 0 | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/tainted-string-steps.js:9:33:9:33 | 0 | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path substring i j fs readFileSync path substring 4 fs readFileSync path substring 0 i fs readFileSync path substr 4 fs readFileSync path slice 4 fs readFileSync path concat unknown fs readFileSync unknown concat path fs readFileSync unknown concat unknown path fs readFileSync path trim fs readFileSync path toLowerCase fs readFileSync path split / fs readFileSync path 0 split / 0 fs readFileSync path split / i fs readFileSync path split /\\// i fs readFileSync path 0 split ? 0 fs readFileSync path split unknown i fs readFileSync path split unknown whatever fs readFileSync path split unknown fs readFileSync path split ? i |
-| autogenerated/TaintedPath/tainted-string-steps.js:9:33:9:33 | 0 | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/tainted-string-steps.js:9:33:9:33 | 0 | fileImports | fs http url |
-| autogenerated/TaintedPath/tainted-string-steps.js:9:33:9:33 | 0 | receiverName | path |
-| autogenerated/TaintedPath/tainted-string-steps.js:9:33:9:33 | 0 | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:9:36:9:36 | i | CalleeFlexibleAccessPath | path.substring |
-| autogenerated/TaintedPath/tainted-string-steps.js:9:36:9:36 | i | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:9:36:9:36 | i | InputArgumentIndex | 1 |
-| autogenerated/TaintedPath/tainted-string-steps.js:9:36:9:36 | i | assignedToPropName |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:9:36:9:36 | i | calleeImports | url |
-| autogenerated/TaintedPath/tainted-string-steps.js:9:36:9:36 | i | contextFunctionInterfaces |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:9:36:9:36 | i | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/tainted-string-steps.js:9:36:9:36 | i | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path substring i j fs readFileSync path substring 4 fs readFileSync path substring 0 i fs readFileSync path substr 4 fs readFileSync path slice 4 fs readFileSync path concat unknown fs readFileSync unknown concat path fs readFileSync unknown concat unknown path fs readFileSync path trim fs readFileSync path toLowerCase fs readFileSync path split / fs readFileSync path 0 split / 0 fs readFileSync path split / i fs readFileSync path split /\\// i fs readFileSync path 0 split ? 0 fs readFileSync path split unknown i fs readFileSync path split unknown whatever fs readFileSync path split unknown fs readFileSync path split ? i |
-| autogenerated/TaintedPath/tainted-string-steps.js:9:36:9:36 | i | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/tainted-string-steps.js:9:36:9:36 | i | fileImports | fs http url |
-| autogenerated/TaintedPath/tainted-string-steps.js:9:36:9:36 | i | receiverName | path |
-| autogenerated/TaintedPath/tainted-string-steps.js:9:36:9:36 | i | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:10:18:10:31 | path.substr(4) | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/tainted-string-steps.js:10:18:10:31 | path.substr(4) | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:10:18:10:31 | path.substr(4) | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/tainted-string-steps.js:10:18:10:31 | path.substr(4) | assignedToPropName |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:10:18:10:31 | path.substr(4) | calleeImports | fs |
-| autogenerated/TaintedPath/tainted-string-steps.js:10:18:10:31 | path.substr(4) | contextFunctionInterfaces |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:10:18:10:31 | path.substr(4) | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/tainted-string-steps.js:10:18:10:31 | path.substr(4) | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path substring i j fs readFileSync path substring 4 fs readFileSync path substring 0 i fs readFileSync path substr 4 fs readFileSync path slice 4 fs readFileSync path concat unknown fs readFileSync unknown concat path fs readFileSync unknown concat unknown path fs readFileSync path trim fs readFileSync path toLowerCase fs readFileSync path split / fs readFileSync path 0 split / 0 fs readFileSync path split / i fs readFileSync path split /\\// i fs readFileSync path 0 split ? 0 fs readFileSync path split unknown i fs readFileSync path split unknown whatever fs readFileSync path split unknown fs readFileSync path split ? i |
-| autogenerated/TaintedPath/tainted-string-steps.js:10:18:10:31 | path.substr(4) | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/tainted-string-steps.js:10:18:10:31 | path.substr(4) | fileImports | fs http url |
-| autogenerated/TaintedPath/tainted-string-steps.js:10:18:10:31 | path.substr(4) | receiverName | fs |
-| autogenerated/TaintedPath/tainted-string-steps.js:10:18:10:31 | path.substr(4) | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:10:30:10:30 | 4 | CalleeFlexibleAccessPath | path.substr |
-| autogenerated/TaintedPath/tainted-string-steps.js:10:30:10:30 | 4 | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:10:30:10:30 | 4 | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/tainted-string-steps.js:10:30:10:30 | 4 | assignedToPropName |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:10:30:10:30 | 4 | calleeImports | url |
-| autogenerated/TaintedPath/tainted-string-steps.js:10:30:10:30 | 4 | contextFunctionInterfaces |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:10:30:10:30 | 4 | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/tainted-string-steps.js:10:30:10:30 | 4 | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path substring i j fs readFileSync path substring 4 fs readFileSync path substring 0 i fs readFileSync path substr 4 fs readFileSync path slice 4 fs readFileSync path concat unknown fs readFileSync unknown concat path fs readFileSync unknown concat unknown path fs readFileSync path trim fs readFileSync path toLowerCase fs readFileSync path split / fs readFileSync path 0 split / 0 fs readFileSync path split / i fs readFileSync path split /\\// i fs readFileSync path 0 split ? 0 fs readFileSync path split unknown i fs readFileSync path split unknown whatever fs readFileSync path split unknown fs readFileSync path split ? i |
-| autogenerated/TaintedPath/tainted-string-steps.js:10:30:10:30 | 4 | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/tainted-string-steps.js:10:30:10:30 | 4 | fileImports | fs http url |
-| autogenerated/TaintedPath/tainted-string-steps.js:10:30:10:30 | 4 | receiverName | path |
-| autogenerated/TaintedPath/tainted-string-steps.js:10:30:10:30 | 4 | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:11:18:11:30 | path.slice(4) | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/tainted-string-steps.js:11:18:11:30 | path.slice(4) | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:11:18:11:30 | path.slice(4) | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/tainted-string-steps.js:11:18:11:30 | path.slice(4) | assignedToPropName |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:11:18:11:30 | path.slice(4) | calleeImports | fs |
-| autogenerated/TaintedPath/tainted-string-steps.js:11:18:11:30 | path.slice(4) | contextFunctionInterfaces |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:11:18:11:30 | path.slice(4) | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/tainted-string-steps.js:11:18:11:30 | path.slice(4) | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path substring i j fs readFileSync path substring 4 fs readFileSync path substring 0 i fs readFileSync path substr 4 fs readFileSync path slice 4 fs readFileSync path concat unknown fs readFileSync unknown concat path fs readFileSync unknown concat unknown path fs readFileSync path trim fs readFileSync path toLowerCase fs readFileSync path split / fs readFileSync path 0 split / 0 fs readFileSync path split / i fs readFileSync path split /\\// i fs readFileSync path 0 split ? 0 fs readFileSync path split unknown i fs readFileSync path split unknown whatever fs readFileSync path split unknown fs readFileSync path split ? i |
-| autogenerated/TaintedPath/tainted-string-steps.js:11:18:11:30 | path.slice(4) | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/tainted-string-steps.js:11:18:11:30 | path.slice(4) | fileImports | fs http url |
-| autogenerated/TaintedPath/tainted-string-steps.js:11:18:11:30 | path.slice(4) | receiverName | fs |
-| autogenerated/TaintedPath/tainted-string-steps.js:11:18:11:30 | path.slice(4) | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:11:29:11:29 | 4 | CalleeFlexibleAccessPath | path.slice |
-| autogenerated/TaintedPath/tainted-string-steps.js:11:29:11:29 | 4 | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:11:29:11:29 | 4 | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/tainted-string-steps.js:11:29:11:29 | 4 | assignedToPropName |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:11:29:11:29 | 4 | calleeImports | url |
-| autogenerated/TaintedPath/tainted-string-steps.js:11:29:11:29 | 4 | contextFunctionInterfaces |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:11:29:11:29 | 4 | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/tainted-string-steps.js:11:29:11:29 | 4 | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path substring i j fs readFileSync path substring 4 fs readFileSync path substring 0 i fs readFileSync path substr 4 fs readFileSync path slice 4 fs readFileSync path concat unknown fs readFileSync unknown concat path fs readFileSync unknown concat unknown path fs readFileSync path trim fs readFileSync path toLowerCase fs readFileSync path split / fs readFileSync path 0 split / 0 fs readFileSync path split / i fs readFileSync path split /\\// i fs readFileSync path 0 split ? 0 fs readFileSync path split unknown i fs readFileSync path split unknown whatever fs readFileSync path split unknown fs readFileSync path split ? i |
-| autogenerated/TaintedPath/tainted-string-steps.js:11:29:11:29 | 4 | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/tainted-string-steps.js:11:29:11:29 | 4 | fileImports | fs http url |
-| autogenerated/TaintedPath/tainted-string-steps.js:11:29:11:29 | 4 | receiverName | path |
-| autogenerated/TaintedPath/tainted-string-steps.js:11:29:11:29 | 4 | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:13:18:13:37 | path.concat(unknown) | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/tainted-string-steps.js:13:18:13:37 | path.concat(unknown) | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:13:18:13:37 | path.concat(unknown) | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/tainted-string-steps.js:13:18:13:37 | path.concat(unknown) | assignedToPropName |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:13:18:13:37 | path.concat(unknown) | calleeImports | fs |
-| autogenerated/TaintedPath/tainted-string-steps.js:13:18:13:37 | path.concat(unknown) | contextFunctionInterfaces |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:13:18:13:37 | path.concat(unknown) | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/tainted-string-steps.js:13:18:13:37 | path.concat(unknown) | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path substring i j fs readFileSync path substring 4 fs readFileSync path substring 0 i fs readFileSync path substr 4 fs readFileSync path slice 4 fs readFileSync path concat unknown fs readFileSync unknown concat path fs readFileSync unknown concat unknown path fs readFileSync path trim fs readFileSync path toLowerCase fs readFileSync path split / fs readFileSync path 0 split / 0 fs readFileSync path split / i fs readFileSync path split /\\// i fs readFileSync path 0 split ? 0 fs readFileSync path split unknown i fs readFileSync path split unknown whatever fs readFileSync path split unknown fs readFileSync path split ? i |
-| autogenerated/TaintedPath/tainted-string-steps.js:13:18:13:37 | path.concat(unknown) | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/tainted-string-steps.js:13:18:13:37 | path.concat(unknown) | fileImports | fs http url |
-| autogenerated/TaintedPath/tainted-string-steps.js:13:18:13:37 | path.concat(unknown) | receiverName | fs |
-| autogenerated/TaintedPath/tainted-string-steps.js:13:18:13:37 | path.concat(unknown) | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:14:18:14:37 | unknown.concat(path) | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/tainted-string-steps.js:14:18:14:37 | unknown.concat(path) | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:14:18:14:37 | unknown.concat(path) | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/tainted-string-steps.js:14:18:14:37 | unknown.concat(path) | assignedToPropName |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:14:18:14:37 | unknown.concat(path) | calleeImports | fs |
-| autogenerated/TaintedPath/tainted-string-steps.js:14:18:14:37 | unknown.concat(path) | contextFunctionInterfaces |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:14:18:14:37 | unknown.concat(path) | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/tainted-string-steps.js:14:18:14:37 | unknown.concat(path) | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path substring i j fs readFileSync path substring 4 fs readFileSync path substring 0 i fs readFileSync path substr 4 fs readFileSync path slice 4 fs readFileSync path concat unknown fs readFileSync unknown concat path fs readFileSync unknown concat unknown path fs readFileSync path trim fs readFileSync path toLowerCase fs readFileSync path split / fs readFileSync path 0 split / 0 fs readFileSync path split / i fs readFileSync path split /\\// i fs readFileSync path 0 split ? 0 fs readFileSync path split unknown i fs readFileSync path split unknown whatever fs readFileSync path split unknown fs readFileSync path split ? i |
-| autogenerated/TaintedPath/tainted-string-steps.js:14:18:14:37 | unknown.concat(path) | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/tainted-string-steps.js:14:18:14:37 | unknown.concat(path) | fileImports | fs http url |
-| autogenerated/TaintedPath/tainted-string-steps.js:14:18:14:37 | unknown.concat(path) | receiverName | fs |
-| autogenerated/TaintedPath/tainted-string-steps.js:14:18:14:37 | unknown.concat(path) | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:15:18:15:46 | unknown ... , path) | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/tainted-string-steps.js:15:18:15:46 | unknown ... , path) | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:15:18:15:46 | unknown ... , path) | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/tainted-string-steps.js:15:18:15:46 | unknown ... , path) | assignedToPropName |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:15:18:15:46 | unknown ... , path) | calleeImports | fs |
-| autogenerated/TaintedPath/tainted-string-steps.js:15:18:15:46 | unknown ... , path) | contextFunctionInterfaces |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:15:18:15:46 | unknown ... , path) | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/tainted-string-steps.js:15:18:15:46 | unknown ... , path) | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path substring i j fs readFileSync path substring 4 fs readFileSync path substring 0 i fs readFileSync path substr 4 fs readFileSync path slice 4 fs readFileSync path concat unknown fs readFileSync unknown concat path fs readFileSync unknown concat unknown path fs readFileSync path trim fs readFileSync path toLowerCase fs readFileSync path split / fs readFileSync path 0 split / 0 fs readFileSync path split / i fs readFileSync path split /\\// i fs readFileSync path 0 split ? 0 fs readFileSync path split unknown i fs readFileSync path split unknown whatever fs readFileSync path split unknown fs readFileSync path split ? i |
-| autogenerated/TaintedPath/tainted-string-steps.js:15:18:15:46 | unknown ... , path) | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/tainted-string-steps.js:15:18:15:46 | unknown ... , path) | fileImports | fs http url |
-| autogenerated/TaintedPath/tainted-string-steps.js:15:18:15:46 | unknown ... , path) | receiverName | fs |
-| autogenerated/TaintedPath/tainted-string-steps.js:15:18:15:46 | unknown ... , path) | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:17:18:17:28 | path.trim() | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/tainted-string-steps.js:17:18:17:28 | path.trim() | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:17:18:17:28 | path.trim() | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/tainted-string-steps.js:17:18:17:28 | path.trim() | assignedToPropName |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:17:18:17:28 | path.trim() | calleeImports | fs |
-| autogenerated/TaintedPath/tainted-string-steps.js:17:18:17:28 | path.trim() | contextFunctionInterfaces |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:17:18:17:28 | path.trim() | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/tainted-string-steps.js:17:18:17:28 | path.trim() | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path substring i j fs readFileSync path substring 4 fs readFileSync path substring 0 i fs readFileSync path substr 4 fs readFileSync path slice 4 fs readFileSync path concat unknown fs readFileSync unknown concat path fs readFileSync unknown concat unknown path fs readFileSync path trim fs readFileSync path toLowerCase fs readFileSync path split / fs readFileSync path 0 split / 0 fs readFileSync path split / i fs readFileSync path split /\\// i fs readFileSync path 0 split ? 0 fs readFileSync path split unknown i fs readFileSync path split unknown whatever fs readFileSync path split unknown fs readFileSync path split ? i |
-| autogenerated/TaintedPath/tainted-string-steps.js:17:18:17:28 | path.trim() | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/tainted-string-steps.js:17:18:17:28 | path.trim() | fileImports | fs http url |
-| autogenerated/TaintedPath/tainted-string-steps.js:17:18:17:28 | path.trim() | receiverName | fs |
-| autogenerated/TaintedPath/tainted-string-steps.js:17:18:17:28 | path.trim() | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:18:18:18:35 | path.toLowerCase() | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/tainted-string-steps.js:18:18:18:35 | path.toLowerCase() | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:18:18:18:35 | path.toLowerCase() | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/tainted-string-steps.js:18:18:18:35 | path.toLowerCase() | assignedToPropName |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:18:18:18:35 | path.toLowerCase() | calleeImports | fs |
-| autogenerated/TaintedPath/tainted-string-steps.js:18:18:18:35 | path.toLowerCase() | contextFunctionInterfaces |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:18:18:18:35 | path.toLowerCase() | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/tainted-string-steps.js:18:18:18:35 | path.toLowerCase() | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path substring i j fs readFileSync path substring 4 fs readFileSync path substring 0 i fs readFileSync path substr 4 fs readFileSync path slice 4 fs readFileSync path concat unknown fs readFileSync unknown concat path fs readFileSync unknown concat unknown path fs readFileSync path trim fs readFileSync path toLowerCase fs readFileSync path split / fs readFileSync path 0 split / 0 fs readFileSync path split / i fs readFileSync path split /\\// i fs readFileSync path 0 split ? 0 fs readFileSync path split unknown i fs readFileSync path split unknown whatever fs readFileSync path split unknown fs readFileSync path split ? i |
-| autogenerated/TaintedPath/tainted-string-steps.js:18:18:18:35 | path.toLowerCase() | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/tainted-string-steps.js:18:18:18:35 | path.toLowerCase() | fileImports | fs http url |
-| autogenerated/TaintedPath/tainted-string-steps.js:18:18:18:35 | path.toLowerCase() | receiverName | fs |
-| autogenerated/TaintedPath/tainted-string-steps.js:18:18:18:35 | path.toLowerCase() | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:20:18:20:32 | path.split('/') | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/tainted-string-steps.js:20:18:20:32 | path.split('/') | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:20:18:20:32 | path.split('/') | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/tainted-string-steps.js:20:18:20:32 | path.split('/') | assignedToPropName |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:20:18:20:32 | path.split('/') | calleeImports | fs |
-| autogenerated/TaintedPath/tainted-string-steps.js:20:18:20:32 | path.split('/') | contextFunctionInterfaces |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:20:18:20:32 | path.split('/') | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/tainted-string-steps.js:20:18:20:32 | path.split('/') | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path substring i j fs readFileSync path substring 4 fs readFileSync path substring 0 i fs readFileSync path substr 4 fs readFileSync path slice 4 fs readFileSync path concat unknown fs readFileSync unknown concat path fs readFileSync unknown concat unknown path fs readFileSync path trim fs readFileSync path toLowerCase fs readFileSync path split / fs readFileSync path 0 split / 0 fs readFileSync path split / i fs readFileSync path split /\\// i fs readFileSync path 0 split ? 0 fs readFileSync path split unknown i fs readFileSync path split unknown whatever fs readFileSync path split unknown fs readFileSync path split ? i |
-| autogenerated/TaintedPath/tainted-string-steps.js:20:18:20:32 | path.split('/') | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/tainted-string-steps.js:20:18:20:32 | path.split('/') | fileImports | fs http url |
-| autogenerated/TaintedPath/tainted-string-steps.js:20:18:20:32 | path.split('/') | receiverName | fs |
-| autogenerated/TaintedPath/tainted-string-steps.js:20:18:20:32 | path.split('/') | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:20:29:20:31 | '/' | CalleeFlexibleAccessPath | path.split |
-| autogenerated/TaintedPath/tainted-string-steps.js:20:29:20:31 | '/' | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:20:29:20:31 | '/' | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/tainted-string-steps.js:20:29:20:31 | '/' | assignedToPropName |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:20:29:20:31 | '/' | calleeImports | url |
-| autogenerated/TaintedPath/tainted-string-steps.js:20:29:20:31 | '/' | contextFunctionInterfaces |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:20:29:20:31 | '/' | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/tainted-string-steps.js:20:29:20:31 | '/' | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path substring i j fs readFileSync path substring 4 fs readFileSync path substring 0 i fs readFileSync path substr 4 fs readFileSync path slice 4 fs readFileSync path concat unknown fs readFileSync unknown concat path fs readFileSync unknown concat unknown path fs readFileSync path trim fs readFileSync path toLowerCase fs readFileSync path split / fs readFileSync path 0 split / 0 fs readFileSync path split / i fs readFileSync path split /\\// i fs readFileSync path 0 split ? 0 fs readFileSync path split unknown i fs readFileSync path split unknown whatever fs readFileSync path split unknown fs readFileSync path split ? i |
-| autogenerated/TaintedPath/tainted-string-steps.js:20:29:20:31 | '/' | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/tainted-string-steps.js:20:29:20:31 | '/' | fileImports | fs http url |
-| autogenerated/TaintedPath/tainted-string-steps.js:20:29:20:31 | '/' | receiverName | path |
-| autogenerated/TaintedPath/tainted-string-steps.js:20:29:20:31 | '/' | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:21:18:21:35 | path.split('/')[0] | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/tainted-string-steps.js:21:18:21:35 | path.split('/')[0] | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:21:18:21:35 | path.split('/')[0] | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/tainted-string-steps.js:21:18:21:35 | path.split('/')[0] | assignedToPropName |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:21:18:21:35 | path.split('/')[0] | calleeImports | fs |
-| autogenerated/TaintedPath/tainted-string-steps.js:21:18:21:35 | path.split('/')[0] | contextFunctionInterfaces |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:21:18:21:35 | path.split('/')[0] | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/tainted-string-steps.js:21:18:21:35 | path.split('/')[0] | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path substring i j fs readFileSync path substring 4 fs readFileSync path substring 0 i fs readFileSync path substr 4 fs readFileSync path slice 4 fs readFileSync path concat unknown fs readFileSync unknown concat path fs readFileSync unknown concat unknown path fs readFileSync path trim fs readFileSync path toLowerCase fs readFileSync path split / fs readFileSync path 0 split / 0 fs readFileSync path split / i fs readFileSync path split /\\// i fs readFileSync path 0 split ? 0 fs readFileSync path split unknown i fs readFileSync path split unknown whatever fs readFileSync path split unknown fs readFileSync path split ? i |
-| autogenerated/TaintedPath/tainted-string-steps.js:21:18:21:35 | path.split('/')[0] | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/tainted-string-steps.js:21:18:21:35 | path.split('/')[0] | fileImports | fs http url |
-| autogenerated/TaintedPath/tainted-string-steps.js:21:18:21:35 | path.split('/')[0] | receiverName | fs |
-| autogenerated/TaintedPath/tainted-string-steps.js:21:18:21:35 | path.split('/')[0] | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:21:29:21:31 | '/' | CalleeFlexibleAccessPath | path.split |
-| autogenerated/TaintedPath/tainted-string-steps.js:21:29:21:31 | '/' | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:21:29:21:31 | '/' | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/tainted-string-steps.js:21:29:21:31 | '/' | assignedToPropName |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:21:29:21:31 | '/' | calleeImports | url |
-| autogenerated/TaintedPath/tainted-string-steps.js:21:29:21:31 | '/' | contextFunctionInterfaces |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:21:29:21:31 | '/' | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/tainted-string-steps.js:21:29:21:31 | '/' | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path substring i j fs readFileSync path substring 4 fs readFileSync path substring 0 i fs readFileSync path substr 4 fs readFileSync path slice 4 fs readFileSync path concat unknown fs readFileSync unknown concat path fs readFileSync unknown concat unknown path fs readFileSync path trim fs readFileSync path toLowerCase fs readFileSync path split / fs readFileSync path 0 split / 0 fs readFileSync path split / i fs readFileSync path split /\\// i fs readFileSync path 0 split ? 0 fs readFileSync path split unknown i fs readFileSync path split unknown whatever fs readFileSync path split unknown fs readFileSync path split ? i |
-| autogenerated/TaintedPath/tainted-string-steps.js:21:29:21:31 | '/' | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/tainted-string-steps.js:21:29:21:31 | '/' | fileImports | fs http url |
-| autogenerated/TaintedPath/tainted-string-steps.js:21:29:21:31 | '/' | receiverName | path |
-| autogenerated/TaintedPath/tainted-string-steps.js:21:29:21:31 | '/' | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:22:18:22:35 | path.split('/')[i] | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/tainted-string-steps.js:22:18:22:35 | path.split('/')[i] | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:22:18:22:35 | path.split('/')[i] | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/tainted-string-steps.js:22:18:22:35 | path.split('/')[i] | assignedToPropName |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:22:18:22:35 | path.split('/')[i] | calleeImports | fs |
-| autogenerated/TaintedPath/tainted-string-steps.js:22:18:22:35 | path.split('/')[i] | contextFunctionInterfaces |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:22:18:22:35 | path.split('/')[i] | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/tainted-string-steps.js:22:18:22:35 | path.split('/')[i] | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path substring i j fs readFileSync path substring 4 fs readFileSync path substring 0 i fs readFileSync path substr 4 fs readFileSync path slice 4 fs readFileSync path concat unknown fs readFileSync unknown concat path fs readFileSync unknown concat unknown path fs readFileSync path trim fs readFileSync path toLowerCase fs readFileSync path split / fs readFileSync path 0 split / 0 fs readFileSync path split / i fs readFileSync path split /\\// i fs readFileSync path 0 split ? 0 fs readFileSync path split unknown i fs readFileSync path split unknown whatever fs readFileSync path split unknown fs readFileSync path split ? i |
-| autogenerated/TaintedPath/tainted-string-steps.js:22:18:22:35 | path.split('/')[i] | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/tainted-string-steps.js:22:18:22:35 | path.split('/')[i] | fileImports | fs http url |
-| autogenerated/TaintedPath/tainted-string-steps.js:22:18:22:35 | path.split('/')[i] | receiverName | fs |
-| autogenerated/TaintedPath/tainted-string-steps.js:22:18:22:35 | path.split('/')[i] | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:22:29:22:31 | '/' | CalleeFlexibleAccessPath | path.split |
-| autogenerated/TaintedPath/tainted-string-steps.js:22:29:22:31 | '/' | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:22:29:22:31 | '/' | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/tainted-string-steps.js:22:29:22:31 | '/' | assignedToPropName |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:22:29:22:31 | '/' | calleeImports | url |
-| autogenerated/TaintedPath/tainted-string-steps.js:22:29:22:31 | '/' | contextFunctionInterfaces |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:22:29:22:31 | '/' | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/tainted-string-steps.js:22:29:22:31 | '/' | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path substring i j fs readFileSync path substring 4 fs readFileSync path substring 0 i fs readFileSync path substr 4 fs readFileSync path slice 4 fs readFileSync path concat unknown fs readFileSync unknown concat path fs readFileSync unknown concat unknown path fs readFileSync path trim fs readFileSync path toLowerCase fs readFileSync path split / fs readFileSync path 0 split / 0 fs readFileSync path split / i fs readFileSync path split /\\// i fs readFileSync path 0 split ? 0 fs readFileSync path split unknown i fs readFileSync path split unknown whatever fs readFileSync path split unknown fs readFileSync path split ? i |
-| autogenerated/TaintedPath/tainted-string-steps.js:22:29:22:31 | '/' | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/tainted-string-steps.js:22:29:22:31 | '/' | fileImports | fs http url |
-| autogenerated/TaintedPath/tainted-string-steps.js:22:29:22:31 | '/' | receiverName | path |
-| autogenerated/TaintedPath/tainted-string-steps.js:22:29:22:31 | '/' | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:23:18:23:36 | path.split(/\\//)[i] | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/tainted-string-steps.js:23:18:23:36 | path.split(/\\//)[i] | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:23:18:23:36 | path.split(/\\//)[i] | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/tainted-string-steps.js:23:18:23:36 | path.split(/\\//)[i] | assignedToPropName |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:23:18:23:36 | path.split(/\\//)[i] | calleeImports | fs |
-| autogenerated/TaintedPath/tainted-string-steps.js:23:18:23:36 | path.split(/\\//)[i] | contextFunctionInterfaces |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:23:18:23:36 | path.split(/\\//)[i] | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/tainted-string-steps.js:23:18:23:36 | path.split(/\\//)[i] | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path substring i j fs readFileSync path substring 4 fs readFileSync path substring 0 i fs readFileSync path substr 4 fs readFileSync path slice 4 fs readFileSync path concat unknown fs readFileSync unknown concat path fs readFileSync unknown concat unknown path fs readFileSync path trim fs readFileSync path toLowerCase fs readFileSync path split / fs readFileSync path 0 split / 0 fs readFileSync path split / i fs readFileSync path split /\\// i fs readFileSync path 0 split ? 0 fs readFileSync path split unknown i fs readFileSync path split unknown whatever fs readFileSync path split unknown fs readFileSync path split ? i |
-| autogenerated/TaintedPath/tainted-string-steps.js:23:18:23:36 | path.split(/\\//)[i] | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/tainted-string-steps.js:23:18:23:36 | path.split(/\\//)[i] | fileImports | fs http url |
-| autogenerated/TaintedPath/tainted-string-steps.js:23:18:23:36 | path.split(/\\//)[i] | receiverName | fs |
-| autogenerated/TaintedPath/tainted-string-steps.js:23:18:23:36 | path.split(/\\//)[i] | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:23:29:23:32 | /\\// | CalleeFlexibleAccessPath | path.split |
-| autogenerated/TaintedPath/tainted-string-steps.js:23:29:23:32 | /\\// | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:23:29:23:32 | /\\// | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/tainted-string-steps.js:23:29:23:32 | /\\// | assignedToPropName |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:23:29:23:32 | /\\// | calleeImports | url |
-| autogenerated/TaintedPath/tainted-string-steps.js:23:29:23:32 | /\\// | contextFunctionInterfaces |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:23:29:23:32 | /\\// | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/tainted-string-steps.js:23:29:23:32 | /\\// | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path substring i j fs readFileSync path substring 4 fs readFileSync path substring 0 i fs readFileSync path substr 4 fs readFileSync path slice 4 fs readFileSync path concat unknown fs readFileSync unknown concat path fs readFileSync unknown concat unknown path fs readFileSync path trim fs readFileSync path toLowerCase fs readFileSync path split / fs readFileSync path 0 split / 0 fs readFileSync path split / i fs readFileSync path split /\\// i fs readFileSync path 0 split ? 0 fs readFileSync path split unknown i fs readFileSync path split unknown whatever fs readFileSync path split unknown fs readFileSync path split ? i |
-| autogenerated/TaintedPath/tainted-string-steps.js:23:29:23:32 | /\\// | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/tainted-string-steps.js:23:29:23:32 | /\\// | fileImports | fs http url |
-| autogenerated/TaintedPath/tainted-string-steps.js:23:29:23:32 | /\\// | receiverName | path |
-| autogenerated/TaintedPath/tainted-string-steps.js:23:29:23:32 | /\\// | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:24:18:24:35 | path.split("?")[0] | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/tainted-string-steps.js:24:18:24:35 | path.split("?")[0] | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:24:18:24:35 | path.split("?")[0] | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/tainted-string-steps.js:24:18:24:35 | path.split("?")[0] | assignedToPropName |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:24:18:24:35 | path.split("?")[0] | calleeImports | fs |
-| autogenerated/TaintedPath/tainted-string-steps.js:24:18:24:35 | path.split("?")[0] | contextFunctionInterfaces |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:24:18:24:35 | path.split("?")[0] | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/tainted-string-steps.js:24:18:24:35 | path.split("?")[0] | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path substring i j fs readFileSync path substring 4 fs readFileSync path substring 0 i fs readFileSync path substr 4 fs readFileSync path slice 4 fs readFileSync path concat unknown fs readFileSync unknown concat path fs readFileSync unknown concat unknown path fs readFileSync path trim fs readFileSync path toLowerCase fs readFileSync path split / fs readFileSync path 0 split / 0 fs readFileSync path split / i fs readFileSync path split /\\// i fs readFileSync path 0 split ? 0 fs readFileSync path split unknown i fs readFileSync path split unknown whatever fs readFileSync path split unknown fs readFileSync path split ? i |
-| autogenerated/TaintedPath/tainted-string-steps.js:24:18:24:35 | path.split("?")[0] | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/tainted-string-steps.js:24:18:24:35 | path.split("?")[0] | fileImports | fs http url |
-| autogenerated/TaintedPath/tainted-string-steps.js:24:18:24:35 | path.split("?")[0] | receiverName | fs |
-| autogenerated/TaintedPath/tainted-string-steps.js:24:18:24:35 | path.split("?")[0] | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:24:29:24:31 | "?" | CalleeFlexibleAccessPath | path.split |
-| autogenerated/TaintedPath/tainted-string-steps.js:24:29:24:31 | "?" | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:24:29:24:31 | "?" | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/tainted-string-steps.js:24:29:24:31 | "?" | assignedToPropName |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:24:29:24:31 | "?" | calleeImports | url |
-| autogenerated/TaintedPath/tainted-string-steps.js:24:29:24:31 | "?" | contextFunctionInterfaces |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:24:29:24:31 | "?" | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/tainted-string-steps.js:24:29:24:31 | "?" | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path substring i j fs readFileSync path substring 4 fs readFileSync path substring 0 i fs readFileSync path substr 4 fs readFileSync path slice 4 fs readFileSync path concat unknown fs readFileSync unknown concat path fs readFileSync unknown concat unknown path fs readFileSync path trim fs readFileSync path toLowerCase fs readFileSync path split / fs readFileSync path 0 split / 0 fs readFileSync path split / i fs readFileSync path split /\\// i fs readFileSync path 0 split ? 0 fs readFileSync path split unknown i fs readFileSync path split unknown whatever fs readFileSync path split unknown fs readFileSync path split ? i |
-| autogenerated/TaintedPath/tainted-string-steps.js:24:29:24:31 | "?" | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/tainted-string-steps.js:24:29:24:31 | "?" | fileImports | fs http url |
-| autogenerated/TaintedPath/tainted-string-steps.js:24:29:24:31 | "?" | receiverName | path |
-| autogenerated/TaintedPath/tainted-string-steps.js:24:29:24:31 | "?" | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:25:18:25:39 | path.sp ... own)[i] | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/tainted-string-steps.js:25:18:25:39 | path.sp ... own)[i] | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:25:18:25:39 | path.sp ... own)[i] | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/tainted-string-steps.js:25:18:25:39 | path.sp ... own)[i] | assignedToPropName |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:25:18:25:39 | path.sp ... own)[i] | calleeImports | fs |
-| autogenerated/TaintedPath/tainted-string-steps.js:25:18:25:39 | path.sp ... own)[i] | contextFunctionInterfaces |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:25:18:25:39 | path.sp ... own)[i] | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/tainted-string-steps.js:25:18:25:39 | path.sp ... own)[i] | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path substring i j fs readFileSync path substring 4 fs readFileSync path substring 0 i fs readFileSync path substr 4 fs readFileSync path slice 4 fs readFileSync path concat unknown fs readFileSync unknown concat path fs readFileSync unknown concat unknown path fs readFileSync path trim fs readFileSync path toLowerCase fs readFileSync path split / fs readFileSync path 0 split / 0 fs readFileSync path split / i fs readFileSync path split /\\// i fs readFileSync path 0 split ? 0 fs readFileSync path split unknown i fs readFileSync path split unknown whatever fs readFileSync path split unknown fs readFileSync path split ? i |
-| autogenerated/TaintedPath/tainted-string-steps.js:25:18:25:39 | path.sp ... own)[i] | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/tainted-string-steps.js:25:18:25:39 | path.sp ... own)[i] | fileImports | fs http url |
-| autogenerated/TaintedPath/tainted-string-steps.js:25:18:25:39 | path.sp ... own)[i] | receiverName | fs |
-| autogenerated/TaintedPath/tainted-string-steps.js:25:18:25:39 | path.sp ... own)[i] | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:25:29:25:35 | unknown | CalleeFlexibleAccessPath | path.split |
-| autogenerated/TaintedPath/tainted-string-steps.js:25:29:25:35 | unknown | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:25:29:25:35 | unknown | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/tainted-string-steps.js:25:29:25:35 | unknown | assignedToPropName |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:25:29:25:35 | unknown | calleeImports | url |
-| autogenerated/TaintedPath/tainted-string-steps.js:25:29:25:35 | unknown | contextFunctionInterfaces |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:25:29:25:35 | unknown | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/tainted-string-steps.js:25:29:25:35 | unknown | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path substring i j fs readFileSync path substring 4 fs readFileSync path substring 0 i fs readFileSync path substr 4 fs readFileSync path slice 4 fs readFileSync path concat unknown fs readFileSync unknown concat path fs readFileSync unknown concat unknown path fs readFileSync path trim fs readFileSync path toLowerCase fs readFileSync path split / fs readFileSync path 0 split / 0 fs readFileSync path split / i fs readFileSync path split /\\// i fs readFileSync path 0 split ? 0 fs readFileSync path split unknown i fs readFileSync path split unknown whatever fs readFileSync path split unknown fs readFileSync path split ? i |
-| autogenerated/TaintedPath/tainted-string-steps.js:25:29:25:35 | unknown | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/tainted-string-steps.js:25:29:25:35 | unknown | fileImports | fs http url |
-| autogenerated/TaintedPath/tainted-string-steps.js:25:29:25:35 | unknown | receiverName | path |
-| autogenerated/TaintedPath/tainted-string-steps.js:25:29:25:35 | unknown | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:26:18:26:45 | path.sp ... hatever | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/tainted-string-steps.js:26:18:26:45 | path.sp ... hatever | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:26:18:26:45 | path.sp ... hatever | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/tainted-string-steps.js:26:18:26:45 | path.sp ... hatever | assignedToPropName |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:26:18:26:45 | path.sp ... hatever | calleeImports | fs |
-| autogenerated/TaintedPath/tainted-string-steps.js:26:18:26:45 | path.sp ... hatever | contextFunctionInterfaces |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:26:18:26:45 | path.sp ... hatever | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/tainted-string-steps.js:26:18:26:45 | path.sp ... hatever | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path substring i j fs readFileSync path substring 4 fs readFileSync path substring 0 i fs readFileSync path substr 4 fs readFileSync path slice 4 fs readFileSync path concat unknown fs readFileSync unknown concat path fs readFileSync unknown concat unknown path fs readFileSync path trim fs readFileSync path toLowerCase fs readFileSync path split / fs readFileSync path 0 split / 0 fs readFileSync path split / i fs readFileSync path split /\\// i fs readFileSync path 0 split ? 0 fs readFileSync path split unknown i fs readFileSync path split unknown whatever fs readFileSync path split unknown fs readFileSync path split ? i |
-| autogenerated/TaintedPath/tainted-string-steps.js:26:18:26:45 | path.sp ... hatever | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/tainted-string-steps.js:26:18:26:45 | path.sp ... hatever | fileImports | fs http url |
-| autogenerated/TaintedPath/tainted-string-steps.js:26:18:26:45 | path.sp ... hatever | receiverName | fs |
-| autogenerated/TaintedPath/tainted-string-steps.js:26:18:26:45 | path.sp ... hatever | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:26:29:26:35 | unknown | CalleeFlexibleAccessPath | path.split |
-| autogenerated/TaintedPath/tainted-string-steps.js:26:29:26:35 | unknown | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:26:29:26:35 | unknown | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/tainted-string-steps.js:26:29:26:35 | unknown | assignedToPropName |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:26:29:26:35 | unknown | calleeImports | url |
-| autogenerated/TaintedPath/tainted-string-steps.js:26:29:26:35 | unknown | contextFunctionInterfaces |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:26:29:26:35 | unknown | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/tainted-string-steps.js:26:29:26:35 | unknown | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path substring i j fs readFileSync path substring 4 fs readFileSync path substring 0 i fs readFileSync path substr 4 fs readFileSync path slice 4 fs readFileSync path concat unknown fs readFileSync unknown concat path fs readFileSync unknown concat unknown path fs readFileSync path trim fs readFileSync path toLowerCase fs readFileSync path split / fs readFileSync path 0 split / 0 fs readFileSync path split / i fs readFileSync path split /\\// i fs readFileSync path 0 split ? 0 fs readFileSync path split unknown i fs readFileSync path split unknown whatever fs readFileSync path split unknown fs readFileSync path split ? i |
-| autogenerated/TaintedPath/tainted-string-steps.js:26:29:26:35 | unknown | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/tainted-string-steps.js:26:29:26:35 | unknown | fileImports | fs http url |
-| autogenerated/TaintedPath/tainted-string-steps.js:26:29:26:35 | unknown | receiverName | path |
-| autogenerated/TaintedPath/tainted-string-steps.js:26:29:26:35 | unknown | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:27:18:27:36 | path.split(unknown) | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/tainted-string-steps.js:27:18:27:36 | path.split(unknown) | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:27:18:27:36 | path.split(unknown) | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/tainted-string-steps.js:27:18:27:36 | path.split(unknown) | assignedToPropName |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:27:18:27:36 | path.split(unknown) | calleeImports | fs |
-| autogenerated/TaintedPath/tainted-string-steps.js:27:18:27:36 | path.split(unknown) | contextFunctionInterfaces |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:27:18:27:36 | path.split(unknown) | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/tainted-string-steps.js:27:18:27:36 | path.split(unknown) | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path substring i j fs readFileSync path substring 4 fs readFileSync path substring 0 i fs readFileSync path substr 4 fs readFileSync path slice 4 fs readFileSync path concat unknown fs readFileSync unknown concat path fs readFileSync unknown concat unknown path fs readFileSync path trim fs readFileSync path toLowerCase fs readFileSync path split / fs readFileSync path 0 split / 0 fs readFileSync path split / i fs readFileSync path split /\\// i fs readFileSync path 0 split ? 0 fs readFileSync path split unknown i fs readFileSync path split unknown whatever fs readFileSync path split unknown fs readFileSync path split ? i |
-| autogenerated/TaintedPath/tainted-string-steps.js:27:18:27:36 | path.split(unknown) | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/tainted-string-steps.js:27:18:27:36 | path.split(unknown) | fileImports | fs http url |
-| autogenerated/TaintedPath/tainted-string-steps.js:27:18:27:36 | path.split(unknown) | receiverName | fs |
-| autogenerated/TaintedPath/tainted-string-steps.js:27:18:27:36 | path.split(unknown) | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:27:29:27:35 | unknown | CalleeFlexibleAccessPath | path.split |
-| autogenerated/TaintedPath/tainted-string-steps.js:27:29:27:35 | unknown | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:27:29:27:35 | unknown | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/tainted-string-steps.js:27:29:27:35 | unknown | assignedToPropName |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:27:29:27:35 | unknown | calleeImports | url |
-| autogenerated/TaintedPath/tainted-string-steps.js:27:29:27:35 | unknown | contextFunctionInterfaces |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:27:29:27:35 | unknown | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/tainted-string-steps.js:27:29:27:35 | unknown | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path substring i j fs readFileSync path substring 4 fs readFileSync path substring 0 i fs readFileSync path substr 4 fs readFileSync path slice 4 fs readFileSync path concat unknown fs readFileSync unknown concat path fs readFileSync unknown concat unknown path fs readFileSync path trim fs readFileSync path toLowerCase fs readFileSync path split / fs readFileSync path 0 split / 0 fs readFileSync path split / i fs readFileSync path split /\\// i fs readFileSync path 0 split ? 0 fs readFileSync path split unknown i fs readFileSync path split unknown whatever fs readFileSync path split unknown fs readFileSync path split ? i |
-| autogenerated/TaintedPath/tainted-string-steps.js:27:29:27:35 | unknown | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/tainted-string-steps.js:27:29:27:35 | unknown | fileImports | fs http url |
-| autogenerated/TaintedPath/tainted-string-steps.js:27:29:27:35 | unknown | receiverName | path |
-| autogenerated/TaintedPath/tainted-string-steps.js:27:29:27:35 | unknown | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:28:18:28:35 | path.split("?")[i] | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/tainted-string-steps.js:28:18:28:35 | path.split("?")[i] | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:28:18:28:35 | path.split("?")[i] | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/tainted-string-steps.js:28:18:28:35 | path.split("?")[i] | assignedToPropName |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:28:18:28:35 | path.split("?")[i] | calleeImports | fs |
-| autogenerated/TaintedPath/tainted-string-steps.js:28:18:28:35 | path.split("?")[i] | contextFunctionInterfaces |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:28:18:28:35 | path.split("?")[i] | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/tainted-string-steps.js:28:18:28:35 | path.split("?")[i] | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path substring i j fs readFileSync path substring 4 fs readFileSync path substring 0 i fs readFileSync path substr 4 fs readFileSync path slice 4 fs readFileSync path concat unknown fs readFileSync unknown concat path fs readFileSync unknown concat unknown path fs readFileSync path trim fs readFileSync path toLowerCase fs readFileSync path split / fs readFileSync path 0 split / 0 fs readFileSync path split / i fs readFileSync path split /\\// i fs readFileSync path 0 split ? 0 fs readFileSync path split unknown i fs readFileSync path split unknown whatever fs readFileSync path split unknown fs readFileSync path split ? i |
-| autogenerated/TaintedPath/tainted-string-steps.js:28:18:28:35 | path.split("?")[i] | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/tainted-string-steps.js:28:18:28:35 | path.split("?")[i] | fileImports | fs http url |
-| autogenerated/TaintedPath/tainted-string-steps.js:28:18:28:35 | path.split("?")[i] | receiverName | fs |
-| autogenerated/TaintedPath/tainted-string-steps.js:28:18:28:35 | path.split("?")[i] | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:28:29:28:31 | "?" | CalleeFlexibleAccessPath | path.split |
-| autogenerated/TaintedPath/tainted-string-steps.js:28:29:28:31 | "?" | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:28:29:28:31 | "?" | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/tainted-string-steps.js:28:29:28:31 | "?" | assignedToPropName |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:28:29:28:31 | "?" | calleeImports | url |
-| autogenerated/TaintedPath/tainted-string-steps.js:28:29:28:31 | "?" | contextFunctionInterfaces |  |
-| autogenerated/TaintedPath/tainted-string-steps.js:28:29:28:31 | "?" | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/tainted-string-steps.js:28:29:28:31 | "?" | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path substring i j fs readFileSync path substring 4 fs readFileSync path substring 0 i fs readFileSync path substr 4 fs readFileSync path slice 4 fs readFileSync path concat unknown fs readFileSync unknown concat path fs readFileSync unknown concat unknown path fs readFileSync path trim fs readFileSync path toLowerCase fs readFileSync path split / fs readFileSync path 0 split / 0 fs readFileSync path split / i fs readFileSync path split /\\// i fs readFileSync path 0 split ? 0 fs readFileSync path split unknown i fs readFileSync path split unknown whatever fs readFileSync path split unknown fs readFileSync path split ? i |
-| autogenerated/TaintedPath/tainted-string-steps.js:28:29:28:31 | "?" | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/tainted-string-steps.js:28:29:28:31 | "?" | fileImports | fs http url |
-| autogenerated/TaintedPath/tainted-string-steps.js:28:29:28:31 | "?" | receiverName | path |
-| autogenerated/TaintedPath/tainted-string-steps.js:28:29:28:31 | "?" | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/torrents.js:1:30:1:44 | 'parse-torrent' | CalleeFlexibleAccessPath | require |
-| autogenerated/TaintedPath/torrents.js:1:30:1:44 | 'parse-torrent' | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/torrents.js:1:30:1:44 | 'parse-torrent' | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/torrents.js:1:30:1:44 | 'parse-torrent' | assignedToPropName |  |
-| autogenerated/TaintedPath/torrents.js:1:30:1:44 | 'parse-torrent' | calleeImports |  |
-| autogenerated/TaintedPath/torrents.js:1:30:1:44 | 'parse-torrent' | contextFunctionInterfaces | getTorrentData(dir, torrent) |
-| autogenerated/TaintedPath/torrents.js:1:30:1:44 | 'parse-torrent' | contextSurroundingFunctionParameters |  |
-| autogenerated/TaintedPath/torrents.js:1:30:1:44 | 'parse-torrent' | enclosingFunctionBody |  |
-| autogenerated/TaintedPath/torrents.js:1:30:1:44 | 'parse-torrent' | enclosingFunctionName |  |
-| autogenerated/TaintedPath/torrents.js:1:30:1:44 | 'parse-torrent' | fileImports | fs parse-torrent |
-| autogenerated/TaintedPath/torrents.js:1:30:1:44 | 'parse-torrent' | receiverName |  |
-| autogenerated/TaintedPath/torrents.js:1:30:1:44 | 'parse-torrent' | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/torrents.js:2:20:2:23 | 'fs' | CalleeFlexibleAccessPath | require |
-| autogenerated/TaintedPath/torrents.js:2:20:2:23 | 'fs' | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/torrents.js:2:20:2:23 | 'fs' | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/torrents.js:2:20:2:23 | 'fs' | assignedToPropName |  |
-| autogenerated/TaintedPath/torrents.js:2:20:2:23 | 'fs' | calleeImports |  |
-| autogenerated/TaintedPath/torrents.js:2:20:2:23 | 'fs' | contextFunctionInterfaces | getTorrentData(dir, torrent) |
-| autogenerated/TaintedPath/torrents.js:2:20:2:23 | 'fs' | contextSurroundingFunctionParameters |  |
-| autogenerated/TaintedPath/torrents.js:2:20:2:23 | 'fs' | enclosingFunctionBody |  |
-| autogenerated/TaintedPath/torrents.js:2:20:2:23 | 'fs' | enclosingFunctionName |  |
-| autogenerated/TaintedPath/torrents.js:2:20:2:23 | 'fs' | fileImports | fs parse-torrent |
-| autogenerated/TaintedPath/torrents.js:2:20:2:23 | 'fs' | receiverName |  |
-| autogenerated/TaintedPath/torrents.js:2:20:2:23 | 'fs' | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/torrents.js:5:26:5:32 | torrent | CalleeFlexibleAccessPath | parseTorrent |
-| autogenerated/TaintedPath/torrents.js:5:26:5:32 | torrent | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/torrents.js:5:26:5:32 | torrent | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/torrents.js:5:26:5:32 | torrent | assignedToPropName |  |
-| autogenerated/TaintedPath/torrents.js:5:26:5:32 | torrent | calleeImports | parse-torrent |
-| autogenerated/TaintedPath/torrents.js:5:26:5:32 | torrent | contextFunctionInterfaces | getTorrentData(dir, torrent) |
-| autogenerated/TaintedPath/torrents.js:5:26:5:32 | torrent | contextSurroundingFunctionParameters | (dir, torrent) |
-| autogenerated/TaintedPath/torrents.js:5:26:5:32 | torrent | enclosingFunctionBody | dir torrent name parseTorrent torrent name loc dir / name .torrent.data fs readFileSync loc |
-| autogenerated/TaintedPath/torrents.js:5:26:5:32 | torrent | enclosingFunctionName | getTorrentData |
-| autogenerated/TaintedPath/torrents.js:5:26:5:32 | torrent | fileImports | fs parse-torrent |
-| autogenerated/TaintedPath/torrents.js:5:26:5:32 | torrent | receiverName |  |
-| autogenerated/TaintedPath/torrents.js:5:26:5:32 | torrent | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/torrents.js:6:12:6:20 | dir + "/" | CalleeFlexibleAccessPath |  |
-| autogenerated/TaintedPath/torrents.js:6:12:6:20 | dir + "/" | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/torrents.js:6:12:6:20 | dir + "/" | InputArgumentIndex |  |
-| autogenerated/TaintedPath/torrents.js:6:12:6:20 | dir + "/" | assignedToPropName |  |
-| autogenerated/TaintedPath/torrents.js:6:12:6:20 | dir + "/" | calleeImports |  |
-| autogenerated/TaintedPath/torrents.js:6:12:6:20 | dir + "/" | contextFunctionInterfaces | getTorrentData(dir, torrent) |
-| autogenerated/TaintedPath/torrents.js:6:12:6:20 | dir + "/" | contextSurroundingFunctionParameters | (dir, torrent) |
-| autogenerated/TaintedPath/torrents.js:6:12:6:20 | dir + "/" | enclosingFunctionBody | dir torrent name parseTorrent torrent name loc dir / name .torrent.data fs readFileSync loc |
-| autogenerated/TaintedPath/torrents.js:6:12:6:20 | dir + "/" | enclosingFunctionName | getTorrentData |
-| autogenerated/TaintedPath/torrents.js:6:12:6:20 | dir + "/" | fileImports | fs parse-torrent |
-| autogenerated/TaintedPath/torrents.js:6:12:6:20 | dir + "/" | receiverName |  |
-| autogenerated/TaintedPath/torrents.js:6:12:6:20 | dir + "/" | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/torrents.js:7:25:7:27 | loc | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/torrents.js:7:25:7:27 | loc | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/torrents.js:7:25:7:27 | loc | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/torrents.js:7:25:7:27 | loc | assignedToPropName |  |
-| autogenerated/TaintedPath/torrents.js:7:25:7:27 | loc | calleeImports | fs |
-| autogenerated/TaintedPath/torrents.js:7:25:7:27 | loc | contextFunctionInterfaces | getTorrentData(dir, torrent) |
-| autogenerated/TaintedPath/torrents.js:7:25:7:27 | loc | contextSurroundingFunctionParameters | (dir, torrent) |
-| autogenerated/TaintedPath/torrents.js:7:25:7:27 | loc | enclosingFunctionBody | dir torrent name parseTorrent torrent name loc dir / name .torrent.data fs readFileSync loc |
-| autogenerated/TaintedPath/torrents.js:7:25:7:27 | loc | enclosingFunctionName | getTorrentData |
-| autogenerated/TaintedPath/torrents.js:7:25:7:27 | loc | fileImports | fs parse-torrent |
-| autogenerated/TaintedPath/torrents.js:7:25:7:27 | loc | receiverName | fs |
-| autogenerated/TaintedPath/torrents.js:7:25:7:27 | loc | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/typescript.ts:1:18:1:21 | 'fs' | CalleeFlexibleAccessPath | require |
-| autogenerated/TaintedPath/typescript.ts:1:18:1:21 | 'fs' | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/typescript.ts:1:18:1:21 | 'fs' | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/typescript.ts:1:18:1:21 | 'fs' | assignedToPropName |  |
-| autogenerated/TaintedPath/typescript.ts:1:18:1:21 | 'fs' | calleeImports |  |
-| autogenerated/TaintedPath/typescript.ts:1:18:1:21 | 'fs' | contextFunctionInterfaces |  |
-| autogenerated/TaintedPath/typescript.ts:1:18:1:21 | 'fs' | contextSurroundingFunctionParameters |  |
-| autogenerated/TaintedPath/typescript.ts:1:18:1:21 | 'fs' | enclosingFunctionBody |  |
-| autogenerated/TaintedPath/typescript.ts:1:18:1:21 | 'fs' | enclosingFunctionName |  |
-| autogenerated/TaintedPath/typescript.ts:1:18:1:21 | 'fs' | fileImports | fs http path sanitize-filename url |
-| autogenerated/TaintedPath/typescript.ts:1:18:1:21 | 'fs' | receiverName |  |
-| autogenerated/TaintedPath/typescript.ts:1:18:1:21 | 'fs' | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/typescript.ts:2:20:2:25 | 'http' | CalleeFlexibleAccessPath | require |
-| autogenerated/TaintedPath/typescript.ts:2:20:2:25 | 'http' | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/typescript.ts:2:20:2:25 | 'http' | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/typescript.ts:2:20:2:25 | 'http' | assignedToPropName |  |
-| autogenerated/TaintedPath/typescript.ts:2:20:2:25 | 'http' | calleeImports |  |
-| autogenerated/TaintedPath/typescript.ts:2:20:2:25 | 'http' | contextFunctionInterfaces |  |
-| autogenerated/TaintedPath/typescript.ts:2:20:2:25 | 'http' | contextSurroundingFunctionParameters |  |
-| autogenerated/TaintedPath/typescript.ts:2:20:2:25 | 'http' | enclosingFunctionBody |  |
-| autogenerated/TaintedPath/typescript.ts:2:20:2:25 | 'http' | enclosingFunctionName |  |
-| autogenerated/TaintedPath/typescript.ts:2:20:2:25 | 'http' | fileImports | fs http path sanitize-filename url |
-| autogenerated/TaintedPath/typescript.ts:2:20:2:25 | 'http' | receiverName |  |
-| autogenerated/TaintedPath/typescript.ts:2:20:2:25 | 'http' | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/typescript.ts:3:19:3:23 | 'url' | CalleeFlexibleAccessPath | require |
-| autogenerated/TaintedPath/typescript.ts:3:19:3:23 | 'url' | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/typescript.ts:3:19:3:23 | 'url' | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/typescript.ts:3:19:3:23 | 'url' | assignedToPropName |  |
-| autogenerated/TaintedPath/typescript.ts:3:19:3:23 | 'url' | calleeImports |  |
-| autogenerated/TaintedPath/typescript.ts:3:19:3:23 | 'url' | contextFunctionInterfaces |  |
-| autogenerated/TaintedPath/typescript.ts:3:19:3:23 | 'url' | contextSurroundingFunctionParameters |  |
-| autogenerated/TaintedPath/typescript.ts:3:19:3:23 | 'url' | enclosingFunctionBody |  |
-| autogenerated/TaintedPath/typescript.ts:3:19:3:23 | 'url' | enclosingFunctionName |  |
-| autogenerated/TaintedPath/typescript.ts:3:19:3:23 | 'url' | fileImports | fs http path sanitize-filename url |
-| autogenerated/TaintedPath/typescript.ts:3:19:3:23 | 'url' | receiverName |  |
-| autogenerated/TaintedPath/typescript.ts:3:19:3:23 | 'url' | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/typescript.ts:4:24:4:42 | 'sanitize-filename' | CalleeFlexibleAccessPath | require |
-| autogenerated/TaintedPath/typescript.ts:4:24:4:42 | 'sanitize-filename' | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/typescript.ts:4:24:4:42 | 'sanitize-filename' | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/typescript.ts:4:24:4:42 | 'sanitize-filename' | assignedToPropName |  |
-| autogenerated/TaintedPath/typescript.ts:4:24:4:42 | 'sanitize-filename' | calleeImports |  |
-| autogenerated/TaintedPath/typescript.ts:4:24:4:42 | 'sanitize-filename' | contextFunctionInterfaces |  |
-| autogenerated/TaintedPath/typescript.ts:4:24:4:42 | 'sanitize-filename' | contextSurroundingFunctionParameters |  |
-| autogenerated/TaintedPath/typescript.ts:4:24:4:42 | 'sanitize-filename' | enclosingFunctionBody |  |
-| autogenerated/TaintedPath/typescript.ts:4:24:4:42 | 'sanitize-filename' | enclosingFunctionName |  |
-| autogenerated/TaintedPath/typescript.ts:4:24:4:42 | 'sanitize-filename' | fileImports | fs http path sanitize-filename url |
-| autogenerated/TaintedPath/typescript.ts:4:24:4:42 | 'sanitize-filename' | receiverName |  |
-| autogenerated/TaintedPath/typescript.ts:4:24:4:42 | 'sanitize-filename' | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/typescript.ts:5:26:5:31 | 'path' | CalleeFlexibleAccessPath | require |
-| autogenerated/TaintedPath/typescript.ts:5:26:5:31 | 'path' | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/typescript.ts:5:26:5:31 | 'path' | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/typescript.ts:5:26:5:31 | 'path' | assignedToPropName |  |
-| autogenerated/TaintedPath/typescript.ts:5:26:5:31 | 'path' | calleeImports |  |
-| autogenerated/TaintedPath/typescript.ts:5:26:5:31 | 'path' | contextFunctionInterfaces |  |
-| autogenerated/TaintedPath/typescript.ts:5:26:5:31 | 'path' | contextSurroundingFunctionParameters |  |
-| autogenerated/TaintedPath/typescript.ts:5:26:5:31 | 'path' | enclosingFunctionBody |  |
-| autogenerated/TaintedPath/typescript.ts:5:26:5:31 | 'path' | enclosingFunctionName |  |
-| autogenerated/TaintedPath/typescript.ts:5:26:5:31 | 'path' | fileImports | fs http path sanitize-filename url |
-| autogenerated/TaintedPath/typescript.ts:5:26:5:31 | 'path' | receiverName |  |
-| autogenerated/TaintedPath/typescript.ts:5:26:5:31 | 'path' | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/typescript.ts:8:32:34:1 | functio ... nted\\n\\n} | CalleeFlexibleAccessPath | http.createServer |
-| autogenerated/TaintedPath/typescript.ts:8:32:34:1 | functio ... nted\\n\\n} | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/typescript.ts:8:32:34:1 | functio ... nted\\n\\n} | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/typescript.ts:8:32:34:1 | functio ... nted\\n\\n} | assignedToPropName |  |
-| autogenerated/TaintedPath/typescript.ts:8:32:34:1 | functio ... nted\\n\\n} | calleeImports | http |
-| autogenerated/TaintedPath/typescript.ts:8:32:34:1 | functio ... nted\\n\\n} | contextFunctionInterfaces |  |
-| autogenerated/TaintedPath/typescript.ts:8:32:34:1 | functio ... nted\\n\\n} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/typescript.ts:8:32:34:1 | functio ... nted\\n\\n} | enclosingFunctionBody |  |
-| autogenerated/TaintedPath/typescript.ts:8:32:34:1 | functio ... nted\\n\\n} | enclosingFunctionName |  |
-| autogenerated/TaintedPath/typescript.ts:8:32:34:1 | functio ... nted\\n\\n} | fileImports | fs http path sanitize-filename url |
-| autogenerated/TaintedPath/typescript.ts:8:32:34:1 | functio ... nted\\n\\n} | receiverName | http |
-| autogenerated/TaintedPath/typescript.ts:8:32:34:1 | functio ... nted\\n\\n} | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/typescript.ts:12:29:12:32 | path | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/typescript.ts:12:29:12:32 | path | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/typescript.ts:12:29:12:32 | path | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/typescript.ts:12:29:12:32 | path | assignedToPropName |  |
-| autogenerated/TaintedPath/typescript.ts:12:29:12:32 | path | calleeImports | fs |
-| autogenerated/TaintedPath/typescript.ts:12:29:12:32 | path | contextFunctionInterfaces |  |
-| autogenerated/TaintedPath/typescript.ts:12:29:12:32 | path | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/typescript.ts:12:29:12:32 | path | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path path foo.txt res write fs readFileSync path path2 path path2 res write fs readFileSync path2 path3 path path3 res write fs readFileSync path3 path4 path path4 res write fs readFileSync path4 path5 path path5 clean res write fs readFileSync path5 path6 path path6 clean res write fs readFileSync path6 |
-| autogenerated/TaintedPath/typescript.ts:12:29:12:32 | path | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/typescript.ts:12:29:12:32 | path | fileImports | fs http path sanitize-filename url |
-| autogenerated/TaintedPath/typescript.ts:12:29:12:32 | path | receiverName | fs |
-| autogenerated/TaintedPath/typescript.ts:12:29:12:32 | path | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/typescript.ts:15:31:15:34 | path | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/typescript.ts:15:31:15:34 | path | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/typescript.ts:15:31:15:34 | path | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/typescript.ts:15:31:15:34 | path | assignedToPropName |  |
-| autogenerated/TaintedPath/typescript.ts:15:31:15:34 | path | calleeImports | fs |
-| autogenerated/TaintedPath/typescript.ts:15:31:15:34 | path | contextFunctionInterfaces |  |
-| autogenerated/TaintedPath/typescript.ts:15:31:15:34 | path | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/typescript.ts:15:31:15:34 | path | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path path foo.txt res write fs readFileSync path path2 path path2 res write fs readFileSync path2 path3 path path3 res write fs readFileSync path3 path4 path path4 res write fs readFileSync path4 path5 path path5 clean res write fs readFileSync path5 path6 path path6 clean res write fs readFileSync path6 |
-| autogenerated/TaintedPath/typescript.ts:15:31:15:34 | path | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/typescript.ts:15:31:15:34 | path | fileImports | fs http path sanitize-filename url |
-| autogenerated/TaintedPath/typescript.ts:15:31:15:34 | path | receiverName | fs |
-| autogenerated/TaintedPath/typescript.ts:15:31:15:34 | path | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/typescript.ts:18:39:18:43 | path2 | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/typescript.ts:18:39:18:43 | path2 | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/typescript.ts:18:39:18:43 | path2 | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/typescript.ts:18:39:18:43 | path2 | assignedToPropName |  |
-| autogenerated/TaintedPath/typescript.ts:18:39:18:43 | path2 | calleeImports | fs |
-| autogenerated/TaintedPath/typescript.ts:18:39:18:43 | path2 | contextFunctionInterfaces |  |
-| autogenerated/TaintedPath/typescript.ts:18:39:18:43 | path2 | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/typescript.ts:18:39:18:43 | path2 | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path path foo.txt res write fs readFileSync path path2 path path2 res write fs readFileSync path2 path3 path path3 res write fs readFileSync path3 path4 path path4 res write fs readFileSync path4 path5 path path5 clean res write fs readFileSync path5 path6 path path6 clean res write fs readFileSync path6 |
-| autogenerated/TaintedPath/typescript.ts:18:39:18:43 | path2 | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/typescript.ts:18:39:18:43 | path2 | fileImports | fs http path sanitize-filename url |
-| autogenerated/TaintedPath/typescript.ts:18:39:18:43 | path2 | receiverName | fs |
-| autogenerated/TaintedPath/typescript.ts:18:39:18:43 | path2 | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/typescript.ts:21:39:21:43 | path3 | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/typescript.ts:21:39:21:43 | path3 | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/typescript.ts:21:39:21:43 | path3 | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/typescript.ts:21:39:21:43 | path3 | assignedToPropName |  |
-| autogenerated/TaintedPath/typescript.ts:21:39:21:43 | path3 | calleeImports | fs |
-| autogenerated/TaintedPath/typescript.ts:21:39:21:43 | path3 | contextFunctionInterfaces |  |
-| autogenerated/TaintedPath/typescript.ts:21:39:21:43 | path3 | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/typescript.ts:21:39:21:43 | path3 | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path path foo.txt res write fs readFileSync path path2 path path2 res write fs readFileSync path2 path3 path path3 res write fs readFileSync path3 path4 path path4 res write fs readFileSync path4 path5 path path5 clean res write fs readFileSync path5 path6 path path6 clean res write fs readFileSync path6 |
-| autogenerated/TaintedPath/typescript.ts:21:39:21:43 | path3 | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/typescript.ts:21:39:21:43 | path3 | fileImports | fs http path sanitize-filename url |
-| autogenerated/TaintedPath/typescript.ts:21:39:21:43 | path3 | receiverName | fs |
-| autogenerated/TaintedPath/typescript.ts:21:39:21:43 | path3 | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/typescript.ts:24:39:24:43 | path4 | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/typescript.ts:24:39:24:43 | path4 | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/typescript.ts:24:39:24:43 | path4 | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/typescript.ts:24:39:24:43 | path4 | assignedToPropName |  |
-| autogenerated/TaintedPath/typescript.ts:24:39:24:43 | path4 | calleeImports | fs |
-| autogenerated/TaintedPath/typescript.ts:24:39:24:43 | path4 | contextFunctionInterfaces |  |
-| autogenerated/TaintedPath/typescript.ts:24:39:24:43 | path4 | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/typescript.ts:24:39:24:43 | path4 | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path path foo.txt res write fs readFileSync path path2 path path2 res write fs readFileSync path2 path3 path path3 res write fs readFileSync path3 path4 path path4 res write fs readFileSync path4 path5 path path5 clean res write fs readFileSync path5 path6 path path6 clean res write fs readFileSync path6 |
-| autogenerated/TaintedPath/typescript.ts:24:39:24:43 | path4 | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/typescript.ts:24:39:24:43 | path4 | fileImports | fs http path sanitize-filename url |
-| autogenerated/TaintedPath/typescript.ts:24:39:24:43 | path4 | receiverName | fs |
-| autogenerated/TaintedPath/typescript.ts:24:39:24:43 | path4 | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/typescript.ts:28:29:28:33 | path5 | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/typescript.ts:28:29:28:33 | path5 | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/typescript.ts:28:29:28:33 | path5 | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/typescript.ts:28:29:28:33 | path5 | assignedToPropName |  |
-| autogenerated/TaintedPath/typescript.ts:28:29:28:33 | path5 | calleeImports | fs |
-| autogenerated/TaintedPath/typescript.ts:28:29:28:33 | path5 | contextFunctionInterfaces |  |
-| autogenerated/TaintedPath/typescript.ts:28:29:28:33 | path5 | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/typescript.ts:28:29:28:33 | path5 | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path path foo.txt res write fs readFileSync path path2 path path2 res write fs readFileSync path2 path3 path path3 res write fs readFileSync path3 path4 path path4 res write fs readFileSync path4 path5 path path5 clean res write fs readFileSync path5 path6 path path6 clean res write fs readFileSync path6 |
-| autogenerated/TaintedPath/typescript.ts:28:29:28:33 | path5 | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/typescript.ts:28:29:28:33 | path5 | fileImports | fs http path sanitize-filename url |
-| autogenerated/TaintedPath/typescript.ts:28:29:28:33 | path5 | receiverName | fs |
-| autogenerated/TaintedPath/typescript.ts:28:29:28:33 | path5 | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/typescript.ts:32:29:32:33 | path6 | CalleeFlexibleAccessPath | fs.readFileSync |
-| autogenerated/TaintedPath/typescript.ts:32:29:32:33 | path6 | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/typescript.ts:32:29:32:33 | path6 | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/typescript.ts:32:29:32:33 | path6 | assignedToPropName |  |
-| autogenerated/TaintedPath/typescript.ts:32:29:32:33 | path6 | calleeImports | fs |
-| autogenerated/TaintedPath/typescript.ts:32:29:32:33 | path6 | contextFunctionInterfaces |  |
-| autogenerated/TaintedPath/typescript.ts:32:29:32:33 | path6 | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/typescript.ts:32:29:32:33 | path6 | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path path foo.txt res write fs readFileSync path path2 path path2 res write fs readFileSync path2 path3 path path3 res write fs readFileSync path3 path4 path path4 res write fs readFileSync path4 path5 path path5 clean res write fs readFileSync path5 path6 path path6 clean res write fs readFileSync path6 |
-| autogenerated/TaintedPath/typescript.ts:32:29:32:33 | path6 | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/typescript.ts:32:29:32:33 | path6 | fileImports | fs http path sanitize-filename url |
-| autogenerated/TaintedPath/typescript.ts:32:29:32:33 | path6 | receiverName | fs |
-| autogenerated/TaintedPath/typescript.ts:32:29:32:33 | path6 | stringConcatenatedWith |  |
-| autogenerated/TaintedPath/views.js:1:43:1:55 | req.params[0] | CalleeFlexibleAccessPath | res.render |
-| autogenerated/TaintedPath/views.js:1:43:1:55 | req.params[0] | InputAccessPathFromCallee |  |
-| autogenerated/TaintedPath/views.js:1:43:1:55 | req.params[0] | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/views.js:1:43:1:55 | req.params[0] | assignedToPropName |  |
-| autogenerated/TaintedPath/views.js:1:43:1:55 | req.params[0] | calleeImports |  |
-| autogenerated/TaintedPath/views.js:1:43:1:55 | req.params[0] | contextFunctionInterfaces | exports(req, res) |
-| autogenerated/TaintedPath/views.js:1:43:1:55 | req.params[0] | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/views.js:1:43:1:55 | req.params[0] | enclosingFunctionBody | req res res render req 0 params 0 |
-| autogenerated/TaintedPath/views.js:1:43:1:55 | req.params[0] | enclosingFunctionName | exports |
-| autogenerated/TaintedPath/views.js:1:43:1:55 | req.params[0] | fileImports |  |
-| autogenerated/TaintedPath/views.js:1:43:1:55 | req.params[0] | receiverName | res |
-| autogenerated/TaintedPath/views.js:1:43:1:55 | req.params[0] | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:1:23:1:31 | 'message' | CalleeFlexibleAccessPath | this.addEventListener |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:1:23:1:31 | 'message' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:1:23:1:31 | 'message' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:1:23:1:31 | 'message' | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:1:23:1:31 | 'message' | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:1:23:1:31 | 'message' | contextFunctionInterfaces | foo(x, event, y)\ntest() |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:1:23:1:31 | 'message' | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:1:23:1:31 | 'message' | enclosingFunctionBody |  |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:1:23:1:31 | 'message' | enclosingFunctionName |  |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:1:23:1:31 | 'message' | fileImports |  |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:1:23:1:31 | 'message' | receiverName |  |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:1:23:1:31 | 'message' | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:1:34:3:1 | functio ... OT OK\\n} | CalleeFlexibleAccessPath | this.addEventListener |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:1:34:3:1 | functio ... OT OK\\n} | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:1:34:3:1 | functio ... OT OK\\n} | InputArgumentIndex | 1 |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:1:34:3:1 | functio ... OT OK\\n} | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:1:34:3:1 | functio ... OT OK\\n} | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:1:34:3:1 | functio ... OT OK\\n} | contextFunctionInterfaces | foo(x, event, y)\ntest() |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:1:34:3:1 | functio ... OT OK\\n} | contextSurroundingFunctionParameters | (event) |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:1:34:3:1 | functio ... OT OK\\n} | enclosingFunctionBody |  |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:1:34:3:1 | functio ... OT OK\\n} | enclosingFunctionName |  |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:1:34:3:1 | functio ... OT OK\\n} | fileImports |  |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:1:34:3:1 | functio ... OT OK\\n} | receiverName |  |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:1:34:3:1 | functio ... OT OK\\n} | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:2:20:2:29 | event.data | CalleeFlexibleAccessPath | document.write |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:2:20:2:29 | event.data | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:2:20:2:29 | event.data | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:2:20:2:29 | event.data | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:2:20:2:29 | event.data | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:2:20:2:29 | event.data | contextFunctionInterfaces | foo(x, event, y)\ntest() |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:2:20:2:29 | event.data | contextSurroundingFunctionParameters | (event) |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:2:20:2:29 | event.data | enclosingFunctionBody | event document write event data |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:2:20:2:29 | event.data | enclosingFunctionName | addEventListener#functionalargument |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:2:20:2:29 | event.data | fileImports |  |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:2:20:2:29 | event.data | receiverName | document |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:2:20:2:29 | event.data | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:5:23:5:31 | 'message' | CalleeFlexibleAccessPath | this.addEventListener |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:5:23:5:31 | 'message' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:5:23:5:31 | 'message' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:5:23:5:31 | 'message' | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:5:23:5:31 | 'message' | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:5:23:5:31 | 'message' | contextFunctionInterfaces | foo(x, event, y)\ntest() |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:5:23:5:31 | 'message' | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:5:23:5:31 | 'message' | enclosingFunctionBody |  |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:5:23:5:31 | 'message' | enclosingFunctionName |  |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:5:23:5:31 | 'message' | fileImports |  |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:5:23:5:31 | 'message' | receiverName |  |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:5:23:5:31 | 'message' | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:5:34:7:1 | functio ... OT OK\\n} | CalleeFlexibleAccessPath | this.addEventListener |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:5:34:7:1 | functio ... OT OK\\n} | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:5:34:7:1 | functio ... OT OK\\n} | InputArgumentIndex | 1 |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:5:34:7:1 | functio ... OT OK\\n} | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:5:34:7:1 | functio ... OT OK\\n} | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:5:34:7:1 | functio ... OT OK\\n} | contextFunctionInterfaces | foo(x, event, y)\ntest() |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:5:34:7:1 | functio ... OT OK\\n} | contextSurroundingFunctionParameters | (?) |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:5:34:7:1 | functio ... OT OK\\n} | enclosingFunctionBody |  |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:5:34:7:1 | functio ... OT OK\\n} | enclosingFunctionName |  |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:5:34:7:1 | functio ... OT OK\\n} | fileImports |  |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:5:34:7:1 | functio ... OT OK\\n} | receiverName |  |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:5:34:7:1 | functio ... OT OK\\n} | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:6:20:6:23 | data | CalleeFlexibleAccessPath | document.write |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:6:20:6:23 | data | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:6:20:6:23 | data | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:6:20:6:23 | data | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:6:20:6:23 | data | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:6:20:6:23 | data | contextFunctionInterfaces | foo(x, event, y)\ntest() |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:6:20:6:23 | data | contextSurroundingFunctionParameters | (?) |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:6:20:6:23 | data | enclosingFunctionBody | data document write data |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:6:20:6:23 | data | enclosingFunctionName | addEventListener#functionalargument |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:6:20:6:23 | data | fileImports |  |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:6:20:6:23 | data | receiverName | document |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:6:20:6:23 | data | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:11:24:11:29 | x.data | CalleeFlexibleAccessPath | document.write |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:11:24:11:29 | x.data | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:11:24:11:29 | x.data | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:11:24:11:29 | x.data | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:11:24:11:29 | x.data | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:11:24:11:29 | x.data | contextFunctionInterfaces | foo(x, event, y)\ntest() |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:11:24:11:29 | x.data | contextSurroundingFunctionParameters | (x, event, y) |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:11:24:11:29 | x.data | enclosingFunctionBody | foo x event y document write x data document write event data document write y data window addEventListener message foo bind null data items |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:11:24:11:29 | x.data | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:11:24:11:29 | x.data | fileImports |  |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:11:24:11:29 | x.data | receiverName | document |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:11:24:11:29 | x.data | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:12:24:12:33 | event.data | CalleeFlexibleAccessPath | document.write |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:12:24:12:33 | event.data | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:12:24:12:33 | event.data | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:12:24:12:33 | event.data | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:12:24:12:33 | event.data | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:12:24:12:33 | event.data | contextFunctionInterfaces | foo(x, event, y)\ntest() |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:12:24:12:33 | event.data | contextSurroundingFunctionParameters | (x, event, y) |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:12:24:12:33 | event.data | enclosingFunctionBody | foo x event y document write x data document write event data document write y data window addEventListener message foo bind null data items |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:12:24:12:33 | event.data | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:12:24:12:33 | event.data | fileImports |  |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:12:24:12:33 | event.data | receiverName | document |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:12:24:12:33 | event.data | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:13:24:13:29 | y.data | CalleeFlexibleAccessPath | document.write |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:13:24:13:29 | y.data | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:13:24:13:29 | y.data | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:13:24:13:29 | y.data | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:13:24:13:29 | y.data | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:13:24:13:29 | y.data | contextFunctionInterfaces | foo(x, event, y)\ntest() |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:13:24:13:29 | y.data | contextSurroundingFunctionParameters | (x, event, y) |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:13:24:13:29 | y.data | enclosingFunctionBody | foo x event y document write x data document write event data document write y data window addEventListener message foo bind null data items |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:13:24:13:29 | y.data | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:13:24:13:29 | y.data | fileImports |  |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:13:24:13:29 | y.data | receiverName | document |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:13:24:13:29 | y.data | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:16:29:16:37 | "message" | CalleeFlexibleAccessPath | window.addEventListener |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:16:29:16:37 | "message" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:16:29:16:37 | "message" | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:16:29:16:37 | "message" | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:16:29:16:37 | "message" | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:16:29:16:37 | "message" | contextFunctionInterfaces | foo(x, event, y)\ntest() |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:16:29:16:37 | "message" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:16:29:16:37 | "message" | enclosingFunctionBody | foo x event y document write x data document write event data document write y data window addEventListener message foo bind null data items |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:16:29:16:37 | "message" | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:16:29:16:37 | "message" | fileImports |  |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:16:29:16:37 | "message" | receiverName | window |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:16:29:16:37 | "message" | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:16:40:16:70 | foo.bin ... tems'}) | CalleeFlexibleAccessPath | window.addEventListener |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:16:40:16:70 | foo.bin ... tems'}) | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:16:40:16:70 | foo.bin ... tems'}) | InputArgumentIndex | 1 |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:16:40:16:70 | foo.bin ... tems'}) | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:16:40:16:70 | foo.bin ... tems'}) | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:16:40:16:70 | foo.bin ... tems'}) | contextFunctionInterfaces | foo(x, event, y)\ntest() |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:16:40:16:70 | foo.bin ... tems'}) | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:16:40:16:70 | foo.bin ... tems'}) | enclosingFunctionBody | foo x event y document write x data document write event data document write y data window addEventListener message foo bind null data items |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:16:40:16:70 | foo.bin ... tems'}) | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:16:40:16:70 | foo.bin ... tems'}) | fileImports |  |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:16:40:16:70 | foo.bin ... tems'}) | receiverName | window |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:16:40:16:70 | foo.bin ... tems'}) | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:16:49:16:52 | null | CalleeFlexibleAccessPath | foo.bind |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:16:49:16:52 | null | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:16:49:16:52 | null | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:16:49:16:52 | null | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:16:49:16:52 | null | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:16:49:16:52 | null | contextFunctionInterfaces | foo(x, event, y)\ntest() |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:16:49:16:52 | null | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:16:49:16:52 | null | enclosingFunctionBody | foo x event y document write x data document write event data document write y data window addEventListener message foo bind null data items |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:16:49:16:52 | null | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:16:49:16:52 | null | fileImports |  |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:16:49:16:52 | null | receiverName | foo |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:16:49:16:52 | null | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:16:55:16:69 | {data: 'items'} | CalleeFlexibleAccessPath | foo.bind |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:16:55:16:69 | {data: 'items'} | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:16:55:16:69 | {data: 'items'} | InputArgumentIndex | 1 |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:16:55:16:69 | {data: 'items'} | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:16:55:16:69 | {data: 'items'} | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:16:55:16:69 | {data: 'items'} | contextFunctionInterfaces | foo(x, event, y)\ntest() |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:16:55:16:69 | {data: 'items'} | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:16:55:16:69 | {data: 'items'} | enclosingFunctionBody | foo x event y document write x data document write event data document write y data window addEventListener message foo bind null data items |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:16:55:16:69 | {data: 'items'} | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:16:55:16:69 | {data: 'items'} | fileImports |  |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:16:55:16:69 | {data: 'items'} | receiverName | foo |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:16:55:16:69 | {data: 'items'} | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:16:62:16:68 | 'items' | CalleeFlexibleAccessPath | foo.bind |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:16:62:16:68 | 'items' | InputAccessPathFromCallee | 1.data |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:16:62:16:68 | 'items' | InputArgumentIndex | 1 |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:16:62:16:68 | 'items' | assignedToPropName | data |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:16:62:16:68 | 'items' | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:16:62:16:68 | 'items' | contextFunctionInterfaces | foo(x, event, y)\ntest() |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:16:62:16:68 | 'items' | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:16:62:16:68 | 'items' | enclosingFunctionBody | foo x event y document write x data document write event data document write y data window addEventListener message foo bind null data items |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:16:62:16:68 | 'items' | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:16:62:16:68 | 'items' | fileImports |  |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:16:62:16:68 | 'items' | receiverName |  |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:16:62:16:68 | 'items' | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:7:13:7:22 | 'app-root' | CalleeFlexibleAccessPath | Component |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:7:13:7:22 | 'app-root' | InputAccessPathFromCallee | 0.selector |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:7:13:7:22 | 'app-root' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:7:13:7:22 | 'app-root' | assignedToPropName | selector |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:7:13:7:22 | 'app-root' | calleeImports | @angular/core |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:7:13:7:22 | 'app-root' | contextFunctionInterfaces | constructor(route, sanitizer, router, sanitizer2)\nngOnInit()\nsomeMethod(routeSnapshot) |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:7:13:7:22 | 'app-root' | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:7:13:7:22 | 'app-root' | enclosingFunctionBody |  |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:7:13:7:22 | 'app-root' | enclosingFunctionName |  |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:7:13:7:22 | 'app-root' | fileImports | @angular/common @angular/core @angular/platform-browser @angular/router |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:7:13:7:22 | 'app-root' | receiverName |  |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:7:13:7:22 | 'app-root' | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:8:16:8:37 | './app. ... t.html' | CalleeFlexibleAccessPath | Component |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:8:16:8:37 | './app. ... t.html' | InputAccessPathFromCallee | 0.templateUrl |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:8:16:8:37 | './app. ... t.html' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:8:16:8:37 | './app. ... t.html' | assignedToPropName | templateUrl |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:8:16:8:37 | './app. ... t.html' | calleeImports | @angular/core |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:8:16:8:37 | './app. ... t.html' | contextFunctionInterfaces | constructor(route, sanitizer, router, sanitizer2)\nngOnInit()\nsomeMethod(routeSnapshot) |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:8:16:8:37 | './app. ... t.html' | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:8:16:8:37 | './app. ... t.html' | enclosingFunctionBody |  |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:8:16:8:37 | './app. ... t.html' | enclosingFunctionName |  |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:8:16:8:37 | './app. ... t.html' | fileImports | @angular/common @angular/core @angular/platform-browser @angular/router |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:8:16:8:37 | './app. ... t.html' | receiverName |  |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:8:16:8:37 | './app. ... t.html' | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:9:14:9:36 | ['./app ... t.css'] | CalleeFlexibleAccessPath | Component |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:9:14:9:36 | ['./app ... t.css'] | InputAccessPathFromCallee | 0.styleUrls |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:9:14:9:36 | ['./app ... t.css'] | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:9:14:9:36 | ['./app ... t.css'] | assignedToPropName | styleUrls |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:9:14:9:36 | ['./app ... t.css'] | calleeImports | @angular/core |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:9:14:9:36 | ['./app ... t.css'] | contextFunctionInterfaces | constructor(route, sanitizer, router, sanitizer2)\nngOnInit()\nsomeMethod(routeSnapshot) |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:9:14:9:36 | ['./app ... t.css'] | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:9:14:9:36 | ['./app ... t.css'] | enclosingFunctionBody |  |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:9:14:9:36 | ['./app ... t.css'] | enclosingFunctionName |  |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:9:14:9:36 | ['./app ... t.css'] | fileImports | @angular/common @angular/core @angular/platform-browser @angular/router |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:9:14:9:36 | ['./app ... t.css'] | receiverName |  |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:9:14:9:36 | ['./app ... t.css'] | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:9:15:9:35 | './app. ... nt.css' | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:9:15:9:35 | './app. ... nt.css' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:9:15:9:35 | './app. ... nt.css' | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:9:15:9:35 | './app. ... nt.css' | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:9:15:9:35 | './app. ... nt.css' | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:9:15:9:35 | './app. ... nt.css' | contextFunctionInterfaces | constructor(route, sanitizer, router, sanitizer2)\nngOnInit()\nsomeMethod(routeSnapshot) |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:9:15:9:35 | './app. ... nt.css' | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:9:15:9:35 | './app. ... nt.css' | enclosingFunctionBody |  |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:9:15:9:35 | './app. ... nt.css' | enclosingFunctionName |  |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:9:15:9:35 | './app. ... nt.css' | fileImports | @angular/common @angular/core @angular/platform-browser @angular/router |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:9:15:9:35 | './app. ... nt.css' | receiverName |  |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:9:15:9:35 | './app. ... nt.css' | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:22:44:22:71 | \\u0275getDOM ... ().href | CalleeFlexibleAccessPath | this.sanitizer.bypassSecurityTrustHtml |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:22:44:22:71 | \\u0275getDOM ... ().href | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:22:44:22:71 | \\u0275getDOM ... ().href | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:22:44:22:71 | \\u0275getDOM ... ().href | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:22:44:22:71 | \\u0275getDOM ... ().href | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:22:44:22:71 | \\u0275getDOM ... ().href | contextFunctionInterfaces | constructor(route, sanitizer, router, sanitizer2)\nngOnInit()\nsomeMethod(routeSnapshot) |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:22:44:22:71 | \\u0275getDOM ... ().href | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:22:44:22:71 | \\u0275getDOM ... ().href | enclosingFunctionBody | sanitizer bypassSecurityTrustHtml \u0275getDOM getLocation href sanitizer bypassSecurityTrustHtml route snapshot params foo sanitizer bypassSecurityTrustHtml route snapshot queryParams foo sanitizer bypassSecurityTrustHtml route snapshot fragment sanitizer bypassSecurityTrustHtml route snapshot paramMap get foo sanitizer bypassSecurityTrustHtml route snapshot queryParamMap get foo route paramMap subscribe map sanitizer bypassSecurityTrustHtml map get foo sanitizer bypassSecurityTrustHtml 1 route snapshot url 1 path sanitizer bypassSecurityTrustHtml 1 route snapshot url 1 parameters x sanitizer bypassSecurityTrustHtml 1 route snapshot url 1 parameterMap get x sanitizer bypassSecurityTrustHtml 1 route snapshot url 1 parameterMap params x sanitizer bypassSecurityTrustHtml router url sanitizer2 bypassSecurityTrustHtml router url |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:22:44:22:71 | \\u0275getDOM ... ().href | enclosingFunctionName | ngOnInit |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:22:44:22:71 | \\u0275getDOM ... ().href | fileImports | @angular/common @angular/core @angular/platform-browser @angular/router |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:22:44:22:71 | \\u0275getDOM ... ().href | receiverName |  |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:22:44:22:71 | \\u0275getDOM ... ().href | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:24:44:24:73 | this.ro ... ams.foo | CalleeFlexibleAccessPath | this.sanitizer.bypassSecurityTrustHtml |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:24:44:24:73 | this.ro ... ams.foo | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:24:44:24:73 | this.ro ... ams.foo | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:24:44:24:73 | this.ro ... ams.foo | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:24:44:24:73 | this.ro ... ams.foo | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:24:44:24:73 | this.ro ... ams.foo | contextFunctionInterfaces | constructor(route, sanitizer, router, sanitizer2)\nngOnInit()\nsomeMethod(routeSnapshot) |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:24:44:24:73 | this.ro ... ams.foo | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:24:44:24:73 | this.ro ... ams.foo | enclosingFunctionBody | sanitizer bypassSecurityTrustHtml \u0275getDOM getLocation href sanitizer bypassSecurityTrustHtml route snapshot params foo sanitizer bypassSecurityTrustHtml route snapshot queryParams foo sanitizer bypassSecurityTrustHtml route snapshot fragment sanitizer bypassSecurityTrustHtml route snapshot paramMap get foo sanitizer bypassSecurityTrustHtml route snapshot queryParamMap get foo route paramMap subscribe map sanitizer bypassSecurityTrustHtml map get foo sanitizer bypassSecurityTrustHtml 1 route snapshot url 1 path sanitizer bypassSecurityTrustHtml 1 route snapshot url 1 parameters x sanitizer bypassSecurityTrustHtml 1 route snapshot url 1 parameterMap get x sanitizer bypassSecurityTrustHtml 1 route snapshot url 1 parameterMap params x sanitizer bypassSecurityTrustHtml router url sanitizer2 bypassSecurityTrustHtml router url |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:24:44:24:73 | this.ro ... ams.foo | enclosingFunctionName | ngOnInit |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:24:44:24:73 | this.ro ... ams.foo | fileImports | @angular/common @angular/core @angular/platform-browser @angular/router |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:24:44:24:73 | this.ro ... ams.foo | receiverName |  |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:24:44:24:73 | this.ro ... ams.foo | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:25:44:25:78 | this.ro ... ams.foo | CalleeFlexibleAccessPath | this.sanitizer.bypassSecurityTrustHtml |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:25:44:25:78 | this.ro ... ams.foo | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:25:44:25:78 | this.ro ... ams.foo | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:25:44:25:78 | this.ro ... ams.foo | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:25:44:25:78 | this.ro ... ams.foo | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:25:44:25:78 | this.ro ... ams.foo | contextFunctionInterfaces | constructor(route, sanitizer, router, sanitizer2)\nngOnInit()\nsomeMethod(routeSnapshot) |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:25:44:25:78 | this.ro ... ams.foo | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:25:44:25:78 | this.ro ... ams.foo | enclosingFunctionBody | sanitizer bypassSecurityTrustHtml \u0275getDOM getLocation href sanitizer bypassSecurityTrustHtml route snapshot params foo sanitizer bypassSecurityTrustHtml route snapshot queryParams foo sanitizer bypassSecurityTrustHtml route snapshot fragment sanitizer bypassSecurityTrustHtml route snapshot paramMap get foo sanitizer bypassSecurityTrustHtml route snapshot queryParamMap get foo route paramMap subscribe map sanitizer bypassSecurityTrustHtml map get foo sanitizer bypassSecurityTrustHtml 1 route snapshot url 1 path sanitizer bypassSecurityTrustHtml 1 route snapshot url 1 parameters x sanitizer bypassSecurityTrustHtml 1 route snapshot url 1 parameterMap get x sanitizer bypassSecurityTrustHtml 1 route snapshot url 1 parameterMap params x sanitizer bypassSecurityTrustHtml router url sanitizer2 bypassSecurityTrustHtml router url |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:25:44:25:78 | this.ro ... ams.foo | enclosingFunctionName | ngOnInit |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:25:44:25:78 | this.ro ... ams.foo | fileImports | @angular/common @angular/core @angular/platform-browser @angular/router |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:25:44:25:78 | this.ro ... ams.foo | receiverName |  |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:25:44:25:78 | this.ro ... ams.foo | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:26:44:26:71 | this.ro ... ragment | CalleeFlexibleAccessPath | this.sanitizer.bypassSecurityTrustHtml |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:26:44:26:71 | this.ro ... ragment | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:26:44:26:71 | this.ro ... ragment | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:26:44:26:71 | this.ro ... ragment | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:26:44:26:71 | this.ro ... ragment | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:26:44:26:71 | this.ro ... ragment | contextFunctionInterfaces | constructor(route, sanitizer, router, sanitizer2)\nngOnInit()\nsomeMethod(routeSnapshot) |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:26:44:26:71 | this.ro ... ragment | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:26:44:26:71 | this.ro ... ragment | enclosingFunctionBody | sanitizer bypassSecurityTrustHtml \u0275getDOM getLocation href sanitizer bypassSecurityTrustHtml route snapshot params foo sanitizer bypassSecurityTrustHtml route snapshot queryParams foo sanitizer bypassSecurityTrustHtml route snapshot fragment sanitizer bypassSecurityTrustHtml route snapshot paramMap get foo sanitizer bypassSecurityTrustHtml route snapshot queryParamMap get foo route paramMap subscribe map sanitizer bypassSecurityTrustHtml map get foo sanitizer bypassSecurityTrustHtml 1 route snapshot url 1 path sanitizer bypassSecurityTrustHtml 1 route snapshot url 1 parameters x sanitizer bypassSecurityTrustHtml 1 route snapshot url 1 parameterMap get x sanitizer bypassSecurityTrustHtml 1 route snapshot url 1 parameterMap params x sanitizer bypassSecurityTrustHtml router url sanitizer2 bypassSecurityTrustHtml router url |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:26:44:26:71 | this.ro ... ragment | enclosingFunctionName | ngOnInit |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:26:44:26:71 | this.ro ... ragment | fileImports | @angular/common @angular/core @angular/platform-browser @angular/router |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:26:44:26:71 | this.ro ... ragment | receiverName |  |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:26:44:26:71 | this.ro ... ragment | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:27:44:27:82 | this.ro ... ('foo') | CalleeFlexibleAccessPath | this.sanitizer.bypassSecurityTrustHtml |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:27:44:27:82 | this.ro ... ('foo') | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:27:44:27:82 | this.ro ... ('foo') | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:27:44:27:82 | this.ro ... ('foo') | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:27:44:27:82 | this.ro ... ('foo') | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:27:44:27:82 | this.ro ... ('foo') | contextFunctionInterfaces | constructor(route, sanitizer, router, sanitizer2)\nngOnInit()\nsomeMethod(routeSnapshot) |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:27:44:27:82 | this.ro ... ('foo') | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:27:44:27:82 | this.ro ... ('foo') | enclosingFunctionBody | sanitizer bypassSecurityTrustHtml \u0275getDOM getLocation href sanitizer bypassSecurityTrustHtml route snapshot params foo sanitizer bypassSecurityTrustHtml route snapshot queryParams foo sanitizer bypassSecurityTrustHtml route snapshot fragment sanitizer bypassSecurityTrustHtml route snapshot paramMap get foo sanitizer bypassSecurityTrustHtml route snapshot queryParamMap get foo route paramMap subscribe map sanitizer bypassSecurityTrustHtml map get foo sanitizer bypassSecurityTrustHtml 1 route snapshot url 1 path sanitizer bypassSecurityTrustHtml 1 route snapshot url 1 parameters x sanitizer bypassSecurityTrustHtml 1 route snapshot url 1 parameterMap get x sanitizer bypassSecurityTrustHtml 1 route snapshot url 1 parameterMap params x sanitizer bypassSecurityTrustHtml router url sanitizer2 bypassSecurityTrustHtml router url |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:27:44:27:82 | this.ro ... ('foo') | enclosingFunctionName | ngOnInit |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:27:44:27:82 | this.ro ... ('foo') | fileImports | @angular/common @angular/core @angular/platform-browser @angular/router |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:27:44:27:82 | this.ro ... ('foo') | receiverName |  |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:27:44:27:82 | this.ro ... ('foo') | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:27:77:27:81 | 'foo' | CalleeFlexibleAccessPath | this.route.snapshot.paramMap.get |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:27:77:27:81 | 'foo' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:27:77:27:81 | 'foo' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:27:77:27:81 | 'foo' | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:27:77:27:81 | 'foo' | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:27:77:27:81 | 'foo' | contextFunctionInterfaces | constructor(route, sanitizer, router, sanitizer2)\nngOnInit()\nsomeMethod(routeSnapshot) |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:27:77:27:81 | 'foo' | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:27:77:27:81 | 'foo' | enclosingFunctionBody | sanitizer bypassSecurityTrustHtml \u0275getDOM getLocation href sanitizer bypassSecurityTrustHtml route snapshot params foo sanitizer bypassSecurityTrustHtml route snapshot queryParams foo sanitizer bypassSecurityTrustHtml route snapshot fragment sanitizer bypassSecurityTrustHtml route snapshot paramMap get foo sanitizer bypassSecurityTrustHtml route snapshot queryParamMap get foo route paramMap subscribe map sanitizer bypassSecurityTrustHtml map get foo sanitizer bypassSecurityTrustHtml 1 route snapshot url 1 path sanitizer bypassSecurityTrustHtml 1 route snapshot url 1 parameters x sanitizer bypassSecurityTrustHtml 1 route snapshot url 1 parameterMap get x sanitizer bypassSecurityTrustHtml 1 route snapshot url 1 parameterMap params x sanitizer bypassSecurityTrustHtml router url sanitizer2 bypassSecurityTrustHtml router url |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:27:77:27:81 | 'foo' | enclosingFunctionName | ngOnInit |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:27:77:27:81 | 'foo' | fileImports | @angular/common @angular/core @angular/platform-browser @angular/router |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:27:77:27:81 | 'foo' | receiverName |  |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:27:77:27:81 | 'foo' | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:28:44:28:87 | this.ro ... ('foo') | CalleeFlexibleAccessPath | this.sanitizer.bypassSecurityTrustHtml |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:28:44:28:87 | this.ro ... ('foo') | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:28:44:28:87 | this.ro ... ('foo') | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:28:44:28:87 | this.ro ... ('foo') | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:28:44:28:87 | this.ro ... ('foo') | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:28:44:28:87 | this.ro ... ('foo') | contextFunctionInterfaces | constructor(route, sanitizer, router, sanitizer2)\nngOnInit()\nsomeMethod(routeSnapshot) |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:28:44:28:87 | this.ro ... ('foo') | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:28:44:28:87 | this.ro ... ('foo') | enclosingFunctionBody | sanitizer bypassSecurityTrustHtml \u0275getDOM getLocation href sanitizer bypassSecurityTrustHtml route snapshot params foo sanitizer bypassSecurityTrustHtml route snapshot queryParams foo sanitizer bypassSecurityTrustHtml route snapshot fragment sanitizer bypassSecurityTrustHtml route snapshot paramMap get foo sanitizer bypassSecurityTrustHtml route snapshot queryParamMap get foo route paramMap subscribe map sanitizer bypassSecurityTrustHtml map get foo sanitizer bypassSecurityTrustHtml 1 route snapshot url 1 path sanitizer bypassSecurityTrustHtml 1 route snapshot url 1 parameters x sanitizer bypassSecurityTrustHtml 1 route snapshot url 1 parameterMap get x sanitizer bypassSecurityTrustHtml 1 route snapshot url 1 parameterMap params x sanitizer bypassSecurityTrustHtml router url sanitizer2 bypassSecurityTrustHtml router url |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:28:44:28:87 | this.ro ... ('foo') | enclosingFunctionName | ngOnInit |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:28:44:28:87 | this.ro ... ('foo') | fileImports | @angular/common @angular/core @angular/platform-browser @angular/router |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:28:44:28:87 | this.ro ... ('foo') | receiverName |  |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:28:44:28:87 | this.ro ... ('foo') | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:28:82:28:86 | 'foo' | CalleeFlexibleAccessPath | this.route.snapshot.queryParamMap.get |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:28:82:28:86 | 'foo' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:28:82:28:86 | 'foo' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:28:82:28:86 | 'foo' | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:28:82:28:86 | 'foo' | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:28:82:28:86 | 'foo' | contextFunctionInterfaces | constructor(route, sanitizer, router, sanitizer2)\nngOnInit()\nsomeMethod(routeSnapshot) |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:28:82:28:86 | 'foo' | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:28:82:28:86 | 'foo' | enclosingFunctionBody | sanitizer bypassSecurityTrustHtml \u0275getDOM getLocation href sanitizer bypassSecurityTrustHtml route snapshot params foo sanitizer bypassSecurityTrustHtml route snapshot queryParams foo sanitizer bypassSecurityTrustHtml route snapshot fragment sanitizer bypassSecurityTrustHtml route snapshot paramMap get foo sanitizer bypassSecurityTrustHtml route snapshot queryParamMap get foo route paramMap subscribe map sanitizer bypassSecurityTrustHtml map get foo sanitizer bypassSecurityTrustHtml 1 route snapshot url 1 path sanitizer bypassSecurityTrustHtml 1 route snapshot url 1 parameters x sanitizer bypassSecurityTrustHtml 1 route snapshot url 1 parameterMap get x sanitizer bypassSecurityTrustHtml 1 route snapshot url 1 parameterMap params x sanitizer bypassSecurityTrustHtml router url sanitizer2 bypassSecurityTrustHtml router url |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:28:82:28:86 | 'foo' | enclosingFunctionName | ngOnInit |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:28:82:28:86 | 'foo' | fileImports | @angular/common @angular/core @angular/platform-browser @angular/router |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:28:82:28:86 | 'foo' | receiverName |  |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:28:82:28:86 | 'foo' | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:29:35:31:5 | map =>  ... K\\n    } | CalleeFlexibleAccessPath | this.route.paramMap.subscribe |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:29:35:31:5 | map =>  ... K\\n    } | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:29:35:31:5 | map =>  ... K\\n    } | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:29:35:31:5 | map =>  ... K\\n    } | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:29:35:31:5 | map =>  ... K\\n    } | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:29:35:31:5 | map =>  ... K\\n    } | contextFunctionInterfaces | constructor(route, sanitizer, router, sanitizer2)\nngOnInit()\nsomeMethod(routeSnapshot) |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:29:35:31:5 | map =>  ... K\\n    } | contextSurroundingFunctionParameters | ()\n(map) |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:29:35:31:5 | map =>  ... K\\n    } | enclosingFunctionBody | sanitizer bypassSecurityTrustHtml \u0275getDOM getLocation href sanitizer bypassSecurityTrustHtml route snapshot params foo sanitizer bypassSecurityTrustHtml route snapshot queryParams foo sanitizer bypassSecurityTrustHtml route snapshot fragment sanitizer bypassSecurityTrustHtml route snapshot paramMap get foo sanitizer bypassSecurityTrustHtml route snapshot queryParamMap get foo route paramMap subscribe map sanitizer bypassSecurityTrustHtml map get foo sanitizer bypassSecurityTrustHtml 1 route snapshot url 1 path sanitizer bypassSecurityTrustHtml 1 route snapshot url 1 parameters x sanitizer bypassSecurityTrustHtml 1 route snapshot url 1 parameterMap get x sanitizer bypassSecurityTrustHtml 1 route snapshot url 1 parameterMap params x sanitizer bypassSecurityTrustHtml router url sanitizer2 bypassSecurityTrustHtml router url |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:29:35:31:5 | map =>  ... K\\n    } | enclosingFunctionName | ngOnInit |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:29:35:31:5 | map =>  ... K\\n    } | fileImports | @angular/common @angular/core @angular/platform-browser @angular/router |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:29:35:31:5 | map =>  ... K\\n    } | receiverName |  |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:29:35:31:5 | map =>  ... K\\n    } | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:30:46:30:59 | map.get('foo') | CalleeFlexibleAccessPath | this.sanitizer.bypassSecurityTrustHtml |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:30:46:30:59 | map.get('foo') | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:30:46:30:59 | map.get('foo') | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:30:46:30:59 | map.get('foo') | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:30:46:30:59 | map.get('foo') | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:30:46:30:59 | map.get('foo') | contextFunctionInterfaces | constructor(route, sanitizer, router, sanitizer2)\nngOnInit()\nsomeMethod(routeSnapshot) |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:30:46:30:59 | map.get('foo') | contextSurroundingFunctionParameters | ()\n(map) |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:30:46:30:59 | map.get('foo') | enclosingFunctionBody | sanitizer bypassSecurityTrustHtml \u0275getDOM getLocation href sanitizer bypassSecurityTrustHtml route snapshot params foo sanitizer bypassSecurityTrustHtml route snapshot queryParams foo sanitizer bypassSecurityTrustHtml route snapshot fragment sanitizer bypassSecurityTrustHtml route snapshot paramMap get foo sanitizer bypassSecurityTrustHtml route snapshot queryParamMap get foo route paramMap subscribe map sanitizer bypassSecurityTrustHtml map get foo sanitizer bypassSecurityTrustHtml 1 route snapshot url 1 path sanitizer bypassSecurityTrustHtml 1 route snapshot url 1 parameters x sanitizer bypassSecurityTrustHtml 1 route snapshot url 1 parameterMap get x sanitizer bypassSecurityTrustHtml 1 route snapshot url 1 parameterMap params x sanitizer bypassSecurityTrustHtml router url sanitizer2 bypassSecurityTrustHtml router url |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:30:46:30:59 | map.get('foo') | enclosingFunctionName | ngOnInit |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:30:46:30:59 | map.get('foo') | fileImports | @angular/common @angular/core @angular/platform-browser @angular/router |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:30:46:30:59 | map.get('foo') | receiverName |  |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:30:46:30:59 | map.get('foo') | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:30:54:30:58 | 'foo' | CalleeFlexibleAccessPath | map.get |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:30:54:30:58 | 'foo' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:30:54:30:58 | 'foo' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:30:54:30:58 | 'foo' | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:30:54:30:58 | 'foo' | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:30:54:30:58 | 'foo' | contextFunctionInterfaces | constructor(route, sanitizer, router, sanitizer2)\nngOnInit()\nsomeMethod(routeSnapshot) |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:30:54:30:58 | 'foo' | contextSurroundingFunctionParameters | ()\n(map) |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:30:54:30:58 | 'foo' | enclosingFunctionBody | sanitizer bypassSecurityTrustHtml \u0275getDOM getLocation href sanitizer bypassSecurityTrustHtml route snapshot params foo sanitizer bypassSecurityTrustHtml route snapshot queryParams foo sanitizer bypassSecurityTrustHtml route snapshot fragment sanitizer bypassSecurityTrustHtml route snapshot paramMap get foo sanitizer bypassSecurityTrustHtml route snapshot queryParamMap get foo route paramMap subscribe map sanitizer bypassSecurityTrustHtml map get foo sanitizer bypassSecurityTrustHtml 1 route snapshot url 1 path sanitizer bypassSecurityTrustHtml 1 route snapshot url 1 parameters x sanitizer bypassSecurityTrustHtml 1 route snapshot url 1 parameterMap get x sanitizer bypassSecurityTrustHtml 1 route snapshot url 1 parameterMap params x sanitizer bypassSecurityTrustHtml router url sanitizer2 bypassSecurityTrustHtml router url |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:30:54:30:58 | 'foo' | enclosingFunctionName | ngOnInit |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:30:54:30:58 | 'foo' | fileImports | @angular/common @angular/core @angular/platform-browser @angular/router |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:30:54:30:58 | 'foo' | receiverName | map |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:30:54:30:58 | 'foo' | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:33:44:33:74 | this.ro ... 1].path | CalleeFlexibleAccessPath | this.sanitizer.bypassSecurityTrustHtml |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:33:44:33:74 | this.ro ... 1].path | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:33:44:33:74 | this.ro ... 1].path | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:33:44:33:74 | this.ro ... 1].path | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:33:44:33:74 | this.ro ... 1].path | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:33:44:33:74 | this.ro ... 1].path | contextFunctionInterfaces | constructor(route, sanitizer, router, sanitizer2)\nngOnInit()\nsomeMethod(routeSnapshot) |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:33:44:33:74 | this.ro ... 1].path | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:33:44:33:74 | this.ro ... 1].path | enclosingFunctionBody | sanitizer bypassSecurityTrustHtml \u0275getDOM getLocation href sanitizer bypassSecurityTrustHtml route snapshot params foo sanitizer bypassSecurityTrustHtml route snapshot queryParams foo sanitizer bypassSecurityTrustHtml route snapshot fragment sanitizer bypassSecurityTrustHtml route snapshot paramMap get foo sanitizer bypassSecurityTrustHtml route snapshot queryParamMap get foo route paramMap subscribe map sanitizer bypassSecurityTrustHtml map get foo sanitizer bypassSecurityTrustHtml 1 route snapshot url 1 path sanitizer bypassSecurityTrustHtml 1 route snapshot url 1 parameters x sanitizer bypassSecurityTrustHtml 1 route snapshot url 1 parameterMap get x sanitizer bypassSecurityTrustHtml 1 route snapshot url 1 parameterMap params x sanitizer bypassSecurityTrustHtml router url sanitizer2 bypassSecurityTrustHtml router url |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:33:44:33:74 | this.ro ... 1].path | enclosingFunctionName | ngOnInit |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:33:44:33:74 | this.ro ... 1].path | fileImports | @angular/common @angular/core @angular/platform-browser @angular/router |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:33:44:33:74 | this.ro ... 1].path | receiverName |  |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:33:44:33:74 | this.ro ... 1].path | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:34:44:34:82 | this.ro ... eters.x | CalleeFlexibleAccessPath | this.sanitizer.bypassSecurityTrustHtml |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:34:44:34:82 | this.ro ... eters.x | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:34:44:34:82 | this.ro ... eters.x | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:34:44:34:82 | this.ro ... eters.x | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:34:44:34:82 | this.ro ... eters.x | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:34:44:34:82 | this.ro ... eters.x | contextFunctionInterfaces | constructor(route, sanitizer, router, sanitizer2)\nngOnInit()\nsomeMethod(routeSnapshot) |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:34:44:34:82 | this.ro ... eters.x | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:34:44:34:82 | this.ro ... eters.x | enclosingFunctionBody | sanitizer bypassSecurityTrustHtml \u0275getDOM getLocation href sanitizer bypassSecurityTrustHtml route snapshot params foo sanitizer bypassSecurityTrustHtml route snapshot queryParams foo sanitizer bypassSecurityTrustHtml route snapshot fragment sanitizer bypassSecurityTrustHtml route snapshot paramMap get foo sanitizer bypassSecurityTrustHtml route snapshot queryParamMap get foo route paramMap subscribe map sanitizer bypassSecurityTrustHtml map get foo sanitizer bypassSecurityTrustHtml 1 route snapshot url 1 path sanitizer bypassSecurityTrustHtml 1 route snapshot url 1 parameters x sanitizer bypassSecurityTrustHtml 1 route snapshot url 1 parameterMap get x sanitizer bypassSecurityTrustHtml 1 route snapshot url 1 parameterMap params x sanitizer bypassSecurityTrustHtml router url sanitizer2 bypassSecurityTrustHtml router url |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:34:44:34:82 | this.ro ... eters.x | enclosingFunctionName | ngOnInit |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:34:44:34:82 | this.ro ... eters.x | fileImports | @angular/common @angular/core @angular/platform-browser @angular/router |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:34:44:34:82 | this.ro ... eters.x | receiverName |  |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:34:44:34:82 | this.ro ... eters.x | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:35:44:35:91 | this.ro ... et('x') | CalleeFlexibleAccessPath | this.sanitizer.bypassSecurityTrustHtml |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:35:44:35:91 | this.ro ... et('x') | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:35:44:35:91 | this.ro ... et('x') | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:35:44:35:91 | this.ro ... et('x') | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:35:44:35:91 | this.ro ... et('x') | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:35:44:35:91 | this.ro ... et('x') | contextFunctionInterfaces | constructor(route, sanitizer, router, sanitizer2)\nngOnInit()\nsomeMethod(routeSnapshot) |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:35:44:35:91 | this.ro ... et('x') | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:35:44:35:91 | this.ro ... et('x') | enclosingFunctionBody | sanitizer bypassSecurityTrustHtml \u0275getDOM getLocation href sanitizer bypassSecurityTrustHtml route snapshot params foo sanitizer bypassSecurityTrustHtml route snapshot queryParams foo sanitizer bypassSecurityTrustHtml route snapshot fragment sanitizer bypassSecurityTrustHtml route snapshot paramMap get foo sanitizer bypassSecurityTrustHtml route snapshot queryParamMap get foo route paramMap subscribe map sanitizer bypassSecurityTrustHtml map get foo sanitizer bypassSecurityTrustHtml 1 route snapshot url 1 path sanitizer bypassSecurityTrustHtml 1 route snapshot url 1 parameters x sanitizer bypassSecurityTrustHtml 1 route snapshot url 1 parameterMap get x sanitizer bypassSecurityTrustHtml 1 route snapshot url 1 parameterMap params x sanitizer bypassSecurityTrustHtml router url sanitizer2 bypassSecurityTrustHtml router url |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:35:44:35:91 | this.ro ... et('x') | enclosingFunctionName | ngOnInit |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:35:44:35:91 | this.ro ... et('x') | fileImports | @angular/common @angular/core @angular/platform-browser @angular/router |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:35:44:35:91 | this.ro ... et('x') | receiverName |  |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:35:44:35:91 | this.ro ... et('x') | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:35:88:35:90 | 'x' | CalleeFlexibleAccessPath | this.route.snapshot.url.1.parameterMap.get |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:35:88:35:90 | 'x' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:35:88:35:90 | 'x' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:35:88:35:90 | 'x' | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:35:88:35:90 | 'x' | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:35:88:35:90 | 'x' | contextFunctionInterfaces | constructor(route, sanitizer, router, sanitizer2)\nngOnInit()\nsomeMethod(routeSnapshot) |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:35:88:35:90 | 'x' | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:35:88:35:90 | 'x' | enclosingFunctionBody | sanitizer bypassSecurityTrustHtml \u0275getDOM getLocation href sanitizer bypassSecurityTrustHtml route snapshot params foo sanitizer bypassSecurityTrustHtml route snapshot queryParams foo sanitizer bypassSecurityTrustHtml route snapshot fragment sanitizer bypassSecurityTrustHtml route snapshot paramMap get foo sanitizer bypassSecurityTrustHtml route snapshot queryParamMap get foo route paramMap subscribe map sanitizer bypassSecurityTrustHtml map get foo sanitizer bypassSecurityTrustHtml 1 route snapshot url 1 path sanitizer bypassSecurityTrustHtml 1 route snapshot url 1 parameters x sanitizer bypassSecurityTrustHtml 1 route snapshot url 1 parameterMap get x sanitizer bypassSecurityTrustHtml 1 route snapshot url 1 parameterMap params x sanitizer bypassSecurityTrustHtml router url sanitizer2 bypassSecurityTrustHtml router url |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:35:88:35:90 | 'x' | enclosingFunctionName | ngOnInit |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:35:88:35:90 | 'x' | fileImports | @angular/common @angular/core @angular/platform-browser @angular/router |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:35:88:35:90 | 'x' | receiverName |  |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:35:88:35:90 | 'x' | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:36:44:36:91 | this.ro ... arams.x | CalleeFlexibleAccessPath | this.sanitizer.bypassSecurityTrustHtml |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:36:44:36:91 | this.ro ... arams.x | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:36:44:36:91 | this.ro ... arams.x | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:36:44:36:91 | this.ro ... arams.x | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:36:44:36:91 | this.ro ... arams.x | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:36:44:36:91 | this.ro ... arams.x | contextFunctionInterfaces | constructor(route, sanitizer, router, sanitizer2)\nngOnInit()\nsomeMethod(routeSnapshot) |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:36:44:36:91 | this.ro ... arams.x | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:36:44:36:91 | this.ro ... arams.x | enclosingFunctionBody | sanitizer bypassSecurityTrustHtml \u0275getDOM getLocation href sanitizer bypassSecurityTrustHtml route snapshot params foo sanitizer bypassSecurityTrustHtml route snapshot queryParams foo sanitizer bypassSecurityTrustHtml route snapshot fragment sanitizer bypassSecurityTrustHtml route snapshot paramMap get foo sanitizer bypassSecurityTrustHtml route snapshot queryParamMap get foo route paramMap subscribe map sanitizer bypassSecurityTrustHtml map get foo sanitizer bypassSecurityTrustHtml 1 route snapshot url 1 path sanitizer bypassSecurityTrustHtml 1 route snapshot url 1 parameters x sanitizer bypassSecurityTrustHtml 1 route snapshot url 1 parameterMap get x sanitizer bypassSecurityTrustHtml 1 route snapshot url 1 parameterMap params x sanitizer bypassSecurityTrustHtml router url sanitizer2 bypassSecurityTrustHtml router url |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:36:44:36:91 | this.ro ... arams.x | enclosingFunctionName | ngOnInit |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:36:44:36:91 | this.ro ... arams.x | fileImports | @angular/common @angular/core @angular/platform-browser @angular/router |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:36:44:36:91 | this.ro ... arams.x | receiverName |  |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:36:44:36:91 | this.ro ... arams.x | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:38:44:38:58 | this.router.url | CalleeFlexibleAccessPath | this.sanitizer.bypassSecurityTrustHtml |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:38:44:38:58 | this.router.url | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:38:44:38:58 | this.router.url | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:38:44:38:58 | this.router.url | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:38:44:38:58 | this.router.url | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:38:44:38:58 | this.router.url | contextFunctionInterfaces | constructor(route, sanitizer, router, sanitizer2)\nngOnInit()\nsomeMethod(routeSnapshot) |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:38:44:38:58 | this.router.url | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:38:44:38:58 | this.router.url | enclosingFunctionBody | sanitizer bypassSecurityTrustHtml \u0275getDOM getLocation href sanitizer bypassSecurityTrustHtml route snapshot params foo sanitizer bypassSecurityTrustHtml route snapshot queryParams foo sanitizer bypassSecurityTrustHtml route snapshot fragment sanitizer bypassSecurityTrustHtml route snapshot paramMap get foo sanitizer bypassSecurityTrustHtml route snapshot queryParamMap get foo route paramMap subscribe map sanitizer bypassSecurityTrustHtml map get foo sanitizer bypassSecurityTrustHtml 1 route snapshot url 1 path sanitizer bypassSecurityTrustHtml 1 route snapshot url 1 parameters x sanitizer bypassSecurityTrustHtml 1 route snapshot url 1 parameterMap get x sanitizer bypassSecurityTrustHtml 1 route snapshot url 1 parameterMap params x sanitizer bypassSecurityTrustHtml router url sanitizer2 bypassSecurityTrustHtml router url |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:38:44:38:58 | this.router.url | enclosingFunctionName | ngOnInit |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:38:44:38:58 | this.router.url | fileImports | @angular/common @angular/core @angular/platform-browser @angular/router |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:38:44:38:58 | this.router.url | receiverName |  |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:38:44:38:58 | this.router.url | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:40:45:40:59 | this.router.url | CalleeFlexibleAccessPath | this.sanitizer2.bypassSecurityTrustHtml |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:40:45:40:59 | this.router.url | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:40:45:40:59 | this.router.url | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:40:45:40:59 | this.router.url | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:40:45:40:59 | this.router.url | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:40:45:40:59 | this.router.url | contextFunctionInterfaces | constructor(route, sanitizer, router, sanitizer2)\nngOnInit()\nsomeMethod(routeSnapshot) |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:40:45:40:59 | this.router.url | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:40:45:40:59 | this.router.url | enclosingFunctionBody | sanitizer bypassSecurityTrustHtml \u0275getDOM getLocation href sanitizer bypassSecurityTrustHtml route snapshot params foo sanitizer bypassSecurityTrustHtml route snapshot queryParams foo sanitizer bypassSecurityTrustHtml route snapshot fragment sanitizer bypassSecurityTrustHtml route snapshot paramMap get foo sanitizer bypassSecurityTrustHtml route snapshot queryParamMap get foo route paramMap subscribe map sanitizer bypassSecurityTrustHtml map get foo sanitizer bypassSecurityTrustHtml 1 route snapshot url 1 path sanitizer bypassSecurityTrustHtml 1 route snapshot url 1 parameters x sanitizer bypassSecurityTrustHtml 1 route snapshot url 1 parameterMap get x sanitizer bypassSecurityTrustHtml 1 route snapshot url 1 parameterMap params x sanitizer bypassSecurityTrustHtml router url sanitizer2 bypassSecurityTrustHtml router url |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:40:45:40:59 | this.router.url | enclosingFunctionName | ngOnInit |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:40:45:40:59 | this.router.url | fileImports | @angular/common @angular/core @angular/platform-browser @angular/router |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:40:45:40:59 | this.router.url | receiverName |  |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:40:45:40:59 | this.router.url | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:44:44:44:76 | routeSn ... ('foo') | CalleeFlexibleAccessPath | this.sanitizer.bypassSecurityTrustHtml |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:44:44:44:76 | routeSn ... ('foo') | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:44:44:44:76 | routeSn ... ('foo') | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:44:44:44:76 | routeSn ... ('foo') | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:44:44:44:76 | routeSn ... ('foo') | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:44:44:44:76 | routeSn ... ('foo') | contextFunctionInterfaces | constructor(route, sanitizer, router, sanitizer2)\nngOnInit()\nsomeMethod(routeSnapshot) |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:44:44:44:76 | routeSn ... ('foo') | contextSurroundingFunctionParameters | (routeSnapshot) |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:44:44:44:76 | routeSn ... ('foo') | enclosingFunctionBody | routeSnapshot ActivatedRouteSnapshot sanitizer bypassSecurityTrustHtml routeSnapshot paramMap get foo |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:44:44:44:76 | routeSn ... ('foo') | enclosingFunctionName | someMethod |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:44:44:44:76 | routeSn ... ('foo') | fileImports | @angular/common @angular/core @angular/platform-browser @angular/router |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:44:44:44:76 | routeSn ... ('foo') | receiverName |  |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:44:44:44:76 | routeSn ... ('foo') | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:44:71:44:75 | 'foo' | CalleeFlexibleAccessPath | routeSnapshot.paramMap.get |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:44:71:44:75 | 'foo' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:44:71:44:75 | 'foo' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:44:71:44:75 | 'foo' | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:44:71:44:75 | 'foo' | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:44:71:44:75 | 'foo' | contextFunctionInterfaces | constructor(route, sanitizer, router, sanitizer2)\nngOnInit()\nsomeMethod(routeSnapshot) |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:44:71:44:75 | 'foo' | contextSurroundingFunctionParameters | (routeSnapshot) |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:44:71:44:75 | 'foo' | enclosingFunctionBody | routeSnapshot ActivatedRouteSnapshot sanitizer bypassSecurityTrustHtml routeSnapshot paramMap get foo |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:44:71:44:75 | 'foo' | enclosingFunctionName | someMethod |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:44:71:44:75 | 'foo' | fileImports | @angular/common @angular/core @angular/platform-browser @angular/router |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:44:71:44:75 | 'foo' | receiverName |  |
-| autogenerated/Xss/DomBasedXss/angular2-client.ts:44:71:44:75 | 'foo' | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:7:31:7:84 | `<span  ... <span>` | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:7:31:7:84 | `<span  ... <span>` | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:7:31:7:84 | `<span  ... <span>` | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:7:31:7:84 | `<span  ... <span>` | assignedToPropName | innerHTML |
-| autogenerated/Xss/DomBasedXss/classnames.js:7:31:7:84 | `<span  ... <span>` | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:7:31:7:84 | `<span  ... <span>` | contextFunctionInterfaces | main() |
-| autogenerated/Xss/DomBasedXss/classnames.js:7:31:7:84 | `<span  ... <span>` | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/classnames.js:7:31:7:84 | `<span  ... <span>` | enclosingFunctionBody | document body innerHTML <span class=" classNames window name ">Hello<span> document body innerHTML <span class=" classNamesD window name ">Hello<span> document body innerHTML <span class=" classNamesB window name ">Hello<span> unsafeStyle classNames bind foo window name document body innerHTML <span class=" unsafeStyle foo ">Hello<span> safeStyle classNames bind document body innerHTML <span class=" safeStyle window name ">Hello<span> document body innerHTML <span class=" safeStyle foo ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> |
-| autogenerated/Xss/DomBasedXss/classnames.js:7:31:7:84 | `<span  ... <span>` | enclosingFunctionName | main |
-| autogenerated/Xss/DomBasedXss/classnames.js:7:31:7:84 | `<span  ... <span>` | fileImports | classnames classnames/bind classnames/dedupe clsx |
-| autogenerated/Xss/DomBasedXss/classnames.js:7:31:7:84 | `<span  ... <span>` | receiverName |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:7:31:7:84 | `<span  ... <span>` | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:7:32:7:44 | <span class=" | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:7:32:7:44 | <span class=" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:7:32:7:44 | <span class=" | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:7:32:7:44 | <span class=" | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:7:32:7:44 | <span class=" | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:7:32:7:44 | <span class=" | contextFunctionInterfaces | main() |
-| autogenerated/Xss/DomBasedXss/classnames.js:7:32:7:44 | <span class=" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/classnames.js:7:32:7:44 | <span class=" | enclosingFunctionBody | document body innerHTML <span class=" classNames window name ">Hello<span> document body innerHTML <span class=" classNamesD window name ">Hello<span> document body innerHTML <span class=" classNamesB window name ">Hello<span> unsafeStyle classNames bind foo window name document body innerHTML <span class=" unsafeStyle foo ">Hello<span> safeStyle classNames bind document body innerHTML <span class=" safeStyle window name ">Hello<span> document body innerHTML <span class=" safeStyle foo ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> |
-| autogenerated/Xss/DomBasedXss/classnames.js:7:32:7:44 | <span class=" | enclosingFunctionName | main |
-| autogenerated/Xss/DomBasedXss/classnames.js:7:32:7:44 | <span class=" | fileImports | classnames classnames/bind classnames/dedupe clsx |
-| autogenerated/Xss/DomBasedXss/classnames.js:7:32:7:44 | <span class=" | receiverName |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:7:32:7:44 | <span class=" | stringConcatenatedWith |  -endpoint- classNames() + '">Hello<span>' |
-| autogenerated/Xss/DomBasedXss/classnames.js:7:47:7:69 | classNa ... w.name) | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:7:47:7:69 | classNa ... w.name) | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:7:47:7:69 | classNa ... w.name) | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:7:47:7:69 | classNa ... w.name) | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:7:47:7:69 | classNa ... w.name) | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:7:47:7:69 | classNa ... w.name) | contextFunctionInterfaces | main() |
-| autogenerated/Xss/DomBasedXss/classnames.js:7:47:7:69 | classNa ... w.name) | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/classnames.js:7:47:7:69 | classNa ... w.name) | enclosingFunctionBody | document body innerHTML <span class=" classNames window name ">Hello<span> document body innerHTML <span class=" classNamesD window name ">Hello<span> document body innerHTML <span class=" classNamesB window name ">Hello<span> unsafeStyle classNames bind foo window name document body innerHTML <span class=" unsafeStyle foo ">Hello<span> safeStyle classNames bind document body innerHTML <span class=" safeStyle window name ">Hello<span> document body innerHTML <span class=" safeStyle foo ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> |
-| autogenerated/Xss/DomBasedXss/classnames.js:7:47:7:69 | classNa ... w.name) | enclosingFunctionName | main |
-| autogenerated/Xss/DomBasedXss/classnames.js:7:47:7:69 | classNa ... w.name) | fileImports | classnames classnames/bind classnames/dedupe clsx |
-| autogenerated/Xss/DomBasedXss/classnames.js:7:47:7:69 | classNa ... w.name) | receiverName |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:7:47:7:69 | classNa ... w.name) | stringConcatenatedWith | '<span class="' -endpoint- '">Hello<span>' |
-| autogenerated/Xss/DomBasedXss/classnames.js:7:71:7:83 | ">Hello<span> | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:7:71:7:83 | ">Hello<span> | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:7:71:7:83 | ">Hello<span> | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:7:71:7:83 | ">Hello<span> | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:7:71:7:83 | ">Hello<span> | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:7:71:7:83 | ">Hello<span> | contextFunctionInterfaces | main() |
-| autogenerated/Xss/DomBasedXss/classnames.js:7:71:7:83 | ">Hello<span> | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/classnames.js:7:71:7:83 | ">Hello<span> | enclosingFunctionBody | document body innerHTML <span class=" classNames window name ">Hello<span> document body innerHTML <span class=" classNamesD window name ">Hello<span> document body innerHTML <span class=" classNamesB window name ">Hello<span> unsafeStyle classNames bind foo window name document body innerHTML <span class=" unsafeStyle foo ">Hello<span> safeStyle classNames bind document body innerHTML <span class=" safeStyle window name ">Hello<span> document body innerHTML <span class=" safeStyle foo ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> |
-| autogenerated/Xss/DomBasedXss/classnames.js:7:71:7:83 | ">Hello<span> | enclosingFunctionName | main |
-| autogenerated/Xss/DomBasedXss/classnames.js:7:71:7:83 | ">Hello<span> | fileImports | classnames classnames/bind classnames/dedupe clsx |
-| autogenerated/Xss/DomBasedXss/classnames.js:7:71:7:83 | ">Hello<span> | receiverName |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:7:71:7:83 | ">Hello<span> | stringConcatenatedWith | '<span class="' + classNames() -endpoint-  |
-| autogenerated/Xss/DomBasedXss/classnames.js:8:31:8:85 | `<span  ... <span>` | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:8:31:8:85 | `<span  ... <span>` | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:8:31:8:85 | `<span  ... <span>` | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:8:31:8:85 | `<span  ... <span>` | assignedToPropName | innerHTML |
-| autogenerated/Xss/DomBasedXss/classnames.js:8:31:8:85 | `<span  ... <span>` | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:8:31:8:85 | `<span  ... <span>` | contextFunctionInterfaces | main() |
-| autogenerated/Xss/DomBasedXss/classnames.js:8:31:8:85 | `<span  ... <span>` | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/classnames.js:8:31:8:85 | `<span  ... <span>` | enclosingFunctionBody | document body innerHTML <span class=" classNames window name ">Hello<span> document body innerHTML <span class=" classNamesD window name ">Hello<span> document body innerHTML <span class=" classNamesB window name ">Hello<span> unsafeStyle classNames bind foo window name document body innerHTML <span class=" unsafeStyle foo ">Hello<span> safeStyle classNames bind document body innerHTML <span class=" safeStyle window name ">Hello<span> document body innerHTML <span class=" safeStyle foo ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> |
-| autogenerated/Xss/DomBasedXss/classnames.js:8:31:8:85 | `<span  ... <span>` | enclosingFunctionName | main |
-| autogenerated/Xss/DomBasedXss/classnames.js:8:31:8:85 | `<span  ... <span>` | fileImports | classnames classnames/bind classnames/dedupe clsx |
-| autogenerated/Xss/DomBasedXss/classnames.js:8:31:8:85 | `<span  ... <span>` | receiverName |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:8:31:8:85 | `<span  ... <span>` | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:8:32:8:44 | <span class=" | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:8:32:8:44 | <span class=" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:8:32:8:44 | <span class=" | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:8:32:8:44 | <span class=" | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:8:32:8:44 | <span class=" | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:8:32:8:44 | <span class=" | contextFunctionInterfaces | main() |
-| autogenerated/Xss/DomBasedXss/classnames.js:8:32:8:44 | <span class=" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/classnames.js:8:32:8:44 | <span class=" | enclosingFunctionBody | document body innerHTML <span class=" classNames window name ">Hello<span> document body innerHTML <span class=" classNamesD window name ">Hello<span> document body innerHTML <span class=" classNamesB window name ">Hello<span> unsafeStyle classNames bind foo window name document body innerHTML <span class=" unsafeStyle foo ">Hello<span> safeStyle classNames bind document body innerHTML <span class=" safeStyle window name ">Hello<span> document body innerHTML <span class=" safeStyle foo ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> |
-| autogenerated/Xss/DomBasedXss/classnames.js:8:32:8:44 | <span class=" | enclosingFunctionName | main |
-| autogenerated/Xss/DomBasedXss/classnames.js:8:32:8:44 | <span class=" | fileImports | classnames classnames/bind classnames/dedupe clsx |
-| autogenerated/Xss/DomBasedXss/classnames.js:8:32:8:44 | <span class=" | receiverName |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:8:32:8:44 | <span class=" | stringConcatenatedWith |  -endpoint- classNamesD() + '">Hello<span>' |
-| autogenerated/Xss/DomBasedXss/classnames.js:8:47:8:70 | classNa ... w.name) | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:8:47:8:70 | classNa ... w.name) | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:8:47:8:70 | classNa ... w.name) | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:8:47:8:70 | classNa ... w.name) | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:8:47:8:70 | classNa ... w.name) | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:8:47:8:70 | classNa ... w.name) | contextFunctionInterfaces | main() |
-| autogenerated/Xss/DomBasedXss/classnames.js:8:47:8:70 | classNa ... w.name) | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/classnames.js:8:47:8:70 | classNa ... w.name) | enclosingFunctionBody | document body innerHTML <span class=" classNames window name ">Hello<span> document body innerHTML <span class=" classNamesD window name ">Hello<span> document body innerHTML <span class=" classNamesB window name ">Hello<span> unsafeStyle classNames bind foo window name document body innerHTML <span class=" unsafeStyle foo ">Hello<span> safeStyle classNames bind document body innerHTML <span class=" safeStyle window name ">Hello<span> document body innerHTML <span class=" safeStyle foo ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> |
-| autogenerated/Xss/DomBasedXss/classnames.js:8:47:8:70 | classNa ... w.name) | enclosingFunctionName | main |
-| autogenerated/Xss/DomBasedXss/classnames.js:8:47:8:70 | classNa ... w.name) | fileImports | classnames classnames/bind classnames/dedupe clsx |
-| autogenerated/Xss/DomBasedXss/classnames.js:8:47:8:70 | classNa ... w.name) | receiverName |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:8:47:8:70 | classNa ... w.name) | stringConcatenatedWith | '<span class="' -endpoint- '">Hello<span>' |
-| autogenerated/Xss/DomBasedXss/classnames.js:8:72:8:84 | ">Hello<span> | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:8:72:8:84 | ">Hello<span> | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:8:72:8:84 | ">Hello<span> | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:8:72:8:84 | ">Hello<span> | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:8:72:8:84 | ">Hello<span> | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:8:72:8:84 | ">Hello<span> | contextFunctionInterfaces | main() |
-| autogenerated/Xss/DomBasedXss/classnames.js:8:72:8:84 | ">Hello<span> | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/classnames.js:8:72:8:84 | ">Hello<span> | enclosingFunctionBody | document body innerHTML <span class=" classNames window name ">Hello<span> document body innerHTML <span class=" classNamesD window name ">Hello<span> document body innerHTML <span class=" classNamesB window name ">Hello<span> unsafeStyle classNames bind foo window name document body innerHTML <span class=" unsafeStyle foo ">Hello<span> safeStyle classNames bind document body innerHTML <span class=" safeStyle window name ">Hello<span> document body innerHTML <span class=" safeStyle foo ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> |
-| autogenerated/Xss/DomBasedXss/classnames.js:8:72:8:84 | ">Hello<span> | enclosingFunctionName | main |
-| autogenerated/Xss/DomBasedXss/classnames.js:8:72:8:84 | ">Hello<span> | fileImports | classnames classnames/bind classnames/dedupe clsx |
-| autogenerated/Xss/DomBasedXss/classnames.js:8:72:8:84 | ">Hello<span> | receiverName |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:8:72:8:84 | ">Hello<span> | stringConcatenatedWith | '<span class="' + classNamesD() -endpoint-  |
-| autogenerated/Xss/DomBasedXss/classnames.js:9:31:9:85 | `<span  ... <span>` | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:9:31:9:85 | `<span  ... <span>` | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:9:31:9:85 | `<span  ... <span>` | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:9:31:9:85 | `<span  ... <span>` | assignedToPropName | innerHTML |
-| autogenerated/Xss/DomBasedXss/classnames.js:9:31:9:85 | `<span  ... <span>` | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:9:31:9:85 | `<span  ... <span>` | contextFunctionInterfaces | main() |
-| autogenerated/Xss/DomBasedXss/classnames.js:9:31:9:85 | `<span  ... <span>` | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/classnames.js:9:31:9:85 | `<span  ... <span>` | enclosingFunctionBody | document body innerHTML <span class=" classNames window name ">Hello<span> document body innerHTML <span class=" classNamesD window name ">Hello<span> document body innerHTML <span class=" classNamesB window name ">Hello<span> unsafeStyle classNames bind foo window name document body innerHTML <span class=" unsafeStyle foo ">Hello<span> safeStyle classNames bind document body innerHTML <span class=" safeStyle window name ">Hello<span> document body innerHTML <span class=" safeStyle foo ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> |
-| autogenerated/Xss/DomBasedXss/classnames.js:9:31:9:85 | `<span  ... <span>` | enclosingFunctionName | main |
-| autogenerated/Xss/DomBasedXss/classnames.js:9:31:9:85 | `<span  ... <span>` | fileImports | classnames classnames/bind classnames/dedupe clsx |
-| autogenerated/Xss/DomBasedXss/classnames.js:9:31:9:85 | `<span  ... <span>` | receiverName |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:9:31:9:85 | `<span  ... <span>` | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:9:32:9:44 | <span class=" | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:9:32:9:44 | <span class=" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:9:32:9:44 | <span class=" | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:9:32:9:44 | <span class=" | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:9:32:9:44 | <span class=" | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:9:32:9:44 | <span class=" | contextFunctionInterfaces | main() |
-| autogenerated/Xss/DomBasedXss/classnames.js:9:32:9:44 | <span class=" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/classnames.js:9:32:9:44 | <span class=" | enclosingFunctionBody | document body innerHTML <span class=" classNames window name ">Hello<span> document body innerHTML <span class=" classNamesD window name ">Hello<span> document body innerHTML <span class=" classNamesB window name ">Hello<span> unsafeStyle classNames bind foo window name document body innerHTML <span class=" unsafeStyle foo ">Hello<span> safeStyle classNames bind document body innerHTML <span class=" safeStyle window name ">Hello<span> document body innerHTML <span class=" safeStyle foo ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> |
-| autogenerated/Xss/DomBasedXss/classnames.js:9:32:9:44 | <span class=" | enclosingFunctionName | main |
-| autogenerated/Xss/DomBasedXss/classnames.js:9:32:9:44 | <span class=" | fileImports | classnames classnames/bind classnames/dedupe clsx |
-| autogenerated/Xss/DomBasedXss/classnames.js:9:32:9:44 | <span class=" | receiverName |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:9:32:9:44 | <span class=" | stringConcatenatedWith |  -endpoint- classNamesB() + '">Hello<span>' |
-| autogenerated/Xss/DomBasedXss/classnames.js:9:47:9:70 | classNa ... w.name) | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:9:47:9:70 | classNa ... w.name) | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:9:47:9:70 | classNa ... w.name) | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:9:47:9:70 | classNa ... w.name) | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:9:47:9:70 | classNa ... w.name) | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:9:47:9:70 | classNa ... w.name) | contextFunctionInterfaces | main() |
-| autogenerated/Xss/DomBasedXss/classnames.js:9:47:9:70 | classNa ... w.name) | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/classnames.js:9:47:9:70 | classNa ... w.name) | enclosingFunctionBody | document body innerHTML <span class=" classNames window name ">Hello<span> document body innerHTML <span class=" classNamesD window name ">Hello<span> document body innerHTML <span class=" classNamesB window name ">Hello<span> unsafeStyle classNames bind foo window name document body innerHTML <span class=" unsafeStyle foo ">Hello<span> safeStyle classNames bind document body innerHTML <span class=" safeStyle window name ">Hello<span> document body innerHTML <span class=" safeStyle foo ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> |
-| autogenerated/Xss/DomBasedXss/classnames.js:9:47:9:70 | classNa ... w.name) | enclosingFunctionName | main |
-| autogenerated/Xss/DomBasedXss/classnames.js:9:47:9:70 | classNa ... w.name) | fileImports | classnames classnames/bind classnames/dedupe clsx |
-| autogenerated/Xss/DomBasedXss/classnames.js:9:47:9:70 | classNa ... w.name) | receiverName |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:9:47:9:70 | classNa ... w.name) | stringConcatenatedWith | '<span class="' -endpoint- '">Hello<span>' |
-| autogenerated/Xss/DomBasedXss/classnames.js:9:72:9:84 | ">Hello<span> | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:9:72:9:84 | ">Hello<span> | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:9:72:9:84 | ">Hello<span> | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:9:72:9:84 | ">Hello<span> | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:9:72:9:84 | ">Hello<span> | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:9:72:9:84 | ">Hello<span> | contextFunctionInterfaces | main() |
-| autogenerated/Xss/DomBasedXss/classnames.js:9:72:9:84 | ">Hello<span> | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/classnames.js:9:72:9:84 | ">Hello<span> | enclosingFunctionBody | document body innerHTML <span class=" classNames window name ">Hello<span> document body innerHTML <span class=" classNamesD window name ">Hello<span> document body innerHTML <span class=" classNamesB window name ">Hello<span> unsafeStyle classNames bind foo window name document body innerHTML <span class=" unsafeStyle foo ">Hello<span> safeStyle classNames bind document body innerHTML <span class=" safeStyle window name ">Hello<span> document body innerHTML <span class=" safeStyle foo ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> |
-| autogenerated/Xss/DomBasedXss/classnames.js:9:72:9:84 | ">Hello<span> | enclosingFunctionName | main |
-| autogenerated/Xss/DomBasedXss/classnames.js:9:72:9:84 | ">Hello<span> | fileImports | classnames classnames/bind classnames/dedupe clsx |
-| autogenerated/Xss/DomBasedXss/classnames.js:9:72:9:84 | ">Hello<span> | receiverName |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:9:72:9:84 | ">Hello<span> | stringConcatenatedWith | '<span class="' + classNamesB() -endpoint-  |
-| autogenerated/Xss/DomBasedXss/classnames.js:10:45:10:55 | window.name | CalleeFlexibleAccessPath | classNames.bind |
-| autogenerated/Xss/DomBasedXss/classnames.js:10:45:10:55 | window.name | InputAccessPathFromCallee | 0.foo |
-| autogenerated/Xss/DomBasedXss/classnames.js:10:45:10:55 | window.name | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/classnames.js:10:45:10:55 | window.name | assignedToPropName | foo |
-| autogenerated/Xss/DomBasedXss/classnames.js:10:45:10:55 | window.name | calleeImports | classnames |
-| autogenerated/Xss/DomBasedXss/classnames.js:10:45:10:55 | window.name | contextFunctionInterfaces | main() |
-| autogenerated/Xss/DomBasedXss/classnames.js:10:45:10:55 | window.name | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/classnames.js:10:45:10:55 | window.name | enclosingFunctionBody | document body innerHTML <span class=" classNames window name ">Hello<span> document body innerHTML <span class=" classNamesD window name ">Hello<span> document body innerHTML <span class=" classNamesB window name ">Hello<span> unsafeStyle classNames bind foo window name document body innerHTML <span class=" unsafeStyle foo ">Hello<span> safeStyle classNames bind document body innerHTML <span class=" safeStyle window name ">Hello<span> document body innerHTML <span class=" safeStyle foo ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> |
-| autogenerated/Xss/DomBasedXss/classnames.js:10:45:10:55 | window.name | enclosingFunctionName | main |
-| autogenerated/Xss/DomBasedXss/classnames.js:10:45:10:55 | window.name | fileImports | classnames classnames/bind classnames/dedupe clsx |
-| autogenerated/Xss/DomBasedXss/classnames.js:10:45:10:55 | window.name | receiverName |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:10:45:10:55 | window.name | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:11:31:11:79 | `<span  ... <span>` | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:11:31:11:79 | `<span  ... <span>` | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:11:31:11:79 | `<span  ... <span>` | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:11:31:11:79 | `<span  ... <span>` | assignedToPropName | innerHTML |
-| autogenerated/Xss/DomBasedXss/classnames.js:11:31:11:79 | `<span  ... <span>` | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:11:31:11:79 | `<span  ... <span>` | contextFunctionInterfaces | main() |
-| autogenerated/Xss/DomBasedXss/classnames.js:11:31:11:79 | `<span  ... <span>` | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/classnames.js:11:31:11:79 | `<span  ... <span>` | enclosingFunctionBody | document body innerHTML <span class=" classNames window name ">Hello<span> document body innerHTML <span class=" classNamesD window name ">Hello<span> document body innerHTML <span class=" classNamesB window name ">Hello<span> unsafeStyle classNames bind foo window name document body innerHTML <span class=" unsafeStyle foo ">Hello<span> safeStyle classNames bind document body innerHTML <span class=" safeStyle window name ">Hello<span> document body innerHTML <span class=" safeStyle foo ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> |
-| autogenerated/Xss/DomBasedXss/classnames.js:11:31:11:79 | `<span  ... <span>` | enclosingFunctionName | main |
-| autogenerated/Xss/DomBasedXss/classnames.js:11:31:11:79 | `<span  ... <span>` | fileImports | classnames classnames/bind classnames/dedupe clsx |
-| autogenerated/Xss/DomBasedXss/classnames.js:11:31:11:79 | `<span  ... <span>` | receiverName |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:11:31:11:79 | `<span  ... <span>` | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:11:32:11:44 | <span class=" | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:11:32:11:44 | <span class=" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:11:32:11:44 | <span class=" | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:11:32:11:44 | <span class=" | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:11:32:11:44 | <span class=" | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:11:32:11:44 | <span class=" | contextFunctionInterfaces | main() |
-| autogenerated/Xss/DomBasedXss/classnames.js:11:32:11:44 | <span class=" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/classnames.js:11:32:11:44 | <span class=" | enclosingFunctionBody | document body innerHTML <span class=" classNames window name ">Hello<span> document body innerHTML <span class=" classNamesD window name ">Hello<span> document body innerHTML <span class=" classNamesB window name ">Hello<span> unsafeStyle classNames bind foo window name document body innerHTML <span class=" unsafeStyle foo ">Hello<span> safeStyle classNames bind document body innerHTML <span class=" safeStyle window name ">Hello<span> document body innerHTML <span class=" safeStyle foo ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> |
-| autogenerated/Xss/DomBasedXss/classnames.js:11:32:11:44 | <span class=" | enclosingFunctionName | main |
-| autogenerated/Xss/DomBasedXss/classnames.js:11:32:11:44 | <span class=" | fileImports | classnames classnames/bind classnames/dedupe clsx |
-| autogenerated/Xss/DomBasedXss/classnames.js:11:32:11:44 | <span class=" | receiverName |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:11:32:11:44 | <span class=" | stringConcatenatedWith |  -endpoint- unsafeStyle() + '">Hello<span>' |
-| autogenerated/Xss/DomBasedXss/classnames.js:11:47:11:64 | unsafeStyle('foo') | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:11:47:11:64 | unsafeStyle('foo') | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:11:47:11:64 | unsafeStyle('foo') | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:11:47:11:64 | unsafeStyle('foo') | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:11:47:11:64 | unsafeStyle('foo') | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:11:47:11:64 | unsafeStyle('foo') | contextFunctionInterfaces | main() |
-| autogenerated/Xss/DomBasedXss/classnames.js:11:47:11:64 | unsafeStyle('foo') | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/classnames.js:11:47:11:64 | unsafeStyle('foo') | enclosingFunctionBody | document body innerHTML <span class=" classNames window name ">Hello<span> document body innerHTML <span class=" classNamesD window name ">Hello<span> document body innerHTML <span class=" classNamesB window name ">Hello<span> unsafeStyle classNames bind foo window name document body innerHTML <span class=" unsafeStyle foo ">Hello<span> safeStyle classNames bind document body innerHTML <span class=" safeStyle window name ">Hello<span> document body innerHTML <span class=" safeStyle foo ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> |
-| autogenerated/Xss/DomBasedXss/classnames.js:11:47:11:64 | unsafeStyle('foo') | enclosingFunctionName | main |
-| autogenerated/Xss/DomBasedXss/classnames.js:11:47:11:64 | unsafeStyle('foo') | fileImports | classnames classnames/bind classnames/dedupe clsx |
-| autogenerated/Xss/DomBasedXss/classnames.js:11:47:11:64 | unsafeStyle('foo') | receiverName |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:11:47:11:64 | unsafeStyle('foo') | stringConcatenatedWith | '<span class="' -endpoint- '">Hello<span>' |
-| autogenerated/Xss/DomBasedXss/classnames.js:11:66:11:78 | ">Hello<span> | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:11:66:11:78 | ">Hello<span> | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:11:66:11:78 | ">Hello<span> | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:11:66:11:78 | ">Hello<span> | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:11:66:11:78 | ">Hello<span> | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:11:66:11:78 | ">Hello<span> | contextFunctionInterfaces | main() |
-| autogenerated/Xss/DomBasedXss/classnames.js:11:66:11:78 | ">Hello<span> | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/classnames.js:11:66:11:78 | ">Hello<span> | enclosingFunctionBody | document body innerHTML <span class=" classNames window name ">Hello<span> document body innerHTML <span class=" classNamesD window name ">Hello<span> document body innerHTML <span class=" classNamesB window name ">Hello<span> unsafeStyle classNames bind foo window name document body innerHTML <span class=" unsafeStyle foo ">Hello<span> safeStyle classNames bind document body innerHTML <span class=" safeStyle window name ">Hello<span> document body innerHTML <span class=" safeStyle foo ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> |
-| autogenerated/Xss/DomBasedXss/classnames.js:11:66:11:78 | ">Hello<span> | enclosingFunctionName | main |
-| autogenerated/Xss/DomBasedXss/classnames.js:11:66:11:78 | ">Hello<span> | fileImports | classnames classnames/bind classnames/dedupe clsx |
-| autogenerated/Xss/DomBasedXss/classnames.js:11:66:11:78 | ">Hello<span> | receiverName |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:11:66:11:78 | ">Hello<span> | stringConcatenatedWith | '<span class="' + unsafeStyle() -endpoint-  |
-| autogenerated/Xss/DomBasedXss/classnames.js:13:31:13:83 | `<span  ... <span>` | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:13:31:13:83 | `<span  ... <span>` | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:13:31:13:83 | `<span  ... <span>` | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:13:31:13:83 | `<span  ... <span>` | assignedToPropName | innerHTML |
-| autogenerated/Xss/DomBasedXss/classnames.js:13:31:13:83 | `<span  ... <span>` | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:13:31:13:83 | `<span  ... <span>` | contextFunctionInterfaces | main() |
-| autogenerated/Xss/DomBasedXss/classnames.js:13:31:13:83 | `<span  ... <span>` | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/classnames.js:13:31:13:83 | `<span  ... <span>` | enclosingFunctionBody | document body innerHTML <span class=" classNames window name ">Hello<span> document body innerHTML <span class=" classNamesD window name ">Hello<span> document body innerHTML <span class=" classNamesB window name ">Hello<span> unsafeStyle classNames bind foo window name document body innerHTML <span class=" unsafeStyle foo ">Hello<span> safeStyle classNames bind document body innerHTML <span class=" safeStyle window name ">Hello<span> document body innerHTML <span class=" safeStyle foo ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> |
-| autogenerated/Xss/DomBasedXss/classnames.js:13:31:13:83 | `<span  ... <span>` | enclosingFunctionName | main |
-| autogenerated/Xss/DomBasedXss/classnames.js:13:31:13:83 | `<span  ... <span>` | fileImports | classnames classnames/bind classnames/dedupe clsx |
-| autogenerated/Xss/DomBasedXss/classnames.js:13:31:13:83 | `<span  ... <span>` | receiverName |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:13:31:13:83 | `<span  ... <span>` | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:13:32:13:44 | <span class=" | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:13:32:13:44 | <span class=" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:13:32:13:44 | <span class=" | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:13:32:13:44 | <span class=" | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:13:32:13:44 | <span class=" | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:13:32:13:44 | <span class=" | contextFunctionInterfaces | main() |
-| autogenerated/Xss/DomBasedXss/classnames.js:13:32:13:44 | <span class=" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/classnames.js:13:32:13:44 | <span class=" | enclosingFunctionBody | document body innerHTML <span class=" classNames window name ">Hello<span> document body innerHTML <span class=" classNamesD window name ">Hello<span> document body innerHTML <span class=" classNamesB window name ">Hello<span> unsafeStyle classNames bind foo window name document body innerHTML <span class=" unsafeStyle foo ">Hello<span> safeStyle classNames bind document body innerHTML <span class=" safeStyle window name ">Hello<span> document body innerHTML <span class=" safeStyle foo ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> |
-| autogenerated/Xss/DomBasedXss/classnames.js:13:32:13:44 | <span class=" | enclosingFunctionName | main |
-| autogenerated/Xss/DomBasedXss/classnames.js:13:32:13:44 | <span class=" | fileImports | classnames classnames/bind classnames/dedupe clsx |
-| autogenerated/Xss/DomBasedXss/classnames.js:13:32:13:44 | <span class=" | receiverName |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:13:32:13:44 | <span class=" | stringConcatenatedWith |  -endpoint- safeStyle() + '">Hello<span>' |
-| autogenerated/Xss/DomBasedXss/classnames.js:13:47:13:68 | safeSty ... w.name) | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:13:47:13:68 | safeSty ... w.name) | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:13:47:13:68 | safeSty ... w.name) | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:13:47:13:68 | safeSty ... w.name) | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:13:47:13:68 | safeSty ... w.name) | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:13:47:13:68 | safeSty ... w.name) | contextFunctionInterfaces | main() |
-| autogenerated/Xss/DomBasedXss/classnames.js:13:47:13:68 | safeSty ... w.name) | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/classnames.js:13:47:13:68 | safeSty ... w.name) | enclosingFunctionBody | document body innerHTML <span class=" classNames window name ">Hello<span> document body innerHTML <span class=" classNamesD window name ">Hello<span> document body innerHTML <span class=" classNamesB window name ">Hello<span> unsafeStyle classNames bind foo window name document body innerHTML <span class=" unsafeStyle foo ">Hello<span> safeStyle classNames bind document body innerHTML <span class=" safeStyle window name ">Hello<span> document body innerHTML <span class=" safeStyle foo ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> |
-| autogenerated/Xss/DomBasedXss/classnames.js:13:47:13:68 | safeSty ... w.name) | enclosingFunctionName | main |
-| autogenerated/Xss/DomBasedXss/classnames.js:13:47:13:68 | safeSty ... w.name) | fileImports | classnames classnames/bind classnames/dedupe clsx |
-| autogenerated/Xss/DomBasedXss/classnames.js:13:47:13:68 | safeSty ... w.name) | receiverName |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:13:47:13:68 | safeSty ... w.name) | stringConcatenatedWith | '<span class="' -endpoint- '">Hello<span>' |
-| autogenerated/Xss/DomBasedXss/classnames.js:13:70:13:82 | ">Hello<span> | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:13:70:13:82 | ">Hello<span> | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:13:70:13:82 | ">Hello<span> | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:13:70:13:82 | ">Hello<span> | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:13:70:13:82 | ">Hello<span> | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:13:70:13:82 | ">Hello<span> | contextFunctionInterfaces | main() |
-| autogenerated/Xss/DomBasedXss/classnames.js:13:70:13:82 | ">Hello<span> | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/classnames.js:13:70:13:82 | ">Hello<span> | enclosingFunctionBody | document body innerHTML <span class=" classNames window name ">Hello<span> document body innerHTML <span class=" classNamesD window name ">Hello<span> document body innerHTML <span class=" classNamesB window name ">Hello<span> unsafeStyle classNames bind foo window name document body innerHTML <span class=" unsafeStyle foo ">Hello<span> safeStyle classNames bind document body innerHTML <span class=" safeStyle window name ">Hello<span> document body innerHTML <span class=" safeStyle foo ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> |
-| autogenerated/Xss/DomBasedXss/classnames.js:13:70:13:82 | ">Hello<span> | enclosingFunctionName | main |
-| autogenerated/Xss/DomBasedXss/classnames.js:13:70:13:82 | ">Hello<span> | fileImports | classnames classnames/bind classnames/dedupe clsx |
-| autogenerated/Xss/DomBasedXss/classnames.js:13:70:13:82 | ">Hello<span> | receiverName |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:13:70:13:82 | ">Hello<span> | stringConcatenatedWith | '<span class="' + safeStyle() -endpoint-  |
-| autogenerated/Xss/DomBasedXss/classnames.js:14:31:14:77 | `<span  ... <span>` | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:14:31:14:77 | `<span  ... <span>` | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:14:31:14:77 | `<span  ... <span>` | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:14:31:14:77 | `<span  ... <span>` | assignedToPropName | innerHTML |
-| autogenerated/Xss/DomBasedXss/classnames.js:14:31:14:77 | `<span  ... <span>` | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:14:31:14:77 | `<span  ... <span>` | contextFunctionInterfaces | main() |
-| autogenerated/Xss/DomBasedXss/classnames.js:14:31:14:77 | `<span  ... <span>` | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/classnames.js:14:31:14:77 | `<span  ... <span>` | enclosingFunctionBody | document body innerHTML <span class=" classNames window name ">Hello<span> document body innerHTML <span class=" classNamesD window name ">Hello<span> document body innerHTML <span class=" classNamesB window name ">Hello<span> unsafeStyle classNames bind foo window name document body innerHTML <span class=" unsafeStyle foo ">Hello<span> safeStyle classNames bind document body innerHTML <span class=" safeStyle window name ">Hello<span> document body innerHTML <span class=" safeStyle foo ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> |
-| autogenerated/Xss/DomBasedXss/classnames.js:14:31:14:77 | `<span  ... <span>` | enclosingFunctionName | main |
-| autogenerated/Xss/DomBasedXss/classnames.js:14:31:14:77 | `<span  ... <span>` | fileImports | classnames classnames/bind classnames/dedupe clsx |
-| autogenerated/Xss/DomBasedXss/classnames.js:14:31:14:77 | `<span  ... <span>` | receiverName |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:14:31:14:77 | `<span  ... <span>` | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:14:32:14:44 | <span class=" | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:14:32:14:44 | <span class=" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:14:32:14:44 | <span class=" | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:14:32:14:44 | <span class=" | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:14:32:14:44 | <span class=" | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:14:32:14:44 | <span class=" | contextFunctionInterfaces | main() |
-| autogenerated/Xss/DomBasedXss/classnames.js:14:32:14:44 | <span class=" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/classnames.js:14:32:14:44 | <span class=" | enclosingFunctionBody | document body innerHTML <span class=" classNames window name ">Hello<span> document body innerHTML <span class=" classNamesD window name ">Hello<span> document body innerHTML <span class=" classNamesB window name ">Hello<span> unsafeStyle classNames bind foo window name document body innerHTML <span class=" unsafeStyle foo ">Hello<span> safeStyle classNames bind document body innerHTML <span class=" safeStyle window name ">Hello<span> document body innerHTML <span class=" safeStyle foo ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> |
-| autogenerated/Xss/DomBasedXss/classnames.js:14:32:14:44 | <span class=" | enclosingFunctionName | main |
-| autogenerated/Xss/DomBasedXss/classnames.js:14:32:14:44 | <span class=" | fileImports | classnames classnames/bind classnames/dedupe clsx |
-| autogenerated/Xss/DomBasedXss/classnames.js:14:32:14:44 | <span class=" | receiverName |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:14:32:14:44 | <span class=" | stringConcatenatedWith |  -endpoint- safeStyle() + '">Hello<span>' |
-| autogenerated/Xss/DomBasedXss/classnames.js:14:47:14:62 | safeStyle('foo') | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:14:47:14:62 | safeStyle('foo') | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:14:47:14:62 | safeStyle('foo') | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:14:47:14:62 | safeStyle('foo') | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:14:47:14:62 | safeStyle('foo') | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:14:47:14:62 | safeStyle('foo') | contextFunctionInterfaces | main() |
-| autogenerated/Xss/DomBasedXss/classnames.js:14:47:14:62 | safeStyle('foo') | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/classnames.js:14:47:14:62 | safeStyle('foo') | enclosingFunctionBody | document body innerHTML <span class=" classNames window name ">Hello<span> document body innerHTML <span class=" classNamesD window name ">Hello<span> document body innerHTML <span class=" classNamesB window name ">Hello<span> unsafeStyle classNames bind foo window name document body innerHTML <span class=" unsafeStyle foo ">Hello<span> safeStyle classNames bind document body innerHTML <span class=" safeStyle window name ">Hello<span> document body innerHTML <span class=" safeStyle foo ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> |
-| autogenerated/Xss/DomBasedXss/classnames.js:14:47:14:62 | safeStyle('foo') | enclosingFunctionName | main |
-| autogenerated/Xss/DomBasedXss/classnames.js:14:47:14:62 | safeStyle('foo') | fileImports | classnames classnames/bind classnames/dedupe clsx |
-| autogenerated/Xss/DomBasedXss/classnames.js:14:47:14:62 | safeStyle('foo') | receiverName |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:14:47:14:62 | safeStyle('foo') | stringConcatenatedWith | '<span class="' -endpoint- '">Hello<span>' |
-| autogenerated/Xss/DomBasedXss/classnames.js:14:64:14:76 | ">Hello<span> | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:14:64:14:76 | ">Hello<span> | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:14:64:14:76 | ">Hello<span> | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:14:64:14:76 | ">Hello<span> | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:14:64:14:76 | ">Hello<span> | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:14:64:14:76 | ">Hello<span> | contextFunctionInterfaces | main() |
-| autogenerated/Xss/DomBasedXss/classnames.js:14:64:14:76 | ">Hello<span> | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/classnames.js:14:64:14:76 | ">Hello<span> | enclosingFunctionBody | document body innerHTML <span class=" classNames window name ">Hello<span> document body innerHTML <span class=" classNamesD window name ">Hello<span> document body innerHTML <span class=" classNamesB window name ">Hello<span> unsafeStyle classNames bind foo window name document body innerHTML <span class=" unsafeStyle foo ">Hello<span> safeStyle classNames bind document body innerHTML <span class=" safeStyle window name ">Hello<span> document body innerHTML <span class=" safeStyle foo ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> |
-| autogenerated/Xss/DomBasedXss/classnames.js:14:64:14:76 | ">Hello<span> | enclosingFunctionName | main |
-| autogenerated/Xss/DomBasedXss/classnames.js:14:64:14:76 | ">Hello<span> | fileImports | classnames classnames/bind classnames/dedupe clsx |
-| autogenerated/Xss/DomBasedXss/classnames.js:14:64:14:76 | ">Hello<span> | receiverName |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:14:64:14:76 | ">Hello<span> | stringConcatenatedWith | '<span class="' + safeStyle() -endpoint-  |
-| autogenerated/Xss/DomBasedXss/classnames.js:15:31:15:78 | `<span  ... <span>` | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:15:31:15:78 | `<span  ... <span>` | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:15:31:15:78 | `<span  ... <span>` | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:15:31:15:78 | `<span  ... <span>` | assignedToPropName | innerHTML |
-| autogenerated/Xss/DomBasedXss/classnames.js:15:31:15:78 | `<span  ... <span>` | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:15:31:15:78 | `<span  ... <span>` | contextFunctionInterfaces | main() |
-| autogenerated/Xss/DomBasedXss/classnames.js:15:31:15:78 | `<span  ... <span>` | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/classnames.js:15:31:15:78 | `<span  ... <span>` | enclosingFunctionBody | document body innerHTML <span class=" classNames window name ">Hello<span> document body innerHTML <span class=" classNamesD window name ">Hello<span> document body innerHTML <span class=" classNamesB window name ">Hello<span> unsafeStyle classNames bind foo window name document body innerHTML <span class=" unsafeStyle foo ">Hello<span> safeStyle classNames bind document body innerHTML <span class=" safeStyle window name ">Hello<span> document body innerHTML <span class=" safeStyle foo ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> |
-| autogenerated/Xss/DomBasedXss/classnames.js:15:31:15:78 | `<span  ... <span>` | enclosingFunctionName | main |
-| autogenerated/Xss/DomBasedXss/classnames.js:15:31:15:78 | `<span  ... <span>` | fileImports | classnames classnames/bind classnames/dedupe clsx |
-| autogenerated/Xss/DomBasedXss/classnames.js:15:31:15:78 | `<span  ... <span>` | receiverName |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:15:31:15:78 | `<span  ... <span>` | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:15:32:15:44 | <span class=" | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:15:32:15:44 | <span class=" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:15:32:15:44 | <span class=" | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:15:32:15:44 | <span class=" | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:15:32:15:44 | <span class=" | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:15:32:15:44 | <span class=" | contextFunctionInterfaces | main() |
-| autogenerated/Xss/DomBasedXss/classnames.js:15:32:15:44 | <span class=" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/classnames.js:15:32:15:44 | <span class=" | enclosingFunctionBody | document body innerHTML <span class=" classNames window name ">Hello<span> document body innerHTML <span class=" classNamesD window name ">Hello<span> document body innerHTML <span class=" classNamesB window name ">Hello<span> unsafeStyle classNames bind foo window name document body innerHTML <span class=" unsafeStyle foo ">Hello<span> safeStyle classNames bind document body innerHTML <span class=" safeStyle window name ">Hello<span> document body innerHTML <span class=" safeStyle foo ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> |
-| autogenerated/Xss/DomBasedXss/classnames.js:15:32:15:44 | <span class=" | enclosingFunctionName | main |
-| autogenerated/Xss/DomBasedXss/classnames.js:15:32:15:44 | <span class=" | fileImports | classnames classnames/bind classnames/dedupe clsx |
-| autogenerated/Xss/DomBasedXss/classnames.js:15:32:15:44 | <span class=" | receiverName |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:15:32:15:44 | <span class=" | stringConcatenatedWith |  -endpoint- clsx() + '">Hello<span>' |
-| autogenerated/Xss/DomBasedXss/classnames.js:15:47:15:63 | clsx(window.name) | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:15:47:15:63 | clsx(window.name) | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:15:47:15:63 | clsx(window.name) | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:15:47:15:63 | clsx(window.name) | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:15:47:15:63 | clsx(window.name) | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:15:47:15:63 | clsx(window.name) | contextFunctionInterfaces | main() |
-| autogenerated/Xss/DomBasedXss/classnames.js:15:47:15:63 | clsx(window.name) | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/classnames.js:15:47:15:63 | clsx(window.name) | enclosingFunctionBody | document body innerHTML <span class=" classNames window name ">Hello<span> document body innerHTML <span class=" classNamesD window name ">Hello<span> document body innerHTML <span class=" classNamesB window name ">Hello<span> unsafeStyle classNames bind foo window name document body innerHTML <span class=" unsafeStyle foo ">Hello<span> safeStyle classNames bind document body innerHTML <span class=" safeStyle window name ">Hello<span> document body innerHTML <span class=" safeStyle foo ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> |
-| autogenerated/Xss/DomBasedXss/classnames.js:15:47:15:63 | clsx(window.name) | enclosingFunctionName | main |
-| autogenerated/Xss/DomBasedXss/classnames.js:15:47:15:63 | clsx(window.name) | fileImports | classnames classnames/bind classnames/dedupe clsx |
-| autogenerated/Xss/DomBasedXss/classnames.js:15:47:15:63 | clsx(window.name) | receiverName |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:15:47:15:63 | clsx(window.name) | stringConcatenatedWith | '<span class="' -endpoint- '">Hello<span>' |
-| autogenerated/Xss/DomBasedXss/classnames.js:15:65:15:77 | ">Hello<span> | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:15:65:15:77 | ">Hello<span> | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:15:65:15:77 | ">Hello<span> | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:15:65:15:77 | ">Hello<span> | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:15:65:15:77 | ">Hello<span> | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:15:65:15:77 | ">Hello<span> | contextFunctionInterfaces | main() |
-| autogenerated/Xss/DomBasedXss/classnames.js:15:65:15:77 | ">Hello<span> | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/classnames.js:15:65:15:77 | ">Hello<span> | enclosingFunctionBody | document body innerHTML <span class=" classNames window name ">Hello<span> document body innerHTML <span class=" classNamesD window name ">Hello<span> document body innerHTML <span class=" classNamesB window name ">Hello<span> unsafeStyle classNames bind foo window name document body innerHTML <span class=" unsafeStyle foo ">Hello<span> safeStyle classNames bind document body innerHTML <span class=" safeStyle window name ">Hello<span> document body innerHTML <span class=" safeStyle foo ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> |
-| autogenerated/Xss/DomBasedXss/classnames.js:15:65:15:77 | ">Hello<span> | enclosingFunctionName | main |
-| autogenerated/Xss/DomBasedXss/classnames.js:15:65:15:77 | ">Hello<span> | fileImports | classnames classnames/bind classnames/dedupe clsx |
-| autogenerated/Xss/DomBasedXss/classnames.js:15:65:15:77 | ">Hello<span> | receiverName |  |
-| autogenerated/Xss/DomBasedXss/classnames.js:15:65:15:77 | ">Hello<span> | stringConcatenatedWith | '<span class="' + clsx() -endpoint-  |
-| autogenerated/Xss/DomBasedXss/d3.js:1:20:1:23 | 'd3' | CalleeFlexibleAccessPath | require |
-| autogenerated/Xss/DomBasedXss/d3.js:1:20:1:23 | 'd3' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/d3.js:1:20:1:23 | 'd3' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/d3.js:1:20:1:23 | 'd3' | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/d3.js:1:20:1:23 | 'd3' | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/d3.js:1:20:1:23 | 'd3' | contextFunctionInterfaces | doSomething()\ngetTaint()\notherFunction(selection) |
-| autogenerated/Xss/DomBasedXss/d3.js:1:20:1:23 | 'd3' | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/DomBasedXss/d3.js:1:20:1:23 | 'd3' | enclosingFunctionBody |  |
-| autogenerated/Xss/DomBasedXss/d3.js:1:20:1:23 | 'd3' | enclosingFunctionName |  |
-| autogenerated/Xss/DomBasedXss/d3.js:1:20:1:23 | 'd3' | fileImports | d3 |
-| autogenerated/Xss/DomBasedXss/d3.js:1:20:1:23 | 'd3' | receiverName |  |
-| autogenerated/Xss/DomBasedXss/d3.js:1:20:1:23 | 'd3' | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/d3.js:8:15:8:21 | '#main' | CalleeFlexibleAccessPath | d3.select |
-| autogenerated/Xss/DomBasedXss/d3.js:8:15:8:21 | '#main' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/d3.js:8:15:8:21 | '#main' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/d3.js:8:15:8:21 | '#main' | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/d3.js:8:15:8:21 | '#main' | calleeImports | d3 |
-| autogenerated/Xss/DomBasedXss/d3.js:8:15:8:21 | '#main' | contextFunctionInterfaces | doSomething()\ngetTaint()\notherFunction(selection) |
-| autogenerated/Xss/DomBasedXss/d3.js:8:15:8:21 | '#main' | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/d3.js:8:15:8:21 | '#main' | enclosingFunctionBody | d3 select #main attr width 100 style color red html getTaint html d getTaint call otherFunction html d getTaint |
-| autogenerated/Xss/DomBasedXss/d3.js:8:15:8:21 | '#main' | enclosingFunctionName | doSomething |
-| autogenerated/Xss/DomBasedXss/d3.js:8:15:8:21 | '#main' | fileImports | d3 |
-| autogenerated/Xss/DomBasedXss/d3.js:8:15:8:21 | '#main' | receiverName | d3 |
-| autogenerated/Xss/DomBasedXss/d3.js:8:15:8:21 | '#main' | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/d3.js:9:15:9:21 | 'width' | CalleeFlexibleAccessPath | d3.select().attr |
-| autogenerated/Xss/DomBasedXss/d3.js:9:15:9:21 | 'width' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/d3.js:9:15:9:21 | 'width' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/d3.js:9:15:9:21 | 'width' | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/d3.js:9:15:9:21 | 'width' | calleeImports | d3 |
-| autogenerated/Xss/DomBasedXss/d3.js:9:15:9:21 | 'width' | contextFunctionInterfaces | doSomething()\ngetTaint()\notherFunction(selection) |
-| autogenerated/Xss/DomBasedXss/d3.js:9:15:9:21 | 'width' | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/d3.js:9:15:9:21 | 'width' | enclosingFunctionBody | d3 select #main attr width 100 style color red html getTaint html d getTaint call otherFunction html d getTaint |
-| autogenerated/Xss/DomBasedXss/d3.js:9:15:9:21 | 'width' | enclosingFunctionName | doSomething |
-| autogenerated/Xss/DomBasedXss/d3.js:9:15:9:21 | 'width' | fileImports | d3 |
-| autogenerated/Xss/DomBasedXss/d3.js:9:15:9:21 | 'width' | receiverName |  |
-| autogenerated/Xss/DomBasedXss/d3.js:9:15:9:21 | 'width' | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/d3.js:9:24:9:26 | 100 | CalleeFlexibleAccessPath | d3.select().attr |
-| autogenerated/Xss/DomBasedXss/d3.js:9:24:9:26 | 100 | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/d3.js:9:24:9:26 | 100 | InputArgumentIndex | 1 |
-| autogenerated/Xss/DomBasedXss/d3.js:9:24:9:26 | 100 | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/d3.js:9:24:9:26 | 100 | calleeImports | d3 |
-| autogenerated/Xss/DomBasedXss/d3.js:9:24:9:26 | 100 | contextFunctionInterfaces | doSomething()\ngetTaint()\notherFunction(selection) |
-| autogenerated/Xss/DomBasedXss/d3.js:9:24:9:26 | 100 | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/d3.js:9:24:9:26 | 100 | enclosingFunctionBody | d3 select #main attr width 100 style color red html getTaint html d getTaint call otherFunction html d getTaint |
-| autogenerated/Xss/DomBasedXss/d3.js:9:24:9:26 | 100 | enclosingFunctionName | doSomething |
-| autogenerated/Xss/DomBasedXss/d3.js:9:24:9:26 | 100 | fileImports | d3 |
-| autogenerated/Xss/DomBasedXss/d3.js:9:24:9:26 | 100 | receiverName |  |
-| autogenerated/Xss/DomBasedXss/d3.js:9:24:9:26 | 100 | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/d3.js:10:16:10:22 | 'color' | CalleeFlexibleAccessPath | d3.select().attr().style |
-| autogenerated/Xss/DomBasedXss/d3.js:10:16:10:22 | 'color' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/d3.js:10:16:10:22 | 'color' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/d3.js:10:16:10:22 | 'color' | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/d3.js:10:16:10:22 | 'color' | calleeImports | d3 |
-| autogenerated/Xss/DomBasedXss/d3.js:10:16:10:22 | 'color' | contextFunctionInterfaces | doSomething()\ngetTaint()\notherFunction(selection) |
-| autogenerated/Xss/DomBasedXss/d3.js:10:16:10:22 | 'color' | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/d3.js:10:16:10:22 | 'color' | enclosingFunctionBody | d3 select #main attr width 100 style color red html getTaint html d getTaint call otherFunction html d getTaint |
-| autogenerated/Xss/DomBasedXss/d3.js:10:16:10:22 | 'color' | enclosingFunctionName | doSomething |
-| autogenerated/Xss/DomBasedXss/d3.js:10:16:10:22 | 'color' | fileImports | d3 |
-| autogenerated/Xss/DomBasedXss/d3.js:10:16:10:22 | 'color' | receiverName |  |
-| autogenerated/Xss/DomBasedXss/d3.js:10:16:10:22 | 'color' | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/d3.js:10:25:10:29 | 'red' | CalleeFlexibleAccessPath | d3.select().attr().style |
-| autogenerated/Xss/DomBasedXss/d3.js:10:25:10:29 | 'red' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/d3.js:10:25:10:29 | 'red' | InputArgumentIndex | 1 |
-| autogenerated/Xss/DomBasedXss/d3.js:10:25:10:29 | 'red' | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/d3.js:10:25:10:29 | 'red' | calleeImports | d3 |
-| autogenerated/Xss/DomBasedXss/d3.js:10:25:10:29 | 'red' | contextFunctionInterfaces | doSomething()\ngetTaint()\notherFunction(selection) |
-| autogenerated/Xss/DomBasedXss/d3.js:10:25:10:29 | 'red' | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/d3.js:10:25:10:29 | 'red' | enclosingFunctionBody | d3 select #main attr width 100 style color red html getTaint html d getTaint call otherFunction html d getTaint |
-| autogenerated/Xss/DomBasedXss/d3.js:10:25:10:29 | 'red' | enclosingFunctionName | doSomething |
-| autogenerated/Xss/DomBasedXss/d3.js:10:25:10:29 | 'red' | fileImports | d3 |
-| autogenerated/Xss/DomBasedXss/d3.js:10:25:10:29 | 'red' | receiverName |  |
-| autogenerated/Xss/DomBasedXss/d3.js:10:25:10:29 | 'red' | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/d3.js:11:15:11:24 | getTaint() | CalleeFlexibleAccessPath | d3.select().attr().style().html |
-| autogenerated/Xss/DomBasedXss/d3.js:11:15:11:24 | getTaint() | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/d3.js:11:15:11:24 | getTaint() | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/d3.js:11:15:11:24 | getTaint() | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/d3.js:11:15:11:24 | getTaint() | calleeImports | d3 |
-| autogenerated/Xss/DomBasedXss/d3.js:11:15:11:24 | getTaint() | contextFunctionInterfaces | doSomething()\ngetTaint()\notherFunction(selection) |
-| autogenerated/Xss/DomBasedXss/d3.js:11:15:11:24 | getTaint() | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/d3.js:11:15:11:24 | getTaint() | enclosingFunctionBody | d3 select #main attr width 100 style color red html getTaint html d getTaint call otherFunction html d getTaint |
-| autogenerated/Xss/DomBasedXss/d3.js:11:15:11:24 | getTaint() | enclosingFunctionName | doSomething |
-| autogenerated/Xss/DomBasedXss/d3.js:11:15:11:24 | getTaint() | fileImports | d3 |
-| autogenerated/Xss/DomBasedXss/d3.js:11:15:11:24 | getTaint() | receiverName |  |
-| autogenerated/Xss/DomBasedXss/d3.js:11:15:11:24 | getTaint() | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/d3.js:12:15:12:29 | d => getTaint() | CalleeFlexibleAccessPath | d3.select().attr().style().html().html |
-| autogenerated/Xss/DomBasedXss/d3.js:12:15:12:29 | d => getTaint() | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/d3.js:12:15:12:29 | d => getTaint() | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/d3.js:12:15:12:29 | d => getTaint() | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/d3.js:12:15:12:29 | d => getTaint() | calleeImports | d3 |
-| autogenerated/Xss/DomBasedXss/d3.js:12:15:12:29 | d => getTaint() | contextFunctionInterfaces | doSomething()\ngetTaint()\notherFunction(selection) |
-| autogenerated/Xss/DomBasedXss/d3.js:12:15:12:29 | d => getTaint() | contextSurroundingFunctionParameters | ()\n(d) |
-| autogenerated/Xss/DomBasedXss/d3.js:12:15:12:29 | d => getTaint() | enclosingFunctionBody | d3 select #main attr width 100 style color red html getTaint html d getTaint call otherFunction html d getTaint |
-| autogenerated/Xss/DomBasedXss/d3.js:12:15:12:29 | d => getTaint() | enclosingFunctionName | doSomething |
-| autogenerated/Xss/DomBasedXss/d3.js:12:15:12:29 | d => getTaint() | fileImports | d3 |
-| autogenerated/Xss/DomBasedXss/d3.js:12:15:12:29 | d => getTaint() | receiverName |  |
-| autogenerated/Xss/DomBasedXss/d3.js:12:15:12:29 | d => getTaint() | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/d3.js:12:20:12:29 | getTaint() | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/d3.js:12:20:12:29 | getTaint() | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/d3.js:12:20:12:29 | getTaint() | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/d3.js:12:20:12:29 | getTaint() | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/d3.js:12:20:12:29 | getTaint() | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/d3.js:12:20:12:29 | getTaint() | contextFunctionInterfaces | doSomething()\ngetTaint()\notherFunction(selection) |
-| autogenerated/Xss/DomBasedXss/d3.js:12:20:12:29 | getTaint() | contextSurroundingFunctionParameters | ()\n(d) |
-| autogenerated/Xss/DomBasedXss/d3.js:12:20:12:29 | getTaint() | enclosingFunctionBody | d3 select #main attr width 100 style color red html getTaint html d getTaint call otherFunction html d getTaint |
-| autogenerated/Xss/DomBasedXss/d3.js:12:20:12:29 | getTaint() | enclosingFunctionName | doSomething |
-| autogenerated/Xss/DomBasedXss/d3.js:12:20:12:29 | getTaint() | fileImports | d3 |
-| autogenerated/Xss/DomBasedXss/d3.js:12:20:12:29 | getTaint() | receiverName |  |
-| autogenerated/Xss/DomBasedXss/d3.js:12:20:12:29 | getTaint() | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/d3.js:13:15:13:27 | otherFunction | CalleeFlexibleAccessPath | d3.select().attr().style().html().html().call |
-| autogenerated/Xss/DomBasedXss/d3.js:13:15:13:27 | otherFunction | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/d3.js:13:15:13:27 | otherFunction | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/d3.js:13:15:13:27 | otherFunction | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/d3.js:13:15:13:27 | otherFunction | calleeImports | d3 |
-| autogenerated/Xss/DomBasedXss/d3.js:13:15:13:27 | otherFunction | contextFunctionInterfaces | doSomething()\ngetTaint()\notherFunction(selection) |
-| autogenerated/Xss/DomBasedXss/d3.js:13:15:13:27 | otherFunction | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/d3.js:13:15:13:27 | otherFunction | enclosingFunctionBody | d3 select #main attr width 100 style color red html getTaint html d getTaint call otherFunction html d getTaint |
-| autogenerated/Xss/DomBasedXss/d3.js:13:15:13:27 | otherFunction | enclosingFunctionName | doSomething |
-| autogenerated/Xss/DomBasedXss/d3.js:13:15:13:27 | otherFunction | fileImports | d3 |
-| autogenerated/Xss/DomBasedXss/d3.js:13:15:13:27 | otherFunction | receiverName |  |
-| autogenerated/Xss/DomBasedXss/d3.js:13:15:13:27 | otherFunction | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/d3.js:14:15:14:29 | d => getTaint() | CalleeFlexibleAccessPath | d3.select().attr().style().html().html().call().html |
-| autogenerated/Xss/DomBasedXss/d3.js:14:15:14:29 | d => getTaint() | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/d3.js:14:15:14:29 | d => getTaint() | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/d3.js:14:15:14:29 | d => getTaint() | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/d3.js:14:15:14:29 | d => getTaint() | calleeImports | d3 |
-| autogenerated/Xss/DomBasedXss/d3.js:14:15:14:29 | d => getTaint() | contextFunctionInterfaces | doSomething()\ngetTaint()\notherFunction(selection) |
-| autogenerated/Xss/DomBasedXss/d3.js:14:15:14:29 | d => getTaint() | contextSurroundingFunctionParameters | ()\n(d) |
-| autogenerated/Xss/DomBasedXss/d3.js:14:15:14:29 | d => getTaint() | enclosingFunctionBody | d3 select #main attr width 100 style color red html getTaint html d getTaint call otherFunction html d getTaint |
-| autogenerated/Xss/DomBasedXss/d3.js:14:15:14:29 | d => getTaint() | enclosingFunctionName | doSomething |
-| autogenerated/Xss/DomBasedXss/d3.js:14:15:14:29 | d => getTaint() | fileImports | d3 |
-| autogenerated/Xss/DomBasedXss/d3.js:14:15:14:29 | d => getTaint() | receiverName |  |
-| autogenerated/Xss/DomBasedXss/d3.js:14:15:14:29 | d => getTaint() | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/d3.js:14:20:14:29 | getTaint() | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/d3.js:14:20:14:29 | getTaint() | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/d3.js:14:20:14:29 | getTaint() | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/d3.js:14:20:14:29 | getTaint() | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/d3.js:14:20:14:29 | getTaint() | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/d3.js:14:20:14:29 | getTaint() | contextFunctionInterfaces | doSomething()\ngetTaint()\notherFunction(selection) |
-| autogenerated/Xss/DomBasedXss/d3.js:14:20:14:29 | getTaint() | contextSurroundingFunctionParameters | ()\n(d) |
-| autogenerated/Xss/DomBasedXss/d3.js:14:20:14:29 | getTaint() | enclosingFunctionBody | d3 select #main attr width 100 style color red html getTaint html d getTaint call otherFunction html d getTaint |
-| autogenerated/Xss/DomBasedXss/d3.js:14:20:14:29 | getTaint() | enclosingFunctionName | doSomething |
-| autogenerated/Xss/DomBasedXss/d3.js:14:20:14:29 | getTaint() | fileImports | d3 |
-| autogenerated/Xss/DomBasedXss/d3.js:14:20:14:29 | getTaint() | receiverName |  |
-| autogenerated/Xss/DomBasedXss/d3.js:14:20:14:29 | getTaint() | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/d3.js:20:15:20:19 | 'foo' | CalleeFlexibleAccessPath | selection.attr |
-| autogenerated/Xss/DomBasedXss/d3.js:20:15:20:19 | 'foo' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/d3.js:20:15:20:19 | 'foo' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/d3.js:20:15:20:19 | 'foo' | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/d3.js:20:15:20:19 | 'foo' | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/d3.js:20:15:20:19 | 'foo' | contextFunctionInterfaces | doSomething()\ngetTaint()\notherFunction(selection) |
-| autogenerated/Xss/DomBasedXss/d3.js:20:15:20:19 | 'foo' | contextSurroundingFunctionParameters | (selection) |
-| autogenerated/Xss/DomBasedXss/d3.js:20:15:20:19 | 'foo' | enclosingFunctionBody | selection selection attr foo bar html getTaint |
-| autogenerated/Xss/DomBasedXss/d3.js:20:15:20:19 | 'foo' | enclosingFunctionName | otherFunction |
-| autogenerated/Xss/DomBasedXss/d3.js:20:15:20:19 | 'foo' | fileImports | d3 |
-| autogenerated/Xss/DomBasedXss/d3.js:20:15:20:19 | 'foo' | receiverName | selection |
-| autogenerated/Xss/DomBasedXss/d3.js:20:15:20:19 | 'foo' | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/d3.js:20:22:20:26 | 'bar' | CalleeFlexibleAccessPath | selection.attr |
-| autogenerated/Xss/DomBasedXss/d3.js:20:22:20:26 | 'bar' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/d3.js:20:22:20:26 | 'bar' | InputArgumentIndex | 1 |
-| autogenerated/Xss/DomBasedXss/d3.js:20:22:20:26 | 'bar' | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/d3.js:20:22:20:26 | 'bar' | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/d3.js:20:22:20:26 | 'bar' | contextFunctionInterfaces | doSomething()\ngetTaint()\notherFunction(selection) |
-| autogenerated/Xss/DomBasedXss/d3.js:20:22:20:26 | 'bar' | contextSurroundingFunctionParameters | (selection) |
-| autogenerated/Xss/DomBasedXss/d3.js:20:22:20:26 | 'bar' | enclosingFunctionBody | selection selection attr foo bar html getTaint |
-| autogenerated/Xss/DomBasedXss/d3.js:20:22:20:26 | 'bar' | enclosingFunctionName | otherFunction |
-| autogenerated/Xss/DomBasedXss/d3.js:20:22:20:26 | 'bar' | fileImports | d3 |
-| autogenerated/Xss/DomBasedXss/d3.js:20:22:20:26 | 'bar' | receiverName | selection |
-| autogenerated/Xss/DomBasedXss/d3.js:20:22:20:26 | 'bar' | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/d3.js:21:15:21:24 | getTaint() | CalleeFlexibleAccessPath | selection.attr().html |
-| autogenerated/Xss/DomBasedXss/d3.js:21:15:21:24 | getTaint() | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/d3.js:21:15:21:24 | getTaint() | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/d3.js:21:15:21:24 | getTaint() | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/d3.js:21:15:21:24 | getTaint() | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/d3.js:21:15:21:24 | getTaint() | contextFunctionInterfaces | doSomething()\ngetTaint()\notherFunction(selection) |
-| autogenerated/Xss/DomBasedXss/d3.js:21:15:21:24 | getTaint() | contextSurroundingFunctionParameters | (selection) |
-| autogenerated/Xss/DomBasedXss/d3.js:21:15:21:24 | getTaint() | enclosingFunctionBody | selection selection attr foo bar html getTaint |
-| autogenerated/Xss/DomBasedXss/d3.js:21:15:21:24 | getTaint() | enclosingFunctionName | otherFunction |
-| autogenerated/Xss/DomBasedXss/d3.js:21:15:21:24 | getTaint() | fileImports | d3 |
-| autogenerated/Xss/DomBasedXss/d3.js:21:15:21:24 | getTaint() | receiverName |  |
-| autogenerated/Xss/DomBasedXss/d3.js:21:15:21:24 | getTaint() | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/dates.js:9:67:9:67 | 1 | CalleeFlexibleAccessPath | window.location.hash.substring |
-| autogenerated/Xss/DomBasedXss/dates.js:9:67:9:67 | 1 | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/dates.js:9:67:9:67 | 1 | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/dates.js:9:67:9:67 | 1 | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/dates.js:9:67:9:67 | 1 | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/dates.js:9:67:9:67 | 1 | contextFunctionInterfaces | main() |
-| autogenerated/Xss/DomBasedXss/dates.js:9:67:9:67 | 1 | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/dates.js:9:67:9:67 | 1 | enclosingFunctionBody | time Date taint decodeURIComponent window location hash substring 1 document body innerHTML Time is  dateFns format time taint document body innerHTML Time is  dateFnsEsm format time taint document body innerHTML Time is  dateFnsFp format taint time document body innerHTML Time is  dateFns format taint time document body innerHTML Time is  dateFnsFp format time taint document body innerHTML Time is  moment time format taint document body innerHTML Time is  moment taint format document body innerHTML Time is  dateformat time taint |
-| autogenerated/Xss/DomBasedXss/dates.js:9:67:9:67 | 1 | enclosingFunctionName | main |
-| autogenerated/Xss/DomBasedXss/dates.js:9:67:9:67 | 1 | fileImports | date-fns date-fns/esm date-fns/fp dateformat moment |
-| autogenerated/Xss/DomBasedXss/dates.js:9:67:9:67 | 1 | receiverName |  |
-| autogenerated/Xss/DomBasedXss/dates.js:9:67:9:67 | 1 | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/dates.js:11:31:11:70 | `Time i ... aint)}` | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/dates.js:11:31:11:70 | `Time i ... aint)}` | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/dates.js:11:31:11:70 | `Time i ... aint)}` | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/dates.js:11:31:11:70 | `Time i ... aint)}` | assignedToPropName | innerHTML |
-| autogenerated/Xss/DomBasedXss/dates.js:11:31:11:70 | `Time i ... aint)}` | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/dates.js:11:31:11:70 | `Time i ... aint)}` | contextFunctionInterfaces | main() |
-| autogenerated/Xss/DomBasedXss/dates.js:11:31:11:70 | `Time i ... aint)}` | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/dates.js:11:31:11:70 | `Time i ... aint)}` | enclosingFunctionBody | time Date taint decodeURIComponent window location hash substring 1 document body innerHTML Time is  dateFns format time taint document body innerHTML Time is  dateFnsEsm format time taint document body innerHTML Time is  dateFnsFp format taint time document body innerHTML Time is  dateFns format taint time document body innerHTML Time is  dateFnsFp format time taint document body innerHTML Time is  moment time format taint document body innerHTML Time is  moment taint format document body innerHTML Time is  dateformat time taint |
-| autogenerated/Xss/DomBasedXss/dates.js:11:31:11:70 | `Time i ... aint)}` | enclosingFunctionName | main |
-| autogenerated/Xss/DomBasedXss/dates.js:11:31:11:70 | `Time i ... aint)}` | fileImports | date-fns date-fns/esm date-fns/fp dateformat moment |
-| autogenerated/Xss/DomBasedXss/dates.js:11:31:11:70 | `Time i ... aint)}` | receiverName |  |
-| autogenerated/Xss/DomBasedXss/dates.js:11:31:11:70 | `Time i ... aint)}` | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/dates.js:12:31:12:73 | `Time i ... aint)}` | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/dates.js:12:31:12:73 | `Time i ... aint)}` | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/dates.js:12:31:12:73 | `Time i ... aint)}` | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/dates.js:12:31:12:73 | `Time i ... aint)}` | assignedToPropName | innerHTML |
-| autogenerated/Xss/DomBasedXss/dates.js:12:31:12:73 | `Time i ... aint)}` | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/dates.js:12:31:12:73 | `Time i ... aint)}` | contextFunctionInterfaces | main() |
-| autogenerated/Xss/DomBasedXss/dates.js:12:31:12:73 | `Time i ... aint)}` | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/dates.js:12:31:12:73 | `Time i ... aint)}` | enclosingFunctionBody | time Date taint decodeURIComponent window location hash substring 1 document body innerHTML Time is  dateFns format time taint document body innerHTML Time is  dateFnsEsm format time taint document body innerHTML Time is  dateFnsFp format taint time document body innerHTML Time is  dateFns format taint time document body innerHTML Time is  dateFnsFp format time taint document body innerHTML Time is  moment time format taint document body innerHTML Time is  moment taint format document body innerHTML Time is  dateformat time taint |
-| autogenerated/Xss/DomBasedXss/dates.js:12:31:12:73 | `Time i ... aint)}` | enclosingFunctionName | main |
-| autogenerated/Xss/DomBasedXss/dates.js:12:31:12:73 | `Time i ... aint)}` | fileImports | date-fns date-fns/esm date-fns/fp dateformat moment |
-| autogenerated/Xss/DomBasedXss/dates.js:12:31:12:73 | `Time i ... aint)}` | receiverName |  |
-| autogenerated/Xss/DomBasedXss/dates.js:12:31:12:73 | `Time i ... aint)}` | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/dates.js:13:31:13:72 | `Time i ... time)}` | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/dates.js:13:31:13:72 | `Time i ... time)}` | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/dates.js:13:31:13:72 | `Time i ... time)}` | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/dates.js:13:31:13:72 | `Time i ... time)}` | assignedToPropName | innerHTML |
-| autogenerated/Xss/DomBasedXss/dates.js:13:31:13:72 | `Time i ... time)}` | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/dates.js:13:31:13:72 | `Time i ... time)}` | contextFunctionInterfaces | main() |
-| autogenerated/Xss/DomBasedXss/dates.js:13:31:13:72 | `Time i ... time)}` | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/dates.js:13:31:13:72 | `Time i ... time)}` | enclosingFunctionBody | time Date taint decodeURIComponent window location hash substring 1 document body innerHTML Time is  dateFns format time taint document body innerHTML Time is  dateFnsEsm format time taint document body innerHTML Time is  dateFnsFp format taint time document body innerHTML Time is  dateFns format taint time document body innerHTML Time is  dateFnsFp format time taint document body innerHTML Time is  moment time format taint document body innerHTML Time is  moment taint format document body innerHTML Time is  dateformat time taint |
-| autogenerated/Xss/DomBasedXss/dates.js:13:31:13:72 | `Time i ... time)}` | enclosingFunctionName | main |
-| autogenerated/Xss/DomBasedXss/dates.js:13:31:13:72 | `Time i ... time)}` | fileImports | date-fns date-fns/esm date-fns/fp dateformat moment |
-| autogenerated/Xss/DomBasedXss/dates.js:13:31:13:72 | `Time i ... time)}` | receiverName |  |
-| autogenerated/Xss/DomBasedXss/dates.js:13:31:13:72 | `Time i ... time)}` | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/dates.js:13:66:13:69 | time | CalleeFlexibleAccessPath | dateFnsFp.format() |
-| autogenerated/Xss/DomBasedXss/dates.js:13:66:13:69 | time | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/dates.js:13:66:13:69 | time | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/dates.js:13:66:13:69 | time | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/dates.js:13:66:13:69 | time | calleeImports | date-fns/fp |
-| autogenerated/Xss/DomBasedXss/dates.js:13:66:13:69 | time | contextFunctionInterfaces | main() |
-| autogenerated/Xss/DomBasedXss/dates.js:13:66:13:69 | time | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/dates.js:13:66:13:69 | time | enclosingFunctionBody | time Date taint decodeURIComponent window location hash substring 1 document body innerHTML Time is  dateFns format time taint document body innerHTML Time is  dateFnsEsm format time taint document body innerHTML Time is  dateFnsFp format taint time document body innerHTML Time is  dateFns format taint time document body innerHTML Time is  dateFnsFp format time taint document body innerHTML Time is  moment time format taint document body innerHTML Time is  moment taint format document body innerHTML Time is  dateformat time taint |
-| autogenerated/Xss/DomBasedXss/dates.js:13:66:13:69 | time | enclosingFunctionName | main |
-| autogenerated/Xss/DomBasedXss/dates.js:13:66:13:69 | time | fileImports | date-fns date-fns/esm date-fns/fp dateformat moment |
-| autogenerated/Xss/DomBasedXss/dates.js:13:66:13:69 | time | receiverName |  |
-| autogenerated/Xss/DomBasedXss/dates.js:13:66:13:69 | time | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/dates.js:14:31:14:70 | `Time i ... time)}` | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/dates.js:14:31:14:70 | `Time i ... time)}` | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/dates.js:14:31:14:70 | `Time i ... time)}` | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/dates.js:14:31:14:70 | `Time i ... time)}` | assignedToPropName | innerHTML |
-| autogenerated/Xss/DomBasedXss/dates.js:14:31:14:70 | `Time i ... time)}` | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/dates.js:14:31:14:70 | `Time i ... time)}` | contextFunctionInterfaces | main() |
-| autogenerated/Xss/DomBasedXss/dates.js:14:31:14:70 | `Time i ... time)}` | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/dates.js:14:31:14:70 | `Time i ... time)}` | enclosingFunctionBody | time Date taint decodeURIComponent window location hash substring 1 document body innerHTML Time is  dateFns format time taint document body innerHTML Time is  dateFnsEsm format time taint document body innerHTML Time is  dateFnsFp format taint time document body innerHTML Time is  dateFns format taint time document body innerHTML Time is  dateFnsFp format time taint document body innerHTML Time is  moment time format taint document body innerHTML Time is  moment taint format document body innerHTML Time is  dateformat time taint |
-| autogenerated/Xss/DomBasedXss/dates.js:14:31:14:70 | `Time i ... time)}` | enclosingFunctionName | main |
-| autogenerated/Xss/DomBasedXss/dates.js:14:31:14:70 | `Time i ... time)}` | fileImports | date-fns date-fns/esm date-fns/fp dateformat moment |
-| autogenerated/Xss/DomBasedXss/dates.js:14:31:14:70 | `Time i ... time)}` | receiverName |  |
-| autogenerated/Xss/DomBasedXss/dates.js:14:31:14:70 | `Time i ... time)}` | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/dates.js:15:31:15:72 | `Time i ... aint)}` | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/dates.js:15:31:15:72 | `Time i ... aint)}` | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/dates.js:15:31:15:72 | `Time i ... aint)}` | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/dates.js:15:31:15:72 | `Time i ... aint)}` | assignedToPropName | innerHTML |
-| autogenerated/Xss/DomBasedXss/dates.js:15:31:15:72 | `Time i ... aint)}` | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/dates.js:15:31:15:72 | `Time i ... aint)}` | contextFunctionInterfaces | main() |
-| autogenerated/Xss/DomBasedXss/dates.js:15:31:15:72 | `Time i ... aint)}` | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/dates.js:15:31:15:72 | `Time i ... aint)}` | enclosingFunctionBody | time Date taint decodeURIComponent window location hash substring 1 document body innerHTML Time is  dateFns format time taint document body innerHTML Time is  dateFnsEsm format time taint document body innerHTML Time is  dateFnsFp format taint time document body innerHTML Time is  dateFns format taint time document body innerHTML Time is  dateFnsFp format time taint document body innerHTML Time is  moment time format taint document body innerHTML Time is  moment taint format document body innerHTML Time is  dateformat time taint |
-| autogenerated/Xss/DomBasedXss/dates.js:15:31:15:72 | `Time i ... aint)}` | enclosingFunctionName | main |
-| autogenerated/Xss/DomBasedXss/dates.js:15:31:15:72 | `Time i ... aint)}` | fileImports | date-fns date-fns/esm date-fns/fp dateformat moment |
-| autogenerated/Xss/DomBasedXss/dates.js:15:31:15:72 | `Time i ... aint)}` | receiverName |  |
-| autogenerated/Xss/DomBasedXss/dates.js:15:31:15:72 | `Time i ... aint)}` | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/dates.js:15:65:15:69 | taint | CalleeFlexibleAccessPath | dateFnsFp.format() |
-| autogenerated/Xss/DomBasedXss/dates.js:15:65:15:69 | taint | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/dates.js:15:65:15:69 | taint | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/dates.js:15:65:15:69 | taint | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/dates.js:15:65:15:69 | taint | calleeImports | date-fns/fp |
-| autogenerated/Xss/DomBasedXss/dates.js:15:65:15:69 | taint | contextFunctionInterfaces | main() |
-| autogenerated/Xss/DomBasedXss/dates.js:15:65:15:69 | taint | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/dates.js:15:65:15:69 | taint | enclosingFunctionBody | time Date taint decodeURIComponent window location hash substring 1 document body innerHTML Time is  dateFns format time taint document body innerHTML Time is  dateFnsEsm format time taint document body innerHTML Time is  dateFnsFp format taint time document body innerHTML Time is  dateFns format taint time document body innerHTML Time is  dateFnsFp format time taint document body innerHTML Time is  moment time format taint document body innerHTML Time is  moment taint format document body innerHTML Time is  dateformat time taint |
-| autogenerated/Xss/DomBasedXss/dates.js:15:65:15:69 | taint | enclosingFunctionName | main |
-| autogenerated/Xss/DomBasedXss/dates.js:15:65:15:69 | taint | fileImports | date-fns date-fns/esm date-fns/fp dateformat moment |
-| autogenerated/Xss/DomBasedXss/dates.js:15:65:15:69 | taint | receiverName |  |
-| autogenerated/Xss/DomBasedXss/dates.js:15:65:15:69 | taint | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/dates.js:16:31:16:69 | `Time i ... aint)}` | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/dates.js:16:31:16:69 | `Time i ... aint)}` | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/dates.js:16:31:16:69 | `Time i ... aint)}` | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/dates.js:16:31:16:69 | `Time i ... aint)}` | assignedToPropName | innerHTML |
-| autogenerated/Xss/DomBasedXss/dates.js:16:31:16:69 | `Time i ... aint)}` | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/dates.js:16:31:16:69 | `Time i ... aint)}` | contextFunctionInterfaces | main() |
-| autogenerated/Xss/DomBasedXss/dates.js:16:31:16:69 | `Time i ... aint)}` | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/dates.js:16:31:16:69 | `Time i ... aint)}` | enclosingFunctionBody | time Date taint decodeURIComponent window location hash substring 1 document body innerHTML Time is  dateFns format time taint document body innerHTML Time is  dateFnsEsm format time taint document body innerHTML Time is  dateFnsFp format taint time document body innerHTML Time is  dateFns format taint time document body innerHTML Time is  dateFnsFp format time taint document body innerHTML Time is  moment time format taint document body innerHTML Time is  moment taint format document body innerHTML Time is  dateformat time taint |
-| autogenerated/Xss/DomBasedXss/dates.js:16:31:16:69 | `Time i ... aint)}` | enclosingFunctionName | main |
-| autogenerated/Xss/DomBasedXss/dates.js:16:31:16:69 | `Time i ... aint)}` | fileImports | date-fns date-fns/esm date-fns/fp dateformat moment |
-| autogenerated/Xss/DomBasedXss/dates.js:16:31:16:69 | `Time i ... aint)}` | receiverName |  |
-| autogenerated/Xss/DomBasedXss/dates.js:16:31:16:69 | `Time i ... aint)}` | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/dates.js:16:49:16:52 | time | CalleeFlexibleAccessPath | moment |
-| autogenerated/Xss/DomBasedXss/dates.js:16:49:16:52 | time | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/dates.js:16:49:16:52 | time | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/dates.js:16:49:16:52 | time | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/dates.js:16:49:16:52 | time | calleeImports | moment |
-| autogenerated/Xss/DomBasedXss/dates.js:16:49:16:52 | time | contextFunctionInterfaces | main() |
-| autogenerated/Xss/DomBasedXss/dates.js:16:49:16:52 | time | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/dates.js:16:49:16:52 | time | enclosingFunctionBody | time Date taint decodeURIComponent window location hash substring 1 document body innerHTML Time is  dateFns format time taint document body innerHTML Time is  dateFnsEsm format time taint document body innerHTML Time is  dateFnsFp format taint time document body innerHTML Time is  dateFns format taint time document body innerHTML Time is  dateFnsFp format time taint document body innerHTML Time is  moment time format taint document body innerHTML Time is  moment taint format document body innerHTML Time is  dateformat time taint |
-| autogenerated/Xss/DomBasedXss/dates.js:16:49:16:52 | time | enclosingFunctionName | main |
-| autogenerated/Xss/DomBasedXss/dates.js:16:49:16:52 | time | fileImports | date-fns date-fns/esm date-fns/fp dateformat moment |
-| autogenerated/Xss/DomBasedXss/dates.js:16:49:16:52 | time | receiverName |  |
-| autogenerated/Xss/DomBasedXss/dates.js:16:49:16:52 | time | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/dates.js:17:31:17:65 | `Time i ... mat()}` | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/dates.js:17:31:17:65 | `Time i ... mat()}` | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/dates.js:17:31:17:65 | `Time i ... mat()}` | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/dates.js:17:31:17:65 | `Time i ... mat()}` | assignedToPropName | innerHTML |
-| autogenerated/Xss/DomBasedXss/dates.js:17:31:17:65 | `Time i ... mat()}` | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/dates.js:17:31:17:65 | `Time i ... mat()}` | contextFunctionInterfaces | main() |
-| autogenerated/Xss/DomBasedXss/dates.js:17:31:17:65 | `Time i ... mat()}` | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/dates.js:17:31:17:65 | `Time i ... mat()}` | enclosingFunctionBody | time Date taint decodeURIComponent window location hash substring 1 document body innerHTML Time is  dateFns format time taint document body innerHTML Time is  dateFnsEsm format time taint document body innerHTML Time is  dateFnsFp format taint time document body innerHTML Time is  dateFns format taint time document body innerHTML Time is  dateFnsFp format time taint document body innerHTML Time is  moment time format taint document body innerHTML Time is  moment taint format document body innerHTML Time is  dateformat time taint |
-| autogenerated/Xss/DomBasedXss/dates.js:17:31:17:65 | `Time i ... mat()}` | enclosingFunctionName | main |
-| autogenerated/Xss/DomBasedXss/dates.js:17:31:17:65 | `Time i ... mat()}` | fileImports | date-fns date-fns/esm date-fns/fp dateformat moment |
-| autogenerated/Xss/DomBasedXss/dates.js:17:31:17:65 | `Time i ... mat()}` | receiverName |  |
-| autogenerated/Xss/DomBasedXss/dates.js:17:31:17:65 | `Time i ... mat()}` | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/dates.js:17:49:17:53 | taint | CalleeFlexibleAccessPath | moment |
-| autogenerated/Xss/DomBasedXss/dates.js:17:49:17:53 | taint | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/dates.js:17:49:17:53 | taint | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/dates.js:17:49:17:53 | taint | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/dates.js:17:49:17:53 | taint | calleeImports | moment |
-| autogenerated/Xss/DomBasedXss/dates.js:17:49:17:53 | taint | contextFunctionInterfaces | main() |
-| autogenerated/Xss/DomBasedXss/dates.js:17:49:17:53 | taint | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/dates.js:17:49:17:53 | taint | enclosingFunctionBody | time Date taint decodeURIComponent window location hash substring 1 document body innerHTML Time is  dateFns format time taint document body innerHTML Time is  dateFnsEsm format time taint document body innerHTML Time is  dateFnsFp format taint time document body innerHTML Time is  dateFns format taint time document body innerHTML Time is  dateFnsFp format time taint document body innerHTML Time is  moment time format taint document body innerHTML Time is  moment taint format document body innerHTML Time is  dateformat time taint |
-| autogenerated/Xss/DomBasedXss/dates.js:17:49:17:53 | taint | enclosingFunctionName | main |
-| autogenerated/Xss/DomBasedXss/dates.js:17:49:17:53 | taint | fileImports | date-fns date-fns/esm date-fns/fp dateformat moment |
-| autogenerated/Xss/DomBasedXss/dates.js:17:49:17:53 | taint | receiverName |  |
-| autogenerated/Xss/DomBasedXss/dates.js:17:49:17:53 | taint | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/dates.js:18:31:18:66 | `Time i ... aint)}` | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/dates.js:18:31:18:66 | `Time i ... aint)}` | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/dates.js:18:31:18:66 | `Time i ... aint)}` | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/dates.js:18:31:18:66 | `Time i ... aint)}` | assignedToPropName | innerHTML |
-| autogenerated/Xss/DomBasedXss/dates.js:18:31:18:66 | `Time i ... aint)}` | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/dates.js:18:31:18:66 | `Time i ... aint)}` | contextFunctionInterfaces | main() |
-| autogenerated/Xss/DomBasedXss/dates.js:18:31:18:66 | `Time i ... aint)}` | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/dates.js:18:31:18:66 | `Time i ... aint)}` | enclosingFunctionBody | time Date taint decodeURIComponent window location hash substring 1 document body innerHTML Time is  dateFns format time taint document body innerHTML Time is  dateFnsEsm format time taint document body innerHTML Time is  dateFnsFp format taint time document body innerHTML Time is  dateFns format taint time document body innerHTML Time is  dateFnsFp format time taint document body innerHTML Time is  moment time format taint document body innerHTML Time is  moment taint format document body innerHTML Time is  dateformat time taint |
-| autogenerated/Xss/DomBasedXss/dates.js:18:31:18:66 | `Time i ... aint)}` | enclosingFunctionName | main |
-| autogenerated/Xss/DomBasedXss/dates.js:18:31:18:66 | `Time i ... aint)}` | fileImports | date-fns date-fns/esm date-fns/fp dateformat moment |
-| autogenerated/Xss/DomBasedXss/dates.js:18:31:18:66 | `Time i ... aint)}` | receiverName |  |
-| autogenerated/Xss/DomBasedXss/dates.js:18:31:18:66 | `Time i ... aint)}` | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/encodeuri.js:3:5:3:15 | '<a href="' | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/encodeuri.js:3:5:3:15 | '<a href="' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/encodeuri.js:3:5:3:15 | '<a href="' | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/encodeuri.js:3:5:3:15 | '<a href="' | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/encodeuri.js:3:5:3:15 | '<a href="' | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/encodeuri.js:3:5:3:15 | '<a href="' | contextFunctionInterfaces | test() |
-| autogenerated/Xss/DomBasedXss/encodeuri.js:3:5:3:15 | '<a href="' | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/encodeuri.js:3:5:3:15 | '<a href="' | enclosingFunctionBody | loc window location href $ <a href=" encodeURIComponent loc ">click</a> |
-| autogenerated/Xss/DomBasedXss/encodeuri.js:3:5:3:15 | '<a href="' | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/encodeuri.js:3:5:3:15 | '<a href="' | fileImports |  |
-| autogenerated/Xss/DomBasedXss/encodeuri.js:3:5:3:15 | '<a href="' | receiverName |  |
-| autogenerated/Xss/DomBasedXss/encodeuri.js:3:5:3:15 | '<a href="' | stringConcatenatedWith |  -endpoint- encodeURIComponent() + '">click</a>' |
-| autogenerated/Xss/DomBasedXss/encodeuri.js:3:5:3:57 | '<a hre ... ck</a>' | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/DomBasedXss/encodeuri.js:3:5:3:57 | '<a hre ... ck</a>' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/encodeuri.js:3:5:3:57 | '<a hre ... ck</a>' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/encodeuri.js:3:5:3:57 | '<a hre ... ck</a>' | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/encodeuri.js:3:5:3:57 | '<a hre ... ck</a>' | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/encodeuri.js:3:5:3:57 | '<a hre ... ck</a>' | contextFunctionInterfaces | test() |
-| autogenerated/Xss/DomBasedXss/encodeuri.js:3:5:3:57 | '<a hre ... ck</a>' | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/encodeuri.js:3:5:3:57 | '<a hre ... ck</a>' | enclosingFunctionBody | loc window location href $ <a href=" encodeURIComponent loc ">click</a> |
-| autogenerated/Xss/DomBasedXss/encodeuri.js:3:5:3:57 | '<a hre ... ck</a>' | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/encodeuri.js:3:5:3:57 | '<a hre ... ck</a>' | fileImports |  |
-| autogenerated/Xss/DomBasedXss/encodeuri.js:3:5:3:57 | '<a hre ... ck</a>' | receiverName |  |
-| autogenerated/Xss/DomBasedXss/encodeuri.js:3:5:3:57 | '<a hre ... ck</a>' | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/encodeuri.js:3:19:3:41 | encodeU ... nt(loc) | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/encodeuri.js:3:19:3:41 | encodeU ... nt(loc) | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/encodeuri.js:3:19:3:41 | encodeU ... nt(loc) | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/encodeuri.js:3:19:3:41 | encodeU ... nt(loc) | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/encodeuri.js:3:19:3:41 | encodeU ... nt(loc) | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/encodeuri.js:3:19:3:41 | encodeU ... nt(loc) | contextFunctionInterfaces | test() |
-| autogenerated/Xss/DomBasedXss/encodeuri.js:3:19:3:41 | encodeU ... nt(loc) | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/encodeuri.js:3:19:3:41 | encodeU ... nt(loc) | enclosingFunctionBody | loc window location href $ <a href=" encodeURIComponent loc ">click</a> |
-| autogenerated/Xss/DomBasedXss/encodeuri.js:3:19:3:41 | encodeU ... nt(loc) | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/encodeuri.js:3:19:3:41 | encodeU ... nt(loc) | fileImports |  |
-| autogenerated/Xss/DomBasedXss/encodeuri.js:3:19:3:41 | encodeU ... nt(loc) | receiverName |  |
-| autogenerated/Xss/DomBasedXss/encodeuri.js:3:19:3:41 | encodeU ... nt(loc) | stringConcatenatedWith | '<a href="' -endpoint- '">click</a>' |
-| autogenerated/Xss/DomBasedXss/encodeuri.js:3:45:3:57 | '">click</a>' | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/encodeuri.js:3:45:3:57 | '">click</a>' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/encodeuri.js:3:45:3:57 | '">click</a>' | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/encodeuri.js:3:45:3:57 | '">click</a>' | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/encodeuri.js:3:45:3:57 | '">click</a>' | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/encodeuri.js:3:45:3:57 | '">click</a>' | contextFunctionInterfaces | test() |
-| autogenerated/Xss/DomBasedXss/encodeuri.js:3:45:3:57 | '">click</a>' | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/encodeuri.js:3:45:3:57 | '">click</a>' | enclosingFunctionBody | loc window location href $ <a href=" encodeURIComponent loc ">click</a> |
-| autogenerated/Xss/DomBasedXss/encodeuri.js:3:45:3:57 | '">click</a>' | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/encodeuri.js:3:45:3:57 | '">click</a>' | fileImports |  |
-| autogenerated/Xss/DomBasedXss/encodeuri.js:3:45:3:57 | '">click</a>' | receiverName |  |
-| autogenerated/Xss/DomBasedXss/encodeuri.js:3:45:3:57 | '">click</a>' | stringConcatenatedWith | '<a href="' + encodeURIComponent() -endpoint-  |
-| autogenerated/Xss/DomBasedXss/event-handler-receiver.js:1:25:1:31 | 'my-id' | CalleeFlexibleAccessPath | document.getElementById |
-| autogenerated/Xss/DomBasedXss/event-handler-receiver.js:1:25:1:31 | 'my-id' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/event-handler-receiver.js:1:25:1:31 | 'my-id' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/event-handler-receiver.js:1:25:1:31 | 'my-id' | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/event-handler-receiver.js:1:25:1:31 | 'my-id' | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/event-handler-receiver.js:1:25:1:31 | 'my-id' | contextFunctionInterfaces | onclick() |
-| autogenerated/Xss/DomBasedXss/event-handler-receiver.js:1:25:1:31 | 'my-id' | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/DomBasedXss/event-handler-receiver.js:1:25:1:31 | 'my-id' | enclosingFunctionBody |  |
-| autogenerated/Xss/DomBasedXss/event-handler-receiver.js:1:25:1:31 | 'my-id' | enclosingFunctionName |  |
-| autogenerated/Xss/DomBasedXss/event-handler-receiver.js:1:25:1:31 | 'my-id' | fileImports |  |
-| autogenerated/Xss/DomBasedXss/event-handler-receiver.js:1:25:1:31 | 'my-id' | receiverName | document |
-| autogenerated/Xss/DomBasedXss/event-handler-receiver.js:1:25:1:31 | 'my-id' | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/event-handler-receiver.js:2:31:2:45 | '<h2><a href="' | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/event-handler-receiver.js:2:31:2:45 | '<h2><a href="' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/event-handler-receiver.js:2:31:2:45 | '<h2><a href="' | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/event-handler-receiver.js:2:31:2:45 | '<h2><a href="' | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/event-handler-receiver.js:2:31:2:45 | '<h2><a href="' | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/event-handler-receiver.js:2:31:2:45 | '<h2><a href="' | contextFunctionInterfaces | onclick() |
-| autogenerated/Xss/DomBasedXss/event-handler-receiver.js:2:31:2:45 | '<h2><a href="' | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/event-handler-receiver.js:2:31:2:45 | '<h2><a href="' | enclosingFunctionBody | parentNode innerHTML <h2><a href=" location href ">A link</a></h2> |
-| autogenerated/Xss/DomBasedXss/event-handler-receiver.js:2:31:2:45 | '<h2><a href="' | enclosingFunctionName | onclick |
-| autogenerated/Xss/DomBasedXss/event-handler-receiver.js:2:31:2:45 | '<h2><a href="' | fileImports |  |
-| autogenerated/Xss/DomBasedXss/event-handler-receiver.js:2:31:2:45 | '<h2><a href="' | receiverName |  |
-| autogenerated/Xss/DomBasedXss/event-handler-receiver.js:2:31:2:45 | '<h2><a href="' | stringConcatenatedWith |  -endpoint- location.href + '">A link</a></h2>' |
-| autogenerated/Xss/DomBasedXss/event-handler-receiver.js:2:31:2:83 | '<h2><a ... ></h2>' | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/event-handler-receiver.js:2:31:2:83 | '<h2><a ... ></h2>' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/event-handler-receiver.js:2:31:2:83 | '<h2><a ... ></h2>' | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/event-handler-receiver.js:2:31:2:83 | '<h2><a ... ></h2>' | assignedToPropName | innerHTML |
-| autogenerated/Xss/DomBasedXss/event-handler-receiver.js:2:31:2:83 | '<h2><a ... ></h2>' | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/event-handler-receiver.js:2:31:2:83 | '<h2><a ... ></h2>' | contextFunctionInterfaces | onclick() |
-| autogenerated/Xss/DomBasedXss/event-handler-receiver.js:2:31:2:83 | '<h2><a ... ></h2>' | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/event-handler-receiver.js:2:31:2:83 | '<h2><a ... ></h2>' | enclosingFunctionBody | parentNode innerHTML <h2><a href=" location href ">A link</a></h2> |
-| autogenerated/Xss/DomBasedXss/event-handler-receiver.js:2:31:2:83 | '<h2><a ... ></h2>' | enclosingFunctionName | onclick |
-| autogenerated/Xss/DomBasedXss/event-handler-receiver.js:2:31:2:83 | '<h2><a ... ></h2>' | fileImports |  |
-| autogenerated/Xss/DomBasedXss/event-handler-receiver.js:2:31:2:83 | '<h2><a ... ></h2>' | receiverName |  |
-| autogenerated/Xss/DomBasedXss/event-handler-receiver.js:2:31:2:83 | '<h2><a ... ></h2>' | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/event-handler-receiver.js:2:49:2:61 | location.href | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/event-handler-receiver.js:2:49:2:61 | location.href | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/event-handler-receiver.js:2:49:2:61 | location.href | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/event-handler-receiver.js:2:49:2:61 | location.href | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/event-handler-receiver.js:2:49:2:61 | location.href | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/event-handler-receiver.js:2:49:2:61 | location.href | contextFunctionInterfaces | onclick() |
-| autogenerated/Xss/DomBasedXss/event-handler-receiver.js:2:49:2:61 | location.href | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/event-handler-receiver.js:2:49:2:61 | location.href | enclosingFunctionBody | parentNode innerHTML <h2><a href=" location href ">A link</a></h2> |
-| autogenerated/Xss/DomBasedXss/event-handler-receiver.js:2:49:2:61 | location.href | enclosingFunctionName | onclick |
-| autogenerated/Xss/DomBasedXss/event-handler-receiver.js:2:49:2:61 | location.href | fileImports |  |
-| autogenerated/Xss/DomBasedXss/event-handler-receiver.js:2:49:2:61 | location.href | receiverName |  |
-| autogenerated/Xss/DomBasedXss/event-handler-receiver.js:2:49:2:61 | location.href | stringConcatenatedWith | '<h2><a href="' -endpoint- '">A link</a></h2>' |
-| autogenerated/Xss/DomBasedXss/event-handler-receiver.js:2:65:2:83 | '">A link</a></h2>' | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/event-handler-receiver.js:2:65:2:83 | '">A link</a></h2>' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/event-handler-receiver.js:2:65:2:83 | '">A link</a></h2>' | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/event-handler-receiver.js:2:65:2:83 | '">A link</a></h2>' | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/event-handler-receiver.js:2:65:2:83 | '">A link</a></h2>' | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/event-handler-receiver.js:2:65:2:83 | '">A link</a></h2>' | contextFunctionInterfaces | onclick() |
-| autogenerated/Xss/DomBasedXss/event-handler-receiver.js:2:65:2:83 | '">A link</a></h2>' | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/event-handler-receiver.js:2:65:2:83 | '">A link</a></h2>' | enclosingFunctionBody | parentNode innerHTML <h2><a href=" location href ">A link</a></h2> |
-| autogenerated/Xss/DomBasedXss/event-handler-receiver.js:2:65:2:83 | '">A link</a></h2>' | enclosingFunctionName | onclick |
-| autogenerated/Xss/DomBasedXss/event-handler-receiver.js:2:65:2:83 | '">A link</a></h2>' | fileImports |  |
-| autogenerated/Xss/DomBasedXss/event-handler-receiver.js:2:65:2:83 | '">A link</a></h2>' | receiverName |  |
-| autogenerated/Xss/DomBasedXss/event-handler-receiver.js:2:65:2:83 | '">A link</a></h2>' | stringConcatenatedWith | '<h2><a href="' + location.href -endpoint-  |
-| autogenerated/Xss/DomBasedXss/express.js:1:23:1:31 | 'express' | CalleeFlexibleAccessPath | require |
-| autogenerated/Xss/DomBasedXss/express.js:1:23:1:31 | 'express' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/express.js:1:23:1:31 | 'express' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/express.js:1:23:1:31 | 'express' | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/express.js:1:23:1:31 | 'express' | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/express.js:1:23:1:31 | 'express' | contextFunctionInterfaces |  |
-| autogenerated/Xss/DomBasedXss/express.js:1:23:1:31 | 'express' | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/DomBasedXss/express.js:1:23:1:31 | 'express' | enclosingFunctionBody |  |
-| autogenerated/Xss/DomBasedXss/express.js:1:23:1:31 | 'express' | enclosingFunctionName |  |
-| autogenerated/Xss/DomBasedXss/express.js:1:23:1:31 | 'express' | fileImports | express jsdom |
-| autogenerated/Xss/DomBasedXss/express.js:1:23:1:31 | 'express' | receiverName |  |
-| autogenerated/Xss/DomBasedXss/express.js:1:23:1:31 | 'express' | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/express.js:5:9:5:20 | '/some/path' | CalleeFlexibleAccessPath | app.get |
-| autogenerated/Xss/DomBasedXss/express.js:5:9:5:20 | '/some/path' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/express.js:5:9:5:20 | '/some/path' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/express.js:5:9:5:20 | '/some/path' | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/express.js:5:9:5:20 | '/some/path' | calleeImports | express |
-| autogenerated/Xss/DomBasedXss/express.js:5:9:5:20 | '/some/path' | contextFunctionInterfaces |  |
-| autogenerated/Xss/DomBasedXss/express.js:5:9:5:20 | '/some/path' | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/DomBasedXss/express.js:5:9:5:20 | '/some/path' | enclosingFunctionBody |  |
-| autogenerated/Xss/DomBasedXss/express.js:5:9:5:20 | '/some/path' | enclosingFunctionName |  |
-| autogenerated/Xss/DomBasedXss/express.js:5:9:5:20 | '/some/path' | fileImports | express jsdom |
-| autogenerated/Xss/DomBasedXss/express.js:5:9:5:20 | '/some/path' | receiverName | app |
-| autogenerated/Xss/DomBasedXss/express.js:5:9:5:20 | '/some/path' | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/express.js:5:23:11:1 | functio ... " });\\n} | CalleeFlexibleAccessPath | app.get |
-| autogenerated/Xss/DomBasedXss/express.js:5:23:11:1 | functio ... " });\\n} | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/express.js:5:23:11:1 | functio ... " });\\n} | InputArgumentIndex | 1 |
-| autogenerated/Xss/DomBasedXss/express.js:5:23:11:1 | functio ... " });\\n} | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/express.js:5:23:11:1 | functio ... " });\\n} | calleeImports | express |
-| autogenerated/Xss/DomBasedXss/express.js:5:23:11:1 | functio ... " });\\n} | contextFunctionInterfaces |  |
-| autogenerated/Xss/DomBasedXss/express.js:5:23:11:1 | functio ... " });\\n} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/Xss/DomBasedXss/express.js:5:23:11:1 | functio ... " });\\n} | enclosingFunctionBody |  |
-| autogenerated/Xss/DomBasedXss/express.js:5:23:11:1 | functio ... " });\\n} | enclosingFunctionName |  |
-| autogenerated/Xss/DomBasedXss/express.js:5:23:11:1 | functio ... " });\\n} | fileImports | express jsdom |
-| autogenerated/Xss/DomBasedXss/express.js:5:23:11:1 | functio ... " });\\n} | receiverName | app |
-| autogenerated/Xss/DomBasedXss/express.js:5:23:11:1 | functio ... " });\\n} | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/express.js:7:15:7:33 | req.param("wobble") | CalleeFlexibleAccessPath | JSDOM |
-| autogenerated/Xss/DomBasedXss/express.js:7:15:7:33 | req.param("wobble") | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/express.js:7:15:7:33 | req.param("wobble") | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/express.js:7:15:7:33 | req.param("wobble") | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/express.js:7:15:7:33 | req.param("wobble") | calleeImports | jsdom |
-| autogenerated/Xss/DomBasedXss/express.js:7:15:7:33 | req.param("wobble") | contextFunctionInterfaces |  |
-| autogenerated/Xss/DomBasedXss/express.js:7:15:7:33 | req.param("wobble") | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/Xss/DomBasedXss/express.js:7:15:7:33 | req.param("wobble") | enclosingFunctionBody | req res JSDOM req param wobble runScripts dangerously JSDOM req param wobble runScripts outside-only |
-| autogenerated/Xss/DomBasedXss/express.js:7:15:7:33 | req.param("wobble") | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/Xss/DomBasedXss/express.js:7:15:7:33 | req.param("wobble") | fileImports | express jsdom |
-| autogenerated/Xss/DomBasedXss/express.js:7:15:7:33 | req.param("wobble") | receiverName |  |
-| autogenerated/Xss/DomBasedXss/express.js:7:15:7:33 | req.param("wobble") | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/express.js:7:25:7:32 | "wobble" | CalleeFlexibleAccessPath | req.param |
-| autogenerated/Xss/DomBasedXss/express.js:7:25:7:32 | "wobble" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/express.js:7:25:7:32 | "wobble" | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/express.js:7:25:7:32 | "wobble" | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/express.js:7:25:7:32 | "wobble" | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/express.js:7:25:7:32 | "wobble" | contextFunctionInterfaces |  |
-| autogenerated/Xss/DomBasedXss/express.js:7:25:7:32 | "wobble" | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/Xss/DomBasedXss/express.js:7:25:7:32 | "wobble" | enclosingFunctionBody | req res JSDOM req param wobble runScripts dangerously JSDOM req param wobble runScripts outside-only |
-| autogenerated/Xss/DomBasedXss/express.js:7:25:7:32 | "wobble" | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/Xss/DomBasedXss/express.js:7:25:7:32 | "wobble" | fileImports | express jsdom |
-| autogenerated/Xss/DomBasedXss/express.js:7:25:7:32 | "wobble" | receiverName | req |
-| autogenerated/Xss/DomBasedXss/express.js:7:25:7:32 | "wobble" | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/express.js:10:25:10:32 | "wobble" | CalleeFlexibleAccessPath | req.param |
-| autogenerated/Xss/DomBasedXss/express.js:10:25:10:32 | "wobble" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/express.js:10:25:10:32 | "wobble" | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/express.js:10:25:10:32 | "wobble" | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/express.js:10:25:10:32 | "wobble" | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/express.js:10:25:10:32 | "wobble" | contextFunctionInterfaces |  |
-| autogenerated/Xss/DomBasedXss/express.js:10:25:10:32 | "wobble" | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/Xss/DomBasedXss/express.js:10:25:10:32 | "wobble" | enclosingFunctionBody | req res JSDOM req param wobble runScripts dangerously JSDOM req param wobble runScripts outside-only |
-| autogenerated/Xss/DomBasedXss/express.js:10:25:10:32 | "wobble" | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/Xss/DomBasedXss/express.js:10:25:10:32 | "wobble" | fileImports | express jsdom |
-| autogenerated/Xss/DomBasedXss/express.js:10:25:10:32 | "wobble" | receiverName | req |
-| autogenerated/Xss/DomBasedXss/express.js:10:25:10:32 | "wobble" | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/jquery.js:4:5:4:11 | tainted | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/DomBasedXss/jquery.js:4:5:4:11 | tainted | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/jquery.js:4:5:4:11 | tainted | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/jquery.js:4:5:4:11 | tainted | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/jquery.js:4:5:4:11 | tainted | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/jquery.js:4:5:4:11 | tainted | contextFunctionInterfaces | test() |
-| autogenerated/Xss/DomBasedXss/jquery.js:4:5:4:11 | tainted | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/jquery.js:4:5:4:11 | tainted | enclosingFunctionBody | tainted document location search $ tainted $ body tainted $ . tainted $ <div id=" tainted "> $ body html XSS:  tainted $ window location hash $ <b> location toString </b> elm document getElementById x elm innerHTML decodeURIComponent window location hash elm innerHTML decodeURIComponent window location search elm innerHTML decodeURIComponent window location toString |
-| autogenerated/Xss/DomBasedXss/jquery.js:4:5:4:11 | tainted | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/jquery.js:4:5:4:11 | tainted | fileImports |  |
-| autogenerated/Xss/DomBasedXss/jquery.js:4:5:4:11 | tainted | receiverName |  |
-| autogenerated/Xss/DomBasedXss/jquery.js:4:5:4:11 | tainted | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/jquery.js:5:5:5:10 | "body" | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/DomBasedXss/jquery.js:5:5:5:10 | "body" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/jquery.js:5:5:5:10 | "body" | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/jquery.js:5:5:5:10 | "body" | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/jquery.js:5:5:5:10 | "body" | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/jquery.js:5:5:5:10 | "body" | contextFunctionInterfaces | test() |
-| autogenerated/Xss/DomBasedXss/jquery.js:5:5:5:10 | "body" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/jquery.js:5:5:5:10 | "body" | enclosingFunctionBody | tainted document location search $ tainted $ body tainted $ . tainted $ <div id=" tainted "> $ body html XSS:  tainted $ window location hash $ <b> location toString </b> elm document getElementById x elm innerHTML decodeURIComponent window location hash elm innerHTML decodeURIComponent window location search elm innerHTML decodeURIComponent window location toString |
-| autogenerated/Xss/DomBasedXss/jquery.js:5:5:5:10 | "body" | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/jquery.js:5:5:5:10 | "body" | fileImports |  |
-| autogenerated/Xss/DomBasedXss/jquery.js:5:5:5:10 | "body" | receiverName |  |
-| autogenerated/Xss/DomBasedXss/jquery.js:5:5:5:10 | "body" | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/jquery.js:5:13:5:19 | tainted | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/DomBasedXss/jquery.js:5:13:5:19 | tainted | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/jquery.js:5:13:5:19 | tainted | InputArgumentIndex | 1 |
-| autogenerated/Xss/DomBasedXss/jquery.js:5:13:5:19 | tainted | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/jquery.js:5:13:5:19 | tainted | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/jquery.js:5:13:5:19 | tainted | contextFunctionInterfaces | test() |
-| autogenerated/Xss/DomBasedXss/jquery.js:5:13:5:19 | tainted | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/jquery.js:5:13:5:19 | tainted | enclosingFunctionBody | tainted document location search $ tainted $ body tainted $ . tainted $ <div id=" tainted "> $ body html XSS:  tainted $ window location hash $ <b> location toString </b> elm document getElementById x elm innerHTML decodeURIComponent window location hash elm innerHTML decodeURIComponent window location search elm innerHTML decodeURIComponent window location toString |
-| autogenerated/Xss/DomBasedXss/jquery.js:5:13:5:19 | tainted | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/jquery.js:5:13:5:19 | tainted | fileImports |  |
-| autogenerated/Xss/DomBasedXss/jquery.js:5:13:5:19 | tainted | receiverName |  |
-| autogenerated/Xss/DomBasedXss/jquery.js:5:13:5:19 | tainted | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/jquery.js:6:5:6:17 | "." + tainted | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/DomBasedXss/jquery.js:6:5:6:17 | "." + tainted | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/jquery.js:6:5:6:17 | "." + tainted | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/jquery.js:6:5:6:17 | "." + tainted | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/jquery.js:6:5:6:17 | "." + tainted | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/jquery.js:6:5:6:17 | "." + tainted | contextFunctionInterfaces | test() |
-| autogenerated/Xss/DomBasedXss/jquery.js:6:5:6:17 | "." + tainted | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/jquery.js:6:5:6:17 | "." + tainted | enclosingFunctionBody | tainted document location search $ tainted $ body tainted $ . tainted $ <div id=" tainted "> $ body html XSS:  tainted $ window location hash $ <b> location toString </b> elm document getElementById x elm innerHTML decodeURIComponent window location hash elm innerHTML decodeURIComponent window location search elm innerHTML decodeURIComponent window location toString |
-| autogenerated/Xss/DomBasedXss/jquery.js:6:5:6:17 | "." + tainted | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/jquery.js:6:5:6:17 | "." + tainted | fileImports |  |
-| autogenerated/Xss/DomBasedXss/jquery.js:6:5:6:17 | "." + tainted | receiverName |  |
-| autogenerated/Xss/DomBasedXss/jquery.js:6:5:6:17 | "." + tainted | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/jquery.js:7:5:7:16 | "<div id=\\"" | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/jquery.js:7:5:7:16 | "<div id=\\"" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/jquery.js:7:5:7:16 | "<div id=\\"" | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/jquery.js:7:5:7:16 | "<div id=\\"" | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/jquery.js:7:5:7:16 | "<div id=\\"" | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/jquery.js:7:5:7:16 | "<div id=\\"" | contextFunctionInterfaces | test() |
-| autogenerated/Xss/DomBasedXss/jquery.js:7:5:7:16 | "<div id=\\"" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/jquery.js:7:5:7:16 | "<div id=\\"" | enclosingFunctionBody | tainted document location search $ tainted $ body tainted $ . tainted $ <div id=" tainted "> $ body html XSS:  tainted $ window location hash $ <b> location toString </b> elm document getElementById x elm innerHTML decodeURIComponent window location hash elm innerHTML decodeURIComponent window location search elm innerHTML decodeURIComponent window location toString |
-| autogenerated/Xss/DomBasedXss/jquery.js:7:5:7:16 | "<div id=\\"" | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/jquery.js:7:5:7:16 | "<div id=\\"" | fileImports |  |
-| autogenerated/Xss/DomBasedXss/jquery.js:7:5:7:16 | "<div id=\\"" | receiverName |  |
-| autogenerated/Xss/DomBasedXss/jquery.js:7:5:7:16 | "<div id=\\"" | stringConcatenatedWith |  -endpoint- tainted + '">' |
-| autogenerated/Xss/DomBasedXss/jquery.js:7:5:7:34 | "<div i ... + "\\">" | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/DomBasedXss/jquery.js:7:5:7:34 | "<div i ... + "\\">" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/jquery.js:7:5:7:34 | "<div i ... + "\\">" | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/jquery.js:7:5:7:34 | "<div i ... + "\\">" | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/jquery.js:7:5:7:34 | "<div i ... + "\\">" | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/jquery.js:7:5:7:34 | "<div i ... + "\\">" | contextFunctionInterfaces | test() |
-| autogenerated/Xss/DomBasedXss/jquery.js:7:5:7:34 | "<div i ... + "\\">" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/jquery.js:7:5:7:34 | "<div i ... + "\\">" | enclosingFunctionBody | tainted document location search $ tainted $ body tainted $ . tainted $ <div id=" tainted "> $ body html XSS:  tainted $ window location hash $ <b> location toString </b> elm document getElementById x elm innerHTML decodeURIComponent window location hash elm innerHTML decodeURIComponent window location search elm innerHTML decodeURIComponent window location toString |
-| autogenerated/Xss/DomBasedXss/jquery.js:7:5:7:34 | "<div i ... + "\\">" | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/jquery.js:7:5:7:34 | "<div i ... + "\\">" | fileImports |  |
-| autogenerated/Xss/DomBasedXss/jquery.js:7:5:7:34 | "<div i ... + "\\">" | receiverName |  |
-| autogenerated/Xss/DomBasedXss/jquery.js:7:5:7:34 | "<div i ... + "\\">" | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/jquery.js:7:20:7:26 | tainted | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/jquery.js:7:20:7:26 | tainted | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/jquery.js:7:20:7:26 | tainted | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/jquery.js:7:20:7:26 | tainted | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/jquery.js:7:20:7:26 | tainted | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/jquery.js:7:20:7:26 | tainted | contextFunctionInterfaces | test() |
-| autogenerated/Xss/DomBasedXss/jquery.js:7:20:7:26 | tainted | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/jquery.js:7:20:7:26 | tainted | enclosingFunctionBody | tainted document location search $ tainted $ body tainted $ . tainted $ <div id=" tainted "> $ body html XSS:  tainted $ window location hash $ <b> location toString </b> elm document getElementById x elm innerHTML decodeURIComponent window location hash elm innerHTML decodeURIComponent window location search elm innerHTML decodeURIComponent window location toString |
-| autogenerated/Xss/DomBasedXss/jquery.js:7:20:7:26 | tainted | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/jquery.js:7:20:7:26 | tainted | fileImports |  |
-| autogenerated/Xss/DomBasedXss/jquery.js:7:20:7:26 | tainted | receiverName |  |
-| autogenerated/Xss/DomBasedXss/jquery.js:7:20:7:26 | tainted | stringConcatenatedWith | '<div id="' -endpoint- '">' |
-| autogenerated/Xss/DomBasedXss/jquery.js:7:30:7:34 | "\\">" | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/jquery.js:7:30:7:34 | "\\">" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/jquery.js:7:30:7:34 | "\\">" | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/jquery.js:7:30:7:34 | "\\">" | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/jquery.js:7:30:7:34 | "\\">" | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/jquery.js:7:30:7:34 | "\\">" | contextFunctionInterfaces | test() |
-| autogenerated/Xss/DomBasedXss/jquery.js:7:30:7:34 | "\\">" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/jquery.js:7:30:7:34 | "\\">" | enclosingFunctionBody | tainted document location search $ tainted $ body tainted $ . tainted $ <div id=" tainted "> $ body html XSS:  tainted $ window location hash $ <b> location toString </b> elm document getElementById x elm innerHTML decodeURIComponent window location hash elm innerHTML decodeURIComponent window location search elm innerHTML decodeURIComponent window location toString |
-| autogenerated/Xss/DomBasedXss/jquery.js:7:30:7:34 | "\\">" | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/jquery.js:7:30:7:34 | "\\">" | fileImports |  |
-| autogenerated/Xss/DomBasedXss/jquery.js:7:30:7:34 | "\\">" | receiverName |  |
-| autogenerated/Xss/DomBasedXss/jquery.js:7:30:7:34 | "\\">" | stringConcatenatedWith | '<div id="' + tainted -endpoint-  |
-| autogenerated/Xss/DomBasedXss/jquery.js:8:5:8:10 | "body" | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/DomBasedXss/jquery.js:8:5:8:10 | "body" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/jquery.js:8:5:8:10 | "body" | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/jquery.js:8:5:8:10 | "body" | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/jquery.js:8:5:8:10 | "body" | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/jquery.js:8:5:8:10 | "body" | contextFunctionInterfaces | test() |
-| autogenerated/Xss/DomBasedXss/jquery.js:8:5:8:10 | "body" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/jquery.js:8:5:8:10 | "body" | enclosingFunctionBody | tainted document location search $ tainted $ body tainted $ . tainted $ <div id=" tainted "> $ body html XSS:  tainted $ window location hash $ <b> location toString </b> elm document getElementById x elm innerHTML decodeURIComponent window location hash elm innerHTML decodeURIComponent window location search elm innerHTML decodeURIComponent window location toString |
-| autogenerated/Xss/DomBasedXss/jquery.js:8:5:8:10 | "body" | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/jquery.js:8:5:8:10 | "body" | fileImports |  |
-| autogenerated/Xss/DomBasedXss/jquery.js:8:5:8:10 | "body" | receiverName |  |
-| autogenerated/Xss/DomBasedXss/jquery.js:8:5:8:10 | "body" | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/jquery.js:8:18:8:34 | "XSS: " + tainted | CalleeFlexibleAccessPath | $().html |
-| autogenerated/Xss/DomBasedXss/jquery.js:8:18:8:34 | "XSS: " + tainted | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/jquery.js:8:18:8:34 | "XSS: " + tainted | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/jquery.js:8:18:8:34 | "XSS: " + tainted | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/jquery.js:8:18:8:34 | "XSS: " + tainted | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/jquery.js:8:18:8:34 | "XSS: " + tainted | contextFunctionInterfaces | test() |
-| autogenerated/Xss/DomBasedXss/jquery.js:8:18:8:34 | "XSS: " + tainted | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/jquery.js:8:18:8:34 | "XSS: " + tainted | enclosingFunctionBody | tainted document location search $ tainted $ body tainted $ . tainted $ <div id=" tainted "> $ body html XSS:  tainted $ window location hash $ <b> location toString </b> elm document getElementById x elm innerHTML decodeURIComponent window location hash elm innerHTML decodeURIComponent window location search elm innerHTML decodeURIComponent window location toString |
-| autogenerated/Xss/DomBasedXss/jquery.js:8:18:8:34 | "XSS: " + tainted | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/jquery.js:8:18:8:34 | "XSS: " + tainted | fileImports |  |
-| autogenerated/Xss/DomBasedXss/jquery.js:8:18:8:34 | "XSS: " + tainted | receiverName |  |
-| autogenerated/Xss/DomBasedXss/jquery.js:8:18:8:34 | "XSS: " + tainted | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/jquery.js:9:5:9:24 | window.location.hash | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/DomBasedXss/jquery.js:9:5:9:24 | window.location.hash | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/jquery.js:9:5:9:24 | window.location.hash | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/jquery.js:9:5:9:24 | window.location.hash | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/jquery.js:9:5:9:24 | window.location.hash | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/jquery.js:9:5:9:24 | window.location.hash | contextFunctionInterfaces | test() |
-| autogenerated/Xss/DomBasedXss/jquery.js:9:5:9:24 | window.location.hash | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/jquery.js:9:5:9:24 | window.location.hash | enclosingFunctionBody | tainted document location search $ tainted $ body tainted $ . tainted $ <div id=" tainted "> $ body html XSS:  tainted $ window location hash $ <b> location toString </b> elm document getElementById x elm innerHTML decodeURIComponent window location hash elm innerHTML decodeURIComponent window location search elm innerHTML decodeURIComponent window location toString |
-| autogenerated/Xss/DomBasedXss/jquery.js:9:5:9:24 | window.location.hash | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/jquery.js:9:5:9:24 | window.location.hash | fileImports |  |
-| autogenerated/Xss/DomBasedXss/jquery.js:9:5:9:24 | window.location.hash | receiverName |  |
-| autogenerated/Xss/DomBasedXss/jquery.js:9:5:9:24 | window.location.hash | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/jquery.js:10:5:10:9 | "<b>" | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/jquery.js:10:5:10:9 | "<b>" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/jquery.js:10:5:10:9 | "<b>" | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/jquery.js:10:5:10:9 | "<b>" | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/jquery.js:10:5:10:9 | "<b>" | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/jquery.js:10:5:10:9 | "<b>" | contextFunctionInterfaces | test() |
-| autogenerated/Xss/DomBasedXss/jquery.js:10:5:10:9 | "<b>" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/jquery.js:10:5:10:9 | "<b>" | enclosingFunctionBody | tainted document location search $ tainted $ body tainted $ . tainted $ <div id=" tainted "> $ body html XSS:  tainted $ window location hash $ <b> location toString </b> elm document getElementById x elm innerHTML decodeURIComponent window location hash elm innerHTML decodeURIComponent window location search elm innerHTML decodeURIComponent window location toString |
-| autogenerated/Xss/DomBasedXss/jquery.js:10:5:10:9 | "<b>" | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/jquery.js:10:5:10:9 | "<b>" | fileImports |  |
-| autogenerated/Xss/DomBasedXss/jquery.js:10:5:10:9 | "<b>" | receiverName |  |
-| autogenerated/Xss/DomBasedXss/jquery.js:10:5:10:9 | "<b>" | stringConcatenatedWith |  -endpoint- location.toString() + '</b>' |
-| autogenerated/Xss/DomBasedXss/jquery.js:10:5:10:40 | "<b>" + ...  "</b>" | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/DomBasedXss/jquery.js:10:5:10:40 | "<b>" + ...  "</b>" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/jquery.js:10:5:10:40 | "<b>" + ...  "</b>" | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/jquery.js:10:5:10:40 | "<b>" + ...  "</b>" | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/jquery.js:10:5:10:40 | "<b>" + ...  "</b>" | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/jquery.js:10:5:10:40 | "<b>" + ...  "</b>" | contextFunctionInterfaces | test() |
-| autogenerated/Xss/DomBasedXss/jquery.js:10:5:10:40 | "<b>" + ...  "</b>" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/jquery.js:10:5:10:40 | "<b>" + ...  "</b>" | enclosingFunctionBody | tainted document location search $ tainted $ body tainted $ . tainted $ <div id=" tainted "> $ body html XSS:  tainted $ window location hash $ <b> location toString </b> elm document getElementById x elm innerHTML decodeURIComponent window location hash elm innerHTML decodeURIComponent window location search elm innerHTML decodeURIComponent window location toString |
-| autogenerated/Xss/DomBasedXss/jquery.js:10:5:10:40 | "<b>" + ...  "</b>" | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/jquery.js:10:5:10:40 | "<b>" + ...  "</b>" | fileImports |  |
-| autogenerated/Xss/DomBasedXss/jquery.js:10:5:10:40 | "<b>" + ...  "</b>" | receiverName |  |
-| autogenerated/Xss/DomBasedXss/jquery.js:10:5:10:40 | "<b>" + ...  "</b>" | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/jquery.js:10:13:10:31 | location.toString() | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/jquery.js:10:13:10:31 | location.toString() | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/jquery.js:10:13:10:31 | location.toString() | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/jquery.js:10:13:10:31 | location.toString() | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/jquery.js:10:13:10:31 | location.toString() | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/jquery.js:10:13:10:31 | location.toString() | contextFunctionInterfaces | test() |
-| autogenerated/Xss/DomBasedXss/jquery.js:10:13:10:31 | location.toString() | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/jquery.js:10:13:10:31 | location.toString() | enclosingFunctionBody | tainted document location search $ tainted $ body tainted $ . tainted $ <div id=" tainted "> $ body html XSS:  tainted $ window location hash $ <b> location toString </b> elm document getElementById x elm innerHTML decodeURIComponent window location hash elm innerHTML decodeURIComponent window location search elm innerHTML decodeURIComponent window location toString |
-| autogenerated/Xss/DomBasedXss/jquery.js:10:13:10:31 | location.toString() | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/jquery.js:10:13:10:31 | location.toString() | fileImports |  |
-| autogenerated/Xss/DomBasedXss/jquery.js:10:13:10:31 | location.toString() | receiverName |  |
-| autogenerated/Xss/DomBasedXss/jquery.js:10:13:10:31 | location.toString() | stringConcatenatedWith | '<b>' -endpoint- '</b>' |
-| autogenerated/Xss/DomBasedXss/jquery.js:10:35:10:40 | "</b>" | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/jquery.js:10:35:10:40 | "</b>" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/jquery.js:10:35:10:40 | "</b>" | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/jquery.js:10:35:10:40 | "</b>" | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/jquery.js:10:35:10:40 | "</b>" | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/jquery.js:10:35:10:40 | "</b>" | contextFunctionInterfaces | test() |
-| autogenerated/Xss/DomBasedXss/jquery.js:10:35:10:40 | "</b>" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/jquery.js:10:35:10:40 | "</b>" | enclosingFunctionBody | tainted document location search $ tainted $ body tainted $ . tainted $ <div id=" tainted "> $ body html XSS:  tainted $ window location hash $ <b> location toString </b> elm document getElementById x elm innerHTML decodeURIComponent window location hash elm innerHTML decodeURIComponent window location search elm innerHTML decodeURIComponent window location toString |
-| autogenerated/Xss/DomBasedXss/jquery.js:10:35:10:40 | "</b>" | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/jquery.js:10:35:10:40 | "</b>" | fileImports |  |
-| autogenerated/Xss/DomBasedXss/jquery.js:10:35:10:40 | "</b>" | receiverName |  |
-| autogenerated/Xss/DomBasedXss/jquery.js:10:35:10:40 | "</b>" | stringConcatenatedWith | '<b>' + location.toString() -endpoint-  |
-| autogenerated/Xss/DomBasedXss/jquery.js:13:37:13:39 | 'x' | CalleeFlexibleAccessPath | document.getElementById |
-| autogenerated/Xss/DomBasedXss/jquery.js:13:37:13:39 | 'x' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/jquery.js:13:37:13:39 | 'x' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/jquery.js:13:37:13:39 | 'x' | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/jquery.js:13:37:13:39 | 'x' | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/jquery.js:13:37:13:39 | 'x' | contextFunctionInterfaces | test() |
-| autogenerated/Xss/DomBasedXss/jquery.js:13:37:13:39 | 'x' | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/jquery.js:13:37:13:39 | 'x' | enclosingFunctionBody | tainted document location search $ tainted $ body tainted $ . tainted $ <div id=" tainted "> $ body html XSS:  tainted $ window location hash $ <b> location toString </b> elm document getElementById x elm innerHTML decodeURIComponent window location hash elm innerHTML decodeURIComponent window location search elm innerHTML decodeURIComponent window location toString |
-| autogenerated/Xss/DomBasedXss/jquery.js:13:37:13:39 | 'x' | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/jquery.js:13:37:13:39 | 'x' | fileImports |  |
-| autogenerated/Xss/DomBasedXss/jquery.js:13:37:13:39 | 'x' | receiverName | document |
-| autogenerated/Xss/DomBasedXss/jquery.js:13:37:13:39 | 'x' | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/jquery.js:14:19:14:58 | decodeU ... n.hash) | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/jquery.js:14:19:14:58 | decodeU ... n.hash) | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/jquery.js:14:19:14:58 | decodeU ... n.hash) | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/jquery.js:14:19:14:58 | decodeU ... n.hash) | assignedToPropName | innerHTML |
-| autogenerated/Xss/DomBasedXss/jquery.js:14:19:14:58 | decodeU ... n.hash) | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/jquery.js:14:19:14:58 | decodeU ... n.hash) | contextFunctionInterfaces | test() |
-| autogenerated/Xss/DomBasedXss/jquery.js:14:19:14:58 | decodeU ... n.hash) | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/jquery.js:14:19:14:58 | decodeU ... n.hash) | enclosingFunctionBody | tainted document location search $ tainted $ body tainted $ . tainted $ <div id=" tainted "> $ body html XSS:  tainted $ window location hash $ <b> location toString </b> elm document getElementById x elm innerHTML decodeURIComponent window location hash elm innerHTML decodeURIComponent window location search elm innerHTML decodeURIComponent window location toString |
-| autogenerated/Xss/DomBasedXss/jquery.js:14:19:14:58 | decodeU ... n.hash) | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/jquery.js:14:19:14:58 | decodeU ... n.hash) | fileImports |  |
-| autogenerated/Xss/DomBasedXss/jquery.js:14:19:14:58 | decodeU ... n.hash) | receiverName |  |
-| autogenerated/Xss/DomBasedXss/jquery.js:14:19:14:58 | decodeU ... n.hash) | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/jquery.js:15:19:15:60 | decodeU ... search) | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/jquery.js:15:19:15:60 | decodeU ... search) | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/jquery.js:15:19:15:60 | decodeU ... search) | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/jquery.js:15:19:15:60 | decodeU ... search) | assignedToPropName | innerHTML |
-| autogenerated/Xss/DomBasedXss/jquery.js:15:19:15:60 | decodeU ... search) | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/jquery.js:15:19:15:60 | decodeU ... search) | contextFunctionInterfaces | test() |
-| autogenerated/Xss/DomBasedXss/jquery.js:15:19:15:60 | decodeU ... search) | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/jquery.js:15:19:15:60 | decodeU ... search) | enclosingFunctionBody | tainted document location search $ tainted $ body tainted $ . tainted $ <div id=" tainted "> $ body html XSS:  tainted $ window location hash $ <b> location toString </b> elm document getElementById x elm innerHTML decodeURIComponent window location hash elm innerHTML decodeURIComponent window location search elm innerHTML decodeURIComponent window location toString |
-| autogenerated/Xss/DomBasedXss/jquery.js:15:19:15:60 | decodeU ... search) | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/jquery.js:15:19:15:60 | decodeU ... search) | fileImports |  |
-| autogenerated/Xss/DomBasedXss/jquery.js:15:19:15:60 | decodeU ... search) | receiverName |  |
-| autogenerated/Xss/DomBasedXss/jquery.js:15:19:15:60 | decodeU ... search) | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/jquery.js:16:19:16:64 | decodeU ... ring()) | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/jquery.js:16:19:16:64 | decodeU ... ring()) | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/jquery.js:16:19:16:64 | decodeU ... ring()) | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/jquery.js:16:19:16:64 | decodeU ... ring()) | assignedToPropName | innerHTML |
-| autogenerated/Xss/DomBasedXss/jquery.js:16:19:16:64 | decodeU ... ring()) | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/jquery.js:16:19:16:64 | decodeU ... ring()) | contextFunctionInterfaces | test() |
-| autogenerated/Xss/DomBasedXss/jquery.js:16:19:16:64 | decodeU ... ring()) | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/jquery.js:16:19:16:64 | decodeU ... ring()) | enclosingFunctionBody | tainted document location search $ tainted $ body tainted $ . tainted $ <div id=" tainted "> $ body html XSS:  tainted $ window location hash $ <b> location toString </b> elm document getElementById x elm innerHTML decodeURIComponent window location hash elm innerHTML decodeURIComponent window location search elm innerHTML decodeURIComponent window location toString |
-| autogenerated/Xss/DomBasedXss/jquery.js:16:19:16:64 | decodeU ... ring()) | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/jquery.js:16:19:16:64 | decodeU ... ring()) | fileImports |  |
-| autogenerated/Xss/DomBasedXss/jquery.js:16:19:16:64 | decodeU ... ring()) | receiverName |  |
-| autogenerated/Xss/DomBasedXss/jquery.js:16:19:16:64 | decodeU ... ring()) | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/jwt-server.js:1:23:1:31 | 'express' | CalleeFlexibleAccessPath | require |
-| autogenerated/Xss/DomBasedXss/jwt-server.js:1:23:1:31 | 'express' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/jwt-server.js:1:23:1:31 | 'express' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/jwt-server.js:1:23:1:31 | 'express' | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/jwt-server.js:1:23:1:31 | 'express' | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/jwt-server.js:1:23:1:31 | 'express' | contextFunctionInterfaces |  |
-| autogenerated/Xss/DomBasedXss/jwt-server.js:1:23:1:31 | 'express' | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/DomBasedXss/jwt-server.js:1:23:1:31 | 'express' | enclosingFunctionBody |  |
-| autogenerated/Xss/DomBasedXss/jwt-server.js:1:23:1:31 | 'express' | enclosingFunctionName |  |
-| autogenerated/Xss/DomBasedXss/jwt-server.js:1:23:1:31 | 'express' | fileImports | express jsdom jsonwebtoken |
-| autogenerated/Xss/DomBasedXss/jwt-server.js:1:23:1:31 | 'express' | receiverName |  |
-| autogenerated/Xss/DomBasedXss/jwt-server.js:1:23:1:31 | 'express' | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/jwt-server.js:6:9:6:20 | '/some/path' | CalleeFlexibleAccessPath | app.get |
-| autogenerated/Xss/DomBasedXss/jwt-server.js:6:9:6:20 | '/some/path' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/jwt-server.js:6:9:6:20 | '/some/path' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/jwt-server.js:6:9:6:20 | '/some/path' | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/jwt-server.js:6:9:6:20 | '/some/path' | calleeImports | express |
-| autogenerated/Xss/DomBasedXss/jwt-server.js:6:9:6:20 | '/some/path' | contextFunctionInterfaces |  |
-| autogenerated/Xss/DomBasedXss/jwt-server.js:6:9:6:20 | '/some/path' | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/DomBasedXss/jwt-server.js:6:9:6:20 | '/some/path' | enclosingFunctionBody |  |
-| autogenerated/Xss/DomBasedXss/jwt-server.js:6:9:6:20 | '/some/path' | enclosingFunctionName |  |
-| autogenerated/Xss/DomBasedXss/jwt-server.js:6:9:6:20 | '/some/path' | fileImports | express jsdom jsonwebtoken |
-| autogenerated/Xss/DomBasedXss/jwt-server.js:6:9:6:20 | '/some/path' | receiverName | app |
-| autogenerated/Xss/DomBasedXss/jwt-server.js:6:9:6:20 | '/some/path' | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/jwt-server.js:6:23:13:1 | functio ...   });\\n} | CalleeFlexibleAccessPath | app.get |
-| autogenerated/Xss/DomBasedXss/jwt-server.js:6:23:13:1 | functio ...   });\\n} | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/jwt-server.js:6:23:13:1 | functio ...   });\\n} | InputArgumentIndex | 1 |
-| autogenerated/Xss/DomBasedXss/jwt-server.js:6:23:13:1 | functio ...   });\\n} | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/jwt-server.js:6:23:13:1 | functio ...   });\\n} | calleeImports | express |
-| autogenerated/Xss/DomBasedXss/jwt-server.js:6:23:13:1 | functio ...   });\\n} | contextFunctionInterfaces |  |
-| autogenerated/Xss/DomBasedXss/jwt-server.js:6:23:13:1 | functio ...   });\\n} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/Xss/DomBasedXss/jwt-server.js:6:23:13:1 | functio ...   });\\n} | enclosingFunctionBody |  |
-| autogenerated/Xss/DomBasedXss/jwt-server.js:6:23:13:1 | functio ...   });\\n} | enclosingFunctionName |  |
-| autogenerated/Xss/DomBasedXss/jwt-server.js:6:23:13:1 | functio ...   });\\n} | fileImports | express jsdom jsonwebtoken |
-| autogenerated/Xss/DomBasedXss/jwt-server.js:6:23:13:1 | functio ...   });\\n} | receiverName | app |
-| autogenerated/Xss/DomBasedXss/jwt-server.js:6:23:13:1 | functio ...   });\\n} | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/jwt-server.js:7:27:7:34 | "wobble" | CalleeFlexibleAccessPath | req.param |
-| autogenerated/Xss/DomBasedXss/jwt-server.js:7:27:7:34 | "wobble" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/jwt-server.js:7:27:7:34 | "wobble" | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/jwt-server.js:7:27:7:34 | "wobble" | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/jwt-server.js:7:27:7:34 | "wobble" | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/jwt-server.js:7:27:7:34 | "wobble" | contextFunctionInterfaces |  |
-| autogenerated/Xss/DomBasedXss/jwt-server.js:7:27:7:34 | "wobble" | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/Xss/DomBasedXss/jwt-server.js:7:27:7:34 | "wobble" | enclosingFunctionBody | req res taint req param wobble jwt verify taint my-secret-key err decoded JSDOM decoded foo runScripts dangerously |
-| autogenerated/Xss/DomBasedXss/jwt-server.js:7:27:7:34 | "wobble" | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/Xss/DomBasedXss/jwt-server.js:7:27:7:34 | "wobble" | fileImports | express jsdom jsonwebtoken |
-| autogenerated/Xss/DomBasedXss/jwt-server.js:7:27:7:34 | "wobble" | receiverName | req |
-| autogenerated/Xss/DomBasedXss/jwt-server.js:7:27:7:34 | "wobble" | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/jwt-server.js:11:19:11:29 | decoded.foo | CalleeFlexibleAccessPath | JSDOM |
-| autogenerated/Xss/DomBasedXss/jwt-server.js:11:19:11:29 | decoded.foo | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/jwt-server.js:11:19:11:29 | decoded.foo | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/jwt-server.js:11:19:11:29 | decoded.foo | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/jwt-server.js:11:19:11:29 | decoded.foo | calleeImports | jsdom |
-| autogenerated/Xss/DomBasedXss/jwt-server.js:11:19:11:29 | decoded.foo | contextFunctionInterfaces |  |
-| autogenerated/Xss/DomBasedXss/jwt-server.js:11:19:11:29 | decoded.foo | contextSurroundingFunctionParameters | (req, res)\n(err, decoded) |
-| autogenerated/Xss/DomBasedXss/jwt-server.js:11:19:11:29 | decoded.foo | enclosingFunctionBody | req res taint req param wobble jwt verify taint my-secret-key err decoded JSDOM decoded foo runScripts dangerously |
-| autogenerated/Xss/DomBasedXss/jwt-server.js:11:19:11:29 | decoded.foo | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/Xss/DomBasedXss/jwt-server.js:11:19:11:29 | decoded.foo | fileImports | express jsdom jsonwebtoken |
-| autogenerated/Xss/DomBasedXss/jwt-server.js:11:19:11:29 | decoded.foo | receiverName |  |
-| autogenerated/Xss/DomBasedXss/jwt-server.js:11:19:11:29 | decoded.foo | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/jwt.js:4:8:4:17 | loginUrl() | CalleeFlexibleAccessPath | $.post |
-| autogenerated/Xss/DomBasedXss/jwt.js:4:8:4:17 | loginUrl() | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/jwt.js:4:8:4:17 | loginUrl() | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/jwt.js:4:8:4:17 | loginUrl() | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/jwt.js:4:8:4:17 | loginUrl() | calleeImports | jquery |
-| autogenerated/Xss/DomBasedXss/jwt.js:4:8:4:17 | loginUrl() | contextFunctionInterfaces |  |
-| autogenerated/Xss/DomBasedXss/jwt.js:4:8:4:17 | loginUrl() | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/DomBasedXss/jwt.js:4:8:4:17 | loginUrl() | enclosingFunctionBody |  |
-| autogenerated/Xss/DomBasedXss/jwt.js:4:8:4:17 | loginUrl() | enclosingFunctionName |  |
-| autogenerated/Xss/DomBasedXss/jwt.js:4:8:4:17 | loginUrl() | fileImports | jquery jwt-decode |
-| autogenerated/Xss/DomBasedXss/jwt.js:4:8:4:17 | loginUrl() | receiverName | $ |
-| autogenerated/Xss/DomBasedXss/jwt.js:4:8:4:17 | loginUrl() | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/jwt.js:4:20:4:32 | {data: "foo"} | CalleeFlexibleAccessPath | $.post |
-| autogenerated/Xss/DomBasedXss/jwt.js:4:20:4:32 | {data: "foo"} | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/jwt.js:4:20:4:32 | {data: "foo"} | InputArgumentIndex | 1 |
-| autogenerated/Xss/DomBasedXss/jwt.js:4:20:4:32 | {data: "foo"} | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/jwt.js:4:20:4:32 | {data: "foo"} | calleeImports | jquery |
-| autogenerated/Xss/DomBasedXss/jwt.js:4:20:4:32 | {data: "foo"} | contextFunctionInterfaces |  |
-| autogenerated/Xss/DomBasedXss/jwt.js:4:20:4:32 | {data: "foo"} | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/DomBasedXss/jwt.js:4:20:4:32 | {data: "foo"} | enclosingFunctionBody |  |
-| autogenerated/Xss/DomBasedXss/jwt.js:4:20:4:32 | {data: "foo"} | enclosingFunctionName |  |
-| autogenerated/Xss/DomBasedXss/jwt.js:4:20:4:32 | {data: "foo"} | fileImports | jquery jwt-decode |
-| autogenerated/Xss/DomBasedXss/jwt.js:4:20:4:32 | {data: "foo"} | receiverName | $ |
-| autogenerated/Xss/DomBasedXss/jwt.js:4:20:4:32 | {data: "foo"} | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/jwt.js:4:27:4:31 | "foo" | CalleeFlexibleAccessPath | $.post |
-| autogenerated/Xss/DomBasedXss/jwt.js:4:27:4:31 | "foo" | InputAccessPathFromCallee | 1.data |
-| autogenerated/Xss/DomBasedXss/jwt.js:4:27:4:31 | "foo" | InputArgumentIndex | 1 |
-| autogenerated/Xss/DomBasedXss/jwt.js:4:27:4:31 | "foo" | assignedToPropName | data |
-| autogenerated/Xss/DomBasedXss/jwt.js:4:27:4:31 | "foo" | calleeImports | jquery |
-| autogenerated/Xss/DomBasedXss/jwt.js:4:27:4:31 | "foo" | contextFunctionInterfaces |  |
-| autogenerated/Xss/DomBasedXss/jwt.js:4:27:4:31 | "foo" | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/DomBasedXss/jwt.js:4:27:4:31 | "foo" | enclosingFunctionBody |  |
-| autogenerated/Xss/DomBasedXss/jwt.js:4:27:4:31 | "foo" | enclosingFunctionName |  |
-| autogenerated/Xss/DomBasedXss/jwt.js:4:27:4:31 | "foo" | fileImports | jquery jwt-decode |
-| autogenerated/Xss/DomBasedXss/jwt.js:4:27:4:31 | "foo" | receiverName |  |
-| autogenerated/Xss/DomBasedXss/jwt.js:4:27:4:31 | "foo" | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/jwt.js:4:35:7:1 | (data,  ... ENCY]\\n} | CalleeFlexibleAccessPath | $.post |
-| autogenerated/Xss/DomBasedXss/jwt.js:4:35:7:1 | (data,  ... ENCY]\\n} | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/jwt.js:4:35:7:1 | (data,  ... ENCY]\\n} | InputArgumentIndex | 2 |
-| autogenerated/Xss/DomBasedXss/jwt.js:4:35:7:1 | (data,  ... ENCY]\\n} | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/jwt.js:4:35:7:1 | (data,  ... ENCY]\\n} | calleeImports | jquery |
-| autogenerated/Xss/DomBasedXss/jwt.js:4:35:7:1 | (data,  ... ENCY]\\n} | contextFunctionInterfaces |  |
-| autogenerated/Xss/DomBasedXss/jwt.js:4:35:7:1 | (data,  ... ENCY]\\n} | contextSurroundingFunctionParameters | (data, xhr) |
-| autogenerated/Xss/DomBasedXss/jwt.js:4:35:7:1 | (data,  ... ENCY]\\n} | enclosingFunctionBody |  |
-| autogenerated/Xss/DomBasedXss/jwt.js:4:35:7:1 | (data,  ... ENCY]\\n} | enclosingFunctionName |  |
-| autogenerated/Xss/DomBasedXss/jwt.js:4:35:7:1 | (data,  ... ENCY]\\n} | fileImports | jquery jwt-decode |
-| autogenerated/Xss/DomBasedXss/jwt.js:4:35:7:1 | (data,  ... ENCY]\\n} | receiverName | $ |
-| autogenerated/Xss/DomBasedXss/jwt.js:4:35:7:1 | (data,  ... ENCY]\\n} | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/jwt.js:6:14:6:20 | decoded | CalleeFlexibleAccessPath | $.jGrowl |
-| autogenerated/Xss/DomBasedXss/jwt.js:6:14:6:20 | decoded | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/jwt.js:6:14:6:20 | decoded | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/jwt.js:6:14:6:20 | decoded | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/jwt.js:6:14:6:20 | decoded | calleeImports | jquery |
-| autogenerated/Xss/DomBasedXss/jwt.js:6:14:6:20 | decoded | contextFunctionInterfaces |  |
-| autogenerated/Xss/DomBasedXss/jwt.js:6:14:6:20 | decoded | contextSurroundingFunctionParameters | (data, xhr) |
-| autogenerated/Xss/DomBasedXss/jwt.js:6:14:6:20 | decoded | enclosingFunctionBody | data xhr decoded jwt_decode data $ jGrowl decoded |
-| autogenerated/Xss/DomBasedXss/jwt.js:6:14:6:20 | decoded | enclosingFunctionName | $.post#functionalargument |
-| autogenerated/Xss/DomBasedXss/jwt.js:6:14:6:20 | decoded | fileImports | jquery jwt-decode |
-| autogenerated/Xss/DomBasedXss/jwt.js:6:14:6:20 | decoded | receiverName | $ |
-| autogenerated/Xss/DomBasedXss/jwt.js:6:14:6:20 | decoded | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:1:26:1:37 | 'nodemailer' | CalleeFlexibleAccessPath | require |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:1:26:1:37 | 'nodemailer' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:1:26:1:37 | 'nodemailer' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:1:26:1:37 | 'nodemailer' | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:1:26:1:37 | 'nodemailer' | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:1:26:1:37 | 'nodemailer' | contextFunctionInterfaces |  |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:1:26:1:37 | 'nodemailer' | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:1:26:1:37 | 'nodemailer' | enclosingFunctionBody |  |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:1:26:1:37 | 'nodemailer' | enclosingFunctionName |  |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:1:26:1:37 | 'nodemailer' | fileImports | ./backend express nodemailer |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:1:26:1:37 | 'nodemailer' | receiverName |  |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:1:26:1:37 | 'nodemailer' | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:2:23:2:31 | 'express' | CalleeFlexibleAccessPath | require |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:2:23:2:31 | 'express' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:2:23:2:31 | 'express' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:2:23:2:31 | 'express' | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:2:23:2:31 | 'express' | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:2:23:2:31 | 'express' | contextFunctionInterfaces |  |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:2:23:2:31 | 'express' | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:2:23:2:31 | 'express' | enclosingFunctionBody |  |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:2:23:2:31 | 'express' | enclosingFunctionName |  |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:2:23:2:31 | 'express' | fileImports | ./backend express nodemailer |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:2:23:2:31 | 'express' | receiverName |  |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:2:23:2:31 | 'express' | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:4:23:4:33 | './backend' | CalleeFlexibleAccessPath | require |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:4:23:4:33 | './backend' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:4:23:4:33 | './backend' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:4:23:4:33 | './backend' | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:4:23:4:33 | './backend' | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:4:23:4:33 | './backend' | contextFunctionInterfaces |  |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:4:23:4:33 | './backend' | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:4:23:4:33 | './backend' | enclosingFunctionBody |  |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:4:23:4:33 | './backend' | enclosingFunctionName |  |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:4:23:4:33 | './backend' | fileImports | ./backend express nodemailer |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:4:23:4:33 | './backend' | receiverName |  |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:4:23:4:33 | './backend' | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:6:10:6:27 | '/private_message' | CalleeFlexibleAccessPath | app.post |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:6:10:6:27 | '/private_message' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:6:10:6:27 | '/private_message' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:6:10:6:27 | '/private_message' | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:6:10:6:27 | '/private_message' | calleeImports | express |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:6:10:6:27 | '/private_message' | contextFunctionInterfaces |  |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:6:10:6:27 | '/private_message' | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:6:10:6:27 | '/private_message' | enclosingFunctionBody |  |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:6:10:6:27 | '/private_message' | enclosingFunctionName |  |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:6:10:6:27 | '/private_message' | fileImports | ./backend express nodemailer |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:6:10:6:27 | '/private_message' | receiverName | app |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:6:10:6:27 | '/private_message' | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:6:30:15:1 | (req, r ...   });\\n} | CalleeFlexibleAccessPath | app.post |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:6:30:15:1 | (req, r ...   });\\n} | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:6:30:15:1 | (req, r ...   });\\n} | InputArgumentIndex | 1 |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:6:30:15:1 | (req, r ...   });\\n} | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:6:30:15:1 | (req, r ...   });\\n} | calleeImports | express |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:6:30:15:1 | (req, r ...   });\\n} | contextFunctionInterfaces |  |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:6:30:15:1 | (req, r ...   });\\n} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:6:30:15:1 | (req, r ...   });\\n} | enclosingFunctionBody |  |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:6:30:15:1 | (req, r ...   });\\n} | enclosingFunctionName |  |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:6:30:15:1 | (req, r ...   });\\n} | fileImports | ./backend express nodemailer |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:6:30:15:1 | (req, r ...   });\\n} | receiverName | app |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:6:30:15:1 | (req, r ...   });\\n} | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:7:46:7:47 | {} | CalleeFlexibleAccessPath | nodemailer.createTransport |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:7:46:7:47 | {} | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:7:46:7:47 | {} | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:7:46:7:47 | {} | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:7:46:7:47 | {} | calleeImports | nodemailer |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:7:46:7:47 | {} | contextFunctionInterfaces |  |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:7:46:7:47 | {} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:7:46:7:47 | {} | enclosingFunctionBody | req res transport nodemailer createTransport transport sendMail from webmaster@example.com to backend getUserEmail req query receiver subject Private message text Hi, you got a message from someone.  req query message . html Hi, you got a message from someone.  req query message . |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:7:46:7:47 | {} | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:7:46:7:47 | {} | fileImports | ./backend express nodemailer |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:7:46:7:47 | {} | receiverName | nodemailer |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:7:46:7:47 | {} | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:8:22:14:3 | {\\n    f ...  OK\\n  } | CalleeFlexibleAccessPath | transport.sendMail |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:8:22:14:3 | {\\n    f ...  OK\\n  } | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:8:22:14:3 | {\\n    f ...  OK\\n  } | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:8:22:14:3 | {\\n    f ...  OK\\n  } | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:8:22:14:3 | {\\n    f ...  OK\\n  } | calleeImports | nodemailer |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:8:22:14:3 | {\\n    f ...  OK\\n  } | contextFunctionInterfaces |  |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:8:22:14:3 | {\\n    f ...  OK\\n  } | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:8:22:14:3 | {\\n    f ...  OK\\n  } | enclosingFunctionBody | req res transport nodemailer createTransport transport sendMail from webmaster@example.com to backend getUserEmail req query receiver subject Private message text Hi, you got a message from someone.  req query message . html Hi, you got a message from someone.  req query message . |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:8:22:14:3 | {\\n    f ...  OK\\n  } | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:8:22:14:3 | {\\n    f ...  OK\\n  } | fileImports | ./backend express nodemailer |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:8:22:14:3 | {\\n    f ...  OK\\n  } | receiverName | transport |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:8:22:14:3 | {\\n    f ...  OK\\n  } | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:9:11:9:33 | 'webmas ... le.com' | CalleeFlexibleAccessPath | transport.sendMail |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:9:11:9:33 | 'webmas ... le.com' | InputAccessPathFromCallee | 0.from |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:9:11:9:33 | 'webmas ... le.com' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:9:11:9:33 | 'webmas ... le.com' | assignedToPropName | from |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:9:11:9:33 | 'webmas ... le.com' | calleeImports | nodemailer |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:9:11:9:33 | 'webmas ... le.com' | contextFunctionInterfaces |  |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:9:11:9:33 | 'webmas ... le.com' | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:9:11:9:33 | 'webmas ... le.com' | enclosingFunctionBody | req res transport nodemailer createTransport transport sendMail from webmaster@example.com to backend getUserEmail req query receiver subject Private message text Hi, you got a message from someone.  req query message . html Hi, you got a message from someone.  req query message . |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:9:11:9:33 | 'webmas ... le.com' | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:9:11:9:33 | 'webmas ... le.com' | fileImports | ./backend express nodemailer |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:9:11:9:33 | 'webmas ... le.com' | receiverName |  |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:9:11:9:33 | 'webmas ... le.com' | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:10:9:10:48 | backend ... ceiver) | CalleeFlexibleAccessPath | transport.sendMail |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:10:9:10:48 | backend ... ceiver) | InputAccessPathFromCallee | 0.to |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:10:9:10:48 | backend ... ceiver) | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:10:9:10:48 | backend ... ceiver) | assignedToPropName | to |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:10:9:10:48 | backend ... ceiver) | calleeImports | nodemailer |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:10:9:10:48 | backend ... ceiver) | contextFunctionInterfaces |  |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:10:9:10:48 | backend ... ceiver) | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:10:9:10:48 | backend ... ceiver) | enclosingFunctionBody | req res transport nodemailer createTransport transport sendMail from webmaster@example.com to backend getUserEmail req query receiver subject Private message text Hi, you got a message from someone.  req query message . html Hi, you got a message from someone.  req query message . |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:10:9:10:48 | backend ... ceiver) | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:10:9:10:48 | backend ... ceiver) | fileImports | ./backend express nodemailer |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:10:9:10:48 | backend ... ceiver) | receiverName |  |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:10:9:10:48 | backend ... ceiver) | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:10:30:10:47 | req.query.receiver | CalleeFlexibleAccessPath | backend.getUserEmail |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:10:30:10:47 | req.query.receiver | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:10:30:10:47 | req.query.receiver | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:10:30:10:47 | req.query.receiver | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:10:30:10:47 | req.query.receiver | calleeImports | ./backend |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:10:30:10:47 | req.query.receiver | contextFunctionInterfaces |  |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:10:30:10:47 | req.query.receiver | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:10:30:10:47 | req.query.receiver | enclosingFunctionBody | req res transport nodemailer createTransport transport sendMail from webmaster@example.com to backend getUserEmail req query receiver subject Private message text Hi, you got a message from someone.  req query message . html Hi, you got a message from someone.  req query message . |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:10:30:10:47 | req.query.receiver | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:10:30:10:47 | req.query.receiver | fileImports | ./backend express nodemailer |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:10:30:10:47 | req.query.receiver | receiverName | backend |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:10:30:10:47 | req.query.receiver | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:11:14:11:30 | 'Private message' | CalleeFlexibleAccessPath | transport.sendMail |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:11:14:11:30 | 'Private message' | InputAccessPathFromCallee | 0.subject |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:11:14:11:30 | 'Private message' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:11:14:11:30 | 'Private message' | assignedToPropName | subject |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:11:14:11:30 | 'Private message' | calleeImports | nodemailer |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:11:14:11:30 | 'Private message' | contextFunctionInterfaces |  |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:11:14:11:30 | 'Private message' | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:11:14:11:30 | 'Private message' | enclosingFunctionBody | req res transport nodemailer createTransport transport sendMail from webmaster@example.com to backend getUserEmail req query receiver subject Private message text Hi, you got a message from someone.  req query message . html Hi, you got a message from someone.  req query message . |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:11:14:11:30 | 'Private message' | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:11:14:11:30 | 'Private message' | fileImports | ./backend express nodemailer |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:11:14:11:30 | 'Private message' | receiverName |  |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:11:14:11:30 | 'Private message' | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:12:11:12:69 | `Hi, yo ... sage}.` | CalleeFlexibleAccessPath | transport.sendMail |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:12:11:12:69 | `Hi, yo ... sage}.` | InputAccessPathFromCallee | 0.text |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:12:11:12:69 | `Hi, yo ... sage}.` | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:12:11:12:69 | `Hi, yo ... sage}.` | assignedToPropName | text |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:12:11:12:69 | `Hi, yo ... sage}.` | calleeImports | nodemailer |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:12:11:12:69 | `Hi, yo ... sage}.` | contextFunctionInterfaces |  |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:12:11:12:69 | `Hi, yo ... sage}.` | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:12:11:12:69 | `Hi, yo ... sage}.` | enclosingFunctionBody | req res transport nodemailer createTransport transport sendMail from webmaster@example.com to backend getUserEmail req query receiver subject Private message text Hi, you got a message from someone.  req query message . html Hi, you got a message from someone.  req query message . |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:12:11:12:69 | `Hi, yo ... sage}.` | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:12:11:12:69 | `Hi, yo ... sage}.` | fileImports | ./backend express nodemailer |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:12:11:12:69 | `Hi, yo ... sage}.` | receiverName |  |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:12:11:12:69 | `Hi, yo ... sage}.` | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:13:11:13:69 | `Hi, yo ... sage}.` | CalleeFlexibleAccessPath | transport.sendMail |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:13:11:13:69 | `Hi, yo ... sage}.` | InputAccessPathFromCallee | 0.html |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:13:11:13:69 | `Hi, yo ... sage}.` | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:13:11:13:69 | `Hi, yo ... sage}.` | assignedToPropName | html |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:13:11:13:69 | `Hi, yo ... sage}.` | calleeImports | nodemailer |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:13:11:13:69 | `Hi, yo ... sage}.` | contextFunctionInterfaces |  |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:13:11:13:69 | `Hi, yo ... sage}.` | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:13:11:13:69 | `Hi, yo ... sage}.` | enclosingFunctionBody | req res transport nodemailer createTransport transport sendMail from webmaster@example.com to backend getUserEmail req query receiver subject Private message text Hi, you got a message from someone.  req query message . html Hi, you got a message from someone.  req query message . |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:13:11:13:69 | `Hi, yo ... sage}.` | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:13:11:13:69 | `Hi, yo ... sage}.` | fileImports | ./backend express nodemailer |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:13:11:13:69 | `Hi, yo ... sage}.` | receiverName |  |
-| autogenerated/Xss/DomBasedXss/nodemailer.js:13:11:13:69 | `Hi, yo ... sage}.` | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:4:5:4:10 | 'myId' | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:4:5:4:10 | 'myId' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:4:5:4:10 | 'myId' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:4:5:4:10 | 'myId' | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:4:5:4:10 | 'myId' | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:4:5:4:10 | 'myId' | contextFunctionInterfaces | badSanitizer()\ninner(x)\nsanitizeBad(x)\ntest() |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:4:5:4:10 | 'myId' | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:4:5:4:10 | 'myId' | enclosingFunctionBody | target document location search $ myId html sanitize DOMPurify sanitize target target $ myId html target tainted target $ myId html tainted sanitize tainted DOMPurify sanitize tainted $ myId html tainted inner target inner x $ myId html x sanitize x DOMPurify sanitize x $ myId html x |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:4:5:4:10 | 'myId' | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:4:5:4:10 | 'myId' | fileImports |  |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:4:5:4:10 | 'myId' | receiverName |  |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:4:5:4:10 | 'myId' | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:4:18:4:63 | sanitiz ...  target | CalleeFlexibleAccessPath | $().html |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:4:18:4:63 | sanitiz ...  target | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:4:18:4:63 | sanitiz ...  target | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:4:18:4:63 | sanitiz ...  target | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:4:18:4:63 | sanitiz ...  target | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:4:18:4:63 | sanitiz ...  target | contextFunctionInterfaces | badSanitizer()\ninner(x)\nsanitizeBad(x)\ntest() |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:4:18:4:63 | sanitiz ...  target | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:4:18:4:63 | sanitiz ...  target | enclosingFunctionBody | target document location search $ myId html sanitize DOMPurify sanitize target target $ myId html target tainted target $ myId html tainted sanitize tainted DOMPurify sanitize tainted $ myId html tainted inner target inner x $ myId html x sanitize x DOMPurify sanitize x $ myId html x |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:4:18:4:63 | sanitiz ...  target | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:4:18:4:63 | sanitiz ...  target | fileImports |  |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:4:18:4:63 | sanitiz ...  target | receiverName |  |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:4:18:4:63 | sanitiz ...  target | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:6:5:6:10 | 'myId' | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:6:5:6:10 | 'myId' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:6:5:6:10 | 'myId' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:6:5:6:10 | 'myId' | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:6:5:6:10 | 'myId' | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:6:5:6:10 | 'myId' | contextFunctionInterfaces | badSanitizer()\ninner(x)\nsanitizeBad(x)\ntest() |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:6:5:6:10 | 'myId' | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:6:5:6:10 | 'myId' | enclosingFunctionBody | target document location search $ myId html sanitize DOMPurify sanitize target target $ myId html target tainted target $ myId html tainted sanitize tainted DOMPurify sanitize tainted $ myId html tainted inner target inner x $ myId html x sanitize x DOMPurify sanitize x $ myId html x |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:6:5:6:10 | 'myId' | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:6:5:6:10 | 'myId' | fileImports |  |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:6:5:6:10 | 'myId' | receiverName |  |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:6:5:6:10 | 'myId' | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:6:18:6:23 | target | CalleeFlexibleAccessPath | $().html |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:6:18:6:23 | target | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:6:18:6:23 | target | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:6:18:6:23 | target | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:6:18:6:23 | target | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:6:18:6:23 | target | contextFunctionInterfaces | badSanitizer()\ninner(x)\nsanitizeBad(x)\ntest() |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:6:18:6:23 | target | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:6:18:6:23 | target | enclosingFunctionBody | target document location search $ myId html sanitize DOMPurify sanitize target target $ myId html target tainted target $ myId html tainted sanitize tainted DOMPurify sanitize tainted $ myId html tainted inner target inner x $ myId html x sanitize x DOMPurify sanitize x $ myId html x |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:6:18:6:23 | target | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:6:18:6:23 | target | fileImports |  |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:6:18:6:23 | target | receiverName |  |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:6:18:6:23 | target | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:9:5:9:10 | 'myId' | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:9:5:9:10 | 'myId' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:9:5:9:10 | 'myId' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:9:5:9:10 | 'myId' | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:9:5:9:10 | 'myId' | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:9:5:9:10 | 'myId' | contextFunctionInterfaces | badSanitizer()\ninner(x)\nsanitizeBad(x)\ntest() |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:9:5:9:10 | 'myId' | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:9:5:9:10 | 'myId' | enclosingFunctionBody | target document location search $ myId html sanitize DOMPurify sanitize target target $ myId html target tainted target $ myId html tainted sanitize tainted DOMPurify sanitize tainted $ myId html tainted inner target inner x $ myId html x sanitize x DOMPurify sanitize x $ myId html x |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:9:5:9:10 | 'myId' | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:9:5:9:10 | 'myId' | fileImports |  |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:9:5:9:10 | 'myId' | receiverName |  |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:9:5:9:10 | 'myId' | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:9:18:9:24 | tainted | CalleeFlexibleAccessPath | $().html |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:9:18:9:24 | tainted | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:9:18:9:24 | tainted | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:9:18:9:24 | tainted | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:9:18:9:24 | tainted | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:9:18:9:24 | tainted | contextFunctionInterfaces | badSanitizer()\ninner(x)\nsanitizeBad(x)\ntest() |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:9:18:9:24 | tainted | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:9:18:9:24 | tainted | enclosingFunctionBody | target document location search $ myId html sanitize DOMPurify sanitize target target $ myId html target tainted target $ myId html tainted sanitize tainted DOMPurify sanitize tainted $ myId html tainted inner target inner x $ myId html x sanitize x DOMPurify sanitize x $ myId html x |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:9:18:9:24 | tainted | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:9:18:9:24 | tainted | fileImports |  |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:9:18:9:24 | tainted | receiverName |  |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:9:18:9:24 | tainted | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:13:5:13:10 | 'myId' | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:13:5:13:10 | 'myId' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:13:5:13:10 | 'myId' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:13:5:13:10 | 'myId' | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:13:5:13:10 | 'myId' | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:13:5:13:10 | 'myId' | contextFunctionInterfaces | badSanitizer()\ninner(x)\nsanitizeBad(x)\ntest() |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:13:5:13:10 | 'myId' | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:13:5:13:10 | 'myId' | enclosingFunctionBody | target document location search $ myId html sanitize DOMPurify sanitize target target $ myId html target tainted target $ myId html tainted sanitize tainted DOMPurify sanitize tainted $ myId html tainted inner target inner x $ myId html x sanitize x DOMPurify sanitize x $ myId html x |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:13:5:13:10 | 'myId' | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:13:5:13:10 | 'myId' | fileImports |  |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:13:5:13:10 | 'myId' | receiverName |  |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:13:5:13:10 | 'myId' | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:13:18:13:24 | tainted | CalleeFlexibleAccessPath | $().html |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:13:18:13:24 | tainted | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:13:18:13:24 | tainted | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:13:18:13:24 | tainted | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:13:18:13:24 | tainted | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:13:18:13:24 | tainted | contextFunctionInterfaces | badSanitizer()\ninner(x)\nsanitizeBad(x)\ntest() |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:13:18:13:24 | tainted | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:13:18:13:24 | tainted | enclosingFunctionBody | target document location search $ myId html sanitize DOMPurify sanitize target target $ myId html target tainted target $ myId html tainted sanitize tainted DOMPurify sanitize tainted $ myId html tainted inner target inner x $ myId html x sanitize x DOMPurify sanitize x $ myId html x |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:13:18:13:24 | tainted | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:13:18:13:24 | tainted | fileImports |  |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:13:18:13:24 | tainted | receiverName |  |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:13:18:13:24 | tainted | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:17:7:17:12 | 'myId' | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:17:7:17:12 | 'myId' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:17:7:17:12 | 'myId' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:17:7:17:12 | 'myId' | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:17:7:17:12 | 'myId' | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:17:7:17:12 | 'myId' | contextFunctionInterfaces | badSanitizer()\ninner(x)\nsanitizeBad(x)\ntest() |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:17:7:17:12 | 'myId' | contextSurroundingFunctionParameters | (x) |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:17:7:17:12 | 'myId' | enclosingFunctionBody | target document location search $ myId html sanitize DOMPurify sanitize target target $ myId html target tainted target $ myId html tainted sanitize tainted DOMPurify sanitize tainted $ myId html tainted inner target inner x $ myId html x sanitize x DOMPurify sanitize x $ myId html x |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:17:7:17:12 | 'myId' | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:17:7:17:12 | 'myId' | fileImports |  |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:17:7:17:12 | 'myId' | receiverName |  |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:17:7:17:12 | 'myId' | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:17:20:17:20 | x | CalleeFlexibleAccessPath | $().html |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:17:20:17:20 | x | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:17:20:17:20 | x | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:17:20:17:20 | x | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:17:20:17:20 | x | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:17:20:17:20 | x | contextFunctionInterfaces | badSanitizer()\ninner(x)\nsanitizeBad(x)\ntest() |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:17:20:17:20 | x | contextSurroundingFunctionParameters | (x) |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:17:20:17:20 | x | enclosingFunctionBody | target document location search $ myId html sanitize DOMPurify sanitize target target $ myId html target tainted target $ myId html tainted sanitize tainted DOMPurify sanitize tainted $ myId html tainted inner target inner x $ myId html x sanitize x DOMPurify sanitize x $ myId html x |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:17:20:17:20 | x | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:17:20:17:20 | x | fileImports |  |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:17:20:17:20 | x | receiverName |  |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:17:20:17:20 | x | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:21:7:21:12 | 'myId' | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:21:7:21:12 | 'myId' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:21:7:21:12 | 'myId' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:21:7:21:12 | 'myId' | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:21:7:21:12 | 'myId' | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:21:7:21:12 | 'myId' | contextFunctionInterfaces | badSanitizer()\ninner(x)\nsanitizeBad(x)\ntest() |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:21:7:21:12 | 'myId' | contextSurroundingFunctionParameters | (x) |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:21:7:21:12 | 'myId' | enclosingFunctionBody | target document location search $ myId html sanitize DOMPurify sanitize target target $ myId html target tainted target $ myId html tainted sanitize tainted DOMPurify sanitize tainted $ myId html tainted inner target inner x $ myId html x sanitize x DOMPurify sanitize x $ myId html x |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:21:7:21:12 | 'myId' | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:21:7:21:12 | 'myId' | fileImports |  |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:21:7:21:12 | 'myId' | receiverName |  |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:21:7:21:12 | 'myId' | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:21:20:21:20 | x | CalleeFlexibleAccessPath | $().html |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:21:20:21:20 | x | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:21:20:21:20 | x | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:21:20:21:20 | x | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:21:20:21:20 | x | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:21:20:21:20 | x | contextFunctionInterfaces | badSanitizer()\ninner(x)\nsanitizeBad(x)\ntest() |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:21:20:21:20 | x | contextSurroundingFunctionParameters | (x) |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:21:20:21:20 | x | enclosingFunctionBody | target document location search $ myId html sanitize DOMPurify sanitize target target $ myId html target tainted target $ myId html tainted sanitize tainted DOMPurify sanitize tainted $ myId html tainted inner target inner x $ myId html x sanitize x DOMPurify sanitize x $ myId html x |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:21:20:21:20 | x | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:21:20:21:20 | x | fileImports |  |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:21:20:21:20 | x | receiverName |  |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:21:20:21:20 | x | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:32:5:32:10 | 'myId' | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:32:5:32:10 | 'myId' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:32:5:32:10 | 'myId' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:32:5:32:10 | 'myId' | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:32:5:32:10 | 'myId' | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:32:5:32:10 | 'myId' | contextFunctionInterfaces | badSanitizer()\ninner(x)\nsanitizeBad(x)\ntest() |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:32:5:32:10 | 'myId' | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:32:5:32:10 | 'myId' | enclosingFunctionBody | target document location search sanitizeBad x x tainted2 target $ myId html tainted2 sanitize tainted2 sanitizeBad tainted2 $ myId html tainted2 tainted3 target $ myId html tainted3 sanitize tainted3 sanitizeBad tainted3 $ myId html tainted3 $ myId html sanitize sanitizeBad target target |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:32:5:32:10 | 'myId' | enclosingFunctionName | badSanitizer |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:32:5:32:10 | 'myId' | fileImports |  |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:32:5:32:10 | 'myId' | receiverName |  |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:32:5:32:10 | 'myId' | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:32:18:32:25 | tainted2 | CalleeFlexibleAccessPath | $().html |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:32:18:32:25 | tainted2 | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:32:18:32:25 | tainted2 | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:32:18:32:25 | tainted2 | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:32:18:32:25 | tainted2 | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:32:18:32:25 | tainted2 | contextFunctionInterfaces | badSanitizer()\ninner(x)\nsanitizeBad(x)\ntest() |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:32:18:32:25 | tainted2 | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:32:18:32:25 | tainted2 | enclosingFunctionBody | target document location search sanitizeBad x x tainted2 target $ myId html tainted2 sanitize tainted2 sanitizeBad tainted2 $ myId html tainted2 tainted3 target $ myId html tainted3 sanitize tainted3 sanitizeBad tainted3 $ myId html tainted3 $ myId html sanitize sanitizeBad target target |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:32:18:32:25 | tainted2 | enclosingFunctionName | badSanitizer |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:32:18:32:25 | tainted2 | fileImports |  |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:32:18:32:25 | tainted2 | receiverName |  |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:32:18:32:25 | tainted2 | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:34:28:34:35 | tainted2 | CalleeFlexibleAccessPath | sanitizeBad |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:34:28:34:35 | tainted2 | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:34:28:34:35 | tainted2 | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:34:28:34:35 | tainted2 | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:34:28:34:35 | tainted2 | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:34:28:34:35 | tainted2 | contextFunctionInterfaces | badSanitizer()\ninner(x)\nsanitizeBad(x)\ntest() |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:34:28:34:35 | tainted2 | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:34:28:34:35 | tainted2 | enclosingFunctionBody | target document location search sanitizeBad x x tainted2 target $ myId html tainted2 sanitize tainted2 sanitizeBad tainted2 $ myId html tainted2 tainted3 target $ myId html tainted3 sanitize tainted3 sanitizeBad tainted3 $ myId html tainted3 $ myId html sanitize sanitizeBad target target |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:34:28:34:35 | tainted2 | enclosingFunctionName | badSanitizer |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:34:28:34:35 | tainted2 | fileImports |  |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:34:28:34:35 | tainted2 | receiverName |  |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:34:28:34:35 | tainted2 | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:36:5:36:10 | 'myId' | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:36:5:36:10 | 'myId' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:36:5:36:10 | 'myId' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:36:5:36:10 | 'myId' | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:36:5:36:10 | 'myId' | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:36:5:36:10 | 'myId' | contextFunctionInterfaces | badSanitizer()\ninner(x)\nsanitizeBad(x)\ntest() |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:36:5:36:10 | 'myId' | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:36:5:36:10 | 'myId' | enclosingFunctionBody | target document location search sanitizeBad x x tainted2 target $ myId html tainted2 sanitize tainted2 sanitizeBad tainted2 $ myId html tainted2 tainted3 target $ myId html tainted3 sanitize tainted3 sanitizeBad tainted3 $ myId html tainted3 $ myId html sanitize sanitizeBad target target |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:36:5:36:10 | 'myId' | enclosingFunctionName | badSanitizer |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:36:5:36:10 | 'myId' | fileImports |  |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:36:5:36:10 | 'myId' | receiverName |  |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:36:5:36:10 | 'myId' | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:36:18:36:25 | tainted2 | CalleeFlexibleAccessPath | $().html |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:36:18:36:25 | tainted2 | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:36:18:36:25 | tainted2 | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:36:18:36:25 | tainted2 | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:36:18:36:25 | tainted2 | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:36:18:36:25 | tainted2 | contextFunctionInterfaces | badSanitizer()\ninner(x)\nsanitizeBad(x)\ntest() |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:36:18:36:25 | tainted2 | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:36:18:36:25 | tainted2 | enclosingFunctionBody | target document location search sanitizeBad x x tainted2 target $ myId html tainted2 sanitize tainted2 sanitizeBad tainted2 $ myId html tainted2 tainted3 target $ myId html tainted3 sanitize tainted3 sanitizeBad tainted3 $ myId html tainted3 $ myId html sanitize sanitizeBad target target |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:36:18:36:25 | tainted2 | enclosingFunctionName | badSanitizer |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:36:18:36:25 | tainted2 | fileImports |  |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:36:18:36:25 | tainted2 | receiverName |  |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:36:18:36:25 | tainted2 | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:39:5:39:10 | 'myId' | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:39:5:39:10 | 'myId' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:39:5:39:10 | 'myId' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:39:5:39:10 | 'myId' | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:39:5:39:10 | 'myId' | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:39:5:39:10 | 'myId' | contextFunctionInterfaces | badSanitizer()\ninner(x)\nsanitizeBad(x)\ntest() |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:39:5:39:10 | 'myId' | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:39:5:39:10 | 'myId' | enclosingFunctionBody | target document location search sanitizeBad x x tainted2 target $ myId html tainted2 sanitize tainted2 sanitizeBad tainted2 $ myId html tainted2 tainted3 target $ myId html tainted3 sanitize tainted3 sanitizeBad tainted3 $ myId html tainted3 $ myId html sanitize sanitizeBad target target |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:39:5:39:10 | 'myId' | enclosingFunctionName | badSanitizer |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:39:5:39:10 | 'myId' | fileImports |  |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:39:5:39:10 | 'myId' | receiverName |  |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:39:5:39:10 | 'myId' | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:39:18:39:25 | tainted3 | CalleeFlexibleAccessPath | $().html |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:39:18:39:25 | tainted3 | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:39:18:39:25 | tainted3 | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:39:18:39:25 | tainted3 | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:39:18:39:25 | tainted3 | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:39:18:39:25 | tainted3 | contextFunctionInterfaces | badSanitizer()\ninner(x)\nsanitizeBad(x)\ntest() |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:39:18:39:25 | tainted3 | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:39:18:39:25 | tainted3 | enclosingFunctionBody | target document location search sanitizeBad x x tainted2 target $ myId html tainted2 sanitize tainted2 sanitizeBad tainted2 $ myId html tainted2 tainted3 target $ myId html tainted3 sanitize tainted3 sanitizeBad tainted3 $ myId html tainted3 $ myId html sanitize sanitizeBad target target |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:39:18:39:25 | tainted3 | enclosingFunctionName | badSanitizer |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:39:18:39:25 | tainted3 | fileImports |  |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:39:18:39:25 | tainted3 | receiverName |  |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:39:18:39:25 | tainted3 | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:41:28:41:35 | tainted3 | CalleeFlexibleAccessPath | sanitizeBad |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:41:28:41:35 | tainted3 | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:41:28:41:35 | tainted3 | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:41:28:41:35 | tainted3 | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:41:28:41:35 | tainted3 | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:41:28:41:35 | tainted3 | contextFunctionInterfaces | badSanitizer()\ninner(x)\nsanitizeBad(x)\ntest() |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:41:28:41:35 | tainted3 | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:41:28:41:35 | tainted3 | enclosingFunctionBody | target document location search sanitizeBad x x tainted2 target $ myId html tainted2 sanitize tainted2 sanitizeBad tainted2 $ myId html tainted2 tainted3 target $ myId html tainted3 sanitize tainted3 sanitizeBad tainted3 $ myId html tainted3 $ myId html sanitize sanitizeBad target target |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:41:28:41:35 | tainted3 | enclosingFunctionName | badSanitizer |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:41:28:41:35 | tainted3 | fileImports |  |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:41:28:41:35 | tainted3 | receiverName |  |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:41:28:41:35 | tainted3 | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:43:5:43:10 | 'myId' | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:43:5:43:10 | 'myId' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:43:5:43:10 | 'myId' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:43:5:43:10 | 'myId' | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:43:5:43:10 | 'myId' | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:43:5:43:10 | 'myId' | contextFunctionInterfaces | badSanitizer()\ninner(x)\nsanitizeBad(x)\ntest() |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:43:5:43:10 | 'myId' | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:43:5:43:10 | 'myId' | enclosingFunctionBody | target document location search sanitizeBad x x tainted2 target $ myId html tainted2 sanitize tainted2 sanitizeBad tainted2 $ myId html tainted2 tainted3 target $ myId html tainted3 sanitize tainted3 sanitizeBad tainted3 $ myId html tainted3 $ myId html sanitize sanitizeBad target target |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:43:5:43:10 | 'myId' | enclosingFunctionName | badSanitizer |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:43:5:43:10 | 'myId' | fileImports |  |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:43:5:43:10 | 'myId' | receiverName |  |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:43:5:43:10 | 'myId' | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:43:18:43:25 | tainted3 | CalleeFlexibleAccessPath | $().html |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:43:18:43:25 | tainted3 | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:43:18:43:25 | tainted3 | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:43:18:43:25 | tainted3 | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:43:18:43:25 | tainted3 | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:43:18:43:25 | tainted3 | contextFunctionInterfaces | badSanitizer()\ninner(x)\nsanitizeBad(x)\ntest() |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:43:18:43:25 | tainted3 | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:43:18:43:25 | tainted3 | enclosingFunctionBody | target document location search sanitizeBad x x tainted2 target $ myId html tainted2 sanitize tainted2 sanitizeBad tainted2 $ myId html tainted2 tainted3 target $ myId html tainted3 sanitize tainted3 sanitizeBad tainted3 $ myId html tainted3 $ myId html sanitize sanitizeBad target target |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:43:18:43:25 | tainted3 | enclosingFunctionName | badSanitizer |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:43:18:43:25 | tainted3 | fileImports |  |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:43:18:43:25 | tainted3 | receiverName |  |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:43:18:43:25 | tainted3 | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:45:5:45:10 | 'myId' | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:45:5:45:10 | 'myId' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:45:5:45:10 | 'myId' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:45:5:45:10 | 'myId' | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:45:5:45:10 | 'myId' | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:45:5:45:10 | 'myId' | contextFunctionInterfaces | badSanitizer()\ninner(x)\nsanitizeBad(x)\ntest() |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:45:5:45:10 | 'myId' | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:45:5:45:10 | 'myId' | enclosingFunctionBody | target document location search sanitizeBad x x tainted2 target $ myId html tainted2 sanitize tainted2 sanitizeBad tainted2 $ myId html tainted2 tainted3 target $ myId html tainted3 sanitize tainted3 sanitizeBad tainted3 $ myId html tainted3 $ myId html sanitize sanitizeBad target target |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:45:5:45:10 | 'myId' | enclosingFunctionName | badSanitizer |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:45:5:45:10 | 'myId' | fileImports |  |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:45:5:45:10 | 'myId' | receiverName |  |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:45:5:45:10 | 'myId' | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:45:18:45:56 | sanitiz ...  target | CalleeFlexibleAccessPath | $().html |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:45:18:45:56 | sanitiz ...  target | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:45:18:45:56 | sanitiz ...  target | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:45:18:45:56 | sanitiz ...  target | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:45:18:45:56 | sanitiz ...  target | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:45:18:45:56 | sanitiz ...  target | contextFunctionInterfaces | badSanitizer()\ninner(x)\nsanitizeBad(x)\ntest() |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:45:18:45:56 | sanitiz ...  target | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:45:18:45:56 | sanitiz ...  target | enclosingFunctionBody | target document location search sanitizeBad x x tainted2 target $ myId html tainted2 sanitize tainted2 sanitizeBad tainted2 $ myId html tainted2 tainted3 target $ myId html tainted3 sanitize tainted3 sanitizeBad tainted3 $ myId html tainted3 $ myId html sanitize sanitizeBad target target |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:45:18:45:56 | sanitiz ...  target | enclosingFunctionName | badSanitizer |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:45:18:45:56 | sanitiz ...  target | fileImports |  |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:45:18:45:56 | sanitiz ...  target | receiverName |  |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:45:18:45:56 | sanitiz ...  target | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:45:41:45:46 | target | CalleeFlexibleAccessPath | sanitizeBad |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:45:41:45:46 | target | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:45:41:45:46 | target | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:45:41:45:46 | target | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:45:41:45:46 | target | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:45:41:45:46 | target | contextFunctionInterfaces | badSanitizer()\ninner(x)\nsanitizeBad(x)\ntest() |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:45:41:45:46 | target | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:45:41:45:46 | target | enclosingFunctionBody | target document location search sanitizeBad x x tainted2 target $ myId html tainted2 sanitize tainted2 sanitizeBad tainted2 $ myId html tainted2 tainted3 target $ myId html tainted3 sanitize tainted3 sanitizeBad tainted3 $ myId html tainted3 $ myId html sanitize sanitizeBad target target |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:45:41:45:46 | target | enclosingFunctionName | badSanitizer |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:45:41:45:46 | target | fileImports |  |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:45:41:45:46 | target | receiverName |  |
-| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:45:41:45:46 | target | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/react-create-context.js:3:45:3:48 | null | CalleeFlexibleAccessPath | createContext |
-| autogenerated/Xss/DomBasedXss/react-create-context.js:3:45:3:48 | null | InputAccessPathFromCallee | 0.root |
-| autogenerated/Xss/DomBasedXss/react-create-context.js:3:45:3:48 | null | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/react-create-context.js:3:45:3:48 | null | assignedToPropName | root |
-| autogenerated/Xss/DomBasedXss/react-create-context.js:3:45:3:48 | null | calleeImports | react |
-| autogenerated/Xss/DomBasedXss/react-create-context.js:3:45:3:48 | null | contextFunctionInterfaces |  |
-| autogenerated/Xss/DomBasedXss/react-create-context.js:3:45:3:48 | null | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/DomBasedXss/react-create-context.js:3:45:3:48 | null | enclosingFunctionBody |  |
-| autogenerated/Xss/DomBasedXss/react-create-context.js:3:45:3:48 | null | enclosingFunctionName |  |
-| autogenerated/Xss/DomBasedXss/react-create-context.js:3:45:3:48 | null | fileImports | react |
-| autogenerated/Xss/DomBasedXss/react-create-context.js:3:45:3:48 | null | receiverName |  |
-| autogenerated/Xss/DomBasedXss/react-create-context.js:3:45:3:48 | null | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/react-native.js:6:9:6:20 | '/some/path' | CalleeFlexibleAccessPath | app.get |
-| autogenerated/Xss/DomBasedXss/react-native.js:6:9:6:20 | '/some/path' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/react-native.js:6:9:6:20 | '/some/path' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/react-native.js:6:9:6:20 | '/some/path' | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/react-native.js:6:9:6:20 | '/some/path' | calleeImports | express |
-| autogenerated/Xss/DomBasedXss/react-native.js:6:9:6:20 | '/some/path' | contextFunctionInterfaces |  |
-| autogenerated/Xss/DomBasedXss/react-native.js:6:9:6:20 | '/some/path' | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/DomBasedXss/react-native.js:6:9:6:20 | '/some/path' | enclosingFunctionBody |  |
-| autogenerated/Xss/DomBasedXss/react-native.js:6:9:6:20 | '/some/path' | enclosingFunctionName |  |
-| autogenerated/Xss/DomBasedXss/react-native.js:6:9:6:20 | '/some/path' | fileImports | express react-native |
-| autogenerated/Xss/DomBasedXss/react-native.js:6:9:6:20 | '/some/path' | receiverName | app |
-| autogenerated/Xss/DomBasedXss/react-native.js:6:9:6:20 | '/some/path' | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/react-native.js:6:23:10:1 | functio ... OT OK\\n} | CalleeFlexibleAccessPath | app.get |
-| autogenerated/Xss/DomBasedXss/react-native.js:6:23:10:1 | functio ... OT OK\\n} | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/react-native.js:6:23:10:1 | functio ... OT OK\\n} | InputArgumentIndex | 1 |
-| autogenerated/Xss/DomBasedXss/react-native.js:6:23:10:1 | functio ... OT OK\\n} | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/react-native.js:6:23:10:1 | functio ... OT OK\\n} | calleeImports | express |
-| autogenerated/Xss/DomBasedXss/react-native.js:6:23:10:1 | functio ... OT OK\\n} | contextFunctionInterfaces |  |
-| autogenerated/Xss/DomBasedXss/react-native.js:6:23:10:1 | functio ... OT OK\\n} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/Xss/DomBasedXss/react-native.js:6:23:10:1 | functio ... OT OK\\n} | enclosingFunctionBody |  |
-| autogenerated/Xss/DomBasedXss/react-native.js:6:23:10:1 | functio ... OT OK\\n} | enclosingFunctionName |  |
-| autogenerated/Xss/DomBasedXss/react-native.js:6:23:10:1 | functio ... OT OK\\n} | fileImports | express react-native |
-| autogenerated/Xss/DomBasedXss/react-native.js:6:23:10:1 | functio ... OT OK\\n} | receiverName | app |
-| autogenerated/Xss/DomBasedXss/react-native.js:6:23:10:1 | functio ... OT OK\\n} | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/react-native.js:7:27:7:32 | "code" | CalleeFlexibleAccessPath | req.param |
-| autogenerated/Xss/DomBasedXss/react-native.js:7:27:7:32 | "code" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/react-native.js:7:27:7:32 | "code" | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/react-native.js:7:27:7:32 | "code" | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/react-native.js:7:27:7:32 | "code" | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/react-native.js:7:27:7:32 | "code" | contextFunctionInterfaces |  |
-| autogenerated/Xss/DomBasedXss/react-native.js:7:27:7:32 | "code" | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/Xss/DomBasedXss/react-native.js:7:27:7:32 | "code" | enclosingFunctionBody | req res tainted req param code WebView html tainted WebView source html tainted |
-| autogenerated/Xss/DomBasedXss/react-native.js:7:27:7:32 | "code" | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/Xss/DomBasedXss/react-native.js:7:27:7:32 | "code" | fileImports | express react-native |
-| autogenerated/Xss/DomBasedXss/react-native.js:7:27:7:32 | "code" | receiverName | req |
-| autogenerated/Xss/DomBasedXss/react-native.js:7:27:7:32 | "code" | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/react-native.js:8:18:8:24 | tainted | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/react-native.js:8:18:8:24 | tainted | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/react-native.js:8:18:8:24 | tainted | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/react-native.js:8:18:8:24 | tainted | assignedToPropName | html |
-| autogenerated/Xss/DomBasedXss/react-native.js:8:18:8:24 | tainted | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/react-native.js:8:18:8:24 | tainted | contextFunctionInterfaces |  |
-| autogenerated/Xss/DomBasedXss/react-native.js:8:18:8:24 | tainted | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/Xss/DomBasedXss/react-native.js:8:18:8:24 | tainted | enclosingFunctionBody | req res tainted req param code WebView html tainted WebView source html tainted |
-| autogenerated/Xss/DomBasedXss/react-native.js:8:18:8:24 | tainted | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/Xss/DomBasedXss/react-native.js:8:18:8:24 | tainted | fileImports | express react-native |
-| autogenerated/Xss/DomBasedXss/react-native.js:8:18:8:24 | tainted | receiverName |  |
-| autogenerated/Xss/DomBasedXss/react-native.js:8:18:8:24 | tainted | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/react-native.js:9:27:9:33 | tainted | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/react-native.js:9:27:9:33 | tainted | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/react-native.js:9:27:9:33 | tainted | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/react-native.js:9:27:9:33 | tainted | assignedToPropName | html |
-| autogenerated/Xss/DomBasedXss/react-native.js:9:27:9:33 | tainted | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/react-native.js:9:27:9:33 | tainted | contextFunctionInterfaces |  |
-| autogenerated/Xss/DomBasedXss/react-native.js:9:27:9:33 | tainted | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/Xss/DomBasedXss/react-native.js:9:27:9:33 | tainted | enclosingFunctionBody | req res tainted req param code WebView html tainted WebView source html tainted |
-| autogenerated/Xss/DomBasedXss/react-native.js:9:27:9:33 | tainted | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/Xss/DomBasedXss/react-native.js:9:27:9:33 | tainted | fileImports | express react-native |
-| autogenerated/Xss/DomBasedXss/react-native.js:9:27:9:33 | tainted | receiverName |  |
-| autogenerated/Xss/DomBasedXss/react-native.js:9:27:9:33 | tainted | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/react-use-context.js:5:23:5:31 | MyContext | CalleeFlexibleAccessPath | useContext |
-| autogenerated/Xss/DomBasedXss/react-use-context.js:5:23:5:31 | MyContext | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/react-use-context.js:5:23:5:31 | MyContext | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/react-use-context.js:5:23:5:31 | MyContext | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/react-use-context.js:5:23:5:31 | MyContext | calleeImports | react |
-| autogenerated/Xss/DomBasedXss/react-use-context.js:5:23:5:31 | MyContext | contextFunctionInterfaces | constructor(args)\nfoo()\nuseDoc1()\nuseMyContext() |
-| autogenerated/Xss/DomBasedXss/react-use-context.js:5:23:5:31 | MyContext | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/react-use-context.js:5:23:5:31 | MyContext | enclosingFunctionBody | useContext MyContext |
-| autogenerated/Xss/DomBasedXss/react-use-context.js:5:23:5:31 | MyContext | enclosingFunctionName | useMyContext |
-| autogenerated/Xss/DomBasedXss/react-use-context.js:5:23:5:31 | MyContext | fileImports | ./react-create-context react |
-| autogenerated/Xss/DomBasedXss/react-use-context.js:5:23:5:31 | MyContext | receiverName |  |
-| autogenerated/Xss/DomBasedXss/react-use-context.js:5:23:5:31 | MyContext | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/react-use-context.js:10:22:10:32 | window.name | CalleeFlexibleAccessPath | root.appendChild |
-| autogenerated/Xss/DomBasedXss/react-use-context.js:10:22:10:32 | window.name | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/react-use-context.js:10:22:10:32 | window.name | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/react-use-context.js:10:22:10:32 | window.name | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/react-use-context.js:10:22:10:32 | window.name | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/react-use-context.js:10:22:10:32 | window.name | contextFunctionInterfaces | constructor(args)\nfoo()\nuseDoc1()\nuseMyContext() |
-| autogenerated/Xss/DomBasedXss/react-use-context.js:10:22:10:32 | window.name | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/react-use-context.js:10:22:10:32 | window.name | enclosingFunctionBody | root useMyContext root appendChild window name |
-| autogenerated/Xss/DomBasedXss/react-use-context.js:10:22:10:32 | window.name | enclosingFunctionName | useDoc1 |
-| autogenerated/Xss/DomBasedXss/react-use-context.js:10:22:10:32 | window.name | fileImports | ./react-create-context react |
-| autogenerated/Xss/DomBasedXss/react-use-context.js:10:22:10:32 | window.name | receiverName | root |
-| autogenerated/Xss/DomBasedXss/react-use-context.js:10:22:10:32 | window.name | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/react-use-context.js:16:26:16:36 | window.name | CalleeFlexibleAccessPath | root.appendChild |
-| autogenerated/Xss/DomBasedXss/react-use-context.js:16:26:16:36 | window.name | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/react-use-context.js:16:26:16:36 | window.name | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/react-use-context.js:16:26:16:36 | window.name | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/react-use-context.js:16:26:16:36 | window.name | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/react-use-context.js:16:26:16:36 | window.name | contextFunctionInterfaces | constructor(args)\nfoo()\nuseDoc1()\nuseMyContext() |
-| autogenerated/Xss/DomBasedXss/react-use-context.js:16:26:16:36 | window.name | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/react-use-context.js:16:26:16:36 | window.name | enclosingFunctionBody | root context root appendChild window name |
-| autogenerated/Xss/DomBasedXss/react-use-context.js:16:26:16:36 | window.name | enclosingFunctionName | foo |
-| autogenerated/Xss/DomBasedXss/react-use-context.js:16:26:16:36 | window.name | fileImports | ./react-create-context react |
-| autogenerated/Xss/DomBasedXss/react-use-context.js:16:26:16:36 | window.name | receiverName | root |
-| autogenerated/Xss/DomBasedXss/react-use-context.js:16:26:16:36 | window.name | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/react-use-state.js:5:42:5:56 | {__html: state} | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/react-use-state.js:5:42:5:56 | {__html: state} | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/react-use-state.js:5:42:5:56 | {__html: state} | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/react-use-state.js:5:42:5:56 | {__html: state} | assignedToPropName | dangerouslySetInnerHTML |
-| autogenerated/Xss/DomBasedXss/react-use-state.js:5:42:5:56 | {__html: state} | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/react-use-state.js:5:42:5:56 | {__html: state} | contextFunctionInterfaces | initialState()\nsetStateValue()\nsetStateValueLazy()\nsetStateValueLazy()\nsetStateValueSafe() |
-| autogenerated/Xss/DomBasedXss/react-use-state.js:5:42:5:56 | {__html: state} | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/react-use-state.js:5:42:5:56 | {__html: state} | enclosingFunctionBody | state setState useState window name div dangerouslySetInnerHTML __html state |
-| autogenerated/Xss/DomBasedXss/react-use-state.js:5:42:5:56 | {__html: state} | enclosingFunctionName | initialState |
-| autogenerated/Xss/DomBasedXss/react-use-state.js:5:42:5:56 | {__html: state} | fileImports | react |
-| autogenerated/Xss/DomBasedXss/react-use-state.js:5:42:5:56 | {__html: state} | receiverName |  |
-| autogenerated/Xss/DomBasedXss/react-use-state.js:5:42:5:56 | {__html: state} | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/react-use-state.js:5:51:5:55 | state | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/react-use-state.js:5:51:5:55 | state | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/react-use-state.js:5:51:5:55 | state | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/react-use-state.js:5:51:5:55 | state | assignedToPropName | __html |
-| autogenerated/Xss/DomBasedXss/react-use-state.js:5:51:5:55 | state | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/react-use-state.js:5:51:5:55 | state | contextFunctionInterfaces | initialState()\nsetStateValue()\nsetStateValueLazy()\nsetStateValueLazy()\nsetStateValueSafe() |
-| autogenerated/Xss/DomBasedXss/react-use-state.js:5:51:5:55 | state | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/react-use-state.js:5:51:5:55 | state | enclosingFunctionBody | state setState useState window name div dangerouslySetInnerHTML __html state |
-| autogenerated/Xss/DomBasedXss/react-use-state.js:5:51:5:55 | state | enclosingFunctionName | initialState |
-| autogenerated/Xss/DomBasedXss/react-use-state.js:5:51:5:55 | state | fileImports | react |
-| autogenerated/Xss/DomBasedXss/react-use-state.js:5:51:5:55 | state | receiverName |  |
-| autogenerated/Xss/DomBasedXss/react-use-state.js:5:51:5:55 | state | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/react-use-state.js:11:42:11:56 | {__html: state} | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/react-use-state.js:11:42:11:56 | {__html: state} | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/react-use-state.js:11:42:11:56 | {__html: state} | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/react-use-state.js:11:42:11:56 | {__html: state} | assignedToPropName | dangerouslySetInnerHTML |
-| autogenerated/Xss/DomBasedXss/react-use-state.js:11:42:11:56 | {__html: state} | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/react-use-state.js:11:42:11:56 | {__html: state} | contextFunctionInterfaces | initialState()\nsetStateValue()\nsetStateValueLazy()\nsetStateValueLazy()\nsetStateValueSafe() |
-| autogenerated/Xss/DomBasedXss/react-use-state.js:11:42:11:56 | {__html: state} | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/react-use-state.js:11:42:11:56 | {__html: state} | enclosingFunctionBody | state setState useState foo setState window name div dangerouslySetInnerHTML __html state |
-| autogenerated/Xss/DomBasedXss/react-use-state.js:11:42:11:56 | {__html: state} | enclosingFunctionName | setStateValue |
-| autogenerated/Xss/DomBasedXss/react-use-state.js:11:42:11:56 | {__html: state} | fileImports | react |
-| autogenerated/Xss/DomBasedXss/react-use-state.js:11:42:11:56 | {__html: state} | receiverName |  |
-| autogenerated/Xss/DomBasedXss/react-use-state.js:11:42:11:56 | {__html: state} | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/react-use-state.js:11:51:11:55 | state | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/react-use-state.js:11:51:11:55 | state | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/react-use-state.js:11:51:11:55 | state | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/react-use-state.js:11:51:11:55 | state | assignedToPropName | __html |
-| autogenerated/Xss/DomBasedXss/react-use-state.js:11:51:11:55 | state | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/react-use-state.js:11:51:11:55 | state | contextFunctionInterfaces | initialState()\nsetStateValue()\nsetStateValueLazy()\nsetStateValueLazy()\nsetStateValueSafe() |
-| autogenerated/Xss/DomBasedXss/react-use-state.js:11:51:11:55 | state | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/react-use-state.js:11:51:11:55 | state | enclosingFunctionBody | state setState useState foo setState window name div dangerouslySetInnerHTML __html state |
-| autogenerated/Xss/DomBasedXss/react-use-state.js:11:51:11:55 | state | enclosingFunctionName | setStateValue |
-| autogenerated/Xss/DomBasedXss/react-use-state.js:11:51:11:55 | state | fileImports | react |
-| autogenerated/Xss/DomBasedXss/react-use-state.js:11:51:11:55 | state | receiverName |  |
-| autogenerated/Xss/DomBasedXss/react-use-state.js:11:51:11:55 | state | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/react-use-state.js:17:42:17:56 | {__html: state} | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/react-use-state.js:17:42:17:56 | {__html: state} | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/react-use-state.js:17:42:17:56 | {__html: state} | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/react-use-state.js:17:42:17:56 | {__html: state} | assignedToPropName | dangerouslySetInnerHTML |
-| autogenerated/Xss/DomBasedXss/react-use-state.js:17:42:17:56 | {__html: state} | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/react-use-state.js:17:42:17:56 | {__html: state} | contextFunctionInterfaces | initialState()\nsetStateValue()\nsetStateValueLazy()\nsetStateValueLazy()\nsetStateValueSafe() |
-| autogenerated/Xss/DomBasedXss/react-use-state.js:17:42:17:56 | {__html: state} | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/react-use-state.js:17:42:17:56 | {__html: state} | enclosingFunctionBody | state setState useState foo setState window name div dangerouslySetInnerHTML __html state |
-| autogenerated/Xss/DomBasedXss/react-use-state.js:17:42:17:56 | {__html: state} | enclosingFunctionName | setStateValueLazy |
-| autogenerated/Xss/DomBasedXss/react-use-state.js:17:42:17:56 | {__html: state} | fileImports | react |
-| autogenerated/Xss/DomBasedXss/react-use-state.js:17:42:17:56 | {__html: state} | receiverName |  |
-| autogenerated/Xss/DomBasedXss/react-use-state.js:17:42:17:56 | {__html: state} | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/react-use-state.js:17:51:17:55 | state | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/react-use-state.js:17:51:17:55 | state | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/react-use-state.js:17:51:17:55 | state | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/react-use-state.js:17:51:17:55 | state | assignedToPropName | __html |
-| autogenerated/Xss/DomBasedXss/react-use-state.js:17:51:17:55 | state | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/react-use-state.js:17:51:17:55 | state | contextFunctionInterfaces | initialState()\nsetStateValue()\nsetStateValueLazy()\nsetStateValueLazy()\nsetStateValueSafe() |
-| autogenerated/Xss/DomBasedXss/react-use-state.js:17:51:17:55 | state | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/react-use-state.js:17:51:17:55 | state | enclosingFunctionBody | state setState useState foo setState window name div dangerouslySetInnerHTML __html state |
-| autogenerated/Xss/DomBasedXss/react-use-state.js:17:51:17:55 | state | enclosingFunctionName | setStateValueLazy |
-| autogenerated/Xss/DomBasedXss/react-use-state.js:17:51:17:55 | state | fileImports | react |
-| autogenerated/Xss/DomBasedXss/react-use-state.js:17:51:17:55 | state | receiverName |  |
-| autogenerated/Xss/DomBasedXss/react-use-state.js:17:51:17:55 | state | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/react-use-state.js:23:35:23:38 | prev | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/react-use-state.js:23:35:23:38 | prev | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/react-use-state.js:23:35:23:38 | prev | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/react-use-state.js:23:35:23:38 | prev | assignedToPropName | innerHTML |
-| autogenerated/Xss/DomBasedXss/react-use-state.js:23:35:23:38 | prev | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/react-use-state.js:23:35:23:38 | prev | contextFunctionInterfaces | initialState()\nsetStateValue()\nsetStateValueLazy()\nsetStateValueLazy()\nsetStateValueSafe() |
-| autogenerated/Xss/DomBasedXss/react-use-state.js:23:35:23:38 | prev | contextSurroundingFunctionParameters | ()\n(prev) |
-| autogenerated/Xss/DomBasedXss/react-use-state.js:23:35:23:38 | prev | enclosingFunctionBody | state setState useState foo setState prev document body innerHTML prev setState window name |
-| autogenerated/Xss/DomBasedXss/react-use-state.js:23:35:23:38 | prev | enclosingFunctionName | setStateValueLazy |
-| autogenerated/Xss/DomBasedXss/react-use-state.js:23:35:23:38 | prev | fileImports | react |
-| autogenerated/Xss/DomBasedXss/react-use-state.js:23:35:23:38 | prev | receiverName |  |
-| autogenerated/Xss/DomBasedXss/react-use-state.js:23:35:23:38 | prev | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/react-use-state.js:32:42:32:56 | {__html: state} | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/react-use-state.js:32:42:32:56 | {__html: state} | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/react-use-state.js:32:42:32:56 | {__html: state} | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/react-use-state.js:32:42:32:56 | {__html: state} | assignedToPropName | dangerouslySetInnerHTML |
-| autogenerated/Xss/DomBasedXss/react-use-state.js:32:42:32:56 | {__html: state} | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/react-use-state.js:32:42:32:56 | {__html: state} | contextFunctionInterfaces | initialState()\nsetStateValue()\nsetStateValueLazy()\nsetStateValueLazy()\nsetStateValueSafe() |
-| autogenerated/Xss/DomBasedXss/react-use-state.js:32:42:32:56 | {__html: state} | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/react-use-state.js:32:42:32:56 | {__html: state} | enclosingFunctionBody | state setState useState foo setState safe setState also safe div dangerouslySetInnerHTML __html state |
-| autogenerated/Xss/DomBasedXss/react-use-state.js:32:42:32:56 | {__html: state} | enclosingFunctionName | setStateValueSafe |
-| autogenerated/Xss/DomBasedXss/react-use-state.js:32:42:32:56 | {__html: state} | fileImports | react |
-| autogenerated/Xss/DomBasedXss/react-use-state.js:32:42:32:56 | {__html: state} | receiverName |  |
-| autogenerated/Xss/DomBasedXss/react-use-state.js:32:42:32:56 | {__html: state} | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/react-use-state.js:32:51:32:55 | state | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/react-use-state.js:32:51:32:55 | state | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/react-use-state.js:32:51:32:55 | state | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/react-use-state.js:32:51:32:55 | state | assignedToPropName | __html |
-| autogenerated/Xss/DomBasedXss/react-use-state.js:32:51:32:55 | state | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/react-use-state.js:32:51:32:55 | state | contextFunctionInterfaces | initialState()\nsetStateValue()\nsetStateValueLazy()\nsetStateValueLazy()\nsetStateValueSafe() |
-| autogenerated/Xss/DomBasedXss/react-use-state.js:32:51:32:55 | state | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/react-use-state.js:32:51:32:55 | state | enclosingFunctionBody | state setState useState foo setState safe setState also safe div dangerouslySetInnerHTML __html state |
-| autogenerated/Xss/DomBasedXss/react-use-state.js:32:51:32:55 | state | enclosingFunctionName | setStateValueSafe |
-| autogenerated/Xss/DomBasedXss/react-use-state.js:32:51:32:55 | state | fileImports | react |
-| autogenerated/Xss/DomBasedXss/react-use-state.js:32:51:32:55 | state | receiverName |  |
-| autogenerated/Xss/DomBasedXss/react-use-state.js:32:51:32:55 | state | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:18:19:18:30 | "<a href=\\"" | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:18:19:18:30 | "<a href=\\"" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:18:19:18:30 | "<a href=\\"" | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:18:19:18:30 | "<a href=\\"" | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:18:19:18:30 | "<a href=\\"" | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:18:19:18:30 | "<a href=\\"" | contextFunctionInterfaces | escapeAttr(s)\nescapeHtml(s)\ntest() |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:18:19:18:30 | "<a href=\\"" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:18:19:18:30 | "<a href=\\"" | enclosingFunctionBody | tainted window name elt document createElement elt innerHTML <a href=" escapeAttr tainted "> escapeHtml tainted </a> elt innerHTML <div> escapeAttr tainted </div> regex /[<>'"&]/ regex test tainted elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex test tainted elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex exec tainted elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex exec tainted null elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex exec tainted null elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> elt innerHTML tainted replace /<\\w+/g  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:18:19:18:30 | "<a href=\\"" | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:18:19:18:30 | "<a href=\\"" | fileImports |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:18:19:18:30 | "<a href=\\"" | receiverName |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:18:19:18:30 | "<a href=\\"" | stringConcatenatedWith |  -endpoint- escapeAttr() + '">' + escapeHtml() + '</a>' |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:18:19:18:91 | "<a hre ...  "</a>" | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:18:19:18:91 | "<a hre ...  "</a>" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:18:19:18:91 | "<a hre ...  "</a>" | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:18:19:18:91 | "<a hre ...  "</a>" | assignedToPropName | innerHTML |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:18:19:18:91 | "<a hre ...  "</a>" | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:18:19:18:91 | "<a hre ...  "</a>" | contextFunctionInterfaces | escapeAttr(s)\nescapeHtml(s)\ntest() |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:18:19:18:91 | "<a hre ...  "</a>" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:18:19:18:91 | "<a hre ...  "</a>" | enclosingFunctionBody | tainted window name elt document createElement elt innerHTML <a href=" escapeAttr tainted "> escapeHtml tainted </a> elt innerHTML <div> escapeAttr tainted </div> regex /[<>'"&]/ regex test tainted elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex test tainted elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex exec tainted elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex exec tainted null elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex exec tainted null elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> elt innerHTML tainted replace /<\\w+/g  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:18:19:18:91 | "<a hre ...  "</a>" | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:18:19:18:91 | "<a hre ...  "</a>" | fileImports |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:18:19:18:91 | "<a hre ...  "</a>" | receiverName |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:18:19:18:91 | "<a hre ...  "</a>" | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:18:34:18:52 | escapeAttr(tainted) | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:18:34:18:52 | escapeAttr(tainted) | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:18:34:18:52 | escapeAttr(tainted) | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:18:34:18:52 | escapeAttr(tainted) | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:18:34:18:52 | escapeAttr(tainted) | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:18:34:18:52 | escapeAttr(tainted) | contextFunctionInterfaces | escapeAttr(s)\nescapeHtml(s)\ntest() |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:18:34:18:52 | escapeAttr(tainted) | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:18:34:18:52 | escapeAttr(tainted) | enclosingFunctionBody | tainted window name elt document createElement elt innerHTML <a href=" escapeAttr tainted "> escapeHtml tainted </a> elt innerHTML <div> escapeAttr tainted </div> regex /[<>'"&]/ regex test tainted elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex test tainted elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex exec tainted elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex exec tainted null elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex exec tainted null elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> elt innerHTML tainted replace /<\\w+/g  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:18:34:18:52 | escapeAttr(tainted) | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:18:34:18:52 | escapeAttr(tainted) | fileImports |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:18:34:18:52 | escapeAttr(tainted) | receiverName |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:18:34:18:52 | escapeAttr(tainted) | stringConcatenatedWith | '<a href="' -endpoint- '">' + escapeHtml() + '</a>' |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:18:56:18:60 | "\\">" | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:18:56:18:60 | "\\">" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:18:56:18:60 | "\\">" | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:18:56:18:60 | "\\">" | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:18:56:18:60 | "\\">" | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:18:56:18:60 | "\\">" | contextFunctionInterfaces | escapeAttr(s)\nescapeHtml(s)\ntest() |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:18:56:18:60 | "\\">" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:18:56:18:60 | "\\">" | enclosingFunctionBody | tainted window name elt document createElement elt innerHTML <a href=" escapeAttr tainted "> escapeHtml tainted </a> elt innerHTML <div> escapeAttr tainted </div> regex /[<>'"&]/ regex test tainted elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex test tainted elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex exec tainted elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex exec tainted null elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex exec tainted null elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> elt innerHTML tainted replace /<\\w+/g  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:18:56:18:60 | "\\">" | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:18:56:18:60 | "\\">" | fileImports |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:18:56:18:60 | "\\">" | receiverName |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:18:56:18:60 | "\\">" | stringConcatenatedWith | '<a href="' + escapeAttr() -endpoint- escapeHtml() + '</a>' |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:18:64:18:82 | escapeHtml(tainted) | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:18:64:18:82 | escapeHtml(tainted) | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:18:64:18:82 | escapeHtml(tainted) | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:18:64:18:82 | escapeHtml(tainted) | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:18:64:18:82 | escapeHtml(tainted) | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:18:64:18:82 | escapeHtml(tainted) | contextFunctionInterfaces | escapeAttr(s)\nescapeHtml(s)\ntest() |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:18:64:18:82 | escapeHtml(tainted) | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:18:64:18:82 | escapeHtml(tainted) | enclosingFunctionBody | tainted window name elt document createElement elt innerHTML <a href=" escapeAttr tainted "> escapeHtml tainted </a> elt innerHTML <div> escapeAttr tainted </div> regex /[<>'"&]/ regex test tainted elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex test tainted elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex exec tainted elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex exec tainted null elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex exec tainted null elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> elt innerHTML tainted replace /<\\w+/g  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:18:64:18:82 | escapeHtml(tainted) | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:18:64:18:82 | escapeHtml(tainted) | fileImports |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:18:64:18:82 | escapeHtml(tainted) | receiverName |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:18:64:18:82 | escapeHtml(tainted) | stringConcatenatedWith | '<a href="' + escapeAttr() + '">' -endpoint- '</a>' |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:18:86:18:91 | "</a>" | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:18:86:18:91 | "</a>" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:18:86:18:91 | "</a>" | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:18:86:18:91 | "</a>" | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:18:86:18:91 | "</a>" | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:18:86:18:91 | "</a>" | contextFunctionInterfaces | escapeAttr(s)\nescapeHtml(s)\ntest() |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:18:86:18:91 | "</a>" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:18:86:18:91 | "</a>" | enclosingFunctionBody | tainted window name elt document createElement elt innerHTML <a href=" escapeAttr tainted "> escapeHtml tainted </a> elt innerHTML <div> escapeAttr tainted </div> regex /[<>'"&]/ regex test tainted elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex test tainted elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex exec tainted elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex exec tainted null elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex exec tainted null elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> elt innerHTML tainted replace /<\\w+/g  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:18:86:18:91 | "</a>" | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:18:86:18:91 | "</a>" | fileImports |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:18:86:18:91 | "</a>" | receiverName |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:18:86:18:91 | "</a>" | stringConcatenatedWith | '<a href="' + escapeAttr() + '">' + escapeHtml() -endpoint-  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:19:19:19:25 | "<div>" | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:19:19:19:25 | "<div>" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:19:19:19:25 | "<div>" | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:19:19:19:25 | "<div>" | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:19:19:19:25 | "<div>" | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:19:19:19:25 | "<div>" | contextFunctionInterfaces | escapeAttr(s)\nescapeHtml(s)\ntest() |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:19:19:19:25 | "<div>" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:19:19:19:25 | "<div>" | enclosingFunctionBody | tainted window name elt document createElement elt innerHTML <a href=" escapeAttr tainted "> escapeHtml tainted </a> elt innerHTML <div> escapeAttr tainted </div> regex /[<>'"&]/ regex test tainted elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex test tainted elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex exec tainted elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex exec tainted null elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex exec tainted null elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> elt innerHTML tainted replace /<\\w+/g  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:19:19:19:25 | "<div>" | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:19:19:19:25 | "<div>" | fileImports |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:19:19:19:25 | "<div>" | receiverName |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:19:19:19:25 | "<div>" | stringConcatenatedWith |  -endpoint- escapeAttr() + '</div>' |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:19:19:19:58 | "<div>" ... </div>" | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:19:19:19:58 | "<div>" ... </div>" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:19:19:19:58 | "<div>" ... </div>" | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:19:19:19:58 | "<div>" ... </div>" | assignedToPropName | innerHTML |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:19:19:19:58 | "<div>" ... </div>" | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:19:19:19:58 | "<div>" ... </div>" | contextFunctionInterfaces | escapeAttr(s)\nescapeHtml(s)\ntest() |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:19:19:19:58 | "<div>" ... </div>" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:19:19:19:58 | "<div>" ... </div>" | enclosingFunctionBody | tainted window name elt document createElement elt innerHTML <a href=" escapeAttr tainted "> escapeHtml tainted </a> elt innerHTML <div> escapeAttr tainted </div> regex /[<>'"&]/ regex test tainted elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex test tainted elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex exec tainted elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex exec tainted null elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex exec tainted null elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> elt innerHTML tainted replace /<\\w+/g  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:19:19:19:58 | "<div>" ... </div>" | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:19:19:19:58 | "<div>" ... </div>" | fileImports |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:19:19:19:58 | "<div>" ... </div>" | receiverName |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:19:19:19:58 | "<div>" ... </div>" | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:19:29:19:47 | escapeAttr(tainted) | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:19:29:19:47 | escapeAttr(tainted) | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:19:29:19:47 | escapeAttr(tainted) | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:19:29:19:47 | escapeAttr(tainted) | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:19:29:19:47 | escapeAttr(tainted) | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:19:29:19:47 | escapeAttr(tainted) | contextFunctionInterfaces | escapeAttr(s)\nescapeHtml(s)\ntest() |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:19:29:19:47 | escapeAttr(tainted) | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:19:29:19:47 | escapeAttr(tainted) | enclosingFunctionBody | tainted window name elt document createElement elt innerHTML <a href=" escapeAttr tainted "> escapeHtml tainted </a> elt innerHTML <div> escapeAttr tainted </div> regex /[<>'"&]/ regex test tainted elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex test tainted elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex exec tainted elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex exec tainted null elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex exec tainted null elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> elt innerHTML tainted replace /<\\w+/g  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:19:29:19:47 | escapeAttr(tainted) | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:19:29:19:47 | escapeAttr(tainted) | fileImports |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:19:29:19:47 | escapeAttr(tainted) | receiverName |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:19:29:19:47 | escapeAttr(tainted) | stringConcatenatedWith | '<div>' -endpoint- '</div>' |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:19:51:19:58 | "</div>" | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:19:51:19:58 | "</div>" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:19:51:19:58 | "</div>" | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:19:51:19:58 | "</div>" | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:19:51:19:58 | "</div>" | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:19:51:19:58 | "</div>" | contextFunctionInterfaces | escapeAttr(s)\nescapeHtml(s)\ntest() |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:19:51:19:58 | "</div>" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:19:51:19:58 | "</div>" | enclosingFunctionBody | tainted window name elt document createElement elt innerHTML <a href=" escapeAttr tainted "> escapeHtml tainted </a> elt innerHTML <div> escapeAttr tainted </div> regex /[<>'"&]/ regex test tainted elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex test tainted elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex exec tainted elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex exec tainted null elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex exec tainted null elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> elt innerHTML tainted replace /<\\w+/g  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:19:51:19:58 | "</div>" | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:19:51:19:58 | "</div>" | fileImports |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:19:51:19:58 | "</div>" | receiverName |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:19:51:19:58 | "</div>" | stringConcatenatedWith | '<div>' + escapeAttr() -endpoint-  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:22:18:22:24 | tainted | CalleeFlexibleAccessPath | regex.test |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:22:18:22:24 | tainted | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:22:18:22:24 | tainted | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:22:18:22:24 | tainted | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:22:18:22:24 | tainted | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:22:18:22:24 | tainted | contextFunctionInterfaces | escapeAttr(s)\nescapeHtml(s)\ntest() |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:22:18:22:24 | tainted | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:22:18:22:24 | tainted | enclosingFunctionBody | tainted window name elt document createElement elt innerHTML <a href=" escapeAttr tainted "> escapeHtml tainted </a> elt innerHTML <div> escapeAttr tainted </div> regex /[<>'"&]/ regex test tainted elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex test tainted elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex exec tainted elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex exec tainted null elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex exec tainted null elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> elt innerHTML tainted replace /<\\w+/g  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:22:18:22:24 | tainted | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:22:18:22:24 | tainted | fileImports |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:22:18:22:24 | tainted | receiverName | regex |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:22:18:22:24 | tainted | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:23:21:23:25 | '<b>' | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:23:21:23:25 | '<b>' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:23:21:23:25 | '<b>' | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:23:21:23:25 | '<b>' | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:23:21:23:25 | '<b>' | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:23:21:23:25 | '<b>' | contextFunctionInterfaces | escapeAttr(s)\nescapeHtml(s)\ntest() |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:23:21:23:25 | '<b>' | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:23:21:23:25 | '<b>' | enclosingFunctionBody | tainted window name elt document createElement elt innerHTML <a href=" escapeAttr tainted "> escapeHtml tainted </a> elt innerHTML <div> escapeAttr tainted </div> regex /[<>'"&]/ regex test tainted elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex test tainted elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex exec tainted elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex exec tainted null elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex exec tainted null elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> elt innerHTML tainted replace /<\\w+/g  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:23:21:23:25 | '<b>' | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:23:21:23:25 | '<b>' | fileImports |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:23:21:23:25 | '<b>' | receiverName |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:23:21:23:25 | '<b>' | stringConcatenatedWith |  -endpoint- tainted + '</b>' |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:23:21:23:44 | '<b>' + ...  '</b>' | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:23:21:23:44 | '<b>' + ...  '</b>' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:23:21:23:44 | '<b>' + ...  '</b>' | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:23:21:23:44 | '<b>' + ...  '</b>' | assignedToPropName | innerHTML |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:23:21:23:44 | '<b>' + ...  '</b>' | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:23:21:23:44 | '<b>' + ...  '</b>' | contextFunctionInterfaces | escapeAttr(s)\nescapeHtml(s)\ntest() |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:23:21:23:44 | '<b>' + ...  '</b>' | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:23:21:23:44 | '<b>' + ...  '</b>' | enclosingFunctionBody | tainted window name elt document createElement elt innerHTML <a href=" escapeAttr tainted "> escapeHtml tainted </a> elt innerHTML <div> escapeAttr tainted </div> regex /[<>'"&]/ regex test tainted elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex test tainted elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex exec tainted elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex exec tainted null elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex exec tainted null elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> elt innerHTML tainted replace /<\\w+/g  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:23:21:23:44 | '<b>' + ...  '</b>' | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:23:21:23:44 | '<b>' + ...  '</b>' | fileImports |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:23:21:23:44 | '<b>' + ...  '</b>' | receiverName |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:23:21:23:44 | '<b>' + ...  '</b>' | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:23:29:23:35 | tainted | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:23:29:23:35 | tainted | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:23:29:23:35 | tainted | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:23:29:23:35 | tainted | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:23:29:23:35 | tainted | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:23:29:23:35 | tainted | contextFunctionInterfaces | escapeAttr(s)\nescapeHtml(s)\ntest() |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:23:29:23:35 | tainted | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:23:29:23:35 | tainted | enclosingFunctionBody | tainted window name elt document createElement elt innerHTML <a href=" escapeAttr tainted "> escapeHtml tainted </a> elt innerHTML <div> escapeAttr tainted </div> regex /[<>'"&]/ regex test tainted elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex test tainted elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex exec tainted elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex exec tainted null elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex exec tainted null elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> elt innerHTML tainted replace /<\\w+/g  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:23:29:23:35 | tainted | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:23:29:23:35 | tainted | fileImports |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:23:29:23:35 | tainted | receiverName |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:23:29:23:35 | tainted | stringConcatenatedWith | '<b>' -endpoint- '</b>' |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:23:39:23:44 | '</b>' | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:23:39:23:44 | '</b>' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:23:39:23:44 | '</b>' | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:23:39:23:44 | '</b>' | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:23:39:23:44 | '</b>' | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:23:39:23:44 | '</b>' | contextFunctionInterfaces | escapeAttr(s)\nescapeHtml(s)\ntest() |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:23:39:23:44 | '</b>' | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:23:39:23:44 | '</b>' | enclosingFunctionBody | tainted window name elt document createElement elt innerHTML <a href=" escapeAttr tainted "> escapeHtml tainted </a> elt innerHTML <div> escapeAttr tainted </div> regex /[<>'"&]/ regex test tainted elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex test tainted elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex exec tainted elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex exec tainted null elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex exec tainted null elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> elt innerHTML tainted replace /<\\w+/g  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:23:39:23:44 | '</b>' | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:23:39:23:44 | '</b>' | fileImports |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:23:39:23:44 | '</b>' | receiverName |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:23:39:23:44 | '</b>' | stringConcatenatedWith | '<b>' + tainted -endpoint-  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:25:21:25:25 | '<b>' | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:25:21:25:25 | '<b>' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:25:21:25:25 | '<b>' | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:25:21:25:25 | '<b>' | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:25:21:25:25 | '<b>' | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:25:21:25:25 | '<b>' | contextFunctionInterfaces | escapeAttr(s)\nescapeHtml(s)\ntest() |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:25:21:25:25 | '<b>' | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:25:21:25:25 | '<b>' | enclosingFunctionBody | tainted window name elt document createElement elt innerHTML <a href=" escapeAttr tainted "> escapeHtml tainted </a> elt innerHTML <div> escapeAttr tainted </div> regex /[<>'"&]/ regex test tainted elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex test tainted elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex exec tainted elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex exec tainted null elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex exec tainted null elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> elt innerHTML tainted replace /<\\w+/g  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:25:21:25:25 | '<b>' | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:25:21:25:25 | '<b>' | fileImports |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:25:21:25:25 | '<b>' | receiverName |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:25:21:25:25 | '<b>' | stringConcatenatedWith |  -endpoint- tainted + '</b>' |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:25:21:25:44 | '<b>' + ...  '</b>' | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:25:21:25:44 | '<b>' + ...  '</b>' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:25:21:25:44 | '<b>' + ...  '</b>' | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:25:21:25:44 | '<b>' + ...  '</b>' | assignedToPropName | innerHTML |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:25:21:25:44 | '<b>' + ...  '</b>' | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:25:21:25:44 | '<b>' + ...  '</b>' | contextFunctionInterfaces | escapeAttr(s)\nescapeHtml(s)\ntest() |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:25:21:25:44 | '<b>' + ...  '</b>' | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:25:21:25:44 | '<b>' + ...  '</b>' | enclosingFunctionBody | tainted window name elt document createElement elt innerHTML <a href=" escapeAttr tainted "> escapeHtml tainted </a> elt innerHTML <div> escapeAttr tainted </div> regex /[<>'"&]/ regex test tainted elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex test tainted elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex exec tainted elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex exec tainted null elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex exec tainted null elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> elt innerHTML tainted replace /<\\w+/g  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:25:21:25:44 | '<b>' + ...  '</b>' | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:25:21:25:44 | '<b>' + ...  '</b>' | fileImports |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:25:21:25:44 | '<b>' + ...  '</b>' | receiverName |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:25:21:25:44 | '<b>' + ...  '</b>' | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:25:29:25:35 | tainted | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:25:29:25:35 | tainted | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:25:29:25:35 | tainted | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:25:29:25:35 | tainted | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:25:29:25:35 | tainted | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:25:29:25:35 | tainted | contextFunctionInterfaces | escapeAttr(s)\nescapeHtml(s)\ntest() |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:25:29:25:35 | tainted | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:25:29:25:35 | tainted | enclosingFunctionBody | tainted window name elt document createElement elt innerHTML <a href=" escapeAttr tainted "> escapeHtml tainted </a> elt innerHTML <div> escapeAttr tainted </div> regex /[<>'"&]/ regex test tainted elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex test tainted elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex exec tainted elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex exec tainted null elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex exec tainted null elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> elt innerHTML tainted replace /<\\w+/g  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:25:29:25:35 | tainted | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:25:29:25:35 | tainted | fileImports |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:25:29:25:35 | tainted | receiverName |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:25:29:25:35 | tainted | stringConcatenatedWith | '<b>' -endpoint- '</b>' |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:25:39:25:44 | '</b>' | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:25:39:25:44 | '</b>' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:25:39:25:44 | '</b>' | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:25:39:25:44 | '</b>' | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:25:39:25:44 | '</b>' | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:25:39:25:44 | '</b>' | contextFunctionInterfaces | escapeAttr(s)\nescapeHtml(s)\ntest() |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:25:39:25:44 | '</b>' | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:25:39:25:44 | '</b>' | enclosingFunctionBody | tainted window name elt document createElement elt innerHTML <a href=" escapeAttr tainted "> escapeHtml tainted </a> elt innerHTML <div> escapeAttr tainted </div> regex /[<>'"&]/ regex test tainted elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex test tainted elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex exec tainted elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex exec tainted null elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex exec tainted null elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> elt innerHTML tainted replace /<\\w+/g  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:25:39:25:44 | '</b>' | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:25:39:25:44 | '</b>' | fileImports |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:25:39:25:44 | '</b>' | receiverName |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:25:39:25:44 | '</b>' | stringConcatenatedWith | '<b>' + tainted -endpoint-  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:27:19:27:25 | tainted | CalleeFlexibleAccessPath | regex.test |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:27:19:27:25 | tainted | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:27:19:27:25 | tainted | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:27:19:27:25 | tainted | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:27:19:27:25 | tainted | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:27:19:27:25 | tainted | contextFunctionInterfaces | escapeAttr(s)\nescapeHtml(s)\ntest() |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:27:19:27:25 | tainted | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:27:19:27:25 | tainted | enclosingFunctionBody | tainted window name elt document createElement elt innerHTML <a href=" escapeAttr tainted "> escapeHtml tainted </a> elt innerHTML <div> escapeAttr tainted </div> regex /[<>'"&]/ regex test tainted elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex test tainted elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex exec tainted elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex exec tainted null elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex exec tainted null elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> elt innerHTML tainted replace /<\\w+/g  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:27:19:27:25 | tainted | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:27:19:27:25 | tainted | fileImports |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:27:19:27:25 | tainted | receiverName | regex |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:27:19:27:25 | tainted | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:28:21:28:25 | '<b>' | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:28:21:28:25 | '<b>' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:28:21:28:25 | '<b>' | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:28:21:28:25 | '<b>' | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:28:21:28:25 | '<b>' | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:28:21:28:25 | '<b>' | contextFunctionInterfaces | escapeAttr(s)\nescapeHtml(s)\ntest() |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:28:21:28:25 | '<b>' | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:28:21:28:25 | '<b>' | enclosingFunctionBody | tainted window name elt document createElement elt innerHTML <a href=" escapeAttr tainted "> escapeHtml tainted </a> elt innerHTML <div> escapeAttr tainted </div> regex /[<>'"&]/ regex test tainted elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex test tainted elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex exec tainted elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex exec tainted null elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex exec tainted null elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> elt innerHTML tainted replace /<\\w+/g  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:28:21:28:25 | '<b>' | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:28:21:28:25 | '<b>' | fileImports |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:28:21:28:25 | '<b>' | receiverName |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:28:21:28:25 | '<b>' | stringConcatenatedWith |  -endpoint- tainted + '</b>' |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:28:21:28:44 | '<b>' + ...  '</b>' | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:28:21:28:44 | '<b>' + ...  '</b>' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:28:21:28:44 | '<b>' + ...  '</b>' | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:28:21:28:44 | '<b>' + ...  '</b>' | assignedToPropName | innerHTML |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:28:21:28:44 | '<b>' + ...  '</b>' | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:28:21:28:44 | '<b>' + ...  '</b>' | contextFunctionInterfaces | escapeAttr(s)\nescapeHtml(s)\ntest() |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:28:21:28:44 | '<b>' + ...  '</b>' | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:28:21:28:44 | '<b>' + ...  '</b>' | enclosingFunctionBody | tainted window name elt document createElement elt innerHTML <a href=" escapeAttr tainted "> escapeHtml tainted </a> elt innerHTML <div> escapeAttr tainted </div> regex /[<>'"&]/ regex test tainted elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex test tainted elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex exec tainted elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex exec tainted null elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex exec tainted null elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> elt innerHTML tainted replace /<\\w+/g  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:28:21:28:44 | '<b>' + ...  '</b>' | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:28:21:28:44 | '<b>' + ...  '</b>' | fileImports |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:28:21:28:44 | '<b>' + ...  '</b>' | receiverName |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:28:21:28:44 | '<b>' + ...  '</b>' | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:28:29:28:35 | tainted | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:28:29:28:35 | tainted | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:28:29:28:35 | tainted | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:28:29:28:35 | tainted | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:28:29:28:35 | tainted | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:28:29:28:35 | tainted | contextFunctionInterfaces | escapeAttr(s)\nescapeHtml(s)\ntest() |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:28:29:28:35 | tainted | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:28:29:28:35 | tainted | enclosingFunctionBody | tainted window name elt document createElement elt innerHTML <a href=" escapeAttr tainted "> escapeHtml tainted </a> elt innerHTML <div> escapeAttr tainted </div> regex /[<>'"&]/ regex test tainted elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex test tainted elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex exec tainted elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex exec tainted null elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex exec tainted null elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> elt innerHTML tainted replace /<\\w+/g  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:28:29:28:35 | tainted | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:28:29:28:35 | tainted | fileImports |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:28:29:28:35 | tainted | receiverName |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:28:29:28:35 | tainted | stringConcatenatedWith | '<b>' -endpoint- '</b>' |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:28:39:28:44 | '</b>' | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:28:39:28:44 | '</b>' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:28:39:28:44 | '</b>' | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:28:39:28:44 | '</b>' | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:28:39:28:44 | '</b>' | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:28:39:28:44 | '</b>' | contextFunctionInterfaces | escapeAttr(s)\nescapeHtml(s)\ntest() |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:28:39:28:44 | '</b>' | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:28:39:28:44 | '</b>' | enclosingFunctionBody | tainted window name elt document createElement elt innerHTML <a href=" escapeAttr tainted "> escapeHtml tainted </a> elt innerHTML <div> escapeAttr tainted </div> regex /[<>'"&]/ regex test tainted elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex test tainted elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex exec tainted elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex exec tainted null elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex exec tainted null elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> elt innerHTML tainted replace /<\\w+/g  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:28:39:28:44 | '</b>' | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:28:39:28:44 | '</b>' | fileImports |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:28:39:28:44 | '</b>' | receiverName |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:28:39:28:44 | '</b>' | stringConcatenatedWith | '<b>' + tainted -endpoint-  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:30:21:30:25 | '<b>' | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:30:21:30:25 | '<b>' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:30:21:30:25 | '<b>' | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:30:21:30:25 | '<b>' | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:30:21:30:25 | '<b>' | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:30:21:30:25 | '<b>' | contextFunctionInterfaces | escapeAttr(s)\nescapeHtml(s)\ntest() |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:30:21:30:25 | '<b>' | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:30:21:30:25 | '<b>' | enclosingFunctionBody | tainted window name elt document createElement elt innerHTML <a href=" escapeAttr tainted "> escapeHtml tainted </a> elt innerHTML <div> escapeAttr tainted </div> regex /[<>'"&]/ regex test tainted elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex test tainted elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex exec tainted elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex exec tainted null elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex exec tainted null elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> elt innerHTML tainted replace /<\\w+/g  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:30:21:30:25 | '<b>' | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:30:21:30:25 | '<b>' | fileImports |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:30:21:30:25 | '<b>' | receiverName |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:30:21:30:25 | '<b>' | stringConcatenatedWith |  -endpoint- tainted + '</b>' |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:30:21:30:44 | '<b>' + ...  '</b>' | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:30:21:30:44 | '<b>' + ...  '</b>' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:30:21:30:44 | '<b>' + ...  '</b>' | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:30:21:30:44 | '<b>' + ...  '</b>' | assignedToPropName | innerHTML |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:30:21:30:44 | '<b>' + ...  '</b>' | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:30:21:30:44 | '<b>' + ...  '</b>' | contextFunctionInterfaces | escapeAttr(s)\nescapeHtml(s)\ntest() |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:30:21:30:44 | '<b>' + ...  '</b>' | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:30:21:30:44 | '<b>' + ...  '</b>' | enclosingFunctionBody | tainted window name elt document createElement elt innerHTML <a href=" escapeAttr tainted "> escapeHtml tainted </a> elt innerHTML <div> escapeAttr tainted </div> regex /[<>'"&]/ regex test tainted elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex test tainted elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex exec tainted elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex exec tainted null elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex exec tainted null elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> elt innerHTML tainted replace /<\\w+/g  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:30:21:30:44 | '<b>' + ...  '</b>' | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:30:21:30:44 | '<b>' + ...  '</b>' | fileImports |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:30:21:30:44 | '<b>' + ...  '</b>' | receiverName |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:30:21:30:44 | '<b>' + ...  '</b>' | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:30:29:30:35 | tainted | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:30:29:30:35 | tainted | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:30:29:30:35 | tainted | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:30:29:30:35 | tainted | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:30:29:30:35 | tainted | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:30:29:30:35 | tainted | contextFunctionInterfaces | escapeAttr(s)\nescapeHtml(s)\ntest() |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:30:29:30:35 | tainted | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:30:29:30:35 | tainted | enclosingFunctionBody | tainted window name elt document createElement elt innerHTML <a href=" escapeAttr tainted "> escapeHtml tainted </a> elt innerHTML <div> escapeAttr tainted </div> regex /[<>'"&]/ regex test tainted elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex test tainted elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex exec tainted elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex exec tainted null elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex exec tainted null elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> elt innerHTML tainted replace /<\\w+/g  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:30:29:30:35 | tainted | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:30:29:30:35 | tainted | fileImports |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:30:29:30:35 | tainted | receiverName |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:30:29:30:35 | tainted | stringConcatenatedWith | '<b>' -endpoint- '</b>' |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:30:39:30:44 | '</b>' | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:30:39:30:44 | '</b>' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:30:39:30:44 | '</b>' | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:30:39:30:44 | '</b>' | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:30:39:30:44 | '</b>' | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:30:39:30:44 | '</b>' | contextFunctionInterfaces | escapeAttr(s)\nescapeHtml(s)\ntest() |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:30:39:30:44 | '</b>' | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:30:39:30:44 | '</b>' | enclosingFunctionBody | tainted window name elt document createElement elt innerHTML <a href=" escapeAttr tainted "> escapeHtml tainted </a> elt innerHTML <div> escapeAttr tainted </div> regex /[<>'"&]/ regex test tainted elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex test tainted elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex exec tainted elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex exec tainted null elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex exec tainted null elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> elt innerHTML tainted replace /<\\w+/g  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:30:39:30:44 | '</b>' | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:30:39:30:44 | '</b>' | fileImports |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:30:39:30:44 | '</b>' | receiverName |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:30:39:30:44 | '</b>' | stringConcatenatedWith | '<b>' + tainted -endpoint-  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:32:18:32:24 | tainted | CalleeFlexibleAccessPath | regex.exec |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:32:18:32:24 | tainted | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:32:18:32:24 | tainted | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:32:18:32:24 | tainted | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:32:18:32:24 | tainted | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:32:18:32:24 | tainted | contextFunctionInterfaces | escapeAttr(s)\nescapeHtml(s)\ntest() |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:32:18:32:24 | tainted | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:32:18:32:24 | tainted | enclosingFunctionBody | tainted window name elt document createElement elt innerHTML <a href=" escapeAttr tainted "> escapeHtml tainted </a> elt innerHTML <div> escapeAttr tainted </div> regex /[<>'"&]/ regex test tainted elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex test tainted elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex exec tainted elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex exec tainted null elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex exec tainted null elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> elt innerHTML tainted replace /<\\w+/g  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:32:18:32:24 | tainted | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:32:18:32:24 | tainted | fileImports |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:32:18:32:24 | tainted | receiverName | regex |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:32:18:32:24 | tainted | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:33:21:33:25 | '<b>' | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:33:21:33:25 | '<b>' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:33:21:33:25 | '<b>' | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:33:21:33:25 | '<b>' | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:33:21:33:25 | '<b>' | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:33:21:33:25 | '<b>' | contextFunctionInterfaces | escapeAttr(s)\nescapeHtml(s)\ntest() |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:33:21:33:25 | '<b>' | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:33:21:33:25 | '<b>' | enclosingFunctionBody | tainted window name elt document createElement elt innerHTML <a href=" escapeAttr tainted "> escapeHtml tainted </a> elt innerHTML <div> escapeAttr tainted </div> regex /[<>'"&]/ regex test tainted elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex test tainted elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex exec tainted elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex exec tainted null elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex exec tainted null elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> elt innerHTML tainted replace /<\\w+/g  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:33:21:33:25 | '<b>' | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:33:21:33:25 | '<b>' | fileImports |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:33:21:33:25 | '<b>' | receiverName |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:33:21:33:25 | '<b>' | stringConcatenatedWith |  -endpoint- tainted + '</b>' |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:33:21:33:44 | '<b>' + ...  '</b>' | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:33:21:33:44 | '<b>' + ...  '</b>' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:33:21:33:44 | '<b>' + ...  '</b>' | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:33:21:33:44 | '<b>' + ...  '</b>' | assignedToPropName | innerHTML |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:33:21:33:44 | '<b>' + ...  '</b>' | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:33:21:33:44 | '<b>' + ...  '</b>' | contextFunctionInterfaces | escapeAttr(s)\nescapeHtml(s)\ntest() |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:33:21:33:44 | '<b>' + ...  '</b>' | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:33:21:33:44 | '<b>' + ...  '</b>' | enclosingFunctionBody | tainted window name elt document createElement elt innerHTML <a href=" escapeAttr tainted "> escapeHtml tainted </a> elt innerHTML <div> escapeAttr tainted </div> regex /[<>'"&]/ regex test tainted elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex test tainted elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex exec tainted elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex exec tainted null elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex exec tainted null elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> elt innerHTML tainted replace /<\\w+/g  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:33:21:33:44 | '<b>' + ...  '</b>' | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:33:21:33:44 | '<b>' + ...  '</b>' | fileImports |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:33:21:33:44 | '<b>' + ...  '</b>' | receiverName |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:33:21:33:44 | '<b>' + ...  '</b>' | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:33:29:33:35 | tainted | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:33:29:33:35 | tainted | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:33:29:33:35 | tainted | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:33:29:33:35 | tainted | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:33:29:33:35 | tainted | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:33:29:33:35 | tainted | contextFunctionInterfaces | escapeAttr(s)\nescapeHtml(s)\ntest() |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:33:29:33:35 | tainted | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:33:29:33:35 | tainted | enclosingFunctionBody | tainted window name elt document createElement elt innerHTML <a href=" escapeAttr tainted "> escapeHtml tainted </a> elt innerHTML <div> escapeAttr tainted </div> regex /[<>'"&]/ regex test tainted elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex test tainted elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex exec tainted elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex exec tainted null elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex exec tainted null elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> elt innerHTML tainted replace /<\\w+/g  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:33:29:33:35 | tainted | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:33:29:33:35 | tainted | fileImports |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:33:29:33:35 | tainted | receiverName |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:33:29:33:35 | tainted | stringConcatenatedWith | '<b>' -endpoint- '</b>' |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:33:39:33:44 | '</b>' | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:33:39:33:44 | '</b>' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:33:39:33:44 | '</b>' | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:33:39:33:44 | '</b>' | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:33:39:33:44 | '</b>' | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:33:39:33:44 | '</b>' | contextFunctionInterfaces | escapeAttr(s)\nescapeHtml(s)\ntest() |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:33:39:33:44 | '</b>' | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:33:39:33:44 | '</b>' | enclosingFunctionBody | tainted window name elt document createElement elt innerHTML <a href=" escapeAttr tainted "> escapeHtml tainted </a> elt innerHTML <div> escapeAttr tainted </div> regex /[<>'"&]/ regex test tainted elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex test tainted elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex exec tainted elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex exec tainted null elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex exec tainted null elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> elt innerHTML tainted replace /<\\w+/g  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:33:39:33:44 | '</b>' | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:33:39:33:44 | '</b>' | fileImports |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:33:39:33:44 | '</b>' | receiverName |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:33:39:33:44 | '</b>' | stringConcatenatedWith | '<b>' + tainted -endpoint-  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:35:21:35:25 | '<b>' | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:35:21:35:25 | '<b>' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:35:21:35:25 | '<b>' | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:35:21:35:25 | '<b>' | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:35:21:35:25 | '<b>' | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:35:21:35:25 | '<b>' | contextFunctionInterfaces | escapeAttr(s)\nescapeHtml(s)\ntest() |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:35:21:35:25 | '<b>' | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:35:21:35:25 | '<b>' | enclosingFunctionBody | tainted window name elt document createElement elt innerHTML <a href=" escapeAttr tainted "> escapeHtml tainted </a> elt innerHTML <div> escapeAttr tainted </div> regex /[<>'"&]/ regex test tainted elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex test tainted elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex exec tainted elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex exec tainted null elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex exec tainted null elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> elt innerHTML tainted replace /<\\w+/g  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:35:21:35:25 | '<b>' | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:35:21:35:25 | '<b>' | fileImports |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:35:21:35:25 | '<b>' | receiverName |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:35:21:35:25 | '<b>' | stringConcatenatedWith |  -endpoint- tainted + '</b>' |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:35:21:35:44 | '<b>' + ...  '</b>' | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:35:21:35:44 | '<b>' + ...  '</b>' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:35:21:35:44 | '<b>' + ...  '</b>' | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:35:21:35:44 | '<b>' + ...  '</b>' | assignedToPropName | innerHTML |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:35:21:35:44 | '<b>' + ...  '</b>' | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:35:21:35:44 | '<b>' + ...  '</b>' | contextFunctionInterfaces | escapeAttr(s)\nescapeHtml(s)\ntest() |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:35:21:35:44 | '<b>' + ...  '</b>' | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:35:21:35:44 | '<b>' + ...  '</b>' | enclosingFunctionBody | tainted window name elt document createElement elt innerHTML <a href=" escapeAttr tainted "> escapeHtml tainted </a> elt innerHTML <div> escapeAttr tainted </div> regex /[<>'"&]/ regex test tainted elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex test tainted elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex exec tainted elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex exec tainted null elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex exec tainted null elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> elt innerHTML tainted replace /<\\w+/g  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:35:21:35:44 | '<b>' + ...  '</b>' | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:35:21:35:44 | '<b>' + ...  '</b>' | fileImports |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:35:21:35:44 | '<b>' + ...  '</b>' | receiverName |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:35:21:35:44 | '<b>' + ...  '</b>' | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:35:29:35:35 | tainted | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:35:29:35:35 | tainted | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:35:29:35:35 | tainted | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:35:29:35:35 | tainted | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:35:29:35:35 | tainted | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:35:29:35:35 | tainted | contextFunctionInterfaces | escapeAttr(s)\nescapeHtml(s)\ntest() |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:35:29:35:35 | tainted | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:35:29:35:35 | tainted | enclosingFunctionBody | tainted window name elt document createElement elt innerHTML <a href=" escapeAttr tainted "> escapeHtml tainted </a> elt innerHTML <div> escapeAttr tainted </div> regex /[<>'"&]/ regex test tainted elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex test tainted elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex exec tainted elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex exec tainted null elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex exec tainted null elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> elt innerHTML tainted replace /<\\w+/g  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:35:29:35:35 | tainted | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:35:29:35:35 | tainted | fileImports |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:35:29:35:35 | tainted | receiverName |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:35:29:35:35 | tainted | stringConcatenatedWith | '<b>' -endpoint- '</b>' |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:35:39:35:44 | '</b>' | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:35:39:35:44 | '</b>' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:35:39:35:44 | '</b>' | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:35:39:35:44 | '</b>' | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:35:39:35:44 | '</b>' | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:35:39:35:44 | '</b>' | contextFunctionInterfaces | escapeAttr(s)\nescapeHtml(s)\ntest() |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:35:39:35:44 | '</b>' | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:35:39:35:44 | '</b>' | enclosingFunctionBody | tainted window name elt document createElement elt innerHTML <a href=" escapeAttr tainted "> escapeHtml tainted </a> elt innerHTML <div> escapeAttr tainted </div> regex /[<>'"&]/ regex test tainted elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex test tainted elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex exec tainted elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex exec tainted null elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex exec tainted null elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> elt innerHTML tainted replace /<\\w+/g  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:35:39:35:44 | '</b>' | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:35:39:35:44 | '</b>' | fileImports |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:35:39:35:44 | '</b>' | receiverName |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:35:39:35:44 | '</b>' | stringConcatenatedWith | '<b>' + tainted -endpoint-  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:38:21:38:25 | '<b>' | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:38:21:38:25 | '<b>' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:38:21:38:25 | '<b>' | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:38:21:38:25 | '<b>' | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:38:21:38:25 | '<b>' | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:38:21:38:25 | '<b>' | contextFunctionInterfaces | escapeAttr(s)\nescapeHtml(s)\ntest() |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:38:21:38:25 | '<b>' | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:38:21:38:25 | '<b>' | enclosingFunctionBody | tainted window name elt document createElement elt innerHTML <a href=" escapeAttr tainted "> escapeHtml tainted </a> elt innerHTML <div> escapeAttr tainted </div> regex /[<>'"&]/ regex test tainted elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex test tainted elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex exec tainted elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex exec tainted null elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex exec tainted null elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> elt innerHTML tainted replace /<\\w+/g  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:38:21:38:25 | '<b>' | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:38:21:38:25 | '<b>' | fileImports |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:38:21:38:25 | '<b>' | receiverName |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:38:21:38:25 | '<b>' | stringConcatenatedWith |  -endpoint- tainted + '</b>' |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:38:21:38:44 | '<b>' + ...  '</b>' | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:38:21:38:44 | '<b>' + ...  '</b>' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:38:21:38:44 | '<b>' + ...  '</b>' | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:38:21:38:44 | '<b>' + ...  '</b>' | assignedToPropName | innerHTML |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:38:21:38:44 | '<b>' + ...  '</b>' | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:38:21:38:44 | '<b>' + ...  '</b>' | contextFunctionInterfaces | escapeAttr(s)\nescapeHtml(s)\ntest() |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:38:21:38:44 | '<b>' + ...  '</b>' | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:38:21:38:44 | '<b>' + ...  '</b>' | enclosingFunctionBody | tainted window name elt document createElement elt innerHTML <a href=" escapeAttr tainted "> escapeHtml tainted </a> elt innerHTML <div> escapeAttr tainted </div> regex /[<>'"&]/ regex test tainted elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex test tainted elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex exec tainted elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex exec tainted null elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex exec tainted null elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> elt innerHTML tainted replace /<\\w+/g  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:38:21:38:44 | '<b>' + ...  '</b>' | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:38:21:38:44 | '<b>' + ...  '</b>' | fileImports |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:38:21:38:44 | '<b>' + ...  '</b>' | receiverName |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:38:21:38:44 | '<b>' + ...  '</b>' | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:38:29:38:35 | tainted | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:38:29:38:35 | tainted | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:38:29:38:35 | tainted | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:38:29:38:35 | tainted | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:38:29:38:35 | tainted | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:38:29:38:35 | tainted | contextFunctionInterfaces | escapeAttr(s)\nescapeHtml(s)\ntest() |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:38:29:38:35 | tainted | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:38:29:38:35 | tainted | enclosingFunctionBody | tainted window name elt document createElement elt innerHTML <a href=" escapeAttr tainted "> escapeHtml tainted </a> elt innerHTML <div> escapeAttr tainted </div> regex /[<>'"&]/ regex test tainted elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex test tainted elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex exec tainted elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex exec tainted null elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex exec tainted null elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> elt innerHTML tainted replace /<\\w+/g  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:38:29:38:35 | tainted | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:38:29:38:35 | tainted | fileImports |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:38:29:38:35 | tainted | receiverName |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:38:29:38:35 | tainted | stringConcatenatedWith | '<b>' -endpoint- '</b>' |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:38:39:38:44 | '</b>' | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:38:39:38:44 | '</b>' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:38:39:38:44 | '</b>' | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:38:39:38:44 | '</b>' | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:38:39:38:44 | '</b>' | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:38:39:38:44 | '</b>' | contextFunctionInterfaces | escapeAttr(s)\nescapeHtml(s)\ntest() |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:38:39:38:44 | '</b>' | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:38:39:38:44 | '</b>' | enclosingFunctionBody | tainted window name elt document createElement elt innerHTML <a href=" escapeAttr tainted "> escapeHtml tainted </a> elt innerHTML <div> escapeAttr tainted </div> regex /[<>'"&]/ regex test tainted elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex test tainted elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex exec tainted elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex exec tainted null elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex exec tainted null elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> elt innerHTML tainted replace /<\\w+/g  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:38:39:38:44 | '</b>' | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:38:39:38:44 | '</b>' | fileImports |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:38:39:38:44 | '</b>' | receiverName |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:38:39:38:44 | '</b>' | stringConcatenatedWith | '<b>' + tainted -endpoint-  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:40:21:40:25 | '<b>' | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:40:21:40:25 | '<b>' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:40:21:40:25 | '<b>' | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:40:21:40:25 | '<b>' | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:40:21:40:25 | '<b>' | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:40:21:40:25 | '<b>' | contextFunctionInterfaces | escapeAttr(s)\nescapeHtml(s)\ntest() |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:40:21:40:25 | '<b>' | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:40:21:40:25 | '<b>' | enclosingFunctionBody | tainted window name elt document createElement elt innerHTML <a href=" escapeAttr tainted "> escapeHtml tainted </a> elt innerHTML <div> escapeAttr tainted </div> regex /[<>'"&]/ regex test tainted elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex test tainted elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex exec tainted elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex exec tainted null elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex exec tainted null elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> elt innerHTML tainted replace /<\\w+/g  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:40:21:40:25 | '<b>' | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:40:21:40:25 | '<b>' | fileImports |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:40:21:40:25 | '<b>' | receiverName |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:40:21:40:25 | '<b>' | stringConcatenatedWith |  -endpoint- tainted + '</b>' |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:40:21:40:44 | '<b>' + ...  '</b>' | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:40:21:40:44 | '<b>' + ...  '</b>' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:40:21:40:44 | '<b>' + ...  '</b>' | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:40:21:40:44 | '<b>' + ...  '</b>' | assignedToPropName | innerHTML |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:40:21:40:44 | '<b>' + ...  '</b>' | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:40:21:40:44 | '<b>' + ...  '</b>' | contextFunctionInterfaces | escapeAttr(s)\nescapeHtml(s)\ntest() |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:40:21:40:44 | '<b>' + ...  '</b>' | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:40:21:40:44 | '<b>' + ...  '</b>' | enclosingFunctionBody | tainted window name elt document createElement elt innerHTML <a href=" escapeAttr tainted "> escapeHtml tainted </a> elt innerHTML <div> escapeAttr tainted </div> regex /[<>'"&]/ regex test tainted elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex test tainted elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex exec tainted elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex exec tainted null elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex exec tainted null elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> elt innerHTML tainted replace /<\\w+/g  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:40:21:40:44 | '<b>' + ...  '</b>' | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:40:21:40:44 | '<b>' + ...  '</b>' | fileImports |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:40:21:40:44 | '<b>' + ...  '</b>' | receiverName |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:40:21:40:44 | '<b>' + ...  '</b>' | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:40:29:40:35 | tainted | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:40:29:40:35 | tainted | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:40:29:40:35 | tainted | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:40:29:40:35 | tainted | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:40:29:40:35 | tainted | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:40:29:40:35 | tainted | contextFunctionInterfaces | escapeAttr(s)\nescapeHtml(s)\ntest() |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:40:29:40:35 | tainted | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:40:29:40:35 | tainted | enclosingFunctionBody | tainted window name elt document createElement elt innerHTML <a href=" escapeAttr tainted "> escapeHtml tainted </a> elt innerHTML <div> escapeAttr tainted </div> regex /[<>'"&]/ regex test tainted elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex test tainted elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex exec tainted elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex exec tainted null elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex exec tainted null elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> elt innerHTML tainted replace /<\\w+/g  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:40:29:40:35 | tainted | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:40:29:40:35 | tainted | fileImports |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:40:29:40:35 | tainted | receiverName |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:40:29:40:35 | tainted | stringConcatenatedWith | '<b>' -endpoint- '</b>' |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:40:39:40:44 | '</b>' | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:40:39:40:44 | '</b>' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:40:39:40:44 | '</b>' | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:40:39:40:44 | '</b>' | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:40:39:40:44 | '</b>' | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:40:39:40:44 | '</b>' | contextFunctionInterfaces | escapeAttr(s)\nescapeHtml(s)\ntest() |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:40:39:40:44 | '</b>' | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:40:39:40:44 | '</b>' | enclosingFunctionBody | tainted window name elt document createElement elt innerHTML <a href=" escapeAttr tainted "> escapeHtml tainted </a> elt innerHTML <div> escapeAttr tainted </div> regex /[<>'"&]/ regex test tainted elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex test tainted elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex exec tainted elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex exec tainted null elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex exec tainted null elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> elt innerHTML tainted replace /<\\w+/g  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:40:39:40:44 | '</b>' | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:40:39:40:44 | '</b>' | fileImports |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:40:39:40:44 | '</b>' | receiverName |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:40:39:40:44 | '</b>' | stringConcatenatedWith | '<b>' + tainted -endpoint-  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:43:21:43:25 | '<b>' | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:43:21:43:25 | '<b>' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:43:21:43:25 | '<b>' | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:43:21:43:25 | '<b>' | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:43:21:43:25 | '<b>' | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:43:21:43:25 | '<b>' | contextFunctionInterfaces | escapeAttr(s)\nescapeHtml(s)\ntest() |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:43:21:43:25 | '<b>' | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:43:21:43:25 | '<b>' | enclosingFunctionBody | tainted window name elt document createElement elt innerHTML <a href=" escapeAttr tainted "> escapeHtml tainted </a> elt innerHTML <div> escapeAttr tainted </div> regex /[<>'"&]/ regex test tainted elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex test tainted elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex exec tainted elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex exec tainted null elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex exec tainted null elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> elt innerHTML tainted replace /<\\w+/g  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:43:21:43:25 | '<b>' | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:43:21:43:25 | '<b>' | fileImports |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:43:21:43:25 | '<b>' | receiverName |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:43:21:43:25 | '<b>' | stringConcatenatedWith |  -endpoint- tainted + '</b>' |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:43:21:43:44 | '<b>' + ...  '</b>' | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:43:21:43:44 | '<b>' + ...  '</b>' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:43:21:43:44 | '<b>' + ...  '</b>' | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:43:21:43:44 | '<b>' + ...  '</b>' | assignedToPropName | innerHTML |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:43:21:43:44 | '<b>' + ...  '</b>' | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:43:21:43:44 | '<b>' + ...  '</b>' | contextFunctionInterfaces | escapeAttr(s)\nescapeHtml(s)\ntest() |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:43:21:43:44 | '<b>' + ...  '</b>' | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:43:21:43:44 | '<b>' + ...  '</b>' | enclosingFunctionBody | tainted window name elt document createElement elt innerHTML <a href=" escapeAttr tainted "> escapeHtml tainted </a> elt innerHTML <div> escapeAttr tainted </div> regex /[<>'"&]/ regex test tainted elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex test tainted elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex exec tainted elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex exec tainted null elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex exec tainted null elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> elt innerHTML tainted replace /<\\w+/g  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:43:21:43:44 | '<b>' + ...  '</b>' | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:43:21:43:44 | '<b>' + ...  '</b>' | fileImports |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:43:21:43:44 | '<b>' + ...  '</b>' | receiverName |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:43:21:43:44 | '<b>' + ...  '</b>' | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:43:29:43:35 | tainted | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:43:29:43:35 | tainted | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:43:29:43:35 | tainted | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:43:29:43:35 | tainted | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:43:29:43:35 | tainted | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:43:29:43:35 | tainted | contextFunctionInterfaces | escapeAttr(s)\nescapeHtml(s)\ntest() |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:43:29:43:35 | tainted | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:43:29:43:35 | tainted | enclosingFunctionBody | tainted window name elt document createElement elt innerHTML <a href=" escapeAttr tainted "> escapeHtml tainted </a> elt innerHTML <div> escapeAttr tainted </div> regex /[<>'"&]/ regex test tainted elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex test tainted elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex exec tainted elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex exec tainted null elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex exec tainted null elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> elt innerHTML tainted replace /<\\w+/g  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:43:29:43:35 | tainted | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:43:29:43:35 | tainted | fileImports |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:43:29:43:35 | tainted | receiverName |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:43:29:43:35 | tainted | stringConcatenatedWith | '<b>' -endpoint- '</b>' |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:43:39:43:44 | '</b>' | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:43:39:43:44 | '</b>' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:43:39:43:44 | '</b>' | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:43:39:43:44 | '</b>' | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:43:39:43:44 | '</b>' | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:43:39:43:44 | '</b>' | contextFunctionInterfaces | escapeAttr(s)\nescapeHtml(s)\ntest() |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:43:39:43:44 | '</b>' | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:43:39:43:44 | '</b>' | enclosingFunctionBody | tainted window name elt document createElement elt innerHTML <a href=" escapeAttr tainted "> escapeHtml tainted </a> elt innerHTML <div> escapeAttr tainted </div> regex /[<>'"&]/ regex test tainted elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex test tainted elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex exec tainted elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex exec tainted null elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex exec tainted null elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> elt innerHTML tainted replace /<\\w+/g  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:43:39:43:44 | '</b>' | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:43:39:43:44 | '</b>' | fileImports |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:43:39:43:44 | '</b>' | receiverName |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:43:39:43:44 | '</b>' | stringConcatenatedWith | '<b>' + tainted -endpoint-  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:45:21:45:25 | '<b>' | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:45:21:45:25 | '<b>' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:45:21:45:25 | '<b>' | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:45:21:45:25 | '<b>' | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:45:21:45:25 | '<b>' | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:45:21:45:25 | '<b>' | contextFunctionInterfaces | escapeAttr(s)\nescapeHtml(s)\ntest() |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:45:21:45:25 | '<b>' | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:45:21:45:25 | '<b>' | enclosingFunctionBody | tainted window name elt document createElement elt innerHTML <a href=" escapeAttr tainted "> escapeHtml tainted </a> elt innerHTML <div> escapeAttr tainted </div> regex /[<>'"&]/ regex test tainted elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex test tainted elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex exec tainted elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex exec tainted null elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex exec tainted null elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> elt innerHTML tainted replace /<\\w+/g  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:45:21:45:25 | '<b>' | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:45:21:45:25 | '<b>' | fileImports |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:45:21:45:25 | '<b>' | receiverName |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:45:21:45:25 | '<b>' | stringConcatenatedWith |  -endpoint- tainted + '</b>' |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:45:21:45:44 | '<b>' + ...  '</b>' | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:45:21:45:44 | '<b>' + ...  '</b>' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:45:21:45:44 | '<b>' + ...  '</b>' | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:45:21:45:44 | '<b>' + ...  '</b>' | assignedToPropName | innerHTML |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:45:21:45:44 | '<b>' + ...  '</b>' | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:45:21:45:44 | '<b>' + ...  '</b>' | contextFunctionInterfaces | escapeAttr(s)\nescapeHtml(s)\ntest() |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:45:21:45:44 | '<b>' + ...  '</b>' | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:45:21:45:44 | '<b>' + ...  '</b>' | enclosingFunctionBody | tainted window name elt document createElement elt innerHTML <a href=" escapeAttr tainted "> escapeHtml tainted </a> elt innerHTML <div> escapeAttr tainted </div> regex /[<>'"&]/ regex test tainted elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex test tainted elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex exec tainted elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex exec tainted null elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex exec tainted null elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> elt innerHTML tainted replace /<\\w+/g  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:45:21:45:44 | '<b>' + ...  '</b>' | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:45:21:45:44 | '<b>' + ...  '</b>' | fileImports |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:45:21:45:44 | '<b>' + ...  '</b>' | receiverName |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:45:21:45:44 | '<b>' + ...  '</b>' | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:45:29:45:35 | tainted | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:45:29:45:35 | tainted | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:45:29:45:35 | tainted | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:45:29:45:35 | tainted | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:45:29:45:35 | tainted | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:45:29:45:35 | tainted | contextFunctionInterfaces | escapeAttr(s)\nescapeHtml(s)\ntest() |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:45:29:45:35 | tainted | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:45:29:45:35 | tainted | enclosingFunctionBody | tainted window name elt document createElement elt innerHTML <a href=" escapeAttr tainted "> escapeHtml tainted </a> elt innerHTML <div> escapeAttr tainted </div> regex /[<>'"&]/ regex test tainted elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex test tainted elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex exec tainted elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex exec tainted null elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex exec tainted null elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> elt innerHTML tainted replace /<\\w+/g  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:45:29:45:35 | tainted | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:45:29:45:35 | tainted | fileImports |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:45:29:45:35 | tainted | receiverName |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:45:29:45:35 | tainted | stringConcatenatedWith | '<b>' -endpoint- '</b>' |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:45:39:45:44 | '</b>' | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:45:39:45:44 | '</b>' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:45:39:45:44 | '</b>' | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:45:39:45:44 | '</b>' | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:45:39:45:44 | '</b>' | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:45:39:45:44 | '</b>' | contextFunctionInterfaces | escapeAttr(s)\nescapeHtml(s)\ntest() |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:45:39:45:44 | '</b>' | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:45:39:45:44 | '</b>' | enclosingFunctionBody | tainted window name elt document createElement elt innerHTML <a href=" escapeAttr tainted "> escapeHtml tainted </a> elt innerHTML <div> escapeAttr tainted </div> regex /[<>'"&]/ regex test tainted elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex test tainted elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex exec tainted elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex exec tainted null elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex exec tainted null elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> elt innerHTML tainted replace /<\\w+/g  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:45:39:45:44 | '</b>' | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:45:39:45:44 | '</b>' | fileImports |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:45:39:45:44 | '</b>' | receiverName |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:45:39:45:44 | '</b>' | stringConcatenatedWith | '<b>' + tainted -endpoint-  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:48:19:48:46 | tainted ... /g, '') | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:48:19:48:46 | tainted ... /g, '') | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:48:19:48:46 | tainted ... /g, '') | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:48:19:48:46 | tainted ... /g, '') | assignedToPropName | innerHTML |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:48:19:48:46 | tainted ... /g, '') | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:48:19:48:46 | tainted ... /g, '') | contextFunctionInterfaces | escapeAttr(s)\nescapeHtml(s)\ntest() |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:48:19:48:46 | tainted ... /g, '') | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:48:19:48:46 | tainted ... /g, '') | enclosingFunctionBody | tainted window name elt document createElement elt innerHTML <a href=" escapeAttr tainted "> escapeHtml tainted </a> elt innerHTML <div> escapeAttr tainted </div> regex /[<>'"&]/ regex test tainted elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex test tainted elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex exec tainted elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex exec tainted null elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> regex exec tainted null elt innerHTML <b> tainted </b> elt innerHTML <b> tainted </b> elt innerHTML tainted replace /<\\w+/g  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:48:19:48:46 | tainted ... /g, '') | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:48:19:48:46 | tainted ... /g, '') | fileImports |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:48:19:48:46 | tainted ... /g, '') | receiverName |  |
-| autogenerated/Xss/DomBasedXss/sanitiser.js:48:19:48:46 | tainted ... /g, '') | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:2:28:2:36 | 'session' | CalleeFlexibleAccessPath | sessionStorage.setItem |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:2:28:2:36 | 'session' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:2:28:2:36 | 'session' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:2:28:2:36 | 'session' | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:2:28:2:36 | 'session' | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:2:28:2:36 | 'session' | contextFunctionInterfaces |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:2:28:2:36 | 'session' | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:2:28:2:36 | 'session' | enclosingFunctionBody | sessionStorage setItem session document location search localStorage setItem local document location search $ myId html sessionStorage getItem session $ myId html localStorage getItem session $ myId html sessionStorage getItem local $ myId html localStorage getItem local href localStorage getItem local $ myId html <a href=" href >foobar</a> href indexOf " 1 $ myId html <a href=" href /> href2 localStorage getItem local href2 indexOf " 1 $ myId html \n<a href=" href2 >foobar</a> href3 localStorage getItem local href3 indexOf " 1 $ myId html \r\n<a href="/ href3 "> something </a> |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:2:28:2:36 | 'session' | enclosingFunctionName |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:2:28:2:36 | 'session' | fileImports |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:2:28:2:36 | 'session' | receiverName | sessionStorage |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:2:28:2:36 | 'session' | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:2:39:2:62 | documen ... .search | CalleeFlexibleAccessPath | sessionStorage.setItem |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:2:39:2:62 | documen ... .search | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:2:39:2:62 | documen ... .search | InputArgumentIndex | 1 |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:2:39:2:62 | documen ... .search | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:2:39:2:62 | documen ... .search | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:2:39:2:62 | documen ... .search | contextFunctionInterfaces |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:2:39:2:62 | documen ... .search | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:2:39:2:62 | documen ... .search | enclosingFunctionBody | sessionStorage setItem session document location search localStorage setItem local document location search $ myId html sessionStorage getItem session $ myId html localStorage getItem session $ myId html sessionStorage getItem local $ myId html localStorage getItem local href localStorage getItem local $ myId html <a href=" href >foobar</a> href indexOf " 1 $ myId html <a href=" href /> href2 localStorage getItem local href2 indexOf " 1 $ myId html \n<a href=" href2 >foobar</a> href3 localStorage getItem local href3 indexOf " 1 $ myId html \r\n<a href="/ href3 "> something </a> |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:2:39:2:62 | documen ... .search | enclosingFunctionName |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:2:39:2:62 | documen ... .search | fileImports |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:2:39:2:62 | documen ... .search | receiverName | sessionStorage |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:2:39:2:62 | documen ... .search | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:3:26:3:32 | 'local' | CalleeFlexibleAccessPath | localStorage.setItem |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:3:26:3:32 | 'local' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:3:26:3:32 | 'local' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:3:26:3:32 | 'local' | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:3:26:3:32 | 'local' | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:3:26:3:32 | 'local' | contextFunctionInterfaces |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:3:26:3:32 | 'local' | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:3:26:3:32 | 'local' | enclosingFunctionBody | sessionStorage setItem session document location search localStorage setItem local document location search $ myId html sessionStorage getItem session $ myId html localStorage getItem session $ myId html sessionStorage getItem local $ myId html localStorage getItem local href localStorage getItem local $ myId html <a href=" href >foobar</a> href indexOf " 1 $ myId html <a href=" href /> href2 localStorage getItem local href2 indexOf " 1 $ myId html \n<a href=" href2 >foobar</a> href3 localStorage getItem local href3 indexOf " 1 $ myId html \r\n<a href="/ href3 "> something </a> |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:3:26:3:32 | 'local' | enclosingFunctionName |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:3:26:3:32 | 'local' | fileImports |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:3:26:3:32 | 'local' | receiverName | localStorage |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:3:26:3:32 | 'local' | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:3:35:3:58 | documen ... .search | CalleeFlexibleAccessPath | localStorage.setItem |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:3:35:3:58 | documen ... .search | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:3:35:3:58 | documen ... .search | InputArgumentIndex | 1 |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:3:35:3:58 | documen ... .search | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:3:35:3:58 | documen ... .search | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:3:35:3:58 | documen ... .search | contextFunctionInterfaces |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:3:35:3:58 | documen ... .search | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:3:35:3:58 | documen ... .search | enclosingFunctionBody | sessionStorage setItem session document location search localStorage setItem local document location search $ myId html sessionStorage getItem session $ myId html localStorage getItem session $ myId html sessionStorage getItem local $ myId html localStorage getItem local href localStorage getItem local $ myId html <a href=" href >foobar</a> href indexOf " 1 $ myId html <a href=" href /> href2 localStorage getItem local href2 indexOf " 1 $ myId html \n<a href=" href2 >foobar</a> href3 localStorage getItem local href3 indexOf " 1 $ myId html \r\n<a href="/ href3 "> something </a> |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:3:35:3:58 | documen ... .search | enclosingFunctionName |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:3:35:3:58 | documen ... .search | fileImports |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:3:35:3:58 | documen ... .search | receiverName | localStorage |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:3:35:3:58 | documen ... .search | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:5:7:5:12 | 'myId' | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:5:7:5:12 | 'myId' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:5:7:5:12 | 'myId' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:5:7:5:12 | 'myId' | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:5:7:5:12 | 'myId' | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:5:7:5:12 | 'myId' | contextFunctionInterfaces |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:5:7:5:12 | 'myId' | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:5:7:5:12 | 'myId' | enclosingFunctionBody | sessionStorage setItem session document location search localStorage setItem local document location search $ myId html sessionStorage getItem session $ myId html localStorage getItem session $ myId html sessionStorage getItem local $ myId html localStorage getItem local href localStorage getItem local $ myId html <a href=" href >foobar</a> href indexOf " 1 $ myId html <a href=" href /> href2 localStorage getItem local href2 indexOf " 1 $ myId html \n<a href=" href2 >foobar</a> href3 localStorage getItem local href3 indexOf " 1 $ myId html \r\n<a href="/ href3 "> something </a> |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:5:7:5:12 | 'myId' | enclosingFunctionName |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:5:7:5:12 | 'myId' | fileImports |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:5:7:5:12 | 'myId' | receiverName |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:5:7:5:12 | 'myId' | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:5:20:5:52 | session ... ssion') | CalleeFlexibleAccessPath | $().html |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:5:20:5:52 | session ... ssion') | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:5:20:5:52 | session ... ssion') | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:5:20:5:52 | session ... ssion') | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:5:20:5:52 | session ... ssion') | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:5:20:5:52 | session ... ssion') | contextFunctionInterfaces |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:5:20:5:52 | session ... ssion') | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:5:20:5:52 | session ... ssion') | enclosingFunctionBody | sessionStorage setItem session document location search localStorage setItem local document location search $ myId html sessionStorage getItem session $ myId html localStorage getItem session $ myId html sessionStorage getItem local $ myId html localStorage getItem local href localStorage getItem local $ myId html <a href=" href >foobar</a> href indexOf " 1 $ myId html <a href=" href /> href2 localStorage getItem local href2 indexOf " 1 $ myId html \n<a href=" href2 >foobar</a> href3 localStorage getItem local href3 indexOf " 1 $ myId html \r\n<a href="/ href3 "> something </a> |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:5:20:5:52 | session ... ssion') | enclosingFunctionName |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:5:20:5:52 | session ... ssion') | fileImports |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:5:20:5:52 | session ... ssion') | receiverName |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:5:20:5:52 | session ... ssion') | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:5:43:5:51 | 'session' | CalleeFlexibleAccessPath | sessionStorage.getItem |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:5:43:5:51 | 'session' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:5:43:5:51 | 'session' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:5:43:5:51 | 'session' | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:5:43:5:51 | 'session' | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:5:43:5:51 | 'session' | contextFunctionInterfaces |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:5:43:5:51 | 'session' | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:5:43:5:51 | 'session' | enclosingFunctionBody | sessionStorage setItem session document location search localStorage setItem local document location search $ myId html sessionStorage getItem session $ myId html localStorage getItem session $ myId html sessionStorage getItem local $ myId html localStorage getItem local href localStorage getItem local $ myId html <a href=" href >foobar</a> href indexOf " 1 $ myId html <a href=" href /> href2 localStorage getItem local href2 indexOf " 1 $ myId html \n<a href=" href2 >foobar</a> href3 localStorage getItem local href3 indexOf " 1 $ myId html \r\n<a href="/ href3 "> something </a> |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:5:43:5:51 | 'session' | enclosingFunctionName |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:5:43:5:51 | 'session' | fileImports |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:5:43:5:51 | 'session' | receiverName | sessionStorage |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:5:43:5:51 | 'session' | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:6:7:6:12 | 'myId' | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:6:7:6:12 | 'myId' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:6:7:6:12 | 'myId' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:6:7:6:12 | 'myId' | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:6:7:6:12 | 'myId' | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:6:7:6:12 | 'myId' | contextFunctionInterfaces |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:6:7:6:12 | 'myId' | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:6:7:6:12 | 'myId' | enclosingFunctionBody | sessionStorage setItem session document location search localStorage setItem local document location search $ myId html sessionStorage getItem session $ myId html localStorage getItem session $ myId html sessionStorage getItem local $ myId html localStorage getItem local href localStorage getItem local $ myId html <a href=" href >foobar</a> href indexOf " 1 $ myId html <a href=" href /> href2 localStorage getItem local href2 indexOf " 1 $ myId html \n<a href=" href2 >foobar</a> href3 localStorage getItem local href3 indexOf " 1 $ myId html \r\n<a href="/ href3 "> something </a> |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:6:7:6:12 | 'myId' | enclosingFunctionName |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:6:7:6:12 | 'myId' | fileImports |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:6:7:6:12 | 'myId' | receiverName |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:6:7:6:12 | 'myId' | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:6:20:6:50 | localSt ... ssion') | CalleeFlexibleAccessPath | $().html |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:6:20:6:50 | localSt ... ssion') | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:6:20:6:50 | localSt ... ssion') | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:6:20:6:50 | localSt ... ssion') | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:6:20:6:50 | localSt ... ssion') | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:6:20:6:50 | localSt ... ssion') | contextFunctionInterfaces |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:6:20:6:50 | localSt ... ssion') | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:6:20:6:50 | localSt ... ssion') | enclosingFunctionBody | sessionStorage setItem session document location search localStorage setItem local document location search $ myId html sessionStorage getItem session $ myId html localStorage getItem session $ myId html sessionStorage getItem local $ myId html localStorage getItem local href localStorage getItem local $ myId html <a href=" href >foobar</a> href indexOf " 1 $ myId html <a href=" href /> href2 localStorage getItem local href2 indexOf " 1 $ myId html \n<a href=" href2 >foobar</a> href3 localStorage getItem local href3 indexOf " 1 $ myId html \r\n<a href="/ href3 "> something </a> |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:6:20:6:50 | localSt ... ssion') | enclosingFunctionName |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:6:20:6:50 | localSt ... ssion') | fileImports |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:6:20:6:50 | localSt ... ssion') | receiverName |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:6:20:6:50 | localSt ... ssion') | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:6:41:6:49 | 'session' | CalleeFlexibleAccessPath | localStorage.getItem |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:6:41:6:49 | 'session' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:6:41:6:49 | 'session' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:6:41:6:49 | 'session' | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:6:41:6:49 | 'session' | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:6:41:6:49 | 'session' | contextFunctionInterfaces |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:6:41:6:49 | 'session' | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:6:41:6:49 | 'session' | enclosingFunctionBody | sessionStorage setItem session document location search localStorage setItem local document location search $ myId html sessionStorage getItem session $ myId html localStorage getItem session $ myId html sessionStorage getItem local $ myId html localStorage getItem local href localStorage getItem local $ myId html <a href=" href >foobar</a> href indexOf " 1 $ myId html <a href=" href /> href2 localStorage getItem local href2 indexOf " 1 $ myId html \n<a href=" href2 >foobar</a> href3 localStorage getItem local href3 indexOf " 1 $ myId html \r\n<a href="/ href3 "> something </a> |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:6:41:6:49 | 'session' | enclosingFunctionName |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:6:41:6:49 | 'session' | fileImports |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:6:41:6:49 | 'session' | receiverName | localStorage |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:6:41:6:49 | 'session' | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:7:7:7:12 | 'myId' | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:7:7:7:12 | 'myId' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:7:7:7:12 | 'myId' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:7:7:7:12 | 'myId' | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:7:7:7:12 | 'myId' | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:7:7:7:12 | 'myId' | contextFunctionInterfaces |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:7:7:7:12 | 'myId' | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:7:7:7:12 | 'myId' | enclosingFunctionBody | sessionStorage setItem session document location search localStorage setItem local document location search $ myId html sessionStorage getItem session $ myId html localStorage getItem session $ myId html sessionStorage getItem local $ myId html localStorage getItem local href localStorage getItem local $ myId html <a href=" href >foobar</a> href indexOf " 1 $ myId html <a href=" href /> href2 localStorage getItem local href2 indexOf " 1 $ myId html \n<a href=" href2 >foobar</a> href3 localStorage getItem local href3 indexOf " 1 $ myId html \r\n<a href="/ href3 "> something </a> |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:7:7:7:12 | 'myId' | enclosingFunctionName |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:7:7:7:12 | 'myId' | fileImports |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:7:7:7:12 | 'myId' | receiverName |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:7:7:7:12 | 'myId' | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:7:20:7:50 | session ... local') | CalleeFlexibleAccessPath | $().html |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:7:20:7:50 | session ... local') | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:7:20:7:50 | session ... local') | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:7:20:7:50 | session ... local') | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:7:20:7:50 | session ... local') | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:7:20:7:50 | session ... local') | contextFunctionInterfaces |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:7:20:7:50 | session ... local') | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:7:20:7:50 | session ... local') | enclosingFunctionBody | sessionStorage setItem session document location search localStorage setItem local document location search $ myId html sessionStorage getItem session $ myId html localStorage getItem session $ myId html sessionStorage getItem local $ myId html localStorage getItem local href localStorage getItem local $ myId html <a href=" href >foobar</a> href indexOf " 1 $ myId html <a href=" href /> href2 localStorage getItem local href2 indexOf " 1 $ myId html \n<a href=" href2 >foobar</a> href3 localStorage getItem local href3 indexOf " 1 $ myId html \r\n<a href="/ href3 "> something </a> |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:7:20:7:50 | session ... local') | enclosingFunctionName |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:7:20:7:50 | session ... local') | fileImports |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:7:20:7:50 | session ... local') | receiverName |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:7:20:7:50 | session ... local') | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:7:43:7:49 | 'local' | CalleeFlexibleAccessPath | sessionStorage.getItem |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:7:43:7:49 | 'local' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:7:43:7:49 | 'local' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:7:43:7:49 | 'local' | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:7:43:7:49 | 'local' | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:7:43:7:49 | 'local' | contextFunctionInterfaces |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:7:43:7:49 | 'local' | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:7:43:7:49 | 'local' | enclosingFunctionBody | sessionStorage setItem session document location search localStorage setItem local document location search $ myId html sessionStorage getItem session $ myId html localStorage getItem session $ myId html sessionStorage getItem local $ myId html localStorage getItem local href localStorage getItem local $ myId html <a href=" href >foobar</a> href indexOf " 1 $ myId html <a href=" href /> href2 localStorage getItem local href2 indexOf " 1 $ myId html \n<a href=" href2 >foobar</a> href3 localStorage getItem local href3 indexOf " 1 $ myId html \r\n<a href="/ href3 "> something </a> |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:7:43:7:49 | 'local' | enclosingFunctionName |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:7:43:7:49 | 'local' | fileImports |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:7:43:7:49 | 'local' | receiverName | sessionStorage |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:7:43:7:49 | 'local' | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:8:7:8:12 | 'myId' | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:8:7:8:12 | 'myId' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:8:7:8:12 | 'myId' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:8:7:8:12 | 'myId' | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:8:7:8:12 | 'myId' | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:8:7:8:12 | 'myId' | contextFunctionInterfaces |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:8:7:8:12 | 'myId' | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:8:7:8:12 | 'myId' | enclosingFunctionBody | sessionStorage setItem session document location search localStorage setItem local document location search $ myId html sessionStorage getItem session $ myId html localStorage getItem session $ myId html sessionStorage getItem local $ myId html localStorage getItem local href localStorage getItem local $ myId html <a href=" href >foobar</a> href indexOf " 1 $ myId html <a href=" href /> href2 localStorage getItem local href2 indexOf " 1 $ myId html \n<a href=" href2 >foobar</a> href3 localStorage getItem local href3 indexOf " 1 $ myId html \r\n<a href="/ href3 "> something </a> |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:8:7:8:12 | 'myId' | enclosingFunctionName |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:8:7:8:12 | 'myId' | fileImports |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:8:7:8:12 | 'myId' | receiverName |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:8:7:8:12 | 'myId' | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:8:20:8:48 | localSt ... local') | CalleeFlexibleAccessPath | $().html |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:8:20:8:48 | localSt ... local') | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:8:20:8:48 | localSt ... local') | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:8:20:8:48 | localSt ... local') | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:8:20:8:48 | localSt ... local') | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:8:20:8:48 | localSt ... local') | contextFunctionInterfaces |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:8:20:8:48 | localSt ... local') | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:8:20:8:48 | localSt ... local') | enclosingFunctionBody | sessionStorage setItem session document location search localStorage setItem local document location search $ myId html sessionStorage getItem session $ myId html localStorage getItem session $ myId html sessionStorage getItem local $ myId html localStorage getItem local href localStorage getItem local $ myId html <a href=" href >foobar</a> href indexOf " 1 $ myId html <a href=" href /> href2 localStorage getItem local href2 indexOf " 1 $ myId html \n<a href=" href2 >foobar</a> href3 localStorage getItem local href3 indexOf " 1 $ myId html \r\n<a href="/ href3 "> something </a> |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:8:20:8:48 | localSt ... local') | enclosingFunctionName |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:8:20:8:48 | localSt ... local') | fileImports |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:8:20:8:48 | localSt ... local') | receiverName |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:8:20:8:48 | localSt ... local') | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:8:41:8:47 | 'local' | CalleeFlexibleAccessPath | localStorage.getItem |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:8:41:8:47 | 'local' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:8:41:8:47 | 'local' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:8:41:8:47 | 'local' | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:8:41:8:47 | 'local' | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:8:41:8:47 | 'local' | contextFunctionInterfaces |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:8:41:8:47 | 'local' | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:8:41:8:47 | 'local' | enclosingFunctionBody | sessionStorage setItem session document location search localStorage setItem local document location search $ myId html sessionStorage getItem session $ myId html localStorage getItem session $ myId html sessionStorage getItem local $ myId html localStorage getItem local href localStorage getItem local $ myId html <a href=" href >foobar</a> href indexOf " 1 $ myId html <a href=" href /> href2 localStorage getItem local href2 indexOf " 1 $ myId html \n<a href=" href2 >foobar</a> href3 localStorage getItem local href3 indexOf " 1 $ myId html \r\n<a href="/ href3 "> something </a> |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:8:41:8:47 | 'local' | enclosingFunctionName |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:8:41:8:47 | 'local' | fileImports |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:8:41:8:47 | 'local' | receiverName | localStorage |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:8:41:8:47 | 'local' | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:10:37:10:43 | 'local' | CalleeFlexibleAccessPath | localStorage.getItem |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:10:37:10:43 | 'local' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:10:37:10:43 | 'local' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:10:37:10:43 | 'local' | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:10:37:10:43 | 'local' | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:10:37:10:43 | 'local' | contextFunctionInterfaces |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:10:37:10:43 | 'local' | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:10:37:10:43 | 'local' | enclosingFunctionBody | sessionStorage setItem session document location search localStorage setItem local document location search $ myId html sessionStorage getItem session $ myId html localStorage getItem session $ myId html sessionStorage getItem local $ myId html localStorage getItem local href localStorage getItem local $ myId html <a href=" href >foobar</a> href indexOf " 1 $ myId html <a href=" href /> href2 localStorage getItem local href2 indexOf " 1 $ myId html \n<a href=" href2 >foobar</a> href3 localStorage getItem local href3 indexOf " 1 $ myId html \r\n<a href="/ href3 "> something </a> |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:10:37:10:43 | 'local' | enclosingFunctionName |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:10:37:10:43 | 'local' | fileImports |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:10:37:10:43 | 'local' | receiverName | localStorage |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:10:37:10:43 | 'local' | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:12:7:12:12 | 'myId' | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:12:7:12:12 | 'myId' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:12:7:12:12 | 'myId' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:12:7:12:12 | 'myId' | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:12:7:12:12 | 'myId' | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:12:7:12:12 | 'myId' | contextFunctionInterfaces |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:12:7:12:12 | 'myId' | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:12:7:12:12 | 'myId' | enclosingFunctionBody | sessionStorage setItem session document location search localStorage setItem local document location search $ myId html sessionStorage getItem session $ myId html localStorage getItem session $ myId html sessionStorage getItem local $ myId html localStorage getItem local href localStorage getItem local $ myId html <a href=" href >foobar</a> href indexOf " 1 $ myId html <a href=" href /> href2 localStorage getItem local href2 indexOf " 1 $ myId html \n<a href=" href2 >foobar</a> href3 localStorage getItem local href3 indexOf " 1 $ myId html \r\n<a href="/ href3 "> something </a> |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:12:7:12:12 | 'myId' | enclosingFunctionName |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:12:7:12:12 | 'myId' | fileImports |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:12:7:12:12 | 'myId' | receiverName |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:12:7:12:12 | 'myId' | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:12:20:12:31 | "<a href=\\"" | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:12:20:12:31 | "<a href=\\"" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:12:20:12:31 | "<a href=\\"" | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:12:20:12:31 | "<a href=\\"" | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:12:20:12:31 | "<a href=\\"" | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:12:20:12:31 | "<a href=\\"" | contextFunctionInterfaces |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:12:20:12:31 | "<a href=\\"" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:12:20:12:31 | "<a href=\\"" | enclosingFunctionBody | sessionStorage setItem session document location search localStorage setItem local document location search $ myId html sessionStorage getItem session $ myId html localStorage getItem session $ myId html sessionStorage getItem local $ myId html localStorage getItem local href localStorage getItem local $ myId html <a href=" href >foobar</a> href indexOf " 1 $ myId html <a href=" href /> href2 localStorage getItem local href2 indexOf " 1 $ myId html \n<a href=" href2 >foobar</a> href3 localStorage getItem local href3 indexOf " 1 $ myId html \r\n<a href="/ href3 "> something </a> |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:12:20:12:31 | "<a href=\\"" | enclosingFunctionName |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:12:20:12:31 | "<a href=\\"" | fileImports |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:12:20:12:31 | "<a href=\\"" | receiverName |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:12:20:12:31 | "<a href=\\"" | stringConcatenatedWith |  -endpoint- href + '>foobar</a>' |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:12:20:12:54 | "<a hre ... ar</a>" | CalleeFlexibleAccessPath | $().html |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:12:20:12:54 | "<a hre ... ar</a>" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:12:20:12:54 | "<a hre ... ar</a>" | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:12:20:12:54 | "<a hre ... ar</a>" | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:12:20:12:54 | "<a hre ... ar</a>" | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:12:20:12:54 | "<a hre ... ar</a>" | contextFunctionInterfaces |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:12:20:12:54 | "<a hre ... ar</a>" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:12:20:12:54 | "<a hre ... ar</a>" | enclosingFunctionBody | sessionStorage setItem session document location search localStorage setItem local document location search $ myId html sessionStorage getItem session $ myId html localStorage getItem session $ myId html sessionStorage getItem local $ myId html localStorage getItem local href localStorage getItem local $ myId html <a href=" href >foobar</a> href indexOf " 1 $ myId html <a href=" href /> href2 localStorage getItem local href2 indexOf " 1 $ myId html \n<a href=" href2 >foobar</a> href3 localStorage getItem local href3 indexOf " 1 $ myId html \r\n<a href="/ href3 "> something </a> |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:12:20:12:54 | "<a hre ... ar</a>" | enclosingFunctionName |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:12:20:12:54 | "<a hre ... ar</a>" | fileImports |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:12:20:12:54 | "<a hre ... ar</a>" | receiverName |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:12:20:12:54 | "<a hre ... ar</a>" | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:12:35:12:38 | href | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:12:35:12:38 | href | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:12:35:12:38 | href | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:12:35:12:38 | href | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:12:35:12:38 | href | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:12:35:12:38 | href | contextFunctionInterfaces |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:12:35:12:38 | href | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:12:35:12:38 | href | enclosingFunctionBody | sessionStorage setItem session document location search localStorage setItem local document location search $ myId html sessionStorage getItem session $ myId html localStorage getItem session $ myId html sessionStorage getItem local $ myId html localStorage getItem local href localStorage getItem local $ myId html <a href=" href >foobar</a> href indexOf " 1 $ myId html <a href=" href /> href2 localStorage getItem local href2 indexOf " 1 $ myId html \n<a href=" href2 >foobar</a> href3 localStorage getItem local href3 indexOf " 1 $ myId html \r\n<a href="/ href3 "> something </a> |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:12:35:12:38 | href | enclosingFunctionName |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:12:35:12:38 | href | fileImports |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:12:35:12:38 | href | receiverName |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:12:35:12:38 | href | stringConcatenatedWith | '<a href="' -endpoint- '>foobar</a>' |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:12:42:12:54 | ">foobar</a>" | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:12:42:12:54 | ">foobar</a>" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:12:42:12:54 | ">foobar</a>" | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:12:42:12:54 | ">foobar</a>" | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:12:42:12:54 | ">foobar</a>" | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:12:42:12:54 | ">foobar</a>" | contextFunctionInterfaces |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:12:42:12:54 | ">foobar</a>" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:12:42:12:54 | ">foobar</a>" | enclosingFunctionBody | sessionStorage setItem session document location search localStorage setItem local document location search $ myId html sessionStorage getItem session $ myId html localStorage getItem session $ myId html sessionStorage getItem local $ myId html localStorage getItem local href localStorage getItem local $ myId html <a href=" href >foobar</a> href indexOf " 1 $ myId html <a href=" href /> href2 localStorage getItem local href2 indexOf " 1 $ myId html \n<a href=" href2 >foobar</a> href3 localStorage getItem local href3 indexOf " 1 $ myId html \r\n<a href="/ href3 "> something </a> |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:12:42:12:54 | ">foobar</a>" | enclosingFunctionName |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:12:42:12:54 | ">foobar</a>" | fileImports |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:12:42:12:54 | ">foobar</a>" | receiverName |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:12:42:12:54 | ">foobar</a>" | stringConcatenatedWith | '<a href="' + href -endpoint-  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:14:22:14:25 | "\\"" | CalleeFlexibleAccessPath | href.indexOf |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:14:22:14:25 | "\\"" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:14:22:14:25 | "\\"" | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:14:22:14:25 | "\\"" | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:14:22:14:25 | "\\"" | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:14:22:14:25 | "\\"" | contextFunctionInterfaces |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:14:22:14:25 | "\\"" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:14:22:14:25 | "\\"" | enclosingFunctionBody | sessionStorage setItem session document location search localStorage setItem local document location search $ myId html sessionStorage getItem session $ myId html localStorage getItem session $ myId html sessionStorage getItem local $ myId html localStorage getItem local href localStorage getItem local $ myId html <a href=" href >foobar</a> href indexOf " 1 $ myId html <a href=" href /> href2 localStorage getItem local href2 indexOf " 1 $ myId html \n<a href=" href2 >foobar</a> href3 localStorage getItem local href3 indexOf " 1 $ myId html \r\n<a href="/ href3 "> something </a> |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:14:22:14:25 | "\\"" | enclosingFunctionName |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:14:22:14:25 | "\\"" | fileImports |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:14:22:14:25 | "\\"" | receiverName | href |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:14:22:14:25 | "\\"" | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:17:7:17:12 | 'myId' | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:17:7:17:12 | 'myId' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:17:7:17:12 | 'myId' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:17:7:17:12 | 'myId' | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:17:7:17:12 | 'myId' | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:17:7:17:12 | 'myId' | contextFunctionInterfaces |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:17:7:17:12 | 'myId' | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:17:7:17:12 | 'myId' | enclosingFunctionBody | sessionStorage setItem session document location search localStorage setItem local document location search $ myId html sessionStorage getItem session $ myId html localStorage getItem session $ myId html sessionStorage getItem local $ myId html localStorage getItem local href localStorage getItem local $ myId html <a href=" href >foobar</a> href indexOf " 1 $ myId html <a href=" href /> href2 localStorage getItem local href2 indexOf " 1 $ myId html \n<a href=" href2 >foobar</a> href3 localStorage getItem local href3 indexOf " 1 $ myId html \r\n<a href="/ href3 "> something </a> |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:17:7:17:12 | 'myId' | enclosingFunctionName |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:17:7:17:12 | 'myId' | fileImports |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:17:7:17:12 | 'myId' | receiverName |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:17:7:17:12 | 'myId' | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:17:20:17:31 | "<a href=\\"" | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:17:20:17:31 | "<a href=\\"" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:17:20:17:31 | "<a href=\\"" | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:17:20:17:31 | "<a href=\\"" | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:17:20:17:31 | "<a href=\\"" | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:17:20:17:31 | "<a href=\\"" | contextFunctionInterfaces |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:17:20:17:31 | "<a href=\\"" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:17:20:17:31 | "<a href=\\"" | enclosingFunctionBody | sessionStorage setItem session document location search localStorage setItem local document location search $ myId html sessionStorage getItem session $ myId html localStorage getItem session $ myId html sessionStorage getItem local $ myId html localStorage getItem local href localStorage getItem local $ myId html <a href=" href >foobar</a> href indexOf " 1 $ myId html <a href=" href /> href2 localStorage getItem local href2 indexOf " 1 $ myId html \n<a href=" href2 >foobar</a> href3 localStorage getItem local href3 indexOf " 1 $ myId html \r\n<a href="/ href3 "> something </a> |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:17:20:17:31 | "<a href=\\"" | enclosingFunctionName |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:17:20:17:31 | "<a href=\\"" | fileImports |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:17:20:17:31 | "<a href=\\"" | receiverName |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:17:20:17:31 | "<a href=\\"" | stringConcatenatedWith |  -endpoint- href + '/>' |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:17:20:17:45 | "<a hre ...  + "/>" | CalleeFlexibleAccessPath | $().html |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:17:20:17:45 | "<a hre ...  + "/>" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:17:20:17:45 | "<a hre ...  + "/>" | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:17:20:17:45 | "<a hre ...  + "/>" | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:17:20:17:45 | "<a hre ...  + "/>" | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:17:20:17:45 | "<a hre ...  + "/>" | contextFunctionInterfaces |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:17:20:17:45 | "<a hre ...  + "/>" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:17:20:17:45 | "<a hre ...  + "/>" | enclosingFunctionBody | sessionStorage setItem session document location search localStorage setItem local document location search $ myId html sessionStorage getItem session $ myId html localStorage getItem session $ myId html sessionStorage getItem local $ myId html localStorage getItem local href localStorage getItem local $ myId html <a href=" href >foobar</a> href indexOf " 1 $ myId html <a href=" href /> href2 localStorage getItem local href2 indexOf " 1 $ myId html \n<a href=" href2 >foobar</a> href3 localStorage getItem local href3 indexOf " 1 $ myId html \r\n<a href="/ href3 "> something </a> |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:17:20:17:45 | "<a hre ...  + "/>" | enclosingFunctionName |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:17:20:17:45 | "<a hre ...  + "/>" | fileImports |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:17:20:17:45 | "<a hre ...  + "/>" | receiverName |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:17:20:17:45 | "<a hre ...  + "/>" | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:17:35:17:38 | href | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:17:35:17:38 | href | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:17:35:17:38 | href | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:17:35:17:38 | href | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:17:35:17:38 | href | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:17:35:17:38 | href | contextFunctionInterfaces |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:17:35:17:38 | href | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:17:35:17:38 | href | enclosingFunctionBody | sessionStorage setItem session document location search localStorage setItem local document location search $ myId html sessionStorage getItem session $ myId html localStorage getItem session $ myId html sessionStorage getItem local $ myId html localStorage getItem local href localStorage getItem local $ myId html <a href=" href >foobar</a> href indexOf " 1 $ myId html <a href=" href /> href2 localStorage getItem local href2 indexOf " 1 $ myId html \n<a href=" href2 >foobar</a> href3 localStorage getItem local href3 indexOf " 1 $ myId html \r\n<a href="/ href3 "> something </a> |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:17:35:17:38 | href | enclosingFunctionName |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:17:35:17:38 | href | fileImports |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:17:35:17:38 | href | receiverName |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:17:35:17:38 | href | stringConcatenatedWith | '<a href="' -endpoint- '/>' |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:17:42:17:45 | "/>" | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:17:42:17:45 | "/>" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:17:42:17:45 | "/>" | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:17:42:17:45 | "/>" | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:17:42:17:45 | "/>" | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:17:42:17:45 | "/>" | contextFunctionInterfaces |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:17:42:17:45 | "/>" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:17:42:17:45 | "/>" | enclosingFunctionBody | sessionStorage setItem session document location search localStorage setItem local document location search $ myId html sessionStorage getItem session $ myId html localStorage getItem session $ myId html sessionStorage getItem local $ myId html localStorage getItem local href localStorage getItem local $ myId html <a href=" href >foobar</a> href indexOf " 1 $ myId html <a href=" href /> href2 localStorage getItem local href2 indexOf " 1 $ myId html \n<a href=" href2 >foobar</a> href3 localStorage getItem local href3 indexOf " 1 $ myId html \r\n<a href="/ href3 "> something </a> |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:17:42:17:45 | "/>" | enclosingFunctionName |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:17:42:17:45 | "/>" | fileImports |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:17:42:17:45 | "/>" | receiverName |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:17:42:17:45 | "/>" | stringConcatenatedWith | '<a href="' + href -endpoint-  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:19:38:19:44 | 'local' | CalleeFlexibleAccessPath | localStorage.getItem |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:19:38:19:44 | 'local' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:19:38:19:44 | 'local' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:19:38:19:44 | 'local' | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:19:38:19:44 | 'local' | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:19:38:19:44 | 'local' | contextFunctionInterfaces |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:19:38:19:44 | 'local' | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:19:38:19:44 | 'local' | enclosingFunctionBody | sessionStorage setItem session document location search localStorage setItem local document location search $ myId html sessionStorage getItem session $ myId html localStorage getItem session $ myId html sessionStorage getItem local $ myId html localStorage getItem local href localStorage getItem local $ myId html <a href=" href >foobar</a> href indexOf " 1 $ myId html <a href=" href /> href2 localStorage getItem local href2 indexOf " 1 $ myId html \n<a href=" href2 >foobar</a> href3 localStorage getItem local href3 indexOf " 1 $ myId html \r\n<a href="/ href3 "> something </a> |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:19:38:19:44 | 'local' | enclosingFunctionName |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:19:38:19:44 | 'local' | fileImports |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:19:38:19:44 | 'local' | receiverName | localStorage |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:19:38:19:44 | 'local' | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:20:23:20:26 | "\\"" | CalleeFlexibleAccessPath | href2.indexOf |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:20:23:20:26 | "\\"" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:20:23:20:26 | "\\"" | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:20:23:20:26 | "\\"" | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:20:23:20:26 | "\\"" | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:20:23:20:26 | "\\"" | contextFunctionInterfaces |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:20:23:20:26 | "\\"" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:20:23:20:26 | "\\"" | enclosingFunctionBody | sessionStorage setItem session document location search localStorage setItem local document location search $ myId html sessionStorage getItem session $ myId html localStorage getItem session $ myId html sessionStorage getItem local $ myId html localStorage getItem local href localStorage getItem local $ myId html <a href=" href >foobar</a> href indexOf " 1 $ myId html <a href=" href /> href2 localStorage getItem local href2 indexOf " 1 $ myId html \n<a href=" href2 >foobar</a> href3 localStorage getItem local href3 indexOf " 1 $ myId html \r\n<a href="/ href3 "> something </a> |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:20:23:20:26 | "\\"" | enclosingFunctionName |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:20:23:20:26 | "\\"" | fileImports |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:20:23:20:26 | "\\"" | receiverName | href2 |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:20:23:20:26 | "\\"" | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:23:7:23:12 | 'myId' | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:23:7:23:12 | 'myId' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:23:7:23:12 | 'myId' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:23:7:23:12 | 'myId' | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:23:7:23:12 | 'myId' | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:23:7:23:12 | 'myId' | contextFunctionInterfaces |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:23:7:23:12 | 'myId' | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:23:7:23:12 | 'myId' | enclosingFunctionBody | sessionStorage setItem session document location search localStorage setItem local document location search $ myId html sessionStorage getItem session $ myId html localStorage getItem session $ myId html sessionStorage getItem local $ myId html localStorage getItem local href localStorage getItem local $ myId html <a href=" href >foobar</a> href indexOf " 1 $ myId html <a href=" href /> href2 localStorage getItem local href2 indexOf " 1 $ myId html \n<a href=" href2 >foobar</a> href3 localStorage getItem local href3 indexOf " 1 $ myId html \r\n<a href="/ href3 "> something </a> |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:23:7:23:12 | 'myId' | enclosingFunctionName |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:23:7:23:12 | 'myId' | fileImports |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:23:7:23:12 | 'myId' | receiverName |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:23:7:23:12 | 'myId' | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:23:20:23:33 | "\\n<a href=\\"" | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:23:20:23:33 | "\\n<a href=\\"" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:23:20:23:33 | "\\n<a href=\\"" | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:23:20:23:33 | "\\n<a href=\\"" | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:23:20:23:33 | "\\n<a href=\\"" | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:23:20:23:33 | "\\n<a href=\\"" | contextFunctionInterfaces |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:23:20:23:33 | "\\n<a href=\\"" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:23:20:23:33 | "\\n<a href=\\"" | enclosingFunctionBody | sessionStorage setItem session document location search localStorage setItem local document location search $ myId html sessionStorage getItem session $ myId html localStorage getItem session $ myId html sessionStorage getItem local $ myId html localStorage getItem local href localStorage getItem local $ myId html <a href=" href >foobar</a> href indexOf " 1 $ myId html <a href=" href /> href2 localStorage getItem local href2 indexOf " 1 $ myId html \n<a href=" href2 >foobar</a> href3 localStorage getItem local href3 indexOf " 1 $ myId html \r\n<a href="/ href3 "> something </a> |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:23:20:23:33 | "\\n<a href=\\"" | enclosingFunctionName |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:23:20:23:33 | "\\n<a href=\\"" | fileImports |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:23:20:23:33 | "\\n<a href=\\"" | receiverName |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:23:20:23:33 | "\\n<a href=\\"" | stringConcatenatedWith |  -endpoint- href2 + '>foobar</a>' |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:23:20:23:57 | "\\n<a h ... ar</a>" | CalleeFlexibleAccessPath | $().html |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:23:20:23:57 | "\\n<a h ... ar</a>" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:23:20:23:57 | "\\n<a h ... ar</a>" | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:23:20:23:57 | "\\n<a h ... ar</a>" | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:23:20:23:57 | "\\n<a h ... ar</a>" | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:23:20:23:57 | "\\n<a h ... ar</a>" | contextFunctionInterfaces |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:23:20:23:57 | "\\n<a h ... ar</a>" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:23:20:23:57 | "\\n<a h ... ar</a>" | enclosingFunctionBody | sessionStorage setItem session document location search localStorage setItem local document location search $ myId html sessionStorage getItem session $ myId html localStorage getItem session $ myId html sessionStorage getItem local $ myId html localStorage getItem local href localStorage getItem local $ myId html <a href=" href >foobar</a> href indexOf " 1 $ myId html <a href=" href /> href2 localStorage getItem local href2 indexOf " 1 $ myId html \n<a href=" href2 >foobar</a> href3 localStorage getItem local href3 indexOf " 1 $ myId html \r\n<a href="/ href3 "> something </a> |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:23:20:23:57 | "\\n<a h ... ar</a>" | enclosingFunctionName |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:23:20:23:57 | "\\n<a h ... ar</a>" | fileImports |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:23:20:23:57 | "\\n<a h ... ar</a>" | receiverName |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:23:20:23:57 | "\\n<a h ... ar</a>" | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:23:37:23:41 | href2 | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:23:37:23:41 | href2 | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:23:37:23:41 | href2 | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:23:37:23:41 | href2 | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:23:37:23:41 | href2 | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:23:37:23:41 | href2 | contextFunctionInterfaces |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:23:37:23:41 | href2 | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:23:37:23:41 | href2 | enclosingFunctionBody | sessionStorage setItem session document location search localStorage setItem local document location search $ myId html sessionStorage getItem session $ myId html localStorage getItem session $ myId html sessionStorage getItem local $ myId html localStorage getItem local href localStorage getItem local $ myId html <a href=" href >foobar</a> href indexOf " 1 $ myId html <a href=" href /> href2 localStorage getItem local href2 indexOf " 1 $ myId html \n<a href=" href2 >foobar</a> href3 localStorage getItem local href3 indexOf " 1 $ myId html \r\n<a href="/ href3 "> something </a> |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:23:37:23:41 | href2 | enclosingFunctionName |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:23:37:23:41 | href2 | fileImports |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:23:37:23:41 | href2 | receiverName |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:23:37:23:41 | href2 | stringConcatenatedWith | '\n<a href="' -endpoint- '>foobar</a>' |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:23:45:23:57 | ">foobar</a>" | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:23:45:23:57 | ">foobar</a>" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:23:45:23:57 | ">foobar</a>" | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:23:45:23:57 | ">foobar</a>" | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:23:45:23:57 | ">foobar</a>" | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:23:45:23:57 | ">foobar</a>" | contextFunctionInterfaces |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:23:45:23:57 | ">foobar</a>" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:23:45:23:57 | ">foobar</a>" | enclosingFunctionBody | sessionStorage setItem session document location search localStorage setItem local document location search $ myId html sessionStorage getItem session $ myId html localStorage getItem session $ myId html sessionStorage getItem local $ myId html localStorage getItem local href localStorage getItem local $ myId html <a href=" href >foobar</a> href indexOf " 1 $ myId html <a href=" href /> href2 localStorage getItem local href2 indexOf " 1 $ myId html \n<a href=" href2 >foobar</a> href3 localStorage getItem local href3 indexOf " 1 $ myId html \r\n<a href="/ href3 "> something </a> |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:23:45:23:57 | ">foobar</a>" | enclosingFunctionName |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:23:45:23:57 | ">foobar</a>" | fileImports |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:23:45:23:57 | ">foobar</a>" | receiverName |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:23:45:23:57 | ">foobar</a>" | stringConcatenatedWith | '\n<a href="' + href2 -endpoint-  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:25:38:25:44 | 'local' | CalleeFlexibleAccessPath | localStorage.getItem |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:25:38:25:44 | 'local' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:25:38:25:44 | 'local' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:25:38:25:44 | 'local' | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:25:38:25:44 | 'local' | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:25:38:25:44 | 'local' | contextFunctionInterfaces |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:25:38:25:44 | 'local' | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:25:38:25:44 | 'local' | enclosingFunctionBody | sessionStorage setItem session document location search localStorage setItem local document location search $ myId html sessionStorage getItem session $ myId html localStorage getItem session $ myId html sessionStorage getItem local $ myId html localStorage getItem local href localStorage getItem local $ myId html <a href=" href >foobar</a> href indexOf " 1 $ myId html <a href=" href /> href2 localStorage getItem local href2 indexOf " 1 $ myId html \n<a href=" href2 >foobar</a> href3 localStorage getItem local href3 indexOf " 1 $ myId html \r\n<a href="/ href3 "> something </a> |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:25:38:25:44 | 'local' | enclosingFunctionName |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:25:38:25:44 | 'local' | fileImports |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:25:38:25:44 | 'local' | receiverName | localStorage |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:25:38:25:44 | 'local' | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:26:23:26:26 | "\\"" | CalleeFlexibleAccessPath | href3.indexOf |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:26:23:26:26 | "\\"" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:26:23:26:26 | "\\"" | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:26:23:26:26 | "\\"" | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:26:23:26:26 | "\\"" | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:26:23:26:26 | "\\"" | contextFunctionInterfaces |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:26:23:26:26 | "\\"" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:26:23:26:26 | "\\"" | enclosingFunctionBody | sessionStorage setItem session document location search localStorage setItem local document location search $ myId html sessionStorage getItem session $ myId html localStorage getItem session $ myId html sessionStorage getItem local $ myId html localStorage getItem local href localStorage getItem local $ myId html <a href=" href >foobar</a> href indexOf " 1 $ myId html <a href=" href /> href2 localStorage getItem local href2 indexOf " 1 $ myId html \n<a href=" href2 >foobar</a> href3 localStorage getItem local href3 indexOf " 1 $ myId html \r\n<a href="/ href3 "> something </a> |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:26:23:26:26 | "\\"" | enclosingFunctionName |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:26:23:26:26 | "\\"" | fileImports |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:26:23:26:26 | "\\"" | receiverName | href3 |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:26:23:26:26 | "\\"" | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:29:7:29:12 | 'myId' | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:29:7:29:12 | 'myId' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:29:7:29:12 | 'myId' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:29:7:29:12 | 'myId' | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:29:7:29:12 | 'myId' | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:29:7:29:12 | 'myId' | contextFunctionInterfaces |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:29:7:29:12 | 'myId' | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:29:7:29:12 | 'myId' | enclosingFunctionBody | sessionStorage setItem session document location search localStorage setItem local document location search $ myId html sessionStorage getItem session $ myId html localStorage getItem session $ myId html sessionStorage getItem local $ myId html localStorage getItem local href localStorage getItem local $ myId html <a href=" href >foobar</a> href indexOf " 1 $ myId html <a href=" href /> href2 localStorage getItem local href2 indexOf " 1 $ myId html \n<a href=" href2 >foobar</a> href3 localStorage getItem local href3 indexOf " 1 $ myId html \r\n<a href="/ href3 "> something </a> |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:29:7:29:12 | 'myId' | enclosingFunctionName |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:29:7:29:12 | 'myId' | fileImports |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:29:7:29:12 | 'myId' | receiverName |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:29:7:29:12 | 'myId' | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:29:20:29:35 | '\\r\\n<a href="/' | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:29:20:29:35 | '\\r\\n<a href="/' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:29:20:29:35 | '\\r\\n<a href="/' | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:29:20:29:35 | '\\r\\n<a href="/' | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:29:20:29:35 | '\\r\\n<a href="/' | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:29:20:29:35 | '\\r\\n<a href="/' | contextFunctionInterfaces |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:29:20:29:35 | '\\r\\n<a href="/' | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:29:20:29:35 | '\\r\\n<a href="/' | enclosingFunctionBody | sessionStorage setItem session document location search localStorage setItem local document location search $ myId html sessionStorage getItem session $ myId html localStorage getItem session $ myId html sessionStorage getItem local $ myId html localStorage getItem local href localStorage getItem local $ myId html <a href=" href >foobar</a> href indexOf " 1 $ myId html <a href=" href /> href2 localStorage getItem local href2 indexOf " 1 $ myId html \n<a href=" href2 >foobar</a> href3 localStorage getItem local href3 indexOf " 1 $ myId html \r\n<a href="/ href3 "> something </a> |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:29:20:29:35 | '\\r\\n<a href="/' | enclosingFunctionName |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:29:20:29:35 | '\\r\\n<a href="/' | fileImports |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:29:20:29:35 | '\\r\\n<a href="/' | receiverName |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:29:20:29:35 | '\\r\\n<a href="/' | stringConcatenatedWith |  -endpoint- href3 + '">' + 'something' + '</a>' |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:29:20:29:73 | '\\r\\n<a ...  '</a>' | CalleeFlexibleAccessPath | $().html |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:29:20:29:73 | '\\r\\n<a ...  '</a>' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:29:20:29:73 | '\\r\\n<a ...  '</a>' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:29:20:29:73 | '\\r\\n<a ...  '</a>' | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:29:20:29:73 | '\\r\\n<a ...  '</a>' | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:29:20:29:73 | '\\r\\n<a ...  '</a>' | contextFunctionInterfaces |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:29:20:29:73 | '\\r\\n<a ...  '</a>' | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:29:20:29:73 | '\\r\\n<a ...  '</a>' | enclosingFunctionBody | sessionStorage setItem session document location search localStorage setItem local document location search $ myId html sessionStorage getItem session $ myId html localStorage getItem session $ myId html sessionStorage getItem local $ myId html localStorage getItem local href localStorage getItem local $ myId html <a href=" href >foobar</a> href indexOf " 1 $ myId html <a href=" href /> href2 localStorage getItem local href2 indexOf " 1 $ myId html \n<a href=" href2 >foobar</a> href3 localStorage getItem local href3 indexOf " 1 $ myId html \r\n<a href="/ href3 "> something </a> |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:29:20:29:73 | '\\r\\n<a ...  '</a>' | enclosingFunctionName |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:29:20:29:73 | '\\r\\n<a ...  '</a>' | fileImports |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:29:20:29:73 | '\\r\\n<a ...  '</a>' | receiverName |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:29:20:29:73 | '\\r\\n<a ...  '</a>' | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:29:39:29:43 | href3 | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:29:39:29:43 | href3 | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:29:39:29:43 | href3 | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:29:39:29:43 | href3 | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:29:39:29:43 | href3 | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:29:39:29:43 | href3 | contextFunctionInterfaces |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:29:39:29:43 | href3 | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:29:39:29:43 | href3 | enclosingFunctionBody | sessionStorage setItem session document location search localStorage setItem local document location search $ myId html sessionStorage getItem session $ myId html localStorage getItem session $ myId html sessionStorage getItem local $ myId html localStorage getItem local href localStorage getItem local $ myId html <a href=" href >foobar</a> href indexOf " 1 $ myId html <a href=" href /> href2 localStorage getItem local href2 indexOf " 1 $ myId html \n<a href=" href2 >foobar</a> href3 localStorage getItem local href3 indexOf " 1 $ myId html \r\n<a href="/ href3 "> something </a> |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:29:39:29:43 | href3 | enclosingFunctionName |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:29:39:29:43 | href3 | fileImports |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:29:39:29:43 | href3 | receiverName |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:29:39:29:43 | href3 | stringConcatenatedWith | '\r\n<a href="/' -endpoint- '">' + 'something' + '</a>' |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:29:47:29:50 | '">' | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:29:47:29:50 | '">' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:29:47:29:50 | '">' | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:29:47:29:50 | '">' | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:29:47:29:50 | '">' | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:29:47:29:50 | '">' | contextFunctionInterfaces |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:29:47:29:50 | '">' | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:29:47:29:50 | '">' | enclosingFunctionBody | sessionStorage setItem session document location search localStorage setItem local document location search $ myId html sessionStorage getItem session $ myId html localStorage getItem session $ myId html sessionStorage getItem local $ myId html localStorage getItem local href localStorage getItem local $ myId html <a href=" href >foobar</a> href indexOf " 1 $ myId html <a href=" href /> href2 localStorage getItem local href2 indexOf " 1 $ myId html \n<a href=" href2 >foobar</a> href3 localStorage getItem local href3 indexOf " 1 $ myId html \r\n<a href="/ href3 "> something </a> |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:29:47:29:50 | '">' | enclosingFunctionName |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:29:47:29:50 | '">' | fileImports |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:29:47:29:50 | '">' | receiverName |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:29:47:29:50 | '">' | stringConcatenatedWith | '\r\n<a href="/' + href3 -endpoint- 'something' + '</a>' |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:29:54:29:64 | "something" | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:29:54:29:64 | "something" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:29:54:29:64 | "something" | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:29:54:29:64 | "something" | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:29:54:29:64 | "something" | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:29:54:29:64 | "something" | contextFunctionInterfaces |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:29:54:29:64 | "something" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:29:54:29:64 | "something" | enclosingFunctionBody | sessionStorage setItem session document location search localStorage setItem local document location search $ myId html sessionStorage getItem session $ myId html localStorage getItem session $ myId html sessionStorage getItem local $ myId html localStorage getItem local href localStorage getItem local $ myId html <a href=" href >foobar</a> href indexOf " 1 $ myId html <a href=" href /> href2 localStorage getItem local href2 indexOf " 1 $ myId html \n<a href=" href2 >foobar</a> href3 localStorage getItem local href3 indexOf " 1 $ myId html \r\n<a href="/ href3 "> something </a> |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:29:54:29:64 | "something" | enclosingFunctionName |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:29:54:29:64 | "something" | fileImports |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:29:54:29:64 | "something" | receiverName |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:29:54:29:64 | "something" | stringConcatenatedWith | '\r\n<a href="/' + href3 + '">' -endpoint- '</a>' |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:29:68:29:73 | '</a>' | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:29:68:29:73 | '</a>' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:29:68:29:73 | '</a>' | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:29:68:29:73 | '</a>' | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:29:68:29:73 | '</a>' | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:29:68:29:73 | '</a>' | contextFunctionInterfaces |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:29:68:29:73 | '</a>' | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:29:68:29:73 | '</a>' | enclosingFunctionBody | sessionStorage setItem session document location search localStorage setItem local document location search $ myId html sessionStorage getItem session $ myId html localStorage getItem session $ myId html sessionStorage getItem local $ myId html localStorage getItem local href localStorage getItem local $ myId html <a href=" href >foobar</a> href indexOf " 1 $ myId html <a href=" href /> href2 localStorage getItem local href2 indexOf " 1 $ myId html \n<a href=" href2 >foobar</a> href3 localStorage getItem local href3 indexOf " 1 $ myId html \r\n<a href="/ href3 "> something </a> |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:29:68:29:73 | '</a>' | enclosingFunctionName |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:29:68:29:73 | '</a>' | fileImports |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:29:68:29:73 | '</a>' | receiverName |  |
-| autogenerated/Xss/DomBasedXss/stored-xss.js:29:68:29:73 | '</a>' | stringConcatenatedWith | '\r\n<a href="/' + href3 + '">' + 'something' -endpoint-  |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:1:16:1:51 | documen ... deAt(0) | CalleeFlexibleAccessPath | document.write |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:1:16:1:51 | documen ... deAt(0) | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:1:16:1:51 | documen ... deAt(0) | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:1:16:1:51 | documen ... deAt(0) | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:1:16:1:51 | documen ... deAt(0) | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:1:16:1:51 | documen ... deAt(0) | contextFunctionInterfaces |  |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:1:16:1:51 | documen ... deAt(0) | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:1:16:1:51 | documen ... deAt(0) | enclosingFunctionBody |  |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:1:16:1:51 | documen ... deAt(0) | enclosingFunctionName |  |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:1:16:1:51 | documen ... deAt(0) | fileImports |  |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:1:16:1:51 | documen ... deAt(0) | receiverName | document |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:1:16:1:51 | documen ... deAt(0) | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:1:50:1:50 | 0 | CalleeFlexibleAccessPath | document.location.href.charCodeAt |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:1:50:1:50 | 0 | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:1:50:1:50 | 0 | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:1:50:1:50 | 0 | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:1:50:1:50 | 0 | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:1:50:1:50 | 0 | contextFunctionInterfaces |  |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:1:50:1:50 | 0 | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:1:50:1:50 | 0 | enclosingFunctionBody |  |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:1:50:1:50 | 0 | enclosingFunctionName |  |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:1:50:1:50 | 0 | fileImports |  |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:1:50:1:50 | 0 | receiverName |  |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:1:50:1:50 | 0 | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:3:16:3:32 | document.location | CalleeFlexibleAccessPath | document.write |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:3:16:3:32 | document.location | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:3:16:3:32 | document.location | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:3:16:3:32 | document.location | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:3:16:3:32 | document.location | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:3:16:3:32 | document.location | contextFunctionInterfaces |  |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:3:16:3:32 | document.location | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:3:16:3:32 | document.location | enclosingFunctionBody |  |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:3:16:3:32 | document.location | enclosingFunctionName |  |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:3:16:3:32 | document.location | fileImports |  |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:3:16:3:32 | document.location | receiverName | document |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:3:16:3:32 | document.location | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:4:16:4:37 | documen ... on.href | CalleeFlexibleAccessPath | document.write |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:4:16:4:37 | documen ... on.href | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:4:16:4:37 | documen ... on.href | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:4:16:4:37 | documen ... on.href | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:4:16:4:37 | documen ... on.href | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:4:16:4:37 | documen ... on.href | contextFunctionInterfaces |  |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:4:16:4:37 | documen ... on.href | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:4:16:4:37 | documen ... on.href | enclosingFunctionBody |  |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:4:16:4:37 | documen ... on.href | enclosingFunctionName |  |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:4:16:4:37 | documen ... on.href | fileImports |  |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:4:16:4:37 | documen ... on.href | receiverName | document |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:4:16:4:37 | documen ... on.href | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:5:16:5:47 | documen ... lueOf() | CalleeFlexibleAccessPath | document.write |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:5:16:5:47 | documen ... lueOf() | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:5:16:5:47 | documen ... lueOf() | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:5:16:5:47 | documen ... lueOf() | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:5:16:5:47 | documen ... lueOf() | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:5:16:5:47 | documen ... lueOf() | contextFunctionInterfaces |  |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:5:16:5:47 | documen ... lueOf() | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:5:16:5:47 | documen ... lueOf() | enclosingFunctionBody |  |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:5:16:5:47 | documen ... lueOf() | enclosingFunctionName |  |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:5:16:5:47 | documen ... lueOf() | fileImports |  |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:5:16:5:47 | documen ... lueOf() | receiverName | document |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:5:16:5:47 | documen ... lueOf() | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:6:16:6:43 | documen ... f.sup() | CalleeFlexibleAccessPath | document.write |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:6:16:6:43 | documen ... f.sup() | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:6:16:6:43 | documen ... f.sup() | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:6:16:6:43 | documen ... f.sup() | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:6:16:6:43 | documen ... f.sup() | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:6:16:6:43 | documen ... f.sup() | contextFunctionInterfaces |  |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:6:16:6:43 | documen ... f.sup() | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:6:16:6:43 | documen ... f.sup() | enclosingFunctionBody |  |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:6:16:6:43 | documen ... f.sup() | enclosingFunctionName |  |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:6:16:6:43 | documen ... f.sup() | fileImports |  |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:6:16:6:43 | documen ... f.sup() | receiverName | document |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:6:16:6:43 | documen ... f.sup() | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:7:16:7:51 | documen ... rCase() | CalleeFlexibleAccessPath | document.write |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:7:16:7:51 | documen ... rCase() | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:7:16:7:51 | documen ... rCase() | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:7:16:7:51 | documen ... rCase() | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:7:16:7:51 | documen ... rCase() | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:7:16:7:51 | documen ... rCase() | contextFunctionInterfaces |  |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:7:16:7:51 | documen ... rCase() | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:7:16:7:51 | documen ... rCase() | enclosingFunctionBody |  |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:7:16:7:51 | documen ... rCase() | enclosingFunctionName |  |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:7:16:7:51 | documen ... rCase() | fileImports |  |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:7:16:7:51 | documen ... rCase() | receiverName | document |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:7:16:7:51 | documen ... rCase() | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:8:16:8:48 | documen ... mLeft() | CalleeFlexibleAccessPath | document.write |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:8:16:8:48 | documen ... mLeft() | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:8:16:8:48 | documen ... mLeft() | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:8:16:8:48 | documen ... mLeft() | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:8:16:8:48 | documen ... mLeft() | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:8:16:8:48 | documen ... mLeft() | contextFunctionInterfaces |  |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:8:16:8:48 | documen ... mLeft() | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:8:16:8:48 | documen ... mLeft() | enclosingFunctionBody |  |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:8:16:8:48 | documen ... mLeft() | enclosingFunctionName |  |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:8:16:8:48 | documen ... mLeft() | fileImports |  |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:8:16:8:48 | documen ... mLeft() | receiverName | document |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:8:16:8:48 | documen ... mLeft() | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:9:16:9:58 | String. ... n.href) | CalleeFlexibleAccessPath | document.write |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:9:16:9:58 | String. ... n.href) | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:9:16:9:58 | String. ... n.href) | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:9:16:9:58 | String. ... n.href) | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:9:16:9:58 | String. ... n.href) | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:9:16:9:58 | String. ... n.href) | contextFunctionInterfaces |  |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:9:16:9:58 | String. ... n.href) | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:9:16:9:58 | String. ... n.href) | enclosingFunctionBody |  |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:9:16:9:58 | String. ... n.href) | enclosingFunctionName |  |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:9:16:9:58 | String. ... n.href) | fileImports |  |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:9:16:9:58 | String. ... n.href) | receiverName | document |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:9:16:9:58 | String. ... n.href) | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:10:16:10:45 | String( ... n.href) | CalleeFlexibleAccessPath | document.write |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:10:16:10:45 | String( ... n.href) | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:10:16:10:45 | String( ... n.href) | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:10:16:10:45 | String( ... n.href) | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:10:16:10:45 | String( ... n.href) | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:10:16:10:45 | String( ... n.href) | contextFunctionInterfaces |  |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:10:16:10:45 | String( ... n.href) | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:10:16:10:45 | String( ... n.href) | enclosingFunctionBody |  |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:10:16:10:45 | String( ... n.href) | enclosingFunctionName |  |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:10:16:10:45 | String( ... n.href) | fileImports |  |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:10:16:10:45 | String( ... n.href) | receiverName | document |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:10:16:10:45 | String( ... n.href) | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:11:16:11:45 | escape( ... n.href) | CalleeFlexibleAccessPath | document.write |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:11:16:11:45 | escape( ... n.href) | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:11:16:11:45 | escape( ... n.href) | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:11:16:11:45 | escape( ... n.href) | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:11:16:11:45 | escape( ... n.href) | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:11:16:11:45 | escape( ... n.href) | contextFunctionInterfaces |  |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:11:16:11:45 | escape( ... n.href) | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:11:16:11:45 | escape( ... n.href) | enclosingFunctionBody |  |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:11:16:11:45 | escape( ... n.href) | enclosingFunctionName |  |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:11:16:11:45 | escape( ... n.href) | fileImports |  |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:11:16:11:45 | escape( ... n.href) | receiverName | document |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:11:16:11:45 | escape( ... n.href) | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:12:16:12:61 | escape( ... href))) | CalleeFlexibleAccessPath | document.write |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:12:16:12:61 | escape( ... href))) | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:12:16:12:61 | escape( ... href))) | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:12:16:12:61 | escape( ... href))) | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:12:16:12:61 | escape( ... href))) | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:12:16:12:61 | escape( ... href))) | contextFunctionInterfaces |  |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:12:16:12:61 | escape( ... href))) | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:12:16:12:61 | escape( ... href))) | enclosingFunctionBody |  |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:12:16:12:61 | escape( ... href))) | enclosingFunctionName |  |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:12:16:12:61 | escape( ... href))) | fileImports |  |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:12:16:12:61 | escape( ... href))) | receiverName | document |
-| autogenerated/Xss/DomBasedXss/string-manipulations.js:12:16:12:61 | escape( ... href))) | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/translate.js:7:59:7:59 | 1 | CalleeFlexibleAccessPath | target.substring |
-| autogenerated/Xss/DomBasedXss/translate.js:7:59:7:59 | 1 | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/translate.js:7:59:7:59 | 1 | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/translate.js:7:59:7:59 | 1 | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/translate.js:7:59:7:59 | 1 | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/translate.js:7:59:7:59 | 1 | contextFunctionInterfaces |  |
-| autogenerated/Xss/DomBasedXss/translate.js:7:59:7:59 | 1 | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/translate.js:7:59:7:59 | 1 | enclosingFunctionBody | translate own goal backpass fumble feint target document location search searchParams URLSearchParams target substring 1 $ original-term html searchParams get term $ translated-term html translate searchParams get term |
-| autogenerated/Xss/DomBasedXss/translate.js:7:59:7:59 | 1 | enclosingFunctionName |  |
-| autogenerated/Xss/DomBasedXss/translate.js:7:59:7:59 | 1 | fileImports |  |
-| autogenerated/Xss/DomBasedXss/translate.js:7:59:7:59 | 1 | receiverName | target |
-| autogenerated/Xss/DomBasedXss/translate.js:7:59:7:59 | 1 | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/translate.js:9:5:9:19 | 'original-term' | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/DomBasedXss/translate.js:9:5:9:19 | 'original-term' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/translate.js:9:5:9:19 | 'original-term' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/translate.js:9:5:9:19 | 'original-term' | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/translate.js:9:5:9:19 | 'original-term' | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/translate.js:9:5:9:19 | 'original-term' | contextFunctionInterfaces |  |
-| autogenerated/Xss/DomBasedXss/translate.js:9:5:9:19 | 'original-term' | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/translate.js:9:5:9:19 | 'original-term' | enclosingFunctionBody | translate own goal backpass fumble feint target document location search searchParams URLSearchParams target substring 1 $ original-term html searchParams get term $ translated-term html translate searchParams get term |
-| autogenerated/Xss/DomBasedXss/translate.js:9:5:9:19 | 'original-term' | enclosingFunctionName |  |
-| autogenerated/Xss/DomBasedXss/translate.js:9:5:9:19 | 'original-term' | fileImports |  |
-| autogenerated/Xss/DomBasedXss/translate.js:9:5:9:19 | 'original-term' | receiverName |  |
-| autogenerated/Xss/DomBasedXss/translate.js:9:5:9:19 | 'original-term' | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/translate.js:9:27:9:50 | searchP ... 'term') | CalleeFlexibleAccessPath | $().html |
-| autogenerated/Xss/DomBasedXss/translate.js:9:27:9:50 | searchP ... 'term') | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/translate.js:9:27:9:50 | searchP ... 'term') | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/translate.js:9:27:9:50 | searchP ... 'term') | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/translate.js:9:27:9:50 | searchP ... 'term') | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/translate.js:9:27:9:50 | searchP ... 'term') | contextFunctionInterfaces |  |
-| autogenerated/Xss/DomBasedXss/translate.js:9:27:9:50 | searchP ... 'term') | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/translate.js:9:27:9:50 | searchP ... 'term') | enclosingFunctionBody | translate own goal backpass fumble feint target document location search searchParams URLSearchParams target substring 1 $ original-term html searchParams get term $ translated-term html translate searchParams get term |
-| autogenerated/Xss/DomBasedXss/translate.js:9:27:9:50 | searchP ... 'term') | enclosingFunctionName |  |
-| autogenerated/Xss/DomBasedXss/translate.js:9:27:9:50 | searchP ... 'term') | fileImports |  |
-| autogenerated/Xss/DomBasedXss/translate.js:9:27:9:50 | searchP ... 'term') | receiverName |  |
-| autogenerated/Xss/DomBasedXss/translate.js:9:27:9:50 | searchP ... 'term') | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/translate.js:9:44:9:49 | 'term' | CalleeFlexibleAccessPath | searchParams.get |
-| autogenerated/Xss/DomBasedXss/translate.js:9:44:9:49 | 'term' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/translate.js:9:44:9:49 | 'term' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/translate.js:9:44:9:49 | 'term' | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/translate.js:9:44:9:49 | 'term' | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/translate.js:9:44:9:49 | 'term' | contextFunctionInterfaces |  |
-| autogenerated/Xss/DomBasedXss/translate.js:9:44:9:49 | 'term' | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/translate.js:9:44:9:49 | 'term' | enclosingFunctionBody | translate own goal backpass fumble feint target document location search searchParams URLSearchParams target substring 1 $ original-term html searchParams get term $ translated-term html translate searchParams get term |
-| autogenerated/Xss/DomBasedXss/translate.js:9:44:9:49 | 'term' | enclosingFunctionName |  |
-| autogenerated/Xss/DomBasedXss/translate.js:9:44:9:49 | 'term' | fileImports |  |
-| autogenerated/Xss/DomBasedXss/translate.js:9:44:9:49 | 'term' | receiverName | searchParams |
-| autogenerated/Xss/DomBasedXss/translate.js:9:44:9:49 | 'term' | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/translate.js:11:5:11:21 | 'translated-term' | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/DomBasedXss/translate.js:11:5:11:21 | 'translated-term' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/translate.js:11:5:11:21 | 'translated-term' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/translate.js:11:5:11:21 | 'translated-term' | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/translate.js:11:5:11:21 | 'translated-term' | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/translate.js:11:5:11:21 | 'translated-term' | contextFunctionInterfaces |  |
-| autogenerated/Xss/DomBasedXss/translate.js:11:5:11:21 | 'translated-term' | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/translate.js:11:5:11:21 | 'translated-term' | enclosingFunctionBody | translate own goal backpass fumble feint target document location search searchParams URLSearchParams target substring 1 $ original-term html searchParams get term $ translated-term html translate searchParams get term |
-| autogenerated/Xss/DomBasedXss/translate.js:11:5:11:21 | 'translated-term' | enclosingFunctionName |  |
-| autogenerated/Xss/DomBasedXss/translate.js:11:5:11:21 | 'translated-term' | fileImports |  |
-| autogenerated/Xss/DomBasedXss/translate.js:11:5:11:21 | 'translated-term' | receiverName |  |
-| autogenerated/Xss/DomBasedXss/translate.js:11:5:11:21 | 'translated-term' | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/translate.js:11:29:11:63 | transla ... term')] | CalleeFlexibleAccessPath | $().html |
-| autogenerated/Xss/DomBasedXss/translate.js:11:29:11:63 | transla ... term')] | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/translate.js:11:29:11:63 | transla ... term')] | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/translate.js:11:29:11:63 | transla ... term')] | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/translate.js:11:29:11:63 | transla ... term')] | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/translate.js:11:29:11:63 | transla ... term')] | contextFunctionInterfaces |  |
-| autogenerated/Xss/DomBasedXss/translate.js:11:29:11:63 | transla ... term')] | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/translate.js:11:29:11:63 | transla ... term')] | enclosingFunctionBody | translate own goal backpass fumble feint target document location search searchParams URLSearchParams target substring 1 $ original-term html searchParams get term $ translated-term html translate searchParams get term |
-| autogenerated/Xss/DomBasedXss/translate.js:11:29:11:63 | transla ... term')] | enclosingFunctionName |  |
-| autogenerated/Xss/DomBasedXss/translate.js:11:29:11:63 | transla ... term')] | fileImports |  |
-| autogenerated/Xss/DomBasedXss/translate.js:11:29:11:63 | transla ... term')] | receiverName |  |
-| autogenerated/Xss/DomBasedXss/translate.js:11:29:11:63 | transla ... term')] | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/translate.js:11:56:11:61 | 'term' | CalleeFlexibleAccessPath | searchParams.get |
-| autogenerated/Xss/DomBasedXss/translate.js:11:56:11:61 | 'term' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/translate.js:11:56:11:61 | 'term' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/translate.js:11:56:11:61 | 'term' | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/translate.js:11:56:11:61 | 'term' | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/translate.js:11:56:11:61 | 'term' | contextFunctionInterfaces |  |
-| autogenerated/Xss/DomBasedXss/translate.js:11:56:11:61 | 'term' | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/translate.js:11:56:11:61 | 'term' | enclosingFunctionBody | translate own goal backpass fumble feint target document location search searchParams URLSearchParams target substring 1 $ original-term html searchParams get term $ translated-term html translate searchParams get term |
-| autogenerated/Xss/DomBasedXss/translate.js:11:56:11:61 | 'term' | enclosingFunctionName |  |
-| autogenerated/Xss/DomBasedXss/translate.js:11:56:11:61 | 'term' | fileImports |  |
-| autogenerated/Xss/DomBasedXss/translate.js:11:56:11:61 | 'term' | receiverName | searchParams |
-| autogenerated/Xss/DomBasedXss/translate.js:11:56:11:61 | 'term' | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst3.js:1:35:1:39 | "foo" | CalleeFlexibleAccessPath | document.getElementById |
-| autogenerated/Xss/DomBasedXss/tst3.js:1:35:1:39 | "foo" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst3.js:1:35:1:39 | "foo" | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst3.js:1:35:1:39 | "foo" | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst3.js:1:35:1:39 | "foo" | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst3.js:1:35:1:39 | "foo" | contextFunctionInterfaces |  |
-| autogenerated/Xss/DomBasedXss/tst3.js:1:35:1:39 | "foo" | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/DomBasedXss/tst3.js:1:35:1:39 | "foo" | enclosingFunctionBody |  |
-| autogenerated/Xss/DomBasedXss/tst3.js:1:35:1:39 | "foo" | enclosingFunctionName |  |
-| autogenerated/Xss/DomBasedXss/tst3.js:1:35:1:39 | "foo" | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst3.js:1:35:1:39 | "foo" | receiverName | document |
-| autogenerated/Xss/DomBasedXss/tst3.js:1:35:1:39 | "foo" | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst3.js:2:72:2:72 | 1 | CalleeFlexibleAccessPath | window.location.search.substr |
-| autogenerated/Xss/DomBasedXss/tst3.js:2:72:2:72 | 1 | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst3.js:2:72:2:72 | 1 | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst3.js:2:72:2:72 | 1 | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst3.js:2:72:2:72 | 1 | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst3.js:2:72:2:72 | 1 | contextFunctionInterfaces |  |
-| autogenerated/Xss/DomBasedXss/tst3.js:2:72:2:72 | 1 | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/DomBasedXss/tst3.js:2:72:2:72 | 1 | enclosingFunctionBody |  |
-| autogenerated/Xss/DomBasedXss/tst3.js:2:72:2:72 | 1 | enclosingFunctionName |  |
-| autogenerated/Xss/DomBasedXss/tst3.js:2:72:2:72 | 1 | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst3.js:2:72:2:72 | 1 | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst3.js:2:72:2:72 | 1 | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst3.js:4:25:4:32 | data.src | CalleeFlexibleAccessPath | foo.setAttribute |
-| autogenerated/Xss/DomBasedXss/tst3.js:4:25:4:32 | data.src | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst3.js:4:25:4:32 | data.src | InputArgumentIndex | 1 |
-| autogenerated/Xss/DomBasedXss/tst3.js:4:25:4:32 | data.src | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst3.js:4:25:4:32 | data.src | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst3.js:4:25:4:32 | data.src | contextFunctionInterfaces |  |
-| autogenerated/Xss/DomBasedXss/tst3.js:4:25:4:32 | data.src | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/DomBasedXss/tst3.js:4:25:4:32 | data.src | enclosingFunctionBody |  |
-| autogenerated/Xss/DomBasedXss/tst3.js:4:25:4:32 | data.src | enclosingFunctionName |  |
-| autogenerated/Xss/DomBasedXss/tst3.js:4:25:4:32 | data.src | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst3.js:4:25:4:32 | data.src | receiverName | foo |
-| autogenerated/Xss/DomBasedXss/tst3.js:4:25:4:32 | data.src | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst3.js:5:26:5:31 | data.p | CalleeFlexibleAccessPath | foo.setAttribute |
-| autogenerated/Xss/DomBasedXss/tst3.js:5:26:5:31 | data.p | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst3.js:5:26:5:31 | data.p | InputArgumentIndex | 1 |
-| autogenerated/Xss/DomBasedXss/tst3.js:5:26:5:31 | data.p | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst3.js:5:26:5:31 | data.p | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst3.js:5:26:5:31 | data.p | contextFunctionInterfaces |  |
-| autogenerated/Xss/DomBasedXss/tst3.js:5:26:5:31 | data.p | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/DomBasedXss/tst3.js:5:26:5:31 | data.p | enclosingFunctionBody |  |
-| autogenerated/Xss/DomBasedXss/tst3.js:5:26:5:31 | data.p | enclosingFunctionName |  |
-| autogenerated/Xss/DomBasedXss/tst3.js:5:26:5:31 | data.p | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst3.js:5:26:5:31 | data.p | receiverName | foo |
-| autogenerated/Xss/DomBasedXss/tst3.js:5:26:5:31 | data.p | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst3.js:6:18:6:24 | "width" | CalleeFlexibleAccessPath | foo.setAttribute |
-| autogenerated/Xss/DomBasedXss/tst3.js:6:18:6:24 | "width" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst3.js:6:18:6:24 | "width" | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst3.js:6:18:6:24 | "width" | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst3.js:6:18:6:24 | "width" | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst3.js:6:18:6:24 | "width" | contextFunctionInterfaces |  |
-| autogenerated/Xss/DomBasedXss/tst3.js:6:18:6:24 | "width" | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/DomBasedXss/tst3.js:6:18:6:24 | "width" | enclosingFunctionBody |  |
-| autogenerated/Xss/DomBasedXss/tst3.js:6:18:6:24 | "width" | enclosingFunctionName |  |
-| autogenerated/Xss/DomBasedXss/tst3.js:6:18:6:24 | "width" | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst3.js:6:18:6:24 | "width" | receiverName | foo |
-| autogenerated/Xss/DomBasedXss/tst3.js:6:18:6:24 | "width" | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst3.js:6:27:6:32 | data.w | CalleeFlexibleAccessPath | foo.setAttribute |
-| autogenerated/Xss/DomBasedXss/tst3.js:6:27:6:32 | data.w | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst3.js:6:27:6:32 | data.w | InputArgumentIndex | 1 |
-| autogenerated/Xss/DomBasedXss/tst3.js:6:27:6:32 | data.w | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst3.js:6:27:6:32 | data.w | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst3.js:6:27:6:32 | data.w | contextFunctionInterfaces |  |
-| autogenerated/Xss/DomBasedXss/tst3.js:6:27:6:32 | data.w | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/DomBasedXss/tst3.js:6:27:6:32 | data.w | enclosingFunctionBody |  |
-| autogenerated/Xss/DomBasedXss/tst3.js:6:27:6:32 | data.w | enclosingFunctionName |  |
-| autogenerated/Xss/DomBasedXss/tst3.js:6:27:6:32 | data.w | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst3.js:6:27:6:32 | data.w | receiverName | foo |
-| autogenerated/Xss/DomBasedXss/tst3.js:6:27:6:32 | data.w | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst3.js:7:32:7:37 | data.p | CalleeFlexibleAccessPath | foo.setAttribute |
-| autogenerated/Xss/DomBasedXss/tst3.js:7:32:7:37 | data.p | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst3.js:7:32:7:37 | data.p | InputArgumentIndex | 1 |
-| autogenerated/Xss/DomBasedXss/tst3.js:7:32:7:37 | data.p | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst3.js:7:32:7:37 | data.p | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst3.js:7:32:7:37 | data.p | contextFunctionInterfaces |  |
-| autogenerated/Xss/DomBasedXss/tst3.js:7:32:7:37 | data.p | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/DomBasedXss/tst3.js:7:32:7:37 | data.p | enclosingFunctionBody |  |
-| autogenerated/Xss/DomBasedXss/tst3.js:7:32:7:37 | data.p | enclosingFunctionName |  |
-| autogenerated/Xss/DomBasedXss/tst3.js:7:32:7:37 | data.p | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst3.js:7:32:7:37 | data.p | receiverName | foo |
-| autogenerated/Xss/DomBasedXss/tst3.js:7:32:7:37 | data.p | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst3.js:9:37:9:42 | data.p | CalleeFlexibleAccessPath | foo.setAttributeNS |
-| autogenerated/Xss/DomBasedXss/tst3.js:9:37:9:42 | data.p | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst3.js:9:37:9:42 | data.p | InputArgumentIndex | 2 |
-| autogenerated/Xss/DomBasedXss/tst3.js:9:37:9:42 | data.p | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst3.js:9:37:9:42 | data.p | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst3.js:9:37:9:42 | data.p | contextFunctionInterfaces |  |
-| autogenerated/Xss/DomBasedXss/tst3.js:9:37:9:42 | data.p | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/DomBasedXss/tst3.js:9:37:9:42 | data.p | enclosingFunctionBody |  |
-| autogenerated/Xss/DomBasedXss/tst3.js:9:37:9:42 | data.p | enclosingFunctionName |  |
-| autogenerated/Xss/DomBasedXss/tst3.js:9:37:9:42 | data.p | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst3.js:9:37:9:42 | data.p | receiverName | foo |
-| autogenerated/Xss/DomBasedXss/tst3.js:9:37:9:42 | data.p | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst3.js:10:38:10:43 | data.p | CalleeFlexibleAccessPath | foo.setAttributeNS |
-| autogenerated/Xss/DomBasedXss/tst3.js:10:38:10:43 | data.p | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst3.js:10:38:10:43 | data.p | InputArgumentIndex | 2 |
-| autogenerated/Xss/DomBasedXss/tst3.js:10:38:10:43 | data.p | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst3.js:10:38:10:43 | data.p | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst3.js:10:38:10:43 | data.p | contextFunctionInterfaces |  |
-| autogenerated/Xss/DomBasedXss/tst3.js:10:38:10:43 | data.p | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/DomBasedXss/tst3.js:10:38:10:43 | data.p | enclosingFunctionBody |  |
-| autogenerated/Xss/DomBasedXss/tst3.js:10:38:10:43 | data.p | enclosingFunctionName |  |
-| autogenerated/Xss/DomBasedXss/tst3.js:10:38:10:43 | data.p | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst3.js:10:38:10:43 | data.p | receiverName | foo |
-| autogenerated/Xss/DomBasedXss/tst3.js:10:38:10:43 | data.p | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst3.js:11:20:11:24 | 'baz' | CalleeFlexibleAccessPath | foo.setAttributeNS |
-| autogenerated/Xss/DomBasedXss/tst3.js:11:20:11:24 | 'baz' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst3.js:11:20:11:24 | 'baz' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst3.js:11:20:11:24 | 'baz' | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst3.js:11:20:11:24 | 'baz' | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst3.js:11:20:11:24 | 'baz' | contextFunctionInterfaces |  |
-| autogenerated/Xss/DomBasedXss/tst3.js:11:20:11:24 | 'baz' | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/DomBasedXss/tst3.js:11:20:11:24 | 'baz' | enclosingFunctionBody |  |
-| autogenerated/Xss/DomBasedXss/tst3.js:11:20:11:24 | 'baz' | enclosingFunctionName |  |
-| autogenerated/Xss/DomBasedXss/tst3.js:11:20:11:24 | 'baz' | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst3.js:11:20:11:24 | 'baz' | receiverName | foo |
-| autogenerated/Xss/DomBasedXss/tst3.js:11:20:11:24 | 'baz' | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst3.js:11:27:11:33 | 'width' | CalleeFlexibleAccessPath | foo.setAttributeNS |
-| autogenerated/Xss/DomBasedXss/tst3.js:11:27:11:33 | 'width' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst3.js:11:27:11:33 | 'width' | InputArgumentIndex | 1 |
-| autogenerated/Xss/DomBasedXss/tst3.js:11:27:11:33 | 'width' | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst3.js:11:27:11:33 | 'width' | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst3.js:11:27:11:33 | 'width' | contextFunctionInterfaces |  |
-| autogenerated/Xss/DomBasedXss/tst3.js:11:27:11:33 | 'width' | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/DomBasedXss/tst3.js:11:27:11:33 | 'width' | enclosingFunctionBody |  |
-| autogenerated/Xss/DomBasedXss/tst3.js:11:27:11:33 | 'width' | enclosingFunctionName |  |
-| autogenerated/Xss/DomBasedXss/tst3.js:11:27:11:33 | 'width' | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst3.js:11:27:11:33 | 'width' | receiverName | foo |
-| autogenerated/Xss/DomBasedXss/tst3.js:11:27:11:33 | 'width' | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst3.js:11:36:11:41 | data.w | CalleeFlexibleAccessPath | foo.setAttributeNS |
-| autogenerated/Xss/DomBasedXss/tst3.js:11:36:11:41 | data.w | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst3.js:11:36:11:41 | data.w | InputArgumentIndex | 2 |
-| autogenerated/Xss/DomBasedXss/tst3.js:11:36:11:41 | data.w | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst3.js:11:36:11:41 | data.w | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst3.js:11:36:11:41 | data.w | contextFunctionInterfaces |  |
-| autogenerated/Xss/DomBasedXss/tst3.js:11:36:11:41 | data.w | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/DomBasedXss/tst3.js:11:36:11:41 | data.w | enclosingFunctionBody |  |
-| autogenerated/Xss/DomBasedXss/tst3.js:11:36:11:41 | data.w | enclosingFunctionName |  |
-| autogenerated/Xss/DomBasedXss/tst3.js:11:36:11:41 | data.w | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst3.js:11:36:11:41 | data.w | receiverName | foo |
-| autogenerated/Xss/DomBasedXss/tst3.js:11:36:11:41 | data.w | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst3.js:15:20:15:20 | p | CalleeFlexibleAccessPath | foo.setAttribute |
-| autogenerated/Xss/DomBasedXss/tst3.js:15:20:15:20 | p | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst3.js:15:20:15:20 | p | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst3.js:15:20:15:20 | p | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst3.js:15:20:15:20 | p | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst3.js:15:20:15:20 | p | contextFunctionInterfaces |  |
-| autogenerated/Xss/DomBasedXss/tst3.js:15:20:15:20 | p | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/DomBasedXss/tst3.js:15:20:15:20 | p | enclosingFunctionBody |  |
-| autogenerated/Xss/DomBasedXss/tst3.js:15:20:15:20 | p | enclosingFunctionName |  |
-| autogenerated/Xss/DomBasedXss/tst3.js:15:20:15:20 | p | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst3.js:15:20:15:20 | p | receiverName | foo |
-| autogenerated/Xss/DomBasedXss/tst3.js:15:20:15:20 | p | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst3.js:15:23:15:29 | data[p] | CalleeFlexibleAccessPath | foo.setAttribute |
-| autogenerated/Xss/DomBasedXss/tst3.js:15:23:15:29 | data[p] | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst3.js:15:23:15:29 | data[p] | InputArgumentIndex | 1 |
-| autogenerated/Xss/DomBasedXss/tst3.js:15:23:15:29 | data[p] | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst3.js:15:23:15:29 | data[p] | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst3.js:15:23:15:29 | data[p] | contextFunctionInterfaces |  |
-| autogenerated/Xss/DomBasedXss/tst3.js:15:23:15:29 | data[p] | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/DomBasedXss/tst3.js:15:23:15:29 | data[p] | enclosingFunctionBody |  |
-| autogenerated/Xss/DomBasedXss/tst3.js:15:23:15:29 | data[p] | enclosingFunctionName |  |
-| autogenerated/Xss/DomBasedXss/tst3.js:15:23:15:29 | data[p] | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst3.js:15:23:15:29 | data[p] | receiverName | foo |
-| autogenerated/Xss/DomBasedXss/tst3.js:15:23:15:29 | data[p] | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:5:5:5:10 | 'myId' | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/DomBasedXss/tst.js:5:5:5:10 | 'myId' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:5:5:5:10 | 'myId' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:5:5:5:10 | 'myId' | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:5:5:5:10 | 'myId' | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:5:5:5:10 | 'myId' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:5:5:5:10 | 'myId' | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/tst.js:5:5:5:10 | 'myId' | enclosingFunctionBody | target document location search $ myId html target document write <OPTION value=1> document location href substring document location href indexOf default= 8 </OPTION> document write <OPTION value=2>English</OPTION> $ <div style="width: target px"> $ <div style="width: target px"> $ <div style="width: parseInt target px"> params URL document location searchParams $ name html params get name searchParams URLSearchParams target substring 1 $ name html searchParams get name |
-| autogenerated/Xss/DomBasedXss/tst.js:5:5:5:10 | 'myId' | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/tst.js:5:5:5:10 | 'myId' | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:5:5:5:10 | 'myId' | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:5:5:5:10 | 'myId' | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:5:18:5:23 | target | CalleeFlexibleAccessPath | $().html |
-| autogenerated/Xss/DomBasedXss/tst.js:5:18:5:23 | target | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:5:18:5:23 | target | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:5:18:5:23 | target | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:5:18:5:23 | target | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:5:18:5:23 | target | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:5:18:5:23 | target | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/tst.js:5:18:5:23 | target | enclosingFunctionBody | target document location search $ myId html target document write <OPTION value=1> document location href substring document location href indexOf default= 8 </OPTION> document write <OPTION value=2>English</OPTION> $ <div style="width: target px"> $ <div style="width: target px"> $ <div style="width: parseInt target px"> params URL document location searchParams $ name html params get name searchParams URLSearchParams target substring 1 $ name html searchParams get name |
-| autogenerated/Xss/DomBasedXss/tst.js:5:18:5:23 | target | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/tst.js:5:18:5:23 | target | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:5:18:5:23 | target | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:5:18:5:23 | target | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:8:18:8:35 | "<OPTION value=1>" | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/tst.js:8:18:8:35 | "<OPTION value=1>" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:8:18:8:35 | "<OPTION value=1>" | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/tst.js:8:18:8:35 | "<OPTION value=1>" | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:8:18:8:35 | "<OPTION value=1>" | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:8:18:8:35 | "<OPTION value=1>" | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:8:18:8:35 | "<OPTION value=1>" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/tst.js:8:18:8:35 | "<OPTION value=1>" | enclosingFunctionBody | target document location search $ myId html target document write <OPTION value=1> document location href substring document location href indexOf default= 8 </OPTION> document write <OPTION value=2>English</OPTION> $ <div style="width: target px"> $ <div style="width: target px"> $ <div style="width: parseInt target px"> params URL document location searchParams $ name html params get name searchParams URLSearchParams target substring 1 $ name html searchParams get name |
-| autogenerated/Xss/DomBasedXss/tst.js:8:18:8:35 | "<OPTION value=1>" | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/tst.js:8:18:8:35 | "<OPTION value=1>" | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:8:18:8:35 | "<OPTION value=1>" | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:8:18:8:35 | "<OPTION value=1>" | stringConcatenatedWith |  -endpoint- document.location.href.substring() + '</OPTION>' |
-| autogenerated/Xss/DomBasedXss/tst.js:8:18:8:126 | "<OPTIO ... PTION>" | CalleeFlexibleAccessPath | document.write |
-| autogenerated/Xss/DomBasedXss/tst.js:8:18:8:126 | "<OPTIO ... PTION>" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:8:18:8:126 | "<OPTIO ... PTION>" | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:8:18:8:126 | "<OPTIO ... PTION>" | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:8:18:8:126 | "<OPTIO ... PTION>" | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:8:18:8:126 | "<OPTIO ... PTION>" | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:8:18:8:126 | "<OPTIO ... PTION>" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/tst.js:8:18:8:126 | "<OPTIO ... PTION>" | enclosingFunctionBody | target document location search $ myId html target document write <OPTION value=1> document location href substring document location href indexOf default= 8 </OPTION> document write <OPTION value=2>English</OPTION> $ <div style="width: target px"> $ <div style="width: target px"> $ <div style="width: parseInt target px"> params URL document location searchParams $ name html params get name searchParams URLSearchParams target substring 1 $ name html searchParams get name |
-| autogenerated/Xss/DomBasedXss/tst.js:8:18:8:126 | "<OPTIO ... PTION>" | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/tst.js:8:18:8:126 | "<OPTIO ... PTION>" | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:8:18:8:126 | "<OPTIO ... PTION>" | receiverName | document |
-| autogenerated/Xss/DomBasedXss/tst.js:8:18:8:126 | "<OPTIO ... PTION>" | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:8:37:8:114 | documen ... t=")+8) | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/tst.js:8:37:8:114 | documen ... t=")+8) | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:8:37:8:114 | documen ... t=")+8) | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/tst.js:8:37:8:114 | documen ... t=")+8) | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:8:37:8:114 | documen ... t=")+8) | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:8:37:8:114 | documen ... t=")+8) | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:8:37:8:114 | documen ... t=")+8) | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/tst.js:8:37:8:114 | documen ... t=")+8) | enclosingFunctionBody | target document location search $ myId html target document write <OPTION value=1> document location href substring document location href indexOf default= 8 </OPTION> document write <OPTION value=2>English</OPTION> $ <div style="width: target px"> $ <div style="width: target px"> $ <div style="width: parseInt target px"> params URL document location searchParams $ name html params get name searchParams URLSearchParams target substring 1 $ name html searchParams get name |
-| autogenerated/Xss/DomBasedXss/tst.js:8:37:8:114 | documen ... t=")+8) | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/tst.js:8:37:8:114 | documen ... t=")+8) | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:8:37:8:114 | documen ... t=")+8) | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:8:37:8:114 | documen ... t=")+8) | stringConcatenatedWith | '<OPTION value=1>' -endpoint- '</OPTION>' |
-| autogenerated/Xss/DomBasedXss/tst.js:8:70:8:113 | documen ... lt=")+8 | CalleeFlexibleAccessPath | document.location.href.substring |
-| autogenerated/Xss/DomBasedXss/tst.js:8:70:8:113 | documen ... lt=")+8 | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:8:70:8:113 | documen ... lt=")+8 | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:8:70:8:113 | documen ... lt=")+8 | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:8:70:8:113 | documen ... lt=")+8 | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:8:70:8:113 | documen ... lt=")+8 | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:8:70:8:113 | documen ... lt=")+8 | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/tst.js:8:70:8:113 | documen ... lt=")+8 | enclosingFunctionBody | target document location search $ myId html target document write <OPTION value=1> document location href substring document location href indexOf default= 8 </OPTION> document write <OPTION value=2>English</OPTION> $ <div style="width: target px"> $ <div style="width: target px"> $ <div style="width: parseInt target px"> params URL document location searchParams $ name html params get name searchParams URLSearchParams target substring 1 $ name html searchParams get name |
-| autogenerated/Xss/DomBasedXss/tst.js:8:70:8:113 | documen ... lt=")+8 | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/tst.js:8:70:8:113 | documen ... lt=")+8 | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:8:70:8:113 | documen ... lt=")+8 | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:8:70:8:113 | documen ... lt=")+8 | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:8:101:8:110 | "default=" | CalleeFlexibleAccessPath | document.location.href.indexOf |
-| autogenerated/Xss/DomBasedXss/tst.js:8:101:8:110 | "default=" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:8:101:8:110 | "default=" | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:8:101:8:110 | "default=" | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:8:101:8:110 | "default=" | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:8:101:8:110 | "default=" | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:8:101:8:110 | "default=" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/tst.js:8:101:8:110 | "default=" | enclosingFunctionBody | target document location search $ myId html target document write <OPTION value=1> document location href substring document location href indexOf default= 8 </OPTION> document write <OPTION value=2>English</OPTION> $ <div style="width: target px"> $ <div style="width: target px"> $ <div style="width: parseInt target px"> params URL document location searchParams $ name html params get name searchParams URLSearchParams target substring 1 $ name html searchParams get name |
-| autogenerated/Xss/DomBasedXss/tst.js:8:101:8:110 | "default=" | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/tst.js:8:101:8:110 | "default=" | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:8:101:8:110 | "default=" | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:8:101:8:110 | "default=" | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:8:116:8:126 | "</OPTION>" | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/tst.js:8:116:8:126 | "</OPTION>" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:8:116:8:126 | "</OPTION>" | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/tst.js:8:116:8:126 | "</OPTION>" | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:8:116:8:126 | "</OPTION>" | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:8:116:8:126 | "</OPTION>" | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:8:116:8:126 | "</OPTION>" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/tst.js:8:116:8:126 | "</OPTION>" | enclosingFunctionBody | target document location search $ myId html target document write <OPTION value=1> document location href substring document location href indexOf default= 8 </OPTION> document write <OPTION value=2>English</OPTION> $ <div style="width: target px"> $ <div style="width: target px"> $ <div style="width: parseInt target px"> params URL document location searchParams $ name html params get name searchParams URLSearchParams target substring 1 $ name html searchParams get name |
-| autogenerated/Xss/DomBasedXss/tst.js:8:116:8:126 | "</OPTION>" | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/tst.js:8:116:8:126 | "</OPTION>" | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:8:116:8:126 | "</OPTION>" | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:8:116:8:126 | "</OPTION>" | stringConcatenatedWith | '<OPTION value=1>' + document.location.href.substring() -endpoint-  |
-| autogenerated/Xss/DomBasedXss/tst.js:9:18:9:51 | "<OPTIO ... PTION>" | CalleeFlexibleAccessPath | document.write |
-| autogenerated/Xss/DomBasedXss/tst.js:9:18:9:51 | "<OPTIO ... PTION>" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:9:18:9:51 | "<OPTIO ... PTION>" | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:9:18:9:51 | "<OPTIO ... PTION>" | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:9:18:9:51 | "<OPTIO ... PTION>" | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:9:18:9:51 | "<OPTIO ... PTION>" | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:9:18:9:51 | "<OPTIO ... PTION>" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/tst.js:9:18:9:51 | "<OPTIO ... PTION>" | enclosingFunctionBody | target document location search $ myId html target document write <OPTION value=1> document location href substring document location href indexOf default= 8 </OPTION> document write <OPTION value=2>English</OPTION> $ <div style="width: target px"> $ <div style="width: target px"> $ <div style="width: parseInt target px"> params URL document location searchParams $ name html params get name searchParams URLSearchParams target substring 1 $ name html searchParams get name |
-| autogenerated/Xss/DomBasedXss/tst.js:9:18:9:51 | "<OPTIO ... PTION>" | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/tst.js:9:18:9:51 | "<OPTIO ... PTION>" | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:9:18:9:51 | "<OPTIO ... PTION>" | receiverName | document |
-| autogenerated/Xss/DomBasedXss/tst.js:9:18:9:51 | "<OPTIO ... PTION>" | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:12:5:12:24 | '<div style="width:' | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/tst.js:12:5:12:24 | '<div style="width:' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:12:5:12:24 | '<div style="width:' | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/tst.js:12:5:12:24 | '<div style="width:' | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:12:5:12:24 | '<div style="width:' | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:12:5:12:24 | '<div style="width:' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:12:5:12:24 | '<div style="width:' | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/tst.js:12:5:12:24 | '<div style="width:' | enclosingFunctionBody | target document location search $ myId html target document write <OPTION value=1> document location href substring document location href indexOf default= 8 </OPTION> document write <OPTION value=2>English</OPTION> $ <div style="width: target px"> $ <div style="width: target px"> $ <div style="width: parseInt target px"> params URL document location searchParams $ name html params get name searchParams URLSearchParams target substring 1 $ name html searchParams get name |
-| autogenerated/Xss/DomBasedXss/tst.js:12:5:12:24 | '<div style="width:' | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/tst.js:12:5:12:24 | '<div style="width:' | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:12:5:12:24 | '<div style="width:' | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:12:5:12:24 | '<div style="width:' | stringConcatenatedWith |  -endpoint- target + 'px">' |
-| autogenerated/Xss/DomBasedXss/tst.js:12:5:12:42 | '<div s ...  'px">' | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/DomBasedXss/tst.js:12:5:12:42 | '<div s ...  'px">' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:12:5:12:42 | '<div s ...  'px">' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:12:5:12:42 | '<div s ...  'px">' | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:12:5:12:42 | '<div s ...  'px">' | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:12:5:12:42 | '<div s ...  'px">' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:12:5:12:42 | '<div s ...  'px">' | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/tst.js:12:5:12:42 | '<div s ...  'px">' | enclosingFunctionBody | target document location search $ myId html target document write <OPTION value=1> document location href substring document location href indexOf default= 8 </OPTION> document write <OPTION value=2>English</OPTION> $ <div style="width: target px"> $ <div style="width: target px"> $ <div style="width: parseInt target px"> params URL document location searchParams $ name html params get name searchParams URLSearchParams target substring 1 $ name html searchParams get name |
-| autogenerated/Xss/DomBasedXss/tst.js:12:5:12:42 | '<div s ...  'px">' | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/tst.js:12:5:12:42 | '<div s ...  'px">' | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:12:5:12:42 | '<div s ...  'px">' | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:12:5:12:42 | '<div s ...  'px">' | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:12:28:12:33 | target | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/tst.js:12:28:12:33 | target | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:12:28:12:33 | target | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/tst.js:12:28:12:33 | target | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:12:28:12:33 | target | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:12:28:12:33 | target | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:12:28:12:33 | target | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/tst.js:12:28:12:33 | target | enclosingFunctionBody | target document location search $ myId html target document write <OPTION value=1> document location href substring document location href indexOf default= 8 </OPTION> document write <OPTION value=2>English</OPTION> $ <div style="width: target px"> $ <div style="width: target px"> $ <div style="width: parseInt target px"> params URL document location searchParams $ name html params get name searchParams URLSearchParams target substring 1 $ name html searchParams get name |
-| autogenerated/Xss/DomBasedXss/tst.js:12:28:12:33 | target | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/tst.js:12:28:12:33 | target | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:12:28:12:33 | target | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:12:28:12:33 | target | stringConcatenatedWith | '<div style="width:' -endpoint- 'px">' |
-| autogenerated/Xss/DomBasedXss/tst.js:12:37:12:42 | 'px">' | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/tst.js:12:37:12:42 | 'px">' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:12:37:12:42 | 'px">' | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/tst.js:12:37:12:42 | 'px">' | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:12:37:12:42 | 'px">' | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:12:37:12:42 | 'px">' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:12:37:12:42 | 'px">' | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/tst.js:12:37:12:42 | 'px">' | enclosingFunctionBody | target document location search $ myId html target document write <OPTION value=1> document location href substring document location href indexOf default= 8 </OPTION> document write <OPTION value=2>English</OPTION> $ <div style="width: target px"> $ <div style="width: target px"> $ <div style="width: parseInt target px"> params URL document location searchParams $ name html params get name searchParams URLSearchParams target substring 1 $ name html searchParams get name |
-| autogenerated/Xss/DomBasedXss/tst.js:12:37:12:42 | 'px">' | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/tst.js:12:37:12:42 | 'px">' | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:12:37:12:42 | 'px">' | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:12:37:12:42 | 'px">' | stringConcatenatedWith | '<div style="width:' + target -endpoint-  |
-| autogenerated/Xss/DomBasedXss/tst.js:14:5:14:24 | '<div style="width:' | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/tst.js:14:5:14:24 | '<div style="width:' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:14:5:14:24 | '<div style="width:' | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/tst.js:14:5:14:24 | '<div style="width:' | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:14:5:14:24 | '<div style="width:' | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:14:5:14:24 | '<div style="width:' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:14:5:14:24 | '<div style="width:' | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/tst.js:14:5:14:24 | '<div style="width:' | enclosingFunctionBody | target document location search $ myId html target document write <OPTION value=1> document location href substring document location href indexOf default= 8 </OPTION> document write <OPTION value=2>English</OPTION> $ <div style="width: target px"> $ <div style="width: target px"> $ <div style="width: parseInt target px"> params URL document location searchParams $ name html params get name searchParams URLSearchParams target substring 1 $ name html searchParams get name |
-| autogenerated/Xss/DomBasedXss/tst.js:14:5:14:24 | '<div style="width:' | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/tst.js:14:5:14:24 | '<div style="width:' | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:14:5:14:24 | '<div style="width:' | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:14:5:14:24 | '<div style="width:' | stringConcatenatedWith |  -endpoint- ? + 'px">' |
-| autogenerated/Xss/DomBasedXss/tst.js:14:5:14:43 | '<div s ...  'px">' | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/DomBasedXss/tst.js:14:5:14:43 | '<div s ...  'px">' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:14:5:14:43 | '<div s ...  'px">' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:14:5:14:43 | '<div s ...  'px">' | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:14:5:14:43 | '<div s ...  'px">' | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:14:5:14:43 | '<div s ...  'px">' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:14:5:14:43 | '<div s ...  'px">' | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/tst.js:14:5:14:43 | '<div s ...  'px">' | enclosingFunctionBody | target document location search $ myId html target document write <OPTION value=1> document location href substring document location href indexOf default= 8 </OPTION> document write <OPTION value=2>English</OPTION> $ <div style="width: target px"> $ <div style="width: target px"> $ <div style="width: parseInt target px"> params URL document location searchParams $ name html params get name searchParams URLSearchParams target substring 1 $ name html searchParams get name |
-| autogenerated/Xss/DomBasedXss/tst.js:14:5:14:43 | '<div s ...  'px">' | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/tst.js:14:5:14:43 | '<div s ...  'px">' | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:14:5:14:43 | '<div s ...  'px">' | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:14:5:14:43 | '<div s ...  'px">' | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:14:28:14:34 | +target | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/tst.js:14:28:14:34 | +target | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:14:28:14:34 | +target | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/tst.js:14:28:14:34 | +target | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:14:28:14:34 | +target | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:14:28:14:34 | +target | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:14:28:14:34 | +target | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/tst.js:14:28:14:34 | +target | enclosingFunctionBody | target document location search $ myId html target document write <OPTION value=1> document location href substring document location href indexOf default= 8 </OPTION> document write <OPTION value=2>English</OPTION> $ <div style="width: target px"> $ <div style="width: target px"> $ <div style="width: parseInt target px"> params URL document location searchParams $ name html params get name searchParams URLSearchParams target substring 1 $ name html searchParams get name |
-| autogenerated/Xss/DomBasedXss/tst.js:14:28:14:34 | +target | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/tst.js:14:28:14:34 | +target | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:14:28:14:34 | +target | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:14:28:14:34 | +target | stringConcatenatedWith | '<div style="width:' -endpoint- 'px">' |
-| autogenerated/Xss/DomBasedXss/tst.js:14:38:14:43 | 'px">' | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/tst.js:14:38:14:43 | 'px">' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:14:38:14:43 | 'px">' | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/tst.js:14:38:14:43 | 'px">' | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:14:38:14:43 | 'px">' | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:14:38:14:43 | 'px">' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:14:38:14:43 | 'px">' | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/tst.js:14:38:14:43 | 'px">' | enclosingFunctionBody | target document location search $ myId html target document write <OPTION value=1> document location href substring document location href indexOf default= 8 </OPTION> document write <OPTION value=2>English</OPTION> $ <div style="width: target px"> $ <div style="width: target px"> $ <div style="width: parseInt target px"> params URL document location searchParams $ name html params get name searchParams URLSearchParams target substring 1 $ name html searchParams get name |
-| autogenerated/Xss/DomBasedXss/tst.js:14:38:14:43 | 'px">' | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/tst.js:14:38:14:43 | 'px">' | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:14:38:14:43 | 'px">' | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:14:38:14:43 | 'px">' | stringConcatenatedWith | '<div style="width:' + ? -endpoint-  |
-| autogenerated/Xss/DomBasedXss/tst.js:15:5:15:24 | '<div style="width:' | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/tst.js:15:5:15:24 | '<div style="width:' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:15:5:15:24 | '<div style="width:' | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/tst.js:15:5:15:24 | '<div style="width:' | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:15:5:15:24 | '<div style="width:' | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:15:5:15:24 | '<div style="width:' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:15:5:15:24 | '<div style="width:' | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/tst.js:15:5:15:24 | '<div style="width:' | enclosingFunctionBody | target document location search $ myId html target document write <OPTION value=1> document location href substring document location href indexOf default= 8 </OPTION> document write <OPTION value=2>English</OPTION> $ <div style="width: target px"> $ <div style="width: target px"> $ <div style="width: parseInt target px"> params URL document location searchParams $ name html params get name searchParams URLSearchParams target substring 1 $ name html searchParams get name |
-| autogenerated/Xss/DomBasedXss/tst.js:15:5:15:24 | '<div style="width:' | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/tst.js:15:5:15:24 | '<div style="width:' | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:15:5:15:24 | '<div style="width:' | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:15:5:15:24 | '<div style="width:' | stringConcatenatedWith |  -endpoint- parseInt() + 'px">' |
-| autogenerated/Xss/DomBasedXss/tst.js:15:5:15:52 | '<div s ...  'px">' | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/DomBasedXss/tst.js:15:5:15:52 | '<div s ...  'px">' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:15:5:15:52 | '<div s ...  'px">' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:15:5:15:52 | '<div s ...  'px">' | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:15:5:15:52 | '<div s ...  'px">' | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:15:5:15:52 | '<div s ...  'px">' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:15:5:15:52 | '<div s ...  'px">' | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/tst.js:15:5:15:52 | '<div s ...  'px">' | enclosingFunctionBody | target document location search $ myId html target document write <OPTION value=1> document location href substring document location href indexOf default= 8 </OPTION> document write <OPTION value=2>English</OPTION> $ <div style="width: target px"> $ <div style="width: target px"> $ <div style="width: parseInt target px"> params URL document location searchParams $ name html params get name searchParams URLSearchParams target substring 1 $ name html searchParams get name |
-| autogenerated/Xss/DomBasedXss/tst.js:15:5:15:52 | '<div s ...  'px">' | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/tst.js:15:5:15:52 | '<div s ...  'px">' | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:15:5:15:52 | '<div s ...  'px">' | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:15:5:15:52 | '<div s ...  'px">' | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:15:28:15:43 | parseInt(target) | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/tst.js:15:28:15:43 | parseInt(target) | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:15:28:15:43 | parseInt(target) | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/tst.js:15:28:15:43 | parseInt(target) | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:15:28:15:43 | parseInt(target) | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:15:28:15:43 | parseInt(target) | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:15:28:15:43 | parseInt(target) | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/tst.js:15:28:15:43 | parseInt(target) | enclosingFunctionBody | target document location search $ myId html target document write <OPTION value=1> document location href substring document location href indexOf default= 8 </OPTION> document write <OPTION value=2>English</OPTION> $ <div style="width: target px"> $ <div style="width: target px"> $ <div style="width: parseInt target px"> params URL document location searchParams $ name html params get name searchParams URLSearchParams target substring 1 $ name html searchParams get name |
-| autogenerated/Xss/DomBasedXss/tst.js:15:28:15:43 | parseInt(target) | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/tst.js:15:28:15:43 | parseInt(target) | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:15:28:15:43 | parseInt(target) | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:15:28:15:43 | parseInt(target) | stringConcatenatedWith | '<div style="width:' -endpoint- 'px">' |
-| autogenerated/Xss/DomBasedXss/tst.js:15:37:15:42 | target | CalleeFlexibleAccessPath | parseInt |
-| autogenerated/Xss/DomBasedXss/tst.js:15:37:15:42 | target | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:15:37:15:42 | target | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:15:37:15:42 | target | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:15:37:15:42 | target | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:15:37:15:42 | target | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:15:37:15:42 | target | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/tst.js:15:37:15:42 | target | enclosingFunctionBody | target document location search $ myId html target document write <OPTION value=1> document location href substring document location href indexOf default= 8 </OPTION> document write <OPTION value=2>English</OPTION> $ <div style="width: target px"> $ <div style="width: target px"> $ <div style="width: parseInt target px"> params URL document location searchParams $ name html params get name searchParams URLSearchParams target substring 1 $ name html searchParams get name |
-| autogenerated/Xss/DomBasedXss/tst.js:15:37:15:42 | target | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/tst.js:15:37:15:42 | target | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:15:37:15:42 | target | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:15:37:15:42 | target | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:15:47:15:52 | 'px">' | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/tst.js:15:47:15:52 | 'px">' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:15:47:15:52 | 'px">' | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/tst.js:15:47:15:52 | 'px">' | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:15:47:15:52 | 'px">' | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:15:47:15:52 | 'px">' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:15:47:15:52 | 'px">' | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/tst.js:15:47:15:52 | 'px">' | enclosingFunctionBody | target document location search $ myId html target document write <OPTION value=1> document location href substring document location href indexOf default= 8 </OPTION> document write <OPTION value=2>English</OPTION> $ <div style="width: target px"> $ <div style="width: target px"> $ <div style="width: parseInt target px"> params URL document location searchParams $ name html params get name searchParams URLSearchParams target substring 1 $ name html searchParams get name |
-| autogenerated/Xss/DomBasedXss/tst.js:15:47:15:52 | 'px">' | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/tst.js:15:47:15:52 | 'px">' | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:15:47:15:52 | 'px">' | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:15:47:15:52 | 'px">' | stringConcatenatedWith | '<div style="width:' + parseInt() -endpoint-  |
-| autogenerated/Xss/DomBasedXss/tst.js:18:5:18:10 | 'name' | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/DomBasedXss/tst.js:18:5:18:10 | 'name' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:18:5:18:10 | 'name' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:18:5:18:10 | 'name' | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:18:5:18:10 | 'name' | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:18:5:18:10 | 'name' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:18:5:18:10 | 'name' | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/tst.js:18:5:18:10 | 'name' | enclosingFunctionBody | target document location search $ myId html target document write <OPTION value=1> document location href substring document location href indexOf default= 8 </OPTION> document write <OPTION value=2>English</OPTION> $ <div style="width: target px"> $ <div style="width: target px"> $ <div style="width: parseInt target px"> params URL document location searchParams $ name html params get name searchParams URLSearchParams target substring 1 $ name html searchParams get name |
-| autogenerated/Xss/DomBasedXss/tst.js:18:5:18:10 | 'name' | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/tst.js:18:5:18:10 | 'name' | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:18:5:18:10 | 'name' | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:18:5:18:10 | 'name' | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:18:18:18:35 | params.get('name') | CalleeFlexibleAccessPath | $().html |
-| autogenerated/Xss/DomBasedXss/tst.js:18:18:18:35 | params.get('name') | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:18:18:18:35 | params.get('name') | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:18:18:18:35 | params.get('name') | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:18:18:18:35 | params.get('name') | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:18:18:18:35 | params.get('name') | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:18:18:18:35 | params.get('name') | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/tst.js:18:18:18:35 | params.get('name') | enclosingFunctionBody | target document location search $ myId html target document write <OPTION value=1> document location href substring document location href indexOf default= 8 </OPTION> document write <OPTION value=2>English</OPTION> $ <div style="width: target px"> $ <div style="width: target px"> $ <div style="width: parseInt target px"> params URL document location searchParams $ name html params get name searchParams URLSearchParams target substring 1 $ name html searchParams get name |
-| autogenerated/Xss/DomBasedXss/tst.js:18:18:18:35 | params.get('name') | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/tst.js:18:18:18:35 | params.get('name') | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:18:18:18:35 | params.get('name') | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:18:18:18:35 | params.get('name') | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:18:29:18:34 | 'name' | CalleeFlexibleAccessPath | params.get |
-| autogenerated/Xss/DomBasedXss/tst.js:18:29:18:34 | 'name' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:18:29:18:34 | 'name' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:18:29:18:34 | 'name' | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:18:29:18:34 | 'name' | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:18:29:18:34 | 'name' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:18:29:18:34 | 'name' | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/tst.js:18:29:18:34 | 'name' | enclosingFunctionBody | target document location search $ myId html target document write <OPTION value=1> document location href substring document location href indexOf default= 8 </OPTION> document write <OPTION value=2>English</OPTION> $ <div style="width: target px"> $ <div style="width: target px"> $ <div style="width: parseInt target px"> params URL document location searchParams $ name html params get name searchParams URLSearchParams target substring 1 $ name html searchParams get name |
-| autogenerated/Xss/DomBasedXss/tst.js:18:29:18:34 | 'name' | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/tst.js:18:29:18:34 | 'name' | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:18:29:18:34 | 'name' | receiverName | params |
-| autogenerated/Xss/DomBasedXss/tst.js:18:29:18:34 | 'name' | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:20:59:20:59 | 1 | CalleeFlexibleAccessPath | target.substring |
-| autogenerated/Xss/DomBasedXss/tst.js:20:59:20:59 | 1 | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:20:59:20:59 | 1 | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:20:59:20:59 | 1 | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:20:59:20:59 | 1 | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:20:59:20:59 | 1 | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:20:59:20:59 | 1 | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/tst.js:20:59:20:59 | 1 | enclosingFunctionBody | target document location search $ myId html target document write <OPTION value=1> document location href substring document location href indexOf default= 8 </OPTION> document write <OPTION value=2>English</OPTION> $ <div style="width: target px"> $ <div style="width: target px"> $ <div style="width: parseInt target px"> params URL document location searchParams $ name html params get name searchParams URLSearchParams target substring 1 $ name html searchParams get name |
-| autogenerated/Xss/DomBasedXss/tst.js:20:59:20:59 | 1 | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/tst.js:20:59:20:59 | 1 | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:20:59:20:59 | 1 | receiverName | target |
-| autogenerated/Xss/DomBasedXss/tst.js:20:59:20:59 | 1 | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:21:5:21:10 | 'name' | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/DomBasedXss/tst.js:21:5:21:10 | 'name' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:21:5:21:10 | 'name' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:21:5:21:10 | 'name' | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:21:5:21:10 | 'name' | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:21:5:21:10 | 'name' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:21:5:21:10 | 'name' | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/tst.js:21:5:21:10 | 'name' | enclosingFunctionBody | target document location search $ myId html target document write <OPTION value=1> document location href substring document location href indexOf default= 8 </OPTION> document write <OPTION value=2>English</OPTION> $ <div style="width: target px"> $ <div style="width: target px"> $ <div style="width: parseInt target px"> params URL document location searchParams $ name html params get name searchParams URLSearchParams target substring 1 $ name html searchParams get name |
-| autogenerated/Xss/DomBasedXss/tst.js:21:5:21:10 | 'name' | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/tst.js:21:5:21:10 | 'name' | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:21:5:21:10 | 'name' | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:21:5:21:10 | 'name' | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:21:18:21:41 | searchP ... 'name') | CalleeFlexibleAccessPath | $().html |
-| autogenerated/Xss/DomBasedXss/tst.js:21:18:21:41 | searchP ... 'name') | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:21:18:21:41 | searchP ... 'name') | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:21:18:21:41 | searchP ... 'name') | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:21:18:21:41 | searchP ... 'name') | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:21:18:21:41 | searchP ... 'name') | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:21:18:21:41 | searchP ... 'name') | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/tst.js:21:18:21:41 | searchP ... 'name') | enclosingFunctionBody | target document location search $ myId html target document write <OPTION value=1> document location href substring document location href indexOf default= 8 </OPTION> document write <OPTION value=2>English</OPTION> $ <div style="width: target px"> $ <div style="width: target px"> $ <div style="width: parseInt target px"> params URL document location searchParams $ name html params get name searchParams URLSearchParams target substring 1 $ name html searchParams get name |
-| autogenerated/Xss/DomBasedXss/tst.js:21:18:21:41 | searchP ... 'name') | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/tst.js:21:18:21:41 | searchP ... 'name') | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:21:18:21:41 | searchP ... 'name') | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:21:18:21:41 | searchP ... 'name') | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:21:35:21:40 | 'name' | CalleeFlexibleAccessPath | searchParams.get |
-| autogenerated/Xss/DomBasedXss/tst.js:21:35:21:40 | 'name' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:21:35:21:40 | 'name' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:21:35:21:40 | 'name' | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:21:35:21:40 | 'name' | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:21:35:21:40 | 'name' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:21:35:21:40 | 'name' | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/tst.js:21:35:21:40 | 'name' | enclosingFunctionBody | target document location search $ myId html target document write <OPTION value=1> document location href substring document location href indexOf default= 8 </OPTION> document write <OPTION value=2>English</OPTION> $ <div style="width: target px"> $ <div style="width: target px"> $ <div style="width: parseInt target px"> params URL document location searchParams $ name html params get name searchParams URLSearchParams target substring 1 $ name html searchParams get name |
-| autogenerated/Xss/DomBasedXss/tst.js:21:35:21:40 | 'name' | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/tst.js:21:35:21:40 | 'name' | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:21:35:21:40 | 'name' | receiverName | searchParams |
-| autogenerated/Xss/DomBasedXss/tst.js:21:35:21:40 | 'name' | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:26:5:26:10 | 'myId' | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/DomBasedXss/tst.js:26:5:26:10 | 'myId' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:26:5:26:10 | 'myId' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:26:5:26:10 | 'myId' | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:26:5:26:10 | 'myId' | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:26:5:26:10 | 'myId' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:26:5:26:10 | 'myId' | contextSurroundingFunctionParameters | (target) |
-| autogenerated/Xss/DomBasedXss/tst.js:26:5:26:10 | 'myId' | enclosingFunctionBody | target $ myId html target |
-| autogenerated/Xss/DomBasedXss/tst.js:26:5:26:10 | 'myId' | enclosingFunctionName | foo |
-| autogenerated/Xss/DomBasedXss/tst.js:26:5:26:10 | 'myId' | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:26:5:26:10 | 'myId' | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:26:5:26:10 | 'myId' | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:26:18:26:23 | target | CalleeFlexibleAccessPath | $().html |
-| autogenerated/Xss/DomBasedXss/tst.js:26:18:26:23 | target | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:26:18:26:23 | target | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:26:18:26:23 | target | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:26:18:26:23 | target | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:26:18:26:23 | target | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:26:18:26:23 | target | contextSurroundingFunctionParameters | (target) |
-| autogenerated/Xss/DomBasedXss/tst.js:26:18:26:23 | target | enclosingFunctionBody | target $ myId html target |
-| autogenerated/Xss/DomBasedXss/tst.js:26:18:26:23 | target | enclosingFunctionName | foo |
-| autogenerated/Xss/DomBasedXss/tst.js:26:18:26:23 | target | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:26:18:26:23 | target | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:26:18:26:23 | target | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:34:3:34:8 | 'myId' | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/DomBasedXss/tst.js:34:3:34:8 | 'myId' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:34:3:34:8 | 'myId' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:34:3:34:8 | 'myId' | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:34:3:34:8 | 'myId' | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:34:3:34:8 | 'myId' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:34:3:34:8 | 'myId' | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/DomBasedXss/tst.js:34:3:34:8 | 'myId' | enclosingFunctionBody |  |
-| autogenerated/Xss/DomBasedXss/tst.js:34:3:34:8 | 'myId' | enclosingFunctionName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:34:3:34:8 | 'myId' | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:34:3:34:8 | 'myId' | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:34:3:34:8 | 'myId' | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:34:16:34:20 | bar() | CalleeFlexibleAccessPath | $().html |
-| autogenerated/Xss/DomBasedXss/tst.js:34:16:34:20 | bar() | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:34:16:34:20 | bar() | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:34:16:34:20 | bar() | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:34:16:34:20 | bar() | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:34:16:34:20 | bar() | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:34:16:34:20 | bar() | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/DomBasedXss/tst.js:34:16:34:20 | bar() | enclosingFunctionBody |  |
-| autogenerated/Xss/DomBasedXss/tst.js:34:16:34:20 | bar() | enclosingFunctionName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:34:16:34:20 | bar() | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:34:16:34:20 | bar() | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:34:16:34:20 | bar() | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:40:3:40:8 | 'myId' | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/DomBasedXss/tst.js:40:3:40:8 | 'myId' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:40:3:40:8 | 'myId' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:40:3:40:8 | 'myId' | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:40:3:40:8 | 'myId' | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:40:3:40:8 | 'myId' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:40:3:40:8 | 'myId' | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/DomBasedXss/tst.js:40:3:40:8 | 'myId' | enclosingFunctionBody |  |
-| autogenerated/Xss/DomBasedXss/tst.js:40:3:40:8 | 'myId' | enclosingFunctionName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:40:3:40:8 | 'myId' | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:40:3:40:8 | 'myId' | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:40:3:40:8 | 'myId' | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:40:16:40:44 | baz(doc ... search) | CalleeFlexibleAccessPath | $().html |
-| autogenerated/Xss/DomBasedXss/tst.js:40:16:40:44 | baz(doc ... search) | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:40:16:40:44 | baz(doc ... search) | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:40:16:40:44 | baz(doc ... search) | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:40:16:40:44 | baz(doc ... search) | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:40:16:40:44 | baz(doc ... search) | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:40:16:40:44 | baz(doc ... search) | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/DomBasedXss/tst.js:40:16:40:44 | baz(doc ... search) | enclosingFunctionBody |  |
-| autogenerated/Xss/DomBasedXss/tst.js:40:16:40:44 | baz(doc ... search) | enclosingFunctionName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:40:16:40:44 | baz(doc ... search) | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:40:16:40:44 | baz(doc ... search) | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:40:16:40:44 | baz(doc ... search) | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:40:20:40:43 | documen ... .search | CalleeFlexibleAccessPath | baz |
-| autogenerated/Xss/DomBasedXss/tst.js:40:20:40:43 | documen ... .search | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:40:20:40:43 | documen ... .search | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:40:20:40:43 | documen ... .search | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:40:20:40:43 | documen ... .search | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:40:20:40:43 | documen ... .search | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:40:20:40:43 | documen ... .search | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/DomBasedXss/tst.js:40:20:40:43 | documen ... .search | enclosingFunctionBody |  |
-| autogenerated/Xss/DomBasedXss/tst.js:40:20:40:43 | documen ... .search | enclosingFunctionName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:40:20:40:43 | documen ... .search | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:40:20:40:43 | documen ... .search | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:40:20:40:43 | documen ... .search | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:43:10:43:16 | "<div>" | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/tst.js:43:10:43:16 | "<div>" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:43:10:43:16 | "<div>" | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/tst.js:43:10:43:16 | "<div>" | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:43:10:43:16 | "<div>" | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:43:10:43:16 | "<div>" | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:43:10:43:16 | "<div>" | contextSurroundingFunctionParameters | (s) |
-| autogenerated/Xss/DomBasedXss/tst.js:43:10:43:16 | "<div>" | enclosingFunctionBody | s <div> s </div> |
-| autogenerated/Xss/DomBasedXss/tst.js:43:10:43:16 | "<div>" | enclosingFunctionName | wrap |
-| autogenerated/Xss/DomBasedXss/tst.js:43:10:43:16 | "<div>" | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:43:10:43:16 | "<div>" | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:43:10:43:16 | "<div>" | stringConcatenatedWith |  -endpoint- s + '</div>' |
-| autogenerated/Xss/DomBasedXss/tst.js:43:20:43:20 | s | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/tst.js:43:20:43:20 | s | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:43:20:43:20 | s | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/tst.js:43:20:43:20 | s | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:43:20:43:20 | s | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:43:20:43:20 | s | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:43:20:43:20 | s | contextSurroundingFunctionParameters | (s) |
-| autogenerated/Xss/DomBasedXss/tst.js:43:20:43:20 | s | enclosingFunctionBody | s <div> s </div> |
-| autogenerated/Xss/DomBasedXss/tst.js:43:20:43:20 | s | enclosingFunctionName | wrap |
-| autogenerated/Xss/DomBasedXss/tst.js:43:20:43:20 | s | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:43:20:43:20 | s | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:43:20:43:20 | s | stringConcatenatedWith | '<div>' -endpoint- '</div>' |
-| autogenerated/Xss/DomBasedXss/tst.js:43:24:43:31 | "</div>" | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/tst.js:43:24:43:31 | "</div>" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:43:24:43:31 | "</div>" | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/tst.js:43:24:43:31 | "</div>" | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:43:24:43:31 | "</div>" | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:43:24:43:31 | "</div>" | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:43:24:43:31 | "</div>" | contextSurroundingFunctionParameters | (s) |
-| autogenerated/Xss/DomBasedXss/tst.js:43:24:43:31 | "</div>" | enclosingFunctionBody | s <div> s </div> |
-| autogenerated/Xss/DomBasedXss/tst.js:43:24:43:31 | "</div>" | enclosingFunctionName | wrap |
-| autogenerated/Xss/DomBasedXss/tst.js:43:24:43:31 | "</div>" | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:43:24:43:31 | "</div>" | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:43:24:43:31 | "</div>" | stringConcatenatedWith | '<div>' + s -endpoint-  |
-| autogenerated/Xss/DomBasedXss/tst.js:46:3:46:8 | 'myId' | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/DomBasedXss/tst.js:46:3:46:8 | 'myId' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:46:3:46:8 | 'myId' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:46:3:46:8 | 'myId' | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:46:3:46:8 | 'myId' | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:46:3:46:8 | 'myId' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:46:3:46:8 | 'myId' | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/DomBasedXss/tst.js:46:3:46:8 | 'myId' | enclosingFunctionBody |  |
-| autogenerated/Xss/DomBasedXss/tst.js:46:3:46:8 | 'myId' | enclosingFunctionName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:46:3:46:8 | 'myId' | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:46:3:46:8 | 'myId' | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:46:3:46:8 | 'myId' | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:46:16:46:45 | wrap(do ... search) | CalleeFlexibleAccessPath | $().html |
-| autogenerated/Xss/DomBasedXss/tst.js:46:16:46:45 | wrap(do ... search) | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:46:16:46:45 | wrap(do ... search) | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:46:16:46:45 | wrap(do ... search) | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:46:16:46:45 | wrap(do ... search) | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:46:16:46:45 | wrap(do ... search) | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:46:16:46:45 | wrap(do ... search) | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/DomBasedXss/tst.js:46:16:46:45 | wrap(do ... search) | enclosingFunctionBody |  |
-| autogenerated/Xss/DomBasedXss/tst.js:46:16:46:45 | wrap(do ... search) | enclosingFunctionName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:46:16:46:45 | wrap(do ... search) | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:46:16:46:45 | wrap(do ... search) | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:46:16:46:45 | wrap(do ... search) | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:50:21:50:21 | 1 | CalleeFlexibleAccessPath | s.substr |
-| autogenerated/Xss/DomBasedXss/tst.js:50:21:50:21 | 1 | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:50:21:50:21 | 1 | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:50:21:50:21 | 1 | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:50:21:50:21 | 1 | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:50:21:50:21 | 1 | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:50:21:50:21 | 1 | contextSurroundingFunctionParameters | (s) |
-| autogenerated/Xss/DomBasedXss/tst.js:50:21:50:21 | 1 | enclosingFunctionBody | s s s substr 1  |
-| autogenerated/Xss/DomBasedXss/tst.js:50:21:50:21 | 1 | enclosingFunctionName | chop |
-| autogenerated/Xss/DomBasedXss/tst.js:50:21:50:21 | 1 | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:50:21:50:21 | 1 | receiverName | s |
-| autogenerated/Xss/DomBasedXss/tst.js:50:21:50:21 | 1 | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:54:3:54:8 | 'myId' | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/DomBasedXss/tst.js:54:3:54:8 | 'myId' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:54:3:54:8 | 'myId' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:54:3:54:8 | 'myId' | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:54:3:54:8 | 'myId' | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:54:3:54:8 | 'myId' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:54:3:54:8 | 'myId' | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/DomBasedXss/tst.js:54:3:54:8 | 'myId' | enclosingFunctionBody |  |
-| autogenerated/Xss/DomBasedXss/tst.js:54:3:54:8 | 'myId' | enclosingFunctionName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:54:3:54:8 | 'myId' | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:54:3:54:8 | 'myId' | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:54:3:54:8 | 'myId' | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:54:16:54:45 | chop(do ... search) | CalleeFlexibleAccessPath | $().html |
-| autogenerated/Xss/DomBasedXss/tst.js:54:16:54:45 | chop(do ... search) | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:54:16:54:45 | chop(do ... search) | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:54:16:54:45 | chop(do ... search) | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:54:16:54:45 | chop(do ... search) | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:54:16:54:45 | chop(do ... search) | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:54:16:54:45 | chop(do ... search) | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/DomBasedXss/tst.js:54:16:54:45 | chop(do ... search) | enclosingFunctionBody |  |
-| autogenerated/Xss/DomBasedXss/tst.js:54:16:54:45 | chop(do ... search) | enclosingFunctionName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:54:16:54:45 | chop(do ... search) | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:54:16:54:45 | chop(do ... search) | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:54:16:54:45 | chop(do ... search) | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:56:3:56:8 | 'myId' | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/DomBasedXss/tst.js:56:3:56:8 | 'myId' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:56:3:56:8 | 'myId' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:56:3:56:8 | 'myId' | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:56:3:56:8 | 'myId' | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:56:3:56:8 | 'myId' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:56:3:56:8 | 'myId' | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/DomBasedXss/tst.js:56:3:56:8 | 'myId' | enclosingFunctionBody |  |
-| autogenerated/Xss/DomBasedXss/tst.js:56:3:56:8 | 'myId' | enclosingFunctionName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:56:3:56:8 | 'myId' | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:56:3:56:8 | 'myId' | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:56:3:56:8 | 'myId' | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:56:16:56:45 | chop(do ... search) | CalleeFlexibleAccessPath | $().html |
-| autogenerated/Xss/DomBasedXss/tst.js:56:16:56:45 | chop(do ... search) | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:56:16:56:45 | chop(do ... search) | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:56:16:56:45 | chop(do ... search) | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:56:16:56:45 | chop(do ... search) | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:56:16:56:45 | chop(do ... search) | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:56:16:56:45 | chop(do ... search) | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/DomBasedXss/tst.js:56:16:56:45 | chop(do ... search) | enclosingFunctionBody |  |
-| autogenerated/Xss/DomBasedXss/tst.js:56:16:56:45 | chop(do ... search) | enclosingFunctionName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:56:16:56:45 | chop(do ... search) | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:56:16:56:45 | chop(do ... search) | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:56:16:56:45 | chop(do ... search) | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:58:3:58:8 | 'myId' | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/DomBasedXss/tst.js:58:3:58:8 | 'myId' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:58:3:58:8 | 'myId' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:58:3:58:8 | 'myId' | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:58:3:58:8 | 'myId' | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:58:3:58:8 | 'myId' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:58:3:58:8 | 'myId' | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/DomBasedXss/tst.js:58:3:58:8 | 'myId' | enclosingFunctionBody |  |
-| autogenerated/Xss/DomBasedXss/tst.js:58:3:58:8 | 'myId' | enclosingFunctionName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:58:3:58:8 | 'myId' | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:58:3:58:8 | 'myId' | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:58:3:58:8 | 'myId' | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:58:16:58:32 | wrap(chop(bar())) | CalleeFlexibleAccessPath | $().html |
-| autogenerated/Xss/DomBasedXss/tst.js:58:16:58:32 | wrap(chop(bar())) | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:58:16:58:32 | wrap(chop(bar())) | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:58:16:58:32 | wrap(chop(bar())) | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:58:16:58:32 | wrap(chop(bar())) | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:58:16:58:32 | wrap(chop(bar())) | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:58:16:58:32 | wrap(chop(bar())) | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/DomBasedXss/tst.js:58:16:58:32 | wrap(chop(bar())) | enclosingFunctionBody |  |
-| autogenerated/Xss/DomBasedXss/tst.js:58:16:58:32 | wrap(chop(bar())) | enclosingFunctionName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:58:16:58:32 | wrap(chop(bar())) | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:58:16:58:32 | wrap(chop(bar())) | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:58:16:58:32 | wrap(chop(bar())) | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:62:5:62:10 | 'myId' | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/DomBasedXss/tst.js:62:5:62:10 | 'myId' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:62:5:62:10 | 'myId' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:62:5:62:10 | 'myId' | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:62:5:62:10 | 'myId' | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:62:5:62:10 | 'myId' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:62:5:62:10 | 'myId' | contextSurroundingFunctionParameters | (s) |
-| autogenerated/Xss/DomBasedXss/tst.js:62:5:62:10 | 'myId' | enclosingFunctionBody | s $ myId html s |
-| autogenerated/Xss/DomBasedXss/tst.js:62:5:62:10 | 'myId' | enclosingFunctionName | dangerouslySetInnerHtml |
-| autogenerated/Xss/DomBasedXss/tst.js:62:5:62:10 | 'myId' | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:62:5:62:10 | 'myId' | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:62:5:62:10 | 'myId' | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:62:18:62:18 | s | CalleeFlexibleAccessPath | $().html |
-| autogenerated/Xss/DomBasedXss/tst.js:62:18:62:18 | s | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:62:18:62:18 | s | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:62:18:62:18 | s | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:62:18:62:18 | s | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:62:18:62:18 | s | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:62:18:62:18 | s | contextSurroundingFunctionParameters | (s) |
-| autogenerated/Xss/DomBasedXss/tst.js:62:18:62:18 | s | enclosingFunctionBody | s $ myId html s |
-| autogenerated/Xss/DomBasedXss/tst.js:62:18:62:18 | s | enclosingFunctionName | dangerouslySetInnerHtml |
-| autogenerated/Xss/DomBasedXss/tst.js:62:18:62:18 | s | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:62:18:62:18 | s | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:62:18:62:18 | s | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:68:3:68:8 | 'myId' | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/DomBasedXss/tst.js:68:3:68:8 | 'myId' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:68:3:68:8 | 'myId' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:68:3:68:8 | 'myId' | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:68:3:68:8 | 'myId' | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:68:3:68:8 | 'myId' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:68:3:68:8 | 'myId' | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/DomBasedXss/tst.js:68:3:68:8 | 'myId' | enclosingFunctionBody |  |
-| autogenerated/Xss/DomBasedXss/tst.js:68:3:68:8 | 'myId' | enclosingFunctionName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:68:3:68:8 | 'myId' | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:68:3:68:8 | 'myId' | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:68:3:68:8 | 'myId' | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:68:16:68:20 | bar() | CalleeFlexibleAccessPath | $().html |
-| autogenerated/Xss/DomBasedXss/tst.js:68:16:68:20 | bar() | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:68:16:68:20 | bar() | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:68:16:68:20 | bar() | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:68:16:68:20 | bar() | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:68:16:68:20 | bar() | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:68:16:68:20 | bar() | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/DomBasedXss/tst.js:68:16:68:20 | bar() | enclosingFunctionBody |  |
-| autogenerated/Xss/DomBasedXss/tst.js:68:16:68:20 | bar() | enclosingFunctionName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:68:16:68:20 | bar() | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:68:16:68:20 | bar() | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:68:16:68:20 | bar() | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:73:7:73:12 | 'myId' | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/DomBasedXss/tst.js:73:7:73:12 | 'myId' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:73:7:73:12 | 'myId' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:73:7:73:12 | 'myId' | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:73:7:73:12 | 'myId' | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:73:7:73:12 | 'myId' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:73:7:73:12 | 'myId' | contextSurroundingFunctionParameters | (x) |
-| autogenerated/Xss/DomBasedXss/tst.js:73:7:73:12 | 'myId' | enclosingFunctionBody | x x $ myId html x |
-| autogenerated/Xss/DomBasedXss/tst.js:73:7:73:12 | 'myId' | enclosingFunctionName | forEach#functionalargument |
-| autogenerated/Xss/DomBasedXss/tst.js:73:7:73:12 | 'myId' | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:73:7:73:12 | 'myId' | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:73:7:73:12 | 'myId' | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:73:20:73:20 | x | CalleeFlexibleAccessPath | $().html |
-| autogenerated/Xss/DomBasedXss/tst.js:73:20:73:20 | x | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:73:20:73:20 | x | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:73:20:73:20 | x | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:73:20:73:20 | x | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:73:20:73:20 | x | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:73:20:73:20 | x | contextSurroundingFunctionParameters | (x) |
-| autogenerated/Xss/DomBasedXss/tst.js:73:20:73:20 | x | enclosingFunctionBody | x x $ myId html x |
-| autogenerated/Xss/DomBasedXss/tst.js:73:20:73:20 | x | enclosingFunctionName | forEach#functionalargument |
-| autogenerated/Xss/DomBasedXss/tst.js:73:20:73:20 | x | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:73:20:73:20 | x | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:73:20:73:20 | x | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:77:40:77:73 | {__html ... search} | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/tst.js:77:40:77:73 | {__html ... search} | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:77:40:77:73 | {__html ... search} | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/tst.js:77:40:77:73 | {__html ... search} | assignedToPropName | dangerouslySetInnerHTML |
-| autogenerated/Xss/DomBasedXss/tst.js:77:40:77:73 | {__html ... search} | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:77:40:77:73 | {__html ... search} | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:77:40:77:73 | {__html ... search} | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/DomBasedXss/tst.js:77:40:77:73 | {__html ... search} | enclosingFunctionBody |  |
-| autogenerated/Xss/DomBasedXss/tst.js:77:40:77:73 | {__html ... search} | enclosingFunctionName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:77:40:77:73 | {__html ... search} | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:77:40:77:73 | {__html ... search} | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:77:40:77:73 | {__html ... search} | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:77:49:77:72 | documen ... .search | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/tst.js:77:49:77:72 | documen ... .search | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:77:49:77:72 | documen ... .search | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/tst.js:77:49:77:72 | documen ... .search | assignedToPropName | __html |
-| autogenerated/Xss/DomBasedXss/tst.js:77:49:77:72 | documen ... .search | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:77:49:77:72 | documen ... .search | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:77:49:77:72 | documen ... .search | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/DomBasedXss/tst.js:77:49:77:72 | documen ... .search | enclosingFunctionBody |  |
-| autogenerated/Xss/DomBasedXss/tst.js:77:49:77:72 | documen ... .search | enclosingFunctionName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:77:49:77:72 | documen ... .search | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:77:49:77:72 | documen ... .search | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:77:49:77:72 | documen ... .search | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:79:16:79:22 | 'myApp' | CalleeFlexibleAccessPath | angular.module |
-| autogenerated/Xss/DomBasedXss/tst.js:79:16:79:22 | 'myApp' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:79:16:79:22 | 'myApp' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:79:16:79:22 | 'myApp' | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:79:16:79:22 | 'myApp' | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:79:16:79:22 | 'myApp' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:79:16:79:22 | 'myApp' | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/DomBasedXss/tst.js:79:16:79:22 | 'myApp' | enclosingFunctionBody |  |
-| autogenerated/Xss/DomBasedXss/tst.js:79:16:79:22 | 'myApp' | enclosingFunctionName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:79:16:79:22 | 'myApp' | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:79:16:79:22 | 'myApp' | receiverName | angular |
-| autogenerated/Xss/DomBasedXss/tst.js:79:16:79:22 | 'myApp' | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:79:25:79:26 | [] | CalleeFlexibleAccessPath | angular.module |
-| autogenerated/Xss/DomBasedXss/tst.js:79:25:79:26 | [] | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:79:25:79:26 | [] | InputArgumentIndex | 1 |
-| autogenerated/Xss/DomBasedXss/tst.js:79:25:79:26 | [] | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:79:25:79:26 | [] | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:79:25:79:26 | [] | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:79:25:79:26 | [] | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/DomBasedXss/tst.js:79:25:79:26 | [] | enclosingFunctionBody |  |
-| autogenerated/Xss/DomBasedXss/tst.js:79:25:79:26 | [] | enclosingFunctionName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:79:25:79:26 | [] | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:79:25:79:26 | [] | receiverName | angular |
-| autogenerated/Xss/DomBasedXss/tst.js:79:25:79:26 | [] | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:80:14:80:24 | "myService" | CalleeFlexibleAccessPath | angular.module().service |
-| autogenerated/Xss/DomBasedXss/tst.js:80:14:80:24 | "myService" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:80:14:80:24 | "myService" | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:80:14:80:24 | "myService" | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:80:14:80:24 | "myService" | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:80:14:80:24 | "myService" | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:80:14:80:24 | "myService" | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/DomBasedXss/tst.js:80:14:80:24 | "myService" | enclosingFunctionBody |  |
-| autogenerated/Xss/DomBasedXss/tst.js:80:14:80:24 | "myService" | enclosingFunctionName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:80:14:80:24 | "myService" | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:80:14:80:24 | "myService" | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:80:14:80:24 | "myService" | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:80:27:88:5 | functio ... K\\n    } | CalleeFlexibleAccessPath | angular.module().service |
-| autogenerated/Xss/DomBasedXss/tst.js:80:27:88:5 | functio ... K\\n    } | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:80:27:88:5 | functio ... K\\n    } | InputArgumentIndex | 1 |
-| autogenerated/Xss/DomBasedXss/tst.js:80:27:88:5 | functio ... K\\n    } | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:80:27:88:5 | functio ... K\\n    } | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:80:27:88:5 | functio ... K\\n    } | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:80:27:88:5 | functio ... K\\n    } | contextSurroundingFunctionParameters | ($sce, $other) |
-| autogenerated/Xss/DomBasedXss/tst.js:80:27:88:5 | functio ... K\\n    } | enclosingFunctionBody |  |
-| autogenerated/Xss/DomBasedXss/tst.js:80:27:88:5 | functio ... K\\n    } | enclosingFunctionName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:80:27:88:5 | functio ... K\\n    } | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:80:27:88:5 | functio ... K\\n    } | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:80:27:88:5 | functio ... K\\n    } | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:81:26:81:49 | documen ... .search | CalleeFlexibleAccessPath | $sce.trustAsHtml |
-| autogenerated/Xss/DomBasedXss/tst.js:81:26:81:49 | documen ... .search | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:81:26:81:49 | documen ... .search | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:81:26:81:49 | documen ... .search | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:81:26:81:49 | documen ... .search | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:81:26:81:49 | documen ... .search | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:81:26:81:49 | documen ... .search | contextSurroundingFunctionParameters | ($sce, $other) |
-| autogenerated/Xss/DomBasedXss/tst.js:81:26:81:49 | documen ... .search | enclosingFunctionBody | $sce $other $sce trustAsHtml document location search $sce trustAsCss document location search $sce trustAsUNKNOWN document location search $sce trustAs $sce HTML document location search $sce trustAs $sce CSS document location search $sce trustAs UNKNOWN document location search $other trustAsHtml document location search |
-| autogenerated/Xss/DomBasedXss/tst.js:81:26:81:49 | documen ... .search | enclosingFunctionName | service#functionalargument |
-| autogenerated/Xss/DomBasedXss/tst.js:81:26:81:49 | documen ... .search | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:81:26:81:49 | documen ... .search | receiverName | $sce |
-| autogenerated/Xss/DomBasedXss/tst.js:81:26:81:49 | documen ... .search | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:82:25:82:48 | documen ... .search | CalleeFlexibleAccessPath | $sce.trustAsCss |
-| autogenerated/Xss/DomBasedXss/tst.js:82:25:82:48 | documen ... .search | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:82:25:82:48 | documen ... .search | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:82:25:82:48 | documen ... .search | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:82:25:82:48 | documen ... .search | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:82:25:82:48 | documen ... .search | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:82:25:82:48 | documen ... .search | contextSurroundingFunctionParameters | ($sce, $other) |
-| autogenerated/Xss/DomBasedXss/tst.js:82:25:82:48 | documen ... .search | enclosingFunctionBody | $sce $other $sce trustAsHtml document location search $sce trustAsCss document location search $sce trustAsUNKNOWN document location search $sce trustAs $sce HTML document location search $sce trustAs $sce CSS document location search $sce trustAs UNKNOWN document location search $other trustAsHtml document location search |
-| autogenerated/Xss/DomBasedXss/tst.js:82:25:82:48 | documen ... .search | enclosingFunctionName | service#functionalargument |
-| autogenerated/Xss/DomBasedXss/tst.js:82:25:82:48 | documen ... .search | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:82:25:82:48 | documen ... .search | receiverName | $sce |
-| autogenerated/Xss/DomBasedXss/tst.js:82:25:82:48 | documen ... .search | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:83:29:83:52 | documen ... .search | CalleeFlexibleAccessPath | $sce.trustAsUNKNOWN |
-| autogenerated/Xss/DomBasedXss/tst.js:83:29:83:52 | documen ... .search | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:83:29:83:52 | documen ... .search | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:83:29:83:52 | documen ... .search | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:83:29:83:52 | documen ... .search | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:83:29:83:52 | documen ... .search | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:83:29:83:52 | documen ... .search | contextSurroundingFunctionParameters | ($sce, $other) |
-| autogenerated/Xss/DomBasedXss/tst.js:83:29:83:52 | documen ... .search | enclosingFunctionBody | $sce $other $sce trustAsHtml document location search $sce trustAsCss document location search $sce trustAsUNKNOWN document location search $sce trustAs $sce HTML document location search $sce trustAs $sce CSS document location search $sce trustAs UNKNOWN document location search $other trustAsHtml document location search |
-| autogenerated/Xss/DomBasedXss/tst.js:83:29:83:52 | documen ... .search | enclosingFunctionName | service#functionalargument |
-| autogenerated/Xss/DomBasedXss/tst.js:83:29:83:52 | documen ... .search | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:83:29:83:52 | documen ... .search | receiverName | $sce |
-| autogenerated/Xss/DomBasedXss/tst.js:83:29:83:52 | documen ... .search | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:84:33:84:56 | documen ... .search | CalleeFlexibleAccessPath | $sce.trustAs |
-| autogenerated/Xss/DomBasedXss/tst.js:84:33:84:56 | documen ... .search | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:84:33:84:56 | documen ... .search | InputArgumentIndex | 1 |
-| autogenerated/Xss/DomBasedXss/tst.js:84:33:84:56 | documen ... .search | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:84:33:84:56 | documen ... .search | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:84:33:84:56 | documen ... .search | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:84:33:84:56 | documen ... .search | contextSurroundingFunctionParameters | ($sce, $other) |
-| autogenerated/Xss/DomBasedXss/tst.js:84:33:84:56 | documen ... .search | enclosingFunctionBody | $sce $other $sce trustAsHtml document location search $sce trustAsCss document location search $sce trustAsUNKNOWN document location search $sce trustAs $sce HTML document location search $sce trustAs $sce CSS document location search $sce trustAs UNKNOWN document location search $other trustAsHtml document location search |
-| autogenerated/Xss/DomBasedXss/tst.js:84:33:84:56 | documen ... .search | enclosingFunctionName | service#functionalargument |
-| autogenerated/Xss/DomBasedXss/tst.js:84:33:84:56 | documen ... .search | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:84:33:84:56 | documen ... .search | receiverName | $sce |
-| autogenerated/Xss/DomBasedXss/tst.js:84:33:84:56 | documen ... .search | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:85:32:85:55 | documen ... .search | CalleeFlexibleAccessPath | $sce.trustAs |
-| autogenerated/Xss/DomBasedXss/tst.js:85:32:85:55 | documen ... .search | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:85:32:85:55 | documen ... .search | InputArgumentIndex | 1 |
-| autogenerated/Xss/DomBasedXss/tst.js:85:32:85:55 | documen ... .search | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:85:32:85:55 | documen ... .search | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:85:32:85:55 | documen ... .search | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:85:32:85:55 | documen ... .search | contextSurroundingFunctionParameters | ($sce, $other) |
-| autogenerated/Xss/DomBasedXss/tst.js:85:32:85:55 | documen ... .search | enclosingFunctionBody | $sce $other $sce trustAsHtml document location search $sce trustAsCss document location search $sce trustAsUNKNOWN document location search $sce trustAs $sce HTML document location search $sce trustAs $sce CSS document location search $sce trustAs UNKNOWN document location search $other trustAsHtml document location search |
-| autogenerated/Xss/DomBasedXss/tst.js:85:32:85:55 | documen ... .search | enclosingFunctionName | service#functionalargument |
-| autogenerated/Xss/DomBasedXss/tst.js:85:32:85:55 | documen ... .search | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:85:32:85:55 | documen ... .search | receiverName | $sce |
-| autogenerated/Xss/DomBasedXss/tst.js:85:32:85:55 | documen ... .search | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:86:22:86:28 | UNKNOWN | CalleeFlexibleAccessPath | $sce.trustAs |
-| autogenerated/Xss/DomBasedXss/tst.js:86:22:86:28 | UNKNOWN | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:86:22:86:28 | UNKNOWN | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:86:22:86:28 | UNKNOWN | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:86:22:86:28 | UNKNOWN | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:86:22:86:28 | UNKNOWN | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:86:22:86:28 | UNKNOWN | contextSurroundingFunctionParameters | ($sce, $other) |
-| autogenerated/Xss/DomBasedXss/tst.js:86:22:86:28 | UNKNOWN | enclosingFunctionBody | $sce $other $sce trustAsHtml document location search $sce trustAsCss document location search $sce trustAsUNKNOWN document location search $sce trustAs $sce HTML document location search $sce trustAs $sce CSS document location search $sce trustAs UNKNOWN document location search $other trustAsHtml document location search |
-| autogenerated/Xss/DomBasedXss/tst.js:86:22:86:28 | UNKNOWN | enclosingFunctionName | service#functionalargument |
-| autogenerated/Xss/DomBasedXss/tst.js:86:22:86:28 | UNKNOWN | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:86:22:86:28 | UNKNOWN | receiverName | $sce |
-| autogenerated/Xss/DomBasedXss/tst.js:86:22:86:28 | UNKNOWN | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:86:31:86:54 | documen ... .search | CalleeFlexibleAccessPath | $sce.trustAs |
-| autogenerated/Xss/DomBasedXss/tst.js:86:31:86:54 | documen ... .search | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:86:31:86:54 | documen ... .search | InputArgumentIndex | 1 |
-| autogenerated/Xss/DomBasedXss/tst.js:86:31:86:54 | documen ... .search | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:86:31:86:54 | documen ... .search | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:86:31:86:54 | documen ... .search | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:86:31:86:54 | documen ... .search | contextSurroundingFunctionParameters | ($sce, $other) |
-| autogenerated/Xss/DomBasedXss/tst.js:86:31:86:54 | documen ... .search | enclosingFunctionBody | $sce $other $sce trustAsHtml document location search $sce trustAsCss document location search $sce trustAsUNKNOWN document location search $sce trustAs $sce HTML document location search $sce trustAs $sce CSS document location search $sce trustAs UNKNOWN document location search $other trustAsHtml document location search |
-| autogenerated/Xss/DomBasedXss/tst.js:86:31:86:54 | documen ... .search | enclosingFunctionName | service#functionalargument |
-| autogenerated/Xss/DomBasedXss/tst.js:86:31:86:54 | documen ... .search | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:86:31:86:54 | documen ... .search | receiverName | $sce |
-| autogenerated/Xss/DomBasedXss/tst.js:86:31:86:54 | documen ... .search | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:87:28:87:51 | documen ... .search | CalleeFlexibleAccessPath | $other.trustAsHtml |
-| autogenerated/Xss/DomBasedXss/tst.js:87:28:87:51 | documen ... .search | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:87:28:87:51 | documen ... .search | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:87:28:87:51 | documen ... .search | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:87:28:87:51 | documen ... .search | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:87:28:87:51 | documen ... .search | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:87:28:87:51 | documen ... .search | contextSurroundingFunctionParameters | ($sce, $other) |
-| autogenerated/Xss/DomBasedXss/tst.js:87:28:87:51 | documen ... .search | enclosingFunctionBody | $sce $other $sce trustAsHtml document location search $sce trustAsCss document location search $sce trustAsUNKNOWN document location search $sce trustAs $sce HTML document location search $sce trustAs $sce CSS document location search $sce trustAs UNKNOWN document location search $other trustAsHtml document location search |
-| autogenerated/Xss/DomBasedXss/tst.js:87:28:87:51 | documen ... .search | enclosingFunctionName | service#functionalargument |
-| autogenerated/Xss/DomBasedXss/tst.js:87:28:87:51 | documen ... .search | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:87:28:87:51 | documen ... .search | receiverName | $other |
-| autogenerated/Xss/DomBasedXss/tst.js:87:28:87:51 | documen ... .search | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:89:14:89:25 | "myService2" | CalleeFlexibleAccessPath | angular.module().service().service |
-| autogenerated/Xss/DomBasedXss/tst.js:89:14:89:25 | "myService2" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:89:14:89:25 | "myService2" | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:89:14:89:25 | "myService2" | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:89:14:89:25 | "myService2" | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:89:14:89:25 | "myService2" | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:89:14:89:25 | "myService2" | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/DomBasedXss/tst.js:89:14:89:25 | "myService2" | enclosingFunctionBody |  |
-| autogenerated/Xss/DomBasedXss/tst.js:89:14:89:25 | "myService2" | enclosingFunctionName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:89:14:89:25 | "myService2" | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:89:14:89:25 | "myService2" | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:89:14:89:25 | "myService2" | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:89:28:92:5 | functio ... K\\n    } | CalleeFlexibleAccessPath | angular.module().service().service |
-| autogenerated/Xss/DomBasedXss/tst.js:89:28:92:5 | functio ... K\\n    } | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:89:28:92:5 | functio ... K\\n    } | InputArgumentIndex | 1 |
-| autogenerated/Xss/DomBasedXss/tst.js:89:28:92:5 | functio ... K\\n    } | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:89:28:92:5 | functio ... K\\n    } | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:89:28:92:5 | functio ... K\\n    } | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:89:28:92:5 | functio ... K\\n    } | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/tst.js:89:28:92:5 | functio ... K\\n    } | enclosingFunctionBody |  |
-| autogenerated/Xss/DomBasedXss/tst.js:89:28:92:5 | functio ... K\\n    } | enclosingFunctionName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:89:28:92:5 | functio ... K\\n    } | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:89:28:92:5 | functio ... K\\n    } | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:89:28:92:5 | functio ... K\\n    } | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:90:25:90:31 | '<div>' | CalleeFlexibleAccessPath | angular.element |
-| autogenerated/Xss/DomBasedXss/tst.js:90:25:90:31 | '<div>' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:90:25:90:31 | '<div>' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:90:25:90:31 | '<div>' | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:90:25:90:31 | '<div>' | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:90:25:90:31 | '<div>' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:90:25:90:31 | '<div>' | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/tst.js:90:25:90:31 | '<div>' | enclosingFunctionBody | angular element <div> html document location search angular element <div> html SAFE |
-| autogenerated/Xss/DomBasedXss/tst.js:90:25:90:31 | '<div>' | enclosingFunctionName | service#functionalargument |
-| autogenerated/Xss/DomBasedXss/tst.js:90:25:90:31 | '<div>' | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:90:25:90:31 | '<div>' | receiverName | angular |
-| autogenerated/Xss/DomBasedXss/tst.js:90:25:90:31 | '<div>' | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:90:39:90:62 | documen ... .search | CalleeFlexibleAccessPath | angular.element().html |
-| autogenerated/Xss/DomBasedXss/tst.js:90:39:90:62 | documen ... .search | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:90:39:90:62 | documen ... .search | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:90:39:90:62 | documen ... .search | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:90:39:90:62 | documen ... .search | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:90:39:90:62 | documen ... .search | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:90:39:90:62 | documen ... .search | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/tst.js:90:39:90:62 | documen ... .search | enclosingFunctionBody | angular element <div> html document location search angular element <div> html SAFE |
-| autogenerated/Xss/DomBasedXss/tst.js:90:39:90:62 | documen ... .search | enclosingFunctionName | service#functionalargument |
-| autogenerated/Xss/DomBasedXss/tst.js:90:39:90:62 | documen ... .search | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:90:39:90:62 | documen ... .search | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:90:39:90:62 | documen ... .search | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:91:25:91:31 | '<div>' | CalleeFlexibleAccessPath | angular.element |
-| autogenerated/Xss/DomBasedXss/tst.js:91:25:91:31 | '<div>' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:91:25:91:31 | '<div>' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:91:25:91:31 | '<div>' | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:91:25:91:31 | '<div>' | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:91:25:91:31 | '<div>' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:91:25:91:31 | '<div>' | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/tst.js:91:25:91:31 | '<div>' | enclosingFunctionBody | angular element <div> html document location search angular element <div> html SAFE |
-| autogenerated/Xss/DomBasedXss/tst.js:91:25:91:31 | '<div>' | enclosingFunctionName | service#functionalargument |
-| autogenerated/Xss/DomBasedXss/tst.js:91:25:91:31 | '<div>' | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:91:25:91:31 | '<div>' | receiverName | angular |
-| autogenerated/Xss/DomBasedXss/tst.js:91:25:91:31 | '<div>' | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:91:39:91:44 | 'SAFE' | CalleeFlexibleAccessPath | angular.element().html |
-| autogenerated/Xss/DomBasedXss/tst.js:91:39:91:44 | 'SAFE' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:91:39:91:44 | 'SAFE' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:91:39:91:44 | 'SAFE' | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:91:39:91:44 | 'SAFE' | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:91:39:91:44 | 'SAFE' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:91:39:91:44 | 'SAFE' | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/tst.js:91:39:91:44 | 'SAFE' | enclosingFunctionBody | angular element <div> html document location search angular element <div> html SAFE |
-| autogenerated/Xss/DomBasedXss/tst.js:91:39:91:44 | 'SAFE' | enclosingFunctionName | service#functionalargument |
-| autogenerated/Xss/DomBasedXss/tst.js:91:39:91:44 | 'SAFE' | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:91:39:91:44 | 'SAFE' | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:91:39:91:44 | 'SAFE' | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:93:16:93:27 | 'myCustomer' | CalleeFlexibleAccessPath | angular.module().service().service().directive |
-| autogenerated/Xss/DomBasedXss/tst.js:93:16:93:27 | 'myCustomer' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:93:16:93:27 | 'myCustomer' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:93:16:93:27 | 'myCustomer' | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:93:16:93:27 | 'myCustomer' | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:93:16:93:27 | 'myCustomer' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:93:16:93:27 | 'myCustomer' | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/DomBasedXss/tst.js:93:16:93:27 | 'myCustomer' | enclosingFunctionBody |  |
-| autogenerated/Xss/DomBasedXss/tst.js:93:16:93:27 | 'myCustomer' | enclosingFunctionName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:93:16:93:27 | 'myCustomer' | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:93:16:93:27 | 'myCustomer' | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:93:16:93:27 | 'myCustomer' | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:93:30:100:5 | functio ... ;\\n    } | CalleeFlexibleAccessPath | angular.module().service().service().directive |
-| autogenerated/Xss/DomBasedXss/tst.js:93:30:100:5 | functio ... ;\\n    } | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:93:30:100:5 | functio ... ;\\n    } | InputArgumentIndex | 1 |
-| autogenerated/Xss/DomBasedXss/tst.js:93:30:100:5 | functio ... ;\\n    } | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:93:30:100:5 | functio ... ;\\n    } | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:93:30:100:5 | functio ... ;\\n    } | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:93:30:100:5 | functio ... ;\\n    } | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/tst.js:93:30:100:5 | functio ... ;\\n    } | enclosingFunctionBody |  |
-| autogenerated/Xss/DomBasedXss/tst.js:93:30:100:5 | functio ... ;\\n    } | enclosingFunctionName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:93:30:100:5 | functio ... ;\\n    } | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:93:30:100:5 | functio ... ;\\n    } | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:93:30:100:5 | functio ... ;\\n    } | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:96:30:96:53 | documen ... .search | CalleeFlexibleAccessPath | element.html |
-| autogenerated/Xss/DomBasedXss/tst.js:96:30:96:53 | documen ... .search | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:96:30:96:53 | documen ... .search | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:96:30:96:53 | documen ... .search | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:96:30:96:53 | documen ... .search | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:96:30:96:53 | documen ... .search | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:96:30:96:53 | documen ... .search | contextSurroundingFunctionParameters | ()\n(scope, element) |
-| autogenerated/Xss/DomBasedXss/tst.js:96:30:96:53 | documen ... .search | enclosingFunctionBody | link scope element element html document location search element html SAFE |
-| autogenerated/Xss/DomBasedXss/tst.js:96:30:96:53 | documen ... .search | enclosingFunctionName | directive#functionalargument |
-| autogenerated/Xss/DomBasedXss/tst.js:96:30:96:53 | documen ... .search | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:96:30:96:53 | documen ... .search | receiverName | element |
-| autogenerated/Xss/DomBasedXss/tst.js:96:30:96:53 | documen ... .search | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:97:30:97:35 | 'SAFE' | CalleeFlexibleAccessPath | element.html |
-| autogenerated/Xss/DomBasedXss/tst.js:97:30:97:35 | 'SAFE' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:97:30:97:35 | 'SAFE' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:97:30:97:35 | 'SAFE' | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:97:30:97:35 | 'SAFE' | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:97:30:97:35 | 'SAFE' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:97:30:97:35 | 'SAFE' | contextSurroundingFunctionParameters | ()\n(scope, element) |
-| autogenerated/Xss/DomBasedXss/tst.js:97:30:97:35 | 'SAFE' | enclosingFunctionBody | link scope element element html document location search element html SAFE |
-| autogenerated/Xss/DomBasedXss/tst.js:97:30:97:35 | 'SAFE' | enclosingFunctionName | directive#functionalargument |
-| autogenerated/Xss/DomBasedXss/tst.js:97:30:97:35 | 'SAFE' | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:97:30:97:35 | 'SAFE' | receiverName | element |
-| autogenerated/Xss/DomBasedXss/tst.js:97:30:97:35 | 'SAFE' | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:101:14:101:25 | "myService3" | CalleeFlexibleAccessPath | angular.module().service().service().directive().service |
-| autogenerated/Xss/DomBasedXss/tst.js:101:14:101:25 | "myService3" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:101:14:101:25 | "myService3" | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:101:14:101:25 | "myService3" | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:101:14:101:25 | "myService3" | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:101:14:101:25 | "myService3" | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:101:14:101:25 | "myService3" | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/DomBasedXss/tst.js:101:14:101:25 | "myService3" | enclosingFunctionBody |  |
-| autogenerated/Xss/DomBasedXss/tst.js:101:14:101:25 | "myService3" | enclosingFunctionName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:101:14:101:25 | "myService3" | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:101:14:101:25 | "myService3" | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:101:14:101:25 | "myService3" | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:101:28:104:5 | functio ... K\\n    } | CalleeFlexibleAccessPath | angular.module().service().service().directive().service |
-| autogenerated/Xss/DomBasedXss/tst.js:101:28:104:5 | functio ... K\\n    } | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:101:28:104:5 | functio ... K\\n    } | InputArgumentIndex | 1 |
-| autogenerated/Xss/DomBasedXss/tst.js:101:28:104:5 | functio ... K\\n    } | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:101:28:104:5 | functio ... K\\n    } | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:101:28:104:5 | functio ... K\\n    } | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:101:28:104:5 | functio ... K\\n    } | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/tst.js:101:28:104:5 | functio ... K\\n    } | enclosingFunctionBody |  |
-| autogenerated/Xss/DomBasedXss/tst.js:101:28:104:5 | functio ... K\\n    } | enclosingFunctionName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:101:28:104:5 | functio ... K\\n    } | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:101:28:104:5 | functio ... K\\n    } | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:101:28:104:5 | functio ... K\\n    } | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:102:25:102:48 | documen ... .search | CalleeFlexibleAccessPath | angular.element |
-| autogenerated/Xss/DomBasedXss/tst.js:102:25:102:48 | documen ... .search | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:102:25:102:48 | documen ... .search | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:102:25:102:48 | documen ... .search | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:102:25:102:48 | documen ... .search | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:102:25:102:48 | documen ... .search | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:102:25:102:48 | documen ... .search | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/tst.js:102:25:102:48 | documen ... .search | enclosingFunctionBody | angular element document location search angular element SAFE |
-| autogenerated/Xss/DomBasedXss/tst.js:102:25:102:48 | documen ... .search | enclosingFunctionName | service#functionalargument |
-| autogenerated/Xss/DomBasedXss/tst.js:102:25:102:48 | documen ... .search | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:102:25:102:48 | documen ... .search | receiverName | angular |
-| autogenerated/Xss/DomBasedXss/tst.js:102:25:102:48 | documen ... .search | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:103:25:103:30 | 'SAFE' | CalleeFlexibleAccessPath | angular.element |
-| autogenerated/Xss/DomBasedXss/tst.js:103:25:103:30 | 'SAFE' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:103:25:103:30 | 'SAFE' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:103:25:103:30 | 'SAFE' | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:103:25:103:30 | 'SAFE' | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:103:25:103:30 | 'SAFE' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:103:25:103:30 | 'SAFE' | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/tst.js:103:25:103:30 | 'SAFE' | enclosingFunctionBody | angular element document location search angular element SAFE |
-| autogenerated/Xss/DomBasedXss/tst.js:103:25:103:30 | 'SAFE' | enclosingFunctionName | service#functionalargument |
-| autogenerated/Xss/DomBasedXss/tst.js:103:25:103:30 | 'SAFE' | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:103:25:103:30 | 'SAFE' | receiverName | angular |
-| autogenerated/Xss/DomBasedXss/tst.js:103:25:103:30 | 'SAFE' | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:107:43:107:43 | 1 | CalleeFlexibleAccessPath | document.location.search.substr |
-| autogenerated/Xss/DomBasedXss/tst.js:107:43:107:43 | 1 | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:107:43:107:43 | 1 | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:107:43:107:43 | 1 | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:107:43:107:43 | 1 | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:107:43:107:43 | 1 | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:107:43:107:43 | 1 | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/tst.js:107:43:107:43 | 1 | enclosingFunctionBody | v document location search substr 1 document write v /^\\d+$/ test v document write v m /^\\d+$/ exec v document write v v match /^\\d+$/ document write v v match ^\\d+$ document write v /\\d+/ test v document write v /^\\d+$/ test v document write v |
-| autogenerated/Xss/DomBasedXss/tst.js:107:43:107:43 | 1 | enclosingFunctionName | tst |
-| autogenerated/Xss/DomBasedXss/tst.js:107:43:107:43 | 1 | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:107:43:107:43 | 1 | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:107:43:107:43 | 1 | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:110:18:110:18 | v | CalleeFlexibleAccessPath | document.write |
-| autogenerated/Xss/DomBasedXss/tst.js:110:18:110:18 | v | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:110:18:110:18 | v | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:110:18:110:18 | v | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:110:18:110:18 | v | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:110:18:110:18 | v | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:110:18:110:18 | v | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/tst.js:110:18:110:18 | v | enclosingFunctionBody | v document location search substr 1 document write v /^\\d+$/ test v document write v m /^\\d+$/ exec v document write v v match /^\\d+$/ document write v v match ^\\d+$ document write v /\\d+/ test v document write v /^\\d+$/ test v document write v |
-| autogenerated/Xss/DomBasedXss/tst.js:110:18:110:18 | v | enclosingFunctionName | tst |
-| autogenerated/Xss/DomBasedXss/tst.js:110:18:110:18 | v | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:110:18:110:18 | v | receiverName | document |
-| autogenerated/Xss/DomBasedXss/tst.js:110:18:110:18 | v | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:112:20:112:20 | v | CalleeFlexibleAccessPath | ?.test |
-| autogenerated/Xss/DomBasedXss/tst.js:112:20:112:20 | v | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:112:20:112:20 | v | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:112:20:112:20 | v | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:112:20:112:20 | v | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:112:20:112:20 | v | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:112:20:112:20 | v | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/tst.js:112:20:112:20 | v | enclosingFunctionBody | v document location search substr 1 document write v /^\\d+$/ test v document write v m /^\\d+$/ exec v document write v v match /^\\d+$/ document write v v match ^\\d+$ document write v /\\d+/ test v document write v /^\\d+$/ test v document write v |
-| autogenerated/Xss/DomBasedXss/tst.js:112:20:112:20 | v | enclosingFunctionName | tst |
-| autogenerated/Xss/DomBasedXss/tst.js:112:20:112:20 | v | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:112:20:112:20 | v | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:112:20:112:20 | v | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:114:20:114:20 | v | CalleeFlexibleAccessPath | document.write |
-| autogenerated/Xss/DomBasedXss/tst.js:114:20:114:20 | v | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:114:20:114:20 | v | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:114:20:114:20 | v | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:114:20:114:20 | v | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:114:20:114:20 | v | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:114:20:114:20 | v | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/tst.js:114:20:114:20 | v | enclosingFunctionBody | v document location search substr 1 document write v /^\\d+$/ test v document write v m /^\\d+$/ exec v document write v v match /^\\d+$/ document write v v match ^\\d+$ document write v /\\d+/ test v document write v /^\\d+$/ test v document write v |
-| autogenerated/Xss/DomBasedXss/tst.js:114:20:114:20 | v | enclosingFunctionName | tst |
-| autogenerated/Xss/DomBasedXss/tst.js:114:20:114:20 | v | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:114:20:114:20 | v | receiverName | document |
-| autogenerated/Xss/DomBasedXss/tst.js:114:20:114:20 | v | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:119:20:119:20 | v | CalleeFlexibleAccessPath | document.write |
-| autogenerated/Xss/DomBasedXss/tst.js:119:20:119:20 | v | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:119:20:119:20 | v | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:119:20:119:20 | v | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:119:20:119:20 | v | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:119:20:119:20 | v | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:119:20:119:20 | v | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/tst.js:119:20:119:20 | v | enclosingFunctionBody | v document location search substr 1 document write v /^\\d+$/ test v document write v m /^\\d+$/ exec v document write v v match /^\\d+$/ document write v v match ^\\d+$ document write v /\\d+/ test v document write v /^\\d+$/ test v document write v |
-| autogenerated/Xss/DomBasedXss/tst.js:119:20:119:20 | v | enclosingFunctionName | tst |
-| autogenerated/Xss/DomBasedXss/tst.js:119:20:119:20 | v | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:119:20:119:20 | v | receiverName | document |
-| autogenerated/Xss/DomBasedXss/tst.js:119:20:119:20 | v | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:122:15:122:21 | /^\\d+$/ | CalleeFlexibleAccessPath | v.match |
-| autogenerated/Xss/DomBasedXss/tst.js:122:15:122:21 | /^\\d+$/ | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:122:15:122:21 | /^\\d+$/ | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:122:15:122:21 | /^\\d+$/ | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:122:15:122:21 | /^\\d+$/ | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:122:15:122:21 | /^\\d+$/ | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:122:15:122:21 | /^\\d+$/ | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/tst.js:122:15:122:21 | /^\\d+$/ | enclosingFunctionBody | v document location search substr 1 document write v /^\\d+$/ test v document write v m /^\\d+$/ exec v document write v v match /^\\d+$/ document write v v match ^\\d+$ document write v /\\d+/ test v document write v /^\\d+$/ test v document write v |
-| autogenerated/Xss/DomBasedXss/tst.js:122:15:122:21 | /^\\d+$/ | enclosingFunctionName | tst |
-| autogenerated/Xss/DomBasedXss/tst.js:122:15:122:21 | /^\\d+$/ | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:122:15:122:21 | /^\\d+$/ | receiverName | v |
-| autogenerated/Xss/DomBasedXss/tst.js:122:15:122:21 | /^\\d+$/ | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:124:22:124:22 | v | CalleeFlexibleAccessPath | document.write |
-| autogenerated/Xss/DomBasedXss/tst.js:124:22:124:22 | v | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:124:22:124:22 | v | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:124:22:124:22 | v | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:124:22:124:22 | v | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:124:22:124:22 | v | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:124:22:124:22 | v | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/tst.js:124:22:124:22 | v | enclosingFunctionBody | v document location search substr 1 document write v /^\\d+$/ test v document write v m /^\\d+$/ exec v document write v v match /^\\d+$/ document write v v match ^\\d+$ document write v /\\d+/ test v document write v /^\\d+$/ test v document write v |
-| autogenerated/Xss/DomBasedXss/tst.js:124:22:124:22 | v | enclosingFunctionName | tst |
-| autogenerated/Xss/DomBasedXss/tst.js:124:22:124:22 | v | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:124:22:124:22 | v | receiverName | document |
-| autogenerated/Xss/DomBasedXss/tst.js:124:22:124:22 | v | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:127:15:127:22 | "^\\\\d+$" | CalleeFlexibleAccessPath | v.match |
-| autogenerated/Xss/DomBasedXss/tst.js:127:15:127:22 | "^\\\\d+$" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:127:15:127:22 | "^\\\\d+$" | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:127:15:127:22 | "^\\\\d+$" | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:127:15:127:22 | "^\\\\d+$" | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:127:15:127:22 | "^\\\\d+$" | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:127:15:127:22 | "^\\\\d+$" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/tst.js:127:15:127:22 | "^\\\\d+$" | enclosingFunctionBody | v document location search substr 1 document write v /^\\d+$/ test v document write v m /^\\d+$/ exec v document write v v match /^\\d+$/ document write v v match ^\\d+$ document write v /\\d+/ test v document write v /^\\d+$/ test v document write v |
-| autogenerated/Xss/DomBasedXss/tst.js:127:15:127:22 | "^\\\\d+$" | enclosingFunctionName | tst |
-| autogenerated/Xss/DomBasedXss/tst.js:127:15:127:22 | "^\\\\d+$" | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:127:15:127:22 | "^\\\\d+$" | receiverName | v |
-| autogenerated/Xss/DomBasedXss/tst.js:127:15:127:22 | "^\\\\d+$" | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:129:22:129:22 | v | CalleeFlexibleAccessPath | document.write |
-| autogenerated/Xss/DomBasedXss/tst.js:129:22:129:22 | v | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:129:22:129:22 | v | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:129:22:129:22 | v | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:129:22:129:22 | v | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:129:22:129:22 | v | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:129:22:129:22 | v | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/tst.js:129:22:129:22 | v | enclosingFunctionBody | v document location search substr 1 document write v /^\\d+$/ test v document write v m /^\\d+$/ exec v document write v v match /^\\d+$/ document write v v match ^\\d+$ document write v /\\d+/ test v document write v /^\\d+$/ test v document write v |
-| autogenerated/Xss/DomBasedXss/tst.js:129:22:129:22 | v | enclosingFunctionName | tst |
-| autogenerated/Xss/DomBasedXss/tst.js:129:22:129:22 | v | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:129:22:129:22 | v | receiverName | document |
-| autogenerated/Xss/DomBasedXss/tst.js:129:22:129:22 | v | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:132:20:132:20 | v | CalleeFlexibleAccessPath | ?.test |
-| autogenerated/Xss/DomBasedXss/tst.js:132:20:132:20 | v | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:132:20:132:20 | v | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:132:20:132:20 | v | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:132:20:132:20 | v | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:132:20:132:20 | v | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:132:20:132:20 | v | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/tst.js:132:20:132:20 | v | enclosingFunctionBody | v document location search substr 1 document write v /^\\d+$/ test v document write v m /^\\d+$/ exec v document write v v match /^\\d+$/ document write v v match ^\\d+$ document write v /\\d+/ test v document write v /^\\d+$/ test v document write v |
-| autogenerated/Xss/DomBasedXss/tst.js:132:20:132:20 | v | enclosingFunctionName | tst |
-| autogenerated/Xss/DomBasedXss/tst.js:132:20:132:20 | v | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:132:20:132:20 | v | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:132:20:132:20 | v | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:136:18:136:18 | v | CalleeFlexibleAccessPath | document.write |
-| autogenerated/Xss/DomBasedXss/tst.js:136:18:136:18 | v | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:136:18:136:18 | v | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:136:18:136:18 | v | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:136:18:136:18 | v | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:136:18:136:18 | v | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:136:18:136:18 | v | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/tst.js:136:18:136:18 | v | enclosingFunctionBody | v document location search substr 1 document write v /^\\d+$/ test v document write v m /^\\d+$/ exec v document write v v match /^\\d+$/ document write v v match ^\\d+$ document write v /\\d+/ test v document write v /^\\d+$/ test v document write v |
-| autogenerated/Xss/DomBasedXss/tst.js:136:18:136:18 | v | enclosingFunctionName | tst |
-| autogenerated/Xss/DomBasedXss/tst.js:136:18:136:18 | v | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:136:18:136:18 | v | receiverName | document |
-| autogenerated/Xss/DomBasedXss/tst.js:136:18:136:18 | v | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:138:22:138:22 | v | CalleeFlexibleAccessPath | ?.test |
-| autogenerated/Xss/DomBasedXss/tst.js:138:22:138:22 | v | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:138:22:138:22 | v | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:138:22:138:22 | v | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:138:22:138:22 | v | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:138:22:138:22 | v | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:138:22:138:22 | v | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/tst.js:138:22:138:22 | v | enclosingFunctionBody | v document location search substr 1 document write v /^\\d+$/ test v document write v m /^\\d+$/ exec v document write v v match /^\\d+$/ document write v v match ^\\d+$ document write v /\\d+/ test v document write v /^\\d+$/ test v document write v |
-| autogenerated/Xss/DomBasedXss/tst.js:138:22:138:22 | v | enclosingFunctionName | tst |
-| autogenerated/Xss/DomBasedXss/tst.js:138:22:138:22 | v | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:138:22:138:22 | v | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:138:22:138:22 | v | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:142:18:142:18 | v | CalleeFlexibleAccessPath | document.write |
-| autogenerated/Xss/DomBasedXss/tst.js:142:18:142:18 | v | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:142:18:142:18 | v | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:142:18:142:18 | v | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:142:18:142:18 | v | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:142:18:142:18 | v | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:142:18:142:18 | v | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/tst.js:142:18:142:18 | v | enclosingFunctionBody | v document location search substr 1 document write v /^\\d+$/ test v document write v m /^\\d+$/ exec v document write v v match /^\\d+$/ document write v v match ^\\d+$ document write v /\\d+/ test v document write v /^\\d+$/ test v document write v |
-| autogenerated/Xss/DomBasedXss/tst.js:142:18:142:18 | v | enclosingFunctionName | tst |
-| autogenerated/Xss/DomBasedXss/tst.js:142:18:142:18 | v | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:142:18:142:18 | v | receiverName | document |
-| autogenerated/Xss/DomBasedXss/tst.js:142:18:142:18 | v | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:146:20:146:26 | 'myApp' | CalleeFlexibleAccessPath | angular.module |
-| autogenerated/Xss/DomBasedXss/tst.js:146:20:146:26 | 'myApp' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:146:20:146:26 | 'myApp' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:146:20:146:26 | 'myApp' | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:146:20:146:26 | 'myApp' | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:146:20:146:26 | 'myApp' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:146:20:146:26 | 'myApp' | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/tst.js:146:20:146:26 | 'myApp' | enclosingFunctionBody | angular module myApp factory xssSource_to_service xssSinkService1 xssSinkService1 xssSinkService1 window location search factory xssSinkService1 v $ <div> html v factory xssSource_from_service xssSourceService xssSourceService $ <div> html xssSourceService factory xssSourceService window location search factory innocentSource_to_service xssSinkService2 xssSinkService2 xssSinkService2 innocent factory xssSinkService2 v $ <div> html v factory innocentSource_from_service innocentSourceService innocentSourceService $ <div> html innocentSourceService factory innocentSourceService innocent |
-| autogenerated/Xss/DomBasedXss/tst.js:146:20:146:26 | 'myApp' | enclosingFunctionName | angularJSServices |
-| autogenerated/Xss/DomBasedXss/tst.js:146:20:146:26 | 'myApp' | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:146:20:146:26 | 'myApp' | receiverName | angular |
-| autogenerated/Xss/DomBasedXss/tst.js:146:20:146:26 | 'myApp' | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:146:29:146:30 | [] | CalleeFlexibleAccessPath | angular.module |
-| autogenerated/Xss/DomBasedXss/tst.js:146:29:146:30 | [] | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:146:29:146:30 | [] | InputArgumentIndex | 1 |
-| autogenerated/Xss/DomBasedXss/tst.js:146:29:146:30 | [] | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:146:29:146:30 | [] | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:146:29:146:30 | [] | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:146:29:146:30 | [] | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/tst.js:146:29:146:30 | [] | enclosingFunctionBody | angular module myApp factory xssSource_to_service xssSinkService1 xssSinkService1 xssSinkService1 window location search factory xssSinkService1 v $ <div> html v factory xssSource_from_service xssSourceService xssSourceService $ <div> html xssSourceService factory xssSourceService window location search factory innocentSource_to_service xssSinkService2 xssSinkService2 xssSinkService2 innocent factory xssSinkService2 v $ <div> html v factory innocentSource_from_service innocentSourceService innocentSourceService $ <div> html innocentSourceService factory innocentSourceService innocent |
-| autogenerated/Xss/DomBasedXss/tst.js:146:29:146:30 | [] | enclosingFunctionName | angularJSServices |
-| autogenerated/Xss/DomBasedXss/tst.js:146:29:146:30 | [] | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:146:29:146:30 | [] | receiverName | angular |
-| autogenerated/Xss/DomBasedXss/tst.js:146:29:146:30 | [] | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:147:18:147:39 | "xssSou ... ervice" | CalleeFlexibleAccessPath | angular.module().factory |
-| autogenerated/Xss/DomBasedXss/tst.js:147:18:147:39 | "xssSou ... ervice" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:147:18:147:39 | "xssSou ... ervice" | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:147:18:147:39 | "xssSou ... ervice" | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:147:18:147:39 | "xssSou ... ervice" | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:147:18:147:39 | "xssSou ... ervice" | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:147:18:147:39 | "xssSou ... ervice" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/tst.js:147:18:147:39 | "xssSou ... ervice" | enclosingFunctionBody | angular module myApp factory xssSource_to_service xssSinkService1 xssSinkService1 xssSinkService1 window location search factory xssSinkService1 v $ <div> html v factory xssSource_from_service xssSourceService xssSourceService $ <div> html xssSourceService factory xssSourceService window location search factory innocentSource_to_service xssSinkService2 xssSinkService2 xssSinkService2 innocent factory xssSinkService2 v $ <div> html v factory innocentSource_from_service innocentSourceService innocentSourceService $ <div> html innocentSourceService factory innocentSourceService innocent |
-| autogenerated/Xss/DomBasedXss/tst.js:147:18:147:39 | "xssSou ... ervice" | enclosingFunctionName | angularJSServices |
-| autogenerated/Xss/DomBasedXss/tst.js:147:18:147:39 | "xssSou ... ervice" | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:147:18:147:39 | "xssSou ... ervice" | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:147:18:147:39 | "xssSou ... ervice" | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:147:42:149:10 | ["xssSi ...      }] | CalleeFlexibleAccessPath | angular.module().factory |
-| autogenerated/Xss/DomBasedXss/tst.js:147:42:149:10 | ["xssSi ...      }] | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:147:42:149:10 | ["xssSi ...      }] | InputArgumentIndex | 1 |
-| autogenerated/Xss/DomBasedXss/tst.js:147:42:149:10 | ["xssSi ...      }] | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:147:42:149:10 | ["xssSi ...      }] | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:147:42:149:10 | ["xssSi ...      }] | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:147:42:149:10 | ["xssSi ...      }] | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/tst.js:147:42:149:10 | ["xssSi ...      }] | enclosingFunctionBody | angular module myApp factory xssSource_to_service xssSinkService1 xssSinkService1 xssSinkService1 window location search factory xssSinkService1 v $ <div> html v factory xssSource_from_service xssSourceService xssSourceService $ <div> html xssSourceService factory xssSourceService window location search factory innocentSource_to_service xssSinkService2 xssSinkService2 xssSinkService2 innocent factory xssSinkService2 v $ <div> html v factory innocentSource_from_service innocentSourceService innocentSourceService $ <div> html innocentSourceService factory innocentSourceService innocent |
-| autogenerated/Xss/DomBasedXss/tst.js:147:42:149:10 | ["xssSi ...      }] | enclosingFunctionName | angularJSServices |
-| autogenerated/Xss/DomBasedXss/tst.js:147:42:149:10 | ["xssSi ...      }] | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:147:42:149:10 | ["xssSi ...      }] | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:147:42:149:10 | ["xssSi ...      }] | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:147:43:147:59 | "xssSinkService1" | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/tst.js:147:43:147:59 | "xssSinkService1" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:147:43:147:59 | "xssSinkService1" | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/tst.js:147:43:147:59 | "xssSinkService1" | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:147:43:147:59 | "xssSinkService1" | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:147:43:147:59 | "xssSinkService1" | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:147:43:147:59 | "xssSinkService1" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/tst.js:147:43:147:59 | "xssSinkService1" | enclosingFunctionBody | angular module myApp factory xssSource_to_service xssSinkService1 xssSinkService1 xssSinkService1 window location search factory xssSinkService1 v $ <div> html v factory xssSource_from_service xssSourceService xssSourceService $ <div> html xssSourceService factory xssSourceService window location search factory innocentSource_to_service xssSinkService2 xssSinkService2 xssSinkService2 innocent factory xssSinkService2 v $ <div> html v factory innocentSource_from_service innocentSourceService innocentSourceService $ <div> html innocentSourceService factory innocentSourceService innocent |
-| autogenerated/Xss/DomBasedXss/tst.js:147:43:147:59 | "xssSinkService1" | enclosingFunctionName | angularJSServices |
-| autogenerated/Xss/DomBasedXss/tst.js:147:43:147:59 | "xssSinkService1" | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:147:43:147:59 | "xssSinkService1" | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:147:43:147:59 | "xssSinkService1" | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:147:62:149:9 | functio ...       } | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/tst.js:147:62:149:9 | functio ...       } | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:147:62:149:9 | functio ...       } | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/tst.js:147:62:149:9 | functio ...       } | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:147:62:149:9 | functio ...       } | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:147:62:149:9 | functio ...       } | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:147:62:149:9 | functio ...       } | contextSurroundingFunctionParameters | ()\n(xssSinkService1) |
-| autogenerated/Xss/DomBasedXss/tst.js:147:62:149:9 | functio ...       } | enclosingFunctionBody | angular module myApp factory xssSource_to_service xssSinkService1 xssSinkService1 xssSinkService1 window location search factory xssSinkService1 v $ <div> html v factory xssSource_from_service xssSourceService xssSourceService $ <div> html xssSourceService factory xssSourceService window location search factory innocentSource_to_service xssSinkService2 xssSinkService2 xssSinkService2 innocent factory xssSinkService2 v $ <div> html v factory innocentSource_from_service innocentSourceService innocentSourceService $ <div> html innocentSourceService factory innocentSourceService innocent |
-| autogenerated/Xss/DomBasedXss/tst.js:147:62:149:9 | functio ...       } | enclosingFunctionName | angularJSServices |
-| autogenerated/Xss/DomBasedXss/tst.js:147:62:149:9 | functio ...       } | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:147:62:149:9 | functio ...       } | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:147:62:149:9 | functio ...       } | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:150:18:150:34 | "xssSinkService1" | CalleeFlexibleAccessPath | angular.module().factory().factory |
-| autogenerated/Xss/DomBasedXss/tst.js:150:18:150:34 | "xssSinkService1" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:150:18:150:34 | "xssSinkService1" | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:150:18:150:34 | "xssSinkService1" | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:150:18:150:34 | "xssSinkService1" | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:150:18:150:34 | "xssSinkService1" | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:150:18:150:34 | "xssSinkService1" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/tst.js:150:18:150:34 | "xssSinkService1" | enclosingFunctionBody | angular module myApp factory xssSource_to_service xssSinkService1 xssSinkService1 xssSinkService1 window location search factory xssSinkService1 v $ <div> html v factory xssSource_from_service xssSourceService xssSourceService $ <div> html xssSourceService factory xssSourceService window location search factory innocentSource_to_service xssSinkService2 xssSinkService2 xssSinkService2 innocent factory xssSinkService2 v $ <div> html v factory innocentSource_from_service innocentSourceService innocentSourceService $ <div> html innocentSourceService factory innocentSourceService innocent |
-| autogenerated/Xss/DomBasedXss/tst.js:150:18:150:34 | "xssSinkService1" | enclosingFunctionName | angularJSServices |
-| autogenerated/Xss/DomBasedXss/tst.js:150:18:150:34 | "xssSinkService1" | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:150:18:150:34 | "xssSinkService1" | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:150:18:150:34 | "xssSinkService1" | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:150:37:152:9 | functio ...       } | CalleeFlexibleAccessPath | angular.module().factory().factory |
-| autogenerated/Xss/DomBasedXss/tst.js:150:37:152:9 | functio ...       } | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:150:37:152:9 | functio ...       } | InputArgumentIndex | 1 |
-| autogenerated/Xss/DomBasedXss/tst.js:150:37:152:9 | functio ...       } | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:150:37:152:9 | functio ...       } | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:150:37:152:9 | functio ...       } | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:150:37:152:9 | functio ...       } | contextSurroundingFunctionParameters | ()\n() |
-| autogenerated/Xss/DomBasedXss/tst.js:150:37:152:9 | functio ...       } | enclosingFunctionBody | angular module myApp factory xssSource_to_service xssSinkService1 xssSinkService1 xssSinkService1 window location search factory xssSinkService1 v $ <div> html v factory xssSource_from_service xssSourceService xssSourceService $ <div> html xssSourceService factory xssSourceService window location search factory innocentSource_to_service xssSinkService2 xssSinkService2 xssSinkService2 innocent factory xssSinkService2 v $ <div> html v factory innocentSource_from_service innocentSourceService innocentSourceService $ <div> html innocentSourceService factory innocentSourceService innocent |
-| autogenerated/Xss/DomBasedXss/tst.js:150:37:152:9 | functio ...       } | enclosingFunctionName | angularJSServices |
-| autogenerated/Xss/DomBasedXss/tst.js:150:37:152:9 | functio ...       } | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:150:37:152:9 | functio ...       } | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:150:37:152:9 | functio ...       } | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:151:35:151:41 | "<div>" | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/DomBasedXss/tst.js:151:35:151:41 | "<div>" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:151:35:151:41 | "<div>" | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:151:35:151:41 | "<div>" | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:151:35:151:41 | "<div>" | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:151:35:151:41 | "<div>" | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:151:35:151:41 | "<div>" | contextSurroundingFunctionParameters | ()\n()\n(v) |
-| autogenerated/Xss/DomBasedXss/tst.js:151:35:151:41 | "<div>" | enclosingFunctionBody | angular module myApp factory xssSource_to_service xssSinkService1 xssSinkService1 xssSinkService1 window location search factory xssSinkService1 v $ <div> html v factory xssSource_from_service xssSourceService xssSourceService $ <div> html xssSourceService factory xssSourceService window location search factory innocentSource_to_service xssSinkService2 xssSinkService2 xssSinkService2 innocent factory xssSinkService2 v $ <div> html v factory innocentSource_from_service innocentSourceService innocentSourceService $ <div> html innocentSourceService factory innocentSourceService innocent |
-| autogenerated/Xss/DomBasedXss/tst.js:151:35:151:41 | "<div>" | enclosingFunctionName | angularJSServices |
-| autogenerated/Xss/DomBasedXss/tst.js:151:35:151:41 | "<div>" | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:151:35:151:41 | "<div>" | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:151:35:151:41 | "<div>" | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:151:49:151:49 | v | CalleeFlexibleAccessPath | $().html |
-| autogenerated/Xss/DomBasedXss/tst.js:151:49:151:49 | v | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:151:49:151:49 | v | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:151:49:151:49 | v | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:151:49:151:49 | v | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:151:49:151:49 | v | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:151:49:151:49 | v | contextSurroundingFunctionParameters | ()\n()\n(v) |
-| autogenerated/Xss/DomBasedXss/tst.js:151:49:151:49 | v | enclosingFunctionBody | angular module myApp factory xssSource_to_service xssSinkService1 xssSinkService1 xssSinkService1 window location search factory xssSinkService1 v $ <div> html v factory xssSource_from_service xssSourceService xssSourceService $ <div> html xssSourceService factory xssSourceService window location search factory innocentSource_to_service xssSinkService2 xssSinkService2 xssSinkService2 innocent factory xssSinkService2 v $ <div> html v factory innocentSource_from_service innocentSourceService innocentSourceService $ <div> html innocentSourceService factory innocentSourceService innocent |
-| autogenerated/Xss/DomBasedXss/tst.js:151:49:151:49 | v | enclosingFunctionName | angularJSServices |
-| autogenerated/Xss/DomBasedXss/tst.js:151:49:151:49 | v | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:151:49:151:49 | v | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:151:49:151:49 | v | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:154:18:154:41 | "xssSou ... ervice" | CalleeFlexibleAccessPath | angular.module().factory().factory().factory |
-| autogenerated/Xss/DomBasedXss/tst.js:154:18:154:41 | "xssSou ... ervice" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:154:18:154:41 | "xssSou ... ervice" | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:154:18:154:41 | "xssSou ... ervice" | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:154:18:154:41 | "xssSou ... ervice" | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:154:18:154:41 | "xssSou ... ervice" | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:154:18:154:41 | "xssSou ... ervice" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/tst.js:154:18:154:41 | "xssSou ... ervice" | enclosingFunctionBody | angular module myApp factory xssSource_to_service xssSinkService1 xssSinkService1 xssSinkService1 window location search factory xssSinkService1 v $ <div> html v factory xssSource_from_service xssSourceService xssSourceService $ <div> html xssSourceService factory xssSourceService window location search factory innocentSource_to_service xssSinkService2 xssSinkService2 xssSinkService2 innocent factory xssSinkService2 v $ <div> html v factory innocentSource_from_service innocentSourceService innocentSourceService $ <div> html innocentSourceService factory innocentSourceService innocent |
-| autogenerated/Xss/DomBasedXss/tst.js:154:18:154:41 | "xssSou ... ervice" | enclosingFunctionName | angularJSServices |
-| autogenerated/Xss/DomBasedXss/tst.js:154:18:154:41 | "xssSou ... ervice" | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:154:18:154:41 | "xssSou ... ervice" | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:154:18:154:41 | "xssSou ... ervice" | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:154:44:156:10 | ["xssSo ...      }] | CalleeFlexibleAccessPath | angular.module().factory().factory().factory |
-| autogenerated/Xss/DomBasedXss/tst.js:154:44:156:10 | ["xssSo ...      }] | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:154:44:156:10 | ["xssSo ...      }] | InputArgumentIndex | 1 |
-| autogenerated/Xss/DomBasedXss/tst.js:154:44:156:10 | ["xssSo ...      }] | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:154:44:156:10 | ["xssSo ...      }] | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:154:44:156:10 | ["xssSo ...      }] | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:154:44:156:10 | ["xssSo ...      }] | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/tst.js:154:44:156:10 | ["xssSo ...      }] | enclosingFunctionBody | angular module myApp factory xssSource_to_service xssSinkService1 xssSinkService1 xssSinkService1 window location search factory xssSinkService1 v $ <div> html v factory xssSource_from_service xssSourceService xssSourceService $ <div> html xssSourceService factory xssSourceService window location search factory innocentSource_to_service xssSinkService2 xssSinkService2 xssSinkService2 innocent factory xssSinkService2 v $ <div> html v factory innocentSource_from_service innocentSourceService innocentSourceService $ <div> html innocentSourceService factory innocentSourceService innocent |
-| autogenerated/Xss/DomBasedXss/tst.js:154:44:156:10 | ["xssSo ...      }] | enclosingFunctionName | angularJSServices |
-| autogenerated/Xss/DomBasedXss/tst.js:154:44:156:10 | ["xssSo ...      }] | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:154:44:156:10 | ["xssSo ...      }] | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:154:44:156:10 | ["xssSo ...      }] | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:154:45:154:62 | "xssSourceService" | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/tst.js:154:45:154:62 | "xssSourceService" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:154:45:154:62 | "xssSourceService" | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/tst.js:154:45:154:62 | "xssSourceService" | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:154:45:154:62 | "xssSourceService" | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:154:45:154:62 | "xssSourceService" | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:154:45:154:62 | "xssSourceService" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/tst.js:154:45:154:62 | "xssSourceService" | enclosingFunctionBody | angular module myApp factory xssSource_to_service xssSinkService1 xssSinkService1 xssSinkService1 window location search factory xssSinkService1 v $ <div> html v factory xssSource_from_service xssSourceService xssSourceService $ <div> html xssSourceService factory xssSourceService window location search factory innocentSource_to_service xssSinkService2 xssSinkService2 xssSinkService2 innocent factory xssSinkService2 v $ <div> html v factory innocentSource_from_service innocentSourceService innocentSourceService $ <div> html innocentSourceService factory innocentSourceService innocent |
-| autogenerated/Xss/DomBasedXss/tst.js:154:45:154:62 | "xssSourceService" | enclosingFunctionName | angularJSServices |
-| autogenerated/Xss/DomBasedXss/tst.js:154:45:154:62 | "xssSourceService" | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:154:45:154:62 | "xssSourceService" | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:154:45:154:62 | "xssSourceService" | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:154:65:156:9 | functio ...       } | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/tst.js:154:65:156:9 | functio ...       } | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:154:65:156:9 | functio ...       } | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/tst.js:154:65:156:9 | functio ...       } | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:154:65:156:9 | functio ...       } | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:154:65:156:9 | functio ...       } | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:154:65:156:9 | functio ...       } | contextSurroundingFunctionParameters | ()\n(xssSourceService) |
-| autogenerated/Xss/DomBasedXss/tst.js:154:65:156:9 | functio ...       } | enclosingFunctionBody | angular module myApp factory xssSource_to_service xssSinkService1 xssSinkService1 xssSinkService1 window location search factory xssSinkService1 v $ <div> html v factory xssSource_from_service xssSourceService xssSourceService $ <div> html xssSourceService factory xssSourceService window location search factory innocentSource_to_service xssSinkService2 xssSinkService2 xssSinkService2 innocent factory xssSinkService2 v $ <div> html v factory innocentSource_from_service innocentSourceService innocentSourceService $ <div> html innocentSourceService factory innocentSourceService innocent |
-| autogenerated/Xss/DomBasedXss/tst.js:154:65:156:9 | functio ...       } | enclosingFunctionName | angularJSServices |
-| autogenerated/Xss/DomBasedXss/tst.js:154:65:156:9 | functio ...       } | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:154:65:156:9 | functio ...       } | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:154:65:156:9 | functio ...       } | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:155:15:155:21 | "<div>" | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/DomBasedXss/tst.js:155:15:155:21 | "<div>" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:155:15:155:21 | "<div>" | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:155:15:155:21 | "<div>" | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:155:15:155:21 | "<div>" | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:155:15:155:21 | "<div>" | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:155:15:155:21 | "<div>" | contextSurroundingFunctionParameters | ()\n(xssSourceService) |
-| autogenerated/Xss/DomBasedXss/tst.js:155:15:155:21 | "<div>" | enclosingFunctionBody | angular module myApp factory xssSource_to_service xssSinkService1 xssSinkService1 xssSinkService1 window location search factory xssSinkService1 v $ <div> html v factory xssSource_from_service xssSourceService xssSourceService $ <div> html xssSourceService factory xssSourceService window location search factory innocentSource_to_service xssSinkService2 xssSinkService2 xssSinkService2 innocent factory xssSinkService2 v $ <div> html v factory innocentSource_from_service innocentSourceService innocentSourceService $ <div> html innocentSourceService factory innocentSourceService innocent |
-| autogenerated/Xss/DomBasedXss/tst.js:155:15:155:21 | "<div>" | enclosingFunctionName | angularJSServices |
-| autogenerated/Xss/DomBasedXss/tst.js:155:15:155:21 | "<div>" | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:155:15:155:21 | "<div>" | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:155:15:155:21 | "<div>" | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:155:29:155:46 | xssSourceService() | CalleeFlexibleAccessPath | $().html |
-| autogenerated/Xss/DomBasedXss/tst.js:155:29:155:46 | xssSourceService() | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:155:29:155:46 | xssSourceService() | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:155:29:155:46 | xssSourceService() | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:155:29:155:46 | xssSourceService() | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:155:29:155:46 | xssSourceService() | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:155:29:155:46 | xssSourceService() | contextSurroundingFunctionParameters | ()\n(xssSourceService) |
-| autogenerated/Xss/DomBasedXss/tst.js:155:29:155:46 | xssSourceService() | enclosingFunctionBody | angular module myApp factory xssSource_to_service xssSinkService1 xssSinkService1 xssSinkService1 window location search factory xssSinkService1 v $ <div> html v factory xssSource_from_service xssSourceService xssSourceService $ <div> html xssSourceService factory xssSourceService window location search factory innocentSource_to_service xssSinkService2 xssSinkService2 xssSinkService2 innocent factory xssSinkService2 v $ <div> html v factory innocentSource_from_service innocentSourceService innocentSourceService $ <div> html innocentSourceService factory innocentSourceService innocent |
-| autogenerated/Xss/DomBasedXss/tst.js:155:29:155:46 | xssSourceService() | enclosingFunctionName | angularJSServices |
-| autogenerated/Xss/DomBasedXss/tst.js:155:29:155:46 | xssSourceService() | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:155:29:155:46 | xssSourceService() | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:155:29:155:46 | xssSourceService() | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:157:18:157:35 | "xssSourceService" | CalleeFlexibleAccessPath | angular.module().factory().factory().factory().factory |
-| autogenerated/Xss/DomBasedXss/tst.js:157:18:157:35 | "xssSourceService" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:157:18:157:35 | "xssSourceService" | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:157:18:157:35 | "xssSourceService" | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:157:18:157:35 | "xssSourceService" | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:157:18:157:35 | "xssSourceService" | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:157:18:157:35 | "xssSourceService" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/tst.js:157:18:157:35 | "xssSourceService" | enclosingFunctionBody | angular module myApp factory xssSource_to_service xssSinkService1 xssSinkService1 xssSinkService1 window location search factory xssSinkService1 v $ <div> html v factory xssSource_from_service xssSourceService xssSourceService $ <div> html xssSourceService factory xssSourceService window location search factory innocentSource_to_service xssSinkService2 xssSinkService2 xssSinkService2 innocent factory xssSinkService2 v $ <div> html v factory innocentSource_from_service innocentSourceService innocentSourceService $ <div> html innocentSourceService factory innocentSourceService innocent |
-| autogenerated/Xss/DomBasedXss/tst.js:157:18:157:35 | "xssSourceService" | enclosingFunctionName | angularJSServices |
-| autogenerated/Xss/DomBasedXss/tst.js:157:18:157:35 | "xssSourceService" | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:157:18:157:35 | "xssSourceService" | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:157:18:157:35 | "xssSourceService" | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:157:38:159:9 | functio ...       } | CalleeFlexibleAccessPath | angular.module().factory().factory().factory().factory |
-| autogenerated/Xss/DomBasedXss/tst.js:157:38:159:9 | functio ...       } | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:157:38:159:9 | functio ...       } | InputArgumentIndex | 1 |
-| autogenerated/Xss/DomBasedXss/tst.js:157:38:159:9 | functio ...       } | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:157:38:159:9 | functio ...       } | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:157:38:159:9 | functio ...       } | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:157:38:159:9 | functio ...       } | contextSurroundingFunctionParameters | ()\n() |
-| autogenerated/Xss/DomBasedXss/tst.js:157:38:159:9 | functio ...       } | enclosingFunctionBody | angular module myApp factory xssSource_to_service xssSinkService1 xssSinkService1 xssSinkService1 window location search factory xssSinkService1 v $ <div> html v factory xssSource_from_service xssSourceService xssSourceService $ <div> html xssSourceService factory xssSourceService window location search factory innocentSource_to_service xssSinkService2 xssSinkService2 xssSinkService2 innocent factory xssSinkService2 v $ <div> html v factory innocentSource_from_service innocentSourceService innocentSourceService $ <div> html innocentSourceService factory innocentSourceService innocent |
-| autogenerated/Xss/DomBasedXss/tst.js:157:38:159:9 | functio ...       } | enclosingFunctionName | angularJSServices |
-| autogenerated/Xss/DomBasedXss/tst.js:157:38:159:9 | functio ...       } | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:157:38:159:9 | functio ...       } | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:157:38:159:9 | functio ...       } | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:161:18:161:44 | "innoce ... ervice" | CalleeFlexibleAccessPath | angular.module().factory().factory().factory().factory().factory |
-| autogenerated/Xss/DomBasedXss/tst.js:161:18:161:44 | "innoce ... ervice" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:161:18:161:44 | "innoce ... ervice" | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:161:18:161:44 | "innoce ... ervice" | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:161:18:161:44 | "innoce ... ervice" | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:161:18:161:44 | "innoce ... ervice" | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:161:18:161:44 | "innoce ... ervice" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/tst.js:161:18:161:44 | "innoce ... ervice" | enclosingFunctionBody | angular module myApp factory xssSource_to_service xssSinkService1 xssSinkService1 xssSinkService1 window location search factory xssSinkService1 v $ <div> html v factory xssSource_from_service xssSourceService xssSourceService $ <div> html xssSourceService factory xssSourceService window location search factory innocentSource_to_service xssSinkService2 xssSinkService2 xssSinkService2 innocent factory xssSinkService2 v $ <div> html v factory innocentSource_from_service innocentSourceService innocentSourceService $ <div> html innocentSourceService factory innocentSourceService innocent |
-| autogenerated/Xss/DomBasedXss/tst.js:161:18:161:44 | "innoce ... ervice" | enclosingFunctionName | angularJSServices |
-| autogenerated/Xss/DomBasedXss/tst.js:161:18:161:44 | "innoce ... ervice" | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:161:18:161:44 | "innoce ... ervice" | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:161:18:161:44 | "innoce ... ervice" | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:161:47:163:10 | ["xssSi ...      }] | CalleeFlexibleAccessPath | angular.module().factory().factory().factory().factory().factory |
-| autogenerated/Xss/DomBasedXss/tst.js:161:47:163:10 | ["xssSi ...      }] | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:161:47:163:10 | ["xssSi ...      }] | InputArgumentIndex | 1 |
-| autogenerated/Xss/DomBasedXss/tst.js:161:47:163:10 | ["xssSi ...      }] | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:161:47:163:10 | ["xssSi ...      }] | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:161:47:163:10 | ["xssSi ...      }] | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:161:47:163:10 | ["xssSi ...      }] | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/tst.js:161:47:163:10 | ["xssSi ...      }] | enclosingFunctionBody | angular module myApp factory xssSource_to_service xssSinkService1 xssSinkService1 xssSinkService1 window location search factory xssSinkService1 v $ <div> html v factory xssSource_from_service xssSourceService xssSourceService $ <div> html xssSourceService factory xssSourceService window location search factory innocentSource_to_service xssSinkService2 xssSinkService2 xssSinkService2 innocent factory xssSinkService2 v $ <div> html v factory innocentSource_from_service innocentSourceService innocentSourceService $ <div> html innocentSourceService factory innocentSourceService innocent |
-| autogenerated/Xss/DomBasedXss/tst.js:161:47:163:10 | ["xssSi ...      }] | enclosingFunctionName | angularJSServices |
-| autogenerated/Xss/DomBasedXss/tst.js:161:47:163:10 | ["xssSi ...      }] | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:161:47:163:10 | ["xssSi ...      }] | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:161:47:163:10 | ["xssSi ...      }] | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:161:48:161:64 | "xssSinkService2" | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/tst.js:161:48:161:64 | "xssSinkService2" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:161:48:161:64 | "xssSinkService2" | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/tst.js:161:48:161:64 | "xssSinkService2" | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:161:48:161:64 | "xssSinkService2" | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:161:48:161:64 | "xssSinkService2" | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:161:48:161:64 | "xssSinkService2" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/tst.js:161:48:161:64 | "xssSinkService2" | enclosingFunctionBody | angular module myApp factory xssSource_to_service xssSinkService1 xssSinkService1 xssSinkService1 window location search factory xssSinkService1 v $ <div> html v factory xssSource_from_service xssSourceService xssSourceService $ <div> html xssSourceService factory xssSourceService window location search factory innocentSource_to_service xssSinkService2 xssSinkService2 xssSinkService2 innocent factory xssSinkService2 v $ <div> html v factory innocentSource_from_service innocentSourceService innocentSourceService $ <div> html innocentSourceService factory innocentSourceService innocent |
-| autogenerated/Xss/DomBasedXss/tst.js:161:48:161:64 | "xssSinkService2" | enclosingFunctionName | angularJSServices |
-| autogenerated/Xss/DomBasedXss/tst.js:161:48:161:64 | "xssSinkService2" | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:161:48:161:64 | "xssSinkService2" | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:161:48:161:64 | "xssSinkService2" | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:161:67:163:9 | functio ...       } | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/tst.js:161:67:163:9 | functio ...       } | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:161:67:163:9 | functio ...       } | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/tst.js:161:67:163:9 | functio ...       } | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:161:67:163:9 | functio ...       } | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:161:67:163:9 | functio ...       } | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:161:67:163:9 | functio ...       } | contextSurroundingFunctionParameters | ()\n(xssSinkService2) |
-| autogenerated/Xss/DomBasedXss/tst.js:161:67:163:9 | functio ...       } | enclosingFunctionBody | angular module myApp factory xssSource_to_service xssSinkService1 xssSinkService1 xssSinkService1 window location search factory xssSinkService1 v $ <div> html v factory xssSource_from_service xssSourceService xssSourceService $ <div> html xssSourceService factory xssSourceService window location search factory innocentSource_to_service xssSinkService2 xssSinkService2 xssSinkService2 innocent factory xssSinkService2 v $ <div> html v factory innocentSource_from_service innocentSourceService innocentSourceService $ <div> html innocentSourceService factory innocentSourceService innocent |
-| autogenerated/Xss/DomBasedXss/tst.js:161:67:163:9 | functio ...       } | enclosingFunctionName | angularJSServices |
-| autogenerated/Xss/DomBasedXss/tst.js:161:67:163:9 | functio ...       } | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:161:67:163:9 | functio ...       } | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:161:67:163:9 | functio ...       } | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:164:18:164:34 | "xssSinkService2" | CalleeFlexibleAccessPath | angular.module().factory().factory().factory().factory().factory().factory |
-| autogenerated/Xss/DomBasedXss/tst.js:164:18:164:34 | "xssSinkService2" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:164:18:164:34 | "xssSinkService2" | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:164:18:164:34 | "xssSinkService2" | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:164:18:164:34 | "xssSinkService2" | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:164:18:164:34 | "xssSinkService2" | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:164:18:164:34 | "xssSinkService2" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/tst.js:164:18:164:34 | "xssSinkService2" | enclosingFunctionBody | angular module myApp factory xssSource_to_service xssSinkService1 xssSinkService1 xssSinkService1 window location search factory xssSinkService1 v $ <div> html v factory xssSource_from_service xssSourceService xssSourceService $ <div> html xssSourceService factory xssSourceService window location search factory innocentSource_to_service xssSinkService2 xssSinkService2 xssSinkService2 innocent factory xssSinkService2 v $ <div> html v factory innocentSource_from_service innocentSourceService innocentSourceService $ <div> html innocentSourceService factory innocentSourceService innocent |
-| autogenerated/Xss/DomBasedXss/tst.js:164:18:164:34 | "xssSinkService2" | enclosingFunctionName | angularJSServices |
-| autogenerated/Xss/DomBasedXss/tst.js:164:18:164:34 | "xssSinkService2" | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:164:18:164:34 | "xssSinkService2" | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:164:18:164:34 | "xssSinkService2" | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:164:37:166:9 | functio ...       } | CalleeFlexibleAccessPath | angular.module().factory().factory().factory().factory().factory().factory |
-| autogenerated/Xss/DomBasedXss/tst.js:164:37:166:9 | functio ...       } | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:164:37:166:9 | functio ...       } | InputArgumentIndex | 1 |
-| autogenerated/Xss/DomBasedXss/tst.js:164:37:166:9 | functio ...       } | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:164:37:166:9 | functio ...       } | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:164:37:166:9 | functio ...       } | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:164:37:166:9 | functio ...       } | contextSurroundingFunctionParameters | ()\n() |
-| autogenerated/Xss/DomBasedXss/tst.js:164:37:166:9 | functio ...       } | enclosingFunctionBody | angular module myApp factory xssSource_to_service xssSinkService1 xssSinkService1 xssSinkService1 window location search factory xssSinkService1 v $ <div> html v factory xssSource_from_service xssSourceService xssSourceService $ <div> html xssSourceService factory xssSourceService window location search factory innocentSource_to_service xssSinkService2 xssSinkService2 xssSinkService2 innocent factory xssSinkService2 v $ <div> html v factory innocentSource_from_service innocentSourceService innocentSourceService $ <div> html innocentSourceService factory innocentSourceService innocent |
-| autogenerated/Xss/DomBasedXss/tst.js:164:37:166:9 | functio ...       } | enclosingFunctionName | angularJSServices |
-| autogenerated/Xss/DomBasedXss/tst.js:164:37:166:9 | functio ...       } | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:164:37:166:9 | functio ...       } | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:164:37:166:9 | functio ...       } | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:165:35:165:41 | "<div>" | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/DomBasedXss/tst.js:165:35:165:41 | "<div>" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:165:35:165:41 | "<div>" | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:165:35:165:41 | "<div>" | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:165:35:165:41 | "<div>" | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:165:35:165:41 | "<div>" | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:165:35:165:41 | "<div>" | contextSurroundingFunctionParameters | ()\n()\n(v) |
-| autogenerated/Xss/DomBasedXss/tst.js:165:35:165:41 | "<div>" | enclosingFunctionBody | angular module myApp factory xssSource_to_service xssSinkService1 xssSinkService1 xssSinkService1 window location search factory xssSinkService1 v $ <div> html v factory xssSource_from_service xssSourceService xssSourceService $ <div> html xssSourceService factory xssSourceService window location search factory innocentSource_to_service xssSinkService2 xssSinkService2 xssSinkService2 innocent factory xssSinkService2 v $ <div> html v factory innocentSource_from_service innocentSourceService innocentSourceService $ <div> html innocentSourceService factory innocentSourceService innocent |
-| autogenerated/Xss/DomBasedXss/tst.js:165:35:165:41 | "<div>" | enclosingFunctionName | angularJSServices |
-| autogenerated/Xss/DomBasedXss/tst.js:165:35:165:41 | "<div>" | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:165:35:165:41 | "<div>" | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:165:35:165:41 | "<div>" | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:165:49:165:49 | v | CalleeFlexibleAccessPath | $().html |
-| autogenerated/Xss/DomBasedXss/tst.js:165:49:165:49 | v | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:165:49:165:49 | v | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:165:49:165:49 | v | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:165:49:165:49 | v | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:165:49:165:49 | v | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:165:49:165:49 | v | contextSurroundingFunctionParameters | ()\n()\n(v) |
-| autogenerated/Xss/DomBasedXss/tst.js:165:49:165:49 | v | enclosingFunctionBody | angular module myApp factory xssSource_to_service xssSinkService1 xssSinkService1 xssSinkService1 window location search factory xssSinkService1 v $ <div> html v factory xssSource_from_service xssSourceService xssSourceService $ <div> html xssSourceService factory xssSourceService window location search factory innocentSource_to_service xssSinkService2 xssSinkService2 xssSinkService2 innocent factory xssSinkService2 v $ <div> html v factory innocentSource_from_service innocentSourceService innocentSourceService $ <div> html innocentSourceService factory innocentSourceService innocent |
-| autogenerated/Xss/DomBasedXss/tst.js:165:49:165:49 | v | enclosingFunctionName | angularJSServices |
-| autogenerated/Xss/DomBasedXss/tst.js:165:49:165:49 | v | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:165:49:165:49 | v | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:165:49:165:49 | v | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:168:18:168:46 | "innoce ... ervice" | CalleeFlexibleAccessPath | angular.module().factory().factory().factory().factory().factory().factory().factory |
-| autogenerated/Xss/DomBasedXss/tst.js:168:18:168:46 | "innoce ... ervice" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:168:18:168:46 | "innoce ... ervice" | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:168:18:168:46 | "innoce ... ervice" | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:168:18:168:46 | "innoce ... ervice" | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:168:18:168:46 | "innoce ... ervice" | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:168:18:168:46 | "innoce ... ervice" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/tst.js:168:18:168:46 | "innoce ... ervice" | enclosingFunctionBody | angular module myApp factory xssSource_to_service xssSinkService1 xssSinkService1 xssSinkService1 window location search factory xssSinkService1 v $ <div> html v factory xssSource_from_service xssSourceService xssSourceService $ <div> html xssSourceService factory xssSourceService window location search factory innocentSource_to_service xssSinkService2 xssSinkService2 xssSinkService2 innocent factory xssSinkService2 v $ <div> html v factory innocentSource_from_service innocentSourceService innocentSourceService $ <div> html innocentSourceService factory innocentSourceService innocent |
-| autogenerated/Xss/DomBasedXss/tst.js:168:18:168:46 | "innoce ... ervice" | enclosingFunctionName | angularJSServices |
-| autogenerated/Xss/DomBasedXss/tst.js:168:18:168:46 | "innoce ... ervice" | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:168:18:168:46 | "innoce ... ervice" | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:168:18:168:46 | "innoce ... ervice" | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:168:49:170:10 | ["innoc ...      }] | CalleeFlexibleAccessPath | angular.module().factory().factory().factory().factory().factory().factory().factory |
-| autogenerated/Xss/DomBasedXss/tst.js:168:49:170:10 | ["innoc ...      }] | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:168:49:170:10 | ["innoc ...      }] | InputArgumentIndex | 1 |
-| autogenerated/Xss/DomBasedXss/tst.js:168:49:170:10 | ["innoc ...      }] | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:168:49:170:10 | ["innoc ...      }] | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:168:49:170:10 | ["innoc ...      }] | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:168:49:170:10 | ["innoc ...      }] | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/tst.js:168:49:170:10 | ["innoc ...      }] | enclosingFunctionBody | angular module myApp factory xssSource_to_service xssSinkService1 xssSinkService1 xssSinkService1 window location search factory xssSinkService1 v $ <div> html v factory xssSource_from_service xssSourceService xssSourceService $ <div> html xssSourceService factory xssSourceService window location search factory innocentSource_to_service xssSinkService2 xssSinkService2 xssSinkService2 innocent factory xssSinkService2 v $ <div> html v factory innocentSource_from_service innocentSourceService innocentSourceService $ <div> html innocentSourceService factory innocentSourceService innocent |
-| autogenerated/Xss/DomBasedXss/tst.js:168:49:170:10 | ["innoc ...      }] | enclosingFunctionName | angularJSServices |
-| autogenerated/Xss/DomBasedXss/tst.js:168:49:170:10 | ["innoc ...      }] | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:168:49:170:10 | ["innoc ...      }] | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:168:49:170:10 | ["innoc ...      }] | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:168:50:168:72 | "innoce ... ervice" | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/tst.js:168:50:168:72 | "innoce ... ervice" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:168:50:168:72 | "innoce ... ervice" | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/tst.js:168:50:168:72 | "innoce ... ervice" | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:168:50:168:72 | "innoce ... ervice" | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:168:50:168:72 | "innoce ... ervice" | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:168:50:168:72 | "innoce ... ervice" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/tst.js:168:50:168:72 | "innoce ... ervice" | enclosingFunctionBody | angular module myApp factory xssSource_to_service xssSinkService1 xssSinkService1 xssSinkService1 window location search factory xssSinkService1 v $ <div> html v factory xssSource_from_service xssSourceService xssSourceService $ <div> html xssSourceService factory xssSourceService window location search factory innocentSource_to_service xssSinkService2 xssSinkService2 xssSinkService2 innocent factory xssSinkService2 v $ <div> html v factory innocentSource_from_service innocentSourceService innocentSourceService $ <div> html innocentSourceService factory innocentSourceService innocent |
-| autogenerated/Xss/DomBasedXss/tst.js:168:50:168:72 | "innoce ... ervice" | enclosingFunctionName | angularJSServices |
-| autogenerated/Xss/DomBasedXss/tst.js:168:50:168:72 | "innoce ... ervice" | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:168:50:168:72 | "innoce ... ervice" | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:168:50:168:72 | "innoce ... ervice" | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:168:75:170:9 | functio ...       } | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/tst.js:168:75:170:9 | functio ...       } | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:168:75:170:9 | functio ...       } | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/tst.js:168:75:170:9 | functio ...       } | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:168:75:170:9 | functio ...       } | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:168:75:170:9 | functio ...       } | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:168:75:170:9 | functio ...       } | contextSurroundingFunctionParameters | ()\n(innocentSourceService) |
-| autogenerated/Xss/DomBasedXss/tst.js:168:75:170:9 | functio ...       } | enclosingFunctionBody | angular module myApp factory xssSource_to_service xssSinkService1 xssSinkService1 xssSinkService1 window location search factory xssSinkService1 v $ <div> html v factory xssSource_from_service xssSourceService xssSourceService $ <div> html xssSourceService factory xssSourceService window location search factory innocentSource_to_service xssSinkService2 xssSinkService2 xssSinkService2 innocent factory xssSinkService2 v $ <div> html v factory innocentSource_from_service innocentSourceService innocentSourceService $ <div> html innocentSourceService factory innocentSourceService innocent |
-| autogenerated/Xss/DomBasedXss/tst.js:168:75:170:9 | functio ...       } | enclosingFunctionName | angularJSServices |
-| autogenerated/Xss/DomBasedXss/tst.js:168:75:170:9 | functio ...       } | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:168:75:170:9 | functio ...       } | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:168:75:170:9 | functio ...       } | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:169:15:169:21 | "<div>" | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/DomBasedXss/tst.js:169:15:169:21 | "<div>" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:169:15:169:21 | "<div>" | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:169:15:169:21 | "<div>" | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:169:15:169:21 | "<div>" | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:169:15:169:21 | "<div>" | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:169:15:169:21 | "<div>" | contextSurroundingFunctionParameters | ()\n(innocentSourceService) |
-| autogenerated/Xss/DomBasedXss/tst.js:169:15:169:21 | "<div>" | enclosingFunctionBody | angular module myApp factory xssSource_to_service xssSinkService1 xssSinkService1 xssSinkService1 window location search factory xssSinkService1 v $ <div> html v factory xssSource_from_service xssSourceService xssSourceService $ <div> html xssSourceService factory xssSourceService window location search factory innocentSource_to_service xssSinkService2 xssSinkService2 xssSinkService2 innocent factory xssSinkService2 v $ <div> html v factory innocentSource_from_service innocentSourceService innocentSourceService $ <div> html innocentSourceService factory innocentSourceService innocent |
-| autogenerated/Xss/DomBasedXss/tst.js:169:15:169:21 | "<div>" | enclosingFunctionName | angularJSServices |
-| autogenerated/Xss/DomBasedXss/tst.js:169:15:169:21 | "<div>" | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:169:15:169:21 | "<div>" | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:169:15:169:21 | "<div>" | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:169:29:169:51 | innocen ... rvice() | CalleeFlexibleAccessPath | $().html |
-| autogenerated/Xss/DomBasedXss/tst.js:169:29:169:51 | innocen ... rvice() | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:169:29:169:51 | innocen ... rvice() | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:169:29:169:51 | innocen ... rvice() | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:169:29:169:51 | innocen ... rvice() | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:169:29:169:51 | innocen ... rvice() | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:169:29:169:51 | innocen ... rvice() | contextSurroundingFunctionParameters | ()\n(innocentSourceService) |
-| autogenerated/Xss/DomBasedXss/tst.js:169:29:169:51 | innocen ... rvice() | enclosingFunctionBody | angular module myApp factory xssSource_to_service xssSinkService1 xssSinkService1 xssSinkService1 window location search factory xssSinkService1 v $ <div> html v factory xssSource_from_service xssSourceService xssSourceService $ <div> html xssSourceService factory xssSourceService window location search factory innocentSource_to_service xssSinkService2 xssSinkService2 xssSinkService2 innocent factory xssSinkService2 v $ <div> html v factory innocentSource_from_service innocentSourceService innocentSourceService $ <div> html innocentSourceService factory innocentSourceService innocent |
-| autogenerated/Xss/DomBasedXss/tst.js:169:29:169:51 | innocen ... rvice() | enclosingFunctionName | angularJSServices |
-| autogenerated/Xss/DomBasedXss/tst.js:169:29:169:51 | innocen ... rvice() | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:169:29:169:51 | innocen ... rvice() | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:169:29:169:51 | innocen ... rvice() | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:171:18:171:40 | "innoce ... ervice" | CalleeFlexibleAccessPath | angular.module().factory().factory().factory().factory().factory().factory().factory().factory |
-| autogenerated/Xss/DomBasedXss/tst.js:171:18:171:40 | "innoce ... ervice" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:171:18:171:40 | "innoce ... ervice" | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:171:18:171:40 | "innoce ... ervice" | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:171:18:171:40 | "innoce ... ervice" | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:171:18:171:40 | "innoce ... ervice" | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:171:18:171:40 | "innoce ... ervice" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/tst.js:171:18:171:40 | "innoce ... ervice" | enclosingFunctionBody | angular module myApp factory xssSource_to_service xssSinkService1 xssSinkService1 xssSinkService1 window location search factory xssSinkService1 v $ <div> html v factory xssSource_from_service xssSourceService xssSourceService $ <div> html xssSourceService factory xssSourceService window location search factory innocentSource_to_service xssSinkService2 xssSinkService2 xssSinkService2 innocent factory xssSinkService2 v $ <div> html v factory innocentSource_from_service innocentSourceService innocentSourceService $ <div> html innocentSourceService factory innocentSourceService innocent |
-| autogenerated/Xss/DomBasedXss/tst.js:171:18:171:40 | "innoce ... ervice" | enclosingFunctionName | angularJSServices |
-| autogenerated/Xss/DomBasedXss/tst.js:171:18:171:40 | "innoce ... ervice" | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:171:18:171:40 | "innoce ... ervice" | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:171:18:171:40 | "innoce ... ervice" | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:171:43:173:9 | functio ...       } | CalleeFlexibleAccessPath | angular.module().factory().factory().factory().factory().factory().factory().factory().factory |
-| autogenerated/Xss/DomBasedXss/tst.js:171:43:173:9 | functio ...       } | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:171:43:173:9 | functio ...       } | InputArgumentIndex | 1 |
-| autogenerated/Xss/DomBasedXss/tst.js:171:43:173:9 | functio ...       } | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:171:43:173:9 | functio ...       } | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:171:43:173:9 | functio ...       } | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:171:43:173:9 | functio ...       } | contextSurroundingFunctionParameters | ()\n() |
-| autogenerated/Xss/DomBasedXss/tst.js:171:43:173:9 | functio ...       } | enclosingFunctionBody | angular module myApp factory xssSource_to_service xssSinkService1 xssSinkService1 xssSinkService1 window location search factory xssSinkService1 v $ <div> html v factory xssSource_from_service xssSourceService xssSourceService $ <div> html xssSourceService factory xssSourceService window location search factory innocentSource_to_service xssSinkService2 xssSinkService2 xssSinkService2 innocent factory xssSinkService2 v $ <div> html v factory innocentSource_from_service innocentSourceService innocentSourceService $ <div> html innocentSourceService factory innocentSourceService innocent |
-| autogenerated/Xss/DomBasedXss/tst.js:171:43:173:9 | functio ...       } | enclosingFunctionName | angularJSServices |
-| autogenerated/Xss/DomBasedXss/tst.js:171:43:173:9 | functio ...       } | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:171:43:173:9 | functio ...       } | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:171:43:173:9 | functio ...       } | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:180:28:180:33 | target | CalleeFlexibleAccessPath | parser.parseFromString |
-| autogenerated/Xss/DomBasedXss/tst.js:180:28:180:33 | target | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:180:28:180:33 | target | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:180:28:180:33 | target | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:180:28:180:33 | target | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:180:28:180:33 | target | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:180:28:180:33 | target | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/tst.js:180:28:180:33 | target | enclosingFunctionBody | target document location search parser DOMParser parser parseFromString target application/xml |
-| autogenerated/Xss/DomBasedXss/tst.js:180:28:180:33 | target | enclosingFunctionName | testDOMParser |
-| autogenerated/Xss/DomBasedXss/tst.js:180:28:180:33 | target | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:180:28:180:33 | target | receiverName | parser |
-| autogenerated/Xss/DomBasedXss/tst.js:180:28:180:33 | target | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:186:31:186:37 | tainted | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/tst.js:186:31:186:37 | tainted | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:186:31:186:37 | tainted | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/tst.js:186:31:186:37 | tainted | assignedToPropName | innerHTML |
-| autogenerated/Xss/DomBasedXss/tst.js:186:31:186:37 | tainted | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:186:31:186:37 | tainted | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:186:31:186:37 | tainted | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/tst.js:186:31:186:37 | tainted | enclosingFunctionBody | tainted document location search document body innerHTML tainted document createElement innerHTML tainted createElement innerHTML tainted document 0 getElementsByClassName 0 innerHTML tainted getElementsByClassName 0 0 innerHTML tainted getElementsByClassName item innerHTML tainted |
-| autogenerated/Xss/DomBasedXss/tst.js:186:31:186:37 | tainted | enclosingFunctionName | references |
-| autogenerated/Xss/DomBasedXss/tst.js:186:31:186:37 | tainted | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:186:31:186:37 | tainted | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:186:31:186:37 | tainted | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:188:42:188:48 | tainted | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/tst.js:188:42:188:48 | tainted | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:188:42:188:48 | tainted | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/tst.js:188:42:188:48 | tainted | assignedToPropName | innerHTML |
-| autogenerated/Xss/DomBasedXss/tst.js:188:42:188:48 | tainted | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:188:42:188:48 | tainted | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:188:42:188:48 | tainted | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/tst.js:188:42:188:48 | tainted | enclosingFunctionBody | tainted document location search document body innerHTML tainted document createElement innerHTML tainted createElement innerHTML tainted document 0 getElementsByClassName 0 innerHTML tainted getElementsByClassName 0 0 innerHTML tainted getElementsByClassName item innerHTML tainted |
-| autogenerated/Xss/DomBasedXss/tst.js:188:42:188:48 | tainted | enclosingFunctionName | references |
-| autogenerated/Xss/DomBasedXss/tst.js:188:42:188:48 | tainted | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:188:42:188:48 | tainted | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:188:42:188:48 | tainted | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:189:33:189:39 | tainted | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/tst.js:189:33:189:39 | tainted | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:189:33:189:39 | tainted | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/tst.js:189:33:189:39 | tainted | assignedToPropName | innerHTML |
-| autogenerated/Xss/DomBasedXss/tst.js:189:33:189:39 | tainted | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:189:33:189:39 | tainted | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:189:33:189:39 | tainted | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/tst.js:189:33:189:39 | tainted | enclosingFunctionBody | tainted document location search document body innerHTML tainted document createElement innerHTML tainted createElement innerHTML tainted document 0 getElementsByClassName 0 innerHTML tainted getElementsByClassName 0 0 innerHTML tainted getElementsByClassName item innerHTML tainted |
-| autogenerated/Xss/DomBasedXss/tst.js:189:33:189:39 | tainted | enclosingFunctionName | references |
-| autogenerated/Xss/DomBasedXss/tst.js:189:33:189:39 | tainted | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:189:33:189:39 | tainted | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:189:33:189:39 | tainted | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:191:54:191:60 | tainted | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/tst.js:191:54:191:60 | tainted | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:191:54:191:60 | tainted | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/tst.js:191:54:191:60 | tainted | assignedToPropName | innerHTML |
-| autogenerated/Xss/DomBasedXss/tst.js:191:54:191:60 | tainted | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:191:54:191:60 | tainted | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:191:54:191:60 | tainted | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/tst.js:191:54:191:60 | tainted | enclosingFunctionBody | tainted document location search document body innerHTML tainted document createElement innerHTML tainted createElement innerHTML tainted document 0 getElementsByClassName 0 innerHTML tainted getElementsByClassName 0 0 innerHTML tainted getElementsByClassName item innerHTML tainted |
-| autogenerated/Xss/DomBasedXss/tst.js:191:54:191:60 | tainted | enclosingFunctionName | references |
-| autogenerated/Xss/DomBasedXss/tst.js:191:54:191:60 | tainted | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:191:54:191:60 | tainted | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:191:54:191:60 | tainted | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:192:45:192:51 | tainted | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/tst.js:192:45:192:51 | tainted | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:192:45:192:51 | tainted | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/tst.js:192:45:192:51 | tainted | assignedToPropName | innerHTML |
-| autogenerated/Xss/DomBasedXss/tst.js:192:45:192:51 | tainted | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:192:45:192:51 | tainted | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:192:45:192:51 | tainted | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/tst.js:192:45:192:51 | tainted | enclosingFunctionBody | tainted document location search document body innerHTML tainted document createElement innerHTML tainted createElement innerHTML tainted document 0 getElementsByClassName 0 innerHTML tainted getElementsByClassName 0 0 innerHTML tainted getElementsByClassName item innerHTML tainted |
-| autogenerated/Xss/DomBasedXss/tst.js:192:45:192:51 | tainted | enclosingFunctionName | references |
-| autogenerated/Xss/DomBasedXss/tst.js:192:45:192:51 | tainted | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:192:45:192:51 | tainted | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:192:45:192:51 | tainted | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:193:49:193:55 | tainted | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/tst.js:193:49:193:55 | tainted | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:193:49:193:55 | tainted | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/tst.js:193:49:193:55 | tainted | assignedToPropName | innerHTML |
-| autogenerated/Xss/DomBasedXss/tst.js:193:49:193:55 | tainted | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:193:49:193:55 | tainted | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:193:49:193:55 | tainted | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/tst.js:193:49:193:55 | tainted | enclosingFunctionBody | tainted document location search document body innerHTML tainted document createElement innerHTML tainted createElement innerHTML tainted document 0 getElementsByClassName 0 innerHTML tainted getElementsByClassName 0 0 innerHTML tainted getElementsByClassName item innerHTML tainted |
-| autogenerated/Xss/DomBasedXss/tst.js:193:49:193:55 | tainted | enclosingFunctionName | references |
-| autogenerated/Xss/DomBasedXss/tst.js:193:49:193:55 | tainted | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:193:49:193:55 | tainted | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:193:49:193:55 | tainted | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:199:25:199:29 | "div" | CalleeFlexibleAccessPath | React.createElement |
-| autogenerated/Xss/DomBasedXss/tst.js:199:25:199:29 | "div" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:199:25:199:29 | "div" | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:199:25:199:29 | "div" | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:199:25:199:29 | "div" | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:199:25:199:29 | "div" | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:199:25:199:29 | "div" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/tst.js:199:25:199:29 | "div" | enclosingFunctionBody | tainted document location search React createElement div dangerouslySetInnerHTML __html tainted React createFactory div dangerouslySetInnerHTML __html tainted C1 React Component constructor state tainted1 tainted state notTainted dbLookup setState tainted2 tainted state tainted3 tainted state tainted4 tainted test $ myId html state tainted1 $ myId html state tainted2 $ myId html state tainted3 $ myId html state notTainted setState prevState $ myId html prevState tainted4 C2 React Component args constructor test $ myId html props tainted1 $ myId html props tainted2 $ myId html props tainted3 $ myId html props notTainted setState prevState prevProps $ myId html prevProps tainted4 C2 defaultProps tainted1 tainted C2 tainted2 tainted C2 tainted3 tainted C2 tainted4 tainted C3 React Component constructor props props state stateTainted props propTainted render span dangerouslySetInnerHTML __html state stateTainted C3 propTainted tainted |
-| autogenerated/Xss/DomBasedXss/tst.js:199:25:199:29 | "div" | enclosingFunctionName | react |
-| autogenerated/Xss/DomBasedXss/tst.js:199:25:199:29 | "div" | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:199:25:199:29 | "div" | receiverName | React |
-| autogenerated/Xss/DomBasedXss/tst.js:199:25:199:29 | "div" | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:199:32:199:75 | {danger ... inted}} | CalleeFlexibleAccessPath | React.createElement |
-| autogenerated/Xss/DomBasedXss/tst.js:199:32:199:75 | {danger ... inted}} | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:199:32:199:75 | {danger ... inted}} | InputArgumentIndex | 1 |
-| autogenerated/Xss/DomBasedXss/tst.js:199:32:199:75 | {danger ... inted}} | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:199:32:199:75 | {danger ... inted}} | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:199:32:199:75 | {danger ... inted}} | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:199:32:199:75 | {danger ... inted}} | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/tst.js:199:32:199:75 | {danger ... inted}} | enclosingFunctionBody | tainted document location search React createElement div dangerouslySetInnerHTML __html tainted React createFactory div dangerouslySetInnerHTML __html tainted C1 React Component constructor state tainted1 tainted state notTainted dbLookup setState tainted2 tainted state tainted3 tainted state tainted4 tainted test $ myId html state tainted1 $ myId html state tainted2 $ myId html state tainted3 $ myId html state notTainted setState prevState $ myId html prevState tainted4 C2 React Component args constructor test $ myId html props tainted1 $ myId html props tainted2 $ myId html props tainted3 $ myId html props notTainted setState prevState prevProps $ myId html prevProps tainted4 C2 defaultProps tainted1 tainted C2 tainted2 tainted C2 tainted3 tainted C2 tainted4 tainted C3 React Component constructor props props state stateTainted props propTainted render span dangerouslySetInnerHTML __html state stateTainted C3 propTainted tainted |
-| autogenerated/Xss/DomBasedXss/tst.js:199:32:199:75 | {danger ... inted}} | enclosingFunctionName | react |
-| autogenerated/Xss/DomBasedXss/tst.js:199:32:199:75 | {danger ... inted}} | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:199:32:199:75 | {danger ... inted}} | receiverName | React |
-| autogenerated/Xss/DomBasedXss/tst.js:199:32:199:75 | {danger ... inted}} | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:199:58:199:74 | {__html: tainted} | CalleeFlexibleAccessPath | React.createElement |
-| autogenerated/Xss/DomBasedXss/tst.js:199:58:199:74 | {__html: tainted} | InputAccessPathFromCallee | 1.dangerouslySetInnerHTML |
-| autogenerated/Xss/DomBasedXss/tst.js:199:58:199:74 | {__html: tainted} | InputArgumentIndex | 1 |
-| autogenerated/Xss/DomBasedXss/tst.js:199:58:199:74 | {__html: tainted} | assignedToPropName | dangerouslySetInnerHTML |
-| autogenerated/Xss/DomBasedXss/tst.js:199:58:199:74 | {__html: tainted} | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:199:58:199:74 | {__html: tainted} | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:199:58:199:74 | {__html: tainted} | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/tst.js:199:58:199:74 | {__html: tainted} | enclosingFunctionBody | tainted document location search React createElement div dangerouslySetInnerHTML __html tainted React createFactory div dangerouslySetInnerHTML __html tainted C1 React Component constructor state tainted1 tainted state notTainted dbLookup setState tainted2 tainted state tainted3 tainted state tainted4 tainted test $ myId html state tainted1 $ myId html state tainted2 $ myId html state tainted3 $ myId html state notTainted setState prevState $ myId html prevState tainted4 C2 React Component args constructor test $ myId html props tainted1 $ myId html props tainted2 $ myId html props tainted3 $ myId html props notTainted setState prevState prevProps $ myId html prevProps tainted4 C2 defaultProps tainted1 tainted C2 tainted2 tainted C2 tainted3 tainted C2 tainted4 tainted C3 React Component constructor props props state stateTainted props propTainted render span dangerouslySetInnerHTML __html state stateTainted C3 propTainted tainted |
-| autogenerated/Xss/DomBasedXss/tst.js:199:58:199:74 | {__html: tainted} | enclosingFunctionName | react |
-| autogenerated/Xss/DomBasedXss/tst.js:199:58:199:74 | {__html: tainted} | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:199:58:199:74 | {__html: tainted} | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:199:58:199:74 | {__html: tainted} | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:199:67:199:73 | tainted | CalleeFlexibleAccessPath | React.createElement |
-| autogenerated/Xss/DomBasedXss/tst.js:199:67:199:73 | tainted | InputAccessPathFromCallee | 1.dangerouslySetInnerHTML.__html |
-| autogenerated/Xss/DomBasedXss/tst.js:199:67:199:73 | tainted | InputArgumentIndex | 1 |
-| autogenerated/Xss/DomBasedXss/tst.js:199:67:199:73 | tainted | assignedToPropName | __html |
-| autogenerated/Xss/DomBasedXss/tst.js:199:67:199:73 | tainted | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:199:67:199:73 | tainted | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:199:67:199:73 | tainted | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/tst.js:199:67:199:73 | tainted | enclosingFunctionBody | tainted document location search React createElement div dangerouslySetInnerHTML __html tainted React createFactory div dangerouslySetInnerHTML __html tainted C1 React Component constructor state tainted1 tainted state notTainted dbLookup setState tainted2 tainted state tainted3 tainted state tainted4 tainted test $ myId html state tainted1 $ myId html state tainted2 $ myId html state tainted3 $ myId html state notTainted setState prevState $ myId html prevState tainted4 C2 React Component args constructor test $ myId html props tainted1 $ myId html props tainted2 $ myId html props tainted3 $ myId html props notTainted setState prevState prevProps $ myId html prevProps tainted4 C2 defaultProps tainted1 tainted C2 tainted2 tainted C2 tainted3 tainted C2 tainted4 tainted C3 React Component constructor props props state stateTainted props propTainted render span dangerouslySetInnerHTML __html state stateTainted C3 propTainted tainted |
-| autogenerated/Xss/DomBasedXss/tst.js:199:67:199:73 | tainted | enclosingFunctionName | react |
-| autogenerated/Xss/DomBasedXss/tst.js:199:67:199:73 | tainted | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:199:67:199:73 | tainted | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:199:67:199:73 | tainted | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:200:25:200:29 | "div" | CalleeFlexibleAccessPath | React.createFactory |
-| autogenerated/Xss/DomBasedXss/tst.js:200:25:200:29 | "div" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:200:25:200:29 | "div" | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:200:25:200:29 | "div" | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:200:25:200:29 | "div" | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:200:25:200:29 | "div" | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:200:25:200:29 | "div" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/tst.js:200:25:200:29 | "div" | enclosingFunctionBody | tainted document location search React createElement div dangerouslySetInnerHTML __html tainted React createFactory div dangerouslySetInnerHTML __html tainted C1 React Component constructor state tainted1 tainted state notTainted dbLookup setState tainted2 tainted state tainted3 tainted state tainted4 tainted test $ myId html state tainted1 $ myId html state tainted2 $ myId html state tainted3 $ myId html state notTainted setState prevState $ myId html prevState tainted4 C2 React Component args constructor test $ myId html props tainted1 $ myId html props tainted2 $ myId html props tainted3 $ myId html props notTainted setState prevState prevProps $ myId html prevProps tainted4 C2 defaultProps tainted1 tainted C2 tainted2 tainted C2 tainted3 tainted C2 tainted4 tainted C3 React Component constructor props props state stateTainted props propTainted render span dangerouslySetInnerHTML __html state stateTainted C3 propTainted tainted |
-| autogenerated/Xss/DomBasedXss/tst.js:200:25:200:29 | "div" | enclosingFunctionName | react |
-| autogenerated/Xss/DomBasedXss/tst.js:200:25:200:29 | "div" | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:200:25:200:29 | "div" | receiverName | React |
-| autogenerated/Xss/DomBasedXss/tst.js:200:25:200:29 | "div" | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:200:32:200:75 | {danger ... inted}} | CalleeFlexibleAccessPath | React.createFactory() |
-| autogenerated/Xss/DomBasedXss/tst.js:200:32:200:75 | {danger ... inted}} | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:200:32:200:75 | {danger ... inted}} | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:200:32:200:75 | {danger ... inted}} | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:200:32:200:75 | {danger ... inted}} | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:200:32:200:75 | {danger ... inted}} | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:200:32:200:75 | {danger ... inted}} | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/tst.js:200:32:200:75 | {danger ... inted}} | enclosingFunctionBody | tainted document location search React createElement div dangerouslySetInnerHTML __html tainted React createFactory div dangerouslySetInnerHTML __html tainted C1 React Component constructor state tainted1 tainted state notTainted dbLookup setState tainted2 tainted state tainted3 tainted state tainted4 tainted test $ myId html state tainted1 $ myId html state tainted2 $ myId html state tainted3 $ myId html state notTainted setState prevState $ myId html prevState tainted4 C2 React Component args constructor test $ myId html props tainted1 $ myId html props tainted2 $ myId html props tainted3 $ myId html props notTainted setState prevState prevProps $ myId html prevProps tainted4 C2 defaultProps tainted1 tainted C2 tainted2 tainted C2 tainted3 tainted C2 tainted4 tainted C3 React Component constructor props props state stateTainted props propTainted render span dangerouslySetInnerHTML __html state stateTainted C3 propTainted tainted |
-| autogenerated/Xss/DomBasedXss/tst.js:200:32:200:75 | {danger ... inted}} | enclosingFunctionName | react |
-| autogenerated/Xss/DomBasedXss/tst.js:200:32:200:75 | {danger ... inted}} | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:200:32:200:75 | {danger ... inted}} | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:200:32:200:75 | {danger ... inted}} | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:200:58:200:74 | {__html: tainted} | CalleeFlexibleAccessPath | React.createFactory() |
-| autogenerated/Xss/DomBasedXss/tst.js:200:58:200:74 | {__html: tainted} | InputAccessPathFromCallee | 0.dangerouslySetInnerHTML |
-| autogenerated/Xss/DomBasedXss/tst.js:200:58:200:74 | {__html: tainted} | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:200:58:200:74 | {__html: tainted} | assignedToPropName | dangerouslySetInnerHTML |
-| autogenerated/Xss/DomBasedXss/tst.js:200:58:200:74 | {__html: tainted} | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:200:58:200:74 | {__html: tainted} | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:200:58:200:74 | {__html: tainted} | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/tst.js:200:58:200:74 | {__html: tainted} | enclosingFunctionBody | tainted document location search React createElement div dangerouslySetInnerHTML __html tainted React createFactory div dangerouslySetInnerHTML __html tainted C1 React Component constructor state tainted1 tainted state notTainted dbLookup setState tainted2 tainted state tainted3 tainted state tainted4 tainted test $ myId html state tainted1 $ myId html state tainted2 $ myId html state tainted3 $ myId html state notTainted setState prevState $ myId html prevState tainted4 C2 React Component args constructor test $ myId html props tainted1 $ myId html props tainted2 $ myId html props tainted3 $ myId html props notTainted setState prevState prevProps $ myId html prevProps tainted4 C2 defaultProps tainted1 tainted C2 tainted2 tainted C2 tainted3 tainted C2 tainted4 tainted C3 React Component constructor props props state stateTainted props propTainted render span dangerouslySetInnerHTML __html state stateTainted C3 propTainted tainted |
-| autogenerated/Xss/DomBasedXss/tst.js:200:58:200:74 | {__html: tainted} | enclosingFunctionName | react |
-| autogenerated/Xss/DomBasedXss/tst.js:200:58:200:74 | {__html: tainted} | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:200:58:200:74 | {__html: tainted} | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:200:58:200:74 | {__html: tainted} | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:200:67:200:73 | tainted | CalleeFlexibleAccessPath | React.createFactory() |
-| autogenerated/Xss/DomBasedXss/tst.js:200:67:200:73 | tainted | InputAccessPathFromCallee | 0.dangerouslySetInnerHTML.__html |
-| autogenerated/Xss/DomBasedXss/tst.js:200:67:200:73 | tainted | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:200:67:200:73 | tainted | assignedToPropName | __html |
-| autogenerated/Xss/DomBasedXss/tst.js:200:67:200:73 | tainted | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:200:67:200:73 | tainted | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:200:67:200:73 | tainted | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/tst.js:200:67:200:73 | tainted | enclosingFunctionBody | tainted document location search React createElement div dangerouslySetInnerHTML __html tainted React createFactory div dangerouslySetInnerHTML __html tainted C1 React Component constructor state tainted1 tainted state notTainted dbLookup setState tainted2 tainted state tainted3 tainted state tainted4 tainted test $ myId html state tainted1 $ myId html state tainted2 $ myId html state tainted3 $ myId html state notTainted setState prevState $ myId html prevState tainted4 C2 React Component args constructor test $ myId html props tainted1 $ myId html props tainted2 $ myId html props tainted3 $ myId html props notTainted setState prevState prevProps $ myId html prevProps tainted4 C2 defaultProps tainted1 tainted C2 tainted2 tainted C2 tainted3 tainted C2 tainted4 tainted C3 React Component constructor props props state stateTainted props propTainted render span dangerouslySetInnerHTML __html state stateTainted C3 propTainted tainted |
-| autogenerated/Xss/DomBasedXss/tst.js:200:67:200:73 | tainted | enclosingFunctionName | react |
-| autogenerated/Xss/DomBasedXss/tst.js:200:67:200:73 | tainted | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:200:67:200:73 | tainted | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:200:67:200:73 | tainted | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:206:27:206:55 | () => ( ... nted }) | CalleeFlexibleAccessPath | this.setState |
-| autogenerated/Xss/DomBasedXss/tst.js:206:27:206:55 | () => ( ... nted }) | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:206:27:206:55 | () => ( ... nted }) | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:206:27:206:55 | () => ( ... nted }) | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:206:27:206:55 | () => ( ... nted }) | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:206:27:206:55 | () => ( ... nted }) | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:206:27:206:55 | () => ( ... nted }) | contextSurroundingFunctionParameters | ()\n()\n() |
-| autogenerated/Xss/DomBasedXss/tst.js:206:27:206:55 | () => ( ... nted }) | enclosingFunctionBody | tainted document location search React createElement div dangerouslySetInnerHTML __html tainted React createFactory div dangerouslySetInnerHTML __html tainted C1 React Component constructor state tainted1 tainted state notTainted dbLookup setState tainted2 tainted state tainted3 tainted state tainted4 tainted test $ myId html state tainted1 $ myId html state tainted2 $ myId html state tainted3 $ myId html state notTainted setState prevState $ myId html prevState tainted4 C2 React Component args constructor test $ myId html props tainted1 $ myId html props tainted2 $ myId html props tainted3 $ myId html props notTainted setState prevState prevProps $ myId html prevProps tainted4 C2 defaultProps tainted1 tainted C2 tainted2 tainted C2 tainted3 tainted C2 tainted4 tainted C3 React Component constructor props props state stateTainted props propTainted render span dangerouslySetInnerHTML __html state stateTainted C3 propTainted tainted |
-| autogenerated/Xss/DomBasedXss/tst.js:206:27:206:55 | () => ( ... nted }) | enclosingFunctionName | react |
-| autogenerated/Xss/DomBasedXss/tst.js:206:27:206:55 | () => ( ... nted }) | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:206:27:206:55 | () => ( ... nted }) | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:206:27:206:55 | () => ( ... nted }) | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:212:15:212:20 | 'myId' | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/DomBasedXss/tst.js:212:15:212:20 | 'myId' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:212:15:212:20 | 'myId' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:212:15:212:20 | 'myId' | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:212:15:212:20 | 'myId' | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:212:15:212:20 | 'myId' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:212:15:212:20 | 'myId' | contextSurroundingFunctionParameters | ()\n() |
-| autogenerated/Xss/DomBasedXss/tst.js:212:15:212:20 | 'myId' | enclosingFunctionBody | tainted document location search React createElement div dangerouslySetInnerHTML __html tainted React createFactory div dangerouslySetInnerHTML __html tainted C1 React Component constructor state tainted1 tainted state notTainted dbLookup setState tainted2 tainted state tainted3 tainted state tainted4 tainted test $ myId html state tainted1 $ myId html state tainted2 $ myId html state tainted3 $ myId html state notTainted setState prevState $ myId html prevState tainted4 C2 React Component args constructor test $ myId html props tainted1 $ myId html props tainted2 $ myId html props tainted3 $ myId html props notTainted setState prevState prevProps $ myId html prevProps tainted4 C2 defaultProps tainted1 tainted C2 tainted2 tainted C2 tainted3 tainted C2 tainted4 tainted C3 React Component constructor props props state stateTainted props propTainted render span dangerouslySetInnerHTML __html state stateTainted C3 propTainted tainted |
-| autogenerated/Xss/DomBasedXss/tst.js:212:15:212:20 | 'myId' | enclosingFunctionName | react |
-| autogenerated/Xss/DomBasedXss/tst.js:212:15:212:20 | 'myId' | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:212:15:212:20 | 'myId' | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:212:15:212:20 | 'myId' | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:212:28:212:46 | this.state.tainted1 | CalleeFlexibleAccessPath | $().html |
-| autogenerated/Xss/DomBasedXss/tst.js:212:28:212:46 | this.state.tainted1 | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:212:28:212:46 | this.state.tainted1 | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:212:28:212:46 | this.state.tainted1 | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:212:28:212:46 | this.state.tainted1 | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:212:28:212:46 | this.state.tainted1 | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:212:28:212:46 | this.state.tainted1 | contextSurroundingFunctionParameters | ()\n() |
-| autogenerated/Xss/DomBasedXss/tst.js:212:28:212:46 | this.state.tainted1 | enclosingFunctionBody | tainted document location search React createElement div dangerouslySetInnerHTML __html tainted React createFactory div dangerouslySetInnerHTML __html tainted C1 React Component constructor state tainted1 tainted state notTainted dbLookup setState tainted2 tainted state tainted3 tainted state tainted4 tainted test $ myId html state tainted1 $ myId html state tainted2 $ myId html state tainted3 $ myId html state notTainted setState prevState $ myId html prevState tainted4 C2 React Component args constructor test $ myId html props tainted1 $ myId html props tainted2 $ myId html props tainted3 $ myId html props notTainted setState prevState prevProps $ myId html prevProps tainted4 C2 defaultProps tainted1 tainted C2 tainted2 tainted C2 tainted3 tainted C2 tainted4 tainted C3 React Component constructor props props state stateTainted props propTainted render span dangerouslySetInnerHTML __html state stateTainted C3 propTainted tainted |
-| autogenerated/Xss/DomBasedXss/tst.js:212:28:212:46 | this.state.tainted1 | enclosingFunctionName | react |
-| autogenerated/Xss/DomBasedXss/tst.js:212:28:212:46 | this.state.tainted1 | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:212:28:212:46 | this.state.tainted1 | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:212:28:212:46 | this.state.tainted1 | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:213:15:213:20 | 'myId' | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/DomBasedXss/tst.js:213:15:213:20 | 'myId' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:213:15:213:20 | 'myId' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:213:15:213:20 | 'myId' | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:213:15:213:20 | 'myId' | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:213:15:213:20 | 'myId' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:213:15:213:20 | 'myId' | contextSurroundingFunctionParameters | ()\n() |
-| autogenerated/Xss/DomBasedXss/tst.js:213:15:213:20 | 'myId' | enclosingFunctionBody | tainted document location search React createElement div dangerouslySetInnerHTML __html tainted React createFactory div dangerouslySetInnerHTML __html tainted C1 React Component constructor state tainted1 tainted state notTainted dbLookup setState tainted2 tainted state tainted3 tainted state tainted4 tainted test $ myId html state tainted1 $ myId html state tainted2 $ myId html state tainted3 $ myId html state notTainted setState prevState $ myId html prevState tainted4 C2 React Component args constructor test $ myId html props tainted1 $ myId html props tainted2 $ myId html props tainted3 $ myId html props notTainted setState prevState prevProps $ myId html prevProps tainted4 C2 defaultProps tainted1 tainted C2 tainted2 tainted C2 tainted3 tainted C2 tainted4 tainted C3 React Component constructor props props state stateTainted props propTainted render span dangerouslySetInnerHTML __html state stateTainted C3 propTainted tainted |
-| autogenerated/Xss/DomBasedXss/tst.js:213:15:213:20 | 'myId' | enclosingFunctionName | react |
-| autogenerated/Xss/DomBasedXss/tst.js:213:15:213:20 | 'myId' | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:213:15:213:20 | 'myId' | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:213:15:213:20 | 'myId' | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:213:28:213:46 | this.state.tainted2 | CalleeFlexibleAccessPath | $().html |
-| autogenerated/Xss/DomBasedXss/tst.js:213:28:213:46 | this.state.tainted2 | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:213:28:213:46 | this.state.tainted2 | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:213:28:213:46 | this.state.tainted2 | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:213:28:213:46 | this.state.tainted2 | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:213:28:213:46 | this.state.tainted2 | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:213:28:213:46 | this.state.tainted2 | contextSurroundingFunctionParameters | ()\n() |
-| autogenerated/Xss/DomBasedXss/tst.js:213:28:213:46 | this.state.tainted2 | enclosingFunctionBody | tainted document location search React createElement div dangerouslySetInnerHTML __html tainted React createFactory div dangerouslySetInnerHTML __html tainted C1 React Component constructor state tainted1 tainted state notTainted dbLookup setState tainted2 tainted state tainted3 tainted state tainted4 tainted test $ myId html state tainted1 $ myId html state tainted2 $ myId html state tainted3 $ myId html state notTainted setState prevState $ myId html prevState tainted4 C2 React Component args constructor test $ myId html props tainted1 $ myId html props tainted2 $ myId html props tainted3 $ myId html props notTainted setState prevState prevProps $ myId html prevProps tainted4 C2 defaultProps tainted1 tainted C2 tainted2 tainted C2 tainted3 tainted C2 tainted4 tainted C3 React Component constructor props props state stateTainted props propTainted render span dangerouslySetInnerHTML __html state stateTainted C3 propTainted tainted |
-| autogenerated/Xss/DomBasedXss/tst.js:213:28:213:46 | this.state.tainted2 | enclosingFunctionName | react |
-| autogenerated/Xss/DomBasedXss/tst.js:213:28:213:46 | this.state.tainted2 | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:213:28:213:46 | this.state.tainted2 | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:213:28:213:46 | this.state.tainted2 | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:214:15:214:20 | 'myId' | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/DomBasedXss/tst.js:214:15:214:20 | 'myId' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:214:15:214:20 | 'myId' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:214:15:214:20 | 'myId' | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:214:15:214:20 | 'myId' | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:214:15:214:20 | 'myId' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:214:15:214:20 | 'myId' | contextSurroundingFunctionParameters | ()\n() |
-| autogenerated/Xss/DomBasedXss/tst.js:214:15:214:20 | 'myId' | enclosingFunctionBody | tainted document location search React createElement div dangerouslySetInnerHTML __html tainted React createFactory div dangerouslySetInnerHTML __html tainted C1 React Component constructor state tainted1 tainted state notTainted dbLookup setState tainted2 tainted state tainted3 tainted state tainted4 tainted test $ myId html state tainted1 $ myId html state tainted2 $ myId html state tainted3 $ myId html state notTainted setState prevState $ myId html prevState tainted4 C2 React Component args constructor test $ myId html props tainted1 $ myId html props tainted2 $ myId html props tainted3 $ myId html props notTainted setState prevState prevProps $ myId html prevProps tainted4 C2 defaultProps tainted1 tainted C2 tainted2 tainted C2 tainted3 tainted C2 tainted4 tainted C3 React Component constructor props props state stateTainted props propTainted render span dangerouslySetInnerHTML __html state stateTainted C3 propTainted tainted |
-| autogenerated/Xss/DomBasedXss/tst.js:214:15:214:20 | 'myId' | enclosingFunctionName | react |
-| autogenerated/Xss/DomBasedXss/tst.js:214:15:214:20 | 'myId' | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:214:15:214:20 | 'myId' | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:214:15:214:20 | 'myId' | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:214:28:214:46 | this.state.tainted3 | CalleeFlexibleAccessPath | $().html |
-| autogenerated/Xss/DomBasedXss/tst.js:214:28:214:46 | this.state.tainted3 | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:214:28:214:46 | this.state.tainted3 | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:214:28:214:46 | this.state.tainted3 | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:214:28:214:46 | this.state.tainted3 | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:214:28:214:46 | this.state.tainted3 | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:214:28:214:46 | this.state.tainted3 | contextSurroundingFunctionParameters | ()\n() |
-| autogenerated/Xss/DomBasedXss/tst.js:214:28:214:46 | this.state.tainted3 | enclosingFunctionBody | tainted document location search React createElement div dangerouslySetInnerHTML __html tainted React createFactory div dangerouslySetInnerHTML __html tainted C1 React Component constructor state tainted1 tainted state notTainted dbLookup setState tainted2 tainted state tainted3 tainted state tainted4 tainted test $ myId html state tainted1 $ myId html state tainted2 $ myId html state tainted3 $ myId html state notTainted setState prevState $ myId html prevState tainted4 C2 React Component args constructor test $ myId html props tainted1 $ myId html props tainted2 $ myId html props tainted3 $ myId html props notTainted setState prevState prevProps $ myId html prevProps tainted4 C2 defaultProps tainted1 tainted C2 tainted2 tainted C2 tainted3 tainted C2 tainted4 tainted C3 React Component constructor props props state stateTainted props propTainted render span dangerouslySetInnerHTML __html state stateTainted C3 propTainted tainted |
-| autogenerated/Xss/DomBasedXss/tst.js:214:28:214:46 | this.state.tainted3 | enclosingFunctionName | react |
-| autogenerated/Xss/DomBasedXss/tst.js:214:28:214:46 | this.state.tainted3 | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:214:28:214:46 | this.state.tainted3 | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:214:28:214:46 | this.state.tainted3 | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:215:15:215:20 | 'myId' | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/DomBasedXss/tst.js:215:15:215:20 | 'myId' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:215:15:215:20 | 'myId' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:215:15:215:20 | 'myId' | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:215:15:215:20 | 'myId' | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:215:15:215:20 | 'myId' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:215:15:215:20 | 'myId' | contextSurroundingFunctionParameters | ()\n() |
-| autogenerated/Xss/DomBasedXss/tst.js:215:15:215:20 | 'myId' | enclosingFunctionBody | tainted document location search React createElement div dangerouslySetInnerHTML __html tainted React createFactory div dangerouslySetInnerHTML __html tainted C1 React Component constructor state tainted1 tainted state notTainted dbLookup setState tainted2 tainted state tainted3 tainted state tainted4 tainted test $ myId html state tainted1 $ myId html state tainted2 $ myId html state tainted3 $ myId html state notTainted setState prevState $ myId html prevState tainted4 C2 React Component args constructor test $ myId html props tainted1 $ myId html props tainted2 $ myId html props tainted3 $ myId html props notTainted setState prevState prevProps $ myId html prevProps tainted4 C2 defaultProps tainted1 tainted C2 tainted2 tainted C2 tainted3 tainted C2 tainted4 tainted C3 React Component constructor props props state stateTainted props propTainted render span dangerouslySetInnerHTML __html state stateTainted C3 propTainted tainted |
-| autogenerated/Xss/DomBasedXss/tst.js:215:15:215:20 | 'myId' | enclosingFunctionName | react |
-| autogenerated/Xss/DomBasedXss/tst.js:215:15:215:20 | 'myId' | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:215:15:215:20 | 'myId' | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:215:15:215:20 | 'myId' | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:215:28:215:48 | this.st ... Tainted | CalleeFlexibleAccessPath | $().html |
-| autogenerated/Xss/DomBasedXss/tst.js:215:28:215:48 | this.st ... Tainted | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:215:28:215:48 | this.st ... Tainted | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:215:28:215:48 | this.st ... Tainted | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:215:28:215:48 | this.st ... Tainted | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:215:28:215:48 | this.st ... Tainted | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:215:28:215:48 | this.st ... Tainted | contextSurroundingFunctionParameters | ()\n() |
-| autogenerated/Xss/DomBasedXss/tst.js:215:28:215:48 | this.st ... Tainted | enclosingFunctionBody | tainted document location search React createElement div dangerouslySetInnerHTML __html tainted React createFactory div dangerouslySetInnerHTML __html tainted C1 React Component constructor state tainted1 tainted state notTainted dbLookup setState tainted2 tainted state tainted3 tainted state tainted4 tainted test $ myId html state tainted1 $ myId html state tainted2 $ myId html state tainted3 $ myId html state notTainted setState prevState $ myId html prevState tainted4 C2 React Component args constructor test $ myId html props tainted1 $ myId html props tainted2 $ myId html props tainted3 $ myId html props notTainted setState prevState prevProps $ myId html prevProps tainted4 C2 defaultProps tainted1 tainted C2 tainted2 tainted C2 tainted3 tainted C2 tainted4 tainted C3 React Component constructor props props state stateTainted props propTainted render span dangerouslySetInnerHTML __html state stateTainted C3 propTainted tainted |
-| autogenerated/Xss/DomBasedXss/tst.js:215:28:215:48 | this.st ... Tainted | enclosingFunctionName | react |
-| autogenerated/Xss/DomBasedXss/tst.js:215:28:215:48 | this.st ... Tainted | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:215:28:215:48 | this.st ... Tainted | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:215:28:215:48 | this.st ... Tainted | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:217:27:219:13 | prevSta ...       } | CalleeFlexibleAccessPath | this.setState |
-| autogenerated/Xss/DomBasedXss/tst.js:217:27:219:13 | prevSta ...       } | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:217:27:219:13 | prevSta ...       } | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:217:27:219:13 | prevSta ...       } | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:217:27:219:13 | prevSta ...       } | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:217:27:219:13 | prevSta ...       } | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:217:27:219:13 | prevSta ...       } | contextSurroundingFunctionParameters | ()\n()\n(prevState) |
-| autogenerated/Xss/DomBasedXss/tst.js:217:27:219:13 | prevSta ...       } | enclosingFunctionBody | tainted document location search React createElement div dangerouslySetInnerHTML __html tainted React createFactory div dangerouslySetInnerHTML __html tainted C1 React Component constructor state tainted1 tainted state notTainted dbLookup setState tainted2 tainted state tainted3 tainted state tainted4 tainted test $ myId html state tainted1 $ myId html state tainted2 $ myId html state tainted3 $ myId html state notTainted setState prevState $ myId html prevState tainted4 C2 React Component args constructor test $ myId html props tainted1 $ myId html props tainted2 $ myId html props tainted3 $ myId html props notTainted setState prevState prevProps $ myId html prevProps tainted4 C2 defaultProps tainted1 tainted C2 tainted2 tainted C2 tainted3 tainted C2 tainted4 tainted C3 React Component constructor props props state stateTainted props propTainted render span dangerouslySetInnerHTML __html state stateTainted C3 propTainted tainted |
-| autogenerated/Xss/DomBasedXss/tst.js:217:27:219:13 | prevSta ...       } | enclosingFunctionName | react |
-| autogenerated/Xss/DomBasedXss/tst.js:217:27:219:13 | prevSta ...       } | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:217:27:219:13 | prevSta ...       } | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:217:27:219:13 | prevSta ...       } | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:218:19:218:24 | 'myId' | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/DomBasedXss/tst.js:218:19:218:24 | 'myId' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:218:19:218:24 | 'myId' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:218:19:218:24 | 'myId' | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:218:19:218:24 | 'myId' | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:218:19:218:24 | 'myId' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:218:19:218:24 | 'myId' | contextSurroundingFunctionParameters | ()\n()\n(prevState) |
-| autogenerated/Xss/DomBasedXss/tst.js:218:19:218:24 | 'myId' | enclosingFunctionBody | tainted document location search React createElement div dangerouslySetInnerHTML __html tainted React createFactory div dangerouslySetInnerHTML __html tainted C1 React Component constructor state tainted1 tainted state notTainted dbLookup setState tainted2 tainted state tainted3 tainted state tainted4 tainted test $ myId html state tainted1 $ myId html state tainted2 $ myId html state tainted3 $ myId html state notTainted setState prevState $ myId html prevState tainted4 C2 React Component args constructor test $ myId html props tainted1 $ myId html props tainted2 $ myId html props tainted3 $ myId html props notTainted setState prevState prevProps $ myId html prevProps tainted4 C2 defaultProps tainted1 tainted C2 tainted2 tainted C2 tainted3 tainted C2 tainted4 tainted C3 React Component constructor props props state stateTainted props propTainted render span dangerouslySetInnerHTML __html state stateTainted C3 propTainted tainted |
-| autogenerated/Xss/DomBasedXss/tst.js:218:19:218:24 | 'myId' | enclosingFunctionName | react |
-| autogenerated/Xss/DomBasedXss/tst.js:218:19:218:24 | 'myId' | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:218:19:218:24 | 'myId' | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:218:19:218:24 | 'myId' | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:218:32:218:49 | prevState.tainted4 | CalleeFlexibleAccessPath | $().html |
-| autogenerated/Xss/DomBasedXss/tst.js:218:32:218:49 | prevState.tainted4 | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:218:32:218:49 | prevState.tainted4 | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:218:32:218:49 | prevState.tainted4 | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:218:32:218:49 | prevState.tainted4 | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:218:32:218:49 | prevState.tainted4 | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:218:32:218:49 | prevState.tainted4 | contextSurroundingFunctionParameters | ()\n()\n(prevState) |
-| autogenerated/Xss/DomBasedXss/tst.js:218:32:218:49 | prevState.tainted4 | enclosingFunctionBody | tainted document location search React createElement div dangerouslySetInnerHTML __html tainted React createFactory div dangerouslySetInnerHTML __html tainted C1 React Component constructor state tainted1 tainted state notTainted dbLookup setState tainted2 tainted state tainted3 tainted state tainted4 tainted test $ myId html state tainted1 $ myId html state tainted2 $ myId html state tainted3 $ myId html state notTainted setState prevState $ myId html prevState tainted4 C2 React Component args constructor test $ myId html props tainted1 $ myId html props tainted2 $ myId html props tainted3 $ myId html props notTainted setState prevState prevProps $ myId html prevProps tainted4 C2 defaultProps tainted1 tainted C2 tainted2 tainted C2 tainted3 tainted C2 tainted4 tainted C3 React Component constructor props props state stateTainted props propTainted render span dangerouslySetInnerHTML __html state stateTainted C3 propTainted tainted |
-| autogenerated/Xss/DomBasedXss/tst.js:218:32:218:49 | prevState.tainted4 | enclosingFunctionName | react |
-| autogenerated/Xss/DomBasedXss/tst.js:218:32:218:49 | prevState.tainted4 | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:218:32:218:49 | prevState.tainted4 | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:218:32:218:49 | prevState.tainted4 | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:225:15:225:20 | 'myId' | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/DomBasedXss/tst.js:225:15:225:20 | 'myId' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:225:15:225:20 | 'myId' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:225:15:225:20 | 'myId' | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:225:15:225:20 | 'myId' | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:225:15:225:20 | 'myId' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:225:15:225:20 | 'myId' | contextSurroundingFunctionParameters | ()\n() |
-| autogenerated/Xss/DomBasedXss/tst.js:225:15:225:20 | 'myId' | enclosingFunctionBody | tainted document location search React createElement div dangerouslySetInnerHTML __html tainted React createFactory div dangerouslySetInnerHTML __html tainted C1 React Component constructor state tainted1 tainted state notTainted dbLookup setState tainted2 tainted state tainted3 tainted state tainted4 tainted test $ myId html state tainted1 $ myId html state tainted2 $ myId html state tainted3 $ myId html state notTainted setState prevState $ myId html prevState tainted4 C2 React Component args constructor test $ myId html props tainted1 $ myId html props tainted2 $ myId html props tainted3 $ myId html props notTainted setState prevState prevProps $ myId html prevProps tainted4 C2 defaultProps tainted1 tainted C2 tainted2 tainted C2 tainted3 tainted C2 tainted4 tainted C3 React Component constructor props props state stateTainted props propTainted render span dangerouslySetInnerHTML __html state stateTainted C3 propTainted tainted |
-| autogenerated/Xss/DomBasedXss/tst.js:225:15:225:20 | 'myId' | enclosingFunctionName | react |
-| autogenerated/Xss/DomBasedXss/tst.js:225:15:225:20 | 'myId' | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:225:15:225:20 | 'myId' | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:225:15:225:20 | 'myId' | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:225:28:225:46 | this.props.tainted1 | CalleeFlexibleAccessPath | $().html |
-| autogenerated/Xss/DomBasedXss/tst.js:225:28:225:46 | this.props.tainted1 | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:225:28:225:46 | this.props.tainted1 | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:225:28:225:46 | this.props.tainted1 | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:225:28:225:46 | this.props.tainted1 | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:225:28:225:46 | this.props.tainted1 | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:225:28:225:46 | this.props.tainted1 | contextSurroundingFunctionParameters | ()\n() |
-| autogenerated/Xss/DomBasedXss/tst.js:225:28:225:46 | this.props.tainted1 | enclosingFunctionBody | tainted document location search React createElement div dangerouslySetInnerHTML __html tainted React createFactory div dangerouslySetInnerHTML __html tainted C1 React Component constructor state tainted1 tainted state notTainted dbLookup setState tainted2 tainted state tainted3 tainted state tainted4 tainted test $ myId html state tainted1 $ myId html state tainted2 $ myId html state tainted3 $ myId html state notTainted setState prevState $ myId html prevState tainted4 C2 React Component args constructor test $ myId html props tainted1 $ myId html props tainted2 $ myId html props tainted3 $ myId html props notTainted setState prevState prevProps $ myId html prevProps tainted4 C2 defaultProps tainted1 tainted C2 tainted2 tainted C2 tainted3 tainted C2 tainted4 tainted C3 React Component constructor props props state stateTainted props propTainted render span dangerouslySetInnerHTML __html state stateTainted C3 propTainted tainted |
-| autogenerated/Xss/DomBasedXss/tst.js:225:28:225:46 | this.props.tainted1 | enclosingFunctionName | react |
-| autogenerated/Xss/DomBasedXss/tst.js:225:28:225:46 | this.props.tainted1 | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:225:28:225:46 | this.props.tainted1 | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:225:28:225:46 | this.props.tainted1 | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:226:15:226:20 | 'myId' | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/DomBasedXss/tst.js:226:15:226:20 | 'myId' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:226:15:226:20 | 'myId' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:226:15:226:20 | 'myId' | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:226:15:226:20 | 'myId' | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:226:15:226:20 | 'myId' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:226:15:226:20 | 'myId' | contextSurroundingFunctionParameters | ()\n() |
-| autogenerated/Xss/DomBasedXss/tst.js:226:15:226:20 | 'myId' | enclosingFunctionBody | tainted document location search React createElement div dangerouslySetInnerHTML __html tainted React createFactory div dangerouslySetInnerHTML __html tainted C1 React Component constructor state tainted1 tainted state notTainted dbLookup setState tainted2 tainted state tainted3 tainted state tainted4 tainted test $ myId html state tainted1 $ myId html state tainted2 $ myId html state tainted3 $ myId html state notTainted setState prevState $ myId html prevState tainted4 C2 React Component args constructor test $ myId html props tainted1 $ myId html props tainted2 $ myId html props tainted3 $ myId html props notTainted setState prevState prevProps $ myId html prevProps tainted4 C2 defaultProps tainted1 tainted C2 tainted2 tainted C2 tainted3 tainted C2 tainted4 tainted C3 React Component constructor props props state stateTainted props propTainted render span dangerouslySetInnerHTML __html state stateTainted C3 propTainted tainted |
-| autogenerated/Xss/DomBasedXss/tst.js:226:15:226:20 | 'myId' | enclosingFunctionName | react |
-| autogenerated/Xss/DomBasedXss/tst.js:226:15:226:20 | 'myId' | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:226:15:226:20 | 'myId' | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:226:15:226:20 | 'myId' | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:226:28:226:46 | this.props.tainted2 | CalleeFlexibleAccessPath | $().html |
-| autogenerated/Xss/DomBasedXss/tst.js:226:28:226:46 | this.props.tainted2 | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:226:28:226:46 | this.props.tainted2 | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:226:28:226:46 | this.props.tainted2 | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:226:28:226:46 | this.props.tainted2 | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:226:28:226:46 | this.props.tainted2 | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:226:28:226:46 | this.props.tainted2 | contextSurroundingFunctionParameters | ()\n() |
-| autogenerated/Xss/DomBasedXss/tst.js:226:28:226:46 | this.props.tainted2 | enclosingFunctionBody | tainted document location search React createElement div dangerouslySetInnerHTML __html tainted React createFactory div dangerouslySetInnerHTML __html tainted C1 React Component constructor state tainted1 tainted state notTainted dbLookup setState tainted2 tainted state tainted3 tainted state tainted4 tainted test $ myId html state tainted1 $ myId html state tainted2 $ myId html state tainted3 $ myId html state notTainted setState prevState $ myId html prevState tainted4 C2 React Component args constructor test $ myId html props tainted1 $ myId html props tainted2 $ myId html props tainted3 $ myId html props notTainted setState prevState prevProps $ myId html prevProps tainted4 C2 defaultProps tainted1 tainted C2 tainted2 tainted C2 tainted3 tainted C2 tainted4 tainted C3 React Component constructor props props state stateTainted props propTainted render span dangerouslySetInnerHTML __html state stateTainted C3 propTainted tainted |
-| autogenerated/Xss/DomBasedXss/tst.js:226:28:226:46 | this.props.tainted2 | enclosingFunctionName | react |
-| autogenerated/Xss/DomBasedXss/tst.js:226:28:226:46 | this.props.tainted2 | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:226:28:226:46 | this.props.tainted2 | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:226:28:226:46 | this.props.tainted2 | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:227:15:227:20 | 'myId' | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/DomBasedXss/tst.js:227:15:227:20 | 'myId' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:227:15:227:20 | 'myId' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:227:15:227:20 | 'myId' | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:227:15:227:20 | 'myId' | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:227:15:227:20 | 'myId' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:227:15:227:20 | 'myId' | contextSurroundingFunctionParameters | ()\n() |
-| autogenerated/Xss/DomBasedXss/tst.js:227:15:227:20 | 'myId' | enclosingFunctionBody | tainted document location search React createElement div dangerouslySetInnerHTML __html tainted React createFactory div dangerouslySetInnerHTML __html tainted C1 React Component constructor state tainted1 tainted state notTainted dbLookup setState tainted2 tainted state tainted3 tainted state tainted4 tainted test $ myId html state tainted1 $ myId html state tainted2 $ myId html state tainted3 $ myId html state notTainted setState prevState $ myId html prevState tainted4 C2 React Component args constructor test $ myId html props tainted1 $ myId html props tainted2 $ myId html props tainted3 $ myId html props notTainted setState prevState prevProps $ myId html prevProps tainted4 C2 defaultProps tainted1 tainted C2 tainted2 tainted C2 tainted3 tainted C2 tainted4 tainted C3 React Component constructor props props state stateTainted props propTainted render span dangerouslySetInnerHTML __html state stateTainted C3 propTainted tainted |
-| autogenerated/Xss/DomBasedXss/tst.js:227:15:227:20 | 'myId' | enclosingFunctionName | react |
-| autogenerated/Xss/DomBasedXss/tst.js:227:15:227:20 | 'myId' | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:227:15:227:20 | 'myId' | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:227:15:227:20 | 'myId' | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:227:28:227:46 | this.props.tainted3 | CalleeFlexibleAccessPath | $().html |
-| autogenerated/Xss/DomBasedXss/tst.js:227:28:227:46 | this.props.tainted3 | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:227:28:227:46 | this.props.tainted3 | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:227:28:227:46 | this.props.tainted3 | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:227:28:227:46 | this.props.tainted3 | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:227:28:227:46 | this.props.tainted3 | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:227:28:227:46 | this.props.tainted3 | contextSurroundingFunctionParameters | ()\n() |
-| autogenerated/Xss/DomBasedXss/tst.js:227:28:227:46 | this.props.tainted3 | enclosingFunctionBody | tainted document location search React createElement div dangerouslySetInnerHTML __html tainted React createFactory div dangerouslySetInnerHTML __html tainted C1 React Component constructor state tainted1 tainted state notTainted dbLookup setState tainted2 tainted state tainted3 tainted state tainted4 tainted test $ myId html state tainted1 $ myId html state tainted2 $ myId html state tainted3 $ myId html state notTainted setState prevState $ myId html prevState tainted4 C2 React Component args constructor test $ myId html props tainted1 $ myId html props tainted2 $ myId html props tainted3 $ myId html props notTainted setState prevState prevProps $ myId html prevProps tainted4 C2 defaultProps tainted1 tainted C2 tainted2 tainted C2 tainted3 tainted C2 tainted4 tainted C3 React Component constructor props props state stateTainted props propTainted render span dangerouslySetInnerHTML __html state stateTainted C3 propTainted tainted |
-| autogenerated/Xss/DomBasedXss/tst.js:227:28:227:46 | this.props.tainted3 | enclosingFunctionName | react |
-| autogenerated/Xss/DomBasedXss/tst.js:227:28:227:46 | this.props.tainted3 | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:227:28:227:46 | this.props.tainted3 | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:227:28:227:46 | this.props.tainted3 | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:228:15:228:20 | 'myId' | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/DomBasedXss/tst.js:228:15:228:20 | 'myId' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:228:15:228:20 | 'myId' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:228:15:228:20 | 'myId' | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:228:15:228:20 | 'myId' | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:228:15:228:20 | 'myId' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:228:15:228:20 | 'myId' | contextSurroundingFunctionParameters | ()\n() |
-| autogenerated/Xss/DomBasedXss/tst.js:228:15:228:20 | 'myId' | enclosingFunctionBody | tainted document location search React createElement div dangerouslySetInnerHTML __html tainted React createFactory div dangerouslySetInnerHTML __html tainted C1 React Component constructor state tainted1 tainted state notTainted dbLookup setState tainted2 tainted state tainted3 tainted state tainted4 tainted test $ myId html state tainted1 $ myId html state tainted2 $ myId html state tainted3 $ myId html state notTainted setState prevState $ myId html prevState tainted4 C2 React Component args constructor test $ myId html props tainted1 $ myId html props tainted2 $ myId html props tainted3 $ myId html props notTainted setState prevState prevProps $ myId html prevProps tainted4 C2 defaultProps tainted1 tainted C2 tainted2 tainted C2 tainted3 tainted C2 tainted4 tainted C3 React Component constructor props props state stateTainted props propTainted render span dangerouslySetInnerHTML __html state stateTainted C3 propTainted tainted |
-| autogenerated/Xss/DomBasedXss/tst.js:228:15:228:20 | 'myId' | enclosingFunctionName | react |
-| autogenerated/Xss/DomBasedXss/tst.js:228:15:228:20 | 'myId' | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:228:15:228:20 | 'myId' | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:228:15:228:20 | 'myId' | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:228:28:228:48 | this.pr ... Tainted | CalleeFlexibleAccessPath | $().html |
-| autogenerated/Xss/DomBasedXss/tst.js:228:28:228:48 | this.pr ... Tainted | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:228:28:228:48 | this.pr ... Tainted | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:228:28:228:48 | this.pr ... Tainted | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:228:28:228:48 | this.pr ... Tainted | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:228:28:228:48 | this.pr ... Tainted | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:228:28:228:48 | this.pr ... Tainted | contextSurroundingFunctionParameters | ()\n() |
-| autogenerated/Xss/DomBasedXss/tst.js:228:28:228:48 | this.pr ... Tainted | enclosingFunctionBody | tainted document location search React createElement div dangerouslySetInnerHTML __html tainted React createFactory div dangerouslySetInnerHTML __html tainted C1 React Component constructor state tainted1 tainted state notTainted dbLookup setState tainted2 tainted state tainted3 tainted state tainted4 tainted test $ myId html state tainted1 $ myId html state tainted2 $ myId html state tainted3 $ myId html state notTainted setState prevState $ myId html prevState tainted4 C2 React Component args constructor test $ myId html props tainted1 $ myId html props tainted2 $ myId html props tainted3 $ myId html props notTainted setState prevState prevProps $ myId html prevProps tainted4 C2 defaultProps tainted1 tainted C2 tainted2 tainted C2 tainted3 tainted C2 tainted4 tainted C3 React Component constructor props props state stateTainted props propTainted render span dangerouslySetInnerHTML __html state stateTainted C3 propTainted tainted |
-| autogenerated/Xss/DomBasedXss/tst.js:228:28:228:48 | this.pr ... Tainted | enclosingFunctionName | react |
-| autogenerated/Xss/DomBasedXss/tst.js:228:28:228:48 | this.pr ... Tainted | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:228:28:228:48 | this.pr ... Tainted | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:228:28:228:48 | this.pr ... Tainted | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:230:27:232:13 | (prevSt ...       } | CalleeFlexibleAccessPath | this.setState |
-| autogenerated/Xss/DomBasedXss/tst.js:230:27:232:13 | (prevSt ...       } | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:230:27:232:13 | (prevSt ...       } | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:230:27:232:13 | (prevSt ...       } | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:230:27:232:13 | (prevSt ...       } | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:230:27:232:13 | (prevSt ...       } | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:230:27:232:13 | (prevSt ...       } | contextSurroundingFunctionParameters | ()\n()\n(prevState, prevProps) |
-| autogenerated/Xss/DomBasedXss/tst.js:230:27:232:13 | (prevSt ...       } | enclosingFunctionBody | tainted document location search React createElement div dangerouslySetInnerHTML __html tainted React createFactory div dangerouslySetInnerHTML __html tainted C1 React Component constructor state tainted1 tainted state notTainted dbLookup setState tainted2 tainted state tainted3 tainted state tainted4 tainted test $ myId html state tainted1 $ myId html state tainted2 $ myId html state tainted3 $ myId html state notTainted setState prevState $ myId html prevState tainted4 C2 React Component args constructor test $ myId html props tainted1 $ myId html props tainted2 $ myId html props tainted3 $ myId html props notTainted setState prevState prevProps $ myId html prevProps tainted4 C2 defaultProps tainted1 tainted C2 tainted2 tainted C2 tainted3 tainted C2 tainted4 tainted C3 React Component constructor props props state stateTainted props propTainted render span dangerouslySetInnerHTML __html state stateTainted C3 propTainted tainted |
-| autogenerated/Xss/DomBasedXss/tst.js:230:27:232:13 | (prevSt ...       } | enclosingFunctionName | react |
-| autogenerated/Xss/DomBasedXss/tst.js:230:27:232:13 | (prevSt ...       } | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:230:27:232:13 | (prevSt ...       } | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:230:27:232:13 | (prevSt ...       } | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:231:19:231:24 | 'myId' | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/DomBasedXss/tst.js:231:19:231:24 | 'myId' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:231:19:231:24 | 'myId' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:231:19:231:24 | 'myId' | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:231:19:231:24 | 'myId' | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:231:19:231:24 | 'myId' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:231:19:231:24 | 'myId' | contextSurroundingFunctionParameters | ()\n()\n(prevState, prevProps) |
-| autogenerated/Xss/DomBasedXss/tst.js:231:19:231:24 | 'myId' | enclosingFunctionBody | tainted document location search React createElement div dangerouslySetInnerHTML __html tainted React createFactory div dangerouslySetInnerHTML __html tainted C1 React Component constructor state tainted1 tainted state notTainted dbLookup setState tainted2 tainted state tainted3 tainted state tainted4 tainted test $ myId html state tainted1 $ myId html state tainted2 $ myId html state tainted3 $ myId html state notTainted setState prevState $ myId html prevState tainted4 C2 React Component args constructor test $ myId html props tainted1 $ myId html props tainted2 $ myId html props tainted3 $ myId html props notTainted setState prevState prevProps $ myId html prevProps tainted4 C2 defaultProps tainted1 tainted C2 tainted2 tainted C2 tainted3 tainted C2 tainted4 tainted C3 React Component constructor props props state stateTainted props propTainted render span dangerouslySetInnerHTML __html state stateTainted C3 propTainted tainted |
-| autogenerated/Xss/DomBasedXss/tst.js:231:19:231:24 | 'myId' | enclosingFunctionName | react |
-| autogenerated/Xss/DomBasedXss/tst.js:231:19:231:24 | 'myId' | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:231:19:231:24 | 'myId' | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:231:19:231:24 | 'myId' | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:231:32:231:49 | prevProps.tainted4 | CalleeFlexibleAccessPath | $().html |
-| autogenerated/Xss/DomBasedXss/tst.js:231:32:231:49 | prevProps.tainted4 | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:231:32:231:49 | prevProps.tainted4 | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:231:32:231:49 | prevProps.tainted4 | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:231:32:231:49 | prevProps.tainted4 | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:231:32:231:49 | prevProps.tainted4 | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:231:32:231:49 | prevProps.tainted4 | contextSurroundingFunctionParameters | ()\n()\n(prevState, prevProps) |
-| autogenerated/Xss/DomBasedXss/tst.js:231:32:231:49 | prevProps.tainted4 | enclosingFunctionBody | tainted document location search React createElement div dangerouslySetInnerHTML __html tainted React createFactory div dangerouslySetInnerHTML __html tainted C1 React Component constructor state tainted1 tainted state notTainted dbLookup setState tainted2 tainted state tainted3 tainted state tainted4 tainted test $ myId html state tainted1 $ myId html state tainted2 $ myId html state tainted3 $ myId html state notTainted setState prevState $ myId html prevState tainted4 C2 React Component args constructor test $ myId html props tainted1 $ myId html props tainted2 $ myId html props tainted3 $ myId html props notTainted setState prevState prevProps $ myId html prevProps tainted4 C2 defaultProps tainted1 tainted C2 tainted2 tainted C2 tainted3 tainted C2 tainted4 tainted C3 React Component constructor props props state stateTainted props propTainted render span dangerouslySetInnerHTML __html state stateTainted C3 propTainted tainted |
-| autogenerated/Xss/DomBasedXss/tst.js:231:32:231:49 | prevProps.tainted4 | enclosingFunctionName | react |
-| autogenerated/Xss/DomBasedXss/tst.js:231:32:231:49 | prevProps.tainted4 | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:231:32:231:49 | prevProps.tainted4 | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:231:32:231:49 | prevProps.tainted4 | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:246:19:246:23 | props | CalleeFlexibleAccessPath | super |
-| autogenerated/Xss/DomBasedXss/tst.js:246:19:246:23 | props | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:246:19:246:23 | props | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:246:19:246:23 | props | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:246:19:246:23 | props | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:246:19:246:23 | props | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:246:19:246:23 | props | contextSurroundingFunctionParameters | ()\n(props) |
-| autogenerated/Xss/DomBasedXss/tst.js:246:19:246:23 | props | enclosingFunctionBody | tainted document location search React createElement div dangerouslySetInnerHTML __html tainted React createFactory div dangerouslySetInnerHTML __html tainted C1 React Component constructor state tainted1 tainted state notTainted dbLookup setState tainted2 tainted state tainted3 tainted state tainted4 tainted test $ myId html state tainted1 $ myId html state tainted2 $ myId html state tainted3 $ myId html state notTainted setState prevState $ myId html prevState tainted4 C2 React Component args constructor test $ myId html props tainted1 $ myId html props tainted2 $ myId html props tainted3 $ myId html props notTainted setState prevState prevProps $ myId html prevProps tainted4 C2 defaultProps tainted1 tainted C2 tainted2 tainted C2 tainted3 tainted C2 tainted4 tainted C3 React Component constructor props props state stateTainted props propTainted render span dangerouslySetInnerHTML __html state stateTainted C3 propTainted tainted |
-| autogenerated/Xss/DomBasedXss/tst.js:246:19:246:23 | props | enclosingFunctionName | react |
-| autogenerated/Xss/DomBasedXss/tst.js:246:19:246:23 | props | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:246:19:246:23 | props | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:246:19:246:23 | props | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:251:51:251:83 | {__html ... ainted} | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/tst.js:251:51:251:83 | {__html ... ainted} | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:251:51:251:83 | {__html ... ainted} | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/tst.js:251:51:251:83 | {__html ... ainted} | assignedToPropName | dangerouslySetInnerHTML |
-| autogenerated/Xss/DomBasedXss/tst.js:251:51:251:83 | {__html ... ainted} | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:251:51:251:83 | {__html ... ainted} | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:251:51:251:83 | {__html ... ainted} | contextSurroundingFunctionParameters | ()\n() |
-| autogenerated/Xss/DomBasedXss/tst.js:251:51:251:83 | {__html ... ainted} | enclosingFunctionBody | tainted document location search React createElement div dangerouslySetInnerHTML __html tainted React createFactory div dangerouslySetInnerHTML __html tainted C1 React Component constructor state tainted1 tainted state notTainted dbLookup setState tainted2 tainted state tainted3 tainted state tainted4 tainted test $ myId html state tainted1 $ myId html state tainted2 $ myId html state tainted3 $ myId html state notTainted setState prevState $ myId html prevState tainted4 C2 React Component args constructor test $ myId html props tainted1 $ myId html props tainted2 $ myId html props tainted3 $ myId html props notTainted setState prevState prevProps $ myId html prevProps tainted4 C2 defaultProps tainted1 tainted C2 tainted2 tainted C2 tainted3 tainted C2 tainted4 tainted C3 React Component constructor props props state stateTainted props propTainted render span dangerouslySetInnerHTML __html state stateTainted C3 propTainted tainted |
-| autogenerated/Xss/DomBasedXss/tst.js:251:51:251:83 | {__html ... ainted} | enclosingFunctionName | react |
-| autogenerated/Xss/DomBasedXss/tst.js:251:51:251:83 | {__html ... ainted} | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:251:51:251:83 | {__html ... ainted} | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:251:51:251:83 | {__html ... ainted} | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:251:60:251:82 | this.st ... Tainted | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/tst.js:251:60:251:82 | this.st ... Tainted | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:251:60:251:82 | this.st ... Tainted | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/tst.js:251:60:251:82 | this.st ... Tainted | assignedToPropName | __html |
-| autogenerated/Xss/DomBasedXss/tst.js:251:60:251:82 | this.st ... Tainted | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:251:60:251:82 | this.st ... Tainted | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:251:60:251:82 | this.st ... Tainted | contextSurroundingFunctionParameters | ()\n() |
-| autogenerated/Xss/DomBasedXss/tst.js:251:60:251:82 | this.st ... Tainted | enclosingFunctionBody | tainted document location search React createElement div dangerouslySetInnerHTML __html tainted React createFactory div dangerouslySetInnerHTML __html tainted C1 React Component constructor state tainted1 tainted state notTainted dbLookup setState tainted2 tainted state tainted3 tainted state tainted4 tainted test $ myId html state tainted1 $ myId html state tainted2 $ myId html state tainted3 $ myId html state notTainted setState prevState $ myId html prevState tainted4 C2 React Component args constructor test $ myId html props tainted1 $ myId html props tainted2 $ myId html props tainted3 $ myId html props notTainted setState prevState prevProps $ myId html prevProps tainted4 C2 defaultProps tainted1 tainted C2 tainted2 tainted C2 tainted3 tainted C2 tainted4 tainted C3 React Component constructor props props state stateTainted props propTainted render span dangerouslySetInnerHTML __html state stateTainted C3 propTainted tainted |
-| autogenerated/Xss/DomBasedXss/tst.js:251:60:251:82 | this.st ... Tainted | enclosingFunctionName | react |
-| autogenerated/Xss/DomBasedXss/tst.js:251:60:251:82 | this.st ... Tainted | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:251:60:251:82 | this.st ... Tainted | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:251:60:251:82 | this.st ... Tainted | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:259:7:259:17 | window.name | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/DomBasedXss/tst.js:259:7:259:17 | window.name | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:259:7:259:17 | window.name | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:259:7:259:17 | window.name | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:259:7:259:17 | window.name | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:259:7:259:17 | window.name | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:259:7:259:17 | window.name | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/tst.js:259:7:259:17 | window.name | enclosingFunctionBody | $ window name $ name |
-| autogenerated/Xss/DomBasedXss/tst.js:259:7:259:17 | window.name | enclosingFunctionName | windowName |
-| autogenerated/Xss/DomBasedXss/tst.js:259:7:259:17 | window.name | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:259:7:259:17 | window.name | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:259:7:259:17 | window.name | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:260:7:260:10 | name | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/DomBasedXss/tst.js:260:7:260:10 | name | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:260:7:260:10 | name | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:260:7:260:10 | name | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:260:7:260:10 | name | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:260:7:260:10 | name | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:260:7:260:10 | name | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/tst.js:260:7:260:10 | name | enclosingFunctionBody | $ window name $ name |
-| autogenerated/Xss/DomBasedXss/tst.js:260:7:260:10 | name | enclosingFunctionName | windowName |
-| autogenerated/Xss/DomBasedXss/tst.js:260:7:260:10 | name | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:260:7:260:10 | name | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:260:7:260:10 | name | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:264:11:264:21 | window.name | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/DomBasedXss/tst.js:264:11:264:21 | window.name | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:264:11:264:21 | window.name | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:264:11:264:21 | window.name | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:264:11:264:21 | window.name | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:264:11:264:21 | window.name | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:264:11:264:21 | window.name | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/tst.js:264:11:264:21 | window.name | enclosingFunctionBody | name a b $ window name $ name |
-| autogenerated/Xss/DomBasedXss/tst.js:264:11:264:21 | window.name | enclosingFunctionName | windowNameAssigned |
-| autogenerated/Xss/DomBasedXss/tst.js:264:11:264:21 | window.name | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:264:11:264:21 | window.name | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:264:11:264:21 | window.name | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:265:11:265:14 | name | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/DomBasedXss/tst.js:265:11:265:14 | name | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:265:11:265:14 | name | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:265:11:265:14 | name | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:265:11:265:14 | name | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:265:11:265:14 | name | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:265:11:265:14 | name | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/tst.js:265:11:265:14 | name | enclosingFunctionBody | name a b $ window name $ name |
-| autogenerated/Xss/DomBasedXss/tst.js:265:11:265:14 | name | enclosingFunctionName | windowNameAssigned |
-| autogenerated/Xss/DomBasedXss/tst.js:265:11:265:14 | name | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:265:11:265:14 | name | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:265:11:265:14 | name | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:270:7:270:14 | location | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/DomBasedXss/tst.js:270:7:270:14 | location | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:270:7:270:14 | location | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:270:7:270:14 | location | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:270:7:270:14 | location | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:270:7:270:14 | location | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:270:7:270:14 | location | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/tst.js:270:7:270:14 | location | enclosingFunctionBody | $ location $ window location $ document location loc1 location loc2 window location loc3 document location $ loc1 $ loc2 $ loc3 $ body append location |
-| autogenerated/Xss/DomBasedXss/tst.js:270:7:270:14 | location | enclosingFunctionName | jqueryLocation |
-| autogenerated/Xss/DomBasedXss/tst.js:270:7:270:14 | location | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:270:7:270:14 | location | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:270:7:270:14 | location | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:271:7:271:21 | window.location | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/DomBasedXss/tst.js:271:7:271:21 | window.location | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:271:7:271:21 | window.location | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:271:7:271:21 | window.location | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:271:7:271:21 | window.location | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:271:7:271:21 | window.location | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:271:7:271:21 | window.location | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/tst.js:271:7:271:21 | window.location | enclosingFunctionBody | $ location $ window location $ document location loc1 location loc2 window location loc3 document location $ loc1 $ loc2 $ loc3 $ body append location |
-| autogenerated/Xss/DomBasedXss/tst.js:271:7:271:21 | window.location | enclosingFunctionName | jqueryLocation |
-| autogenerated/Xss/DomBasedXss/tst.js:271:7:271:21 | window.location | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:271:7:271:21 | window.location | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:271:7:271:21 | window.location | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:272:7:272:23 | document.location | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/DomBasedXss/tst.js:272:7:272:23 | document.location | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:272:7:272:23 | document.location | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:272:7:272:23 | document.location | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:272:7:272:23 | document.location | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:272:7:272:23 | document.location | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:272:7:272:23 | document.location | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/tst.js:272:7:272:23 | document.location | enclosingFunctionBody | $ location $ window location $ document location loc1 location loc2 window location loc3 document location $ loc1 $ loc2 $ loc3 $ body append location |
-| autogenerated/Xss/DomBasedXss/tst.js:272:7:272:23 | document.location | enclosingFunctionName | jqueryLocation |
-| autogenerated/Xss/DomBasedXss/tst.js:272:7:272:23 | document.location | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:272:7:272:23 | document.location | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:272:7:272:23 | document.location | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:276:7:276:10 | loc1 | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/DomBasedXss/tst.js:276:7:276:10 | loc1 | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:276:7:276:10 | loc1 | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:276:7:276:10 | loc1 | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:276:7:276:10 | loc1 | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:276:7:276:10 | loc1 | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:276:7:276:10 | loc1 | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/tst.js:276:7:276:10 | loc1 | enclosingFunctionBody | $ location $ window location $ document location loc1 location loc2 window location loc3 document location $ loc1 $ loc2 $ loc3 $ body append location |
-| autogenerated/Xss/DomBasedXss/tst.js:276:7:276:10 | loc1 | enclosingFunctionName | jqueryLocation |
-| autogenerated/Xss/DomBasedXss/tst.js:276:7:276:10 | loc1 | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:276:7:276:10 | loc1 | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:276:7:276:10 | loc1 | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:277:7:277:10 | loc2 | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/DomBasedXss/tst.js:277:7:277:10 | loc2 | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:277:7:277:10 | loc2 | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:277:7:277:10 | loc2 | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:277:7:277:10 | loc2 | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:277:7:277:10 | loc2 | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:277:7:277:10 | loc2 | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/tst.js:277:7:277:10 | loc2 | enclosingFunctionBody | $ location $ window location $ document location loc1 location loc2 window location loc3 document location $ loc1 $ loc2 $ loc3 $ body append location |
-| autogenerated/Xss/DomBasedXss/tst.js:277:7:277:10 | loc2 | enclosingFunctionName | jqueryLocation |
-| autogenerated/Xss/DomBasedXss/tst.js:277:7:277:10 | loc2 | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:277:7:277:10 | loc2 | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:277:7:277:10 | loc2 | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:278:7:278:10 | loc3 | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/DomBasedXss/tst.js:278:7:278:10 | loc3 | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:278:7:278:10 | loc3 | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:278:7:278:10 | loc3 | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:278:7:278:10 | loc3 | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:278:7:278:10 | loc3 | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:278:7:278:10 | loc3 | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/tst.js:278:7:278:10 | loc3 | enclosingFunctionBody | $ location $ window location $ document location loc1 location loc2 window location loc3 document location $ loc1 $ loc2 $ loc3 $ body append location |
-| autogenerated/Xss/DomBasedXss/tst.js:278:7:278:10 | loc3 | enclosingFunctionName | jqueryLocation |
-| autogenerated/Xss/DomBasedXss/tst.js:278:7:278:10 | loc3 | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:278:7:278:10 | loc3 | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:278:7:278:10 | loc3 | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:280:7:280:12 | "body" | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/DomBasedXss/tst.js:280:7:280:12 | "body" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:280:7:280:12 | "body" | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:280:7:280:12 | "body" | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:280:7:280:12 | "body" | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:280:7:280:12 | "body" | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:280:7:280:12 | "body" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/tst.js:280:7:280:12 | "body" | enclosingFunctionBody | $ location $ window location $ document location loc1 location loc2 window location loc3 document location $ loc1 $ loc2 $ loc3 $ body append location |
-| autogenerated/Xss/DomBasedXss/tst.js:280:7:280:12 | "body" | enclosingFunctionName | jqueryLocation |
-| autogenerated/Xss/DomBasedXss/tst.js:280:7:280:12 | "body" | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:280:7:280:12 | "body" | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:280:7:280:12 | "body" | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:280:22:280:29 | location | CalleeFlexibleAccessPath | $().append |
-| autogenerated/Xss/DomBasedXss/tst.js:280:22:280:29 | location | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:280:22:280:29 | location | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:280:22:280:29 | location | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:280:22:280:29 | location | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:280:22:280:29 | location | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:280:22:280:29 | location | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/tst.js:280:22:280:29 | location | enclosingFunctionBody | $ location $ window location $ document location loc1 location loc2 window location loc3 document location $ loc1 $ loc2 $ loc3 $ body append location |
-| autogenerated/Xss/DomBasedXss/tst.js:280:22:280:29 | location | enclosingFunctionName | jqueryLocation |
-| autogenerated/Xss/DomBasedXss/tst.js:280:22:280:29 | location | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:280:22:280:29 | location | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:280:22:280:29 | location | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:287:22:287:65 | documen ... item(0) | CalleeFlexibleAccessPath | range.selectNode |
-| autogenerated/Xss/DomBasedXss/tst.js:287:22:287:65 | documen ... item(0) | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:287:22:287:65 | documen ... item(0) | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:287:22:287:65 | documen ... item(0) | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:287:22:287:65 | documen ... item(0) | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:287:22:287:65 | documen ... item(0) | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:287:22:287:65 | documen ... item(0) | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/tst.js:287:22:287:65 | documen ... item(0) | enclosingFunctionBody | tainted window name range document createRange range selectNode document getElementsByTagName div item 0 documentFragment range createContextualFragment tainted document body appendChild documentFragment |
-| autogenerated/Xss/DomBasedXss/tst.js:287:22:287:65 | documen ... item(0) | enclosingFunctionName | testCreateContextualFragment |
-| autogenerated/Xss/DomBasedXss/tst.js:287:22:287:65 | documen ... item(0) | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:287:22:287:65 | documen ... item(0) | receiverName | range |
-| autogenerated/Xss/DomBasedXss/tst.js:287:22:287:65 | documen ... item(0) | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:287:52:287:56 | "div" | CalleeFlexibleAccessPath | document.getElementsByTagName |
-| autogenerated/Xss/DomBasedXss/tst.js:287:52:287:56 | "div" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:287:52:287:56 | "div" | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:287:52:287:56 | "div" | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:287:52:287:56 | "div" | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:287:52:287:56 | "div" | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:287:52:287:56 | "div" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/tst.js:287:52:287:56 | "div" | enclosingFunctionBody | tainted window name range document createRange range selectNode document getElementsByTagName div item 0 documentFragment range createContextualFragment tainted document body appendChild documentFragment |
-| autogenerated/Xss/DomBasedXss/tst.js:287:52:287:56 | "div" | enclosingFunctionName | testCreateContextualFragment |
-| autogenerated/Xss/DomBasedXss/tst.js:287:52:287:56 | "div" | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:287:52:287:56 | "div" | receiverName | document |
-| autogenerated/Xss/DomBasedXss/tst.js:287:52:287:56 | "div" | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:287:64:287:64 | 0 | CalleeFlexibleAccessPath | document.getElementsByTagName().item |
-| autogenerated/Xss/DomBasedXss/tst.js:287:64:287:64 | 0 | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:287:64:287:64 | 0 | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:287:64:287:64 | 0 | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:287:64:287:64 | 0 | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:287:64:287:64 | 0 | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:287:64:287:64 | 0 | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/tst.js:287:64:287:64 | 0 | enclosingFunctionBody | tainted window name range document createRange range selectNode document getElementsByTagName div item 0 documentFragment range createContextualFragment tainted document body appendChild documentFragment |
-| autogenerated/Xss/DomBasedXss/tst.js:287:64:287:64 | 0 | enclosingFunctionName | testCreateContextualFragment |
-| autogenerated/Xss/DomBasedXss/tst.js:287:64:287:64 | 0 | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:287:64:287:64 | 0 | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:287:64:287:64 | 0 | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:288:59:288:65 | tainted | CalleeFlexibleAccessPath | range.createContextualFragment |
-| autogenerated/Xss/DomBasedXss/tst.js:288:59:288:65 | tainted | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:288:59:288:65 | tainted | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:288:59:288:65 | tainted | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:288:59:288:65 | tainted | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:288:59:288:65 | tainted | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:288:59:288:65 | tainted | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/tst.js:288:59:288:65 | tainted | enclosingFunctionBody | tainted window name range document createRange range selectNode document getElementsByTagName div item 0 documentFragment range createContextualFragment tainted document body appendChild documentFragment |
-| autogenerated/Xss/DomBasedXss/tst.js:288:59:288:65 | tainted | enclosingFunctionName | testCreateContextualFragment |
-| autogenerated/Xss/DomBasedXss/tst.js:288:59:288:65 | tainted | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:288:59:288:65 | tainted | receiverName | range |
-| autogenerated/Xss/DomBasedXss/tst.js:288:59:288:65 | tainted | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:289:31:289:46 | documentFragment | CalleeFlexibleAccessPath | document.body.appendChild |
-| autogenerated/Xss/DomBasedXss/tst.js:289:31:289:46 | documentFragment | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:289:31:289:46 | documentFragment | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:289:31:289:46 | documentFragment | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:289:31:289:46 | documentFragment | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:289:31:289:46 | documentFragment | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:289:31:289:46 | documentFragment | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/tst.js:289:31:289:46 | documentFragment | enclosingFunctionBody | tainted window name range document createRange range selectNode document getElementsByTagName div item 0 documentFragment range createContextualFragment tainted document body appendChild documentFragment |
-| autogenerated/Xss/DomBasedXss/tst.js:289:31:289:46 | documentFragment | enclosingFunctionName | testCreateContextualFragment |
-| autogenerated/Xss/DomBasedXss/tst.js:289:31:289:46 | documentFragment | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:289:31:289:46 | documentFragment | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:289:31:289:46 | documentFragment | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:296:9:296:9 | p | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/DomBasedXss/tst.js:296:9:296:9 | p | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:296:9:296:9 | p | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:296:9:296:9 | p | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:296:9:296:9 | p | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:296:9:296:9 | p | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:296:9:296:9 | p | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/tst.js:296:9:296:9 | p | enclosingFunctionBody | obj obj Math random window name p obj $ p |
-| autogenerated/Xss/DomBasedXss/tst.js:296:9:296:9 | p | enclosingFunctionName | flowThroughPropertyNames |
-| autogenerated/Xss/DomBasedXss/tst.js:296:9:296:9 | p | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:296:9:296:9 | p | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:296:9:296:9 | p | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:303:5:303:10 | "body" | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/DomBasedXss/tst.js:303:5:303:10 | "body" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:303:5:303:10 | "body" | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:303:5:303:10 | "body" | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:303:5:303:10 | "body" | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:303:5:303:10 | "body" | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:303:5:303:10 | "body" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/tst.js:303:5:303:10 | "body" | enclosingFunctionBody | location e $ body append e location e $ body append e |
-| autogenerated/Xss/DomBasedXss/tst.js:303:5:303:10 | "body" | enclosingFunctionName | basicExceptions |
-| autogenerated/Xss/DomBasedXss/tst.js:303:5:303:10 | "body" | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:303:5:303:10 | "body" | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:303:5:303:10 | "body" | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:303:20:303:20 | e | CalleeFlexibleAccessPath | $().append |
-| autogenerated/Xss/DomBasedXss/tst.js:303:20:303:20 | e | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:303:20:303:20 | e | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:303:20:303:20 | e | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:303:20:303:20 | e | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:303:20:303:20 | e | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:303:20:303:20 | e | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/tst.js:303:20:303:20 | e | enclosingFunctionBody | location e $ body append e location e $ body append e |
-| autogenerated/Xss/DomBasedXss/tst.js:303:20:303:20 | e | enclosingFunctionName | basicExceptions |
-| autogenerated/Xss/DomBasedXss/tst.js:303:20:303:20 | e | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:303:20:303:20 | e | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:303:20:303:20 | e | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:311:5:311:10 | "body" | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/DomBasedXss/tst.js:311:5:311:10 | "body" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:311:5:311:10 | "body" | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:311:5:311:10 | "body" | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:311:5:311:10 | "body" | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:311:5:311:10 | "body" | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:311:5:311:10 | "body" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/tst.js:311:5:311:10 | "body" | enclosingFunctionBody | location e $ body append e location e $ body append e |
-| autogenerated/Xss/DomBasedXss/tst.js:311:5:311:10 | "body" | enclosingFunctionName | basicExceptions |
-| autogenerated/Xss/DomBasedXss/tst.js:311:5:311:10 | "body" | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:311:5:311:10 | "body" | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:311:5:311:10 | "body" | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:311:20:311:20 | e | CalleeFlexibleAccessPath | $().append |
-| autogenerated/Xss/DomBasedXss/tst.js:311:20:311:20 | e | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:311:20:311:20 | e | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:311:20:311:20 | e | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:311:20:311:20 | e | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:311:20:311:20 | e | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:311:20:311:20 | e | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/tst.js:311:20:311:20 | e | enclosingFunctionBody | location e $ body append e location e $ body append e |
-| autogenerated/Xss/DomBasedXss/tst.js:311:20:311:20 | e | enclosingFunctionName | basicExceptions |
-| autogenerated/Xss/DomBasedXss/tst.js:311:20:311:20 | e | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:311:20:311:20 | e | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:311:20:311:20 | e | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:316:35:316:42 | location | CalleeFlexibleAccessPath | Handlebars.SafeString |
-| autogenerated/Xss/DomBasedXss/tst.js:316:35:316:42 | location | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:316:35:316:42 | location | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:316:35:316:42 | location | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:316:35:316:42 | location | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:316:35:316:42 | location | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:316:35:316:42 | location | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/tst.js:316:35:316:42 | location | enclosingFunctionBody | Handlebars SafeString location |
-| autogenerated/Xss/DomBasedXss/tst.js:316:35:316:42 | location | enclosingFunctionName | handlebarsSafeString |
-| autogenerated/Xss/DomBasedXss/tst.js:316:35:316:42 | location | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:316:35:316:42 | location | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:316:35:316:42 | location | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:323:5:323:10 | 'myId' | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/DomBasedXss/tst.js:323:5:323:10 | 'myId' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:323:5:323:10 | 'myId' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:323:5:323:10 | 'myId' | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:323:5:323:10 | 'myId' | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:323:5:323:10 | 'myId' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:323:5:323:10 | 'myId' | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/tst.js:323:5:323:10 | 'myId' | enclosingFunctionBody | target document location search $ myId html target length |
-| autogenerated/Xss/DomBasedXss/tst.js:323:5:323:10 | 'myId' | enclosingFunctionName | test2 |
-| autogenerated/Xss/DomBasedXss/tst.js:323:5:323:10 | 'myId' | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:323:5:323:10 | 'myId' | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:323:5:323:10 | 'myId' | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:323:18:323:30 | target.length | CalleeFlexibleAccessPath | $().html |
-| autogenerated/Xss/DomBasedXss/tst.js:323:18:323:30 | target.length | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:323:18:323:30 | target.length | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:323:18:323:30 | target.length | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:323:18:323:30 | target.length | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:323:18:323:30 | target.length | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:323:18:323:30 | target.length | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/tst.js:323:18:323:30 | target.length | enclosingFunctionBody | target document location search $ myId html target length |
-| autogenerated/Xss/DomBasedXss/tst.js:323:18:323:30 | target.length | enclosingFunctionName | test2 |
-| autogenerated/Xss/DomBasedXss/tst.js:323:18:323:30 | target.length | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:323:18:323:30 | target.length | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:323:18:323:30 | target.length | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:332:5:332:10 | 'name' | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/DomBasedXss/tst.js:332:5:332:10 | 'name' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:332:5:332:10 | 'name' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:332:5:332:10 | 'name' | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:332:5:332:10 | 'name' | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:332:5:332:10 | 'name' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:332:5:332:10 | 'name' | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/tst.js:332:5:332:10 | 'name' | enclosingFunctionBody | params getTaintedUrl searchParams $ name html params get name myUrl getTaintedUrl $ name html myUrl get name |
-| autogenerated/Xss/DomBasedXss/tst.js:332:5:332:10 | 'name' | enclosingFunctionName | URLPseudoProperties |
-| autogenerated/Xss/DomBasedXss/tst.js:332:5:332:10 | 'name' | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:332:5:332:10 | 'name' | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:332:5:332:10 | 'name' | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:332:18:332:35 | params.get('name') | CalleeFlexibleAccessPath | $().html |
-| autogenerated/Xss/DomBasedXss/tst.js:332:18:332:35 | params.get('name') | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:332:18:332:35 | params.get('name') | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:332:18:332:35 | params.get('name') | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:332:18:332:35 | params.get('name') | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:332:18:332:35 | params.get('name') | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:332:18:332:35 | params.get('name') | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/tst.js:332:18:332:35 | params.get('name') | enclosingFunctionBody | params getTaintedUrl searchParams $ name html params get name myUrl getTaintedUrl $ name html myUrl get name |
-| autogenerated/Xss/DomBasedXss/tst.js:332:18:332:35 | params.get('name') | enclosingFunctionName | URLPseudoProperties |
-| autogenerated/Xss/DomBasedXss/tst.js:332:18:332:35 | params.get('name') | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:332:18:332:35 | params.get('name') | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:332:18:332:35 | params.get('name') | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:332:29:332:34 | 'name' | CalleeFlexibleAccessPath | params.get |
-| autogenerated/Xss/DomBasedXss/tst.js:332:29:332:34 | 'name' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:332:29:332:34 | 'name' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:332:29:332:34 | 'name' | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:332:29:332:34 | 'name' | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:332:29:332:34 | 'name' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:332:29:332:34 | 'name' | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/tst.js:332:29:332:34 | 'name' | enclosingFunctionBody | params getTaintedUrl searchParams $ name html params get name myUrl getTaintedUrl $ name html myUrl get name |
-| autogenerated/Xss/DomBasedXss/tst.js:332:29:332:34 | 'name' | enclosingFunctionName | URLPseudoProperties |
-| autogenerated/Xss/DomBasedXss/tst.js:332:29:332:34 | 'name' | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:332:29:332:34 | 'name' | receiverName | params |
-| autogenerated/Xss/DomBasedXss/tst.js:332:29:332:34 | 'name' | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:335:5:335:10 | 'name' | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/DomBasedXss/tst.js:335:5:335:10 | 'name' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:335:5:335:10 | 'name' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:335:5:335:10 | 'name' | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:335:5:335:10 | 'name' | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:335:5:335:10 | 'name' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:335:5:335:10 | 'name' | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/tst.js:335:5:335:10 | 'name' | enclosingFunctionBody | params getTaintedUrl searchParams $ name html params get name myUrl getTaintedUrl $ name html myUrl get name |
-| autogenerated/Xss/DomBasedXss/tst.js:335:5:335:10 | 'name' | enclosingFunctionName | URLPseudoProperties |
-| autogenerated/Xss/DomBasedXss/tst.js:335:5:335:10 | 'name' | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:335:5:335:10 | 'name' | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:335:5:335:10 | 'name' | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:335:18:335:34 | myUrl.get('name') | CalleeFlexibleAccessPath | $().html |
-| autogenerated/Xss/DomBasedXss/tst.js:335:18:335:34 | myUrl.get('name') | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:335:18:335:34 | myUrl.get('name') | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:335:18:335:34 | myUrl.get('name') | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:335:18:335:34 | myUrl.get('name') | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:335:18:335:34 | myUrl.get('name') | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:335:18:335:34 | myUrl.get('name') | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/tst.js:335:18:335:34 | myUrl.get('name') | enclosingFunctionBody | params getTaintedUrl searchParams $ name html params get name myUrl getTaintedUrl $ name html myUrl get name |
-| autogenerated/Xss/DomBasedXss/tst.js:335:18:335:34 | myUrl.get('name') | enclosingFunctionName | URLPseudoProperties |
-| autogenerated/Xss/DomBasedXss/tst.js:335:18:335:34 | myUrl.get('name') | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:335:18:335:34 | myUrl.get('name') | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:335:18:335:34 | myUrl.get('name') | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:335:28:335:33 | 'name' | CalleeFlexibleAccessPath | myUrl.get |
-| autogenerated/Xss/DomBasedXss/tst.js:335:28:335:33 | 'name' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:335:28:335:33 | 'name' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:335:28:335:33 | 'name' | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:335:28:335:33 | 'name' | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:335:28:335:33 | 'name' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:335:28:335:33 | 'name' | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/tst.js:335:28:335:33 | 'name' | enclosingFunctionBody | params getTaintedUrl searchParams $ name html params get name myUrl getTaintedUrl $ name html myUrl get name |
-| autogenerated/Xss/DomBasedXss/tst.js:335:28:335:33 | 'name' | enclosingFunctionName | URLPseudoProperties |
-| autogenerated/Xss/DomBasedXss/tst.js:335:28:335:33 | 'name' | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:335:28:335:33 | 'name' | receiverName | myUrl |
-| autogenerated/Xss/DomBasedXss/tst.js:335:28:335:33 | 'name' | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:343:5:343:30 | getUrl( ... ring(1) | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/DomBasedXss/tst.js:343:5:343:30 | getUrl( ... ring(1) | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:343:5:343:30 | getUrl( ... ring(1) | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:343:5:343:30 | getUrl( ... ring(1) | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:343:5:343:30 | getUrl( ... ring(1) | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:343:5:343:30 | getUrl( ... ring(1) | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:343:5:343:30 | getUrl( ... ring(1) | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/tst.js:343:5:343:30 | getUrl( ... ring(1) | enclosingFunctionBody | getUrl URL document location $ getUrl hash substring 1 |
-| autogenerated/Xss/DomBasedXss/tst.js:343:5:343:30 | getUrl( ... ring(1) | enclosingFunctionName | hash |
-| autogenerated/Xss/DomBasedXss/tst.js:343:5:343:30 | getUrl( ... ring(1) | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:343:5:343:30 | getUrl( ... ring(1) | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:343:5:343:30 | getUrl( ... ring(1) | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:343:29:343:29 | 1 | CalleeFlexibleAccessPath | getUrl().hash.substring |
-| autogenerated/Xss/DomBasedXss/tst.js:343:29:343:29 | 1 | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:343:29:343:29 | 1 | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:343:29:343:29 | 1 | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:343:29:343:29 | 1 | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:343:29:343:29 | 1 | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:343:29:343:29 | 1 | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/tst.js:343:29:343:29 | 1 | enclosingFunctionBody | getUrl URL document location $ getUrl hash substring 1 |
-| autogenerated/Xss/DomBasedXss/tst.js:343:29:343:29 | 1 | enclosingFunctionName | hash |
-| autogenerated/Xss/DomBasedXss/tst.js:343:29:343:29 | 1 | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:343:29:343:29 | 1 | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:343:29:343:29 | 1 | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:349:12:349:17 | target | CalleeFlexibleAccessPath | $.jGrowl |
-| autogenerated/Xss/DomBasedXss/tst.js:349:12:349:17 | target | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:349:12:349:17 | target | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:349:12:349:17 | target | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:349:12:349:17 | target | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:349:12:349:17 | target | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:349:12:349:17 | target | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/tst.js:349:12:349:17 | target | enclosingFunctionBody | target document location search $ jGrowl target |
-| autogenerated/Xss/DomBasedXss/tst.js:349:12:349:17 | target | enclosingFunctionName | growl |
-| autogenerated/Xss/DomBasedXss/tst.js:349:12:349:17 | target | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:349:12:349:17 | target | receiverName | $ |
-| autogenerated/Xss/DomBasedXss/tst.js:349:12:349:17 | target | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:356:16:356:21 | target | CalleeFlexibleAccessPath | this.html |
-| autogenerated/Xss/DomBasedXss/tst.js:356:16:356:21 | target | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:356:16:356:21 | target | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:356:16:356:21 | target | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:356:16:356:21 | target | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:356:16:356:21 | target | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:356:16:356:21 | target | contextSurroundingFunctionParameters | ()\n() |
-| autogenerated/Xss/DomBasedXss/tst.js:356:16:356:21 | target | enclosingFunctionBody | pluginName myFancyJQueryPlugin myPlugin target document location search html target innerHTML target each i e innerHTML target html target e innerHTML target $ fn pluginName myPlugin |
-| autogenerated/Xss/DomBasedXss/tst.js:356:16:356:21 | target | enclosingFunctionName | thisNodes |
-| autogenerated/Xss/DomBasedXss/tst.js:356:16:356:21 | target | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:356:16:356:21 | target | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:356:16:356:21 | target | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:357:20:357:25 | target | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/tst.js:357:20:357:25 | target | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:357:20:357:25 | target | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/tst.js:357:20:357:25 | target | assignedToPropName | innerHTML |
-| autogenerated/Xss/DomBasedXss/tst.js:357:20:357:25 | target | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:357:20:357:25 | target | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:357:20:357:25 | target | contextSurroundingFunctionParameters | ()\n() |
-| autogenerated/Xss/DomBasedXss/tst.js:357:20:357:25 | target | enclosingFunctionBody | pluginName myFancyJQueryPlugin myPlugin target document location search html target innerHTML target each i e innerHTML target html target e innerHTML target $ fn pluginName myPlugin |
-| autogenerated/Xss/DomBasedXss/tst.js:357:20:357:25 | target | enclosingFunctionName | thisNodes |
-| autogenerated/Xss/DomBasedXss/tst.js:357:20:357:25 | target | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:357:20:357:25 | target | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:357:20:357:25 | target | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:359:13:364:3 | functio ... OK.\\n\\t\\t} | CalleeFlexibleAccessPath | this.each |
-| autogenerated/Xss/DomBasedXss/tst.js:359:13:364:3 | functio ... OK.\\n\\t\\t} | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:359:13:364:3 | functio ... OK.\\n\\t\\t} | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:359:13:364:3 | functio ... OK.\\n\\t\\t} | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:359:13:364:3 | functio ... OK.\\n\\t\\t} | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:359:13:364:3 | functio ... OK.\\n\\t\\t} | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:359:13:364:3 | functio ... OK.\\n\\t\\t} | contextSurroundingFunctionParameters | ()\n()\n(i, e) |
-| autogenerated/Xss/DomBasedXss/tst.js:359:13:364:3 | functio ... OK.\\n\\t\\t} | enclosingFunctionBody | pluginName myFancyJQueryPlugin myPlugin target document location search html target innerHTML target each i e innerHTML target html target e innerHTML target $ fn pluginName myPlugin |
-| autogenerated/Xss/DomBasedXss/tst.js:359:13:364:3 | functio ... OK.\\n\\t\\t} | enclosingFunctionName | thisNodes |
-| autogenerated/Xss/DomBasedXss/tst.js:359:13:364:3 | functio ... OK.\\n\\t\\t} | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:359:13:364:3 | functio ... OK.\\n\\t\\t} | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:359:13:364:3 | functio ... OK.\\n\\t\\t} | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:360:21:360:26 | target | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/tst.js:360:21:360:26 | target | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:360:21:360:26 | target | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/tst.js:360:21:360:26 | target | assignedToPropName | innerHTML |
-| autogenerated/Xss/DomBasedXss/tst.js:360:21:360:26 | target | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:360:21:360:26 | target | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:360:21:360:26 | target | contextSurroundingFunctionParameters | ()\n()\n(i, e) |
-| autogenerated/Xss/DomBasedXss/tst.js:360:21:360:26 | target | enclosingFunctionBody | pluginName myFancyJQueryPlugin myPlugin target document location search html target innerHTML target each i e innerHTML target html target e innerHTML target $ fn pluginName myPlugin |
-| autogenerated/Xss/DomBasedXss/tst.js:360:21:360:26 | target | enclosingFunctionName | thisNodes |
-| autogenerated/Xss/DomBasedXss/tst.js:360:21:360:26 | target | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:360:21:360:26 | target | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:360:21:360:26 | target | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:361:14:361:19 | target | CalleeFlexibleAccessPath | this.html |
-| autogenerated/Xss/DomBasedXss/tst.js:361:14:361:19 | target | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:361:14:361:19 | target | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:361:14:361:19 | target | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:361:14:361:19 | target | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:361:14:361:19 | target | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:361:14:361:19 | target | contextSurroundingFunctionParameters | ()\n()\n(i, e) |
-| autogenerated/Xss/DomBasedXss/tst.js:361:14:361:19 | target | enclosingFunctionBody | pluginName myFancyJQueryPlugin myPlugin target document location search html target innerHTML target each i e innerHTML target html target e innerHTML target $ fn pluginName myPlugin |
-| autogenerated/Xss/DomBasedXss/tst.js:361:14:361:19 | target | enclosingFunctionName | thisNodes |
-| autogenerated/Xss/DomBasedXss/tst.js:361:14:361:19 | target | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:361:14:361:19 | target | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:361:14:361:19 | target | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:363:18:363:23 | target | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/tst.js:363:18:363:23 | target | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:363:18:363:23 | target | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/tst.js:363:18:363:23 | target | assignedToPropName | innerHTML |
-| autogenerated/Xss/DomBasedXss/tst.js:363:18:363:23 | target | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:363:18:363:23 | target | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:363:18:363:23 | target | contextSurroundingFunctionParameters | ()\n()\n(i, e) |
-| autogenerated/Xss/DomBasedXss/tst.js:363:18:363:23 | target | enclosingFunctionBody | pluginName myFancyJQueryPlugin myPlugin target document location search html target innerHTML target each i e innerHTML target html target e innerHTML target $ fn pluginName myPlugin |
-| autogenerated/Xss/DomBasedXss/tst.js:363:18:363:23 | target | enclosingFunctionName | thisNodes |
-| autogenerated/Xss/DomBasedXss/tst.js:363:18:363:23 | target | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:363:18:363:23 | target | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:363:18:363:23 | target | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:374:5:374:10 | 'myId' | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/DomBasedXss/tst.js:374:5:374:10 | 'myId' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:374:5:374:10 | 'myId' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:374:5:374:10 | 'myId' | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:374:5:374:10 | 'myId' | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:374:5:374:10 | 'myId' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:374:5:374:10 | 'myId' | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/tst.js:374:5:374:10 | 'myId' | enclosingFunctionBody | target document location search $ myId html target $ myid html document 0 location href split ? 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:374:5:374:10 | 'myId' | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/tst.js:374:5:374:10 | 'myId' | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:374:5:374:10 | 'myId' | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:374:5:374:10 | 'myId' | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:374:18:374:23 | target | CalleeFlexibleAccessPath | $().html |
-| autogenerated/Xss/DomBasedXss/tst.js:374:18:374:23 | target | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:374:18:374:23 | target | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:374:18:374:23 | target | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:374:18:374:23 | target | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:374:18:374:23 | target | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:374:18:374:23 | target | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/tst.js:374:18:374:23 | target | enclosingFunctionBody | target document location search $ myId html target $ myid html document 0 location href split ? 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:374:18:374:23 | target | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/tst.js:374:18:374:23 | target | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:374:18:374:23 | target | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:374:18:374:23 | target | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:377:5:377:10 | 'myid' | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/DomBasedXss/tst.js:377:5:377:10 | 'myid' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:377:5:377:10 | 'myid' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:377:5:377:10 | 'myid' | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:377:5:377:10 | 'myid' | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:377:5:377:10 | 'myid' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:377:5:377:10 | 'myid' | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/tst.js:377:5:377:10 | 'myid' | enclosingFunctionBody | target document location search $ myId html target $ myid html document 0 location href split ? 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:377:5:377:10 | 'myid' | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/tst.js:377:5:377:10 | 'myid' | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:377:5:377:10 | 'myid' | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:377:5:377:10 | 'myid' | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:377:18:377:53 | documen ... "?")[0] | CalleeFlexibleAccessPath | $().html |
-| autogenerated/Xss/DomBasedXss/tst.js:377:18:377:53 | documen ... "?")[0] | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:377:18:377:53 | documen ... "?")[0] | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:377:18:377:53 | documen ... "?")[0] | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:377:18:377:53 | documen ... "?")[0] | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:377:18:377:53 | documen ... "?")[0] | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:377:18:377:53 | documen ... "?")[0] | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/tst.js:377:18:377:53 | documen ... "?")[0] | enclosingFunctionBody | target document location search $ myId html target $ myid html document 0 location href split ? 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:377:18:377:53 | documen ... "?")[0] | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/tst.js:377:18:377:53 | documen ... "?")[0] | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:377:18:377:53 | documen ... "?")[0] | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:377:18:377:53 | documen ... "?")[0] | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:377:47:377:49 | "?" | CalleeFlexibleAccessPath | document.location.href.split |
-| autogenerated/Xss/DomBasedXss/tst.js:377:47:377:49 | "?" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:377:47:377:49 | "?" | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:377:47:377:49 | "?" | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:377:47:377:49 | "?" | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:377:47:377:49 | "?" | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:377:47:377:49 | "?" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/tst.js:377:47:377:49 | "?" | enclosingFunctionBody | target document location search $ myId html target $ myid html document 0 location href split ? 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:377:47:377:49 | "?" | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/tst.js:377:47:377:49 | "?" | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:377:47:377:49 | "?" | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:377:47:377:49 | "?" | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:384:5:384:10 | 'myId' | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/DomBasedXss/tst.js:384:5:384:10 | 'myId' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:384:5:384:10 | 'myId' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:384:5:384:10 | 'myId' | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:384:5:384:10 | 'myId' | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:384:5:384:10 | 'myId' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:384:5:384:10 | 'myId' | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/tst.js:384:5:384:10 | 'myId' | enclosingFunctionBody | target document location search $ myId html target $ myId html target taint target taint2 2 $ myId html target taint2 target taint3 document location search $ myId html target taint3 target sub taint4 2 $ myId html target sub taint4 $ myId html target taint5 target taint5 safe target taint6 2 random $ myId html target taint6 random target taint7 safe $ myId html target taint7 target taint8 target taint8 $ myId html target taint8 target taint9 target taint9 safe $ myId html target taint9 |
-| autogenerated/Xss/DomBasedXss/tst.js:384:5:384:10 | 'myId' | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/tst.js:384:5:384:10 | 'myId' | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:384:5:384:10 | 'myId' | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:384:5:384:10 | 'myId' | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:384:18:384:23 | target | CalleeFlexibleAccessPath | $().html |
-| autogenerated/Xss/DomBasedXss/tst.js:384:18:384:23 | target | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:384:18:384:23 | target | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:384:18:384:23 | target | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:384:18:384:23 | target | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:384:18:384:23 | target | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:384:18:384:23 | target | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/tst.js:384:18:384:23 | target | enclosingFunctionBody | target document location search $ myId html target $ myId html target taint target taint2 2 $ myId html target taint2 target taint3 document location search $ myId html target taint3 target sub taint4 2 $ myId html target sub taint4 $ myId html target taint5 target taint5 safe target taint6 2 random $ myId html target taint6 random target taint7 safe $ myId html target taint7 target taint8 target taint8 $ myId html target taint8 target taint9 target taint9 safe $ myId html target taint9 |
-| autogenerated/Xss/DomBasedXss/tst.js:384:18:384:23 | target | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/tst.js:384:18:384:23 | target | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:384:18:384:23 | target | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:384:18:384:23 | target | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:386:5:386:10 | 'myId' | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/DomBasedXss/tst.js:386:5:386:10 | 'myId' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:386:5:386:10 | 'myId' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:386:5:386:10 | 'myId' | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:386:5:386:10 | 'myId' | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:386:5:386:10 | 'myId' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:386:5:386:10 | 'myId' | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/tst.js:386:5:386:10 | 'myId' | enclosingFunctionBody | target document location search $ myId html target $ myId html target taint target taint2 2 $ myId html target taint2 target taint3 document location search $ myId html target taint3 target sub taint4 2 $ myId html target sub taint4 $ myId html target taint5 target taint5 safe target taint6 2 random $ myId html target taint6 random target taint7 safe $ myId html target taint7 target taint8 target taint8 $ myId html target taint8 target taint9 target taint9 safe $ myId html target taint9 |
-| autogenerated/Xss/DomBasedXss/tst.js:386:5:386:10 | 'myId' | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/tst.js:386:5:386:10 | 'myId' | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:386:5:386:10 | 'myId' | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:386:5:386:10 | 'myId' | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:386:18:386:29 | target.taint | CalleeFlexibleAccessPath | $().html |
-| autogenerated/Xss/DomBasedXss/tst.js:386:18:386:29 | target.taint | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:386:18:386:29 | target.taint | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:386:18:386:29 | target.taint | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:386:18:386:29 | target.taint | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:386:18:386:29 | target.taint | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:386:18:386:29 | target.taint | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/tst.js:386:18:386:29 | target.taint | enclosingFunctionBody | target document location search $ myId html target $ myId html target taint target taint2 2 $ myId html target taint2 target taint3 document location search $ myId html target taint3 target sub taint4 2 $ myId html target sub taint4 $ myId html target taint5 target taint5 safe target taint6 2 random $ myId html target taint6 random target taint7 safe $ myId html target taint7 target taint8 target taint8 $ myId html target taint8 target taint9 target taint9 safe $ myId html target taint9 |
-| autogenerated/Xss/DomBasedXss/tst.js:386:18:386:29 | target.taint | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/tst.js:386:18:386:29 | target.taint | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:386:18:386:29 | target.taint | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:386:18:386:29 | target.taint | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:389:5:389:10 | 'myId' | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/DomBasedXss/tst.js:389:5:389:10 | 'myId' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:389:5:389:10 | 'myId' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:389:5:389:10 | 'myId' | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:389:5:389:10 | 'myId' | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:389:5:389:10 | 'myId' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:389:5:389:10 | 'myId' | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/tst.js:389:5:389:10 | 'myId' | enclosingFunctionBody | target document location search $ myId html target $ myId html target taint target taint2 2 $ myId html target taint2 target taint3 document location search $ myId html target taint3 target sub taint4 2 $ myId html target sub taint4 $ myId html target taint5 target taint5 safe target taint6 2 random $ myId html target taint6 random target taint7 safe $ myId html target taint7 target taint8 target taint8 $ myId html target taint8 target taint9 target taint9 safe $ myId html target taint9 |
-| autogenerated/Xss/DomBasedXss/tst.js:389:5:389:10 | 'myId' | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/tst.js:389:5:389:10 | 'myId' | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:389:5:389:10 | 'myId' | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:389:5:389:10 | 'myId' | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:389:18:389:30 | target.taint2 | CalleeFlexibleAccessPath | $().html |
-| autogenerated/Xss/DomBasedXss/tst.js:389:18:389:30 | target.taint2 | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:389:18:389:30 | target.taint2 | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:389:18:389:30 | target.taint2 | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:389:18:389:30 | target.taint2 | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:389:18:389:30 | target.taint2 | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:389:18:389:30 | target.taint2 | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/tst.js:389:18:389:30 | target.taint2 | enclosingFunctionBody | target document location search $ myId html target $ myId html target taint target taint2 2 $ myId html target taint2 target taint3 document location search $ myId html target taint3 target sub taint4 2 $ myId html target sub taint4 $ myId html target taint5 target taint5 safe target taint6 2 random $ myId html target taint6 random target taint7 safe $ myId html target taint7 target taint8 target taint8 $ myId html target taint8 target taint9 target taint9 safe $ myId html target taint9 |
-| autogenerated/Xss/DomBasedXss/tst.js:389:18:389:30 | target.taint2 | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/tst.js:389:18:389:30 | target.taint2 | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:389:18:389:30 | target.taint2 | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:389:18:389:30 | target.taint2 | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:392:5:392:10 | 'myId' | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/DomBasedXss/tst.js:392:5:392:10 | 'myId' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:392:5:392:10 | 'myId' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:392:5:392:10 | 'myId' | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:392:5:392:10 | 'myId' | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:392:5:392:10 | 'myId' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:392:5:392:10 | 'myId' | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/tst.js:392:5:392:10 | 'myId' | enclosingFunctionBody | target document location search $ myId html target $ myId html target taint target taint2 2 $ myId html target taint2 target taint3 document location search $ myId html target taint3 target sub taint4 2 $ myId html target sub taint4 $ myId html target taint5 target taint5 safe target taint6 2 random $ myId html target taint6 random target taint7 safe $ myId html target taint7 target taint8 target taint8 $ myId html target taint8 target taint9 target taint9 safe $ myId html target taint9 |
-| autogenerated/Xss/DomBasedXss/tst.js:392:5:392:10 | 'myId' | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/tst.js:392:5:392:10 | 'myId' | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:392:5:392:10 | 'myId' | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:392:5:392:10 | 'myId' | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:392:18:392:30 | target.taint3 | CalleeFlexibleAccessPath | $().html |
-| autogenerated/Xss/DomBasedXss/tst.js:392:18:392:30 | target.taint3 | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:392:18:392:30 | target.taint3 | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:392:18:392:30 | target.taint3 | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:392:18:392:30 | target.taint3 | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:392:18:392:30 | target.taint3 | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:392:18:392:30 | target.taint3 | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/tst.js:392:18:392:30 | target.taint3 | enclosingFunctionBody | target document location search $ myId html target $ myId html target taint target taint2 2 $ myId html target taint2 target taint3 document location search $ myId html target taint3 target sub taint4 2 $ myId html target sub taint4 $ myId html target taint5 target taint5 safe target taint6 2 random $ myId html target taint6 random target taint7 safe $ myId html target taint7 target taint8 target taint8 $ myId html target taint8 target taint9 target taint9 safe $ myId html target taint9 |
-| autogenerated/Xss/DomBasedXss/tst.js:392:18:392:30 | target.taint3 | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/tst.js:392:18:392:30 | target.taint3 | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:392:18:392:30 | target.taint3 | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:392:18:392:30 | target.taint3 | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:395:5:395:10 | 'myId' | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/DomBasedXss/tst.js:395:5:395:10 | 'myId' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:395:5:395:10 | 'myId' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:395:5:395:10 | 'myId' | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:395:5:395:10 | 'myId' | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:395:5:395:10 | 'myId' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:395:5:395:10 | 'myId' | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/tst.js:395:5:395:10 | 'myId' | enclosingFunctionBody | target document location search $ myId html target $ myId html target taint target taint2 2 $ myId html target taint2 target taint3 document location search $ myId html target taint3 target sub taint4 2 $ myId html target sub taint4 $ myId html target taint5 target taint5 safe target taint6 2 random $ myId html target taint6 random target taint7 safe $ myId html target taint7 target taint8 target taint8 $ myId html target taint8 target taint9 target taint9 safe $ myId html target taint9 |
-| autogenerated/Xss/DomBasedXss/tst.js:395:5:395:10 | 'myId' | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/tst.js:395:5:395:10 | 'myId' | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:395:5:395:10 | 'myId' | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:395:5:395:10 | 'myId' | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:395:18:395:34 | target.sub.taint4 | CalleeFlexibleAccessPath | $().html |
-| autogenerated/Xss/DomBasedXss/tst.js:395:18:395:34 | target.sub.taint4 | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:395:18:395:34 | target.sub.taint4 | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:395:18:395:34 | target.sub.taint4 | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:395:18:395:34 | target.sub.taint4 | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:395:18:395:34 | target.sub.taint4 | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:395:18:395:34 | target.sub.taint4 | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/tst.js:395:18:395:34 | target.sub.taint4 | enclosingFunctionBody | target document location search $ myId html target $ myId html target taint target taint2 2 $ myId html target taint2 target taint3 document location search $ myId html target taint3 target sub taint4 2 $ myId html target sub taint4 $ myId html target taint5 target taint5 safe target taint6 2 random $ myId html target taint6 random target taint7 safe $ myId html target taint7 target taint8 target taint8 $ myId html target taint8 target taint9 target taint9 safe $ myId html target taint9 |
-| autogenerated/Xss/DomBasedXss/tst.js:395:18:395:34 | target.sub.taint4 | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/tst.js:395:18:395:34 | target.sub.taint4 | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:395:18:395:34 | target.sub.taint4 | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:395:18:395:34 | target.sub.taint4 | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:397:5:397:10 | 'myId' | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/DomBasedXss/tst.js:397:5:397:10 | 'myId' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:397:5:397:10 | 'myId' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:397:5:397:10 | 'myId' | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:397:5:397:10 | 'myId' | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:397:5:397:10 | 'myId' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:397:5:397:10 | 'myId' | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/tst.js:397:5:397:10 | 'myId' | enclosingFunctionBody | target document location search $ myId html target $ myId html target taint target taint2 2 $ myId html target taint2 target taint3 document location search $ myId html target taint3 target sub taint4 2 $ myId html target sub taint4 $ myId html target taint5 target taint5 safe target taint6 2 random $ myId html target taint6 random target taint7 safe $ myId html target taint7 target taint8 target taint8 $ myId html target taint8 target taint9 target taint9 safe $ myId html target taint9 |
-| autogenerated/Xss/DomBasedXss/tst.js:397:5:397:10 | 'myId' | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/tst.js:397:5:397:10 | 'myId' | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:397:5:397:10 | 'myId' | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:397:5:397:10 | 'myId' | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:397:18:397:30 | target.taint5 | CalleeFlexibleAccessPath | $().html |
-| autogenerated/Xss/DomBasedXss/tst.js:397:18:397:30 | target.taint5 | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:397:18:397:30 | target.taint5 | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:397:18:397:30 | target.taint5 | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:397:18:397:30 | target.taint5 | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:397:18:397:30 | target.taint5 | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:397:18:397:30 | target.taint5 | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/tst.js:397:18:397:30 | target.taint5 | enclosingFunctionBody | target document location search $ myId html target $ myId html target taint target taint2 2 $ myId html target taint2 target taint3 document location search $ myId html target taint3 target sub taint4 2 $ myId html target sub taint4 $ myId html target taint5 target taint5 safe target taint6 2 random $ myId html target taint6 random target taint7 safe $ myId html target taint7 target taint8 target taint8 $ myId html target taint8 target taint9 target taint9 safe $ myId html target taint9 |
-| autogenerated/Xss/DomBasedXss/tst.js:397:18:397:30 | target.taint5 | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/tst.js:397:18:397:30 | target.taint5 | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:397:18:397:30 | target.taint5 | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:397:18:397:30 | target.taint5 | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:402:5:402:10 | 'myId' | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/DomBasedXss/tst.js:402:5:402:10 | 'myId' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:402:5:402:10 | 'myId' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:402:5:402:10 | 'myId' | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:402:5:402:10 | 'myId' | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:402:5:402:10 | 'myId' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:402:5:402:10 | 'myId' | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/tst.js:402:5:402:10 | 'myId' | enclosingFunctionBody | target document location search $ myId html target $ myId html target taint target taint2 2 $ myId html target taint2 target taint3 document location search $ myId html target taint3 target sub taint4 2 $ myId html target sub taint4 $ myId html target taint5 target taint5 safe target taint6 2 random $ myId html target taint6 random target taint7 safe $ myId html target taint7 target taint8 target taint8 $ myId html target taint8 target taint9 target taint9 safe $ myId html target taint9 |
-| autogenerated/Xss/DomBasedXss/tst.js:402:5:402:10 | 'myId' | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/tst.js:402:5:402:10 | 'myId' | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:402:5:402:10 | 'myId' | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:402:5:402:10 | 'myId' | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:402:18:402:30 | target.taint6 | CalleeFlexibleAccessPath | $().html |
-| autogenerated/Xss/DomBasedXss/tst.js:402:18:402:30 | target.taint6 | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:402:18:402:30 | target.taint6 | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:402:18:402:30 | target.taint6 | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:402:18:402:30 | target.taint6 | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:402:18:402:30 | target.taint6 | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:402:18:402:30 | target.taint6 | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/tst.js:402:18:402:30 | target.taint6 | enclosingFunctionBody | target document location search $ myId html target $ myId html target taint target taint2 2 $ myId html target taint2 target taint3 document location search $ myId html target taint3 target sub taint4 2 $ myId html target sub taint4 $ myId html target taint5 target taint5 safe target taint6 2 random $ myId html target taint6 random target taint7 safe $ myId html target taint7 target taint8 target taint8 $ myId html target taint8 target taint9 target taint9 safe $ myId html target taint9 |
-| autogenerated/Xss/DomBasedXss/tst.js:402:18:402:30 | target.taint6 | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/tst.js:402:18:402:30 | target.taint6 | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:402:18:402:30 | target.taint6 | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:402:18:402:30 | target.taint6 | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:406:5:406:10 | 'myId' | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/DomBasedXss/tst.js:406:5:406:10 | 'myId' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:406:5:406:10 | 'myId' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:406:5:406:10 | 'myId' | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:406:5:406:10 | 'myId' | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:406:5:406:10 | 'myId' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:406:5:406:10 | 'myId' | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/tst.js:406:5:406:10 | 'myId' | enclosingFunctionBody | target document location search $ myId html target $ myId html target taint target taint2 2 $ myId html target taint2 target taint3 document location search $ myId html target taint3 target sub taint4 2 $ myId html target sub taint4 $ myId html target taint5 target taint5 safe target taint6 2 random $ myId html target taint6 random target taint7 safe $ myId html target taint7 target taint8 target taint8 $ myId html target taint8 target taint9 target taint9 safe $ myId html target taint9 |
-| autogenerated/Xss/DomBasedXss/tst.js:406:5:406:10 | 'myId' | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/tst.js:406:5:406:10 | 'myId' | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:406:5:406:10 | 'myId' | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:406:5:406:10 | 'myId' | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:406:18:406:30 | target.taint7 | CalleeFlexibleAccessPath | $().html |
-| autogenerated/Xss/DomBasedXss/tst.js:406:18:406:30 | target.taint7 | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:406:18:406:30 | target.taint7 | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:406:18:406:30 | target.taint7 | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:406:18:406:30 | target.taint7 | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:406:18:406:30 | target.taint7 | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:406:18:406:30 | target.taint7 | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/tst.js:406:18:406:30 | target.taint7 | enclosingFunctionBody | target document location search $ myId html target $ myId html target taint target taint2 2 $ myId html target taint2 target taint3 document location search $ myId html target taint3 target sub taint4 2 $ myId html target sub taint4 $ myId html target taint5 target taint5 safe target taint6 2 random $ myId html target taint6 random target taint7 safe $ myId html target taint7 target taint8 target taint8 $ myId html target taint8 target taint9 target taint9 safe $ myId html target taint9 |
-| autogenerated/Xss/DomBasedXss/tst.js:406:18:406:30 | target.taint7 | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/tst.js:406:18:406:30 | target.taint7 | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:406:18:406:30 | target.taint7 | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:406:18:406:30 | target.taint7 | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:409:5:409:10 | 'myId' | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/DomBasedXss/tst.js:409:5:409:10 | 'myId' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:409:5:409:10 | 'myId' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:409:5:409:10 | 'myId' | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:409:5:409:10 | 'myId' | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:409:5:409:10 | 'myId' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:409:5:409:10 | 'myId' | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/tst.js:409:5:409:10 | 'myId' | enclosingFunctionBody | target document location search $ myId html target $ myId html target taint target taint2 2 $ myId html target taint2 target taint3 document location search $ myId html target taint3 target sub taint4 2 $ myId html target sub taint4 $ myId html target taint5 target taint5 safe target taint6 2 random $ myId html target taint6 random target taint7 safe $ myId html target taint7 target taint8 target taint8 $ myId html target taint8 target taint9 target taint9 safe $ myId html target taint9 |
-| autogenerated/Xss/DomBasedXss/tst.js:409:5:409:10 | 'myId' | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/tst.js:409:5:409:10 | 'myId' | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:409:5:409:10 | 'myId' | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:409:5:409:10 | 'myId' | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:409:18:409:30 | target.taint8 | CalleeFlexibleAccessPath | $().html |
-| autogenerated/Xss/DomBasedXss/tst.js:409:18:409:30 | target.taint8 | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:409:18:409:30 | target.taint8 | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:409:18:409:30 | target.taint8 | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:409:18:409:30 | target.taint8 | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:409:18:409:30 | target.taint8 | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:409:18:409:30 | target.taint8 | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/tst.js:409:18:409:30 | target.taint8 | enclosingFunctionBody | target document location search $ myId html target $ myId html target taint target taint2 2 $ myId html target taint2 target taint3 document location search $ myId html target taint3 target sub taint4 2 $ myId html target sub taint4 $ myId html target taint5 target taint5 safe target taint6 2 random $ myId html target taint6 random target taint7 safe $ myId html target taint7 target taint8 target taint8 $ myId html target taint8 target taint9 target taint9 safe $ myId html target taint9 |
-| autogenerated/Xss/DomBasedXss/tst.js:409:18:409:30 | target.taint8 | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/tst.js:409:18:409:30 | target.taint8 | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:409:18:409:30 | target.taint8 | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:409:18:409:30 | target.taint8 | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:412:5:412:10 | 'myId' | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/DomBasedXss/tst.js:412:5:412:10 | 'myId' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:412:5:412:10 | 'myId' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:412:5:412:10 | 'myId' | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:412:5:412:10 | 'myId' | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:412:5:412:10 | 'myId' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:412:5:412:10 | 'myId' | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/tst.js:412:5:412:10 | 'myId' | enclosingFunctionBody | target document location search $ myId html target $ myId html target taint target taint2 2 $ myId html target taint2 target taint3 document location search $ myId html target taint3 target sub taint4 2 $ myId html target sub taint4 $ myId html target taint5 target taint5 safe target taint6 2 random $ myId html target taint6 random target taint7 safe $ myId html target taint7 target taint8 target taint8 $ myId html target taint8 target taint9 target taint9 safe $ myId html target taint9 |
-| autogenerated/Xss/DomBasedXss/tst.js:412:5:412:10 | 'myId' | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/tst.js:412:5:412:10 | 'myId' | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:412:5:412:10 | 'myId' | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:412:5:412:10 | 'myId' | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:412:18:412:30 | target.taint9 | CalleeFlexibleAccessPath | $().html |
-| autogenerated/Xss/DomBasedXss/tst.js:412:18:412:30 | target.taint9 | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:412:18:412:30 | target.taint9 | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:412:18:412:30 | target.taint9 | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:412:18:412:30 | target.taint9 | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:412:18:412:30 | target.taint9 | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:412:18:412:30 | target.taint9 | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/tst.js:412:18:412:30 | target.taint9 | enclosingFunctionBody | target document location search $ myId html target $ myId html target taint target taint2 2 $ myId html target taint2 target taint3 document location search $ myId html target taint3 target sub taint4 2 $ myId html target sub taint4 $ myId html target taint5 target taint5 safe target taint6 2 random $ myId html target taint6 random target taint7 safe $ myId html target taint7 target taint8 target taint8 $ myId html target taint8 target taint9 target taint9 safe $ myId html target taint9 |
-| autogenerated/Xss/DomBasedXss/tst.js:412:18:412:30 | target.taint9 | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/tst.js:412:18:412:30 | target.taint9 | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:412:18:412:30 | target.taint9 | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:412:18:412:30 | target.taint9 | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:416:45:416:45 | 1 | CalleeFlexibleAccessPath | window.location.hash.substr |
-| autogenerated/Xss/DomBasedXss/tst.js:416:45:416:45 | 1 | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:416:45:416:45 | 1 | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:416:45:416:45 | 1 | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:416:45:416:45 | 1 | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:416:45:416:45 | 1 | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:416:45:416:45 | 1 | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/tst.js:416:45:416:45 | 1 | enclosingFunctionBody | payload window location hash substr 1 document write payload match window location hash match /hello (\\w+)/ match document write match 1 1 document write window 1 location hash split # 1 |
-| autogenerated/Xss/DomBasedXss/tst.js:416:45:416:45 | 1 | enclosingFunctionName | hash2 |
-| autogenerated/Xss/DomBasedXss/tst.js:416:45:416:45 | 1 | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:416:45:416:45 | 1 | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:416:45:416:45 | 1 | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:417:18:417:24 | payload | CalleeFlexibleAccessPath | document.write |
-| autogenerated/Xss/DomBasedXss/tst.js:417:18:417:24 | payload | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:417:18:417:24 | payload | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:417:18:417:24 | payload | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:417:18:417:24 | payload | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:417:18:417:24 | payload | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:417:18:417:24 | payload | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/tst.js:417:18:417:24 | payload | enclosingFunctionBody | payload window location hash substr 1 document write payload match window location hash match /hello (\\w+)/ match document write match 1 1 document write window 1 location hash split # 1 |
-| autogenerated/Xss/DomBasedXss/tst.js:417:18:417:24 | payload | enclosingFunctionName | hash2 |
-| autogenerated/Xss/DomBasedXss/tst.js:417:18:417:24 | payload | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:417:18:417:24 | payload | receiverName | document |
-| autogenerated/Xss/DomBasedXss/tst.js:417:18:417:24 | payload | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:419:42:419:54 | /hello (\\w+)/ | CalleeFlexibleAccessPath | window.location.hash.match |
-| autogenerated/Xss/DomBasedXss/tst.js:419:42:419:54 | /hello (\\w+)/ | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:419:42:419:54 | /hello (\\w+)/ | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:419:42:419:54 | /hello (\\w+)/ | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:419:42:419:54 | /hello (\\w+)/ | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:419:42:419:54 | /hello (\\w+)/ | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:419:42:419:54 | /hello (\\w+)/ | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/tst.js:419:42:419:54 | /hello (\\w+)/ | enclosingFunctionBody | payload window location hash substr 1 document write payload match window location hash match /hello (\\w+)/ match document write match 1 1 document write window 1 location hash split # 1 |
-| autogenerated/Xss/DomBasedXss/tst.js:419:42:419:54 | /hello (\\w+)/ | enclosingFunctionName | hash2 |
-| autogenerated/Xss/DomBasedXss/tst.js:419:42:419:54 | /hello (\\w+)/ | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:419:42:419:54 | /hello (\\w+)/ | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:419:42:419:54 | /hello (\\w+)/ | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:421:20:421:27 | match[1] | CalleeFlexibleAccessPath | document.write |
-| autogenerated/Xss/DomBasedXss/tst.js:421:20:421:27 | match[1] | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:421:20:421:27 | match[1] | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:421:20:421:27 | match[1] | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:421:20:421:27 | match[1] | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:421:20:421:27 | match[1] | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:421:20:421:27 | match[1] | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/tst.js:421:20:421:27 | match[1] | enclosingFunctionBody | payload window location hash substr 1 document write payload match window location hash match /hello (\\w+)/ match document write match 1 1 document write window 1 location hash split # 1 |
-| autogenerated/Xss/DomBasedXss/tst.js:421:20:421:27 | match[1] | enclosingFunctionName | hash2 |
-| autogenerated/Xss/DomBasedXss/tst.js:421:20:421:27 | match[1] | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:421:20:421:27 | match[1] | receiverName | document |
-| autogenerated/Xss/DomBasedXss/tst.js:421:20:421:27 | match[1] | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:424:18:424:51 | window. ... '#')[1] | CalleeFlexibleAccessPath | document.write |
-| autogenerated/Xss/DomBasedXss/tst.js:424:18:424:51 | window. ... '#')[1] | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:424:18:424:51 | window. ... '#')[1] | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:424:18:424:51 | window. ... '#')[1] | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:424:18:424:51 | window. ... '#')[1] | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:424:18:424:51 | window. ... '#')[1] | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:424:18:424:51 | window. ... '#')[1] | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/tst.js:424:18:424:51 | window. ... '#')[1] | enclosingFunctionBody | payload window location hash substr 1 document write payload match window location hash match /hello (\\w+)/ match document write match 1 1 document write window 1 location hash split # 1 |
-| autogenerated/Xss/DomBasedXss/tst.js:424:18:424:51 | window. ... '#')[1] | enclosingFunctionName | hash2 |
-| autogenerated/Xss/DomBasedXss/tst.js:424:18:424:51 | window. ... '#')[1] | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:424:18:424:51 | window. ... '#')[1] | receiverName | document |
-| autogenerated/Xss/DomBasedXss/tst.js:424:18:424:51 | window. ... '#')[1] | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:424:45:424:47 | '#' | CalleeFlexibleAccessPath | window.location.hash.split |
-| autogenerated/Xss/DomBasedXss/tst.js:424:45:424:47 | '#' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:424:45:424:47 | '#' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:424:45:424:47 | '#' | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:424:45:424:47 | '#' | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:424:45:424:47 | '#' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:424:45:424:47 | '#' | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/tst.js:424:45:424:47 | '#' | enclosingFunctionBody | payload window location hash substr 1 document write payload match window location hash match /hello (\\w+)/ match document write match 1 1 document write window 1 location hash split # 1 |
-| autogenerated/Xss/DomBasedXss/tst.js:424:45:424:47 | '#' | enclosingFunctionName | hash2 |
-| autogenerated/Xss/DomBasedXss/tst.js:424:45:424:47 | '#' | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:424:45:424:47 | '#' | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:424:45:424:47 | '#' | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:430:5:430:10 | "#foo" | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/DomBasedXss/tst.js:430:5:430:10 | "#foo" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:430:5:430:10 | "#foo" | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:430:5:430:10 | "#foo" | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:430:5:430:10 | "#foo" | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:430:5:430:10 | "#foo" | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:430:5:430:10 | "#foo" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/tst.js:430:5:430:10 | "#foo" | enclosingFunctionBody | target document location search $ #foo html target replace /<metadata>[\\s\\S]*<\\/metadata>/ <metadata></metadata> $ #foo html target replace /<\|>/g  |
-| autogenerated/Xss/DomBasedXss/tst.js:430:5:430:10 | "#foo" | enclosingFunctionName | nonGlobalSanitizer |
-| autogenerated/Xss/DomBasedXss/tst.js:430:5:430:10 | "#foo" | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:430:5:430:10 | "#foo" | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:430:5:430:10 | "#foo" | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:430:18:430:89 | target. ... data>') | CalleeFlexibleAccessPath | $().html |
-| autogenerated/Xss/DomBasedXss/tst.js:430:18:430:89 | target. ... data>') | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:430:18:430:89 | target. ... data>') | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:430:18:430:89 | target. ... data>') | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:430:18:430:89 | target. ... data>') | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:430:18:430:89 | target. ... data>') | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:430:18:430:89 | target. ... data>') | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/tst.js:430:18:430:89 | target. ... data>') | enclosingFunctionBody | target document location search $ #foo html target replace /<metadata>[\\s\\S]*<\\/metadata>/ <metadata></metadata> $ #foo html target replace /<\|>/g  |
-| autogenerated/Xss/DomBasedXss/tst.js:430:18:430:89 | target. ... data>') | enclosingFunctionName | nonGlobalSanitizer |
-| autogenerated/Xss/DomBasedXss/tst.js:430:18:430:89 | target. ... data>') | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:430:18:430:89 | target. ... data>') | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:430:18:430:89 | target. ... data>') | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:432:5:432:10 | "#foo" | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/DomBasedXss/tst.js:432:5:432:10 | "#foo" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:432:5:432:10 | "#foo" | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:432:5:432:10 | "#foo" | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:432:5:432:10 | "#foo" | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:432:5:432:10 | "#foo" | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:432:5:432:10 | "#foo" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/tst.js:432:5:432:10 | "#foo" | enclosingFunctionBody | target document location search $ #foo html target replace /<metadata>[\\s\\S]*<\\/metadata>/ <metadata></metadata> $ #foo html target replace /<\|>/g  |
-| autogenerated/Xss/DomBasedXss/tst.js:432:5:432:10 | "#foo" | enclosingFunctionName | nonGlobalSanitizer |
-| autogenerated/Xss/DomBasedXss/tst.js:432:5:432:10 | "#foo" | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:432:5:432:10 | "#foo" | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:432:5:432:10 | "#foo" | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/tst.js:432:18:432:43 | target. ... /g, '') | CalleeFlexibleAccessPath | $().html |
-| autogenerated/Xss/DomBasedXss/tst.js:432:18:432:43 | target. ... /g, '') | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/tst.js:432:18:432:43 | target. ... /g, '') | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:432:18:432:43 | target. ... /g, '') | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:432:18:432:43 | target. ... /g, '') | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:432:18:432:43 | target. ... /g, '') | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
-| autogenerated/Xss/DomBasedXss/tst.js:432:18:432:43 | target. ... /g, '') | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/tst.js:432:18:432:43 | target. ... /g, '') | enclosingFunctionBody | target document location search $ #foo html target replace /<metadata>[\\s\\S]*<\\/metadata>/ <metadata></metadata> $ #foo html target replace /<\|>/g  |
-| autogenerated/Xss/DomBasedXss/tst.js:432:18:432:43 | target. ... /g, '') | enclosingFunctionName | nonGlobalSanitizer |
-| autogenerated/Xss/DomBasedXss/tst.js:432:18:432:43 | target. ... /g, '') | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:432:18:432:43 | target. ... /g, '') | receiverName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:432:18:432:43 | target. ... /g, '') | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/typeahead.js:2:38:4:3 | {\\n    p ... Url\\n  } | CalleeFlexibleAccessPath | Bloodhound |
-| autogenerated/Xss/DomBasedXss/typeahead.js:2:38:4:3 | {\\n    p ... Url\\n  } | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/typeahead.js:2:38:4:3 | {\\n    p ... Url\\n  } | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/typeahead.js:2:38:4:3 | {\\n    p ... Url\\n  } | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/typeahead.js:2:38:4:3 | {\\n    p ... Url\\n  } | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/typeahead.js:2:38:4:3 | {\\n    p ... Url\\n  } | contextFunctionInterfaces | source(query, cb)\nsuggestion(loc)\nsuggestion(val) |
-| autogenerated/Xss/DomBasedXss/typeahead.js:2:38:4:3 | {\\n    p ... Url\\n  } | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/typeahead.js:2:38:4:3 | {\\n    p ... Url\\n  } | enclosingFunctionBody | autocompleter Bloodhound prefetch remoteUrl autocompleter initialize $ .typeahead typeahead source autocompleter ttAdapter templates suggestion loc loc $ .typeahead typeahead name dashboards source query cb target document location search cb target templates suggestion val val |
-| autogenerated/Xss/DomBasedXss/typeahead.js:2:38:4:3 | {\\n    p ... Url\\n  } | enclosingFunctionName |  |
-| autogenerated/Xss/DomBasedXss/typeahead.js:2:38:4:3 | {\\n    p ... Url\\n  } | fileImports |  |
-| autogenerated/Xss/DomBasedXss/typeahead.js:2:38:4:3 | {\\n    p ... Url\\n  } | receiverName |  |
-| autogenerated/Xss/DomBasedXss/typeahead.js:2:38:4:3 | {\\n    p ... Url\\n  } | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/typeahead.js:3:15:3:23 | remoteUrl | CalleeFlexibleAccessPath | Bloodhound |
-| autogenerated/Xss/DomBasedXss/typeahead.js:3:15:3:23 | remoteUrl | InputAccessPathFromCallee | ?.prefetch |
-| autogenerated/Xss/DomBasedXss/typeahead.js:3:15:3:23 | remoteUrl | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/typeahead.js:3:15:3:23 | remoteUrl | assignedToPropName | prefetch |
-| autogenerated/Xss/DomBasedXss/typeahead.js:3:15:3:23 | remoteUrl | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/typeahead.js:3:15:3:23 | remoteUrl | contextFunctionInterfaces | source(query, cb)\nsuggestion(loc)\nsuggestion(val) |
-| autogenerated/Xss/DomBasedXss/typeahead.js:3:15:3:23 | remoteUrl | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/typeahead.js:3:15:3:23 | remoteUrl | enclosingFunctionBody | autocompleter Bloodhound prefetch remoteUrl autocompleter initialize $ .typeahead typeahead source autocompleter ttAdapter templates suggestion loc loc $ .typeahead typeahead name dashboards source query cb target document location search cb target templates suggestion val val |
-| autogenerated/Xss/DomBasedXss/typeahead.js:3:15:3:23 | remoteUrl | enclosingFunctionName |  |
-| autogenerated/Xss/DomBasedXss/typeahead.js:3:15:3:23 | remoteUrl | fileImports |  |
-| autogenerated/Xss/DomBasedXss/typeahead.js:3:15:3:23 | remoteUrl | receiverName |  |
-| autogenerated/Xss/DomBasedXss/typeahead.js:3:15:3:23 | remoteUrl | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/typeahead.js:6:5:6:16 | '.typeahead' | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/DomBasedXss/typeahead.js:6:5:6:16 | '.typeahead' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/typeahead.js:6:5:6:16 | '.typeahead' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/typeahead.js:6:5:6:16 | '.typeahead' | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/typeahead.js:6:5:6:16 | '.typeahead' | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/typeahead.js:6:5:6:16 | '.typeahead' | contextFunctionInterfaces | source(query, cb)\nsuggestion(loc)\nsuggestion(val) |
-| autogenerated/Xss/DomBasedXss/typeahead.js:6:5:6:16 | '.typeahead' | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/typeahead.js:6:5:6:16 | '.typeahead' | enclosingFunctionBody | autocompleter Bloodhound prefetch remoteUrl autocompleter initialize $ .typeahead typeahead source autocompleter ttAdapter templates suggestion loc loc $ .typeahead typeahead name dashboards source query cb target document location search cb target templates suggestion val val |
-| autogenerated/Xss/DomBasedXss/typeahead.js:6:5:6:16 | '.typeahead' | enclosingFunctionName |  |
-| autogenerated/Xss/DomBasedXss/typeahead.js:6:5:6:16 | '.typeahead' | fileImports |  |
-| autogenerated/Xss/DomBasedXss/typeahead.js:6:5:6:16 | '.typeahead' | receiverName |  |
-| autogenerated/Xss/DomBasedXss/typeahead.js:6:5:6:16 | '.typeahead' | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/typeahead.js:6:29:6:30 | {} | CalleeFlexibleAccessPath | $().typeahead |
-| autogenerated/Xss/DomBasedXss/typeahead.js:6:29:6:30 | {} | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/typeahead.js:6:29:6:30 | {} | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/typeahead.js:6:29:6:30 | {} | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/typeahead.js:6:29:6:30 | {} | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/typeahead.js:6:29:6:30 | {} | contextFunctionInterfaces | source(query, cb)\nsuggestion(loc)\nsuggestion(val) |
-| autogenerated/Xss/DomBasedXss/typeahead.js:6:29:6:30 | {} | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/typeahead.js:6:29:6:30 | {} | enclosingFunctionBody | autocompleter Bloodhound prefetch remoteUrl autocompleter initialize $ .typeahead typeahead source autocompleter ttAdapter templates suggestion loc loc $ .typeahead typeahead name dashboards source query cb target document location search cb target templates suggestion val val |
-| autogenerated/Xss/DomBasedXss/typeahead.js:6:29:6:30 | {} | enclosingFunctionName |  |
-| autogenerated/Xss/DomBasedXss/typeahead.js:6:29:6:30 | {} | fileImports |  |
-| autogenerated/Xss/DomBasedXss/typeahead.js:6:29:6:30 | {} | receiverName |  |
-| autogenerated/Xss/DomBasedXss/typeahead.js:6:29:6:30 | {} | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/typeahead.js:6:33:13:3 | {\\n    s ...   }\\n  } | CalleeFlexibleAccessPath | $().typeahead |
-| autogenerated/Xss/DomBasedXss/typeahead.js:6:33:13:3 | {\\n    s ...   }\\n  } | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/typeahead.js:6:33:13:3 | {\\n    s ...   }\\n  } | InputArgumentIndex | 1 |
-| autogenerated/Xss/DomBasedXss/typeahead.js:6:33:13:3 | {\\n    s ...   }\\n  } | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/typeahead.js:6:33:13:3 | {\\n    s ...   }\\n  } | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/typeahead.js:6:33:13:3 | {\\n    s ...   }\\n  } | contextFunctionInterfaces | source(query, cb)\nsuggestion(loc)\nsuggestion(val) |
-| autogenerated/Xss/DomBasedXss/typeahead.js:6:33:13:3 | {\\n    s ...   }\\n  } | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/typeahead.js:6:33:13:3 | {\\n    s ...   }\\n  } | enclosingFunctionBody | autocompleter Bloodhound prefetch remoteUrl autocompleter initialize $ .typeahead typeahead source autocompleter ttAdapter templates suggestion loc loc $ .typeahead typeahead name dashboards source query cb target document location search cb target templates suggestion val val |
-| autogenerated/Xss/DomBasedXss/typeahead.js:6:33:13:3 | {\\n    s ...   }\\n  } | enclosingFunctionName |  |
-| autogenerated/Xss/DomBasedXss/typeahead.js:6:33:13:3 | {\\n    s ...   }\\n  } | fileImports |  |
-| autogenerated/Xss/DomBasedXss/typeahead.js:6:33:13:3 | {\\n    s ...   }\\n  } | receiverName |  |
-| autogenerated/Xss/DomBasedXss/typeahead.js:6:33:13:3 | {\\n    s ...   }\\n  } | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/typeahead.js:7:13:7:37 | autocom ... apter() | CalleeFlexibleAccessPath | $().typeahead |
-| autogenerated/Xss/DomBasedXss/typeahead.js:7:13:7:37 | autocom ... apter() | InputAccessPathFromCallee | 1.source |
-| autogenerated/Xss/DomBasedXss/typeahead.js:7:13:7:37 | autocom ... apter() | InputArgumentIndex | 1 |
-| autogenerated/Xss/DomBasedXss/typeahead.js:7:13:7:37 | autocom ... apter() | assignedToPropName | source |
-| autogenerated/Xss/DomBasedXss/typeahead.js:7:13:7:37 | autocom ... apter() | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/typeahead.js:7:13:7:37 | autocom ... apter() | contextFunctionInterfaces | source(query, cb)\nsuggestion(loc)\nsuggestion(val) |
-| autogenerated/Xss/DomBasedXss/typeahead.js:7:13:7:37 | autocom ... apter() | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/typeahead.js:7:13:7:37 | autocom ... apter() | enclosingFunctionBody | autocompleter Bloodhound prefetch remoteUrl autocompleter initialize $ .typeahead typeahead source autocompleter ttAdapter templates suggestion loc loc $ .typeahead typeahead name dashboards source query cb target document location search cb target templates suggestion val val |
-| autogenerated/Xss/DomBasedXss/typeahead.js:7:13:7:37 | autocom ... apter() | enclosingFunctionName |  |
-| autogenerated/Xss/DomBasedXss/typeahead.js:7:13:7:37 | autocom ... apter() | fileImports |  |
-| autogenerated/Xss/DomBasedXss/typeahead.js:7:13:7:37 | autocom ... apter() | receiverName |  |
-| autogenerated/Xss/DomBasedXss/typeahead.js:7:13:7:37 | autocom ... apter() | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/typeahead.js:8:16:12:5 | {\\n      ... }\\n    } | CalleeFlexibleAccessPath | $().typeahead |
-| autogenerated/Xss/DomBasedXss/typeahead.js:8:16:12:5 | {\\n      ... }\\n    } | InputAccessPathFromCallee | 1.templates |
-| autogenerated/Xss/DomBasedXss/typeahead.js:8:16:12:5 | {\\n      ... }\\n    } | InputArgumentIndex | 1 |
-| autogenerated/Xss/DomBasedXss/typeahead.js:8:16:12:5 | {\\n      ... }\\n    } | assignedToPropName | templates |
-| autogenerated/Xss/DomBasedXss/typeahead.js:8:16:12:5 | {\\n      ... }\\n    } | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/typeahead.js:8:16:12:5 | {\\n      ... }\\n    } | contextFunctionInterfaces | source(query, cb)\nsuggestion(loc)\nsuggestion(val) |
-| autogenerated/Xss/DomBasedXss/typeahead.js:8:16:12:5 | {\\n      ... }\\n    } | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/typeahead.js:8:16:12:5 | {\\n      ... }\\n    } | enclosingFunctionBody | autocompleter Bloodhound prefetch remoteUrl autocompleter initialize $ .typeahead typeahead source autocompleter ttAdapter templates suggestion loc loc $ .typeahead typeahead name dashboards source query cb target document location search cb target templates suggestion val val |
-| autogenerated/Xss/DomBasedXss/typeahead.js:8:16:12:5 | {\\n      ... }\\n    } | enclosingFunctionName |  |
-| autogenerated/Xss/DomBasedXss/typeahead.js:8:16:12:5 | {\\n      ... }\\n    } | fileImports |  |
-| autogenerated/Xss/DomBasedXss/typeahead.js:8:16:12:5 | {\\n      ... }\\n    } | receiverName |  |
-| autogenerated/Xss/DomBasedXss/typeahead.js:8:16:12:5 | {\\n      ... }\\n    } | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/typeahead.js:9:19:11:7 | functio ...       } | CalleeFlexibleAccessPath | $().typeahead |
-| autogenerated/Xss/DomBasedXss/typeahead.js:9:19:11:7 | functio ...       } | InputAccessPathFromCallee | 1.templates.suggestion |
-| autogenerated/Xss/DomBasedXss/typeahead.js:9:19:11:7 | functio ...       } | InputArgumentIndex | 1 |
-| autogenerated/Xss/DomBasedXss/typeahead.js:9:19:11:7 | functio ...       } | assignedToPropName | suggestion |
-| autogenerated/Xss/DomBasedXss/typeahead.js:9:19:11:7 | functio ...       } | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/typeahead.js:9:19:11:7 | functio ...       } | contextFunctionInterfaces | source(query, cb)\nsuggestion(loc)\nsuggestion(val) |
-| autogenerated/Xss/DomBasedXss/typeahead.js:9:19:11:7 | functio ...       } | contextSurroundingFunctionParameters | ()\n(loc) |
-| autogenerated/Xss/DomBasedXss/typeahead.js:9:19:11:7 | functio ...       } | enclosingFunctionBody | autocompleter Bloodhound prefetch remoteUrl autocompleter initialize $ .typeahead typeahead source autocompleter ttAdapter templates suggestion loc loc $ .typeahead typeahead name dashboards source query cb target document location search cb target templates suggestion val val |
-| autogenerated/Xss/DomBasedXss/typeahead.js:9:19:11:7 | functio ...       } | enclosingFunctionName |  |
-| autogenerated/Xss/DomBasedXss/typeahead.js:9:19:11:7 | functio ...       } | fileImports |  |
-| autogenerated/Xss/DomBasedXss/typeahead.js:9:19:11:7 | functio ...       } | receiverName |  |
-| autogenerated/Xss/DomBasedXss/typeahead.js:9:19:11:7 | functio ...       } | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/typeahead.js:10:16:10:18 | loc | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/typeahead.js:10:16:10:18 | loc | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/typeahead.js:10:16:10:18 | loc | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/typeahead.js:10:16:10:18 | loc | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/typeahead.js:10:16:10:18 | loc | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/typeahead.js:10:16:10:18 | loc | contextFunctionInterfaces | source(query, cb)\nsuggestion(loc)\nsuggestion(val) |
-| autogenerated/Xss/DomBasedXss/typeahead.js:10:16:10:18 | loc | contextSurroundingFunctionParameters | ()\n(loc) |
-| autogenerated/Xss/DomBasedXss/typeahead.js:10:16:10:18 | loc | enclosingFunctionBody | autocompleter Bloodhound prefetch remoteUrl autocompleter initialize $ .typeahead typeahead source autocompleter ttAdapter templates suggestion loc loc $ .typeahead typeahead name dashboards source query cb target document location search cb target templates suggestion val val |
-| autogenerated/Xss/DomBasedXss/typeahead.js:10:16:10:18 | loc | enclosingFunctionName |  |
-| autogenerated/Xss/DomBasedXss/typeahead.js:10:16:10:18 | loc | fileImports |  |
-| autogenerated/Xss/DomBasedXss/typeahead.js:10:16:10:18 | loc | receiverName |  |
-| autogenerated/Xss/DomBasedXss/typeahead.js:10:16:10:18 | loc | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/typeahead.js:16:5:16:16 | '.typeahead' | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/DomBasedXss/typeahead.js:16:5:16:16 | '.typeahead' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/typeahead.js:16:5:16:16 | '.typeahead' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/typeahead.js:16:5:16:16 | '.typeahead' | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/typeahead.js:16:5:16:16 | '.typeahead' | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/typeahead.js:16:5:16:16 | '.typeahead' | contextFunctionInterfaces | source(query, cb)\nsuggestion(loc)\nsuggestion(val) |
-| autogenerated/Xss/DomBasedXss/typeahead.js:16:5:16:16 | '.typeahead' | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/typeahead.js:16:5:16:16 | '.typeahead' | enclosingFunctionBody | autocompleter Bloodhound prefetch remoteUrl autocompleter initialize $ .typeahead typeahead source autocompleter ttAdapter templates suggestion loc loc $ .typeahead typeahead name dashboards source query cb target document location search cb target templates suggestion val val |
-| autogenerated/Xss/DomBasedXss/typeahead.js:16:5:16:16 | '.typeahead' | enclosingFunctionName |  |
-| autogenerated/Xss/DomBasedXss/typeahead.js:16:5:16:16 | '.typeahead' | fileImports |  |
-| autogenerated/Xss/DomBasedXss/typeahead.js:16:5:16:16 | '.typeahead' | receiverName |  |
-| autogenerated/Xss/DomBasedXss/typeahead.js:16:5:16:16 | '.typeahead' | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/typeahead.js:16:29:16:30 | {} | CalleeFlexibleAccessPath | $().typeahead |
-| autogenerated/Xss/DomBasedXss/typeahead.js:16:29:16:30 | {} | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/typeahead.js:16:29:16:30 | {} | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/typeahead.js:16:29:16:30 | {} | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/typeahead.js:16:29:16:30 | {} | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/typeahead.js:16:29:16:30 | {} | contextFunctionInterfaces | source(query, cb)\nsuggestion(loc)\nsuggestion(val) |
-| autogenerated/Xss/DomBasedXss/typeahead.js:16:29:16:30 | {} | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/typeahead.js:16:29:16:30 | {} | enclosingFunctionBody | autocompleter Bloodhound prefetch remoteUrl autocompleter initialize $ .typeahead typeahead source autocompleter ttAdapter templates suggestion loc loc $ .typeahead typeahead name dashboards source query cb target document location search cb target templates suggestion val val |
-| autogenerated/Xss/DomBasedXss/typeahead.js:16:29:16:30 | {} | enclosingFunctionName |  |
-| autogenerated/Xss/DomBasedXss/typeahead.js:16:29:16:30 | {} | fileImports |  |
-| autogenerated/Xss/DomBasedXss/typeahead.js:16:29:16:30 | {} | receiverName |  |
-| autogenerated/Xss/DomBasedXss/typeahead.js:16:29:16:30 | {} | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/typeahead.js:17:5:28:5 | {\\n      ... }\\n    } | CalleeFlexibleAccessPath | $().typeahead |
-| autogenerated/Xss/DomBasedXss/typeahead.js:17:5:28:5 | {\\n      ... }\\n    } | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/typeahead.js:17:5:28:5 | {\\n      ... }\\n    } | InputArgumentIndex | 1 |
-| autogenerated/Xss/DomBasedXss/typeahead.js:17:5:28:5 | {\\n      ... }\\n    } | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/typeahead.js:17:5:28:5 | {\\n      ... }\\n    } | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/typeahead.js:17:5:28:5 | {\\n      ... }\\n    } | contextFunctionInterfaces | source(query, cb)\nsuggestion(loc)\nsuggestion(val) |
-| autogenerated/Xss/DomBasedXss/typeahead.js:17:5:28:5 | {\\n      ... }\\n    } | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/typeahead.js:17:5:28:5 | {\\n      ... }\\n    } | enclosingFunctionBody | autocompleter Bloodhound prefetch remoteUrl autocompleter initialize $ .typeahead typeahead source autocompleter ttAdapter templates suggestion loc loc $ .typeahead typeahead name dashboards source query cb target document location search cb target templates suggestion val val |
-| autogenerated/Xss/DomBasedXss/typeahead.js:17:5:28:5 | {\\n      ... }\\n    } | enclosingFunctionName |  |
-| autogenerated/Xss/DomBasedXss/typeahead.js:17:5:28:5 | {\\n      ... }\\n    } | fileImports |  |
-| autogenerated/Xss/DomBasedXss/typeahead.js:17:5:28:5 | {\\n      ... }\\n    } | receiverName |  |
-| autogenerated/Xss/DomBasedXss/typeahead.js:17:5:28:5 | {\\n      ... }\\n    } | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/typeahead.js:18:13:18:24 | 'dashboards' | CalleeFlexibleAccessPath | $().typeahead |
-| autogenerated/Xss/DomBasedXss/typeahead.js:18:13:18:24 | 'dashboards' | InputAccessPathFromCallee | 1.name |
-| autogenerated/Xss/DomBasedXss/typeahead.js:18:13:18:24 | 'dashboards' | InputArgumentIndex | 1 |
-| autogenerated/Xss/DomBasedXss/typeahead.js:18:13:18:24 | 'dashboards' | assignedToPropName | name |
-| autogenerated/Xss/DomBasedXss/typeahead.js:18:13:18:24 | 'dashboards' | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/typeahead.js:18:13:18:24 | 'dashboards' | contextFunctionInterfaces | source(query, cb)\nsuggestion(loc)\nsuggestion(val) |
-| autogenerated/Xss/DomBasedXss/typeahead.js:18:13:18:24 | 'dashboards' | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/typeahead.js:18:13:18:24 | 'dashboards' | enclosingFunctionBody | autocompleter Bloodhound prefetch remoteUrl autocompleter initialize $ .typeahead typeahead source autocompleter ttAdapter templates suggestion loc loc $ .typeahead typeahead name dashboards source query cb target document location search cb target templates suggestion val val |
-| autogenerated/Xss/DomBasedXss/typeahead.js:18:13:18:24 | 'dashboards' | enclosingFunctionName |  |
-| autogenerated/Xss/DomBasedXss/typeahead.js:18:13:18:24 | 'dashboards' | fileImports |  |
-| autogenerated/Xss/DomBasedXss/typeahead.js:18:13:18:24 | 'dashboards' | receiverName |  |
-| autogenerated/Xss/DomBasedXss/typeahead.js:18:13:18:24 | 'dashboards' | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/typeahead.js:19:15:22:7 | functio ...       } | CalleeFlexibleAccessPath | $().typeahead |
-| autogenerated/Xss/DomBasedXss/typeahead.js:19:15:22:7 | functio ...       } | InputAccessPathFromCallee | 1.source |
-| autogenerated/Xss/DomBasedXss/typeahead.js:19:15:22:7 | functio ...       } | InputArgumentIndex | 1 |
-| autogenerated/Xss/DomBasedXss/typeahead.js:19:15:22:7 | functio ...       } | assignedToPropName | source |
-| autogenerated/Xss/DomBasedXss/typeahead.js:19:15:22:7 | functio ...       } | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/typeahead.js:19:15:22:7 | functio ...       } | contextFunctionInterfaces | source(query, cb)\nsuggestion(loc)\nsuggestion(val) |
-| autogenerated/Xss/DomBasedXss/typeahead.js:19:15:22:7 | functio ...       } | contextSurroundingFunctionParameters | ()\n(query, cb) |
-| autogenerated/Xss/DomBasedXss/typeahead.js:19:15:22:7 | functio ...       } | enclosingFunctionBody | autocompleter Bloodhound prefetch remoteUrl autocompleter initialize $ .typeahead typeahead source autocompleter ttAdapter templates suggestion loc loc $ .typeahead typeahead name dashboards source query cb target document location search cb target templates suggestion val val |
-| autogenerated/Xss/DomBasedXss/typeahead.js:19:15:22:7 | functio ...       } | enclosingFunctionName |  |
-| autogenerated/Xss/DomBasedXss/typeahead.js:19:15:22:7 | functio ...       } | fileImports |  |
-| autogenerated/Xss/DomBasedXss/typeahead.js:19:15:22:7 | functio ...       } | receiverName |  |
-| autogenerated/Xss/DomBasedXss/typeahead.js:19:15:22:7 | functio ...       } | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/typeahead.js:23:18:27:7 | {\\n      ...       } | CalleeFlexibleAccessPath | $().typeahead |
-| autogenerated/Xss/DomBasedXss/typeahead.js:23:18:27:7 | {\\n      ...       } | InputAccessPathFromCallee | 1.templates |
-| autogenerated/Xss/DomBasedXss/typeahead.js:23:18:27:7 | {\\n      ...       } | InputArgumentIndex | 1 |
-| autogenerated/Xss/DomBasedXss/typeahead.js:23:18:27:7 | {\\n      ...       } | assignedToPropName | templates |
-| autogenerated/Xss/DomBasedXss/typeahead.js:23:18:27:7 | {\\n      ...       } | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/typeahead.js:23:18:27:7 | {\\n      ...       } | contextFunctionInterfaces | source(query, cb)\nsuggestion(loc)\nsuggestion(val) |
-| autogenerated/Xss/DomBasedXss/typeahead.js:23:18:27:7 | {\\n      ...       } | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/typeahead.js:23:18:27:7 | {\\n      ...       } | enclosingFunctionBody | autocompleter Bloodhound prefetch remoteUrl autocompleter initialize $ .typeahead typeahead source autocompleter ttAdapter templates suggestion loc loc $ .typeahead typeahead name dashboards source query cb target document location search cb target templates suggestion val val |
-| autogenerated/Xss/DomBasedXss/typeahead.js:23:18:27:7 | {\\n      ...       } | enclosingFunctionName |  |
-| autogenerated/Xss/DomBasedXss/typeahead.js:23:18:27:7 | {\\n      ...       } | fileImports |  |
-| autogenerated/Xss/DomBasedXss/typeahead.js:23:18:27:7 | {\\n      ...       } | receiverName |  |
-| autogenerated/Xss/DomBasedXss/typeahead.js:23:18:27:7 | {\\n      ...       } | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/typeahead.js:24:21:26:9 | functio ...       } | CalleeFlexibleAccessPath | $().typeahead |
-| autogenerated/Xss/DomBasedXss/typeahead.js:24:21:26:9 | functio ...       } | InputAccessPathFromCallee | 1.templates.suggestion |
-| autogenerated/Xss/DomBasedXss/typeahead.js:24:21:26:9 | functio ...       } | InputArgumentIndex | 1 |
-| autogenerated/Xss/DomBasedXss/typeahead.js:24:21:26:9 | functio ...       } | assignedToPropName | suggestion |
-| autogenerated/Xss/DomBasedXss/typeahead.js:24:21:26:9 | functio ...       } | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/typeahead.js:24:21:26:9 | functio ...       } | contextFunctionInterfaces | source(query, cb)\nsuggestion(loc)\nsuggestion(val) |
-| autogenerated/Xss/DomBasedXss/typeahead.js:24:21:26:9 | functio ...       } | contextSurroundingFunctionParameters | ()\n(val) |
-| autogenerated/Xss/DomBasedXss/typeahead.js:24:21:26:9 | functio ...       } | enclosingFunctionBody | autocompleter Bloodhound prefetch remoteUrl autocompleter initialize $ .typeahead typeahead source autocompleter ttAdapter templates suggestion loc loc $ .typeahead typeahead name dashboards source query cb target document location search cb target templates suggestion val val |
-| autogenerated/Xss/DomBasedXss/typeahead.js:24:21:26:9 | functio ...       } | enclosingFunctionName |  |
-| autogenerated/Xss/DomBasedXss/typeahead.js:24:21:26:9 | functio ...       } | fileImports |  |
-| autogenerated/Xss/DomBasedXss/typeahead.js:24:21:26:9 | functio ...       } | receiverName |  |
-| autogenerated/Xss/DomBasedXss/typeahead.js:24:21:26:9 | functio ...       } | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/typeahead.js:25:18:25:20 | val | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/typeahead.js:25:18:25:20 | val | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/typeahead.js:25:18:25:20 | val | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/typeahead.js:25:18:25:20 | val | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/typeahead.js:25:18:25:20 | val | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/typeahead.js:25:18:25:20 | val | contextFunctionInterfaces | source(query, cb)\nsuggestion(loc)\nsuggestion(val) |
-| autogenerated/Xss/DomBasedXss/typeahead.js:25:18:25:20 | val | contextSurroundingFunctionParameters | ()\n(val) |
-| autogenerated/Xss/DomBasedXss/typeahead.js:25:18:25:20 | val | enclosingFunctionBody | autocompleter Bloodhound prefetch remoteUrl autocompleter initialize $ .typeahead typeahead source autocompleter ttAdapter templates suggestion loc loc $ .typeahead typeahead name dashboards source query cb target document location search cb target templates suggestion val val |
-| autogenerated/Xss/DomBasedXss/typeahead.js:25:18:25:20 | val | enclosingFunctionName |  |
-| autogenerated/Xss/DomBasedXss/typeahead.js:25:18:25:20 | val | fileImports |  |
-| autogenerated/Xss/DomBasedXss/typeahead.js:25:18:25:20 | val | receiverName |  |
-| autogenerated/Xss/DomBasedXss/typeahead.js:25:18:25:20 | val | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:4:4:4:10 | "<div>" | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:4:4:4:10 | "<div>" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:4:4:4:10 | "<div>" | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:4:4:4:10 | "<div>" | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:4:4:4:10 | "<div>" | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:4:4:4:10 | "<div>" | contextFunctionInterfaces | indirection1(attrs)\nindirection2(attrs)\ntest() |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:4:4:4:10 | "<div>" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:4:4:4:10 | "<div>" | enclosingFunctionBody | tainted document location search $ <div> tainted </div> $ <div> tainted </div> $ <div> concat tainted concat </div> $ <div> tainted </div> join $ <div id=" tainted "/> $ <div id=" tainted "/> $ <div id=" concat tainted concat /> $ <div id=" tainted "/> join indirection1 attrs <div align=" attrs defaultattr left "> content </div> indirection2 attrs <div align=" concat attrs defaultattr left concat "> concat content concat </div> $ indirection1 document location search attrs $ indirection2 document location search attrs |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:4:4:4:10 | "<div>" | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:4:4:4:10 | "<div>" | fileImports |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:4:4:4:10 | "<div>" | receiverName |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:4:4:4:10 | "<div>" | stringConcatenatedWith |  -endpoint- tainted + '</div>' |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:4:4:4:31 | "<div>" ... </div>" | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:4:4:4:31 | "<div>" ... </div>" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:4:4:4:31 | "<div>" ... </div>" | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:4:4:4:31 | "<div>" ... </div>" | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:4:4:4:31 | "<div>" ... </div>" | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:4:4:4:31 | "<div>" ... </div>" | contextFunctionInterfaces | indirection1(attrs)\nindirection2(attrs)\ntest() |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:4:4:4:31 | "<div>" ... </div>" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:4:4:4:31 | "<div>" ... </div>" | enclosingFunctionBody | tainted document location search $ <div> tainted </div> $ <div> tainted </div> $ <div> concat tainted concat </div> $ <div> tainted </div> join $ <div id=" tainted "/> $ <div id=" tainted "/> $ <div id=" concat tainted concat /> $ <div id=" tainted "/> join indirection1 attrs <div align=" attrs defaultattr left "> content </div> indirection2 attrs <div align=" concat attrs defaultattr left concat "> concat content concat </div> $ indirection1 document location search attrs $ indirection2 document location search attrs |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:4:4:4:31 | "<div>" ... </div>" | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:4:4:4:31 | "<div>" ... </div>" | fileImports |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:4:4:4:31 | "<div>" ... </div>" | receiverName |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:4:4:4:31 | "<div>" ... </div>" | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:4:14:4:20 | tainted | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:4:14:4:20 | tainted | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:4:14:4:20 | tainted | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:4:14:4:20 | tainted | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:4:14:4:20 | tainted | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:4:14:4:20 | tainted | contextFunctionInterfaces | indirection1(attrs)\nindirection2(attrs)\ntest() |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:4:14:4:20 | tainted | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:4:14:4:20 | tainted | enclosingFunctionBody | tainted document location search $ <div> tainted </div> $ <div> tainted </div> $ <div> concat tainted concat </div> $ <div> tainted </div> join $ <div id=" tainted "/> $ <div id=" tainted "/> $ <div id=" concat tainted concat /> $ <div id=" tainted "/> join indirection1 attrs <div align=" attrs defaultattr left "> content </div> indirection2 attrs <div align=" concat attrs defaultattr left concat "> concat content concat </div> $ indirection1 document location search attrs $ indirection2 document location search attrs |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:4:14:4:20 | tainted | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:4:14:4:20 | tainted | fileImports |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:4:14:4:20 | tainted | receiverName |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:4:14:4:20 | tainted | stringConcatenatedWith | '<div>' -endpoint- '</div>' |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:4:24:4:31 | "</div>" | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:4:24:4:31 | "</div>" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:4:24:4:31 | "</div>" | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:4:24:4:31 | "</div>" | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:4:24:4:31 | "</div>" | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:4:24:4:31 | "</div>" | contextFunctionInterfaces | indirection1(attrs)\nindirection2(attrs)\ntest() |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:4:24:4:31 | "</div>" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:4:24:4:31 | "</div>" | enclosingFunctionBody | tainted document location search $ <div> tainted </div> $ <div> tainted </div> $ <div> concat tainted concat </div> $ <div> tainted </div> join $ <div id=" tainted "/> $ <div id=" tainted "/> $ <div id=" concat tainted concat /> $ <div id=" tainted "/> join indirection1 attrs <div align=" attrs defaultattr left "> content </div> indirection2 attrs <div align=" concat attrs defaultattr left concat "> concat content concat </div> $ indirection1 document location search attrs $ indirection2 document location search attrs |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:4:24:4:31 | "</div>" | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:4:24:4:31 | "</div>" | fileImports |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:4:24:4:31 | "</div>" | receiverName |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:4:24:4:31 | "</div>" | stringConcatenatedWith | '<div>' + tainted -endpoint-  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:5:4:5:26 | `<div>$ ... </div>` | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:5:4:5:26 | `<div>$ ... </div>` | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:5:4:5:26 | `<div>$ ... </div>` | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:5:4:5:26 | `<div>$ ... </div>` | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:5:4:5:26 | `<div>$ ... </div>` | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:5:4:5:26 | `<div>$ ... </div>` | contextFunctionInterfaces | indirection1(attrs)\nindirection2(attrs)\ntest() |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:5:4:5:26 | `<div>$ ... </div>` | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:5:4:5:26 | `<div>$ ... </div>` | enclosingFunctionBody | tainted document location search $ <div> tainted </div> $ <div> tainted </div> $ <div> concat tainted concat </div> $ <div> tainted </div> join $ <div id=" tainted "/> $ <div id=" tainted "/> $ <div id=" concat tainted concat /> $ <div id=" tainted "/> join indirection1 attrs <div align=" attrs defaultattr left "> content </div> indirection2 attrs <div align=" concat attrs defaultattr left concat "> concat content concat </div> $ indirection1 document location search attrs $ indirection2 document location search attrs |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:5:4:5:26 | `<div>$ ... </div>` | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:5:4:5:26 | `<div>$ ... </div>` | fileImports |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:5:4:5:26 | `<div>$ ... </div>` | receiverName |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:5:4:5:26 | `<div>$ ... </div>` | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:5:5:5:9 | <div> | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:5:5:5:9 | <div> | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:5:5:5:9 | <div> | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:5:5:5:9 | <div> | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:5:5:5:9 | <div> | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:5:5:5:9 | <div> | contextFunctionInterfaces | indirection1(attrs)\nindirection2(attrs)\ntest() |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:5:5:5:9 | <div> | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:5:5:5:9 | <div> | enclosingFunctionBody | tainted document location search $ <div> tainted </div> $ <div> tainted </div> $ <div> concat tainted concat </div> $ <div> tainted </div> join $ <div id=" tainted "/> $ <div id=" tainted "/> $ <div id=" concat tainted concat /> $ <div id=" tainted "/> join indirection1 attrs <div align=" attrs defaultattr left "> content </div> indirection2 attrs <div align=" concat attrs defaultattr left concat "> concat content concat </div> $ indirection1 document location search attrs $ indirection2 document location search attrs |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:5:5:5:9 | <div> | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:5:5:5:9 | <div> | fileImports |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:5:5:5:9 | <div> | receiverName |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:5:5:5:9 | <div> | stringConcatenatedWith |  -endpoint- tainted + '</div>' |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:5:12:5:18 | tainted | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:5:12:5:18 | tainted | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:5:12:5:18 | tainted | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:5:12:5:18 | tainted | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:5:12:5:18 | tainted | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:5:12:5:18 | tainted | contextFunctionInterfaces | indirection1(attrs)\nindirection2(attrs)\ntest() |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:5:12:5:18 | tainted | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:5:12:5:18 | tainted | enclosingFunctionBody | tainted document location search $ <div> tainted </div> $ <div> tainted </div> $ <div> concat tainted concat </div> $ <div> tainted </div> join $ <div id=" tainted "/> $ <div id=" tainted "/> $ <div id=" concat tainted concat /> $ <div id=" tainted "/> join indirection1 attrs <div align=" attrs defaultattr left "> content </div> indirection2 attrs <div align=" concat attrs defaultattr left concat "> concat content concat </div> $ indirection1 document location search attrs $ indirection2 document location search attrs |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:5:12:5:18 | tainted | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:5:12:5:18 | tainted | fileImports |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:5:12:5:18 | tainted | receiverName |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:5:12:5:18 | tainted | stringConcatenatedWith | '<div>' -endpoint- '</div>' |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:5:20:5:25 | </div> | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:5:20:5:25 | </div> | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:5:20:5:25 | </div> | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:5:20:5:25 | </div> | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:5:20:5:25 | </div> | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:5:20:5:25 | </div> | contextFunctionInterfaces | indirection1(attrs)\nindirection2(attrs)\ntest() |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:5:20:5:25 | </div> | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:5:20:5:25 | </div> | enclosingFunctionBody | tainted document location search $ <div> tainted </div> $ <div> tainted </div> $ <div> concat tainted concat </div> $ <div> tainted </div> join $ <div id=" tainted "/> $ <div id=" tainted "/> $ <div id=" concat tainted concat /> $ <div id=" tainted "/> join indirection1 attrs <div align=" attrs defaultattr left "> content </div> indirection2 attrs <div align=" concat attrs defaultattr left concat "> concat content concat </div> $ indirection1 document location search attrs $ indirection2 document location search attrs |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:5:20:5:25 | </div> | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:5:20:5:25 | </div> | fileImports |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:5:20:5:25 | </div> | receiverName |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:5:20:5:25 | </div> | stringConcatenatedWith | '<div>' + tainted -endpoint-  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:6:4:6:10 | "<div>" | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:6:4:6:10 | "<div>" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:6:4:6:10 | "<div>" | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:6:4:6:10 | "<div>" | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:6:4:6:10 | "<div>" | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:6:4:6:10 | "<div>" | contextFunctionInterfaces | indirection1(attrs)\nindirection2(attrs)\ntest() |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:6:4:6:10 | "<div>" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:6:4:6:10 | "<div>" | enclosingFunctionBody | tainted document location search $ <div> tainted </div> $ <div> tainted </div> $ <div> concat tainted concat </div> $ <div> tainted </div> join $ <div id=" tainted "/> $ <div id=" tainted "/> $ <div id=" concat tainted concat /> $ <div id=" tainted "/> join indirection1 attrs <div align=" attrs defaultattr left "> content </div> indirection2 attrs <div align=" concat attrs defaultattr left concat "> concat content concat </div> $ indirection1 document location search attrs $ indirection2 document location search attrs |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:6:4:6:10 | "<div>" | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:6:4:6:10 | "<div>" | fileImports |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:6:4:6:10 | "<div>" | receiverName |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:6:4:6:10 | "<div>" | stringConcatenatedWith |  -endpoint- tainted + '</div>' |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:6:4:6:43 | "<div>" ... /div>") | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:6:4:6:43 | "<div>" ... /div>") | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:6:4:6:43 | "<div>" ... /div>") | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:6:4:6:43 | "<div>" ... /div>") | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:6:4:6:43 | "<div>" ... /div>") | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:6:4:6:43 | "<div>" ... /div>") | contextFunctionInterfaces | indirection1(attrs)\nindirection2(attrs)\ntest() |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:6:4:6:43 | "<div>" ... /div>") | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:6:4:6:43 | "<div>" ... /div>") | enclosingFunctionBody | tainted document location search $ <div> tainted </div> $ <div> tainted </div> $ <div> concat tainted concat </div> $ <div> tainted </div> join $ <div id=" tainted "/> $ <div id=" tainted "/> $ <div id=" concat tainted concat /> $ <div id=" tainted "/> join indirection1 attrs <div align=" attrs defaultattr left "> content </div> indirection2 attrs <div align=" concat attrs defaultattr left concat "> concat content concat </div> $ indirection1 document location search attrs $ indirection2 document location search attrs |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:6:4:6:43 | "<div>" ... /div>") | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:6:4:6:43 | "<div>" ... /div>") | fileImports |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:6:4:6:43 | "<div>" ... /div>") | receiverName |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:6:4:6:43 | "<div>" ... /div>") | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:6:19:6:25 | tainted | CalleeFlexibleAccessPath | ?.concat |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:6:19:6:25 | tainted | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:6:19:6:25 | tainted | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:6:19:6:25 | tainted | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:6:19:6:25 | tainted | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:6:19:6:25 | tainted | contextFunctionInterfaces | indirection1(attrs)\nindirection2(attrs)\ntest() |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:6:19:6:25 | tainted | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:6:19:6:25 | tainted | enclosingFunctionBody | tainted document location search $ <div> tainted </div> $ <div> tainted </div> $ <div> concat tainted concat </div> $ <div> tainted </div> join $ <div id=" tainted "/> $ <div id=" tainted "/> $ <div id=" concat tainted concat /> $ <div id=" tainted "/> join indirection1 attrs <div align=" attrs defaultattr left "> content </div> indirection2 attrs <div align=" concat attrs defaultattr left concat "> concat content concat </div> $ indirection1 document location search attrs $ indirection2 document location search attrs |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:6:19:6:25 | tainted | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:6:19:6:25 | tainted | fileImports |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:6:19:6:25 | tainted | receiverName |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:6:19:6:25 | tainted | stringConcatenatedWith | '<div>' -endpoint- '</div>' |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:7:4:7:38 | ["<div> ... .join() | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:7:4:7:38 | ["<div> ... .join() | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:7:4:7:38 | ["<div> ... .join() | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:7:4:7:38 | ["<div> ... .join() | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:7:4:7:38 | ["<div> ... .join() | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:7:4:7:38 | ["<div> ... .join() | contextFunctionInterfaces | indirection1(attrs)\nindirection2(attrs)\ntest() |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:7:4:7:38 | ["<div> ... .join() | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:7:4:7:38 | ["<div> ... .join() | enclosingFunctionBody | tainted document location search $ <div> tainted </div> $ <div> tainted </div> $ <div> concat tainted concat </div> $ <div> tainted </div> join $ <div id=" tainted "/> $ <div id=" tainted "/> $ <div id=" concat tainted concat /> $ <div id=" tainted "/> join indirection1 attrs <div align=" attrs defaultattr left "> content </div> indirection2 attrs <div align=" concat attrs defaultattr left concat "> concat content concat </div> $ indirection1 document location search attrs $ indirection2 document location search attrs |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:7:4:7:38 | ["<div> ... .join() | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:7:4:7:38 | ["<div> ... .join() | fileImports |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:7:4:7:38 | ["<div> ... .join() | receiverName |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:7:4:7:38 | ["<div> ... .join() | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:7:5:7:11 | "<div>" | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:7:5:7:11 | "<div>" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:7:5:7:11 | "<div>" | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:7:5:7:11 | "<div>" | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:7:5:7:11 | "<div>" | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:7:5:7:11 | "<div>" | contextFunctionInterfaces | indirection1(attrs)\nindirection2(attrs)\ntest() |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:7:5:7:11 | "<div>" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:7:5:7:11 | "<div>" | enclosingFunctionBody | tainted document location search $ <div> tainted </div> $ <div> tainted </div> $ <div> concat tainted concat </div> $ <div> tainted </div> join $ <div id=" tainted "/> $ <div id=" tainted "/> $ <div id=" concat tainted concat /> $ <div id=" tainted "/> join indirection1 attrs <div align=" attrs defaultattr left "> content </div> indirection2 attrs <div align=" concat attrs defaultattr left concat "> concat content concat </div> $ indirection1 document location search attrs $ indirection2 document location search attrs |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:7:5:7:11 | "<div>" | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:7:5:7:11 | "<div>" | fileImports |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:7:5:7:11 | "<div>" | receiverName |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:7:5:7:11 | "<div>" | stringConcatenatedWith |  -endpoint- tainted + '</div>' |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:7:14:7:20 | tainted | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:7:14:7:20 | tainted | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:7:14:7:20 | tainted | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:7:14:7:20 | tainted | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:7:14:7:20 | tainted | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:7:14:7:20 | tainted | contextFunctionInterfaces | indirection1(attrs)\nindirection2(attrs)\ntest() |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:7:14:7:20 | tainted | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:7:14:7:20 | tainted | enclosingFunctionBody | tainted document location search $ <div> tainted </div> $ <div> tainted </div> $ <div> concat tainted concat </div> $ <div> tainted </div> join $ <div id=" tainted "/> $ <div id=" tainted "/> $ <div id=" concat tainted concat /> $ <div id=" tainted "/> join indirection1 attrs <div align=" attrs defaultattr left "> content </div> indirection2 attrs <div align=" concat attrs defaultattr left concat "> concat content concat </div> $ indirection1 document location search attrs $ indirection2 document location search attrs |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:7:14:7:20 | tainted | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:7:14:7:20 | tainted | fileImports |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:7:14:7:20 | tainted | receiverName |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:7:14:7:20 | tainted | stringConcatenatedWith | '<div>' -endpoint- '</div>' |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:7:23:7:30 | "</div>" | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:7:23:7:30 | "</div>" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:7:23:7:30 | "</div>" | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:7:23:7:30 | "</div>" | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:7:23:7:30 | "</div>" | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:7:23:7:30 | "</div>" | contextFunctionInterfaces | indirection1(attrs)\nindirection2(attrs)\ntest() |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:7:23:7:30 | "</div>" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:7:23:7:30 | "</div>" | enclosingFunctionBody | tainted document location search $ <div> tainted </div> $ <div> tainted </div> $ <div> concat tainted concat </div> $ <div> tainted </div> join $ <div id=" tainted "/> $ <div id=" tainted "/> $ <div id=" concat tainted concat /> $ <div id=" tainted "/> join indirection1 attrs <div align=" attrs defaultattr left "> content </div> indirection2 attrs <div align=" concat attrs defaultattr left concat "> concat content concat </div> $ indirection1 document location search attrs $ indirection2 document location search attrs |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:7:23:7:30 | "</div>" | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:7:23:7:30 | "</div>" | fileImports |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:7:23:7:30 | "</div>" | receiverName |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:7:23:7:30 | "</div>" | stringConcatenatedWith | '<div>' + tainted -endpoint-  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:9:4:9:15 | "<div id=\\"" | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:9:4:9:15 | "<div id=\\"" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:9:4:9:15 | "<div id=\\"" | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:9:4:9:15 | "<div id=\\"" | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:9:4:9:15 | "<div id=\\"" | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:9:4:9:15 | "<div id=\\"" | contextFunctionInterfaces | indirection1(attrs)\nindirection2(attrs)\ntest() |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:9:4:9:15 | "<div id=\\"" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:9:4:9:15 | "<div id=\\"" | enclosingFunctionBody | tainted document location search $ <div> tainted </div> $ <div> tainted </div> $ <div> concat tainted concat </div> $ <div> tainted </div> join $ <div id=" tainted "/> $ <div id=" tainted "/> $ <div id=" concat tainted concat /> $ <div id=" tainted "/> join indirection1 attrs <div align=" attrs defaultattr left "> content </div> indirection2 attrs <div align=" concat attrs defaultattr left concat "> concat content concat </div> $ indirection1 document location search attrs $ indirection2 document location search attrs |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:9:4:9:15 | "<div id=\\"" | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:9:4:9:15 | "<div id=\\"" | fileImports |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:9:4:9:15 | "<div id=\\"" | receiverName |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:9:4:9:15 | "<div id=\\"" | stringConcatenatedWith |  -endpoint- tainted + '"/>' |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:9:4:9:34 | "<div i ...  "\\"/>" | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:9:4:9:34 | "<div i ...  "\\"/>" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:9:4:9:34 | "<div i ...  "\\"/>" | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:9:4:9:34 | "<div i ...  "\\"/>" | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:9:4:9:34 | "<div i ...  "\\"/>" | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:9:4:9:34 | "<div i ...  "\\"/>" | contextFunctionInterfaces | indirection1(attrs)\nindirection2(attrs)\ntest() |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:9:4:9:34 | "<div i ...  "\\"/>" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:9:4:9:34 | "<div i ...  "\\"/>" | enclosingFunctionBody | tainted document location search $ <div> tainted </div> $ <div> tainted </div> $ <div> concat tainted concat </div> $ <div> tainted </div> join $ <div id=" tainted "/> $ <div id=" tainted "/> $ <div id=" concat tainted concat /> $ <div id=" tainted "/> join indirection1 attrs <div align=" attrs defaultattr left "> content </div> indirection2 attrs <div align=" concat attrs defaultattr left concat "> concat content concat </div> $ indirection1 document location search attrs $ indirection2 document location search attrs |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:9:4:9:34 | "<div i ...  "\\"/>" | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:9:4:9:34 | "<div i ...  "\\"/>" | fileImports |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:9:4:9:34 | "<div i ...  "\\"/>" | receiverName |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:9:4:9:34 | "<div i ...  "\\"/>" | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:9:19:9:25 | tainted | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:9:19:9:25 | tainted | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:9:19:9:25 | tainted | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:9:19:9:25 | tainted | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:9:19:9:25 | tainted | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:9:19:9:25 | tainted | contextFunctionInterfaces | indirection1(attrs)\nindirection2(attrs)\ntest() |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:9:19:9:25 | tainted | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:9:19:9:25 | tainted | enclosingFunctionBody | tainted document location search $ <div> tainted </div> $ <div> tainted </div> $ <div> concat tainted concat </div> $ <div> tainted </div> join $ <div id=" tainted "/> $ <div id=" tainted "/> $ <div id=" concat tainted concat /> $ <div id=" tainted "/> join indirection1 attrs <div align=" attrs defaultattr left "> content </div> indirection2 attrs <div align=" concat attrs defaultattr left concat "> concat content concat </div> $ indirection1 document location search attrs $ indirection2 document location search attrs |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:9:19:9:25 | tainted | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:9:19:9:25 | tainted | fileImports |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:9:19:9:25 | tainted | receiverName |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:9:19:9:25 | tainted | stringConcatenatedWith | '<div id="' -endpoint- '"/>' |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:9:29:9:34 | "\\"/>" | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:9:29:9:34 | "\\"/>" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:9:29:9:34 | "\\"/>" | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:9:29:9:34 | "\\"/>" | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:9:29:9:34 | "\\"/>" | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:9:29:9:34 | "\\"/>" | contextFunctionInterfaces | indirection1(attrs)\nindirection2(attrs)\ntest() |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:9:29:9:34 | "\\"/>" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:9:29:9:34 | "\\"/>" | enclosingFunctionBody | tainted document location search $ <div> tainted </div> $ <div> tainted </div> $ <div> concat tainted concat </div> $ <div> tainted </div> join $ <div id=" tainted "/> $ <div id=" tainted "/> $ <div id=" concat tainted concat /> $ <div id=" tainted "/> join indirection1 attrs <div align=" attrs defaultattr left "> content </div> indirection2 attrs <div align=" concat attrs defaultattr left concat "> concat content concat </div> $ indirection1 document location search attrs $ indirection2 document location search attrs |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:9:29:9:34 | "\\"/>" | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:9:29:9:34 | "\\"/>" | fileImports |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:9:29:9:34 | "\\"/>" | receiverName |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:9:29:9:34 | "\\"/>" | stringConcatenatedWith | '<div id="' + tainted -endpoint-  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:10:4:10:27 | `<div i ... ed}"/>` | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:10:4:10:27 | `<div i ... ed}"/>` | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:10:4:10:27 | `<div i ... ed}"/>` | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:10:4:10:27 | `<div i ... ed}"/>` | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:10:4:10:27 | `<div i ... ed}"/>` | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:10:4:10:27 | `<div i ... ed}"/>` | contextFunctionInterfaces | indirection1(attrs)\nindirection2(attrs)\ntest() |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:10:4:10:27 | `<div i ... ed}"/>` | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:10:4:10:27 | `<div i ... ed}"/>` | enclosingFunctionBody | tainted document location search $ <div> tainted </div> $ <div> tainted </div> $ <div> concat tainted concat </div> $ <div> tainted </div> join $ <div id=" tainted "/> $ <div id=" tainted "/> $ <div id=" concat tainted concat /> $ <div id=" tainted "/> join indirection1 attrs <div align=" attrs defaultattr left "> content </div> indirection2 attrs <div align=" concat attrs defaultattr left concat "> concat content concat </div> $ indirection1 document location search attrs $ indirection2 document location search attrs |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:10:4:10:27 | `<div i ... ed}"/>` | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:10:4:10:27 | `<div i ... ed}"/>` | fileImports |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:10:4:10:27 | `<div i ... ed}"/>` | receiverName |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:10:4:10:27 | `<div i ... ed}"/>` | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:10:5:10:13 | <div id=" | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:10:5:10:13 | <div id=" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:10:5:10:13 | <div id=" | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:10:5:10:13 | <div id=" | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:10:5:10:13 | <div id=" | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:10:5:10:13 | <div id=" | contextFunctionInterfaces | indirection1(attrs)\nindirection2(attrs)\ntest() |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:10:5:10:13 | <div id=" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:10:5:10:13 | <div id=" | enclosingFunctionBody | tainted document location search $ <div> tainted </div> $ <div> tainted </div> $ <div> concat tainted concat </div> $ <div> tainted </div> join $ <div id=" tainted "/> $ <div id=" tainted "/> $ <div id=" concat tainted concat /> $ <div id=" tainted "/> join indirection1 attrs <div align=" attrs defaultattr left "> content </div> indirection2 attrs <div align=" concat attrs defaultattr left concat "> concat content concat </div> $ indirection1 document location search attrs $ indirection2 document location search attrs |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:10:5:10:13 | <div id=" | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:10:5:10:13 | <div id=" | fileImports |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:10:5:10:13 | <div id=" | receiverName |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:10:5:10:13 | <div id=" | stringConcatenatedWith |  -endpoint- tainted + '"/>' |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:10:16:10:22 | tainted | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:10:16:10:22 | tainted | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:10:16:10:22 | tainted | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:10:16:10:22 | tainted | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:10:16:10:22 | tainted | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:10:16:10:22 | tainted | contextFunctionInterfaces | indirection1(attrs)\nindirection2(attrs)\ntest() |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:10:16:10:22 | tainted | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:10:16:10:22 | tainted | enclosingFunctionBody | tainted document location search $ <div> tainted </div> $ <div> tainted </div> $ <div> concat tainted concat </div> $ <div> tainted </div> join $ <div id=" tainted "/> $ <div id=" tainted "/> $ <div id=" concat tainted concat /> $ <div id=" tainted "/> join indirection1 attrs <div align=" attrs defaultattr left "> content </div> indirection2 attrs <div align=" concat attrs defaultattr left concat "> concat content concat </div> $ indirection1 document location search attrs $ indirection2 document location search attrs |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:10:16:10:22 | tainted | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:10:16:10:22 | tainted | fileImports |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:10:16:10:22 | tainted | receiverName |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:10:16:10:22 | tainted | stringConcatenatedWith | '<div id="' -endpoint- '"/>' |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:10:24:10:26 | "/> | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:10:24:10:26 | "/> | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:10:24:10:26 | "/> | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:10:24:10:26 | "/> | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:10:24:10:26 | "/> | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:10:24:10:26 | "/> | contextFunctionInterfaces | indirection1(attrs)\nindirection2(attrs)\ntest() |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:10:24:10:26 | "/> | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:10:24:10:26 | "/> | enclosingFunctionBody | tainted document location search $ <div> tainted </div> $ <div> tainted </div> $ <div> concat tainted concat </div> $ <div> tainted </div> join $ <div id=" tainted "/> $ <div id=" tainted "/> $ <div id=" concat tainted concat /> $ <div id=" tainted "/> join indirection1 attrs <div align=" attrs defaultattr left "> content </div> indirection2 attrs <div align=" concat attrs defaultattr left concat "> concat content concat </div> $ indirection1 document location search attrs $ indirection2 document location search attrs |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:10:24:10:26 | "/> | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:10:24:10:26 | "/> | fileImports |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:10:24:10:26 | "/> | receiverName |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:10:24:10:26 | "/> | stringConcatenatedWith | '<div id="' + tainted -endpoint-  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:11:4:11:15 | "<div id=\\"" | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:11:4:11:15 | "<div id=\\"" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:11:4:11:15 | "<div id=\\"" | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:11:4:11:15 | "<div id=\\"" | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:11:4:11:15 | "<div id=\\"" | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:11:4:11:15 | "<div id=\\"" | contextFunctionInterfaces | indirection1(attrs)\nindirection2(attrs)\ntest() |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:11:4:11:15 | "<div id=\\"" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:11:4:11:15 | "<div id=\\"" | enclosingFunctionBody | tainted document location search $ <div> tainted </div> $ <div> tainted </div> $ <div> concat tainted concat </div> $ <div> tainted </div> join $ <div id=" tainted "/> $ <div id=" tainted "/> $ <div id=" concat tainted concat /> $ <div id=" tainted "/> join indirection1 attrs <div align=" attrs defaultattr left "> content </div> indirection2 attrs <div align=" concat attrs defaultattr left concat "> concat content concat </div> $ indirection1 document location search attrs $ indirection2 document location search attrs |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:11:4:11:15 | "<div id=\\"" | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:11:4:11:15 | "<div id=\\"" | fileImports |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:11:4:11:15 | "<div id=\\"" | receiverName |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:11:4:11:15 | "<div id=\\"" | stringConcatenatedWith |  -endpoint- tainted + '/>' |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:11:4:11:44 | "<div i ... t("/>") | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:11:4:11:44 | "<div i ... t("/>") | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:11:4:11:44 | "<div i ... t("/>") | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:11:4:11:44 | "<div i ... t("/>") | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:11:4:11:44 | "<div i ... t("/>") | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:11:4:11:44 | "<div i ... t("/>") | contextFunctionInterfaces | indirection1(attrs)\nindirection2(attrs)\ntest() |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:11:4:11:44 | "<div i ... t("/>") | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:11:4:11:44 | "<div i ... t("/>") | enclosingFunctionBody | tainted document location search $ <div> tainted </div> $ <div> tainted </div> $ <div> concat tainted concat </div> $ <div> tainted </div> join $ <div id=" tainted "/> $ <div id=" tainted "/> $ <div id=" concat tainted concat /> $ <div id=" tainted "/> join indirection1 attrs <div align=" attrs defaultattr left "> content </div> indirection2 attrs <div align=" concat attrs defaultattr left concat "> concat content concat </div> $ indirection1 document location search attrs $ indirection2 document location search attrs |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:11:4:11:44 | "<div i ... t("/>") | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:11:4:11:44 | "<div i ... t("/>") | fileImports |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:11:4:11:44 | "<div i ... t("/>") | receiverName |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:11:4:11:44 | "<div i ... t("/>") | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:11:24:11:30 | tainted | CalleeFlexibleAccessPath | ?.concat |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:11:24:11:30 | tainted | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:11:24:11:30 | tainted | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:11:24:11:30 | tainted | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:11:24:11:30 | tainted | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:11:24:11:30 | tainted | contextFunctionInterfaces | indirection1(attrs)\nindirection2(attrs)\ntest() |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:11:24:11:30 | tainted | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:11:24:11:30 | tainted | enclosingFunctionBody | tainted document location search $ <div> tainted </div> $ <div> tainted </div> $ <div> concat tainted concat </div> $ <div> tainted </div> join $ <div id=" tainted "/> $ <div id=" tainted "/> $ <div id=" concat tainted concat /> $ <div id=" tainted "/> join indirection1 attrs <div align=" attrs defaultattr left "> content </div> indirection2 attrs <div align=" concat attrs defaultattr left concat "> concat content concat </div> $ indirection1 document location search attrs $ indirection2 document location search attrs |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:11:24:11:30 | tainted | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:11:24:11:30 | tainted | fileImports |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:11:24:11:30 | tainted | receiverName |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:11:24:11:30 | tainted | stringConcatenatedWith | '<div id="' -endpoint- '/>' |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:12:4:12:41 | ["<div  ... .join() | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:12:4:12:41 | ["<div  ... .join() | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:12:4:12:41 | ["<div  ... .join() | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:12:4:12:41 | ["<div  ... .join() | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:12:4:12:41 | ["<div  ... .join() | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:12:4:12:41 | ["<div  ... .join() | contextFunctionInterfaces | indirection1(attrs)\nindirection2(attrs)\ntest() |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:12:4:12:41 | ["<div  ... .join() | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:12:4:12:41 | ["<div  ... .join() | enclosingFunctionBody | tainted document location search $ <div> tainted </div> $ <div> tainted </div> $ <div> concat tainted concat </div> $ <div> tainted </div> join $ <div id=" tainted "/> $ <div id=" tainted "/> $ <div id=" concat tainted concat /> $ <div id=" tainted "/> join indirection1 attrs <div align=" attrs defaultattr left "> content </div> indirection2 attrs <div align=" concat attrs defaultattr left concat "> concat content concat </div> $ indirection1 document location search attrs $ indirection2 document location search attrs |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:12:4:12:41 | ["<div  ... .join() | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:12:4:12:41 | ["<div  ... .join() | fileImports |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:12:4:12:41 | ["<div  ... .join() | receiverName |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:12:4:12:41 | ["<div  ... .join() | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:12:5:12:16 | "<div id=\\"" | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:12:5:12:16 | "<div id=\\"" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:12:5:12:16 | "<div id=\\"" | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:12:5:12:16 | "<div id=\\"" | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:12:5:12:16 | "<div id=\\"" | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:12:5:12:16 | "<div id=\\"" | contextFunctionInterfaces | indirection1(attrs)\nindirection2(attrs)\ntest() |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:12:5:12:16 | "<div id=\\"" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:12:5:12:16 | "<div id=\\"" | enclosingFunctionBody | tainted document location search $ <div> tainted </div> $ <div> tainted </div> $ <div> concat tainted concat </div> $ <div> tainted </div> join $ <div id=" tainted "/> $ <div id=" tainted "/> $ <div id=" concat tainted concat /> $ <div id=" tainted "/> join indirection1 attrs <div align=" attrs defaultattr left "> content </div> indirection2 attrs <div align=" concat attrs defaultattr left concat "> concat content concat </div> $ indirection1 document location search attrs $ indirection2 document location search attrs |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:12:5:12:16 | "<div id=\\"" | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:12:5:12:16 | "<div id=\\"" | fileImports |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:12:5:12:16 | "<div id=\\"" | receiverName |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:12:5:12:16 | "<div id=\\"" | stringConcatenatedWith |  -endpoint- tainted + '"/>' |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:12:19:12:25 | tainted | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:12:19:12:25 | tainted | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:12:19:12:25 | tainted | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:12:19:12:25 | tainted | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:12:19:12:25 | tainted | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:12:19:12:25 | tainted | contextFunctionInterfaces | indirection1(attrs)\nindirection2(attrs)\ntest() |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:12:19:12:25 | tainted | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:12:19:12:25 | tainted | enclosingFunctionBody | tainted document location search $ <div> tainted </div> $ <div> tainted </div> $ <div> concat tainted concat </div> $ <div> tainted </div> join $ <div id=" tainted "/> $ <div id=" tainted "/> $ <div id=" concat tainted concat /> $ <div id=" tainted "/> join indirection1 attrs <div align=" attrs defaultattr left "> content </div> indirection2 attrs <div align=" concat attrs defaultattr left concat "> concat content concat </div> $ indirection1 document location search attrs $ indirection2 document location search attrs |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:12:19:12:25 | tainted | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:12:19:12:25 | tainted | fileImports |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:12:19:12:25 | tainted | receiverName |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:12:19:12:25 | tainted | stringConcatenatedWith | '<div id="' -endpoint- '"/>' |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:12:28:12:33 | "\\"/>" | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:12:28:12:33 | "\\"/>" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:12:28:12:33 | "\\"/>" | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:12:28:12:33 | "\\"/>" | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:12:28:12:33 | "\\"/>" | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:12:28:12:33 | "\\"/>" | contextFunctionInterfaces | indirection1(attrs)\nindirection2(attrs)\ntest() |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:12:28:12:33 | "\\"/>" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:12:28:12:33 | "\\"/>" | enclosingFunctionBody | tainted document location search $ <div> tainted </div> $ <div> tainted </div> $ <div> concat tainted concat </div> $ <div> tainted </div> join $ <div id=" tainted "/> $ <div id=" tainted "/> $ <div id=" concat tainted concat /> $ <div id=" tainted "/> join indirection1 attrs <div align=" attrs defaultattr left "> content </div> indirection2 attrs <div align=" concat attrs defaultattr left concat "> concat content concat </div> $ indirection1 document location search attrs $ indirection2 document location search attrs |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:12:28:12:33 | "\\"/>" | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:12:28:12:33 | "\\"/>" | fileImports |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:12:28:12:33 | "\\"/>" | receiverName |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:12:28:12:33 | "\\"/>" | stringConcatenatedWith | '<div id="' + tainted -endpoint-  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:15:10:15:23 | '<div align="' | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:15:10:15:23 | '<div align="' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:15:10:15:23 | '<div align="' | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:15:10:15:23 | '<div align="' | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:15:10:15:23 | '<div align="' | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:15:10:15:23 | '<div align="' | contextFunctionInterfaces | indirection1(attrs)\nindirection2(attrs)\ntest() |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:15:10:15:23 | '<div align="' | contextSurroundingFunctionParameters | (attrs) |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:15:10:15:23 | '<div align="' | enclosingFunctionBody | tainted document location search $ <div> tainted </div> $ <div> tainted </div> $ <div> concat tainted concat </div> $ <div> tainted </div> join $ <div id=" tainted "/> $ <div id=" tainted "/> $ <div id=" concat tainted concat /> $ <div id=" tainted "/> join indirection1 attrs <div align=" attrs defaultattr left "> content </div> indirection2 attrs <div align=" concat attrs defaultattr left concat "> concat content concat </div> $ indirection1 document location search attrs $ indirection2 document location search attrs |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:15:10:15:23 | '<div align="' | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:15:10:15:23 | '<div align="' | fileImports |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:15:10:15:23 | '<div align="' | receiverName |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:15:10:15:23 | '<div align="' | stringConcatenatedWith |  -endpoint- 'left' + '">' + content + '</div>' |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:15:27:15:55 | (attrs. ... 'left') | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:15:27:15:55 | (attrs. ... 'left') | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:15:27:15:55 | (attrs. ... 'left') | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:15:27:15:55 | (attrs. ... 'left') | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:15:27:15:55 | (attrs. ... 'left') | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:15:27:15:55 | (attrs. ... 'left') | contextFunctionInterfaces | indirection1(attrs)\nindirection2(attrs)\ntest() |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:15:27:15:55 | (attrs. ... 'left') | contextSurroundingFunctionParameters | (attrs) |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:15:27:15:55 | (attrs. ... 'left') | enclosingFunctionBody | tainted document location search $ <div> tainted </div> $ <div> tainted </div> $ <div> concat tainted concat </div> $ <div> tainted </div> join $ <div id=" tainted "/> $ <div id=" tainted "/> $ <div id=" concat tainted concat /> $ <div id=" tainted "/> join indirection1 attrs <div align=" attrs defaultattr left "> content </div> indirection2 attrs <div align=" concat attrs defaultattr left concat "> concat content concat </div> $ indirection1 document location search attrs $ indirection2 document location search attrs |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:15:27:15:55 | (attrs. ... 'left') | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:15:27:15:55 | (attrs. ... 'left') | fileImports |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:15:27:15:55 | (attrs. ... 'left') | receiverName |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:15:27:15:55 | (attrs. ... 'left') | stringConcatenatedWith | '<div align="' -endpoint- '">' + content + '</div>' |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:15:59:15:62 | '">' | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:15:59:15:62 | '">' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:15:59:15:62 | '">' | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:15:59:15:62 | '">' | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:15:59:15:62 | '">' | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:15:59:15:62 | '">' | contextFunctionInterfaces | indirection1(attrs)\nindirection2(attrs)\ntest() |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:15:59:15:62 | '">' | contextSurroundingFunctionParameters | (attrs) |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:15:59:15:62 | '">' | enclosingFunctionBody | tainted document location search $ <div> tainted </div> $ <div> tainted </div> $ <div> concat tainted concat </div> $ <div> tainted </div> join $ <div id=" tainted "/> $ <div id=" tainted "/> $ <div id=" concat tainted concat /> $ <div id=" tainted "/> join indirection1 attrs <div align=" attrs defaultattr left "> content </div> indirection2 attrs <div align=" concat attrs defaultattr left concat "> concat content concat </div> $ indirection1 document location search attrs $ indirection2 document location search attrs |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:15:59:15:62 | '">' | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:15:59:15:62 | '">' | fileImports |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:15:59:15:62 | '">' | receiverName |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:15:59:15:62 | '">' | stringConcatenatedWith | '<div align="' + 'left' -endpoint- content + '</div>' |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:15:66:15:72 | content | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:15:66:15:72 | content | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:15:66:15:72 | content | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:15:66:15:72 | content | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:15:66:15:72 | content | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:15:66:15:72 | content | contextFunctionInterfaces | indirection1(attrs)\nindirection2(attrs)\ntest() |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:15:66:15:72 | content | contextSurroundingFunctionParameters | (attrs) |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:15:66:15:72 | content | enclosingFunctionBody | tainted document location search $ <div> tainted </div> $ <div> tainted </div> $ <div> concat tainted concat </div> $ <div> tainted </div> join $ <div id=" tainted "/> $ <div id=" tainted "/> $ <div id=" concat tainted concat /> $ <div id=" tainted "/> join indirection1 attrs <div align=" attrs defaultattr left "> content </div> indirection2 attrs <div align=" concat attrs defaultattr left concat "> concat content concat </div> $ indirection1 document location search attrs $ indirection2 document location search attrs |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:15:66:15:72 | content | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:15:66:15:72 | content | fileImports |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:15:66:15:72 | content | receiverName |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:15:66:15:72 | content | stringConcatenatedWith | '<div align="' + 'left' + '">' -endpoint- '</div>' |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:15:76:15:83 | '</div>' | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:15:76:15:83 | '</div>' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:15:76:15:83 | '</div>' | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:15:76:15:83 | '</div>' | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:15:76:15:83 | '</div>' | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:15:76:15:83 | '</div>' | contextFunctionInterfaces | indirection1(attrs)\nindirection2(attrs)\ntest() |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:15:76:15:83 | '</div>' | contextSurroundingFunctionParameters | (attrs) |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:15:76:15:83 | '</div>' | enclosingFunctionBody | tainted document location search $ <div> tainted </div> $ <div> tainted </div> $ <div> concat tainted concat </div> $ <div> tainted </div> join $ <div id=" tainted "/> $ <div id=" tainted "/> $ <div id=" concat tainted concat /> $ <div id=" tainted "/> join indirection1 attrs <div align=" attrs defaultattr left "> content </div> indirection2 attrs <div align=" concat attrs defaultattr left concat "> concat content concat </div> $ indirection1 document location search attrs $ indirection2 document location search attrs |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:15:76:15:83 | '</div>' | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:15:76:15:83 | '</div>' | fileImports |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:15:76:15:83 | '</div>' | receiverName |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:15:76:15:83 | '</div>' | stringConcatenatedWith | '<div align="' + 'left' + '">' + content -endpoint-  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:18:10:18:23 | '<div align="' | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:18:10:18:23 | '<div align="' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:18:10:18:23 | '<div align="' | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:18:10:18:23 | '<div align="' | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:18:10:18:23 | '<div align="' | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:18:10:18:23 | '<div align="' | contextFunctionInterfaces | indirection1(attrs)\nindirection2(attrs)\ntest() |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:18:10:18:23 | '<div align="' | contextSurroundingFunctionParameters | (attrs) |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:18:10:18:23 | '<div align="' | enclosingFunctionBody | tainted document location search $ <div> tainted </div> $ <div> tainted </div> $ <div> concat tainted concat </div> $ <div> tainted </div> join $ <div id=" tainted "/> $ <div id=" tainted "/> $ <div id=" concat tainted concat /> $ <div id=" tainted "/> join indirection1 attrs <div align=" attrs defaultattr left "> content </div> indirection2 attrs <div align=" concat attrs defaultattr left concat "> concat content concat </div> $ indirection1 document location search attrs $ indirection2 document location search attrs |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:18:10:18:23 | '<div align="' | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:18:10:18:23 | '<div align="' | fileImports |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:18:10:18:23 | '<div align="' | receiverName |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:18:10:18:23 | '<div align="' | stringConcatenatedWith |  -endpoint- 'left' + '">' + content + '</div>' |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:18:32:18:58 | attrs.d ...  'left' | CalleeFlexibleAccessPath | ?.concat |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:18:32:18:58 | attrs.d ...  'left' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:18:32:18:58 | attrs.d ...  'left' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:18:32:18:58 | attrs.d ...  'left' | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:18:32:18:58 | attrs.d ...  'left' | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:18:32:18:58 | attrs.d ...  'left' | contextFunctionInterfaces | indirection1(attrs)\nindirection2(attrs)\ntest() |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:18:32:18:58 | attrs.d ...  'left' | contextSurroundingFunctionParameters | (attrs) |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:18:32:18:58 | attrs.d ...  'left' | enclosingFunctionBody | tainted document location search $ <div> tainted </div> $ <div> tainted </div> $ <div> concat tainted concat </div> $ <div> tainted </div> join $ <div id=" tainted "/> $ <div id=" tainted "/> $ <div id=" concat tainted concat /> $ <div id=" tainted "/> join indirection1 attrs <div align=" attrs defaultattr left "> content </div> indirection2 attrs <div align=" concat attrs defaultattr left concat "> concat content concat </div> $ indirection1 document location search attrs $ indirection2 document location search attrs |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:18:32:18:58 | attrs.d ...  'left' | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:18:32:18:58 | attrs.d ...  'left' | fileImports |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:18:32:18:58 | attrs.d ...  'left' | receiverName |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:18:32:18:58 | attrs.d ...  'left' | stringConcatenatedWith | '<div align="' -endpoint- '">' + content + '</div>' |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:18:68:18:71 | '">' | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:18:68:18:71 | '">' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:18:68:18:71 | '">' | InputArgumentIndex |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:18:68:18:71 | '">' | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:18:68:18:71 | '">' | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:18:68:18:71 | '">' | contextFunctionInterfaces | indirection1(attrs)\nindirection2(attrs)\ntest() |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:18:68:18:71 | '">' | contextSurroundingFunctionParameters | (attrs) |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:18:68:18:71 | '">' | enclosingFunctionBody | tainted document location search $ <div> tainted </div> $ <div> tainted </div> $ <div> concat tainted concat </div> $ <div> tainted </div> join $ <div id=" tainted "/> $ <div id=" tainted "/> $ <div id=" concat tainted concat /> $ <div id=" tainted "/> join indirection1 attrs <div align=" attrs defaultattr left "> content </div> indirection2 attrs <div align=" concat attrs defaultattr left concat "> concat content concat </div> $ indirection1 document location search attrs $ indirection2 document location search attrs |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:18:68:18:71 | '">' | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:18:68:18:71 | '">' | fileImports |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:18:68:18:71 | '">' | receiverName |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:18:68:18:71 | '">' | stringConcatenatedWith | '<div align="' + 'left' -endpoint- content + '</div>' |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:18:80:18:86 | content | CalleeFlexibleAccessPath | ?.concat |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:18:80:18:86 | content | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:18:80:18:86 | content | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:18:80:18:86 | content | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:18:80:18:86 | content | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:18:80:18:86 | content | contextFunctionInterfaces | indirection1(attrs)\nindirection2(attrs)\ntest() |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:18:80:18:86 | content | contextSurroundingFunctionParameters | (attrs) |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:18:80:18:86 | content | enclosingFunctionBody | tainted document location search $ <div> tainted </div> $ <div> tainted </div> $ <div> concat tainted concat </div> $ <div> tainted </div> join $ <div id=" tainted "/> $ <div id=" tainted "/> $ <div id=" concat tainted concat /> $ <div id=" tainted "/> join indirection1 attrs <div align=" attrs defaultattr left "> content </div> indirection2 attrs <div align=" concat attrs defaultattr left concat "> concat content concat </div> $ indirection1 document location search attrs $ indirection2 document location search attrs |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:18:80:18:86 | content | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:18:80:18:86 | content | fileImports |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:18:80:18:86 | content | receiverName |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:18:80:18:86 | content | stringConcatenatedWith | '<div align="' + 'left' + '">' -endpoint- '</div>' |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:20:4:20:47 | indirec ... .attrs) | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:20:4:20:47 | indirec ... .attrs) | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:20:4:20:47 | indirec ... .attrs) | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:20:4:20:47 | indirec ... .attrs) | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:20:4:20:47 | indirec ... .attrs) | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:20:4:20:47 | indirec ... .attrs) | contextFunctionInterfaces | indirection1(attrs)\nindirection2(attrs)\ntest() |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:20:4:20:47 | indirec ... .attrs) | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:20:4:20:47 | indirec ... .attrs) | enclosingFunctionBody | tainted document location search $ <div> tainted </div> $ <div> tainted </div> $ <div> concat tainted concat </div> $ <div> tainted </div> join $ <div id=" tainted "/> $ <div id=" tainted "/> $ <div id=" concat tainted concat /> $ <div id=" tainted "/> join indirection1 attrs <div align=" attrs defaultattr left "> content </div> indirection2 attrs <div align=" concat attrs defaultattr left concat "> concat content concat </div> $ indirection1 document location search attrs $ indirection2 document location search attrs |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:20:4:20:47 | indirec ... .attrs) | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:20:4:20:47 | indirec ... .attrs) | fileImports |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:20:4:20:47 | indirec ... .attrs) | receiverName |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:20:4:20:47 | indirec ... .attrs) | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:21:4:21:47 | indirec ... .attrs) | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:21:4:21:47 | indirec ... .attrs) | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:21:4:21:47 | indirec ... .attrs) | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:21:4:21:47 | indirec ... .attrs) | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:21:4:21:47 | indirec ... .attrs) | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:21:4:21:47 | indirec ... .attrs) | contextFunctionInterfaces | indirection1(attrs)\nindirection2(attrs)\ntest() |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:21:4:21:47 | indirec ... .attrs) | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:21:4:21:47 | indirec ... .attrs) | enclosingFunctionBody | tainted document location search $ <div> tainted </div> $ <div> tainted </div> $ <div> concat tainted concat </div> $ <div> tainted </div> join $ <div id=" tainted "/> $ <div id=" tainted "/> $ <div id=" concat tainted concat /> $ <div id=" tainted "/> join indirection1 attrs <div align=" attrs defaultattr left "> content </div> indirection2 attrs <div align=" concat attrs defaultattr left concat "> concat content concat </div> $ indirection1 document location search attrs $ indirection2 document location search attrs |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:21:4:21:47 | indirec ... .attrs) | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:21:4:21:47 | indirec ... .attrs) | fileImports |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:21:4:21:47 | indirec ... .attrs) | receiverName |  |
-| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:21:4:21:47 | indirec ... .attrs) | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/winjs.js:2:52:2:52 | 1 | CalleeFlexibleAccessPath | document.location.search.substring |
-| autogenerated/Xss/DomBasedXss/winjs.js:2:52:2:52 | 1 | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/winjs.js:2:52:2:52 | 1 | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/winjs.js:2:52:2:52 | 1 | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/winjs.js:2:52:2:52 | 1 | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/winjs.js:2:52:2:52 | 1 | contextFunctionInterfaces | test(elt) |
-| autogenerated/Xss/DomBasedXss/winjs.js:2:52:2:52 | 1 | contextSurroundingFunctionParameters | (elt) |
-| autogenerated/Xss/DomBasedXss/winjs.js:2:52:2:52 | 1 | enclosingFunctionBody | elt tainted document location search substring 1 WinJS Utilities setInnerHTMLUnsafe elt tainted WinJS Utilities setOuterHTMLUnsafe elt tainted |
-| autogenerated/Xss/DomBasedXss/winjs.js:2:52:2:52 | 1 | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/winjs.js:2:52:2:52 | 1 | fileImports |  |
-| autogenerated/Xss/DomBasedXss/winjs.js:2:52:2:52 | 1 | receiverName |  |
-| autogenerated/Xss/DomBasedXss/winjs.js:2:52:2:52 | 1 | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/winjs.js:3:43:3:49 | tainted | CalleeFlexibleAccessPath | WinJS.Utilities.setInnerHTMLUnsafe |
-| autogenerated/Xss/DomBasedXss/winjs.js:3:43:3:49 | tainted | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/winjs.js:3:43:3:49 | tainted | InputArgumentIndex | 1 |
-| autogenerated/Xss/DomBasedXss/winjs.js:3:43:3:49 | tainted | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/winjs.js:3:43:3:49 | tainted | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/winjs.js:3:43:3:49 | tainted | contextFunctionInterfaces | test(elt) |
-| autogenerated/Xss/DomBasedXss/winjs.js:3:43:3:49 | tainted | contextSurroundingFunctionParameters | (elt) |
-| autogenerated/Xss/DomBasedXss/winjs.js:3:43:3:49 | tainted | enclosingFunctionBody | elt tainted document location search substring 1 WinJS Utilities setInnerHTMLUnsafe elt tainted WinJS Utilities setOuterHTMLUnsafe elt tainted |
-| autogenerated/Xss/DomBasedXss/winjs.js:3:43:3:49 | tainted | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/winjs.js:3:43:3:49 | tainted | fileImports |  |
-| autogenerated/Xss/DomBasedXss/winjs.js:3:43:3:49 | tainted | receiverName |  |
-| autogenerated/Xss/DomBasedXss/winjs.js:3:43:3:49 | tainted | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/winjs.js:4:43:4:49 | tainted | CalleeFlexibleAccessPath | WinJS.Utilities.setOuterHTMLUnsafe |
-| autogenerated/Xss/DomBasedXss/winjs.js:4:43:4:49 | tainted | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/winjs.js:4:43:4:49 | tainted | InputArgumentIndex | 1 |
-| autogenerated/Xss/DomBasedXss/winjs.js:4:43:4:49 | tainted | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/winjs.js:4:43:4:49 | tainted | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/winjs.js:4:43:4:49 | tainted | contextFunctionInterfaces | test(elt) |
-| autogenerated/Xss/DomBasedXss/winjs.js:4:43:4:49 | tainted | contextSurroundingFunctionParameters | (elt) |
-| autogenerated/Xss/DomBasedXss/winjs.js:4:43:4:49 | tainted | enclosingFunctionBody | elt tainted document location search substring 1 WinJS Utilities setInnerHTMLUnsafe elt tainted WinJS Utilities setOuterHTMLUnsafe elt tainted |
-| autogenerated/Xss/DomBasedXss/winjs.js:4:43:4:49 | tainted | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/winjs.js:4:43:4:49 | tainted | fileImports |  |
-| autogenerated/Xss/DomBasedXss/winjs.js:4:43:4:49 | tainted | receiverName |  |
-| autogenerated/Xss/DomBasedXss/winjs.js:4:43:4:49 | tainted | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:1:3:1:10 | document | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:1:3:1:10 | document | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:1:3:1:10 | document | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:1:3:1:10 | document | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:1:3:1:10 | document | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:1:3:1:10 | document | contextFunctionInterfaces | onreadystatechange() |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:1:3:1:10 | document | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:1:3:1:10 | document | enclosingFunctionBody |  |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:1:3:1:10 | document | enclosingFunctionName |  |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:1:3:1:10 | document | fileImports |  |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:1:3:1:10 | document | receiverName |  |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:1:3:1:10 | document | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:1:19:16:1 | functio ...     }\\n} | CalleeFlexibleAccessPath | $().ready |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:1:19:16:1 | functio ...     }\\n} | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:1:19:16:1 | functio ...     }\\n} | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:1:19:16:1 | functio ...     }\\n} | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:1:19:16:1 | functio ...     }\\n} | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:1:19:16:1 | functio ...     }\\n} | contextFunctionInterfaces | onreadystatechange() |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:1:19:16:1 | functio ...     }\\n} | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:1:19:16:1 | functio ...     }\\n} | enclosingFunctionBody |  |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:1:19:16:1 | functio ...     }\\n} | enclosingFunctionName |  |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:1:19:16:1 | functio ...     }\\n} | fileImports |  |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:1:19:16:1 | functio ...     }\\n} | receiverName |  |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:1:19:16:1 | functio ...     }\\n} | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:4:21:4:23 | url | CalleeFlexibleAccessPath | xhr.open |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:4:21:4:23 | url | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:4:21:4:23 | url | InputArgumentIndex | 1 |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:4:21:4:23 | url | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:4:21:4:23 | url | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:4:21:4:23 | url | contextFunctionInterfaces | onreadystatechange() |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:4:21:4:23 | url | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:4:21:4:23 | url | enclosingFunctionBody | xhr XMLHttpRequest url {{ some_url }} xhr open GET url true xhr setRequestHeader Content-Type application/json xhr onreadystatechange xhr readyState 4 json JSON parse xhr responseText $ #myThing html json message xhr send error console log error |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:4:21:4:23 | url | enclosingFunctionName | ready#functionalargument |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:4:21:4:23 | url | fileImports |  |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:4:21:4:23 | url | receiverName | xhr |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:4:21:4:23 | url | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:5:26:5:39 | "Content-Type" | CalleeFlexibleAccessPath | xhr.setRequestHeader |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:5:26:5:39 | "Content-Type" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:5:26:5:39 | "Content-Type" | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:5:26:5:39 | "Content-Type" | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:5:26:5:39 | "Content-Type" | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:5:26:5:39 | "Content-Type" | contextFunctionInterfaces | onreadystatechange() |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:5:26:5:39 | "Content-Type" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:5:26:5:39 | "Content-Type" | enclosingFunctionBody | xhr XMLHttpRequest url {{ some_url }} xhr open GET url true xhr setRequestHeader Content-Type application/json xhr onreadystatechange xhr readyState 4 json JSON parse xhr responseText $ #myThing html json message xhr send error console log error |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:5:26:5:39 | "Content-Type" | enclosingFunctionName | ready#functionalargument |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:5:26:5:39 | "Content-Type" | fileImports |  |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:5:26:5:39 | "Content-Type" | receiverName | xhr |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:5:26:5:39 | "Content-Type" | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:5:42:5:59 | "application/json" | CalleeFlexibleAccessPath | xhr.setRequestHeader |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:5:42:5:59 | "application/json" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:5:42:5:59 | "application/json" | InputArgumentIndex | 1 |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:5:42:5:59 | "application/json" | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:5:42:5:59 | "application/json" | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:5:42:5:59 | "application/json" | contextFunctionInterfaces | onreadystatechange() |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:5:42:5:59 | "application/json" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:5:42:5:59 | "application/json" | enclosingFunctionBody | xhr XMLHttpRequest url {{ some_url }} xhr open GET url true xhr setRequestHeader Content-Type application/json xhr onreadystatechange xhr readyState 4 json JSON parse xhr responseText $ #myThing html json message xhr send error console log error |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:5:42:5:59 | "application/json" | enclosingFunctionName | ready#functionalargument |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:5:42:5:59 | "application/json" | fileImports |  |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:5:42:5:59 | "application/json" | receiverName | xhr |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:5:42:5:59 | "application/json" | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:9:11:9:20 | "#myThing" | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:9:11:9:20 | "#myThing" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:9:11:9:20 | "#myThing" | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:9:11:9:20 | "#myThing" | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:9:11:9:20 | "#myThing" | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:9:11:9:20 | "#myThing" | contextFunctionInterfaces | onreadystatechange() |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:9:11:9:20 | "#myThing" | contextSurroundingFunctionParameters | ()\n() |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:9:11:9:20 | "#myThing" | enclosingFunctionBody | xhr XMLHttpRequest url {{ some_url }} xhr open GET url true xhr setRequestHeader Content-Type application/json xhr onreadystatechange xhr readyState 4 json JSON parse xhr responseText $ #myThing html json message xhr send error console log error |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:9:11:9:20 | "#myThing" | enclosingFunctionName | ready#functionalargument |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:9:11:9:20 | "#myThing" | fileImports |  |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:9:11:9:20 | "#myThing" | receiverName |  |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:9:11:9:20 | "#myThing" | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:9:28:9:39 | json.message | CalleeFlexibleAccessPath | $().html |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:9:28:9:39 | json.message | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:9:28:9:39 | json.message | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:9:28:9:39 | json.message | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:9:28:9:39 | json.message | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:9:28:9:39 | json.message | contextFunctionInterfaces | onreadystatechange() |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:9:28:9:39 | json.message | contextSurroundingFunctionParameters | ()\n() |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:9:28:9:39 | json.message | enclosingFunctionBody | xhr XMLHttpRequest url {{ some_url }} xhr open GET url true xhr setRequestHeader Content-Type application/json xhr onreadystatechange xhr readyState 4 json JSON parse xhr responseText $ #myThing html json message xhr send error console log error |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:9:28:9:39 | json.message | enclosingFunctionName | ready#functionalargument |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:9:28:9:39 | json.message | fileImports |  |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:9:28:9:39 | json.message | receiverName |  |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:9:28:9:39 | json.message | stringConcatenatedWith |  |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:14:21:14:25 | error | CalleeFlexibleAccessPath | console.log |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:14:21:14:25 | error | InputAccessPathFromCallee |  |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:14:21:14:25 | error | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:14:21:14:25 | error | assignedToPropName |  |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:14:21:14:25 | error | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:14:21:14:25 | error | contextFunctionInterfaces | onreadystatechange() |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:14:21:14:25 | error | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:14:21:14:25 | error | enclosingFunctionBody | xhr XMLHttpRequest url {{ some_url }} xhr open GET url true xhr setRequestHeader Content-Type application/json xhr onreadystatechange xhr readyState 4 json JSON parse xhr responseText $ #myThing html json message xhr send error console log error |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:14:21:14:25 | error | enclosingFunctionName | ready#functionalargument |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:14:21:14:25 | error | fileImports |  |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:14:21:14:25 | error | receiverName | console |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:14:21:14:25 | error | stringConcatenatedWith |  |
-| autogenerated/Xss/ExceptionXss/ajv.js:7:15:7:70 | {type:  ... mber'}} | CalleeFlexibleAccessPath | ajv.addSchema |
-| autogenerated/Xss/ExceptionXss/ajv.js:7:15:7:70 | {type:  ... mber'}} | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ExceptionXss/ajv.js:7:15:7:70 | {type:  ... mber'}} | InputArgumentIndex | 0 |
-| autogenerated/Xss/ExceptionXss/ajv.js:7:15:7:70 | {type:  ... mber'}} | assignedToPropName |  |
-| autogenerated/Xss/ExceptionXss/ajv.js:7:15:7:70 | {type:  ... mber'}} | calleeImports | ajv |
-| autogenerated/Xss/ExceptionXss/ajv.js:7:15:7:70 | {type:  ... mber'}} | contextFunctionInterfaces |  |
-| autogenerated/Xss/ExceptionXss/ajv.js:7:15:7:70 | {type:  ... mber'}} | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/ExceptionXss/ajv.js:7:15:7:70 | {type:  ... mber'}} | enclosingFunctionBody |  |
-| autogenerated/Xss/ExceptionXss/ajv.js:7:15:7:70 | {type:  ... mber'}} | enclosingFunctionName |  |
-| autogenerated/Xss/ExceptionXss/ajv.js:7:15:7:70 | {type:  ... mber'}} | fileImports | ajv express |
-| autogenerated/Xss/ExceptionXss/ajv.js:7:15:7:70 | {type:  ... mber'}} | receiverName | ajv |
-| autogenerated/Xss/ExceptionXss/ajv.js:7:15:7:70 | {type:  ... mber'}} | stringConcatenatedWith |  |
-| autogenerated/Xss/ExceptionXss/ajv.js:7:22:7:29 | 'object' | CalleeFlexibleAccessPath | ajv.addSchema |
-| autogenerated/Xss/ExceptionXss/ajv.js:7:22:7:29 | 'object' | InputAccessPathFromCallee | 0.type |
-| autogenerated/Xss/ExceptionXss/ajv.js:7:22:7:29 | 'object' | InputArgumentIndex | 0 |
-| autogenerated/Xss/ExceptionXss/ajv.js:7:22:7:29 | 'object' | assignedToPropName | type |
-| autogenerated/Xss/ExceptionXss/ajv.js:7:22:7:29 | 'object' | calleeImports | ajv |
-| autogenerated/Xss/ExceptionXss/ajv.js:7:22:7:29 | 'object' | contextFunctionInterfaces |  |
-| autogenerated/Xss/ExceptionXss/ajv.js:7:22:7:29 | 'object' | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/ExceptionXss/ajv.js:7:22:7:29 | 'object' | enclosingFunctionBody |  |
-| autogenerated/Xss/ExceptionXss/ajv.js:7:22:7:29 | 'object' | enclosingFunctionName |  |
-| autogenerated/Xss/ExceptionXss/ajv.js:7:22:7:29 | 'object' | fileImports | ajv express |
-| autogenerated/Xss/ExceptionXss/ajv.js:7:22:7:29 | 'object' | receiverName |  |
-| autogenerated/Xss/ExceptionXss/ajv.js:7:22:7:29 | 'object' | stringConcatenatedWith |  |
-| autogenerated/Xss/ExceptionXss/ajv.js:7:54:7:69 | {type: 'number'} | CalleeFlexibleAccessPath | ajv.addSchema |
-| autogenerated/Xss/ExceptionXss/ajv.js:7:54:7:69 | {type: 'number'} | InputAccessPathFromCallee | 0.additionalProperties |
-| autogenerated/Xss/ExceptionXss/ajv.js:7:54:7:69 | {type: 'number'} | InputArgumentIndex | 0 |
-| autogenerated/Xss/ExceptionXss/ajv.js:7:54:7:69 | {type: 'number'} | assignedToPropName | additionalProperties |
-| autogenerated/Xss/ExceptionXss/ajv.js:7:54:7:69 | {type: 'number'} | calleeImports | ajv |
-| autogenerated/Xss/ExceptionXss/ajv.js:7:54:7:69 | {type: 'number'} | contextFunctionInterfaces |  |
-| autogenerated/Xss/ExceptionXss/ajv.js:7:54:7:69 | {type: 'number'} | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/ExceptionXss/ajv.js:7:54:7:69 | {type: 'number'} | enclosingFunctionBody |  |
-| autogenerated/Xss/ExceptionXss/ajv.js:7:54:7:69 | {type: 'number'} | enclosingFunctionName |  |
-| autogenerated/Xss/ExceptionXss/ajv.js:7:54:7:69 | {type: 'number'} | fileImports | ajv express |
-| autogenerated/Xss/ExceptionXss/ajv.js:7:54:7:69 | {type: 'number'} | receiverName |  |
-| autogenerated/Xss/ExceptionXss/ajv.js:7:54:7:69 | {type: 'number'} | stringConcatenatedWith |  |
-| autogenerated/Xss/ExceptionXss/ajv.js:7:61:7:68 | 'number' | CalleeFlexibleAccessPath | ajv.addSchema |
-| autogenerated/Xss/ExceptionXss/ajv.js:7:61:7:68 | 'number' | InputAccessPathFromCallee | 0.additionalProperties.type |
-| autogenerated/Xss/ExceptionXss/ajv.js:7:61:7:68 | 'number' | InputArgumentIndex | 0 |
-| autogenerated/Xss/ExceptionXss/ajv.js:7:61:7:68 | 'number' | assignedToPropName | type |
-| autogenerated/Xss/ExceptionXss/ajv.js:7:61:7:68 | 'number' | calleeImports | ajv |
-| autogenerated/Xss/ExceptionXss/ajv.js:7:61:7:68 | 'number' | contextFunctionInterfaces |  |
-| autogenerated/Xss/ExceptionXss/ajv.js:7:61:7:68 | 'number' | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/ExceptionXss/ajv.js:7:61:7:68 | 'number' | enclosingFunctionBody |  |
-| autogenerated/Xss/ExceptionXss/ajv.js:7:61:7:68 | 'number' | enclosingFunctionName |  |
-| autogenerated/Xss/ExceptionXss/ajv.js:7:61:7:68 | 'number' | fileImports | ajv express |
-| autogenerated/Xss/ExceptionXss/ajv.js:7:61:7:68 | 'number' | receiverName |  |
-| autogenerated/Xss/ExceptionXss/ajv.js:7:61:7:68 | 'number' | stringConcatenatedWith |  |
-| autogenerated/Xss/ExceptionXss/ajv.js:7:73:7:82 | 'pollData' | CalleeFlexibleAccessPath | ajv.addSchema |
-| autogenerated/Xss/ExceptionXss/ajv.js:7:73:7:82 | 'pollData' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ExceptionXss/ajv.js:7:73:7:82 | 'pollData' | InputArgumentIndex | 1 |
-| autogenerated/Xss/ExceptionXss/ajv.js:7:73:7:82 | 'pollData' | assignedToPropName |  |
-| autogenerated/Xss/ExceptionXss/ajv.js:7:73:7:82 | 'pollData' | calleeImports | ajv |
-| autogenerated/Xss/ExceptionXss/ajv.js:7:73:7:82 | 'pollData' | contextFunctionInterfaces |  |
-| autogenerated/Xss/ExceptionXss/ajv.js:7:73:7:82 | 'pollData' | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/ExceptionXss/ajv.js:7:73:7:82 | 'pollData' | enclosingFunctionBody |  |
-| autogenerated/Xss/ExceptionXss/ajv.js:7:73:7:82 | 'pollData' | enclosingFunctionName |  |
-| autogenerated/Xss/ExceptionXss/ajv.js:7:73:7:82 | 'pollData' | fileImports | ajv express |
-| autogenerated/Xss/ExceptionXss/ajv.js:7:73:7:82 | 'pollData' | receiverName | ajv |
-| autogenerated/Xss/ExceptionXss/ajv.js:7:73:7:82 | 'pollData' | stringConcatenatedWith |  |
-| autogenerated/Xss/ExceptionXss/ajv.js:9:10:9:20 | '/polldata' | CalleeFlexibleAccessPath | app.post |
-| autogenerated/Xss/ExceptionXss/ajv.js:9:10:9:20 | '/polldata' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ExceptionXss/ajv.js:9:10:9:20 | '/polldata' | InputArgumentIndex | 0 |
-| autogenerated/Xss/ExceptionXss/ajv.js:9:10:9:20 | '/polldata' | assignedToPropName |  |
-| autogenerated/Xss/ExceptionXss/ajv.js:9:10:9:20 | '/polldata' | calleeImports | express |
-| autogenerated/Xss/ExceptionXss/ajv.js:9:10:9:20 | '/polldata' | contextFunctionInterfaces |  |
-| autogenerated/Xss/ExceptionXss/ajv.js:9:10:9:20 | '/polldata' | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/ExceptionXss/ajv.js:9:10:9:20 | '/polldata' | enclosingFunctionBody |  |
-| autogenerated/Xss/ExceptionXss/ajv.js:9:10:9:20 | '/polldata' | enclosingFunctionName |  |
-| autogenerated/Xss/ExceptionXss/ajv.js:9:10:9:20 | '/polldata' | fileImports | ajv express |
-| autogenerated/Xss/ExceptionXss/ajv.js:9:10:9:20 | '/polldata' | receiverName | app |
-| autogenerated/Xss/ExceptionXss/ajv.js:9:10:9:20 | '/polldata' | stringConcatenatedWith |  |
-| autogenerated/Xss/ExceptionXss/ajv.js:9:23:13:1 | (req, r ...     }\\n} | CalleeFlexibleAccessPath | app.post |
-| autogenerated/Xss/ExceptionXss/ajv.js:9:23:13:1 | (req, r ...     }\\n} | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ExceptionXss/ajv.js:9:23:13:1 | (req, r ...     }\\n} | InputArgumentIndex | 1 |
-| autogenerated/Xss/ExceptionXss/ajv.js:9:23:13:1 | (req, r ...     }\\n} | assignedToPropName |  |
-| autogenerated/Xss/ExceptionXss/ajv.js:9:23:13:1 | (req, r ...     }\\n} | calleeImports | express |
-| autogenerated/Xss/ExceptionXss/ajv.js:9:23:13:1 | (req, r ...     }\\n} | contextFunctionInterfaces |  |
-| autogenerated/Xss/ExceptionXss/ajv.js:9:23:13:1 | (req, r ...     }\\n} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/Xss/ExceptionXss/ajv.js:9:23:13:1 | (req, r ...     }\\n} | enclosingFunctionBody |  |
-| autogenerated/Xss/ExceptionXss/ajv.js:9:23:13:1 | (req, r ...     }\\n} | enclosingFunctionName |  |
-| autogenerated/Xss/ExceptionXss/ajv.js:9:23:13:1 | (req, r ...     }\\n} | fileImports | ajv express |
-| autogenerated/Xss/ExceptionXss/ajv.js:9:23:13:1 | (req, r ...     }\\n} | receiverName | app |
-| autogenerated/Xss/ExceptionXss/ajv.js:9:23:13:1 | (req, r ...     }\\n} | stringConcatenatedWith |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:5:11:5:11 | x | CalleeFlexibleAccessPath | unknown |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:5:11:5:11 | x | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:5:11:5:11 | x | InputArgumentIndex | 0 |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:5:11:5:11 | x | assignedToPropName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:5:11:5:11 | x | calleeImports |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:5:11:5:11 | x | contextFunctionInterfaces | deep(x)\ndeep2(x)\ninner(tainted, resolve)\ninner(x)\nmyWeirdInner(x)\nsafe(x) |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:5:11:5:11 | x | contextSurroundingFunctionParameters | (x) |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:5:11:5:11 | x | enclosingFunctionBody | foo document location inner x unknown x unknown foo e $ myId html e inner foo e $ myId html e unknown foo bar e $ myId html e unknown prop foo e $ myId html e unknown bar foo e $ myId html e deep x deep2 x deep2 x inner x deep bar foo e $ myId html e tmp bar foo e $ myId html e safe x foo x bar safe foo e $ myId html e safe call null foo e $ myId html e myWeirdInner myWeirdInner x inner x e $ myId html e myWeirdInner foo e $ myId html e $ myId html foo unknown foo match /foo/ e $ myId html e unknown foo bar e $ myId html e unknown foo e $ myId html e |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:5:11:5:11 | x | enclosingFunctionName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:5:11:5:11 | x | fileImports | express fs |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:5:11:5:11 | x | receiverName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:5:11:5:11 | x | stringConcatenatedWith |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:9:11:9:13 | foo | CalleeFlexibleAccessPath | unknown |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:9:11:9:13 | foo | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:9:11:9:13 | foo | InputArgumentIndex | 0 |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:9:11:9:13 | foo | assignedToPropName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:9:11:9:13 | foo | calleeImports |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:9:11:9:13 | foo | contextFunctionInterfaces | deep(x)\ndeep2(x)\ninner(tainted, resolve)\ninner(x)\nmyWeirdInner(x)\nsafe(x) |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:9:11:9:13 | foo | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:9:11:9:13 | foo | enclosingFunctionBody | foo document location inner x unknown x unknown foo e $ myId html e inner foo e $ myId html e unknown foo bar e $ myId html e unknown prop foo e $ myId html e unknown bar foo e $ myId html e deep x deep2 x deep2 x inner x deep bar foo e $ myId html e tmp bar foo e $ myId html e safe x foo x bar safe foo e $ myId html e safe call null foo e $ myId html e myWeirdInner myWeirdInner x inner x e $ myId html e myWeirdInner foo e $ myId html e $ myId html foo unknown foo match /foo/ e $ myId html e unknown foo bar e $ myId html e unknown foo e $ myId html e |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:9:11:9:13 | foo | enclosingFunctionName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:9:11:9:13 | foo | fileImports | express fs |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:9:11:9:13 | foo | receiverName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:9:11:9:13 | foo | stringConcatenatedWith |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:11:5:11:10 | 'myId' | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:11:5:11:10 | 'myId' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:11:5:11:10 | 'myId' | InputArgumentIndex | 0 |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:11:5:11:10 | 'myId' | assignedToPropName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:11:5:11:10 | 'myId' | calleeImports |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:11:5:11:10 | 'myId' | contextFunctionInterfaces | deep(x)\ndeep2(x)\ninner(tainted, resolve)\ninner(x)\nmyWeirdInner(x)\nsafe(x) |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:11:5:11:10 | 'myId' | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:11:5:11:10 | 'myId' | enclosingFunctionBody | foo document location inner x unknown x unknown foo e $ myId html e inner foo e $ myId html e unknown foo bar e $ myId html e unknown prop foo e $ myId html e unknown bar foo e $ myId html e deep x deep2 x deep2 x inner x deep bar foo e $ myId html e tmp bar foo e $ myId html e safe x foo x bar safe foo e $ myId html e safe call null foo e $ myId html e myWeirdInner myWeirdInner x inner x e $ myId html e myWeirdInner foo e $ myId html e $ myId html foo unknown foo match /foo/ e $ myId html e unknown foo bar e $ myId html e unknown foo e $ myId html e |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:11:5:11:10 | 'myId' | enclosingFunctionName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:11:5:11:10 | 'myId' | fileImports | express fs |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:11:5:11:10 | 'myId' | receiverName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:11:5:11:10 | 'myId' | stringConcatenatedWith |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:11:18:11:18 | e | CalleeFlexibleAccessPath | $().html |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:11:18:11:18 | e | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:11:18:11:18 | e | InputArgumentIndex | 0 |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:11:18:11:18 | e | assignedToPropName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:11:18:11:18 | e | calleeImports |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:11:18:11:18 | e | contextFunctionInterfaces | deep(x)\ndeep2(x)\ninner(tainted, resolve)\ninner(x)\nmyWeirdInner(x)\nsafe(x) |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:11:18:11:18 | e | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:11:18:11:18 | e | enclosingFunctionBody | foo document location inner x unknown x unknown foo e $ myId html e inner foo e $ myId html e unknown foo bar e $ myId html e unknown prop foo e $ myId html e unknown bar foo e $ myId html e deep x deep2 x deep2 x inner x deep bar foo e $ myId html e tmp bar foo e $ myId html e safe x foo x bar safe foo e $ myId html e safe call null foo e $ myId html e myWeirdInner myWeirdInner x inner x e $ myId html e myWeirdInner foo e $ myId html e $ myId html foo unknown foo match /foo/ e $ myId html e unknown foo bar e $ myId html e unknown foo e $ myId html e |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:11:18:11:18 | e | enclosingFunctionName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:11:18:11:18 | e | fileImports | express fs |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:11:18:11:18 | e | receiverName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:11:18:11:18 | e | stringConcatenatedWith |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:17:5:17:10 | 'myId' | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:17:5:17:10 | 'myId' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:17:5:17:10 | 'myId' | InputArgumentIndex | 0 |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:17:5:17:10 | 'myId' | assignedToPropName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:17:5:17:10 | 'myId' | calleeImports |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:17:5:17:10 | 'myId' | contextFunctionInterfaces | deep(x)\ndeep2(x)\ninner(tainted, resolve)\ninner(x)\nmyWeirdInner(x)\nsafe(x) |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:17:5:17:10 | 'myId' | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:17:5:17:10 | 'myId' | enclosingFunctionBody | foo document location inner x unknown x unknown foo e $ myId html e inner foo e $ myId html e unknown foo bar e $ myId html e unknown prop foo e $ myId html e unknown bar foo e $ myId html e deep x deep2 x deep2 x inner x deep bar foo e $ myId html e tmp bar foo e $ myId html e safe x foo x bar safe foo e $ myId html e safe call null foo e $ myId html e myWeirdInner myWeirdInner x inner x e $ myId html e myWeirdInner foo e $ myId html e $ myId html foo unknown foo match /foo/ e $ myId html e unknown foo bar e $ myId html e unknown foo e $ myId html e |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:17:5:17:10 | 'myId' | enclosingFunctionName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:17:5:17:10 | 'myId' | fileImports | express fs |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:17:5:17:10 | 'myId' | receiverName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:17:5:17:10 | 'myId' | stringConcatenatedWith |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:17:18:17:18 | e | CalleeFlexibleAccessPath | $().html |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:17:18:17:18 | e | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:17:18:17:18 | e | InputArgumentIndex | 0 |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:17:18:17:18 | e | assignedToPropName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:17:18:17:18 | e | calleeImports |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:17:18:17:18 | e | contextFunctionInterfaces | deep(x)\ndeep2(x)\ninner(tainted, resolve)\ninner(x)\nmyWeirdInner(x)\nsafe(x) |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:17:18:17:18 | e | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:17:18:17:18 | e | enclosingFunctionBody | foo document location inner x unknown x unknown foo e $ myId html e inner foo e $ myId html e unknown foo bar e $ myId html e unknown prop foo e $ myId html e unknown bar foo e $ myId html e deep x deep2 x deep2 x inner x deep bar foo e $ myId html e tmp bar foo e $ myId html e safe x foo x bar safe foo e $ myId html e safe call null foo e $ myId html e myWeirdInner myWeirdInner x inner x e $ myId html e myWeirdInner foo e $ myId html e $ myId html foo unknown foo match /foo/ e $ myId html e unknown foo bar e $ myId html e unknown foo e $ myId html e |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:17:18:17:18 | e | enclosingFunctionName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:17:18:17:18 | e | fileImports | express fs |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:17:18:17:18 | e | receiverName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:17:18:17:18 | e | stringConcatenatedWith |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:21:11:21:21 | foo + "bar" | CalleeFlexibleAccessPath | unknown |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:21:11:21:21 | foo + "bar" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:21:11:21:21 | foo + "bar" | InputArgumentIndex | 0 |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:21:11:21:21 | foo + "bar" | assignedToPropName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:21:11:21:21 | foo + "bar" | calleeImports |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:21:11:21:21 | foo + "bar" | contextFunctionInterfaces | deep(x)\ndeep2(x)\ninner(tainted, resolve)\ninner(x)\nmyWeirdInner(x)\nsafe(x) |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:21:11:21:21 | foo + "bar" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:21:11:21:21 | foo + "bar" | enclosingFunctionBody | foo document location inner x unknown x unknown foo e $ myId html e inner foo e $ myId html e unknown foo bar e $ myId html e unknown prop foo e $ myId html e unknown bar foo e $ myId html e deep x deep2 x deep2 x inner x deep bar foo e $ myId html e tmp bar foo e $ myId html e safe x foo x bar safe foo e $ myId html e safe call null foo e $ myId html e myWeirdInner myWeirdInner x inner x e $ myId html e myWeirdInner foo e $ myId html e $ myId html foo unknown foo match /foo/ e $ myId html e unknown foo bar e $ myId html e unknown foo e $ myId html e |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:21:11:21:21 | foo + "bar" | enclosingFunctionName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:21:11:21:21 | foo + "bar" | fileImports | express fs |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:21:11:21:21 | foo + "bar" | receiverName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:21:11:21:21 | foo + "bar" | stringConcatenatedWith |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:23:5:23:10 | 'myId' | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:23:5:23:10 | 'myId' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:23:5:23:10 | 'myId' | InputArgumentIndex | 0 |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:23:5:23:10 | 'myId' | assignedToPropName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:23:5:23:10 | 'myId' | calleeImports |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:23:5:23:10 | 'myId' | contextFunctionInterfaces | deep(x)\ndeep2(x)\ninner(tainted, resolve)\ninner(x)\nmyWeirdInner(x)\nsafe(x) |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:23:5:23:10 | 'myId' | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:23:5:23:10 | 'myId' | enclosingFunctionBody | foo document location inner x unknown x unknown foo e $ myId html e inner foo e $ myId html e unknown foo bar e $ myId html e unknown prop foo e $ myId html e unknown bar foo e $ myId html e deep x deep2 x deep2 x inner x deep bar foo e $ myId html e tmp bar foo e $ myId html e safe x foo x bar safe foo e $ myId html e safe call null foo e $ myId html e myWeirdInner myWeirdInner x inner x e $ myId html e myWeirdInner foo e $ myId html e $ myId html foo unknown foo match /foo/ e $ myId html e unknown foo bar e $ myId html e unknown foo e $ myId html e |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:23:5:23:10 | 'myId' | enclosingFunctionName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:23:5:23:10 | 'myId' | fileImports | express fs |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:23:5:23:10 | 'myId' | receiverName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:23:5:23:10 | 'myId' | stringConcatenatedWith |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:23:18:23:18 | e | CalleeFlexibleAccessPath | $().html |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:23:18:23:18 | e | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:23:18:23:18 | e | InputArgumentIndex | 0 |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:23:18:23:18 | e | assignedToPropName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:23:18:23:18 | e | calleeImports |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:23:18:23:18 | e | contextFunctionInterfaces | deep(x)\ndeep2(x)\ninner(tainted, resolve)\ninner(x)\nmyWeirdInner(x)\nsafe(x) |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:23:18:23:18 | e | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:23:18:23:18 | e | enclosingFunctionBody | foo document location inner x unknown x unknown foo e $ myId html e inner foo e $ myId html e unknown foo bar e $ myId html e unknown prop foo e $ myId html e unknown bar foo e $ myId html e deep x deep2 x deep2 x inner x deep bar foo e $ myId html e tmp bar foo e $ myId html e safe x foo x bar safe foo e $ myId html e safe call null foo e $ myId html e myWeirdInner myWeirdInner x inner x e $ myId html e myWeirdInner foo e $ myId html e $ myId html foo unknown foo match /foo/ e $ myId html e unknown foo bar e $ myId html e unknown foo e $ myId html e |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:23:18:23:18 | e | enclosingFunctionName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:23:18:23:18 | e | fileImports | express fs |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:23:18:23:18 | e | receiverName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:23:18:23:18 | e | stringConcatenatedWith |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:27:11:27:23 | { prop: foo } | CalleeFlexibleAccessPath | unknown |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:27:11:27:23 | { prop: foo } | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:27:11:27:23 | { prop: foo } | InputArgumentIndex | 0 |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:27:11:27:23 | { prop: foo } | assignedToPropName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:27:11:27:23 | { prop: foo } | calleeImports |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:27:11:27:23 | { prop: foo } | contextFunctionInterfaces | deep(x)\ndeep2(x)\ninner(tainted, resolve)\ninner(x)\nmyWeirdInner(x)\nsafe(x) |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:27:11:27:23 | { prop: foo } | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:27:11:27:23 | { prop: foo } | enclosingFunctionBody | foo document location inner x unknown x unknown foo e $ myId html e inner foo e $ myId html e unknown foo bar e $ myId html e unknown prop foo e $ myId html e unknown bar foo e $ myId html e deep x deep2 x deep2 x inner x deep bar foo e $ myId html e tmp bar foo e $ myId html e safe x foo x bar safe foo e $ myId html e safe call null foo e $ myId html e myWeirdInner myWeirdInner x inner x e $ myId html e myWeirdInner foo e $ myId html e $ myId html foo unknown foo match /foo/ e $ myId html e unknown foo bar e $ myId html e unknown foo e $ myId html e |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:27:11:27:23 | { prop: foo } | enclosingFunctionName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:27:11:27:23 | { prop: foo } | fileImports | express fs |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:27:11:27:23 | { prop: foo } | receiverName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:27:11:27:23 | { prop: foo } | stringConcatenatedWith |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:27:19:27:21 | foo | CalleeFlexibleAccessPath | unknown |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:27:19:27:21 | foo | InputAccessPathFromCallee | 0.prop |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:27:19:27:21 | foo | InputArgumentIndex | 0 |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:27:19:27:21 | foo | assignedToPropName | prop |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:27:19:27:21 | foo | calleeImports |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:27:19:27:21 | foo | contextFunctionInterfaces | deep(x)\ndeep2(x)\ninner(tainted, resolve)\ninner(x)\nmyWeirdInner(x)\nsafe(x) |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:27:19:27:21 | foo | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:27:19:27:21 | foo | enclosingFunctionBody | foo document location inner x unknown x unknown foo e $ myId html e inner foo e $ myId html e unknown foo bar e $ myId html e unknown prop foo e $ myId html e unknown bar foo e $ myId html e deep x deep2 x deep2 x inner x deep bar foo e $ myId html e tmp bar foo e $ myId html e safe x foo x bar safe foo e $ myId html e safe call null foo e $ myId html e myWeirdInner myWeirdInner x inner x e $ myId html e myWeirdInner foo e $ myId html e $ myId html foo unknown foo match /foo/ e $ myId html e unknown foo bar e $ myId html e unknown foo e $ myId html e |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:27:19:27:21 | foo | enclosingFunctionName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:27:19:27:21 | foo | fileImports | express fs |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:27:19:27:21 | foo | receiverName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:27:19:27:21 | foo | stringConcatenatedWith |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:29:5:29:10 | 'myId' | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:29:5:29:10 | 'myId' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:29:5:29:10 | 'myId' | InputArgumentIndex | 0 |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:29:5:29:10 | 'myId' | assignedToPropName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:29:5:29:10 | 'myId' | calleeImports |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:29:5:29:10 | 'myId' | contextFunctionInterfaces | deep(x)\ndeep2(x)\ninner(tainted, resolve)\ninner(x)\nmyWeirdInner(x)\nsafe(x) |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:29:5:29:10 | 'myId' | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:29:5:29:10 | 'myId' | enclosingFunctionBody | foo document location inner x unknown x unknown foo e $ myId html e inner foo e $ myId html e unknown foo bar e $ myId html e unknown prop foo e $ myId html e unknown bar foo e $ myId html e deep x deep2 x deep2 x inner x deep bar foo e $ myId html e tmp bar foo e $ myId html e safe x foo x bar safe foo e $ myId html e safe call null foo e $ myId html e myWeirdInner myWeirdInner x inner x e $ myId html e myWeirdInner foo e $ myId html e $ myId html foo unknown foo match /foo/ e $ myId html e unknown foo bar e $ myId html e unknown foo e $ myId html e |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:29:5:29:10 | 'myId' | enclosingFunctionName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:29:5:29:10 | 'myId' | fileImports | express fs |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:29:5:29:10 | 'myId' | receiverName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:29:5:29:10 | 'myId' | stringConcatenatedWith |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:29:18:29:18 | e | CalleeFlexibleAccessPath | $().html |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:29:18:29:18 | e | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:29:18:29:18 | e | InputArgumentIndex | 0 |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:29:18:29:18 | e | assignedToPropName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:29:18:29:18 | e | calleeImports |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:29:18:29:18 | e | contextFunctionInterfaces | deep(x)\ndeep2(x)\ninner(tainted, resolve)\ninner(x)\nmyWeirdInner(x)\nsafe(x) |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:29:18:29:18 | e | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:29:18:29:18 | e | enclosingFunctionBody | foo document location inner x unknown x unknown foo e $ myId html e inner foo e $ myId html e unknown foo bar e $ myId html e unknown prop foo e $ myId html e unknown bar foo e $ myId html e deep x deep2 x deep2 x inner x deep bar foo e $ myId html e tmp bar foo e $ myId html e safe x foo x bar safe foo e $ myId html e safe call null foo e $ myId html e myWeirdInner myWeirdInner x inner x e $ myId html e myWeirdInner foo e $ myId html e $ myId html foo unknown foo match /foo/ e $ myId html e unknown foo bar e $ myId html e unknown foo e $ myId html e |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:29:18:29:18 | e | enclosingFunctionName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:29:18:29:18 | e | fileImports | express fs |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:29:18:29:18 | e | receiverName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:29:18:29:18 | e | stringConcatenatedWith |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:33:11:33:22 | ["bar", foo] | CalleeFlexibleAccessPath | unknown |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:33:11:33:22 | ["bar", foo] | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:33:11:33:22 | ["bar", foo] | InputArgumentIndex | 0 |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:33:11:33:22 | ["bar", foo] | assignedToPropName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:33:11:33:22 | ["bar", foo] | calleeImports |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:33:11:33:22 | ["bar", foo] | contextFunctionInterfaces | deep(x)\ndeep2(x)\ninner(tainted, resolve)\ninner(x)\nmyWeirdInner(x)\nsafe(x) |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:33:11:33:22 | ["bar", foo] | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:33:11:33:22 | ["bar", foo] | enclosingFunctionBody | foo document location inner x unknown x unknown foo e $ myId html e inner foo e $ myId html e unknown foo bar e $ myId html e unknown prop foo e $ myId html e unknown bar foo e $ myId html e deep x deep2 x deep2 x inner x deep bar foo e $ myId html e tmp bar foo e $ myId html e safe x foo x bar safe foo e $ myId html e safe call null foo e $ myId html e myWeirdInner myWeirdInner x inner x e $ myId html e myWeirdInner foo e $ myId html e $ myId html foo unknown foo match /foo/ e $ myId html e unknown foo bar e $ myId html e unknown foo e $ myId html e |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:33:11:33:22 | ["bar", foo] | enclosingFunctionName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:33:11:33:22 | ["bar", foo] | fileImports | express fs |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:33:11:33:22 | ["bar", foo] | receiverName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:33:11:33:22 | ["bar", foo] | stringConcatenatedWith |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:33:12:33:16 | "bar" | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:33:12:33:16 | "bar" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:33:12:33:16 | "bar" | InputArgumentIndex |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:33:12:33:16 | "bar" | assignedToPropName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:33:12:33:16 | "bar" | calleeImports |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:33:12:33:16 | "bar" | contextFunctionInterfaces | deep(x)\ndeep2(x)\ninner(tainted, resolve)\ninner(x)\nmyWeirdInner(x)\nsafe(x) |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:33:12:33:16 | "bar" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:33:12:33:16 | "bar" | enclosingFunctionBody | foo document location inner x unknown x unknown foo e $ myId html e inner foo e $ myId html e unknown foo bar e $ myId html e unknown prop foo e $ myId html e unknown bar foo e $ myId html e deep x deep2 x deep2 x inner x deep bar foo e $ myId html e tmp bar foo e $ myId html e safe x foo x bar safe foo e $ myId html e safe call null foo e $ myId html e myWeirdInner myWeirdInner x inner x e $ myId html e myWeirdInner foo e $ myId html e $ myId html foo unknown foo match /foo/ e $ myId html e unknown foo bar e $ myId html e unknown foo e $ myId html e |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:33:12:33:16 | "bar" | enclosingFunctionName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:33:12:33:16 | "bar" | fileImports | express fs |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:33:12:33:16 | "bar" | receiverName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:33:12:33:16 | "bar" | stringConcatenatedWith |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:33:19:33:21 | foo | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:33:19:33:21 | foo | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:33:19:33:21 | foo | InputArgumentIndex |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:33:19:33:21 | foo | assignedToPropName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:33:19:33:21 | foo | calleeImports |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:33:19:33:21 | foo | contextFunctionInterfaces | deep(x)\ndeep2(x)\ninner(tainted, resolve)\ninner(x)\nmyWeirdInner(x)\nsafe(x) |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:33:19:33:21 | foo | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:33:19:33:21 | foo | enclosingFunctionBody | foo document location inner x unknown x unknown foo e $ myId html e inner foo e $ myId html e unknown foo bar e $ myId html e unknown prop foo e $ myId html e unknown bar foo e $ myId html e deep x deep2 x deep2 x inner x deep bar foo e $ myId html e tmp bar foo e $ myId html e safe x foo x bar safe foo e $ myId html e safe call null foo e $ myId html e myWeirdInner myWeirdInner x inner x e $ myId html e myWeirdInner foo e $ myId html e $ myId html foo unknown foo match /foo/ e $ myId html e unknown foo bar e $ myId html e unknown foo e $ myId html e |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:33:19:33:21 | foo | enclosingFunctionName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:33:19:33:21 | foo | fileImports | express fs |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:33:19:33:21 | foo | receiverName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:33:19:33:21 | foo | stringConcatenatedWith |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:35:5:35:10 | 'myId' | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:35:5:35:10 | 'myId' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:35:5:35:10 | 'myId' | InputArgumentIndex | 0 |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:35:5:35:10 | 'myId' | assignedToPropName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:35:5:35:10 | 'myId' | calleeImports |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:35:5:35:10 | 'myId' | contextFunctionInterfaces | deep(x)\ndeep2(x)\ninner(tainted, resolve)\ninner(x)\nmyWeirdInner(x)\nsafe(x) |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:35:5:35:10 | 'myId' | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:35:5:35:10 | 'myId' | enclosingFunctionBody | foo document location inner x unknown x unknown foo e $ myId html e inner foo e $ myId html e unknown foo bar e $ myId html e unknown prop foo e $ myId html e unknown bar foo e $ myId html e deep x deep2 x deep2 x inner x deep bar foo e $ myId html e tmp bar foo e $ myId html e safe x foo x bar safe foo e $ myId html e safe call null foo e $ myId html e myWeirdInner myWeirdInner x inner x e $ myId html e myWeirdInner foo e $ myId html e $ myId html foo unknown foo match /foo/ e $ myId html e unknown foo bar e $ myId html e unknown foo e $ myId html e |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:35:5:35:10 | 'myId' | enclosingFunctionName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:35:5:35:10 | 'myId' | fileImports | express fs |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:35:5:35:10 | 'myId' | receiverName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:35:5:35:10 | 'myId' | stringConcatenatedWith |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:35:18:35:18 | e | CalleeFlexibleAccessPath | $().html |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:35:18:35:18 | e | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:35:18:35:18 | e | InputArgumentIndex | 0 |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:35:18:35:18 | e | assignedToPropName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:35:18:35:18 | e | calleeImports |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:35:18:35:18 | e | contextFunctionInterfaces | deep(x)\ndeep2(x)\ninner(tainted, resolve)\ninner(x)\nmyWeirdInner(x)\nsafe(x) |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:35:18:35:18 | e | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:35:18:35:18 | e | enclosingFunctionBody | foo document location inner x unknown x unknown foo e $ myId html e inner foo e $ myId html e unknown foo bar e $ myId html e unknown prop foo e $ myId html e unknown bar foo e $ myId html e deep x deep2 x deep2 x inner x deep bar foo e $ myId html e tmp bar foo e $ myId html e safe x foo x bar safe foo e $ myId html e safe call null foo e $ myId html e myWeirdInner myWeirdInner x inner x e $ myId html e myWeirdInner foo e $ myId html e $ myId html foo unknown foo match /foo/ e $ myId html e unknown foo bar e $ myId html e unknown foo e $ myId html e |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:35:18:35:18 | e | enclosingFunctionName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:35:18:35:18 | e | fileImports | express fs |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:35:18:35:18 | e | receiverName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:35:18:35:18 | e | stringConcatenatedWith |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:48:5:48:10 | 'myId' | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:48:5:48:10 | 'myId' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:48:5:48:10 | 'myId' | InputArgumentIndex | 0 |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:48:5:48:10 | 'myId' | assignedToPropName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:48:5:48:10 | 'myId' | calleeImports |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:48:5:48:10 | 'myId' | contextFunctionInterfaces | deep(x)\ndeep2(x)\ninner(tainted, resolve)\ninner(x)\nmyWeirdInner(x)\nsafe(x) |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:48:5:48:10 | 'myId' | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:48:5:48:10 | 'myId' | enclosingFunctionBody | foo document location inner x unknown x unknown foo e $ myId html e inner foo e $ myId html e unknown foo bar e $ myId html e unknown prop foo e $ myId html e unknown bar foo e $ myId html e deep x deep2 x deep2 x inner x deep bar foo e $ myId html e tmp bar foo e $ myId html e safe x foo x bar safe foo e $ myId html e safe call null foo e $ myId html e myWeirdInner myWeirdInner x inner x e $ myId html e myWeirdInner foo e $ myId html e $ myId html foo unknown foo match /foo/ e $ myId html e unknown foo bar e $ myId html e unknown foo e $ myId html e |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:48:5:48:10 | 'myId' | enclosingFunctionName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:48:5:48:10 | 'myId' | fileImports | express fs |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:48:5:48:10 | 'myId' | receiverName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:48:5:48:10 | 'myId' | stringConcatenatedWith |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:48:18:48:18 | e | CalleeFlexibleAccessPath | $().html |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:48:18:48:18 | e | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:48:18:48:18 | e | InputArgumentIndex | 0 |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:48:18:48:18 | e | assignedToPropName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:48:18:48:18 | e | calleeImports |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:48:18:48:18 | e | contextFunctionInterfaces | deep(x)\ndeep2(x)\ninner(tainted, resolve)\ninner(x)\nmyWeirdInner(x)\nsafe(x) |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:48:18:48:18 | e | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:48:18:48:18 | e | enclosingFunctionBody | foo document location inner x unknown x unknown foo e $ myId html e inner foo e $ myId html e unknown foo bar e $ myId html e unknown prop foo e $ myId html e unknown bar foo e $ myId html e deep x deep2 x deep2 x inner x deep bar foo e $ myId html e tmp bar foo e $ myId html e safe x foo x bar safe foo e $ myId html e safe call null foo e $ myId html e myWeirdInner myWeirdInner x inner x e $ myId html e myWeirdInner foo e $ myId html e $ myId html foo unknown foo match /foo/ e $ myId html e unknown foo bar e $ myId html e unknown foo e $ myId html e |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:48:18:48:18 | e | enclosingFunctionName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:48:18:48:18 | e | fileImports | express fs |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:48:18:48:18 | e | receiverName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:48:18:48:18 | e | stringConcatenatedWith |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:54:5:54:10 | 'myId' | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:54:5:54:10 | 'myId' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:54:5:54:10 | 'myId' | InputArgumentIndex | 0 |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:54:5:54:10 | 'myId' | assignedToPropName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:54:5:54:10 | 'myId' | calleeImports |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:54:5:54:10 | 'myId' | contextFunctionInterfaces | deep(x)\ndeep2(x)\ninner(tainted, resolve)\ninner(x)\nmyWeirdInner(x)\nsafe(x) |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:54:5:54:10 | 'myId' | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:54:5:54:10 | 'myId' | enclosingFunctionBody | foo document location inner x unknown x unknown foo e $ myId html e inner foo e $ myId html e unknown foo bar e $ myId html e unknown prop foo e $ myId html e unknown bar foo e $ myId html e deep x deep2 x deep2 x inner x deep bar foo e $ myId html e tmp bar foo e $ myId html e safe x foo x bar safe foo e $ myId html e safe call null foo e $ myId html e myWeirdInner myWeirdInner x inner x e $ myId html e myWeirdInner foo e $ myId html e $ myId html foo unknown foo match /foo/ e $ myId html e unknown foo bar e $ myId html e unknown foo e $ myId html e |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:54:5:54:10 | 'myId' | enclosingFunctionName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:54:5:54:10 | 'myId' | fileImports | express fs |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:54:5:54:10 | 'myId' | receiverName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:54:5:54:10 | 'myId' | stringConcatenatedWith |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:54:18:54:18 | e | CalleeFlexibleAccessPath | $().html |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:54:18:54:18 | e | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:54:18:54:18 | e | InputArgumentIndex | 0 |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:54:18:54:18 | e | assignedToPropName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:54:18:54:18 | e | calleeImports |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:54:18:54:18 | e | contextFunctionInterfaces | deep(x)\ndeep2(x)\ninner(tainted, resolve)\ninner(x)\nmyWeirdInner(x)\nsafe(x) |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:54:18:54:18 | e | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:54:18:54:18 | e | enclosingFunctionBody | foo document location inner x unknown x unknown foo e $ myId html e inner foo e $ myId html e unknown foo bar e $ myId html e unknown prop foo e $ myId html e unknown bar foo e $ myId html e deep x deep2 x deep2 x inner x deep bar foo e $ myId html e tmp bar foo e $ myId html e safe x foo x bar safe foo e $ myId html e safe call null foo e $ myId html e myWeirdInner myWeirdInner x inner x e $ myId html e myWeirdInner foo e $ myId html e $ myId html foo unknown foo match /foo/ e $ myId html e unknown foo bar e $ myId html e unknown foo e $ myId html e |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:54:18:54:18 | e | enclosingFunctionName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:54:18:54:18 | e | fileImports | express fs |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:54:18:54:18 | e | receiverName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:54:18:54:18 | e | stringConcatenatedWith |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:64:5:64:10 | 'myId' | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:64:5:64:10 | 'myId' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:64:5:64:10 | 'myId' | InputArgumentIndex | 0 |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:64:5:64:10 | 'myId' | assignedToPropName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:64:5:64:10 | 'myId' | calleeImports |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:64:5:64:10 | 'myId' | contextFunctionInterfaces | deep(x)\ndeep2(x)\ninner(tainted, resolve)\ninner(x)\nmyWeirdInner(x)\nsafe(x) |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:64:5:64:10 | 'myId' | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:64:5:64:10 | 'myId' | enclosingFunctionBody | foo document location inner x unknown x unknown foo e $ myId html e inner foo e $ myId html e unknown foo bar e $ myId html e unknown prop foo e $ myId html e unknown bar foo e $ myId html e deep x deep2 x deep2 x inner x deep bar foo e $ myId html e tmp bar foo e $ myId html e safe x foo x bar safe foo e $ myId html e safe call null foo e $ myId html e myWeirdInner myWeirdInner x inner x e $ myId html e myWeirdInner foo e $ myId html e $ myId html foo unknown foo match /foo/ e $ myId html e unknown foo bar e $ myId html e unknown foo e $ myId html e |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:64:5:64:10 | 'myId' | enclosingFunctionName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:64:5:64:10 | 'myId' | fileImports | express fs |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:64:5:64:10 | 'myId' | receiverName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:64:5:64:10 | 'myId' | stringConcatenatedWith |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:64:18:64:18 | e | CalleeFlexibleAccessPath | $().html |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:64:18:64:18 | e | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:64:18:64:18 | e | InputArgumentIndex | 0 |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:64:18:64:18 | e | assignedToPropName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:64:18:64:18 | e | calleeImports |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:64:18:64:18 | e | contextFunctionInterfaces | deep(x)\ndeep2(x)\ninner(tainted, resolve)\ninner(x)\nmyWeirdInner(x)\nsafe(x) |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:64:18:64:18 | e | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:64:18:64:18 | e | enclosingFunctionBody | foo document location inner x unknown x unknown foo e $ myId html e inner foo e $ myId html e unknown foo bar e $ myId html e unknown prop foo e $ myId html e unknown bar foo e $ myId html e deep x deep2 x deep2 x inner x deep bar foo e $ myId html e tmp bar foo e $ myId html e safe x foo x bar safe foo e $ myId html e safe call null foo e $ myId html e myWeirdInner myWeirdInner x inner x e $ myId html e myWeirdInner foo e $ myId html e $ myId html foo unknown foo match /foo/ e $ myId html e unknown foo bar e $ myId html e unknown foo e $ myId html e |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:64:18:64:18 | e | enclosingFunctionName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:64:18:64:18 | e | fileImports | express fs |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:64:18:64:18 | e | receiverName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:64:18:64:18 | e | stringConcatenatedWith |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:68:13:68:16 | null | CalleeFlexibleAccessPath | safe.call |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:68:13:68:16 | null | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:68:13:68:16 | null | InputArgumentIndex | 0 |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:68:13:68:16 | null | assignedToPropName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:68:13:68:16 | null | calleeImports |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:68:13:68:16 | null | contextFunctionInterfaces | deep(x)\ndeep2(x)\ninner(tainted, resolve)\ninner(x)\nmyWeirdInner(x)\nsafe(x) |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:68:13:68:16 | null | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:68:13:68:16 | null | enclosingFunctionBody | foo document location inner x unknown x unknown foo e $ myId html e inner foo e $ myId html e unknown foo bar e $ myId html e unknown prop foo e $ myId html e unknown bar foo e $ myId html e deep x deep2 x deep2 x inner x deep bar foo e $ myId html e tmp bar foo e $ myId html e safe x foo x bar safe foo e $ myId html e safe call null foo e $ myId html e myWeirdInner myWeirdInner x inner x e $ myId html e myWeirdInner foo e $ myId html e $ myId html foo unknown foo match /foo/ e $ myId html e unknown foo bar e $ myId html e unknown foo e $ myId html e |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:68:13:68:16 | null | enclosingFunctionName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:68:13:68:16 | null | fileImports | express fs |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:68:13:68:16 | null | receiverName | safe |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:68:13:68:16 | null | stringConcatenatedWith |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:68:19:68:21 | foo | CalleeFlexibleAccessPath | safe |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:68:19:68:21 | foo | CalleeFlexibleAccessPath | safe.call |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:68:19:68:21 | foo | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:68:19:68:21 | foo | InputArgumentIndex | 0 |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:68:19:68:21 | foo | InputArgumentIndex | 1 |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:68:19:68:21 | foo | assignedToPropName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:68:19:68:21 | foo | calleeImports |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:68:19:68:21 | foo | contextFunctionInterfaces | deep(x)\ndeep2(x)\ninner(tainted, resolve)\ninner(x)\nmyWeirdInner(x)\nsafe(x) |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:68:19:68:21 | foo | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:68:19:68:21 | foo | enclosingFunctionBody | foo document location inner x unknown x unknown foo e $ myId html e inner foo e $ myId html e unknown foo bar e $ myId html e unknown prop foo e $ myId html e unknown bar foo e $ myId html e deep x deep2 x deep2 x inner x deep bar foo e $ myId html e tmp bar foo e $ myId html e safe x foo x bar safe foo e $ myId html e safe call null foo e $ myId html e myWeirdInner myWeirdInner x inner x e $ myId html e myWeirdInner foo e $ myId html e $ myId html foo unknown foo match /foo/ e $ myId html e unknown foo bar e $ myId html e unknown foo e $ myId html e |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:68:19:68:21 | foo | enclosingFunctionName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:68:19:68:21 | foo | fileImports | express fs |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:68:19:68:21 | foo | receiverName | safe |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:68:19:68:21 | foo | stringConcatenatedWith |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:70:5:70:10 | 'myId' | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:70:5:70:10 | 'myId' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:70:5:70:10 | 'myId' | InputArgumentIndex | 0 |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:70:5:70:10 | 'myId' | assignedToPropName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:70:5:70:10 | 'myId' | calleeImports |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:70:5:70:10 | 'myId' | contextFunctionInterfaces | deep(x)\ndeep2(x)\ninner(tainted, resolve)\ninner(x)\nmyWeirdInner(x)\nsafe(x) |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:70:5:70:10 | 'myId' | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:70:5:70:10 | 'myId' | enclosingFunctionBody | foo document location inner x unknown x unknown foo e $ myId html e inner foo e $ myId html e unknown foo bar e $ myId html e unknown prop foo e $ myId html e unknown bar foo e $ myId html e deep x deep2 x deep2 x inner x deep bar foo e $ myId html e tmp bar foo e $ myId html e safe x foo x bar safe foo e $ myId html e safe call null foo e $ myId html e myWeirdInner myWeirdInner x inner x e $ myId html e myWeirdInner foo e $ myId html e $ myId html foo unknown foo match /foo/ e $ myId html e unknown foo bar e $ myId html e unknown foo e $ myId html e |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:70:5:70:10 | 'myId' | enclosingFunctionName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:70:5:70:10 | 'myId' | fileImports | express fs |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:70:5:70:10 | 'myId' | receiverName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:70:5:70:10 | 'myId' | stringConcatenatedWith |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:70:18:70:18 | e | CalleeFlexibleAccessPath | $().html |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:70:18:70:18 | e | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:70:18:70:18 | e | InputArgumentIndex | 0 |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:70:18:70:18 | e | assignedToPropName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:70:18:70:18 | e | calleeImports |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:70:18:70:18 | e | contextFunctionInterfaces | deep(x)\ndeep2(x)\ninner(tainted, resolve)\ninner(x)\nmyWeirdInner(x)\nsafe(x) |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:70:18:70:18 | e | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:70:18:70:18 | e | enclosingFunctionBody | foo document location inner x unknown x unknown foo e $ myId html e inner foo e $ myId html e unknown foo bar e $ myId html e unknown prop foo e $ myId html e unknown bar foo e $ myId html e deep x deep2 x deep2 x inner x deep bar foo e $ myId html e tmp bar foo e $ myId html e safe x foo x bar safe foo e $ myId html e safe call null foo e $ myId html e myWeirdInner myWeirdInner x inner x e $ myId html e myWeirdInner foo e $ myId html e $ myId html foo unknown foo match /foo/ e $ myId html e unknown foo bar e $ myId html e unknown foo e $ myId html e |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:70:18:70:18 | e | enclosingFunctionName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:70:18:70:18 | e | fileImports | express fs |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:70:18:70:18 | e | receiverName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:70:18:70:18 | e | stringConcatenatedWith |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:78:5:78:10 | 'myId' | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:78:5:78:10 | 'myId' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:78:5:78:10 | 'myId' | InputArgumentIndex | 0 |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:78:5:78:10 | 'myId' | assignedToPropName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:78:5:78:10 | 'myId' | calleeImports |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:78:5:78:10 | 'myId' | contextFunctionInterfaces | deep(x)\ndeep2(x)\ninner(tainted, resolve)\ninner(x)\nmyWeirdInner(x)\nsafe(x) |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:78:5:78:10 | 'myId' | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:78:5:78:10 | 'myId' | enclosingFunctionBody | foo document location inner x unknown x unknown foo e $ myId html e inner foo e $ myId html e unknown foo bar e $ myId html e unknown prop foo e $ myId html e unknown bar foo e $ myId html e deep x deep2 x deep2 x inner x deep bar foo e $ myId html e tmp bar foo e $ myId html e safe x foo x bar safe foo e $ myId html e safe call null foo e $ myId html e myWeirdInner myWeirdInner x inner x e $ myId html e myWeirdInner foo e $ myId html e $ myId html foo unknown foo match /foo/ e $ myId html e unknown foo bar e $ myId html e unknown foo e $ myId html e |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:78:5:78:10 | 'myId' | enclosingFunctionName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:78:5:78:10 | 'myId' | fileImports | express fs |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:78:5:78:10 | 'myId' | receiverName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:78:5:78:10 | 'myId' | stringConcatenatedWith |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:78:18:78:18 | e | CalleeFlexibleAccessPath | $().html |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:78:18:78:18 | e | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:78:18:78:18 | e | InputArgumentIndex | 0 |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:78:18:78:18 | e | assignedToPropName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:78:18:78:18 | e | calleeImports |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:78:18:78:18 | e | contextFunctionInterfaces | deep(x)\ndeep2(x)\ninner(tainted, resolve)\ninner(x)\nmyWeirdInner(x)\nsafe(x) |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:78:18:78:18 | e | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:78:18:78:18 | e | enclosingFunctionBody | foo document location inner x unknown x unknown foo e $ myId html e inner foo e $ myId html e unknown foo bar e $ myId html e unknown prop foo e $ myId html e unknown bar foo e $ myId html e deep x deep2 x deep2 x inner x deep bar foo e $ myId html e tmp bar foo e $ myId html e safe x foo x bar safe foo e $ myId html e safe call null foo e $ myId html e myWeirdInner myWeirdInner x inner x e $ myId html e myWeirdInner foo e $ myId html e $ myId html foo unknown foo match /foo/ e $ myId html e unknown foo bar e $ myId html e unknown foo e $ myId html e |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:78:18:78:18 | e | enclosingFunctionName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:78:18:78:18 | e | fileImports | express fs |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:78:18:78:18 | e | receiverName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:78:18:78:18 | e | stringConcatenatedWith |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:83:5:83:10 | 'myId' | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:83:5:83:10 | 'myId' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:83:5:83:10 | 'myId' | InputArgumentIndex | 0 |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:83:5:83:10 | 'myId' | assignedToPropName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:83:5:83:10 | 'myId' | calleeImports |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:83:5:83:10 | 'myId' | contextFunctionInterfaces | deep(x)\ndeep2(x)\ninner(tainted, resolve)\ninner(x)\nmyWeirdInner(x)\nsafe(x) |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:83:5:83:10 | 'myId' | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:83:5:83:10 | 'myId' | enclosingFunctionBody | foo document location inner x unknown x unknown foo e $ myId html e inner foo e $ myId html e unknown foo bar e $ myId html e unknown prop foo e $ myId html e unknown bar foo e $ myId html e deep x deep2 x deep2 x inner x deep bar foo e $ myId html e tmp bar foo e $ myId html e safe x foo x bar safe foo e $ myId html e safe call null foo e $ myId html e myWeirdInner myWeirdInner x inner x e $ myId html e myWeirdInner foo e $ myId html e $ myId html foo unknown foo match /foo/ e $ myId html e unknown foo bar e $ myId html e unknown foo e $ myId html e |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:83:5:83:10 | 'myId' | enclosingFunctionName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:83:5:83:10 | 'myId' | fileImports | express fs |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:83:5:83:10 | 'myId' | receiverName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:83:5:83:10 | 'myId' | stringConcatenatedWith |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:83:18:83:18 | e | CalleeFlexibleAccessPath | $().html |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:83:18:83:18 | e | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:83:18:83:18 | e | InputArgumentIndex | 0 |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:83:18:83:18 | e | assignedToPropName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:83:18:83:18 | e | calleeImports |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:83:18:83:18 | e | contextFunctionInterfaces | deep(x)\ndeep2(x)\ninner(tainted, resolve)\ninner(x)\nmyWeirdInner(x)\nsafe(x) |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:83:18:83:18 | e | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:83:18:83:18 | e | enclosingFunctionBody | foo document location inner x unknown x unknown foo e $ myId html e inner foo e $ myId html e unknown foo bar e $ myId html e unknown prop foo e $ myId html e unknown bar foo e $ myId html e deep x deep2 x deep2 x inner x deep bar foo e $ myId html e tmp bar foo e $ myId html e safe x foo x bar safe foo e $ myId html e safe call null foo e $ myId html e myWeirdInner myWeirdInner x inner x e $ myId html e myWeirdInner foo e $ myId html e $ myId html foo unknown foo match /foo/ e $ myId html e unknown foo bar e $ myId html e unknown foo e $ myId html e |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:83:18:83:18 | e | enclosingFunctionName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:83:18:83:18 | e | fileImports | express fs |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:83:18:83:18 | e | receiverName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:83:18:83:18 | e | stringConcatenatedWith |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:86:4:86:9 | 'myId' | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:86:4:86:9 | 'myId' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:86:4:86:9 | 'myId' | InputArgumentIndex | 0 |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:86:4:86:9 | 'myId' | assignedToPropName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:86:4:86:9 | 'myId' | calleeImports |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:86:4:86:9 | 'myId' | contextFunctionInterfaces | deep(x)\ndeep2(x)\ninner(tainted, resolve)\ninner(x)\nmyWeirdInner(x)\nsafe(x) |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:86:4:86:9 | 'myId' | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:86:4:86:9 | 'myId' | enclosingFunctionBody | foo document location inner x unknown x unknown foo e $ myId html e inner foo e $ myId html e unknown foo bar e $ myId html e unknown prop foo e $ myId html e unknown bar foo e $ myId html e deep x deep2 x deep2 x inner x deep bar foo e $ myId html e tmp bar foo e $ myId html e safe x foo x bar safe foo e $ myId html e safe call null foo e $ myId html e myWeirdInner myWeirdInner x inner x e $ myId html e myWeirdInner foo e $ myId html e $ myId html foo unknown foo match /foo/ e $ myId html e unknown foo bar e $ myId html e unknown foo e $ myId html e |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:86:4:86:9 | 'myId' | enclosingFunctionName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:86:4:86:9 | 'myId' | fileImports | express fs |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:86:4:86:9 | 'myId' | receiverName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:86:4:86:9 | 'myId' | stringConcatenatedWith |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:86:17:86:19 | foo | CalleeFlexibleAccessPath | $().html |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:86:17:86:19 | foo | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:86:17:86:19 | foo | InputArgumentIndex | 0 |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:86:17:86:19 | foo | assignedToPropName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:86:17:86:19 | foo | calleeImports |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:86:17:86:19 | foo | contextFunctionInterfaces | deep(x)\ndeep2(x)\ninner(tainted, resolve)\ninner(x)\nmyWeirdInner(x)\nsafe(x) |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:86:17:86:19 | foo | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:86:17:86:19 | foo | enclosingFunctionBody | foo document location inner x unknown x unknown foo e $ myId html e inner foo e $ myId html e unknown foo bar e $ myId html e unknown prop foo e $ myId html e unknown bar foo e $ myId html e deep x deep2 x deep2 x inner x deep bar foo e $ myId html e tmp bar foo e $ myId html e safe x foo x bar safe foo e $ myId html e safe call null foo e $ myId html e myWeirdInner myWeirdInner x inner x e $ myId html e myWeirdInner foo e $ myId html e $ myId html foo unknown foo match /foo/ e $ myId html e unknown foo bar e $ myId html e unknown foo e $ myId html e |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:86:17:86:19 | foo | enclosingFunctionName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:86:17:86:19 | foo | fileImports | express fs |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:86:17:86:19 | foo | receiverName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:86:17:86:19 | foo | stringConcatenatedWith |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:89:11:89:26 | foo.match(/foo/) | CalleeFlexibleAccessPath | unknown |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:89:11:89:26 | foo.match(/foo/) | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:89:11:89:26 | foo.match(/foo/) | InputArgumentIndex | 0 |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:89:11:89:26 | foo.match(/foo/) | assignedToPropName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:89:11:89:26 | foo.match(/foo/) | calleeImports |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:89:11:89:26 | foo.match(/foo/) | contextFunctionInterfaces | deep(x)\ndeep2(x)\ninner(tainted, resolve)\ninner(x)\nmyWeirdInner(x)\nsafe(x) |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:89:11:89:26 | foo.match(/foo/) | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:89:11:89:26 | foo.match(/foo/) | enclosingFunctionBody | foo document location inner x unknown x unknown foo e $ myId html e inner foo e $ myId html e unknown foo bar e $ myId html e unknown prop foo e $ myId html e unknown bar foo e $ myId html e deep x deep2 x deep2 x inner x deep bar foo e $ myId html e tmp bar foo e $ myId html e safe x foo x bar safe foo e $ myId html e safe call null foo e $ myId html e myWeirdInner myWeirdInner x inner x e $ myId html e myWeirdInner foo e $ myId html e $ myId html foo unknown foo match /foo/ e $ myId html e unknown foo bar e $ myId html e unknown foo e $ myId html e |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:89:11:89:26 | foo.match(/foo/) | enclosingFunctionName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:89:11:89:26 | foo.match(/foo/) | fileImports | express fs |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:89:11:89:26 | foo.match(/foo/) | receiverName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:89:11:89:26 | foo.match(/foo/) | stringConcatenatedWith |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:89:21:89:25 | /foo/ | CalleeFlexibleAccessPath | foo.match |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:89:21:89:25 | /foo/ | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:89:21:89:25 | /foo/ | InputArgumentIndex | 0 |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:89:21:89:25 | /foo/ | assignedToPropName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:89:21:89:25 | /foo/ | calleeImports |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:89:21:89:25 | /foo/ | contextFunctionInterfaces | deep(x)\ndeep2(x)\ninner(tainted, resolve)\ninner(x)\nmyWeirdInner(x)\nsafe(x) |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:89:21:89:25 | /foo/ | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:89:21:89:25 | /foo/ | enclosingFunctionBody | foo document location inner x unknown x unknown foo e $ myId html e inner foo e $ myId html e unknown foo bar e $ myId html e unknown prop foo e $ myId html e unknown bar foo e $ myId html e deep x deep2 x deep2 x inner x deep bar foo e $ myId html e tmp bar foo e $ myId html e safe x foo x bar safe foo e $ myId html e safe call null foo e $ myId html e myWeirdInner myWeirdInner x inner x e $ myId html e myWeirdInner foo e $ myId html e $ myId html foo unknown foo match /foo/ e $ myId html e unknown foo bar e $ myId html e unknown foo e $ myId html e |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:89:21:89:25 | /foo/ | enclosingFunctionName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:89:21:89:25 | /foo/ | fileImports | express fs |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:89:21:89:25 | /foo/ | receiverName | foo |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:89:21:89:25 | /foo/ | stringConcatenatedWith |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:91:5:91:10 | 'myId' | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:91:5:91:10 | 'myId' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:91:5:91:10 | 'myId' | InputArgumentIndex | 0 |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:91:5:91:10 | 'myId' | assignedToPropName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:91:5:91:10 | 'myId' | calleeImports |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:91:5:91:10 | 'myId' | contextFunctionInterfaces | deep(x)\ndeep2(x)\ninner(tainted, resolve)\ninner(x)\nmyWeirdInner(x)\nsafe(x) |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:91:5:91:10 | 'myId' | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:91:5:91:10 | 'myId' | enclosingFunctionBody | foo document location inner x unknown x unknown foo e $ myId html e inner foo e $ myId html e unknown foo bar e $ myId html e unknown prop foo e $ myId html e unknown bar foo e $ myId html e deep x deep2 x deep2 x inner x deep bar foo e $ myId html e tmp bar foo e $ myId html e safe x foo x bar safe foo e $ myId html e safe call null foo e $ myId html e myWeirdInner myWeirdInner x inner x e $ myId html e myWeirdInner foo e $ myId html e $ myId html foo unknown foo match /foo/ e $ myId html e unknown foo bar e $ myId html e unknown foo e $ myId html e |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:91:5:91:10 | 'myId' | enclosingFunctionName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:91:5:91:10 | 'myId' | fileImports | express fs |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:91:5:91:10 | 'myId' | receiverName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:91:5:91:10 | 'myId' | stringConcatenatedWith |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:91:18:91:18 | e | CalleeFlexibleAccessPath | $().html |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:91:18:91:18 | e | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:91:18:91:18 | e | InputArgumentIndex | 0 |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:91:18:91:18 | e | assignedToPropName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:91:18:91:18 | e | calleeImports |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:91:18:91:18 | e | contextFunctionInterfaces | deep(x)\ndeep2(x)\ninner(tainted, resolve)\ninner(x)\nmyWeirdInner(x)\nsafe(x) |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:91:18:91:18 | e | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:91:18:91:18 | e | enclosingFunctionBody | foo document location inner x unknown x unknown foo e $ myId html e inner foo e $ myId html e unknown foo bar e $ myId html e unknown prop foo e $ myId html e unknown bar foo e $ myId html e deep x deep2 x deep2 x inner x deep bar foo e $ myId html e tmp bar foo e $ myId html e safe x foo x bar safe foo e $ myId html e safe call null foo e $ myId html e myWeirdInner myWeirdInner x inner x e $ myId html e myWeirdInner foo e $ myId html e $ myId html foo unknown foo match /foo/ e $ myId html e unknown foo bar e $ myId html e unknown foo e $ myId html e |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:91:18:91:18 | e | enclosingFunctionName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:91:18:91:18 | e | fileImports | express fs |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:91:18:91:18 | e | receiverName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:91:18:91:18 | e | stringConcatenatedWith |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:95:11:95:22 | [foo, "bar"] | CalleeFlexibleAccessPath | unknown |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:95:11:95:22 | [foo, "bar"] | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:95:11:95:22 | [foo, "bar"] | InputArgumentIndex | 0 |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:95:11:95:22 | [foo, "bar"] | assignedToPropName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:95:11:95:22 | [foo, "bar"] | calleeImports |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:95:11:95:22 | [foo, "bar"] | contextFunctionInterfaces | deep(x)\ndeep2(x)\ninner(tainted, resolve)\ninner(x)\nmyWeirdInner(x)\nsafe(x) |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:95:11:95:22 | [foo, "bar"] | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:95:11:95:22 | [foo, "bar"] | enclosingFunctionBody | foo document location inner x unknown x unknown foo e $ myId html e inner foo e $ myId html e unknown foo bar e $ myId html e unknown prop foo e $ myId html e unknown bar foo e $ myId html e deep x deep2 x deep2 x inner x deep bar foo e $ myId html e tmp bar foo e $ myId html e safe x foo x bar safe foo e $ myId html e safe call null foo e $ myId html e myWeirdInner myWeirdInner x inner x e $ myId html e myWeirdInner foo e $ myId html e $ myId html foo unknown foo match /foo/ e $ myId html e unknown foo bar e $ myId html e unknown foo e $ myId html e |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:95:11:95:22 | [foo, "bar"] | enclosingFunctionName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:95:11:95:22 | [foo, "bar"] | fileImports | express fs |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:95:11:95:22 | [foo, "bar"] | receiverName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:95:11:95:22 | [foo, "bar"] | stringConcatenatedWith |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:95:12:95:14 | foo | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:95:12:95:14 | foo | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:95:12:95:14 | foo | InputArgumentIndex |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:95:12:95:14 | foo | assignedToPropName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:95:12:95:14 | foo | calleeImports |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:95:12:95:14 | foo | contextFunctionInterfaces | deep(x)\ndeep2(x)\ninner(tainted, resolve)\ninner(x)\nmyWeirdInner(x)\nsafe(x) |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:95:12:95:14 | foo | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:95:12:95:14 | foo | enclosingFunctionBody | foo document location inner x unknown x unknown foo e $ myId html e inner foo e $ myId html e unknown foo bar e $ myId html e unknown prop foo e $ myId html e unknown bar foo e $ myId html e deep x deep2 x deep2 x inner x deep bar foo e $ myId html e tmp bar foo e $ myId html e safe x foo x bar safe foo e $ myId html e safe call null foo e $ myId html e myWeirdInner myWeirdInner x inner x e $ myId html e myWeirdInner foo e $ myId html e $ myId html foo unknown foo match /foo/ e $ myId html e unknown foo bar e $ myId html e unknown foo e $ myId html e |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:95:12:95:14 | foo | enclosingFunctionName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:95:12:95:14 | foo | fileImports | express fs |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:95:12:95:14 | foo | receiverName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:95:12:95:14 | foo | stringConcatenatedWith |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:95:17:95:21 | "bar" | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:95:17:95:21 | "bar" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:95:17:95:21 | "bar" | InputArgumentIndex |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:95:17:95:21 | "bar" | assignedToPropName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:95:17:95:21 | "bar" | calleeImports |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:95:17:95:21 | "bar" | contextFunctionInterfaces | deep(x)\ndeep2(x)\ninner(tainted, resolve)\ninner(x)\nmyWeirdInner(x)\nsafe(x) |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:95:17:95:21 | "bar" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:95:17:95:21 | "bar" | enclosingFunctionBody | foo document location inner x unknown x unknown foo e $ myId html e inner foo e $ myId html e unknown foo bar e $ myId html e unknown prop foo e $ myId html e unknown bar foo e $ myId html e deep x deep2 x deep2 x inner x deep bar foo e $ myId html e tmp bar foo e $ myId html e safe x foo x bar safe foo e $ myId html e safe call null foo e $ myId html e myWeirdInner myWeirdInner x inner x e $ myId html e myWeirdInner foo e $ myId html e $ myId html foo unknown foo match /foo/ e $ myId html e unknown foo bar e $ myId html e unknown foo e $ myId html e |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:95:17:95:21 | "bar" | enclosingFunctionName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:95:17:95:21 | "bar" | fileImports | express fs |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:95:17:95:21 | "bar" | receiverName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:95:17:95:21 | "bar" | stringConcatenatedWith |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:97:5:97:10 | 'myId' | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:97:5:97:10 | 'myId' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:97:5:97:10 | 'myId' | InputArgumentIndex | 0 |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:97:5:97:10 | 'myId' | assignedToPropName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:97:5:97:10 | 'myId' | calleeImports |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:97:5:97:10 | 'myId' | contextFunctionInterfaces | deep(x)\ndeep2(x)\ninner(tainted, resolve)\ninner(x)\nmyWeirdInner(x)\nsafe(x) |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:97:5:97:10 | 'myId' | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:97:5:97:10 | 'myId' | enclosingFunctionBody | foo document location inner x unknown x unknown foo e $ myId html e inner foo e $ myId html e unknown foo bar e $ myId html e unknown prop foo e $ myId html e unknown bar foo e $ myId html e deep x deep2 x deep2 x inner x deep bar foo e $ myId html e tmp bar foo e $ myId html e safe x foo x bar safe foo e $ myId html e safe call null foo e $ myId html e myWeirdInner myWeirdInner x inner x e $ myId html e myWeirdInner foo e $ myId html e $ myId html foo unknown foo match /foo/ e $ myId html e unknown foo bar e $ myId html e unknown foo e $ myId html e |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:97:5:97:10 | 'myId' | enclosingFunctionName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:97:5:97:10 | 'myId' | fileImports | express fs |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:97:5:97:10 | 'myId' | receiverName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:97:5:97:10 | 'myId' | stringConcatenatedWith |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:97:18:97:18 | e | CalleeFlexibleAccessPath | $().html |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:97:18:97:18 | e | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:97:18:97:18 | e | InputArgumentIndex | 0 |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:97:18:97:18 | e | assignedToPropName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:97:18:97:18 | e | calleeImports |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:97:18:97:18 | e | contextFunctionInterfaces | deep(x)\ndeep2(x)\ninner(tainted, resolve)\ninner(x)\nmyWeirdInner(x)\nsafe(x) |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:97:18:97:18 | e | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:97:18:97:18 | e | enclosingFunctionBody | foo document location inner x unknown x unknown foo e $ myId html e inner foo e $ myId html e unknown foo bar e $ myId html e unknown prop foo e $ myId html e unknown bar foo e $ myId html e deep x deep2 x deep2 x inner x deep bar foo e $ myId html e tmp bar foo e $ myId html e safe x foo x bar safe foo e $ myId html e safe call null foo e $ myId html e myWeirdInner myWeirdInner x inner x e $ myId html e myWeirdInner foo e $ myId html e $ myId html foo unknown foo match /foo/ e $ myId html e unknown foo bar e $ myId html e unknown foo e $ myId html e |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:97:18:97:18 | e | enclosingFunctionName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:97:18:97:18 | e | fileImports | express fs |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:97:18:97:18 | e | receiverName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:97:18:97:18 | e | stringConcatenatedWith |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:102:12:102:14 | foo | CalleeFlexibleAccessPath | unknown |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:102:12:102:14 | foo | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:102:12:102:14 | foo | InputArgumentIndex | 0 |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:102:12:102:14 | foo | assignedToPropName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:102:12:102:14 | foo | calleeImports |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:102:12:102:14 | foo | contextFunctionInterfaces | deep(x)\ndeep2(x)\ninner(tainted, resolve)\ninner(x)\nmyWeirdInner(x)\nsafe(x) |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:102:12:102:14 | foo | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:102:12:102:14 | foo | enclosingFunctionBody | foo document location inner x unknown x unknown foo e $ myId html e inner foo e $ myId html e unknown foo bar e $ myId html e unknown prop foo e $ myId html e unknown bar foo e $ myId html e deep x deep2 x deep2 x inner x deep bar foo e $ myId html e tmp bar foo e $ myId html e safe x foo x bar safe foo e $ myId html e safe call null foo e $ myId html e myWeirdInner myWeirdInner x inner x e $ myId html e myWeirdInner foo e $ myId html e $ myId html foo unknown foo match /foo/ e $ myId html e unknown foo bar e $ myId html e unknown foo e $ myId html e |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:102:12:102:14 | foo | enclosingFunctionName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:102:12:102:14 | foo | fileImports | express fs |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:102:12:102:14 | foo | receiverName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:102:12:102:14 | foo | stringConcatenatedWith |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:107:5:107:10 | 'myId' | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:107:5:107:10 | 'myId' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:107:5:107:10 | 'myId' | InputArgumentIndex | 0 |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:107:5:107:10 | 'myId' | assignedToPropName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:107:5:107:10 | 'myId' | calleeImports |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:107:5:107:10 | 'myId' | contextFunctionInterfaces | deep(x)\ndeep2(x)\ninner(tainted, resolve)\ninner(x)\nmyWeirdInner(x)\nsafe(x) |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:107:5:107:10 | 'myId' | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:107:5:107:10 | 'myId' | enclosingFunctionBody | foo document location inner x unknown x unknown foo e $ myId html e inner foo e $ myId html e unknown foo bar e $ myId html e unknown prop foo e $ myId html e unknown bar foo e $ myId html e deep x deep2 x deep2 x inner x deep bar foo e $ myId html e tmp bar foo e $ myId html e safe x foo x bar safe foo e $ myId html e safe call null foo e $ myId html e myWeirdInner myWeirdInner x inner x e $ myId html e myWeirdInner foo e $ myId html e $ myId html foo unknown foo match /foo/ e $ myId html e unknown foo bar e $ myId html e unknown foo e $ myId html e |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:107:5:107:10 | 'myId' | enclosingFunctionName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:107:5:107:10 | 'myId' | fileImports | express fs |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:107:5:107:10 | 'myId' | receiverName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:107:5:107:10 | 'myId' | stringConcatenatedWith |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:107:18:107:18 | e | CalleeFlexibleAccessPath | $().html |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:107:18:107:18 | e | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:107:18:107:18 | e | InputArgumentIndex | 0 |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:107:18:107:18 | e | assignedToPropName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:107:18:107:18 | e | calleeImports |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:107:18:107:18 | e | contextFunctionInterfaces | deep(x)\ndeep2(x)\ninner(tainted, resolve)\ninner(x)\nmyWeirdInner(x)\nsafe(x) |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:107:18:107:18 | e | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:107:18:107:18 | e | enclosingFunctionBody | foo document location inner x unknown x unknown foo e $ myId html e inner foo e $ myId html e unknown foo bar e $ myId html e unknown prop foo e $ myId html e unknown bar foo e $ myId html e deep x deep2 x deep2 x inner x deep bar foo e $ myId html e tmp bar foo e $ myId html e safe x foo x bar safe foo e $ myId html e safe call null foo e $ myId html e myWeirdInner myWeirdInner x inner x e $ myId html e myWeirdInner foo e $ myId html e $ myId html foo unknown foo match /foo/ e $ myId html e unknown foo bar e $ myId html e unknown foo e $ myId html e |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:107:18:107:18 | e | enclosingFunctionName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:107:18:107:18 | e | fileImports | express fs |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:107:18:107:18 | e | receiverName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:107:18:107:18 | e | stringConcatenatedWith |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:111:23:111:31 | 'express' | CalleeFlexibleAccessPath | require |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:111:23:111:31 | 'express' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:111:23:111:31 | 'express' | InputArgumentIndex | 0 |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:111:23:111:31 | 'express' | assignedToPropName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:111:23:111:31 | 'express' | calleeImports |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:111:23:111:31 | 'express' | contextFunctionInterfaces | deep(x)\ndeep2(x)\ninner(tainted, resolve)\ninner(x)\nmyWeirdInner(x)\nsafe(x) |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:111:23:111:31 | 'express' | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:111:23:111:31 | 'express' | enclosingFunctionBody |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:111:23:111:31 | 'express' | enclosingFunctionName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:111:23:111:31 | 'express' | fileImports | express fs |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:111:23:111:31 | 'express' | receiverName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:111:23:111:31 | 'express' | stringConcatenatedWith |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:115:9:115:19 | '/user/:id' | CalleeFlexibleAccessPath | app.get |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:115:9:115:19 | '/user/:id' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:115:9:115:19 | '/user/:id' | InputArgumentIndex | 0 |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:115:9:115:19 | '/user/:id' | assignedToPropName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:115:9:115:19 | '/user/:id' | calleeImports | express |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:115:9:115:19 | '/user/:id' | contextFunctionInterfaces | deep(x)\ndeep2(x)\ninner(tainted, resolve)\ninner(x)\nmyWeirdInner(x)\nsafe(x) |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:115:9:115:19 | '/user/:id' | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:115:9:115:19 | '/user/:id' | enclosingFunctionBody |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:115:9:115:19 | '/user/:id' | enclosingFunctionName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:115:9:115:19 | '/user/:id' | fileImports | express fs |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:115:9:115:19 | '/user/:id' | receiverName | app |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:115:9:115:19 | '/user/:id' | stringConcatenatedWith |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:115:22:121:1 | functio ... K!\\n\\t}\\n} | CalleeFlexibleAccessPath | app.get |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:115:22:121:1 | functio ... K!\\n\\t}\\n} | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:115:22:121:1 | functio ... K!\\n\\t}\\n} | InputArgumentIndex | 1 |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:115:22:121:1 | functio ... K!\\n\\t}\\n} | assignedToPropName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:115:22:121:1 | functio ... K!\\n\\t}\\n} | calleeImports | express |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:115:22:121:1 | functio ... K!\\n\\t}\\n} | contextFunctionInterfaces | deep(x)\ndeep2(x)\ninner(tainted, resolve)\ninner(x)\nmyWeirdInner(x)\nsafe(x) |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:115:22:121:1 | functio ... K!\\n\\t}\\n} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:115:22:121:1 | functio ... K!\\n\\t}\\n} | enclosingFunctionBody |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:115:22:121:1 | functio ... K!\\n\\t}\\n} | enclosingFunctionName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:115:22:121:1 | functio ... K!\\n\\t}\\n} | fileImports | express fs |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:115:22:121:1 | functio ... K!\\n\\t}\\n} | receiverName | app |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:115:22:121:1 | functio ... K!\\n\\t}\\n} | stringConcatenatedWith |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:117:11:117:23 | req.params.id | CalleeFlexibleAccessPath | unknown |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:117:11:117:23 | req.params.id | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:117:11:117:23 | req.params.id | InputArgumentIndex | 0 |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:117:11:117:23 | req.params.id | assignedToPropName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:117:11:117:23 | req.params.id | calleeImports |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:117:11:117:23 | req.params.id | contextFunctionInterfaces | deep(x)\ndeep2(x)\ninner(tainted, resolve)\ninner(x)\nmyWeirdInner(x)\nsafe(x) |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:117:11:117:23 | req.params.id | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:117:11:117:23 | req.params.id | enclosingFunctionBody | req res unknown req params id e res send Exception:  e |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:117:11:117:23 | req.params.id | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:117:11:117:23 | req.params.id | fileImports | express fs |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:117:11:117:23 | req.params.id | receiverName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:117:11:117:23 | req.params.id | stringConcatenatedWith |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:125:25:125:42 | 'exceptionSession' | CalleeFlexibleAccessPath | sessionStorage.setItem |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:125:25:125:42 | 'exceptionSession' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:125:25:125:42 | 'exceptionSession' | InputArgumentIndex | 0 |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:125:25:125:42 | 'exceptionSession' | assignedToPropName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:125:25:125:42 | 'exceptionSession' | calleeImports |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:125:25:125:42 | 'exceptionSession' | contextFunctionInterfaces | deep(x)\ndeep2(x)\ninner(tainted, resolve)\ninner(x)\nmyWeirdInner(x)\nsafe(x) |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:125:25:125:42 | 'exceptionSession' | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:125:25:125:42 | 'exceptionSession' | enclosingFunctionBody | sessionStorage setItem exceptionSession document location search unknown sessionStorage getItem exceptionSession e $ myId html e |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:125:25:125:42 | 'exceptionSession' | enclosingFunctionName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:125:25:125:42 | 'exceptionSession' | fileImports | express fs |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:125:25:125:42 | 'exceptionSession' | receiverName | sessionStorage |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:125:25:125:42 | 'exceptionSession' | stringConcatenatedWith |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:125:45:125:68 | documen ... .search | CalleeFlexibleAccessPath | sessionStorage.setItem |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:125:45:125:68 | documen ... .search | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:125:45:125:68 | documen ... .search | InputArgumentIndex | 1 |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:125:45:125:68 | documen ... .search | assignedToPropName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:125:45:125:68 | documen ... .search | calleeImports |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:125:45:125:68 | documen ... .search | contextFunctionInterfaces | deep(x)\ndeep2(x)\ninner(tainted, resolve)\ninner(x)\nmyWeirdInner(x)\nsafe(x) |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:125:45:125:68 | documen ... .search | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:125:45:125:68 | documen ... .search | enclosingFunctionBody | sessionStorage setItem exceptionSession document location search unknown sessionStorage getItem exceptionSession e $ myId html e |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:125:45:125:68 | documen ... .search | enclosingFunctionName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:125:45:125:68 | documen ... .search | fileImports | express fs |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:125:45:125:68 | documen ... .search | receiverName | sessionStorage |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:125:45:125:68 | documen ... .search | stringConcatenatedWith |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:128:11:128:52 | session ... ssion') | CalleeFlexibleAccessPath | unknown |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:128:11:128:52 | session ... ssion') | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:128:11:128:52 | session ... ssion') | InputArgumentIndex | 0 |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:128:11:128:52 | session ... ssion') | assignedToPropName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:128:11:128:52 | session ... ssion') | calleeImports |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:128:11:128:52 | session ... ssion') | contextFunctionInterfaces | deep(x)\ndeep2(x)\ninner(tainted, resolve)\ninner(x)\nmyWeirdInner(x)\nsafe(x) |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:128:11:128:52 | session ... ssion') | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:128:11:128:52 | session ... ssion') | enclosingFunctionBody | sessionStorage setItem exceptionSession document location search unknown sessionStorage getItem exceptionSession e $ myId html e |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:128:11:128:52 | session ... ssion') | enclosingFunctionName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:128:11:128:52 | session ... ssion') | fileImports | express fs |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:128:11:128:52 | session ... ssion') | receiverName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:128:11:128:52 | session ... ssion') | stringConcatenatedWith |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:128:34:128:51 | 'exceptionSession' | CalleeFlexibleAccessPath | sessionStorage.getItem |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:128:34:128:51 | 'exceptionSession' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:128:34:128:51 | 'exceptionSession' | InputArgumentIndex | 0 |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:128:34:128:51 | 'exceptionSession' | assignedToPropName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:128:34:128:51 | 'exceptionSession' | calleeImports |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:128:34:128:51 | 'exceptionSession' | contextFunctionInterfaces | deep(x)\ndeep2(x)\ninner(tainted, resolve)\ninner(x)\nmyWeirdInner(x)\nsafe(x) |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:128:34:128:51 | 'exceptionSession' | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:128:34:128:51 | 'exceptionSession' | enclosingFunctionBody | sessionStorage setItem exceptionSession document location search unknown sessionStorage getItem exceptionSession e $ myId html e |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:128:34:128:51 | 'exceptionSession' | enclosingFunctionName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:128:34:128:51 | 'exceptionSession' | fileImports | express fs |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:128:34:128:51 | 'exceptionSession' | receiverName | sessionStorage |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:128:34:128:51 | 'exceptionSession' | stringConcatenatedWith |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:130:5:130:10 | 'myId' | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:130:5:130:10 | 'myId' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:130:5:130:10 | 'myId' | InputArgumentIndex | 0 |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:130:5:130:10 | 'myId' | assignedToPropName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:130:5:130:10 | 'myId' | calleeImports |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:130:5:130:10 | 'myId' | contextFunctionInterfaces | deep(x)\ndeep2(x)\ninner(tainted, resolve)\ninner(x)\nmyWeirdInner(x)\nsafe(x) |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:130:5:130:10 | 'myId' | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:130:5:130:10 | 'myId' | enclosingFunctionBody | sessionStorage setItem exceptionSession document location search unknown sessionStorage getItem exceptionSession e $ myId html e |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:130:5:130:10 | 'myId' | enclosingFunctionName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:130:5:130:10 | 'myId' | fileImports | express fs |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:130:5:130:10 | 'myId' | receiverName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:130:5:130:10 | 'myId' | stringConcatenatedWith |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:130:18:130:18 | e | CalleeFlexibleAccessPath | $().html |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:130:18:130:18 | e | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:130:18:130:18 | e | InputArgumentIndex | 0 |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:130:18:130:18 | e | assignedToPropName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:130:18:130:18 | e | calleeImports |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:130:18:130:18 | e | contextFunctionInterfaces | deep(x)\ndeep2(x)\ninner(tainted, resolve)\ninner(x)\nmyWeirdInner(x)\nsafe(x) |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:130:18:130:18 | e | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:130:18:130:18 | e | enclosingFunctionBody | sessionStorage setItem exceptionSession document location search unknown sessionStorage getItem exceptionSession e $ myId html e |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:130:18:130:18 | e | enclosingFunctionName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:130:18:130:18 | e | fileImports | express fs |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:130:18:130:18 | e | receiverName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:130:18:130:18 | e | stringConcatenatedWith |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:135:9:135:19 | '/user/:id' | CalleeFlexibleAccessPath | app.get |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:135:9:135:19 | '/user/:id' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:135:9:135:19 | '/user/:id' | InputArgumentIndex | 0 |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:135:9:135:19 | '/user/:id' | assignedToPropName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:135:9:135:19 | '/user/:id' | calleeImports | express |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:135:9:135:19 | '/user/:id' | contextFunctionInterfaces | deep(x)\ndeep2(x)\ninner(tainted, resolve)\ninner(x)\nmyWeirdInner(x)\nsafe(x) |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:135:9:135:19 | '/user/:id' | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:135:9:135:19 | '/user/:id' | enclosingFunctionBody |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:135:9:135:19 | '/user/:id' | enclosingFunctionName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:135:9:135:19 | '/user/:id' | fileImports | express fs |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:135:9:135:19 | '/user/:id' | receiverName | app |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:135:9:135:19 | '/user/:id' | stringConcatenatedWith |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:135:22:143:1 | functio ... \\n\\t});\\n} | CalleeFlexibleAccessPath | app.get |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:135:22:143:1 | functio ... \\n\\t});\\n} | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:135:22:143:1 | functio ... \\n\\t});\\n} | InputArgumentIndex | 1 |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:135:22:143:1 | functio ... \\n\\t});\\n} | assignedToPropName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:135:22:143:1 | functio ... \\n\\t});\\n} | calleeImports | express |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:135:22:143:1 | functio ... \\n\\t});\\n} | contextFunctionInterfaces | deep(x)\ndeep2(x)\ninner(tainted, resolve)\ninner(x)\nmyWeirdInner(x)\nsafe(x) |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:135:22:143:1 | functio ... \\n\\t});\\n} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:135:22:143:1 | functio ... \\n\\t});\\n} | enclosingFunctionBody |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:135:22:143:1 | functio ... \\n\\t});\\n} | enclosingFunctionName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:135:22:143:1 | functio ... \\n\\t});\\n} | fileImports | express fs |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:135:22:143:1 | functio ... \\n\\t});\\n} | receiverName | app |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:135:22:143:1 | functio ... \\n\\t});\\n} | stringConcatenatedWith |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:136:10:136:22 | req.params.id | CalleeFlexibleAccessPath | unknown |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:136:10:136:22 | req.params.id | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:136:10:136:22 | req.params.id | InputArgumentIndex | 0 |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:136:10:136:22 | req.params.id | assignedToPropName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:136:10:136:22 | req.params.id | calleeImports |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:136:10:136:22 | req.params.id | contextFunctionInterfaces | deep(x)\ndeep2(x)\ninner(tainted, resolve)\ninner(x)\nmyWeirdInner(x)\nsafe(x) |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:136:10:136:22 | req.params.id | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:136:10:136:22 | req.params.id | enclosingFunctionBody | req res unknown req params id error res error $ myId html error $ myId html res |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:136:10:136:22 | req.params.id | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:136:10:136:22 | req.params.id | fileImports | express fs |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:136:10:136:22 | req.params.id | receiverName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:136:10:136:22 | req.params.id | stringConcatenatedWith |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:136:25:142:2 | (error, ... ow?)\\n\\t} | CalleeFlexibleAccessPath | unknown |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:136:25:142:2 | (error, ... ow?)\\n\\t} | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:136:25:142:2 | (error, ... ow?)\\n\\t} | InputArgumentIndex | 1 |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:136:25:142:2 | (error, ... ow?)\\n\\t} | assignedToPropName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:136:25:142:2 | (error, ... ow?)\\n\\t} | calleeImports |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:136:25:142:2 | (error, ... ow?)\\n\\t} | contextFunctionInterfaces | deep(x)\ndeep2(x)\ninner(tainted, resolve)\ninner(x)\nmyWeirdInner(x)\nsafe(x) |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:136:25:142:2 | (error, ... ow?)\\n\\t} | contextSurroundingFunctionParameters | (req, res)\n(error, res) |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:136:25:142:2 | (error, ... ow?)\\n\\t} | enclosingFunctionBody | req res unknown req params id error res error $ myId html error $ myId html res |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:136:25:142:2 | (error, ... ow?)\\n\\t} | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:136:25:142:2 | (error, ... ow?)\\n\\t} | fileImports | express fs |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:136:25:142:2 | (error, ... ow?)\\n\\t} | receiverName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:136:25:142:2 | (error, ... ow?)\\n\\t} | stringConcatenatedWith |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:138:6:138:11 | 'myId' | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:138:6:138:11 | 'myId' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:138:6:138:11 | 'myId' | InputArgumentIndex | 0 |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:138:6:138:11 | 'myId' | assignedToPropName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:138:6:138:11 | 'myId' | calleeImports |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:138:6:138:11 | 'myId' | contextFunctionInterfaces | deep(x)\ndeep2(x)\ninner(tainted, resolve)\ninner(x)\nmyWeirdInner(x)\nsafe(x) |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:138:6:138:11 | 'myId' | contextSurroundingFunctionParameters | (req, res)\n(error, res) |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:138:6:138:11 | 'myId' | enclosingFunctionBody | req res unknown req params id error res error $ myId html error $ myId html res |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:138:6:138:11 | 'myId' | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:138:6:138:11 | 'myId' | fileImports | express fs |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:138:6:138:11 | 'myId' | receiverName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:138:6:138:11 | 'myId' | stringConcatenatedWith |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:138:19:138:23 | error | CalleeFlexibleAccessPath | $().html |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:138:19:138:23 | error | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:138:19:138:23 | error | InputArgumentIndex | 0 |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:138:19:138:23 | error | assignedToPropName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:138:19:138:23 | error | calleeImports |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:138:19:138:23 | error | contextFunctionInterfaces | deep(x)\ndeep2(x)\ninner(tainted, resolve)\ninner(x)\nmyWeirdInner(x)\nsafe(x) |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:138:19:138:23 | error | contextSurroundingFunctionParameters | (req, res)\n(error, res) |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:138:19:138:23 | error | enclosingFunctionBody | req res unknown req params id error res error $ myId html error $ myId html res |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:138:19:138:23 | error | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:138:19:138:23 | error | fileImports | express fs |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:138:19:138:23 | error | receiverName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:138:19:138:23 | error | stringConcatenatedWith |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:141:5:141:10 | 'myId' | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:141:5:141:10 | 'myId' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:141:5:141:10 | 'myId' | InputArgumentIndex | 0 |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:141:5:141:10 | 'myId' | assignedToPropName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:141:5:141:10 | 'myId' | calleeImports |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:141:5:141:10 | 'myId' | contextFunctionInterfaces | deep(x)\ndeep2(x)\ninner(tainted, resolve)\ninner(x)\nmyWeirdInner(x)\nsafe(x) |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:141:5:141:10 | 'myId' | contextSurroundingFunctionParameters | (req, res)\n(error, res) |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:141:5:141:10 | 'myId' | enclosingFunctionBody | req res unknown req params id error res error $ myId html error $ myId html res |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:141:5:141:10 | 'myId' | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:141:5:141:10 | 'myId' | fileImports | express fs |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:141:5:141:10 | 'myId' | receiverName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:141:5:141:10 | 'myId' | stringConcatenatedWith |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:141:18:141:20 | res | CalleeFlexibleAccessPath | $().html |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:141:18:141:20 | res | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:141:18:141:20 | res | InputArgumentIndex | 0 |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:141:18:141:20 | res | assignedToPropName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:141:18:141:20 | res | calleeImports |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:141:18:141:20 | res | contextFunctionInterfaces | deep(x)\ndeep2(x)\ninner(tainted, resolve)\ninner(x)\nmyWeirdInner(x)\nsafe(x) |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:141:18:141:20 | res | contextSurroundingFunctionParameters | (req, res)\n(error, res) |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:141:18:141:20 | res | enclosingFunctionBody | req res unknown req params id error res error $ myId html error $ myId html res |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:141:18:141:20 | res | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:141:18:141:20 | res | fileImports | express fs |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:141:18:141:20 | res | receiverName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:141:18:141:20 | res | stringConcatenatedWith |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:148:33:148:35 | foo | CalleeFlexibleAccessPath | unknown |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:148:33:148:35 | foo | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:148:33:148:35 | foo | InputArgumentIndex | 0 |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:148:33:148:35 | foo | assignedToPropName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:148:33:148:35 | foo | calleeImports |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:148:33:148:35 | foo | contextFunctionInterfaces | deep(x)\ndeep2(x)\ninner(tainted, resolve)\ninner(x)\nmyWeirdInner(x)\nsafe(x) |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:148:33:148:35 | foo | contextSurroundingFunctionParameters | ()\n(resolve) |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:148:33:148:35 | foo | enclosingFunctionBody | foo document location search Promise resolve unknown foo resolve catch e $ myId html e null foo e $ myId html e unknown foo e $ myId html e foo foo e $ myId html e inner tainted resolve unknown tainted resolve Promise resolve inner foo resolve catch e $ myId html e |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:148:33:148:35 | foo | enclosingFunctionName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:148:33:148:35 | foo | fileImports | express fs |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:148:33:148:35 | foo | receiverName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:148:33:148:35 | foo | stringConcatenatedWith |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:148:38:148:44 | resolve | CalleeFlexibleAccessPath | unknown |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:148:38:148:44 | resolve | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:148:38:148:44 | resolve | InputArgumentIndex | 1 |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:148:38:148:44 | resolve | assignedToPropName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:148:38:148:44 | resolve | calleeImports |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:148:38:148:44 | resolve | contextFunctionInterfaces | deep(x)\ndeep2(x)\ninner(tainted, resolve)\ninner(x)\nmyWeirdInner(x)\nsafe(x) |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:148:38:148:44 | resolve | contextSurroundingFunctionParameters | ()\n(resolve) |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:148:38:148:44 | resolve | enclosingFunctionBody | foo document location search Promise resolve unknown foo resolve catch e $ myId html e null foo e $ myId html e unknown foo e $ myId html e foo foo e $ myId html e inner tainted resolve unknown tainted resolve Promise resolve inner foo resolve catch e $ myId html e |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:148:38:148:44 | resolve | enclosingFunctionName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:148:38:148:44 | resolve | fileImports | express fs |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:148:38:148:44 | resolve | receiverName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:148:38:148:44 | resolve | stringConcatenatedWith |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:148:54:150:2 | (e) =>  ... T OK\\n\\t} | CalleeFlexibleAccessPath | Promise().catch |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:148:54:150:2 | (e) =>  ... T OK\\n\\t} | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:148:54:150:2 | (e) =>  ... T OK\\n\\t} | InputArgumentIndex | 0 |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:148:54:150:2 | (e) =>  ... T OK\\n\\t} | assignedToPropName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:148:54:150:2 | (e) =>  ... T OK\\n\\t} | calleeImports |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:148:54:150:2 | (e) =>  ... T OK\\n\\t} | contextFunctionInterfaces | deep(x)\ndeep2(x)\ninner(tainted, resolve)\ninner(x)\nmyWeirdInner(x)\nsafe(x) |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:148:54:150:2 | (e) =>  ... T OK\\n\\t} | contextSurroundingFunctionParameters | ()\n(e) |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:148:54:150:2 | (e) =>  ... T OK\\n\\t} | enclosingFunctionBody | foo document location search Promise resolve unknown foo resolve catch e $ myId html e null foo e $ myId html e unknown foo e $ myId html e foo foo e $ myId html e inner tainted resolve unknown tainted resolve Promise resolve inner foo resolve catch e $ myId html e |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:148:54:150:2 | (e) =>  ... T OK\\n\\t} | enclosingFunctionName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:148:54:150:2 | (e) =>  ... T OK\\n\\t} | fileImports | express fs |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:148:54:150:2 | (e) =>  ... T OK\\n\\t} | receiverName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:148:54:150:2 | (e) =>  ... T OK\\n\\t} | stringConcatenatedWith |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:149:5:149:10 | 'myId' | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:149:5:149:10 | 'myId' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:149:5:149:10 | 'myId' | InputArgumentIndex | 0 |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:149:5:149:10 | 'myId' | assignedToPropName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:149:5:149:10 | 'myId' | calleeImports |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:149:5:149:10 | 'myId' | contextFunctionInterfaces | deep(x)\ndeep2(x)\ninner(tainted, resolve)\ninner(x)\nmyWeirdInner(x)\nsafe(x) |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:149:5:149:10 | 'myId' | contextSurroundingFunctionParameters | ()\n(e) |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:149:5:149:10 | 'myId' | enclosingFunctionBody | foo document location search Promise resolve unknown foo resolve catch e $ myId html e null foo e $ myId html e unknown foo e $ myId html e foo foo e $ myId html e inner tainted resolve unknown tainted resolve Promise resolve inner foo resolve catch e $ myId html e |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:149:5:149:10 | 'myId' | enclosingFunctionName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:149:5:149:10 | 'myId' | fileImports | express fs |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:149:5:149:10 | 'myId' | receiverName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:149:5:149:10 | 'myId' | stringConcatenatedWith |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:149:18:149:18 | e | CalleeFlexibleAccessPath | $().html |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:149:18:149:18 | e | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:149:18:149:18 | e | InputArgumentIndex | 0 |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:149:18:149:18 | e | assignedToPropName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:149:18:149:18 | e | calleeImports |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:149:18:149:18 | e | contextFunctionInterfaces | deep(x)\ndeep2(x)\ninner(tainted, resolve)\ninner(x)\nmyWeirdInner(x)\nsafe(x) |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:149:18:149:18 | e | contextSurroundingFunctionParameters | ()\n(e) |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:149:18:149:18 | e | enclosingFunctionBody | foo document location search Promise resolve unknown foo resolve catch e $ myId html e null foo e $ myId html e unknown foo e $ myId html e foo foo e $ myId html e inner tainted resolve unknown tainted resolve Promise resolve inner foo resolve catch e $ myId html e |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:149:18:149:18 | e | enclosingFunctionName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:149:18:149:18 | e | fileImports | express fs |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:149:18:149:18 | e | receiverName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:149:18:149:18 | e | stringConcatenatedWith |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:155:5:155:10 | 'myId' | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:155:5:155:10 | 'myId' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:155:5:155:10 | 'myId' | InputArgumentIndex | 0 |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:155:5:155:10 | 'myId' | assignedToPropName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:155:5:155:10 | 'myId' | calleeImports |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:155:5:155:10 | 'myId' | contextFunctionInterfaces | deep(x)\ndeep2(x)\ninner(tainted, resolve)\ninner(x)\nmyWeirdInner(x)\nsafe(x) |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:155:5:155:10 | 'myId' | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:155:5:155:10 | 'myId' | enclosingFunctionBody | foo document location search Promise resolve unknown foo resolve catch e $ myId html e null foo e $ myId html e unknown foo e $ myId html e foo foo e $ myId html e inner tainted resolve unknown tainted resolve Promise resolve inner foo resolve catch e $ myId html e |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:155:5:155:10 | 'myId' | enclosingFunctionName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:155:5:155:10 | 'myId' | fileImports | express fs |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:155:5:155:10 | 'myId' | receiverName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:155:5:155:10 | 'myId' | stringConcatenatedWith |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:155:18:155:18 | e | CalleeFlexibleAccessPath | $().html |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:155:18:155:18 | e | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:155:18:155:18 | e | InputArgumentIndex | 0 |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:155:18:155:18 | e | assignedToPropName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:155:18:155:18 | e | calleeImports |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:155:18:155:18 | e | contextFunctionInterfaces | deep(x)\ndeep2(x)\ninner(tainted, resolve)\ninner(x)\nmyWeirdInner(x)\nsafe(x) |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:155:18:155:18 | e | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:155:18:155:18 | e | enclosingFunctionBody | foo document location search Promise resolve unknown foo resolve catch e $ myId html e null foo e $ myId html e unknown foo e $ myId html e foo foo e $ myId html e inner tainted resolve unknown tainted resolve Promise resolve inner foo resolve catch e $ myId html e |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:155:18:155:18 | e | enclosingFunctionName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:155:18:155:18 | e | fileImports | express fs |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:155:18:155:18 | e | receiverName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:155:18:155:18 | e | stringConcatenatedWith |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:161:5:161:10 | 'myId' | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:161:5:161:10 | 'myId' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:161:5:161:10 | 'myId' | InputArgumentIndex | 0 |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:161:5:161:10 | 'myId' | assignedToPropName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:161:5:161:10 | 'myId' | calleeImports |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:161:5:161:10 | 'myId' | contextFunctionInterfaces | deep(x)\ndeep2(x)\ninner(tainted, resolve)\ninner(x)\nmyWeirdInner(x)\nsafe(x) |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:161:5:161:10 | 'myId' | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:161:5:161:10 | 'myId' | enclosingFunctionBody | foo document location search Promise resolve unknown foo resolve catch e $ myId html e null foo e $ myId html e unknown foo e $ myId html e foo foo e $ myId html e inner tainted resolve unknown tainted resolve Promise resolve inner foo resolve catch e $ myId html e |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:161:5:161:10 | 'myId' | enclosingFunctionName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:161:5:161:10 | 'myId' | fileImports | express fs |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:161:5:161:10 | 'myId' | receiverName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:161:5:161:10 | 'myId' | stringConcatenatedWith |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:161:18:161:18 | e | CalleeFlexibleAccessPath | $().html |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:161:18:161:18 | e | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:161:18:161:18 | e | InputArgumentIndex | 0 |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:161:18:161:18 | e | assignedToPropName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:161:18:161:18 | e | calleeImports |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:161:18:161:18 | e | contextFunctionInterfaces | deep(x)\ndeep2(x)\ninner(tainted, resolve)\ninner(x)\nmyWeirdInner(x)\nsafe(x) |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:161:18:161:18 | e | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:161:18:161:18 | e | enclosingFunctionBody | foo document location search Promise resolve unknown foo resolve catch e $ myId html e null foo e $ myId html e unknown foo e $ myId html e foo foo e $ myId html e inner tainted resolve unknown tainted resolve Promise resolve inner foo resolve catch e $ myId html e |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:161:18:161:18 | e | enclosingFunctionName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:161:18:161:18 | e | fileImports | express fs |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:161:18:161:18 | e | receiverName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:161:18:161:18 | e | stringConcatenatedWith |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:167:5:167:10 | 'myId' | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:167:5:167:10 | 'myId' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:167:5:167:10 | 'myId' | InputArgumentIndex | 0 |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:167:5:167:10 | 'myId' | assignedToPropName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:167:5:167:10 | 'myId' | calleeImports |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:167:5:167:10 | 'myId' | contextFunctionInterfaces | deep(x)\ndeep2(x)\ninner(tainted, resolve)\ninner(x)\nmyWeirdInner(x)\nsafe(x) |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:167:5:167:10 | 'myId' | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:167:5:167:10 | 'myId' | enclosingFunctionBody | foo document location search Promise resolve unknown foo resolve catch e $ myId html e null foo e $ myId html e unknown foo e $ myId html e foo foo e $ myId html e inner tainted resolve unknown tainted resolve Promise resolve inner foo resolve catch e $ myId html e |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:167:5:167:10 | 'myId' | enclosingFunctionName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:167:5:167:10 | 'myId' | fileImports | express fs |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:167:5:167:10 | 'myId' | receiverName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:167:5:167:10 | 'myId' | stringConcatenatedWith |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:167:18:167:18 | e | CalleeFlexibleAccessPath | $().html |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:167:18:167:18 | e | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:167:18:167:18 | e | InputArgumentIndex | 0 |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:167:18:167:18 | e | assignedToPropName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:167:18:167:18 | e | calleeImports |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:167:18:167:18 | e | contextFunctionInterfaces | deep(x)\ndeep2(x)\ninner(tainted, resolve)\ninner(x)\nmyWeirdInner(x)\nsafe(x) |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:167:18:167:18 | e | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:167:18:167:18 | e | enclosingFunctionBody | foo document location search Promise resolve unknown foo resolve catch e $ myId html e null foo e $ myId html e unknown foo e $ myId html e foo foo e $ myId html e inner tainted resolve unknown tainted resolve Promise resolve inner foo resolve catch e $ myId html e |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:167:18:167:18 | e | enclosingFunctionName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:167:18:167:18 | e | fileImports | express fs |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:167:18:167:18 | e | receiverName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:167:18:167:18 | e | stringConcatenatedWith |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:171:11:171:17 | tainted | CalleeFlexibleAccessPath | unknown |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:171:11:171:17 | tainted | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:171:11:171:17 | tainted | InputArgumentIndex | 0 |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:171:11:171:17 | tainted | assignedToPropName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:171:11:171:17 | tainted | calleeImports |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:171:11:171:17 | tainted | contextFunctionInterfaces | deep(x)\ndeep2(x)\ninner(tainted, resolve)\ninner(x)\nmyWeirdInner(x)\nsafe(x) |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:171:11:171:17 | tainted | contextSurroundingFunctionParameters | (tainted, resolve) |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:171:11:171:17 | tainted | enclosingFunctionBody | foo document location search Promise resolve unknown foo resolve catch e $ myId html e null foo e $ myId html e unknown foo e $ myId html e foo foo e $ myId html e inner tainted resolve unknown tainted resolve Promise resolve inner foo resolve catch e $ myId html e |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:171:11:171:17 | tainted | enclosingFunctionName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:171:11:171:17 | tainted | fileImports | express fs |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:171:11:171:17 | tainted | receiverName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:171:11:171:17 | tainted | stringConcatenatedWith |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:171:20:171:26 | resolve | CalleeFlexibleAccessPath | unknown |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:171:20:171:26 | resolve | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:171:20:171:26 | resolve | InputArgumentIndex | 1 |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:171:20:171:26 | resolve | assignedToPropName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:171:20:171:26 | resolve | calleeImports |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:171:20:171:26 | resolve | contextFunctionInterfaces | deep(x)\ndeep2(x)\ninner(tainted, resolve)\ninner(x)\nmyWeirdInner(x)\nsafe(x) |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:171:20:171:26 | resolve | contextSurroundingFunctionParameters | (tainted, resolve) |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:171:20:171:26 | resolve | enclosingFunctionBody | foo document location search Promise resolve unknown foo resolve catch e $ myId html e null foo e $ myId html e unknown foo e $ myId html e foo foo e $ myId html e inner tainted resolve unknown tainted resolve Promise resolve inner foo resolve catch e $ myId html e |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:171:20:171:26 | resolve | enclosingFunctionName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:171:20:171:26 | resolve | fileImports | express fs |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:171:20:171:26 | resolve | receiverName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:171:20:171:26 | resolve | stringConcatenatedWith |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:174:52:176:2 | (e) =>  ... T OK\\n\\t} | CalleeFlexibleAccessPath | Promise().catch |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:174:52:176:2 | (e) =>  ... T OK\\n\\t} | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:174:52:176:2 | (e) =>  ... T OK\\n\\t} | InputArgumentIndex | 0 |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:174:52:176:2 | (e) =>  ... T OK\\n\\t} | assignedToPropName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:174:52:176:2 | (e) =>  ... T OK\\n\\t} | calleeImports |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:174:52:176:2 | (e) =>  ... T OK\\n\\t} | contextFunctionInterfaces | deep(x)\ndeep2(x)\ninner(tainted, resolve)\ninner(x)\nmyWeirdInner(x)\nsafe(x) |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:174:52:176:2 | (e) =>  ... T OK\\n\\t} | contextSurroundingFunctionParameters | ()\n(e) |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:174:52:176:2 | (e) =>  ... T OK\\n\\t} | enclosingFunctionBody | foo document location search Promise resolve unknown foo resolve catch e $ myId html e null foo e $ myId html e unknown foo e $ myId html e foo foo e $ myId html e inner tainted resolve unknown tainted resolve Promise resolve inner foo resolve catch e $ myId html e |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:174:52:176:2 | (e) =>  ... T OK\\n\\t} | enclosingFunctionName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:174:52:176:2 | (e) =>  ... T OK\\n\\t} | fileImports | express fs |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:174:52:176:2 | (e) =>  ... T OK\\n\\t} | receiverName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:174:52:176:2 | (e) =>  ... T OK\\n\\t} | stringConcatenatedWith |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:175:5:175:10 | 'myId' | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:175:5:175:10 | 'myId' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:175:5:175:10 | 'myId' | InputArgumentIndex | 0 |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:175:5:175:10 | 'myId' | assignedToPropName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:175:5:175:10 | 'myId' | calleeImports |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:175:5:175:10 | 'myId' | contextFunctionInterfaces | deep(x)\ndeep2(x)\ninner(tainted, resolve)\ninner(x)\nmyWeirdInner(x)\nsafe(x) |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:175:5:175:10 | 'myId' | contextSurroundingFunctionParameters | ()\n(e) |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:175:5:175:10 | 'myId' | enclosingFunctionBody | foo document location search Promise resolve unknown foo resolve catch e $ myId html e null foo e $ myId html e unknown foo e $ myId html e foo foo e $ myId html e inner tainted resolve unknown tainted resolve Promise resolve inner foo resolve catch e $ myId html e |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:175:5:175:10 | 'myId' | enclosingFunctionName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:175:5:175:10 | 'myId' | fileImports | express fs |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:175:5:175:10 | 'myId' | receiverName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:175:5:175:10 | 'myId' | stringConcatenatedWith |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:175:18:175:18 | e | CalleeFlexibleAccessPath | $().html |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:175:18:175:18 | e | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:175:18:175:18 | e | InputArgumentIndex | 0 |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:175:18:175:18 | e | assignedToPropName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:175:18:175:18 | e | calleeImports |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:175:18:175:18 | e | contextFunctionInterfaces | deep(x)\ndeep2(x)\ninner(tainted, resolve)\ninner(x)\nmyWeirdInner(x)\nsafe(x) |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:175:18:175:18 | e | contextSurroundingFunctionParameters | ()\n(e) |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:175:18:175:18 | e | enclosingFunctionBody | foo document location search Promise resolve unknown foo resolve catch e $ myId html e null foo e $ myId html e unknown foo e $ myId html e foo foo e $ myId html e inner tainted resolve unknown tainted resolve Promise resolve inner foo resolve catch e $ myId html e |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:175:18:175:18 | e | enclosingFunctionName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:175:18:175:18 | e | fileImports | express fs |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:175:18:175:18 | e | receiverName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:175:18:175:18 | e | stringConcatenatedWith |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:179:9:179:19 | '/user/:id' | CalleeFlexibleAccessPath | app.get |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:179:9:179:19 | '/user/:id' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:179:9:179:19 | '/user/:id' | InputArgumentIndex | 0 |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:179:9:179:19 | '/user/:id' | assignedToPropName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:179:9:179:19 | '/user/:id' | calleeImports | express |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:179:9:179:19 | '/user/:id' | contextFunctionInterfaces | deep(x)\ndeep2(x)\ninner(tainted, resolve)\ninner(x)\nmyWeirdInner(x)\nsafe(x) |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:179:9:179:19 | '/user/:id' | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:179:9:179:19 | '/user/:id' | enclosingFunctionBody |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:179:9:179:19 | '/user/:id' | enclosingFunctionName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:179:9:179:19 | '/user/:id' | fileImports | express fs |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:179:9:179:19 | '/user/:id' | receiverName | app |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:179:9:179:19 | '/user/:id' | stringConcatenatedWith |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:179:22:186:1 | functio ... \\n\\t});\\n} | CalleeFlexibleAccessPath | app.get |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:179:22:186:1 | functio ... \\n\\t});\\n} | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:179:22:186:1 | functio ... \\n\\t});\\n} | InputArgumentIndex | 1 |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:179:22:186:1 | functio ... \\n\\t});\\n} | assignedToPropName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:179:22:186:1 | functio ... \\n\\t});\\n} | calleeImports | express |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:179:22:186:1 | functio ... \\n\\t});\\n} | contextFunctionInterfaces | deep(x)\ndeep2(x)\ninner(tainted, resolve)\ninner(x)\nmyWeirdInner(x)\nsafe(x) |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:179:22:186:1 | functio ... \\n\\t});\\n} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:179:22:186:1 | functio ... \\n\\t});\\n} | enclosingFunctionBody |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:179:22:186:1 | functio ... \\n\\t});\\n} | enclosingFunctionName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:179:22:186:1 | functio ... \\n\\t});\\n} | fileImports | express fs |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:179:22:186:1 | functio ... \\n\\t});\\n} | receiverName | app |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:179:22:186:1 | functio ... \\n\\t});\\n} | stringConcatenatedWith |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:180:10:180:22 | req.params.id | CalleeFlexibleAccessPath | unknown |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:180:10:180:22 | req.params.id | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:180:10:180:22 | req.params.id | InputArgumentIndex | 0 |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:180:10:180:22 | req.params.id | assignedToPropName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:180:10:180:22 | req.params.id | calleeImports |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:180:10:180:22 | req.params.id | contextFunctionInterfaces | deep(x)\ndeep2(x)\ninner(tainted, resolve)\ninner(x)\nmyWeirdInner(x)\nsafe(x) |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:180:10:180:22 | req.params.id | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:180:10:180:22 | req.params.id | enclosingFunctionBody | req res unknown req params id error res error $ myId html error $ myId html res |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:180:10:180:22 | req.params.id | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:180:10:180:22 | req.params.id | fileImports | express fs |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:180:10:180:22 | req.params.id | receiverName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:180:10:180:22 | req.params.id | stringConcatenatedWith |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:180:25:185:2 | (error, ... wn. \\n\\t} | CalleeFlexibleAccessPath | unknown |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:180:25:185:2 | (error, ... wn. \\n\\t} | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:180:25:185:2 | (error, ... wn. \\n\\t} | InputArgumentIndex | 1 |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:180:25:185:2 | (error, ... wn. \\n\\t} | assignedToPropName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:180:25:185:2 | (error, ... wn. \\n\\t} | calleeImports |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:180:25:185:2 | (error, ... wn. \\n\\t} | contextFunctionInterfaces | deep(x)\ndeep2(x)\ninner(tainted, resolve)\ninner(x)\nmyWeirdInner(x)\nsafe(x) |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:180:25:185:2 | (error, ... wn. \\n\\t} | contextSurroundingFunctionParameters | (req, res)\n(error, res) |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:180:25:185:2 | (error, ... wn. \\n\\t} | enclosingFunctionBody | req res unknown req params id error res error $ myId html error $ myId html res |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:180:25:185:2 | (error, ... wn. \\n\\t} | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:180:25:185:2 | (error, ... wn. \\n\\t} | fileImports | express fs |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:180:25:185:2 | (error, ... wn. \\n\\t} | receiverName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:180:25:185:2 | (error, ... wn. \\n\\t} | stringConcatenatedWith |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:182:6:182:11 | 'myId' | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:182:6:182:11 | 'myId' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:182:6:182:11 | 'myId' | InputArgumentIndex | 0 |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:182:6:182:11 | 'myId' | assignedToPropName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:182:6:182:11 | 'myId' | calleeImports |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:182:6:182:11 | 'myId' | contextFunctionInterfaces | deep(x)\ndeep2(x)\ninner(tainted, resolve)\ninner(x)\nmyWeirdInner(x)\nsafe(x) |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:182:6:182:11 | 'myId' | contextSurroundingFunctionParameters | (req, res)\n(error, res) |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:182:6:182:11 | 'myId' | enclosingFunctionBody | req res unknown req params id error res error $ myId html error $ myId html res |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:182:6:182:11 | 'myId' | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:182:6:182:11 | 'myId' | fileImports | express fs |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:182:6:182:11 | 'myId' | receiverName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:182:6:182:11 | 'myId' | stringConcatenatedWith |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:182:19:182:23 | error | CalleeFlexibleAccessPath | $().html |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:182:19:182:23 | error | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:182:19:182:23 | error | InputArgumentIndex | 0 |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:182:19:182:23 | error | assignedToPropName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:182:19:182:23 | error | calleeImports |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:182:19:182:23 | error | contextFunctionInterfaces | deep(x)\ndeep2(x)\ninner(tainted, resolve)\ninner(x)\nmyWeirdInner(x)\nsafe(x) |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:182:19:182:23 | error | contextSurroundingFunctionParameters | (req, res)\n(error, res) |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:182:19:182:23 | error | enclosingFunctionBody | req res unknown req params id error res error $ myId html error $ myId html res |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:182:19:182:23 | error | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:182:19:182:23 | error | fileImports | express fs |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:182:19:182:23 | error | receiverName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:182:19:182:23 | error | stringConcatenatedWith |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:184:5:184:10 | 'myId' | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:184:5:184:10 | 'myId' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:184:5:184:10 | 'myId' | InputArgumentIndex | 0 |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:184:5:184:10 | 'myId' | assignedToPropName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:184:5:184:10 | 'myId' | calleeImports |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:184:5:184:10 | 'myId' | contextFunctionInterfaces | deep(x)\ndeep2(x)\ninner(tainted, resolve)\ninner(x)\nmyWeirdInner(x)\nsafe(x) |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:184:5:184:10 | 'myId' | contextSurroundingFunctionParameters | (req, res)\n(error, res) |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:184:5:184:10 | 'myId' | enclosingFunctionBody | req res unknown req params id error res error $ myId html error $ myId html res |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:184:5:184:10 | 'myId' | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:184:5:184:10 | 'myId' | fileImports | express fs |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:184:5:184:10 | 'myId' | receiverName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:184:5:184:10 | 'myId' | stringConcatenatedWith |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:184:18:184:20 | res | CalleeFlexibleAccessPath | $().html |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:184:18:184:20 | res | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:184:18:184:20 | res | InputArgumentIndex | 0 |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:184:18:184:20 | res | assignedToPropName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:184:18:184:20 | res | calleeImports |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:184:18:184:20 | res | contextFunctionInterfaces | deep(x)\ndeep2(x)\ninner(tainted, resolve)\ninner(x)\nmyWeirdInner(x)\nsafe(x) |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:184:18:184:20 | res | contextSurroundingFunctionParameters | (req, res)\n(error, res) |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:184:18:184:20 | res | enclosingFunctionBody | req res unknown req params id error res error $ myId html error $ myId html res |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:184:18:184:20 | res | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:184:18:184:20 | res | fileImports | express fs |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:184:18:184:20 | res | receiverName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:184:18:184:20 | res | stringConcatenatedWith |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:188:9:188:19 | '/user/:id' | CalleeFlexibleAccessPath | app.get |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:188:9:188:19 | '/user/:id' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:188:9:188:19 | '/user/:id' | InputArgumentIndex | 0 |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:188:9:188:19 | '/user/:id' | assignedToPropName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:188:9:188:19 | '/user/:id' | calleeImports | express |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:188:9:188:19 | '/user/:id' | contextFunctionInterfaces | deep(x)\ndeep2(x)\ninner(tainted, resolve)\ninner(x)\nmyWeirdInner(x)\nsafe(x) |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:188:9:188:19 | '/user/:id' | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:188:9:188:19 | '/user/:id' | enclosingFunctionBody |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:188:9:188:19 | '/user/:id' | enclosingFunctionName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:188:9:188:19 | '/user/:id' | fileImports | express fs |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:188:9:188:19 | '/user/:id' | receiverName | app |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:188:9:188:19 | '/user/:id' | stringConcatenatedWith |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:188:22:194:1 | functio ... s)\\n\\t}\\n} | CalleeFlexibleAccessPath | app.get |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:188:22:194:1 | functio ... s)\\n\\t}\\n} | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:188:22:194:1 | functio ... s)\\n\\t}\\n} | InputArgumentIndex | 1 |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:188:22:194:1 | functio ... s)\\n\\t}\\n} | assignedToPropName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:188:22:194:1 | functio ... s)\\n\\t}\\n} | calleeImports | express |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:188:22:194:1 | functio ... s)\\n\\t}\\n} | contextFunctionInterfaces | deep(x)\ndeep2(x)\ninner(tainted, resolve)\ninner(x)\nmyWeirdInner(x)\nsafe(x) |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:188:22:194:1 | functio ... s)\\n\\t}\\n} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:188:22:194:1 | functio ... s)\\n\\t}\\n} | enclosingFunctionBody |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:188:22:194:1 | functio ... s)\\n\\t}\\n} | enclosingFunctionName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:188:22:194:1 | functio ... s)\\n\\t}\\n} | fileImports | express fs |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:188:22:194:1 | functio ... s)\\n\\t}\\n} | receiverName | app |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:188:22:194:1 | functio ... s)\\n\\t}\\n} | stringConcatenatedWith |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:196:18:196:21 | "fs" | CalleeFlexibleAccessPath | require |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:196:18:196:21 | "fs" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:196:18:196:21 | "fs" | InputArgumentIndex | 0 |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:196:18:196:21 | "fs" | assignedToPropName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:196:18:196:21 | "fs" | calleeImports |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:196:18:196:21 | "fs" | contextFunctionInterfaces | deep(x)\ndeep2(x)\ninner(tainted, resolve)\ninner(x)\nmyWeirdInner(x)\nsafe(x) |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:196:18:196:21 | "fs" | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:196:18:196:21 | "fs" | enclosingFunctionBody |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:196:18:196:21 | "fs" | enclosingFunctionName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:196:18:196:21 | "fs" | fileImports | express fs |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:196:18:196:21 | "fs" | receiverName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:196:18:196:21 | "fs" | stringConcatenatedWith |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:204:10:204:12 | foo | CalleeFlexibleAccessPath | _.pick |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:204:10:204:12 | foo | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:204:10:204:12 | foo | InputArgumentIndex | 0 |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:204:10:204:12 | foo | assignedToPropName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:204:10:204:12 | foo | calleeImports |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:204:10:204:12 | foo | contextFunctionInterfaces | deep(x)\ndeep2(x)\ninner(tainted, resolve)\ninner(x)\nmyWeirdInner(x)\nsafe(x) |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:204:10:204:12 | foo | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:204:10:204:12 | foo | enclosingFunctionBody | foo document location search Object assign foo foo _ pick foo foo foo foo join join $ val foo JSON parse foo /bla/ test foo console log foo log info foo localStorage setItem foo e $ myId html e |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:204:10:204:12 | foo | enclosingFunctionName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:204:10:204:12 | foo | fileImports | express fs |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:204:10:204:12 | foo | receiverName | _ |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:204:10:204:12 | foo | stringConcatenatedWith |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:204:15:204:17 | foo | CalleeFlexibleAccessPath | _.pick |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:204:15:204:17 | foo | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:204:15:204:17 | foo | InputArgumentIndex | 1 |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:204:15:204:17 | foo | assignedToPropName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:204:15:204:17 | foo | calleeImports |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:204:15:204:17 | foo | contextFunctionInterfaces | deep(x)\ndeep2(x)\ninner(tainted, resolve)\ninner(x)\nmyWeirdInner(x)\nsafe(x) |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:204:15:204:17 | foo | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:204:15:204:17 | foo | enclosingFunctionBody | foo document location search Object assign foo foo _ pick foo foo foo foo join join $ val foo JSON parse foo /bla/ test foo console log foo log info foo localStorage setItem foo e $ myId html e |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:204:15:204:17 | foo | enclosingFunctionName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:204:15:204:17 | foo | fileImports | express fs |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:204:15:204:17 | foo | receiverName | _ |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:204:15:204:17 | foo | stringConcatenatedWith |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:206:9:206:11 | foo | CalleeFlexibleAccessPath | $.val |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:206:9:206:11 | foo | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:206:9:206:11 | foo | InputArgumentIndex | 0 |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:206:9:206:11 | foo | assignedToPropName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:206:9:206:11 | foo | calleeImports |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:206:9:206:11 | foo | contextFunctionInterfaces | deep(x)\ndeep2(x)\ninner(tainted, resolve)\ninner(x)\nmyWeirdInner(x)\nsafe(x) |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:206:9:206:11 | foo | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:206:9:206:11 | foo | enclosingFunctionBody | foo document location search Object assign foo foo _ pick foo foo foo foo join join $ val foo JSON parse foo /bla/ test foo console log foo log info foo localStorage setItem foo e $ myId html e |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:206:9:206:11 | foo | enclosingFunctionName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:206:9:206:11 | foo | fileImports | express fs |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:206:9:206:11 | foo | receiverName | $ |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:206:9:206:11 | foo | stringConcatenatedWith |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:208:14:208:16 | foo | CalleeFlexibleAccessPath | ?.test |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:208:14:208:16 | foo | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:208:14:208:16 | foo | InputArgumentIndex | 0 |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:208:14:208:16 | foo | assignedToPropName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:208:14:208:16 | foo | calleeImports |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:208:14:208:16 | foo | contextFunctionInterfaces | deep(x)\ndeep2(x)\ninner(tainted, resolve)\ninner(x)\nmyWeirdInner(x)\nsafe(x) |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:208:14:208:16 | foo | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:208:14:208:16 | foo | enclosingFunctionBody | foo document location search Object assign foo foo _ pick foo foo foo foo join join $ val foo JSON parse foo /bla/ test foo console log foo log info foo localStorage setItem foo e $ myId html e |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:208:14:208:16 | foo | enclosingFunctionName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:208:14:208:16 | foo | fileImports | express fs |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:208:14:208:16 | foo | receiverName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:208:14:208:16 | foo | stringConcatenatedWith |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:209:15:209:17 | foo | CalleeFlexibleAccessPath | console.log |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:209:15:209:17 | foo | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:209:15:209:17 | foo | InputArgumentIndex | 0 |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:209:15:209:17 | foo | assignedToPropName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:209:15:209:17 | foo | calleeImports |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:209:15:209:17 | foo | contextFunctionInterfaces | deep(x)\ndeep2(x)\ninner(tainted, resolve)\ninner(x)\nmyWeirdInner(x)\nsafe(x) |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:209:15:209:17 | foo | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:209:15:209:17 | foo | enclosingFunctionBody | foo document location search Object assign foo foo _ pick foo foo foo foo join join $ val foo JSON parse foo /bla/ test foo console log foo log info foo localStorage setItem foo e $ myId html e |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:209:15:209:17 | foo | enclosingFunctionName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:209:15:209:17 | foo | fileImports | express fs |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:209:15:209:17 | foo | receiverName | console |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:209:15:209:17 | foo | stringConcatenatedWith |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:210:12:210:14 | foo | CalleeFlexibleAccessPath | log.info |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:210:12:210:14 | foo | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:210:12:210:14 | foo | InputArgumentIndex | 0 |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:210:12:210:14 | foo | assignedToPropName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:210:12:210:14 | foo | calleeImports |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:210:12:210:14 | foo | contextFunctionInterfaces | deep(x)\ndeep2(x)\ninner(tainted, resolve)\ninner(x)\nmyWeirdInner(x)\nsafe(x) |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:210:12:210:14 | foo | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:210:12:210:14 | foo | enclosingFunctionBody | foo document location search Object assign foo foo _ pick foo foo foo foo join join $ val foo JSON parse foo /bla/ test foo console log foo log info foo localStorage setItem foo e $ myId html e |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:210:12:210:14 | foo | enclosingFunctionName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:210:12:210:14 | foo | fileImports | express fs |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:210:12:210:14 | foo | receiverName | log |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:210:12:210:14 | foo | stringConcatenatedWith |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:211:24:211:26 | foo | CalleeFlexibleAccessPath | localStorage.setItem |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:211:24:211:26 | foo | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:211:24:211:26 | foo | InputArgumentIndex | 0 |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:211:24:211:26 | foo | assignedToPropName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:211:24:211:26 | foo | calleeImports |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:211:24:211:26 | foo | contextFunctionInterfaces | deep(x)\ndeep2(x)\ninner(tainted, resolve)\ninner(x)\nmyWeirdInner(x)\nsafe(x) |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:211:24:211:26 | foo | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:211:24:211:26 | foo | enclosingFunctionBody | foo document location search Object assign foo foo _ pick foo foo foo foo join join $ val foo JSON parse foo /bla/ test foo console log foo log info foo localStorage setItem foo e $ myId html e |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:211:24:211:26 | foo | enclosingFunctionName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:211:24:211:26 | foo | fileImports | express fs |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:211:24:211:26 | foo | receiverName | localStorage |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:211:24:211:26 | foo | stringConcatenatedWith |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:213:5:213:10 | 'myId' | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:213:5:213:10 | 'myId' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:213:5:213:10 | 'myId' | InputArgumentIndex | 0 |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:213:5:213:10 | 'myId' | assignedToPropName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:213:5:213:10 | 'myId' | calleeImports |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:213:5:213:10 | 'myId' | contextFunctionInterfaces | deep(x)\ndeep2(x)\ninner(tainted, resolve)\ninner(x)\nmyWeirdInner(x)\nsafe(x) |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:213:5:213:10 | 'myId' | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:213:5:213:10 | 'myId' | enclosingFunctionBody | foo document location search Object assign foo foo _ pick foo foo foo foo join join $ val foo JSON parse foo /bla/ test foo console log foo log info foo localStorage setItem foo e $ myId html e |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:213:5:213:10 | 'myId' | enclosingFunctionName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:213:5:213:10 | 'myId' | fileImports | express fs |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:213:5:213:10 | 'myId' | receiverName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:213:5:213:10 | 'myId' | stringConcatenatedWith |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:213:18:213:18 | e | CalleeFlexibleAccessPath | $().html |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:213:18:213:18 | e | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:213:18:213:18 | e | InputArgumentIndex | 0 |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:213:18:213:18 | e | assignedToPropName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:213:18:213:18 | e | calleeImports |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:213:18:213:18 | e | contextFunctionInterfaces | deep(x)\ndeep2(x)\ninner(tainted, resolve)\ninner(x)\nmyWeirdInner(x)\nsafe(x) |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:213:18:213:18 | e | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:213:18:213:18 | e | enclosingFunctionBody | foo document location search Object assign foo foo _ pick foo foo foo foo join join $ val foo JSON parse foo /bla/ test foo console log foo log info foo localStorage setItem foo e $ myId html e |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:213:18:213:18 | e | enclosingFunctionName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:213:18:213:18 | e | fileImports | express fs |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:213:18:213:18 | e | receiverName |  |
-| autogenerated/Xss/ExceptionXss/exception-xss.js:213:18:213:18 | e | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:1:23:1:31 | 'express' | CalleeFlexibleAccessPath | require |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:1:23:1:31 | 'express' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:1:23:1:31 | 'express' | InputArgumentIndex | 0 |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:1:23:1:31 | 'express' | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:1:23:1:31 | 'express' | calleeImports |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:1:23:1:31 | 'express' | contextFunctionInterfaces | moreBadStuff(params, res) |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:1:23:1:31 | 'express' | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:1:23:1:31 | 'express' | enclosingFunctionBody |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:1:23:1:31 | 'express' | enclosingFunctionName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:1:23:1:31 | 'express' | fileImports | express markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:1:23:1:31 | 'express' | receiverName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:1:23:1:31 | 'express' | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:5:9:5:19 | '/user/:id' | CalleeFlexibleAccessPath | app.get |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:5:9:5:19 | '/user/:id' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:5:9:5:19 | '/user/:id' | InputArgumentIndex | 0 |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:5:9:5:19 | '/user/:id' | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:5:9:5:19 | '/user/:id' | calleeImports | express |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:5:9:5:19 | '/user/:id' | contextFunctionInterfaces | moreBadStuff(params, res) |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:5:9:5:19 | '/user/:id' | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:5:9:5:19 | '/user/:id' | enclosingFunctionBody |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:5:9:5:19 | '/user/:id' | enclosingFunctionName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:5:9:5:19 | '/user/:id' | fileImports | express markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:5:9:5:19 | '/user/:id' | receiverName | app |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:5:9:5:19 | '/user/:id' | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:5:22:14:1 | functio ... ;\\n  }\\n} | CalleeFlexibleAccessPath | app.get |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:5:22:14:1 | functio ... ;\\n  }\\n} | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:5:22:14:1 | functio ... ;\\n  }\\n} | InputArgumentIndex | 1 |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:5:22:14:1 | functio ... ;\\n  }\\n} | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:5:22:14:1 | functio ... ;\\n  }\\n} | calleeImports | express |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:5:22:14:1 | functio ... ;\\n  }\\n} | contextFunctionInterfaces | moreBadStuff(params, res) |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:5:22:14:1 | functio ... ;\\n  }\\n} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:5:22:14:1 | functio ... ;\\n  }\\n} | enclosingFunctionBody |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:5:22:14:1 | functio ... ;\\n  }\\n} | enclosingFunctionName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:5:22:14:1 | functio ... ;\\n  }\\n} | fileImports | express markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:5:22:14:1 | functio ... ;\\n  }\\n} | receiverName | app |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:5:22:14:1 | functio ... ;\\n  }\\n} | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:20:22:20:29 | "marked" | CalleeFlexibleAccessPath | require |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:20:22:20:29 | "marked" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:20:22:20:29 | "marked" | InputArgumentIndex | 0 |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:20:22:20:29 | "marked" | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:20:22:20:29 | "marked" | calleeImports |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:20:22:20:29 | "marked" | contextFunctionInterfaces | moreBadStuff(params, res) |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:20:22:20:29 | "marked" | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:20:22:20:29 | "marked" | enclosingFunctionBody |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:20:22:20:29 | "marked" | enclosingFunctionName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:20:22:20:29 | "marked" | fileImports | express markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:20:22:20:29 | "marked" | receiverName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:20:22:20:29 | "marked" | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:21:9:21:19 | '/user/:id' | CalleeFlexibleAccessPath | app.get |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:21:9:21:19 | '/user/:id' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:21:9:21:19 | '/user/:id' | InputArgumentIndex | 0 |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:21:9:21:19 | '/user/:id' | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:21:9:21:19 | '/user/:id' | calleeImports | express |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:21:9:21:19 | '/user/:id' | contextFunctionInterfaces | moreBadStuff(params, res) |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:21:9:21:19 | '/user/:id' | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:21:9:21:19 | '/user/:id' | enclosingFunctionBody |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:21:9:21:19 | '/user/:id' | enclosingFunctionName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:21:9:21:19 | '/user/:id' | fileImports | express markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:21:9:21:19 | '/user/:id' | receiverName | app |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:21:9:21:19 | '/user/:id' | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:21:22:24:1 | functio ... OT OK\\n} | CalleeFlexibleAccessPath | app.get |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:21:22:24:1 | functio ... OT OK\\n} | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:21:22:24:1 | functio ... OT OK\\n} | InputArgumentIndex | 1 |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:21:22:24:1 | functio ... OT OK\\n} | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:21:22:24:1 | functio ... OT OK\\n} | calleeImports | express |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:21:22:24:1 | functio ... OT OK\\n} | contextFunctionInterfaces | moreBadStuff(params, res) |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:21:22:24:1 | functio ... OT OK\\n} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:21:22:24:1 | functio ... OT OK\\n} | enclosingFunctionBody |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:21:22:24:1 | functio ... OT OK\\n} | enclosingFunctionName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:21:22:24:1 | functio ... OT OK\\n} | fileImports | express markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:21:22:24:1 | functio ... OT OK\\n} | receiverName | app |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:21:22:24:1 | functio ... OT OK\\n} | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:27:21:27:36 | 'markdown-table' | CalleeFlexibleAccessPath | require |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:27:21:27:36 | 'markdown-table' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:27:21:27:36 | 'markdown-table' | InputArgumentIndex | 0 |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:27:21:27:36 | 'markdown-table' | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:27:21:27:36 | 'markdown-table' | calleeImports |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:27:21:27:36 | 'markdown-table' | contextFunctionInterfaces | moreBadStuff(params, res) |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:27:21:27:36 | 'markdown-table' | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:27:21:27:36 | 'markdown-table' | enclosingFunctionBody |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:27:21:27:36 | 'markdown-table' | enclosingFunctionName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:27:21:27:36 | 'markdown-table' | fileImports | express markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:27:21:27:36 | 'markdown-table' | receiverName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:27:21:27:36 | 'markdown-table' | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:28:9:28:19 | '/user/:id' | CalleeFlexibleAccessPath | app.get |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:28:9:28:19 | '/user/:id' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:28:9:28:19 | '/user/:id' | InputArgumentIndex | 0 |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:28:9:28:19 | '/user/:id' | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:28:9:28:19 | '/user/:id' | calleeImports | express |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:28:9:28:19 | '/user/:id' | contextFunctionInterfaces | moreBadStuff(params, res) |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:28:9:28:19 | '/user/:id' | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:28:9:28:19 | '/user/:id' | enclosingFunctionBody |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:28:9:28:19 | '/user/:id' | enclosingFunctionName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:28:9:28:19 | '/user/:id' | fileImports | express markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:28:9:28:19 | '/user/:id' | receiverName | app |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:28:9:28:19 | '/user/:id' | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:28:22:35:1 | functio ... OT OK\\n} | CalleeFlexibleAccessPath | app.get |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:28:22:35:1 | functio ... OT OK\\n} | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:28:22:35:1 | functio ... OT OK\\n} | InputArgumentIndex | 1 |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:28:22:35:1 | functio ... OT OK\\n} | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:28:22:35:1 | functio ... OT OK\\n} | calleeImports | express |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:28:22:35:1 | functio ... OT OK\\n} | contextFunctionInterfaces | moreBadStuff(params, res) |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:28:22:35:1 | functio ... OT OK\\n} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:28:22:35:1 | functio ... OT OK\\n} | enclosingFunctionBody |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:28:22:35:1 | functio ... OT OK\\n} | enclosingFunctionName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:28:22:35:1 | functio ... OT OK\\n} | fileImports | express markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:28:22:35:1 | functio ... OT OK\\n} | receiverName | app |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:28:22:35:1 | functio ... OT OK\\n} | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:31:5:31:23 | ['Name', 'Content'] | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:31:5:31:23 | ['Name', 'Content'] | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:31:5:31:23 | ['Name', 'Content'] | InputArgumentIndex |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:31:5:31:23 | ['Name', 'Content'] | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:31:5:31:23 | ['Name', 'Content'] | calleeImports |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:31:5:31:23 | ['Name', 'Content'] | contextFunctionInterfaces | moreBadStuff(params, res) |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:31:5:31:23 | ['Name', 'Content'] | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:31:5:31:23 | ['Name', 'Content'] | enclosingFunctionBody | req res res send req body mytable table Name Content body req body res send mytable |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:31:5:31:23 | ['Name', 'Content'] | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:31:5:31:23 | ['Name', 'Content'] | fileImports | express markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:31:5:31:23 | ['Name', 'Content'] | receiverName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:31:5:31:23 | ['Name', 'Content'] | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:31:6:31:11 | 'Name' | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:31:6:31:11 | 'Name' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:31:6:31:11 | 'Name' | InputArgumentIndex |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:31:6:31:11 | 'Name' | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:31:6:31:11 | 'Name' | calleeImports |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:31:6:31:11 | 'Name' | contextFunctionInterfaces | moreBadStuff(params, res) |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:31:6:31:11 | 'Name' | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:31:6:31:11 | 'Name' | enclosingFunctionBody | req res res send req body mytable table Name Content body req body res send mytable |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:31:6:31:11 | 'Name' | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:31:6:31:11 | 'Name' | fileImports | express markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:31:6:31:11 | 'Name' | receiverName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:31:6:31:11 | 'Name' | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:31:14:31:22 | 'Content' | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:31:14:31:22 | 'Content' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:31:14:31:22 | 'Content' | InputArgumentIndex |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:31:14:31:22 | 'Content' | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:31:14:31:22 | 'Content' | calleeImports |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:31:14:31:22 | 'Content' | contextFunctionInterfaces | moreBadStuff(params, res) |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:31:14:31:22 | 'Content' | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:31:14:31:22 | 'Content' | enclosingFunctionBody | req res res send req body mytable table Name Content body req body res send mytable |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:31:14:31:22 | 'Content' | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:31:14:31:22 | 'Content' | fileImports | express markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:31:14:31:22 | 'Content' | receiverName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:31:14:31:22 | 'Content' | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:32:5:32:22 | ['body', req.body] | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:32:5:32:22 | ['body', req.body] | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:32:5:32:22 | ['body', req.body] | InputArgumentIndex |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:32:5:32:22 | ['body', req.body] | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:32:5:32:22 | ['body', req.body] | calleeImports |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:32:5:32:22 | ['body', req.body] | contextFunctionInterfaces | moreBadStuff(params, res) |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:32:5:32:22 | ['body', req.body] | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:32:5:32:22 | ['body', req.body] | enclosingFunctionBody | req res res send req body mytable table Name Content body req body res send mytable |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:32:5:32:22 | ['body', req.body] | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:32:5:32:22 | ['body', req.body] | fileImports | express markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:32:5:32:22 | ['body', req.body] | receiverName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:32:5:32:22 | ['body', req.body] | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:32:6:32:11 | 'body' | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:32:6:32:11 | 'body' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:32:6:32:11 | 'body' | InputArgumentIndex |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:32:6:32:11 | 'body' | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:32:6:32:11 | 'body' | calleeImports |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:32:6:32:11 | 'body' | contextFunctionInterfaces | moreBadStuff(params, res) |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:32:6:32:11 | 'body' | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:32:6:32:11 | 'body' | enclosingFunctionBody | req res res send req body mytable table Name Content body req body res send mytable |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:32:6:32:11 | 'body' | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:32:6:32:11 | 'body' | fileImports | express markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:32:6:32:11 | 'body' | receiverName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:32:6:32:11 | 'body' | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:32:14:32:21 | req.body | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:32:14:32:21 | req.body | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:32:14:32:21 | req.body | InputArgumentIndex |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:32:14:32:21 | req.body | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:32:14:32:21 | req.body | calleeImports |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:32:14:32:21 | req.body | contextFunctionInterfaces | moreBadStuff(params, res) |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:32:14:32:21 | req.body | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:32:14:32:21 | req.body | enclosingFunctionBody | req res res send req body mytable table Name Content body req body res send mytable |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:32:14:32:21 | req.body | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:32:14:32:21 | req.body | fileImports | express markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:32:14:32:21 | req.body | receiverName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:32:14:32:21 | req.body | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:37:25:37:34 | 'showdown' | CalleeFlexibleAccessPath | require |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:37:25:37:34 | 'showdown' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:37:25:37:34 | 'showdown' | InputArgumentIndex | 0 |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:37:25:37:34 | 'showdown' | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:37:25:37:34 | 'showdown' | calleeImports |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:37:25:37:34 | 'showdown' | contextFunctionInterfaces | moreBadStuff(params, res) |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:37:25:37:34 | 'showdown' | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:37:25:37:34 | 'showdown' | enclosingFunctionBody |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:37:25:37:34 | 'showdown' | enclosingFunctionName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:37:25:37:34 | 'showdown' | fileImports | express markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:37:25:37:34 | 'showdown' | receiverName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:37:25:37:34 | 'showdown' | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:40:9:40:19 | '/user/:id' | CalleeFlexibleAccessPath | app.get |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:40:9:40:19 | '/user/:id' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:40:9:40:19 | '/user/:id' | InputArgumentIndex | 0 |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:40:9:40:19 | '/user/:id' | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:40:9:40:19 | '/user/:id' | calleeImports | express |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:40:9:40:19 | '/user/:id' | contextFunctionInterfaces | moreBadStuff(params, res) |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:40:9:40:19 | '/user/:id' | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:40:9:40:19 | '/user/:id' | enclosingFunctionBody |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:40:9:40:19 | '/user/:id' | enclosingFunctionName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:40:9:40:19 | '/user/:id' | fileImports | express markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:40:9:40:19 | '/user/:id' | receiverName | app |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:40:9:40:19 | '/user/:id' | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:40:22:43:1 | functio ... OT OK\\n} | CalleeFlexibleAccessPath | app.get |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:40:22:43:1 | functio ... OT OK\\n} | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:40:22:43:1 | functio ... OT OK\\n} | InputArgumentIndex | 1 |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:40:22:43:1 | functio ... OT OK\\n} | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:40:22:43:1 | functio ... OT OK\\n} | calleeImports | express |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:40:22:43:1 | functio ... OT OK\\n} | contextFunctionInterfaces | moreBadStuff(params, res) |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:40:22:43:1 | functio ... OT OK\\n} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:40:22:43:1 | functio ... OT OK\\n} | enclosingFunctionBody |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:40:22:43:1 | functio ... OT OK\\n} | enclosingFunctionName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:40:22:43:1 | functio ... OT OK\\n} | fileImports | express markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:40:22:43:1 | functio ... OT OK\\n} | receiverName | app |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:40:22:43:1 | functio ... OT OK\\n} | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:45:23:45:31 | 'unified' | CalleeFlexibleAccessPath | require |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:45:23:45:31 | 'unified' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:45:23:45:31 | 'unified' | InputArgumentIndex | 0 |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:45:23:45:31 | 'unified' | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:45:23:45:31 | 'unified' | calleeImports |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:45:23:45:31 | 'unified' | contextFunctionInterfaces | moreBadStuff(params, res) |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:45:23:45:31 | 'unified' | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:45:23:45:31 | 'unified' | enclosingFunctionBody |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:45:23:45:31 | 'unified' | enclosingFunctionName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:45:23:45:31 | 'unified' | fileImports | express markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:45:23:45:31 | 'unified' | receiverName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:45:23:45:31 | 'unified' | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:46:24:46:37 | 'remark-parse' | CalleeFlexibleAccessPath | require |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:46:24:46:37 | 'remark-parse' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:46:24:46:37 | 'remark-parse' | InputArgumentIndex | 0 |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:46:24:46:37 | 'remark-parse' | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:46:24:46:37 | 'remark-parse' | calleeImports |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:46:24:46:37 | 'remark-parse' | contextFunctionInterfaces | moreBadStuff(params, res) |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:46:24:46:37 | 'remark-parse' | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:46:24:46:37 | 'remark-parse' | enclosingFunctionBody |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:46:24:46:37 | 'remark-parse' | enclosingFunctionName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:46:24:46:37 | 'remark-parse' | fileImports | express markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:46:24:46:37 | 'remark-parse' | receiverName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:46:24:46:37 | 'remark-parse' | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:47:29:47:43 | 'remark-rehype' | CalleeFlexibleAccessPath | require |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:47:29:47:43 | 'remark-rehype' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:47:29:47:43 | 'remark-rehype' | InputArgumentIndex | 0 |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:47:29:47:43 | 'remark-rehype' | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:47:29:47:43 | 'remark-rehype' | calleeImports |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:47:29:47:43 | 'remark-rehype' | contextFunctionInterfaces | moreBadStuff(params, res) |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:47:29:47:43 | 'remark-rehype' | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:47:29:47:43 | 'remark-rehype' | enclosingFunctionBody |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:47:29:47:43 | 'remark-rehype' | enclosingFunctionName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:47:29:47:43 | 'remark-rehype' | fileImports | express markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:47:29:47:43 | 'remark-rehype' | receiverName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:47:29:47:43 | 'remark-rehype' | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:48:19:48:35 | 'rehype-document' | CalleeFlexibleAccessPath | require |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:48:19:48:35 | 'rehype-document' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:48:19:48:35 | 'rehype-document' | InputArgumentIndex | 0 |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:48:19:48:35 | 'rehype-document' | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:48:19:48:35 | 'rehype-document' | calleeImports |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:48:19:48:35 | 'rehype-document' | contextFunctionInterfaces | moreBadStuff(params, res) |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:48:19:48:35 | 'rehype-document' | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:48:19:48:35 | 'rehype-document' | enclosingFunctionBody |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:48:19:48:35 | 'rehype-document' | enclosingFunctionName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:48:19:48:35 | 'rehype-document' | fileImports | express markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:48:19:48:35 | 'rehype-document' | receiverName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:48:19:48:35 | 'rehype-document' | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:49:22:49:36 | 'rehype-format' | CalleeFlexibleAccessPath | require |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:49:22:49:36 | 'rehype-format' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:49:22:49:36 | 'rehype-format' | InputArgumentIndex | 0 |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:49:22:49:36 | 'rehype-format' | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:49:22:49:36 | 'rehype-format' | calleeImports |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:49:22:49:36 | 'rehype-format' | contextFunctionInterfaces | moreBadStuff(params, res) |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:49:22:49:36 | 'rehype-format' | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:49:22:49:36 | 'rehype-format' | enclosingFunctionBody |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:49:22:49:36 | 'rehype-format' | enclosingFunctionName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:49:22:49:36 | 'rehype-format' | fileImports | express markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:49:22:49:36 | 'rehype-format' | receiverName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:49:22:49:36 | 'rehype-format' | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:50:12:50:38 | require ... ngify') | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:50:12:50:38 | require ... ngify') | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:50:12:50:38 | require ... ngify') | InputArgumentIndex |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:50:12:50:38 | require ... ngify') | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:50:12:50:38 | require ... ngify') | calleeImports |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:50:12:50:38 | require ... ngify') | contextFunctionInterfaces | moreBadStuff(params, res) |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:50:12:50:38 | require ... ngify') | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:50:12:50:38 | require ... ngify') | enclosingFunctionBody |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:50:12:50:38 | require ... ngify') | enclosingFunctionName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:50:12:50:38 | require ... ngify') | fileImports | express markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:50:12:50:38 | require ... ngify') | receiverName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:50:12:50:38 | require ... ngify') | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:50:20:50:37 | 'rehype-stringify' | CalleeFlexibleAccessPath | require |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:50:20:50:37 | 'rehype-stringify' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:50:20:50:37 | 'rehype-stringify' | InputArgumentIndex | 0 |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:50:20:50:37 | 'rehype-stringify' | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:50:20:50:37 | 'rehype-stringify' | calleeImports |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:50:20:50:37 | 'rehype-stringify' | contextFunctionInterfaces | moreBadStuff(params, res) |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:50:20:50:37 | 'rehype-stringify' | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:50:20:50:37 | 'rehype-stringify' | enclosingFunctionBody |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:50:20:50:37 | 'rehype-stringify' | enclosingFunctionName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:50:20:50:37 | 'rehype-stringify' | fileImports | express markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:50:20:50:37 | 'rehype-stringify' | receiverName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:50:20:50:37 | 'rehype-stringify' | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:51:22:51:29 | "remark" | CalleeFlexibleAccessPath | require |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:51:22:51:29 | "remark" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:51:22:51:29 | "remark" | InputArgumentIndex | 0 |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:51:22:51:29 | "remark" | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:51:22:51:29 | "remark" | calleeImports |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:51:22:51:29 | "remark" | contextFunctionInterfaces | moreBadStuff(params, res) |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:51:22:51:29 | "remark" | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:51:22:51:29 | "remark" | enclosingFunctionBody |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:51:22:51:29 | "remark" | enclosingFunctionName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:51:22:51:29 | "remark" | fileImports | express markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:51:22:51:29 | "remark" | receiverName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:51:22:51:29 | "remark" | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:52:24:52:40 | "rehype-sanitize" | CalleeFlexibleAccessPath | require |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:52:24:52:40 | "rehype-sanitize" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:52:24:52:40 | "rehype-sanitize" | InputArgumentIndex | 0 |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:52:24:52:40 | "rehype-sanitize" | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:52:24:52:40 | "rehype-sanitize" | calleeImports |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:52:24:52:40 | "rehype-sanitize" | contextFunctionInterfaces | moreBadStuff(params, res) |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:52:24:52:40 | "rehype-sanitize" | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:52:24:52:40 | "rehype-sanitize" | enclosingFunctionBody |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:52:24:52:40 | "rehype-sanitize" | enclosingFunctionName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:52:24:52:40 | "rehype-sanitize" | fileImports | express markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:52:24:52:40 | "rehype-sanitize" | receiverName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:52:24:52:40 | "rehype-sanitize" | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:53:37:53:46 | 'showdown' | CalleeFlexibleAccessPath | require |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:53:37:53:46 | 'showdown' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:53:37:53:46 | 'showdown' | InputArgumentIndex | 0 |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:53:37:53:46 | 'showdown' | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:53:37:53:46 | 'showdown' | calleeImports |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:53:37:53:46 | 'showdown' | contextFunctionInterfaces | moreBadStuff(params, res) |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:53:37:53:46 | 'showdown' | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:53:37:53:46 | 'showdown' | enclosingFunctionBody |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:53:37:53:46 | 'showdown' | enclosingFunctionName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:53:37:53:46 | 'showdown' | fileImports | express markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:53:37:53:46 | 'showdown' | receiverName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:53:37:53:46 | 'showdown' | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:55:9:55:19 | '/user/:id' | CalleeFlexibleAccessPath | app.get |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:55:9:55:19 | '/user/:id' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:55:9:55:19 | '/user/:id' | InputArgumentIndex | 0 |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:55:9:55:19 | '/user/:id' | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:55:9:55:19 | '/user/:id' | calleeImports | express |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:55:9:55:19 | '/user/:id' | contextFunctionInterfaces | moreBadStuff(params, res) |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:55:9:55:19 | '/user/:id' | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:55:9:55:19 | '/user/:id' | enclosingFunctionBody |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:55:9:55:19 | '/user/:id' | enclosingFunctionName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:55:9:55:19 | '/user/:id' | fileImports | express markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:55:9:55:19 | '/user/:id' | receiverName | app |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:55:9:55:19 | '/user/:id' | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:55:22:77:1 | functio ... \\n  })\\n} | CalleeFlexibleAccessPath | app.get |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:55:22:77:1 | functio ... \\n  })\\n} | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:55:22:77:1 | functio ... \\n  })\\n} | InputArgumentIndex | 1 |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:55:22:77:1 | functio ... \\n  })\\n} | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:55:22:77:1 | functio ... \\n  })\\n} | calleeImports | express |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:55:22:77:1 | functio ... \\n  })\\n} | contextFunctionInterfaces | moreBadStuff(params, res) |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:55:22:77:1 | functio ... \\n  })\\n} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:55:22:77:1 | functio ... \\n  })\\n} | enclosingFunctionBody |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:55:22:77:1 | functio ... \\n  })\\n} | enclosingFunctionName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:55:22:77:1 | functio ... \\n  })\\n} | fileImports | express markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:55:22:77:1 | functio ... \\n  })\\n} | receiverName | app |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:55:22:77:1 | functio ... \\n  })\\n} | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:59:10:59:17 | markdown | CalleeFlexibleAccessPath | unified().use |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:59:10:59:17 | markdown | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:59:10:59:17 | markdown | InputArgumentIndex | 0 |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:59:10:59:17 | markdown | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:59:10:59:17 | markdown | calleeImports | unified |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:59:10:59:17 | markdown | contextFunctionInterfaces | moreBadStuff(params, res) |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:59:10:59:17 | markdown | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:59:10:59:17 | markdown | enclosingFunctionBody | req res res send req body unified use markdown use remark2rehype use doc title \ud83d\udc4b\ud83c\udf0d use format use html process req body err file res send file res send remark processSync req body toString res send remark use sanitize processSync req body toString res send unified use markdown processSync req body toString remark process req body e f res send f |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:59:10:59:17 | markdown | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:59:10:59:17 | markdown | fileImports | express markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:59:10:59:17 | markdown | receiverName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:59:10:59:17 | markdown | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:60:10:60:22 | remark2rehype | CalleeFlexibleAccessPath | unified().use().use |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:60:10:60:22 | remark2rehype | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:60:10:60:22 | remark2rehype | InputArgumentIndex | 0 |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:60:10:60:22 | remark2rehype | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:60:10:60:22 | remark2rehype | calleeImports | unified |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:60:10:60:22 | remark2rehype | contextFunctionInterfaces | moreBadStuff(params, res) |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:60:10:60:22 | remark2rehype | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:60:10:60:22 | remark2rehype | enclosingFunctionBody | req res res send req body unified use markdown use remark2rehype use doc title \ud83d\udc4b\ud83c\udf0d use format use html process req body err file res send file res send remark processSync req body toString res send remark use sanitize processSync req body toString res send unified use markdown processSync req body toString remark process req body e f res send f |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:60:10:60:22 | remark2rehype | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:60:10:60:22 | remark2rehype | fileImports | express markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:60:10:60:22 | remark2rehype | receiverName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:60:10:60:22 | remark2rehype | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:61:10:61:12 | doc | CalleeFlexibleAccessPath | unified().use().use().use |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:61:10:61:12 | doc | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:61:10:61:12 | doc | InputArgumentIndex | 0 |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:61:10:61:12 | doc | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:61:10:61:12 | doc | calleeImports | unified |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:61:10:61:12 | doc | contextFunctionInterfaces | moreBadStuff(params, res) |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:61:10:61:12 | doc | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:61:10:61:12 | doc | enclosingFunctionBody | req res res send req body unified use markdown use remark2rehype use doc title \ud83d\udc4b\ud83c\udf0d use format use html process req body err file res send file res send remark processSync req body toString res send remark use sanitize processSync req body toString res send unified use markdown processSync req body toString remark process req body e f res send f |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:61:10:61:12 | doc | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:61:10:61:12 | doc | fileImports | express markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:61:10:61:12 | doc | receiverName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:61:10:61:12 | doc | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:61:15:61:31 | { title: '\\u1f44b\\udc4b\\u1f30d\\udf0d' } | CalleeFlexibleAccessPath | unified().use().use().use |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:61:15:61:31 | { title: '\\u1f44b\\udc4b\\u1f30d\\udf0d' } | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:61:15:61:31 | { title: '\\u1f44b\\udc4b\\u1f30d\\udf0d' } | InputArgumentIndex | 1 |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:61:15:61:31 | { title: '\\u1f44b\\udc4b\\u1f30d\\udf0d' } | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:61:15:61:31 | { title: '\\u1f44b\\udc4b\\u1f30d\\udf0d' } | calleeImports | unified |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:61:15:61:31 | { title: '\\u1f44b\\udc4b\\u1f30d\\udf0d' } | contextFunctionInterfaces | moreBadStuff(params, res) |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:61:15:61:31 | { title: '\\u1f44b\\udc4b\\u1f30d\\udf0d' } | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:61:15:61:31 | { title: '\\u1f44b\\udc4b\\u1f30d\\udf0d' } | enclosingFunctionBody | req res res send req body unified use markdown use remark2rehype use doc title \ud83d\udc4b\ud83c\udf0d use format use html process req body err file res send file res send remark processSync req body toString res send remark use sanitize processSync req body toString res send unified use markdown processSync req body toString remark process req body e f res send f |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:61:15:61:31 | { title: '\\u1f44b\\udc4b\\u1f30d\\udf0d' } | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:61:15:61:31 | { title: '\\u1f44b\\udc4b\\u1f30d\\udf0d' } | fileImports | express markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:61:15:61:31 | { title: '\\u1f44b\\udc4b\\u1f30d\\udf0d' } | receiverName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:61:15:61:31 | { title: '\\u1f44b\\udc4b\\u1f30d\\udf0d' } | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:61:24:61:29 | '\\u1f44b\\udc4b\\u1f30d\\udf0d' | CalleeFlexibleAccessPath | unified().use().use().use |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:61:24:61:29 | '\\u1f44b\\udc4b\\u1f30d\\udf0d' | InputAccessPathFromCallee | 1.title |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:61:24:61:29 | '\\u1f44b\\udc4b\\u1f30d\\udf0d' | InputArgumentIndex | 1 |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:61:24:61:29 | '\\u1f44b\\udc4b\\u1f30d\\udf0d' | assignedToPropName | title |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:61:24:61:29 | '\\u1f44b\\udc4b\\u1f30d\\udf0d' | calleeImports | unified |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:61:24:61:29 | '\\u1f44b\\udc4b\\u1f30d\\udf0d' | contextFunctionInterfaces | moreBadStuff(params, res) |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:61:24:61:29 | '\\u1f44b\\udc4b\\u1f30d\\udf0d' | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:61:24:61:29 | '\\u1f44b\\udc4b\\u1f30d\\udf0d' | enclosingFunctionBody | req res res send req body unified use markdown use remark2rehype use doc title \ud83d\udc4b\ud83c\udf0d use format use html process req body err file res send file res send remark processSync req body toString res send remark use sanitize processSync req body toString res send unified use markdown processSync req body toString remark process req body e f res send f |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:61:24:61:29 | '\\u1f44b\\udc4b\\u1f30d\\udf0d' | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:61:24:61:29 | '\\u1f44b\\udc4b\\u1f30d\\udf0d' | fileImports | express markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:61:24:61:29 | '\\u1f44b\\udc4b\\u1f30d\\udf0d' | receiverName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:61:24:61:29 | '\\u1f44b\\udc4b\\u1f30d\\udf0d' | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:62:10:62:15 | format | CalleeFlexibleAccessPath | unified().use().use().use().use |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:62:10:62:15 | format | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:62:10:62:15 | format | InputArgumentIndex | 0 |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:62:10:62:15 | format | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:62:10:62:15 | format | calleeImports | unified |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:62:10:62:15 | format | contextFunctionInterfaces | moreBadStuff(params, res) |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:62:10:62:15 | format | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:62:10:62:15 | format | enclosingFunctionBody | req res res send req body unified use markdown use remark2rehype use doc title \ud83d\udc4b\ud83c\udf0d use format use html process req body err file res send file res send remark processSync req body toString res send remark use sanitize processSync req body toString res send unified use markdown processSync req body toString remark process req body e f res send f |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:62:10:62:15 | format | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:62:10:62:15 | format | fileImports | express markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:62:10:62:15 | format | receiverName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:62:10:62:15 | format | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:63:10:63:13 | html | CalleeFlexibleAccessPath | unified().use().use().use().use().use |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:63:10:63:13 | html | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:63:10:63:13 | html | InputArgumentIndex | 0 |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:63:10:63:13 | html | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:63:10:63:13 | html | calleeImports | unified |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:63:10:63:13 | html | contextFunctionInterfaces | moreBadStuff(params, res) |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:63:10:63:13 | html | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:63:10:63:13 | html | enclosingFunctionBody | req res res send req body unified use markdown use remark2rehype use doc title \ud83d\udc4b\ud83c\udf0d use format use html process req body err file res send file res send remark processSync req body toString res send remark use sanitize processSync req body toString res send unified use markdown processSync req body toString remark process req body e f res send f |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:63:10:63:13 | html | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:63:10:63:13 | html | fileImports | express markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:63:10:63:13 | html | receiverName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:63:10:63:13 | html | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:70:25:70:32 | sanitize | CalleeFlexibleAccessPath | remark().use |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:70:25:70:32 | sanitize | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:70:25:70:32 | sanitize | InputArgumentIndex | 0 |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:70:25:70:32 | sanitize | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:70:25:70:32 | sanitize | calleeImports | remark |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:70:25:70:32 | sanitize | contextFunctionInterfaces | moreBadStuff(params, res) |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:70:25:70:32 | sanitize | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:70:25:70:32 | sanitize | enclosingFunctionBody | req res res send req body unified use markdown use remark2rehype use doc title \ud83d\udc4b\ud83c\udf0d use format use html process req body err file res send file res send remark processSync req body toString res send remark use sanitize processSync req body toString res send unified use markdown processSync req body toString remark process req body e f res send f |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:70:25:70:32 | sanitize | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:70:25:70:32 | sanitize | fileImports | express markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:70:25:70:32 | sanitize | receiverName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:70:25:70:32 | sanitize | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:70:47:70:54 | req.body | CalleeFlexibleAccessPath | remark().use().processSync |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:70:47:70:54 | req.body | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:70:47:70:54 | req.body | InputArgumentIndex | 0 |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:70:47:70:54 | req.body | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:70:47:70:54 | req.body | calleeImports | remark |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:70:47:70:54 | req.body | contextFunctionInterfaces | moreBadStuff(params, res) |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:70:47:70:54 | req.body | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:70:47:70:54 | req.body | enclosingFunctionBody | req res res send req body unified use markdown use remark2rehype use doc title \ud83d\udc4b\ud83c\udf0d use format use html process req body err file res send file res send remark processSync req body toString res send remark use sanitize processSync req body toString res send unified use markdown processSync req body toString remark process req body e f res send f |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:70:47:70:54 | req.body | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:70:47:70:54 | req.body | fileImports | express markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:70:47:70:54 | req.body | receiverName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:70:47:70:54 | req.body | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:72:26:72:33 | markdown | CalleeFlexibleAccessPath | unified().use |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:72:26:72:33 | markdown | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:72:26:72:33 | markdown | InputArgumentIndex | 0 |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:72:26:72:33 | markdown | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:72:26:72:33 | markdown | calleeImports | unified |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:72:26:72:33 | markdown | contextFunctionInterfaces | moreBadStuff(params, res) |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:72:26:72:33 | markdown | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:72:26:72:33 | markdown | enclosingFunctionBody | req res res send req body unified use markdown use remark2rehype use doc title \ud83d\udc4b\ud83c\udf0d use format use html process req body err file res send file res send remark processSync req body toString res send remark use sanitize processSync req body toString res send unified use markdown processSync req body toString remark process req body e f res send f |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:72:26:72:33 | markdown | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:72:26:72:33 | markdown | fileImports | express markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:72:26:72:33 | markdown | receiverName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:72:26:72:33 | markdown | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:80:26:80:36 | "snarkdown" | CalleeFlexibleAccessPath | require |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:80:26:80:36 | "snarkdown" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:80:26:80:36 | "snarkdown" | InputArgumentIndex | 0 |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:80:26:80:36 | "snarkdown" | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:80:26:80:36 | "snarkdown" | calleeImports |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:80:26:80:36 | "snarkdown" | contextFunctionInterfaces | moreBadStuff(params, res) |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:80:26:80:36 | "snarkdown" | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:80:26:80:36 | "snarkdown" | enclosingFunctionBody |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:80:26:80:36 | "snarkdown" | enclosingFunctionName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:80:26:80:36 | "snarkdown" | fileImports | express markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:80:26:80:36 | "snarkdown" | receiverName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:80:26:80:36 | "snarkdown" | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:82:9:82:19 | '/user/:id' | CalleeFlexibleAccessPath | app.get |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:82:9:82:19 | '/user/:id' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:82:9:82:19 | '/user/:id' | InputArgumentIndex | 0 |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:82:9:82:19 | '/user/:id' | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:82:9:82:19 | '/user/:id' | calleeImports | express |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:82:9:82:19 | '/user/:id' | contextFunctionInterfaces | moreBadStuff(params, res) |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:82:9:82:19 | '/user/:id' | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:82:9:82:19 | '/user/:id' | enclosingFunctionBody |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:82:9:82:19 | '/user/:id' | enclosingFunctionName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:82:9:82:19 | '/user/:id' | fileImports | express markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:82:9:82:19 | '/user/:id' | receiverName | app |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:82:9:82:19 | '/user/:id' | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:82:22:86:1 | functio ... OT OK\\n} | CalleeFlexibleAccessPath | app.get |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:82:22:86:1 | functio ... OT OK\\n} | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:82:22:86:1 | functio ... OT OK\\n} | InputArgumentIndex | 1 |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:82:22:86:1 | functio ... OT OK\\n} | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:82:22:86:1 | functio ... OT OK\\n} | calleeImports | express |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:82:22:86:1 | functio ... OT OK\\n} | contextFunctionInterfaces | moreBadStuff(params, res) |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:82:22:86:1 | functio ... OT OK\\n} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:82:22:86:1 | functio ... OT OK\\n} | enclosingFunctionBody |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:82:22:86:1 | functio ... OT OK\\n} | enclosingFunctionName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:82:22:86:1 | functio ... OT OK\\n} | fileImports | express markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:82:22:86:1 | functio ... OT OK\\n} | receiverName | app |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:82:22:86:1 | functio ... OT OK\\n} | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:88:28:88:40 | 'markdown-it' | CalleeFlexibleAccessPath | require |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:88:28:88:40 | 'markdown-it' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:88:28:88:40 | 'markdown-it' | InputArgumentIndex | 0 |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:88:28:88:40 | 'markdown-it' | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:88:28:88:40 | 'markdown-it' | calleeImports |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:88:28:88:40 | 'markdown-it' | contextFunctionInterfaces | moreBadStuff(params, res) |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:88:28:88:40 | 'markdown-it' | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:88:28:88:40 | 'markdown-it' | enclosingFunctionBody |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:88:28:88:40 | 'markdown-it' | enclosingFunctionName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:88:28:88:40 | 'markdown-it' | fileImports | express markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:88:28:88:40 | 'markdown-it' | receiverName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:88:28:88:40 | 'markdown-it' | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:88:43:90:1 | {\\n  html: true\\n} | CalleeFlexibleAccessPath | import(!) |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:88:43:90:1 | {\\n  html: true\\n} | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:88:43:90:1 | {\\n  html: true\\n} | InputArgumentIndex | 0 |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:88:43:90:1 | {\\n  html: true\\n} | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:88:43:90:1 | {\\n  html: true\\n} | calleeImports | markdown-it |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:88:43:90:1 | {\\n  html: true\\n} | contextFunctionInterfaces | moreBadStuff(params, res) |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:88:43:90:1 | {\\n  html: true\\n} | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:88:43:90:1 | {\\n  html: true\\n} | enclosingFunctionBody |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:88:43:90:1 | {\\n  html: true\\n} | enclosingFunctionName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:88:43:90:1 | {\\n  html: true\\n} | fileImports | express markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:88:43:90:1 | {\\n  html: true\\n} | receiverName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:88:43:90:1 | {\\n  html: true\\n} | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:89:9:89:12 | true | CalleeFlexibleAccessPath | import(!) |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:89:9:89:12 | true | InputAccessPathFromCallee | 0.html |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:89:9:89:12 | true | InputArgumentIndex | 0 |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:89:9:89:12 | true | assignedToPropName | html |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:89:9:89:12 | true | calleeImports | markdown-it |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:89:9:89:12 | true | contextFunctionInterfaces | moreBadStuff(params, res) |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:89:9:89:12 | true | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:89:9:89:12 | true | enclosingFunctionBody |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:89:9:89:12 | true | enclosingFunctionName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:89:9:89:12 | true | fileImports | express markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:89:9:89:12 | true | receiverName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:89:9:89:12 | true | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:91:29:91:41 | 'markdown-it' | CalleeFlexibleAccessPath | require |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:91:29:91:41 | 'markdown-it' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:91:29:91:41 | 'markdown-it' | InputArgumentIndex | 0 |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:91:29:91:41 | 'markdown-it' | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:91:29:91:41 | 'markdown-it' | calleeImports |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:91:29:91:41 | 'markdown-it' | contextFunctionInterfaces | moreBadStuff(params, res) |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:91:29:91:41 | 'markdown-it' | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:91:29:91:41 | 'markdown-it' | enclosingFunctionBody |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:91:29:91:41 | 'markdown-it' | enclosingFunctionName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:91:29:91:41 | 'markdown-it' | fileImports | express markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:91:29:91:41 | 'markdown-it' | receiverName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:91:29:91:41 | 'markdown-it' | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:91:44:91:45 | {} | CalleeFlexibleAccessPath | import(!) |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:91:44:91:45 | {} | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:91:44:91:45 | {} | InputArgumentIndex | 0 |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:91:44:91:45 | {} | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:91:44:91:45 | {} | calleeImports | markdown-it |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:91:44:91:45 | {} | contextFunctionInterfaces | moreBadStuff(params, res) |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:91:44:91:45 | {} | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:91:44:91:45 | {} | enclosingFunctionBody |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:91:44:91:45 | {} | enclosingFunctionName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:91:44:91:45 | {} | fileImports | express markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:91:44:91:45 | {} | receiverName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:91:44:91:45 | {} | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:93:29:93:41 | 'markdown-it' | CalleeFlexibleAccessPath | require |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:93:29:93:41 | 'markdown-it' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:93:29:93:41 | 'markdown-it' | InputArgumentIndex | 0 |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:93:29:93:41 | 'markdown-it' | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:93:29:93:41 | 'markdown-it' | calleeImports |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:93:29:93:41 | 'markdown-it' | contextFunctionInterfaces | moreBadStuff(params, res) |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:93:29:93:41 | 'markdown-it' | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:93:29:93:41 | 'markdown-it' | enclosingFunctionBody |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:93:29:93:41 | 'markdown-it' | enclosingFunctionName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:93:29:93:41 | 'markdown-it' | fileImports | express markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:93:29:93:41 | 'markdown-it' | receiverName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:93:29:93:41 | 'markdown-it' | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:93:44:93:55 | {html: true} | CalleeFlexibleAccessPath | import(!) |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:93:44:93:55 | {html: true} | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:93:44:93:55 | {html: true} | InputArgumentIndex | 0 |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:93:44:93:55 | {html: true} | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:93:44:93:55 | {html: true} | calleeImports | markdown-it |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:93:44:93:55 | {html: true} | contextFunctionInterfaces | moreBadStuff(params, res) |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:93:44:93:55 | {html: true} | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:93:44:93:55 | {html: true} | enclosingFunctionBody |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:93:44:93:55 | {html: true} | enclosingFunctionName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:93:44:93:55 | {html: true} | fileImports | express markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:93:44:93:55 | {html: true} | receiverName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:93:44:93:55 | {html: true} | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:93:51:93:54 | true | CalleeFlexibleAccessPath | import(!) |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:93:51:93:54 | true | InputAccessPathFromCallee | 0.html |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:93:51:93:54 | true | InputArgumentIndex | 0 |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:93:51:93:54 | true | assignedToPropName | html |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:93:51:93:54 | true | calleeImports | markdown-it |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:93:51:93:54 | true | contextFunctionInterfaces | moreBadStuff(params, res) |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:93:51:93:54 | true | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:93:51:93:54 | true | enclosingFunctionBody |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:93:51:93:54 | true | enclosingFunctionName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:93:51:93:54 | true | fileImports | express markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:93:51:93:54 | true | receiverName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:93:51:93:54 | true | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:94:8:94:41 | require ... ghtjs') | CalleeFlexibleAccessPath | import(!)().use |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:94:8:94:41 | require ... ghtjs') | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:94:8:94:41 | require ... ghtjs') | InputArgumentIndex | 0 |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:94:8:94:41 | require ... ghtjs') | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:94:8:94:41 | require ... ghtjs') | calleeImports | markdown-it |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:94:8:94:41 | require ... ghtjs') | contextFunctionInterfaces | moreBadStuff(params, res) |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:94:8:94:41 | require ... ghtjs') | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:94:8:94:41 | require ... ghtjs') | enclosingFunctionBody |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:94:8:94:41 | require ... ghtjs') | enclosingFunctionName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:94:8:94:41 | require ... ghtjs') | fileImports | express markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:94:8:94:41 | require ... ghtjs') | receiverName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:94:8:94:41 | require ... ghtjs') | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:94:16:94:40 | 'markdo ... ightjs' | CalleeFlexibleAccessPath | require |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:94:16:94:40 | 'markdo ... ightjs' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:94:16:94:40 | 'markdo ... ightjs' | InputArgumentIndex | 0 |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:94:16:94:40 | 'markdo ... ightjs' | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:94:16:94:40 | 'markdo ... ightjs' | calleeImports |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:94:16:94:40 | 'markdo ... ightjs' | contextFunctionInterfaces | moreBadStuff(params, res) |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:94:16:94:40 | 'markdo ... ightjs' | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:94:16:94:40 | 'markdo ... ightjs' | enclosingFunctionBody |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:94:16:94:40 | 'markdo ... ightjs' | enclosingFunctionName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:94:16:94:40 | 'markdo ... ightjs' | fileImports | express markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:94:16:94:40 | 'markdo ... ightjs' | receiverName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:94:16:94:40 | 'markdo ... ightjs' | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:96:9:96:19 | '/user/:id' | CalleeFlexibleAccessPath | app.get |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:96:9:96:19 | '/user/:id' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:96:9:96:19 | '/user/:id' | InputArgumentIndex | 0 |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:96:9:96:19 | '/user/:id' | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:96:9:96:19 | '/user/:id' | calleeImports | express |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:96:9:96:19 | '/user/:id' | contextFunctionInterfaces | moreBadStuff(params, res) |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:96:9:96:19 | '/user/:id' | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:96:9:96:19 | '/user/:id' | enclosingFunctionBody |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:96:9:96:19 | '/user/:id' | enclosingFunctionName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:96:9:96:19 | '/user/:id' | fileImports | express markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:96:9:96:19 | '/user/:id' | receiverName | app |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:96:9:96:19 | '/user/:id' | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:96:22:104:1 | functio ... OT OK\\n} | CalleeFlexibleAccessPath | app.get |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:96:22:104:1 | functio ... OT OK\\n} | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:96:22:104:1 | functio ... OT OK\\n} | InputArgumentIndex | 1 |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:96:22:104:1 | functio ... OT OK\\n} | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:96:22:104:1 | functio ... OT OK\\n} | calleeImports | express |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:96:22:104:1 | functio ... OT OK\\n} | contextFunctionInterfaces | moreBadStuff(params, res) |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:96:22:104:1 | functio ... OT OK\\n} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:96:22:104:1 | functio ... OT OK\\n} | enclosingFunctionBody |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:96:22:104:1 | functio ... OT OK\\n} | enclosingFunctionName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:96:22:104:1 | functio ... OT OK\\n} | fileImports | express markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:96:22:104:1 | functio ... OT OK\\n} | receiverName | app |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:96:22:104:1 | functio ... OT OK\\n} | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:99:31:99:38 | req.body | CalleeFlexibleAccessPath | markdownIt2.render |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:99:31:99:38 | req.body | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:99:31:99:38 | req.body | InputArgumentIndex | 0 |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:99:31:99:38 | req.body | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:99:31:99:38 | req.body | calleeImports | markdown-it |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:99:31:99:38 | req.body | contextFunctionInterfaces | moreBadStuff(params, res) |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:99:31:99:38 | req.body | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:99:31:99:38 | req.body | enclosingFunctionBody | req res res send req body res send markdownIt render req body res send markdownIt2 render req body res send markdownIt3 render req body res send markdownIt use require markdown-it-sanitizer render req body res send markdownIt use require markdown-it-abbr use unknown render req body |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:99:31:99:38 | req.body | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:99:31:99:38 | req.body | fileImports | express markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:99:31:99:38 | req.body | receiverName | markdownIt2 |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:99:31:99:38 | req.body | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:102:27:102:58 | require ... tizer') | CalleeFlexibleAccessPath | markdownIt.use |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:102:27:102:58 | require ... tizer') | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:102:27:102:58 | require ... tizer') | InputArgumentIndex | 0 |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:102:27:102:58 | require ... tizer') | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:102:27:102:58 | require ... tizer') | calleeImports | markdown-it |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:102:27:102:58 | require ... tizer') | contextFunctionInterfaces | moreBadStuff(params, res) |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:102:27:102:58 | require ... tizer') | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:102:27:102:58 | require ... tizer') | enclosingFunctionBody | req res res send req body res send markdownIt render req body res send markdownIt2 render req body res send markdownIt3 render req body res send markdownIt use require markdown-it-sanitizer render req body res send markdownIt use require markdown-it-abbr use unknown render req body |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:102:27:102:58 | require ... tizer') | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:102:27:102:58 | require ... tizer') | fileImports | express markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:102:27:102:58 | require ... tizer') | receiverName | markdownIt |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:102:27:102:58 | require ... tizer') | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:102:35:102:57 | 'markdo ... itizer' | CalleeFlexibleAccessPath | require |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:102:35:102:57 | 'markdo ... itizer' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:102:35:102:57 | 'markdo ... itizer' | InputArgumentIndex | 0 |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:102:35:102:57 | 'markdo ... itizer' | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:102:35:102:57 | 'markdo ... itizer' | calleeImports |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:102:35:102:57 | 'markdo ... itizer' | contextFunctionInterfaces | moreBadStuff(params, res) |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:102:35:102:57 | 'markdo ... itizer' | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:102:35:102:57 | 'markdo ... itizer' | enclosingFunctionBody | req res res send req body res send markdownIt render req body res send markdownIt2 render req body res send markdownIt3 render req body res send markdownIt use require markdown-it-sanitizer render req body res send markdownIt use require markdown-it-abbr use unknown render req body |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:102:35:102:57 | 'markdo ... itizer' | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:102:35:102:57 | 'markdo ... itizer' | fileImports | express markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:102:35:102:57 | 'markdo ... itizer' | receiverName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:102:35:102:57 | 'markdo ... itizer' | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:102:68:102:75 | req.body | CalleeFlexibleAccessPath | markdownIt.use().render |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:102:68:102:75 | req.body | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:102:68:102:75 | req.body | InputArgumentIndex | 0 |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:102:68:102:75 | req.body | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:102:68:102:75 | req.body | calleeImports | markdown-it |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:102:68:102:75 | req.body | contextFunctionInterfaces | moreBadStuff(params, res) |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:102:68:102:75 | req.body | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:102:68:102:75 | req.body | enclosingFunctionBody | req res res send req body res send markdownIt render req body res send markdownIt2 render req body res send markdownIt3 render req body res send markdownIt use require markdown-it-sanitizer render req body res send markdownIt use require markdown-it-abbr use unknown render req body |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:102:68:102:75 | req.body | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:102:68:102:75 | req.body | fileImports | express markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:102:68:102:75 | req.body | receiverName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:102:68:102:75 | req.body | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:103:27:103:53 | require ... -abbr') | CalleeFlexibleAccessPath | markdownIt.use |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:103:27:103:53 | require ... -abbr') | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:103:27:103:53 | require ... -abbr') | InputArgumentIndex | 0 |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:103:27:103:53 | require ... -abbr') | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:103:27:103:53 | require ... -abbr') | calleeImports | markdown-it |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:103:27:103:53 | require ... -abbr') | contextFunctionInterfaces | moreBadStuff(params, res) |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:103:27:103:53 | require ... -abbr') | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:103:27:103:53 | require ... -abbr') | enclosingFunctionBody | req res res send req body res send markdownIt render req body res send markdownIt2 render req body res send markdownIt3 render req body res send markdownIt use require markdown-it-sanitizer render req body res send markdownIt use require markdown-it-abbr use unknown render req body |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:103:27:103:53 | require ... -abbr') | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:103:27:103:53 | require ... -abbr') | fileImports | express markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:103:27:103:53 | require ... -abbr') | receiverName | markdownIt |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:103:27:103:53 | require ... -abbr') | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:103:35:103:52 | 'markdown-it-abbr' | CalleeFlexibleAccessPath | require |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:103:35:103:52 | 'markdown-it-abbr' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:103:35:103:52 | 'markdown-it-abbr' | InputArgumentIndex | 0 |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:103:35:103:52 | 'markdown-it-abbr' | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:103:35:103:52 | 'markdown-it-abbr' | calleeImports |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:103:35:103:52 | 'markdown-it-abbr' | contextFunctionInterfaces | moreBadStuff(params, res) |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:103:35:103:52 | 'markdown-it-abbr' | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:103:35:103:52 | 'markdown-it-abbr' | enclosingFunctionBody | req res res send req body res send markdownIt render req body res send markdownIt2 render req body res send markdownIt3 render req body res send markdownIt use require markdown-it-sanitizer render req body res send markdownIt use require markdown-it-abbr use unknown render req body |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:103:35:103:52 | 'markdown-it-abbr' | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:103:35:103:52 | 'markdown-it-abbr' | fileImports | express markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:103:35:103:52 | 'markdown-it-abbr' | receiverName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:103:35:103:52 | 'markdown-it-abbr' | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:103:60:103:66 | unknown | CalleeFlexibleAccessPath | markdownIt.use().use |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:103:60:103:66 | unknown | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:103:60:103:66 | unknown | InputArgumentIndex | 0 |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:103:60:103:66 | unknown | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:103:60:103:66 | unknown | calleeImports | markdown-it |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:103:60:103:66 | unknown | contextFunctionInterfaces | moreBadStuff(params, res) |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:103:60:103:66 | unknown | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:103:60:103:66 | unknown | enclosingFunctionBody | req res res send req body res send markdownIt render req body res send markdownIt2 render req body res send markdownIt3 render req body res send markdownIt use require markdown-it-sanitizer render req body res send markdownIt use require markdown-it-abbr use unknown render req body |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:103:60:103:66 | unknown | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:103:60:103:66 | unknown | fileImports | express markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:103:60:103:66 | unknown | receiverName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:103:60:103:66 | unknown | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:1:23:1:31 | 'express' | CalleeFlexibleAccessPath | require |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:1:23:1:31 | 'express' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:1:23:1:31 | 'express' | InputArgumentIndex | 0 |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:1:23:1:31 | 'express' | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:1:23:1:31 | 'express' | calleeImports |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:1:23:1:31 | 'express' | contextFunctionInterfaces | textContentType() |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:1:23:1:31 | 'express' | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:1:23:1:31 | 'express' | enclosingFunctionBody |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:1:23:1:31 | 'express' | enclosingFunctionName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:1:23:1:31 | 'express' | fileImports | express |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:1:23:1:31 | 'express' | receiverName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:1:23:1:31 | 'express' | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:4:9:4:19 | '/user/:id' | CalleeFlexibleAccessPath | app.get |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:4:9:4:19 | '/user/:id' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:4:9:4:19 | '/user/:id' | InputArgumentIndex | 0 |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:4:9:4:19 | '/user/:id' | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:4:9:4:19 | '/user/:id' | calleeImports | express |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:4:9:4:19 | '/user/:id' | contextFunctionInterfaces | textContentType() |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:4:9:4:19 | '/user/:id' | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:4:9:4:19 | '/user/:id' | enclosingFunctionBody |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:4:9:4:19 | '/user/:id' | enclosingFunctionName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:4:9:4:19 | '/user/:id' | fileImports | express |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:4:9:4:19 | '/user/:id' | receiverName | app |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:4:9:4:19 | '/user/:id' | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:4:22:12:1 | functio ... .\\n  }\\n} | CalleeFlexibleAccessPath | app.get |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:4:22:12:1 | functio ... .\\n  }\\n} | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:4:22:12:1 | functio ... .\\n  }\\n} | InputArgumentIndex | 1 |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:4:22:12:1 | functio ... .\\n  }\\n} | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:4:22:12:1 | functio ... .\\n  }\\n} | calleeImports | express |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:4:22:12:1 | functio ... .\\n  }\\n} | contextFunctionInterfaces | textContentType() |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:4:22:12:1 | functio ... .\\n  }\\n} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:4:22:12:1 | functio ... .\\n  }\\n} | enclosingFunctionBody |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:4:22:12:1 | functio ... .\\n  }\\n} | enclosingFunctionName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:4:22:12:1 | functio ... .\\n  }\\n} | fileImports | express |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:4:22:12:1 | functio ... .\\n  }\\n} | receiverName | app |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:4:22:12:1 | functio ... .\\n  }\\n} | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:6:13:6:26 | 'Content-Type' | CalleeFlexibleAccessPath | res.set |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:6:13:6:26 | 'Content-Type' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:6:13:6:26 | 'Content-Type' | InputArgumentIndex | 0 |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:6:13:6:26 | 'Content-Type' | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:6:13:6:26 | 'Content-Type' | calleeImports |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:6:13:6:26 | 'Content-Type' | contextFunctionInterfaces | textContentType() |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:6:13:6:26 | 'Content-Type' | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:6:13:6:26 | 'Content-Type' | enclosingFunctionBody | req res whatever res set Content-Type text/plain res send FOO:  req params id res set Content-Type text/html res send FOO:  req params id |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:6:13:6:26 | 'Content-Type' | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:6:13:6:26 | 'Content-Type' | fileImports | express |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:6:13:6:26 | 'Content-Type' | receiverName | res |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:6:13:6:26 | 'Content-Type' | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:6:29:6:40 | 'text/plain' | CalleeFlexibleAccessPath | res.set |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:6:29:6:40 | 'text/plain' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:6:29:6:40 | 'text/plain' | InputArgumentIndex | 1 |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:6:29:6:40 | 'text/plain' | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:6:29:6:40 | 'text/plain' | calleeImports |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:6:29:6:40 | 'text/plain' | contextFunctionInterfaces | textContentType() |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:6:29:6:40 | 'text/plain' | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:6:29:6:40 | 'text/plain' | enclosingFunctionBody | req res whatever res set Content-Type text/plain res send FOO:  req params id res set Content-Type text/html res send FOO:  req params id |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:6:29:6:40 | 'text/plain' | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:6:29:6:40 | 'text/plain' | fileImports | express |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:6:29:6:40 | 'text/plain' | receiverName | res |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:6:29:6:40 | 'text/plain' | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:9:13:9:26 | 'Content-Type' | CalleeFlexibleAccessPath | res.set |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:9:13:9:26 | 'Content-Type' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:9:13:9:26 | 'Content-Type' | InputArgumentIndex | 0 |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:9:13:9:26 | 'Content-Type' | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:9:13:9:26 | 'Content-Type' | calleeImports |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:9:13:9:26 | 'Content-Type' | contextFunctionInterfaces | textContentType() |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:9:13:9:26 | 'Content-Type' | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:9:13:9:26 | 'Content-Type' | enclosingFunctionBody | req res whatever res set Content-Type text/plain res send FOO:  req params id res set Content-Type text/html res send FOO:  req params id |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:9:13:9:26 | 'Content-Type' | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:9:13:9:26 | 'Content-Type' | fileImports | express |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:9:13:9:26 | 'Content-Type' | receiverName | res |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:9:13:9:26 | 'Content-Type' | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:9:29:9:39 | 'text/html' | CalleeFlexibleAccessPath | res.set |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:9:29:9:39 | 'text/html' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:9:29:9:39 | 'text/html' | InputArgumentIndex | 1 |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:9:29:9:39 | 'text/html' | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:9:29:9:39 | 'text/html' | calleeImports |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:9:29:9:39 | 'text/html' | contextFunctionInterfaces | textContentType() |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:9:29:9:39 | 'text/html' | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:9:29:9:39 | 'text/html' | enclosingFunctionBody | req res whatever res set Content-Type text/plain res send FOO:  req params id res set Content-Type text/html res send FOO:  req params id |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:9:29:9:39 | 'text/html' | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:9:29:9:39 | 'text/html' | fileImports | express |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:9:29:9:39 | 'text/html' | receiverName | res |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:9:29:9:39 | 'text/html' | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:14:9:14:19 | '/user/:id' | CalleeFlexibleAccessPath | app.get |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:14:9:14:19 | '/user/:id' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:14:9:14:19 | '/user/:id' | InputArgumentIndex | 0 |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:14:9:14:19 | '/user/:id' | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:14:9:14:19 | '/user/:id' | calleeImports | express |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:14:9:14:19 | '/user/:id' | contextFunctionInterfaces | textContentType() |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:14:9:14:19 | '/user/:id' | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:14:9:14:19 | '/user/:id' | enclosingFunctionBody |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:14:9:14:19 | '/user/:id' | enclosingFunctionName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:14:9:14:19 | '/user/:id' | fileImports | express |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:14:9:14:19 | '/user/:id' | receiverName | app |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:14:9:14:19 | '/user/:id' | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:14:22:22:1 | functio ... .\\n  }\\n} | CalleeFlexibleAccessPath | app.get |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:14:22:22:1 | functio ... .\\n  }\\n} | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:14:22:22:1 | functio ... .\\n  }\\n} | InputArgumentIndex | 1 |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:14:22:22:1 | functio ... .\\n  }\\n} | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:14:22:22:1 | functio ... .\\n  }\\n} | calleeImports | express |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:14:22:22:1 | functio ... .\\n  }\\n} | contextFunctionInterfaces | textContentType() |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:14:22:22:1 | functio ... .\\n  }\\n} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:14:22:22:1 | functio ... .\\n  }\\n} | enclosingFunctionBody |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:14:22:22:1 | functio ... .\\n  }\\n} | enclosingFunctionName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:14:22:22:1 | functio ... .\\n  }\\n} | fileImports | express |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:14:22:22:1 | functio ... .\\n  }\\n} | receiverName | app |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:14:22:22:1 | functio ... .\\n  }\\n} | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:16:19:16:21 | 200 | CalleeFlexibleAccessPath | res.writeHead |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:16:19:16:21 | 200 | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:16:19:16:21 | 200 | InputArgumentIndex | 0 |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:16:19:16:21 | 200 | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:16:19:16:21 | 200 | calleeImports |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:16:19:16:21 | 200 | contextFunctionInterfaces | textContentType() |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:16:19:16:21 | 200 | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:16:19:16:21 | 200 | enclosingFunctionBody | req res whatever res writeHead 200 Content-Type application/json res send FOO:  req params id res writeHead 404 res send FOO:  req params id |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:16:19:16:21 | 200 | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:16:19:16:21 | 200 | fileImports | express |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:16:19:16:21 | 200 | receiverName | res |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:16:19:16:21 | 200 | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:16:24:16:59 | {'Conte ... /json'} | CalleeFlexibleAccessPath | res.writeHead |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:16:24:16:59 | {'Conte ... /json'} | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:16:24:16:59 | {'Conte ... /json'} | InputArgumentIndex | 1 |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:16:24:16:59 | {'Conte ... /json'} | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:16:24:16:59 | {'Conte ... /json'} | calleeImports |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:16:24:16:59 | {'Conte ... /json'} | contextFunctionInterfaces | textContentType() |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:16:24:16:59 | {'Conte ... /json'} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:16:24:16:59 | {'Conte ... /json'} | enclosingFunctionBody | req res whatever res writeHead 200 Content-Type application/json res send FOO:  req params id res writeHead 404 res send FOO:  req params id |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:16:24:16:59 | {'Conte ... /json'} | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:16:24:16:59 | {'Conte ... /json'} | fileImports | express |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:16:24:16:59 | {'Conte ... /json'} | receiverName | res |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:16:24:16:59 | {'Conte ... /json'} | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:16:41:16:58 | 'application/json' | CalleeFlexibleAccessPath | res.writeHead |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:16:41:16:58 | 'application/json' | InputAccessPathFromCallee | 1.Content-Type |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:16:41:16:58 | 'application/json' | InputArgumentIndex | 1 |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:16:41:16:58 | 'application/json' | assignedToPropName | Content-Type |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:16:41:16:58 | 'application/json' | calleeImports |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:16:41:16:58 | 'application/json' | contextFunctionInterfaces | textContentType() |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:16:41:16:58 | 'application/json' | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:16:41:16:58 | 'application/json' | enclosingFunctionBody | req res whatever res writeHead 200 Content-Type application/json res send FOO:  req params id res writeHead 404 res send FOO:  req params id |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:16:41:16:58 | 'application/json' | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:16:41:16:58 | 'application/json' | fileImports | express |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:16:41:16:58 | 'application/json' | receiverName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:16:41:16:58 | 'application/json' | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:19:19:19:21 | 404 | CalleeFlexibleAccessPath | res.writeHead |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:19:19:19:21 | 404 | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:19:19:19:21 | 404 | InputArgumentIndex | 0 |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:19:19:19:21 | 404 | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:19:19:19:21 | 404 | calleeImports |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:19:19:19:21 | 404 | contextFunctionInterfaces | textContentType() |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:19:19:19:21 | 404 | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:19:19:19:21 | 404 | enclosingFunctionBody | req res whatever res writeHead 200 Content-Type application/json res send FOO:  req params id res writeHead 404 res send FOO:  req params id |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:19:19:19:21 | 404 | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:19:19:19:21 | 404 | fileImports | express |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:19:19:19:21 | 404 | receiverName | res |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:19:19:19:21 | 404 | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:25:9:25:19 | '/user/:id' | CalleeFlexibleAccessPath | app.get |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:25:9:25:19 | '/user/:id' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:25:9:25:19 | '/user/:id' | InputArgumentIndex | 0 |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:25:9:25:19 | '/user/:id' | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:25:9:25:19 | '/user/:id' | calleeImports | express |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:25:9:25:19 | '/user/:id' | contextFunctionInterfaces | textContentType() |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:25:9:25:19 | '/user/:id' | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:25:9:25:19 | '/user/:id' | enclosingFunctionBody |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:25:9:25:19 | '/user/:id' | enclosingFunctionName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:25:9:25:19 | '/user/:id' | fileImports | express |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:25:9:25:19 | '/user/:id' | receiverName | app |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:25:9:25:19 | '/user/:id' | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:25:22:33:1 | functio ...  JSON\\n} | CalleeFlexibleAccessPath | app.get |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:25:22:33:1 | functio ...  JSON\\n} | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:25:22:33:1 | functio ...  JSON\\n} | InputArgumentIndex | 1 |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:25:22:33:1 | functio ...  JSON\\n} | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:25:22:33:1 | functio ...  JSON\\n} | calleeImports | express |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:25:22:33:1 | functio ...  JSON\\n} | contextFunctionInterfaces | textContentType() |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:25:22:33:1 | functio ...  JSON\\n} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:25:22:33:1 | functio ...  JSON\\n} | enclosingFunctionBody |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:25:22:33:1 | functio ...  JSON\\n} | enclosingFunctionName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:25:22:33:1 | functio ...  JSON\\n} | fileImports | express |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:25:22:33:1 | functio ...  JSON\\n} | receiverName | app |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:25:22:33:1 | functio ...  JSON\\n} | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:26:17:26:19 | 200 | CalleeFlexibleAccessPath | res.writeHead |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:26:17:26:19 | 200 | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:26:17:26:19 | 200 | InputArgumentIndex | 0 |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:26:17:26:19 | 200 | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:26:17:26:19 | 200 | calleeImports |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:26:17:26:19 | 200 | contextFunctionInterfaces | textContentType() |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:26:17:26:19 | 200 | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:26:17:26:19 | 200 | enclosingFunctionBody | req res res writeHead 200 Content-Type application/json whatever res send FOO:  req params id res send FOO:  req params id res send FOO:  req params id |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:26:17:26:19 | 200 | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:26:17:26:19 | 200 | fileImports | express |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:26:17:26:19 | 200 | receiverName | res |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:26:17:26:19 | 200 | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:26:22:26:57 | {'Conte ... /json'} | CalleeFlexibleAccessPath | res.writeHead |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:26:22:26:57 | {'Conte ... /json'} | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:26:22:26:57 | {'Conte ... /json'} | InputArgumentIndex | 1 |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:26:22:26:57 | {'Conte ... /json'} | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:26:22:26:57 | {'Conte ... /json'} | calleeImports |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:26:22:26:57 | {'Conte ... /json'} | contextFunctionInterfaces | textContentType() |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:26:22:26:57 | {'Conte ... /json'} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:26:22:26:57 | {'Conte ... /json'} | enclosingFunctionBody | req res res writeHead 200 Content-Type application/json whatever res send FOO:  req params id res send FOO:  req params id res send FOO:  req params id |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:26:22:26:57 | {'Conte ... /json'} | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:26:22:26:57 | {'Conte ... /json'} | fileImports | express |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:26:22:26:57 | {'Conte ... /json'} | receiverName | res |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:26:22:26:57 | {'Conte ... /json'} | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:26:39:26:56 | 'application/json' | CalleeFlexibleAccessPath | res.writeHead |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:26:39:26:56 | 'application/json' | InputAccessPathFromCallee | 1.Content-Type |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:26:39:26:56 | 'application/json' | InputArgumentIndex | 1 |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:26:39:26:56 | 'application/json' | assignedToPropName | Content-Type |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:26:39:26:56 | 'application/json' | calleeImports |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:26:39:26:56 | 'application/json' | contextFunctionInterfaces | textContentType() |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:26:39:26:56 | 'application/json' | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:26:39:26:56 | 'application/json' | enclosingFunctionBody | req res res writeHead 200 Content-Type application/json whatever res send FOO:  req params id res send FOO:  req params id res send FOO:  req params id |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:26:39:26:56 | 'application/json' | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:26:39:26:56 | 'application/json' | fileImports | express |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:26:39:26:56 | 'application/json' | receiverName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:26:39:26:56 | 'application/json' | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:36:9:36:19 | '/user/:id' | CalleeFlexibleAccessPath | app.get |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:36:9:36:19 | '/user/:id' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:36:9:36:19 | '/user/:id' | InputArgumentIndex | 0 |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:36:9:36:19 | '/user/:id' | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:36:9:36:19 | '/user/:id' | calleeImports | express |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:36:9:36:19 | '/user/:id' | contextFunctionInterfaces | textContentType() |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:36:9:36:19 | '/user/:id' | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:36:9:36:19 | '/user/:id' | enclosingFunctionBody |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:36:9:36:19 | '/user/:id' | enclosingFunctionName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:36:9:36:19 | '/user/:id' | fileImports | express |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:36:9:36:19 | '/user/:id' | receiverName | app |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:36:9:36:19 | '/user/:id' | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:36:22:44:1 | functio ... K\\n  }\\n} | CalleeFlexibleAccessPath | app.get |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:36:22:44:1 | functio ... K\\n  }\\n} | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:36:22:44:1 | functio ... K\\n  }\\n} | InputArgumentIndex | 1 |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:36:22:44:1 | functio ... K\\n  }\\n} | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:36:22:44:1 | functio ... K\\n  }\\n} | calleeImports | express |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:36:22:44:1 | functio ... K\\n  }\\n} | contextFunctionInterfaces | textContentType() |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:36:22:44:1 | functio ... K\\n  }\\n} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:36:22:44:1 | functio ... K\\n  }\\n} | enclosingFunctionBody |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:36:22:44:1 | functio ... K\\n  }\\n} | enclosingFunctionName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:36:22:44:1 | functio ... K\\n  }\\n} | fileImports | express |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:36:22:44:1 | functio ... K\\n  }\\n} | receiverName | app |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:36:22:44:1 | functio ... K\\n  }\\n} | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:41:19:41:32 | 'Content-Type' | CalleeFlexibleAccessPath | res.setHeader |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:41:19:41:32 | 'Content-Type' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:41:19:41:32 | 'Content-Type' | InputArgumentIndex | 0 |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:41:19:41:32 | 'Content-Type' | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:41:19:41:32 | 'Content-Type' | calleeImports |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:41:19:41:32 | 'Content-Type' | contextFunctionInterfaces | textContentType() |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:41:19:41:32 | 'Content-Type' | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:41:19:41:32 | 'Content-Type' | enclosingFunctionBody | req res err res statusCode 404 res end FOO:  req params id res setHeader Content-Type text/plain;charset=utf8 res end FOO:  req params id |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:41:19:41:32 | 'Content-Type' | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:41:19:41:32 | 'Content-Type' | fileImports | express |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:41:19:41:32 | 'Content-Type' | receiverName | res |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:41:19:41:32 | 'Content-Type' | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:41:35:41:59 | 'text/p ... t=utf8' | CalleeFlexibleAccessPath | res.setHeader |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:41:35:41:59 | 'text/p ... t=utf8' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:41:35:41:59 | 'text/p ... t=utf8' | InputArgumentIndex | 1 |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:41:35:41:59 | 'text/p ... t=utf8' | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:41:35:41:59 | 'text/p ... t=utf8' | calleeImports |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:41:35:41:59 | 'text/p ... t=utf8' | contextFunctionInterfaces | textContentType() |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:41:35:41:59 | 'text/p ... t=utf8' | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:41:35:41:59 | 'text/p ... t=utf8' | enclosingFunctionBody | req res err res statusCode 404 res end FOO:  req params id res setHeader Content-Type text/plain;charset=utf8 res end FOO:  req params id |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:41:35:41:59 | 'text/p ... t=utf8' | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:41:35:41:59 | 'text/p ... t=utf8' | fileImports | express |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:41:35:41:59 | 'text/p ... t=utf8' | receiverName | res |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:41:35:41:59 | 'text/p ... t=utf8' | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:50:9:50:19 | '/user/:id' | CalleeFlexibleAccessPath | app.get |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:50:9:50:19 | '/user/:id' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:50:9:50:19 | '/user/:id' | InputArgumentIndex | 0 |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:50:9:50:19 | '/user/:id' | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:50:9:50:19 | '/user/:id' | calleeImports | express |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:50:9:50:19 | '/user/:id' | contextFunctionInterfaces | textContentType() |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:50:9:50:19 | '/user/:id' | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:50:9:50:19 | '/user/:id' | enclosingFunctionBody |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:50:9:50:19 | '/user/:id' | enclosingFunctionName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:50:9:50:19 | '/user/:id' | fileImports | express |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:50:9:50:19 | '/user/:id' | receiverName | app |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:50:9:50:19 | '/user/:id' | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:50:22:58:1 | functio ... K\\n  }\\n} | CalleeFlexibleAccessPath | app.get |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:50:22:58:1 | functio ... K\\n  }\\n} | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:50:22:58:1 | functio ... K\\n  }\\n} | InputArgumentIndex | 1 |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:50:22:58:1 | functio ... K\\n  }\\n} | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:50:22:58:1 | functio ... K\\n  }\\n} | calleeImports | express |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:50:22:58:1 | functio ... K\\n  }\\n} | contextFunctionInterfaces | textContentType() |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:50:22:58:1 | functio ... K\\n  }\\n} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:50:22:58:1 | functio ... K\\n  }\\n} | enclosingFunctionBody |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:50:22:58:1 | functio ... K\\n  }\\n} | enclosingFunctionName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:50:22:58:1 | functio ... K\\n  }\\n} | fileImports | express |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:50:22:58:1 | functio ... K\\n  }\\n} | receiverName | app |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:50:22:58:1 | functio ... K\\n  }\\n} | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:52:16:52:50 | {'Conte ... Type()} | CalleeFlexibleAccessPath | res.header |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:52:16:52:50 | {'Conte ... Type()} | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:52:16:52:50 | {'Conte ... Type()} | InputArgumentIndex | 0 |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:52:16:52:50 | {'Conte ... Type()} | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:52:16:52:50 | {'Conte ... Type()} | calleeImports |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:52:16:52:50 | {'Conte ... Type()} | contextFunctionInterfaces | textContentType() |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:52:16:52:50 | {'Conte ... Type()} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:52:16:52:50 | {'Conte ... Type()} | enclosingFunctionBody | req res err res header Content-Type textContentType res end FOO:  req params id res setHeader Content-Type text/plain;charset=utf8 res end FOO:  req params id |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:52:16:52:50 | {'Conte ... Type()} | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:52:16:52:50 | {'Conte ... Type()} | fileImports | express |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:52:16:52:50 | {'Conte ... Type()} | receiverName | res |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:52:16:52:50 | {'Conte ... Type()} | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:52:33:52:49 | textContentType() | CalleeFlexibleAccessPath | res.header |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:52:33:52:49 | textContentType() | InputAccessPathFromCallee | 0.Content-Type |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:52:33:52:49 | textContentType() | InputArgumentIndex | 0 |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:52:33:52:49 | textContentType() | assignedToPropName | Content-Type |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:52:33:52:49 | textContentType() | calleeImports |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:52:33:52:49 | textContentType() | contextFunctionInterfaces | textContentType() |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:52:33:52:49 | textContentType() | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:52:33:52:49 | textContentType() | enclosingFunctionBody | req res err res header Content-Type textContentType res end FOO:  req params id res setHeader Content-Type text/plain;charset=utf8 res end FOO:  req params id |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:52:33:52:49 | textContentType() | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:52:33:52:49 | textContentType() | fileImports | express |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:52:33:52:49 | textContentType() | receiverName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:52:33:52:49 | textContentType() | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:55:19:55:32 | 'Content-Type' | CalleeFlexibleAccessPath | res.setHeader |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:55:19:55:32 | 'Content-Type' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:55:19:55:32 | 'Content-Type' | InputArgumentIndex | 0 |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:55:19:55:32 | 'Content-Type' | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:55:19:55:32 | 'Content-Type' | calleeImports |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:55:19:55:32 | 'Content-Type' | contextFunctionInterfaces | textContentType() |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:55:19:55:32 | 'Content-Type' | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:55:19:55:32 | 'Content-Type' | enclosingFunctionBody | req res err res header Content-Type textContentType res end FOO:  req params id res setHeader Content-Type text/plain;charset=utf8 res end FOO:  req params id |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:55:19:55:32 | 'Content-Type' | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:55:19:55:32 | 'Content-Type' | fileImports | express |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:55:19:55:32 | 'Content-Type' | receiverName | res |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:55:19:55:32 | 'Content-Type' | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:55:35:55:59 | 'text/p ... t=utf8' | CalleeFlexibleAccessPath | res.setHeader |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:55:35:55:59 | 'text/p ... t=utf8' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:55:35:55:59 | 'text/p ... t=utf8' | InputArgumentIndex | 1 |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:55:35:55:59 | 'text/p ... t=utf8' | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:55:35:55:59 | 'text/p ... t=utf8' | calleeImports |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:55:35:55:59 | 'text/p ... t=utf8' | contextFunctionInterfaces | textContentType() |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:55:35:55:59 | 'text/p ... t=utf8' | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:55:35:55:59 | 'text/p ... t=utf8' | enclosingFunctionBody | req res err res header Content-Type textContentType res end FOO:  req params id res setHeader Content-Type text/plain;charset=utf8 res end FOO:  req params id |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:55:35:55:59 | 'text/p ... t=utf8' | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:55:35:55:59 | 'text/p ... t=utf8' | fileImports | express |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:55:35:55:59 | 'text/p ... t=utf8' | receiverName | res |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:55:35:55:59 | 'text/p ... t=utf8' | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:60:9:60:19 | '/user/:id' | CalleeFlexibleAccessPath | app.get |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:60:9:60:19 | '/user/:id' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:60:9:60:19 | '/user/:id' | InputArgumentIndex | 0 |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:60:9:60:19 | '/user/:id' | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:60:9:60:19 | '/user/:id' | calleeImports | express |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:60:9:60:19 | '/user/:id' | contextFunctionInterfaces | textContentType() |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:60:9:60:19 | '/user/:id' | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:60:9:60:19 | '/user/:id' | enclosingFunctionBody |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:60:9:60:19 | '/user/:id' | enclosingFunctionName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:60:9:60:19 | '/user/:id' | fileImports | express |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:60:9:60:19 | '/user/:id' | receiverName | app |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:60:9:60:19 | '/user/:id' | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:60:22:71:1 | functio ...  set.\\n} | CalleeFlexibleAccessPath | app.get |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:60:22:71:1 | functio ...  set.\\n} | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:60:22:71:1 | functio ...  set.\\n} | InputArgumentIndex | 1 |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:60:22:71:1 | functio ...  set.\\n} | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:60:22:71:1 | functio ...  set.\\n} | calleeImports | express |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:60:22:71:1 | functio ...  set.\\n} | contextFunctionInterfaces | textContentType() |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:60:22:71:1 | functio ...  set.\\n} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:60:22:71:1 | functio ...  set.\\n} | enclosingFunctionBody |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:60:22:71:1 | functio ...  set.\\n} | enclosingFunctionName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:60:22:71:1 | functio ...  set.\\n} | fileImports | express |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:60:22:71:1 | functio ...  set.\\n} | receiverName | app |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:60:22:71:1 | functio ...  set.\\n} | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:62:19:62:21 | 200 | CalleeFlexibleAccessPath | res.writeHead |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:62:19:62:21 | 200 | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:62:19:62:21 | 200 | InputArgumentIndex | 0 |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:62:19:62:21 | 200 | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:62:19:62:21 | 200 | calleeImports |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:62:19:62:21 | 200 | contextFunctionInterfaces | textContentType() |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:62:19:62:21 | 200 | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:62:19:62:21 | 200 | enclosingFunctionBody | req res err res writeHead 200 Content-Type application/json res send FOO:  req params id doSomething somethingMore Math random res writeHead 404 res send FOO:  req params id |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:62:19:62:21 | 200 | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:62:19:62:21 | 200 | fileImports | express |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:62:19:62:21 | 200 | receiverName | res |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:62:19:62:21 | 200 | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:62:24:62:59 | {'Conte ... /json'} | CalleeFlexibleAccessPath | res.writeHead |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:62:24:62:59 | {'Conte ... /json'} | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:62:24:62:59 | {'Conte ... /json'} | InputArgumentIndex | 1 |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:62:24:62:59 | {'Conte ... /json'} | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:62:24:62:59 | {'Conte ... /json'} | calleeImports |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:62:24:62:59 | {'Conte ... /json'} | contextFunctionInterfaces | textContentType() |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:62:24:62:59 | {'Conte ... /json'} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:62:24:62:59 | {'Conte ... /json'} | enclosingFunctionBody | req res err res writeHead 200 Content-Type application/json res send FOO:  req params id doSomething somethingMore Math random res writeHead 404 res send FOO:  req params id |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:62:24:62:59 | {'Conte ... /json'} | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:62:24:62:59 | {'Conte ... /json'} | fileImports | express |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:62:24:62:59 | {'Conte ... /json'} | receiverName | res |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:62:24:62:59 | {'Conte ... /json'} | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:62:41:62:58 | 'application/json' | CalleeFlexibleAccessPath | res.writeHead |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:62:41:62:58 | 'application/json' | InputAccessPathFromCallee | 1.Content-Type |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:62:41:62:58 | 'application/json' | InputArgumentIndex | 1 |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:62:41:62:58 | 'application/json' | assignedToPropName | Content-Type |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:62:41:62:58 | 'application/json' | calleeImports |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:62:41:62:58 | 'application/json' | contextFunctionInterfaces | textContentType() |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:62:41:62:58 | 'application/json' | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:62:41:62:58 | 'application/json' | enclosingFunctionBody | req res err res writeHead 200 Content-Type application/json res send FOO:  req params id doSomething somethingMore Math random res writeHead 404 res send FOO:  req params id |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:62:41:62:58 | 'application/json' | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:62:41:62:58 | 'application/json' | fileImports | express |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:62:41:62:58 | 'application/json' | receiverName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:62:41:62:58 | 'application/json' | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:69:17:69:19 | 404 | CalleeFlexibleAccessPath | res.writeHead |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:69:17:69:19 | 404 | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:69:17:69:19 | 404 | InputArgumentIndex | 0 |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:69:17:69:19 | 404 | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:69:17:69:19 | 404 | calleeImports |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:69:17:69:19 | 404 | contextFunctionInterfaces | textContentType() |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:69:17:69:19 | 404 | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:69:17:69:19 | 404 | enclosingFunctionBody | req res err res writeHead 200 Content-Type application/json res send FOO:  req params id doSomething somethingMore Math random res writeHead 404 res send FOO:  req params id |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:69:17:69:19 | 404 | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:69:17:69:19 | 404 | fileImports | express |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:69:17:69:19 | 404 | receiverName | res |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:69:17:69:19 | 404 | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:73:9:73:19 | '/user/:id' | CalleeFlexibleAccessPath | app.get |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:73:9:73:19 | '/user/:id' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:73:9:73:19 | '/user/:id' | InputArgumentIndex | 0 |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:73:9:73:19 | '/user/:id' | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:73:9:73:19 | '/user/:id' | calleeImports | express |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:73:9:73:19 | '/user/:id' | contextFunctionInterfaces | textContentType() |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:73:9:73:19 | '/user/:id' | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:73:9:73:19 | '/user/:id' | enclosingFunctionBody |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:73:9:73:19 | '/user/:id' | enclosingFunctionName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:73:9:73:19 | '/user/:id' | fileImports | express |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:73:9:73:19 | '/user/:id' | receiverName | app |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:73:9:73:19 | '/user/:id' | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:73:22:79:1 | functio ... // OK\\n} | CalleeFlexibleAccessPath | app.get |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:73:22:79:1 | functio ... // OK\\n} | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:73:22:79:1 | functio ... // OK\\n} | InputArgumentIndex | 1 |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:73:22:79:1 | functio ... // OK\\n} | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:73:22:79:1 | functio ... // OK\\n} | calleeImports | express |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:73:22:79:1 | functio ... // OK\\n} | contextFunctionInterfaces | textContentType() |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:73:22:79:1 | functio ... // OK\\n} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:73:22:79:1 | functio ... // OK\\n} | enclosingFunctionBody |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:73:22:79:1 | functio ... // OK\\n} | enclosingFunctionName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:73:22:79:1 | functio ... // OK\\n} | fileImports | express |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:73:22:79:1 | functio ... // OK\\n} | receiverName | app |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:73:22:79:1 | functio ... // OK\\n} | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:74:14:74:48 | {'Conte ... Type()} | CalleeFlexibleAccessPath | res.header |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:74:14:74:48 | {'Conte ... Type()} | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:74:14:74:48 | {'Conte ... Type()} | InputArgumentIndex | 0 |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:74:14:74:48 | {'Conte ... Type()} | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:74:14:74:48 | {'Conte ... Type()} | calleeImports |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:74:14:74:48 | {'Conte ... Type()} | contextFunctionInterfaces | textContentType() |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:74:14:74:48 | {'Conte ... Type()} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:74:14:74:48 | {'Conte ... Type()} | enclosingFunctionBody | req res res header Content-Type textContentType myFancyFunction res send FOO:  req params id res end FOO:  req params id |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:74:14:74:48 | {'Conte ... Type()} | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:74:14:74:48 | {'Conte ... Type()} | fileImports | express |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:74:14:74:48 | {'Conte ... Type()} | receiverName | res |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:74:14:74:48 | {'Conte ... Type()} | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:74:31:74:47 | textContentType() | CalleeFlexibleAccessPath | res.header |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:74:31:74:47 | textContentType() | InputAccessPathFromCallee | 0.Content-Type |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:74:31:74:47 | textContentType() | InputArgumentIndex | 0 |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:74:31:74:47 | textContentType() | assignedToPropName | Content-Type |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:74:31:74:47 | textContentType() | calleeImports |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:74:31:74:47 | textContentType() | contextFunctionInterfaces | textContentType() |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:74:31:74:47 | textContentType() | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:74:31:74:47 | textContentType() | enclosingFunctionBody | req res res header Content-Type textContentType myFancyFunction res send FOO:  req params id res end FOO:  req params id |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:74:31:74:47 | textContentType() | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:74:31:74:47 | textContentType() | fileImports | express |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:74:31:74:47 | textContentType() | receiverName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:74:31:74:47 | textContentType() | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:75:19:77:3 | () => { ...  OK\\n  } | CalleeFlexibleAccessPath | myFancyFunction |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:75:19:77:3 | () => { ...  OK\\n  } | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:75:19:77:3 | () => { ...  OK\\n  } | InputArgumentIndex | 0 |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:75:19:77:3 | () => { ...  OK\\n  } | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:75:19:77:3 | () => { ...  OK\\n  } | calleeImports |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:75:19:77:3 | () => { ...  OK\\n  } | contextFunctionInterfaces | textContentType() |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:75:19:77:3 | () => { ...  OK\\n  } | contextSurroundingFunctionParameters | (req, res)\n() |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:75:19:77:3 | () => { ...  OK\\n  } | enclosingFunctionBody | req res res header Content-Type textContentType myFancyFunction res send FOO:  req params id res end FOO:  req params id |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:75:19:77:3 | () => { ...  OK\\n  } | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:75:19:77:3 | () => { ...  OK\\n  } | fileImports | express |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:75:19:77:3 | () => { ...  OK\\n  } | receiverName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:75:19:77:3 | () => { ...  OK\\n  } | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood2.js:1:21:1:25 | "url" | CalleeFlexibleAccessPath | require |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood2.js:1:21:1:25 | "url" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood2.js:1:21:1:25 | "url" | InputArgumentIndex | 0 |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood2.js:1:21:1:25 | "url" | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood2.js:1:21:1:25 | "url" | calleeImports |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood2.js:1:21:1:25 | "url" | contextFunctionInterfaces | sendTextResponse(resp, text) |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood2.js:1:21:1:25 | "url" | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood2.js:1:21:1:25 | "url" | enclosingFunctionBody |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood2.js:1:21:1:25 | "url" | enclosingFunctionName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood2.js:1:21:1:25 | "url" | fileImports | http url |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood2.js:1:21:1:25 | "url" | receiverName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood2.js:1:21:1:25 | "url" | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood2.js:3:9:3:14 | "http" | CalleeFlexibleAccessPath | require |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood2.js:3:9:3:14 | "http" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood2.js:3:9:3:14 | "http" | InputArgumentIndex | 0 |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood2.js:3:9:3:14 | "http" | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood2.js:3:9:3:14 | "http" | calleeImports |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood2.js:3:9:3:14 | "http" | contextFunctionInterfaces | sendTextResponse(resp, text) |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood2.js:3:9:3:14 | "http" | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood2.js:3:9:3:14 | "http" | enclosingFunctionBody |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood2.js:3:9:3:14 | "http" | enclosingFunctionName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood2.js:3:9:3:14 | "http" | fileImports | http url |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood2.js:3:9:3:14 | "http" | receiverName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood2.js:3:9:3:14 | "http" | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood2.js:3:30:6:1 | functio ... name)\\n} | CalleeFlexibleAccessPath | import(!).createServer |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood2.js:3:30:6:1 | functio ... name)\\n} | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood2.js:3:30:6:1 | functio ... name)\\n} | InputArgumentIndex | 0 |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood2.js:3:30:6:1 | functio ... name)\\n} | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood2.js:3:30:6:1 | functio ... name)\\n} | calleeImports | http |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood2.js:3:30:6:1 | functio ... name)\\n} | contextFunctionInterfaces | sendTextResponse(resp, text) |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood2.js:3:30:6:1 | functio ... name)\\n} | contextSurroundingFunctionParameters | (req, resp) |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood2.js:3:30:6:1 | functio ... name)\\n} | enclosingFunctionBody |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood2.js:3:30:6:1 | functio ... name)\\n} | enclosingFunctionName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood2.js:3:30:6:1 | functio ... name)\\n} | fileImports | http url |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood2.js:3:30:6:1 | functio ... name)\\n} | receiverName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood2.js:3:30:6:1 | functio ... name)\\n} | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood2.js:9:18:9:20 | 200 | CalleeFlexibleAccessPath | resp.writeHead |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood2.js:9:18:9:20 | 200 | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood2.js:9:18:9:20 | 200 | InputArgumentIndex | 0 |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood2.js:9:18:9:20 | 200 | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood2.js:9:18:9:20 | 200 | calleeImports |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood2.js:9:18:9:20 | 200 | contextFunctionInterfaces | sendTextResponse(resp, text) |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood2.js:9:18:9:20 | 200 | contextSurroundingFunctionParameters | (resp, text) |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood2.js:9:18:9:20 | 200 | enclosingFunctionBody | resp text resp writeHead 200 content-type text/plain; charset=utf-8 resp end text |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood2.js:9:18:9:20 | 200 | enclosingFunctionName | sendTextResponse |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood2.js:9:18:9:20 | 200 | fileImports | http url |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood2.js:9:18:9:20 | 200 | receiverName | resp |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood2.js:9:18:9:20 | 200 | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood2.js:9:23:9:67 | {"conte ... utf-8"} | CalleeFlexibleAccessPath | resp.writeHead |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood2.js:9:23:9:67 | {"conte ... utf-8"} | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood2.js:9:23:9:67 | {"conte ... utf-8"} | InputArgumentIndex | 1 |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood2.js:9:23:9:67 | {"conte ... utf-8"} | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood2.js:9:23:9:67 | {"conte ... utf-8"} | calleeImports |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood2.js:9:23:9:67 | {"conte ... utf-8"} | contextFunctionInterfaces | sendTextResponse(resp, text) |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood2.js:9:23:9:67 | {"conte ... utf-8"} | contextSurroundingFunctionParameters | (resp, text) |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood2.js:9:23:9:67 | {"conte ... utf-8"} | enclosingFunctionBody | resp text resp writeHead 200 content-type text/plain; charset=utf-8 resp end text |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood2.js:9:23:9:67 | {"conte ... utf-8"} | enclosingFunctionName | sendTextResponse |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood2.js:9:23:9:67 | {"conte ... utf-8"} | fileImports | http url |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood2.js:9:23:9:67 | {"conte ... utf-8"} | receiverName | resp |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood2.js:9:23:9:67 | {"conte ... utf-8"} | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood2.js:9:40:9:66 | "text/p ... =utf-8" | CalleeFlexibleAccessPath | resp.writeHead |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood2.js:9:40:9:66 | "text/p ... =utf-8" | InputAccessPathFromCallee | 1.content-type |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood2.js:9:40:9:66 | "text/p ... =utf-8" | InputArgumentIndex | 1 |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood2.js:9:40:9:66 | "text/p ... =utf-8" | assignedToPropName | content-type |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood2.js:9:40:9:66 | "text/p ... =utf-8" | calleeImports |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood2.js:9:40:9:66 | "text/p ... =utf-8" | contextFunctionInterfaces | sendTextResponse(resp, text) |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood2.js:9:40:9:66 | "text/p ... =utf-8" | contextSurroundingFunctionParameters | (resp, text) |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood2.js:9:40:9:66 | "text/p ... =utf-8" | enclosingFunctionBody | resp text resp writeHead 200 content-type text/plain; charset=utf-8 resp end text |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood2.js:9:40:9:66 | "text/p ... =utf-8" | enclosingFunctionName | sendTextResponse |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood2.js:9:40:9:66 | "text/p ... =utf-8" | fileImports | http url |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood2.js:9:40:9:66 | "text/p ... =utf-8" | receiverName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood2.js:9:40:9:66 | "text/p ... =utf-8" | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:1:23:1:31 | 'express' | CalleeFlexibleAccessPath | require |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:1:23:1:31 | 'express' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:1:23:1:31 | 'express' | InputArgumentIndex | 0 |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:1:23:1:31 | 'express' | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:1:23:1:31 | 'express' | calleeImports |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:1:23:1:31 | 'express' | contextFunctionInterfaces | escapeHtml1(string)\nescapeHtml2(s)\nescapeHtml3(value)\nescapeHtml4(s) |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:1:23:1:31 | 'express' | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:1:23:1:31 | 'express' | enclosingFunctionBody |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:1:23:1:31 | 'express' | enclosingFunctionName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:1:23:1:31 | 'express' | fileImports | express |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:1:23:1:31 | 'express' | receiverName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:1:23:1:31 | 'express' | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:8:14:8:15 | '' | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:8:14:8:15 | '' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:8:14:8:15 | '' | InputArgumentIndex |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:8:14:8:15 | '' | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:8:14:8:15 | '' | calleeImports |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:8:14:8:15 | '' | contextFunctionInterfaces | escapeHtml1(string)\nescapeHtml2(s)\nescapeHtml3(value)\nescapeHtml4(s) |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:8:14:8:15 | '' | contextSurroundingFunctionParameters | (string) |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:8:14:8:15 | '' | enclosingFunctionBody | string str  string escape html  lastIndex 0 index 0 index str length index str charCodeAt index 34 escape &quot; 38 escape &amp; 39 escape &#39; 60 escape &lt; 62 escape &gt; lastIndex index html str substring lastIndex index lastIndex index 1 html escape lastIndex index html str substring lastIndex index html |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:8:14:8:15 | '' | enclosingFunctionName | escapeHtml1 |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:8:14:8:15 | '' | fileImports | express |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:8:14:8:15 | '' | receiverName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:8:14:8:15 | '' | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:33:7:33:45 | html | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:33:7:33:45 | html | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:33:7:33:45 | html | InputArgumentIndex |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:33:7:33:45 | html | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:33:7:33:45 | html | calleeImports |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:33:7:33:45 | html | contextFunctionInterfaces | escapeHtml1(string)\nescapeHtml2(s)\nescapeHtml3(value)\nescapeHtml4(s) |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:33:7:33:45 | html | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:33:7:33:45 | html | enclosingFunctionBody | string str  string escape html  lastIndex 0 index 0 index str length index str charCodeAt index 34 escape &quot; 38 escape &amp; 39 escape &#39; 60 escape &lt; 62 escape &gt; lastIndex index html str substring lastIndex index lastIndex index 1 html escape lastIndex index html str substring lastIndex index html |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:33:7:33:45 | html | enclosingFunctionName | escapeHtml1 |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:33:7:33:45 | html | fileImports | express |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:33:7:33:45 | html | receiverName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:33:7:33:45 | html | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:33:7:33:45 | html += ...  index) | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:33:7:33:45 | html += ...  index) | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:33:7:33:45 | html += ...  index) | InputArgumentIndex |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:33:7:33:45 | html += ...  index) | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:33:7:33:45 | html += ...  index) | calleeImports |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:33:7:33:45 | html += ...  index) | contextFunctionInterfaces | escapeHtml1(string)\nescapeHtml2(s)\nescapeHtml3(value)\nescapeHtml4(s) |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:33:7:33:45 | html += ...  index) | contextSurroundingFunctionParameters | (string) |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:33:7:33:45 | html += ...  index) | enclosingFunctionBody | string str  string escape html  lastIndex 0 index 0 index str length index str charCodeAt index 34 escape &quot; 38 escape &amp; 39 escape &#39; 60 escape &lt; 62 escape &gt; lastIndex index html str substring lastIndex index lastIndex index 1 html escape lastIndex index html str substring lastIndex index html |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:33:7:33:45 | html += ...  index) | enclosingFunctionName | escapeHtml1 |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:33:7:33:45 | html += ...  index) | fileImports | express |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:33:7:33:45 | html += ...  index) | receiverName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:33:7:33:45 | html += ...  index) | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:33:15:33:45 | str.sub ...  index) | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:33:15:33:45 | str.sub ...  index) | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:33:15:33:45 | str.sub ...  index) | InputArgumentIndex |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:33:15:33:45 | str.sub ...  index) | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:33:15:33:45 | str.sub ...  index) | calleeImports |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:33:15:33:45 | str.sub ...  index) | contextFunctionInterfaces | escapeHtml1(string)\nescapeHtml2(s)\nescapeHtml3(value)\nescapeHtml4(s) |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:33:15:33:45 | str.sub ...  index) | contextSurroundingFunctionParameters | (string) |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:33:15:33:45 | str.sub ...  index) | enclosingFunctionBody | string str  string escape html  lastIndex 0 index 0 index str length index str charCodeAt index 34 escape &quot; 38 escape &amp; 39 escape &#39; 60 escape &lt; 62 escape &gt; lastIndex index html str substring lastIndex index lastIndex index 1 html escape lastIndex index html str substring lastIndex index html |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:33:15:33:45 | str.sub ...  index) | enclosingFunctionName | escapeHtml1 |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:33:15:33:45 | str.sub ...  index) | fileImports | express |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:33:15:33:45 | str.sub ...  index) | receiverName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:33:15:33:45 | str.sub ...  index) | stringConcatenatedWith | '' -endpoint-  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:33:29:33:37 | lastIndex | CalleeFlexibleAccessPath | str.substring |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:33:29:33:37 | lastIndex | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:33:29:33:37 | lastIndex | InputArgumentIndex | 0 |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:33:29:33:37 | lastIndex | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:33:29:33:37 | lastIndex | calleeImports |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:33:29:33:37 | lastIndex | contextFunctionInterfaces | escapeHtml1(string)\nescapeHtml2(s)\nescapeHtml3(value)\nescapeHtml4(s) |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:33:29:33:37 | lastIndex | contextSurroundingFunctionParameters | (string) |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:33:29:33:37 | lastIndex | enclosingFunctionBody | string str  string escape html  lastIndex 0 index 0 index str length index str charCodeAt index 34 escape &quot; 38 escape &amp; 39 escape &#39; 60 escape &lt; 62 escape &gt; lastIndex index html str substring lastIndex index lastIndex index 1 html escape lastIndex index html str substring lastIndex index html |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:33:29:33:37 | lastIndex | enclosingFunctionName | escapeHtml1 |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:33:29:33:37 | lastIndex | fileImports | express |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:33:29:33:37 | lastIndex | receiverName | str |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:33:29:33:37 | lastIndex | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:33:40:33:44 | index | CalleeFlexibleAccessPath | str.substring |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:33:40:33:44 | index | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:33:40:33:44 | index | InputArgumentIndex | 1 |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:33:40:33:44 | index | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:33:40:33:44 | index | calleeImports |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:33:40:33:44 | index | contextFunctionInterfaces | escapeHtml1(string)\nescapeHtml2(s)\nescapeHtml3(value)\nescapeHtml4(s) |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:33:40:33:44 | index | contextSurroundingFunctionParameters | (string) |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:33:40:33:44 | index | enclosingFunctionBody | string str  string escape html  lastIndex 0 index 0 index str length index str charCodeAt index 34 escape &quot; 38 escape &amp; 39 escape &#39; 60 escape &lt; 62 escape &gt; lastIndex index html str substring lastIndex index lastIndex index 1 html escape lastIndex index html str substring lastIndex index html |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:33:40:33:44 | index | enclosingFunctionName | escapeHtml1 |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:33:40:33:44 | index | fileImports | express |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:33:40:33:44 | index | receiverName | str |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:33:40:33:44 | index | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:37:5:37:18 | html | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:37:5:37:18 | html | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:37:5:37:18 | html | InputArgumentIndex |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:37:5:37:18 | html | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:37:5:37:18 | html | calleeImports |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:37:5:37:18 | html | contextFunctionInterfaces | escapeHtml1(string)\nescapeHtml2(s)\nescapeHtml3(value)\nescapeHtml4(s) |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:37:5:37:18 | html | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:37:5:37:18 | html | enclosingFunctionBody | string str  string escape html  lastIndex 0 index 0 index str length index str charCodeAt index 34 escape &quot; 38 escape &amp; 39 escape &#39; 60 escape &lt; 62 escape &gt; lastIndex index html str substring lastIndex index lastIndex index 1 html escape lastIndex index html str substring lastIndex index html |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:37:5:37:18 | html | enclosingFunctionName | escapeHtml1 |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:37:5:37:18 | html | fileImports | express |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:37:5:37:18 | html | receiverName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:37:5:37:18 | html | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:37:5:37:18 | html += escape | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:37:5:37:18 | html += escape | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:37:5:37:18 | html += escape | InputArgumentIndex |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:37:5:37:18 | html += escape | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:37:5:37:18 | html += escape | calleeImports |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:37:5:37:18 | html += escape | contextFunctionInterfaces | escapeHtml1(string)\nescapeHtml2(s)\nescapeHtml3(value)\nescapeHtml4(s) |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:37:5:37:18 | html += escape | contextSurroundingFunctionParameters | (string) |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:37:5:37:18 | html += escape | enclosingFunctionBody | string str  string escape html  lastIndex 0 index 0 index str length index str charCodeAt index 34 escape &quot; 38 escape &amp; 39 escape &#39; 60 escape &lt; 62 escape &gt; lastIndex index html str substring lastIndex index lastIndex index 1 html escape lastIndex index html str substring lastIndex index html |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:37:5:37:18 | html += escape | enclosingFunctionName | escapeHtml1 |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:37:5:37:18 | html += escape | fileImports | express |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:37:5:37:18 | html += escape | receiverName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:37:5:37:18 | html += escape | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:37:13:37:18 | escape | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:37:13:37:18 | escape | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:37:13:37:18 | escape | InputArgumentIndex |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:37:13:37:18 | escape | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:37:13:37:18 | escape | calleeImports |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:37:13:37:18 | escape | contextFunctionInterfaces | escapeHtml1(string)\nescapeHtml2(s)\nescapeHtml3(value)\nescapeHtml4(s) |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:37:13:37:18 | escape | contextSurroundingFunctionParameters | (string) |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:37:13:37:18 | escape | enclosingFunctionBody | string str  string escape html  lastIndex 0 index 0 index str length index str charCodeAt index 34 escape &quot; 38 escape &amp; 39 escape &#39; 60 escape &lt; 62 escape &gt; lastIndex index html str substring lastIndex index lastIndex index 1 html escape lastIndex index html str substring lastIndex index html |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:37:13:37:18 | escape | enclosingFunctionName | escapeHtml1 |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:37:13:37:18 | escape | fileImports | express |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:37:13:37:18 | escape | receiverName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:37:13:37:18 | escape | stringConcatenatedWith | '' -endpoint-  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:41:7:41:44 | html +  ...  index) | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:41:7:41:44 | html +  ...  index) | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:41:7:41:44 | html +  ...  index) | InputArgumentIndex |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:41:7:41:44 | html +  ...  index) | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:41:7:41:44 | html +  ...  index) | calleeImports |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:41:7:41:44 | html +  ...  index) | contextFunctionInterfaces | escapeHtml1(string)\nescapeHtml2(s)\nescapeHtml3(value)\nescapeHtml4(s) |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:41:7:41:44 | html +  ...  index) | contextSurroundingFunctionParameters | (string) |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:41:7:41:44 | html +  ...  index) | enclosingFunctionBody | string str  string escape html  lastIndex 0 index 0 index str length index str charCodeAt index 34 escape &quot; 38 escape &amp; 39 escape &#39; 60 escape &lt; 62 escape &gt; lastIndex index html str substring lastIndex index lastIndex index 1 html escape lastIndex index html str substring lastIndex index html |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:41:7:41:44 | html +  ...  index) | enclosingFunctionName | escapeHtml1 |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:41:7:41:44 | html +  ...  index) | fileImports | express |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:41:7:41:44 | html +  ...  index) | receiverName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:41:7:41:44 | html +  ...  index) | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:41:28:41:36 | lastIndex | CalleeFlexibleAccessPath | str.substring |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:41:28:41:36 | lastIndex | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:41:28:41:36 | lastIndex | InputArgumentIndex | 0 |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:41:28:41:36 | lastIndex | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:41:28:41:36 | lastIndex | calleeImports |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:41:28:41:36 | lastIndex | contextFunctionInterfaces | escapeHtml1(string)\nescapeHtml2(s)\nescapeHtml3(value)\nescapeHtml4(s) |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:41:28:41:36 | lastIndex | contextSurroundingFunctionParameters | (string) |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:41:28:41:36 | lastIndex | enclosingFunctionBody | string str  string escape html  lastIndex 0 index 0 index str length index str charCodeAt index 34 escape &quot; 38 escape &amp; 39 escape &#39; 60 escape &lt; 62 escape &gt; lastIndex index html str substring lastIndex index lastIndex index 1 html escape lastIndex index html str substring lastIndex index html |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:41:28:41:36 | lastIndex | enclosingFunctionName | escapeHtml1 |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:41:28:41:36 | lastIndex | fileImports | express |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:41:28:41:36 | lastIndex | receiverName | str |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:41:28:41:36 | lastIndex | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:41:39:41:43 | index | CalleeFlexibleAccessPath | str.substring |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:41:39:41:43 | index | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:41:39:41:43 | index | InputArgumentIndex | 1 |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:41:39:41:43 | index | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:41:39:41:43 | index | calleeImports |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:41:39:41:43 | index | contextFunctionInterfaces | escapeHtml1(string)\nescapeHtml2(s)\nescapeHtml3(value)\nescapeHtml4(s) |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:41:39:41:43 | index | contextSurroundingFunctionParameters | (string) |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:41:39:41:43 | index | enclosingFunctionBody | string str  string escape html  lastIndex 0 index 0 index str length index str charCodeAt index 34 escape &quot; 38 escape &amp; 39 escape &#39; 60 escape &lt; 62 escape &gt; lastIndex index html str substring lastIndex index lastIndex index 1 html escape lastIndex index html str substring lastIndex index html |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:41:39:41:43 | index | enclosingFunctionName | escapeHtml1 |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:41:39:41:43 | index | fileImports | express |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:41:39:41:43 | index | receiverName | str |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:41:39:41:43 | index | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:77:32:77:32 | 0 | CalleeFlexibleAccessPath | value.substring |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:77:32:77:32 | 0 | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:77:32:77:32 | 0 | InputArgumentIndex | 0 |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:77:32:77:32 | 0 | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:77:32:77:32 | 0 | calleeImports |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:77:32:77:32 | 0 | contextFunctionInterfaces | escapeHtml1(string)\nescapeHtml2(s)\nescapeHtml3(value)\nescapeHtml4(s) |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:77:32:77:32 | 0 | contextSurroundingFunctionParameters | (value) |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:77:32:77:32 | 0 | enclosingFunctionBody | value i 0 XMLChars AMP 38 QUOT 34 LT 60 GT 62 parts value substring 0 i i length ch XMLChars AMP parts push &amp; XMLChars QUOT parts push &quot; XMLChars LT parts push &lt; XMLChars GT parts push &gt; i j i i length ch value charCodeAt i ch XMLChars AMP ch XMLChars QUOT ch XMLChars LT ch XMLChars GT i j i parts push value substring j i parts join  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:77:32:77:32 | 0 | enclosingFunctionName | escapeHtml3 |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:77:32:77:32 | 0 | fileImports | express |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:77:32:77:32 | 0 | receiverName | value |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:77:32:77:32 | 0 | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:77:35:77:35 | i | CalleeFlexibleAccessPath | value.substring |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:77:35:77:35 | i | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:77:35:77:35 | i | InputArgumentIndex | 1 |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:77:35:77:35 | i | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:77:35:77:35 | i | calleeImports |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:77:35:77:35 | i | contextFunctionInterfaces | escapeHtml1(string)\nescapeHtml2(s)\nescapeHtml3(value)\nescapeHtml4(s) |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:77:35:77:35 | i | contextSurroundingFunctionParameters | (value) |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:77:35:77:35 | i | enclosingFunctionBody | value i 0 XMLChars AMP 38 QUOT 34 LT 60 GT 62 parts value substring 0 i i length ch XMLChars AMP parts push &amp; XMLChars QUOT parts push &quot; XMLChars LT parts push &lt; XMLChars GT parts push &gt; i j i i length ch value charCodeAt i ch XMLChars AMP ch XMLChars QUOT ch XMLChars LT ch XMLChars GT i j i parts push value substring j i parts join  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:77:35:77:35 | i | enclosingFunctionName | escapeHtml3 |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:77:35:77:35 | i | fileImports | express |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:77:35:77:35 | i | receiverName | value |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:77:35:77:35 | i | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:96:29:96:29 | i | CalleeFlexibleAccessPath | value.charCodeAt |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:96:29:96:29 | i | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:96:29:96:29 | i | InputArgumentIndex | 0 |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:96:29:96:29 | i | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:96:29:96:29 | i | calleeImports |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:96:29:96:29 | i | contextFunctionInterfaces | escapeHtml1(string)\nescapeHtml2(s)\nescapeHtml3(value)\nescapeHtml4(s) |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:96:29:96:29 | i | contextSurroundingFunctionParameters | (value) |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:96:29:96:29 | i | enclosingFunctionBody | value i 0 XMLChars AMP 38 QUOT 34 LT 60 GT 62 parts value substring 0 i i length ch XMLChars AMP parts push &amp; XMLChars QUOT parts push &quot; XMLChars LT parts push &lt; XMLChars GT parts push &gt; i j i i length ch value charCodeAt i ch XMLChars AMP ch XMLChars QUOT ch XMLChars LT ch XMLChars GT i j i parts push value substring j i parts join  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:96:29:96:29 | i | enclosingFunctionName | escapeHtml3 |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:96:29:96:29 | i | fileImports | express |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:96:29:96:29 | i | receiverName | value |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:96:29:96:29 | i | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:105:34:105:34 | j | CalleeFlexibleAccessPath | value.substring |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:105:34:105:34 | j | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:105:34:105:34 | j | InputArgumentIndex | 0 |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:105:34:105:34 | j | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:105:34:105:34 | j | calleeImports |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:105:34:105:34 | j | contextFunctionInterfaces | escapeHtml1(string)\nescapeHtml2(s)\nescapeHtml3(value)\nescapeHtml4(s) |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:105:34:105:34 | j | contextSurroundingFunctionParameters | (value) |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:105:34:105:34 | j | enclosingFunctionBody | value i 0 XMLChars AMP 38 QUOT 34 LT 60 GT 62 parts value substring 0 i i length ch XMLChars AMP parts push &amp; XMLChars QUOT parts push &quot; XMLChars LT parts push &lt; XMLChars GT parts push &gt; i j i i length ch value charCodeAt i ch XMLChars AMP ch XMLChars QUOT ch XMLChars LT ch XMLChars GT i j i parts push value substring j i parts join  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:105:34:105:34 | j | enclosingFunctionName | escapeHtml3 |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:105:34:105:34 | j | fileImports | express |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:105:34:105:34 | j | receiverName | value |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:105:34:105:34 | j | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:105:37:105:37 | i | CalleeFlexibleAccessPath | value.substring |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:105:37:105:37 | i | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:105:37:105:37 | i | InputArgumentIndex | 1 |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:105:37:105:37 | i | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:105:37:105:37 | i | calleeImports |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:105:37:105:37 | i | contextFunctionInterfaces | escapeHtml1(string)\nescapeHtml2(s)\nescapeHtml3(value)\nescapeHtml4(s) |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:105:37:105:37 | i | contextSurroundingFunctionParameters | (value) |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:105:37:105:37 | i | enclosingFunctionBody | value i 0 XMLChars AMP 38 QUOT 34 LT 60 GT 62 parts value substring 0 i i length ch XMLChars AMP parts push &amp; XMLChars QUOT parts push &quot; XMLChars LT parts push &lt; XMLChars GT parts push &gt; i j i i length ch value charCodeAt i ch XMLChars AMP ch XMLChars QUOT ch XMLChars LT ch XMLChars GT i j i parts push value substring j i parts join  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:105:37:105:37 | i | enclosingFunctionName | escapeHtml3 |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:105:37:105:37 | i | fileImports | express |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:105:37:105:37 | i | receiverName | value |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:105:37:105:37 | i | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:115:23:115:25 | i++ | CalleeFlexibleAccessPath | s.chatAt |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:115:23:115:25 | i++ | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:115:23:115:25 | i++ | InputArgumentIndex | 0 |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:115:23:115:25 | i++ | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:115:23:115:25 | i++ | calleeImports |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:115:23:115:25 | i++ | contextFunctionInterfaces | escapeHtml1(string)\nescapeHtml2(s)\nescapeHtml3(value)\nescapeHtml4(s) |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:115:23:115:25 | i++ | contextSurroundingFunctionParameters | (s) |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:115:23:115:25 | i++ | enclosingFunctionBody | s buf  i s length ch s chatAt i ch & buf &amp; < buf &lt; " buf &quot; buf ch buf |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:115:23:115:25 | i++ | enclosingFunctionName | escapeHtml4 |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:115:23:115:25 | i++ | fileImports | express |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:115:23:115:25 | i++ | receiverName | s |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:115:23:115:25 | i++ | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:134:9:134:19 | '/user/:id' | CalleeFlexibleAccessPath | app.get |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:134:9:134:19 | '/user/:id' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:134:9:134:19 | '/user/:id' | InputArgumentIndex | 0 |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:134:9:134:19 | '/user/:id' | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:134:9:134:19 | '/user/:id' | calleeImports | express |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:134:9:134:19 | '/user/:id' | contextFunctionInterfaces | escapeHtml1(string)\nescapeHtml2(s)\nescapeHtml3(value)\nescapeHtml4(s) |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:134:9:134:19 | '/user/:id' | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:134:9:134:19 | '/user/:id' | enclosingFunctionBody |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:134:9:134:19 | '/user/:id' | enclosingFunctionName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:134:9:134:19 | '/user/:id' | fileImports | express |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:134:9:134:19 | '/user/:id' | receiverName | app |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:134:9:134:19 | '/user/:id' | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:134:22:141:1 | functio ... // OK\\n} | CalleeFlexibleAccessPath | app.get |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:134:22:141:1 | functio ... // OK\\n} | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:134:22:141:1 | functio ... // OK\\n} | InputArgumentIndex | 1 |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:134:22:141:1 | functio ... // OK\\n} | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:134:22:141:1 | functio ... // OK\\n} | calleeImports | express |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:134:22:141:1 | functio ... // OK\\n} | contextFunctionInterfaces | escapeHtml1(string)\nescapeHtml2(s)\nescapeHtml3(value)\nescapeHtml4(s) |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:134:22:141:1 | functio ... // OK\\n} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:134:22:141:1 | functio ... // OK\\n} | enclosingFunctionBody |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:134:22:141:1 | functio ... // OK\\n} | enclosingFunctionName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:134:22:141:1 | functio ... // OK\\n} | fileImports | express |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:134:22:141:1 | functio ... // OK\\n} | receiverName | app |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:134:22:141:1 | functio ... // OK\\n} | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:1:22:1:34 | 'escape-html' | CalleeFlexibleAccessPath | require |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:1:22:1:34 | 'escape-html' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:1:22:1:34 | 'escape-html' | InputArgumentIndex | 0 |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:1:22:1:34 | 'escape-html' | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:1:22:1:34 | 'escape-html' | calleeImports |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:1:22:1:34 | 'escape-html' | contextFunctionInterfaces | escapeHtml1(str)\nescapeHtml2(string)\ntextContentType() |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:1:22:1:34 | 'escape-html' | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:1:22:1:34 | 'escape-html' | enclosingFunctionBody |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:1:22:1:34 | 'escape-html' | enclosingFunctionName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:1:22:1:34 | 'escape-html' | fileImports | escape-html express |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:1:22:1:34 | 'escape-html' | receiverName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:1:22:1:34 | 'escape-html' | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:2:23:2:31 | 'express' | CalleeFlexibleAccessPath | require |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:2:23:2:31 | 'express' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:2:23:2:31 | 'express' | InputArgumentIndex | 0 |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:2:23:2:31 | 'express' | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:2:23:2:31 | 'express' | calleeImports |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:2:23:2:31 | 'express' | contextFunctionInterfaces | escapeHtml1(str)\nescapeHtml2(string)\ntextContentType() |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:2:23:2:31 | 'express' | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:2:23:2:31 | 'express' | enclosingFunctionBody |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:2:23:2:31 | 'express' | enclosingFunctionName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:2:23:2:31 | 'express' | fileImports | escape-html express |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:2:23:2:31 | 'express' | receiverName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:2:23:2:31 | 'express' | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:6:9:6:19 | '/user/:id' | CalleeFlexibleAccessPath | app.get |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:6:9:6:19 | '/user/:id' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:6:9:6:19 | '/user/:id' | InputArgumentIndex | 0 |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:6:9:6:19 | '/user/:id' | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:6:9:6:19 | '/user/:id' | calleeImports | express |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:6:9:6:19 | '/user/:id' | contextFunctionInterfaces | escapeHtml1(str)\nescapeHtml2(string)\ntextContentType() |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:6:9:6:19 | '/user/:id' | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:6:9:6:19 | '/user/:id' | enclosingFunctionBody |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:6:9:6:19 | '/user/:id' | enclosingFunctionName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:6:9:6:19 | '/user/:id' | fileImports | escape-html express |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:6:9:6:19 | '/user/:id' | receiverName | app |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:6:9:6:19 | '/user/:id' | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:6:22:13:1 | functio ...     ;\\n} | CalleeFlexibleAccessPath | app.get |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:6:22:13:1 | functio ...     ;\\n} | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:6:22:13:1 | functio ...     ;\\n} | InputArgumentIndex | 1 |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:6:22:13:1 | functio ...     ;\\n} | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:6:22:13:1 | functio ...     ;\\n} | calleeImports | express |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:6:22:13:1 | functio ...     ;\\n} | contextFunctionInterfaces | escapeHtml1(str)\nescapeHtml2(string)\ntextContentType() |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:6:22:13:1 | functio ...     ;\\n} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:6:22:13:1 | functio ...     ;\\n} | enclosingFunctionBody |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:6:22:13:1 | functio ...     ;\\n} | enclosingFunctionName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:6:22:13:1 | functio ...     ;\\n} | fileImports | escape-html express |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:6:22:13:1 | functio ...     ;\\n} | receiverName | app |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:6:22:13:1 | functio ...     ;\\n} | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:16:9:16:19 | '/user/:id' | CalleeFlexibleAccessPath | app.get |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:16:9:16:19 | '/user/:id' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:16:9:16:19 | '/user/:id' | InputArgumentIndex | 0 |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:16:9:16:19 | '/user/:id' | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:16:9:16:19 | '/user/:id' | calleeImports | express |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:16:9:16:19 | '/user/:id' | contextFunctionInterfaces | escapeHtml1(str)\nescapeHtml2(string)\ntextContentType() |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:16:9:16:19 | '/user/:id' | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:16:9:16:19 | '/user/:id' | enclosingFunctionBody |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:16:9:16:19 | '/user/:id' | enclosingFunctionName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:16:9:16:19 | '/user/:id' | fileImports | escape-html express |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:16:9:16:19 | '/user/:id' | receiverName | app |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:16:9:16:19 | '/user/:id' | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:16:22:20:1 | functio ... d });\\n} | CalleeFlexibleAccessPath | app.get |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:16:22:20:1 | functio ... d });\\n} | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:16:22:20:1 | functio ... d });\\n} | InputArgumentIndex | 1 |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:16:22:20:1 | functio ... d });\\n} | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:16:22:20:1 | functio ... d });\\n} | calleeImports | express |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:16:22:20:1 | functio ... d });\\n} | contextFunctionInterfaces | escapeHtml1(str)\nescapeHtml2(string)\ntextContentType() |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:16:22:20:1 | functio ... d });\\n} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:16:22:20:1 | functio ... d });\\n} | enclosingFunctionBody |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:16:22:20:1 | functio ... d });\\n} | enclosingFunctionName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:16:22:20:1 | functio ... d });\\n} | fileImports | escape-html express |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:16:22:20:1 | functio ... d });\\n} | receiverName | app |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:16:22:20:1 | functio ... d });\\n} | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:19:16:19:36 | invalid ... emplate | CalleeFlexibleAccessPath | res.render |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:19:16:19:36 | invalid ... emplate | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:19:16:19:36 | invalid ... emplate | InputArgumentIndex | 0 |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:19:16:19:36 | invalid ... emplate | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:19:16:19:36 | invalid ... emplate | calleeImports |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:19:16:19:36 | invalid ... emplate | contextFunctionInterfaces | escapeHtml1(str)\nescapeHtml2(string)\ntextContentType() |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:19:16:19:36 | invalid ... emplate | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:19:16:19:36 | invalid ... emplate | enclosingFunctionBody | req res isValidUserId req params id res render invalidUserIdTemplate id req params id |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:19:16:19:36 | invalid ... emplate | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:19:16:19:36 | invalid ... emplate | fileImports | escape-html express |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:19:16:19:36 | invalid ... emplate | receiverName | res |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:19:16:19:36 | invalid ... emplate | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:19:45:19:57 | req.params.id | CalleeFlexibleAccessPath | res.render |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:19:45:19:57 | req.params.id | InputAccessPathFromCallee | 1.id |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:19:45:19:57 | req.params.id | InputArgumentIndex | 1 |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:19:45:19:57 | req.params.id | assignedToPropName | id |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:19:45:19:57 | req.params.id | calleeImports |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:19:45:19:57 | req.params.id | contextFunctionInterfaces | escapeHtml1(str)\nescapeHtml2(string)\ntextContentType() |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:19:45:19:57 | req.params.id | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:19:45:19:57 | req.params.id | enclosingFunctionBody | req res isValidUserId req params id res render invalidUserIdTemplate id req params id |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:19:45:19:57 | req.params.id | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:19:45:19:57 | req.params.id | fileImports | escape-html express |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:19:45:19:57 | req.params.id | receiverName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:19:45:19:57 | req.params.id | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:22:9:22:19 | '/user/:id' | CalleeFlexibleAccessPath | app.get |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:22:9:22:19 | '/user/:id' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:22:9:22:19 | '/user/:id' | InputArgumentIndex | 0 |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:22:9:22:19 | '/user/:id' | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:22:9:22:19 | '/user/:id' | calleeImports | express |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:22:9:22:19 | '/user/:id' | contextFunctionInterfaces | escapeHtml1(str)\nescapeHtml2(string)\ntextContentType() |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:22:9:22:19 | '/user/:id' | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:22:9:22:19 | '/user/:id' | enclosingFunctionBody |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:22:9:22:19 | '/user/:id' | enclosingFunctionName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:22:9:22:19 | '/user/:id' | fileImports | escape-html express |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:22:9:22:19 | '/user/:id' | receiverName | app |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:22:9:22:19 | '/user/:id' | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:22:22:30:1 | functio ...     ;\\n} | CalleeFlexibleAccessPath | app.get |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:22:22:30:1 | functio ...     ;\\n} | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:22:22:30:1 | functio ...     ;\\n} | InputArgumentIndex | 1 |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:22:22:30:1 | functio ...     ;\\n} | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:22:22:30:1 | functio ...     ;\\n} | calleeImports | express |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:22:22:30:1 | functio ...     ;\\n} | contextFunctionInterfaces | escapeHtml1(str)\nescapeHtml2(string)\ntextContentType() |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:22:22:30:1 | functio ...     ;\\n} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:22:22:30:1 | functio ...     ;\\n} | enclosingFunctionBody |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:22:22:30:1 | functio ...     ;\\n} | enclosingFunctionName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:22:22:30:1 | functio ...     ;\\n} | fileImports | escape-html express |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:22:22:30:1 | functio ...     ;\\n} | receiverName | app |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:22:22:30:1 | functio ...     ;\\n} | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:25:13:25:26 | 'Content-Type' | CalleeFlexibleAccessPath | res.set |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:25:13:25:26 | 'Content-Type' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:25:13:25:26 | 'Content-Type' | InputArgumentIndex | 0 |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:25:13:25:26 | 'Content-Type' | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:25:13:25:26 | 'Content-Type' | calleeImports |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:25:13:25:26 | 'Content-Type' | contextFunctionInterfaces | escapeHtml1(str)\nescapeHtml2(string)\ntextContentType() |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:25:13:25:26 | 'Content-Type' | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:25:13:25:26 | 'Content-Type' | enclosingFunctionBody | req res isValidUserId req params id res set Content-Type text/plain res send Unknown user:  req params id |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:25:13:25:26 | 'Content-Type' | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:25:13:25:26 | 'Content-Type' | fileImports | escape-html express |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:25:13:25:26 | 'Content-Type' | receiverName | res |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:25:13:25:26 | 'Content-Type' | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:25:29:25:40 | 'text/plain' | CalleeFlexibleAccessPath | res.set |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:25:29:25:40 | 'text/plain' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:25:29:25:40 | 'text/plain' | InputArgumentIndex | 1 |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:25:29:25:40 | 'text/plain' | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:25:29:25:40 | 'text/plain' | calleeImports |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:25:29:25:40 | 'text/plain' | contextFunctionInterfaces | escapeHtml1(str)\nescapeHtml2(string)\ntextContentType() |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:25:29:25:40 | 'text/plain' | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:25:29:25:40 | 'text/plain' | enclosingFunctionBody | req res isValidUserId req params id res set Content-Type text/plain res send Unknown user:  req params id |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:25:29:25:40 | 'text/plain' | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:25:29:25:40 | 'text/plain' | fileImports | escape-html express |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:25:29:25:40 | 'text/plain' | receiverName | res |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:25:29:25:40 | 'text/plain' | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:36:9:36:19 | '/user/:id' | CalleeFlexibleAccessPath | app.get |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:36:9:36:19 | '/user/:id' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:36:9:36:19 | '/user/:id' | InputArgumentIndex | 0 |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:36:9:36:19 | '/user/:id' | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:36:9:36:19 | '/user/:id' | calleeImports | express |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:36:9:36:19 | '/user/:id' | contextFunctionInterfaces | escapeHtml1(str)\nescapeHtml2(string)\ntextContentType() |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:36:9:36:19 | '/user/:id' | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:36:9:36:19 | '/user/:id' | enclosingFunctionBody |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:36:9:36:19 | '/user/:id' | enclosingFunctionName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:36:9:36:19 | '/user/:id' | fileImports | escape-html express |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:36:9:36:19 | '/user/:id' | receiverName | app |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:36:9:36:19 | '/user/:id' | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:36:22:44:1 | functio ...     ;\\n} | CalleeFlexibleAccessPath | app.get |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:36:22:44:1 | functio ...     ;\\n} | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:36:22:44:1 | functio ...     ;\\n} | InputArgumentIndex | 1 |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:36:22:44:1 | functio ...     ;\\n} | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:36:22:44:1 | functio ...     ;\\n} | calleeImports | express |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:36:22:44:1 | functio ...     ;\\n} | contextFunctionInterfaces | escapeHtml1(str)\nescapeHtml2(string)\ntextContentType() |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:36:22:44:1 | functio ...     ;\\n} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:36:22:44:1 | functio ...     ;\\n} | enclosingFunctionBody |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:36:22:44:1 | functio ...     ;\\n} | enclosingFunctionName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:36:22:44:1 | functio ...     ;\\n} | fileImports | escape-html express |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:36:22:44:1 | functio ...     ;\\n} | receiverName | app |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:36:22:44:1 | functio ...     ;\\n} | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:39:13:39:26 | 'Content-Type' | CalleeFlexibleAccessPath | res.set |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:39:13:39:26 | 'Content-Type' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:39:13:39:26 | 'Content-Type' | InputArgumentIndex | 0 |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:39:13:39:26 | 'Content-Type' | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:39:13:39:26 | 'Content-Type' | calleeImports |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:39:13:39:26 | 'Content-Type' | contextFunctionInterfaces | escapeHtml1(str)\nescapeHtml2(string)\ntextContentType() |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:39:13:39:26 | 'Content-Type' | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:39:13:39:26 | 'Content-Type' | enclosingFunctionBody | req res isValidUserId req params id res set Content-Type textContentType res send Unknown user:  req params id |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:39:13:39:26 | 'Content-Type' | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:39:13:39:26 | 'Content-Type' | fileImports | escape-html express |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:39:13:39:26 | 'Content-Type' | receiverName | res |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:39:13:39:26 | 'Content-Type' | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:39:29:39:45 | textContentType() | CalleeFlexibleAccessPath | res.set |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:39:29:39:45 | textContentType() | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:39:29:39:45 | textContentType() | InputArgumentIndex | 1 |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:39:29:39:45 | textContentType() | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:39:29:39:45 | textContentType() | calleeImports |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:39:29:39:45 | textContentType() | contextFunctionInterfaces | escapeHtml1(str)\nescapeHtml2(string)\ntextContentType() |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:39:29:39:45 | textContentType() | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:39:29:39:45 | textContentType() | enclosingFunctionBody | req res isValidUserId req params id res set Content-Type textContentType res send Unknown user:  req params id |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:39:29:39:45 | textContentType() | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:39:29:39:45 | textContentType() | fileImports | escape-html express |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:39:29:39:45 | textContentType() | receiverName | res |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:39:29:39:45 | textContentType() | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:46:9:46:15 | '/echo' | CalleeFlexibleAccessPath | app.get |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:46:9:46:15 | '/echo' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:46:9:46:15 | '/echo' | InputArgumentIndex | 0 |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:46:9:46:15 | '/echo' | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:46:9:46:15 | '/echo' | calleeImports | express |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:46:9:46:15 | '/echo' | contextFunctionInterfaces | escapeHtml1(str)\nescapeHtml2(string)\ntextContentType() |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:46:9:46:15 | '/echo' | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:46:9:46:15 | '/echo' | enclosingFunctionBody |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:46:9:46:15 | '/echo' | enclosingFunctionName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:46:9:46:15 | '/echo' | fileImports | escape-html express |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:46:9:46:15 | '/echo' | receiverName | app |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:46:9:46:15 | '/echo' | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:46:18:51:1 | functio ... msg);\\n} | CalleeFlexibleAccessPath | app.get |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:46:18:51:1 | functio ... msg);\\n} | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:46:18:51:1 | functio ... msg);\\n} | InputArgumentIndex | 1 |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:46:18:51:1 | functio ... msg);\\n} | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:46:18:51:1 | functio ... msg);\\n} | calleeImports | express |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:46:18:51:1 | functio ... msg);\\n} | contextFunctionInterfaces | escapeHtml1(str)\nescapeHtml2(string)\ntextContentType() |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:46:18:51:1 | functio ... msg);\\n} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:46:18:51:1 | functio ... msg);\\n} | enclosingFunctionBody |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:46:18:51:1 | functio ... msg);\\n} | enclosingFunctionName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:46:18:51:1 | functio ... msg);\\n} | fileImports | escape-html express |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:46:18:51:1 | functio ... msg);\\n} | receiverName | app |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:46:18:51:1 | functio ... msg);\\n} | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:48:16:48:29 | 'Content-Type' | CalleeFlexibleAccessPath | res.setHeader |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:48:16:48:29 | 'Content-Type' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:48:16:48:29 | 'Content-Type' | InputArgumentIndex | 0 |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:48:16:48:29 | 'Content-Type' | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:48:16:48:29 | 'Content-Type' | calleeImports |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:48:16:48:29 | 'Content-Type' | contextFunctionInterfaces | escapeHtml1(str)\nescapeHtml2(string)\ntextContentType() |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:48:16:48:29 | 'Content-Type' | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:48:16:48:29 | 'Content-Type' | enclosingFunctionBody | req res msg req params msg res setHeader Content-Type application/json res setHeader Content-Length msg length res end msg |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:48:16:48:29 | 'Content-Type' | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:48:16:48:29 | 'Content-Type' | fileImports | escape-html express |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:48:16:48:29 | 'Content-Type' | receiverName | res |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:48:16:48:29 | 'Content-Type' | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:48:32:48:49 | 'application/json' | CalleeFlexibleAccessPath | res.setHeader |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:48:32:48:49 | 'application/json' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:48:32:48:49 | 'application/json' | InputArgumentIndex | 1 |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:48:32:48:49 | 'application/json' | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:48:32:48:49 | 'application/json' | calleeImports |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:48:32:48:49 | 'application/json' | contextFunctionInterfaces | escapeHtml1(str)\nescapeHtml2(string)\ntextContentType() |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:48:32:48:49 | 'application/json' | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:48:32:48:49 | 'application/json' | enclosingFunctionBody | req res msg req params msg res setHeader Content-Type application/json res setHeader Content-Length msg length res end msg |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:48:32:48:49 | 'application/json' | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:48:32:48:49 | 'application/json' | fileImports | escape-html express |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:48:32:48:49 | 'application/json' | receiverName | res |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:48:32:48:49 | 'application/json' | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:49:16:49:31 | 'Content-Length' | CalleeFlexibleAccessPath | res.setHeader |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:49:16:49:31 | 'Content-Length' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:49:16:49:31 | 'Content-Length' | InputArgumentIndex | 0 |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:49:16:49:31 | 'Content-Length' | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:49:16:49:31 | 'Content-Length' | calleeImports |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:49:16:49:31 | 'Content-Length' | contextFunctionInterfaces | escapeHtml1(str)\nescapeHtml2(string)\ntextContentType() |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:49:16:49:31 | 'Content-Length' | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:49:16:49:31 | 'Content-Length' | enclosingFunctionBody | req res msg req params msg res setHeader Content-Type application/json res setHeader Content-Length msg length res end msg |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:49:16:49:31 | 'Content-Length' | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:49:16:49:31 | 'Content-Length' | fileImports | escape-html express |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:49:16:49:31 | 'Content-Length' | receiverName | res |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:49:16:49:31 | 'Content-Length' | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:49:34:49:43 | msg.length | CalleeFlexibleAccessPath | res.setHeader |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:49:34:49:43 | msg.length | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:49:34:49:43 | msg.length | InputArgumentIndex | 1 |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:49:34:49:43 | msg.length | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:49:34:49:43 | msg.length | calleeImports |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:49:34:49:43 | msg.length | contextFunctionInterfaces | escapeHtml1(str)\nescapeHtml2(string)\ntextContentType() |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:49:34:49:43 | msg.length | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:49:34:49:43 | msg.length | enclosingFunctionBody | req res msg req params msg res setHeader Content-Type application/json res setHeader Content-Length msg length res end msg |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:49:34:49:43 | msg.length | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:49:34:49:43 | msg.length | fileImports | escape-html express |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:49:34:49:43 | msg.length | receiverName | res |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:49:34:49:43 | msg.length | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:53:9:53:19 | '/user/:id' | CalleeFlexibleAccessPath | app.get |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:53:9:53:19 | '/user/:id' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:53:9:53:19 | '/user/:id' | InputArgumentIndex | 0 |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:53:9:53:19 | '/user/:id' | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:53:9:53:19 | '/user/:id' | calleeImports | express |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:53:9:53:19 | '/user/:id' | contextFunctionInterfaces | escapeHtml1(str)\nescapeHtml2(string)\ntextContentType() |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:53:9:53:19 | '/user/:id' | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:53:9:53:19 | '/user/:id' | enclosingFunctionBody |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:53:9:53:19 | '/user/:id' | enclosingFunctionName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:53:9:53:19 | '/user/:id' | fileImports | escape-html express |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:53:9:53:19 | '/user/:id' | receiverName | app |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:53:9:53:19 | '/user/:id' | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:53:22:58:1 | functio ... K\\n  }\\n} | CalleeFlexibleAccessPath | app.get |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:53:22:58:1 | functio ... K\\n  }\\n} | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:53:22:58:1 | functio ... K\\n  }\\n} | InputArgumentIndex | 1 |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:53:22:58:1 | functio ... K\\n  }\\n} | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:53:22:58:1 | functio ... K\\n  }\\n} | calleeImports | express |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:53:22:58:1 | functio ... K\\n  }\\n} | contextFunctionInterfaces | escapeHtml1(str)\nescapeHtml2(string)\ntextContentType() |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:53:22:58:1 | functio ... K\\n  }\\n} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:53:22:58:1 | functio ... K\\n  }\\n} | enclosingFunctionBody |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:53:22:58:1 | functio ... K\\n  }\\n} | enclosingFunctionName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:53:22:58:1 | functio ... K\\n  }\\n} | fileImports | escape-html express |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:53:22:58:1 | functio ... K\\n  }\\n} | receiverName | app |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:53:22:58:1 | functio ... K\\n  }\\n} | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:55:23:55:25 | url | CalleeFlexibleAccessPath | ?.exec |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:55:23:55:25 | url | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:55:23:55:25 | url | InputArgumentIndex | 0 |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:55:23:55:25 | url | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:55:23:55:25 | url | calleeImports |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:55:23:55:25 | url | contextFunctionInterfaces | escapeHtml1(str)\nescapeHtml2(string)\ntextContentType() |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:55:23:55:25 | url | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:55:23:55:25 | url | enclosingFunctionBody | req res url req params id /["'&<>]/ exec url res send url |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:55:23:55:25 | url | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:55:23:55:25 | url | fileImports | escape-html express |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:55:23:55:25 | url | receiverName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:55:23:55:25 | url | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:61:23:61:25 | str | CalleeFlexibleAccessPath | ?.exec |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:61:23:61:25 | str | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:61:23:61:25 | str | InputArgumentIndex | 0 |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:61:23:61:25 | str | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:61:23:61:25 | str | calleeImports |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:61:23:61:25 | str | contextFunctionInterfaces | escapeHtml1(str)\nescapeHtml2(string)\ntextContentType() |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:61:23:61:25 | str | contextSurroundingFunctionParameters | (str) |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:61:23:61:25 | str | enclosingFunctionBody | str /["'&<>]/ exec str str |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:61:23:61:25 | str | enclosingFunctionName | escapeHtml1 |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:61:23:61:25 | str | fileImports | escape-html express |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:61:23:61:25 | str | receiverName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:61:23:61:25 | str | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:66:9:66:19 | '/user/:id' | CalleeFlexibleAccessPath | app.get |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:66:9:66:19 | '/user/:id' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:66:9:66:19 | '/user/:id' | InputArgumentIndex | 0 |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:66:9:66:19 | '/user/:id' | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:66:9:66:19 | '/user/:id' | calleeImports | express |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:66:9:66:19 | '/user/:id' | contextFunctionInterfaces | escapeHtml1(str)\nescapeHtml2(string)\ntextContentType() |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:66:9:66:19 | '/user/:id' | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:66:9:66:19 | '/user/:id' | enclosingFunctionBody |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:66:9:66:19 | '/user/:id' | enclosingFunctionName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:66:9:66:19 | '/user/:id' | fileImports | escape-html express |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:66:9:66:19 | '/user/:id' | receiverName | app |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:66:9:66:19 | '/user/:id' | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:66:22:70:1 | functio ... // OK\\n} | CalleeFlexibleAccessPath | app.get |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:66:22:70:1 | functio ... // OK\\n} | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:66:22:70:1 | functio ... // OK\\n} | InputArgumentIndex | 1 |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:66:22:70:1 | functio ... // OK\\n} | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:66:22:70:1 | functio ... // OK\\n} | calleeImports | express |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:66:22:70:1 | functio ... // OK\\n} | contextFunctionInterfaces | escapeHtml1(str)\nescapeHtml2(string)\ntextContentType() |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:66:22:70:1 | functio ... // OK\\n} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:66:22:70:1 | functio ... // OK\\n} | enclosingFunctionBody |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:66:22:70:1 | functio ... // OK\\n} | enclosingFunctionName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:66:22:70:1 | functio ... // OK\\n} | fileImports | escape-html express |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:66:22:70:1 | functio ... // OK\\n} | receiverName | app |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:66:22:70:1 | functio ... // OK\\n} | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:82:9:82:19 | '/user/:id' | CalleeFlexibleAccessPath | app.get |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:82:9:82:19 | '/user/:id' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:82:9:82:19 | '/user/:id' | InputArgumentIndex | 0 |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:82:9:82:19 | '/user/:id' | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:82:9:82:19 | '/user/:id' | calleeImports | express |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:82:9:82:19 | '/user/:id' | contextFunctionInterfaces | escapeHtml1(str)\nescapeHtml2(string)\ntextContentType() |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:82:9:82:19 | '/user/:id' | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:82:9:82:19 | '/user/:id' | enclosingFunctionBody |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:82:9:82:19 | '/user/:id' | enclosingFunctionName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:82:9:82:19 | '/user/:id' | fileImports | escape-html express |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:82:9:82:19 | '/user/:id' | receiverName | app |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:82:9:82:19 | '/user/:id' | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:82:22:86:1 | functio ... // OK\\n} | CalleeFlexibleAccessPath | app.get |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:82:22:86:1 | functio ... // OK\\n} | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:82:22:86:1 | functio ... // OK\\n} | InputArgumentIndex | 1 |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:82:22:86:1 | functio ... // OK\\n} | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:82:22:86:1 | functio ... // OK\\n} | calleeImports | express |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:82:22:86:1 | functio ... // OK\\n} | contextFunctionInterfaces | escapeHtml1(str)\nescapeHtml2(string)\ntextContentType() |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:82:22:86:1 | functio ... // OK\\n} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:82:22:86:1 | functio ... // OK\\n} | enclosingFunctionBody |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:82:22:86:1 | functio ... // OK\\n} | enclosingFunctionName |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:82:22:86:1 | functio ... // OK\\n} | fileImports | escape-html express |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:82:22:86:1 | functio ... // OK\\n} | receiverName | app |
-| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:82:22:86:1 | functio ... // OK\\n} | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/cookies.js:1:23:1:31 | 'express' | CalleeFlexibleAccessPath | require |
-| autogenerated/Xss/ReflectedXss/cookies.js:1:23:1:31 | 'express' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/cookies.js:1:23:1:31 | 'express' | InputArgumentIndex | 0 |
-| autogenerated/Xss/ReflectedXss/cookies.js:1:23:1:31 | 'express' | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/cookies.js:1:23:1:31 | 'express' | calleeImports |  |
-| autogenerated/Xss/ReflectedXss/cookies.js:1:23:1:31 | 'express' | contextFunctionInterfaces |  |
-| autogenerated/Xss/ReflectedXss/cookies.js:1:23:1:31 | 'express' | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/ReflectedXss/cookies.js:1:23:1:31 | 'express' | enclosingFunctionBody |  |
-| autogenerated/Xss/ReflectedXss/cookies.js:1:23:1:31 | 'express' | enclosingFunctionName |  |
-| autogenerated/Xss/ReflectedXss/cookies.js:1:23:1:31 | 'express' | fileImports | cookie-parser express |
-| autogenerated/Xss/ReflectedXss/cookies.js:1:23:1:31 | 'express' | receiverName |  |
-| autogenerated/Xss/ReflectedXss/cookies.js:1:23:1:31 | 'express' | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/cookies.js:2:28:2:42 | 'cookie-parser' | CalleeFlexibleAccessPath | require |
-| autogenerated/Xss/ReflectedXss/cookies.js:2:28:2:42 | 'cookie-parser' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/cookies.js:2:28:2:42 | 'cookie-parser' | InputArgumentIndex | 0 |
-| autogenerated/Xss/ReflectedXss/cookies.js:2:28:2:42 | 'cookie-parser' | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/cookies.js:2:28:2:42 | 'cookie-parser' | calleeImports |  |
-| autogenerated/Xss/ReflectedXss/cookies.js:2:28:2:42 | 'cookie-parser' | contextFunctionInterfaces |  |
-| autogenerated/Xss/ReflectedXss/cookies.js:2:28:2:42 | 'cookie-parser' | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/ReflectedXss/cookies.js:2:28:2:42 | 'cookie-parser' | enclosingFunctionBody |  |
-| autogenerated/Xss/ReflectedXss/cookies.js:2:28:2:42 | 'cookie-parser' | enclosingFunctionName |  |
-| autogenerated/Xss/ReflectedXss/cookies.js:2:28:2:42 | 'cookie-parser' | fileImports | cookie-parser express |
-| autogenerated/Xss/ReflectedXss/cookies.js:2:28:2:42 | 'cookie-parser' | receiverName |  |
-| autogenerated/Xss/ReflectedXss/cookies.js:2:28:2:42 | 'cookie-parser' | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/cookies.js:5:9:5:22 | cookieParser() | CalleeFlexibleAccessPath | app.use |
-| autogenerated/Xss/ReflectedXss/cookies.js:5:9:5:22 | cookieParser() | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/cookies.js:5:9:5:22 | cookieParser() | InputArgumentIndex | 0 |
-| autogenerated/Xss/ReflectedXss/cookies.js:5:9:5:22 | cookieParser() | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/cookies.js:5:9:5:22 | cookieParser() | calleeImports | express |
-| autogenerated/Xss/ReflectedXss/cookies.js:5:9:5:22 | cookieParser() | contextFunctionInterfaces |  |
-| autogenerated/Xss/ReflectedXss/cookies.js:5:9:5:22 | cookieParser() | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/ReflectedXss/cookies.js:5:9:5:22 | cookieParser() | enclosingFunctionBody |  |
-| autogenerated/Xss/ReflectedXss/cookies.js:5:9:5:22 | cookieParser() | enclosingFunctionName |  |
-| autogenerated/Xss/ReflectedXss/cookies.js:5:9:5:22 | cookieParser() | fileImports | cookie-parser express |
-| autogenerated/Xss/ReflectedXss/cookies.js:5:9:5:22 | cookieParser() | receiverName | app |
-| autogenerated/Xss/ReflectedXss/cookies.js:5:9:5:22 | cookieParser() | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/cookies.js:7:9:7:23 | '/cookie/:name' | CalleeFlexibleAccessPath | app.get |
-| autogenerated/Xss/ReflectedXss/cookies.js:7:9:7:23 | '/cookie/:name' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/cookies.js:7:9:7:23 | '/cookie/:name' | InputArgumentIndex | 0 |
-| autogenerated/Xss/ReflectedXss/cookies.js:7:9:7:23 | '/cookie/:name' | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/cookies.js:7:9:7:23 | '/cookie/:name' | calleeImports | express |
-| autogenerated/Xss/ReflectedXss/cookies.js:7:9:7:23 | '/cookie/:name' | contextFunctionInterfaces |  |
-| autogenerated/Xss/ReflectedXss/cookies.js:7:9:7:23 | '/cookie/:name' | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/ReflectedXss/cookies.js:7:9:7:23 | '/cookie/:name' | enclosingFunctionBody |  |
-| autogenerated/Xss/ReflectedXss/cookies.js:7:9:7:23 | '/cookie/:name' | enclosingFunctionName |  |
-| autogenerated/Xss/ReflectedXss/cookies.js:7:9:7:23 | '/cookie/:name' | fileImports | cookie-parser express |
-| autogenerated/Xss/ReflectedXss/cookies.js:7:9:7:23 | '/cookie/:name' | receiverName | app |
-| autogenerated/Xss/ReflectedXss/cookies.js:7:9:7:23 | '/cookie/:name' | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/cookies.js:7:26:10:1 | functio ... me]);\\n} | CalleeFlexibleAccessPath | app.get |
-| autogenerated/Xss/ReflectedXss/cookies.js:7:26:10:1 | functio ... me]);\\n} | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/cookies.js:7:26:10:1 | functio ... me]);\\n} | InputArgumentIndex | 1 |
-| autogenerated/Xss/ReflectedXss/cookies.js:7:26:10:1 | functio ... me]);\\n} | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/cookies.js:7:26:10:1 | functio ... me]);\\n} | calleeImports | express |
-| autogenerated/Xss/ReflectedXss/cookies.js:7:26:10:1 | functio ... me]);\\n} | contextFunctionInterfaces |  |
-| autogenerated/Xss/ReflectedXss/cookies.js:7:26:10:1 | functio ... me]);\\n} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/Xss/ReflectedXss/cookies.js:7:26:10:1 | functio ... me]);\\n} | enclosingFunctionBody |  |
-| autogenerated/Xss/ReflectedXss/cookies.js:7:26:10:1 | functio ... me]);\\n} | enclosingFunctionName |  |
-| autogenerated/Xss/ReflectedXss/cookies.js:7:26:10:1 | functio ... me]);\\n} | fileImports | cookie-parser express |
-| autogenerated/Xss/ReflectedXss/cookies.js:7:26:10:1 | functio ... me]);\\n} | receiverName | app |
-| autogenerated/Xss/ReflectedXss/cookies.js:7:26:10:1 | functio ... me]);\\n} | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/etherpad.js:1:23:1:31 | 'express' | CalleeFlexibleAccessPath | require |
-| autogenerated/Xss/ReflectedXss/etherpad.js:1:23:1:31 | 'express' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/etherpad.js:1:23:1:31 | 'express' | InputArgumentIndex | 0 |
-| autogenerated/Xss/ReflectedXss/etherpad.js:1:23:1:31 | 'express' | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/etherpad.js:1:23:1:31 | 'express' | calleeImports |  |
-| autogenerated/Xss/ReflectedXss/etherpad.js:1:23:1:31 | 'express' | contextFunctionInterfaces |  |
-| autogenerated/Xss/ReflectedXss/etherpad.js:1:23:1:31 | 'express' | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/ReflectedXss/etherpad.js:1:23:1:31 | 'express' | enclosingFunctionBody |  |
-| autogenerated/Xss/ReflectedXss/etherpad.js:1:23:1:31 | 'express' | enclosingFunctionName |  |
-| autogenerated/Xss/ReflectedXss/etherpad.js:1:23:1:31 | 'express' | fileImports | express is-var-name |
-| autogenerated/Xss/ReflectedXss/etherpad.js:1:23:1:31 | 'express' | receiverName |  |
-| autogenerated/Xss/ReflectedXss/etherpad.js:1:23:1:31 | 'express' | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/etherpad.js:2:25:2:37 | 'is-var-name' | CalleeFlexibleAccessPath | require |
-| autogenerated/Xss/ReflectedXss/etherpad.js:2:25:2:37 | 'is-var-name' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/etherpad.js:2:25:2:37 | 'is-var-name' | InputArgumentIndex | 0 |
-| autogenerated/Xss/ReflectedXss/etherpad.js:2:25:2:37 | 'is-var-name' | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/etherpad.js:2:25:2:37 | 'is-var-name' | calleeImports |  |
-| autogenerated/Xss/ReflectedXss/etherpad.js:2:25:2:37 | 'is-var-name' | contextFunctionInterfaces |  |
-| autogenerated/Xss/ReflectedXss/etherpad.js:2:25:2:37 | 'is-var-name' | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/ReflectedXss/etherpad.js:2:25:2:37 | 'is-var-name' | enclosingFunctionBody |  |
-| autogenerated/Xss/ReflectedXss/etherpad.js:2:25:2:37 | 'is-var-name' | enclosingFunctionName |  |
-| autogenerated/Xss/ReflectedXss/etherpad.js:2:25:2:37 | 'is-var-name' | fileImports | express is-var-name |
-| autogenerated/Xss/ReflectedXss/etherpad.js:2:25:2:37 | 'is-var-name' | receiverName |  |
-| autogenerated/Xss/ReflectedXss/etherpad.js:2:25:2:37 | 'is-var-name' | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/etherpad.js:5:9:5:20 | "/some/path" | CalleeFlexibleAccessPath | app.get |
-| autogenerated/Xss/ReflectedXss/etherpad.js:5:9:5:20 | "/some/path" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/etherpad.js:5:9:5:20 | "/some/path" | InputArgumentIndex | 0 |
-| autogenerated/Xss/ReflectedXss/etherpad.js:5:9:5:20 | "/some/path" | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/etherpad.js:5:9:5:20 | "/some/path" | calleeImports | express |
-| autogenerated/Xss/ReflectedXss/etherpad.js:5:9:5:20 | "/some/path" | contextFunctionInterfaces |  |
-| autogenerated/Xss/ReflectedXss/etherpad.js:5:9:5:20 | "/some/path" | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/ReflectedXss/etherpad.js:5:9:5:20 | "/some/path" | enclosingFunctionBody |  |
-| autogenerated/Xss/ReflectedXss/etherpad.js:5:9:5:20 | "/some/path" | enclosingFunctionName |  |
-| autogenerated/Xss/ReflectedXss/etherpad.js:5:9:5:20 | "/some/path" | fileImports | express is-var-name |
-| autogenerated/Xss/ReflectedXss/etherpad.js:5:9:5:20 | "/some/path" | receiverName | app |
-| autogenerated/Xss/ReflectedXss/etherpad.js:5:9:5:20 | "/some/path" | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/etherpad.js:5:23:12:1 | (req, r ... nse);\\n} | CalleeFlexibleAccessPath | app.get |
-| autogenerated/Xss/ReflectedXss/etherpad.js:5:23:12:1 | (req, r ... nse);\\n} | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/etherpad.js:5:23:12:1 | (req, r ... nse);\\n} | InputArgumentIndex | 1 |
-| autogenerated/Xss/ReflectedXss/etherpad.js:5:23:12:1 | (req, r ... nse);\\n} | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/etherpad.js:5:23:12:1 | (req, r ... nse);\\n} | calleeImports | express |
-| autogenerated/Xss/ReflectedXss/etherpad.js:5:23:12:1 | (req, r ... nse);\\n} | contextFunctionInterfaces |  |
-| autogenerated/Xss/ReflectedXss/etherpad.js:5:23:12:1 | (req, r ... nse);\\n} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/Xss/ReflectedXss/etherpad.js:5:23:12:1 | (req, r ... nse);\\n} | enclosingFunctionBody |  |
-| autogenerated/Xss/ReflectedXss/etherpad.js:5:23:12:1 | (req, r ... nse);\\n} | enclosingFunctionName |  |
-| autogenerated/Xss/ReflectedXss/etherpad.js:5:23:12:1 | (req, r ... nse);\\n} | fileImports | express is-var-name |
-| autogenerated/Xss/ReflectedXss/etherpad.js:5:23:12:1 | (req, r ... nse);\\n} | receiverName | app |
-| autogenerated/Xss/ReflectedXss/etherpad.js:5:23:12:1 | (req, r ... nse);\\n} | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/formatting.js:1:23:1:31 | 'express' | CalleeFlexibleAccessPath | require |
-| autogenerated/Xss/ReflectedXss/formatting.js:1:23:1:31 | 'express' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/formatting.js:1:23:1:31 | 'express' | InputArgumentIndex | 0 |
-| autogenerated/Xss/ReflectedXss/formatting.js:1:23:1:31 | 'express' | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/formatting.js:1:23:1:31 | 'express' | calleeImports |  |
-| autogenerated/Xss/ReflectedXss/formatting.js:1:23:1:31 | 'express' | contextFunctionInterfaces |  |
-| autogenerated/Xss/ReflectedXss/formatting.js:1:23:1:31 | 'express' | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/ReflectedXss/formatting.js:1:23:1:31 | 'express' | enclosingFunctionBody |  |
-| autogenerated/Xss/ReflectedXss/formatting.js:1:23:1:31 | 'express' | enclosingFunctionName |  |
-| autogenerated/Xss/ReflectedXss/formatting.js:1:23:1:31 | 'express' | fileImports | express printf |
-| autogenerated/Xss/ReflectedXss/formatting.js:1:23:1:31 | 'express' | receiverName |  |
-| autogenerated/Xss/ReflectedXss/formatting.js:1:23:1:31 | 'express' | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/formatting.js:3:15:3:22 | '/user/' | CalleeFlexibleAccessPath | express().get |
-| autogenerated/Xss/ReflectedXss/formatting.js:3:15:3:22 | '/user/' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/formatting.js:3:15:3:22 | '/user/' | InputArgumentIndex | 0 |
-| autogenerated/Xss/ReflectedXss/formatting.js:3:15:3:22 | '/user/' | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/formatting.js:3:15:3:22 | '/user/' | calleeImports | express |
-| autogenerated/Xss/ReflectedXss/formatting.js:3:15:3:22 | '/user/' | contextFunctionInterfaces |  |
-| autogenerated/Xss/ReflectedXss/formatting.js:3:15:3:22 | '/user/' | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/ReflectedXss/formatting.js:3:15:3:22 | '/user/' | enclosingFunctionBody |  |
-| autogenerated/Xss/ReflectedXss/formatting.js:3:15:3:22 | '/user/' | enclosingFunctionName |  |
-| autogenerated/Xss/ReflectedXss/formatting.js:3:15:3:22 | '/user/' | fileImports | express printf |
-| autogenerated/Xss/ReflectedXss/formatting.js:3:15:3:22 | '/user/' | receiverName |  |
-| autogenerated/Xss/ReflectedXss/formatting.js:3:15:3:22 | '/user/' | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/formatting.js:3:25:8:1 | functio ... OT OK\\n} | CalleeFlexibleAccessPath | express().get |
-| autogenerated/Xss/ReflectedXss/formatting.js:3:25:8:1 | functio ... OT OK\\n} | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/formatting.js:3:25:8:1 | functio ... OT OK\\n} | InputArgumentIndex | 1 |
-| autogenerated/Xss/ReflectedXss/formatting.js:3:25:8:1 | functio ... OT OK\\n} | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/formatting.js:3:25:8:1 | functio ... OT OK\\n} | calleeImports | express |
-| autogenerated/Xss/ReflectedXss/formatting.js:3:25:8:1 | functio ... OT OK\\n} | contextFunctionInterfaces |  |
-| autogenerated/Xss/ReflectedXss/formatting.js:3:25:8:1 | functio ... OT OK\\n} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/Xss/ReflectedXss/formatting.js:3:25:8:1 | functio ... OT OK\\n} | enclosingFunctionBody |  |
-| autogenerated/Xss/ReflectedXss/formatting.js:3:25:8:1 | functio ... OT OK\\n} | enclosingFunctionName |  |
-| autogenerated/Xss/ReflectedXss/formatting.js:3:25:8:1 | functio ... OT OK\\n} | fileImports | express printf |
-| autogenerated/Xss/ReflectedXss/formatting.js:3:25:8:1 | functio ... OT OK\\n} | receiverName |  |
-| autogenerated/Xss/ReflectedXss/formatting.js:3:25:8:1 | functio ... OT OK\\n} | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/formatting.js:5:26:5:40 | "<div>%s</div>" | CalleeFlexibleAccessPath | console.log |
-| autogenerated/Xss/ReflectedXss/formatting.js:5:26:5:40 | "<div>%s</div>" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/formatting.js:5:26:5:40 | "<div>%s</div>" | InputArgumentIndex | 0 |
-| autogenerated/Xss/ReflectedXss/formatting.js:5:26:5:40 | "<div>%s</div>" | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/formatting.js:5:26:5:40 | "<div>%s</div>" | calleeImports |  |
-| autogenerated/Xss/ReflectedXss/formatting.js:5:26:5:40 | "<div>%s</div>" | contextFunctionInterfaces |  |
-| autogenerated/Xss/ReflectedXss/formatting.js:5:26:5:40 | "<div>%s</div>" | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/Xss/ReflectedXss/formatting.js:5:26:5:40 | "<div>%s</div>" | enclosingFunctionBody | req res evil req query evil res send console log <div>%s</div> evil res send util format <div>%s</div> evil res send require printf <div>%s</div> evil |
-| autogenerated/Xss/ReflectedXss/formatting.js:5:26:5:40 | "<div>%s</div>" | enclosingFunctionName | get#functionalargument |
-| autogenerated/Xss/ReflectedXss/formatting.js:5:26:5:40 | "<div>%s</div>" | fileImports | express printf |
-| autogenerated/Xss/ReflectedXss/formatting.js:5:26:5:40 | "<div>%s</div>" | receiverName | console |
-| autogenerated/Xss/ReflectedXss/formatting.js:5:26:5:40 | "<div>%s</div>" | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/formatting.js:5:43:5:46 | evil | CalleeFlexibleAccessPath | console.log |
-| autogenerated/Xss/ReflectedXss/formatting.js:5:43:5:46 | evil | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/formatting.js:5:43:5:46 | evil | InputArgumentIndex | 1 |
-| autogenerated/Xss/ReflectedXss/formatting.js:5:43:5:46 | evil | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/formatting.js:5:43:5:46 | evil | calleeImports |  |
-| autogenerated/Xss/ReflectedXss/formatting.js:5:43:5:46 | evil | contextFunctionInterfaces |  |
-| autogenerated/Xss/ReflectedXss/formatting.js:5:43:5:46 | evil | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/Xss/ReflectedXss/formatting.js:5:43:5:46 | evil | enclosingFunctionBody | req res evil req query evil res send console log <div>%s</div> evil res send util format <div>%s</div> evil res send require printf <div>%s</div> evil |
-| autogenerated/Xss/ReflectedXss/formatting.js:5:43:5:46 | evil | enclosingFunctionName | get#functionalargument |
-| autogenerated/Xss/ReflectedXss/formatting.js:5:43:5:46 | evil | fileImports | express printf |
-| autogenerated/Xss/ReflectedXss/formatting.js:5:43:5:46 | evil | receiverName | console |
-| autogenerated/Xss/ReflectedXss/formatting.js:5:43:5:46 | evil | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/formatting.js:7:22:7:29 | "printf" | CalleeFlexibleAccessPath | require |
-| autogenerated/Xss/ReflectedXss/formatting.js:7:22:7:29 | "printf" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/formatting.js:7:22:7:29 | "printf" | InputArgumentIndex | 0 |
-| autogenerated/Xss/ReflectedXss/formatting.js:7:22:7:29 | "printf" | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/formatting.js:7:22:7:29 | "printf" | calleeImports |  |
-| autogenerated/Xss/ReflectedXss/formatting.js:7:22:7:29 | "printf" | contextFunctionInterfaces |  |
-| autogenerated/Xss/ReflectedXss/formatting.js:7:22:7:29 | "printf" | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/Xss/ReflectedXss/formatting.js:7:22:7:29 | "printf" | enclosingFunctionBody | req res evil req query evil res send console log <div>%s</div> evil res send util format <div>%s</div> evil res send require printf <div>%s</div> evil |
-| autogenerated/Xss/ReflectedXss/formatting.js:7:22:7:29 | "printf" | enclosingFunctionName | get#functionalargument |
-| autogenerated/Xss/ReflectedXss/formatting.js:7:22:7:29 | "printf" | fileImports | express printf |
-| autogenerated/Xss/ReflectedXss/formatting.js:7:22:7:29 | "printf" | receiverName |  |
-| autogenerated/Xss/ReflectedXss/formatting.js:7:22:7:29 | "printf" | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/pages/api/myapi.js:2:14:2:20 | req.url | CalleeFlexibleAccessPath | res.send |
-| autogenerated/Xss/ReflectedXss/pages/api/myapi.js:2:14:2:20 | req.url | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/pages/api/myapi.js:2:14:2:20 | req.url | InputArgumentIndex | 0 |
-| autogenerated/Xss/ReflectedXss/pages/api/myapi.js:2:14:2:20 | req.url | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/pages/api/myapi.js:2:14:2:20 | req.url | calleeImports |  |
-| autogenerated/Xss/ReflectedXss/pages/api/myapi.js:2:14:2:20 | req.url | contextFunctionInterfaces | handler(req, res) |
-| autogenerated/Xss/ReflectedXss/pages/api/myapi.js:2:14:2:20 | req.url | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/Xss/ReflectedXss/pages/api/myapi.js:2:14:2:20 | req.url | enclosingFunctionBody | req res res send req url |
-| autogenerated/Xss/ReflectedXss/pages/api/myapi.js:2:14:2:20 | req.url | enclosingFunctionName | handler |
-| autogenerated/Xss/ReflectedXss/pages/api/myapi.js:2:14:2:20 | req.url | fileImports |  |
-| autogenerated/Xss/ReflectedXss/pages/api/myapi.js:2:14:2:20 | req.url | receiverName | res |
-| autogenerated/Xss/ReflectedXss/pages/api/myapi.js:2:14:2:20 | req.url | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/partial.js:1:23:1:31 | 'express' | CalleeFlexibleAccessPath | require |
-| autogenerated/Xss/ReflectedXss/partial.js:1:23:1:31 | 'express' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/partial.js:1:23:1:31 | 'express' | InputArgumentIndex | 0 |
-| autogenerated/Xss/ReflectedXss/partial.js:1:23:1:31 | 'express' | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/partial.js:1:23:1:31 | 'express' | calleeImports |  |
-| autogenerated/Xss/ReflectedXss/partial.js:1:23:1:31 | 'express' | contextFunctionInterfaces | getFirst(x, y)\nsendResponse(x, y)\nsendResponse(x, y)\nsendResponse(x, y)\nsendResponse(x, y) |
-| autogenerated/Xss/ReflectedXss/partial.js:1:23:1:31 | 'express' | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/ReflectedXss/partial.js:1:23:1:31 | 'express' | enclosingFunctionBody |  |
-| autogenerated/Xss/ReflectedXss/partial.js:1:23:1:31 | 'express' | enclosingFunctionName |  |
-| autogenerated/Xss/ReflectedXss/partial.js:1:23:1:31 | 'express' | fileImports | express lodash ramda underscore |
-| autogenerated/Xss/ReflectedXss/partial.js:1:23:1:31 | 'express' | receiverName |  |
-| autogenerated/Xss/ReflectedXss/partial.js:1:23:1:31 | 'express' | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/partial.js:2:26:2:37 | 'underscore' | CalleeFlexibleAccessPath | require |
-| autogenerated/Xss/ReflectedXss/partial.js:2:26:2:37 | 'underscore' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/partial.js:2:26:2:37 | 'underscore' | InputArgumentIndex | 0 |
-| autogenerated/Xss/ReflectedXss/partial.js:2:26:2:37 | 'underscore' | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/partial.js:2:26:2:37 | 'underscore' | calleeImports |  |
-| autogenerated/Xss/ReflectedXss/partial.js:2:26:2:37 | 'underscore' | contextFunctionInterfaces | getFirst(x, y)\nsendResponse(x, y)\nsendResponse(x, y)\nsendResponse(x, y)\nsendResponse(x, y) |
-| autogenerated/Xss/ReflectedXss/partial.js:2:26:2:37 | 'underscore' | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/ReflectedXss/partial.js:2:26:2:37 | 'underscore' | enclosingFunctionBody |  |
-| autogenerated/Xss/ReflectedXss/partial.js:2:26:2:37 | 'underscore' | enclosingFunctionName |  |
-| autogenerated/Xss/ReflectedXss/partial.js:2:26:2:37 | 'underscore' | fileImports | express lodash ramda underscore |
-| autogenerated/Xss/ReflectedXss/partial.js:2:26:2:37 | 'underscore' | receiverName |  |
-| autogenerated/Xss/ReflectedXss/partial.js:2:26:2:37 | 'underscore' | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/partial.js:3:22:3:29 | 'lodash' | CalleeFlexibleAccessPath | require |
-| autogenerated/Xss/ReflectedXss/partial.js:3:22:3:29 | 'lodash' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/partial.js:3:22:3:29 | 'lodash' | InputArgumentIndex | 0 |
-| autogenerated/Xss/ReflectedXss/partial.js:3:22:3:29 | 'lodash' | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/partial.js:3:22:3:29 | 'lodash' | calleeImports |  |
-| autogenerated/Xss/ReflectedXss/partial.js:3:22:3:29 | 'lodash' | contextFunctionInterfaces | getFirst(x, y)\nsendResponse(x, y)\nsendResponse(x, y)\nsendResponse(x, y)\nsendResponse(x, y) |
-| autogenerated/Xss/ReflectedXss/partial.js:3:22:3:29 | 'lodash' | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/ReflectedXss/partial.js:3:22:3:29 | 'lodash' | enclosingFunctionBody |  |
-| autogenerated/Xss/ReflectedXss/partial.js:3:22:3:29 | 'lodash' | enclosingFunctionName |  |
-| autogenerated/Xss/ReflectedXss/partial.js:3:22:3:29 | 'lodash' | fileImports | express lodash ramda underscore |
-| autogenerated/Xss/ReflectedXss/partial.js:3:22:3:29 | 'lodash' | receiverName |  |
-| autogenerated/Xss/ReflectedXss/partial.js:3:22:3:29 | 'lodash' | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/partial.js:4:17:4:23 | 'ramda' | CalleeFlexibleAccessPath | require |
-| autogenerated/Xss/ReflectedXss/partial.js:4:17:4:23 | 'ramda' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/partial.js:4:17:4:23 | 'ramda' | InputArgumentIndex | 0 |
-| autogenerated/Xss/ReflectedXss/partial.js:4:17:4:23 | 'ramda' | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/partial.js:4:17:4:23 | 'ramda' | calleeImports |  |
-| autogenerated/Xss/ReflectedXss/partial.js:4:17:4:23 | 'ramda' | contextFunctionInterfaces | getFirst(x, y)\nsendResponse(x, y)\nsendResponse(x, y)\nsendResponse(x, y)\nsendResponse(x, y) |
-| autogenerated/Xss/ReflectedXss/partial.js:4:17:4:23 | 'ramda' | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/ReflectedXss/partial.js:4:17:4:23 | 'ramda' | enclosingFunctionBody |  |
-| autogenerated/Xss/ReflectedXss/partial.js:4:17:4:23 | 'ramda' | enclosingFunctionName |  |
-| autogenerated/Xss/ReflectedXss/partial.js:4:17:4:23 | 'ramda' | fileImports | express lodash ramda underscore |
-| autogenerated/Xss/ReflectedXss/partial.js:4:17:4:23 | 'ramda' | receiverName |  |
-| autogenerated/Xss/ReflectedXss/partial.js:4:17:4:23 | 'ramda' | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/partial.js:8:9:8:20 | "/some/path" | CalleeFlexibleAccessPath | app.get |
-| autogenerated/Xss/ReflectedXss/partial.js:8:9:8:20 | "/some/path" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/partial.js:8:9:8:20 | "/some/path" | InputArgumentIndex | 0 |
-| autogenerated/Xss/ReflectedXss/partial.js:8:9:8:20 | "/some/path" | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/partial.js:8:9:8:20 | "/some/path" | calleeImports | express |
-| autogenerated/Xss/ReflectedXss/partial.js:8:9:8:20 | "/some/path" | contextFunctionInterfaces | getFirst(x, y)\nsendResponse(x, y)\nsendResponse(x, y)\nsendResponse(x, y)\nsendResponse(x, y) |
-| autogenerated/Xss/ReflectedXss/partial.js:8:9:8:20 | "/some/path" | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/ReflectedXss/partial.js:8:9:8:20 | "/some/path" | enclosingFunctionBody |  |
-| autogenerated/Xss/ReflectedXss/partial.js:8:9:8:20 | "/some/path" | enclosingFunctionName |  |
-| autogenerated/Xss/ReflectedXss/partial.js:8:9:8:20 | "/some/path" | fileImports | express lodash ramda underscore |
-| autogenerated/Xss/ReflectedXss/partial.js:8:9:8:20 | "/some/path" | receiverName | app |
-| autogenerated/Xss/ReflectedXss/partial.js:8:9:8:20 | "/some/path" | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/partial.js:8:23:15:1 | (req, r ... ack);\\n} | CalleeFlexibleAccessPath | app.get |
-| autogenerated/Xss/ReflectedXss/partial.js:8:23:15:1 | (req, r ... ack);\\n} | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/partial.js:8:23:15:1 | (req, r ... ack);\\n} | InputArgumentIndex | 1 |
-| autogenerated/Xss/ReflectedXss/partial.js:8:23:15:1 | (req, r ... ack);\\n} | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/partial.js:8:23:15:1 | (req, r ... ack);\\n} | calleeImports | express |
-| autogenerated/Xss/ReflectedXss/partial.js:8:23:15:1 | (req, r ... ack);\\n} | contextFunctionInterfaces | getFirst(x, y)\nsendResponse(x, y)\nsendResponse(x, y)\nsendResponse(x, y)\nsendResponse(x, y) |
-| autogenerated/Xss/ReflectedXss/partial.js:8:23:15:1 | (req, r ... ack);\\n} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/Xss/ReflectedXss/partial.js:8:23:15:1 | (req, r ... ack);\\n} | enclosingFunctionBody |  |
-| autogenerated/Xss/ReflectedXss/partial.js:8:23:15:1 | (req, r ... ack);\\n} | enclosingFunctionName |  |
-| autogenerated/Xss/ReflectedXss/partial.js:8:23:15:1 | (req, r ... ack);\\n} | fileImports | express lodash ramda underscore |
-| autogenerated/Xss/ReflectedXss/partial.js:8:23:15:1 | (req, r ... ack);\\n} | receiverName | app |
-| autogenerated/Xss/ReflectedXss/partial.js:8:23:15:1 | (req, r ... ack);\\n} | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/partial.js:13:36:13:39 | null | CalleeFlexibleAccessPath | sendResponse.bind |
-| autogenerated/Xss/ReflectedXss/partial.js:13:36:13:39 | null | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/partial.js:13:36:13:39 | null | InputArgumentIndex | 0 |
-| autogenerated/Xss/ReflectedXss/partial.js:13:36:13:39 | null | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/partial.js:13:36:13:39 | null | calleeImports |  |
-| autogenerated/Xss/ReflectedXss/partial.js:13:36:13:39 | null | contextFunctionInterfaces | getFirst(x, y)\nsendResponse(x, y)\nsendResponse(x, y)\nsendResponse(x, y)\nsendResponse(x, y) |
-| autogenerated/Xss/ReflectedXss/partial.js:13:36:13:39 | null | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/Xss/ReflectedXss/partial.js:13:36:13:39 | null | enclosingFunctionBody | req res sendResponse x y res send x y callback sendResponse bind null req url 1 2 3 forEach callback |
-| autogenerated/Xss/ReflectedXss/partial.js:13:36:13:39 | null | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/Xss/ReflectedXss/partial.js:13:36:13:39 | null | fileImports | express lodash ramda underscore |
-| autogenerated/Xss/ReflectedXss/partial.js:13:36:13:39 | null | receiverName | sendResponse |
-| autogenerated/Xss/ReflectedXss/partial.js:13:36:13:39 | null | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/partial.js:13:42:13:48 | req.url | CalleeFlexibleAccessPath | sendResponse.bind |
-| autogenerated/Xss/ReflectedXss/partial.js:13:42:13:48 | req.url | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/partial.js:13:42:13:48 | req.url | InputArgumentIndex | 1 |
-| autogenerated/Xss/ReflectedXss/partial.js:13:42:13:48 | req.url | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/partial.js:13:42:13:48 | req.url | calleeImports |  |
-| autogenerated/Xss/ReflectedXss/partial.js:13:42:13:48 | req.url | contextFunctionInterfaces | getFirst(x, y)\nsendResponse(x, y)\nsendResponse(x, y)\nsendResponse(x, y)\nsendResponse(x, y) |
-| autogenerated/Xss/ReflectedXss/partial.js:13:42:13:48 | req.url | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/Xss/ReflectedXss/partial.js:13:42:13:48 | req.url | enclosingFunctionBody | req res sendResponse x y res send x y callback sendResponse bind null req url 1 2 3 forEach callback |
-| autogenerated/Xss/ReflectedXss/partial.js:13:42:13:48 | req.url | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/Xss/ReflectedXss/partial.js:13:42:13:48 | req.url | fileImports | express lodash ramda underscore |
-| autogenerated/Xss/ReflectedXss/partial.js:13:42:13:48 | req.url | receiverName | sendResponse |
-| autogenerated/Xss/ReflectedXss/partial.js:13:42:13:48 | req.url | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/partial.js:17:9:17:21 | "/underscore" | CalleeFlexibleAccessPath | app.get |
-| autogenerated/Xss/ReflectedXss/partial.js:17:9:17:21 | "/underscore" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/partial.js:17:9:17:21 | "/underscore" | InputArgumentIndex | 0 |
-| autogenerated/Xss/ReflectedXss/partial.js:17:9:17:21 | "/underscore" | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/partial.js:17:9:17:21 | "/underscore" | calleeImports | express |
-| autogenerated/Xss/ReflectedXss/partial.js:17:9:17:21 | "/underscore" | contextFunctionInterfaces | getFirst(x, y)\nsendResponse(x, y)\nsendResponse(x, y)\nsendResponse(x, y)\nsendResponse(x, y) |
-| autogenerated/Xss/ReflectedXss/partial.js:17:9:17:21 | "/underscore" | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/ReflectedXss/partial.js:17:9:17:21 | "/underscore" | enclosingFunctionBody |  |
-| autogenerated/Xss/ReflectedXss/partial.js:17:9:17:21 | "/underscore" | enclosingFunctionName |  |
-| autogenerated/Xss/ReflectedXss/partial.js:17:9:17:21 | "/underscore" | fileImports | express lodash ramda underscore |
-| autogenerated/Xss/ReflectedXss/partial.js:17:9:17:21 | "/underscore" | receiverName | app |
-| autogenerated/Xss/ReflectedXss/partial.js:17:9:17:21 | "/underscore" | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/partial.js:17:24:24:1 | (req, r ... ack);\\n} | CalleeFlexibleAccessPath | app.get |
-| autogenerated/Xss/ReflectedXss/partial.js:17:24:24:1 | (req, r ... ack);\\n} | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/partial.js:17:24:24:1 | (req, r ... ack);\\n} | InputArgumentIndex | 1 |
-| autogenerated/Xss/ReflectedXss/partial.js:17:24:24:1 | (req, r ... ack);\\n} | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/partial.js:17:24:24:1 | (req, r ... ack);\\n} | calleeImports | express |
-| autogenerated/Xss/ReflectedXss/partial.js:17:24:24:1 | (req, r ... ack);\\n} | contextFunctionInterfaces | getFirst(x, y)\nsendResponse(x, y)\nsendResponse(x, y)\nsendResponse(x, y)\nsendResponse(x, y) |
-| autogenerated/Xss/ReflectedXss/partial.js:17:24:24:1 | (req, r ... ack);\\n} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/Xss/ReflectedXss/partial.js:17:24:24:1 | (req, r ... ack);\\n} | enclosingFunctionBody |  |
-| autogenerated/Xss/ReflectedXss/partial.js:17:24:24:1 | (req, r ... ack);\\n} | enclosingFunctionName |  |
-| autogenerated/Xss/ReflectedXss/partial.js:17:24:24:1 | (req, r ... ack);\\n} | fileImports | express lodash ramda underscore |
-| autogenerated/Xss/ReflectedXss/partial.js:17:24:24:1 | (req, r ... ack);\\n} | receiverName | app |
-| autogenerated/Xss/ReflectedXss/partial.js:17:24:24:1 | (req, r ... ack);\\n} | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/partial.js:22:37:22:48 | sendResponse | CalleeFlexibleAccessPath | underscore.partial |
-| autogenerated/Xss/ReflectedXss/partial.js:22:37:22:48 | sendResponse | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/partial.js:22:37:22:48 | sendResponse | InputArgumentIndex | 0 |
-| autogenerated/Xss/ReflectedXss/partial.js:22:37:22:48 | sendResponse | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/partial.js:22:37:22:48 | sendResponse | calleeImports | underscore |
-| autogenerated/Xss/ReflectedXss/partial.js:22:37:22:48 | sendResponse | contextFunctionInterfaces | getFirst(x, y)\nsendResponse(x, y)\nsendResponse(x, y)\nsendResponse(x, y)\nsendResponse(x, y) |
-| autogenerated/Xss/ReflectedXss/partial.js:22:37:22:48 | sendResponse | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/Xss/ReflectedXss/partial.js:22:37:22:48 | sendResponse | enclosingFunctionBody | req res sendResponse x y res send x y callback underscore partial sendResponse req url 1 2 3 forEach callback |
-| autogenerated/Xss/ReflectedXss/partial.js:22:37:22:48 | sendResponse | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/Xss/ReflectedXss/partial.js:22:37:22:48 | sendResponse | fileImports | express lodash ramda underscore |
-| autogenerated/Xss/ReflectedXss/partial.js:22:37:22:48 | sendResponse | receiverName | underscore |
-| autogenerated/Xss/ReflectedXss/partial.js:22:37:22:48 | sendResponse | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/partial.js:22:51:22:57 | req.url | CalleeFlexibleAccessPath | underscore.partial |
-| autogenerated/Xss/ReflectedXss/partial.js:22:51:22:57 | req.url | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/partial.js:22:51:22:57 | req.url | InputArgumentIndex | 1 |
-| autogenerated/Xss/ReflectedXss/partial.js:22:51:22:57 | req.url | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/partial.js:22:51:22:57 | req.url | calleeImports | underscore |
-| autogenerated/Xss/ReflectedXss/partial.js:22:51:22:57 | req.url | contextFunctionInterfaces | getFirst(x, y)\nsendResponse(x, y)\nsendResponse(x, y)\nsendResponse(x, y)\nsendResponse(x, y) |
-| autogenerated/Xss/ReflectedXss/partial.js:22:51:22:57 | req.url | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/Xss/ReflectedXss/partial.js:22:51:22:57 | req.url | enclosingFunctionBody | req res sendResponse x y res send x y callback underscore partial sendResponse req url 1 2 3 forEach callback |
-| autogenerated/Xss/ReflectedXss/partial.js:22:51:22:57 | req.url | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/Xss/ReflectedXss/partial.js:22:51:22:57 | req.url | fileImports | express lodash ramda underscore |
-| autogenerated/Xss/ReflectedXss/partial.js:22:51:22:57 | req.url | receiverName | underscore |
-| autogenerated/Xss/ReflectedXss/partial.js:22:51:22:57 | req.url | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/partial.js:26:9:26:17 | "/lodash" | CalleeFlexibleAccessPath | app.get |
-| autogenerated/Xss/ReflectedXss/partial.js:26:9:26:17 | "/lodash" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/partial.js:26:9:26:17 | "/lodash" | InputArgumentIndex | 0 |
-| autogenerated/Xss/ReflectedXss/partial.js:26:9:26:17 | "/lodash" | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/partial.js:26:9:26:17 | "/lodash" | calleeImports | express |
-| autogenerated/Xss/ReflectedXss/partial.js:26:9:26:17 | "/lodash" | contextFunctionInterfaces | getFirst(x, y)\nsendResponse(x, y)\nsendResponse(x, y)\nsendResponse(x, y)\nsendResponse(x, y) |
-| autogenerated/Xss/ReflectedXss/partial.js:26:9:26:17 | "/lodash" | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/ReflectedXss/partial.js:26:9:26:17 | "/lodash" | enclosingFunctionBody |  |
-| autogenerated/Xss/ReflectedXss/partial.js:26:9:26:17 | "/lodash" | enclosingFunctionName |  |
-| autogenerated/Xss/ReflectedXss/partial.js:26:9:26:17 | "/lodash" | fileImports | express lodash ramda underscore |
-| autogenerated/Xss/ReflectedXss/partial.js:26:9:26:17 | "/lodash" | receiverName | app |
-| autogenerated/Xss/ReflectedXss/partial.js:26:9:26:17 | "/lodash" | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/partial.js:26:20:33:1 | (req, r ... ack);\\n} | CalleeFlexibleAccessPath | app.get |
-| autogenerated/Xss/ReflectedXss/partial.js:26:20:33:1 | (req, r ... ack);\\n} | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/partial.js:26:20:33:1 | (req, r ... ack);\\n} | InputArgumentIndex | 1 |
-| autogenerated/Xss/ReflectedXss/partial.js:26:20:33:1 | (req, r ... ack);\\n} | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/partial.js:26:20:33:1 | (req, r ... ack);\\n} | calleeImports | express |
-| autogenerated/Xss/ReflectedXss/partial.js:26:20:33:1 | (req, r ... ack);\\n} | contextFunctionInterfaces | getFirst(x, y)\nsendResponse(x, y)\nsendResponse(x, y)\nsendResponse(x, y)\nsendResponse(x, y) |
-| autogenerated/Xss/ReflectedXss/partial.js:26:20:33:1 | (req, r ... ack);\\n} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/Xss/ReflectedXss/partial.js:26:20:33:1 | (req, r ... ack);\\n} | enclosingFunctionBody |  |
-| autogenerated/Xss/ReflectedXss/partial.js:26:20:33:1 | (req, r ... ack);\\n} | enclosingFunctionName |  |
-| autogenerated/Xss/ReflectedXss/partial.js:26:20:33:1 | (req, r ... ack);\\n} | fileImports | express lodash ramda underscore |
-| autogenerated/Xss/ReflectedXss/partial.js:26:20:33:1 | (req, r ... ack);\\n} | receiverName | app |
-| autogenerated/Xss/ReflectedXss/partial.js:26:20:33:1 | (req, r ... ack);\\n} | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/partial.js:31:33:31:44 | sendResponse | CalleeFlexibleAccessPath | lodash.partial |
-| autogenerated/Xss/ReflectedXss/partial.js:31:33:31:44 | sendResponse | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/partial.js:31:33:31:44 | sendResponse | InputArgumentIndex | 0 |
-| autogenerated/Xss/ReflectedXss/partial.js:31:33:31:44 | sendResponse | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/partial.js:31:33:31:44 | sendResponse | calleeImports | lodash |
-| autogenerated/Xss/ReflectedXss/partial.js:31:33:31:44 | sendResponse | contextFunctionInterfaces | getFirst(x, y)\nsendResponse(x, y)\nsendResponse(x, y)\nsendResponse(x, y)\nsendResponse(x, y) |
-| autogenerated/Xss/ReflectedXss/partial.js:31:33:31:44 | sendResponse | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/Xss/ReflectedXss/partial.js:31:33:31:44 | sendResponse | enclosingFunctionBody | req res sendResponse x y res send x y callback lodash partial sendResponse req url 1 2 3 forEach callback |
-| autogenerated/Xss/ReflectedXss/partial.js:31:33:31:44 | sendResponse | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/Xss/ReflectedXss/partial.js:31:33:31:44 | sendResponse | fileImports | express lodash ramda underscore |
-| autogenerated/Xss/ReflectedXss/partial.js:31:33:31:44 | sendResponse | receiverName | lodash |
-| autogenerated/Xss/ReflectedXss/partial.js:31:33:31:44 | sendResponse | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/partial.js:31:47:31:53 | req.url | CalleeFlexibleAccessPath | lodash.partial |
-| autogenerated/Xss/ReflectedXss/partial.js:31:47:31:53 | req.url | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/partial.js:31:47:31:53 | req.url | InputArgumentIndex | 1 |
-| autogenerated/Xss/ReflectedXss/partial.js:31:47:31:53 | req.url | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/partial.js:31:47:31:53 | req.url | calleeImports | lodash |
-| autogenerated/Xss/ReflectedXss/partial.js:31:47:31:53 | req.url | contextFunctionInterfaces | getFirst(x, y)\nsendResponse(x, y)\nsendResponse(x, y)\nsendResponse(x, y)\nsendResponse(x, y) |
-| autogenerated/Xss/ReflectedXss/partial.js:31:47:31:53 | req.url | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/Xss/ReflectedXss/partial.js:31:47:31:53 | req.url | enclosingFunctionBody | req res sendResponse x y res send x y callback lodash partial sendResponse req url 1 2 3 forEach callback |
-| autogenerated/Xss/ReflectedXss/partial.js:31:47:31:53 | req.url | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/Xss/ReflectedXss/partial.js:31:47:31:53 | req.url | fileImports | express lodash ramda underscore |
-| autogenerated/Xss/ReflectedXss/partial.js:31:47:31:53 | req.url | receiverName | lodash |
-| autogenerated/Xss/ReflectedXss/partial.js:31:47:31:53 | req.url | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/partial.js:35:9:35:16 | "/ramda" | CalleeFlexibleAccessPath | app.get |
-| autogenerated/Xss/ReflectedXss/partial.js:35:9:35:16 | "/ramda" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/partial.js:35:9:35:16 | "/ramda" | InputArgumentIndex | 0 |
-| autogenerated/Xss/ReflectedXss/partial.js:35:9:35:16 | "/ramda" | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/partial.js:35:9:35:16 | "/ramda" | calleeImports | express |
-| autogenerated/Xss/ReflectedXss/partial.js:35:9:35:16 | "/ramda" | contextFunctionInterfaces | getFirst(x, y)\nsendResponse(x, y)\nsendResponse(x, y)\nsendResponse(x, y)\nsendResponse(x, y) |
-| autogenerated/Xss/ReflectedXss/partial.js:35:9:35:16 | "/ramda" | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/ReflectedXss/partial.js:35:9:35:16 | "/ramda" | enclosingFunctionBody |  |
-| autogenerated/Xss/ReflectedXss/partial.js:35:9:35:16 | "/ramda" | enclosingFunctionName |  |
-| autogenerated/Xss/ReflectedXss/partial.js:35:9:35:16 | "/ramda" | fileImports | express lodash ramda underscore |
-| autogenerated/Xss/ReflectedXss/partial.js:35:9:35:16 | "/ramda" | receiverName | app |
-| autogenerated/Xss/ReflectedXss/partial.js:35:9:35:16 | "/ramda" | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/partial.js:35:19:42:1 | (req, r ... ack);\\n} | CalleeFlexibleAccessPath | app.get |
-| autogenerated/Xss/ReflectedXss/partial.js:35:19:42:1 | (req, r ... ack);\\n} | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/partial.js:35:19:42:1 | (req, r ... ack);\\n} | InputArgumentIndex | 1 |
-| autogenerated/Xss/ReflectedXss/partial.js:35:19:42:1 | (req, r ... ack);\\n} | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/partial.js:35:19:42:1 | (req, r ... ack);\\n} | calleeImports | express |
-| autogenerated/Xss/ReflectedXss/partial.js:35:19:42:1 | (req, r ... ack);\\n} | contextFunctionInterfaces | getFirst(x, y)\nsendResponse(x, y)\nsendResponse(x, y)\nsendResponse(x, y)\nsendResponse(x, y) |
-| autogenerated/Xss/ReflectedXss/partial.js:35:19:42:1 | (req, r ... ack);\\n} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/Xss/ReflectedXss/partial.js:35:19:42:1 | (req, r ... ack);\\n} | enclosingFunctionBody |  |
-| autogenerated/Xss/ReflectedXss/partial.js:35:19:42:1 | (req, r ... ack);\\n} | enclosingFunctionName |  |
-| autogenerated/Xss/ReflectedXss/partial.js:35:19:42:1 | (req, r ... ack);\\n} | fileImports | express lodash ramda underscore |
-| autogenerated/Xss/ReflectedXss/partial.js:35:19:42:1 | (req, r ... ack);\\n} | receiverName | app |
-| autogenerated/Xss/ReflectedXss/partial.js:35:19:42:1 | (req, r ... ack);\\n} | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/partial.js:40:28:40:39 | sendResponse | CalleeFlexibleAccessPath | R.partial |
-| autogenerated/Xss/ReflectedXss/partial.js:40:28:40:39 | sendResponse | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/partial.js:40:28:40:39 | sendResponse | InputArgumentIndex | 0 |
-| autogenerated/Xss/ReflectedXss/partial.js:40:28:40:39 | sendResponse | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/partial.js:40:28:40:39 | sendResponse | calleeImports | ramda |
-| autogenerated/Xss/ReflectedXss/partial.js:40:28:40:39 | sendResponse | contextFunctionInterfaces | getFirst(x, y)\nsendResponse(x, y)\nsendResponse(x, y)\nsendResponse(x, y)\nsendResponse(x, y) |
-| autogenerated/Xss/ReflectedXss/partial.js:40:28:40:39 | sendResponse | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/Xss/ReflectedXss/partial.js:40:28:40:39 | sendResponse | enclosingFunctionBody | req res sendResponse x y res send x y callback R partial sendResponse req url 1 2 3 forEach callback |
-| autogenerated/Xss/ReflectedXss/partial.js:40:28:40:39 | sendResponse | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/Xss/ReflectedXss/partial.js:40:28:40:39 | sendResponse | fileImports | express lodash ramda underscore |
-| autogenerated/Xss/ReflectedXss/partial.js:40:28:40:39 | sendResponse | receiverName | R |
-| autogenerated/Xss/ReflectedXss/partial.js:40:28:40:39 | sendResponse | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/partial.js:40:42:40:50 | [req.url] | CalleeFlexibleAccessPath | R.partial |
-| autogenerated/Xss/ReflectedXss/partial.js:40:42:40:50 | [req.url] | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/partial.js:40:42:40:50 | [req.url] | InputArgumentIndex | 1 |
-| autogenerated/Xss/ReflectedXss/partial.js:40:42:40:50 | [req.url] | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/partial.js:40:42:40:50 | [req.url] | calleeImports | ramda |
-| autogenerated/Xss/ReflectedXss/partial.js:40:42:40:50 | [req.url] | contextFunctionInterfaces | getFirst(x, y)\nsendResponse(x, y)\nsendResponse(x, y)\nsendResponse(x, y)\nsendResponse(x, y) |
-| autogenerated/Xss/ReflectedXss/partial.js:40:42:40:50 | [req.url] | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/Xss/ReflectedXss/partial.js:40:42:40:50 | [req.url] | enclosingFunctionBody | req res sendResponse x y res send x y callback R partial sendResponse req url 1 2 3 forEach callback |
-| autogenerated/Xss/ReflectedXss/partial.js:40:42:40:50 | [req.url] | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/Xss/ReflectedXss/partial.js:40:42:40:50 | [req.url] | fileImports | express lodash ramda underscore |
-| autogenerated/Xss/ReflectedXss/partial.js:40:42:40:50 | [req.url] | receiverName | R |
-| autogenerated/Xss/ReflectedXss/partial.js:40:42:40:50 | [req.url] | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/partial.js:40:43:40:49 | req.url | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/ReflectedXss/partial.js:40:43:40:49 | req.url | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/partial.js:40:43:40:49 | req.url | InputArgumentIndex |  |
-| autogenerated/Xss/ReflectedXss/partial.js:40:43:40:49 | req.url | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/partial.js:40:43:40:49 | req.url | calleeImports |  |
-| autogenerated/Xss/ReflectedXss/partial.js:40:43:40:49 | req.url | contextFunctionInterfaces | getFirst(x, y)\nsendResponse(x, y)\nsendResponse(x, y)\nsendResponse(x, y)\nsendResponse(x, y) |
-| autogenerated/Xss/ReflectedXss/partial.js:40:43:40:49 | req.url | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/Xss/ReflectedXss/partial.js:40:43:40:49 | req.url | enclosingFunctionBody | req res sendResponse x y res send x y callback R partial sendResponse req url 1 2 3 forEach callback |
-| autogenerated/Xss/ReflectedXss/partial.js:40:43:40:49 | req.url | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/Xss/ReflectedXss/partial.js:40:43:40:49 | req.url | fileImports | express lodash ramda underscore |
-| autogenerated/Xss/ReflectedXss/partial.js:40:43:40:49 | req.url | receiverName |  |
-| autogenerated/Xss/ReflectedXss/partial.js:40:43:40:49 | req.url | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/partial.js:44:9:44:17 | "/return" | CalleeFlexibleAccessPath | app.get |
-| autogenerated/Xss/ReflectedXss/partial.js:44:9:44:17 | "/return" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/partial.js:44:9:44:17 | "/return" | InputArgumentIndex | 0 |
-| autogenerated/Xss/ReflectedXss/partial.js:44:9:44:17 | "/return" | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/partial.js:44:9:44:17 | "/return" | calleeImports | express |
-| autogenerated/Xss/ReflectedXss/partial.js:44:9:44:17 | "/return" | contextFunctionInterfaces | getFirst(x, y)\nsendResponse(x, y)\nsendResponse(x, y)\nsendResponse(x, y)\nsendResponse(x, y) |
-| autogenerated/Xss/ReflectedXss/partial.js:44:9:44:17 | "/return" | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/ReflectedXss/partial.js:44:9:44:17 | "/return" | enclosingFunctionBody |  |
-| autogenerated/Xss/ReflectedXss/partial.js:44:9:44:17 | "/return" | enclosingFunctionName |  |
-| autogenerated/Xss/ReflectedXss/partial.js:44:9:44:17 | "/return" | fileImports | express lodash ramda underscore |
-| autogenerated/Xss/ReflectedXss/partial.js:44:9:44:17 | "/return" | receiverName | app |
-| autogenerated/Xss/ReflectedXss/partial.js:44:9:44:17 | "/return" | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/partial.js:44:20:55:1 | (req, r ...  site\\n} | CalleeFlexibleAccessPath | app.get |
-| autogenerated/Xss/ReflectedXss/partial.js:44:20:55:1 | (req, r ...  site\\n} | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/partial.js:44:20:55:1 | (req, r ...  site\\n} | InputArgumentIndex | 1 |
-| autogenerated/Xss/ReflectedXss/partial.js:44:20:55:1 | (req, r ...  site\\n} | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/partial.js:44:20:55:1 | (req, r ...  site\\n} | calleeImports | express |
-| autogenerated/Xss/ReflectedXss/partial.js:44:20:55:1 | (req, r ...  site\\n} | contextFunctionInterfaces | getFirst(x, y)\nsendResponse(x, y)\nsendResponse(x, y)\nsendResponse(x, y)\nsendResponse(x, y) |
-| autogenerated/Xss/ReflectedXss/partial.js:44:20:55:1 | (req, r ...  site\\n} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/Xss/ReflectedXss/partial.js:44:20:55:1 | (req, r ...  site\\n} | enclosingFunctionBody |  |
-| autogenerated/Xss/ReflectedXss/partial.js:44:20:55:1 | (req, r ...  site\\n} | enclosingFunctionName |  |
-| autogenerated/Xss/ReflectedXss/partial.js:44:20:55:1 | (req, r ...  site\\n} | fileImports | express lodash ramda underscore |
-| autogenerated/Xss/ReflectedXss/partial.js:44:20:55:1 | (req, r ...  site\\n} | receiverName | app |
-| autogenerated/Xss/ReflectedXss/partial.js:44:20:55:1 | (req, r ...  site\\n} | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/partial.js:49:32:49:35 | null | CalleeFlexibleAccessPath | getFirst.bind |
-| autogenerated/Xss/ReflectedXss/partial.js:49:32:49:35 | null | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/partial.js:49:32:49:35 | null | InputArgumentIndex | 0 |
-| autogenerated/Xss/ReflectedXss/partial.js:49:32:49:35 | null | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/partial.js:49:32:49:35 | null | calleeImports |  |
-| autogenerated/Xss/ReflectedXss/partial.js:49:32:49:35 | null | contextFunctionInterfaces | getFirst(x, y)\nsendResponse(x, y)\nsendResponse(x, y)\nsendResponse(x, y)\nsendResponse(x, y) |
-| autogenerated/Xss/ReflectedXss/partial.js:49:32:49:35 | null | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/Xss/ReflectedXss/partial.js:49:32:49:35 | null | enclosingFunctionBody | req res getFirst x y x callback getFirst bind null req url res send callback res send callback res send getFirst Hello |
-| autogenerated/Xss/ReflectedXss/partial.js:49:32:49:35 | null | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/Xss/ReflectedXss/partial.js:49:32:49:35 | null | fileImports | express lodash ramda underscore |
-| autogenerated/Xss/ReflectedXss/partial.js:49:32:49:35 | null | receiverName | getFirst |
-| autogenerated/Xss/ReflectedXss/partial.js:49:32:49:35 | null | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/partial.js:49:38:49:44 | req.url | CalleeFlexibleAccessPath | getFirst.bind |
-| autogenerated/Xss/ReflectedXss/partial.js:49:38:49:44 | req.url | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/partial.js:49:38:49:44 | req.url | InputArgumentIndex | 1 |
-| autogenerated/Xss/ReflectedXss/partial.js:49:38:49:44 | req.url | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/partial.js:49:38:49:44 | req.url | calleeImports |  |
-| autogenerated/Xss/ReflectedXss/partial.js:49:38:49:44 | req.url | contextFunctionInterfaces | getFirst(x, y)\nsendResponse(x, y)\nsendResponse(x, y)\nsendResponse(x, y)\nsendResponse(x, y) |
-| autogenerated/Xss/ReflectedXss/partial.js:49:38:49:44 | req.url | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/Xss/ReflectedXss/partial.js:49:38:49:44 | req.url | enclosingFunctionBody | req res getFirst x y x callback getFirst bind null req url res send callback res send callback res send getFirst Hello |
-| autogenerated/Xss/ReflectedXss/partial.js:49:38:49:44 | req.url | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/Xss/ReflectedXss/partial.js:49:38:49:44 | req.url | fileImports | express lodash ramda underscore |
-| autogenerated/Xss/ReflectedXss/partial.js:49:38:49:44 | req.url | receiverName | getFirst |
-| autogenerated/Xss/ReflectedXss/partial.js:49:38:49:44 | req.url | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/promises.js:1:23:1:31 | 'express' | CalleeFlexibleAccessPath | require |
-| autogenerated/Xss/ReflectedXss/promises.js:1:23:1:31 | 'express' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/promises.js:1:23:1:31 | 'express' | InputArgumentIndex | 0 |
-| autogenerated/Xss/ReflectedXss/promises.js:1:23:1:31 | 'express' | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/promises.js:1:23:1:31 | 'express' | calleeImports |  |
-| autogenerated/Xss/ReflectedXss/promises.js:1:23:1:31 | 'express' | contextFunctionInterfaces |  |
-| autogenerated/Xss/ReflectedXss/promises.js:1:23:1:31 | 'express' | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/ReflectedXss/promises.js:1:23:1:31 | 'express' | enclosingFunctionBody |  |
-| autogenerated/Xss/ReflectedXss/promises.js:1:23:1:31 | 'express' | enclosingFunctionName |  |
-| autogenerated/Xss/ReflectedXss/promises.js:1:23:1:31 | 'express' | fileImports | express |
-| autogenerated/Xss/ReflectedXss/promises.js:1:23:1:31 | 'express' | receiverName |  |
-| autogenerated/Xss/ReflectedXss/promises.js:1:23:1:31 | 'express' | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/promises.js:4:9:4:20 | "/some/path" | CalleeFlexibleAccessPath | app.get |
-| autogenerated/Xss/ReflectedXss/promises.js:4:9:4:20 | "/some/path" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/promises.js:4:9:4:20 | "/some/path" | InputArgumentIndex | 0 |
-| autogenerated/Xss/ReflectedXss/promises.js:4:9:4:20 | "/some/path" | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/promises.js:4:9:4:20 | "/some/path" | calleeImports | express |
-| autogenerated/Xss/ReflectedXss/promises.js:4:9:4:20 | "/some/path" | contextFunctionInterfaces |  |
-| autogenerated/Xss/ReflectedXss/promises.js:4:9:4:20 | "/some/path" | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/ReflectedXss/promises.js:4:9:4:20 | "/some/path" | enclosingFunctionBody |  |
-| autogenerated/Xss/ReflectedXss/promises.js:4:9:4:20 | "/some/path" | enclosingFunctionName |  |
-| autogenerated/Xss/ReflectedXss/promises.js:4:9:4:20 | "/some/path" | fileImports | express |
-| autogenerated/Xss/ReflectedXss/promises.js:4:9:4:20 | "/some/path" | receiverName | app |
-| autogenerated/Xss/ReflectedXss/promises.js:4:9:4:20 | "/some/path" | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/promises.js:4:23:11:1 | (req, r ... // OK\\n} | CalleeFlexibleAccessPath | app.get |
-| autogenerated/Xss/ReflectedXss/promises.js:4:23:11:1 | (req, r ... // OK\\n} | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/promises.js:4:23:11:1 | (req, r ... // OK\\n} | InputArgumentIndex | 1 |
-| autogenerated/Xss/ReflectedXss/promises.js:4:23:11:1 | (req, r ... // OK\\n} | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/promises.js:4:23:11:1 | (req, r ... // OK\\n} | calleeImports | express |
-| autogenerated/Xss/ReflectedXss/promises.js:4:23:11:1 | (req, r ... // OK\\n} | contextFunctionInterfaces |  |
-| autogenerated/Xss/ReflectedXss/promises.js:4:23:11:1 | (req, r ... // OK\\n} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/Xss/ReflectedXss/promises.js:4:23:11:1 | (req, r ... // OK\\n} | enclosingFunctionBody |  |
-| autogenerated/Xss/ReflectedXss/promises.js:4:23:11:1 | (req, r ... // OK\\n} | enclosingFunctionName |  |
-| autogenerated/Xss/ReflectedXss/promises.js:4:23:11:1 | (req, r ... // OK\\n} | fileImports | express |
-| autogenerated/Xss/ReflectedXss/promises.js:4:23:11:1 | (req, r ... // OK\\n} | receiverName | app |
-| autogenerated/Xss/ReflectedXss/promises.js:4:23:11:1 | (req, r ... // OK\\n} | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/promises.js:5:44:5:57 | req.query.data | CalleeFlexibleAccessPath | resolve |
-| autogenerated/Xss/ReflectedXss/promises.js:5:44:5:57 | req.query.data | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/promises.js:5:44:5:57 | req.query.data | InputArgumentIndex | 0 |
-| autogenerated/Xss/ReflectedXss/promises.js:5:44:5:57 | req.query.data | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/promises.js:5:44:5:57 | req.query.data | calleeImports |  |
-| autogenerated/Xss/ReflectedXss/promises.js:5:44:5:57 | req.query.data | contextFunctionInterfaces |  |
-| autogenerated/Xss/ReflectedXss/promises.js:5:44:5:57 | req.query.data | contextSurroundingFunctionParameters | (req, res)\n(resolve, reject) |
-| autogenerated/Xss/ReflectedXss/promises.js:5:44:5:57 | req.query.data | enclosingFunctionBody | req res Promise resolve reject resolve req query data then x res send x Promise resolve reject resolve req query data then x escapeHtml x then x res send x |
-| autogenerated/Xss/ReflectedXss/promises.js:5:44:5:57 | req.query.data | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/Xss/ReflectedXss/promises.js:5:44:5:57 | req.query.data | fileImports | express |
-| autogenerated/Xss/ReflectedXss/promises.js:5:44:5:57 | req.query.data | receiverName |  |
-| autogenerated/Xss/ReflectedXss/promises.js:5:44:5:57 | req.query.data | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/promises.js:6:11:6:26 | x => res.send(x) | CalleeFlexibleAccessPath | Promise().then |
-| autogenerated/Xss/ReflectedXss/promises.js:6:11:6:26 | x => res.send(x) | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/promises.js:6:11:6:26 | x => res.send(x) | InputArgumentIndex | 0 |
-| autogenerated/Xss/ReflectedXss/promises.js:6:11:6:26 | x => res.send(x) | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/promises.js:6:11:6:26 | x => res.send(x) | calleeImports |  |
-| autogenerated/Xss/ReflectedXss/promises.js:6:11:6:26 | x => res.send(x) | contextFunctionInterfaces |  |
-| autogenerated/Xss/ReflectedXss/promises.js:6:11:6:26 | x => res.send(x) | contextSurroundingFunctionParameters | (req, res)\n(x) |
-| autogenerated/Xss/ReflectedXss/promises.js:6:11:6:26 | x => res.send(x) | enclosingFunctionBody | req res Promise resolve reject resolve req query data then x res send x Promise resolve reject resolve req query data then x escapeHtml x then x res send x |
-| autogenerated/Xss/ReflectedXss/promises.js:6:11:6:26 | x => res.send(x) | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/Xss/ReflectedXss/promises.js:6:11:6:26 | x => res.send(x) | fileImports | express |
-| autogenerated/Xss/ReflectedXss/promises.js:6:11:6:26 | x => res.send(x) | receiverName |  |
-| autogenerated/Xss/ReflectedXss/promises.js:6:11:6:26 | x => res.send(x) | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/promises.js:8:44:8:57 | req.query.data | CalleeFlexibleAccessPath | resolve |
-| autogenerated/Xss/ReflectedXss/promises.js:8:44:8:57 | req.query.data | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/promises.js:8:44:8:57 | req.query.data | InputArgumentIndex | 0 |
-| autogenerated/Xss/ReflectedXss/promises.js:8:44:8:57 | req.query.data | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/promises.js:8:44:8:57 | req.query.data | calleeImports |  |
-| autogenerated/Xss/ReflectedXss/promises.js:8:44:8:57 | req.query.data | contextFunctionInterfaces |  |
-| autogenerated/Xss/ReflectedXss/promises.js:8:44:8:57 | req.query.data | contextSurroundingFunctionParameters | (req, res)\n(resolve, reject) |
-| autogenerated/Xss/ReflectedXss/promises.js:8:44:8:57 | req.query.data | enclosingFunctionBody | req res Promise resolve reject resolve req query data then x res send x Promise resolve reject resolve req query data then x escapeHtml x then x res send x |
-| autogenerated/Xss/ReflectedXss/promises.js:8:44:8:57 | req.query.data | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/Xss/ReflectedXss/promises.js:8:44:8:57 | req.query.data | fileImports | express |
-| autogenerated/Xss/ReflectedXss/promises.js:8:44:8:57 | req.query.data | receiverName |  |
-| autogenerated/Xss/ReflectedXss/promises.js:8:44:8:57 | req.query.data | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/promises.js:9:11:9:28 | x => escapeHtml(x) | CalleeFlexibleAccessPath | Promise().then |
-| autogenerated/Xss/ReflectedXss/promises.js:9:11:9:28 | x => escapeHtml(x) | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/promises.js:9:11:9:28 | x => escapeHtml(x) | InputArgumentIndex | 0 |
-| autogenerated/Xss/ReflectedXss/promises.js:9:11:9:28 | x => escapeHtml(x) | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/promises.js:9:11:9:28 | x => escapeHtml(x) | calleeImports |  |
-| autogenerated/Xss/ReflectedXss/promises.js:9:11:9:28 | x => escapeHtml(x) | contextFunctionInterfaces |  |
-| autogenerated/Xss/ReflectedXss/promises.js:9:11:9:28 | x => escapeHtml(x) | contextSurroundingFunctionParameters | (req, res)\n(x) |
-| autogenerated/Xss/ReflectedXss/promises.js:9:11:9:28 | x => escapeHtml(x) | enclosingFunctionBody | req res Promise resolve reject resolve req query data then x res send x Promise resolve reject resolve req query data then x escapeHtml x then x res send x |
-| autogenerated/Xss/ReflectedXss/promises.js:9:11:9:28 | x => escapeHtml(x) | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/Xss/ReflectedXss/promises.js:9:11:9:28 | x => escapeHtml(x) | fileImports | express |
-| autogenerated/Xss/ReflectedXss/promises.js:9:11:9:28 | x => escapeHtml(x) | receiverName |  |
-| autogenerated/Xss/ReflectedXss/promises.js:9:11:9:28 | x => escapeHtml(x) | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/promises.js:10:11:10:26 | x => res.send(x) | CalleeFlexibleAccessPath | Promise().then().then |
-| autogenerated/Xss/ReflectedXss/promises.js:10:11:10:26 | x => res.send(x) | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/promises.js:10:11:10:26 | x => res.send(x) | InputArgumentIndex | 0 |
-| autogenerated/Xss/ReflectedXss/promises.js:10:11:10:26 | x => res.send(x) | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/promises.js:10:11:10:26 | x => res.send(x) | calleeImports |  |
-| autogenerated/Xss/ReflectedXss/promises.js:10:11:10:26 | x => res.send(x) | contextFunctionInterfaces |  |
-| autogenerated/Xss/ReflectedXss/promises.js:10:11:10:26 | x => res.send(x) | contextSurroundingFunctionParameters | (req, res)\n(x) |
-| autogenerated/Xss/ReflectedXss/promises.js:10:11:10:26 | x => res.send(x) | enclosingFunctionBody | req res Promise resolve reject resolve req query data then x res send x Promise resolve reject resolve req query data then x escapeHtml x then x res send x |
-| autogenerated/Xss/ReflectedXss/promises.js:10:11:10:26 | x => res.send(x) | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/Xss/ReflectedXss/promises.js:10:11:10:26 | x => res.send(x) | fileImports | express |
-| autogenerated/Xss/ReflectedXss/promises.js:10:11:10:26 | x => res.send(x) | receiverName |  |
-| autogenerated/Xss/ReflectedXss/promises.js:10:11:10:26 | x => res.send(x) | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/tst2.js:1:23:1:31 | 'express' | CalleeFlexibleAccessPath | require |
-| autogenerated/Xss/ReflectedXss/tst2.js:1:23:1:31 | 'express' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/tst2.js:1:23:1:31 | 'express' | InputArgumentIndex | 0 |
-| autogenerated/Xss/ReflectedXss/tst2.js:1:23:1:31 | 'express' | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/tst2.js:1:23:1:31 | 'express' | calleeImports |  |
-| autogenerated/Xss/ReflectedXss/tst2.js:1:23:1:31 | 'express' | contextFunctionInterfaces |  |
-| autogenerated/Xss/ReflectedXss/tst2.js:1:23:1:31 | 'express' | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/ReflectedXss/tst2.js:1:23:1:31 | 'express' | enclosingFunctionBody |  |
-| autogenerated/Xss/ReflectedXss/tst2.js:1:23:1:31 | 'express' | enclosingFunctionName |  |
-| autogenerated/Xss/ReflectedXss/tst2.js:1:23:1:31 | 'express' | fileImports | express |
-| autogenerated/Xss/ReflectedXss/tst2.js:1:23:1:31 | 'express' | receiverName |  |
-| autogenerated/Xss/ReflectedXss/tst2.js:1:23:1:31 | 'express' | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/tst2.js:5:9:5:19 | '/user/:id' | CalleeFlexibleAccessPath | app.get |
-| autogenerated/Xss/ReflectedXss/tst2.js:5:9:5:19 | '/user/:id' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/tst2.js:5:9:5:19 | '/user/:id' | InputArgumentIndex | 0 |
-| autogenerated/Xss/ReflectedXss/tst2.js:5:9:5:19 | '/user/:id' | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/tst2.js:5:9:5:19 | '/user/:id' | calleeImports | express |
-| autogenerated/Xss/ReflectedXss/tst2.js:5:9:5:19 | '/user/:id' | contextFunctionInterfaces |  |
-| autogenerated/Xss/ReflectedXss/tst2.js:5:9:5:19 | '/user/:id' | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/ReflectedXss/tst2.js:5:9:5:19 | '/user/:id' | enclosingFunctionBody |  |
-| autogenerated/Xss/ReflectedXss/tst2.js:5:9:5:19 | '/user/:id' | enclosingFunctionName |  |
-| autogenerated/Xss/ReflectedXss/tst2.js:5:9:5:19 | '/user/:id' | fileImports | express |
-| autogenerated/Xss/ReflectedXss/tst2.js:5:9:5:19 | '/user/:id' | receiverName | app |
-| autogenerated/Xss/ReflectedXss/tst2.js:5:9:5:19 | '/user/:id' | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/tst2.js:5:22:9:1 | functio ... OT OK\\n} | CalleeFlexibleAccessPath | app.get |
-| autogenerated/Xss/ReflectedXss/tst2.js:5:22:9:1 | functio ... OT OK\\n} | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/tst2.js:5:22:9:1 | functio ... OT OK\\n} | InputArgumentIndex | 1 |
-| autogenerated/Xss/ReflectedXss/tst2.js:5:22:9:1 | functio ... OT OK\\n} | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/tst2.js:5:22:9:1 | functio ... OT OK\\n} | calleeImports | express |
-| autogenerated/Xss/ReflectedXss/tst2.js:5:22:9:1 | functio ... OT OK\\n} | contextFunctionInterfaces |  |
-| autogenerated/Xss/ReflectedXss/tst2.js:5:22:9:1 | functio ... OT OK\\n} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/Xss/ReflectedXss/tst2.js:5:22:9:1 | functio ... OT OK\\n} | enclosingFunctionBody |  |
-| autogenerated/Xss/ReflectedXss/tst2.js:5:22:9:1 | functio ... OT OK\\n} | enclosingFunctionName |  |
-| autogenerated/Xss/ReflectedXss/tst2.js:5:22:9:1 | functio ... OT OK\\n} | fileImports | express |
-| autogenerated/Xss/ReflectedXss/tst2.js:5:22:9:1 | functio ... OT OK\\n} | receiverName | app |
-| autogenerated/Xss/ReflectedXss/tst2.js:5:22:9:1 | functio ... OT OK\\n} | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/tst2.js:13:9:13:14 | '/bar' | CalleeFlexibleAccessPath | app.get |
-| autogenerated/Xss/ReflectedXss/tst2.js:13:9:13:14 | '/bar' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/tst2.js:13:9:13:14 | '/bar' | InputArgumentIndex | 0 |
-| autogenerated/Xss/ReflectedXss/tst2.js:13:9:13:14 | '/bar' | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/tst2.js:13:9:13:14 | '/bar' | calleeImports | express |
-| autogenerated/Xss/ReflectedXss/tst2.js:13:9:13:14 | '/bar' | contextFunctionInterfaces |  |
-| autogenerated/Xss/ReflectedXss/tst2.js:13:9:13:14 | '/bar' | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/ReflectedXss/tst2.js:13:9:13:14 | '/bar' | enclosingFunctionBody |  |
-| autogenerated/Xss/ReflectedXss/tst2.js:13:9:13:14 | '/bar' | enclosingFunctionName |  |
-| autogenerated/Xss/ReflectedXss/tst2.js:13:9:13:14 | '/bar' | fileImports | express |
-| autogenerated/Xss/ReflectedXss/tst2.js:13:9:13:14 | '/bar' | receiverName | app |
-| autogenerated/Xss/ReflectedXss/tst2.js:13:9:13:14 | '/bar' | stringConcatenatedWith |  |
-| autogenerated/Xss/ReflectedXss/tst2.js:13:17:24:1 | functio ... // OK\\n} | CalleeFlexibleAccessPath | app.get |
-| autogenerated/Xss/ReflectedXss/tst2.js:13:17:24:1 | functio ... // OK\\n} | InputAccessPathFromCallee |  |
-| autogenerated/Xss/ReflectedXss/tst2.js:13:17:24:1 | functio ... // OK\\n} | InputArgumentIndex | 1 |
-| autogenerated/Xss/ReflectedXss/tst2.js:13:17:24:1 | functio ... // OK\\n} | assignedToPropName |  |
-| autogenerated/Xss/ReflectedXss/tst2.js:13:17:24:1 | functio ... // OK\\n} | calleeImports | express |
-| autogenerated/Xss/ReflectedXss/tst2.js:13:17:24:1 | functio ... // OK\\n} | contextFunctionInterfaces |  |
-| autogenerated/Xss/ReflectedXss/tst2.js:13:17:24:1 | functio ... // OK\\n} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/Xss/ReflectedXss/tst2.js:13:17:24:1 | functio ... // OK\\n} | enclosingFunctionBody |  |
-| autogenerated/Xss/ReflectedXss/tst2.js:13:17:24:1 | functio ... // OK\\n} | enclosingFunctionName |  |
-| autogenerated/Xss/ReflectedXss/tst2.js:13:17:24:1 | functio ... // OK\\n} | fileImports | express |
-| autogenerated/Xss/ReflectedXss/tst2.js:13:17:24:1 | functio ... // OK\\n} | receiverName | app |
-| autogenerated/Xss/ReflectedXss/tst2.js:13:17:24:1 | functio ... // OK\\n} | stringConcatenatedWith |  |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:1:20:1:25 | 'http' | CalleeFlexibleAccessPath | require |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:1:20:1:25 | 'http' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:1:20:1:25 | 'http' | InputArgumentIndex | 0 |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:1:20:1:25 | 'http' | assignedToPropName |  |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:1:20:1:25 | 'http' | calleeImports |  |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:1:20:1:25 | 'http' | contextFunctionInterfaces | format(files2) |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:1:20:1:25 | 'http' | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:1:20:1:25 | 'http' | enclosingFunctionBody |  |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:1:20:1:25 | 'http' | enclosingFunctionName |  |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:1:20:1:25 | 'http' | fileImports | express fs http |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:1:20:1:25 | 'http' | receiverName |  |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:1:20:1:25 | 'http' | stringConcatenatedWith |  |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:2:18:2:21 | 'fs' | CalleeFlexibleAccessPath | require |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:2:18:2:21 | 'fs' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:2:18:2:21 | 'fs' | InputArgumentIndex | 0 |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:2:18:2:21 | 'fs' | assignedToPropName |  |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:2:18:2:21 | 'fs' | calleeImports |  |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:2:18:2:21 | 'fs' | contextFunctionInterfaces | format(files2) |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:2:18:2:21 | 'fs' | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:2:18:2:21 | 'fs' | enclosingFunctionBody |  |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:2:18:2:21 | 'fs' | enclosingFunctionName |  |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:2:18:2:21 | 'fs' | fileImports | express fs http |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:2:18:2:21 | 'fs' | receiverName |  |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:2:18:2:21 | 'fs' | stringConcatenatedWith |  |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:4:23:4:31 | 'express' | CalleeFlexibleAccessPath | require |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:4:23:4:31 | 'express' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:4:23:4:31 | 'express' | InputArgumentIndex | 0 |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:4:23:4:31 | 'express' | assignedToPropName |  |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:4:23:4:31 | 'express' | calleeImports |  |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:4:23:4:31 | 'express' | contextFunctionInterfaces | format(files2) |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:4:23:4:31 | 'express' | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:4:23:4:31 | 'express' | enclosingFunctionBody |  |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:4:23:4:31 | 'express' | enclosingFunctionName |  |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:4:23:4:31 | 'express' | fileImports | express fs http |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:4:23:4:31 | 'express' | receiverName |  |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:4:23:4:31 | 'express' | stringConcatenatedWith |  |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:6:15:6:17 | '/' | CalleeFlexibleAccessPath | express().get |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:6:15:6:17 | '/' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:6:15:6:17 | '/' | InputArgumentIndex | 0 |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:6:15:6:17 | '/' | assignedToPropName |  |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:6:15:6:17 | '/' | calleeImports | express |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:6:15:6:17 | '/' | contextFunctionInterfaces | format(files2) |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:6:15:6:17 | '/' | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:6:15:6:17 | '/' | enclosingFunctionBody |  |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:6:15:6:17 | '/' | enclosingFunctionName |  |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:6:15:6:17 | '/' | fileImports | express fs http |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:6:15:6:17 | '/' | receiverName |  |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:6:15:6:17 | '/' | stringConcatenatedWith |  |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:6:20:10:1 | functio ...   });\\n} | CalleeFlexibleAccessPath | express().get |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:6:20:10:1 | functio ...   });\\n} | InputAccessPathFromCallee |  |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:6:20:10:1 | functio ...   });\\n} | InputArgumentIndex | 1 |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:6:20:10:1 | functio ...   });\\n} | assignedToPropName |  |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:6:20:10:1 | functio ...   });\\n} | calleeImports | express |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:6:20:10:1 | functio ...   });\\n} | contextFunctionInterfaces | format(files2) |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:6:20:10:1 | functio ...   });\\n} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:6:20:10:1 | functio ...   });\\n} | enclosingFunctionBody |  |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:6:20:10:1 | functio ...   });\\n} | enclosingFunctionName |  |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:6:20:10:1 | functio ...   });\\n} | fileImports | express fs http |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:6:20:10:1 | functio ...   });\\n} | receiverName |  |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:6:20:10:1 | functio ...   });\\n} | stringConcatenatedWith |  |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:7:16:7:23 | "/myDir" | CalleeFlexibleAccessPath | fs.readdir |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:7:16:7:23 | "/myDir" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:7:16:7:23 | "/myDir" | InputArgumentIndex | 0 |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:7:16:7:23 | "/myDir" | assignedToPropName |  |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:7:16:7:23 | "/myDir" | calleeImports | fs |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:7:16:7:23 | "/myDir" | contextFunctionInterfaces | format(files2) |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:7:16:7:23 | "/myDir" | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:7:16:7:23 | "/myDir" | enclosingFunctionBody | req res fs readdir /myDir error files1 res send files1 |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:7:16:7:23 | "/myDir" | enclosingFunctionName | get#functionalargument |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:7:16:7:23 | "/myDir" | fileImports | express fs http |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:7:16:7:23 | "/myDir" | receiverName | fs |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:7:16:7:23 | "/myDir" | stringConcatenatedWith |  |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:7:26:9:5 | functio ... K\\n    } | CalleeFlexibleAccessPath | fs.readdir |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:7:26:9:5 | functio ... K\\n    } | InputAccessPathFromCallee |  |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:7:26:9:5 | functio ... K\\n    } | InputArgumentIndex | 1 |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:7:26:9:5 | functio ... K\\n    } | assignedToPropName |  |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:7:26:9:5 | functio ... K\\n    } | calleeImports | fs |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:7:26:9:5 | functio ... K\\n    } | contextFunctionInterfaces | format(files2) |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:7:26:9:5 | functio ... K\\n    } | contextSurroundingFunctionParameters | (req, res)\n(error, files1) |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:7:26:9:5 | functio ... K\\n    } | enclosingFunctionBody | req res fs readdir /myDir error files1 res send files1 |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:7:26:9:5 | functio ... K\\n    } | enclosingFunctionName | get#functionalargument |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:7:26:9:5 | functio ... K\\n    } | fileImports | express fs http |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:7:26:9:5 | functio ... K\\n    } | receiverName | fs |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:7:26:9:5 | functio ... K\\n    } | stringConcatenatedWith |  |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:15:19:40:1 | functio ...   });\\n} | CalleeFlexibleAccessPath | http.createServer |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:15:19:40:1 | functio ...   });\\n} | InputAccessPathFromCallee |  |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:15:19:40:1 | functio ...   });\\n} | InputArgumentIndex | 0 |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:15:19:40:1 | functio ...   });\\n} | assignedToPropName |  |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:15:19:40:1 | functio ...   });\\n} | calleeImports | http |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:15:19:40:1 | functio ...   });\\n} | contextFunctionInterfaces | format(files2) |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:15:19:40:1 | functio ...   });\\n} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:15:19:40:1 | functio ...   });\\n} | enclosingFunctionBody |  |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:15:19:40:1 | functio ...   });\\n} | enclosingFunctionName |  |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:15:19:40:1 | functio ...   });\\n} | fileImports | express fs http |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:15:19:40:1 | functio ...   });\\n} | receiverName | http |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:15:19:40:1 | functio ...   });\\n} | stringConcatenatedWith |  |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:19:21:19:24 | sort | CalleeFlexibleAccessPath | files2.sort |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:19:21:19:24 | sort | InputAccessPathFromCallee |  |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:19:21:19:24 | sort | InputArgumentIndex | 0 |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:19:21:19:24 | sort | assignedToPropName |  |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:19:21:19:24 | sort | calleeImports |  |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:19:21:19:24 | sort | contextFunctionInterfaces | format(files2) |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:19:21:19:24 | sort | contextSurroundingFunctionParameters | (files2) |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:19:21:19:24 | sort | enclosingFunctionBody | req res format files2 files3 files2 sort sort forEach file files3 push <li> file </li> files3 join  fs readdir /myDir error files1 res write files1 dirs files2 files1 forEach file files2 push file res write files2 files3 format files2 res write files3 |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:19:21:19:24 | sort | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:19:21:19:24 | sort | fileImports | express fs http |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:19:21:19:24 | sort | receiverName | files2 |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:19:21:19:24 | sort | stringConcatenatedWith |  |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:19:35:21:9 | functio ...       } | CalleeFlexibleAccessPath | files2.sort().forEach |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:19:35:21:9 | functio ...       } | InputAccessPathFromCallee |  |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:19:35:21:9 | functio ...       } | InputArgumentIndex | 0 |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:19:35:21:9 | functio ...       } | assignedToPropName |  |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:19:35:21:9 | functio ...       } | calleeImports |  |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:19:35:21:9 | functio ...       } | contextFunctionInterfaces | format(files2) |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:19:35:21:9 | functio ...       } | contextSurroundingFunctionParameters | (files2)\n(file) |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:19:35:21:9 | functio ...       } | enclosingFunctionBody | req res format files2 files3 files2 sort sort forEach file files3 push <li> file </li> files3 join  fs readdir /myDir error files1 res write files1 dirs files2 files1 forEach file files2 push file res write files2 files3 format files2 res write files3 |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:19:35:21:9 | functio ...       } | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:19:35:21:9 | functio ...       } | fileImports | express fs http |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:19:35:21:9 | functio ...       } | receiverName |  |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:19:35:21:9 | functio ...       } | stringConcatenatedWith |  |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:20:25:20:30 | '<li>' | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:20:25:20:30 | '<li>' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:20:25:20:30 | '<li>' | InputArgumentIndex |  |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:20:25:20:30 | '<li>' | assignedToPropName |  |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:20:25:20:30 | '<li>' | calleeImports |  |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:20:25:20:30 | '<li>' | contextFunctionInterfaces | format(files2) |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:20:25:20:30 | '<li>' | contextSurroundingFunctionParameters | (files2)\n(file) |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:20:25:20:30 | '<li>' | enclosingFunctionBody | req res format files2 files3 files2 sort sort forEach file files3 push <li> file </li> files3 join  fs readdir /myDir error files1 res write files1 dirs files2 files1 forEach file files2 push file res write files2 files3 format files2 res write files3 |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:20:25:20:30 | '<li>' | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:20:25:20:30 | '<li>' | fileImports | express fs http |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:20:25:20:30 | '<li>' | receiverName |  |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:20:25:20:30 | '<li>' | stringConcatenatedWith |  -endpoint- file + '</li>' |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:20:25:20:37 | '<li>' + file | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:20:25:20:37 | '<li>' + file | InputAccessPathFromCallee |  |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:20:25:20:37 | '<li>' + file | InputArgumentIndex |  |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:20:25:20:37 | '<li>' + file | assignedToPropName |  |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:20:25:20:37 | '<li>' + file | calleeImports |  |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:20:25:20:37 | '<li>' + file | contextFunctionInterfaces | format(files2) |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:20:25:20:37 | '<li>' + file | contextSurroundingFunctionParameters | (files2)\n(file) |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:20:25:20:37 | '<li>' + file | enclosingFunctionBody | req res format files2 files3 files2 sort sort forEach file files3 push <li> file </li> files3 join  fs readdir /myDir error files1 res write files1 dirs files2 files1 forEach file files2 push file res write files2 files3 format files2 res write files3 |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:20:25:20:37 | '<li>' + file | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:20:25:20:37 | '<li>' + file | fileImports | express fs http |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:20:25:20:37 | '<li>' + file | receiverName |  |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:20:25:20:37 | '<li>' + file | stringConcatenatedWith |  |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:20:34:20:37 | file | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:20:34:20:37 | file | InputAccessPathFromCallee |  |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:20:34:20:37 | file | InputArgumentIndex |  |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:20:34:20:37 | file | assignedToPropName |  |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:20:34:20:37 | file | calleeImports |  |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:20:34:20:37 | file | contextFunctionInterfaces | format(files2) |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:20:34:20:37 | file | contextSurroundingFunctionParameters | (files2)\n(file) |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:20:34:20:37 | file | enclosingFunctionBody | req res format files2 files3 files2 sort sort forEach file files3 push <li> file </li> files3 join  fs readdir /myDir error files1 res write files1 dirs files2 files1 forEach file files2 push file res write files2 files3 format files2 res write files3 |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:20:34:20:37 | file | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:20:34:20:37 | file | fileImports | express fs http |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:20:34:20:37 | file | receiverName |  |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:20:34:20:37 | file | stringConcatenatedWith | '<li>' -endpoint- '</li>' |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:20:41:20:47 | '</li>' | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:20:41:20:47 | '</li>' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:20:41:20:47 | '</li>' | InputArgumentIndex |  |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:20:41:20:47 | '</li>' | assignedToPropName |  |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:20:41:20:47 | '</li>' | calleeImports |  |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:20:41:20:47 | '</li>' | contextFunctionInterfaces | format(files2) |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:20:41:20:47 | '</li>' | contextSurroundingFunctionParameters | (files2)\n(file) |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:20:41:20:47 | '</li>' | enclosingFunctionBody | req res format files2 files3 files2 sort sort forEach file files3 push <li> file </li> files3 join  fs readdir /myDir error files1 res write files1 dirs files2 files1 forEach file files2 push file res write files2 files3 format files2 res write files3 |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:20:41:20:47 | '</li>' | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:20:41:20:47 | '</li>' | fileImports | express fs http |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:20:41:20:47 | '</li>' | receiverName |  |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:20:41:20:47 | '</li>' | stringConcatenatedWith | '<li>' + file -endpoint-  |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:25:16:25:23 | "/myDir" | CalleeFlexibleAccessPath | fs.readdir |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:25:16:25:23 | "/myDir" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:25:16:25:23 | "/myDir" | InputArgumentIndex | 0 |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:25:16:25:23 | "/myDir" | assignedToPropName |  |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:25:16:25:23 | "/myDir" | calleeImports | fs |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:25:16:25:23 | "/myDir" | contextFunctionInterfaces | format(files2) |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:25:16:25:23 | "/myDir" | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:25:16:25:23 | "/myDir" | enclosingFunctionBody | req res format files2 files3 files2 sort sort forEach file files3 push <li> file </li> files3 join  fs readdir /myDir error files1 res write files1 dirs files2 files1 forEach file files2 push file res write files2 files3 format files2 res write files3 |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:25:16:25:23 | "/myDir" | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:25:16:25:23 | "/myDir" | fileImports | express fs http |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:25:16:25:23 | "/myDir" | receiverName | fs |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:25:16:25:23 | "/myDir" | stringConcatenatedWith |  |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:25:26:39:5 | functio ... \\n\\n    } | CalleeFlexibleAccessPath | fs.readdir |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:25:26:39:5 | functio ... \\n\\n    } | InputAccessPathFromCallee |  |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:25:26:39:5 | functio ... \\n\\n    } | InputArgumentIndex | 1 |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:25:26:39:5 | functio ... \\n\\n    } | assignedToPropName |  |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:25:26:39:5 | functio ... \\n\\n    } | calleeImports | fs |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:25:26:39:5 | functio ... \\n\\n    } | contextFunctionInterfaces | format(files2) |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:25:26:39:5 | functio ... \\n\\n    } | contextSurroundingFunctionParameters | (req, res)\n(error, files1) |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:25:26:39:5 | functio ... \\n\\n    } | enclosingFunctionBody | req res format files2 files3 files2 sort sort forEach file files3 push <li> file </li> files3 join  fs readdir /myDir error files1 res write files1 dirs files2 files1 forEach file files2 push file res write files2 files3 format files2 res write files3 |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:25:26:39:5 | functio ... \\n\\n    } | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:25:26:39:5 | functio ... \\n\\n    } | fileImports | express fs http |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:25:26:39:5 | functio ... \\n\\n    } | receiverName | fs |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:25:26:39:5 | functio ... \\n\\n    } | stringConcatenatedWith |  |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:30:24:32:9 | functio ...       } | CalleeFlexibleAccessPath | files1.forEach |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:30:24:32:9 | functio ...       } | InputAccessPathFromCallee |  |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:30:24:32:9 | functio ...       } | InputArgumentIndex | 0 |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:30:24:32:9 | functio ...       } | assignedToPropName |  |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:30:24:32:9 | functio ...       } | calleeImports |  |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:30:24:32:9 | functio ...       } | contextFunctionInterfaces | format(files2) |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:30:24:32:9 | functio ...       } | contextSurroundingFunctionParameters | (req, res)\n(error, files1)\n(file) |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:30:24:32:9 | functio ...       } | enclosingFunctionBody | req res format files2 files3 files2 sort sort forEach file files3 push <li> file </li> files3 join  fs readdir /myDir error files1 res write files1 dirs files2 files1 forEach file files2 push file res write files2 files3 format files2 res write files3 |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:30:24:32:9 | functio ...       } | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:30:24:32:9 | functio ...       } | fileImports | express fs http |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:30:24:32:9 | functio ...       } | receiverName | files1 |
-| autogenerated/Xss/StoredXss/xss-through-filenames.js:30:24:32:9 | functio ...       } | stringConcatenatedWith |  |
-| autogenerated/Xss/StoredXss/xss-through-torrent.js:1:30:1:44 | 'parse-torrent' | CalleeFlexibleAccessPath | require |
-| autogenerated/Xss/StoredXss/xss-through-torrent.js:1:30:1:44 | 'parse-torrent' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/StoredXss/xss-through-torrent.js:1:30:1:44 | 'parse-torrent' | InputArgumentIndex | 0 |
-| autogenerated/Xss/StoredXss/xss-through-torrent.js:1:30:1:44 | 'parse-torrent' | assignedToPropName |  |
-| autogenerated/Xss/StoredXss/xss-through-torrent.js:1:30:1:44 | 'parse-torrent' | calleeImports |  |
-| autogenerated/Xss/StoredXss/xss-through-torrent.js:1:30:1:44 | 'parse-torrent' | contextFunctionInterfaces |  |
-| autogenerated/Xss/StoredXss/xss-through-torrent.js:1:30:1:44 | 'parse-torrent' | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/StoredXss/xss-through-torrent.js:1:30:1:44 | 'parse-torrent' | enclosingFunctionBody |  |
-| autogenerated/Xss/StoredXss/xss-through-torrent.js:1:30:1:44 | 'parse-torrent' | enclosingFunctionName |  |
-| autogenerated/Xss/StoredXss/xss-through-torrent.js:1:30:1:44 | 'parse-torrent' | fileImports | express parse-torrent |
-| autogenerated/Xss/StoredXss/xss-through-torrent.js:1:30:1:44 | 'parse-torrent' | receiverName |  |
-| autogenerated/Xss/StoredXss/xss-through-torrent.js:1:30:1:44 | 'parse-torrent' | stringConcatenatedWith |  |
-| autogenerated/Xss/StoredXss/xss-through-torrent.js:2:25:2:33 | 'express' | CalleeFlexibleAccessPath | require |
-| autogenerated/Xss/StoredXss/xss-through-torrent.js:2:25:2:33 | 'express' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/StoredXss/xss-through-torrent.js:2:25:2:33 | 'express' | InputArgumentIndex | 0 |
-| autogenerated/Xss/StoredXss/xss-through-torrent.js:2:25:2:33 | 'express' | assignedToPropName |  |
-| autogenerated/Xss/StoredXss/xss-through-torrent.js:2:25:2:33 | 'express' | calleeImports |  |
-| autogenerated/Xss/StoredXss/xss-through-torrent.js:2:25:2:33 | 'express' | contextFunctionInterfaces |  |
-| autogenerated/Xss/StoredXss/xss-through-torrent.js:2:25:2:33 | 'express' | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/StoredXss/xss-through-torrent.js:2:25:2:33 | 'express' | enclosingFunctionBody |  |
-| autogenerated/Xss/StoredXss/xss-through-torrent.js:2:25:2:33 | 'express' | enclosingFunctionName |  |
-| autogenerated/Xss/StoredXss/xss-through-torrent.js:2:25:2:33 | 'express' | fileImports | express parse-torrent |
-| autogenerated/Xss/StoredXss/xss-through-torrent.js:2:25:2:33 | 'express' | receiverName |  |
-| autogenerated/Xss/StoredXss/xss-through-torrent.js:2:25:2:33 | 'express' | stringConcatenatedWith |  |
-| autogenerated/Xss/StoredXss/xss-through-torrent.js:4:15:4:25 | '/user/:id' | CalleeFlexibleAccessPath | express().get |
-| autogenerated/Xss/StoredXss/xss-through-torrent.js:4:15:4:25 | '/user/:id' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/StoredXss/xss-through-torrent.js:4:15:4:25 | '/user/:id' | InputArgumentIndex | 0 |
-| autogenerated/Xss/StoredXss/xss-through-torrent.js:4:15:4:25 | '/user/:id' | assignedToPropName |  |
-| autogenerated/Xss/StoredXss/xss-through-torrent.js:4:15:4:25 | '/user/:id' | calleeImports | express |
-| autogenerated/Xss/StoredXss/xss-through-torrent.js:4:15:4:25 | '/user/:id' | contextFunctionInterfaces |  |
-| autogenerated/Xss/StoredXss/xss-through-torrent.js:4:15:4:25 | '/user/:id' | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/StoredXss/xss-through-torrent.js:4:15:4:25 | '/user/:id' | enclosingFunctionBody |  |
-| autogenerated/Xss/StoredXss/xss-through-torrent.js:4:15:4:25 | '/user/:id' | enclosingFunctionName |  |
-| autogenerated/Xss/StoredXss/xss-through-torrent.js:4:15:4:25 | '/user/:id' | fileImports | express parse-torrent |
-| autogenerated/Xss/StoredXss/xss-through-torrent.js:4:15:4:25 | '/user/:id' | receiverName |  |
-| autogenerated/Xss/StoredXss/xss-through-torrent.js:4:15:4:25 | '/user/:id' | stringConcatenatedWith |  |
-| autogenerated/Xss/StoredXss/xss-through-torrent.js:4:28:8:1 | functio ... OT OK\\n} | CalleeFlexibleAccessPath | express().get |
-| autogenerated/Xss/StoredXss/xss-through-torrent.js:4:28:8:1 | functio ... OT OK\\n} | InputAccessPathFromCallee |  |
-| autogenerated/Xss/StoredXss/xss-through-torrent.js:4:28:8:1 | functio ... OT OK\\n} | InputArgumentIndex | 1 |
-| autogenerated/Xss/StoredXss/xss-through-torrent.js:4:28:8:1 | functio ... OT OK\\n} | assignedToPropName |  |
-| autogenerated/Xss/StoredXss/xss-through-torrent.js:4:28:8:1 | functio ... OT OK\\n} | calleeImports | express |
-| autogenerated/Xss/StoredXss/xss-through-torrent.js:4:28:8:1 | functio ... OT OK\\n} | contextFunctionInterfaces |  |
-| autogenerated/Xss/StoredXss/xss-through-torrent.js:4:28:8:1 | functio ... OT OK\\n} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/Xss/StoredXss/xss-through-torrent.js:4:28:8:1 | functio ... OT OK\\n} | enclosingFunctionBody |  |
-| autogenerated/Xss/StoredXss/xss-through-torrent.js:4:28:8:1 | functio ... OT OK\\n} | enclosingFunctionName |  |
-| autogenerated/Xss/StoredXss/xss-through-torrent.js:4:28:8:1 | functio ... OT OK\\n} | fileImports | express parse-torrent |
-| autogenerated/Xss/StoredXss/xss-through-torrent.js:4:28:8:1 | functio ... OT OK\\n} | receiverName |  |
-| autogenerated/Xss/StoredXss/xss-through-torrent.js:4:28:8:1 | functio ... OT OK\\n} | stringConcatenatedWith |  |
-| autogenerated/Xss/StoredXss/xss-through-torrent.js:5:29:5:35 | unknown | CalleeFlexibleAccessPath | parseTorrent |
-| autogenerated/Xss/StoredXss/xss-through-torrent.js:5:29:5:35 | unknown | InputAccessPathFromCallee |  |
-| autogenerated/Xss/StoredXss/xss-through-torrent.js:5:29:5:35 | unknown | InputArgumentIndex | 0 |
-| autogenerated/Xss/StoredXss/xss-through-torrent.js:5:29:5:35 | unknown | assignedToPropName |  |
-| autogenerated/Xss/StoredXss/xss-through-torrent.js:5:29:5:35 | unknown | calleeImports | parse-torrent |
-| autogenerated/Xss/StoredXss/xss-through-torrent.js:5:29:5:35 | unknown | contextFunctionInterfaces |  |
-| autogenerated/Xss/StoredXss/xss-through-torrent.js:5:29:5:35 | unknown | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/Xss/StoredXss/xss-through-torrent.js:5:29:5:35 | unknown | enclosingFunctionBody | req res torrent parseTorrent unknown name torrent name res send name |
-| autogenerated/Xss/StoredXss/xss-through-torrent.js:5:29:5:35 | unknown | enclosingFunctionName | get#functionalargument |
-| autogenerated/Xss/StoredXss/xss-through-torrent.js:5:29:5:35 | unknown | fileImports | express parse-torrent |
-| autogenerated/Xss/StoredXss/xss-through-torrent.js:5:29:5:35 | unknown | receiverName |  |
-| autogenerated/Xss/StoredXss/xss-through-torrent.js:5:29:5:35 | unknown | stringConcatenatedWith |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:3:10:3:32 | ['jquer ... ry-ui'] | CalleeFlexibleAccessPath | define |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:3:10:3:32 | ['jquer ... ry-ui'] | InputAccessPathFromCallee |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:3:10:3:32 | ['jquer ... ry-ui'] | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:3:10:3:32 | ['jquer ... ry-ui'] | assignedToPropName |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:3:10:3:32 | ['jquer ... ry-ui'] | calleeImports |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:3:10:3:32 | ['jquer ... ry-ui'] | contextFunctionInterfaces |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:3:10:3:32 | ['jquer ... ry-ui'] | contextSurroundingFunctionParameters | (factory) |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:3:10:3:32 | ['jquer ... ry-ui'] | enclosingFunctionBody | factory define function define amd define jquery jquery-ui factory factory jQuery |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:3:10:3:32 | ['jquer ... ry-ui'] | enclosingFunctionName |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:3:10:3:32 | ['jquer ... ry-ui'] | fileImports | jquery jquery-ui |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:3:10:3:32 | ['jquer ... ry-ui'] | receiverName |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:3:10:3:32 | ['jquer ... ry-ui'] | stringConcatenatedWith |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:3:11:3:18 | 'jquery' | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:3:11:3:18 | 'jquery' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:3:11:3:18 | 'jquery' | InputArgumentIndex |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:3:11:3:18 | 'jquery' | assignedToPropName |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:3:11:3:18 | 'jquery' | calleeImports |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:3:11:3:18 | 'jquery' | contextFunctionInterfaces |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:3:11:3:18 | 'jquery' | contextSurroundingFunctionParameters | (factory) |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:3:11:3:18 | 'jquery' | enclosingFunctionBody | factory define function define amd define jquery jquery-ui factory factory jQuery |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:3:11:3:18 | 'jquery' | enclosingFunctionName |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:3:11:3:18 | 'jquery' | fileImports | jquery jquery-ui |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:3:11:3:18 | 'jquery' | receiverName |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:3:11:3:18 | 'jquery' | stringConcatenatedWith |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:3:21:3:31 | 'jquery-ui' | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:3:21:3:31 | 'jquery-ui' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:3:21:3:31 | 'jquery-ui' | InputArgumentIndex |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:3:21:3:31 | 'jquery-ui' | assignedToPropName |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:3:21:3:31 | 'jquery-ui' | calleeImports |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:3:21:3:31 | 'jquery-ui' | contextFunctionInterfaces |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:3:21:3:31 | 'jquery-ui' | contextSurroundingFunctionParameters | (factory) |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:3:21:3:31 | 'jquery-ui' | enclosingFunctionBody | factory define function define amd define jquery jquery-ui factory factory jQuery |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:3:21:3:31 | 'jquery-ui' | enclosingFunctionName |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:3:21:3:31 | 'jquery-ui' | fileImports | jquery jquery-ui |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:3:21:3:31 | 'jquery-ui' | receiverName |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:3:21:3:31 | 'jquery-ui' | stringConcatenatedWith |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:8:7:8:14 | "<span>" | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:8:7:8:14 | "<span>" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:8:7:8:14 | "<span>" | InputArgumentIndex |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:8:7:8:14 | "<span>" | assignedToPropName |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:8:7:8:14 | "<span>" | calleeImports |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:8:7:8:14 | "<span>" | contextFunctionInterfaces |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:8:7:8:14 | "<span>" | contextSurroundingFunctionParameters | ($) |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:8:7:8:14 | "<span>" | enclosingFunctionBody | $ $ <span> $ trim foo </span> |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:8:7:8:14 | "<span>" | enclosingFunctionName |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:8:7:8:14 | "<span>" | fileImports | jquery jquery-ui |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:8:7:8:14 | "<span>" | receiverName |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:8:7:8:14 | "<span>" | stringConcatenatedWith |  -endpoint- $.trim() + '</span>' |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:8:7:8:42 | "<span> ... /span>" | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:8:7:8:42 | "<span> ... /span>" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:8:7:8:42 | "<span> ... /span>" | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:8:7:8:42 | "<span> ... /span>" | assignedToPropName |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:8:7:8:42 | "<span> ... /span>" | calleeImports | jquery |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:8:7:8:42 | "<span> ... /span>" | contextFunctionInterfaces |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:8:7:8:42 | "<span> ... /span>" | contextSurroundingFunctionParameters | ($) |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:8:7:8:42 | "<span> ... /span>" | enclosingFunctionBody | $ $ <span> $ trim foo </span> |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:8:7:8:42 | "<span> ... /span>" | enclosingFunctionName |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:8:7:8:42 | "<span> ... /span>" | fileImports | jquery jquery-ui |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:8:7:8:42 | "<span> ... /span>" | receiverName |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:8:7:8:42 | "<span> ... /span>" | stringConcatenatedWith |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:8:18:8:30 | $.trim("foo") | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:8:18:8:30 | $.trim("foo") | InputAccessPathFromCallee |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:8:18:8:30 | $.trim("foo") | InputArgumentIndex |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:8:18:8:30 | $.trim("foo") | assignedToPropName |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:8:18:8:30 | $.trim("foo") | calleeImports |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:8:18:8:30 | $.trim("foo") | contextFunctionInterfaces |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:8:18:8:30 | $.trim("foo") | contextSurroundingFunctionParameters | ($) |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:8:18:8:30 | $.trim("foo") | enclosingFunctionBody | $ $ <span> $ trim foo </span> |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:8:18:8:30 | $.trim("foo") | enclosingFunctionName |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:8:18:8:30 | $.trim("foo") | fileImports | jquery jquery-ui |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:8:18:8:30 | $.trim("foo") | receiverName |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:8:18:8:30 | $.trim("foo") | stringConcatenatedWith | '<span>' -endpoint- '</span>' |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:8:25:8:29 | "foo" | CalleeFlexibleAccessPath | $.trim |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:8:25:8:29 | "foo" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:8:25:8:29 | "foo" | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:8:25:8:29 | "foo" | assignedToPropName |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:8:25:8:29 | "foo" | calleeImports | jquery |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:8:25:8:29 | "foo" | contextFunctionInterfaces |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:8:25:8:29 | "foo" | contextSurroundingFunctionParameters | ($) |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:8:25:8:29 | "foo" | enclosingFunctionBody | $ $ <span> $ trim foo </span> |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:8:25:8:29 | "foo" | enclosingFunctionName |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:8:25:8:29 | "foo" | fileImports | jquery jquery-ui |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:8:25:8:29 | "foo" | receiverName | $ |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:8:25:8:29 | "foo" | stringConcatenatedWith |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:8:34:8:42 | "</span>" | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:8:34:8:42 | "</span>" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:8:34:8:42 | "</span>" | InputArgumentIndex |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:8:34:8:42 | "</span>" | assignedToPropName |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:8:34:8:42 | "</span>" | calleeImports |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:8:34:8:42 | "</span>" | contextFunctionInterfaces |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:8:34:8:42 | "</span>" | contextSurroundingFunctionParameters | ($) |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:8:34:8:42 | "</span>" | enclosingFunctionBody | $ $ <span> $ trim foo </span> |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:8:34:8:42 | "</span>" | enclosingFunctionName |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:8:34:8:42 | "</span>" | fileImports | jquery jquery-ui |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:8:34:8:42 | "</span>" | receiverName |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:8:34:8:42 | "</span>" | stringConcatenatedWith | '<span>' + $.trim() -endpoint-  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:2:18:2:25 | "<span>" | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:2:18:2:25 | "<span>" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:2:18:2:25 | "<span>" | InputArgumentIndex |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:2:18:2:25 | "<span>" | assignedToPropName |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:2:18:2:25 | "<span>" | calleeImports |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:2:18:2:25 | "<span>" | contextFunctionInterfaces | constructor(s)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:2:18:2:25 | "<span>" | contextSurroundingFunctionParameters | (s) |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:2:18:2:25 | "<span>" | enclosingFunctionBody | s html <span> s </span> document querySelector #html innerHTML html |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:2:18:2:25 | "<span>" | enclosingFunctionName | xssThroughHTMLConstruction |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:2:18:2:25 | "<span>" | fileImports | ./jquery-plugin ./typed markdown-it striptags |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:2:18:2:25 | "<span>" | receiverName |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:2:18:2:25 | "<span>" | stringConcatenatedWith |  -endpoint- s + '</span>' |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:2:18:2:41 | "<span> ... /span>" | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:2:18:2:41 | "<span> ... /span>" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:2:18:2:41 | "<span> ... /span>" | InputArgumentIndex |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:2:18:2:41 | "<span> ... /span>" | assignedToPropName |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:2:18:2:41 | "<span> ... /span>" | calleeImports |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:2:18:2:41 | "<span> ... /span>" | contextFunctionInterfaces | constructor(s)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:2:18:2:41 | "<span> ... /span>" | contextSurroundingFunctionParameters | (s) |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:2:18:2:41 | "<span> ... /span>" | enclosingFunctionBody | s html <span> s </span> document querySelector #html innerHTML html |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:2:18:2:41 | "<span> ... /span>" | enclosingFunctionName | xssThroughHTMLConstruction |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:2:18:2:41 | "<span> ... /span>" | fileImports | ./jquery-plugin ./typed markdown-it striptags |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:2:18:2:41 | "<span> ... /span>" | receiverName |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:2:18:2:41 | "<span> ... /span>" | stringConcatenatedWith |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:2:29:2:29 | s | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:2:29:2:29 | s | InputAccessPathFromCallee |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:2:29:2:29 | s | InputArgumentIndex |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:2:29:2:29 | s | assignedToPropName |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:2:29:2:29 | s | calleeImports |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:2:29:2:29 | s | contextFunctionInterfaces | constructor(s)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:2:29:2:29 | s | contextSurroundingFunctionParameters | (s) |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:2:29:2:29 | s | enclosingFunctionBody | s html <span> s </span> document querySelector #html innerHTML html |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:2:29:2:29 | s | enclosingFunctionName | xssThroughHTMLConstruction |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:2:29:2:29 | s | fileImports | ./jquery-plugin ./typed markdown-it striptags |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:2:29:2:29 | s | receiverName |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:2:29:2:29 | s | stringConcatenatedWith | '<span>' -endpoint- '</span>' |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:2:33:2:41 | "</span>" | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:2:33:2:41 | "</span>" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:2:33:2:41 | "</span>" | InputArgumentIndex |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:2:33:2:41 | "</span>" | assignedToPropName |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:2:33:2:41 | "</span>" | calleeImports |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:2:33:2:41 | "</span>" | contextFunctionInterfaces | constructor(s)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:2:33:2:41 | "</span>" | contextSurroundingFunctionParameters | (s) |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:2:33:2:41 | "</span>" | enclosingFunctionBody | s html <span> s </span> document querySelector #html innerHTML html |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:2:33:2:41 | "</span>" | enclosingFunctionName | xssThroughHTMLConstruction |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:2:33:2:41 | "</span>" | fileImports | ./jquery-plugin ./typed markdown-it striptags |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:2:33:2:41 | "</span>" | receiverName |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:2:33:2:41 | "</span>" | stringConcatenatedWith | '<span>' + s -endpoint-  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:3:28:3:34 | "#html" | CalleeFlexibleAccessPath | document.querySelector |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:3:28:3:34 | "#html" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:3:28:3:34 | "#html" | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:3:28:3:34 | "#html" | assignedToPropName |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:3:28:3:34 | "#html" | calleeImports |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:3:28:3:34 | "#html" | contextFunctionInterfaces | constructor(s)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:3:28:3:34 | "#html" | contextSurroundingFunctionParameters | (s) |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:3:28:3:34 | "#html" | enclosingFunctionBody | s html <span> s </span> document querySelector #html innerHTML html |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:3:28:3:34 | "#html" | enclosingFunctionName | xssThroughHTMLConstruction |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:3:28:3:34 | "#html" | fileImports | ./jquery-plugin ./typed markdown-it striptags |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:3:28:3:34 | "#html" | receiverName | document |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:3:28:3:34 | "#html" | stringConcatenatedWith |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:3:49:3:52 | html | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:3:49:3:52 | html | InputAccessPathFromCallee |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:3:49:3:52 | html | InputArgumentIndex |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:3:49:3:52 | html | assignedToPropName | innerHTML |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:3:49:3:52 | html | calleeImports |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:3:49:3:52 | html | contextFunctionInterfaces | constructor(s)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:3:49:3:52 | html | contextSurroundingFunctionParameters | (s) |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:3:49:3:52 | html | enclosingFunctionBody | s html <span> s </span> document querySelector #html innerHTML html |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:3:49:3:52 | html | enclosingFunctionName | xssThroughHTMLConstruction |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:3:49:3:52 | html | fileImports | ./jquery-plugin ./typed markdown-it striptags |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:3:49:3:52 | html | receiverName |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:3:49:3:52 | html | stringConcatenatedWith |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:7:49:7:49 | s | CalleeFlexibleAccessPath | DOMParser().parseFromString |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:7:49:7:49 | s | InputAccessPathFromCallee |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:7:49:7:49 | s | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:7:49:7:49 | s | assignedToPropName |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:7:49:7:49 | s | calleeImports |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:7:49:7:49 | s | contextFunctionInterfaces | constructor(s)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:7:49:7:49 | s | contextSurroundingFunctionParameters | (s) |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:7:49:7:49 | s | enclosingFunctionBody | s doc DOMParser parseFromString s text/xml document querySelector #xml appendChild doc documentElement |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:7:49:7:49 | s | enclosingFunctionName | xssThroughXMLParsing |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:7:49:7:49 | s | fileImports | ./jquery-plugin ./typed markdown-it striptags |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:7:49:7:49 | s | receiverName |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:7:49:7:49 | s | stringConcatenatedWith |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:8:28:8:33 | "#xml" | CalleeFlexibleAccessPath | document.querySelector |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:8:28:8:33 | "#xml" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:8:28:8:33 | "#xml" | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:8:28:8:33 | "#xml" | assignedToPropName |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:8:28:8:33 | "#xml" | calleeImports |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:8:28:8:33 | "#xml" | contextFunctionInterfaces | constructor(s)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:8:28:8:33 | "#xml" | contextSurroundingFunctionParameters | (s) |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:8:28:8:33 | "#xml" | enclosingFunctionBody | s doc DOMParser parseFromString s text/xml document querySelector #xml appendChild doc documentElement |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:8:28:8:33 | "#xml" | enclosingFunctionName | xssThroughXMLParsing |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:8:28:8:33 | "#xml" | fileImports | ./jquery-plugin ./typed markdown-it striptags |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:8:28:8:33 | "#xml" | receiverName | document |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:8:28:8:33 | "#xml" | stringConcatenatedWith |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:8:48:8:66 | doc.documentElement | CalleeFlexibleAccessPath | document.querySelector().appendChild |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:8:48:8:66 | doc.documentElement | InputAccessPathFromCallee |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:8:48:8:66 | doc.documentElement | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:8:48:8:66 | doc.documentElement | assignedToPropName |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:8:48:8:66 | doc.documentElement | calleeImports |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:8:48:8:66 | doc.documentElement | contextFunctionInterfaces | constructor(s)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:8:48:8:66 | doc.documentElement | contextSurroundingFunctionParameters | (s) |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:8:48:8:66 | doc.documentElement | enclosingFunctionBody | s doc DOMParser parseFromString s text/xml document querySelector #xml appendChild doc documentElement |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:8:48:8:66 | doc.documentElement | enclosingFunctionName | xssThroughXMLParsing |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:8:48:8:66 | doc.documentElement | fileImports | ./jquery-plugin ./typed markdown-it striptags |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:8:48:8:66 | doc.documentElement | receiverName |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:8:48:8:66 | doc.documentElement | stringConcatenatedWith |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:12:49:12:49 | s | CalleeFlexibleAccessPath | DOMParser().parseFromString |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:12:49:12:49 | s | InputAccessPathFromCallee |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:12:49:12:49 | s | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:12:49:12:49 | s | assignedToPropName |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:12:49:12:49 | s | calleeImports |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:12:49:12:49 | s | contextFunctionInterfaces | constructor(s)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:12:49:12:49 | s | contextSurroundingFunctionParameters | (s) |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:12:49:12:49 | s | enclosingFunctionBody | s doc DOMParser parseFromString s text/xml xml doc documentElement tmp document createElement span tmp appendChild xml cloneNode document querySelector #xml appendChild tmp |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:12:49:12:49 | s | enclosingFunctionName | xssThroughMoreComplexXMLParsing |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:12:49:12:49 | s | fileImports | ./jquery-plugin ./typed markdown-it striptags |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:12:49:12:49 | s | receiverName |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:12:49:12:49 | s | stringConcatenatedWith |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:15:40:15:45 | 'span' | CalleeFlexibleAccessPath | document.createElement |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:15:40:15:45 | 'span' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:15:40:15:45 | 'span' | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:15:40:15:45 | 'span' | assignedToPropName |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:15:40:15:45 | 'span' | calleeImports |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:15:40:15:45 | 'span' | contextFunctionInterfaces | constructor(s)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:15:40:15:45 | 'span' | contextSurroundingFunctionParameters | (s) |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:15:40:15:45 | 'span' | enclosingFunctionBody | s doc DOMParser parseFromString s text/xml xml doc documentElement tmp document createElement span tmp appendChild xml cloneNode document querySelector #xml appendChild tmp |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:15:40:15:45 | 'span' | enclosingFunctionName | xssThroughMoreComplexXMLParsing |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:15:40:15:45 | 'span' | fileImports | ./jquery-plugin ./typed markdown-it striptags |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:15:40:15:45 | 'span' | receiverName | document |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:15:40:15:45 | 'span' | stringConcatenatedWith |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:16:21:16:35 | xml.cloneNode() | CalleeFlexibleAccessPath | tmp.appendChild |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:16:21:16:35 | xml.cloneNode() | InputAccessPathFromCallee |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:16:21:16:35 | xml.cloneNode() | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:16:21:16:35 | xml.cloneNode() | assignedToPropName |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:16:21:16:35 | xml.cloneNode() | calleeImports |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:16:21:16:35 | xml.cloneNode() | contextFunctionInterfaces | constructor(s)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:16:21:16:35 | xml.cloneNode() | contextSurroundingFunctionParameters | (s) |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:16:21:16:35 | xml.cloneNode() | enclosingFunctionBody | s doc DOMParser parseFromString s text/xml xml doc documentElement tmp document createElement span tmp appendChild xml cloneNode document querySelector #xml appendChild tmp |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:16:21:16:35 | xml.cloneNode() | enclosingFunctionName | xssThroughMoreComplexXMLParsing |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:16:21:16:35 | xml.cloneNode() | fileImports | ./jquery-plugin ./typed markdown-it striptags |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:16:21:16:35 | xml.cloneNode() | receiverName | tmp |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:16:21:16:35 | xml.cloneNode() | stringConcatenatedWith |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:17:28:17:33 | "#xml" | CalleeFlexibleAccessPath | document.querySelector |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:17:28:17:33 | "#xml" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:17:28:17:33 | "#xml" | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:17:28:17:33 | "#xml" | assignedToPropName |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:17:28:17:33 | "#xml" | calleeImports |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:17:28:17:33 | "#xml" | contextFunctionInterfaces | constructor(s)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:17:28:17:33 | "#xml" | contextSurroundingFunctionParameters | (s) |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:17:28:17:33 | "#xml" | enclosingFunctionBody | s doc DOMParser parseFromString s text/xml xml doc documentElement tmp document createElement span tmp appendChild xml cloneNode document querySelector #xml appendChild tmp |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:17:28:17:33 | "#xml" | enclosingFunctionName | xssThroughMoreComplexXMLParsing |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:17:28:17:33 | "#xml" | fileImports | ./jquery-plugin ./typed markdown-it striptags |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:17:28:17:33 | "#xml" | receiverName | document |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:17:28:17:33 | "#xml" | stringConcatenatedWith |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:17:48:17:50 | tmp | CalleeFlexibleAccessPath | document.querySelector().appendChild |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:17:48:17:50 | tmp | InputAccessPathFromCallee |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:17:48:17:50 | tmp | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:17:48:17:50 | tmp | assignedToPropName |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:17:48:17:50 | tmp | calleeImports |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:17:48:17:50 | tmp | contextFunctionInterfaces | constructor(s)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:17:48:17:50 | tmp | contextSurroundingFunctionParameters | (s) |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:17:48:17:50 | tmp | enclosingFunctionBody | s doc DOMParser parseFromString s text/xml xml doc documentElement tmp document createElement span tmp appendChild xml cloneNode document querySelector #xml appendChild tmp |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:17:48:17:50 | tmp | enclosingFunctionName | xssThroughMoreComplexXMLParsing |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:17:48:17:50 | tmp | fileImports | ./jquery-plugin ./typed markdown-it striptags |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:17:48:17:50 | tmp | receiverName |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:17:48:17:50 | tmp | stringConcatenatedWith |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:20:26:20:38 | 'markdown-it' | CalleeFlexibleAccessPath | require |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:20:26:20:38 | 'markdown-it' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:20:26:20:38 | 'markdown-it' | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:20:26:20:38 | 'markdown-it' | assignedToPropName |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:20:26:20:38 | 'markdown-it' | calleeImports |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:20:26:20:38 | 'markdown-it' | contextFunctionInterfaces | constructor(s)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:20:26:20:38 | 'markdown-it' | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:20:26:20:38 | 'markdown-it' | enclosingFunctionBody |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:20:26:20:38 | 'markdown-it' | enclosingFunctionName |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:20:26:20:38 | 'markdown-it' | fileImports | ./jquery-plugin ./typed markdown-it striptags |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:20:26:20:38 | 'markdown-it' | receiverName |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:20:26:20:38 | 'markdown-it' | stringConcatenatedWith |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:20:41:20:52 | {html: true} | CalleeFlexibleAccessPath | import(!) |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:20:41:20:52 | {html: true} | InputAccessPathFromCallee |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:20:41:20:52 | {html: true} | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:20:41:20:52 | {html: true} | assignedToPropName |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:20:41:20:52 | {html: true} | calleeImports | markdown-it |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:20:41:20:52 | {html: true} | contextFunctionInterfaces | constructor(s)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:20:41:20:52 | {html: true} | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:20:41:20:52 | {html: true} | enclosingFunctionBody |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:20:41:20:52 | {html: true} | enclosingFunctionName |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:20:41:20:52 | {html: true} | fileImports | ./jquery-plugin ./typed markdown-it striptags |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:20:41:20:52 | {html: true} | receiverName |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:20:41:20:52 | {html: true} | stringConcatenatedWith |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:20:48:20:51 | true | CalleeFlexibleAccessPath | import(!) |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:20:48:20:51 | true | InputAccessPathFromCallee | 0.html |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:20:48:20:51 | true | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:20:48:20:51 | true | assignedToPropName | html |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:20:48:20:51 | true | calleeImports | markdown-it |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:20:48:20:51 | true | contextFunctionInterfaces | constructor(s)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:20:48:20:51 | true | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:20:48:20:51 | true | enclosingFunctionBody |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:20:48:20:51 | true | enclosingFunctionName |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:20:48:20:51 | true | fileImports | ./jquery-plugin ./typed markdown-it striptags |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:20:48:20:51 | true | receiverName |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:20:48:20:51 | true | stringConcatenatedWith |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:22:18:22:35 | markdown.render(s) | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:22:18:22:35 | markdown.render(s) | InputAccessPathFromCallee |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:22:18:22:35 | markdown.render(s) | InputArgumentIndex |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:22:18:22:35 | markdown.render(s) | assignedToPropName |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:22:18:22:35 | markdown.render(s) | calleeImports |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:22:18:22:35 | markdown.render(s) | contextFunctionInterfaces | constructor(s)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:22:18:22:35 | markdown.render(s) | contextSurroundingFunctionParameters | (s) |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:22:18:22:35 | markdown.render(s) | enclosingFunctionBody | s html markdown render s document querySelector #markdown innerHTML html |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:22:18:22:35 | markdown.render(s) | enclosingFunctionName | xssThroughMarkdown |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:22:18:22:35 | markdown.render(s) | fileImports | ./jquery-plugin ./typed markdown-it striptags |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:22:18:22:35 | markdown.render(s) | receiverName |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:22:18:22:35 | markdown.render(s) | stringConcatenatedWith |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:23:28:23:38 | "#markdown" | CalleeFlexibleAccessPath | document.querySelector |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:23:28:23:38 | "#markdown" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:23:28:23:38 | "#markdown" | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:23:28:23:38 | "#markdown" | assignedToPropName |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:23:28:23:38 | "#markdown" | calleeImports |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:23:28:23:38 | "#markdown" | contextFunctionInterfaces | constructor(s)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:23:28:23:38 | "#markdown" | contextSurroundingFunctionParameters | (s) |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:23:28:23:38 | "#markdown" | enclosingFunctionBody | s html markdown render s document querySelector #markdown innerHTML html |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:23:28:23:38 | "#markdown" | enclosingFunctionName | xssThroughMarkdown |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:23:28:23:38 | "#markdown" | fileImports | ./jquery-plugin ./typed markdown-it striptags |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:23:28:23:38 | "#markdown" | receiverName | document |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:23:28:23:38 | "#markdown" | stringConcatenatedWith |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:23:53:23:56 | html | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:23:53:23:56 | html | InputAccessPathFromCallee |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:23:53:23:56 | html | InputArgumentIndex |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:23:53:23:56 | html | assignedToPropName | innerHTML |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:23:53:23:56 | html | calleeImports |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:23:53:23:56 | html | contextFunctionInterfaces | constructor(s)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:23:53:23:56 | html | contextSurroundingFunctionParameters | (s) |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:23:53:23:56 | html | enclosingFunctionBody | s html markdown render s document querySelector #markdown innerHTML html |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:23:53:23:56 | html | enclosingFunctionName | xssThroughMarkdown |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:23:53:23:56 | html | fileImports | ./jquery-plugin ./typed markdown-it striptags |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:23:53:23:56 | html | receiverName |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:23:53:23:56 | html | stringConcatenatedWith |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:26:27:26:37 | 'striptags' | CalleeFlexibleAccessPath | require |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:26:27:26:37 | 'striptags' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:26:27:26:37 | 'striptags' | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:26:27:26:37 | 'striptags' | assignedToPropName |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:26:27:26:37 | 'striptags' | calleeImports |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:26:27:26:37 | 'striptags' | contextFunctionInterfaces | constructor(s)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:26:27:26:37 | 'striptags' | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:26:27:26:37 | 'striptags' | enclosingFunctionBody |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:26:27:26:37 | 'striptags' | enclosingFunctionName |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:26:27:26:37 | 'striptags' | fileImports | ./jquery-plugin ./typed markdown-it striptags |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:26:27:26:37 | 'striptags' | receiverName |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:26:27:26:37 | 'striptags' | stringConcatenatedWith |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:27:32:30:1 | functio ... html;\\n} | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:27:32:30:1 | functio ... html;\\n} | InputAccessPathFromCallee |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:27:32:30:1 | functio ... html;\\n} | InputArgumentIndex |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:27:32:30:1 | functio ... html;\\n} | assignedToPropName | sanitizedHTML |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:27:32:30:1 | functio ... html;\\n} | calleeImports |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:27:32:30:1 | functio ... html;\\n} | contextFunctionInterfaces | constructor(s)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:27:32:30:1 | functio ... html;\\n} | contextSurroundingFunctionParameters | (s) |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:27:32:30:1 | functio ... html;\\n} | enclosingFunctionBody |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:27:32:30:1 | functio ... html;\\n} | enclosingFunctionName |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:27:32:30:1 | functio ... html;\\n} | fileImports | ./jquery-plugin ./typed markdown-it striptags |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:27:32:30:1 | functio ... html;\\n} | receiverName |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:27:32:30:1 | functio ... html;\\n} | stringConcatenatedWith |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:28:18:28:52 | stripta ... span>") | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:28:18:28:52 | stripta ... span>") | InputAccessPathFromCallee |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:28:18:28:52 | stripta ... span>") | InputArgumentIndex |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:28:18:28:52 | stripta ... span>") | assignedToPropName |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:28:18:28:52 | stripta ... span>") | calleeImports |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:28:18:28:52 | stripta ... span>") | contextFunctionInterfaces | constructor(s)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:28:18:28:52 | stripta ... span>") | contextSurroundingFunctionParameters | (s) |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:28:18:28:52 | stripta ... span>") | enclosingFunctionBody | s html striptags <span> s </span> document querySelector #sanitized innerHTML html |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:28:18:28:52 | stripta ... span>") | enclosingFunctionName | sanitizedHTML |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:28:18:28:52 | stripta ... span>") | fileImports | ./jquery-plugin ./typed markdown-it striptags |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:28:18:28:52 | stripta ... span>") | receiverName |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:28:18:28:52 | stripta ... span>") | stringConcatenatedWith |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:28:28:28:35 | "<span>" | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:28:28:28:35 | "<span>" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:28:28:28:35 | "<span>" | InputArgumentIndex |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:28:28:28:35 | "<span>" | assignedToPropName |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:28:28:28:35 | "<span>" | calleeImports |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:28:28:28:35 | "<span>" | contextFunctionInterfaces | constructor(s)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:28:28:28:35 | "<span>" | contextSurroundingFunctionParameters | (s) |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:28:28:28:35 | "<span>" | enclosingFunctionBody | s html striptags <span> s </span> document querySelector #sanitized innerHTML html |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:28:28:28:35 | "<span>" | enclosingFunctionName | sanitizedHTML |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:28:28:28:35 | "<span>" | fileImports | ./jquery-plugin ./typed markdown-it striptags |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:28:28:28:35 | "<span>" | receiverName |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:28:28:28:35 | "<span>" | stringConcatenatedWith |  -endpoint- s + '</span>' |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:28:39:28:39 | s | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:28:39:28:39 | s | InputAccessPathFromCallee |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:28:39:28:39 | s | InputArgumentIndex |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:28:39:28:39 | s | assignedToPropName |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:28:39:28:39 | s | calleeImports |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:28:39:28:39 | s | contextFunctionInterfaces | constructor(s)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:28:39:28:39 | s | contextSurroundingFunctionParameters | (s) |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:28:39:28:39 | s | enclosingFunctionBody | s html striptags <span> s </span> document querySelector #sanitized innerHTML html |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:28:39:28:39 | s | enclosingFunctionName | sanitizedHTML |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:28:39:28:39 | s | fileImports | ./jquery-plugin ./typed markdown-it striptags |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:28:39:28:39 | s | receiverName |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:28:39:28:39 | s | stringConcatenatedWith | '<span>' -endpoint- '</span>' |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:28:43:28:51 | "</span>" | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:28:43:28:51 | "</span>" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:28:43:28:51 | "</span>" | InputArgumentIndex |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:28:43:28:51 | "</span>" | assignedToPropName |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:28:43:28:51 | "</span>" | calleeImports |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:28:43:28:51 | "</span>" | contextFunctionInterfaces | constructor(s)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:28:43:28:51 | "</span>" | contextSurroundingFunctionParameters | (s) |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:28:43:28:51 | "</span>" | enclosingFunctionBody | s html striptags <span> s </span> document querySelector #sanitized innerHTML html |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:28:43:28:51 | "</span>" | enclosingFunctionName | sanitizedHTML |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:28:43:28:51 | "</span>" | fileImports | ./jquery-plugin ./typed markdown-it striptags |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:28:43:28:51 | "</span>" | receiverName |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:28:43:28:51 | "</span>" | stringConcatenatedWith | '<span>' + s -endpoint-  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:29:28:29:39 | "#sanitized" | CalleeFlexibleAccessPath | document.querySelector |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:29:28:29:39 | "#sanitized" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:29:28:29:39 | "#sanitized" | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:29:28:29:39 | "#sanitized" | assignedToPropName |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:29:28:29:39 | "#sanitized" | calleeImports |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:29:28:29:39 | "#sanitized" | contextFunctionInterfaces | constructor(s)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:29:28:29:39 | "#sanitized" | contextSurroundingFunctionParameters | (s) |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:29:28:29:39 | "#sanitized" | enclosingFunctionBody | s html striptags <span> s </span> document querySelector #sanitized innerHTML html |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:29:28:29:39 | "#sanitized" | enclosingFunctionName | sanitizedHTML |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:29:28:29:39 | "#sanitized" | fileImports | ./jquery-plugin ./typed markdown-it striptags |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:29:28:29:39 | "#sanitized" | receiverName | document |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:29:28:29:39 | "#sanitized" | stringConcatenatedWith |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:29:54:29:57 | html | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:29:54:29:57 | html | InputAccessPathFromCallee |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:29:54:29:57 | html | InputArgumentIndex |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:29:54:29:57 | html | assignedToPropName | innerHTML |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:29:54:29:57 | html | calleeImports |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:29:54:29:57 | html | contextFunctionInterfaces | constructor(s)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:29:54:29:57 | html | contextSurroundingFunctionParameters | (s) |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:29:54:29:57 | html | enclosingFunctionBody | s html striptags <span> s </span> document querySelector #sanitized innerHTML html |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:29:54:29:57 | html | enclosingFunctionName | sanitizedHTML |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:29:54:29:57 | html | fileImports | ./jquery-plugin ./typed markdown-it striptags |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:29:54:29:57 | html | receiverName |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:29:54:29:57 | html | stringConcatenatedWith |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:32:29:32:37 | "./typed" | CalleeFlexibleAccessPath | require |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:32:29:32:37 | "./typed" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:32:29:32:37 | "./typed" | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:32:29:32:37 | "./typed" | assignedToPropName |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:32:29:32:37 | "./typed" | calleeImports |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:32:29:32:37 | "./typed" | contextFunctionInterfaces | constructor(s)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:32:29:32:37 | "./typed" | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:32:29:32:37 | "./typed" | enclosingFunctionBody |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:32:29:32:37 | "./typed" | enclosingFunctionName |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:32:29:32:37 | "./typed" | fileImports | ./jquery-plugin ./typed markdown-it striptags |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:32:29:32:37 | "./typed" | receiverName |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:32:29:32:37 | "./typed" | stringConcatenatedWith |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:34:33:34:49 | "./jquery-plugin" | CalleeFlexibleAccessPath | require |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:34:33:34:49 | "./jquery-plugin" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:34:33:34:49 | "./jquery-plugin" | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:34:33:34:49 | "./jquery-plugin" | assignedToPropName |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:34:33:34:49 | "./jquery-plugin" | calleeImports |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:34:33:34:49 | "./jquery-plugin" | contextFunctionInterfaces | constructor(s)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:34:33:34:49 | "./jquery-plugin" | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:34:33:34:49 | "./jquery-plugin" | enclosingFunctionBody |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:34:33:34:49 | "./jquery-plugin" | enclosingFunctionName |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:34:33:34:49 | "./jquery-plugin" | fileImports | ./jquery-plugin ./typed markdown-it striptags |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:34:33:34:49 | "./jquery-plugin" | receiverName |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:34:33:34:49 | "./jquery-plugin" | stringConcatenatedWith |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:37:49:37:49 | s | CalleeFlexibleAccessPath | DOMParser().parseFromString |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:37:49:37:49 | s | InputAccessPathFromCallee |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:37:49:37:49 | s | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:37:49:37:49 | s | assignedToPropName |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:37:49:37:49 | s | calleeImports |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:37:49:37:49 | s | contextFunctionInterfaces | constructor(s)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:37:49:37:49 | s | contextSurroundingFunctionParameters | (s) |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:37:49:37:49 | s | enclosingFunctionBody | s doc DOMParser parseFromString s text/xml |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:37:49:37:49 | s | enclosingFunctionName | plainDOMXMLParsing |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:37:49:37:49 | s | fileImports | ./jquery-plugin ./typed markdown-it striptags |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:37:49:37:49 | s | receiverName |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:37:49:37:49 | s | stringConcatenatedWith |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:47:32:47:39 | "#class" | CalleeFlexibleAccessPath | document.querySelector |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:47:32:47:39 | "#class" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:47:32:47:39 | "#class" | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:47:32:47:39 | "#class" | assignedToPropName |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:47:32:47:39 | "#class" | calleeImports |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:47:32:47:39 | "#class" | contextFunctionInterfaces | constructor(s)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:47:32:47:39 | "#class" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:47:32:47:39 | "#class" | enclosingFunctionBody | document querySelector #class innerHTML <span> step </span> |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:47:32:47:39 | "#class" | enclosingFunctionName | doXss |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:47:32:47:39 | "#class" | fileImports | ./jquery-plugin ./typed markdown-it striptags |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:47:32:47:39 | "#class" | receiverName | document |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:47:32:47:39 | "#class" | stringConcatenatedWith |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:47:54:47:61 | "<span>" | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:47:54:47:61 | "<span>" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:47:54:47:61 | "<span>" | InputArgumentIndex |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:47:54:47:61 | "<span>" | assignedToPropName |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:47:54:47:61 | "<span>" | calleeImports |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:47:54:47:61 | "<span>" | contextFunctionInterfaces | constructor(s)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:47:54:47:61 | "<span>" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:47:54:47:61 | "<span>" | enclosingFunctionBody | document querySelector #class innerHTML <span> step </span> |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:47:54:47:61 | "<span>" | enclosingFunctionName | doXss |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:47:54:47:61 | "<span>" | fileImports | ./jquery-plugin ./typed markdown-it striptags |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:47:54:47:61 | "<span>" | receiverName |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:47:54:47:61 | "<span>" | stringConcatenatedWith |  -endpoint- this.step + '</span>' |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:47:54:47:85 | "<span> ... /span>" | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:47:54:47:85 | "<span> ... /span>" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:47:54:47:85 | "<span> ... /span>" | InputArgumentIndex |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:47:54:47:85 | "<span> ... /span>" | assignedToPropName | innerHTML |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:47:54:47:85 | "<span> ... /span>" | calleeImports |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:47:54:47:85 | "<span> ... /span>" | contextFunctionInterfaces | constructor(s)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:47:54:47:85 | "<span> ... /span>" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:47:54:47:85 | "<span> ... /span>" | enclosingFunctionBody | document querySelector #class innerHTML <span> step </span> |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:47:54:47:85 | "<span> ... /span>" | enclosingFunctionName | doXss |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:47:54:47:85 | "<span> ... /span>" | fileImports | ./jquery-plugin ./typed markdown-it striptags |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:47:54:47:85 | "<span> ... /span>" | receiverName |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:47:54:47:85 | "<span> ... /span>" | stringConcatenatedWith |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:47:65:47:73 | this.step | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:47:65:47:73 | this.step | InputAccessPathFromCallee |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:47:65:47:73 | this.step | InputArgumentIndex |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:47:65:47:73 | this.step | assignedToPropName |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:47:65:47:73 | this.step | calleeImports |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:47:65:47:73 | this.step | contextFunctionInterfaces | constructor(s)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:47:65:47:73 | this.step | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:47:65:47:73 | this.step | enclosingFunctionBody | document querySelector #class innerHTML <span> step </span> |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:47:65:47:73 | this.step | enclosingFunctionName | doXss |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:47:65:47:73 | this.step | fileImports | ./jquery-plugin ./typed markdown-it striptags |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:47:65:47:73 | this.step | receiverName |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:47:65:47:73 | this.step | stringConcatenatedWith | '<span>' -endpoint- '</span>' |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:47:77:47:85 | "</span>" | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:47:77:47:85 | "</span>" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:47:77:47:85 | "</span>" | InputArgumentIndex |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:47:77:47:85 | "</span>" | assignedToPropName |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:47:77:47:85 | "</span>" | calleeImports |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:47:77:47:85 | "</span>" | contextFunctionInterfaces | constructor(s)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:47:77:47:85 | "</span>" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:47:77:47:85 | "</span>" | enclosingFunctionBody | document querySelector #class innerHTML <span> step </span> |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:47:77:47:85 | "</span>" | enclosingFunctionName | doXss |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:47:77:47:85 | "</span>" | fileImports | ./jquery-plugin ./typed markdown-it striptags |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:47:77:47:85 | "</span>" | receiverName |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:47:77:47:85 | "</span>" | stringConcatenatedWith | '<span>' + this.step -endpoint-  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:60:31:60:38 | defaults | CalleeFlexibleAccessPath | $.extend |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:60:31:60:38 | defaults | InputAccessPathFromCallee |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:60:31:60:38 | defaults | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:60:31:60:38 | defaults | assignedToPropName |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:60:31:60:38 | defaults | calleeImports |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:60:31:60:38 | defaults | contextFunctionInterfaces | constructor(s)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:60:31:60:38 | defaults | contextSurroundingFunctionParameters | (options) |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:60:31:60:38 | defaults | enclosingFunctionBody | options defaults name name settings $ extend defaults options each $ <b> settings name </b> appendTo |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:60:31:60:38 | defaults | enclosingFunctionName | xssPlugin |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:60:31:60:38 | defaults | fileImports | ./jquery-plugin ./typed markdown-it striptags |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:60:31:60:38 | defaults | receiverName | $ |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:60:31:60:38 | defaults | stringConcatenatedWith |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:60:41:60:47 | options | CalleeFlexibleAccessPath | $.extend |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:60:41:60:47 | options | InputAccessPathFromCallee |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:60:41:60:47 | options | InputArgumentIndex | 1 |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:60:41:60:47 | options | assignedToPropName |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:60:41:60:47 | options | calleeImports |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:60:41:60:47 | options | contextFunctionInterfaces | constructor(s)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:60:41:60:47 | options | contextSurroundingFunctionParameters | (options) |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:60:41:60:47 | options | enclosingFunctionBody | options defaults name name settings $ extend defaults options each $ <b> settings name </b> appendTo |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:60:41:60:47 | options | enclosingFunctionName | xssPlugin |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:60:41:60:47 | options | fileImports | ./jquery-plugin ./typed markdown-it striptags |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:60:41:60:47 | options | receiverName | $ |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:60:41:60:47 | options | stringConcatenatedWith |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:61:22:63:5 | functio ... K\\n    } | CalleeFlexibleAccessPath | this.each |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:61:22:63:5 | functio ... K\\n    } | InputAccessPathFromCallee |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:61:22:63:5 | functio ... K\\n    } | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:61:22:63:5 | functio ... K\\n    } | assignedToPropName |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:61:22:63:5 | functio ... K\\n    } | calleeImports |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:61:22:63:5 | functio ... K\\n    } | contextFunctionInterfaces | constructor(s)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:61:22:63:5 | functio ... K\\n    } | contextSurroundingFunctionParameters | (options)\n() |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:61:22:63:5 | functio ... K\\n    } | enclosingFunctionBody | options defaults name name settings $ extend defaults options each $ <b> settings name </b> appendTo |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:61:22:63:5 | functio ... K\\n    } | enclosingFunctionName | xssPlugin |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:61:22:63:5 | functio ... K\\n    } | fileImports | ./jquery-plugin ./typed markdown-it striptags |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:61:22:63:5 | functio ... K\\n    } | receiverName |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:61:22:63:5 | functio ... K\\n    } | stringConcatenatedWith |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:62:11:62:15 | "<b>" | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:62:11:62:15 | "<b>" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:62:11:62:15 | "<b>" | InputArgumentIndex |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:62:11:62:15 | "<b>" | assignedToPropName |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:62:11:62:15 | "<b>" | calleeImports |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:62:11:62:15 | "<b>" | contextFunctionInterfaces | constructor(s)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:62:11:62:15 | "<b>" | contextSurroundingFunctionParameters | (options)\n() |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:62:11:62:15 | "<b>" | enclosingFunctionBody | options defaults name name settings $ extend defaults options each $ <b> settings name </b> appendTo |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:62:11:62:15 | "<b>" | enclosingFunctionName | xssPlugin |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:62:11:62:15 | "<b>" | fileImports | ./jquery-plugin ./typed markdown-it striptags |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:62:11:62:15 | "<b>" | receiverName |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:62:11:62:15 | "<b>" | stringConcatenatedWith |  -endpoint- settings.name + '</b>' |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:62:11:62:40 | "<b>" + ...  "</b>" | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:62:11:62:40 | "<b>" + ...  "</b>" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:62:11:62:40 | "<b>" + ...  "</b>" | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:62:11:62:40 | "<b>" + ...  "</b>" | assignedToPropName |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:62:11:62:40 | "<b>" + ...  "</b>" | calleeImports |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:62:11:62:40 | "<b>" + ...  "</b>" | contextFunctionInterfaces | constructor(s)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:62:11:62:40 | "<b>" + ...  "</b>" | contextSurroundingFunctionParameters | (options)\n() |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:62:11:62:40 | "<b>" + ...  "</b>" | enclosingFunctionBody | options defaults name name settings $ extend defaults options each $ <b> settings name </b> appendTo |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:62:11:62:40 | "<b>" + ...  "</b>" | enclosingFunctionName | xssPlugin |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:62:11:62:40 | "<b>" + ...  "</b>" | fileImports | ./jquery-plugin ./typed markdown-it striptags |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:62:11:62:40 | "<b>" + ...  "</b>" | receiverName |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:62:11:62:40 | "<b>" + ...  "</b>" | stringConcatenatedWith |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:62:19:62:31 | settings.name | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:62:19:62:31 | settings.name | InputAccessPathFromCallee |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:62:19:62:31 | settings.name | InputArgumentIndex |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:62:19:62:31 | settings.name | assignedToPropName |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:62:19:62:31 | settings.name | calleeImports |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:62:19:62:31 | settings.name | contextFunctionInterfaces | constructor(s)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:62:19:62:31 | settings.name | contextSurroundingFunctionParameters | (options)\n() |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:62:19:62:31 | settings.name | enclosingFunctionBody | options defaults name name settings $ extend defaults options each $ <b> settings name </b> appendTo |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:62:19:62:31 | settings.name | enclosingFunctionName | xssPlugin |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:62:19:62:31 | settings.name | fileImports | ./jquery-plugin ./typed markdown-it striptags |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:62:19:62:31 | settings.name | receiverName |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:62:19:62:31 | settings.name | stringConcatenatedWith | '<b>' -endpoint- '</b>' |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:62:35:62:40 | "</b>" | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:62:35:62:40 | "</b>" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:62:35:62:40 | "</b>" | InputArgumentIndex |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:62:35:62:40 | "</b>" | assignedToPropName |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:62:35:62:40 | "</b>" | calleeImports |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:62:35:62:40 | "</b>" | contextFunctionInterfaces | constructor(s)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:62:35:62:40 | "</b>" | contextSurroundingFunctionParameters | (options)\n() |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:62:35:62:40 | "</b>" | enclosingFunctionBody | options defaults name name settings $ extend defaults options each $ <b> settings name </b> appendTo |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:62:35:62:40 | "</b>" | enclosingFunctionName | xssPlugin |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:62:35:62:40 | "</b>" | fileImports | ./jquery-plugin ./typed markdown-it striptags |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:62:35:62:40 | "</b>" | receiverName |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:62:35:62:40 | "</b>" | stringConcatenatedWith | '<b>' + settings.name -endpoint-  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:62:52:62:55 | this | CalleeFlexibleAccessPath | $().appendTo |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:62:52:62:55 | this | InputAccessPathFromCallee |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:62:52:62:55 | this | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:62:52:62:55 | this | assignedToPropName |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:62:52:62:55 | this | calleeImports |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:62:52:62:55 | this | contextFunctionInterfaces | constructor(s)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:62:52:62:55 | this | contextSurroundingFunctionParameters | (options)\n() |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:62:52:62:55 | this | enclosingFunctionBody | options defaults name name settings $ extend defaults options each $ <b> settings name </b> appendTo |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:62:52:62:55 | this | enclosingFunctionName | xssPlugin |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:62:52:62:55 | this | fileImports | ./jquery-plugin ./typed markdown-it striptags |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:62:52:62:55 | this | receiverName |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:62:52:62:55 | this | stringConcatenatedWith |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:67:28:67:32 | "#id" | CalleeFlexibleAccessPath | document.querySelector |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:67:28:67:32 | "#id" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:67:28:67:32 | "#id" | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:67:28:67:32 | "#id" | assignedToPropName |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:67:28:67:32 | "#id" | calleeImports |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:67:28:67:32 | "#id" | contextFunctionInterfaces | constructor(s)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:67:28:67:32 | "#id" | contextSurroundingFunctionParameters | (attrVal) |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:67:28:67:32 | "#id" | enclosingFunctionBody | attrVal document querySelector #id innerHTML <img alt=" attrVal "/> document querySelector #id innerHTML <img alt=" attrVal replace /"\|'/g  "/> attrVal indexOf " 1 attrVal indexOf ' 1 document querySelector #id innerHTML <img alt=" attrVal "/> |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:67:28:67:32 | "#id" | enclosingFunctionName | guards |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:67:28:67:32 | "#id" | fileImports | ./jquery-plugin ./typed markdown-it striptags |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:67:28:67:32 | "#id" | receiverName | document |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:67:28:67:32 | "#id" | stringConcatenatedWith |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:67:47:67:59 | "<img alt=\\"" | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:67:47:67:59 | "<img alt=\\"" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:67:47:67:59 | "<img alt=\\"" | InputArgumentIndex |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:67:47:67:59 | "<img alt=\\"" | assignedToPropName |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:67:47:67:59 | "<img alt=\\"" | calleeImports |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:67:47:67:59 | "<img alt=\\"" | contextFunctionInterfaces | constructor(s)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:67:47:67:59 | "<img alt=\\"" | contextSurroundingFunctionParameters | (attrVal) |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:67:47:67:59 | "<img alt=\\"" | enclosingFunctionBody | attrVal document querySelector #id innerHTML <img alt=" attrVal "/> document querySelector #id innerHTML <img alt=" attrVal replace /"\|'/g  "/> attrVal indexOf " 1 attrVal indexOf ' 1 document querySelector #id innerHTML <img alt=" attrVal "/> |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:67:47:67:59 | "<img alt=\\"" | enclosingFunctionName | guards |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:67:47:67:59 | "<img alt=\\"" | fileImports | ./jquery-plugin ./typed markdown-it striptags |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:67:47:67:59 | "<img alt=\\"" | receiverName |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:67:47:67:59 | "<img alt=\\"" | stringConcatenatedWith |  -endpoint- attrVal + '"/>' |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:67:47:67:78 | "<img a ...  "\\"/>" | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:67:47:67:78 | "<img a ...  "\\"/>" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:67:47:67:78 | "<img a ...  "\\"/>" | InputArgumentIndex |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:67:47:67:78 | "<img a ...  "\\"/>" | assignedToPropName | innerHTML |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:67:47:67:78 | "<img a ...  "\\"/>" | calleeImports |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:67:47:67:78 | "<img a ...  "\\"/>" | contextFunctionInterfaces | constructor(s)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:67:47:67:78 | "<img a ...  "\\"/>" | contextSurroundingFunctionParameters | (attrVal) |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:67:47:67:78 | "<img a ...  "\\"/>" | enclosingFunctionBody | attrVal document querySelector #id innerHTML <img alt=" attrVal "/> document querySelector #id innerHTML <img alt=" attrVal replace /"\|'/g  "/> attrVal indexOf " 1 attrVal indexOf ' 1 document querySelector #id innerHTML <img alt=" attrVal "/> |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:67:47:67:78 | "<img a ...  "\\"/>" | enclosingFunctionName | guards |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:67:47:67:78 | "<img a ...  "\\"/>" | fileImports | ./jquery-plugin ./typed markdown-it striptags |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:67:47:67:78 | "<img a ...  "\\"/>" | receiverName |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:67:47:67:78 | "<img a ...  "\\"/>" | stringConcatenatedWith |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:67:63:67:69 | attrVal | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:67:63:67:69 | attrVal | InputAccessPathFromCallee |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:67:63:67:69 | attrVal | InputArgumentIndex |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:67:63:67:69 | attrVal | assignedToPropName |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:67:63:67:69 | attrVal | calleeImports |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:67:63:67:69 | attrVal | contextFunctionInterfaces | constructor(s)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:67:63:67:69 | attrVal | contextSurroundingFunctionParameters | (attrVal) |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:67:63:67:69 | attrVal | enclosingFunctionBody | attrVal document querySelector #id innerHTML <img alt=" attrVal "/> document querySelector #id innerHTML <img alt=" attrVal replace /"\|'/g  "/> attrVal indexOf " 1 attrVal indexOf ' 1 document querySelector #id innerHTML <img alt=" attrVal "/> |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:67:63:67:69 | attrVal | enclosingFunctionName | guards |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:67:63:67:69 | attrVal | fileImports | ./jquery-plugin ./typed markdown-it striptags |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:67:63:67:69 | attrVal | receiverName |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:67:63:67:69 | attrVal | stringConcatenatedWith | '<img alt="' -endpoint- '"/>' |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:67:73:67:78 | "\\"/>" | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:67:73:67:78 | "\\"/>" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:67:73:67:78 | "\\"/>" | InputArgumentIndex |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:67:73:67:78 | "\\"/>" | assignedToPropName |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:67:73:67:78 | "\\"/>" | calleeImports |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:67:73:67:78 | "\\"/>" | contextFunctionInterfaces | constructor(s)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:67:73:67:78 | "\\"/>" | contextSurroundingFunctionParameters | (attrVal) |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:67:73:67:78 | "\\"/>" | enclosingFunctionBody | attrVal document querySelector #id innerHTML <img alt=" attrVal "/> document querySelector #id innerHTML <img alt=" attrVal replace /"\|'/g  "/> attrVal indexOf " 1 attrVal indexOf ' 1 document querySelector #id innerHTML <img alt=" attrVal "/> |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:67:73:67:78 | "\\"/>" | enclosingFunctionName | guards |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:67:73:67:78 | "\\"/>" | fileImports | ./jquery-plugin ./typed markdown-it striptags |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:67:73:67:78 | "\\"/>" | receiverName |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:67:73:67:78 | "\\"/>" | stringConcatenatedWith | '<img alt="' + attrVal -endpoint-  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:28:68:32 | "#id" | CalleeFlexibleAccessPath | document.querySelector |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:28:68:32 | "#id" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:28:68:32 | "#id" | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:28:68:32 | "#id" | assignedToPropName |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:28:68:32 | "#id" | calleeImports |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:28:68:32 | "#id" | contextFunctionInterfaces | constructor(s)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:28:68:32 | "#id" | contextSurroundingFunctionParameters | (attrVal) |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:28:68:32 | "#id" | enclosingFunctionBody | attrVal document querySelector #id innerHTML <img alt=" attrVal "/> document querySelector #id innerHTML <img alt=" attrVal replace /"\|'/g  "/> attrVal indexOf " 1 attrVal indexOf ' 1 document querySelector #id innerHTML <img alt=" attrVal "/> |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:28:68:32 | "#id" | enclosingFunctionName | guards |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:28:68:32 | "#id" | fileImports | ./jquery-plugin ./typed markdown-it striptags |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:28:68:32 | "#id" | receiverName | document |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:28:68:32 | "#id" | stringConcatenatedWith |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:47:68:59 | "<img alt=\\"" | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:47:68:59 | "<img alt=\\"" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:47:68:59 | "<img alt=\\"" | InputArgumentIndex |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:47:68:59 | "<img alt=\\"" | assignedToPropName |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:47:68:59 | "<img alt=\\"" | calleeImports |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:47:68:59 | "<img alt=\\"" | contextFunctionInterfaces | constructor(s)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:47:68:59 | "<img alt=\\"" | contextSurroundingFunctionParameters | (attrVal) |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:47:68:59 | "<img alt=\\"" | enclosingFunctionBody | attrVal document querySelector #id innerHTML <img alt=" attrVal "/> document querySelector #id innerHTML <img alt=" attrVal replace /"\|'/g  "/> attrVal indexOf " 1 attrVal indexOf ' 1 document querySelector #id innerHTML <img alt=" attrVal "/> |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:47:68:59 | "<img alt=\\"" | enclosingFunctionName | guards |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:47:68:59 | "<img alt=\\"" | fileImports | ./jquery-plugin ./typed markdown-it striptags |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:47:68:59 | "<img alt=\\"" | receiverName |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:47:68:59 | "<img alt=\\"" | stringConcatenatedWith |  -endpoint- attrVal.replace() + '"/>' |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:47:68:98 | "<img a ...  "\\"/>" | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:47:68:98 | "<img a ...  "\\"/>" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:47:68:98 | "<img a ...  "\\"/>" | InputArgumentIndex |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:47:68:98 | "<img a ...  "\\"/>" | assignedToPropName | innerHTML |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:47:68:98 | "<img a ...  "\\"/>" | calleeImports |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:47:68:98 | "<img a ...  "\\"/>" | contextFunctionInterfaces | constructor(s)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:47:68:98 | "<img a ...  "\\"/>" | contextSurroundingFunctionParameters | (attrVal) |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:47:68:98 | "<img a ...  "\\"/>" | enclosingFunctionBody | attrVal document querySelector #id innerHTML <img alt=" attrVal "/> document querySelector #id innerHTML <img alt=" attrVal replace /"\|'/g  "/> attrVal indexOf " 1 attrVal indexOf ' 1 document querySelector #id innerHTML <img alt=" attrVal "/> |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:47:68:98 | "<img a ...  "\\"/>" | enclosingFunctionName | guards |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:47:68:98 | "<img a ...  "\\"/>" | fileImports | ./jquery-plugin ./typed markdown-it striptags |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:47:68:98 | "<img a ...  "\\"/>" | receiverName |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:47:68:98 | "<img a ...  "\\"/>" | stringConcatenatedWith |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:63:68:89 | attrVal ... /g, "") | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:63:68:89 | attrVal ... /g, "") | InputAccessPathFromCallee |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:63:68:89 | attrVal ... /g, "") | InputArgumentIndex |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:63:68:89 | attrVal ... /g, "") | assignedToPropName |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:63:68:89 | attrVal ... /g, "") | calleeImports |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:63:68:89 | attrVal ... /g, "") | contextFunctionInterfaces | constructor(s)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:63:68:89 | attrVal ... /g, "") | contextSurroundingFunctionParameters | (attrVal) |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:63:68:89 | attrVal ... /g, "") | enclosingFunctionBody | attrVal document querySelector #id innerHTML <img alt=" attrVal "/> document querySelector #id innerHTML <img alt=" attrVal replace /"\|'/g  "/> attrVal indexOf " 1 attrVal indexOf ' 1 document querySelector #id innerHTML <img alt=" attrVal "/> |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:63:68:89 | attrVal ... /g, "") | enclosingFunctionName | guards |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:63:68:89 | attrVal ... /g, "") | fileImports | ./jquery-plugin ./typed markdown-it striptags |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:63:68:89 | attrVal ... /g, "") | receiverName |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:63:68:89 | attrVal ... /g, "") | stringConcatenatedWith | '<img alt="' -endpoint- '"/>' |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:93:68:98 | "\\"/>" | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:93:68:98 | "\\"/>" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:93:68:98 | "\\"/>" | InputArgumentIndex |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:93:68:98 | "\\"/>" | assignedToPropName |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:93:68:98 | "\\"/>" | calleeImports |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:93:68:98 | "\\"/>" | contextFunctionInterfaces | constructor(s)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:93:68:98 | "\\"/>" | contextSurroundingFunctionParameters | (attrVal) |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:93:68:98 | "\\"/>" | enclosingFunctionBody | attrVal document querySelector #id innerHTML <img alt=" attrVal "/> document querySelector #id innerHTML <img alt=" attrVal replace /"\|'/g  "/> attrVal indexOf " 1 attrVal indexOf ' 1 document querySelector #id innerHTML <img alt=" attrVal "/> |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:93:68:98 | "\\"/>" | enclosingFunctionName | guards |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:93:68:98 | "\\"/>" | fileImports | ./jquery-plugin ./typed markdown-it striptags |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:93:68:98 | "\\"/>" | receiverName |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:93:68:98 | "\\"/>" | stringConcatenatedWith | '<img alt="' + attrVal.replace() -endpoint-  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:69:25:69:28 | "\\"" | CalleeFlexibleAccessPath | attrVal.indexOf |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:69:25:69:28 | "\\"" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:69:25:69:28 | "\\"" | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:69:25:69:28 | "\\"" | assignedToPropName |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:69:25:69:28 | "\\"" | calleeImports |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:69:25:69:28 | "\\"" | contextFunctionInterfaces | constructor(s)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:69:25:69:28 | "\\"" | contextSurroundingFunctionParameters | (attrVal) |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:69:25:69:28 | "\\"" | enclosingFunctionBody | attrVal document querySelector #id innerHTML <img alt=" attrVal "/> document querySelector #id innerHTML <img alt=" attrVal replace /"\|'/g  "/> attrVal indexOf " 1 attrVal indexOf ' 1 document querySelector #id innerHTML <img alt=" attrVal "/> |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:69:25:69:28 | "\\"" | enclosingFunctionName | guards |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:69:25:69:28 | "\\"" | fileImports | ./jquery-plugin ./typed markdown-it striptags |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:69:25:69:28 | "\\"" | receiverName | attrVal |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:69:25:69:28 | "\\"" | stringConcatenatedWith |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:69:57:69:59 | "'" | CalleeFlexibleAccessPath | attrVal.indexOf |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:69:57:69:59 | "'" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:69:57:69:59 | "'" | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:69:57:69:59 | "'" | assignedToPropName |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:69:57:69:59 | "'" | calleeImports |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:69:57:69:59 | "'" | contextFunctionInterfaces | constructor(s)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:69:57:69:59 | "'" | contextSurroundingFunctionParameters | (attrVal) |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:69:57:69:59 | "'" | enclosingFunctionBody | attrVal document querySelector #id innerHTML <img alt=" attrVal "/> document querySelector #id innerHTML <img alt=" attrVal replace /"\|'/g  "/> attrVal indexOf " 1 attrVal indexOf ' 1 document querySelector #id innerHTML <img alt=" attrVal "/> |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:69:57:69:59 | "'" | enclosingFunctionName | guards |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:69:57:69:59 | "'" | fileImports | ./jquery-plugin ./typed markdown-it striptags |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:69:57:69:59 | "'" | receiverName | attrVal |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:69:57:69:59 | "'" | stringConcatenatedWith |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:70:32:70:36 | "#id" | CalleeFlexibleAccessPath | document.querySelector |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:70:32:70:36 | "#id" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:70:32:70:36 | "#id" | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:70:32:70:36 | "#id" | assignedToPropName |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:70:32:70:36 | "#id" | calleeImports |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:70:32:70:36 | "#id" | contextFunctionInterfaces | constructor(s)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:70:32:70:36 | "#id" | contextSurroundingFunctionParameters | (attrVal) |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:70:32:70:36 | "#id" | enclosingFunctionBody | attrVal document querySelector #id innerHTML <img alt=" attrVal "/> document querySelector #id innerHTML <img alt=" attrVal replace /"\|'/g  "/> attrVal indexOf " 1 attrVal indexOf ' 1 document querySelector #id innerHTML <img alt=" attrVal "/> |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:70:32:70:36 | "#id" | enclosingFunctionName | guards |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:70:32:70:36 | "#id" | fileImports | ./jquery-plugin ./typed markdown-it striptags |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:70:32:70:36 | "#id" | receiverName | document |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:70:32:70:36 | "#id" | stringConcatenatedWith |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:70:51:70:63 | "<img alt=\\"" | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:70:51:70:63 | "<img alt=\\"" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:70:51:70:63 | "<img alt=\\"" | InputArgumentIndex |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:70:51:70:63 | "<img alt=\\"" | assignedToPropName |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:70:51:70:63 | "<img alt=\\"" | calleeImports |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:70:51:70:63 | "<img alt=\\"" | contextFunctionInterfaces | constructor(s)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:70:51:70:63 | "<img alt=\\"" | contextSurroundingFunctionParameters | (attrVal) |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:70:51:70:63 | "<img alt=\\"" | enclosingFunctionBody | attrVal document querySelector #id innerHTML <img alt=" attrVal "/> document querySelector #id innerHTML <img alt=" attrVal replace /"\|'/g  "/> attrVal indexOf " 1 attrVal indexOf ' 1 document querySelector #id innerHTML <img alt=" attrVal "/> |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:70:51:70:63 | "<img alt=\\"" | enclosingFunctionName | guards |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:70:51:70:63 | "<img alt=\\"" | fileImports | ./jquery-plugin ./typed markdown-it striptags |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:70:51:70:63 | "<img alt=\\"" | receiverName |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:70:51:70:63 | "<img alt=\\"" | stringConcatenatedWith |  -endpoint- attrVal + '"/>' |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:70:51:70:82 | "<img a ...  "\\"/>" | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:70:51:70:82 | "<img a ...  "\\"/>" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:70:51:70:82 | "<img a ...  "\\"/>" | InputArgumentIndex |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:70:51:70:82 | "<img a ...  "\\"/>" | assignedToPropName | innerHTML |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:70:51:70:82 | "<img a ...  "\\"/>" | calleeImports |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:70:51:70:82 | "<img a ...  "\\"/>" | contextFunctionInterfaces | constructor(s)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:70:51:70:82 | "<img a ...  "\\"/>" | contextSurroundingFunctionParameters | (attrVal) |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:70:51:70:82 | "<img a ...  "\\"/>" | enclosingFunctionBody | attrVal document querySelector #id innerHTML <img alt=" attrVal "/> document querySelector #id innerHTML <img alt=" attrVal replace /"\|'/g  "/> attrVal indexOf " 1 attrVal indexOf ' 1 document querySelector #id innerHTML <img alt=" attrVal "/> |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:70:51:70:82 | "<img a ...  "\\"/>" | enclosingFunctionName | guards |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:70:51:70:82 | "<img a ...  "\\"/>" | fileImports | ./jquery-plugin ./typed markdown-it striptags |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:70:51:70:82 | "<img a ...  "\\"/>" | receiverName |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:70:51:70:82 | "<img a ...  "\\"/>" | stringConcatenatedWith |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:70:67:70:73 | attrVal | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:70:67:70:73 | attrVal | InputAccessPathFromCallee |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:70:67:70:73 | attrVal | InputArgumentIndex |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:70:67:70:73 | attrVal | assignedToPropName |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:70:67:70:73 | attrVal | calleeImports |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:70:67:70:73 | attrVal | contextFunctionInterfaces | constructor(s)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:70:67:70:73 | attrVal | contextSurroundingFunctionParameters | (attrVal) |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:70:67:70:73 | attrVal | enclosingFunctionBody | attrVal document querySelector #id innerHTML <img alt=" attrVal "/> document querySelector #id innerHTML <img alt=" attrVal replace /"\|'/g  "/> attrVal indexOf " 1 attrVal indexOf ' 1 document querySelector #id innerHTML <img alt=" attrVal "/> |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:70:67:70:73 | attrVal | enclosingFunctionName | guards |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:70:67:70:73 | attrVal | fileImports | ./jquery-plugin ./typed markdown-it striptags |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:70:67:70:73 | attrVal | receiverName |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:70:67:70:73 | attrVal | stringConcatenatedWith | '<img alt="' -endpoint- '"/>' |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:70:77:70:82 | "\\"/>" | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:70:77:70:82 | "\\"/>" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:70:77:70:82 | "\\"/>" | InputArgumentIndex |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:70:77:70:82 | "\\"/>" | assignedToPropName |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:70:77:70:82 | "\\"/>" | calleeImports |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:70:77:70:82 | "\\"/>" | contextFunctionInterfaces | constructor(s)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:70:77:70:82 | "\\"/>" | contextSurroundingFunctionParameters | (attrVal) |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:70:77:70:82 | "\\"/>" | enclosingFunctionBody | attrVal document querySelector #id innerHTML <img alt=" attrVal "/> document querySelector #id innerHTML <img alt=" attrVal replace /"\|'/g  "/> attrVal indexOf " 1 attrVal indexOf ' 1 document querySelector #id innerHTML <img alt=" attrVal "/> |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:70:77:70:82 | "\\"/>" | enclosingFunctionName | guards |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:70:77:70:82 | "\\"/>" | fileImports | ./jquery-plugin ./typed markdown-it striptags |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:70:77:70:82 | "\\"/>" | receiverName |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:70:77:70:82 | "\\"/>" | stringConcatenatedWith | '<img alt="' + attrVal -endpoint-  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:75:18:75:25 | "<span>" | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:75:18:75:25 | "<span>" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:75:18:75:25 | "<span>" | InputArgumentIndex |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:75:18:75:25 | "<span>" | assignedToPropName |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:75:18:75:25 | "<span>" | calleeImports |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:75:18:75:25 | "<span>" | contextFunctionInterfaces | constructor(s)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:75:18:75:25 | "<span>" | contextSurroundingFunctionParameters | (obj) |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:75:18:75:25 | "<span>" | enclosingFunctionBody | obj html <span> obj spanTemplate </span> document querySelector #template innerHTML html |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:75:18:75:25 | "<span>" | enclosingFunctionName | intentionalTemplate |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:75:18:75:25 | "<span>" | fileImports | ./jquery-plugin ./typed markdown-it striptags |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:75:18:75:25 | "<span>" | receiverName |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:75:18:75:25 | "<span>" | stringConcatenatedWith |  -endpoint- obj.spanTemplate + '</span>' |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:75:18:75:56 | "<span> ... /span>" | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:75:18:75:56 | "<span> ... /span>" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:75:18:75:56 | "<span> ... /span>" | InputArgumentIndex |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:75:18:75:56 | "<span> ... /span>" | assignedToPropName |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:75:18:75:56 | "<span> ... /span>" | calleeImports |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:75:18:75:56 | "<span> ... /span>" | contextFunctionInterfaces | constructor(s)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:75:18:75:56 | "<span> ... /span>" | contextSurroundingFunctionParameters | (obj) |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:75:18:75:56 | "<span> ... /span>" | enclosingFunctionBody | obj html <span> obj spanTemplate </span> document querySelector #template innerHTML html |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:75:18:75:56 | "<span> ... /span>" | enclosingFunctionName | intentionalTemplate |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:75:18:75:56 | "<span> ... /span>" | fileImports | ./jquery-plugin ./typed markdown-it striptags |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:75:18:75:56 | "<span> ... /span>" | receiverName |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:75:18:75:56 | "<span> ... /span>" | stringConcatenatedWith |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:75:29:75:44 | obj.spanTemplate | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:75:29:75:44 | obj.spanTemplate | InputAccessPathFromCallee |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:75:29:75:44 | obj.spanTemplate | InputArgumentIndex |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:75:29:75:44 | obj.spanTemplate | assignedToPropName |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:75:29:75:44 | obj.spanTemplate | calleeImports |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:75:29:75:44 | obj.spanTemplate | contextFunctionInterfaces | constructor(s)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:75:29:75:44 | obj.spanTemplate | contextSurroundingFunctionParameters | (obj) |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:75:29:75:44 | obj.spanTemplate | enclosingFunctionBody | obj html <span> obj spanTemplate </span> document querySelector #template innerHTML html |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:75:29:75:44 | obj.spanTemplate | enclosingFunctionName | intentionalTemplate |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:75:29:75:44 | obj.spanTemplate | fileImports | ./jquery-plugin ./typed markdown-it striptags |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:75:29:75:44 | obj.spanTemplate | receiverName |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:75:29:75:44 | obj.spanTemplate | stringConcatenatedWith | '<span>' -endpoint- '</span>' |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:75:48:75:56 | "</span>" | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:75:48:75:56 | "</span>" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:75:48:75:56 | "</span>" | InputArgumentIndex |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:75:48:75:56 | "</span>" | assignedToPropName |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:75:48:75:56 | "</span>" | calleeImports |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:75:48:75:56 | "</span>" | contextFunctionInterfaces | constructor(s)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:75:48:75:56 | "</span>" | contextSurroundingFunctionParameters | (obj) |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:75:48:75:56 | "</span>" | enclosingFunctionBody | obj html <span> obj spanTemplate </span> document querySelector #template innerHTML html |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:75:48:75:56 | "</span>" | enclosingFunctionName | intentionalTemplate |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:75:48:75:56 | "</span>" | fileImports | ./jquery-plugin ./typed markdown-it striptags |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:75:48:75:56 | "</span>" | receiverName |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:75:48:75:56 | "</span>" | stringConcatenatedWith | '<span>' + obj.spanTemplate -endpoint-  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:76:28:76:38 | "#template" | CalleeFlexibleAccessPath | document.querySelector |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:76:28:76:38 | "#template" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:76:28:76:38 | "#template" | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:76:28:76:38 | "#template" | assignedToPropName |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:76:28:76:38 | "#template" | calleeImports |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:76:28:76:38 | "#template" | contextFunctionInterfaces | constructor(s)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:76:28:76:38 | "#template" | contextSurroundingFunctionParameters | (obj) |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:76:28:76:38 | "#template" | enclosingFunctionBody | obj html <span> obj spanTemplate </span> document querySelector #template innerHTML html |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:76:28:76:38 | "#template" | enclosingFunctionName | intentionalTemplate |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:76:28:76:38 | "#template" | fileImports | ./jquery-plugin ./typed markdown-it striptags |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:76:28:76:38 | "#template" | receiverName | document |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:76:28:76:38 | "#template" | stringConcatenatedWith |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:76:53:76:56 | html | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:76:53:76:56 | html | InputAccessPathFromCallee |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:76:53:76:56 | html | InputArgumentIndex |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:76:53:76:56 | html | assignedToPropName | innerHTML |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:76:53:76:56 | html | calleeImports |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:76:53:76:56 | html | contextFunctionInterfaces | constructor(s)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:76:53:76:56 | html | contextSurroundingFunctionParameters | (obj) |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:76:53:76:56 | html | enclosingFunctionBody | obj html <span> obj spanTemplate </span> document querySelector #template innerHTML html |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:76:53:76:56 | html | enclosingFunctionName | intentionalTemplate |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:76:53:76:56 | html | fileImports | ./jquery-plugin ./typed markdown-it striptags |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:76:53:76:56 | html | receiverName |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:76:53:76:56 | html | stringConcatenatedWith |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:2:18:2:25 | "<span>" | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:2:18:2:25 | "<span>" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:2:18:2:25 | "<span>" | InputArgumentIndex |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:2:18:2:25 | "<span>" | assignedToPropName |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:2:18:2:25 | "<span>" | calleeImports |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:2:18:2:25 | "<span>" | contextFunctionInterfaces | basicHtmlConstruction(s)\nid(s)\ninsertIntoCreatedDocument(s)\nnotVulnerable() |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:2:18:2:25 | "<span>" | contextSurroundingFunctionParameters | (s) |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:2:18:2:25 | "<span>" | enclosingFunctionBody | s html <span> s </span> document body innerHTML html |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:2:18:2:25 | "<span>" | enclosingFunctionName | basicHtmlConstruction |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:2:18:2:25 | "<span>" | fileImports |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:2:18:2:25 | "<span>" | receiverName |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:2:18:2:25 | "<span>" | stringConcatenatedWith |  -endpoint- s + '</span>' |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:2:18:2:41 | "<span> ... /span>" | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:2:18:2:41 | "<span> ... /span>" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:2:18:2:41 | "<span> ... /span>" | InputArgumentIndex |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:2:18:2:41 | "<span> ... /span>" | assignedToPropName |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:2:18:2:41 | "<span> ... /span>" | calleeImports |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:2:18:2:41 | "<span> ... /span>" | contextFunctionInterfaces | basicHtmlConstruction(s)\nid(s)\ninsertIntoCreatedDocument(s)\nnotVulnerable() |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:2:18:2:41 | "<span> ... /span>" | contextSurroundingFunctionParameters | (s) |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:2:18:2:41 | "<span> ... /span>" | enclosingFunctionBody | s html <span> s </span> document body innerHTML html |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:2:18:2:41 | "<span> ... /span>" | enclosingFunctionName | basicHtmlConstruction |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:2:18:2:41 | "<span> ... /span>" | fileImports |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:2:18:2:41 | "<span> ... /span>" | receiverName |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:2:18:2:41 | "<span> ... /span>" | stringConcatenatedWith |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:2:29:2:29 | s | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:2:29:2:29 | s | InputAccessPathFromCallee |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:2:29:2:29 | s | InputArgumentIndex |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:2:29:2:29 | s | assignedToPropName |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:2:29:2:29 | s | calleeImports |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:2:29:2:29 | s | contextFunctionInterfaces | basicHtmlConstruction(s)\nid(s)\ninsertIntoCreatedDocument(s)\nnotVulnerable() |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:2:29:2:29 | s | contextSurroundingFunctionParameters | (s) |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:2:29:2:29 | s | enclosingFunctionBody | s html <span> s </span> document body innerHTML html |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:2:29:2:29 | s | enclosingFunctionName | basicHtmlConstruction |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:2:29:2:29 | s | fileImports |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:2:29:2:29 | s | receiverName |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:2:29:2:29 | s | stringConcatenatedWith | '<span>' -endpoint- '</span>' |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:2:33:2:41 | "</span>" | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:2:33:2:41 | "</span>" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:2:33:2:41 | "</span>" | InputArgumentIndex |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:2:33:2:41 | "</span>" | assignedToPropName |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:2:33:2:41 | "</span>" | calleeImports |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:2:33:2:41 | "</span>" | contextFunctionInterfaces | basicHtmlConstruction(s)\nid(s)\ninsertIntoCreatedDocument(s)\nnotVulnerable() |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:2:33:2:41 | "</span>" | contextSurroundingFunctionParameters | (s) |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:2:33:2:41 | "</span>" | enclosingFunctionBody | s html <span> s </span> document body innerHTML html |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:2:33:2:41 | "</span>" | enclosingFunctionName | basicHtmlConstruction |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:2:33:2:41 | "</span>" | fileImports |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:2:33:2:41 | "</span>" | receiverName |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:2:33:2:41 | "</span>" | stringConcatenatedWith | '<span>' + s -endpoint-  |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:3:31:3:34 | html | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:3:31:3:34 | html | InputAccessPathFromCallee |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:3:31:3:34 | html | InputArgumentIndex |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:3:31:3:34 | html | assignedToPropName | innerHTML |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:3:31:3:34 | html | calleeImports |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:3:31:3:34 | html | contextFunctionInterfaces | basicHtmlConstruction(s)\nid(s)\ninsertIntoCreatedDocument(s)\nnotVulnerable() |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:3:31:3:34 | html | contextSurroundingFunctionParameters | (s) |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:3:31:3:34 | html | enclosingFunctionBody | s html <span> s </span> document body innerHTML html |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:3:31:3:34 | html | enclosingFunctionName | basicHtmlConstruction |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:3:31:3:34 | html | fileImports |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:3:31:3:34 | html | receiverName |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:3:31:3:34 | html | stringConcatenatedWith |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:7:63:7:64 | "" | CalleeFlexibleAccessPath | document.implementation.createHTMLDocument |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:7:63:7:64 | "" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:7:63:7:64 | "" | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:7:63:7:64 | "" | assignedToPropName |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:7:63:7:64 | "" | calleeImports |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:7:63:7:64 | "" | contextFunctionInterfaces | basicHtmlConstruction(s)\nid(s)\ninsertIntoCreatedDocument(s)\nnotVulnerable() |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:7:63:7:64 | "" | contextSurroundingFunctionParameters | (s) |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:7:63:7:64 | "" | enclosingFunctionBody | s newDoc document implementation createHTMLDocument  newDoc body innerHTML <span> s </span> |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:7:63:7:64 | "" | enclosingFunctionName | insertIntoCreatedDocument |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:7:63:7:64 | "" | fileImports |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:7:63:7:64 | "" | receiverName |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:7:63:7:64 | "" | stringConcatenatedWith |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:8:29:8:36 | "<span>" | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:8:29:8:36 | "<span>" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:8:29:8:36 | "<span>" | InputArgumentIndex |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:8:29:8:36 | "<span>" | assignedToPropName |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:8:29:8:36 | "<span>" | calleeImports |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:8:29:8:36 | "<span>" | contextFunctionInterfaces | basicHtmlConstruction(s)\nid(s)\ninsertIntoCreatedDocument(s)\nnotVulnerable() |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:8:29:8:36 | "<span>" | contextSurroundingFunctionParameters | (s) |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:8:29:8:36 | "<span>" | enclosingFunctionBody | s newDoc document implementation createHTMLDocument  newDoc body innerHTML <span> s </span> |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:8:29:8:36 | "<span>" | enclosingFunctionName | insertIntoCreatedDocument |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:8:29:8:36 | "<span>" | fileImports |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:8:29:8:36 | "<span>" | receiverName |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:8:29:8:36 | "<span>" | stringConcatenatedWith |  -endpoint- s + '</span>' |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:8:29:8:52 | "<span> ... /span>" | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:8:29:8:52 | "<span> ... /span>" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:8:29:8:52 | "<span> ... /span>" | InputArgumentIndex |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:8:29:8:52 | "<span> ... /span>" | assignedToPropName | innerHTML |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:8:29:8:52 | "<span> ... /span>" | calleeImports |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:8:29:8:52 | "<span> ... /span>" | contextFunctionInterfaces | basicHtmlConstruction(s)\nid(s)\ninsertIntoCreatedDocument(s)\nnotVulnerable() |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:8:29:8:52 | "<span> ... /span>" | contextSurroundingFunctionParameters | (s) |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:8:29:8:52 | "<span> ... /span>" | enclosingFunctionBody | s newDoc document implementation createHTMLDocument  newDoc body innerHTML <span> s </span> |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:8:29:8:52 | "<span> ... /span>" | enclosingFunctionName | insertIntoCreatedDocument |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:8:29:8:52 | "<span> ... /span>" | fileImports |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:8:29:8:52 | "<span> ... /span>" | receiverName |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:8:29:8:52 | "<span> ... /span>" | stringConcatenatedWith |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:8:40:8:40 | s | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:8:40:8:40 | s | InputAccessPathFromCallee |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:8:40:8:40 | s | InputArgumentIndex |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:8:40:8:40 | s | assignedToPropName |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:8:40:8:40 | s | calleeImports |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:8:40:8:40 | s | contextFunctionInterfaces | basicHtmlConstruction(s)\nid(s)\ninsertIntoCreatedDocument(s)\nnotVulnerable() |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:8:40:8:40 | s | contextSurroundingFunctionParameters | (s) |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:8:40:8:40 | s | enclosingFunctionBody | s newDoc document implementation createHTMLDocument  newDoc body innerHTML <span> s </span> |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:8:40:8:40 | s | enclosingFunctionName | insertIntoCreatedDocument |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:8:40:8:40 | s | fileImports |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:8:40:8:40 | s | receiverName |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:8:40:8:40 | s | stringConcatenatedWith | '<span>' -endpoint- '</span>' |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:8:44:8:52 | "</span>" | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:8:44:8:52 | "</span>" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:8:44:8:52 | "</span>" | InputArgumentIndex |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:8:44:8:52 | "</span>" | assignedToPropName |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:8:44:8:52 | "</span>" | calleeImports |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:8:44:8:52 | "</span>" | contextFunctionInterfaces | basicHtmlConstruction(s)\nid(s)\ninsertIntoCreatedDocument(s)\nnotVulnerable() |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:8:44:8:52 | "</span>" | contextSurroundingFunctionParameters | (s) |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:8:44:8:52 | "</span>" | enclosingFunctionBody | s newDoc document implementation createHTMLDocument  newDoc body innerHTML <span> s </span> |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:8:44:8:52 | "</span>" | enclosingFunctionName | insertIntoCreatedDocument |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:8:44:8:52 | "</span>" | fileImports |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:8:44:8:52 | "</span>" | receiverName |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:8:44:8:52 | "</span>" | stringConcatenatedWith | '<span>' + s -endpoint-  |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:17:18:17:25 | "<span>" | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:17:18:17:25 | "<span>" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:17:18:17:25 | "<span>" | InputArgumentIndex |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:17:18:17:25 | "<span>" | assignedToPropName |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:17:18:17:25 | "<span>" | calleeImports |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:17:18:17:25 | "<span>" | contextFunctionInterfaces | basicHtmlConstruction(s)\nid(s)\ninsertIntoCreatedDocument(s)\nnotVulnerable() |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:17:18:17:25 | "<span>" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:17:18:17:25 | "<span>" | enclosingFunctionBody | s id x html <span> s </span> document body innerHTML html |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:17:18:17:25 | "<span>" | enclosingFunctionName | notVulnerable |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:17:18:17:25 | "<span>" | fileImports |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:17:18:17:25 | "<span>" | receiverName |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:17:18:17:25 | "<span>" | stringConcatenatedWith |  -endpoint- s + '</span>' |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:17:18:17:41 | "<span> ... /span>" | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:17:18:17:41 | "<span> ... /span>" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:17:18:17:41 | "<span> ... /span>" | InputArgumentIndex |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:17:18:17:41 | "<span> ... /span>" | assignedToPropName |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:17:18:17:41 | "<span> ... /span>" | calleeImports |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:17:18:17:41 | "<span> ... /span>" | contextFunctionInterfaces | basicHtmlConstruction(s)\nid(s)\ninsertIntoCreatedDocument(s)\nnotVulnerable() |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:17:18:17:41 | "<span> ... /span>" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:17:18:17:41 | "<span> ... /span>" | enclosingFunctionBody | s id x html <span> s </span> document body innerHTML html |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:17:18:17:41 | "<span> ... /span>" | enclosingFunctionName | notVulnerable |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:17:18:17:41 | "<span> ... /span>" | fileImports |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:17:18:17:41 | "<span> ... /span>" | receiverName |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:17:18:17:41 | "<span> ... /span>" | stringConcatenatedWith |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:17:29:17:29 | s | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:17:29:17:29 | s | InputAccessPathFromCallee |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:17:29:17:29 | s | InputArgumentIndex |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:17:29:17:29 | s | assignedToPropName |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:17:29:17:29 | s | calleeImports |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:17:29:17:29 | s | contextFunctionInterfaces | basicHtmlConstruction(s)\nid(s)\ninsertIntoCreatedDocument(s)\nnotVulnerable() |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:17:29:17:29 | s | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:17:29:17:29 | s | enclosingFunctionBody | s id x html <span> s </span> document body innerHTML html |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:17:29:17:29 | s | enclosingFunctionName | notVulnerable |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:17:29:17:29 | s | fileImports |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:17:29:17:29 | s | receiverName |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:17:29:17:29 | s | stringConcatenatedWith | '<span>' -endpoint- '</span>' |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:17:33:17:41 | "</span>" | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:17:33:17:41 | "</span>" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:17:33:17:41 | "</span>" | InputArgumentIndex |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:17:33:17:41 | "</span>" | assignedToPropName |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:17:33:17:41 | "</span>" | calleeImports |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:17:33:17:41 | "</span>" | contextFunctionInterfaces | basicHtmlConstruction(s)\nid(s)\ninsertIntoCreatedDocument(s)\nnotVulnerable() |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:17:33:17:41 | "</span>" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:17:33:17:41 | "</span>" | enclosingFunctionBody | s id x html <span> s </span> document body innerHTML html |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:17:33:17:41 | "</span>" | enclosingFunctionName | notVulnerable |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:17:33:17:41 | "</span>" | fileImports |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:17:33:17:41 | "</span>" | receiverName |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:17:33:17:41 | "</span>" | stringConcatenatedWith | '<span>' + s -endpoint-  |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:18:31:18:34 | html | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:18:31:18:34 | html | InputAccessPathFromCallee |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:18:31:18:34 | html | InputArgumentIndex |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:18:31:18:34 | html | assignedToPropName | innerHTML |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:18:31:18:34 | html | calleeImports |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:18:31:18:34 | html | contextFunctionInterfaces | basicHtmlConstruction(s)\nid(s)\ninsertIntoCreatedDocument(s)\nnotVulnerable() |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:18:31:18:34 | html | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:18:31:18:34 | html | enclosingFunctionBody | s id x html <span> s </span> document body innerHTML html |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:18:31:18:34 | html | enclosingFunctionName | notVulnerable |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:18:31:18:34 | html | fileImports |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:18:31:18:34 | html | receiverName |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:18:31:18:34 | html | stringConcatenatedWith |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:3:5:3:11 | options | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:3:5:3:11 | options | InputAccessPathFromCallee |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:3:5:3:11 | options | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:3:5:3:11 | options | assignedToPropName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:3:5:3:11 | options | calleeImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:3:5:3:11 | options | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:3:5:3:11 | options | contextSurroundingFunctionParameters | ()\n(options) |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:3:5:3:11 | options | enclosingFunctionBody |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:3:5:3:11 | options | enclosingFunctionName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:3:5:3:11 | options | fileImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:3:5:3:11 | options | receiverName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:3:5:3:11 | options | stringConcatenatedWith |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:5:5:5:18 | options.target | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:5:5:5:18 | options.target | InputAccessPathFromCallee |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:5:5:5:18 | options.target | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:5:5:5:18 | options.target | assignedToPropName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:5:5:5:18 | options.target | calleeImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:5:5:5:18 | options.target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:5:5:5:18 | options.target | contextSurroundingFunctionParameters | ()\n(options) |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:5:5:5:18 | options.target | enclosingFunctionBody |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:5:5:5:18 | options.target | enclosingFunctionName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:5:5:5:18 | options.target | fileImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:5:5:5:18 | options.target | receiverName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:5:5:5:18 | options.target | stringConcatenatedWith |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:8:6:8:19 | options.target | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:8:6:8:19 | options.target | InputAccessPathFromCallee |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:8:6:8:19 | options.target | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:8:6:8:19 | options.target | assignedToPropName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:8:6:8:19 | options.target | calleeImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:8:6:8:19 | options.target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:8:6:8:19 | options.target | contextSurroundingFunctionParameters | ()\n(options) |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:8:6:8:19 | options.target | enclosingFunctionBody |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:8:6:8:19 | options.target | enclosingFunctionName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:8:6:8:19 | options.target | fileImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:8:6:8:19 | options.target | receiverName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:8:6:8:19 | options.target | stringConcatenatedWith |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:14:6:14:11 | target | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:14:6:14:11 | target | InputAccessPathFromCallee |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:14:6:14:11 | target | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:14:6:14:11 | target | assignedToPropName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:14:6:14:11 | target | calleeImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:14:6:14:11 | target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:14:6:14:11 | target | contextSurroundingFunctionParameters | ()\n(options) |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:14:6:14:11 | target | enclosingFunctionBody |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:14:6:14:11 | target | enclosingFunctionName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:14:6:14:11 | target | fileImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:14:6:14:11 | target | receiverName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:14:6:14:11 | target | stringConcatenatedWith |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:18:6:18:11 | target | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:18:6:18:11 | target | InputAccessPathFromCallee |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:18:6:18:11 | target | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:18:6:18:11 | target | assignedToPropName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:18:6:18:11 | target | calleeImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:18:6:18:11 | target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:18:6:18:11 | target | contextSurroundingFunctionParameters | ()\n(options) |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:18:6:18:11 | target | enclosingFunctionBody |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:18:6:18:11 | target | enclosingFunctionName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:18:6:18:11 | target | fileImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:18:6:18:11 | target | receiverName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:18:6:18:11 | target | stringConcatenatedWith |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:22:6:22:11 | target | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:22:6:22:11 | target | InputAccessPathFromCallee |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:22:6:22:11 | target | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:22:6:22:11 | target | assignedToPropName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:22:6:22:11 | target | calleeImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:22:6:22:11 | target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:22:6:22:11 | target | contextSurroundingFunctionParameters | ()\n(options) |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:22:6:22:11 | target | enclosingFunctionBody |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:22:6:22:11 | target | enclosingFunctionName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:22:6:22:11 | target | fileImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:22:6:22:11 | target | receiverName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:22:6:22:11 | target | stringConcatenatedWith |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:24:6:24:11 | target | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:24:6:24:11 | target | InputAccessPathFromCallee |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:24:6:24:11 | target | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:24:6:24:11 | target | assignedToPropName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:24:6:24:11 | target | calleeImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:24:6:24:11 | target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:24:6:24:11 | target | contextSurroundingFunctionParameters | ()\n(options) |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:24:6:24:11 | target | enclosingFunctionBody |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:24:6:24:11 | target | enclosingFunctionName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:24:6:24:11 | target | fileImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:24:6:24:11 | target | receiverName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:24:6:24:11 | target | stringConcatenatedWith |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:28:6:28:11 | target | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:28:6:28:11 | target | InputAccessPathFromCallee |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:28:6:28:11 | target | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:28:6:28:11 | target | assignedToPropName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:28:6:28:11 | target | calleeImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:28:6:28:11 | target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:28:6:28:11 | target | contextSurroundingFunctionParameters | ()\n(options) |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:28:6:28:11 | target | enclosingFunctionBody |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:28:6:28:11 | target | enclosingFunctionName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:28:6:28:11 | target | fileImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:28:6:28:11 | target | receiverName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:28:6:28:11 | target | stringConcatenatedWith |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:30:6:30:11 | target | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:30:6:30:11 | target | InputAccessPathFromCallee |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:30:6:30:11 | target | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:30:6:30:11 | target | assignedToPropName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:30:6:30:11 | target | calleeImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:30:6:30:11 | target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:30:6:30:11 | target | contextSurroundingFunctionParameters | ()\n(options) |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:30:6:30:11 | target | enclosingFunctionBody |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:30:6:30:11 | target | enclosingFunctionName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:30:6:30:11 | target | fileImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:30:6:30:11 | target | receiverName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:30:6:30:11 | target | stringConcatenatedWith |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:34:6:34:11 | target | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:34:6:34:11 | target | InputAccessPathFromCallee |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:34:6:34:11 | target | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:34:6:34:11 | target | assignedToPropName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:34:6:34:11 | target | calleeImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:34:6:34:11 | target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:34:6:34:11 | target | contextSurroundingFunctionParameters | ()\n(options) |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:34:6:34:11 | target | enclosingFunctionBody |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:34:6:34:11 | target | enclosingFunctionName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:34:6:34:11 | target | fileImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:34:6:34:11 | target | receiverName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:34:6:34:11 | target | stringConcatenatedWith |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:36:6:36:11 | target | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:36:6:36:11 | target | InputAccessPathFromCallee |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:36:6:36:11 | target | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:36:6:36:11 | target | assignedToPropName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:36:6:36:11 | target | calleeImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:36:6:36:11 | target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:36:6:36:11 | target | contextSurroundingFunctionParameters | ()\n(options) |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:36:6:36:11 | target | enclosingFunctionBody |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:36:6:36:11 | target | enclosingFunctionName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:36:6:36:11 | target | fileImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:36:6:36:11 | target | receiverName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:36:6:36:11 | target | stringConcatenatedWith |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:40:6:40:11 | target | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:40:6:40:11 | target | InputAccessPathFromCallee |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:40:6:40:11 | target | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:40:6:40:11 | target | assignedToPropName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:40:6:40:11 | target | calleeImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:40:6:40:11 | target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:40:6:40:11 | target | contextSurroundingFunctionParameters | ()\n(options) |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:40:6:40:11 | target | enclosingFunctionBody |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:40:6:40:11 | target | enclosingFunctionName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:40:6:40:11 | target | fileImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:40:6:40:11 | target | receiverName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:40:6:40:11 | target | stringConcatenatedWith |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:42:6:42:11 | target | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:42:6:42:11 | target | InputAccessPathFromCallee |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:42:6:42:11 | target | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:42:6:42:11 | target | assignedToPropName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:42:6:42:11 | target | calleeImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:42:6:42:11 | target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:42:6:42:11 | target | contextSurroundingFunctionParameters | ()\n(options) |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:42:6:42:11 | target | enclosingFunctionBody |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:42:6:42:11 | target | enclosingFunctionName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:42:6:42:11 | target | fileImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:42:6:42:11 | target | receiverName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:42:6:42:11 | target | stringConcatenatedWith |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:46:6:46:11 | target | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:46:6:46:11 | target | InputAccessPathFromCallee |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:46:6:46:11 | target | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:46:6:46:11 | target | assignedToPropName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:46:6:46:11 | target | calleeImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:46:6:46:11 | target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:46:6:46:11 | target | contextSurroundingFunctionParameters | ()\n(options) |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:46:6:46:11 | target | enclosingFunctionBody |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:46:6:46:11 | target | enclosingFunctionName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:46:6:46:11 | target | fileImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:46:6:46:11 | target | receiverName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:46:6:46:11 | target | stringConcatenatedWith |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:48:6:48:11 | target | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:48:6:48:11 | target | InputAccessPathFromCallee |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:48:6:48:11 | target | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:48:6:48:11 | target | assignedToPropName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:48:6:48:11 | target | calleeImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:48:6:48:11 | target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:48:6:48:11 | target | contextSurroundingFunctionParameters | ()\n(options) |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:48:6:48:11 | target | enclosingFunctionBody |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:48:6:48:11 | target | enclosingFunctionName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:48:6:48:11 | target | fileImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:48:6:48:11 | target | receiverName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:48:6:48:11 | target | stringConcatenatedWith |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:52:6:52:11 | target | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:52:6:52:11 | target | InputAccessPathFromCallee |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:52:6:52:11 | target | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:52:6:52:11 | target | assignedToPropName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:52:6:52:11 | target | calleeImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:52:6:52:11 | target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:52:6:52:11 | target | contextSurroundingFunctionParameters | ()\n(options) |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:52:6:52:11 | target | enclosingFunctionBody |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:52:6:52:11 | target | enclosingFunctionName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:52:6:52:11 | target | fileImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:52:6:52:11 | target | receiverName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:52:6:52:11 | target | stringConcatenatedWith |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:54:6:54:11 | target | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:54:6:54:11 | target | InputAccessPathFromCallee |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:54:6:54:11 | target | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:54:6:54:11 | target | assignedToPropName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:54:6:54:11 | target | calleeImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:54:6:54:11 | target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:54:6:54:11 | target | contextSurroundingFunctionParameters | ()\n(options) |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:54:6:54:11 | target | enclosingFunctionBody |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:54:6:54:11 | target | enclosingFunctionName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:54:6:54:11 | target | fileImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:54:6:54:11 | target | receiverName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:54:6:54:11 | target | stringConcatenatedWith |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:58:6:58:11 | target | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:58:6:58:11 | target | InputAccessPathFromCallee |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:58:6:58:11 | target | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:58:6:58:11 | target | assignedToPropName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:58:6:58:11 | target | calleeImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:58:6:58:11 | target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:58:6:58:11 | target | contextSurroundingFunctionParameters | ()\n(options) |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:58:6:58:11 | target | enclosingFunctionBody |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:58:6:58:11 | target | enclosingFunctionName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:58:6:58:11 | target | fileImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:58:6:58:11 | target | receiverName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:58:6:58:11 | target | stringConcatenatedWith |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:60:6:60:11 | target | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:60:6:60:11 | target | InputAccessPathFromCallee |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:60:6:60:11 | target | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:60:6:60:11 | target | assignedToPropName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:60:6:60:11 | target | calleeImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:60:6:60:11 | target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:60:6:60:11 | target | contextSurroundingFunctionParameters | ()\n(options) |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:60:6:60:11 | target | enclosingFunctionBody |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:60:6:60:11 | target | enclosingFunctionName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:60:6:60:11 | target | fileImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:60:6:60:11 | target | receiverName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:60:6:60:11 | target | stringConcatenatedWith |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:66:26:66:32 | element | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:66:26:66:32 | element | InputAccessPathFromCallee |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:66:26:66:32 | element | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:66:26:66:32 | element | assignedToPropName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:66:26:66:32 | element | calleeImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:66:26:66:32 | element | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:66:26:66:32 | element | contextSurroundingFunctionParameters | ()\n(element, options) |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:66:26:66:32 | element | enclosingFunctionBody |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:66:26:66:32 | element | enclosingFunctionName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:66:26:66:32 | element | fileImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:66:26:66:32 | element | receiverName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:66:26:66:32 | element | stringConcatenatedWith |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:67:33:67:34 | {} | CalleeFlexibleAccessPath | $.extend |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:67:33:67:34 | {} | InputAccessPathFromCallee |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:67:33:67:34 | {} | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:67:33:67:34 | {} | assignedToPropName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:67:33:67:34 | {} | calleeImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:67:33:67:34 | {} | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:67:33:67:34 | {} | contextSurroundingFunctionParameters | ()\n(element, options) |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:67:33:67:34 | {} | enclosingFunctionBody |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:67:33:67:34 | {} | enclosingFunctionName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:67:33:67:34 | {} | fileImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:67:33:67:34 | {} | receiverName | $ |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:67:33:67:34 | {} | stringConcatenatedWith |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:67:37:67:43 | options | CalleeFlexibleAccessPath | $.extend |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:67:37:67:43 | options | InputAccessPathFromCallee |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:67:37:67:43 | options | InputArgumentIndex | 1 |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:67:37:67:43 | options | assignedToPropName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:67:37:67:43 | options | calleeImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:67:37:67:43 | options | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:67:37:67:43 | options | contextSurroundingFunctionParameters | ()\n(element, options) |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:67:37:67:43 | options | enclosingFunctionBody |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:67:37:67:43 | options | enclosingFunctionName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:67:37:67:43 | options | fileImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:67:37:67:43 | options | receiverName | $ |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:67:37:67:43 | options | stringConcatenatedWith |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:68:45:68:63 | this.options.parent | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:68:45:68:63 | this.options.parent | InputAccessPathFromCallee |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:68:45:68:63 | this.options.parent | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:68:45:68:63 | this.options.parent | assignedToPropName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:68:45:68:63 | this.options.parent | calleeImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:68:45:68:63 | this.options.parent | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:68:45:68:63 | this.options.parent | contextSurroundingFunctionParameters | ()\n(element, options) |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:68:45:68:63 | this.options.parent | enclosingFunctionBody |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:68:45:68:63 | this.options.parent | enclosingFunctionName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:68:45:68:63 | this.options.parent | fileImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:68:45:68:63 | this.options.parent | receiverName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:68:45:68:63 | this.options.parent | stringConcatenatedWith |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:72:5:72:23 | options.foo.bar.baz | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:72:5:72:23 | options.foo.bar.baz | InputAccessPathFromCallee |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:72:5:72:23 | options.foo.bar.baz | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:72:5:72:23 | options.foo.bar.baz | assignedToPropName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:72:5:72:23 | options.foo.bar.baz | calleeImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:72:5:72:23 | options.foo.bar.baz | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:72:5:72:23 | options.foo.bar.baz | contextSurroundingFunctionParameters | ()\n(options) |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:72:5:72:23 | options.foo.bar.baz | enclosingFunctionBody |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:72:5:72:23 | options.foo.bar.baz | enclosingFunctionName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:72:5:72:23 | options.foo.bar.baz | fileImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:72:5:72:23 | options.foo.bar.baz | receiverName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:72:5:72:23 | options.foo.bar.baz | stringConcatenatedWith |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:73:5:73:16 | options.html | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:73:5:73:16 | options.html | InputAccessPathFromCallee |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:73:5:73:16 | options.html | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:73:5:73:16 | options.html | assignedToPropName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:73:5:73:16 | options.html | calleeImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:73:5:73:16 | options.html | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:73:5:73:16 | options.html | contextSurroundingFunctionParameters | ()\n(options) |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:73:5:73:16 | options.html | enclosingFunctionBody |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:73:5:73:16 | options.html | enclosingFunctionName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:73:5:73:16 | options.html | fileImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:73:5:73:16 | options.html | receiverName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:73:5:73:16 | options.html | stringConcatenatedWith |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:77:5:77:5 | x | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:77:5:77:5 | x | InputAccessPathFromCallee |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:77:5:77:5 | x | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:77:5:77:5 | x | assignedToPropName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:77:5:77:5 | x | calleeImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:77:5:77:5 | x | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:77:5:77:5 | x | contextSurroundingFunctionParameters | ()\n(options) |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:77:5:77:5 | x | enclosingFunctionBody |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:77:5:77:5 | x | enclosingFunctionName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:77:5:77:5 | x | fileImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:77:5:77:5 | x | receiverName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:77:5:77:5 | x | stringConcatenatedWith |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:77:17:77:35 | options.foo.bar.baz | CalleeFlexibleAccessPath | $().appendTo |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:77:17:77:35 | options.foo.bar.baz | InputAccessPathFromCallee |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:77:17:77:35 | options.foo.bar.baz | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:77:17:77:35 | options.foo.bar.baz | assignedToPropName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:77:17:77:35 | options.foo.bar.baz | calleeImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:77:17:77:35 | options.foo.bar.baz | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:77:17:77:35 | options.foo.bar.baz | contextSurroundingFunctionParameters | ()\n(options) |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:77:17:77:35 | options.foo.bar.baz | enclosingFunctionBody |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:77:17:77:35 | options.foo.bar.baz | enclosingFunctionName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:77:17:77:35 | options.foo.bar.baz | fileImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:77:17:77:35 | options.foo.bar.baz | receiverName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:77:17:77:35 | options.foo.bar.baz | stringConcatenatedWith |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:81:5:81:24 | "#" + options.target | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:81:5:81:24 | "#" + options.target | InputAccessPathFromCallee |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:81:5:81:24 | "#" + options.target | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:81:5:81:24 | "#" + options.target | assignedToPropName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:81:5:81:24 | "#" + options.target | calleeImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:81:5:81:24 | "#" + options.target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:81:5:81:24 | "#" + options.target | contextSurroundingFunctionParameters | ()\n(options) |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:81:5:81:24 | "#" + options.target | enclosingFunctionBody |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:81:5:81:24 | "#" + options.target | enclosingFunctionName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:81:5:81:24 | "#" + options.target | fileImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:81:5:81:24 | "#" + options.target | receiverName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:81:5:81:24 | "#" + options.target | stringConcatenatedWith |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:86:22:86:23 | {} | CalleeFlexibleAccessPath | $.extend |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:86:22:86:23 | {} | InputAccessPathFromCallee |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:86:22:86:23 | {} | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:86:22:86:23 | {} | assignedToPropName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:86:22:86:23 | {} | calleeImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:86:22:86:23 | {} | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:86:22:86:23 | {} | contextSurroundingFunctionParameters | (o) |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:86:22:86:23 | {} | enclosingFunctionBody |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:86:22:86:23 | {} | enclosingFunctionName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:86:22:86:23 | {} | fileImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:86:22:86:23 | {} | receiverName | $ |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:86:22:86:23 | {} | stringConcatenatedWith |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:86:26:86:26 | o | CalleeFlexibleAccessPath | $.extend |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:86:26:86:26 | o | InputAccessPathFromCallee |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:86:26:86:26 | o | InputArgumentIndex | 1 |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:86:26:86:26 | o | assignedToPropName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:86:26:86:26 | o | calleeImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:86:26:86:26 | o | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:86:26:86:26 | o | contextSurroundingFunctionParameters | (o) |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:86:26:86:26 | o | enclosingFunctionBody |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:86:26:86:26 | o | enclosingFunctionName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:86:26:86:26 | o | fileImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:86:26:86:26 | o | receiverName | $ |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:86:26:86:26 | o | stringConcatenatedWith |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:89:16:89:16 | t | CalleeFlexibleAccessPath | console.log |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:89:16:89:16 | t | InputAccessPathFromCallee |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:89:16:89:16 | t | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:89:16:89:16 | t | assignedToPropName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:89:16:89:16 | t | calleeImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:89:16:89:16 | t | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:89:16:89:16 | t | contextSurroundingFunctionParameters | (o) |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:89:16:89:16 | t | enclosingFunctionBody |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:89:16:89:16 | t | enclosingFunctionName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:89:16:89:16 | t | fileImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:89:16:89:16 | t | receiverName | console |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:89:16:89:16 | t | stringConcatenatedWith |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:90:6:90:6 | t | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:90:6:90:6 | t | InputAccessPathFromCallee |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:90:6:90:6 | t | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:90:6:90:6 | t | assignedToPropName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:90:6:90:6 | t | calleeImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:90:6:90:6 | t | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:90:6:90:6 | t | contextSurroundingFunctionParameters | (o) |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:90:6:90:6 | t | enclosingFunctionBody |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:90:6:90:6 | t | enclosingFunctionName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:90:6:90:6 | t | fileImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:90:6:90:6 | t | receiverName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:90:6:90:6 | t | stringConcatenatedWith |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:97:16:97:21 | target | CalleeFlexibleAccessPath | safe.has |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:97:16:97:21 | target | InputAccessPathFromCallee |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:97:16:97:21 | target | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:97:16:97:21 | target | assignedToPropName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:97:16:97:21 | target | calleeImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:97:16:97:21 | target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:97:16:97:21 | target | contextSurroundingFunctionParameters | ()\n(options) |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:97:16:97:21 | target | enclosingFunctionBody |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:97:16:97:21 | target | enclosingFunctionName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:97:16:97:21 | target | fileImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:97:16:97:21 | target | receiverName | safe |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:97:16:97:21 | target | stringConcatenatedWith |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:98:6:98:11 | target | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:98:6:98:11 | target | InputAccessPathFromCallee |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:98:6:98:11 | target | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:98:6:98:11 | target | assignedToPropName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:98:6:98:11 | target | calleeImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:98:6:98:11 | target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:98:6:98:11 | target | contextSurroundingFunctionParameters | ()\n(options) |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:98:6:98:11 | target | enclosingFunctionBody |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:98:6:98:11 | target | enclosingFunctionName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:98:6:98:11 | target | fileImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:98:6:98:11 | target | receiverName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:98:6:98:11 | target | stringConcatenatedWith |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:102:22:105:3 | {\\n\\t\\t\\tme ... in'\\n\\t\\t} | CalleeFlexibleAccessPath | $.extend |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:102:22:105:3 | {\\n\\t\\t\\tme ... in'\\n\\t\\t} | InputAccessPathFromCallee |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:102:22:105:3 | {\\n\\t\\t\\tme ... in'\\n\\t\\t} | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:102:22:105:3 | {\\n\\t\\t\\tme ... in'\\n\\t\\t} | assignedToPropName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:102:22:105:3 | {\\n\\t\\t\\tme ... in'\\n\\t\\t} | calleeImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:102:22:105:3 | {\\n\\t\\t\\tme ... in'\\n\\t\\t} | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:102:22:105:3 | {\\n\\t\\t\\tme ... in'\\n\\t\\t} | contextSurroundingFunctionParameters | ()\n(options) |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:102:22:105:3 | {\\n\\t\\t\\tme ... in'\\n\\t\\t} | enclosingFunctionBody |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:102:22:105:3 | {\\n\\t\\t\\tme ... in'\\n\\t\\t} | enclosingFunctionName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:102:22:105:3 | {\\n\\t\\t\\tme ... in'\\n\\t\\t} | fileImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:102:22:105:3 | {\\n\\t\\t\\tme ... in'\\n\\t\\t} | receiverName | $ |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:102:22:105:3 | {\\n\\t\\t\\tme ... in'\\n\\t\\t} | stringConcatenatedWith |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:103:10:103:22 | '<div></div>' | CalleeFlexibleAccessPath | $.extend |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:103:10:103:22 | '<div></div>' | InputAccessPathFromCallee | 0.menu |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:103:10:103:22 | '<div></div>' | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:103:10:103:22 | '<div></div>' | assignedToPropName | menu |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:103:10:103:22 | '<div></div>' | calleeImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:103:10:103:22 | '<div></div>' | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:103:10:103:22 | '<div></div>' | contextSurroundingFunctionParameters | ()\n(options) |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:103:10:103:22 | '<div></div>' | enclosingFunctionBody |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:103:10:103:22 | '<div></div>' | enclosingFunctionName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:103:10:103:22 | '<div></div>' | fileImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:103:10:103:22 | '<div></div>' | receiverName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:103:10:103:22 | '<div></div>' | stringConcatenatedWith |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:104:12:104:23 | '.my_plugin' | CalleeFlexibleAccessPath | $.extend |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:104:12:104:23 | '.my_plugin' | InputAccessPathFromCallee | 0.target |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:104:12:104:23 | '.my_plugin' | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:104:12:104:23 | '.my_plugin' | assignedToPropName | target |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:104:12:104:23 | '.my_plugin' | calleeImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:104:12:104:23 | '.my_plugin' | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:104:12:104:23 | '.my_plugin' | contextSurroundingFunctionParameters | ()\n(options) |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:104:12:104:23 | '.my_plugin' | enclosingFunctionBody |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:104:12:104:23 | '.my_plugin' | enclosingFunctionName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:104:12:104:23 | '.my_plugin' | fileImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:104:12:104:23 | '.my_plugin' | receiverName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:104:12:104:23 | '.my_plugin' | stringConcatenatedWith |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:105:6:105:12 | options | CalleeFlexibleAccessPath | $.extend |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:105:6:105:12 | options | InputAccessPathFromCallee |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:105:6:105:12 | options | InputArgumentIndex | 1 |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:105:6:105:12 | options | assignedToPropName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:105:6:105:12 | options | calleeImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:105:6:105:12 | options | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:105:6:105:12 | options | contextSurroundingFunctionParameters | ()\n(options) |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:105:6:105:12 | options | enclosingFunctionBody |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:105:6:105:12 | options | enclosingFunctionName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:105:6:105:12 | options | fileImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:105:6:105:12 | options | receiverName | $ |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:105:6:105:12 | options | stringConcatenatedWith |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:106:5:106:16 | options.menu | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:106:5:106:16 | options.menu | InputAccessPathFromCallee |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:106:5:106:16 | options.menu | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:106:5:106:16 | options.menu | assignedToPropName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:106:5:106:16 | options.menu | calleeImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:106:5:106:16 | options.menu | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:106:5:106:16 | options.menu | contextSurroundingFunctionParameters | ()\n(options) |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:106:5:106:16 | options.menu | enclosingFunctionBody |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:106:5:106:16 | options.menu | enclosingFunctionName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:106:5:106:16 | options.menu | fileImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:106:5:106:16 | options.menu | receiverName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:106:5:106:16 | options.menu | stringConcatenatedWith |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:107:5:107:18 | options.target | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:107:5:107:18 | options.target | InputAccessPathFromCallee |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:107:5:107:18 | options.target | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:107:5:107:18 | options.target | assignedToPropName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:107:5:107:18 | options.target | calleeImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:107:5:107:18 | options.target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:107:5:107:18 | options.target | contextSurroundingFunctionParameters | ()\n(options) |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:107:5:107:18 | options.target | enclosingFunctionBody |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:107:5:107:18 | options.target | enclosingFunctionName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:107:5:107:18 | options.target | fileImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:107:5:107:18 | options.target | receiverName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:107:5:107:18 | options.target | stringConcatenatedWith |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:22:115:23 | {} | CalleeFlexibleAccessPath | $.extend |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:22:115:23 | {} | InputAccessPathFromCallee |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:22:115:23 | {} | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:22:115:23 | {} | assignedToPropName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:22:115:23 | {} | calleeImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:22:115:23 | {} | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:22:115:23 | {} | contextSurroundingFunctionParameters | ()\n(options) |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:22:115:23 | {} | enclosingFunctionBody |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:22:115:23 | {} | enclosingFunctionName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:22:115:23 | {} | fileImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:22:115:23 | {} | receiverName | $ |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:22:115:23 | {} | stringConcatenatedWith |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:26:115:48 | $.fn.my ... efaults | CalleeFlexibleAccessPath | $.extend |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:26:115:48 | $.fn.my ... efaults | InputAccessPathFromCallee |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:26:115:48 | $.fn.my ... efaults | InputArgumentIndex | 1 |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:26:115:48 | $.fn.my ... efaults | assignedToPropName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:26:115:48 | $.fn.my ... efaults | calleeImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:26:115:48 | $.fn.my ... efaults | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:26:115:48 | $.fn.my ... efaults | contextSurroundingFunctionParameters | ()\n(options) |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:26:115:48 | $.fn.my ... efaults | enclosingFunctionBody |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:26:115:48 | $.fn.my ... efaults | enclosingFunctionName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:26:115:48 | $.fn.my ... efaults | fileImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:26:115:48 | $.fn.my ... efaults | receiverName | $ |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:26:115:48 | $.fn.my ... efaults | stringConcatenatedWith |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:51:115:57 | options | CalleeFlexibleAccessPath | $.extend |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:51:115:57 | options | InputAccessPathFromCallee |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:51:115:57 | options | InputArgumentIndex | 2 |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:51:115:57 | options | assignedToPropName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:51:115:57 | options | calleeImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:51:115:57 | options | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:51:115:57 | options | contextSurroundingFunctionParameters | ()\n(options) |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:51:115:57 | options | enclosingFunctionBody |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:51:115:57 | options | enclosingFunctionName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:51:115:57 | options | fileImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:51:115:57 | options | receiverName | $ |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:51:115:57 | options | stringConcatenatedWith |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:116:5:116:16 | options.menu | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:116:5:116:16 | options.menu | InputAccessPathFromCallee |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:116:5:116:16 | options.menu | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:116:5:116:16 | options.menu | assignedToPropName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:116:5:116:16 | options.menu | calleeImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:116:5:116:16 | options.menu | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:116:5:116:16 | options.menu | contextSurroundingFunctionParameters | ()\n(options) |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:116:5:116:16 | options.menu | enclosingFunctionBody |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:116:5:116:16 | options.menu | enclosingFunctionName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:116:5:116:16 | options.menu | fileImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:116:5:116:16 | options.menu | receiverName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:116:5:116:16 | options.menu | stringConcatenatedWith |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:117:5:117:18 | options.target | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:117:5:117:18 | options.target | InputAccessPathFromCallee |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:117:5:117:18 | options.target | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:117:5:117:18 | options.target | assignedToPropName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:117:5:117:18 | options.target | calleeImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:117:5:117:18 | options.target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:117:5:117:18 | options.target | contextSurroundingFunctionParameters | ()\n(options) |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:117:5:117:18 | options.target | enclosingFunctionBody |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:117:5:117:18 | options.target | enclosingFunctionName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:117:5:117:18 | options.target | fileImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:117:5:117:18 | options.target | receiverName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:117:5:117:18 | options.target | stringConcatenatedWith |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:122:5:122:18 | options.target | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:122:5:122:18 | options.target | InputAccessPathFromCallee |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:122:5:122:18 | options.target | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:122:5:122:18 | options.target | assignedToPropName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:122:5:122:18 | options.target | calleeImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:122:5:122:18 | options.target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:122:5:122:18 | options.target | contextSurroundingFunctionParameters | ()\n(options) |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:122:5:122:18 | options.target | enclosingFunctionBody |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:122:5:122:18 | options.target | enclosingFunctionName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:122:5:122:18 | options.target | fileImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:122:5:122:18 | options.target | receiverName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:122:5:122:18 | options.target | stringConcatenatedWith |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:125:11:125:14 | $.fn | CalleeFlexibleAccessPath | $.extend |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:125:11:125:14 | $.fn | InputAccessPathFromCallee |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:125:11:125:14 | $.fn | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:125:11:125:14 | $.fn | assignedToPropName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:125:11:125:14 | $.fn | calleeImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:125:11:125:14 | $.fn | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:125:11:125:14 | $.fn | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:125:11:125:14 | $.fn | enclosingFunctionBody |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:125:11:125:14 | $.fn | enclosingFunctionName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:125:11:125:14 | $.fn | fileImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:125:11:125:14 | $.fn | receiverName | $ |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:125:11:125:14 | $.fn | stringConcatenatedWith |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:125:17:129:2 | {\\n\\t\\tmy_ ... \\n\\t\\t}\\n\\t} | CalleeFlexibleAccessPath | $.extend |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:125:17:129:2 | {\\n\\t\\tmy_ ... \\n\\t\\t}\\n\\t} | InputAccessPathFromCallee |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:125:17:129:2 | {\\n\\t\\tmy_ ... \\n\\t\\t}\\n\\t} | InputArgumentIndex | 1 |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:125:17:129:2 | {\\n\\t\\tmy_ ... \\n\\t\\t}\\n\\t} | assignedToPropName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:125:17:129:2 | {\\n\\t\\tmy_ ... \\n\\t\\t}\\n\\t} | calleeImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:125:17:129:2 | {\\n\\t\\tmy_ ... \\n\\t\\t}\\n\\t} | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:125:17:129:2 | {\\n\\t\\tmy_ ... \\n\\t\\t}\\n\\t} | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:125:17:129:2 | {\\n\\t\\tmy_ ... \\n\\t\\t}\\n\\t} | enclosingFunctionBody |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:125:17:129:2 | {\\n\\t\\tmy_ ... \\n\\t\\t}\\n\\t} | enclosingFunctionName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:125:17:129:2 | {\\n\\t\\tmy_ ... \\n\\t\\t}\\n\\t} | fileImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:125:17:129:2 | {\\n\\t\\tmy_ ... \\n\\t\\t}\\n\\t} | receiverName | $ |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:125:17:129:2 | {\\n\\t\\tmy_ ... \\n\\t\\t}\\n\\t} | stringConcatenatedWith |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:126:14:128:3 | functio ...  OK\\n\\t\\t} | CalleeFlexibleAccessPath | $.extend |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:126:14:128:3 | functio ...  OK\\n\\t\\t} | InputAccessPathFromCallee | 1.my_plugin |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:126:14:128:3 | functio ...  OK\\n\\t\\t} | InputArgumentIndex | 1 |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:126:14:128:3 | functio ...  OK\\n\\t\\t} | assignedToPropName | my_plugin |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:126:14:128:3 | functio ...  OK\\n\\t\\t} | calleeImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:126:14:128:3 | functio ...  OK\\n\\t\\t} | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:126:14:128:3 | functio ...  OK\\n\\t\\t} | contextSurroundingFunctionParameters | ()\n(options) |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:126:14:128:3 | functio ...  OK\\n\\t\\t} | enclosingFunctionBody |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:126:14:128:3 | functio ...  OK\\n\\t\\t} | enclosingFunctionName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:126:14:128:3 | functio ...  OK\\n\\t\\t} | fileImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:126:14:128:3 | functio ...  OK\\n\\t\\t} | receiverName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:126:14:128:3 | functio ...  OK\\n\\t\\t} | stringConcatenatedWith |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:127:6:127:19 | options.target | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:127:6:127:19 | options.target | InputAccessPathFromCallee |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:127:6:127:19 | options.target | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:127:6:127:19 | options.target | assignedToPropName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:127:6:127:19 | options.target | calleeImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:127:6:127:19 | options.target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:127:6:127:19 | options.target | contextSurroundingFunctionParameters | ()\n(options) |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:127:6:127:19 | options.target | enclosingFunctionBody |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:127:6:127:19 | options.target | enclosingFunctionName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:127:6:127:19 | options.target | fileImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:127:6:127:19 | options.target | receiverName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:127:6:127:19 | options.target | stringConcatenatedWith |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:132:5:132:18 | options.target | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:132:5:132:18 | options.target | InputAccessPathFromCallee |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:132:5:132:18 | options.target | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:132:5:132:18 | options.target | assignedToPropName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:132:5:132:18 | options.target | calleeImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:132:5:132:18 | options.target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:132:5:132:18 | options.target | contextSurroundingFunctionParameters | ()\n(options) |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:132:5:132:18 | options.target | enclosingFunctionBody |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:132:5:132:18 | options.target | enclosingFunctionName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:132:5:132:18 | options.target | fileImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:132:5:132:18 | options.target | receiverName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:132:5:132:18 | options.target | stringConcatenatedWith |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:136:5:136:29 | options ... elector | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:136:5:136:29 | options ... elector | InputAccessPathFromCallee |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:136:5:136:29 | options ... elector | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:136:5:136:29 | options ... elector | assignedToPropName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:136:5:136:29 | options ... elector | calleeImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:136:5:136:29 | options ... elector | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:136:5:136:29 | options ... elector | contextSurroundingFunctionParameters | ()\n(options) |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:136:5:136:29 | options ... elector | enclosingFunctionBody |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:136:5:136:29 | options ... elector | enclosingFunctionName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:136:5:136:29 | options ... elector | fileImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:136:5:136:29 | options ... elector | receiverName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:136:5:136:29 | options ... elector | stringConcatenatedWith |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:140:41:140:56 | <div>hello</div> | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:140:41:140:56 | <div>hello</div> | InputAccessPathFromCallee |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:140:41:140:56 | <div>hello</div> | InputArgumentIndex |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:140:41:140:56 | <div>hello</div> | assignedToPropName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:140:41:140:56 | <div>hello</div> | calleeImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:140:41:140:56 | <div>hello</div> | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:140:41:140:56 | <div>hello</div> | contextSurroundingFunctionParameters | ()\n(options) |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:140:41:140:56 | <div>hello</div> | enclosingFunctionBody |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:140:41:140:56 | <div>hello</div> | enclosingFunctionName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:140:41:140:56 | <div>hello</div> | fileImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:140:41:140:56 | <div>hello</div> | receiverName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:140:41:140:56 | <div>hello</div> | stringConcatenatedWith |  -endpoint-  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:141:5:141:16 | intentional1 | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:141:5:141:16 | intentional1 | InputAccessPathFromCallee |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:141:5:141:16 | intentional1 | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:141:5:141:16 | intentional1 | assignedToPropName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:141:5:141:16 | intentional1 | calleeImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:141:5:141:16 | intentional1 | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:141:5:141:16 | intentional1 | contextSurroundingFunctionParameters | ()\n(options) |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:141:5:141:16 | intentional1 | enclosingFunctionBody |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:141:5:141:16 | intentional1 | enclosingFunctionName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:141:5:141:16 | intentional1 | fileImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:141:5:141:16 | intentional1 | receiverName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:141:5:141:16 | intentional1 | stringConcatenatedWith |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:143:23:143:27 | <div> | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:143:23:143:27 | <div> | InputAccessPathFromCallee |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:143:23:143:27 | <div> | InputArgumentIndex |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:143:23:143:27 | <div> | assignedToPropName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:143:23:143:27 | <div> | calleeImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:143:23:143:27 | <div> | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:143:23:143:27 | <div> | contextSurroundingFunctionParameters | ()\n(options) |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:143:23:143:27 | <div> | enclosingFunctionBody |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:143:23:143:27 | <div> | enclosingFunctionName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:143:23:143:27 | <div> | fileImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:143:23:143:27 | <div> | receiverName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:143:23:143:27 | <div> | stringConcatenatedWith |  -endpoint- options.target + '</div>' |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:143:30:143:43 | options.target | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:143:30:143:43 | options.target | InputAccessPathFromCallee |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:143:30:143:43 | options.target | InputArgumentIndex |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:143:30:143:43 | options.target | assignedToPropName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:143:30:143:43 | options.target | calleeImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:143:30:143:43 | options.target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:143:30:143:43 | options.target | contextSurroundingFunctionParameters | ()\n(options) |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:143:30:143:43 | options.target | enclosingFunctionBody |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:143:30:143:43 | options.target | enclosingFunctionName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:143:30:143:43 | options.target | fileImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:143:30:143:43 | options.target | receiverName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:143:30:143:43 | options.target | stringConcatenatedWith | '<div>' -endpoint- '</div>' |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:143:45:143:50 | </div> | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:143:45:143:50 | </div> | InputAccessPathFromCallee |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:143:45:143:50 | </div> | InputArgumentIndex |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:143:45:143:50 | </div> | assignedToPropName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:143:45:143:50 | </div> | calleeImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:143:45:143:50 | </div> | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:143:45:143:50 | </div> | contextSurroundingFunctionParameters | ()\n(options) |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:143:45:143:50 | </div> | enclosingFunctionBody |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:143:45:143:50 | </div> | enclosingFunctionName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:143:45:143:50 | </div> | fileImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:143:45:143:50 | </div> | receiverName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:143:45:143:50 | </div> | stringConcatenatedWith | '<div>' + options.target -endpoint-  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:144:5:144:16 | intentional2 | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:144:5:144:16 | intentional2 | InputAccessPathFromCallee |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:144:5:144:16 | intentional2 | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:144:5:144:16 | intentional2 | assignedToPropName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:144:5:144:16 | intentional2 | calleeImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:144:5:144:16 | intentional2 | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:144:5:144:16 | intentional2 | contextSurroundingFunctionParameters | ()\n(options) |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:144:5:144:16 | intentional2 | enclosingFunctionBody |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:144:5:144:16 | intentional2 | enclosingFunctionName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:144:5:144:16 | intentional2 | fileImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:144:5:144:16 | intentional2 | receiverName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:144:5:144:16 | intentional2 | stringConcatenatedWith |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:146:23:146:27 | <div> | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:146:23:146:27 | <div> | InputAccessPathFromCallee |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:146:23:146:27 | <div> | InputArgumentIndex |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:146:23:146:27 | <div> | assignedToPropName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:146:23:146:27 | <div> | calleeImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:146:23:146:27 | <div> | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:146:23:146:27 | <div> | contextSurroundingFunctionParameters | ()\n(options) |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:146:23:146:27 | <div> | enclosingFunctionBody |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:146:23:146:27 | <div> | enclosingFunctionName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:146:23:146:27 | <div> | fileImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:146:23:146:27 | <div> | receiverName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:146:23:146:27 | <div> | stringConcatenatedWith |  -endpoint- ? |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:146:32:146:54 | options ... </div>` | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:146:32:146:54 | options ... </div>` | InputAccessPathFromCallee |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:146:32:146:54 | options ... </div>` | InputArgumentIndex |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:146:32:146:54 | options ... </div>` | assignedToPropName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:146:32:146:54 | options ... </div>` | calleeImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:146:32:146:54 | options ... </div>` | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:146:32:146:54 | options ... </div>` | contextSurroundingFunctionParameters | ()\n(options) |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:146:32:146:54 | options ... </div>` | enclosingFunctionBody |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:146:32:146:54 | options ... </div>` | enclosingFunctionName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:146:32:146:54 | options ... </div>` | fileImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:146:32:146:54 | options ... </div>` | receiverName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:146:32:146:54 | options ... </div>` | stringConcatenatedWith | '<div>' -endpoint-  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:147:5:147:16 | intentional3 | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:147:5:147:16 | intentional3 | InputAccessPathFromCallee |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:147:5:147:16 | intentional3 | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:147:5:147:16 | intentional3 | assignedToPropName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:147:5:147:16 | intentional3 | calleeImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:147:5:147:16 | intentional3 | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:147:5:147:16 | intentional3 | contextSurroundingFunctionParameters | ()\n(options) |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:147:5:147:16 | intentional3 | enclosingFunctionBody |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:147:5:147:16 | intentional3 | enclosingFunctionName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:147:5:147:16 | intentional3 | fileImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:147:5:147:16 | intentional3 | receiverName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:147:5:147:16 | intentional3 | stringConcatenatedWith |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:149:24:149:35 | <div class=" | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:149:24:149:35 | <div class=" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:149:24:149:35 | <div class=" | InputArgumentIndex |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:149:24:149:35 | <div class=" | assignedToPropName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:149:24:149:35 | <div class=" | calleeImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:149:24:149:35 | <div class=" | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:149:24:149:35 | <div class=" | contextSurroundingFunctionParameters | ()\n(options) |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:149:24:149:35 | <div class=" | enclosingFunctionBody |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:149:24:149:35 | <div class=" | enclosingFunctionName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:149:24:149:35 | <div class=" | fileImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:149:24:149:35 | <div class=" | receiverName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:149:24:149:35 | <div class=" | stringConcatenatedWith |  -endpoint- options.target + '"></div>' |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:149:38:149:51 | options.target | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:149:38:149:51 | options.target | InputAccessPathFromCallee |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:149:38:149:51 | options.target | InputArgumentIndex |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:149:38:149:51 | options.target | assignedToPropName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:149:38:149:51 | options.target | calleeImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:149:38:149:51 | options.target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:149:38:149:51 | options.target | contextSurroundingFunctionParameters | ()\n(options) |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:149:38:149:51 | options.target | enclosingFunctionBody |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:149:38:149:51 | options.target | enclosingFunctionName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:149:38:149:51 | options.target | fileImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:149:38:149:51 | options.target | receiverName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:149:38:149:51 | options.target | stringConcatenatedWith | '<div class="' -endpoint- '"></div>' |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:149:53:149:60 | "></div> | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:149:53:149:60 | "></div> | InputAccessPathFromCallee |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:149:53:149:60 | "></div> | InputArgumentIndex |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:149:53:149:60 | "></div> | assignedToPropName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:149:53:149:60 | "></div> | calleeImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:149:53:149:60 | "></div> | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:149:53:149:60 | "></div> | contextSurroundingFunctionParameters | ()\n(options) |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:149:53:149:60 | "></div> | enclosingFunctionBody |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:149:53:149:60 | "></div> | enclosingFunctionName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:149:53:149:60 | "></div> | fileImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:149:53:149:60 | "></div> | receiverName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:149:53:149:60 | "></div> | stringConcatenatedWith | '<div class="' + options.target -endpoint-  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:150:5:150:17 | unintentional | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:150:5:150:17 | unintentional | InputAccessPathFromCallee |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:150:5:150:17 | unintentional | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:150:5:150:17 | unintentional | assignedToPropName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:150:5:150:17 | unintentional | calleeImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:150:5:150:17 | unintentional | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:150:5:150:17 | unintentional | contextSurroundingFunctionParameters | ()\n(options) |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:150:5:150:17 | unintentional | enclosingFunctionBody |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:150:5:150:17 | unintentional | enclosingFunctionName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:150:5:150:17 | unintentional | fileImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:150:5:150:17 | unintentional | receiverName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:150:5:150:17 | unintentional | stringConcatenatedWith |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:155:33:155:38 | target | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:155:33:155:38 | target | InputAccessPathFromCallee |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:155:33:155:38 | target | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:155:33:155:38 | target | assignedToPropName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:155:33:155:38 | target | calleeImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:155:33:155:38 | target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:155:33:155:38 | target | contextSurroundingFunctionParameters | ()\n(options) |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:155:33:155:38 | target | enclosingFunctionBody |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:155:33:155:38 | target | enclosingFunctionName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:155:33:155:38 | target | fileImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:155:33:155:38 | target | receiverName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:155:33:155:38 | target | stringConcatenatedWith |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:155:44:155:51 | document | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:155:44:155:51 | document | InputAccessPathFromCallee |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:155:44:155:51 | document | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:155:44:155:51 | document | assignedToPropName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:155:44:155:51 | document | calleeImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:155:44:155:51 | document | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:155:44:155:51 | document | contextSurroundingFunctionParameters | ()\n(options) |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:155:44:155:51 | document | enclosingFunctionBody |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:155:44:155:51 | document | enclosingFunctionName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:155:44:155:51 | document | fileImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:155:44:155:51 | document | receiverName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:155:44:155:51 | document | stringConcatenatedWith |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:155:59:155:64 | target | CalleeFlexibleAccessPath | $().find |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:155:59:155:64 | target | InputAccessPathFromCallee |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:155:59:155:64 | target | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:155:59:155:64 | target | assignedToPropName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:155:59:155:64 | target | calleeImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:155:59:155:64 | target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:155:59:155:64 | target | contextSurroundingFunctionParameters | ()\n(options) |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:155:59:155:64 | target | enclosingFunctionBody |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:155:59:155:64 | target | enclosingFunctionName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:155:59:155:64 | target | fileImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:155:59:155:64 | target | receiverName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:155:59:155:64 | target | stringConcatenatedWith |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:156:41:156:54 | options.target | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:156:41:156:54 | options.target | InputAccessPathFromCallee |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:156:41:156:54 | options.target | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:156:41:156:54 | options.target | assignedToPropName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:156:41:156:54 | options.target | calleeImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:156:41:156:54 | options.target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:156:41:156:54 | options.target | contextSurroundingFunctionParameters | ()\n(options) |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:156:41:156:54 | options.target | enclosingFunctionBody |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:156:41:156:54 | options.target | enclosingFunctionName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:156:41:156:54 | options.target | fileImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:156:41:156:54 | options.target | receiverName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:156:41:156:54 | options.target | stringConcatenatedWith |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:156:60:156:67 | document | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:156:60:156:67 | document | InputAccessPathFromCallee |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:156:60:156:67 | document | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:156:60:156:67 | document | assignedToPropName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:156:60:156:67 | document | calleeImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:156:60:156:67 | document | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:156:60:156:67 | document | contextSurroundingFunctionParameters | ()\n(options) |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:156:60:156:67 | document | enclosingFunctionBody |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:156:60:156:67 | document | enclosingFunctionName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:156:60:156:67 | document | fileImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:156:60:156:67 | document | receiverName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:156:60:156:67 | document | stringConcatenatedWith |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:156:75:156:88 | options.target | CalleeFlexibleAccessPath | $().find |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:156:75:156:88 | options.target | InputAccessPathFromCallee |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:156:75:156:88 | options.target | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:156:75:156:88 | options.target | assignedToPropName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:156:75:156:88 | options.target | calleeImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:156:75:156:88 | options.target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:156:75:156:88 | options.target | contextSurroundingFunctionParameters | ()\n(options) |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:156:75:156:88 | options.target | enclosingFunctionBody |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:156:75:156:88 | options.target | enclosingFunctionName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:156:75:156:88 | options.target | fileImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:156:75:156:88 | options.target | receiverName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:156:75:156:88 | options.target | stringConcatenatedWith |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:157:44:157:59 | options.target.a | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:157:44:157:59 | options.target.a | InputAccessPathFromCallee |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:157:44:157:59 | options.target.a | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:157:44:157:59 | options.target.a | assignedToPropName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:157:44:157:59 | options.target.a | calleeImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:157:44:157:59 | options.target.a | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:157:44:157:59 | options.target.a | contextSurroundingFunctionParameters | ()\n(options) |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:157:44:157:59 | options.target.a | enclosingFunctionBody |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:157:44:157:59 | options.target.a | enclosingFunctionName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:157:44:157:59 | options.target.a | fileImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:157:44:157:59 | options.target.a | receiverName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:157:44:157:59 | options.target.a | stringConcatenatedWith |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:157:65:157:72 | document | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:157:65:157:72 | document | InputAccessPathFromCallee |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:157:65:157:72 | document | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:157:65:157:72 | document | assignedToPropName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:157:65:157:72 | document | calleeImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:157:65:157:72 | document | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:157:65:157:72 | document | contextSurroundingFunctionParameters | ()\n(options) |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:157:65:157:72 | document | enclosingFunctionBody |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:157:65:157:72 | document | enclosingFunctionName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:157:65:157:72 | document | fileImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:157:65:157:72 | document | receiverName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:157:65:157:72 | document | stringConcatenatedWith |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:157:80:157:95 | options.target.a | CalleeFlexibleAccessPath | $().find |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:157:80:157:95 | options.target.a | InputAccessPathFromCallee |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:157:80:157:95 | options.target.a | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:157:80:157:95 | options.target.a | assignedToPropName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:157:80:157:95 | options.target.a | calleeImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:157:80:157:95 | options.target.a | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:157:80:157:95 | options.target.a | contextSurroundingFunctionParameters | ()\n(options) |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:157:80:157:95 | options.target.a | enclosingFunctionBody |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:157:80:157:95 | options.target.a | enclosingFunctionName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:157:80:157:95 | options.target.a | fileImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:157:80:157:95 | options.target.a | receiverName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:157:80:157:95 | options.target.a | stringConcatenatedWith |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:161:5:161:30 | anyPref ... .target | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:161:5:161:30 | anyPref ... .target | InputAccessPathFromCallee |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:161:5:161:30 | anyPref ... .target | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:161:5:161:30 | anyPref ... .target | assignedToPropName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:161:5:161:30 | anyPref ... .target | calleeImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:161:5:161:30 | anyPref ... .target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:161:5:161:30 | anyPref ... .target | contextSurroundingFunctionParameters | ()\n(options) |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:161:5:161:30 | anyPref ... .target | enclosingFunctionBody |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:161:5:161:30 | anyPref ... .target | enclosingFunctionName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:161:5:161:30 | anyPref ... .target | fileImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:161:5:161:30 | anyPref ... .target | receiverName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:161:5:161:30 | anyPref ... .target | stringConcatenatedWith |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:163:5:163:54 | somethi ... target) | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:163:5:163:54 | somethi ... target) | InputAccessPathFromCallee |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:163:5:163:54 | somethi ... target) | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:163:5:163:54 | somethi ... target) | assignedToPropName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:163:5:163:54 | somethi ... target) | calleeImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:163:5:163:54 | somethi ... target) | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:163:5:163:54 | somethi ... target) | contextSurroundingFunctionParameters | ()\n(options) |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:163:5:163:54 | somethi ... target) | enclosingFunctionBody |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:163:5:163:54 | somethi ... target) | enclosingFunctionName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:163:5:163:54 | somethi ... target) | fileImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:163:5:163:54 | somethi ... target) | receiverName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:163:5:163:54 | somethi ... target) | stringConcatenatedWith |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:167:6:167:11 | target | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:167:6:167:11 | target | InputAccessPathFromCallee |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:167:6:167:11 | target | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:167:6:167:11 | target | assignedToPropName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:167:6:167:11 | target | calleeImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:167:6:167:11 | target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:167:6:167:11 | target | contextSurroundingFunctionParameters | ()\n(options) |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:167:6:167:11 | target | enclosingFunctionBody |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:167:6:167:11 | target | enclosingFunctionName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:167:6:167:11 | target | fileImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:167:6:167:11 | target | receiverName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:167:6:167:11 | target | stringConcatenatedWith |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:170:6:170:11 | target | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:170:6:170:11 | target | InputAccessPathFromCallee |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:170:6:170:11 | target | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:170:6:170:11 | target | assignedToPropName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:170:6:170:11 | target | calleeImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:170:6:170:11 | target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:170:6:170:11 | target | contextSurroundingFunctionParameters | ()\n(options) |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:170:6:170:11 | target | enclosingFunctionBody |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:170:6:170:11 | target | enclosingFunctionName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:170:6:170:11 | target | fileImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:170:6:170:11 | target | receiverName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:170:6:170:11 | target | stringConcatenatedWith |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:179:5:179:18 | options.target | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:179:5:179:18 | options.target | InputAccessPathFromCallee |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:179:5:179:18 | options.target | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:179:5:179:18 | options.target | assignedToPropName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:179:5:179:18 | options.target | calleeImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:179:5:179:18 | options.target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:179:5:179:18 | options.target | contextSurroundingFunctionParameters | ()\n(options) |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:179:5:179:18 | options.target | enclosingFunctionBody |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:179:5:179:18 | options.target | enclosingFunctionName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:179:5:179:18 | options.target | fileImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:179:5:179:18 | options.target | receiverName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:179:5:179:18 | options.target | stringConcatenatedWith |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:182:5:182:12 | document | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:182:5:182:12 | document | InputAccessPathFromCallee |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:182:5:182:12 | document | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:182:5:182:12 | document | assignedToPropName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:182:5:182:12 | document | calleeImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:182:5:182:12 | document | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:182:5:182:12 | document | contextSurroundingFunctionParameters | ()\n(options) |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:182:5:182:12 | document | enclosingFunctionBody |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:182:5:182:12 | document | enclosingFunctionName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:182:5:182:12 | document | fileImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:182:5:182:12 | document | receiverName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:182:5:182:12 | document | stringConcatenatedWith |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:182:20:182:33 | options.target | CalleeFlexibleAccessPath | $().find |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:182:20:182:33 | options.target | InputAccessPathFromCallee |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:182:20:182:33 | options.target | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:182:20:182:33 | options.target | assignedToPropName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:182:20:182:33 | options.target | calleeImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:182:20:182:33 | options.target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:182:20:182:33 | options.target | contextSurroundingFunctionParameters | ()\n(options) |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:182:20:182:33 | options.target | enclosingFunctionBody |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:182:20:182:33 | options.target | enclosingFunctionName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:182:20:182:33 | options.target | fileImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:182:20:182:33 | options.target | receiverName |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:182:20:182:33 | options.target | stringConcatenatedWith |  |
-| autogenerated/Xss/XssThroughDom/forms.js:9:19:9:23 | "#id" | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/XssThroughDom/forms.js:9:19:9:23 | "#id" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/XssThroughDom/forms.js:9:19:9:23 | "#id" | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/forms.js:9:19:9:23 | "#id" | assignedToPropName |  |
-| autogenerated/Xss/XssThroughDom/forms.js:9:19:9:23 | "#id" | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/forms.js:9:19:9:23 | "#id" | contextFunctionInterfaces | App()\nFormikBasic()\nHookForm()\nHookForm2()\nhandleSubmit(values, ?)\nmapPropsToValues()\nonSubmit(data)\nonsubmit(e)\nplainReact()\nplainSubmit(e)\nvalidate(values)\nvanillaJS() |
-| autogenerated/Xss/XssThroughDom/forms.js:9:19:9:23 | "#id" | contextSurroundingFunctionParameters | ()\n(values) |
-| autogenerated/Xss/XssThroughDom/forms.js:9:19:9:23 | "#id" | enclosingFunctionBody | div \n         Formik initialValues email  password  validate values $ #id html values foo onSubmit values setSubmitting $ #id html values bar \n             inputs form onSubmit handleSubmit \n         \n     |
-| autogenerated/Xss/XssThroughDom/forms.js:9:19:9:23 | "#id" | enclosingFunctionName | FormikBasic |
-| autogenerated/Xss/XssThroughDom/forms.js:9:19:9:23 | "#id" | fileImports | formik react react-final-form react-hook-form |
-| autogenerated/Xss/XssThroughDom/forms.js:9:19:9:23 | "#id" | receiverName |  |
-| autogenerated/Xss/XssThroughDom/forms.js:9:19:9:23 | "#id" | stringConcatenatedWith |  |
-| autogenerated/Xss/XssThroughDom/forms.js:9:31:9:40 | values.foo | CalleeFlexibleAccessPath | $().html |
-| autogenerated/Xss/XssThroughDom/forms.js:9:31:9:40 | values.foo | InputAccessPathFromCallee |  |
-| autogenerated/Xss/XssThroughDom/forms.js:9:31:9:40 | values.foo | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/forms.js:9:31:9:40 | values.foo | assignedToPropName |  |
-| autogenerated/Xss/XssThroughDom/forms.js:9:31:9:40 | values.foo | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/forms.js:9:31:9:40 | values.foo | contextFunctionInterfaces | App()\nFormikBasic()\nHookForm()\nHookForm2()\nhandleSubmit(values, ?)\nmapPropsToValues()\nonSubmit(data)\nonsubmit(e)\nplainReact()\nplainSubmit(e)\nvalidate(values)\nvanillaJS() |
-| autogenerated/Xss/XssThroughDom/forms.js:9:31:9:40 | values.foo | contextSurroundingFunctionParameters | ()\n(values) |
-| autogenerated/Xss/XssThroughDom/forms.js:9:31:9:40 | values.foo | enclosingFunctionBody | div \n         Formik initialValues email  password  validate values $ #id html values foo onSubmit values setSubmitting $ #id html values bar \n             inputs form onSubmit handleSubmit \n         \n     |
-| autogenerated/Xss/XssThroughDom/forms.js:9:31:9:40 | values.foo | enclosingFunctionName | FormikBasic |
-| autogenerated/Xss/XssThroughDom/forms.js:9:31:9:40 | values.foo | fileImports | formik react react-final-form react-hook-form |
-| autogenerated/Xss/XssThroughDom/forms.js:9:31:9:40 | values.foo | receiverName |  |
-| autogenerated/Xss/XssThroughDom/forms.js:9:31:9:40 | values.foo | stringConcatenatedWith |  |
-| autogenerated/Xss/XssThroughDom/forms.js:12:19:12:23 | "#id" | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/XssThroughDom/forms.js:12:19:12:23 | "#id" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/XssThroughDom/forms.js:12:19:12:23 | "#id" | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/forms.js:12:19:12:23 | "#id" | assignedToPropName |  |
-| autogenerated/Xss/XssThroughDom/forms.js:12:19:12:23 | "#id" | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/forms.js:12:19:12:23 | "#id" | contextFunctionInterfaces | App()\nFormikBasic()\nHookForm()\nHookForm2()\nhandleSubmit(values, ?)\nmapPropsToValues()\nonSubmit(data)\nonsubmit(e)\nplainReact()\nplainSubmit(e)\nvalidate(values)\nvanillaJS() |
-| autogenerated/Xss/XssThroughDom/forms.js:12:19:12:23 | "#id" | contextSurroundingFunctionParameters | ()\n(values, ?) |
-| autogenerated/Xss/XssThroughDom/forms.js:12:19:12:23 | "#id" | enclosingFunctionBody | div \n         Formik initialValues email  password  validate values $ #id html values foo onSubmit values setSubmitting $ #id html values bar \n             inputs form onSubmit handleSubmit \n         \n     |
-| autogenerated/Xss/XssThroughDom/forms.js:12:19:12:23 | "#id" | enclosingFunctionName | FormikBasic |
-| autogenerated/Xss/XssThroughDom/forms.js:12:19:12:23 | "#id" | fileImports | formik react react-final-form react-hook-form |
-| autogenerated/Xss/XssThroughDom/forms.js:12:19:12:23 | "#id" | receiverName |  |
-| autogenerated/Xss/XssThroughDom/forms.js:12:19:12:23 | "#id" | stringConcatenatedWith |  |
-| autogenerated/Xss/XssThroughDom/forms.js:12:31:12:40 | values.bar | CalleeFlexibleAccessPath | $().html |
-| autogenerated/Xss/XssThroughDom/forms.js:12:31:12:40 | values.bar | InputAccessPathFromCallee |  |
-| autogenerated/Xss/XssThroughDom/forms.js:12:31:12:40 | values.bar | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/forms.js:12:31:12:40 | values.bar | assignedToPropName |  |
-| autogenerated/Xss/XssThroughDom/forms.js:12:31:12:40 | values.bar | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/forms.js:12:31:12:40 | values.bar | contextFunctionInterfaces | App()\nFormikBasic()\nHookForm()\nHookForm2()\nhandleSubmit(values, ?)\nmapPropsToValues()\nonSubmit(data)\nonsubmit(e)\nplainReact()\nplainSubmit(e)\nvalidate(values)\nvanillaJS() |
-| autogenerated/Xss/XssThroughDom/forms.js:12:31:12:40 | values.bar | contextSurroundingFunctionParameters | ()\n(values, ?) |
-| autogenerated/Xss/XssThroughDom/forms.js:12:31:12:40 | values.bar | enclosingFunctionBody | div \n         Formik initialValues email  password  validate values $ #id html values foo onSubmit values setSubmitting $ #id html values bar \n             inputs form onSubmit handleSubmit \n         \n     |
-| autogenerated/Xss/XssThroughDom/forms.js:12:31:12:40 | values.bar | enclosingFunctionName | FormikBasic |
-| autogenerated/Xss/XssThroughDom/forms.js:12:31:12:40 | values.bar | fileImports | formik react react-final-form react-hook-form |
-| autogenerated/Xss/XssThroughDom/forms.js:12:31:12:40 | values.bar | receiverName |  |
-| autogenerated/Xss/XssThroughDom/forms.js:12:31:12:40 | values.bar | stringConcatenatedWith |  |
-| autogenerated/Xss/XssThroughDom/forms.js:22:35:31:1 | {\\n    m ...     }\\n} | CalleeFlexibleAccessPath | withFormik |
-| autogenerated/Xss/XssThroughDom/forms.js:22:35:31:1 | {\\n    m ...     }\\n} | InputAccessPathFromCallee |  |
-| autogenerated/Xss/XssThroughDom/forms.js:22:35:31:1 | {\\n    m ...     }\\n} | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/forms.js:22:35:31:1 | {\\n    m ...     }\\n} | assignedToPropName |  |
-| autogenerated/Xss/XssThroughDom/forms.js:22:35:31:1 | {\\n    m ...     }\\n} | calleeImports | formik |
-| autogenerated/Xss/XssThroughDom/forms.js:22:35:31:1 | {\\n    m ...     }\\n} | contextFunctionInterfaces | App()\nFormikBasic()\nHookForm()\nHookForm2()\nhandleSubmit(values, ?)\nmapPropsToValues()\nonSubmit(data)\nonsubmit(e)\nplainReact()\nplainSubmit(e)\nvalidate(values)\nvanillaJS() |
-| autogenerated/Xss/XssThroughDom/forms.js:22:35:31:1 | {\\n    m ...     }\\n} | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/XssThroughDom/forms.js:22:35:31:1 | {\\n    m ...     }\\n} | enclosingFunctionBody |  |
-| autogenerated/Xss/XssThroughDom/forms.js:22:35:31:1 | {\\n    m ...     }\\n} | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/forms.js:22:35:31:1 | {\\n    m ...     }\\n} | fileImports | formik react react-final-form react-hook-form |
-| autogenerated/Xss/XssThroughDom/forms.js:22:35:31:1 | {\\n    m ...     }\\n} | receiverName |  |
-| autogenerated/Xss/XssThroughDom/forms.js:22:35:31:1 | {\\n    m ...     }\\n} | stringConcatenatedWith |  |
-| autogenerated/Xss/XssThroughDom/forms.js:23:23:23:42 | () => ({ name: '' }) | CalleeFlexibleAccessPath | withFormik |
-| autogenerated/Xss/XssThroughDom/forms.js:23:23:23:42 | () => ({ name: '' }) | InputAccessPathFromCallee | 0.mapPropsToValues |
-| autogenerated/Xss/XssThroughDom/forms.js:23:23:23:42 | () => ({ name: '' }) | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/forms.js:23:23:23:42 | () => ({ name: '' }) | assignedToPropName | mapPropsToValues |
-| autogenerated/Xss/XssThroughDom/forms.js:23:23:23:42 | () => ({ name: '' }) | calleeImports | formik |
-| autogenerated/Xss/XssThroughDom/forms.js:23:23:23:42 | () => ({ name: '' }) | contextFunctionInterfaces | App()\nFormikBasic()\nHookForm()\nHookForm2()\nhandleSubmit(values, ?)\nmapPropsToValues()\nonSubmit(data)\nonsubmit(e)\nplainReact()\nplainSubmit(e)\nvalidate(values)\nvanillaJS() |
-| autogenerated/Xss/XssThroughDom/forms.js:23:23:23:42 | () => ({ name: '' }) | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/forms.js:23:23:23:42 | () => ({ name: '' }) | enclosingFunctionBody |  |
-| autogenerated/Xss/XssThroughDom/forms.js:23:23:23:42 | () => ({ name: '' }) | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/forms.js:23:23:23:42 | () => ({ name: '' }) | fileImports | formik react react-final-form react-hook-form |
-| autogenerated/Xss/XssThroughDom/forms.js:23:23:23:42 | () => ({ name: '' }) | receiverName |  |
-| autogenerated/Xss/XssThroughDom/forms.js:23:23:23:42 | () => ({ name: '' }) | stringConcatenatedWith |  |
-| autogenerated/Xss/XssThroughDom/forms.js:24:15:26:5 | values  ... K\\n    } | CalleeFlexibleAccessPath | withFormik |
-| autogenerated/Xss/XssThroughDom/forms.js:24:15:26:5 | values  ... K\\n    } | InputAccessPathFromCallee | 0.validate |
-| autogenerated/Xss/XssThroughDom/forms.js:24:15:26:5 | values  ... K\\n    } | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/forms.js:24:15:26:5 | values  ... K\\n    } | assignedToPropName | validate |
-| autogenerated/Xss/XssThroughDom/forms.js:24:15:26:5 | values  ... K\\n    } | calleeImports | formik |
-| autogenerated/Xss/XssThroughDom/forms.js:24:15:26:5 | values  ... K\\n    } | contextFunctionInterfaces | App()\nFormikBasic()\nHookForm()\nHookForm2()\nhandleSubmit(values, ?)\nmapPropsToValues()\nonSubmit(data)\nonsubmit(e)\nplainReact()\nplainSubmit(e)\nvalidate(values)\nvanillaJS() |
-| autogenerated/Xss/XssThroughDom/forms.js:24:15:26:5 | values  ... K\\n    } | contextSurroundingFunctionParameters | (values) |
-| autogenerated/Xss/XssThroughDom/forms.js:24:15:26:5 | values  ... K\\n    } | enclosingFunctionBody |  |
-| autogenerated/Xss/XssThroughDom/forms.js:24:15:26:5 | values  ... K\\n    } | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/forms.js:24:15:26:5 | values  ... K\\n    } | fileImports | formik react react-final-form react-hook-form |
-| autogenerated/Xss/XssThroughDom/forms.js:24:15:26:5 | values  ... K\\n    } | receiverName |  |
-| autogenerated/Xss/XssThroughDom/forms.js:24:15:26:5 | values  ... K\\n    } | stringConcatenatedWith |  |
-| autogenerated/Xss/XssThroughDom/forms.js:25:11:25:15 | "#id" | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/XssThroughDom/forms.js:25:11:25:15 | "#id" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/XssThroughDom/forms.js:25:11:25:15 | "#id" | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/forms.js:25:11:25:15 | "#id" | assignedToPropName |  |
-| autogenerated/Xss/XssThroughDom/forms.js:25:11:25:15 | "#id" | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/forms.js:25:11:25:15 | "#id" | contextFunctionInterfaces | App()\nFormikBasic()\nHookForm()\nHookForm2()\nhandleSubmit(values, ?)\nmapPropsToValues()\nonSubmit(data)\nonsubmit(e)\nplainReact()\nplainSubmit(e)\nvalidate(values)\nvanillaJS() |
-| autogenerated/Xss/XssThroughDom/forms.js:25:11:25:15 | "#id" | contextSurroundingFunctionParameters | (values) |
-| autogenerated/Xss/XssThroughDom/forms.js:25:11:25:15 | "#id" | enclosingFunctionBody | values $ #id html values email |
-| autogenerated/Xss/XssThroughDom/forms.js:25:11:25:15 | "#id" | enclosingFunctionName | validate |
-| autogenerated/Xss/XssThroughDom/forms.js:25:11:25:15 | "#id" | fileImports | formik react react-final-form react-hook-form |
-| autogenerated/Xss/XssThroughDom/forms.js:25:11:25:15 | "#id" | receiverName |  |
-| autogenerated/Xss/XssThroughDom/forms.js:25:11:25:15 | "#id" | stringConcatenatedWith |  |
-| autogenerated/Xss/XssThroughDom/forms.js:25:23:25:34 | values.email | CalleeFlexibleAccessPath | $().html |
-| autogenerated/Xss/XssThroughDom/forms.js:25:23:25:34 | values.email | InputAccessPathFromCallee |  |
-| autogenerated/Xss/XssThroughDom/forms.js:25:23:25:34 | values.email | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/forms.js:25:23:25:34 | values.email | assignedToPropName |  |
-| autogenerated/Xss/XssThroughDom/forms.js:25:23:25:34 | values.email | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/forms.js:25:23:25:34 | values.email | contextFunctionInterfaces | App()\nFormikBasic()\nHookForm()\nHookForm2()\nhandleSubmit(values, ?)\nmapPropsToValues()\nonSubmit(data)\nonsubmit(e)\nplainReact()\nplainSubmit(e)\nvalidate(values)\nvanillaJS() |
-| autogenerated/Xss/XssThroughDom/forms.js:25:23:25:34 | values.email | contextSurroundingFunctionParameters | (values) |
-| autogenerated/Xss/XssThroughDom/forms.js:25:23:25:34 | values.email | enclosingFunctionBody | values $ #id html values email |
-| autogenerated/Xss/XssThroughDom/forms.js:25:23:25:34 | values.email | enclosingFunctionName | validate |
-| autogenerated/Xss/XssThroughDom/forms.js:25:23:25:34 | values.email | fileImports | formik react react-final-form react-hook-form |
-| autogenerated/Xss/XssThroughDom/forms.js:25:23:25:34 | values.email | receiverName |  |
-| autogenerated/Xss/XssThroughDom/forms.js:25:23:25:34 | values.email | stringConcatenatedWith |  |
-| autogenerated/Xss/XssThroughDom/forms.js:28:19:30:5 | (values ... K\\n    } | CalleeFlexibleAccessPath | withFormik |
-| autogenerated/Xss/XssThroughDom/forms.js:28:19:30:5 | (values ... K\\n    } | InputAccessPathFromCallee | 0.handleSubmit |
-| autogenerated/Xss/XssThroughDom/forms.js:28:19:30:5 | (values ... K\\n    } | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/forms.js:28:19:30:5 | (values ... K\\n    } | assignedToPropName | handleSubmit |
-| autogenerated/Xss/XssThroughDom/forms.js:28:19:30:5 | (values ... K\\n    } | calleeImports | formik |
-| autogenerated/Xss/XssThroughDom/forms.js:28:19:30:5 | (values ... K\\n    } | contextFunctionInterfaces | App()\nFormikBasic()\nHookForm()\nHookForm2()\nhandleSubmit(values, ?)\nmapPropsToValues()\nonSubmit(data)\nonsubmit(e)\nplainReact()\nplainSubmit(e)\nvalidate(values)\nvanillaJS() |
-| autogenerated/Xss/XssThroughDom/forms.js:28:19:30:5 | (values ... K\\n    } | contextSurroundingFunctionParameters | (values, ?) |
-| autogenerated/Xss/XssThroughDom/forms.js:28:19:30:5 | (values ... K\\n    } | enclosingFunctionBody |  |
-| autogenerated/Xss/XssThroughDom/forms.js:28:19:30:5 | (values ... K\\n    } | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/forms.js:28:19:30:5 | (values ... K\\n    } | fileImports | formik react react-final-form react-hook-form |
-| autogenerated/Xss/XssThroughDom/forms.js:28:19:30:5 | (values ... K\\n    } | receiverName |  |
-| autogenerated/Xss/XssThroughDom/forms.js:28:19:30:5 | (values ... K\\n    } | stringConcatenatedWith |  |
-| autogenerated/Xss/XssThroughDom/forms.js:29:11:29:15 | "#id" | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/XssThroughDom/forms.js:29:11:29:15 | "#id" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/XssThroughDom/forms.js:29:11:29:15 | "#id" | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/forms.js:29:11:29:15 | "#id" | assignedToPropName |  |
-| autogenerated/Xss/XssThroughDom/forms.js:29:11:29:15 | "#id" | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/forms.js:29:11:29:15 | "#id" | contextFunctionInterfaces | App()\nFormikBasic()\nHookForm()\nHookForm2()\nhandleSubmit(values, ?)\nmapPropsToValues()\nonSubmit(data)\nonsubmit(e)\nplainReact()\nplainSubmit(e)\nvalidate(values)\nvanillaJS() |
-| autogenerated/Xss/XssThroughDom/forms.js:29:11:29:15 | "#id" | contextSurroundingFunctionParameters | (values, ?) |
-| autogenerated/Xss/XssThroughDom/forms.js:29:11:29:15 | "#id" | enclosingFunctionBody | values setSubmitting $ #id html values email |
-| autogenerated/Xss/XssThroughDom/forms.js:29:11:29:15 | "#id" | enclosingFunctionName | handleSubmit |
-| autogenerated/Xss/XssThroughDom/forms.js:29:11:29:15 | "#id" | fileImports | formik react react-final-form react-hook-form |
-| autogenerated/Xss/XssThroughDom/forms.js:29:11:29:15 | "#id" | receiverName |  |
-| autogenerated/Xss/XssThroughDom/forms.js:29:11:29:15 | "#id" | stringConcatenatedWith |  |
-| autogenerated/Xss/XssThroughDom/forms.js:29:23:29:34 | values.email | CalleeFlexibleAccessPath | $().html |
-| autogenerated/Xss/XssThroughDom/forms.js:29:23:29:34 | values.email | InputAccessPathFromCallee |  |
-| autogenerated/Xss/XssThroughDom/forms.js:29:23:29:34 | values.email | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/forms.js:29:23:29:34 | values.email | assignedToPropName |  |
-| autogenerated/Xss/XssThroughDom/forms.js:29:23:29:34 | values.email | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/forms.js:29:23:29:34 | values.email | contextFunctionInterfaces | App()\nFormikBasic()\nHookForm()\nHookForm2()\nhandleSubmit(values, ?)\nmapPropsToValues()\nonSubmit(data)\nonsubmit(e)\nplainReact()\nplainSubmit(e)\nvalidate(values)\nvanillaJS() |
-| autogenerated/Xss/XssThroughDom/forms.js:29:23:29:34 | values.email | contextSurroundingFunctionParameters | (values, ?) |
-| autogenerated/Xss/XssThroughDom/forms.js:29:23:29:34 | values.email | enclosingFunctionBody | values setSubmitting $ #id html values email |
-| autogenerated/Xss/XssThroughDom/forms.js:29:23:29:34 | values.email | enclosingFunctionName | handleSubmit |
-| autogenerated/Xss/XssThroughDom/forms.js:29:23:29:34 | values.email | fileImports | formik react react-final-form react-hook-form |
-| autogenerated/Xss/XssThroughDom/forms.js:29:23:29:34 | values.email | receiverName |  |
-| autogenerated/Xss/XssThroughDom/forms.js:29:23:29:34 | values.email | stringConcatenatedWith |  |
-| autogenerated/Xss/XssThroughDom/forms.js:31:4:31:9 | MyForm | CalleeFlexibleAccessPath | withFormik() |
-| autogenerated/Xss/XssThroughDom/forms.js:31:4:31:9 | MyForm | InputAccessPathFromCallee |  |
-| autogenerated/Xss/XssThroughDom/forms.js:31:4:31:9 | MyForm | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/forms.js:31:4:31:9 | MyForm | assignedToPropName |  |
-| autogenerated/Xss/XssThroughDom/forms.js:31:4:31:9 | MyForm | calleeImports | formik |
-| autogenerated/Xss/XssThroughDom/forms.js:31:4:31:9 | MyForm | contextFunctionInterfaces | App()\nFormikBasic()\nHookForm()\nHookForm2()\nhandleSubmit(values, ?)\nmapPropsToValues()\nonSubmit(data)\nonsubmit(e)\nplainReact()\nplainSubmit(e)\nvalidate(values)\nvanillaJS() |
-| autogenerated/Xss/XssThroughDom/forms.js:31:4:31:9 | MyForm | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/XssThroughDom/forms.js:31:4:31:9 | MyForm | enclosingFunctionBody |  |
-| autogenerated/Xss/XssThroughDom/forms.js:31:4:31:9 | MyForm | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/forms.js:31:4:31:9 | MyForm | fileImports | formik react react-final-form react-hook-form |
-| autogenerated/Xss/XssThroughDom/forms.js:31:4:31:9 | MyForm | receiverName |  |
-| autogenerated/Xss/XssThroughDom/forms.js:31:4:31:9 | MyForm | stringConcatenatedWith |  |
-| autogenerated/Xss/XssThroughDom/forms.js:35:7:35:11 | "#id" | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/XssThroughDom/forms.js:35:7:35:11 | "#id" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/XssThroughDom/forms.js:35:7:35:11 | "#id" | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/forms.js:35:7:35:11 | "#id" | assignedToPropName |  |
-| autogenerated/Xss/XssThroughDom/forms.js:35:7:35:11 | "#id" | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/forms.js:35:7:35:11 | "#id" | contextFunctionInterfaces | App()\nFormikBasic()\nHookForm()\nHookForm2()\nhandleSubmit(values, ?)\nmapPropsToValues()\nonSubmit(data)\nonsubmit(e)\nplainReact()\nplainSubmit(e)\nvalidate(values)\nvanillaJS() |
-| autogenerated/Xss/XssThroughDom/forms.js:35:7:35:11 | "#id" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/forms.js:35:7:35:11 | "#id" | enclosingFunctionBody | values submitForm useFormikContext $ #id html values email $ #id html submitForm email |
-| autogenerated/Xss/XssThroughDom/forms.js:35:7:35:11 | "#id" | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/forms.js:35:7:35:11 | "#id" | fileImports | formik react react-final-form react-hook-form |
-| autogenerated/Xss/XssThroughDom/forms.js:35:7:35:11 | "#id" | receiverName |  |
-| autogenerated/Xss/XssThroughDom/forms.js:35:7:35:11 | "#id" | stringConcatenatedWith |  |
-| autogenerated/Xss/XssThroughDom/forms.js:35:19:35:30 | values.email | CalleeFlexibleAccessPath | $().html |
-| autogenerated/Xss/XssThroughDom/forms.js:35:19:35:30 | values.email | InputAccessPathFromCallee |  |
-| autogenerated/Xss/XssThroughDom/forms.js:35:19:35:30 | values.email | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/forms.js:35:19:35:30 | values.email | assignedToPropName |  |
-| autogenerated/Xss/XssThroughDom/forms.js:35:19:35:30 | values.email | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/forms.js:35:19:35:30 | values.email | contextFunctionInterfaces | App()\nFormikBasic()\nHookForm()\nHookForm2()\nhandleSubmit(values, ?)\nmapPropsToValues()\nonSubmit(data)\nonsubmit(e)\nplainReact()\nplainSubmit(e)\nvalidate(values)\nvanillaJS() |
-| autogenerated/Xss/XssThroughDom/forms.js:35:19:35:30 | values.email | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/forms.js:35:19:35:30 | values.email | enclosingFunctionBody | values submitForm useFormikContext $ #id html values email $ #id html submitForm email |
-| autogenerated/Xss/XssThroughDom/forms.js:35:19:35:30 | values.email | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/forms.js:35:19:35:30 | values.email | fileImports | formik react react-final-form react-hook-form |
-| autogenerated/Xss/XssThroughDom/forms.js:35:19:35:30 | values.email | receiverName |  |
-| autogenerated/Xss/XssThroughDom/forms.js:35:19:35:30 | values.email | stringConcatenatedWith |  |
-| autogenerated/Xss/XssThroughDom/forms.js:37:7:37:11 | "#id" | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/XssThroughDom/forms.js:37:7:37:11 | "#id" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/XssThroughDom/forms.js:37:7:37:11 | "#id" | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/forms.js:37:7:37:11 | "#id" | assignedToPropName |  |
-| autogenerated/Xss/XssThroughDom/forms.js:37:7:37:11 | "#id" | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/forms.js:37:7:37:11 | "#id" | contextFunctionInterfaces | App()\nFormikBasic()\nHookForm()\nHookForm2()\nhandleSubmit(values, ?)\nmapPropsToValues()\nonSubmit(data)\nonsubmit(e)\nplainReact()\nplainSubmit(e)\nvalidate(values)\nvanillaJS() |
-| autogenerated/Xss/XssThroughDom/forms.js:37:7:37:11 | "#id" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/forms.js:37:7:37:11 | "#id" | enclosingFunctionBody | values submitForm useFormikContext $ #id html values email $ #id html submitForm email |
-| autogenerated/Xss/XssThroughDom/forms.js:37:7:37:11 | "#id" | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/forms.js:37:7:37:11 | "#id" | fileImports | formik react react-final-form react-hook-form |
-| autogenerated/Xss/XssThroughDom/forms.js:37:7:37:11 | "#id" | receiverName |  |
-| autogenerated/Xss/XssThroughDom/forms.js:37:7:37:11 | "#id" | stringConcatenatedWith |  |
-| autogenerated/Xss/XssThroughDom/forms.js:37:19:37:34 | submitForm.email | CalleeFlexibleAccessPath | $().html |
-| autogenerated/Xss/XssThroughDom/forms.js:37:19:37:34 | submitForm.email | InputAccessPathFromCallee |  |
-| autogenerated/Xss/XssThroughDom/forms.js:37:19:37:34 | submitForm.email | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/forms.js:37:19:37:34 | submitForm.email | assignedToPropName |  |
-| autogenerated/Xss/XssThroughDom/forms.js:37:19:37:34 | submitForm.email | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/forms.js:37:19:37:34 | submitForm.email | contextFunctionInterfaces | App()\nFormikBasic()\nHookForm()\nHookForm2()\nhandleSubmit(values, ?)\nmapPropsToValues()\nonSubmit(data)\nonsubmit(e)\nplainReact()\nplainSubmit(e)\nvalidate(values)\nvanillaJS() |
-| autogenerated/Xss/XssThroughDom/forms.js:37:19:37:34 | submitForm.email | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/forms.js:37:19:37:34 | submitForm.email | enclosingFunctionBody | values submitForm useFormikContext $ #id html values email $ #id html submitForm email |
-| autogenerated/Xss/XssThroughDom/forms.js:37:19:37:34 | submitForm.email | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/forms.js:37:19:37:34 | submitForm.email | fileImports | formik react react-final-form react-hook-form |
-| autogenerated/Xss/XssThroughDom/forms.js:37:19:37:34 | submitForm.email | receiverName |  |
-| autogenerated/Xss/XssThroughDom/forms.js:37:19:37:34 | submitForm.email | stringConcatenatedWith |  |
-| autogenerated/Xss/XssThroughDom/forms.js:45:9:45:13 | "#id" | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/XssThroughDom/forms.js:45:9:45:13 | "#id" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/XssThroughDom/forms.js:45:9:45:13 | "#id" | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/forms.js:45:9:45:13 | "#id" | assignedToPropName |  |
-| autogenerated/Xss/XssThroughDom/forms.js:45:9:45:13 | "#id" | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/forms.js:45:9:45:13 | "#id" | contextFunctionInterfaces | App()\nFormikBasic()\nHookForm()\nHookForm2()\nhandleSubmit(values, ?)\nmapPropsToValues()\nonSubmit(data)\nonsubmit(e)\nplainReact()\nplainSubmit(e)\nvalidate(values)\nvanillaJS() |
-| autogenerated/Xss/XssThroughDom/forms.js:45:9:45:13 | "#id" | contextSurroundingFunctionParameters | ()\n(values) |
-| autogenerated/Xss/XssThroughDom/forms.js:45:9:45:13 | "#id" | enclosingFunctionBody | Form onSubmit values $ #id html values stooge initialValues stooge larry employed false render handleSubmit form submitting pristine values form onSubmit handleSubmit \n         input type text name stooge \n       |
-| autogenerated/Xss/XssThroughDom/forms.js:45:9:45:13 | "#id" | enclosingFunctionName | App |
-| autogenerated/Xss/XssThroughDom/forms.js:45:9:45:13 | "#id" | fileImports | formik react react-final-form react-hook-form |
-| autogenerated/Xss/XssThroughDom/forms.js:45:9:45:13 | "#id" | receiverName |  |
-| autogenerated/Xss/XssThroughDom/forms.js:45:9:45:13 | "#id" | stringConcatenatedWith |  |
-| autogenerated/Xss/XssThroughDom/forms.js:45:21:45:33 | values.stooge | CalleeFlexibleAccessPath | $().html |
-| autogenerated/Xss/XssThroughDom/forms.js:45:21:45:33 | values.stooge | InputAccessPathFromCallee |  |
-| autogenerated/Xss/XssThroughDom/forms.js:45:21:45:33 | values.stooge | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/forms.js:45:21:45:33 | values.stooge | assignedToPropName |  |
-| autogenerated/Xss/XssThroughDom/forms.js:45:21:45:33 | values.stooge | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/forms.js:45:21:45:33 | values.stooge | contextFunctionInterfaces | App()\nFormikBasic()\nHookForm()\nHookForm2()\nhandleSubmit(values, ?)\nmapPropsToValues()\nonSubmit(data)\nonsubmit(e)\nplainReact()\nplainSubmit(e)\nvalidate(values)\nvanillaJS() |
-| autogenerated/Xss/XssThroughDom/forms.js:45:21:45:33 | values.stooge | contextSurroundingFunctionParameters | ()\n(values) |
-| autogenerated/Xss/XssThroughDom/forms.js:45:21:45:33 | values.stooge | enclosingFunctionBody | Form onSubmit values $ #id html values stooge initialValues stooge larry employed false render handleSubmit form submitting pristine values form onSubmit handleSubmit \n         input type text name stooge \n       |
-| autogenerated/Xss/XssThroughDom/forms.js:45:21:45:33 | values.stooge | enclosingFunctionName | App |
-| autogenerated/Xss/XssThroughDom/forms.js:45:21:45:33 | values.stooge | fileImports | formik react react-final-form react-hook-form |
-| autogenerated/Xss/XssThroughDom/forms.js:45:21:45:33 | values.stooge | receiverName |  |
-| autogenerated/Xss/XssThroughDom/forms.js:45:21:45:33 | values.stooge | stringConcatenatedWith |  |
-| autogenerated/Xss/XssThroughDom/forms.js:57:7:57:11 | "#id" | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/XssThroughDom/forms.js:57:7:57:11 | "#id" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/XssThroughDom/forms.js:57:7:57:11 | "#id" | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/forms.js:57:7:57:11 | "#id" | assignedToPropName |  |
-| autogenerated/Xss/XssThroughDom/forms.js:57:7:57:11 | "#id" | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/forms.js:57:7:57:11 | "#id" | contextFunctionInterfaces | App()\nFormikBasic()\nHookForm()\nHookForm2()\nhandleSubmit(values, ?)\nmapPropsToValues()\nonSubmit(data)\nonsubmit(e)\nplainReact()\nplainSubmit(e)\nvalidate(values)\nvanillaJS() |
-| autogenerated/Xss/XssThroughDom/forms.js:57:7:57:11 | "#id" | contextSurroundingFunctionParameters | (e) |
-| autogenerated/Xss/XssThroughDom/forms.js:57:7:57:11 | "#id" | enclosingFunctionBody | e $ #id html e target value |
-| autogenerated/Xss/XssThroughDom/forms.js:57:7:57:11 | "#id" | enclosingFunctionName | plainSubmit |
-| autogenerated/Xss/XssThroughDom/forms.js:57:7:57:11 | "#id" | fileImports | formik react react-final-form react-hook-form |
-| autogenerated/Xss/XssThroughDom/forms.js:57:7:57:11 | "#id" | receiverName |  |
-| autogenerated/Xss/XssThroughDom/forms.js:57:7:57:11 | "#id" | stringConcatenatedWith |  |
-| autogenerated/Xss/XssThroughDom/forms.js:57:19:57:32 | e.target.value | CalleeFlexibleAccessPath | $().html |
-| autogenerated/Xss/XssThroughDom/forms.js:57:19:57:32 | e.target.value | InputAccessPathFromCallee |  |
-| autogenerated/Xss/XssThroughDom/forms.js:57:19:57:32 | e.target.value | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/forms.js:57:19:57:32 | e.target.value | assignedToPropName |  |
-| autogenerated/Xss/XssThroughDom/forms.js:57:19:57:32 | e.target.value | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/forms.js:57:19:57:32 | e.target.value | contextFunctionInterfaces | App()\nFormikBasic()\nHookForm()\nHookForm2()\nhandleSubmit(values, ?)\nmapPropsToValues()\nonSubmit(data)\nonsubmit(e)\nplainReact()\nplainSubmit(e)\nvalidate(values)\nvanillaJS() |
-| autogenerated/Xss/XssThroughDom/forms.js:57:19:57:32 | e.target.value | contextSurroundingFunctionParameters | (e) |
-| autogenerated/Xss/XssThroughDom/forms.js:57:19:57:32 | e.target.value | enclosingFunctionBody | e $ #id html e target value |
-| autogenerated/Xss/XssThroughDom/forms.js:57:19:57:32 | e.target.value | enclosingFunctionName | plainSubmit |
-| autogenerated/Xss/XssThroughDom/forms.js:57:19:57:32 | e.target.value | fileImports | formik react react-final-form react-hook-form |
-| autogenerated/Xss/XssThroughDom/forms.js:57:19:57:32 | e.target.value | receiverName |  |
-| autogenerated/Xss/XssThroughDom/forms.js:57:19:57:32 | e.target.value | stringConcatenatedWith |  |
-| autogenerated/Xss/XssThroughDom/forms.js:72:7:72:11 | "#id" | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/XssThroughDom/forms.js:72:7:72:11 | "#id" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/XssThroughDom/forms.js:72:7:72:11 | "#id" | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/forms.js:72:7:72:11 | "#id" | assignedToPropName |  |
-| autogenerated/Xss/XssThroughDom/forms.js:72:7:72:11 | "#id" | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/forms.js:72:7:72:11 | "#id" | contextFunctionInterfaces | App()\nFormikBasic()\nHookForm()\nHookForm2()\nhandleSubmit(values, ?)\nmapPropsToValues()\nonSubmit(data)\nonsubmit(e)\nplainReact()\nplainSubmit(e)\nvalidate(values)\nvanillaJS() |
-| autogenerated/Xss/XssThroughDom/forms.js:72:7:72:11 | "#id" | contextSurroundingFunctionParameters | ()\n(data) |
-| autogenerated/Xss/XssThroughDom/forms.js:72:7:72:11 | "#id" | enclosingFunctionBody | register handleSubmit errors useForm onSubmit data $ #id html data name form onSubmit handleSubmit onSubmit \n         input name name ref register required true \n         input type submit \n     |
-| autogenerated/Xss/XssThroughDom/forms.js:72:7:72:11 | "#id" | enclosingFunctionName | HookForm |
-| autogenerated/Xss/XssThroughDom/forms.js:72:7:72:11 | "#id" | fileImports | formik react react-final-form react-hook-form |
-| autogenerated/Xss/XssThroughDom/forms.js:72:7:72:11 | "#id" | receiverName |  |
-| autogenerated/Xss/XssThroughDom/forms.js:72:7:72:11 | "#id" | stringConcatenatedWith |  |
-| autogenerated/Xss/XssThroughDom/forms.js:72:19:72:27 | data.name | CalleeFlexibleAccessPath | $().html |
-| autogenerated/Xss/XssThroughDom/forms.js:72:19:72:27 | data.name | InputAccessPathFromCallee |  |
-| autogenerated/Xss/XssThroughDom/forms.js:72:19:72:27 | data.name | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/forms.js:72:19:72:27 | data.name | assignedToPropName |  |
-| autogenerated/Xss/XssThroughDom/forms.js:72:19:72:27 | data.name | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/forms.js:72:19:72:27 | data.name | contextFunctionInterfaces | App()\nFormikBasic()\nHookForm()\nHookForm2()\nhandleSubmit(values, ?)\nmapPropsToValues()\nonSubmit(data)\nonsubmit(e)\nplainReact()\nplainSubmit(e)\nvalidate(values)\nvanillaJS() |
-| autogenerated/Xss/XssThroughDom/forms.js:72:19:72:27 | data.name | contextSurroundingFunctionParameters | ()\n(data) |
-| autogenerated/Xss/XssThroughDom/forms.js:72:19:72:27 | data.name | enclosingFunctionBody | register handleSubmit errors useForm onSubmit data $ #id html data name form onSubmit handleSubmit onSubmit \n         input name name ref register required true \n         input type submit \n     |
-| autogenerated/Xss/XssThroughDom/forms.js:72:19:72:27 | data.name | enclosingFunctionName | HookForm |
-| autogenerated/Xss/XssThroughDom/forms.js:72:19:72:27 | data.name | fileImports | formik react react-final-form react-hook-form |
-| autogenerated/Xss/XssThroughDom/forms.js:72:19:72:27 | data.name | receiverName |  |
-| autogenerated/Xss/XssThroughDom/forms.js:72:19:72:27 | data.name | stringConcatenatedWith |  |
-| autogenerated/Xss/XssThroughDom/forms.js:76:34:76:41 | onSubmit | CalleeFlexibleAccessPath | handleSubmit |
-| autogenerated/Xss/XssThroughDom/forms.js:76:34:76:41 | onSubmit | InputAccessPathFromCallee |  |
-| autogenerated/Xss/XssThroughDom/forms.js:76:34:76:41 | onSubmit | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/forms.js:76:34:76:41 | onSubmit | assignedToPropName |  |
-| autogenerated/Xss/XssThroughDom/forms.js:76:34:76:41 | onSubmit | calleeImports | react-hook-form |
-| autogenerated/Xss/XssThroughDom/forms.js:76:34:76:41 | onSubmit | contextFunctionInterfaces | App()\nFormikBasic()\nHookForm()\nHookForm2()\nhandleSubmit(values, ?)\nmapPropsToValues()\nonSubmit(data)\nonsubmit(e)\nplainReact()\nplainSubmit(e)\nvalidate(values)\nvanillaJS() |
-| autogenerated/Xss/XssThroughDom/forms.js:76:34:76:41 | onSubmit | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/forms.js:76:34:76:41 | onSubmit | enclosingFunctionBody | register handleSubmit errors useForm onSubmit data $ #id html data name form onSubmit handleSubmit onSubmit \n         input name name ref register required true \n         input type submit \n     |
-| autogenerated/Xss/XssThroughDom/forms.js:76:34:76:41 | onSubmit | enclosingFunctionName | HookForm |
-| autogenerated/Xss/XssThroughDom/forms.js:76:34:76:41 | onSubmit | fileImports | formik react react-final-form react-hook-form |
-| autogenerated/Xss/XssThroughDom/forms.js:76:34:76:41 | onSubmit | receiverName |  |
-| autogenerated/Xss/XssThroughDom/forms.js:76:34:76:41 | onSubmit | stringConcatenatedWith |  |
-| autogenerated/Xss/XssThroughDom/forms.js:77:42:77:59 | { required: true } | CalleeFlexibleAccessPath | register |
-| autogenerated/Xss/XssThroughDom/forms.js:77:42:77:59 | { required: true } | InputAccessPathFromCallee |  |
-| autogenerated/Xss/XssThroughDom/forms.js:77:42:77:59 | { required: true } | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/forms.js:77:42:77:59 | { required: true } | assignedToPropName |  |
-| autogenerated/Xss/XssThroughDom/forms.js:77:42:77:59 | { required: true } | calleeImports | react-hook-form |
-| autogenerated/Xss/XssThroughDom/forms.js:77:42:77:59 | { required: true } | contextFunctionInterfaces | App()\nFormikBasic()\nHookForm()\nHookForm2()\nhandleSubmit(values, ?)\nmapPropsToValues()\nonSubmit(data)\nonsubmit(e)\nplainReact()\nplainSubmit(e)\nvalidate(values)\nvanillaJS() |
-| autogenerated/Xss/XssThroughDom/forms.js:77:42:77:59 | { required: true } | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/forms.js:77:42:77:59 | { required: true } | enclosingFunctionBody | register handleSubmit errors useForm onSubmit data $ #id html data name form onSubmit handleSubmit onSubmit \n         input name name ref register required true \n         input type submit \n     |
-| autogenerated/Xss/XssThroughDom/forms.js:77:42:77:59 | { required: true } | enclosingFunctionName | HookForm |
-| autogenerated/Xss/XssThroughDom/forms.js:77:42:77:59 | { required: true } | fileImports | formik react react-final-form react-hook-form |
-| autogenerated/Xss/XssThroughDom/forms.js:77:42:77:59 | { required: true } | receiverName |  |
-| autogenerated/Xss/XssThroughDom/forms.js:77:42:77:59 | { required: true } | stringConcatenatedWith |  |
-| autogenerated/Xss/XssThroughDom/forms.js:77:54:77:57 | true | CalleeFlexibleAccessPath | register |
-| autogenerated/Xss/XssThroughDom/forms.js:77:54:77:57 | true | InputAccessPathFromCallee | 0.required |
-| autogenerated/Xss/XssThroughDom/forms.js:77:54:77:57 | true | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/forms.js:77:54:77:57 | true | assignedToPropName | required |
-| autogenerated/Xss/XssThroughDom/forms.js:77:54:77:57 | true | calleeImports | react-hook-form |
-| autogenerated/Xss/XssThroughDom/forms.js:77:54:77:57 | true | contextFunctionInterfaces | App()\nFormikBasic()\nHookForm()\nHookForm2()\nhandleSubmit(values, ?)\nmapPropsToValues()\nonSubmit(data)\nonsubmit(e)\nplainReact()\nplainSubmit(e)\nvalidate(values)\nvanillaJS() |
-| autogenerated/Xss/XssThroughDom/forms.js:77:54:77:57 | true | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/forms.js:77:54:77:57 | true | enclosingFunctionBody | register handleSubmit errors useForm onSubmit data $ #id html data name form onSubmit handleSubmit onSubmit \n         input name name ref register required true \n         input type submit \n     |
-| autogenerated/Xss/XssThroughDom/forms.js:77:54:77:57 | true | enclosingFunctionName | HookForm |
-| autogenerated/Xss/XssThroughDom/forms.js:77:54:77:57 | true | fileImports | formik react react-final-form react-hook-form |
-| autogenerated/Xss/XssThroughDom/forms.js:77:54:77:57 | true | receiverName |  |
-| autogenerated/Xss/XssThroughDom/forms.js:77:54:77:57 | true | stringConcatenatedWith |  |
-| autogenerated/Xss/XssThroughDom/forms.js:93:13:93:17 | "#id" | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/XssThroughDom/forms.js:93:13:93:17 | "#id" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/XssThroughDom/forms.js:93:13:93:17 | "#id" | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/forms.js:93:13:93:17 | "#id" | assignedToPropName |  |
-| autogenerated/Xss/XssThroughDom/forms.js:93:13:93:17 | "#id" | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/forms.js:93:13:93:17 | "#id" | contextFunctionInterfaces | App()\nFormikBasic()\nHookForm()\nHookForm2()\nhandleSubmit(values, ?)\nmapPropsToValues()\nonSubmit(data)\nonsubmit(e)\nplainReact()\nplainSubmit(e)\nvalidate(values)\nvanillaJS() |
-| autogenerated/Xss/XssThroughDom/forms.js:93:13:93:17 | "#id" | contextSurroundingFunctionParameters | ()\n() |
-| autogenerated/Xss/XssThroughDom/forms.js:93:13:93:17 | "#id" | enclosingFunctionBody | register getValues useForm form \n       input name name ref register \n       button type button onClick values getValues $ #id html values name \n       \n     |
-| autogenerated/Xss/XssThroughDom/forms.js:93:13:93:17 | "#id" | enclosingFunctionName | HookForm2 |
-| autogenerated/Xss/XssThroughDom/forms.js:93:13:93:17 | "#id" | fileImports | formik react react-final-form react-hook-form |
-| autogenerated/Xss/XssThroughDom/forms.js:93:13:93:17 | "#id" | receiverName |  |
-| autogenerated/Xss/XssThroughDom/forms.js:93:13:93:17 | "#id" | stringConcatenatedWith |  |
-| autogenerated/Xss/XssThroughDom/forms.js:93:25:93:35 | values.name | CalleeFlexibleAccessPath | $().html |
-| autogenerated/Xss/XssThroughDom/forms.js:93:25:93:35 | values.name | InputAccessPathFromCallee |  |
-| autogenerated/Xss/XssThroughDom/forms.js:93:25:93:35 | values.name | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/forms.js:93:25:93:35 | values.name | assignedToPropName |  |
-| autogenerated/Xss/XssThroughDom/forms.js:93:25:93:35 | values.name | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/forms.js:93:25:93:35 | values.name | contextFunctionInterfaces | App()\nFormikBasic()\nHookForm()\nHookForm2()\nhandleSubmit(values, ?)\nmapPropsToValues()\nonSubmit(data)\nonsubmit(e)\nplainReact()\nplainSubmit(e)\nvalidate(values)\nvanillaJS() |
-| autogenerated/Xss/XssThroughDom/forms.js:93:25:93:35 | values.name | contextSurroundingFunctionParameters | ()\n() |
-| autogenerated/Xss/XssThroughDom/forms.js:93:25:93:35 | values.name | enclosingFunctionBody | register getValues useForm form \n       input name name ref register \n       button type button onClick values getValues $ #id html values name \n       \n     |
-| autogenerated/Xss/XssThroughDom/forms.js:93:25:93:35 | values.name | enclosingFunctionName | HookForm2 |
-| autogenerated/Xss/XssThroughDom/forms.js:93:25:93:35 | values.name | fileImports | formik react react-final-form react-hook-form |
-| autogenerated/Xss/XssThroughDom/forms.js:93:25:93:35 | values.name | receiverName |  |
-| autogenerated/Xss/XssThroughDom/forms.js:93:25:93:35 | values.name | stringConcatenatedWith |  |
-| autogenerated/Xss/XssThroughDom/forms.js:102:28:102:40 | "form.myform" | CalleeFlexibleAccessPath | document.querySelector |
-| autogenerated/Xss/XssThroughDom/forms.js:102:28:102:40 | "form.myform" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/XssThroughDom/forms.js:102:28:102:40 | "form.myform" | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/forms.js:102:28:102:40 | "form.myform" | assignedToPropName |  |
-| autogenerated/Xss/XssThroughDom/forms.js:102:28:102:40 | "form.myform" | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/forms.js:102:28:102:40 | "form.myform" | contextFunctionInterfaces | App()\nFormikBasic()\nHookForm()\nHookForm2()\nhandleSubmit(values, ?)\nmapPropsToValues()\nonSubmit(data)\nonsubmit(e)\nplainReact()\nplainSubmit(e)\nvalidate(values)\nvanillaJS() |
-| autogenerated/Xss/XssThroughDom/forms.js:102:28:102:40 | "form.myform" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/forms.js:102:28:102:40 | "form.myform" | enclosingFunctionBody | document querySelector form.myform addEventListener submit e $ #id html e target value document querySelector form.myform onsubmit e $ #id html e target value |
-| autogenerated/Xss/XssThroughDom/forms.js:102:28:102:40 | "form.myform" | enclosingFunctionName | vanillaJS |
-| autogenerated/Xss/XssThroughDom/forms.js:102:28:102:40 | "form.myform" | fileImports | formik react react-final-form react-hook-form |
-| autogenerated/Xss/XssThroughDom/forms.js:102:28:102:40 | "form.myform" | receiverName | document |
-| autogenerated/Xss/XssThroughDom/forms.js:102:28:102:40 | "form.myform" | stringConcatenatedWith |  |
-| autogenerated/Xss/XssThroughDom/forms.js:102:60:102:67 | "submit" | CalleeFlexibleAccessPath | document.querySelector().addEventListener |
-| autogenerated/Xss/XssThroughDom/forms.js:102:60:102:67 | "submit" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/XssThroughDom/forms.js:102:60:102:67 | "submit" | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/forms.js:102:60:102:67 | "submit" | assignedToPropName |  |
-| autogenerated/Xss/XssThroughDom/forms.js:102:60:102:67 | "submit" | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/forms.js:102:60:102:67 | "submit" | contextFunctionInterfaces | App()\nFormikBasic()\nHookForm()\nHookForm2()\nhandleSubmit(values, ?)\nmapPropsToValues()\nonSubmit(data)\nonsubmit(e)\nplainReact()\nplainSubmit(e)\nvalidate(values)\nvanillaJS() |
-| autogenerated/Xss/XssThroughDom/forms.js:102:60:102:67 | "submit" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/forms.js:102:60:102:67 | "submit" | enclosingFunctionBody | document querySelector form.myform addEventListener submit e $ #id html e target value document querySelector form.myform onsubmit e $ #id html e target value |
-| autogenerated/Xss/XssThroughDom/forms.js:102:60:102:67 | "submit" | enclosingFunctionName | vanillaJS |
-| autogenerated/Xss/XssThroughDom/forms.js:102:60:102:67 | "submit" | fileImports | formik react react-final-form react-hook-form |
-| autogenerated/Xss/XssThroughDom/forms.js:102:60:102:67 | "submit" | receiverName |  |
-| autogenerated/Xss/XssThroughDom/forms.js:102:60:102:67 | "submit" | stringConcatenatedWith |  |
-| autogenerated/Xss/XssThroughDom/forms.js:102:70:104:5 | e => {\\n ... K\\n    } | CalleeFlexibleAccessPath | document.querySelector().addEventListener |
-| autogenerated/Xss/XssThroughDom/forms.js:102:70:104:5 | e => {\\n ... K\\n    } | InputAccessPathFromCallee |  |
-| autogenerated/Xss/XssThroughDom/forms.js:102:70:104:5 | e => {\\n ... K\\n    } | InputArgumentIndex | 1 |
-| autogenerated/Xss/XssThroughDom/forms.js:102:70:104:5 | e => {\\n ... K\\n    } | assignedToPropName |  |
-| autogenerated/Xss/XssThroughDom/forms.js:102:70:104:5 | e => {\\n ... K\\n    } | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/forms.js:102:70:104:5 | e => {\\n ... K\\n    } | contextFunctionInterfaces | App()\nFormikBasic()\nHookForm()\nHookForm2()\nhandleSubmit(values, ?)\nmapPropsToValues()\nonSubmit(data)\nonsubmit(e)\nplainReact()\nplainSubmit(e)\nvalidate(values)\nvanillaJS() |
-| autogenerated/Xss/XssThroughDom/forms.js:102:70:104:5 | e => {\\n ... K\\n    } | contextSurroundingFunctionParameters | ()\n(e) |
-| autogenerated/Xss/XssThroughDom/forms.js:102:70:104:5 | e => {\\n ... K\\n    } | enclosingFunctionBody | document querySelector form.myform addEventListener submit e $ #id html e target value document querySelector form.myform onsubmit e $ #id html e target value |
-| autogenerated/Xss/XssThroughDom/forms.js:102:70:104:5 | e => {\\n ... K\\n    } | enclosingFunctionName | vanillaJS |
-| autogenerated/Xss/XssThroughDom/forms.js:102:70:104:5 | e => {\\n ... K\\n    } | fileImports | formik react react-final-form react-hook-form |
-| autogenerated/Xss/XssThroughDom/forms.js:102:70:104:5 | e => {\\n ... K\\n    } | receiverName |  |
-| autogenerated/Xss/XssThroughDom/forms.js:102:70:104:5 | e => {\\n ... K\\n    } | stringConcatenatedWith |  |
-| autogenerated/Xss/XssThroughDom/forms.js:103:11:103:15 | "#id" | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/XssThroughDom/forms.js:103:11:103:15 | "#id" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/XssThroughDom/forms.js:103:11:103:15 | "#id" | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/forms.js:103:11:103:15 | "#id" | assignedToPropName |  |
-| autogenerated/Xss/XssThroughDom/forms.js:103:11:103:15 | "#id" | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/forms.js:103:11:103:15 | "#id" | contextFunctionInterfaces | App()\nFormikBasic()\nHookForm()\nHookForm2()\nhandleSubmit(values, ?)\nmapPropsToValues()\nonSubmit(data)\nonsubmit(e)\nplainReact()\nplainSubmit(e)\nvalidate(values)\nvanillaJS() |
-| autogenerated/Xss/XssThroughDom/forms.js:103:11:103:15 | "#id" | contextSurroundingFunctionParameters | ()\n(e) |
-| autogenerated/Xss/XssThroughDom/forms.js:103:11:103:15 | "#id" | enclosingFunctionBody | document querySelector form.myform addEventListener submit e $ #id html e target value document querySelector form.myform onsubmit e $ #id html e target value |
-| autogenerated/Xss/XssThroughDom/forms.js:103:11:103:15 | "#id" | enclosingFunctionName | vanillaJS |
-| autogenerated/Xss/XssThroughDom/forms.js:103:11:103:15 | "#id" | fileImports | formik react react-final-form react-hook-form |
-| autogenerated/Xss/XssThroughDom/forms.js:103:11:103:15 | "#id" | receiverName |  |
-| autogenerated/Xss/XssThroughDom/forms.js:103:11:103:15 | "#id" | stringConcatenatedWith |  |
-| autogenerated/Xss/XssThroughDom/forms.js:103:23:103:36 | e.target.value | CalleeFlexibleAccessPath | $().html |
-| autogenerated/Xss/XssThroughDom/forms.js:103:23:103:36 | e.target.value | InputAccessPathFromCallee |  |
-| autogenerated/Xss/XssThroughDom/forms.js:103:23:103:36 | e.target.value | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/forms.js:103:23:103:36 | e.target.value | assignedToPropName |  |
-| autogenerated/Xss/XssThroughDom/forms.js:103:23:103:36 | e.target.value | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/forms.js:103:23:103:36 | e.target.value | contextFunctionInterfaces | App()\nFormikBasic()\nHookForm()\nHookForm2()\nhandleSubmit(values, ?)\nmapPropsToValues()\nonSubmit(data)\nonsubmit(e)\nplainReact()\nplainSubmit(e)\nvalidate(values)\nvanillaJS() |
-| autogenerated/Xss/XssThroughDom/forms.js:103:23:103:36 | e.target.value | contextSurroundingFunctionParameters | ()\n(e) |
-| autogenerated/Xss/XssThroughDom/forms.js:103:23:103:36 | e.target.value | enclosingFunctionBody | document querySelector form.myform addEventListener submit e $ #id html e target value document querySelector form.myform onsubmit e $ #id html e target value |
-| autogenerated/Xss/XssThroughDom/forms.js:103:23:103:36 | e.target.value | enclosingFunctionName | vanillaJS |
-| autogenerated/Xss/XssThroughDom/forms.js:103:23:103:36 | e.target.value | fileImports | formik react react-final-form react-hook-form |
-| autogenerated/Xss/XssThroughDom/forms.js:103:23:103:36 | e.target.value | receiverName |  |
-| autogenerated/Xss/XssThroughDom/forms.js:103:23:103:36 | e.target.value | stringConcatenatedWith |  |
-| autogenerated/Xss/XssThroughDom/forms.js:106:28:106:40 | "form.myform" | CalleeFlexibleAccessPath | document.querySelector |
-| autogenerated/Xss/XssThroughDom/forms.js:106:28:106:40 | "form.myform" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/XssThroughDom/forms.js:106:28:106:40 | "form.myform" | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/forms.js:106:28:106:40 | "form.myform" | assignedToPropName |  |
-| autogenerated/Xss/XssThroughDom/forms.js:106:28:106:40 | "form.myform" | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/forms.js:106:28:106:40 | "form.myform" | contextFunctionInterfaces | App()\nFormikBasic()\nHookForm()\nHookForm2()\nhandleSubmit(values, ?)\nmapPropsToValues()\nonSubmit(data)\nonsubmit(e)\nplainReact()\nplainSubmit(e)\nvalidate(values)\nvanillaJS() |
-| autogenerated/Xss/XssThroughDom/forms.js:106:28:106:40 | "form.myform" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/forms.js:106:28:106:40 | "form.myform" | enclosingFunctionBody | document querySelector form.myform addEventListener submit e $ #id html e target value document querySelector form.myform onsubmit e $ #id html e target value |
-| autogenerated/Xss/XssThroughDom/forms.js:106:28:106:40 | "form.myform" | enclosingFunctionName | vanillaJS |
-| autogenerated/Xss/XssThroughDom/forms.js:106:28:106:40 | "form.myform" | fileImports | formik react react-final-form react-hook-form |
-| autogenerated/Xss/XssThroughDom/forms.js:106:28:106:40 | "form.myform" | receiverName | document |
-| autogenerated/Xss/XssThroughDom/forms.js:106:28:106:40 | "form.myform" | stringConcatenatedWith |  |
-| autogenerated/Xss/XssThroughDom/forms.js:107:11:107:15 | "#id" | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/XssThroughDom/forms.js:107:11:107:15 | "#id" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/XssThroughDom/forms.js:107:11:107:15 | "#id" | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/forms.js:107:11:107:15 | "#id" | assignedToPropName |  |
-| autogenerated/Xss/XssThroughDom/forms.js:107:11:107:15 | "#id" | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/forms.js:107:11:107:15 | "#id" | contextFunctionInterfaces | App()\nFormikBasic()\nHookForm()\nHookForm2()\nhandleSubmit(values, ?)\nmapPropsToValues()\nonSubmit(data)\nonsubmit(e)\nplainReact()\nplainSubmit(e)\nvalidate(values)\nvanillaJS() |
-| autogenerated/Xss/XssThroughDom/forms.js:107:11:107:15 | "#id" | contextSurroundingFunctionParameters | ()\n(e) |
-| autogenerated/Xss/XssThroughDom/forms.js:107:11:107:15 | "#id" | enclosingFunctionBody | document querySelector form.myform addEventListener submit e $ #id html e target value document querySelector form.myform onsubmit e $ #id html e target value |
-| autogenerated/Xss/XssThroughDom/forms.js:107:11:107:15 | "#id" | enclosingFunctionName | vanillaJS |
-| autogenerated/Xss/XssThroughDom/forms.js:107:11:107:15 | "#id" | fileImports | formik react react-final-form react-hook-form |
-| autogenerated/Xss/XssThroughDom/forms.js:107:11:107:15 | "#id" | receiverName |  |
-| autogenerated/Xss/XssThroughDom/forms.js:107:11:107:15 | "#id" | stringConcatenatedWith |  |
-| autogenerated/Xss/XssThroughDom/forms.js:107:23:107:36 | e.target.value | CalleeFlexibleAccessPath | $().html |
-| autogenerated/Xss/XssThroughDom/forms.js:107:23:107:36 | e.target.value | InputAccessPathFromCallee |  |
-| autogenerated/Xss/XssThroughDom/forms.js:107:23:107:36 | e.target.value | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/forms.js:107:23:107:36 | e.target.value | assignedToPropName |  |
-| autogenerated/Xss/XssThroughDom/forms.js:107:23:107:36 | e.target.value | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/forms.js:107:23:107:36 | e.target.value | contextFunctionInterfaces | App()\nFormikBasic()\nHookForm()\nHookForm2()\nhandleSubmit(values, ?)\nmapPropsToValues()\nonSubmit(data)\nonsubmit(e)\nplainReact()\nplainSubmit(e)\nvalidate(values)\nvanillaJS() |
-| autogenerated/Xss/XssThroughDom/forms.js:107:23:107:36 | e.target.value | contextSurroundingFunctionParameters | ()\n(e) |
-| autogenerated/Xss/XssThroughDom/forms.js:107:23:107:36 | e.target.value | enclosingFunctionBody | document querySelector form.myform addEventListener submit e $ #id html e target value document querySelector form.myform onsubmit e $ #id html e target value |
-| autogenerated/Xss/XssThroughDom/forms.js:107:23:107:36 | e.target.value | enclosingFunctionName | vanillaJS |
-| autogenerated/Xss/XssThroughDom/forms.js:107:23:107:36 | e.target.value | fileImports | formik react react-final-form react-hook-form |
-| autogenerated/Xss/XssThroughDom/forms.js:107:23:107:36 | e.target.value | receiverName |  |
-| autogenerated/Xss/XssThroughDom/forms.js:107:23:107:36 | e.target.value | stringConcatenatedWith |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:2:4:2:8 | "#id" | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:2:4:2:8 | "#id" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:2:4:2:8 | "#id" | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:2:4:2:8 | "#id" | assignedToPropName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:2:4:2:8 | "#id" | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:2:4:2:8 | "#id" | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:2:4:2:8 | "#id" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:2:4:2:8 | "#id" | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:2:4:2:8 | "#id" | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:2:4:2:8 | "#id" | fileImports | anser |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:2:4:2:8 | "#id" | receiverName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:2:4:2:8 | "#id" | stringConcatenatedWith |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:2:16:2:34 | $("textarea").val() | CalleeFlexibleAccessPath | $().html |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:2:16:2:34 | $("textarea").val() | InputAccessPathFromCallee |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:2:16:2:34 | $("textarea").val() | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:2:16:2:34 | $("textarea").val() | assignedToPropName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:2:16:2:34 | $("textarea").val() | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:2:16:2:34 | $("textarea").val() | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:2:16:2:34 | $("textarea").val() | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:2:16:2:34 | $("textarea").val() | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:2:16:2:34 | $("textarea").val() | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:2:16:2:34 | $("textarea").val() | fileImports | anser |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:2:16:2:34 | $("textarea").val() | receiverName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:2:16:2:34 | $("textarea").val() | stringConcatenatedWith |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:2:18:2:27 | "textarea" | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:2:18:2:27 | "textarea" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:2:18:2:27 | "textarea" | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:2:18:2:27 | "textarea" | assignedToPropName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:2:18:2:27 | "textarea" | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:2:18:2:27 | "textarea" | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:2:18:2:27 | "textarea" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:2:18:2:27 | "textarea" | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:2:18:2:27 | "textarea" | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:2:18:2:27 | "textarea" | fileImports | anser |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:2:18:2:27 | "textarea" | receiverName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:2:18:2:27 | "textarea" | stringConcatenatedWith |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:4:4:4:8 | "#id" | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:4:4:4:8 | "#id" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:4:4:4:8 | "#id" | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:4:4:4:8 | "#id" | assignedToPropName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:4:4:4:8 | "#id" | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:4:4:4:8 | "#id" | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:4:4:4:8 | "#id" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:4:4:4:8 | "#id" | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:4:4:4:8 | "#id" | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:4:4:4:8 | "#id" | fileImports | anser |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:4:4:4:8 | "#id" | receiverName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:4:4:4:8 | "#id" | stringConcatenatedWith |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:4:16:4:40 | $(".som ... .text() | CalleeFlexibleAccessPath | $().html |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:4:16:4:40 | $(".som ... .text() | InputAccessPathFromCallee |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:4:16:4:40 | $(".som ... .text() | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:4:16:4:40 | $(".som ... .text() | assignedToPropName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:4:16:4:40 | $(".som ... .text() | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:4:16:4:40 | $(".som ... .text() | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:4:16:4:40 | $(".som ... .text() | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:4:16:4:40 | $(".som ... .text() | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:4:16:4:40 | $(".som ... .text() | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:4:16:4:40 | $(".som ... .text() | fileImports | anser |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:4:16:4:40 | $(".som ... .text() | receiverName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:4:16:4:40 | $(".som ... .text() | stringConcatenatedWith |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:4:18:4:32 | ".some-element" | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:4:18:4:32 | ".some-element" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:4:18:4:32 | ".some-element" | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:4:18:4:32 | ".some-element" | assignedToPropName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:4:18:4:32 | ".some-element" | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:4:18:4:32 | ".some-element" | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:4:18:4:32 | ".some-element" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:4:18:4:32 | ".some-element" | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:4:18:4:32 | ".some-element" | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:4:18:4:32 | ".some-element" | fileImports | anser |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:4:18:4:32 | ".some-element" | receiverName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:4:18:4:32 | ".some-element" | stringConcatenatedWith |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:4:6:8 | "#id" | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:4:6:8 | "#id" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:4:6:8 | "#id" | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:4:6:8 | "#id" | assignedToPropName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:4:6:8 | "#id" | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:4:6:8 | "#id" | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:4:6:8 | "#id" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:4:6:8 | "#id" | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:4:6:8 | "#id" | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:4:6:8 | "#id" | fileImports | anser |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:4:6:8 | "#id" | receiverName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:4:6:8 | "#id" | stringConcatenatedWith |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:16:6:52 | $(".som ...  "bar") | CalleeFlexibleAccessPath | $().html |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:16:6:52 | $(".som ...  "bar") | InputAccessPathFromCallee |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:16:6:52 | $(".som ...  "bar") | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:16:6:52 | $(".som ...  "bar") | assignedToPropName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:16:6:52 | $(".som ...  "bar") | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:16:6:52 | $(".som ...  "bar") | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:16:6:52 | $(".som ...  "bar") | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:16:6:52 | $(".som ...  "bar") | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:16:6:52 | $(".som ...  "bar") | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:16:6:52 | $(".som ...  "bar") | fileImports | anser |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:16:6:52 | $(".som ...  "bar") | receiverName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:16:6:52 | $(".som ...  "bar") | stringConcatenatedWith |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:18:6:32 | ".some-element" | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:18:6:32 | ".some-element" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:18:6:32 | ".some-element" | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:18:6:32 | ".some-element" | assignedToPropName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:18:6:32 | ".some-element" | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:18:6:32 | ".some-element" | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:18:6:32 | ".some-element" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:18:6:32 | ".some-element" | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:18:6:32 | ".some-element" | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:18:6:32 | ".some-element" | fileImports | anser |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:18:6:32 | ".some-element" | receiverName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:18:6:32 | ".some-element" | stringConcatenatedWith |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:40:6:44 | "foo" | CalleeFlexibleAccessPath | $().attr |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:40:6:44 | "foo" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:40:6:44 | "foo" | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:40:6:44 | "foo" | assignedToPropName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:40:6:44 | "foo" | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:40:6:44 | "foo" | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:40:6:44 | "foo" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:40:6:44 | "foo" | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:40:6:44 | "foo" | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:40:6:44 | "foo" | fileImports | anser |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:40:6:44 | "foo" | receiverName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:40:6:44 | "foo" | stringConcatenatedWith |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:47:6:51 | "bar" | CalleeFlexibleAccessPath | $().attr |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:47:6:51 | "bar" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:47:6:51 | "bar" | InputArgumentIndex | 1 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:47:6:51 | "bar" | assignedToPropName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:47:6:51 | "bar" | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:47:6:51 | "bar" | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:47:6:51 | "bar" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:47:6:51 | "bar" | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:47:6:51 | "bar" | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:47:6:51 | "bar" | fileImports | anser |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:47:6:51 | "bar" | receiverName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:47:6:51 | "bar" | stringConcatenatedWith |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:4:7:8 | "#id" | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:4:7:8 | "#id" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:4:7:8 | "#id" | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:4:7:8 | "#id" | assignedToPropName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:4:7:8 | "#id" | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:4:7:8 | "#id" | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:4:7:8 | "#id" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:4:7:8 | "#id" | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:4:7:8 | "#id" | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:4:7:8 | "#id" | fileImports | anser |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:4:7:8 | "#id" | receiverName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:4:7:8 | "#id" | stringConcatenatedWith |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:16:7:54 | $(".som ... "bar"}) | CalleeFlexibleAccessPath | $().html |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:16:7:54 | $(".som ... "bar"}) | InputAccessPathFromCallee |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:16:7:54 | $(".som ... "bar"}) | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:16:7:54 | $(".som ... "bar"}) | assignedToPropName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:16:7:54 | $(".som ... "bar"}) | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:16:7:54 | $(".som ... "bar"}) | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:16:7:54 | $(".som ... "bar"}) | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:16:7:54 | $(".som ... "bar"}) | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:16:7:54 | $(".som ... "bar"}) | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:16:7:54 | $(".som ... "bar"}) | fileImports | anser |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:16:7:54 | $(".som ... "bar"}) | receiverName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:16:7:54 | $(".som ... "bar"}) | stringConcatenatedWith |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:18:7:32 | ".some-element" | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:18:7:32 | ".some-element" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:18:7:32 | ".some-element" | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:18:7:32 | ".some-element" | assignedToPropName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:18:7:32 | ".some-element" | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:18:7:32 | ".some-element" | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:18:7:32 | ".some-element" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:18:7:32 | ".some-element" | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:18:7:32 | ".some-element" | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:18:7:32 | ".some-element" | fileImports | anser |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:18:7:32 | ".some-element" | receiverName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:18:7:32 | ".some-element" | stringConcatenatedWith |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:40:7:53 | {"foo": "bar"} | CalleeFlexibleAccessPath | $().attr |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:40:7:53 | {"foo": "bar"} | InputAccessPathFromCallee |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:40:7:53 | {"foo": "bar"} | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:40:7:53 | {"foo": "bar"} | assignedToPropName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:40:7:53 | {"foo": "bar"} | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:40:7:53 | {"foo": "bar"} | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:40:7:53 | {"foo": "bar"} | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:40:7:53 | {"foo": "bar"} | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:40:7:53 | {"foo": "bar"} | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:40:7:53 | {"foo": "bar"} | fileImports | anser |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:40:7:53 | {"foo": "bar"} | receiverName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:40:7:53 | {"foo": "bar"} | stringConcatenatedWith |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:48:7:52 | "bar" | CalleeFlexibleAccessPath | $().attr |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:48:7:52 | "bar" | InputAccessPathFromCallee | 0.foo |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:48:7:52 | "bar" | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:48:7:52 | "bar" | assignedToPropName | foo |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:48:7:52 | "bar" | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:48:7:52 | "bar" | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:48:7:52 | "bar" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:48:7:52 | "bar" | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:48:7:52 | "bar" | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:48:7:52 | "bar" | fileImports | anser |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:48:7:52 | "bar" | receiverName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:48:7:52 | "bar" | stringConcatenatedWith |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:8:4:8:8 | "#id" | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:8:4:8:8 | "#id" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:8:4:8:8 | "#id" | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:8:4:8:8 | "#id" | assignedToPropName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:8:4:8:8 | "#id" | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:8:4:8:8 | "#id" | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:8:4:8:8 | "#id" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:8:4:8:8 | "#id" | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:8:4:8:8 | "#id" | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:8:4:8:8 | "#id" | fileImports | anser |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:8:4:8:8 | "#id" | receiverName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:8:4:8:8 | "#id" | stringConcatenatedWith |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:8:16:8:53 | $(".som ... arget") | CalleeFlexibleAccessPath | $().html |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:8:16:8:53 | $(".som ... arget") | InputAccessPathFromCallee |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:8:16:8:53 | $(".som ... arget") | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:8:16:8:53 | $(".som ... arget") | assignedToPropName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:8:16:8:53 | $(".som ... arget") | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:8:16:8:53 | $(".som ... arget") | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:8:16:8:53 | $(".som ... arget") | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:8:16:8:53 | $(".som ... arget") | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:8:16:8:53 | $(".som ... arget") | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:8:16:8:53 | $(".som ... arget") | fileImports | anser |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:8:16:8:53 | $(".som ... arget") | receiverName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:8:16:8:53 | $(".som ... arget") | stringConcatenatedWith |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:8:18:8:32 | ".some-element" | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:8:18:8:32 | ".some-element" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:8:18:8:32 | ".some-element" | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:8:18:8:32 | ".some-element" | assignedToPropName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:8:18:8:32 | ".some-element" | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:8:18:8:32 | ".some-element" | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:8:18:8:32 | ".some-element" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:8:18:8:32 | ".some-element" | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:8:18:8:32 | ".some-element" | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:8:18:8:32 | ".some-element" | fileImports | anser |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:8:18:8:32 | ".some-element" | receiverName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:8:18:8:32 | ".some-element" | stringConcatenatedWith |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:8:40:8:52 | "data-target" | CalleeFlexibleAccessPath | $().attr |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:8:40:8:52 | "data-target" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:8:40:8:52 | "data-target" | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:8:40:8:52 | "data-target" | assignedToPropName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:8:40:8:52 | "data-target" | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:8:40:8:52 | "data-target" | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:8:40:8:52 | "data-target" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:8:40:8:52 | "data-target" | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:8:40:8:52 | "data-target" | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:8:40:8:52 | "data-target" | fileImports | anser |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:8:40:8:52 | "data-target" | receiverName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:8:40:8:52 | "data-target" | stringConcatenatedWith |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:10:4:10:8 | "#id" | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:10:4:10:8 | "#id" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:10:4:10:8 | "#id" | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:10:4:10:8 | "#id" | assignedToPropName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:10:4:10:8 | "#id" | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:10:4:10:8 | "#id" | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:10:4:10:8 | "#id" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:10:4:10:8 | "#id" | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:10:4:10:8 | "#id" | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:10:4:10:8 | "#id" | fileImports | anser |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:10:4:10:8 | "#id" | receiverName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:10:4:10:8 | "#id" | stringConcatenatedWith |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:11:3:11:42 | documen ... nerText | CalleeFlexibleAccessPath | $().html |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:11:3:11:42 | documen ... nerText | InputAccessPathFromCallee |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:11:3:11:42 | documen ... nerText | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:11:3:11:42 | documen ... nerText | assignedToPropName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:11:3:11:42 | documen ... nerText | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:11:3:11:42 | documen ... nerText | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:11:3:11:42 | documen ... nerText | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:11:3:11:42 | documen ... nerText | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:11:3:11:42 | documen ... nerText | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:11:3:11:42 | documen ... nerText | fileImports | anser |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:11:3:11:42 | documen ... nerText | receiverName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:11:3:11:42 | documen ... nerText | stringConcatenatedWith |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:11:27:11:31 | "foo" | CalleeFlexibleAccessPath | document.getElementById |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:11:27:11:31 | "foo" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:11:27:11:31 | "foo" | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:11:27:11:31 | "foo" | assignedToPropName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:11:27:11:31 | "foo" | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:11:27:11:31 | "foo" | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:11:27:11:31 | "foo" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:11:27:11:31 | "foo" | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:11:27:11:31 | "foo" | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:11:27:11:31 | "foo" | fileImports | anser |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:11:27:11:31 | "foo" | receiverName | document |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:11:27:11:31 | "foo" | stringConcatenatedWith |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:14:4:14:8 | "#id" | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:14:4:14:8 | "#id" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:14:4:14:8 | "#id" | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:14:4:14:8 | "#id" | assignedToPropName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:14:4:14:8 | "#id" | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:14:4:14:8 | "#id" | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:14:4:14:8 | "#id" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:14:4:14:8 | "#id" | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:14:4:14:8 | "#id" | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:14:4:14:8 | "#id" | fileImports | anser |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:14:4:14:8 | "#id" | receiverName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:14:4:14:8 | "#id" | stringConcatenatedWith |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:15:3:15:42 | documen ... nerHTML | CalleeFlexibleAccessPath | $().html |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:15:3:15:42 | documen ... nerHTML | InputAccessPathFromCallee |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:15:3:15:42 | documen ... nerHTML | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:15:3:15:42 | documen ... nerHTML | assignedToPropName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:15:3:15:42 | documen ... nerHTML | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:15:3:15:42 | documen ... nerHTML | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:15:3:15:42 | documen ... nerHTML | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:15:3:15:42 | documen ... nerHTML | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:15:3:15:42 | documen ... nerHTML | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:15:3:15:42 | documen ... nerHTML | fileImports | anser |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:15:3:15:42 | documen ... nerHTML | receiverName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:15:3:15:42 | documen ... nerHTML | stringConcatenatedWith |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:15:27:15:31 | "foo" | CalleeFlexibleAccessPath | document.getElementById |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:15:27:15:31 | "foo" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:15:27:15:31 | "foo" | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:15:27:15:31 | "foo" | assignedToPropName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:15:27:15:31 | "foo" | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:15:27:15:31 | "foo" | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:15:27:15:31 | "foo" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:15:27:15:31 | "foo" | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:15:27:15:31 | "foo" | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:15:27:15:31 | "foo" | fileImports | anser |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:15:27:15:31 | "foo" | receiverName | document |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:15:27:15:31 | "foo" | stringConcatenatedWith |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:18:4:18:8 | "#id" | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:18:4:18:8 | "#id" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:18:4:18:8 | "#id" | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:18:4:18:8 | "#id" | assignedToPropName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:18:4:18:8 | "#id" | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:18:4:18:8 | "#id" | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:18:4:18:8 | "#id" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:18:4:18:8 | "#id" | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:18:4:18:8 | "#id" | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:18:4:18:8 | "#id" | fileImports | anser |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:18:4:18:8 | "#id" | receiverName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:18:4:18:8 | "#id" | stringConcatenatedWith |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:19:3:19:44 | documen ... Content | CalleeFlexibleAccessPath | $().html |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:19:3:19:44 | documen ... Content | InputAccessPathFromCallee |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:19:3:19:44 | documen ... Content | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:19:3:19:44 | documen ... Content | assignedToPropName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:19:3:19:44 | documen ... Content | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:19:3:19:44 | documen ... Content | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:19:3:19:44 | documen ... Content | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:19:3:19:44 | documen ... Content | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:19:3:19:44 | documen ... Content | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:19:3:19:44 | documen ... Content | fileImports | anser |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:19:3:19:44 | documen ... Content | receiverName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:19:3:19:44 | documen ... Content | stringConcatenatedWith |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:19:27:19:31 | "foo" | CalleeFlexibleAccessPath | document.getElementById |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:19:27:19:31 | "foo" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:19:27:19:31 | "foo" | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:19:27:19:31 | "foo" | assignedToPropName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:19:27:19:31 | "foo" | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:19:27:19:31 | "foo" | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:19:27:19:31 | "foo" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:19:27:19:31 | "foo" | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:19:27:19:31 | "foo" | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:19:27:19:31 | "foo" | fileImports | anser |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:19:27:19:31 | "foo" | receiverName | document |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:19:27:19:31 | "foo" | stringConcatenatedWith |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:22:4:22:8 | "#id" | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:22:4:22:8 | "#id" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:22:4:22:8 | "#id" | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:22:4:22:8 | "#id" | assignedToPropName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:22:4:22:8 | "#id" | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:22:4:22:8 | "#id" | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:22:4:22:8 | "#id" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:22:4:22:8 | "#id" | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:22:4:22:8 | "#id" | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:22:4:22:8 | "#id" | fileImports | anser |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:22:4:22:8 | "#id" | receiverName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:22:4:22:8 | "#id" | stringConcatenatedWith |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:23:3:23:48 | documen ... ].value | CalleeFlexibleAccessPath | $().html |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:23:3:23:48 | documen ... ].value | InputAccessPathFromCallee |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:23:3:23:48 | documen ... ].value | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:23:3:23:48 | documen ... ].value | assignedToPropName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:23:3:23:48 | documen ... ].value | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:23:3:23:48 | documen ... ].value | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:23:3:23:48 | documen ... ].value | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:23:3:23:48 | documen ... ].value | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:23:3:23:48 | documen ... ].value | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:23:3:23:48 | documen ... ].value | fileImports | anser |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:23:3:23:48 | documen ... ].value | receiverName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:23:3:23:48 | documen ... ].value | stringConcatenatedWith |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:23:29:23:38 | "textarea" | CalleeFlexibleAccessPath | document.querySelectorAll |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:23:29:23:38 | "textarea" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:23:29:23:38 | "textarea" | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:23:29:23:38 | "textarea" | assignedToPropName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:23:29:23:38 | "textarea" | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:23:29:23:38 | "textarea" | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:23:29:23:38 | "textarea" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:23:29:23:38 | "textarea" | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:23:29:23:38 | "textarea" | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:23:29:23:38 | "textarea" | fileImports | anser |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:23:29:23:38 | "textarea" | receiverName | document |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:23:29:23:38 | "textarea" | stringConcatenatedWith |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:26:4:26:8 | "#id" | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:26:4:26:8 | "#id" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:26:4:26:8 | "#id" | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:26:4:26:8 | "#id" | assignedToPropName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:26:4:26:8 | "#id" | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:26:4:26:8 | "#id" | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:26:4:26:8 | "#id" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:26:4:26:8 | "#id" | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:26:4:26:8 | "#id" | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:26:4:26:8 | "#id" | fileImports | anser |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:26:4:26:8 | "#id" | receiverName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:26:4:26:8 | "#id" | stringConcatenatedWith |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:27:3:27:61 | documen ... arget') | CalleeFlexibleAccessPath | $().html |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:27:3:27:61 | documen ... arget') | InputAccessPathFromCallee |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:27:3:27:61 | documen ... arget') | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:27:3:27:61 | documen ... arget') | assignedToPropName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:27:3:27:61 | documen ... arget') | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:27:3:27:61 | documen ... arget') | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:27:3:27:61 | documen ... arget') | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:27:3:27:61 | documen ... arget') | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:27:3:27:61 | documen ... arget') | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:27:3:27:61 | documen ... arget') | fileImports | anser |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:27:3:27:61 | documen ... arget') | receiverName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:27:3:27:61 | documen ... arget') | stringConcatenatedWith |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:27:27:27:32 | 'div1' | CalleeFlexibleAccessPath | document.getElementById |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:27:27:27:32 | 'div1' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:27:27:27:32 | 'div1' | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:27:27:27:32 | 'div1' | assignedToPropName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:27:27:27:32 | 'div1' | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:27:27:27:32 | 'div1' | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:27:27:27:32 | 'div1' | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:27:27:27:32 | 'div1' | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:27:27:27:32 | 'div1' | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:27:27:27:32 | 'div1' | fileImports | anser |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:27:27:27:32 | 'div1' | receiverName | document |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:27:27:27:32 | 'div1' | stringConcatenatedWith |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:27:48:27:60 | 'data-target' | CalleeFlexibleAccessPath | document.getElementById().getAttribute |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:27:48:27:60 | 'data-target' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:27:48:27:60 | 'data-target' | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:27:48:27:60 | 'data-target' | assignedToPropName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:27:48:27:60 | 'data-target' | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:27:48:27:60 | 'data-target' | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:27:48:27:60 | 'data-target' | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:27:48:27:60 | 'data-target' | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:27:48:27:60 | 'data-target' | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:27:48:27:60 | 'data-target' | fileImports | anser |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:27:48:27:60 | 'data-target' | receiverName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:27:48:27:60 | 'data-target' | stringConcatenatedWith |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:32:16:32:16 | x | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:32:16:32:16 | x | InputAccessPathFromCallee |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:32:16:32:16 | x | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:32:16:32:16 | x | assignedToPropName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:32:16:32:16 | x | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:32:16:32:16 | x | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:32:16:32:16 | x | contextSurroundingFunctionParameters | (x) |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:32:16:32:16 | x | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:32:16:32:16 | x | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:32:16:32:16 | x | fileImports | anser |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:32:16:32:16 | x | receiverName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:32:16:32:16 | x | stringConcatenatedWith |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:36:10:36:19 | "textarea" | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:36:10:36:19 | "textarea" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:36:10:36:19 | "textarea" | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:36:10:36:19 | "textarea" | assignedToPropName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:36:10:36:19 | "textarea" | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:36:10:36:19 | "textarea" | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:36:10:36:19 | "textarea" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:36:10:36:19 | "textarea" | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:36:10:36:19 | "textarea" | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:36:10:36:19 | "textarea" | fileImports | anser |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:36:10:36:19 | "textarea" | receiverName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:36:10:36:19 | "textarea" | stringConcatenatedWith |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:40:16:40:16 | x | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:40:16:40:16 | x | InputAccessPathFromCallee |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:40:16:40:16 | x | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:40:16:40:16 | x | assignedToPropName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:40:16:40:16 | x | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:40:16:40:16 | x | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:40:16:40:16 | x | contextSurroundingFunctionParameters | (x) |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:40:16:40:16 | x | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:40:16:40:16 | x | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:40:16:40:16 | x | fileImports | anser |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:40:16:40:16 | x | receiverName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:40:16:40:16 | x | stringConcatenatedWith |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:43:10:43:19 | "textarea" | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:43:10:43:19 | "textarea" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:43:10:43:19 | "textarea" | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:43:10:43:19 | "textarea" | assignedToPropName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:43:10:43:19 | "textarea" | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:43:10:43:19 | "textarea" | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:43:10:43:19 | "textarea" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:43:10:43:19 | "textarea" | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:43:10:43:19 | "textarea" | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:43:10:43:19 | "textarea" | fileImports | anser |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:43:10:43:19 | "textarea" | receiverName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:43:10:43:19 | "textarea" | stringConcatenatedWith |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:46:4:46:8 | "#id" | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:46:4:46:8 | "#id" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:46:4:46:8 | "#id" | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:46:4:46:8 | "#id" | assignedToPropName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:46:4:46:8 | "#id" | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:46:4:46:8 | "#id" | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:46:4:46:8 | "#id" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:46:4:46:8 | "#id" | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:46:4:46:8 | "#id" | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:46:4:46:8 | "#id" | fileImports | anser |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:46:4:46:8 | "#id" | receiverName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:46:4:46:8 | "#id" | stringConcatenatedWith |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:47:3:47:40 | $("<p>" ... .text() | CalleeFlexibleAccessPath | $().html |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:47:3:47:40 | $("<p>" ... .text() | InputAccessPathFromCallee |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:47:3:47:40 | $("<p>" ... .text() | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:47:3:47:40 | $("<p>" ... .text() | assignedToPropName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:47:3:47:40 | $("<p>" ... .text() | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:47:3:47:40 | $("<p>" ... .text() | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:47:3:47:40 | $("<p>" ... .text() | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:47:3:47:40 | $("<p>" ... .text() | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:47:3:47:40 | $("<p>" ... .text() | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:47:3:47:40 | $("<p>" ... .text() | fileImports | anser |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:47:3:47:40 | $("<p>" ... .text() | receiverName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:47:3:47:40 | $("<p>" ... .text() | stringConcatenatedWith |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:47:5:47:9 | "<p>" | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:47:5:47:9 | "<p>" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:47:5:47:9 | "<p>" | InputArgumentIndex |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:47:5:47:9 | "<p>" | assignedToPropName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:47:5:47:9 | "<p>" | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:47:5:47:9 | "<p>" | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:47:5:47:9 | "<p>" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:47:5:47:9 | "<p>" | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:47:5:47:9 | "<p>" | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:47:5:47:9 | "<p>" | fileImports | anser |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:47:5:47:9 | "<p>" | receiverName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:47:5:47:9 | "<p>" | stringConcatenatedWith |  -endpoint- something() + '</p>' |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:47:5:47:32 | "<p>" + ...  "</p>" | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:47:5:47:32 | "<p>" + ...  "</p>" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:47:5:47:32 | "<p>" + ...  "</p>" | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:47:5:47:32 | "<p>" + ...  "</p>" | assignedToPropName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:47:5:47:32 | "<p>" + ...  "</p>" | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:47:5:47:32 | "<p>" + ...  "</p>" | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:47:5:47:32 | "<p>" + ...  "</p>" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:47:5:47:32 | "<p>" + ...  "</p>" | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:47:5:47:32 | "<p>" + ...  "</p>" | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:47:5:47:32 | "<p>" + ...  "</p>" | fileImports | anser |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:47:5:47:32 | "<p>" + ...  "</p>" | receiverName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:47:5:47:32 | "<p>" + ...  "</p>" | stringConcatenatedWith |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:47:13:47:23 | something() | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:47:13:47:23 | something() | InputAccessPathFromCallee |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:47:13:47:23 | something() | InputArgumentIndex |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:47:13:47:23 | something() | assignedToPropName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:47:13:47:23 | something() | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:47:13:47:23 | something() | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:47:13:47:23 | something() | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:47:13:47:23 | something() | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:47:13:47:23 | something() | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:47:13:47:23 | something() | fileImports | anser |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:47:13:47:23 | something() | receiverName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:47:13:47:23 | something() | stringConcatenatedWith | '<p>' -endpoint- '</p>' |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:47:27:47:32 | "</p>" | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:47:27:47:32 | "</p>" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:47:27:47:32 | "</p>" | InputArgumentIndex |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:47:27:47:32 | "</p>" | assignedToPropName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:47:27:47:32 | "</p>" | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:47:27:47:32 | "</p>" | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:47:27:47:32 | "</p>" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:47:27:47:32 | "</p>" | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:47:27:47:32 | "</p>" | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:47:27:47:32 | "</p>" | fileImports | anser |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:47:27:47:32 | "</p>" | receiverName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:47:27:47:32 | "</p>" | stringConcatenatedWith | '<p>' + something() -endpoint-  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:51:4:51:8 | "#id" | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:51:4:51:8 | "#id" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:51:4:51:8 | "#id" | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:51:4:51:8 | "#id" | assignedToPropName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:51:4:51:8 | "#id" | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:51:4:51:8 | "#id" | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:51:4:51:8 | "#id" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:51:4:51:8 | "#id" | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:51:4:51:8 | "#id" | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:51:4:51:8 | "#id" | fileImports | anser |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:51:4:51:8 | "#id" | receiverName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:51:4:51:8 | "#id" | stringConcatenatedWith |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:51:15:51:15 | 0 | CalleeFlexibleAccessPath | $().get |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:51:15:51:15 | 0 | InputAccessPathFromCallee |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:51:15:51:15 | 0 | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:51:15:51:15 | 0 | assignedToPropName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:51:15:51:15 | 0 | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:51:15:51:15 | 0 | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:51:15:51:15 | 0 | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:51:15:51:15 | 0 | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:51:15:51:15 | 0 | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:51:15:51:15 | 0 | fileImports | anser |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:51:15:51:15 | 0 | receiverName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:51:15:51:15 | 0 | stringConcatenatedWith |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:51:30:51:48 | $("textarea").val() | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:51:30:51:48 | $("textarea").val() | InputAccessPathFromCallee |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:51:30:51:48 | $("textarea").val() | InputArgumentIndex |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:51:30:51:48 | $("textarea").val() | assignedToPropName | innerHTML |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:51:30:51:48 | $("textarea").val() | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:51:30:51:48 | $("textarea").val() | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:51:30:51:48 | $("textarea").val() | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:51:30:51:48 | $("textarea").val() | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:51:30:51:48 | $("textarea").val() | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:51:30:51:48 | $("textarea").val() | fileImports | anser |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:51:30:51:48 | $("textarea").val() | receiverName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:51:30:51:48 | $("textarea").val() | stringConcatenatedWith |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:51:32:51:41 | "textarea" | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:51:32:51:41 | "textarea" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:51:32:51:41 | "textarea" | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:51:32:51:41 | "textarea" | assignedToPropName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:51:32:51:41 | "textarea" | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:51:32:51:41 | "textarea" | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:51:32:51:41 | "textarea" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:51:32:51:41 | "textarea" | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:51:32:51:41 | "textarea" | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:51:32:51:41 | "textarea" | fileImports | anser |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:51:32:51:41 | "textarea" | receiverName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:51:32:51:41 | "textarea" | stringConcatenatedWith |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:53:15:53:19 | "#id" | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:53:15:53:19 | "#id" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:53:15:53:19 | "#id" | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:53:15:53:19 | "#id" | assignedToPropName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:53:15:53:19 | "#id" | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:53:15:53:19 | "#id" | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:53:15:53:19 | "#id" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:53:15:53:19 | "#id" | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:53:15:53:19 | "#id" | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:53:15:53:19 | "#id" | fileImports | anser |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:53:15:53:19 | "#id" | receiverName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:53:15:53:19 | "#id" | stringConcatenatedWith |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:54:31:54:49 | $("textarea").val() | CalleeFlexibleAccessPath | base.? |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:54:31:54:49 | $("textarea").val() | InputAccessPathFromCallee |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:54:31:54:49 | $("textarea").val() | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:54:31:54:49 | $("textarea").val() | assignedToPropName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:54:31:54:49 | $("textarea").val() | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:54:31:54:49 | $("textarea").val() | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:54:31:54:49 | $("textarea").val() | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:54:31:54:49 | $("textarea").val() | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:54:31:54:49 | $("textarea").val() | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:54:31:54:49 | $("textarea").val() | fileImports | anser |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:54:31:54:49 | $("textarea").val() | receiverName | base |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:54:31:54:49 | $("textarea").val() | stringConcatenatedWith |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:54:33:54:42 | "textarea" | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:54:33:54:42 | "textarea" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:54:33:54:42 | "textarea" | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:54:33:54:42 | "textarea" | assignedToPropName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:54:33:54:42 | "textarea" | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:54:33:54:42 | "textarea" | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:54:33:54:42 | "textarea" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:54:33:54:42 | "textarea" | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:54:33:54:42 | "textarea" | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:54:33:54:42 | "textarea" | fileImports | anser |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:54:33:54:42 | "textarea" | receiverName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:54:33:54:42 | "textarea" | stringConcatenatedWith |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:4:56:8 | "#id" | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:4:56:8 | "#id" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:4:56:8 | "#id" | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:4:56:8 | "#id" | assignedToPropName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:4:56:8 | "#id" | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:4:56:8 | "#id" | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:4:56:8 | "#id" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:4:56:8 | "#id" | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:4:56:8 | "#id" | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:4:56:8 | "#id" | fileImports | anser |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:4:56:8 | "#id" | receiverName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:4:56:8 | "#id" | stringConcatenatedWith |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:15:56:15 | 0 | CalleeFlexibleAccessPath | $().get |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:15:56:15 | 0 | InputAccessPathFromCallee |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:15:56:15 | 0 | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:15:56:15 | 0 | assignedToPropName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:15:56:15 | 0 | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:15:56:15 | 0 | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:15:56:15 | 0 | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:15:56:15 | 0 | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:15:56:15 | 0 | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:15:56:15 | 0 | fileImports | anser |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:15:56:15 | 0 | receiverName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:15:56:15 | 0 | stringConcatenatedWith |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:30:56:51 | $("inpu ... 0).name | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:30:56:51 | $("inpu ... 0).name | InputAccessPathFromCallee |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:30:56:51 | $("inpu ... 0).name | InputArgumentIndex |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:30:56:51 | $("inpu ... 0).name | assignedToPropName | innerHTML |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:30:56:51 | $("inpu ... 0).name | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:30:56:51 | $("inpu ... 0).name | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:30:56:51 | $("inpu ... 0).name | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:30:56:51 | $("inpu ... 0).name | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:30:56:51 | $("inpu ... 0).name | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:30:56:51 | $("inpu ... 0).name | fileImports | anser |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:30:56:51 | $("inpu ... 0).name | receiverName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:30:56:51 | $("inpu ... 0).name | stringConcatenatedWith |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:32:56:38 | "input" | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:32:56:38 | "input" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:32:56:38 | "input" | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:32:56:38 | "input" | assignedToPropName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:32:56:38 | "input" | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:32:56:38 | "input" | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:32:56:38 | "input" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:32:56:38 | "input" | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:32:56:38 | "input" | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:32:56:38 | "input" | fileImports | anser |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:32:56:38 | "input" | receiverName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:32:56:38 | "input" | stringConcatenatedWith |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:45:56:45 | 0 | CalleeFlexibleAccessPath | $().get |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:45:56:45 | 0 | InputAccessPathFromCallee |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:45:56:45 | 0 | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:45:56:45 | 0 | assignedToPropName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:45:56:45 | 0 | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:45:56:45 | 0 | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:45:56:45 | 0 | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:45:56:45 | 0 | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:45:56:45 | 0 | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:45:56:45 | 0 | fileImports | anser |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:45:56:45 | 0 | receiverName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:45:56:45 | 0 | stringConcatenatedWith |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:4:57:8 | "#id" | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:4:57:8 | "#id" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:4:57:8 | "#id" | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:4:57:8 | "#id" | assignedToPropName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:4:57:8 | "#id" | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:4:57:8 | "#id" | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:4:57:8 | "#id" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:4:57:8 | "#id" | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:4:57:8 | "#id" | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:4:57:8 | "#id" | fileImports | anser |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:4:57:8 | "#id" | receiverName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:4:57:8 | "#id" | stringConcatenatedWith |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:15:57:15 | 0 | CalleeFlexibleAccessPath | $().get |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:15:57:15 | 0 | InputAccessPathFromCallee |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:15:57:15 | 0 | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:15:57:15 | 0 | assignedToPropName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:15:57:15 | 0 | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:15:57:15 | 0 | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:15:57:15 | 0 | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:15:57:15 | 0 | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:15:57:15 | 0 | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:15:57:15 | 0 | fileImports | anser |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:15:57:15 | 0 | receiverName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:15:57:15 | 0 | stringConcatenatedWith |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:30:57:67 | $("inpu ... "name") | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:30:57:67 | $("inpu ... "name") | InputAccessPathFromCallee |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:30:57:67 | $("inpu ... "name") | InputArgumentIndex |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:30:57:67 | $("inpu ... "name") | assignedToPropName | innerHTML |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:30:57:67 | $("inpu ... "name") | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:30:57:67 | $("inpu ... "name") | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:30:57:67 | $("inpu ... "name") | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:30:57:67 | $("inpu ... "name") | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:30:57:67 | $("inpu ... "name") | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:30:57:67 | $("inpu ... "name") | fileImports | anser |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:30:57:67 | $("inpu ... "name") | receiverName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:30:57:67 | $("inpu ... "name") | stringConcatenatedWith |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:32:57:38 | "input" | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:32:57:38 | "input" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:32:57:38 | "input" | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:32:57:38 | "input" | assignedToPropName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:32:57:38 | "input" | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:32:57:38 | "input" | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:32:57:38 | "input" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:32:57:38 | "input" | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:32:57:38 | "input" | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:32:57:38 | "input" | fileImports | anser |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:32:57:38 | "input" | receiverName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:32:57:38 | "input" | stringConcatenatedWith |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:45:57:45 | 0 | CalleeFlexibleAccessPath | $().get |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:45:57:45 | 0 | InputAccessPathFromCallee |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:45:57:45 | 0 | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:45:57:45 | 0 | assignedToPropName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:45:57:45 | 0 | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:45:57:45 | 0 | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:45:57:45 | 0 | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:45:57:45 | 0 | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:45:57:45 | 0 | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:45:57:45 | 0 | fileImports | anser |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:45:57:45 | 0 | receiverName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:45:57:45 | 0 | stringConcatenatedWith |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:61:57:66 | "name" | CalleeFlexibleAccessPath | $().get().getAttribute |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:61:57:66 | "name" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:61:57:66 | "name" | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:61:57:66 | "name" | assignedToPropName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:61:57:66 | "name" | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:61:57:66 | "name" | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:61:57:66 | "name" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:61:57:66 | "name" | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:61:57:66 | "name" | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:61:57:66 | "name" | fileImports | anser |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:61:57:66 | "name" | receiverName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:61:57:66 | "name" | stringConcatenatedWith |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:4:59:8 | "#id" | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:4:59:8 | "#id" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:4:59:8 | "#id" | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:4:59:8 | "#id" | assignedToPropName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:4:59:8 | "#id" | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:4:59:8 | "#id" | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:4:59:8 | "#id" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:4:59:8 | "#id" | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:4:59:8 | "#id" | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:4:59:8 | "#id" | fileImports | anser |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:4:59:8 | "#id" | receiverName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:4:59:8 | "#id" | stringConcatenatedWith |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:15:59:15 | 0 | CalleeFlexibleAccessPath | $().get |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:15:59:15 | 0 | InputAccessPathFromCallee |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:15:59:15 | 0 | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:15:59:15 | 0 | assignedToPropName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:15:59:15 | 0 | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:15:59:15 | 0 | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:15:59:15 | 0 | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:15:59:15 | 0 | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:15:59:15 | 0 | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:15:59:15 | 0 | fileImports | anser |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:15:59:15 | 0 | receiverName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:15:59:15 | 0 | stringConcatenatedWith |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:30:59:58 | $("inpu ... e("id") | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:30:59:58 | $("inpu ... e("id") | InputAccessPathFromCallee |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:30:59:58 | $("inpu ... e("id") | InputArgumentIndex |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:30:59:58 | $("inpu ... e("id") | assignedToPropName | innerHTML |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:30:59:58 | $("inpu ... e("id") | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:30:59:58 | $("inpu ... e("id") | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:30:59:58 | $("inpu ... e("id") | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:30:59:58 | $("inpu ... e("id") | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:30:59:58 | $("inpu ... e("id") | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:30:59:58 | $("inpu ... e("id") | fileImports | anser |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:30:59:58 | $("inpu ... e("id") | receiverName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:30:59:58 | $("inpu ... e("id") | stringConcatenatedWith |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:32:59:38 | "input" | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:32:59:38 | "input" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:32:59:38 | "input" | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:32:59:38 | "input" | assignedToPropName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:32:59:38 | "input" | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:32:59:38 | "input" | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:32:59:38 | "input" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:32:59:38 | "input" | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:32:59:38 | "input" | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:32:59:38 | "input" | fileImports | anser |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:32:59:38 | "input" | receiverName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:32:59:38 | "input" | stringConcatenatedWith |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:54:59:57 | "id" | CalleeFlexibleAccessPath | $().getAttribute |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:54:59:57 | "id" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:54:59:57 | "id" | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:54:59:57 | "id" | assignedToPropName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:54:59:57 | "id" | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:54:59:57 | "id" | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:54:59:57 | "id" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:54:59:57 | "id" | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:54:59:57 | "id" | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:54:59:57 | "id" | fileImports | anser |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:54:59:57 | "id" | receiverName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:54:59:57 | "id" | stringConcatenatedWith |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:4:61:8 | "#id" | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:4:61:8 | "#id" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:4:61:8 | "#id" | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:4:61:8 | "#id" | assignedToPropName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:4:61:8 | "#id" | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:4:61:8 | "#id" | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:4:61:8 | "#id" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:4:61:8 | "#id" | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:4:61:8 | "#id" | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:4:61:8 | "#id" | fileImports | anser |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:4:61:8 | "#id" | receiverName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:4:61:8 | "#id" | stringConcatenatedWith |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:15:61:15 | 0 | CalleeFlexibleAccessPath | $().get |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:15:61:15 | 0 | InputAccessPathFromCallee |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:15:61:15 | 0 | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:15:61:15 | 0 | assignedToPropName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:15:61:15 | 0 | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:15:61:15 | 0 | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:15:61:15 | 0 | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:15:61:15 | 0 | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:15:61:15 | 0 | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:15:61:15 | 0 | fileImports | anser |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:15:61:15 | 0 | receiverName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:15:61:15 | 0 | stringConcatenatedWith |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:30:61:69 | $(docum ... value") | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:30:61:69 | $(docum ... value") | InputAccessPathFromCallee |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:30:61:69 | $(docum ... value") | InputArgumentIndex |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:30:61:69 | $(docum ... value") | assignedToPropName | innerHTML |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:30:61:69 | $(docum ... value") | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:30:61:69 | $(docum ... value") | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:30:61:69 | $(docum ... value") | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:30:61:69 | $(docum ... value") | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:30:61:69 | $(docum ... value") | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:30:61:69 | $(docum ... value") | fileImports | anser |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:30:61:69 | $(docum ... value") | receiverName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:30:61:69 | $(docum ... value") | stringConcatenatedWith |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:32:61:39 | document | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:32:61:39 | document | InputAccessPathFromCallee |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:32:61:39 | document | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:32:61:39 | document | assignedToPropName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:32:61:39 | document | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:32:61:39 | document | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:32:61:39 | document | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:32:61:39 | document | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:32:61:39 | document | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:32:61:39 | document | fileImports | anser |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:32:61:39 | document | receiverName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:32:61:39 | document | stringConcatenatedWith |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:47:61:54 | "option" | CalleeFlexibleAccessPath | $().find |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:47:61:54 | "option" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:47:61:54 | "option" | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:47:61:54 | "option" | assignedToPropName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:47:61:54 | "option" | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:47:61:54 | "option" | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:47:61:54 | "option" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:47:61:54 | "option" | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:47:61:54 | "option" | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:47:61:54 | "option" | fileImports | anser |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:47:61:54 | "option" | receiverName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:47:61:54 | "option" | stringConcatenatedWith |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:62:61:68 | "value" | CalleeFlexibleAccessPath | $().find().attr |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:62:61:68 | "value" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:62:61:68 | "value" | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:62:61:68 | "value" | assignedToPropName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:62:61:68 | "value" | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:62:61:68 | "value" | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:62:61:68 | "value" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:62:61:68 | "value" | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:62:61:68 | "value" | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:62:61:68 | "value" | fileImports | anser |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:62:61:68 | "value" | receiverName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:62:61:68 | "value" | stringConcatenatedWith |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:63:20:63:29 | "textarea" | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:63:20:63:29 | "textarea" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:63:20:63:29 | "textarea" | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:63:20:63:29 | "textarea" | assignedToPropName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:63:20:63:29 | "textarea" | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:63:20:63:29 | "textarea" | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:63:20:63:29 | "textarea" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:63:20:63:29 | "textarea" | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:63:20:63:29 | "textarea" | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:63:20:63:29 | "textarea" | fileImports | anser |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:63:20:63:29 | "textarea" | receiverName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:63:20:63:29 | "textarea" | stringConcatenatedWith |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:64:4:64:8 | "#id" | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:64:4:64:8 | "#id" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:64:4:64:8 | "#id" | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:64:4:64:8 | "#id" | assignedToPropName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:64:4:64:8 | "#id" | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:64:4:64:8 | "#id" | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:64:4:64:8 | "#id" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:64:4:64:8 | "#id" | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:64:4:64:8 | "#id" | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:64:4:64:8 | "#id" | fileImports | anser |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:64:4:64:8 | "#id" | receiverName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:64:4:64:8 | "#id" | stringConcatenatedWith |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:64:15:64:15 | 0 | CalleeFlexibleAccessPath | $().get |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:64:15:64:15 | 0 | InputAccessPathFromCallee |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:64:15:64:15 | 0 | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:64:15:64:15 | 0 | assignedToPropName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:64:15:64:15 | 0 | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:64:15:64:15 | 0 | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:64:15:64:15 | 0 | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:64:15:64:15 | 0 | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:64:15:64:15 | 0 | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:64:15:64:15 | 0 | fileImports | anser |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:64:15:64:15 | 0 | receiverName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:64:15:64:15 | 0 | stringConcatenatedWith |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:64:30:64:40 | valMethod() | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:64:30:64:40 | valMethod() | InputAccessPathFromCallee |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:64:30:64:40 | valMethod() | InputArgumentIndex |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:64:30:64:40 | valMethod() | assignedToPropName | innerHTML |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:64:30:64:40 | valMethod() | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:64:30:64:40 | valMethod() | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:64:30:64:40 | valMethod() | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:64:30:64:40 | valMethod() | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:64:30:64:40 | valMethod() | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:64:30:64:40 | valMethod() | fileImports | anser |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:64:30:64:40 | valMethod() | receiverName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:64:30:64:40 | valMethod() | stringConcatenatedWith |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:66:18:66:25 | document | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:66:18:66:25 | document | InputAccessPathFromCallee |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:66:18:66:25 | document | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:66:18:66:25 | document | assignedToPropName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:66:18:66:25 | document | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:66:18:66:25 | document | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:66:18:66:25 | document | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:66:18:66:25 | document | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:66:18:66:25 | document | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:66:18:66:25 | document | fileImports | anser |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:66:18:66:25 | document | receiverName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:66:18:66:25 | document | stringConcatenatedWith |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:66:33:66:40 | "option" | CalleeFlexibleAccessPath | $().find |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:66:33:66:40 | "option" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:66:33:66:40 | "option" | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:66:33:66:40 | "option" | assignedToPropName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:66:33:66:40 | "option" | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:66:33:66:40 | "option" | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:66:33:66:40 | "option" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:66:33:66:40 | "option" | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:66:33:66:40 | "option" | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:66:33:66:40 | "option" | fileImports | anser |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:66:33:66:40 | "option" | receiverName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:66:33:66:40 | "option" | stringConcatenatedWith |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:66:48:66:54 | "value" | CalleeFlexibleAccessPath | $().find().attr |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:66:48:66:54 | "value" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:66:48:66:54 | "value" | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:66:48:66:54 | "value" | assignedToPropName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:66:48:66:54 | "value" | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:66:48:66:54 | "value" | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:66:48:66:54 | "value" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:66:48:66:54 | "value" | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:66:48:66:54 | "value" | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:66:48:66:54 | "value" | fileImports | anser |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:66:48:66:54 | "value" | receiverName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:66:48:66:54 | "value" | stringConcatenatedWith |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:68:5:68:9 | "#id" | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:68:5:68:9 | "#id" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:68:5:68:9 | "#id" | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:68:5:68:9 | "#id" | assignedToPropName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:68:5:68:9 | "#id" | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:68:5:68:9 | "#id" | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:68:5:68:9 | "#id" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:68:5:68:9 | "#id" | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:68:5:68:9 | "#id" | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:68:5:68:9 | "#id" | fileImports | anser |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:68:5:68:9 | "#id" | receiverName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:68:5:68:9 | "#id" | stringConcatenatedWith |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:68:16:68:16 | 0 | CalleeFlexibleAccessPath | $().get |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:68:16:68:16 | 0 | InputAccessPathFromCallee |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:68:16:68:16 | 0 | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:68:16:68:16 | 0 | assignedToPropName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:68:16:68:16 | 0 | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:68:16:68:16 | 0 | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:68:16:68:16 | 0 | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:68:16:68:16 | 0 | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:68:16:68:16 | 0 | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:68:16:68:16 | 0 | fileImports | anser |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:68:16:68:16 | 0 | receiverName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:68:16:68:16 | 0 | stringConcatenatedWith |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:68:31:68:37 | myValue | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:68:31:68:37 | myValue | InputAccessPathFromCallee |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:68:31:68:37 | myValue | InputArgumentIndex |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:68:31:68:37 | myValue | assignedToPropName | innerHTML |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:68:31:68:37 | myValue | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:68:31:68:37 | myValue | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:68:31:68:37 | myValue | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:68:31:68:37 | myValue | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:68:31:68:37 | myValue | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:68:31:68:37 | myValue | fileImports | anser |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:68:31:68:37 | myValue | receiverName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:68:31:68:37 | myValue | stringConcatenatedWith |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:71:11:71:32 | $("inpu ... 0).name | CalleeFlexibleAccessPath | $.jGrowl |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:71:11:71:32 | $("inpu ... 0).name | InputAccessPathFromCallee |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:71:11:71:32 | $("inpu ... 0).name | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:71:11:71:32 | $("inpu ... 0).name | assignedToPropName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:71:11:71:32 | $("inpu ... 0).name | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:71:11:71:32 | $("inpu ... 0).name | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:71:11:71:32 | $("inpu ... 0).name | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:71:11:71:32 | $("inpu ... 0).name | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:71:11:71:32 | $("inpu ... 0).name | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:71:11:71:32 | $("inpu ... 0).name | fileImports | anser |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:71:11:71:32 | $("inpu ... 0).name | receiverName | $ |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:71:11:71:32 | $("inpu ... 0).name | stringConcatenatedWith |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:71:13:71:19 | "input" | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:71:13:71:19 | "input" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:71:13:71:19 | "input" | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:71:13:71:19 | "input" | assignedToPropName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:71:13:71:19 | "input" | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:71:13:71:19 | "input" | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:71:13:71:19 | "input" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:71:13:71:19 | "input" | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:71:13:71:19 | "input" | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:71:13:71:19 | "input" | fileImports | anser |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:71:13:71:19 | "input" | receiverName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:71:13:71:19 | "input" | stringConcatenatedWith |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:71:26:71:26 | 0 | CalleeFlexibleAccessPath | $().get |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:71:26:71:26 | 0 | InputAccessPathFromCallee |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:71:26:71:26 | 0 | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:71:26:71:26 | 0 | assignedToPropName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:71:26:71:26 | 0 | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:71:26:71:26 | 0 | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:71:26:71:26 | 0 | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:71:26:71:26 | 0 | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:71:26:71:26 | 0 | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:71:26:71:26 | 0 | fileImports | anser |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:71:26:71:26 | 0 | receiverName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:71:26:71:26 | 0 | stringConcatenatedWith |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:73:22:73:28 | "input" | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:73:22:73:28 | "input" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:73:22:73:28 | "input" | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:73:22:73:28 | "input" | assignedToPropName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:73:22:73:28 | "input" | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:73:22:73:28 | "input" | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:73:22:73:28 | "input" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:73:22:73:28 | "input" | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:73:22:73:28 | "input" | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:73:22:73:28 | "input" | fileImports | anser |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:73:22:73:28 | "input" | receiverName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:73:22:73:28 | "input" | stringConcatenatedWith |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:73:35:73:35 | 0 | CalleeFlexibleAccessPath | $().get |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:73:35:73:35 | 0 | InputAccessPathFromCallee |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:73:35:73:35 | 0 | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:73:35:73:35 | 0 | assignedToPropName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:73:35:73:35 | 0 | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:73:35:73:35 | 0 | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:73:35:73:35 | 0 | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:73:35:73:35 | 0 | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:73:35:73:35 | 0 | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:73:35:73:35 | 0 | fileImports | anser |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:73:35:73:35 | 0 | receiverName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:73:35:73:35 | 0 | stringConcatenatedWith |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:75:22:75:31 | "textarea" | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:75:22:75:31 | "textarea" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:75:22:75:31 | "textarea" | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:75:22:75:31 | "textarea" | assignedToPropName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:75:22:75:31 | "textarea" | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:75:22:75:31 | "textarea" | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:75:22:75:31 | "textarea" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:75:22:75:31 | "textarea" | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:75:22:75:31 | "textarea" | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:75:22:75:31 | "textarea" | fileImports | anser |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:75:22:75:31 | "textarea" | receiverName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:75:22:75:31 | "textarea" | stringConcatenatedWith |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:77:4:77:11 | selector | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:77:4:77:11 | selector | InputAccessPathFromCallee |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:77:4:77:11 | selector | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:77:4:77:11 | selector | assignedToPropName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:77:4:77:11 | selector | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:77:4:77:11 | selector | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:77:4:77:11 | selector | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:77:4:77:11 | selector | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:77:4:77:11 | selector | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:77:4:77:11 | selector | fileImports | anser |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:77:4:77:11 | selector | receiverName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:77:4:77:11 | selector | stringConcatenatedWith |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:79:4:79:34 | documen ... t.value | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:79:4:79:34 | documen ... t.value | InputAccessPathFromCallee |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:79:4:79:34 | documen ... t.value | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:79:4:79:34 | documen ... t.value | assignedToPropName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:79:4:79:34 | documen ... t.value | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:79:4:79:34 | documen ... t.value | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:79:4:79:34 | documen ... t.value | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:79:4:79:34 | documen ... t.value | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:79:4:79:34 | documen ... t.value | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:79:4:79:34 | documen ... t.value | fileImports | anser |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:79:4:79:34 | documen ... t.value | receiverName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:79:4:79:34 | documen ... t.value | stringConcatenatedWith |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:81:4:81:8 | "#id" | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:81:4:81:8 | "#id" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:81:4:81:8 | "#id" | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:81:4:81:8 | "#id" | assignedToPropName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:81:4:81:8 | "#id" | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:81:4:81:8 | "#id" | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:81:4:81:8 | "#id" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:81:4:81:8 | "#id" | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:81:4:81:8 | "#id" | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:81:4:81:8 | "#id" | fileImports | anser |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:81:4:81:8 | "#id" | receiverName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:81:4:81:8 | "#id" | stringConcatenatedWith |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:81:17:81:43 | $('#foo ... rText') | CalleeFlexibleAccessPath | $().html |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:81:17:81:43 | $('#foo ... rText') | InputAccessPathFromCallee |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:81:17:81:43 | $('#foo ... rText') | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:81:17:81:43 | $('#foo ... rText') | assignedToPropName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:81:17:81:43 | $('#foo ... rText') | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:81:17:81:43 | $('#foo ... rText') | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:81:17:81:43 | $('#foo ... rText') | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:81:17:81:43 | $('#foo ... rText') | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:81:17:81:43 | $('#foo ... rText') | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:81:17:81:43 | $('#foo ... rText') | fileImports | anser |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:81:17:81:43 | $('#foo ... rText') | receiverName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:81:17:81:43 | $('#foo ... rText') | stringConcatenatedWith |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:81:19:81:24 | '#foo' | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:81:19:81:24 | '#foo' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:81:19:81:24 | '#foo' | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:81:19:81:24 | '#foo' | assignedToPropName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:81:19:81:24 | '#foo' | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:81:19:81:24 | '#foo' | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:81:19:81:24 | '#foo' | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:81:19:81:24 | '#foo' | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:81:19:81:24 | '#foo' | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:81:19:81:24 | '#foo' | fileImports | anser |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:81:19:81:24 | '#foo' | receiverName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:81:19:81:24 | '#foo' | stringConcatenatedWith |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:81:32:81:42 | 'innerText' | CalleeFlexibleAccessPath | $().prop |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:81:32:81:42 | 'innerText' | InputAccessPathFromCallee |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:81:32:81:42 | 'innerText' | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:81:32:81:42 | 'innerText' | assignedToPropName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:81:32:81:42 | 'innerText' | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:81:32:81:42 | 'innerText' | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:81:32:81:42 | 'innerText' | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:81:32:81:42 | 'innerText' | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:81:32:81:42 | 'innerText' | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:81:32:81:42 | 'innerText' | fileImports | anser |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:81:32:81:42 | 'innerText' | receiverName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:81:32:81:42 | 'innerText' | stringConcatenatedWith |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:83:24:83:30 | "anser" | CalleeFlexibleAccessPath | require |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:83:24:83:30 | "anser" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:83:24:83:30 | "anser" | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:83:24:83:30 | "anser" | assignedToPropName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:83:24:83:30 | "anser" | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:83:24:83:30 | "anser" | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:83:24:83:30 | "anser" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:83:24:83:30 | "anser" | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:83:24:83:30 | "anser" | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:83:24:83:30 | "anser" | fileImports | anser |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:83:24:83:30 | "anser" | receiverName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:83:24:83:30 | "anser" | stringConcatenatedWith |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:84:17:84:22 | "text" | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:84:17:84:22 | "text" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:84:17:84:22 | "text" | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:84:17:84:22 | "text" | assignedToPropName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:84:17:84:22 | "text" | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:84:17:84:22 | "text" | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:84:17:84:22 | "text" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:84:17:84:22 | "text" | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:84:17:84:22 | "text" | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:84:17:84:22 | "text" | fileImports | anser |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:84:17:84:22 | "text" | receiverName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:84:17:84:22 | "text" | stringConcatenatedWith |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:86:4:86:8 | "#id" | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:86:4:86:8 | "#id" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:86:4:86:8 | "#id" | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:86:4:86:8 | "#id" | assignedToPropName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:86:4:86:8 | "#id" | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:86:4:86:8 | "#id" | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:86:4:86:8 | "#id" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:86:4:86:8 | "#id" | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:86:4:86:8 | "#id" | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:86:4:86:8 | "#id" | fileImports | anser |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:86:4:86:8 | "#id" | receiverName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:86:4:86:8 | "#id" | stringConcatenatedWith |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:86:16:86:37 | anser.a ... l(text) | CalleeFlexibleAccessPath | $().html |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:86:16:86:37 | anser.a ... l(text) | InputAccessPathFromCallee |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:86:16:86:37 | anser.a ... l(text) | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:86:16:86:37 | anser.a ... l(text) | assignedToPropName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:86:16:86:37 | anser.a ... l(text) | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:86:16:86:37 | anser.a ... l(text) | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:86:16:86:37 | anser.a ... l(text) | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:86:16:86:37 | anser.a ... l(text) | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:86:16:86:37 | anser.a ... l(text) | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:86:16:86:37 | anser.a ... l(text) | fileImports | anser |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:86:16:86:37 | anser.a ... l(text) | receiverName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:86:16:86:37 | anser.a ... l(text) | stringConcatenatedWith |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:87:4:87:8 | "#id" | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:87:4:87:8 | "#id" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:87:4:87:8 | "#id" | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:87:4:87:8 | "#id" | assignedToPropName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:87:4:87:8 | "#id" | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:87:4:87:8 | "#id" | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:87:4:87:8 | "#id" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:87:4:87:8 | "#id" | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:87:4:87:8 | "#id" | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:87:4:87:8 | "#id" | fileImports | anser |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:87:4:87:8 | "#id" | receiverName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:87:4:87:8 | "#id" | stringConcatenatedWith |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:87:16:87:40 | new ans ... s(text) | CalleeFlexibleAccessPath | $().html |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:87:16:87:40 | new ans ... s(text) | InputAccessPathFromCallee |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:87:16:87:40 | new ans ... s(text) | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:87:16:87:40 | new ans ... s(text) | assignedToPropName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:87:16:87:40 | new ans ... s(text) | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:87:16:87:40 | new ans ... s(text) | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:87:16:87:40 | new ans ... s(text) | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:87:16:87:40 | new ans ... s(text) | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:87:16:87:40 | new ans ... s(text) | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:87:16:87:40 | new ans ... s(text) | fileImports | anser |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:87:16:87:40 | new ans ... s(text) | receiverName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:87:16:87:40 | new ans ... s(text) | stringConcatenatedWith |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:89:4:89:15 | "section h1" | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:89:4:89:15 | "section h1" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:89:4:89:15 | "section h1" | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:89:4:89:15 | "section h1" | assignedToPropName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:89:4:89:15 | "section h1" | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:89:4:89:15 | "section h1" | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:89:4:89:15 | "section h1" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:89:4:89:15 | "section h1" | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:89:4:89:15 | "section h1" | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:89:4:89:15 | "section h1" | fileImports | anser |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:89:4:89:15 | "section h1" | receiverName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:89:4:89:15 | "section h1" | stringConcatenatedWith |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:89:23:91:2 | functio ... / OK\\n\\t} | CalleeFlexibleAccessPath | $().each |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:89:23:91:2 | functio ... / OK\\n\\t} | InputAccessPathFromCallee |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:89:23:91:2 | functio ... / OK\\n\\t} | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:89:23:91:2 | functio ... / OK\\n\\t} | assignedToPropName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:89:23:91:2 | functio ... / OK\\n\\t} | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:89:23:91:2 | functio ... / OK\\n\\t} | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:89:23:91:2 | functio ... / OK\\n\\t} | contextSurroundingFunctionParameters | ()\n() |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:89:23:91:2 | functio ... / OK\\n\\t} | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:89:23:91:2 | functio ... / OK\\n\\t} | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:89:23:91:2 | functio ... / OK\\n\\t} | fileImports | anser |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:89:23:91:2 | functio ... / OK\\n\\t} | receiverName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:89:23:91:2 | functio ... / OK\\n\\t} | stringConcatenatedWith |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:5:90:12 | "nav ul" | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:5:90:12 | "nav ul" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:5:90:12 | "nav ul" | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:5:90:12 | "nav ul" | assignedToPropName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:5:90:12 | "nav ul" | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:5:90:12 | "nav ul" | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:5:90:12 | "nav ul" | contextSurroundingFunctionParameters | ()\n() |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:5:90:12 | "nav ul" | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:5:90:12 | "nav ul" | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:5:90:12 | "nav ul" | fileImports | anser |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:5:90:12 | "nav ul" | receiverName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:5:90:12 | "nav ul" | stringConcatenatedWith |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:22:90:33 | "<a href='#" | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:22:90:33 | "<a href='#" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:22:90:33 | "<a href='#" | InputArgumentIndex |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:22:90:33 | "<a href='#" | assignedToPropName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:22:90:33 | "<a href='#" | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:22:90:33 | "<a href='#" | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:22:90:33 | "<a href='#" | contextSurroundingFunctionParameters | ()\n() |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:22:90:33 | "<a href='#" | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:22:90:33 | "<a href='#" | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:22:90:33 | "<a href='#" | fileImports | anser |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:22:90:33 | "<a href='#" | receiverName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:22:90:33 | "<a href='#" | stringConcatenatedWith |  -endpoint- $().text().toLowerCase().replace().replace() + ''>Section</a>' |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:22:90:124 | "<a hre ... on</a>" | CalleeFlexibleAccessPath | $().append |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:22:90:124 | "<a hre ... on</a>" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:22:90:124 | "<a hre ... on</a>" | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:22:90:124 | "<a hre ... on</a>" | assignedToPropName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:22:90:124 | "<a hre ... on</a>" | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:22:90:124 | "<a hre ... on</a>" | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:22:90:124 | "<a hre ... on</a>" | contextSurroundingFunctionParameters | ()\n() |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:22:90:124 | "<a hre ... on</a>" | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:22:90:124 | "<a hre ... on</a>" | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:22:90:124 | "<a hre ... on</a>" | fileImports | anser |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:22:90:124 | "<a hre ... on</a>" | receiverName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:22:90:124 | "<a hre ... on</a>" | stringConcatenatedWith |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:37:90:106 | $(this) ... +/g,'') | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:37:90:106 | $(this) ... +/g,'') | InputAccessPathFromCallee |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:37:90:106 | $(this) ... +/g,'') | InputArgumentIndex |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:37:90:106 | $(this) ... +/g,'') | assignedToPropName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:37:90:106 | $(this) ... +/g,'') | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:37:90:106 | $(this) ... +/g,'') | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:37:90:106 | $(this) ... +/g,'') | contextSurroundingFunctionParameters | ()\n() |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:37:90:106 | $(this) ... +/g,'') | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:37:90:106 | $(this) ... +/g,'') | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:37:90:106 | $(this) ... +/g,'') | fileImports | anser |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:37:90:106 | $(this) ... +/g,'') | receiverName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:37:90:106 | $(this) ... +/g,'') | stringConcatenatedWith | '<a href='#' -endpoint- ''>Section</a>' |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:39:90:42 | this | CalleeFlexibleAccessPath | $ |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:39:90:42 | this | InputAccessPathFromCallee |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:39:90:42 | this | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:39:90:42 | this | assignedToPropName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:39:90:42 | this | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:39:90:42 | this | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:39:90:42 | this | contextSurroundingFunctionParameters | ()\n() |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:39:90:42 | this | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:39:90:42 | this | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:39:90:42 | this | fileImports | anser |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:39:90:42 | this | receiverName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:39:90:42 | this | stringConcatenatedWith |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:110:90:124 | "'>Section</a>" | CalleeFlexibleAccessPath |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:110:90:124 | "'>Section</a>" | InputAccessPathFromCallee |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:110:90:124 | "'>Section</a>" | InputArgumentIndex |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:110:90:124 | "'>Section</a>" | assignedToPropName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:110:90:124 | "'>Section</a>" | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:110:90:124 | "'>Section</a>" | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:110:90:124 | "'>Section</a>" | contextSurroundingFunctionParameters | ()\n() |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:110:90:124 | "'>Section</a>" | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:110:90:124 | "'>Section</a>" | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:110:90:124 | "'>Section</a>" | fileImports | anser |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:110:90:124 | "'>Section</a>" | receiverName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:110:90:124 | "'>Section</a>" | stringConcatenatedWith | '<a href='#' + $().text().toLowerCase().replace().replace() -endpoint-  |
-| index.js:1:20:1:23 | "fs" | CalleeFlexibleAccessPath | require |
-| index.js:1:20:1:23 | "fs" | InputAccessPathFromCallee |  |
-| index.js:1:20:1:23 | "fs" | InputArgumentIndex | 0 |
-| index.js:1:20:1:23 | "fs" | assignedToPropName |  |
-| index.js:1:20:1:23 | "fs" | calleeImports |  |
-| index.js:1:20:1:23 | "fs" | contextFunctionInterfaces | c()\nf(cb)\nmain()\nready()\nwithCallback(cb) |
-| index.js:1:20:1:23 | "fs" | contextSurroundingFunctionParameters |  |
-| index.js:1:20:1:23 | "fs" | enclosingFunctionBody |  |
-| index.js:1:20:1:23 | "fs" | enclosingFunctionName |  |
-| index.js:1:20:1:23 | "fs" | fileImports | child_process fs mongoose underscore |
-| index.js:1:20:1:23 | "fs" | receiverName |  |
-| index.js:1:20:1:23 | "fs" | stringConcatenatedWith |  |
-| index.js:16:19:16:30 | "underscore" | CalleeFlexibleAccessPath | require |
-| index.js:16:19:16:30 | "underscore" | InputAccessPathFromCallee |  |
-| index.js:16:19:16:30 | "underscore" | InputArgumentIndex | 0 |
-| index.js:16:19:16:30 | "underscore" | assignedToPropName |  |
-| index.js:16:19:16:30 | "underscore" | calleeImports |  |
-| index.js:16:19:16:30 | "underscore" | contextFunctionInterfaces | c()\nf(cb)\nmain()\nready()\nwithCallback(cb) |
-| index.js:16:19:16:30 | "underscore" | contextSurroundingFunctionParameters |  |
-| index.js:16:19:16:30 | "underscore" | enclosingFunctionBody |  |
-| index.js:16:19:16:30 | "underscore" | enclosingFunctionName |  |
-| index.js:16:19:16:30 | "underscore" | fileImports | child_process fs mongoose underscore |
-| index.js:16:19:16:30 | "underscore" | receiverName |  |
-| index.js:16:19:16:30 | "underscore" | stringConcatenatedWith |  |
-| index.js:17:16:17:30 | "child_process" | CalleeFlexibleAccessPath | require |
-| index.js:17:16:17:30 | "child_process" | InputAccessPathFromCallee |  |
-| index.js:17:16:17:30 | "child_process" | InputArgumentIndex | 0 |
-| index.js:17:16:17:30 | "child_process" | assignedToPropName |  |
-| index.js:17:16:17:30 | "child_process" | calleeImports |  |
-| index.js:17:16:17:30 | "child_process" | contextFunctionInterfaces | c()\nf(cb)\nmain()\nready()\nwithCallback(cb) |
-| index.js:17:16:17:30 | "child_process" | contextSurroundingFunctionParameters |  |
-| index.js:17:16:17:30 | "child_process" | enclosingFunctionBody |  |
-| index.js:17:16:17:30 | "child_process" | enclosingFunctionName |  |
-| index.js:17:16:17:30 | "child_process" | fileImports | child_process fs mongoose underscore |
-| index.js:17:16:17:30 | "child_process" | receiverName |  |
-| index.js:17:16:17:30 | "child_process" | stringConcatenatedWith |  |
-| index.js:21:9:21:9 | x | CalleeFlexibleAccessPath | _.map |
-| index.js:21:9:21:9 | x | InputAccessPathFromCallee |  |
-| index.js:21:9:21:9 | x | InputArgumentIndex | 0 |
-| index.js:21:9:21:9 | x | assignedToPropName |  |
-| index.js:21:9:21:9 | x | calleeImports | underscore |
-| index.js:21:9:21:9 | x | contextFunctionInterfaces | c()\nf(cb)\nmain()\nready()\nwithCallback(cb) |
-| index.js:21:9:21:9 | x | contextSurroundingFunctionParameters | () |
-| index.js:21:9:21:9 | x | enclosingFunctionBody | x p 42 push x _ map x cp exec x |
-| index.js:21:9:21:9 | x | enclosingFunctionName |  |
-| index.js:21:9:21:9 | x | fileImports | child_process fs mongoose underscore |
-| index.js:21:9:21:9 | x | receiverName | _ |
-| index.js:21:9:21:9 | x | stringConcatenatedWith |  |
-| index.js:25:26:25:35 | 'mongoose' | CalleeFlexibleAccessPath | require |
-| index.js:25:26:25:35 | 'mongoose' | InputAccessPathFromCallee |  |
-| index.js:25:26:25:35 | 'mongoose' | InputArgumentIndex | 0 |
-| index.js:25:26:25:35 | 'mongoose' | assignedToPropName |  |
-| index.js:25:26:25:35 | 'mongoose' | calleeImports |  |
-| index.js:25:26:25:35 | 'mongoose' | contextFunctionInterfaces | c()\nf(cb)\nmain()\nready()\nwithCallback(cb) |
-| index.js:25:26:25:35 | 'mongoose' | contextSurroundingFunctionParameters |  |
-| index.js:25:26:25:35 | 'mongoose' | enclosingFunctionBody |  |
-| index.js:25:26:25:35 | 'mongoose' | enclosingFunctionName |  |
-| index.js:25:26:25:35 | 'mongoose' | fileImports | child_process fs mongoose underscore |
-| index.js:25:26:25:35 | 'mongoose' | receiverName |  |
-| index.js:25:26:25:35 | 'mongoose' | stringConcatenatedWith |  |
-| index.js:26:25:26:30 | 'User' | CalleeFlexibleAccessPath | mongoose.model |
-| index.js:26:25:26:30 | 'User' | InputAccessPathFromCallee |  |
-| index.js:26:25:26:30 | 'User' | InputArgumentIndex | 0 |
-| index.js:26:25:26:30 | 'User' | assignedToPropName |  |
-| index.js:26:25:26:30 | 'User' | calleeImports | mongoose |
-| index.js:26:25:26:30 | 'User' | contextFunctionInterfaces | c()\nf(cb)\nmain()\nready()\nwithCallback(cb) |
-| index.js:26:25:26:30 | 'User' | contextSurroundingFunctionParameters |  |
-| index.js:26:25:26:30 | 'User' | enclosingFunctionBody |  |
-| index.js:26:25:26:30 | 'User' | enclosingFunctionName |  |
-| index.js:26:25:26:30 | 'User' | fileImports | child_process fs mongoose underscore |
-| index.js:26:25:26:30 | 'User' | receiverName | mongoose |
-| index.js:26:25:26:30 | 'User' | stringConcatenatedWith |  |
-| index.js:26:33:26:36 | null | CalleeFlexibleAccessPath | mongoose.model |
-| index.js:26:33:26:36 | null | InputAccessPathFromCallee |  |
-| index.js:26:33:26:36 | null | InputArgumentIndex | 1 |
-| index.js:26:33:26:36 | null | assignedToPropName |  |
-| index.js:26:33:26:36 | null | calleeImports | mongoose |
-| index.js:26:33:26:36 | null | contextFunctionInterfaces | c()\nf(cb)\nmain()\nready()\nwithCallback(cb) |
-| index.js:26:33:26:36 | null | contextSurroundingFunctionParameters |  |
-| index.js:26:33:26:36 | null | enclosingFunctionBody |  |
-| index.js:26:33:26:36 | null | enclosingFunctionName |  |
-| index.js:26:33:26:36 | null | fileImports | child_process fs mongoose underscore |
-| index.js:26:33:26:36 | null | receiverName | mongoose |
-| index.js:26:33:26:36 | null | stringConcatenatedWith |  |
-| index.js:29:13:29:31 | { 'isAdmin': true } | CalleeFlexibleAccessPath | User.find |
-| index.js:29:13:29:31 | { 'isAdmin': true } | InputAccessPathFromCallee |  |
-| index.js:29:13:29:31 | { 'isAdmin': true } | InputArgumentIndex | 0 |
-| index.js:29:13:29:31 | { 'isAdmin': true } | assignedToPropName |  |
-| index.js:29:13:29:31 | { 'isAdmin': true } | calleeImports | mongoose |
-| index.js:29:13:29:31 | { 'isAdmin': true } | contextFunctionInterfaces | c()\nf(cb)\nmain()\nready()\nwithCallback(cb) |
-| index.js:29:13:29:31 | { 'isAdmin': true } | contextSurroundingFunctionParameters | () |
-| index.js:29:13:29:31 | { 'isAdmin': true } | enclosingFunctionBody | User find isAdmin true exec err adminUsers err adminUsers err i 0 i adminUsers length i console log adminUsers i |
-| index.js:29:13:29:31 | { 'isAdmin': true } | enclosingFunctionName | main |
-| index.js:29:13:29:31 | { 'isAdmin': true } | fileImports | child_process fs mongoose underscore |
-| index.js:29:13:29:31 | { 'isAdmin': true } | receiverName | User |
-| index.js:29:13:29:31 | { 'isAdmin': true } | stringConcatenatedWith |  |
-| index.js:29:26:29:29 | true | CalleeFlexibleAccessPath | User.find |
-| index.js:29:26:29:29 | true | InputAccessPathFromCallee | 0.isAdmin |
-| index.js:29:26:29:29 | true | InputArgumentIndex | 0 |
-| index.js:29:26:29:29 | true | assignedToPropName | isAdmin |
-| index.js:29:26:29:29 | true | calleeImports | mongoose |
-| index.js:29:26:29:29 | true | contextFunctionInterfaces | c()\nf(cb)\nmain()\nready()\nwithCallback(cb) |
-| index.js:29:26:29:29 | true | contextSurroundingFunctionParameters | () |
-| index.js:29:26:29:29 | true | enclosingFunctionBody | User find isAdmin true exec err adminUsers err adminUsers err i 0 i adminUsers length i console log adminUsers i |
-| index.js:29:26:29:29 | true | enclosingFunctionName | main |
-| index.js:29:26:29:29 | true | fileImports | child_process fs mongoose underscore |
-| index.js:29:26:29:29 | true | receiverName |  |
-| index.js:29:26:29:29 | true | stringConcatenatedWith |  |
-| index.js:30:11:38:5 | functio ... }\\n    } | CalleeFlexibleAccessPath | User.find().exec |
-| index.js:30:11:38:5 | functio ... }\\n    } | InputAccessPathFromCallee |  |
-| index.js:30:11:38:5 | functio ... }\\n    } | InputArgumentIndex | 0 |
-| index.js:30:11:38:5 | functio ... }\\n    } | assignedToPropName |  |
-| index.js:30:11:38:5 | functio ... }\\n    } | calleeImports | mongoose |
-| index.js:30:11:38:5 | functio ... }\\n    } | contextFunctionInterfaces | c()\nf(cb)\nmain()\nready()\nwithCallback(cb) |
-| index.js:30:11:38:5 | functio ... }\\n    } | contextSurroundingFunctionParameters | ()\n(err, adminUsers) |
-| index.js:30:11:38:5 | functio ... }\\n    } | enclosingFunctionBody | User find isAdmin true exec err adminUsers err adminUsers err i 0 i adminUsers length i console log adminUsers i |
-| index.js:30:11:38:5 | functio ... }\\n    } | enclosingFunctionName | main |
-| index.js:30:11:38:5 | functio ... }\\n    } | fileImports | child_process fs mongoose underscore |
-| index.js:30:11:38:5 | functio ... }\\n    } | receiverName |  |
-| index.js:30:11:38:5 | functio ... }\\n    } | stringConcatenatedWith |  |
-| index.js:36:21:36:33 | adminUsers[i] | CalleeFlexibleAccessPath | console.log |
-| index.js:36:21:36:33 | adminUsers[i] | InputAccessPathFromCallee |  |
-| index.js:36:21:36:33 | adminUsers[i] | InputArgumentIndex | 0 |
-| index.js:36:21:36:33 | adminUsers[i] | assignedToPropName |  |
-| index.js:36:21:36:33 | adminUsers[i] | calleeImports |  |
-| index.js:36:21:36:33 | adminUsers[i] | contextFunctionInterfaces | c()\nf(cb)\nmain()\nready()\nwithCallback(cb) |
-| index.js:36:21:36:33 | adminUsers[i] | contextSurroundingFunctionParameters | ()\n(err, adminUsers) |
-| index.js:36:21:36:33 | adminUsers[i] | enclosingFunctionBody | User find isAdmin true exec err adminUsers err adminUsers err i 0 i adminUsers length i console log adminUsers i |
-| index.js:36:21:36:33 | adminUsers[i] | enclosingFunctionName | main |
-| index.js:36:21:36:33 | adminUsers[i] | fileImports | child_process fs mongoose underscore |
-| index.js:36:21:36:33 | adminUsers[i] | receiverName | console |
-| index.js:36:21:36:33 | adminUsers[i] | stringConcatenatedWith |  |
-| index.js:44:22:44:36 | o.success_scope | CalleeFlexibleAccessPath | o.success.call |
-| index.js:44:22:44:36 | o.success_scope | InputAccessPathFromCallee |  |
-| index.js:44:22:44:36 | o.success_scope | InputArgumentIndex | 0 |
-| index.js:44:22:44:36 | o.success_scope | assignedToPropName |  |
-| index.js:44:22:44:36 | o.success_scope | calleeImports |  |
-| index.js:44:22:44:36 | o.success_scope | contextFunctionInterfaces | c()\nf(cb)\nmain()\nready()\nwithCallback(cb) |
-| index.js:44:22:44:36 | o.success_scope | contextSurroundingFunctionParameters | () |
-| index.js:44:22:44:36 | o.success_scope | enclosingFunctionBody | o async x readyState 4 c 10000 o success c 10000 x status 200 o success call o success_scope  x responseText x o o error o error call o error_scope c 10000 TIMED_OUT GENERAL x o x null w setTimeout ready 10 |
-| index.js:44:22:44:36 | o.success_scope | enclosingFunctionName | ready |
-| index.js:44:22:44:36 | o.success_scope | fileImports | child_process fs mongoose underscore |
-| index.js:44:22:44:36 | o.success_scope | receiverName |  |
-| index.js:44:22:44:36 | o.success_scope | stringConcatenatedWith |  |
-| index.js:44:39:44:57 | '' + x.responseText | CalleeFlexibleAccessPath | o.success |
-| index.js:44:39:44:57 | '' + x.responseText | CalleeFlexibleAccessPath | o.success.call |
-| index.js:44:39:44:57 | '' + x.responseText | InputAccessPathFromCallee |  |
-| index.js:44:39:44:57 | '' + x.responseText | InputArgumentIndex | 0 |
-| index.js:44:39:44:57 | '' + x.responseText | InputArgumentIndex | 1 |
-| index.js:44:39:44:57 | '' + x.responseText | assignedToPropName |  |
-| index.js:44:39:44:57 | '' + x.responseText | calleeImports |  |
-| index.js:44:39:44:57 | '' + x.responseText | contextFunctionInterfaces | c()\nf(cb)\nmain()\nready()\nwithCallback(cb) |
-| index.js:44:39:44:57 | '' + x.responseText | contextSurroundingFunctionParameters | () |
-| index.js:44:39:44:57 | '' + x.responseText | enclosingFunctionBody | o async x readyState 4 c 10000 o success c 10000 x status 200 o success call o success_scope  x responseText x o o error o error call o error_scope c 10000 TIMED_OUT GENERAL x o x null w setTimeout ready 10 |
-| index.js:44:39:44:57 | '' + x.responseText | enclosingFunctionName | ready |
-| index.js:44:39:44:57 | '' + x.responseText | fileImports | child_process fs mongoose underscore |
-| index.js:44:39:44:57 | '' + x.responseText | receiverName |  |
-| index.js:44:39:44:57 | '' + x.responseText | stringConcatenatedWith |  |
-| index.js:44:60:44:60 | x | CalleeFlexibleAccessPath | o.success |
-| index.js:44:60:44:60 | x | CalleeFlexibleAccessPath | o.success.call |
-| index.js:44:60:44:60 | x | InputAccessPathFromCallee |  |
-| index.js:44:60:44:60 | x | InputArgumentIndex | 1 |
-| index.js:44:60:44:60 | x | InputArgumentIndex | 2 |
-| index.js:44:60:44:60 | x | assignedToPropName |  |
-| index.js:44:60:44:60 | x | calleeImports |  |
-| index.js:44:60:44:60 | x | contextFunctionInterfaces | c()\nf(cb)\nmain()\nready()\nwithCallback(cb) |
-| index.js:44:60:44:60 | x | contextSurroundingFunctionParameters | () |
-| index.js:44:60:44:60 | x | enclosingFunctionBody | o async x readyState 4 c 10000 o success c 10000 x status 200 o success call o success_scope  x responseText x o o error o error call o error_scope c 10000 TIMED_OUT GENERAL x o x null w setTimeout ready 10 |
-| index.js:44:60:44:60 | x | enclosingFunctionName | ready |
-| index.js:44:60:44:60 | x | fileImports | child_process fs mongoose underscore |
-| index.js:44:60:44:60 | x | receiverName |  |
-| index.js:44:60:44:60 | x | stringConcatenatedWith |  |
-| index.js:44:63:44:63 | o | CalleeFlexibleAccessPath | o.success |
-| index.js:44:63:44:63 | o | CalleeFlexibleAccessPath | o.success.call |
-| index.js:44:63:44:63 | o | InputAccessPathFromCallee |  |
-| index.js:44:63:44:63 | o | InputArgumentIndex | 2 |
-| index.js:44:63:44:63 | o | InputArgumentIndex | 3 |
-| index.js:44:63:44:63 | o | assignedToPropName |  |
-| index.js:44:63:44:63 | o | calleeImports |  |
-| index.js:44:63:44:63 | o | contextFunctionInterfaces | c()\nf(cb)\nmain()\nready()\nwithCallback(cb) |
-| index.js:44:63:44:63 | o | contextSurroundingFunctionParameters | () |
-| index.js:44:63:44:63 | o | enclosingFunctionBody | o async x readyState 4 c 10000 o success c 10000 x status 200 o success call o success_scope  x responseText x o o error o error call o error_scope c 10000 TIMED_OUT GENERAL x o x null w setTimeout ready 10 |
-| index.js:44:63:44:63 | o | enclosingFunctionName | ready |
-| index.js:44:63:44:63 | o | fileImports | child_process fs mongoose underscore |
-| index.js:44:63:44:63 | o | receiverName |  |
-| index.js:44:63:44:63 | o | stringConcatenatedWith |  |
-| index.js:46:35:46:69 | c > 100 ... ENERAL' | CalleeFlexibleAccessPath | o.error |
-| index.js:46:35:46:69 | c > 100 ... ENERAL' | CalleeFlexibleAccessPath | o.error.call |
-| index.js:46:35:46:69 | c > 100 ... ENERAL' | InputAccessPathFromCallee |  |
-| index.js:46:35:46:69 | c > 100 ... ENERAL' | InputArgumentIndex | 0 |
-| index.js:46:35:46:69 | c > 100 ... ENERAL' | InputArgumentIndex | 1 |
-| index.js:46:35:46:69 | c > 100 ... ENERAL' | assignedToPropName |  |
-| index.js:46:35:46:69 | c > 100 ... ENERAL' | calleeImports |  |
-| index.js:46:35:46:69 | c > 100 ... ENERAL' | contextFunctionInterfaces | c()\nf(cb)\nmain()\nready()\nwithCallback(cb) |
-| index.js:46:35:46:69 | c > 100 ... ENERAL' | contextSurroundingFunctionParameters | () |
-| index.js:46:35:46:69 | c > 100 ... ENERAL' | enclosingFunctionBody | o async x readyState 4 c 10000 o success c 10000 x status 200 o success call o success_scope  x responseText x o o error o error call o error_scope c 10000 TIMED_OUT GENERAL x o x null w setTimeout ready 10 |
-| index.js:46:35:46:69 | c > 100 ... ENERAL' | enclosingFunctionName | ready |
-| index.js:46:35:46:69 | c > 100 ... ENERAL' | fileImports | child_process fs mongoose underscore |
-| index.js:46:35:46:69 | c > 100 ... ENERAL' | receiverName |  |
-| index.js:46:35:46:69 | c > 100 ... ENERAL' | stringConcatenatedWith |  |
-| index.js:46:72:46:72 | x | CalleeFlexibleAccessPath | o.error |
-| index.js:46:72:46:72 | x | CalleeFlexibleAccessPath | o.error.call |
-| index.js:46:72:46:72 | x | InputAccessPathFromCallee |  |
-| index.js:46:72:46:72 | x | InputArgumentIndex | 1 |
-| index.js:46:72:46:72 | x | InputArgumentIndex | 2 |
-| index.js:46:72:46:72 | x | assignedToPropName |  |
-| index.js:46:72:46:72 | x | calleeImports |  |
-| index.js:46:72:46:72 | x | contextFunctionInterfaces | c()\nf(cb)\nmain()\nready()\nwithCallback(cb) |
-| index.js:46:72:46:72 | x | contextSurroundingFunctionParameters | () |
-| index.js:46:72:46:72 | x | enclosingFunctionBody | o async x readyState 4 c 10000 o success c 10000 x status 200 o success call o success_scope  x responseText x o o error o error call o error_scope c 10000 TIMED_OUT GENERAL x o x null w setTimeout ready 10 |
-| index.js:46:72:46:72 | x | enclosingFunctionName | ready |
-| index.js:46:72:46:72 | x | fileImports | child_process fs mongoose underscore |
-| index.js:46:72:46:72 | x | receiverName |  |
-| index.js:46:72:46:72 | x | stringConcatenatedWith |  |
-| index.js:46:75:46:75 | o | CalleeFlexibleAccessPath | o.error |
-| index.js:46:75:46:75 | o | CalleeFlexibleAccessPath | o.error.call |
-| index.js:46:75:46:75 | o | InputAccessPathFromCallee |  |
-| index.js:46:75:46:75 | o | InputArgumentIndex | 2 |
-| index.js:46:75:46:75 | o | InputArgumentIndex | 3 |
-| index.js:46:75:46:75 | o | assignedToPropName |  |
-| index.js:46:75:46:75 | o | calleeImports |  |
-| index.js:46:75:46:75 | o | contextFunctionInterfaces | c()\nf(cb)\nmain()\nready()\nwithCallback(cb) |
-| index.js:46:75:46:75 | o | contextSurroundingFunctionParameters | () |
-| index.js:46:75:46:75 | o | enclosingFunctionBody | o async x readyState 4 c 10000 o success c 10000 x status 200 o success call o success_scope  x responseText x o o error o error call o error_scope c 10000 TIMED_OUT GENERAL x o x null w setTimeout ready 10 |
-| index.js:46:75:46:75 | o | enclosingFunctionName | ready |
-| index.js:46:75:46:75 | o | fileImports | child_process fs mongoose underscore |
-| index.js:46:75:46:75 | o | receiverName |  |
-| index.js:46:75:46:75 | o | stringConcatenatedWith |  |
-| index.js:50:15:50:19 | ready | CalleeFlexibleAccessPath | w.setTimeout |
-| index.js:50:15:50:19 | ready | InputAccessPathFromCallee |  |
-| index.js:50:15:50:19 | ready | InputArgumentIndex | 0 |
-| index.js:50:15:50:19 | ready | assignedToPropName |  |
-| index.js:50:15:50:19 | ready | calleeImports |  |
-| index.js:50:15:50:19 | ready | contextFunctionInterfaces | c()\nf(cb)\nmain()\nready()\nwithCallback(cb) |
-| index.js:50:15:50:19 | ready | contextSurroundingFunctionParameters | () |
-| index.js:50:15:50:19 | ready | enclosingFunctionBody | o async x readyState 4 c 10000 o success c 10000 x status 200 o success call o success_scope  x responseText x o o error o error call o error_scope c 10000 TIMED_OUT GENERAL x o x null w setTimeout ready 10 |
-| index.js:50:15:50:19 | ready | enclosingFunctionName | ready |
-| index.js:50:15:50:19 | ready | fileImports | child_process fs mongoose underscore |
-| index.js:50:15:50:19 | ready | receiverName | w |
-| index.js:50:15:50:19 | ready | stringConcatenatedWith |  |
-| index.js:50:22:50:23 | 10 | CalleeFlexibleAccessPath | w.setTimeout |
-| index.js:50:22:50:23 | 10 | InputAccessPathFromCallee |  |
-| index.js:50:22:50:23 | 10 | InputArgumentIndex | 1 |
-| index.js:50:22:50:23 | 10 | assignedToPropName |  |
-| index.js:50:22:50:23 | 10 | calleeImports |  |
-| index.js:50:22:50:23 | 10 | contextFunctionInterfaces | c()\nf(cb)\nmain()\nready()\nwithCallback(cb) |
-| index.js:50:22:50:23 | 10 | contextSurroundingFunctionParameters | () |
-| index.js:50:22:50:23 | 10 | enclosingFunctionBody | o async x readyState 4 c 10000 o success c 10000 x status 200 o success call o success_scope  x responseText x o o error o error call o error_scope c 10000 TIMED_OUT GENERAL x o x null w setTimeout ready 10 |
-| index.js:50:22:50:23 | 10 | enclosingFunctionName | ready |
-| index.js:50:22:50:23 | 10 | fileImports | child_process fs mongoose underscore |
-| index.js:50:22:50:23 | 10 | receiverName | w |
-| index.js:50:22:50:23 | 10 | stringConcatenatedWith |  |

From cf4e37a0ab9bacc07ca56391e550c0e4b21f864e Mon Sep 17 00:00:00 2001
From: tiferet <tiferet@github.com>
Date: Tue, 15 Nov 2022 17:20:20 -0800
Subject: [PATCH 0340/1420] Implement the standard endpoint filters as
 EndpointCharacteristics

---
 .../EndpointCharacteristics.qll               | 115 +++++++++++++++++-
 .../ExtractEndpointDataTraining.qll           |   8 ++
 2 files changed, 122 insertions(+), 1 deletion(-)

diff --git a/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/EndpointCharacteristics.qll b/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/EndpointCharacteristics.qll
index be72fb919fa..19a982e2083 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/EndpointCharacteristics.qll
+++ b/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/EndpointCharacteristics.qll
@@ -7,6 +7,9 @@ private import semmle.javascript.security.dataflow.SqlInjectionCustomizations
 private import semmle.javascript.security.dataflow.DomBasedXssCustomizations
 private import semmle.javascript.security.dataflow.NosqlInjectionCustomizations
 private import semmle.javascript.security.dataflow.TaintedPathCustomizations
+private import CoreKnowledge as CoreKnowledge
+private import semmle.javascript.heuristics.SyntacticHeuristics
+private import semmle.javascript.filters.ClassifyFiles as ClassifyFiles
 
 /**
  * A set of characteristics that a particular endpoint might have. This set of characteristics is used to make decisions
@@ -135,7 +138,8 @@ private class NosqlInjectionSinkCharacteristic extends EndpointCharacteristic {
 }
 
 /*
- * Characteristics that are indicative of not being a sink of any type.
+ * Characteristics that are indicative of not being a sink of any type, and have historically been used to select
+ * negative samples for training.
  */
 
 /**
@@ -442,3 +446,112 @@ private class BuiltinCallNameCharacteristic extends ArgumentToBuiltinFunctionCha
     )
   }
 }
+
+/*
+ * Characteristics that have historically acted as endpoint filters to exclude endpoints from scoring at inference time.
+ */
+
+/** A characteristic that has historically acted as an endpoint filter for inference-time scoring. */
+abstract class EndpointFilterCharacteristic extends EndpointCharacteristic {
+  bindingset[this]
+  EndpointFilterCharacteristic() { any() }
+}
+
+/**
+ * An EndpointFilterCharacteristic that indicates that an endpoint is unlikely to be a sink of any type.
+ * Replaces https://github.com/github/codeql/blob/387e57546bf7352f7c1cfe781daa1a3799b7063e/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/StandardEndpointFilters.qll#LL15C24-L15C24
+ */
+abstract class StandardEndpointFilterCharacteristic extends EndpointFilterCharacteristic {
+  bindingset[this]
+  StandardEndpointFilterCharacteristic() { any() }
+
+  override predicate getImplications(
+    EndpointType endpointClass, boolean isPositiveIndicator, float confidence
+  ) {
+    endpointClass instanceof NegativeType and
+    isPositiveIndicator = true and
+    confidence = mediumConfidence()
+  }
+}
+
+private class IsArgumentToModeledFunctionCharacteristic extends StandardEndpointFilterCharacteristic {
+  IsArgumentToModeledFunctionCharacteristic() { this = "argument to modeled function" }
+
+  override predicate getEndpoints(DataFlow::Node n) {
+    exists(DataFlow::InvokeNode invk, DataFlow::Node known |
+      invk.getAnArgument() = n and
+      invk.getAnArgument() = known and
+      (
+        CoreKnowledge::isKnownLibrarySink(known)
+        or
+        CoreKnowledge::isKnownStepSrc(known)
+        or
+        CoreKnowledge::isOtherModeledArgument(known, _)
+      )
+    )
+  }
+}
+
+private class IsArgumentToSinklessLibraryCharacteristic extends StandardEndpointFilterCharacteristic {
+  IsArgumentToSinklessLibraryCharacteristic() { this = "argument to sinkless library" }
+
+  override predicate getEndpoints(DataFlow::Node n) {
+    exists(DataFlow::InvokeNode invk, DataFlow::SourceNode commonSafeLibrary, string libraryName |
+      libraryName = ["slugify", "striptags", "marked"]
+    |
+      commonSafeLibrary = DataFlow::moduleImport(libraryName) and
+      invk = [commonSafeLibrary, commonSafeLibrary.getAPropertyRead()].getAnInvocation() and
+      n = invk.getAnArgument()
+    )
+  }
+}
+
+private class IsSanitizerCharacteristic extends StandardEndpointFilterCharacteristic {
+  IsSanitizerCharacteristic() { this = "sanitizer" }
+
+  override predicate getEndpoints(DataFlow::Node n) {
+    exists(DataFlow::CallNode call | n = call.getAnArgument() |
+      call.getCalleeName().regexpMatch("(?i).*(escape|valid(ate)?|sanitize|purify).*")
+    )
+  }
+}
+
+private class IsPredicateCharacteristic extends StandardEndpointFilterCharacteristic {
+  IsPredicateCharacteristic() { this = "predicate" }
+
+  override predicate getEndpoints(DataFlow::Node n) {
+    exists(DataFlow::CallNode call | n = call.getAnArgument() |
+      call.getCalleeName().regexpMatch("(equals|(|is|has|can)(_|[A-Z])).*")
+    )
+  }
+}
+
+private class IsHashCharacteristic extends StandardEndpointFilterCharacteristic {
+  IsHashCharacteristic() { this = "hash" }
+
+  override predicate getEndpoints(DataFlow::Node n) {
+    exists(DataFlow::CallNode call | n = call.getAnArgument() |
+      call.getCalleeName().regexpMatch("(?i)^(sha\\d*|md5|hash)$")
+    )
+  }
+}
+
+private class IsNumericCharacteristic extends StandardEndpointFilterCharacteristic {
+  IsNumericCharacteristic() { this = "numeric" }
+
+  override predicate getEndpoints(DataFlow::Node n) { isReadFrom(n, ".*index.*") }
+}
+
+private class InIrrelevantFileCharacteristic extends StandardEndpointFilterCharacteristic {
+  private string category;
+
+  InIrrelevantFileCharacteristic() {
+    this = "in " + category + " file" and category = ["externs", "generated", "library", "test"]
+  }
+
+  override predicate getEndpoints(DataFlow::Node n) {
+    // Ignore candidate sinks within externs, generated, library, and test code
+    ClassifyFiles::classify(n.getFile(), category) and
+    this = "in " + category + " file"
+  }
+}
diff --git a/javascript/ql/experimental/adaptivethreatmodeling/modelbuilding/extraction/ExtractEndpointDataTraining.qll b/javascript/ql/experimental/adaptivethreatmodeling/modelbuilding/extraction/ExtractEndpointDataTraining.qll
index 153afdb1b45..14b23ca37c7 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/modelbuilding/extraction/ExtractEndpointDataTraining.qll
+++ b/javascript/ql/experimental/adaptivethreatmodeling/modelbuilding/extraction/ExtractEndpointDataTraining.qll
@@ -73,6 +73,10 @@ query predicate trainingEndpoints(
       c instanceof LikelyNotASinkCharacteristic
     )
   ) and
+  // Don't surface endpoint filters as characteristics, because they were previously not surfaced.
+  // TODO: Experiment with surfacing these to the modeling code by removing the following line (and then make
+  // EndpointFilterCharacteristic private).
+  not characteristic instanceof EndpointFilterCharacteristic and
   (
     // If the list of characteristics includes positive indicators with high confidence for this class, select this as a
     // training sample belonging to the class.
@@ -188,6 +192,10 @@ query predicate reformattedTrainingEndpoints(
         confidence3 >= characteristic3.getHighConfidenceThreshold() and
         not posClass instanceof NegativeType
       ) and
+      // Don't surface endpoint filters as notASinkReasons, because they were previously not surfaced.
+      // TODO: Experiment with surfacing these to the modeling code by removing the following line (and then make
+      // EndpointFilterCharacteristic private).
+      not exists(EndpointFilterCharacteristic filterCharacteristic | value = filterCharacteristic) and
       valueType = "string"
     )
   )

From fedb98ddb53a3d0e531fc10ee29d8ae9edbad4d1 Mon Sep 17 00:00:00 2001
From: tiferet <tiferet@github.com>
Date: Tue, 15 Nov 2022 17:22:00 -0800
Subject: [PATCH 0341/1420] Implement the standard `getAReasonSinkExcluded`
 using `StandardEndpointFilterCharacteristic`s

---
 .../StandardEndpointFilters.qll               | 20 ++++---------------
 1 file changed, 4 insertions(+), 16 deletions(-)

diff --git a/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/StandardEndpointFilters.qll b/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/StandardEndpointFilters.qll
index 38d339a8527..a7ba296d152 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/StandardEndpointFilters.qll
+++ b/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/StandardEndpointFilters.qll
@@ -10,25 +10,13 @@ private import javascript
 private import semmle.javascript.filters.ClassifyFiles as ClassifyFiles
 private import semmle.javascript.heuristics.SyntacticHeuristics
 private import CoreKnowledge as CoreKnowledge
+import EndpointCharacteristics as EndpointCharacteristics
 
 /** Provides a set of reasons why a given data flow node should be excluded as a sink candidate. */
 string getAReasonSinkExcluded(DataFlow::Node n) {
-  isArgumentToModeledFunction(n) and result = "argument to modeled function"
-  or
-  isArgumentToSinklessLibrary(n) and result = "argument to sinkless library"
-  or
-  isSanitizer(n) and result = "sanitizer"
-  or
-  isPredicate(n) and result = "predicate"
-  or
-  isHash(n) and result = "hash"
-  or
-  isNumeric(n) and result = "numeric"
-  or
-  // Ignore candidate sinks within externs, generated, library, and test code
-  exists(string category | category = ["externs", "generated", "library", "test"] |
-    ClassifyFiles::classify(n.getFile(), category) and
-    result = "in " + category + " file"
+  exists(EndpointCharacteristics::StandardEndpointFilterCharacteristic characteristic |
+    characteristic.getEndpoints(n) and
+    result = characteristic
   )
 }
 

From 2ecdfd1ff6d2458e63aea6c40a77c551c3741129 Mon Sep 17 00:00:00 2001
From: tiferet <tiferet@github.com>
Date: Tue, 15 Nov 2022 17:29:03 -0800
Subject: [PATCH 0342/1420] Delete some code that's no longer in use

---
 .../StandardEndpointFilters.qll               | 36 -------------------
 1 file changed, 36 deletions(-)

diff --git a/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/StandardEndpointFilters.qll b/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/StandardEndpointFilters.qll
index a7ba296d152..3ed0a8fde4c 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/StandardEndpointFilters.qll
+++ b/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/StandardEndpointFilters.qll
@@ -38,42 +38,6 @@ predicate isSomeModeledArgument(DataFlow::Node n) {
   CoreKnowledge::isOtherModeledArgument(n, _)
 }
 
-/**
- * Holds if `n` appears to be a numeric value.
- */
-predicate isNumeric(DataFlow::Node n) { isReadFrom(n, ".*index.*") }
-
-/**
- * Holds if `n` is an argument to a library without sinks.
- */
-predicate isArgumentToSinklessLibrary(DataFlow::Node n) {
-  exists(DataFlow::InvokeNode invk, DataFlow::SourceNode commonSafeLibrary, string libraryName |
-    libraryName = ["slugify", "striptags", "marked"]
-  |
-    commonSafeLibrary = DataFlow::moduleImport(libraryName) and
-    invk = [commonSafeLibrary, commonSafeLibrary.getAPropertyRead()].getAnInvocation() and
-    n = invk.getAnArgument()
-  )
-}
-
-predicate isSanitizer(DataFlow::Node n) {
-  exists(DataFlow::CallNode call | n = call.getAnArgument() |
-    call.getCalleeName().regexpMatch("(?i).*(escape|valid(ate)?|sanitize|purify).*")
-  )
-}
-
-predicate isPredicate(DataFlow::Node n) {
-  exists(DataFlow::CallNode call | n = call.getAnArgument() |
-    call.getCalleeName().regexpMatch("(equals|(|is|has|can)(_|[A-Z])).*")
-  )
-}
-
-predicate isHash(DataFlow::Node n) {
-  exists(DataFlow::CallNode call | n = call.getAnArgument() |
-    call.getCalleeName().regexpMatch("(?i)^(sha\\d*|md5|hash)$")
-  )
-}
-
 /**
  * Holds if the data flow node is a (possibly indirect) argument of a likely external library call.
  *

From 13cb0ab5540f3de30693456089fa01eacef20fc9 Mon Sep 17 00:00:00 2001
From: tiferet <tiferet@github.com>
Date: Tue, 15 Nov 2022 17:32:30 -0800
Subject: [PATCH 0343/1420] Fix CodeQL warning

---
 .../modelbuilding/extraction/ExtractEndpointDataTraining.qll    | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/javascript/ql/experimental/adaptivethreatmodeling/modelbuilding/extraction/ExtractEndpointDataTraining.qll b/javascript/ql/experimental/adaptivethreatmodeling/modelbuilding/extraction/ExtractEndpointDataTraining.qll
index 14b23ca37c7..a379be6be70 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/modelbuilding/extraction/ExtractEndpointDataTraining.qll
+++ b/javascript/ql/experimental/adaptivethreatmodeling/modelbuilding/extraction/ExtractEndpointDataTraining.qll
@@ -195,7 +195,7 @@ query predicate reformattedTrainingEndpoints(
       // Don't surface endpoint filters as notASinkReasons, because they were previously not surfaced.
       // TODO: Experiment with surfacing these to the modeling code by removing the following line (and then make
       // EndpointFilterCharacteristic private).
-      not exists(EndpointFilterCharacteristic filterCharacteristic | value = filterCharacteristic) and
+      not value instanceof EndpointFilterCharacteristic and
       valueType = "string"
     )
   )

From de833d620ea309c428f18793de765db7ee3d7f56 Mon Sep 17 00:00:00 2001
From: Tamas Vajk <tamasvajk@github.com>
Date: Wed, 16 Nov 2022 09:35:18 +0100
Subject: [PATCH 0344/1420] Kotlin: Add FP test case for unnecessarily complex
 bool expression

---
 .../SimplifyBoolExpr/SimplifyBoolExpr.expected      |  1 +
 .../SimplifyBoolExpr/SimplifyBoolExpr.kt            | 13 +++++++++++++
 .../SimplifyBoolExpr/SimplifyBoolExpr.qlref         |  1 +
 3 files changed, 15 insertions(+)
 create mode 100644 java/ql/test/kotlin/query-tests/SimplifyBoolExpr/SimplifyBoolExpr.expected
 create mode 100644 java/ql/test/kotlin/query-tests/SimplifyBoolExpr/SimplifyBoolExpr.kt
 create mode 100644 java/ql/test/kotlin/query-tests/SimplifyBoolExpr/SimplifyBoolExpr.qlref

diff --git a/java/ql/test/kotlin/query-tests/SimplifyBoolExpr/SimplifyBoolExpr.expected b/java/ql/test/kotlin/query-tests/SimplifyBoolExpr/SimplifyBoolExpr.expected
new file mode 100644
index 00000000000..456ed9af9b7
--- /dev/null
+++ b/java/ql/test/kotlin/query-tests/SimplifyBoolExpr/SimplifyBoolExpr.expected
@@ -0,0 +1 @@
+| SimplifyBoolExpr.kt:8:8:8:16 | ... (value equals) ... | Expressions of the form "A == true" can be simplified to "A". |
diff --git a/java/ql/test/kotlin/query-tests/SimplifyBoolExpr/SimplifyBoolExpr.kt b/java/ql/test/kotlin/query-tests/SimplifyBoolExpr/SimplifyBoolExpr.kt
new file mode 100644
index 00000000000..9facfd01785
--- /dev/null
+++ b/java/ql/test/kotlin/query-tests/SimplifyBoolExpr/SimplifyBoolExpr.kt
@@ -0,0 +1,13 @@
+fun main() {
+    f(null)
+    f(true)
+    f(false)
+}
+
+fun f(x: Boolean?) {
+    if(x == true) {
+        println("Yes")
+    } else {
+        println("No")
+    }
+}
diff --git a/java/ql/test/kotlin/query-tests/SimplifyBoolExpr/SimplifyBoolExpr.qlref b/java/ql/test/kotlin/query-tests/SimplifyBoolExpr/SimplifyBoolExpr.qlref
new file mode 100644
index 00000000000..d071e989ebb
--- /dev/null
+++ b/java/ql/test/kotlin/query-tests/SimplifyBoolExpr/SimplifyBoolExpr.qlref
@@ -0,0 +1 @@
+Violations of Best Practice/Boolean Logic/SimplifyBoolExpr.ql

From ac85d2eb3ed0cf4a062517ba3bc09899ac692e4f Mon Sep 17 00:00:00 2001
From: Tamas Vajk <tamasvajk@github.com>
Date: Wed, 16 Nov 2022 09:38:39 +0100
Subject: [PATCH 0345/1420] Exclude .kt files from
 `java/complex-boolean-expression`

---
 .../Boolean Logic/SimplifyBoolExpr.ql         | 21 +++++++++++--------
 .../SimplifyBoolExpr.expected                 |  1 -
 2 files changed, 12 insertions(+), 10 deletions(-)

diff --git a/java/ql/src/Violations of Best Practice/Boolean Logic/SimplifyBoolExpr.ql b/java/ql/src/Violations of Best Practice/Boolean Logic/SimplifyBoolExpr.ql
index 814a45bef6d..9b87a358905 100644
--- a/java/ql/src/Violations of Best Practice/Boolean Logic/SimplifyBoolExpr.ql	
+++ b/java/ql/src/Violations of Best Practice/Boolean Logic/SimplifyBoolExpr.ql	
@@ -92,13 +92,16 @@ class ComparisonOrEquality extends BinaryExpr {
 
 from Expr e, string pattern, string rewrite
 where
-  e.(BoolCompare).simplify(pattern, rewrite)
-  or
-  conditionalWithBool(e, pattern, rewrite)
-  or
-  e.(LogNotExpr).getExpr().(ComparisonOrEquality).negate(pattern, rewrite)
-  or
-  e.(LogNotExpr).getExpr() instanceof LogNotExpr and
-  pattern = "!!A" and
-  rewrite = "A"
+  e.getFile().isJavaSourceFile() and
+  (
+    e.(BoolCompare).simplify(pattern, rewrite)
+    or
+    conditionalWithBool(e, pattern, rewrite)
+    or
+    e.(LogNotExpr).getExpr().(ComparisonOrEquality).negate(pattern, rewrite)
+    or
+    e.(LogNotExpr).getExpr() instanceof LogNotExpr and
+    pattern = "!!A" and
+    rewrite = "A"
+  )
 select e, "Expressions of the form \"" + pattern + "\" can be simplified to \"" + rewrite + "\"."
diff --git a/java/ql/test/kotlin/query-tests/SimplifyBoolExpr/SimplifyBoolExpr.expected b/java/ql/test/kotlin/query-tests/SimplifyBoolExpr/SimplifyBoolExpr.expected
index 456ed9af9b7..e69de29bb2d 100644
--- a/java/ql/test/kotlin/query-tests/SimplifyBoolExpr/SimplifyBoolExpr.expected
+++ b/java/ql/test/kotlin/query-tests/SimplifyBoolExpr/SimplifyBoolExpr.expected
@@ -1 +0,0 @@
-| SimplifyBoolExpr.kt:8:8:8:16 | ... (value equals) ... | Expressions of the form "A == true" can be simplified to "A". |

From d4f3e38062c3bcf6309e68e5416b8460a4875819 Mon Sep 17 00:00:00 2001
From: Paolo Tranquilli <redsun82@github.com>
Date: Wed, 16 Nov 2022 09:48:18 +0100
Subject: [PATCH 0346/1420] Swift: fix path of generated C++ files artifact

---
 .github/workflows/swift.yml | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/.github/workflows/swift.yml b/.github/workflows/swift.yml
index 09e1c8a92f8..797d950ee57 100644
--- a/.github/workflows/swift.yml
+++ b/.github/workflows/swift.yml
@@ -27,7 +27,7 @@ jobs:
         with:
           filters: |
             codegen:
-              - 'github/workflows/swift.yml'
+              - '.github/workflows/swift.yml'
               - "misc/bazel/**"
               - "*.bazel*"
               - 'swift/actions/setup-env/**'
@@ -111,7 +111,7 @@ jobs:
       - uses: actions/upload-artifact@v3
         with:
           name: swift-generated-cpp-files
-          path: swift/generated-cpp-files/**
+          path: generated-cpp-files/**
   database-upgrade-scripts:
     runs-on: ubuntu-latest
     steps:

From acab8e86328963185526f8c2bf99ea25c4bb065f Mon Sep 17 00:00:00 2001
From: Tamas Vajk <tamasvajk@github.com>
Date: Wed, 16 Nov 2022 09:52:13 +0100
Subject: [PATCH 0347/1420] Kotlin: Add FP test cases for resource leaks

---
 .../CloseReader/CloseReader.expected          |  1 +
 .../query-tests/CloseReader/CloseReader.kt    |  7 +++
 .../query-tests/CloseReader/CloseReader.qlref |  1 +
 .../CloseWriter/CloseWriter.expected          |  8 ++++
 .../query-tests/CloseWriter/CloseWriter.kt    | 45 +++++++++++++++++++
 .../query-tests/CloseWriter/CloseWriter.qlref |  1 +
 6 files changed, 63 insertions(+)
 create mode 100644 java/ql/test/kotlin/query-tests/CloseReader/CloseReader.expected
 create mode 100644 java/ql/test/kotlin/query-tests/CloseReader/CloseReader.kt
 create mode 100644 java/ql/test/kotlin/query-tests/CloseReader/CloseReader.qlref
 create mode 100644 java/ql/test/kotlin/query-tests/CloseWriter/CloseWriter.expected
 create mode 100644 java/ql/test/kotlin/query-tests/CloseWriter/CloseWriter.kt
 create mode 100644 java/ql/test/kotlin/query-tests/CloseWriter/CloseWriter.qlref

diff --git a/java/ql/test/kotlin/query-tests/CloseReader/CloseReader.expected b/java/ql/test/kotlin/query-tests/CloseReader/CloseReader.expected
new file mode 100644
index 00000000000..b9e63a49549
--- /dev/null
+++ b/java/ql/test/kotlin/query-tests/CloseReader/CloseReader.expected
@@ -0,0 +1 @@
+| CloseReader.kt:4:20:4:45 | new FileReader(...) | This FileReader is not always closed on method exit. |
diff --git a/java/ql/test/kotlin/query-tests/CloseReader/CloseReader.kt b/java/ql/test/kotlin/query-tests/CloseReader/CloseReader.kt
new file mode 100644
index 00000000000..27358a35587
--- /dev/null
+++ b/java/ql/test/kotlin/query-tests/CloseReader/CloseReader.kt
@@ -0,0 +1,7 @@
+import java.io.*
+
+fun test0() {
+    BufferedReader(FileReader("C:\\test.txt")).use { bw ->
+        bw.readLine()
+    }
+}
diff --git a/java/ql/test/kotlin/query-tests/CloseReader/CloseReader.qlref b/java/ql/test/kotlin/query-tests/CloseReader/CloseReader.qlref
new file mode 100644
index 00000000000..1c808bb9f46
--- /dev/null
+++ b/java/ql/test/kotlin/query-tests/CloseReader/CloseReader.qlref
@@ -0,0 +1 @@
+Likely Bugs/Resource Leaks/CloseReader.ql
diff --git a/java/ql/test/kotlin/query-tests/CloseWriter/CloseWriter.expected b/java/ql/test/kotlin/query-tests/CloseWriter/CloseWriter.expected
new file mode 100644
index 00000000000..e0058913e73
--- /dev/null
+++ b/java/ql/test/kotlin/query-tests/CloseWriter/CloseWriter.expected
@@ -0,0 +1,8 @@
+| CloseWriter.kt:4:29:4:54 | new FileWriter(...) | This FileWriter is not always closed on method exit. |
+| CloseWriter.kt:9:20:9:45 | new FileWriter(...) | This FileWriter is not always closed on method exit. |
+| CloseWriter.kt:15:14:15:57 | new FileOutputStream(...) | This FileOutputStream is not always closed on method exit. |
+| CloseWriter.kt:20:5:20:48 | new FileOutputStream(...) | This FileOutputStream is not always closed on method exit. |
+| CloseWriter.kt:26:33:26:76 | new FileOutputStream(...) | This FileOutputStream is not always closed on method exit. |
+| CloseWriter.kt:31:24:31:67 | new FileOutputStream(...) | This FileOutputStream is not always closed on method exit. |
+| CloseWriter.kt:37:33:37:76 | new FileOutputStream(...) | This FileOutputStream is not always closed on method exit. |
+| CloseWriter.kt:42:24:42:67 | new FileOutputStream(...) | This FileOutputStream is not always closed on method exit. |
diff --git a/java/ql/test/kotlin/query-tests/CloseWriter/CloseWriter.kt b/java/ql/test/kotlin/query-tests/CloseWriter/CloseWriter.kt
new file mode 100644
index 00000000000..820e40f5666
--- /dev/null
+++ b/java/ql/test/kotlin/query-tests/CloseWriter/CloseWriter.kt
@@ -0,0 +1,45 @@
+import java.io.*
+
+fun test0() {
+    val bw = BufferedWriter(FileWriter("C:\\test.txt"))
+    bw.write("test")
+}
+
+fun test1() {
+    BufferedWriter(FileWriter("C:\\test.txt")).use { bw ->
+        bw.write("test")
+    }
+}
+
+fun test2() {
+    val bw = FileOutputStream(File.createTempFile("","")).bufferedWriter()
+    bw.write("test")
+}
+
+fun test3() {
+    FileOutputStream(File.createTempFile("","")).bufferedWriter().use { bw ->
+        bw.write("test")
+    }
+}
+
+fun test4() {
+    val bw = OutputStreamWriter(FileOutputStream(File.createTempFile("",""))).buffered()
+    bw.write("test")
+}
+
+fun test5() {
+    OutputStreamWriter(FileOutputStream(File.createTempFile("",""))).buffered().use { bw ->
+        bw.write("test")
+    }
+}
+
+fun test6() {
+    val bw = OutputStreamWriter(FileOutputStream(File.createTempFile("","")))
+    bw.write("test")
+}
+
+fun test7() {
+    OutputStreamWriter(FileOutputStream(File.createTempFile("",""))).use { bw ->
+        bw.write("test")
+    }
+}
diff --git a/java/ql/test/kotlin/query-tests/CloseWriter/CloseWriter.qlref b/java/ql/test/kotlin/query-tests/CloseWriter/CloseWriter.qlref
new file mode 100644
index 00000000000..88008367363
--- /dev/null
+++ b/java/ql/test/kotlin/query-tests/CloseWriter/CloseWriter.qlref
@@ -0,0 +1 @@
+Likely Bugs/Resource Leaks/CloseWriter.ql

From 307d2d5dc118ab3a8e3141bf81df77a627910461 Mon Sep 17 00:00:00 2001
From: Tamas Vajk <tamasvajk@github.com>
Date: Wed, 16 Nov 2022 09:52:39 +0100
Subject: [PATCH 0348/1420] Exclude .kt files from resource leak queries

---
 java/ql/src/Likely Bugs/Resource Leaks/CloseReader.ql     | 1 +
 java/ql/src/Likely Bugs/Resource Leaks/CloseSql.ql        | 1 +
 java/ql/src/Likely Bugs/Resource Leaks/CloseWriter.ql     | 1 +
 .../kotlin/query-tests/CloseReader/CloseReader.expected   | 1 -
 .../kotlin/query-tests/CloseWriter/CloseWriter.expected   | 8 --------
 5 files changed, 3 insertions(+), 9 deletions(-)

diff --git a/java/ql/src/Likely Bugs/Resource Leaks/CloseReader.ql b/java/ql/src/Likely Bugs/Resource Leaks/CloseReader.ql
index a8faf679f7e..92da62633d8 100644
--- a/java/ql/src/Likely Bugs/Resource Leaks/CloseReader.ql	
+++ b/java/ql/src/Likely Bugs/Resource Leaks/CloseReader.ql	
@@ -33,6 +33,7 @@ predicate safeReaderType(RefType t) {
 
 from ClassInstanceExpr cie, RefType t
 where
+  cie.getFile().isJavaSourceFile() and
   badCloseableInit(cie) and
   cie.getType() = t and
   readerType(t) and
diff --git a/java/ql/src/Likely Bugs/Resource Leaks/CloseSql.ql b/java/ql/src/Likely Bugs/Resource Leaks/CloseSql.ql
index 44e77f3fe8f..e7584aba67d 100644
--- a/java/ql/src/Likely Bugs/Resource Leaks/CloseSql.ql	
+++ b/java/ql/src/Likely Bugs/Resource Leaks/CloseSql.ql	
@@ -15,6 +15,7 @@ import CloseType
 
 from CloseableInitExpr cie, RefType t
 where
+  cie.getFile().isJavaSourceFile() and
   badCloseableInit(cie) and
   cie.getType() = t and
   sqlType(t) and
diff --git a/java/ql/src/Likely Bugs/Resource Leaks/CloseWriter.ql b/java/ql/src/Likely Bugs/Resource Leaks/CloseWriter.ql
index 0143a946133..fa04de220bf 100644
--- a/java/ql/src/Likely Bugs/Resource Leaks/CloseWriter.ql	
+++ b/java/ql/src/Likely Bugs/Resource Leaks/CloseWriter.ql	
@@ -29,6 +29,7 @@ predicate safeWriterType(RefType t) {
 
 from ClassInstanceExpr cie, RefType t
 where
+  cie.getFile().isJavaSourceFile() and
   badCloseableInit(cie) and
   cie.getType() = t and
   writerType(t) and
diff --git a/java/ql/test/kotlin/query-tests/CloseReader/CloseReader.expected b/java/ql/test/kotlin/query-tests/CloseReader/CloseReader.expected
index b9e63a49549..e69de29bb2d 100644
--- a/java/ql/test/kotlin/query-tests/CloseReader/CloseReader.expected
+++ b/java/ql/test/kotlin/query-tests/CloseReader/CloseReader.expected
@@ -1 +0,0 @@
-| CloseReader.kt:4:20:4:45 | new FileReader(...) | This FileReader is not always closed on method exit. |
diff --git a/java/ql/test/kotlin/query-tests/CloseWriter/CloseWriter.expected b/java/ql/test/kotlin/query-tests/CloseWriter/CloseWriter.expected
index e0058913e73..e69de29bb2d 100644
--- a/java/ql/test/kotlin/query-tests/CloseWriter/CloseWriter.expected
+++ b/java/ql/test/kotlin/query-tests/CloseWriter/CloseWriter.expected
@@ -1,8 +0,0 @@
-| CloseWriter.kt:4:29:4:54 | new FileWriter(...) | This FileWriter is not always closed on method exit. |
-| CloseWriter.kt:9:20:9:45 | new FileWriter(...) | This FileWriter is not always closed on method exit. |
-| CloseWriter.kt:15:14:15:57 | new FileOutputStream(...) | This FileOutputStream is not always closed on method exit. |
-| CloseWriter.kt:20:5:20:48 | new FileOutputStream(...) | This FileOutputStream is not always closed on method exit. |
-| CloseWriter.kt:26:33:26:76 | new FileOutputStream(...) | This FileOutputStream is not always closed on method exit. |
-| CloseWriter.kt:31:24:31:67 | new FileOutputStream(...) | This FileOutputStream is not always closed on method exit. |
-| CloseWriter.kt:37:33:37:76 | new FileOutputStream(...) | This FileOutputStream is not always closed on method exit. |
-| CloseWriter.kt:42:24:42:67 | new FileOutputStream(...) | This FileOutputStream is not always closed on method exit. |

From 6d1421a6f9699a77cd87373fa237508ad7b6021d Mon Sep 17 00:00:00 2001
From: Paolo Tranquilli <redsun82@github.com>
Date: Wed, 16 Nov 2022 10:04:19 +0100
Subject: [PATCH 0349/1420] Swift: fix workflow mention in `CODEOWNERS`

---
 CODEOWNERS | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/CODEOWNERS b/CODEOWNERS
index a18b6a51305..86f38eeee22 100644
--- a/CODEOWNERS
+++ b/CODEOWNERS
@@ -45,4 +45,4 @@ WORKSPACE.bazel @github/codeql-ci-reviewers
 /.github/workflows/js-ml-tests.yml @github/codeql-ml-powered-queries-reviewers
 /.github/workflows/ql-for-ql-* @github/codeql-ql-for-ql-reviewers
 /.github/workflows/ruby-* @github/codeql-ruby
-/.github/workflows/swift-* @github/codeql-c
+/.github/workflows/swift.yml @github/codeql-c

From 84cb59b942da4d402c30450820f71a6ccc79874e Mon Sep 17 00:00:00 2001
From: Mauro Baluda <mbaluda@github.com>
Date: Wed, 16 Nov 2022 11:05:23 +0100
Subject: [PATCH 0350/1420] Create 2022-11-08-hapi-glue.md

---
 javascript/ql/src/change-notes/2022-11-08-hapi-glue.md | 4 ++++
 1 file changed, 4 insertions(+)
 create mode 100644 javascript/ql/src/change-notes/2022-11-08-hapi-glue.md

diff --git a/javascript/ql/src/change-notes/2022-11-08-hapi-glue.md b/javascript/ql/src/change-notes/2022-11-08-hapi-glue.md
new file mode 100644
index 00000000000..18816a2af13
--- /dev/null
+++ b/javascript/ql/src/change-notes/2022-11-08-hapi-glue.md
@@ -0,0 +1,4 @@
+---
+category: minorAnalysis
+---
+* Added support for @hapi/glue and Hapi plugins to the frameworks/Hapi.qll library.

From 88a0c4053b6bde99b4b1e37a0a750baf0e8347f3 Mon Sep 17 00:00:00 2001
From: Paolo Tranquilli <redsun82@github.com>
Date: Wed, 16 Nov 2022 11:14:17 +0100
Subject: [PATCH 0351/1420] Swift: move hierarchy IPA logic to `schema.py`

---
 swift/codegen/generators/cppgen.py |  8 +---
 swift/codegen/lib/schema/schema.py | 28 +++++++++++++
 swift/codegen/test/test_cppgen.py  | 65 ++----------------------------
 swift/codegen/test/test_schema.py  | 37 ++++++++++++++++-
 4 files changed, 68 insertions(+), 70 deletions(-)

diff --git a/swift/codegen/generators/cppgen.py b/swift/codegen/generators/cppgen.py
index 18d65d54150..16f997efacb 100644
--- a/swift/codegen/generators/cppgen.py
+++ b/swift/codegen/generators/cppgen.py
@@ -80,16 +80,10 @@ class Processor:
             trap_name=trap_name,
         )
 
-    @functools.lru_cache(maxsize=None)
-    def _is_ipa(self, name: str) -> bool:
-        cls = self._classmap[name]
-        return cls.ipa is not None or (
-            cls.derived and all(self._is_ipa(d) for d in cls.derived))
-
     def get_classes(self):
         ret = {'': []}
         for k, cls in self._classmap.items():
-            if not self._is_ipa(k):
+            if not cls.ipa:
                 ret.setdefault(cls.group, []).append(self._get_class(cls.name))
         return ret
 
diff --git a/swift/codegen/lib/schema/schema.py b/swift/codegen/lib/schema/schema.py
index 72b56ad19af..fe0b9e26660 100644
--- a/swift/codegen/lib/schema/schema.py
+++ b/swift/codegen/lib/schema/schema.py
@@ -247,6 +247,32 @@ def _toposort_classes_by_group(classes: typing.Dict[str, Class]) -> typing.Dict[
     return ret
 
 
+def _fill_ipa_information(classes: typing.Dict[str, Class]):
+    if not classes:
+        return
+
+    is_ipa: typing.Dict[str, bool] = {}
+
+    def fill_is_ipa(name: str):
+        if name not in is_ipa:
+            cls = classes[name]
+            for d in cls.derived:
+                fill_is_ipa(d)
+            if cls.ipa is not None:
+                is_ipa[name] = True
+            elif not cls.derived:
+                is_ipa[name] = False
+            else:
+                is_ipa[name] = all(is_ipa[d] for d in cls.derived)
+
+    root = next(iter(classes))
+    fill_is_ipa(root)
+
+    for name, cls in classes.items():
+        if cls.ipa is None and is_ipa[name]:
+            cls.ipa = IpaInfo()
+
+
 def load(m: types.ModuleType) -> Schema:
     includes = set()
     classes = {}
@@ -274,6 +300,8 @@ def load(m: types.ModuleType) -> Schema:
             null = name
             cls.is_null_class = True
 
+    _fill_ipa_information(classes)
+
     return Schema(includes=includes, classes=_toposort_classes_by_group(classes), null=null)
 
 
diff --git a/swift/codegen/test/test_cppgen.py b/swift/codegen/test/test_cppgen.py
index 54f1fdf1f7a..3c62143e86a 100644
--- a/swift/codegen/test/test_cppgen.py
+++ b/swift/codegen/test/test_cppgen.py
@@ -182,6 +182,10 @@ def test_cpp_skip_pragma(generate):
 
 def test_ipa_classes_ignored(generate):
     assert generate([
+        schema.Class(
+            name="W",
+            ipa=schema.IpaInfo(),
+        ),
         schema.Class(
             name="X",
             ipa=schema.IpaInfo(from_class="A"),
@@ -198,66 +202,5 @@ def test_ipa_classes_ignored(generate):
     ]
 
 
-def test_ipa_hierarchy_ignored(generate):
-    assert generate([
-        schema.Class(
-            name="Root",
-            derived={"Base", "Z"},
-        ),
-        schema.Class(
-            name="Base",
-            bases=["Root"],
-            derived={"X", "Y"}
-        ),
-        schema.Class(
-            name="X",
-            bases=["Base"],
-            ipa=schema.IpaInfo(from_class="A"),
-        ),
-        schema.Class(
-            name="Y",
-            bases=["Base"],
-            ipa=schema.IpaInfo(on_arguments={"a": "A", "b": "int"}),
-        ),
-        schema.Class(
-            name="Z",
-            ipa=schema.IpaInfo(from_class="A"),
-        ),
-    ]) == []
-
-
-def test_ipa_hierarchy_not_ignored_with_non_ipa_descendant(generate):
-    root = cpp.Class(name="Root")
-    base = cpp.Class(name="Base", bases=[root])
-    assert generate([
-        schema.Class(
-            name="Root",
-            derived={"Base", "Z"},
-        ),
-        schema.Class(
-            name="Base",
-            bases=["Root"],
-            derived={"X", "Y"}
-        ),
-        schema.Class(
-            name="X",
-            bases=["Base"],
-        ),
-        schema.Class(
-            name="Y",
-            bases=["Base"],
-            ipa=schema.IpaInfo(on_arguments={"a": "A", "b": "int"}),
-        ),
-        schema.Class(
-            name="Z",
-            ipa=schema.IpaInfo(from_class="A"),
-        ),
-    ]) == [
-        root,
-        base,
-        cpp.Class(name="X", bases=[base], final=True, trap_name="Xes"),
-    ]
-
-
 if __name__ == '__main__':
     sys.exit(pytest.main([__file__] + sys.argv[1:]))
diff --git a/swift/codegen/test/test_schema.py b/swift/codegen/test/test_schema.py
index 769fd402e64..439d007d137 100644
--- a/swift/codegen/test/test_schema.py
+++ b/swift/codegen/test/test_schema.py
@@ -340,7 +340,7 @@ def test_ipa_from_class():
             pass
 
     assert data.classes == {
-        'A': schema.Class('A', derived={'B'}),
+        'A': schema.Class('A', derived={'B'}, ipa=schema.IpaInfo()),
         'B': schema.Class('B', bases=['A'], ipa=schema.IpaInfo(from_class="A")),
     }
 
@@ -381,7 +381,7 @@ def test_ipa_class_on():
             pass
 
     assert data.classes == {
-        'A': schema.Class('A', derived={'B'}),
+        'A': schema.Class('A', derived={'B'}, ipa=schema.IpaInfo()),
         'B': schema.Class('B', bases=['A'], ipa=schema.IpaInfo(on_arguments={'a': 'A', 'i': 'int'})),
     }
 
@@ -414,6 +414,39 @@ def test_ipa_class_on_dangling():
                 pass
 
 
+def test_ipa_class_hierarchy():
+    @schema.load
+    class data:
+        class Root:
+            pass
+
+        class Base(Root):
+            pass
+
+        class Intermediate(Base):
+            pass
+
+        @defs.synth.on_arguments(a=Base, i=defs.int)
+        class A(Intermediate):
+            pass
+
+        @defs.synth.from_class(Base)
+        class B(Base):
+            pass
+
+        class C(Root):
+            pass
+
+    assert data.classes == {
+        'Root': schema.Class('Root', derived={'Base', 'C'}),
+        'Base': schema.Class('Base', bases=['Root'], derived={'Intermediate', 'B'}, ipa=schema.IpaInfo()),
+        'Intermediate': schema.Class('Intermediate', bases=['Base'], derived={'A'}, ipa=schema.IpaInfo()),
+        'A': schema.Class('A', bases=['Intermediate'], ipa=schema.IpaInfo(on_arguments={'a': 'Base', 'i': 'int'})),
+        'B': schema.Class('B', bases=['Base'], ipa=schema.IpaInfo(from_class='Base')),
+        'C': schema.Class('C', bases=['Root']),
+    }
+
+
 def test_class_docstring():
     @schema.load
     class data:

From a3d33e27e29e1dd27c86fc5f5ebcab5155053c40 Mon Sep 17 00:00:00 2001
From: Paolo Tranquilli <redsun82@github.com>
Date: Wed, 16 Nov 2022 11:20:02 +0100
Subject: [PATCH 0352/1420] Swift: ignore IPA classes in dbscheme

---
 swift/codegen/generators/dbschemegen.py |  8 ++-
 swift/codegen/test/test_dbschemegen.py  | 81 +++++++++++++++++++++++--
 swift/ql/lib/swift.dbscheme             | 15 -----
 3 files changed, 81 insertions(+), 23 deletions(-)

diff --git a/swift/codegen/generators/dbschemegen.py b/swift/codegen/generators/dbschemegen.py
index b750a9d6e12..58cb40a3335 100755
--- a/swift/codegen/generators/dbschemegen.py
+++ b/swift/codegen/generators/dbschemegen.py
@@ -38,10 +38,12 @@ def dbtype(typename: str, add_or_none_except: typing.Optional[str] = None) -> st
     return typename
 
 
-def cls_to_dbscheme(cls: schema.Class, add_or_none_except: typing.Optional[str] = None):
+def cls_to_dbscheme(cls: schema.Class, lookup: typing.Dict[str, schema.Class], add_or_none_except: typing.Optional[str] = None):
     """ Yield all dbscheme entities needed to model class `cls` """
+    if cls.ipa:
+        return
     if cls.derived:
-        yield Union(dbtype(cls.name), (dbtype(c) for c in cls.derived))
+        yield Union(dbtype(cls.name), (dbtype(c) for c in cls.derived if not lookup[c].ipa))
     dir = pathlib.Path(cls.group) if cls.group else None
     # output a table specific to a class only if it is a leaf class or it has 1-to-1 properties
     # Leaf classes need a table to bind the `@` ids
@@ -96,7 +98,7 @@ def cls_to_dbscheme(cls: schema.Class, add_or_none_except: typing.Optional[str]
 
 def get_declarations(data: schema.Schema):
     add_or_none_except = data.root_class.name if data.null else None
-    declarations = [d for cls in data.classes.values() for d in cls_to_dbscheme(cls, add_or_none_except)]
+    declarations = [d for cls in data.classes.values() for d in cls_to_dbscheme(cls, data.classes, add_or_none_except)]
     if data.null:
         property_classes = {
             prop.type for cls in data.classes.values() for prop in cls.properties
diff --git a/swift/codegen/test/test_dbschemegen.py b/swift/codegen/test/test_dbschemegen.py
index 0fb71fbc35b..4e560e8208e 100644
--- a/swift/codegen/test/test_dbschemegen.py
+++ b/swift/codegen/test/test_dbschemegen.py
@@ -255,8 +255,9 @@ def test_final_class_with_more_fields(generate, dir_param):
 
 def test_empty_class_with_derived(generate):
     assert generate([
-        schema.Class(
-            name="Base", derived={"Left", "Right"}),
+        schema.Class(name="Base", derived={"Left", "Right"}),
+        schema.Class(name="Left", bases=["Base"]),
+        schema.Class(name="Right", bases=["Base"]),
     ]) == dbscheme.Scheme(
         src=schema_file,
         includes=[],
@@ -265,6 +266,14 @@ def test_empty_class_with_derived(generate):
                 lhs="@base",
                 rhs=["@left", "@right"],
             ),
+            dbscheme.Table(
+                name="lefts",
+                columns=[dbscheme.Column("id", "@left", binding=True)],
+            ),
+            dbscheme.Table(
+                name="rights",
+                columns=[dbscheme.Column("id", "@right", binding=True)],
+            ),
         ],
     )
 
@@ -278,6 +287,8 @@ def test_class_with_derived_and_single_property(generate, dir_param):
             properties=[
                 schema.SingleProperty("single", "Prop"),
             ]),
+        schema.Class(name="Left", bases=["Base"]),
+        schema.Class(name="Right", bases=["Base"]),
     ]) == dbscheme.Scheme(
         src=schema_file,
         includes=[],
@@ -294,7 +305,15 @@ def test_class_with_derived_and_single_property(generate, dir_param):
                     dbscheme.Column('single', '@prop'),
                 ],
                 dir=dir_param.expected,
-            )
+            ),
+            dbscheme.Table(
+                name="lefts",
+                columns=[dbscheme.Column("id", "@left", binding=True)],
+            ),
+            dbscheme.Table(
+                name="rights",
+                columns=[dbscheme.Column("id", "@right", binding=True)],
+            ),
         ],
     )
 
@@ -308,6 +327,8 @@ def test_class_with_derived_and_optional_property(generate, dir_param):
             properties=[
                 schema.OptionalProperty("opt", "Prop"),
             ]),
+        schema.Class(name="Left", bases=["Base"]),
+        schema.Class(name="Right", bases=["Base"]),
     ]) == dbscheme.Scheme(
         src=schema_file,
         includes=[],
@@ -324,7 +345,15 @@ def test_class_with_derived_and_optional_property(generate, dir_param):
                     dbscheme.Column('opt', '@prop'),
                 ],
                 dir=dir_param.expected,
-            )
+            ),
+            dbscheme.Table(
+                name="lefts",
+                columns=[dbscheme.Column("id", "@left", binding=True)],
+            ),
+            dbscheme.Table(
+                name="rights",
+                columns=[dbscheme.Column("id", "@right", binding=True)],
+            ),
         ],
     )
 
@@ -338,6 +367,8 @@ def test_class_with_derived_and_repeated_property(generate, dir_param):
             properties=[
                 schema.RepeatedProperty("rep", "Prop"),
             ]),
+        schema.Class(name="Left", bases=["Base"]),
+        schema.Class(name="Right", bases=["Base"]),
     ]) == dbscheme.Scheme(
         src=schema_file,
         includes=[],
@@ -355,7 +386,15 @@ def test_class_with_derived_and_repeated_property(generate, dir_param):
                     dbscheme.Column('rep', '@prop'),
                 ],
                 dir=dir_param.expected,
-            )
+            ),
+            dbscheme.Table(
+                name="lefts",
+                columns=[dbscheme.Column("id", "@left", binding=True)],
+            ),
+            dbscheme.Table(
+                name="rights",
+                columns=[dbscheme.Column("id", "@right", binding=True)],
+            ),
         ],
     )
 
@@ -469,5 +508,37 @@ def test_null_class(generate):
     )
 
 
+def test_ipa_classes_ignored(generate):
+    assert generate([
+        schema.Class(name="A", ipa=schema.IpaInfo()),
+        schema.Class(name="B", ipa=schema.IpaInfo(from_class="A")),
+        schema.Class(name="C", ipa=schema.IpaInfo(on_arguments={"x": "A"})),
+    ]) == dbscheme.Scheme(
+        src=schema_file,
+        includes=[],
+        declarations=[],
+    )
+
+
+def test_ipa_derived_classes_ignored(generate):
+    assert generate([
+        schema.Class(name="A", derived={"B", "C"}),
+        schema.Class(name="B", bases=["A"], ipa=schema.IpaInfo()),
+        schema.Class(name="C", bases=["A"]),
+    ]) == dbscheme.Scheme(
+        src=schema_file,
+        includes=[],
+        declarations=[
+            dbscheme.Union("@a", ["@c"]),
+            dbscheme.Table(
+                name="cs",
+                columns=[
+                    dbscheme.Column("id", "@c", binding=True),
+                ],
+            )
+        ],
+    )
+
+
 if __name__ == '__main__':
     sys.exit(pytest.main([__file__] + sys.argv[1:]))
diff --git a/swift/ql/lib/swift.dbscheme b/swift/ql/lib/swift.dbscheme
index ceca289a0ff..abbb8c9e840 100644
--- a/swift/ql/lib/swift.dbscheme
+++ b/swift/ql/lib/swift.dbscheme
@@ -52,7 +52,6 @@ callable_bodies(
 
 @file =
   @db_file
-| @unknown_file
 ;
 
 #keyset[id]
@@ -77,7 +76,6 @@ locatable_locations(
 
 @location =
   @db_location
-| @unknown_location
 ;
 
 #keyset[id]
@@ -135,14 +133,6 @@ diagnostics(
 | @unspecified_element
 ;
 
-unknown_files(
-  unique int id: @unknown_file
-);
-
-unknown_locations(
-  unique int id: @unknown_location
-);
-
 unspecified_elements(
   unique int id: @unspecified_element,
   string property: string ref,
@@ -941,7 +931,6 @@ lazy_initializer_exprs(  //dir=expr
 @lookup_expr =
   @dynamic_lookup_expr
 | @member_ref_expr
-| @method_ref_expr
 | @subscript_expr
 ;
 
@@ -1334,10 +1323,6 @@ metatype_conversion_exprs(  //dir=expr
   unique int id: @metatype_conversion_expr
 );
 
-method_ref_exprs(  //dir=expr
-  unique int id: @method_ref_expr
-);
-
 nil_literal_exprs(  //dir=expr
   unique int id: @nil_literal_expr
 );

From c91e20c6b5332cc8585a1c6f42700543c0eacf62 Mon Sep 17 00:00:00 2001
From: Tamas Vajk <tamasvajk@github.com>
Date: Wed, 16 Nov 2022 11:47:07 +0100
Subject: [PATCH 0353/1420] Kotlin: Add FP test cases for empty blocks

---
 .../query-tests/EmptyBlock/EmptyBlock.expected      |  3 +++
 .../kotlin/query-tests/EmptyBlock/EmptyBlock.qlref  |  1 +
 java/ql/test/kotlin/query-tests/EmptyBlock/Test.kt  | 13 +++++++++++++
 3 files changed, 17 insertions(+)
 create mode 100644 java/ql/test/kotlin/query-tests/EmptyBlock/EmptyBlock.expected
 create mode 100644 java/ql/test/kotlin/query-tests/EmptyBlock/EmptyBlock.qlref
 create mode 100644 java/ql/test/kotlin/query-tests/EmptyBlock/Test.kt

diff --git a/java/ql/test/kotlin/query-tests/EmptyBlock/EmptyBlock.expected b/java/ql/test/kotlin/query-tests/EmptyBlock/EmptyBlock.expected
new file mode 100644
index 00000000000..c65f1a206be
--- /dev/null
+++ b/java/ql/test/kotlin/query-tests/EmptyBlock/EmptyBlock.expected
@@ -0,0 +1,3 @@
+| Test.kt:1:1:13:1 | { ... } | This block should not be empty. Typographical error or missing code? |
+| Test.kt:2:20:4:5 | { ... } | This block should not be empty. Typographical error or missing code? |
+| Test.kt:7:9:8:9 | { ... } | This block should not be empty. Typographical error or missing code? |
diff --git a/java/ql/test/kotlin/query-tests/EmptyBlock/EmptyBlock.qlref b/java/ql/test/kotlin/query-tests/EmptyBlock/EmptyBlock.qlref
new file mode 100644
index 00000000000..b0a56e88aa4
--- /dev/null
+++ b/java/ql/test/kotlin/query-tests/EmptyBlock/EmptyBlock.qlref
@@ -0,0 +1 @@
+Likely Bugs/Statements/EmptyBlock.ql
\ No newline at end of file
diff --git a/java/ql/test/kotlin/query-tests/EmptyBlock/Test.kt b/java/ql/test/kotlin/query-tests/EmptyBlock/Test.kt
new file mode 100644
index 00000000000..12624a92b38
--- /dev/null
+++ b/java/ql/test/kotlin/query-tests/EmptyBlock/Test.kt
@@ -0,0 +1,13 @@
+class Foo {
+    abstract inner class Bar {
+        abstract fun myFun(): Int
+    }
+
+    inner class Baz {
+        constructor() {
+        }
+
+        fun fn() {
+        }
+    }
+}

From 3d11e5bb32c89ee0fc4cfbff3fc93e9d17f88776 Mon Sep 17 00:00:00 2001
From: Tamas Vajk <tamasvajk@github.com>
Date: Wed, 16 Nov 2022 11:47:35 +0100
Subject: [PATCH 0354/1420] Exclude .kt files from empty block query

---
 java/ql/src/Likely Bugs/Statements/EmptyBlock.ql               | 1 +
 java/ql/test/kotlin/query-tests/EmptyBlock/EmptyBlock.expected | 3 ---
 2 files changed, 1 insertion(+), 3 deletions(-)

diff --git a/java/ql/src/Likely Bugs/Statements/EmptyBlock.ql b/java/ql/src/Likely Bugs/Statements/EmptyBlock.ql
index 4dd2c397a87..411890474e5 100644
--- a/java/ql/src/Likely Bugs/Statements/EmptyBlock.ql	
+++ b/java/ql/src/Likely Bugs/Statements/EmptyBlock.ql	
@@ -56,6 +56,7 @@ predicate blockParent(Stmt empty, string msg) {
 
 from Stmt empty, string msg
 where
+  empty.getFile().isJavaSourceFile() and
   empty = emptyBody() and
   blockParent(empty, msg)
 select empty, msg + " Typographical error or missing code?"
diff --git a/java/ql/test/kotlin/query-tests/EmptyBlock/EmptyBlock.expected b/java/ql/test/kotlin/query-tests/EmptyBlock/EmptyBlock.expected
index c65f1a206be..e69de29bb2d 100644
--- a/java/ql/test/kotlin/query-tests/EmptyBlock/EmptyBlock.expected
+++ b/java/ql/test/kotlin/query-tests/EmptyBlock/EmptyBlock.expected
@@ -1,3 +0,0 @@
-| Test.kt:1:1:13:1 | { ... } | This block should not be empty. Typographical error or missing code? |
-| Test.kt:2:20:4:5 | { ... } | This block should not be empty. Typographical error or missing code? |
-| Test.kt:7:9:8:9 | { ... } | This block should not be empty. Typographical error or missing code? |

From 0d9e28012e6362c73e9767b0bf59323ee2b41dd5 Mon Sep 17 00:00:00 2001
From: Tamas Vajk <tamasvajk@github.com>
Date: Wed, 16 Nov 2022 11:51:36 +0100
Subject: [PATCH 0355/1420] Kotlin: Add FP test cases for autoboxing query

---
 .../test/kotlin/query-tests/AutoBoxing/AutoBoxing.expected   | 1 +
 java/ql/test/kotlin/query-tests/AutoBoxing/AutoBoxing.qlref  | 1 +
 java/ql/test/kotlin/query-tests/AutoBoxing/Test.kt           | 5 +++++
 3 files changed, 7 insertions(+)
 create mode 100644 java/ql/test/kotlin/query-tests/AutoBoxing/AutoBoxing.expected
 create mode 100644 java/ql/test/kotlin/query-tests/AutoBoxing/AutoBoxing.qlref
 create mode 100644 java/ql/test/kotlin/query-tests/AutoBoxing/Test.kt

diff --git a/java/ql/test/kotlin/query-tests/AutoBoxing/AutoBoxing.expected b/java/ql/test/kotlin/query-tests/AutoBoxing/AutoBoxing.expected
new file mode 100644
index 00000000000..5a60eb1f212
--- /dev/null
+++ b/java/ql/test/kotlin/query-tests/AutoBoxing/AutoBoxing.expected
@@ -0,0 +1 @@
+| Test.kt:3:17:3:17 | x | This expression is implicitly unboxed. |
diff --git a/java/ql/test/kotlin/query-tests/AutoBoxing/AutoBoxing.qlref b/java/ql/test/kotlin/query-tests/AutoBoxing/AutoBoxing.qlref
new file mode 100644
index 00000000000..f116f3bd8b4
--- /dev/null
+++ b/java/ql/test/kotlin/query-tests/AutoBoxing/AutoBoxing.qlref
@@ -0,0 +1 @@
+Violations of Best Practice/legacy/AutoBoxing.ql
diff --git a/java/ql/test/kotlin/query-tests/AutoBoxing/Test.kt b/java/ql/test/kotlin/query-tests/AutoBoxing/Test.kt
new file mode 100644
index 00000000000..ca3aa52b2c9
--- /dev/null
+++ b/java/ql/test/kotlin/query-tests/AutoBoxing/Test.kt
@@ -0,0 +1,5 @@
+fun foo(x: Int?) {
+    if (x != null) {
+        println(x)
+    }
+}

From 3d21f89f1d77a8eb9d67d3f0a3e95009b307add4 Mon Sep 17 00:00:00 2001
From: Tamas Vajk <tamasvajk@github.com>
Date: Wed, 16 Nov 2022 11:52:17 +0100
Subject: [PATCH 0356/1420] Exclude .kt files from autoboxing query

---
 .../legacy/AutoBoxing.ql                       | 18 +++++++++++-------
 .../query-tests/AutoBoxing/AutoBoxing.expected |  1 -
 2 files changed, 11 insertions(+), 8 deletions(-)

diff --git a/java/ql/src/Violations of Best Practice/legacy/AutoBoxing.ql b/java/ql/src/Violations of Best Practice/legacy/AutoBoxing.ql
index b80f86cd810..c6d8d796309 100644
--- a/java/ql/src/Violations of Best Practice/legacy/AutoBoxing.ql	
+++ b/java/ql/src/Violations of Best Practice/legacy/AutoBoxing.ql	
@@ -72,12 +72,16 @@ predicate rebox(Assignment e, Variable v) {
 
 from Expr e, string conv
 where
-  boxed(e) and conv = "This expression is implicitly boxed."
-  or
-  unboxed(e) and conv = "This expression is implicitly unboxed."
-  or
-  exists(Variable v | rebox(e, v) |
-    conv =
-      "This expression implicitly unboxes, updates, and reboxes the value of '" + v.getName() + "'."
+  e.getFile().isJavaSourceFile() and
+  (
+    boxed(e) and conv = "This expression is implicitly boxed."
+    or
+    unboxed(e) and conv = "This expression is implicitly unboxed."
+    or
+    exists(Variable v | rebox(e, v) |
+      conv =
+        "This expression implicitly unboxes, updates, and reboxes the value of '" + v.getName() +
+          "'."
+    )
   )
 select e, conv
diff --git a/java/ql/test/kotlin/query-tests/AutoBoxing/AutoBoxing.expected b/java/ql/test/kotlin/query-tests/AutoBoxing/AutoBoxing.expected
index 5a60eb1f212..e69de29bb2d 100644
--- a/java/ql/test/kotlin/query-tests/AutoBoxing/AutoBoxing.expected
+++ b/java/ql/test/kotlin/query-tests/AutoBoxing/AutoBoxing.expected
@@ -1 +0,0 @@
-| Test.kt:3:17:3:17 | x | This expression is implicitly unboxed. |

From 85fe22625682dccb54ac23d6ed41cd0dbeef0f3b Mon Sep 17 00:00:00 2001
From: Joe Farebrother <joefarebrother@github.com>
Date: Tue, 20 Sep 2022 12:46:53 +0100
Subject: [PATCH 0357/1420] Add sensitive keyboard cache query

---
 .../security/SensitiveKeyboardCacheQuery.qll  | 50 +++++++++++++++++++
 .../CWE/CWE-524/SensitiveKeyboardCache.qhelp  |  0
 .../CWE/CWE-524/SensitiveKeyboardCache.ql     | 17 +++++++
 3 files changed, 67 insertions(+)
 create mode 100644 java/ql/lib/semmle/code/java/security/SensitiveKeyboardCacheQuery.qll
 create mode 100644 java/ql/src/Security/CWE/CWE-524/SensitiveKeyboardCache.qhelp
 create mode 100644 java/ql/src/Security/CWE/CWE-524/SensitiveKeyboardCache.ql

diff --git a/java/ql/lib/semmle/code/java/security/SensitiveKeyboardCacheQuery.qll b/java/ql/lib/semmle/code/java/security/SensitiveKeyboardCacheQuery.qll
new file mode 100644
index 00000000000..626f4cb962f
--- /dev/null
+++ b/java/ql/lib/semmle/code/java/security/SensitiveKeyboardCacheQuery.qll
@@ -0,0 +1,50 @@
+/** Definitions for the keyboard cache query */
+
+import java
+import semmle.code.xml.XML
+import semmle.code.java.security.SensitiveActions
+
+/** An Android Layout XML file. */
+class AndroidLayoutXmlFile extends XmlFile {
+  AndroidLayoutXmlFile() { this.getAbsolutePath().matches("%/res/layout/%.xml") }
+}
+
+/** An XML element that represents an editable text field. */
+class AndroidEditableXmlElement extends XmlElement {
+  XmlAttribute inputType;
+  XmlAttribute id;
+
+  AndroidEditableXmlElement() {
+    this.getFile() instanceof AndroidLayoutXmlFile and
+    inputType = this.getAnAttribute() and
+    inputType.getNamespace().getPrefix() = "android" and
+    inputType.getName() = "inputType" and
+    id = this.getAnAttribute() and
+    id.getNamespace().getPrefix() = "android" and
+    id.getName() = "id"
+  }
+
+  /** Gets the input type of this field. */
+  string getInputType() { result = inputType.getValue() }
+
+  /** Gets the ID of this field. */
+  string getId() { result = id.getValue() }
+}
+
+/** Gets a regex inidcating that an input field may contain sensitive data. */
+private string getInputSensitiveInfoRegex() {
+  result = [getCommonSensitiveInfoRegex(), "(?i).*(bank|credit|debit|security).*"]
+}
+
+/** Holds if input using the given input type may be stored in the keyboard cache. */
+bindingset[ty]
+private predicate inputTypeCached(string ty) {
+  ty.matches("%text%") and
+  not ty.regexpMatch("(?i).*(nosuggestions|password).*")
+}
+
+/** Gets an input field whose contents may be sensitive and may be stored in the keyboard cache. */
+AndroidEditableXmlElement getASensitiveCachedInput() {
+  result.getId().regexpMatch(getInputSensitiveInfoRegex()) and
+  inputTypeCached(result.getInputType())
+}
diff --git a/java/ql/src/Security/CWE/CWE-524/SensitiveKeyboardCache.qhelp b/java/ql/src/Security/CWE/CWE-524/SensitiveKeyboardCache.qhelp
new file mode 100644
index 00000000000..e69de29bb2d
diff --git a/java/ql/src/Security/CWE/CWE-524/SensitiveKeyboardCache.ql b/java/ql/src/Security/CWE/CWE-524/SensitiveKeyboardCache.ql
new file mode 100644
index 00000000000..5407b6ac854
--- /dev/null
+++ b/java/ql/src/Security/CWE/CWE-524/SensitiveKeyboardCache.ql
@@ -0,0 +1,17 @@
+/**
+ * @name Android sensetive keyboard cache
+ * @description Sensitive information should not be saved to the keyboard cache.
+ * @kind problem
+ * @problem.severity warning
+ * @id java/android/debuggable-attribute-enabled
+ * @tags security
+ *       external/cwe/cwe-489
+ * @precision high
+ */
+
+import java
+import semmle.code.java.security.SensitiveKeyboardCacheQuery
+
+from AndroidEditableXmlElement el
+where el = getASensitiveCachedInput()
+select el, "This input field may contain sensitive information that is saved to the keyboard cache."

From 706858e2118331f979e6fd8d98b968479e0699c0 Mon Sep 17 00:00:00 2001
From: Joe Farebrother <joefarebrother@github.com>
Date: Tue, 4 Oct 2022 16:11:12 +0100
Subject: [PATCH 0358/1420] Add test cases; fix the regex used

---
 .../security/SensitiveKeyboardCacheQuery.qll  |  6 ++++-
 .../CWE/CWE-524/SensitiveKeyboardCache.qhelp  |  1 +
 .../security/CWE-524/AndroidManifest.xml      |  5 ++++
 .../CWE-524/SensitiveKeyboardCache.expected   |  0
 .../CWE-524/SensitiveKeyboardCache.ql         | 19 ++++++++++++++
 .../query-tests/security/CWE-524/Test.java    |  1 +
 .../security/CWE-524/res/layout/Test.xml      | 26 +++++++++++++++++++
 7 files changed, 57 insertions(+), 1 deletion(-)
 create mode 100644 java/ql/test/query-tests/security/CWE-524/AndroidManifest.xml
 create mode 100644 java/ql/test/query-tests/security/CWE-524/SensitiveKeyboardCache.expected
 create mode 100644 java/ql/test/query-tests/security/CWE-524/SensitiveKeyboardCache.ql
 create mode 100644 java/ql/test/query-tests/security/CWE-524/Test.java
 create mode 100644 java/ql/test/query-tests/security/CWE-524/res/layout/Test.xml

diff --git a/java/ql/lib/semmle/code/java/security/SensitiveKeyboardCacheQuery.qll b/java/ql/lib/semmle/code/java/security/SensitiveKeyboardCacheQuery.qll
index 626f4cb962f..ea87b053ab1 100644
--- a/java/ql/lib/semmle/code/java/security/SensitiveKeyboardCacheQuery.qll
+++ b/java/ql/lib/semmle/code/java/security/SensitiveKeyboardCacheQuery.qll
@@ -33,7 +33,11 @@ class AndroidEditableXmlElement extends XmlElement {
 
 /** Gets a regex inidcating that an input field may contain sensitive data. */
 private string getInputSensitiveInfoRegex() {
-  result = [getCommonSensitiveInfoRegex(), "(?i).*(bank|credit|debit|security).*"]
+  result =
+    [
+      getCommonSensitiveInfoRegex(),
+      "(?i).*(bank|credit|debit|(pass(wd|word|code|phrase))|security).*"
+    ]
 }
 
 /** Holds if input using the given input type may be stored in the keyboard cache. */
diff --git a/java/ql/src/Security/CWE/CWE-524/SensitiveKeyboardCache.qhelp b/java/ql/src/Security/CWE/CWE-524/SensitiveKeyboardCache.qhelp
index e69de29bb2d..4d944060479 100644
--- a/java/ql/src/Security/CWE/CWE-524/SensitiveKeyboardCache.qhelp
+++ b/java/ql/src/Security/CWE/CWE-524/SensitiveKeyboardCache.qhelp
@@ -0,0 +1 @@
+todo
\ No newline at end of file
diff --git a/java/ql/test/query-tests/security/CWE-524/AndroidManifest.xml b/java/ql/test/query-tests/security/CWE-524/AndroidManifest.xml
new file mode 100644
index 00000000000..54b933452c8
--- /dev/null
+++ b/java/ql/test/query-tests/security/CWE-524/AndroidManifest.xml
@@ -0,0 +1,5 @@
+<?xml version="1.0" encoding="utf-8"?>
+<manifest xmlns:android="http://schemas.android.com/apk/res/android"
+    xmlns:tools="http://schemas.android.com/tools"
+    package="com.example.test">
+</manifest>
\ No newline at end of file
diff --git a/java/ql/test/query-tests/security/CWE-524/SensitiveKeyboardCache.expected b/java/ql/test/query-tests/security/CWE-524/SensitiveKeyboardCache.expected
new file mode 100644
index 00000000000..e69de29bb2d
diff --git a/java/ql/test/query-tests/security/CWE-524/SensitiveKeyboardCache.ql b/java/ql/test/query-tests/security/CWE-524/SensitiveKeyboardCache.ql
new file mode 100644
index 00000000000..26ce8bc7fb7
--- /dev/null
+++ b/java/ql/test/query-tests/security/CWE-524/SensitiveKeyboardCache.ql
@@ -0,0 +1,19 @@
+import java
+import semmle.code.java.security.SensitiveKeyboardCacheQuery
+import TestUtilities.InlineExpectationsTest
+
+class SensitiveKeyboardCacheTest extends InlineExpectationsTest {
+  SensitiveKeyboardCacheTest() { this = "SensitiveKeyboardCacheTest" }
+
+  override string getARelevantTag() { result = "hasResult" }
+
+  override predicate hasActualResult(Location loc, string element, string tag, string value) {
+    exists(AndroidEditableXmlElement el |
+      el = getASensitiveCachedInput() and
+      loc = el.getLocation() and
+      element = el.toString() and
+      tag = "hasResult" and
+      value = ""
+    )
+  }
+}
diff --git a/java/ql/test/query-tests/security/CWE-524/Test.java b/java/ql/test/query-tests/security/CWE-524/Test.java
new file mode 100644
index 00000000000..183c3f5b3be
--- /dev/null
+++ b/java/ql/test/query-tests/security/CWE-524/Test.java
@@ -0,0 +1 @@
+class Test {}
\ No newline at end of file
diff --git a/java/ql/test/query-tests/security/CWE-524/res/layout/Test.xml b/java/ql/test/query-tests/security/CWE-524/res/layout/Test.xml
new file mode 100644
index 00000000000..11f379a7005
--- /dev/null
+++ b/java/ql/test/query-tests/security/CWE-524/res/layout/Test.xml
@@ -0,0 +1,26 @@
+<?xml version="1.0" encoding="utf-8"?>
+<LinearLayout
+    xmlns:android="http://schemas.android.com/apk/res/android"
+    xmlns:app="http://schemas.android.com/apk/res-auto">
+
+
+   <!-- $hasResult --> <EditText
+        android:id="@+id/test1_password"
+        android:inputType="text"/>  
+
+    <EditText
+        android:id="@+id/test2_safe"
+        android:inputType="text"/> 
+
+    <EditText
+        android:id="@+id/test3_password"
+        android:inputType="textNoSuggestions"/>  
+
+    <EditText
+        android:id="@+id/test4_password"
+        android:inputType="textPassword"/> 
+
+    <!-- $hasResult --> <EditText
+        android:id="@+id/test5_bank_account_name"
+        android:inputType="textMultiLine"/>  
+</LinearLayout>
\ No newline at end of file

From 92190e50951da1da027c751845d582ce1f4681e3 Mon Sep 17 00:00:00 2001
From: Joe Farebrother <joefarebrother@github.com>
Date: Wed, 5 Oct 2022 15:58:38 +0100
Subject: [PATCH 0359/1420] Add docs

---
 java/ql/src/Security/CWE/CWE-524/Example.xml  | 15 ++++++++
 .../CWE/CWE-524/SensitiveKeyboardCache.qhelp  | 37 ++++++++++++++++++-
 .../CWE/CWE-524/SensitiveKeyboardCache.ql     |  4 +-
 3 files changed, 53 insertions(+), 3 deletions(-)
 create mode 100644 java/ql/src/Security/CWE/CWE-524/Example.xml

diff --git a/java/ql/src/Security/CWE/CWE-524/Example.xml b/java/ql/src/Security/CWE/CWE-524/Example.xml
new file mode 100644
index 00000000000..7317eda1618
--- /dev/null
+++ b/java/ql/src/Security/CWE/CWE-524/Example.xml
@@ -0,0 +1,15 @@
+<?xml version="1.0" encoding="utf-8"?>
+<LinearLayout
+    xmlns:android="http://schemas.android.com/apk/res/android"
+    xmlns:app="http://schemas.android.com/apk/res-auto">
+
+    <!-- BAD: This password field uses the `text` input type, which allows the input to be saved to the keyboard cache. -->
+    <EditText
+        android:id="@+id/password_bad"
+        android:inputType="text"/> 
+
+    <!-- GOOD: This password field uses the `textPassword` input type, which ensures that the input is not saved to the keyboard cache. -->
+    <EditText
+        android:id="@+id/password_good"
+        android:inputType="textPassword"/>  
+</LinearLayout>
\ No newline at end of file
diff --git a/java/ql/src/Security/CWE/CWE-524/SensitiveKeyboardCache.qhelp b/java/ql/src/Security/CWE/CWE-524/SensitiveKeyboardCache.qhelp
index 4d944060479..29b176b6c07 100644
--- a/java/ql/src/Security/CWE/CWE-524/SensitiveKeyboardCache.qhelp
+++ b/java/ql/src/Security/CWE/CWE-524/SensitiveKeyboardCache.qhelp
@@ -1 +1,36 @@
-todo
\ No newline at end of file
+<!DOCTYPE qhelp PUBLIC
+  "-//Semmle//qhelp//EN"
+  "qhelp.dtd">
+<qhelp>
+
+<overview>
+<p>When a user enters information to a text input field on an Android application, then by default their input is saved to a keyboard cache, 
+which provides autocomplete suggestions and predictions. If the input field is expected to contain sensitive information, such as a password or banking details, 
+this sensitive data may be leaked to other applications via the keyboard cache.</p>
+
+</overview>
+<recommendation>
+
+<p>For input fields expected to accept sensitive information, an input type such as <code>"textNoSuggestions"</code> (or <code>"textPassword"</code> for a password) 
+should be used to ensure that the input does not get stored in the keyboard cache.</p>
+
+</recommendation>
+<example>
+
+<p>In the following example, the field labeled BAD could allow the password to be saved to the keyboard cache;
+ whereas the field labeled GOOD uses the <code>"textPassword"</code> input type, which ensures that it is not.</p>
+
+<sample src="Example.xml" />
+
+</example>
+<references>
+
+<li>
+  OWASP Mobile Application Security Testing Guie: <a href="https://github.com/OWASP/owasp-mastg/blob/b7a93a2e5e0557cc9a12e55fc3f6675f6986bb86/Document/0x05d-Testing-Data-Storage.md#determining-whether-the-keyboard-cache-is-disabled-for-text-input-fields-mstg-storage-5">Determining Whether the Keyboard Cache Is Disabled for Text Input Fields</a>.
+</li>
+<li>
+  Android Developers: <a href="https://developer.android.com/reference/android/widget/TextView#attr_android:inputType"> <code>android:inputType</code> attribute documentation.
+<li>
+
+</references>
+</qhelp>
diff --git a/java/ql/src/Security/CWE/CWE-524/SensitiveKeyboardCache.ql b/java/ql/src/Security/CWE/CWE-524/SensitiveKeyboardCache.ql
index 5407b6ac854..81c98ff6598 100644
--- a/java/ql/src/Security/CWE/CWE-524/SensitiveKeyboardCache.ql
+++ b/java/ql/src/Security/CWE/CWE-524/SensitiveKeyboardCache.ql
@@ -3,9 +3,9 @@
  * @description Sensitive information should not be saved to the keyboard cache.
  * @kind problem
  * @problem.severity warning
- * @id java/android/debuggable-attribute-enabled
+ * @id java/android/sensetive-keyboard-cache
  * @tags security
- *       external/cwe/cwe-489
+ *       external/cwe/cwe-524
  * @precision high
  */
 

From 0bce1894ae0e7ac2a9560c4cd41c1ab31259f59b Mon Sep 17 00:00:00 2001
From: Joe Farebrother <joefarebrother@github.com>
Date: Wed, 5 Oct 2022 15:59:14 +0100
Subject: [PATCH 0360/1420] Remove redundant import

---
 .../semmle/code/java/security/SensitiveKeyboardCacheQuery.qll    | 1 -
 1 file changed, 1 deletion(-)

diff --git a/java/ql/lib/semmle/code/java/security/SensitiveKeyboardCacheQuery.qll b/java/ql/lib/semmle/code/java/security/SensitiveKeyboardCacheQuery.qll
index ea87b053ab1..5cb95821a14 100644
--- a/java/ql/lib/semmle/code/java/security/SensitiveKeyboardCacheQuery.qll
+++ b/java/ql/lib/semmle/code/java/security/SensitiveKeyboardCacheQuery.qll
@@ -1,7 +1,6 @@
 /** Definitions for the keyboard cache query */
 
 import java
-import semmle.code.xml.XML
 import semmle.code.java.security.SensitiveActions
 
 /** An Android Layout XML file. */

From c085c1f3ad3052c4ed0001cefe5e9fe564c8b56d Mon Sep 17 00:00:00 2001
From: Joe Farebrother <joefarebrother@github.com>
Date: Thu, 6 Oct 2022 10:15:01 +0100
Subject: [PATCH 0361/1420] Fix typos

---
 .../semmle/code/java/security/SensitiveKeyboardCacheQuery.qll | 2 +-
 java/ql/src/Security/CWE/CWE-524/SensitiveKeyboardCache.qhelp | 4 ++--
 java/ql/src/Security/CWE/CWE-524/SensitiveKeyboardCache.ql    | 4 ++--
 3 files changed, 5 insertions(+), 5 deletions(-)

diff --git a/java/ql/lib/semmle/code/java/security/SensitiveKeyboardCacheQuery.qll b/java/ql/lib/semmle/code/java/security/SensitiveKeyboardCacheQuery.qll
index 5cb95821a14..e7fa5f8209c 100644
--- a/java/ql/lib/semmle/code/java/security/SensitiveKeyboardCacheQuery.qll
+++ b/java/ql/lib/semmle/code/java/security/SensitiveKeyboardCacheQuery.qll
@@ -30,7 +30,7 @@ class AndroidEditableXmlElement extends XmlElement {
   string getId() { result = id.getValue() }
 }
 
-/** Gets a regex inidcating that an input field may contain sensitive data. */
+/** Gets a regex indicating that an input field may contain sensitive data. */
 private string getInputSensitiveInfoRegex() {
   result =
     [
diff --git a/java/ql/src/Security/CWE/CWE-524/SensitiveKeyboardCache.qhelp b/java/ql/src/Security/CWE/CWE-524/SensitiveKeyboardCache.qhelp
index 29b176b6c07..2ee1d6577c5 100644
--- a/java/ql/src/Security/CWE/CWE-524/SensitiveKeyboardCache.qhelp
+++ b/java/ql/src/Security/CWE/CWE-524/SensitiveKeyboardCache.qhelp
@@ -26,10 +26,10 @@ should be used to ensure that the input does not get stored in the keyboard cach
 <references>
 
 <li>
-  OWASP Mobile Application Security Testing Guie: <a href="https://github.com/OWASP/owasp-mastg/blob/b7a93a2e5e0557cc9a12e55fc3f6675f6986bb86/Document/0x05d-Testing-Data-Storage.md#determining-whether-the-keyboard-cache-is-disabled-for-text-input-fields-mstg-storage-5">Determining Whether the Keyboard Cache Is Disabled for Text Input Fields</a>.
+  OWASP Mobile Application Security Testing Guide: <a href="https://github.com/OWASP/owasp-mastg/blob/b7a93a2e5e0557cc9a12e55fc3f6675f6986bb86/Document/0x05d-Testing-Data-Storage.md#determining-whether-the-keyboard-cache-is-disabled-for-text-input-fields-mstg-storage-5">Determining Whether the Keyboard Cache Is Disabled for Text Input Fields</a>.
 </li>
 <li>
-  Android Developers: <a href="https://developer.android.com/reference/android/widget/TextView#attr_android:inputType"> <code>android:inputType</code> attribute documentation.
+  Android Developers: <a href="https://developer.android.com/reference/android/widget/TextView#attr_android:inputType"> <code>android:inputType</code> attribute documentation.</a>
 <li>
 
 </references>
diff --git a/java/ql/src/Security/CWE/CWE-524/SensitiveKeyboardCache.ql b/java/ql/src/Security/CWE/CWE-524/SensitiveKeyboardCache.ql
index 81c98ff6598..5a1608044d8 100644
--- a/java/ql/src/Security/CWE/CWE-524/SensitiveKeyboardCache.ql
+++ b/java/ql/src/Security/CWE/CWE-524/SensitiveKeyboardCache.ql
@@ -1,9 +1,9 @@
 /**
- * @name Android sensetive keyboard cache
+ * @name Android sensitive keyboard cache
  * @description Sensitive information should not be saved to the keyboard cache.
  * @kind problem
  * @problem.severity warning
- * @id java/android/sensetive-keyboard-cache
+ * @id java/android/sensitive-keyboard-cache
  * @tags security
  *       external/cwe/cwe-524
  * @precision high

From 775a5507a67e52f4de32fe2401f8ce7b7238289f Mon Sep 17 00:00:00 2001
From: Joe Farebrother <joefarebrother@github.com>
Date: Thu, 6 Oct 2022 11:26:41 +0100
Subject: [PATCH 0362/1420] Add security severity

---
 java/ql/src/Security/CWE/CWE-524/SensitiveKeyboardCache.ql | 1 +
 1 file changed, 1 insertion(+)

diff --git a/java/ql/src/Security/CWE/CWE-524/SensitiveKeyboardCache.ql b/java/ql/src/Security/CWE/CWE-524/SensitiveKeyboardCache.ql
index 5a1608044d8..5375aad04e0 100644
--- a/java/ql/src/Security/CWE/CWE-524/SensitiveKeyboardCache.ql
+++ b/java/ql/src/Security/CWE/CWE-524/SensitiveKeyboardCache.ql
@@ -3,6 +3,7 @@
  * @description Sensitive information should not be saved to the keyboard cache.
  * @kind problem
  * @problem.severity warning
+ * @security-severity 8.1
  * @id java/android/sensitive-keyboard-cache
  * @tags security
  *       external/cwe/cwe-524

From b4216767ad62910c1ad35bd299ed42348717b4e1 Mon Sep 17 00:00:00 2001
From: Joe Farebrother <joefarebrother@github.com>
Date: Fri, 7 Oct 2022 14:32:36 +0100
Subject: [PATCH 0363/1420] Add change note

---
 .../src/change-notes/2022-10-07-sensitive-keyboard-cache.md   | 4 ++++
 1 file changed, 4 insertions(+)
 create mode 100644 java/ql/src/change-notes/2022-10-07-sensitive-keyboard-cache.md

diff --git a/java/ql/src/change-notes/2022-10-07-sensitive-keyboard-cache.md b/java/ql/src/change-notes/2022-10-07-sensitive-keyboard-cache.md
new file mode 100644
index 00000000000..21a1652cc93
--- /dev/null
+++ b/java/ql/src/change-notes/2022-10-07-sensitive-keyboard-cache.md
@@ -0,0 +1,4 @@
+---
+category: newQuery
+---
+* Added a new query, `java/android/sensitive-keyboard-cache`, to detect instances of sensitive information possibly being saved to the keyboard cache.
\ No newline at end of file

From e6dd3673a11ebf929fb00e5ba641e8853d87f86b Mon Sep 17 00:00:00 2001
From: Joe Farebrother <joefarebrother@github.com>
Date: Fri, 7 Oct 2022 15:18:29 +0100
Subject: [PATCH 0364/1420] Fix qldoc

---
 java/ql/src/Security/CWE/CWE-524/SensitiveKeyboardCache.qhelp | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/java/ql/src/Security/CWE/CWE-524/SensitiveKeyboardCache.qhelp b/java/ql/src/Security/CWE/CWE-524/SensitiveKeyboardCache.qhelp
index 2ee1d6577c5..bef79d279a1 100644
--- a/java/ql/src/Security/CWE/CWE-524/SensitiveKeyboardCache.qhelp
+++ b/java/ql/src/Security/CWE/CWE-524/SensitiveKeyboardCache.qhelp
@@ -29,8 +29,8 @@ should be used to ensure that the input does not get stored in the keyboard cach
   OWASP Mobile Application Security Testing Guide: <a href="https://github.com/OWASP/owasp-mastg/blob/b7a93a2e5e0557cc9a12e55fc3f6675f6986bb86/Document/0x05d-Testing-Data-Storage.md#determining-whether-the-keyboard-cache-is-disabled-for-text-input-fields-mstg-storage-5">Determining Whether the Keyboard Cache Is Disabled for Text Input Fields</a>.
 </li>
 <li>
-  Android Developers: <a href="https://developer.android.com/reference/android/widget/TextView#attr_android:inputType"> <code>android:inputType</code> attribute documentation.</a>
-<li>
+  Android Developers: <a href="https://developer.android.com/reference/android/widget/TextView#attr_android:inputType">android:inputType attribute documentation.</a>
+</li>
 
 </references>
 </qhelp>

From f48b57c95ad8a40a7bbb0a4fd700d0be30b0973c Mon Sep 17 00:00:00 2001
From: Joe Farebrother <joefarebrother@github.com>
Date: Thu, 13 Oct 2022 13:23:47 +0100
Subject: [PATCH 0365/1420] Apply review suggestions

---
 .../java/security/SensitiveKeyboardCacheQuery.qll     | 11 +++++------
 .../Security/CWE/CWE-524/SensitiveKeyboardCache.ql    |  2 +-
 2 files changed, 6 insertions(+), 7 deletions(-)

diff --git a/java/ql/lib/semmle/code/java/security/SensitiveKeyboardCacheQuery.qll b/java/ql/lib/semmle/code/java/security/SensitiveKeyboardCacheQuery.qll
index e7fa5f8209c..c5d52a42eac 100644
--- a/java/ql/lib/semmle/code/java/security/SensitiveKeyboardCacheQuery.qll
+++ b/java/ql/lib/semmle/code/java/security/SensitiveKeyboardCacheQuery.qll
@@ -2,24 +2,23 @@
 
 import java
 import semmle.code.java.security.SensitiveActions
+import semmle.code.xml.AndroidManifest
 
 /** An Android Layout XML file. */
-class AndroidLayoutXmlFile extends XmlFile {
-  AndroidLayoutXmlFile() { this.getAbsolutePath().matches("%/res/layout/%.xml") }
+private class AndroidLayoutXmlFile extends XmlFile {
+  AndroidLayoutXmlFile() { this.getRelativePath().matches("%/res/layout/%.xml") }
 }
 
 /** An XML element that represents an editable text field. */
 class AndroidEditableXmlElement extends XmlElement {
-  XmlAttribute inputType;
-  XmlAttribute id;
+  AndroidXmlAttribute inputType;
+  AndroidXmlAttribute id;
 
   AndroidEditableXmlElement() {
     this.getFile() instanceof AndroidLayoutXmlFile and
     inputType = this.getAnAttribute() and
-    inputType.getNamespace().getPrefix() = "android" and
     inputType.getName() = "inputType" and
     id = this.getAnAttribute() and
-    id.getNamespace().getPrefix() = "android" and
     id.getName() = "id"
   }
 
diff --git a/java/ql/src/Security/CWE/CWE-524/SensitiveKeyboardCache.ql b/java/ql/src/Security/CWE/CWE-524/SensitiveKeyboardCache.ql
index 5375aad04e0..559695e056d 100644
--- a/java/ql/src/Security/CWE/CWE-524/SensitiveKeyboardCache.ql
+++ b/java/ql/src/Security/CWE/CWE-524/SensitiveKeyboardCache.ql
@@ -7,7 +7,7 @@
  * @id java/android/sensitive-keyboard-cache
  * @tags security
  *       external/cwe/cwe-524
- * @precision high
+ * @precision medium
  */
 
 import java

From 359d703dede438f61d5f2d8c634396ffe9c5abbe Mon Sep 17 00:00:00 2001
From: Joe Farebrother <joefarebrother@github.com>
Date: Fri, 28 Oct 2022 16:07:35 +0100
Subject: [PATCH 0366/1420] More precise layout xml handling

---
 .../security/SensitiveKeyboardCacheQuery.qll  | 40 +++++++++++++------
 .../query-tests/security/CWE-524/Test.java    |  2 +
 .../test/query-tests/security/CWE-524/options |  1 +
 3 files changed, 31 insertions(+), 12 deletions(-)
 create mode 100644 java/ql/test/query-tests/security/CWE-524/options

diff --git a/java/ql/lib/semmle/code/java/security/SensitiveKeyboardCacheQuery.qll b/java/ql/lib/semmle/code/java/security/SensitiveKeyboardCacheQuery.qll
index c5d52a42eac..df7cfb6219d 100644
--- a/java/ql/lib/semmle/code/java/security/SensitiveKeyboardCacheQuery.qll
+++ b/java/ql/lib/semmle/code/java/security/SensitiveKeyboardCacheQuery.qll
@@ -9,24 +9,40 @@ private class AndroidLayoutXmlFile extends XmlFile {
   AndroidLayoutXmlFile() { this.getRelativePath().matches("%/res/layout/%.xml") }
 }
 
-/** An XML element that represents an editable text field. */
-class AndroidEditableXmlElement extends XmlElement {
-  AndroidXmlAttribute inputType;
+/** A component declared in an Android layout file. */
+class AndroidLayoutXmlElement extends XmlElement {
   AndroidXmlAttribute id;
 
-  AndroidEditableXmlElement() {
+  AndroidLayoutXmlElement() {
     this.getFile() instanceof AndroidLayoutXmlFile and
-    inputType = this.getAnAttribute() and
-    inputType.getName() = "inputType" and
-    id = this.getAnAttribute() and
-    id.getName() = "id"
+    id = this.getAttribute("id")
   }
 
-  /** Gets the input type of this field. */
-  string getInputType() { result = inputType.getValue() }
-
-  /** Gets the ID of this field. */
+  /** Gets the ID of this component. */
   string getId() { result = id.getValue() }
+
+  /** Gets the class of this component. */
+  Class getClass() {
+    this.getName() = "view" and
+    this.getAttribute("class").getValue() = result.getQualifiedName()
+    or
+    this.getName() = result.getQualifiedName()
+    or
+    result.hasQualifiedName(["android.widget", "android.view"], this.getName())
+  }
+}
+
+/** An XML element that represents an editable text field. */
+class AndroidEditableXmlElement extends AndroidLayoutXmlElement {
+  AndroidEditableXmlElement() {
+    exists(Class editText |
+      editText.hasQualifiedName("android.widget", "EditText") and
+      editText = this.getClass().getASourceSupertype*()
+    )
+  }
+
+  /** Gets the input type of this field, if any. */
+  string getInputType() { result = this.getAttribute("inputType").(AndroidXmlAttribute).getValue() }
 }
 
 /** Gets a regex indicating that an input field may contain sensitive data. */
diff --git a/java/ql/test/query-tests/security/CWE-524/Test.java b/java/ql/test/query-tests/security/CWE-524/Test.java
index 183c3f5b3be..6bdb6d3f9f5 100644
--- a/java/ql/test/query-tests/security/CWE-524/Test.java
+++ b/java/ql/test/query-tests/security/CWE-524/Test.java
@@ -1 +1,3 @@
+import android.widget.EditText;
+
 class Test {}
\ No newline at end of file
diff --git a/java/ql/test/query-tests/security/CWE-524/options b/java/ql/test/query-tests/security/CWE-524/options
new file mode 100644
index 00000000000..126d514284a
--- /dev/null
+++ b/java/ql/test/query-tests/security/CWE-524/options
@@ -0,0 +1 @@
+//semmle-extractor-options: --javac-args -cp ${testdir}/../../../stubs/google-android-9.0.0
\ No newline at end of file

From 10a3b3bd14e755cb109506d0d3f8eb81dd271c08 Mon Sep 17 00:00:00 2001
From: Joe Farebrother <joefarebrother@github.com>
Date: Mon, 31 Oct 2022 14:41:07 +0000
Subject: [PATCH 0367/1420] Cover cases in which input type is set via code

---
 .../security/SensitiveKeyboardCacheQuery.qll  | 69 ++++++++++++++++++-
 1 file changed, 67 insertions(+), 2 deletions(-)

diff --git a/java/ql/lib/semmle/code/java/security/SensitiveKeyboardCacheQuery.qll b/java/ql/lib/semmle/code/java/security/SensitiveKeyboardCacheQuery.qll
index df7cfb6219d..1991af10ee1 100644
--- a/java/ql/lib/semmle/code/java/security/SensitiveKeyboardCacheQuery.qll
+++ b/java/ql/lib/semmle/code/java/security/SensitiveKeyboardCacheQuery.qll
@@ -1,6 +1,7 @@
 /** Definitions for the keyboard cache query */
 
 import java
+import semmle.code.java.dataflow.DataFlow
 import semmle.code.java.security.SensitiveActions
 import semmle.code.xml.AndroidManifest
 
@@ -45,6 +46,62 @@ class AndroidEditableXmlElement extends AndroidLayoutXmlElement {
   string getInputType() { result = this.getAttribute("inputType").(AndroidXmlAttribute).getValue() }
 }
 
+/** Gets a use of the view that has the given id. */
+private Expr getAUseOfId(string id) {
+  exists(string name, MethodAccess findView, NestedClass r_id, Field id_field |
+    id = "@+id/" + name and
+    findView
+        .getMethod()
+        .hasQualifiedName("android.view", "View", ["findViewById", "requireViewById"]) and
+    r_id.getEnclosingType().hasName("R") and
+    r_id.hasName("id") and
+    id_field.getDeclaringType() = r_id and
+    id_field.hasName(name)
+  |
+    DataFlow::localExprFlow(id_field.getAnAccess(), findView.getArgument(0)) and
+    result = findView
+  )
+}
+
+/** Gets the argument of a use of `setInputType` called on the view with the given id. */
+private Expr setInputTypeForId(string id) {
+  exists(MethodAccess setInputType |
+    setInputType.getMethod().hasQualifiedName("android.widget", "TextView", "setInputType") and
+    DataFlow::localExprFlow(getAUseOfId(id), setInputType.getQualifier()) and
+    result = setInputType.getArgument(0)
+  )
+}
+
+/** Holds if the given field is a constant flag indicating that an input with this type will not be cached. */
+private predicate inputTypeFieldNotCached(Field f) {
+  f.getDeclaringType().hasQualifiedName("android.text", "InputType") and
+  (
+    not f.getName().matches("%TEXT%")
+    or
+    f.getName().matches("%PASSWORD%")
+    or
+    f.getName() = "TYPE_TEXT_FLAG_NO_SUGGESTIONS"
+  )
+}
+
+/** Configuration that finds uses of `setInputType` that for non cached fields. */
+private class GoodInputTypeConf extends DataFlow::Configuration {
+  GoodInputTypeConf() { this = "GoodInputTypeConf" }
+
+  override predicate isSource(DataFlow::Node node) {
+    inputTypeFieldNotCached(node.asExpr().(FieldAccess).getField())
+  }
+
+  override predicate isSink(DataFlow::Node node) { node.asExpr() = setInputTypeForId(_) }
+
+  override predicate isAdditionalFlowStep(DataFlow::Node node1, DataFlow::Node node2) {
+    exists(OrBitwiseExpr bitOr |
+      node1.asExpr() = bitOr.getAChildExpr() and
+      node2.asExpr() = bitOr
+    )
+  }
+}
+
 /** Gets a regex indicating that an input field may contain sensitive data. */
 private string getInputSensitiveInfoRegex() {
   result =
@@ -54,7 +111,7 @@ private string getInputSensitiveInfoRegex() {
     ]
 }
 
-/** Holds if input using the given input type may be stored in the keyboard cache. */
+/** Holds if input using the given input type (as written in XML) may be stored in the keyboard cache. */
 bindingset[ty]
 private predicate inputTypeCached(string ty) {
   ty.matches("%text%") and
@@ -64,5 +121,13 @@ private predicate inputTypeCached(string ty) {
 /** Gets an input field whose contents may be sensitive and may be stored in the keyboard cache. */
 AndroidEditableXmlElement getASensitiveCachedInput() {
   result.getId().regexpMatch(getInputSensitiveInfoRegex()) and
-  inputTypeCached(result.getInputType())
+  (
+    inputTypeCached(result.getInputType())
+    or
+    not exists(result.getInputType()) and
+    not exists(GoodInputTypeConf conf, DataFlow::Node src, DataFlow::Node sink |
+      conf.hasFlow(src, sink) and
+      sink.asExpr() = setInputTypeForId(result.getId())
+    )
+  )
 }

From dd4e1d0ac3b90a5e889fc825a183d65b8959037a Mon Sep 17 00:00:00 2001
From: Joe Farebrother <joefarebrother@github.com>
Date: Mon, 31 Oct 2022 16:08:28 +0000
Subject: [PATCH 0368/1420] Add tests and fix issues

---
 .../security/SensitiveKeyboardCacheQuery.qll     | 16 +++++++++++++---
 .../CWE/CWE-524/SensitiveKeyboardCache.qhelp     |  2 +-
 java/ql/test/query-tests/security/CWE-524/R.java |  8 ++++++++
 .../test/query-tests/security/CWE-524/Test.java  | 15 ++++++++++++++-
 .../security/CWE-524/res/layout/Test.xml         |  9 +++++++++
 .../android/app/Activity.java                    |  4 ++++
 6 files changed, 49 insertions(+), 5 deletions(-)
 create mode 100644 java/ql/test/query-tests/security/CWE-524/R.java

diff --git a/java/ql/lib/semmle/code/java/security/SensitiveKeyboardCacheQuery.qll b/java/ql/lib/semmle/code/java/security/SensitiveKeyboardCacheQuery.qll
index 1991af10ee1..4937d397b63 100644
--- a/java/ql/lib/semmle/code/java/security/SensitiveKeyboardCacheQuery.qll
+++ b/java/ql/lib/semmle/code/java/security/SensitiveKeyboardCacheQuery.qll
@@ -46,13 +46,23 @@ class AndroidEditableXmlElement extends AndroidLayoutXmlElement {
   string getInputType() { result = this.getAttribute("inputType").(AndroidXmlAttribute).getValue() }
 }
 
+/** A `findViewById` or `requireViewById` method on `Activity` or `View`. */
+private class FindViewMethod extends Method {
+  FindViewMethod() {
+    hasQualifiedName("android.view", "View", ["findViewById", "requireViewById"])
+    or
+    exists(Method m |
+      m.hasQualifiedName("android.app", "Activity", ["findViewById", "requireViewById"]) and
+      this = m.getAnOverride*()
+    )
+  }
+}
+
 /** Gets a use of the view that has the given id. */
 private Expr getAUseOfId(string id) {
   exists(string name, MethodAccess findView, NestedClass r_id, Field id_field |
     id = "@+id/" + name and
-    findView
-        .getMethod()
-        .hasQualifiedName("android.view", "View", ["findViewById", "requireViewById"]) and
+    findView.getMethod() instanceof FindViewMethod and
     r_id.getEnclosingType().hasName("R") and
     r_id.hasName("id") and
     id_field.getDeclaringType() = r_id and
diff --git a/java/ql/src/Security/CWE/CWE-524/SensitiveKeyboardCache.qhelp b/java/ql/src/Security/CWE/CWE-524/SensitiveKeyboardCache.qhelp
index bef79d279a1..072506410bf 100644
--- a/java/ql/src/Security/CWE/CWE-524/SensitiveKeyboardCache.qhelp
+++ b/java/ql/src/Security/CWE/CWE-524/SensitiveKeyboardCache.qhelp
@@ -13,7 +13,7 @@ this sensitive data may be leaked to other applications via the keyboard cache.<
 
 <p>For input fields expected to accept sensitive information, an input type such as <code>"textNoSuggestions"</code> (or <code>"textPassword"</code> for a password) 
 should be used to ensure that the input does not get stored in the keyboard cache.</p>
-
+<p>The input type can also be set in code through <code>TextView.setInputType()</code> rather than declared through XML.</p>
 </recommendation>
 <example>
 
diff --git a/java/ql/test/query-tests/security/CWE-524/R.java b/java/ql/test/query-tests/security/CWE-524/R.java
new file mode 100644
index 00000000000..46eb99e1b7b
--- /dev/null
+++ b/java/ql/test/query-tests/security/CWE-524/R.java
@@ -0,0 +1,8 @@
+package com.example.test;
+
+public final class R {
+    public static final class id {
+        public static final int test7_password = 1;
+        public static final int test8_password = 2;
+    }
+}
\ No newline at end of file
diff --git a/java/ql/test/query-tests/security/CWE-524/Test.java b/java/ql/test/query-tests/security/CWE-524/Test.java
index 6bdb6d3f9f5..0ceff44adde 100644
--- a/java/ql/test/query-tests/security/CWE-524/Test.java
+++ b/java/ql/test/query-tests/security/CWE-524/Test.java
@@ -1,3 +1,16 @@
+package com.example.test;
+import android.app.Activity;
+import android.os.Bundle;
 import android.widget.EditText;
+import android.view.View;
+import android.text.InputType;
 
-class Test {}
\ No newline at end of file
+class Test extends Activity {
+    public void onCreate(Bundle b) {
+        EditText test7pw = findViewById(R.id.test7_password);
+        test7pw.setInputType(InputType.TYPE_CLASS_TEXT | InputType.TYPE_TEXT_FLAG_NO_SUGGESTIONS);
+
+        EditText test8pw = requireViewById(R.id.test8_password);
+        test8pw.setInputType(InputType.TYPE_CLASS_TEXT | InputType.TYPE_TEXT_VARIATION_PASSWORD);
+    }
+}
\ No newline at end of file
diff --git a/java/ql/test/query-tests/security/CWE-524/res/layout/Test.xml b/java/ql/test/query-tests/security/CWE-524/res/layout/Test.xml
index 11f379a7005..107c13dd306 100644
--- a/java/ql/test/query-tests/security/CWE-524/res/layout/Test.xml
+++ b/java/ql/test/query-tests/security/CWE-524/res/layout/Test.xml
@@ -23,4 +23,13 @@
     <!-- $hasResult --> <EditText
         android:id="@+id/test5_bank_account_name"
         android:inputType="textMultiLine"/>  
+
+    <!-- $hasResult --> <EditText
+        android:id="@+id/test6_password"/>  
+
+    <EditText
+        android:id="@+id/test7_password"/>  
+
+    <EditText
+        android:id="@+id/test8_password"/>  
 </LinearLayout>
\ No newline at end of file
diff --git a/java/ql/test/stubs/google-android-9.0.0/android/app/Activity.java b/java/ql/test/stubs/google-android-9.0.0/android/app/Activity.java
index cad1d58cad5..f292c6b1168 100644
--- a/java/ql/test/stubs/google-android-9.0.0/android/app/Activity.java
+++ b/java/ql/test/stubs/google-android-9.0.0/android/app/Activity.java
@@ -488,4 +488,8 @@ public class Activity extends ContextWrapper {
     public <T extends View> T findViewById(int id) {
         return null;
     }
+
+    public <T extends View> T requireViewById(int id) {
+        return null;
+    }
 }

From 63f715e650ba06ee8a37c4a34e7e883591e15fb0 Mon Sep 17 00:00:00 2001
From: Joe Farebrother <joefarebrother@github.com>
Date: Tue, 1 Nov 2022 11:29:09 +0000
Subject: [PATCH 0369/1420] fix implicit this

---
 .../semmle/code/java/security/SensitiveKeyboardCacheQuery.qll   | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/java/ql/lib/semmle/code/java/security/SensitiveKeyboardCacheQuery.qll b/java/ql/lib/semmle/code/java/security/SensitiveKeyboardCacheQuery.qll
index 4937d397b63..d2d75b49bd0 100644
--- a/java/ql/lib/semmle/code/java/security/SensitiveKeyboardCacheQuery.qll
+++ b/java/ql/lib/semmle/code/java/security/SensitiveKeyboardCacheQuery.qll
@@ -49,7 +49,7 @@ class AndroidEditableXmlElement extends AndroidLayoutXmlElement {
 /** A `findViewById` or `requireViewById` method on `Activity` or `View`. */
 private class FindViewMethod extends Method {
   FindViewMethod() {
-    hasQualifiedName("android.view", "View", ["findViewById", "requireViewById"])
+    this.hasQualifiedName("android.view", "View", ["findViewById", "requireViewById"])
     or
     exists(Method m |
       m.hasQualifiedName("android.app", "Activity", ["findViewById", "requireViewById"]) and

From 6d465aaf52e88a34efd38ebbd713e7eeabd0bd86 Mon Sep 17 00:00:00 2001
From: Joe Farebrother <joefarebrother@github.com>
Date: Tue, 8 Nov 2022 14:55:13 +0000
Subject: [PATCH 0370/1420] Apply code review suggestions

---
 .../security/SensitiveKeyboardCacheQuery.qll  | 22 ++++++++-----------
 1 file changed, 9 insertions(+), 13 deletions(-)

diff --git a/java/ql/lib/semmle/code/java/security/SensitiveKeyboardCacheQuery.qll b/java/ql/lib/semmle/code/java/security/SensitiveKeyboardCacheQuery.qll
index d2d75b49bd0..12c44b50f49 100644
--- a/java/ql/lib/semmle/code/java/security/SensitiveKeyboardCacheQuery.qll
+++ b/java/ql/lib/semmle/code/java/security/SensitiveKeyboardCacheQuery.qll
@@ -36,10 +36,7 @@ class AndroidLayoutXmlElement extends XmlElement {
 /** An XML element that represents an editable text field. */
 class AndroidEditableXmlElement extends AndroidLayoutXmlElement {
   AndroidEditableXmlElement() {
-    exists(Class editText |
-      editText.hasQualifiedName("android.widget", "EditText") and
-      editText = this.getClass().getASourceSupertype*()
-    )
+    this.getClass().getASourceSupertype*().hasQualifiedName("android.widget", "EditText")
   }
 
   /** Gets the input type of this field, if any. */
@@ -59,25 +56,24 @@ private class FindViewMethod extends Method {
 }
 
 /** Gets a use of the view that has the given id. */
-private Expr getAUseOfId(string id) {
-  exists(string name, MethodAccess findView, NestedClass r_id, Field id_field |
+private MethodAccess getAUseOfViewWithId(string id) {
+  exists(string name, NestedClass r_id, Field id_field |
     id = "@+id/" + name and
-    findView.getMethod() instanceof FindViewMethod and
+    result.getMethod() instanceof FindViewMethod and
     r_id.getEnclosingType().hasName("R") and
     r_id.hasName("id") and
     id_field.getDeclaringType() = r_id and
     id_field.hasName(name)
   |
-    DataFlow::localExprFlow(id_field.getAnAccess(), findView.getArgument(0)) and
-    result = findView
+    DataFlow::localExprFlow(id_field.getAnAccess(), result.getArgument(0))
   )
 }
 
 /** Gets the argument of a use of `setInputType` called on the view with the given id. */
-private Expr setInputTypeForId(string id) {
+private Argument setInputTypeForId(string id) {
   exists(MethodAccess setInputType |
     setInputType.getMethod().hasQualifiedName("android.widget", "TextView", "setInputType") and
-    DataFlow::localExprFlow(getAUseOfId(id), setInputType.getQualifier()) and
+    DataFlow::localExprFlow(getAUseOfViewWithId(id), setInputType.getQualifier()) and
     result = setInputType.getArgument(0)
   )
 }
@@ -90,11 +86,11 @@ private predicate inputTypeFieldNotCached(Field f) {
     or
     f.getName().matches("%PASSWORD%")
     or
-    f.getName() = "TYPE_TEXT_FLAG_NO_SUGGESTIONS"
+    f.hasName("TYPE_TEXT_FLAG_NO_SUGGESTIONS")
   )
 }
 
-/** Configuration that finds uses of `setInputType` that for non cached fields. */
+/** Configuration that finds uses of `setInputType` for non cached fields. */
 private class GoodInputTypeConf extends DataFlow::Configuration {
   GoodInputTypeConf() { this = "GoodInputTypeConf" }
 

From 7ae41ff1659091481bb074b0e8a3d91ced6226ba Mon Sep 17 00:00:00 2001
From: Joe Farebrother <joefarebrother@github.com>
Date: Tue, 8 Nov 2022 16:33:42 +0000
Subject: [PATCH 0371/1420] Invert the xml logic to be consistent with the
 dataflow logic

---
 .../java/security/SensitiveKeyboardCacheQuery.qll   | 13 ++++++-------
 1 file changed, 6 insertions(+), 7 deletions(-)

diff --git a/java/ql/lib/semmle/code/java/security/SensitiveKeyboardCacheQuery.qll b/java/ql/lib/semmle/code/java/security/SensitiveKeyboardCacheQuery.qll
index 12c44b50f49..e7b5112a44a 100644
--- a/java/ql/lib/semmle/code/java/security/SensitiveKeyboardCacheQuery.qll
+++ b/java/ql/lib/semmle/code/java/security/SensitiveKeyboardCacheQuery.qll
@@ -117,20 +117,19 @@ private string getInputSensitiveInfoRegex() {
     ]
 }
 
-/** Holds if input using the given input type (as written in XML) may be stored in the keyboard cache. */
+/** Holds if input using the given input type (as written in XML) is not stored in the keyboard cache. */
 bindingset[ty]
-private predicate inputTypeCached(string ty) {
-  ty.matches("%text%") and
-  not ty.regexpMatch("(?i).*(nosuggestions|password).*")
+private predicate inputTypeNotCached(string ty) {
+  not ty.matches("%text%")
+  or
+  ty.regexpMatch("(?i).*(nosuggestions|password).*")
 }
 
 /** Gets an input field whose contents may be sensitive and may be stored in the keyboard cache. */
 AndroidEditableXmlElement getASensitiveCachedInput() {
   result.getId().regexpMatch(getInputSensitiveInfoRegex()) and
   (
-    inputTypeCached(result.getInputType())
-    or
-    not exists(result.getInputType()) and
+    not inputTypeNotCached(result.getInputType()) and
     not exists(GoodInputTypeConf conf, DataFlow::Node src, DataFlow::Node sink |
       conf.hasFlow(src, sink) and
       sink.asExpr() = setInputTypeForId(result.getId())

From 255123cbf9285694438d5e61b5e0e72d690da166 Mon Sep 17 00:00:00 2001
From: Joe Farebrother <joefarebrother@github.com>
Date: Tue, 15 Nov 2022 16:57:48 +0000
Subject: [PATCH 0372/1420] Apply suggestions from docs review

Co-authored-by: Sam Browning <106113886+sabrowning1@users.noreply.github.com>
---
 .../Security/CWE/CWE-524/SensitiveKeyboardCache.qhelp | 11 ++++-------
 .../Security/CWE/CWE-524/SensitiveKeyboardCache.ql    |  2 +-
 2 files changed, 5 insertions(+), 8 deletions(-)

diff --git a/java/ql/src/Security/CWE/CWE-524/SensitiveKeyboardCache.qhelp b/java/ql/src/Security/CWE/CWE-524/SensitiveKeyboardCache.qhelp
index 072506410bf..6b0b5eb96f6 100644
--- a/java/ql/src/Security/CWE/CWE-524/SensitiveKeyboardCache.qhelp
+++ b/java/ql/src/Security/CWE/CWE-524/SensitiveKeyboardCache.qhelp
@@ -4,21 +4,18 @@
 <qhelp>
 
 <overview>
-<p>When a user enters information to a text input field on an Android application, then by default their input is saved to a keyboard cache, 
-which provides autocomplete suggestions and predictions. If the input field is expected to contain sensitive information, such as a password or banking details, 
-this sensitive data may be leaked to other applications via the keyboard cache.</p>
+<p>When a user enters information in a text input field on an Android application, their input is saved to a keyboard cache which provides autocomplete suggestions and predictions. There is a risk that sensitive user data, such as passwords or banking information, may be leaked to other applications via the keyboard cache.</p>
 
 </overview>
 <recommendation>
 
-<p>For input fields expected to accept sensitive information, an input type such as <code>"textNoSuggestions"</code> (or <code>"textPassword"</code> for a password) 
-should be used to ensure that the input does not get stored in the keyboard cache.</p>
+<p>For input fields expected to accept sensitive information, use input types such as <code>"textNoSuggestions"</code> (or <code>"textPassword"</code> for a password) to ensure the input does not get stored in the keyboard cache.</p>
 <p>The input type can also be set in code through <code>TextView.setInputType()</code> rather than declared through XML.</p>
 </recommendation>
 <example>
 
-<p>In the following example, the field labeled BAD could allow the password to be saved to the keyboard cache;
- whereas the field labeled GOOD uses the <code>"textPassword"</code> input type, which ensures that it is not.</p>
+<p>In the following example, the field labeled BAD allows the password to be saved to the keyboard cache,
+ whereas the field labeled GOOD uses the <code>"textPassword"</code> input type to ensure the password is not cached.</p>
 
 <sample src="Example.xml" />
 
diff --git a/java/ql/src/Security/CWE/CWE-524/SensitiveKeyboardCache.ql b/java/ql/src/Security/CWE/CWE-524/SensitiveKeyboardCache.ql
index 559695e056d..d5a7bc50c05 100644
--- a/java/ql/src/Security/CWE/CWE-524/SensitiveKeyboardCache.ql
+++ b/java/ql/src/Security/CWE/CWE-524/SensitiveKeyboardCache.ql
@@ -1,6 +1,6 @@
 /**
  * @name Android sensitive keyboard cache
- * @description Sensitive information should not be saved to the keyboard cache.
+ * @description Allowing the keyboard to cache sensitive information may result in information leaks to other applications.
  * @kind problem
  * @problem.severity warning
  * @security-severity 8.1

From cc960377acb6b697f1b7fbaff3b40374c380acd6 Mon Sep 17 00:00:00 2001
From: Joe Farebrother <joefarebrother@github.com>
Date: Wed, 16 Nov 2022 10:53:40 +0000
Subject: [PATCH 0373/1420] Apply suggestion from docs review

Co-authored-by: Sam Browning <106113886+sabrowning1@users.noreply.github.com>
---
 java/ql/src/Security/CWE/CWE-524/SensitiveKeyboardCache.qhelp | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/java/ql/src/Security/CWE/CWE-524/SensitiveKeyboardCache.qhelp b/java/ql/src/Security/CWE/CWE-524/SensitiveKeyboardCache.qhelp
index 6b0b5eb96f6..7a16bbd6f80 100644
--- a/java/ql/src/Security/CWE/CWE-524/SensitiveKeyboardCache.qhelp
+++ b/java/ql/src/Security/CWE/CWE-524/SensitiveKeyboardCache.qhelp
@@ -10,7 +10,7 @@
 <recommendation>
 
 <p>For input fields expected to accept sensitive information, use input types such as <code>"textNoSuggestions"</code> (or <code>"textPassword"</code> for a password) to ensure the input does not get stored in the keyboard cache.</p>
-<p>The input type can also be set in code through <code>TextView.setInputType()</code> rather than declared through XML.</p>
+<p>Optionally, instead of declaring an input type through XML, you can set the input type in your code using <code>TextView.setInputType()</code>.</p>
 </recommendation>
 <example>
 

From 55dc929a1fc50e662b89b2b5c8f1cf52d003b43c Mon Sep 17 00:00:00 2001
From: Tamas Vajk <tamasvajk@github.com>
Date: Wed, 16 Nov 2022 11:57:05 +0100
Subject: [PATCH 0374/1420] Kotlin: Add test case for confusing overloading
 query

---
 .../ConfusingOverloading.expected}                          | 0
 .../ConfusingOverloading.qlref}                             | 0
 .../Test.kt                                                 | 6 ++++++
 3 files changed, 6 insertions(+)
 rename java/ql/test/kotlin/query-tests/{ConfusingMethodSignature/ConfusingMethodSignature.expected => ConfusingOverloading/ConfusingOverloading.expected} (100%)
 rename java/ql/test/kotlin/query-tests/{ConfusingMethodSignature/ConfusingMethodSignature.qlref => ConfusingOverloading/ConfusingOverloading.qlref} (100%)
 rename java/ql/test/kotlin/query-tests/{ConfusingMethodSignature => ConfusingOverloading}/Test.kt (78%)

diff --git a/java/ql/test/kotlin/query-tests/ConfusingMethodSignature/ConfusingMethodSignature.expected b/java/ql/test/kotlin/query-tests/ConfusingOverloading/ConfusingOverloading.expected
similarity index 100%
rename from java/ql/test/kotlin/query-tests/ConfusingMethodSignature/ConfusingMethodSignature.expected
rename to java/ql/test/kotlin/query-tests/ConfusingOverloading/ConfusingOverloading.expected
diff --git a/java/ql/test/kotlin/query-tests/ConfusingMethodSignature/ConfusingMethodSignature.qlref b/java/ql/test/kotlin/query-tests/ConfusingOverloading/ConfusingOverloading.qlref
similarity index 100%
rename from java/ql/test/kotlin/query-tests/ConfusingMethodSignature/ConfusingMethodSignature.qlref
rename to java/ql/test/kotlin/query-tests/ConfusingOverloading/ConfusingOverloading.qlref
diff --git a/java/ql/test/kotlin/query-tests/ConfusingMethodSignature/Test.kt b/java/ql/test/kotlin/query-tests/ConfusingOverloading/Test.kt
similarity index 78%
rename from java/ql/test/kotlin/query-tests/ConfusingMethodSignature/Test.kt
rename to java/ql/test/kotlin/query-tests/ConfusingOverloading/Test.kt
index b802d9f76a0..37dbe32f378 100644
--- a/java/ql/test/kotlin/query-tests/ConfusingMethodSignature/Test.kt
+++ b/java/ql/test/kotlin/query-tests/ConfusingOverloading/Test.kt
@@ -12,3 +12,9 @@ class A {
     fun <T : Any> fn(value: T, i: Int = 1) {}
     fun fn(value: String, i: Int = 1) {}
 }
+
+class Foo {
+    val str by lazy {
+        "someString"
+    }
+}

From bafb9ae0201a612de0864227580be70e365c0650 Mon Sep 17 00:00:00 2001
From: Paolo Tranquilli <redsun82@github.com>
Date: Wed, 16 Nov 2022 12:00:26 +0100
Subject: [PATCH 0375/1420] Swift: add upgrade/downgrade scripts

---
 .../old.dbscheme                              | 2478 ++++++++++++++++
 .../swift.dbscheme                            | 2493 +++++++++++++++++
 .../upgrade.properties                        |    2 +
 .../old.dbscheme                              | 2493 +++++++++++++++++
 .../swift.dbscheme                            | 2478 ++++++++++++++++
 .../upgrade.properties                        |    5 +
 6 files changed, 9949 insertions(+)
 create mode 100644 swift/downgrades/abbb8c9e8408841c2bc12e3deb2305f062f5399e/old.dbscheme
 create mode 100644 swift/downgrades/abbb8c9e8408841c2bc12e3deb2305f062f5399e/swift.dbscheme
 create mode 100644 swift/downgrades/abbb8c9e8408841c2bc12e3deb2305f062f5399e/upgrade.properties
 create mode 100644 swift/ql/lib/upgrades/ceca289a0ff56bcc88f72ad78a8fbff1d850922f/old.dbscheme
 create mode 100644 swift/ql/lib/upgrades/ceca289a0ff56bcc88f72ad78a8fbff1d850922f/swift.dbscheme
 create mode 100644 swift/ql/lib/upgrades/ceca289a0ff56bcc88f72ad78a8fbff1d850922f/upgrade.properties

diff --git a/swift/downgrades/abbb8c9e8408841c2bc12e3deb2305f062f5399e/old.dbscheme b/swift/downgrades/abbb8c9e8408841c2bc12e3deb2305f062f5399e/old.dbscheme
new file mode 100644
index 00000000000..abbb8c9e840
--- /dev/null
+++ b/swift/downgrades/abbb8c9e8408841c2bc12e3deb2305f062f5399e/old.dbscheme
@@ -0,0 +1,2478 @@
+// generated by codegen/codegen.py
+
+// from prefix.dbscheme
+/**
+ * The source location of the snapshot.
+ */
+sourceLocationPrefix(
+  string prefix: string ref
+);
+
+
+// from schema.py
+
+@element =
+  @callable
+| @file
+| @generic_context
+| @iterable_decl_context
+| @locatable
+| @location
+| @type
+;
+
+#keyset[id]
+element_is_unknown(
+  int id: @element ref
+);
+
+@callable =
+  @abstract_closure_expr
+| @abstract_function_decl
+;
+
+#keyset[id]
+callable_self_params(
+  int id: @callable ref,
+  int self_param: @param_decl_or_none ref
+);
+
+#keyset[id, index]
+callable_params(
+  int id: @callable ref,
+  int index: int ref,
+  int param: @param_decl_or_none ref
+);
+
+#keyset[id]
+callable_bodies(
+  int id: @callable ref,
+  int body: @brace_stmt_or_none ref
+);
+
+@file =
+  @db_file
+;
+
+#keyset[id]
+files(
+  int id: @file ref,
+  string name: string ref
+);
+
+@locatable =
+  @argument
+| @ast_node
+| @comment
+| @diagnostics
+| @error_element
+;
+
+#keyset[id]
+locatable_locations(
+  int id: @locatable ref,
+  int location: @location_or_none ref
+);
+
+@location =
+  @db_location
+;
+
+#keyset[id]
+locations(
+  int id: @location ref,
+  int file: @file_or_none ref,
+  int start_line: int ref,
+  int start_column: int ref,
+  int end_line: int ref,
+  int end_column: int ref
+);
+
+@ast_node =
+  @case_label_item
+| @condition_element
+| @decl
+| @expr
+| @pattern
+| @stmt
+| @stmt_condition
+| @type_repr
+;
+
+comments(
+  unique int id: @comment,
+  string text: string ref
+);
+
+db_files(
+  unique int id: @db_file
+);
+
+db_locations(
+  unique int id: @db_location
+);
+
+diagnostics(
+  unique int id: @diagnostics,
+  string text: string ref,
+  int kind: int ref
+);
+
+@error_element =
+  @error_expr
+| @error_type
+| @overloaded_decl_ref_expr
+| @unresolved_decl_ref_expr
+| @unresolved_dot_expr
+| @unresolved_member_chain_result_expr
+| @unresolved_member_expr
+| @unresolved_pattern_expr
+| @unresolved_specialize_expr
+| @unresolved_type
+| @unresolved_type_conversion_expr
+| @unspecified_element
+;
+
+unspecified_elements(
+  unique int id: @unspecified_element,
+  string property: string ref,
+  string error: string ref
+);
+
+#keyset[id]
+unspecified_element_parents(
+  int id: @unspecified_element ref,
+  int parent: @element ref
+);
+
+#keyset[id]
+unspecified_element_indices(
+  int id: @unspecified_element ref,
+  int index: int ref
+);
+
+@decl =
+  @enum_case_decl
+| @extension_decl
+| @if_config_decl
+| @import_decl
+| @missing_member_decl
+| @operator_decl
+| @pattern_binding_decl
+| @pound_diagnostic_decl
+| @precedence_group_decl
+| @top_level_code_decl
+| @value_decl
+;
+
+#keyset[id]
+decls(  //dir=decl
+  int id: @decl ref,
+  int module: @module_decl_or_none ref
+);
+
+@generic_context =
+  @abstract_function_decl
+| @extension_decl
+| @generic_type_decl
+| @subscript_decl
+;
+
+#keyset[id, index]
+generic_context_generic_type_params(  //dir=decl
+  int id: @generic_context ref,
+  int index: int ref,
+  int generic_type_param: @generic_type_param_decl_or_none ref
+);
+
+@iterable_decl_context =
+  @extension_decl
+| @nominal_type_decl
+;
+
+#keyset[id, index]
+iterable_decl_context_members(  //dir=decl
+  int id: @iterable_decl_context ref,
+  int index: int ref,
+  int member: @decl_or_none ref
+);
+
+enum_case_decls(  //dir=decl
+  unique int id: @enum_case_decl
+);
+
+#keyset[id, index]
+enum_case_decl_elements(  //dir=decl
+  int id: @enum_case_decl ref,
+  int index: int ref,
+  int element: @enum_element_decl_or_none ref
+);
+
+extension_decls(  //dir=decl
+  unique int id: @extension_decl,
+  int extended_type_decl: @nominal_type_decl_or_none ref
+);
+
+if_config_decls(  //dir=decl
+  unique int id: @if_config_decl
+);
+
+#keyset[id, index]
+if_config_decl_active_elements(  //dir=decl
+  int id: @if_config_decl ref,
+  int index: int ref,
+  int active_element: @ast_node_or_none ref
+);
+
+import_decls(  //dir=decl
+  unique int id: @import_decl
+);
+
+#keyset[id]
+import_decl_is_exported(  //dir=decl
+  int id: @import_decl ref
+);
+
+#keyset[id]
+import_decl_imported_modules(  //dir=decl
+  int id: @import_decl ref,
+  int imported_module: @module_decl_or_none ref
+);
+
+#keyset[id, index]
+import_decl_declarations(  //dir=decl
+  int id: @import_decl ref,
+  int index: int ref,
+  int declaration: @value_decl_or_none ref
+);
+
+missing_member_decls(  //dir=decl
+  unique int id: @missing_member_decl,
+  string name: string ref
+);
+
+@operator_decl =
+  @infix_operator_decl
+| @postfix_operator_decl
+| @prefix_operator_decl
+;
+
+#keyset[id]
+operator_decls(  //dir=decl
+  int id: @operator_decl ref,
+  string name: string ref
+);
+
+pattern_binding_decls(  //dir=decl
+  unique int id: @pattern_binding_decl
+);
+
+#keyset[id, index]
+pattern_binding_decl_inits(  //dir=decl
+  int id: @pattern_binding_decl ref,
+  int index: int ref,
+  int init: @expr_or_none ref
+);
+
+#keyset[id, index]
+pattern_binding_decl_patterns(  //dir=decl
+  int id: @pattern_binding_decl ref,
+  int index: int ref,
+  int pattern: @pattern_or_none ref
+);
+
+pound_diagnostic_decls(  //dir=decl
+  unique int id: @pound_diagnostic_decl,
+  int kind: int ref,
+  int message: @string_literal_expr_or_none ref
+);
+
+precedence_group_decls(  //dir=decl
+  unique int id: @precedence_group_decl
+);
+
+top_level_code_decls(  //dir=decl
+  unique int id: @top_level_code_decl,
+  int body: @brace_stmt_or_none ref
+);
+
+@value_decl =
+  @abstract_function_decl
+| @abstract_storage_decl
+| @enum_element_decl
+| @type_decl
+;
+
+#keyset[id]
+value_decls(  //dir=decl
+  int id: @value_decl ref,
+  int interface_type: @type_or_none ref
+);
+
+@abstract_function_decl =
+  @constructor_decl
+| @destructor_decl
+| @func_decl
+;
+
+#keyset[id]
+abstract_function_decls(  //dir=decl
+  int id: @abstract_function_decl ref,
+  string name: string ref
+);
+
+@abstract_storage_decl =
+  @subscript_decl
+| @var_decl
+;
+
+#keyset[id, index]
+abstract_storage_decl_accessor_decls(  //dir=decl
+  int id: @abstract_storage_decl ref,
+  int index: int ref,
+  int accessor_decl: @accessor_decl_or_none ref
+);
+
+enum_element_decls(  //dir=decl
+  unique int id: @enum_element_decl,
+  string name: string ref
+);
+
+#keyset[id, index]
+enum_element_decl_params(  //dir=decl
+  int id: @enum_element_decl ref,
+  int index: int ref,
+  int param: @param_decl_or_none ref
+);
+
+infix_operator_decls(  //dir=decl
+  unique int id: @infix_operator_decl
+);
+
+#keyset[id]
+infix_operator_decl_precedence_groups(  //dir=decl
+  int id: @infix_operator_decl ref,
+  int precedence_group: @precedence_group_decl_or_none ref
+);
+
+postfix_operator_decls(  //dir=decl
+  unique int id: @postfix_operator_decl
+);
+
+prefix_operator_decls(  //dir=decl
+  unique int id: @prefix_operator_decl
+);
+
+@type_decl =
+  @abstract_type_param_decl
+| @generic_type_decl
+| @module_decl
+;
+
+#keyset[id]
+type_decls(  //dir=decl
+  int id: @type_decl ref,
+  string name: string ref
+);
+
+#keyset[id, index]
+type_decl_base_types(  //dir=decl
+  int id: @type_decl ref,
+  int index: int ref,
+  int base_type: @type_or_none ref
+);
+
+@abstract_type_param_decl =
+  @associated_type_decl
+| @generic_type_param_decl
+;
+
+constructor_decls(  //dir=decl
+  unique int id: @constructor_decl
+);
+
+destructor_decls(  //dir=decl
+  unique int id: @destructor_decl
+);
+
+@func_decl =
+  @accessor_decl
+| @concrete_func_decl
+;
+
+@generic_type_decl =
+  @nominal_type_decl
+| @opaque_type_decl
+| @type_alias_decl
+;
+
+module_decls(  //dir=decl
+  unique int id: @module_decl
+);
+
+#keyset[id]
+module_decl_is_builtin_module(  //dir=decl
+  int id: @module_decl ref
+);
+
+#keyset[id]
+module_decl_is_system_module(  //dir=decl
+  int id: @module_decl ref
+);
+
+#keyset[id, index]
+module_decl_imported_modules(  //dir=decl
+  int id: @module_decl ref,
+  int index: int ref,
+  int imported_module: @module_decl_or_none ref
+);
+
+#keyset[id, index]
+module_decl_exported_modules(  //dir=decl
+  int id: @module_decl ref,
+  int index: int ref,
+  int exported_module: @module_decl_or_none ref
+);
+
+subscript_decls(  //dir=decl
+  unique int id: @subscript_decl,
+  int element_type: @type_or_none ref
+);
+
+#keyset[id, index]
+subscript_decl_params(  //dir=decl
+  int id: @subscript_decl ref,
+  int index: int ref,
+  int param: @param_decl_or_none ref
+);
+
+@var_decl =
+  @concrete_var_decl
+| @param_decl
+;
+
+#keyset[id]
+var_decls(  //dir=decl
+  int id: @var_decl ref,
+  string name: string ref,
+  int type_: @type_or_none ref
+);
+
+#keyset[id]
+var_decl_attached_property_wrapper_types(  //dir=decl
+  int id: @var_decl ref,
+  int attached_property_wrapper_type: @type_or_none ref
+);
+
+#keyset[id]
+var_decl_parent_patterns(  //dir=decl
+  int id: @var_decl ref,
+  int parent_pattern: @pattern_or_none ref
+);
+
+#keyset[id]
+var_decl_parent_initializers(  //dir=decl
+  int id: @var_decl ref,
+  int parent_initializer: @expr_or_none ref
+);
+
+#keyset[id]
+var_decl_property_wrapper_backing_var_bindings(  //dir=decl
+  int id: @var_decl ref,
+  int property_wrapper_backing_var_binding: @pattern_binding_decl_or_none ref
+);
+
+#keyset[id]
+var_decl_property_wrapper_backing_vars(  //dir=decl
+  int id: @var_decl ref,
+  int property_wrapper_backing_var: @var_decl_or_none ref
+);
+
+#keyset[id]
+var_decl_property_wrapper_projection_var_bindings(  //dir=decl
+  int id: @var_decl ref,
+  int property_wrapper_projection_var_binding: @pattern_binding_decl_or_none ref
+);
+
+#keyset[id]
+var_decl_property_wrapper_projection_vars(  //dir=decl
+  int id: @var_decl ref,
+  int property_wrapper_projection_var: @var_decl_or_none ref
+);
+
+accessor_decls(  //dir=decl
+  unique int id: @accessor_decl
+);
+
+#keyset[id]
+accessor_decl_is_getter(  //dir=decl
+  int id: @accessor_decl ref
+);
+
+#keyset[id]
+accessor_decl_is_setter(  //dir=decl
+  int id: @accessor_decl ref
+);
+
+#keyset[id]
+accessor_decl_is_will_set(  //dir=decl
+  int id: @accessor_decl ref
+);
+
+#keyset[id]
+accessor_decl_is_did_set(  //dir=decl
+  int id: @accessor_decl ref
+);
+
+associated_type_decls(  //dir=decl
+  unique int id: @associated_type_decl
+);
+
+concrete_func_decls(  //dir=decl
+  unique int id: @concrete_func_decl
+);
+
+concrete_var_decls(  //dir=decl
+  unique int id: @concrete_var_decl,
+  int introducer_int: int ref
+);
+
+generic_type_param_decls(  //dir=decl
+  unique int id: @generic_type_param_decl
+);
+
+@nominal_type_decl =
+  @class_decl
+| @enum_decl
+| @protocol_decl
+| @struct_decl
+;
+
+#keyset[id]
+nominal_type_decls(  //dir=decl
+  int id: @nominal_type_decl ref,
+  int type_: @type_or_none ref
+);
+
+opaque_type_decls(  //dir=decl
+  unique int id: @opaque_type_decl,
+  int naming_declaration: @value_decl_or_none ref
+);
+
+#keyset[id, index]
+opaque_type_decl_opaque_generic_params(  //dir=decl
+  int id: @opaque_type_decl ref,
+  int index: int ref,
+  int opaque_generic_param: @generic_type_param_type_or_none ref
+);
+
+param_decls(  //dir=decl
+  unique int id: @param_decl
+);
+
+#keyset[id]
+param_decl_is_inout(  //dir=decl
+  int id: @param_decl ref
+);
+
+#keyset[id]
+param_decl_property_wrapper_local_wrapped_var_bindings(  //dir=decl
+  int id: @param_decl ref,
+  int property_wrapper_local_wrapped_var_binding: @pattern_binding_decl_or_none ref
+);
+
+#keyset[id]
+param_decl_property_wrapper_local_wrapped_vars(  //dir=decl
+  int id: @param_decl ref,
+  int property_wrapper_local_wrapped_var: @var_decl_or_none ref
+);
+
+type_alias_decls(  //dir=decl
+  unique int id: @type_alias_decl
+);
+
+class_decls(  //dir=decl
+  unique int id: @class_decl
+);
+
+enum_decls(  //dir=decl
+  unique int id: @enum_decl
+);
+
+protocol_decls(  //dir=decl
+  unique int id: @protocol_decl
+);
+
+struct_decls(  //dir=decl
+  unique int id: @struct_decl
+);
+
+arguments(  //dir=expr
+  unique int id: @argument,
+  string label: string ref,
+  int expr: @expr_or_none ref
+);
+
+@expr =
+  @abstract_closure_expr
+| @any_try_expr
+| @applied_property_wrapper_expr
+| @apply_expr
+| @assign_expr
+| @bind_optional_expr
+| @capture_list_expr
+| @collection_expr
+| @decl_ref_expr
+| @default_argument_expr
+| @discard_assignment_expr
+| @dot_syntax_base_ignored_expr
+| @dynamic_type_expr
+| @enum_is_case_expr
+| @error_expr
+| @explicit_cast_expr
+| @force_value_expr
+| @identity_expr
+| @if_expr
+| @implicit_conversion_expr
+| @in_out_expr
+| @key_path_application_expr
+| @key_path_dot_expr
+| @key_path_expr
+| @lazy_initializer_expr
+| @literal_expr
+| @lookup_expr
+| @make_temporarily_escapable_expr
+| @obj_c_selector_expr
+| @one_way_expr
+| @opaque_value_expr
+| @open_existential_expr
+| @optional_evaluation_expr
+| @other_constructor_decl_ref_expr
+| @overloaded_decl_ref_expr
+| @property_wrapper_value_placeholder_expr
+| @rebind_self_in_constructor_expr
+| @sequence_expr
+| @super_ref_expr
+| @tap_expr
+| @tuple_element_expr
+| @tuple_expr
+| @type_expr
+| @unresolved_decl_ref_expr
+| @unresolved_dot_expr
+| @unresolved_member_expr
+| @unresolved_pattern_expr
+| @unresolved_specialize_expr
+| @vararg_expansion_expr
+;
+
+#keyset[id]
+expr_types(  //dir=expr
+  int id: @expr ref,
+  int type_: @type_or_none ref
+);
+
+@abstract_closure_expr =
+  @auto_closure_expr
+| @closure_expr
+;
+
+@any_try_expr =
+  @force_try_expr
+| @optional_try_expr
+| @try_expr
+;
+
+#keyset[id]
+any_try_exprs(  //dir=expr
+  int id: @any_try_expr ref,
+  int sub_expr: @expr_or_none ref
+);
+
+applied_property_wrapper_exprs(  //dir=expr
+  unique int id: @applied_property_wrapper_expr,
+  int kind: int ref,
+  int value: @expr_or_none ref,
+  int param: @param_decl_or_none ref
+);
+
+@apply_expr =
+  @binary_expr
+| @call_expr
+| @postfix_unary_expr
+| @prefix_unary_expr
+| @self_apply_expr
+;
+
+#keyset[id]
+apply_exprs(  //dir=expr
+  int id: @apply_expr ref,
+  int function: @expr_or_none ref
+);
+
+#keyset[id, index]
+apply_expr_arguments(  //dir=expr
+  int id: @apply_expr ref,
+  int index: int ref,
+  int argument: @argument_or_none ref
+);
+
+assign_exprs(  //dir=expr
+  unique int id: @assign_expr,
+  int dest: @expr_or_none ref,
+  int source: @expr_or_none ref
+);
+
+bind_optional_exprs(  //dir=expr
+  unique int id: @bind_optional_expr,
+  int sub_expr: @expr_or_none ref
+);
+
+capture_list_exprs(  //dir=expr
+  unique int id: @capture_list_expr,
+  int closure_body: @closure_expr_or_none ref
+);
+
+#keyset[id, index]
+capture_list_expr_binding_decls(  //dir=expr
+  int id: @capture_list_expr ref,
+  int index: int ref,
+  int binding_decl: @pattern_binding_decl_or_none ref
+);
+
+@collection_expr =
+  @array_expr
+| @dictionary_expr
+;
+
+decl_ref_exprs(  //dir=expr
+  unique int id: @decl_ref_expr,
+  int decl: @decl_or_none ref
+);
+
+#keyset[id, index]
+decl_ref_expr_replacement_types(  //dir=expr
+  int id: @decl_ref_expr ref,
+  int index: int ref,
+  int replacement_type: @type_or_none ref
+);
+
+#keyset[id]
+decl_ref_expr_has_direct_to_storage_semantics(  //dir=expr
+  int id: @decl_ref_expr ref
+);
+
+#keyset[id]
+decl_ref_expr_has_direct_to_implementation_semantics(  //dir=expr
+  int id: @decl_ref_expr ref
+);
+
+#keyset[id]
+decl_ref_expr_has_ordinary_semantics(  //dir=expr
+  int id: @decl_ref_expr ref
+);
+
+default_argument_exprs(  //dir=expr
+  unique int id: @default_argument_expr,
+  int param_decl: @param_decl_or_none ref,
+  int param_index: int ref
+);
+
+#keyset[id]
+default_argument_expr_caller_side_defaults(  //dir=expr
+  int id: @default_argument_expr ref,
+  int caller_side_default: @expr_or_none ref
+);
+
+discard_assignment_exprs(  //dir=expr
+  unique int id: @discard_assignment_expr
+);
+
+dot_syntax_base_ignored_exprs(  //dir=expr
+  unique int id: @dot_syntax_base_ignored_expr,
+  int qualifier: @expr_or_none ref,
+  int sub_expr: @expr_or_none ref
+);
+
+dynamic_type_exprs(  //dir=expr
+  unique int id: @dynamic_type_expr,
+  int base: @expr_or_none ref
+);
+
+enum_is_case_exprs(  //dir=expr
+  unique int id: @enum_is_case_expr,
+  int sub_expr: @expr_or_none ref,
+  int element: @enum_element_decl_or_none ref
+);
+
+error_exprs(  //dir=expr
+  unique int id: @error_expr
+);
+
+@explicit_cast_expr =
+  @checked_cast_expr
+| @coerce_expr
+;
+
+#keyset[id]
+explicit_cast_exprs(  //dir=expr
+  int id: @explicit_cast_expr ref,
+  int sub_expr: @expr_or_none ref
+);
+
+force_value_exprs(  //dir=expr
+  unique int id: @force_value_expr,
+  int sub_expr: @expr_or_none ref
+);
+
+@identity_expr =
+  @await_expr
+| @dot_self_expr
+| @paren_expr
+| @unresolved_member_chain_result_expr
+;
+
+#keyset[id]
+identity_exprs(  //dir=expr
+  int id: @identity_expr ref,
+  int sub_expr: @expr_or_none ref
+);
+
+if_exprs(  //dir=expr
+  unique int id: @if_expr,
+  int condition: @expr_or_none ref,
+  int then_expr: @expr_or_none ref,
+  int else_expr: @expr_or_none ref
+);
+
+@implicit_conversion_expr =
+  @any_hashable_erasure_expr
+| @archetype_to_super_expr
+| @array_to_pointer_expr
+| @bridge_from_obj_c_expr
+| @bridge_to_obj_c_expr
+| @class_metatype_to_object_expr
+| @collection_upcast_conversion_expr
+| @conditional_bridge_from_obj_c_expr
+| @covariant_function_conversion_expr
+| @covariant_return_conversion_expr
+| @derived_to_base_expr
+| @destructure_tuple_expr
+| @differentiable_function_expr
+| @differentiable_function_extract_original_expr
+| @erasure_expr
+| @existential_metatype_to_object_expr
+| @foreign_object_conversion_expr
+| @function_conversion_expr
+| @in_out_to_pointer_expr
+| @inject_into_optional_expr
+| @linear_function_expr
+| @linear_function_extract_original_expr
+| @linear_to_differentiable_function_expr
+| @load_expr
+| @metatype_conversion_expr
+| @pointer_to_pointer_expr
+| @protocol_metatype_to_object_expr
+| @string_to_pointer_expr
+| @underlying_to_opaque_expr
+| @unevaluated_instance_expr
+| @unresolved_type_conversion_expr
+;
+
+#keyset[id]
+implicit_conversion_exprs(  //dir=expr
+  int id: @implicit_conversion_expr ref,
+  int sub_expr: @expr_or_none ref
+);
+
+in_out_exprs(  //dir=expr
+  unique int id: @in_out_expr,
+  int sub_expr: @expr_or_none ref
+);
+
+key_path_application_exprs(  //dir=expr
+  unique int id: @key_path_application_expr,
+  int base: @expr_or_none ref,
+  int key_path: @expr_or_none ref
+);
+
+key_path_dot_exprs(  //dir=expr
+  unique int id: @key_path_dot_expr
+);
+
+key_path_exprs(  //dir=expr
+  unique int id: @key_path_expr
+);
+
+#keyset[id]
+key_path_expr_roots(  //dir=expr
+  int id: @key_path_expr ref,
+  int root: @type_repr_or_none ref
+);
+
+#keyset[id]
+key_path_expr_parsed_paths(  //dir=expr
+  int id: @key_path_expr ref,
+  int parsed_path: @expr_or_none ref
+);
+
+lazy_initializer_exprs(  //dir=expr
+  unique int id: @lazy_initializer_expr,
+  int sub_expr: @expr_or_none ref
+);
+
+@literal_expr =
+  @builtin_literal_expr
+| @interpolated_string_literal_expr
+| @nil_literal_expr
+| @object_literal_expr
+| @regex_literal_expr
+;
+
+@lookup_expr =
+  @dynamic_lookup_expr
+| @member_ref_expr
+| @subscript_expr
+;
+
+#keyset[id]
+lookup_exprs(  //dir=expr
+  int id: @lookup_expr ref,
+  int base: @expr_or_none ref
+);
+
+#keyset[id]
+lookup_expr_members(  //dir=expr
+  int id: @lookup_expr ref,
+  int member: @decl_or_none ref
+);
+
+make_temporarily_escapable_exprs(  //dir=expr
+  unique int id: @make_temporarily_escapable_expr,
+  int escaping_closure: @opaque_value_expr_or_none ref,
+  int nonescaping_closure: @expr_or_none ref,
+  int sub_expr: @expr_or_none ref
+);
+
+obj_c_selector_exprs(  //dir=expr
+  unique int id: @obj_c_selector_expr,
+  int sub_expr: @expr_or_none ref,
+  int method: @abstract_function_decl_or_none ref
+);
+
+one_way_exprs(  //dir=expr
+  unique int id: @one_way_expr,
+  int sub_expr: @expr_or_none ref
+);
+
+opaque_value_exprs(  //dir=expr
+  unique int id: @opaque_value_expr
+);
+
+open_existential_exprs(  //dir=expr
+  unique int id: @open_existential_expr,
+  int sub_expr: @expr_or_none ref,
+  int existential: @expr_or_none ref,
+  int opaque_expr: @opaque_value_expr_or_none ref
+);
+
+optional_evaluation_exprs(  //dir=expr
+  unique int id: @optional_evaluation_expr,
+  int sub_expr: @expr_or_none ref
+);
+
+other_constructor_decl_ref_exprs(  //dir=expr
+  unique int id: @other_constructor_decl_ref_expr,
+  int constructor_decl: @constructor_decl_or_none ref
+);
+
+overloaded_decl_ref_exprs(  //dir=expr
+  unique int id: @overloaded_decl_ref_expr
+);
+
+#keyset[id, index]
+overloaded_decl_ref_expr_possible_declarations(  //dir=expr
+  int id: @overloaded_decl_ref_expr ref,
+  int index: int ref,
+  int possible_declaration: @value_decl_or_none ref
+);
+
+property_wrapper_value_placeholder_exprs(  //dir=expr
+  unique int id: @property_wrapper_value_placeholder_expr,
+  int placeholder: @opaque_value_expr_or_none ref
+);
+
+#keyset[id]
+property_wrapper_value_placeholder_expr_wrapped_values(  //dir=expr
+  int id: @property_wrapper_value_placeholder_expr ref,
+  int wrapped_value: @expr_or_none ref
+);
+
+rebind_self_in_constructor_exprs(  //dir=expr
+  unique int id: @rebind_self_in_constructor_expr,
+  int sub_expr: @expr_or_none ref,
+  int self: @var_decl_or_none ref
+);
+
+sequence_exprs(  //dir=expr
+  unique int id: @sequence_expr
+);
+
+#keyset[id, index]
+sequence_expr_elements(  //dir=expr
+  int id: @sequence_expr ref,
+  int index: int ref,
+  int element: @expr_or_none ref
+);
+
+super_ref_exprs(  //dir=expr
+  unique int id: @super_ref_expr,
+  int self: @var_decl_or_none ref
+);
+
+tap_exprs(  //dir=expr
+  unique int id: @tap_expr,
+  int body: @brace_stmt_or_none ref,
+  int var: @var_decl_or_none ref
+);
+
+#keyset[id]
+tap_expr_sub_exprs(  //dir=expr
+  int id: @tap_expr ref,
+  int sub_expr: @expr_or_none ref
+);
+
+tuple_element_exprs(  //dir=expr
+  unique int id: @tuple_element_expr,
+  int sub_expr: @expr_or_none ref,
+  int index: int ref
+);
+
+tuple_exprs(  //dir=expr
+  unique int id: @tuple_expr
+);
+
+#keyset[id, index]
+tuple_expr_elements(  //dir=expr
+  int id: @tuple_expr ref,
+  int index: int ref,
+  int element: @expr_or_none ref
+);
+
+type_exprs(  //dir=expr
+  unique int id: @type_expr
+);
+
+#keyset[id]
+type_expr_type_reprs(  //dir=expr
+  int id: @type_expr ref,
+  int type_repr: @type_repr_or_none ref
+);
+
+unresolved_decl_ref_exprs(  //dir=expr
+  unique int id: @unresolved_decl_ref_expr
+);
+
+#keyset[id]
+unresolved_decl_ref_expr_names(  //dir=expr
+  int id: @unresolved_decl_ref_expr ref,
+  string name: string ref
+);
+
+unresolved_dot_exprs(  //dir=expr
+  unique int id: @unresolved_dot_expr,
+  int base: @expr_or_none ref,
+  string name: string ref
+);
+
+unresolved_member_exprs(  //dir=expr
+  unique int id: @unresolved_member_expr,
+  string name: string ref
+);
+
+unresolved_pattern_exprs(  //dir=expr
+  unique int id: @unresolved_pattern_expr,
+  int sub_pattern: @pattern_or_none ref
+);
+
+unresolved_specialize_exprs(  //dir=expr
+  unique int id: @unresolved_specialize_expr,
+  int sub_expr: @expr_or_none ref
+);
+
+vararg_expansion_exprs(  //dir=expr
+  unique int id: @vararg_expansion_expr,
+  int sub_expr: @expr_or_none ref
+);
+
+any_hashable_erasure_exprs(  //dir=expr
+  unique int id: @any_hashable_erasure_expr
+);
+
+archetype_to_super_exprs(  //dir=expr
+  unique int id: @archetype_to_super_expr
+);
+
+array_exprs(  //dir=expr
+  unique int id: @array_expr
+);
+
+#keyset[id, index]
+array_expr_elements(  //dir=expr
+  int id: @array_expr ref,
+  int index: int ref,
+  int element: @expr_or_none ref
+);
+
+array_to_pointer_exprs(  //dir=expr
+  unique int id: @array_to_pointer_expr
+);
+
+auto_closure_exprs(  //dir=expr
+  unique int id: @auto_closure_expr
+);
+
+await_exprs(  //dir=expr
+  unique int id: @await_expr
+);
+
+binary_exprs(  //dir=expr
+  unique int id: @binary_expr
+);
+
+bridge_from_obj_c_exprs(  //dir=expr
+  unique int id: @bridge_from_obj_c_expr
+);
+
+bridge_to_obj_c_exprs(  //dir=expr
+  unique int id: @bridge_to_obj_c_expr
+);
+
+@builtin_literal_expr =
+  @boolean_literal_expr
+| @magic_identifier_literal_expr
+| @number_literal_expr
+| @string_literal_expr
+;
+
+call_exprs(  //dir=expr
+  unique int id: @call_expr
+);
+
+@checked_cast_expr =
+  @conditional_checked_cast_expr
+| @forced_checked_cast_expr
+| @is_expr
+;
+
+class_metatype_to_object_exprs(  //dir=expr
+  unique int id: @class_metatype_to_object_expr
+);
+
+closure_exprs(  //dir=expr
+  unique int id: @closure_expr
+);
+
+coerce_exprs(  //dir=expr
+  unique int id: @coerce_expr
+);
+
+collection_upcast_conversion_exprs(  //dir=expr
+  unique int id: @collection_upcast_conversion_expr
+);
+
+conditional_bridge_from_obj_c_exprs(  //dir=expr
+  unique int id: @conditional_bridge_from_obj_c_expr
+);
+
+covariant_function_conversion_exprs(  //dir=expr
+  unique int id: @covariant_function_conversion_expr
+);
+
+covariant_return_conversion_exprs(  //dir=expr
+  unique int id: @covariant_return_conversion_expr
+);
+
+derived_to_base_exprs(  //dir=expr
+  unique int id: @derived_to_base_expr
+);
+
+destructure_tuple_exprs(  //dir=expr
+  unique int id: @destructure_tuple_expr
+);
+
+dictionary_exprs(  //dir=expr
+  unique int id: @dictionary_expr
+);
+
+#keyset[id, index]
+dictionary_expr_elements(  //dir=expr
+  int id: @dictionary_expr ref,
+  int index: int ref,
+  int element: @expr_or_none ref
+);
+
+differentiable_function_exprs(  //dir=expr
+  unique int id: @differentiable_function_expr
+);
+
+differentiable_function_extract_original_exprs(  //dir=expr
+  unique int id: @differentiable_function_extract_original_expr
+);
+
+dot_self_exprs(  //dir=expr
+  unique int id: @dot_self_expr
+);
+
+@dynamic_lookup_expr =
+  @dynamic_member_ref_expr
+| @dynamic_subscript_expr
+;
+
+erasure_exprs(  //dir=expr
+  unique int id: @erasure_expr
+);
+
+existential_metatype_to_object_exprs(  //dir=expr
+  unique int id: @existential_metatype_to_object_expr
+);
+
+force_try_exprs(  //dir=expr
+  unique int id: @force_try_expr
+);
+
+foreign_object_conversion_exprs(  //dir=expr
+  unique int id: @foreign_object_conversion_expr
+);
+
+function_conversion_exprs(  //dir=expr
+  unique int id: @function_conversion_expr
+);
+
+in_out_to_pointer_exprs(  //dir=expr
+  unique int id: @in_out_to_pointer_expr
+);
+
+inject_into_optional_exprs(  //dir=expr
+  unique int id: @inject_into_optional_expr
+);
+
+interpolated_string_literal_exprs(  //dir=expr
+  unique int id: @interpolated_string_literal_expr
+);
+
+#keyset[id]
+interpolated_string_literal_expr_interpolation_exprs(  //dir=expr
+  int id: @interpolated_string_literal_expr ref,
+  int interpolation_expr: @opaque_value_expr_or_none ref
+);
+
+#keyset[id]
+interpolated_string_literal_expr_interpolation_count_exprs(  //dir=expr
+  int id: @interpolated_string_literal_expr ref,
+  int interpolation_count_expr: @expr_or_none ref
+);
+
+#keyset[id]
+interpolated_string_literal_expr_literal_capacity_exprs(  //dir=expr
+  int id: @interpolated_string_literal_expr ref,
+  int literal_capacity_expr: @expr_or_none ref
+);
+
+#keyset[id]
+interpolated_string_literal_expr_appending_exprs(  //dir=expr
+  int id: @interpolated_string_literal_expr ref,
+  int appending_expr: @tap_expr_or_none ref
+);
+
+linear_function_exprs(  //dir=expr
+  unique int id: @linear_function_expr
+);
+
+linear_function_extract_original_exprs(  //dir=expr
+  unique int id: @linear_function_extract_original_expr
+);
+
+linear_to_differentiable_function_exprs(  //dir=expr
+  unique int id: @linear_to_differentiable_function_expr
+);
+
+load_exprs(  //dir=expr
+  unique int id: @load_expr
+);
+
+member_ref_exprs(  //dir=expr
+  unique int id: @member_ref_expr
+);
+
+#keyset[id]
+member_ref_expr_has_direct_to_storage_semantics(  //dir=expr
+  int id: @member_ref_expr ref
+);
+
+#keyset[id]
+member_ref_expr_has_direct_to_implementation_semantics(  //dir=expr
+  int id: @member_ref_expr ref
+);
+
+#keyset[id]
+member_ref_expr_has_ordinary_semantics(  //dir=expr
+  int id: @member_ref_expr ref
+);
+
+metatype_conversion_exprs(  //dir=expr
+  unique int id: @metatype_conversion_expr
+);
+
+nil_literal_exprs(  //dir=expr
+  unique int id: @nil_literal_expr
+);
+
+object_literal_exprs(  //dir=expr
+  unique int id: @object_literal_expr,
+  int kind: int ref
+);
+
+#keyset[id, index]
+object_literal_expr_arguments(  //dir=expr
+  int id: @object_literal_expr ref,
+  int index: int ref,
+  int argument: @argument_or_none ref
+);
+
+optional_try_exprs(  //dir=expr
+  unique int id: @optional_try_expr
+);
+
+paren_exprs(  //dir=expr
+  unique int id: @paren_expr
+);
+
+pointer_to_pointer_exprs(  //dir=expr
+  unique int id: @pointer_to_pointer_expr
+);
+
+postfix_unary_exprs(  //dir=expr
+  unique int id: @postfix_unary_expr
+);
+
+prefix_unary_exprs(  //dir=expr
+  unique int id: @prefix_unary_expr
+);
+
+protocol_metatype_to_object_exprs(  //dir=expr
+  unique int id: @protocol_metatype_to_object_expr
+);
+
+regex_literal_exprs(  //dir=expr
+  unique int id: @regex_literal_expr
+);
+
+@self_apply_expr =
+  @constructor_ref_call_expr
+| @dot_syntax_call_expr
+;
+
+#keyset[id]
+self_apply_exprs(  //dir=expr
+  int id: @self_apply_expr ref,
+  int base: @expr_or_none ref
+);
+
+string_to_pointer_exprs(  //dir=expr
+  unique int id: @string_to_pointer_expr
+);
+
+subscript_exprs(  //dir=expr
+  unique int id: @subscript_expr
+);
+
+#keyset[id, index]
+subscript_expr_arguments(  //dir=expr
+  int id: @subscript_expr ref,
+  int index: int ref,
+  int argument: @argument_or_none ref
+);
+
+#keyset[id]
+subscript_expr_has_direct_to_storage_semantics(  //dir=expr
+  int id: @subscript_expr ref
+);
+
+#keyset[id]
+subscript_expr_has_direct_to_implementation_semantics(  //dir=expr
+  int id: @subscript_expr ref
+);
+
+#keyset[id]
+subscript_expr_has_ordinary_semantics(  //dir=expr
+  int id: @subscript_expr ref
+);
+
+try_exprs(  //dir=expr
+  unique int id: @try_expr
+);
+
+underlying_to_opaque_exprs(  //dir=expr
+  unique int id: @underlying_to_opaque_expr
+);
+
+unevaluated_instance_exprs(  //dir=expr
+  unique int id: @unevaluated_instance_expr
+);
+
+unresolved_member_chain_result_exprs(  //dir=expr
+  unique int id: @unresolved_member_chain_result_expr
+);
+
+unresolved_type_conversion_exprs(  //dir=expr
+  unique int id: @unresolved_type_conversion_expr
+);
+
+boolean_literal_exprs(  //dir=expr
+  unique int id: @boolean_literal_expr,
+  boolean value: boolean ref
+);
+
+conditional_checked_cast_exprs(  //dir=expr
+  unique int id: @conditional_checked_cast_expr
+);
+
+constructor_ref_call_exprs(  //dir=expr
+  unique int id: @constructor_ref_call_expr
+);
+
+dot_syntax_call_exprs(  //dir=expr
+  unique int id: @dot_syntax_call_expr
+);
+
+dynamic_member_ref_exprs(  //dir=expr
+  unique int id: @dynamic_member_ref_expr
+);
+
+dynamic_subscript_exprs(  //dir=expr
+  unique int id: @dynamic_subscript_expr
+);
+
+forced_checked_cast_exprs(  //dir=expr
+  unique int id: @forced_checked_cast_expr
+);
+
+is_exprs(  //dir=expr
+  unique int id: @is_expr
+);
+
+magic_identifier_literal_exprs(  //dir=expr
+  unique int id: @magic_identifier_literal_expr,
+  string kind: string ref
+);
+
+@number_literal_expr =
+  @float_literal_expr
+| @integer_literal_expr
+;
+
+string_literal_exprs(  //dir=expr
+  unique int id: @string_literal_expr,
+  string value: string ref
+);
+
+float_literal_exprs(  //dir=expr
+  unique int id: @float_literal_expr,
+  string string_value: string ref
+);
+
+integer_literal_exprs(  //dir=expr
+  unique int id: @integer_literal_expr,
+  string string_value: string ref
+);
+
+@pattern =
+  @any_pattern
+| @binding_pattern
+| @bool_pattern
+| @enum_element_pattern
+| @expr_pattern
+| @is_pattern
+| @named_pattern
+| @optional_some_pattern
+| @paren_pattern
+| @tuple_pattern
+| @typed_pattern
+;
+
+any_patterns(  //dir=pattern
+  unique int id: @any_pattern
+);
+
+binding_patterns(  //dir=pattern
+  unique int id: @binding_pattern,
+  int sub_pattern: @pattern_or_none ref
+);
+
+bool_patterns(  //dir=pattern
+  unique int id: @bool_pattern,
+  boolean value: boolean ref
+);
+
+enum_element_patterns(  //dir=pattern
+  unique int id: @enum_element_pattern,
+  int element: @enum_element_decl_or_none ref
+);
+
+#keyset[id]
+enum_element_pattern_sub_patterns(  //dir=pattern
+  int id: @enum_element_pattern ref,
+  int sub_pattern: @pattern_or_none ref
+);
+
+expr_patterns(  //dir=pattern
+  unique int id: @expr_pattern,
+  int sub_expr: @expr_or_none ref
+);
+
+is_patterns(  //dir=pattern
+  unique int id: @is_pattern
+);
+
+#keyset[id]
+is_pattern_cast_type_reprs(  //dir=pattern
+  int id: @is_pattern ref,
+  int cast_type_repr: @type_repr_or_none ref
+);
+
+#keyset[id]
+is_pattern_sub_patterns(  //dir=pattern
+  int id: @is_pattern ref,
+  int sub_pattern: @pattern_or_none ref
+);
+
+named_patterns(  //dir=pattern
+  unique int id: @named_pattern,
+  string name: string ref
+);
+
+optional_some_patterns(  //dir=pattern
+  unique int id: @optional_some_pattern,
+  int sub_pattern: @pattern_or_none ref
+);
+
+paren_patterns(  //dir=pattern
+  unique int id: @paren_pattern,
+  int sub_pattern: @pattern_or_none ref
+);
+
+tuple_patterns(  //dir=pattern
+  unique int id: @tuple_pattern
+);
+
+#keyset[id, index]
+tuple_pattern_elements(  //dir=pattern
+  int id: @tuple_pattern ref,
+  int index: int ref,
+  int element: @pattern_or_none ref
+);
+
+typed_patterns(  //dir=pattern
+  unique int id: @typed_pattern,
+  int sub_pattern: @pattern_or_none ref
+);
+
+#keyset[id]
+typed_pattern_type_reprs(  //dir=pattern
+  int id: @typed_pattern ref,
+  int type_repr: @type_repr_or_none ref
+);
+
+case_label_items(  //dir=stmt
+  unique int id: @case_label_item,
+  int pattern: @pattern_or_none ref
+);
+
+#keyset[id]
+case_label_item_guards(  //dir=stmt
+  int id: @case_label_item ref,
+  int guard: @expr_or_none ref
+);
+
+condition_elements(  //dir=stmt
+  unique int id: @condition_element
+);
+
+#keyset[id]
+condition_element_booleans(  //dir=stmt
+  int id: @condition_element ref,
+  int boolean_: @expr_or_none ref
+);
+
+#keyset[id]
+condition_element_patterns(  //dir=stmt
+  int id: @condition_element ref,
+  int pattern: @pattern_or_none ref
+);
+
+#keyset[id]
+condition_element_initializers(  //dir=stmt
+  int id: @condition_element ref,
+  int initializer: @expr_or_none ref
+);
+
+@stmt =
+  @brace_stmt
+| @break_stmt
+| @case_stmt
+| @continue_stmt
+| @defer_stmt
+| @fail_stmt
+| @fallthrough_stmt
+| @labeled_stmt
+| @pound_assert_stmt
+| @return_stmt
+| @throw_stmt
+| @yield_stmt
+;
+
+stmt_conditions(  //dir=stmt
+  unique int id: @stmt_condition
+);
+
+#keyset[id, index]
+stmt_condition_elements(  //dir=stmt
+  int id: @stmt_condition ref,
+  int index: int ref,
+  int element: @condition_element_or_none ref
+);
+
+brace_stmts(  //dir=stmt
+  unique int id: @brace_stmt
+);
+
+#keyset[id, index]
+brace_stmt_elements(  //dir=stmt
+  int id: @brace_stmt ref,
+  int index: int ref,
+  int element: @ast_node_or_none ref
+);
+
+break_stmts(  //dir=stmt
+  unique int id: @break_stmt
+);
+
+#keyset[id]
+break_stmt_target_names(  //dir=stmt
+  int id: @break_stmt ref,
+  string target_name: string ref
+);
+
+#keyset[id]
+break_stmt_targets(  //dir=stmt
+  int id: @break_stmt ref,
+  int target: @stmt_or_none ref
+);
+
+case_stmts(  //dir=stmt
+  unique int id: @case_stmt,
+  int body: @stmt_or_none ref
+);
+
+#keyset[id, index]
+case_stmt_labels(  //dir=stmt
+  int id: @case_stmt ref,
+  int index: int ref,
+  int label: @case_label_item_or_none ref
+);
+
+#keyset[id, index]
+case_stmt_variables(  //dir=stmt
+  int id: @case_stmt ref,
+  int index: int ref,
+  int variable: @var_decl_or_none ref
+);
+
+continue_stmts(  //dir=stmt
+  unique int id: @continue_stmt
+);
+
+#keyset[id]
+continue_stmt_target_names(  //dir=stmt
+  int id: @continue_stmt ref,
+  string target_name: string ref
+);
+
+#keyset[id]
+continue_stmt_targets(  //dir=stmt
+  int id: @continue_stmt ref,
+  int target: @stmt_or_none ref
+);
+
+defer_stmts(  //dir=stmt
+  unique int id: @defer_stmt,
+  int body: @brace_stmt_or_none ref
+);
+
+fail_stmts(  //dir=stmt
+  unique int id: @fail_stmt
+);
+
+fallthrough_stmts(  //dir=stmt
+  unique int id: @fallthrough_stmt,
+  int fallthrough_source: @case_stmt_or_none ref,
+  int fallthrough_dest: @case_stmt_or_none ref
+);
+
+@labeled_stmt =
+  @do_catch_stmt
+| @do_stmt
+| @for_each_stmt
+| @labeled_conditional_stmt
+| @repeat_while_stmt
+| @switch_stmt
+;
+
+#keyset[id]
+labeled_stmt_labels(  //dir=stmt
+  int id: @labeled_stmt ref,
+  string label: string ref
+);
+
+pound_assert_stmts(  //dir=stmt
+  unique int id: @pound_assert_stmt,
+  int condition: @expr_or_none ref,
+  string message: string ref
+);
+
+return_stmts(  //dir=stmt
+  unique int id: @return_stmt
+);
+
+#keyset[id]
+return_stmt_results(  //dir=stmt
+  int id: @return_stmt ref,
+  int result: @expr_or_none ref
+);
+
+throw_stmts(  //dir=stmt
+  unique int id: @throw_stmt,
+  int sub_expr: @expr_or_none ref
+);
+
+yield_stmts(  //dir=stmt
+  unique int id: @yield_stmt
+);
+
+#keyset[id, index]
+yield_stmt_results(  //dir=stmt
+  int id: @yield_stmt ref,
+  int index: int ref,
+  int result: @expr_or_none ref
+);
+
+do_catch_stmts(  //dir=stmt
+  unique int id: @do_catch_stmt,
+  int body: @stmt_or_none ref
+);
+
+#keyset[id, index]
+do_catch_stmt_catches(  //dir=stmt
+  int id: @do_catch_stmt ref,
+  int index: int ref,
+  int catch: @case_stmt_or_none ref
+);
+
+do_stmts(  //dir=stmt
+  unique int id: @do_stmt,
+  int body: @brace_stmt_or_none ref
+);
+
+for_each_stmts(  //dir=stmt
+  unique int id: @for_each_stmt,
+  int pattern: @pattern_or_none ref,
+  int sequence: @expr_or_none ref,
+  int body: @brace_stmt_or_none ref
+);
+
+#keyset[id]
+for_each_stmt_wheres(  //dir=stmt
+  int id: @for_each_stmt ref,
+  int where: @expr_or_none ref
+);
+
+@labeled_conditional_stmt =
+  @guard_stmt
+| @if_stmt
+| @while_stmt
+;
+
+#keyset[id]
+labeled_conditional_stmts(  //dir=stmt
+  int id: @labeled_conditional_stmt ref,
+  int condition: @stmt_condition_or_none ref
+);
+
+repeat_while_stmts(  //dir=stmt
+  unique int id: @repeat_while_stmt,
+  int condition: @expr_or_none ref,
+  int body: @stmt_or_none ref
+);
+
+switch_stmts(  //dir=stmt
+  unique int id: @switch_stmt,
+  int expr: @expr_or_none ref
+);
+
+#keyset[id, index]
+switch_stmt_cases(  //dir=stmt
+  int id: @switch_stmt ref,
+  int index: int ref,
+  int case_: @case_stmt_or_none ref
+);
+
+guard_stmts(  //dir=stmt
+  unique int id: @guard_stmt,
+  int body: @brace_stmt_or_none ref
+);
+
+if_stmts(  //dir=stmt
+  unique int id: @if_stmt,
+  int then: @stmt_or_none ref
+);
+
+#keyset[id]
+if_stmt_elses(  //dir=stmt
+  int id: @if_stmt ref,
+  int else: @stmt_or_none ref
+);
+
+while_stmts(  //dir=stmt
+  unique int id: @while_stmt,
+  int body: @stmt_or_none ref
+);
+
+@type =
+  @any_function_type
+| @any_generic_type
+| @any_metatype_type
+| @builtin_type
+| @dependent_member_type
+| @dynamic_self_type
+| @error_type
+| @existential_type
+| @in_out_type
+| @l_value_type
+| @module_type
+| @parameterized_protocol_type
+| @protocol_composition_type
+| @reference_storage_type
+| @substitutable_type
+| @sugar_type
+| @tuple_type
+| @unresolved_type
+;
+
+#keyset[id]
+types(  //dir=type
+  int id: @type ref,
+  string name: string ref,
+  int canonical_type: @type_or_none ref
+);
+
+type_reprs(  //dir=type
+  unique int id: @type_repr,
+  int type_: @type_or_none ref
+);
+
+@any_function_type =
+  @function_type
+| @generic_function_type
+;
+
+#keyset[id]
+any_function_types(  //dir=type
+  int id: @any_function_type ref,
+  int result: @type_or_none ref
+);
+
+#keyset[id, index]
+any_function_type_param_types(  //dir=type
+  int id: @any_function_type ref,
+  int index: int ref,
+  int param_type: @type_or_none ref
+);
+
+#keyset[id, index]
+any_function_type_param_labels(  //dir=type
+  int id: @any_function_type ref,
+  int index: int ref,
+  string param_label: string ref
+);
+
+#keyset[id]
+any_function_type_is_throwing(  //dir=type
+  int id: @any_function_type ref
+);
+
+#keyset[id]
+any_function_type_is_async(  //dir=type
+  int id: @any_function_type ref
+);
+
+@any_generic_type =
+  @nominal_or_bound_generic_nominal_type
+| @unbound_generic_type
+;
+
+#keyset[id]
+any_generic_types(  //dir=type
+  int id: @any_generic_type ref,
+  int declaration: @decl_or_none ref
+);
+
+#keyset[id]
+any_generic_type_parents(  //dir=type
+  int id: @any_generic_type ref,
+  int parent: @type_or_none ref
+);
+
+@any_metatype_type =
+  @existential_metatype_type
+| @metatype_type
+;
+
+@builtin_type =
+  @any_builtin_integer_type
+| @builtin_bridge_object_type
+| @builtin_default_actor_storage_type
+| @builtin_executor_type
+| @builtin_float_type
+| @builtin_job_type
+| @builtin_native_object_type
+| @builtin_raw_pointer_type
+| @builtin_raw_unsafe_continuation_type
+| @builtin_unsafe_value_buffer_type
+| @builtin_vector_type
+;
+
+dependent_member_types(  //dir=type
+  unique int id: @dependent_member_type,
+  int base_type: @type_or_none ref,
+  int associated_type_decl: @associated_type_decl_or_none ref
+);
+
+dynamic_self_types(  //dir=type
+  unique int id: @dynamic_self_type,
+  int static_self_type: @type_or_none ref
+);
+
+error_types(  //dir=type
+  unique int id: @error_type
+);
+
+existential_types(  //dir=type
+  unique int id: @existential_type,
+  int constraint: @type_or_none ref
+);
+
+in_out_types(  //dir=type
+  unique int id: @in_out_type,
+  int object_type: @type_or_none ref
+);
+
+l_value_types(  //dir=type
+  unique int id: @l_value_type,
+  int object_type: @type_or_none ref
+);
+
+module_types(  //dir=type
+  unique int id: @module_type,
+  int module: @module_decl_or_none ref
+);
+
+parameterized_protocol_types(  //dir=type
+  unique int id: @parameterized_protocol_type,
+  int base: @protocol_type_or_none ref
+);
+
+#keyset[id, index]
+parameterized_protocol_type_args(  //dir=type
+  int id: @parameterized_protocol_type ref,
+  int index: int ref,
+  int arg: @type_or_none ref
+);
+
+protocol_composition_types(  //dir=type
+  unique int id: @protocol_composition_type
+);
+
+#keyset[id, index]
+protocol_composition_type_members(  //dir=type
+  int id: @protocol_composition_type ref,
+  int index: int ref,
+  int member: @type_or_none ref
+);
+
+@reference_storage_type =
+  @unmanaged_storage_type
+| @unowned_storage_type
+| @weak_storage_type
+;
+
+#keyset[id]
+reference_storage_types(  //dir=type
+  int id: @reference_storage_type ref,
+  int referent_type: @type_or_none ref
+);
+
+@substitutable_type =
+  @archetype_type
+| @generic_type_param_type
+;
+
+@sugar_type =
+  @paren_type
+| @syntax_sugar_type
+| @type_alias_type
+;
+
+tuple_types(  //dir=type
+  unique int id: @tuple_type
+);
+
+#keyset[id, index]
+tuple_type_types(  //dir=type
+  int id: @tuple_type ref,
+  int index: int ref,
+  int type_: @type_or_none ref
+);
+
+#keyset[id, index]
+tuple_type_names(  //dir=type
+  int id: @tuple_type ref,
+  int index: int ref,
+  string name: string ref
+);
+
+unresolved_types(  //dir=type
+  unique int id: @unresolved_type
+);
+
+@any_builtin_integer_type =
+  @builtin_integer_literal_type
+| @builtin_integer_type
+;
+
+@archetype_type =
+  @opaque_type_archetype_type
+| @opened_archetype_type
+| @primary_archetype_type
+;
+
+#keyset[id]
+archetype_types(  //dir=type
+  int id: @archetype_type ref,
+  int interface_type: @type_or_none ref
+);
+
+#keyset[id]
+archetype_type_superclasses(  //dir=type
+  int id: @archetype_type ref,
+  int superclass: @type_or_none ref
+);
+
+#keyset[id, index]
+archetype_type_protocols(  //dir=type
+  int id: @archetype_type ref,
+  int index: int ref,
+  int protocol: @protocol_decl_or_none ref
+);
+
+builtin_bridge_object_types(  //dir=type
+  unique int id: @builtin_bridge_object_type
+);
+
+builtin_default_actor_storage_types(  //dir=type
+  unique int id: @builtin_default_actor_storage_type
+);
+
+builtin_executor_types(  //dir=type
+  unique int id: @builtin_executor_type
+);
+
+builtin_float_types(  //dir=type
+  unique int id: @builtin_float_type
+);
+
+builtin_job_types(  //dir=type
+  unique int id: @builtin_job_type
+);
+
+builtin_native_object_types(  //dir=type
+  unique int id: @builtin_native_object_type
+);
+
+builtin_raw_pointer_types(  //dir=type
+  unique int id: @builtin_raw_pointer_type
+);
+
+builtin_raw_unsafe_continuation_types(  //dir=type
+  unique int id: @builtin_raw_unsafe_continuation_type
+);
+
+builtin_unsafe_value_buffer_types(  //dir=type
+  unique int id: @builtin_unsafe_value_buffer_type
+);
+
+builtin_vector_types(  //dir=type
+  unique int id: @builtin_vector_type
+);
+
+existential_metatype_types(  //dir=type
+  unique int id: @existential_metatype_type
+);
+
+function_types(  //dir=type
+  unique int id: @function_type
+);
+
+generic_function_types(  //dir=type
+  unique int id: @generic_function_type
+);
+
+#keyset[id, index]
+generic_function_type_generic_params(  //dir=type
+  int id: @generic_function_type ref,
+  int index: int ref,
+  int generic_param: @generic_type_param_type_or_none ref
+);
+
+generic_type_param_types(  //dir=type
+  unique int id: @generic_type_param_type
+);
+
+metatype_types(  //dir=type
+  unique int id: @metatype_type
+);
+
+@nominal_or_bound_generic_nominal_type =
+  @bound_generic_type
+| @nominal_type
+;
+
+paren_types(  //dir=type
+  unique int id: @paren_type,
+  int type_: @type_or_none ref
+);
+
+@syntax_sugar_type =
+  @dictionary_type
+| @unary_syntax_sugar_type
+;
+
+type_alias_types(  //dir=type
+  unique int id: @type_alias_type,
+  int decl: @type_alias_decl_or_none ref
+);
+
+unbound_generic_types(  //dir=type
+  unique int id: @unbound_generic_type
+);
+
+unmanaged_storage_types(  //dir=type
+  unique int id: @unmanaged_storage_type
+);
+
+unowned_storage_types(  //dir=type
+  unique int id: @unowned_storage_type
+);
+
+weak_storage_types(  //dir=type
+  unique int id: @weak_storage_type
+);
+
+@bound_generic_type =
+  @bound_generic_class_type
+| @bound_generic_enum_type
+| @bound_generic_struct_type
+;
+
+#keyset[id, index]
+bound_generic_type_arg_types(  //dir=type
+  int id: @bound_generic_type ref,
+  int index: int ref,
+  int arg_type: @type_or_none ref
+);
+
+builtin_integer_literal_types(  //dir=type
+  unique int id: @builtin_integer_literal_type
+);
+
+builtin_integer_types(  //dir=type
+  unique int id: @builtin_integer_type
+);
+
+#keyset[id]
+builtin_integer_type_widths(  //dir=type
+  int id: @builtin_integer_type ref,
+  int width: int ref
+);
+
+dictionary_types(  //dir=type
+  unique int id: @dictionary_type,
+  int key_type: @type_or_none ref,
+  int value_type: @type_or_none ref
+);
+
+@nominal_type =
+  @class_type
+| @enum_type
+| @protocol_type
+| @struct_type
+;
+
+opaque_type_archetype_types(  //dir=type
+  unique int id: @opaque_type_archetype_type,
+  int declaration: @opaque_type_decl_or_none ref
+);
+
+opened_archetype_types(  //dir=type
+  unique int id: @opened_archetype_type
+);
+
+primary_archetype_types(  //dir=type
+  unique int id: @primary_archetype_type
+);
+
+@unary_syntax_sugar_type =
+  @array_slice_type
+| @optional_type
+| @variadic_sequence_type
+;
+
+#keyset[id]
+unary_syntax_sugar_types(  //dir=type
+  int id: @unary_syntax_sugar_type ref,
+  int base_type: @type_or_none ref
+);
+
+array_slice_types(  //dir=type
+  unique int id: @array_slice_type
+);
+
+bound_generic_class_types(  //dir=type
+  unique int id: @bound_generic_class_type
+);
+
+bound_generic_enum_types(  //dir=type
+  unique int id: @bound_generic_enum_type
+);
+
+bound_generic_struct_types(  //dir=type
+  unique int id: @bound_generic_struct_type
+);
+
+class_types(  //dir=type
+  unique int id: @class_type
+);
+
+enum_types(  //dir=type
+  unique int id: @enum_type
+);
+
+optional_types(  //dir=type
+  unique int id: @optional_type
+);
+
+protocol_types(  //dir=type
+  unique int id: @protocol_type
+);
+
+struct_types(  //dir=type
+  unique int id: @struct_type
+);
+
+variadic_sequence_types(  //dir=type
+  unique int id: @variadic_sequence_type
+);
+
+@abstract_function_decl_or_none =
+  @abstract_function_decl
+| @unspecified_element
+;
+
+@accessor_decl_or_none =
+  @accessor_decl
+| @unspecified_element
+;
+
+@argument_or_none =
+  @argument
+| @unspecified_element
+;
+
+@associated_type_decl_or_none =
+  @associated_type_decl
+| @unspecified_element
+;
+
+@ast_node_or_none =
+  @ast_node
+| @unspecified_element
+;
+
+@brace_stmt_or_none =
+  @brace_stmt
+| @unspecified_element
+;
+
+@case_label_item_or_none =
+  @case_label_item
+| @unspecified_element
+;
+
+@case_stmt_or_none =
+  @case_stmt
+| @unspecified_element
+;
+
+@closure_expr_or_none =
+  @closure_expr
+| @unspecified_element
+;
+
+@condition_element_or_none =
+  @condition_element
+| @unspecified_element
+;
+
+@constructor_decl_or_none =
+  @constructor_decl
+| @unspecified_element
+;
+
+@decl_or_none =
+  @decl
+| @unspecified_element
+;
+
+@enum_element_decl_or_none =
+  @enum_element_decl
+| @unspecified_element
+;
+
+@expr_or_none =
+  @expr
+| @unspecified_element
+;
+
+@file_or_none =
+  @file
+| @unspecified_element
+;
+
+@generic_type_param_decl_or_none =
+  @generic_type_param_decl
+| @unspecified_element
+;
+
+@generic_type_param_type_or_none =
+  @generic_type_param_type
+| @unspecified_element
+;
+
+@location_or_none =
+  @location
+| @unspecified_element
+;
+
+@module_decl_or_none =
+  @module_decl
+| @unspecified_element
+;
+
+@nominal_type_decl_or_none =
+  @nominal_type_decl
+| @unspecified_element
+;
+
+@opaque_type_decl_or_none =
+  @opaque_type_decl
+| @unspecified_element
+;
+
+@opaque_value_expr_or_none =
+  @opaque_value_expr
+| @unspecified_element
+;
+
+@param_decl_or_none =
+  @param_decl
+| @unspecified_element
+;
+
+@pattern_or_none =
+  @pattern
+| @unspecified_element
+;
+
+@pattern_binding_decl_or_none =
+  @pattern_binding_decl
+| @unspecified_element
+;
+
+@precedence_group_decl_or_none =
+  @precedence_group_decl
+| @unspecified_element
+;
+
+@protocol_decl_or_none =
+  @protocol_decl
+| @unspecified_element
+;
+
+@protocol_type_or_none =
+  @protocol_type
+| @unspecified_element
+;
+
+@stmt_or_none =
+  @stmt
+| @unspecified_element
+;
+
+@stmt_condition_or_none =
+  @stmt_condition
+| @unspecified_element
+;
+
+@string_literal_expr_or_none =
+  @string_literal_expr
+| @unspecified_element
+;
+
+@tap_expr_or_none =
+  @tap_expr
+| @unspecified_element
+;
+
+@type_or_none =
+  @type
+| @unspecified_element
+;
+
+@type_alias_decl_or_none =
+  @type_alias_decl
+| @unspecified_element
+;
+
+@type_repr_or_none =
+  @type_repr
+| @unspecified_element
+;
+
+@value_decl_or_none =
+  @unspecified_element
+| @value_decl
+;
+
+@var_decl_or_none =
+  @unspecified_element
+| @var_decl
+;
diff --git a/swift/downgrades/abbb8c9e8408841c2bc12e3deb2305f062f5399e/swift.dbscheme b/swift/downgrades/abbb8c9e8408841c2bc12e3deb2305f062f5399e/swift.dbscheme
new file mode 100644
index 00000000000..ceca289a0ff
--- /dev/null
+++ b/swift/downgrades/abbb8c9e8408841c2bc12e3deb2305f062f5399e/swift.dbscheme
@@ -0,0 +1,2493 @@
+// generated by codegen/codegen.py
+
+// from prefix.dbscheme
+/**
+ * The source location of the snapshot.
+ */
+sourceLocationPrefix(
+  string prefix: string ref
+);
+
+
+// from schema.py
+
+@element =
+  @callable
+| @file
+| @generic_context
+| @iterable_decl_context
+| @locatable
+| @location
+| @type
+;
+
+#keyset[id]
+element_is_unknown(
+  int id: @element ref
+);
+
+@callable =
+  @abstract_closure_expr
+| @abstract_function_decl
+;
+
+#keyset[id]
+callable_self_params(
+  int id: @callable ref,
+  int self_param: @param_decl_or_none ref
+);
+
+#keyset[id, index]
+callable_params(
+  int id: @callable ref,
+  int index: int ref,
+  int param: @param_decl_or_none ref
+);
+
+#keyset[id]
+callable_bodies(
+  int id: @callable ref,
+  int body: @brace_stmt_or_none ref
+);
+
+@file =
+  @db_file
+| @unknown_file
+;
+
+#keyset[id]
+files(
+  int id: @file ref,
+  string name: string ref
+);
+
+@locatable =
+  @argument
+| @ast_node
+| @comment
+| @diagnostics
+| @error_element
+;
+
+#keyset[id]
+locatable_locations(
+  int id: @locatable ref,
+  int location: @location_or_none ref
+);
+
+@location =
+  @db_location
+| @unknown_location
+;
+
+#keyset[id]
+locations(
+  int id: @location ref,
+  int file: @file_or_none ref,
+  int start_line: int ref,
+  int start_column: int ref,
+  int end_line: int ref,
+  int end_column: int ref
+);
+
+@ast_node =
+  @case_label_item
+| @condition_element
+| @decl
+| @expr
+| @pattern
+| @stmt
+| @stmt_condition
+| @type_repr
+;
+
+comments(
+  unique int id: @comment,
+  string text: string ref
+);
+
+db_files(
+  unique int id: @db_file
+);
+
+db_locations(
+  unique int id: @db_location
+);
+
+diagnostics(
+  unique int id: @diagnostics,
+  string text: string ref,
+  int kind: int ref
+);
+
+@error_element =
+  @error_expr
+| @error_type
+| @overloaded_decl_ref_expr
+| @unresolved_decl_ref_expr
+| @unresolved_dot_expr
+| @unresolved_member_chain_result_expr
+| @unresolved_member_expr
+| @unresolved_pattern_expr
+| @unresolved_specialize_expr
+| @unresolved_type
+| @unresolved_type_conversion_expr
+| @unspecified_element
+;
+
+unknown_files(
+  unique int id: @unknown_file
+);
+
+unknown_locations(
+  unique int id: @unknown_location
+);
+
+unspecified_elements(
+  unique int id: @unspecified_element,
+  string property: string ref,
+  string error: string ref
+);
+
+#keyset[id]
+unspecified_element_parents(
+  int id: @unspecified_element ref,
+  int parent: @element ref
+);
+
+#keyset[id]
+unspecified_element_indices(
+  int id: @unspecified_element ref,
+  int index: int ref
+);
+
+@decl =
+  @enum_case_decl
+| @extension_decl
+| @if_config_decl
+| @import_decl
+| @missing_member_decl
+| @operator_decl
+| @pattern_binding_decl
+| @pound_diagnostic_decl
+| @precedence_group_decl
+| @top_level_code_decl
+| @value_decl
+;
+
+#keyset[id]
+decls(  //dir=decl
+  int id: @decl ref,
+  int module: @module_decl_or_none ref
+);
+
+@generic_context =
+  @abstract_function_decl
+| @extension_decl
+| @generic_type_decl
+| @subscript_decl
+;
+
+#keyset[id, index]
+generic_context_generic_type_params(  //dir=decl
+  int id: @generic_context ref,
+  int index: int ref,
+  int generic_type_param: @generic_type_param_decl_or_none ref
+);
+
+@iterable_decl_context =
+  @extension_decl
+| @nominal_type_decl
+;
+
+#keyset[id, index]
+iterable_decl_context_members(  //dir=decl
+  int id: @iterable_decl_context ref,
+  int index: int ref,
+  int member: @decl_or_none ref
+);
+
+enum_case_decls(  //dir=decl
+  unique int id: @enum_case_decl
+);
+
+#keyset[id, index]
+enum_case_decl_elements(  //dir=decl
+  int id: @enum_case_decl ref,
+  int index: int ref,
+  int element: @enum_element_decl_or_none ref
+);
+
+extension_decls(  //dir=decl
+  unique int id: @extension_decl,
+  int extended_type_decl: @nominal_type_decl_or_none ref
+);
+
+if_config_decls(  //dir=decl
+  unique int id: @if_config_decl
+);
+
+#keyset[id, index]
+if_config_decl_active_elements(  //dir=decl
+  int id: @if_config_decl ref,
+  int index: int ref,
+  int active_element: @ast_node_or_none ref
+);
+
+import_decls(  //dir=decl
+  unique int id: @import_decl
+);
+
+#keyset[id]
+import_decl_is_exported(  //dir=decl
+  int id: @import_decl ref
+);
+
+#keyset[id]
+import_decl_imported_modules(  //dir=decl
+  int id: @import_decl ref,
+  int imported_module: @module_decl_or_none ref
+);
+
+#keyset[id, index]
+import_decl_declarations(  //dir=decl
+  int id: @import_decl ref,
+  int index: int ref,
+  int declaration: @value_decl_or_none ref
+);
+
+missing_member_decls(  //dir=decl
+  unique int id: @missing_member_decl,
+  string name: string ref
+);
+
+@operator_decl =
+  @infix_operator_decl
+| @postfix_operator_decl
+| @prefix_operator_decl
+;
+
+#keyset[id]
+operator_decls(  //dir=decl
+  int id: @operator_decl ref,
+  string name: string ref
+);
+
+pattern_binding_decls(  //dir=decl
+  unique int id: @pattern_binding_decl
+);
+
+#keyset[id, index]
+pattern_binding_decl_inits(  //dir=decl
+  int id: @pattern_binding_decl ref,
+  int index: int ref,
+  int init: @expr_or_none ref
+);
+
+#keyset[id, index]
+pattern_binding_decl_patterns(  //dir=decl
+  int id: @pattern_binding_decl ref,
+  int index: int ref,
+  int pattern: @pattern_or_none ref
+);
+
+pound_diagnostic_decls(  //dir=decl
+  unique int id: @pound_diagnostic_decl,
+  int kind: int ref,
+  int message: @string_literal_expr_or_none ref
+);
+
+precedence_group_decls(  //dir=decl
+  unique int id: @precedence_group_decl
+);
+
+top_level_code_decls(  //dir=decl
+  unique int id: @top_level_code_decl,
+  int body: @brace_stmt_or_none ref
+);
+
+@value_decl =
+  @abstract_function_decl
+| @abstract_storage_decl
+| @enum_element_decl
+| @type_decl
+;
+
+#keyset[id]
+value_decls(  //dir=decl
+  int id: @value_decl ref,
+  int interface_type: @type_or_none ref
+);
+
+@abstract_function_decl =
+  @constructor_decl
+| @destructor_decl
+| @func_decl
+;
+
+#keyset[id]
+abstract_function_decls(  //dir=decl
+  int id: @abstract_function_decl ref,
+  string name: string ref
+);
+
+@abstract_storage_decl =
+  @subscript_decl
+| @var_decl
+;
+
+#keyset[id, index]
+abstract_storage_decl_accessor_decls(  //dir=decl
+  int id: @abstract_storage_decl ref,
+  int index: int ref,
+  int accessor_decl: @accessor_decl_or_none ref
+);
+
+enum_element_decls(  //dir=decl
+  unique int id: @enum_element_decl,
+  string name: string ref
+);
+
+#keyset[id, index]
+enum_element_decl_params(  //dir=decl
+  int id: @enum_element_decl ref,
+  int index: int ref,
+  int param: @param_decl_or_none ref
+);
+
+infix_operator_decls(  //dir=decl
+  unique int id: @infix_operator_decl
+);
+
+#keyset[id]
+infix_operator_decl_precedence_groups(  //dir=decl
+  int id: @infix_operator_decl ref,
+  int precedence_group: @precedence_group_decl_or_none ref
+);
+
+postfix_operator_decls(  //dir=decl
+  unique int id: @postfix_operator_decl
+);
+
+prefix_operator_decls(  //dir=decl
+  unique int id: @prefix_operator_decl
+);
+
+@type_decl =
+  @abstract_type_param_decl
+| @generic_type_decl
+| @module_decl
+;
+
+#keyset[id]
+type_decls(  //dir=decl
+  int id: @type_decl ref,
+  string name: string ref
+);
+
+#keyset[id, index]
+type_decl_base_types(  //dir=decl
+  int id: @type_decl ref,
+  int index: int ref,
+  int base_type: @type_or_none ref
+);
+
+@abstract_type_param_decl =
+  @associated_type_decl
+| @generic_type_param_decl
+;
+
+constructor_decls(  //dir=decl
+  unique int id: @constructor_decl
+);
+
+destructor_decls(  //dir=decl
+  unique int id: @destructor_decl
+);
+
+@func_decl =
+  @accessor_decl
+| @concrete_func_decl
+;
+
+@generic_type_decl =
+  @nominal_type_decl
+| @opaque_type_decl
+| @type_alias_decl
+;
+
+module_decls(  //dir=decl
+  unique int id: @module_decl
+);
+
+#keyset[id]
+module_decl_is_builtin_module(  //dir=decl
+  int id: @module_decl ref
+);
+
+#keyset[id]
+module_decl_is_system_module(  //dir=decl
+  int id: @module_decl ref
+);
+
+#keyset[id, index]
+module_decl_imported_modules(  //dir=decl
+  int id: @module_decl ref,
+  int index: int ref,
+  int imported_module: @module_decl_or_none ref
+);
+
+#keyset[id, index]
+module_decl_exported_modules(  //dir=decl
+  int id: @module_decl ref,
+  int index: int ref,
+  int exported_module: @module_decl_or_none ref
+);
+
+subscript_decls(  //dir=decl
+  unique int id: @subscript_decl,
+  int element_type: @type_or_none ref
+);
+
+#keyset[id, index]
+subscript_decl_params(  //dir=decl
+  int id: @subscript_decl ref,
+  int index: int ref,
+  int param: @param_decl_or_none ref
+);
+
+@var_decl =
+  @concrete_var_decl
+| @param_decl
+;
+
+#keyset[id]
+var_decls(  //dir=decl
+  int id: @var_decl ref,
+  string name: string ref,
+  int type_: @type_or_none ref
+);
+
+#keyset[id]
+var_decl_attached_property_wrapper_types(  //dir=decl
+  int id: @var_decl ref,
+  int attached_property_wrapper_type: @type_or_none ref
+);
+
+#keyset[id]
+var_decl_parent_patterns(  //dir=decl
+  int id: @var_decl ref,
+  int parent_pattern: @pattern_or_none ref
+);
+
+#keyset[id]
+var_decl_parent_initializers(  //dir=decl
+  int id: @var_decl ref,
+  int parent_initializer: @expr_or_none ref
+);
+
+#keyset[id]
+var_decl_property_wrapper_backing_var_bindings(  //dir=decl
+  int id: @var_decl ref,
+  int property_wrapper_backing_var_binding: @pattern_binding_decl_or_none ref
+);
+
+#keyset[id]
+var_decl_property_wrapper_backing_vars(  //dir=decl
+  int id: @var_decl ref,
+  int property_wrapper_backing_var: @var_decl_or_none ref
+);
+
+#keyset[id]
+var_decl_property_wrapper_projection_var_bindings(  //dir=decl
+  int id: @var_decl ref,
+  int property_wrapper_projection_var_binding: @pattern_binding_decl_or_none ref
+);
+
+#keyset[id]
+var_decl_property_wrapper_projection_vars(  //dir=decl
+  int id: @var_decl ref,
+  int property_wrapper_projection_var: @var_decl_or_none ref
+);
+
+accessor_decls(  //dir=decl
+  unique int id: @accessor_decl
+);
+
+#keyset[id]
+accessor_decl_is_getter(  //dir=decl
+  int id: @accessor_decl ref
+);
+
+#keyset[id]
+accessor_decl_is_setter(  //dir=decl
+  int id: @accessor_decl ref
+);
+
+#keyset[id]
+accessor_decl_is_will_set(  //dir=decl
+  int id: @accessor_decl ref
+);
+
+#keyset[id]
+accessor_decl_is_did_set(  //dir=decl
+  int id: @accessor_decl ref
+);
+
+associated_type_decls(  //dir=decl
+  unique int id: @associated_type_decl
+);
+
+concrete_func_decls(  //dir=decl
+  unique int id: @concrete_func_decl
+);
+
+concrete_var_decls(  //dir=decl
+  unique int id: @concrete_var_decl,
+  int introducer_int: int ref
+);
+
+generic_type_param_decls(  //dir=decl
+  unique int id: @generic_type_param_decl
+);
+
+@nominal_type_decl =
+  @class_decl
+| @enum_decl
+| @protocol_decl
+| @struct_decl
+;
+
+#keyset[id]
+nominal_type_decls(  //dir=decl
+  int id: @nominal_type_decl ref,
+  int type_: @type_or_none ref
+);
+
+opaque_type_decls(  //dir=decl
+  unique int id: @opaque_type_decl,
+  int naming_declaration: @value_decl_or_none ref
+);
+
+#keyset[id, index]
+opaque_type_decl_opaque_generic_params(  //dir=decl
+  int id: @opaque_type_decl ref,
+  int index: int ref,
+  int opaque_generic_param: @generic_type_param_type_or_none ref
+);
+
+param_decls(  //dir=decl
+  unique int id: @param_decl
+);
+
+#keyset[id]
+param_decl_is_inout(  //dir=decl
+  int id: @param_decl ref
+);
+
+#keyset[id]
+param_decl_property_wrapper_local_wrapped_var_bindings(  //dir=decl
+  int id: @param_decl ref,
+  int property_wrapper_local_wrapped_var_binding: @pattern_binding_decl_or_none ref
+);
+
+#keyset[id]
+param_decl_property_wrapper_local_wrapped_vars(  //dir=decl
+  int id: @param_decl ref,
+  int property_wrapper_local_wrapped_var: @var_decl_or_none ref
+);
+
+type_alias_decls(  //dir=decl
+  unique int id: @type_alias_decl
+);
+
+class_decls(  //dir=decl
+  unique int id: @class_decl
+);
+
+enum_decls(  //dir=decl
+  unique int id: @enum_decl
+);
+
+protocol_decls(  //dir=decl
+  unique int id: @protocol_decl
+);
+
+struct_decls(  //dir=decl
+  unique int id: @struct_decl
+);
+
+arguments(  //dir=expr
+  unique int id: @argument,
+  string label: string ref,
+  int expr: @expr_or_none ref
+);
+
+@expr =
+  @abstract_closure_expr
+| @any_try_expr
+| @applied_property_wrapper_expr
+| @apply_expr
+| @assign_expr
+| @bind_optional_expr
+| @capture_list_expr
+| @collection_expr
+| @decl_ref_expr
+| @default_argument_expr
+| @discard_assignment_expr
+| @dot_syntax_base_ignored_expr
+| @dynamic_type_expr
+| @enum_is_case_expr
+| @error_expr
+| @explicit_cast_expr
+| @force_value_expr
+| @identity_expr
+| @if_expr
+| @implicit_conversion_expr
+| @in_out_expr
+| @key_path_application_expr
+| @key_path_dot_expr
+| @key_path_expr
+| @lazy_initializer_expr
+| @literal_expr
+| @lookup_expr
+| @make_temporarily_escapable_expr
+| @obj_c_selector_expr
+| @one_way_expr
+| @opaque_value_expr
+| @open_existential_expr
+| @optional_evaluation_expr
+| @other_constructor_decl_ref_expr
+| @overloaded_decl_ref_expr
+| @property_wrapper_value_placeholder_expr
+| @rebind_self_in_constructor_expr
+| @sequence_expr
+| @super_ref_expr
+| @tap_expr
+| @tuple_element_expr
+| @tuple_expr
+| @type_expr
+| @unresolved_decl_ref_expr
+| @unresolved_dot_expr
+| @unresolved_member_expr
+| @unresolved_pattern_expr
+| @unresolved_specialize_expr
+| @vararg_expansion_expr
+;
+
+#keyset[id]
+expr_types(  //dir=expr
+  int id: @expr ref,
+  int type_: @type_or_none ref
+);
+
+@abstract_closure_expr =
+  @auto_closure_expr
+| @closure_expr
+;
+
+@any_try_expr =
+  @force_try_expr
+| @optional_try_expr
+| @try_expr
+;
+
+#keyset[id]
+any_try_exprs(  //dir=expr
+  int id: @any_try_expr ref,
+  int sub_expr: @expr_or_none ref
+);
+
+applied_property_wrapper_exprs(  //dir=expr
+  unique int id: @applied_property_wrapper_expr,
+  int kind: int ref,
+  int value: @expr_or_none ref,
+  int param: @param_decl_or_none ref
+);
+
+@apply_expr =
+  @binary_expr
+| @call_expr
+| @postfix_unary_expr
+| @prefix_unary_expr
+| @self_apply_expr
+;
+
+#keyset[id]
+apply_exprs(  //dir=expr
+  int id: @apply_expr ref,
+  int function: @expr_or_none ref
+);
+
+#keyset[id, index]
+apply_expr_arguments(  //dir=expr
+  int id: @apply_expr ref,
+  int index: int ref,
+  int argument: @argument_or_none ref
+);
+
+assign_exprs(  //dir=expr
+  unique int id: @assign_expr,
+  int dest: @expr_or_none ref,
+  int source: @expr_or_none ref
+);
+
+bind_optional_exprs(  //dir=expr
+  unique int id: @bind_optional_expr,
+  int sub_expr: @expr_or_none ref
+);
+
+capture_list_exprs(  //dir=expr
+  unique int id: @capture_list_expr,
+  int closure_body: @closure_expr_or_none ref
+);
+
+#keyset[id, index]
+capture_list_expr_binding_decls(  //dir=expr
+  int id: @capture_list_expr ref,
+  int index: int ref,
+  int binding_decl: @pattern_binding_decl_or_none ref
+);
+
+@collection_expr =
+  @array_expr
+| @dictionary_expr
+;
+
+decl_ref_exprs(  //dir=expr
+  unique int id: @decl_ref_expr,
+  int decl: @decl_or_none ref
+);
+
+#keyset[id, index]
+decl_ref_expr_replacement_types(  //dir=expr
+  int id: @decl_ref_expr ref,
+  int index: int ref,
+  int replacement_type: @type_or_none ref
+);
+
+#keyset[id]
+decl_ref_expr_has_direct_to_storage_semantics(  //dir=expr
+  int id: @decl_ref_expr ref
+);
+
+#keyset[id]
+decl_ref_expr_has_direct_to_implementation_semantics(  //dir=expr
+  int id: @decl_ref_expr ref
+);
+
+#keyset[id]
+decl_ref_expr_has_ordinary_semantics(  //dir=expr
+  int id: @decl_ref_expr ref
+);
+
+default_argument_exprs(  //dir=expr
+  unique int id: @default_argument_expr,
+  int param_decl: @param_decl_or_none ref,
+  int param_index: int ref
+);
+
+#keyset[id]
+default_argument_expr_caller_side_defaults(  //dir=expr
+  int id: @default_argument_expr ref,
+  int caller_side_default: @expr_or_none ref
+);
+
+discard_assignment_exprs(  //dir=expr
+  unique int id: @discard_assignment_expr
+);
+
+dot_syntax_base_ignored_exprs(  //dir=expr
+  unique int id: @dot_syntax_base_ignored_expr,
+  int qualifier: @expr_or_none ref,
+  int sub_expr: @expr_or_none ref
+);
+
+dynamic_type_exprs(  //dir=expr
+  unique int id: @dynamic_type_expr,
+  int base: @expr_or_none ref
+);
+
+enum_is_case_exprs(  //dir=expr
+  unique int id: @enum_is_case_expr,
+  int sub_expr: @expr_or_none ref,
+  int element: @enum_element_decl_or_none ref
+);
+
+error_exprs(  //dir=expr
+  unique int id: @error_expr
+);
+
+@explicit_cast_expr =
+  @checked_cast_expr
+| @coerce_expr
+;
+
+#keyset[id]
+explicit_cast_exprs(  //dir=expr
+  int id: @explicit_cast_expr ref,
+  int sub_expr: @expr_or_none ref
+);
+
+force_value_exprs(  //dir=expr
+  unique int id: @force_value_expr,
+  int sub_expr: @expr_or_none ref
+);
+
+@identity_expr =
+  @await_expr
+| @dot_self_expr
+| @paren_expr
+| @unresolved_member_chain_result_expr
+;
+
+#keyset[id]
+identity_exprs(  //dir=expr
+  int id: @identity_expr ref,
+  int sub_expr: @expr_or_none ref
+);
+
+if_exprs(  //dir=expr
+  unique int id: @if_expr,
+  int condition: @expr_or_none ref,
+  int then_expr: @expr_or_none ref,
+  int else_expr: @expr_or_none ref
+);
+
+@implicit_conversion_expr =
+  @any_hashable_erasure_expr
+| @archetype_to_super_expr
+| @array_to_pointer_expr
+| @bridge_from_obj_c_expr
+| @bridge_to_obj_c_expr
+| @class_metatype_to_object_expr
+| @collection_upcast_conversion_expr
+| @conditional_bridge_from_obj_c_expr
+| @covariant_function_conversion_expr
+| @covariant_return_conversion_expr
+| @derived_to_base_expr
+| @destructure_tuple_expr
+| @differentiable_function_expr
+| @differentiable_function_extract_original_expr
+| @erasure_expr
+| @existential_metatype_to_object_expr
+| @foreign_object_conversion_expr
+| @function_conversion_expr
+| @in_out_to_pointer_expr
+| @inject_into_optional_expr
+| @linear_function_expr
+| @linear_function_extract_original_expr
+| @linear_to_differentiable_function_expr
+| @load_expr
+| @metatype_conversion_expr
+| @pointer_to_pointer_expr
+| @protocol_metatype_to_object_expr
+| @string_to_pointer_expr
+| @underlying_to_opaque_expr
+| @unevaluated_instance_expr
+| @unresolved_type_conversion_expr
+;
+
+#keyset[id]
+implicit_conversion_exprs(  //dir=expr
+  int id: @implicit_conversion_expr ref,
+  int sub_expr: @expr_or_none ref
+);
+
+in_out_exprs(  //dir=expr
+  unique int id: @in_out_expr,
+  int sub_expr: @expr_or_none ref
+);
+
+key_path_application_exprs(  //dir=expr
+  unique int id: @key_path_application_expr,
+  int base: @expr_or_none ref,
+  int key_path: @expr_or_none ref
+);
+
+key_path_dot_exprs(  //dir=expr
+  unique int id: @key_path_dot_expr
+);
+
+key_path_exprs(  //dir=expr
+  unique int id: @key_path_expr
+);
+
+#keyset[id]
+key_path_expr_roots(  //dir=expr
+  int id: @key_path_expr ref,
+  int root: @type_repr_or_none ref
+);
+
+#keyset[id]
+key_path_expr_parsed_paths(  //dir=expr
+  int id: @key_path_expr ref,
+  int parsed_path: @expr_or_none ref
+);
+
+lazy_initializer_exprs(  //dir=expr
+  unique int id: @lazy_initializer_expr,
+  int sub_expr: @expr_or_none ref
+);
+
+@literal_expr =
+  @builtin_literal_expr
+| @interpolated_string_literal_expr
+| @nil_literal_expr
+| @object_literal_expr
+| @regex_literal_expr
+;
+
+@lookup_expr =
+  @dynamic_lookup_expr
+| @member_ref_expr
+| @method_ref_expr
+| @subscript_expr
+;
+
+#keyset[id]
+lookup_exprs(  //dir=expr
+  int id: @lookup_expr ref,
+  int base: @expr_or_none ref
+);
+
+#keyset[id]
+lookup_expr_members(  //dir=expr
+  int id: @lookup_expr ref,
+  int member: @decl_or_none ref
+);
+
+make_temporarily_escapable_exprs(  //dir=expr
+  unique int id: @make_temporarily_escapable_expr,
+  int escaping_closure: @opaque_value_expr_or_none ref,
+  int nonescaping_closure: @expr_or_none ref,
+  int sub_expr: @expr_or_none ref
+);
+
+obj_c_selector_exprs(  //dir=expr
+  unique int id: @obj_c_selector_expr,
+  int sub_expr: @expr_or_none ref,
+  int method: @abstract_function_decl_or_none ref
+);
+
+one_way_exprs(  //dir=expr
+  unique int id: @one_way_expr,
+  int sub_expr: @expr_or_none ref
+);
+
+opaque_value_exprs(  //dir=expr
+  unique int id: @opaque_value_expr
+);
+
+open_existential_exprs(  //dir=expr
+  unique int id: @open_existential_expr,
+  int sub_expr: @expr_or_none ref,
+  int existential: @expr_or_none ref,
+  int opaque_expr: @opaque_value_expr_or_none ref
+);
+
+optional_evaluation_exprs(  //dir=expr
+  unique int id: @optional_evaluation_expr,
+  int sub_expr: @expr_or_none ref
+);
+
+other_constructor_decl_ref_exprs(  //dir=expr
+  unique int id: @other_constructor_decl_ref_expr,
+  int constructor_decl: @constructor_decl_or_none ref
+);
+
+overloaded_decl_ref_exprs(  //dir=expr
+  unique int id: @overloaded_decl_ref_expr
+);
+
+#keyset[id, index]
+overloaded_decl_ref_expr_possible_declarations(  //dir=expr
+  int id: @overloaded_decl_ref_expr ref,
+  int index: int ref,
+  int possible_declaration: @value_decl_or_none ref
+);
+
+property_wrapper_value_placeholder_exprs(  //dir=expr
+  unique int id: @property_wrapper_value_placeholder_expr,
+  int placeholder: @opaque_value_expr_or_none ref
+);
+
+#keyset[id]
+property_wrapper_value_placeholder_expr_wrapped_values(  //dir=expr
+  int id: @property_wrapper_value_placeholder_expr ref,
+  int wrapped_value: @expr_or_none ref
+);
+
+rebind_self_in_constructor_exprs(  //dir=expr
+  unique int id: @rebind_self_in_constructor_expr,
+  int sub_expr: @expr_or_none ref,
+  int self: @var_decl_or_none ref
+);
+
+sequence_exprs(  //dir=expr
+  unique int id: @sequence_expr
+);
+
+#keyset[id, index]
+sequence_expr_elements(  //dir=expr
+  int id: @sequence_expr ref,
+  int index: int ref,
+  int element: @expr_or_none ref
+);
+
+super_ref_exprs(  //dir=expr
+  unique int id: @super_ref_expr,
+  int self: @var_decl_or_none ref
+);
+
+tap_exprs(  //dir=expr
+  unique int id: @tap_expr,
+  int body: @brace_stmt_or_none ref,
+  int var: @var_decl_or_none ref
+);
+
+#keyset[id]
+tap_expr_sub_exprs(  //dir=expr
+  int id: @tap_expr ref,
+  int sub_expr: @expr_or_none ref
+);
+
+tuple_element_exprs(  //dir=expr
+  unique int id: @tuple_element_expr,
+  int sub_expr: @expr_or_none ref,
+  int index: int ref
+);
+
+tuple_exprs(  //dir=expr
+  unique int id: @tuple_expr
+);
+
+#keyset[id, index]
+tuple_expr_elements(  //dir=expr
+  int id: @tuple_expr ref,
+  int index: int ref,
+  int element: @expr_or_none ref
+);
+
+type_exprs(  //dir=expr
+  unique int id: @type_expr
+);
+
+#keyset[id]
+type_expr_type_reprs(  //dir=expr
+  int id: @type_expr ref,
+  int type_repr: @type_repr_or_none ref
+);
+
+unresolved_decl_ref_exprs(  //dir=expr
+  unique int id: @unresolved_decl_ref_expr
+);
+
+#keyset[id]
+unresolved_decl_ref_expr_names(  //dir=expr
+  int id: @unresolved_decl_ref_expr ref,
+  string name: string ref
+);
+
+unresolved_dot_exprs(  //dir=expr
+  unique int id: @unresolved_dot_expr,
+  int base: @expr_or_none ref,
+  string name: string ref
+);
+
+unresolved_member_exprs(  //dir=expr
+  unique int id: @unresolved_member_expr,
+  string name: string ref
+);
+
+unresolved_pattern_exprs(  //dir=expr
+  unique int id: @unresolved_pattern_expr,
+  int sub_pattern: @pattern_or_none ref
+);
+
+unresolved_specialize_exprs(  //dir=expr
+  unique int id: @unresolved_specialize_expr,
+  int sub_expr: @expr_or_none ref
+);
+
+vararg_expansion_exprs(  //dir=expr
+  unique int id: @vararg_expansion_expr,
+  int sub_expr: @expr_or_none ref
+);
+
+any_hashable_erasure_exprs(  //dir=expr
+  unique int id: @any_hashable_erasure_expr
+);
+
+archetype_to_super_exprs(  //dir=expr
+  unique int id: @archetype_to_super_expr
+);
+
+array_exprs(  //dir=expr
+  unique int id: @array_expr
+);
+
+#keyset[id, index]
+array_expr_elements(  //dir=expr
+  int id: @array_expr ref,
+  int index: int ref,
+  int element: @expr_or_none ref
+);
+
+array_to_pointer_exprs(  //dir=expr
+  unique int id: @array_to_pointer_expr
+);
+
+auto_closure_exprs(  //dir=expr
+  unique int id: @auto_closure_expr
+);
+
+await_exprs(  //dir=expr
+  unique int id: @await_expr
+);
+
+binary_exprs(  //dir=expr
+  unique int id: @binary_expr
+);
+
+bridge_from_obj_c_exprs(  //dir=expr
+  unique int id: @bridge_from_obj_c_expr
+);
+
+bridge_to_obj_c_exprs(  //dir=expr
+  unique int id: @bridge_to_obj_c_expr
+);
+
+@builtin_literal_expr =
+  @boolean_literal_expr
+| @magic_identifier_literal_expr
+| @number_literal_expr
+| @string_literal_expr
+;
+
+call_exprs(  //dir=expr
+  unique int id: @call_expr
+);
+
+@checked_cast_expr =
+  @conditional_checked_cast_expr
+| @forced_checked_cast_expr
+| @is_expr
+;
+
+class_metatype_to_object_exprs(  //dir=expr
+  unique int id: @class_metatype_to_object_expr
+);
+
+closure_exprs(  //dir=expr
+  unique int id: @closure_expr
+);
+
+coerce_exprs(  //dir=expr
+  unique int id: @coerce_expr
+);
+
+collection_upcast_conversion_exprs(  //dir=expr
+  unique int id: @collection_upcast_conversion_expr
+);
+
+conditional_bridge_from_obj_c_exprs(  //dir=expr
+  unique int id: @conditional_bridge_from_obj_c_expr
+);
+
+covariant_function_conversion_exprs(  //dir=expr
+  unique int id: @covariant_function_conversion_expr
+);
+
+covariant_return_conversion_exprs(  //dir=expr
+  unique int id: @covariant_return_conversion_expr
+);
+
+derived_to_base_exprs(  //dir=expr
+  unique int id: @derived_to_base_expr
+);
+
+destructure_tuple_exprs(  //dir=expr
+  unique int id: @destructure_tuple_expr
+);
+
+dictionary_exprs(  //dir=expr
+  unique int id: @dictionary_expr
+);
+
+#keyset[id, index]
+dictionary_expr_elements(  //dir=expr
+  int id: @dictionary_expr ref,
+  int index: int ref,
+  int element: @expr_or_none ref
+);
+
+differentiable_function_exprs(  //dir=expr
+  unique int id: @differentiable_function_expr
+);
+
+differentiable_function_extract_original_exprs(  //dir=expr
+  unique int id: @differentiable_function_extract_original_expr
+);
+
+dot_self_exprs(  //dir=expr
+  unique int id: @dot_self_expr
+);
+
+@dynamic_lookup_expr =
+  @dynamic_member_ref_expr
+| @dynamic_subscript_expr
+;
+
+erasure_exprs(  //dir=expr
+  unique int id: @erasure_expr
+);
+
+existential_metatype_to_object_exprs(  //dir=expr
+  unique int id: @existential_metatype_to_object_expr
+);
+
+force_try_exprs(  //dir=expr
+  unique int id: @force_try_expr
+);
+
+foreign_object_conversion_exprs(  //dir=expr
+  unique int id: @foreign_object_conversion_expr
+);
+
+function_conversion_exprs(  //dir=expr
+  unique int id: @function_conversion_expr
+);
+
+in_out_to_pointer_exprs(  //dir=expr
+  unique int id: @in_out_to_pointer_expr
+);
+
+inject_into_optional_exprs(  //dir=expr
+  unique int id: @inject_into_optional_expr
+);
+
+interpolated_string_literal_exprs(  //dir=expr
+  unique int id: @interpolated_string_literal_expr
+);
+
+#keyset[id]
+interpolated_string_literal_expr_interpolation_exprs(  //dir=expr
+  int id: @interpolated_string_literal_expr ref,
+  int interpolation_expr: @opaque_value_expr_or_none ref
+);
+
+#keyset[id]
+interpolated_string_literal_expr_interpolation_count_exprs(  //dir=expr
+  int id: @interpolated_string_literal_expr ref,
+  int interpolation_count_expr: @expr_or_none ref
+);
+
+#keyset[id]
+interpolated_string_literal_expr_literal_capacity_exprs(  //dir=expr
+  int id: @interpolated_string_literal_expr ref,
+  int literal_capacity_expr: @expr_or_none ref
+);
+
+#keyset[id]
+interpolated_string_literal_expr_appending_exprs(  //dir=expr
+  int id: @interpolated_string_literal_expr ref,
+  int appending_expr: @tap_expr_or_none ref
+);
+
+linear_function_exprs(  //dir=expr
+  unique int id: @linear_function_expr
+);
+
+linear_function_extract_original_exprs(  //dir=expr
+  unique int id: @linear_function_extract_original_expr
+);
+
+linear_to_differentiable_function_exprs(  //dir=expr
+  unique int id: @linear_to_differentiable_function_expr
+);
+
+load_exprs(  //dir=expr
+  unique int id: @load_expr
+);
+
+member_ref_exprs(  //dir=expr
+  unique int id: @member_ref_expr
+);
+
+#keyset[id]
+member_ref_expr_has_direct_to_storage_semantics(  //dir=expr
+  int id: @member_ref_expr ref
+);
+
+#keyset[id]
+member_ref_expr_has_direct_to_implementation_semantics(  //dir=expr
+  int id: @member_ref_expr ref
+);
+
+#keyset[id]
+member_ref_expr_has_ordinary_semantics(  //dir=expr
+  int id: @member_ref_expr ref
+);
+
+metatype_conversion_exprs(  //dir=expr
+  unique int id: @metatype_conversion_expr
+);
+
+method_ref_exprs(  //dir=expr
+  unique int id: @method_ref_expr
+);
+
+nil_literal_exprs(  //dir=expr
+  unique int id: @nil_literal_expr
+);
+
+object_literal_exprs(  //dir=expr
+  unique int id: @object_literal_expr,
+  int kind: int ref
+);
+
+#keyset[id, index]
+object_literal_expr_arguments(  //dir=expr
+  int id: @object_literal_expr ref,
+  int index: int ref,
+  int argument: @argument_or_none ref
+);
+
+optional_try_exprs(  //dir=expr
+  unique int id: @optional_try_expr
+);
+
+paren_exprs(  //dir=expr
+  unique int id: @paren_expr
+);
+
+pointer_to_pointer_exprs(  //dir=expr
+  unique int id: @pointer_to_pointer_expr
+);
+
+postfix_unary_exprs(  //dir=expr
+  unique int id: @postfix_unary_expr
+);
+
+prefix_unary_exprs(  //dir=expr
+  unique int id: @prefix_unary_expr
+);
+
+protocol_metatype_to_object_exprs(  //dir=expr
+  unique int id: @protocol_metatype_to_object_expr
+);
+
+regex_literal_exprs(  //dir=expr
+  unique int id: @regex_literal_expr
+);
+
+@self_apply_expr =
+  @constructor_ref_call_expr
+| @dot_syntax_call_expr
+;
+
+#keyset[id]
+self_apply_exprs(  //dir=expr
+  int id: @self_apply_expr ref,
+  int base: @expr_or_none ref
+);
+
+string_to_pointer_exprs(  //dir=expr
+  unique int id: @string_to_pointer_expr
+);
+
+subscript_exprs(  //dir=expr
+  unique int id: @subscript_expr
+);
+
+#keyset[id, index]
+subscript_expr_arguments(  //dir=expr
+  int id: @subscript_expr ref,
+  int index: int ref,
+  int argument: @argument_or_none ref
+);
+
+#keyset[id]
+subscript_expr_has_direct_to_storage_semantics(  //dir=expr
+  int id: @subscript_expr ref
+);
+
+#keyset[id]
+subscript_expr_has_direct_to_implementation_semantics(  //dir=expr
+  int id: @subscript_expr ref
+);
+
+#keyset[id]
+subscript_expr_has_ordinary_semantics(  //dir=expr
+  int id: @subscript_expr ref
+);
+
+try_exprs(  //dir=expr
+  unique int id: @try_expr
+);
+
+underlying_to_opaque_exprs(  //dir=expr
+  unique int id: @underlying_to_opaque_expr
+);
+
+unevaluated_instance_exprs(  //dir=expr
+  unique int id: @unevaluated_instance_expr
+);
+
+unresolved_member_chain_result_exprs(  //dir=expr
+  unique int id: @unresolved_member_chain_result_expr
+);
+
+unresolved_type_conversion_exprs(  //dir=expr
+  unique int id: @unresolved_type_conversion_expr
+);
+
+boolean_literal_exprs(  //dir=expr
+  unique int id: @boolean_literal_expr,
+  boolean value: boolean ref
+);
+
+conditional_checked_cast_exprs(  //dir=expr
+  unique int id: @conditional_checked_cast_expr
+);
+
+constructor_ref_call_exprs(  //dir=expr
+  unique int id: @constructor_ref_call_expr
+);
+
+dot_syntax_call_exprs(  //dir=expr
+  unique int id: @dot_syntax_call_expr
+);
+
+dynamic_member_ref_exprs(  //dir=expr
+  unique int id: @dynamic_member_ref_expr
+);
+
+dynamic_subscript_exprs(  //dir=expr
+  unique int id: @dynamic_subscript_expr
+);
+
+forced_checked_cast_exprs(  //dir=expr
+  unique int id: @forced_checked_cast_expr
+);
+
+is_exprs(  //dir=expr
+  unique int id: @is_expr
+);
+
+magic_identifier_literal_exprs(  //dir=expr
+  unique int id: @magic_identifier_literal_expr,
+  string kind: string ref
+);
+
+@number_literal_expr =
+  @float_literal_expr
+| @integer_literal_expr
+;
+
+string_literal_exprs(  //dir=expr
+  unique int id: @string_literal_expr,
+  string value: string ref
+);
+
+float_literal_exprs(  //dir=expr
+  unique int id: @float_literal_expr,
+  string string_value: string ref
+);
+
+integer_literal_exprs(  //dir=expr
+  unique int id: @integer_literal_expr,
+  string string_value: string ref
+);
+
+@pattern =
+  @any_pattern
+| @binding_pattern
+| @bool_pattern
+| @enum_element_pattern
+| @expr_pattern
+| @is_pattern
+| @named_pattern
+| @optional_some_pattern
+| @paren_pattern
+| @tuple_pattern
+| @typed_pattern
+;
+
+any_patterns(  //dir=pattern
+  unique int id: @any_pattern
+);
+
+binding_patterns(  //dir=pattern
+  unique int id: @binding_pattern,
+  int sub_pattern: @pattern_or_none ref
+);
+
+bool_patterns(  //dir=pattern
+  unique int id: @bool_pattern,
+  boolean value: boolean ref
+);
+
+enum_element_patterns(  //dir=pattern
+  unique int id: @enum_element_pattern,
+  int element: @enum_element_decl_or_none ref
+);
+
+#keyset[id]
+enum_element_pattern_sub_patterns(  //dir=pattern
+  int id: @enum_element_pattern ref,
+  int sub_pattern: @pattern_or_none ref
+);
+
+expr_patterns(  //dir=pattern
+  unique int id: @expr_pattern,
+  int sub_expr: @expr_or_none ref
+);
+
+is_patterns(  //dir=pattern
+  unique int id: @is_pattern
+);
+
+#keyset[id]
+is_pattern_cast_type_reprs(  //dir=pattern
+  int id: @is_pattern ref,
+  int cast_type_repr: @type_repr_or_none ref
+);
+
+#keyset[id]
+is_pattern_sub_patterns(  //dir=pattern
+  int id: @is_pattern ref,
+  int sub_pattern: @pattern_or_none ref
+);
+
+named_patterns(  //dir=pattern
+  unique int id: @named_pattern,
+  string name: string ref
+);
+
+optional_some_patterns(  //dir=pattern
+  unique int id: @optional_some_pattern,
+  int sub_pattern: @pattern_or_none ref
+);
+
+paren_patterns(  //dir=pattern
+  unique int id: @paren_pattern,
+  int sub_pattern: @pattern_or_none ref
+);
+
+tuple_patterns(  //dir=pattern
+  unique int id: @tuple_pattern
+);
+
+#keyset[id, index]
+tuple_pattern_elements(  //dir=pattern
+  int id: @tuple_pattern ref,
+  int index: int ref,
+  int element: @pattern_or_none ref
+);
+
+typed_patterns(  //dir=pattern
+  unique int id: @typed_pattern,
+  int sub_pattern: @pattern_or_none ref
+);
+
+#keyset[id]
+typed_pattern_type_reprs(  //dir=pattern
+  int id: @typed_pattern ref,
+  int type_repr: @type_repr_or_none ref
+);
+
+case_label_items(  //dir=stmt
+  unique int id: @case_label_item,
+  int pattern: @pattern_or_none ref
+);
+
+#keyset[id]
+case_label_item_guards(  //dir=stmt
+  int id: @case_label_item ref,
+  int guard: @expr_or_none ref
+);
+
+condition_elements(  //dir=stmt
+  unique int id: @condition_element
+);
+
+#keyset[id]
+condition_element_booleans(  //dir=stmt
+  int id: @condition_element ref,
+  int boolean_: @expr_or_none ref
+);
+
+#keyset[id]
+condition_element_patterns(  //dir=stmt
+  int id: @condition_element ref,
+  int pattern: @pattern_or_none ref
+);
+
+#keyset[id]
+condition_element_initializers(  //dir=stmt
+  int id: @condition_element ref,
+  int initializer: @expr_or_none ref
+);
+
+@stmt =
+  @brace_stmt
+| @break_stmt
+| @case_stmt
+| @continue_stmt
+| @defer_stmt
+| @fail_stmt
+| @fallthrough_stmt
+| @labeled_stmt
+| @pound_assert_stmt
+| @return_stmt
+| @throw_stmt
+| @yield_stmt
+;
+
+stmt_conditions(  //dir=stmt
+  unique int id: @stmt_condition
+);
+
+#keyset[id, index]
+stmt_condition_elements(  //dir=stmt
+  int id: @stmt_condition ref,
+  int index: int ref,
+  int element: @condition_element_or_none ref
+);
+
+brace_stmts(  //dir=stmt
+  unique int id: @brace_stmt
+);
+
+#keyset[id, index]
+brace_stmt_elements(  //dir=stmt
+  int id: @brace_stmt ref,
+  int index: int ref,
+  int element: @ast_node_or_none ref
+);
+
+break_stmts(  //dir=stmt
+  unique int id: @break_stmt
+);
+
+#keyset[id]
+break_stmt_target_names(  //dir=stmt
+  int id: @break_stmt ref,
+  string target_name: string ref
+);
+
+#keyset[id]
+break_stmt_targets(  //dir=stmt
+  int id: @break_stmt ref,
+  int target: @stmt_or_none ref
+);
+
+case_stmts(  //dir=stmt
+  unique int id: @case_stmt,
+  int body: @stmt_or_none ref
+);
+
+#keyset[id, index]
+case_stmt_labels(  //dir=stmt
+  int id: @case_stmt ref,
+  int index: int ref,
+  int label: @case_label_item_or_none ref
+);
+
+#keyset[id, index]
+case_stmt_variables(  //dir=stmt
+  int id: @case_stmt ref,
+  int index: int ref,
+  int variable: @var_decl_or_none ref
+);
+
+continue_stmts(  //dir=stmt
+  unique int id: @continue_stmt
+);
+
+#keyset[id]
+continue_stmt_target_names(  //dir=stmt
+  int id: @continue_stmt ref,
+  string target_name: string ref
+);
+
+#keyset[id]
+continue_stmt_targets(  //dir=stmt
+  int id: @continue_stmt ref,
+  int target: @stmt_or_none ref
+);
+
+defer_stmts(  //dir=stmt
+  unique int id: @defer_stmt,
+  int body: @brace_stmt_or_none ref
+);
+
+fail_stmts(  //dir=stmt
+  unique int id: @fail_stmt
+);
+
+fallthrough_stmts(  //dir=stmt
+  unique int id: @fallthrough_stmt,
+  int fallthrough_source: @case_stmt_or_none ref,
+  int fallthrough_dest: @case_stmt_or_none ref
+);
+
+@labeled_stmt =
+  @do_catch_stmt
+| @do_stmt
+| @for_each_stmt
+| @labeled_conditional_stmt
+| @repeat_while_stmt
+| @switch_stmt
+;
+
+#keyset[id]
+labeled_stmt_labels(  //dir=stmt
+  int id: @labeled_stmt ref,
+  string label: string ref
+);
+
+pound_assert_stmts(  //dir=stmt
+  unique int id: @pound_assert_stmt,
+  int condition: @expr_or_none ref,
+  string message: string ref
+);
+
+return_stmts(  //dir=stmt
+  unique int id: @return_stmt
+);
+
+#keyset[id]
+return_stmt_results(  //dir=stmt
+  int id: @return_stmt ref,
+  int result: @expr_or_none ref
+);
+
+throw_stmts(  //dir=stmt
+  unique int id: @throw_stmt,
+  int sub_expr: @expr_or_none ref
+);
+
+yield_stmts(  //dir=stmt
+  unique int id: @yield_stmt
+);
+
+#keyset[id, index]
+yield_stmt_results(  //dir=stmt
+  int id: @yield_stmt ref,
+  int index: int ref,
+  int result: @expr_or_none ref
+);
+
+do_catch_stmts(  //dir=stmt
+  unique int id: @do_catch_stmt,
+  int body: @stmt_or_none ref
+);
+
+#keyset[id, index]
+do_catch_stmt_catches(  //dir=stmt
+  int id: @do_catch_stmt ref,
+  int index: int ref,
+  int catch: @case_stmt_or_none ref
+);
+
+do_stmts(  //dir=stmt
+  unique int id: @do_stmt,
+  int body: @brace_stmt_or_none ref
+);
+
+for_each_stmts(  //dir=stmt
+  unique int id: @for_each_stmt,
+  int pattern: @pattern_or_none ref,
+  int sequence: @expr_or_none ref,
+  int body: @brace_stmt_or_none ref
+);
+
+#keyset[id]
+for_each_stmt_wheres(  //dir=stmt
+  int id: @for_each_stmt ref,
+  int where: @expr_or_none ref
+);
+
+@labeled_conditional_stmt =
+  @guard_stmt
+| @if_stmt
+| @while_stmt
+;
+
+#keyset[id]
+labeled_conditional_stmts(  //dir=stmt
+  int id: @labeled_conditional_stmt ref,
+  int condition: @stmt_condition_or_none ref
+);
+
+repeat_while_stmts(  //dir=stmt
+  unique int id: @repeat_while_stmt,
+  int condition: @expr_or_none ref,
+  int body: @stmt_or_none ref
+);
+
+switch_stmts(  //dir=stmt
+  unique int id: @switch_stmt,
+  int expr: @expr_or_none ref
+);
+
+#keyset[id, index]
+switch_stmt_cases(  //dir=stmt
+  int id: @switch_stmt ref,
+  int index: int ref,
+  int case_: @case_stmt_or_none ref
+);
+
+guard_stmts(  //dir=stmt
+  unique int id: @guard_stmt,
+  int body: @brace_stmt_or_none ref
+);
+
+if_stmts(  //dir=stmt
+  unique int id: @if_stmt,
+  int then: @stmt_or_none ref
+);
+
+#keyset[id]
+if_stmt_elses(  //dir=stmt
+  int id: @if_stmt ref,
+  int else: @stmt_or_none ref
+);
+
+while_stmts(  //dir=stmt
+  unique int id: @while_stmt,
+  int body: @stmt_or_none ref
+);
+
+@type =
+  @any_function_type
+| @any_generic_type
+| @any_metatype_type
+| @builtin_type
+| @dependent_member_type
+| @dynamic_self_type
+| @error_type
+| @existential_type
+| @in_out_type
+| @l_value_type
+| @module_type
+| @parameterized_protocol_type
+| @protocol_composition_type
+| @reference_storage_type
+| @substitutable_type
+| @sugar_type
+| @tuple_type
+| @unresolved_type
+;
+
+#keyset[id]
+types(  //dir=type
+  int id: @type ref,
+  string name: string ref,
+  int canonical_type: @type_or_none ref
+);
+
+type_reprs(  //dir=type
+  unique int id: @type_repr,
+  int type_: @type_or_none ref
+);
+
+@any_function_type =
+  @function_type
+| @generic_function_type
+;
+
+#keyset[id]
+any_function_types(  //dir=type
+  int id: @any_function_type ref,
+  int result: @type_or_none ref
+);
+
+#keyset[id, index]
+any_function_type_param_types(  //dir=type
+  int id: @any_function_type ref,
+  int index: int ref,
+  int param_type: @type_or_none ref
+);
+
+#keyset[id, index]
+any_function_type_param_labels(  //dir=type
+  int id: @any_function_type ref,
+  int index: int ref,
+  string param_label: string ref
+);
+
+#keyset[id]
+any_function_type_is_throwing(  //dir=type
+  int id: @any_function_type ref
+);
+
+#keyset[id]
+any_function_type_is_async(  //dir=type
+  int id: @any_function_type ref
+);
+
+@any_generic_type =
+  @nominal_or_bound_generic_nominal_type
+| @unbound_generic_type
+;
+
+#keyset[id]
+any_generic_types(  //dir=type
+  int id: @any_generic_type ref,
+  int declaration: @decl_or_none ref
+);
+
+#keyset[id]
+any_generic_type_parents(  //dir=type
+  int id: @any_generic_type ref,
+  int parent: @type_or_none ref
+);
+
+@any_metatype_type =
+  @existential_metatype_type
+| @metatype_type
+;
+
+@builtin_type =
+  @any_builtin_integer_type
+| @builtin_bridge_object_type
+| @builtin_default_actor_storage_type
+| @builtin_executor_type
+| @builtin_float_type
+| @builtin_job_type
+| @builtin_native_object_type
+| @builtin_raw_pointer_type
+| @builtin_raw_unsafe_continuation_type
+| @builtin_unsafe_value_buffer_type
+| @builtin_vector_type
+;
+
+dependent_member_types(  //dir=type
+  unique int id: @dependent_member_type,
+  int base_type: @type_or_none ref,
+  int associated_type_decl: @associated_type_decl_or_none ref
+);
+
+dynamic_self_types(  //dir=type
+  unique int id: @dynamic_self_type,
+  int static_self_type: @type_or_none ref
+);
+
+error_types(  //dir=type
+  unique int id: @error_type
+);
+
+existential_types(  //dir=type
+  unique int id: @existential_type,
+  int constraint: @type_or_none ref
+);
+
+in_out_types(  //dir=type
+  unique int id: @in_out_type,
+  int object_type: @type_or_none ref
+);
+
+l_value_types(  //dir=type
+  unique int id: @l_value_type,
+  int object_type: @type_or_none ref
+);
+
+module_types(  //dir=type
+  unique int id: @module_type,
+  int module: @module_decl_or_none ref
+);
+
+parameterized_protocol_types(  //dir=type
+  unique int id: @parameterized_protocol_type,
+  int base: @protocol_type_or_none ref
+);
+
+#keyset[id, index]
+parameterized_protocol_type_args(  //dir=type
+  int id: @parameterized_protocol_type ref,
+  int index: int ref,
+  int arg: @type_or_none ref
+);
+
+protocol_composition_types(  //dir=type
+  unique int id: @protocol_composition_type
+);
+
+#keyset[id, index]
+protocol_composition_type_members(  //dir=type
+  int id: @protocol_composition_type ref,
+  int index: int ref,
+  int member: @type_or_none ref
+);
+
+@reference_storage_type =
+  @unmanaged_storage_type
+| @unowned_storage_type
+| @weak_storage_type
+;
+
+#keyset[id]
+reference_storage_types(  //dir=type
+  int id: @reference_storage_type ref,
+  int referent_type: @type_or_none ref
+);
+
+@substitutable_type =
+  @archetype_type
+| @generic_type_param_type
+;
+
+@sugar_type =
+  @paren_type
+| @syntax_sugar_type
+| @type_alias_type
+;
+
+tuple_types(  //dir=type
+  unique int id: @tuple_type
+);
+
+#keyset[id, index]
+tuple_type_types(  //dir=type
+  int id: @tuple_type ref,
+  int index: int ref,
+  int type_: @type_or_none ref
+);
+
+#keyset[id, index]
+tuple_type_names(  //dir=type
+  int id: @tuple_type ref,
+  int index: int ref,
+  string name: string ref
+);
+
+unresolved_types(  //dir=type
+  unique int id: @unresolved_type
+);
+
+@any_builtin_integer_type =
+  @builtin_integer_literal_type
+| @builtin_integer_type
+;
+
+@archetype_type =
+  @opaque_type_archetype_type
+| @opened_archetype_type
+| @primary_archetype_type
+;
+
+#keyset[id]
+archetype_types(  //dir=type
+  int id: @archetype_type ref,
+  int interface_type: @type_or_none ref
+);
+
+#keyset[id]
+archetype_type_superclasses(  //dir=type
+  int id: @archetype_type ref,
+  int superclass: @type_or_none ref
+);
+
+#keyset[id, index]
+archetype_type_protocols(  //dir=type
+  int id: @archetype_type ref,
+  int index: int ref,
+  int protocol: @protocol_decl_or_none ref
+);
+
+builtin_bridge_object_types(  //dir=type
+  unique int id: @builtin_bridge_object_type
+);
+
+builtin_default_actor_storage_types(  //dir=type
+  unique int id: @builtin_default_actor_storage_type
+);
+
+builtin_executor_types(  //dir=type
+  unique int id: @builtin_executor_type
+);
+
+builtin_float_types(  //dir=type
+  unique int id: @builtin_float_type
+);
+
+builtin_job_types(  //dir=type
+  unique int id: @builtin_job_type
+);
+
+builtin_native_object_types(  //dir=type
+  unique int id: @builtin_native_object_type
+);
+
+builtin_raw_pointer_types(  //dir=type
+  unique int id: @builtin_raw_pointer_type
+);
+
+builtin_raw_unsafe_continuation_types(  //dir=type
+  unique int id: @builtin_raw_unsafe_continuation_type
+);
+
+builtin_unsafe_value_buffer_types(  //dir=type
+  unique int id: @builtin_unsafe_value_buffer_type
+);
+
+builtin_vector_types(  //dir=type
+  unique int id: @builtin_vector_type
+);
+
+existential_metatype_types(  //dir=type
+  unique int id: @existential_metatype_type
+);
+
+function_types(  //dir=type
+  unique int id: @function_type
+);
+
+generic_function_types(  //dir=type
+  unique int id: @generic_function_type
+);
+
+#keyset[id, index]
+generic_function_type_generic_params(  //dir=type
+  int id: @generic_function_type ref,
+  int index: int ref,
+  int generic_param: @generic_type_param_type_or_none ref
+);
+
+generic_type_param_types(  //dir=type
+  unique int id: @generic_type_param_type
+);
+
+metatype_types(  //dir=type
+  unique int id: @metatype_type
+);
+
+@nominal_or_bound_generic_nominal_type =
+  @bound_generic_type
+| @nominal_type
+;
+
+paren_types(  //dir=type
+  unique int id: @paren_type,
+  int type_: @type_or_none ref
+);
+
+@syntax_sugar_type =
+  @dictionary_type
+| @unary_syntax_sugar_type
+;
+
+type_alias_types(  //dir=type
+  unique int id: @type_alias_type,
+  int decl: @type_alias_decl_or_none ref
+);
+
+unbound_generic_types(  //dir=type
+  unique int id: @unbound_generic_type
+);
+
+unmanaged_storage_types(  //dir=type
+  unique int id: @unmanaged_storage_type
+);
+
+unowned_storage_types(  //dir=type
+  unique int id: @unowned_storage_type
+);
+
+weak_storage_types(  //dir=type
+  unique int id: @weak_storage_type
+);
+
+@bound_generic_type =
+  @bound_generic_class_type
+| @bound_generic_enum_type
+| @bound_generic_struct_type
+;
+
+#keyset[id, index]
+bound_generic_type_arg_types(  //dir=type
+  int id: @bound_generic_type ref,
+  int index: int ref,
+  int arg_type: @type_or_none ref
+);
+
+builtin_integer_literal_types(  //dir=type
+  unique int id: @builtin_integer_literal_type
+);
+
+builtin_integer_types(  //dir=type
+  unique int id: @builtin_integer_type
+);
+
+#keyset[id]
+builtin_integer_type_widths(  //dir=type
+  int id: @builtin_integer_type ref,
+  int width: int ref
+);
+
+dictionary_types(  //dir=type
+  unique int id: @dictionary_type,
+  int key_type: @type_or_none ref,
+  int value_type: @type_or_none ref
+);
+
+@nominal_type =
+  @class_type
+| @enum_type
+| @protocol_type
+| @struct_type
+;
+
+opaque_type_archetype_types(  //dir=type
+  unique int id: @opaque_type_archetype_type,
+  int declaration: @opaque_type_decl_or_none ref
+);
+
+opened_archetype_types(  //dir=type
+  unique int id: @opened_archetype_type
+);
+
+primary_archetype_types(  //dir=type
+  unique int id: @primary_archetype_type
+);
+
+@unary_syntax_sugar_type =
+  @array_slice_type
+| @optional_type
+| @variadic_sequence_type
+;
+
+#keyset[id]
+unary_syntax_sugar_types(  //dir=type
+  int id: @unary_syntax_sugar_type ref,
+  int base_type: @type_or_none ref
+);
+
+array_slice_types(  //dir=type
+  unique int id: @array_slice_type
+);
+
+bound_generic_class_types(  //dir=type
+  unique int id: @bound_generic_class_type
+);
+
+bound_generic_enum_types(  //dir=type
+  unique int id: @bound_generic_enum_type
+);
+
+bound_generic_struct_types(  //dir=type
+  unique int id: @bound_generic_struct_type
+);
+
+class_types(  //dir=type
+  unique int id: @class_type
+);
+
+enum_types(  //dir=type
+  unique int id: @enum_type
+);
+
+optional_types(  //dir=type
+  unique int id: @optional_type
+);
+
+protocol_types(  //dir=type
+  unique int id: @protocol_type
+);
+
+struct_types(  //dir=type
+  unique int id: @struct_type
+);
+
+variadic_sequence_types(  //dir=type
+  unique int id: @variadic_sequence_type
+);
+
+@abstract_function_decl_or_none =
+  @abstract_function_decl
+| @unspecified_element
+;
+
+@accessor_decl_or_none =
+  @accessor_decl
+| @unspecified_element
+;
+
+@argument_or_none =
+  @argument
+| @unspecified_element
+;
+
+@associated_type_decl_or_none =
+  @associated_type_decl
+| @unspecified_element
+;
+
+@ast_node_or_none =
+  @ast_node
+| @unspecified_element
+;
+
+@brace_stmt_or_none =
+  @brace_stmt
+| @unspecified_element
+;
+
+@case_label_item_or_none =
+  @case_label_item
+| @unspecified_element
+;
+
+@case_stmt_or_none =
+  @case_stmt
+| @unspecified_element
+;
+
+@closure_expr_or_none =
+  @closure_expr
+| @unspecified_element
+;
+
+@condition_element_or_none =
+  @condition_element
+| @unspecified_element
+;
+
+@constructor_decl_or_none =
+  @constructor_decl
+| @unspecified_element
+;
+
+@decl_or_none =
+  @decl
+| @unspecified_element
+;
+
+@enum_element_decl_or_none =
+  @enum_element_decl
+| @unspecified_element
+;
+
+@expr_or_none =
+  @expr
+| @unspecified_element
+;
+
+@file_or_none =
+  @file
+| @unspecified_element
+;
+
+@generic_type_param_decl_or_none =
+  @generic_type_param_decl
+| @unspecified_element
+;
+
+@generic_type_param_type_or_none =
+  @generic_type_param_type
+| @unspecified_element
+;
+
+@location_or_none =
+  @location
+| @unspecified_element
+;
+
+@module_decl_or_none =
+  @module_decl
+| @unspecified_element
+;
+
+@nominal_type_decl_or_none =
+  @nominal_type_decl
+| @unspecified_element
+;
+
+@opaque_type_decl_or_none =
+  @opaque_type_decl
+| @unspecified_element
+;
+
+@opaque_value_expr_or_none =
+  @opaque_value_expr
+| @unspecified_element
+;
+
+@param_decl_or_none =
+  @param_decl
+| @unspecified_element
+;
+
+@pattern_or_none =
+  @pattern
+| @unspecified_element
+;
+
+@pattern_binding_decl_or_none =
+  @pattern_binding_decl
+| @unspecified_element
+;
+
+@precedence_group_decl_or_none =
+  @precedence_group_decl
+| @unspecified_element
+;
+
+@protocol_decl_or_none =
+  @protocol_decl
+| @unspecified_element
+;
+
+@protocol_type_or_none =
+  @protocol_type
+| @unspecified_element
+;
+
+@stmt_or_none =
+  @stmt
+| @unspecified_element
+;
+
+@stmt_condition_or_none =
+  @stmt_condition
+| @unspecified_element
+;
+
+@string_literal_expr_or_none =
+  @string_literal_expr
+| @unspecified_element
+;
+
+@tap_expr_or_none =
+  @tap_expr
+| @unspecified_element
+;
+
+@type_or_none =
+  @type
+| @unspecified_element
+;
+
+@type_alias_decl_or_none =
+  @type_alias_decl
+| @unspecified_element
+;
+
+@type_repr_or_none =
+  @type_repr
+| @unspecified_element
+;
+
+@value_decl_or_none =
+  @unspecified_element
+| @value_decl
+;
+
+@var_decl_or_none =
+  @unspecified_element
+| @var_decl
+;
diff --git a/swift/downgrades/abbb8c9e8408841c2bc12e3deb2305f062f5399e/upgrade.properties b/swift/downgrades/abbb8c9e8408841c2bc12e3deb2305f062f5399e/upgrade.properties
new file mode 100644
index 00000000000..7b33ab56770
--- /dev/null
+++ b/swift/downgrades/abbb8c9e8408841c2bc12e3deb2305f062f5399e/upgrade.properties
@@ -0,0 +1,2 @@
+description: Remove unfilled tables that were generated for actually synthesized QL types
+compatibility: full
diff --git a/swift/ql/lib/upgrades/ceca289a0ff56bcc88f72ad78a8fbff1d850922f/old.dbscheme b/swift/ql/lib/upgrades/ceca289a0ff56bcc88f72ad78a8fbff1d850922f/old.dbscheme
new file mode 100644
index 00000000000..ceca289a0ff
--- /dev/null
+++ b/swift/ql/lib/upgrades/ceca289a0ff56bcc88f72ad78a8fbff1d850922f/old.dbscheme
@@ -0,0 +1,2493 @@
+// generated by codegen/codegen.py
+
+// from prefix.dbscheme
+/**
+ * The source location of the snapshot.
+ */
+sourceLocationPrefix(
+  string prefix: string ref
+);
+
+
+// from schema.py
+
+@element =
+  @callable
+| @file
+| @generic_context
+| @iterable_decl_context
+| @locatable
+| @location
+| @type
+;
+
+#keyset[id]
+element_is_unknown(
+  int id: @element ref
+);
+
+@callable =
+  @abstract_closure_expr
+| @abstract_function_decl
+;
+
+#keyset[id]
+callable_self_params(
+  int id: @callable ref,
+  int self_param: @param_decl_or_none ref
+);
+
+#keyset[id, index]
+callable_params(
+  int id: @callable ref,
+  int index: int ref,
+  int param: @param_decl_or_none ref
+);
+
+#keyset[id]
+callable_bodies(
+  int id: @callable ref,
+  int body: @brace_stmt_or_none ref
+);
+
+@file =
+  @db_file
+| @unknown_file
+;
+
+#keyset[id]
+files(
+  int id: @file ref,
+  string name: string ref
+);
+
+@locatable =
+  @argument
+| @ast_node
+| @comment
+| @diagnostics
+| @error_element
+;
+
+#keyset[id]
+locatable_locations(
+  int id: @locatable ref,
+  int location: @location_or_none ref
+);
+
+@location =
+  @db_location
+| @unknown_location
+;
+
+#keyset[id]
+locations(
+  int id: @location ref,
+  int file: @file_or_none ref,
+  int start_line: int ref,
+  int start_column: int ref,
+  int end_line: int ref,
+  int end_column: int ref
+);
+
+@ast_node =
+  @case_label_item
+| @condition_element
+| @decl
+| @expr
+| @pattern
+| @stmt
+| @stmt_condition
+| @type_repr
+;
+
+comments(
+  unique int id: @comment,
+  string text: string ref
+);
+
+db_files(
+  unique int id: @db_file
+);
+
+db_locations(
+  unique int id: @db_location
+);
+
+diagnostics(
+  unique int id: @diagnostics,
+  string text: string ref,
+  int kind: int ref
+);
+
+@error_element =
+  @error_expr
+| @error_type
+| @overloaded_decl_ref_expr
+| @unresolved_decl_ref_expr
+| @unresolved_dot_expr
+| @unresolved_member_chain_result_expr
+| @unresolved_member_expr
+| @unresolved_pattern_expr
+| @unresolved_specialize_expr
+| @unresolved_type
+| @unresolved_type_conversion_expr
+| @unspecified_element
+;
+
+unknown_files(
+  unique int id: @unknown_file
+);
+
+unknown_locations(
+  unique int id: @unknown_location
+);
+
+unspecified_elements(
+  unique int id: @unspecified_element,
+  string property: string ref,
+  string error: string ref
+);
+
+#keyset[id]
+unspecified_element_parents(
+  int id: @unspecified_element ref,
+  int parent: @element ref
+);
+
+#keyset[id]
+unspecified_element_indices(
+  int id: @unspecified_element ref,
+  int index: int ref
+);
+
+@decl =
+  @enum_case_decl
+| @extension_decl
+| @if_config_decl
+| @import_decl
+| @missing_member_decl
+| @operator_decl
+| @pattern_binding_decl
+| @pound_diagnostic_decl
+| @precedence_group_decl
+| @top_level_code_decl
+| @value_decl
+;
+
+#keyset[id]
+decls(  //dir=decl
+  int id: @decl ref,
+  int module: @module_decl_or_none ref
+);
+
+@generic_context =
+  @abstract_function_decl
+| @extension_decl
+| @generic_type_decl
+| @subscript_decl
+;
+
+#keyset[id, index]
+generic_context_generic_type_params(  //dir=decl
+  int id: @generic_context ref,
+  int index: int ref,
+  int generic_type_param: @generic_type_param_decl_or_none ref
+);
+
+@iterable_decl_context =
+  @extension_decl
+| @nominal_type_decl
+;
+
+#keyset[id, index]
+iterable_decl_context_members(  //dir=decl
+  int id: @iterable_decl_context ref,
+  int index: int ref,
+  int member: @decl_or_none ref
+);
+
+enum_case_decls(  //dir=decl
+  unique int id: @enum_case_decl
+);
+
+#keyset[id, index]
+enum_case_decl_elements(  //dir=decl
+  int id: @enum_case_decl ref,
+  int index: int ref,
+  int element: @enum_element_decl_or_none ref
+);
+
+extension_decls(  //dir=decl
+  unique int id: @extension_decl,
+  int extended_type_decl: @nominal_type_decl_or_none ref
+);
+
+if_config_decls(  //dir=decl
+  unique int id: @if_config_decl
+);
+
+#keyset[id, index]
+if_config_decl_active_elements(  //dir=decl
+  int id: @if_config_decl ref,
+  int index: int ref,
+  int active_element: @ast_node_or_none ref
+);
+
+import_decls(  //dir=decl
+  unique int id: @import_decl
+);
+
+#keyset[id]
+import_decl_is_exported(  //dir=decl
+  int id: @import_decl ref
+);
+
+#keyset[id]
+import_decl_imported_modules(  //dir=decl
+  int id: @import_decl ref,
+  int imported_module: @module_decl_or_none ref
+);
+
+#keyset[id, index]
+import_decl_declarations(  //dir=decl
+  int id: @import_decl ref,
+  int index: int ref,
+  int declaration: @value_decl_or_none ref
+);
+
+missing_member_decls(  //dir=decl
+  unique int id: @missing_member_decl,
+  string name: string ref
+);
+
+@operator_decl =
+  @infix_operator_decl
+| @postfix_operator_decl
+| @prefix_operator_decl
+;
+
+#keyset[id]
+operator_decls(  //dir=decl
+  int id: @operator_decl ref,
+  string name: string ref
+);
+
+pattern_binding_decls(  //dir=decl
+  unique int id: @pattern_binding_decl
+);
+
+#keyset[id, index]
+pattern_binding_decl_inits(  //dir=decl
+  int id: @pattern_binding_decl ref,
+  int index: int ref,
+  int init: @expr_or_none ref
+);
+
+#keyset[id, index]
+pattern_binding_decl_patterns(  //dir=decl
+  int id: @pattern_binding_decl ref,
+  int index: int ref,
+  int pattern: @pattern_or_none ref
+);
+
+pound_diagnostic_decls(  //dir=decl
+  unique int id: @pound_diagnostic_decl,
+  int kind: int ref,
+  int message: @string_literal_expr_or_none ref
+);
+
+precedence_group_decls(  //dir=decl
+  unique int id: @precedence_group_decl
+);
+
+top_level_code_decls(  //dir=decl
+  unique int id: @top_level_code_decl,
+  int body: @brace_stmt_or_none ref
+);
+
+@value_decl =
+  @abstract_function_decl
+| @abstract_storage_decl
+| @enum_element_decl
+| @type_decl
+;
+
+#keyset[id]
+value_decls(  //dir=decl
+  int id: @value_decl ref,
+  int interface_type: @type_or_none ref
+);
+
+@abstract_function_decl =
+  @constructor_decl
+| @destructor_decl
+| @func_decl
+;
+
+#keyset[id]
+abstract_function_decls(  //dir=decl
+  int id: @abstract_function_decl ref,
+  string name: string ref
+);
+
+@abstract_storage_decl =
+  @subscript_decl
+| @var_decl
+;
+
+#keyset[id, index]
+abstract_storage_decl_accessor_decls(  //dir=decl
+  int id: @abstract_storage_decl ref,
+  int index: int ref,
+  int accessor_decl: @accessor_decl_or_none ref
+);
+
+enum_element_decls(  //dir=decl
+  unique int id: @enum_element_decl,
+  string name: string ref
+);
+
+#keyset[id, index]
+enum_element_decl_params(  //dir=decl
+  int id: @enum_element_decl ref,
+  int index: int ref,
+  int param: @param_decl_or_none ref
+);
+
+infix_operator_decls(  //dir=decl
+  unique int id: @infix_operator_decl
+);
+
+#keyset[id]
+infix_operator_decl_precedence_groups(  //dir=decl
+  int id: @infix_operator_decl ref,
+  int precedence_group: @precedence_group_decl_or_none ref
+);
+
+postfix_operator_decls(  //dir=decl
+  unique int id: @postfix_operator_decl
+);
+
+prefix_operator_decls(  //dir=decl
+  unique int id: @prefix_operator_decl
+);
+
+@type_decl =
+  @abstract_type_param_decl
+| @generic_type_decl
+| @module_decl
+;
+
+#keyset[id]
+type_decls(  //dir=decl
+  int id: @type_decl ref,
+  string name: string ref
+);
+
+#keyset[id, index]
+type_decl_base_types(  //dir=decl
+  int id: @type_decl ref,
+  int index: int ref,
+  int base_type: @type_or_none ref
+);
+
+@abstract_type_param_decl =
+  @associated_type_decl
+| @generic_type_param_decl
+;
+
+constructor_decls(  //dir=decl
+  unique int id: @constructor_decl
+);
+
+destructor_decls(  //dir=decl
+  unique int id: @destructor_decl
+);
+
+@func_decl =
+  @accessor_decl
+| @concrete_func_decl
+;
+
+@generic_type_decl =
+  @nominal_type_decl
+| @opaque_type_decl
+| @type_alias_decl
+;
+
+module_decls(  //dir=decl
+  unique int id: @module_decl
+);
+
+#keyset[id]
+module_decl_is_builtin_module(  //dir=decl
+  int id: @module_decl ref
+);
+
+#keyset[id]
+module_decl_is_system_module(  //dir=decl
+  int id: @module_decl ref
+);
+
+#keyset[id, index]
+module_decl_imported_modules(  //dir=decl
+  int id: @module_decl ref,
+  int index: int ref,
+  int imported_module: @module_decl_or_none ref
+);
+
+#keyset[id, index]
+module_decl_exported_modules(  //dir=decl
+  int id: @module_decl ref,
+  int index: int ref,
+  int exported_module: @module_decl_or_none ref
+);
+
+subscript_decls(  //dir=decl
+  unique int id: @subscript_decl,
+  int element_type: @type_or_none ref
+);
+
+#keyset[id, index]
+subscript_decl_params(  //dir=decl
+  int id: @subscript_decl ref,
+  int index: int ref,
+  int param: @param_decl_or_none ref
+);
+
+@var_decl =
+  @concrete_var_decl
+| @param_decl
+;
+
+#keyset[id]
+var_decls(  //dir=decl
+  int id: @var_decl ref,
+  string name: string ref,
+  int type_: @type_or_none ref
+);
+
+#keyset[id]
+var_decl_attached_property_wrapper_types(  //dir=decl
+  int id: @var_decl ref,
+  int attached_property_wrapper_type: @type_or_none ref
+);
+
+#keyset[id]
+var_decl_parent_patterns(  //dir=decl
+  int id: @var_decl ref,
+  int parent_pattern: @pattern_or_none ref
+);
+
+#keyset[id]
+var_decl_parent_initializers(  //dir=decl
+  int id: @var_decl ref,
+  int parent_initializer: @expr_or_none ref
+);
+
+#keyset[id]
+var_decl_property_wrapper_backing_var_bindings(  //dir=decl
+  int id: @var_decl ref,
+  int property_wrapper_backing_var_binding: @pattern_binding_decl_or_none ref
+);
+
+#keyset[id]
+var_decl_property_wrapper_backing_vars(  //dir=decl
+  int id: @var_decl ref,
+  int property_wrapper_backing_var: @var_decl_or_none ref
+);
+
+#keyset[id]
+var_decl_property_wrapper_projection_var_bindings(  //dir=decl
+  int id: @var_decl ref,
+  int property_wrapper_projection_var_binding: @pattern_binding_decl_or_none ref
+);
+
+#keyset[id]
+var_decl_property_wrapper_projection_vars(  //dir=decl
+  int id: @var_decl ref,
+  int property_wrapper_projection_var: @var_decl_or_none ref
+);
+
+accessor_decls(  //dir=decl
+  unique int id: @accessor_decl
+);
+
+#keyset[id]
+accessor_decl_is_getter(  //dir=decl
+  int id: @accessor_decl ref
+);
+
+#keyset[id]
+accessor_decl_is_setter(  //dir=decl
+  int id: @accessor_decl ref
+);
+
+#keyset[id]
+accessor_decl_is_will_set(  //dir=decl
+  int id: @accessor_decl ref
+);
+
+#keyset[id]
+accessor_decl_is_did_set(  //dir=decl
+  int id: @accessor_decl ref
+);
+
+associated_type_decls(  //dir=decl
+  unique int id: @associated_type_decl
+);
+
+concrete_func_decls(  //dir=decl
+  unique int id: @concrete_func_decl
+);
+
+concrete_var_decls(  //dir=decl
+  unique int id: @concrete_var_decl,
+  int introducer_int: int ref
+);
+
+generic_type_param_decls(  //dir=decl
+  unique int id: @generic_type_param_decl
+);
+
+@nominal_type_decl =
+  @class_decl
+| @enum_decl
+| @protocol_decl
+| @struct_decl
+;
+
+#keyset[id]
+nominal_type_decls(  //dir=decl
+  int id: @nominal_type_decl ref,
+  int type_: @type_or_none ref
+);
+
+opaque_type_decls(  //dir=decl
+  unique int id: @opaque_type_decl,
+  int naming_declaration: @value_decl_or_none ref
+);
+
+#keyset[id, index]
+opaque_type_decl_opaque_generic_params(  //dir=decl
+  int id: @opaque_type_decl ref,
+  int index: int ref,
+  int opaque_generic_param: @generic_type_param_type_or_none ref
+);
+
+param_decls(  //dir=decl
+  unique int id: @param_decl
+);
+
+#keyset[id]
+param_decl_is_inout(  //dir=decl
+  int id: @param_decl ref
+);
+
+#keyset[id]
+param_decl_property_wrapper_local_wrapped_var_bindings(  //dir=decl
+  int id: @param_decl ref,
+  int property_wrapper_local_wrapped_var_binding: @pattern_binding_decl_or_none ref
+);
+
+#keyset[id]
+param_decl_property_wrapper_local_wrapped_vars(  //dir=decl
+  int id: @param_decl ref,
+  int property_wrapper_local_wrapped_var: @var_decl_or_none ref
+);
+
+type_alias_decls(  //dir=decl
+  unique int id: @type_alias_decl
+);
+
+class_decls(  //dir=decl
+  unique int id: @class_decl
+);
+
+enum_decls(  //dir=decl
+  unique int id: @enum_decl
+);
+
+protocol_decls(  //dir=decl
+  unique int id: @protocol_decl
+);
+
+struct_decls(  //dir=decl
+  unique int id: @struct_decl
+);
+
+arguments(  //dir=expr
+  unique int id: @argument,
+  string label: string ref,
+  int expr: @expr_or_none ref
+);
+
+@expr =
+  @abstract_closure_expr
+| @any_try_expr
+| @applied_property_wrapper_expr
+| @apply_expr
+| @assign_expr
+| @bind_optional_expr
+| @capture_list_expr
+| @collection_expr
+| @decl_ref_expr
+| @default_argument_expr
+| @discard_assignment_expr
+| @dot_syntax_base_ignored_expr
+| @dynamic_type_expr
+| @enum_is_case_expr
+| @error_expr
+| @explicit_cast_expr
+| @force_value_expr
+| @identity_expr
+| @if_expr
+| @implicit_conversion_expr
+| @in_out_expr
+| @key_path_application_expr
+| @key_path_dot_expr
+| @key_path_expr
+| @lazy_initializer_expr
+| @literal_expr
+| @lookup_expr
+| @make_temporarily_escapable_expr
+| @obj_c_selector_expr
+| @one_way_expr
+| @opaque_value_expr
+| @open_existential_expr
+| @optional_evaluation_expr
+| @other_constructor_decl_ref_expr
+| @overloaded_decl_ref_expr
+| @property_wrapper_value_placeholder_expr
+| @rebind_self_in_constructor_expr
+| @sequence_expr
+| @super_ref_expr
+| @tap_expr
+| @tuple_element_expr
+| @tuple_expr
+| @type_expr
+| @unresolved_decl_ref_expr
+| @unresolved_dot_expr
+| @unresolved_member_expr
+| @unresolved_pattern_expr
+| @unresolved_specialize_expr
+| @vararg_expansion_expr
+;
+
+#keyset[id]
+expr_types(  //dir=expr
+  int id: @expr ref,
+  int type_: @type_or_none ref
+);
+
+@abstract_closure_expr =
+  @auto_closure_expr
+| @closure_expr
+;
+
+@any_try_expr =
+  @force_try_expr
+| @optional_try_expr
+| @try_expr
+;
+
+#keyset[id]
+any_try_exprs(  //dir=expr
+  int id: @any_try_expr ref,
+  int sub_expr: @expr_or_none ref
+);
+
+applied_property_wrapper_exprs(  //dir=expr
+  unique int id: @applied_property_wrapper_expr,
+  int kind: int ref,
+  int value: @expr_or_none ref,
+  int param: @param_decl_or_none ref
+);
+
+@apply_expr =
+  @binary_expr
+| @call_expr
+| @postfix_unary_expr
+| @prefix_unary_expr
+| @self_apply_expr
+;
+
+#keyset[id]
+apply_exprs(  //dir=expr
+  int id: @apply_expr ref,
+  int function: @expr_or_none ref
+);
+
+#keyset[id, index]
+apply_expr_arguments(  //dir=expr
+  int id: @apply_expr ref,
+  int index: int ref,
+  int argument: @argument_or_none ref
+);
+
+assign_exprs(  //dir=expr
+  unique int id: @assign_expr,
+  int dest: @expr_or_none ref,
+  int source: @expr_or_none ref
+);
+
+bind_optional_exprs(  //dir=expr
+  unique int id: @bind_optional_expr,
+  int sub_expr: @expr_or_none ref
+);
+
+capture_list_exprs(  //dir=expr
+  unique int id: @capture_list_expr,
+  int closure_body: @closure_expr_or_none ref
+);
+
+#keyset[id, index]
+capture_list_expr_binding_decls(  //dir=expr
+  int id: @capture_list_expr ref,
+  int index: int ref,
+  int binding_decl: @pattern_binding_decl_or_none ref
+);
+
+@collection_expr =
+  @array_expr
+| @dictionary_expr
+;
+
+decl_ref_exprs(  //dir=expr
+  unique int id: @decl_ref_expr,
+  int decl: @decl_or_none ref
+);
+
+#keyset[id, index]
+decl_ref_expr_replacement_types(  //dir=expr
+  int id: @decl_ref_expr ref,
+  int index: int ref,
+  int replacement_type: @type_or_none ref
+);
+
+#keyset[id]
+decl_ref_expr_has_direct_to_storage_semantics(  //dir=expr
+  int id: @decl_ref_expr ref
+);
+
+#keyset[id]
+decl_ref_expr_has_direct_to_implementation_semantics(  //dir=expr
+  int id: @decl_ref_expr ref
+);
+
+#keyset[id]
+decl_ref_expr_has_ordinary_semantics(  //dir=expr
+  int id: @decl_ref_expr ref
+);
+
+default_argument_exprs(  //dir=expr
+  unique int id: @default_argument_expr,
+  int param_decl: @param_decl_or_none ref,
+  int param_index: int ref
+);
+
+#keyset[id]
+default_argument_expr_caller_side_defaults(  //dir=expr
+  int id: @default_argument_expr ref,
+  int caller_side_default: @expr_or_none ref
+);
+
+discard_assignment_exprs(  //dir=expr
+  unique int id: @discard_assignment_expr
+);
+
+dot_syntax_base_ignored_exprs(  //dir=expr
+  unique int id: @dot_syntax_base_ignored_expr,
+  int qualifier: @expr_or_none ref,
+  int sub_expr: @expr_or_none ref
+);
+
+dynamic_type_exprs(  //dir=expr
+  unique int id: @dynamic_type_expr,
+  int base: @expr_or_none ref
+);
+
+enum_is_case_exprs(  //dir=expr
+  unique int id: @enum_is_case_expr,
+  int sub_expr: @expr_or_none ref,
+  int element: @enum_element_decl_or_none ref
+);
+
+error_exprs(  //dir=expr
+  unique int id: @error_expr
+);
+
+@explicit_cast_expr =
+  @checked_cast_expr
+| @coerce_expr
+;
+
+#keyset[id]
+explicit_cast_exprs(  //dir=expr
+  int id: @explicit_cast_expr ref,
+  int sub_expr: @expr_or_none ref
+);
+
+force_value_exprs(  //dir=expr
+  unique int id: @force_value_expr,
+  int sub_expr: @expr_or_none ref
+);
+
+@identity_expr =
+  @await_expr
+| @dot_self_expr
+| @paren_expr
+| @unresolved_member_chain_result_expr
+;
+
+#keyset[id]
+identity_exprs(  //dir=expr
+  int id: @identity_expr ref,
+  int sub_expr: @expr_or_none ref
+);
+
+if_exprs(  //dir=expr
+  unique int id: @if_expr,
+  int condition: @expr_or_none ref,
+  int then_expr: @expr_or_none ref,
+  int else_expr: @expr_or_none ref
+);
+
+@implicit_conversion_expr =
+  @any_hashable_erasure_expr
+| @archetype_to_super_expr
+| @array_to_pointer_expr
+| @bridge_from_obj_c_expr
+| @bridge_to_obj_c_expr
+| @class_metatype_to_object_expr
+| @collection_upcast_conversion_expr
+| @conditional_bridge_from_obj_c_expr
+| @covariant_function_conversion_expr
+| @covariant_return_conversion_expr
+| @derived_to_base_expr
+| @destructure_tuple_expr
+| @differentiable_function_expr
+| @differentiable_function_extract_original_expr
+| @erasure_expr
+| @existential_metatype_to_object_expr
+| @foreign_object_conversion_expr
+| @function_conversion_expr
+| @in_out_to_pointer_expr
+| @inject_into_optional_expr
+| @linear_function_expr
+| @linear_function_extract_original_expr
+| @linear_to_differentiable_function_expr
+| @load_expr
+| @metatype_conversion_expr
+| @pointer_to_pointer_expr
+| @protocol_metatype_to_object_expr
+| @string_to_pointer_expr
+| @underlying_to_opaque_expr
+| @unevaluated_instance_expr
+| @unresolved_type_conversion_expr
+;
+
+#keyset[id]
+implicit_conversion_exprs(  //dir=expr
+  int id: @implicit_conversion_expr ref,
+  int sub_expr: @expr_or_none ref
+);
+
+in_out_exprs(  //dir=expr
+  unique int id: @in_out_expr,
+  int sub_expr: @expr_or_none ref
+);
+
+key_path_application_exprs(  //dir=expr
+  unique int id: @key_path_application_expr,
+  int base: @expr_or_none ref,
+  int key_path: @expr_or_none ref
+);
+
+key_path_dot_exprs(  //dir=expr
+  unique int id: @key_path_dot_expr
+);
+
+key_path_exprs(  //dir=expr
+  unique int id: @key_path_expr
+);
+
+#keyset[id]
+key_path_expr_roots(  //dir=expr
+  int id: @key_path_expr ref,
+  int root: @type_repr_or_none ref
+);
+
+#keyset[id]
+key_path_expr_parsed_paths(  //dir=expr
+  int id: @key_path_expr ref,
+  int parsed_path: @expr_or_none ref
+);
+
+lazy_initializer_exprs(  //dir=expr
+  unique int id: @lazy_initializer_expr,
+  int sub_expr: @expr_or_none ref
+);
+
+@literal_expr =
+  @builtin_literal_expr
+| @interpolated_string_literal_expr
+| @nil_literal_expr
+| @object_literal_expr
+| @regex_literal_expr
+;
+
+@lookup_expr =
+  @dynamic_lookup_expr
+| @member_ref_expr
+| @method_ref_expr
+| @subscript_expr
+;
+
+#keyset[id]
+lookup_exprs(  //dir=expr
+  int id: @lookup_expr ref,
+  int base: @expr_or_none ref
+);
+
+#keyset[id]
+lookup_expr_members(  //dir=expr
+  int id: @lookup_expr ref,
+  int member: @decl_or_none ref
+);
+
+make_temporarily_escapable_exprs(  //dir=expr
+  unique int id: @make_temporarily_escapable_expr,
+  int escaping_closure: @opaque_value_expr_or_none ref,
+  int nonescaping_closure: @expr_or_none ref,
+  int sub_expr: @expr_or_none ref
+);
+
+obj_c_selector_exprs(  //dir=expr
+  unique int id: @obj_c_selector_expr,
+  int sub_expr: @expr_or_none ref,
+  int method: @abstract_function_decl_or_none ref
+);
+
+one_way_exprs(  //dir=expr
+  unique int id: @one_way_expr,
+  int sub_expr: @expr_or_none ref
+);
+
+opaque_value_exprs(  //dir=expr
+  unique int id: @opaque_value_expr
+);
+
+open_existential_exprs(  //dir=expr
+  unique int id: @open_existential_expr,
+  int sub_expr: @expr_or_none ref,
+  int existential: @expr_or_none ref,
+  int opaque_expr: @opaque_value_expr_or_none ref
+);
+
+optional_evaluation_exprs(  //dir=expr
+  unique int id: @optional_evaluation_expr,
+  int sub_expr: @expr_or_none ref
+);
+
+other_constructor_decl_ref_exprs(  //dir=expr
+  unique int id: @other_constructor_decl_ref_expr,
+  int constructor_decl: @constructor_decl_or_none ref
+);
+
+overloaded_decl_ref_exprs(  //dir=expr
+  unique int id: @overloaded_decl_ref_expr
+);
+
+#keyset[id, index]
+overloaded_decl_ref_expr_possible_declarations(  //dir=expr
+  int id: @overloaded_decl_ref_expr ref,
+  int index: int ref,
+  int possible_declaration: @value_decl_or_none ref
+);
+
+property_wrapper_value_placeholder_exprs(  //dir=expr
+  unique int id: @property_wrapper_value_placeholder_expr,
+  int placeholder: @opaque_value_expr_or_none ref
+);
+
+#keyset[id]
+property_wrapper_value_placeholder_expr_wrapped_values(  //dir=expr
+  int id: @property_wrapper_value_placeholder_expr ref,
+  int wrapped_value: @expr_or_none ref
+);
+
+rebind_self_in_constructor_exprs(  //dir=expr
+  unique int id: @rebind_self_in_constructor_expr,
+  int sub_expr: @expr_or_none ref,
+  int self: @var_decl_or_none ref
+);
+
+sequence_exprs(  //dir=expr
+  unique int id: @sequence_expr
+);
+
+#keyset[id, index]
+sequence_expr_elements(  //dir=expr
+  int id: @sequence_expr ref,
+  int index: int ref,
+  int element: @expr_or_none ref
+);
+
+super_ref_exprs(  //dir=expr
+  unique int id: @super_ref_expr,
+  int self: @var_decl_or_none ref
+);
+
+tap_exprs(  //dir=expr
+  unique int id: @tap_expr,
+  int body: @brace_stmt_or_none ref,
+  int var: @var_decl_or_none ref
+);
+
+#keyset[id]
+tap_expr_sub_exprs(  //dir=expr
+  int id: @tap_expr ref,
+  int sub_expr: @expr_or_none ref
+);
+
+tuple_element_exprs(  //dir=expr
+  unique int id: @tuple_element_expr,
+  int sub_expr: @expr_or_none ref,
+  int index: int ref
+);
+
+tuple_exprs(  //dir=expr
+  unique int id: @tuple_expr
+);
+
+#keyset[id, index]
+tuple_expr_elements(  //dir=expr
+  int id: @tuple_expr ref,
+  int index: int ref,
+  int element: @expr_or_none ref
+);
+
+type_exprs(  //dir=expr
+  unique int id: @type_expr
+);
+
+#keyset[id]
+type_expr_type_reprs(  //dir=expr
+  int id: @type_expr ref,
+  int type_repr: @type_repr_or_none ref
+);
+
+unresolved_decl_ref_exprs(  //dir=expr
+  unique int id: @unresolved_decl_ref_expr
+);
+
+#keyset[id]
+unresolved_decl_ref_expr_names(  //dir=expr
+  int id: @unresolved_decl_ref_expr ref,
+  string name: string ref
+);
+
+unresolved_dot_exprs(  //dir=expr
+  unique int id: @unresolved_dot_expr,
+  int base: @expr_or_none ref,
+  string name: string ref
+);
+
+unresolved_member_exprs(  //dir=expr
+  unique int id: @unresolved_member_expr,
+  string name: string ref
+);
+
+unresolved_pattern_exprs(  //dir=expr
+  unique int id: @unresolved_pattern_expr,
+  int sub_pattern: @pattern_or_none ref
+);
+
+unresolved_specialize_exprs(  //dir=expr
+  unique int id: @unresolved_specialize_expr,
+  int sub_expr: @expr_or_none ref
+);
+
+vararg_expansion_exprs(  //dir=expr
+  unique int id: @vararg_expansion_expr,
+  int sub_expr: @expr_or_none ref
+);
+
+any_hashable_erasure_exprs(  //dir=expr
+  unique int id: @any_hashable_erasure_expr
+);
+
+archetype_to_super_exprs(  //dir=expr
+  unique int id: @archetype_to_super_expr
+);
+
+array_exprs(  //dir=expr
+  unique int id: @array_expr
+);
+
+#keyset[id, index]
+array_expr_elements(  //dir=expr
+  int id: @array_expr ref,
+  int index: int ref,
+  int element: @expr_or_none ref
+);
+
+array_to_pointer_exprs(  //dir=expr
+  unique int id: @array_to_pointer_expr
+);
+
+auto_closure_exprs(  //dir=expr
+  unique int id: @auto_closure_expr
+);
+
+await_exprs(  //dir=expr
+  unique int id: @await_expr
+);
+
+binary_exprs(  //dir=expr
+  unique int id: @binary_expr
+);
+
+bridge_from_obj_c_exprs(  //dir=expr
+  unique int id: @bridge_from_obj_c_expr
+);
+
+bridge_to_obj_c_exprs(  //dir=expr
+  unique int id: @bridge_to_obj_c_expr
+);
+
+@builtin_literal_expr =
+  @boolean_literal_expr
+| @magic_identifier_literal_expr
+| @number_literal_expr
+| @string_literal_expr
+;
+
+call_exprs(  //dir=expr
+  unique int id: @call_expr
+);
+
+@checked_cast_expr =
+  @conditional_checked_cast_expr
+| @forced_checked_cast_expr
+| @is_expr
+;
+
+class_metatype_to_object_exprs(  //dir=expr
+  unique int id: @class_metatype_to_object_expr
+);
+
+closure_exprs(  //dir=expr
+  unique int id: @closure_expr
+);
+
+coerce_exprs(  //dir=expr
+  unique int id: @coerce_expr
+);
+
+collection_upcast_conversion_exprs(  //dir=expr
+  unique int id: @collection_upcast_conversion_expr
+);
+
+conditional_bridge_from_obj_c_exprs(  //dir=expr
+  unique int id: @conditional_bridge_from_obj_c_expr
+);
+
+covariant_function_conversion_exprs(  //dir=expr
+  unique int id: @covariant_function_conversion_expr
+);
+
+covariant_return_conversion_exprs(  //dir=expr
+  unique int id: @covariant_return_conversion_expr
+);
+
+derived_to_base_exprs(  //dir=expr
+  unique int id: @derived_to_base_expr
+);
+
+destructure_tuple_exprs(  //dir=expr
+  unique int id: @destructure_tuple_expr
+);
+
+dictionary_exprs(  //dir=expr
+  unique int id: @dictionary_expr
+);
+
+#keyset[id, index]
+dictionary_expr_elements(  //dir=expr
+  int id: @dictionary_expr ref,
+  int index: int ref,
+  int element: @expr_or_none ref
+);
+
+differentiable_function_exprs(  //dir=expr
+  unique int id: @differentiable_function_expr
+);
+
+differentiable_function_extract_original_exprs(  //dir=expr
+  unique int id: @differentiable_function_extract_original_expr
+);
+
+dot_self_exprs(  //dir=expr
+  unique int id: @dot_self_expr
+);
+
+@dynamic_lookup_expr =
+  @dynamic_member_ref_expr
+| @dynamic_subscript_expr
+;
+
+erasure_exprs(  //dir=expr
+  unique int id: @erasure_expr
+);
+
+existential_metatype_to_object_exprs(  //dir=expr
+  unique int id: @existential_metatype_to_object_expr
+);
+
+force_try_exprs(  //dir=expr
+  unique int id: @force_try_expr
+);
+
+foreign_object_conversion_exprs(  //dir=expr
+  unique int id: @foreign_object_conversion_expr
+);
+
+function_conversion_exprs(  //dir=expr
+  unique int id: @function_conversion_expr
+);
+
+in_out_to_pointer_exprs(  //dir=expr
+  unique int id: @in_out_to_pointer_expr
+);
+
+inject_into_optional_exprs(  //dir=expr
+  unique int id: @inject_into_optional_expr
+);
+
+interpolated_string_literal_exprs(  //dir=expr
+  unique int id: @interpolated_string_literal_expr
+);
+
+#keyset[id]
+interpolated_string_literal_expr_interpolation_exprs(  //dir=expr
+  int id: @interpolated_string_literal_expr ref,
+  int interpolation_expr: @opaque_value_expr_or_none ref
+);
+
+#keyset[id]
+interpolated_string_literal_expr_interpolation_count_exprs(  //dir=expr
+  int id: @interpolated_string_literal_expr ref,
+  int interpolation_count_expr: @expr_or_none ref
+);
+
+#keyset[id]
+interpolated_string_literal_expr_literal_capacity_exprs(  //dir=expr
+  int id: @interpolated_string_literal_expr ref,
+  int literal_capacity_expr: @expr_or_none ref
+);
+
+#keyset[id]
+interpolated_string_literal_expr_appending_exprs(  //dir=expr
+  int id: @interpolated_string_literal_expr ref,
+  int appending_expr: @tap_expr_or_none ref
+);
+
+linear_function_exprs(  //dir=expr
+  unique int id: @linear_function_expr
+);
+
+linear_function_extract_original_exprs(  //dir=expr
+  unique int id: @linear_function_extract_original_expr
+);
+
+linear_to_differentiable_function_exprs(  //dir=expr
+  unique int id: @linear_to_differentiable_function_expr
+);
+
+load_exprs(  //dir=expr
+  unique int id: @load_expr
+);
+
+member_ref_exprs(  //dir=expr
+  unique int id: @member_ref_expr
+);
+
+#keyset[id]
+member_ref_expr_has_direct_to_storage_semantics(  //dir=expr
+  int id: @member_ref_expr ref
+);
+
+#keyset[id]
+member_ref_expr_has_direct_to_implementation_semantics(  //dir=expr
+  int id: @member_ref_expr ref
+);
+
+#keyset[id]
+member_ref_expr_has_ordinary_semantics(  //dir=expr
+  int id: @member_ref_expr ref
+);
+
+metatype_conversion_exprs(  //dir=expr
+  unique int id: @metatype_conversion_expr
+);
+
+method_ref_exprs(  //dir=expr
+  unique int id: @method_ref_expr
+);
+
+nil_literal_exprs(  //dir=expr
+  unique int id: @nil_literal_expr
+);
+
+object_literal_exprs(  //dir=expr
+  unique int id: @object_literal_expr,
+  int kind: int ref
+);
+
+#keyset[id, index]
+object_literal_expr_arguments(  //dir=expr
+  int id: @object_literal_expr ref,
+  int index: int ref,
+  int argument: @argument_or_none ref
+);
+
+optional_try_exprs(  //dir=expr
+  unique int id: @optional_try_expr
+);
+
+paren_exprs(  //dir=expr
+  unique int id: @paren_expr
+);
+
+pointer_to_pointer_exprs(  //dir=expr
+  unique int id: @pointer_to_pointer_expr
+);
+
+postfix_unary_exprs(  //dir=expr
+  unique int id: @postfix_unary_expr
+);
+
+prefix_unary_exprs(  //dir=expr
+  unique int id: @prefix_unary_expr
+);
+
+protocol_metatype_to_object_exprs(  //dir=expr
+  unique int id: @protocol_metatype_to_object_expr
+);
+
+regex_literal_exprs(  //dir=expr
+  unique int id: @regex_literal_expr
+);
+
+@self_apply_expr =
+  @constructor_ref_call_expr
+| @dot_syntax_call_expr
+;
+
+#keyset[id]
+self_apply_exprs(  //dir=expr
+  int id: @self_apply_expr ref,
+  int base: @expr_or_none ref
+);
+
+string_to_pointer_exprs(  //dir=expr
+  unique int id: @string_to_pointer_expr
+);
+
+subscript_exprs(  //dir=expr
+  unique int id: @subscript_expr
+);
+
+#keyset[id, index]
+subscript_expr_arguments(  //dir=expr
+  int id: @subscript_expr ref,
+  int index: int ref,
+  int argument: @argument_or_none ref
+);
+
+#keyset[id]
+subscript_expr_has_direct_to_storage_semantics(  //dir=expr
+  int id: @subscript_expr ref
+);
+
+#keyset[id]
+subscript_expr_has_direct_to_implementation_semantics(  //dir=expr
+  int id: @subscript_expr ref
+);
+
+#keyset[id]
+subscript_expr_has_ordinary_semantics(  //dir=expr
+  int id: @subscript_expr ref
+);
+
+try_exprs(  //dir=expr
+  unique int id: @try_expr
+);
+
+underlying_to_opaque_exprs(  //dir=expr
+  unique int id: @underlying_to_opaque_expr
+);
+
+unevaluated_instance_exprs(  //dir=expr
+  unique int id: @unevaluated_instance_expr
+);
+
+unresolved_member_chain_result_exprs(  //dir=expr
+  unique int id: @unresolved_member_chain_result_expr
+);
+
+unresolved_type_conversion_exprs(  //dir=expr
+  unique int id: @unresolved_type_conversion_expr
+);
+
+boolean_literal_exprs(  //dir=expr
+  unique int id: @boolean_literal_expr,
+  boolean value: boolean ref
+);
+
+conditional_checked_cast_exprs(  //dir=expr
+  unique int id: @conditional_checked_cast_expr
+);
+
+constructor_ref_call_exprs(  //dir=expr
+  unique int id: @constructor_ref_call_expr
+);
+
+dot_syntax_call_exprs(  //dir=expr
+  unique int id: @dot_syntax_call_expr
+);
+
+dynamic_member_ref_exprs(  //dir=expr
+  unique int id: @dynamic_member_ref_expr
+);
+
+dynamic_subscript_exprs(  //dir=expr
+  unique int id: @dynamic_subscript_expr
+);
+
+forced_checked_cast_exprs(  //dir=expr
+  unique int id: @forced_checked_cast_expr
+);
+
+is_exprs(  //dir=expr
+  unique int id: @is_expr
+);
+
+magic_identifier_literal_exprs(  //dir=expr
+  unique int id: @magic_identifier_literal_expr,
+  string kind: string ref
+);
+
+@number_literal_expr =
+  @float_literal_expr
+| @integer_literal_expr
+;
+
+string_literal_exprs(  //dir=expr
+  unique int id: @string_literal_expr,
+  string value: string ref
+);
+
+float_literal_exprs(  //dir=expr
+  unique int id: @float_literal_expr,
+  string string_value: string ref
+);
+
+integer_literal_exprs(  //dir=expr
+  unique int id: @integer_literal_expr,
+  string string_value: string ref
+);
+
+@pattern =
+  @any_pattern
+| @binding_pattern
+| @bool_pattern
+| @enum_element_pattern
+| @expr_pattern
+| @is_pattern
+| @named_pattern
+| @optional_some_pattern
+| @paren_pattern
+| @tuple_pattern
+| @typed_pattern
+;
+
+any_patterns(  //dir=pattern
+  unique int id: @any_pattern
+);
+
+binding_patterns(  //dir=pattern
+  unique int id: @binding_pattern,
+  int sub_pattern: @pattern_or_none ref
+);
+
+bool_patterns(  //dir=pattern
+  unique int id: @bool_pattern,
+  boolean value: boolean ref
+);
+
+enum_element_patterns(  //dir=pattern
+  unique int id: @enum_element_pattern,
+  int element: @enum_element_decl_or_none ref
+);
+
+#keyset[id]
+enum_element_pattern_sub_patterns(  //dir=pattern
+  int id: @enum_element_pattern ref,
+  int sub_pattern: @pattern_or_none ref
+);
+
+expr_patterns(  //dir=pattern
+  unique int id: @expr_pattern,
+  int sub_expr: @expr_or_none ref
+);
+
+is_patterns(  //dir=pattern
+  unique int id: @is_pattern
+);
+
+#keyset[id]
+is_pattern_cast_type_reprs(  //dir=pattern
+  int id: @is_pattern ref,
+  int cast_type_repr: @type_repr_or_none ref
+);
+
+#keyset[id]
+is_pattern_sub_patterns(  //dir=pattern
+  int id: @is_pattern ref,
+  int sub_pattern: @pattern_or_none ref
+);
+
+named_patterns(  //dir=pattern
+  unique int id: @named_pattern,
+  string name: string ref
+);
+
+optional_some_patterns(  //dir=pattern
+  unique int id: @optional_some_pattern,
+  int sub_pattern: @pattern_or_none ref
+);
+
+paren_patterns(  //dir=pattern
+  unique int id: @paren_pattern,
+  int sub_pattern: @pattern_or_none ref
+);
+
+tuple_patterns(  //dir=pattern
+  unique int id: @tuple_pattern
+);
+
+#keyset[id, index]
+tuple_pattern_elements(  //dir=pattern
+  int id: @tuple_pattern ref,
+  int index: int ref,
+  int element: @pattern_or_none ref
+);
+
+typed_patterns(  //dir=pattern
+  unique int id: @typed_pattern,
+  int sub_pattern: @pattern_or_none ref
+);
+
+#keyset[id]
+typed_pattern_type_reprs(  //dir=pattern
+  int id: @typed_pattern ref,
+  int type_repr: @type_repr_or_none ref
+);
+
+case_label_items(  //dir=stmt
+  unique int id: @case_label_item,
+  int pattern: @pattern_or_none ref
+);
+
+#keyset[id]
+case_label_item_guards(  //dir=stmt
+  int id: @case_label_item ref,
+  int guard: @expr_or_none ref
+);
+
+condition_elements(  //dir=stmt
+  unique int id: @condition_element
+);
+
+#keyset[id]
+condition_element_booleans(  //dir=stmt
+  int id: @condition_element ref,
+  int boolean_: @expr_or_none ref
+);
+
+#keyset[id]
+condition_element_patterns(  //dir=stmt
+  int id: @condition_element ref,
+  int pattern: @pattern_or_none ref
+);
+
+#keyset[id]
+condition_element_initializers(  //dir=stmt
+  int id: @condition_element ref,
+  int initializer: @expr_or_none ref
+);
+
+@stmt =
+  @brace_stmt
+| @break_stmt
+| @case_stmt
+| @continue_stmt
+| @defer_stmt
+| @fail_stmt
+| @fallthrough_stmt
+| @labeled_stmt
+| @pound_assert_stmt
+| @return_stmt
+| @throw_stmt
+| @yield_stmt
+;
+
+stmt_conditions(  //dir=stmt
+  unique int id: @stmt_condition
+);
+
+#keyset[id, index]
+stmt_condition_elements(  //dir=stmt
+  int id: @stmt_condition ref,
+  int index: int ref,
+  int element: @condition_element_or_none ref
+);
+
+brace_stmts(  //dir=stmt
+  unique int id: @brace_stmt
+);
+
+#keyset[id, index]
+brace_stmt_elements(  //dir=stmt
+  int id: @brace_stmt ref,
+  int index: int ref,
+  int element: @ast_node_or_none ref
+);
+
+break_stmts(  //dir=stmt
+  unique int id: @break_stmt
+);
+
+#keyset[id]
+break_stmt_target_names(  //dir=stmt
+  int id: @break_stmt ref,
+  string target_name: string ref
+);
+
+#keyset[id]
+break_stmt_targets(  //dir=stmt
+  int id: @break_stmt ref,
+  int target: @stmt_or_none ref
+);
+
+case_stmts(  //dir=stmt
+  unique int id: @case_stmt,
+  int body: @stmt_or_none ref
+);
+
+#keyset[id, index]
+case_stmt_labels(  //dir=stmt
+  int id: @case_stmt ref,
+  int index: int ref,
+  int label: @case_label_item_or_none ref
+);
+
+#keyset[id, index]
+case_stmt_variables(  //dir=stmt
+  int id: @case_stmt ref,
+  int index: int ref,
+  int variable: @var_decl_or_none ref
+);
+
+continue_stmts(  //dir=stmt
+  unique int id: @continue_stmt
+);
+
+#keyset[id]
+continue_stmt_target_names(  //dir=stmt
+  int id: @continue_stmt ref,
+  string target_name: string ref
+);
+
+#keyset[id]
+continue_stmt_targets(  //dir=stmt
+  int id: @continue_stmt ref,
+  int target: @stmt_or_none ref
+);
+
+defer_stmts(  //dir=stmt
+  unique int id: @defer_stmt,
+  int body: @brace_stmt_or_none ref
+);
+
+fail_stmts(  //dir=stmt
+  unique int id: @fail_stmt
+);
+
+fallthrough_stmts(  //dir=stmt
+  unique int id: @fallthrough_stmt,
+  int fallthrough_source: @case_stmt_or_none ref,
+  int fallthrough_dest: @case_stmt_or_none ref
+);
+
+@labeled_stmt =
+  @do_catch_stmt
+| @do_stmt
+| @for_each_stmt
+| @labeled_conditional_stmt
+| @repeat_while_stmt
+| @switch_stmt
+;
+
+#keyset[id]
+labeled_stmt_labels(  //dir=stmt
+  int id: @labeled_stmt ref,
+  string label: string ref
+);
+
+pound_assert_stmts(  //dir=stmt
+  unique int id: @pound_assert_stmt,
+  int condition: @expr_or_none ref,
+  string message: string ref
+);
+
+return_stmts(  //dir=stmt
+  unique int id: @return_stmt
+);
+
+#keyset[id]
+return_stmt_results(  //dir=stmt
+  int id: @return_stmt ref,
+  int result: @expr_or_none ref
+);
+
+throw_stmts(  //dir=stmt
+  unique int id: @throw_stmt,
+  int sub_expr: @expr_or_none ref
+);
+
+yield_stmts(  //dir=stmt
+  unique int id: @yield_stmt
+);
+
+#keyset[id, index]
+yield_stmt_results(  //dir=stmt
+  int id: @yield_stmt ref,
+  int index: int ref,
+  int result: @expr_or_none ref
+);
+
+do_catch_stmts(  //dir=stmt
+  unique int id: @do_catch_stmt,
+  int body: @stmt_or_none ref
+);
+
+#keyset[id, index]
+do_catch_stmt_catches(  //dir=stmt
+  int id: @do_catch_stmt ref,
+  int index: int ref,
+  int catch: @case_stmt_or_none ref
+);
+
+do_stmts(  //dir=stmt
+  unique int id: @do_stmt,
+  int body: @brace_stmt_or_none ref
+);
+
+for_each_stmts(  //dir=stmt
+  unique int id: @for_each_stmt,
+  int pattern: @pattern_or_none ref,
+  int sequence: @expr_or_none ref,
+  int body: @brace_stmt_or_none ref
+);
+
+#keyset[id]
+for_each_stmt_wheres(  //dir=stmt
+  int id: @for_each_stmt ref,
+  int where: @expr_or_none ref
+);
+
+@labeled_conditional_stmt =
+  @guard_stmt
+| @if_stmt
+| @while_stmt
+;
+
+#keyset[id]
+labeled_conditional_stmts(  //dir=stmt
+  int id: @labeled_conditional_stmt ref,
+  int condition: @stmt_condition_or_none ref
+);
+
+repeat_while_stmts(  //dir=stmt
+  unique int id: @repeat_while_stmt,
+  int condition: @expr_or_none ref,
+  int body: @stmt_or_none ref
+);
+
+switch_stmts(  //dir=stmt
+  unique int id: @switch_stmt,
+  int expr: @expr_or_none ref
+);
+
+#keyset[id, index]
+switch_stmt_cases(  //dir=stmt
+  int id: @switch_stmt ref,
+  int index: int ref,
+  int case_: @case_stmt_or_none ref
+);
+
+guard_stmts(  //dir=stmt
+  unique int id: @guard_stmt,
+  int body: @brace_stmt_or_none ref
+);
+
+if_stmts(  //dir=stmt
+  unique int id: @if_stmt,
+  int then: @stmt_or_none ref
+);
+
+#keyset[id]
+if_stmt_elses(  //dir=stmt
+  int id: @if_stmt ref,
+  int else: @stmt_or_none ref
+);
+
+while_stmts(  //dir=stmt
+  unique int id: @while_stmt,
+  int body: @stmt_or_none ref
+);
+
+@type =
+  @any_function_type
+| @any_generic_type
+| @any_metatype_type
+| @builtin_type
+| @dependent_member_type
+| @dynamic_self_type
+| @error_type
+| @existential_type
+| @in_out_type
+| @l_value_type
+| @module_type
+| @parameterized_protocol_type
+| @protocol_composition_type
+| @reference_storage_type
+| @substitutable_type
+| @sugar_type
+| @tuple_type
+| @unresolved_type
+;
+
+#keyset[id]
+types(  //dir=type
+  int id: @type ref,
+  string name: string ref,
+  int canonical_type: @type_or_none ref
+);
+
+type_reprs(  //dir=type
+  unique int id: @type_repr,
+  int type_: @type_or_none ref
+);
+
+@any_function_type =
+  @function_type
+| @generic_function_type
+;
+
+#keyset[id]
+any_function_types(  //dir=type
+  int id: @any_function_type ref,
+  int result: @type_or_none ref
+);
+
+#keyset[id, index]
+any_function_type_param_types(  //dir=type
+  int id: @any_function_type ref,
+  int index: int ref,
+  int param_type: @type_or_none ref
+);
+
+#keyset[id, index]
+any_function_type_param_labels(  //dir=type
+  int id: @any_function_type ref,
+  int index: int ref,
+  string param_label: string ref
+);
+
+#keyset[id]
+any_function_type_is_throwing(  //dir=type
+  int id: @any_function_type ref
+);
+
+#keyset[id]
+any_function_type_is_async(  //dir=type
+  int id: @any_function_type ref
+);
+
+@any_generic_type =
+  @nominal_or_bound_generic_nominal_type
+| @unbound_generic_type
+;
+
+#keyset[id]
+any_generic_types(  //dir=type
+  int id: @any_generic_type ref,
+  int declaration: @decl_or_none ref
+);
+
+#keyset[id]
+any_generic_type_parents(  //dir=type
+  int id: @any_generic_type ref,
+  int parent: @type_or_none ref
+);
+
+@any_metatype_type =
+  @existential_metatype_type
+| @metatype_type
+;
+
+@builtin_type =
+  @any_builtin_integer_type
+| @builtin_bridge_object_type
+| @builtin_default_actor_storage_type
+| @builtin_executor_type
+| @builtin_float_type
+| @builtin_job_type
+| @builtin_native_object_type
+| @builtin_raw_pointer_type
+| @builtin_raw_unsafe_continuation_type
+| @builtin_unsafe_value_buffer_type
+| @builtin_vector_type
+;
+
+dependent_member_types(  //dir=type
+  unique int id: @dependent_member_type,
+  int base_type: @type_or_none ref,
+  int associated_type_decl: @associated_type_decl_or_none ref
+);
+
+dynamic_self_types(  //dir=type
+  unique int id: @dynamic_self_type,
+  int static_self_type: @type_or_none ref
+);
+
+error_types(  //dir=type
+  unique int id: @error_type
+);
+
+existential_types(  //dir=type
+  unique int id: @existential_type,
+  int constraint: @type_or_none ref
+);
+
+in_out_types(  //dir=type
+  unique int id: @in_out_type,
+  int object_type: @type_or_none ref
+);
+
+l_value_types(  //dir=type
+  unique int id: @l_value_type,
+  int object_type: @type_or_none ref
+);
+
+module_types(  //dir=type
+  unique int id: @module_type,
+  int module: @module_decl_or_none ref
+);
+
+parameterized_protocol_types(  //dir=type
+  unique int id: @parameterized_protocol_type,
+  int base: @protocol_type_or_none ref
+);
+
+#keyset[id, index]
+parameterized_protocol_type_args(  //dir=type
+  int id: @parameterized_protocol_type ref,
+  int index: int ref,
+  int arg: @type_or_none ref
+);
+
+protocol_composition_types(  //dir=type
+  unique int id: @protocol_composition_type
+);
+
+#keyset[id, index]
+protocol_composition_type_members(  //dir=type
+  int id: @protocol_composition_type ref,
+  int index: int ref,
+  int member: @type_or_none ref
+);
+
+@reference_storage_type =
+  @unmanaged_storage_type
+| @unowned_storage_type
+| @weak_storage_type
+;
+
+#keyset[id]
+reference_storage_types(  //dir=type
+  int id: @reference_storage_type ref,
+  int referent_type: @type_or_none ref
+);
+
+@substitutable_type =
+  @archetype_type
+| @generic_type_param_type
+;
+
+@sugar_type =
+  @paren_type
+| @syntax_sugar_type
+| @type_alias_type
+;
+
+tuple_types(  //dir=type
+  unique int id: @tuple_type
+);
+
+#keyset[id, index]
+tuple_type_types(  //dir=type
+  int id: @tuple_type ref,
+  int index: int ref,
+  int type_: @type_or_none ref
+);
+
+#keyset[id, index]
+tuple_type_names(  //dir=type
+  int id: @tuple_type ref,
+  int index: int ref,
+  string name: string ref
+);
+
+unresolved_types(  //dir=type
+  unique int id: @unresolved_type
+);
+
+@any_builtin_integer_type =
+  @builtin_integer_literal_type
+| @builtin_integer_type
+;
+
+@archetype_type =
+  @opaque_type_archetype_type
+| @opened_archetype_type
+| @primary_archetype_type
+;
+
+#keyset[id]
+archetype_types(  //dir=type
+  int id: @archetype_type ref,
+  int interface_type: @type_or_none ref
+);
+
+#keyset[id]
+archetype_type_superclasses(  //dir=type
+  int id: @archetype_type ref,
+  int superclass: @type_or_none ref
+);
+
+#keyset[id, index]
+archetype_type_protocols(  //dir=type
+  int id: @archetype_type ref,
+  int index: int ref,
+  int protocol: @protocol_decl_or_none ref
+);
+
+builtin_bridge_object_types(  //dir=type
+  unique int id: @builtin_bridge_object_type
+);
+
+builtin_default_actor_storage_types(  //dir=type
+  unique int id: @builtin_default_actor_storage_type
+);
+
+builtin_executor_types(  //dir=type
+  unique int id: @builtin_executor_type
+);
+
+builtin_float_types(  //dir=type
+  unique int id: @builtin_float_type
+);
+
+builtin_job_types(  //dir=type
+  unique int id: @builtin_job_type
+);
+
+builtin_native_object_types(  //dir=type
+  unique int id: @builtin_native_object_type
+);
+
+builtin_raw_pointer_types(  //dir=type
+  unique int id: @builtin_raw_pointer_type
+);
+
+builtin_raw_unsafe_continuation_types(  //dir=type
+  unique int id: @builtin_raw_unsafe_continuation_type
+);
+
+builtin_unsafe_value_buffer_types(  //dir=type
+  unique int id: @builtin_unsafe_value_buffer_type
+);
+
+builtin_vector_types(  //dir=type
+  unique int id: @builtin_vector_type
+);
+
+existential_metatype_types(  //dir=type
+  unique int id: @existential_metatype_type
+);
+
+function_types(  //dir=type
+  unique int id: @function_type
+);
+
+generic_function_types(  //dir=type
+  unique int id: @generic_function_type
+);
+
+#keyset[id, index]
+generic_function_type_generic_params(  //dir=type
+  int id: @generic_function_type ref,
+  int index: int ref,
+  int generic_param: @generic_type_param_type_or_none ref
+);
+
+generic_type_param_types(  //dir=type
+  unique int id: @generic_type_param_type
+);
+
+metatype_types(  //dir=type
+  unique int id: @metatype_type
+);
+
+@nominal_or_bound_generic_nominal_type =
+  @bound_generic_type
+| @nominal_type
+;
+
+paren_types(  //dir=type
+  unique int id: @paren_type,
+  int type_: @type_or_none ref
+);
+
+@syntax_sugar_type =
+  @dictionary_type
+| @unary_syntax_sugar_type
+;
+
+type_alias_types(  //dir=type
+  unique int id: @type_alias_type,
+  int decl: @type_alias_decl_or_none ref
+);
+
+unbound_generic_types(  //dir=type
+  unique int id: @unbound_generic_type
+);
+
+unmanaged_storage_types(  //dir=type
+  unique int id: @unmanaged_storage_type
+);
+
+unowned_storage_types(  //dir=type
+  unique int id: @unowned_storage_type
+);
+
+weak_storage_types(  //dir=type
+  unique int id: @weak_storage_type
+);
+
+@bound_generic_type =
+  @bound_generic_class_type
+| @bound_generic_enum_type
+| @bound_generic_struct_type
+;
+
+#keyset[id, index]
+bound_generic_type_arg_types(  //dir=type
+  int id: @bound_generic_type ref,
+  int index: int ref,
+  int arg_type: @type_or_none ref
+);
+
+builtin_integer_literal_types(  //dir=type
+  unique int id: @builtin_integer_literal_type
+);
+
+builtin_integer_types(  //dir=type
+  unique int id: @builtin_integer_type
+);
+
+#keyset[id]
+builtin_integer_type_widths(  //dir=type
+  int id: @builtin_integer_type ref,
+  int width: int ref
+);
+
+dictionary_types(  //dir=type
+  unique int id: @dictionary_type,
+  int key_type: @type_or_none ref,
+  int value_type: @type_or_none ref
+);
+
+@nominal_type =
+  @class_type
+| @enum_type
+| @protocol_type
+| @struct_type
+;
+
+opaque_type_archetype_types(  //dir=type
+  unique int id: @opaque_type_archetype_type,
+  int declaration: @opaque_type_decl_or_none ref
+);
+
+opened_archetype_types(  //dir=type
+  unique int id: @opened_archetype_type
+);
+
+primary_archetype_types(  //dir=type
+  unique int id: @primary_archetype_type
+);
+
+@unary_syntax_sugar_type =
+  @array_slice_type
+| @optional_type
+| @variadic_sequence_type
+;
+
+#keyset[id]
+unary_syntax_sugar_types(  //dir=type
+  int id: @unary_syntax_sugar_type ref,
+  int base_type: @type_or_none ref
+);
+
+array_slice_types(  //dir=type
+  unique int id: @array_slice_type
+);
+
+bound_generic_class_types(  //dir=type
+  unique int id: @bound_generic_class_type
+);
+
+bound_generic_enum_types(  //dir=type
+  unique int id: @bound_generic_enum_type
+);
+
+bound_generic_struct_types(  //dir=type
+  unique int id: @bound_generic_struct_type
+);
+
+class_types(  //dir=type
+  unique int id: @class_type
+);
+
+enum_types(  //dir=type
+  unique int id: @enum_type
+);
+
+optional_types(  //dir=type
+  unique int id: @optional_type
+);
+
+protocol_types(  //dir=type
+  unique int id: @protocol_type
+);
+
+struct_types(  //dir=type
+  unique int id: @struct_type
+);
+
+variadic_sequence_types(  //dir=type
+  unique int id: @variadic_sequence_type
+);
+
+@abstract_function_decl_or_none =
+  @abstract_function_decl
+| @unspecified_element
+;
+
+@accessor_decl_or_none =
+  @accessor_decl
+| @unspecified_element
+;
+
+@argument_or_none =
+  @argument
+| @unspecified_element
+;
+
+@associated_type_decl_or_none =
+  @associated_type_decl
+| @unspecified_element
+;
+
+@ast_node_or_none =
+  @ast_node
+| @unspecified_element
+;
+
+@brace_stmt_or_none =
+  @brace_stmt
+| @unspecified_element
+;
+
+@case_label_item_or_none =
+  @case_label_item
+| @unspecified_element
+;
+
+@case_stmt_or_none =
+  @case_stmt
+| @unspecified_element
+;
+
+@closure_expr_or_none =
+  @closure_expr
+| @unspecified_element
+;
+
+@condition_element_or_none =
+  @condition_element
+| @unspecified_element
+;
+
+@constructor_decl_or_none =
+  @constructor_decl
+| @unspecified_element
+;
+
+@decl_or_none =
+  @decl
+| @unspecified_element
+;
+
+@enum_element_decl_or_none =
+  @enum_element_decl
+| @unspecified_element
+;
+
+@expr_or_none =
+  @expr
+| @unspecified_element
+;
+
+@file_or_none =
+  @file
+| @unspecified_element
+;
+
+@generic_type_param_decl_or_none =
+  @generic_type_param_decl
+| @unspecified_element
+;
+
+@generic_type_param_type_or_none =
+  @generic_type_param_type
+| @unspecified_element
+;
+
+@location_or_none =
+  @location
+| @unspecified_element
+;
+
+@module_decl_or_none =
+  @module_decl
+| @unspecified_element
+;
+
+@nominal_type_decl_or_none =
+  @nominal_type_decl
+| @unspecified_element
+;
+
+@opaque_type_decl_or_none =
+  @opaque_type_decl
+| @unspecified_element
+;
+
+@opaque_value_expr_or_none =
+  @opaque_value_expr
+| @unspecified_element
+;
+
+@param_decl_or_none =
+  @param_decl
+| @unspecified_element
+;
+
+@pattern_or_none =
+  @pattern
+| @unspecified_element
+;
+
+@pattern_binding_decl_or_none =
+  @pattern_binding_decl
+| @unspecified_element
+;
+
+@precedence_group_decl_or_none =
+  @precedence_group_decl
+| @unspecified_element
+;
+
+@protocol_decl_or_none =
+  @protocol_decl
+| @unspecified_element
+;
+
+@protocol_type_or_none =
+  @protocol_type
+| @unspecified_element
+;
+
+@stmt_or_none =
+  @stmt
+| @unspecified_element
+;
+
+@stmt_condition_or_none =
+  @stmt_condition
+| @unspecified_element
+;
+
+@string_literal_expr_or_none =
+  @string_literal_expr
+| @unspecified_element
+;
+
+@tap_expr_or_none =
+  @tap_expr
+| @unspecified_element
+;
+
+@type_or_none =
+  @type
+| @unspecified_element
+;
+
+@type_alias_decl_or_none =
+  @type_alias_decl
+| @unspecified_element
+;
+
+@type_repr_or_none =
+  @type_repr
+| @unspecified_element
+;
+
+@value_decl_or_none =
+  @unspecified_element
+| @value_decl
+;
+
+@var_decl_or_none =
+  @unspecified_element
+| @var_decl
+;
diff --git a/swift/ql/lib/upgrades/ceca289a0ff56bcc88f72ad78a8fbff1d850922f/swift.dbscheme b/swift/ql/lib/upgrades/ceca289a0ff56bcc88f72ad78a8fbff1d850922f/swift.dbscheme
new file mode 100644
index 00000000000..abbb8c9e840
--- /dev/null
+++ b/swift/ql/lib/upgrades/ceca289a0ff56bcc88f72ad78a8fbff1d850922f/swift.dbscheme
@@ -0,0 +1,2478 @@
+// generated by codegen/codegen.py
+
+// from prefix.dbscheme
+/**
+ * The source location of the snapshot.
+ */
+sourceLocationPrefix(
+  string prefix: string ref
+);
+
+
+// from schema.py
+
+@element =
+  @callable
+| @file
+| @generic_context
+| @iterable_decl_context
+| @locatable
+| @location
+| @type
+;
+
+#keyset[id]
+element_is_unknown(
+  int id: @element ref
+);
+
+@callable =
+  @abstract_closure_expr
+| @abstract_function_decl
+;
+
+#keyset[id]
+callable_self_params(
+  int id: @callable ref,
+  int self_param: @param_decl_or_none ref
+);
+
+#keyset[id, index]
+callable_params(
+  int id: @callable ref,
+  int index: int ref,
+  int param: @param_decl_or_none ref
+);
+
+#keyset[id]
+callable_bodies(
+  int id: @callable ref,
+  int body: @brace_stmt_or_none ref
+);
+
+@file =
+  @db_file
+;
+
+#keyset[id]
+files(
+  int id: @file ref,
+  string name: string ref
+);
+
+@locatable =
+  @argument
+| @ast_node
+| @comment
+| @diagnostics
+| @error_element
+;
+
+#keyset[id]
+locatable_locations(
+  int id: @locatable ref,
+  int location: @location_or_none ref
+);
+
+@location =
+  @db_location
+;
+
+#keyset[id]
+locations(
+  int id: @location ref,
+  int file: @file_or_none ref,
+  int start_line: int ref,
+  int start_column: int ref,
+  int end_line: int ref,
+  int end_column: int ref
+);
+
+@ast_node =
+  @case_label_item
+| @condition_element
+| @decl
+| @expr
+| @pattern
+| @stmt
+| @stmt_condition
+| @type_repr
+;
+
+comments(
+  unique int id: @comment,
+  string text: string ref
+);
+
+db_files(
+  unique int id: @db_file
+);
+
+db_locations(
+  unique int id: @db_location
+);
+
+diagnostics(
+  unique int id: @diagnostics,
+  string text: string ref,
+  int kind: int ref
+);
+
+@error_element =
+  @error_expr
+| @error_type
+| @overloaded_decl_ref_expr
+| @unresolved_decl_ref_expr
+| @unresolved_dot_expr
+| @unresolved_member_chain_result_expr
+| @unresolved_member_expr
+| @unresolved_pattern_expr
+| @unresolved_specialize_expr
+| @unresolved_type
+| @unresolved_type_conversion_expr
+| @unspecified_element
+;
+
+unspecified_elements(
+  unique int id: @unspecified_element,
+  string property: string ref,
+  string error: string ref
+);
+
+#keyset[id]
+unspecified_element_parents(
+  int id: @unspecified_element ref,
+  int parent: @element ref
+);
+
+#keyset[id]
+unspecified_element_indices(
+  int id: @unspecified_element ref,
+  int index: int ref
+);
+
+@decl =
+  @enum_case_decl
+| @extension_decl
+| @if_config_decl
+| @import_decl
+| @missing_member_decl
+| @operator_decl
+| @pattern_binding_decl
+| @pound_diagnostic_decl
+| @precedence_group_decl
+| @top_level_code_decl
+| @value_decl
+;
+
+#keyset[id]
+decls(  //dir=decl
+  int id: @decl ref,
+  int module: @module_decl_or_none ref
+);
+
+@generic_context =
+  @abstract_function_decl
+| @extension_decl
+| @generic_type_decl
+| @subscript_decl
+;
+
+#keyset[id, index]
+generic_context_generic_type_params(  //dir=decl
+  int id: @generic_context ref,
+  int index: int ref,
+  int generic_type_param: @generic_type_param_decl_or_none ref
+);
+
+@iterable_decl_context =
+  @extension_decl
+| @nominal_type_decl
+;
+
+#keyset[id, index]
+iterable_decl_context_members(  //dir=decl
+  int id: @iterable_decl_context ref,
+  int index: int ref,
+  int member: @decl_or_none ref
+);
+
+enum_case_decls(  //dir=decl
+  unique int id: @enum_case_decl
+);
+
+#keyset[id, index]
+enum_case_decl_elements(  //dir=decl
+  int id: @enum_case_decl ref,
+  int index: int ref,
+  int element: @enum_element_decl_or_none ref
+);
+
+extension_decls(  //dir=decl
+  unique int id: @extension_decl,
+  int extended_type_decl: @nominal_type_decl_or_none ref
+);
+
+if_config_decls(  //dir=decl
+  unique int id: @if_config_decl
+);
+
+#keyset[id, index]
+if_config_decl_active_elements(  //dir=decl
+  int id: @if_config_decl ref,
+  int index: int ref,
+  int active_element: @ast_node_or_none ref
+);
+
+import_decls(  //dir=decl
+  unique int id: @import_decl
+);
+
+#keyset[id]
+import_decl_is_exported(  //dir=decl
+  int id: @import_decl ref
+);
+
+#keyset[id]
+import_decl_imported_modules(  //dir=decl
+  int id: @import_decl ref,
+  int imported_module: @module_decl_or_none ref
+);
+
+#keyset[id, index]
+import_decl_declarations(  //dir=decl
+  int id: @import_decl ref,
+  int index: int ref,
+  int declaration: @value_decl_or_none ref
+);
+
+missing_member_decls(  //dir=decl
+  unique int id: @missing_member_decl,
+  string name: string ref
+);
+
+@operator_decl =
+  @infix_operator_decl
+| @postfix_operator_decl
+| @prefix_operator_decl
+;
+
+#keyset[id]
+operator_decls(  //dir=decl
+  int id: @operator_decl ref,
+  string name: string ref
+);
+
+pattern_binding_decls(  //dir=decl
+  unique int id: @pattern_binding_decl
+);
+
+#keyset[id, index]
+pattern_binding_decl_inits(  //dir=decl
+  int id: @pattern_binding_decl ref,
+  int index: int ref,
+  int init: @expr_or_none ref
+);
+
+#keyset[id, index]
+pattern_binding_decl_patterns(  //dir=decl
+  int id: @pattern_binding_decl ref,
+  int index: int ref,
+  int pattern: @pattern_or_none ref
+);
+
+pound_diagnostic_decls(  //dir=decl
+  unique int id: @pound_diagnostic_decl,
+  int kind: int ref,
+  int message: @string_literal_expr_or_none ref
+);
+
+precedence_group_decls(  //dir=decl
+  unique int id: @precedence_group_decl
+);
+
+top_level_code_decls(  //dir=decl
+  unique int id: @top_level_code_decl,
+  int body: @brace_stmt_or_none ref
+);
+
+@value_decl =
+  @abstract_function_decl
+| @abstract_storage_decl
+| @enum_element_decl
+| @type_decl
+;
+
+#keyset[id]
+value_decls(  //dir=decl
+  int id: @value_decl ref,
+  int interface_type: @type_or_none ref
+);
+
+@abstract_function_decl =
+  @constructor_decl
+| @destructor_decl
+| @func_decl
+;
+
+#keyset[id]
+abstract_function_decls(  //dir=decl
+  int id: @abstract_function_decl ref,
+  string name: string ref
+);
+
+@abstract_storage_decl =
+  @subscript_decl
+| @var_decl
+;
+
+#keyset[id, index]
+abstract_storage_decl_accessor_decls(  //dir=decl
+  int id: @abstract_storage_decl ref,
+  int index: int ref,
+  int accessor_decl: @accessor_decl_or_none ref
+);
+
+enum_element_decls(  //dir=decl
+  unique int id: @enum_element_decl,
+  string name: string ref
+);
+
+#keyset[id, index]
+enum_element_decl_params(  //dir=decl
+  int id: @enum_element_decl ref,
+  int index: int ref,
+  int param: @param_decl_or_none ref
+);
+
+infix_operator_decls(  //dir=decl
+  unique int id: @infix_operator_decl
+);
+
+#keyset[id]
+infix_operator_decl_precedence_groups(  //dir=decl
+  int id: @infix_operator_decl ref,
+  int precedence_group: @precedence_group_decl_or_none ref
+);
+
+postfix_operator_decls(  //dir=decl
+  unique int id: @postfix_operator_decl
+);
+
+prefix_operator_decls(  //dir=decl
+  unique int id: @prefix_operator_decl
+);
+
+@type_decl =
+  @abstract_type_param_decl
+| @generic_type_decl
+| @module_decl
+;
+
+#keyset[id]
+type_decls(  //dir=decl
+  int id: @type_decl ref,
+  string name: string ref
+);
+
+#keyset[id, index]
+type_decl_base_types(  //dir=decl
+  int id: @type_decl ref,
+  int index: int ref,
+  int base_type: @type_or_none ref
+);
+
+@abstract_type_param_decl =
+  @associated_type_decl
+| @generic_type_param_decl
+;
+
+constructor_decls(  //dir=decl
+  unique int id: @constructor_decl
+);
+
+destructor_decls(  //dir=decl
+  unique int id: @destructor_decl
+);
+
+@func_decl =
+  @accessor_decl
+| @concrete_func_decl
+;
+
+@generic_type_decl =
+  @nominal_type_decl
+| @opaque_type_decl
+| @type_alias_decl
+;
+
+module_decls(  //dir=decl
+  unique int id: @module_decl
+);
+
+#keyset[id]
+module_decl_is_builtin_module(  //dir=decl
+  int id: @module_decl ref
+);
+
+#keyset[id]
+module_decl_is_system_module(  //dir=decl
+  int id: @module_decl ref
+);
+
+#keyset[id, index]
+module_decl_imported_modules(  //dir=decl
+  int id: @module_decl ref,
+  int index: int ref,
+  int imported_module: @module_decl_or_none ref
+);
+
+#keyset[id, index]
+module_decl_exported_modules(  //dir=decl
+  int id: @module_decl ref,
+  int index: int ref,
+  int exported_module: @module_decl_or_none ref
+);
+
+subscript_decls(  //dir=decl
+  unique int id: @subscript_decl,
+  int element_type: @type_or_none ref
+);
+
+#keyset[id, index]
+subscript_decl_params(  //dir=decl
+  int id: @subscript_decl ref,
+  int index: int ref,
+  int param: @param_decl_or_none ref
+);
+
+@var_decl =
+  @concrete_var_decl
+| @param_decl
+;
+
+#keyset[id]
+var_decls(  //dir=decl
+  int id: @var_decl ref,
+  string name: string ref,
+  int type_: @type_or_none ref
+);
+
+#keyset[id]
+var_decl_attached_property_wrapper_types(  //dir=decl
+  int id: @var_decl ref,
+  int attached_property_wrapper_type: @type_or_none ref
+);
+
+#keyset[id]
+var_decl_parent_patterns(  //dir=decl
+  int id: @var_decl ref,
+  int parent_pattern: @pattern_or_none ref
+);
+
+#keyset[id]
+var_decl_parent_initializers(  //dir=decl
+  int id: @var_decl ref,
+  int parent_initializer: @expr_or_none ref
+);
+
+#keyset[id]
+var_decl_property_wrapper_backing_var_bindings(  //dir=decl
+  int id: @var_decl ref,
+  int property_wrapper_backing_var_binding: @pattern_binding_decl_or_none ref
+);
+
+#keyset[id]
+var_decl_property_wrapper_backing_vars(  //dir=decl
+  int id: @var_decl ref,
+  int property_wrapper_backing_var: @var_decl_or_none ref
+);
+
+#keyset[id]
+var_decl_property_wrapper_projection_var_bindings(  //dir=decl
+  int id: @var_decl ref,
+  int property_wrapper_projection_var_binding: @pattern_binding_decl_or_none ref
+);
+
+#keyset[id]
+var_decl_property_wrapper_projection_vars(  //dir=decl
+  int id: @var_decl ref,
+  int property_wrapper_projection_var: @var_decl_or_none ref
+);
+
+accessor_decls(  //dir=decl
+  unique int id: @accessor_decl
+);
+
+#keyset[id]
+accessor_decl_is_getter(  //dir=decl
+  int id: @accessor_decl ref
+);
+
+#keyset[id]
+accessor_decl_is_setter(  //dir=decl
+  int id: @accessor_decl ref
+);
+
+#keyset[id]
+accessor_decl_is_will_set(  //dir=decl
+  int id: @accessor_decl ref
+);
+
+#keyset[id]
+accessor_decl_is_did_set(  //dir=decl
+  int id: @accessor_decl ref
+);
+
+associated_type_decls(  //dir=decl
+  unique int id: @associated_type_decl
+);
+
+concrete_func_decls(  //dir=decl
+  unique int id: @concrete_func_decl
+);
+
+concrete_var_decls(  //dir=decl
+  unique int id: @concrete_var_decl,
+  int introducer_int: int ref
+);
+
+generic_type_param_decls(  //dir=decl
+  unique int id: @generic_type_param_decl
+);
+
+@nominal_type_decl =
+  @class_decl
+| @enum_decl
+| @protocol_decl
+| @struct_decl
+;
+
+#keyset[id]
+nominal_type_decls(  //dir=decl
+  int id: @nominal_type_decl ref,
+  int type_: @type_or_none ref
+);
+
+opaque_type_decls(  //dir=decl
+  unique int id: @opaque_type_decl,
+  int naming_declaration: @value_decl_or_none ref
+);
+
+#keyset[id, index]
+opaque_type_decl_opaque_generic_params(  //dir=decl
+  int id: @opaque_type_decl ref,
+  int index: int ref,
+  int opaque_generic_param: @generic_type_param_type_or_none ref
+);
+
+param_decls(  //dir=decl
+  unique int id: @param_decl
+);
+
+#keyset[id]
+param_decl_is_inout(  //dir=decl
+  int id: @param_decl ref
+);
+
+#keyset[id]
+param_decl_property_wrapper_local_wrapped_var_bindings(  //dir=decl
+  int id: @param_decl ref,
+  int property_wrapper_local_wrapped_var_binding: @pattern_binding_decl_or_none ref
+);
+
+#keyset[id]
+param_decl_property_wrapper_local_wrapped_vars(  //dir=decl
+  int id: @param_decl ref,
+  int property_wrapper_local_wrapped_var: @var_decl_or_none ref
+);
+
+type_alias_decls(  //dir=decl
+  unique int id: @type_alias_decl
+);
+
+class_decls(  //dir=decl
+  unique int id: @class_decl
+);
+
+enum_decls(  //dir=decl
+  unique int id: @enum_decl
+);
+
+protocol_decls(  //dir=decl
+  unique int id: @protocol_decl
+);
+
+struct_decls(  //dir=decl
+  unique int id: @struct_decl
+);
+
+arguments(  //dir=expr
+  unique int id: @argument,
+  string label: string ref,
+  int expr: @expr_or_none ref
+);
+
+@expr =
+  @abstract_closure_expr
+| @any_try_expr
+| @applied_property_wrapper_expr
+| @apply_expr
+| @assign_expr
+| @bind_optional_expr
+| @capture_list_expr
+| @collection_expr
+| @decl_ref_expr
+| @default_argument_expr
+| @discard_assignment_expr
+| @dot_syntax_base_ignored_expr
+| @dynamic_type_expr
+| @enum_is_case_expr
+| @error_expr
+| @explicit_cast_expr
+| @force_value_expr
+| @identity_expr
+| @if_expr
+| @implicit_conversion_expr
+| @in_out_expr
+| @key_path_application_expr
+| @key_path_dot_expr
+| @key_path_expr
+| @lazy_initializer_expr
+| @literal_expr
+| @lookup_expr
+| @make_temporarily_escapable_expr
+| @obj_c_selector_expr
+| @one_way_expr
+| @opaque_value_expr
+| @open_existential_expr
+| @optional_evaluation_expr
+| @other_constructor_decl_ref_expr
+| @overloaded_decl_ref_expr
+| @property_wrapper_value_placeholder_expr
+| @rebind_self_in_constructor_expr
+| @sequence_expr
+| @super_ref_expr
+| @tap_expr
+| @tuple_element_expr
+| @tuple_expr
+| @type_expr
+| @unresolved_decl_ref_expr
+| @unresolved_dot_expr
+| @unresolved_member_expr
+| @unresolved_pattern_expr
+| @unresolved_specialize_expr
+| @vararg_expansion_expr
+;
+
+#keyset[id]
+expr_types(  //dir=expr
+  int id: @expr ref,
+  int type_: @type_or_none ref
+);
+
+@abstract_closure_expr =
+  @auto_closure_expr
+| @closure_expr
+;
+
+@any_try_expr =
+  @force_try_expr
+| @optional_try_expr
+| @try_expr
+;
+
+#keyset[id]
+any_try_exprs(  //dir=expr
+  int id: @any_try_expr ref,
+  int sub_expr: @expr_or_none ref
+);
+
+applied_property_wrapper_exprs(  //dir=expr
+  unique int id: @applied_property_wrapper_expr,
+  int kind: int ref,
+  int value: @expr_or_none ref,
+  int param: @param_decl_or_none ref
+);
+
+@apply_expr =
+  @binary_expr
+| @call_expr
+| @postfix_unary_expr
+| @prefix_unary_expr
+| @self_apply_expr
+;
+
+#keyset[id]
+apply_exprs(  //dir=expr
+  int id: @apply_expr ref,
+  int function: @expr_or_none ref
+);
+
+#keyset[id, index]
+apply_expr_arguments(  //dir=expr
+  int id: @apply_expr ref,
+  int index: int ref,
+  int argument: @argument_or_none ref
+);
+
+assign_exprs(  //dir=expr
+  unique int id: @assign_expr,
+  int dest: @expr_or_none ref,
+  int source: @expr_or_none ref
+);
+
+bind_optional_exprs(  //dir=expr
+  unique int id: @bind_optional_expr,
+  int sub_expr: @expr_or_none ref
+);
+
+capture_list_exprs(  //dir=expr
+  unique int id: @capture_list_expr,
+  int closure_body: @closure_expr_or_none ref
+);
+
+#keyset[id, index]
+capture_list_expr_binding_decls(  //dir=expr
+  int id: @capture_list_expr ref,
+  int index: int ref,
+  int binding_decl: @pattern_binding_decl_or_none ref
+);
+
+@collection_expr =
+  @array_expr
+| @dictionary_expr
+;
+
+decl_ref_exprs(  //dir=expr
+  unique int id: @decl_ref_expr,
+  int decl: @decl_or_none ref
+);
+
+#keyset[id, index]
+decl_ref_expr_replacement_types(  //dir=expr
+  int id: @decl_ref_expr ref,
+  int index: int ref,
+  int replacement_type: @type_or_none ref
+);
+
+#keyset[id]
+decl_ref_expr_has_direct_to_storage_semantics(  //dir=expr
+  int id: @decl_ref_expr ref
+);
+
+#keyset[id]
+decl_ref_expr_has_direct_to_implementation_semantics(  //dir=expr
+  int id: @decl_ref_expr ref
+);
+
+#keyset[id]
+decl_ref_expr_has_ordinary_semantics(  //dir=expr
+  int id: @decl_ref_expr ref
+);
+
+default_argument_exprs(  //dir=expr
+  unique int id: @default_argument_expr,
+  int param_decl: @param_decl_or_none ref,
+  int param_index: int ref
+);
+
+#keyset[id]
+default_argument_expr_caller_side_defaults(  //dir=expr
+  int id: @default_argument_expr ref,
+  int caller_side_default: @expr_or_none ref
+);
+
+discard_assignment_exprs(  //dir=expr
+  unique int id: @discard_assignment_expr
+);
+
+dot_syntax_base_ignored_exprs(  //dir=expr
+  unique int id: @dot_syntax_base_ignored_expr,
+  int qualifier: @expr_or_none ref,
+  int sub_expr: @expr_or_none ref
+);
+
+dynamic_type_exprs(  //dir=expr
+  unique int id: @dynamic_type_expr,
+  int base: @expr_or_none ref
+);
+
+enum_is_case_exprs(  //dir=expr
+  unique int id: @enum_is_case_expr,
+  int sub_expr: @expr_or_none ref,
+  int element: @enum_element_decl_or_none ref
+);
+
+error_exprs(  //dir=expr
+  unique int id: @error_expr
+);
+
+@explicit_cast_expr =
+  @checked_cast_expr
+| @coerce_expr
+;
+
+#keyset[id]
+explicit_cast_exprs(  //dir=expr
+  int id: @explicit_cast_expr ref,
+  int sub_expr: @expr_or_none ref
+);
+
+force_value_exprs(  //dir=expr
+  unique int id: @force_value_expr,
+  int sub_expr: @expr_or_none ref
+);
+
+@identity_expr =
+  @await_expr
+| @dot_self_expr
+| @paren_expr
+| @unresolved_member_chain_result_expr
+;
+
+#keyset[id]
+identity_exprs(  //dir=expr
+  int id: @identity_expr ref,
+  int sub_expr: @expr_or_none ref
+);
+
+if_exprs(  //dir=expr
+  unique int id: @if_expr,
+  int condition: @expr_or_none ref,
+  int then_expr: @expr_or_none ref,
+  int else_expr: @expr_or_none ref
+);
+
+@implicit_conversion_expr =
+  @any_hashable_erasure_expr
+| @archetype_to_super_expr
+| @array_to_pointer_expr
+| @bridge_from_obj_c_expr
+| @bridge_to_obj_c_expr
+| @class_metatype_to_object_expr
+| @collection_upcast_conversion_expr
+| @conditional_bridge_from_obj_c_expr
+| @covariant_function_conversion_expr
+| @covariant_return_conversion_expr
+| @derived_to_base_expr
+| @destructure_tuple_expr
+| @differentiable_function_expr
+| @differentiable_function_extract_original_expr
+| @erasure_expr
+| @existential_metatype_to_object_expr
+| @foreign_object_conversion_expr
+| @function_conversion_expr
+| @in_out_to_pointer_expr
+| @inject_into_optional_expr
+| @linear_function_expr
+| @linear_function_extract_original_expr
+| @linear_to_differentiable_function_expr
+| @load_expr
+| @metatype_conversion_expr
+| @pointer_to_pointer_expr
+| @protocol_metatype_to_object_expr
+| @string_to_pointer_expr
+| @underlying_to_opaque_expr
+| @unevaluated_instance_expr
+| @unresolved_type_conversion_expr
+;
+
+#keyset[id]
+implicit_conversion_exprs(  //dir=expr
+  int id: @implicit_conversion_expr ref,
+  int sub_expr: @expr_or_none ref
+);
+
+in_out_exprs(  //dir=expr
+  unique int id: @in_out_expr,
+  int sub_expr: @expr_or_none ref
+);
+
+key_path_application_exprs(  //dir=expr
+  unique int id: @key_path_application_expr,
+  int base: @expr_or_none ref,
+  int key_path: @expr_or_none ref
+);
+
+key_path_dot_exprs(  //dir=expr
+  unique int id: @key_path_dot_expr
+);
+
+key_path_exprs(  //dir=expr
+  unique int id: @key_path_expr
+);
+
+#keyset[id]
+key_path_expr_roots(  //dir=expr
+  int id: @key_path_expr ref,
+  int root: @type_repr_or_none ref
+);
+
+#keyset[id]
+key_path_expr_parsed_paths(  //dir=expr
+  int id: @key_path_expr ref,
+  int parsed_path: @expr_or_none ref
+);
+
+lazy_initializer_exprs(  //dir=expr
+  unique int id: @lazy_initializer_expr,
+  int sub_expr: @expr_or_none ref
+);
+
+@literal_expr =
+  @builtin_literal_expr
+| @interpolated_string_literal_expr
+| @nil_literal_expr
+| @object_literal_expr
+| @regex_literal_expr
+;
+
+@lookup_expr =
+  @dynamic_lookup_expr
+| @member_ref_expr
+| @subscript_expr
+;
+
+#keyset[id]
+lookup_exprs(  //dir=expr
+  int id: @lookup_expr ref,
+  int base: @expr_or_none ref
+);
+
+#keyset[id]
+lookup_expr_members(  //dir=expr
+  int id: @lookup_expr ref,
+  int member: @decl_or_none ref
+);
+
+make_temporarily_escapable_exprs(  //dir=expr
+  unique int id: @make_temporarily_escapable_expr,
+  int escaping_closure: @opaque_value_expr_or_none ref,
+  int nonescaping_closure: @expr_or_none ref,
+  int sub_expr: @expr_or_none ref
+);
+
+obj_c_selector_exprs(  //dir=expr
+  unique int id: @obj_c_selector_expr,
+  int sub_expr: @expr_or_none ref,
+  int method: @abstract_function_decl_or_none ref
+);
+
+one_way_exprs(  //dir=expr
+  unique int id: @one_way_expr,
+  int sub_expr: @expr_or_none ref
+);
+
+opaque_value_exprs(  //dir=expr
+  unique int id: @opaque_value_expr
+);
+
+open_existential_exprs(  //dir=expr
+  unique int id: @open_existential_expr,
+  int sub_expr: @expr_or_none ref,
+  int existential: @expr_or_none ref,
+  int opaque_expr: @opaque_value_expr_or_none ref
+);
+
+optional_evaluation_exprs(  //dir=expr
+  unique int id: @optional_evaluation_expr,
+  int sub_expr: @expr_or_none ref
+);
+
+other_constructor_decl_ref_exprs(  //dir=expr
+  unique int id: @other_constructor_decl_ref_expr,
+  int constructor_decl: @constructor_decl_or_none ref
+);
+
+overloaded_decl_ref_exprs(  //dir=expr
+  unique int id: @overloaded_decl_ref_expr
+);
+
+#keyset[id, index]
+overloaded_decl_ref_expr_possible_declarations(  //dir=expr
+  int id: @overloaded_decl_ref_expr ref,
+  int index: int ref,
+  int possible_declaration: @value_decl_or_none ref
+);
+
+property_wrapper_value_placeholder_exprs(  //dir=expr
+  unique int id: @property_wrapper_value_placeholder_expr,
+  int placeholder: @opaque_value_expr_or_none ref
+);
+
+#keyset[id]
+property_wrapper_value_placeholder_expr_wrapped_values(  //dir=expr
+  int id: @property_wrapper_value_placeholder_expr ref,
+  int wrapped_value: @expr_or_none ref
+);
+
+rebind_self_in_constructor_exprs(  //dir=expr
+  unique int id: @rebind_self_in_constructor_expr,
+  int sub_expr: @expr_or_none ref,
+  int self: @var_decl_or_none ref
+);
+
+sequence_exprs(  //dir=expr
+  unique int id: @sequence_expr
+);
+
+#keyset[id, index]
+sequence_expr_elements(  //dir=expr
+  int id: @sequence_expr ref,
+  int index: int ref,
+  int element: @expr_or_none ref
+);
+
+super_ref_exprs(  //dir=expr
+  unique int id: @super_ref_expr,
+  int self: @var_decl_or_none ref
+);
+
+tap_exprs(  //dir=expr
+  unique int id: @tap_expr,
+  int body: @brace_stmt_or_none ref,
+  int var: @var_decl_or_none ref
+);
+
+#keyset[id]
+tap_expr_sub_exprs(  //dir=expr
+  int id: @tap_expr ref,
+  int sub_expr: @expr_or_none ref
+);
+
+tuple_element_exprs(  //dir=expr
+  unique int id: @tuple_element_expr,
+  int sub_expr: @expr_or_none ref,
+  int index: int ref
+);
+
+tuple_exprs(  //dir=expr
+  unique int id: @tuple_expr
+);
+
+#keyset[id, index]
+tuple_expr_elements(  //dir=expr
+  int id: @tuple_expr ref,
+  int index: int ref,
+  int element: @expr_or_none ref
+);
+
+type_exprs(  //dir=expr
+  unique int id: @type_expr
+);
+
+#keyset[id]
+type_expr_type_reprs(  //dir=expr
+  int id: @type_expr ref,
+  int type_repr: @type_repr_or_none ref
+);
+
+unresolved_decl_ref_exprs(  //dir=expr
+  unique int id: @unresolved_decl_ref_expr
+);
+
+#keyset[id]
+unresolved_decl_ref_expr_names(  //dir=expr
+  int id: @unresolved_decl_ref_expr ref,
+  string name: string ref
+);
+
+unresolved_dot_exprs(  //dir=expr
+  unique int id: @unresolved_dot_expr,
+  int base: @expr_or_none ref,
+  string name: string ref
+);
+
+unresolved_member_exprs(  //dir=expr
+  unique int id: @unresolved_member_expr,
+  string name: string ref
+);
+
+unresolved_pattern_exprs(  //dir=expr
+  unique int id: @unresolved_pattern_expr,
+  int sub_pattern: @pattern_or_none ref
+);
+
+unresolved_specialize_exprs(  //dir=expr
+  unique int id: @unresolved_specialize_expr,
+  int sub_expr: @expr_or_none ref
+);
+
+vararg_expansion_exprs(  //dir=expr
+  unique int id: @vararg_expansion_expr,
+  int sub_expr: @expr_or_none ref
+);
+
+any_hashable_erasure_exprs(  //dir=expr
+  unique int id: @any_hashable_erasure_expr
+);
+
+archetype_to_super_exprs(  //dir=expr
+  unique int id: @archetype_to_super_expr
+);
+
+array_exprs(  //dir=expr
+  unique int id: @array_expr
+);
+
+#keyset[id, index]
+array_expr_elements(  //dir=expr
+  int id: @array_expr ref,
+  int index: int ref,
+  int element: @expr_or_none ref
+);
+
+array_to_pointer_exprs(  //dir=expr
+  unique int id: @array_to_pointer_expr
+);
+
+auto_closure_exprs(  //dir=expr
+  unique int id: @auto_closure_expr
+);
+
+await_exprs(  //dir=expr
+  unique int id: @await_expr
+);
+
+binary_exprs(  //dir=expr
+  unique int id: @binary_expr
+);
+
+bridge_from_obj_c_exprs(  //dir=expr
+  unique int id: @bridge_from_obj_c_expr
+);
+
+bridge_to_obj_c_exprs(  //dir=expr
+  unique int id: @bridge_to_obj_c_expr
+);
+
+@builtin_literal_expr =
+  @boolean_literal_expr
+| @magic_identifier_literal_expr
+| @number_literal_expr
+| @string_literal_expr
+;
+
+call_exprs(  //dir=expr
+  unique int id: @call_expr
+);
+
+@checked_cast_expr =
+  @conditional_checked_cast_expr
+| @forced_checked_cast_expr
+| @is_expr
+;
+
+class_metatype_to_object_exprs(  //dir=expr
+  unique int id: @class_metatype_to_object_expr
+);
+
+closure_exprs(  //dir=expr
+  unique int id: @closure_expr
+);
+
+coerce_exprs(  //dir=expr
+  unique int id: @coerce_expr
+);
+
+collection_upcast_conversion_exprs(  //dir=expr
+  unique int id: @collection_upcast_conversion_expr
+);
+
+conditional_bridge_from_obj_c_exprs(  //dir=expr
+  unique int id: @conditional_bridge_from_obj_c_expr
+);
+
+covariant_function_conversion_exprs(  //dir=expr
+  unique int id: @covariant_function_conversion_expr
+);
+
+covariant_return_conversion_exprs(  //dir=expr
+  unique int id: @covariant_return_conversion_expr
+);
+
+derived_to_base_exprs(  //dir=expr
+  unique int id: @derived_to_base_expr
+);
+
+destructure_tuple_exprs(  //dir=expr
+  unique int id: @destructure_tuple_expr
+);
+
+dictionary_exprs(  //dir=expr
+  unique int id: @dictionary_expr
+);
+
+#keyset[id, index]
+dictionary_expr_elements(  //dir=expr
+  int id: @dictionary_expr ref,
+  int index: int ref,
+  int element: @expr_or_none ref
+);
+
+differentiable_function_exprs(  //dir=expr
+  unique int id: @differentiable_function_expr
+);
+
+differentiable_function_extract_original_exprs(  //dir=expr
+  unique int id: @differentiable_function_extract_original_expr
+);
+
+dot_self_exprs(  //dir=expr
+  unique int id: @dot_self_expr
+);
+
+@dynamic_lookup_expr =
+  @dynamic_member_ref_expr
+| @dynamic_subscript_expr
+;
+
+erasure_exprs(  //dir=expr
+  unique int id: @erasure_expr
+);
+
+existential_metatype_to_object_exprs(  //dir=expr
+  unique int id: @existential_metatype_to_object_expr
+);
+
+force_try_exprs(  //dir=expr
+  unique int id: @force_try_expr
+);
+
+foreign_object_conversion_exprs(  //dir=expr
+  unique int id: @foreign_object_conversion_expr
+);
+
+function_conversion_exprs(  //dir=expr
+  unique int id: @function_conversion_expr
+);
+
+in_out_to_pointer_exprs(  //dir=expr
+  unique int id: @in_out_to_pointer_expr
+);
+
+inject_into_optional_exprs(  //dir=expr
+  unique int id: @inject_into_optional_expr
+);
+
+interpolated_string_literal_exprs(  //dir=expr
+  unique int id: @interpolated_string_literal_expr
+);
+
+#keyset[id]
+interpolated_string_literal_expr_interpolation_exprs(  //dir=expr
+  int id: @interpolated_string_literal_expr ref,
+  int interpolation_expr: @opaque_value_expr_or_none ref
+);
+
+#keyset[id]
+interpolated_string_literal_expr_interpolation_count_exprs(  //dir=expr
+  int id: @interpolated_string_literal_expr ref,
+  int interpolation_count_expr: @expr_or_none ref
+);
+
+#keyset[id]
+interpolated_string_literal_expr_literal_capacity_exprs(  //dir=expr
+  int id: @interpolated_string_literal_expr ref,
+  int literal_capacity_expr: @expr_or_none ref
+);
+
+#keyset[id]
+interpolated_string_literal_expr_appending_exprs(  //dir=expr
+  int id: @interpolated_string_literal_expr ref,
+  int appending_expr: @tap_expr_or_none ref
+);
+
+linear_function_exprs(  //dir=expr
+  unique int id: @linear_function_expr
+);
+
+linear_function_extract_original_exprs(  //dir=expr
+  unique int id: @linear_function_extract_original_expr
+);
+
+linear_to_differentiable_function_exprs(  //dir=expr
+  unique int id: @linear_to_differentiable_function_expr
+);
+
+load_exprs(  //dir=expr
+  unique int id: @load_expr
+);
+
+member_ref_exprs(  //dir=expr
+  unique int id: @member_ref_expr
+);
+
+#keyset[id]
+member_ref_expr_has_direct_to_storage_semantics(  //dir=expr
+  int id: @member_ref_expr ref
+);
+
+#keyset[id]
+member_ref_expr_has_direct_to_implementation_semantics(  //dir=expr
+  int id: @member_ref_expr ref
+);
+
+#keyset[id]
+member_ref_expr_has_ordinary_semantics(  //dir=expr
+  int id: @member_ref_expr ref
+);
+
+metatype_conversion_exprs(  //dir=expr
+  unique int id: @metatype_conversion_expr
+);
+
+nil_literal_exprs(  //dir=expr
+  unique int id: @nil_literal_expr
+);
+
+object_literal_exprs(  //dir=expr
+  unique int id: @object_literal_expr,
+  int kind: int ref
+);
+
+#keyset[id, index]
+object_literal_expr_arguments(  //dir=expr
+  int id: @object_literal_expr ref,
+  int index: int ref,
+  int argument: @argument_or_none ref
+);
+
+optional_try_exprs(  //dir=expr
+  unique int id: @optional_try_expr
+);
+
+paren_exprs(  //dir=expr
+  unique int id: @paren_expr
+);
+
+pointer_to_pointer_exprs(  //dir=expr
+  unique int id: @pointer_to_pointer_expr
+);
+
+postfix_unary_exprs(  //dir=expr
+  unique int id: @postfix_unary_expr
+);
+
+prefix_unary_exprs(  //dir=expr
+  unique int id: @prefix_unary_expr
+);
+
+protocol_metatype_to_object_exprs(  //dir=expr
+  unique int id: @protocol_metatype_to_object_expr
+);
+
+regex_literal_exprs(  //dir=expr
+  unique int id: @regex_literal_expr
+);
+
+@self_apply_expr =
+  @constructor_ref_call_expr
+| @dot_syntax_call_expr
+;
+
+#keyset[id]
+self_apply_exprs(  //dir=expr
+  int id: @self_apply_expr ref,
+  int base: @expr_or_none ref
+);
+
+string_to_pointer_exprs(  //dir=expr
+  unique int id: @string_to_pointer_expr
+);
+
+subscript_exprs(  //dir=expr
+  unique int id: @subscript_expr
+);
+
+#keyset[id, index]
+subscript_expr_arguments(  //dir=expr
+  int id: @subscript_expr ref,
+  int index: int ref,
+  int argument: @argument_or_none ref
+);
+
+#keyset[id]
+subscript_expr_has_direct_to_storage_semantics(  //dir=expr
+  int id: @subscript_expr ref
+);
+
+#keyset[id]
+subscript_expr_has_direct_to_implementation_semantics(  //dir=expr
+  int id: @subscript_expr ref
+);
+
+#keyset[id]
+subscript_expr_has_ordinary_semantics(  //dir=expr
+  int id: @subscript_expr ref
+);
+
+try_exprs(  //dir=expr
+  unique int id: @try_expr
+);
+
+underlying_to_opaque_exprs(  //dir=expr
+  unique int id: @underlying_to_opaque_expr
+);
+
+unevaluated_instance_exprs(  //dir=expr
+  unique int id: @unevaluated_instance_expr
+);
+
+unresolved_member_chain_result_exprs(  //dir=expr
+  unique int id: @unresolved_member_chain_result_expr
+);
+
+unresolved_type_conversion_exprs(  //dir=expr
+  unique int id: @unresolved_type_conversion_expr
+);
+
+boolean_literal_exprs(  //dir=expr
+  unique int id: @boolean_literal_expr,
+  boolean value: boolean ref
+);
+
+conditional_checked_cast_exprs(  //dir=expr
+  unique int id: @conditional_checked_cast_expr
+);
+
+constructor_ref_call_exprs(  //dir=expr
+  unique int id: @constructor_ref_call_expr
+);
+
+dot_syntax_call_exprs(  //dir=expr
+  unique int id: @dot_syntax_call_expr
+);
+
+dynamic_member_ref_exprs(  //dir=expr
+  unique int id: @dynamic_member_ref_expr
+);
+
+dynamic_subscript_exprs(  //dir=expr
+  unique int id: @dynamic_subscript_expr
+);
+
+forced_checked_cast_exprs(  //dir=expr
+  unique int id: @forced_checked_cast_expr
+);
+
+is_exprs(  //dir=expr
+  unique int id: @is_expr
+);
+
+magic_identifier_literal_exprs(  //dir=expr
+  unique int id: @magic_identifier_literal_expr,
+  string kind: string ref
+);
+
+@number_literal_expr =
+  @float_literal_expr
+| @integer_literal_expr
+;
+
+string_literal_exprs(  //dir=expr
+  unique int id: @string_literal_expr,
+  string value: string ref
+);
+
+float_literal_exprs(  //dir=expr
+  unique int id: @float_literal_expr,
+  string string_value: string ref
+);
+
+integer_literal_exprs(  //dir=expr
+  unique int id: @integer_literal_expr,
+  string string_value: string ref
+);
+
+@pattern =
+  @any_pattern
+| @binding_pattern
+| @bool_pattern
+| @enum_element_pattern
+| @expr_pattern
+| @is_pattern
+| @named_pattern
+| @optional_some_pattern
+| @paren_pattern
+| @tuple_pattern
+| @typed_pattern
+;
+
+any_patterns(  //dir=pattern
+  unique int id: @any_pattern
+);
+
+binding_patterns(  //dir=pattern
+  unique int id: @binding_pattern,
+  int sub_pattern: @pattern_or_none ref
+);
+
+bool_patterns(  //dir=pattern
+  unique int id: @bool_pattern,
+  boolean value: boolean ref
+);
+
+enum_element_patterns(  //dir=pattern
+  unique int id: @enum_element_pattern,
+  int element: @enum_element_decl_or_none ref
+);
+
+#keyset[id]
+enum_element_pattern_sub_patterns(  //dir=pattern
+  int id: @enum_element_pattern ref,
+  int sub_pattern: @pattern_or_none ref
+);
+
+expr_patterns(  //dir=pattern
+  unique int id: @expr_pattern,
+  int sub_expr: @expr_or_none ref
+);
+
+is_patterns(  //dir=pattern
+  unique int id: @is_pattern
+);
+
+#keyset[id]
+is_pattern_cast_type_reprs(  //dir=pattern
+  int id: @is_pattern ref,
+  int cast_type_repr: @type_repr_or_none ref
+);
+
+#keyset[id]
+is_pattern_sub_patterns(  //dir=pattern
+  int id: @is_pattern ref,
+  int sub_pattern: @pattern_or_none ref
+);
+
+named_patterns(  //dir=pattern
+  unique int id: @named_pattern,
+  string name: string ref
+);
+
+optional_some_patterns(  //dir=pattern
+  unique int id: @optional_some_pattern,
+  int sub_pattern: @pattern_or_none ref
+);
+
+paren_patterns(  //dir=pattern
+  unique int id: @paren_pattern,
+  int sub_pattern: @pattern_or_none ref
+);
+
+tuple_patterns(  //dir=pattern
+  unique int id: @tuple_pattern
+);
+
+#keyset[id, index]
+tuple_pattern_elements(  //dir=pattern
+  int id: @tuple_pattern ref,
+  int index: int ref,
+  int element: @pattern_or_none ref
+);
+
+typed_patterns(  //dir=pattern
+  unique int id: @typed_pattern,
+  int sub_pattern: @pattern_or_none ref
+);
+
+#keyset[id]
+typed_pattern_type_reprs(  //dir=pattern
+  int id: @typed_pattern ref,
+  int type_repr: @type_repr_or_none ref
+);
+
+case_label_items(  //dir=stmt
+  unique int id: @case_label_item,
+  int pattern: @pattern_or_none ref
+);
+
+#keyset[id]
+case_label_item_guards(  //dir=stmt
+  int id: @case_label_item ref,
+  int guard: @expr_or_none ref
+);
+
+condition_elements(  //dir=stmt
+  unique int id: @condition_element
+);
+
+#keyset[id]
+condition_element_booleans(  //dir=stmt
+  int id: @condition_element ref,
+  int boolean_: @expr_or_none ref
+);
+
+#keyset[id]
+condition_element_patterns(  //dir=stmt
+  int id: @condition_element ref,
+  int pattern: @pattern_or_none ref
+);
+
+#keyset[id]
+condition_element_initializers(  //dir=stmt
+  int id: @condition_element ref,
+  int initializer: @expr_or_none ref
+);
+
+@stmt =
+  @brace_stmt
+| @break_stmt
+| @case_stmt
+| @continue_stmt
+| @defer_stmt
+| @fail_stmt
+| @fallthrough_stmt
+| @labeled_stmt
+| @pound_assert_stmt
+| @return_stmt
+| @throw_stmt
+| @yield_stmt
+;
+
+stmt_conditions(  //dir=stmt
+  unique int id: @stmt_condition
+);
+
+#keyset[id, index]
+stmt_condition_elements(  //dir=stmt
+  int id: @stmt_condition ref,
+  int index: int ref,
+  int element: @condition_element_or_none ref
+);
+
+brace_stmts(  //dir=stmt
+  unique int id: @brace_stmt
+);
+
+#keyset[id, index]
+brace_stmt_elements(  //dir=stmt
+  int id: @brace_stmt ref,
+  int index: int ref,
+  int element: @ast_node_or_none ref
+);
+
+break_stmts(  //dir=stmt
+  unique int id: @break_stmt
+);
+
+#keyset[id]
+break_stmt_target_names(  //dir=stmt
+  int id: @break_stmt ref,
+  string target_name: string ref
+);
+
+#keyset[id]
+break_stmt_targets(  //dir=stmt
+  int id: @break_stmt ref,
+  int target: @stmt_or_none ref
+);
+
+case_stmts(  //dir=stmt
+  unique int id: @case_stmt,
+  int body: @stmt_or_none ref
+);
+
+#keyset[id, index]
+case_stmt_labels(  //dir=stmt
+  int id: @case_stmt ref,
+  int index: int ref,
+  int label: @case_label_item_or_none ref
+);
+
+#keyset[id, index]
+case_stmt_variables(  //dir=stmt
+  int id: @case_stmt ref,
+  int index: int ref,
+  int variable: @var_decl_or_none ref
+);
+
+continue_stmts(  //dir=stmt
+  unique int id: @continue_stmt
+);
+
+#keyset[id]
+continue_stmt_target_names(  //dir=stmt
+  int id: @continue_stmt ref,
+  string target_name: string ref
+);
+
+#keyset[id]
+continue_stmt_targets(  //dir=stmt
+  int id: @continue_stmt ref,
+  int target: @stmt_or_none ref
+);
+
+defer_stmts(  //dir=stmt
+  unique int id: @defer_stmt,
+  int body: @brace_stmt_or_none ref
+);
+
+fail_stmts(  //dir=stmt
+  unique int id: @fail_stmt
+);
+
+fallthrough_stmts(  //dir=stmt
+  unique int id: @fallthrough_stmt,
+  int fallthrough_source: @case_stmt_or_none ref,
+  int fallthrough_dest: @case_stmt_or_none ref
+);
+
+@labeled_stmt =
+  @do_catch_stmt
+| @do_stmt
+| @for_each_stmt
+| @labeled_conditional_stmt
+| @repeat_while_stmt
+| @switch_stmt
+;
+
+#keyset[id]
+labeled_stmt_labels(  //dir=stmt
+  int id: @labeled_stmt ref,
+  string label: string ref
+);
+
+pound_assert_stmts(  //dir=stmt
+  unique int id: @pound_assert_stmt,
+  int condition: @expr_or_none ref,
+  string message: string ref
+);
+
+return_stmts(  //dir=stmt
+  unique int id: @return_stmt
+);
+
+#keyset[id]
+return_stmt_results(  //dir=stmt
+  int id: @return_stmt ref,
+  int result: @expr_or_none ref
+);
+
+throw_stmts(  //dir=stmt
+  unique int id: @throw_stmt,
+  int sub_expr: @expr_or_none ref
+);
+
+yield_stmts(  //dir=stmt
+  unique int id: @yield_stmt
+);
+
+#keyset[id, index]
+yield_stmt_results(  //dir=stmt
+  int id: @yield_stmt ref,
+  int index: int ref,
+  int result: @expr_or_none ref
+);
+
+do_catch_stmts(  //dir=stmt
+  unique int id: @do_catch_stmt,
+  int body: @stmt_or_none ref
+);
+
+#keyset[id, index]
+do_catch_stmt_catches(  //dir=stmt
+  int id: @do_catch_stmt ref,
+  int index: int ref,
+  int catch: @case_stmt_or_none ref
+);
+
+do_stmts(  //dir=stmt
+  unique int id: @do_stmt,
+  int body: @brace_stmt_or_none ref
+);
+
+for_each_stmts(  //dir=stmt
+  unique int id: @for_each_stmt,
+  int pattern: @pattern_or_none ref,
+  int sequence: @expr_or_none ref,
+  int body: @brace_stmt_or_none ref
+);
+
+#keyset[id]
+for_each_stmt_wheres(  //dir=stmt
+  int id: @for_each_stmt ref,
+  int where: @expr_or_none ref
+);
+
+@labeled_conditional_stmt =
+  @guard_stmt
+| @if_stmt
+| @while_stmt
+;
+
+#keyset[id]
+labeled_conditional_stmts(  //dir=stmt
+  int id: @labeled_conditional_stmt ref,
+  int condition: @stmt_condition_or_none ref
+);
+
+repeat_while_stmts(  //dir=stmt
+  unique int id: @repeat_while_stmt,
+  int condition: @expr_or_none ref,
+  int body: @stmt_or_none ref
+);
+
+switch_stmts(  //dir=stmt
+  unique int id: @switch_stmt,
+  int expr: @expr_or_none ref
+);
+
+#keyset[id, index]
+switch_stmt_cases(  //dir=stmt
+  int id: @switch_stmt ref,
+  int index: int ref,
+  int case_: @case_stmt_or_none ref
+);
+
+guard_stmts(  //dir=stmt
+  unique int id: @guard_stmt,
+  int body: @brace_stmt_or_none ref
+);
+
+if_stmts(  //dir=stmt
+  unique int id: @if_stmt,
+  int then: @stmt_or_none ref
+);
+
+#keyset[id]
+if_stmt_elses(  //dir=stmt
+  int id: @if_stmt ref,
+  int else: @stmt_or_none ref
+);
+
+while_stmts(  //dir=stmt
+  unique int id: @while_stmt,
+  int body: @stmt_or_none ref
+);
+
+@type =
+  @any_function_type
+| @any_generic_type
+| @any_metatype_type
+| @builtin_type
+| @dependent_member_type
+| @dynamic_self_type
+| @error_type
+| @existential_type
+| @in_out_type
+| @l_value_type
+| @module_type
+| @parameterized_protocol_type
+| @protocol_composition_type
+| @reference_storage_type
+| @substitutable_type
+| @sugar_type
+| @tuple_type
+| @unresolved_type
+;
+
+#keyset[id]
+types(  //dir=type
+  int id: @type ref,
+  string name: string ref,
+  int canonical_type: @type_or_none ref
+);
+
+type_reprs(  //dir=type
+  unique int id: @type_repr,
+  int type_: @type_or_none ref
+);
+
+@any_function_type =
+  @function_type
+| @generic_function_type
+;
+
+#keyset[id]
+any_function_types(  //dir=type
+  int id: @any_function_type ref,
+  int result: @type_or_none ref
+);
+
+#keyset[id, index]
+any_function_type_param_types(  //dir=type
+  int id: @any_function_type ref,
+  int index: int ref,
+  int param_type: @type_or_none ref
+);
+
+#keyset[id, index]
+any_function_type_param_labels(  //dir=type
+  int id: @any_function_type ref,
+  int index: int ref,
+  string param_label: string ref
+);
+
+#keyset[id]
+any_function_type_is_throwing(  //dir=type
+  int id: @any_function_type ref
+);
+
+#keyset[id]
+any_function_type_is_async(  //dir=type
+  int id: @any_function_type ref
+);
+
+@any_generic_type =
+  @nominal_or_bound_generic_nominal_type
+| @unbound_generic_type
+;
+
+#keyset[id]
+any_generic_types(  //dir=type
+  int id: @any_generic_type ref,
+  int declaration: @decl_or_none ref
+);
+
+#keyset[id]
+any_generic_type_parents(  //dir=type
+  int id: @any_generic_type ref,
+  int parent: @type_or_none ref
+);
+
+@any_metatype_type =
+  @existential_metatype_type
+| @metatype_type
+;
+
+@builtin_type =
+  @any_builtin_integer_type
+| @builtin_bridge_object_type
+| @builtin_default_actor_storage_type
+| @builtin_executor_type
+| @builtin_float_type
+| @builtin_job_type
+| @builtin_native_object_type
+| @builtin_raw_pointer_type
+| @builtin_raw_unsafe_continuation_type
+| @builtin_unsafe_value_buffer_type
+| @builtin_vector_type
+;
+
+dependent_member_types(  //dir=type
+  unique int id: @dependent_member_type,
+  int base_type: @type_or_none ref,
+  int associated_type_decl: @associated_type_decl_or_none ref
+);
+
+dynamic_self_types(  //dir=type
+  unique int id: @dynamic_self_type,
+  int static_self_type: @type_or_none ref
+);
+
+error_types(  //dir=type
+  unique int id: @error_type
+);
+
+existential_types(  //dir=type
+  unique int id: @existential_type,
+  int constraint: @type_or_none ref
+);
+
+in_out_types(  //dir=type
+  unique int id: @in_out_type,
+  int object_type: @type_or_none ref
+);
+
+l_value_types(  //dir=type
+  unique int id: @l_value_type,
+  int object_type: @type_or_none ref
+);
+
+module_types(  //dir=type
+  unique int id: @module_type,
+  int module: @module_decl_or_none ref
+);
+
+parameterized_protocol_types(  //dir=type
+  unique int id: @parameterized_protocol_type,
+  int base: @protocol_type_or_none ref
+);
+
+#keyset[id, index]
+parameterized_protocol_type_args(  //dir=type
+  int id: @parameterized_protocol_type ref,
+  int index: int ref,
+  int arg: @type_or_none ref
+);
+
+protocol_composition_types(  //dir=type
+  unique int id: @protocol_composition_type
+);
+
+#keyset[id, index]
+protocol_composition_type_members(  //dir=type
+  int id: @protocol_composition_type ref,
+  int index: int ref,
+  int member: @type_or_none ref
+);
+
+@reference_storage_type =
+  @unmanaged_storage_type
+| @unowned_storage_type
+| @weak_storage_type
+;
+
+#keyset[id]
+reference_storage_types(  //dir=type
+  int id: @reference_storage_type ref,
+  int referent_type: @type_or_none ref
+);
+
+@substitutable_type =
+  @archetype_type
+| @generic_type_param_type
+;
+
+@sugar_type =
+  @paren_type
+| @syntax_sugar_type
+| @type_alias_type
+;
+
+tuple_types(  //dir=type
+  unique int id: @tuple_type
+);
+
+#keyset[id, index]
+tuple_type_types(  //dir=type
+  int id: @tuple_type ref,
+  int index: int ref,
+  int type_: @type_or_none ref
+);
+
+#keyset[id, index]
+tuple_type_names(  //dir=type
+  int id: @tuple_type ref,
+  int index: int ref,
+  string name: string ref
+);
+
+unresolved_types(  //dir=type
+  unique int id: @unresolved_type
+);
+
+@any_builtin_integer_type =
+  @builtin_integer_literal_type
+| @builtin_integer_type
+;
+
+@archetype_type =
+  @opaque_type_archetype_type
+| @opened_archetype_type
+| @primary_archetype_type
+;
+
+#keyset[id]
+archetype_types(  //dir=type
+  int id: @archetype_type ref,
+  int interface_type: @type_or_none ref
+);
+
+#keyset[id]
+archetype_type_superclasses(  //dir=type
+  int id: @archetype_type ref,
+  int superclass: @type_or_none ref
+);
+
+#keyset[id, index]
+archetype_type_protocols(  //dir=type
+  int id: @archetype_type ref,
+  int index: int ref,
+  int protocol: @protocol_decl_or_none ref
+);
+
+builtin_bridge_object_types(  //dir=type
+  unique int id: @builtin_bridge_object_type
+);
+
+builtin_default_actor_storage_types(  //dir=type
+  unique int id: @builtin_default_actor_storage_type
+);
+
+builtin_executor_types(  //dir=type
+  unique int id: @builtin_executor_type
+);
+
+builtin_float_types(  //dir=type
+  unique int id: @builtin_float_type
+);
+
+builtin_job_types(  //dir=type
+  unique int id: @builtin_job_type
+);
+
+builtin_native_object_types(  //dir=type
+  unique int id: @builtin_native_object_type
+);
+
+builtin_raw_pointer_types(  //dir=type
+  unique int id: @builtin_raw_pointer_type
+);
+
+builtin_raw_unsafe_continuation_types(  //dir=type
+  unique int id: @builtin_raw_unsafe_continuation_type
+);
+
+builtin_unsafe_value_buffer_types(  //dir=type
+  unique int id: @builtin_unsafe_value_buffer_type
+);
+
+builtin_vector_types(  //dir=type
+  unique int id: @builtin_vector_type
+);
+
+existential_metatype_types(  //dir=type
+  unique int id: @existential_metatype_type
+);
+
+function_types(  //dir=type
+  unique int id: @function_type
+);
+
+generic_function_types(  //dir=type
+  unique int id: @generic_function_type
+);
+
+#keyset[id, index]
+generic_function_type_generic_params(  //dir=type
+  int id: @generic_function_type ref,
+  int index: int ref,
+  int generic_param: @generic_type_param_type_or_none ref
+);
+
+generic_type_param_types(  //dir=type
+  unique int id: @generic_type_param_type
+);
+
+metatype_types(  //dir=type
+  unique int id: @metatype_type
+);
+
+@nominal_or_bound_generic_nominal_type =
+  @bound_generic_type
+| @nominal_type
+;
+
+paren_types(  //dir=type
+  unique int id: @paren_type,
+  int type_: @type_or_none ref
+);
+
+@syntax_sugar_type =
+  @dictionary_type
+| @unary_syntax_sugar_type
+;
+
+type_alias_types(  //dir=type
+  unique int id: @type_alias_type,
+  int decl: @type_alias_decl_or_none ref
+);
+
+unbound_generic_types(  //dir=type
+  unique int id: @unbound_generic_type
+);
+
+unmanaged_storage_types(  //dir=type
+  unique int id: @unmanaged_storage_type
+);
+
+unowned_storage_types(  //dir=type
+  unique int id: @unowned_storage_type
+);
+
+weak_storage_types(  //dir=type
+  unique int id: @weak_storage_type
+);
+
+@bound_generic_type =
+  @bound_generic_class_type
+| @bound_generic_enum_type
+| @bound_generic_struct_type
+;
+
+#keyset[id, index]
+bound_generic_type_arg_types(  //dir=type
+  int id: @bound_generic_type ref,
+  int index: int ref,
+  int arg_type: @type_or_none ref
+);
+
+builtin_integer_literal_types(  //dir=type
+  unique int id: @builtin_integer_literal_type
+);
+
+builtin_integer_types(  //dir=type
+  unique int id: @builtin_integer_type
+);
+
+#keyset[id]
+builtin_integer_type_widths(  //dir=type
+  int id: @builtin_integer_type ref,
+  int width: int ref
+);
+
+dictionary_types(  //dir=type
+  unique int id: @dictionary_type,
+  int key_type: @type_or_none ref,
+  int value_type: @type_or_none ref
+);
+
+@nominal_type =
+  @class_type
+| @enum_type
+| @protocol_type
+| @struct_type
+;
+
+opaque_type_archetype_types(  //dir=type
+  unique int id: @opaque_type_archetype_type,
+  int declaration: @opaque_type_decl_or_none ref
+);
+
+opened_archetype_types(  //dir=type
+  unique int id: @opened_archetype_type
+);
+
+primary_archetype_types(  //dir=type
+  unique int id: @primary_archetype_type
+);
+
+@unary_syntax_sugar_type =
+  @array_slice_type
+| @optional_type
+| @variadic_sequence_type
+;
+
+#keyset[id]
+unary_syntax_sugar_types(  //dir=type
+  int id: @unary_syntax_sugar_type ref,
+  int base_type: @type_or_none ref
+);
+
+array_slice_types(  //dir=type
+  unique int id: @array_slice_type
+);
+
+bound_generic_class_types(  //dir=type
+  unique int id: @bound_generic_class_type
+);
+
+bound_generic_enum_types(  //dir=type
+  unique int id: @bound_generic_enum_type
+);
+
+bound_generic_struct_types(  //dir=type
+  unique int id: @bound_generic_struct_type
+);
+
+class_types(  //dir=type
+  unique int id: @class_type
+);
+
+enum_types(  //dir=type
+  unique int id: @enum_type
+);
+
+optional_types(  //dir=type
+  unique int id: @optional_type
+);
+
+protocol_types(  //dir=type
+  unique int id: @protocol_type
+);
+
+struct_types(  //dir=type
+  unique int id: @struct_type
+);
+
+variadic_sequence_types(  //dir=type
+  unique int id: @variadic_sequence_type
+);
+
+@abstract_function_decl_or_none =
+  @abstract_function_decl
+| @unspecified_element
+;
+
+@accessor_decl_or_none =
+  @accessor_decl
+| @unspecified_element
+;
+
+@argument_or_none =
+  @argument
+| @unspecified_element
+;
+
+@associated_type_decl_or_none =
+  @associated_type_decl
+| @unspecified_element
+;
+
+@ast_node_or_none =
+  @ast_node
+| @unspecified_element
+;
+
+@brace_stmt_or_none =
+  @brace_stmt
+| @unspecified_element
+;
+
+@case_label_item_or_none =
+  @case_label_item
+| @unspecified_element
+;
+
+@case_stmt_or_none =
+  @case_stmt
+| @unspecified_element
+;
+
+@closure_expr_or_none =
+  @closure_expr
+| @unspecified_element
+;
+
+@condition_element_or_none =
+  @condition_element
+| @unspecified_element
+;
+
+@constructor_decl_or_none =
+  @constructor_decl
+| @unspecified_element
+;
+
+@decl_or_none =
+  @decl
+| @unspecified_element
+;
+
+@enum_element_decl_or_none =
+  @enum_element_decl
+| @unspecified_element
+;
+
+@expr_or_none =
+  @expr
+| @unspecified_element
+;
+
+@file_or_none =
+  @file
+| @unspecified_element
+;
+
+@generic_type_param_decl_or_none =
+  @generic_type_param_decl
+| @unspecified_element
+;
+
+@generic_type_param_type_or_none =
+  @generic_type_param_type
+| @unspecified_element
+;
+
+@location_or_none =
+  @location
+| @unspecified_element
+;
+
+@module_decl_or_none =
+  @module_decl
+| @unspecified_element
+;
+
+@nominal_type_decl_or_none =
+  @nominal_type_decl
+| @unspecified_element
+;
+
+@opaque_type_decl_or_none =
+  @opaque_type_decl
+| @unspecified_element
+;
+
+@opaque_value_expr_or_none =
+  @opaque_value_expr
+| @unspecified_element
+;
+
+@param_decl_or_none =
+  @param_decl
+| @unspecified_element
+;
+
+@pattern_or_none =
+  @pattern
+| @unspecified_element
+;
+
+@pattern_binding_decl_or_none =
+  @pattern_binding_decl
+| @unspecified_element
+;
+
+@precedence_group_decl_or_none =
+  @precedence_group_decl
+| @unspecified_element
+;
+
+@protocol_decl_or_none =
+  @protocol_decl
+| @unspecified_element
+;
+
+@protocol_type_or_none =
+  @protocol_type
+| @unspecified_element
+;
+
+@stmt_or_none =
+  @stmt
+| @unspecified_element
+;
+
+@stmt_condition_or_none =
+  @stmt_condition
+| @unspecified_element
+;
+
+@string_literal_expr_or_none =
+  @string_literal_expr
+| @unspecified_element
+;
+
+@tap_expr_or_none =
+  @tap_expr
+| @unspecified_element
+;
+
+@type_or_none =
+  @type
+| @unspecified_element
+;
+
+@type_alias_decl_or_none =
+  @type_alias_decl
+| @unspecified_element
+;
+
+@type_repr_or_none =
+  @type_repr
+| @unspecified_element
+;
+
+@value_decl_or_none =
+  @unspecified_element
+| @value_decl
+;
+
+@var_decl_or_none =
+  @unspecified_element
+| @var_decl
+;
diff --git a/swift/ql/lib/upgrades/ceca289a0ff56bcc88f72ad78a8fbff1d850922f/upgrade.properties b/swift/ql/lib/upgrades/ceca289a0ff56bcc88f72ad78a8fbff1d850922f/upgrade.properties
new file mode 100644
index 00000000000..bb4b061ea2b
--- /dev/null
+++ b/swift/ql/lib/upgrades/ceca289a0ff56bcc88f72ad78a8fbff1d850922f/upgrade.properties
@@ -0,0 +1,5 @@
+description: Remove unfilled tables that were generated for actually synthesized QL types
+compatibility: full
+unknown_files.rel: delete
+unknown_locations: delete
+method_ref_exprs: delete

From 798b03f29dca3c4616a916068238c71a8d8e2ee9 Mon Sep 17 00:00:00 2001
From: Mauro Baluda <mbaluda@github.com>
Date: Wed, 16 Nov 2022 12:06:07 +0100
Subject: [PATCH 0376/1420] code generalization

Co-authored-by: Erik Krogh Kristensen <erik-krogh@github.com>
---
 javascript/ql/lib/semmle/javascript/frameworks/Hapi.qll | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/javascript/ql/lib/semmle/javascript/frameworks/Hapi.qll b/javascript/ql/lib/semmle/javascript/frameworks/Hapi.qll
index c791cd9e25d..150096a1bcf 100644
--- a/javascript/ql/lib/semmle/javascript/frameworks/Hapi.qll
+++ b/javascript/ql/lib/semmle/javascript/frameworks/Hapi.qll
@@ -235,7 +235,8 @@ module Hapi {
         this.getMethodName() = "route" and
         handler =
           this.getArgument(0)
-              .(DataFlow::ArrayLiteralNode)
+              .getALocalSource()
+              .(DataFlow::ArrayCreationNode)
               .getAnElement()
               .(DataFlow::ObjectLiteralNode)
               .getAPropertySource("handler")

From 8bf0bbb715526d388e3b3909201cc3f493eca20f Mon Sep 17 00:00:00 2001
From: Mauro Baluda <mbaluda@github.com>
Date: Wed, 16 Nov 2022 12:06:23 +0100
Subject: [PATCH 0377/1420] code generalization

Co-authored-by: Erik Krogh Kristensen <erik-krogh@github.com>
---
 javascript/ql/lib/semmle/javascript/frameworks/Hapi.qll | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/javascript/ql/lib/semmle/javascript/frameworks/Hapi.qll b/javascript/ql/lib/semmle/javascript/frameworks/Hapi.qll
index 150096a1bcf..46bbb624839 100644
--- a/javascript/ql/lib/semmle/javascript/frameworks/Hapi.qll
+++ b/javascript/ql/lib/semmle/javascript/frameworks/Hapi.qll
@@ -238,7 +238,7 @@ module Hapi {
               .getALocalSource()
               .(DataFlow::ArrayCreationNode)
               .getAnElement()
-              .(DataFlow::ObjectLiteralNode)
+              .getALocalSource()
               .getAPropertySource("handler")
               .getAFunctionValue()
       )

From de082260d85396e5dc1b537d2fc19d40e4adee05 Mon Sep 17 00:00:00 2001
From: erik-krogh <erik-krogh@github.com>
Date: Wed, 16 Nov 2022 12:48:25 +0100
Subject: [PATCH 0378/1420] QL: fixup `getQLDoc()`

---
 ql/ql/src/codeql_ql/ast/Ast.qll | 13 +++++++++++--
 1 file changed, 11 insertions(+), 2 deletions(-)

diff --git a/ql/ql/src/codeql_ql/ast/Ast.qll b/ql/ql/src/codeql_ql/ast/Ast.qll
index d6a5039a3c7..fd7e416f291 100644
--- a/ql/ql/src/codeql_ql/ast/Ast.qll
+++ b/ql/ql/src/codeql_ql/ast/Ast.qll
@@ -156,12 +156,15 @@ class TopLevel extends TTopLevel, AstNode {
   }
 
   QLDoc getQLDocFor(ModuleMember m) {
-    exists(int i | i > 0 and result = this.getMember(i) and m = this.getMember(i + 1))
+    exists(int i | result = this.getMember(i) and m = this.getMember(i + 1))
   }
 
   override string getAPrimaryQlClass() { result = "TopLevel" }
 
-  override QLDoc getQLDoc() { result = this.getMember(0) }
+  override QLDoc getQLDoc() {
+    result = this.getMember(0) and
+    result.getLocation().getStartLine() = 1 // this might not hold if there is a block comment above, and that's the point.
+  }
 }
 
 abstract class Comment extends AstNode, TComment {
@@ -536,6 +539,12 @@ class ClasslessPredicate extends TClasslessPredicate, Predicate, ModuleDeclarati
 
   /** Holds if this classless predicate is a signature predicate with no body. */
   predicate isSignature() { not exists(this.getBody()) }
+
+  override QLDoc getQLDoc() {
+    result = any(TopLevel m).getQLDocFor(this)
+    or
+    result = any(Module m).getQLDocFor(this)
+  }
 }
 
 /**

From f71359c81d18da5243ad1e90a1de14a7e8b8f7ce Mon Sep 17 00:00:00 2001
From: erik-krogh <erik-krogh@github.com>
Date: Wed, 16 Nov 2022 12:49:27 +0100
Subject: [PATCH 0379/1420] QL: detect toplevel block-comments that should be
 QLDoc

---
 ql/ql/src/queries/style/NonDocBlock.ql | 36 ++++++++++++++++++++------
 1 file changed, 28 insertions(+), 8 deletions(-)

diff --git a/ql/ql/src/queries/style/NonDocBlock.ql b/ql/ql/src/queries/style/NonDocBlock.ql
index 17d39eb9bdb..c81ed3c77db 100644
--- a/ql/ql/src/queries/style/NonDocBlock.ql
+++ b/ql/ql/src/queries/style/NonDocBlock.ql
@@ -30,23 +30,43 @@ int getLineAboveNodeThatCouldHaveDoc(File file) {
 pragma[noinline]
 BlockComment getACommentThatCouldBeQLDoc(File file) {
   file = result.getLocation().getFile() and
-  result.getLocation().getEndLine() = getLineAboveNodeThatCouldHaveDoc(file) and
   result.getLocation().getFile().getExtension() = "qll" and
-  not result.getContents().matches("/**%")
+  not result.getContents().matches("/**%") and
+  (
+    // above something that can be commented.
+    result.getLocation().getEndLine() = getLineAboveNodeThatCouldHaveDoc(file)
+    or
+    // toplevel in file.
+    result.getLocation().getStartLine() = 1 and
+    result.getLocation().getStartColumn() = 1
+  )
 }
 
 pragma[noinline]
-BlockComment getCommentAt(File file, int endLine) {
+BlockComment getCommentAtEnd(File file, int endLine) {
   result = getACommentThatCouldBeQLDoc(file) and
   result.getLocation().getEndLine() = endLine
 }
 
-from AstNode node, BlockComment comment
+pragma[noinline]
+BlockComment getCommentAtStart(File file, int startLine) {
+  result = getACommentThatCouldBeQLDoc(file) and
+  result.getLocation().getStartLine() = startLine
+}
+
+from AstNode node, BlockComment comment, string nodeDescrip
 where
-  canHaveQLDoc(node) and
+  (
+    canHaveQLDoc(node) and
+    comment = getCommentAtEnd(node.getLocation().getFile(), node.getLocation().getStartLine() - 1) and
+    nodeDescrip = "the below code"
+    or
+    node instanceof TopLevel and
+    comment = getCommentAtStart(node.getLocation().getFile(), 1) and
+    nodeDescrip = "the file"
+  ) and
   not exists(node.getQLDoc()) and
   not node.(ClassPredicate).isOverride() and // ignore override predicates
   not node.hasAnnotation("deprecated") and // ignore deprecated
-  not node.hasAnnotation("private") and // ignore private
-  comment = getCommentAt(node.getLocation().getFile(), node.getLocation().getStartLine() - 1)
-select comment, "Block comment could be QLDoc for $@.", node, "the below code"
+  not node.hasAnnotation("private") // ignore private
+select comment, "Block comment could be QLDoc for $@.", node, nodeDescrip

From f2222d32db6c90f809f0ab0fc3a0df60cd318b4b Mon Sep 17 00:00:00 2001
From: erik-krogh <erik-krogh@github.com>
Date: Wed, 16 Nov 2022 12:51:38 +0100
Subject: [PATCH 0380/1420] QL: add test

---
 ql/ql/test/queries/style/NonDocBlock/Foo.qll        | 13 +++++++++++++
 .../queries/style/NonDocBlock/NonDocBlock.expected  |  2 ++
 .../queries/style/NonDocBlock/NonDocBlock.qlref     |  1 +
 3 files changed, 16 insertions(+)
 create mode 100644 ql/ql/test/queries/style/NonDocBlock/Foo.qll
 create mode 100644 ql/ql/test/queries/style/NonDocBlock/NonDocBlock.expected
 create mode 100644 ql/ql/test/queries/style/NonDocBlock/NonDocBlock.qlref

diff --git a/ql/ql/test/queries/style/NonDocBlock/Foo.qll b/ql/ql/test/queries/style/NonDocBlock/Foo.qll
new file mode 100644
index 00000000000..238bc18ff9c
--- /dev/null
+++ b/ql/ql/test/queries/style/NonDocBlock/Foo.qll
@@ -0,0 +1,13 @@
+/*
+ * This should be QLDoc.
+ */
+
+/**
+ * this is fine
+ */
+predicate foo() { any() }
+
+/* Note: this is bad. */
+class Foo extends string {
+  Foo() { this = "FOo" }
+}
diff --git a/ql/ql/test/queries/style/NonDocBlock/NonDocBlock.expected b/ql/ql/test/queries/style/NonDocBlock/NonDocBlock.expected
new file mode 100644
index 00000000000..7bdbfd18d95
--- /dev/null
+++ b/ql/ql/test/queries/style/NonDocBlock/NonDocBlock.expected
@@ -0,0 +1,2 @@
+| Foo.qll:1:1:3:3 | BlockComment | Block comment could be QLDoc for $@. | Foo.qll:1:1:13:2 | TopLevel | the file |
+| Foo.qll:10:1:10:24 | BlockComment | Block comment could be QLDoc for $@. | Foo.qll:11:7:11:9 | Class Foo | the below code |
diff --git a/ql/ql/test/queries/style/NonDocBlock/NonDocBlock.qlref b/ql/ql/test/queries/style/NonDocBlock/NonDocBlock.qlref
new file mode 100644
index 00000000000..b6dbdf50604
--- /dev/null
+++ b/ql/ql/test/queries/style/NonDocBlock/NonDocBlock.qlref
@@ -0,0 +1 @@
+queries/style/NonDocBlock.ql
\ No newline at end of file

From 6fb014b34d8505c4043f21dc334ed25be9cd582c Mon Sep 17 00:00:00 2001
From: Arthur Baars <aibaars@github.com>
Date: Wed, 16 Nov 2022 13:09:47 +0100
Subject: [PATCH 0381/1420] "CodeQL False positive" -> "CodeQL false positive"

---
 .github/ISSUE_TEMPLATE/ql--false-positive.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/ISSUE_TEMPLATE/ql--false-positive.md b/.github/ISSUE_TEMPLATE/ql--false-positive.md
index 7f22c577d14..b80590a1832 100644
--- a/.github/ISSUE_TEMPLATE/ql--false-positive.md
+++ b/.github/ISSUE_TEMPLATE/ql--false-positive.md
@@ -1,5 +1,5 @@
 ---
-name: CodeQL False positive
+name: CodeQL false positive
 about: Report CodeQL alerts that you think should not have been detected (not applicable, not exploitable, etc.)
 title: False positive
 labels: false-positive

From 67e8ec1a5fb19f353ddfd4f911a43ad68e99f296 Mon Sep 17 00:00:00 2001
From: Tom Hvitved <hvitved@github.com>
Date: Wed, 16 Nov 2022 11:40:45 +0100
Subject: [PATCH 0382/1420] Swift: Update expected test output

---
 .../dataflow/dataflow/LocalFlow.expected      | 298 +++++++++---------
 1 file changed, 149 insertions(+), 149 deletions(-)

diff --git a/swift/ql/test/library-tests/dataflow/dataflow/LocalFlow.expected b/swift/ql/test/library-tests/dataflow/dataflow/LocalFlow.expected
index 987d7073b87..a4a883a2808 100644
--- a/swift/ql/test/library-tests/dataflow/dataflow/LocalFlow.expected
+++ b/swift/ql/test/library-tests/dataflow/dataflow/LocalFlow.expected
@@ -1,199 +1,199 @@
-| test.swift:6:9:6:13 | WriteDef | test.swift:7:15:7:15 | t1 |
-| test.swift:6:19:6:26 | call to source() | test.swift:6:9:6:13 | WriteDef |
+| test.swift:6:9:6:13 | SSA def(t1) | test.swift:7:15:7:15 | t1 |
+| test.swift:6:19:6:26 | call to source() | test.swift:6:9:6:13 | SSA def(t1) |
 | test.swift:7:15:7:15 | t1 | test.swift:8:10:8:10 | t1 |
-| test.swift:8:5:8:10 | WriteDef | test.swift:10:15:10:15 | t2 |
-| test.swift:8:10:8:10 | t1 | test.swift:8:5:8:10 | WriteDef |
+| test.swift:8:5:8:10 | SSA def(t2) | test.swift:10:15:10:15 | t2 |
+| test.swift:8:10:8:10 | t1 | test.swift:8:5:8:10 | SSA def(t2) |
 | test.swift:8:10:8:10 | t1 | test.swift:9:15:9:15 | t1 |
 | test.swift:9:15:9:15 | t1 | test.swift:11:8:11:8 | t1 |
-| test.swift:12:9:12:14 | WriteDef | test.swift:13:19:13:19 | t2 |
-| test.swift:12:14:12:14 | 0 | test.swift:12:9:12:14 | WriteDef |
-| test.swift:15:5:15:5 | Phi | test.swift:15:15:15:15 | t2 |
-| test.swift:17:5:17:10 | WriteDef | test.swift:21:15:21:15 | t1 |
-| test.swift:17:10:17:10 | 0 | test.swift:17:5:17:10 | WriteDef |
-| test.swift:29:18:29:21 | WriteDef | test.swift:30:15:30:15 | x |
-| test.swift:29:18:29:21 | x | test.swift:29:18:29:21 | WriteDef |
-| test.swift:29:26:29:29 | WriteDef | test.swift:31:15:31:15 | y |
-| test.swift:29:26:29:29 | y | test.swift:29:26:29:29 | WriteDef |
-| test.swift:42:16:42:19 | WriteDef | test.swift:45:8:45:8 | b |
-| test.swift:42:16:42:19 | b | test.swift:42:16:42:19 | WriteDef |
-| test.swift:43:9:43:13 | WriteDef | test.swift:46:13:46:13 | t1 |
-| test.swift:43:19:43:26 | call to source() | test.swift:43:9:43:13 | WriteDef |
-| test.swift:46:9:46:13 | WriteDef | test.swift:50:5:50:5 | Phi |
-| test.swift:46:13:46:13 | t1 | test.swift:46:9:46:13 | WriteDef |
-| test.swift:48:9:48:13 | WriteDef | test.swift:50:5:50:5 | Phi |
-| test.swift:48:13:48:13 | 1 | test.swift:48:9:48:13 | WriteDef |
-| test.swift:50:5:50:5 | Phi | test.swift:50:15:50:15 | t |
-| test.swift:54:5:54:18 | WriteDef | test.swift:53:1:56:1 | arg[return] |
-| test.swift:54:11:54:18 | call to source() | test.swift:54:5:54:18 | WriteDef |
-| test.swift:59:9:59:12 | WriteDef | test.swift:60:15:60:15 | x |
-| test.swift:59:18:59:18 | 0 | test.swift:59:9:59:12 | WriteDef |
+| test.swift:12:9:12:14 | SSA def(t2) | test.swift:13:19:13:19 | t2 |
+| test.swift:12:14:12:14 | 0 | test.swift:12:9:12:14 | SSA def(t2) |
+| test.swift:15:5:15:5 | SSA phi(t2) | test.swift:15:15:15:15 | t2 |
+| test.swift:17:5:17:10 | SSA def(t1) | test.swift:21:15:21:15 | t1 |
+| test.swift:17:10:17:10 | 0 | test.swift:17:5:17:10 | SSA def(t1) |
+| test.swift:29:18:29:21 | SSA def(x) | test.swift:30:15:30:15 | x |
+| test.swift:29:18:29:21 | x | test.swift:29:18:29:21 | SSA def(x) |
+| test.swift:29:26:29:29 | SSA def(y) | test.swift:31:15:31:15 | y |
+| test.swift:29:26:29:29 | y | test.swift:29:26:29:29 | SSA def(y) |
+| test.swift:42:16:42:19 | SSA def(b) | test.swift:45:8:45:8 | b |
+| test.swift:42:16:42:19 | b | test.swift:42:16:42:19 | SSA def(b) |
+| test.swift:43:9:43:13 | SSA def(t1) | test.swift:46:13:46:13 | t1 |
+| test.swift:43:19:43:26 | call to source() | test.swift:43:9:43:13 | SSA def(t1) |
+| test.swift:46:9:46:13 | SSA def(t) | test.swift:50:5:50:5 | SSA phi(t) |
+| test.swift:46:13:46:13 | t1 | test.swift:46:9:46:13 | SSA def(t) |
+| test.swift:48:9:48:13 | SSA def(t) | test.swift:50:5:50:5 | SSA phi(t) |
+| test.swift:48:13:48:13 | 1 | test.swift:48:9:48:13 | SSA def(t) |
+| test.swift:50:5:50:5 | SSA phi(t) | test.swift:50:15:50:15 | t |
+| test.swift:54:5:54:18 | SSA def(arg) | test.swift:53:1:56:1 | arg[return] |
+| test.swift:54:11:54:18 | call to source() | test.swift:54:5:54:18 | SSA def(arg) |
+| test.swift:59:9:59:12 | SSA def(x) | test.swift:60:15:60:15 | x |
+| test.swift:59:18:59:18 | 0 | test.swift:59:9:59:12 | SSA def(x) |
 | test.swift:60:15:60:15 | x | test.swift:61:23:61:23 | x |
 | test.swift:61:22:61:23 | &... | test.swift:62:15:62:15 | x |
 | test.swift:61:22:61:23 | [post] &... | test.swift:62:15:62:15 | x |
 | test.swift:61:23:61:23 | x | test.swift:61:22:61:23 | &... |
-| test.swift:65:16:65:28 | WriteDef | test.swift:66:21:66:21 | arg1 |
-| test.swift:65:16:65:28 | arg1 | test.swift:65:16:65:28 | WriteDef |
-| test.swift:65:33:65:45 | WriteDef | test.swift:67:12:67:12 | arg2 |
-| test.swift:65:33:65:45 | arg2 | test.swift:65:33:65:45 | WriteDef |
-| test.swift:66:9:66:15 | WriteDef | test.swift:68:12:68:12 | temp |
-| test.swift:66:21:66:21 | arg1 | test.swift:66:9:66:15 | WriteDef |
-| test.swift:67:5:67:12 | WriteDef | test.swift:65:1:70:1 | arg1[return] |
-| test.swift:67:12:67:12 | arg2 | test.swift:67:5:67:12 | WriteDef |
-| test.swift:68:5:68:12 | WriteDef | test.swift:65:1:70:1 | arg2[return] |
-| test.swift:68:12:68:12 | temp | test.swift:68:5:68:12 | WriteDef |
-| test.swift:73:9:73:12 | WriteDef | test.swift:75:22:75:22 | x |
-| test.swift:73:18:73:25 | call to source() | test.swift:73:9:73:12 | WriteDef |
-| test.swift:74:9:74:12 | WriteDef | test.swift:75:32:75:32 | y |
-| test.swift:74:18:74:18 | 0 | test.swift:74:9:74:12 | WriteDef |
+| test.swift:65:16:65:28 | SSA def(arg1) | test.swift:66:21:66:21 | arg1 |
+| test.swift:65:16:65:28 | arg1 | test.swift:65:16:65:28 | SSA def(arg1) |
+| test.swift:65:33:65:45 | SSA def(arg2) | test.swift:67:12:67:12 | arg2 |
+| test.swift:65:33:65:45 | arg2 | test.swift:65:33:65:45 | SSA def(arg2) |
+| test.swift:66:9:66:15 | SSA def(temp) | test.swift:68:12:68:12 | temp |
+| test.swift:66:21:66:21 | arg1 | test.swift:66:9:66:15 | SSA def(temp) |
+| test.swift:67:5:67:12 | SSA def(arg1) | test.swift:65:1:70:1 | arg1[return] |
+| test.swift:67:12:67:12 | arg2 | test.swift:67:5:67:12 | SSA def(arg1) |
+| test.swift:68:5:68:12 | SSA def(arg2) | test.swift:65:1:70:1 | arg2[return] |
+| test.swift:68:12:68:12 | temp | test.swift:68:5:68:12 | SSA def(arg2) |
+| test.swift:73:9:73:12 | SSA def(x) | test.swift:75:22:75:22 | x |
+| test.swift:73:18:73:25 | call to source() | test.swift:73:9:73:12 | SSA def(x) |
+| test.swift:74:9:74:12 | SSA def(y) | test.swift:75:32:75:32 | y |
+| test.swift:74:18:74:18 | 0 | test.swift:74:9:74:12 | SSA def(y) |
 | test.swift:75:21:75:22 | &... | test.swift:76:15:76:15 | x |
 | test.swift:75:21:75:22 | [post] &... | test.swift:76:15:76:15 | x |
 | test.swift:75:22:75:22 | x | test.swift:75:21:75:22 | &... |
 | test.swift:75:31:75:32 | &... | test.swift:77:15:77:15 | y |
 | test.swift:75:31:75:32 | [post] &... | test.swift:77:15:77:15 | y |
 | test.swift:75:32:75:32 | y | test.swift:75:31:75:32 | &... |
-| test.swift:81:5:81:18 | WriteDef | test.swift:80:1:82:1 | arg[return] |
-| test.swift:81:11:81:18 | call to source() | test.swift:81:5:81:18 | WriteDef |
-| test.swift:84:1:91:1 | Phi | test.swift:84:1:91:1 | arg[return] |
-| test.swift:84:48:84:54 | WriteDef | test.swift:85:8:85:8 | bool |
-| test.swift:84:48:84:54 | bool | test.swift:84:48:84:54 | WriteDef |
-| test.swift:86:9:86:22 | WriteDef | test.swift:84:1:91:1 | Phi |
-| test.swift:86:15:86:22 | call to source() | test.swift:86:9:86:22 | WriteDef |
-| test.swift:89:9:89:22 | WriteDef | test.swift:84:1:91:1 | Phi |
-| test.swift:89:15:89:22 | call to source() | test.swift:89:9:89:22 | WriteDef |
-| test.swift:93:17:93:23 | WriteDef | test.swift:104:50:104:50 | bool |
-| test.swift:93:17:93:23 | bool | test.swift:93:17:93:23 | WriteDef |
-| test.swift:95:13:95:16 | WriteDef | test.swift:96:19:96:19 | x |
-| test.swift:95:22:95:22 | 0 | test.swift:95:13:95:16 | WriteDef |
+| test.swift:81:5:81:18 | SSA def(arg) | test.swift:80:1:82:1 | arg[return] |
+| test.swift:81:11:81:18 | call to source() | test.swift:81:5:81:18 | SSA def(arg) |
+| test.swift:84:1:91:1 | SSA phi(arg) | test.swift:84:1:91:1 | arg[return] |
+| test.swift:84:48:84:54 | SSA def(bool) | test.swift:85:8:85:8 | bool |
+| test.swift:84:48:84:54 | bool | test.swift:84:48:84:54 | SSA def(bool) |
+| test.swift:86:9:86:22 | SSA def(arg) | test.swift:84:1:91:1 | SSA phi(arg) |
+| test.swift:86:15:86:22 | call to source() | test.swift:86:9:86:22 | SSA def(arg) |
+| test.swift:89:9:89:22 | SSA def(arg) | test.swift:84:1:91:1 | SSA phi(arg) |
+| test.swift:89:15:89:22 | call to source() | test.swift:89:9:89:22 | SSA def(arg) |
+| test.swift:93:17:93:23 | SSA def(bool) | test.swift:104:50:104:50 | bool |
+| test.swift:93:17:93:23 | bool | test.swift:93:17:93:23 | SSA def(bool) |
+| test.swift:95:13:95:16 | SSA def(x) | test.swift:96:19:96:19 | x |
+| test.swift:95:22:95:22 | 0 | test.swift:95:13:95:16 | SSA def(x) |
 | test.swift:96:19:96:19 | x | test.swift:97:40:97:40 | x |
 | test.swift:97:39:97:40 | &... | test.swift:98:19:98:19 | x |
 | test.swift:97:39:97:40 | [post] &... | test.swift:98:19:98:19 | x |
 | test.swift:97:40:97:40 | x | test.swift:97:39:97:40 | &... |
-| test.swift:102:13:102:16 | WriteDef | test.swift:103:19:103:19 | x |
-| test.swift:102:22:102:22 | 0 | test.swift:102:13:102:16 | WriteDef |
+| test.swift:102:13:102:16 | SSA def(x) | test.swift:103:19:103:19 | x |
+| test.swift:102:22:102:22 | 0 | test.swift:102:13:102:16 | SSA def(x) |
 | test.swift:103:19:103:19 | x | test.swift:104:41:104:41 | x |
 | test.swift:104:40:104:41 | &... | test.swift:105:19:105:19 | x |
 | test.swift:104:40:104:41 | [post] &... | test.swift:105:19:105:19 | x |
 | test.swift:104:41:104:41 | x | test.swift:104:40:104:41 | &... |
-| test.swift:109:9:109:14 | WriteDef | test.swift:110:12:110:12 | arg |
-| test.swift:109:9:109:14 | arg | test.swift:109:9:109:14 | WriteDef |
-| test.swift:113:14:113:19 | WriteDef | test.swift:114:19:114:19 | arg |
-| test.swift:113:14:113:19 | arg | test.swift:113:14:113:19 | WriteDef |
-| test.swift:113:24:113:41 | WriteDef | test.swift:114:12:114:12 | lambda |
-| test.swift:113:24:113:41 | lambda | test.swift:113:24:113:41 | WriteDef |
-| test.swift:118:9:118:12 | WriteDef | test.swift:119:31:119:31 | x |
-| test.swift:118:18:118:25 | call to source() | test.swift:118:9:118:12 | WriteDef |
-| test.swift:119:9:119:12 | WriteDef | test.swift:120:15:120:15 | y |
-| test.swift:119:18:119:44 | call to forward(arg:lambda:) | test.swift:119:9:119:12 | WriteDef |
-| test.swift:122:9:122:12 | WriteDef | test.swift:126:15:126:15 | z |
-| test.swift:122:18:125:6 | call to forward(arg:lambda:) | test.swift:122:9:122:12 | WriteDef |
-| test.swift:123:10:123:13 | WriteDef | test.swift:124:16:124:16 | i |
-| test.swift:123:10:123:13 | i | test.swift:123:10:123:13 | WriteDef |
-| test.swift:128:9:128:16 | WriteDef | test.swift:132:15:132:15 | clean |
-| test.swift:128:22:131:6 | call to forward(arg:lambda:) | test.swift:128:9:128:16 | WriteDef |
-| test.swift:141:9:141:9 | WriteDef | test.swift:145:15:145:15 | lambda2 |
-| test.swift:141:19:144:5 | { ... } | test.swift:141:9:141:9 | WriteDef |
-| test.swift:142:10:142:13 | WriteDef | test.swift:143:16:143:16 | i |
-| test.swift:142:10:142:13 | i | test.swift:142:10:142:13 | WriteDef |
-| test.swift:147:9:147:9 | WriteDef | test.swift:151:15:151:15 | lambdaSource |
-| test.swift:147:24:150:5 | { ... } | test.swift:147:9:147:9 | WriteDef |
+| test.swift:109:9:109:14 | SSA def(arg) | test.swift:110:12:110:12 | arg |
+| test.swift:109:9:109:14 | arg | test.swift:109:9:109:14 | SSA def(arg) |
+| test.swift:113:14:113:19 | SSA def(arg) | test.swift:114:19:114:19 | arg |
+| test.swift:113:14:113:19 | arg | test.swift:113:14:113:19 | SSA def(arg) |
+| test.swift:113:24:113:41 | SSA def(lambda) | test.swift:114:12:114:12 | lambda |
+| test.swift:113:24:113:41 | lambda | test.swift:113:24:113:41 | SSA def(lambda) |
+| test.swift:118:9:118:12 | SSA def(x) | test.swift:119:31:119:31 | x |
+| test.swift:118:18:118:25 | call to source() | test.swift:118:9:118:12 | SSA def(x) |
+| test.swift:119:9:119:12 | SSA def(y) | test.swift:120:15:120:15 | y |
+| test.swift:119:18:119:44 | call to forward(arg:lambda:) | test.swift:119:9:119:12 | SSA def(y) |
+| test.swift:122:9:122:12 | SSA def(z) | test.swift:126:15:126:15 | z |
+| test.swift:122:18:125:6 | call to forward(arg:lambda:) | test.swift:122:9:122:12 | SSA def(z) |
+| test.swift:123:10:123:13 | SSA def(i) | test.swift:124:16:124:16 | i |
+| test.swift:123:10:123:13 | i | test.swift:123:10:123:13 | SSA def(i) |
+| test.swift:128:9:128:16 | SSA def(clean) | test.swift:132:15:132:15 | clean |
+| test.swift:128:22:131:6 | call to forward(arg:lambda:) | test.swift:128:9:128:16 | SSA def(clean) |
+| test.swift:141:9:141:9 | SSA def(lambda2) | test.swift:145:15:145:15 | lambda2 |
+| test.swift:141:19:144:5 | { ... } | test.swift:141:9:141:9 | SSA def(lambda2) |
+| test.swift:142:10:142:13 | SSA def(i) | test.swift:143:16:143:16 | i |
+| test.swift:142:10:142:13 | i | test.swift:142:10:142:13 | SSA def(i) |
+| test.swift:147:9:147:9 | SSA def(lambdaSource) | test.swift:151:15:151:15 | lambdaSource |
+| test.swift:147:24:150:5 | { ... } | test.swift:147:9:147:9 | SSA def(lambdaSource) |
 | test.swift:151:15:151:15 | lambdaSource | test.swift:159:16:159:16 | lambdaSource |
-| test.swift:153:9:153:9 | WriteDef | test.swift:157:5:157:5 | lambdaSink |
-| test.swift:153:22:156:5 | { ... } | test.swift:153:9:153:9 | WriteDef |
-| test.swift:154:10:154:13 | WriteDef | test.swift:155:19:155:19 | i |
-| test.swift:154:10:154:13 | i | test.swift:154:10:154:13 | WriteDef |
+| test.swift:153:9:153:9 | SSA def(lambdaSink) | test.swift:157:5:157:5 | lambdaSink |
+| test.swift:153:22:156:5 | { ... } | test.swift:153:9:153:9 | SSA def(lambdaSink) |
+| test.swift:154:10:154:13 | SSA def(i) | test.swift:155:19:155:19 | i |
+| test.swift:154:10:154:13 | i | test.swift:154:10:154:13 | SSA def(i) |
 | test.swift:157:5:157:5 | lambdaSink | test.swift:159:5:159:5 | lambdaSink |
-| test.swift:162:7:162:7 | WriteDef | test.swift:162:7:162:7 | self[return] |
-| test.swift:162:7:162:7 | self | test.swift:162:7:162:7 | WriteDef |
-| test.swift:163:7:163:7 | self | test.swift:163:7:163:7 | WriteDef |
-| test.swift:163:7:163:7 | self | test.swift:163:7:163:7 | WriteDef |
-| test.swift:163:7:163:7 | self | test.swift:163:7:163:7 | WriteDef |
-| test.swift:163:7:163:7 | value | test.swift:163:7:163:7 | WriteDef |
-| test.swift:165:3:165:3 | WriteDef | test.swift:166:5:166:5 | self |
-| test.swift:165:3:165:3 | self | test.swift:165:3:165:3 | WriteDef |
+| test.swift:162:7:162:7 | SSA def(self) | test.swift:162:7:162:7 | self[return] |
+| test.swift:162:7:162:7 | self | test.swift:162:7:162:7 | SSA def(self) |
+| test.swift:163:7:163:7 | self | test.swift:163:7:163:7 | SSA def(self) |
+| test.swift:163:7:163:7 | self | test.swift:163:7:163:7 | SSA def(self) |
+| test.swift:163:7:163:7 | self | test.swift:163:7:163:7 | SSA def(self) |
+| test.swift:163:7:163:7 | value | test.swift:163:7:163:7 | SSA def(value) |
+| test.swift:165:3:165:3 | SSA def(self) | test.swift:166:5:166:5 | self |
+| test.swift:165:3:165:3 | self | test.swift:165:3:165:3 | SSA def(self) |
 | test.swift:166:5:166:5 | [post] self | test.swift:165:3:167:3 | self[return] |
 | test.swift:166:5:166:5 | self | test.swift:165:3:167:3 | self[return] |
-| test.swift:169:8:169:8 | WriteDef | test.swift:170:5:170:5 | self |
-| test.swift:169:8:169:8 | self | test.swift:169:8:169:8 | WriteDef |
-| test.swift:169:12:169:22 | WriteDef | test.swift:170:9:170:9 | value |
-| test.swift:169:12:169:22 | value | test.swift:169:12:169:22 | WriteDef |
+| test.swift:169:8:169:8 | SSA def(self) | test.swift:170:5:170:5 | self |
+| test.swift:169:8:169:8 | self | test.swift:169:8:169:8 | SSA def(self) |
+| test.swift:169:12:169:22 | SSA def(value) | test.swift:170:9:170:9 | value |
+| test.swift:169:12:169:22 | value | test.swift:169:12:169:22 | SSA def(value) |
 | test.swift:170:5:170:5 | [post] self | test.swift:169:3:171:3 | self[return] |
 | test.swift:170:5:170:5 | self | test.swift:169:3:171:3 | self[return] |
-| test.swift:173:8:173:8 | WriteDef | test.swift:174:12:174:12 | self |
-| test.swift:173:8:173:8 | self | test.swift:173:8:173:8 | WriteDef |
+| test.swift:173:8:173:8 | SSA def(self) | test.swift:174:12:174:12 | self |
+| test.swift:173:8:173:8 | self | test.swift:173:8:173:8 | SSA def(self) |
 | test.swift:174:12:174:12 | [post] self | test.swift:173:3:175:3 | self[return] |
 | test.swift:174:12:174:12 | self | test.swift:173:3:175:3 | self[return] |
-| test.swift:179:7:179:7 | WriteDef | test.swift:180:3:180:3 | a |
-| test.swift:179:11:179:13 | call to init() | test.swift:179:7:179:7 | WriteDef |
+| test.swift:179:7:179:7 | SSA def(a) | test.swift:180:3:180:3 | a |
+| test.swift:179:11:179:13 | call to init() | test.swift:179:7:179:7 | SSA def(a) |
 | test.swift:180:3:180:3 | [post] a | test.swift:181:13:181:13 | a |
 | test.swift:180:3:180:3 | a | test.swift:181:13:181:13 | a |
-| test.swift:184:7:184:7 | WriteDef | test.swift:184:7:184:7 | self[return] |
-| test.swift:184:7:184:7 | self | test.swift:184:7:184:7 | WriteDef |
-| test.swift:185:7:185:7 | self | test.swift:185:7:185:7 | WriteDef |
-| test.swift:185:7:185:7 | self | test.swift:185:7:185:7 | WriteDef |
-| test.swift:185:7:185:7 | self | test.swift:185:7:185:7 | WriteDef |
-| test.swift:185:7:185:7 | value | test.swift:185:7:185:7 | WriteDef |
-| test.swift:187:3:187:3 | WriteDef | test.swift:188:5:188:5 | self |
-| test.swift:187:3:187:3 | self | test.swift:187:3:187:3 | WriteDef |
+| test.swift:184:7:184:7 | SSA def(self) | test.swift:184:7:184:7 | self[return] |
+| test.swift:184:7:184:7 | self | test.swift:184:7:184:7 | SSA def(self) |
+| test.swift:185:7:185:7 | self | test.swift:185:7:185:7 | SSA def(self) |
+| test.swift:185:7:185:7 | self | test.swift:185:7:185:7 | SSA def(self) |
+| test.swift:185:7:185:7 | self | test.swift:185:7:185:7 | SSA def(self) |
+| test.swift:185:7:185:7 | value | test.swift:185:7:185:7 | SSA def(value) |
+| test.swift:187:3:187:3 | SSA def(self) | test.swift:188:5:188:5 | self |
+| test.swift:187:3:187:3 | self | test.swift:187:3:187:3 | SSA def(self) |
 | test.swift:188:5:188:5 | [post] self | test.swift:187:3:189:3 | self[return] |
 | test.swift:188:5:188:5 | self | test.swift:187:3:189:3 | self[return] |
-| test.swift:193:7:193:7 | WriteDef | test.swift:194:3:194:3 | b |
-| test.swift:193:11:193:13 | call to init() | test.swift:193:7:193:7 | WriteDef |
+| test.swift:193:7:193:7 | SSA def(b) | test.swift:194:3:194:3 | b |
+| test.swift:193:11:193:13 | call to init() | test.swift:193:7:193:7 | SSA def(b) |
 | test.swift:194:3:194:3 | [post] b | test.swift:195:13:195:13 | b |
 | test.swift:194:3:194:3 | b | test.swift:195:13:195:13 | b |
-| test.swift:199:7:199:7 | WriteDef | test.swift:200:3:200:3 | a |
-| test.swift:199:11:199:13 | call to init() | test.swift:199:7:199:7 | WriteDef |
+| test.swift:199:7:199:7 | SSA def(a) | test.swift:200:3:200:3 | a |
+| test.swift:199:11:199:13 | call to init() | test.swift:199:7:199:7 | SSA def(a) |
 | test.swift:200:3:200:3 | [post] a | test.swift:201:13:201:13 | a |
 | test.swift:200:3:200:3 | a | test.swift:201:13:201:13 | a |
-| test.swift:205:7:205:7 | WriteDef | test.swift:206:3:206:3 | a |
-| test.swift:205:11:205:13 | call to init() | test.swift:205:7:205:7 | WriteDef |
+| test.swift:205:7:205:7 | SSA def(a) | test.swift:206:3:206:3 | a |
+| test.swift:205:11:205:13 | call to init() | test.swift:205:7:205:7 | SSA def(a) |
 | test.swift:206:3:206:3 | [post] a | test.swift:207:13:207:13 | a |
 | test.swift:206:3:206:3 | a | test.swift:207:13:207:13 | a |
-| test.swift:211:7:211:7 | WriteDef | test.swift:212:3:212:3 | a |
-| test.swift:211:11:211:13 | call to init() | test.swift:211:7:211:7 | WriteDef |
+| test.swift:211:7:211:7 | SSA def(a) | test.swift:212:3:212:3 | a |
+| test.swift:211:11:211:13 | call to init() | test.swift:211:7:211:7 | SSA def(a) |
 | test.swift:212:3:212:3 | [post] a | test.swift:213:13:213:13 | a |
 | test.swift:212:3:212:3 | a | test.swift:213:13:213:13 | a |
-| test.swift:217:7:217:7 | WriteDef | test.swift:218:3:218:3 | b |
-| test.swift:217:11:217:13 | call to init() | test.swift:217:7:217:7 | WriteDef |
+| test.swift:217:7:217:7 | SSA def(b) | test.swift:218:3:218:3 | b |
+| test.swift:217:11:217:13 | call to init() | test.swift:217:7:217:7 | SSA def(b) |
 | test.swift:218:3:218:3 | [post] b | test.swift:219:13:219:13 | b |
 | test.swift:218:3:218:3 | b | test.swift:219:13:219:13 | b |
-| test.swift:222:7:222:7 | WriteDef | test.swift:222:7:222:7 | self[return] |
-| test.swift:222:7:222:7 | WriteDef | test.swift:222:7:222:7 | self[return] |
-| test.swift:222:7:222:7 | self | test.swift:222:7:222:7 | WriteDef |
-| test.swift:222:7:222:7 | self | test.swift:222:7:222:7 | WriteDef |
-| test.swift:223:7:223:7 | self | test.swift:223:7:223:7 | WriteDef |
-| test.swift:224:5:224:5 | WriteDef | test.swift:224:5:226:5 | self[return] |
-| test.swift:224:5:224:5 | self | test.swift:224:5:224:5 | WriteDef |
-| test.swift:227:5:227:5 | WriteDef | test.swift:227:5:229:5 | self[return] |
-| test.swift:227:5:227:5 | self | test.swift:227:5:227:5 | WriteDef |
-| test.swift:234:7:234:7 | WriteDef | test.swift:235:13:235:13 | a |
-| test.swift:234:11:234:31 | call to init() | test.swift:234:7:234:7 | WriteDef |
+| test.swift:222:7:222:7 | SSA def(self) | test.swift:222:7:222:7 | self[return] |
+| test.swift:222:7:222:7 | SSA def(self) | test.swift:222:7:222:7 | self[return] |
+| test.swift:222:7:222:7 | self | test.swift:222:7:222:7 | SSA def(self) |
+| test.swift:222:7:222:7 | self | test.swift:222:7:222:7 | SSA def(self) |
+| test.swift:223:7:223:7 | self | test.swift:223:7:223:7 | SSA def(self) |
+| test.swift:224:5:224:5 | SSA def(self) | test.swift:224:5:226:5 | self[return] |
+| test.swift:224:5:224:5 | self | test.swift:224:5:224:5 | SSA def(self) |
+| test.swift:227:5:227:5 | SSA def(self) | test.swift:227:5:229:5 | self[return] |
+| test.swift:227:5:227:5 | self | test.swift:227:5:227:5 | SSA def(self) |
+| test.swift:234:7:234:7 | SSA def(a) | test.swift:235:13:235:13 | a |
+| test.swift:234:11:234:31 | call to init() | test.swift:234:7:234:7 | SSA def(a) |
 | test.swift:235:13:235:13 | [post] a | test.swift:237:3:237:3 | a |
 | test.swift:235:13:235:13 | a | test.swift:237:3:237:3 | a |
 | test.swift:237:3:237:3 | [post] a | test.swift:238:13:238:13 | a |
 | test.swift:237:3:237:3 | a | test.swift:238:13:238:13 | a |
-| test.swift:242:9:242:9 | self | test.swift:242:9:242:9 | WriteDef |
-| test.swift:242:9:242:9 | self | test.swift:242:9:242:9 | WriteDef |
-| test.swift:242:9:242:9 | self | test.swift:242:9:242:9 | WriteDef |
-| test.swift:242:9:242:9 | value | test.swift:242:9:242:9 | WriteDef |
-| test.swift:243:9:243:9 | WriteDef | test.swift:243:18:243:18 | self |
-| test.swift:243:9:243:9 | self | test.swift:243:9:243:9 | WriteDef |
+| test.swift:242:9:242:9 | self | test.swift:242:9:242:9 | SSA def(self) |
+| test.swift:242:9:242:9 | self | test.swift:242:9:242:9 | SSA def(self) |
+| test.swift:242:9:242:9 | self | test.swift:242:9:242:9 | SSA def(self) |
+| test.swift:242:9:242:9 | value | test.swift:242:9:242:9 | SSA def(value) |
+| test.swift:243:9:243:9 | SSA def(self) | test.swift:243:18:243:18 | self |
+| test.swift:243:9:243:9 | self | test.swift:243:9:243:9 | SSA def(self) |
 | test.swift:243:18:243:18 | [post] self | test.swift:243:9:243:42 | self[return] |
 | test.swift:243:18:243:18 | self | test.swift:243:9:243:42 | self[return] |
-| test.swift:246:5:246:5 | WriteDef | test.swift:247:9:247:9 | self |
-| test.swift:246:5:246:5 | self | test.swift:246:5:246:5 | WriteDef |
+| test.swift:246:5:246:5 | SSA def(self) | test.swift:247:9:247:9 | self |
+| test.swift:246:5:246:5 | self | test.swift:246:5:246:5 | SSA def(self) |
 | test.swift:247:9:247:9 | [post] self | test.swift:246:5:248:5 | self[return] |
 | test.swift:247:9:247:9 | self | test.swift:246:5:248:5 | self[return] |
-| test.swift:252:23:252:23 | value | test.swift:252:23:252:23 | WriteDef |
-| test.swift:263:9:263:9 | WriteDef | test.swift:264:15:264:15 | x |
-| test.swift:263:13:263:28 | call to optionalSource() | test.swift:263:9:263:9 | WriteDef |
+| test.swift:252:23:252:23 | value | test.swift:252:23:252:23 | SSA def(value) |
+| test.swift:263:9:263:9 | SSA def(x) | test.swift:264:15:264:15 | x |
+| test.swift:263:13:263:28 | call to optionalSource() | test.swift:263:9:263:9 | SSA def(x) |
 | test.swift:264:15:264:15 | x | test.swift:264:15:264:16 | ...! |
 | test.swift:264:15:264:15 | x | test.swift:266:15:266:15 | x |
 | test.swift:266:15:266:15 | x | test.swift:266:15:266:16 | ...? |
 | test.swift:266:15:266:15 | x | test.swift:267:15:267:15 | x |
 | test.swift:266:15:266:25 | call to signum() | test.swift:266:15:266:25 | OptionalEvaluationExpr |
 | test.swift:267:15:267:15 | x | test.swift:268:16:268:16 | x |
-| test.swift:277:9:277:9 | WriteDef | test.swift:279:15:279:15 | t1 |
-| test.swift:277:14:277:26 | (...) | test.swift:277:9:277:9 | WriteDef |
+| test.swift:277:9:277:9 | SSA def(t1) | test.swift:279:15:279:15 | t1 |
+| test.swift:277:14:277:26 | (...) | test.swift:277:9:277:9 | SSA def(t1) |
 | test.swift:279:15:279:15 | t1 | test.swift:280:15:280:15 | t1 |
 | test.swift:280:15:280:15 | [post] t1 | test.swift:281:15:281:15 | t1 |
 | test.swift:280:15:280:15 | t1 | test.swift:281:15:281:15 | t1 |
@@ -211,17 +211,17 @@
 | test.swift:291:15:291:15 | t1 | test.swift:292:15:292:15 | t1 |
 | test.swift:292:15:292:15 | [post] t1 | test.swift:293:15:293:15 | t1 |
 | test.swift:292:15:292:15 | t1 | test.swift:293:15:293:15 | t1 |
-| test.swift:297:9:297:9 | WriteDef | test.swift:298:14:298:14 | t1 |
-| test.swift:297:14:297:45 | (...) | test.swift:297:9:297:9 | WriteDef |
-| test.swift:298:9:298:9 | WriteDef | test.swift:305:15:305:15 | t2 |
-| test.swift:298:14:298:14 | t1 | test.swift:298:9:298:9 | WriteDef |
+| test.swift:297:9:297:9 | SSA def(t1) | test.swift:298:14:298:14 | t1 |
+| test.swift:297:14:297:45 | (...) | test.swift:297:9:297:9 | SSA def(t1) |
+| test.swift:298:9:298:9 | SSA def(t2) | test.swift:305:15:305:15 | t2 |
+| test.swift:298:14:298:14 | t1 | test.swift:298:9:298:9 | SSA def(t2) |
 | test.swift:298:14:298:14 | t1 | test.swift:299:21:299:21 | t1 |
-| test.swift:299:9:299:17 | WriteDef | test.swift:309:15:309:15 | a |
-| test.swift:299:9:299:17 | WriteDef | test.swift:310:15:310:15 | b |
-| test.swift:299:9:299:17 | WriteDef | test.swift:311:15:311:15 | c |
-| test.swift:299:21:299:21 | t1 | test.swift:299:9:299:17 | WriteDef |
-| test.swift:299:21:299:21 | t1 | test.swift:299:9:299:17 | WriteDef |
-| test.swift:299:21:299:21 | t1 | test.swift:299:9:299:17 | WriteDef |
+| test.swift:299:9:299:17 | SSA def(a) | test.swift:309:15:309:15 | a |
+| test.swift:299:9:299:17 | SSA def(b) | test.swift:310:15:310:15 | b |
+| test.swift:299:9:299:17 | SSA def(c) | test.swift:311:15:311:15 | c |
+| test.swift:299:21:299:21 | t1 | test.swift:299:9:299:17 | SSA def(a) |
+| test.swift:299:21:299:21 | t1 | test.swift:299:9:299:17 | SSA def(b) |
+| test.swift:299:21:299:21 | t1 | test.swift:299:9:299:17 | SSA def(c) |
 | test.swift:299:21:299:21 | t1 | test.swift:301:15:301:15 | t1 |
 | test.swift:301:15:301:15 | t1 | test.swift:302:15:302:15 | t1 |
 | test.swift:302:15:302:15 | [post] t1 | test.swift:303:15:303:15 | t1 |

From 78c9fb3d76b0d7a22811e3317c189699f85efdeb Mon Sep 17 00:00:00 2001
From: erik-krogh <erik-krogh@github.com>
Date: Wed, 16 Nov 2022 13:36:13 +0100
Subject: [PATCH 0383/1420] QL: don't flag up comments placed on the same line
 as non-comments

---
 ql/ql/src/queries/style/NonDocBlock.ql        | 35 +++++++++++++------
 ql/ql/test/queries/style/NonDocBlock/Foo.qll  |  9 +++++
 .../style/NonDocBlock/NonDocBlock.expected    |  2 +-
 3 files changed, 35 insertions(+), 11 deletions(-)

diff --git a/ql/ql/src/queries/style/NonDocBlock.ql b/ql/ql/src/queries/style/NonDocBlock.ql
index c81ed3c77db..61efce0b902 100644
--- a/ql/ql/src/queries/style/NonDocBlock.ql
+++ b/ql/ql/src/queries/style/NonDocBlock.ql
@@ -29,16 +29,31 @@ int getLineAboveNodeThatCouldHaveDoc(File file) {
 
 pragma[noinline]
 BlockComment getACommentThatCouldBeQLDoc(File file) {
-  file = result.getLocation().getFile() and
-  result.getLocation().getFile().getExtension() = "qll" and
-  not result.getContents().matches("/**%") and
-  (
-    // above something that can be commented.
-    result.getLocation().getEndLine() = getLineAboveNodeThatCouldHaveDoc(file)
-    or
-    // toplevel in file.
-    result.getLocation().getStartLine() = 1 and
-    result.getLocation().getStartColumn() = 1
+  exists(Location loc | loc = result.getLocation() |
+    file = loc.getFile() and
+    loc.getFile().getExtension() = "qll" and
+    not result.getContents().matches("/**%") and
+    not [loc.getStartLine(), loc.getEndLine()] = getLinesWithNonComment(file) and
+    (
+      // above something that can be commented.
+      loc.getEndLine() = getLineAboveNodeThatCouldHaveDoc(file)
+      or
+      // toplevel in file.
+      loc.getStartLine() = 1 and
+      loc.getStartColumn() = 1
+    )
+  )
+}
+
+pragma[noinline]
+int getLinesWithNonComment(File f) {
+  exists(AstNode n, Location loc |
+    not n instanceof Comment and
+    not n instanceof TopLevel and
+    loc = n.getLocation() and
+    loc.getFile() = f
+  |
+    result = [loc.getEndLine(), loc.getStartLine()]
   )
 }
 
diff --git a/ql/ql/test/queries/style/NonDocBlock/Foo.qll b/ql/ql/test/queries/style/NonDocBlock/Foo.qll
index 238bc18ff9c..99f957fa770 100644
--- a/ql/ql/test/queries/style/NonDocBlock/Foo.qll
+++ b/ql/ql/test/queries/style/NonDocBlock/Foo.qll
@@ -11,3 +11,12 @@ predicate foo() { any() }
 class Foo extends string {
   Foo() { this = "FOo" }
 }
+
+/**
+ * This is also fine.
+ */
+/*abstract*/ class Bar extends string {
+  string getMergeRaw() { none() } // <- fine. The abstract comment is fine, it doesn't need to be QLDoc.
+
+  Bar() { this = "bar" }
+}
diff --git a/ql/ql/test/queries/style/NonDocBlock/NonDocBlock.expected b/ql/ql/test/queries/style/NonDocBlock/NonDocBlock.expected
index 7bdbfd18d95..41f029af5fd 100644
--- a/ql/ql/test/queries/style/NonDocBlock/NonDocBlock.expected
+++ b/ql/ql/test/queries/style/NonDocBlock/NonDocBlock.expected
@@ -1,2 +1,2 @@
-| Foo.qll:1:1:3:3 | BlockComment | Block comment could be QLDoc for $@. | Foo.qll:1:1:13:2 | TopLevel | the file |
+| Foo.qll:1:1:3:3 | BlockComment | Block comment could be QLDoc for $@. | Foo.qll:1:1:22:2 | TopLevel | the file |
 | Foo.qll:10:1:10:24 | BlockComment | Block comment could be QLDoc for $@. | Foo.qll:11:7:11:9 | Class Foo | the below code |

From 20c4699478bd7cc213e72da272666f7c4de7df45 Mon Sep 17 00:00:00 2001
From: erik-krogh <erik-krogh@github.com>
Date: Wed, 16 Nov 2022 13:39:22 +0100
Subject: [PATCH 0384/1420] CPP: convert some block-comments that could be
 QLDoc to QLDoc

---
 cpp/ql/lib/semmle/code/cpp/security/TaintTracking.qll | 2 +-
 cpp/ql/src/jsf/4.09 Style/Naming.qll                  | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/cpp/ql/lib/semmle/code/cpp/security/TaintTracking.qll b/cpp/ql/lib/semmle/code/cpp/security/TaintTracking.qll
index 5b8f221f73a..49ef4137aa1 100644
--- a/cpp/ql/lib/semmle/code/cpp/security/TaintTracking.qll
+++ b/cpp/ql/lib/semmle/code/cpp/security/TaintTracking.qll
@@ -1,4 +1,4 @@
-/*
+/**
  * Support for tracking tainted data through the program. This is an alias for
  * `semmle.code.cpp.ir.dataflow.DefaultTaintTracking` provided for backwards
  * compatibility.
diff --git a/cpp/ql/src/jsf/4.09 Style/Naming.qll b/cpp/ql/src/jsf/4.09 Style/Naming.qll
index 264a6bac219..5df3724a067 100644
--- a/cpp/ql/src/jsf/4.09 Style/Naming.qll	
+++ b/cpp/ql/src/jsf/4.09 Style/Naming.qll	
@@ -1,4 +1,4 @@
-/*
+/**
  * Common functions for implementing naming conventions
  *
  * Naming rules are the following:

From 6bfaf3b2f7916c99530964d89241b327389e43dd Mon Sep 17 00:00:00 2001
From: erik-krogh <erik-krogh@github.com>
Date: Wed, 16 Nov 2022 13:39:33 +0100
Subject: [PATCH 0385/1420] C#: convert some block-comments that could be QLDoc
 to QLDoc

---
 csharp/ql/campaigns/Solorigate/lib/Solorigate.qll               | 2 +-
 .../code/csharp/Cryptography/NonCryptographicHashes.qll         | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/csharp/ql/campaigns/Solorigate/lib/Solorigate.qll b/csharp/ql/campaigns/Solorigate/lib/Solorigate.qll
index 51559093b07..3d3468af78d 100644
--- a/csharp/ql/campaigns/Solorigate/lib/Solorigate.qll
+++ b/csharp/ql/campaigns/Solorigate/lib/Solorigate.qll
@@ -1,4 +1,4 @@
-/*
+/**
  * Provides reusable predicates related to Solorigate
  */
 
diff --git a/csharp/ql/lib/experimental/code/csharp/Cryptography/NonCryptographicHashes.qll b/csharp/ql/lib/experimental/code/csharp/Cryptography/NonCryptographicHashes.qll
index b7371fafb3e..adb8df80ea6 100644
--- a/csharp/ql/lib/experimental/code/csharp/Cryptography/NonCryptographicHashes.qll
+++ b/csharp/ql/lib/experimental/code/csharp/Cryptography/NonCryptographicHashes.qll
@@ -1,4 +1,4 @@
-/*
+/**
  * Predicates that help detect potential non-cryptographic hash functions
  *
  * By themselves, non-cryptographic functions are common and not dangerous

From 7331363618aa540c16410d54e8ddbb64b098646b Mon Sep 17 00:00:00 2001
From: erik-krogh <erik-krogh@github.com>
Date: Wed, 16 Nov 2022 13:40:15 +0100
Subject: [PATCH 0386/1420] Java: convert some block-comments that could be
 QLDoc to QLDoc

---
 java/ql/lib/semmle/code/java/frameworks/Properties.qll         | 3 ++-
 java/ql/lib/semmle/code/java/frameworks/Rmi.qll                | 3 ++-
 java/ql/lib/semmle/code/java/frameworks/apache/Exec.qll        | 3 ++-
 java/ql/lib/semmle/code/java/security/ExternalProcess.qll      | 3 ++-
 java/ql/lib/semmle/code/java/security/RelativePaths.qll        | 3 ++-
 java/ql/lib/semmle/code/java/security/SqlUnescapedLib.qll      | 3 ++-
 .../src/Violations of Best Practice/Dead Code/DeadLocals.qll   | 2 +-
 7 files changed, 13 insertions(+), 7 deletions(-)

diff --git a/java/ql/lib/semmle/code/java/frameworks/Properties.qll b/java/ql/lib/semmle/code/java/frameworks/Properties.qll
index 0c7b83b2e52..096e3bbb43c 100644
--- a/java/ql/lib/semmle/code/java/frameworks/Properties.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/Properties.qll
@@ -1,4 +1,5 @@
-/* Definitions related to `java.util.Properties`. */
+/** Definitions related to `java.util.Properties`. */
+
 import semmle.code.java.Type
 private import semmle.code.java.dataflow.FlowSteps
 
diff --git a/java/ql/lib/semmle/code/java/frameworks/Rmi.qll b/java/ql/lib/semmle/code/java/frameworks/Rmi.qll
index 19428afae92..3b96ccd828d 100644
--- a/java/ql/lib/semmle/code/java/frameworks/Rmi.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/Rmi.qll
@@ -1,4 +1,5 @@
-/* Remote Method Invocation. */
+/** Remote Method Invocation. */
+
 import java
 
 /** The interface `java.rmi.Remote`. */
diff --git a/java/ql/lib/semmle/code/java/frameworks/apache/Exec.qll b/java/ql/lib/semmle/code/java/frameworks/apache/Exec.qll
index 978154d3274..5f44f878eb2 100644
--- a/java/ql/lib/semmle/code/java/frameworks/apache/Exec.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/apache/Exec.qll
@@ -1,4 +1,5 @@
-/* Definitions related to the Apache Commons Exec library. */
+/** Definitions related to the Apache Commons Exec library. */
+
 import semmle.code.java.Type
 import semmle.code.java.security.ExternalProcess
 
diff --git a/java/ql/lib/semmle/code/java/security/ExternalProcess.qll b/java/ql/lib/semmle/code/java/security/ExternalProcess.qll
index fe5e46d5efb..9a061c7a419 100644
--- a/java/ql/lib/semmle/code/java/security/ExternalProcess.qll
+++ b/java/ql/lib/semmle/code/java/security/ExternalProcess.qll
@@ -1,4 +1,5 @@
-/* Definitions related to external processes. */
+/** Definitions related to external processes. */
+
 import semmle.code.java.Member
 
 private module Instances {
diff --git a/java/ql/lib/semmle/code/java/security/RelativePaths.qll b/java/ql/lib/semmle/code/java/security/RelativePaths.qll
index 45473997489..458bb7aea5d 100644
--- a/java/ql/lib/semmle/code/java/security/RelativePaths.qll
+++ b/java/ql/lib/semmle/code/java/security/RelativePaths.qll
@@ -1,4 +1,5 @@
-/* Detection of strings and arrays of strings containing relative paths. */
+/** Detection of strings and arrays of strings containing relative paths. */
+
 import java
 
 /**
diff --git a/java/ql/lib/semmle/code/java/security/SqlUnescapedLib.qll b/java/ql/lib/semmle/code/java/security/SqlUnescapedLib.qll
index d76c77c499c..3f5810e141b 100644
--- a/java/ql/lib/semmle/code/java/security/SqlUnescapedLib.qll
+++ b/java/ql/lib/semmle/code/java/security/SqlUnescapedLib.qll
@@ -1,4 +1,5 @@
-/* Definitions used by `SqlUnescaped.ql`. */
+/** Definitions used by `SqlUnescaped.ql`. */
+
 import semmle.code.java.security.ControlledString
 import semmle.code.java.dataflow.TaintTracking
 
diff --git a/java/ql/src/Violations of Best Practice/Dead Code/DeadLocals.qll b/java/ql/src/Violations of Best Practice/Dead Code/DeadLocals.qll
index 82933aa9bac..8837b207e20 100644
--- a/java/ql/src/Violations of Best Practice/Dead Code/DeadLocals.qll	
+++ b/java/ql/src/Violations of Best Practice/Dead Code/DeadLocals.qll	
@@ -1,4 +1,4 @@
-/*
+/**
  * Provides classes and predicates for "dead locals": which variables are used, which assignments are useless, etc.
  */
 

From 9eaeaf732270d97fd30f30131587efa6785c76e6 Mon Sep 17 00:00:00 2001
From: erik-krogh <erik-krogh@github.com>
Date: Wed, 16 Nov 2022 13:41:52 +0100
Subject: [PATCH 0387/1420] ATM: convert some block-comments that could be
 QLDoc to QLDoc

---
 .../lib/experimental/adaptivethreatmodeling/ATMConfig.qll       | 2 +-
 .../adaptivethreatmodeling/AdaptiveThreatModeling.qll           | 2 +-
 .../lib/experimental/adaptivethreatmodeling/BaseScoring.qll     | 2 +-
 .../lib/experimental/adaptivethreatmodeling/CoreKnowledge.qll   | 2 +-
 .../experimental/adaptivethreatmodeling/EndpointFeatures.qll    | 2 +-
 .../lib/experimental/adaptivethreatmodeling/EndpointScoring.qll | 2 +-
 .../adaptivethreatmodeling/FunctionBodyFeatures.qll             | 2 +-
 .../modelbuilding/counting/CountAlertsAndSinks.qll              | 2 +-
 .../modelbuilding/extraction/Exclusions.qll                     | 2 +-
 .../modelbuilding/extraction/ExtractEndpointDataTraining.qll    | 2 +-
 10 files changed, 10 insertions(+), 10 deletions(-)

diff --git a/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/ATMConfig.qll b/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/ATMConfig.qll
index 55d75ad2e4d..b9b077380fe 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/ATMConfig.qll
+++ b/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/ATMConfig.qll
@@ -1,4 +1,4 @@
-/*
+/**
  * For internal use only.
  *
  * Configures boosting for adaptive threat modeling (ATM).
diff --git a/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/AdaptiveThreatModeling.qll b/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/AdaptiveThreatModeling.qll
index 002a5c8fe8e..0168d167509 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/AdaptiveThreatModeling.qll
+++ b/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/AdaptiveThreatModeling.qll
@@ -1,4 +1,4 @@
-/*
+/**
  * For internal use only.
  *
  * Provides information about the results of boosted queries for use in adaptive threat modeling (ATM).
diff --git a/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/BaseScoring.qll b/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/BaseScoring.qll
index a6787196bbb..fb9b017b84c 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/BaseScoring.qll
+++ b/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/BaseScoring.qll
@@ -1,4 +1,4 @@
-/*
+/**
  * For internal use only.
  *
  * Provides shared scoring functionality for use in adaptive threat modeling (ATM).
diff --git a/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/CoreKnowledge.qll b/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/CoreKnowledge.qll
index e569fb3dc96..274bab00221 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/CoreKnowledge.qll
+++ b/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/CoreKnowledge.qll
@@ -1,4 +1,4 @@
-/*
+/**
  * For internal use only.
  *
  * Provides predicates that expose the knowledge of models
diff --git a/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/EndpointFeatures.qll b/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/EndpointFeatures.qll
index 60a490cc454..8b4d9147a00 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/EndpointFeatures.qll
+++ b/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/EndpointFeatures.qll
@@ -1,4 +1,4 @@
-/*
+/**
  * For internal use only.
  *
  * Extracts data about the database for use in adaptive threat modeling (ATM).
diff --git a/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/EndpointScoring.qll b/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/EndpointScoring.qll
index 7f9e53a5465..6746c06db7b 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/EndpointScoring.qll
+++ b/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/EndpointScoring.qll
@@ -1,4 +1,4 @@
-/*
+/**
  * For internal use only.
  *
  * Provides an implementation of scoring alerts for use in adaptive threat modeling (ATM).
diff --git a/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/FunctionBodyFeatures.qll b/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/FunctionBodyFeatures.qll
index 4464842bc38..62531a9d423 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/FunctionBodyFeatures.qll
+++ b/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/FunctionBodyFeatures.qll
@@ -1,4 +1,4 @@
-/*
+/**
  * FunctionBodyFeatures.qll
  *
  * Contains logic relating to the `enclosingFunctionBody` and `enclosingFunctionName` features.
diff --git a/javascript/ql/experimental/adaptivethreatmodeling/modelbuilding/counting/CountAlertsAndSinks.qll b/javascript/ql/experimental/adaptivethreatmodeling/modelbuilding/counting/CountAlertsAndSinks.qll
index 2549db106f4..a4f52b1cf78 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/modelbuilding/counting/CountAlertsAndSinks.qll
+++ b/javascript/ql/experimental/adaptivethreatmodeling/modelbuilding/counting/CountAlertsAndSinks.qll
@@ -1,4 +1,4 @@
-/*
+/**
  * For internal use only.
  *
  *
diff --git a/javascript/ql/experimental/adaptivethreatmodeling/modelbuilding/extraction/Exclusions.qll b/javascript/ql/experimental/adaptivethreatmodeling/modelbuilding/extraction/Exclusions.qll
index 79d3486e2db..822b2d7ea62 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/modelbuilding/extraction/Exclusions.qll
+++ b/javascript/ql/experimental/adaptivethreatmodeling/modelbuilding/extraction/Exclusions.qll
@@ -1,4 +1,4 @@
-/*
+/**
  * For internal use only.
  *
  * Defines files that should be excluded from the evaluation of ML models.
diff --git a/javascript/ql/experimental/adaptivethreatmodeling/modelbuilding/extraction/ExtractEndpointDataTraining.qll b/javascript/ql/experimental/adaptivethreatmodeling/modelbuilding/extraction/ExtractEndpointDataTraining.qll
index 153afdb1b45..49f1f44e836 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/modelbuilding/extraction/ExtractEndpointDataTraining.qll
+++ b/javascript/ql/experimental/adaptivethreatmodeling/modelbuilding/extraction/ExtractEndpointDataTraining.qll
@@ -1,4 +1,4 @@
-/*
+/**
  * For internal use only.
  *
  * Extracts training data we can use to train ML models for ML-powered queries.

From fe49e41d7b8b4ed6ab137acb32f7b0dc6089a454 Mon Sep 17 00:00:00 2001
From: erik-krogh <erik-krogh@github.com>
Date: Wed, 16 Nov 2022 13:42:12 +0100
Subject: [PATCH 0388/1420] JS: convert some block-comments that could be QLDoc
 to QLDoc

---
 .../ql/test/tutorials/Validating RAML-based APIs/Osprey.qll    | 3 ++-
 .../ql/test/tutorials/Validating RAML-based APIs/RAML.qll      | 3 ++-
 2 files changed, 4 insertions(+), 2 deletions(-)

diff --git a/javascript/ql/test/tutorials/Validating RAML-based APIs/Osprey.qll b/javascript/ql/test/tutorials/Validating RAML-based APIs/Osprey.qll
index d7c7df8e1fd..bf4d1dc2067 100644
--- a/javascript/ql/test/tutorials/Validating RAML-based APIs/Osprey.qll	
+++ b/javascript/ql/test/tutorials/Validating RAML-based APIs/Osprey.qll	
@@ -1,4 +1,5 @@
-/* Model of Osprey API implementations. */
+/** Model of Osprey API implementations. */
+
 import javascript
 import HTTP
 
diff --git a/javascript/ql/test/tutorials/Validating RAML-based APIs/RAML.qll b/javascript/ql/test/tutorials/Validating RAML-based APIs/RAML.qll
index a871d5e751e..b110a339046 100644
--- a/javascript/ql/test/tutorials/Validating RAML-based APIs/RAML.qll	
+++ b/javascript/ql/test/tutorials/Validating RAML-based APIs/RAML.qll	
@@ -1,4 +1,5 @@
-/* Model of RAML specifications. */
+/** Model of RAML specifications. */
+
 import javascript
 import HTTP
 

From 25b32860baae8cf75d455c0fa871f459f1f64a0b Mon Sep 17 00:00:00 2001
From: erik-krogh <erik-krogh@github.com>
Date: Wed, 16 Nov 2022 13:42:43 +0100
Subject: [PATCH 0389/1420] Py: convert a block-comment that could be QLDoc to
 QLDoc

---
 python/ql/lib/semmle/python/TestUtils.qll | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/python/ql/lib/semmle/python/TestUtils.qll b/python/ql/lib/semmle/python/TestUtils.qll
index d7b8fc24676..8b1ae58be4f 100644
--- a/python/ql/lib/semmle/python/TestUtils.qll
+++ b/python/ql/lib/semmle/python/TestUtils.qll
@@ -1,4 +1,5 @@
-/* This file contains test-related utility functions */
+/** This file contains test-related utility functions */
+
 import python
 
 /** Removes everything up to the occurrence of `sub` in the string `str` */

From 76c6943159d3823df460f80a260a4f20a63e9eba Mon Sep 17 00:00:00 2001
From: erik-krogh <erik-krogh@github.com>
Date: Wed, 16 Nov 2022 13:48:41 +0100
Subject: [PATCH 0390/1420] add stats for @satisfies_expr

---
 javascript/ql/lib/semmlecode.javascript.dbscheme.stats | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/javascript/ql/lib/semmlecode.javascript.dbscheme.stats b/javascript/ql/lib/semmlecode.javascript.dbscheme.stats
index ed051cd16ac..7e0b98ea867 100644
--- a/javascript/ql/lib/semmlecode.javascript.dbscheme.stats
+++ b/javascript/ql/lib/semmlecode.javascript.dbscheme.stats
@@ -450,6 +450,10 @@
 <v>100</v>
 </e>
 <e>
+<k>@satisfies_expr</k>
+<v>100</v>
+</e>
+<e>
 <k>@preinc_expr</k>
 <v>1792</v>
 </e>

From 54a6f066b3a5440be0f01336942f285c812a9d80 Mon Sep 17 00:00:00 2001
From: Tom Hvitved <hvitved@github.com>
Date: Wed, 16 Nov 2022 09:45:53 +0100
Subject: [PATCH 0391/1420] Address review comment

---
 .../Semmle.Extraction.CSharp/Entities/UserOperator.cs  | 10 +++++++---
 1 file changed, 7 insertions(+), 3 deletions(-)

diff --git a/csharp/extractor/Semmle.Extraction.CSharp/Entities/UserOperator.cs b/csharp/extractor/Semmle.Extraction.CSharp/Entities/UserOperator.cs
index 9f0d3c8f4c5..536af5065ed 100644
--- a/csharp/extractor/Semmle.Extraction.CSharp/Entities/UserOperator.cs
+++ b/csharp/extractor/Semmle.Extraction.CSharp/Entities/UserOperator.cs
@@ -162,10 +162,14 @@ namespace Semmle.Extraction.CSharp.Entities
                 case "op_False":
                     operatorName = "false";
                     break;
-                case var @checked when Regex.IsMatch(@checked, "^op_Checked.*"):
-                    operatorName = @checked;
-                    break;
                 default:
+                    var match = Regex.Match(methodName, "^op_Checked(.*)$");
+                    if (match.Success)
+                    {
+                        OperatorSymbol("op_" + match.Groups[1], out var uncheckedName);
+                        operatorName = "checked " + uncheckedName;
+                        break;
+                    }
                     operatorName = methodName;
                     success = false;
                     break;

From 782c82a2d3921def4d2e7ecf0958e5adb35ebe71 Mon Sep 17 00:00:00 2001
From: Tamas Vajk <tamasvajk@github.com>
Date: Wed, 16 Nov 2022 14:30:54 +0100
Subject: [PATCH 0392/1420] Kotlin: Add test case for non serializable inner
 class query

---
 .../NonSerializableInnerClass.expected                |  2 ++
 .../NonSerializableInnerClass.qlref                   |  1 +
 .../NonSerializableInnerClassTest.kt                  | 11 +++++++++++
 3 files changed, 14 insertions(+)
 create mode 100644 java/ql/test/kotlin/query-tests/NonSerializableInnerClass/NonSerializableInnerClass.expected
 create mode 100644 java/ql/test/kotlin/query-tests/NonSerializableInnerClass/NonSerializableInnerClass.qlref
 create mode 100644 java/ql/test/kotlin/query-tests/NonSerializableInnerClass/NonSerializableInnerClassTest.kt

diff --git a/java/ql/test/kotlin/query-tests/NonSerializableInnerClass/NonSerializableInnerClass.expected b/java/ql/test/kotlin/query-tests/NonSerializableInnerClass/NonSerializableInnerClass.expected
new file mode 100644
index 00000000000..a8db2188711
--- /dev/null
+++ b/java/ql/test/kotlin/query-tests/NonSerializableInnerClass/NonSerializableInnerClass.expected
@@ -0,0 +1,2 @@
+| NonSerializableInnerClassTest.kt:4:3:5:3 | X | Serializable inner class of non-serializable class $@. Consider making the class static or implementing readObject() and writeObject(). | NonSerializableInnerClassTest.kt:3:1:6:1 | A | A |
+| NonSerializableInnerClassTest.kt:9:3:10:3 | X | Serializable inner class of non-serializable class $@. Consider making the class static or implementing readObject() and writeObject(). | NonSerializableInnerClassTest.kt:8:1:11:1 | B | B |
diff --git a/java/ql/test/kotlin/query-tests/NonSerializableInnerClass/NonSerializableInnerClass.qlref b/java/ql/test/kotlin/query-tests/NonSerializableInnerClass/NonSerializableInnerClass.qlref
new file mode 100644
index 00000000000..4cbb0995764
--- /dev/null
+++ b/java/ql/test/kotlin/query-tests/NonSerializableInnerClass/NonSerializableInnerClass.qlref
@@ -0,0 +1 @@
+Likely Bugs/Serialization/NonSerializableInnerClass.ql
diff --git a/java/ql/test/kotlin/query-tests/NonSerializableInnerClass/NonSerializableInnerClassTest.kt b/java/ql/test/kotlin/query-tests/NonSerializableInnerClass/NonSerializableInnerClassTest.kt
new file mode 100644
index 00000000000..3c3d72d0291
--- /dev/null
+++ b/java/ql/test/kotlin/query-tests/NonSerializableInnerClass/NonSerializableInnerClassTest.kt
@@ -0,0 +1,11 @@
+import java.io.Serializable
+
+class A {
+  class X : Serializable {
+  }
+}
+
+class B {
+  inner class X : Serializable {
+  }
+}

From 7a0e2480963e1dc4a0e84afb999690f0db891de5 Mon Sep 17 00:00:00 2001
From: Tamas Vajk <tamasvajk@github.com>
Date: Wed, 16 Nov 2022 14:46:01 +0100
Subject: [PATCH 0393/1420] Exclude .kt files from serializable inner class
 query

---
 .../src/Likely Bugs/Serialization/NonSerializableInnerClass.ql  | 2 +-
 .../NonSerializableInnerClass.expected                          | 2 --
 2 files changed, 1 insertion(+), 3 deletions(-)

diff --git a/java/ql/src/Likely Bugs/Serialization/NonSerializableInnerClass.ql b/java/ql/src/Likely Bugs/Serialization/NonSerializableInnerClass.ql
index 1bf54abb89f..8081c551eed 100644
--- a/java/ql/src/Likely Bugs/Serialization/NonSerializableInnerClass.ql	
+++ b/java/ql/src/Likely Bugs/Serialization/NonSerializableInnerClass.ql	
@@ -77,7 +77,7 @@ predicate exceptions(NestedClass inner) {
 
 from NestedClass inner, Class outer, string advice
 where
-  inner.fromSource() and
+  inner.getFile().isJavaSourceFile() and
   isSerializable(inner) and
   outer = enclosingInstanceType+(inner) and
   not isSerializable(outer) and
diff --git a/java/ql/test/kotlin/query-tests/NonSerializableInnerClass/NonSerializableInnerClass.expected b/java/ql/test/kotlin/query-tests/NonSerializableInnerClass/NonSerializableInnerClass.expected
index a8db2188711..e69de29bb2d 100644
--- a/java/ql/test/kotlin/query-tests/NonSerializableInnerClass/NonSerializableInnerClass.expected
+++ b/java/ql/test/kotlin/query-tests/NonSerializableInnerClass/NonSerializableInnerClass.expected
@@ -1,2 +0,0 @@
-| NonSerializableInnerClassTest.kt:4:3:5:3 | X | Serializable inner class of non-serializable class $@. Consider making the class static or implementing readObject() and writeObject(). | NonSerializableInnerClassTest.kt:3:1:6:1 | A | A |
-| NonSerializableInnerClassTest.kt:9:3:10:3 | X | Serializable inner class of non-serializable class $@. Consider making the class static or implementing readObject() and writeObject(). | NonSerializableInnerClassTest.kt:8:1:11:1 | B | B |

From d6a395ba373fba154f2a7b3b6dbd42a007aa56ce Mon Sep 17 00:00:00 2001
From: Chris Smowton <smowton@github.com>
Date: Wed, 16 Nov 2022 11:38:36 +0000
Subject: [PATCH 0394/1420] Remove non-longer-needed expected diagnostics

---
 java/ql/test/kotlin/library-tests/annotation_classes/def.kt    | 2 --
 java/ql/test/kotlin/library-tests/annotations/jvmName/test.kt  | 2 --
 .../library-tests/arrays-with-variances/takesArrayList.kt      | 2 --
 java/ql/test/kotlin/library-tests/extensions/extensions.kt     | 2 --
 .../ql/test/kotlin/library-tests/generics-location/generics.kt | 2 --
 .../internal-constructor-called-from-java/test.kt              | 2 --
 .../ql/test/kotlin/library-tests/internal-public-alias/test.kt | 2 --
 java/ql/test/kotlin/library-tests/java_and_kotlin/Kotlin.kt    | 2 --
 .../kotlin/library-tests/java_and_kotlin_internal/Kotlin.kt    | 2 --
 java/ql/test/kotlin/library-tests/jvmoverloads_flow/test.kt    | 2 --
 .../ql/test/kotlin/library-tests/jvmoverloads_generics/test.kt | 2 --
 .../library-tests/jvmstatic-annotation/PrintAst.expected       | 3 ---
 java/ql/test/kotlin/library-tests/jvmstatic-annotation/test.kt | 2 --
 13 files changed, 27 deletions(-)

diff --git a/java/ql/test/kotlin/library-tests/annotation_classes/def.kt b/java/ql/test/kotlin/library-tests/annotation_classes/def.kt
index 46c2c2055d4..556973c4728 100644
--- a/java/ql/test/kotlin/library-tests/annotation_classes/def.kt
+++ b/java/ql/test/kotlin/library-tests/annotation_classes/def.kt
@@ -1,5 +1,3 @@
 
 annotation class SomeAnnotation
 
-// Diagnostic Matches: Incomplete annotation: @kotlin.Metadata(%)
-// Diagnostic Matches: Unknown location for kotlin.Metadata
diff --git a/java/ql/test/kotlin/library-tests/annotations/jvmName/test.kt b/java/ql/test/kotlin/library-tests/annotations/jvmName/test.kt
index b4a4bcf38be..edbca12e011 100644
--- a/java/ql/test/kotlin/library-tests/annotations/jvmName/test.kt
+++ b/java/ql/test/kotlin/library-tests/annotations/jvmName/test.kt
@@ -17,10 +17,8 @@ annotation class Ann(
     val p: Int,
     @get:JvmName("w") val q: Int)
 
-// Diagnostic Matches: Incomplete annotation: @kotlin.Metadata(%)
 // Diagnostic Matches: Incomplete annotation: @kotlin.jvm.JvmName(name="changeY")
 // Diagnostic Matches: Incomplete annotation: @kotlin.jvm.JvmName(name="getX_prop")
 // Diagnostic Matches: Incomplete annotation: @kotlin.jvm.JvmName(name="method")
 // Diagnostic Matches: Incomplete annotation: @kotlin.jvm.JvmName(name="y")
-// Diagnostic Matches: Unknown location for kotlin.Metadata
 // Diagnostic Matches: Unknown location for kotlin.jvm.JvmName
diff --git a/java/ql/test/kotlin/library-tests/arrays-with-variances/takesArrayList.kt b/java/ql/test/kotlin/library-tests/arrays-with-variances/takesArrayList.kt
index 7f529df2dc9..009b1ae12f4 100644
--- a/java/ql/test/kotlin/library-tests/arrays-with-variances/takesArrayList.kt
+++ b/java/ql/test/kotlin/library-tests/arrays-with-variances/takesArrayList.kt
@@ -111,7 +111,5 @@ public class TakesArrayList {
 
 }
 
-// Diagnostic Matches: Incomplete annotation: @kotlin.Metadata(%)
-// Diagnostic Matches: Unknown location for kotlin.Metadata
 // Diagnostic Matches: Completion failure for type: org.jetbrains.annotations.NotNull
 // Diagnostic Matches: Unknown location for org.jetbrains.annotations.NotNull
diff --git a/java/ql/test/kotlin/library-tests/extensions/extensions.kt b/java/ql/test/kotlin/library-tests/extensions/extensions.kt
index 8742f55e7b9..c80841a849b 100644
--- a/java/ql/test/kotlin/library-tests/extensions/extensions.kt
+++ b/java/ql/test/kotlin/library-tests/extensions/extensions.kt
@@ -32,6 +32,4 @@ fun foo() {
 }
 
 // Diagnostic Matches: Completion failure for type: org.jetbrains.annotations.NotNull
-// Diagnostic Matches: Incomplete annotation: @kotlin.Metadata(%)
-// Diagnostic Matches: Unknown location for kotlin.Metadata
 // Diagnostic Matches: Unknown location for org.jetbrains.annotations.NotNull
diff --git a/java/ql/test/kotlin/library-tests/generics-location/generics.kt b/java/ql/test/kotlin/library-tests/generics-location/generics.kt
index dff06636bb1..05ff48bc323 100644
--- a/java/ql/test/kotlin/library-tests/generics-location/generics.kt
+++ b/java/ql/test/kotlin/library-tests/generics-location/generics.kt
@@ -10,5 +10,3 @@ class B<T> {
     }
 }
 
-// Diagnostic Matches: Incomplete annotation: @kotlin.Metadata(%)
-// Diagnostic Matches: Unknown location for kotlin.Metadata
diff --git a/java/ql/test/kotlin/library-tests/internal-constructor-called-from-java/test.kt b/java/ql/test/kotlin/library-tests/internal-constructor-called-from-java/test.kt
index b9c4397e920..905d9852632 100644
--- a/java/ql/test/kotlin/library-tests/internal-constructor-called-from-java/test.kt
+++ b/java/ql/test/kotlin/library-tests/internal-constructor-called-from-java/test.kt
@@ -4,5 +4,3 @@ public class Test() {
 
 }
 
-// Diagnostic Matches: Incomplete annotation: @kotlin.Metadata(%)
-// Diagnostic Matches: Unknown location for kotlin.Metadata
diff --git a/java/ql/test/kotlin/library-tests/internal-public-alias/test.kt b/java/ql/test/kotlin/library-tests/internal-public-alias/test.kt
index f363f769e50..216d3b3450d 100644
--- a/java/ql/test/kotlin/library-tests/internal-public-alias/test.kt
+++ b/java/ql/test/kotlin/library-tests/internal-public-alias/test.kt
@@ -11,5 +11,3 @@ public class Test {
 
 }
 
-// Diagnostic Matches: Incomplete annotation: @kotlin.Metadata(%)
-// Diagnostic Matches: Unknown location for kotlin.Metadata
diff --git a/java/ql/test/kotlin/library-tests/java_and_kotlin/Kotlin.kt b/java/ql/test/kotlin/library-tests/java_and_kotlin/Kotlin.kt
index 1686e09e02d..61c48cf8a5c 100644
--- a/java/ql/test/kotlin/library-tests/java_and_kotlin/Kotlin.kt
+++ b/java/ql/test/kotlin/library-tests/java_and_kotlin/Kotlin.kt
@@ -16,7 +16,5 @@ class Dkotlin : Base() {
 
 // Diagnostic Matches: Completion failure for type: org.jetbrains.annotations.NotNull
 // Diagnostic Matches: Completion failure for type: org.jetbrains.annotations.Nullable
-// Diagnostic Matches: Incomplete annotation: @kotlin.Metadata(%)
-// Diagnostic Matches: Unknown location for kotlin.Metadata
 // Diagnostic Matches: Unknown location for org.jetbrains.annotations.NotNull
 // Diagnostic Matches: Unknown location for org.jetbrains.annotations.Nullable
diff --git a/java/ql/test/kotlin/library-tests/java_and_kotlin_internal/Kotlin.kt b/java/ql/test/kotlin/library-tests/java_and_kotlin_internal/Kotlin.kt
index 4cdedefbbc8..09297fd286e 100644
--- a/java/ql/test/kotlin/library-tests/java_and_kotlin_internal/Kotlin.kt
+++ b/java/ql/test/kotlin/library-tests/java_and_kotlin_internal/Kotlin.kt
@@ -3,5 +3,3 @@ public class Kotlin {
 	}
 }
 
-// Diagnostic Matches: Incomplete annotation: @kotlin.Metadata(%)
-// Diagnostic Matches: Unknown location for kotlin.Metadata
diff --git a/java/ql/test/kotlin/library-tests/jvmoverloads_flow/test.kt b/java/ql/test/kotlin/library-tests/jvmoverloads_flow/test.kt
index f7e42c682df..fcd8e669425 100644
--- a/java/ql/test/kotlin/library-tests/jvmoverloads_flow/test.kt
+++ b/java/ql/test/kotlin/library-tests/jvmoverloads_flow/test.kt
@@ -86,8 +86,6 @@ public class TestDefaultParameterReference {
 
 }
 
-// Diagnostic Matches: Incomplete annotation: @kotlin.Metadata(%)
-// Diagnostic Matches: Unknown location for kotlin.Metadata
 // Diagnostic Matches: Completion failure for type: org.jetbrains.annotations.NotNull
 // Diagnostic Matches: Unknown location for org.jetbrains.annotations.NotNull
 // Diagnostic Matches: Completion failure for type: kotlin.jvm.JvmOverloads
diff --git a/java/ql/test/kotlin/library-tests/jvmoverloads_generics/test.kt b/java/ql/test/kotlin/library-tests/jvmoverloads_generics/test.kt
index ee49968eb57..eaa561d5ccf 100644
--- a/java/ql/test/kotlin/library-tests/jvmoverloads_generics/test.kt
+++ b/java/ql/test/kotlin/library-tests/jvmoverloads_generics/test.kt
@@ -5,8 +5,6 @@ public class A {
 
 }
 
-// Diagnostic Matches: Incomplete annotation: @kotlin.Metadata(%)
-// Diagnostic Matches: Unknown location for kotlin.Metadata
 // Diagnostic Matches: Completion failure for type: kotlin.jvm.JvmOverloads
 // Diagnostic Matches: Completion failure for type: org.jetbrains.annotations.Nullable
 // Diagnostic Matches: Unknown location for kotlin.jvm.JvmOverloads
diff --git a/java/ql/test/kotlin/library-tests/jvmstatic-annotation/PrintAst.expected b/java/ql/test/kotlin/library-tests/jvmstatic-annotation/PrintAst.expected
index 1376baa4f1d..6386ec036fb 100644
--- a/java/ql/test/kotlin/library-tests/jvmstatic-annotation/PrintAst.expected
+++ b/java/ql/test/kotlin/library-tests/jvmstatic-annotation/PrintAst.expected
@@ -141,13 +141,11 @@ test.kt:
 #   65|             0: [MethodAccess] getPropWithStaticGetter(...)
 #   65|               -1: [TypeAccess] NonCompanion
 #    9|   2: [Class] HasCompanion
-#-----|     -3: (Annotations)
 #    9|     2: [Constructor] HasCompanion
 #    9|       5: [BlockStmt] { ... }
 #    9|         0: [SuperConstructorInvocationStmt] super(...)
 #    9|         1: [BlockStmt] { ... }
 #   11|     3: [Class] Companion
-#-----|       -3: (Annotations)
 #   11|       1: [Constructor] Companion
 #   11|         5: [BlockStmt] { ... }
 #   11|           0: [SuperConstructorInvocationStmt] super(...)
@@ -318,7 +316,6 @@ test.kt:
 #   25|               -1: [TypeAccess] HasCompanion
 #   25|             0: [VarAccess] s
 #   31|   3: [Class] NonCompanion
-#-----|     -3: (Annotations)
 #   31|     2: [Constructor] NonCompanion
 #   31|       5: [BlockStmt] { ... }
 #   31|         0: [SuperConstructorInvocationStmt] super(...)
diff --git a/java/ql/test/kotlin/library-tests/jvmstatic-annotation/test.kt b/java/ql/test/kotlin/library-tests/jvmstatic-annotation/test.kt
index 6f7014723a2..211fceb0912 100644
--- a/java/ql/test/kotlin/library-tests/jvmstatic-annotation/test.kt
+++ b/java/ql/test/kotlin/library-tests/jvmstatic-annotation/test.kt
@@ -66,8 +66,6 @@ fun externalUser() {
 
 }
 
-// Diagnostic Matches: Incomplete annotation: @kotlin.Metadata(%)
-// Diagnostic Matches: Unknown location for kotlin.Metadata
 // Diagnostic Matches: Completion failure for type: kotlin.jvm.JvmStatic
 // Diagnostic Matches: Completion failure for type: org.jetbrains.annotations.NotNull
 // Diagnostic Matches: Unknown location for kotlin.jvm.JvmStatic

From 35078738bc44886c56251fc3774bd45d9417db60 Mon Sep 17 00:00:00 2001
From: Tamas Vajk <tamasvajk@github.com>
Date: Wed, 16 Nov 2022 14:51:21 +0100
Subject: [PATCH 0395/1420] Kotlin: Add FP test case for useless parameter
 query

---
 java/ql/test/kotlin/query-tests/UselessParameter/Test.kt       | 3 +++
 .../query-tests/UselessParameter/UselessParameter.expected     | 1 +
 2 files changed, 4 insertions(+)

diff --git a/java/ql/test/kotlin/query-tests/UselessParameter/Test.kt b/java/ql/test/kotlin/query-tests/UselessParameter/Test.kt
index 4e41e048aa4..d5e6c5ef7b7 100644
--- a/java/ql/test/kotlin/query-tests/UselessParameter/Test.kt
+++ b/java/ql/test/kotlin/query-tests/UselessParameter/Test.kt
@@ -19,3 +19,6 @@ object O {}
 fun C.fn() {}
 fun C.Companion.fn() {}
 fun O.fn() {}
+
+@Suppress("UNUSED_PARAMETER")
+fun fn2(a: Int) {}
diff --git a/java/ql/test/kotlin/query-tests/UselessParameter/UselessParameter.expected b/java/ql/test/kotlin/query-tests/UselessParameter/UselessParameter.expected
index 72b3348a019..b43c7c299f2 100644
--- a/java/ql/test/kotlin/query-tests/UselessParameter/UselessParameter.expected
+++ b/java/ql/test/kotlin/query-tests/UselessParameter/UselessParameter.expected
@@ -1,2 +1,3 @@
 | Test.kt:11:8:11:18 | a | The parameter 'a' is never used. |
 | Test.kt:19:5:19:5 | <this> | The parameter '<this>' is never used. |
+| Test.kt:24:9:24:14 | a | The parameter 'a' is never used. |

From 48c37a2c0f22b972afd0178412ce49ceb425efc5 Mon Sep 17 00:00:00 2001
From: Tamas Vajk <tamasvajk@github.com>
Date: Wed, 16 Nov 2022 14:51:49 +0100
Subject: [PATCH 0396/1420] Exclude .kt files from useless parameter query

---
 java/ql/lib/semmle/code/java/deadcode/DeadCode.qll             | 2 +-
 .../query-tests/UselessParameter/UselessParameter.expected     | 3 ---
 2 files changed, 1 insertion(+), 4 deletions(-)

diff --git a/java/ql/lib/semmle/code/java/deadcode/DeadCode.qll b/java/ql/lib/semmle/code/java/deadcode/DeadCode.qll
index 6296d255103..d20ae81b00b 100644
--- a/java/ql/lib/semmle/code/java/deadcode/DeadCode.qll
+++ b/java/ql/lib/semmle/code/java/deadcode/DeadCode.qll
@@ -274,7 +274,7 @@ class DeadMethod extends Callable {
 
 class RootdefCallable extends Callable {
   RootdefCallable() {
-    this.fromSource() and
+    this.getFile().isJavaSourceFile() and
     not this.(Method).overridesOrInstantiates(_)
   }
 
diff --git a/java/ql/test/kotlin/query-tests/UselessParameter/UselessParameter.expected b/java/ql/test/kotlin/query-tests/UselessParameter/UselessParameter.expected
index b43c7c299f2..e69de29bb2d 100644
--- a/java/ql/test/kotlin/query-tests/UselessParameter/UselessParameter.expected
+++ b/java/ql/test/kotlin/query-tests/UselessParameter/UselessParameter.expected
@@ -1,3 +0,0 @@
-| Test.kt:11:8:11:18 | a | The parameter 'a' is never used. |
-| Test.kt:19:5:19:5 | <this> | The parameter '<this>' is never used. |
-| Test.kt:24:9:24:14 | a | The parameter 'a' is never used. |

From e547be5e9acebac6e1d657e16d0a3c12ba4dcbe5 Mon Sep 17 00:00:00 2001
From: Tamas Vajk <tamasvajk@github.com>
Date: Wed, 16 Nov 2022 14:58:36 +0100
Subject: [PATCH 0397/1420] Kotlin: Add FP test case for misnamed reftype query

---
 .../NamingConventionsRefTypes.expected               |  3 +++
 .../NamingConventionsRefTypes.qlref                  |  1 +
 .../query-tests/NamingConventionsRefTypes/Test.kt    | 12 ++++++++++++
 3 files changed, 16 insertions(+)
 create mode 100644 java/ql/test/kotlin/query-tests/NamingConventionsRefTypes/NamingConventionsRefTypes.expected
 create mode 100644 java/ql/test/kotlin/query-tests/NamingConventionsRefTypes/NamingConventionsRefTypes.qlref
 create mode 100644 java/ql/test/kotlin/query-tests/NamingConventionsRefTypes/Test.kt

diff --git a/java/ql/test/kotlin/query-tests/NamingConventionsRefTypes/NamingConventionsRefTypes.expected b/java/ql/test/kotlin/query-tests/NamingConventionsRefTypes/NamingConventionsRefTypes.expected
new file mode 100644
index 00000000000..bc00b1c4761
--- /dev/null
+++ b/java/ql/test/kotlin/query-tests/NamingConventionsRefTypes/NamingConventionsRefTypes.expected
@@ -0,0 +1,3 @@
+| Test.kt:3:23:5:9 |  | Class and interface names should start in uppercase. |
+| Test.kt:7:9:8:9 |  | Class and interface names should start in uppercase. |
+| Test.kt:12:1:12:13 | aaaa | Class and interface names should start in uppercase. |
diff --git a/java/ql/test/kotlin/query-tests/NamingConventionsRefTypes/NamingConventionsRefTypes.qlref b/java/ql/test/kotlin/query-tests/NamingConventionsRefTypes/NamingConventionsRefTypes.qlref
new file mode 100644
index 00000000000..6f76aed32cb
--- /dev/null
+++ b/java/ql/test/kotlin/query-tests/NamingConventionsRefTypes/NamingConventionsRefTypes.qlref
@@ -0,0 +1 @@
+Advisory/Naming/NamingConventionsRefTypes.ql
\ No newline at end of file
diff --git a/java/ql/test/kotlin/query-tests/NamingConventionsRefTypes/Test.kt b/java/ql/test/kotlin/query-tests/NamingConventionsRefTypes/Test.kt
new file mode 100644
index 00000000000..f62497d59c6
--- /dev/null
+++ b/java/ql/test/kotlin/query-tests/NamingConventionsRefTypes/Test.kt
@@ -0,0 +1,12 @@
+class Foo {
+    fun myFun() {
+        val nestedStr by lazy {
+            "another string"
+        }
+
+        fun nestedFun() {
+        }
+    }
+}
+
+class aaaa {}
\ No newline at end of file

From c1be93a34ce8e99d46b9084714bce80a754895c3 Mon Sep 17 00:00:00 2001
From: Tamas Vajk <tamasvajk@github.com>
Date: Wed, 16 Nov 2022 14:59:20 +0100
Subject: [PATCH 0398/1420] Exclude .kt files from misnamed reftype query

---
 java/ql/src/Advisory/Naming/NamingConventionsRefTypes.ql       | 2 +-
 .../NamingConventionsRefTypes.expected                         | 3 ---
 2 files changed, 1 insertion(+), 4 deletions(-)

diff --git a/java/ql/src/Advisory/Naming/NamingConventionsRefTypes.ql b/java/ql/src/Advisory/Naming/NamingConventionsRefTypes.ql
index 83093433123..f0d6d20b1b2 100644
--- a/java/ql/src/Advisory/Naming/NamingConventionsRefTypes.ql
+++ b/java/ql/src/Advisory/Naming/NamingConventionsRefTypes.ql
@@ -12,7 +12,7 @@ import java
 
 from RefType t
 where
-  t.fromSource() and
+  t.getFile().isJavaSourceFile() and
   not t instanceof AnonymousClass and
   not t.getName().substring(0, 1).toUpperCase() = t.getName().substring(0, 1)
 select t, "Class and interface names should start in uppercase."
diff --git a/java/ql/test/kotlin/query-tests/NamingConventionsRefTypes/NamingConventionsRefTypes.expected b/java/ql/test/kotlin/query-tests/NamingConventionsRefTypes/NamingConventionsRefTypes.expected
index bc00b1c4761..e69de29bb2d 100644
--- a/java/ql/test/kotlin/query-tests/NamingConventionsRefTypes/NamingConventionsRefTypes.expected
+++ b/java/ql/test/kotlin/query-tests/NamingConventionsRefTypes/NamingConventionsRefTypes.expected
@@ -1,3 +0,0 @@
-| Test.kt:3:23:5:9 |  | Class and interface names should start in uppercase. |
-| Test.kt:7:9:8:9 |  | Class and interface names should start in uppercase. |
-| Test.kt:12:1:12:13 | aaaa | Class and interface names should start in uppercase. |

From 5f6f72ba8e759e25e81df1818f025bad1435ca9b Mon Sep 17 00:00:00 2001
From: Tamas Vajk <tamasvajk@github.com>
Date: Wed, 16 Nov 2022 15:05:07 +0100
Subject: [PATCH 0399/1420] Kotlin: Add FP test case for ignored return value
 query

---
 .../ReturnValueIgnored.expected                  |  1 +
 .../ReturnValueIgnored/ReturnValueIgnored.qlref  |  1 +
 .../query-tests/ReturnValueIgnored/Test.kt       | 16 ++++++++++++++++
 3 files changed, 18 insertions(+)
 create mode 100644 java/ql/test/kotlin/query-tests/ReturnValueIgnored/ReturnValueIgnored.expected
 create mode 100644 java/ql/test/kotlin/query-tests/ReturnValueIgnored/ReturnValueIgnored.qlref
 create mode 100644 java/ql/test/kotlin/query-tests/ReturnValueIgnored/Test.kt

diff --git a/java/ql/test/kotlin/query-tests/ReturnValueIgnored/ReturnValueIgnored.expected b/java/ql/test/kotlin/query-tests/ReturnValueIgnored/ReturnValueIgnored.expected
new file mode 100644
index 00000000000..8088b356482
--- /dev/null
+++ b/java/ql/test/kotlin/query-tests/ReturnValueIgnored/ReturnValueIgnored.expected
@@ -0,0 +1 @@
+| Test.kt:14:29:14:33 | foo(...) | The result of the call is ignored, but 90% of calls to foo use the return value. |
diff --git a/java/ql/test/kotlin/query-tests/ReturnValueIgnored/ReturnValueIgnored.qlref b/java/ql/test/kotlin/query-tests/ReturnValueIgnored/ReturnValueIgnored.qlref
new file mode 100644
index 00000000000..ef1dc964d95
--- /dev/null
+++ b/java/ql/test/kotlin/query-tests/ReturnValueIgnored/ReturnValueIgnored.qlref
@@ -0,0 +1 @@
+Likely Bugs/Statements/ReturnValueIgnored.ql
\ No newline at end of file
diff --git a/java/ql/test/kotlin/query-tests/ReturnValueIgnored/Test.kt b/java/ql/test/kotlin/query-tests/ReturnValueIgnored/Test.kt
new file mode 100644
index 00000000000..8520b3cedfc
--- /dev/null
+++ b/java/ql/test/kotlin/query-tests/ReturnValueIgnored/Test.kt
@@ -0,0 +1,16 @@
+class Foo {
+    fun foo(): Int { return 5 }
+    fun bar() {
+        val x0 = foo()
+        val x1 = foo()
+        val x2 = foo()
+        val x3 = foo()
+        val x4 = foo()
+        val x5 = foo()
+        val x6 = foo()
+        val x7 = foo()
+        val x8 = foo()
+        val x9 = foo()
+        val x = if (true) { foo() } else 6
+    }
+}

From c42663723f197030c2d06adf28679001aaf52dd2 Mon Sep 17 00:00:00 2001
From: Tamas Vajk <tamasvajk@github.com>
Date: Wed, 16 Nov 2022 15:05:29 +0100
Subject: [PATCH 0400/1420] Exclude .kt files from ignored return value query

---
 java/ql/src/Likely Bugs/Statements/ReturnValueIgnored.ql         | 1 +
 .../query-tests/ReturnValueIgnored/ReturnValueIgnored.expected   | 1 -
 2 files changed, 1 insertion(+), 1 deletion(-)

diff --git a/java/ql/src/Likely Bugs/Statements/ReturnValueIgnored.ql b/java/ql/src/Likely Bugs/Statements/ReturnValueIgnored.ql
index 3355fd22190..c50a9a5f1a4 100644
--- a/java/ql/src/Likely Bugs/Statements/ReturnValueIgnored.ql	
+++ b/java/ql/src/Likely Bugs/Statements/ReturnValueIgnored.ql	
@@ -75,6 +75,7 @@ predicate isMustBeQualifierMockingMethod(Method m) {
 
 predicate relevantMethodCall(MethodAccess ma, Method m) {
   // For "return value ignored", all method calls are relevant.
+  not ma.getFile().isKotlinSourceFile() and
   ma.getMethod() = m and
   not m.getReturnType().hasName("void") and
   (not isMockingMethod(m) or isMustBeQualifierMockingMethod(m)) and
diff --git a/java/ql/test/kotlin/query-tests/ReturnValueIgnored/ReturnValueIgnored.expected b/java/ql/test/kotlin/query-tests/ReturnValueIgnored/ReturnValueIgnored.expected
index 8088b356482..e69de29bb2d 100644
--- a/java/ql/test/kotlin/query-tests/ReturnValueIgnored/ReturnValueIgnored.expected
+++ b/java/ql/test/kotlin/query-tests/ReturnValueIgnored/ReturnValueIgnored.expected
@@ -1 +0,0 @@
-| Test.kt:14:29:14:33 | foo(...) | The result of the call is ignored, but 90% of calls to foo use the return value. |

From 0d70b5c776379a4220c15bdcfcdbf564b7ae99cd Mon Sep 17 00:00:00 2001
From: Tamas Vajk <tamasvajk@github.com>
Date: Wed, 16 Nov 2022 15:10:38 +0100
Subject: [PATCH 0401/1420] Kotlin: Add FP test case for one stmt in line query

---
 .../OneStatementPerLine/OneStatementPerLine.expected       | 1 +
 .../OneStatementPerLine/OneStatementPerLine.qlref          | 1 +
 .../ql/test/kotlin/query-tests/OneStatementPerLine/Test.kt | 7 +++++++
 3 files changed, 9 insertions(+)
 create mode 100644 java/ql/test/kotlin/query-tests/OneStatementPerLine/OneStatementPerLine.expected
 create mode 100644 java/ql/test/kotlin/query-tests/OneStatementPerLine/OneStatementPerLine.qlref
 create mode 100644 java/ql/test/kotlin/query-tests/OneStatementPerLine/Test.kt

diff --git a/java/ql/test/kotlin/query-tests/OneStatementPerLine/OneStatementPerLine.expected b/java/ql/test/kotlin/query-tests/OneStatementPerLine/OneStatementPerLine.expected
new file mode 100644
index 00000000000..b9d64771553
--- /dev/null
+++ b/java/ql/test/kotlin/query-tests/OneStatementPerLine/OneStatementPerLine.expected
@@ -0,0 +1 @@
+| Test.kt:5:9:5:23 | return ... | This statement is followed by another on the same line. |
diff --git a/java/ql/test/kotlin/query-tests/OneStatementPerLine/OneStatementPerLine.qlref b/java/ql/test/kotlin/query-tests/OneStatementPerLine/OneStatementPerLine.qlref
new file mode 100644
index 00000000000..99f3f3f3293
--- /dev/null
+++ b/java/ql/test/kotlin/query-tests/OneStatementPerLine/OneStatementPerLine.qlref
@@ -0,0 +1 @@
+Advisory/Statements/OneStatementPerLine.ql
\ No newline at end of file
diff --git a/java/ql/test/kotlin/query-tests/OneStatementPerLine/Test.kt b/java/ql/test/kotlin/query-tests/OneStatementPerLine/Test.kt
new file mode 100644
index 00000000000..0936ef67775
--- /dev/null
+++ b/java/ql/test/kotlin/query-tests/OneStatementPerLine/Test.kt
@@ -0,0 +1,7 @@
+class Foo {
+    fun foo(): Foo { return this }
+
+    fun bar(x: Foo?): Foo? {
+        return x?.foo()
+    }
+}

From c9241cc93343832e43b567de4a4df2c2ab4912dc Mon Sep 17 00:00:00 2001
From: Tamas Vajk <tamasvajk@github.com>
Date: Wed, 16 Nov 2022 15:11:38 +0100
Subject: [PATCH 0402/1420] Exclude .kt files from one stmt in line query

---
 java/ql/src/Advisory/Statements/OneStatementPerLine.ql           | 1 +
 .../query-tests/OneStatementPerLine/OneStatementPerLine.expected | 1 -
 2 files changed, 1 insertion(+), 1 deletion(-)

diff --git a/java/ql/src/Advisory/Statements/OneStatementPerLine.ql b/java/ql/src/Advisory/Statements/OneStatementPerLine.ql
index 99ab9003e60..b4133761e27 100644
--- a/java/ql/src/Advisory/Statements/OneStatementPerLine.ql
+++ b/java/ql/src/Advisory/Statements/OneStatementPerLine.ql
@@ -37,6 +37,7 @@ predicate oneLineStatement(Stmt s, File f, int line, int col) {
 from Stmt s, Stmt s2
 where
   exists(File f, int line, int col, int col2 |
+    f.isJavaSourceFile() and
     oneLineStatement(s, f, line, col) and
     oneLineStatement(s2, f, line, col2) and
     col < col2 and
diff --git a/java/ql/test/kotlin/query-tests/OneStatementPerLine/OneStatementPerLine.expected b/java/ql/test/kotlin/query-tests/OneStatementPerLine/OneStatementPerLine.expected
index b9d64771553..e69de29bb2d 100644
--- a/java/ql/test/kotlin/query-tests/OneStatementPerLine/OneStatementPerLine.expected
+++ b/java/ql/test/kotlin/query-tests/OneStatementPerLine/OneStatementPerLine.expected
@@ -1 +0,0 @@
-| Test.kt:5:9:5:23 | return ... | This statement is followed by another on the same line. |

From 63e9ae3b93e116910e913a72fc2f3c03b57ee492 Mon Sep 17 00:00:00 2001
From: Tamas Vajk <tamasvajk@github.com>
Date: Wed, 16 Nov 2022 15:16:18 +0100
Subject: [PATCH 0403/1420] Kotlin: Add FP test case for mutual dependency
 query

---
 .../MutualDependency/MutualDependency.expected            | 1 +
 .../query-tests/MutualDependency/MutualDependency.qlref   | 1 +
 java/ql/test/kotlin/query-tests/MutualDependency/Test.kt  | 8 ++++++++
 3 files changed, 10 insertions(+)
 create mode 100644 java/ql/test/kotlin/query-tests/MutualDependency/MutualDependency.expected
 create mode 100644 java/ql/test/kotlin/query-tests/MutualDependency/MutualDependency.qlref
 create mode 100644 java/ql/test/kotlin/query-tests/MutualDependency/Test.kt

diff --git a/java/ql/test/kotlin/query-tests/MutualDependency/MutualDependency.expected b/java/ql/test/kotlin/query-tests/MutualDependency/MutualDependency.expected
new file mode 100644
index 00000000000..b82b8484768
--- /dev/null
+++ b/java/ql/test/kotlin/query-tests/MutualDependency/MutualDependency.expected
@@ -0,0 +1 @@
+| Test.kt:5:9:5:41 |  | This type and type $@ are mutually dependent. | Test.kt:3:1:8:1 | Foo | Foo |
diff --git a/java/ql/test/kotlin/query-tests/MutualDependency/MutualDependency.qlref b/java/ql/test/kotlin/query-tests/MutualDependency/MutualDependency.qlref
new file mode 100644
index 00000000000..ab1dbe353ef
--- /dev/null
+++ b/java/ql/test/kotlin/query-tests/MutualDependency/MutualDependency.qlref
@@ -0,0 +1 @@
+Architecture/Dependencies/MutualDependency.ql
\ No newline at end of file
diff --git a/java/ql/test/kotlin/query-tests/MutualDependency/Test.kt b/java/ql/test/kotlin/query-tests/MutualDependency/Test.kt
new file mode 100644
index 00000000000..b0a9a45603f
--- /dev/null
+++ b/java/ql/test/kotlin/query-tests/MutualDependency/Test.kt
@@ -0,0 +1,8 @@
+package foo.bar
+
+class Foo {
+    private fun someFun() {
+        fun say(s: String) { println(s) }
+        say("Str")
+    }
+}

From b6978128b17f3e949d288ee7d27b42bfbd7a54ba Mon Sep 17 00:00:00 2001
From: Tamas Vajk <tamasvajk@github.com>
Date: Wed, 16 Nov 2022 15:16:51 +0100
Subject: [PATCH 0404/1420] Exclude .kt files from mutual dependency query

---
 java/ql/src/Architecture/Dependencies/MutualDependency.ql     | 4 +++-
 .../query-tests/MutualDependency/MutualDependency.expected    | 1 -
 2 files changed, 3 insertions(+), 2 deletions(-)

diff --git a/java/ql/src/Architecture/Dependencies/MutualDependency.ql b/java/ql/src/Architecture/Dependencies/MutualDependency.ql
index c6ef88cd305..6d66daf1c67 100644
--- a/java/ql/src/Architecture/Dependencies/MutualDependency.ql
+++ b/java/ql/src/Architecture/Dependencies/MutualDependency.ql
@@ -30,6 +30,8 @@ where
     t2.getName().toLowerCase().matches("%visitor%") or
     t1.getAMethod().getName().toLowerCase().matches("%visit%") or
     t2.getAMethod().getName().toLowerCase().matches("%visit%") or
-    t1.getPackage() = t2.getPackage()
+    t1.getPackage() = t2.getPackage() or
+    t1.getFile().isKotlinSourceFile() or
+    t2.getFile().isKotlinSourceFile()
   )
 select t1, "This type and type $@ are mutually dependent.", t2, t2.getName()
diff --git a/java/ql/test/kotlin/query-tests/MutualDependency/MutualDependency.expected b/java/ql/test/kotlin/query-tests/MutualDependency/MutualDependency.expected
index b82b8484768..e69de29bb2d 100644
--- a/java/ql/test/kotlin/query-tests/MutualDependency/MutualDependency.expected
+++ b/java/ql/test/kotlin/query-tests/MutualDependency/MutualDependency.expected
@@ -1 +0,0 @@
-| Test.kt:5:9:5:41 |  | This type and type $@ are mutually dependent. | Test.kt:3:1:8:1 | Foo | Foo |

From fc614ad4d0cf9e66c6eed4d954dd91067ff83d5c Mon Sep 17 00:00:00 2001
From: Tamas Vajk <tamasvajk@github.com>
Date: Wed, 16 Nov 2022 15:24:43 +0100
Subject: [PATCH 0405/1420] Kotlin: Exclude .kt files from missing `instanceof`
 in `equals` query

---
 .../src/Likely Bugs/Comparison/MissingInstanceofInEquals.ql | 1 +
 .../kotlin/query-tests/MissingInstanceofInEquals/Test.kt    | 6 ++++++
 2 files changed, 7 insertions(+)

diff --git a/java/ql/src/Likely Bugs/Comparison/MissingInstanceofInEquals.ql b/java/ql/src/Likely Bugs/Comparison/MissingInstanceofInEquals.ql
index 1f05298878a..1c7bb13c065 100644
--- a/java/ql/src/Likely Bugs/Comparison/MissingInstanceofInEquals.ql	
+++ b/java/ql/src/Likely Bugs/Comparison/MissingInstanceofInEquals.ql	
@@ -64,6 +64,7 @@ class UnimplementedEquals extends EqualsMethod {
 
 from EqualsMethod m
 where
+  m.getFile().isJavaSourceFile() and
   exists(m.getBody()) and
   exists(Parameter p | p = m.getAParameter() |
     // The parameter has no type test
diff --git a/java/ql/test/kotlin/query-tests/MissingInstanceofInEquals/Test.kt b/java/ql/test/kotlin/query-tests/MissingInstanceofInEquals/Test.kt
index 6eef90c517c..d5d230bffef 100644
--- a/java/ql/test/kotlin/query-tests/MissingInstanceofInEquals/Test.kt
+++ b/java/ql/test/kotlin/query-tests/MissingInstanceofInEquals/Test.kt
@@ -17,3 +17,9 @@ data class G(val x: Int) {
         return other != null && other.javaClass == this.javaClass
     }
 }
+
+data class H(val x: Int) {
+    override fun equals(other: Any?): Boolean {
+        return other != null
+    }
+}

From 9f2d89c9039a1b1dd0e49d9fde6035f9bcc6465e Mon Sep 17 00:00:00 2001
From: Rasmus Wriedt Larsen <rasmuswl@github.com>
Date: Wed, 16 Nov 2022 15:27:38 +0100
Subject: [PATCH 0406/1420] Update ql-style-guide.md

Our [QLDoc style guide](https://github.com/github/codeql/blob/main/docs/qldoc-style-guide.md#predicates-with-result) says that we should avoid any use of `return`, so it would be smart to also do so in our own style guide for predicate names :blush:
---
 docs/ql-style-guide.md | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/docs/ql-style-guide.md b/docs/ql-style-guide.md
index 0b0efef27cc..29a427fdfae 100644
--- a/docs/ql-style-guide.md
+++ b/docs/ql-style-guide.md
@@ -176,7 +176,7 @@ private predicate foo(Expr e, Expr p) {
 1. Acronyms *should* use normal PascalCase/camelCase. However, two-letter acronyms should have both letters capitalized.
 1. Newtype predicate names *should* begin with `T`.
 1. Predicates that have a result *should* be named `get...`
-1. Predicates that can return multiple results *should* be named `getA...` or `getAn...`
+1. Predicates that can have multiple results *should* be named `getA...` or `getAn...`
 1. Predicates that don't have a result or parameters *should* be named `is...` or `has...`
 1. *Avoid* underscores in names.
 1. *Avoid* short or single-letter names for classes, predicates and fields.
@@ -304,6 +304,7 @@ For more information about documenting the code that you contribute to this repo
   exists(Type arg | arg = this.getAChild() | arg instanceof TypeParameter)
 ```
 
+
 ```ql
   exists(Type qualifierType |
     this.hasNonExactQualifierType(qualifierType)

From a9023d06d09e323727f9334736b9d8b7b9766f8b Mon Sep 17 00:00:00 2001
From: Tamas Vajk <tamasvajk@github.com>
Date: Wed, 16 Nov 2022 15:29:24 +0100
Subject: [PATCH 0407/1420] Kotlin: Add FP test case for non serializable field
 query

---
 .../NonSerializableField/NonSerializableField.expected        | 1 +
 .../NonSerializableField/NonSerializableField.qlref           | 1 +
 .../NonSerializableField/NonSerializableFieldTest.kt          | 4 ++++
 3 files changed, 6 insertions(+)
 create mode 100644 java/ql/test/kotlin/query-tests/NonSerializableField/NonSerializableField.expected
 create mode 100644 java/ql/test/kotlin/query-tests/NonSerializableField/NonSerializableField.qlref
 create mode 100644 java/ql/test/kotlin/query-tests/NonSerializableField/NonSerializableFieldTest.kt

diff --git a/java/ql/test/kotlin/query-tests/NonSerializableField/NonSerializableField.expected b/java/ql/test/kotlin/query-tests/NonSerializableField/NonSerializableField.expected
new file mode 100644
index 00000000000..54b712b084a
--- /dev/null
+++ b/java/ql/test/kotlin/query-tests/NonSerializableField/NonSerializableField.expected
@@ -0,0 +1 @@
+| NonSerializableFieldTest.kt:3:22:3:28 | <dispatchReceiver> | This field is in a serializable class, but is not serializable itself because Foo is not serializable. |
diff --git a/java/ql/test/kotlin/query-tests/NonSerializableField/NonSerializableField.qlref b/java/ql/test/kotlin/query-tests/NonSerializableField/NonSerializableField.qlref
new file mode 100644
index 00000000000..401d63757af
--- /dev/null
+++ b/java/ql/test/kotlin/query-tests/NonSerializableField/NonSerializableField.qlref
@@ -0,0 +1 @@
+Likely Bugs/Serialization/NonSerializableField.ql
diff --git a/java/ql/test/kotlin/query-tests/NonSerializableField/NonSerializableFieldTest.kt b/java/ql/test/kotlin/query-tests/NonSerializableField/NonSerializableFieldTest.kt
new file mode 100644
index 00000000000..bf790ea7c1e
--- /dev/null
+++ b/java/ql/test/kotlin/query-tests/NonSerializableField/NonSerializableFieldTest.kt
@@ -0,0 +1,4 @@
+class Foo {
+    fun f(i: Int) {}
+    fun g(i: Int) { (this::f)(i) }
+}

From 7d9ce53080aaa8d6f8eb0b4d1cf2c0a27d867153 Mon Sep 17 00:00:00 2001
From: Tamas Vajk <tamasvajk@github.com>
Date: Wed, 16 Nov 2022 15:30:25 +0100
Subject: [PATCH 0408/1420] Kotlin: Exclude .kt files from non serializable
 field query

---
 java/ql/src/Likely Bugs/Serialization/NonSerializableField.ql   | 2 +-
 .../NonSerializableField/NonSerializableField.expected          | 1 -
 2 files changed, 1 insertion(+), 2 deletions(-)

diff --git a/java/ql/src/Likely Bugs/Serialization/NonSerializableField.ql b/java/ql/src/Likely Bugs/Serialization/NonSerializableField.ql
index 920958ce3ce..bf00248720c 100644
--- a/java/ql/src/Likely Bugs/Serialization/NonSerializableField.ql	
+++ b/java/ql/src/Likely Bugs/Serialization/NonSerializableField.ql	
@@ -90,7 +90,7 @@ predicate exceptions(Class c, Field f) {
 
 from Class c, Field f, string reason
 where
-  c.fromSource() and
+  c.getFile().isJavaSourceFile() and
   c.getAStrictAncestor() instanceof TypeSerializable and
   f.getDeclaringType() = c and
   not exceptions(c, f) and
diff --git a/java/ql/test/kotlin/query-tests/NonSerializableField/NonSerializableField.expected b/java/ql/test/kotlin/query-tests/NonSerializableField/NonSerializableField.expected
index 54b712b084a..e69de29bb2d 100644
--- a/java/ql/test/kotlin/query-tests/NonSerializableField/NonSerializableField.expected
+++ b/java/ql/test/kotlin/query-tests/NonSerializableField/NonSerializableField.expected
@@ -1 +0,0 @@
-| NonSerializableFieldTest.kt:3:22:3:28 | <dispatchReceiver> | This field is in a serializable class, but is not serializable itself because Foo is not serializable. |

From 7cab6b5491c68759b3f9f6ba3a35098708998a78 Mon Sep 17 00:00:00 2001
From: Tom Hvitved <hvitved@github.com>
Date: Fri, 21 Oct 2022 14:23:30 +0200
Subject: [PATCH 0409/1420] C#: Include SSA "phi reads" in `DataFlow::Node`

---
 .../lib/semmle/code/cil/internal/SsaImpl.qll  |  40 +++-
 .../dataflow/internal/DataFlowPrivate.qll     | 195 +++++++++---------
 .../dataflow/internal/DataFlowPublic.qll      |   4 +-
 .../code/csharp/dataflow/internal/SsaImpl.qll | 111 +++++++++-
 .../csharp7/LocalTaintFlow.expected           |   9 +-
 .../dataflow/local/DataFlowStep.expected      | 130 ++++++------
 .../dataflow/local/TaintTrackingStep.expected | 130 ++++++------
 7 files changed, 373 insertions(+), 246 deletions(-)

diff --git a/csharp/ql/lib/semmle/code/cil/internal/SsaImpl.qll b/csharp/ql/lib/semmle/code/cil/internal/SsaImpl.qll
index 683ee6268aa..2f8fde205fd 100644
--- a/csharp/ql/lib/semmle/code/cil/internal/SsaImpl.qll
+++ b/csharp/ql/lib/semmle/code/cil/internal/SsaImpl.qll
@@ -47,19 +47,19 @@ private module Cached {
   }
 
   cached
-  ReadAccess getAFirstRead(Definition def) {
+  ReadAccess getAFirstReadExt(DefinitionExt def) {
     exists(BasicBlock bb1, int i1, BasicBlock bb2, int i2 |
-      def.definesAt(_, bb1, i1) and
-      adjacentDefRead(def, bb1, i1, bb2, i2) and
+      def.definesAt(_, bb1, i1, _) and
+      adjacentDefReadExt(def, _, bb1, i1, bb2, i2) and
       result = bb2.getNode(i2)
     )
   }
 
   cached
-  predicate hasAdjacentReads(Definition def, ReadAccess first, ReadAccess second) {
+  predicate hasAdjacentReadsExt(DefinitionExt def, ReadAccess first, ReadAccess second) {
     exists(BasicBlock bb1, int i1, BasicBlock bb2, int i2 |
       first = bb1.getNode(i1) and
-      adjacentDefRead(def, bb1, i1, bb2, i2) and
+      adjacentDefReadExt(def, _, bb1, i1, bb2, i2) and
       second = bb2.getNode(i2)
     )
   }
@@ -68,9 +68,35 @@ private module Cached {
   Definition getAPhiInput(PhiNode phi) { phiHasInputFromBlock(phi, result, _) }
 
   cached
-  predicate lastRefBeforeRedef(Definition def, BasicBlock bb, int i, Definition next) {
-    lastRefRedef(def, bb, i, next)
+  predicate lastRefBeforeRedefExt(DefinitionExt def, BasicBlock bb, int i, DefinitionExt next) {
+    lastRefRedefExt(def, _, bb, i, next)
   }
 }
 
 import Cached
+
+private module Deprecated {
+  private import CIL
+
+  deprecated ReadAccess getAFirstRead(Definition def) {
+    exists(BasicBlock bb1, int i1, BasicBlock bb2, int i2 |
+      def.definesAt(_, bb1, i1) and
+      adjacentDefRead(def, bb1, i1, bb2, i2) and
+      result = bb2.getNode(i2)
+    )
+  }
+
+  deprecated predicate hasAdjacentReads(Definition def, ReadAccess first, ReadAccess second) {
+    exists(BasicBlock bb1, int i1, BasicBlock bb2, int i2 |
+      first = bb1.getNode(i1) and
+      adjacentDefRead(def, bb1, i1, bb2, i2) and
+      second = bb2.getNode(i2)
+    )
+  }
+
+  deprecated predicate lastRefBeforeRedef(Definition def, BasicBlock bb, int i, Definition next) {
+    lastRefRedef(def, bb, i, next)
+  }
+}
+
+import Deprecated
diff --git a/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowPrivate.qll b/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowPrivate.qll
index 4fc2cb4f398..845d5bd378a 100644
--- a/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowPrivate.qll
+++ b/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowPrivate.qll
@@ -18,6 +18,7 @@ private import semmle.code.csharp.frameworks.NHibernate
 private import semmle.code.csharp.frameworks.system.Collections
 private import semmle.code.csharp.frameworks.system.threading.Tasks
 private import semmle.code.cil.Ssa::Ssa as CilSsa
+private import semmle.code.cil.internal.SsaImpl as CilSsaImpl
 
 /** Gets the callable in which this node occurs. */
 DataFlowCallable nodeGetEnclosingCallable(NodeImpl n) { result = n.getEnclosingCallableImpl() }
@@ -174,7 +175,7 @@ predicate hasNodePath(ControlFlowReachabilityConfiguration conf, ExprNode n1, No
     cfn = n1.getControlFlowNode() and
     ssaDef.getADefinition() = def and
     ssaDef.getControlFlowNode() = cfnDef and
-    n2.(SsaDefinitionNode).getDefinition() = ssaDef
+    n2.(SsaDefinitionExtNode).getDefinitionExt() = ssaDef
   )
 }
 
@@ -306,17 +307,28 @@ module LocalFlow {
     }
   }
 
+  /** An SSA definition into which another SSA definition may flow. */
+  private class SsaInputDefinitionExtNode extends SsaDefinitionExtNode {
+    SsaInputDefinitionExtNode() {
+      def instanceof Ssa::PhiNode
+      or
+      def instanceof SsaImpl::PhiReadNode
+      or
+      def instanceof LocalFlow::UncertainExplicitSsaDefinition
+    }
+  }
+
   /**
    * Holds if `nodeFrom` is a last node referencing SSA definition `def`, which
    * can reach `next`.
    */
   private predicate localFlowSsaInputFromDef(
-    Node nodeFrom, Ssa::Definition def, Ssa::Definition next
+    Node nodeFrom, SsaImpl::DefinitionExt def, SsaInputDefinitionExtNode next
   ) {
     exists(ControlFlow::BasicBlock bb, int i |
-      SsaImpl::lastRefBeforeRedef(def, bb, i, next) and
-      def.definesAt(_, bb, i) and
-      def = getSsaDefinition(nodeFrom)
+      SsaImpl::lastRefBeforeRedefExt(def, bb, i, next.getDefinitionExt()) and
+      def.definesAt(_, bb, i, _) and
+      def = getSsaDefinitionExt(nodeFrom)
     )
   }
 
@@ -324,18 +336,17 @@ module LocalFlow {
    * Holds if `read` is a last node reading SSA definition `def`, which
    * can reach `next`.
    */
-  predicate localFlowSsaInputFromExpr(
-    ControlFlow::Node read, Ssa::Definition def, Ssa::Definition next
+  predicate localFlowSsaInputFromRead(
+    Node read, SsaImpl::DefinitionExt def, SsaInputDefinitionExtNode next
   ) {
     exists(ControlFlow::BasicBlock bb, int i |
-      SsaImpl::lastRefBeforeRedef(def, bb, i, next) and
-      read = bb.getNode(i) and
-      read.getElement() instanceof AssignableRead
+      SsaImpl::lastRefBeforeRedefExt(def, bb, i, next.getDefinitionExt()) and
+      read.asExprAtNode(bb.getNode(i)) instanceof AssignableRead
     )
   }
 
-  private Ssa::Definition getSsaDefinition(Node n) {
-    result = n.(SsaDefinitionNode).getDefinition()
+  private SsaImpl::DefinitionExt getSsaDefinitionExt(Node n) {
+    result = n.(SsaDefinitionExtNode).getDefinitionExt()
     or
     result = n.(ExplicitParameterNode).getSsaDefinition()
   }
@@ -344,9 +355,9 @@ module LocalFlow {
    * Holds if there is a local use-use flow step from `nodeFrom` to `nodeTo`
    * involving SSA definition `def`.
    */
-  predicate localSsaFlowStepUseUse(Ssa::Definition def, Node nodeFrom, Node nodeTo) {
+  predicate localSsaFlowStepUseUse(SsaImpl::DefinitionExt def, Node nodeFrom, Node nodeTo) {
     exists(ControlFlow::Node cfnFrom, ControlFlow::Node cfnTo |
-      SsaImpl::adjacentReadPairSameVar(def, cfnFrom, cfnTo) and
+      SsaImpl::adjacentReadPairSameVarExt(def, cfnFrom, cfnTo) and
       nodeTo = TExprNode(cfnTo) and
       nodeFrom = TExprNode(cfnFrom)
     )
@@ -356,31 +367,22 @@ module LocalFlow {
    * Holds if there is a local flow step from `nodeFrom` to `nodeTo` involving
    * SSA definition `def`.
    */
-  predicate localSsaFlowStep(Ssa::Definition def, Node nodeFrom, Node nodeTo) {
+  predicate localSsaFlowStep(SsaImpl::DefinitionExt def, Node nodeFrom, Node nodeTo) {
     // Flow from SSA definition/parameter to first read
-    exists(ControlFlow::Node cfn |
-      def = getSsaDefinition(nodeFrom) and
-      nodeTo.asExprAtNode(cfn) = def.getAFirstReadAtNode(cfn)
-    )
+    def = getSsaDefinitionExt(nodeFrom) and
+    SsaImpl::firstReadSameVarExt(def, nodeTo.(ExprNode).getControlFlowNode())
     or
     // Flow from read to next read
     localSsaFlowStepUseUse(def, nodeFrom.(PostUpdateNode).getPreUpdateNode(), nodeTo)
     or
-    // Flow into phi/uncertain SSA definition node from def
-    exists(Ssa::Definition next |
-      localFlowSsaInputFromDef(nodeFrom, def, next) and
-      next = nodeTo.(SsaDefinitionNode).getDefinition()
-    |
-      def = next.(Ssa::PhiNode).getAnInput()
-      or
-      def = next.(LocalFlow::UncertainExplicitSsaDefinition).getPriorDefinition()
-    )
+    // Flow into phi (read)/uncertain SSA definition node from def
+    localFlowSsaInputFromDef(nodeFrom, def, nodeTo)
   }
 
   /**
    * Holds if the source variable of SSA definition `def` is an instance field.
    */
-  predicate usesInstanceField(Ssa::Definition def) {
+  predicate usesInstanceField(SsaImpl::DefinitionExt def) {
     exists(Ssa::SourceVariables::FieldOrPropSourceVariable fp | fp = def.getSourceVariable() |
       not fp.getAssignable().(Modifiable).isStatic()
     )
@@ -389,25 +391,23 @@ module LocalFlow {
   predicate localFlowCapturedVarStep(Node nodeFrom, ImplicitCapturedArgumentNode nodeTo) {
     // Flow from SSA definition to implicit captured variable argument
     exists(Ssa::ExplicitDefinition def, ControlFlow::Nodes::ElementNode call |
-      def = getSsaDefinition(nodeFrom) and
+      def = getSsaDefinitionExt(nodeFrom) and
       def.isCapturedVariableDefinitionFlowIn(_, call, _) and
       nodeTo = TImplicitCapturedArgumentNode(call, def.getSourceVariable().getAssignable())
     )
   }
 
   private module CilFlow {
-    private import semmle.code.cil.internal.SsaImpl as CilSsaImpl
-
     /**
      * Holds if `nodeFrom` is a last node referencing SSA definition `def`, which
      * can reach `next`.
      */
     private predicate localFlowCilSsaInput(
-      Node nodeFrom, CilSsa::Definition def, CilSsa::Definition next
+      Node nodeFrom, CilSsaImpl::DefinitionExt def, CilSsaImpl::DefinitionExt next
     ) {
-      exists(CIL::BasicBlock bb, int i | CilSsaImpl::lastRefBeforeRedef(def, bb, i, next) |
-        def.definesAt(_, bb, i) and
-        def = nodeFrom.(CilSsaDefinitionNode).getDefinition()
+      exists(CIL::BasicBlock bb, int i | CilSsaImpl::lastRefBeforeRedefExt(def, bb, i, next) |
+        def.definesAt(_, bb, i, _) and
+        def = nodeFrom.(CilSsaDefinitionExtNode).getDefinition()
         or
         nodeFrom = TCilExprNode(bb.getNode(i).(CIL::ReadAccess))
       )
@@ -417,30 +417,33 @@ module LocalFlow {
      * Holds if there is a local flow step from `nodeFrom` to `nodeTo` involving
      * CIL SSA definition `def`.
      */
-    private predicate localCilSsaFlowStep(CilSsa::Definition def, Node nodeFrom, Node nodeTo) {
+    private predicate localCilSsaFlowStep(CilSsaImpl::DefinitionExt def, Node nodeFrom, Node nodeTo) {
       // Flow into SSA definition
       exists(CIL::VariableUpdate vu |
-        vu = def.getVariableUpdate() and
+        vu = def.(CilSsa::Definition).getVariableUpdate() and
         vu.getSource() = asCilDataFlowNode(nodeFrom) and
-        def = nodeTo.(CilSsaDefinitionNode).getDefinition()
+        def = nodeTo.(CilSsaDefinitionExtNode).getDefinition()
       )
       or
       // Flow from SSA definition to first read
-      def = nodeFrom.(CilSsaDefinitionNode).getDefinition() and
-      nodeTo = TCilExprNode(CilSsaImpl::getAFirstRead(def))
+      def = nodeFrom.(CilSsaDefinitionExtNode).getDefinition() and
+      nodeTo = TCilExprNode(CilSsaImpl::getAFirstReadExt(def))
       or
       // Flow from read to next read
       exists(CIL::ReadAccess readFrom, CIL::ReadAccess readTo |
-        CilSsaImpl::hasAdjacentReads(def, readFrom, readTo) and
+        CilSsaImpl::hasAdjacentReadsExt(def, readFrom, readTo) and
         nodeTo = TCilExprNode(readTo) and
         nodeFrom = TCilExprNode(readFrom)
       )
       or
-      // Flow into phi node
-      exists(CilSsa::PhiNode phi |
+      // Flow into phi (read) node
+      exists(CilSsaImpl::DefinitionExt phi |
         localFlowCilSsaInput(nodeFrom, def, phi) and
-        phi = nodeTo.(CilSsaDefinitionNode).getDefinition() and
-        def = CilSsaImpl::getAPhiInput(phi)
+        phi = nodeTo.(CilSsaDefinitionExtNode).getDefinition()
+      |
+        phi instanceof CilSsa::PhiNode
+        or
+        phi instanceof CilSsaImpl::PhiReadNode
       )
     }
 
@@ -466,7 +469,7 @@ module LocalFlow {
   }
 
   predicate localFlowStepCommon(Node nodeFrom, Node nodeTo) {
-    exists(Ssa::Definition def |
+    exists(SsaImpl::DefinitionExt def |
       localSsaFlowStep(def, nodeFrom, nodeTo) and
       not usesInstanceField(def)
     )
@@ -528,26 +531,20 @@ module LocalFlow {
 predicate simpleLocalFlowStep(Node nodeFrom, Node nodeTo) {
   LocalFlow::localFlowStepCommon(nodeFrom, nodeTo)
   or
-  exists(Ssa::Definition def |
+  exists(SsaImpl::DefinitionExt def |
     LocalFlow::localSsaFlowStepUseUse(def, nodeFrom, nodeTo) and
     not FlowSummaryImpl::Private::Steps::prohibitsUseUseFlow(nodeFrom, _) and
     not LocalFlow::usesInstanceField(def)
   )
   or
-  // Flow into phi/uncertain SSA definition node from read
-  exists(Ssa::Definition def, ControlFlow::Node read, Ssa::Definition next |
-    LocalFlow::localFlowSsaInputFromExpr(read, def, next) and
-    next = nodeTo.(SsaDefinitionNode).getDefinition() and
-    def =
-      [
-        next.(Ssa::PhiNode).getAnInput(),
-        next.(LocalFlow::UncertainExplicitSsaDefinition).getPriorDefinition()
-      ]
+  // Flow into phi (read)/uncertain SSA definition node from read
+  exists(SsaImpl::DefinitionExt def, Node read |
+    LocalFlow::localFlowSsaInputFromRead(read, def, nodeTo)
   |
-    exists(nodeFrom.asExprAtNode(read)) and
+    nodeFrom = read and
     not FlowSummaryImpl::Private::Steps::prohibitsUseUseFlow(nodeFrom, _)
     or
-    exists(nodeFrom.(PostUpdateNode).getPreUpdateNode().asExprAtNode(read))
+    nodeFrom.(PostUpdateNode).getPreUpdateNode() = read
   )
   or
   LocalFlow::localFlowCapturedVarStep(nodeFrom, nodeTo)
@@ -813,8 +810,8 @@ private module Cached {
       cfn.getElement() instanceof Expr
     } or
     TCilExprNode(CIL::Expr e) { e.getImplementation() instanceof CIL::BestImplementation } or
-    TCilSsaDefinitionNode(CilSsa::Definition def) or
-    TSsaDefinitionNode(Ssa::Definition def) {
+    TCilSsaDefinitionExtNode(CilSsaImpl::DefinitionExt def) or
+    TSsaDefinitionExtNode(SsaImpl::DefinitionExt def) {
       // Handled by `TExplicitParameterNode` below
       not def.(Ssa::ExplicitDefinition).getADefinition() instanceof
         AssignableDefinitions::ImplicitParameterDefinition
@@ -880,24 +877,18 @@ private module Cached {
     or
     LocalFlow::localSsaFlowStepUseUse(_, nodeFrom, nodeTo)
     or
-    exists(Ssa::Definition def |
+    exists(SsaImpl::DefinitionExt def |
       LocalFlow::localSsaFlowStep(def, nodeFrom, nodeTo) and
       LocalFlow::usesInstanceField(def)
     )
     or
-    // Flow into phi/uncertain SSA definition node from read
-    exists(Ssa::Definition def, ControlFlow::Node read, Ssa::Definition next |
-      LocalFlow::localFlowSsaInputFromExpr(read, def, next) and
-      next = nodeTo.(SsaDefinitionNode).getDefinition() and
-      def =
-        [
-          next.(Ssa::PhiNode).getAnInput(),
-          next.(LocalFlow::UncertainExplicitSsaDefinition).getPriorDefinition()
-        ]
+    // Flow into phi (read)/uncertain SSA definition node from read
+    exists(SsaImpl::DefinitionExt def, Node read |
+      LocalFlow::localFlowSsaInputFromRead(read, def, nodeTo)
     |
-      exists(nodeFrom.asExprAtNode(read))
+      nodeFrom = read
       or
-      exists(nodeFrom.(PostUpdateNode).getPreUpdateNode().asExprAtNode(read))
+      nodeFrom.(PostUpdateNode).getPreUpdateNode() = read
     )
     or
     // Simple flow through library code is included in the exposed local
@@ -945,9 +936,11 @@ import Cached
 
 /** Holds if `n` should be hidden from path explanations. */
 predicate nodeIsHidden(Node n) {
-  exists(Ssa::Definition def | def = n.(SsaDefinitionNode).getDefinition() |
+  exists(SsaImpl::DefinitionExt def | def = n.(SsaDefinitionExtNode).getDefinitionExt() |
     def instanceof Ssa::PhiNode
     or
+    def instanceof SsaImpl::PhiReadNode
+    or
     def instanceof Ssa::ImplicitEntryDefinition
     or
     def instanceof Ssa::ImplicitCallDefinition
@@ -978,13 +971,13 @@ predicate nodeIsHidden(Node n) {
 }
 
 /** A CIL SSA definition, viewed as a node in a data flow graph. */
-class CilSsaDefinitionNode extends NodeImpl, TCilSsaDefinitionNode {
-  CilSsa::Definition def;
+class CilSsaDefinitionExtNode extends NodeImpl, TCilSsaDefinitionExtNode {
+  CilSsaImpl::DefinitionExt def;
 
-  CilSsaDefinitionNode() { this = TCilSsaDefinitionNode(def) }
+  CilSsaDefinitionExtNode() { this = TCilSsaDefinitionExtNode(def) }
 
   /** Gets the underlying SSA definition. */
-  CilSsa::Definition getDefinition() { result = def }
+  CilSsaImpl::DefinitionExt getDefinition() { result = def }
 
   override DataFlowCallable getEnclosingCallableImpl() {
     result.asCallable() = def.getBasicBlock().getFirstNode().getImplementation().getMethod()
@@ -1000,13 +993,13 @@ class CilSsaDefinitionNode extends NodeImpl, TCilSsaDefinitionNode {
 }
 
 /** An SSA definition, viewed as a node in a data flow graph. */
-class SsaDefinitionNode extends NodeImpl, TSsaDefinitionNode {
-  Ssa::Definition def;
+class SsaDefinitionExtNode extends NodeImpl, TSsaDefinitionExtNode {
+  SsaImpl::DefinitionExt def;
 
-  SsaDefinitionNode() { this = TSsaDefinitionNode(def) }
+  SsaDefinitionExtNode() { this = TSsaDefinitionExtNode(def) }
 
   /** Gets the underlying SSA definition. */
-  Ssa::Definition getDefinition() { result = def }
+  SsaImpl::DefinitionExt getDefinitionExt() { result = def }
 
   override DataFlowCallable getEnclosingCallableImpl() {
     result.asCallable() = def.getEnclosingCallable()
@@ -1014,7 +1007,9 @@ class SsaDefinitionNode extends NodeImpl, TSsaDefinitionNode {
 
   override Type getTypeImpl() { result = def.getSourceVariable().getType() }
 
-  override ControlFlow::Node getControlFlowNodeImpl() { result = def.getControlFlowNode() }
+  override ControlFlow::Node getControlFlowNodeImpl() {
+    result = def.(Ssa::Definition).getControlFlowNode()
+  }
 
   override Location getLocationImpl() { result = def.getLocation() }
 
@@ -1108,13 +1103,11 @@ private module ParameterNodes {
    * }                      }
    * ```
    */
-  class ImplicitCapturedParameterNode extends ParameterNodeImpl, SsaDefinitionNode {
-    override SsaCapturedEntryDefinition def;
-
-    ImplicitCapturedParameterNode() { def = this.getDefinition() }
+  class ImplicitCapturedParameterNode extends ParameterNodeImpl, SsaDefinitionExtNode {
+    ImplicitCapturedParameterNode() { def instanceof SsaCapturedEntryDefinition }
 
     /** Gets the captured variable that this implicit parameter models. */
-    LocalScopeVariable getVariable() { result = def.getVariable() }
+    LocalScopeVariable getVariable() { result = def.(SsaCapturedEntryDefinition).getVariable() }
 
     override predicate isParameterOf(DataFlowCallable c, ParameterPosition pos) {
       pos.isImplicitCapturedParameterPosition(def.getSourceVariable().getAssignable()) and
@@ -1349,12 +1342,12 @@ private module ReturnNodes {
    * A data-flow node that represents an assignment to an `out` or a `ref`
    * parameter.
    */
-  class OutRefReturnNode extends ReturnNode, SsaDefinitionNode {
+  class OutRefReturnNode extends ReturnNode, SsaDefinitionExtNode {
     OutRefReturnKind kind;
 
     OutRefReturnNode() {
       exists(Parameter p |
-        this.getDefinition().isLiveOutRefParameterDefinition(p) and
+        this.getDefinitionExt().(Ssa::Definition).isLiveOutRefParameterDefinition(p) and
         kind.getPosition() = p.getPosition()
       |
         p.isOut() and kind instanceof OutReturnKind
@@ -1438,11 +1431,11 @@ private module ReturnNodes {
    * }                       }
    * ```
    */
-  class ImplicitCapturedReturnNode extends ReturnNode, SsaDefinitionNode {
+  class ImplicitCapturedReturnNode extends ReturnNode, SsaDefinitionExtNode {
     private Ssa::ExplicitDefinition edef;
 
     ImplicitCapturedReturnNode() {
-      edef = this.getDefinition() and
+      edef = this.getDefinitionExt() and
       edef.isCapturedVariableDefinitionFlowOut(_, _)
     }
 
@@ -1450,8 +1443,8 @@ private module ReturnNodes {
      * Holds if the value at this node may flow out to the implicit call definition
      * at `node`, using one or more calls.
      */
-    predicate flowsOutTo(SsaDefinitionNode node, boolean additionalCalls) {
-      edef.isCapturedVariableDefinitionFlowOut(node.getDefinition(), additionalCalls)
+    predicate flowsOutTo(SsaDefinitionExtNode node, boolean additionalCalls) {
+      edef.isCapturedVariableDefinitionFlowOut(node.getDefinitionExt(), additionalCalls)
     }
 
     override ImplicitCapturedReturnKind getKind() {
@@ -1558,13 +1551,13 @@ private module OutNodes {
    * A data-flow node that reads a value returned implicitly by a callable
    * using a captured variable.
    */
-  class CapturedOutNode extends OutNode, SsaDefinitionNode {
+  class CapturedOutNode extends OutNode, SsaDefinitionExtNode {
     private DataFlowCall call;
 
     CapturedOutNode() {
       exists(ImplicitCapturedReturnNode n, boolean additionalCalls, ControlFlow::Node cfn |
         n.flowsOutTo(this, additionalCalls) and
-        cfn = this.getDefinition().getControlFlowNode()
+        cfn = this.getDefinitionExt().(Ssa::Definition).getControlFlowNode()
       |
         additionalCalls = false and call = csharpCall(_, cfn)
         or
@@ -1576,7 +1569,7 @@ private module OutNodes {
     override DataFlowCall getCall(ReturnKind kind) {
       result = call and
       kind.(ImplicitCapturedReturnKind).getVariable() =
-        this.getDefinition().getSourceVariable().getAssignable()
+        this.getDefinitionExt().getSourceVariable().getAssignable()
     }
   }
 
@@ -1857,7 +1850,7 @@ predicate readStep(Node node1, Content c, Node node2) {
     exists(ForeachStmt fs, Ssa::ExplicitDefinition def |
       x.hasDefPath(fs.getIterableExpr(), node1.getControlFlowNode(), def.getADefinition(),
         def.getControlFlowNode()) and
-      node2.(SsaDefinitionNode).getDefinition() = def and
+      node2.(SsaDefinitionExtNode).getDefinitionExt() = def and
       c instanceof ElementContent
     )
     or
@@ -1880,7 +1873,7 @@ predicate readStep(Node node1, Content c, Node node2) {
       or
       // item = variable in node1 = (..., variable, ...)
       exists(AssignableDefinitions::TupleAssignmentDefinition tad, Ssa::ExplicitDefinition def |
-        node2.(SsaDefinitionNode).getDefinition() = def and
+        node2.(SsaDefinitionExtNode).getDefinitionExt() = def and
         def.getADefinition() = tad and
         tad.getLeaf() = item and
         hasNodePath(x, node1, node2)
@@ -1889,7 +1882,7 @@ predicate readStep(Node node1, Content c, Node node2) {
       // item = variable in node1 = (..., variable, ...) in a case/is var (..., ...)
       te = any(PatternExpr pe).getAChildExpr*() and
       exists(AssignableDefinitions::LocalVariableDefinition lvd, Ssa::ExplicitDefinition def |
-        node2.(SsaDefinitionNode).getDefinition() = def and
+        node2.(SsaDefinitionExtNode).getDefinitionExt() = def and
         def.getADefinition() = lvd and
         lvd.getDeclaration() = item and
         hasNodePath(x, node1, node2)
@@ -2223,7 +2216,7 @@ predicate lambdaCall(DataFlowCall call, LambdaCallKind kind, Node receiver) {
 
 /** Extra data-flow steps needed for lambda flow analysis. */
 predicate additionalLambdaFlowStep(Node nodeFrom, Node nodeTo, boolean preservesValue) {
-  exists(Ssa::Definition def |
+  exists(SsaImpl::DefinitionExt def |
     LocalFlow::localSsaFlowStep(def, nodeFrom, nodeTo) and
     LocalFlow::usesInstanceField(def) and
     preservesValue = true
diff --git a/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowPublic.qll b/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowPublic.qll
index f6520147e19..b22712087f2 100644
--- a/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowPublic.qll
+++ b/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowPublic.qll
@@ -119,10 +119,10 @@ class ParameterNode extends Node instanceof ParameterNodeImpl {
 }
 
 /** A definition, viewed as a node in a data flow graph. */
-class AssignableDefinitionNode extends Node, TSsaDefinitionNode {
+class AssignableDefinitionNode extends Node, TSsaDefinitionExtNode {
   private Ssa::ExplicitDefinition edef;
 
-  AssignableDefinitionNode() { this = TSsaDefinitionNode(edef) }
+  AssignableDefinitionNode() { this = TSsaDefinitionExtNode(edef) }
 
   /** Gets the underlying definition. */
   AssignableDefinition getDefinition() { result = this.getDefinitionAtNode(_) }
diff --git a/csharp/ql/lib/semmle/code/csharp/dataflow/internal/SsaImpl.qll b/csharp/ql/lib/semmle/code/csharp/dataflow/internal/SsaImpl.qll
index 98a1cad843a..80d3dbd28ab 100644
--- a/csharp/ql/lib/semmle/code/csharp/dataflow/internal/SsaImpl.qll
+++ b/csharp/ql/lib/semmle/code/csharp/dataflow/internal/SsaImpl.qll
@@ -1093,35 +1093,79 @@ private predicate adjacentDefRead(
 }
 
 private predicate adjacentDefReachesRead(
-  Definition def, SsaInput::BasicBlock bb1, int i1, SsaInput::BasicBlock bb2, int i2
+  Definition def, SsaInput::SourceVariable v, SsaInput::BasicBlock bb1, int i1,
+  SsaInput::BasicBlock bb2, int i2
 ) {
-  exists(SsaInput::SourceVariable v | adjacentDefRead(def, bb1, i1, bb2, i2, v) |
+  adjacentDefRead(def, bb1, i1, bb2, i2, v) and
+  (
     def.definesAt(v, bb1, i1)
     or
     SsaInput::variableRead(bb1, i1, v, true)
   )
   or
   exists(SsaInput::BasicBlock bb3, int i3 |
-    adjacentDefReachesRead(def, bb1, i1, bb3, i3) and
+    adjacentDefReachesRead(def, v, bb1, i1, bb3, i3) and
     SsaInput::variableRead(bb3, i3, _, false) and
     Impl::adjacentDefRead(def, bb3, i3, bb2, i2)
   )
 }
 
+private predicate adjacentDefReachesReadExt(
+  DefinitionExt def, SsaInput::SourceVariable v, SsaInput::BasicBlock bb1, int i1,
+  SsaInput::BasicBlock bb2, int i2
+) {
+  Impl::adjacentDefReadExt(def, v, bb1, i1, bb2, i2) and
+  (
+    def.definesAt(v, bb1, i1, _)
+    or
+    SsaInput::variableRead(bb1, i1, v, true)
+  )
+  or
+  exists(SsaInput::BasicBlock bb3, int i3 |
+    adjacentDefReachesReadExt(def, v, bb1, i1, bb3, i3) and
+    SsaInput::variableRead(bb3, i3, v, false) and
+    Impl::adjacentDefReadExt(def, v, bb3, i3, bb2, i2)
+  )
+}
+
 /** Same as `adjacentDefRead`, but skips uncertain reads. */
 pragma[nomagic]
 private predicate adjacentDefSkipUncertainReads(
   Definition def, SsaInput::BasicBlock bb1, int i1, SsaInput::BasicBlock bb2, int i2
 ) {
-  adjacentDefReachesRead(def, bb1, i1, bb2, i2) and
-  SsaInput::variableRead(bb2, i2, _, true)
+  exists(SsaInput::SourceVariable v |
+    adjacentDefReachesRead(def, v, bb1, i1, bb2, i2) and
+    SsaInput::variableRead(bb2, i2, v, true)
+  )
+}
+
+/** Same as `adjacentDefReadExt`, but skips uncertain reads. */
+pragma[nomagic]
+private predicate adjacentDefSkipUncertainReadsExt(
+  DefinitionExt def, SsaInput::BasicBlock bb1, int i1, SsaInput::BasicBlock bb2, int i2
+) {
+  exists(SsaInput::SourceVariable v |
+    adjacentDefReachesReadExt(def, v, bb1, i1, bb2, i2) and
+    SsaInput::variableRead(bb2, i2, v, true)
+  )
 }
 
 private predicate adjacentDefReachesUncertainRead(
   Definition def, SsaInput::BasicBlock bb1, int i1, SsaInput::BasicBlock bb2, int i2
 ) {
-  adjacentDefReachesRead(def, bb1, i1, bb2, i2) and
-  SsaInput::variableRead(bb2, i2, _, false)
+  exists(SsaInput::SourceVariable v |
+    adjacentDefReachesRead(def, v, bb1, i1, bb2, i2) and
+    SsaInput::variableRead(bb2, i2, v, false)
+  )
+}
+
+private predicate adjacentDefReachesUncertainReadExt(
+  DefinitionExt def, SsaInput::BasicBlock bb1, int i1, SsaInput::BasicBlock bb2, int i2
+) {
+  exists(SsaInput::SourceVariable v |
+    adjacentDefReachesReadExt(def, v, bb1, i1, bb2, i2) and
+    SsaInput::variableRead(bb2, i2, v, false)
+  )
 }
 
 /** Same as `lastRefRedef`, but skips uncertain reads. */
@@ -1311,6 +1355,19 @@ private module Cached {
     )
   }
 
+  /**
+   * Holds if the value defined at SSA definition `def` can reach a read at `cfn`,
+   * without passing through any other read.
+   */
+  cached
+  predicate firstReadSameVarExt(DefinitionExt def, ControlFlow::Node cfn) {
+    exists(ControlFlow::BasicBlock bb1, int i1, ControlFlow::BasicBlock bb2, int i2 |
+      def.definesAt(_, bb1, i1, _) and
+      adjacentDefSkipUncertainReadsExt(def, bb1, i1, bb2, i2) and
+      cfn = bb2.getNode(i2)
+    )
+  }
+
   /**
    * Holds if the read at `cfn2` is a read of the same SSA definition `def`
    * as the read at `cfn1`, and `cfn2` can be reached from `cfn1` without
@@ -1326,7 +1383,23 @@ private module Cached {
     )
   }
 
-  /** Same as `lastRefRedef`, but skips uncertain reads. */
+  /**
+   * Holds if the read at `cfn2` is a read of the same SSA definition `def`
+   * as the read at `cfn1`, and `cfn2` can be reached from `cfn1` without
+   * passing through another read.
+   */
+  cached
+  predicate adjacentReadPairSameVarExt(
+    DefinitionExt def, ControlFlow::Node cfn1, ControlFlow::Node cfn2
+  ) {
+    exists(ControlFlow::BasicBlock bb1, int i1, ControlFlow::BasicBlock bb2, int i2 |
+      cfn1 = bb1.getNode(i1) and
+      variableReadActual(bb1, i1, _) and
+      adjacentDefSkipUncertainReadsExt(def, bb1, i1, bb2, i2) and
+      cfn2 = bb2.getNode(i2)
+    )
+  }
+
   cached
   predicate lastRefBeforeRedef(Definition def, ControlFlow::BasicBlock bb, int i, Definition next) {
     Impl::lastRefRedef(def, bb, i, next) and
@@ -1338,6 +1411,21 @@ private module Cached {
     )
   }
 
+  cached
+  predicate lastRefBeforeRedefExt(
+    DefinitionExt def, ControlFlow::BasicBlock bb, int i, DefinitionExt next
+  ) {
+    exists(SsaInput::SourceVariable v |
+      Impl::lastRefRedefExt(def, v, bb, i, next) and
+      not SsaInput::variableRead(bb, i, v, false)
+    )
+    or
+    exists(SsaInput::BasicBlock bb0, int i0 |
+      Impl::lastRefRedefExt(def, _, bb0, i0, next) and
+      adjacentDefReachesUncertainReadExt(def, bb, i, bb0, i0)
+    )
+  }
+
   cached
   predicate lastReadSameVar(Definition def, ControlFlow::Node cfn) {
     exists(ControlFlow::BasicBlock bb, int i |
@@ -1399,6 +1487,9 @@ class DefinitionExt extends Impl::DefinitionExt {
 
   /** Gets the location of this definition. */
   Location getLocation() { result = this.(Ssa::Definition).getLocation() }
+
+  /** Gets the enclosing callable of this definition. */
+  Callable getEnclosingCallable() { result = this.(Ssa::Definition).getEnclosingCallable() }
 }
 
 /**
@@ -1412,4 +1503,8 @@ class PhiReadNode extends DefinitionExt, Impl::PhiReadNode {
   }
 
   override Location getLocation() { result = this.getBasicBlock().getLocation() }
+
+  override Callable getEnclosingCallable() {
+    result = this.getSourceVariable().getEnclosingCallable()
+  }
 }
diff --git a/csharp/ql/test/library-tests/csharp7/LocalTaintFlow.expected b/csharp/ql/test/library-tests/csharp7/LocalTaintFlow.expected
index d5302764f5c..af72c3e5e38 100644
--- a/csharp/ql/test/library-tests/csharp7/LocalTaintFlow.expected
+++ b/csharp/ql/test/library-tests/csharp7/LocalTaintFlow.expected
@@ -160,7 +160,7 @@
 | CSharp7.cs:232:20:232:23 | null | CSharp7.cs:232:16:232:23 | SSA def(o) |
 | CSharp7.cs:233:13:233:13 | access to local variable o | CSharp7.cs:233:18:233:23 | SSA def(i1) |
 | CSharp7.cs:233:13:233:13 | access to local variable o | CSharp7.cs:237:18:237:18 | access to local variable o |
-| CSharp7.cs:233:13:233:13 | access to local variable o | CSharp7.cs:248:17:248:17 | access to local variable o |
+| CSharp7.cs:233:13:233:13 | access to local variable o | CSharp7.cs:248:9:274:9 | SSA phi read(o) |
 | CSharp7.cs:233:13:233:23 | [false] ... is ... | CSharp7.cs:233:13:233:33 | [false] ... && ... |
 | CSharp7.cs:233:13:233:23 | [true] ... is ... | CSharp7.cs:233:13:233:33 | [false] ... && ... |
 | CSharp7.cs:233:13:233:23 | [true] ... is ... | CSharp7.cs:233:13:233:33 | [true] ... && ... |
@@ -173,13 +173,14 @@
 | CSharp7.cs:235:38:235:39 | access to local variable i1 | CSharp7.cs:235:31:235:41 | $"..." |
 | CSharp7.cs:237:18:237:18 | access to local variable o | CSharp7.cs:237:23:237:31 | SSA def(s1) |
 | CSharp7.cs:237:18:237:18 | access to local variable o | CSharp7.cs:241:18:241:18 | access to local variable o |
-| CSharp7.cs:237:18:237:18 | access to local variable o | CSharp7.cs:248:17:248:17 | access to local variable o |
+| CSharp7.cs:237:18:237:18 | access to local variable o | CSharp7.cs:248:9:274:9 | SSA phi read(o) |
 | CSharp7.cs:237:23:237:31 | SSA def(s1) | CSharp7.cs:239:41:239:42 | access to local variable s1 |
 | CSharp7.cs:239:33:239:39 | "string " | CSharp7.cs:239:31:239:44 | $"..." |
 | CSharp7.cs:239:41:239:42 | access to local variable s1 | CSharp7.cs:239:31:239:44 | $"..." |
 | CSharp7.cs:241:18:241:18 | access to local variable o | CSharp7.cs:244:18:244:18 | access to local variable o |
-| CSharp7.cs:241:18:241:18 | access to local variable o | CSharp7.cs:248:17:248:17 | access to local variable o |
-| CSharp7.cs:244:18:244:18 | access to local variable o | CSharp7.cs:248:17:248:17 | access to local variable o |
+| CSharp7.cs:241:18:241:18 | access to local variable o | CSharp7.cs:248:9:274:9 | SSA phi read(o) |
+| CSharp7.cs:244:18:244:18 | access to local variable o | CSharp7.cs:248:9:274:9 | SSA phi read(o) |
+| CSharp7.cs:248:9:274:9 | SSA phi read(o) | CSharp7.cs:248:17:248:17 | access to local variable o |
 | CSharp7.cs:248:17:248:17 | access to local variable o | CSharp7.cs:254:27:254:27 | access to local variable o |
 | CSharp7.cs:248:17:248:17 | access to local variable o | CSharp7.cs:257:18:257:23 | SSA def(i2) |
 | CSharp7.cs:248:17:248:17 | access to local variable o | CSharp7.cs:260:18:260:23 | SSA def(i3) |
diff --git a/csharp/ql/test/library-tests/dataflow/local/DataFlowStep.expected b/csharp/ql/test/library-tests/dataflow/local/DataFlowStep.expected
index 92d2013bfbe..ad28e92e626 100644
--- a/csharp/ql/test/library-tests/dataflow/local/DataFlowStep.expected
+++ b/csharp/ql/test/library-tests/dataflow/local/DataFlowStep.expected
@@ -373,8 +373,8 @@
 | LocalDataFlow.cs:278:15:278:22 | access to local variable nonSink0 | LocalDataFlow.cs:285:31:285:38 | access to local variable nonSink0 |
 | LocalDataFlow.cs:281:13:281:34 | SSA def(sink70) | LocalDataFlow.cs:282:15:282:20 | access to local variable sink70 |
 | LocalDataFlow.cs:281:22:281:34 | ... = ... | LocalDataFlow.cs:281:13:281:34 | SSA def(sink70) |
+| LocalDataFlow.cs:281:22:281:34 | SSA def(sink0) | LocalDataFlow.cs:313:22:313:38 | SSA phi read(sink0) |
 | LocalDataFlow.cs:281:22:281:34 | SSA def(sink0) | LocalDataFlow.cs:313:34:313:38 | access to local variable sink0 |
-| LocalDataFlow.cs:281:22:281:34 | SSA def(sink0) | LocalDataFlow.cs:314:22:314:26 | access to local variable sink0 |
 | LocalDataFlow.cs:281:30:281:34 | access to local variable sink0 | LocalDataFlow.cs:281:22:281:34 | ... = ... |
 | LocalDataFlow.cs:281:30:281:34 | access to local variable sink0 | LocalDataFlow.cs:281:22:281:34 | SSA def(sink0) |
 | LocalDataFlow.cs:282:15:282:20 | [post] access to local variable sink70 | LocalDataFlow.cs:289:13:289:18 | access to local variable sink70 |
@@ -399,8 +399,9 @@
 | LocalDataFlow.cs:313:22:313:29 | access to local variable nonSink0 | LocalDataFlow.cs:313:22:313:38 | ... ?? ... |
 | LocalDataFlow.cs:313:22:313:29 | access to local variable nonSink0 | LocalDataFlow.cs:314:31:314:38 | access to local variable nonSink0 |
 | LocalDataFlow.cs:313:22:313:38 | ... ?? ... | LocalDataFlow.cs:313:13:313:38 | SSA def(sink73) |
+| LocalDataFlow.cs:313:22:313:38 | SSA phi read(sink0) | LocalDataFlow.cs:314:22:314:26 | access to local variable sink0 |
 | LocalDataFlow.cs:313:34:313:38 | access to local variable sink0 | LocalDataFlow.cs:313:22:313:38 | ... ?? ... |
-| LocalDataFlow.cs:313:34:313:38 | access to local variable sink0 | LocalDataFlow.cs:314:22:314:26 | access to local variable sink0 |
+| LocalDataFlow.cs:313:34:313:38 | access to local variable sink0 | LocalDataFlow.cs:313:22:313:38 | SSA phi read(sink0) |
 | LocalDataFlow.cs:314:13:314:38 | SSA def(sink74) | LocalDataFlow.cs:316:15:316:20 | access to local variable sink74 |
 | LocalDataFlow.cs:314:22:314:26 | access to local variable sink0 | LocalDataFlow.cs:314:22:314:38 | ... ?? ... |
 | LocalDataFlow.cs:314:22:314:38 | ... ?? ... | LocalDataFlow.cs:314:13:314:38 | SSA def(sink74) |
@@ -441,28 +442,22 @@
 | SSA.cs:13:15:13:22 | [post] access to local variable nonSink0 | SSA.cs:19:13:19:20 | access to local variable nonSink0 |
 | SSA.cs:13:15:13:22 | access to local variable nonSink0 | SSA.cs:19:13:19:20 | access to local variable nonSink0 |
 | SSA.cs:16:13:16:20 | [post] access to local variable ssaSink0 | SSA.cs:24:24:24:31 | access to local variable ssaSink0 |
-| SSA.cs:16:13:16:20 | [post] access to local variable ssaSink0 | SSA.cs:37:24:37:31 | access to local variable ssaSink0 |
-| SSA.cs:16:13:16:20 | [post] access to local variable ssaSink0 | SSA.cs:91:24:91:31 | access to local variable ssaSink0 |
-| SSA.cs:16:13:16:20 | [post] access to local variable ssaSink0 | SSA.cs:117:36:117:43 | access to local variable ssaSink0 |
+| SSA.cs:16:13:16:20 | [post] access to local variable ssaSink0 | SSA.cs:25:9:25:24 | SSA phi read(ssaSink0) |
 | SSA.cs:16:13:16:20 | access to local variable ssaSink0 | SSA.cs:24:24:24:31 | access to local variable ssaSink0 |
-| SSA.cs:16:13:16:20 | access to local variable ssaSink0 | SSA.cs:37:24:37:31 | access to local variable ssaSink0 |
-| SSA.cs:16:13:16:20 | access to local variable ssaSink0 | SSA.cs:91:24:91:31 | access to local variable ssaSink0 |
-| SSA.cs:16:13:16:20 | access to local variable ssaSink0 | SSA.cs:117:36:117:43 | access to local variable ssaSink0 |
+| SSA.cs:16:13:16:20 | access to local variable ssaSink0 | SSA.cs:25:9:25:24 | SSA phi read(ssaSink0) |
 | SSA.cs:19:13:19:20 | [post] access to local variable nonSink0 | SSA.cs:30:24:30:31 | access to local variable nonSink0 |
-| SSA.cs:19:13:19:20 | [post] access to local variable nonSink0 | SSA.cs:49:24:49:31 | access to local variable nonSink0 |
-| SSA.cs:19:13:19:20 | [post] access to local variable nonSink0 | SSA.cs:63:23:63:30 | access to local variable nonSink0 |
+| SSA.cs:19:13:19:20 | [post] access to local variable nonSink0 | SSA.cs:31:9:31:24 | SSA phi read(nonSink0) |
 | SSA.cs:19:13:19:20 | access to local variable nonSink0 | SSA.cs:30:24:30:31 | access to local variable nonSink0 |
-| SSA.cs:19:13:19:20 | access to local variable nonSink0 | SSA.cs:49:24:49:31 | access to local variable nonSink0 |
-| SSA.cs:19:13:19:20 | access to local variable nonSink0 | SSA.cs:63:23:63:30 | access to local variable nonSink0 |
+| SSA.cs:19:13:19:20 | access to local variable nonSink0 | SSA.cs:31:9:31:24 | SSA phi read(nonSink0) |
 | SSA.cs:22:16:22:28 | SSA def(ssaSink1) | SSA.cs:25:9:25:24 | SSA phi(ssaSink1) |
 | SSA.cs:22:27:22:28 | "" | SSA.cs:22:16:22:28 | SSA def(ssaSink1) |
 | SSA.cs:23:13:23:22 | [post] access to parameter nonTainted | SSA.cs:29:13:29:22 | access to parameter nonTainted |
 | SSA.cs:23:13:23:22 | access to parameter nonTainted | SSA.cs:29:13:29:22 | access to parameter nonTainted |
 | SSA.cs:24:13:24:31 | SSA def(ssaSink1) | SSA.cs:25:9:25:24 | SSA phi(ssaSink1) |
 | SSA.cs:24:24:24:31 | access to local variable ssaSink0 | SSA.cs:24:13:24:31 | SSA def(ssaSink1) |
-| SSA.cs:24:24:24:31 | access to local variable ssaSink0 | SSA.cs:37:24:37:31 | access to local variable ssaSink0 |
-| SSA.cs:24:24:24:31 | access to local variable ssaSink0 | SSA.cs:91:24:91:31 | access to local variable ssaSink0 |
-| SSA.cs:24:24:24:31 | access to local variable ssaSink0 | SSA.cs:117:36:117:43 | access to local variable ssaSink0 |
+| SSA.cs:24:24:24:31 | access to local variable ssaSink0 | SSA.cs:25:9:25:24 | SSA phi read(ssaSink0) |
+| SSA.cs:25:9:25:24 | SSA phi read(ssaSink0) | SSA.cs:37:24:37:31 | access to local variable ssaSink0 |
+| SSA.cs:25:9:25:24 | SSA phi read(ssaSink0) | SSA.cs:43:9:43:24 | SSA phi read(ssaSink0) |
 | SSA.cs:25:9:25:24 | SSA phi(ssaSink1) | SSA.cs:25:15:25:22 | access to local variable ssaSink1 |
 | SSA.cs:28:16:28:28 | SSA def(nonSink1) | SSA.cs:31:9:31:24 | SSA phi(nonSink1) |
 | SSA.cs:28:27:28:28 | "" | SSA.cs:28:16:28:28 | SSA def(nonSink1) |
@@ -470,43 +465,48 @@
 | SSA.cs:29:13:29:22 | access to parameter nonTainted | SSA.cs:35:13:35:22 | access to parameter nonTainted |
 | SSA.cs:30:13:30:31 | SSA def(nonSink1) | SSA.cs:31:9:31:24 | SSA phi(nonSink1) |
 | SSA.cs:30:24:30:31 | access to local variable nonSink0 | SSA.cs:30:13:30:31 | SSA def(nonSink1) |
-| SSA.cs:30:24:30:31 | access to local variable nonSink0 | SSA.cs:49:24:49:31 | access to local variable nonSink0 |
-| SSA.cs:30:24:30:31 | access to local variable nonSink0 | SSA.cs:63:23:63:30 | access to local variable nonSink0 |
+| SSA.cs:30:24:30:31 | access to local variable nonSink0 | SSA.cs:31:9:31:24 | SSA phi read(nonSink0) |
+| SSA.cs:31:9:31:24 | SSA phi read(nonSink0) | SSA.cs:49:24:49:31 | access to local variable nonSink0 |
+| SSA.cs:31:9:31:24 | SSA phi read(nonSink0) | SSA.cs:55:9:55:24 | SSA phi read(nonSink0) |
 | SSA.cs:31:9:31:24 | SSA phi(nonSink1) | SSA.cs:31:15:31:22 | access to local variable nonSink1 |
 | SSA.cs:34:16:34:28 | SSA def(ssaSink2) | SSA.cs:43:9:43:24 | SSA phi(ssaSink2) |
 | SSA.cs:34:27:34:28 | "" | SSA.cs:34:16:34:28 | SSA def(ssaSink2) |
 | SSA.cs:35:13:35:22 | [post] access to parameter nonTainted | SSA.cs:38:17:38:26 | access to parameter nonTainted |
-| SSA.cs:35:13:35:22 | [post] access to parameter nonTainted | SSA.cs:47:13:47:22 | access to parameter nonTainted |
+| SSA.cs:35:13:35:22 | [post] access to parameter nonTainted | SSA.cs:43:9:43:24 | SSA phi read(nonTainted) |
 | SSA.cs:35:13:35:22 | access to parameter nonTainted | SSA.cs:38:17:38:26 | access to parameter nonTainted |
-| SSA.cs:35:13:35:22 | access to parameter nonTainted | SSA.cs:47:13:47:22 | access to parameter nonTainted |
+| SSA.cs:35:13:35:22 | access to parameter nonTainted | SSA.cs:43:9:43:24 | SSA phi read(nonTainted) |
 | SSA.cs:37:13:37:31 | SSA def(ssaSink2) | SSA.cs:39:21:39:28 | access to local variable ssaSink2 |
 | SSA.cs:37:13:37:31 | SSA def(ssaSink2) | SSA.cs:41:21:41:28 | access to local variable ssaSink2 |
 | SSA.cs:37:24:37:31 | access to local variable ssaSink0 | SSA.cs:37:13:37:31 | SSA def(ssaSink2) |
-| SSA.cs:37:24:37:31 | access to local variable ssaSink0 | SSA.cs:91:24:91:31 | access to local variable ssaSink0 |
-| SSA.cs:37:24:37:31 | access to local variable ssaSink0 | SSA.cs:117:36:117:43 | access to local variable ssaSink0 |
-| SSA.cs:38:17:38:26 | [post] access to parameter nonTainted | SSA.cs:47:13:47:22 | access to parameter nonTainted |
-| SSA.cs:38:17:38:26 | access to parameter nonTainted | SSA.cs:47:13:47:22 | access to parameter nonTainted |
+| SSA.cs:37:24:37:31 | access to local variable ssaSink0 | SSA.cs:43:9:43:24 | SSA phi read(ssaSink0) |
+| SSA.cs:38:17:38:26 | [post] access to parameter nonTainted | SSA.cs:43:9:43:24 | SSA phi read(nonTainted) |
+| SSA.cs:38:17:38:26 | access to parameter nonTainted | SSA.cs:43:9:43:24 | SSA phi read(nonTainted) |
 | SSA.cs:39:21:39:28 | [post] access to local variable ssaSink2 | SSA.cs:43:9:43:24 | SSA phi(ssaSink2) |
 | SSA.cs:39:21:39:28 | access to local variable ssaSink2 | SSA.cs:43:9:43:24 | SSA phi(ssaSink2) |
 | SSA.cs:41:21:41:28 | [post] access to local variable ssaSink2 | SSA.cs:43:9:43:24 | SSA phi(ssaSink2) |
 | SSA.cs:41:21:41:28 | access to local variable ssaSink2 | SSA.cs:43:9:43:24 | SSA phi(ssaSink2) |
+| SSA.cs:43:9:43:24 | SSA phi read(nonTainted) | SSA.cs:47:13:47:22 | access to parameter nonTainted |
+| SSA.cs:43:9:43:24 | SSA phi read(ssaSink0) | SSA.cs:91:24:91:31 | access to local variable ssaSink0 |
+| SSA.cs:43:9:43:24 | SSA phi read(ssaSink0) | SSA.cs:97:9:97:32 | SSA phi read(ssaSink0) |
 | SSA.cs:43:9:43:24 | SSA phi(ssaSink2) | SSA.cs:43:15:43:22 | access to local variable ssaSink2 |
 | SSA.cs:46:16:46:28 | SSA def(nonSink2) | SSA.cs:55:9:55:24 | SSA phi(nonSink2) |
 | SSA.cs:46:27:46:28 | "" | SSA.cs:46:16:46:28 | SSA def(nonSink2) |
 | SSA.cs:47:13:47:22 | [post] access to parameter nonTainted | SSA.cs:50:17:50:26 | access to parameter nonTainted |
-| SSA.cs:47:13:47:22 | [post] access to parameter nonTainted | SSA.cs:89:13:89:22 | access to parameter nonTainted |
+| SSA.cs:47:13:47:22 | [post] access to parameter nonTainted | SSA.cs:55:9:55:24 | SSA phi read(nonTainted) |
 | SSA.cs:47:13:47:22 | access to parameter nonTainted | SSA.cs:50:17:50:26 | access to parameter nonTainted |
-| SSA.cs:47:13:47:22 | access to parameter nonTainted | SSA.cs:89:13:89:22 | access to parameter nonTainted |
+| SSA.cs:47:13:47:22 | access to parameter nonTainted | SSA.cs:55:9:55:24 | SSA phi read(nonTainted) |
 | SSA.cs:49:13:49:31 | SSA def(nonSink2) | SSA.cs:51:21:51:28 | access to local variable nonSink2 |
 | SSA.cs:49:13:49:31 | SSA def(nonSink2) | SSA.cs:53:21:53:28 | access to local variable nonSink2 |
 | SSA.cs:49:24:49:31 | access to local variable nonSink0 | SSA.cs:49:13:49:31 | SSA def(nonSink2) |
-| SSA.cs:49:24:49:31 | access to local variable nonSink0 | SSA.cs:63:23:63:30 | access to local variable nonSink0 |
-| SSA.cs:50:17:50:26 | [post] access to parameter nonTainted | SSA.cs:89:13:89:22 | access to parameter nonTainted |
-| SSA.cs:50:17:50:26 | access to parameter nonTainted | SSA.cs:89:13:89:22 | access to parameter nonTainted |
+| SSA.cs:49:24:49:31 | access to local variable nonSink0 | SSA.cs:55:9:55:24 | SSA phi read(nonSink0) |
+| SSA.cs:50:17:50:26 | [post] access to parameter nonTainted | SSA.cs:55:9:55:24 | SSA phi read(nonTainted) |
+| SSA.cs:50:17:50:26 | access to parameter nonTainted | SSA.cs:55:9:55:24 | SSA phi read(nonTainted) |
 | SSA.cs:51:21:51:28 | [post] access to local variable nonSink2 | SSA.cs:55:9:55:24 | SSA phi(nonSink2) |
 | SSA.cs:51:21:51:28 | access to local variable nonSink2 | SSA.cs:55:9:55:24 | SSA phi(nonSink2) |
 | SSA.cs:53:21:53:28 | [post] access to local variable nonSink2 | SSA.cs:55:9:55:24 | SSA phi(nonSink2) |
 | SSA.cs:53:21:53:28 | access to local variable nonSink2 | SSA.cs:55:9:55:24 | SSA phi(nonSink2) |
+| SSA.cs:55:9:55:24 | SSA phi read(nonSink0) | SSA.cs:63:23:63:30 | access to local variable nonSink0 |
+| SSA.cs:55:9:55:24 | SSA phi read(nonTainted) | SSA.cs:89:13:89:22 | access to parameter nonTainted |
 | SSA.cs:55:9:55:24 | SSA phi(nonSink2) | SSA.cs:55:15:55:22 | access to local variable nonSink2 |
 | SSA.cs:58:16:58:33 | SSA def(ssaSink3) | SSA.cs:59:23:59:30 | access to local variable ssaSink3 |
 | SSA.cs:58:27:58:33 | access to parameter tainted | SSA.cs:58:16:58:33 | SSA def(ssaSink3) |
@@ -555,9 +555,9 @@
 | SSA.cs:77:20:77:26 | access to parameter tainted | SSA.cs:80:35:80:41 | access to parameter tainted |
 | SSA.cs:78:21:78:28 | SSA def(nonSink0) | SSA.cs:79:15:79:22 | access to local variable nonSink0 |
 | SSA.cs:79:15:79:22 | [post] access to local variable nonSink0 | SSA.cs:104:24:104:31 | access to local variable nonSink0 |
-| SSA.cs:79:15:79:22 | [post] access to local variable nonSink0 | SSA.cs:130:39:130:46 | access to local variable nonSink0 |
+| SSA.cs:79:15:79:22 | [post] access to local variable nonSink0 | SSA.cs:110:9:110:32 | SSA phi read(nonSink0) |
 | SSA.cs:79:15:79:22 | access to local variable nonSink0 | SSA.cs:104:24:104:31 | access to local variable nonSink0 |
-| SSA.cs:79:15:79:22 | access to local variable nonSink0 | SSA.cs:130:39:130:46 | access to local variable nonSink0 |
+| SSA.cs:79:15:79:22 | access to local variable nonSink0 | SSA.cs:110:9:110:32 | SSA phi read(nonSink0) |
 | SSA.cs:80:9:80:12 | [post] this access | SSA.cs:81:21:81:24 | this access |
 | SSA.cs:80:9:80:12 | this access | SSA.cs:81:21:81:24 | this access |
 | SSA.cs:80:9:80:14 | [post] access to field S | SSA.cs:81:21:81:26 | access to field S |
@@ -585,19 +585,21 @@
 | SSA.cs:88:16:88:28 | SSA def(ssaSink4) | SSA.cs:97:9:97:32 | SSA phi(ssaSink4) |
 | SSA.cs:88:27:88:28 | "" | SSA.cs:88:16:88:28 | SSA def(ssaSink4) |
 | SSA.cs:89:13:89:22 | [post] access to parameter nonTainted | SSA.cs:92:17:92:26 | access to parameter nonTainted |
-| SSA.cs:89:13:89:22 | [post] access to parameter nonTainted | SSA.cs:102:13:102:22 | access to parameter nonTainted |
+| SSA.cs:89:13:89:22 | [post] access to parameter nonTainted | SSA.cs:97:9:97:32 | SSA phi read(nonTainted) |
 | SSA.cs:89:13:89:22 | access to parameter nonTainted | SSA.cs:92:17:92:26 | access to parameter nonTainted |
-| SSA.cs:89:13:89:22 | access to parameter nonTainted | SSA.cs:102:13:102:22 | access to parameter nonTainted |
+| SSA.cs:89:13:89:22 | access to parameter nonTainted | SSA.cs:97:9:97:32 | SSA phi read(nonTainted) |
 | SSA.cs:91:13:91:31 | SSA def(ssaSink4) | SSA.cs:93:21:93:28 | access to local variable ssaSink4 |
 | SSA.cs:91:13:91:31 | SSA def(ssaSink4) | SSA.cs:95:21:95:28 | access to local variable ssaSink4 |
 | SSA.cs:91:24:91:31 | access to local variable ssaSink0 | SSA.cs:91:13:91:31 | SSA def(ssaSink4) |
-| SSA.cs:91:24:91:31 | access to local variable ssaSink0 | SSA.cs:117:36:117:43 | access to local variable ssaSink0 |
-| SSA.cs:92:17:92:26 | [post] access to parameter nonTainted | SSA.cs:102:13:102:22 | access to parameter nonTainted |
-| SSA.cs:92:17:92:26 | access to parameter nonTainted | SSA.cs:102:13:102:22 | access to parameter nonTainted |
+| SSA.cs:91:24:91:31 | access to local variable ssaSink0 | SSA.cs:97:9:97:32 | SSA phi read(ssaSink0) |
+| SSA.cs:92:17:92:26 | [post] access to parameter nonTainted | SSA.cs:97:9:97:32 | SSA phi read(nonTainted) |
+| SSA.cs:92:17:92:26 | access to parameter nonTainted | SSA.cs:97:9:97:32 | SSA phi read(nonTainted) |
 | SSA.cs:93:21:93:28 | [post] access to local variable ssaSink4 | SSA.cs:97:9:97:32 | SSA phi(ssaSink4) |
 | SSA.cs:93:21:93:28 | access to local variable ssaSink4 | SSA.cs:97:9:97:32 | SSA phi(ssaSink4) |
 | SSA.cs:95:21:95:28 | [post] access to local variable ssaSink4 | SSA.cs:97:9:97:32 | SSA phi(ssaSink4) |
 | SSA.cs:95:21:95:28 | access to local variable ssaSink4 | SSA.cs:97:9:97:32 | SSA phi(ssaSink4) |
+| SSA.cs:97:9:97:32 | SSA phi read(nonTainted) | SSA.cs:102:13:102:22 | access to parameter nonTainted |
+| SSA.cs:97:9:97:32 | SSA phi read(ssaSink0) | SSA.cs:117:36:117:43 | access to local variable ssaSink0 |
 | SSA.cs:97:9:97:32 | SSA phi(ssaSink4) | SSA.cs:97:23:97:30 | access to local variable ssaSink4 |
 | SSA.cs:97:23:97:30 | SSA def(ssaSink4) | SSA.cs:98:15:98:22 | access to local variable ssaSink4 |
 | SSA.cs:97:23:97:30 | [post] access to local variable ssaSink4 | SSA.cs:97:23:97:30 | SSA def(ssaSink4) |
@@ -605,19 +607,21 @@
 | SSA.cs:101:16:101:28 | SSA def(nonSink3) | SSA.cs:110:9:110:32 | SSA phi(nonSink3) |
 | SSA.cs:101:27:101:28 | "" | SSA.cs:101:16:101:28 | SSA def(nonSink3) |
 | SSA.cs:102:13:102:22 | [post] access to parameter nonTainted | SSA.cs:105:17:105:26 | access to parameter nonTainted |
-| SSA.cs:102:13:102:22 | [post] access to parameter nonTainted | SSA.cs:115:13:115:22 | access to parameter nonTainted |
+| SSA.cs:102:13:102:22 | [post] access to parameter nonTainted | SSA.cs:110:9:110:32 | SSA phi read(nonTainted) |
 | SSA.cs:102:13:102:22 | access to parameter nonTainted | SSA.cs:105:17:105:26 | access to parameter nonTainted |
-| SSA.cs:102:13:102:22 | access to parameter nonTainted | SSA.cs:115:13:115:22 | access to parameter nonTainted |
+| SSA.cs:102:13:102:22 | access to parameter nonTainted | SSA.cs:110:9:110:32 | SSA phi read(nonTainted) |
 | SSA.cs:104:13:104:31 | SSA def(nonSink3) | SSA.cs:106:21:106:28 | access to local variable nonSink3 |
 | SSA.cs:104:13:104:31 | SSA def(nonSink3) | SSA.cs:108:21:108:28 | access to local variable nonSink3 |
 | SSA.cs:104:24:104:31 | access to local variable nonSink0 | SSA.cs:104:13:104:31 | SSA def(nonSink3) |
-| SSA.cs:104:24:104:31 | access to local variable nonSink0 | SSA.cs:130:39:130:46 | access to local variable nonSink0 |
-| SSA.cs:105:17:105:26 | [post] access to parameter nonTainted | SSA.cs:115:13:115:22 | access to parameter nonTainted |
-| SSA.cs:105:17:105:26 | access to parameter nonTainted | SSA.cs:115:13:115:22 | access to parameter nonTainted |
+| SSA.cs:104:24:104:31 | access to local variable nonSink0 | SSA.cs:110:9:110:32 | SSA phi read(nonSink0) |
+| SSA.cs:105:17:105:26 | [post] access to parameter nonTainted | SSA.cs:110:9:110:32 | SSA phi read(nonTainted) |
+| SSA.cs:105:17:105:26 | access to parameter nonTainted | SSA.cs:110:9:110:32 | SSA phi read(nonTainted) |
 | SSA.cs:106:21:106:28 | [post] access to local variable nonSink3 | SSA.cs:110:9:110:32 | SSA phi(nonSink3) |
 | SSA.cs:106:21:106:28 | access to local variable nonSink3 | SSA.cs:110:9:110:32 | SSA phi(nonSink3) |
 | SSA.cs:108:21:108:28 | [post] access to local variable nonSink3 | SSA.cs:110:9:110:32 | SSA phi(nonSink3) |
 | SSA.cs:108:21:108:28 | access to local variable nonSink3 | SSA.cs:110:9:110:32 | SSA phi(nonSink3) |
+| SSA.cs:110:9:110:32 | SSA phi read(nonSink0) | SSA.cs:130:39:130:46 | access to local variable nonSink0 |
+| SSA.cs:110:9:110:32 | SSA phi read(nonTainted) | SSA.cs:115:13:115:22 | access to parameter nonTainted |
 | SSA.cs:110:9:110:32 | SSA phi(nonSink3) | SSA.cs:110:23:110:30 | access to local variable nonSink3 |
 | SSA.cs:110:23:110:30 | SSA def(nonSink3) | SSA.cs:111:15:111:22 | access to local variable nonSink3 |
 | SSA.cs:110:23:110:30 | [post] access to local variable nonSink3 | SSA.cs:110:23:110:30 | SSA def(nonSink3) |
@@ -627,15 +631,15 @@
 | SSA.cs:114:9:114:12 | this access | SSA.cs:117:13:117:16 | this access |
 | SSA.cs:114:9:114:12 | this access | SSA.cs:123:23:123:26 | this access |
 | SSA.cs:114:9:114:14 | [post] access to field S | SSA.cs:117:13:117:18 | access to field S |
-| SSA.cs:114:9:114:14 | [post] access to field S | SSA.cs:123:23:123:28 | access to field S |
+| SSA.cs:114:9:114:14 | [post] access to field S | SSA.cs:123:9:123:30 | SSA phi read(this.S) |
 | SSA.cs:114:9:114:14 | access to field S | SSA.cs:117:13:117:18 | access to field S |
-| SSA.cs:114:9:114:14 | access to field S | SSA.cs:123:23:123:28 | access to field S |
+| SSA.cs:114:9:114:14 | access to field S | SSA.cs:123:9:123:30 | SSA phi read(this.S) |
 | SSA.cs:114:9:114:33 | SSA def(this.S.SsaFieldSink1) | SSA.cs:123:9:123:30 | SSA phi(this.S.SsaFieldSink1) |
 | SSA.cs:114:32:114:33 | "" | SSA.cs:114:9:114:33 | SSA def(this.S.SsaFieldSink1) |
 | SSA.cs:115:13:115:22 | [post] access to parameter nonTainted | SSA.cs:118:17:118:26 | access to parameter nonTainted |
-| SSA.cs:115:13:115:22 | [post] access to parameter nonTainted | SSA.cs:128:13:128:22 | access to parameter nonTainted |
+| SSA.cs:115:13:115:22 | [post] access to parameter nonTainted | SSA.cs:123:9:123:30 | SSA phi read(nonTainted) |
 | SSA.cs:115:13:115:22 | access to parameter nonTainted | SSA.cs:118:17:118:26 | access to parameter nonTainted |
-| SSA.cs:115:13:115:22 | access to parameter nonTainted | SSA.cs:128:13:128:22 | access to parameter nonTainted |
+| SSA.cs:115:13:115:22 | access to parameter nonTainted | SSA.cs:123:9:123:30 | SSA phi read(nonTainted) |
 | SSA.cs:117:13:117:16 | [post] this access | SSA.cs:119:21:119:24 | this access |
 | SSA.cs:117:13:117:16 | [post] this access | SSA.cs:121:21:121:24 | this access |
 | SSA.cs:117:13:117:16 | this access | SSA.cs:119:21:119:24 | this access |
@@ -647,20 +651,22 @@
 | SSA.cs:117:13:117:43 | SSA def(this.S.SsaFieldSink1) | SSA.cs:119:21:119:40 | access to field SsaFieldSink1 |
 | SSA.cs:117:13:117:43 | SSA def(this.S.SsaFieldSink1) | SSA.cs:121:21:121:40 | access to field SsaFieldSink1 |
 | SSA.cs:117:36:117:43 | access to local variable ssaSink0 | SSA.cs:117:13:117:43 | SSA def(this.S.SsaFieldSink1) |
-| SSA.cs:118:17:118:26 | [post] access to parameter nonTainted | SSA.cs:128:13:128:22 | access to parameter nonTainted |
-| SSA.cs:118:17:118:26 | access to parameter nonTainted | SSA.cs:128:13:128:22 | access to parameter nonTainted |
+| SSA.cs:118:17:118:26 | [post] access to parameter nonTainted | SSA.cs:123:9:123:30 | SSA phi read(nonTainted) |
+| SSA.cs:118:17:118:26 | access to parameter nonTainted | SSA.cs:123:9:123:30 | SSA phi read(nonTainted) |
 | SSA.cs:119:21:119:24 | [post] this access | SSA.cs:123:23:123:26 | this access |
 | SSA.cs:119:21:119:24 | this access | SSA.cs:123:23:123:26 | this access |
-| SSA.cs:119:21:119:26 | [post] access to field S | SSA.cs:123:23:123:28 | access to field S |
-| SSA.cs:119:21:119:26 | access to field S | SSA.cs:123:23:123:28 | access to field S |
+| SSA.cs:119:21:119:26 | [post] access to field S | SSA.cs:123:9:123:30 | SSA phi read(this.S) |
+| SSA.cs:119:21:119:26 | access to field S | SSA.cs:123:9:123:30 | SSA phi read(this.S) |
 | SSA.cs:119:21:119:40 | [post] access to field SsaFieldSink1 | SSA.cs:123:9:123:30 | SSA phi(this.S.SsaFieldSink1) |
 | SSA.cs:119:21:119:40 | access to field SsaFieldSink1 | SSA.cs:123:9:123:30 | SSA phi(this.S.SsaFieldSink1) |
 | SSA.cs:121:21:121:24 | [post] this access | SSA.cs:123:23:123:26 | this access |
 | SSA.cs:121:21:121:24 | this access | SSA.cs:123:23:123:26 | this access |
-| SSA.cs:121:21:121:26 | [post] access to field S | SSA.cs:123:23:123:28 | access to field S |
-| SSA.cs:121:21:121:26 | access to field S | SSA.cs:123:23:123:28 | access to field S |
+| SSA.cs:121:21:121:26 | [post] access to field S | SSA.cs:123:9:123:30 | SSA phi read(this.S) |
+| SSA.cs:121:21:121:26 | access to field S | SSA.cs:123:9:123:30 | SSA phi read(this.S) |
 | SSA.cs:121:21:121:40 | [post] access to field SsaFieldSink1 | SSA.cs:123:9:123:30 | SSA phi(this.S.SsaFieldSink1) |
 | SSA.cs:121:21:121:40 | access to field SsaFieldSink1 | SSA.cs:123:9:123:30 | SSA phi(this.S.SsaFieldSink1) |
+| SSA.cs:123:9:123:30 | SSA phi read(nonTainted) | SSA.cs:128:13:128:22 | access to parameter nonTainted |
+| SSA.cs:123:9:123:30 | SSA phi read(this.S) | SSA.cs:123:23:123:28 | access to field S |
 | SSA.cs:123:9:123:30 | SSA phi(this.S.SsaFieldSink1) | SSA.cs:123:23:123:28 | SSA qualifier def(this.S.SsaFieldSink1) |
 | SSA.cs:123:23:123:26 | [post] this access | SSA.cs:124:15:124:18 | this access |
 | SSA.cs:123:23:123:26 | this access | SSA.cs:124:15:124:18 | this access |
@@ -677,9 +683,9 @@
 | SSA.cs:127:9:127:12 | this access | SSA.cs:130:13:130:16 | this access |
 | SSA.cs:127:9:127:12 | this access | SSA.cs:136:23:136:26 | this access |
 | SSA.cs:127:9:127:14 | [post] access to field S | SSA.cs:130:13:130:18 | access to field S |
-| SSA.cs:127:9:127:14 | [post] access to field S | SSA.cs:136:23:136:28 | access to field S |
+| SSA.cs:127:9:127:14 | [post] access to field S | SSA.cs:136:9:136:30 | SSA phi read(this.S) |
 | SSA.cs:127:9:127:14 | access to field S | SSA.cs:130:13:130:18 | access to field S |
-| SSA.cs:127:9:127:14 | access to field S | SSA.cs:136:23:136:28 | access to field S |
+| SSA.cs:127:9:127:14 | access to field S | SSA.cs:136:9:136:30 | SSA phi read(this.S) |
 | SSA.cs:127:9:127:36 | SSA def(this.S.SsaFieldNonSink0) | SSA.cs:136:9:136:30 | SSA phi(this.S.SsaFieldNonSink0) |
 | SSA.cs:127:35:127:36 | "" | SSA.cs:127:9:127:36 | SSA def(this.S.SsaFieldNonSink0) |
 | SSA.cs:128:13:128:22 | [post] access to parameter nonTainted | SSA.cs:131:17:131:26 | access to parameter nonTainted |
@@ -697,16 +703,17 @@
 | SSA.cs:130:39:130:46 | access to local variable nonSink0 | SSA.cs:130:13:130:46 | SSA def(this.S.SsaFieldNonSink0) |
 | SSA.cs:132:21:132:24 | [post] this access | SSA.cs:136:23:136:26 | this access |
 | SSA.cs:132:21:132:24 | this access | SSA.cs:136:23:136:26 | this access |
-| SSA.cs:132:21:132:26 | [post] access to field S | SSA.cs:136:23:136:28 | access to field S |
-| SSA.cs:132:21:132:26 | access to field S | SSA.cs:136:23:136:28 | access to field S |
+| SSA.cs:132:21:132:26 | [post] access to field S | SSA.cs:136:9:136:30 | SSA phi read(this.S) |
+| SSA.cs:132:21:132:26 | access to field S | SSA.cs:136:9:136:30 | SSA phi read(this.S) |
 | SSA.cs:132:21:132:43 | [post] access to field SsaFieldNonSink0 | SSA.cs:136:9:136:30 | SSA phi(this.S.SsaFieldNonSink0) |
 | SSA.cs:132:21:132:43 | access to field SsaFieldNonSink0 | SSA.cs:136:9:136:30 | SSA phi(this.S.SsaFieldNonSink0) |
 | SSA.cs:134:21:134:24 | [post] this access | SSA.cs:136:23:136:26 | this access |
 | SSA.cs:134:21:134:24 | this access | SSA.cs:136:23:136:26 | this access |
-| SSA.cs:134:21:134:26 | [post] access to field S | SSA.cs:136:23:136:28 | access to field S |
-| SSA.cs:134:21:134:26 | access to field S | SSA.cs:136:23:136:28 | access to field S |
+| SSA.cs:134:21:134:26 | [post] access to field S | SSA.cs:136:9:136:30 | SSA phi read(this.S) |
+| SSA.cs:134:21:134:26 | access to field S | SSA.cs:136:9:136:30 | SSA phi read(this.S) |
 | SSA.cs:134:21:134:43 | [post] access to field SsaFieldNonSink0 | SSA.cs:136:9:136:30 | SSA phi(this.S.SsaFieldNonSink0) |
 | SSA.cs:134:21:134:43 | access to field SsaFieldNonSink0 | SSA.cs:136:9:136:30 | SSA phi(this.S.SsaFieldNonSink0) |
+| SSA.cs:136:9:136:30 | SSA phi read(this.S) | SSA.cs:136:23:136:28 | access to field S |
 | SSA.cs:136:9:136:30 | SSA phi(this.S.SsaFieldNonSink0) | SSA.cs:136:23:136:28 | SSA qualifier def(this.S.SsaFieldNonSink0) |
 | SSA.cs:136:23:136:26 | [post] this access | SSA.cs:137:15:137:18 | this access |
 | SSA.cs:136:23:136:26 | this access | SSA.cs:137:15:137:18 | this access |
@@ -732,17 +739,16 @@
 | SSA.cs:170:16:170:28 | SSA def(ssaSink5) | SSA.cs:180:9:180:24 | SSA phi(ssaSink5) |
 | SSA.cs:170:27:170:28 | "" | SSA.cs:170:16:170:28 | SSA def(ssaSink5) |
 | SSA.cs:171:13:171:15 | SSA def(i) | SSA.cs:174:20:174:20 | SSA phi(i) |
-| SSA.cs:173:13:173:30 | SSA def(ssaSink5) | SSA.cs:176:21:176:28 | access to local variable ssaSink5 |
-| SSA.cs:173:13:173:30 | SSA def(ssaSink5) | SSA.cs:180:9:180:24 | SSA phi(ssaSink5) |
+| SSA.cs:173:13:173:30 | SSA def(ssaSink5) | SSA.cs:174:20:174:20 | SSA phi read(ssaSink5) |
 | SSA.cs:173:24:173:30 | access to parameter tainted | SSA.cs:173:13:173:30 | SSA def(ssaSink5) |
+| SSA.cs:174:20:174:20 | SSA phi read(ssaSink5) | SSA.cs:176:21:176:28 | access to local variable ssaSink5 |
+| SSA.cs:174:20:174:20 | SSA phi read(ssaSink5) | SSA.cs:180:9:180:24 | SSA phi(ssaSink5) |
 | SSA.cs:174:20:174:20 | SSA phi(i) | SSA.cs:174:20:174:20 | access to parameter i |
 | SSA.cs:174:20:174:22 | SSA def(i) | SSA.cs:174:20:174:20 | SSA phi(i) |
 | SSA.cs:176:21:176:28 | [post] access to local variable ssaSink5 | SSA.cs:177:21:177:28 | access to local variable ssaSink5 |
 | SSA.cs:176:21:176:28 | access to local variable ssaSink5 | SSA.cs:177:21:177:28 | access to local variable ssaSink5 |
-| SSA.cs:177:21:177:28 | [post] access to local variable ssaSink5 | SSA.cs:176:21:176:28 | access to local variable ssaSink5 |
-| SSA.cs:177:21:177:28 | [post] access to local variable ssaSink5 | SSA.cs:180:9:180:24 | SSA phi(ssaSink5) |
-| SSA.cs:177:21:177:28 | access to local variable ssaSink5 | SSA.cs:176:21:176:28 | access to local variable ssaSink5 |
-| SSA.cs:177:21:177:28 | access to local variable ssaSink5 | SSA.cs:180:9:180:24 | SSA phi(ssaSink5) |
+| SSA.cs:177:21:177:28 | [post] access to local variable ssaSink5 | SSA.cs:174:20:174:20 | SSA phi read(ssaSink5) |
+| SSA.cs:177:21:177:28 | access to local variable ssaSink5 | SSA.cs:174:20:174:20 | SSA phi read(ssaSink5) |
 | SSA.cs:180:9:180:24 | SSA phi(ssaSink5) | SSA.cs:180:15:180:22 | access to local variable ssaSink5 |
 | Splitting.cs:3:18:3:18 | b | Splitting.cs:6:13:6:13 | access to parameter b |
 | Splitting.cs:3:28:3:34 | tainted | Splitting.cs:5:17:5:23 | access to parameter tainted |
diff --git a/csharp/ql/test/library-tests/dataflow/local/TaintTrackingStep.expected b/csharp/ql/test/library-tests/dataflow/local/TaintTrackingStep.expected
index a2767b538f5..6627f70e735 100644
--- a/csharp/ql/test/library-tests/dataflow/local/TaintTrackingStep.expected
+++ b/csharp/ql/test/library-tests/dataflow/local/TaintTrackingStep.expected
@@ -482,8 +482,8 @@
 | LocalDataFlow.cs:278:15:278:22 | access to local variable nonSink0 | LocalDataFlow.cs:285:31:285:38 | access to local variable nonSink0 |
 | LocalDataFlow.cs:281:13:281:34 | SSA def(sink70) | LocalDataFlow.cs:282:15:282:20 | access to local variable sink70 |
 | LocalDataFlow.cs:281:22:281:34 | ... = ... | LocalDataFlow.cs:281:13:281:34 | SSA def(sink70) |
+| LocalDataFlow.cs:281:22:281:34 | SSA def(sink0) | LocalDataFlow.cs:313:22:313:38 | SSA phi read(sink0) |
 | LocalDataFlow.cs:281:22:281:34 | SSA def(sink0) | LocalDataFlow.cs:313:34:313:38 | access to local variable sink0 |
-| LocalDataFlow.cs:281:22:281:34 | SSA def(sink0) | LocalDataFlow.cs:314:22:314:26 | access to local variable sink0 |
 | LocalDataFlow.cs:281:30:281:34 | access to local variable sink0 | LocalDataFlow.cs:281:22:281:34 | ... = ... |
 | LocalDataFlow.cs:281:30:281:34 | access to local variable sink0 | LocalDataFlow.cs:281:22:281:34 | SSA def(sink0) |
 | LocalDataFlow.cs:282:15:282:20 | [post] access to local variable sink70 | LocalDataFlow.cs:289:13:289:18 | access to local variable sink70 |
@@ -508,8 +508,9 @@
 | LocalDataFlow.cs:313:22:313:29 | access to local variable nonSink0 | LocalDataFlow.cs:313:22:313:38 | ... ?? ... |
 | LocalDataFlow.cs:313:22:313:29 | access to local variable nonSink0 | LocalDataFlow.cs:314:31:314:38 | access to local variable nonSink0 |
 | LocalDataFlow.cs:313:22:313:38 | ... ?? ... | LocalDataFlow.cs:313:13:313:38 | SSA def(sink73) |
+| LocalDataFlow.cs:313:22:313:38 | SSA phi read(sink0) | LocalDataFlow.cs:314:22:314:26 | access to local variable sink0 |
 | LocalDataFlow.cs:313:34:313:38 | access to local variable sink0 | LocalDataFlow.cs:313:22:313:38 | ... ?? ... |
-| LocalDataFlow.cs:313:34:313:38 | access to local variable sink0 | LocalDataFlow.cs:314:22:314:26 | access to local variable sink0 |
+| LocalDataFlow.cs:313:34:313:38 | access to local variable sink0 | LocalDataFlow.cs:313:22:313:38 | SSA phi read(sink0) |
 | LocalDataFlow.cs:314:13:314:38 | SSA def(sink74) | LocalDataFlow.cs:316:15:316:20 | access to local variable sink74 |
 | LocalDataFlow.cs:314:22:314:26 | access to local variable sink0 | LocalDataFlow.cs:314:22:314:38 | ... ?? ... |
 | LocalDataFlow.cs:314:22:314:38 | ... ?? ... | LocalDataFlow.cs:314:13:314:38 | SSA def(sink74) |
@@ -551,19 +552,13 @@
 | SSA.cs:13:15:13:22 | [post] access to local variable nonSink0 | SSA.cs:19:13:19:20 | access to local variable nonSink0 |
 | SSA.cs:13:15:13:22 | access to local variable nonSink0 | SSA.cs:19:13:19:20 | access to local variable nonSink0 |
 | SSA.cs:16:13:16:20 | [post] access to local variable ssaSink0 | SSA.cs:24:24:24:31 | access to local variable ssaSink0 |
-| SSA.cs:16:13:16:20 | [post] access to local variable ssaSink0 | SSA.cs:37:24:37:31 | access to local variable ssaSink0 |
-| SSA.cs:16:13:16:20 | [post] access to local variable ssaSink0 | SSA.cs:91:24:91:31 | access to local variable ssaSink0 |
-| SSA.cs:16:13:16:20 | [post] access to local variable ssaSink0 | SSA.cs:117:36:117:43 | access to local variable ssaSink0 |
+| SSA.cs:16:13:16:20 | [post] access to local variable ssaSink0 | SSA.cs:25:9:25:24 | SSA phi read(ssaSink0) |
 | SSA.cs:16:13:16:20 | access to local variable ssaSink0 | SSA.cs:24:24:24:31 | access to local variable ssaSink0 |
-| SSA.cs:16:13:16:20 | access to local variable ssaSink0 | SSA.cs:37:24:37:31 | access to local variable ssaSink0 |
-| SSA.cs:16:13:16:20 | access to local variable ssaSink0 | SSA.cs:91:24:91:31 | access to local variable ssaSink0 |
-| SSA.cs:16:13:16:20 | access to local variable ssaSink0 | SSA.cs:117:36:117:43 | access to local variable ssaSink0 |
+| SSA.cs:16:13:16:20 | access to local variable ssaSink0 | SSA.cs:25:9:25:24 | SSA phi read(ssaSink0) |
 | SSA.cs:19:13:19:20 | [post] access to local variable nonSink0 | SSA.cs:30:24:30:31 | access to local variable nonSink0 |
-| SSA.cs:19:13:19:20 | [post] access to local variable nonSink0 | SSA.cs:49:24:49:31 | access to local variable nonSink0 |
-| SSA.cs:19:13:19:20 | [post] access to local variable nonSink0 | SSA.cs:63:23:63:30 | access to local variable nonSink0 |
+| SSA.cs:19:13:19:20 | [post] access to local variable nonSink0 | SSA.cs:31:9:31:24 | SSA phi read(nonSink0) |
 | SSA.cs:19:13:19:20 | access to local variable nonSink0 | SSA.cs:30:24:30:31 | access to local variable nonSink0 |
-| SSA.cs:19:13:19:20 | access to local variable nonSink0 | SSA.cs:49:24:49:31 | access to local variable nonSink0 |
-| SSA.cs:19:13:19:20 | access to local variable nonSink0 | SSA.cs:63:23:63:30 | access to local variable nonSink0 |
+| SSA.cs:19:13:19:20 | access to local variable nonSink0 | SSA.cs:31:9:31:24 | SSA phi read(nonSink0) |
 | SSA.cs:22:16:22:28 | SSA def(ssaSink1) | SSA.cs:25:9:25:24 | SSA phi(ssaSink1) |
 | SSA.cs:22:27:22:28 | "" | SSA.cs:22:16:22:28 | SSA def(ssaSink1) |
 | SSA.cs:23:13:23:22 | [post] access to parameter nonTainted | SSA.cs:29:13:29:22 | access to parameter nonTainted |
@@ -571,9 +566,9 @@
 | SSA.cs:23:13:23:29 | access to property Length | SSA.cs:23:13:23:33 | ... > ... |
 | SSA.cs:24:13:24:31 | SSA def(ssaSink1) | SSA.cs:25:9:25:24 | SSA phi(ssaSink1) |
 | SSA.cs:24:24:24:31 | access to local variable ssaSink0 | SSA.cs:24:13:24:31 | SSA def(ssaSink1) |
-| SSA.cs:24:24:24:31 | access to local variable ssaSink0 | SSA.cs:37:24:37:31 | access to local variable ssaSink0 |
-| SSA.cs:24:24:24:31 | access to local variable ssaSink0 | SSA.cs:91:24:91:31 | access to local variable ssaSink0 |
-| SSA.cs:24:24:24:31 | access to local variable ssaSink0 | SSA.cs:117:36:117:43 | access to local variable ssaSink0 |
+| SSA.cs:24:24:24:31 | access to local variable ssaSink0 | SSA.cs:25:9:25:24 | SSA phi read(ssaSink0) |
+| SSA.cs:25:9:25:24 | SSA phi read(ssaSink0) | SSA.cs:37:24:37:31 | access to local variable ssaSink0 |
+| SSA.cs:25:9:25:24 | SSA phi read(ssaSink0) | SSA.cs:43:9:43:24 | SSA phi read(ssaSink0) |
 | SSA.cs:25:9:25:24 | SSA phi(ssaSink1) | SSA.cs:25:15:25:22 | access to local variable ssaSink1 |
 | SSA.cs:28:16:28:28 | SSA def(nonSink1) | SSA.cs:31:9:31:24 | SSA phi(nonSink1) |
 | SSA.cs:28:27:28:28 | "" | SSA.cs:28:16:28:28 | SSA def(nonSink1) |
@@ -582,47 +577,52 @@
 | SSA.cs:29:13:29:29 | access to property Length | SSA.cs:29:13:29:33 | ... > ... |
 | SSA.cs:30:13:30:31 | SSA def(nonSink1) | SSA.cs:31:9:31:24 | SSA phi(nonSink1) |
 | SSA.cs:30:24:30:31 | access to local variable nonSink0 | SSA.cs:30:13:30:31 | SSA def(nonSink1) |
-| SSA.cs:30:24:30:31 | access to local variable nonSink0 | SSA.cs:49:24:49:31 | access to local variable nonSink0 |
-| SSA.cs:30:24:30:31 | access to local variable nonSink0 | SSA.cs:63:23:63:30 | access to local variable nonSink0 |
+| SSA.cs:30:24:30:31 | access to local variable nonSink0 | SSA.cs:31:9:31:24 | SSA phi read(nonSink0) |
+| SSA.cs:31:9:31:24 | SSA phi read(nonSink0) | SSA.cs:49:24:49:31 | access to local variable nonSink0 |
+| SSA.cs:31:9:31:24 | SSA phi read(nonSink0) | SSA.cs:55:9:55:24 | SSA phi read(nonSink0) |
 | SSA.cs:31:9:31:24 | SSA phi(nonSink1) | SSA.cs:31:15:31:22 | access to local variable nonSink1 |
 | SSA.cs:34:16:34:28 | SSA def(ssaSink2) | SSA.cs:43:9:43:24 | SSA phi(ssaSink2) |
 | SSA.cs:34:27:34:28 | "" | SSA.cs:34:16:34:28 | SSA def(ssaSink2) |
 | SSA.cs:35:13:35:22 | [post] access to parameter nonTainted | SSA.cs:38:17:38:26 | access to parameter nonTainted |
-| SSA.cs:35:13:35:22 | [post] access to parameter nonTainted | SSA.cs:47:13:47:22 | access to parameter nonTainted |
+| SSA.cs:35:13:35:22 | [post] access to parameter nonTainted | SSA.cs:43:9:43:24 | SSA phi read(nonTainted) |
 | SSA.cs:35:13:35:22 | access to parameter nonTainted | SSA.cs:38:17:38:26 | access to parameter nonTainted |
-| SSA.cs:35:13:35:22 | access to parameter nonTainted | SSA.cs:47:13:47:22 | access to parameter nonTainted |
+| SSA.cs:35:13:35:22 | access to parameter nonTainted | SSA.cs:43:9:43:24 | SSA phi read(nonTainted) |
 | SSA.cs:35:13:35:29 | access to property Length | SSA.cs:35:13:35:33 | ... > ... |
 | SSA.cs:37:13:37:31 | SSA def(ssaSink2) | SSA.cs:39:21:39:28 | access to local variable ssaSink2 |
 | SSA.cs:37:13:37:31 | SSA def(ssaSink2) | SSA.cs:41:21:41:28 | access to local variable ssaSink2 |
 | SSA.cs:37:24:37:31 | access to local variable ssaSink0 | SSA.cs:37:13:37:31 | SSA def(ssaSink2) |
-| SSA.cs:37:24:37:31 | access to local variable ssaSink0 | SSA.cs:91:24:91:31 | access to local variable ssaSink0 |
-| SSA.cs:37:24:37:31 | access to local variable ssaSink0 | SSA.cs:117:36:117:43 | access to local variable ssaSink0 |
-| SSA.cs:38:17:38:26 | [post] access to parameter nonTainted | SSA.cs:47:13:47:22 | access to parameter nonTainted |
-| SSA.cs:38:17:38:26 | access to parameter nonTainted | SSA.cs:47:13:47:22 | access to parameter nonTainted |
+| SSA.cs:37:24:37:31 | access to local variable ssaSink0 | SSA.cs:43:9:43:24 | SSA phi read(ssaSink0) |
+| SSA.cs:38:17:38:26 | [post] access to parameter nonTainted | SSA.cs:43:9:43:24 | SSA phi read(nonTainted) |
+| SSA.cs:38:17:38:26 | access to parameter nonTainted | SSA.cs:43:9:43:24 | SSA phi read(nonTainted) |
 | SSA.cs:38:17:38:33 | access to property Length | SSA.cs:38:17:38:37 | ... > ... |
 | SSA.cs:39:21:39:28 | [post] access to local variable ssaSink2 | SSA.cs:43:9:43:24 | SSA phi(ssaSink2) |
 | SSA.cs:39:21:39:28 | access to local variable ssaSink2 | SSA.cs:43:9:43:24 | SSA phi(ssaSink2) |
 | SSA.cs:41:21:41:28 | [post] access to local variable ssaSink2 | SSA.cs:43:9:43:24 | SSA phi(ssaSink2) |
 | SSA.cs:41:21:41:28 | access to local variable ssaSink2 | SSA.cs:43:9:43:24 | SSA phi(ssaSink2) |
+| SSA.cs:43:9:43:24 | SSA phi read(nonTainted) | SSA.cs:47:13:47:22 | access to parameter nonTainted |
+| SSA.cs:43:9:43:24 | SSA phi read(ssaSink0) | SSA.cs:91:24:91:31 | access to local variable ssaSink0 |
+| SSA.cs:43:9:43:24 | SSA phi read(ssaSink0) | SSA.cs:97:9:97:32 | SSA phi read(ssaSink0) |
 | SSA.cs:43:9:43:24 | SSA phi(ssaSink2) | SSA.cs:43:15:43:22 | access to local variable ssaSink2 |
 | SSA.cs:46:16:46:28 | SSA def(nonSink2) | SSA.cs:55:9:55:24 | SSA phi(nonSink2) |
 | SSA.cs:46:27:46:28 | "" | SSA.cs:46:16:46:28 | SSA def(nonSink2) |
 | SSA.cs:47:13:47:22 | [post] access to parameter nonTainted | SSA.cs:50:17:50:26 | access to parameter nonTainted |
-| SSA.cs:47:13:47:22 | [post] access to parameter nonTainted | SSA.cs:89:13:89:22 | access to parameter nonTainted |
+| SSA.cs:47:13:47:22 | [post] access to parameter nonTainted | SSA.cs:55:9:55:24 | SSA phi read(nonTainted) |
 | SSA.cs:47:13:47:22 | access to parameter nonTainted | SSA.cs:50:17:50:26 | access to parameter nonTainted |
-| SSA.cs:47:13:47:22 | access to parameter nonTainted | SSA.cs:89:13:89:22 | access to parameter nonTainted |
+| SSA.cs:47:13:47:22 | access to parameter nonTainted | SSA.cs:55:9:55:24 | SSA phi read(nonTainted) |
 | SSA.cs:47:13:47:29 | access to property Length | SSA.cs:47:13:47:33 | ... > ... |
 | SSA.cs:49:13:49:31 | SSA def(nonSink2) | SSA.cs:51:21:51:28 | access to local variable nonSink2 |
 | SSA.cs:49:13:49:31 | SSA def(nonSink2) | SSA.cs:53:21:53:28 | access to local variable nonSink2 |
 | SSA.cs:49:24:49:31 | access to local variable nonSink0 | SSA.cs:49:13:49:31 | SSA def(nonSink2) |
-| SSA.cs:49:24:49:31 | access to local variable nonSink0 | SSA.cs:63:23:63:30 | access to local variable nonSink0 |
-| SSA.cs:50:17:50:26 | [post] access to parameter nonTainted | SSA.cs:89:13:89:22 | access to parameter nonTainted |
-| SSA.cs:50:17:50:26 | access to parameter nonTainted | SSA.cs:89:13:89:22 | access to parameter nonTainted |
+| SSA.cs:49:24:49:31 | access to local variable nonSink0 | SSA.cs:55:9:55:24 | SSA phi read(nonSink0) |
+| SSA.cs:50:17:50:26 | [post] access to parameter nonTainted | SSA.cs:55:9:55:24 | SSA phi read(nonTainted) |
+| SSA.cs:50:17:50:26 | access to parameter nonTainted | SSA.cs:55:9:55:24 | SSA phi read(nonTainted) |
 | SSA.cs:50:17:50:33 | access to property Length | SSA.cs:50:17:50:37 | ... > ... |
 | SSA.cs:51:21:51:28 | [post] access to local variable nonSink2 | SSA.cs:55:9:55:24 | SSA phi(nonSink2) |
 | SSA.cs:51:21:51:28 | access to local variable nonSink2 | SSA.cs:55:9:55:24 | SSA phi(nonSink2) |
 | SSA.cs:53:21:53:28 | [post] access to local variable nonSink2 | SSA.cs:55:9:55:24 | SSA phi(nonSink2) |
 | SSA.cs:53:21:53:28 | access to local variable nonSink2 | SSA.cs:55:9:55:24 | SSA phi(nonSink2) |
+| SSA.cs:55:9:55:24 | SSA phi read(nonSink0) | SSA.cs:63:23:63:30 | access to local variable nonSink0 |
+| SSA.cs:55:9:55:24 | SSA phi read(nonTainted) | SSA.cs:89:13:89:22 | access to parameter nonTainted |
 | SSA.cs:55:9:55:24 | SSA phi(nonSink2) | SSA.cs:55:15:55:22 | access to local variable nonSink2 |
 | SSA.cs:58:16:58:33 | SSA def(ssaSink3) | SSA.cs:59:23:59:30 | access to local variable ssaSink3 |
 | SSA.cs:58:27:58:33 | access to parameter tainted | SSA.cs:58:16:58:33 | SSA def(ssaSink3) |
@@ -671,9 +671,9 @@
 | SSA.cs:77:20:77:26 | access to parameter tainted | SSA.cs:80:35:80:41 | access to parameter tainted |
 | SSA.cs:78:21:78:28 | SSA def(nonSink0) | SSA.cs:79:15:79:22 | access to local variable nonSink0 |
 | SSA.cs:79:15:79:22 | [post] access to local variable nonSink0 | SSA.cs:104:24:104:31 | access to local variable nonSink0 |
-| SSA.cs:79:15:79:22 | [post] access to local variable nonSink0 | SSA.cs:130:39:130:46 | access to local variable nonSink0 |
+| SSA.cs:79:15:79:22 | [post] access to local variable nonSink0 | SSA.cs:110:9:110:32 | SSA phi read(nonSink0) |
 | SSA.cs:79:15:79:22 | access to local variable nonSink0 | SSA.cs:104:24:104:31 | access to local variable nonSink0 |
-| SSA.cs:79:15:79:22 | access to local variable nonSink0 | SSA.cs:130:39:130:46 | access to local variable nonSink0 |
+| SSA.cs:79:15:79:22 | access to local variable nonSink0 | SSA.cs:110:9:110:32 | SSA phi read(nonSink0) |
 | SSA.cs:80:9:80:12 | [post] this access | SSA.cs:81:21:81:24 | this access |
 | SSA.cs:80:9:80:12 | this access | SSA.cs:81:21:81:24 | this access |
 | SSA.cs:80:9:80:14 | [post] access to field S | SSA.cs:81:21:81:26 | access to field S |
@@ -701,21 +701,23 @@
 | SSA.cs:88:16:88:28 | SSA def(ssaSink4) | SSA.cs:97:9:97:32 | SSA phi(ssaSink4) |
 | SSA.cs:88:27:88:28 | "" | SSA.cs:88:16:88:28 | SSA def(ssaSink4) |
 | SSA.cs:89:13:89:22 | [post] access to parameter nonTainted | SSA.cs:92:17:92:26 | access to parameter nonTainted |
-| SSA.cs:89:13:89:22 | [post] access to parameter nonTainted | SSA.cs:102:13:102:22 | access to parameter nonTainted |
+| SSA.cs:89:13:89:22 | [post] access to parameter nonTainted | SSA.cs:97:9:97:32 | SSA phi read(nonTainted) |
 | SSA.cs:89:13:89:22 | access to parameter nonTainted | SSA.cs:92:17:92:26 | access to parameter nonTainted |
-| SSA.cs:89:13:89:22 | access to parameter nonTainted | SSA.cs:102:13:102:22 | access to parameter nonTainted |
+| SSA.cs:89:13:89:22 | access to parameter nonTainted | SSA.cs:97:9:97:32 | SSA phi read(nonTainted) |
 | SSA.cs:89:13:89:29 | access to property Length | SSA.cs:89:13:89:33 | ... > ... |
 | SSA.cs:91:13:91:31 | SSA def(ssaSink4) | SSA.cs:93:21:93:28 | access to local variable ssaSink4 |
 | SSA.cs:91:13:91:31 | SSA def(ssaSink4) | SSA.cs:95:21:95:28 | access to local variable ssaSink4 |
 | SSA.cs:91:24:91:31 | access to local variable ssaSink0 | SSA.cs:91:13:91:31 | SSA def(ssaSink4) |
-| SSA.cs:91:24:91:31 | access to local variable ssaSink0 | SSA.cs:117:36:117:43 | access to local variable ssaSink0 |
-| SSA.cs:92:17:92:26 | [post] access to parameter nonTainted | SSA.cs:102:13:102:22 | access to parameter nonTainted |
-| SSA.cs:92:17:92:26 | access to parameter nonTainted | SSA.cs:102:13:102:22 | access to parameter nonTainted |
+| SSA.cs:91:24:91:31 | access to local variable ssaSink0 | SSA.cs:97:9:97:32 | SSA phi read(ssaSink0) |
+| SSA.cs:92:17:92:26 | [post] access to parameter nonTainted | SSA.cs:97:9:97:32 | SSA phi read(nonTainted) |
+| SSA.cs:92:17:92:26 | access to parameter nonTainted | SSA.cs:97:9:97:32 | SSA phi read(nonTainted) |
 | SSA.cs:92:17:92:33 | access to property Length | SSA.cs:92:17:92:37 | ... > ... |
 | SSA.cs:93:21:93:28 | [post] access to local variable ssaSink4 | SSA.cs:97:9:97:32 | SSA phi(ssaSink4) |
 | SSA.cs:93:21:93:28 | access to local variable ssaSink4 | SSA.cs:97:9:97:32 | SSA phi(ssaSink4) |
 | SSA.cs:95:21:95:28 | [post] access to local variable ssaSink4 | SSA.cs:97:9:97:32 | SSA phi(ssaSink4) |
 | SSA.cs:95:21:95:28 | access to local variable ssaSink4 | SSA.cs:97:9:97:32 | SSA phi(ssaSink4) |
+| SSA.cs:97:9:97:32 | SSA phi read(nonTainted) | SSA.cs:102:13:102:22 | access to parameter nonTainted |
+| SSA.cs:97:9:97:32 | SSA phi read(ssaSink0) | SSA.cs:117:36:117:43 | access to local variable ssaSink0 |
 | SSA.cs:97:9:97:32 | SSA phi(ssaSink4) | SSA.cs:97:23:97:30 | access to local variable ssaSink4 |
 | SSA.cs:97:23:97:30 | SSA def(ssaSink4) | SSA.cs:98:15:98:22 | access to local variable ssaSink4 |
 | SSA.cs:97:23:97:30 | [post] access to local variable ssaSink4 | SSA.cs:97:23:97:30 | SSA def(ssaSink4) |
@@ -723,21 +725,23 @@
 | SSA.cs:101:16:101:28 | SSA def(nonSink3) | SSA.cs:110:9:110:32 | SSA phi(nonSink3) |
 | SSA.cs:101:27:101:28 | "" | SSA.cs:101:16:101:28 | SSA def(nonSink3) |
 | SSA.cs:102:13:102:22 | [post] access to parameter nonTainted | SSA.cs:105:17:105:26 | access to parameter nonTainted |
-| SSA.cs:102:13:102:22 | [post] access to parameter nonTainted | SSA.cs:115:13:115:22 | access to parameter nonTainted |
+| SSA.cs:102:13:102:22 | [post] access to parameter nonTainted | SSA.cs:110:9:110:32 | SSA phi read(nonTainted) |
 | SSA.cs:102:13:102:22 | access to parameter nonTainted | SSA.cs:105:17:105:26 | access to parameter nonTainted |
-| SSA.cs:102:13:102:22 | access to parameter nonTainted | SSA.cs:115:13:115:22 | access to parameter nonTainted |
+| SSA.cs:102:13:102:22 | access to parameter nonTainted | SSA.cs:110:9:110:32 | SSA phi read(nonTainted) |
 | SSA.cs:102:13:102:29 | access to property Length | SSA.cs:102:13:102:33 | ... > ... |
 | SSA.cs:104:13:104:31 | SSA def(nonSink3) | SSA.cs:106:21:106:28 | access to local variable nonSink3 |
 | SSA.cs:104:13:104:31 | SSA def(nonSink3) | SSA.cs:108:21:108:28 | access to local variable nonSink3 |
 | SSA.cs:104:24:104:31 | access to local variable nonSink0 | SSA.cs:104:13:104:31 | SSA def(nonSink3) |
-| SSA.cs:104:24:104:31 | access to local variable nonSink0 | SSA.cs:130:39:130:46 | access to local variable nonSink0 |
-| SSA.cs:105:17:105:26 | [post] access to parameter nonTainted | SSA.cs:115:13:115:22 | access to parameter nonTainted |
-| SSA.cs:105:17:105:26 | access to parameter nonTainted | SSA.cs:115:13:115:22 | access to parameter nonTainted |
+| SSA.cs:104:24:104:31 | access to local variable nonSink0 | SSA.cs:110:9:110:32 | SSA phi read(nonSink0) |
+| SSA.cs:105:17:105:26 | [post] access to parameter nonTainted | SSA.cs:110:9:110:32 | SSA phi read(nonTainted) |
+| SSA.cs:105:17:105:26 | access to parameter nonTainted | SSA.cs:110:9:110:32 | SSA phi read(nonTainted) |
 | SSA.cs:105:17:105:33 | access to property Length | SSA.cs:105:17:105:37 | ... > ... |
 | SSA.cs:106:21:106:28 | [post] access to local variable nonSink3 | SSA.cs:110:9:110:32 | SSA phi(nonSink3) |
 | SSA.cs:106:21:106:28 | access to local variable nonSink3 | SSA.cs:110:9:110:32 | SSA phi(nonSink3) |
 | SSA.cs:108:21:108:28 | [post] access to local variable nonSink3 | SSA.cs:110:9:110:32 | SSA phi(nonSink3) |
 | SSA.cs:108:21:108:28 | access to local variable nonSink3 | SSA.cs:110:9:110:32 | SSA phi(nonSink3) |
+| SSA.cs:110:9:110:32 | SSA phi read(nonSink0) | SSA.cs:130:39:130:46 | access to local variable nonSink0 |
+| SSA.cs:110:9:110:32 | SSA phi read(nonTainted) | SSA.cs:115:13:115:22 | access to parameter nonTainted |
 | SSA.cs:110:9:110:32 | SSA phi(nonSink3) | SSA.cs:110:23:110:30 | access to local variable nonSink3 |
 | SSA.cs:110:23:110:30 | SSA def(nonSink3) | SSA.cs:111:15:111:22 | access to local variable nonSink3 |
 | SSA.cs:110:23:110:30 | [post] access to local variable nonSink3 | SSA.cs:110:23:110:30 | SSA def(nonSink3) |
@@ -747,15 +751,15 @@
 | SSA.cs:114:9:114:12 | this access | SSA.cs:117:13:117:16 | this access |
 | SSA.cs:114:9:114:12 | this access | SSA.cs:123:23:123:26 | this access |
 | SSA.cs:114:9:114:14 | [post] access to field S | SSA.cs:117:13:117:18 | access to field S |
-| SSA.cs:114:9:114:14 | [post] access to field S | SSA.cs:123:23:123:28 | access to field S |
+| SSA.cs:114:9:114:14 | [post] access to field S | SSA.cs:123:9:123:30 | SSA phi read(this.S) |
 | SSA.cs:114:9:114:14 | access to field S | SSA.cs:117:13:117:18 | access to field S |
-| SSA.cs:114:9:114:14 | access to field S | SSA.cs:123:23:123:28 | access to field S |
+| SSA.cs:114:9:114:14 | access to field S | SSA.cs:123:9:123:30 | SSA phi read(this.S) |
 | SSA.cs:114:9:114:33 | SSA def(this.S.SsaFieldSink1) | SSA.cs:123:9:123:30 | SSA phi(this.S.SsaFieldSink1) |
 | SSA.cs:114:32:114:33 | "" | SSA.cs:114:9:114:33 | SSA def(this.S.SsaFieldSink1) |
 | SSA.cs:115:13:115:22 | [post] access to parameter nonTainted | SSA.cs:118:17:118:26 | access to parameter nonTainted |
-| SSA.cs:115:13:115:22 | [post] access to parameter nonTainted | SSA.cs:128:13:128:22 | access to parameter nonTainted |
+| SSA.cs:115:13:115:22 | [post] access to parameter nonTainted | SSA.cs:123:9:123:30 | SSA phi read(nonTainted) |
 | SSA.cs:115:13:115:22 | access to parameter nonTainted | SSA.cs:118:17:118:26 | access to parameter nonTainted |
-| SSA.cs:115:13:115:22 | access to parameter nonTainted | SSA.cs:128:13:128:22 | access to parameter nonTainted |
+| SSA.cs:115:13:115:22 | access to parameter nonTainted | SSA.cs:123:9:123:30 | SSA phi read(nonTainted) |
 | SSA.cs:115:13:115:29 | access to property Length | SSA.cs:115:13:115:33 | ... > ... |
 | SSA.cs:117:13:117:16 | [post] this access | SSA.cs:119:21:119:24 | this access |
 | SSA.cs:117:13:117:16 | [post] this access | SSA.cs:121:21:121:24 | this access |
@@ -768,21 +772,23 @@
 | SSA.cs:117:13:117:43 | SSA def(this.S.SsaFieldSink1) | SSA.cs:119:21:119:40 | access to field SsaFieldSink1 |
 | SSA.cs:117:13:117:43 | SSA def(this.S.SsaFieldSink1) | SSA.cs:121:21:121:40 | access to field SsaFieldSink1 |
 | SSA.cs:117:36:117:43 | access to local variable ssaSink0 | SSA.cs:117:13:117:43 | SSA def(this.S.SsaFieldSink1) |
-| SSA.cs:118:17:118:26 | [post] access to parameter nonTainted | SSA.cs:128:13:128:22 | access to parameter nonTainted |
-| SSA.cs:118:17:118:26 | access to parameter nonTainted | SSA.cs:128:13:128:22 | access to parameter nonTainted |
+| SSA.cs:118:17:118:26 | [post] access to parameter nonTainted | SSA.cs:123:9:123:30 | SSA phi read(nonTainted) |
+| SSA.cs:118:17:118:26 | access to parameter nonTainted | SSA.cs:123:9:123:30 | SSA phi read(nonTainted) |
 | SSA.cs:118:17:118:33 | access to property Length | SSA.cs:118:17:118:37 | ... > ... |
 | SSA.cs:119:21:119:24 | [post] this access | SSA.cs:123:23:123:26 | this access |
 | SSA.cs:119:21:119:24 | this access | SSA.cs:123:23:123:26 | this access |
-| SSA.cs:119:21:119:26 | [post] access to field S | SSA.cs:123:23:123:28 | access to field S |
-| SSA.cs:119:21:119:26 | access to field S | SSA.cs:123:23:123:28 | access to field S |
+| SSA.cs:119:21:119:26 | [post] access to field S | SSA.cs:123:9:123:30 | SSA phi read(this.S) |
+| SSA.cs:119:21:119:26 | access to field S | SSA.cs:123:9:123:30 | SSA phi read(this.S) |
 | SSA.cs:119:21:119:40 | [post] access to field SsaFieldSink1 | SSA.cs:123:9:123:30 | SSA phi(this.S.SsaFieldSink1) |
 | SSA.cs:119:21:119:40 | access to field SsaFieldSink1 | SSA.cs:123:9:123:30 | SSA phi(this.S.SsaFieldSink1) |
 | SSA.cs:121:21:121:24 | [post] this access | SSA.cs:123:23:123:26 | this access |
 | SSA.cs:121:21:121:24 | this access | SSA.cs:123:23:123:26 | this access |
-| SSA.cs:121:21:121:26 | [post] access to field S | SSA.cs:123:23:123:28 | access to field S |
-| SSA.cs:121:21:121:26 | access to field S | SSA.cs:123:23:123:28 | access to field S |
+| SSA.cs:121:21:121:26 | [post] access to field S | SSA.cs:123:9:123:30 | SSA phi read(this.S) |
+| SSA.cs:121:21:121:26 | access to field S | SSA.cs:123:9:123:30 | SSA phi read(this.S) |
 | SSA.cs:121:21:121:40 | [post] access to field SsaFieldSink1 | SSA.cs:123:9:123:30 | SSA phi(this.S.SsaFieldSink1) |
 | SSA.cs:121:21:121:40 | access to field SsaFieldSink1 | SSA.cs:123:9:123:30 | SSA phi(this.S.SsaFieldSink1) |
+| SSA.cs:123:9:123:30 | SSA phi read(nonTainted) | SSA.cs:128:13:128:22 | access to parameter nonTainted |
+| SSA.cs:123:9:123:30 | SSA phi read(this.S) | SSA.cs:123:23:123:28 | access to field S |
 | SSA.cs:123:9:123:30 | SSA phi(this.S.SsaFieldSink1) | SSA.cs:123:23:123:28 | SSA qualifier def(this.S.SsaFieldSink1) |
 | SSA.cs:123:23:123:26 | [post] this access | SSA.cs:124:15:124:18 | this access |
 | SSA.cs:123:23:123:26 | this access | SSA.cs:124:15:124:18 | this access |
@@ -799,9 +805,9 @@
 | SSA.cs:127:9:127:12 | this access | SSA.cs:130:13:130:16 | this access |
 | SSA.cs:127:9:127:12 | this access | SSA.cs:136:23:136:26 | this access |
 | SSA.cs:127:9:127:14 | [post] access to field S | SSA.cs:130:13:130:18 | access to field S |
-| SSA.cs:127:9:127:14 | [post] access to field S | SSA.cs:136:23:136:28 | access to field S |
+| SSA.cs:127:9:127:14 | [post] access to field S | SSA.cs:136:9:136:30 | SSA phi read(this.S) |
 | SSA.cs:127:9:127:14 | access to field S | SSA.cs:130:13:130:18 | access to field S |
-| SSA.cs:127:9:127:14 | access to field S | SSA.cs:136:23:136:28 | access to field S |
+| SSA.cs:127:9:127:14 | access to field S | SSA.cs:136:9:136:30 | SSA phi read(this.S) |
 | SSA.cs:127:9:127:36 | SSA def(this.S.SsaFieldNonSink0) | SSA.cs:136:9:136:30 | SSA phi(this.S.SsaFieldNonSink0) |
 | SSA.cs:127:35:127:36 | "" | SSA.cs:127:9:127:36 | SSA def(this.S.SsaFieldNonSink0) |
 | SSA.cs:128:13:128:22 | [post] access to parameter nonTainted | SSA.cs:131:17:131:26 | access to parameter nonTainted |
@@ -821,16 +827,17 @@
 | SSA.cs:131:17:131:33 | access to property Length | SSA.cs:131:17:131:37 | ... > ... |
 | SSA.cs:132:21:132:24 | [post] this access | SSA.cs:136:23:136:26 | this access |
 | SSA.cs:132:21:132:24 | this access | SSA.cs:136:23:136:26 | this access |
-| SSA.cs:132:21:132:26 | [post] access to field S | SSA.cs:136:23:136:28 | access to field S |
-| SSA.cs:132:21:132:26 | access to field S | SSA.cs:136:23:136:28 | access to field S |
+| SSA.cs:132:21:132:26 | [post] access to field S | SSA.cs:136:9:136:30 | SSA phi read(this.S) |
+| SSA.cs:132:21:132:26 | access to field S | SSA.cs:136:9:136:30 | SSA phi read(this.S) |
 | SSA.cs:132:21:132:43 | [post] access to field SsaFieldNonSink0 | SSA.cs:136:9:136:30 | SSA phi(this.S.SsaFieldNonSink0) |
 | SSA.cs:132:21:132:43 | access to field SsaFieldNonSink0 | SSA.cs:136:9:136:30 | SSA phi(this.S.SsaFieldNonSink0) |
 | SSA.cs:134:21:134:24 | [post] this access | SSA.cs:136:23:136:26 | this access |
 | SSA.cs:134:21:134:24 | this access | SSA.cs:136:23:136:26 | this access |
-| SSA.cs:134:21:134:26 | [post] access to field S | SSA.cs:136:23:136:28 | access to field S |
-| SSA.cs:134:21:134:26 | access to field S | SSA.cs:136:23:136:28 | access to field S |
+| SSA.cs:134:21:134:26 | [post] access to field S | SSA.cs:136:9:136:30 | SSA phi read(this.S) |
+| SSA.cs:134:21:134:26 | access to field S | SSA.cs:136:9:136:30 | SSA phi read(this.S) |
 | SSA.cs:134:21:134:43 | [post] access to field SsaFieldNonSink0 | SSA.cs:136:9:136:30 | SSA phi(this.S.SsaFieldNonSink0) |
 | SSA.cs:134:21:134:43 | access to field SsaFieldNonSink0 | SSA.cs:136:9:136:30 | SSA phi(this.S.SsaFieldNonSink0) |
+| SSA.cs:136:9:136:30 | SSA phi read(this.S) | SSA.cs:136:23:136:28 | access to field S |
 | SSA.cs:136:9:136:30 | SSA phi(this.S.SsaFieldNonSink0) | SSA.cs:136:23:136:28 | SSA qualifier def(this.S.SsaFieldNonSink0) |
 | SSA.cs:136:23:136:26 | [post] this access | SSA.cs:137:15:137:18 | this access |
 | SSA.cs:136:23:136:26 | this access | SSA.cs:137:15:137:18 | this access |
@@ -859,18 +866,17 @@
 | SSA.cs:170:27:170:28 | "" | SSA.cs:170:16:170:28 | SSA def(ssaSink5) |
 | SSA.cs:171:13:171:15 | ...-- | SSA.cs:171:13:171:19 | ... > ... |
 | SSA.cs:171:13:171:15 | SSA def(i) | SSA.cs:174:20:174:20 | SSA phi(i) |
-| SSA.cs:173:13:173:30 | SSA def(ssaSink5) | SSA.cs:176:21:176:28 | access to local variable ssaSink5 |
-| SSA.cs:173:13:173:30 | SSA def(ssaSink5) | SSA.cs:180:9:180:24 | SSA phi(ssaSink5) |
+| SSA.cs:173:13:173:30 | SSA def(ssaSink5) | SSA.cs:174:20:174:20 | SSA phi read(ssaSink5) |
 | SSA.cs:173:24:173:30 | access to parameter tainted | SSA.cs:173:13:173:30 | SSA def(ssaSink5) |
+| SSA.cs:174:20:174:20 | SSA phi read(ssaSink5) | SSA.cs:176:21:176:28 | access to local variable ssaSink5 |
+| SSA.cs:174:20:174:20 | SSA phi read(ssaSink5) | SSA.cs:180:9:180:24 | SSA phi(ssaSink5) |
 | SSA.cs:174:20:174:20 | SSA phi(i) | SSA.cs:174:20:174:20 | access to parameter i |
 | SSA.cs:174:20:174:22 | ...-- | SSA.cs:174:20:174:26 | ... > ... |
 | SSA.cs:174:20:174:22 | SSA def(i) | SSA.cs:174:20:174:20 | SSA phi(i) |
 | SSA.cs:176:21:176:28 | [post] access to local variable ssaSink5 | SSA.cs:177:21:177:28 | access to local variable ssaSink5 |
 | SSA.cs:176:21:176:28 | access to local variable ssaSink5 | SSA.cs:177:21:177:28 | access to local variable ssaSink5 |
-| SSA.cs:177:21:177:28 | [post] access to local variable ssaSink5 | SSA.cs:176:21:176:28 | access to local variable ssaSink5 |
-| SSA.cs:177:21:177:28 | [post] access to local variable ssaSink5 | SSA.cs:180:9:180:24 | SSA phi(ssaSink5) |
-| SSA.cs:177:21:177:28 | access to local variable ssaSink5 | SSA.cs:176:21:176:28 | access to local variable ssaSink5 |
-| SSA.cs:177:21:177:28 | access to local variable ssaSink5 | SSA.cs:180:9:180:24 | SSA phi(ssaSink5) |
+| SSA.cs:177:21:177:28 | [post] access to local variable ssaSink5 | SSA.cs:174:20:174:20 | SSA phi read(ssaSink5) |
+| SSA.cs:177:21:177:28 | access to local variable ssaSink5 | SSA.cs:174:20:174:20 | SSA phi read(ssaSink5) |
 | SSA.cs:180:9:180:24 | SSA phi(ssaSink5) | SSA.cs:180:15:180:22 | access to local variable ssaSink5 |
 | Splitting.cs:3:18:3:18 | b | Splitting.cs:6:13:6:13 | access to parameter b |
 | Splitting.cs:3:28:3:34 | tainted | Splitting.cs:5:17:5:23 | access to parameter tainted |

From e4b0d8dbf3ad3ffca4f13cb381d4bfc9c2676ad8 Mon Sep 17 00:00:00 2001
From: erik-krogh <erik-krogh@github.com>
Date: Wed, 16 Nov 2022 16:07:49 +0100
Subject: [PATCH 0410/1420] simplify the copy-logic, because cp -r actually
 creates the folders

---
 .github/workflows/compile-queries.yml | 4 ----
 1 file changed, 4 deletions(-)

diff --git a/.github/workflows/compile-queries.yml b/.github/workflows/compile-queries.yml
index 73b674aff30..94378250c85 100644
--- a/.github/workflows/compile-queries.yml
+++ b/.github/workflows/compile-queries.yml
@@ -60,14 +60,10 @@ jobs:
           # Move all the existing cache into another folder, so we only preserve the cache for the current queries.
           mkdir -p ${COMBINED_CACHE_DIR}
           rm */ql/src/.cache/{lock,size}
-          # replicate the folder structure from the .cache folders into the combined cache folder. (because cp doesn't have a "create missing folders" option)
-          find */ql/src/.cache -type d | cut -d "/" -f 6,7 | sort | uniq > folders.txt
-          cat folders.txt | xargs -I {} mkdir -p ${COMBINED_CACHE_DIR}/{}
           # copy the contents of the .cache folders into the combined cache folder.
           cp -r */ql/src/.cache/* ${COMBINED_CACHE_DIR}/
           # clean up the .cache folders
           rm -rf */ql/src/.cache/*
-          rm folders.txt
 
           # compile the queries
           codeql query compile -j0 */ql/src --keep-going --warnings=error --compilation-cache ${COMBINED_CACHE_DIR}

From 983851fc6048554b87d3627c6bd16d7e4f8a514c Mon Sep 17 00:00:00 2001
From: Tamas Vajk <tamasvajk@github.com>
Date: Wed, 16 Nov 2022 16:18:37 +0100
Subject: [PATCH 0411/1420] Kotlin: Add FP test case for dead code queries

---
 java/ql/src/DeadCode/DeadClass.ql             |  2 ++
 java/ql/src/DeadCode/DeadField.ql             |  2 ++
 java/ql/src/DeadCode/DeadMethod.ql            |  2 ++
 .../query-tests/DeadCode/DeadClass.expected   |  4 +++
 .../query-tests/DeadCode/DeadClass.qlref      |  1 +
 .../query-tests/DeadCode/DeadMethod.expected  |  8 +++++
 .../query-tests/DeadCode/DeadMethod.qlref     |  1 +
 .../test/kotlin/query-tests/DeadCode/Test.kt  | 31 +++++++++++++++++++
 8 files changed, 51 insertions(+)
 create mode 100644 java/ql/test/kotlin/query-tests/DeadCode/DeadClass.expected
 create mode 100644 java/ql/test/kotlin/query-tests/DeadCode/DeadClass.qlref
 create mode 100644 java/ql/test/kotlin/query-tests/DeadCode/DeadMethod.expected
 create mode 100644 java/ql/test/kotlin/query-tests/DeadCode/DeadMethod.qlref
 create mode 100644 java/ql/test/kotlin/query-tests/DeadCode/Test.kt

diff --git a/java/ql/src/DeadCode/DeadClass.ql b/java/ql/src/DeadCode/DeadClass.ql
index 8a1b5e0be77..23f08fec3b8 100644
--- a/java/ql/src/DeadCode/DeadClass.ql
+++ b/java/ql/src/DeadCode/DeadClass.ql
@@ -14,6 +14,8 @@ import semmle.code.java.deadcode.DeadCode
 
 from DeadClass c, Element origin, string reason
 where
+  not c.getFile().isKotlinSourceFile() and
+  not origin.getFile().isKotlinSourceFile() and
   if exists(DeadRoot root | root = c.getADeadRoot() | not root = c.getACallable())
   then (
     // Report a list of the dead roots.
diff --git a/java/ql/src/DeadCode/DeadField.ql b/java/ql/src/DeadCode/DeadField.ql
index 6a80e13e716..7a8bca7ac7b 100644
--- a/java/ql/src/DeadCode/DeadField.ql
+++ b/java/ql/src/DeadCode/DeadField.ql
@@ -15,6 +15,8 @@ import semmle.code.java.deadcode.DeadCode
 
 from DeadField f, Element origin, string reason
 where
+  not f.getFile().isKotlinSourceFile() and
+  not origin.getFile().isKotlinSourceFile() and
   not f.isInDeadScope() and
   if f.getAnAccess() instanceof FieldRead
   then (
diff --git a/java/ql/src/DeadCode/DeadMethod.ql b/java/ql/src/DeadCode/DeadMethod.ql
index 8b5d0f155ef..77401341b6c 100644
--- a/java/ql/src/DeadCode/DeadMethod.ql
+++ b/java/ql/src/DeadCode/DeadMethod.ql
@@ -15,6 +15,8 @@ import semmle.code.java.deadcode.DeadCode
 
 from DeadMethod c, Callable origin, string reason
 where
+  not c.getFile().isKotlinSourceFile() and
+  not origin.getFile().isKotlinSourceFile() and
   not c.isInDeadScope() and
   if exists(DeadRoot deadRoot | deadRoot = getADeadRoot(c) | deadRoot.getSourceDeclaration() != c)
   then (
diff --git a/java/ql/test/kotlin/query-tests/DeadCode/DeadClass.expected b/java/ql/test/kotlin/query-tests/DeadCode/DeadClass.expected
new file mode 100644
index 00000000000..417cfb36df0
--- /dev/null
+++ b/java/ql/test/kotlin/query-tests/DeadCode/DeadClass.expected
@@ -0,0 +1,4 @@
+| Test.kt:0:0:0:0 | TestKt | The class TestKt is entirely unused. | Test.kt:0:0:0:0 | TestKt | TestKt |
+| Test.kt:1:1:1:26 | DbAddexpr | The class DbAddexpr is entirely unused. | Test.kt:1:1:1:26 | DbAddexpr | DbAddexpr |
+| Test.kt:3:1:4:1 | Label | The class Label is only used from dead code originating at $@. | Test.kt:15:1:17:1 | main1 | main1 |
+| Test.kt:19:1:27:1 | Foo | The class Foo is only used from dead code originating at $@. | Test.kt:29:1:31:1 | main2 | main2 |
diff --git a/java/ql/test/kotlin/query-tests/DeadCode/DeadClass.qlref b/java/ql/test/kotlin/query-tests/DeadCode/DeadClass.qlref
new file mode 100644
index 00000000000..d726e7e0849
--- /dev/null
+++ b/java/ql/test/kotlin/query-tests/DeadCode/DeadClass.qlref
@@ -0,0 +1 @@
+DeadCode/DeadClass.ql
diff --git a/java/ql/test/kotlin/query-tests/DeadCode/DeadMethod.expected b/java/ql/test/kotlin/query-tests/DeadCode/DeadMethod.expected
new file mode 100644
index 00000000000..3478791023a
--- /dev/null
+++ b/java/ql/test/kotlin/query-tests/DeadCode/DeadMethod.expected
@@ -0,0 +1,8 @@
+| Test.kt:0:0:0:0 | component1 | The method component1 is entirely unused. | Test.kt:0:0:0:0 | component1 | component1 |
+| Test.kt:0:0:0:0 | component2 | The method component2 is entirely unused. | Test.kt:0:0:0:0 | component2 | component2 |
+| Test.kt:0:0:0:0 | copy | The method copy is only used from dead code originating at $@. | Test.kt:0:0:0:0 | copy$default | copy$default |
+| Test.kt:0:0:0:0 | copy$default | The method copy$default is entirely unused. | Test.kt:0:0:0:0 | copy$default | copy$default |
+| Test.kt:20:10:20:41 | DC | The method DC is only used from dead code originating at $@. | Test.kt:0:0:0:0 | copy$default | copy$default |
+| Test.kt:20:10:20:41 | DC | The method DC is only used from dead code originating at $@. | Test.kt:29:1:31:1 | main2 | main2 |
+| Test.kt:20:19:20:28 | getX | The method getX is only used from dead code originating at $@. | Test.kt:29:1:31:1 | main2 | main2 |
+| Test.kt:20:31:20:40 | getY | The method getY is only used from dead code originating at $@. | Test.kt:29:1:31:1 | main2 | main2 |
diff --git a/java/ql/test/kotlin/query-tests/DeadCode/DeadMethod.qlref b/java/ql/test/kotlin/query-tests/DeadCode/DeadMethod.qlref
new file mode 100644
index 00000000000..76204a1df5a
--- /dev/null
+++ b/java/ql/test/kotlin/query-tests/DeadCode/DeadMethod.qlref
@@ -0,0 +1 @@
+DeadCode/DeadMethod.ql
diff --git a/java/ql/test/kotlin/query-tests/DeadCode/Test.kt b/java/ql/test/kotlin/query-tests/DeadCode/Test.kt
new file mode 100644
index 00000000000..67c4a2ae4a7
--- /dev/null
+++ b/java/ql/test/kotlin/query-tests/DeadCode/Test.kt
@@ -0,0 +1,31 @@
+sealed interface DbAddexpr
+
+class Label<T> {
+}
+
+fun <T> getFreshIdLabel(): Label<T> {
+    return Label()
+}
+
+fun foo(): Label<DbAddexpr> {
+    val x = getFreshIdLabel<DbAddexpr>()
+    return x
+}
+
+fun main1() {
+    print(foo())
+}
+
+class Foo {
+    data class DC(val x: Int, val y: Int)
+
+    fun foo() {
+        val dc = DC(3, 4)
+        print(dc.x)
+        print(dc.y)
+    }
+}
+
+fun main2() {
+    Foo().foo()
+}

From 8b6bf910bafea716b9f32c053b10bb21813770b6 Mon Sep 17 00:00:00 2001
From: Tamas Vajk <tamasvajk@github.com>
Date: Wed, 16 Nov 2022 16:20:09 +0100
Subject: [PATCH 0412/1420] Kotlin: Exclude .kt files from dead code queries

---
 .../test/kotlin/query-tests/DeadCode/DeadClass.expected   | 4 ----
 .../test/kotlin/query-tests/DeadCode/DeadMethod.expected  | 8 --------
 2 files changed, 12 deletions(-)

diff --git a/java/ql/test/kotlin/query-tests/DeadCode/DeadClass.expected b/java/ql/test/kotlin/query-tests/DeadCode/DeadClass.expected
index 417cfb36df0..e69de29bb2d 100644
--- a/java/ql/test/kotlin/query-tests/DeadCode/DeadClass.expected
+++ b/java/ql/test/kotlin/query-tests/DeadCode/DeadClass.expected
@@ -1,4 +0,0 @@
-| Test.kt:0:0:0:0 | TestKt | The class TestKt is entirely unused. | Test.kt:0:0:0:0 | TestKt | TestKt |
-| Test.kt:1:1:1:26 | DbAddexpr | The class DbAddexpr is entirely unused. | Test.kt:1:1:1:26 | DbAddexpr | DbAddexpr |
-| Test.kt:3:1:4:1 | Label | The class Label is only used from dead code originating at $@. | Test.kt:15:1:17:1 | main1 | main1 |
-| Test.kt:19:1:27:1 | Foo | The class Foo is only used from dead code originating at $@. | Test.kt:29:1:31:1 | main2 | main2 |
diff --git a/java/ql/test/kotlin/query-tests/DeadCode/DeadMethod.expected b/java/ql/test/kotlin/query-tests/DeadCode/DeadMethod.expected
index 3478791023a..e69de29bb2d 100644
--- a/java/ql/test/kotlin/query-tests/DeadCode/DeadMethod.expected
+++ b/java/ql/test/kotlin/query-tests/DeadCode/DeadMethod.expected
@@ -1,8 +0,0 @@
-| Test.kt:0:0:0:0 | component1 | The method component1 is entirely unused. | Test.kt:0:0:0:0 | component1 | component1 |
-| Test.kt:0:0:0:0 | component2 | The method component2 is entirely unused. | Test.kt:0:0:0:0 | component2 | component2 |
-| Test.kt:0:0:0:0 | copy | The method copy is only used from dead code originating at $@. | Test.kt:0:0:0:0 | copy$default | copy$default |
-| Test.kt:0:0:0:0 | copy$default | The method copy$default is entirely unused. | Test.kt:0:0:0:0 | copy$default | copy$default |
-| Test.kt:20:10:20:41 | DC | The method DC is only used from dead code originating at $@. | Test.kt:0:0:0:0 | copy$default | copy$default |
-| Test.kt:20:10:20:41 | DC | The method DC is only used from dead code originating at $@. | Test.kt:29:1:31:1 | main2 | main2 |
-| Test.kt:20:19:20:28 | getX | The method getX is only used from dead code originating at $@. | Test.kt:29:1:31:1 | main2 | main2 |
-| Test.kt:20:31:20:40 | getY | The method getY is only used from dead code originating at $@. | Test.kt:29:1:31:1 | main2 | main2 |

From 27df44f5ad9406850d7d7a4c38730b1c647b5734 Mon Sep 17 00:00:00 2001
From: Paolo Tranquilli <redsun82@github.com>
Date: Wed, 16 Nov 2022 16:35:17 +0100
Subject: [PATCH 0413/1420] Swift: replace empty `IpaInfo()` with a clearer
 `True` value

---
 swift/codegen/lib/schema/schema.py | 9 +++++++--
 swift/codegen/test/test_schema.py  | 8 ++++----
 2 files changed, 11 insertions(+), 6 deletions(-)

diff --git a/swift/codegen/lib/schema/schema.py b/swift/codegen/lib/schema/schema.py
index fe0b9e26660..3611b2336bd 100644
--- a/swift/codegen/lib/schema/schema.py
+++ b/swift/codegen/lib/schema/schema.py
@@ -86,7 +86,8 @@ class Class:
     properties: List[Property] = field(default_factory=list)
     group: str = ""
     pragmas: List[str] = field(default_factory=list)
-    ipa: Optional[IpaInfo] = None
+    ipa: Optional[Union[IpaInfo, bool]] = None
+    """^^^ filled with `True` for non-final classes with only synthesized final descendants """
     doc: List[str] = field(default_factory=list)
     default_doc_name: Optional[str] = None
 
@@ -248,6 +249,10 @@ def _toposort_classes_by_group(classes: typing.Dict[str, Class]) -> typing.Dict[
 
 
 def _fill_ipa_information(classes: typing.Dict[str, Class]):
+    """ Take a dictionary where the `ipa` field is filled for all explicitly synthesized classes
+    and updated it so that all non-final classes that have only synthesized final descendants
+    get `True` as` value for the `ipa` field
+    """
     if not classes:
         return
 
@@ -270,7 +275,7 @@ def _fill_ipa_information(classes: typing.Dict[str, Class]):
 
     for name, cls in classes.items():
         if cls.ipa is None and is_ipa[name]:
-            cls.ipa = IpaInfo()
+            cls.ipa = True
 
 
 def load(m: types.ModuleType) -> Schema:
diff --git a/swift/codegen/test/test_schema.py b/swift/codegen/test/test_schema.py
index 439d007d137..7ba84b4a292 100644
--- a/swift/codegen/test/test_schema.py
+++ b/swift/codegen/test/test_schema.py
@@ -340,7 +340,7 @@ def test_ipa_from_class():
             pass
 
     assert data.classes == {
-        'A': schema.Class('A', derived={'B'}, ipa=schema.IpaInfo()),
+        'A': schema.Class('A', derived={'B'}, ipa=True),
         'B': schema.Class('B', bases=['A'], ipa=schema.IpaInfo(from_class="A")),
     }
 
@@ -381,7 +381,7 @@ def test_ipa_class_on():
             pass
 
     assert data.classes == {
-        'A': schema.Class('A', derived={'B'}, ipa=schema.IpaInfo()),
+        'A': schema.Class('A', derived={'B'}, ipa=True),
         'B': schema.Class('B', bases=['A'], ipa=schema.IpaInfo(on_arguments={'a': 'A', 'i': 'int'})),
     }
 
@@ -439,8 +439,8 @@ def test_ipa_class_hierarchy():
 
     assert data.classes == {
         'Root': schema.Class('Root', derived={'Base', 'C'}),
-        'Base': schema.Class('Base', bases=['Root'], derived={'Intermediate', 'B'}, ipa=schema.IpaInfo()),
-        'Intermediate': schema.Class('Intermediate', bases=['Base'], derived={'A'}, ipa=schema.IpaInfo()),
+        'Base': schema.Class('Base', bases=['Root'], derived={'Intermediate', 'B'}, ipa=True),
+        'Intermediate': schema.Class('Intermediate', bases=['Base'], derived={'A'}, ipa=True),
         'A': schema.Class('A', bases=['Intermediate'], ipa=schema.IpaInfo(on_arguments={'a': 'Base', 'i': 'int'})),
         'B': schema.Class('B', bases=['Base'], ipa=schema.IpaInfo(from_class='Base')),
         'C': schema.Class('C', bases=['Root']),

From 1c69a1f012b568324e41f10b06f628c861a8ffa5 Mon Sep 17 00:00:00 2001
From: Paolo Tranquilli <redsun82@github.com>
Date: Wed, 16 Nov 2022 16:36:48 +0100
Subject: [PATCH 0414/1420] Swift: fix typo in docstring

---
 swift/codegen/lib/schema/schema.py | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/swift/codegen/lib/schema/schema.py b/swift/codegen/lib/schema/schema.py
index 3611b2336bd..94b4a2279ef 100644
--- a/swift/codegen/lib/schema/schema.py
+++ b/swift/codegen/lib/schema/schema.py
@@ -250,7 +250,7 @@ def _toposort_classes_by_group(classes: typing.Dict[str, Class]) -> typing.Dict[
 
 def _fill_ipa_information(classes: typing.Dict[str, Class]):
     """ Take a dictionary where the `ipa` field is filled for all explicitly synthesized classes
-    and updated it so that all non-final classes that have only synthesized final descendants
+    and update it so that all non-final classes that have only synthesized final descendants
     get `True` as` value for the `ipa` field
     """
     if not classes:

From 2717b9a47df49f6eaae0b7671425598117a64130 Mon Sep 17 00:00:00 2001
From: Taus <tausbn@github.com>
Date: Wed, 16 Nov 2022 17:58:24 +0000
Subject: [PATCH 0415/1420] Python: Extend import resolution tests

Extends the tests to

1. Account parts of the test code that may be specific to Python 2 or 3,
2. Also track which arguments passed to `check` are references to
   modules.

The latter revealed a bunch of spurious results, which I have annotated
accordingly.
---
 .../import-resolution/importflow.ql           | 70 +++++++++++++++++--
 .../experimental/import-resolution/main.py    | 14 ++--
 .../package/subpackage/__init__.py            |  2 +-
 3 files changed, 72 insertions(+), 14 deletions(-)

diff --git a/python/ql/test/experimental/import-resolution/importflow.ql b/python/ql/test/experimental/import-resolution/importflow.ql
index 9439ffe0693..852ded243b3 100644
--- a/python/ql/test/experimental/import-resolution/importflow.ql
+++ b/python/ql/test/experimental/import-resolution/importflow.ql
@@ -2,7 +2,9 @@ import python
 import semmle.python.dataflow.new.DataFlow
 import semmle.python.ApiGraphs
 import TestUtilities.InlineExpectationsTest
+import semmle.python.dataflow.new.internal.ImportResolution
 
+/** A string that appears on the right hand side of an assignment. */
 private class SourceString extends DataFlow::Node {
   string contents;
 
@@ -14,6 +16,45 @@ private class SourceString extends DataFlow::Node {
   string getContents() { result = contents }
 }
 
+/** An argument that is checked using the `check` function. */
+private class CheckArgument extends DataFlow::Node {
+  CheckArgument() { this = API::moduleImport("trace").getMember("check").getACall().getArg(1) }
+}
+
+/** A data-flow node that is a reference to a module. */
+private class ModuleRef extends DataFlow::Node {
+  Module mod;
+
+  ModuleRef() {
+    this = ImportResolution::getModuleReference(mod) and
+    not mod.getName() in ["__future__", "trace"]
+  }
+
+  string getName() { result = mod.getName() }
+}
+
+/**
+ * A data-flow node that is guarded by a version check. Only supports checks of the form `if
+ *sys.version_info[0] == ...` where the right hand side is either `2` or `3`.
+ */
+private class VersionGuardedNode extends DataFlow::Node {
+  int version;
+
+  VersionGuardedNode() {
+    version in [2, 3] and
+    exists(If parent, CompareNode c | parent.getBody().contains(this.asExpr()) |
+      c.operands(API::moduleImport("sys")
+            .getMember("version_info")
+            .getASubscript()
+            .asSource()
+            .asCfgNode(), any(Eq eq),
+        any(IntegerLiteral lit | lit.getValue() = version).getAFlowNode())
+    )
+  }
+
+  int getVersion() { result = version }
+}
+
 private class ImportConfiguration extends DataFlow::Configuration {
   ImportConfiguration() { this = "ImportConfiguration" }
 
@@ -30,12 +71,29 @@ class ResolutionTest extends InlineExpectationsTest {
   override string getARelevantTag() { result = "prints" }
 
   override predicate hasActualResult(Location location, string element, string tag, string value) {
-    exists(DataFlow::PathNode source, DataFlow::PathNode sink, ImportConfiguration config |
-      config.hasFlowPath(source, sink) and
-      tag = "prints" and
-      location = sink.getNode().getLocation() and
-      value = source.getNode().(SourceString).getContents() and
-      element = sink.getNode().toString()
+    (
+      exists(DataFlow::PathNode source, DataFlow::PathNode sink, ImportConfiguration config |
+        config.hasFlowPath(source, sink) and
+        correct_version(sink.getNode()) and
+        tag = "prints" and
+        location = sink.getNode().getLocation() and
+        value = source.getNode().(SourceString).getContents() and
+        element = sink.getNode().toString()
+      )
+      or
+      exists(ModuleRef ref |
+        correct_version(ref) and
+        ref instanceof CheckArgument and
+        tag = "prints" and
+        location = ref.getLocation() and
+        value = "\"<module " + ref.getName() + ">\"" and
+        element = ref.toString()
+      )
     )
   }
 }
+
+private predicate correct_version(DataFlow::Node n) {
+  not n instanceof VersionGuardedNode or
+  n.(VersionGuardedNode).getVersion() = major_version()
+}
diff --git a/python/ql/test/experimental/import-resolution/main.py b/python/ql/test/experimental/import-resolution/main.py
index d2ad1b9e337..aefe69f4d64 100644
--- a/python/ql/test/experimental/import-resolution/main.py
+++ b/python/ql/test/experimental/import-resolution/main.py
@@ -39,15 +39,15 @@ check("foo.bar_reexported.bar_attr", foo.bar_reexported.bar_attr, "bar_attr", gl
 
 # A simple "import from" statement.
 from bar import bar_attr
-check("bar_attr", bar_attr, "bar_attr", globals()) #$ prints=bar_attr
+check("bar_attr", bar_attr, "bar_attr", globals()) #$ prints=bar_attr SPURIOUS: prints="<module bar>"
 
 # Importing an attribute from a subpackage of a package.
 from package.subpackage import subpackage_attr
-check("subpackage_attr", subpackage_attr, "subpackage_attr", globals()) #$ prints=subpackage_attr
+check("subpackage_attr", subpackage_attr, "subpackage_attr", globals()) #$ prints=subpackage_attr SPURIOUS: prints="<module package.subpackage.__init__>"
 
 # Importing a package attribute under an alias.
 from package import package_attr as package_attr_alias
-check("package_attr_alias", package_attr_alias,  "package_attr", globals()) #$ prints=package_attr
+check("package_attr_alias", package_attr_alias,  "package_attr", globals()) #$ prints=package_attr SPURIOUS: prints="<module package.__init__>"
 
 # Importing a subpackage under an alias.
 from package import subpackage as aliased_subpackage #$ imports=package.subpackage.__init__ as=aliased_subpackage
@@ -68,15 +68,15 @@ check("aliased_subpackage.subpackage_attr", aliased_subpackage.subpackage_attr,
 import package.subpackage #$ imports=package.__init__ as=package
 check("package.package_attr", package.package_attr, "package_attr", globals()) #$ prints=package_attr
 
-if sys.version_info[0] >= 3:
+if sys.version_info[0] == 3:
     # Importing from a namespace module.
     from namespace_package.namespace_module import namespace_module_attr
-    check("namespace_module_attr", namespace_module_attr, "namespace_module_attr", globals()) #$ prints=namespace_module_attr
+    check("namespace_module_attr", namespace_module_attr, "namespace_module_attr", globals()) #$ prints=namespace_module_attr SPURIOUS: prints="<module namespace_package.namespace_module>"
 
 
 from attr_clash import clashing_attr, non_clashing_submodule #$ imports=attr_clash.clashing_attr as=clashing_attr imports=attr_clash.non_clashing_submodule as=non_clashing_submodule
-check("clashing_attr", clashing_attr, "clashing_attr", globals()) #$ prints=clashing_attr
-check("non_clashing_submodule", non_clashing_submodule, "<module attr_clash.non_clashing_submodule>", globals())
+check("clashing_attr", clashing_attr, "clashing_attr", globals()) #$ prints=clashing_attr SPURIOUS: prints="<module attr_clash.clashing_attr>" SPURIOUS: prints="<module attr_clash.__init__>"
+check("non_clashing_submodule", non_clashing_submodule, "<module attr_clash.non_clashing_submodule>", globals()) #$ prints="<module attr_clash.non_clashing_submodule>" SPURIOUS: prints="<module attr_clash.__init__>"
 
 exit(__file__)
 
diff --git a/python/ql/test/experimental/import-resolution/package/subpackage/__init__.py b/python/ql/test/experimental/import-resolution/package/subpackage/__init__.py
index 86cc92dd37b..387e0514fd1 100644
--- a/python/ql/test/experimental/import-resolution/package/subpackage/__init__.py
+++ b/python/ql/test/experimental/import-resolution/package/subpackage/__init__.py
@@ -5,7 +5,7 @@ subpackage_attr = "subpackage_attr"
 
 # Importing an attribute from the parent package.
 from .. import attr_used_in_subpackage as imported_attr
-check("imported_attr", imported_attr,  "attr_used_in_subpackage", globals()) #$ prints=attr_used_in_subpackage
+check("imported_attr", imported_attr,  "attr_used_in_subpackage", globals()) #$ prints=attr_used_in_subpackage SPURIOUS: prints="<module package.__init__>"
 
 # Importing an irrelevant attribute from a sibling module binds the name to the module.
 from .submodule import irrelevant_attr

From 19261ecfbfdb6b1e1b42ffe76e9a72d48716ac32 Mon Sep 17 00:00:00 2001
From: Taus <tausbn@github.com>
Date: Wed, 16 Nov 2022 18:19:54 +0000
Subject: [PATCH 0416/1420] Python: Remove spurious module references

---
 .../dataflow/new/internal/ImportResolution.qll       |  2 --
 .../ql/test/experimental/import-resolution/main.py   | 12 ++++++------
 .../import-resolution/package/subpackage/__init__.py |  2 +-
 3 files changed, 7 insertions(+), 9 deletions(-)

diff --git a/python/ql/lib/semmle/python/dataflow/new/internal/ImportResolution.qll b/python/ql/lib/semmle/python/dataflow/new/internal/ImportResolution.qll
index 9e04d3f9681..ec4c87f560f 100644
--- a/python/ql/lib/semmle/python/dataflow/new/internal/ImportResolution.qll
+++ b/python/ql/lib/semmle/python/dataflow/new/internal/ImportResolution.qll
@@ -209,8 +209,6 @@ module ImportResolution {
     or
     result.asExpr() =
       any(ImportMember i |
-        i.getModule().(ImportExpr).getImportedModuleName() = module_name
-        or
         i.getModule().(ImportExpr).getImportedModuleName() + "." + i.getName() = module_name
       )
   }
diff --git a/python/ql/test/experimental/import-resolution/main.py b/python/ql/test/experimental/import-resolution/main.py
index aefe69f4d64..cc634e41cc0 100644
--- a/python/ql/test/experimental/import-resolution/main.py
+++ b/python/ql/test/experimental/import-resolution/main.py
@@ -39,15 +39,15 @@ check("foo.bar_reexported.bar_attr", foo.bar_reexported.bar_attr, "bar_attr", gl
 
 # A simple "import from" statement.
 from bar import bar_attr
-check("bar_attr", bar_attr, "bar_attr", globals()) #$ prints=bar_attr SPURIOUS: prints="<module bar>"
+check("bar_attr", bar_attr, "bar_attr", globals()) #$ prints=bar_attr
 
 # Importing an attribute from a subpackage of a package.
 from package.subpackage import subpackage_attr
-check("subpackage_attr", subpackage_attr, "subpackage_attr", globals()) #$ prints=subpackage_attr SPURIOUS: prints="<module package.subpackage.__init__>"
+check("subpackage_attr", subpackage_attr, "subpackage_attr", globals()) #$ prints=subpackage_attr
 
 # Importing a package attribute under an alias.
 from package import package_attr as package_attr_alias
-check("package_attr_alias", package_attr_alias,  "package_attr", globals()) #$ prints=package_attr SPURIOUS: prints="<module package.__init__>"
+check("package_attr_alias", package_attr_alias,  "package_attr", globals()) #$ prints=package_attr
 
 # Importing a subpackage under an alias.
 from package import subpackage as aliased_subpackage #$ imports=package.subpackage.__init__ as=aliased_subpackage
@@ -71,12 +71,12 @@ check("package.package_attr", package.package_attr, "package_attr", globals()) #
 if sys.version_info[0] == 3:
     # Importing from a namespace module.
     from namespace_package.namespace_module import namespace_module_attr
-    check("namespace_module_attr", namespace_module_attr, "namespace_module_attr", globals()) #$ prints=namespace_module_attr SPURIOUS: prints="<module namespace_package.namespace_module>"
+    check("namespace_module_attr", namespace_module_attr, "namespace_module_attr", globals()) #$ prints=namespace_module_attr
 
 
 from attr_clash import clashing_attr, non_clashing_submodule #$ imports=attr_clash.clashing_attr as=clashing_attr imports=attr_clash.non_clashing_submodule as=non_clashing_submodule
-check("clashing_attr", clashing_attr, "clashing_attr", globals()) #$ prints=clashing_attr SPURIOUS: prints="<module attr_clash.clashing_attr>" SPURIOUS: prints="<module attr_clash.__init__>"
-check("non_clashing_submodule", non_clashing_submodule, "<module attr_clash.non_clashing_submodule>", globals()) #$ prints="<module attr_clash.non_clashing_submodule>" SPURIOUS: prints="<module attr_clash.__init__>"
+check("clashing_attr", clashing_attr, "clashing_attr", globals()) #$ prints=clashing_attr SPURIOUS: prints="<module attr_clash.clashing_attr>"
+check("non_clashing_submodule", non_clashing_submodule, "<module attr_clash.non_clashing_submodule>", globals()) #$ prints="<module attr_clash.non_clashing_submodule>"
 
 exit(__file__)
 
diff --git a/python/ql/test/experimental/import-resolution/package/subpackage/__init__.py b/python/ql/test/experimental/import-resolution/package/subpackage/__init__.py
index 387e0514fd1..86cc92dd37b 100644
--- a/python/ql/test/experimental/import-resolution/package/subpackage/__init__.py
+++ b/python/ql/test/experimental/import-resolution/package/subpackage/__init__.py
@@ -5,7 +5,7 @@ subpackage_attr = "subpackage_attr"
 
 # Importing an attribute from the parent package.
 from .. import attr_used_in_subpackage as imported_attr
-check("imported_attr", imported_attr,  "attr_used_in_subpackage", globals()) #$ prints=attr_used_in_subpackage SPURIOUS: prints="<module package.__init__>"
+check("imported_attr", imported_attr,  "attr_used_in_subpackage", globals()) #$ prints=attr_used_in_subpackage
 
 # Importing an irrelevant attribute from a sibling module binds the name to the module.
 from .submodule import irrelevant_attr

From fc56c5a022bf56e962f7a9052313f253dcee603d Mon Sep 17 00:00:00 2001
From: tiferet <tiferet@github.com>
Date: Wed, 16 Nov 2022 11:14:25 -0800
Subject: [PATCH 0417/1420] Implement the type-specific endpoint filters as
 EndpointCharacteristics.

Also disambiguate three filters from three different sink types that all have the same name, "not a direct argument to a likely external library call or a heuristic sink".
---
 .../EndpointCharacteristics.qll               | 309 ++++++++++++++++++
 1 file changed, 309 insertions(+)

diff --git a/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/EndpointCharacteristics.qll b/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/EndpointCharacteristics.qll
index 19a982e2083..0999f59fb5b 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/EndpointCharacteristics.qll
+++ b/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/EndpointCharacteristics.qll
@@ -10,6 +10,7 @@ private import semmle.javascript.security.dataflow.TaintedPathCustomizations
 private import CoreKnowledge as CoreKnowledge
 private import semmle.javascript.heuristics.SyntacticHeuristics
 private import semmle.javascript.filters.ClassifyFiles as ClassifyFiles
+private import StandardEndpointFilters as StandardEndpointFilters
 
 /**
  * A set of characteristics that a particular endpoint might have. This set of characteristics is used to make decisions
@@ -555,3 +556,311 @@ private class InIrrelevantFileCharacteristic extends StandardEndpointFilterChara
     this = "in " + category + " file"
   }
 }
+
+/** An EndpointFilterCharacteristic that indicates that an endpoint is unlikely to be a NoSQL injection sink. */
+abstract private class NosqlInjectionSinkEndpointFilterCharacteristic extends EndpointFilterCharacteristic {
+  bindingset[this]
+  NosqlInjectionSinkEndpointFilterCharacteristic() { any() }
+
+  override predicate getImplications(
+    EndpointType endpointClass, boolean isPositiveIndicator, float confidence
+  ) {
+    endpointClass instanceof NosqlInjectionSinkType and
+    isPositiveIndicator = false and
+    confidence = mediumConfidence()
+  }
+}
+
+private class DatabaseAccessCallHeuristicCharacteristic extends NosqlInjectionSinkEndpointFilterCharacteristic {
+  DatabaseAccessCallHeuristicCharacteristic() { this = "matches database access call heuristic" }
+
+  override predicate getEndpoints(DataFlow::Node n) {
+    exists(DataFlow::CallNode call | n = call.getAnArgument() |
+      // additional databases accesses that aren't modeled yet
+      call.(DataFlow::MethodCallNode).getMethodName() =
+        ["create", "createCollection", "createIndexes"]
+    )
+  }
+}
+
+private class ModeledSinkCharacteristic extends NosqlInjectionSinkEndpointFilterCharacteristic {
+  ModeledSinkCharacteristic() { this = "modeled sink" }
+
+  override predicate getEndpoints(DataFlow::Node n) {
+    exists(DataFlow::CallNode call | n = call.getAnArgument() |
+      // Remove modeled sinks
+      CoreKnowledge::isArgumentToKnownLibrarySinkFunction(n)
+    )
+  }
+}
+
+private class PredecessorInModeledFlowStepCharacteristic extends NosqlInjectionSinkEndpointFilterCharacteristic {
+  PredecessorInModeledFlowStepCharacteristic() { this = "predecessor in a modeled flow step" }
+
+  override predicate getEndpoints(DataFlow::Node n) {
+    exists(DataFlow::CallNode call | n = call.getAnArgument() |
+      // Remove common kinds of unlikely sinks
+      CoreKnowledge::isKnownStepSrc(n)
+    )
+  }
+}
+
+private class ModeledDatabaseAccessCharacteristic extends NosqlInjectionSinkEndpointFilterCharacteristic {
+  ModeledDatabaseAccessCharacteristic() { this = "modeled database access" }
+
+  override predicate getEndpoints(DataFlow::Node n) {
+    exists(DataFlow::CallNode call | n = call.getAnArgument() |
+      // Remove modeled database calls. Arguments to modeled calls are very likely to be modeled
+      // as sinks if they are true positives. Therefore arguments that are not modeled as sinks
+      // are unlikely to be true positives.
+      call instanceof DatabaseAccess
+    )
+  }
+}
+
+private class ReceiverIsHTTPRequestExpressionCharacteristic extends NosqlInjectionSinkEndpointFilterCharacteristic {
+  ReceiverIsHTTPRequestExpressionCharacteristic() { this = "receiver is a HTTP request expression" }
+
+  override predicate getEndpoints(DataFlow::Node n) {
+    exists(DataFlow::CallNode call | n = call.getAnArgument() |
+      // Remove calls to APIs that aren't relevant to NoSQL injection
+      call.getReceiver() instanceof Http::RequestNode
+    )
+  }
+}
+
+private class ReceiverIsHTTPResponseExpressionCharacteristic extends NosqlInjectionSinkEndpointFilterCharacteristic {
+  ReceiverIsHTTPResponseExpressionCharacteristic() {
+    this = "receiver is a HTTP response expression"
+  }
+
+  override predicate getEndpoints(DataFlow::Node n) {
+    exists(DataFlow::CallNode call | n = call.getAnArgument() |
+      // Remove calls to APIs that aren't relevant to NoSQL injection
+      call.getReceiver() instanceof Http::ResponseNode
+    )
+  }
+}
+
+private class NotDirectArgumentToLikelyExternalLibraryCallOrHeuristicSinkNosqlCharacteristic extends NosqlInjectionSinkEndpointFilterCharacteristic {
+  NotDirectArgumentToLikelyExternalLibraryCallOrHeuristicSinkNosqlCharacteristic() {
+    this = "not a direct argument to a likely external library call or a heuristic sink (nosql)"
+  }
+
+  override predicate getEndpoints(DataFlow::Node n) {
+    // Require NoSQL injection sink candidates to be (a) direct arguments to external library calls
+    // or (b) heuristic sinks for NoSQL injection.
+    //
+    // ## Direct arguments to external library calls
+    //
+    // The `StandardEndpointFilters::flowsToArgumentOfLikelyExternalLibraryCall` endpoint filter
+    // allows sink candidates which are within object literals or array literals, for example
+    // `req.sendFile(_, { path: ENDPOINT })`.
+    //
+    // However, the NoSQL injection query deals differently with these types of sinks compared to
+    // other security queries. Other security queries such as SQL injection tend to treat
+    // `ENDPOINT` as the ground truth sink, but the NoSQL injection query instead treats
+    // `{ path: ENDPOINT }` as the ground truth sink and defines an additional flow step to ensure
+    // data flows from `ENDPOINT` to the ground truth sink `{ path: ENDPOINT }`.
+    //
+    // Therefore for the NoSQL injection boosted query, we must ignore sink candidates within object
+    // literals or array literals, to avoid having multiple alerts for the same security
+    // vulnerability (one FP where the sink is `ENDPOINT` and one TP where the sink is
+    // `{ path: ENDPOINT }`). We accomplish this by directly testing that the sink candidate is an
+    // argument of a likely external library call.
+    //
+    // ## Heuristic sinks
+    //
+    // We also allow heuristic sinks in addition to direct arguments to external library calls.
+    // These are copied from the `HeuristicNosqlInjectionSink` class defined within
+    // `codeql/javascript/ql/src/semmle/javascript/heuristics/AdditionalSinks.qll`.
+    // We can't reuse the class because importing that file would cause us to treat these
+    // heuristic sinks as known sinks.
+    not n = StandardEndpointFilters::getALikelyExternalLibraryCall().getAnArgument() and
+    not (
+      isAssignedToOrConcatenatedWith(n, "(?i)(nosql|query)") or
+      isArgTo(n, "(?i)(query)")
+    )
+  }
+}
+
+/** An EndpointFilterCharacteristic that indicates that an endpoint is unlikely to be a SQL injection sink. */
+abstract private class SqlInjectionSinkEndpointFilterCharacteristic extends EndpointFilterCharacteristic {
+  bindingset[this]
+  SqlInjectionSinkEndpointFilterCharacteristic() { any() }
+
+  override predicate getImplications(
+    EndpointType endpointClass, boolean isPositiveIndicator, float confidence
+  ) {
+    endpointClass instanceof SqlInjectionSinkType and
+    isPositiveIndicator = false and
+    confidence = mediumConfidence()
+  }
+}
+
+private class PreparedSQLStatementCharacteristic extends SqlInjectionSinkEndpointFilterCharacteristic {
+  PreparedSQLStatementCharacteristic() { this = "prepared SQL statement" }
+
+  override predicate getEndpoints(DataFlow::Node n) {
+    exists(DataFlow::CallNode call | n = call.getAnArgument() |
+      // prepared statements for SQL
+      any(DataFlow::CallNode cn | cn.getCalleeName() = "prepare")
+          .getAMethodCall("run")
+          .getAnArgument() = n
+    )
+  }
+}
+
+private class ArrayCreationCharacteristic extends SqlInjectionSinkEndpointFilterCharacteristic {
+  ArrayCreationCharacteristic() { this = "array creation" }
+
+  override predicate getEndpoints(DataFlow::Node n) {
+    exists(DataFlow::CallNode call | n = call.getAnArgument() |
+      n instanceof DataFlow::ArrayCreationNode
+    )
+  }
+}
+
+private class HTMLOrRenderingCharacteristic extends SqlInjectionSinkEndpointFilterCharacteristic {
+  HTMLOrRenderingCharacteristic() { this = "HTML / rendering" }
+
+  override predicate getEndpoints(DataFlow::Node n) {
+    exists(DataFlow::CallNode call | n = call.getAnArgument() |
+      // UI is unrelated to SQL
+      call.getCalleeName().regexpMatch("(?i).*(render|html).*")
+    )
+  }
+}
+
+private class NotAnArgumentToLikelyExternalLibraryCallOrHeuristicSinkCharacteristic extends SqlInjectionSinkEndpointFilterCharacteristic {
+  NotAnArgumentToLikelyExternalLibraryCallOrHeuristicSinkCharacteristic() {
+    this = "not an argument to a likely external library call or a heuristic sink"
+  }
+
+  override predicate getEndpoints(DataFlow::Node n) {
+    // Require SQL injection sink candidates to be (a) arguments to external library calls
+    // (possibly indirectly), or (b) heuristic sinks.
+    //
+    // Heuristic sinks are copied from the `HeuristicSqlInjectionSink` class defined within
+    // `codeql/javascript/ql/src/semmle/javascript/heuristics/AdditionalSinks.qll`.
+    // We can't reuse the class because importing that file would cause us to treat these
+    // heuristic sinks as known sinks.
+    not StandardEndpointFilters::flowsToArgumentOfLikelyExternalLibraryCall(n) and
+    not (
+      isAssignedToOrConcatenatedWith(n, "(?i)(sql|query)") or
+      isArgTo(n, "(?i)(query)") or
+      isConcatenatedWithString(n,
+        "(?s).*(ALTER|COUNT|CREATE|DATABASE|DELETE|DISTINCT|DROP|FROM|GROUP|INSERT|INTO|LIMIT|ORDER|SELECT|TABLE|UPDATE|WHERE).*")
+    )
+  }
+}
+
+/** An EndpointFilterCharacteristic that indicates that an endpoint is unlikely to be a tainted path injection sink. */
+abstract private class TaintedPathSinkEndpointFilterCharacteristic extends EndpointFilterCharacteristic {
+  bindingset[this]
+  TaintedPathSinkEndpointFilterCharacteristic() { any() }
+
+  override predicate getImplications(
+    EndpointType endpointClass, boolean isPositiveIndicator, float confidence
+  ) {
+    endpointClass instanceof TaintedPathSinkType and
+    isPositiveIndicator = false and
+    confidence = mediumConfidence()
+  }
+}
+
+private class NotDirectArgumentToLikelyExternalLibraryCallOrHeuristicSinkTaintedPathCharacteristic extends TaintedPathSinkEndpointFilterCharacteristic {
+  NotDirectArgumentToLikelyExternalLibraryCallOrHeuristicSinkTaintedPathCharacteristic() {
+    this =
+      "not a direct argument to a likely external library call or a heuristic sink (tainted path)"
+  }
+
+  override predicate getEndpoints(DataFlow::Node n) {
+    // Require path injection sink candidates to be (a) arguments to external library calls
+    // (possibly indirectly), or (b) heuristic sinks.
+    //
+    // Heuristic sinks are mostly copied from the `HeuristicTaintedPathSink` class defined within
+    // `codeql/javascript/ql/src/semmle/javascript/heuristics/AdditionalSinks.qll`.
+    // We can't reuse the class because importing that file would cause us to treat these
+    // heuristic sinks as known sinks.
+    not StandardEndpointFilters::flowsToArgumentOfLikelyExternalLibraryCall(n) and
+    not (
+      isAssignedToOrConcatenatedWith(n, "(?i)(file|folder|dir|absolute)")
+      or
+      isArgTo(n, "(?i)(get|read)file")
+      or
+      exists(string pathPattern |
+        // paths with at least two parts, and either a trailing or leading slash
+        pathPattern = "(?i)([a-z0-9_.-]+/){2,}" or
+        pathPattern = "(?i)(/[a-z0-9_.-]+){2,}"
+      |
+        isConcatenatedWithString(n, pathPattern)
+      )
+      or
+      isConcatenatedWithStrings(".*/", n, "/.*")
+      or
+      // In addition to the names from `HeuristicTaintedPathSink` in the
+      // `isAssignedToOrConcatenatedWith` predicate call above, we also allow the noisier "path"
+      // name.
+      isAssignedToOrConcatenatedWith(n, "(?i)path")
+    )
+  }
+}
+
+/** An EndpointFilterCharacteristic that indicates that an endpoint is unlikely to be an XSS sink. */
+abstract private class XssSinkEndpointFilterCharacteristic extends EndpointFilterCharacteristic {
+  bindingset[this]
+  XssSinkEndpointFilterCharacteristic() { any() }
+
+  override predicate getImplications(
+    EndpointType endpointClass, boolean isPositiveIndicator, float confidence
+  ) {
+    endpointClass instanceof XssSinkType and
+    isPositiveIndicator = false and
+    confidence = mediumConfidence()
+  }
+}
+
+private class SetStateCallsInReactApplicationsCharacteristic extends XssSinkEndpointFilterCharacteristic {
+  SetStateCallsInReactApplicationsCharacteristic() {
+    this = "setState calls ought to be safe in react applications"
+  }
+
+  override predicate getEndpoints(DataFlow::Node n) {
+    exists(DataFlow::CallNode call | n = call.getAnArgument() | call.getCalleeName() = "setState")
+  }
+}
+
+private class NotDirectArgumentToLikelyExternalLibraryCallOrHeuristicSinkXssCharacteristic extends XssSinkEndpointFilterCharacteristic {
+  NotDirectArgumentToLikelyExternalLibraryCallOrHeuristicSinkXssCharacteristic() {
+    this = "not a direct argument to a likely external library call or a heuristic sink (XSS)"
+  }
+
+  override predicate getEndpoints(DataFlow::Node n) {
+    // Require XSS sink candidates to be (a) arguments to external library calls (possibly
+    // indirectly), or (b) heuristic sinks.
+    //
+    // Heuristic sinks are copied from the `HeuristicDomBasedXssSink` class defined within
+    // `codeql/javascript/ql/src/semmle/javascript/heuristics/AdditionalSinks.qll`.
+    // We can't reuse the class because importing that file would cause us to treat these
+    // heuristic sinks as known sinks.
+    not StandardEndpointFilters::flowsToArgumentOfLikelyExternalLibraryCall(n) and
+    not (
+      isAssignedToOrConcatenatedWith(n, "(?i)(html|innerhtml)")
+      or
+      isArgTo(n, "(?i)(html|render)")
+      or
+      n instanceof StringOps::HtmlConcatenationLeaf
+      or
+      isConcatenatedWithStrings("(?is).*<[a-z ]+.*", n, "(?s).*>.*")
+      or
+      // In addition to the heuristic sinks from `HeuristicDomBasedXssSink`, explicitly allow
+      // property writes like `elem.innerHTML = <TAINT>` that may not be picked up as HTML
+      // concatenation leaves.
+      exists(DataFlow::PropWrite pw |
+        pw.getPropertyName().regexpMatch("(?i).*html*") and
+        pw.getRhs() = n
+      )
+    )
+  }
+}

From de2ebe3618d34d33ef09dfcb1190a70230085c6f Mon Sep 17 00:00:00 2001
From: erik-krogh <erik-krogh@github.com>
Date: Wed, 16 Nov 2022 16:25:01 +0100
Subject: [PATCH 0418/1420] QL: fix the same QLDoc being QLDoc for multiple
 things

---
 ql/ql/src/codeql_ql/ast/Ast.qll | 11 ++++++++++-
 1 file changed, 10 insertions(+), 1 deletion(-)

diff --git a/ql/ql/src/codeql_ql/ast/Ast.qll b/ql/ql/src/codeql_ql/ast/Ast.qll
index fd7e416f291..fe81ccae7fe 100644
--- a/ql/ql/src/codeql_ql/ast/Ast.qll
+++ b/ql/ql/src/codeql_ql/ast/Ast.qll
@@ -156,13 +156,22 @@ class TopLevel extends TTopLevel, AstNode {
   }
 
   QLDoc getQLDocFor(ModuleMember m) {
-    exists(int i | result = this.getMember(i) and m = this.getMember(i + 1))
+    exists(int i | result = this.getMember(i) and m = this.getMember(i + 1)) and
+    (
+      m instanceof ClasslessPredicate
+      or
+      m instanceof Class
+      or
+      m instanceof Module
+    )
   }
 
   override string getAPrimaryQlClass() { result = "TopLevel" }
 
   override QLDoc getQLDoc() {
     result = this.getMember(0) and
+    // it's not the QLDoc for a module member
+    not this.getQLDocFor(_) = result and
     result.getLocation().getStartLine() = 1 // this might not hold if there is a block comment above, and that's the point.
   }
 }

From eab270eb8499eedb134c3263a44b0812b1d9358c Mon Sep 17 00:00:00 2001
From: tiferet <tiferet@github.com>
Date: Wed, 16 Nov 2022 11:47:24 -0800
Subject: [PATCH 0419/1420] Move the definitions of `isEffectiveSink` and
 `getAReasonSinkExcluded` to the base class.

They can now be implemented generically for all sink types.
---
 .../adaptivethreatmodeling/ATMConfig.qll      | 25 +++++-
 .../NosqlInjectionATM.qll                     | 79 -------------------
 .../SqlInjectionATM.qll                       | 54 -------------
 .../StandardEndpointFilters.qll               | 10 +--
 .../adaptivethreatmodeling/TaintedPathATM.qll | 53 -------------
 .../adaptivethreatmodeling/XssATM.qll         | 54 -------------
 .../modelbuilding/DebugResultInclusion.ql     | 12 ++-
 .../ExtractEndpointDataTraining.qll           |  8 +-
 .../endpoint_large_scale/EndpointFeatures.ql  |  8 +-
 .../FilteredTruePositives.ql                  |  8 +-
 ...ql_endpoint_filter_ignores_modeled_apis.ql |  2 +-
 11 files changed, 44 insertions(+), 269 deletions(-)

diff --git a/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/ATMConfig.qll b/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/ATMConfig.qll
index 55d75ad2e4d..0ca7260f12a 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/ATMConfig.qll
+++ b/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/ATMConfig.qll
@@ -6,7 +6,7 @@
 
 private import javascript as JS
 import EndpointTypes
-import EndpointCharacteristics
+import EndpointCharacteristics as EndpointCharacteristics
 
 /**
  * EXPERIMENTAL. This API may change in the future.
@@ -48,7 +48,7 @@ abstract class AtmConfig extends string {
   final predicate isKnownSink(JS::DataFlow::Node sink) {
     // If the list of characteristics includes positive indicators with maximal confidence for this class, then it's a
     // known sink for the class.
-    exists(EndpointCharacteristic characteristic |
+    exists(EndpointCharacteristics::EndpointCharacteristic characteristic |
       characteristic.getEndpoints(sink) and
       characteristic
           .getImplications(this.getASinkEndpointType(), true, characteristic.maximalConfidence())
@@ -69,7 +69,26 @@ abstract class AtmConfig extends string {
    * Holds if the candidate sink `candidateSink` predicted by the machine learning model should be
    * an effective sink, i.e. one considered as a possible sink of flow in the boosted query.
    */
-  predicate isEffectiveSink(JS::DataFlow::Node candidateSink) { none() }
+  final predicate isEffectiveSink(JS::DataFlow::Node candidateSink) {
+    not exists(getAReasonSinkExcluded(candidateSink))
+  }
+
+  final EndpointCharacteristics::EndpointCharacteristic getAReasonSinkExcluded(
+    JS::DataFlow::Node candidateSink
+  ) {
+    // An endpoint is an effective sink if it has neither standard endpoint filter characteristics nor endpoint filter
+    // characteristics that are specific to this sink type.
+    exists(EndpointCharacteristics::StandardEndpointFilterCharacteristic standardFilter |
+      standardFilter.getEndpoints(candidateSink) and
+      result = standardFilter
+    )
+    or
+    exists(EndpointCharacteristics::EndpointFilterCharacteristic specificFilter |
+      specificFilter.getEndpoints(candidateSink) and
+      specificFilter.getImplications(getASinkEndpointType(), false, _) and
+      result = specificFilter
+    )
+  }
 
   /**
    * EXPERIMENTAL. This API may change in the future.
diff --git a/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/NosqlInjectionATM.qll b/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/NosqlInjectionATM.qll
index 43d74d5334c..0548cdb66b8 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/NosqlInjectionATM.qll
+++ b/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/NosqlInjectionATM.qll
@@ -11,81 +11,6 @@ import AdaptiveThreatModeling
 private import CoreKnowledge as CoreKnowledge
 private import StandardEndpointFilters as StandardEndpointFilters
 
-module SinkEndpointFilter {
-  /**
-   * Provides a set of reasons why a given data flow node should be excluded as a sink candidate.
-   *
-   * If this predicate has no results for a sink candidate `n`, then we should treat `n` as an
-   * effective sink.
-   */
-  string getAReasonSinkExcluded(DataFlow::Node sinkCandidate) {
-    result = StandardEndpointFilters::getAReasonSinkExcluded(sinkCandidate)
-    or
-    exists(DataFlow::CallNode call | sinkCandidate = call.getAnArgument() |
-      // additional databases accesses that aren't modeled yet
-      call.(DataFlow::MethodCallNode).getMethodName() =
-        ["create", "createCollection", "createIndexes"] and
-      result = "matches database access call heuristic"
-      or
-      // Remove modeled sinks
-      CoreKnowledge::isArgumentToKnownLibrarySinkFunction(sinkCandidate) and
-      result = "modeled sink"
-      or
-      // Remove common kinds of unlikely sinks
-      CoreKnowledge::isKnownStepSrc(sinkCandidate) and
-      result = "predecessor in a modeled flow step"
-      or
-      // Remove modeled database calls. Arguments to modeled calls are very likely to be modeled
-      // as sinks if they are true positives. Therefore arguments that are not modeled as sinks
-      // are unlikely to be true positives.
-      call instanceof DatabaseAccess and
-      result = "modeled database access"
-      or
-      // Remove calls to APIs that aren't relevant to NoSQL injection
-      call.getReceiver() instanceof Http::RequestNode and
-      result = "receiver is a HTTP request expression"
-      or
-      call.getReceiver() instanceof Http::ResponseNode and
-      result = "receiver is a HTTP response expression"
-    )
-    or
-    // Require NoSQL injection sink candidates to be (a) direct arguments to external library calls
-    // or (b) heuristic sinks for NoSQL injection.
-    //
-    // ## Direct arguments to external library calls
-    //
-    // The `StandardEndpointFilters::flowsToArgumentOfLikelyExternalLibraryCall` endpoint filter
-    // allows sink candidates which are within object literals or array literals, for example
-    // `req.sendFile(_, { path: ENDPOINT })`.
-    //
-    // However, the NoSQL injection query deals differently with these types of sinks compared to
-    // other security queries. Other security queries such as SQL injection tend to treat
-    // `ENDPOINT` as the ground truth sink, but the NoSQL injection query instead treats
-    // `{ path: ENDPOINT }` as the ground truth sink and defines an additional flow step to ensure
-    // data flows from `ENDPOINT` to the ground truth sink `{ path: ENDPOINT }`.
-    //
-    // Therefore for the NoSQL injection boosted query, we must ignore sink candidates within object
-    // literals or array literals, to avoid having multiple alerts for the same security
-    // vulnerability (one FP where the sink is `ENDPOINT` and one TP where the sink is
-    // `{ path: ENDPOINT }`). We accomplish this by directly testing that the sink candidate is an
-    // argument of a likely external library call.
-    //
-    // ## Heuristic sinks
-    //
-    // We also allow heuristic sinks in addition to direct arguments to external library calls.
-    // These are copied from the `HeuristicNosqlInjectionSink` class defined within
-    // `codeql/javascript/ql/src/semmle/javascript/heuristics/AdditionalSinks.qll`.
-    // We can't reuse the class because importing that file would cause us to treat these
-    // heuristic sinks as known sinks.
-    not sinkCandidate = StandardEndpointFilters::getALikelyExternalLibraryCall().getAnArgument() and
-    not (
-      isAssignedToOrConcatenatedWith(sinkCandidate, "(?i)(nosql|query)") or
-      isArgTo(sinkCandidate, "(?i)(query)")
-    ) and
-    result = "not a direct argument to a likely external library call or a heuristic sink"
-  }
-}
-
 class NosqlInjectionAtmConfig extends AtmConfig {
   NosqlInjectionAtmConfig() { this = "NosqlInjectionATMConfig" }
 
@@ -93,10 +18,6 @@ class NosqlInjectionAtmConfig extends AtmConfig {
     source instanceof NosqlInjection::Source or TaintedObject::isSource(source, _)
   }
 
-  override predicate isEffectiveSink(DataFlow::Node sinkCandidate) {
-    not exists(SinkEndpointFilter::getAReasonSinkExcluded(sinkCandidate))
-  }
-
   override EndpointType getASinkEndpointType() { result instanceof NosqlInjectionSinkType }
 }
 
diff --git a/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/SqlInjectionATM.qll b/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/SqlInjectionATM.qll
index 3c78a456f21..2d7cdca5f83 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/SqlInjectionATM.qll
+++ b/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/SqlInjectionATM.qll
@@ -10,65 +10,11 @@ import AdaptiveThreatModeling
 import CoreKnowledge as CoreKnowledge
 import StandardEndpointFilters as StandardEndpointFilters
 
-/**
- * This module provides logic to filter candidate sinks to those which are likely SQL injection
- * sinks.
- */
-module SinkEndpointFilter {
-  private import javascript
-  private import SQL
-
-  /**
-   * Provides a set of reasons why a given data flow node should be excluded as a sink candidate.
-   *
-   * If this predicate has no results for a sink candidate `n`, then we should treat `n` as an
-   * effective sink.
-   */
-  string getAReasonSinkExcluded(DataFlow::Node sinkCandidate) {
-    result = StandardEndpointFilters::getAReasonSinkExcluded(sinkCandidate)
-    or
-    exists(DataFlow::CallNode call | sinkCandidate = call.getAnArgument() |
-      // prepared statements for SQL
-      any(DataFlow::CallNode cn | cn.getCalleeName() = "prepare")
-          .getAMethodCall("run")
-          .getAnArgument() = sinkCandidate and
-      result = "prepared SQL statement"
-      or
-      sinkCandidate instanceof DataFlow::ArrayCreationNode and
-      result = "array creation"
-      or
-      // UI is unrelated to SQL
-      call.getCalleeName().regexpMatch("(?i).*(render|html).*") and
-      result = "HTML / rendering"
-    )
-    or
-    // Require SQL injection sink candidates to be (a) arguments to external library calls
-    // (possibly indirectly), or (b) heuristic sinks.
-    //
-    // Heuristic sinks are copied from the `HeuristicSqlInjectionSink` class defined within
-    // `codeql/javascript/ql/src/semmle/javascript/heuristics/AdditionalSinks.qll`.
-    // We can't reuse the class because importing that file would cause us to treat these
-    // heuristic sinks as known sinks.
-    not StandardEndpointFilters::flowsToArgumentOfLikelyExternalLibraryCall(sinkCandidate) and
-    not (
-      isAssignedToOrConcatenatedWith(sinkCandidate, "(?i)(sql|query)") or
-      isArgTo(sinkCandidate, "(?i)(query)") or
-      isConcatenatedWithString(sinkCandidate,
-        "(?s).*(ALTER|COUNT|CREATE|DATABASE|DELETE|DISTINCT|DROP|FROM|GROUP|INSERT|INTO|LIMIT|ORDER|SELECT|TABLE|UPDATE|WHERE).*")
-    ) and
-    result = "not an argument to a likely external library call or a heuristic sink"
-  }
-}
-
 class SqlInjectionAtmConfig extends AtmConfig {
   SqlInjectionAtmConfig() { this = "SqlInjectionATMConfig" }
 
   override predicate isKnownSource(DataFlow::Node source) { source instanceof SqlInjection::Source }
 
-  override predicate isEffectiveSink(DataFlow::Node sinkCandidate) {
-    not exists(SinkEndpointFilter::getAReasonSinkExcluded(sinkCandidate))
-  }
-
   override EndpointType getASinkEndpointType() { result instanceof SqlInjectionSinkType }
 }
 
diff --git a/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/StandardEndpointFilters.qll b/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/StandardEndpointFilters.qll
index 3ed0a8fde4c..11041937a3a 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/StandardEndpointFilters.qll
+++ b/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/StandardEndpointFilters.qll
@@ -12,14 +12,6 @@ private import semmle.javascript.heuristics.SyntacticHeuristics
 private import CoreKnowledge as CoreKnowledge
 import EndpointCharacteristics as EndpointCharacteristics
 
-/** Provides a set of reasons why a given data flow node should be excluded as a sink candidate. */
-string getAReasonSinkExcluded(DataFlow::Node n) {
-  exists(EndpointCharacteristics::StandardEndpointFilterCharacteristic characteristic |
-    characteristic.getEndpoints(n) and
-    result = characteristic
-  )
-}
-
 /**
  * Holds if the node `n` is an argument to a function that has a manual model.
  */
@@ -77,7 +69,7 @@ private DataFlow::SourceNode getACallback(DataFlow::ParameterNode p, DataFlow::T
  * Get calls for which we do not have the callee (i.e. the definition of the called function). This
  * acts as a heuristic for identifying calls to external library functions.
  */
-private DataFlow::CallNode getACallWithoutCallee() {
+DataFlow::CallNode getACallWithoutCallee() {
   forall(Function callee | callee = result.getACallee() | callee.getTopLevel().isExterns()) and
   not exists(DataFlow::ParameterNode param, DataFlow::FunctionNode callback |
     param.flowsTo(result.getCalleeNode()) and
diff --git a/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/TaintedPathATM.qll b/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/TaintedPathATM.qll
index 8b0ce249f89..1e5d3408405 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/TaintedPathATM.qll
+++ b/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/TaintedPathATM.qll
@@ -10,64 +10,11 @@ import AdaptiveThreatModeling
 import CoreKnowledge as CoreKnowledge
 import StandardEndpointFilters as StandardEndpointFilters
 
-/**
- * This module provides logic to filter candidate sinks to those which are likely path injection
- * sinks.
- */
-module SinkEndpointFilter {
-  private import javascript
-  private import TaintedPath
-
-  /**
-   * Provides a set of reasons why a given data flow node should be excluded as a sink candidate.
-   *
-   * If this predicate has no results for a sink candidate `n`, then we should treat `n` as an
-   * effective sink.
-   */
-  string getAReasonSinkExcluded(DataFlow::Node sinkCandidate) {
-    result = StandardEndpointFilters::getAReasonSinkExcluded(sinkCandidate)
-    or
-    // Require path injection sink candidates to be (a) arguments to external library calls
-    // (possibly indirectly), or (b) heuristic sinks.
-    //
-    // Heuristic sinks are mostly copied from the `HeuristicTaintedPathSink` class defined within
-    // `codeql/javascript/ql/src/semmle/javascript/heuristics/AdditionalSinks.qll`.
-    // We can't reuse the class because importing that file would cause us to treat these
-    // heuristic sinks as known sinks.
-    not StandardEndpointFilters::flowsToArgumentOfLikelyExternalLibraryCall(sinkCandidate) and
-    not (
-      isAssignedToOrConcatenatedWith(sinkCandidate, "(?i)(file|folder|dir|absolute)")
-      or
-      isArgTo(sinkCandidate, "(?i)(get|read)file")
-      or
-      exists(string pathPattern |
-        // paths with at least two parts, and either a trailing or leading slash
-        pathPattern = "(?i)([a-z0-9_.-]+/){2,}" or
-        pathPattern = "(?i)(/[a-z0-9_.-]+){2,}"
-      |
-        isConcatenatedWithString(sinkCandidate, pathPattern)
-      )
-      or
-      isConcatenatedWithStrings(".*/", sinkCandidate, "/.*")
-      or
-      // In addition to the names from `HeuristicTaintedPathSink` in the
-      // `isAssignedToOrConcatenatedWith` predicate call above, we also allow the noisier "path"
-      // name.
-      isAssignedToOrConcatenatedWith(sinkCandidate, "(?i)path")
-    ) and
-    result = "not a direct argument to a likely external library call or a heuristic sink"
-  }
-}
-
 class TaintedPathAtmConfig extends AtmConfig {
   TaintedPathAtmConfig() { this = "TaintedPathATMConfig" }
 
   override predicate isKnownSource(DataFlow::Node source) { source instanceof TaintedPath::Source }
 
-  override predicate isEffectiveSink(DataFlow::Node sinkCandidate) {
-    not exists(SinkEndpointFilter::getAReasonSinkExcluded(sinkCandidate))
-  }
-
   override EndpointType getASinkEndpointType() { result instanceof TaintedPathSinkType }
 }
 
diff --git a/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/XssATM.qll b/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/XssATM.qll
index cdd49ca302e..64b4b65207b 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/XssATM.qll
+++ b/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/XssATM.qll
@@ -10,65 +10,11 @@ import AdaptiveThreatModeling
 import CoreKnowledge as CoreKnowledge
 import StandardEndpointFilters as StandardEndpointFilters
 
-/**
- * This module provides logic to filter candidate sinks to those which are likely XSS sinks.
- */
-module SinkEndpointFilter {
-  private import javascript
-  private import DomBasedXss
-
-  /**
-   * Provides a set of reasons why a given data flow node should be excluded as a sink candidate.
-   *
-   * If this predicate has no results for a sink candidate `n`, then we should treat `n` as an
-   * effective sink.
-   */
-  string getAReasonSinkExcluded(DataFlow::Node sinkCandidate) {
-    result = StandardEndpointFilters::getAReasonSinkExcluded(sinkCandidate)
-    or
-    exists(DataFlow::CallNode call | sinkCandidate = call.getAnArgument() |
-      call.getCalleeName() = "setState"
-    ) and
-    result = "setState calls ought to be safe in react applications"
-    or
-    // Require XSS sink candidates to be (a) arguments to external library calls (possibly
-    // indirectly), or (b) heuristic sinks.
-    //
-    // Heuristic sinks are copied from the `HeuristicDomBasedXssSink` class defined within
-    // `codeql/javascript/ql/src/semmle/javascript/heuristics/AdditionalSinks.qll`.
-    // We can't reuse the class because importing that file would cause us to treat these
-    // heuristic sinks as known sinks.
-    not StandardEndpointFilters::flowsToArgumentOfLikelyExternalLibraryCall(sinkCandidate) and
-    not (
-      isAssignedToOrConcatenatedWith(sinkCandidate, "(?i)(html|innerhtml)")
-      or
-      isArgTo(sinkCandidate, "(?i)(html|render)")
-      or
-      sinkCandidate instanceof StringOps::HtmlConcatenationLeaf
-      or
-      isConcatenatedWithStrings("(?is).*<[a-z ]+.*", sinkCandidate, "(?s).*>.*")
-      or
-      // In addition to the heuristic sinks from `HeuristicDomBasedXssSink`, explicitly allow
-      // property writes like `elem.innerHTML = <TAINT>` that may not be picked up as HTML
-      // concatenation leaves.
-      exists(DataFlow::PropWrite pw |
-        pw.getPropertyName().regexpMatch("(?i).*html*") and
-        pw.getRhs() = sinkCandidate
-      )
-    ) and
-    result = "not a direct argument to a likely external library call or a heuristic sink"
-  }
-}
-
 class DomBasedXssAtmConfig extends AtmConfig {
   DomBasedXssAtmConfig() { this = "DomBasedXssATMConfig" }
 
   override predicate isKnownSource(DataFlow::Node source) { source instanceof DomBasedXss::Source }
 
-  override predicate isEffectiveSink(DataFlow::Node sinkCandidate) {
-    not exists(SinkEndpointFilter::getAReasonSinkExcluded(sinkCandidate))
-  }
-
   override EndpointType getASinkEndpointType() { result instanceof XssSinkType }
 }
 
diff --git a/javascript/ql/experimental/adaptivethreatmodeling/modelbuilding/DebugResultInclusion.ql b/javascript/ql/experimental/adaptivethreatmodeling/modelbuilding/DebugResultInclusion.ql
index c5654e86a12..444f682304d 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/modelbuilding/DebugResultInclusion.ql
+++ b/javascript/ql/experimental/adaptivethreatmodeling/modelbuilding/DebugResultInclusion.ql
@@ -12,19 +12,23 @@
 import javascript
 import experimental.adaptivethreatmodeling.ATMConfig
 import extraction.ExtractEndpointDataTraining
+private import experimental.adaptivethreatmodeling.NosqlInjectionATM as NosqlInjectionAtm
+private import experimental.adaptivethreatmodeling.SqlInjectionATM as SqlInjectionAtm
+private import experimental.adaptivethreatmodeling.TaintedPathATM as TaintedPathAtm
+private import experimental.adaptivethreatmodeling.XssATM as XssAtm
 
 string getAReasonSinkExcluded(DataFlow::Node sinkCandidate, Query query) {
   query instanceof NosqlInjectionQuery and
-  result = NosqlInjectionAtm::SinkEndpointFilter::getAReasonSinkExcluded(sinkCandidate)
+  result = any(NosqlInjectionAtm::NosqlInjectionAtmConfig cfg).getAReasonSinkExcluded(sinkCandidate)
   or
   query instanceof SqlInjectionQuery and
-  result = SqlInjectionAtm::SinkEndpointFilter::getAReasonSinkExcluded(sinkCandidate)
+  result = any(SqlInjectionAtm::SqlInjectionAtmConfig cfg).getAReasonSinkExcluded(sinkCandidate)
   or
   query instanceof TaintedPathQuery and
-  result = TaintedPathAtm::SinkEndpointFilter::getAReasonSinkExcluded(sinkCandidate)
+  result = any(TaintedPathAtm::TaintedPathAtmConfig cfg).getAReasonSinkExcluded(sinkCandidate)
   or
   query instanceof XssQuery and
-  result = XssAtm::SinkEndpointFilter::getAReasonSinkExcluded(sinkCandidate)
+  result = any(XssAtm::DomBasedXssAtmConfig cfg).getAReasonSinkExcluded(sinkCandidate)
 }
 
 pragma[inline]
diff --git a/javascript/ql/experimental/adaptivethreatmodeling/modelbuilding/extraction/ExtractEndpointDataTraining.qll b/javascript/ql/experimental/adaptivethreatmodeling/modelbuilding/extraction/ExtractEndpointDataTraining.qll
index a379be6be70..16b6acdb84d 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/modelbuilding/extraction/ExtractEndpointDataTraining.qll
+++ b/javascript/ql/experimental/adaptivethreatmodeling/modelbuilding/extraction/ExtractEndpointDataTraining.qll
@@ -10,10 +10,10 @@ import experimental.adaptivethreatmodeling.EndpointFeatures as EndpointFeatures
 import NoFeaturizationRestrictionsConfig
 private import Exclusions as Exclusions
 import Queries
-import experimental.adaptivethreatmodeling.NosqlInjectionATM as NosqlInjectionAtm
-import experimental.adaptivethreatmodeling.SqlInjectionATM as SqlInjectionAtm
-import experimental.adaptivethreatmodeling.TaintedPathATM as TaintedPathAtm
-import experimental.adaptivethreatmodeling.XssATM as XssAtm
+private import experimental.adaptivethreatmodeling.NosqlInjectionATM as NosqlInjectionAtm
+private import experimental.adaptivethreatmodeling.SqlInjectionATM as SqlInjectionAtm
+private import experimental.adaptivethreatmodeling.TaintedPathATM as TaintedPathAtm
+private import experimental.adaptivethreatmodeling.XssATM as XssAtm
 
 /**
  * Gets the set of featureName-featureValue pairs for each endpoint in the training set.
diff --git a/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/EndpointFeatures.ql b/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/EndpointFeatures.ql
index 9985625d85c..6c1d88443d0 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/EndpointFeatures.ql
+++ b/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/EndpointFeatures.ql
@@ -17,10 +17,10 @@ import extraction.NoFeaturizationRestrictionsConfig
 
 query predicate tokenFeatures(DataFlow::Node endpoint, string featureName, string featureValue) {
   (
-    not exists(NosqlInjectionAtm::SinkEndpointFilter::getAReasonSinkExcluded(endpoint)) or
-    not exists(SqlInjectionAtm::SinkEndpointFilter::getAReasonSinkExcluded(endpoint)) or
-    not exists(TaintedPathAtm::SinkEndpointFilter::getAReasonSinkExcluded(endpoint)) or
-    not exists(XssAtm::SinkEndpointFilter::getAReasonSinkExcluded(endpoint)) or
+    not exists(any(NosqlInjectionAtm::NosqlInjectionAtmConfig cfg).getAReasonSinkExcluded(endpoint)) or
+    not exists(any(SqlInjectionAtm::SqlInjectionAtmConfig cfg).getAReasonSinkExcluded(endpoint)) or
+    not exists(any(TaintedPathAtm::TaintedPathAtmConfig cfg).getAReasonSinkExcluded(endpoint)) or
+    not exists(any(XssAtm::DomBasedXssAtmConfig cfg).getAReasonSinkExcluded(endpoint)) or
     StandardEndpointFilters::isArgumentToModeledFunction(endpoint)
   ) and
   EndpointFeatures::tokenFeatures(endpoint, featureName, featureValue)
diff --git a/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/FilteredTruePositives.ql b/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/FilteredTruePositives.ql
index 8ae82446403..f56bda6e2d4 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/FilteredTruePositives.ql
+++ b/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/FilteredTruePositives.ql
@@ -24,24 +24,24 @@ import experimental.adaptivethreatmodeling.XssATM as XssAtm
 
 query predicate nosqlFilteredTruePositives(DataFlow::Node endpoint, string reason) {
   endpoint instanceof NosqlInjection::Sink and
-  reason = NosqlInjectionAtm::SinkEndpointFilter::getAReasonSinkExcluded(endpoint) and
+  reason = any(NosqlInjectionAtm::NosqlInjectionAtmConfig cfg).getAReasonSinkExcluded(endpoint) and
   not reason = ["argument to modeled function", "modeled sink", "modeled database access"]
 }
 
 query predicate sqlFilteredTruePositives(DataFlow::Node endpoint, string reason) {
   endpoint instanceof SqlInjection::Sink and
-  reason = SqlInjectionAtm::SinkEndpointFilter::getAReasonSinkExcluded(endpoint) and
+  reason = any(SqlInjectionAtm::SqlInjectionAtmConfig cfg).getAReasonSinkExcluded(endpoint) and
   reason != "argument to modeled function"
 }
 
 query predicate taintedPathFilteredTruePositives(DataFlow::Node endpoint, string reason) {
   endpoint instanceof TaintedPath::Sink and
-  reason = TaintedPathAtm::SinkEndpointFilter::getAReasonSinkExcluded(endpoint) and
+  reason = any(TaintedPathAtm::TaintedPathAtmConfig cfg).getAReasonSinkExcluded(endpoint) and
   reason != "argument to modeled function"
 }
 
 query predicate xssFilteredTruePositives(DataFlow::Node endpoint, string reason) {
   endpoint instanceof DomBasedXss::Sink and
-  reason = XssAtm::SinkEndpointFilter::getAReasonSinkExcluded(endpoint) and
+  reason = any(XssAtm::DomBasedXssAtmConfig cfg).getAReasonSinkExcluded(endpoint) and
   reason != "argument to modeled function"
 }
diff --git a/javascript/ql/experimental/adaptivethreatmodeling/test/modeled_apis/nosql_endpoint_filter_ignores_modeled_apis.ql b/javascript/ql/experimental/adaptivethreatmodeling/test/modeled_apis/nosql_endpoint_filter_ignores_modeled_apis.ql
index 9a81ce73d91..a1d06d2881d 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/test/modeled_apis/nosql_endpoint_filter_ignores_modeled_apis.ql
+++ b/javascript/ql/experimental/adaptivethreatmodeling/test/modeled_apis/nosql_endpoint_filter_ignores_modeled_apis.ql
@@ -2,5 +2,5 @@ import javascript
 import experimental.adaptivethreatmodeling.NosqlInjectionATM as NosqlInjectionAtm
 
 query predicate effectiveSinks(DataFlow::Node node) {
-  not exists(NosqlInjectionAtm::SinkEndpointFilter::getAReasonSinkExcluded(node))
+  not exists(any(NosqlInjectionAtm::NosqlInjectionAtmConfig cfg).getAReasonSinkExcluded(node))
 }

From 0fd013f9fd83d74e0fb443708c7d999957fda99c Mon Sep 17 00:00:00 2001
From: tiferet <tiferet@github.com>
Date: Wed, 16 Nov 2022 11:54:10 -0800
Subject: [PATCH 0420/1420] Update the reason names in
 `FilteredTruePositives.expected`.

This is needed because we changed the names of three endpoint filters that were all called "not a direct argument to a likely external library call or a heuristic sink" in order to disambiguate them (fc56c5a022bf56e962f7a9052313f253dcee603d).
---
 .../EndpointCharacteristics.qll               |  2 +-
 .../FilteredTruePositives.expected            | 20 +++++++++----------
 2 files changed, 11 insertions(+), 11 deletions(-)

diff --git a/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/EndpointCharacteristics.qll b/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/EndpointCharacteristics.qll
index 0999f59fb5b..06fd6954f3a 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/EndpointCharacteristics.qll
+++ b/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/EndpointCharacteristics.qll
@@ -833,7 +833,7 @@ private class SetStateCallsInReactApplicationsCharacteristic extends XssSinkEndp
 
 private class NotDirectArgumentToLikelyExternalLibraryCallOrHeuristicSinkXssCharacteristic extends XssSinkEndpointFilterCharacteristic {
   NotDirectArgumentToLikelyExternalLibraryCallOrHeuristicSinkXssCharacteristic() {
-    this = "not a direct argument to a likely external library call or a heuristic sink (XSS)"
+    this = "not a direct argument to a likely external library call or a heuristic sink (xss)"
   }
 
   override predicate getEndpoints(DataFlow::Node n) {
diff --git a/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/FilteredTruePositives.expected b/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/FilteredTruePositives.expected
index 46abea4045f..cb29a7ee955 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/FilteredTruePositives.expected
+++ b/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/FilteredTruePositives.expected
@@ -1,16 +1,16 @@
 nosqlFilteredTruePositives
-| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:111:14:111:18 | query | not a direct argument to a likely external library call or a heuristic sink |
+| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:111:14:111:18 | query | not a direct argument to a likely external library call or a heuristic sink (nosql) |
 sqlFilteredTruePositives
 | autogenerated/NosqlAndSqlInjection/untyped/tst2.js:7:13:7:45 | select  ... e id =  | not an argument to a likely external library call or a heuristic sink |
 | autogenerated/NosqlAndSqlInjection/untyped/tst2.js:7:48:7:60 | req.params.id | not an argument to a likely external library call or a heuristic sink |
 taintedPathFilteredTruePositives
-| autogenerated/TaintedPath/TaintedPath.js:66:26:66:31 | "SAFE" | not a direct argument to a likely external library call or a heuristic sink |
-| autogenerated/TaintedPath/TaintedPath.js:71:26:71:45 | Cookie.get("unsafe") | not a direct argument to a likely external library call or a heuristic sink |
+| autogenerated/TaintedPath/TaintedPath.js:66:26:66:31 | "SAFE" | not a direct argument to a likely external library call or a heuristic sink (tainted path) |
+| autogenerated/TaintedPath/TaintedPath.js:71:26:71:45 | Cookie.get("unsafe") | not a direct argument to a likely external library call or a heuristic sink (tainted path) |
 xssFilteredTruePositives
-| autogenerated/Xss/DomBasedXss/d3.js:12:20:12:29 | getTaint() | not a direct argument to a likely external library call or a heuristic sink |
-| autogenerated/Xss/DomBasedXss/d3.js:14:20:14:29 | getTaint() | not a direct argument to a likely external library call or a heuristic sink |
-| autogenerated/Xss/DomBasedXss/express.js:7:15:7:33 | req.param("wobble") | not a direct argument to a likely external library call or a heuristic sink |
-| autogenerated/Xss/DomBasedXss/jwt-server.js:11:19:11:29 | decoded.foo | not a direct argument to a likely external library call or a heuristic sink |
-| autogenerated/Xss/DomBasedXss/tst.js:316:35:316:42 | location | not a direct argument to a likely external library call or a heuristic sink |
-| autogenerated/Xss/DomBasedXss/typeahead.js:10:16:10:18 | loc | not a direct argument to a likely external library call or a heuristic sink |
-| autogenerated/Xss/DomBasedXss/typeahead.js:25:18:25:20 | val | not a direct argument to a likely external library call or a heuristic sink |
+| autogenerated/Xss/DomBasedXss/d3.js:12:20:12:29 | getTaint() | not a direct argument to a likely external library call or a heuristic sink (xss) |
+| autogenerated/Xss/DomBasedXss/d3.js:14:20:14:29 | getTaint() | not a direct argument to a likely external library call or a heuristic sink (xss) |
+| autogenerated/Xss/DomBasedXss/express.js:7:15:7:33 | req.param("wobble") | not a direct argument to a likely external library call or a heuristic sink (xss) |
+| autogenerated/Xss/DomBasedXss/jwt-server.js:11:19:11:29 | decoded.foo | not a direct argument to a likely external library call or a heuristic sink (xss) |
+| autogenerated/Xss/DomBasedXss/tst.js:316:35:316:42 | location | not a direct argument to a likely external library call or a heuristic sink (xss) |
+| autogenerated/Xss/DomBasedXss/typeahead.js:10:16:10:18 | loc | not a direct argument to a likely external library call or a heuristic sink (xss) |
+| autogenerated/Xss/DomBasedXss/typeahead.js:25:18:25:20 | val | not a direct argument to a likely external library call or a heuristic sink (xss) |

From c2035e85d2bef276a8da5d84e88e390fa1ceaf9c Mon Sep 17 00:00:00 2001
From: tiferet <tiferet@github.com>
Date: Wed, 16 Nov 2022 11:55:23 -0800
Subject: [PATCH 0421/1420] Be explicit in requiring that each ATM config set
 its endpoint type.

---
 .../lib/experimental/adaptivethreatmodeling/ATMConfig.qll       | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/ATMConfig.qll b/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/ATMConfig.qll
index 0ca7260f12a..571673639ee 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/ATMConfig.qll
+++ b/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/ATMConfig.qll
@@ -104,7 +104,7 @@ abstract class AtmConfig extends string {
    * Get an endpoint type for the sinks of this query. A query may have multiple applicable
    * endpoint types for its sinks.
    */
-  EndpointType getASinkEndpointType() { none() }
+  abstract EndpointType getASinkEndpointType();
 
   /**
    * EXPERIMENTAL. This API may change in the future.

From 81348049df420816e122792b754c260f535bcc87 Mon Sep 17 00:00:00 2001
From: Taus <tausbn@github.com>
Date: Wed, 16 Nov 2022 19:58:32 +0000
Subject: [PATCH 0422/1420] Python: Fix missing module resolution

This was due to bad manual magic: restricting the attribute name makes
sense when we're talking about submodules of a package, but it doesn't
when we're talking about reexported modules.

Also (hopefully) fixes the tests so that the Python 3-specific bits are
ignored under Python 2.
---
 .../new/internal/ImportResolution.qll         |  9 +++--
 .../import-resolution/importflow.ql           | 33 ++++++++++++++++---
 .../experimental/import-resolution/main.py    |  5 +--
 3 files changed, 37 insertions(+), 10 deletions(-)

diff --git a/python/ql/lib/semmle/python/dataflow/new/internal/ImportResolution.qll b/python/ql/lib/semmle/python/dataflow/new/internal/ImportResolution.qll
index ec4c87f560f..53f41bd945e 100644
--- a/python/ql/lib/semmle/python/dataflow/new/internal/ImportResolution.qll
+++ b/python/ql/lib/semmle/python/dataflow/new/internal/ImportResolution.qll
@@ -235,9 +235,12 @@ module ImportResolution {
       result = ar
     |
       isPreferredModuleForName(m.getFile(), p.getPackageName() + "." + attr_name + ["", ".__init__"])
-      or
-      // This is also true for attributes that come from reexports.
-      module_reexport(p, attr_name, m)
+    )
+    or
+    // This is also true for attributes that come from reexports.
+    exists(Module reexporter, string attr_name |
+      result.(DataFlow::AttrRead).accesses(getModuleReference(reexporter), attr_name) and
+      module_reexport(reexporter, attr_name, m)
     )
     or
     // Submodules that are implicitly defined with relative imports of the form `from .foo import ...`.
diff --git a/python/ql/test/experimental/import-resolution/importflow.ql b/python/ql/test/experimental/import-resolution/importflow.ql
index 852ded243b3..4d60594bbfa 100644
--- a/python/ql/test/experimental/import-resolution/importflow.ql
+++ b/python/ql/test/experimental/import-resolution/importflow.ql
@@ -74,7 +74,7 @@ class ResolutionTest extends InlineExpectationsTest {
     (
       exists(DataFlow::PathNode source, DataFlow::PathNode sink, ImportConfiguration config |
         config.hasFlowPath(source, sink) and
-        correct_version(sink.getNode()) and
+        not sink.getNode() instanceof VersionGuardedNode and
         tag = "prints" and
         location = sink.getNode().getLocation() and
         value = source.getNode().(SourceString).getContents() and
@@ -82,7 +82,7 @@ class ResolutionTest extends InlineExpectationsTest {
       )
       or
       exists(ModuleRef ref |
-        correct_version(ref) and
+        not ref instanceof VersionGuardedNode and
         ref instanceof CheckArgument and
         tag = "prints" and
         location = ref.getLocation() and
@@ -93,7 +93,30 @@ class ResolutionTest extends InlineExpectationsTest {
   }
 }
 
-private predicate correct_version(DataFlow::Node n) {
-  not n instanceof VersionGuardedNode or
-  n.(VersionGuardedNode).getVersion() = major_version()
+class ResolutionTest3 extends InlineExpectationsTest {
+  ResolutionTest3() { this = "ResolutionTest3" }
+
+  override string getARelevantTag() { result = "prints3" }
+
+  override predicate hasActualResult(Location location, string element, string tag, string value) {
+    (
+      exists(DataFlow::PathNode source, DataFlow::PathNode sink, ImportConfiguration config |
+        config.hasFlowPath(source, sink) and
+        sink.getNode().(VersionGuardedNode).getVersion() = 3 and
+        tag = "prints3" and
+        location = sink.getNode().getLocation() and
+        value = source.getNode().(SourceString).getContents() and
+        element = sink.getNode().toString()
+      )
+      or
+      exists(ModuleRef ref |
+        ref.(VersionGuardedNode).getVersion() = 3 and
+        ref instanceof CheckArgument and
+        tag = "prints3" and
+        location = ref.getLocation() and
+        value = "\"<module " + ref.getName() + ">\"" and
+        element = ref.toString()
+      )
+    )
+  }
 }
diff --git a/python/ql/test/experimental/import-resolution/main.py b/python/ql/test/experimental/import-resolution/main.py
index cc634e41cc0..27c6ffff7c1 100644
--- a/python/ql/test/experimental/import-resolution/main.py
+++ b/python/ql/test/experimental/import-resolution/main.py
@@ -35,7 +35,8 @@ import foo as foo_alias #$ imports=foo as=foo_alias
 check("foo_alias.foo_attr", foo_alias.foo_attr, "foo_attr", globals()) #$ prints=foo_attr
 
 # A reference to a reexported module
-check("foo.bar_reexported.bar_attr", foo.bar_reexported.bar_attr, "bar_attr", globals()) #$ MISSING: prints=bar_attr
+check("foo.bar_reexported", foo.bar_reexported, "<module bar>", globals()) #$ prints="<module bar>"
+check("foo.bar_reexported.bar_attr", foo.bar_reexported.bar_attr, "bar_attr", globals()) #$ prints=bar_attr
 
 # A simple "import from" statement.
 from bar import bar_attr
@@ -71,7 +72,7 @@ check("package.package_attr", package.package_attr, "package_attr", globals()) #
 if sys.version_info[0] == 3:
     # Importing from a namespace module.
     from namespace_package.namespace_module import namespace_module_attr
-    check("namespace_module_attr", namespace_module_attr, "namespace_module_attr", globals()) #$ prints=namespace_module_attr
+    check("namespace_module_attr", namespace_module_attr, "namespace_module_attr", globals()) #$ prints3=namespace_module_attr
 
 
 from attr_clash import clashing_attr, non_clashing_submodule #$ imports=attr_clash.clashing_attr as=clashing_attr imports=attr_clash.non_clashing_submodule as=non_clashing_submodule

From 8fee9cb0d5e68d7adc51ad8c5013c0a17cf70ef1 Mon Sep 17 00:00:00 2001
From: tiferet <tiferet@github.com>
Date: Wed, 16 Nov 2022 12:06:52 -0800
Subject: [PATCH 0423/1420] Fix CodeQL warnings

---
 .../adaptivethreatmodeling/ATMConfig.qll         |  4 ++--
 .../EndpointCharacteristics.qll                  | 16 ++++++++--------
 2 files changed, 10 insertions(+), 10 deletions(-)

diff --git a/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/ATMConfig.qll b/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/ATMConfig.qll
index 571673639ee..ab0b936544e 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/ATMConfig.qll
+++ b/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/ATMConfig.qll
@@ -70,7 +70,7 @@ abstract class AtmConfig extends string {
    * an effective sink, i.e. one considered as a possible sink of flow in the boosted query.
    */
   final predicate isEffectiveSink(JS::DataFlow::Node candidateSink) {
-    not exists(getAReasonSinkExcluded(candidateSink))
+    not exists(this.getAReasonSinkExcluded(candidateSink))
   }
 
   final EndpointCharacteristics::EndpointCharacteristic getAReasonSinkExcluded(
@@ -85,7 +85,7 @@ abstract class AtmConfig extends string {
     or
     exists(EndpointCharacteristics::EndpointFilterCharacteristic specificFilter |
       specificFilter.getEndpoints(candidateSink) and
-      specificFilter.getImplications(getASinkEndpointType(), false, _) and
+      specificFilter.getImplications(this.getASinkEndpointType(), false, _) and
       result = specificFilter
     )
   }
diff --git a/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/EndpointCharacteristics.qll b/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/EndpointCharacteristics.qll
index 06fd6954f3a..5218f65b337 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/EndpointCharacteristics.qll
+++ b/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/EndpointCharacteristics.qll
@@ -618,8 +618,8 @@ private class ModeledDatabaseAccessCharacteristic extends NosqlInjectionSinkEndp
   }
 }
 
-private class ReceiverIsHTTPRequestExpressionCharacteristic extends NosqlInjectionSinkEndpointFilterCharacteristic {
-  ReceiverIsHTTPRequestExpressionCharacteristic() { this = "receiver is a HTTP request expression" }
+private class ReceiverIsHttpRequestExpressionCharacteristic extends NosqlInjectionSinkEndpointFilterCharacteristic {
+  ReceiverIsHttpRequestExpressionCharacteristic() { this = "receiver is a HTTP request expression" }
 
   override predicate getEndpoints(DataFlow::Node n) {
     exists(DataFlow::CallNode call | n = call.getAnArgument() |
@@ -629,8 +629,8 @@ private class ReceiverIsHTTPRequestExpressionCharacteristic extends NosqlInjecti
   }
 }
 
-private class ReceiverIsHTTPResponseExpressionCharacteristic extends NosqlInjectionSinkEndpointFilterCharacteristic {
-  ReceiverIsHTTPResponseExpressionCharacteristic() {
+private class ReceiverIsHttpResponseExpressionCharacteristic extends NosqlInjectionSinkEndpointFilterCharacteristic {
+  ReceiverIsHttpResponseExpressionCharacteristic() {
     this = "receiver is a HTTP response expression"
   }
 
@@ -698,8 +698,8 @@ abstract private class SqlInjectionSinkEndpointFilterCharacteristic extends Endp
   }
 }
 
-private class PreparedSQLStatementCharacteristic extends SqlInjectionSinkEndpointFilterCharacteristic {
-  PreparedSQLStatementCharacteristic() { this = "prepared SQL statement" }
+private class PreparedSqlStatementCharacteristic extends SqlInjectionSinkEndpointFilterCharacteristic {
+  PreparedSqlStatementCharacteristic() { this = "prepared SQL statement" }
 
   override predicate getEndpoints(DataFlow::Node n) {
     exists(DataFlow::CallNode call | n = call.getAnArgument() |
@@ -721,8 +721,8 @@ private class ArrayCreationCharacteristic extends SqlInjectionSinkEndpointFilter
   }
 }
 
-private class HTMLOrRenderingCharacteristic extends SqlInjectionSinkEndpointFilterCharacteristic {
-  HTMLOrRenderingCharacteristic() { this = "HTML / rendering" }
+private class HtmlOrRenderingCharacteristic extends SqlInjectionSinkEndpointFilterCharacteristic {
+  HtmlOrRenderingCharacteristic() { this = "HTML / rendering" }
 
   override predicate getEndpoints(DataFlow::Node n) {
     exists(DataFlow::CallNode call | n = call.getAnArgument() |

From 38c40a7192068fb8b49c84e0333a16c5fe62e514 Mon Sep 17 00:00:00 2001
From: tiferet <tiferet@github.com>
Date: Wed, 16 Nov 2022 12:12:50 -0800
Subject: [PATCH 0424/1420] `isEffectiveSink` can't be final because
 `ExtractMisclassifiedEndpointFeatures` overrides it.

---
 .../lib/experimental/adaptivethreatmodeling/ATMConfig.qll       | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/ATMConfig.qll b/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/ATMConfig.qll
index ab0b936544e..67b702745ef 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/ATMConfig.qll
+++ b/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/ATMConfig.qll
@@ -69,7 +69,7 @@ abstract class AtmConfig extends string {
    * Holds if the candidate sink `candidateSink` predicted by the machine learning model should be
    * an effective sink, i.e. one considered as a possible sink of flow in the boosted query.
    */
-  final predicate isEffectiveSink(JS::DataFlow::Node candidateSink) {
+  predicate isEffectiveSink(JS::DataFlow::Node candidateSink) {
     not exists(this.getAReasonSinkExcluded(candidateSink))
   }
 

From ccbf1ca2a9f6850335001889328b04d1f31ca037 Mon Sep 17 00:00:00 2001
From: tiferet <tiferet@github.com>
Date: Wed, 16 Nov 2022 13:05:06 -0800
Subject: [PATCH 0425/1420] Add a comment

---
 .../lib/experimental/adaptivethreatmodeling/ATMConfig.qll       | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/ATMConfig.qll b/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/ATMConfig.qll
index 67b702745ef..bce5a3172d6 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/ATMConfig.qll
+++ b/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/ATMConfig.qll
@@ -78,6 +78,8 @@ abstract class AtmConfig extends string {
   ) {
     // An endpoint is an effective sink if it has neither standard endpoint filter characteristics nor endpoint filter
     // characteristics that are specific to this sink type.
+    // TODO: Experiment with excluding all endpoints that have a medium- or high-confidence characteristic that implies
+    // they're not sinks for this sink type (or not sinks for any sink type), not just the EndpointFilterCharacteristics.
     exists(EndpointCharacteristics::StandardEndpointFilterCharacteristic standardFilter |
       standardFilter.getEndpoints(candidateSink) and
       result = standardFilter

From 4a1382925e34c01a57448dedd6e44795f362ee6e Mon Sep 17 00:00:00 2001
From: tiferet <tiferet@github.com>
Date: Wed, 16 Nov 2022 14:01:16 -0800
Subject: [PATCH 0426/1420] Remove some imports that are no longer used

---
 .../experimental/adaptivethreatmodeling/NosqlInjectionATM.qll    | 1 -
 .../lib/experimental/adaptivethreatmodeling/SqlInjectionATM.qll  | 1 -
 .../lib/experimental/adaptivethreatmodeling/TaintedPathATM.qll   | 1 -
 .../lib/experimental/adaptivethreatmodeling/XssATM.qll           | 1 -
 .../test/endpoint_large_scale/FilteredTruePositives.ql           | 1 -
 5 files changed, 5 deletions(-)

diff --git a/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/NosqlInjectionATM.qll b/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/NosqlInjectionATM.qll
index 0548cdb66b8..85b3d14d7e9 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/NosqlInjectionATM.qll
+++ b/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/NosqlInjectionATM.qll
@@ -9,7 +9,6 @@ private import semmle.javascript.heuristics.SyntacticHeuristics
 private import semmle.javascript.security.dataflow.NosqlInjectionCustomizations
 import AdaptiveThreatModeling
 private import CoreKnowledge as CoreKnowledge
-private import StandardEndpointFilters as StandardEndpointFilters
 
 class NosqlInjectionAtmConfig extends AtmConfig {
   NosqlInjectionAtmConfig() { this = "NosqlInjectionATMConfig" }
diff --git a/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/SqlInjectionATM.qll b/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/SqlInjectionATM.qll
index 2d7cdca5f83..f52e1898667 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/SqlInjectionATM.qll
+++ b/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/SqlInjectionATM.qll
@@ -8,7 +8,6 @@ import semmle.javascript.heuristics.SyntacticHeuristics
 import semmle.javascript.security.dataflow.SqlInjectionCustomizations
 import AdaptiveThreatModeling
 import CoreKnowledge as CoreKnowledge
-import StandardEndpointFilters as StandardEndpointFilters
 
 class SqlInjectionAtmConfig extends AtmConfig {
   SqlInjectionAtmConfig() { this = "SqlInjectionATMConfig" }
diff --git a/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/TaintedPathATM.qll b/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/TaintedPathATM.qll
index 1e5d3408405..e83938071df 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/TaintedPathATM.qll
+++ b/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/TaintedPathATM.qll
@@ -8,7 +8,6 @@ import semmle.javascript.heuristics.SyntacticHeuristics
 import semmle.javascript.security.dataflow.TaintedPathCustomizations
 import AdaptiveThreatModeling
 import CoreKnowledge as CoreKnowledge
-import StandardEndpointFilters as StandardEndpointFilters
 
 class TaintedPathAtmConfig extends AtmConfig {
   TaintedPathAtmConfig() { this = "TaintedPathATMConfig" }
diff --git a/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/XssATM.qll b/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/XssATM.qll
index 64b4b65207b..508cac4544f 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/XssATM.qll
+++ b/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/XssATM.qll
@@ -8,7 +8,6 @@ private import semmle.javascript.heuristics.SyntacticHeuristics
 private import semmle.javascript.security.dataflow.DomBasedXssCustomizations
 import AdaptiveThreatModeling
 import CoreKnowledge as CoreKnowledge
-import StandardEndpointFilters as StandardEndpointFilters
 
 class DomBasedXssAtmConfig extends AtmConfig {
   DomBasedXssAtmConfig() { this = "DomBasedXssATMConfig" }
diff --git a/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/FilteredTruePositives.ql b/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/FilteredTruePositives.ql
index f56bda6e2d4..d8de88e3454 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/FilteredTruePositives.ql
+++ b/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/FilteredTruePositives.ql
@@ -16,7 +16,6 @@ import semmle.javascript.security.dataflow.NosqlInjectionCustomizations
 import semmle.javascript.security.dataflow.SqlInjectionCustomizations
 import semmle.javascript.security.dataflow.TaintedPathCustomizations
 import semmle.javascript.security.dataflow.DomBasedXssCustomizations
-import experimental.adaptivethreatmodeling.StandardEndpointFilters as StandardEndpointFilters
 import experimental.adaptivethreatmodeling.NosqlInjectionATM as NosqlInjectionAtm
 import experimental.adaptivethreatmodeling.SqlInjectionATM as SqlInjectionAtm
 import experimental.adaptivethreatmodeling.TaintedPathATM as TaintedPathAtm

From 8ed8161d5c4b00d959861e831293bfe4d95e908d Mon Sep 17 00:00:00 2001
From: Taus <tausbn@github.com>
Date: Wed, 16 Nov 2022 22:20:08 +0000
Subject: [PATCH 0427/1420] Python: Fix tests for Python 2

This should make it so that the `prints3` tag is skipped when running
then Python 2 Language tests.
---
 python/ql/test/experimental/import-resolution/importflow.ql | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/python/ql/test/experimental/import-resolution/importflow.ql b/python/ql/test/experimental/import-resolution/importflow.ql
index 4d60594bbfa..6160560a3ee 100644
--- a/python/ql/test/experimental/import-resolution/importflow.ql
+++ b/python/ql/test/experimental/import-resolution/importflow.ql
@@ -96,7 +96,7 @@ class ResolutionTest extends InlineExpectationsTest {
 class ResolutionTest3 extends InlineExpectationsTest {
   ResolutionTest3() { this = "ResolutionTest3" }
 
-  override string getARelevantTag() { result = "prints3" }
+  override string getARelevantTag() { result = "prints3" and major_version() = 3 }
 
   override predicate hasActualResult(Location location, string element, string tag, string value) {
     (

From 49f476d3b4f3bd22a11eecbc131a1b77bd2b9034 Mon Sep 17 00:00:00 2001
From: Mauro Baluda <mbaluda@github.com>
Date: Wed, 16 Nov 2022 23:53:07 +0100
Subject: [PATCH 0428/1420] Update
 javascript/ql/lib/semmle/javascript/frameworks/Hapi.qll

Co-authored-by: Erik Krogh Kristensen <erik-krogh@github.com>
---
 javascript/ql/lib/semmle/javascript/frameworks/Hapi.qll | 7 ++-----
 1 file changed, 2 insertions(+), 5 deletions(-)

diff --git a/javascript/ql/lib/semmle/javascript/frameworks/Hapi.qll b/javascript/ql/lib/semmle/javascript/frameworks/Hapi.qll
index 46bbb624839..f38740a490d 100644
--- a/javascript/ql/lib/semmle/javascript/frameworks/Hapi.qll
+++ b/javascript/ql/lib/semmle/javascript/frameworks/Hapi.qll
@@ -29,11 +29,8 @@ module Hapi {
       or
       // `const after = function (server) {...};`
       // `server.dependency('name', after);`
-      exists(ServerDefinition server, DataFlow::MethodCallNode call |
-        call = server.ref().getAMethodCall() and
-        call.getMethodName() = "dependency" and
-        this = call.getABoundCallbackParameter(1, 0)
-      )
+      this =
+        any(ServerDefinition s).ref().getAMethodCall("dependency").getABoundCallbackParameter(1, 0)
     }
   }
 

From f24fa402f362101d10e89803b8569a07ea823586 Mon Sep 17 00:00:00 2001
From: Tom Hvitved <hvitved@github.com>
Date: Thu, 17 Nov 2022 08:18:20 +0100
Subject: [PATCH 0429/1420] Adjust CFG

---
 .../lib/codeql/ruby/controlflow/CfgNodes.qll  | 42 +++++++++++++++++--
 .../ruby/controlflow/internal/Completion.qll  | 16 +++----
 .../internal/ControlFlowGraphImpl.qll         |  2 +
 .../ruby/controlflow/internal/Splitting.qll   |  3 --
 .../controlflow/graph/Cfg.expected            | 16 ++++---
 .../barrier-guards/barrier-guards.expected    | 40 ++++++++++++++----
 6 files changed, 88 insertions(+), 31 deletions(-)

diff --git a/ruby/ql/lib/codeql/ruby/controlflow/CfgNodes.qll b/ruby/ql/lib/codeql/ruby/controlflow/CfgNodes.qll
index b411c766f03..5007acf4e31 100644
--- a/ruby/ql/lib/codeql/ruby/controlflow/CfgNodes.qll
+++ b/ruby/ql/lib/codeql/ruby/controlflow/CfgNodes.qll
@@ -432,8 +432,36 @@ module ExprNodes {
     final ExprCfgNode getBody() { e.hasCfgChild(e.getBody(), this, result) }
   }
 
-  private class WhenClauseChildMapping extends NonExprChildMapping, WhenClause {
-    override predicate relevantChild(AstNode e) { e = [this.getBody(), this.getAPattern()] }
+  // `when` clauses need special treatment, since they are neither pre-order
+  // nor post-order
+  private class WhenClauseChildMapping extends WhenClause {
+    predicate patternReachesBasicBlock(int i, CfgNode cfnPattern, BasicBlock bb) {
+      exists(Expr pattern |
+        pattern = this.getPattern(i) and
+        cfnPattern.getNode() = pattern and
+        bb.getANode() = cfnPattern
+      )
+      or
+      exists(BasicBlock mid |
+        this.patternReachesBasicBlock(i, cfnPattern, mid) and
+        bb = mid.getASuccessor() and
+        not mid.getANode().getNode() = this
+      )
+    }
+
+    predicate bodyReachesBasicBlock(CfgNode cfnBody, BasicBlock bb) {
+      exists(Stmt body |
+        body = this.getBody() and
+        cfnBody.getNode() = body and
+        bb.getANode() = cfnBody
+      )
+      or
+      exists(BasicBlock mid |
+        this.bodyReachesBasicBlock(cfnBody, mid) and
+        bb = mid.getAPredecessor() and
+        not mid.getANode().getNode() = this
+      )
+    }
   }
 
   /** A control-flow node that wraps a `WhenClause` AST expression. */
@@ -443,10 +471,16 @@ module ExprNodes {
     override WhenClauseChildMapping e;
 
     /** Gets the body of this `when`-clause. */
-    final ExprCfgNode getBody() { e.hasCfgChild(e.getBody(), this, result) }
+    final ExprCfgNode getBody() {
+      result.getNode() = desugar(e.getBody()) and
+      e.bodyReachesBasicBlock(result, this.getBasicBlock())
+    }
 
     /** Gets the `i`th pattern this `when`-clause. */
-    final ExprCfgNode getPattern(int i) { result.getExpr() = e.getPattern(i) }
+    final ExprCfgNode getPattern(int i) {
+      result.getNode() = desugar(e.getPattern(i)) and
+      e.patternReachesBasicBlock(i, result, this.getBasicBlock())
+    }
   }
 
   /** A control-flow node that wraps a `CasePattern`. */
diff --git a/ruby/ql/lib/codeql/ruby/controlflow/internal/Completion.qll b/ruby/ql/lib/codeql/ruby/controlflow/internal/Completion.qll
index d727b99d6cf..26e62e0c077 100644
--- a/ruby/ql/lib/codeql/ruby/controlflow/internal/Completion.qll
+++ b/ruby/ql/lib/codeql/ruby/controlflow/internal/Completion.qll
@@ -211,8 +211,11 @@ private predicate inBooleanContext(AstNode n) {
   or
   exists(CaseExpr c, WhenClause w |
     not exists(c.getValue()) and
-    c.getABranch() = w and
+    c.getABranch() = w
+  |
     w.getPattern(_) = n
+    or
+    w = n
   )
 }
 
@@ -233,12 +236,11 @@ private predicate inMatchingContext(AstNode n) {
   or
   exists(CaseExpr c, WhenClause w |
     exists(c.getValue()) and
-    (
-      c.getABranch() = w and
-      w.getPattern(_) = n
-      or
-      w = n
-    )
+    c.getABranch() = w
+  |
+    w.getPattern(_) = n
+    or
+    w = n
   )
   or
   n instanceof CasePattern
diff --git a/ruby/ql/lib/codeql/ruby/controlflow/internal/ControlFlowGraphImpl.qll b/ruby/ql/lib/codeql/ruby/controlflow/internal/ControlFlowGraphImpl.qll
index 1ca24d43ab8..a8bd2e3feac 100644
--- a/ruby/ql/lib/codeql/ruby/controlflow/internal/ControlFlowGraphImpl.qll
+++ b/ruby/ql/lib/codeql/ruby/controlflow/internal/ControlFlowGraphImpl.qll
@@ -402,6 +402,7 @@ module Trees {
       exists(int i, WhenTree branch | branch = this.getBranch(i) |
         pred = branch and
         first(this.getBranch(i + 1), succ) and
+        c.isValidFor(branch) and
         c.(ConditionalCompletion).getValue() = false
       )
       or
@@ -1411,6 +1412,7 @@ module Trees {
 
     final override predicate last(AstNode last, Completion c) {
       last = this and
+      c.isValidFor(this) and
       c.(ConditionalCompletion).getValue() = false
       or
       last(this.getBody(), last, c) and
diff --git a/ruby/ql/lib/codeql/ruby/controlflow/internal/Splitting.qll b/ruby/ql/lib/codeql/ruby/controlflow/internal/Splitting.qll
index 5e24616ac4a..a048e2d4044 100644
--- a/ruby/ql/lib/codeql/ruby/controlflow/internal/Splitting.qll
+++ b/ruby/ql/lib/codeql/ruby/controlflow/internal/Splitting.qll
@@ -85,12 +85,9 @@ private module ConditionalCompletionSplitting {
         or
         last(succ.(ConditionalExpr).getBranch(_), pred, c) and
         completion = c
-        or
-        last(succ.(WhenClause).getAPattern(), pred, c) and completion = c
       )
       or
       succ(pred, succ, c) and
-      succ(succ, _, completion) and
       succ instanceof WhenClause and
       completion = c
     }
diff --git a/ruby/ql/test/library-tests/controlflow/graph/Cfg.expected b/ruby/ql/test/library-tests/controlflow/graph/Cfg.expected
index 69e4cc294de..9b60a403a30 100644
--- a/ruby/ql/test/library-tests/controlflow/graph/Cfg.expected
+++ b/ruby/ql/test/library-tests/controlflow/graph/Cfg.expected
@@ -1916,16 +1916,15 @@ cfg.rb:
 #   48| [false] when ...
 #-----| false -> b
 
-#   48| when ...
-#-----| match -> self
-#-----| no-match -> b
+#   48| [true] when ...
+#-----| true -> self
 
 #   48| b
 #-----|  -> 1
 
 #   48| ... == ...
 #-----| false -> [false] when ...
-#-----| true -> when ...
+#-----| true -> [true] when ...
 
 #   48| 1
 #-----|  -> ... == ...
@@ -1948,15 +1947,14 @@ cfg.rb:
 #   49| [false] when ...
 #-----| false -> case ...
 
-#   49| when ...
-#-----| no-match -> case ...
-#-----| match -> self
+#   49| [true] when ...
+#-----| true -> self
 
 #   49| b
 #-----|  -> 0
 
 #   49| ... == ...
-#-----| true -> when ...
+#-----| true -> [true] when ...
 #-----| false -> b
 
 #   49| 0
@@ -1967,7 +1965,7 @@ cfg.rb:
 
 #   49| ... > ...
 #-----| false -> [false] when ...
-#-----| true -> when ...
+#-----| true -> [true] when ...
 
 #   49| 1
 #-----|  -> ... > ...
diff --git a/ruby/ql/test/library-tests/dataflow/barrier-guards/barrier-guards.expected b/ruby/ql/test/library-tests/dataflow/barrier-guards/barrier-guards.expected
index 7804824ffb6..c308ce9d820 100644
--- a/ruby/ql/test/library-tests/dataflow/barrier-guards/barrier-guards.expected
+++ b/ruby/ql/test/library-tests/dataflow/barrier-guards/barrier-guards.expected
@@ -262,21 +262,45 @@ controls
 | barrier-guards.rb:227:4:227:21 | [true] ... and ... | barrier-guards.rb:228:5:228:7 | self | true |
 | barrier-guards.rb:227:21:227:21 | call to y | barrier-guards.rb:227:4:227:21 | [true] ... and ... | true |
 | barrier-guards.rb:227:21:227:21 | call to y | barrier-guards.rb:228:5:228:7 | self | true |
-| barrier-guards.rb:232:1:233:19 | when ... | barrier-guards.rb:233:5:233:7 | foo | match |
+| barrier-guards.rb:232:1:233:19 | [true] when ... | barrier-guards.rb:233:5:233:7 | foo | true |
 | barrier-guards.rb:232:6:232:17 | ... == ... | barrier-guards.rb:232:1:233:19 | [false] when ... | false |
-| barrier-guards.rb:232:6:232:17 | ... == ... | barrier-guards.rb:232:1:233:19 | when ... | true |
+| barrier-guards.rb:232:6:232:17 | ... == ... | barrier-guards.rb:232:1:233:19 | [true] when ... | true |
 | barrier-guards.rb:232:6:232:17 | ... == ... | barrier-guards.rb:233:5:233:7 | foo | true |
-| barrier-guards.rb:237:1:237:38 | when ... | barrier-guards.rb:237:24:237:26 | foo | match |
+| barrier-guards.rb:237:1:237:38 | [false] when ... | barrier-guards.rb:238:1:238:26 | [false] when ... | false |
+| barrier-guards.rb:237:1:237:38 | [false] when ... | barrier-guards.rb:238:1:238:26 | [true] when ... | false |
+| barrier-guards.rb:237:1:237:38 | [false] when ... | barrier-guards.rb:238:6:238:8 | self | false |
+| barrier-guards.rb:237:1:237:38 | [false] when ... | barrier-guards.rb:238:24:238:26 | foo | false |
+| barrier-guards.rb:237:1:237:38 | [false] when ... | barrier-guards.rb:239:1:239:22 | [false] when ... | false |
+| barrier-guards.rb:237:1:237:38 | [false] when ... | barrier-guards.rb:239:1:239:22 | [true] when ... | false |
+| barrier-guards.rb:237:1:237:38 | [false] when ... | barrier-guards.rb:239:6:239:8 | foo | false |
+| barrier-guards.rb:237:1:237:38 | [false] when ... | barrier-guards.rb:239:20:239:22 | foo | false |
+| barrier-guards.rb:237:1:237:38 | [true] when ... | barrier-guards.rb:237:24:237:26 | foo | true |
 | barrier-guards.rb:237:6:237:17 | ... == ... | barrier-guards.rb:237:1:237:38 | [false] when ... | false |
-| barrier-guards.rb:237:6:237:17 | ... == ... | barrier-guards.rb:237:1:237:38 | when ... | true |
+| barrier-guards.rb:237:6:237:17 | ... == ... | barrier-guards.rb:237:1:237:38 | [true] when ... | true |
 | barrier-guards.rb:237:6:237:17 | ... == ... | barrier-guards.rb:237:24:237:26 | foo | true |
-| barrier-guards.rb:238:1:238:26 | when ... | barrier-guards.rb:238:24:238:26 | foo | match |
+| barrier-guards.rb:237:6:237:17 | ... == ... | barrier-guards.rb:238:1:238:26 | [false] when ... | false |
+| barrier-guards.rb:237:6:237:17 | ... == ... | barrier-guards.rb:238:1:238:26 | [true] when ... | false |
+| barrier-guards.rb:237:6:237:17 | ... == ... | barrier-guards.rb:238:6:238:8 | self | false |
+| barrier-guards.rb:237:6:237:17 | ... == ... | barrier-guards.rb:238:24:238:26 | foo | false |
+| barrier-guards.rb:237:6:237:17 | ... == ... | barrier-guards.rb:239:1:239:22 | [false] when ... | false |
+| barrier-guards.rb:237:6:237:17 | ... == ... | barrier-guards.rb:239:1:239:22 | [true] when ... | false |
+| barrier-guards.rb:237:6:237:17 | ... == ... | barrier-guards.rb:239:6:239:8 | foo | false |
+| barrier-guards.rb:237:6:237:17 | ... == ... | barrier-guards.rb:239:20:239:22 | foo | false |
+| barrier-guards.rb:238:1:238:26 | [false] when ... | barrier-guards.rb:239:1:239:22 | [false] when ... | false |
+| barrier-guards.rb:238:1:238:26 | [false] when ... | barrier-guards.rb:239:1:239:22 | [true] when ... | false |
+| barrier-guards.rb:238:1:238:26 | [false] when ... | barrier-guards.rb:239:6:239:8 | foo | false |
+| barrier-guards.rb:238:1:238:26 | [false] when ... | barrier-guards.rb:239:20:239:22 | foo | false |
+| barrier-guards.rb:238:1:238:26 | [true] when ... | barrier-guards.rb:238:24:238:26 | foo | true |
 | barrier-guards.rb:238:6:238:17 | ... == ... | barrier-guards.rb:238:1:238:26 | [false] when ... | false |
-| barrier-guards.rb:238:6:238:17 | ... == ... | barrier-guards.rb:238:1:238:26 | when ... | true |
+| barrier-guards.rb:238:6:238:17 | ... == ... | barrier-guards.rb:238:1:238:26 | [true] when ... | true |
 | barrier-guards.rb:238:6:238:17 | ... == ... | barrier-guards.rb:238:24:238:26 | foo | true |
-| barrier-guards.rb:239:1:239:22 | when ... | barrier-guards.rb:239:20:239:22 | foo | match |
+| barrier-guards.rb:238:6:238:17 | ... == ... | barrier-guards.rb:239:1:239:22 | [false] when ... | false |
+| barrier-guards.rb:238:6:238:17 | ... == ... | barrier-guards.rb:239:1:239:22 | [true] when ... | false |
+| barrier-guards.rb:238:6:238:17 | ... == ... | barrier-guards.rb:239:6:239:8 | foo | false |
+| barrier-guards.rb:238:6:238:17 | ... == ... | barrier-guards.rb:239:20:239:22 | foo | false |
+| barrier-guards.rb:239:1:239:22 | [true] when ... | barrier-guards.rb:239:20:239:22 | foo | true |
 | barrier-guards.rb:239:6:239:13 | ... == ... | barrier-guards.rb:239:1:239:22 | [false] when ... | false |
-| barrier-guards.rb:239:6:239:13 | ... == ... | barrier-guards.rb:239:1:239:22 | when ... | true |
+| barrier-guards.rb:239:6:239:13 | ... == ... | barrier-guards.rb:239:1:239:22 | [true] when ... | true |
 | barrier-guards.rb:239:6:239:13 | ... == ... | barrier-guards.rb:239:20:239:22 | foo | true |
 | barrier-guards.rb:243:4:243:8 | "foo" | barrier-guards.rb:244:5:244:7 | foo | match |
 | barrier-guards.rb:243:4:243:8 | "foo" | barrier-guards.rb:245:1:246:7 | in ... then ... | no-match |

From 5ab77600b862b1e041059a1df4e0764ff32ef853 Mon Sep 17 00:00:00 2001
From: Tom Hvitved <hvitved@github.com>
Date: Thu, 17 Nov 2022 10:44:23 +0100
Subject: [PATCH 0430/1420] C++: Update auto-builder nuget packages

---
 .../Semmle.Autobuild.Cpp.Tests.csproj                        | 5 +++--
 .../Semmle.Autobuild.Cpp/Semmle.Autobuild.Cpp.csproj         | 2 +-
 2 files changed, 4 insertions(+), 3 deletions(-)

diff --git a/cpp/autobuilder/Semmle.Autobuild.Cpp.Tests/Semmle.Autobuild.Cpp.Tests.csproj b/cpp/autobuilder/Semmle.Autobuild.Cpp.Tests/Semmle.Autobuild.Cpp.Tests.csproj
index dc1d945521b..421ffdd96f4 100644
--- a/cpp/autobuilder/Semmle.Autobuild.Cpp.Tests/Semmle.Autobuild.Cpp.Tests.csproj
+++ b/cpp/autobuilder/Semmle.Autobuild.Cpp.Tests/Semmle.Autobuild.Cpp.Tests.csproj
@@ -11,11 +11,12 @@
   <ItemGroup>
     <PackageReference Include="System.IO.FileSystem" Version="4.3.0" />
     <PackageReference Include="System.IO.FileSystem.Primitives" Version="4.3.0" />
-    <PackageReference Include="xunit" Version="2.4.1" />
-    <PackageReference Include="xunit.runner.visualstudio" Version="2.4.1">
+    <PackageReference Include="xunit" Version="2.4.2" />
+    <PackageReference Include="xunit.runner.visualstudio" Version="2.4.5">
       <PrivateAssets>all</PrivateAssets>
       <IncludeAssets>runtime; build; native; contentfiles; analyzers</IncludeAssets>
     </PackageReference>
+    <PackageReference Include="Microsoft.NET.Test.Sdk" Version="17.4.0" />
   </ItemGroup>
 
   <ItemGroup>
diff --git a/cpp/autobuilder/Semmle.Autobuild.Cpp/Semmle.Autobuild.Cpp.csproj b/cpp/autobuilder/Semmle.Autobuild.Cpp/Semmle.Autobuild.Cpp.csproj
index e417622707a..83ec5dde7cf 100644
--- a/cpp/autobuilder/Semmle.Autobuild.Cpp/Semmle.Autobuild.Cpp.csproj
+++ b/cpp/autobuilder/Semmle.Autobuild.Cpp/Semmle.Autobuild.Cpp.csproj
@@ -17,7 +17,7 @@
   </ItemGroup>
 
   <ItemGroup>
-    <PackageReference Include="Microsoft.Build" Version="16.11.0" />
+    <PackageReference Include="Microsoft.Build" Version="17.4.0" />
   </ItemGroup>
 
   <ItemGroup>

From 780297152c46c858a31c924b43da7641c56748a2 Mon Sep 17 00:00:00 2001
From: Tom Hvitved <hvitved@github.com>
Date: Thu, 17 Nov 2022 11:00:25 +0100
Subject: [PATCH 0431/1420] C#: Downgrade `Microsoft.Build` nuget package

17.4.0 does not officially support .NET 6 (it supports .NET 7), so downgrade
to avoid warnings.
---
 .../Semmle.Autobuild.Cpp/Semmle.Autobuild.Cpp.csproj            | 2 +-
 .../Semmle.Autobuild.CSharp/Semmle.Autobuild.CSharp.csproj      | 2 +-
 .../Semmle.Autobuild.Shared/Semmle.Autobuild.Shared.csproj      | 2 +-
 .../Semmle.Extraction.CSharp.Standalone.csproj                  | 2 +-
 .../Semmle.Extraction.CSharp/Semmle.Extraction.CSharp.csproj    | 2 +-
 5 files changed, 5 insertions(+), 5 deletions(-)

diff --git a/cpp/autobuilder/Semmle.Autobuild.Cpp/Semmle.Autobuild.Cpp.csproj b/cpp/autobuilder/Semmle.Autobuild.Cpp/Semmle.Autobuild.Cpp.csproj
index 83ec5dde7cf..393d4141ab9 100644
--- a/cpp/autobuilder/Semmle.Autobuild.Cpp/Semmle.Autobuild.Cpp.csproj
+++ b/cpp/autobuilder/Semmle.Autobuild.Cpp/Semmle.Autobuild.Cpp.csproj
@@ -17,7 +17,7 @@
   </ItemGroup>
 
   <ItemGroup>
-    <PackageReference Include="Microsoft.Build" Version="17.4.0" />
+    <PackageReference Include="Microsoft.Build" Version="17.3.2" />
   </ItemGroup>
 
   <ItemGroup>
diff --git a/csharp/autobuilder/Semmle.Autobuild.CSharp/Semmle.Autobuild.CSharp.csproj b/csharp/autobuilder/Semmle.Autobuild.CSharp/Semmle.Autobuild.CSharp.csproj
index d05daec1de0..ec2aae685e8 100644
--- a/csharp/autobuilder/Semmle.Autobuild.CSharp/Semmle.Autobuild.CSharp.csproj
+++ b/csharp/autobuilder/Semmle.Autobuild.CSharp/Semmle.Autobuild.CSharp.csproj
@@ -14,7 +14,7 @@
 		<Folder Include="Properties\" />
 	</ItemGroup>
 	<ItemGroup>
-		<PackageReference Include="Microsoft.Build" Version="17.4.0" />
+		<PackageReference Include="Microsoft.Build" Version="17.3.2" />
 		<PackageReference Include="Newtonsoft.Json" Version="13.0.1" />
 	</ItemGroup>
 	<ItemGroup>
diff --git a/csharp/autobuilder/Semmle.Autobuild.Shared/Semmle.Autobuild.Shared.csproj b/csharp/autobuilder/Semmle.Autobuild.Shared/Semmle.Autobuild.Shared.csproj
index f76a28f6a0b..6aceac93f97 100644
--- a/csharp/autobuilder/Semmle.Autobuild.Shared/Semmle.Autobuild.Shared.csproj
+++ b/csharp/autobuilder/Semmle.Autobuild.Shared/Semmle.Autobuild.Shared.csproj
@@ -11,7 +11,7 @@
 		<Folder Include="Properties\" />
 	</ItemGroup>
 	<ItemGroup>
-		<PackageReference Include="Microsoft.Build" Version="17.4.0" />
+		<PackageReference Include="Microsoft.Build" Version="17.3.2" />
 	</ItemGroup>
 	<ItemGroup>
 		<ProjectReference Include="..\..\extractor\Semmle.Util\Semmle.Util.csproj" />
diff --git a/csharp/extractor/Semmle.Extraction.CSharp.Standalone/Semmle.Extraction.CSharp.Standalone.csproj b/csharp/extractor/Semmle.Extraction.CSharp.Standalone/Semmle.Extraction.CSharp.Standalone.csproj
index c02999c9acd..09a36029f13 100644
--- a/csharp/extractor/Semmle.Extraction.CSharp.Standalone/Semmle.Extraction.CSharp.Standalone.csproj
+++ b/csharp/extractor/Semmle.Extraction.CSharp.Standalone/Semmle.Extraction.CSharp.Standalone.csproj
@@ -19,7 +19,7 @@
 		<Folder Include="Properties\" />
 	</ItemGroup>
 	<ItemGroup>
-		<PackageReference Include="Microsoft.Build" Version="17.4.0" />
+		<PackageReference Include="Microsoft.Build" Version="17.3.2" />
 		<PackageReference Include="Microsoft.Win32.Primitives" Version="4.3.0" />
 		<PackageReference Include="System.Net.Primitives" Version="4.3.1" />
 		<PackageReference Include="System.Security.Principal" Version="4.3.0" />
diff --git a/csharp/extractor/Semmle.Extraction.CSharp/Semmle.Extraction.CSharp.csproj b/csharp/extractor/Semmle.Extraction.CSharp/Semmle.Extraction.CSharp.csproj
index 02d1e96558d..6ef0e4aa1ce 100644
--- a/csharp/extractor/Semmle.Extraction.CSharp/Semmle.Extraction.CSharp.csproj
+++ b/csharp/extractor/Semmle.Extraction.CSharp/Semmle.Extraction.CSharp.csproj
@@ -19,6 +19,6 @@
 	</ItemGroup>
 	<ItemGroup>
 		<PackageReference Include="Microsoft.CodeAnalysis.CSharp" Version="4.4.0" />
-		<PackageReference Include="Microsoft.Build" Version="17.4.0" />
+		<PackageReference Include="Microsoft.Build" Version="17.3.2" />
 	</ItemGroup>
 </Project>
\ No newline at end of file

From 9f13cdadcb6233677a3609de8445a87d72b0ba96 Mon Sep 17 00:00:00 2001
From: Tom Hvitved <hvitved@github.com>
Date: Thu, 17 Nov 2022 13:42:30 +0100
Subject: [PATCH 0432/1420] C#: Add use-use stress test

---
 .../dataflow/local/DataFlowStep.expected      | 1601 +++++++++++++++
 .../dataflow/local/TaintTrackingStep.expected | 1801 +++++++++++++++++
 .../dataflow/local/UseUseExplosion.cs         |   29 +
 .../library-tests/dataflow/ssa-large/Large.cs |    2 +-
 4 files changed, 3432 insertions(+), 1 deletion(-)
 create mode 100644 csharp/ql/test/library-tests/dataflow/local/UseUseExplosion.cs

diff --git a/csharp/ql/test/library-tests/dataflow/local/DataFlowStep.expected b/csharp/ql/test/library-tests/dataflow/local/DataFlowStep.expected
index ad28e92e626..afb49ad2bce 100644
--- a/csharp/ql/test/library-tests/dataflow/local/DataFlowStep.expected
+++ b/csharp/ql/test/library-tests/dataflow/local/DataFlowStep.expected
@@ -832,3 +832,1604 @@
 | Splitting.cs:57:17:57:17 | [b (line 46): true] access to local variable y | Splitting.cs:58:27:58:27 | [b (line 46): true] access to local variable y |
 | Splitting.cs:58:22:58:22 | [b (line 46): false] SSA def(s) | Splitting.cs:59:19:59:19 | [b (line 46): false] access to local variable s |
 | Splitting.cs:58:22:58:22 | [b (line 46): true] SSA def(s) | Splitting.cs:59:19:59:19 | [b (line 46): true] access to local variable s |
+| UseUseExplosion.cs:21:10:21:10 | SSA entry def(this.Prop) | UseUseExplosion.cs:24:13:24:16 | access to property Prop |
+| UseUseExplosion.cs:21:10:21:10 | this | UseUseExplosion.cs:24:13:24:16 | this access |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:1712:24:1712 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:1727:24:1727 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:1742:24:1742 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:1757:24:1757 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:1772:24:1772 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:1787:24:1787 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:1802:24:1802 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:1817:24:1817 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:1832:24:1832 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:1847:24:1847 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:1862:24:1862 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:1877:24:1877 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:1892:24:1892 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:1907:24:1907 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:1922:24:1922 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:1937:24:1937 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:1952:24:1952 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:1967:24:1967 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:1982:24:1982 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:1997:24:1997 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:2012:24:2012 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:2027:24:2027 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:2042:24:2042 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:2057:24:2057 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:2072:24:2072 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:2087:24:2087 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:2102:24:2102 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:2117:24:2117 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:2132:24:2132 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:2147:24:2147 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:2162:24:2162 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:2177:24:2177 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:2192:24:2192 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:2207:24:2207 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:2222:24:2222 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:2237:24:2237 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:2252:24:2252 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:2267:24:2267 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:2282:24:2282 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:2297:24:2297 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:2312:24:2312 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:2327:24:2327 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:2342:24:2342 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:2357:24:2357 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:2372:24:2372 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:2387:24:2387 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:2402:24:2402 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:2417:24:2417 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:2432:24:2432 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:2447:24:2447 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:2462:24:2462 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:2477:24:2477 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:2492:24:2492 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:2507:24:2507 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:2522:24:2522 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:2537:24:2537 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:2552:24:2552 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:2567:24:2567 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:2582:24:2582 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:2597:24:2597 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:2612:24:2612 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:2627:24:2627 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:2642:24:2642 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:2657:24:2657 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:2672:24:2672 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:2687:24:2687 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:2702:24:2702 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:2717:24:2717 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:2732:24:2732 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:2747:24:2747 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:2762:24:2762 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:2777:24:2777 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:2792:24:2792 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:2807:24:2807 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:2822:24:2822 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:2837:24:2837 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:2852:24:2852 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:2867:24:2867 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:2882:24:2882 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:2897:24:2897 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:2912:24:2912 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:2927:24:2927 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:2942:24:2942 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:2957:24:2957 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:2972:24:2972 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:2987:24:2987 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:3002:24:3002 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:3017:24:3017 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:3032:24:3032 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:3047:24:3047 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:3062:24:3062 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:3077:24:3077 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:3092:24:3092 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:3107:24:3107 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:3122:24:3122 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:3137:24:3137 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:3152:24:3152 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:3167:24:3167 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:3182:24:3182 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:3197:24:3197 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:23:17:23:17 | 0 | UseUseExplosion.cs:23:13:23:17 | SSA def(x) |
+| UseUseExplosion.cs:24:13:24:16 | [post] this access | UseUseExplosion.cs:24:31:24:34 | this access |
+| UseUseExplosion.cs:24:13:24:16 | [post] this access | UseUseExplosion.cs:24:3193:24:3198 | this access |
+| UseUseExplosion.cs:24:13:24:16 | access to property Prop | UseUseExplosion.cs:24:31:24:34 | access to property Prop |
+| UseUseExplosion.cs:24:13:24:16 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:13:24:16 | this access | UseUseExplosion.cs:24:31:24:34 | this access |
+| UseUseExplosion.cs:24:13:24:16 | this access | UseUseExplosion.cs:24:3193:24:3198 | this access |
+| UseUseExplosion.cs:24:31:24:34 | [post] this access | UseUseExplosion.cs:24:48:24:51 | this access |
+| UseUseExplosion.cs:24:31:24:34 | [post] this access | UseUseExplosion.cs:24:3178:24:3183 | this access |
+| UseUseExplosion.cs:24:31:24:34 | access to property Prop | UseUseExplosion.cs:24:48:24:51 | access to property Prop |
+| UseUseExplosion.cs:24:31:24:34 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:31:24:34 | this access | UseUseExplosion.cs:24:48:24:51 | this access |
+| UseUseExplosion.cs:24:31:24:34 | this access | UseUseExplosion.cs:24:3178:24:3183 | this access |
+| UseUseExplosion.cs:24:48:24:51 | [post] this access | UseUseExplosion.cs:24:65:24:68 | this access |
+| UseUseExplosion.cs:24:48:24:51 | [post] this access | UseUseExplosion.cs:24:3163:24:3168 | this access |
+| UseUseExplosion.cs:24:48:24:51 | access to property Prop | UseUseExplosion.cs:24:65:24:68 | access to property Prop |
+| UseUseExplosion.cs:24:48:24:51 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:48:24:51 | this access | UseUseExplosion.cs:24:65:24:68 | this access |
+| UseUseExplosion.cs:24:48:24:51 | this access | UseUseExplosion.cs:24:3163:24:3168 | this access |
+| UseUseExplosion.cs:24:65:24:68 | [post] this access | UseUseExplosion.cs:24:82:24:85 | this access |
+| UseUseExplosion.cs:24:65:24:68 | [post] this access | UseUseExplosion.cs:24:3148:24:3153 | this access |
+| UseUseExplosion.cs:24:65:24:68 | access to property Prop | UseUseExplosion.cs:24:82:24:85 | access to property Prop |
+| UseUseExplosion.cs:24:65:24:68 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:65:24:68 | this access | UseUseExplosion.cs:24:82:24:85 | this access |
+| UseUseExplosion.cs:24:65:24:68 | this access | UseUseExplosion.cs:24:3148:24:3153 | this access |
+| UseUseExplosion.cs:24:82:24:85 | [post] this access | UseUseExplosion.cs:24:99:24:102 | this access |
+| UseUseExplosion.cs:24:82:24:85 | [post] this access | UseUseExplosion.cs:24:3133:24:3138 | this access |
+| UseUseExplosion.cs:24:82:24:85 | access to property Prop | UseUseExplosion.cs:24:99:24:102 | access to property Prop |
+| UseUseExplosion.cs:24:82:24:85 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:82:24:85 | this access | UseUseExplosion.cs:24:99:24:102 | this access |
+| UseUseExplosion.cs:24:82:24:85 | this access | UseUseExplosion.cs:24:3133:24:3138 | this access |
+| UseUseExplosion.cs:24:99:24:102 | [post] this access | UseUseExplosion.cs:24:116:24:119 | this access |
+| UseUseExplosion.cs:24:99:24:102 | [post] this access | UseUseExplosion.cs:24:3118:24:3123 | this access |
+| UseUseExplosion.cs:24:99:24:102 | access to property Prop | UseUseExplosion.cs:24:116:24:119 | access to property Prop |
+| UseUseExplosion.cs:24:99:24:102 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:99:24:102 | this access | UseUseExplosion.cs:24:116:24:119 | this access |
+| UseUseExplosion.cs:24:99:24:102 | this access | UseUseExplosion.cs:24:3118:24:3123 | this access |
+| UseUseExplosion.cs:24:116:24:119 | [post] this access | UseUseExplosion.cs:24:133:24:136 | this access |
+| UseUseExplosion.cs:24:116:24:119 | [post] this access | UseUseExplosion.cs:24:3103:24:3108 | this access |
+| UseUseExplosion.cs:24:116:24:119 | access to property Prop | UseUseExplosion.cs:24:133:24:136 | access to property Prop |
+| UseUseExplosion.cs:24:116:24:119 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:116:24:119 | this access | UseUseExplosion.cs:24:133:24:136 | this access |
+| UseUseExplosion.cs:24:116:24:119 | this access | UseUseExplosion.cs:24:3103:24:3108 | this access |
+| UseUseExplosion.cs:24:133:24:136 | [post] this access | UseUseExplosion.cs:24:150:24:153 | this access |
+| UseUseExplosion.cs:24:133:24:136 | [post] this access | UseUseExplosion.cs:24:3088:24:3093 | this access |
+| UseUseExplosion.cs:24:133:24:136 | access to property Prop | UseUseExplosion.cs:24:150:24:153 | access to property Prop |
+| UseUseExplosion.cs:24:133:24:136 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:133:24:136 | this access | UseUseExplosion.cs:24:150:24:153 | this access |
+| UseUseExplosion.cs:24:133:24:136 | this access | UseUseExplosion.cs:24:3088:24:3093 | this access |
+| UseUseExplosion.cs:24:150:24:153 | [post] this access | UseUseExplosion.cs:24:167:24:170 | this access |
+| UseUseExplosion.cs:24:150:24:153 | [post] this access | UseUseExplosion.cs:24:3073:24:3078 | this access |
+| UseUseExplosion.cs:24:150:24:153 | access to property Prop | UseUseExplosion.cs:24:167:24:170 | access to property Prop |
+| UseUseExplosion.cs:24:150:24:153 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:150:24:153 | this access | UseUseExplosion.cs:24:167:24:170 | this access |
+| UseUseExplosion.cs:24:150:24:153 | this access | UseUseExplosion.cs:24:3073:24:3078 | this access |
+| UseUseExplosion.cs:24:167:24:170 | [post] this access | UseUseExplosion.cs:24:184:24:187 | this access |
+| UseUseExplosion.cs:24:167:24:170 | [post] this access | UseUseExplosion.cs:24:3058:24:3063 | this access |
+| UseUseExplosion.cs:24:167:24:170 | access to property Prop | UseUseExplosion.cs:24:184:24:187 | access to property Prop |
+| UseUseExplosion.cs:24:167:24:170 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:167:24:170 | this access | UseUseExplosion.cs:24:184:24:187 | this access |
+| UseUseExplosion.cs:24:167:24:170 | this access | UseUseExplosion.cs:24:3058:24:3063 | this access |
+| UseUseExplosion.cs:24:184:24:187 | [post] this access | UseUseExplosion.cs:24:201:24:204 | this access |
+| UseUseExplosion.cs:24:184:24:187 | [post] this access | UseUseExplosion.cs:24:3043:24:3048 | this access |
+| UseUseExplosion.cs:24:184:24:187 | access to property Prop | UseUseExplosion.cs:24:201:24:204 | access to property Prop |
+| UseUseExplosion.cs:24:184:24:187 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:184:24:187 | this access | UseUseExplosion.cs:24:201:24:204 | this access |
+| UseUseExplosion.cs:24:184:24:187 | this access | UseUseExplosion.cs:24:3043:24:3048 | this access |
+| UseUseExplosion.cs:24:201:24:204 | [post] this access | UseUseExplosion.cs:24:218:24:221 | this access |
+| UseUseExplosion.cs:24:201:24:204 | [post] this access | UseUseExplosion.cs:24:3028:24:3033 | this access |
+| UseUseExplosion.cs:24:201:24:204 | access to property Prop | UseUseExplosion.cs:24:218:24:221 | access to property Prop |
+| UseUseExplosion.cs:24:201:24:204 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:201:24:204 | this access | UseUseExplosion.cs:24:218:24:221 | this access |
+| UseUseExplosion.cs:24:201:24:204 | this access | UseUseExplosion.cs:24:3028:24:3033 | this access |
+| UseUseExplosion.cs:24:218:24:221 | [post] this access | UseUseExplosion.cs:24:235:24:238 | this access |
+| UseUseExplosion.cs:24:218:24:221 | [post] this access | UseUseExplosion.cs:24:3013:24:3018 | this access |
+| UseUseExplosion.cs:24:218:24:221 | access to property Prop | UseUseExplosion.cs:24:235:24:238 | access to property Prop |
+| UseUseExplosion.cs:24:218:24:221 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:218:24:221 | this access | UseUseExplosion.cs:24:235:24:238 | this access |
+| UseUseExplosion.cs:24:218:24:221 | this access | UseUseExplosion.cs:24:3013:24:3018 | this access |
+| UseUseExplosion.cs:24:235:24:238 | [post] this access | UseUseExplosion.cs:24:252:24:255 | this access |
+| UseUseExplosion.cs:24:235:24:238 | [post] this access | UseUseExplosion.cs:24:2998:24:3003 | this access |
+| UseUseExplosion.cs:24:235:24:238 | access to property Prop | UseUseExplosion.cs:24:252:24:255 | access to property Prop |
+| UseUseExplosion.cs:24:235:24:238 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:235:24:238 | this access | UseUseExplosion.cs:24:252:24:255 | this access |
+| UseUseExplosion.cs:24:235:24:238 | this access | UseUseExplosion.cs:24:2998:24:3003 | this access |
+| UseUseExplosion.cs:24:252:24:255 | [post] this access | UseUseExplosion.cs:24:269:24:272 | this access |
+| UseUseExplosion.cs:24:252:24:255 | [post] this access | UseUseExplosion.cs:24:2983:24:2988 | this access |
+| UseUseExplosion.cs:24:252:24:255 | access to property Prop | UseUseExplosion.cs:24:269:24:272 | access to property Prop |
+| UseUseExplosion.cs:24:252:24:255 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:252:24:255 | this access | UseUseExplosion.cs:24:269:24:272 | this access |
+| UseUseExplosion.cs:24:252:24:255 | this access | UseUseExplosion.cs:24:2983:24:2988 | this access |
+| UseUseExplosion.cs:24:269:24:272 | [post] this access | UseUseExplosion.cs:24:286:24:289 | this access |
+| UseUseExplosion.cs:24:269:24:272 | [post] this access | UseUseExplosion.cs:24:2968:24:2973 | this access |
+| UseUseExplosion.cs:24:269:24:272 | access to property Prop | UseUseExplosion.cs:24:286:24:289 | access to property Prop |
+| UseUseExplosion.cs:24:269:24:272 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:269:24:272 | this access | UseUseExplosion.cs:24:286:24:289 | this access |
+| UseUseExplosion.cs:24:269:24:272 | this access | UseUseExplosion.cs:24:2968:24:2973 | this access |
+| UseUseExplosion.cs:24:286:24:289 | [post] this access | UseUseExplosion.cs:24:303:24:306 | this access |
+| UseUseExplosion.cs:24:286:24:289 | [post] this access | UseUseExplosion.cs:24:2953:24:2958 | this access |
+| UseUseExplosion.cs:24:286:24:289 | access to property Prop | UseUseExplosion.cs:24:303:24:306 | access to property Prop |
+| UseUseExplosion.cs:24:286:24:289 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:286:24:289 | this access | UseUseExplosion.cs:24:303:24:306 | this access |
+| UseUseExplosion.cs:24:286:24:289 | this access | UseUseExplosion.cs:24:2953:24:2958 | this access |
+| UseUseExplosion.cs:24:303:24:306 | [post] this access | UseUseExplosion.cs:24:320:24:323 | this access |
+| UseUseExplosion.cs:24:303:24:306 | [post] this access | UseUseExplosion.cs:24:2938:24:2943 | this access |
+| UseUseExplosion.cs:24:303:24:306 | access to property Prop | UseUseExplosion.cs:24:320:24:323 | access to property Prop |
+| UseUseExplosion.cs:24:303:24:306 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:303:24:306 | this access | UseUseExplosion.cs:24:320:24:323 | this access |
+| UseUseExplosion.cs:24:303:24:306 | this access | UseUseExplosion.cs:24:2938:24:2943 | this access |
+| UseUseExplosion.cs:24:320:24:323 | [post] this access | UseUseExplosion.cs:24:337:24:340 | this access |
+| UseUseExplosion.cs:24:320:24:323 | [post] this access | UseUseExplosion.cs:24:2923:24:2928 | this access |
+| UseUseExplosion.cs:24:320:24:323 | access to property Prop | UseUseExplosion.cs:24:337:24:340 | access to property Prop |
+| UseUseExplosion.cs:24:320:24:323 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:320:24:323 | this access | UseUseExplosion.cs:24:337:24:340 | this access |
+| UseUseExplosion.cs:24:320:24:323 | this access | UseUseExplosion.cs:24:2923:24:2928 | this access |
+| UseUseExplosion.cs:24:337:24:340 | [post] this access | UseUseExplosion.cs:24:354:24:357 | this access |
+| UseUseExplosion.cs:24:337:24:340 | [post] this access | UseUseExplosion.cs:24:2908:24:2913 | this access |
+| UseUseExplosion.cs:24:337:24:340 | access to property Prop | UseUseExplosion.cs:24:354:24:357 | access to property Prop |
+| UseUseExplosion.cs:24:337:24:340 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:337:24:340 | this access | UseUseExplosion.cs:24:354:24:357 | this access |
+| UseUseExplosion.cs:24:337:24:340 | this access | UseUseExplosion.cs:24:2908:24:2913 | this access |
+| UseUseExplosion.cs:24:354:24:357 | [post] this access | UseUseExplosion.cs:24:371:24:374 | this access |
+| UseUseExplosion.cs:24:354:24:357 | [post] this access | UseUseExplosion.cs:24:2893:24:2898 | this access |
+| UseUseExplosion.cs:24:354:24:357 | access to property Prop | UseUseExplosion.cs:24:371:24:374 | access to property Prop |
+| UseUseExplosion.cs:24:354:24:357 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:354:24:357 | this access | UseUseExplosion.cs:24:371:24:374 | this access |
+| UseUseExplosion.cs:24:354:24:357 | this access | UseUseExplosion.cs:24:2893:24:2898 | this access |
+| UseUseExplosion.cs:24:371:24:374 | [post] this access | UseUseExplosion.cs:24:388:24:391 | this access |
+| UseUseExplosion.cs:24:371:24:374 | [post] this access | UseUseExplosion.cs:24:2878:24:2883 | this access |
+| UseUseExplosion.cs:24:371:24:374 | access to property Prop | UseUseExplosion.cs:24:388:24:391 | access to property Prop |
+| UseUseExplosion.cs:24:371:24:374 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:371:24:374 | this access | UseUseExplosion.cs:24:388:24:391 | this access |
+| UseUseExplosion.cs:24:371:24:374 | this access | UseUseExplosion.cs:24:2878:24:2883 | this access |
+| UseUseExplosion.cs:24:388:24:391 | [post] this access | UseUseExplosion.cs:24:405:24:408 | this access |
+| UseUseExplosion.cs:24:388:24:391 | [post] this access | UseUseExplosion.cs:24:2863:24:2868 | this access |
+| UseUseExplosion.cs:24:388:24:391 | access to property Prop | UseUseExplosion.cs:24:405:24:408 | access to property Prop |
+| UseUseExplosion.cs:24:388:24:391 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:388:24:391 | this access | UseUseExplosion.cs:24:405:24:408 | this access |
+| UseUseExplosion.cs:24:388:24:391 | this access | UseUseExplosion.cs:24:2863:24:2868 | this access |
+| UseUseExplosion.cs:24:405:24:408 | [post] this access | UseUseExplosion.cs:24:422:24:425 | this access |
+| UseUseExplosion.cs:24:405:24:408 | [post] this access | UseUseExplosion.cs:24:2848:24:2853 | this access |
+| UseUseExplosion.cs:24:405:24:408 | access to property Prop | UseUseExplosion.cs:24:422:24:425 | access to property Prop |
+| UseUseExplosion.cs:24:405:24:408 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:405:24:408 | this access | UseUseExplosion.cs:24:422:24:425 | this access |
+| UseUseExplosion.cs:24:405:24:408 | this access | UseUseExplosion.cs:24:2848:24:2853 | this access |
+| UseUseExplosion.cs:24:422:24:425 | [post] this access | UseUseExplosion.cs:24:439:24:442 | this access |
+| UseUseExplosion.cs:24:422:24:425 | [post] this access | UseUseExplosion.cs:24:2833:24:2838 | this access |
+| UseUseExplosion.cs:24:422:24:425 | access to property Prop | UseUseExplosion.cs:24:439:24:442 | access to property Prop |
+| UseUseExplosion.cs:24:422:24:425 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:422:24:425 | this access | UseUseExplosion.cs:24:439:24:442 | this access |
+| UseUseExplosion.cs:24:422:24:425 | this access | UseUseExplosion.cs:24:2833:24:2838 | this access |
+| UseUseExplosion.cs:24:439:24:442 | [post] this access | UseUseExplosion.cs:24:456:24:459 | this access |
+| UseUseExplosion.cs:24:439:24:442 | [post] this access | UseUseExplosion.cs:24:2818:24:2823 | this access |
+| UseUseExplosion.cs:24:439:24:442 | access to property Prop | UseUseExplosion.cs:24:456:24:459 | access to property Prop |
+| UseUseExplosion.cs:24:439:24:442 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:439:24:442 | this access | UseUseExplosion.cs:24:456:24:459 | this access |
+| UseUseExplosion.cs:24:439:24:442 | this access | UseUseExplosion.cs:24:2818:24:2823 | this access |
+| UseUseExplosion.cs:24:456:24:459 | [post] this access | UseUseExplosion.cs:24:473:24:476 | this access |
+| UseUseExplosion.cs:24:456:24:459 | [post] this access | UseUseExplosion.cs:24:2803:24:2808 | this access |
+| UseUseExplosion.cs:24:456:24:459 | access to property Prop | UseUseExplosion.cs:24:473:24:476 | access to property Prop |
+| UseUseExplosion.cs:24:456:24:459 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:456:24:459 | this access | UseUseExplosion.cs:24:473:24:476 | this access |
+| UseUseExplosion.cs:24:456:24:459 | this access | UseUseExplosion.cs:24:2803:24:2808 | this access |
+| UseUseExplosion.cs:24:473:24:476 | [post] this access | UseUseExplosion.cs:24:490:24:493 | this access |
+| UseUseExplosion.cs:24:473:24:476 | [post] this access | UseUseExplosion.cs:24:2788:24:2793 | this access |
+| UseUseExplosion.cs:24:473:24:476 | access to property Prop | UseUseExplosion.cs:24:490:24:493 | access to property Prop |
+| UseUseExplosion.cs:24:473:24:476 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:473:24:476 | this access | UseUseExplosion.cs:24:490:24:493 | this access |
+| UseUseExplosion.cs:24:473:24:476 | this access | UseUseExplosion.cs:24:2788:24:2793 | this access |
+| UseUseExplosion.cs:24:490:24:493 | [post] this access | UseUseExplosion.cs:24:507:24:510 | this access |
+| UseUseExplosion.cs:24:490:24:493 | [post] this access | UseUseExplosion.cs:24:2773:24:2778 | this access |
+| UseUseExplosion.cs:24:490:24:493 | access to property Prop | UseUseExplosion.cs:24:507:24:510 | access to property Prop |
+| UseUseExplosion.cs:24:490:24:493 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:490:24:493 | this access | UseUseExplosion.cs:24:507:24:510 | this access |
+| UseUseExplosion.cs:24:490:24:493 | this access | UseUseExplosion.cs:24:2773:24:2778 | this access |
+| UseUseExplosion.cs:24:507:24:510 | [post] this access | UseUseExplosion.cs:24:524:24:527 | this access |
+| UseUseExplosion.cs:24:507:24:510 | [post] this access | UseUseExplosion.cs:24:2758:24:2763 | this access |
+| UseUseExplosion.cs:24:507:24:510 | access to property Prop | UseUseExplosion.cs:24:524:24:527 | access to property Prop |
+| UseUseExplosion.cs:24:507:24:510 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:507:24:510 | this access | UseUseExplosion.cs:24:524:24:527 | this access |
+| UseUseExplosion.cs:24:507:24:510 | this access | UseUseExplosion.cs:24:2758:24:2763 | this access |
+| UseUseExplosion.cs:24:524:24:527 | [post] this access | UseUseExplosion.cs:24:541:24:544 | this access |
+| UseUseExplosion.cs:24:524:24:527 | [post] this access | UseUseExplosion.cs:24:2743:24:2748 | this access |
+| UseUseExplosion.cs:24:524:24:527 | access to property Prop | UseUseExplosion.cs:24:541:24:544 | access to property Prop |
+| UseUseExplosion.cs:24:524:24:527 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:524:24:527 | this access | UseUseExplosion.cs:24:541:24:544 | this access |
+| UseUseExplosion.cs:24:524:24:527 | this access | UseUseExplosion.cs:24:2743:24:2748 | this access |
+| UseUseExplosion.cs:24:541:24:544 | [post] this access | UseUseExplosion.cs:24:558:24:561 | this access |
+| UseUseExplosion.cs:24:541:24:544 | [post] this access | UseUseExplosion.cs:24:2728:24:2733 | this access |
+| UseUseExplosion.cs:24:541:24:544 | access to property Prop | UseUseExplosion.cs:24:558:24:561 | access to property Prop |
+| UseUseExplosion.cs:24:541:24:544 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:541:24:544 | this access | UseUseExplosion.cs:24:558:24:561 | this access |
+| UseUseExplosion.cs:24:541:24:544 | this access | UseUseExplosion.cs:24:2728:24:2733 | this access |
+| UseUseExplosion.cs:24:558:24:561 | [post] this access | UseUseExplosion.cs:24:575:24:578 | this access |
+| UseUseExplosion.cs:24:558:24:561 | [post] this access | UseUseExplosion.cs:24:2713:24:2718 | this access |
+| UseUseExplosion.cs:24:558:24:561 | access to property Prop | UseUseExplosion.cs:24:575:24:578 | access to property Prop |
+| UseUseExplosion.cs:24:558:24:561 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:558:24:561 | this access | UseUseExplosion.cs:24:575:24:578 | this access |
+| UseUseExplosion.cs:24:558:24:561 | this access | UseUseExplosion.cs:24:2713:24:2718 | this access |
+| UseUseExplosion.cs:24:575:24:578 | [post] this access | UseUseExplosion.cs:24:592:24:595 | this access |
+| UseUseExplosion.cs:24:575:24:578 | [post] this access | UseUseExplosion.cs:24:2698:24:2703 | this access |
+| UseUseExplosion.cs:24:575:24:578 | access to property Prop | UseUseExplosion.cs:24:592:24:595 | access to property Prop |
+| UseUseExplosion.cs:24:575:24:578 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:575:24:578 | this access | UseUseExplosion.cs:24:592:24:595 | this access |
+| UseUseExplosion.cs:24:575:24:578 | this access | UseUseExplosion.cs:24:2698:24:2703 | this access |
+| UseUseExplosion.cs:24:592:24:595 | [post] this access | UseUseExplosion.cs:24:609:24:612 | this access |
+| UseUseExplosion.cs:24:592:24:595 | [post] this access | UseUseExplosion.cs:24:2683:24:2688 | this access |
+| UseUseExplosion.cs:24:592:24:595 | access to property Prop | UseUseExplosion.cs:24:609:24:612 | access to property Prop |
+| UseUseExplosion.cs:24:592:24:595 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:592:24:595 | this access | UseUseExplosion.cs:24:609:24:612 | this access |
+| UseUseExplosion.cs:24:592:24:595 | this access | UseUseExplosion.cs:24:2683:24:2688 | this access |
+| UseUseExplosion.cs:24:609:24:612 | [post] this access | UseUseExplosion.cs:24:626:24:629 | this access |
+| UseUseExplosion.cs:24:609:24:612 | [post] this access | UseUseExplosion.cs:24:2668:24:2673 | this access |
+| UseUseExplosion.cs:24:609:24:612 | access to property Prop | UseUseExplosion.cs:24:626:24:629 | access to property Prop |
+| UseUseExplosion.cs:24:609:24:612 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:609:24:612 | this access | UseUseExplosion.cs:24:626:24:629 | this access |
+| UseUseExplosion.cs:24:609:24:612 | this access | UseUseExplosion.cs:24:2668:24:2673 | this access |
+| UseUseExplosion.cs:24:626:24:629 | [post] this access | UseUseExplosion.cs:24:643:24:646 | this access |
+| UseUseExplosion.cs:24:626:24:629 | [post] this access | UseUseExplosion.cs:24:2653:24:2658 | this access |
+| UseUseExplosion.cs:24:626:24:629 | access to property Prop | UseUseExplosion.cs:24:643:24:646 | access to property Prop |
+| UseUseExplosion.cs:24:626:24:629 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:626:24:629 | this access | UseUseExplosion.cs:24:643:24:646 | this access |
+| UseUseExplosion.cs:24:626:24:629 | this access | UseUseExplosion.cs:24:2653:24:2658 | this access |
+| UseUseExplosion.cs:24:643:24:646 | [post] this access | UseUseExplosion.cs:24:660:24:663 | this access |
+| UseUseExplosion.cs:24:643:24:646 | [post] this access | UseUseExplosion.cs:24:2638:24:2643 | this access |
+| UseUseExplosion.cs:24:643:24:646 | access to property Prop | UseUseExplosion.cs:24:660:24:663 | access to property Prop |
+| UseUseExplosion.cs:24:643:24:646 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:643:24:646 | this access | UseUseExplosion.cs:24:660:24:663 | this access |
+| UseUseExplosion.cs:24:643:24:646 | this access | UseUseExplosion.cs:24:2638:24:2643 | this access |
+| UseUseExplosion.cs:24:660:24:663 | [post] this access | UseUseExplosion.cs:24:677:24:680 | this access |
+| UseUseExplosion.cs:24:660:24:663 | [post] this access | UseUseExplosion.cs:24:2623:24:2628 | this access |
+| UseUseExplosion.cs:24:660:24:663 | access to property Prop | UseUseExplosion.cs:24:677:24:680 | access to property Prop |
+| UseUseExplosion.cs:24:660:24:663 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:660:24:663 | this access | UseUseExplosion.cs:24:677:24:680 | this access |
+| UseUseExplosion.cs:24:660:24:663 | this access | UseUseExplosion.cs:24:2623:24:2628 | this access |
+| UseUseExplosion.cs:24:677:24:680 | [post] this access | UseUseExplosion.cs:24:694:24:697 | this access |
+| UseUseExplosion.cs:24:677:24:680 | [post] this access | UseUseExplosion.cs:24:2608:24:2613 | this access |
+| UseUseExplosion.cs:24:677:24:680 | access to property Prop | UseUseExplosion.cs:24:694:24:697 | access to property Prop |
+| UseUseExplosion.cs:24:677:24:680 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:677:24:680 | this access | UseUseExplosion.cs:24:694:24:697 | this access |
+| UseUseExplosion.cs:24:677:24:680 | this access | UseUseExplosion.cs:24:2608:24:2613 | this access |
+| UseUseExplosion.cs:24:694:24:697 | [post] this access | UseUseExplosion.cs:24:711:24:714 | this access |
+| UseUseExplosion.cs:24:694:24:697 | [post] this access | UseUseExplosion.cs:24:2593:24:2598 | this access |
+| UseUseExplosion.cs:24:694:24:697 | access to property Prop | UseUseExplosion.cs:24:711:24:714 | access to property Prop |
+| UseUseExplosion.cs:24:694:24:697 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:694:24:697 | this access | UseUseExplosion.cs:24:711:24:714 | this access |
+| UseUseExplosion.cs:24:694:24:697 | this access | UseUseExplosion.cs:24:2593:24:2598 | this access |
+| UseUseExplosion.cs:24:711:24:714 | [post] this access | UseUseExplosion.cs:24:728:24:731 | this access |
+| UseUseExplosion.cs:24:711:24:714 | [post] this access | UseUseExplosion.cs:24:2578:24:2583 | this access |
+| UseUseExplosion.cs:24:711:24:714 | access to property Prop | UseUseExplosion.cs:24:728:24:731 | access to property Prop |
+| UseUseExplosion.cs:24:711:24:714 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:711:24:714 | this access | UseUseExplosion.cs:24:728:24:731 | this access |
+| UseUseExplosion.cs:24:711:24:714 | this access | UseUseExplosion.cs:24:2578:24:2583 | this access |
+| UseUseExplosion.cs:24:728:24:731 | [post] this access | UseUseExplosion.cs:24:745:24:748 | this access |
+| UseUseExplosion.cs:24:728:24:731 | [post] this access | UseUseExplosion.cs:24:2563:24:2568 | this access |
+| UseUseExplosion.cs:24:728:24:731 | access to property Prop | UseUseExplosion.cs:24:745:24:748 | access to property Prop |
+| UseUseExplosion.cs:24:728:24:731 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:728:24:731 | this access | UseUseExplosion.cs:24:745:24:748 | this access |
+| UseUseExplosion.cs:24:728:24:731 | this access | UseUseExplosion.cs:24:2563:24:2568 | this access |
+| UseUseExplosion.cs:24:745:24:748 | [post] this access | UseUseExplosion.cs:24:762:24:765 | this access |
+| UseUseExplosion.cs:24:745:24:748 | [post] this access | UseUseExplosion.cs:24:2548:24:2553 | this access |
+| UseUseExplosion.cs:24:745:24:748 | access to property Prop | UseUseExplosion.cs:24:762:24:765 | access to property Prop |
+| UseUseExplosion.cs:24:745:24:748 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:745:24:748 | this access | UseUseExplosion.cs:24:762:24:765 | this access |
+| UseUseExplosion.cs:24:745:24:748 | this access | UseUseExplosion.cs:24:2548:24:2553 | this access |
+| UseUseExplosion.cs:24:762:24:765 | [post] this access | UseUseExplosion.cs:24:779:24:782 | this access |
+| UseUseExplosion.cs:24:762:24:765 | [post] this access | UseUseExplosion.cs:24:2533:24:2538 | this access |
+| UseUseExplosion.cs:24:762:24:765 | access to property Prop | UseUseExplosion.cs:24:779:24:782 | access to property Prop |
+| UseUseExplosion.cs:24:762:24:765 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:762:24:765 | this access | UseUseExplosion.cs:24:779:24:782 | this access |
+| UseUseExplosion.cs:24:762:24:765 | this access | UseUseExplosion.cs:24:2533:24:2538 | this access |
+| UseUseExplosion.cs:24:779:24:782 | [post] this access | UseUseExplosion.cs:24:796:24:799 | this access |
+| UseUseExplosion.cs:24:779:24:782 | [post] this access | UseUseExplosion.cs:24:2518:24:2523 | this access |
+| UseUseExplosion.cs:24:779:24:782 | access to property Prop | UseUseExplosion.cs:24:796:24:799 | access to property Prop |
+| UseUseExplosion.cs:24:779:24:782 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:779:24:782 | this access | UseUseExplosion.cs:24:796:24:799 | this access |
+| UseUseExplosion.cs:24:779:24:782 | this access | UseUseExplosion.cs:24:2518:24:2523 | this access |
+| UseUseExplosion.cs:24:796:24:799 | [post] this access | UseUseExplosion.cs:24:813:24:816 | this access |
+| UseUseExplosion.cs:24:796:24:799 | [post] this access | UseUseExplosion.cs:24:2503:24:2508 | this access |
+| UseUseExplosion.cs:24:796:24:799 | access to property Prop | UseUseExplosion.cs:24:813:24:816 | access to property Prop |
+| UseUseExplosion.cs:24:796:24:799 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:796:24:799 | this access | UseUseExplosion.cs:24:813:24:816 | this access |
+| UseUseExplosion.cs:24:796:24:799 | this access | UseUseExplosion.cs:24:2503:24:2508 | this access |
+| UseUseExplosion.cs:24:813:24:816 | [post] this access | UseUseExplosion.cs:24:830:24:833 | this access |
+| UseUseExplosion.cs:24:813:24:816 | [post] this access | UseUseExplosion.cs:24:2488:24:2493 | this access |
+| UseUseExplosion.cs:24:813:24:816 | access to property Prop | UseUseExplosion.cs:24:830:24:833 | access to property Prop |
+| UseUseExplosion.cs:24:813:24:816 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:813:24:816 | this access | UseUseExplosion.cs:24:830:24:833 | this access |
+| UseUseExplosion.cs:24:813:24:816 | this access | UseUseExplosion.cs:24:2488:24:2493 | this access |
+| UseUseExplosion.cs:24:830:24:833 | [post] this access | UseUseExplosion.cs:24:847:24:850 | this access |
+| UseUseExplosion.cs:24:830:24:833 | [post] this access | UseUseExplosion.cs:24:2473:24:2478 | this access |
+| UseUseExplosion.cs:24:830:24:833 | access to property Prop | UseUseExplosion.cs:24:847:24:850 | access to property Prop |
+| UseUseExplosion.cs:24:830:24:833 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:830:24:833 | this access | UseUseExplosion.cs:24:847:24:850 | this access |
+| UseUseExplosion.cs:24:830:24:833 | this access | UseUseExplosion.cs:24:2473:24:2478 | this access |
+| UseUseExplosion.cs:24:847:24:850 | [post] this access | UseUseExplosion.cs:24:864:24:867 | this access |
+| UseUseExplosion.cs:24:847:24:850 | [post] this access | UseUseExplosion.cs:24:2458:24:2463 | this access |
+| UseUseExplosion.cs:24:847:24:850 | access to property Prop | UseUseExplosion.cs:24:864:24:867 | access to property Prop |
+| UseUseExplosion.cs:24:847:24:850 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:847:24:850 | this access | UseUseExplosion.cs:24:864:24:867 | this access |
+| UseUseExplosion.cs:24:847:24:850 | this access | UseUseExplosion.cs:24:2458:24:2463 | this access |
+| UseUseExplosion.cs:24:864:24:867 | [post] this access | UseUseExplosion.cs:24:881:24:884 | this access |
+| UseUseExplosion.cs:24:864:24:867 | [post] this access | UseUseExplosion.cs:24:2443:24:2448 | this access |
+| UseUseExplosion.cs:24:864:24:867 | access to property Prop | UseUseExplosion.cs:24:881:24:884 | access to property Prop |
+| UseUseExplosion.cs:24:864:24:867 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:864:24:867 | this access | UseUseExplosion.cs:24:881:24:884 | this access |
+| UseUseExplosion.cs:24:864:24:867 | this access | UseUseExplosion.cs:24:2443:24:2448 | this access |
+| UseUseExplosion.cs:24:881:24:884 | [post] this access | UseUseExplosion.cs:24:898:24:901 | this access |
+| UseUseExplosion.cs:24:881:24:884 | [post] this access | UseUseExplosion.cs:24:2428:24:2433 | this access |
+| UseUseExplosion.cs:24:881:24:884 | access to property Prop | UseUseExplosion.cs:24:898:24:901 | access to property Prop |
+| UseUseExplosion.cs:24:881:24:884 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:881:24:884 | this access | UseUseExplosion.cs:24:898:24:901 | this access |
+| UseUseExplosion.cs:24:881:24:884 | this access | UseUseExplosion.cs:24:2428:24:2433 | this access |
+| UseUseExplosion.cs:24:898:24:901 | [post] this access | UseUseExplosion.cs:24:915:24:918 | this access |
+| UseUseExplosion.cs:24:898:24:901 | [post] this access | UseUseExplosion.cs:24:2413:24:2418 | this access |
+| UseUseExplosion.cs:24:898:24:901 | access to property Prop | UseUseExplosion.cs:24:915:24:918 | access to property Prop |
+| UseUseExplosion.cs:24:898:24:901 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:898:24:901 | this access | UseUseExplosion.cs:24:915:24:918 | this access |
+| UseUseExplosion.cs:24:898:24:901 | this access | UseUseExplosion.cs:24:2413:24:2418 | this access |
+| UseUseExplosion.cs:24:915:24:918 | [post] this access | UseUseExplosion.cs:24:932:24:935 | this access |
+| UseUseExplosion.cs:24:915:24:918 | [post] this access | UseUseExplosion.cs:24:2398:24:2403 | this access |
+| UseUseExplosion.cs:24:915:24:918 | access to property Prop | UseUseExplosion.cs:24:932:24:935 | access to property Prop |
+| UseUseExplosion.cs:24:915:24:918 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:915:24:918 | this access | UseUseExplosion.cs:24:932:24:935 | this access |
+| UseUseExplosion.cs:24:915:24:918 | this access | UseUseExplosion.cs:24:2398:24:2403 | this access |
+| UseUseExplosion.cs:24:932:24:935 | [post] this access | UseUseExplosion.cs:24:949:24:952 | this access |
+| UseUseExplosion.cs:24:932:24:935 | [post] this access | UseUseExplosion.cs:24:2383:24:2388 | this access |
+| UseUseExplosion.cs:24:932:24:935 | access to property Prop | UseUseExplosion.cs:24:949:24:952 | access to property Prop |
+| UseUseExplosion.cs:24:932:24:935 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:932:24:935 | this access | UseUseExplosion.cs:24:949:24:952 | this access |
+| UseUseExplosion.cs:24:932:24:935 | this access | UseUseExplosion.cs:24:2383:24:2388 | this access |
+| UseUseExplosion.cs:24:949:24:952 | [post] this access | UseUseExplosion.cs:24:966:24:969 | this access |
+| UseUseExplosion.cs:24:949:24:952 | [post] this access | UseUseExplosion.cs:24:2368:24:2373 | this access |
+| UseUseExplosion.cs:24:949:24:952 | access to property Prop | UseUseExplosion.cs:24:966:24:969 | access to property Prop |
+| UseUseExplosion.cs:24:949:24:952 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:949:24:952 | this access | UseUseExplosion.cs:24:966:24:969 | this access |
+| UseUseExplosion.cs:24:949:24:952 | this access | UseUseExplosion.cs:24:2368:24:2373 | this access |
+| UseUseExplosion.cs:24:966:24:969 | [post] this access | UseUseExplosion.cs:24:983:24:986 | this access |
+| UseUseExplosion.cs:24:966:24:969 | [post] this access | UseUseExplosion.cs:24:2353:24:2358 | this access |
+| UseUseExplosion.cs:24:966:24:969 | access to property Prop | UseUseExplosion.cs:24:983:24:986 | access to property Prop |
+| UseUseExplosion.cs:24:966:24:969 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:966:24:969 | this access | UseUseExplosion.cs:24:983:24:986 | this access |
+| UseUseExplosion.cs:24:966:24:969 | this access | UseUseExplosion.cs:24:2353:24:2358 | this access |
+| UseUseExplosion.cs:24:983:24:986 | [post] this access | UseUseExplosion.cs:24:1000:24:1003 | this access |
+| UseUseExplosion.cs:24:983:24:986 | [post] this access | UseUseExplosion.cs:24:2338:24:2343 | this access |
+| UseUseExplosion.cs:24:983:24:986 | access to property Prop | UseUseExplosion.cs:24:1000:24:1003 | access to property Prop |
+| UseUseExplosion.cs:24:983:24:986 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:983:24:986 | this access | UseUseExplosion.cs:24:1000:24:1003 | this access |
+| UseUseExplosion.cs:24:983:24:986 | this access | UseUseExplosion.cs:24:2338:24:2343 | this access |
+| UseUseExplosion.cs:24:1000:24:1003 | [post] this access | UseUseExplosion.cs:24:1017:24:1020 | this access |
+| UseUseExplosion.cs:24:1000:24:1003 | [post] this access | UseUseExplosion.cs:24:2323:24:2328 | this access |
+| UseUseExplosion.cs:24:1000:24:1003 | access to property Prop | UseUseExplosion.cs:24:1017:24:1020 | access to property Prop |
+| UseUseExplosion.cs:24:1000:24:1003 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:1000:24:1003 | this access | UseUseExplosion.cs:24:1017:24:1020 | this access |
+| UseUseExplosion.cs:24:1000:24:1003 | this access | UseUseExplosion.cs:24:2323:24:2328 | this access |
+| UseUseExplosion.cs:24:1017:24:1020 | [post] this access | UseUseExplosion.cs:24:1034:24:1037 | this access |
+| UseUseExplosion.cs:24:1017:24:1020 | [post] this access | UseUseExplosion.cs:24:2308:24:2313 | this access |
+| UseUseExplosion.cs:24:1017:24:1020 | access to property Prop | UseUseExplosion.cs:24:1034:24:1037 | access to property Prop |
+| UseUseExplosion.cs:24:1017:24:1020 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:1017:24:1020 | this access | UseUseExplosion.cs:24:1034:24:1037 | this access |
+| UseUseExplosion.cs:24:1017:24:1020 | this access | UseUseExplosion.cs:24:2308:24:2313 | this access |
+| UseUseExplosion.cs:24:1034:24:1037 | [post] this access | UseUseExplosion.cs:24:1051:24:1054 | this access |
+| UseUseExplosion.cs:24:1034:24:1037 | [post] this access | UseUseExplosion.cs:24:2293:24:2298 | this access |
+| UseUseExplosion.cs:24:1034:24:1037 | access to property Prop | UseUseExplosion.cs:24:1051:24:1054 | access to property Prop |
+| UseUseExplosion.cs:24:1034:24:1037 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:1034:24:1037 | this access | UseUseExplosion.cs:24:1051:24:1054 | this access |
+| UseUseExplosion.cs:24:1034:24:1037 | this access | UseUseExplosion.cs:24:2293:24:2298 | this access |
+| UseUseExplosion.cs:24:1051:24:1054 | [post] this access | UseUseExplosion.cs:24:1068:24:1071 | this access |
+| UseUseExplosion.cs:24:1051:24:1054 | [post] this access | UseUseExplosion.cs:24:2278:24:2283 | this access |
+| UseUseExplosion.cs:24:1051:24:1054 | access to property Prop | UseUseExplosion.cs:24:1068:24:1071 | access to property Prop |
+| UseUseExplosion.cs:24:1051:24:1054 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:1051:24:1054 | this access | UseUseExplosion.cs:24:1068:24:1071 | this access |
+| UseUseExplosion.cs:24:1051:24:1054 | this access | UseUseExplosion.cs:24:2278:24:2283 | this access |
+| UseUseExplosion.cs:24:1068:24:1071 | [post] this access | UseUseExplosion.cs:24:1085:24:1088 | this access |
+| UseUseExplosion.cs:24:1068:24:1071 | [post] this access | UseUseExplosion.cs:24:2263:24:2268 | this access |
+| UseUseExplosion.cs:24:1068:24:1071 | access to property Prop | UseUseExplosion.cs:24:1085:24:1088 | access to property Prop |
+| UseUseExplosion.cs:24:1068:24:1071 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:1068:24:1071 | this access | UseUseExplosion.cs:24:1085:24:1088 | this access |
+| UseUseExplosion.cs:24:1068:24:1071 | this access | UseUseExplosion.cs:24:2263:24:2268 | this access |
+| UseUseExplosion.cs:24:1085:24:1088 | [post] this access | UseUseExplosion.cs:24:1102:24:1105 | this access |
+| UseUseExplosion.cs:24:1085:24:1088 | [post] this access | UseUseExplosion.cs:24:2248:24:2253 | this access |
+| UseUseExplosion.cs:24:1085:24:1088 | access to property Prop | UseUseExplosion.cs:24:1102:24:1105 | access to property Prop |
+| UseUseExplosion.cs:24:1085:24:1088 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:1085:24:1088 | this access | UseUseExplosion.cs:24:1102:24:1105 | this access |
+| UseUseExplosion.cs:24:1085:24:1088 | this access | UseUseExplosion.cs:24:2248:24:2253 | this access |
+| UseUseExplosion.cs:24:1102:24:1105 | [post] this access | UseUseExplosion.cs:24:1119:24:1122 | this access |
+| UseUseExplosion.cs:24:1102:24:1105 | [post] this access | UseUseExplosion.cs:24:2233:24:2238 | this access |
+| UseUseExplosion.cs:24:1102:24:1105 | access to property Prop | UseUseExplosion.cs:24:1119:24:1122 | access to property Prop |
+| UseUseExplosion.cs:24:1102:24:1105 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:1102:24:1105 | this access | UseUseExplosion.cs:24:1119:24:1122 | this access |
+| UseUseExplosion.cs:24:1102:24:1105 | this access | UseUseExplosion.cs:24:2233:24:2238 | this access |
+| UseUseExplosion.cs:24:1119:24:1122 | [post] this access | UseUseExplosion.cs:24:1136:24:1139 | this access |
+| UseUseExplosion.cs:24:1119:24:1122 | [post] this access | UseUseExplosion.cs:24:2218:24:2223 | this access |
+| UseUseExplosion.cs:24:1119:24:1122 | access to property Prop | UseUseExplosion.cs:24:1136:24:1139 | access to property Prop |
+| UseUseExplosion.cs:24:1119:24:1122 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:1119:24:1122 | this access | UseUseExplosion.cs:24:1136:24:1139 | this access |
+| UseUseExplosion.cs:24:1119:24:1122 | this access | UseUseExplosion.cs:24:2218:24:2223 | this access |
+| UseUseExplosion.cs:24:1136:24:1139 | [post] this access | UseUseExplosion.cs:24:1153:24:1156 | this access |
+| UseUseExplosion.cs:24:1136:24:1139 | [post] this access | UseUseExplosion.cs:24:2203:24:2208 | this access |
+| UseUseExplosion.cs:24:1136:24:1139 | access to property Prop | UseUseExplosion.cs:24:1153:24:1156 | access to property Prop |
+| UseUseExplosion.cs:24:1136:24:1139 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:1136:24:1139 | this access | UseUseExplosion.cs:24:1153:24:1156 | this access |
+| UseUseExplosion.cs:24:1136:24:1139 | this access | UseUseExplosion.cs:24:2203:24:2208 | this access |
+| UseUseExplosion.cs:24:1153:24:1156 | [post] this access | UseUseExplosion.cs:24:1170:24:1173 | this access |
+| UseUseExplosion.cs:24:1153:24:1156 | [post] this access | UseUseExplosion.cs:24:2188:24:2193 | this access |
+| UseUseExplosion.cs:24:1153:24:1156 | access to property Prop | UseUseExplosion.cs:24:1170:24:1173 | access to property Prop |
+| UseUseExplosion.cs:24:1153:24:1156 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:1153:24:1156 | this access | UseUseExplosion.cs:24:1170:24:1173 | this access |
+| UseUseExplosion.cs:24:1153:24:1156 | this access | UseUseExplosion.cs:24:2188:24:2193 | this access |
+| UseUseExplosion.cs:24:1170:24:1173 | [post] this access | UseUseExplosion.cs:24:1187:24:1190 | this access |
+| UseUseExplosion.cs:24:1170:24:1173 | [post] this access | UseUseExplosion.cs:24:2173:24:2178 | this access |
+| UseUseExplosion.cs:24:1170:24:1173 | access to property Prop | UseUseExplosion.cs:24:1187:24:1190 | access to property Prop |
+| UseUseExplosion.cs:24:1170:24:1173 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:1170:24:1173 | this access | UseUseExplosion.cs:24:1187:24:1190 | this access |
+| UseUseExplosion.cs:24:1170:24:1173 | this access | UseUseExplosion.cs:24:2173:24:2178 | this access |
+| UseUseExplosion.cs:24:1187:24:1190 | [post] this access | UseUseExplosion.cs:24:1204:24:1207 | this access |
+| UseUseExplosion.cs:24:1187:24:1190 | [post] this access | UseUseExplosion.cs:24:2158:24:2163 | this access |
+| UseUseExplosion.cs:24:1187:24:1190 | access to property Prop | UseUseExplosion.cs:24:1204:24:1207 | access to property Prop |
+| UseUseExplosion.cs:24:1187:24:1190 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:1187:24:1190 | this access | UseUseExplosion.cs:24:1204:24:1207 | this access |
+| UseUseExplosion.cs:24:1187:24:1190 | this access | UseUseExplosion.cs:24:2158:24:2163 | this access |
+| UseUseExplosion.cs:24:1204:24:1207 | [post] this access | UseUseExplosion.cs:24:1221:24:1224 | this access |
+| UseUseExplosion.cs:24:1204:24:1207 | [post] this access | UseUseExplosion.cs:24:2143:24:2148 | this access |
+| UseUseExplosion.cs:24:1204:24:1207 | access to property Prop | UseUseExplosion.cs:24:1221:24:1224 | access to property Prop |
+| UseUseExplosion.cs:24:1204:24:1207 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:1204:24:1207 | this access | UseUseExplosion.cs:24:1221:24:1224 | this access |
+| UseUseExplosion.cs:24:1204:24:1207 | this access | UseUseExplosion.cs:24:2143:24:2148 | this access |
+| UseUseExplosion.cs:24:1221:24:1224 | [post] this access | UseUseExplosion.cs:24:1238:24:1241 | this access |
+| UseUseExplosion.cs:24:1221:24:1224 | [post] this access | UseUseExplosion.cs:24:2128:24:2133 | this access |
+| UseUseExplosion.cs:24:1221:24:1224 | access to property Prop | UseUseExplosion.cs:24:1238:24:1241 | access to property Prop |
+| UseUseExplosion.cs:24:1221:24:1224 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:1221:24:1224 | this access | UseUseExplosion.cs:24:1238:24:1241 | this access |
+| UseUseExplosion.cs:24:1221:24:1224 | this access | UseUseExplosion.cs:24:2128:24:2133 | this access |
+| UseUseExplosion.cs:24:1238:24:1241 | [post] this access | UseUseExplosion.cs:24:1255:24:1258 | this access |
+| UseUseExplosion.cs:24:1238:24:1241 | [post] this access | UseUseExplosion.cs:24:2113:24:2118 | this access |
+| UseUseExplosion.cs:24:1238:24:1241 | access to property Prop | UseUseExplosion.cs:24:1255:24:1258 | access to property Prop |
+| UseUseExplosion.cs:24:1238:24:1241 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:1238:24:1241 | this access | UseUseExplosion.cs:24:1255:24:1258 | this access |
+| UseUseExplosion.cs:24:1238:24:1241 | this access | UseUseExplosion.cs:24:2113:24:2118 | this access |
+| UseUseExplosion.cs:24:1255:24:1258 | [post] this access | UseUseExplosion.cs:24:1272:24:1275 | this access |
+| UseUseExplosion.cs:24:1255:24:1258 | [post] this access | UseUseExplosion.cs:24:2098:24:2103 | this access |
+| UseUseExplosion.cs:24:1255:24:1258 | access to property Prop | UseUseExplosion.cs:24:1272:24:1275 | access to property Prop |
+| UseUseExplosion.cs:24:1255:24:1258 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:1255:24:1258 | this access | UseUseExplosion.cs:24:1272:24:1275 | this access |
+| UseUseExplosion.cs:24:1255:24:1258 | this access | UseUseExplosion.cs:24:2098:24:2103 | this access |
+| UseUseExplosion.cs:24:1272:24:1275 | [post] this access | UseUseExplosion.cs:24:1289:24:1292 | this access |
+| UseUseExplosion.cs:24:1272:24:1275 | [post] this access | UseUseExplosion.cs:24:2083:24:2088 | this access |
+| UseUseExplosion.cs:24:1272:24:1275 | access to property Prop | UseUseExplosion.cs:24:1289:24:1292 | access to property Prop |
+| UseUseExplosion.cs:24:1272:24:1275 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:1272:24:1275 | this access | UseUseExplosion.cs:24:1289:24:1292 | this access |
+| UseUseExplosion.cs:24:1272:24:1275 | this access | UseUseExplosion.cs:24:2083:24:2088 | this access |
+| UseUseExplosion.cs:24:1289:24:1292 | [post] this access | UseUseExplosion.cs:24:1306:24:1309 | this access |
+| UseUseExplosion.cs:24:1289:24:1292 | [post] this access | UseUseExplosion.cs:24:2068:24:2073 | this access |
+| UseUseExplosion.cs:24:1289:24:1292 | access to property Prop | UseUseExplosion.cs:24:1306:24:1309 | access to property Prop |
+| UseUseExplosion.cs:24:1289:24:1292 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:1289:24:1292 | this access | UseUseExplosion.cs:24:1306:24:1309 | this access |
+| UseUseExplosion.cs:24:1289:24:1292 | this access | UseUseExplosion.cs:24:2068:24:2073 | this access |
+| UseUseExplosion.cs:24:1306:24:1309 | [post] this access | UseUseExplosion.cs:24:1323:24:1326 | this access |
+| UseUseExplosion.cs:24:1306:24:1309 | [post] this access | UseUseExplosion.cs:24:2053:24:2058 | this access |
+| UseUseExplosion.cs:24:1306:24:1309 | access to property Prop | UseUseExplosion.cs:24:1323:24:1326 | access to property Prop |
+| UseUseExplosion.cs:24:1306:24:1309 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:1306:24:1309 | this access | UseUseExplosion.cs:24:1323:24:1326 | this access |
+| UseUseExplosion.cs:24:1306:24:1309 | this access | UseUseExplosion.cs:24:2053:24:2058 | this access |
+| UseUseExplosion.cs:24:1323:24:1326 | [post] this access | UseUseExplosion.cs:24:1340:24:1343 | this access |
+| UseUseExplosion.cs:24:1323:24:1326 | [post] this access | UseUseExplosion.cs:24:2038:24:2043 | this access |
+| UseUseExplosion.cs:24:1323:24:1326 | access to property Prop | UseUseExplosion.cs:24:1340:24:1343 | access to property Prop |
+| UseUseExplosion.cs:24:1323:24:1326 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:1323:24:1326 | this access | UseUseExplosion.cs:24:1340:24:1343 | this access |
+| UseUseExplosion.cs:24:1323:24:1326 | this access | UseUseExplosion.cs:24:2038:24:2043 | this access |
+| UseUseExplosion.cs:24:1340:24:1343 | [post] this access | UseUseExplosion.cs:24:1357:24:1360 | this access |
+| UseUseExplosion.cs:24:1340:24:1343 | [post] this access | UseUseExplosion.cs:24:2023:24:2028 | this access |
+| UseUseExplosion.cs:24:1340:24:1343 | access to property Prop | UseUseExplosion.cs:24:1357:24:1360 | access to property Prop |
+| UseUseExplosion.cs:24:1340:24:1343 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:1340:24:1343 | this access | UseUseExplosion.cs:24:1357:24:1360 | this access |
+| UseUseExplosion.cs:24:1340:24:1343 | this access | UseUseExplosion.cs:24:2023:24:2028 | this access |
+| UseUseExplosion.cs:24:1357:24:1360 | [post] this access | UseUseExplosion.cs:24:1374:24:1377 | this access |
+| UseUseExplosion.cs:24:1357:24:1360 | [post] this access | UseUseExplosion.cs:24:2008:24:2013 | this access |
+| UseUseExplosion.cs:24:1357:24:1360 | access to property Prop | UseUseExplosion.cs:24:1374:24:1377 | access to property Prop |
+| UseUseExplosion.cs:24:1357:24:1360 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:1357:24:1360 | this access | UseUseExplosion.cs:24:1374:24:1377 | this access |
+| UseUseExplosion.cs:24:1357:24:1360 | this access | UseUseExplosion.cs:24:2008:24:2013 | this access |
+| UseUseExplosion.cs:24:1374:24:1377 | [post] this access | UseUseExplosion.cs:24:1391:24:1394 | this access |
+| UseUseExplosion.cs:24:1374:24:1377 | [post] this access | UseUseExplosion.cs:24:1993:24:1998 | this access |
+| UseUseExplosion.cs:24:1374:24:1377 | access to property Prop | UseUseExplosion.cs:24:1391:24:1394 | access to property Prop |
+| UseUseExplosion.cs:24:1374:24:1377 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:1374:24:1377 | this access | UseUseExplosion.cs:24:1391:24:1394 | this access |
+| UseUseExplosion.cs:24:1374:24:1377 | this access | UseUseExplosion.cs:24:1993:24:1998 | this access |
+| UseUseExplosion.cs:24:1391:24:1394 | [post] this access | UseUseExplosion.cs:24:1408:24:1411 | this access |
+| UseUseExplosion.cs:24:1391:24:1394 | [post] this access | UseUseExplosion.cs:24:1978:24:1983 | this access |
+| UseUseExplosion.cs:24:1391:24:1394 | access to property Prop | UseUseExplosion.cs:24:1408:24:1411 | access to property Prop |
+| UseUseExplosion.cs:24:1391:24:1394 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:1391:24:1394 | this access | UseUseExplosion.cs:24:1408:24:1411 | this access |
+| UseUseExplosion.cs:24:1391:24:1394 | this access | UseUseExplosion.cs:24:1978:24:1983 | this access |
+| UseUseExplosion.cs:24:1408:24:1411 | [post] this access | UseUseExplosion.cs:24:1425:24:1428 | this access |
+| UseUseExplosion.cs:24:1408:24:1411 | [post] this access | UseUseExplosion.cs:24:1963:24:1968 | this access |
+| UseUseExplosion.cs:24:1408:24:1411 | access to property Prop | UseUseExplosion.cs:24:1425:24:1428 | access to property Prop |
+| UseUseExplosion.cs:24:1408:24:1411 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:1408:24:1411 | this access | UseUseExplosion.cs:24:1425:24:1428 | this access |
+| UseUseExplosion.cs:24:1408:24:1411 | this access | UseUseExplosion.cs:24:1963:24:1968 | this access |
+| UseUseExplosion.cs:24:1425:24:1428 | [post] this access | UseUseExplosion.cs:24:1442:24:1445 | this access |
+| UseUseExplosion.cs:24:1425:24:1428 | [post] this access | UseUseExplosion.cs:24:1948:24:1953 | this access |
+| UseUseExplosion.cs:24:1425:24:1428 | access to property Prop | UseUseExplosion.cs:24:1442:24:1445 | access to property Prop |
+| UseUseExplosion.cs:24:1425:24:1428 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:1425:24:1428 | this access | UseUseExplosion.cs:24:1442:24:1445 | this access |
+| UseUseExplosion.cs:24:1425:24:1428 | this access | UseUseExplosion.cs:24:1948:24:1953 | this access |
+| UseUseExplosion.cs:24:1442:24:1445 | [post] this access | UseUseExplosion.cs:24:1459:24:1462 | this access |
+| UseUseExplosion.cs:24:1442:24:1445 | [post] this access | UseUseExplosion.cs:24:1933:24:1938 | this access |
+| UseUseExplosion.cs:24:1442:24:1445 | access to property Prop | UseUseExplosion.cs:24:1459:24:1462 | access to property Prop |
+| UseUseExplosion.cs:24:1442:24:1445 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:1442:24:1445 | this access | UseUseExplosion.cs:24:1459:24:1462 | this access |
+| UseUseExplosion.cs:24:1442:24:1445 | this access | UseUseExplosion.cs:24:1933:24:1938 | this access |
+| UseUseExplosion.cs:24:1459:24:1462 | [post] this access | UseUseExplosion.cs:24:1476:24:1479 | this access |
+| UseUseExplosion.cs:24:1459:24:1462 | [post] this access | UseUseExplosion.cs:24:1918:24:1923 | this access |
+| UseUseExplosion.cs:24:1459:24:1462 | access to property Prop | UseUseExplosion.cs:24:1476:24:1479 | access to property Prop |
+| UseUseExplosion.cs:24:1459:24:1462 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:1459:24:1462 | this access | UseUseExplosion.cs:24:1476:24:1479 | this access |
+| UseUseExplosion.cs:24:1459:24:1462 | this access | UseUseExplosion.cs:24:1918:24:1923 | this access |
+| UseUseExplosion.cs:24:1476:24:1479 | [post] this access | UseUseExplosion.cs:24:1493:24:1496 | this access |
+| UseUseExplosion.cs:24:1476:24:1479 | [post] this access | UseUseExplosion.cs:24:1903:24:1908 | this access |
+| UseUseExplosion.cs:24:1476:24:1479 | access to property Prop | UseUseExplosion.cs:24:1493:24:1496 | access to property Prop |
+| UseUseExplosion.cs:24:1476:24:1479 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:1476:24:1479 | this access | UseUseExplosion.cs:24:1493:24:1496 | this access |
+| UseUseExplosion.cs:24:1476:24:1479 | this access | UseUseExplosion.cs:24:1903:24:1908 | this access |
+| UseUseExplosion.cs:24:1493:24:1496 | [post] this access | UseUseExplosion.cs:24:1510:24:1513 | this access |
+| UseUseExplosion.cs:24:1493:24:1496 | [post] this access | UseUseExplosion.cs:24:1888:24:1893 | this access |
+| UseUseExplosion.cs:24:1493:24:1496 | access to property Prop | UseUseExplosion.cs:24:1510:24:1513 | access to property Prop |
+| UseUseExplosion.cs:24:1493:24:1496 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:1493:24:1496 | this access | UseUseExplosion.cs:24:1510:24:1513 | this access |
+| UseUseExplosion.cs:24:1493:24:1496 | this access | UseUseExplosion.cs:24:1888:24:1893 | this access |
+| UseUseExplosion.cs:24:1510:24:1513 | [post] this access | UseUseExplosion.cs:24:1527:24:1530 | this access |
+| UseUseExplosion.cs:24:1510:24:1513 | [post] this access | UseUseExplosion.cs:24:1873:24:1878 | this access |
+| UseUseExplosion.cs:24:1510:24:1513 | access to property Prop | UseUseExplosion.cs:24:1527:24:1530 | access to property Prop |
+| UseUseExplosion.cs:24:1510:24:1513 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:1510:24:1513 | this access | UseUseExplosion.cs:24:1527:24:1530 | this access |
+| UseUseExplosion.cs:24:1510:24:1513 | this access | UseUseExplosion.cs:24:1873:24:1878 | this access |
+| UseUseExplosion.cs:24:1527:24:1530 | [post] this access | UseUseExplosion.cs:24:1544:24:1547 | this access |
+| UseUseExplosion.cs:24:1527:24:1530 | [post] this access | UseUseExplosion.cs:24:1858:24:1863 | this access |
+| UseUseExplosion.cs:24:1527:24:1530 | access to property Prop | UseUseExplosion.cs:24:1544:24:1547 | access to property Prop |
+| UseUseExplosion.cs:24:1527:24:1530 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:1527:24:1530 | this access | UseUseExplosion.cs:24:1544:24:1547 | this access |
+| UseUseExplosion.cs:24:1527:24:1530 | this access | UseUseExplosion.cs:24:1858:24:1863 | this access |
+| UseUseExplosion.cs:24:1544:24:1547 | [post] this access | UseUseExplosion.cs:24:1561:24:1564 | this access |
+| UseUseExplosion.cs:24:1544:24:1547 | [post] this access | UseUseExplosion.cs:24:1843:24:1848 | this access |
+| UseUseExplosion.cs:24:1544:24:1547 | access to property Prop | UseUseExplosion.cs:24:1561:24:1564 | access to property Prop |
+| UseUseExplosion.cs:24:1544:24:1547 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:1544:24:1547 | this access | UseUseExplosion.cs:24:1561:24:1564 | this access |
+| UseUseExplosion.cs:24:1544:24:1547 | this access | UseUseExplosion.cs:24:1843:24:1848 | this access |
+| UseUseExplosion.cs:24:1561:24:1564 | [post] this access | UseUseExplosion.cs:24:1577:24:1580 | this access |
+| UseUseExplosion.cs:24:1561:24:1564 | [post] this access | UseUseExplosion.cs:24:1828:24:1833 | this access |
+| UseUseExplosion.cs:24:1561:24:1564 | access to property Prop | UseUseExplosion.cs:24:1577:24:1580 | access to property Prop |
+| UseUseExplosion.cs:24:1561:24:1564 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:1561:24:1564 | this access | UseUseExplosion.cs:24:1577:24:1580 | this access |
+| UseUseExplosion.cs:24:1561:24:1564 | this access | UseUseExplosion.cs:24:1828:24:1833 | this access |
+| UseUseExplosion.cs:24:1577:24:1580 | [post] this access | UseUseExplosion.cs:24:1593:24:1596 | this access |
+| UseUseExplosion.cs:24:1577:24:1580 | [post] this access | UseUseExplosion.cs:24:1813:24:1818 | this access |
+| UseUseExplosion.cs:24:1577:24:1580 | access to property Prop | UseUseExplosion.cs:24:1593:24:1596 | access to property Prop |
+| UseUseExplosion.cs:24:1577:24:1580 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:1577:24:1580 | this access | UseUseExplosion.cs:24:1593:24:1596 | this access |
+| UseUseExplosion.cs:24:1577:24:1580 | this access | UseUseExplosion.cs:24:1813:24:1818 | this access |
+| UseUseExplosion.cs:24:1593:24:1596 | [post] this access | UseUseExplosion.cs:24:1609:24:1612 | this access |
+| UseUseExplosion.cs:24:1593:24:1596 | [post] this access | UseUseExplosion.cs:24:1798:24:1803 | this access |
+| UseUseExplosion.cs:24:1593:24:1596 | access to property Prop | UseUseExplosion.cs:24:1609:24:1612 | access to property Prop |
+| UseUseExplosion.cs:24:1593:24:1596 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:1593:24:1596 | this access | UseUseExplosion.cs:24:1609:24:1612 | this access |
+| UseUseExplosion.cs:24:1593:24:1596 | this access | UseUseExplosion.cs:24:1798:24:1803 | this access |
+| UseUseExplosion.cs:24:1609:24:1612 | [post] this access | UseUseExplosion.cs:24:1625:24:1628 | this access |
+| UseUseExplosion.cs:24:1609:24:1612 | [post] this access | UseUseExplosion.cs:24:1783:24:1788 | this access |
+| UseUseExplosion.cs:24:1609:24:1612 | access to property Prop | UseUseExplosion.cs:24:1625:24:1628 | access to property Prop |
+| UseUseExplosion.cs:24:1609:24:1612 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:1609:24:1612 | this access | UseUseExplosion.cs:24:1625:24:1628 | this access |
+| UseUseExplosion.cs:24:1609:24:1612 | this access | UseUseExplosion.cs:24:1783:24:1788 | this access |
+| UseUseExplosion.cs:24:1625:24:1628 | [post] this access | UseUseExplosion.cs:24:1641:24:1644 | this access |
+| UseUseExplosion.cs:24:1625:24:1628 | [post] this access | UseUseExplosion.cs:24:1768:24:1773 | this access |
+| UseUseExplosion.cs:24:1625:24:1628 | access to property Prop | UseUseExplosion.cs:24:1641:24:1644 | access to property Prop |
+| UseUseExplosion.cs:24:1625:24:1628 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:1625:24:1628 | this access | UseUseExplosion.cs:24:1641:24:1644 | this access |
+| UseUseExplosion.cs:24:1625:24:1628 | this access | UseUseExplosion.cs:24:1768:24:1773 | this access |
+| UseUseExplosion.cs:24:1641:24:1644 | [post] this access | UseUseExplosion.cs:24:1657:24:1660 | this access |
+| UseUseExplosion.cs:24:1641:24:1644 | [post] this access | UseUseExplosion.cs:24:1753:24:1758 | this access |
+| UseUseExplosion.cs:24:1641:24:1644 | access to property Prop | UseUseExplosion.cs:24:1657:24:1660 | access to property Prop |
+| UseUseExplosion.cs:24:1641:24:1644 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:1641:24:1644 | this access | UseUseExplosion.cs:24:1657:24:1660 | this access |
+| UseUseExplosion.cs:24:1641:24:1644 | this access | UseUseExplosion.cs:24:1753:24:1758 | this access |
+| UseUseExplosion.cs:24:1657:24:1660 | [post] this access | UseUseExplosion.cs:24:1673:24:1676 | this access |
+| UseUseExplosion.cs:24:1657:24:1660 | [post] this access | UseUseExplosion.cs:24:1738:24:1743 | this access |
+| UseUseExplosion.cs:24:1657:24:1660 | access to property Prop | UseUseExplosion.cs:24:1673:24:1676 | access to property Prop |
+| UseUseExplosion.cs:24:1657:24:1660 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:1657:24:1660 | this access | UseUseExplosion.cs:24:1673:24:1676 | this access |
+| UseUseExplosion.cs:24:1657:24:1660 | this access | UseUseExplosion.cs:24:1738:24:1743 | this access |
+| UseUseExplosion.cs:24:1673:24:1676 | [post] this access | UseUseExplosion.cs:24:1689:24:1692 | this access |
+| UseUseExplosion.cs:24:1673:24:1676 | [post] this access | UseUseExplosion.cs:24:1723:24:1728 | this access |
+| UseUseExplosion.cs:24:1673:24:1676 | access to property Prop | UseUseExplosion.cs:24:1689:24:1692 | access to property Prop |
+| UseUseExplosion.cs:24:1673:24:1676 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:1673:24:1676 | this access | UseUseExplosion.cs:24:1689:24:1692 | this access |
+| UseUseExplosion.cs:24:1673:24:1676 | this access | UseUseExplosion.cs:24:1723:24:1728 | this access |
+| UseUseExplosion.cs:24:1689:24:1692 | [post] this access | UseUseExplosion.cs:24:1708:24:1713 | this access |
+| UseUseExplosion.cs:24:1689:24:1692 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:1689:24:1692 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:1689:24:1692 | this access | UseUseExplosion.cs:24:1708:24:1713 | this access |
+| UseUseExplosion.cs:24:1689:24:1692 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:1708:24:1713 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:1708:24:1713 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:1712:24:1712 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:1723:24:1728 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:1723:24:1728 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:1727:24:1727 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:1738:24:1743 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:1738:24:1743 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:1742:24:1742 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:1753:24:1758 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:1753:24:1758 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:1757:24:1757 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:1768:24:1773 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:1768:24:1773 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:1772:24:1772 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:1783:24:1788 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:1783:24:1788 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:1787:24:1787 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:1798:24:1803 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:1798:24:1803 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:1802:24:1802 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:1813:24:1818 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:1813:24:1818 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:1817:24:1817 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:1828:24:1833 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:1828:24:1833 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:1832:24:1832 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:1843:24:1848 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:1843:24:1848 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:1847:24:1847 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:1858:24:1863 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:1858:24:1863 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:1862:24:1862 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:1873:24:1878 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:1873:24:1878 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:1877:24:1877 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:1888:24:1893 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:1888:24:1893 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:1892:24:1892 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:1903:24:1908 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:1903:24:1908 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:1907:24:1907 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:1918:24:1923 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:1918:24:1923 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:1922:24:1922 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:1933:24:1938 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:1933:24:1938 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:1937:24:1937 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:1948:24:1953 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:1948:24:1953 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:1952:24:1952 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:1963:24:1968 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:1963:24:1968 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:1967:24:1967 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:1978:24:1983 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:1978:24:1983 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:1982:24:1982 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:1993:24:1998 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:1993:24:1998 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:1997:24:1997 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:2008:24:2013 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2008:24:2013 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2012:24:2012 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:2023:24:2028 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2023:24:2028 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2027:24:2027 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:2038:24:2043 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2038:24:2043 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2042:24:2042 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:2053:24:2058 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2053:24:2058 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2057:24:2057 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:2068:24:2073 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2068:24:2073 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2072:24:2072 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:2083:24:2088 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2083:24:2088 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2087:24:2087 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:2098:24:2103 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2098:24:2103 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2102:24:2102 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:2113:24:2118 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2113:24:2118 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2117:24:2117 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:2128:24:2133 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2128:24:2133 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2132:24:2132 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:2143:24:2148 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2143:24:2148 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2147:24:2147 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:2158:24:2163 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2158:24:2163 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2162:24:2162 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:2173:24:2178 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2173:24:2178 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2177:24:2177 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:2188:24:2193 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2188:24:2193 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2192:24:2192 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:2203:24:2208 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2203:24:2208 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2207:24:2207 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:2218:24:2223 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2218:24:2223 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2222:24:2222 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:2233:24:2238 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2233:24:2238 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2237:24:2237 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:2248:24:2253 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2248:24:2253 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2252:24:2252 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:2263:24:2268 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2263:24:2268 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2267:24:2267 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:2278:24:2283 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2278:24:2283 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2282:24:2282 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:2293:24:2298 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2293:24:2298 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2297:24:2297 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:2308:24:2313 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2308:24:2313 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2312:24:2312 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:2323:24:2328 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2323:24:2328 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2327:24:2327 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:2338:24:2343 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2338:24:2343 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2342:24:2342 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:2353:24:2358 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2353:24:2358 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2357:24:2357 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:2368:24:2373 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2368:24:2373 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2372:24:2372 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:2383:24:2388 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2383:24:2388 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2387:24:2387 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:2398:24:2403 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2398:24:2403 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2402:24:2402 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:2413:24:2418 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2413:24:2418 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2417:24:2417 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:2428:24:2433 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2428:24:2433 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2432:24:2432 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:2443:24:2448 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2443:24:2448 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2447:24:2447 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:2458:24:2463 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2458:24:2463 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2462:24:2462 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:2473:24:2478 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2473:24:2478 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2477:24:2477 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:2488:24:2493 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2488:24:2493 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2492:24:2492 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:2503:24:2508 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2503:24:2508 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2507:24:2507 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:2518:24:2523 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2518:24:2523 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2522:24:2522 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:2533:24:2538 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2533:24:2538 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2537:24:2537 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:2548:24:2553 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2548:24:2553 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2552:24:2552 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:2563:24:2568 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2563:24:2568 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2567:24:2567 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:2578:24:2583 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2578:24:2583 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2582:24:2582 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:2593:24:2598 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2593:24:2598 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2597:24:2597 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:2608:24:2613 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2608:24:2613 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2612:24:2612 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:2623:24:2628 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2623:24:2628 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2627:24:2627 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:2638:24:2643 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2638:24:2643 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2642:24:2642 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:2653:24:2658 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2653:24:2658 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2657:24:2657 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:2668:24:2673 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2668:24:2673 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2672:24:2672 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:2683:24:2688 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2683:24:2688 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2687:24:2687 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:2698:24:2703 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2698:24:2703 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2702:24:2702 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:2713:24:2718 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2713:24:2718 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2717:24:2717 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:2728:24:2733 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2728:24:2733 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2732:24:2732 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:2743:24:2748 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2743:24:2748 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2747:24:2747 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:2758:24:2763 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2758:24:2763 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2762:24:2762 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:2773:24:2778 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2773:24:2778 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2777:24:2777 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:2788:24:2793 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2788:24:2793 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2792:24:2792 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:2803:24:2808 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2803:24:2808 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2807:24:2807 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:2818:24:2823 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2818:24:2823 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2822:24:2822 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:2833:24:2838 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2833:24:2838 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2837:24:2837 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:2848:24:2853 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2848:24:2853 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2852:24:2852 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:2863:24:2868 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2863:24:2868 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2867:24:2867 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:2878:24:2883 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2878:24:2883 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2882:24:2882 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:2893:24:2898 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2893:24:2898 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2897:24:2897 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:2908:24:2913 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2908:24:2913 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2912:24:2912 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:2923:24:2928 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2923:24:2928 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2927:24:2927 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:2938:24:2943 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2938:24:2943 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2942:24:2942 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:2953:24:2958 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2953:24:2958 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2957:24:2957 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:2968:24:2973 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2968:24:2973 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2972:24:2972 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:2983:24:2988 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2983:24:2988 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2987:24:2987 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:2998:24:3003 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2998:24:3003 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:3002:24:3002 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:3013:24:3018 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:3013:24:3018 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:3017:24:3017 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:3028:24:3033 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:3028:24:3033 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:3032:24:3032 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:3043:24:3048 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:3043:24:3048 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:3047:24:3047 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:3058:24:3063 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:3058:24:3063 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:3062:24:3062 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:3073:24:3078 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:3073:24:3078 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:3077:24:3077 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:3088:24:3093 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:3088:24:3093 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:3092:24:3092 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:3103:24:3108 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:3103:24:3108 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:3107:24:3107 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:3118:24:3123 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:3118:24:3123 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:3122:24:3122 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:3133:24:3138 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:3133:24:3138 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:3137:24:3137 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:3148:24:3153 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:3148:24:3153 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:3152:24:3152 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:3163:24:3168 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:3163:24:3168 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:3167:24:3167 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:3178:24:3183 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:3178:24:3183 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:3182:24:3182 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:3193:24:3198 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:3193:24:3198 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:3197:24:3197 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) | UseUseExplosion.cs:25:13:25:16 | access to property Prop |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:1712:25:1712 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:1727:25:1727 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:1742:25:1742 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:1757:25:1757 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:1772:25:1772 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:1787:25:1787 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:1802:25:1802 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:1817:25:1817 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:1832:25:1832 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:1847:25:1847 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:1862:25:1862 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:1877:25:1877 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:1892:25:1892 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:1907:25:1907 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:1922:25:1922 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:1937:25:1937 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:1952:25:1952 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:1967:25:1967 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:1982:25:1982 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:1997:25:1997 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:2012:25:2012 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:2027:25:2027 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:2042:25:2042 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:2057:25:2057 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:2072:25:2072 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:2087:25:2087 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:2102:25:2102 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:2117:25:2117 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:2132:25:2132 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:2147:25:2147 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:2162:25:2162 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:2177:25:2177 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:2192:25:2192 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:2207:25:2207 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:2222:25:2222 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:2237:25:2237 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:2252:25:2252 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:2267:25:2267 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:2282:25:2282 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:2297:25:2297 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:2312:25:2312 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:2327:25:2327 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:2342:25:2342 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:2357:25:2357 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:2372:25:2372 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:2387:25:2387 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:2402:25:2402 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:2417:25:2417 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:2432:25:2432 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:2447:25:2447 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:2462:25:2462 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:2477:25:2477 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:2492:25:2492 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:2507:25:2507 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:2522:25:2522 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:2537:25:2537 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:2552:25:2552 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:2567:25:2567 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:2582:25:2582 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:2597:25:2597 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:2612:25:2612 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:2627:25:2627 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:2642:25:2642 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:2657:25:2657 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:2672:25:2672 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:2687:25:2687 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:2702:25:2702 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:2717:25:2717 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:2732:25:2732 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:2747:25:2747 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:2762:25:2762 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:2777:25:2777 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:2792:25:2792 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:2807:25:2807 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:2822:25:2822 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:2837:25:2837 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:2852:25:2852 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:2867:25:2867 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:2882:25:2882 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:2897:25:2897 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:2912:25:2912 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:2927:25:2927 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:2942:25:2942 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:2957:25:2957 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:2972:25:2972 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:2987:25:2987 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:3002:25:3002 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:3017:25:3017 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:3032:25:3032 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:3047:25:3047 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:3062:25:3062 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:3077:25:3077 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:3092:25:3092 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:3107:25:3107 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:3122:25:3122 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:3137:25:3137 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:3152:25:3152 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:3167:25:3167 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:3182:25:3182 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:3197:25:3197 | access to local variable x |
+| UseUseExplosion.cs:25:13:25:16 | [post] this access | UseUseExplosion.cs:25:31:25:34 | this access |
+| UseUseExplosion.cs:25:13:25:16 | [post] this access | UseUseExplosion.cs:25:3193:25:3198 | this access |
+| UseUseExplosion.cs:25:13:25:16 | access to property Prop | UseUseExplosion.cs:25:31:25:34 | access to property Prop |
+| UseUseExplosion.cs:25:13:25:16 | this access | UseUseExplosion.cs:25:31:25:34 | this access |
+| UseUseExplosion.cs:25:13:25:16 | this access | UseUseExplosion.cs:25:3193:25:3198 | this access |
+| UseUseExplosion.cs:25:31:25:34 | [post] this access | UseUseExplosion.cs:25:48:25:51 | this access |
+| UseUseExplosion.cs:25:31:25:34 | [post] this access | UseUseExplosion.cs:25:3178:25:3183 | this access |
+| UseUseExplosion.cs:25:31:25:34 | access to property Prop | UseUseExplosion.cs:25:48:25:51 | access to property Prop |
+| UseUseExplosion.cs:25:31:25:34 | this access | UseUseExplosion.cs:25:48:25:51 | this access |
+| UseUseExplosion.cs:25:31:25:34 | this access | UseUseExplosion.cs:25:3178:25:3183 | this access |
+| UseUseExplosion.cs:25:48:25:51 | [post] this access | UseUseExplosion.cs:25:65:25:68 | this access |
+| UseUseExplosion.cs:25:48:25:51 | [post] this access | UseUseExplosion.cs:25:3163:25:3168 | this access |
+| UseUseExplosion.cs:25:48:25:51 | access to property Prop | UseUseExplosion.cs:25:65:25:68 | access to property Prop |
+| UseUseExplosion.cs:25:48:25:51 | this access | UseUseExplosion.cs:25:65:25:68 | this access |
+| UseUseExplosion.cs:25:48:25:51 | this access | UseUseExplosion.cs:25:3163:25:3168 | this access |
+| UseUseExplosion.cs:25:65:25:68 | [post] this access | UseUseExplosion.cs:25:82:25:85 | this access |
+| UseUseExplosion.cs:25:65:25:68 | [post] this access | UseUseExplosion.cs:25:3148:25:3153 | this access |
+| UseUseExplosion.cs:25:65:25:68 | access to property Prop | UseUseExplosion.cs:25:82:25:85 | access to property Prop |
+| UseUseExplosion.cs:25:65:25:68 | this access | UseUseExplosion.cs:25:82:25:85 | this access |
+| UseUseExplosion.cs:25:65:25:68 | this access | UseUseExplosion.cs:25:3148:25:3153 | this access |
+| UseUseExplosion.cs:25:82:25:85 | [post] this access | UseUseExplosion.cs:25:99:25:102 | this access |
+| UseUseExplosion.cs:25:82:25:85 | [post] this access | UseUseExplosion.cs:25:3133:25:3138 | this access |
+| UseUseExplosion.cs:25:82:25:85 | access to property Prop | UseUseExplosion.cs:25:99:25:102 | access to property Prop |
+| UseUseExplosion.cs:25:82:25:85 | this access | UseUseExplosion.cs:25:99:25:102 | this access |
+| UseUseExplosion.cs:25:82:25:85 | this access | UseUseExplosion.cs:25:3133:25:3138 | this access |
+| UseUseExplosion.cs:25:99:25:102 | [post] this access | UseUseExplosion.cs:25:116:25:119 | this access |
+| UseUseExplosion.cs:25:99:25:102 | [post] this access | UseUseExplosion.cs:25:3118:25:3123 | this access |
+| UseUseExplosion.cs:25:99:25:102 | access to property Prop | UseUseExplosion.cs:25:116:25:119 | access to property Prop |
+| UseUseExplosion.cs:25:99:25:102 | this access | UseUseExplosion.cs:25:116:25:119 | this access |
+| UseUseExplosion.cs:25:99:25:102 | this access | UseUseExplosion.cs:25:3118:25:3123 | this access |
+| UseUseExplosion.cs:25:116:25:119 | [post] this access | UseUseExplosion.cs:25:133:25:136 | this access |
+| UseUseExplosion.cs:25:116:25:119 | [post] this access | UseUseExplosion.cs:25:3103:25:3108 | this access |
+| UseUseExplosion.cs:25:116:25:119 | access to property Prop | UseUseExplosion.cs:25:133:25:136 | access to property Prop |
+| UseUseExplosion.cs:25:116:25:119 | this access | UseUseExplosion.cs:25:133:25:136 | this access |
+| UseUseExplosion.cs:25:116:25:119 | this access | UseUseExplosion.cs:25:3103:25:3108 | this access |
+| UseUseExplosion.cs:25:133:25:136 | [post] this access | UseUseExplosion.cs:25:150:25:153 | this access |
+| UseUseExplosion.cs:25:133:25:136 | [post] this access | UseUseExplosion.cs:25:3088:25:3093 | this access |
+| UseUseExplosion.cs:25:133:25:136 | access to property Prop | UseUseExplosion.cs:25:150:25:153 | access to property Prop |
+| UseUseExplosion.cs:25:133:25:136 | this access | UseUseExplosion.cs:25:150:25:153 | this access |
+| UseUseExplosion.cs:25:133:25:136 | this access | UseUseExplosion.cs:25:3088:25:3093 | this access |
+| UseUseExplosion.cs:25:150:25:153 | [post] this access | UseUseExplosion.cs:25:167:25:170 | this access |
+| UseUseExplosion.cs:25:150:25:153 | [post] this access | UseUseExplosion.cs:25:3073:25:3078 | this access |
+| UseUseExplosion.cs:25:150:25:153 | access to property Prop | UseUseExplosion.cs:25:167:25:170 | access to property Prop |
+| UseUseExplosion.cs:25:150:25:153 | this access | UseUseExplosion.cs:25:167:25:170 | this access |
+| UseUseExplosion.cs:25:150:25:153 | this access | UseUseExplosion.cs:25:3073:25:3078 | this access |
+| UseUseExplosion.cs:25:167:25:170 | [post] this access | UseUseExplosion.cs:25:184:25:187 | this access |
+| UseUseExplosion.cs:25:167:25:170 | [post] this access | UseUseExplosion.cs:25:3058:25:3063 | this access |
+| UseUseExplosion.cs:25:167:25:170 | access to property Prop | UseUseExplosion.cs:25:184:25:187 | access to property Prop |
+| UseUseExplosion.cs:25:167:25:170 | this access | UseUseExplosion.cs:25:184:25:187 | this access |
+| UseUseExplosion.cs:25:167:25:170 | this access | UseUseExplosion.cs:25:3058:25:3063 | this access |
+| UseUseExplosion.cs:25:184:25:187 | [post] this access | UseUseExplosion.cs:25:201:25:204 | this access |
+| UseUseExplosion.cs:25:184:25:187 | [post] this access | UseUseExplosion.cs:25:3043:25:3048 | this access |
+| UseUseExplosion.cs:25:184:25:187 | access to property Prop | UseUseExplosion.cs:25:201:25:204 | access to property Prop |
+| UseUseExplosion.cs:25:184:25:187 | this access | UseUseExplosion.cs:25:201:25:204 | this access |
+| UseUseExplosion.cs:25:184:25:187 | this access | UseUseExplosion.cs:25:3043:25:3048 | this access |
+| UseUseExplosion.cs:25:201:25:204 | [post] this access | UseUseExplosion.cs:25:218:25:221 | this access |
+| UseUseExplosion.cs:25:201:25:204 | [post] this access | UseUseExplosion.cs:25:3028:25:3033 | this access |
+| UseUseExplosion.cs:25:201:25:204 | access to property Prop | UseUseExplosion.cs:25:218:25:221 | access to property Prop |
+| UseUseExplosion.cs:25:201:25:204 | this access | UseUseExplosion.cs:25:218:25:221 | this access |
+| UseUseExplosion.cs:25:201:25:204 | this access | UseUseExplosion.cs:25:3028:25:3033 | this access |
+| UseUseExplosion.cs:25:218:25:221 | [post] this access | UseUseExplosion.cs:25:235:25:238 | this access |
+| UseUseExplosion.cs:25:218:25:221 | [post] this access | UseUseExplosion.cs:25:3013:25:3018 | this access |
+| UseUseExplosion.cs:25:218:25:221 | access to property Prop | UseUseExplosion.cs:25:235:25:238 | access to property Prop |
+| UseUseExplosion.cs:25:218:25:221 | this access | UseUseExplosion.cs:25:235:25:238 | this access |
+| UseUseExplosion.cs:25:218:25:221 | this access | UseUseExplosion.cs:25:3013:25:3018 | this access |
+| UseUseExplosion.cs:25:235:25:238 | [post] this access | UseUseExplosion.cs:25:252:25:255 | this access |
+| UseUseExplosion.cs:25:235:25:238 | [post] this access | UseUseExplosion.cs:25:2998:25:3003 | this access |
+| UseUseExplosion.cs:25:235:25:238 | access to property Prop | UseUseExplosion.cs:25:252:25:255 | access to property Prop |
+| UseUseExplosion.cs:25:235:25:238 | this access | UseUseExplosion.cs:25:252:25:255 | this access |
+| UseUseExplosion.cs:25:235:25:238 | this access | UseUseExplosion.cs:25:2998:25:3003 | this access |
+| UseUseExplosion.cs:25:252:25:255 | [post] this access | UseUseExplosion.cs:25:269:25:272 | this access |
+| UseUseExplosion.cs:25:252:25:255 | [post] this access | UseUseExplosion.cs:25:2983:25:2988 | this access |
+| UseUseExplosion.cs:25:252:25:255 | access to property Prop | UseUseExplosion.cs:25:269:25:272 | access to property Prop |
+| UseUseExplosion.cs:25:252:25:255 | this access | UseUseExplosion.cs:25:269:25:272 | this access |
+| UseUseExplosion.cs:25:252:25:255 | this access | UseUseExplosion.cs:25:2983:25:2988 | this access |
+| UseUseExplosion.cs:25:269:25:272 | [post] this access | UseUseExplosion.cs:25:286:25:289 | this access |
+| UseUseExplosion.cs:25:269:25:272 | [post] this access | UseUseExplosion.cs:25:2968:25:2973 | this access |
+| UseUseExplosion.cs:25:269:25:272 | access to property Prop | UseUseExplosion.cs:25:286:25:289 | access to property Prop |
+| UseUseExplosion.cs:25:269:25:272 | this access | UseUseExplosion.cs:25:286:25:289 | this access |
+| UseUseExplosion.cs:25:269:25:272 | this access | UseUseExplosion.cs:25:2968:25:2973 | this access |
+| UseUseExplosion.cs:25:286:25:289 | [post] this access | UseUseExplosion.cs:25:303:25:306 | this access |
+| UseUseExplosion.cs:25:286:25:289 | [post] this access | UseUseExplosion.cs:25:2953:25:2958 | this access |
+| UseUseExplosion.cs:25:286:25:289 | access to property Prop | UseUseExplosion.cs:25:303:25:306 | access to property Prop |
+| UseUseExplosion.cs:25:286:25:289 | this access | UseUseExplosion.cs:25:303:25:306 | this access |
+| UseUseExplosion.cs:25:286:25:289 | this access | UseUseExplosion.cs:25:2953:25:2958 | this access |
+| UseUseExplosion.cs:25:303:25:306 | [post] this access | UseUseExplosion.cs:25:320:25:323 | this access |
+| UseUseExplosion.cs:25:303:25:306 | [post] this access | UseUseExplosion.cs:25:2938:25:2943 | this access |
+| UseUseExplosion.cs:25:303:25:306 | access to property Prop | UseUseExplosion.cs:25:320:25:323 | access to property Prop |
+| UseUseExplosion.cs:25:303:25:306 | this access | UseUseExplosion.cs:25:320:25:323 | this access |
+| UseUseExplosion.cs:25:303:25:306 | this access | UseUseExplosion.cs:25:2938:25:2943 | this access |
+| UseUseExplosion.cs:25:320:25:323 | [post] this access | UseUseExplosion.cs:25:337:25:340 | this access |
+| UseUseExplosion.cs:25:320:25:323 | [post] this access | UseUseExplosion.cs:25:2923:25:2928 | this access |
+| UseUseExplosion.cs:25:320:25:323 | access to property Prop | UseUseExplosion.cs:25:337:25:340 | access to property Prop |
+| UseUseExplosion.cs:25:320:25:323 | this access | UseUseExplosion.cs:25:337:25:340 | this access |
+| UseUseExplosion.cs:25:320:25:323 | this access | UseUseExplosion.cs:25:2923:25:2928 | this access |
+| UseUseExplosion.cs:25:337:25:340 | [post] this access | UseUseExplosion.cs:25:354:25:357 | this access |
+| UseUseExplosion.cs:25:337:25:340 | [post] this access | UseUseExplosion.cs:25:2908:25:2913 | this access |
+| UseUseExplosion.cs:25:337:25:340 | access to property Prop | UseUseExplosion.cs:25:354:25:357 | access to property Prop |
+| UseUseExplosion.cs:25:337:25:340 | this access | UseUseExplosion.cs:25:354:25:357 | this access |
+| UseUseExplosion.cs:25:337:25:340 | this access | UseUseExplosion.cs:25:2908:25:2913 | this access |
+| UseUseExplosion.cs:25:354:25:357 | [post] this access | UseUseExplosion.cs:25:371:25:374 | this access |
+| UseUseExplosion.cs:25:354:25:357 | [post] this access | UseUseExplosion.cs:25:2893:25:2898 | this access |
+| UseUseExplosion.cs:25:354:25:357 | access to property Prop | UseUseExplosion.cs:25:371:25:374 | access to property Prop |
+| UseUseExplosion.cs:25:354:25:357 | this access | UseUseExplosion.cs:25:371:25:374 | this access |
+| UseUseExplosion.cs:25:354:25:357 | this access | UseUseExplosion.cs:25:2893:25:2898 | this access |
+| UseUseExplosion.cs:25:371:25:374 | [post] this access | UseUseExplosion.cs:25:388:25:391 | this access |
+| UseUseExplosion.cs:25:371:25:374 | [post] this access | UseUseExplosion.cs:25:2878:25:2883 | this access |
+| UseUseExplosion.cs:25:371:25:374 | access to property Prop | UseUseExplosion.cs:25:388:25:391 | access to property Prop |
+| UseUseExplosion.cs:25:371:25:374 | this access | UseUseExplosion.cs:25:388:25:391 | this access |
+| UseUseExplosion.cs:25:371:25:374 | this access | UseUseExplosion.cs:25:2878:25:2883 | this access |
+| UseUseExplosion.cs:25:388:25:391 | [post] this access | UseUseExplosion.cs:25:405:25:408 | this access |
+| UseUseExplosion.cs:25:388:25:391 | [post] this access | UseUseExplosion.cs:25:2863:25:2868 | this access |
+| UseUseExplosion.cs:25:388:25:391 | access to property Prop | UseUseExplosion.cs:25:405:25:408 | access to property Prop |
+| UseUseExplosion.cs:25:388:25:391 | this access | UseUseExplosion.cs:25:405:25:408 | this access |
+| UseUseExplosion.cs:25:388:25:391 | this access | UseUseExplosion.cs:25:2863:25:2868 | this access |
+| UseUseExplosion.cs:25:405:25:408 | [post] this access | UseUseExplosion.cs:25:422:25:425 | this access |
+| UseUseExplosion.cs:25:405:25:408 | [post] this access | UseUseExplosion.cs:25:2848:25:2853 | this access |
+| UseUseExplosion.cs:25:405:25:408 | access to property Prop | UseUseExplosion.cs:25:422:25:425 | access to property Prop |
+| UseUseExplosion.cs:25:405:25:408 | this access | UseUseExplosion.cs:25:422:25:425 | this access |
+| UseUseExplosion.cs:25:405:25:408 | this access | UseUseExplosion.cs:25:2848:25:2853 | this access |
+| UseUseExplosion.cs:25:422:25:425 | [post] this access | UseUseExplosion.cs:25:439:25:442 | this access |
+| UseUseExplosion.cs:25:422:25:425 | [post] this access | UseUseExplosion.cs:25:2833:25:2838 | this access |
+| UseUseExplosion.cs:25:422:25:425 | access to property Prop | UseUseExplosion.cs:25:439:25:442 | access to property Prop |
+| UseUseExplosion.cs:25:422:25:425 | this access | UseUseExplosion.cs:25:439:25:442 | this access |
+| UseUseExplosion.cs:25:422:25:425 | this access | UseUseExplosion.cs:25:2833:25:2838 | this access |
+| UseUseExplosion.cs:25:439:25:442 | [post] this access | UseUseExplosion.cs:25:456:25:459 | this access |
+| UseUseExplosion.cs:25:439:25:442 | [post] this access | UseUseExplosion.cs:25:2818:25:2823 | this access |
+| UseUseExplosion.cs:25:439:25:442 | access to property Prop | UseUseExplosion.cs:25:456:25:459 | access to property Prop |
+| UseUseExplosion.cs:25:439:25:442 | this access | UseUseExplosion.cs:25:456:25:459 | this access |
+| UseUseExplosion.cs:25:439:25:442 | this access | UseUseExplosion.cs:25:2818:25:2823 | this access |
+| UseUseExplosion.cs:25:456:25:459 | [post] this access | UseUseExplosion.cs:25:473:25:476 | this access |
+| UseUseExplosion.cs:25:456:25:459 | [post] this access | UseUseExplosion.cs:25:2803:25:2808 | this access |
+| UseUseExplosion.cs:25:456:25:459 | access to property Prop | UseUseExplosion.cs:25:473:25:476 | access to property Prop |
+| UseUseExplosion.cs:25:456:25:459 | this access | UseUseExplosion.cs:25:473:25:476 | this access |
+| UseUseExplosion.cs:25:456:25:459 | this access | UseUseExplosion.cs:25:2803:25:2808 | this access |
+| UseUseExplosion.cs:25:473:25:476 | [post] this access | UseUseExplosion.cs:25:490:25:493 | this access |
+| UseUseExplosion.cs:25:473:25:476 | [post] this access | UseUseExplosion.cs:25:2788:25:2793 | this access |
+| UseUseExplosion.cs:25:473:25:476 | access to property Prop | UseUseExplosion.cs:25:490:25:493 | access to property Prop |
+| UseUseExplosion.cs:25:473:25:476 | this access | UseUseExplosion.cs:25:490:25:493 | this access |
+| UseUseExplosion.cs:25:473:25:476 | this access | UseUseExplosion.cs:25:2788:25:2793 | this access |
+| UseUseExplosion.cs:25:490:25:493 | [post] this access | UseUseExplosion.cs:25:507:25:510 | this access |
+| UseUseExplosion.cs:25:490:25:493 | [post] this access | UseUseExplosion.cs:25:2773:25:2778 | this access |
+| UseUseExplosion.cs:25:490:25:493 | access to property Prop | UseUseExplosion.cs:25:507:25:510 | access to property Prop |
+| UseUseExplosion.cs:25:490:25:493 | this access | UseUseExplosion.cs:25:507:25:510 | this access |
+| UseUseExplosion.cs:25:490:25:493 | this access | UseUseExplosion.cs:25:2773:25:2778 | this access |
+| UseUseExplosion.cs:25:507:25:510 | [post] this access | UseUseExplosion.cs:25:524:25:527 | this access |
+| UseUseExplosion.cs:25:507:25:510 | [post] this access | UseUseExplosion.cs:25:2758:25:2763 | this access |
+| UseUseExplosion.cs:25:507:25:510 | access to property Prop | UseUseExplosion.cs:25:524:25:527 | access to property Prop |
+| UseUseExplosion.cs:25:507:25:510 | this access | UseUseExplosion.cs:25:524:25:527 | this access |
+| UseUseExplosion.cs:25:507:25:510 | this access | UseUseExplosion.cs:25:2758:25:2763 | this access |
+| UseUseExplosion.cs:25:524:25:527 | [post] this access | UseUseExplosion.cs:25:541:25:544 | this access |
+| UseUseExplosion.cs:25:524:25:527 | [post] this access | UseUseExplosion.cs:25:2743:25:2748 | this access |
+| UseUseExplosion.cs:25:524:25:527 | access to property Prop | UseUseExplosion.cs:25:541:25:544 | access to property Prop |
+| UseUseExplosion.cs:25:524:25:527 | this access | UseUseExplosion.cs:25:541:25:544 | this access |
+| UseUseExplosion.cs:25:524:25:527 | this access | UseUseExplosion.cs:25:2743:25:2748 | this access |
+| UseUseExplosion.cs:25:541:25:544 | [post] this access | UseUseExplosion.cs:25:558:25:561 | this access |
+| UseUseExplosion.cs:25:541:25:544 | [post] this access | UseUseExplosion.cs:25:2728:25:2733 | this access |
+| UseUseExplosion.cs:25:541:25:544 | access to property Prop | UseUseExplosion.cs:25:558:25:561 | access to property Prop |
+| UseUseExplosion.cs:25:541:25:544 | this access | UseUseExplosion.cs:25:558:25:561 | this access |
+| UseUseExplosion.cs:25:541:25:544 | this access | UseUseExplosion.cs:25:2728:25:2733 | this access |
+| UseUseExplosion.cs:25:558:25:561 | [post] this access | UseUseExplosion.cs:25:575:25:578 | this access |
+| UseUseExplosion.cs:25:558:25:561 | [post] this access | UseUseExplosion.cs:25:2713:25:2718 | this access |
+| UseUseExplosion.cs:25:558:25:561 | access to property Prop | UseUseExplosion.cs:25:575:25:578 | access to property Prop |
+| UseUseExplosion.cs:25:558:25:561 | this access | UseUseExplosion.cs:25:575:25:578 | this access |
+| UseUseExplosion.cs:25:558:25:561 | this access | UseUseExplosion.cs:25:2713:25:2718 | this access |
+| UseUseExplosion.cs:25:575:25:578 | [post] this access | UseUseExplosion.cs:25:592:25:595 | this access |
+| UseUseExplosion.cs:25:575:25:578 | [post] this access | UseUseExplosion.cs:25:2698:25:2703 | this access |
+| UseUseExplosion.cs:25:575:25:578 | access to property Prop | UseUseExplosion.cs:25:592:25:595 | access to property Prop |
+| UseUseExplosion.cs:25:575:25:578 | this access | UseUseExplosion.cs:25:592:25:595 | this access |
+| UseUseExplosion.cs:25:575:25:578 | this access | UseUseExplosion.cs:25:2698:25:2703 | this access |
+| UseUseExplosion.cs:25:592:25:595 | [post] this access | UseUseExplosion.cs:25:609:25:612 | this access |
+| UseUseExplosion.cs:25:592:25:595 | [post] this access | UseUseExplosion.cs:25:2683:25:2688 | this access |
+| UseUseExplosion.cs:25:592:25:595 | access to property Prop | UseUseExplosion.cs:25:609:25:612 | access to property Prop |
+| UseUseExplosion.cs:25:592:25:595 | this access | UseUseExplosion.cs:25:609:25:612 | this access |
+| UseUseExplosion.cs:25:592:25:595 | this access | UseUseExplosion.cs:25:2683:25:2688 | this access |
+| UseUseExplosion.cs:25:609:25:612 | [post] this access | UseUseExplosion.cs:25:626:25:629 | this access |
+| UseUseExplosion.cs:25:609:25:612 | [post] this access | UseUseExplosion.cs:25:2668:25:2673 | this access |
+| UseUseExplosion.cs:25:609:25:612 | access to property Prop | UseUseExplosion.cs:25:626:25:629 | access to property Prop |
+| UseUseExplosion.cs:25:609:25:612 | this access | UseUseExplosion.cs:25:626:25:629 | this access |
+| UseUseExplosion.cs:25:609:25:612 | this access | UseUseExplosion.cs:25:2668:25:2673 | this access |
+| UseUseExplosion.cs:25:626:25:629 | [post] this access | UseUseExplosion.cs:25:643:25:646 | this access |
+| UseUseExplosion.cs:25:626:25:629 | [post] this access | UseUseExplosion.cs:25:2653:25:2658 | this access |
+| UseUseExplosion.cs:25:626:25:629 | access to property Prop | UseUseExplosion.cs:25:643:25:646 | access to property Prop |
+| UseUseExplosion.cs:25:626:25:629 | this access | UseUseExplosion.cs:25:643:25:646 | this access |
+| UseUseExplosion.cs:25:626:25:629 | this access | UseUseExplosion.cs:25:2653:25:2658 | this access |
+| UseUseExplosion.cs:25:643:25:646 | [post] this access | UseUseExplosion.cs:25:660:25:663 | this access |
+| UseUseExplosion.cs:25:643:25:646 | [post] this access | UseUseExplosion.cs:25:2638:25:2643 | this access |
+| UseUseExplosion.cs:25:643:25:646 | access to property Prop | UseUseExplosion.cs:25:660:25:663 | access to property Prop |
+| UseUseExplosion.cs:25:643:25:646 | this access | UseUseExplosion.cs:25:660:25:663 | this access |
+| UseUseExplosion.cs:25:643:25:646 | this access | UseUseExplosion.cs:25:2638:25:2643 | this access |
+| UseUseExplosion.cs:25:660:25:663 | [post] this access | UseUseExplosion.cs:25:677:25:680 | this access |
+| UseUseExplosion.cs:25:660:25:663 | [post] this access | UseUseExplosion.cs:25:2623:25:2628 | this access |
+| UseUseExplosion.cs:25:660:25:663 | access to property Prop | UseUseExplosion.cs:25:677:25:680 | access to property Prop |
+| UseUseExplosion.cs:25:660:25:663 | this access | UseUseExplosion.cs:25:677:25:680 | this access |
+| UseUseExplosion.cs:25:660:25:663 | this access | UseUseExplosion.cs:25:2623:25:2628 | this access |
+| UseUseExplosion.cs:25:677:25:680 | [post] this access | UseUseExplosion.cs:25:694:25:697 | this access |
+| UseUseExplosion.cs:25:677:25:680 | [post] this access | UseUseExplosion.cs:25:2608:25:2613 | this access |
+| UseUseExplosion.cs:25:677:25:680 | access to property Prop | UseUseExplosion.cs:25:694:25:697 | access to property Prop |
+| UseUseExplosion.cs:25:677:25:680 | this access | UseUseExplosion.cs:25:694:25:697 | this access |
+| UseUseExplosion.cs:25:677:25:680 | this access | UseUseExplosion.cs:25:2608:25:2613 | this access |
+| UseUseExplosion.cs:25:694:25:697 | [post] this access | UseUseExplosion.cs:25:711:25:714 | this access |
+| UseUseExplosion.cs:25:694:25:697 | [post] this access | UseUseExplosion.cs:25:2593:25:2598 | this access |
+| UseUseExplosion.cs:25:694:25:697 | access to property Prop | UseUseExplosion.cs:25:711:25:714 | access to property Prop |
+| UseUseExplosion.cs:25:694:25:697 | this access | UseUseExplosion.cs:25:711:25:714 | this access |
+| UseUseExplosion.cs:25:694:25:697 | this access | UseUseExplosion.cs:25:2593:25:2598 | this access |
+| UseUseExplosion.cs:25:711:25:714 | [post] this access | UseUseExplosion.cs:25:728:25:731 | this access |
+| UseUseExplosion.cs:25:711:25:714 | [post] this access | UseUseExplosion.cs:25:2578:25:2583 | this access |
+| UseUseExplosion.cs:25:711:25:714 | access to property Prop | UseUseExplosion.cs:25:728:25:731 | access to property Prop |
+| UseUseExplosion.cs:25:711:25:714 | this access | UseUseExplosion.cs:25:728:25:731 | this access |
+| UseUseExplosion.cs:25:711:25:714 | this access | UseUseExplosion.cs:25:2578:25:2583 | this access |
+| UseUseExplosion.cs:25:728:25:731 | [post] this access | UseUseExplosion.cs:25:745:25:748 | this access |
+| UseUseExplosion.cs:25:728:25:731 | [post] this access | UseUseExplosion.cs:25:2563:25:2568 | this access |
+| UseUseExplosion.cs:25:728:25:731 | access to property Prop | UseUseExplosion.cs:25:745:25:748 | access to property Prop |
+| UseUseExplosion.cs:25:728:25:731 | this access | UseUseExplosion.cs:25:745:25:748 | this access |
+| UseUseExplosion.cs:25:728:25:731 | this access | UseUseExplosion.cs:25:2563:25:2568 | this access |
+| UseUseExplosion.cs:25:745:25:748 | [post] this access | UseUseExplosion.cs:25:762:25:765 | this access |
+| UseUseExplosion.cs:25:745:25:748 | [post] this access | UseUseExplosion.cs:25:2548:25:2553 | this access |
+| UseUseExplosion.cs:25:745:25:748 | access to property Prop | UseUseExplosion.cs:25:762:25:765 | access to property Prop |
+| UseUseExplosion.cs:25:745:25:748 | this access | UseUseExplosion.cs:25:762:25:765 | this access |
+| UseUseExplosion.cs:25:745:25:748 | this access | UseUseExplosion.cs:25:2548:25:2553 | this access |
+| UseUseExplosion.cs:25:762:25:765 | [post] this access | UseUseExplosion.cs:25:779:25:782 | this access |
+| UseUseExplosion.cs:25:762:25:765 | [post] this access | UseUseExplosion.cs:25:2533:25:2538 | this access |
+| UseUseExplosion.cs:25:762:25:765 | access to property Prop | UseUseExplosion.cs:25:779:25:782 | access to property Prop |
+| UseUseExplosion.cs:25:762:25:765 | this access | UseUseExplosion.cs:25:779:25:782 | this access |
+| UseUseExplosion.cs:25:762:25:765 | this access | UseUseExplosion.cs:25:2533:25:2538 | this access |
+| UseUseExplosion.cs:25:779:25:782 | [post] this access | UseUseExplosion.cs:25:796:25:799 | this access |
+| UseUseExplosion.cs:25:779:25:782 | [post] this access | UseUseExplosion.cs:25:2518:25:2523 | this access |
+| UseUseExplosion.cs:25:779:25:782 | access to property Prop | UseUseExplosion.cs:25:796:25:799 | access to property Prop |
+| UseUseExplosion.cs:25:779:25:782 | this access | UseUseExplosion.cs:25:796:25:799 | this access |
+| UseUseExplosion.cs:25:779:25:782 | this access | UseUseExplosion.cs:25:2518:25:2523 | this access |
+| UseUseExplosion.cs:25:796:25:799 | [post] this access | UseUseExplosion.cs:25:813:25:816 | this access |
+| UseUseExplosion.cs:25:796:25:799 | [post] this access | UseUseExplosion.cs:25:2503:25:2508 | this access |
+| UseUseExplosion.cs:25:796:25:799 | access to property Prop | UseUseExplosion.cs:25:813:25:816 | access to property Prop |
+| UseUseExplosion.cs:25:796:25:799 | this access | UseUseExplosion.cs:25:813:25:816 | this access |
+| UseUseExplosion.cs:25:796:25:799 | this access | UseUseExplosion.cs:25:2503:25:2508 | this access |
+| UseUseExplosion.cs:25:813:25:816 | [post] this access | UseUseExplosion.cs:25:830:25:833 | this access |
+| UseUseExplosion.cs:25:813:25:816 | [post] this access | UseUseExplosion.cs:25:2488:25:2493 | this access |
+| UseUseExplosion.cs:25:813:25:816 | access to property Prop | UseUseExplosion.cs:25:830:25:833 | access to property Prop |
+| UseUseExplosion.cs:25:813:25:816 | this access | UseUseExplosion.cs:25:830:25:833 | this access |
+| UseUseExplosion.cs:25:813:25:816 | this access | UseUseExplosion.cs:25:2488:25:2493 | this access |
+| UseUseExplosion.cs:25:830:25:833 | [post] this access | UseUseExplosion.cs:25:847:25:850 | this access |
+| UseUseExplosion.cs:25:830:25:833 | [post] this access | UseUseExplosion.cs:25:2473:25:2478 | this access |
+| UseUseExplosion.cs:25:830:25:833 | access to property Prop | UseUseExplosion.cs:25:847:25:850 | access to property Prop |
+| UseUseExplosion.cs:25:830:25:833 | this access | UseUseExplosion.cs:25:847:25:850 | this access |
+| UseUseExplosion.cs:25:830:25:833 | this access | UseUseExplosion.cs:25:2473:25:2478 | this access |
+| UseUseExplosion.cs:25:847:25:850 | [post] this access | UseUseExplosion.cs:25:864:25:867 | this access |
+| UseUseExplosion.cs:25:847:25:850 | [post] this access | UseUseExplosion.cs:25:2458:25:2463 | this access |
+| UseUseExplosion.cs:25:847:25:850 | access to property Prop | UseUseExplosion.cs:25:864:25:867 | access to property Prop |
+| UseUseExplosion.cs:25:847:25:850 | this access | UseUseExplosion.cs:25:864:25:867 | this access |
+| UseUseExplosion.cs:25:847:25:850 | this access | UseUseExplosion.cs:25:2458:25:2463 | this access |
+| UseUseExplosion.cs:25:864:25:867 | [post] this access | UseUseExplosion.cs:25:881:25:884 | this access |
+| UseUseExplosion.cs:25:864:25:867 | [post] this access | UseUseExplosion.cs:25:2443:25:2448 | this access |
+| UseUseExplosion.cs:25:864:25:867 | access to property Prop | UseUseExplosion.cs:25:881:25:884 | access to property Prop |
+| UseUseExplosion.cs:25:864:25:867 | this access | UseUseExplosion.cs:25:881:25:884 | this access |
+| UseUseExplosion.cs:25:864:25:867 | this access | UseUseExplosion.cs:25:2443:25:2448 | this access |
+| UseUseExplosion.cs:25:881:25:884 | [post] this access | UseUseExplosion.cs:25:898:25:901 | this access |
+| UseUseExplosion.cs:25:881:25:884 | [post] this access | UseUseExplosion.cs:25:2428:25:2433 | this access |
+| UseUseExplosion.cs:25:881:25:884 | access to property Prop | UseUseExplosion.cs:25:898:25:901 | access to property Prop |
+| UseUseExplosion.cs:25:881:25:884 | this access | UseUseExplosion.cs:25:898:25:901 | this access |
+| UseUseExplosion.cs:25:881:25:884 | this access | UseUseExplosion.cs:25:2428:25:2433 | this access |
+| UseUseExplosion.cs:25:898:25:901 | [post] this access | UseUseExplosion.cs:25:915:25:918 | this access |
+| UseUseExplosion.cs:25:898:25:901 | [post] this access | UseUseExplosion.cs:25:2413:25:2418 | this access |
+| UseUseExplosion.cs:25:898:25:901 | access to property Prop | UseUseExplosion.cs:25:915:25:918 | access to property Prop |
+| UseUseExplosion.cs:25:898:25:901 | this access | UseUseExplosion.cs:25:915:25:918 | this access |
+| UseUseExplosion.cs:25:898:25:901 | this access | UseUseExplosion.cs:25:2413:25:2418 | this access |
+| UseUseExplosion.cs:25:915:25:918 | [post] this access | UseUseExplosion.cs:25:932:25:935 | this access |
+| UseUseExplosion.cs:25:915:25:918 | [post] this access | UseUseExplosion.cs:25:2398:25:2403 | this access |
+| UseUseExplosion.cs:25:915:25:918 | access to property Prop | UseUseExplosion.cs:25:932:25:935 | access to property Prop |
+| UseUseExplosion.cs:25:915:25:918 | this access | UseUseExplosion.cs:25:932:25:935 | this access |
+| UseUseExplosion.cs:25:915:25:918 | this access | UseUseExplosion.cs:25:2398:25:2403 | this access |
+| UseUseExplosion.cs:25:932:25:935 | [post] this access | UseUseExplosion.cs:25:949:25:952 | this access |
+| UseUseExplosion.cs:25:932:25:935 | [post] this access | UseUseExplosion.cs:25:2383:25:2388 | this access |
+| UseUseExplosion.cs:25:932:25:935 | access to property Prop | UseUseExplosion.cs:25:949:25:952 | access to property Prop |
+| UseUseExplosion.cs:25:932:25:935 | this access | UseUseExplosion.cs:25:949:25:952 | this access |
+| UseUseExplosion.cs:25:932:25:935 | this access | UseUseExplosion.cs:25:2383:25:2388 | this access |
+| UseUseExplosion.cs:25:949:25:952 | [post] this access | UseUseExplosion.cs:25:966:25:969 | this access |
+| UseUseExplosion.cs:25:949:25:952 | [post] this access | UseUseExplosion.cs:25:2368:25:2373 | this access |
+| UseUseExplosion.cs:25:949:25:952 | access to property Prop | UseUseExplosion.cs:25:966:25:969 | access to property Prop |
+| UseUseExplosion.cs:25:949:25:952 | this access | UseUseExplosion.cs:25:966:25:969 | this access |
+| UseUseExplosion.cs:25:949:25:952 | this access | UseUseExplosion.cs:25:2368:25:2373 | this access |
+| UseUseExplosion.cs:25:966:25:969 | [post] this access | UseUseExplosion.cs:25:983:25:986 | this access |
+| UseUseExplosion.cs:25:966:25:969 | [post] this access | UseUseExplosion.cs:25:2353:25:2358 | this access |
+| UseUseExplosion.cs:25:966:25:969 | access to property Prop | UseUseExplosion.cs:25:983:25:986 | access to property Prop |
+| UseUseExplosion.cs:25:966:25:969 | this access | UseUseExplosion.cs:25:983:25:986 | this access |
+| UseUseExplosion.cs:25:966:25:969 | this access | UseUseExplosion.cs:25:2353:25:2358 | this access |
+| UseUseExplosion.cs:25:983:25:986 | [post] this access | UseUseExplosion.cs:25:1000:25:1003 | this access |
+| UseUseExplosion.cs:25:983:25:986 | [post] this access | UseUseExplosion.cs:25:2338:25:2343 | this access |
+| UseUseExplosion.cs:25:983:25:986 | access to property Prop | UseUseExplosion.cs:25:1000:25:1003 | access to property Prop |
+| UseUseExplosion.cs:25:983:25:986 | this access | UseUseExplosion.cs:25:1000:25:1003 | this access |
+| UseUseExplosion.cs:25:983:25:986 | this access | UseUseExplosion.cs:25:2338:25:2343 | this access |
+| UseUseExplosion.cs:25:1000:25:1003 | [post] this access | UseUseExplosion.cs:25:1017:25:1020 | this access |
+| UseUseExplosion.cs:25:1000:25:1003 | [post] this access | UseUseExplosion.cs:25:2323:25:2328 | this access |
+| UseUseExplosion.cs:25:1000:25:1003 | access to property Prop | UseUseExplosion.cs:25:1017:25:1020 | access to property Prop |
+| UseUseExplosion.cs:25:1000:25:1003 | this access | UseUseExplosion.cs:25:1017:25:1020 | this access |
+| UseUseExplosion.cs:25:1000:25:1003 | this access | UseUseExplosion.cs:25:2323:25:2328 | this access |
+| UseUseExplosion.cs:25:1017:25:1020 | [post] this access | UseUseExplosion.cs:25:1034:25:1037 | this access |
+| UseUseExplosion.cs:25:1017:25:1020 | [post] this access | UseUseExplosion.cs:25:2308:25:2313 | this access |
+| UseUseExplosion.cs:25:1017:25:1020 | access to property Prop | UseUseExplosion.cs:25:1034:25:1037 | access to property Prop |
+| UseUseExplosion.cs:25:1017:25:1020 | this access | UseUseExplosion.cs:25:1034:25:1037 | this access |
+| UseUseExplosion.cs:25:1017:25:1020 | this access | UseUseExplosion.cs:25:2308:25:2313 | this access |
+| UseUseExplosion.cs:25:1034:25:1037 | [post] this access | UseUseExplosion.cs:25:1051:25:1054 | this access |
+| UseUseExplosion.cs:25:1034:25:1037 | [post] this access | UseUseExplosion.cs:25:2293:25:2298 | this access |
+| UseUseExplosion.cs:25:1034:25:1037 | access to property Prop | UseUseExplosion.cs:25:1051:25:1054 | access to property Prop |
+| UseUseExplosion.cs:25:1034:25:1037 | this access | UseUseExplosion.cs:25:1051:25:1054 | this access |
+| UseUseExplosion.cs:25:1034:25:1037 | this access | UseUseExplosion.cs:25:2293:25:2298 | this access |
+| UseUseExplosion.cs:25:1051:25:1054 | [post] this access | UseUseExplosion.cs:25:1068:25:1071 | this access |
+| UseUseExplosion.cs:25:1051:25:1054 | [post] this access | UseUseExplosion.cs:25:2278:25:2283 | this access |
+| UseUseExplosion.cs:25:1051:25:1054 | access to property Prop | UseUseExplosion.cs:25:1068:25:1071 | access to property Prop |
+| UseUseExplosion.cs:25:1051:25:1054 | this access | UseUseExplosion.cs:25:1068:25:1071 | this access |
+| UseUseExplosion.cs:25:1051:25:1054 | this access | UseUseExplosion.cs:25:2278:25:2283 | this access |
+| UseUseExplosion.cs:25:1068:25:1071 | [post] this access | UseUseExplosion.cs:25:1085:25:1088 | this access |
+| UseUseExplosion.cs:25:1068:25:1071 | [post] this access | UseUseExplosion.cs:25:2263:25:2268 | this access |
+| UseUseExplosion.cs:25:1068:25:1071 | access to property Prop | UseUseExplosion.cs:25:1085:25:1088 | access to property Prop |
+| UseUseExplosion.cs:25:1068:25:1071 | this access | UseUseExplosion.cs:25:1085:25:1088 | this access |
+| UseUseExplosion.cs:25:1068:25:1071 | this access | UseUseExplosion.cs:25:2263:25:2268 | this access |
+| UseUseExplosion.cs:25:1085:25:1088 | [post] this access | UseUseExplosion.cs:25:1102:25:1105 | this access |
+| UseUseExplosion.cs:25:1085:25:1088 | [post] this access | UseUseExplosion.cs:25:2248:25:2253 | this access |
+| UseUseExplosion.cs:25:1085:25:1088 | access to property Prop | UseUseExplosion.cs:25:1102:25:1105 | access to property Prop |
+| UseUseExplosion.cs:25:1085:25:1088 | this access | UseUseExplosion.cs:25:1102:25:1105 | this access |
+| UseUseExplosion.cs:25:1085:25:1088 | this access | UseUseExplosion.cs:25:2248:25:2253 | this access |
+| UseUseExplosion.cs:25:1102:25:1105 | [post] this access | UseUseExplosion.cs:25:1119:25:1122 | this access |
+| UseUseExplosion.cs:25:1102:25:1105 | [post] this access | UseUseExplosion.cs:25:2233:25:2238 | this access |
+| UseUseExplosion.cs:25:1102:25:1105 | access to property Prop | UseUseExplosion.cs:25:1119:25:1122 | access to property Prop |
+| UseUseExplosion.cs:25:1102:25:1105 | this access | UseUseExplosion.cs:25:1119:25:1122 | this access |
+| UseUseExplosion.cs:25:1102:25:1105 | this access | UseUseExplosion.cs:25:2233:25:2238 | this access |
+| UseUseExplosion.cs:25:1119:25:1122 | [post] this access | UseUseExplosion.cs:25:1136:25:1139 | this access |
+| UseUseExplosion.cs:25:1119:25:1122 | [post] this access | UseUseExplosion.cs:25:2218:25:2223 | this access |
+| UseUseExplosion.cs:25:1119:25:1122 | access to property Prop | UseUseExplosion.cs:25:1136:25:1139 | access to property Prop |
+| UseUseExplosion.cs:25:1119:25:1122 | this access | UseUseExplosion.cs:25:1136:25:1139 | this access |
+| UseUseExplosion.cs:25:1119:25:1122 | this access | UseUseExplosion.cs:25:2218:25:2223 | this access |
+| UseUseExplosion.cs:25:1136:25:1139 | [post] this access | UseUseExplosion.cs:25:1153:25:1156 | this access |
+| UseUseExplosion.cs:25:1136:25:1139 | [post] this access | UseUseExplosion.cs:25:2203:25:2208 | this access |
+| UseUseExplosion.cs:25:1136:25:1139 | access to property Prop | UseUseExplosion.cs:25:1153:25:1156 | access to property Prop |
+| UseUseExplosion.cs:25:1136:25:1139 | this access | UseUseExplosion.cs:25:1153:25:1156 | this access |
+| UseUseExplosion.cs:25:1136:25:1139 | this access | UseUseExplosion.cs:25:2203:25:2208 | this access |
+| UseUseExplosion.cs:25:1153:25:1156 | [post] this access | UseUseExplosion.cs:25:1170:25:1173 | this access |
+| UseUseExplosion.cs:25:1153:25:1156 | [post] this access | UseUseExplosion.cs:25:2188:25:2193 | this access |
+| UseUseExplosion.cs:25:1153:25:1156 | access to property Prop | UseUseExplosion.cs:25:1170:25:1173 | access to property Prop |
+| UseUseExplosion.cs:25:1153:25:1156 | this access | UseUseExplosion.cs:25:1170:25:1173 | this access |
+| UseUseExplosion.cs:25:1153:25:1156 | this access | UseUseExplosion.cs:25:2188:25:2193 | this access |
+| UseUseExplosion.cs:25:1170:25:1173 | [post] this access | UseUseExplosion.cs:25:1187:25:1190 | this access |
+| UseUseExplosion.cs:25:1170:25:1173 | [post] this access | UseUseExplosion.cs:25:2173:25:2178 | this access |
+| UseUseExplosion.cs:25:1170:25:1173 | access to property Prop | UseUseExplosion.cs:25:1187:25:1190 | access to property Prop |
+| UseUseExplosion.cs:25:1170:25:1173 | this access | UseUseExplosion.cs:25:1187:25:1190 | this access |
+| UseUseExplosion.cs:25:1170:25:1173 | this access | UseUseExplosion.cs:25:2173:25:2178 | this access |
+| UseUseExplosion.cs:25:1187:25:1190 | [post] this access | UseUseExplosion.cs:25:1204:25:1207 | this access |
+| UseUseExplosion.cs:25:1187:25:1190 | [post] this access | UseUseExplosion.cs:25:2158:25:2163 | this access |
+| UseUseExplosion.cs:25:1187:25:1190 | access to property Prop | UseUseExplosion.cs:25:1204:25:1207 | access to property Prop |
+| UseUseExplosion.cs:25:1187:25:1190 | this access | UseUseExplosion.cs:25:1204:25:1207 | this access |
+| UseUseExplosion.cs:25:1187:25:1190 | this access | UseUseExplosion.cs:25:2158:25:2163 | this access |
+| UseUseExplosion.cs:25:1204:25:1207 | [post] this access | UseUseExplosion.cs:25:1221:25:1224 | this access |
+| UseUseExplosion.cs:25:1204:25:1207 | [post] this access | UseUseExplosion.cs:25:2143:25:2148 | this access |
+| UseUseExplosion.cs:25:1204:25:1207 | access to property Prop | UseUseExplosion.cs:25:1221:25:1224 | access to property Prop |
+| UseUseExplosion.cs:25:1204:25:1207 | this access | UseUseExplosion.cs:25:1221:25:1224 | this access |
+| UseUseExplosion.cs:25:1204:25:1207 | this access | UseUseExplosion.cs:25:2143:25:2148 | this access |
+| UseUseExplosion.cs:25:1221:25:1224 | [post] this access | UseUseExplosion.cs:25:1238:25:1241 | this access |
+| UseUseExplosion.cs:25:1221:25:1224 | [post] this access | UseUseExplosion.cs:25:2128:25:2133 | this access |
+| UseUseExplosion.cs:25:1221:25:1224 | access to property Prop | UseUseExplosion.cs:25:1238:25:1241 | access to property Prop |
+| UseUseExplosion.cs:25:1221:25:1224 | this access | UseUseExplosion.cs:25:1238:25:1241 | this access |
+| UseUseExplosion.cs:25:1221:25:1224 | this access | UseUseExplosion.cs:25:2128:25:2133 | this access |
+| UseUseExplosion.cs:25:1238:25:1241 | [post] this access | UseUseExplosion.cs:25:1255:25:1258 | this access |
+| UseUseExplosion.cs:25:1238:25:1241 | [post] this access | UseUseExplosion.cs:25:2113:25:2118 | this access |
+| UseUseExplosion.cs:25:1238:25:1241 | access to property Prop | UseUseExplosion.cs:25:1255:25:1258 | access to property Prop |
+| UseUseExplosion.cs:25:1238:25:1241 | this access | UseUseExplosion.cs:25:1255:25:1258 | this access |
+| UseUseExplosion.cs:25:1238:25:1241 | this access | UseUseExplosion.cs:25:2113:25:2118 | this access |
+| UseUseExplosion.cs:25:1255:25:1258 | [post] this access | UseUseExplosion.cs:25:1272:25:1275 | this access |
+| UseUseExplosion.cs:25:1255:25:1258 | [post] this access | UseUseExplosion.cs:25:2098:25:2103 | this access |
+| UseUseExplosion.cs:25:1255:25:1258 | access to property Prop | UseUseExplosion.cs:25:1272:25:1275 | access to property Prop |
+| UseUseExplosion.cs:25:1255:25:1258 | this access | UseUseExplosion.cs:25:1272:25:1275 | this access |
+| UseUseExplosion.cs:25:1255:25:1258 | this access | UseUseExplosion.cs:25:2098:25:2103 | this access |
+| UseUseExplosion.cs:25:1272:25:1275 | [post] this access | UseUseExplosion.cs:25:1289:25:1292 | this access |
+| UseUseExplosion.cs:25:1272:25:1275 | [post] this access | UseUseExplosion.cs:25:2083:25:2088 | this access |
+| UseUseExplosion.cs:25:1272:25:1275 | access to property Prop | UseUseExplosion.cs:25:1289:25:1292 | access to property Prop |
+| UseUseExplosion.cs:25:1272:25:1275 | this access | UseUseExplosion.cs:25:1289:25:1292 | this access |
+| UseUseExplosion.cs:25:1272:25:1275 | this access | UseUseExplosion.cs:25:2083:25:2088 | this access |
+| UseUseExplosion.cs:25:1289:25:1292 | [post] this access | UseUseExplosion.cs:25:1306:25:1309 | this access |
+| UseUseExplosion.cs:25:1289:25:1292 | [post] this access | UseUseExplosion.cs:25:2068:25:2073 | this access |
+| UseUseExplosion.cs:25:1289:25:1292 | access to property Prop | UseUseExplosion.cs:25:1306:25:1309 | access to property Prop |
+| UseUseExplosion.cs:25:1289:25:1292 | this access | UseUseExplosion.cs:25:1306:25:1309 | this access |
+| UseUseExplosion.cs:25:1289:25:1292 | this access | UseUseExplosion.cs:25:2068:25:2073 | this access |
+| UseUseExplosion.cs:25:1306:25:1309 | [post] this access | UseUseExplosion.cs:25:1323:25:1326 | this access |
+| UseUseExplosion.cs:25:1306:25:1309 | [post] this access | UseUseExplosion.cs:25:2053:25:2058 | this access |
+| UseUseExplosion.cs:25:1306:25:1309 | access to property Prop | UseUseExplosion.cs:25:1323:25:1326 | access to property Prop |
+| UseUseExplosion.cs:25:1306:25:1309 | this access | UseUseExplosion.cs:25:1323:25:1326 | this access |
+| UseUseExplosion.cs:25:1306:25:1309 | this access | UseUseExplosion.cs:25:2053:25:2058 | this access |
+| UseUseExplosion.cs:25:1323:25:1326 | [post] this access | UseUseExplosion.cs:25:1340:25:1343 | this access |
+| UseUseExplosion.cs:25:1323:25:1326 | [post] this access | UseUseExplosion.cs:25:2038:25:2043 | this access |
+| UseUseExplosion.cs:25:1323:25:1326 | access to property Prop | UseUseExplosion.cs:25:1340:25:1343 | access to property Prop |
+| UseUseExplosion.cs:25:1323:25:1326 | this access | UseUseExplosion.cs:25:1340:25:1343 | this access |
+| UseUseExplosion.cs:25:1323:25:1326 | this access | UseUseExplosion.cs:25:2038:25:2043 | this access |
+| UseUseExplosion.cs:25:1340:25:1343 | [post] this access | UseUseExplosion.cs:25:1357:25:1360 | this access |
+| UseUseExplosion.cs:25:1340:25:1343 | [post] this access | UseUseExplosion.cs:25:2023:25:2028 | this access |
+| UseUseExplosion.cs:25:1340:25:1343 | access to property Prop | UseUseExplosion.cs:25:1357:25:1360 | access to property Prop |
+| UseUseExplosion.cs:25:1340:25:1343 | this access | UseUseExplosion.cs:25:1357:25:1360 | this access |
+| UseUseExplosion.cs:25:1340:25:1343 | this access | UseUseExplosion.cs:25:2023:25:2028 | this access |
+| UseUseExplosion.cs:25:1357:25:1360 | [post] this access | UseUseExplosion.cs:25:1374:25:1377 | this access |
+| UseUseExplosion.cs:25:1357:25:1360 | [post] this access | UseUseExplosion.cs:25:2008:25:2013 | this access |
+| UseUseExplosion.cs:25:1357:25:1360 | access to property Prop | UseUseExplosion.cs:25:1374:25:1377 | access to property Prop |
+| UseUseExplosion.cs:25:1357:25:1360 | this access | UseUseExplosion.cs:25:1374:25:1377 | this access |
+| UseUseExplosion.cs:25:1357:25:1360 | this access | UseUseExplosion.cs:25:2008:25:2013 | this access |
+| UseUseExplosion.cs:25:1374:25:1377 | [post] this access | UseUseExplosion.cs:25:1391:25:1394 | this access |
+| UseUseExplosion.cs:25:1374:25:1377 | [post] this access | UseUseExplosion.cs:25:1993:25:1998 | this access |
+| UseUseExplosion.cs:25:1374:25:1377 | access to property Prop | UseUseExplosion.cs:25:1391:25:1394 | access to property Prop |
+| UseUseExplosion.cs:25:1374:25:1377 | this access | UseUseExplosion.cs:25:1391:25:1394 | this access |
+| UseUseExplosion.cs:25:1374:25:1377 | this access | UseUseExplosion.cs:25:1993:25:1998 | this access |
+| UseUseExplosion.cs:25:1391:25:1394 | [post] this access | UseUseExplosion.cs:25:1408:25:1411 | this access |
+| UseUseExplosion.cs:25:1391:25:1394 | [post] this access | UseUseExplosion.cs:25:1978:25:1983 | this access |
+| UseUseExplosion.cs:25:1391:25:1394 | access to property Prop | UseUseExplosion.cs:25:1408:25:1411 | access to property Prop |
+| UseUseExplosion.cs:25:1391:25:1394 | this access | UseUseExplosion.cs:25:1408:25:1411 | this access |
+| UseUseExplosion.cs:25:1391:25:1394 | this access | UseUseExplosion.cs:25:1978:25:1983 | this access |
+| UseUseExplosion.cs:25:1408:25:1411 | [post] this access | UseUseExplosion.cs:25:1425:25:1428 | this access |
+| UseUseExplosion.cs:25:1408:25:1411 | [post] this access | UseUseExplosion.cs:25:1963:25:1968 | this access |
+| UseUseExplosion.cs:25:1408:25:1411 | access to property Prop | UseUseExplosion.cs:25:1425:25:1428 | access to property Prop |
+| UseUseExplosion.cs:25:1408:25:1411 | this access | UseUseExplosion.cs:25:1425:25:1428 | this access |
+| UseUseExplosion.cs:25:1408:25:1411 | this access | UseUseExplosion.cs:25:1963:25:1968 | this access |
+| UseUseExplosion.cs:25:1425:25:1428 | [post] this access | UseUseExplosion.cs:25:1442:25:1445 | this access |
+| UseUseExplosion.cs:25:1425:25:1428 | [post] this access | UseUseExplosion.cs:25:1948:25:1953 | this access |
+| UseUseExplosion.cs:25:1425:25:1428 | access to property Prop | UseUseExplosion.cs:25:1442:25:1445 | access to property Prop |
+| UseUseExplosion.cs:25:1425:25:1428 | this access | UseUseExplosion.cs:25:1442:25:1445 | this access |
+| UseUseExplosion.cs:25:1425:25:1428 | this access | UseUseExplosion.cs:25:1948:25:1953 | this access |
+| UseUseExplosion.cs:25:1442:25:1445 | [post] this access | UseUseExplosion.cs:25:1459:25:1462 | this access |
+| UseUseExplosion.cs:25:1442:25:1445 | [post] this access | UseUseExplosion.cs:25:1933:25:1938 | this access |
+| UseUseExplosion.cs:25:1442:25:1445 | access to property Prop | UseUseExplosion.cs:25:1459:25:1462 | access to property Prop |
+| UseUseExplosion.cs:25:1442:25:1445 | this access | UseUseExplosion.cs:25:1459:25:1462 | this access |
+| UseUseExplosion.cs:25:1442:25:1445 | this access | UseUseExplosion.cs:25:1933:25:1938 | this access |
+| UseUseExplosion.cs:25:1459:25:1462 | [post] this access | UseUseExplosion.cs:25:1476:25:1479 | this access |
+| UseUseExplosion.cs:25:1459:25:1462 | [post] this access | UseUseExplosion.cs:25:1918:25:1923 | this access |
+| UseUseExplosion.cs:25:1459:25:1462 | access to property Prop | UseUseExplosion.cs:25:1476:25:1479 | access to property Prop |
+| UseUseExplosion.cs:25:1459:25:1462 | this access | UseUseExplosion.cs:25:1476:25:1479 | this access |
+| UseUseExplosion.cs:25:1459:25:1462 | this access | UseUseExplosion.cs:25:1918:25:1923 | this access |
+| UseUseExplosion.cs:25:1476:25:1479 | [post] this access | UseUseExplosion.cs:25:1493:25:1496 | this access |
+| UseUseExplosion.cs:25:1476:25:1479 | [post] this access | UseUseExplosion.cs:25:1903:25:1908 | this access |
+| UseUseExplosion.cs:25:1476:25:1479 | access to property Prop | UseUseExplosion.cs:25:1493:25:1496 | access to property Prop |
+| UseUseExplosion.cs:25:1476:25:1479 | this access | UseUseExplosion.cs:25:1493:25:1496 | this access |
+| UseUseExplosion.cs:25:1476:25:1479 | this access | UseUseExplosion.cs:25:1903:25:1908 | this access |
+| UseUseExplosion.cs:25:1493:25:1496 | [post] this access | UseUseExplosion.cs:25:1510:25:1513 | this access |
+| UseUseExplosion.cs:25:1493:25:1496 | [post] this access | UseUseExplosion.cs:25:1888:25:1893 | this access |
+| UseUseExplosion.cs:25:1493:25:1496 | access to property Prop | UseUseExplosion.cs:25:1510:25:1513 | access to property Prop |
+| UseUseExplosion.cs:25:1493:25:1496 | this access | UseUseExplosion.cs:25:1510:25:1513 | this access |
+| UseUseExplosion.cs:25:1493:25:1496 | this access | UseUseExplosion.cs:25:1888:25:1893 | this access |
+| UseUseExplosion.cs:25:1510:25:1513 | [post] this access | UseUseExplosion.cs:25:1527:25:1530 | this access |
+| UseUseExplosion.cs:25:1510:25:1513 | [post] this access | UseUseExplosion.cs:25:1873:25:1878 | this access |
+| UseUseExplosion.cs:25:1510:25:1513 | access to property Prop | UseUseExplosion.cs:25:1527:25:1530 | access to property Prop |
+| UseUseExplosion.cs:25:1510:25:1513 | this access | UseUseExplosion.cs:25:1527:25:1530 | this access |
+| UseUseExplosion.cs:25:1510:25:1513 | this access | UseUseExplosion.cs:25:1873:25:1878 | this access |
+| UseUseExplosion.cs:25:1527:25:1530 | [post] this access | UseUseExplosion.cs:25:1544:25:1547 | this access |
+| UseUseExplosion.cs:25:1527:25:1530 | [post] this access | UseUseExplosion.cs:25:1858:25:1863 | this access |
+| UseUseExplosion.cs:25:1527:25:1530 | access to property Prop | UseUseExplosion.cs:25:1544:25:1547 | access to property Prop |
+| UseUseExplosion.cs:25:1527:25:1530 | this access | UseUseExplosion.cs:25:1544:25:1547 | this access |
+| UseUseExplosion.cs:25:1527:25:1530 | this access | UseUseExplosion.cs:25:1858:25:1863 | this access |
+| UseUseExplosion.cs:25:1544:25:1547 | [post] this access | UseUseExplosion.cs:25:1561:25:1564 | this access |
+| UseUseExplosion.cs:25:1544:25:1547 | [post] this access | UseUseExplosion.cs:25:1843:25:1848 | this access |
+| UseUseExplosion.cs:25:1544:25:1547 | access to property Prop | UseUseExplosion.cs:25:1561:25:1564 | access to property Prop |
+| UseUseExplosion.cs:25:1544:25:1547 | this access | UseUseExplosion.cs:25:1561:25:1564 | this access |
+| UseUseExplosion.cs:25:1544:25:1547 | this access | UseUseExplosion.cs:25:1843:25:1848 | this access |
+| UseUseExplosion.cs:25:1561:25:1564 | [post] this access | UseUseExplosion.cs:25:1577:25:1580 | this access |
+| UseUseExplosion.cs:25:1561:25:1564 | [post] this access | UseUseExplosion.cs:25:1828:25:1833 | this access |
+| UseUseExplosion.cs:25:1561:25:1564 | access to property Prop | UseUseExplosion.cs:25:1577:25:1580 | access to property Prop |
+| UseUseExplosion.cs:25:1561:25:1564 | this access | UseUseExplosion.cs:25:1577:25:1580 | this access |
+| UseUseExplosion.cs:25:1561:25:1564 | this access | UseUseExplosion.cs:25:1828:25:1833 | this access |
+| UseUseExplosion.cs:25:1577:25:1580 | [post] this access | UseUseExplosion.cs:25:1593:25:1596 | this access |
+| UseUseExplosion.cs:25:1577:25:1580 | [post] this access | UseUseExplosion.cs:25:1813:25:1818 | this access |
+| UseUseExplosion.cs:25:1577:25:1580 | access to property Prop | UseUseExplosion.cs:25:1593:25:1596 | access to property Prop |
+| UseUseExplosion.cs:25:1577:25:1580 | this access | UseUseExplosion.cs:25:1593:25:1596 | this access |
+| UseUseExplosion.cs:25:1577:25:1580 | this access | UseUseExplosion.cs:25:1813:25:1818 | this access |
+| UseUseExplosion.cs:25:1593:25:1596 | [post] this access | UseUseExplosion.cs:25:1609:25:1612 | this access |
+| UseUseExplosion.cs:25:1593:25:1596 | [post] this access | UseUseExplosion.cs:25:1798:25:1803 | this access |
+| UseUseExplosion.cs:25:1593:25:1596 | access to property Prop | UseUseExplosion.cs:25:1609:25:1612 | access to property Prop |
+| UseUseExplosion.cs:25:1593:25:1596 | this access | UseUseExplosion.cs:25:1609:25:1612 | this access |
+| UseUseExplosion.cs:25:1593:25:1596 | this access | UseUseExplosion.cs:25:1798:25:1803 | this access |
+| UseUseExplosion.cs:25:1609:25:1612 | [post] this access | UseUseExplosion.cs:25:1625:25:1628 | this access |
+| UseUseExplosion.cs:25:1609:25:1612 | [post] this access | UseUseExplosion.cs:25:1783:25:1788 | this access |
+| UseUseExplosion.cs:25:1609:25:1612 | access to property Prop | UseUseExplosion.cs:25:1625:25:1628 | access to property Prop |
+| UseUseExplosion.cs:25:1609:25:1612 | this access | UseUseExplosion.cs:25:1625:25:1628 | this access |
+| UseUseExplosion.cs:25:1609:25:1612 | this access | UseUseExplosion.cs:25:1783:25:1788 | this access |
+| UseUseExplosion.cs:25:1625:25:1628 | [post] this access | UseUseExplosion.cs:25:1641:25:1644 | this access |
+| UseUseExplosion.cs:25:1625:25:1628 | [post] this access | UseUseExplosion.cs:25:1768:25:1773 | this access |
+| UseUseExplosion.cs:25:1625:25:1628 | access to property Prop | UseUseExplosion.cs:25:1641:25:1644 | access to property Prop |
+| UseUseExplosion.cs:25:1625:25:1628 | this access | UseUseExplosion.cs:25:1641:25:1644 | this access |
+| UseUseExplosion.cs:25:1625:25:1628 | this access | UseUseExplosion.cs:25:1768:25:1773 | this access |
+| UseUseExplosion.cs:25:1641:25:1644 | [post] this access | UseUseExplosion.cs:25:1657:25:1660 | this access |
+| UseUseExplosion.cs:25:1641:25:1644 | [post] this access | UseUseExplosion.cs:25:1753:25:1758 | this access |
+| UseUseExplosion.cs:25:1641:25:1644 | access to property Prop | UseUseExplosion.cs:25:1657:25:1660 | access to property Prop |
+| UseUseExplosion.cs:25:1641:25:1644 | this access | UseUseExplosion.cs:25:1657:25:1660 | this access |
+| UseUseExplosion.cs:25:1641:25:1644 | this access | UseUseExplosion.cs:25:1753:25:1758 | this access |
+| UseUseExplosion.cs:25:1657:25:1660 | [post] this access | UseUseExplosion.cs:25:1673:25:1676 | this access |
+| UseUseExplosion.cs:25:1657:25:1660 | [post] this access | UseUseExplosion.cs:25:1738:25:1743 | this access |
+| UseUseExplosion.cs:25:1657:25:1660 | access to property Prop | UseUseExplosion.cs:25:1673:25:1676 | access to property Prop |
+| UseUseExplosion.cs:25:1657:25:1660 | this access | UseUseExplosion.cs:25:1673:25:1676 | this access |
+| UseUseExplosion.cs:25:1657:25:1660 | this access | UseUseExplosion.cs:25:1738:25:1743 | this access |
+| UseUseExplosion.cs:25:1673:25:1676 | [post] this access | UseUseExplosion.cs:25:1689:25:1692 | this access |
+| UseUseExplosion.cs:25:1673:25:1676 | [post] this access | UseUseExplosion.cs:25:1723:25:1728 | this access |
+| UseUseExplosion.cs:25:1673:25:1676 | access to property Prop | UseUseExplosion.cs:25:1689:25:1692 | access to property Prop |
+| UseUseExplosion.cs:25:1673:25:1676 | this access | UseUseExplosion.cs:25:1689:25:1692 | this access |
+| UseUseExplosion.cs:25:1673:25:1676 | this access | UseUseExplosion.cs:25:1723:25:1728 | this access |
+| UseUseExplosion.cs:25:1689:25:1692 | [post] this access | UseUseExplosion.cs:25:1708:25:1713 | this access |
+| UseUseExplosion.cs:25:1689:25:1692 | this access | UseUseExplosion.cs:25:1708:25:1713 | this access |
diff --git a/csharp/ql/test/library-tests/dataflow/local/TaintTrackingStep.expected b/csharp/ql/test/library-tests/dataflow/local/TaintTrackingStep.expected
index 6627f70e735..dc8cdffaa36 100644
--- a/csharp/ql/test/library-tests/dataflow/local/TaintTrackingStep.expected
+++ b/csharp/ql/test/library-tests/dataflow/local/TaintTrackingStep.expected
@@ -981,3 +981,1804 @@
 | Splitting.cs:58:22:58:22 | [b (line 46): true] SSA def(s) | Splitting.cs:59:19:59:19 | [b (line 46): true] access to local variable s |
 | Splitting.cs:58:27:58:27 | [b (line 46): false] access to local variable y | Splitting.cs:58:22:58:22 | [b (line 46): false] SSA def(s) |
 | Splitting.cs:58:27:58:27 | [b (line 46): true] access to local variable y | Splitting.cs:58:22:58:22 | [b (line 46): true] SSA def(s) |
+| UseUseExplosion.cs:21:10:21:10 | SSA entry def(this.Prop) | UseUseExplosion.cs:24:13:24:16 | access to property Prop |
+| UseUseExplosion.cs:21:10:21:10 | this | UseUseExplosion.cs:24:13:24:16 | this access |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:1712:24:1712 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:1727:24:1727 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:1742:24:1742 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:1757:24:1757 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:1772:24:1772 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:1787:24:1787 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:1802:24:1802 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:1817:24:1817 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:1832:24:1832 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:1847:24:1847 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:1862:24:1862 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:1877:24:1877 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:1892:24:1892 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:1907:24:1907 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:1922:24:1922 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:1937:24:1937 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:1952:24:1952 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:1967:24:1967 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:1982:24:1982 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:1997:24:1997 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:2012:24:2012 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:2027:24:2027 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:2042:24:2042 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:2057:24:2057 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:2072:24:2072 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:2087:24:2087 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:2102:24:2102 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:2117:24:2117 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:2132:24:2132 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:2147:24:2147 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:2162:24:2162 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:2177:24:2177 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:2192:24:2192 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:2207:24:2207 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:2222:24:2222 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:2237:24:2237 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:2252:24:2252 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:2267:24:2267 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:2282:24:2282 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:2297:24:2297 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:2312:24:2312 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:2327:24:2327 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:2342:24:2342 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:2357:24:2357 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:2372:24:2372 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:2387:24:2387 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:2402:24:2402 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:2417:24:2417 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:2432:24:2432 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:2447:24:2447 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:2462:24:2462 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:2477:24:2477 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:2492:24:2492 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:2507:24:2507 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:2522:24:2522 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:2537:24:2537 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:2552:24:2552 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:2567:24:2567 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:2582:24:2582 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:2597:24:2597 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:2612:24:2612 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:2627:24:2627 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:2642:24:2642 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:2657:24:2657 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:2672:24:2672 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:2687:24:2687 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:2702:24:2702 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:2717:24:2717 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:2732:24:2732 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:2747:24:2747 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:2762:24:2762 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:2777:24:2777 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:2792:24:2792 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:2807:24:2807 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:2822:24:2822 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:2837:24:2837 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:2852:24:2852 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:2867:24:2867 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:2882:24:2882 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:2897:24:2897 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:2912:24:2912 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:2927:24:2927 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:2942:24:2942 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:2957:24:2957 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:2972:24:2972 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:2987:24:2987 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:3002:24:3002 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:3017:24:3017 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:3032:24:3032 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:3047:24:3047 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:3062:24:3062 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:3077:24:3077 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:3092:24:3092 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:3107:24:3107 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:3122:24:3122 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:3137:24:3137 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:3152:24:3152 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:3167:24:3167 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:3182:24:3182 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:24:3197:24:3197 | access to local variable x |
+| UseUseExplosion.cs:23:13:23:17 | SSA def(x) | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:23:17:23:17 | 0 | UseUseExplosion.cs:23:13:23:17 | SSA def(x) |
+| UseUseExplosion.cs:24:13:24:16 | [post] this access | UseUseExplosion.cs:24:31:24:34 | this access |
+| UseUseExplosion.cs:24:13:24:16 | [post] this access | UseUseExplosion.cs:24:3193:24:3198 | this access |
+| UseUseExplosion.cs:24:13:24:16 | access to property Prop | UseUseExplosion.cs:24:13:24:22 | ... > ... |
+| UseUseExplosion.cs:24:13:24:16 | access to property Prop | UseUseExplosion.cs:24:31:24:34 | access to property Prop |
+| UseUseExplosion.cs:24:13:24:16 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:13:24:16 | this access | UseUseExplosion.cs:24:31:24:34 | this access |
+| UseUseExplosion.cs:24:13:24:16 | this access | UseUseExplosion.cs:24:3193:24:3198 | this access |
+| UseUseExplosion.cs:24:31:24:34 | [post] this access | UseUseExplosion.cs:24:48:24:51 | this access |
+| UseUseExplosion.cs:24:31:24:34 | [post] this access | UseUseExplosion.cs:24:3178:24:3183 | this access |
+| UseUseExplosion.cs:24:31:24:34 | access to property Prop | UseUseExplosion.cs:24:31:24:39 | ... > ... |
+| UseUseExplosion.cs:24:31:24:34 | access to property Prop | UseUseExplosion.cs:24:48:24:51 | access to property Prop |
+| UseUseExplosion.cs:24:31:24:34 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:31:24:34 | this access | UseUseExplosion.cs:24:48:24:51 | this access |
+| UseUseExplosion.cs:24:31:24:34 | this access | UseUseExplosion.cs:24:3178:24:3183 | this access |
+| UseUseExplosion.cs:24:48:24:51 | [post] this access | UseUseExplosion.cs:24:65:24:68 | this access |
+| UseUseExplosion.cs:24:48:24:51 | [post] this access | UseUseExplosion.cs:24:3163:24:3168 | this access |
+| UseUseExplosion.cs:24:48:24:51 | access to property Prop | UseUseExplosion.cs:24:48:24:56 | ... > ... |
+| UseUseExplosion.cs:24:48:24:51 | access to property Prop | UseUseExplosion.cs:24:65:24:68 | access to property Prop |
+| UseUseExplosion.cs:24:48:24:51 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:48:24:51 | this access | UseUseExplosion.cs:24:65:24:68 | this access |
+| UseUseExplosion.cs:24:48:24:51 | this access | UseUseExplosion.cs:24:3163:24:3168 | this access |
+| UseUseExplosion.cs:24:65:24:68 | [post] this access | UseUseExplosion.cs:24:82:24:85 | this access |
+| UseUseExplosion.cs:24:65:24:68 | [post] this access | UseUseExplosion.cs:24:3148:24:3153 | this access |
+| UseUseExplosion.cs:24:65:24:68 | access to property Prop | UseUseExplosion.cs:24:65:24:73 | ... > ... |
+| UseUseExplosion.cs:24:65:24:68 | access to property Prop | UseUseExplosion.cs:24:82:24:85 | access to property Prop |
+| UseUseExplosion.cs:24:65:24:68 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:65:24:68 | this access | UseUseExplosion.cs:24:82:24:85 | this access |
+| UseUseExplosion.cs:24:65:24:68 | this access | UseUseExplosion.cs:24:3148:24:3153 | this access |
+| UseUseExplosion.cs:24:82:24:85 | [post] this access | UseUseExplosion.cs:24:99:24:102 | this access |
+| UseUseExplosion.cs:24:82:24:85 | [post] this access | UseUseExplosion.cs:24:3133:24:3138 | this access |
+| UseUseExplosion.cs:24:82:24:85 | access to property Prop | UseUseExplosion.cs:24:82:24:90 | ... > ... |
+| UseUseExplosion.cs:24:82:24:85 | access to property Prop | UseUseExplosion.cs:24:99:24:102 | access to property Prop |
+| UseUseExplosion.cs:24:82:24:85 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:82:24:85 | this access | UseUseExplosion.cs:24:99:24:102 | this access |
+| UseUseExplosion.cs:24:82:24:85 | this access | UseUseExplosion.cs:24:3133:24:3138 | this access |
+| UseUseExplosion.cs:24:99:24:102 | [post] this access | UseUseExplosion.cs:24:116:24:119 | this access |
+| UseUseExplosion.cs:24:99:24:102 | [post] this access | UseUseExplosion.cs:24:3118:24:3123 | this access |
+| UseUseExplosion.cs:24:99:24:102 | access to property Prop | UseUseExplosion.cs:24:99:24:107 | ... > ... |
+| UseUseExplosion.cs:24:99:24:102 | access to property Prop | UseUseExplosion.cs:24:116:24:119 | access to property Prop |
+| UseUseExplosion.cs:24:99:24:102 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:99:24:102 | this access | UseUseExplosion.cs:24:116:24:119 | this access |
+| UseUseExplosion.cs:24:99:24:102 | this access | UseUseExplosion.cs:24:3118:24:3123 | this access |
+| UseUseExplosion.cs:24:116:24:119 | [post] this access | UseUseExplosion.cs:24:133:24:136 | this access |
+| UseUseExplosion.cs:24:116:24:119 | [post] this access | UseUseExplosion.cs:24:3103:24:3108 | this access |
+| UseUseExplosion.cs:24:116:24:119 | access to property Prop | UseUseExplosion.cs:24:116:24:124 | ... > ... |
+| UseUseExplosion.cs:24:116:24:119 | access to property Prop | UseUseExplosion.cs:24:133:24:136 | access to property Prop |
+| UseUseExplosion.cs:24:116:24:119 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:116:24:119 | this access | UseUseExplosion.cs:24:133:24:136 | this access |
+| UseUseExplosion.cs:24:116:24:119 | this access | UseUseExplosion.cs:24:3103:24:3108 | this access |
+| UseUseExplosion.cs:24:133:24:136 | [post] this access | UseUseExplosion.cs:24:150:24:153 | this access |
+| UseUseExplosion.cs:24:133:24:136 | [post] this access | UseUseExplosion.cs:24:3088:24:3093 | this access |
+| UseUseExplosion.cs:24:133:24:136 | access to property Prop | UseUseExplosion.cs:24:133:24:141 | ... > ... |
+| UseUseExplosion.cs:24:133:24:136 | access to property Prop | UseUseExplosion.cs:24:150:24:153 | access to property Prop |
+| UseUseExplosion.cs:24:133:24:136 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:133:24:136 | this access | UseUseExplosion.cs:24:150:24:153 | this access |
+| UseUseExplosion.cs:24:133:24:136 | this access | UseUseExplosion.cs:24:3088:24:3093 | this access |
+| UseUseExplosion.cs:24:150:24:153 | [post] this access | UseUseExplosion.cs:24:167:24:170 | this access |
+| UseUseExplosion.cs:24:150:24:153 | [post] this access | UseUseExplosion.cs:24:3073:24:3078 | this access |
+| UseUseExplosion.cs:24:150:24:153 | access to property Prop | UseUseExplosion.cs:24:150:24:158 | ... > ... |
+| UseUseExplosion.cs:24:150:24:153 | access to property Prop | UseUseExplosion.cs:24:167:24:170 | access to property Prop |
+| UseUseExplosion.cs:24:150:24:153 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:150:24:153 | this access | UseUseExplosion.cs:24:167:24:170 | this access |
+| UseUseExplosion.cs:24:150:24:153 | this access | UseUseExplosion.cs:24:3073:24:3078 | this access |
+| UseUseExplosion.cs:24:167:24:170 | [post] this access | UseUseExplosion.cs:24:184:24:187 | this access |
+| UseUseExplosion.cs:24:167:24:170 | [post] this access | UseUseExplosion.cs:24:3058:24:3063 | this access |
+| UseUseExplosion.cs:24:167:24:170 | access to property Prop | UseUseExplosion.cs:24:167:24:175 | ... > ... |
+| UseUseExplosion.cs:24:167:24:170 | access to property Prop | UseUseExplosion.cs:24:184:24:187 | access to property Prop |
+| UseUseExplosion.cs:24:167:24:170 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:167:24:170 | this access | UseUseExplosion.cs:24:184:24:187 | this access |
+| UseUseExplosion.cs:24:167:24:170 | this access | UseUseExplosion.cs:24:3058:24:3063 | this access |
+| UseUseExplosion.cs:24:184:24:187 | [post] this access | UseUseExplosion.cs:24:201:24:204 | this access |
+| UseUseExplosion.cs:24:184:24:187 | [post] this access | UseUseExplosion.cs:24:3043:24:3048 | this access |
+| UseUseExplosion.cs:24:184:24:187 | access to property Prop | UseUseExplosion.cs:24:184:24:192 | ... > ... |
+| UseUseExplosion.cs:24:184:24:187 | access to property Prop | UseUseExplosion.cs:24:201:24:204 | access to property Prop |
+| UseUseExplosion.cs:24:184:24:187 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:184:24:187 | this access | UseUseExplosion.cs:24:201:24:204 | this access |
+| UseUseExplosion.cs:24:184:24:187 | this access | UseUseExplosion.cs:24:3043:24:3048 | this access |
+| UseUseExplosion.cs:24:201:24:204 | [post] this access | UseUseExplosion.cs:24:218:24:221 | this access |
+| UseUseExplosion.cs:24:201:24:204 | [post] this access | UseUseExplosion.cs:24:3028:24:3033 | this access |
+| UseUseExplosion.cs:24:201:24:204 | access to property Prop | UseUseExplosion.cs:24:201:24:209 | ... > ... |
+| UseUseExplosion.cs:24:201:24:204 | access to property Prop | UseUseExplosion.cs:24:218:24:221 | access to property Prop |
+| UseUseExplosion.cs:24:201:24:204 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:201:24:204 | this access | UseUseExplosion.cs:24:218:24:221 | this access |
+| UseUseExplosion.cs:24:201:24:204 | this access | UseUseExplosion.cs:24:3028:24:3033 | this access |
+| UseUseExplosion.cs:24:218:24:221 | [post] this access | UseUseExplosion.cs:24:235:24:238 | this access |
+| UseUseExplosion.cs:24:218:24:221 | [post] this access | UseUseExplosion.cs:24:3013:24:3018 | this access |
+| UseUseExplosion.cs:24:218:24:221 | access to property Prop | UseUseExplosion.cs:24:218:24:226 | ... > ... |
+| UseUseExplosion.cs:24:218:24:221 | access to property Prop | UseUseExplosion.cs:24:235:24:238 | access to property Prop |
+| UseUseExplosion.cs:24:218:24:221 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:218:24:221 | this access | UseUseExplosion.cs:24:235:24:238 | this access |
+| UseUseExplosion.cs:24:218:24:221 | this access | UseUseExplosion.cs:24:3013:24:3018 | this access |
+| UseUseExplosion.cs:24:235:24:238 | [post] this access | UseUseExplosion.cs:24:252:24:255 | this access |
+| UseUseExplosion.cs:24:235:24:238 | [post] this access | UseUseExplosion.cs:24:2998:24:3003 | this access |
+| UseUseExplosion.cs:24:235:24:238 | access to property Prop | UseUseExplosion.cs:24:235:24:243 | ... > ... |
+| UseUseExplosion.cs:24:235:24:238 | access to property Prop | UseUseExplosion.cs:24:252:24:255 | access to property Prop |
+| UseUseExplosion.cs:24:235:24:238 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:235:24:238 | this access | UseUseExplosion.cs:24:252:24:255 | this access |
+| UseUseExplosion.cs:24:235:24:238 | this access | UseUseExplosion.cs:24:2998:24:3003 | this access |
+| UseUseExplosion.cs:24:252:24:255 | [post] this access | UseUseExplosion.cs:24:269:24:272 | this access |
+| UseUseExplosion.cs:24:252:24:255 | [post] this access | UseUseExplosion.cs:24:2983:24:2988 | this access |
+| UseUseExplosion.cs:24:252:24:255 | access to property Prop | UseUseExplosion.cs:24:252:24:260 | ... > ... |
+| UseUseExplosion.cs:24:252:24:255 | access to property Prop | UseUseExplosion.cs:24:269:24:272 | access to property Prop |
+| UseUseExplosion.cs:24:252:24:255 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:252:24:255 | this access | UseUseExplosion.cs:24:269:24:272 | this access |
+| UseUseExplosion.cs:24:252:24:255 | this access | UseUseExplosion.cs:24:2983:24:2988 | this access |
+| UseUseExplosion.cs:24:269:24:272 | [post] this access | UseUseExplosion.cs:24:286:24:289 | this access |
+| UseUseExplosion.cs:24:269:24:272 | [post] this access | UseUseExplosion.cs:24:2968:24:2973 | this access |
+| UseUseExplosion.cs:24:269:24:272 | access to property Prop | UseUseExplosion.cs:24:269:24:277 | ... > ... |
+| UseUseExplosion.cs:24:269:24:272 | access to property Prop | UseUseExplosion.cs:24:286:24:289 | access to property Prop |
+| UseUseExplosion.cs:24:269:24:272 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:269:24:272 | this access | UseUseExplosion.cs:24:286:24:289 | this access |
+| UseUseExplosion.cs:24:269:24:272 | this access | UseUseExplosion.cs:24:2968:24:2973 | this access |
+| UseUseExplosion.cs:24:286:24:289 | [post] this access | UseUseExplosion.cs:24:303:24:306 | this access |
+| UseUseExplosion.cs:24:286:24:289 | [post] this access | UseUseExplosion.cs:24:2953:24:2958 | this access |
+| UseUseExplosion.cs:24:286:24:289 | access to property Prop | UseUseExplosion.cs:24:286:24:294 | ... > ... |
+| UseUseExplosion.cs:24:286:24:289 | access to property Prop | UseUseExplosion.cs:24:303:24:306 | access to property Prop |
+| UseUseExplosion.cs:24:286:24:289 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:286:24:289 | this access | UseUseExplosion.cs:24:303:24:306 | this access |
+| UseUseExplosion.cs:24:286:24:289 | this access | UseUseExplosion.cs:24:2953:24:2958 | this access |
+| UseUseExplosion.cs:24:303:24:306 | [post] this access | UseUseExplosion.cs:24:320:24:323 | this access |
+| UseUseExplosion.cs:24:303:24:306 | [post] this access | UseUseExplosion.cs:24:2938:24:2943 | this access |
+| UseUseExplosion.cs:24:303:24:306 | access to property Prop | UseUseExplosion.cs:24:303:24:311 | ... > ... |
+| UseUseExplosion.cs:24:303:24:306 | access to property Prop | UseUseExplosion.cs:24:320:24:323 | access to property Prop |
+| UseUseExplosion.cs:24:303:24:306 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:303:24:306 | this access | UseUseExplosion.cs:24:320:24:323 | this access |
+| UseUseExplosion.cs:24:303:24:306 | this access | UseUseExplosion.cs:24:2938:24:2943 | this access |
+| UseUseExplosion.cs:24:320:24:323 | [post] this access | UseUseExplosion.cs:24:337:24:340 | this access |
+| UseUseExplosion.cs:24:320:24:323 | [post] this access | UseUseExplosion.cs:24:2923:24:2928 | this access |
+| UseUseExplosion.cs:24:320:24:323 | access to property Prop | UseUseExplosion.cs:24:320:24:328 | ... > ... |
+| UseUseExplosion.cs:24:320:24:323 | access to property Prop | UseUseExplosion.cs:24:337:24:340 | access to property Prop |
+| UseUseExplosion.cs:24:320:24:323 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:320:24:323 | this access | UseUseExplosion.cs:24:337:24:340 | this access |
+| UseUseExplosion.cs:24:320:24:323 | this access | UseUseExplosion.cs:24:2923:24:2928 | this access |
+| UseUseExplosion.cs:24:337:24:340 | [post] this access | UseUseExplosion.cs:24:354:24:357 | this access |
+| UseUseExplosion.cs:24:337:24:340 | [post] this access | UseUseExplosion.cs:24:2908:24:2913 | this access |
+| UseUseExplosion.cs:24:337:24:340 | access to property Prop | UseUseExplosion.cs:24:337:24:345 | ... > ... |
+| UseUseExplosion.cs:24:337:24:340 | access to property Prop | UseUseExplosion.cs:24:354:24:357 | access to property Prop |
+| UseUseExplosion.cs:24:337:24:340 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:337:24:340 | this access | UseUseExplosion.cs:24:354:24:357 | this access |
+| UseUseExplosion.cs:24:337:24:340 | this access | UseUseExplosion.cs:24:2908:24:2913 | this access |
+| UseUseExplosion.cs:24:354:24:357 | [post] this access | UseUseExplosion.cs:24:371:24:374 | this access |
+| UseUseExplosion.cs:24:354:24:357 | [post] this access | UseUseExplosion.cs:24:2893:24:2898 | this access |
+| UseUseExplosion.cs:24:354:24:357 | access to property Prop | UseUseExplosion.cs:24:354:24:362 | ... > ... |
+| UseUseExplosion.cs:24:354:24:357 | access to property Prop | UseUseExplosion.cs:24:371:24:374 | access to property Prop |
+| UseUseExplosion.cs:24:354:24:357 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:354:24:357 | this access | UseUseExplosion.cs:24:371:24:374 | this access |
+| UseUseExplosion.cs:24:354:24:357 | this access | UseUseExplosion.cs:24:2893:24:2898 | this access |
+| UseUseExplosion.cs:24:371:24:374 | [post] this access | UseUseExplosion.cs:24:388:24:391 | this access |
+| UseUseExplosion.cs:24:371:24:374 | [post] this access | UseUseExplosion.cs:24:2878:24:2883 | this access |
+| UseUseExplosion.cs:24:371:24:374 | access to property Prop | UseUseExplosion.cs:24:371:24:379 | ... > ... |
+| UseUseExplosion.cs:24:371:24:374 | access to property Prop | UseUseExplosion.cs:24:388:24:391 | access to property Prop |
+| UseUseExplosion.cs:24:371:24:374 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:371:24:374 | this access | UseUseExplosion.cs:24:388:24:391 | this access |
+| UseUseExplosion.cs:24:371:24:374 | this access | UseUseExplosion.cs:24:2878:24:2883 | this access |
+| UseUseExplosion.cs:24:388:24:391 | [post] this access | UseUseExplosion.cs:24:405:24:408 | this access |
+| UseUseExplosion.cs:24:388:24:391 | [post] this access | UseUseExplosion.cs:24:2863:24:2868 | this access |
+| UseUseExplosion.cs:24:388:24:391 | access to property Prop | UseUseExplosion.cs:24:388:24:396 | ... > ... |
+| UseUseExplosion.cs:24:388:24:391 | access to property Prop | UseUseExplosion.cs:24:405:24:408 | access to property Prop |
+| UseUseExplosion.cs:24:388:24:391 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:388:24:391 | this access | UseUseExplosion.cs:24:405:24:408 | this access |
+| UseUseExplosion.cs:24:388:24:391 | this access | UseUseExplosion.cs:24:2863:24:2868 | this access |
+| UseUseExplosion.cs:24:405:24:408 | [post] this access | UseUseExplosion.cs:24:422:24:425 | this access |
+| UseUseExplosion.cs:24:405:24:408 | [post] this access | UseUseExplosion.cs:24:2848:24:2853 | this access |
+| UseUseExplosion.cs:24:405:24:408 | access to property Prop | UseUseExplosion.cs:24:405:24:413 | ... > ... |
+| UseUseExplosion.cs:24:405:24:408 | access to property Prop | UseUseExplosion.cs:24:422:24:425 | access to property Prop |
+| UseUseExplosion.cs:24:405:24:408 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:405:24:408 | this access | UseUseExplosion.cs:24:422:24:425 | this access |
+| UseUseExplosion.cs:24:405:24:408 | this access | UseUseExplosion.cs:24:2848:24:2853 | this access |
+| UseUseExplosion.cs:24:422:24:425 | [post] this access | UseUseExplosion.cs:24:439:24:442 | this access |
+| UseUseExplosion.cs:24:422:24:425 | [post] this access | UseUseExplosion.cs:24:2833:24:2838 | this access |
+| UseUseExplosion.cs:24:422:24:425 | access to property Prop | UseUseExplosion.cs:24:422:24:430 | ... > ... |
+| UseUseExplosion.cs:24:422:24:425 | access to property Prop | UseUseExplosion.cs:24:439:24:442 | access to property Prop |
+| UseUseExplosion.cs:24:422:24:425 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:422:24:425 | this access | UseUseExplosion.cs:24:439:24:442 | this access |
+| UseUseExplosion.cs:24:422:24:425 | this access | UseUseExplosion.cs:24:2833:24:2838 | this access |
+| UseUseExplosion.cs:24:439:24:442 | [post] this access | UseUseExplosion.cs:24:456:24:459 | this access |
+| UseUseExplosion.cs:24:439:24:442 | [post] this access | UseUseExplosion.cs:24:2818:24:2823 | this access |
+| UseUseExplosion.cs:24:439:24:442 | access to property Prop | UseUseExplosion.cs:24:439:24:447 | ... > ... |
+| UseUseExplosion.cs:24:439:24:442 | access to property Prop | UseUseExplosion.cs:24:456:24:459 | access to property Prop |
+| UseUseExplosion.cs:24:439:24:442 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:439:24:442 | this access | UseUseExplosion.cs:24:456:24:459 | this access |
+| UseUseExplosion.cs:24:439:24:442 | this access | UseUseExplosion.cs:24:2818:24:2823 | this access |
+| UseUseExplosion.cs:24:456:24:459 | [post] this access | UseUseExplosion.cs:24:473:24:476 | this access |
+| UseUseExplosion.cs:24:456:24:459 | [post] this access | UseUseExplosion.cs:24:2803:24:2808 | this access |
+| UseUseExplosion.cs:24:456:24:459 | access to property Prop | UseUseExplosion.cs:24:456:24:464 | ... > ... |
+| UseUseExplosion.cs:24:456:24:459 | access to property Prop | UseUseExplosion.cs:24:473:24:476 | access to property Prop |
+| UseUseExplosion.cs:24:456:24:459 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:456:24:459 | this access | UseUseExplosion.cs:24:473:24:476 | this access |
+| UseUseExplosion.cs:24:456:24:459 | this access | UseUseExplosion.cs:24:2803:24:2808 | this access |
+| UseUseExplosion.cs:24:473:24:476 | [post] this access | UseUseExplosion.cs:24:490:24:493 | this access |
+| UseUseExplosion.cs:24:473:24:476 | [post] this access | UseUseExplosion.cs:24:2788:24:2793 | this access |
+| UseUseExplosion.cs:24:473:24:476 | access to property Prop | UseUseExplosion.cs:24:473:24:481 | ... > ... |
+| UseUseExplosion.cs:24:473:24:476 | access to property Prop | UseUseExplosion.cs:24:490:24:493 | access to property Prop |
+| UseUseExplosion.cs:24:473:24:476 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:473:24:476 | this access | UseUseExplosion.cs:24:490:24:493 | this access |
+| UseUseExplosion.cs:24:473:24:476 | this access | UseUseExplosion.cs:24:2788:24:2793 | this access |
+| UseUseExplosion.cs:24:490:24:493 | [post] this access | UseUseExplosion.cs:24:507:24:510 | this access |
+| UseUseExplosion.cs:24:490:24:493 | [post] this access | UseUseExplosion.cs:24:2773:24:2778 | this access |
+| UseUseExplosion.cs:24:490:24:493 | access to property Prop | UseUseExplosion.cs:24:490:24:498 | ... > ... |
+| UseUseExplosion.cs:24:490:24:493 | access to property Prop | UseUseExplosion.cs:24:507:24:510 | access to property Prop |
+| UseUseExplosion.cs:24:490:24:493 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:490:24:493 | this access | UseUseExplosion.cs:24:507:24:510 | this access |
+| UseUseExplosion.cs:24:490:24:493 | this access | UseUseExplosion.cs:24:2773:24:2778 | this access |
+| UseUseExplosion.cs:24:507:24:510 | [post] this access | UseUseExplosion.cs:24:524:24:527 | this access |
+| UseUseExplosion.cs:24:507:24:510 | [post] this access | UseUseExplosion.cs:24:2758:24:2763 | this access |
+| UseUseExplosion.cs:24:507:24:510 | access to property Prop | UseUseExplosion.cs:24:507:24:515 | ... > ... |
+| UseUseExplosion.cs:24:507:24:510 | access to property Prop | UseUseExplosion.cs:24:524:24:527 | access to property Prop |
+| UseUseExplosion.cs:24:507:24:510 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:507:24:510 | this access | UseUseExplosion.cs:24:524:24:527 | this access |
+| UseUseExplosion.cs:24:507:24:510 | this access | UseUseExplosion.cs:24:2758:24:2763 | this access |
+| UseUseExplosion.cs:24:524:24:527 | [post] this access | UseUseExplosion.cs:24:541:24:544 | this access |
+| UseUseExplosion.cs:24:524:24:527 | [post] this access | UseUseExplosion.cs:24:2743:24:2748 | this access |
+| UseUseExplosion.cs:24:524:24:527 | access to property Prop | UseUseExplosion.cs:24:524:24:532 | ... > ... |
+| UseUseExplosion.cs:24:524:24:527 | access to property Prop | UseUseExplosion.cs:24:541:24:544 | access to property Prop |
+| UseUseExplosion.cs:24:524:24:527 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:524:24:527 | this access | UseUseExplosion.cs:24:541:24:544 | this access |
+| UseUseExplosion.cs:24:524:24:527 | this access | UseUseExplosion.cs:24:2743:24:2748 | this access |
+| UseUseExplosion.cs:24:541:24:544 | [post] this access | UseUseExplosion.cs:24:558:24:561 | this access |
+| UseUseExplosion.cs:24:541:24:544 | [post] this access | UseUseExplosion.cs:24:2728:24:2733 | this access |
+| UseUseExplosion.cs:24:541:24:544 | access to property Prop | UseUseExplosion.cs:24:541:24:549 | ... > ... |
+| UseUseExplosion.cs:24:541:24:544 | access to property Prop | UseUseExplosion.cs:24:558:24:561 | access to property Prop |
+| UseUseExplosion.cs:24:541:24:544 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:541:24:544 | this access | UseUseExplosion.cs:24:558:24:561 | this access |
+| UseUseExplosion.cs:24:541:24:544 | this access | UseUseExplosion.cs:24:2728:24:2733 | this access |
+| UseUseExplosion.cs:24:558:24:561 | [post] this access | UseUseExplosion.cs:24:575:24:578 | this access |
+| UseUseExplosion.cs:24:558:24:561 | [post] this access | UseUseExplosion.cs:24:2713:24:2718 | this access |
+| UseUseExplosion.cs:24:558:24:561 | access to property Prop | UseUseExplosion.cs:24:558:24:566 | ... > ... |
+| UseUseExplosion.cs:24:558:24:561 | access to property Prop | UseUseExplosion.cs:24:575:24:578 | access to property Prop |
+| UseUseExplosion.cs:24:558:24:561 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:558:24:561 | this access | UseUseExplosion.cs:24:575:24:578 | this access |
+| UseUseExplosion.cs:24:558:24:561 | this access | UseUseExplosion.cs:24:2713:24:2718 | this access |
+| UseUseExplosion.cs:24:575:24:578 | [post] this access | UseUseExplosion.cs:24:592:24:595 | this access |
+| UseUseExplosion.cs:24:575:24:578 | [post] this access | UseUseExplosion.cs:24:2698:24:2703 | this access |
+| UseUseExplosion.cs:24:575:24:578 | access to property Prop | UseUseExplosion.cs:24:575:24:583 | ... > ... |
+| UseUseExplosion.cs:24:575:24:578 | access to property Prop | UseUseExplosion.cs:24:592:24:595 | access to property Prop |
+| UseUseExplosion.cs:24:575:24:578 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:575:24:578 | this access | UseUseExplosion.cs:24:592:24:595 | this access |
+| UseUseExplosion.cs:24:575:24:578 | this access | UseUseExplosion.cs:24:2698:24:2703 | this access |
+| UseUseExplosion.cs:24:592:24:595 | [post] this access | UseUseExplosion.cs:24:609:24:612 | this access |
+| UseUseExplosion.cs:24:592:24:595 | [post] this access | UseUseExplosion.cs:24:2683:24:2688 | this access |
+| UseUseExplosion.cs:24:592:24:595 | access to property Prop | UseUseExplosion.cs:24:592:24:600 | ... > ... |
+| UseUseExplosion.cs:24:592:24:595 | access to property Prop | UseUseExplosion.cs:24:609:24:612 | access to property Prop |
+| UseUseExplosion.cs:24:592:24:595 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:592:24:595 | this access | UseUseExplosion.cs:24:609:24:612 | this access |
+| UseUseExplosion.cs:24:592:24:595 | this access | UseUseExplosion.cs:24:2683:24:2688 | this access |
+| UseUseExplosion.cs:24:609:24:612 | [post] this access | UseUseExplosion.cs:24:626:24:629 | this access |
+| UseUseExplosion.cs:24:609:24:612 | [post] this access | UseUseExplosion.cs:24:2668:24:2673 | this access |
+| UseUseExplosion.cs:24:609:24:612 | access to property Prop | UseUseExplosion.cs:24:609:24:617 | ... > ... |
+| UseUseExplosion.cs:24:609:24:612 | access to property Prop | UseUseExplosion.cs:24:626:24:629 | access to property Prop |
+| UseUseExplosion.cs:24:609:24:612 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:609:24:612 | this access | UseUseExplosion.cs:24:626:24:629 | this access |
+| UseUseExplosion.cs:24:609:24:612 | this access | UseUseExplosion.cs:24:2668:24:2673 | this access |
+| UseUseExplosion.cs:24:626:24:629 | [post] this access | UseUseExplosion.cs:24:643:24:646 | this access |
+| UseUseExplosion.cs:24:626:24:629 | [post] this access | UseUseExplosion.cs:24:2653:24:2658 | this access |
+| UseUseExplosion.cs:24:626:24:629 | access to property Prop | UseUseExplosion.cs:24:626:24:634 | ... > ... |
+| UseUseExplosion.cs:24:626:24:629 | access to property Prop | UseUseExplosion.cs:24:643:24:646 | access to property Prop |
+| UseUseExplosion.cs:24:626:24:629 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:626:24:629 | this access | UseUseExplosion.cs:24:643:24:646 | this access |
+| UseUseExplosion.cs:24:626:24:629 | this access | UseUseExplosion.cs:24:2653:24:2658 | this access |
+| UseUseExplosion.cs:24:643:24:646 | [post] this access | UseUseExplosion.cs:24:660:24:663 | this access |
+| UseUseExplosion.cs:24:643:24:646 | [post] this access | UseUseExplosion.cs:24:2638:24:2643 | this access |
+| UseUseExplosion.cs:24:643:24:646 | access to property Prop | UseUseExplosion.cs:24:643:24:651 | ... > ... |
+| UseUseExplosion.cs:24:643:24:646 | access to property Prop | UseUseExplosion.cs:24:660:24:663 | access to property Prop |
+| UseUseExplosion.cs:24:643:24:646 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:643:24:646 | this access | UseUseExplosion.cs:24:660:24:663 | this access |
+| UseUseExplosion.cs:24:643:24:646 | this access | UseUseExplosion.cs:24:2638:24:2643 | this access |
+| UseUseExplosion.cs:24:660:24:663 | [post] this access | UseUseExplosion.cs:24:677:24:680 | this access |
+| UseUseExplosion.cs:24:660:24:663 | [post] this access | UseUseExplosion.cs:24:2623:24:2628 | this access |
+| UseUseExplosion.cs:24:660:24:663 | access to property Prop | UseUseExplosion.cs:24:660:24:668 | ... > ... |
+| UseUseExplosion.cs:24:660:24:663 | access to property Prop | UseUseExplosion.cs:24:677:24:680 | access to property Prop |
+| UseUseExplosion.cs:24:660:24:663 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:660:24:663 | this access | UseUseExplosion.cs:24:677:24:680 | this access |
+| UseUseExplosion.cs:24:660:24:663 | this access | UseUseExplosion.cs:24:2623:24:2628 | this access |
+| UseUseExplosion.cs:24:677:24:680 | [post] this access | UseUseExplosion.cs:24:694:24:697 | this access |
+| UseUseExplosion.cs:24:677:24:680 | [post] this access | UseUseExplosion.cs:24:2608:24:2613 | this access |
+| UseUseExplosion.cs:24:677:24:680 | access to property Prop | UseUseExplosion.cs:24:677:24:685 | ... > ... |
+| UseUseExplosion.cs:24:677:24:680 | access to property Prop | UseUseExplosion.cs:24:694:24:697 | access to property Prop |
+| UseUseExplosion.cs:24:677:24:680 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:677:24:680 | this access | UseUseExplosion.cs:24:694:24:697 | this access |
+| UseUseExplosion.cs:24:677:24:680 | this access | UseUseExplosion.cs:24:2608:24:2613 | this access |
+| UseUseExplosion.cs:24:694:24:697 | [post] this access | UseUseExplosion.cs:24:711:24:714 | this access |
+| UseUseExplosion.cs:24:694:24:697 | [post] this access | UseUseExplosion.cs:24:2593:24:2598 | this access |
+| UseUseExplosion.cs:24:694:24:697 | access to property Prop | UseUseExplosion.cs:24:694:24:702 | ... > ... |
+| UseUseExplosion.cs:24:694:24:697 | access to property Prop | UseUseExplosion.cs:24:711:24:714 | access to property Prop |
+| UseUseExplosion.cs:24:694:24:697 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:694:24:697 | this access | UseUseExplosion.cs:24:711:24:714 | this access |
+| UseUseExplosion.cs:24:694:24:697 | this access | UseUseExplosion.cs:24:2593:24:2598 | this access |
+| UseUseExplosion.cs:24:711:24:714 | [post] this access | UseUseExplosion.cs:24:728:24:731 | this access |
+| UseUseExplosion.cs:24:711:24:714 | [post] this access | UseUseExplosion.cs:24:2578:24:2583 | this access |
+| UseUseExplosion.cs:24:711:24:714 | access to property Prop | UseUseExplosion.cs:24:711:24:719 | ... > ... |
+| UseUseExplosion.cs:24:711:24:714 | access to property Prop | UseUseExplosion.cs:24:728:24:731 | access to property Prop |
+| UseUseExplosion.cs:24:711:24:714 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:711:24:714 | this access | UseUseExplosion.cs:24:728:24:731 | this access |
+| UseUseExplosion.cs:24:711:24:714 | this access | UseUseExplosion.cs:24:2578:24:2583 | this access |
+| UseUseExplosion.cs:24:728:24:731 | [post] this access | UseUseExplosion.cs:24:745:24:748 | this access |
+| UseUseExplosion.cs:24:728:24:731 | [post] this access | UseUseExplosion.cs:24:2563:24:2568 | this access |
+| UseUseExplosion.cs:24:728:24:731 | access to property Prop | UseUseExplosion.cs:24:728:24:736 | ... > ... |
+| UseUseExplosion.cs:24:728:24:731 | access to property Prop | UseUseExplosion.cs:24:745:24:748 | access to property Prop |
+| UseUseExplosion.cs:24:728:24:731 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:728:24:731 | this access | UseUseExplosion.cs:24:745:24:748 | this access |
+| UseUseExplosion.cs:24:728:24:731 | this access | UseUseExplosion.cs:24:2563:24:2568 | this access |
+| UseUseExplosion.cs:24:745:24:748 | [post] this access | UseUseExplosion.cs:24:762:24:765 | this access |
+| UseUseExplosion.cs:24:745:24:748 | [post] this access | UseUseExplosion.cs:24:2548:24:2553 | this access |
+| UseUseExplosion.cs:24:745:24:748 | access to property Prop | UseUseExplosion.cs:24:745:24:753 | ... > ... |
+| UseUseExplosion.cs:24:745:24:748 | access to property Prop | UseUseExplosion.cs:24:762:24:765 | access to property Prop |
+| UseUseExplosion.cs:24:745:24:748 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:745:24:748 | this access | UseUseExplosion.cs:24:762:24:765 | this access |
+| UseUseExplosion.cs:24:745:24:748 | this access | UseUseExplosion.cs:24:2548:24:2553 | this access |
+| UseUseExplosion.cs:24:762:24:765 | [post] this access | UseUseExplosion.cs:24:779:24:782 | this access |
+| UseUseExplosion.cs:24:762:24:765 | [post] this access | UseUseExplosion.cs:24:2533:24:2538 | this access |
+| UseUseExplosion.cs:24:762:24:765 | access to property Prop | UseUseExplosion.cs:24:762:24:770 | ... > ... |
+| UseUseExplosion.cs:24:762:24:765 | access to property Prop | UseUseExplosion.cs:24:779:24:782 | access to property Prop |
+| UseUseExplosion.cs:24:762:24:765 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:762:24:765 | this access | UseUseExplosion.cs:24:779:24:782 | this access |
+| UseUseExplosion.cs:24:762:24:765 | this access | UseUseExplosion.cs:24:2533:24:2538 | this access |
+| UseUseExplosion.cs:24:779:24:782 | [post] this access | UseUseExplosion.cs:24:796:24:799 | this access |
+| UseUseExplosion.cs:24:779:24:782 | [post] this access | UseUseExplosion.cs:24:2518:24:2523 | this access |
+| UseUseExplosion.cs:24:779:24:782 | access to property Prop | UseUseExplosion.cs:24:779:24:787 | ... > ... |
+| UseUseExplosion.cs:24:779:24:782 | access to property Prop | UseUseExplosion.cs:24:796:24:799 | access to property Prop |
+| UseUseExplosion.cs:24:779:24:782 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:779:24:782 | this access | UseUseExplosion.cs:24:796:24:799 | this access |
+| UseUseExplosion.cs:24:779:24:782 | this access | UseUseExplosion.cs:24:2518:24:2523 | this access |
+| UseUseExplosion.cs:24:796:24:799 | [post] this access | UseUseExplosion.cs:24:813:24:816 | this access |
+| UseUseExplosion.cs:24:796:24:799 | [post] this access | UseUseExplosion.cs:24:2503:24:2508 | this access |
+| UseUseExplosion.cs:24:796:24:799 | access to property Prop | UseUseExplosion.cs:24:796:24:804 | ... > ... |
+| UseUseExplosion.cs:24:796:24:799 | access to property Prop | UseUseExplosion.cs:24:813:24:816 | access to property Prop |
+| UseUseExplosion.cs:24:796:24:799 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:796:24:799 | this access | UseUseExplosion.cs:24:813:24:816 | this access |
+| UseUseExplosion.cs:24:796:24:799 | this access | UseUseExplosion.cs:24:2503:24:2508 | this access |
+| UseUseExplosion.cs:24:813:24:816 | [post] this access | UseUseExplosion.cs:24:830:24:833 | this access |
+| UseUseExplosion.cs:24:813:24:816 | [post] this access | UseUseExplosion.cs:24:2488:24:2493 | this access |
+| UseUseExplosion.cs:24:813:24:816 | access to property Prop | UseUseExplosion.cs:24:813:24:821 | ... > ... |
+| UseUseExplosion.cs:24:813:24:816 | access to property Prop | UseUseExplosion.cs:24:830:24:833 | access to property Prop |
+| UseUseExplosion.cs:24:813:24:816 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:813:24:816 | this access | UseUseExplosion.cs:24:830:24:833 | this access |
+| UseUseExplosion.cs:24:813:24:816 | this access | UseUseExplosion.cs:24:2488:24:2493 | this access |
+| UseUseExplosion.cs:24:830:24:833 | [post] this access | UseUseExplosion.cs:24:847:24:850 | this access |
+| UseUseExplosion.cs:24:830:24:833 | [post] this access | UseUseExplosion.cs:24:2473:24:2478 | this access |
+| UseUseExplosion.cs:24:830:24:833 | access to property Prop | UseUseExplosion.cs:24:830:24:838 | ... > ... |
+| UseUseExplosion.cs:24:830:24:833 | access to property Prop | UseUseExplosion.cs:24:847:24:850 | access to property Prop |
+| UseUseExplosion.cs:24:830:24:833 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:830:24:833 | this access | UseUseExplosion.cs:24:847:24:850 | this access |
+| UseUseExplosion.cs:24:830:24:833 | this access | UseUseExplosion.cs:24:2473:24:2478 | this access |
+| UseUseExplosion.cs:24:847:24:850 | [post] this access | UseUseExplosion.cs:24:864:24:867 | this access |
+| UseUseExplosion.cs:24:847:24:850 | [post] this access | UseUseExplosion.cs:24:2458:24:2463 | this access |
+| UseUseExplosion.cs:24:847:24:850 | access to property Prop | UseUseExplosion.cs:24:847:24:855 | ... > ... |
+| UseUseExplosion.cs:24:847:24:850 | access to property Prop | UseUseExplosion.cs:24:864:24:867 | access to property Prop |
+| UseUseExplosion.cs:24:847:24:850 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:847:24:850 | this access | UseUseExplosion.cs:24:864:24:867 | this access |
+| UseUseExplosion.cs:24:847:24:850 | this access | UseUseExplosion.cs:24:2458:24:2463 | this access |
+| UseUseExplosion.cs:24:864:24:867 | [post] this access | UseUseExplosion.cs:24:881:24:884 | this access |
+| UseUseExplosion.cs:24:864:24:867 | [post] this access | UseUseExplosion.cs:24:2443:24:2448 | this access |
+| UseUseExplosion.cs:24:864:24:867 | access to property Prop | UseUseExplosion.cs:24:864:24:872 | ... > ... |
+| UseUseExplosion.cs:24:864:24:867 | access to property Prop | UseUseExplosion.cs:24:881:24:884 | access to property Prop |
+| UseUseExplosion.cs:24:864:24:867 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:864:24:867 | this access | UseUseExplosion.cs:24:881:24:884 | this access |
+| UseUseExplosion.cs:24:864:24:867 | this access | UseUseExplosion.cs:24:2443:24:2448 | this access |
+| UseUseExplosion.cs:24:881:24:884 | [post] this access | UseUseExplosion.cs:24:898:24:901 | this access |
+| UseUseExplosion.cs:24:881:24:884 | [post] this access | UseUseExplosion.cs:24:2428:24:2433 | this access |
+| UseUseExplosion.cs:24:881:24:884 | access to property Prop | UseUseExplosion.cs:24:881:24:889 | ... > ... |
+| UseUseExplosion.cs:24:881:24:884 | access to property Prop | UseUseExplosion.cs:24:898:24:901 | access to property Prop |
+| UseUseExplosion.cs:24:881:24:884 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:881:24:884 | this access | UseUseExplosion.cs:24:898:24:901 | this access |
+| UseUseExplosion.cs:24:881:24:884 | this access | UseUseExplosion.cs:24:2428:24:2433 | this access |
+| UseUseExplosion.cs:24:898:24:901 | [post] this access | UseUseExplosion.cs:24:915:24:918 | this access |
+| UseUseExplosion.cs:24:898:24:901 | [post] this access | UseUseExplosion.cs:24:2413:24:2418 | this access |
+| UseUseExplosion.cs:24:898:24:901 | access to property Prop | UseUseExplosion.cs:24:898:24:906 | ... > ... |
+| UseUseExplosion.cs:24:898:24:901 | access to property Prop | UseUseExplosion.cs:24:915:24:918 | access to property Prop |
+| UseUseExplosion.cs:24:898:24:901 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:898:24:901 | this access | UseUseExplosion.cs:24:915:24:918 | this access |
+| UseUseExplosion.cs:24:898:24:901 | this access | UseUseExplosion.cs:24:2413:24:2418 | this access |
+| UseUseExplosion.cs:24:915:24:918 | [post] this access | UseUseExplosion.cs:24:932:24:935 | this access |
+| UseUseExplosion.cs:24:915:24:918 | [post] this access | UseUseExplosion.cs:24:2398:24:2403 | this access |
+| UseUseExplosion.cs:24:915:24:918 | access to property Prop | UseUseExplosion.cs:24:915:24:923 | ... > ... |
+| UseUseExplosion.cs:24:915:24:918 | access to property Prop | UseUseExplosion.cs:24:932:24:935 | access to property Prop |
+| UseUseExplosion.cs:24:915:24:918 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:915:24:918 | this access | UseUseExplosion.cs:24:932:24:935 | this access |
+| UseUseExplosion.cs:24:915:24:918 | this access | UseUseExplosion.cs:24:2398:24:2403 | this access |
+| UseUseExplosion.cs:24:932:24:935 | [post] this access | UseUseExplosion.cs:24:949:24:952 | this access |
+| UseUseExplosion.cs:24:932:24:935 | [post] this access | UseUseExplosion.cs:24:2383:24:2388 | this access |
+| UseUseExplosion.cs:24:932:24:935 | access to property Prop | UseUseExplosion.cs:24:932:24:940 | ... > ... |
+| UseUseExplosion.cs:24:932:24:935 | access to property Prop | UseUseExplosion.cs:24:949:24:952 | access to property Prop |
+| UseUseExplosion.cs:24:932:24:935 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:932:24:935 | this access | UseUseExplosion.cs:24:949:24:952 | this access |
+| UseUseExplosion.cs:24:932:24:935 | this access | UseUseExplosion.cs:24:2383:24:2388 | this access |
+| UseUseExplosion.cs:24:949:24:952 | [post] this access | UseUseExplosion.cs:24:966:24:969 | this access |
+| UseUseExplosion.cs:24:949:24:952 | [post] this access | UseUseExplosion.cs:24:2368:24:2373 | this access |
+| UseUseExplosion.cs:24:949:24:952 | access to property Prop | UseUseExplosion.cs:24:949:24:957 | ... > ... |
+| UseUseExplosion.cs:24:949:24:952 | access to property Prop | UseUseExplosion.cs:24:966:24:969 | access to property Prop |
+| UseUseExplosion.cs:24:949:24:952 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:949:24:952 | this access | UseUseExplosion.cs:24:966:24:969 | this access |
+| UseUseExplosion.cs:24:949:24:952 | this access | UseUseExplosion.cs:24:2368:24:2373 | this access |
+| UseUseExplosion.cs:24:966:24:969 | [post] this access | UseUseExplosion.cs:24:983:24:986 | this access |
+| UseUseExplosion.cs:24:966:24:969 | [post] this access | UseUseExplosion.cs:24:2353:24:2358 | this access |
+| UseUseExplosion.cs:24:966:24:969 | access to property Prop | UseUseExplosion.cs:24:966:24:974 | ... > ... |
+| UseUseExplosion.cs:24:966:24:969 | access to property Prop | UseUseExplosion.cs:24:983:24:986 | access to property Prop |
+| UseUseExplosion.cs:24:966:24:969 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:966:24:969 | this access | UseUseExplosion.cs:24:983:24:986 | this access |
+| UseUseExplosion.cs:24:966:24:969 | this access | UseUseExplosion.cs:24:2353:24:2358 | this access |
+| UseUseExplosion.cs:24:983:24:986 | [post] this access | UseUseExplosion.cs:24:1000:24:1003 | this access |
+| UseUseExplosion.cs:24:983:24:986 | [post] this access | UseUseExplosion.cs:24:2338:24:2343 | this access |
+| UseUseExplosion.cs:24:983:24:986 | access to property Prop | UseUseExplosion.cs:24:983:24:991 | ... > ... |
+| UseUseExplosion.cs:24:983:24:986 | access to property Prop | UseUseExplosion.cs:24:1000:24:1003 | access to property Prop |
+| UseUseExplosion.cs:24:983:24:986 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:983:24:986 | this access | UseUseExplosion.cs:24:1000:24:1003 | this access |
+| UseUseExplosion.cs:24:983:24:986 | this access | UseUseExplosion.cs:24:2338:24:2343 | this access |
+| UseUseExplosion.cs:24:1000:24:1003 | [post] this access | UseUseExplosion.cs:24:1017:24:1020 | this access |
+| UseUseExplosion.cs:24:1000:24:1003 | [post] this access | UseUseExplosion.cs:24:2323:24:2328 | this access |
+| UseUseExplosion.cs:24:1000:24:1003 | access to property Prop | UseUseExplosion.cs:24:1000:24:1008 | ... > ... |
+| UseUseExplosion.cs:24:1000:24:1003 | access to property Prop | UseUseExplosion.cs:24:1017:24:1020 | access to property Prop |
+| UseUseExplosion.cs:24:1000:24:1003 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:1000:24:1003 | this access | UseUseExplosion.cs:24:1017:24:1020 | this access |
+| UseUseExplosion.cs:24:1000:24:1003 | this access | UseUseExplosion.cs:24:2323:24:2328 | this access |
+| UseUseExplosion.cs:24:1017:24:1020 | [post] this access | UseUseExplosion.cs:24:1034:24:1037 | this access |
+| UseUseExplosion.cs:24:1017:24:1020 | [post] this access | UseUseExplosion.cs:24:2308:24:2313 | this access |
+| UseUseExplosion.cs:24:1017:24:1020 | access to property Prop | UseUseExplosion.cs:24:1017:24:1025 | ... > ... |
+| UseUseExplosion.cs:24:1017:24:1020 | access to property Prop | UseUseExplosion.cs:24:1034:24:1037 | access to property Prop |
+| UseUseExplosion.cs:24:1017:24:1020 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:1017:24:1020 | this access | UseUseExplosion.cs:24:1034:24:1037 | this access |
+| UseUseExplosion.cs:24:1017:24:1020 | this access | UseUseExplosion.cs:24:2308:24:2313 | this access |
+| UseUseExplosion.cs:24:1034:24:1037 | [post] this access | UseUseExplosion.cs:24:1051:24:1054 | this access |
+| UseUseExplosion.cs:24:1034:24:1037 | [post] this access | UseUseExplosion.cs:24:2293:24:2298 | this access |
+| UseUseExplosion.cs:24:1034:24:1037 | access to property Prop | UseUseExplosion.cs:24:1034:24:1042 | ... > ... |
+| UseUseExplosion.cs:24:1034:24:1037 | access to property Prop | UseUseExplosion.cs:24:1051:24:1054 | access to property Prop |
+| UseUseExplosion.cs:24:1034:24:1037 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:1034:24:1037 | this access | UseUseExplosion.cs:24:1051:24:1054 | this access |
+| UseUseExplosion.cs:24:1034:24:1037 | this access | UseUseExplosion.cs:24:2293:24:2298 | this access |
+| UseUseExplosion.cs:24:1051:24:1054 | [post] this access | UseUseExplosion.cs:24:1068:24:1071 | this access |
+| UseUseExplosion.cs:24:1051:24:1054 | [post] this access | UseUseExplosion.cs:24:2278:24:2283 | this access |
+| UseUseExplosion.cs:24:1051:24:1054 | access to property Prop | UseUseExplosion.cs:24:1051:24:1059 | ... > ... |
+| UseUseExplosion.cs:24:1051:24:1054 | access to property Prop | UseUseExplosion.cs:24:1068:24:1071 | access to property Prop |
+| UseUseExplosion.cs:24:1051:24:1054 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:1051:24:1054 | this access | UseUseExplosion.cs:24:1068:24:1071 | this access |
+| UseUseExplosion.cs:24:1051:24:1054 | this access | UseUseExplosion.cs:24:2278:24:2283 | this access |
+| UseUseExplosion.cs:24:1068:24:1071 | [post] this access | UseUseExplosion.cs:24:1085:24:1088 | this access |
+| UseUseExplosion.cs:24:1068:24:1071 | [post] this access | UseUseExplosion.cs:24:2263:24:2268 | this access |
+| UseUseExplosion.cs:24:1068:24:1071 | access to property Prop | UseUseExplosion.cs:24:1068:24:1076 | ... > ... |
+| UseUseExplosion.cs:24:1068:24:1071 | access to property Prop | UseUseExplosion.cs:24:1085:24:1088 | access to property Prop |
+| UseUseExplosion.cs:24:1068:24:1071 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:1068:24:1071 | this access | UseUseExplosion.cs:24:1085:24:1088 | this access |
+| UseUseExplosion.cs:24:1068:24:1071 | this access | UseUseExplosion.cs:24:2263:24:2268 | this access |
+| UseUseExplosion.cs:24:1085:24:1088 | [post] this access | UseUseExplosion.cs:24:1102:24:1105 | this access |
+| UseUseExplosion.cs:24:1085:24:1088 | [post] this access | UseUseExplosion.cs:24:2248:24:2253 | this access |
+| UseUseExplosion.cs:24:1085:24:1088 | access to property Prop | UseUseExplosion.cs:24:1085:24:1093 | ... > ... |
+| UseUseExplosion.cs:24:1085:24:1088 | access to property Prop | UseUseExplosion.cs:24:1102:24:1105 | access to property Prop |
+| UseUseExplosion.cs:24:1085:24:1088 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:1085:24:1088 | this access | UseUseExplosion.cs:24:1102:24:1105 | this access |
+| UseUseExplosion.cs:24:1085:24:1088 | this access | UseUseExplosion.cs:24:2248:24:2253 | this access |
+| UseUseExplosion.cs:24:1102:24:1105 | [post] this access | UseUseExplosion.cs:24:1119:24:1122 | this access |
+| UseUseExplosion.cs:24:1102:24:1105 | [post] this access | UseUseExplosion.cs:24:2233:24:2238 | this access |
+| UseUseExplosion.cs:24:1102:24:1105 | access to property Prop | UseUseExplosion.cs:24:1102:24:1110 | ... > ... |
+| UseUseExplosion.cs:24:1102:24:1105 | access to property Prop | UseUseExplosion.cs:24:1119:24:1122 | access to property Prop |
+| UseUseExplosion.cs:24:1102:24:1105 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:1102:24:1105 | this access | UseUseExplosion.cs:24:1119:24:1122 | this access |
+| UseUseExplosion.cs:24:1102:24:1105 | this access | UseUseExplosion.cs:24:2233:24:2238 | this access |
+| UseUseExplosion.cs:24:1119:24:1122 | [post] this access | UseUseExplosion.cs:24:1136:24:1139 | this access |
+| UseUseExplosion.cs:24:1119:24:1122 | [post] this access | UseUseExplosion.cs:24:2218:24:2223 | this access |
+| UseUseExplosion.cs:24:1119:24:1122 | access to property Prop | UseUseExplosion.cs:24:1119:24:1127 | ... > ... |
+| UseUseExplosion.cs:24:1119:24:1122 | access to property Prop | UseUseExplosion.cs:24:1136:24:1139 | access to property Prop |
+| UseUseExplosion.cs:24:1119:24:1122 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:1119:24:1122 | this access | UseUseExplosion.cs:24:1136:24:1139 | this access |
+| UseUseExplosion.cs:24:1119:24:1122 | this access | UseUseExplosion.cs:24:2218:24:2223 | this access |
+| UseUseExplosion.cs:24:1136:24:1139 | [post] this access | UseUseExplosion.cs:24:1153:24:1156 | this access |
+| UseUseExplosion.cs:24:1136:24:1139 | [post] this access | UseUseExplosion.cs:24:2203:24:2208 | this access |
+| UseUseExplosion.cs:24:1136:24:1139 | access to property Prop | UseUseExplosion.cs:24:1136:24:1144 | ... > ... |
+| UseUseExplosion.cs:24:1136:24:1139 | access to property Prop | UseUseExplosion.cs:24:1153:24:1156 | access to property Prop |
+| UseUseExplosion.cs:24:1136:24:1139 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:1136:24:1139 | this access | UseUseExplosion.cs:24:1153:24:1156 | this access |
+| UseUseExplosion.cs:24:1136:24:1139 | this access | UseUseExplosion.cs:24:2203:24:2208 | this access |
+| UseUseExplosion.cs:24:1153:24:1156 | [post] this access | UseUseExplosion.cs:24:1170:24:1173 | this access |
+| UseUseExplosion.cs:24:1153:24:1156 | [post] this access | UseUseExplosion.cs:24:2188:24:2193 | this access |
+| UseUseExplosion.cs:24:1153:24:1156 | access to property Prop | UseUseExplosion.cs:24:1153:24:1161 | ... > ... |
+| UseUseExplosion.cs:24:1153:24:1156 | access to property Prop | UseUseExplosion.cs:24:1170:24:1173 | access to property Prop |
+| UseUseExplosion.cs:24:1153:24:1156 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:1153:24:1156 | this access | UseUseExplosion.cs:24:1170:24:1173 | this access |
+| UseUseExplosion.cs:24:1153:24:1156 | this access | UseUseExplosion.cs:24:2188:24:2193 | this access |
+| UseUseExplosion.cs:24:1170:24:1173 | [post] this access | UseUseExplosion.cs:24:1187:24:1190 | this access |
+| UseUseExplosion.cs:24:1170:24:1173 | [post] this access | UseUseExplosion.cs:24:2173:24:2178 | this access |
+| UseUseExplosion.cs:24:1170:24:1173 | access to property Prop | UseUseExplosion.cs:24:1170:24:1178 | ... > ... |
+| UseUseExplosion.cs:24:1170:24:1173 | access to property Prop | UseUseExplosion.cs:24:1187:24:1190 | access to property Prop |
+| UseUseExplosion.cs:24:1170:24:1173 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:1170:24:1173 | this access | UseUseExplosion.cs:24:1187:24:1190 | this access |
+| UseUseExplosion.cs:24:1170:24:1173 | this access | UseUseExplosion.cs:24:2173:24:2178 | this access |
+| UseUseExplosion.cs:24:1187:24:1190 | [post] this access | UseUseExplosion.cs:24:1204:24:1207 | this access |
+| UseUseExplosion.cs:24:1187:24:1190 | [post] this access | UseUseExplosion.cs:24:2158:24:2163 | this access |
+| UseUseExplosion.cs:24:1187:24:1190 | access to property Prop | UseUseExplosion.cs:24:1187:24:1195 | ... > ... |
+| UseUseExplosion.cs:24:1187:24:1190 | access to property Prop | UseUseExplosion.cs:24:1204:24:1207 | access to property Prop |
+| UseUseExplosion.cs:24:1187:24:1190 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:1187:24:1190 | this access | UseUseExplosion.cs:24:1204:24:1207 | this access |
+| UseUseExplosion.cs:24:1187:24:1190 | this access | UseUseExplosion.cs:24:2158:24:2163 | this access |
+| UseUseExplosion.cs:24:1204:24:1207 | [post] this access | UseUseExplosion.cs:24:1221:24:1224 | this access |
+| UseUseExplosion.cs:24:1204:24:1207 | [post] this access | UseUseExplosion.cs:24:2143:24:2148 | this access |
+| UseUseExplosion.cs:24:1204:24:1207 | access to property Prop | UseUseExplosion.cs:24:1204:24:1212 | ... > ... |
+| UseUseExplosion.cs:24:1204:24:1207 | access to property Prop | UseUseExplosion.cs:24:1221:24:1224 | access to property Prop |
+| UseUseExplosion.cs:24:1204:24:1207 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:1204:24:1207 | this access | UseUseExplosion.cs:24:1221:24:1224 | this access |
+| UseUseExplosion.cs:24:1204:24:1207 | this access | UseUseExplosion.cs:24:2143:24:2148 | this access |
+| UseUseExplosion.cs:24:1221:24:1224 | [post] this access | UseUseExplosion.cs:24:1238:24:1241 | this access |
+| UseUseExplosion.cs:24:1221:24:1224 | [post] this access | UseUseExplosion.cs:24:2128:24:2133 | this access |
+| UseUseExplosion.cs:24:1221:24:1224 | access to property Prop | UseUseExplosion.cs:24:1221:24:1229 | ... > ... |
+| UseUseExplosion.cs:24:1221:24:1224 | access to property Prop | UseUseExplosion.cs:24:1238:24:1241 | access to property Prop |
+| UseUseExplosion.cs:24:1221:24:1224 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:1221:24:1224 | this access | UseUseExplosion.cs:24:1238:24:1241 | this access |
+| UseUseExplosion.cs:24:1221:24:1224 | this access | UseUseExplosion.cs:24:2128:24:2133 | this access |
+| UseUseExplosion.cs:24:1238:24:1241 | [post] this access | UseUseExplosion.cs:24:1255:24:1258 | this access |
+| UseUseExplosion.cs:24:1238:24:1241 | [post] this access | UseUseExplosion.cs:24:2113:24:2118 | this access |
+| UseUseExplosion.cs:24:1238:24:1241 | access to property Prop | UseUseExplosion.cs:24:1238:24:1246 | ... > ... |
+| UseUseExplosion.cs:24:1238:24:1241 | access to property Prop | UseUseExplosion.cs:24:1255:24:1258 | access to property Prop |
+| UseUseExplosion.cs:24:1238:24:1241 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:1238:24:1241 | this access | UseUseExplosion.cs:24:1255:24:1258 | this access |
+| UseUseExplosion.cs:24:1238:24:1241 | this access | UseUseExplosion.cs:24:2113:24:2118 | this access |
+| UseUseExplosion.cs:24:1255:24:1258 | [post] this access | UseUseExplosion.cs:24:1272:24:1275 | this access |
+| UseUseExplosion.cs:24:1255:24:1258 | [post] this access | UseUseExplosion.cs:24:2098:24:2103 | this access |
+| UseUseExplosion.cs:24:1255:24:1258 | access to property Prop | UseUseExplosion.cs:24:1255:24:1263 | ... > ... |
+| UseUseExplosion.cs:24:1255:24:1258 | access to property Prop | UseUseExplosion.cs:24:1272:24:1275 | access to property Prop |
+| UseUseExplosion.cs:24:1255:24:1258 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:1255:24:1258 | this access | UseUseExplosion.cs:24:1272:24:1275 | this access |
+| UseUseExplosion.cs:24:1255:24:1258 | this access | UseUseExplosion.cs:24:2098:24:2103 | this access |
+| UseUseExplosion.cs:24:1272:24:1275 | [post] this access | UseUseExplosion.cs:24:1289:24:1292 | this access |
+| UseUseExplosion.cs:24:1272:24:1275 | [post] this access | UseUseExplosion.cs:24:2083:24:2088 | this access |
+| UseUseExplosion.cs:24:1272:24:1275 | access to property Prop | UseUseExplosion.cs:24:1272:24:1280 | ... > ... |
+| UseUseExplosion.cs:24:1272:24:1275 | access to property Prop | UseUseExplosion.cs:24:1289:24:1292 | access to property Prop |
+| UseUseExplosion.cs:24:1272:24:1275 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:1272:24:1275 | this access | UseUseExplosion.cs:24:1289:24:1292 | this access |
+| UseUseExplosion.cs:24:1272:24:1275 | this access | UseUseExplosion.cs:24:2083:24:2088 | this access |
+| UseUseExplosion.cs:24:1289:24:1292 | [post] this access | UseUseExplosion.cs:24:1306:24:1309 | this access |
+| UseUseExplosion.cs:24:1289:24:1292 | [post] this access | UseUseExplosion.cs:24:2068:24:2073 | this access |
+| UseUseExplosion.cs:24:1289:24:1292 | access to property Prop | UseUseExplosion.cs:24:1289:24:1297 | ... > ... |
+| UseUseExplosion.cs:24:1289:24:1292 | access to property Prop | UseUseExplosion.cs:24:1306:24:1309 | access to property Prop |
+| UseUseExplosion.cs:24:1289:24:1292 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:1289:24:1292 | this access | UseUseExplosion.cs:24:1306:24:1309 | this access |
+| UseUseExplosion.cs:24:1289:24:1292 | this access | UseUseExplosion.cs:24:2068:24:2073 | this access |
+| UseUseExplosion.cs:24:1306:24:1309 | [post] this access | UseUseExplosion.cs:24:1323:24:1326 | this access |
+| UseUseExplosion.cs:24:1306:24:1309 | [post] this access | UseUseExplosion.cs:24:2053:24:2058 | this access |
+| UseUseExplosion.cs:24:1306:24:1309 | access to property Prop | UseUseExplosion.cs:24:1306:24:1314 | ... > ... |
+| UseUseExplosion.cs:24:1306:24:1309 | access to property Prop | UseUseExplosion.cs:24:1323:24:1326 | access to property Prop |
+| UseUseExplosion.cs:24:1306:24:1309 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:1306:24:1309 | this access | UseUseExplosion.cs:24:1323:24:1326 | this access |
+| UseUseExplosion.cs:24:1306:24:1309 | this access | UseUseExplosion.cs:24:2053:24:2058 | this access |
+| UseUseExplosion.cs:24:1323:24:1326 | [post] this access | UseUseExplosion.cs:24:1340:24:1343 | this access |
+| UseUseExplosion.cs:24:1323:24:1326 | [post] this access | UseUseExplosion.cs:24:2038:24:2043 | this access |
+| UseUseExplosion.cs:24:1323:24:1326 | access to property Prop | UseUseExplosion.cs:24:1323:24:1331 | ... > ... |
+| UseUseExplosion.cs:24:1323:24:1326 | access to property Prop | UseUseExplosion.cs:24:1340:24:1343 | access to property Prop |
+| UseUseExplosion.cs:24:1323:24:1326 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:1323:24:1326 | this access | UseUseExplosion.cs:24:1340:24:1343 | this access |
+| UseUseExplosion.cs:24:1323:24:1326 | this access | UseUseExplosion.cs:24:2038:24:2043 | this access |
+| UseUseExplosion.cs:24:1340:24:1343 | [post] this access | UseUseExplosion.cs:24:1357:24:1360 | this access |
+| UseUseExplosion.cs:24:1340:24:1343 | [post] this access | UseUseExplosion.cs:24:2023:24:2028 | this access |
+| UseUseExplosion.cs:24:1340:24:1343 | access to property Prop | UseUseExplosion.cs:24:1340:24:1348 | ... > ... |
+| UseUseExplosion.cs:24:1340:24:1343 | access to property Prop | UseUseExplosion.cs:24:1357:24:1360 | access to property Prop |
+| UseUseExplosion.cs:24:1340:24:1343 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:1340:24:1343 | this access | UseUseExplosion.cs:24:1357:24:1360 | this access |
+| UseUseExplosion.cs:24:1340:24:1343 | this access | UseUseExplosion.cs:24:2023:24:2028 | this access |
+| UseUseExplosion.cs:24:1357:24:1360 | [post] this access | UseUseExplosion.cs:24:1374:24:1377 | this access |
+| UseUseExplosion.cs:24:1357:24:1360 | [post] this access | UseUseExplosion.cs:24:2008:24:2013 | this access |
+| UseUseExplosion.cs:24:1357:24:1360 | access to property Prop | UseUseExplosion.cs:24:1357:24:1365 | ... > ... |
+| UseUseExplosion.cs:24:1357:24:1360 | access to property Prop | UseUseExplosion.cs:24:1374:24:1377 | access to property Prop |
+| UseUseExplosion.cs:24:1357:24:1360 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:1357:24:1360 | this access | UseUseExplosion.cs:24:1374:24:1377 | this access |
+| UseUseExplosion.cs:24:1357:24:1360 | this access | UseUseExplosion.cs:24:2008:24:2013 | this access |
+| UseUseExplosion.cs:24:1374:24:1377 | [post] this access | UseUseExplosion.cs:24:1391:24:1394 | this access |
+| UseUseExplosion.cs:24:1374:24:1377 | [post] this access | UseUseExplosion.cs:24:1993:24:1998 | this access |
+| UseUseExplosion.cs:24:1374:24:1377 | access to property Prop | UseUseExplosion.cs:24:1374:24:1382 | ... > ... |
+| UseUseExplosion.cs:24:1374:24:1377 | access to property Prop | UseUseExplosion.cs:24:1391:24:1394 | access to property Prop |
+| UseUseExplosion.cs:24:1374:24:1377 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:1374:24:1377 | this access | UseUseExplosion.cs:24:1391:24:1394 | this access |
+| UseUseExplosion.cs:24:1374:24:1377 | this access | UseUseExplosion.cs:24:1993:24:1998 | this access |
+| UseUseExplosion.cs:24:1391:24:1394 | [post] this access | UseUseExplosion.cs:24:1408:24:1411 | this access |
+| UseUseExplosion.cs:24:1391:24:1394 | [post] this access | UseUseExplosion.cs:24:1978:24:1983 | this access |
+| UseUseExplosion.cs:24:1391:24:1394 | access to property Prop | UseUseExplosion.cs:24:1391:24:1399 | ... > ... |
+| UseUseExplosion.cs:24:1391:24:1394 | access to property Prop | UseUseExplosion.cs:24:1408:24:1411 | access to property Prop |
+| UseUseExplosion.cs:24:1391:24:1394 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:1391:24:1394 | this access | UseUseExplosion.cs:24:1408:24:1411 | this access |
+| UseUseExplosion.cs:24:1391:24:1394 | this access | UseUseExplosion.cs:24:1978:24:1983 | this access |
+| UseUseExplosion.cs:24:1408:24:1411 | [post] this access | UseUseExplosion.cs:24:1425:24:1428 | this access |
+| UseUseExplosion.cs:24:1408:24:1411 | [post] this access | UseUseExplosion.cs:24:1963:24:1968 | this access |
+| UseUseExplosion.cs:24:1408:24:1411 | access to property Prop | UseUseExplosion.cs:24:1408:24:1416 | ... > ... |
+| UseUseExplosion.cs:24:1408:24:1411 | access to property Prop | UseUseExplosion.cs:24:1425:24:1428 | access to property Prop |
+| UseUseExplosion.cs:24:1408:24:1411 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:1408:24:1411 | this access | UseUseExplosion.cs:24:1425:24:1428 | this access |
+| UseUseExplosion.cs:24:1408:24:1411 | this access | UseUseExplosion.cs:24:1963:24:1968 | this access |
+| UseUseExplosion.cs:24:1425:24:1428 | [post] this access | UseUseExplosion.cs:24:1442:24:1445 | this access |
+| UseUseExplosion.cs:24:1425:24:1428 | [post] this access | UseUseExplosion.cs:24:1948:24:1953 | this access |
+| UseUseExplosion.cs:24:1425:24:1428 | access to property Prop | UseUseExplosion.cs:24:1425:24:1433 | ... > ... |
+| UseUseExplosion.cs:24:1425:24:1428 | access to property Prop | UseUseExplosion.cs:24:1442:24:1445 | access to property Prop |
+| UseUseExplosion.cs:24:1425:24:1428 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:1425:24:1428 | this access | UseUseExplosion.cs:24:1442:24:1445 | this access |
+| UseUseExplosion.cs:24:1425:24:1428 | this access | UseUseExplosion.cs:24:1948:24:1953 | this access |
+| UseUseExplosion.cs:24:1442:24:1445 | [post] this access | UseUseExplosion.cs:24:1459:24:1462 | this access |
+| UseUseExplosion.cs:24:1442:24:1445 | [post] this access | UseUseExplosion.cs:24:1933:24:1938 | this access |
+| UseUseExplosion.cs:24:1442:24:1445 | access to property Prop | UseUseExplosion.cs:24:1442:24:1450 | ... > ... |
+| UseUseExplosion.cs:24:1442:24:1445 | access to property Prop | UseUseExplosion.cs:24:1459:24:1462 | access to property Prop |
+| UseUseExplosion.cs:24:1442:24:1445 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:1442:24:1445 | this access | UseUseExplosion.cs:24:1459:24:1462 | this access |
+| UseUseExplosion.cs:24:1442:24:1445 | this access | UseUseExplosion.cs:24:1933:24:1938 | this access |
+| UseUseExplosion.cs:24:1459:24:1462 | [post] this access | UseUseExplosion.cs:24:1476:24:1479 | this access |
+| UseUseExplosion.cs:24:1459:24:1462 | [post] this access | UseUseExplosion.cs:24:1918:24:1923 | this access |
+| UseUseExplosion.cs:24:1459:24:1462 | access to property Prop | UseUseExplosion.cs:24:1459:24:1467 | ... > ... |
+| UseUseExplosion.cs:24:1459:24:1462 | access to property Prop | UseUseExplosion.cs:24:1476:24:1479 | access to property Prop |
+| UseUseExplosion.cs:24:1459:24:1462 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:1459:24:1462 | this access | UseUseExplosion.cs:24:1476:24:1479 | this access |
+| UseUseExplosion.cs:24:1459:24:1462 | this access | UseUseExplosion.cs:24:1918:24:1923 | this access |
+| UseUseExplosion.cs:24:1476:24:1479 | [post] this access | UseUseExplosion.cs:24:1493:24:1496 | this access |
+| UseUseExplosion.cs:24:1476:24:1479 | [post] this access | UseUseExplosion.cs:24:1903:24:1908 | this access |
+| UseUseExplosion.cs:24:1476:24:1479 | access to property Prop | UseUseExplosion.cs:24:1476:24:1484 | ... > ... |
+| UseUseExplosion.cs:24:1476:24:1479 | access to property Prop | UseUseExplosion.cs:24:1493:24:1496 | access to property Prop |
+| UseUseExplosion.cs:24:1476:24:1479 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:1476:24:1479 | this access | UseUseExplosion.cs:24:1493:24:1496 | this access |
+| UseUseExplosion.cs:24:1476:24:1479 | this access | UseUseExplosion.cs:24:1903:24:1908 | this access |
+| UseUseExplosion.cs:24:1493:24:1496 | [post] this access | UseUseExplosion.cs:24:1510:24:1513 | this access |
+| UseUseExplosion.cs:24:1493:24:1496 | [post] this access | UseUseExplosion.cs:24:1888:24:1893 | this access |
+| UseUseExplosion.cs:24:1493:24:1496 | access to property Prop | UseUseExplosion.cs:24:1493:24:1501 | ... > ... |
+| UseUseExplosion.cs:24:1493:24:1496 | access to property Prop | UseUseExplosion.cs:24:1510:24:1513 | access to property Prop |
+| UseUseExplosion.cs:24:1493:24:1496 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:1493:24:1496 | this access | UseUseExplosion.cs:24:1510:24:1513 | this access |
+| UseUseExplosion.cs:24:1493:24:1496 | this access | UseUseExplosion.cs:24:1888:24:1893 | this access |
+| UseUseExplosion.cs:24:1510:24:1513 | [post] this access | UseUseExplosion.cs:24:1527:24:1530 | this access |
+| UseUseExplosion.cs:24:1510:24:1513 | [post] this access | UseUseExplosion.cs:24:1873:24:1878 | this access |
+| UseUseExplosion.cs:24:1510:24:1513 | access to property Prop | UseUseExplosion.cs:24:1510:24:1518 | ... > ... |
+| UseUseExplosion.cs:24:1510:24:1513 | access to property Prop | UseUseExplosion.cs:24:1527:24:1530 | access to property Prop |
+| UseUseExplosion.cs:24:1510:24:1513 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:1510:24:1513 | this access | UseUseExplosion.cs:24:1527:24:1530 | this access |
+| UseUseExplosion.cs:24:1510:24:1513 | this access | UseUseExplosion.cs:24:1873:24:1878 | this access |
+| UseUseExplosion.cs:24:1527:24:1530 | [post] this access | UseUseExplosion.cs:24:1544:24:1547 | this access |
+| UseUseExplosion.cs:24:1527:24:1530 | [post] this access | UseUseExplosion.cs:24:1858:24:1863 | this access |
+| UseUseExplosion.cs:24:1527:24:1530 | access to property Prop | UseUseExplosion.cs:24:1527:24:1535 | ... > ... |
+| UseUseExplosion.cs:24:1527:24:1530 | access to property Prop | UseUseExplosion.cs:24:1544:24:1547 | access to property Prop |
+| UseUseExplosion.cs:24:1527:24:1530 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:1527:24:1530 | this access | UseUseExplosion.cs:24:1544:24:1547 | this access |
+| UseUseExplosion.cs:24:1527:24:1530 | this access | UseUseExplosion.cs:24:1858:24:1863 | this access |
+| UseUseExplosion.cs:24:1544:24:1547 | [post] this access | UseUseExplosion.cs:24:1561:24:1564 | this access |
+| UseUseExplosion.cs:24:1544:24:1547 | [post] this access | UseUseExplosion.cs:24:1843:24:1848 | this access |
+| UseUseExplosion.cs:24:1544:24:1547 | access to property Prop | UseUseExplosion.cs:24:1544:24:1552 | ... > ... |
+| UseUseExplosion.cs:24:1544:24:1547 | access to property Prop | UseUseExplosion.cs:24:1561:24:1564 | access to property Prop |
+| UseUseExplosion.cs:24:1544:24:1547 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:1544:24:1547 | this access | UseUseExplosion.cs:24:1561:24:1564 | this access |
+| UseUseExplosion.cs:24:1544:24:1547 | this access | UseUseExplosion.cs:24:1843:24:1848 | this access |
+| UseUseExplosion.cs:24:1561:24:1564 | [post] this access | UseUseExplosion.cs:24:1577:24:1580 | this access |
+| UseUseExplosion.cs:24:1561:24:1564 | [post] this access | UseUseExplosion.cs:24:1828:24:1833 | this access |
+| UseUseExplosion.cs:24:1561:24:1564 | access to property Prop | UseUseExplosion.cs:24:1561:24:1568 | ... > ... |
+| UseUseExplosion.cs:24:1561:24:1564 | access to property Prop | UseUseExplosion.cs:24:1577:24:1580 | access to property Prop |
+| UseUseExplosion.cs:24:1561:24:1564 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:1561:24:1564 | this access | UseUseExplosion.cs:24:1577:24:1580 | this access |
+| UseUseExplosion.cs:24:1561:24:1564 | this access | UseUseExplosion.cs:24:1828:24:1833 | this access |
+| UseUseExplosion.cs:24:1577:24:1580 | [post] this access | UseUseExplosion.cs:24:1593:24:1596 | this access |
+| UseUseExplosion.cs:24:1577:24:1580 | [post] this access | UseUseExplosion.cs:24:1813:24:1818 | this access |
+| UseUseExplosion.cs:24:1577:24:1580 | access to property Prop | UseUseExplosion.cs:24:1577:24:1584 | ... > ... |
+| UseUseExplosion.cs:24:1577:24:1580 | access to property Prop | UseUseExplosion.cs:24:1593:24:1596 | access to property Prop |
+| UseUseExplosion.cs:24:1577:24:1580 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:1577:24:1580 | this access | UseUseExplosion.cs:24:1593:24:1596 | this access |
+| UseUseExplosion.cs:24:1577:24:1580 | this access | UseUseExplosion.cs:24:1813:24:1818 | this access |
+| UseUseExplosion.cs:24:1593:24:1596 | [post] this access | UseUseExplosion.cs:24:1609:24:1612 | this access |
+| UseUseExplosion.cs:24:1593:24:1596 | [post] this access | UseUseExplosion.cs:24:1798:24:1803 | this access |
+| UseUseExplosion.cs:24:1593:24:1596 | access to property Prop | UseUseExplosion.cs:24:1593:24:1600 | ... > ... |
+| UseUseExplosion.cs:24:1593:24:1596 | access to property Prop | UseUseExplosion.cs:24:1609:24:1612 | access to property Prop |
+| UseUseExplosion.cs:24:1593:24:1596 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:1593:24:1596 | this access | UseUseExplosion.cs:24:1609:24:1612 | this access |
+| UseUseExplosion.cs:24:1593:24:1596 | this access | UseUseExplosion.cs:24:1798:24:1803 | this access |
+| UseUseExplosion.cs:24:1609:24:1612 | [post] this access | UseUseExplosion.cs:24:1625:24:1628 | this access |
+| UseUseExplosion.cs:24:1609:24:1612 | [post] this access | UseUseExplosion.cs:24:1783:24:1788 | this access |
+| UseUseExplosion.cs:24:1609:24:1612 | access to property Prop | UseUseExplosion.cs:24:1609:24:1616 | ... > ... |
+| UseUseExplosion.cs:24:1609:24:1612 | access to property Prop | UseUseExplosion.cs:24:1625:24:1628 | access to property Prop |
+| UseUseExplosion.cs:24:1609:24:1612 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:1609:24:1612 | this access | UseUseExplosion.cs:24:1625:24:1628 | this access |
+| UseUseExplosion.cs:24:1609:24:1612 | this access | UseUseExplosion.cs:24:1783:24:1788 | this access |
+| UseUseExplosion.cs:24:1625:24:1628 | [post] this access | UseUseExplosion.cs:24:1641:24:1644 | this access |
+| UseUseExplosion.cs:24:1625:24:1628 | [post] this access | UseUseExplosion.cs:24:1768:24:1773 | this access |
+| UseUseExplosion.cs:24:1625:24:1628 | access to property Prop | UseUseExplosion.cs:24:1625:24:1632 | ... > ... |
+| UseUseExplosion.cs:24:1625:24:1628 | access to property Prop | UseUseExplosion.cs:24:1641:24:1644 | access to property Prop |
+| UseUseExplosion.cs:24:1625:24:1628 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:1625:24:1628 | this access | UseUseExplosion.cs:24:1641:24:1644 | this access |
+| UseUseExplosion.cs:24:1625:24:1628 | this access | UseUseExplosion.cs:24:1768:24:1773 | this access |
+| UseUseExplosion.cs:24:1641:24:1644 | [post] this access | UseUseExplosion.cs:24:1657:24:1660 | this access |
+| UseUseExplosion.cs:24:1641:24:1644 | [post] this access | UseUseExplosion.cs:24:1753:24:1758 | this access |
+| UseUseExplosion.cs:24:1641:24:1644 | access to property Prop | UseUseExplosion.cs:24:1641:24:1648 | ... > ... |
+| UseUseExplosion.cs:24:1641:24:1644 | access to property Prop | UseUseExplosion.cs:24:1657:24:1660 | access to property Prop |
+| UseUseExplosion.cs:24:1641:24:1644 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:1641:24:1644 | this access | UseUseExplosion.cs:24:1657:24:1660 | this access |
+| UseUseExplosion.cs:24:1641:24:1644 | this access | UseUseExplosion.cs:24:1753:24:1758 | this access |
+| UseUseExplosion.cs:24:1657:24:1660 | [post] this access | UseUseExplosion.cs:24:1673:24:1676 | this access |
+| UseUseExplosion.cs:24:1657:24:1660 | [post] this access | UseUseExplosion.cs:24:1738:24:1743 | this access |
+| UseUseExplosion.cs:24:1657:24:1660 | access to property Prop | UseUseExplosion.cs:24:1657:24:1664 | ... > ... |
+| UseUseExplosion.cs:24:1657:24:1660 | access to property Prop | UseUseExplosion.cs:24:1673:24:1676 | access to property Prop |
+| UseUseExplosion.cs:24:1657:24:1660 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:1657:24:1660 | this access | UseUseExplosion.cs:24:1673:24:1676 | this access |
+| UseUseExplosion.cs:24:1657:24:1660 | this access | UseUseExplosion.cs:24:1738:24:1743 | this access |
+| UseUseExplosion.cs:24:1673:24:1676 | [post] this access | UseUseExplosion.cs:24:1689:24:1692 | this access |
+| UseUseExplosion.cs:24:1673:24:1676 | [post] this access | UseUseExplosion.cs:24:1723:24:1728 | this access |
+| UseUseExplosion.cs:24:1673:24:1676 | access to property Prop | UseUseExplosion.cs:24:1673:24:1680 | ... > ... |
+| UseUseExplosion.cs:24:1673:24:1676 | access to property Prop | UseUseExplosion.cs:24:1689:24:1692 | access to property Prop |
+| UseUseExplosion.cs:24:1673:24:1676 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:1673:24:1676 | this access | UseUseExplosion.cs:24:1689:24:1692 | this access |
+| UseUseExplosion.cs:24:1673:24:1676 | this access | UseUseExplosion.cs:24:1723:24:1728 | this access |
+| UseUseExplosion.cs:24:1689:24:1692 | [post] this access | UseUseExplosion.cs:24:1708:24:1713 | this access |
+| UseUseExplosion.cs:24:1689:24:1692 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:1689:24:1692 | access to property Prop | UseUseExplosion.cs:24:1689:24:1696 | ... > ... |
+| UseUseExplosion.cs:24:1689:24:1692 | access to property Prop | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) |
+| UseUseExplosion.cs:24:1689:24:1692 | this access | UseUseExplosion.cs:24:1708:24:1713 | this access |
+| UseUseExplosion.cs:24:1689:24:1692 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:1708:24:1713 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:1708:24:1713 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:1712:24:1712 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:1723:24:1728 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:1723:24:1728 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:1727:24:1727 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:1738:24:1743 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:1738:24:1743 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:1742:24:1742 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:1753:24:1758 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:1753:24:1758 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:1757:24:1757 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:1768:24:1773 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:1768:24:1773 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:1772:24:1772 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:1783:24:1788 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:1783:24:1788 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:1787:24:1787 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:1798:24:1803 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:1798:24:1803 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:1802:24:1802 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:1813:24:1818 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:1813:24:1818 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:1817:24:1817 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:1828:24:1833 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:1828:24:1833 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:1832:24:1832 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:1843:24:1848 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:1843:24:1848 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:1847:24:1847 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:1858:24:1863 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:1858:24:1863 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:1862:24:1862 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:1873:24:1878 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:1873:24:1878 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:1877:24:1877 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:1888:24:1893 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:1888:24:1893 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:1892:24:1892 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:1903:24:1908 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:1903:24:1908 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:1907:24:1907 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:1918:24:1923 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:1918:24:1923 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:1922:24:1922 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:1933:24:1938 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:1933:24:1938 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:1937:24:1937 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:1948:24:1953 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:1948:24:1953 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:1952:24:1952 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:1963:24:1968 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:1963:24:1968 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:1967:24:1967 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:1978:24:1983 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:1978:24:1983 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:1982:24:1982 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:1993:24:1998 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:1993:24:1998 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:1997:24:1997 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:2008:24:2013 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2008:24:2013 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2012:24:2012 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:2023:24:2028 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2023:24:2028 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2027:24:2027 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:2038:24:2043 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2038:24:2043 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2042:24:2042 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:2053:24:2058 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2053:24:2058 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2057:24:2057 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:2068:24:2073 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2068:24:2073 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2072:24:2072 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:2083:24:2088 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2083:24:2088 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2087:24:2087 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:2098:24:2103 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2098:24:2103 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2102:24:2102 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:2113:24:2118 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2113:24:2118 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2117:24:2117 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:2128:24:2133 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2128:24:2133 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2132:24:2132 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:2143:24:2148 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2143:24:2148 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2147:24:2147 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:2158:24:2163 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2158:24:2163 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2162:24:2162 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:2173:24:2178 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2173:24:2178 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2177:24:2177 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:2188:24:2193 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2188:24:2193 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2192:24:2192 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:2203:24:2208 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2203:24:2208 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2207:24:2207 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:2218:24:2223 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2218:24:2223 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2222:24:2222 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:2233:24:2238 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2233:24:2238 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2237:24:2237 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:2248:24:2253 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2248:24:2253 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2252:24:2252 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:2263:24:2268 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2263:24:2268 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2267:24:2267 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:2278:24:2283 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2278:24:2283 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2282:24:2282 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:2293:24:2298 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2293:24:2298 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2297:24:2297 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:2308:24:2313 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2308:24:2313 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2312:24:2312 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:2323:24:2328 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2323:24:2328 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2327:24:2327 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:2338:24:2343 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2338:24:2343 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2342:24:2342 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:2353:24:2358 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2353:24:2358 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2357:24:2357 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:2368:24:2373 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2368:24:2373 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2372:24:2372 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:2383:24:2388 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2383:24:2388 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2387:24:2387 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:2398:24:2403 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2398:24:2403 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2402:24:2402 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:2413:24:2418 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2413:24:2418 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2417:24:2417 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:2428:24:2433 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2428:24:2433 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2432:24:2432 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:2443:24:2448 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2443:24:2448 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2447:24:2447 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:2458:24:2463 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2458:24:2463 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2462:24:2462 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:2473:24:2478 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2473:24:2478 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2477:24:2477 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:2488:24:2493 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2488:24:2493 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2492:24:2492 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:2503:24:2508 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2503:24:2508 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2507:24:2507 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:2518:24:2523 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2518:24:2523 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2522:24:2522 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:2533:24:2538 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2533:24:2538 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2537:24:2537 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:2548:24:2553 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2548:24:2553 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2552:24:2552 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:2563:24:2568 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2563:24:2568 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2567:24:2567 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:2578:24:2583 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2578:24:2583 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2582:24:2582 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:2593:24:2598 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2593:24:2598 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2597:24:2597 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:2608:24:2613 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2608:24:2613 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2612:24:2612 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:2623:24:2628 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2623:24:2628 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2627:24:2627 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:2638:24:2643 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2638:24:2643 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2642:24:2642 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:2653:24:2658 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2653:24:2658 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2657:24:2657 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:2668:24:2673 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2668:24:2673 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2672:24:2672 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:2683:24:2688 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2683:24:2688 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2687:24:2687 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:2698:24:2703 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2698:24:2703 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2702:24:2702 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:2713:24:2718 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2713:24:2718 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2717:24:2717 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:2728:24:2733 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2728:24:2733 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2732:24:2732 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:2743:24:2748 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2743:24:2748 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2747:24:2747 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:2758:24:2763 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2758:24:2763 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2762:24:2762 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:2773:24:2778 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2773:24:2778 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2777:24:2777 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:2788:24:2793 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2788:24:2793 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2792:24:2792 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:2803:24:2808 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2803:24:2808 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2807:24:2807 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:2818:24:2823 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2818:24:2823 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2822:24:2822 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:2833:24:2838 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2833:24:2838 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2837:24:2837 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:2848:24:2853 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2848:24:2853 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2852:24:2852 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:2863:24:2868 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2863:24:2868 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2867:24:2867 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:2878:24:2883 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2878:24:2883 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2882:24:2882 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:2893:24:2898 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2893:24:2898 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2897:24:2897 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:2908:24:2913 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2908:24:2913 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2912:24:2912 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:2923:24:2928 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2923:24:2928 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2927:24:2927 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:2938:24:2943 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2938:24:2943 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2942:24:2942 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:2953:24:2958 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2953:24:2958 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2957:24:2957 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:2968:24:2973 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2968:24:2973 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2972:24:2972 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:2983:24:2988 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2983:24:2988 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2987:24:2987 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:2998:24:3003 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:2998:24:3003 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:3002:24:3002 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:3013:24:3018 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:3013:24:3018 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:3017:24:3017 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:3028:24:3033 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:3028:24:3033 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:3032:24:3032 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:3043:24:3048 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:3043:24:3048 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:3047:24:3047 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:3058:24:3063 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:3058:24:3063 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:3062:24:3062 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:3073:24:3078 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:3073:24:3078 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:3077:24:3077 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:3088:24:3093 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:3088:24:3093 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:3092:24:3092 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:3103:24:3108 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:3103:24:3108 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:3107:24:3107 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:3118:24:3123 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:3118:24:3123 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:3122:24:3122 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:3133:24:3138 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:3133:24:3138 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:3137:24:3137 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:3148:24:3153 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:3148:24:3153 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:3152:24:3152 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:3163:24:3168 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:3163:24:3168 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:3167:24:3167 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:3178:24:3183 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:3178:24:3183 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:3182:24:3182 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:24:3193:24:3198 | [post] this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:3193:24:3198 | this access | UseUseExplosion.cs:25:13:25:16 | this access |
+| UseUseExplosion.cs:24:3197:24:3197 | access to local variable x | UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(this.Prop) | UseUseExplosion.cs:25:13:25:16 | access to property Prop |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:1712:25:1712 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:1727:25:1727 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:1742:25:1742 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:1757:25:1757 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:1772:25:1772 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:1787:25:1787 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:1802:25:1802 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:1817:25:1817 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:1832:25:1832 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:1847:25:1847 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:1862:25:1862 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:1877:25:1877 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:1892:25:1892 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:1907:25:1907 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:1922:25:1922 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:1937:25:1937 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:1952:25:1952 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:1967:25:1967 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:1982:25:1982 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:1997:25:1997 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:2012:25:2012 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:2027:25:2027 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:2042:25:2042 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:2057:25:2057 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:2072:25:2072 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:2087:25:2087 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:2102:25:2102 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:2117:25:2117 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:2132:25:2132 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:2147:25:2147 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:2162:25:2162 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:2177:25:2177 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:2192:25:2192 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:2207:25:2207 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:2222:25:2222 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:2237:25:2237 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:2252:25:2252 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:2267:25:2267 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:2282:25:2282 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:2297:25:2297 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:2312:25:2312 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:2327:25:2327 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:2342:25:2342 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:2357:25:2357 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:2372:25:2372 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:2387:25:2387 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:2402:25:2402 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:2417:25:2417 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:2432:25:2432 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:2447:25:2447 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:2462:25:2462 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:2477:25:2477 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:2492:25:2492 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:2507:25:2507 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:2522:25:2522 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:2537:25:2537 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:2552:25:2552 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:2567:25:2567 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:2582:25:2582 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:2597:25:2597 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:2612:25:2612 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:2627:25:2627 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:2642:25:2642 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:2657:25:2657 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:2672:25:2672 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:2687:25:2687 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:2702:25:2702 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:2717:25:2717 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:2732:25:2732 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:2747:25:2747 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:2762:25:2762 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:2777:25:2777 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:2792:25:2792 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:2807:25:2807 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:2822:25:2822 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:2837:25:2837 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:2852:25:2852 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:2867:25:2867 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:2882:25:2882 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:2897:25:2897 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:2912:25:2912 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:2927:25:2927 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:2942:25:2942 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:2957:25:2957 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:2972:25:2972 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:2987:25:2987 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:3002:25:3002 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:3017:25:3017 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:3032:25:3032 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:3047:25:3047 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:3062:25:3062 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:3077:25:3077 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:3092:25:3092 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:3107:25:3107 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:3122:25:3122 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:3137:25:3137 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:3152:25:3152 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:3167:25:3167 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:3182:25:3182 | access to local variable x |
+| UseUseExplosion.cs:25:9:25:3199 | SSA phi read(x) | UseUseExplosion.cs:25:3197:25:3197 | access to local variable x |
+| UseUseExplosion.cs:25:13:25:16 | [post] this access | UseUseExplosion.cs:25:31:25:34 | this access |
+| UseUseExplosion.cs:25:13:25:16 | [post] this access | UseUseExplosion.cs:25:3193:25:3198 | this access |
+| UseUseExplosion.cs:25:13:25:16 | access to property Prop | UseUseExplosion.cs:25:13:25:22 | ... > ... |
+| UseUseExplosion.cs:25:13:25:16 | access to property Prop | UseUseExplosion.cs:25:31:25:34 | access to property Prop |
+| UseUseExplosion.cs:25:13:25:16 | this access | UseUseExplosion.cs:25:31:25:34 | this access |
+| UseUseExplosion.cs:25:13:25:16 | this access | UseUseExplosion.cs:25:3193:25:3198 | this access |
+| UseUseExplosion.cs:25:31:25:34 | [post] this access | UseUseExplosion.cs:25:48:25:51 | this access |
+| UseUseExplosion.cs:25:31:25:34 | [post] this access | UseUseExplosion.cs:25:3178:25:3183 | this access |
+| UseUseExplosion.cs:25:31:25:34 | access to property Prop | UseUseExplosion.cs:25:31:25:39 | ... > ... |
+| UseUseExplosion.cs:25:31:25:34 | access to property Prop | UseUseExplosion.cs:25:48:25:51 | access to property Prop |
+| UseUseExplosion.cs:25:31:25:34 | this access | UseUseExplosion.cs:25:48:25:51 | this access |
+| UseUseExplosion.cs:25:31:25:34 | this access | UseUseExplosion.cs:25:3178:25:3183 | this access |
+| UseUseExplosion.cs:25:48:25:51 | [post] this access | UseUseExplosion.cs:25:65:25:68 | this access |
+| UseUseExplosion.cs:25:48:25:51 | [post] this access | UseUseExplosion.cs:25:3163:25:3168 | this access |
+| UseUseExplosion.cs:25:48:25:51 | access to property Prop | UseUseExplosion.cs:25:48:25:56 | ... > ... |
+| UseUseExplosion.cs:25:48:25:51 | access to property Prop | UseUseExplosion.cs:25:65:25:68 | access to property Prop |
+| UseUseExplosion.cs:25:48:25:51 | this access | UseUseExplosion.cs:25:65:25:68 | this access |
+| UseUseExplosion.cs:25:48:25:51 | this access | UseUseExplosion.cs:25:3163:25:3168 | this access |
+| UseUseExplosion.cs:25:65:25:68 | [post] this access | UseUseExplosion.cs:25:82:25:85 | this access |
+| UseUseExplosion.cs:25:65:25:68 | [post] this access | UseUseExplosion.cs:25:3148:25:3153 | this access |
+| UseUseExplosion.cs:25:65:25:68 | access to property Prop | UseUseExplosion.cs:25:65:25:73 | ... > ... |
+| UseUseExplosion.cs:25:65:25:68 | access to property Prop | UseUseExplosion.cs:25:82:25:85 | access to property Prop |
+| UseUseExplosion.cs:25:65:25:68 | this access | UseUseExplosion.cs:25:82:25:85 | this access |
+| UseUseExplosion.cs:25:65:25:68 | this access | UseUseExplosion.cs:25:3148:25:3153 | this access |
+| UseUseExplosion.cs:25:82:25:85 | [post] this access | UseUseExplosion.cs:25:99:25:102 | this access |
+| UseUseExplosion.cs:25:82:25:85 | [post] this access | UseUseExplosion.cs:25:3133:25:3138 | this access |
+| UseUseExplosion.cs:25:82:25:85 | access to property Prop | UseUseExplosion.cs:25:82:25:90 | ... > ... |
+| UseUseExplosion.cs:25:82:25:85 | access to property Prop | UseUseExplosion.cs:25:99:25:102 | access to property Prop |
+| UseUseExplosion.cs:25:82:25:85 | this access | UseUseExplosion.cs:25:99:25:102 | this access |
+| UseUseExplosion.cs:25:82:25:85 | this access | UseUseExplosion.cs:25:3133:25:3138 | this access |
+| UseUseExplosion.cs:25:99:25:102 | [post] this access | UseUseExplosion.cs:25:116:25:119 | this access |
+| UseUseExplosion.cs:25:99:25:102 | [post] this access | UseUseExplosion.cs:25:3118:25:3123 | this access |
+| UseUseExplosion.cs:25:99:25:102 | access to property Prop | UseUseExplosion.cs:25:99:25:107 | ... > ... |
+| UseUseExplosion.cs:25:99:25:102 | access to property Prop | UseUseExplosion.cs:25:116:25:119 | access to property Prop |
+| UseUseExplosion.cs:25:99:25:102 | this access | UseUseExplosion.cs:25:116:25:119 | this access |
+| UseUseExplosion.cs:25:99:25:102 | this access | UseUseExplosion.cs:25:3118:25:3123 | this access |
+| UseUseExplosion.cs:25:116:25:119 | [post] this access | UseUseExplosion.cs:25:133:25:136 | this access |
+| UseUseExplosion.cs:25:116:25:119 | [post] this access | UseUseExplosion.cs:25:3103:25:3108 | this access |
+| UseUseExplosion.cs:25:116:25:119 | access to property Prop | UseUseExplosion.cs:25:116:25:124 | ... > ... |
+| UseUseExplosion.cs:25:116:25:119 | access to property Prop | UseUseExplosion.cs:25:133:25:136 | access to property Prop |
+| UseUseExplosion.cs:25:116:25:119 | this access | UseUseExplosion.cs:25:133:25:136 | this access |
+| UseUseExplosion.cs:25:116:25:119 | this access | UseUseExplosion.cs:25:3103:25:3108 | this access |
+| UseUseExplosion.cs:25:133:25:136 | [post] this access | UseUseExplosion.cs:25:150:25:153 | this access |
+| UseUseExplosion.cs:25:133:25:136 | [post] this access | UseUseExplosion.cs:25:3088:25:3093 | this access |
+| UseUseExplosion.cs:25:133:25:136 | access to property Prop | UseUseExplosion.cs:25:133:25:141 | ... > ... |
+| UseUseExplosion.cs:25:133:25:136 | access to property Prop | UseUseExplosion.cs:25:150:25:153 | access to property Prop |
+| UseUseExplosion.cs:25:133:25:136 | this access | UseUseExplosion.cs:25:150:25:153 | this access |
+| UseUseExplosion.cs:25:133:25:136 | this access | UseUseExplosion.cs:25:3088:25:3093 | this access |
+| UseUseExplosion.cs:25:150:25:153 | [post] this access | UseUseExplosion.cs:25:167:25:170 | this access |
+| UseUseExplosion.cs:25:150:25:153 | [post] this access | UseUseExplosion.cs:25:3073:25:3078 | this access |
+| UseUseExplosion.cs:25:150:25:153 | access to property Prop | UseUseExplosion.cs:25:150:25:158 | ... > ... |
+| UseUseExplosion.cs:25:150:25:153 | access to property Prop | UseUseExplosion.cs:25:167:25:170 | access to property Prop |
+| UseUseExplosion.cs:25:150:25:153 | this access | UseUseExplosion.cs:25:167:25:170 | this access |
+| UseUseExplosion.cs:25:150:25:153 | this access | UseUseExplosion.cs:25:3073:25:3078 | this access |
+| UseUseExplosion.cs:25:167:25:170 | [post] this access | UseUseExplosion.cs:25:184:25:187 | this access |
+| UseUseExplosion.cs:25:167:25:170 | [post] this access | UseUseExplosion.cs:25:3058:25:3063 | this access |
+| UseUseExplosion.cs:25:167:25:170 | access to property Prop | UseUseExplosion.cs:25:167:25:175 | ... > ... |
+| UseUseExplosion.cs:25:167:25:170 | access to property Prop | UseUseExplosion.cs:25:184:25:187 | access to property Prop |
+| UseUseExplosion.cs:25:167:25:170 | this access | UseUseExplosion.cs:25:184:25:187 | this access |
+| UseUseExplosion.cs:25:167:25:170 | this access | UseUseExplosion.cs:25:3058:25:3063 | this access |
+| UseUseExplosion.cs:25:184:25:187 | [post] this access | UseUseExplosion.cs:25:201:25:204 | this access |
+| UseUseExplosion.cs:25:184:25:187 | [post] this access | UseUseExplosion.cs:25:3043:25:3048 | this access |
+| UseUseExplosion.cs:25:184:25:187 | access to property Prop | UseUseExplosion.cs:25:184:25:192 | ... > ... |
+| UseUseExplosion.cs:25:184:25:187 | access to property Prop | UseUseExplosion.cs:25:201:25:204 | access to property Prop |
+| UseUseExplosion.cs:25:184:25:187 | this access | UseUseExplosion.cs:25:201:25:204 | this access |
+| UseUseExplosion.cs:25:184:25:187 | this access | UseUseExplosion.cs:25:3043:25:3048 | this access |
+| UseUseExplosion.cs:25:201:25:204 | [post] this access | UseUseExplosion.cs:25:218:25:221 | this access |
+| UseUseExplosion.cs:25:201:25:204 | [post] this access | UseUseExplosion.cs:25:3028:25:3033 | this access |
+| UseUseExplosion.cs:25:201:25:204 | access to property Prop | UseUseExplosion.cs:25:201:25:209 | ... > ... |
+| UseUseExplosion.cs:25:201:25:204 | access to property Prop | UseUseExplosion.cs:25:218:25:221 | access to property Prop |
+| UseUseExplosion.cs:25:201:25:204 | this access | UseUseExplosion.cs:25:218:25:221 | this access |
+| UseUseExplosion.cs:25:201:25:204 | this access | UseUseExplosion.cs:25:3028:25:3033 | this access |
+| UseUseExplosion.cs:25:218:25:221 | [post] this access | UseUseExplosion.cs:25:235:25:238 | this access |
+| UseUseExplosion.cs:25:218:25:221 | [post] this access | UseUseExplosion.cs:25:3013:25:3018 | this access |
+| UseUseExplosion.cs:25:218:25:221 | access to property Prop | UseUseExplosion.cs:25:218:25:226 | ... > ... |
+| UseUseExplosion.cs:25:218:25:221 | access to property Prop | UseUseExplosion.cs:25:235:25:238 | access to property Prop |
+| UseUseExplosion.cs:25:218:25:221 | this access | UseUseExplosion.cs:25:235:25:238 | this access |
+| UseUseExplosion.cs:25:218:25:221 | this access | UseUseExplosion.cs:25:3013:25:3018 | this access |
+| UseUseExplosion.cs:25:235:25:238 | [post] this access | UseUseExplosion.cs:25:252:25:255 | this access |
+| UseUseExplosion.cs:25:235:25:238 | [post] this access | UseUseExplosion.cs:25:2998:25:3003 | this access |
+| UseUseExplosion.cs:25:235:25:238 | access to property Prop | UseUseExplosion.cs:25:235:25:243 | ... > ... |
+| UseUseExplosion.cs:25:235:25:238 | access to property Prop | UseUseExplosion.cs:25:252:25:255 | access to property Prop |
+| UseUseExplosion.cs:25:235:25:238 | this access | UseUseExplosion.cs:25:252:25:255 | this access |
+| UseUseExplosion.cs:25:235:25:238 | this access | UseUseExplosion.cs:25:2998:25:3003 | this access |
+| UseUseExplosion.cs:25:252:25:255 | [post] this access | UseUseExplosion.cs:25:269:25:272 | this access |
+| UseUseExplosion.cs:25:252:25:255 | [post] this access | UseUseExplosion.cs:25:2983:25:2988 | this access |
+| UseUseExplosion.cs:25:252:25:255 | access to property Prop | UseUseExplosion.cs:25:252:25:260 | ... > ... |
+| UseUseExplosion.cs:25:252:25:255 | access to property Prop | UseUseExplosion.cs:25:269:25:272 | access to property Prop |
+| UseUseExplosion.cs:25:252:25:255 | this access | UseUseExplosion.cs:25:269:25:272 | this access |
+| UseUseExplosion.cs:25:252:25:255 | this access | UseUseExplosion.cs:25:2983:25:2988 | this access |
+| UseUseExplosion.cs:25:269:25:272 | [post] this access | UseUseExplosion.cs:25:286:25:289 | this access |
+| UseUseExplosion.cs:25:269:25:272 | [post] this access | UseUseExplosion.cs:25:2968:25:2973 | this access |
+| UseUseExplosion.cs:25:269:25:272 | access to property Prop | UseUseExplosion.cs:25:269:25:277 | ... > ... |
+| UseUseExplosion.cs:25:269:25:272 | access to property Prop | UseUseExplosion.cs:25:286:25:289 | access to property Prop |
+| UseUseExplosion.cs:25:269:25:272 | this access | UseUseExplosion.cs:25:286:25:289 | this access |
+| UseUseExplosion.cs:25:269:25:272 | this access | UseUseExplosion.cs:25:2968:25:2973 | this access |
+| UseUseExplosion.cs:25:286:25:289 | [post] this access | UseUseExplosion.cs:25:303:25:306 | this access |
+| UseUseExplosion.cs:25:286:25:289 | [post] this access | UseUseExplosion.cs:25:2953:25:2958 | this access |
+| UseUseExplosion.cs:25:286:25:289 | access to property Prop | UseUseExplosion.cs:25:286:25:294 | ... > ... |
+| UseUseExplosion.cs:25:286:25:289 | access to property Prop | UseUseExplosion.cs:25:303:25:306 | access to property Prop |
+| UseUseExplosion.cs:25:286:25:289 | this access | UseUseExplosion.cs:25:303:25:306 | this access |
+| UseUseExplosion.cs:25:286:25:289 | this access | UseUseExplosion.cs:25:2953:25:2958 | this access |
+| UseUseExplosion.cs:25:303:25:306 | [post] this access | UseUseExplosion.cs:25:320:25:323 | this access |
+| UseUseExplosion.cs:25:303:25:306 | [post] this access | UseUseExplosion.cs:25:2938:25:2943 | this access |
+| UseUseExplosion.cs:25:303:25:306 | access to property Prop | UseUseExplosion.cs:25:303:25:311 | ... > ... |
+| UseUseExplosion.cs:25:303:25:306 | access to property Prop | UseUseExplosion.cs:25:320:25:323 | access to property Prop |
+| UseUseExplosion.cs:25:303:25:306 | this access | UseUseExplosion.cs:25:320:25:323 | this access |
+| UseUseExplosion.cs:25:303:25:306 | this access | UseUseExplosion.cs:25:2938:25:2943 | this access |
+| UseUseExplosion.cs:25:320:25:323 | [post] this access | UseUseExplosion.cs:25:337:25:340 | this access |
+| UseUseExplosion.cs:25:320:25:323 | [post] this access | UseUseExplosion.cs:25:2923:25:2928 | this access |
+| UseUseExplosion.cs:25:320:25:323 | access to property Prop | UseUseExplosion.cs:25:320:25:328 | ... > ... |
+| UseUseExplosion.cs:25:320:25:323 | access to property Prop | UseUseExplosion.cs:25:337:25:340 | access to property Prop |
+| UseUseExplosion.cs:25:320:25:323 | this access | UseUseExplosion.cs:25:337:25:340 | this access |
+| UseUseExplosion.cs:25:320:25:323 | this access | UseUseExplosion.cs:25:2923:25:2928 | this access |
+| UseUseExplosion.cs:25:337:25:340 | [post] this access | UseUseExplosion.cs:25:354:25:357 | this access |
+| UseUseExplosion.cs:25:337:25:340 | [post] this access | UseUseExplosion.cs:25:2908:25:2913 | this access |
+| UseUseExplosion.cs:25:337:25:340 | access to property Prop | UseUseExplosion.cs:25:337:25:345 | ... > ... |
+| UseUseExplosion.cs:25:337:25:340 | access to property Prop | UseUseExplosion.cs:25:354:25:357 | access to property Prop |
+| UseUseExplosion.cs:25:337:25:340 | this access | UseUseExplosion.cs:25:354:25:357 | this access |
+| UseUseExplosion.cs:25:337:25:340 | this access | UseUseExplosion.cs:25:2908:25:2913 | this access |
+| UseUseExplosion.cs:25:354:25:357 | [post] this access | UseUseExplosion.cs:25:371:25:374 | this access |
+| UseUseExplosion.cs:25:354:25:357 | [post] this access | UseUseExplosion.cs:25:2893:25:2898 | this access |
+| UseUseExplosion.cs:25:354:25:357 | access to property Prop | UseUseExplosion.cs:25:354:25:362 | ... > ... |
+| UseUseExplosion.cs:25:354:25:357 | access to property Prop | UseUseExplosion.cs:25:371:25:374 | access to property Prop |
+| UseUseExplosion.cs:25:354:25:357 | this access | UseUseExplosion.cs:25:371:25:374 | this access |
+| UseUseExplosion.cs:25:354:25:357 | this access | UseUseExplosion.cs:25:2893:25:2898 | this access |
+| UseUseExplosion.cs:25:371:25:374 | [post] this access | UseUseExplosion.cs:25:388:25:391 | this access |
+| UseUseExplosion.cs:25:371:25:374 | [post] this access | UseUseExplosion.cs:25:2878:25:2883 | this access |
+| UseUseExplosion.cs:25:371:25:374 | access to property Prop | UseUseExplosion.cs:25:371:25:379 | ... > ... |
+| UseUseExplosion.cs:25:371:25:374 | access to property Prop | UseUseExplosion.cs:25:388:25:391 | access to property Prop |
+| UseUseExplosion.cs:25:371:25:374 | this access | UseUseExplosion.cs:25:388:25:391 | this access |
+| UseUseExplosion.cs:25:371:25:374 | this access | UseUseExplosion.cs:25:2878:25:2883 | this access |
+| UseUseExplosion.cs:25:388:25:391 | [post] this access | UseUseExplosion.cs:25:405:25:408 | this access |
+| UseUseExplosion.cs:25:388:25:391 | [post] this access | UseUseExplosion.cs:25:2863:25:2868 | this access |
+| UseUseExplosion.cs:25:388:25:391 | access to property Prop | UseUseExplosion.cs:25:388:25:396 | ... > ... |
+| UseUseExplosion.cs:25:388:25:391 | access to property Prop | UseUseExplosion.cs:25:405:25:408 | access to property Prop |
+| UseUseExplosion.cs:25:388:25:391 | this access | UseUseExplosion.cs:25:405:25:408 | this access |
+| UseUseExplosion.cs:25:388:25:391 | this access | UseUseExplosion.cs:25:2863:25:2868 | this access |
+| UseUseExplosion.cs:25:405:25:408 | [post] this access | UseUseExplosion.cs:25:422:25:425 | this access |
+| UseUseExplosion.cs:25:405:25:408 | [post] this access | UseUseExplosion.cs:25:2848:25:2853 | this access |
+| UseUseExplosion.cs:25:405:25:408 | access to property Prop | UseUseExplosion.cs:25:405:25:413 | ... > ... |
+| UseUseExplosion.cs:25:405:25:408 | access to property Prop | UseUseExplosion.cs:25:422:25:425 | access to property Prop |
+| UseUseExplosion.cs:25:405:25:408 | this access | UseUseExplosion.cs:25:422:25:425 | this access |
+| UseUseExplosion.cs:25:405:25:408 | this access | UseUseExplosion.cs:25:2848:25:2853 | this access |
+| UseUseExplosion.cs:25:422:25:425 | [post] this access | UseUseExplosion.cs:25:439:25:442 | this access |
+| UseUseExplosion.cs:25:422:25:425 | [post] this access | UseUseExplosion.cs:25:2833:25:2838 | this access |
+| UseUseExplosion.cs:25:422:25:425 | access to property Prop | UseUseExplosion.cs:25:422:25:430 | ... > ... |
+| UseUseExplosion.cs:25:422:25:425 | access to property Prop | UseUseExplosion.cs:25:439:25:442 | access to property Prop |
+| UseUseExplosion.cs:25:422:25:425 | this access | UseUseExplosion.cs:25:439:25:442 | this access |
+| UseUseExplosion.cs:25:422:25:425 | this access | UseUseExplosion.cs:25:2833:25:2838 | this access |
+| UseUseExplosion.cs:25:439:25:442 | [post] this access | UseUseExplosion.cs:25:456:25:459 | this access |
+| UseUseExplosion.cs:25:439:25:442 | [post] this access | UseUseExplosion.cs:25:2818:25:2823 | this access |
+| UseUseExplosion.cs:25:439:25:442 | access to property Prop | UseUseExplosion.cs:25:439:25:447 | ... > ... |
+| UseUseExplosion.cs:25:439:25:442 | access to property Prop | UseUseExplosion.cs:25:456:25:459 | access to property Prop |
+| UseUseExplosion.cs:25:439:25:442 | this access | UseUseExplosion.cs:25:456:25:459 | this access |
+| UseUseExplosion.cs:25:439:25:442 | this access | UseUseExplosion.cs:25:2818:25:2823 | this access |
+| UseUseExplosion.cs:25:456:25:459 | [post] this access | UseUseExplosion.cs:25:473:25:476 | this access |
+| UseUseExplosion.cs:25:456:25:459 | [post] this access | UseUseExplosion.cs:25:2803:25:2808 | this access |
+| UseUseExplosion.cs:25:456:25:459 | access to property Prop | UseUseExplosion.cs:25:456:25:464 | ... > ... |
+| UseUseExplosion.cs:25:456:25:459 | access to property Prop | UseUseExplosion.cs:25:473:25:476 | access to property Prop |
+| UseUseExplosion.cs:25:456:25:459 | this access | UseUseExplosion.cs:25:473:25:476 | this access |
+| UseUseExplosion.cs:25:456:25:459 | this access | UseUseExplosion.cs:25:2803:25:2808 | this access |
+| UseUseExplosion.cs:25:473:25:476 | [post] this access | UseUseExplosion.cs:25:490:25:493 | this access |
+| UseUseExplosion.cs:25:473:25:476 | [post] this access | UseUseExplosion.cs:25:2788:25:2793 | this access |
+| UseUseExplosion.cs:25:473:25:476 | access to property Prop | UseUseExplosion.cs:25:473:25:481 | ... > ... |
+| UseUseExplosion.cs:25:473:25:476 | access to property Prop | UseUseExplosion.cs:25:490:25:493 | access to property Prop |
+| UseUseExplosion.cs:25:473:25:476 | this access | UseUseExplosion.cs:25:490:25:493 | this access |
+| UseUseExplosion.cs:25:473:25:476 | this access | UseUseExplosion.cs:25:2788:25:2793 | this access |
+| UseUseExplosion.cs:25:490:25:493 | [post] this access | UseUseExplosion.cs:25:507:25:510 | this access |
+| UseUseExplosion.cs:25:490:25:493 | [post] this access | UseUseExplosion.cs:25:2773:25:2778 | this access |
+| UseUseExplosion.cs:25:490:25:493 | access to property Prop | UseUseExplosion.cs:25:490:25:498 | ... > ... |
+| UseUseExplosion.cs:25:490:25:493 | access to property Prop | UseUseExplosion.cs:25:507:25:510 | access to property Prop |
+| UseUseExplosion.cs:25:490:25:493 | this access | UseUseExplosion.cs:25:507:25:510 | this access |
+| UseUseExplosion.cs:25:490:25:493 | this access | UseUseExplosion.cs:25:2773:25:2778 | this access |
+| UseUseExplosion.cs:25:507:25:510 | [post] this access | UseUseExplosion.cs:25:524:25:527 | this access |
+| UseUseExplosion.cs:25:507:25:510 | [post] this access | UseUseExplosion.cs:25:2758:25:2763 | this access |
+| UseUseExplosion.cs:25:507:25:510 | access to property Prop | UseUseExplosion.cs:25:507:25:515 | ... > ... |
+| UseUseExplosion.cs:25:507:25:510 | access to property Prop | UseUseExplosion.cs:25:524:25:527 | access to property Prop |
+| UseUseExplosion.cs:25:507:25:510 | this access | UseUseExplosion.cs:25:524:25:527 | this access |
+| UseUseExplosion.cs:25:507:25:510 | this access | UseUseExplosion.cs:25:2758:25:2763 | this access |
+| UseUseExplosion.cs:25:524:25:527 | [post] this access | UseUseExplosion.cs:25:541:25:544 | this access |
+| UseUseExplosion.cs:25:524:25:527 | [post] this access | UseUseExplosion.cs:25:2743:25:2748 | this access |
+| UseUseExplosion.cs:25:524:25:527 | access to property Prop | UseUseExplosion.cs:25:524:25:532 | ... > ... |
+| UseUseExplosion.cs:25:524:25:527 | access to property Prop | UseUseExplosion.cs:25:541:25:544 | access to property Prop |
+| UseUseExplosion.cs:25:524:25:527 | this access | UseUseExplosion.cs:25:541:25:544 | this access |
+| UseUseExplosion.cs:25:524:25:527 | this access | UseUseExplosion.cs:25:2743:25:2748 | this access |
+| UseUseExplosion.cs:25:541:25:544 | [post] this access | UseUseExplosion.cs:25:558:25:561 | this access |
+| UseUseExplosion.cs:25:541:25:544 | [post] this access | UseUseExplosion.cs:25:2728:25:2733 | this access |
+| UseUseExplosion.cs:25:541:25:544 | access to property Prop | UseUseExplosion.cs:25:541:25:549 | ... > ... |
+| UseUseExplosion.cs:25:541:25:544 | access to property Prop | UseUseExplosion.cs:25:558:25:561 | access to property Prop |
+| UseUseExplosion.cs:25:541:25:544 | this access | UseUseExplosion.cs:25:558:25:561 | this access |
+| UseUseExplosion.cs:25:541:25:544 | this access | UseUseExplosion.cs:25:2728:25:2733 | this access |
+| UseUseExplosion.cs:25:558:25:561 | [post] this access | UseUseExplosion.cs:25:575:25:578 | this access |
+| UseUseExplosion.cs:25:558:25:561 | [post] this access | UseUseExplosion.cs:25:2713:25:2718 | this access |
+| UseUseExplosion.cs:25:558:25:561 | access to property Prop | UseUseExplosion.cs:25:558:25:566 | ... > ... |
+| UseUseExplosion.cs:25:558:25:561 | access to property Prop | UseUseExplosion.cs:25:575:25:578 | access to property Prop |
+| UseUseExplosion.cs:25:558:25:561 | this access | UseUseExplosion.cs:25:575:25:578 | this access |
+| UseUseExplosion.cs:25:558:25:561 | this access | UseUseExplosion.cs:25:2713:25:2718 | this access |
+| UseUseExplosion.cs:25:575:25:578 | [post] this access | UseUseExplosion.cs:25:592:25:595 | this access |
+| UseUseExplosion.cs:25:575:25:578 | [post] this access | UseUseExplosion.cs:25:2698:25:2703 | this access |
+| UseUseExplosion.cs:25:575:25:578 | access to property Prop | UseUseExplosion.cs:25:575:25:583 | ... > ... |
+| UseUseExplosion.cs:25:575:25:578 | access to property Prop | UseUseExplosion.cs:25:592:25:595 | access to property Prop |
+| UseUseExplosion.cs:25:575:25:578 | this access | UseUseExplosion.cs:25:592:25:595 | this access |
+| UseUseExplosion.cs:25:575:25:578 | this access | UseUseExplosion.cs:25:2698:25:2703 | this access |
+| UseUseExplosion.cs:25:592:25:595 | [post] this access | UseUseExplosion.cs:25:609:25:612 | this access |
+| UseUseExplosion.cs:25:592:25:595 | [post] this access | UseUseExplosion.cs:25:2683:25:2688 | this access |
+| UseUseExplosion.cs:25:592:25:595 | access to property Prop | UseUseExplosion.cs:25:592:25:600 | ... > ... |
+| UseUseExplosion.cs:25:592:25:595 | access to property Prop | UseUseExplosion.cs:25:609:25:612 | access to property Prop |
+| UseUseExplosion.cs:25:592:25:595 | this access | UseUseExplosion.cs:25:609:25:612 | this access |
+| UseUseExplosion.cs:25:592:25:595 | this access | UseUseExplosion.cs:25:2683:25:2688 | this access |
+| UseUseExplosion.cs:25:609:25:612 | [post] this access | UseUseExplosion.cs:25:626:25:629 | this access |
+| UseUseExplosion.cs:25:609:25:612 | [post] this access | UseUseExplosion.cs:25:2668:25:2673 | this access |
+| UseUseExplosion.cs:25:609:25:612 | access to property Prop | UseUseExplosion.cs:25:609:25:617 | ... > ... |
+| UseUseExplosion.cs:25:609:25:612 | access to property Prop | UseUseExplosion.cs:25:626:25:629 | access to property Prop |
+| UseUseExplosion.cs:25:609:25:612 | this access | UseUseExplosion.cs:25:626:25:629 | this access |
+| UseUseExplosion.cs:25:609:25:612 | this access | UseUseExplosion.cs:25:2668:25:2673 | this access |
+| UseUseExplosion.cs:25:626:25:629 | [post] this access | UseUseExplosion.cs:25:643:25:646 | this access |
+| UseUseExplosion.cs:25:626:25:629 | [post] this access | UseUseExplosion.cs:25:2653:25:2658 | this access |
+| UseUseExplosion.cs:25:626:25:629 | access to property Prop | UseUseExplosion.cs:25:626:25:634 | ... > ... |
+| UseUseExplosion.cs:25:626:25:629 | access to property Prop | UseUseExplosion.cs:25:643:25:646 | access to property Prop |
+| UseUseExplosion.cs:25:626:25:629 | this access | UseUseExplosion.cs:25:643:25:646 | this access |
+| UseUseExplosion.cs:25:626:25:629 | this access | UseUseExplosion.cs:25:2653:25:2658 | this access |
+| UseUseExplosion.cs:25:643:25:646 | [post] this access | UseUseExplosion.cs:25:660:25:663 | this access |
+| UseUseExplosion.cs:25:643:25:646 | [post] this access | UseUseExplosion.cs:25:2638:25:2643 | this access |
+| UseUseExplosion.cs:25:643:25:646 | access to property Prop | UseUseExplosion.cs:25:643:25:651 | ... > ... |
+| UseUseExplosion.cs:25:643:25:646 | access to property Prop | UseUseExplosion.cs:25:660:25:663 | access to property Prop |
+| UseUseExplosion.cs:25:643:25:646 | this access | UseUseExplosion.cs:25:660:25:663 | this access |
+| UseUseExplosion.cs:25:643:25:646 | this access | UseUseExplosion.cs:25:2638:25:2643 | this access |
+| UseUseExplosion.cs:25:660:25:663 | [post] this access | UseUseExplosion.cs:25:677:25:680 | this access |
+| UseUseExplosion.cs:25:660:25:663 | [post] this access | UseUseExplosion.cs:25:2623:25:2628 | this access |
+| UseUseExplosion.cs:25:660:25:663 | access to property Prop | UseUseExplosion.cs:25:660:25:668 | ... > ... |
+| UseUseExplosion.cs:25:660:25:663 | access to property Prop | UseUseExplosion.cs:25:677:25:680 | access to property Prop |
+| UseUseExplosion.cs:25:660:25:663 | this access | UseUseExplosion.cs:25:677:25:680 | this access |
+| UseUseExplosion.cs:25:660:25:663 | this access | UseUseExplosion.cs:25:2623:25:2628 | this access |
+| UseUseExplosion.cs:25:677:25:680 | [post] this access | UseUseExplosion.cs:25:694:25:697 | this access |
+| UseUseExplosion.cs:25:677:25:680 | [post] this access | UseUseExplosion.cs:25:2608:25:2613 | this access |
+| UseUseExplosion.cs:25:677:25:680 | access to property Prop | UseUseExplosion.cs:25:677:25:685 | ... > ... |
+| UseUseExplosion.cs:25:677:25:680 | access to property Prop | UseUseExplosion.cs:25:694:25:697 | access to property Prop |
+| UseUseExplosion.cs:25:677:25:680 | this access | UseUseExplosion.cs:25:694:25:697 | this access |
+| UseUseExplosion.cs:25:677:25:680 | this access | UseUseExplosion.cs:25:2608:25:2613 | this access |
+| UseUseExplosion.cs:25:694:25:697 | [post] this access | UseUseExplosion.cs:25:711:25:714 | this access |
+| UseUseExplosion.cs:25:694:25:697 | [post] this access | UseUseExplosion.cs:25:2593:25:2598 | this access |
+| UseUseExplosion.cs:25:694:25:697 | access to property Prop | UseUseExplosion.cs:25:694:25:702 | ... > ... |
+| UseUseExplosion.cs:25:694:25:697 | access to property Prop | UseUseExplosion.cs:25:711:25:714 | access to property Prop |
+| UseUseExplosion.cs:25:694:25:697 | this access | UseUseExplosion.cs:25:711:25:714 | this access |
+| UseUseExplosion.cs:25:694:25:697 | this access | UseUseExplosion.cs:25:2593:25:2598 | this access |
+| UseUseExplosion.cs:25:711:25:714 | [post] this access | UseUseExplosion.cs:25:728:25:731 | this access |
+| UseUseExplosion.cs:25:711:25:714 | [post] this access | UseUseExplosion.cs:25:2578:25:2583 | this access |
+| UseUseExplosion.cs:25:711:25:714 | access to property Prop | UseUseExplosion.cs:25:711:25:719 | ... > ... |
+| UseUseExplosion.cs:25:711:25:714 | access to property Prop | UseUseExplosion.cs:25:728:25:731 | access to property Prop |
+| UseUseExplosion.cs:25:711:25:714 | this access | UseUseExplosion.cs:25:728:25:731 | this access |
+| UseUseExplosion.cs:25:711:25:714 | this access | UseUseExplosion.cs:25:2578:25:2583 | this access |
+| UseUseExplosion.cs:25:728:25:731 | [post] this access | UseUseExplosion.cs:25:745:25:748 | this access |
+| UseUseExplosion.cs:25:728:25:731 | [post] this access | UseUseExplosion.cs:25:2563:25:2568 | this access |
+| UseUseExplosion.cs:25:728:25:731 | access to property Prop | UseUseExplosion.cs:25:728:25:736 | ... > ... |
+| UseUseExplosion.cs:25:728:25:731 | access to property Prop | UseUseExplosion.cs:25:745:25:748 | access to property Prop |
+| UseUseExplosion.cs:25:728:25:731 | this access | UseUseExplosion.cs:25:745:25:748 | this access |
+| UseUseExplosion.cs:25:728:25:731 | this access | UseUseExplosion.cs:25:2563:25:2568 | this access |
+| UseUseExplosion.cs:25:745:25:748 | [post] this access | UseUseExplosion.cs:25:762:25:765 | this access |
+| UseUseExplosion.cs:25:745:25:748 | [post] this access | UseUseExplosion.cs:25:2548:25:2553 | this access |
+| UseUseExplosion.cs:25:745:25:748 | access to property Prop | UseUseExplosion.cs:25:745:25:753 | ... > ... |
+| UseUseExplosion.cs:25:745:25:748 | access to property Prop | UseUseExplosion.cs:25:762:25:765 | access to property Prop |
+| UseUseExplosion.cs:25:745:25:748 | this access | UseUseExplosion.cs:25:762:25:765 | this access |
+| UseUseExplosion.cs:25:745:25:748 | this access | UseUseExplosion.cs:25:2548:25:2553 | this access |
+| UseUseExplosion.cs:25:762:25:765 | [post] this access | UseUseExplosion.cs:25:779:25:782 | this access |
+| UseUseExplosion.cs:25:762:25:765 | [post] this access | UseUseExplosion.cs:25:2533:25:2538 | this access |
+| UseUseExplosion.cs:25:762:25:765 | access to property Prop | UseUseExplosion.cs:25:762:25:770 | ... > ... |
+| UseUseExplosion.cs:25:762:25:765 | access to property Prop | UseUseExplosion.cs:25:779:25:782 | access to property Prop |
+| UseUseExplosion.cs:25:762:25:765 | this access | UseUseExplosion.cs:25:779:25:782 | this access |
+| UseUseExplosion.cs:25:762:25:765 | this access | UseUseExplosion.cs:25:2533:25:2538 | this access |
+| UseUseExplosion.cs:25:779:25:782 | [post] this access | UseUseExplosion.cs:25:796:25:799 | this access |
+| UseUseExplosion.cs:25:779:25:782 | [post] this access | UseUseExplosion.cs:25:2518:25:2523 | this access |
+| UseUseExplosion.cs:25:779:25:782 | access to property Prop | UseUseExplosion.cs:25:779:25:787 | ... > ... |
+| UseUseExplosion.cs:25:779:25:782 | access to property Prop | UseUseExplosion.cs:25:796:25:799 | access to property Prop |
+| UseUseExplosion.cs:25:779:25:782 | this access | UseUseExplosion.cs:25:796:25:799 | this access |
+| UseUseExplosion.cs:25:779:25:782 | this access | UseUseExplosion.cs:25:2518:25:2523 | this access |
+| UseUseExplosion.cs:25:796:25:799 | [post] this access | UseUseExplosion.cs:25:813:25:816 | this access |
+| UseUseExplosion.cs:25:796:25:799 | [post] this access | UseUseExplosion.cs:25:2503:25:2508 | this access |
+| UseUseExplosion.cs:25:796:25:799 | access to property Prop | UseUseExplosion.cs:25:796:25:804 | ... > ... |
+| UseUseExplosion.cs:25:796:25:799 | access to property Prop | UseUseExplosion.cs:25:813:25:816 | access to property Prop |
+| UseUseExplosion.cs:25:796:25:799 | this access | UseUseExplosion.cs:25:813:25:816 | this access |
+| UseUseExplosion.cs:25:796:25:799 | this access | UseUseExplosion.cs:25:2503:25:2508 | this access |
+| UseUseExplosion.cs:25:813:25:816 | [post] this access | UseUseExplosion.cs:25:830:25:833 | this access |
+| UseUseExplosion.cs:25:813:25:816 | [post] this access | UseUseExplosion.cs:25:2488:25:2493 | this access |
+| UseUseExplosion.cs:25:813:25:816 | access to property Prop | UseUseExplosion.cs:25:813:25:821 | ... > ... |
+| UseUseExplosion.cs:25:813:25:816 | access to property Prop | UseUseExplosion.cs:25:830:25:833 | access to property Prop |
+| UseUseExplosion.cs:25:813:25:816 | this access | UseUseExplosion.cs:25:830:25:833 | this access |
+| UseUseExplosion.cs:25:813:25:816 | this access | UseUseExplosion.cs:25:2488:25:2493 | this access |
+| UseUseExplosion.cs:25:830:25:833 | [post] this access | UseUseExplosion.cs:25:847:25:850 | this access |
+| UseUseExplosion.cs:25:830:25:833 | [post] this access | UseUseExplosion.cs:25:2473:25:2478 | this access |
+| UseUseExplosion.cs:25:830:25:833 | access to property Prop | UseUseExplosion.cs:25:830:25:838 | ... > ... |
+| UseUseExplosion.cs:25:830:25:833 | access to property Prop | UseUseExplosion.cs:25:847:25:850 | access to property Prop |
+| UseUseExplosion.cs:25:830:25:833 | this access | UseUseExplosion.cs:25:847:25:850 | this access |
+| UseUseExplosion.cs:25:830:25:833 | this access | UseUseExplosion.cs:25:2473:25:2478 | this access |
+| UseUseExplosion.cs:25:847:25:850 | [post] this access | UseUseExplosion.cs:25:864:25:867 | this access |
+| UseUseExplosion.cs:25:847:25:850 | [post] this access | UseUseExplosion.cs:25:2458:25:2463 | this access |
+| UseUseExplosion.cs:25:847:25:850 | access to property Prop | UseUseExplosion.cs:25:847:25:855 | ... > ... |
+| UseUseExplosion.cs:25:847:25:850 | access to property Prop | UseUseExplosion.cs:25:864:25:867 | access to property Prop |
+| UseUseExplosion.cs:25:847:25:850 | this access | UseUseExplosion.cs:25:864:25:867 | this access |
+| UseUseExplosion.cs:25:847:25:850 | this access | UseUseExplosion.cs:25:2458:25:2463 | this access |
+| UseUseExplosion.cs:25:864:25:867 | [post] this access | UseUseExplosion.cs:25:881:25:884 | this access |
+| UseUseExplosion.cs:25:864:25:867 | [post] this access | UseUseExplosion.cs:25:2443:25:2448 | this access |
+| UseUseExplosion.cs:25:864:25:867 | access to property Prop | UseUseExplosion.cs:25:864:25:872 | ... > ... |
+| UseUseExplosion.cs:25:864:25:867 | access to property Prop | UseUseExplosion.cs:25:881:25:884 | access to property Prop |
+| UseUseExplosion.cs:25:864:25:867 | this access | UseUseExplosion.cs:25:881:25:884 | this access |
+| UseUseExplosion.cs:25:864:25:867 | this access | UseUseExplosion.cs:25:2443:25:2448 | this access |
+| UseUseExplosion.cs:25:881:25:884 | [post] this access | UseUseExplosion.cs:25:898:25:901 | this access |
+| UseUseExplosion.cs:25:881:25:884 | [post] this access | UseUseExplosion.cs:25:2428:25:2433 | this access |
+| UseUseExplosion.cs:25:881:25:884 | access to property Prop | UseUseExplosion.cs:25:881:25:889 | ... > ... |
+| UseUseExplosion.cs:25:881:25:884 | access to property Prop | UseUseExplosion.cs:25:898:25:901 | access to property Prop |
+| UseUseExplosion.cs:25:881:25:884 | this access | UseUseExplosion.cs:25:898:25:901 | this access |
+| UseUseExplosion.cs:25:881:25:884 | this access | UseUseExplosion.cs:25:2428:25:2433 | this access |
+| UseUseExplosion.cs:25:898:25:901 | [post] this access | UseUseExplosion.cs:25:915:25:918 | this access |
+| UseUseExplosion.cs:25:898:25:901 | [post] this access | UseUseExplosion.cs:25:2413:25:2418 | this access |
+| UseUseExplosion.cs:25:898:25:901 | access to property Prop | UseUseExplosion.cs:25:898:25:906 | ... > ... |
+| UseUseExplosion.cs:25:898:25:901 | access to property Prop | UseUseExplosion.cs:25:915:25:918 | access to property Prop |
+| UseUseExplosion.cs:25:898:25:901 | this access | UseUseExplosion.cs:25:915:25:918 | this access |
+| UseUseExplosion.cs:25:898:25:901 | this access | UseUseExplosion.cs:25:2413:25:2418 | this access |
+| UseUseExplosion.cs:25:915:25:918 | [post] this access | UseUseExplosion.cs:25:932:25:935 | this access |
+| UseUseExplosion.cs:25:915:25:918 | [post] this access | UseUseExplosion.cs:25:2398:25:2403 | this access |
+| UseUseExplosion.cs:25:915:25:918 | access to property Prop | UseUseExplosion.cs:25:915:25:923 | ... > ... |
+| UseUseExplosion.cs:25:915:25:918 | access to property Prop | UseUseExplosion.cs:25:932:25:935 | access to property Prop |
+| UseUseExplosion.cs:25:915:25:918 | this access | UseUseExplosion.cs:25:932:25:935 | this access |
+| UseUseExplosion.cs:25:915:25:918 | this access | UseUseExplosion.cs:25:2398:25:2403 | this access |
+| UseUseExplosion.cs:25:932:25:935 | [post] this access | UseUseExplosion.cs:25:949:25:952 | this access |
+| UseUseExplosion.cs:25:932:25:935 | [post] this access | UseUseExplosion.cs:25:2383:25:2388 | this access |
+| UseUseExplosion.cs:25:932:25:935 | access to property Prop | UseUseExplosion.cs:25:932:25:940 | ... > ... |
+| UseUseExplosion.cs:25:932:25:935 | access to property Prop | UseUseExplosion.cs:25:949:25:952 | access to property Prop |
+| UseUseExplosion.cs:25:932:25:935 | this access | UseUseExplosion.cs:25:949:25:952 | this access |
+| UseUseExplosion.cs:25:932:25:935 | this access | UseUseExplosion.cs:25:2383:25:2388 | this access |
+| UseUseExplosion.cs:25:949:25:952 | [post] this access | UseUseExplosion.cs:25:966:25:969 | this access |
+| UseUseExplosion.cs:25:949:25:952 | [post] this access | UseUseExplosion.cs:25:2368:25:2373 | this access |
+| UseUseExplosion.cs:25:949:25:952 | access to property Prop | UseUseExplosion.cs:25:949:25:957 | ... > ... |
+| UseUseExplosion.cs:25:949:25:952 | access to property Prop | UseUseExplosion.cs:25:966:25:969 | access to property Prop |
+| UseUseExplosion.cs:25:949:25:952 | this access | UseUseExplosion.cs:25:966:25:969 | this access |
+| UseUseExplosion.cs:25:949:25:952 | this access | UseUseExplosion.cs:25:2368:25:2373 | this access |
+| UseUseExplosion.cs:25:966:25:969 | [post] this access | UseUseExplosion.cs:25:983:25:986 | this access |
+| UseUseExplosion.cs:25:966:25:969 | [post] this access | UseUseExplosion.cs:25:2353:25:2358 | this access |
+| UseUseExplosion.cs:25:966:25:969 | access to property Prop | UseUseExplosion.cs:25:966:25:974 | ... > ... |
+| UseUseExplosion.cs:25:966:25:969 | access to property Prop | UseUseExplosion.cs:25:983:25:986 | access to property Prop |
+| UseUseExplosion.cs:25:966:25:969 | this access | UseUseExplosion.cs:25:983:25:986 | this access |
+| UseUseExplosion.cs:25:966:25:969 | this access | UseUseExplosion.cs:25:2353:25:2358 | this access |
+| UseUseExplosion.cs:25:983:25:986 | [post] this access | UseUseExplosion.cs:25:1000:25:1003 | this access |
+| UseUseExplosion.cs:25:983:25:986 | [post] this access | UseUseExplosion.cs:25:2338:25:2343 | this access |
+| UseUseExplosion.cs:25:983:25:986 | access to property Prop | UseUseExplosion.cs:25:983:25:991 | ... > ... |
+| UseUseExplosion.cs:25:983:25:986 | access to property Prop | UseUseExplosion.cs:25:1000:25:1003 | access to property Prop |
+| UseUseExplosion.cs:25:983:25:986 | this access | UseUseExplosion.cs:25:1000:25:1003 | this access |
+| UseUseExplosion.cs:25:983:25:986 | this access | UseUseExplosion.cs:25:2338:25:2343 | this access |
+| UseUseExplosion.cs:25:1000:25:1003 | [post] this access | UseUseExplosion.cs:25:1017:25:1020 | this access |
+| UseUseExplosion.cs:25:1000:25:1003 | [post] this access | UseUseExplosion.cs:25:2323:25:2328 | this access |
+| UseUseExplosion.cs:25:1000:25:1003 | access to property Prop | UseUseExplosion.cs:25:1000:25:1008 | ... > ... |
+| UseUseExplosion.cs:25:1000:25:1003 | access to property Prop | UseUseExplosion.cs:25:1017:25:1020 | access to property Prop |
+| UseUseExplosion.cs:25:1000:25:1003 | this access | UseUseExplosion.cs:25:1017:25:1020 | this access |
+| UseUseExplosion.cs:25:1000:25:1003 | this access | UseUseExplosion.cs:25:2323:25:2328 | this access |
+| UseUseExplosion.cs:25:1017:25:1020 | [post] this access | UseUseExplosion.cs:25:1034:25:1037 | this access |
+| UseUseExplosion.cs:25:1017:25:1020 | [post] this access | UseUseExplosion.cs:25:2308:25:2313 | this access |
+| UseUseExplosion.cs:25:1017:25:1020 | access to property Prop | UseUseExplosion.cs:25:1017:25:1025 | ... > ... |
+| UseUseExplosion.cs:25:1017:25:1020 | access to property Prop | UseUseExplosion.cs:25:1034:25:1037 | access to property Prop |
+| UseUseExplosion.cs:25:1017:25:1020 | this access | UseUseExplosion.cs:25:1034:25:1037 | this access |
+| UseUseExplosion.cs:25:1017:25:1020 | this access | UseUseExplosion.cs:25:2308:25:2313 | this access |
+| UseUseExplosion.cs:25:1034:25:1037 | [post] this access | UseUseExplosion.cs:25:1051:25:1054 | this access |
+| UseUseExplosion.cs:25:1034:25:1037 | [post] this access | UseUseExplosion.cs:25:2293:25:2298 | this access |
+| UseUseExplosion.cs:25:1034:25:1037 | access to property Prop | UseUseExplosion.cs:25:1034:25:1042 | ... > ... |
+| UseUseExplosion.cs:25:1034:25:1037 | access to property Prop | UseUseExplosion.cs:25:1051:25:1054 | access to property Prop |
+| UseUseExplosion.cs:25:1034:25:1037 | this access | UseUseExplosion.cs:25:1051:25:1054 | this access |
+| UseUseExplosion.cs:25:1034:25:1037 | this access | UseUseExplosion.cs:25:2293:25:2298 | this access |
+| UseUseExplosion.cs:25:1051:25:1054 | [post] this access | UseUseExplosion.cs:25:1068:25:1071 | this access |
+| UseUseExplosion.cs:25:1051:25:1054 | [post] this access | UseUseExplosion.cs:25:2278:25:2283 | this access |
+| UseUseExplosion.cs:25:1051:25:1054 | access to property Prop | UseUseExplosion.cs:25:1051:25:1059 | ... > ... |
+| UseUseExplosion.cs:25:1051:25:1054 | access to property Prop | UseUseExplosion.cs:25:1068:25:1071 | access to property Prop |
+| UseUseExplosion.cs:25:1051:25:1054 | this access | UseUseExplosion.cs:25:1068:25:1071 | this access |
+| UseUseExplosion.cs:25:1051:25:1054 | this access | UseUseExplosion.cs:25:2278:25:2283 | this access |
+| UseUseExplosion.cs:25:1068:25:1071 | [post] this access | UseUseExplosion.cs:25:1085:25:1088 | this access |
+| UseUseExplosion.cs:25:1068:25:1071 | [post] this access | UseUseExplosion.cs:25:2263:25:2268 | this access |
+| UseUseExplosion.cs:25:1068:25:1071 | access to property Prop | UseUseExplosion.cs:25:1068:25:1076 | ... > ... |
+| UseUseExplosion.cs:25:1068:25:1071 | access to property Prop | UseUseExplosion.cs:25:1085:25:1088 | access to property Prop |
+| UseUseExplosion.cs:25:1068:25:1071 | this access | UseUseExplosion.cs:25:1085:25:1088 | this access |
+| UseUseExplosion.cs:25:1068:25:1071 | this access | UseUseExplosion.cs:25:2263:25:2268 | this access |
+| UseUseExplosion.cs:25:1085:25:1088 | [post] this access | UseUseExplosion.cs:25:1102:25:1105 | this access |
+| UseUseExplosion.cs:25:1085:25:1088 | [post] this access | UseUseExplosion.cs:25:2248:25:2253 | this access |
+| UseUseExplosion.cs:25:1085:25:1088 | access to property Prop | UseUseExplosion.cs:25:1085:25:1093 | ... > ... |
+| UseUseExplosion.cs:25:1085:25:1088 | access to property Prop | UseUseExplosion.cs:25:1102:25:1105 | access to property Prop |
+| UseUseExplosion.cs:25:1085:25:1088 | this access | UseUseExplosion.cs:25:1102:25:1105 | this access |
+| UseUseExplosion.cs:25:1085:25:1088 | this access | UseUseExplosion.cs:25:2248:25:2253 | this access |
+| UseUseExplosion.cs:25:1102:25:1105 | [post] this access | UseUseExplosion.cs:25:1119:25:1122 | this access |
+| UseUseExplosion.cs:25:1102:25:1105 | [post] this access | UseUseExplosion.cs:25:2233:25:2238 | this access |
+| UseUseExplosion.cs:25:1102:25:1105 | access to property Prop | UseUseExplosion.cs:25:1102:25:1110 | ... > ... |
+| UseUseExplosion.cs:25:1102:25:1105 | access to property Prop | UseUseExplosion.cs:25:1119:25:1122 | access to property Prop |
+| UseUseExplosion.cs:25:1102:25:1105 | this access | UseUseExplosion.cs:25:1119:25:1122 | this access |
+| UseUseExplosion.cs:25:1102:25:1105 | this access | UseUseExplosion.cs:25:2233:25:2238 | this access |
+| UseUseExplosion.cs:25:1119:25:1122 | [post] this access | UseUseExplosion.cs:25:1136:25:1139 | this access |
+| UseUseExplosion.cs:25:1119:25:1122 | [post] this access | UseUseExplosion.cs:25:2218:25:2223 | this access |
+| UseUseExplosion.cs:25:1119:25:1122 | access to property Prop | UseUseExplosion.cs:25:1119:25:1127 | ... > ... |
+| UseUseExplosion.cs:25:1119:25:1122 | access to property Prop | UseUseExplosion.cs:25:1136:25:1139 | access to property Prop |
+| UseUseExplosion.cs:25:1119:25:1122 | this access | UseUseExplosion.cs:25:1136:25:1139 | this access |
+| UseUseExplosion.cs:25:1119:25:1122 | this access | UseUseExplosion.cs:25:2218:25:2223 | this access |
+| UseUseExplosion.cs:25:1136:25:1139 | [post] this access | UseUseExplosion.cs:25:1153:25:1156 | this access |
+| UseUseExplosion.cs:25:1136:25:1139 | [post] this access | UseUseExplosion.cs:25:2203:25:2208 | this access |
+| UseUseExplosion.cs:25:1136:25:1139 | access to property Prop | UseUseExplosion.cs:25:1136:25:1144 | ... > ... |
+| UseUseExplosion.cs:25:1136:25:1139 | access to property Prop | UseUseExplosion.cs:25:1153:25:1156 | access to property Prop |
+| UseUseExplosion.cs:25:1136:25:1139 | this access | UseUseExplosion.cs:25:1153:25:1156 | this access |
+| UseUseExplosion.cs:25:1136:25:1139 | this access | UseUseExplosion.cs:25:2203:25:2208 | this access |
+| UseUseExplosion.cs:25:1153:25:1156 | [post] this access | UseUseExplosion.cs:25:1170:25:1173 | this access |
+| UseUseExplosion.cs:25:1153:25:1156 | [post] this access | UseUseExplosion.cs:25:2188:25:2193 | this access |
+| UseUseExplosion.cs:25:1153:25:1156 | access to property Prop | UseUseExplosion.cs:25:1153:25:1161 | ... > ... |
+| UseUseExplosion.cs:25:1153:25:1156 | access to property Prop | UseUseExplosion.cs:25:1170:25:1173 | access to property Prop |
+| UseUseExplosion.cs:25:1153:25:1156 | this access | UseUseExplosion.cs:25:1170:25:1173 | this access |
+| UseUseExplosion.cs:25:1153:25:1156 | this access | UseUseExplosion.cs:25:2188:25:2193 | this access |
+| UseUseExplosion.cs:25:1170:25:1173 | [post] this access | UseUseExplosion.cs:25:1187:25:1190 | this access |
+| UseUseExplosion.cs:25:1170:25:1173 | [post] this access | UseUseExplosion.cs:25:2173:25:2178 | this access |
+| UseUseExplosion.cs:25:1170:25:1173 | access to property Prop | UseUseExplosion.cs:25:1170:25:1178 | ... > ... |
+| UseUseExplosion.cs:25:1170:25:1173 | access to property Prop | UseUseExplosion.cs:25:1187:25:1190 | access to property Prop |
+| UseUseExplosion.cs:25:1170:25:1173 | this access | UseUseExplosion.cs:25:1187:25:1190 | this access |
+| UseUseExplosion.cs:25:1170:25:1173 | this access | UseUseExplosion.cs:25:2173:25:2178 | this access |
+| UseUseExplosion.cs:25:1187:25:1190 | [post] this access | UseUseExplosion.cs:25:1204:25:1207 | this access |
+| UseUseExplosion.cs:25:1187:25:1190 | [post] this access | UseUseExplosion.cs:25:2158:25:2163 | this access |
+| UseUseExplosion.cs:25:1187:25:1190 | access to property Prop | UseUseExplosion.cs:25:1187:25:1195 | ... > ... |
+| UseUseExplosion.cs:25:1187:25:1190 | access to property Prop | UseUseExplosion.cs:25:1204:25:1207 | access to property Prop |
+| UseUseExplosion.cs:25:1187:25:1190 | this access | UseUseExplosion.cs:25:1204:25:1207 | this access |
+| UseUseExplosion.cs:25:1187:25:1190 | this access | UseUseExplosion.cs:25:2158:25:2163 | this access |
+| UseUseExplosion.cs:25:1204:25:1207 | [post] this access | UseUseExplosion.cs:25:1221:25:1224 | this access |
+| UseUseExplosion.cs:25:1204:25:1207 | [post] this access | UseUseExplosion.cs:25:2143:25:2148 | this access |
+| UseUseExplosion.cs:25:1204:25:1207 | access to property Prop | UseUseExplosion.cs:25:1204:25:1212 | ... > ... |
+| UseUseExplosion.cs:25:1204:25:1207 | access to property Prop | UseUseExplosion.cs:25:1221:25:1224 | access to property Prop |
+| UseUseExplosion.cs:25:1204:25:1207 | this access | UseUseExplosion.cs:25:1221:25:1224 | this access |
+| UseUseExplosion.cs:25:1204:25:1207 | this access | UseUseExplosion.cs:25:2143:25:2148 | this access |
+| UseUseExplosion.cs:25:1221:25:1224 | [post] this access | UseUseExplosion.cs:25:1238:25:1241 | this access |
+| UseUseExplosion.cs:25:1221:25:1224 | [post] this access | UseUseExplosion.cs:25:2128:25:2133 | this access |
+| UseUseExplosion.cs:25:1221:25:1224 | access to property Prop | UseUseExplosion.cs:25:1221:25:1229 | ... > ... |
+| UseUseExplosion.cs:25:1221:25:1224 | access to property Prop | UseUseExplosion.cs:25:1238:25:1241 | access to property Prop |
+| UseUseExplosion.cs:25:1221:25:1224 | this access | UseUseExplosion.cs:25:1238:25:1241 | this access |
+| UseUseExplosion.cs:25:1221:25:1224 | this access | UseUseExplosion.cs:25:2128:25:2133 | this access |
+| UseUseExplosion.cs:25:1238:25:1241 | [post] this access | UseUseExplosion.cs:25:1255:25:1258 | this access |
+| UseUseExplosion.cs:25:1238:25:1241 | [post] this access | UseUseExplosion.cs:25:2113:25:2118 | this access |
+| UseUseExplosion.cs:25:1238:25:1241 | access to property Prop | UseUseExplosion.cs:25:1238:25:1246 | ... > ... |
+| UseUseExplosion.cs:25:1238:25:1241 | access to property Prop | UseUseExplosion.cs:25:1255:25:1258 | access to property Prop |
+| UseUseExplosion.cs:25:1238:25:1241 | this access | UseUseExplosion.cs:25:1255:25:1258 | this access |
+| UseUseExplosion.cs:25:1238:25:1241 | this access | UseUseExplosion.cs:25:2113:25:2118 | this access |
+| UseUseExplosion.cs:25:1255:25:1258 | [post] this access | UseUseExplosion.cs:25:1272:25:1275 | this access |
+| UseUseExplosion.cs:25:1255:25:1258 | [post] this access | UseUseExplosion.cs:25:2098:25:2103 | this access |
+| UseUseExplosion.cs:25:1255:25:1258 | access to property Prop | UseUseExplosion.cs:25:1255:25:1263 | ... > ... |
+| UseUseExplosion.cs:25:1255:25:1258 | access to property Prop | UseUseExplosion.cs:25:1272:25:1275 | access to property Prop |
+| UseUseExplosion.cs:25:1255:25:1258 | this access | UseUseExplosion.cs:25:1272:25:1275 | this access |
+| UseUseExplosion.cs:25:1255:25:1258 | this access | UseUseExplosion.cs:25:2098:25:2103 | this access |
+| UseUseExplosion.cs:25:1272:25:1275 | [post] this access | UseUseExplosion.cs:25:1289:25:1292 | this access |
+| UseUseExplosion.cs:25:1272:25:1275 | [post] this access | UseUseExplosion.cs:25:2083:25:2088 | this access |
+| UseUseExplosion.cs:25:1272:25:1275 | access to property Prop | UseUseExplosion.cs:25:1272:25:1280 | ... > ... |
+| UseUseExplosion.cs:25:1272:25:1275 | access to property Prop | UseUseExplosion.cs:25:1289:25:1292 | access to property Prop |
+| UseUseExplosion.cs:25:1272:25:1275 | this access | UseUseExplosion.cs:25:1289:25:1292 | this access |
+| UseUseExplosion.cs:25:1272:25:1275 | this access | UseUseExplosion.cs:25:2083:25:2088 | this access |
+| UseUseExplosion.cs:25:1289:25:1292 | [post] this access | UseUseExplosion.cs:25:1306:25:1309 | this access |
+| UseUseExplosion.cs:25:1289:25:1292 | [post] this access | UseUseExplosion.cs:25:2068:25:2073 | this access |
+| UseUseExplosion.cs:25:1289:25:1292 | access to property Prop | UseUseExplosion.cs:25:1289:25:1297 | ... > ... |
+| UseUseExplosion.cs:25:1289:25:1292 | access to property Prop | UseUseExplosion.cs:25:1306:25:1309 | access to property Prop |
+| UseUseExplosion.cs:25:1289:25:1292 | this access | UseUseExplosion.cs:25:1306:25:1309 | this access |
+| UseUseExplosion.cs:25:1289:25:1292 | this access | UseUseExplosion.cs:25:2068:25:2073 | this access |
+| UseUseExplosion.cs:25:1306:25:1309 | [post] this access | UseUseExplosion.cs:25:1323:25:1326 | this access |
+| UseUseExplosion.cs:25:1306:25:1309 | [post] this access | UseUseExplosion.cs:25:2053:25:2058 | this access |
+| UseUseExplosion.cs:25:1306:25:1309 | access to property Prop | UseUseExplosion.cs:25:1306:25:1314 | ... > ... |
+| UseUseExplosion.cs:25:1306:25:1309 | access to property Prop | UseUseExplosion.cs:25:1323:25:1326 | access to property Prop |
+| UseUseExplosion.cs:25:1306:25:1309 | this access | UseUseExplosion.cs:25:1323:25:1326 | this access |
+| UseUseExplosion.cs:25:1306:25:1309 | this access | UseUseExplosion.cs:25:2053:25:2058 | this access |
+| UseUseExplosion.cs:25:1323:25:1326 | [post] this access | UseUseExplosion.cs:25:1340:25:1343 | this access |
+| UseUseExplosion.cs:25:1323:25:1326 | [post] this access | UseUseExplosion.cs:25:2038:25:2043 | this access |
+| UseUseExplosion.cs:25:1323:25:1326 | access to property Prop | UseUseExplosion.cs:25:1323:25:1331 | ... > ... |
+| UseUseExplosion.cs:25:1323:25:1326 | access to property Prop | UseUseExplosion.cs:25:1340:25:1343 | access to property Prop |
+| UseUseExplosion.cs:25:1323:25:1326 | this access | UseUseExplosion.cs:25:1340:25:1343 | this access |
+| UseUseExplosion.cs:25:1323:25:1326 | this access | UseUseExplosion.cs:25:2038:25:2043 | this access |
+| UseUseExplosion.cs:25:1340:25:1343 | [post] this access | UseUseExplosion.cs:25:1357:25:1360 | this access |
+| UseUseExplosion.cs:25:1340:25:1343 | [post] this access | UseUseExplosion.cs:25:2023:25:2028 | this access |
+| UseUseExplosion.cs:25:1340:25:1343 | access to property Prop | UseUseExplosion.cs:25:1340:25:1348 | ... > ... |
+| UseUseExplosion.cs:25:1340:25:1343 | access to property Prop | UseUseExplosion.cs:25:1357:25:1360 | access to property Prop |
+| UseUseExplosion.cs:25:1340:25:1343 | this access | UseUseExplosion.cs:25:1357:25:1360 | this access |
+| UseUseExplosion.cs:25:1340:25:1343 | this access | UseUseExplosion.cs:25:2023:25:2028 | this access |
+| UseUseExplosion.cs:25:1357:25:1360 | [post] this access | UseUseExplosion.cs:25:1374:25:1377 | this access |
+| UseUseExplosion.cs:25:1357:25:1360 | [post] this access | UseUseExplosion.cs:25:2008:25:2013 | this access |
+| UseUseExplosion.cs:25:1357:25:1360 | access to property Prop | UseUseExplosion.cs:25:1357:25:1365 | ... > ... |
+| UseUseExplosion.cs:25:1357:25:1360 | access to property Prop | UseUseExplosion.cs:25:1374:25:1377 | access to property Prop |
+| UseUseExplosion.cs:25:1357:25:1360 | this access | UseUseExplosion.cs:25:1374:25:1377 | this access |
+| UseUseExplosion.cs:25:1357:25:1360 | this access | UseUseExplosion.cs:25:2008:25:2013 | this access |
+| UseUseExplosion.cs:25:1374:25:1377 | [post] this access | UseUseExplosion.cs:25:1391:25:1394 | this access |
+| UseUseExplosion.cs:25:1374:25:1377 | [post] this access | UseUseExplosion.cs:25:1993:25:1998 | this access |
+| UseUseExplosion.cs:25:1374:25:1377 | access to property Prop | UseUseExplosion.cs:25:1374:25:1382 | ... > ... |
+| UseUseExplosion.cs:25:1374:25:1377 | access to property Prop | UseUseExplosion.cs:25:1391:25:1394 | access to property Prop |
+| UseUseExplosion.cs:25:1374:25:1377 | this access | UseUseExplosion.cs:25:1391:25:1394 | this access |
+| UseUseExplosion.cs:25:1374:25:1377 | this access | UseUseExplosion.cs:25:1993:25:1998 | this access |
+| UseUseExplosion.cs:25:1391:25:1394 | [post] this access | UseUseExplosion.cs:25:1408:25:1411 | this access |
+| UseUseExplosion.cs:25:1391:25:1394 | [post] this access | UseUseExplosion.cs:25:1978:25:1983 | this access |
+| UseUseExplosion.cs:25:1391:25:1394 | access to property Prop | UseUseExplosion.cs:25:1391:25:1399 | ... > ... |
+| UseUseExplosion.cs:25:1391:25:1394 | access to property Prop | UseUseExplosion.cs:25:1408:25:1411 | access to property Prop |
+| UseUseExplosion.cs:25:1391:25:1394 | this access | UseUseExplosion.cs:25:1408:25:1411 | this access |
+| UseUseExplosion.cs:25:1391:25:1394 | this access | UseUseExplosion.cs:25:1978:25:1983 | this access |
+| UseUseExplosion.cs:25:1408:25:1411 | [post] this access | UseUseExplosion.cs:25:1425:25:1428 | this access |
+| UseUseExplosion.cs:25:1408:25:1411 | [post] this access | UseUseExplosion.cs:25:1963:25:1968 | this access |
+| UseUseExplosion.cs:25:1408:25:1411 | access to property Prop | UseUseExplosion.cs:25:1408:25:1416 | ... > ... |
+| UseUseExplosion.cs:25:1408:25:1411 | access to property Prop | UseUseExplosion.cs:25:1425:25:1428 | access to property Prop |
+| UseUseExplosion.cs:25:1408:25:1411 | this access | UseUseExplosion.cs:25:1425:25:1428 | this access |
+| UseUseExplosion.cs:25:1408:25:1411 | this access | UseUseExplosion.cs:25:1963:25:1968 | this access |
+| UseUseExplosion.cs:25:1425:25:1428 | [post] this access | UseUseExplosion.cs:25:1442:25:1445 | this access |
+| UseUseExplosion.cs:25:1425:25:1428 | [post] this access | UseUseExplosion.cs:25:1948:25:1953 | this access |
+| UseUseExplosion.cs:25:1425:25:1428 | access to property Prop | UseUseExplosion.cs:25:1425:25:1433 | ... > ... |
+| UseUseExplosion.cs:25:1425:25:1428 | access to property Prop | UseUseExplosion.cs:25:1442:25:1445 | access to property Prop |
+| UseUseExplosion.cs:25:1425:25:1428 | this access | UseUseExplosion.cs:25:1442:25:1445 | this access |
+| UseUseExplosion.cs:25:1425:25:1428 | this access | UseUseExplosion.cs:25:1948:25:1953 | this access |
+| UseUseExplosion.cs:25:1442:25:1445 | [post] this access | UseUseExplosion.cs:25:1459:25:1462 | this access |
+| UseUseExplosion.cs:25:1442:25:1445 | [post] this access | UseUseExplosion.cs:25:1933:25:1938 | this access |
+| UseUseExplosion.cs:25:1442:25:1445 | access to property Prop | UseUseExplosion.cs:25:1442:25:1450 | ... > ... |
+| UseUseExplosion.cs:25:1442:25:1445 | access to property Prop | UseUseExplosion.cs:25:1459:25:1462 | access to property Prop |
+| UseUseExplosion.cs:25:1442:25:1445 | this access | UseUseExplosion.cs:25:1459:25:1462 | this access |
+| UseUseExplosion.cs:25:1442:25:1445 | this access | UseUseExplosion.cs:25:1933:25:1938 | this access |
+| UseUseExplosion.cs:25:1459:25:1462 | [post] this access | UseUseExplosion.cs:25:1476:25:1479 | this access |
+| UseUseExplosion.cs:25:1459:25:1462 | [post] this access | UseUseExplosion.cs:25:1918:25:1923 | this access |
+| UseUseExplosion.cs:25:1459:25:1462 | access to property Prop | UseUseExplosion.cs:25:1459:25:1467 | ... > ... |
+| UseUseExplosion.cs:25:1459:25:1462 | access to property Prop | UseUseExplosion.cs:25:1476:25:1479 | access to property Prop |
+| UseUseExplosion.cs:25:1459:25:1462 | this access | UseUseExplosion.cs:25:1476:25:1479 | this access |
+| UseUseExplosion.cs:25:1459:25:1462 | this access | UseUseExplosion.cs:25:1918:25:1923 | this access |
+| UseUseExplosion.cs:25:1476:25:1479 | [post] this access | UseUseExplosion.cs:25:1493:25:1496 | this access |
+| UseUseExplosion.cs:25:1476:25:1479 | [post] this access | UseUseExplosion.cs:25:1903:25:1908 | this access |
+| UseUseExplosion.cs:25:1476:25:1479 | access to property Prop | UseUseExplosion.cs:25:1476:25:1484 | ... > ... |
+| UseUseExplosion.cs:25:1476:25:1479 | access to property Prop | UseUseExplosion.cs:25:1493:25:1496 | access to property Prop |
+| UseUseExplosion.cs:25:1476:25:1479 | this access | UseUseExplosion.cs:25:1493:25:1496 | this access |
+| UseUseExplosion.cs:25:1476:25:1479 | this access | UseUseExplosion.cs:25:1903:25:1908 | this access |
+| UseUseExplosion.cs:25:1493:25:1496 | [post] this access | UseUseExplosion.cs:25:1510:25:1513 | this access |
+| UseUseExplosion.cs:25:1493:25:1496 | [post] this access | UseUseExplosion.cs:25:1888:25:1893 | this access |
+| UseUseExplosion.cs:25:1493:25:1496 | access to property Prop | UseUseExplosion.cs:25:1493:25:1501 | ... > ... |
+| UseUseExplosion.cs:25:1493:25:1496 | access to property Prop | UseUseExplosion.cs:25:1510:25:1513 | access to property Prop |
+| UseUseExplosion.cs:25:1493:25:1496 | this access | UseUseExplosion.cs:25:1510:25:1513 | this access |
+| UseUseExplosion.cs:25:1493:25:1496 | this access | UseUseExplosion.cs:25:1888:25:1893 | this access |
+| UseUseExplosion.cs:25:1510:25:1513 | [post] this access | UseUseExplosion.cs:25:1527:25:1530 | this access |
+| UseUseExplosion.cs:25:1510:25:1513 | [post] this access | UseUseExplosion.cs:25:1873:25:1878 | this access |
+| UseUseExplosion.cs:25:1510:25:1513 | access to property Prop | UseUseExplosion.cs:25:1510:25:1518 | ... > ... |
+| UseUseExplosion.cs:25:1510:25:1513 | access to property Prop | UseUseExplosion.cs:25:1527:25:1530 | access to property Prop |
+| UseUseExplosion.cs:25:1510:25:1513 | this access | UseUseExplosion.cs:25:1527:25:1530 | this access |
+| UseUseExplosion.cs:25:1510:25:1513 | this access | UseUseExplosion.cs:25:1873:25:1878 | this access |
+| UseUseExplosion.cs:25:1527:25:1530 | [post] this access | UseUseExplosion.cs:25:1544:25:1547 | this access |
+| UseUseExplosion.cs:25:1527:25:1530 | [post] this access | UseUseExplosion.cs:25:1858:25:1863 | this access |
+| UseUseExplosion.cs:25:1527:25:1530 | access to property Prop | UseUseExplosion.cs:25:1527:25:1535 | ... > ... |
+| UseUseExplosion.cs:25:1527:25:1530 | access to property Prop | UseUseExplosion.cs:25:1544:25:1547 | access to property Prop |
+| UseUseExplosion.cs:25:1527:25:1530 | this access | UseUseExplosion.cs:25:1544:25:1547 | this access |
+| UseUseExplosion.cs:25:1527:25:1530 | this access | UseUseExplosion.cs:25:1858:25:1863 | this access |
+| UseUseExplosion.cs:25:1544:25:1547 | [post] this access | UseUseExplosion.cs:25:1561:25:1564 | this access |
+| UseUseExplosion.cs:25:1544:25:1547 | [post] this access | UseUseExplosion.cs:25:1843:25:1848 | this access |
+| UseUseExplosion.cs:25:1544:25:1547 | access to property Prop | UseUseExplosion.cs:25:1544:25:1552 | ... > ... |
+| UseUseExplosion.cs:25:1544:25:1547 | access to property Prop | UseUseExplosion.cs:25:1561:25:1564 | access to property Prop |
+| UseUseExplosion.cs:25:1544:25:1547 | this access | UseUseExplosion.cs:25:1561:25:1564 | this access |
+| UseUseExplosion.cs:25:1544:25:1547 | this access | UseUseExplosion.cs:25:1843:25:1848 | this access |
+| UseUseExplosion.cs:25:1561:25:1564 | [post] this access | UseUseExplosion.cs:25:1577:25:1580 | this access |
+| UseUseExplosion.cs:25:1561:25:1564 | [post] this access | UseUseExplosion.cs:25:1828:25:1833 | this access |
+| UseUseExplosion.cs:25:1561:25:1564 | access to property Prop | UseUseExplosion.cs:25:1561:25:1568 | ... > ... |
+| UseUseExplosion.cs:25:1561:25:1564 | access to property Prop | UseUseExplosion.cs:25:1577:25:1580 | access to property Prop |
+| UseUseExplosion.cs:25:1561:25:1564 | this access | UseUseExplosion.cs:25:1577:25:1580 | this access |
+| UseUseExplosion.cs:25:1561:25:1564 | this access | UseUseExplosion.cs:25:1828:25:1833 | this access |
+| UseUseExplosion.cs:25:1577:25:1580 | [post] this access | UseUseExplosion.cs:25:1593:25:1596 | this access |
+| UseUseExplosion.cs:25:1577:25:1580 | [post] this access | UseUseExplosion.cs:25:1813:25:1818 | this access |
+| UseUseExplosion.cs:25:1577:25:1580 | access to property Prop | UseUseExplosion.cs:25:1577:25:1584 | ... > ... |
+| UseUseExplosion.cs:25:1577:25:1580 | access to property Prop | UseUseExplosion.cs:25:1593:25:1596 | access to property Prop |
+| UseUseExplosion.cs:25:1577:25:1580 | this access | UseUseExplosion.cs:25:1593:25:1596 | this access |
+| UseUseExplosion.cs:25:1577:25:1580 | this access | UseUseExplosion.cs:25:1813:25:1818 | this access |
+| UseUseExplosion.cs:25:1593:25:1596 | [post] this access | UseUseExplosion.cs:25:1609:25:1612 | this access |
+| UseUseExplosion.cs:25:1593:25:1596 | [post] this access | UseUseExplosion.cs:25:1798:25:1803 | this access |
+| UseUseExplosion.cs:25:1593:25:1596 | access to property Prop | UseUseExplosion.cs:25:1593:25:1600 | ... > ... |
+| UseUseExplosion.cs:25:1593:25:1596 | access to property Prop | UseUseExplosion.cs:25:1609:25:1612 | access to property Prop |
+| UseUseExplosion.cs:25:1593:25:1596 | this access | UseUseExplosion.cs:25:1609:25:1612 | this access |
+| UseUseExplosion.cs:25:1593:25:1596 | this access | UseUseExplosion.cs:25:1798:25:1803 | this access |
+| UseUseExplosion.cs:25:1609:25:1612 | [post] this access | UseUseExplosion.cs:25:1625:25:1628 | this access |
+| UseUseExplosion.cs:25:1609:25:1612 | [post] this access | UseUseExplosion.cs:25:1783:25:1788 | this access |
+| UseUseExplosion.cs:25:1609:25:1612 | access to property Prop | UseUseExplosion.cs:25:1609:25:1616 | ... > ... |
+| UseUseExplosion.cs:25:1609:25:1612 | access to property Prop | UseUseExplosion.cs:25:1625:25:1628 | access to property Prop |
+| UseUseExplosion.cs:25:1609:25:1612 | this access | UseUseExplosion.cs:25:1625:25:1628 | this access |
+| UseUseExplosion.cs:25:1609:25:1612 | this access | UseUseExplosion.cs:25:1783:25:1788 | this access |
+| UseUseExplosion.cs:25:1625:25:1628 | [post] this access | UseUseExplosion.cs:25:1641:25:1644 | this access |
+| UseUseExplosion.cs:25:1625:25:1628 | [post] this access | UseUseExplosion.cs:25:1768:25:1773 | this access |
+| UseUseExplosion.cs:25:1625:25:1628 | access to property Prop | UseUseExplosion.cs:25:1625:25:1632 | ... > ... |
+| UseUseExplosion.cs:25:1625:25:1628 | access to property Prop | UseUseExplosion.cs:25:1641:25:1644 | access to property Prop |
+| UseUseExplosion.cs:25:1625:25:1628 | this access | UseUseExplosion.cs:25:1641:25:1644 | this access |
+| UseUseExplosion.cs:25:1625:25:1628 | this access | UseUseExplosion.cs:25:1768:25:1773 | this access |
+| UseUseExplosion.cs:25:1641:25:1644 | [post] this access | UseUseExplosion.cs:25:1657:25:1660 | this access |
+| UseUseExplosion.cs:25:1641:25:1644 | [post] this access | UseUseExplosion.cs:25:1753:25:1758 | this access |
+| UseUseExplosion.cs:25:1641:25:1644 | access to property Prop | UseUseExplosion.cs:25:1641:25:1648 | ... > ... |
+| UseUseExplosion.cs:25:1641:25:1644 | access to property Prop | UseUseExplosion.cs:25:1657:25:1660 | access to property Prop |
+| UseUseExplosion.cs:25:1641:25:1644 | this access | UseUseExplosion.cs:25:1657:25:1660 | this access |
+| UseUseExplosion.cs:25:1641:25:1644 | this access | UseUseExplosion.cs:25:1753:25:1758 | this access |
+| UseUseExplosion.cs:25:1657:25:1660 | [post] this access | UseUseExplosion.cs:25:1673:25:1676 | this access |
+| UseUseExplosion.cs:25:1657:25:1660 | [post] this access | UseUseExplosion.cs:25:1738:25:1743 | this access |
+| UseUseExplosion.cs:25:1657:25:1660 | access to property Prop | UseUseExplosion.cs:25:1657:25:1664 | ... > ... |
+| UseUseExplosion.cs:25:1657:25:1660 | access to property Prop | UseUseExplosion.cs:25:1673:25:1676 | access to property Prop |
+| UseUseExplosion.cs:25:1657:25:1660 | this access | UseUseExplosion.cs:25:1673:25:1676 | this access |
+| UseUseExplosion.cs:25:1657:25:1660 | this access | UseUseExplosion.cs:25:1738:25:1743 | this access |
+| UseUseExplosion.cs:25:1673:25:1676 | [post] this access | UseUseExplosion.cs:25:1689:25:1692 | this access |
+| UseUseExplosion.cs:25:1673:25:1676 | [post] this access | UseUseExplosion.cs:25:1723:25:1728 | this access |
+| UseUseExplosion.cs:25:1673:25:1676 | access to property Prop | UseUseExplosion.cs:25:1673:25:1680 | ... > ... |
+| UseUseExplosion.cs:25:1673:25:1676 | access to property Prop | UseUseExplosion.cs:25:1689:25:1692 | access to property Prop |
+| UseUseExplosion.cs:25:1673:25:1676 | this access | UseUseExplosion.cs:25:1689:25:1692 | this access |
+| UseUseExplosion.cs:25:1673:25:1676 | this access | UseUseExplosion.cs:25:1723:25:1728 | this access |
+| UseUseExplosion.cs:25:1689:25:1692 | [post] this access | UseUseExplosion.cs:25:1708:25:1713 | this access |
+| UseUseExplosion.cs:25:1689:25:1692 | access to property Prop | UseUseExplosion.cs:25:1689:25:1696 | ... > ... |
+| UseUseExplosion.cs:25:1689:25:1692 | this access | UseUseExplosion.cs:25:1708:25:1713 | this access |
diff --git a/csharp/ql/test/library-tests/dataflow/local/UseUseExplosion.cs b/csharp/ql/test/library-tests/dataflow/local/UseUseExplosion.cs
new file mode 100644
index 00000000000..b062aeba8f5
--- /dev/null
+++ b/csharp/ql/test/library-tests/dataflow/local/UseUseExplosion.cs
@@ -0,0 +1,29 @@
+class C
+{
+    int Prop { get; set; }
+
+    // Should generate 100 + 100 local use-use flow steps for `x`, and not 100 * 100
+    //
+    // Generated by quick-evaling `gen/0` below:
+    //
+    // ```ql
+    // string gen(int depth) {
+    //   depth in [0 .. 100] and
+    //   (
+    //     if depth = 0
+    //     then result = ""
+    //     else result = "if (Prop > " + depth + ") { " + gen(depth - 1) + " } else Use(x);"
+    //   )
+    // }
+    //
+    // string gen() { result = "var x = 0;\n" + gen(100) + "\n" + gen(100) }
+    // ```
+    void M()
+    {
+        var x = 0;
+        if (Prop > 100) { if (Prop > 99) { if (Prop > 98) { if (Prop > 97) { if (Prop > 96) { if (Prop > 95) { if (Prop > 94) { if (Prop > 93) { if (Prop > 92) { if (Prop > 91) { if (Prop > 90) { if (Prop > 89) { if (Prop > 88) { if (Prop > 87) { if (Prop > 86) { if (Prop > 85) { if (Prop > 84) { if (Prop > 83) { if (Prop > 82) { if (Prop > 81) { if (Prop > 80) { if (Prop > 79) { if (Prop > 78) { if (Prop > 77) { if (Prop > 76) { if (Prop > 75) { if (Prop > 74) { if (Prop > 73) { if (Prop > 72) { if (Prop > 71) { if (Prop > 70) { if (Prop > 69) { if (Prop > 68) { if (Prop > 67) { if (Prop > 66) { if (Prop > 65) { if (Prop > 64) { if (Prop > 63) { if (Prop > 62) { if (Prop > 61) { if (Prop > 60) { if (Prop > 59) { if (Prop > 58) { if (Prop > 57) { if (Prop > 56) { if (Prop > 55) { if (Prop > 54) { if (Prop > 53) { if (Prop > 52) { if (Prop > 51) { if (Prop > 50) { if (Prop > 49) { if (Prop > 48) { if (Prop > 47) { if (Prop > 46) { if (Prop > 45) { if (Prop > 44) { if (Prop > 43) { if (Prop > 42) { if (Prop > 41) { if (Prop > 40) { if (Prop > 39) { if (Prop > 38) { if (Prop > 37) { if (Prop > 36) { if (Prop > 35) { if (Prop > 34) { if (Prop > 33) { if (Prop > 32) { if (Prop > 31) { if (Prop > 30) { if (Prop > 29) { if (Prop > 28) { if (Prop > 27) { if (Prop > 26) { if (Prop > 25) { if (Prop > 24) { if (Prop > 23) { if (Prop > 22) { if (Prop > 21) { if (Prop > 20) { if (Prop > 19) { if (Prop > 18) { if (Prop > 17) { if (Prop > 16) { if (Prop > 15) { if (Prop > 14) { if (Prop > 13) { if (Prop > 12) { if (Prop > 11) { if (Prop > 10) { if (Prop > 9) { if (Prop > 8) { if (Prop > 7) { if (Prop > 6) { if (Prop > 5) { if (Prop > 4) { if (Prop > 3) { if (Prop > 2) { if (Prop > 1) { } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x);
+        if (Prop > 100) { if (Prop > 99) { if (Prop > 98) { if (Prop > 97) { if (Prop > 96) { if (Prop > 95) { if (Prop > 94) { if (Prop > 93) { if (Prop > 92) { if (Prop > 91) { if (Prop > 90) { if (Prop > 89) { if (Prop > 88) { if (Prop > 87) { if (Prop > 86) { if (Prop > 85) { if (Prop > 84) { if (Prop > 83) { if (Prop > 82) { if (Prop > 81) { if (Prop > 80) { if (Prop > 79) { if (Prop > 78) { if (Prop > 77) { if (Prop > 76) { if (Prop > 75) { if (Prop > 74) { if (Prop > 73) { if (Prop > 72) { if (Prop > 71) { if (Prop > 70) { if (Prop > 69) { if (Prop > 68) { if (Prop > 67) { if (Prop > 66) { if (Prop > 65) { if (Prop > 64) { if (Prop > 63) { if (Prop > 62) { if (Prop > 61) { if (Prop > 60) { if (Prop > 59) { if (Prop > 58) { if (Prop > 57) { if (Prop > 56) { if (Prop > 55) { if (Prop > 54) { if (Prop > 53) { if (Prop > 52) { if (Prop > 51) { if (Prop > 50) { if (Prop > 49) { if (Prop > 48) { if (Prop > 47) { if (Prop > 46) { if (Prop > 45) { if (Prop > 44) { if (Prop > 43) { if (Prop > 42) { if (Prop > 41) { if (Prop > 40) { if (Prop > 39) { if (Prop > 38) { if (Prop > 37) { if (Prop > 36) { if (Prop > 35) { if (Prop > 34) { if (Prop > 33) { if (Prop > 32) { if (Prop > 31) { if (Prop > 30) { if (Prop > 29) { if (Prop > 28) { if (Prop > 27) { if (Prop > 26) { if (Prop > 25) { if (Prop > 24) { if (Prop > 23) { if (Prop > 22) { if (Prop > 21) { if (Prop > 20) { if (Prop > 19) { if (Prop > 18) { if (Prop > 17) { if (Prop > 16) { if (Prop > 15) { if (Prop > 14) { if (Prop > 13) { if (Prop > 12) { if (Prop > 11) { if (Prop > 10) { if (Prop > 9) { if (Prop > 8) { if (Prop > 7) { if (Prop > 6) { if (Prop > 5) { if (Prop > 4) { if (Prop > 3) { if (Prop > 2) { if (Prop > 1) { } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x); } else Use(x);
+    }
+
+    void Use(int i) { }
+}
diff --git a/csharp/ql/test/library-tests/dataflow/ssa-large/Large.cs b/csharp/ql/test/library-tests/dataflow/ssa-large/Large.cs
index f6cce7f149a..798f106e9f6 100644
--- a/csharp/ql/test/library-tests/dataflow/ssa-large/Large.cs
+++ b/csharp/ql/test/library-tests/dataflow/ssa-large/Large.cs
@@ -2886,7 +2886,7 @@ public class Large
     //   (
     //     if depth = 0
     //     then result = ""
-    //     else else result = "if (Prop > " + depth + ") { " + gen(depth - 1, var) + " } else Use(" + var + ");"
+    //     else result = "if (Prop > " + depth + ") { " + gen(depth - 1, var) + " } else Use(" + var + ");"
     //   )
     // }
     // 

From 811426c586ea0d0d9fd8869cce729fbc62a30c37 Mon Sep 17 00:00:00 2001
From: Taus <tausbn@github.com>
Date: Thu, 17 Nov 2022 14:15:55 +0000
Subject: [PATCH 0433/1420] Python: Remove manual magic entirely

This was causing issues with imports with many "dots" in the name.

Previously, the test added in this commit would not have the desired
result for the `check` call.
---
 .../semmle/python/dataflow/new/internal/ImportResolution.qll | 1 -
 python/ql/test/experimental/import-resolution/main.py        | 5 +++++
 2 files changed, 5 insertions(+), 1 deletion(-)

diff --git a/python/ql/lib/semmle/python/dataflow/new/internal/ImportResolution.qll b/python/ql/lib/semmle/python/dataflow/new/internal/ImportResolution.qll
index 53f41bd945e..320ec8d998e 100644
--- a/python/ql/lib/semmle/python/dataflow/new/internal/ImportResolution.qll
+++ b/python/ql/lib/semmle/python/dataflow/new/internal/ImportResolution.qll
@@ -231,7 +231,6 @@ module ImportResolution {
     // Reading an attribute on a module may return a submodule (or subpackage).
     exists(DataFlow::AttrRead ar, Module p, string attr_name |
       ar.accesses(getModuleReference(p), attr_name) and
-      attr_name = any(Module m0).getFile().getStem() and
       result = ar
     |
       isPreferredModuleForName(m.getFile(), p.getPackageName() + "." + attr_name + ["", ".__init__"])
diff --git a/python/ql/test/experimental/import-resolution/main.py b/python/ql/test/experimental/import-resolution/main.py
index 27c6ffff7c1..45c84559fb6 100644
--- a/python/ql/test/experimental/import-resolution/main.py
+++ b/python/ql/test/experimental/import-resolution/main.py
@@ -69,6 +69,11 @@ check("aliased_subpackage.subpackage_attr", aliased_subpackage.subpackage_attr,
 import package.subpackage #$ imports=package.__init__ as=package
 check("package.package_attr", package.package_attr, "package_attr", globals()) #$ prints=package_attr
 
+# Deep imports
+import package.subpackage.submodule #$ imports=package.__init__ as=package
+check("package.subpackage.submodule.submodule_attr", package.subpackage.submodule.submodule_attr, "submodule_attr", globals()) #$ prints=submodule_attr
+
+
 if sys.version_info[0] == 3:
     # Importing from a namespace module.
     from namespace_package.namespace_module import namespace_module_attr

From dae60c9debae2e9e58813e14d05b4784bb341cf0 Mon Sep 17 00:00:00 2001
From: Owen Mansel-Chan <owen-mc@github.com>
Date: Thu, 20 Oct 2022 13:04:39 +0100
Subject: [PATCH 0434/1420] Update data flow libraries to 55e052af26

---
 .../go/dataflow/internal/AccessPathSyntax.qll |  105 +-
 .../go/dataflow/internal/DataFlowImpl.qll     | 2121 +++++++++++------
 .../go/dataflow/internal/DataFlowImpl2.qll    | 2117 ++++++++++------
 .../dataflow/internal/DataFlowImplCommon.qll  |  137 +-
 .../go/dataflow/internal/FlowSummaryImpl.qll  |  302 ++-
 .../tainttracking1/TaintTrackingImpl.qll      |   72 +-
 .../tainttracking2/TaintTrackingImpl.qll      |   72 +-
 7 files changed, 3351 insertions(+), 1575 deletions(-)

diff --git a/go/ql/lib/semmle/go/dataflow/internal/AccessPathSyntax.qll b/go/ql/lib/semmle/go/dataflow/internal/AccessPathSyntax.qll
index ecb6f542955..076e12f2671 100644
--- a/go/ql/lib/semmle/go/dataflow/internal/AccessPathSyntax.qll
+++ b/go/ql/lib/semmle/go/dataflow/internal/AccessPathSyntax.qll
@@ -6,6 +6,15 @@
  * (which does not use the shared data flow libraries).
  */
 
+/**
+ * Convenience-predicate for extracting two capture groups at once.
+ */
+bindingset[input, regexp]
+private predicate regexpCaptureTwo(string input, string regexp, string capture1, string capture2) {
+  capture1 = input.regexpCapture(regexp, 1) and
+  capture2 = input.regexpCapture(regexp, 2)
+}
+
 /** Companion module to the `AccessPath` class. */
 module AccessPath {
   /** A string that should be parsed as an access path. */
@@ -13,6 +22,93 @@ module AccessPath {
     bindingset[this]
     Range() { any() }
   }
+
+  /**
+   * Parses an integer constant `n` or interval `n1..n2` (inclusive) and gets the value
+   * of the constant or any value contained in the interval.
+   */
+  bindingset[arg]
+  int parseInt(string arg) {
+    result = arg.toInt()
+    or
+    // Match "n1..n2"
+    exists(string lo, string hi |
+      regexpCaptureTwo(arg, "(-?\\d+)\\.\\.(-?\\d+)", lo, hi) and
+      result = [lo.toInt() .. hi.toInt()]
+    )
+  }
+
+  /**
+   * Parses a lower-bounded interval `n..` and gets the lower bound.
+   */
+  bindingset[arg]
+  int parseLowerBound(string arg) { result = arg.regexpCapture("(-?\\d+)\\.\\.", 1).toInt() }
+
+  /**
+   * Parses an integer constant or interval (bounded or unbounded) that explicitly
+   * references the arity, such as `N-1` or `N-3..N-1`.
+   *
+   * Note that expressions of form `N-x` will never resolve to a negative index,
+   * even if `N` is zero (it will have no result in that case).
+   */
+  bindingset[arg, arity]
+  private int parseIntWithExplicitArity(string arg, int arity) {
+    result >= 0 and // do not allow N-1 to resolve to a negative index
+    exists(string lo |
+      // N-x
+      lo = arg.regexpCapture("N-(\\d+)", 1) and
+      result = arity - lo.toInt()
+      or
+      // N-x..
+      lo = arg.regexpCapture("N-(\\d+)\\.\\.", 1) and
+      result = [arity - lo.toInt(), arity - 1]
+    )
+    or
+    exists(string lo, string hi |
+      // x..N-y
+      regexpCaptureTwo(arg, "(-?\\d+)\\.\\.N-(\\d+)", lo, hi) and
+      result = [lo.toInt() .. arity - hi.toInt()]
+      or
+      // N-x..N-y
+      regexpCaptureTwo(arg, "N-(\\d+)\\.\\.N-(\\d+)", lo, hi) and
+      result = [arity - lo.toInt() .. arity - hi.toInt()] and
+      result >= 0
+      or
+      // N-x..y
+      regexpCaptureTwo(arg, "N-(\\d+)\\.\\.(\\d+)", lo, hi) and
+      result = [arity - lo.toInt() .. hi.toInt()] and
+      result >= 0
+    )
+  }
+
+  /**
+   * Parses an integer constant or interval (bounded or unbounded) and gets any
+   * of the integers contained within (of which there may be infinitely many).
+   *
+   * Has no result for arguments involving an explicit arity, such as `N-1`.
+   */
+  bindingset[arg, result]
+  int parseIntUnbounded(string arg) {
+    result = parseInt(arg)
+    or
+    result >= parseLowerBound(arg)
+  }
+
+  /**
+   * Parses an integer constant or interval (bounded or unbounded) that
+   * may reference the arity of a call, such as `N-1` or `N-3..N-1`.
+   *
+   * Note that expressions of form `N-x` will never resolve to a negative index,
+   * even if `N` is zero (it will have no result in that case).
+   */
+  bindingset[arg, arity]
+  int parseIntWithArity(string arg, int arity) {
+    result = parseInt(arg)
+    or
+    result in [parseLowerBound(arg) .. arity - 1]
+    or
+    result = parseIntWithExplicitArity(arg, arity)
+  }
 }
 
 /** Gets the `n`th token on the access path as a string. */
@@ -53,7 +149,7 @@ class AccessPath extends string instanceof AccessPath::Range {
  * An access part token such as `Argument[1]` or `ReturnValue`, appearing in one or more access paths.
  */
 class AccessPathToken extends string {
-  AccessPathToken() { this = getRawToken(any(AccessPath path), _) }
+  AccessPathToken() { this = getRawToken(_, _) }
 
   private string getPart(int part) {
     result = this.regexpCapture("([^\\[]+)(?:\\[([^\\]]*)\\])?", part)
@@ -71,9 +167,16 @@ class AccessPathToken extends string {
   /** Gets the `n`th argument to this token, such as `x` or `y` from `Member[x,y]`. */
   string getArgument(int n) { result = this.getArgumentList().splitAt(",", n).trim() }
 
+  /** Gets the `n`th argument to this `name` token, such as `x` or `y` from `Member[x,y]`. */
+  pragma[nomagic]
+  string getArgument(string name, int n) { name = this.getName() and result = this.getArgument(n) }
+
   /** Gets an argument to this token, such as `x` or `y` from `Member[x,y]`. */
   string getAnArgument() { result = this.getArgument(_) }
 
+  /** Gets an argument to this `name` token, such as `x` or `y` from `Member[x,y]`. */
+  string getAnArgument(string name) { result = this.getArgument(name, _) }
+
   /** Gets the number of arguments to this token, such as 2 for `Member[x,y]` or zero for `ReturnValue`. */
   int getNumArgument() { result = count(int n | exists(this.getArgument(n))) }
 }
diff --git a/go/ql/lib/semmle/go/dataflow/internal/DataFlowImpl.qll b/go/ql/lib/semmle/go/dataflow/internal/DataFlowImpl.qll
index bf150f191ed..a076f7a2e45 100644
--- a/go/ql/lib/semmle/go/dataflow/internal/DataFlowImpl.qll
+++ b/go/ql/lib/semmle/go/dataflow/internal/DataFlowImpl.qll
@@ -54,12 +54,23 @@ abstract class Configuration extends string {
   /**
    * Holds if `source` is a relevant data flow source.
    */
-  abstract predicate isSource(Node source);
+  predicate isSource(Node source) { none() }
+
+  /**
+   * Holds if `source` is a relevant data flow source with the given initial
+   * `state`.
+   */
+  predicate isSource(Node source, FlowState state) { none() }
 
   /**
    * Holds if `sink` is a relevant data flow sink.
    */
-  abstract predicate isSink(Node sink);
+  predicate isSink(Node sink) { none() }
+
+  /**
+   * Holds if `sink` is a relevant data flow sink accepting `state`.
+   */
+  predicate isSink(Node source, FlowState state) { none() }
 
   /**
    * Holds if data flow through `node` is prohibited. This completely removes
@@ -67,6 +78,12 @@ abstract class Configuration extends string {
    */
   predicate isBarrier(Node node) { none() }
 
+  /**
+   * Holds if data flow through `node` is prohibited when the flow state is
+   * `state`.
+   */
+  predicate isBarrier(Node node, FlowState state) { none() }
+
   /** Holds if data flow into `node` is prohibited. */
   predicate isBarrierIn(Node node) { none() }
 
@@ -81,16 +98,31 @@ abstract class Configuration extends string {
   deprecated predicate isBarrierGuard(BarrierGuard guard) { none() }
 
   /**
-   * Holds if the additional flow step from `node1` to `node2` must be taken
-   * into account in the analysis.
+   * DEPRECATED: Use `isBarrier` and `BarrierGuard` module instead.
+   *
+   * Holds if data flow through nodes guarded by `guard` is prohibited when
+   * the flow state is `state`
+   */
+  deprecated predicate isBarrierGuard(BarrierGuard guard, FlowState state) { none() }
+
+  /**
+   * Holds if data may flow from `node1` to `node2` in addition to the normal data-flow steps.
    */
   predicate isAdditionalFlowStep(Node node1, Node node2) { none() }
 
+  /**
+   * Holds if data may flow from `node1` to `node2` in addition to the normal data-flow steps.
+   * This step is only applicable in `state1` and updates the flow state to `state2`.
+   */
+  predicate isAdditionalFlowStep(Node node1, FlowState state1, Node node2, FlowState state2) {
+    none()
+  }
+
   /**
    * Holds if an arbitrary number of implicit read steps of content `c` may be
    * taken at `node`.
    */
-  predicate allowImplicitRead(Node node, Content c) { none() }
+  predicate allowImplicitRead(Node node, ContentSet c) { none() }
 
   /**
    * Gets the virtual dispatch branching limit when calculating field flow.
@@ -144,6 +176,14 @@ abstract class Configuration extends string {
    */
   int explorationLimit() { none() }
 
+  /**
+   * Holds if hidden nodes should be included in the data flow graph.
+   *
+   * This feature should only be used for debugging or when the data flow graph
+   * is not visualized (for example in a `path-problem` query).
+   */
+  predicate includeHiddenNodes() { none() }
+
   /**
    * Holds if there is a partial data flow path from `source` to `node`. The
    * approximate distance between `node` and the closest source is `dist` and
@@ -201,10 +241,16 @@ abstract private class ConfigurationRecursionPrevention extends Configuration {
   override predicate hasFlow(Node source, Node sink) {
     strictcount(Node n | this.isSource(n)) < 0
     or
+    strictcount(Node n | this.isSource(n, _)) < 0
+    or
     strictcount(Node n | this.isSink(n)) < 0
     or
+    strictcount(Node n | this.isSink(n, _)) < 0
+    or
     strictcount(Node n1, Node n2 | this.isAdditionalFlowStep(n1, n2)) < 0
     or
+    strictcount(Node n1, Node n2 | this.isAdditionalFlowStep(n1, _, n2, _)) < 0
+    or
     super.hasFlow(source, sink)
   }
 }
@@ -260,11 +306,11 @@ private class ArgNodeEx extends NodeEx {
 private class ParamNodeEx extends NodeEx {
   ParamNodeEx() { this.asNode() instanceof ParamNode }
 
-  predicate isParameterOf(DataFlowCallable c, int i) {
-    this.asNode().(ParamNode).isParameterOf(c, i)
+  predicate isParameterOf(DataFlowCallable c, ParameterPosition pos) {
+    this.asNode().(ParamNode).isParameterOf(c, pos)
   }
 
-  int getPosition() { this.isParameterOf(_, result) }
+  ParameterPosition getPosition() { this.isParameterOf(_, result) }
 
   predicate allowParameterReturnInSelf() { allowParameterReturnInSelfCached(this.asNode()) }
 }
@@ -280,22 +326,26 @@ private class RetNodeEx extends NodeEx {
 private predicate inBarrier(NodeEx node, Configuration config) {
   exists(Node n |
     node.asNode() = n and
-    config.isBarrierIn(n) and
-    config.isSource(n)
+    config.isBarrierIn(n)
+  |
+    config.isSource(n) or config.isSource(n, _)
   )
 }
 
 private predicate outBarrier(NodeEx node, Configuration config) {
   exists(Node n |
     node.asNode() = n and
-    config.isBarrierOut(n) and
-    config.isSink(n)
+    config.isBarrierOut(n)
+  |
+    config.isSink(n) or config.isSink(n, _)
   )
 }
 
 /** A bridge class to access the deprecated `isBarrierGuard`. */
 private class BarrierGuardGuardedNodeBridge extends Unit {
   abstract predicate guardedNode(Node n, Configuration config);
+
+  abstract predicate guardedNode(Node n, FlowState state, Configuration config);
 }
 
 private class BarrierGuardGuardedNode extends BarrierGuardGuardedNodeBridge {
@@ -305,6 +355,13 @@ private class BarrierGuardGuardedNode extends BarrierGuardGuardedNodeBridge {
       n = g.getAGuardedNode()
     )
   }
+
+  deprecated override predicate guardedNode(Node n, FlowState state, Configuration config) {
+    exists(BarrierGuard g |
+      config.isBarrierGuard(g, state) and
+      n = g.getAGuardedNode()
+    )
+  }
 }
 
 pragma[nomagic]
@@ -313,23 +370,47 @@ private predicate fullBarrier(NodeEx node, Configuration config) {
     config.isBarrier(n)
     or
     config.isBarrierIn(n) and
-    not config.isSource(n)
+    not config.isSource(n) and
+    not config.isSource(n, _)
     or
     config.isBarrierOut(n) and
-    not config.isSink(n)
+    not config.isSink(n) and
+    not config.isSink(n, _)
     or
     any(BarrierGuardGuardedNodeBridge b).guardedNode(n, config)
   )
 }
 
 pragma[nomagic]
-private predicate sourceNode(NodeEx node, Configuration config) {
-  config.isSource(node.asNode()) and
-  not fullBarrier(node, config)
+private predicate stateBarrier(NodeEx node, FlowState state, Configuration config) {
+  exists(Node n | node.asNode() = n |
+    config.isBarrier(n, state)
+    or
+    any(BarrierGuardGuardedNodeBridge b).guardedNode(n, state, config)
+  )
 }
 
 pragma[nomagic]
-private predicate sinkNode(NodeEx node, Configuration config) { config.isSink(node.asNode()) }
+private predicate sourceNode(NodeEx node, FlowState state, Configuration config) {
+  (
+    config.isSource(node.asNode()) and state instanceof FlowStateEmpty
+    or
+    config.isSource(node.asNode(), state)
+  ) and
+  not fullBarrier(node, config) and
+  not stateBarrier(node, state, config)
+}
+
+pragma[nomagic]
+private predicate sinkNode(NodeEx node, FlowState state, Configuration config) {
+  (
+    config.isSink(node.asNode()) and state instanceof FlowStateEmpty
+    or
+    config.isSink(node.asNode(), state)
+  ) and
+  not fullBarrier(node, config) and
+  not stateBarrier(node, state, config)
+}
 
 /** Provides the relevant barriers for a step from `node1` to `node2`. */
 pragma[inline]
@@ -366,8 +447,7 @@ private predicate additionalLocalFlowStep(NodeEx node1, NodeEx node2, Configurat
   exists(Node n1, Node n2 |
     node1.asNode() = n1 and
     node2.asNode() = n2 and
-    pragma[only_bind_into](config)
-        .isAdditionalFlowStep(pragma[only_bind_into](n1), pragma[only_bind_into](n2)) and
+    config.isAdditionalFlowStep(pragma[only_bind_into](n1), pragma[only_bind_into](n2)) and
     getNodeEnclosingCallable(n1) = getNodeEnclosingCallable(n2) and
     stepFilter(node1, node2, config)
   )
@@ -380,6 +460,20 @@ private predicate additionalLocalFlowStep(NodeEx node1, NodeEx node2, Configurat
   )
 }
 
+private predicate additionalLocalStateStep(
+  NodeEx node1, FlowState s1, NodeEx node2, FlowState s2, Configuration config
+) {
+  exists(Node n1, Node n2 |
+    node1.asNode() = n1 and
+    node2.asNode() = n2 and
+    config.isAdditionalFlowStep(pragma[only_bind_into](n1), s1, pragma[only_bind_into](n2), s2) and
+    getNodeEnclosingCallable(n1) = getNodeEnclosingCallable(n2) and
+    stepFilter(node1, node2, config) and
+    not stateBarrier(node1, s1, config) and
+    not stateBarrier(node2, s2, config)
+  )
+}
+
 /**
  * Holds if data can flow from `node1` to `node2` in a way that discards call contexts.
  */
@@ -400,21 +494,32 @@ private predicate additionalJumpStep(NodeEx node1, NodeEx node2, Configuration c
   exists(Node n1, Node n2 |
     node1.asNode() = n1 and
     node2.asNode() = n2 and
-    pragma[only_bind_into](config)
-        .isAdditionalFlowStep(pragma[only_bind_into](n1), pragma[only_bind_into](n2)) and
+    config.isAdditionalFlowStep(pragma[only_bind_into](n1), pragma[only_bind_into](n2)) and
     getNodeEnclosingCallable(n1) != getNodeEnclosingCallable(n2) and
     stepFilter(node1, node2, config) and
     not config.getAFeature() instanceof FeatureEqualSourceSinkCallContext
   )
 }
 
-private predicate read(NodeEx node1, Content c, NodeEx node2, Configuration config) {
+private predicate additionalJumpStateStep(
+  NodeEx node1, FlowState s1, NodeEx node2, FlowState s2, Configuration config
+) {
   exists(Node n1, Node n2 |
     node1.asNode() = n1 and
     node2.asNode() = n2 and
-    read(pragma[only_bind_into](n1), c, pragma[only_bind_into](n2)) and
-    stepFilter(node1, node2, config)
+    config.isAdditionalFlowStep(pragma[only_bind_into](n1), s1, pragma[only_bind_into](n2), s2) and
+    getNodeEnclosingCallable(n1) != getNodeEnclosingCallable(n2) and
+    stepFilter(node1, node2, config) and
+    not stateBarrier(node1, s1, config) and
+    not stateBarrier(node2, s2, config) and
+    not config.getAFeature() instanceof FeatureEqualSourceSinkCallContext
   )
+}
+
+pragma[nomagic]
+private predicate readSet(NodeEx node1, ContentSet c, NodeEx node2, Configuration config) {
+  readSet(pragma[only_bind_into](node1.asNode()), c, pragma[only_bind_into](node2.asNode())) and
+  stepFilter(node1, node2, config)
   or
   exists(Node n |
     node2.isImplicitReadNode(n, true) and
@@ -423,16 +528,44 @@ private predicate read(NodeEx node1, Content c, NodeEx node2, Configuration conf
   )
 }
 
+// inline to reduce fan-out via `getAReadContent`
+bindingset[c]
+private predicate read(NodeEx node1, Content c, NodeEx node2, Configuration config) {
+  exists(ContentSet cs |
+    readSet(node1, cs, node2, config) and
+    pragma[only_bind_out](c) = pragma[only_bind_into](cs).getAReadContent()
+  )
+}
+
+// inline to reduce fan-out via `getAReadContent`
+bindingset[c]
+private predicate clearsContentEx(NodeEx n, Content c) {
+  exists(ContentSet cs |
+    clearsContentCached(n.asNode(), cs) and
+    pragma[only_bind_out](c) = pragma[only_bind_into](cs).getAReadContent()
+  )
+}
+
+// inline to reduce fan-out via `getAReadContent`
+bindingset[c]
+private predicate expectsContentEx(NodeEx n, Content c) {
+  exists(ContentSet cs |
+    expectsContentCached(n.asNode(), cs) and
+    pragma[only_bind_out](c) = pragma[only_bind_into](cs).getAReadContent()
+  )
+}
+
+pragma[nomagic]
+private predicate notExpectsContent(NodeEx n) { not expectsContentCached(n.asNode(), _) }
+
+pragma[nomagic]
 private predicate store(
   NodeEx node1, TypedContent tc, NodeEx node2, DataFlowType contentType, Configuration config
 ) {
-  exists(Node n1, Node n2 |
-    node1.asNode() = n1 and
-    node2.asNode() = n2 and
-    store(pragma[only_bind_into](n1), tc, pragma[only_bind_into](n2), contentType) and
-    read(_, tc.getContent(), _, config) and
-    stepFilter(node1, node2, config)
-  )
+  store(pragma[only_bind_into](node1.asNode()), tc, pragma[only_bind_into](node2.asNode()),
+    contentType) and
+  read(_, tc.getContent(), _, config) and
+  stepFilter(node1, node2, config)
 }
 
 pragma[nomagic]
@@ -481,29 +614,19 @@ private module Stage1 {
    * argument in a call.
    */
   predicate fwdFlow(NodeEx node, Cc cc, Configuration config) {
-    sourceNode(node, config) and
+    sourceNode(node, _, config) and
     if hasSourceCallCtx(config) then cc = true else cc = false
     or
-    exists(NodeEx mid |
-      fwdFlow(mid, cc, config) and
-      localFlowStep(mid, node, config)
+    exists(NodeEx mid | fwdFlow(mid, cc, config) |
+      localFlowStep(mid, node, config) or
+      additionalLocalFlowStep(mid, node, config) or
+      additionalLocalStateStep(mid, _, node, _, config)
     )
     or
-    exists(NodeEx mid |
-      fwdFlow(mid, cc, config) and
-      additionalLocalFlowStep(mid, node, config)
-    )
-    or
-    exists(NodeEx mid |
-      fwdFlow(mid, _, config) and
-      jumpStep(mid, node, config) and
-      cc = false
-    )
-    or
-    exists(NodeEx mid |
-      fwdFlow(mid, _, config) and
-      additionalJumpStep(mid, node, config) and
-      cc = false
+    exists(NodeEx mid | fwdFlow(mid, _, config) and cc = false |
+      jumpStep(mid, node, config) or
+      additionalJumpStep(mid, node, config) or
+      additionalJumpStateStep(mid, _, node, _, config)
     )
     or
     // store
@@ -514,9 +637,9 @@ private module Stage1 {
     )
     or
     // read
-    exists(Content c |
-      fwdFlowRead(c, node, cc, config) and
-      fwdFlowConsCand(c, config)
+    exists(ContentSet c |
+      fwdFlowReadSet(c, node, cc, config) and
+      fwdFlowConsCandSet(c, _, config)
     )
     or
     // flow into a callable
@@ -540,10 +663,10 @@ private module Stage1 {
   private predicate fwdFlow(NodeEx node, Configuration config) { fwdFlow(node, _, config) }
 
   pragma[nomagic]
-  private predicate fwdFlowRead(Content c, NodeEx node, Cc cc, Configuration config) {
+  private predicate fwdFlowReadSet(ContentSet c, NodeEx node, Cc cc, Configuration config) {
     exists(NodeEx mid |
       fwdFlow(mid, cc, config) and
-      read(mid, c, node, config)
+      readSet(mid, c, node, config)
     )
   }
 
@@ -561,6 +684,16 @@ private module Stage1 {
     )
   }
 
+  /**
+   * Holds if `cs` may be interpreted in a read as the target of some store
+   * into `c`, in the flow covered by `fwdFlow`.
+   */
+  pragma[nomagic]
+  private predicate fwdFlowConsCandSet(ContentSet cs, Content c, Configuration config) {
+    fwdFlowConsCand(c, config) and
+    c = cs.getAReadContent()
+  }
+
   pragma[nomagic]
   private predicate fwdFlowReturnPosition(ReturnPosition pos, Cc cc, Configuration config) {
     exists(RetNodeEx ret |
@@ -594,6 +727,24 @@ private module Stage1 {
     )
   }
 
+  private predicate stateStepFwd(FlowState state1, FlowState state2, Configuration config) {
+    exists(NodeEx node1 |
+      additionalLocalStateStep(node1, state1, _, state2, config) or
+      additionalJumpStateStep(node1, state1, _, state2, config)
+    |
+      fwdFlow(node1, config)
+    )
+  }
+
+  private predicate fwdFlowState(FlowState state, Configuration config) {
+    sourceNode(_, state, config)
+    or
+    exists(FlowState state0 |
+      fwdFlowState(state0, config) and
+      stateStepFwd(state0, state, config)
+    )
+  }
+
   /**
    * Holds if `node` is part of a path from a source to a sink in the
    * configuration `config`.
@@ -609,30 +760,23 @@ private module Stage1 {
 
   pragma[nomagic]
   private predicate revFlow0(NodeEx node, boolean toReturn, Configuration config) {
-    fwdFlow(node, config) and
-    sinkNode(node, config) and
-    if hasSinkCallCtx(config) then toReturn = true else toReturn = false
-    or
-    exists(NodeEx mid |
-      localFlowStep(node, mid, config) and
-      revFlow(mid, toReturn, config)
+    exists(FlowState state |
+      fwdFlow(node, pragma[only_bind_into](config)) and
+      sinkNode(node, state, config) and
+      fwdFlowState(state, pragma[only_bind_into](config)) and
+      if hasSinkCallCtx(config) then toReturn = true else toReturn = false
     )
     or
-    exists(NodeEx mid |
-      additionalLocalFlowStep(node, mid, config) and
-      revFlow(mid, toReturn, config)
+    exists(NodeEx mid | revFlow(mid, toReturn, config) |
+      localFlowStep(node, mid, config) or
+      additionalLocalFlowStep(node, mid, config) or
+      additionalLocalStateStep(node, _, mid, _, config)
     )
     or
-    exists(NodeEx mid |
-      jumpStep(node, mid, config) and
-      revFlow(mid, _, config) and
-      toReturn = false
-    )
-    or
-    exists(NodeEx mid |
-      additionalJumpStep(node, mid, config) and
-      revFlow(mid, _, config) and
-      toReturn = false
+    exists(NodeEx mid | revFlow(mid, _, config) and toReturn = false |
+      jumpStep(node, mid, config) or
+      additionalJumpStep(node, mid, config) or
+      additionalJumpStateStep(node, _, mid, _, config)
     )
     or
     // store
@@ -642,9 +786,9 @@ private module Stage1 {
     )
     or
     // read
-    exists(NodeEx mid, Content c |
-      read(node, c, mid, config) and
-      fwdFlowConsCand(c, pragma[only_bind_into](config)) and
+    exists(NodeEx mid, ContentSet c |
+      readSet(node, c, mid, config) and
+      fwdFlowConsCandSet(c, _, pragma[only_bind_into](config)) and
       revFlow(mid, toReturn, pragma[only_bind_into](config))
     )
     or
@@ -670,10 +814,10 @@ private module Stage1 {
    */
   pragma[nomagic]
   private predicate revFlowConsCand(Content c, Configuration config) {
-    exists(NodeEx mid, NodeEx node |
+    exists(NodeEx mid, NodeEx node, ContentSet cs |
       fwdFlow(node, pragma[only_bind_into](config)) and
-      read(node, c, mid, config) and
-      fwdFlowConsCand(c, pragma[only_bind_into](config)) and
+      readSet(node, cs, mid, config) and
+      fwdFlowConsCandSet(cs, c, pragma[only_bind_into](config)) and
       revFlow(pragma[only_bind_into](mid), _, pragma[only_bind_into](config))
     )
   }
@@ -692,7 +836,8 @@ private module Stage1 {
    * Holds if `c` is the target of both a read and a store in the flow covered
    * by `revFlow`.
    */
-  private predicate revFlowIsReadAndStored(Content c, Configuration conf) {
+  pragma[nomagic]
+  predicate revFlowIsReadAndStored(Content c, Configuration conf) {
     revFlowConsCand(c, conf) and
     revFlowStore(c, _, _, conf)
   }
@@ -749,6 +894,31 @@ private module Stage1 {
     )
   }
 
+  private predicate stateStepRev(FlowState state1, FlowState state2, Configuration config) {
+    exists(NodeEx node1, NodeEx node2 |
+      additionalLocalStateStep(node1, state1, node2, state2, config) or
+      additionalJumpStateStep(node1, state1, node2, state2, config)
+    |
+      revFlow(node1, _, pragma[only_bind_into](config)) and
+      revFlow(node2, _, pragma[only_bind_into](config)) and
+      fwdFlowState(state1, pragma[only_bind_into](config)) and
+      fwdFlowState(state2, pragma[only_bind_into](config))
+    )
+  }
+
+  predicate revFlowState(FlowState state, Configuration config) {
+    exists(NodeEx node |
+      sinkNode(node, state, config) and
+      revFlow(node, _, pragma[only_bind_into](config)) and
+      fwdFlowState(state, pragma[only_bind_into](config))
+    )
+    or
+    exists(FlowState state0 |
+      revFlowState(state0, config) and
+      stateStepRev(state, state0, config)
+    )
+  }
+
   pragma[nomagic]
   predicate storeStepCand(
     NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, DataFlowType contentType,
@@ -766,15 +936,21 @@ private module Stage1 {
   pragma[nomagic]
   predicate readStepCand(NodeEx n1, Content c, NodeEx n2, Configuration config) {
     revFlowIsReadAndStored(c, pragma[only_bind_into](config)) and
-    revFlow(n2, pragma[only_bind_into](config)) and
-    read(n1, c, n2, pragma[only_bind_into](config))
+    read(n1, c, n2, pragma[only_bind_into](config)) and
+    revFlow(n2, pragma[only_bind_into](config))
   }
 
   pragma[nomagic]
   predicate revFlow(NodeEx node, Configuration config) { revFlow(node, _, config) }
 
-  predicate revFlow(NodeEx node, boolean toReturn, ApOption returnAp, Ap ap, Configuration config) {
-    revFlow(node, toReturn, config) and exists(returnAp) and exists(ap)
+  bindingset[node, state, config]
+  predicate revFlow(
+    NodeEx node, FlowState state, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
+  ) {
+    revFlow(node, toReturn, pragma[only_bind_into](config)) and
+    exists(state) and
+    exists(returnAp) and
+    exists(ap)
   }
 
   private predicate throughFlowNodeCand(NodeEx node, Configuration config) {
@@ -825,17 +1001,21 @@ private module Stage1 {
     )
   }
 
-  predicate stats(boolean fwd, int nodes, int fields, int conscand, int tuples, Configuration config) {
+  predicate stats(
+    boolean fwd, int nodes, int fields, int conscand, int states, int tuples, Configuration config
+  ) {
     fwd = true and
     nodes = count(NodeEx node | fwdFlow(node, config)) and
     fields = count(Content f0 | fwdFlowConsCand(f0, config)) and
     conscand = -1 and
+    states = count(FlowState state | fwdFlowState(state, config)) and
     tuples = count(NodeEx n, boolean b | fwdFlow(n, b, config))
     or
     fwd = false and
     nodes = count(NodeEx node | revFlow(node, _, config)) and
     fields = count(Content f0 | revFlowConsCand(f0, config)) and
     conscand = -1 and
+    states = count(FlowState state | revFlowState(state, config)) and
     tuples = count(NodeEx n, boolean b | revFlow(n, b, config))
   }
   /* End: Stage 1 logic. */
@@ -1016,18 +1196,26 @@ private module Stage2 {
     if reducedViableImplInReturn(c, call) then result = TReturn(c, call) else result = ccNone()
   }
 
-  bindingset[node, cc, config]
-  private LocalCc getLocalCc(NodeEx node, Cc cc, Configuration config) { any() }
+  bindingset[node, cc]
+  private LocalCc getLocalCc(NodeEx node, Cc cc) { any() }
 
+  bindingset[node1, state1, config]
+  bindingset[node2, state2, config]
   private predicate localStep(
-    NodeEx node1, NodeEx node2, boolean preservesValue, ApNil ap, Configuration config, LocalCc lcc
+    NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
+    ApNil ap, Configuration config, LocalCc lcc
   ) {
     (
       preservesValue = true and
-      localFlowStepNodeCand1(node1, node2, config)
+      localFlowStepNodeCand1(node1, node2, config) and
+      state1 = state2
       or
       preservesValue = false and
-      additionalLocalFlowStepNodeCand1(node1, node2, config)
+      additionalLocalFlowStepNodeCand1(node1, node2, config) and
+      state1 = state2
+      or
+      preservesValue = false and
+      additionalLocalStateStep(node1, state1, node2, state2, config)
     ) and
     exists(ap) and
     exists(lcc)
@@ -1037,22 +1225,40 @@ private module Stage2 {
 
   private predicate flowIntoCall = flowIntoCallNodeCand1/5;
 
-  bindingset[node, ap]
-  private predicate filter(NodeEx node, Ap ap) { any() }
+  pragma[nomagic]
+  private predicate expectsContentCand(NodeEx node, Configuration config) {
+    exists(Content c |
+      PrevStage::revFlow(node, pragma[only_bind_into](config)) and
+      PrevStage::revFlowIsReadAndStored(c, pragma[only_bind_into](config)) and
+      expectsContentEx(node, c)
+    )
+  }
+
+  bindingset[node, state, ap, config]
+  private predicate filter(NodeEx node, FlowState state, Ap ap, Configuration config) {
+    PrevStage::revFlowState(state, pragma[only_bind_into](config)) and
+    exists(ap) and
+    not stateBarrier(node, state, config) and
+    (
+      notExpectsContent(node)
+      or
+      ap = true and
+      expectsContentCand(node, config)
+    )
+  }
 
   bindingset[ap, contentType]
   private predicate typecheckStore(Ap ap, DataFlowType contentType) { any() }
 
   /* Begin: Stage 2 logic. */
-  private predicate flowCand(NodeEx node, ApApprox apa, Configuration config) {
-    PrevStage::revFlow(node, _, _, apa, config)
+  bindingset[node, state, config]
+  private predicate flowCand(NodeEx node, FlowState state, ApApprox apa, Configuration config) {
+    PrevStage::revFlow(node, state, _, _, apa, config)
   }
 
   bindingset[result, apa]
   private ApApprox unbindApa(ApApprox apa) {
-    exists(ApApprox apa0 |
-      apa = pragma[only_bind_into](apa0) and result = pragma[only_bind_into](apa0)
-    )
+    pragma[only_bind_out](apa) = pragma[only_bind_out](result)
   }
 
   pragma[nomagic]
@@ -1076,63 +1282,70 @@ private module Stage2 {
    * argument.
    */
   pragma[nomagic]
-  predicate fwdFlow(NodeEx node, Cc cc, ApOption argAp, Ap ap, Configuration config) {
-    fwdFlow0(node, cc, argAp, ap, config) and
-    flowCand(node, unbindApa(getApprox(ap)), config) and
-    filter(node, ap)
+  predicate fwdFlow(NodeEx node, FlowState state, Cc cc, ApOption argAp, Ap ap, Configuration config) {
+    fwdFlow0(node, state, cc, argAp, ap, config) and
+    flowCand(node, state, unbindApa(getApprox(ap)), config) and
+    filter(node, state, ap, config)
   }
 
   pragma[nomagic]
-  private predicate fwdFlow0(NodeEx node, Cc cc, ApOption argAp, Ap ap, Configuration config) {
-    flowCand(node, _, config) and
-    sourceNode(node, config) and
+  private predicate fwdFlow0(
+    NodeEx node, FlowState state, Cc cc, ApOption argAp, Ap ap, Configuration config
+  ) {
+    sourceNode(node, state, config) and
     (if hasSourceCallCtx(config) then cc = ccSomeCall() else cc = ccNone()) and
     argAp = apNone() and
     ap = getApNil(node)
     or
-    exists(NodeEx mid, Ap ap0, LocalCc localCc |
-      fwdFlow(mid, cc, argAp, ap0, config) and
-      localCc = getLocalCc(mid, cc, config)
+    exists(NodeEx mid, FlowState state0, Ap ap0, LocalCc localCc |
+      fwdFlow(mid, state0, cc, argAp, ap0, config) and
+      localCc = getLocalCc(mid, cc)
     |
-      localStep(mid, node, true, _, config, localCc) and
+      localStep(mid, state0, node, state, true, _, config, localCc) and
       ap = ap0
       or
-      localStep(mid, node, false, ap, config, localCc) and
+      localStep(mid, state0, node, state, false, ap, config, localCc) and
       ap0 instanceof ApNil
     )
     or
     exists(NodeEx mid |
-      fwdFlow(mid, _, _, ap, pragma[only_bind_into](config)) and
-      flowCand(node, _, pragma[only_bind_into](config)) and
+      fwdFlow(mid, pragma[only_bind_into](state), _, _, ap, pragma[only_bind_into](config)) and
       jumpStep(mid, node, config) and
       cc = ccNone() and
       argAp = apNone()
     )
     or
     exists(NodeEx mid, ApNil nil |
-      fwdFlow(mid, _, _, nil, pragma[only_bind_into](config)) and
-      flowCand(node, _, pragma[only_bind_into](config)) and
+      fwdFlow(mid, state, _, _, nil, pragma[only_bind_into](config)) and
       additionalJumpStep(mid, node, config) and
       cc = ccNone() and
       argAp = apNone() and
       ap = getApNil(node)
     )
     or
+    exists(NodeEx mid, FlowState state0, ApNil nil |
+      fwdFlow(mid, state0, _, _, nil, pragma[only_bind_into](config)) and
+      additionalJumpStateStep(mid, state0, node, state, config) and
+      cc = ccNone() and
+      argAp = apNone() and
+      ap = getApNil(node)
+    )
+    or
     // store
     exists(TypedContent tc, Ap ap0 |
-      fwdFlowStore(_, ap0, tc, node, cc, argAp, config) and
+      fwdFlowStore(_, ap0, tc, node, state, cc, argAp, config) and
       ap = apCons(tc, ap0)
     )
     or
     // read
     exists(Ap ap0, Content c |
-      fwdFlowRead(ap0, c, _, node, cc, argAp, config) and
+      fwdFlowRead(ap0, c, _, node, state, cc, argAp, config) and
       fwdFlowConsCand(ap0, c, ap, config)
     )
     or
     // flow into a callable
     exists(ApApprox apa |
-      fwdFlowIn(_, node, _, cc, _, ap, config) and
+      fwdFlowIn(_, node, state, _, cc, _, ap, config) and
       apa = getApprox(ap) and
       if PrevStage::parameterMayFlowThrough(node, _, apa, config)
       then argAp = apSome(ap)
@@ -1140,20 +1353,21 @@ private module Stage2 {
     )
     or
     // flow out of a callable
-    fwdFlowOutNotFromArg(node, cc, argAp, ap, config)
+    fwdFlowOutNotFromArg(node, state, cc, argAp, ap, config)
     or
     exists(DataFlowCall call, Ap argAp0 |
-      fwdFlowOutFromArg(call, node, argAp0, ap, config) and
+      fwdFlowOutFromArg(call, node, state, argAp0, ap, config) and
       fwdFlowIsEntered(call, cc, argAp, argAp0, config)
     )
   }
 
   pragma[nomagic]
   private predicate fwdFlowStore(
-    NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, Cc cc, ApOption argAp, Configuration config
+    NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc, ApOption argAp,
+    Configuration config
   ) {
     exists(DataFlowType contentType |
-      fwdFlow(node1, cc, argAp, ap1, config) and
+      fwdFlow(node1, state, cc, argAp, ap1, config) and
       PrevStage::storeStepCand(node1, unbindApa(getApprox(ap1)), tc, node2, contentType, config) and
       typecheckStore(ap1, contentType)
     )
@@ -1166,7 +1380,7 @@ private module Stage2 {
   pragma[nomagic]
   private predicate fwdFlowConsCand(Ap cons, Content c, Ap tail, Configuration config) {
     exists(TypedContent tc |
-      fwdFlowStore(_, tail, tc, _, _, _, config) and
+      fwdFlowStore(_, tail, tc, _, _, _, _, config) and
       tc.getContent() = c and
       cons = apCons(tc, tail)
     )
@@ -1174,20 +1388,21 @@ private module Stage2 {
 
   pragma[nomagic]
   private predicate fwdFlowRead(
-    Ap ap, Content c, NodeEx node1, NodeEx node2, Cc cc, ApOption argAp, Configuration config
+    Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc, ApOption argAp,
+    Configuration config
   ) {
-    fwdFlow(node1, cc, argAp, ap, config) and
+    fwdFlow(node1, state, cc, argAp, ap, config) and
     PrevStage::readStepCand(node1, c, node2, config) and
     getHeadContent(ap) = c
   }
 
   pragma[nomagic]
   private predicate fwdFlowIn(
-    DataFlowCall call, ParamNodeEx p, Cc outercc, Cc innercc, ApOption argAp, Ap ap,
-    Configuration config
+    DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, Cc innercc, ApOption argAp,
+    Ap ap, Configuration config
   ) {
     exists(ArgNodeEx arg, boolean allowsFieldFlow |
-      fwdFlow(arg, outercc, argAp, ap, config) and
+      fwdFlow(arg, state, outercc, argAp, ap, config) and
       flowIntoCall(call, arg, p, allowsFieldFlow, config) and
       innercc = getCallContextCall(call, p.getEnclosingCallable(), outercc) and
       if allowsFieldFlow = false then ap instanceof ApNil else any()
@@ -1196,13 +1411,13 @@ private module Stage2 {
 
   pragma[nomagic]
   private predicate fwdFlowOutNotFromArg(
-    NodeEx out, Cc ccOut, ApOption argAp, Ap ap, Configuration config
+    NodeEx out, FlowState state, Cc ccOut, ApOption argAp, Ap ap, Configuration config
   ) {
     exists(
       DataFlowCall call, RetNodeEx ret, boolean allowsFieldFlow, CcNoCall innercc,
       DataFlowCallable inner
     |
-      fwdFlow(ret, innercc, argAp, ap, config) and
+      fwdFlow(ret, state, innercc, argAp, ap, config) and
       flowOutOfCall(call, ret, out, allowsFieldFlow, config) and
       inner = ret.getEnclosingCallable() and
       ccOut = getCallContextReturn(inner, call, innercc) and
@@ -1212,10 +1427,10 @@ private module Stage2 {
 
   pragma[nomagic]
   private predicate fwdFlowOutFromArg(
-    DataFlowCall call, NodeEx out, Ap argAp, Ap ap, Configuration config
+    DataFlowCall call, NodeEx out, FlowState state, Ap argAp, Ap ap, Configuration config
   ) {
     exists(RetNodeEx ret, boolean allowsFieldFlow, CcCall ccc |
-      fwdFlow(ret, ccc, apSome(argAp), ap, config) and
+      fwdFlow(ret, state, ccc, apSome(argAp), ap, config) and
       flowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, config) and
       if allowsFieldFlow = false then ap instanceof ApNil else any()
     )
@@ -1230,7 +1445,7 @@ private module Stage2 {
     DataFlowCall call, Cc cc, ApOption argAp, Ap ap, Configuration config
   ) {
     exists(ParamNodeEx p |
-      fwdFlowIn(call, p, cc, _, argAp, ap, config) and
+      fwdFlowIn(call, p, _, cc, _, argAp, ap, config) and
       PrevStage::parameterMayFlowThrough(p, _, unbindApa(getApprox(ap)), config)
     )
   }
@@ -1239,24 +1454,24 @@ private module Stage2 {
   private predicate storeStepFwd(
     NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, Ap ap2, Configuration config
   ) {
-    fwdFlowStore(node1, ap1, tc, node2, _, _, config) and
+    fwdFlowStore(node1, ap1, tc, node2, _, _, _, config) and
     ap2 = apCons(tc, ap1) and
-    fwdFlowRead(ap2, tc.getContent(), _, _, _, _, config)
+    fwdFlowRead(ap2, tc.getContent(), _, _, _, _, _, config)
   }
 
   private predicate readStepFwd(
     NodeEx n1, Ap ap1, Content c, NodeEx n2, Ap ap2, Configuration config
   ) {
-    fwdFlowRead(ap1, c, n1, n2, _, _, config) and
+    fwdFlowRead(ap1, c, n1, n2, _, _, _, config) and
     fwdFlowConsCand(ap1, c, ap2, config)
   }
 
   pragma[nomagic]
   private predicate callMayFlowThroughFwd(DataFlowCall call, Configuration config) {
-    exists(Ap argAp0, NodeEx out, Cc cc, ApOption argAp, Ap ap |
-      fwdFlow(out, pragma[only_bind_into](cc), pragma[only_bind_into](argAp), ap,
+    exists(Ap argAp0, NodeEx out, FlowState state, Cc cc, ApOption argAp, Ap ap |
+      fwdFlow(out, state, pragma[only_bind_into](cc), pragma[only_bind_into](argAp), ap,
         pragma[only_bind_into](config)) and
-      fwdFlowOutFromArg(call, out, argAp0, ap, config) and
+      fwdFlowOutFromArg(call, out, state, argAp0, ap, config) and
       fwdFlowIsEntered(pragma[only_bind_into](call), pragma[only_bind_into](cc),
         pragma[only_bind_into](argAp), pragma[only_bind_into](argAp0),
         pragma[only_bind_into](config))
@@ -1268,14 +1483,16 @@ private module Stage2 {
     DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
   ) {
     flowIntoCall(call, arg, p, allowsFieldFlow, config) and
-    fwdFlow(arg, _, _, _, pragma[only_bind_into](config)) and
+    fwdFlow(arg, _, _, _, _, pragma[only_bind_into](config)) and
     PrevStage::parameterMayFlowThrough(p, _, _, pragma[only_bind_into](config)) and
     callMayFlowThroughFwd(call, pragma[only_bind_into](config))
   }
 
   pragma[nomagic]
-  private predicate returnNodeMayFlowThrough(RetNodeEx ret, Ap ap, Configuration config) {
-    fwdFlow(ret, any(CcCall ccc), apSome(_), ap, config)
+  private predicate returnNodeMayFlowThrough(
+    RetNodeEx ret, FlowState state, Ap ap, Configuration config
+  ) {
+    fwdFlow(ret, state, any(CcCall ccc), apSome(_), ap, config)
   }
 
   /**
@@ -1287,44 +1504,56 @@ private module Stage2 {
    * the access path of the returned value.
    */
   pragma[nomagic]
-  predicate revFlow(NodeEx node, boolean toReturn, ApOption returnAp, Ap ap, Configuration config) {
-    revFlow0(node, toReturn, returnAp, ap, config) and
-    fwdFlow(node, _, _, ap, config)
+  predicate revFlow(
+    NodeEx node, FlowState state, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
+  ) {
+    revFlow0(node, state, toReturn, returnAp, ap, config) and
+    fwdFlow(node, state, _, _, ap, config)
   }
 
   pragma[nomagic]
   private predicate revFlow0(
-    NodeEx node, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
+    NodeEx node, FlowState state, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
   ) {
-    fwdFlow(node, _, _, ap, config) and
-    sinkNode(node, config) and
+    fwdFlow(node, state, _, _, ap, config) and
+    sinkNode(node, state, config) and
     (if hasSinkCallCtx(config) then toReturn = true else toReturn = false) and
     returnAp = apNone() and
     ap instanceof ApNil
     or
-    exists(NodeEx mid |
-      localStep(node, mid, true, _, config, _) and
-      revFlow(mid, toReturn, returnAp, ap, config)
+    exists(NodeEx mid, FlowState state0 |
+      localStep(node, state, mid, state0, true, _, config, _) and
+      revFlow(mid, state0, toReturn, returnAp, ap, config)
     )
     or
-    exists(NodeEx mid, ApNil nil |
-      fwdFlow(node, _, _, ap, pragma[only_bind_into](config)) and
-      localStep(node, mid, false, _, config, _) and
-      revFlow(mid, toReturn, returnAp, nil, pragma[only_bind_into](config)) and
+    exists(NodeEx mid, FlowState state0, ApNil nil |
+      fwdFlow(node, pragma[only_bind_into](state), _, _, ap, pragma[only_bind_into](config)) and
+      localStep(node, pragma[only_bind_into](state), mid, state0, false, _, config, _) and
+      revFlow(mid, state0, toReturn, returnAp, nil, pragma[only_bind_into](config)) and
       ap instanceof ApNil
     )
     or
     exists(NodeEx mid |
       jumpStep(node, mid, config) and
-      revFlow(mid, _, _, ap, config) and
+      revFlow(mid, state, _, _, ap, config) and
       toReturn = false and
       returnAp = apNone()
     )
     or
     exists(NodeEx mid, ApNil nil |
-      fwdFlow(node, _, _, ap, pragma[only_bind_into](config)) and
+      fwdFlow(node, _, _, _, ap, pragma[only_bind_into](config)) and
       additionalJumpStep(node, mid, config) and
-      revFlow(pragma[only_bind_into](mid), _, _, nil, pragma[only_bind_into](config)) and
+      revFlow(pragma[only_bind_into](mid), state, _, _, nil, pragma[only_bind_into](config)) and
+      toReturn = false and
+      returnAp = apNone() and
+      ap instanceof ApNil
+    )
+    or
+    exists(NodeEx mid, FlowState state0, ApNil nil |
+      fwdFlow(node, _, _, _, ap, pragma[only_bind_into](config)) and
+      additionalJumpStateStep(node, state, mid, state0, config) and
+      revFlow(pragma[only_bind_into](mid), pragma[only_bind_into](state0), _, _, nil,
+        pragma[only_bind_into](config)) and
       toReturn = false and
       returnAp = apNone() and
       ap instanceof ApNil
@@ -1332,39 +1561,39 @@ private module Stage2 {
     or
     // store
     exists(Ap ap0, Content c |
-      revFlowStore(ap0, c, ap, node, _, _, toReturn, returnAp, config) and
+      revFlowStore(ap0, c, ap, node, state, _, _, toReturn, returnAp, config) and
       revFlowConsCand(ap0, c, ap, config)
     )
     or
     // read
     exists(NodeEx mid, Ap ap0 |
-      revFlow(mid, toReturn, returnAp, ap0, config) and
+      revFlow(mid, state, toReturn, returnAp, ap0, config) and
       readStepFwd(node, ap, _, mid, ap0, config)
     )
     or
     // flow into a callable
-    revFlowInNotToReturn(node, returnAp, ap, config) and
+    revFlowInNotToReturn(node, state, returnAp, ap, config) and
     toReturn = false
     or
     exists(DataFlowCall call, Ap returnAp0 |
-      revFlowInToReturn(call, node, returnAp0, ap, config) and
+      revFlowInToReturn(call, node, state, returnAp0, ap, config) and
       revFlowIsReturned(call, toReturn, returnAp, returnAp0, config)
     )
     or
     // flow out of a callable
-    revFlowOut(_, node, _, _, ap, config) and
+    revFlowOut(_, node, state, _, _, ap, config) and
     toReturn = true and
-    if returnNodeMayFlowThrough(node, ap, config)
+    if returnNodeMayFlowThrough(node, state, ap, config)
     then returnAp = apSome(ap)
     else returnAp = apNone()
   }
 
   pragma[nomagic]
   private predicate revFlowStore(
-    Ap ap0, Content c, Ap ap, NodeEx node, TypedContent tc, NodeEx mid, boolean toReturn,
-    ApOption returnAp, Configuration config
+    Ap ap0, Content c, Ap ap, NodeEx node, FlowState state, TypedContent tc, NodeEx mid,
+    boolean toReturn, ApOption returnAp, Configuration config
   ) {
-    revFlow(mid, toReturn, returnAp, ap0, config) and
+    revFlow(mid, state, toReturn, returnAp, ap0, config) and
     storeStepFwd(node, ap, tc, mid, ap0, config) and
     tc.getContent() = c
   }
@@ -1376,7 +1605,7 @@ private module Stage2 {
   pragma[nomagic]
   private predicate revFlowConsCand(Ap cons, Content c, Ap tail, Configuration config) {
     exists(NodeEx mid, Ap tail0 |
-      revFlow(mid, _, _, tail, config) and
+      revFlow(mid, _, _, _, tail, config) and
       tail = pragma[only_bind_into](tail0) and
       readStepFwd(_, cons, c, mid, tail0, config)
     )
@@ -1384,11 +1613,11 @@ private module Stage2 {
 
   pragma[nomagic]
   private predicate revFlowOut(
-    DataFlowCall call, RetNodeEx ret, boolean toReturn, ApOption returnAp, Ap ap,
+    DataFlowCall call, RetNodeEx ret, FlowState state, boolean toReturn, ApOption returnAp, Ap ap,
     Configuration config
   ) {
     exists(NodeEx out, boolean allowsFieldFlow |
-      revFlow(out, toReturn, returnAp, ap, config) and
+      revFlow(out, state, toReturn, returnAp, ap, config) and
       flowOutOfCall(call, ret, out, allowsFieldFlow, config) and
       if allowsFieldFlow = false then ap instanceof ApNil else any()
     )
@@ -1396,10 +1625,10 @@ private module Stage2 {
 
   pragma[nomagic]
   private predicate revFlowInNotToReturn(
-    ArgNodeEx arg, ApOption returnAp, Ap ap, Configuration config
+    ArgNodeEx arg, FlowState state, ApOption returnAp, Ap ap, Configuration config
   ) {
     exists(ParamNodeEx p, boolean allowsFieldFlow |
-      revFlow(p, false, returnAp, ap, config) and
+      revFlow(p, state, false, returnAp, ap, config) and
       flowIntoCall(_, arg, p, allowsFieldFlow, config) and
       if allowsFieldFlow = false then ap instanceof ApNil else any()
     )
@@ -1407,10 +1636,10 @@ private module Stage2 {
 
   pragma[nomagic]
   private predicate revFlowInToReturn(
-    DataFlowCall call, ArgNodeEx arg, Ap returnAp, Ap ap, Configuration config
+    DataFlowCall call, ArgNodeEx arg, FlowState state, Ap returnAp, Ap ap, Configuration config
   ) {
     exists(ParamNodeEx p, boolean allowsFieldFlow |
-      revFlow(p, true, apSome(returnAp), ap, config) and
+      revFlow(p, state, true, apSome(returnAp), ap, config) and
       flowThroughIntoCall(call, arg, p, allowsFieldFlow, config) and
       if allowsFieldFlow = false then ap instanceof ApNil else any()
     )
@@ -1425,9 +1654,9 @@ private module Stage2 {
   private predicate revFlowIsReturned(
     DataFlowCall call, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
   ) {
-    exists(RetNodeEx ret, CcCall ccc |
-      revFlowOut(call, ret, toReturn, returnAp, ap, config) and
-      fwdFlow(ret, ccc, apSome(_), ap, config) and
+    exists(RetNodeEx ret, FlowState state, CcCall ccc |
+      revFlowOut(call, ret, state, toReturn, returnAp, ap, config) and
+      fwdFlow(ret, state, ccc, apSome(_), ap, config) and
       ccc.matchesCall(call)
     )
   }
@@ -1438,46 +1667,77 @@ private module Stage2 {
     Configuration config
   ) {
     exists(Ap ap2, Content c |
-      store(node1, tc, node2, contentType, config) and
-      revFlowStore(ap2, c, ap1, node1, tc, node2, _, _, config) and
+      PrevStage::storeStepCand(node1, _, tc, node2, contentType, config) and
+      revFlowStore(ap2, c, ap1, node1, _, tc, node2, _, _, config) and
       revFlowConsCand(ap2, c, ap1, config)
     )
   }
 
   predicate readStepCand(NodeEx node1, Content c, NodeEx node2, Configuration config) {
     exists(Ap ap1, Ap ap2 |
-      revFlow(node2, _, _, pragma[only_bind_into](ap2), pragma[only_bind_into](config)) and
+      revFlow(node2, _, _, _, pragma[only_bind_into](ap2), pragma[only_bind_into](config)) and
       readStepFwd(node1, ap1, c, node2, ap2, config) and
-      revFlowStore(ap1, c, pragma[only_bind_into](ap2), _, _, _, _, _,
+      revFlowStore(ap1, c, pragma[only_bind_into](ap2), _, _, _, _, _, _,
         pragma[only_bind_into](config))
     )
   }
 
-  predicate revFlow(NodeEx node, Configuration config) { revFlow(node, _, _, _, config) }
+  predicate revFlow(NodeEx node, FlowState state, Configuration config) {
+    revFlow(node, state, _, _, _, config)
+  }
+
+  pragma[nomagic]
+  predicate revFlow(NodeEx node, Configuration config) { revFlow(node, _, _, _, _, config) }
+
+  // use an alias as a workaround for bad functionality-induced joins
+  pragma[nomagic]
+  predicate revFlowAlias(NodeEx node, Configuration config) { revFlow(node, _, _, _, _, config) }
+
+  // use an alias as a workaround for bad functionality-induced joins
+  pragma[nomagic]
+  predicate revFlowAlias(
+    NodeEx node, FlowState state, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
+  ) {
+    revFlow(node, state, toReturn, returnAp, ap, config)
+  }
 
   private predicate fwdConsCand(TypedContent tc, Ap ap, Configuration config) {
     storeStepFwd(_, ap, tc, _, _, config)
   }
 
-  predicate consCand(TypedContent tc, Ap ap, Configuration config) {
+  private predicate revConsCand(TypedContent tc, Ap ap, Configuration config) {
     storeStepCand(_, ap, tc, _, _, config)
   }
 
+  private predicate validAp(Ap ap, Configuration config) {
+    revFlow(_, _, _, _, ap, config) and ap instanceof ApNil
+    or
+    exists(TypedContent head, Ap tail |
+      consCand(head, tail, config) and
+      ap = apCons(head, tail)
+    )
+  }
+
+  predicate consCand(TypedContent tc, Ap ap, Configuration config) {
+    revConsCand(tc, ap, config) and
+    validAp(ap, config)
+  }
+
   pragma[noinline]
   private predicate parameterFlow(
     ParamNodeEx p, Ap ap, Ap ap0, DataFlowCallable c, Configuration config
   ) {
-    revFlow(p, true, apSome(ap0), ap, config) and
+    revFlow(p, _, true, apSome(ap0), ap, config) and
     c = p.getEnclosingCallable()
   }
 
   predicate parameterMayFlowThrough(ParamNodeEx p, DataFlowCallable c, Ap ap, Configuration config) {
-    exists(RetNodeEx ret, Ap ap0, ReturnKindExt kind, int pos |
+    exists(RetNodeEx ret, FlowState state, Ap ap0, ReturnKindExt kind, ParameterPosition pos |
       parameterFlow(p, ap, ap0, c, config) and
       c = ret.getEnclosingCallable() and
-      revFlow(pragma[only_bind_into](ret), true, apSome(_), pragma[only_bind_into](ap0),
-        pragma[only_bind_into](config)) and
-      fwdFlow(ret, any(CcCall ccc), apSome(ap), ap0, config) and
+      revFlow(pragma[only_bind_into](ret), pragma[only_bind_into](state), true, apSome(_),
+        pragma[only_bind_into](ap0), pragma[only_bind_into](config)) and
+      fwdFlow(ret, state, any(CcCall ccc), apSome(ap), ap0, config) and
       kind = ret.getKind() and
       p.getPosition() = pos and
       // we don't expect a parameter to return stored in itself, unless explicitly allowed
@@ -1491,25 +1751,37 @@ private module Stage2 {
 
   pragma[nomagic]
   predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
-    exists(Ap returnAp0, ArgNodeEx arg, boolean toReturn, ApOption returnAp, Ap ap |
-      revFlow(arg, toReturn, returnAp, ap, config) and
-      revFlowInToReturn(call, arg, returnAp0, ap, config) and
+    exists(
+      Ap returnAp0, ArgNodeEx arg, FlowState state, boolean toReturn, ApOption returnAp, Ap ap
+    |
+      revFlow(arg, state, toReturn, returnAp, ap, config) and
+      revFlowInToReturn(call, arg, state, returnAp0, ap, config) and
       revFlowIsReturned(call, toReturn, returnAp, returnAp0, config)
     )
   }
 
-  predicate stats(boolean fwd, int nodes, int fields, int conscand, int tuples, Configuration config) {
+  predicate stats(
+    boolean fwd, int nodes, int fields, int conscand, int states, int tuples, Configuration config
+  ) {
     fwd = true and
-    nodes = count(NodeEx node | fwdFlow(node, _, _, _, config)) and
+    nodes = count(NodeEx node | fwdFlow(node, _, _, _, _, config)) and
     fields = count(TypedContent f0 | fwdConsCand(f0, _, config)) and
     conscand = count(TypedContent f0, Ap ap | fwdConsCand(f0, ap, config)) and
-    tuples = count(NodeEx n, Cc cc, ApOption argAp, Ap ap | fwdFlow(n, cc, argAp, ap, config))
+    states = count(FlowState state | fwdFlow(_, state, _, _, _, config)) and
+    tuples =
+      count(NodeEx n, FlowState state, Cc cc, ApOption argAp, Ap ap |
+        fwdFlow(n, state, cc, argAp, ap, config)
+      )
     or
     fwd = false and
-    nodes = count(NodeEx node | revFlow(node, _, _, _, config)) and
+    nodes = count(NodeEx node | revFlow(node, _, _, _, _, config)) and
     fields = count(TypedContent f0 | consCand(f0, _, config)) and
     conscand = count(TypedContent f0, Ap ap | consCand(f0, ap, config)) and
-    tuples = count(NodeEx n, boolean b, ApOption retAp, Ap ap | revFlow(n, b, retAp, ap, config))
+    states = count(FlowState state | revFlow(_, state, _, _, _, config)) and
+    tuples =
+      count(NodeEx n, FlowState state, boolean b, ApOption retAp, Ap ap |
+        revFlow(n, state, b, retAp, ap, config)
+      )
   }
   /* End: Stage 2 logic. */
 }
@@ -1520,7 +1792,7 @@ private predicate flowOutOfCallNodeCand2(
 ) {
   flowOutOfCallNodeCand1(call, node1, node2, allowsFieldFlow, config) and
   Stage2::revFlow(node2, pragma[only_bind_into](config)) and
-  Stage2::revFlow(node1, pragma[only_bind_into](config))
+  Stage2::revFlowAlias(node1, pragma[only_bind_into](config))
 }
 
 pragma[nomagic]
@@ -1530,7 +1802,7 @@ private predicate flowIntoCallNodeCand2(
 ) {
   flowIntoCallNodeCand1(call, node1, node2, allowsFieldFlow, config) and
   Stage2::revFlow(node2, pragma[only_bind_into](config)) and
-  Stage2::revFlow(node1, pragma[only_bind_into](config))
+  Stage2::revFlowAlias(node1, pragma[only_bind_into](config))
 }
 
 private module LocalFlowBigStep {
@@ -1541,7 +1813,8 @@ private module LocalFlowBigStep {
   private class FlowCheckNode extends NodeEx {
     FlowCheckNode() {
       castNode(this.asNode()) or
-      clearsContentCached(this.asNode(), _)
+      clearsContentCached(this.asNode(), _) or
+      expectsContentCached(this.asNode(), _)
     }
   }
 
@@ -1549,17 +1822,31 @@ private module LocalFlowBigStep {
    * Holds if `node` can be the first node in a maximal subsequence of local
    * flow steps in a dataflow path.
    */
-  predicate localFlowEntry(NodeEx node, Configuration config) {
-    Stage2::revFlow(node, config) and
+  private predicate localFlowEntry(NodeEx node, FlowState state, Configuration config) {
+    Stage2::revFlow(node, state, config) and
     (
-      sourceNode(node, config) or
-      jumpStep(_, node, config) or
-      additionalJumpStep(_, node, config) or
-      node instanceof ParamNodeEx or
-      node.asNode() instanceof OutNodeExt or
-      store(_, _, node, _, config) or
-      read(_, _, node, config) or
+      sourceNode(node, state, config)
+      or
+      jumpStep(_, node, config)
+      or
+      additionalJumpStep(_, node, config)
+      or
+      additionalJumpStateStep(_, _, node, state, config)
+      or
+      node instanceof ParamNodeEx
+      or
+      node.asNode() instanceof OutNodeExt
+      or
+      Stage2::storeStepCand(_, _, _, node, _, config)
+      or
+      Stage2::readStepCand(_, _, node, config)
+      or
       node instanceof FlowCheckNode
+      or
+      exists(FlowState s |
+        additionalLocalStateStep(_, s, node, state, config) and
+        s != state
+      )
     )
   }
 
@@ -1567,28 +1854,43 @@ private module LocalFlowBigStep {
    * Holds if `node` can be the last node in a maximal subsequence of local
    * flow steps in a dataflow path.
    */
-  private predicate localFlowExit(NodeEx node, Configuration config) {
-    exists(NodeEx next | Stage2::revFlow(next, config) |
+  private predicate localFlowExit(NodeEx node, FlowState state, Configuration config) {
+    exists(NodeEx next | Stage2::revFlow(next, state, config) |
       jumpStep(node, next, config) or
       additionalJumpStep(node, next, config) or
       flowIntoCallNodeCand1(_, node, next, config) or
       flowOutOfCallNodeCand1(_, node, next, config) or
-      store(node, _, next, _, config) or
-      read(node, _, next, config)
+      Stage2::storeStepCand(node, _, _, next, _, config) or
+      Stage2::readStepCand(node, _, next, config)
     )
     or
+    exists(NodeEx next, FlowState s | Stage2::revFlow(next, s, config) |
+      additionalJumpStateStep(node, state, next, s, config)
+      or
+      additionalLocalStateStep(node, state, next, s, config) and
+      s != state
+    )
+    or
+    Stage2::revFlow(node, state, config) and
     node instanceof FlowCheckNode
     or
-    sinkNode(node, config)
+    sinkNode(node, state, config)
   }
 
   pragma[noinline]
   private predicate additionalLocalFlowStepNodeCand2(
-    NodeEx node1, NodeEx node2, Configuration config
+    NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, Configuration config
   ) {
     additionalLocalFlowStepNodeCand1(node1, node2, config) and
-    Stage2::revFlow(node1, _, _, false, pragma[only_bind_into](config)) and
-    Stage2::revFlow(node2, _, _, false, pragma[only_bind_into](config))
+    state1 = state2 and
+    Stage2::revFlow(node1, pragma[only_bind_into](state1), _, _, false,
+      pragma[only_bind_into](config)) and
+    Stage2::revFlowAlias(node2, pragma[only_bind_into](state2), _, _, false,
+      pragma[only_bind_into](config))
+    or
+    additionalLocalStateStep(node1, state1, node2, state2, config) and
+    Stage2::revFlow(node1, state1, _, _, false, pragma[only_bind_into](config)) and
+    Stage2::revFlowAlias(node2, state2, _, _, false, pragma[only_bind_into](config))
   }
 
   /**
@@ -1600,40 +1902,40 @@ private module LocalFlowBigStep {
    */
   pragma[nomagic]
   private predicate localFlowStepPlus(
-    NodeEx node1, NodeEx node2, boolean preservesValue, DataFlowType t, Configuration config,
-    LocalCallContext cc
+    NodeEx node1, FlowState state, NodeEx node2, boolean preservesValue, DataFlowType t,
+    Configuration config, LocalCallContext cc
   ) {
     not isUnreachableInCallCached(node2.asNode(), cc.(LocalCallContextSpecificCall).getCall()) and
     (
-      localFlowEntry(node1, pragma[only_bind_into](config)) and
+      localFlowEntry(node1, pragma[only_bind_into](state), pragma[only_bind_into](config)) and
       (
         localFlowStepNodeCand1(node1, node2, config) and
         preservesValue = true and
-        t = node1.getDataFlowType() // irrelevant dummy value
+        t = node1.getDataFlowType() and // irrelevant dummy value
+        Stage2::revFlow(node2, pragma[only_bind_into](state), pragma[only_bind_into](config))
         or
-        additionalLocalFlowStepNodeCand2(node1, node2, config) and
+        additionalLocalFlowStepNodeCand2(node1, state, node2, state, config) and
         preservesValue = false and
         t = node2.getDataFlowType()
       ) and
       node1 != node2 and
       cc.relevantFor(node1.getEnclosingCallable()) and
-      not isUnreachableInCallCached(node1.asNode(), cc.(LocalCallContextSpecificCall).getCall()) and
-      Stage2::revFlow(node2, pragma[only_bind_into](config))
+      not isUnreachableInCallCached(node1.asNode(), cc.(LocalCallContextSpecificCall).getCall())
       or
       exists(NodeEx mid |
-        localFlowStepPlus(node1, mid, preservesValue, t, pragma[only_bind_into](config), cc) and
+        localFlowStepPlus(node1, pragma[only_bind_into](state), mid, preservesValue, t,
+          pragma[only_bind_into](config), cc) and
         localFlowStepNodeCand1(mid, node2, config) and
         not mid instanceof FlowCheckNode and
-        Stage2::revFlow(node2, pragma[only_bind_into](config))
+        Stage2::revFlow(node2, pragma[only_bind_into](state), pragma[only_bind_into](config))
       )
       or
       exists(NodeEx mid |
-        localFlowStepPlus(node1, mid, _, _, pragma[only_bind_into](config), cc) and
-        additionalLocalFlowStepNodeCand2(mid, node2, config) and
+        localFlowStepPlus(node1, state, mid, _, _, pragma[only_bind_into](config), cc) and
+        additionalLocalFlowStepNodeCand2(mid, state, node2, state, config) and
         not mid instanceof FlowCheckNode and
         preservesValue = false and
-        t = node2.getDataFlowType() and
-        Stage2::revFlow(node2, pragma[only_bind_into](config))
+        t = node2.getDataFlowType()
       )
     )
   }
@@ -1644,11 +1946,22 @@ private module LocalFlowBigStep {
    */
   pragma[nomagic]
   predicate localFlowBigStep(
-    NodeEx node1, NodeEx node2, boolean preservesValue, AccessPathFrontNil apf,
-    Configuration config, LocalCallContext callContext
+    NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
+    AccessPathFrontNil apf, Configuration config, LocalCallContext callContext
   ) {
-    localFlowStepPlus(node1, node2, preservesValue, apf.getType(), config, callContext) and
-    localFlowExit(node2, config)
+    localFlowStepPlus(node1, state1, node2, preservesValue, apf.getType(), config, callContext) and
+    localFlowExit(node2, state1, config) and
+    state1 = state2
+    or
+    additionalLocalFlowStepNodeCand2(node1, state1, node2, state2, config) and
+    state1 != state2 and
+    preservesValue = false and
+    apf = TFrontNil(node2.getDataFlowType()) and
+    callContext.relevantFor(node1.getEnclosingCallable()) and
+    not exists(DataFlowCall call | call = callContext.(LocalCallContextSpecificCall).getCall() |
+      isUnreachableInCallCached(node1.asNode(), call) or
+      isUnreachableInCallCached(node2.asNode(), call)
+    )
   }
 }
 
@@ -1706,13 +2019,14 @@ private module Stage3 {
   bindingset[call, c, innercc]
   private CcNoCall getCallContextReturn(DataFlowCallable c, DataFlowCall call, Cc innercc) { any() }
 
-  bindingset[node, cc, config]
-  private LocalCc getLocalCc(NodeEx node, Cc cc, Configuration config) { any() }
+  bindingset[node, cc]
+  private LocalCc getLocalCc(NodeEx node, Cc cc) { any() }
 
   private predicate localStep(
-    NodeEx node1, NodeEx node2, boolean preservesValue, ApNil ap, Configuration config, LocalCc lcc
+    NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
+    ApNil ap, Configuration config, LocalCc lcc
   ) {
-    localFlowBigStep(node1, node2, preservesValue, ap, config, _) and exists(lcc)
+    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap, config, _) and exists(lcc)
   }
 
   private predicate flowOutOfCall = flowOutOfCallNodeCand2/5;
@@ -1720,15 +2034,49 @@ private module Stage3 {
   private predicate flowIntoCall = flowIntoCallNodeCand2/5;
 
   pragma[nomagic]
-  private predicate clear(NodeEx node, Ap ap) { ap.isClearedAt(node.asNode()) }
+  private predicate clearSet(NodeEx node, ContentSet c, Configuration config) {
+    PrevStage::revFlow(node, config) and
+    clearsContentCached(node.asNode(), c)
+  }
+
+  pragma[nomagic]
+  private predicate clearContent(NodeEx node, Content c, Configuration config) {
+    exists(ContentSet cs |
+      PrevStage::readStepCand(_, pragma[only_bind_into](c), _, pragma[only_bind_into](config)) and
+      c = cs.getAReadContent() and
+      clearSet(node, cs, pragma[only_bind_into](config))
+    )
+  }
+
+  pragma[nomagic]
+  private predicate clear(NodeEx node, Ap ap, Configuration config) {
+    clearContent(node, ap.getHead().getContent(), config)
+  }
+
+  pragma[nomagic]
+  private predicate expectsContentCand(NodeEx node, Ap ap, Configuration config) {
+    exists(Content c |
+      PrevStage::revFlow(node, pragma[only_bind_into](config)) and
+      PrevStage::readStepCand(_, c, _, pragma[only_bind_into](config)) and
+      expectsContentEx(node, c) and
+      c = ap.getHead().getContent()
+    )
+  }
 
   pragma[nomagic]
   private predicate castingNodeEx(NodeEx node) { node.asNode() instanceof CastingNode }
 
-  bindingset[node, ap]
-  private predicate filter(NodeEx node, Ap ap) {
-    not clear(node, ap) and
-    if castingNodeEx(node) then compatibleTypes(node.getDataFlowType(), ap.getType()) else any()
+  bindingset[node, state, ap, config]
+  private predicate filter(NodeEx node, FlowState state, Ap ap, Configuration config) {
+    exists(state) and
+    exists(config) and
+    not clear(node, ap, config) and
+    (if castingNodeEx(node) then compatibleTypes(node.getDataFlowType(), ap.getType()) else any()) and
+    (
+      notExpectsContent(node)
+      or
+      expectsContentCand(node, ap, config)
+    )
   }
 
   bindingset[ap, contentType]
@@ -1739,15 +2087,14 @@ private module Stage3 {
   }
 
   /* Begin: Stage 3 logic. */
-  private predicate flowCand(NodeEx node, ApApprox apa, Configuration config) {
-    PrevStage::revFlow(node, _, _, apa, config)
+  bindingset[node, state, config]
+  private predicate flowCand(NodeEx node, FlowState state, ApApprox apa, Configuration config) {
+    PrevStage::revFlow(node, state, _, _, apa, config)
   }
 
   bindingset[result, apa]
   private ApApprox unbindApa(ApApprox apa) {
-    exists(ApApprox apa0 |
-      apa = pragma[only_bind_into](apa0) and result = pragma[only_bind_into](apa0)
-    )
+    pragma[only_bind_out](apa) = pragma[only_bind_out](result)
   }
 
   pragma[nomagic]
@@ -1771,63 +2118,70 @@ private module Stage3 {
    * argument.
    */
   pragma[nomagic]
-  predicate fwdFlow(NodeEx node, Cc cc, ApOption argAp, Ap ap, Configuration config) {
-    fwdFlow0(node, cc, argAp, ap, config) and
-    flowCand(node, unbindApa(getApprox(ap)), config) and
-    filter(node, ap)
+  predicate fwdFlow(NodeEx node, FlowState state, Cc cc, ApOption argAp, Ap ap, Configuration config) {
+    fwdFlow0(node, state, cc, argAp, ap, config) and
+    flowCand(node, state, unbindApa(getApprox(ap)), config) and
+    filter(node, state, ap, config)
   }
 
   pragma[nomagic]
-  private predicate fwdFlow0(NodeEx node, Cc cc, ApOption argAp, Ap ap, Configuration config) {
-    flowCand(node, _, config) and
-    sourceNode(node, config) and
+  private predicate fwdFlow0(
+    NodeEx node, FlowState state, Cc cc, ApOption argAp, Ap ap, Configuration config
+  ) {
+    sourceNode(node, state, config) and
     (if hasSourceCallCtx(config) then cc = ccSomeCall() else cc = ccNone()) and
     argAp = apNone() and
     ap = getApNil(node)
     or
-    exists(NodeEx mid, Ap ap0, LocalCc localCc |
-      fwdFlow(mid, cc, argAp, ap0, config) and
-      localCc = getLocalCc(mid, cc, config)
+    exists(NodeEx mid, FlowState state0, Ap ap0, LocalCc localCc |
+      fwdFlow(mid, state0, cc, argAp, ap0, config) and
+      localCc = getLocalCc(mid, cc)
     |
-      localStep(mid, node, true, _, config, localCc) and
+      localStep(mid, state0, node, state, true, _, config, localCc) and
       ap = ap0
       or
-      localStep(mid, node, false, ap, config, localCc) and
+      localStep(mid, state0, node, state, false, ap, config, localCc) and
       ap0 instanceof ApNil
     )
     or
     exists(NodeEx mid |
-      fwdFlow(mid, _, _, ap, pragma[only_bind_into](config)) and
-      flowCand(node, _, pragma[only_bind_into](config)) and
+      fwdFlow(mid, pragma[only_bind_into](state), _, _, ap, pragma[only_bind_into](config)) and
       jumpStep(mid, node, config) and
       cc = ccNone() and
       argAp = apNone()
     )
     or
     exists(NodeEx mid, ApNil nil |
-      fwdFlow(mid, _, _, nil, pragma[only_bind_into](config)) and
-      flowCand(node, _, pragma[only_bind_into](config)) and
+      fwdFlow(mid, state, _, _, nil, pragma[only_bind_into](config)) and
       additionalJumpStep(mid, node, config) and
       cc = ccNone() and
       argAp = apNone() and
       ap = getApNil(node)
     )
     or
+    exists(NodeEx mid, FlowState state0, ApNil nil |
+      fwdFlow(mid, state0, _, _, nil, pragma[only_bind_into](config)) and
+      additionalJumpStateStep(mid, state0, node, state, config) and
+      cc = ccNone() and
+      argAp = apNone() and
+      ap = getApNil(node)
+    )
+    or
     // store
     exists(TypedContent tc, Ap ap0 |
-      fwdFlowStore(_, ap0, tc, node, cc, argAp, config) and
+      fwdFlowStore(_, ap0, tc, node, state, cc, argAp, config) and
       ap = apCons(tc, ap0)
     )
     or
     // read
     exists(Ap ap0, Content c |
-      fwdFlowRead(ap0, c, _, node, cc, argAp, config) and
+      fwdFlowRead(ap0, c, _, node, state, cc, argAp, config) and
       fwdFlowConsCand(ap0, c, ap, config)
     )
     or
     // flow into a callable
     exists(ApApprox apa |
-      fwdFlowIn(_, node, _, cc, _, ap, config) and
+      fwdFlowIn(_, node, state, _, cc, _, ap, config) and
       apa = getApprox(ap) and
       if PrevStage::parameterMayFlowThrough(node, _, apa, config)
       then argAp = apSome(ap)
@@ -1835,20 +2189,21 @@ private module Stage3 {
     )
     or
     // flow out of a callable
-    fwdFlowOutNotFromArg(node, cc, argAp, ap, config)
+    fwdFlowOutNotFromArg(node, state, cc, argAp, ap, config)
     or
     exists(DataFlowCall call, Ap argAp0 |
-      fwdFlowOutFromArg(call, node, argAp0, ap, config) and
+      fwdFlowOutFromArg(call, node, state, argAp0, ap, config) and
       fwdFlowIsEntered(call, cc, argAp, argAp0, config)
     )
   }
 
   pragma[nomagic]
   private predicate fwdFlowStore(
-    NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, Cc cc, ApOption argAp, Configuration config
+    NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc, ApOption argAp,
+    Configuration config
   ) {
     exists(DataFlowType contentType |
-      fwdFlow(node1, cc, argAp, ap1, config) and
+      fwdFlow(node1, state, cc, argAp, ap1, config) and
       PrevStage::storeStepCand(node1, unbindApa(getApprox(ap1)), tc, node2, contentType, config) and
       typecheckStore(ap1, contentType)
     )
@@ -1861,7 +2216,7 @@ private module Stage3 {
   pragma[nomagic]
   private predicate fwdFlowConsCand(Ap cons, Content c, Ap tail, Configuration config) {
     exists(TypedContent tc |
-      fwdFlowStore(_, tail, tc, _, _, _, config) and
+      fwdFlowStore(_, tail, tc, _, _, _, _, config) and
       tc.getContent() = c and
       cons = apCons(tc, tail)
     )
@@ -1869,20 +2224,21 @@ private module Stage3 {
 
   pragma[nomagic]
   private predicate fwdFlowRead(
-    Ap ap, Content c, NodeEx node1, NodeEx node2, Cc cc, ApOption argAp, Configuration config
+    Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc, ApOption argAp,
+    Configuration config
   ) {
-    fwdFlow(node1, cc, argAp, ap, config) and
+    fwdFlow(node1, state, cc, argAp, ap, config) and
     PrevStage::readStepCand(node1, c, node2, config) and
     getHeadContent(ap) = c
   }
 
   pragma[nomagic]
   private predicate fwdFlowIn(
-    DataFlowCall call, ParamNodeEx p, Cc outercc, Cc innercc, ApOption argAp, Ap ap,
-    Configuration config
+    DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, Cc innercc, ApOption argAp,
+    Ap ap, Configuration config
   ) {
     exists(ArgNodeEx arg, boolean allowsFieldFlow |
-      fwdFlow(arg, outercc, argAp, ap, config) and
+      fwdFlow(arg, state, outercc, argAp, ap, config) and
       flowIntoCall(call, arg, p, allowsFieldFlow, config) and
       innercc = getCallContextCall(call, p.getEnclosingCallable(), outercc) and
       if allowsFieldFlow = false then ap instanceof ApNil else any()
@@ -1891,13 +2247,13 @@ private module Stage3 {
 
   pragma[nomagic]
   private predicate fwdFlowOutNotFromArg(
-    NodeEx out, Cc ccOut, ApOption argAp, Ap ap, Configuration config
+    NodeEx out, FlowState state, Cc ccOut, ApOption argAp, Ap ap, Configuration config
   ) {
     exists(
       DataFlowCall call, RetNodeEx ret, boolean allowsFieldFlow, CcNoCall innercc,
       DataFlowCallable inner
     |
-      fwdFlow(ret, innercc, argAp, ap, config) and
+      fwdFlow(ret, state, innercc, argAp, ap, config) and
       flowOutOfCall(call, ret, out, allowsFieldFlow, config) and
       inner = ret.getEnclosingCallable() and
       ccOut = getCallContextReturn(inner, call, innercc) and
@@ -1907,10 +2263,10 @@ private module Stage3 {
 
   pragma[nomagic]
   private predicate fwdFlowOutFromArg(
-    DataFlowCall call, NodeEx out, Ap argAp, Ap ap, Configuration config
+    DataFlowCall call, NodeEx out, FlowState state, Ap argAp, Ap ap, Configuration config
   ) {
     exists(RetNodeEx ret, boolean allowsFieldFlow, CcCall ccc |
-      fwdFlow(ret, ccc, apSome(argAp), ap, config) and
+      fwdFlow(ret, state, ccc, apSome(argAp), ap, config) and
       flowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, config) and
       if allowsFieldFlow = false then ap instanceof ApNil else any()
     )
@@ -1925,7 +2281,7 @@ private module Stage3 {
     DataFlowCall call, Cc cc, ApOption argAp, Ap ap, Configuration config
   ) {
     exists(ParamNodeEx p |
-      fwdFlowIn(call, p, cc, _, argAp, ap, config) and
+      fwdFlowIn(call, p, _, cc, _, argAp, ap, config) and
       PrevStage::parameterMayFlowThrough(p, _, unbindApa(getApprox(ap)), config)
     )
   }
@@ -1934,24 +2290,24 @@ private module Stage3 {
   private predicate storeStepFwd(
     NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, Ap ap2, Configuration config
   ) {
-    fwdFlowStore(node1, ap1, tc, node2, _, _, config) and
+    fwdFlowStore(node1, ap1, tc, node2, _, _, _, config) and
     ap2 = apCons(tc, ap1) and
-    fwdFlowRead(ap2, tc.getContent(), _, _, _, _, config)
+    fwdFlowRead(ap2, tc.getContent(), _, _, _, _, _, config)
   }
 
   private predicate readStepFwd(
     NodeEx n1, Ap ap1, Content c, NodeEx n2, Ap ap2, Configuration config
   ) {
-    fwdFlowRead(ap1, c, n1, n2, _, _, config) and
+    fwdFlowRead(ap1, c, n1, n2, _, _, _, config) and
     fwdFlowConsCand(ap1, c, ap2, config)
   }
 
   pragma[nomagic]
   private predicate callMayFlowThroughFwd(DataFlowCall call, Configuration config) {
-    exists(Ap argAp0, NodeEx out, Cc cc, ApOption argAp, Ap ap |
-      fwdFlow(out, pragma[only_bind_into](cc), pragma[only_bind_into](argAp), ap,
+    exists(Ap argAp0, NodeEx out, FlowState state, Cc cc, ApOption argAp, Ap ap |
+      fwdFlow(out, state, pragma[only_bind_into](cc), pragma[only_bind_into](argAp), ap,
         pragma[only_bind_into](config)) and
-      fwdFlowOutFromArg(call, out, argAp0, ap, config) and
+      fwdFlowOutFromArg(call, out, state, argAp0, ap, config) and
       fwdFlowIsEntered(pragma[only_bind_into](call), pragma[only_bind_into](cc),
         pragma[only_bind_into](argAp), pragma[only_bind_into](argAp0),
         pragma[only_bind_into](config))
@@ -1963,14 +2319,16 @@ private module Stage3 {
     DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
   ) {
     flowIntoCall(call, arg, p, allowsFieldFlow, config) and
-    fwdFlow(arg, _, _, _, pragma[only_bind_into](config)) and
+    fwdFlow(arg, _, _, _, _, pragma[only_bind_into](config)) and
     PrevStage::parameterMayFlowThrough(p, _, _, pragma[only_bind_into](config)) and
     callMayFlowThroughFwd(call, pragma[only_bind_into](config))
   }
 
   pragma[nomagic]
-  private predicate returnNodeMayFlowThrough(RetNodeEx ret, Ap ap, Configuration config) {
-    fwdFlow(ret, any(CcCall ccc), apSome(_), ap, config)
+  private predicate returnNodeMayFlowThrough(
+    RetNodeEx ret, FlowState state, Ap ap, Configuration config
+  ) {
+    fwdFlow(ret, state, any(CcCall ccc), apSome(_), ap, config)
   }
 
   /**
@@ -1982,44 +2340,56 @@ private module Stage3 {
    * the access path of the returned value.
    */
   pragma[nomagic]
-  predicate revFlow(NodeEx node, boolean toReturn, ApOption returnAp, Ap ap, Configuration config) {
-    revFlow0(node, toReturn, returnAp, ap, config) and
-    fwdFlow(node, _, _, ap, config)
+  predicate revFlow(
+    NodeEx node, FlowState state, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
+  ) {
+    revFlow0(node, state, toReturn, returnAp, ap, config) and
+    fwdFlow(node, state, _, _, ap, config)
   }
 
   pragma[nomagic]
   private predicate revFlow0(
-    NodeEx node, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
+    NodeEx node, FlowState state, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
   ) {
-    fwdFlow(node, _, _, ap, config) and
-    sinkNode(node, config) and
+    fwdFlow(node, state, _, _, ap, config) and
+    sinkNode(node, state, config) and
     (if hasSinkCallCtx(config) then toReturn = true else toReturn = false) and
     returnAp = apNone() and
     ap instanceof ApNil
     or
-    exists(NodeEx mid |
-      localStep(node, mid, true, _, config, _) and
-      revFlow(mid, toReturn, returnAp, ap, config)
+    exists(NodeEx mid, FlowState state0 |
+      localStep(node, state, mid, state0, true, _, config, _) and
+      revFlow(mid, state0, toReturn, returnAp, ap, config)
     )
     or
-    exists(NodeEx mid, ApNil nil |
-      fwdFlow(node, _, _, ap, pragma[only_bind_into](config)) and
-      localStep(node, mid, false, _, config, _) and
-      revFlow(mid, toReturn, returnAp, nil, pragma[only_bind_into](config)) and
+    exists(NodeEx mid, FlowState state0, ApNil nil |
+      fwdFlow(node, pragma[only_bind_into](state), _, _, ap, pragma[only_bind_into](config)) and
+      localStep(node, pragma[only_bind_into](state), mid, state0, false, _, config, _) and
+      revFlow(mid, state0, toReturn, returnAp, nil, pragma[only_bind_into](config)) and
       ap instanceof ApNil
     )
     or
     exists(NodeEx mid |
       jumpStep(node, mid, config) and
-      revFlow(mid, _, _, ap, config) and
+      revFlow(mid, state, _, _, ap, config) and
       toReturn = false and
       returnAp = apNone()
     )
     or
     exists(NodeEx mid, ApNil nil |
-      fwdFlow(node, _, _, ap, pragma[only_bind_into](config)) and
+      fwdFlow(node, _, _, _, ap, pragma[only_bind_into](config)) and
       additionalJumpStep(node, mid, config) and
-      revFlow(pragma[only_bind_into](mid), _, _, nil, pragma[only_bind_into](config)) and
+      revFlow(pragma[only_bind_into](mid), state, _, _, nil, pragma[only_bind_into](config)) and
+      toReturn = false and
+      returnAp = apNone() and
+      ap instanceof ApNil
+    )
+    or
+    exists(NodeEx mid, FlowState state0, ApNil nil |
+      fwdFlow(node, _, _, _, ap, pragma[only_bind_into](config)) and
+      additionalJumpStateStep(node, state, mid, state0, config) and
+      revFlow(pragma[only_bind_into](mid), pragma[only_bind_into](state0), _, _, nil,
+        pragma[only_bind_into](config)) and
       toReturn = false and
       returnAp = apNone() and
       ap instanceof ApNil
@@ -2027,39 +2397,39 @@ private module Stage3 {
     or
     // store
     exists(Ap ap0, Content c |
-      revFlowStore(ap0, c, ap, node, _, _, toReturn, returnAp, config) and
+      revFlowStore(ap0, c, ap, node, state, _, _, toReturn, returnAp, config) and
       revFlowConsCand(ap0, c, ap, config)
     )
     or
     // read
     exists(NodeEx mid, Ap ap0 |
-      revFlow(mid, toReturn, returnAp, ap0, config) and
+      revFlow(mid, state, toReturn, returnAp, ap0, config) and
       readStepFwd(node, ap, _, mid, ap0, config)
     )
     or
     // flow into a callable
-    revFlowInNotToReturn(node, returnAp, ap, config) and
+    revFlowInNotToReturn(node, state, returnAp, ap, config) and
     toReturn = false
     or
     exists(DataFlowCall call, Ap returnAp0 |
-      revFlowInToReturn(call, node, returnAp0, ap, config) and
+      revFlowInToReturn(call, node, state, returnAp0, ap, config) and
       revFlowIsReturned(call, toReturn, returnAp, returnAp0, config)
     )
     or
     // flow out of a callable
-    revFlowOut(_, node, _, _, ap, config) and
+    revFlowOut(_, node, state, _, _, ap, config) and
     toReturn = true and
-    if returnNodeMayFlowThrough(node, ap, config)
+    if returnNodeMayFlowThrough(node, state, ap, config)
     then returnAp = apSome(ap)
     else returnAp = apNone()
   }
 
   pragma[nomagic]
   private predicate revFlowStore(
-    Ap ap0, Content c, Ap ap, NodeEx node, TypedContent tc, NodeEx mid, boolean toReturn,
-    ApOption returnAp, Configuration config
+    Ap ap0, Content c, Ap ap, NodeEx node, FlowState state, TypedContent tc, NodeEx mid,
+    boolean toReturn, ApOption returnAp, Configuration config
   ) {
-    revFlow(mid, toReturn, returnAp, ap0, config) and
+    revFlow(mid, state, toReturn, returnAp, ap0, config) and
     storeStepFwd(node, ap, tc, mid, ap0, config) and
     tc.getContent() = c
   }
@@ -2071,7 +2441,7 @@ private module Stage3 {
   pragma[nomagic]
   private predicate revFlowConsCand(Ap cons, Content c, Ap tail, Configuration config) {
     exists(NodeEx mid, Ap tail0 |
-      revFlow(mid, _, _, tail, config) and
+      revFlow(mid, _, _, _, tail, config) and
       tail = pragma[only_bind_into](tail0) and
       readStepFwd(_, cons, c, mid, tail0, config)
     )
@@ -2079,11 +2449,11 @@ private module Stage3 {
 
   pragma[nomagic]
   private predicate revFlowOut(
-    DataFlowCall call, RetNodeEx ret, boolean toReturn, ApOption returnAp, Ap ap,
+    DataFlowCall call, RetNodeEx ret, FlowState state, boolean toReturn, ApOption returnAp, Ap ap,
     Configuration config
   ) {
     exists(NodeEx out, boolean allowsFieldFlow |
-      revFlow(out, toReturn, returnAp, ap, config) and
+      revFlow(out, state, toReturn, returnAp, ap, config) and
       flowOutOfCall(call, ret, out, allowsFieldFlow, config) and
       if allowsFieldFlow = false then ap instanceof ApNil else any()
     )
@@ -2091,10 +2461,10 @@ private module Stage3 {
 
   pragma[nomagic]
   private predicate revFlowInNotToReturn(
-    ArgNodeEx arg, ApOption returnAp, Ap ap, Configuration config
+    ArgNodeEx arg, FlowState state, ApOption returnAp, Ap ap, Configuration config
   ) {
     exists(ParamNodeEx p, boolean allowsFieldFlow |
-      revFlow(p, false, returnAp, ap, config) and
+      revFlow(p, state, false, returnAp, ap, config) and
       flowIntoCall(_, arg, p, allowsFieldFlow, config) and
       if allowsFieldFlow = false then ap instanceof ApNil else any()
     )
@@ -2102,10 +2472,10 @@ private module Stage3 {
 
   pragma[nomagic]
   private predicate revFlowInToReturn(
-    DataFlowCall call, ArgNodeEx arg, Ap returnAp, Ap ap, Configuration config
+    DataFlowCall call, ArgNodeEx arg, FlowState state, Ap returnAp, Ap ap, Configuration config
   ) {
     exists(ParamNodeEx p, boolean allowsFieldFlow |
-      revFlow(p, true, apSome(returnAp), ap, config) and
+      revFlow(p, state, true, apSome(returnAp), ap, config) and
       flowThroughIntoCall(call, arg, p, allowsFieldFlow, config) and
       if allowsFieldFlow = false then ap instanceof ApNil else any()
     )
@@ -2120,9 +2490,9 @@ private module Stage3 {
   private predicate revFlowIsReturned(
     DataFlowCall call, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
   ) {
-    exists(RetNodeEx ret, CcCall ccc |
-      revFlowOut(call, ret, toReturn, returnAp, ap, config) and
-      fwdFlow(ret, ccc, apSome(_), ap, config) and
+    exists(RetNodeEx ret, FlowState state, CcCall ccc |
+      revFlowOut(call, ret, state, toReturn, returnAp, ap, config) and
+      fwdFlow(ret, state, ccc, apSome(_), ap, config) and
       ccc.matchesCall(call)
     )
   }
@@ -2133,46 +2503,77 @@ private module Stage3 {
     Configuration config
   ) {
     exists(Ap ap2, Content c |
-      store(node1, tc, node2, contentType, config) and
-      revFlowStore(ap2, c, ap1, node1, tc, node2, _, _, config) and
+      PrevStage::storeStepCand(node1, _, tc, node2, contentType, config) and
+      revFlowStore(ap2, c, ap1, node1, _, tc, node2, _, _, config) and
       revFlowConsCand(ap2, c, ap1, config)
     )
   }
 
   predicate readStepCand(NodeEx node1, Content c, NodeEx node2, Configuration config) {
     exists(Ap ap1, Ap ap2 |
-      revFlow(node2, _, _, pragma[only_bind_into](ap2), pragma[only_bind_into](config)) and
+      revFlow(node2, _, _, _, pragma[only_bind_into](ap2), pragma[only_bind_into](config)) and
       readStepFwd(node1, ap1, c, node2, ap2, config) and
-      revFlowStore(ap1, c, pragma[only_bind_into](ap2), _, _, _, _, _,
+      revFlowStore(ap1, c, pragma[only_bind_into](ap2), _, _, _, _, _, _,
         pragma[only_bind_into](config))
     )
   }
 
-  predicate revFlow(NodeEx node, Configuration config) { revFlow(node, _, _, _, config) }
+  predicate revFlow(NodeEx node, FlowState state, Configuration config) {
+    revFlow(node, state, _, _, _, config)
+  }
+
+  pragma[nomagic]
+  predicate revFlow(NodeEx node, Configuration config) { revFlow(node, _, _, _, _, config) }
+
+  // use an alias as a workaround for bad functionality-induced joins
+  pragma[nomagic]
+  predicate revFlowAlias(NodeEx node, Configuration config) { revFlow(node, _, _, _, _, config) }
+
+  // use an alias as a workaround for bad functionality-induced joins
+  pragma[nomagic]
+  predicate revFlowAlias(
+    NodeEx node, FlowState state, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
+  ) {
+    revFlow(node, state, toReturn, returnAp, ap, config)
+  }
 
   private predicate fwdConsCand(TypedContent tc, Ap ap, Configuration config) {
     storeStepFwd(_, ap, tc, _, _, config)
   }
 
-  predicate consCand(TypedContent tc, Ap ap, Configuration config) {
+  private predicate revConsCand(TypedContent tc, Ap ap, Configuration config) {
     storeStepCand(_, ap, tc, _, _, config)
   }
 
+  private predicate validAp(Ap ap, Configuration config) {
+    revFlow(_, _, _, _, ap, config) and ap instanceof ApNil
+    or
+    exists(TypedContent head, Ap tail |
+      consCand(head, tail, config) and
+      ap = apCons(head, tail)
+    )
+  }
+
+  predicate consCand(TypedContent tc, Ap ap, Configuration config) {
+    revConsCand(tc, ap, config) and
+    validAp(ap, config)
+  }
+
   pragma[noinline]
   private predicate parameterFlow(
     ParamNodeEx p, Ap ap, Ap ap0, DataFlowCallable c, Configuration config
   ) {
-    revFlow(p, true, apSome(ap0), ap, config) and
+    revFlow(p, _, true, apSome(ap0), ap, config) and
     c = p.getEnclosingCallable()
   }
 
   predicate parameterMayFlowThrough(ParamNodeEx p, DataFlowCallable c, Ap ap, Configuration config) {
-    exists(RetNodeEx ret, Ap ap0, ReturnKindExt kind, int pos |
+    exists(RetNodeEx ret, FlowState state, Ap ap0, ReturnKindExt kind, ParameterPosition pos |
       parameterFlow(p, ap, ap0, c, config) and
       c = ret.getEnclosingCallable() and
-      revFlow(pragma[only_bind_into](ret), true, apSome(_), pragma[only_bind_into](ap0),
-        pragma[only_bind_into](config)) and
-      fwdFlow(ret, any(CcCall ccc), apSome(ap), ap0, config) and
+      revFlow(pragma[only_bind_into](ret), pragma[only_bind_into](state), true, apSome(_),
+        pragma[only_bind_into](ap0), pragma[only_bind_into](config)) and
+      fwdFlow(ret, state, any(CcCall ccc), apSome(ap), ap0, config) and
       kind = ret.getKind() and
       p.getPosition() = pos and
       // we don't expect a parameter to return stored in itself, unless explicitly allowed
@@ -2186,25 +2587,37 @@ private module Stage3 {
 
   pragma[nomagic]
   predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
-    exists(Ap returnAp0, ArgNodeEx arg, boolean toReturn, ApOption returnAp, Ap ap |
-      revFlow(arg, toReturn, returnAp, ap, config) and
-      revFlowInToReturn(call, arg, returnAp0, ap, config) and
+    exists(
+      Ap returnAp0, ArgNodeEx arg, FlowState state, boolean toReturn, ApOption returnAp, Ap ap
+    |
+      revFlow(arg, state, toReturn, returnAp, ap, config) and
+      revFlowInToReturn(call, arg, state, returnAp0, ap, config) and
       revFlowIsReturned(call, toReturn, returnAp, returnAp0, config)
     )
   }
 
-  predicate stats(boolean fwd, int nodes, int fields, int conscand, int tuples, Configuration config) {
+  predicate stats(
+    boolean fwd, int nodes, int fields, int conscand, int states, int tuples, Configuration config
+  ) {
     fwd = true and
-    nodes = count(NodeEx node | fwdFlow(node, _, _, _, config)) and
+    nodes = count(NodeEx node | fwdFlow(node, _, _, _, _, config)) and
     fields = count(TypedContent f0 | fwdConsCand(f0, _, config)) and
     conscand = count(TypedContent f0, Ap ap | fwdConsCand(f0, ap, config)) and
-    tuples = count(NodeEx n, Cc cc, ApOption argAp, Ap ap | fwdFlow(n, cc, argAp, ap, config))
+    states = count(FlowState state | fwdFlow(_, state, _, _, _, config)) and
+    tuples =
+      count(NodeEx n, FlowState state, Cc cc, ApOption argAp, Ap ap |
+        fwdFlow(n, state, cc, argAp, ap, config)
+      )
     or
     fwd = false and
-    nodes = count(NodeEx node | revFlow(node, _, _, _, config)) and
+    nodes = count(NodeEx node | revFlow(node, _, _, _, _, config)) and
     fields = count(TypedContent f0 | consCand(f0, _, config)) and
     conscand = count(TypedContent f0, Ap ap | consCand(f0, ap, config)) and
-    tuples = count(NodeEx n, boolean b, ApOption retAp, Ap ap | revFlow(n, b, retAp, ap, config))
+    states = count(FlowState state | revFlow(_, state, _, _, _, config)) and
+    tuples =
+      count(NodeEx n, FlowState state, boolean b, ApOption retAp, Ap ap |
+        revFlow(n, state, b, retAp, ap, config)
+      )
   }
   /* End: Stage 3 logic. */
 }
@@ -2213,10 +2626,12 @@ private module Stage3 {
  * Holds if `argApf` is recorded as the summary context for flow reaching `node`
  * and remains relevant for the following pruning stage.
  */
-private predicate flowCandSummaryCtx(NodeEx node, AccessPathFront argApf, Configuration config) {
+private predicate flowCandSummaryCtx(
+  NodeEx node, FlowState state, AccessPathFront argApf, Configuration config
+) {
   exists(AccessPathFront apf |
-    Stage3::revFlow(node, true, _, apf, config) and
-    Stage3::fwdFlow(node, any(Stage3::CcCall ccc), TAccessPathFrontSome(argApf), apf, config)
+    Stage3::revFlow(node, state, true, _, apf, config) and
+    Stage3::fwdFlow(node, state, any(Stage3::CcCall ccc), TAccessPathFrontSome(argApf), apf, config)
   )
 }
 
@@ -2228,10 +2643,10 @@ private predicate expensiveLen2unfolding(TypedContent tc, Configuration config)
   exists(int tails, int nodes, int apLimit, int tupleLimit |
     tails = strictcount(AccessPathFront apf | Stage3::consCand(tc, apf, config)) and
     nodes =
-      strictcount(NodeEx n |
-        Stage3::revFlow(n, _, _, any(AccessPathFrontHead apf | apf.getHead() = tc), config)
+      strictcount(NodeEx n, FlowState state |
+        Stage3::revFlow(n, state, _, _, any(AccessPathFrontHead apf | apf.getHead() = tc), config)
         or
-        flowCandSummaryCtx(n, any(AccessPathFrontHead apf | apf.getHead() = tc), config)
+        flowCandSummaryCtx(n, state, any(AccessPathFrontHead apf | apf.getHead() = tc), config)
       ) and
     accessPathApproxCostLimits(apLimit, tupleLimit) and
     apLimit < tails and
@@ -2464,27 +2879,31 @@ private module Stage4 {
     if reducedViableImplInReturn(c, call) then result = TReturn(c, call) else result = ccNone()
   }
 
-  bindingset[node, cc, config]
-  private LocalCc getLocalCc(NodeEx node, Cc cc, Configuration config) {
-    localFlowEntry(node, config) and
+  bindingset[node, cc]
+  private LocalCc getLocalCc(NodeEx node, Cc cc) {
     result =
       getLocalCallContext(pragma[only_bind_into](pragma[only_bind_out](cc)),
         node.getEnclosingCallable())
   }
 
   private predicate localStep(
-    NodeEx node1, NodeEx node2, boolean preservesValue, ApNil ap, Configuration config, LocalCc lcc
+    NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
+    ApNil ap, Configuration config, LocalCc lcc
   ) {
-    localFlowBigStep(node1, node2, preservesValue, ap.getFront(), config, lcc)
+    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap.getFront(), config, lcc)
   }
 
   pragma[nomagic]
   private predicate flowOutOfCall(
     DataFlowCall call, RetNodeEx node1, NodeEx node2, boolean allowsFieldFlow, Configuration config
   ) {
-    flowOutOfCallNodeCand2(call, node1, node2, allowsFieldFlow, config) and
-    PrevStage::revFlow(node2, _, _, _, pragma[only_bind_into](config)) and
-    PrevStage::revFlow(node1, _, _, _, pragma[only_bind_into](config))
+    exists(FlowState state |
+      flowOutOfCallNodeCand2(call, node1, node2, allowsFieldFlow, config) and
+      PrevStage::revFlow(node2, pragma[only_bind_into](state), _, _, _,
+        pragma[only_bind_into](config)) and
+      PrevStage::revFlowAlias(node1, pragma[only_bind_into](state), _, _, _,
+        pragma[only_bind_into](config))
+    )
   }
 
   pragma[nomagic]
@@ -2492,28 +2911,31 @@ private module Stage4 {
     DataFlowCall call, ArgNodeEx node1, ParamNodeEx node2, boolean allowsFieldFlow,
     Configuration config
   ) {
-    flowIntoCallNodeCand2(call, node1, node2, allowsFieldFlow, config) and
-    PrevStage::revFlow(node2, _, _, _, pragma[only_bind_into](config)) and
-    PrevStage::revFlow(node1, _, _, _, pragma[only_bind_into](config))
+    exists(FlowState state |
+      flowIntoCallNodeCand2(call, node1, node2, allowsFieldFlow, config) and
+      PrevStage::revFlow(node2, pragma[only_bind_into](state), _, _, _,
+        pragma[only_bind_into](config)) and
+      PrevStage::revFlowAlias(node1, pragma[only_bind_into](state), _, _, _,
+        pragma[only_bind_into](config))
+    )
   }
 
-  bindingset[node, ap]
-  private predicate filter(NodeEx node, Ap ap) { any() }
+  bindingset[node, state, ap, config]
+  private predicate filter(NodeEx node, FlowState state, Ap ap, Configuration config) { any() }
 
   // Type checking is not necessary here as it has already been done in stage 3.
   bindingset[ap, contentType]
   private predicate typecheckStore(Ap ap, DataFlowType contentType) { any() }
 
   /* Begin: Stage 4 logic. */
-  private predicate flowCand(NodeEx node, ApApprox apa, Configuration config) {
-    PrevStage::revFlow(node, _, _, apa, config)
+  bindingset[node, state, config]
+  private predicate flowCand(NodeEx node, FlowState state, ApApprox apa, Configuration config) {
+    PrevStage::revFlow(node, state, _, _, apa, config)
   }
 
   bindingset[result, apa]
   private ApApprox unbindApa(ApApprox apa) {
-    exists(ApApprox apa0 |
-      apa = pragma[only_bind_into](apa0) and result = pragma[only_bind_into](apa0)
-    )
+    pragma[only_bind_out](apa) = pragma[only_bind_out](result)
   }
 
   pragma[nomagic]
@@ -2537,63 +2959,70 @@ private module Stage4 {
    * argument.
    */
   pragma[nomagic]
-  predicate fwdFlow(NodeEx node, Cc cc, ApOption argAp, Ap ap, Configuration config) {
-    fwdFlow0(node, cc, argAp, ap, config) and
-    flowCand(node, unbindApa(getApprox(ap)), config) and
-    filter(node, ap)
+  predicate fwdFlow(NodeEx node, FlowState state, Cc cc, ApOption argAp, Ap ap, Configuration config) {
+    fwdFlow0(node, state, cc, argAp, ap, config) and
+    flowCand(node, state, unbindApa(getApprox(ap)), config) and
+    filter(node, state, ap, config)
   }
 
   pragma[nomagic]
-  private predicate fwdFlow0(NodeEx node, Cc cc, ApOption argAp, Ap ap, Configuration config) {
-    flowCand(node, _, config) and
-    sourceNode(node, config) and
+  private predicate fwdFlow0(
+    NodeEx node, FlowState state, Cc cc, ApOption argAp, Ap ap, Configuration config
+  ) {
+    sourceNode(node, state, config) and
     (if hasSourceCallCtx(config) then cc = ccSomeCall() else cc = ccNone()) and
     argAp = apNone() and
     ap = getApNil(node)
     or
-    exists(NodeEx mid, Ap ap0, LocalCc localCc |
-      fwdFlow(mid, cc, argAp, ap0, config) and
-      localCc = getLocalCc(mid, cc, config)
+    exists(NodeEx mid, FlowState state0, Ap ap0, LocalCc localCc |
+      fwdFlow(mid, state0, cc, argAp, ap0, config) and
+      localCc = getLocalCc(mid, cc)
     |
-      localStep(mid, node, true, _, config, localCc) and
+      localStep(mid, state0, node, state, true, _, config, localCc) and
       ap = ap0
       or
-      localStep(mid, node, false, ap, config, localCc) and
+      localStep(mid, state0, node, state, false, ap, config, localCc) and
       ap0 instanceof ApNil
     )
     or
     exists(NodeEx mid |
-      fwdFlow(mid, _, _, ap, pragma[only_bind_into](config)) and
-      flowCand(node, _, pragma[only_bind_into](config)) and
+      fwdFlow(mid, pragma[only_bind_into](state), _, _, ap, pragma[only_bind_into](config)) and
       jumpStep(mid, node, config) and
       cc = ccNone() and
       argAp = apNone()
     )
     or
     exists(NodeEx mid, ApNil nil |
-      fwdFlow(mid, _, _, nil, pragma[only_bind_into](config)) and
-      flowCand(node, _, pragma[only_bind_into](config)) and
+      fwdFlow(mid, state, _, _, nil, pragma[only_bind_into](config)) and
       additionalJumpStep(mid, node, config) and
       cc = ccNone() and
       argAp = apNone() and
       ap = getApNil(node)
     )
     or
+    exists(NodeEx mid, FlowState state0, ApNil nil |
+      fwdFlow(mid, state0, _, _, nil, pragma[only_bind_into](config)) and
+      additionalJumpStateStep(mid, state0, node, state, config) and
+      cc = ccNone() and
+      argAp = apNone() and
+      ap = getApNil(node)
+    )
+    or
     // store
     exists(TypedContent tc, Ap ap0 |
-      fwdFlowStore(_, ap0, tc, node, cc, argAp, config) and
+      fwdFlowStore(_, ap0, tc, node, state, cc, argAp, config) and
       ap = apCons(tc, ap0)
     )
     or
     // read
     exists(Ap ap0, Content c |
-      fwdFlowRead(ap0, c, _, node, cc, argAp, config) and
+      fwdFlowRead(ap0, c, _, node, state, cc, argAp, config) and
       fwdFlowConsCand(ap0, c, ap, config)
     )
     or
     // flow into a callable
     exists(ApApprox apa |
-      fwdFlowIn(_, node, _, cc, _, ap, config) and
+      fwdFlowIn(_, node, state, _, cc, _, ap, config) and
       apa = getApprox(ap) and
       if PrevStage::parameterMayFlowThrough(node, _, apa, config)
       then argAp = apSome(ap)
@@ -2601,20 +3030,21 @@ private module Stage4 {
     )
     or
     // flow out of a callable
-    fwdFlowOutNotFromArg(node, cc, argAp, ap, config)
+    fwdFlowOutNotFromArg(node, state, cc, argAp, ap, config)
     or
     exists(DataFlowCall call, Ap argAp0 |
-      fwdFlowOutFromArg(call, node, argAp0, ap, config) and
+      fwdFlowOutFromArg(call, node, state, argAp0, ap, config) and
       fwdFlowIsEntered(call, cc, argAp, argAp0, config)
     )
   }
 
   pragma[nomagic]
   private predicate fwdFlowStore(
-    NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, Cc cc, ApOption argAp, Configuration config
+    NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc, ApOption argAp,
+    Configuration config
   ) {
     exists(DataFlowType contentType |
-      fwdFlow(node1, cc, argAp, ap1, config) and
+      fwdFlow(node1, state, cc, argAp, ap1, config) and
       PrevStage::storeStepCand(node1, unbindApa(getApprox(ap1)), tc, node2, contentType, config) and
       typecheckStore(ap1, contentType)
     )
@@ -2627,7 +3057,7 @@ private module Stage4 {
   pragma[nomagic]
   private predicate fwdFlowConsCand(Ap cons, Content c, Ap tail, Configuration config) {
     exists(TypedContent tc |
-      fwdFlowStore(_, tail, tc, _, _, _, config) and
+      fwdFlowStore(_, tail, tc, _, _, _, _, config) and
       tc.getContent() = c and
       cons = apCons(tc, tail)
     )
@@ -2635,20 +3065,21 @@ private module Stage4 {
 
   pragma[nomagic]
   private predicate fwdFlowRead(
-    Ap ap, Content c, NodeEx node1, NodeEx node2, Cc cc, ApOption argAp, Configuration config
+    Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc, ApOption argAp,
+    Configuration config
   ) {
-    fwdFlow(node1, cc, argAp, ap, config) and
+    fwdFlow(node1, state, cc, argAp, ap, config) and
     PrevStage::readStepCand(node1, c, node2, config) and
     getHeadContent(ap) = c
   }
 
   pragma[nomagic]
   private predicate fwdFlowIn(
-    DataFlowCall call, ParamNodeEx p, Cc outercc, Cc innercc, ApOption argAp, Ap ap,
-    Configuration config
+    DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, Cc innercc, ApOption argAp,
+    Ap ap, Configuration config
   ) {
     exists(ArgNodeEx arg, boolean allowsFieldFlow |
-      fwdFlow(arg, outercc, argAp, ap, config) and
+      fwdFlow(arg, state, outercc, argAp, ap, config) and
       flowIntoCall(call, arg, p, allowsFieldFlow, config) and
       innercc = getCallContextCall(call, p.getEnclosingCallable(), outercc) and
       if allowsFieldFlow = false then ap instanceof ApNil else any()
@@ -2657,13 +3088,13 @@ private module Stage4 {
 
   pragma[nomagic]
   private predicate fwdFlowOutNotFromArg(
-    NodeEx out, Cc ccOut, ApOption argAp, Ap ap, Configuration config
+    NodeEx out, FlowState state, Cc ccOut, ApOption argAp, Ap ap, Configuration config
   ) {
     exists(
       DataFlowCall call, RetNodeEx ret, boolean allowsFieldFlow, CcNoCall innercc,
       DataFlowCallable inner
     |
-      fwdFlow(ret, innercc, argAp, ap, config) and
+      fwdFlow(ret, state, innercc, argAp, ap, config) and
       flowOutOfCall(call, ret, out, allowsFieldFlow, config) and
       inner = ret.getEnclosingCallable() and
       ccOut = getCallContextReturn(inner, call, innercc) and
@@ -2673,10 +3104,10 @@ private module Stage4 {
 
   pragma[nomagic]
   private predicate fwdFlowOutFromArg(
-    DataFlowCall call, NodeEx out, Ap argAp, Ap ap, Configuration config
+    DataFlowCall call, NodeEx out, FlowState state, Ap argAp, Ap ap, Configuration config
   ) {
     exists(RetNodeEx ret, boolean allowsFieldFlow, CcCall ccc |
-      fwdFlow(ret, ccc, apSome(argAp), ap, config) and
+      fwdFlow(ret, state, ccc, apSome(argAp), ap, config) and
       flowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, config) and
       if allowsFieldFlow = false then ap instanceof ApNil else any()
     )
@@ -2691,7 +3122,7 @@ private module Stage4 {
     DataFlowCall call, Cc cc, ApOption argAp, Ap ap, Configuration config
   ) {
     exists(ParamNodeEx p |
-      fwdFlowIn(call, p, cc, _, argAp, ap, config) and
+      fwdFlowIn(call, p, _, cc, _, argAp, ap, config) and
       PrevStage::parameterMayFlowThrough(p, _, unbindApa(getApprox(ap)), config)
     )
   }
@@ -2700,24 +3131,24 @@ private module Stage4 {
   private predicate storeStepFwd(
     NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, Ap ap2, Configuration config
   ) {
-    fwdFlowStore(node1, ap1, tc, node2, _, _, config) and
+    fwdFlowStore(node1, ap1, tc, node2, _, _, _, config) and
     ap2 = apCons(tc, ap1) and
-    fwdFlowRead(ap2, tc.getContent(), _, _, _, _, config)
+    fwdFlowRead(ap2, tc.getContent(), _, _, _, _, _, config)
   }
 
   private predicate readStepFwd(
     NodeEx n1, Ap ap1, Content c, NodeEx n2, Ap ap2, Configuration config
   ) {
-    fwdFlowRead(ap1, c, n1, n2, _, _, config) and
+    fwdFlowRead(ap1, c, n1, n2, _, _, _, config) and
     fwdFlowConsCand(ap1, c, ap2, config)
   }
 
   pragma[nomagic]
   private predicate callMayFlowThroughFwd(DataFlowCall call, Configuration config) {
-    exists(Ap argAp0, NodeEx out, Cc cc, ApOption argAp, Ap ap |
-      fwdFlow(out, pragma[only_bind_into](cc), pragma[only_bind_into](argAp), ap,
+    exists(Ap argAp0, NodeEx out, FlowState state, Cc cc, ApOption argAp, Ap ap |
+      fwdFlow(out, state, pragma[only_bind_into](cc), pragma[only_bind_into](argAp), ap,
         pragma[only_bind_into](config)) and
-      fwdFlowOutFromArg(call, out, argAp0, ap, config) and
+      fwdFlowOutFromArg(call, out, state, argAp0, ap, config) and
       fwdFlowIsEntered(pragma[only_bind_into](call), pragma[only_bind_into](cc),
         pragma[only_bind_into](argAp), pragma[only_bind_into](argAp0),
         pragma[only_bind_into](config))
@@ -2729,14 +3160,16 @@ private module Stage4 {
     DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
   ) {
     flowIntoCall(call, arg, p, allowsFieldFlow, config) and
-    fwdFlow(arg, _, _, _, pragma[only_bind_into](config)) and
+    fwdFlow(arg, _, _, _, _, pragma[only_bind_into](config)) and
     PrevStage::parameterMayFlowThrough(p, _, _, pragma[only_bind_into](config)) and
     callMayFlowThroughFwd(call, pragma[only_bind_into](config))
   }
 
   pragma[nomagic]
-  private predicate returnNodeMayFlowThrough(RetNodeEx ret, Ap ap, Configuration config) {
-    fwdFlow(ret, any(CcCall ccc), apSome(_), ap, config)
+  private predicate returnNodeMayFlowThrough(
+    RetNodeEx ret, FlowState state, Ap ap, Configuration config
+  ) {
+    fwdFlow(ret, state, any(CcCall ccc), apSome(_), ap, config)
   }
 
   /**
@@ -2748,44 +3181,56 @@ private module Stage4 {
    * the access path of the returned value.
    */
   pragma[nomagic]
-  predicate revFlow(NodeEx node, boolean toReturn, ApOption returnAp, Ap ap, Configuration config) {
-    revFlow0(node, toReturn, returnAp, ap, config) and
-    fwdFlow(node, _, _, ap, config)
+  predicate revFlow(
+    NodeEx node, FlowState state, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
+  ) {
+    revFlow0(node, state, toReturn, returnAp, ap, config) and
+    fwdFlow(node, state, _, _, ap, config)
   }
 
   pragma[nomagic]
   private predicate revFlow0(
-    NodeEx node, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
+    NodeEx node, FlowState state, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
   ) {
-    fwdFlow(node, _, _, ap, config) and
-    sinkNode(node, config) and
+    fwdFlow(node, state, _, _, ap, config) and
+    sinkNode(node, state, config) and
     (if hasSinkCallCtx(config) then toReturn = true else toReturn = false) and
     returnAp = apNone() and
     ap instanceof ApNil
     or
-    exists(NodeEx mid |
-      localStep(node, mid, true, _, config, _) and
-      revFlow(mid, toReturn, returnAp, ap, config)
+    exists(NodeEx mid, FlowState state0 |
+      localStep(node, state, mid, state0, true, _, config, _) and
+      revFlow(mid, state0, toReturn, returnAp, ap, config)
     )
     or
-    exists(NodeEx mid, ApNil nil |
-      fwdFlow(node, _, _, ap, pragma[only_bind_into](config)) and
-      localStep(node, mid, false, _, config, _) and
-      revFlow(mid, toReturn, returnAp, nil, pragma[only_bind_into](config)) and
+    exists(NodeEx mid, FlowState state0, ApNil nil |
+      fwdFlow(node, pragma[only_bind_into](state), _, _, ap, pragma[only_bind_into](config)) and
+      localStep(node, pragma[only_bind_into](state), mid, state0, false, _, config, _) and
+      revFlow(mid, state0, toReturn, returnAp, nil, pragma[only_bind_into](config)) and
       ap instanceof ApNil
     )
     or
     exists(NodeEx mid |
       jumpStep(node, mid, config) and
-      revFlow(mid, _, _, ap, config) and
+      revFlow(mid, state, _, _, ap, config) and
       toReturn = false and
       returnAp = apNone()
     )
     or
     exists(NodeEx mid, ApNil nil |
-      fwdFlow(node, _, _, ap, pragma[only_bind_into](config)) and
+      fwdFlow(node, _, _, _, ap, pragma[only_bind_into](config)) and
       additionalJumpStep(node, mid, config) and
-      revFlow(pragma[only_bind_into](mid), _, _, nil, pragma[only_bind_into](config)) and
+      revFlow(pragma[only_bind_into](mid), state, _, _, nil, pragma[only_bind_into](config)) and
+      toReturn = false and
+      returnAp = apNone() and
+      ap instanceof ApNil
+    )
+    or
+    exists(NodeEx mid, FlowState state0, ApNil nil |
+      fwdFlow(node, _, _, _, ap, pragma[only_bind_into](config)) and
+      additionalJumpStateStep(node, state, mid, state0, config) and
+      revFlow(pragma[only_bind_into](mid), pragma[only_bind_into](state0), _, _, nil,
+        pragma[only_bind_into](config)) and
       toReturn = false and
       returnAp = apNone() and
       ap instanceof ApNil
@@ -2793,39 +3238,39 @@ private module Stage4 {
     or
     // store
     exists(Ap ap0, Content c |
-      revFlowStore(ap0, c, ap, node, _, _, toReturn, returnAp, config) and
+      revFlowStore(ap0, c, ap, node, state, _, _, toReturn, returnAp, config) and
       revFlowConsCand(ap0, c, ap, config)
     )
     or
     // read
     exists(NodeEx mid, Ap ap0 |
-      revFlow(mid, toReturn, returnAp, ap0, config) and
+      revFlow(mid, state, toReturn, returnAp, ap0, config) and
       readStepFwd(node, ap, _, mid, ap0, config)
     )
     or
     // flow into a callable
-    revFlowInNotToReturn(node, returnAp, ap, config) and
+    revFlowInNotToReturn(node, state, returnAp, ap, config) and
     toReturn = false
     or
     exists(DataFlowCall call, Ap returnAp0 |
-      revFlowInToReturn(call, node, returnAp0, ap, config) and
+      revFlowInToReturn(call, node, state, returnAp0, ap, config) and
       revFlowIsReturned(call, toReturn, returnAp, returnAp0, config)
     )
     or
     // flow out of a callable
-    revFlowOut(_, node, _, _, ap, config) and
+    revFlowOut(_, node, state, _, _, ap, config) and
     toReturn = true and
-    if returnNodeMayFlowThrough(node, ap, config)
+    if returnNodeMayFlowThrough(node, state, ap, config)
     then returnAp = apSome(ap)
     else returnAp = apNone()
   }
 
   pragma[nomagic]
   private predicate revFlowStore(
-    Ap ap0, Content c, Ap ap, NodeEx node, TypedContent tc, NodeEx mid, boolean toReturn,
-    ApOption returnAp, Configuration config
+    Ap ap0, Content c, Ap ap, NodeEx node, FlowState state, TypedContent tc, NodeEx mid,
+    boolean toReturn, ApOption returnAp, Configuration config
   ) {
-    revFlow(mid, toReturn, returnAp, ap0, config) and
+    revFlow(mid, state, toReturn, returnAp, ap0, config) and
     storeStepFwd(node, ap, tc, mid, ap0, config) and
     tc.getContent() = c
   }
@@ -2837,7 +3282,7 @@ private module Stage4 {
   pragma[nomagic]
   private predicate revFlowConsCand(Ap cons, Content c, Ap tail, Configuration config) {
     exists(NodeEx mid, Ap tail0 |
-      revFlow(mid, _, _, tail, config) and
+      revFlow(mid, _, _, _, tail, config) and
       tail = pragma[only_bind_into](tail0) and
       readStepFwd(_, cons, c, mid, tail0, config)
     )
@@ -2845,11 +3290,11 @@ private module Stage4 {
 
   pragma[nomagic]
   private predicate revFlowOut(
-    DataFlowCall call, RetNodeEx ret, boolean toReturn, ApOption returnAp, Ap ap,
+    DataFlowCall call, RetNodeEx ret, FlowState state, boolean toReturn, ApOption returnAp, Ap ap,
     Configuration config
   ) {
     exists(NodeEx out, boolean allowsFieldFlow |
-      revFlow(out, toReturn, returnAp, ap, config) and
+      revFlow(out, state, toReturn, returnAp, ap, config) and
       flowOutOfCall(call, ret, out, allowsFieldFlow, config) and
       if allowsFieldFlow = false then ap instanceof ApNil else any()
     )
@@ -2857,10 +3302,10 @@ private module Stage4 {
 
   pragma[nomagic]
   private predicate revFlowInNotToReturn(
-    ArgNodeEx arg, ApOption returnAp, Ap ap, Configuration config
+    ArgNodeEx arg, FlowState state, ApOption returnAp, Ap ap, Configuration config
   ) {
     exists(ParamNodeEx p, boolean allowsFieldFlow |
-      revFlow(p, false, returnAp, ap, config) and
+      revFlow(p, state, false, returnAp, ap, config) and
       flowIntoCall(_, arg, p, allowsFieldFlow, config) and
       if allowsFieldFlow = false then ap instanceof ApNil else any()
     )
@@ -2868,10 +3313,10 @@ private module Stage4 {
 
   pragma[nomagic]
   private predicate revFlowInToReturn(
-    DataFlowCall call, ArgNodeEx arg, Ap returnAp, Ap ap, Configuration config
+    DataFlowCall call, ArgNodeEx arg, FlowState state, Ap returnAp, Ap ap, Configuration config
   ) {
     exists(ParamNodeEx p, boolean allowsFieldFlow |
-      revFlow(p, true, apSome(returnAp), ap, config) and
+      revFlow(p, state, true, apSome(returnAp), ap, config) and
       flowThroughIntoCall(call, arg, p, allowsFieldFlow, config) and
       if allowsFieldFlow = false then ap instanceof ApNil else any()
     )
@@ -2886,9 +3331,9 @@ private module Stage4 {
   private predicate revFlowIsReturned(
     DataFlowCall call, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
   ) {
-    exists(RetNodeEx ret, CcCall ccc |
-      revFlowOut(call, ret, toReturn, returnAp, ap, config) and
-      fwdFlow(ret, ccc, apSome(_), ap, config) and
+    exists(RetNodeEx ret, FlowState state, CcCall ccc |
+      revFlowOut(call, ret, state, toReturn, returnAp, ap, config) and
+      fwdFlow(ret, state, ccc, apSome(_), ap, config) and
       ccc.matchesCall(call)
     )
   }
@@ -2899,46 +3344,77 @@ private module Stage4 {
     Configuration config
   ) {
     exists(Ap ap2, Content c |
-      store(node1, tc, node2, contentType, config) and
-      revFlowStore(ap2, c, ap1, node1, tc, node2, _, _, config) and
+      PrevStage::storeStepCand(node1, _, tc, node2, contentType, config) and
+      revFlowStore(ap2, c, ap1, node1, _, tc, node2, _, _, config) and
       revFlowConsCand(ap2, c, ap1, config)
     )
   }
 
   predicate readStepCand(NodeEx node1, Content c, NodeEx node2, Configuration config) {
     exists(Ap ap1, Ap ap2 |
-      revFlow(node2, _, _, pragma[only_bind_into](ap2), pragma[only_bind_into](config)) and
+      revFlow(node2, _, _, _, pragma[only_bind_into](ap2), pragma[only_bind_into](config)) and
       readStepFwd(node1, ap1, c, node2, ap2, config) and
-      revFlowStore(ap1, c, pragma[only_bind_into](ap2), _, _, _, _, _,
+      revFlowStore(ap1, c, pragma[only_bind_into](ap2), _, _, _, _, _, _,
         pragma[only_bind_into](config))
     )
   }
 
-  predicate revFlow(NodeEx node, Configuration config) { revFlow(node, _, _, _, config) }
+  predicate revFlow(NodeEx node, FlowState state, Configuration config) {
+    revFlow(node, state, _, _, _, config)
+  }
+
+  pragma[nomagic]
+  predicate revFlow(NodeEx node, Configuration config) { revFlow(node, _, _, _, _, config) }
+
+  // use an alias as a workaround for bad functionality-induced joins
+  pragma[nomagic]
+  predicate revFlowAlias(NodeEx node, Configuration config) { revFlow(node, _, _, _, _, config) }
+
+  // use an alias as a workaround for bad functionality-induced joins
+  pragma[nomagic]
+  predicate revFlowAlias(
+    NodeEx node, FlowState state, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
+  ) {
+    revFlow(node, state, toReturn, returnAp, ap, config)
+  }
 
   private predicate fwdConsCand(TypedContent tc, Ap ap, Configuration config) {
     storeStepFwd(_, ap, tc, _, _, config)
   }
 
-  predicate consCand(TypedContent tc, Ap ap, Configuration config) {
+  private predicate revConsCand(TypedContent tc, Ap ap, Configuration config) {
     storeStepCand(_, ap, tc, _, _, config)
   }
 
+  private predicate validAp(Ap ap, Configuration config) {
+    revFlow(_, _, _, _, ap, config) and ap instanceof ApNil
+    or
+    exists(TypedContent head, Ap tail |
+      consCand(head, tail, config) and
+      ap = apCons(head, tail)
+    )
+  }
+
+  predicate consCand(TypedContent tc, Ap ap, Configuration config) {
+    revConsCand(tc, ap, config) and
+    validAp(ap, config)
+  }
+
   pragma[noinline]
   private predicate parameterFlow(
     ParamNodeEx p, Ap ap, Ap ap0, DataFlowCallable c, Configuration config
   ) {
-    revFlow(p, true, apSome(ap0), ap, config) and
+    revFlow(p, _, true, apSome(ap0), ap, config) and
     c = p.getEnclosingCallable()
   }
 
   predicate parameterMayFlowThrough(ParamNodeEx p, DataFlowCallable c, Ap ap, Configuration config) {
-    exists(RetNodeEx ret, Ap ap0, ReturnKindExt kind, int pos |
+    exists(RetNodeEx ret, FlowState state, Ap ap0, ReturnKindExt kind, ParameterPosition pos |
       parameterFlow(p, ap, ap0, c, config) and
       c = ret.getEnclosingCallable() and
-      revFlow(pragma[only_bind_into](ret), true, apSome(_), pragma[only_bind_into](ap0),
-        pragma[only_bind_into](config)) and
-      fwdFlow(ret, any(CcCall ccc), apSome(ap), ap0, config) and
+      revFlow(pragma[only_bind_into](ret), pragma[only_bind_into](state), true, apSome(_),
+        pragma[only_bind_into](ap0), pragma[only_bind_into](config)) and
+      fwdFlow(ret, state, any(CcCall ccc), apSome(ap), ap0, config) and
       kind = ret.getKind() and
       p.getPosition() = pos and
       // we don't expect a parameter to return stored in itself, unless explicitly allowed
@@ -2952,25 +3428,37 @@ private module Stage4 {
 
   pragma[nomagic]
   predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
-    exists(Ap returnAp0, ArgNodeEx arg, boolean toReturn, ApOption returnAp, Ap ap |
-      revFlow(arg, toReturn, returnAp, ap, config) and
-      revFlowInToReturn(call, arg, returnAp0, ap, config) and
+    exists(
+      Ap returnAp0, ArgNodeEx arg, FlowState state, boolean toReturn, ApOption returnAp, Ap ap
+    |
+      revFlow(arg, state, toReturn, returnAp, ap, config) and
+      revFlowInToReturn(call, arg, state, returnAp0, ap, config) and
       revFlowIsReturned(call, toReturn, returnAp, returnAp0, config)
     )
   }
 
-  predicate stats(boolean fwd, int nodes, int fields, int conscand, int tuples, Configuration config) {
+  predicate stats(
+    boolean fwd, int nodes, int fields, int conscand, int states, int tuples, Configuration config
+  ) {
     fwd = true and
-    nodes = count(NodeEx node | fwdFlow(node, _, _, _, config)) and
+    nodes = count(NodeEx node | fwdFlow(node, _, _, _, _, config)) and
     fields = count(TypedContent f0 | fwdConsCand(f0, _, config)) and
     conscand = count(TypedContent f0, Ap ap | fwdConsCand(f0, ap, config)) and
-    tuples = count(NodeEx n, Cc cc, ApOption argAp, Ap ap | fwdFlow(n, cc, argAp, ap, config))
+    states = count(FlowState state | fwdFlow(_, state, _, _, _, config)) and
+    tuples =
+      count(NodeEx n, FlowState state, Cc cc, ApOption argAp, Ap ap |
+        fwdFlow(n, state, cc, argAp, ap, config)
+      )
     or
     fwd = false and
-    nodes = count(NodeEx node | revFlow(node, _, _, _, config)) and
+    nodes = count(NodeEx node | revFlow(node, _, _, _, _, config)) and
     fields = count(TypedContent f0 | consCand(f0, _, config)) and
     conscand = count(TypedContent f0, Ap ap | consCand(f0, ap, config)) and
-    tuples = count(NodeEx n, boolean b, ApOption retAp, Ap ap | revFlow(n, b, retAp, ap, config))
+    states = count(FlowState state | revFlow(_, state, _, _, _, config)) and
+    tuples =
+      count(NodeEx n, FlowState state, boolean b, ApOption retAp, Ap ap |
+        revFlow(n, state, b, retAp, ap, config)
+      )
   }
   /* End: Stage 4 logic. */
 }
@@ -2980,19 +3468,35 @@ private Configuration unbindConf(Configuration conf) {
   exists(Configuration c | result = pragma[only_bind_into](c) and conf = pragma[only_bind_into](c))
 }
 
-private predicate nodeMayUseSummary(NodeEx n, AccessPathApprox apa, Configuration config) {
-  exists(DataFlowCallable c, AccessPathApprox apa0 |
-    Stage4::parameterMayFlowThrough(_, c, apa, _) and
-    Stage4::revFlow(n, true, _, apa0, config) and
-    Stage4::fwdFlow(n, any(CallContextCall ccc), TAccessPathApproxSome(apa), apa0, config) and
+pragma[nomagic]
+private predicate nodeMayUseSummary0(
+  NodeEx n, DataFlowCallable c, FlowState state, AccessPathApprox apa, Configuration config
+) {
+  exists(AccessPathApprox apa0 |
+    Stage4::parameterMayFlowThrough(_, c, _, _) and
+    Stage4::revFlow(n, state, true, _, apa0, config) and
+    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TAccessPathApproxSome(apa), apa0, config) and
     n.getEnclosingCallable() = c
   )
 }
 
+pragma[nomagic]
+private predicate nodeMayUseSummary(
+  NodeEx n, FlowState state, AccessPathApprox apa, Configuration config
+) {
+  exists(DataFlowCallable c |
+    Stage4::parameterMayFlowThrough(_, c, apa, config) and
+    nodeMayUseSummary0(n, c, state, apa, config)
+  )
+}
+
 private newtype TSummaryCtx =
   TSummaryCtxNone() or
-  TSummaryCtxSome(ParamNodeEx p, AccessPath ap) {
-    Stage4::parameterMayFlowThrough(p, _, ap.getApprox(), _)
+  TSummaryCtxSome(ParamNodeEx p, FlowState state, AccessPath ap) {
+    exists(Configuration config |
+      Stage4::parameterMayFlowThrough(p, _, ap.getApprox(), config) and
+      Stage4::revFlow(p, state, _, _, _, config)
+    )
   }
 
 /**
@@ -3013,11 +3517,12 @@ private class SummaryCtxNone extends SummaryCtx, TSummaryCtxNone {
 /** A summary context from which a flow summary can be generated. */
 private class SummaryCtxSome extends SummaryCtx, TSummaryCtxSome {
   private ParamNodeEx p;
+  private FlowState s;
   private AccessPath ap;
 
-  SummaryCtxSome() { this = TSummaryCtxSome(p, ap) }
+  SummaryCtxSome() { this = TSummaryCtxSome(p, s, ap) }
 
-  int getParameterPos() { p.isParameterOf(_, result) }
+  ParameterPosition getParameterPos() { p.isParameterOf(_, result) }
 
   ParamNodeEx getParamNode() { result = p }
 
@@ -3047,8 +3552,8 @@ private int count1to2unfold(AccessPathApproxCons1 apa, Configuration config) {
 
 private int countNodesUsingAccessPath(AccessPathApprox apa, Configuration config) {
   result =
-    strictcount(NodeEx n |
-      Stage4::revFlow(n, _, _, apa, config) or nodeMayUseSummary(n, apa, config)
+    strictcount(NodeEx n, FlowState state |
+      Stage4::revFlow(n, state, _, _, apa, config) or nodeMayUseSummary(n, state, apa, config)
     )
 }
 
@@ -3144,10 +3649,12 @@ private newtype TAccessPath =
   }
 
 private newtype TPathNode =
-  TPathNodeMid(NodeEx node, CallContext cc, SummaryCtx sc, AccessPath ap, Configuration config) {
+  TPathNodeMid(
+    NodeEx node, FlowState state, CallContext cc, SummaryCtx sc, AccessPath ap, Configuration config
+  ) {
     // A PathNode is introduced by a source ...
-    Stage4::revFlow(node, config) and
-    sourceNode(node, config) and
+    Stage4::revFlow(node, state, config) and
+    sourceNode(node, state, config) and
     (
       if hasSourceCallCtx(config)
       then cc instanceof CallContextSomeCall
@@ -3158,15 +3665,16 @@ private newtype TPathNode =
     or
     // ... or a step from an existing PathNode to another node.
     exists(PathNodeMid mid |
-      pathStep(mid, node, cc, sc, ap) and
+      pathStep(mid, node, state, cc, sc, ap) and
       pragma[only_bind_into](config) = mid.getConfiguration() and
-      Stage4::revFlow(node, _, _, ap.getApprox(), pragma[only_bind_into](config))
+      Stage4::revFlow(node, state, _, _, ap.getApprox(), pragma[only_bind_into](config))
     )
   } or
-  TPathNodeSink(NodeEx node, Configuration config) {
+  TPathNodeSink(NodeEx node, FlowState state, Configuration config) {
     exists(PathNodeMid sink |
       sink.isAtSink() and
       node = sink.getNodeEx() and
+      state = sink.getState() and
       config = sink.getConfiguration()
     )
   }
@@ -3177,7 +3685,7 @@ private newtype TPathNode =
  * of dereference operations needed to get from the value in the node to the
  * tracked object. The final type indicates the type of the tracked object.
  */
-abstract private class AccessPath extends TAccessPath {
+private class AccessPath extends TAccessPath {
   /** Gets the head of this access path, if any. */
   abstract TypedContent getHead();
 
@@ -3364,19 +3872,17 @@ class PathNode extends TPathNode {
   /** Gets the underlying `Node`. */
   final Node getNode() { this.(PathNodeImpl).getNodeEx().projectToNode() = result }
 
+  /** Gets the `FlowState` of this node. */
+  FlowState getState() { none() }
+
   /** Gets the associated configuration. */
   Configuration getConfiguration() { none() }
 
-  private PathNode getASuccessorIfHidden() {
-    this.(PathNodeImpl).isHidden() and
-    result = this.(PathNodeImpl).getASuccessorImpl()
-  }
-
   /** Gets a successor of this node, if any. */
   final PathNode getASuccessor() {
-    result = this.(PathNodeImpl).getASuccessorImpl().getASuccessorIfHidden*() and
-    not this.(PathNodeImpl).isHidden() and
-    not result.(PathNodeImpl).isHidden()
+    result = this.(PathNodeImpl).getANonHiddenSuccessor() and
+    reach(this) and
+    reach(result)
   }
 
   /** Holds if this node is a source. */
@@ -3384,16 +3890,30 @@ class PathNode extends TPathNode {
 }
 
 abstract private class PathNodeImpl extends PathNode {
-  abstract PathNode getASuccessorImpl();
+  abstract PathNodeImpl getASuccessorImpl();
+
+  private PathNodeImpl getASuccessorIfHidden() {
+    this.isHidden() and
+    result = this.getASuccessorImpl()
+  }
+
+  final PathNodeImpl getANonHiddenSuccessor() {
+    result = this.getASuccessorImpl().getASuccessorIfHidden*() and
+    not this.isHidden() and
+    not result.isHidden()
+  }
 
   abstract NodeEx getNodeEx();
 
   predicate isHidden() {
-    hiddenNode(this.getNodeEx().asNode()) and
-    not this.isSource() and
-    not this instanceof PathNodeSink
-    or
-    this.getNodeEx() instanceof TNodeImplicitRead
+    not this.getConfiguration().includeHiddenNodes() and
+    (
+      hiddenNode(this.getNodeEx().asNode()) and
+      not this.isSource() and
+      not this instanceof PathNodeSink
+      or
+      this.getNodeEx() instanceof TNodeImplicitRead
+    )
   }
 
   private string ppAp() {
@@ -3424,15 +3944,17 @@ abstract private class PathNodeImpl extends PathNode {
 }
 
 /** Holds if `n` can reach a sink. */
-private predicate directReach(PathNode n) {
-  n instanceof PathNodeSink or directReach(n.getASuccessor())
+private predicate directReach(PathNodeImpl n) {
+  n instanceof PathNodeSink or directReach(n.getANonHiddenSuccessor())
 }
 
-/** Holds if `n` can reach a sink or is used in a subpath. */
+/** Holds if `n` can reach a sink or is used in a subpath that can reach a sink. */
 private predicate reach(PathNode n) { directReach(n) or Subpaths::retReach(n) }
 
 /** Holds if `n1.getASuccessor() = n2` and `n2` can reach a sink. */
-private predicate pathSucc(PathNode n1, PathNode n2) { n1.getASuccessor() = n2 and directReach(n2) }
+private predicate pathSucc(PathNodeImpl n1, PathNode n2) {
+  n1.getANonHiddenSuccessor() = n2 and directReach(n2)
+}
 
 private predicate pathSuccPlus(PathNode n1, PathNode n2) = fastTC(pathSucc/2)(n1, n2)
 
@@ -3441,14 +3963,25 @@ private predicate pathSuccPlus(PathNode n1, PathNode n2) = fastTC(pathSucc/2)(n1
  */
 module PathGraph {
   /** Holds if `(a,b)` is an edge in the graph of data flow path explanations. */
-  query predicate edges(PathNode a, PathNode b) { a.getASuccessor() = b and reach(b) }
+  query predicate edges(PathNode a, PathNode b) { a.getASuccessor() = b }
 
   /** Holds if `n` is a node in the graph of data flow path explanations. */
   query predicate nodes(PathNode n, string key, string val) {
     reach(n) and key = "semmle.label" and val = n.toString()
   }
 
-  query predicate subpaths = Subpaths::subpaths/4;
+  /**
+   * Holds if `(arg, par, ret, out)` forms a subpath-tuple, that is, flow through
+   * a subpath between `par` and `ret` with the connecting edges `arg -> par` and
+   * `ret -> out` is summarized as the edge `arg -> out`.
+   */
+  query predicate subpaths(PathNode arg, PathNode par, PathNode ret, PathNode out) {
+    Subpaths::subpaths(arg, par, ret, out) and
+    reach(arg) and
+    reach(par) and
+    reach(ret) and
+    reach(out)
+  }
 }
 
 /**
@@ -3457,15 +3990,18 @@ module PathGraph {
  */
 private class PathNodeMid extends PathNodeImpl, TPathNodeMid {
   NodeEx node;
+  FlowState state;
   CallContext cc;
   SummaryCtx sc;
   AccessPath ap;
   Configuration config;
 
-  PathNodeMid() { this = TPathNodeMid(node, cc, sc, ap, config) }
+  PathNodeMid() { this = TPathNodeMid(node, state, cc, sc, ap, config) }
 
   override NodeEx getNodeEx() { result = node }
 
+  override FlowState getState() { result = state }
+
   CallContext getCallContext() { result = cc }
 
   SummaryCtx getSummaryCtx() { result = sc }
@@ -3475,8 +4011,8 @@ private class PathNodeMid extends PathNodeImpl, TPathNodeMid {
   override Configuration getConfiguration() { result = config }
 
   private PathNodeMid getSuccMid() {
-    pathStep(this, result.getNodeEx(), result.getCallContext(), result.getSummaryCtx(),
-      result.getAp()) and
+    pathStep(this, result.getNodeEx(), result.getState(), result.getCallContext(),
+      result.getSummaryCtx(), result.getAp()) and
     result.getConfiguration() = unbindConf(this.getConfiguration())
   }
 
@@ -3489,7 +4025,7 @@ private class PathNodeMid extends PathNodeImpl, TPathNodeMid {
   }
 
   override predicate isSource() {
-    sourceNode(node, config) and
+    sourceNode(node, state, config) and
     (
       if hasSourceCallCtx(config)
       then cc instanceof CallContextSomeCall
@@ -3500,7 +4036,7 @@ private class PathNodeMid extends PathNodeImpl, TPathNodeMid {
   }
 
   predicate isAtSink() {
-    sinkNode(node, config) and
+    sinkNode(node, state, config) and
     ap instanceof AccessPathNil and
     if hasSinkCallCtx(config)
     then
@@ -3522,6 +4058,7 @@ private class PathNodeMid extends PathNodeImpl, TPathNodeMid {
   PathNodeSink projectToSink() {
     this.isAtSink() and
     result.getNodeEx() = node and
+    result.getState() = state and
     result.getConfiguration() = unbindConf(config)
   }
 }
@@ -3533,91 +4070,117 @@ private class PathNodeMid extends PathNodeImpl, TPathNodeMid {
  */
 private class PathNodeSink extends PathNodeImpl, TPathNodeSink {
   NodeEx node;
+  FlowState state;
   Configuration config;
 
-  PathNodeSink() { this = TPathNodeSink(node, config) }
+  PathNodeSink() { this = TPathNodeSink(node, state, config) }
 
   override NodeEx getNodeEx() { result = node }
 
+  override FlowState getState() { result = state }
+
   override Configuration getConfiguration() { result = config }
 
-  override PathNode getASuccessorImpl() { none() }
+  override PathNodeImpl getASuccessorImpl() { none() }
 
-  override predicate isSource() { sourceNode(node, config) }
+  override predicate isSource() { sourceNode(node, state, config) }
+}
+
+private predicate pathNode(
+  PathNodeMid mid, NodeEx midnode, FlowState state, CallContext cc, SummaryCtx sc, AccessPath ap,
+  Configuration conf, LocalCallContext localCC
+) {
+  midnode = mid.getNodeEx() and
+  state = mid.getState() and
+  conf = mid.getConfiguration() and
+  cc = mid.getCallContext() and
+  sc = mid.getSummaryCtx() and
+  localCC =
+    getLocalCallContext(pragma[only_bind_into](pragma[only_bind_out](cc)),
+      midnode.getEnclosingCallable()) and
+  ap = mid.getAp()
 }
 
 /**
  * Holds if data may flow from `mid` to `node`. The last step in or out of
  * a callable is recorded by `cc`.
  */
+pragma[nomagic]
 private predicate pathStep(
-  PathNodeMid mid, NodeEx node, CallContext cc, SummaryCtx sc, AccessPath ap
+  PathNodeMid mid, NodeEx node, FlowState state, CallContext cc, SummaryCtx sc, AccessPath ap
 ) {
-  exists(AccessPath ap0, NodeEx midnode, Configuration conf, LocalCallContext localCC |
-    midnode = mid.getNodeEx() and
-    conf = mid.getConfiguration() and
-    cc = mid.getCallContext() and
-    sc = mid.getSummaryCtx() and
-    localCC =
-      getLocalCallContext(pragma[only_bind_into](pragma[only_bind_out](cc)),
-        midnode.getEnclosingCallable()) and
-    ap0 = mid.getAp()
+  exists(NodeEx midnode, FlowState state0, Configuration conf, LocalCallContext localCC |
+    pathNode(mid, midnode, state0, cc, sc, ap, conf, localCC) and
+    localFlowBigStep(midnode, state0, node, state, true, _, conf, localCC)
+  )
+  or
+  exists(
+    AccessPath ap0, NodeEx midnode, FlowState state0, Configuration conf, LocalCallContext localCC
   |
-    localFlowBigStep(midnode, node, true, _, conf, localCC) and
-    ap = ap0
-    or
-    localFlowBigStep(midnode, node, false, ap.getFront(), conf, localCC) and
+    pathNode(mid, midnode, state0, cc, sc, ap0, conf, localCC) and
+    localFlowBigStep(midnode, state0, node, state, false, ap.getFront(), conf, localCC) and
     ap0 instanceof AccessPathNil
   )
   or
   jumpStep(mid.getNodeEx(), node, mid.getConfiguration()) and
+  state = mid.getState() and
   cc instanceof CallContextAny and
   sc instanceof SummaryCtxNone and
   ap = mid.getAp()
   or
   additionalJumpStep(mid.getNodeEx(), node, mid.getConfiguration()) and
+  state = mid.getState() and
   cc instanceof CallContextAny and
   sc instanceof SummaryCtxNone and
   mid.getAp() instanceof AccessPathNil and
   ap = TAccessPathNil(node.getDataFlowType())
   or
-  exists(TypedContent tc | pathStoreStep(mid, node, ap.pop(tc), tc, cc)) and
+  additionalJumpStateStep(mid.getNodeEx(), mid.getState(), node, state, mid.getConfiguration()) and
+  cc instanceof CallContextAny and
+  sc instanceof SummaryCtxNone and
+  mid.getAp() instanceof AccessPathNil and
+  ap = TAccessPathNil(node.getDataFlowType())
+  or
+  exists(TypedContent tc | pathStoreStep(mid, node, state, ap.pop(tc), tc, cc)) and
   sc = mid.getSummaryCtx()
   or
-  exists(TypedContent tc | pathReadStep(mid, node, ap.push(tc), tc, cc)) and
+  exists(TypedContent tc | pathReadStep(mid, node, state, ap.push(tc), tc, cc)) and
   sc = mid.getSummaryCtx()
   or
-  pathIntoCallable(mid, node, _, cc, sc, _, _) and ap = mid.getAp()
+  pathIntoCallable(mid, node, state, _, cc, sc, _, _) and ap = mid.getAp()
   or
-  pathOutOfCallable(mid, node, cc) and ap = mid.getAp() and sc instanceof SummaryCtxNone
+  pathOutOfCallable(mid, node, state, cc) and ap = mid.getAp() and sc instanceof SummaryCtxNone
   or
-  pathThroughCallable(mid, node, cc, ap) and sc = mid.getSummaryCtx()
+  pathThroughCallable(mid, node, state, cc, ap) and sc = mid.getSummaryCtx()
 }
 
 pragma[nomagic]
 private predicate pathReadStep(
-  PathNodeMid mid, NodeEx node, AccessPath ap0, TypedContent tc, CallContext cc
+  PathNodeMid mid, NodeEx node, FlowState state, AccessPath ap0, TypedContent tc, CallContext cc
 ) {
   ap0 = mid.getAp() and
   tc = ap0.getHead() and
   Stage4::readStepCand(mid.getNodeEx(), tc.getContent(), node, mid.getConfiguration()) and
+  state = mid.getState() and
   cc = mid.getCallContext()
 }
 
 pragma[nomagic]
 private predicate pathStoreStep(
-  PathNodeMid mid, NodeEx node, AccessPath ap0, TypedContent tc, CallContext cc
+  PathNodeMid mid, NodeEx node, FlowState state, AccessPath ap0, TypedContent tc, CallContext cc
 ) {
   ap0 = mid.getAp() and
   Stage4::storeStepCand(mid.getNodeEx(), _, tc, node, _, mid.getConfiguration()) and
+  state = mid.getState() and
   cc = mid.getCallContext()
 }
 
 private predicate pathOutOfCallable0(
-  PathNodeMid mid, ReturnPosition pos, CallContext innercc, AccessPathApprox apa,
+  PathNodeMid mid, ReturnPosition pos, FlowState state, CallContext innercc, AccessPathApprox apa,
   Configuration config
 ) {
   pos = mid.getNodeEx().(RetNodeEx).getReturnPosition() and
+  state = mid.getState() and
   innercc = mid.getCallContext() and
   innercc instanceof CallContextNoCall and
   apa = mid.getAp().getApprox() and
@@ -3626,11 +4189,11 @@ private predicate pathOutOfCallable0(
 
 pragma[nomagic]
 private predicate pathOutOfCallable1(
-  PathNodeMid mid, DataFlowCall call, ReturnKindExt kind, CallContext cc, AccessPathApprox apa,
-  Configuration config
+  PathNodeMid mid, DataFlowCall call, ReturnKindExt kind, FlowState state, CallContext cc,
+  AccessPathApprox apa, Configuration config
 ) {
   exists(ReturnPosition pos, DataFlowCallable c, CallContext innercc |
-    pathOutOfCallable0(mid, pos, innercc, apa, config) and
+    pathOutOfCallable0(mid, pos, state, innercc, apa, config) and
     c = pos.getCallable() and
     kind = pos.getKind() and
     resolveReturn(innercc, c, call)
@@ -3644,7 +4207,7 @@ private NodeEx getAnOutNodeFlow(
   ReturnKindExt kind, DataFlowCall call, AccessPathApprox apa, Configuration config
 ) {
   result.asNode() = kind.getAnOutNode(call) and
-  Stage4::revFlow(result, _, _, apa, config)
+  Stage4::revFlow(result, _, _, _, apa, config)
 }
 
 /**
@@ -3652,9 +4215,9 @@ private NodeEx getAnOutNodeFlow(
  * is a return from a callable and is recorded by `cc`, if needed.
  */
 pragma[noinline]
-private predicate pathOutOfCallable(PathNodeMid mid, NodeEx out, CallContext cc) {
+private predicate pathOutOfCallable(PathNodeMid mid, NodeEx out, FlowState state, CallContext cc) {
   exists(ReturnKindExt kind, DataFlowCall call, AccessPathApprox apa, Configuration config |
-    pathOutOfCallable1(mid, call, kind, cc, apa, config) and
+    pathOutOfCallable1(mid, call, kind, state, cc, apa, config) and
     out = getAnOutNodeFlow(kind, call, apa, config)
   )
 }
@@ -3664,39 +4227,37 @@ private predicate pathOutOfCallable(PathNodeMid mid, NodeEx out, CallContext cc)
  */
 pragma[noinline]
 private predicate pathIntoArg(
-  PathNodeMid mid, int i, CallContext cc, DataFlowCall call, AccessPath ap, AccessPathApprox apa,
-  Configuration config
+  PathNodeMid mid, ParameterPosition ppos, FlowState state, CallContext cc, DataFlowCall call,
+  AccessPath ap, AccessPathApprox apa, Configuration config
 ) {
-  exists(ArgNode arg |
-    arg = mid.getNodeEx().asNode() and
-    cc = mid.getCallContext() and
-    arg.argumentOf(call, i) and
-    ap = mid.getAp() and
+  exists(ArgNodeEx arg, ArgumentPosition apos |
+    pathNode(mid, arg, state, cc, _, ap, config, _) and
+    arg.asNode().(ArgNode).argumentOf(call, apos) and
     apa = ap.getApprox() and
-    config = mid.getConfiguration()
+    parameterMatch(ppos, apos)
   )
 }
 
 pragma[nomagic]
 private predicate parameterCand(
-  DataFlowCallable callable, int i, AccessPathApprox apa, Configuration config
+  DataFlowCallable callable, ParameterPosition pos, AccessPathApprox apa, Configuration config
 ) {
   exists(ParamNodeEx p |
-    Stage4::revFlow(p, _, _, apa, config) and
-    p.isParameterOf(callable, i)
+    Stage4::revFlow(p, _, _, _, apa, config) and
+    p.isParameterOf(callable, pos)
   )
 }
 
 pragma[nomagic]
 private predicate pathIntoCallable0(
-  PathNodeMid mid, DataFlowCallable callable, int i, CallContext outercc, DataFlowCall call,
-  AccessPath ap, Configuration config
+  PathNodeMid mid, DataFlowCallable callable, ParameterPosition pos, FlowState state,
+  CallContext outercc, DataFlowCall call, AccessPath ap, Configuration config
 ) {
   exists(AccessPathApprox apa |
-    pathIntoArg(mid, pragma[only_bind_into](i), outercc, call, ap, pragma[only_bind_into](apa),
-      pragma[only_bind_into](config)) and
+    pathIntoArg(mid, pragma[only_bind_into](pos), state, outercc, call, ap,
+      pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
     callable = resolveCall(call, outercc) and
-    parameterCand(callable, pragma[only_bind_into](i), pragma[only_bind_into](apa),
+    parameterCand(callable, pragma[only_bind_into](pos), pragma[only_bind_into](apa),
       pragma[only_bind_into](config))
   )
 }
@@ -3708,16 +4269,16 @@ private predicate pathIntoCallable0(
  */
 pragma[nomagic]
 private predicate pathIntoCallable(
-  PathNodeMid mid, ParamNodeEx p, CallContext outercc, CallContextCall innercc, SummaryCtx sc,
-  DataFlowCall call, Configuration config
+  PathNodeMid mid, ParamNodeEx p, FlowState state, CallContext outercc, CallContextCall innercc,
+  SummaryCtx sc, DataFlowCall call, Configuration config
 ) {
-  exists(int i, DataFlowCallable callable, AccessPath ap |
-    pathIntoCallable0(mid, callable, i, outercc, call, ap, config) and
-    p.isParameterOf(callable, i) and
+  exists(ParameterPosition pos, DataFlowCallable callable, AccessPath ap |
+    pathIntoCallable0(mid, callable, pos, state, outercc, call, ap, config) and
+    p.isParameterOf(callable, pos) and
     (
-      sc = TSummaryCtxSome(p, ap)
+      sc = TSummaryCtxSome(p, state, ap)
       or
-      not exists(TSummaryCtxSome(p, ap)) and
+      not exists(TSummaryCtxSome(p, state, ap)) and
       sc = TSummaryCtxNone() and
       // When the call contexts of source and sink needs to match then there's
       // never any reason to enter a callable except to find a summary. See also
@@ -3734,16 +4295,12 @@ private predicate pathIntoCallable(
 /** Holds if data may flow from a parameter given by `sc` to a return of kind `kind`. */
 pragma[nomagic]
 private predicate paramFlowsThrough(
-  ReturnKindExt kind, CallContextCall cc, SummaryCtxSome sc, AccessPath ap, AccessPathApprox apa,
-  Configuration config
+  ReturnKindExt kind, FlowState state, CallContextCall cc, SummaryCtxSome sc, AccessPath ap,
+  AccessPathApprox apa, Configuration config
 ) {
-  exists(PathNodeMid mid, RetNodeEx ret, int pos |
-    mid.getNodeEx() = ret and
+  exists(PathNodeMid mid, RetNodeEx ret, ParameterPosition pos |
+    pathNode(mid, ret, state, cc, sc, ap, config, _) and
     kind = ret.getKind() and
-    cc = mid.getCallContext() and
-    sc = mid.getSummaryCtx() and
-    config = mid.getConfiguration() and
-    ap = mid.getAp() and
     apa = ap.getApprox() and
     pos = sc.getParameterPos() and
     // we don't expect a parameter to return stored in itself, unless explicitly allowed
@@ -3757,12 +4314,12 @@ private predicate paramFlowsThrough(
 
 pragma[nomagic]
 private predicate pathThroughCallable0(
-  DataFlowCall call, PathNodeMid mid, ReturnKindExt kind, CallContext cc, AccessPath ap,
-  AccessPathApprox apa, Configuration config
+  DataFlowCall call, PathNodeMid mid, ReturnKindExt kind, FlowState state, CallContext cc,
+  AccessPath ap, AccessPathApprox apa, Configuration config
 ) {
   exists(CallContext innercc, SummaryCtx sc |
-    pathIntoCallable(mid, _, cc, innercc, sc, call, config) and
-    paramFlowsThrough(kind, innercc, sc, ap, apa, config)
+    pathIntoCallable(mid, _, _, cc, innercc, sc, call, config) and
+    paramFlowsThrough(kind, state, innercc, sc, ap, apa, config)
   )
 }
 
@@ -3771,9 +4328,11 @@ private predicate pathThroughCallable0(
  * The context `cc` is restored to its value prior to entering the callable.
  */
 pragma[noinline]
-private predicate pathThroughCallable(PathNodeMid mid, NodeEx out, CallContext cc, AccessPath ap) {
+private predicate pathThroughCallable(
+  PathNodeMid mid, NodeEx out, FlowState state, CallContext cc, AccessPath ap
+) {
   exists(DataFlowCall call, ReturnKindExt kind, AccessPathApprox apa, Configuration config |
-    pathThroughCallable0(call, mid, kind, cc, ap, apa, config) and
+    pathThroughCallable0(call, mid, kind, state, cc, ap, apa, config) and
     out = getAnOutNodeFlow(kind, call, apa, config)
   )
 }
@@ -3786,26 +4345,27 @@ private module Subpaths {
   pragma[nomagic]
   private predicate subpaths01(
     PathNodeImpl arg, ParamNodeEx par, SummaryCtxSome sc, CallContext innercc, ReturnKindExt kind,
-    NodeEx out, AccessPath apout
+    NodeEx out, FlowState sout, AccessPath apout
   ) {
     exists(Configuration config |
-      pathThroughCallable(arg, out, _, pragma[only_bind_into](apout)) and
-      pathIntoCallable(arg, par, _, innercc, sc, _, config) and
-      paramFlowsThrough(kind, innercc, sc, pragma[only_bind_into](apout), _, unbindConf(config)) and
+      pathThroughCallable(arg, out, pragma[only_bind_into](sout), _, pragma[only_bind_into](apout)) and
+      pathIntoCallable(arg, par, _, _, innercc, sc, _, config) and
+      paramFlowsThrough(kind, pragma[only_bind_into](sout), innercc, sc,
+        pragma[only_bind_into](apout), _, unbindConf(config)) and
       not arg.isHidden()
     )
   }
 
   /**
    * Holds if `(arg, par, ret, out)` forms a subpath-tuple and `ret` is determined by
-   * `kind`, `sc`, `apout`, and `innercc`.
+   * `kind`, `sc`, `sout`, `apout`, and `innercc`.
    */
   pragma[nomagic]
   private predicate subpaths02(
     PathNode arg, ParamNodeEx par, SummaryCtxSome sc, CallContext innercc, ReturnKindExt kind,
-    NodeEx out, AccessPath apout
+    NodeEx out, FlowState sout, AccessPath apout
   ) {
-    subpaths01(arg, par, sc, innercc, kind, out, apout) and
+    subpaths01(arg, par, sc, innercc, kind, out, sout, apout) and
     out.asNode() = kind.getAnOutNode(_)
   }
 
@@ -3817,16 +4377,12 @@ private module Subpaths {
    */
   pragma[nomagic]
   private predicate subpaths03(
-    PathNode arg, ParamNodeEx par, PathNodeMid ret, NodeEx out, AccessPath apout
+    PathNode arg, ParamNodeEx par, PathNodeMid ret, NodeEx out, FlowState sout, AccessPath apout
   ) {
     exists(SummaryCtxSome sc, CallContext innercc, ReturnKindExt kind, RetNodeEx retnode |
-      subpaths02(arg, par, sc, innercc, kind, out, apout) and
-      ret.getNodeEx() = retnode and
-      kind = retnode.getKind() and
-      innercc = ret.getCallContext() and
-      sc = ret.getSummaryCtx() and
-      ret.getConfiguration() = unbindConf(getPathNodeConf(arg)) and
-      apout = ret.getAp()
+      subpaths02(arg, par, sc, innercc, kind, out, sout, apout) and
+      pathNode(ret, retnode, sout, innercc, sc, apout, unbindConf(getPathNodeConf(arg)), _) and
+      kind = retnode.getKind()
     )
   }
 
@@ -3834,38 +4390,44 @@ private module Subpaths {
     n.getASuccessorImpl() = result and
     result.isHidden() and
     exists(NodeEx n1, NodeEx n2 | n1 = n.getNodeEx() and n2 = result.getNodeEx() |
-      localFlowBigStep(n1, n2, _, _, _, _) or
+      localFlowBigStep(n1, _, n2, _, _, _, _, _) or
       store(n1, _, n2, _, _) or
-      read(n1, _, n2, _)
+      readSet(n1, _, n2, _)
     )
   }
 
+  pragma[nomagic]
+  private predicate hasSuccessor(PathNodeImpl pred, PathNodeMid succ, NodeEx succNode) {
+    succ = pred.getANonHiddenSuccessor() and
+    succNode = succ.getNodeEx()
+  }
+
   /**
    * Holds if `(arg, par, ret, out)` forms a subpath-tuple, that is, flow through
    * a subpath between `par` and `ret` with the connecting edges `arg -> par` and
    * `ret -> out` is summarized as the edge `arg -> out`.
    */
-  predicate subpaths(PathNode arg, PathNodeImpl par, PathNodeImpl ret, PathNodeMid out) {
-    exists(ParamNodeEx p, NodeEx o, AccessPath apout |
-      pragma[only_bind_into](arg).getASuccessor() = par and
-      pragma[only_bind_into](arg).getASuccessor() = out and
-      subpaths03(arg, p, localStepToHidden*(ret), o, apout) and
+  predicate subpaths(PathNodeImpl arg, PathNodeImpl par, PathNodeImpl ret, PathNode out) {
+    exists(ParamNodeEx p, NodeEx o, FlowState sout, AccessPath apout, PathNodeMid out0 |
+      pragma[only_bind_into](arg).getANonHiddenSuccessor() = pragma[only_bind_into](out0) and
+      subpaths03(pragma[only_bind_into](arg), p, localStepToHidden*(ret), o, sout, apout) and
+      hasSuccessor(pragma[only_bind_into](arg), par, p) and
       not ret.isHidden() and
-      par.getNodeEx() = p and
-      out.getNodeEx() = o and
-      out.getAp() = apout
+      pathNode(out0, o, sout, _, _, apout, _, _)
+    |
+      out = out0 or out = out0.projectToSink()
     )
   }
 
   /**
-   * Holds if `n` can reach a return node in a summarized subpath.
+   * Holds if `n` can reach a return node in a summarized subpath that can reach a sink.
    */
-  predicate retReach(PathNode n) {
-    subpaths(_, _, n, _)
+  predicate retReach(PathNodeImpl n) {
+    exists(PathNode out | subpaths(_, _, n, out) | directReach(out) or retReach(out))
     or
-    exists(PathNode mid |
+    exists(PathNodeImpl mid |
       retReach(mid) and
-      n.getASuccessor() = mid and
+      n.getANonHiddenSuccessor() = mid and
       not subpaths(_, mid, _, _)
     )
   }
@@ -3897,17 +4459,21 @@ predicate flowsTo(Node source, Node sink, Configuration configuration) {
   flowsTo(_, _, source, sink, configuration)
 }
 
-private predicate finalStats(boolean fwd, int nodes, int fields, int conscand, int tuples) {
+private predicate finalStats(
+  boolean fwd, int nodes, int fields, int conscand, int states, int tuples
+) {
   fwd = true and
   nodes = count(NodeEx n0 | exists(PathNodeImpl pn | pn.getNodeEx() = n0)) and
   fields = count(TypedContent f0 | exists(PathNodeMid pn | pn.getAp().getHead() = f0)) and
   conscand = count(AccessPath ap | exists(PathNodeMid pn | pn.getAp() = ap)) and
+  states = count(FlowState state | exists(PathNodeMid pn | pn.getState() = state)) and
   tuples = count(PathNode pn)
   or
   fwd = false and
   nodes = count(NodeEx n0 | exists(PathNodeImpl pn | pn.getNodeEx() = n0 and reach(pn))) and
   fields = count(TypedContent f0 | exists(PathNodeMid pn | pn.getAp().getHead() = f0 and reach(pn))) and
   conscand = count(AccessPath ap | exists(PathNodeMid pn | pn.getAp() = ap and reach(pn))) and
+  states = count(FlowState state | exists(PathNodeMid pn | pn.getState() = state and reach(pn))) and
   tuples = count(PathNode pn | reach(pn))
 }
 
@@ -3917,27 +4483,44 @@ private predicate finalStats(boolean fwd, int nodes, int fields, int conscand, i
  * Calculates per-stage metrics for data flow.
  */
 predicate stageStats(
-  int n, string stage, int nodes, int fields, int conscand, int tuples, Configuration config
+  int n, string stage, int nodes, int fields, int conscand, int states, int tuples,
+  Configuration config
 ) {
-  stage = "1 Fwd" and n = 10 and Stage1::stats(true, nodes, fields, conscand, tuples, config)
+  stage = "1 Fwd" and
+  n = 10 and
+  Stage1::stats(true, nodes, fields, conscand, states, tuples, config)
   or
-  stage = "1 Rev" and n = 15 and Stage1::stats(false, nodes, fields, conscand, tuples, config)
+  stage = "1 Rev" and
+  n = 15 and
+  Stage1::stats(false, nodes, fields, conscand, states, tuples, config)
   or
-  stage = "2 Fwd" and n = 20 and Stage2::stats(true, nodes, fields, conscand, tuples, config)
+  stage = "2 Fwd" and
+  n = 20 and
+  Stage2::stats(true, nodes, fields, conscand, states, tuples, config)
   or
-  stage = "2 Rev" and n = 25 and Stage2::stats(false, nodes, fields, conscand, tuples, config)
+  stage = "2 Rev" and
+  n = 25 and
+  Stage2::stats(false, nodes, fields, conscand, states, tuples, config)
   or
-  stage = "3 Fwd" and n = 30 and Stage3::stats(true, nodes, fields, conscand, tuples, config)
+  stage = "3 Fwd" and
+  n = 30 and
+  Stage3::stats(true, nodes, fields, conscand, states, tuples, config)
   or
-  stage = "3 Rev" and n = 35 and Stage3::stats(false, nodes, fields, conscand, tuples, config)
+  stage = "3 Rev" and
+  n = 35 and
+  Stage3::stats(false, nodes, fields, conscand, states, tuples, config)
   or
-  stage = "4 Fwd" and n = 40 and Stage4::stats(true, nodes, fields, conscand, tuples, config)
+  stage = "4 Fwd" and
+  n = 40 and
+  Stage4::stats(true, nodes, fields, conscand, states, tuples, config)
   or
-  stage = "4 Rev" and n = 45 and Stage4::stats(false, nodes, fields, conscand, tuples, config)
+  stage = "4 Rev" and
+  n = 45 and
+  Stage4::stats(false, nodes, fields, conscand, states, tuples, config)
   or
-  stage = "5 Fwd" and n = 50 and finalStats(true, nodes, fields, conscand, tuples)
+  stage = "5 Fwd" and n = 50 and finalStats(true, nodes, fields, conscand, states, tuples)
   or
-  stage = "5 Rev" and n = 55 and finalStats(false, nodes, fields, conscand, tuples)
+  stage = "5 Rev" and n = 55 and finalStats(false, nodes, fields, conscand, states, tuples)
 }
 
 private module FlowExploration {
@@ -3947,6 +4530,8 @@ private module FlowExploration {
       or
       additionalJumpStep(node1, node2, config)
       or
+      additionalJumpStateStep(node1, _, node2, _, config)
+      or
       // flow into callable
       viableParamArgEx(_, node2, node1)
       or
@@ -3960,7 +4545,7 @@ private module FlowExploration {
   }
 
   private predicate interestingCallableSrc(DataFlowCallable c, Configuration config) {
-    exists(Node n | config.isSource(n) and c = getNodeEnclosingCallable(n))
+    exists(Node n | config.isSource(n) or config.isSource(n, _) | c = getNodeEnclosingCallable(n))
     or
     exists(DataFlowCallable mid |
       interestingCallableSrc(mid, config) and callableStep(mid, c, config)
@@ -3968,7 +4553,7 @@ private module FlowExploration {
   }
 
   private predicate interestingCallableSink(DataFlowCallable c, Configuration config) {
-    exists(Node n | config.isSink(n) and c = getNodeEnclosingCallable(n))
+    exists(Node n | config.isSink(n) or config.isSink(n, _) | c = getNodeEnclosingCallable(n))
     or
     exists(DataFlowCallable mid |
       interestingCallableSink(mid, config) and callableStep(c, mid, config)
@@ -3996,13 +4581,13 @@ private module FlowExploration {
     or
     exists(Node n, Configuration config |
       ce1 = TCallableSrc() and
-      config.isSource(n) and
+      (config.isSource(n) or config.isSource(n, _)) and
       ce2 = TCallable(getNodeEnclosingCallable(n), config)
     )
     or
     exists(Node n, Configuration config |
       ce2 = TCallableSink() and
-      config.isSink(n) and
+      (config.isSink(n) or config.isSink(n, _)) and
       ce1 = TCallable(getNodeEnclosingCallable(n), config)
     )
   }
@@ -4104,13 +4689,26 @@ private module FlowExploration {
     }
   }
 
+  private predicate relevantState(FlowState state) {
+    sourceNode(_, state, _) or
+    sinkNode(_, state, _) or
+    additionalLocalStateStep(_, state, _, _, _) or
+    additionalLocalStateStep(_, _, _, state, _) or
+    additionalJumpStateStep(_, state, _, _, _) or
+    additionalJumpStateStep(_, _, _, state, _)
+  }
+
   private newtype TSummaryCtx1 =
     TSummaryCtx1None() or
     TSummaryCtx1Param(ParamNodeEx p)
 
   private newtype TSummaryCtx2 =
     TSummaryCtx2None() or
-    TSummaryCtx2Some(PartialAccessPath ap)
+    TSummaryCtx2Some(FlowState s) { relevantState(s) }
+
+  private newtype TSummaryCtx3 =
+    TSummaryCtx3None() or
+    TSummaryCtx3Some(PartialAccessPath ap)
 
   private newtype TRevSummaryCtx1 =
     TRevSummaryCtx1None() or
@@ -4118,52 +4716,66 @@ private module FlowExploration {
 
   private newtype TRevSummaryCtx2 =
     TRevSummaryCtx2None() or
-    TRevSummaryCtx2Some(RevPartialAccessPath ap)
+    TRevSummaryCtx2Some(FlowState s) { relevantState(s) }
+
+  private newtype TRevSummaryCtx3 =
+    TRevSummaryCtx3None() or
+    TRevSummaryCtx3Some(RevPartialAccessPath ap)
 
   private newtype TPartialPathNode =
     TPartialPathNodeFwd(
-      NodeEx node, CallContext cc, TSummaryCtx1 sc1, TSummaryCtx2 sc2, PartialAccessPath ap,
-      Configuration config
+      NodeEx node, FlowState state, CallContext cc, TSummaryCtx1 sc1, TSummaryCtx2 sc2,
+      TSummaryCtx3 sc3, PartialAccessPath ap, Configuration config
     ) {
-      sourceNode(node, config) and
+      sourceNode(node, state, config) and
       cc instanceof CallContextAny and
       sc1 = TSummaryCtx1None() and
       sc2 = TSummaryCtx2None() and
+      sc3 = TSummaryCtx3None() and
       ap = TPartialNil(node.getDataFlowType()) and
-      not fullBarrier(node, config) and
       exists(config.explorationLimit())
       or
-      partialPathNodeMk0(node, cc, sc1, sc2, ap, config) and
+      partialPathNodeMk0(node, state, cc, sc1, sc2, sc3, ap, config) and
       distSrc(node.getEnclosingCallable(), config) <= config.explorationLimit()
     } or
     TPartialPathNodeRev(
-      NodeEx node, TRevSummaryCtx1 sc1, TRevSummaryCtx2 sc2, RevPartialAccessPath ap,
-      Configuration config
+      NodeEx node, FlowState state, TRevSummaryCtx1 sc1, TRevSummaryCtx2 sc2, TRevSummaryCtx3 sc3,
+      RevPartialAccessPath ap, Configuration config
     ) {
-      sinkNode(node, config) and
+      sinkNode(node, state, config) and
       sc1 = TRevSummaryCtx1None() and
       sc2 = TRevSummaryCtx2None() and
+      sc3 = TRevSummaryCtx3None() and
       ap = TRevPartialNil() and
-      not fullBarrier(node, config) and
       exists(config.explorationLimit())
       or
       exists(PartialPathNodeRev mid |
-        revPartialPathStep(mid, node, sc1, sc2, ap, config) and
-        not clearsContentCached(node.asNode(), ap.getHead()) and
+        revPartialPathStep(mid, node, state, sc1, sc2, sc3, ap, config) and
+        not clearsContentEx(node, ap.getHead()) and
+        (
+          notExpectsContent(node) or
+          expectsContentEx(node, ap.getHead())
+        ) and
         not fullBarrier(node, config) and
+        not stateBarrier(node, state, config) and
         distSink(node.getEnclosingCallable(), config) <= config.explorationLimit()
       )
     }
 
   pragma[nomagic]
   private predicate partialPathNodeMk0(
-    NodeEx node, CallContext cc, TSummaryCtx1 sc1, TSummaryCtx2 sc2, PartialAccessPath ap,
-    Configuration config
+    NodeEx node, FlowState state, CallContext cc, TSummaryCtx1 sc1, TSummaryCtx2 sc2,
+    TSummaryCtx3 sc3, PartialAccessPath ap, Configuration config
   ) {
     exists(PartialPathNodeFwd mid |
-      partialPathStep(mid, node, cc, sc1, sc2, ap, config) and
+      partialPathStep(mid, node, state, cc, sc1, sc2, sc3, ap, config) and
       not fullBarrier(node, config) and
-      not clearsContentCached(node.asNode(), ap.getHead().getContent()) and
+      not stateBarrier(node, state, config) and
+      not clearsContentEx(node, ap.getHead().getContent()) and
+      (
+        notExpectsContent(node) or
+        expectsContentEx(node, ap.getHead().getContent())
+      ) and
       if node.asNode() instanceof CastingNode
       then compatibleTypes(node.getDataFlowType(), ap.getType())
       else any()
@@ -4201,6 +4813,8 @@ private module FlowExploration {
     /** Gets the underlying `Node`. */
     final Node getNode() { this.getNodeEx().projectToNode() = result }
 
+    FlowState getState() { none() }
+
     private NodeEx getNodeEx() {
       result = this.(PartialPathNodeFwd).getNodeEx() or
       result = this.(PartialPathNodeRev).getNodeEx()
@@ -4258,135 +4872,182 @@ private module FlowExploration {
 
   private class PartialPathNodeFwd extends PartialPathNode, TPartialPathNodeFwd {
     NodeEx node;
+    FlowState state;
     CallContext cc;
     TSummaryCtx1 sc1;
     TSummaryCtx2 sc2;
+    TSummaryCtx3 sc3;
     PartialAccessPath ap;
     Configuration config;
 
-    PartialPathNodeFwd() { this = TPartialPathNodeFwd(node, cc, sc1, sc2, ap, config) }
+    PartialPathNodeFwd() { this = TPartialPathNodeFwd(node, state, cc, sc1, sc2, sc3, ap, config) }
 
     NodeEx getNodeEx() { result = node }
 
+    override FlowState getState() { result = state }
+
     CallContext getCallContext() { result = cc }
 
     TSummaryCtx1 getSummaryCtx1() { result = sc1 }
 
     TSummaryCtx2 getSummaryCtx2() { result = sc2 }
 
+    TSummaryCtx3 getSummaryCtx3() { result = sc3 }
+
     PartialAccessPath getAp() { result = ap }
 
     override Configuration getConfiguration() { result = config }
 
     override PartialPathNodeFwd getASuccessor() {
-      partialPathStep(this, result.getNodeEx(), result.getCallContext(), result.getSummaryCtx1(),
-        result.getSummaryCtx2(), result.getAp(), result.getConfiguration())
+      partialPathStep(this, result.getNodeEx(), result.getState(), result.getCallContext(),
+        result.getSummaryCtx1(), result.getSummaryCtx2(), result.getSummaryCtx3(), result.getAp(),
+        result.getConfiguration())
     }
 
     predicate isSource() {
-      sourceNode(node, config) and
+      sourceNode(node, state, config) and
       cc instanceof CallContextAny and
       sc1 = TSummaryCtx1None() and
       sc2 = TSummaryCtx2None() and
+      sc3 = TSummaryCtx3None() and
       ap instanceof TPartialNil
     }
   }
 
   private class PartialPathNodeRev extends PartialPathNode, TPartialPathNodeRev {
     NodeEx node;
+    FlowState state;
     TRevSummaryCtx1 sc1;
     TRevSummaryCtx2 sc2;
+    TRevSummaryCtx3 sc3;
     RevPartialAccessPath ap;
     Configuration config;
 
-    PartialPathNodeRev() { this = TPartialPathNodeRev(node, sc1, sc2, ap, config) }
+    PartialPathNodeRev() { this = TPartialPathNodeRev(node, state, sc1, sc2, sc3, ap, config) }
 
     NodeEx getNodeEx() { result = node }
 
+    override FlowState getState() { result = state }
+
     TRevSummaryCtx1 getSummaryCtx1() { result = sc1 }
 
     TRevSummaryCtx2 getSummaryCtx2() { result = sc2 }
 
+    TRevSummaryCtx3 getSummaryCtx3() { result = sc3 }
+
     RevPartialAccessPath getAp() { result = ap }
 
     override Configuration getConfiguration() { result = config }
 
     override PartialPathNodeRev getASuccessor() {
-      revPartialPathStep(result, this.getNodeEx(), this.getSummaryCtx1(), this.getSummaryCtx2(),
-        this.getAp(), this.getConfiguration())
+      revPartialPathStep(result, this.getNodeEx(), this.getState(), this.getSummaryCtx1(),
+        this.getSummaryCtx2(), this.getSummaryCtx3(), this.getAp(), this.getConfiguration())
     }
 
     predicate isSink() {
-      sinkNode(node, config) and
+      sinkNode(node, state, config) and
       sc1 = TRevSummaryCtx1None() and
       sc2 = TRevSummaryCtx2None() and
+      sc3 = TRevSummaryCtx3None() and
       ap = TRevPartialNil()
     }
   }
 
   private predicate partialPathStep(
-    PartialPathNodeFwd mid, NodeEx node, CallContext cc, TSummaryCtx1 sc1, TSummaryCtx2 sc2,
-    PartialAccessPath ap, Configuration config
+    PartialPathNodeFwd mid, NodeEx node, FlowState state, CallContext cc, TSummaryCtx1 sc1,
+    TSummaryCtx2 sc2, TSummaryCtx3 sc3, PartialAccessPath ap, Configuration config
   ) {
     not isUnreachableInCallCached(node.asNode(), cc.(CallContextSpecificCall).getCall()) and
     (
       localFlowStep(mid.getNodeEx(), node, config) and
+      state = mid.getState() and
       cc = mid.getCallContext() and
       sc1 = mid.getSummaryCtx1() and
       sc2 = mid.getSummaryCtx2() and
+      sc3 = mid.getSummaryCtx3() and
       ap = mid.getAp() and
       config = mid.getConfiguration()
       or
       additionalLocalFlowStep(mid.getNodeEx(), node, config) and
+      state = mid.getState() and
       cc = mid.getCallContext() and
       sc1 = mid.getSummaryCtx1() and
       sc2 = mid.getSummaryCtx2() and
+      sc3 = mid.getSummaryCtx3() and
+      mid.getAp() instanceof PartialAccessPathNil and
+      ap = TPartialNil(node.getDataFlowType()) and
+      config = mid.getConfiguration()
+      or
+      additionalLocalStateStep(mid.getNodeEx(), mid.getState(), node, state, config) and
+      cc = mid.getCallContext() and
+      sc1 = mid.getSummaryCtx1() and
+      sc2 = mid.getSummaryCtx2() and
+      sc3 = mid.getSummaryCtx3() and
       mid.getAp() instanceof PartialAccessPathNil and
       ap = TPartialNil(node.getDataFlowType()) and
       config = mid.getConfiguration()
     )
     or
     jumpStep(mid.getNodeEx(), node, config) and
+    state = mid.getState() and
     cc instanceof CallContextAny and
     sc1 = TSummaryCtx1None() and
     sc2 = TSummaryCtx2None() and
+    sc3 = TSummaryCtx3None() and
     ap = mid.getAp() and
     config = mid.getConfiguration()
     or
     additionalJumpStep(mid.getNodeEx(), node, config) and
+    state = mid.getState() and
     cc instanceof CallContextAny and
     sc1 = TSummaryCtx1None() and
     sc2 = TSummaryCtx2None() and
+    sc3 = TSummaryCtx3None() and
+    mid.getAp() instanceof PartialAccessPathNil and
+    ap = TPartialNil(node.getDataFlowType()) and
+    config = mid.getConfiguration()
+    or
+    additionalJumpStateStep(mid.getNodeEx(), mid.getState(), node, state, config) and
+    cc instanceof CallContextAny and
+    sc1 = TSummaryCtx1None() and
+    sc2 = TSummaryCtx2None() and
+    sc3 = TSummaryCtx3None() and
     mid.getAp() instanceof PartialAccessPathNil and
     ap = TPartialNil(node.getDataFlowType()) and
     config = mid.getConfiguration()
     or
     partialPathStoreStep(mid, _, _, node, ap) and
+    state = mid.getState() and
     cc = mid.getCallContext() and
     sc1 = mid.getSummaryCtx1() and
     sc2 = mid.getSummaryCtx2() and
+    sc3 = mid.getSummaryCtx3() and
     config = mid.getConfiguration()
     or
     exists(PartialAccessPath ap0, TypedContent tc |
       partialPathReadStep(mid, ap0, tc, node, cc, config) and
+      state = mid.getState() and
       sc1 = mid.getSummaryCtx1() and
       sc2 = mid.getSummaryCtx2() and
+      sc3 = mid.getSummaryCtx3() and
       apConsFwd(ap, tc, ap0, config)
     )
     or
-    partialPathIntoCallable(mid, node, _, cc, sc1, sc2, _, ap, config)
+    partialPathIntoCallable(mid, node, state, _, cc, sc1, sc2, sc3, _, ap, config)
     or
-    partialPathOutOfCallable(mid, node, cc, ap, config) and
+    partialPathOutOfCallable(mid, node, state, cc, ap, config) and
     sc1 = TSummaryCtx1None() and
-    sc2 = TSummaryCtx2None()
+    sc2 = TSummaryCtx2None() and
+    sc3 = TSummaryCtx3None()
     or
-    partialPathThroughCallable(mid, node, cc, ap, config) and
+    partialPathThroughCallable(mid, node, state, cc, ap, config) and
     sc1 = mid.getSummaryCtx1() and
-    sc2 = mid.getSummaryCtx2()
+    sc2 = mid.getSummaryCtx2() and
+    sc3 = mid.getSummaryCtx3()
   }
 
   bindingset[result, i]
-  private int unbindInt(int i) { i <= result and i >= result }
+  private int unbindInt(int i) { pragma[only_bind_out](i) = pragma[only_bind_out](result) }
 
   pragma[inline]
   private predicate partialPathStoreStep(
@@ -4429,10 +5090,11 @@ private module FlowExploration {
   }
 
   private predicate partialPathOutOfCallable0(
-    PartialPathNodeFwd mid, ReturnPosition pos, CallContext innercc, PartialAccessPath ap,
-    Configuration config
+    PartialPathNodeFwd mid, ReturnPosition pos, FlowState state, CallContext innercc,
+    PartialAccessPath ap, Configuration config
   ) {
     pos = mid.getNodeEx().(RetNodeEx).getReturnPosition() and
+    state = mid.getState() and
     innercc = mid.getCallContext() and
     innercc instanceof CallContextNoCall and
     ap = mid.getAp() and
@@ -4441,11 +5103,11 @@ private module FlowExploration {
 
   pragma[nomagic]
   private predicate partialPathOutOfCallable1(
-    PartialPathNodeFwd mid, DataFlowCall call, ReturnKindExt kind, CallContext cc,
+    PartialPathNodeFwd mid, DataFlowCall call, ReturnKindExt kind, FlowState state, CallContext cc,
     PartialAccessPath ap, Configuration config
   ) {
     exists(ReturnPosition pos, DataFlowCallable c, CallContext innercc |
-      partialPathOutOfCallable0(mid, pos, innercc, ap, config) and
+      partialPathOutOfCallable0(mid, pos, state, innercc, ap, config) and
       c = pos.getCallable() and
       kind = pos.getKind() and
       resolveReturn(innercc, c, call)
@@ -4455,10 +5117,11 @@ private module FlowExploration {
   }
 
   private predicate partialPathOutOfCallable(
-    PartialPathNodeFwd mid, NodeEx out, CallContext cc, PartialAccessPath ap, Configuration config
+    PartialPathNodeFwd mid, NodeEx out, FlowState state, CallContext cc, PartialAccessPath ap,
+    Configuration config
   ) {
     exists(ReturnKindExt kind, DataFlowCall call |
-      partialPathOutOfCallable1(mid, call, kind, cc, ap, config)
+      partialPathOutOfCallable1(mid, call, kind, state, cc, ap, config)
     |
       out.asNode() = kind.getAnOutNode(call)
     )
@@ -4466,37 +5129,40 @@ private module FlowExploration {
 
   pragma[noinline]
   private predicate partialPathIntoArg(
-    PartialPathNodeFwd mid, int i, CallContext cc, DataFlowCall call, PartialAccessPath ap,
-    Configuration config
+    PartialPathNodeFwd mid, ParameterPosition ppos, FlowState state, CallContext cc,
+    DataFlowCall call, PartialAccessPath ap, Configuration config
   ) {
-    exists(ArgNode arg |
+    exists(ArgNode arg, ArgumentPosition apos |
       arg = mid.getNodeEx().asNode() and
+      state = mid.getState() and
       cc = mid.getCallContext() and
-      arg.argumentOf(call, i) and
+      arg.argumentOf(call, apos) and
       ap = mid.getAp() and
-      config = mid.getConfiguration()
+      config = mid.getConfiguration() and
+      parameterMatch(ppos, apos)
     )
   }
 
   pragma[nomagic]
   private predicate partialPathIntoCallable0(
-    PartialPathNodeFwd mid, DataFlowCallable callable, int i, CallContext outercc,
-    DataFlowCall call, PartialAccessPath ap, Configuration config
+    PartialPathNodeFwd mid, DataFlowCallable callable, ParameterPosition pos, FlowState state,
+    CallContext outercc, DataFlowCall call, PartialAccessPath ap, Configuration config
   ) {
-    partialPathIntoArg(mid, i, outercc, call, ap, config) and
+    partialPathIntoArg(mid, pos, state, outercc, call, ap, config) and
     callable = resolveCall(call, outercc)
   }
 
   private predicate partialPathIntoCallable(
-    PartialPathNodeFwd mid, ParamNodeEx p, CallContext outercc, CallContextCall innercc,
-    TSummaryCtx1 sc1, TSummaryCtx2 sc2, DataFlowCall call, PartialAccessPath ap,
-    Configuration config
+    PartialPathNodeFwd mid, ParamNodeEx p, FlowState state, CallContext outercc,
+    CallContextCall innercc, TSummaryCtx1 sc1, TSummaryCtx2 sc2, TSummaryCtx3 sc3,
+    DataFlowCall call, PartialAccessPath ap, Configuration config
   ) {
-    exists(int i, DataFlowCallable callable |
-      partialPathIntoCallable0(mid, callable, i, outercc, call, ap, config) and
-      p.isParameterOf(callable, i) and
+    exists(ParameterPosition pos, DataFlowCallable callable |
+      partialPathIntoCallable0(mid, callable, pos, state, outercc, call, ap, config) and
+      p.isParameterOf(callable, pos) and
       sc1 = TSummaryCtx1Param(p) and
-      sc2 = TSummaryCtx2Some(ap)
+      sc2 = TSummaryCtx2Some(state) and
+      sc3 = TSummaryCtx3Some(ap)
     |
       if recordDataFlowCallSite(call, callable)
       then innercc = TSpecificCall(call)
@@ -4506,15 +5172,17 @@ private module FlowExploration {
 
   pragma[nomagic]
   private predicate paramFlowsThroughInPartialPath(
-    ReturnKindExt kind, CallContextCall cc, TSummaryCtx1 sc1, TSummaryCtx2 sc2,
-    PartialAccessPath ap, Configuration config
+    ReturnKindExt kind, FlowState state, CallContextCall cc, TSummaryCtx1 sc1, TSummaryCtx2 sc2,
+    TSummaryCtx3 sc3, PartialAccessPath ap, Configuration config
   ) {
     exists(PartialPathNodeFwd mid, RetNodeEx ret |
       mid.getNodeEx() = ret and
       kind = ret.getKind() and
+      state = mid.getState() and
       cc = mid.getCallContext() and
       sc1 = mid.getSummaryCtx1() and
       sc2 = mid.getSummaryCtx2() and
+      sc3 = mid.getSummaryCtx3() and
       config = mid.getConfiguration() and
       ap = mid.getAp()
     )
@@ -4522,85 +5190,119 @@ private module FlowExploration {
 
   pragma[noinline]
   private predicate partialPathThroughCallable0(
-    DataFlowCall call, PartialPathNodeFwd mid, ReturnKindExt kind, CallContext cc,
+    DataFlowCall call, PartialPathNodeFwd mid, ReturnKindExt kind, FlowState state, CallContext cc,
     PartialAccessPath ap, Configuration config
   ) {
-    exists(CallContext innercc, TSummaryCtx1 sc1, TSummaryCtx2 sc2 |
-      partialPathIntoCallable(mid, _, cc, innercc, sc1, sc2, call, _, config) and
-      paramFlowsThroughInPartialPath(kind, innercc, sc1, sc2, ap, config)
+    exists(CallContext innercc, TSummaryCtx1 sc1, TSummaryCtx2 sc2, TSummaryCtx3 sc3 |
+      partialPathIntoCallable(mid, _, _, cc, innercc, sc1, sc2, sc3, call, _, config) and
+      paramFlowsThroughInPartialPath(kind, state, innercc, sc1, sc2, sc3, ap, config)
     )
   }
 
   private predicate partialPathThroughCallable(
-    PartialPathNodeFwd mid, NodeEx out, CallContext cc, PartialAccessPath ap, Configuration config
+    PartialPathNodeFwd mid, NodeEx out, FlowState state, CallContext cc, PartialAccessPath ap,
+    Configuration config
   ) {
     exists(DataFlowCall call, ReturnKindExt kind |
-      partialPathThroughCallable0(call, mid, kind, cc, ap, config) and
+      partialPathThroughCallable0(call, mid, kind, state, cc, ap, config) and
       out.asNode() = kind.getAnOutNode(call)
     )
   }
 
+  pragma[nomagic]
   private predicate revPartialPathStep(
-    PartialPathNodeRev mid, NodeEx node, TRevSummaryCtx1 sc1, TRevSummaryCtx2 sc2,
-    RevPartialAccessPath ap, Configuration config
+    PartialPathNodeRev mid, NodeEx node, FlowState state, TRevSummaryCtx1 sc1, TRevSummaryCtx2 sc2,
+    TRevSummaryCtx3 sc3, RevPartialAccessPath ap, Configuration config
   ) {
     localFlowStep(node, mid.getNodeEx(), config) and
+    state = mid.getState() and
     sc1 = mid.getSummaryCtx1() and
     sc2 = mid.getSummaryCtx2() and
+    sc3 = mid.getSummaryCtx3() and
     ap = mid.getAp() and
     config = mid.getConfiguration()
     or
     additionalLocalFlowStep(node, mid.getNodeEx(), config) and
+    state = mid.getState() and
     sc1 = mid.getSummaryCtx1() and
     sc2 = mid.getSummaryCtx2() and
+    sc3 = mid.getSummaryCtx3() and
+    mid.getAp() instanceof RevPartialAccessPathNil and
+    ap = TRevPartialNil() and
+    config = mid.getConfiguration()
+    or
+    additionalLocalStateStep(node, state, mid.getNodeEx(), mid.getState(), config) and
+    sc1 = mid.getSummaryCtx1() and
+    sc2 = mid.getSummaryCtx2() and
+    sc3 = mid.getSummaryCtx3() and
     mid.getAp() instanceof RevPartialAccessPathNil and
     ap = TRevPartialNil() and
     config = mid.getConfiguration()
     or
     jumpStep(node, mid.getNodeEx(), config) and
+    state = mid.getState() and
     sc1 = TRevSummaryCtx1None() and
     sc2 = TRevSummaryCtx2None() and
+    sc3 = TRevSummaryCtx3None() and
     ap = mid.getAp() and
     config = mid.getConfiguration()
     or
     additionalJumpStep(node, mid.getNodeEx(), config) and
+    state = mid.getState() and
     sc1 = TRevSummaryCtx1None() and
     sc2 = TRevSummaryCtx2None() and
+    sc3 = TRevSummaryCtx3None() and
+    mid.getAp() instanceof RevPartialAccessPathNil and
+    ap = TRevPartialNil() and
+    config = mid.getConfiguration()
+    or
+    additionalJumpStateStep(node, state, mid.getNodeEx(), mid.getState(), config) and
+    sc1 = TRevSummaryCtx1None() and
+    sc2 = TRevSummaryCtx2None() and
+    sc3 = TRevSummaryCtx3None() and
     mid.getAp() instanceof RevPartialAccessPathNil and
     ap = TRevPartialNil() and
     config = mid.getConfiguration()
     or
     revPartialPathReadStep(mid, _, _, node, ap) and
+    state = mid.getState() and
     sc1 = mid.getSummaryCtx1() and
     sc2 = mid.getSummaryCtx2() and
+    sc3 = mid.getSummaryCtx3() and
     config = mid.getConfiguration()
     or
     exists(RevPartialAccessPath ap0, Content c |
       revPartialPathStoreStep(mid, ap0, c, node, config) and
+      state = mid.getState() and
       sc1 = mid.getSummaryCtx1() and
       sc2 = mid.getSummaryCtx2() and
+      sc3 = mid.getSummaryCtx3() and
       apConsRev(ap, c, ap0, config)
     )
     or
     exists(ParamNodeEx p |
       mid.getNodeEx() = p and
       viableParamArgEx(_, p, node) and
+      state = mid.getState() and
       sc1 = mid.getSummaryCtx1() and
       sc2 = mid.getSummaryCtx2() and
+      sc3 = mid.getSummaryCtx3() and
       sc1 = TRevSummaryCtx1None() and
       sc2 = TRevSummaryCtx2None() and
+      sc3 = TRevSummaryCtx3None() and
       ap = mid.getAp() and
       config = mid.getConfiguration()
     )
     or
     exists(ReturnPosition pos |
-      revPartialPathIntoReturn(mid, pos, sc1, sc2, _, ap, config) and
+      revPartialPathIntoReturn(mid, pos, state, sc1, sc2, sc3, _, ap, config) and
       pos = getReturnPosition(node.asNode())
     )
     or
-    revPartialPathThroughCallable(mid, node, ap, config) and
+    revPartialPathThroughCallable(mid, node, state, ap, config) and
     sc1 = mid.getSummaryCtx1() and
-    sc2 = mid.getSummaryCtx2()
+    sc2 = mid.getSummaryCtx2() and
+    sc3 = mid.getSummaryCtx3()
   }
 
   pragma[inline]
@@ -4643,14 +5345,17 @@ private module FlowExploration {
 
   pragma[nomagic]
   private predicate revPartialPathIntoReturn(
-    PartialPathNodeRev mid, ReturnPosition pos, TRevSummaryCtx1Some sc1, TRevSummaryCtx2Some sc2,
-    DataFlowCall call, RevPartialAccessPath ap, Configuration config
+    PartialPathNodeRev mid, ReturnPosition pos, FlowState state, TRevSummaryCtx1Some sc1,
+    TRevSummaryCtx2Some sc2, TRevSummaryCtx3Some sc3, DataFlowCall call, RevPartialAccessPath ap,
+    Configuration config
   ) {
     exists(NodeEx out |
       mid.getNodeEx() = out and
+      mid.getState() = state and
       viableReturnPosOutEx(call, pos, out) and
       sc1 = TRevSummaryCtx1Some(pos) and
-      sc2 = TRevSummaryCtx2Some(ap) and
+      sc2 = TRevSummaryCtx2Some(state) and
+      sc3 = TRevSummaryCtx3Some(ap) and
       ap = mid.getAp() and
       config = mid.getConfiguration()
     )
@@ -4658,36 +5363,40 @@ private module FlowExploration {
 
   pragma[nomagic]
   private predicate revPartialPathFlowsThrough(
-    int pos, TRevSummaryCtx1Some sc1, TRevSummaryCtx2Some sc2, RevPartialAccessPath ap,
-    Configuration config
+    ArgumentPosition apos, FlowState state, TRevSummaryCtx1Some sc1, TRevSummaryCtx2Some sc2,
+    TRevSummaryCtx3Some sc3, RevPartialAccessPath ap, Configuration config
   ) {
-    exists(PartialPathNodeRev mid, ParamNodeEx p |
+    exists(PartialPathNodeRev mid, ParamNodeEx p, ParameterPosition ppos |
       mid.getNodeEx() = p and
-      p.getPosition() = pos and
+      mid.getState() = state and
+      p.getPosition() = ppos and
       sc1 = mid.getSummaryCtx1() and
       sc2 = mid.getSummaryCtx2() and
+      sc3 = mid.getSummaryCtx3() and
       ap = mid.getAp() and
-      config = mid.getConfiguration()
+      config = mid.getConfiguration() and
+      parameterMatch(ppos, apos)
     )
   }
 
   pragma[nomagic]
   private predicate revPartialPathThroughCallable0(
-    DataFlowCall call, PartialPathNodeRev mid, int pos, RevPartialAccessPath ap,
-    Configuration config
+    DataFlowCall call, PartialPathNodeRev mid, ArgumentPosition pos, FlowState state,
+    RevPartialAccessPath ap, Configuration config
   ) {
-    exists(TRevSummaryCtx1Some sc1, TRevSummaryCtx2Some sc2 |
-      revPartialPathIntoReturn(mid, _, sc1, sc2, call, _, config) and
-      revPartialPathFlowsThrough(pos, sc1, sc2, ap, config)
+    exists(TRevSummaryCtx1Some sc1, TRevSummaryCtx2Some sc2, TRevSummaryCtx3Some sc3 |
+      revPartialPathIntoReturn(mid, _, _, sc1, sc2, sc3, call, _, config) and
+      revPartialPathFlowsThrough(pos, state, sc1, sc2, sc3, ap, config)
     )
   }
 
   pragma[nomagic]
   private predicate revPartialPathThroughCallable(
-    PartialPathNodeRev mid, ArgNodeEx node, RevPartialAccessPath ap, Configuration config
+    PartialPathNodeRev mid, ArgNodeEx node, FlowState state, RevPartialAccessPath ap,
+    Configuration config
   ) {
-    exists(DataFlowCall call, int pos |
-      revPartialPathThroughCallable0(call, mid, pos, ap, config) and
+    exists(DataFlowCall call, ArgumentPosition pos |
+      revPartialPathThroughCallable0(call, mid, pos, state, ap, config) and
       node.asNode().(ArgNode).argumentOf(call, pos)
     )
   }
diff --git a/go/ql/lib/semmle/go/dataflow/internal/DataFlowImpl2.qll b/go/ql/lib/semmle/go/dataflow/internal/DataFlowImpl2.qll
index 65408c9915a..a076f7a2e45 100644
--- a/go/ql/lib/semmle/go/dataflow/internal/DataFlowImpl2.qll
+++ b/go/ql/lib/semmle/go/dataflow/internal/DataFlowImpl2.qll
@@ -54,12 +54,23 @@ abstract class Configuration extends string {
   /**
    * Holds if `source` is a relevant data flow source.
    */
-  abstract predicate isSource(Node source);
+  predicate isSource(Node source) { none() }
+
+  /**
+   * Holds if `source` is a relevant data flow source with the given initial
+   * `state`.
+   */
+  predicate isSource(Node source, FlowState state) { none() }
 
   /**
    * Holds if `sink` is a relevant data flow sink.
    */
-  abstract predicate isSink(Node sink);
+  predicate isSink(Node sink) { none() }
+
+  /**
+   * Holds if `sink` is a relevant data flow sink accepting `state`.
+   */
+  predicate isSink(Node source, FlowState state) { none() }
 
   /**
    * Holds if data flow through `node` is prohibited. This completely removes
@@ -67,6 +78,12 @@ abstract class Configuration extends string {
    */
   predicate isBarrier(Node node) { none() }
 
+  /**
+   * Holds if data flow through `node` is prohibited when the flow state is
+   * `state`.
+   */
+  predicate isBarrier(Node node, FlowState state) { none() }
+
   /** Holds if data flow into `node` is prohibited. */
   predicate isBarrierIn(Node node) { none() }
 
@@ -81,16 +98,31 @@ abstract class Configuration extends string {
   deprecated predicate isBarrierGuard(BarrierGuard guard) { none() }
 
   /**
-   * Holds if the additional flow step from `node1` to `node2` must be taken
-   * into account in the analysis.
+   * DEPRECATED: Use `isBarrier` and `BarrierGuard` module instead.
+   *
+   * Holds if data flow through nodes guarded by `guard` is prohibited when
+   * the flow state is `state`
+   */
+  deprecated predicate isBarrierGuard(BarrierGuard guard, FlowState state) { none() }
+
+  /**
+   * Holds if data may flow from `node1` to `node2` in addition to the normal data-flow steps.
    */
   predicate isAdditionalFlowStep(Node node1, Node node2) { none() }
 
+  /**
+   * Holds if data may flow from `node1` to `node2` in addition to the normal data-flow steps.
+   * This step is only applicable in `state1` and updates the flow state to `state2`.
+   */
+  predicate isAdditionalFlowStep(Node node1, FlowState state1, Node node2, FlowState state2) {
+    none()
+  }
+
   /**
    * Holds if an arbitrary number of implicit read steps of content `c` may be
    * taken at `node`.
    */
-  predicate allowImplicitRead(Node node, Content c) { none() }
+  predicate allowImplicitRead(Node node, ContentSet c) { none() }
 
   /**
    * Gets the virtual dispatch branching limit when calculating field flow.
@@ -144,6 +176,14 @@ abstract class Configuration extends string {
    */
   int explorationLimit() { none() }
 
+  /**
+   * Holds if hidden nodes should be included in the data flow graph.
+   *
+   * This feature should only be used for debugging or when the data flow graph
+   * is not visualized (for example in a `path-problem` query).
+   */
+  predicate includeHiddenNodes() { none() }
+
   /**
    * Holds if there is a partial data flow path from `source` to `node`. The
    * approximate distance between `node` and the closest source is `dist` and
@@ -201,10 +241,16 @@ abstract private class ConfigurationRecursionPrevention extends Configuration {
   override predicate hasFlow(Node source, Node sink) {
     strictcount(Node n | this.isSource(n)) < 0
     or
+    strictcount(Node n | this.isSource(n, _)) < 0
+    or
     strictcount(Node n | this.isSink(n)) < 0
     or
+    strictcount(Node n | this.isSink(n, _)) < 0
+    or
     strictcount(Node n1, Node n2 | this.isAdditionalFlowStep(n1, n2)) < 0
     or
+    strictcount(Node n1, Node n2 | this.isAdditionalFlowStep(n1, _, n2, _)) < 0
+    or
     super.hasFlow(source, sink)
   }
 }
@@ -260,11 +306,11 @@ private class ArgNodeEx extends NodeEx {
 private class ParamNodeEx extends NodeEx {
   ParamNodeEx() { this.asNode() instanceof ParamNode }
 
-  predicate isParameterOf(DataFlowCallable c, int i) {
-    this.asNode().(ParamNode).isParameterOf(c, i)
+  predicate isParameterOf(DataFlowCallable c, ParameterPosition pos) {
+    this.asNode().(ParamNode).isParameterOf(c, pos)
   }
 
-  int getPosition() { this.isParameterOf(_, result) }
+  ParameterPosition getPosition() { this.isParameterOf(_, result) }
 
   predicate allowParameterReturnInSelf() { allowParameterReturnInSelfCached(this.asNode()) }
 }
@@ -280,22 +326,26 @@ private class RetNodeEx extends NodeEx {
 private predicate inBarrier(NodeEx node, Configuration config) {
   exists(Node n |
     node.asNode() = n and
-    config.isBarrierIn(n) and
-    config.isSource(n)
+    config.isBarrierIn(n)
+  |
+    config.isSource(n) or config.isSource(n, _)
   )
 }
 
 private predicate outBarrier(NodeEx node, Configuration config) {
   exists(Node n |
     node.asNode() = n and
-    config.isBarrierOut(n) and
-    config.isSink(n)
+    config.isBarrierOut(n)
+  |
+    config.isSink(n) or config.isSink(n, _)
   )
 }
 
 /** A bridge class to access the deprecated `isBarrierGuard`. */
 private class BarrierGuardGuardedNodeBridge extends Unit {
   abstract predicate guardedNode(Node n, Configuration config);
+
+  abstract predicate guardedNode(Node n, FlowState state, Configuration config);
 }
 
 private class BarrierGuardGuardedNode extends BarrierGuardGuardedNodeBridge {
@@ -305,6 +355,13 @@ private class BarrierGuardGuardedNode extends BarrierGuardGuardedNodeBridge {
       n = g.getAGuardedNode()
     )
   }
+
+  deprecated override predicate guardedNode(Node n, FlowState state, Configuration config) {
+    exists(BarrierGuard g |
+      config.isBarrierGuard(g, state) and
+      n = g.getAGuardedNode()
+    )
+  }
 }
 
 pragma[nomagic]
@@ -313,23 +370,47 @@ private predicate fullBarrier(NodeEx node, Configuration config) {
     config.isBarrier(n)
     or
     config.isBarrierIn(n) and
-    not config.isSource(n)
+    not config.isSource(n) and
+    not config.isSource(n, _)
     or
     config.isBarrierOut(n) and
-    not config.isSink(n)
+    not config.isSink(n) and
+    not config.isSink(n, _)
     or
     any(BarrierGuardGuardedNodeBridge b).guardedNode(n, config)
   )
 }
 
 pragma[nomagic]
-private predicate sourceNode(NodeEx node, Configuration config) {
-  config.isSource(node.asNode()) and
-  not fullBarrier(node, config)
+private predicate stateBarrier(NodeEx node, FlowState state, Configuration config) {
+  exists(Node n | node.asNode() = n |
+    config.isBarrier(n, state)
+    or
+    any(BarrierGuardGuardedNodeBridge b).guardedNode(n, state, config)
+  )
 }
 
 pragma[nomagic]
-private predicate sinkNode(NodeEx node, Configuration config) { config.isSink(node.asNode()) }
+private predicate sourceNode(NodeEx node, FlowState state, Configuration config) {
+  (
+    config.isSource(node.asNode()) and state instanceof FlowStateEmpty
+    or
+    config.isSource(node.asNode(), state)
+  ) and
+  not fullBarrier(node, config) and
+  not stateBarrier(node, state, config)
+}
+
+pragma[nomagic]
+private predicate sinkNode(NodeEx node, FlowState state, Configuration config) {
+  (
+    config.isSink(node.asNode()) and state instanceof FlowStateEmpty
+    or
+    config.isSink(node.asNode(), state)
+  ) and
+  not fullBarrier(node, config) and
+  not stateBarrier(node, state, config)
+}
 
 /** Provides the relevant barriers for a step from `node1` to `node2`. */
 pragma[inline]
@@ -347,7 +428,7 @@ private predicate localFlowStep(NodeEx node1, NodeEx node2, Configuration config
   exists(Node n1, Node n2 |
     node1.asNode() = n1 and
     node2.asNode() = n2 and
-    simpleLocalFlowStepExt(n1, n2) and
+    simpleLocalFlowStepExt(pragma[only_bind_into](n1), pragma[only_bind_into](n2)) and
     stepFilter(node1, node2, config)
   )
   or
@@ -366,7 +447,7 @@ private predicate additionalLocalFlowStep(NodeEx node1, NodeEx node2, Configurat
   exists(Node n1, Node n2 |
     node1.asNode() = n1 and
     node2.asNode() = n2 and
-    config.isAdditionalFlowStep(n1, n2) and
+    config.isAdditionalFlowStep(pragma[only_bind_into](n1), pragma[only_bind_into](n2)) and
     getNodeEnclosingCallable(n1) = getNodeEnclosingCallable(n2) and
     stepFilter(node1, node2, config)
   )
@@ -379,6 +460,20 @@ private predicate additionalLocalFlowStep(NodeEx node1, NodeEx node2, Configurat
   )
 }
 
+private predicate additionalLocalStateStep(
+  NodeEx node1, FlowState s1, NodeEx node2, FlowState s2, Configuration config
+) {
+  exists(Node n1, Node n2 |
+    node1.asNode() = n1 and
+    node2.asNode() = n2 and
+    config.isAdditionalFlowStep(pragma[only_bind_into](n1), s1, pragma[only_bind_into](n2), s2) and
+    getNodeEnclosingCallable(n1) = getNodeEnclosingCallable(n2) and
+    stepFilter(node1, node2, config) and
+    not stateBarrier(node1, s1, config) and
+    not stateBarrier(node2, s2, config)
+  )
+}
+
 /**
  * Holds if data can flow from `node1` to `node2` in a way that discards call contexts.
  */
@@ -386,7 +481,7 @@ private predicate jumpStep(NodeEx node1, NodeEx node2, Configuration config) {
   exists(Node n1, Node n2 |
     node1.asNode() = n1 and
     node2.asNode() = n2 and
-    jumpStepCached(n1, n2) and
+    jumpStepCached(pragma[only_bind_into](n1), pragma[only_bind_into](n2)) and
     stepFilter(node1, node2, config) and
     not config.getAFeature() instanceof FeatureEqualSourceSinkCallContext
   )
@@ -399,15 +494,31 @@ private predicate additionalJumpStep(NodeEx node1, NodeEx node2, Configuration c
   exists(Node n1, Node n2 |
     node1.asNode() = n1 and
     node2.asNode() = n2 and
-    config.isAdditionalFlowStep(n1, n2) and
+    config.isAdditionalFlowStep(pragma[only_bind_into](n1), pragma[only_bind_into](n2)) and
     getNodeEnclosingCallable(n1) != getNodeEnclosingCallable(n2) and
     stepFilter(node1, node2, config) and
     not config.getAFeature() instanceof FeatureEqualSourceSinkCallContext
   )
 }
 
-private predicate read(NodeEx node1, Content c, NodeEx node2, Configuration config) {
-  read(node1.asNode(), c, node2.asNode()) and
+private predicate additionalJumpStateStep(
+  NodeEx node1, FlowState s1, NodeEx node2, FlowState s2, Configuration config
+) {
+  exists(Node n1, Node n2 |
+    node1.asNode() = n1 and
+    node2.asNode() = n2 and
+    config.isAdditionalFlowStep(pragma[only_bind_into](n1), s1, pragma[only_bind_into](n2), s2) and
+    getNodeEnclosingCallable(n1) != getNodeEnclosingCallable(n2) and
+    stepFilter(node1, node2, config) and
+    not stateBarrier(node1, s1, config) and
+    not stateBarrier(node2, s2, config) and
+    not config.getAFeature() instanceof FeatureEqualSourceSinkCallContext
+  )
+}
+
+pragma[nomagic]
+private predicate readSet(NodeEx node1, ContentSet c, NodeEx node2, Configuration config) {
+  readSet(pragma[only_bind_into](node1.asNode()), c, pragma[only_bind_into](node2.asNode())) and
   stepFilter(node1, node2, config)
   or
   exists(Node n |
@@ -417,10 +528,42 @@ private predicate read(NodeEx node1, Content c, NodeEx node2, Configuration conf
   )
 }
 
+// inline to reduce fan-out via `getAReadContent`
+bindingset[c]
+private predicate read(NodeEx node1, Content c, NodeEx node2, Configuration config) {
+  exists(ContentSet cs |
+    readSet(node1, cs, node2, config) and
+    pragma[only_bind_out](c) = pragma[only_bind_into](cs).getAReadContent()
+  )
+}
+
+// inline to reduce fan-out via `getAReadContent`
+bindingset[c]
+private predicate clearsContentEx(NodeEx n, Content c) {
+  exists(ContentSet cs |
+    clearsContentCached(n.asNode(), cs) and
+    pragma[only_bind_out](c) = pragma[only_bind_into](cs).getAReadContent()
+  )
+}
+
+// inline to reduce fan-out via `getAReadContent`
+bindingset[c]
+private predicate expectsContentEx(NodeEx n, Content c) {
+  exists(ContentSet cs |
+    expectsContentCached(n.asNode(), cs) and
+    pragma[only_bind_out](c) = pragma[only_bind_into](cs).getAReadContent()
+  )
+}
+
+pragma[nomagic]
+private predicate notExpectsContent(NodeEx n) { not expectsContentCached(n.asNode(), _) }
+
+pragma[nomagic]
 private predicate store(
   NodeEx node1, TypedContent tc, NodeEx node2, DataFlowType contentType, Configuration config
 ) {
-  store(node1.asNode(), tc, node2.asNode(), contentType) and
+  store(pragma[only_bind_into](node1.asNode()), tc, pragma[only_bind_into](node2.asNode()),
+    contentType) and
   read(_, tc.getContent(), _, config) and
   stepFilter(node1, node2, config)
 }
@@ -471,29 +614,19 @@ private module Stage1 {
    * argument in a call.
    */
   predicate fwdFlow(NodeEx node, Cc cc, Configuration config) {
-    sourceNode(node, config) and
+    sourceNode(node, _, config) and
     if hasSourceCallCtx(config) then cc = true else cc = false
     or
-    exists(NodeEx mid |
-      fwdFlow(mid, cc, config) and
-      localFlowStep(mid, node, config)
+    exists(NodeEx mid | fwdFlow(mid, cc, config) |
+      localFlowStep(mid, node, config) or
+      additionalLocalFlowStep(mid, node, config) or
+      additionalLocalStateStep(mid, _, node, _, config)
     )
     or
-    exists(NodeEx mid |
-      fwdFlow(mid, cc, config) and
-      additionalLocalFlowStep(mid, node, config)
-    )
-    or
-    exists(NodeEx mid |
-      fwdFlow(mid, _, config) and
-      jumpStep(mid, node, config) and
-      cc = false
-    )
-    or
-    exists(NodeEx mid |
-      fwdFlow(mid, _, config) and
-      additionalJumpStep(mid, node, config) and
-      cc = false
+    exists(NodeEx mid | fwdFlow(mid, _, config) and cc = false |
+      jumpStep(mid, node, config) or
+      additionalJumpStep(mid, node, config) or
+      additionalJumpStateStep(mid, _, node, _, config)
     )
     or
     // store
@@ -504,9 +637,9 @@ private module Stage1 {
     )
     or
     // read
-    exists(Content c |
-      fwdFlowRead(c, node, cc, config) and
-      fwdFlowConsCand(c, config)
+    exists(ContentSet c |
+      fwdFlowReadSet(c, node, cc, config) and
+      fwdFlowConsCandSet(c, _, config)
     )
     or
     // flow into a callable
@@ -530,10 +663,10 @@ private module Stage1 {
   private predicate fwdFlow(NodeEx node, Configuration config) { fwdFlow(node, _, config) }
 
   pragma[nomagic]
-  private predicate fwdFlowRead(Content c, NodeEx node, Cc cc, Configuration config) {
+  private predicate fwdFlowReadSet(ContentSet c, NodeEx node, Cc cc, Configuration config) {
     exists(NodeEx mid |
       fwdFlow(mid, cc, config) and
-      read(mid, c, node, config)
+      readSet(mid, c, node, config)
     )
   }
 
@@ -551,6 +684,16 @@ private module Stage1 {
     )
   }
 
+  /**
+   * Holds if `cs` may be interpreted in a read as the target of some store
+   * into `c`, in the flow covered by `fwdFlow`.
+   */
+  pragma[nomagic]
+  private predicate fwdFlowConsCandSet(ContentSet cs, Content c, Configuration config) {
+    fwdFlowConsCand(c, config) and
+    c = cs.getAReadContent()
+  }
+
   pragma[nomagic]
   private predicate fwdFlowReturnPosition(ReturnPosition pos, Cc cc, Configuration config) {
     exists(RetNodeEx ret |
@@ -584,6 +727,24 @@ private module Stage1 {
     )
   }
 
+  private predicate stateStepFwd(FlowState state1, FlowState state2, Configuration config) {
+    exists(NodeEx node1 |
+      additionalLocalStateStep(node1, state1, _, state2, config) or
+      additionalJumpStateStep(node1, state1, _, state2, config)
+    |
+      fwdFlow(node1, config)
+    )
+  }
+
+  private predicate fwdFlowState(FlowState state, Configuration config) {
+    sourceNode(_, state, config)
+    or
+    exists(FlowState state0 |
+      fwdFlowState(state0, config) and
+      stateStepFwd(state0, state, config)
+    )
+  }
+
   /**
    * Holds if `node` is part of a path from a source to a sink in the
    * configuration `config`.
@@ -599,30 +760,23 @@ private module Stage1 {
 
   pragma[nomagic]
   private predicate revFlow0(NodeEx node, boolean toReturn, Configuration config) {
-    fwdFlow(node, config) and
-    sinkNode(node, config) and
-    if hasSinkCallCtx(config) then toReturn = true else toReturn = false
-    or
-    exists(NodeEx mid |
-      localFlowStep(node, mid, config) and
-      revFlow(mid, toReturn, config)
+    exists(FlowState state |
+      fwdFlow(node, pragma[only_bind_into](config)) and
+      sinkNode(node, state, config) and
+      fwdFlowState(state, pragma[only_bind_into](config)) and
+      if hasSinkCallCtx(config) then toReturn = true else toReturn = false
     )
     or
-    exists(NodeEx mid |
-      additionalLocalFlowStep(node, mid, config) and
-      revFlow(mid, toReturn, config)
+    exists(NodeEx mid | revFlow(mid, toReturn, config) |
+      localFlowStep(node, mid, config) or
+      additionalLocalFlowStep(node, mid, config) or
+      additionalLocalStateStep(node, _, mid, _, config)
     )
     or
-    exists(NodeEx mid |
-      jumpStep(node, mid, config) and
-      revFlow(mid, _, config) and
-      toReturn = false
-    )
-    or
-    exists(NodeEx mid |
-      additionalJumpStep(node, mid, config) and
-      revFlow(mid, _, config) and
-      toReturn = false
+    exists(NodeEx mid | revFlow(mid, _, config) and toReturn = false |
+      jumpStep(node, mid, config) or
+      additionalJumpStep(node, mid, config) or
+      additionalJumpStateStep(node, _, mid, _, config)
     )
     or
     // store
@@ -632,9 +786,9 @@ private module Stage1 {
     )
     or
     // read
-    exists(NodeEx mid, Content c |
-      read(node, c, mid, config) and
-      fwdFlowConsCand(c, pragma[only_bind_into](config)) and
+    exists(NodeEx mid, ContentSet c |
+      readSet(node, c, mid, config) and
+      fwdFlowConsCandSet(c, _, pragma[only_bind_into](config)) and
       revFlow(mid, toReturn, pragma[only_bind_into](config))
     )
     or
@@ -660,10 +814,10 @@ private module Stage1 {
    */
   pragma[nomagic]
   private predicate revFlowConsCand(Content c, Configuration config) {
-    exists(NodeEx mid, NodeEx node |
+    exists(NodeEx mid, NodeEx node, ContentSet cs |
       fwdFlow(node, pragma[only_bind_into](config)) and
-      read(node, c, mid, config) and
-      fwdFlowConsCand(c, pragma[only_bind_into](config)) and
+      readSet(node, cs, mid, config) and
+      fwdFlowConsCandSet(cs, c, pragma[only_bind_into](config)) and
       revFlow(pragma[only_bind_into](mid), _, pragma[only_bind_into](config))
     )
   }
@@ -682,7 +836,8 @@ private module Stage1 {
    * Holds if `c` is the target of both a read and a store in the flow covered
    * by `revFlow`.
    */
-  private predicate revFlowIsReadAndStored(Content c, Configuration conf) {
+  pragma[nomagic]
+  predicate revFlowIsReadAndStored(Content c, Configuration conf) {
     revFlowConsCand(c, conf) and
     revFlowStore(c, _, _, conf)
   }
@@ -739,6 +894,31 @@ private module Stage1 {
     )
   }
 
+  private predicate stateStepRev(FlowState state1, FlowState state2, Configuration config) {
+    exists(NodeEx node1, NodeEx node2 |
+      additionalLocalStateStep(node1, state1, node2, state2, config) or
+      additionalJumpStateStep(node1, state1, node2, state2, config)
+    |
+      revFlow(node1, _, pragma[only_bind_into](config)) and
+      revFlow(node2, _, pragma[only_bind_into](config)) and
+      fwdFlowState(state1, pragma[only_bind_into](config)) and
+      fwdFlowState(state2, pragma[only_bind_into](config))
+    )
+  }
+
+  predicate revFlowState(FlowState state, Configuration config) {
+    exists(NodeEx node |
+      sinkNode(node, state, config) and
+      revFlow(node, _, pragma[only_bind_into](config)) and
+      fwdFlowState(state, pragma[only_bind_into](config))
+    )
+    or
+    exists(FlowState state0 |
+      revFlowState(state0, config) and
+      stateStepRev(state, state0, config)
+    )
+  }
+
   pragma[nomagic]
   predicate storeStepCand(
     NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, DataFlowType contentType,
@@ -756,15 +936,21 @@ private module Stage1 {
   pragma[nomagic]
   predicate readStepCand(NodeEx n1, Content c, NodeEx n2, Configuration config) {
     revFlowIsReadAndStored(c, pragma[only_bind_into](config)) and
-    revFlow(n2, pragma[only_bind_into](config)) and
-    read(n1, c, n2, pragma[only_bind_into](config))
+    read(n1, c, n2, pragma[only_bind_into](config)) and
+    revFlow(n2, pragma[only_bind_into](config))
   }
 
   pragma[nomagic]
   predicate revFlow(NodeEx node, Configuration config) { revFlow(node, _, config) }
 
-  predicate revFlow(NodeEx node, boolean toReturn, ApOption returnAp, Ap ap, Configuration config) {
-    revFlow(node, toReturn, config) and exists(returnAp) and exists(ap)
+  bindingset[node, state, config]
+  predicate revFlow(
+    NodeEx node, FlowState state, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
+  ) {
+    revFlow(node, toReturn, pragma[only_bind_into](config)) and
+    exists(state) and
+    exists(returnAp) and
+    exists(ap)
   }
 
   private predicate throughFlowNodeCand(NodeEx node, Configuration config) {
@@ -815,17 +1001,21 @@ private module Stage1 {
     )
   }
 
-  predicate stats(boolean fwd, int nodes, int fields, int conscand, int tuples, Configuration config) {
+  predicate stats(
+    boolean fwd, int nodes, int fields, int conscand, int states, int tuples, Configuration config
+  ) {
     fwd = true and
     nodes = count(NodeEx node | fwdFlow(node, config)) and
     fields = count(Content f0 | fwdFlowConsCand(f0, config)) and
     conscand = -1 and
+    states = count(FlowState state | fwdFlowState(state, config)) and
     tuples = count(NodeEx n, boolean b | fwdFlow(n, b, config))
     or
     fwd = false and
     nodes = count(NodeEx node | revFlow(node, _, config)) and
     fields = count(Content f0 | revFlowConsCand(f0, config)) and
     conscand = -1 and
+    states = count(FlowState state | revFlowState(state, config)) and
     tuples = count(NodeEx n, boolean b | revFlow(n, b, config))
   }
   /* End: Stage 1 logic. */
@@ -1006,18 +1196,26 @@ private module Stage2 {
     if reducedViableImplInReturn(c, call) then result = TReturn(c, call) else result = ccNone()
   }
 
-  bindingset[node, cc, config]
-  private LocalCc getLocalCc(NodeEx node, Cc cc, Configuration config) { any() }
+  bindingset[node, cc]
+  private LocalCc getLocalCc(NodeEx node, Cc cc) { any() }
 
+  bindingset[node1, state1, config]
+  bindingset[node2, state2, config]
   private predicate localStep(
-    NodeEx node1, NodeEx node2, boolean preservesValue, ApNil ap, Configuration config, LocalCc lcc
+    NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
+    ApNil ap, Configuration config, LocalCc lcc
   ) {
     (
       preservesValue = true and
-      localFlowStepNodeCand1(node1, node2, config)
+      localFlowStepNodeCand1(node1, node2, config) and
+      state1 = state2
       or
       preservesValue = false and
-      additionalLocalFlowStepNodeCand1(node1, node2, config)
+      additionalLocalFlowStepNodeCand1(node1, node2, config) and
+      state1 = state2
+      or
+      preservesValue = false and
+      additionalLocalStateStep(node1, state1, node2, state2, config)
     ) and
     exists(ap) and
     exists(lcc)
@@ -1027,22 +1225,40 @@ private module Stage2 {
 
   private predicate flowIntoCall = flowIntoCallNodeCand1/5;
 
-  bindingset[node, ap]
-  private predicate filter(NodeEx node, Ap ap) { any() }
+  pragma[nomagic]
+  private predicate expectsContentCand(NodeEx node, Configuration config) {
+    exists(Content c |
+      PrevStage::revFlow(node, pragma[only_bind_into](config)) and
+      PrevStage::revFlowIsReadAndStored(c, pragma[only_bind_into](config)) and
+      expectsContentEx(node, c)
+    )
+  }
+
+  bindingset[node, state, ap, config]
+  private predicate filter(NodeEx node, FlowState state, Ap ap, Configuration config) {
+    PrevStage::revFlowState(state, pragma[only_bind_into](config)) and
+    exists(ap) and
+    not stateBarrier(node, state, config) and
+    (
+      notExpectsContent(node)
+      or
+      ap = true and
+      expectsContentCand(node, config)
+    )
+  }
 
   bindingset[ap, contentType]
   private predicate typecheckStore(Ap ap, DataFlowType contentType) { any() }
 
   /* Begin: Stage 2 logic. */
-  private predicate flowCand(NodeEx node, ApApprox apa, Configuration config) {
-    PrevStage::revFlow(node, _, _, apa, config)
+  bindingset[node, state, config]
+  private predicate flowCand(NodeEx node, FlowState state, ApApprox apa, Configuration config) {
+    PrevStage::revFlow(node, state, _, _, apa, config)
   }
 
   bindingset[result, apa]
   private ApApprox unbindApa(ApApprox apa) {
-    exists(ApApprox apa0 |
-      apa = pragma[only_bind_into](apa0) and result = pragma[only_bind_into](apa0)
-    )
+    pragma[only_bind_out](apa) = pragma[only_bind_out](result)
   }
 
   pragma[nomagic]
@@ -1066,63 +1282,70 @@ private module Stage2 {
    * argument.
    */
   pragma[nomagic]
-  predicate fwdFlow(NodeEx node, Cc cc, ApOption argAp, Ap ap, Configuration config) {
-    fwdFlow0(node, cc, argAp, ap, config) and
-    flowCand(node, unbindApa(getApprox(ap)), config) and
-    filter(node, ap)
+  predicate fwdFlow(NodeEx node, FlowState state, Cc cc, ApOption argAp, Ap ap, Configuration config) {
+    fwdFlow0(node, state, cc, argAp, ap, config) and
+    flowCand(node, state, unbindApa(getApprox(ap)), config) and
+    filter(node, state, ap, config)
   }
 
   pragma[nomagic]
-  private predicate fwdFlow0(NodeEx node, Cc cc, ApOption argAp, Ap ap, Configuration config) {
-    flowCand(node, _, config) and
-    sourceNode(node, config) and
+  private predicate fwdFlow0(
+    NodeEx node, FlowState state, Cc cc, ApOption argAp, Ap ap, Configuration config
+  ) {
+    sourceNode(node, state, config) and
     (if hasSourceCallCtx(config) then cc = ccSomeCall() else cc = ccNone()) and
     argAp = apNone() and
     ap = getApNil(node)
     or
-    exists(NodeEx mid, Ap ap0, LocalCc localCc |
-      fwdFlow(mid, cc, argAp, ap0, config) and
-      localCc = getLocalCc(mid, cc, config)
+    exists(NodeEx mid, FlowState state0, Ap ap0, LocalCc localCc |
+      fwdFlow(mid, state0, cc, argAp, ap0, config) and
+      localCc = getLocalCc(mid, cc)
     |
-      localStep(mid, node, true, _, config, localCc) and
+      localStep(mid, state0, node, state, true, _, config, localCc) and
       ap = ap0
       or
-      localStep(mid, node, false, ap, config, localCc) and
+      localStep(mid, state0, node, state, false, ap, config, localCc) and
       ap0 instanceof ApNil
     )
     or
     exists(NodeEx mid |
-      fwdFlow(mid, _, _, ap, pragma[only_bind_into](config)) and
-      flowCand(node, _, pragma[only_bind_into](config)) and
+      fwdFlow(mid, pragma[only_bind_into](state), _, _, ap, pragma[only_bind_into](config)) and
       jumpStep(mid, node, config) and
       cc = ccNone() and
       argAp = apNone()
     )
     or
     exists(NodeEx mid, ApNil nil |
-      fwdFlow(mid, _, _, nil, pragma[only_bind_into](config)) and
-      flowCand(node, _, pragma[only_bind_into](config)) and
+      fwdFlow(mid, state, _, _, nil, pragma[only_bind_into](config)) and
       additionalJumpStep(mid, node, config) and
       cc = ccNone() and
       argAp = apNone() and
       ap = getApNil(node)
     )
     or
+    exists(NodeEx mid, FlowState state0, ApNil nil |
+      fwdFlow(mid, state0, _, _, nil, pragma[only_bind_into](config)) and
+      additionalJumpStateStep(mid, state0, node, state, config) and
+      cc = ccNone() and
+      argAp = apNone() and
+      ap = getApNil(node)
+    )
+    or
     // store
     exists(TypedContent tc, Ap ap0 |
-      fwdFlowStore(_, ap0, tc, node, cc, argAp, config) and
+      fwdFlowStore(_, ap0, tc, node, state, cc, argAp, config) and
       ap = apCons(tc, ap0)
     )
     or
     // read
     exists(Ap ap0, Content c |
-      fwdFlowRead(ap0, c, _, node, cc, argAp, config) and
+      fwdFlowRead(ap0, c, _, node, state, cc, argAp, config) and
       fwdFlowConsCand(ap0, c, ap, config)
     )
     or
     // flow into a callable
     exists(ApApprox apa |
-      fwdFlowIn(_, node, _, cc, _, ap, config) and
+      fwdFlowIn(_, node, state, _, cc, _, ap, config) and
       apa = getApprox(ap) and
       if PrevStage::parameterMayFlowThrough(node, _, apa, config)
       then argAp = apSome(ap)
@@ -1130,20 +1353,21 @@ private module Stage2 {
     )
     or
     // flow out of a callable
-    fwdFlowOutNotFromArg(node, cc, argAp, ap, config)
+    fwdFlowOutNotFromArg(node, state, cc, argAp, ap, config)
     or
     exists(DataFlowCall call, Ap argAp0 |
-      fwdFlowOutFromArg(call, node, argAp0, ap, config) and
+      fwdFlowOutFromArg(call, node, state, argAp0, ap, config) and
       fwdFlowIsEntered(call, cc, argAp, argAp0, config)
     )
   }
 
   pragma[nomagic]
   private predicate fwdFlowStore(
-    NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, Cc cc, ApOption argAp, Configuration config
+    NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc, ApOption argAp,
+    Configuration config
   ) {
     exists(DataFlowType contentType |
-      fwdFlow(node1, cc, argAp, ap1, config) and
+      fwdFlow(node1, state, cc, argAp, ap1, config) and
       PrevStage::storeStepCand(node1, unbindApa(getApprox(ap1)), tc, node2, contentType, config) and
       typecheckStore(ap1, contentType)
     )
@@ -1156,7 +1380,7 @@ private module Stage2 {
   pragma[nomagic]
   private predicate fwdFlowConsCand(Ap cons, Content c, Ap tail, Configuration config) {
     exists(TypedContent tc |
-      fwdFlowStore(_, tail, tc, _, _, _, config) and
+      fwdFlowStore(_, tail, tc, _, _, _, _, config) and
       tc.getContent() = c and
       cons = apCons(tc, tail)
     )
@@ -1164,20 +1388,21 @@ private module Stage2 {
 
   pragma[nomagic]
   private predicate fwdFlowRead(
-    Ap ap, Content c, NodeEx node1, NodeEx node2, Cc cc, ApOption argAp, Configuration config
+    Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc, ApOption argAp,
+    Configuration config
   ) {
-    fwdFlow(node1, cc, argAp, ap, config) and
+    fwdFlow(node1, state, cc, argAp, ap, config) and
     PrevStage::readStepCand(node1, c, node2, config) and
     getHeadContent(ap) = c
   }
 
   pragma[nomagic]
   private predicate fwdFlowIn(
-    DataFlowCall call, ParamNodeEx p, Cc outercc, Cc innercc, ApOption argAp, Ap ap,
-    Configuration config
+    DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, Cc innercc, ApOption argAp,
+    Ap ap, Configuration config
   ) {
     exists(ArgNodeEx arg, boolean allowsFieldFlow |
-      fwdFlow(arg, outercc, argAp, ap, config) and
+      fwdFlow(arg, state, outercc, argAp, ap, config) and
       flowIntoCall(call, arg, p, allowsFieldFlow, config) and
       innercc = getCallContextCall(call, p.getEnclosingCallable(), outercc) and
       if allowsFieldFlow = false then ap instanceof ApNil else any()
@@ -1186,13 +1411,13 @@ private module Stage2 {
 
   pragma[nomagic]
   private predicate fwdFlowOutNotFromArg(
-    NodeEx out, Cc ccOut, ApOption argAp, Ap ap, Configuration config
+    NodeEx out, FlowState state, Cc ccOut, ApOption argAp, Ap ap, Configuration config
   ) {
     exists(
       DataFlowCall call, RetNodeEx ret, boolean allowsFieldFlow, CcNoCall innercc,
       DataFlowCallable inner
     |
-      fwdFlow(ret, innercc, argAp, ap, config) and
+      fwdFlow(ret, state, innercc, argAp, ap, config) and
       flowOutOfCall(call, ret, out, allowsFieldFlow, config) and
       inner = ret.getEnclosingCallable() and
       ccOut = getCallContextReturn(inner, call, innercc) and
@@ -1202,10 +1427,10 @@ private module Stage2 {
 
   pragma[nomagic]
   private predicate fwdFlowOutFromArg(
-    DataFlowCall call, NodeEx out, Ap argAp, Ap ap, Configuration config
+    DataFlowCall call, NodeEx out, FlowState state, Ap argAp, Ap ap, Configuration config
   ) {
     exists(RetNodeEx ret, boolean allowsFieldFlow, CcCall ccc |
-      fwdFlow(ret, ccc, apSome(argAp), ap, config) and
+      fwdFlow(ret, state, ccc, apSome(argAp), ap, config) and
       flowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, config) and
       if allowsFieldFlow = false then ap instanceof ApNil else any()
     )
@@ -1220,7 +1445,7 @@ private module Stage2 {
     DataFlowCall call, Cc cc, ApOption argAp, Ap ap, Configuration config
   ) {
     exists(ParamNodeEx p |
-      fwdFlowIn(call, p, cc, _, argAp, ap, config) and
+      fwdFlowIn(call, p, _, cc, _, argAp, ap, config) and
       PrevStage::parameterMayFlowThrough(p, _, unbindApa(getApprox(ap)), config)
     )
   }
@@ -1229,24 +1454,24 @@ private module Stage2 {
   private predicate storeStepFwd(
     NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, Ap ap2, Configuration config
   ) {
-    fwdFlowStore(node1, ap1, tc, node2, _, _, config) and
+    fwdFlowStore(node1, ap1, tc, node2, _, _, _, config) and
     ap2 = apCons(tc, ap1) and
-    fwdFlowRead(ap2, tc.getContent(), _, _, _, _, config)
+    fwdFlowRead(ap2, tc.getContent(), _, _, _, _, _, config)
   }
 
   private predicate readStepFwd(
     NodeEx n1, Ap ap1, Content c, NodeEx n2, Ap ap2, Configuration config
   ) {
-    fwdFlowRead(ap1, c, n1, n2, _, _, config) and
+    fwdFlowRead(ap1, c, n1, n2, _, _, _, config) and
     fwdFlowConsCand(ap1, c, ap2, config)
   }
 
   pragma[nomagic]
   private predicate callMayFlowThroughFwd(DataFlowCall call, Configuration config) {
-    exists(Ap argAp0, NodeEx out, Cc cc, ApOption argAp, Ap ap |
-      fwdFlow(out, pragma[only_bind_into](cc), pragma[only_bind_into](argAp), ap,
+    exists(Ap argAp0, NodeEx out, FlowState state, Cc cc, ApOption argAp, Ap ap |
+      fwdFlow(out, state, pragma[only_bind_into](cc), pragma[only_bind_into](argAp), ap,
         pragma[only_bind_into](config)) and
-      fwdFlowOutFromArg(call, out, argAp0, ap, config) and
+      fwdFlowOutFromArg(call, out, state, argAp0, ap, config) and
       fwdFlowIsEntered(pragma[only_bind_into](call), pragma[only_bind_into](cc),
         pragma[only_bind_into](argAp), pragma[only_bind_into](argAp0),
         pragma[only_bind_into](config))
@@ -1258,14 +1483,16 @@ private module Stage2 {
     DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
   ) {
     flowIntoCall(call, arg, p, allowsFieldFlow, config) and
-    fwdFlow(arg, _, _, _, pragma[only_bind_into](config)) and
+    fwdFlow(arg, _, _, _, _, pragma[only_bind_into](config)) and
     PrevStage::parameterMayFlowThrough(p, _, _, pragma[only_bind_into](config)) and
     callMayFlowThroughFwd(call, pragma[only_bind_into](config))
   }
 
   pragma[nomagic]
-  private predicate returnNodeMayFlowThrough(RetNodeEx ret, Ap ap, Configuration config) {
-    fwdFlow(ret, any(CcCall ccc), apSome(_), ap, config)
+  private predicate returnNodeMayFlowThrough(
+    RetNodeEx ret, FlowState state, Ap ap, Configuration config
+  ) {
+    fwdFlow(ret, state, any(CcCall ccc), apSome(_), ap, config)
   }
 
   /**
@@ -1277,44 +1504,56 @@ private module Stage2 {
    * the access path of the returned value.
    */
   pragma[nomagic]
-  predicate revFlow(NodeEx node, boolean toReturn, ApOption returnAp, Ap ap, Configuration config) {
-    revFlow0(node, toReturn, returnAp, ap, config) and
-    fwdFlow(node, _, _, ap, config)
+  predicate revFlow(
+    NodeEx node, FlowState state, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
+  ) {
+    revFlow0(node, state, toReturn, returnAp, ap, config) and
+    fwdFlow(node, state, _, _, ap, config)
   }
 
   pragma[nomagic]
   private predicate revFlow0(
-    NodeEx node, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
+    NodeEx node, FlowState state, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
   ) {
-    fwdFlow(node, _, _, ap, config) and
-    sinkNode(node, config) and
+    fwdFlow(node, state, _, _, ap, config) and
+    sinkNode(node, state, config) and
     (if hasSinkCallCtx(config) then toReturn = true else toReturn = false) and
     returnAp = apNone() and
     ap instanceof ApNil
     or
-    exists(NodeEx mid |
-      localStep(node, mid, true, _, config, _) and
-      revFlow(mid, toReturn, returnAp, ap, config)
+    exists(NodeEx mid, FlowState state0 |
+      localStep(node, state, mid, state0, true, _, config, _) and
+      revFlow(mid, state0, toReturn, returnAp, ap, config)
     )
     or
-    exists(NodeEx mid, ApNil nil |
-      fwdFlow(node, _, _, ap, pragma[only_bind_into](config)) and
-      localStep(node, mid, false, _, config, _) and
-      revFlow(mid, toReturn, returnAp, nil, pragma[only_bind_into](config)) and
+    exists(NodeEx mid, FlowState state0, ApNil nil |
+      fwdFlow(node, pragma[only_bind_into](state), _, _, ap, pragma[only_bind_into](config)) and
+      localStep(node, pragma[only_bind_into](state), mid, state0, false, _, config, _) and
+      revFlow(mid, state0, toReturn, returnAp, nil, pragma[only_bind_into](config)) and
       ap instanceof ApNil
     )
     or
     exists(NodeEx mid |
       jumpStep(node, mid, config) and
-      revFlow(mid, _, _, ap, config) and
+      revFlow(mid, state, _, _, ap, config) and
       toReturn = false and
       returnAp = apNone()
     )
     or
     exists(NodeEx mid, ApNil nil |
-      fwdFlow(node, _, _, ap, pragma[only_bind_into](config)) and
+      fwdFlow(node, _, _, _, ap, pragma[only_bind_into](config)) and
       additionalJumpStep(node, mid, config) and
-      revFlow(pragma[only_bind_into](mid), _, _, nil, pragma[only_bind_into](config)) and
+      revFlow(pragma[only_bind_into](mid), state, _, _, nil, pragma[only_bind_into](config)) and
+      toReturn = false and
+      returnAp = apNone() and
+      ap instanceof ApNil
+    )
+    or
+    exists(NodeEx mid, FlowState state0, ApNil nil |
+      fwdFlow(node, _, _, _, ap, pragma[only_bind_into](config)) and
+      additionalJumpStateStep(node, state, mid, state0, config) and
+      revFlow(pragma[only_bind_into](mid), pragma[only_bind_into](state0), _, _, nil,
+        pragma[only_bind_into](config)) and
       toReturn = false and
       returnAp = apNone() and
       ap instanceof ApNil
@@ -1322,39 +1561,39 @@ private module Stage2 {
     or
     // store
     exists(Ap ap0, Content c |
-      revFlowStore(ap0, c, ap, node, _, _, toReturn, returnAp, config) and
+      revFlowStore(ap0, c, ap, node, state, _, _, toReturn, returnAp, config) and
       revFlowConsCand(ap0, c, ap, config)
     )
     or
     // read
     exists(NodeEx mid, Ap ap0 |
-      revFlow(mid, toReturn, returnAp, ap0, config) and
+      revFlow(mid, state, toReturn, returnAp, ap0, config) and
       readStepFwd(node, ap, _, mid, ap0, config)
     )
     or
     // flow into a callable
-    revFlowInNotToReturn(node, returnAp, ap, config) and
+    revFlowInNotToReturn(node, state, returnAp, ap, config) and
     toReturn = false
     or
     exists(DataFlowCall call, Ap returnAp0 |
-      revFlowInToReturn(call, node, returnAp0, ap, config) and
+      revFlowInToReturn(call, node, state, returnAp0, ap, config) and
       revFlowIsReturned(call, toReturn, returnAp, returnAp0, config)
     )
     or
     // flow out of a callable
-    revFlowOut(_, node, _, _, ap, config) and
+    revFlowOut(_, node, state, _, _, ap, config) and
     toReturn = true and
-    if returnNodeMayFlowThrough(node, ap, config)
+    if returnNodeMayFlowThrough(node, state, ap, config)
     then returnAp = apSome(ap)
     else returnAp = apNone()
   }
 
   pragma[nomagic]
   private predicate revFlowStore(
-    Ap ap0, Content c, Ap ap, NodeEx node, TypedContent tc, NodeEx mid, boolean toReturn,
-    ApOption returnAp, Configuration config
+    Ap ap0, Content c, Ap ap, NodeEx node, FlowState state, TypedContent tc, NodeEx mid,
+    boolean toReturn, ApOption returnAp, Configuration config
   ) {
-    revFlow(mid, toReturn, returnAp, ap0, config) and
+    revFlow(mid, state, toReturn, returnAp, ap0, config) and
     storeStepFwd(node, ap, tc, mid, ap0, config) and
     tc.getContent() = c
   }
@@ -1366,7 +1605,7 @@ private module Stage2 {
   pragma[nomagic]
   private predicate revFlowConsCand(Ap cons, Content c, Ap tail, Configuration config) {
     exists(NodeEx mid, Ap tail0 |
-      revFlow(mid, _, _, tail, config) and
+      revFlow(mid, _, _, _, tail, config) and
       tail = pragma[only_bind_into](tail0) and
       readStepFwd(_, cons, c, mid, tail0, config)
     )
@@ -1374,11 +1613,11 @@ private module Stage2 {
 
   pragma[nomagic]
   private predicate revFlowOut(
-    DataFlowCall call, RetNodeEx ret, boolean toReturn, ApOption returnAp, Ap ap,
+    DataFlowCall call, RetNodeEx ret, FlowState state, boolean toReturn, ApOption returnAp, Ap ap,
     Configuration config
   ) {
     exists(NodeEx out, boolean allowsFieldFlow |
-      revFlow(out, toReturn, returnAp, ap, config) and
+      revFlow(out, state, toReturn, returnAp, ap, config) and
       flowOutOfCall(call, ret, out, allowsFieldFlow, config) and
       if allowsFieldFlow = false then ap instanceof ApNil else any()
     )
@@ -1386,10 +1625,10 @@ private module Stage2 {
 
   pragma[nomagic]
   private predicate revFlowInNotToReturn(
-    ArgNodeEx arg, ApOption returnAp, Ap ap, Configuration config
+    ArgNodeEx arg, FlowState state, ApOption returnAp, Ap ap, Configuration config
   ) {
     exists(ParamNodeEx p, boolean allowsFieldFlow |
-      revFlow(p, false, returnAp, ap, config) and
+      revFlow(p, state, false, returnAp, ap, config) and
       flowIntoCall(_, arg, p, allowsFieldFlow, config) and
       if allowsFieldFlow = false then ap instanceof ApNil else any()
     )
@@ -1397,10 +1636,10 @@ private module Stage2 {
 
   pragma[nomagic]
   private predicate revFlowInToReturn(
-    DataFlowCall call, ArgNodeEx arg, Ap returnAp, Ap ap, Configuration config
+    DataFlowCall call, ArgNodeEx arg, FlowState state, Ap returnAp, Ap ap, Configuration config
   ) {
     exists(ParamNodeEx p, boolean allowsFieldFlow |
-      revFlow(p, true, apSome(returnAp), ap, config) and
+      revFlow(p, state, true, apSome(returnAp), ap, config) and
       flowThroughIntoCall(call, arg, p, allowsFieldFlow, config) and
       if allowsFieldFlow = false then ap instanceof ApNil else any()
     )
@@ -1415,9 +1654,9 @@ private module Stage2 {
   private predicate revFlowIsReturned(
     DataFlowCall call, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
   ) {
-    exists(RetNodeEx ret, CcCall ccc |
-      revFlowOut(call, ret, toReturn, returnAp, ap, config) and
-      fwdFlow(ret, ccc, apSome(_), ap, config) and
+    exists(RetNodeEx ret, FlowState state, CcCall ccc |
+      revFlowOut(call, ret, state, toReturn, returnAp, ap, config) and
+      fwdFlow(ret, state, ccc, apSome(_), ap, config) and
       ccc.matchesCall(call)
     )
   }
@@ -1428,46 +1667,77 @@ private module Stage2 {
     Configuration config
   ) {
     exists(Ap ap2, Content c |
-      store(node1, tc, node2, contentType, config) and
-      revFlowStore(ap2, c, ap1, node1, tc, node2, _, _, config) and
+      PrevStage::storeStepCand(node1, _, tc, node2, contentType, config) and
+      revFlowStore(ap2, c, ap1, node1, _, tc, node2, _, _, config) and
       revFlowConsCand(ap2, c, ap1, config)
     )
   }
 
   predicate readStepCand(NodeEx node1, Content c, NodeEx node2, Configuration config) {
     exists(Ap ap1, Ap ap2 |
-      revFlow(node2, _, _, pragma[only_bind_into](ap2), pragma[only_bind_into](config)) and
+      revFlow(node2, _, _, _, pragma[only_bind_into](ap2), pragma[only_bind_into](config)) and
       readStepFwd(node1, ap1, c, node2, ap2, config) and
-      revFlowStore(ap1, c, pragma[only_bind_into](ap2), _, _, _, _, _,
+      revFlowStore(ap1, c, pragma[only_bind_into](ap2), _, _, _, _, _, _,
         pragma[only_bind_into](config))
     )
   }
 
-  predicate revFlow(NodeEx node, Configuration config) { revFlow(node, _, _, _, config) }
+  predicate revFlow(NodeEx node, FlowState state, Configuration config) {
+    revFlow(node, state, _, _, _, config)
+  }
+
+  pragma[nomagic]
+  predicate revFlow(NodeEx node, Configuration config) { revFlow(node, _, _, _, _, config) }
+
+  // use an alias as a workaround for bad functionality-induced joins
+  pragma[nomagic]
+  predicate revFlowAlias(NodeEx node, Configuration config) { revFlow(node, _, _, _, _, config) }
+
+  // use an alias as a workaround for bad functionality-induced joins
+  pragma[nomagic]
+  predicate revFlowAlias(
+    NodeEx node, FlowState state, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
+  ) {
+    revFlow(node, state, toReturn, returnAp, ap, config)
+  }
 
   private predicate fwdConsCand(TypedContent tc, Ap ap, Configuration config) {
     storeStepFwd(_, ap, tc, _, _, config)
   }
 
-  predicate consCand(TypedContent tc, Ap ap, Configuration config) {
+  private predicate revConsCand(TypedContent tc, Ap ap, Configuration config) {
     storeStepCand(_, ap, tc, _, _, config)
   }
 
+  private predicate validAp(Ap ap, Configuration config) {
+    revFlow(_, _, _, _, ap, config) and ap instanceof ApNil
+    or
+    exists(TypedContent head, Ap tail |
+      consCand(head, tail, config) and
+      ap = apCons(head, tail)
+    )
+  }
+
+  predicate consCand(TypedContent tc, Ap ap, Configuration config) {
+    revConsCand(tc, ap, config) and
+    validAp(ap, config)
+  }
+
   pragma[noinline]
   private predicate parameterFlow(
     ParamNodeEx p, Ap ap, Ap ap0, DataFlowCallable c, Configuration config
   ) {
-    revFlow(p, true, apSome(ap0), ap, config) and
+    revFlow(p, _, true, apSome(ap0), ap, config) and
     c = p.getEnclosingCallable()
   }
 
   predicate parameterMayFlowThrough(ParamNodeEx p, DataFlowCallable c, Ap ap, Configuration config) {
-    exists(RetNodeEx ret, Ap ap0, ReturnKindExt kind, int pos |
+    exists(RetNodeEx ret, FlowState state, Ap ap0, ReturnKindExt kind, ParameterPosition pos |
       parameterFlow(p, ap, ap0, c, config) and
       c = ret.getEnclosingCallable() and
-      revFlow(pragma[only_bind_into](ret), true, apSome(_), pragma[only_bind_into](ap0),
-        pragma[only_bind_into](config)) and
-      fwdFlow(ret, any(CcCall ccc), apSome(ap), ap0, config) and
+      revFlow(pragma[only_bind_into](ret), pragma[only_bind_into](state), true, apSome(_),
+        pragma[only_bind_into](ap0), pragma[only_bind_into](config)) and
+      fwdFlow(ret, state, any(CcCall ccc), apSome(ap), ap0, config) and
       kind = ret.getKind() and
       p.getPosition() = pos and
       // we don't expect a parameter to return stored in itself, unless explicitly allowed
@@ -1481,25 +1751,37 @@ private module Stage2 {
 
   pragma[nomagic]
   predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
-    exists(Ap returnAp0, ArgNodeEx arg, boolean toReturn, ApOption returnAp, Ap ap |
-      revFlow(arg, toReturn, returnAp, ap, config) and
-      revFlowInToReturn(call, arg, returnAp0, ap, config) and
+    exists(
+      Ap returnAp0, ArgNodeEx arg, FlowState state, boolean toReturn, ApOption returnAp, Ap ap
+    |
+      revFlow(arg, state, toReturn, returnAp, ap, config) and
+      revFlowInToReturn(call, arg, state, returnAp0, ap, config) and
       revFlowIsReturned(call, toReturn, returnAp, returnAp0, config)
     )
   }
 
-  predicate stats(boolean fwd, int nodes, int fields, int conscand, int tuples, Configuration config) {
+  predicate stats(
+    boolean fwd, int nodes, int fields, int conscand, int states, int tuples, Configuration config
+  ) {
     fwd = true and
-    nodes = count(NodeEx node | fwdFlow(node, _, _, _, config)) and
+    nodes = count(NodeEx node | fwdFlow(node, _, _, _, _, config)) and
     fields = count(TypedContent f0 | fwdConsCand(f0, _, config)) and
     conscand = count(TypedContent f0, Ap ap | fwdConsCand(f0, ap, config)) and
-    tuples = count(NodeEx n, Cc cc, ApOption argAp, Ap ap | fwdFlow(n, cc, argAp, ap, config))
+    states = count(FlowState state | fwdFlow(_, state, _, _, _, config)) and
+    tuples =
+      count(NodeEx n, FlowState state, Cc cc, ApOption argAp, Ap ap |
+        fwdFlow(n, state, cc, argAp, ap, config)
+      )
     or
     fwd = false and
-    nodes = count(NodeEx node | revFlow(node, _, _, _, config)) and
+    nodes = count(NodeEx node | revFlow(node, _, _, _, _, config)) and
     fields = count(TypedContent f0 | consCand(f0, _, config)) and
     conscand = count(TypedContent f0, Ap ap | consCand(f0, ap, config)) and
-    tuples = count(NodeEx n, boolean b, ApOption retAp, Ap ap | revFlow(n, b, retAp, ap, config))
+    states = count(FlowState state | revFlow(_, state, _, _, _, config)) and
+    tuples =
+      count(NodeEx n, FlowState state, boolean b, ApOption retAp, Ap ap |
+        revFlow(n, state, b, retAp, ap, config)
+      )
   }
   /* End: Stage 2 logic. */
 }
@@ -1510,7 +1792,7 @@ private predicate flowOutOfCallNodeCand2(
 ) {
   flowOutOfCallNodeCand1(call, node1, node2, allowsFieldFlow, config) and
   Stage2::revFlow(node2, pragma[only_bind_into](config)) and
-  Stage2::revFlow(node1, pragma[only_bind_into](config))
+  Stage2::revFlowAlias(node1, pragma[only_bind_into](config))
 }
 
 pragma[nomagic]
@@ -1520,7 +1802,7 @@ private predicate flowIntoCallNodeCand2(
 ) {
   flowIntoCallNodeCand1(call, node1, node2, allowsFieldFlow, config) and
   Stage2::revFlow(node2, pragma[only_bind_into](config)) and
-  Stage2::revFlow(node1, pragma[only_bind_into](config))
+  Stage2::revFlowAlias(node1, pragma[only_bind_into](config))
 }
 
 private module LocalFlowBigStep {
@@ -1531,7 +1813,8 @@ private module LocalFlowBigStep {
   private class FlowCheckNode extends NodeEx {
     FlowCheckNode() {
       castNode(this.asNode()) or
-      clearsContentCached(this.asNode(), _)
+      clearsContentCached(this.asNode(), _) or
+      expectsContentCached(this.asNode(), _)
     }
   }
 
@@ -1539,17 +1822,31 @@ private module LocalFlowBigStep {
    * Holds if `node` can be the first node in a maximal subsequence of local
    * flow steps in a dataflow path.
    */
-  predicate localFlowEntry(NodeEx node, Configuration config) {
-    Stage2::revFlow(node, config) and
+  private predicate localFlowEntry(NodeEx node, FlowState state, Configuration config) {
+    Stage2::revFlow(node, state, config) and
     (
-      sourceNode(node, config) or
-      jumpStep(_, node, config) or
-      additionalJumpStep(_, node, config) or
-      node instanceof ParamNodeEx or
-      node.asNode() instanceof OutNodeExt or
-      store(_, _, node, _, config) or
-      read(_, _, node, config) or
+      sourceNode(node, state, config)
+      or
+      jumpStep(_, node, config)
+      or
+      additionalJumpStep(_, node, config)
+      or
+      additionalJumpStateStep(_, _, node, state, config)
+      or
+      node instanceof ParamNodeEx
+      or
+      node.asNode() instanceof OutNodeExt
+      or
+      Stage2::storeStepCand(_, _, _, node, _, config)
+      or
+      Stage2::readStepCand(_, _, node, config)
+      or
       node instanceof FlowCheckNode
+      or
+      exists(FlowState s |
+        additionalLocalStateStep(_, s, node, state, config) and
+        s != state
+      )
     )
   }
 
@@ -1557,28 +1854,43 @@ private module LocalFlowBigStep {
    * Holds if `node` can be the last node in a maximal subsequence of local
    * flow steps in a dataflow path.
    */
-  private predicate localFlowExit(NodeEx node, Configuration config) {
-    exists(NodeEx next | Stage2::revFlow(next, config) |
+  private predicate localFlowExit(NodeEx node, FlowState state, Configuration config) {
+    exists(NodeEx next | Stage2::revFlow(next, state, config) |
       jumpStep(node, next, config) or
       additionalJumpStep(node, next, config) or
       flowIntoCallNodeCand1(_, node, next, config) or
       flowOutOfCallNodeCand1(_, node, next, config) or
-      store(node, _, next, _, config) or
-      read(node, _, next, config)
+      Stage2::storeStepCand(node, _, _, next, _, config) or
+      Stage2::readStepCand(node, _, next, config)
     )
     or
+    exists(NodeEx next, FlowState s | Stage2::revFlow(next, s, config) |
+      additionalJumpStateStep(node, state, next, s, config)
+      or
+      additionalLocalStateStep(node, state, next, s, config) and
+      s != state
+    )
+    or
+    Stage2::revFlow(node, state, config) and
     node instanceof FlowCheckNode
     or
-    sinkNode(node, config)
+    sinkNode(node, state, config)
   }
 
   pragma[noinline]
   private predicate additionalLocalFlowStepNodeCand2(
-    NodeEx node1, NodeEx node2, Configuration config
+    NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, Configuration config
   ) {
     additionalLocalFlowStepNodeCand1(node1, node2, config) and
-    Stage2::revFlow(node1, _, _, false, pragma[only_bind_into](config)) and
-    Stage2::revFlow(node2, _, _, false, pragma[only_bind_into](config))
+    state1 = state2 and
+    Stage2::revFlow(node1, pragma[only_bind_into](state1), _, _, false,
+      pragma[only_bind_into](config)) and
+    Stage2::revFlowAlias(node2, pragma[only_bind_into](state2), _, _, false,
+      pragma[only_bind_into](config))
+    or
+    additionalLocalStateStep(node1, state1, node2, state2, config) and
+    Stage2::revFlow(node1, state1, _, _, false, pragma[only_bind_into](config)) and
+    Stage2::revFlowAlias(node2, state2, _, _, false, pragma[only_bind_into](config))
   }
 
   /**
@@ -1590,40 +1902,40 @@ private module LocalFlowBigStep {
    */
   pragma[nomagic]
   private predicate localFlowStepPlus(
-    NodeEx node1, NodeEx node2, boolean preservesValue, DataFlowType t, Configuration config,
-    LocalCallContext cc
+    NodeEx node1, FlowState state, NodeEx node2, boolean preservesValue, DataFlowType t,
+    Configuration config, LocalCallContext cc
   ) {
     not isUnreachableInCallCached(node2.asNode(), cc.(LocalCallContextSpecificCall).getCall()) and
     (
-      localFlowEntry(node1, pragma[only_bind_into](config)) and
+      localFlowEntry(node1, pragma[only_bind_into](state), pragma[only_bind_into](config)) and
       (
         localFlowStepNodeCand1(node1, node2, config) and
         preservesValue = true and
-        t = node1.getDataFlowType() // irrelevant dummy value
+        t = node1.getDataFlowType() and // irrelevant dummy value
+        Stage2::revFlow(node2, pragma[only_bind_into](state), pragma[only_bind_into](config))
         or
-        additionalLocalFlowStepNodeCand2(node1, node2, config) and
+        additionalLocalFlowStepNodeCand2(node1, state, node2, state, config) and
         preservesValue = false and
         t = node2.getDataFlowType()
       ) and
       node1 != node2 and
       cc.relevantFor(node1.getEnclosingCallable()) and
-      not isUnreachableInCallCached(node1.asNode(), cc.(LocalCallContextSpecificCall).getCall()) and
-      Stage2::revFlow(node2, pragma[only_bind_into](config))
+      not isUnreachableInCallCached(node1.asNode(), cc.(LocalCallContextSpecificCall).getCall())
       or
       exists(NodeEx mid |
-        localFlowStepPlus(node1, mid, preservesValue, t, pragma[only_bind_into](config), cc) and
+        localFlowStepPlus(node1, pragma[only_bind_into](state), mid, preservesValue, t,
+          pragma[only_bind_into](config), cc) and
         localFlowStepNodeCand1(mid, node2, config) and
         not mid instanceof FlowCheckNode and
-        Stage2::revFlow(node2, pragma[only_bind_into](config))
+        Stage2::revFlow(node2, pragma[only_bind_into](state), pragma[only_bind_into](config))
       )
       or
       exists(NodeEx mid |
-        localFlowStepPlus(node1, mid, _, _, pragma[only_bind_into](config), cc) and
-        additionalLocalFlowStepNodeCand2(mid, node2, config) and
+        localFlowStepPlus(node1, state, mid, _, _, pragma[only_bind_into](config), cc) and
+        additionalLocalFlowStepNodeCand2(mid, state, node2, state, config) and
         not mid instanceof FlowCheckNode and
         preservesValue = false and
-        t = node2.getDataFlowType() and
-        Stage2::revFlow(node2, pragma[only_bind_into](config))
+        t = node2.getDataFlowType()
       )
     )
   }
@@ -1634,11 +1946,22 @@ private module LocalFlowBigStep {
    */
   pragma[nomagic]
   predicate localFlowBigStep(
-    NodeEx node1, NodeEx node2, boolean preservesValue, AccessPathFrontNil apf,
-    Configuration config, LocalCallContext callContext
+    NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
+    AccessPathFrontNil apf, Configuration config, LocalCallContext callContext
   ) {
-    localFlowStepPlus(node1, node2, preservesValue, apf.getType(), config, callContext) and
-    localFlowExit(node2, config)
+    localFlowStepPlus(node1, state1, node2, preservesValue, apf.getType(), config, callContext) and
+    localFlowExit(node2, state1, config) and
+    state1 = state2
+    or
+    additionalLocalFlowStepNodeCand2(node1, state1, node2, state2, config) and
+    state1 != state2 and
+    preservesValue = false and
+    apf = TFrontNil(node2.getDataFlowType()) and
+    callContext.relevantFor(node1.getEnclosingCallable()) and
+    not exists(DataFlowCall call | call = callContext.(LocalCallContextSpecificCall).getCall() |
+      isUnreachableInCallCached(node1.asNode(), call) or
+      isUnreachableInCallCached(node2.asNode(), call)
+    )
   }
 }
 
@@ -1696,13 +2019,14 @@ private module Stage3 {
   bindingset[call, c, innercc]
   private CcNoCall getCallContextReturn(DataFlowCallable c, DataFlowCall call, Cc innercc) { any() }
 
-  bindingset[node, cc, config]
-  private LocalCc getLocalCc(NodeEx node, Cc cc, Configuration config) { any() }
+  bindingset[node, cc]
+  private LocalCc getLocalCc(NodeEx node, Cc cc) { any() }
 
   private predicate localStep(
-    NodeEx node1, NodeEx node2, boolean preservesValue, ApNil ap, Configuration config, LocalCc lcc
+    NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
+    ApNil ap, Configuration config, LocalCc lcc
   ) {
-    localFlowBigStep(node1, node2, preservesValue, ap, config, _) and exists(lcc)
+    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap, config, _) and exists(lcc)
   }
 
   private predicate flowOutOfCall = flowOutOfCallNodeCand2/5;
@@ -1710,15 +2034,49 @@ private module Stage3 {
   private predicate flowIntoCall = flowIntoCallNodeCand2/5;
 
   pragma[nomagic]
-  private predicate clear(NodeEx node, Ap ap) { ap.isClearedAt(node.asNode()) }
+  private predicate clearSet(NodeEx node, ContentSet c, Configuration config) {
+    PrevStage::revFlow(node, config) and
+    clearsContentCached(node.asNode(), c)
+  }
+
+  pragma[nomagic]
+  private predicate clearContent(NodeEx node, Content c, Configuration config) {
+    exists(ContentSet cs |
+      PrevStage::readStepCand(_, pragma[only_bind_into](c), _, pragma[only_bind_into](config)) and
+      c = cs.getAReadContent() and
+      clearSet(node, cs, pragma[only_bind_into](config))
+    )
+  }
+
+  pragma[nomagic]
+  private predicate clear(NodeEx node, Ap ap, Configuration config) {
+    clearContent(node, ap.getHead().getContent(), config)
+  }
+
+  pragma[nomagic]
+  private predicate expectsContentCand(NodeEx node, Ap ap, Configuration config) {
+    exists(Content c |
+      PrevStage::revFlow(node, pragma[only_bind_into](config)) and
+      PrevStage::readStepCand(_, c, _, pragma[only_bind_into](config)) and
+      expectsContentEx(node, c) and
+      c = ap.getHead().getContent()
+    )
+  }
 
   pragma[nomagic]
   private predicate castingNodeEx(NodeEx node) { node.asNode() instanceof CastingNode }
 
-  bindingset[node, ap]
-  private predicate filter(NodeEx node, Ap ap) {
-    not clear(node, ap) and
-    if castingNodeEx(node) then compatibleTypes(node.getDataFlowType(), ap.getType()) else any()
+  bindingset[node, state, ap, config]
+  private predicate filter(NodeEx node, FlowState state, Ap ap, Configuration config) {
+    exists(state) and
+    exists(config) and
+    not clear(node, ap, config) and
+    (if castingNodeEx(node) then compatibleTypes(node.getDataFlowType(), ap.getType()) else any()) and
+    (
+      notExpectsContent(node)
+      or
+      expectsContentCand(node, ap, config)
+    )
   }
 
   bindingset[ap, contentType]
@@ -1729,15 +2087,14 @@ private module Stage3 {
   }
 
   /* Begin: Stage 3 logic. */
-  private predicate flowCand(NodeEx node, ApApprox apa, Configuration config) {
-    PrevStage::revFlow(node, _, _, apa, config)
+  bindingset[node, state, config]
+  private predicate flowCand(NodeEx node, FlowState state, ApApprox apa, Configuration config) {
+    PrevStage::revFlow(node, state, _, _, apa, config)
   }
 
   bindingset[result, apa]
   private ApApprox unbindApa(ApApprox apa) {
-    exists(ApApprox apa0 |
-      apa = pragma[only_bind_into](apa0) and result = pragma[only_bind_into](apa0)
-    )
+    pragma[only_bind_out](apa) = pragma[only_bind_out](result)
   }
 
   pragma[nomagic]
@@ -1761,63 +2118,70 @@ private module Stage3 {
    * argument.
    */
   pragma[nomagic]
-  predicate fwdFlow(NodeEx node, Cc cc, ApOption argAp, Ap ap, Configuration config) {
-    fwdFlow0(node, cc, argAp, ap, config) and
-    flowCand(node, unbindApa(getApprox(ap)), config) and
-    filter(node, ap)
+  predicate fwdFlow(NodeEx node, FlowState state, Cc cc, ApOption argAp, Ap ap, Configuration config) {
+    fwdFlow0(node, state, cc, argAp, ap, config) and
+    flowCand(node, state, unbindApa(getApprox(ap)), config) and
+    filter(node, state, ap, config)
   }
 
   pragma[nomagic]
-  private predicate fwdFlow0(NodeEx node, Cc cc, ApOption argAp, Ap ap, Configuration config) {
-    flowCand(node, _, config) and
-    sourceNode(node, config) and
+  private predicate fwdFlow0(
+    NodeEx node, FlowState state, Cc cc, ApOption argAp, Ap ap, Configuration config
+  ) {
+    sourceNode(node, state, config) and
     (if hasSourceCallCtx(config) then cc = ccSomeCall() else cc = ccNone()) and
     argAp = apNone() and
     ap = getApNil(node)
     or
-    exists(NodeEx mid, Ap ap0, LocalCc localCc |
-      fwdFlow(mid, cc, argAp, ap0, config) and
-      localCc = getLocalCc(mid, cc, config)
+    exists(NodeEx mid, FlowState state0, Ap ap0, LocalCc localCc |
+      fwdFlow(mid, state0, cc, argAp, ap0, config) and
+      localCc = getLocalCc(mid, cc)
     |
-      localStep(mid, node, true, _, config, localCc) and
+      localStep(mid, state0, node, state, true, _, config, localCc) and
       ap = ap0
       or
-      localStep(mid, node, false, ap, config, localCc) and
+      localStep(mid, state0, node, state, false, ap, config, localCc) and
       ap0 instanceof ApNil
     )
     or
     exists(NodeEx mid |
-      fwdFlow(mid, _, _, ap, pragma[only_bind_into](config)) and
-      flowCand(node, _, pragma[only_bind_into](config)) and
+      fwdFlow(mid, pragma[only_bind_into](state), _, _, ap, pragma[only_bind_into](config)) and
       jumpStep(mid, node, config) and
       cc = ccNone() and
       argAp = apNone()
     )
     or
     exists(NodeEx mid, ApNil nil |
-      fwdFlow(mid, _, _, nil, pragma[only_bind_into](config)) and
-      flowCand(node, _, pragma[only_bind_into](config)) and
+      fwdFlow(mid, state, _, _, nil, pragma[only_bind_into](config)) and
       additionalJumpStep(mid, node, config) and
       cc = ccNone() and
       argAp = apNone() and
       ap = getApNil(node)
     )
     or
+    exists(NodeEx mid, FlowState state0, ApNil nil |
+      fwdFlow(mid, state0, _, _, nil, pragma[only_bind_into](config)) and
+      additionalJumpStateStep(mid, state0, node, state, config) and
+      cc = ccNone() and
+      argAp = apNone() and
+      ap = getApNil(node)
+    )
+    or
     // store
     exists(TypedContent tc, Ap ap0 |
-      fwdFlowStore(_, ap0, tc, node, cc, argAp, config) and
+      fwdFlowStore(_, ap0, tc, node, state, cc, argAp, config) and
       ap = apCons(tc, ap0)
     )
     or
     // read
     exists(Ap ap0, Content c |
-      fwdFlowRead(ap0, c, _, node, cc, argAp, config) and
+      fwdFlowRead(ap0, c, _, node, state, cc, argAp, config) and
       fwdFlowConsCand(ap0, c, ap, config)
     )
     or
     // flow into a callable
     exists(ApApprox apa |
-      fwdFlowIn(_, node, _, cc, _, ap, config) and
+      fwdFlowIn(_, node, state, _, cc, _, ap, config) and
       apa = getApprox(ap) and
       if PrevStage::parameterMayFlowThrough(node, _, apa, config)
       then argAp = apSome(ap)
@@ -1825,20 +2189,21 @@ private module Stage3 {
     )
     or
     // flow out of a callable
-    fwdFlowOutNotFromArg(node, cc, argAp, ap, config)
+    fwdFlowOutNotFromArg(node, state, cc, argAp, ap, config)
     or
     exists(DataFlowCall call, Ap argAp0 |
-      fwdFlowOutFromArg(call, node, argAp0, ap, config) and
+      fwdFlowOutFromArg(call, node, state, argAp0, ap, config) and
       fwdFlowIsEntered(call, cc, argAp, argAp0, config)
     )
   }
 
   pragma[nomagic]
   private predicate fwdFlowStore(
-    NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, Cc cc, ApOption argAp, Configuration config
+    NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc, ApOption argAp,
+    Configuration config
   ) {
     exists(DataFlowType contentType |
-      fwdFlow(node1, cc, argAp, ap1, config) and
+      fwdFlow(node1, state, cc, argAp, ap1, config) and
       PrevStage::storeStepCand(node1, unbindApa(getApprox(ap1)), tc, node2, contentType, config) and
       typecheckStore(ap1, contentType)
     )
@@ -1851,7 +2216,7 @@ private module Stage3 {
   pragma[nomagic]
   private predicate fwdFlowConsCand(Ap cons, Content c, Ap tail, Configuration config) {
     exists(TypedContent tc |
-      fwdFlowStore(_, tail, tc, _, _, _, config) and
+      fwdFlowStore(_, tail, tc, _, _, _, _, config) and
       tc.getContent() = c and
       cons = apCons(tc, tail)
     )
@@ -1859,20 +2224,21 @@ private module Stage3 {
 
   pragma[nomagic]
   private predicate fwdFlowRead(
-    Ap ap, Content c, NodeEx node1, NodeEx node2, Cc cc, ApOption argAp, Configuration config
+    Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc, ApOption argAp,
+    Configuration config
   ) {
-    fwdFlow(node1, cc, argAp, ap, config) and
+    fwdFlow(node1, state, cc, argAp, ap, config) and
     PrevStage::readStepCand(node1, c, node2, config) and
     getHeadContent(ap) = c
   }
 
   pragma[nomagic]
   private predicate fwdFlowIn(
-    DataFlowCall call, ParamNodeEx p, Cc outercc, Cc innercc, ApOption argAp, Ap ap,
-    Configuration config
+    DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, Cc innercc, ApOption argAp,
+    Ap ap, Configuration config
   ) {
     exists(ArgNodeEx arg, boolean allowsFieldFlow |
-      fwdFlow(arg, outercc, argAp, ap, config) and
+      fwdFlow(arg, state, outercc, argAp, ap, config) and
       flowIntoCall(call, arg, p, allowsFieldFlow, config) and
       innercc = getCallContextCall(call, p.getEnclosingCallable(), outercc) and
       if allowsFieldFlow = false then ap instanceof ApNil else any()
@@ -1881,13 +2247,13 @@ private module Stage3 {
 
   pragma[nomagic]
   private predicate fwdFlowOutNotFromArg(
-    NodeEx out, Cc ccOut, ApOption argAp, Ap ap, Configuration config
+    NodeEx out, FlowState state, Cc ccOut, ApOption argAp, Ap ap, Configuration config
   ) {
     exists(
       DataFlowCall call, RetNodeEx ret, boolean allowsFieldFlow, CcNoCall innercc,
       DataFlowCallable inner
     |
-      fwdFlow(ret, innercc, argAp, ap, config) and
+      fwdFlow(ret, state, innercc, argAp, ap, config) and
       flowOutOfCall(call, ret, out, allowsFieldFlow, config) and
       inner = ret.getEnclosingCallable() and
       ccOut = getCallContextReturn(inner, call, innercc) and
@@ -1897,10 +2263,10 @@ private module Stage3 {
 
   pragma[nomagic]
   private predicate fwdFlowOutFromArg(
-    DataFlowCall call, NodeEx out, Ap argAp, Ap ap, Configuration config
+    DataFlowCall call, NodeEx out, FlowState state, Ap argAp, Ap ap, Configuration config
   ) {
     exists(RetNodeEx ret, boolean allowsFieldFlow, CcCall ccc |
-      fwdFlow(ret, ccc, apSome(argAp), ap, config) and
+      fwdFlow(ret, state, ccc, apSome(argAp), ap, config) and
       flowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, config) and
       if allowsFieldFlow = false then ap instanceof ApNil else any()
     )
@@ -1915,7 +2281,7 @@ private module Stage3 {
     DataFlowCall call, Cc cc, ApOption argAp, Ap ap, Configuration config
   ) {
     exists(ParamNodeEx p |
-      fwdFlowIn(call, p, cc, _, argAp, ap, config) and
+      fwdFlowIn(call, p, _, cc, _, argAp, ap, config) and
       PrevStage::parameterMayFlowThrough(p, _, unbindApa(getApprox(ap)), config)
     )
   }
@@ -1924,24 +2290,24 @@ private module Stage3 {
   private predicate storeStepFwd(
     NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, Ap ap2, Configuration config
   ) {
-    fwdFlowStore(node1, ap1, tc, node2, _, _, config) and
+    fwdFlowStore(node1, ap1, tc, node2, _, _, _, config) and
     ap2 = apCons(tc, ap1) and
-    fwdFlowRead(ap2, tc.getContent(), _, _, _, _, config)
+    fwdFlowRead(ap2, tc.getContent(), _, _, _, _, _, config)
   }
 
   private predicate readStepFwd(
     NodeEx n1, Ap ap1, Content c, NodeEx n2, Ap ap2, Configuration config
   ) {
-    fwdFlowRead(ap1, c, n1, n2, _, _, config) and
+    fwdFlowRead(ap1, c, n1, n2, _, _, _, config) and
     fwdFlowConsCand(ap1, c, ap2, config)
   }
 
   pragma[nomagic]
   private predicate callMayFlowThroughFwd(DataFlowCall call, Configuration config) {
-    exists(Ap argAp0, NodeEx out, Cc cc, ApOption argAp, Ap ap |
-      fwdFlow(out, pragma[only_bind_into](cc), pragma[only_bind_into](argAp), ap,
+    exists(Ap argAp0, NodeEx out, FlowState state, Cc cc, ApOption argAp, Ap ap |
+      fwdFlow(out, state, pragma[only_bind_into](cc), pragma[only_bind_into](argAp), ap,
         pragma[only_bind_into](config)) and
-      fwdFlowOutFromArg(call, out, argAp0, ap, config) and
+      fwdFlowOutFromArg(call, out, state, argAp0, ap, config) and
       fwdFlowIsEntered(pragma[only_bind_into](call), pragma[only_bind_into](cc),
         pragma[only_bind_into](argAp), pragma[only_bind_into](argAp0),
         pragma[only_bind_into](config))
@@ -1953,14 +2319,16 @@ private module Stage3 {
     DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
   ) {
     flowIntoCall(call, arg, p, allowsFieldFlow, config) and
-    fwdFlow(arg, _, _, _, pragma[only_bind_into](config)) and
+    fwdFlow(arg, _, _, _, _, pragma[only_bind_into](config)) and
     PrevStage::parameterMayFlowThrough(p, _, _, pragma[only_bind_into](config)) and
     callMayFlowThroughFwd(call, pragma[only_bind_into](config))
   }
 
   pragma[nomagic]
-  private predicate returnNodeMayFlowThrough(RetNodeEx ret, Ap ap, Configuration config) {
-    fwdFlow(ret, any(CcCall ccc), apSome(_), ap, config)
+  private predicate returnNodeMayFlowThrough(
+    RetNodeEx ret, FlowState state, Ap ap, Configuration config
+  ) {
+    fwdFlow(ret, state, any(CcCall ccc), apSome(_), ap, config)
   }
 
   /**
@@ -1972,44 +2340,56 @@ private module Stage3 {
    * the access path of the returned value.
    */
   pragma[nomagic]
-  predicate revFlow(NodeEx node, boolean toReturn, ApOption returnAp, Ap ap, Configuration config) {
-    revFlow0(node, toReturn, returnAp, ap, config) and
-    fwdFlow(node, _, _, ap, config)
+  predicate revFlow(
+    NodeEx node, FlowState state, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
+  ) {
+    revFlow0(node, state, toReturn, returnAp, ap, config) and
+    fwdFlow(node, state, _, _, ap, config)
   }
 
   pragma[nomagic]
   private predicate revFlow0(
-    NodeEx node, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
+    NodeEx node, FlowState state, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
   ) {
-    fwdFlow(node, _, _, ap, config) and
-    sinkNode(node, config) and
+    fwdFlow(node, state, _, _, ap, config) and
+    sinkNode(node, state, config) and
     (if hasSinkCallCtx(config) then toReturn = true else toReturn = false) and
     returnAp = apNone() and
     ap instanceof ApNil
     or
-    exists(NodeEx mid |
-      localStep(node, mid, true, _, config, _) and
-      revFlow(mid, toReturn, returnAp, ap, config)
+    exists(NodeEx mid, FlowState state0 |
+      localStep(node, state, mid, state0, true, _, config, _) and
+      revFlow(mid, state0, toReturn, returnAp, ap, config)
     )
     or
-    exists(NodeEx mid, ApNil nil |
-      fwdFlow(node, _, _, ap, pragma[only_bind_into](config)) and
-      localStep(node, mid, false, _, config, _) and
-      revFlow(mid, toReturn, returnAp, nil, pragma[only_bind_into](config)) and
+    exists(NodeEx mid, FlowState state0, ApNil nil |
+      fwdFlow(node, pragma[only_bind_into](state), _, _, ap, pragma[only_bind_into](config)) and
+      localStep(node, pragma[only_bind_into](state), mid, state0, false, _, config, _) and
+      revFlow(mid, state0, toReturn, returnAp, nil, pragma[only_bind_into](config)) and
       ap instanceof ApNil
     )
     or
     exists(NodeEx mid |
       jumpStep(node, mid, config) and
-      revFlow(mid, _, _, ap, config) and
+      revFlow(mid, state, _, _, ap, config) and
       toReturn = false and
       returnAp = apNone()
     )
     or
     exists(NodeEx mid, ApNil nil |
-      fwdFlow(node, _, _, ap, pragma[only_bind_into](config)) and
+      fwdFlow(node, _, _, _, ap, pragma[only_bind_into](config)) and
       additionalJumpStep(node, mid, config) and
-      revFlow(pragma[only_bind_into](mid), _, _, nil, pragma[only_bind_into](config)) and
+      revFlow(pragma[only_bind_into](mid), state, _, _, nil, pragma[only_bind_into](config)) and
+      toReturn = false and
+      returnAp = apNone() and
+      ap instanceof ApNil
+    )
+    or
+    exists(NodeEx mid, FlowState state0, ApNil nil |
+      fwdFlow(node, _, _, _, ap, pragma[only_bind_into](config)) and
+      additionalJumpStateStep(node, state, mid, state0, config) and
+      revFlow(pragma[only_bind_into](mid), pragma[only_bind_into](state0), _, _, nil,
+        pragma[only_bind_into](config)) and
       toReturn = false and
       returnAp = apNone() and
       ap instanceof ApNil
@@ -2017,39 +2397,39 @@ private module Stage3 {
     or
     // store
     exists(Ap ap0, Content c |
-      revFlowStore(ap0, c, ap, node, _, _, toReturn, returnAp, config) and
+      revFlowStore(ap0, c, ap, node, state, _, _, toReturn, returnAp, config) and
       revFlowConsCand(ap0, c, ap, config)
     )
     or
     // read
     exists(NodeEx mid, Ap ap0 |
-      revFlow(mid, toReturn, returnAp, ap0, config) and
+      revFlow(mid, state, toReturn, returnAp, ap0, config) and
       readStepFwd(node, ap, _, mid, ap0, config)
     )
     or
     // flow into a callable
-    revFlowInNotToReturn(node, returnAp, ap, config) and
+    revFlowInNotToReturn(node, state, returnAp, ap, config) and
     toReturn = false
     or
     exists(DataFlowCall call, Ap returnAp0 |
-      revFlowInToReturn(call, node, returnAp0, ap, config) and
+      revFlowInToReturn(call, node, state, returnAp0, ap, config) and
       revFlowIsReturned(call, toReturn, returnAp, returnAp0, config)
     )
     or
     // flow out of a callable
-    revFlowOut(_, node, _, _, ap, config) and
+    revFlowOut(_, node, state, _, _, ap, config) and
     toReturn = true and
-    if returnNodeMayFlowThrough(node, ap, config)
+    if returnNodeMayFlowThrough(node, state, ap, config)
     then returnAp = apSome(ap)
     else returnAp = apNone()
   }
 
   pragma[nomagic]
   private predicate revFlowStore(
-    Ap ap0, Content c, Ap ap, NodeEx node, TypedContent tc, NodeEx mid, boolean toReturn,
-    ApOption returnAp, Configuration config
+    Ap ap0, Content c, Ap ap, NodeEx node, FlowState state, TypedContent tc, NodeEx mid,
+    boolean toReturn, ApOption returnAp, Configuration config
   ) {
-    revFlow(mid, toReturn, returnAp, ap0, config) and
+    revFlow(mid, state, toReturn, returnAp, ap0, config) and
     storeStepFwd(node, ap, tc, mid, ap0, config) and
     tc.getContent() = c
   }
@@ -2061,7 +2441,7 @@ private module Stage3 {
   pragma[nomagic]
   private predicate revFlowConsCand(Ap cons, Content c, Ap tail, Configuration config) {
     exists(NodeEx mid, Ap tail0 |
-      revFlow(mid, _, _, tail, config) and
+      revFlow(mid, _, _, _, tail, config) and
       tail = pragma[only_bind_into](tail0) and
       readStepFwd(_, cons, c, mid, tail0, config)
     )
@@ -2069,11 +2449,11 @@ private module Stage3 {
 
   pragma[nomagic]
   private predicate revFlowOut(
-    DataFlowCall call, RetNodeEx ret, boolean toReturn, ApOption returnAp, Ap ap,
+    DataFlowCall call, RetNodeEx ret, FlowState state, boolean toReturn, ApOption returnAp, Ap ap,
     Configuration config
   ) {
     exists(NodeEx out, boolean allowsFieldFlow |
-      revFlow(out, toReturn, returnAp, ap, config) and
+      revFlow(out, state, toReturn, returnAp, ap, config) and
       flowOutOfCall(call, ret, out, allowsFieldFlow, config) and
       if allowsFieldFlow = false then ap instanceof ApNil else any()
     )
@@ -2081,10 +2461,10 @@ private module Stage3 {
 
   pragma[nomagic]
   private predicate revFlowInNotToReturn(
-    ArgNodeEx arg, ApOption returnAp, Ap ap, Configuration config
+    ArgNodeEx arg, FlowState state, ApOption returnAp, Ap ap, Configuration config
   ) {
     exists(ParamNodeEx p, boolean allowsFieldFlow |
-      revFlow(p, false, returnAp, ap, config) and
+      revFlow(p, state, false, returnAp, ap, config) and
       flowIntoCall(_, arg, p, allowsFieldFlow, config) and
       if allowsFieldFlow = false then ap instanceof ApNil else any()
     )
@@ -2092,10 +2472,10 @@ private module Stage3 {
 
   pragma[nomagic]
   private predicate revFlowInToReturn(
-    DataFlowCall call, ArgNodeEx arg, Ap returnAp, Ap ap, Configuration config
+    DataFlowCall call, ArgNodeEx arg, FlowState state, Ap returnAp, Ap ap, Configuration config
   ) {
     exists(ParamNodeEx p, boolean allowsFieldFlow |
-      revFlow(p, true, apSome(returnAp), ap, config) and
+      revFlow(p, state, true, apSome(returnAp), ap, config) and
       flowThroughIntoCall(call, arg, p, allowsFieldFlow, config) and
       if allowsFieldFlow = false then ap instanceof ApNil else any()
     )
@@ -2110,9 +2490,9 @@ private module Stage3 {
   private predicate revFlowIsReturned(
     DataFlowCall call, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
   ) {
-    exists(RetNodeEx ret, CcCall ccc |
-      revFlowOut(call, ret, toReturn, returnAp, ap, config) and
-      fwdFlow(ret, ccc, apSome(_), ap, config) and
+    exists(RetNodeEx ret, FlowState state, CcCall ccc |
+      revFlowOut(call, ret, state, toReturn, returnAp, ap, config) and
+      fwdFlow(ret, state, ccc, apSome(_), ap, config) and
       ccc.matchesCall(call)
     )
   }
@@ -2123,46 +2503,77 @@ private module Stage3 {
     Configuration config
   ) {
     exists(Ap ap2, Content c |
-      store(node1, tc, node2, contentType, config) and
-      revFlowStore(ap2, c, ap1, node1, tc, node2, _, _, config) and
+      PrevStage::storeStepCand(node1, _, tc, node2, contentType, config) and
+      revFlowStore(ap2, c, ap1, node1, _, tc, node2, _, _, config) and
       revFlowConsCand(ap2, c, ap1, config)
     )
   }
 
   predicate readStepCand(NodeEx node1, Content c, NodeEx node2, Configuration config) {
     exists(Ap ap1, Ap ap2 |
-      revFlow(node2, _, _, pragma[only_bind_into](ap2), pragma[only_bind_into](config)) and
+      revFlow(node2, _, _, _, pragma[only_bind_into](ap2), pragma[only_bind_into](config)) and
       readStepFwd(node1, ap1, c, node2, ap2, config) and
-      revFlowStore(ap1, c, pragma[only_bind_into](ap2), _, _, _, _, _,
+      revFlowStore(ap1, c, pragma[only_bind_into](ap2), _, _, _, _, _, _,
         pragma[only_bind_into](config))
     )
   }
 
-  predicate revFlow(NodeEx node, Configuration config) { revFlow(node, _, _, _, config) }
+  predicate revFlow(NodeEx node, FlowState state, Configuration config) {
+    revFlow(node, state, _, _, _, config)
+  }
+
+  pragma[nomagic]
+  predicate revFlow(NodeEx node, Configuration config) { revFlow(node, _, _, _, _, config) }
+
+  // use an alias as a workaround for bad functionality-induced joins
+  pragma[nomagic]
+  predicate revFlowAlias(NodeEx node, Configuration config) { revFlow(node, _, _, _, _, config) }
+
+  // use an alias as a workaround for bad functionality-induced joins
+  pragma[nomagic]
+  predicate revFlowAlias(
+    NodeEx node, FlowState state, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
+  ) {
+    revFlow(node, state, toReturn, returnAp, ap, config)
+  }
 
   private predicate fwdConsCand(TypedContent tc, Ap ap, Configuration config) {
     storeStepFwd(_, ap, tc, _, _, config)
   }
 
-  predicate consCand(TypedContent tc, Ap ap, Configuration config) {
+  private predicate revConsCand(TypedContent tc, Ap ap, Configuration config) {
     storeStepCand(_, ap, tc, _, _, config)
   }
 
+  private predicate validAp(Ap ap, Configuration config) {
+    revFlow(_, _, _, _, ap, config) and ap instanceof ApNil
+    or
+    exists(TypedContent head, Ap tail |
+      consCand(head, tail, config) and
+      ap = apCons(head, tail)
+    )
+  }
+
+  predicate consCand(TypedContent tc, Ap ap, Configuration config) {
+    revConsCand(tc, ap, config) and
+    validAp(ap, config)
+  }
+
   pragma[noinline]
   private predicate parameterFlow(
     ParamNodeEx p, Ap ap, Ap ap0, DataFlowCallable c, Configuration config
   ) {
-    revFlow(p, true, apSome(ap0), ap, config) and
+    revFlow(p, _, true, apSome(ap0), ap, config) and
     c = p.getEnclosingCallable()
   }
 
   predicate parameterMayFlowThrough(ParamNodeEx p, DataFlowCallable c, Ap ap, Configuration config) {
-    exists(RetNodeEx ret, Ap ap0, ReturnKindExt kind, int pos |
+    exists(RetNodeEx ret, FlowState state, Ap ap0, ReturnKindExt kind, ParameterPosition pos |
       parameterFlow(p, ap, ap0, c, config) and
       c = ret.getEnclosingCallable() and
-      revFlow(pragma[only_bind_into](ret), true, apSome(_), pragma[only_bind_into](ap0),
-        pragma[only_bind_into](config)) and
-      fwdFlow(ret, any(CcCall ccc), apSome(ap), ap0, config) and
+      revFlow(pragma[only_bind_into](ret), pragma[only_bind_into](state), true, apSome(_),
+        pragma[only_bind_into](ap0), pragma[only_bind_into](config)) and
+      fwdFlow(ret, state, any(CcCall ccc), apSome(ap), ap0, config) and
       kind = ret.getKind() and
       p.getPosition() = pos and
       // we don't expect a parameter to return stored in itself, unless explicitly allowed
@@ -2176,25 +2587,37 @@ private module Stage3 {
 
   pragma[nomagic]
   predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
-    exists(Ap returnAp0, ArgNodeEx arg, boolean toReturn, ApOption returnAp, Ap ap |
-      revFlow(arg, toReturn, returnAp, ap, config) and
-      revFlowInToReturn(call, arg, returnAp0, ap, config) and
+    exists(
+      Ap returnAp0, ArgNodeEx arg, FlowState state, boolean toReturn, ApOption returnAp, Ap ap
+    |
+      revFlow(arg, state, toReturn, returnAp, ap, config) and
+      revFlowInToReturn(call, arg, state, returnAp0, ap, config) and
       revFlowIsReturned(call, toReturn, returnAp, returnAp0, config)
     )
   }
 
-  predicate stats(boolean fwd, int nodes, int fields, int conscand, int tuples, Configuration config) {
+  predicate stats(
+    boolean fwd, int nodes, int fields, int conscand, int states, int tuples, Configuration config
+  ) {
     fwd = true and
-    nodes = count(NodeEx node | fwdFlow(node, _, _, _, config)) and
+    nodes = count(NodeEx node | fwdFlow(node, _, _, _, _, config)) and
     fields = count(TypedContent f0 | fwdConsCand(f0, _, config)) and
     conscand = count(TypedContent f0, Ap ap | fwdConsCand(f0, ap, config)) and
-    tuples = count(NodeEx n, Cc cc, ApOption argAp, Ap ap | fwdFlow(n, cc, argAp, ap, config))
+    states = count(FlowState state | fwdFlow(_, state, _, _, _, config)) and
+    tuples =
+      count(NodeEx n, FlowState state, Cc cc, ApOption argAp, Ap ap |
+        fwdFlow(n, state, cc, argAp, ap, config)
+      )
     or
     fwd = false and
-    nodes = count(NodeEx node | revFlow(node, _, _, _, config)) and
+    nodes = count(NodeEx node | revFlow(node, _, _, _, _, config)) and
     fields = count(TypedContent f0 | consCand(f0, _, config)) and
     conscand = count(TypedContent f0, Ap ap | consCand(f0, ap, config)) and
-    tuples = count(NodeEx n, boolean b, ApOption retAp, Ap ap | revFlow(n, b, retAp, ap, config))
+    states = count(FlowState state | revFlow(_, state, _, _, _, config)) and
+    tuples =
+      count(NodeEx n, FlowState state, boolean b, ApOption retAp, Ap ap |
+        revFlow(n, state, b, retAp, ap, config)
+      )
   }
   /* End: Stage 3 logic. */
 }
@@ -2203,10 +2626,12 @@ private module Stage3 {
  * Holds if `argApf` is recorded as the summary context for flow reaching `node`
  * and remains relevant for the following pruning stage.
  */
-private predicate flowCandSummaryCtx(NodeEx node, AccessPathFront argApf, Configuration config) {
+private predicate flowCandSummaryCtx(
+  NodeEx node, FlowState state, AccessPathFront argApf, Configuration config
+) {
   exists(AccessPathFront apf |
-    Stage3::revFlow(node, true, _, apf, config) and
-    Stage3::fwdFlow(node, any(Stage3::CcCall ccc), TAccessPathFrontSome(argApf), apf, config)
+    Stage3::revFlow(node, state, true, _, apf, config) and
+    Stage3::fwdFlow(node, state, any(Stage3::CcCall ccc), TAccessPathFrontSome(argApf), apf, config)
   )
 }
 
@@ -2218,10 +2643,10 @@ private predicate expensiveLen2unfolding(TypedContent tc, Configuration config)
   exists(int tails, int nodes, int apLimit, int tupleLimit |
     tails = strictcount(AccessPathFront apf | Stage3::consCand(tc, apf, config)) and
     nodes =
-      strictcount(NodeEx n |
-        Stage3::revFlow(n, _, _, any(AccessPathFrontHead apf | apf.getHead() = tc), config)
+      strictcount(NodeEx n, FlowState state |
+        Stage3::revFlow(n, state, _, _, any(AccessPathFrontHead apf | apf.getHead() = tc), config)
         or
-        flowCandSummaryCtx(n, any(AccessPathFrontHead apf | apf.getHead() = tc), config)
+        flowCandSummaryCtx(n, state, any(AccessPathFrontHead apf | apf.getHead() = tc), config)
       ) and
     accessPathApproxCostLimits(apLimit, tupleLimit) and
     apLimit < tails and
@@ -2454,27 +2879,31 @@ private module Stage4 {
     if reducedViableImplInReturn(c, call) then result = TReturn(c, call) else result = ccNone()
   }
 
-  bindingset[node, cc, config]
-  private LocalCc getLocalCc(NodeEx node, Cc cc, Configuration config) {
-    localFlowEntry(node, config) and
+  bindingset[node, cc]
+  private LocalCc getLocalCc(NodeEx node, Cc cc) {
     result =
       getLocalCallContext(pragma[only_bind_into](pragma[only_bind_out](cc)),
         node.getEnclosingCallable())
   }
 
   private predicate localStep(
-    NodeEx node1, NodeEx node2, boolean preservesValue, ApNil ap, Configuration config, LocalCc lcc
+    NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
+    ApNil ap, Configuration config, LocalCc lcc
   ) {
-    localFlowBigStep(node1, node2, preservesValue, ap.getFront(), config, lcc)
+    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap.getFront(), config, lcc)
   }
 
   pragma[nomagic]
   private predicate flowOutOfCall(
     DataFlowCall call, RetNodeEx node1, NodeEx node2, boolean allowsFieldFlow, Configuration config
   ) {
-    flowOutOfCallNodeCand2(call, node1, node2, allowsFieldFlow, config) and
-    PrevStage::revFlow(node2, _, _, _, pragma[only_bind_into](config)) and
-    PrevStage::revFlow(node1, _, _, _, pragma[only_bind_into](config))
+    exists(FlowState state |
+      flowOutOfCallNodeCand2(call, node1, node2, allowsFieldFlow, config) and
+      PrevStage::revFlow(node2, pragma[only_bind_into](state), _, _, _,
+        pragma[only_bind_into](config)) and
+      PrevStage::revFlowAlias(node1, pragma[only_bind_into](state), _, _, _,
+        pragma[only_bind_into](config))
+    )
   }
 
   pragma[nomagic]
@@ -2482,28 +2911,31 @@ private module Stage4 {
     DataFlowCall call, ArgNodeEx node1, ParamNodeEx node2, boolean allowsFieldFlow,
     Configuration config
   ) {
-    flowIntoCallNodeCand2(call, node1, node2, allowsFieldFlow, config) and
-    PrevStage::revFlow(node2, _, _, _, pragma[only_bind_into](config)) and
-    PrevStage::revFlow(node1, _, _, _, pragma[only_bind_into](config))
+    exists(FlowState state |
+      flowIntoCallNodeCand2(call, node1, node2, allowsFieldFlow, config) and
+      PrevStage::revFlow(node2, pragma[only_bind_into](state), _, _, _,
+        pragma[only_bind_into](config)) and
+      PrevStage::revFlowAlias(node1, pragma[only_bind_into](state), _, _, _,
+        pragma[only_bind_into](config))
+    )
   }
 
-  bindingset[node, ap]
-  private predicate filter(NodeEx node, Ap ap) { any() }
+  bindingset[node, state, ap, config]
+  private predicate filter(NodeEx node, FlowState state, Ap ap, Configuration config) { any() }
 
   // Type checking is not necessary here as it has already been done in stage 3.
   bindingset[ap, contentType]
   private predicate typecheckStore(Ap ap, DataFlowType contentType) { any() }
 
   /* Begin: Stage 4 logic. */
-  private predicate flowCand(NodeEx node, ApApprox apa, Configuration config) {
-    PrevStage::revFlow(node, _, _, apa, config)
+  bindingset[node, state, config]
+  private predicate flowCand(NodeEx node, FlowState state, ApApprox apa, Configuration config) {
+    PrevStage::revFlow(node, state, _, _, apa, config)
   }
 
   bindingset[result, apa]
   private ApApprox unbindApa(ApApprox apa) {
-    exists(ApApprox apa0 |
-      apa = pragma[only_bind_into](apa0) and result = pragma[only_bind_into](apa0)
-    )
+    pragma[only_bind_out](apa) = pragma[only_bind_out](result)
   }
 
   pragma[nomagic]
@@ -2527,63 +2959,70 @@ private module Stage4 {
    * argument.
    */
   pragma[nomagic]
-  predicate fwdFlow(NodeEx node, Cc cc, ApOption argAp, Ap ap, Configuration config) {
-    fwdFlow0(node, cc, argAp, ap, config) and
-    flowCand(node, unbindApa(getApprox(ap)), config) and
-    filter(node, ap)
+  predicate fwdFlow(NodeEx node, FlowState state, Cc cc, ApOption argAp, Ap ap, Configuration config) {
+    fwdFlow0(node, state, cc, argAp, ap, config) and
+    flowCand(node, state, unbindApa(getApprox(ap)), config) and
+    filter(node, state, ap, config)
   }
 
   pragma[nomagic]
-  private predicate fwdFlow0(NodeEx node, Cc cc, ApOption argAp, Ap ap, Configuration config) {
-    flowCand(node, _, config) and
-    sourceNode(node, config) and
+  private predicate fwdFlow0(
+    NodeEx node, FlowState state, Cc cc, ApOption argAp, Ap ap, Configuration config
+  ) {
+    sourceNode(node, state, config) and
     (if hasSourceCallCtx(config) then cc = ccSomeCall() else cc = ccNone()) and
     argAp = apNone() and
     ap = getApNil(node)
     or
-    exists(NodeEx mid, Ap ap0, LocalCc localCc |
-      fwdFlow(mid, cc, argAp, ap0, config) and
-      localCc = getLocalCc(mid, cc, config)
+    exists(NodeEx mid, FlowState state0, Ap ap0, LocalCc localCc |
+      fwdFlow(mid, state0, cc, argAp, ap0, config) and
+      localCc = getLocalCc(mid, cc)
     |
-      localStep(mid, node, true, _, config, localCc) and
+      localStep(mid, state0, node, state, true, _, config, localCc) and
       ap = ap0
       or
-      localStep(mid, node, false, ap, config, localCc) and
+      localStep(mid, state0, node, state, false, ap, config, localCc) and
       ap0 instanceof ApNil
     )
     or
     exists(NodeEx mid |
-      fwdFlow(mid, _, _, ap, pragma[only_bind_into](config)) and
-      flowCand(node, _, pragma[only_bind_into](config)) and
+      fwdFlow(mid, pragma[only_bind_into](state), _, _, ap, pragma[only_bind_into](config)) and
       jumpStep(mid, node, config) and
       cc = ccNone() and
       argAp = apNone()
     )
     or
     exists(NodeEx mid, ApNil nil |
-      fwdFlow(mid, _, _, nil, pragma[only_bind_into](config)) and
-      flowCand(node, _, pragma[only_bind_into](config)) and
+      fwdFlow(mid, state, _, _, nil, pragma[only_bind_into](config)) and
       additionalJumpStep(mid, node, config) and
       cc = ccNone() and
       argAp = apNone() and
       ap = getApNil(node)
     )
     or
+    exists(NodeEx mid, FlowState state0, ApNil nil |
+      fwdFlow(mid, state0, _, _, nil, pragma[only_bind_into](config)) and
+      additionalJumpStateStep(mid, state0, node, state, config) and
+      cc = ccNone() and
+      argAp = apNone() and
+      ap = getApNil(node)
+    )
+    or
     // store
     exists(TypedContent tc, Ap ap0 |
-      fwdFlowStore(_, ap0, tc, node, cc, argAp, config) and
+      fwdFlowStore(_, ap0, tc, node, state, cc, argAp, config) and
       ap = apCons(tc, ap0)
     )
     or
     // read
     exists(Ap ap0, Content c |
-      fwdFlowRead(ap0, c, _, node, cc, argAp, config) and
+      fwdFlowRead(ap0, c, _, node, state, cc, argAp, config) and
       fwdFlowConsCand(ap0, c, ap, config)
     )
     or
     // flow into a callable
     exists(ApApprox apa |
-      fwdFlowIn(_, node, _, cc, _, ap, config) and
+      fwdFlowIn(_, node, state, _, cc, _, ap, config) and
       apa = getApprox(ap) and
       if PrevStage::parameterMayFlowThrough(node, _, apa, config)
       then argAp = apSome(ap)
@@ -2591,20 +3030,21 @@ private module Stage4 {
     )
     or
     // flow out of a callable
-    fwdFlowOutNotFromArg(node, cc, argAp, ap, config)
+    fwdFlowOutNotFromArg(node, state, cc, argAp, ap, config)
     or
     exists(DataFlowCall call, Ap argAp0 |
-      fwdFlowOutFromArg(call, node, argAp0, ap, config) and
+      fwdFlowOutFromArg(call, node, state, argAp0, ap, config) and
       fwdFlowIsEntered(call, cc, argAp, argAp0, config)
     )
   }
 
   pragma[nomagic]
   private predicate fwdFlowStore(
-    NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, Cc cc, ApOption argAp, Configuration config
+    NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc, ApOption argAp,
+    Configuration config
   ) {
     exists(DataFlowType contentType |
-      fwdFlow(node1, cc, argAp, ap1, config) and
+      fwdFlow(node1, state, cc, argAp, ap1, config) and
       PrevStage::storeStepCand(node1, unbindApa(getApprox(ap1)), tc, node2, contentType, config) and
       typecheckStore(ap1, contentType)
     )
@@ -2617,7 +3057,7 @@ private module Stage4 {
   pragma[nomagic]
   private predicate fwdFlowConsCand(Ap cons, Content c, Ap tail, Configuration config) {
     exists(TypedContent tc |
-      fwdFlowStore(_, tail, tc, _, _, _, config) and
+      fwdFlowStore(_, tail, tc, _, _, _, _, config) and
       tc.getContent() = c and
       cons = apCons(tc, tail)
     )
@@ -2625,20 +3065,21 @@ private module Stage4 {
 
   pragma[nomagic]
   private predicate fwdFlowRead(
-    Ap ap, Content c, NodeEx node1, NodeEx node2, Cc cc, ApOption argAp, Configuration config
+    Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc, ApOption argAp,
+    Configuration config
   ) {
-    fwdFlow(node1, cc, argAp, ap, config) and
+    fwdFlow(node1, state, cc, argAp, ap, config) and
     PrevStage::readStepCand(node1, c, node2, config) and
     getHeadContent(ap) = c
   }
 
   pragma[nomagic]
   private predicate fwdFlowIn(
-    DataFlowCall call, ParamNodeEx p, Cc outercc, Cc innercc, ApOption argAp, Ap ap,
-    Configuration config
+    DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, Cc innercc, ApOption argAp,
+    Ap ap, Configuration config
   ) {
     exists(ArgNodeEx arg, boolean allowsFieldFlow |
-      fwdFlow(arg, outercc, argAp, ap, config) and
+      fwdFlow(arg, state, outercc, argAp, ap, config) and
       flowIntoCall(call, arg, p, allowsFieldFlow, config) and
       innercc = getCallContextCall(call, p.getEnclosingCallable(), outercc) and
       if allowsFieldFlow = false then ap instanceof ApNil else any()
@@ -2647,13 +3088,13 @@ private module Stage4 {
 
   pragma[nomagic]
   private predicate fwdFlowOutNotFromArg(
-    NodeEx out, Cc ccOut, ApOption argAp, Ap ap, Configuration config
+    NodeEx out, FlowState state, Cc ccOut, ApOption argAp, Ap ap, Configuration config
   ) {
     exists(
       DataFlowCall call, RetNodeEx ret, boolean allowsFieldFlow, CcNoCall innercc,
       DataFlowCallable inner
     |
-      fwdFlow(ret, innercc, argAp, ap, config) and
+      fwdFlow(ret, state, innercc, argAp, ap, config) and
       flowOutOfCall(call, ret, out, allowsFieldFlow, config) and
       inner = ret.getEnclosingCallable() and
       ccOut = getCallContextReturn(inner, call, innercc) and
@@ -2663,10 +3104,10 @@ private module Stage4 {
 
   pragma[nomagic]
   private predicate fwdFlowOutFromArg(
-    DataFlowCall call, NodeEx out, Ap argAp, Ap ap, Configuration config
+    DataFlowCall call, NodeEx out, FlowState state, Ap argAp, Ap ap, Configuration config
   ) {
     exists(RetNodeEx ret, boolean allowsFieldFlow, CcCall ccc |
-      fwdFlow(ret, ccc, apSome(argAp), ap, config) and
+      fwdFlow(ret, state, ccc, apSome(argAp), ap, config) and
       flowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, config) and
       if allowsFieldFlow = false then ap instanceof ApNil else any()
     )
@@ -2681,7 +3122,7 @@ private module Stage4 {
     DataFlowCall call, Cc cc, ApOption argAp, Ap ap, Configuration config
   ) {
     exists(ParamNodeEx p |
-      fwdFlowIn(call, p, cc, _, argAp, ap, config) and
+      fwdFlowIn(call, p, _, cc, _, argAp, ap, config) and
       PrevStage::parameterMayFlowThrough(p, _, unbindApa(getApprox(ap)), config)
     )
   }
@@ -2690,24 +3131,24 @@ private module Stage4 {
   private predicate storeStepFwd(
     NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, Ap ap2, Configuration config
   ) {
-    fwdFlowStore(node1, ap1, tc, node2, _, _, config) and
+    fwdFlowStore(node1, ap1, tc, node2, _, _, _, config) and
     ap2 = apCons(tc, ap1) and
-    fwdFlowRead(ap2, tc.getContent(), _, _, _, _, config)
+    fwdFlowRead(ap2, tc.getContent(), _, _, _, _, _, config)
   }
 
   private predicate readStepFwd(
     NodeEx n1, Ap ap1, Content c, NodeEx n2, Ap ap2, Configuration config
   ) {
-    fwdFlowRead(ap1, c, n1, n2, _, _, config) and
+    fwdFlowRead(ap1, c, n1, n2, _, _, _, config) and
     fwdFlowConsCand(ap1, c, ap2, config)
   }
 
   pragma[nomagic]
   private predicate callMayFlowThroughFwd(DataFlowCall call, Configuration config) {
-    exists(Ap argAp0, NodeEx out, Cc cc, ApOption argAp, Ap ap |
-      fwdFlow(out, pragma[only_bind_into](cc), pragma[only_bind_into](argAp), ap,
+    exists(Ap argAp0, NodeEx out, FlowState state, Cc cc, ApOption argAp, Ap ap |
+      fwdFlow(out, state, pragma[only_bind_into](cc), pragma[only_bind_into](argAp), ap,
         pragma[only_bind_into](config)) and
-      fwdFlowOutFromArg(call, out, argAp0, ap, config) and
+      fwdFlowOutFromArg(call, out, state, argAp0, ap, config) and
       fwdFlowIsEntered(pragma[only_bind_into](call), pragma[only_bind_into](cc),
         pragma[only_bind_into](argAp), pragma[only_bind_into](argAp0),
         pragma[only_bind_into](config))
@@ -2719,14 +3160,16 @@ private module Stage4 {
     DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
   ) {
     flowIntoCall(call, arg, p, allowsFieldFlow, config) and
-    fwdFlow(arg, _, _, _, pragma[only_bind_into](config)) and
+    fwdFlow(arg, _, _, _, _, pragma[only_bind_into](config)) and
     PrevStage::parameterMayFlowThrough(p, _, _, pragma[only_bind_into](config)) and
     callMayFlowThroughFwd(call, pragma[only_bind_into](config))
   }
 
   pragma[nomagic]
-  private predicate returnNodeMayFlowThrough(RetNodeEx ret, Ap ap, Configuration config) {
-    fwdFlow(ret, any(CcCall ccc), apSome(_), ap, config)
+  private predicate returnNodeMayFlowThrough(
+    RetNodeEx ret, FlowState state, Ap ap, Configuration config
+  ) {
+    fwdFlow(ret, state, any(CcCall ccc), apSome(_), ap, config)
   }
 
   /**
@@ -2738,44 +3181,56 @@ private module Stage4 {
    * the access path of the returned value.
    */
   pragma[nomagic]
-  predicate revFlow(NodeEx node, boolean toReturn, ApOption returnAp, Ap ap, Configuration config) {
-    revFlow0(node, toReturn, returnAp, ap, config) and
-    fwdFlow(node, _, _, ap, config)
+  predicate revFlow(
+    NodeEx node, FlowState state, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
+  ) {
+    revFlow0(node, state, toReturn, returnAp, ap, config) and
+    fwdFlow(node, state, _, _, ap, config)
   }
 
   pragma[nomagic]
   private predicate revFlow0(
-    NodeEx node, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
+    NodeEx node, FlowState state, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
   ) {
-    fwdFlow(node, _, _, ap, config) and
-    sinkNode(node, config) and
+    fwdFlow(node, state, _, _, ap, config) and
+    sinkNode(node, state, config) and
     (if hasSinkCallCtx(config) then toReturn = true else toReturn = false) and
     returnAp = apNone() and
     ap instanceof ApNil
     or
-    exists(NodeEx mid |
-      localStep(node, mid, true, _, config, _) and
-      revFlow(mid, toReturn, returnAp, ap, config)
+    exists(NodeEx mid, FlowState state0 |
+      localStep(node, state, mid, state0, true, _, config, _) and
+      revFlow(mid, state0, toReturn, returnAp, ap, config)
     )
     or
-    exists(NodeEx mid, ApNil nil |
-      fwdFlow(node, _, _, ap, pragma[only_bind_into](config)) and
-      localStep(node, mid, false, _, config, _) and
-      revFlow(mid, toReturn, returnAp, nil, pragma[only_bind_into](config)) and
+    exists(NodeEx mid, FlowState state0, ApNil nil |
+      fwdFlow(node, pragma[only_bind_into](state), _, _, ap, pragma[only_bind_into](config)) and
+      localStep(node, pragma[only_bind_into](state), mid, state0, false, _, config, _) and
+      revFlow(mid, state0, toReturn, returnAp, nil, pragma[only_bind_into](config)) and
       ap instanceof ApNil
     )
     or
     exists(NodeEx mid |
       jumpStep(node, mid, config) and
-      revFlow(mid, _, _, ap, config) and
+      revFlow(mid, state, _, _, ap, config) and
       toReturn = false and
       returnAp = apNone()
     )
     or
     exists(NodeEx mid, ApNil nil |
-      fwdFlow(node, _, _, ap, pragma[only_bind_into](config)) and
+      fwdFlow(node, _, _, _, ap, pragma[only_bind_into](config)) and
       additionalJumpStep(node, mid, config) and
-      revFlow(pragma[only_bind_into](mid), _, _, nil, pragma[only_bind_into](config)) and
+      revFlow(pragma[only_bind_into](mid), state, _, _, nil, pragma[only_bind_into](config)) and
+      toReturn = false and
+      returnAp = apNone() and
+      ap instanceof ApNil
+    )
+    or
+    exists(NodeEx mid, FlowState state0, ApNil nil |
+      fwdFlow(node, _, _, _, ap, pragma[only_bind_into](config)) and
+      additionalJumpStateStep(node, state, mid, state0, config) and
+      revFlow(pragma[only_bind_into](mid), pragma[only_bind_into](state0), _, _, nil,
+        pragma[only_bind_into](config)) and
       toReturn = false and
       returnAp = apNone() and
       ap instanceof ApNil
@@ -2783,39 +3238,39 @@ private module Stage4 {
     or
     // store
     exists(Ap ap0, Content c |
-      revFlowStore(ap0, c, ap, node, _, _, toReturn, returnAp, config) and
+      revFlowStore(ap0, c, ap, node, state, _, _, toReturn, returnAp, config) and
       revFlowConsCand(ap0, c, ap, config)
     )
     or
     // read
     exists(NodeEx mid, Ap ap0 |
-      revFlow(mid, toReturn, returnAp, ap0, config) and
+      revFlow(mid, state, toReturn, returnAp, ap0, config) and
       readStepFwd(node, ap, _, mid, ap0, config)
     )
     or
     // flow into a callable
-    revFlowInNotToReturn(node, returnAp, ap, config) and
+    revFlowInNotToReturn(node, state, returnAp, ap, config) and
     toReturn = false
     or
     exists(DataFlowCall call, Ap returnAp0 |
-      revFlowInToReturn(call, node, returnAp0, ap, config) and
+      revFlowInToReturn(call, node, state, returnAp0, ap, config) and
       revFlowIsReturned(call, toReturn, returnAp, returnAp0, config)
     )
     or
     // flow out of a callable
-    revFlowOut(_, node, _, _, ap, config) and
+    revFlowOut(_, node, state, _, _, ap, config) and
     toReturn = true and
-    if returnNodeMayFlowThrough(node, ap, config)
+    if returnNodeMayFlowThrough(node, state, ap, config)
     then returnAp = apSome(ap)
     else returnAp = apNone()
   }
 
   pragma[nomagic]
   private predicate revFlowStore(
-    Ap ap0, Content c, Ap ap, NodeEx node, TypedContent tc, NodeEx mid, boolean toReturn,
-    ApOption returnAp, Configuration config
+    Ap ap0, Content c, Ap ap, NodeEx node, FlowState state, TypedContent tc, NodeEx mid,
+    boolean toReturn, ApOption returnAp, Configuration config
   ) {
-    revFlow(mid, toReturn, returnAp, ap0, config) and
+    revFlow(mid, state, toReturn, returnAp, ap0, config) and
     storeStepFwd(node, ap, tc, mid, ap0, config) and
     tc.getContent() = c
   }
@@ -2827,7 +3282,7 @@ private module Stage4 {
   pragma[nomagic]
   private predicate revFlowConsCand(Ap cons, Content c, Ap tail, Configuration config) {
     exists(NodeEx mid, Ap tail0 |
-      revFlow(mid, _, _, tail, config) and
+      revFlow(mid, _, _, _, tail, config) and
       tail = pragma[only_bind_into](tail0) and
       readStepFwd(_, cons, c, mid, tail0, config)
     )
@@ -2835,11 +3290,11 @@ private module Stage4 {
 
   pragma[nomagic]
   private predicate revFlowOut(
-    DataFlowCall call, RetNodeEx ret, boolean toReturn, ApOption returnAp, Ap ap,
+    DataFlowCall call, RetNodeEx ret, FlowState state, boolean toReturn, ApOption returnAp, Ap ap,
     Configuration config
   ) {
     exists(NodeEx out, boolean allowsFieldFlow |
-      revFlow(out, toReturn, returnAp, ap, config) and
+      revFlow(out, state, toReturn, returnAp, ap, config) and
       flowOutOfCall(call, ret, out, allowsFieldFlow, config) and
       if allowsFieldFlow = false then ap instanceof ApNil else any()
     )
@@ -2847,10 +3302,10 @@ private module Stage4 {
 
   pragma[nomagic]
   private predicate revFlowInNotToReturn(
-    ArgNodeEx arg, ApOption returnAp, Ap ap, Configuration config
+    ArgNodeEx arg, FlowState state, ApOption returnAp, Ap ap, Configuration config
   ) {
     exists(ParamNodeEx p, boolean allowsFieldFlow |
-      revFlow(p, false, returnAp, ap, config) and
+      revFlow(p, state, false, returnAp, ap, config) and
       flowIntoCall(_, arg, p, allowsFieldFlow, config) and
       if allowsFieldFlow = false then ap instanceof ApNil else any()
     )
@@ -2858,10 +3313,10 @@ private module Stage4 {
 
   pragma[nomagic]
   private predicate revFlowInToReturn(
-    DataFlowCall call, ArgNodeEx arg, Ap returnAp, Ap ap, Configuration config
+    DataFlowCall call, ArgNodeEx arg, FlowState state, Ap returnAp, Ap ap, Configuration config
   ) {
     exists(ParamNodeEx p, boolean allowsFieldFlow |
-      revFlow(p, true, apSome(returnAp), ap, config) and
+      revFlow(p, state, true, apSome(returnAp), ap, config) and
       flowThroughIntoCall(call, arg, p, allowsFieldFlow, config) and
       if allowsFieldFlow = false then ap instanceof ApNil else any()
     )
@@ -2876,9 +3331,9 @@ private module Stage4 {
   private predicate revFlowIsReturned(
     DataFlowCall call, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
   ) {
-    exists(RetNodeEx ret, CcCall ccc |
-      revFlowOut(call, ret, toReturn, returnAp, ap, config) and
-      fwdFlow(ret, ccc, apSome(_), ap, config) and
+    exists(RetNodeEx ret, FlowState state, CcCall ccc |
+      revFlowOut(call, ret, state, toReturn, returnAp, ap, config) and
+      fwdFlow(ret, state, ccc, apSome(_), ap, config) and
       ccc.matchesCall(call)
     )
   }
@@ -2889,46 +3344,77 @@ private module Stage4 {
     Configuration config
   ) {
     exists(Ap ap2, Content c |
-      store(node1, tc, node2, contentType, config) and
-      revFlowStore(ap2, c, ap1, node1, tc, node2, _, _, config) and
+      PrevStage::storeStepCand(node1, _, tc, node2, contentType, config) and
+      revFlowStore(ap2, c, ap1, node1, _, tc, node2, _, _, config) and
       revFlowConsCand(ap2, c, ap1, config)
     )
   }
 
   predicate readStepCand(NodeEx node1, Content c, NodeEx node2, Configuration config) {
     exists(Ap ap1, Ap ap2 |
-      revFlow(node2, _, _, pragma[only_bind_into](ap2), pragma[only_bind_into](config)) and
+      revFlow(node2, _, _, _, pragma[only_bind_into](ap2), pragma[only_bind_into](config)) and
       readStepFwd(node1, ap1, c, node2, ap2, config) and
-      revFlowStore(ap1, c, pragma[only_bind_into](ap2), _, _, _, _, _,
+      revFlowStore(ap1, c, pragma[only_bind_into](ap2), _, _, _, _, _, _,
         pragma[only_bind_into](config))
     )
   }
 
-  predicate revFlow(NodeEx node, Configuration config) { revFlow(node, _, _, _, config) }
+  predicate revFlow(NodeEx node, FlowState state, Configuration config) {
+    revFlow(node, state, _, _, _, config)
+  }
+
+  pragma[nomagic]
+  predicate revFlow(NodeEx node, Configuration config) { revFlow(node, _, _, _, _, config) }
+
+  // use an alias as a workaround for bad functionality-induced joins
+  pragma[nomagic]
+  predicate revFlowAlias(NodeEx node, Configuration config) { revFlow(node, _, _, _, _, config) }
+
+  // use an alias as a workaround for bad functionality-induced joins
+  pragma[nomagic]
+  predicate revFlowAlias(
+    NodeEx node, FlowState state, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
+  ) {
+    revFlow(node, state, toReturn, returnAp, ap, config)
+  }
 
   private predicate fwdConsCand(TypedContent tc, Ap ap, Configuration config) {
     storeStepFwd(_, ap, tc, _, _, config)
   }
 
-  predicate consCand(TypedContent tc, Ap ap, Configuration config) {
+  private predicate revConsCand(TypedContent tc, Ap ap, Configuration config) {
     storeStepCand(_, ap, tc, _, _, config)
   }
 
+  private predicate validAp(Ap ap, Configuration config) {
+    revFlow(_, _, _, _, ap, config) and ap instanceof ApNil
+    or
+    exists(TypedContent head, Ap tail |
+      consCand(head, tail, config) and
+      ap = apCons(head, tail)
+    )
+  }
+
+  predicate consCand(TypedContent tc, Ap ap, Configuration config) {
+    revConsCand(tc, ap, config) and
+    validAp(ap, config)
+  }
+
   pragma[noinline]
   private predicate parameterFlow(
     ParamNodeEx p, Ap ap, Ap ap0, DataFlowCallable c, Configuration config
   ) {
-    revFlow(p, true, apSome(ap0), ap, config) and
+    revFlow(p, _, true, apSome(ap0), ap, config) and
     c = p.getEnclosingCallable()
   }
 
   predicate parameterMayFlowThrough(ParamNodeEx p, DataFlowCallable c, Ap ap, Configuration config) {
-    exists(RetNodeEx ret, Ap ap0, ReturnKindExt kind, int pos |
+    exists(RetNodeEx ret, FlowState state, Ap ap0, ReturnKindExt kind, ParameterPosition pos |
       parameterFlow(p, ap, ap0, c, config) and
       c = ret.getEnclosingCallable() and
-      revFlow(pragma[only_bind_into](ret), true, apSome(_), pragma[only_bind_into](ap0),
-        pragma[only_bind_into](config)) and
-      fwdFlow(ret, any(CcCall ccc), apSome(ap), ap0, config) and
+      revFlow(pragma[only_bind_into](ret), pragma[only_bind_into](state), true, apSome(_),
+        pragma[only_bind_into](ap0), pragma[only_bind_into](config)) and
+      fwdFlow(ret, state, any(CcCall ccc), apSome(ap), ap0, config) and
       kind = ret.getKind() and
       p.getPosition() = pos and
       // we don't expect a parameter to return stored in itself, unless explicitly allowed
@@ -2942,25 +3428,37 @@ private module Stage4 {
 
   pragma[nomagic]
   predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
-    exists(Ap returnAp0, ArgNodeEx arg, boolean toReturn, ApOption returnAp, Ap ap |
-      revFlow(arg, toReturn, returnAp, ap, config) and
-      revFlowInToReturn(call, arg, returnAp0, ap, config) and
+    exists(
+      Ap returnAp0, ArgNodeEx arg, FlowState state, boolean toReturn, ApOption returnAp, Ap ap
+    |
+      revFlow(arg, state, toReturn, returnAp, ap, config) and
+      revFlowInToReturn(call, arg, state, returnAp0, ap, config) and
       revFlowIsReturned(call, toReturn, returnAp, returnAp0, config)
     )
   }
 
-  predicate stats(boolean fwd, int nodes, int fields, int conscand, int tuples, Configuration config) {
+  predicate stats(
+    boolean fwd, int nodes, int fields, int conscand, int states, int tuples, Configuration config
+  ) {
     fwd = true and
-    nodes = count(NodeEx node | fwdFlow(node, _, _, _, config)) and
+    nodes = count(NodeEx node | fwdFlow(node, _, _, _, _, config)) and
     fields = count(TypedContent f0 | fwdConsCand(f0, _, config)) and
     conscand = count(TypedContent f0, Ap ap | fwdConsCand(f0, ap, config)) and
-    tuples = count(NodeEx n, Cc cc, ApOption argAp, Ap ap | fwdFlow(n, cc, argAp, ap, config))
+    states = count(FlowState state | fwdFlow(_, state, _, _, _, config)) and
+    tuples =
+      count(NodeEx n, FlowState state, Cc cc, ApOption argAp, Ap ap |
+        fwdFlow(n, state, cc, argAp, ap, config)
+      )
     or
     fwd = false and
-    nodes = count(NodeEx node | revFlow(node, _, _, _, config)) and
+    nodes = count(NodeEx node | revFlow(node, _, _, _, _, config)) and
     fields = count(TypedContent f0 | consCand(f0, _, config)) and
     conscand = count(TypedContent f0, Ap ap | consCand(f0, ap, config)) and
-    tuples = count(NodeEx n, boolean b, ApOption retAp, Ap ap | revFlow(n, b, retAp, ap, config))
+    states = count(FlowState state | revFlow(_, state, _, _, _, config)) and
+    tuples =
+      count(NodeEx n, FlowState state, boolean b, ApOption retAp, Ap ap |
+        revFlow(n, state, b, retAp, ap, config)
+      )
   }
   /* End: Stage 4 logic. */
 }
@@ -2970,19 +3468,35 @@ private Configuration unbindConf(Configuration conf) {
   exists(Configuration c | result = pragma[only_bind_into](c) and conf = pragma[only_bind_into](c))
 }
 
-private predicate nodeMayUseSummary(NodeEx n, AccessPathApprox apa, Configuration config) {
-  exists(DataFlowCallable c, AccessPathApprox apa0 |
-    Stage4::parameterMayFlowThrough(_, c, apa, _) and
-    Stage4::revFlow(n, true, _, apa0, config) and
-    Stage4::fwdFlow(n, any(CallContextCall ccc), TAccessPathApproxSome(apa), apa0, config) and
+pragma[nomagic]
+private predicate nodeMayUseSummary0(
+  NodeEx n, DataFlowCallable c, FlowState state, AccessPathApprox apa, Configuration config
+) {
+  exists(AccessPathApprox apa0 |
+    Stage4::parameterMayFlowThrough(_, c, _, _) and
+    Stage4::revFlow(n, state, true, _, apa0, config) and
+    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TAccessPathApproxSome(apa), apa0, config) and
     n.getEnclosingCallable() = c
   )
 }
 
+pragma[nomagic]
+private predicate nodeMayUseSummary(
+  NodeEx n, FlowState state, AccessPathApprox apa, Configuration config
+) {
+  exists(DataFlowCallable c |
+    Stage4::parameterMayFlowThrough(_, c, apa, config) and
+    nodeMayUseSummary0(n, c, state, apa, config)
+  )
+}
+
 private newtype TSummaryCtx =
   TSummaryCtxNone() or
-  TSummaryCtxSome(ParamNodeEx p, AccessPath ap) {
-    Stage4::parameterMayFlowThrough(p, _, ap.getApprox(), _)
+  TSummaryCtxSome(ParamNodeEx p, FlowState state, AccessPath ap) {
+    exists(Configuration config |
+      Stage4::parameterMayFlowThrough(p, _, ap.getApprox(), config) and
+      Stage4::revFlow(p, state, _, _, _, config)
+    )
   }
 
 /**
@@ -3003,11 +3517,12 @@ private class SummaryCtxNone extends SummaryCtx, TSummaryCtxNone {
 /** A summary context from which a flow summary can be generated. */
 private class SummaryCtxSome extends SummaryCtx, TSummaryCtxSome {
   private ParamNodeEx p;
+  private FlowState s;
   private AccessPath ap;
 
-  SummaryCtxSome() { this = TSummaryCtxSome(p, ap) }
+  SummaryCtxSome() { this = TSummaryCtxSome(p, s, ap) }
 
-  int getParameterPos() { p.isParameterOf(_, result) }
+  ParameterPosition getParameterPos() { p.isParameterOf(_, result) }
 
   ParamNodeEx getParamNode() { result = p }
 
@@ -3037,8 +3552,8 @@ private int count1to2unfold(AccessPathApproxCons1 apa, Configuration config) {
 
 private int countNodesUsingAccessPath(AccessPathApprox apa, Configuration config) {
   result =
-    strictcount(NodeEx n |
-      Stage4::revFlow(n, _, _, apa, config) or nodeMayUseSummary(n, apa, config)
+    strictcount(NodeEx n, FlowState state |
+      Stage4::revFlow(n, state, _, _, apa, config) or nodeMayUseSummary(n, state, apa, config)
     )
 }
 
@@ -3134,10 +3649,12 @@ private newtype TAccessPath =
   }
 
 private newtype TPathNode =
-  TPathNodeMid(NodeEx node, CallContext cc, SummaryCtx sc, AccessPath ap, Configuration config) {
+  TPathNodeMid(
+    NodeEx node, FlowState state, CallContext cc, SummaryCtx sc, AccessPath ap, Configuration config
+  ) {
     // A PathNode is introduced by a source ...
-    Stage4::revFlow(node, config) and
-    sourceNode(node, config) and
+    Stage4::revFlow(node, state, config) and
+    sourceNode(node, state, config) and
     (
       if hasSourceCallCtx(config)
       then cc instanceof CallContextSomeCall
@@ -3148,15 +3665,16 @@ private newtype TPathNode =
     or
     // ... or a step from an existing PathNode to another node.
     exists(PathNodeMid mid |
-      pathStep(mid, node, cc, sc, ap) and
+      pathStep(mid, node, state, cc, sc, ap) and
       pragma[only_bind_into](config) = mid.getConfiguration() and
-      Stage4::revFlow(node, _, _, ap.getApprox(), pragma[only_bind_into](config))
+      Stage4::revFlow(node, state, _, _, ap.getApprox(), pragma[only_bind_into](config))
     )
   } or
-  TPathNodeSink(NodeEx node, Configuration config) {
+  TPathNodeSink(NodeEx node, FlowState state, Configuration config) {
     exists(PathNodeMid sink |
       sink.isAtSink() and
       node = sink.getNodeEx() and
+      state = sink.getState() and
       config = sink.getConfiguration()
     )
   }
@@ -3167,7 +3685,7 @@ private newtype TPathNode =
  * of dereference operations needed to get from the value in the node to the
  * tracked object. The final type indicates the type of the tracked object.
  */
-abstract private class AccessPath extends TAccessPath {
+private class AccessPath extends TAccessPath {
   /** Gets the head of this access path, if any. */
   abstract TypedContent getHead();
 
@@ -3354,19 +3872,17 @@ class PathNode extends TPathNode {
   /** Gets the underlying `Node`. */
   final Node getNode() { this.(PathNodeImpl).getNodeEx().projectToNode() = result }
 
+  /** Gets the `FlowState` of this node. */
+  FlowState getState() { none() }
+
   /** Gets the associated configuration. */
   Configuration getConfiguration() { none() }
 
-  private PathNode getASuccessorIfHidden() {
-    this.(PathNodeImpl).isHidden() and
-    result = this.(PathNodeImpl).getASuccessorImpl()
-  }
-
   /** Gets a successor of this node, if any. */
   final PathNode getASuccessor() {
-    result = this.(PathNodeImpl).getASuccessorImpl().getASuccessorIfHidden*() and
-    not this.(PathNodeImpl).isHidden() and
-    not result.(PathNodeImpl).isHidden()
+    result = this.(PathNodeImpl).getANonHiddenSuccessor() and
+    reach(this) and
+    reach(result)
   }
 
   /** Holds if this node is a source. */
@@ -3374,16 +3890,30 @@ class PathNode extends TPathNode {
 }
 
 abstract private class PathNodeImpl extends PathNode {
-  abstract PathNode getASuccessorImpl();
+  abstract PathNodeImpl getASuccessorImpl();
+
+  private PathNodeImpl getASuccessorIfHidden() {
+    this.isHidden() and
+    result = this.getASuccessorImpl()
+  }
+
+  final PathNodeImpl getANonHiddenSuccessor() {
+    result = this.getASuccessorImpl().getASuccessorIfHidden*() and
+    not this.isHidden() and
+    not result.isHidden()
+  }
 
   abstract NodeEx getNodeEx();
 
   predicate isHidden() {
-    hiddenNode(this.getNodeEx().asNode()) and
-    not this.isSource() and
-    not this instanceof PathNodeSink
-    or
-    this.getNodeEx() instanceof TNodeImplicitRead
+    not this.getConfiguration().includeHiddenNodes() and
+    (
+      hiddenNode(this.getNodeEx().asNode()) and
+      not this.isSource() and
+      not this instanceof PathNodeSink
+      or
+      this.getNodeEx() instanceof TNodeImplicitRead
+    )
   }
 
   private string ppAp() {
@@ -3414,15 +3944,17 @@ abstract private class PathNodeImpl extends PathNode {
 }
 
 /** Holds if `n` can reach a sink. */
-private predicate directReach(PathNode n) {
-  n instanceof PathNodeSink or directReach(n.getASuccessor())
+private predicate directReach(PathNodeImpl n) {
+  n instanceof PathNodeSink or directReach(n.getANonHiddenSuccessor())
 }
 
-/** Holds if `n` can reach a sink or is used in a subpath. */
+/** Holds if `n` can reach a sink or is used in a subpath that can reach a sink. */
 private predicate reach(PathNode n) { directReach(n) or Subpaths::retReach(n) }
 
 /** Holds if `n1.getASuccessor() = n2` and `n2` can reach a sink. */
-private predicate pathSucc(PathNode n1, PathNode n2) { n1.getASuccessor() = n2 and directReach(n2) }
+private predicate pathSucc(PathNodeImpl n1, PathNode n2) {
+  n1.getANonHiddenSuccessor() = n2 and directReach(n2)
+}
 
 private predicate pathSuccPlus(PathNode n1, PathNode n2) = fastTC(pathSucc/2)(n1, n2)
 
@@ -3431,14 +3963,25 @@ private predicate pathSuccPlus(PathNode n1, PathNode n2) = fastTC(pathSucc/2)(n1
  */
 module PathGraph {
   /** Holds if `(a,b)` is an edge in the graph of data flow path explanations. */
-  query predicate edges(PathNode a, PathNode b) { a.getASuccessor() = b and reach(b) }
+  query predicate edges(PathNode a, PathNode b) { a.getASuccessor() = b }
 
   /** Holds if `n` is a node in the graph of data flow path explanations. */
   query predicate nodes(PathNode n, string key, string val) {
     reach(n) and key = "semmle.label" and val = n.toString()
   }
 
-  query predicate subpaths = Subpaths::subpaths/4;
+  /**
+   * Holds if `(arg, par, ret, out)` forms a subpath-tuple, that is, flow through
+   * a subpath between `par` and `ret` with the connecting edges `arg -> par` and
+   * `ret -> out` is summarized as the edge `arg -> out`.
+   */
+  query predicate subpaths(PathNode arg, PathNode par, PathNode ret, PathNode out) {
+    Subpaths::subpaths(arg, par, ret, out) and
+    reach(arg) and
+    reach(par) and
+    reach(ret) and
+    reach(out)
+  }
 }
 
 /**
@@ -3447,15 +3990,18 @@ module PathGraph {
  */
 private class PathNodeMid extends PathNodeImpl, TPathNodeMid {
   NodeEx node;
+  FlowState state;
   CallContext cc;
   SummaryCtx sc;
   AccessPath ap;
   Configuration config;
 
-  PathNodeMid() { this = TPathNodeMid(node, cc, sc, ap, config) }
+  PathNodeMid() { this = TPathNodeMid(node, state, cc, sc, ap, config) }
 
   override NodeEx getNodeEx() { result = node }
 
+  override FlowState getState() { result = state }
+
   CallContext getCallContext() { result = cc }
 
   SummaryCtx getSummaryCtx() { result = sc }
@@ -3465,8 +4011,8 @@ private class PathNodeMid extends PathNodeImpl, TPathNodeMid {
   override Configuration getConfiguration() { result = config }
 
   private PathNodeMid getSuccMid() {
-    pathStep(this, result.getNodeEx(), result.getCallContext(), result.getSummaryCtx(),
-      result.getAp()) and
+    pathStep(this, result.getNodeEx(), result.getState(), result.getCallContext(),
+      result.getSummaryCtx(), result.getAp()) and
     result.getConfiguration() = unbindConf(this.getConfiguration())
   }
 
@@ -3479,7 +4025,7 @@ private class PathNodeMid extends PathNodeImpl, TPathNodeMid {
   }
 
   override predicate isSource() {
-    sourceNode(node, config) and
+    sourceNode(node, state, config) and
     (
       if hasSourceCallCtx(config)
       then cc instanceof CallContextSomeCall
@@ -3490,7 +4036,7 @@ private class PathNodeMid extends PathNodeImpl, TPathNodeMid {
   }
 
   predicate isAtSink() {
-    sinkNode(node, config) and
+    sinkNode(node, state, config) and
     ap instanceof AccessPathNil and
     if hasSinkCallCtx(config)
     then
@@ -3512,6 +4058,7 @@ private class PathNodeMid extends PathNodeImpl, TPathNodeMid {
   PathNodeSink projectToSink() {
     this.isAtSink() and
     result.getNodeEx() = node and
+    result.getState() = state and
     result.getConfiguration() = unbindConf(config)
   }
 }
@@ -3523,91 +4070,117 @@ private class PathNodeMid extends PathNodeImpl, TPathNodeMid {
  */
 private class PathNodeSink extends PathNodeImpl, TPathNodeSink {
   NodeEx node;
+  FlowState state;
   Configuration config;
 
-  PathNodeSink() { this = TPathNodeSink(node, config) }
+  PathNodeSink() { this = TPathNodeSink(node, state, config) }
 
   override NodeEx getNodeEx() { result = node }
 
+  override FlowState getState() { result = state }
+
   override Configuration getConfiguration() { result = config }
 
-  override PathNode getASuccessorImpl() { none() }
+  override PathNodeImpl getASuccessorImpl() { none() }
 
-  override predicate isSource() { sourceNode(node, config) }
+  override predicate isSource() { sourceNode(node, state, config) }
+}
+
+private predicate pathNode(
+  PathNodeMid mid, NodeEx midnode, FlowState state, CallContext cc, SummaryCtx sc, AccessPath ap,
+  Configuration conf, LocalCallContext localCC
+) {
+  midnode = mid.getNodeEx() and
+  state = mid.getState() and
+  conf = mid.getConfiguration() and
+  cc = mid.getCallContext() and
+  sc = mid.getSummaryCtx() and
+  localCC =
+    getLocalCallContext(pragma[only_bind_into](pragma[only_bind_out](cc)),
+      midnode.getEnclosingCallable()) and
+  ap = mid.getAp()
 }
 
 /**
  * Holds if data may flow from `mid` to `node`. The last step in or out of
  * a callable is recorded by `cc`.
  */
+pragma[nomagic]
 private predicate pathStep(
-  PathNodeMid mid, NodeEx node, CallContext cc, SummaryCtx sc, AccessPath ap
+  PathNodeMid mid, NodeEx node, FlowState state, CallContext cc, SummaryCtx sc, AccessPath ap
 ) {
-  exists(AccessPath ap0, NodeEx midnode, Configuration conf, LocalCallContext localCC |
-    midnode = mid.getNodeEx() and
-    conf = mid.getConfiguration() and
-    cc = mid.getCallContext() and
-    sc = mid.getSummaryCtx() and
-    localCC =
-      getLocalCallContext(pragma[only_bind_into](pragma[only_bind_out](cc)),
-        midnode.getEnclosingCallable()) and
-    ap0 = mid.getAp()
+  exists(NodeEx midnode, FlowState state0, Configuration conf, LocalCallContext localCC |
+    pathNode(mid, midnode, state0, cc, sc, ap, conf, localCC) and
+    localFlowBigStep(midnode, state0, node, state, true, _, conf, localCC)
+  )
+  or
+  exists(
+    AccessPath ap0, NodeEx midnode, FlowState state0, Configuration conf, LocalCallContext localCC
   |
-    localFlowBigStep(midnode, node, true, _, conf, localCC) and
-    ap = ap0
-    or
-    localFlowBigStep(midnode, node, false, ap.getFront(), conf, localCC) and
+    pathNode(mid, midnode, state0, cc, sc, ap0, conf, localCC) and
+    localFlowBigStep(midnode, state0, node, state, false, ap.getFront(), conf, localCC) and
     ap0 instanceof AccessPathNil
   )
   or
   jumpStep(mid.getNodeEx(), node, mid.getConfiguration()) and
+  state = mid.getState() and
   cc instanceof CallContextAny and
   sc instanceof SummaryCtxNone and
   ap = mid.getAp()
   or
   additionalJumpStep(mid.getNodeEx(), node, mid.getConfiguration()) and
+  state = mid.getState() and
   cc instanceof CallContextAny and
   sc instanceof SummaryCtxNone and
   mid.getAp() instanceof AccessPathNil and
   ap = TAccessPathNil(node.getDataFlowType())
   or
-  exists(TypedContent tc | pathStoreStep(mid, node, ap.pop(tc), tc, cc)) and
+  additionalJumpStateStep(mid.getNodeEx(), mid.getState(), node, state, mid.getConfiguration()) and
+  cc instanceof CallContextAny and
+  sc instanceof SummaryCtxNone and
+  mid.getAp() instanceof AccessPathNil and
+  ap = TAccessPathNil(node.getDataFlowType())
+  or
+  exists(TypedContent tc | pathStoreStep(mid, node, state, ap.pop(tc), tc, cc)) and
   sc = mid.getSummaryCtx()
   or
-  exists(TypedContent tc | pathReadStep(mid, node, ap.push(tc), tc, cc)) and
+  exists(TypedContent tc | pathReadStep(mid, node, state, ap.push(tc), tc, cc)) and
   sc = mid.getSummaryCtx()
   or
-  pathIntoCallable(mid, node, _, cc, sc, _, _) and ap = mid.getAp()
+  pathIntoCallable(mid, node, state, _, cc, sc, _, _) and ap = mid.getAp()
   or
-  pathOutOfCallable(mid, node, cc) and ap = mid.getAp() and sc instanceof SummaryCtxNone
+  pathOutOfCallable(mid, node, state, cc) and ap = mid.getAp() and sc instanceof SummaryCtxNone
   or
-  pathThroughCallable(mid, node, cc, ap) and sc = mid.getSummaryCtx()
+  pathThroughCallable(mid, node, state, cc, ap) and sc = mid.getSummaryCtx()
 }
 
 pragma[nomagic]
 private predicate pathReadStep(
-  PathNodeMid mid, NodeEx node, AccessPath ap0, TypedContent tc, CallContext cc
+  PathNodeMid mid, NodeEx node, FlowState state, AccessPath ap0, TypedContent tc, CallContext cc
 ) {
   ap0 = mid.getAp() and
   tc = ap0.getHead() and
   Stage4::readStepCand(mid.getNodeEx(), tc.getContent(), node, mid.getConfiguration()) and
+  state = mid.getState() and
   cc = mid.getCallContext()
 }
 
 pragma[nomagic]
 private predicate pathStoreStep(
-  PathNodeMid mid, NodeEx node, AccessPath ap0, TypedContent tc, CallContext cc
+  PathNodeMid mid, NodeEx node, FlowState state, AccessPath ap0, TypedContent tc, CallContext cc
 ) {
   ap0 = mid.getAp() and
   Stage4::storeStepCand(mid.getNodeEx(), _, tc, node, _, mid.getConfiguration()) and
+  state = mid.getState() and
   cc = mid.getCallContext()
 }
 
 private predicate pathOutOfCallable0(
-  PathNodeMid mid, ReturnPosition pos, CallContext innercc, AccessPathApprox apa,
+  PathNodeMid mid, ReturnPosition pos, FlowState state, CallContext innercc, AccessPathApprox apa,
   Configuration config
 ) {
   pos = mid.getNodeEx().(RetNodeEx).getReturnPosition() and
+  state = mid.getState() and
   innercc = mid.getCallContext() and
   innercc instanceof CallContextNoCall and
   apa = mid.getAp().getApprox() and
@@ -3616,11 +4189,11 @@ private predicate pathOutOfCallable0(
 
 pragma[nomagic]
 private predicate pathOutOfCallable1(
-  PathNodeMid mid, DataFlowCall call, ReturnKindExt kind, CallContext cc, AccessPathApprox apa,
-  Configuration config
+  PathNodeMid mid, DataFlowCall call, ReturnKindExt kind, FlowState state, CallContext cc,
+  AccessPathApprox apa, Configuration config
 ) {
   exists(ReturnPosition pos, DataFlowCallable c, CallContext innercc |
-    pathOutOfCallable0(mid, pos, innercc, apa, config) and
+    pathOutOfCallable0(mid, pos, state, innercc, apa, config) and
     c = pos.getCallable() and
     kind = pos.getKind() and
     resolveReturn(innercc, c, call)
@@ -3634,7 +4207,7 @@ private NodeEx getAnOutNodeFlow(
   ReturnKindExt kind, DataFlowCall call, AccessPathApprox apa, Configuration config
 ) {
   result.asNode() = kind.getAnOutNode(call) and
-  Stage4::revFlow(result, _, _, apa, config)
+  Stage4::revFlow(result, _, _, _, apa, config)
 }
 
 /**
@@ -3642,9 +4215,9 @@ private NodeEx getAnOutNodeFlow(
  * is a return from a callable and is recorded by `cc`, if needed.
  */
 pragma[noinline]
-private predicate pathOutOfCallable(PathNodeMid mid, NodeEx out, CallContext cc) {
+private predicate pathOutOfCallable(PathNodeMid mid, NodeEx out, FlowState state, CallContext cc) {
   exists(ReturnKindExt kind, DataFlowCall call, AccessPathApprox apa, Configuration config |
-    pathOutOfCallable1(mid, call, kind, cc, apa, config) and
+    pathOutOfCallable1(mid, call, kind, state, cc, apa, config) and
     out = getAnOutNodeFlow(kind, call, apa, config)
   )
 }
@@ -3654,39 +4227,37 @@ private predicate pathOutOfCallable(PathNodeMid mid, NodeEx out, CallContext cc)
  */
 pragma[noinline]
 private predicate pathIntoArg(
-  PathNodeMid mid, int i, CallContext cc, DataFlowCall call, AccessPath ap, AccessPathApprox apa,
-  Configuration config
+  PathNodeMid mid, ParameterPosition ppos, FlowState state, CallContext cc, DataFlowCall call,
+  AccessPath ap, AccessPathApprox apa, Configuration config
 ) {
-  exists(ArgNode arg |
-    arg = mid.getNodeEx().asNode() and
-    cc = mid.getCallContext() and
-    arg.argumentOf(call, i) and
-    ap = mid.getAp() and
+  exists(ArgNodeEx arg, ArgumentPosition apos |
+    pathNode(mid, arg, state, cc, _, ap, config, _) and
+    arg.asNode().(ArgNode).argumentOf(call, apos) and
     apa = ap.getApprox() and
-    config = mid.getConfiguration()
+    parameterMatch(ppos, apos)
   )
 }
 
 pragma[nomagic]
 private predicate parameterCand(
-  DataFlowCallable callable, int i, AccessPathApprox apa, Configuration config
+  DataFlowCallable callable, ParameterPosition pos, AccessPathApprox apa, Configuration config
 ) {
   exists(ParamNodeEx p |
-    Stage4::revFlow(p, _, _, apa, config) and
-    p.isParameterOf(callable, i)
+    Stage4::revFlow(p, _, _, _, apa, config) and
+    p.isParameterOf(callable, pos)
   )
 }
 
 pragma[nomagic]
 private predicate pathIntoCallable0(
-  PathNodeMid mid, DataFlowCallable callable, int i, CallContext outercc, DataFlowCall call,
-  AccessPath ap, Configuration config
+  PathNodeMid mid, DataFlowCallable callable, ParameterPosition pos, FlowState state,
+  CallContext outercc, DataFlowCall call, AccessPath ap, Configuration config
 ) {
   exists(AccessPathApprox apa |
-    pathIntoArg(mid, pragma[only_bind_into](i), outercc, call, ap, pragma[only_bind_into](apa),
-      pragma[only_bind_into](config)) and
+    pathIntoArg(mid, pragma[only_bind_into](pos), state, outercc, call, ap,
+      pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
     callable = resolveCall(call, outercc) and
-    parameterCand(callable, pragma[only_bind_into](i), pragma[only_bind_into](apa),
+    parameterCand(callable, pragma[only_bind_into](pos), pragma[only_bind_into](apa),
       pragma[only_bind_into](config))
   )
 }
@@ -3698,16 +4269,16 @@ private predicate pathIntoCallable0(
  */
 pragma[nomagic]
 private predicate pathIntoCallable(
-  PathNodeMid mid, ParamNodeEx p, CallContext outercc, CallContextCall innercc, SummaryCtx sc,
-  DataFlowCall call, Configuration config
+  PathNodeMid mid, ParamNodeEx p, FlowState state, CallContext outercc, CallContextCall innercc,
+  SummaryCtx sc, DataFlowCall call, Configuration config
 ) {
-  exists(int i, DataFlowCallable callable, AccessPath ap |
-    pathIntoCallable0(mid, callable, i, outercc, call, ap, config) and
-    p.isParameterOf(callable, i) and
+  exists(ParameterPosition pos, DataFlowCallable callable, AccessPath ap |
+    pathIntoCallable0(mid, callable, pos, state, outercc, call, ap, config) and
+    p.isParameterOf(callable, pos) and
     (
-      sc = TSummaryCtxSome(p, ap)
+      sc = TSummaryCtxSome(p, state, ap)
       or
-      not exists(TSummaryCtxSome(p, ap)) and
+      not exists(TSummaryCtxSome(p, state, ap)) and
       sc = TSummaryCtxNone() and
       // When the call contexts of source and sink needs to match then there's
       // never any reason to enter a callable except to find a summary. See also
@@ -3724,16 +4295,12 @@ private predicate pathIntoCallable(
 /** Holds if data may flow from a parameter given by `sc` to a return of kind `kind`. */
 pragma[nomagic]
 private predicate paramFlowsThrough(
-  ReturnKindExt kind, CallContextCall cc, SummaryCtxSome sc, AccessPath ap, AccessPathApprox apa,
-  Configuration config
+  ReturnKindExt kind, FlowState state, CallContextCall cc, SummaryCtxSome sc, AccessPath ap,
+  AccessPathApprox apa, Configuration config
 ) {
-  exists(PathNodeMid mid, RetNodeEx ret, int pos |
-    mid.getNodeEx() = ret and
+  exists(PathNodeMid mid, RetNodeEx ret, ParameterPosition pos |
+    pathNode(mid, ret, state, cc, sc, ap, config, _) and
     kind = ret.getKind() and
-    cc = mid.getCallContext() and
-    sc = mid.getSummaryCtx() and
-    config = mid.getConfiguration() and
-    ap = mid.getAp() and
     apa = ap.getApprox() and
     pos = sc.getParameterPos() and
     // we don't expect a parameter to return stored in itself, unless explicitly allowed
@@ -3747,12 +4314,12 @@ private predicate paramFlowsThrough(
 
 pragma[nomagic]
 private predicate pathThroughCallable0(
-  DataFlowCall call, PathNodeMid mid, ReturnKindExt kind, CallContext cc, AccessPath ap,
-  AccessPathApprox apa, Configuration config
+  DataFlowCall call, PathNodeMid mid, ReturnKindExt kind, FlowState state, CallContext cc,
+  AccessPath ap, AccessPathApprox apa, Configuration config
 ) {
   exists(CallContext innercc, SummaryCtx sc |
-    pathIntoCallable(mid, _, cc, innercc, sc, call, config) and
-    paramFlowsThrough(kind, innercc, sc, ap, apa, config)
+    pathIntoCallable(mid, _, _, cc, innercc, sc, call, config) and
+    paramFlowsThrough(kind, state, innercc, sc, ap, apa, config)
   )
 }
 
@@ -3761,9 +4328,11 @@ private predicate pathThroughCallable0(
  * The context `cc` is restored to its value prior to entering the callable.
  */
 pragma[noinline]
-private predicate pathThroughCallable(PathNodeMid mid, NodeEx out, CallContext cc, AccessPath ap) {
+private predicate pathThroughCallable(
+  PathNodeMid mid, NodeEx out, FlowState state, CallContext cc, AccessPath ap
+) {
   exists(DataFlowCall call, ReturnKindExt kind, AccessPathApprox apa, Configuration config |
-    pathThroughCallable0(call, mid, kind, cc, ap, apa, config) and
+    pathThroughCallable0(call, mid, kind, state, cc, ap, apa, config) and
     out = getAnOutNodeFlow(kind, call, apa, config)
   )
 }
@@ -3776,26 +4345,27 @@ private module Subpaths {
   pragma[nomagic]
   private predicate subpaths01(
     PathNodeImpl arg, ParamNodeEx par, SummaryCtxSome sc, CallContext innercc, ReturnKindExt kind,
-    NodeEx out, AccessPath apout
+    NodeEx out, FlowState sout, AccessPath apout
   ) {
     exists(Configuration config |
-      pathThroughCallable(arg, out, _, pragma[only_bind_into](apout)) and
-      pathIntoCallable(arg, par, _, innercc, sc, _, config) and
-      paramFlowsThrough(kind, innercc, sc, pragma[only_bind_into](apout), _, unbindConf(config)) and
+      pathThroughCallable(arg, out, pragma[only_bind_into](sout), _, pragma[only_bind_into](apout)) and
+      pathIntoCallable(arg, par, _, _, innercc, sc, _, config) and
+      paramFlowsThrough(kind, pragma[only_bind_into](sout), innercc, sc,
+        pragma[only_bind_into](apout), _, unbindConf(config)) and
       not arg.isHidden()
     )
   }
 
   /**
    * Holds if `(arg, par, ret, out)` forms a subpath-tuple and `ret` is determined by
-   * `kind`, `sc`, `apout`, and `innercc`.
+   * `kind`, `sc`, `sout`, `apout`, and `innercc`.
    */
   pragma[nomagic]
   private predicate subpaths02(
     PathNode arg, ParamNodeEx par, SummaryCtxSome sc, CallContext innercc, ReturnKindExt kind,
-    NodeEx out, AccessPath apout
+    NodeEx out, FlowState sout, AccessPath apout
   ) {
-    subpaths01(arg, par, sc, innercc, kind, out, apout) and
+    subpaths01(arg, par, sc, innercc, kind, out, sout, apout) and
     out.asNode() = kind.getAnOutNode(_)
   }
 
@@ -3807,16 +4377,12 @@ private module Subpaths {
    */
   pragma[nomagic]
   private predicate subpaths03(
-    PathNode arg, ParamNodeEx par, PathNodeMid ret, NodeEx out, AccessPath apout
+    PathNode arg, ParamNodeEx par, PathNodeMid ret, NodeEx out, FlowState sout, AccessPath apout
   ) {
     exists(SummaryCtxSome sc, CallContext innercc, ReturnKindExt kind, RetNodeEx retnode |
-      subpaths02(arg, par, sc, innercc, kind, out, apout) and
-      ret.getNodeEx() = retnode and
-      kind = retnode.getKind() and
-      innercc = ret.getCallContext() and
-      sc = ret.getSummaryCtx() and
-      ret.getConfiguration() = unbindConf(getPathNodeConf(arg)) and
-      apout = ret.getAp()
+      subpaths02(arg, par, sc, innercc, kind, out, sout, apout) and
+      pathNode(ret, retnode, sout, innercc, sc, apout, unbindConf(getPathNodeConf(arg)), _) and
+      kind = retnode.getKind()
     )
   }
 
@@ -3824,38 +4390,44 @@ private module Subpaths {
     n.getASuccessorImpl() = result and
     result.isHidden() and
     exists(NodeEx n1, NodeEx n2 | n1 = n.getNodeEx() and n2 = result.getNodeEx() |
-      localFlowBigStep(n1, n2, _, _, _, _) or
+      localFlowBigStep(n1, _, n2, _, _, _, _, _) or
       store(n1, _, n2, _, _) or
-      read(n1, _, n2, _)
+      readSet(n1, _, n2, _)
     )
   }
 
+  pragma[nomagic]
+  private predicate hasSuccessor(PathNodeImpl pred, PathNodeMid succ, NodeEx succNode) {
+    succ = pred.getANonHiddenSuccessor() and
+    succNode = succ.getNodeEx()
+  }
+
   /**
    * Holds if `(arg, par, ret, out)` forms a subpath-tuple, that is, flow through
    * a subpath between `par` and `ret` with the connecting edges `arg -> par` and
    * `ret -> out` is summarized as the edge `arg -> out`.
    */
-  predicate subpaths(PathNode arg, PathNodeImpl par, PathNodeImpl ret, PathNodeMid out) {
-    exists(ParamNodeEx p, NodeEx o, AccessPath apout |
-      pragma[only_bind_into](arg).getASuccessor() = par and
-      pragma[only_bind_into](arg).getASuccessor() = out and
-      subpaths03(arg, p, localStepToHidden*(ret), o, apout) and
+  predicate subpaths(PathNodeImpl arg, PathNodeImpl par, PathNodeImpl ret, PathNode out) {
+    exists(ParamNodeEx p, NodeEx o, FlowState sout, AccessPath apout, PathNodeMid out0 |
+      pragma[only_bind_into](arg).getANonHiddenSuccessor() = pragma[only_bind_into](out0) and
+      subpaths03(pragma[only_bind_into](arg), p, localStepToHidden*(ret), o, sout, apout) and
+      hasSuccessor(pragma[only_bind_into](arg), par, p) and
       not ret.isHidden() and
-      par.getNodeEx() = p and
-      out.getNodeEx() = o and
-      out.getAp() = apout
+      pathNode(out0, o, sout, _, _, apout, _, _)
+    |
+      out = out0 or out = out0.projectToSink()
     )
   }
 
   /**
-   * Holds if `n` can reach a return node in a summarized subpath.
+   * Holds if `n` can reach a return node in a summarized subpath that can reach a sink.
    */
-  predicate retReach(PathNode n) {
-    subpaths(_, _, n, _)
+  predicate retReach(PathNodeImpl n) {
+    exists(PathNode out | subpaths(_, _, n, out) | directReach(out) or retReach(out))
     or
-    exists(PathNode mid |
+    exists(PathNodeImpl mid |
       retReach(mid) and
-      n.getASuccessor() = mid and
+      n.getANonHiddenSuccessor() = mid and
       not subpaths(_, mid, _, _)
     )
   }
@@ -3887,17 +4459,21 @@ predicate flowsTo(Node source, Node sink, Configuration configuration) {
   flowsTo(_, _, source, sink, configuration)
 }
 
-private predicate finalStats(boolean fwd, int nodes, int fields, int conscand, int tuples) {
+private predicate finalStats(
+  boolean fwd, int nodes, int fields, int conscand, int states, int tuples
+) {
   fwd = true and
   nodes = count(NodeEx n0 | exists(PathNodeImpl pn | pn.getNodeEx() = n0)) and
   fields = count(TypedContent f0 | exists(PathNodeMid pn | pn.getAp().getHead() = f0)) and
   conscand = count(AccessPath ap | exists(PathNodeMid pn | pn.getAp() = ap)) and
+  states = count(FlowState state | exists(PathNodeMid pn | pn.getState() = state)) and
   tuples = count(PathNode pn)
   or
   fwd = false and
   nodes = count(NodeEx n0 | exists(PathNodeImpl pn | pn.getNodeEx() = n0 and reach(pn))) and
   fields = count(TypedContent f0 | exists(PathNodeMid pn | pn.getAp().getHead() = f0 and reach(pn))) and
   conscand = count(AccessPath ap | exists(PathNodeMid pn | pn.getAp() = ap and reach(pn))) and
+  states = count(FlowState state | exists(PathNodeMid pn | pn.getState() = state and reach(pn))) and
   tuples = count(PathNode pn | reach(pn))
 }
 
@@ -3907,27 +4483,44 @@ private predicate finalStats(boolean fwd, int nodes, int fields, int conscand, i
  * Calculates per-stage metrics for data flow.
  */
 predicate stageStats(
-  int n, string stage, int nodes, int fields, int conscand, int tuples, Configuration config
+  int n, string stage, int nodes, int fields, int conscand, int states, int tuples,
+  Configuration config
 ) {
-  stage = "1 Fwd" and n = 10 and Stage1::stats(true, nodes, fields, conscand, tuples, config)
+  stage = "1 Fwd" and
+  n = 10 and
+  Stage1::stats(true, nodes, fields, conscand, states, tuples, config)
   or
-  stage = "1 Rev" and n = 15 and Stage1::stats(false, nodes, fields, conscand, tuples, config)
+  stage = "1 Rev" and
+  n = 15 and
+  Stage1::stats(false, nodes, fields, conscand, states, tuples, config)
   or
-  stage = "2 Fwd" and n = 20 and Stage2::stats(true, nodes, fields, conscand, tuples, config)
+  stage = "2 Fwd" and
+  n = 20 and
+  Stage2::stats(true, nodes, fields, conscand, states, tuples, config)
   or
-  stage = "2 Rev" and n = 25 and Stage2::stats(false, nodes, fields, conscand, tuples, config)
+  stage = "2 Rev" and
+  n = 25 and
+  Stage2::stats(false, nodes, fields, conscand, states, tuples, config)
   or
-  stage = "3 Fwd" and n = 30 and Stage3::stats(true, nodes, fields, conscand, tuples, config)
+  stage = "3 Fwd" and
+  n = 30 and
+  Stage3::stats(true, nodes, fields, conscand, states, tuples, config)
   or
-  stage = "3 Rev" and n = 35 and Stage3::stats(false, nodes, fields, conscand, tuples, config)
+  stage = "3 Rev" and
+  n = 35 and
+  Stage3::stats(false, nodes, fields, conscand, states, tuples, config)
   or
-  stage = "4 Fwd" and n = 40 and Stage4::stats(true, nodes, fields, conscand, tuples, config)
+  stage = "4 Fwd" and
+  n = 40 and
+  Stage4::stats(true, nodes, fields, conscand, states, tuples, config)
   or
-  stage = "4 Rev" and n = 45 and Stage4::stats(false, nodes, fields, conscand, tuples, config)
+  stage = "4 Rev" and
+  n = 45 and
+  Stage4::stats(false, nodes, fields, conscand, states, tuples, config)
   or
-  stage = "5 Fwd" and n = 50 and finalStats(true, nodes, fields, conscand, tuples)
+  stage = "5 Fwd" and n = 50 and finalStats(true, nodes, fields, conscand, states, tuples)
   or
-  stage = "5 Rev" and n = 55 and finalStats(false, nodes, fields, conscand, tuples)
+  stage = "5 Rev" and n = 55 and finalStats(false, nodes, fields, conscand, states, tuples)
 }
 
 private module FlowExploration {
@@ -3937,6 +4530,8 @@ private module FlowExploration {
       or
       additionalJumpStep(node1, node2, config)
       or
+      additionalJumpStateStep(node1, _, node2, _, config)
+      or
       // flow into callable
       viableParamArgEx(_, node2, node1)
       or
@@ -3950,7 +4545,7 @@ private module FlowExploration {
   }
 
   private predicate interestingCallableSrc(DataFlowCallable c, Configuration config) {
-    exists(Node n | config.isSource(n) and c = getNodeEnclosingCallable(n))
+    exists(Node n | config.isSource(n) or config.isSource(n, _) | c = getNodeEnclosingCallable(n))
     or
     exists(DataFlowCallable mid |
       interestingCallableSrc(mid, config) and callableStep(mid, c, config)
@@ -3958,7 +4553,7 @@ private module FlowExploration {
   }
 
   private predicate interestingCallableSink(DataFlowCallable c, Configuration config) {
-    exists(Node n | config.isSink(n) and c = getNodeEnclosingCallable(n))
+    exists(Node n | config.isSink(n) or config.isSink(n, _) | c = getNodeEnclosingCallable(n))
     or
     exists(DataFlowCallable mid |
       interestingCallableSink(mid, config) and callableStep(c, mid, config)
@@ -3986,13 +4581,13 @@ private module FlowExploration {
     or
     exists(Node n, Configuration config |
       ce1 = TCallableSrc() and
-      config.isSource(n) and
+      (config.isSource(n) or config.isSource(n, _)) and
       ce2 = TCallable(getNodeEnclosingCallable(n), config)
     )
     or
     exists(Node n, Configuration config |
       ce2 = TCallableSink() and
-      config.isSink(n) and
+      (config.isSink(n) or config.isSink(n, _)) and
       ce1 = TCallable(getNodeEnclosingCallable(n), config)
     )
   }
@@ -4094,13 +4689,26 @@ private module FlowExploration {
     }
   }
 
+  private predicate relevantState(FlowState state) {
+    sourceNode(_, state, _) or
+    sinkNode(_, state, _) or
+    additionalLocalStateStep(_, state, _, _, _) or
+    additionalLocalStateStep(_, _, _, state, _) or
+    additionalJumpStateStep(_, state, _, _, _) or
+    additionalJumpStateStep(_, _, _, state, _)
+  }
+
   private newtype TSummaryCtx1 =
     TSummaryCtx1None() or
     TSummaryCtx1Param(ParamNodeEx p)
 
   private newtype TSummaryCtx2 =
     TSummaryCtx2None() or
-    TSummaryCtx2Some(PartialAccessPath ap)
+    TSummaryCtx2Some(FlowState s) { relevantState(s) }
+
+  private newtype TSummaryCtx3 =
+    TSummaryCtx3None() or
+    TSummaryCtx3Some(PartialAccessPath ap)
 
   private newtype TRevSummaryCtx1 =
     TRevSummaryCtx1None() or
@@ -4108,52 +4716,66 @@ private module FlowExploration {
 
   private newtype TRevSummaryCtx2 =
     TRevSummaryCtx2None() or
-    TRevSummaryCtx2Some(RevPartialAccessPath ap)
+    TRevSummaryCtx2Some(FlowState s) { relevantState(s) }
+
+  private newtype TRevSummaryCtx3 =
+    TRevSummaryCtx3None() or
+    TRevSummaryCtx3Some(RevPartialAccessPath ap)
 
   private newtype TPartialPathNode =
     TPartialPathNodeFwd(
-      NodeEx node, CallContext cc, TSummaryCtx1 sc1, TSummaryCtx2 sc2, PartialAccessPath ap,
-      Configuration config
+      NodeEx node, FlowState state, CallContext cc, TSummaryCtx1 sc1, TSummaryCtx2 sc2,
+      TSummaryCtx3 sc3, PartialAccessPath ap, Configuration config
     ) {
-      sourceNode(node, config) and
+      sourceNode(node, state, config) and
       cc instanceof CallContextAny and
       sc1 = TSummaryCtx1None() and
       sc2 = TSummaryCtx2None() and
+      sc3 = TSummaryCtx3None() and
       ap = TPartialNil(node.getDataFlowType()) and
-      not fullBarrier(node, config) and
       exists(config.explorationLimit())
       or
-      partialPathNodeMk0(node, cc, sc1, sc2, ap, config) and
+      partialPathNodeMk0(node, state, cc, sc1, sc2, sc3, ap, config) and
       distSrc(node.getEnclosingCallable(), config) <= config.explorationLimit()
     } or
     TPartialPathNodeRev(
-      NodeEx node, TRevSummaryCtx1 sc1, TRevSummaryCtx2 sc2, RevPartialAccessPath ap,
-      Configuration config
+      NodeEx node, FlowState state, TRevSummaryCtx1 sc1, TRevSummaryCtx2 sc2, TRevSummaryCtx3 sc3,
+      RevPartialAccessPath ap, Configuration config
     ) {
-      sinkNode(node, config) and
+      sinkNode(node, state, config) and
       sc1 = TRevSummaryCtx1None() and
       sc2 = TRevSummaryCtx2None() and
+      sc3 = TRevSummaryCtx3None() and
       ap = TRevPartialNil() and
-      not fullBarrier(node, config) and
       exists(config.explorationLimit())
       or
       exists(PartialPathNodeRev mid |
-        revPartialPathStep(mid, node, sc1, sc2, ap, config) and
-        not clearsContentCached(node.asNode(), ap.getHead()) and
+        revPartialPathStep(mid, node, state, sc1, sc2, sc3, ap, config) and
+        not clearsContentEx(node, ap.getHead()) and
+        (
+          notExpectsContent(node) or
+          expectsContentEx(node, ap.getHead())
+        ) and
         not fullBarrier(node, config) and
+        not stateBarrier(node, state, config) and
         distSink(node.getEnclosingCallable(), config) <= config.explorationLimit()
       )
     }
 
   pragma[nomagic]
   private predicate partialPathNodeMk0(
-    NodeEx node, CallContext cc, TSummaryCtx1 sc1, TSummaryCtx2 sc2, PartialAccessPath ap,
-    Configuration config
+    NodeEx node, FlowState state, CallContext cc, TSummaryCtx1 sc1, TSummaryCtx2 sc2,
+    TSummaryCtx3 sc3, PartialAccessPath ap, Configuration config
   ) {
     exists(PartialPathNodeFwd mid |
-      partialPathStep(mid, node, cc, sc1, sc2, ap, config) and
+      partialPathStep(mid, node, state, cc, sc1, sc2, sc3, ap, config) and
       not fullBarrier(node, config) and
-      not clearsContentCached(node.asNode(), ap.getHead().getContent()) and
+      not stateBarrier(node, state, config) and
+      not clearsContentEx(node, ap.getHead().getContent()) and
+      (
+        notExpectsContent(node) or
+        expectsContentEx(node, ap.getHead().getContent())
+      ) and
       if node.asNode() instanceof CastingNode
       then compatibleTypes(node.getDataFlowType(), ap.getType())
       else any()
@@ -4191,6 +4813,8 @@ private module FlowExploration {
     /** Gets the underlying `Node`. */
     final Node getNode() { this.getNodeEx().projectToNode() = result }
 
+    FlowState getState() { none() }
+
     private NodeEx getNodeEx() {
       result = this.(PartialPathNodeFwd).getNodeEx() or
       result = this.(PartialPathNodeRev).getNodeEx()
@@ -4248,135 +4872,182 @@ private module FlowExploration {
 
   private class PartialPathNodeFwd extends PartialPathNode, TPartialPathNodeFwd {
     NodeEx node;
+    FlowState state;
     CallContext cc;
     TSummaryCtx1 sc1;
     TSummaryCtx2 sc2;
+    TSummaryCtx3 sc3;
     PartialAccessPath ap;
     Configuration config;
 
-    PartialPathNodeFwd() { this = TPartialPathNodeFwd(node, cc, sc1, sc2, ap, config) }
+    PartialPathNodeFwd() { this = TPartialPathNodeFwd(node, state, cc, sc1, sc2, sc3, ap, config) }
 
     NodeEx getNodeEx() { result = node }
 
+    override FlowState getState() { result = state }
+
     CallContext getCallContext() { result = cc }
 
     TSummaryCtx1 getSummaryCtx1() { result = sc1 }
 
     TSummaryCtx2 getSummaryCtx2() { result = sc2 }
 
+    TSummaryCtx3 getSummaryCtx3() { result = sc3 }
+
     PartialAccessPath getAp() { result = ap }
 
     override Configuration getConfiguration() { result = config }
 
     override PartialPathNodeFwd getASuccessor() {
-      partialPathStep(this, result.getNodeEx(), result.getCallContext(), result.getSummaryCtx1(),
-        result.getSummaryCtx2(), result.getAp(), result.getConfiguration())
+      partialPathStep(this, result.getNodeEx(), result.getState(), result.getCallContext(),
+        result.getSummaryCtx1(), result.getSummaryCtx2(), result.getSummaryCtx3(), result.getAp(),
+        result.getConfiguration())
     }
 
     predicate isSource() {
-      sourceNode(node, config) and
+      sourceNode(node, state, config) and
       cc instanceof CallContextAny and
       sc1 = TSummaryCtx1None() and
       sc2 = TSummaryCtx2None() and
+      sc3 = TSummaryCtx3None() and
       ap instanceof TPartialNil
     }
   }
 
   private class PartialPathNodeRev extends PartialPathNode, TPartialPathNodeRev {
     NodeEx node;
+    FlowState state;
     TRevSummaryCtx1 sc1;
     TRevSummaryCtx2 sc2;
+    TRevSummaryCtx3 sc3;
     RevPartialAccessPath ap;
     Configuration config;
 
-    PartialPathNodeRev() { this = TPartialPathNodeRev(node, sc1, sc2, ap, config) }
+    PartialPathNodeRev() { this = TPartialPathNodeRev(node, state, sc1, sc2, sc3, ap, config) }
 
     NodeEx getNodeEx() { result = node }
 
+    override FlowState getState() { result = state }
+
     TRevSummaryCtx1 getSummaryCtx1() { result = sc1 }
 
     TRevSummaryCtx2 getSummaryCtx2() { result = sc2 }
 
+    TRevSummaryCtx3 getSummaryCtx3() { result = sc3 }
+
     RevPartialAccessPath getAp() { result = ap }
 
     override Configuration getConfiguration() { result = config }
 
     override PartialPathNodeRev getASuccessor() {
-      revPartialPathStep(result, this.getNodeEx(), this.getSummaryCtx1(), this.getSummaryCtx2(),
-        this.getAp(), this.getConfiguration())
+      revPartialPathStep(result, this.getNodeEx(), this.getState(), this.getSummaryCtx1(),
+        this.getSummaryCtx2(), this.getSummaryCtx3(), this.getAp(), this.getConfiguration())
     }
 
     predicate isSink() {
-      sinkNode(node, config) and
+      sinkNode(node, state, config) and
       sc1 = TRevSummaryCtx1None() and
       sc2 = TRevSummaryCtx2None() and
+      sc3 = TRevSummaryCtx3None() and
       ap = TRevPartialNil()
     }
   }
 
   private predicate partialPathStep(
-    PartialPathNodeFwd mid, NodeEx node, CallContext cc, TSummaryCtx1 sc1, TSummaryCtx2 sc2,
-    PartialAccessPath ap, Configuration config
+    PartialPathNodeFwd mid, NodeEx node, FlowState state, CallContext cc, TSummaryCtx1 sc1,
+    TSummaryCtx2 sc2, TSummaryCtx3 sc3, PartialAccessPath ap, Configuration config
   ) {
     not isUnreachableInCallCached(node.asNode(), cc.(CallContextSpecificCall).getCall()) and
     (
       localFlowStep(mid.getNodeEx(), node, config) and
+      state = mid.getState() and
       cc = mid.getCallContext() and
       sc1 = mid.getSummaryCtx1() and
       sc2 = mid.getSummaryCtx2() and
+      sc3 = mid.getSummaryCtx3() and
       ap = mid.getAp() and
       config = mid.getConfiguration()
       or
       additionalLocalFlowStep(mid.getNodeEx(), node, config) and
+      state = mid.getState() and
       cc = mid.getCallContext() and
       sc1 = mid.getSummaryCtx1() and
       sc2 = mid.getSummaryCtx2() and
+      sc3 = mid.getSummaryCtx3() and
+      mid.getAp() instanceof PartialAccessPathNil and
+      ap = TPartialNil(node.getDataFlowType()) and
+      config = mid.getConfiguration()
+      or
+      additionalLocalStateStep(mid.getNodeEx(), mid.getState(), node, state, config) and
+      cc = mid.getCallContext() and
+      sc1 = mid.getSummaryCtx1() and
+      sc2 = mid.getSummaryCtx2() and
+      sc3 = mid.getSummaryCtx3() and
       mid.getAp() instanceof PartialAccessPathNil and
       ap = TPartialNil(node.getDataFlowType()) and
       config = mid.getConfiguration()
     )
     or
     jumpStep(mid.getNodeEx(), node, config) and
+    state = mid.getState() and
     cc instanceof CallContextAny and
     sc1 = TSummaryCtx1None() and
     sc2 = TSummaryCtx2None() and
+    sc3 = TSummaryCtx3None() and
     ap = mid.getAp() and
     config = mid.getConfiguration()
     or
     additionalJumpStep(mid.getNodeEx(), node, config) and
+    state = mid.getState() and
     cc instanceof CallContextAny and
     sc1 = TSummaryCtx1None() and
     sc2 = TSummaryCtx2None() and
+    sc3 = TSummaryCtx3None() and
+    mid.getAp() instanceof PartialAccessPathNil and
+    ap = TPartialNil(node.getDataFlowType()) and
+    config = mid.getConfiguration()
+    or
+    additionalJumpStateStep(mid.getNodeEx(), mid.getState(), node, state, config) and
+    cc instanceof CallContextAny and
+    sc1 = TSummaryCtx1None() and
+    sc2 = TSummaryCtx2None() and
+    sc3 = TSummaryCtx3None() and
     mid.getAp() instanceof PartialAccessPathNil and
     ap = TPartialNil(node.getDataFlowType()) and
     config = mid.getConfiguration()
     or
     partialPathStoreStep(mid, _, _, node, ap) and
+    state = mid.getState() and
     cc = mid.getCallContext() and
     sc1 = mid.getSummaryCtx1() and
     sc2 = mid.getSummaryCtx2() and
+    sc3 = mid.getSummaryCtx3() and
     config = mid.getConfiguration()
     or
     exists(PartialAccessPath ap0, TypedContent tc |
       partialPathReadStep(mid, ap0, tc, node, cc, config) and
+      state = mid.getState() and
       sc1 = mid.getSummaryCtx1() and
       sc2 = mid.getSummaryCtx2() and
+      sc3 = mid.getSummaryCtx3() and
       apConsFwd(ap, tc, ap0, config)
     )
     or
-    partialPathIntoCallable(mid, node, _, cc, sc1, sc2, _, ap, config)
+    partialPathIntoCallable(mid, node, state, _, cc, sc1, sc2, sc3, _, ap, config)
     or
-    partialPathOutOfCallable(mid, node, cc, ap, config) and
+    partialPathOutOfCallable(mid, node, state, cc, ap, config) and
     sc1 = TSummaryCtx1None() and
-    sc2 = TSummaryCtx2None()
+    sc2 = TSummaryCtx2None() and
+    sc3 = TSummaryCtx3None()
     or
-    partialPathThroughCallable(mid, node, cc, ap, config) and
+    partialPathThroughCallable(mid, node, state, cc, ap, config) and
     sc1 = mid.getSummaryCtx1() and
-    sc2 = mid.getSummaryCtx2()
+    sc2 = mid.getSummaryCtx2() and
+    sc3 = mid.getSummaryCtx3()
   }
 
   bindingset[result, i]
-  private int unbindInt(int i) { i <= result and i >= result }
+  private int unbindInt(int i) { pragma[only_bind_out](i) = pragma[only_bind_out](result) }
 
   pragma[inline]
   private predicate partialPathStoreStep(
@@ -4419,10 +5090,11 @@ private module FlowExploration {
   }
 
   private predicate partialPathOutOfCallable0(
-    PartialPathNodeFwd mid, ReturnPosition pos, CallContext innercc, PartialAccessPath ap,
-    Configuration config
+    PartialPathNodeFwd mid, ReturnPosition pos, FlowState state, CallContext innercc,
+    PartialAccessPath ap, Configuration config
   ) {
     pos = mid.getNodeEx().(RetNodeEx).getReturnPosition() and
+    state = mid.getState() and
     innercc = mid.getCallContext() and
     innercc instanceof CallContextNoCall and
     ap = mid.getAp() and
@@ -4431,11 +5103,11 @@ private module FlowExploration {
 
   pragma[nomagic]
   private predicate partialPathOutOfCallable1(
-    PartialPathNodeFwd mid, DataFlowCall call, ReturnKindExt kind, CallContext cc,
+    PartialPathNodeFwd mid, DataFlowCall call, ReturnKindExt kind, FlowState state, CallContext cc,
     PartialAccessPath ap, Configuration config
   ) {
     exists(ReturnPosition pos, DataFlowCallable c, CallContext innercc |
-      partialPathOutOfCallable0(mid, pos, innercc, ap, config) and
+      partialPathOutOfCallable0(mid, pos, state, innercc, ap, config) and
       c = pos.getCallable() and
       kind = pos.getKind() and
       resolveReturn(innercc, c, call)
@@ -4445,10 +5117,11 @@ private module FlowExploration {
   }
 
   private predicate partialPathOutOfCallable(
-    PartialPathNodeFwd mid, NodeEx out, CallContext cc, PartialAccessPath ap, Configuration config
+    PartialPathNodeFwd mid, NodeEx out, FlowState state, CallContext cc, PartialAccessPath ap,
+    Configuration config
   ) {
     exists(ReturnKindExt kind, DataFlowCall call |
-      partialPathOutOfCallable1(mid, call, kind, cc, ap, config)
+      partialPathOutOfCallable1(mid, call, kind, state, cc, ap, config)
     |
       out.asNode() = kind.getAnOutNode(call)
     )
@@ -4456,37 +5129,40 @@ private module FlowExploration {
 
   pragma[noinline]
   private predicate partialPathIntoArg(
-    PartialPathNodeFwd mid, int i, CallContext cc, DataFlowCall call, PartialAccessPath ap,
-    Configuration config
+    PartialPathNodeFwd mid, ParameterPosition ppos, FlowState state, CallContext cc,
+    DataFlowCall call, PartialAccessPath ap, Configuration config
   ) {
-    exists(ArgNode arg |
+    exists(ArgNode arg, ArgumentPosition apos |
       arg = mid.getNodeEx().asNode() and
+      state = mid.getState() and
       cc = mid.getCallContext() and
-      arg.argumentOf(call, i) and
+      arg.argumentOf(call, apos) and
       ap = mid.getAp() and
-      config = mid.getConfiguration()
+      config = mid.getConfiguration() and
+      parameterMatch(ppos, apos)
     )
   }
 
   pragma[nomagic]
   private predicate partialPathIntoCallable0(
-    PartialPathNodeFwd mid, DataFlowCallable callable, int i, CallContext outercc,
-    DataFlowCall call, PartialAccessPath ap, Configuration config
+    PartialPathNodeFwd mid, DataFlowCallable callable, ParameterPosition pos, FlowState state,
+    CallContext outercc, DataFlowCall call, PartialAccessPath ap, Configuration config
   ) {
-    partialPathIntoArg(mid, i, outercc, call, ap, config) and
+    partialPathIntoArg(mid, pos, state, outercc, call, ap, config) and
     callable = resolveCall(call, outercc)
   }
 
   private predicate partialPathIntoCallable(
-    PartialPathNodeFwd mid, ParamNodeEx p, CallContext outercc, CallContextCall innercc,
-    TSummaryCtx1 sc1, TSummaryCtx2 sc2, DataFlowCall call, PartialAccessPath ap,
-    Configuration config
+    PartialPathNodeFwd mid, ParamNodeEx p, FlowState state, CallContext outercc,
+    CallContextCall innercc, TSummaryCtx1 sc1, TSummaryCtx2 sc2, TSummaryCtx3 sc3,
+    DataFlowCall call, PartialAccessPath ap, Configuration config
   ) {
-    exists(int i, DataFlowCallable callable |
-      partialPathIntoCallable0(mid, callable, i, outercc, call, ap, config) and
-      p.isParameterOf(callable, i) and
+    exists(ParameterPosition pos, DataFlowCallable callable |
+      partialPathIntoCallable0(mid, callable, pos, state, outercc, call, ap, config) and
+      p.isParameterOf(callable, pos) and
       sc1 = TSummaryCtx1Param(p) and
-      sc2 = TSummaryCtx2Some(ap)
+      sc2 = TSummaryCtx2Some(state) and
+      sc3 = TSummaryCtx3Some(ap)
     |
       if recordDataFlowCallSite(call, callable)
       then innercc = TSpecificCall(call)
@@ -4496,15 +5172,17 @@ private module FlowExploration {
 
   pragma[nomagic]
   private predicate paramFlowsThroughInPartialPath(
-    ReturnKindExt kind, CallContextCall cc, TSummaryCtx1 sc1, TSummaryCtx2 sc2,
-    PartialAccessPath ap, Configuration config
+    ReturnKindExt kind, FlowState state, CallContextCall cc, TSummaryCtx1 sc1, TSummaryCtx2 sc2,
+    TSummaryCtx3 sc3, PartialAccessPath ap, Configuration config
   ) {
     exists(PartialPathNodeFwd mid, RetNodeEx ret |
       mid.getNodeEx() = ret and
       kind = ret.getKind() and
+      state = mid.getState() and
       cc = mid.getCallContext() and
       sc1 = mid.getSummaryCtx1() and
       sc2 = mid.getSummaryCtx2() and
+      sc3 = mid.getSummaryCtx3() and
       config = mid.getConfiguration() and
       ap = mid.getAp()
     )
@@ -4512,85 +5190,119 @@ private module FlowExploration {
 
   pragma[noinline]
   private predicate partialPathThroughCallable0(
-    DataFlowCall call, PartialPathNodeFwd mid, ReturnKindExt kind, CallContext cc,
+    DataFlowCall call, PartialPathNodeFwd mid, ReturnKindExt kind, FlowState state, CallContext cc,
     PartialAccessPath ap, Configuration config
   ) {
-    exists(CallContext innercc, TSummaryCtx1 sc1, TSummaryCtx2 sc2 |
-      partialPathIntoCallable(mid, _, cc, innercc, sc1, sc2, call, _, config) and
-      paramFlowsThroughInPartialPath(kind, innercc, sc1, sc2, ap, config)
+    exists(CallContext innercc, TSummaryCtx1 sc1, TSummaryCtx2 sc2, TSummaryCtx3 sc3 |
+      partialPathIntoCallable(mid, _, _, cc, innercc, sc1, sc2, sc3, call, _, config) and
+      paramFlowsThroughInPartialPath(kind, state, innercc, sc1, sc2, sc3, ap, config)
     )
   }
 
   private predicate partialPathThroughCallable(
-    PartialPathNodeFwd mid, NodeEx out, CallContext cc, PartialAccessPath ap, Configuration config
+    PartialPathNodeFwd mid, NodeEx out, FlowState state, CallContext cc, PartialAccessPath ap,
+    Configuration config
   ) {
     exists(DataFlowCall call, ReturnKindExt kind |
-      partialPathThroughCallable0(call, mid, kind, cc, ap, config) and
+      partialPathThroughCallable0(call, mid, kind, state, cc, ap, config) and
       out.asNode() = kind.getAnOutNode(call)
     )
   }
 
+  pragma[nomagic]
   private predicate revPartialPathStep(
-    PartialPathNodeRev mid, NodeEx node, TRevSummaryCtx1 sc1, TRevSummaryCtx2 sc2,
-    RevPartialAccessPath ap, Configuration config
+    PartialPathNodeRev mid, NodeEx node, FlowState state, TRevSummaryCtx1 sc1, TRevSummaryCtx2 sc2,
+    TRevSummaryCtx3 sc3, RevPartialAccessPath ap, Configuration config
   ) {
     localFlowStep(node, mid.getNodeEx(), config) and
+    state = mid.getState() and
     sc1 = mid.getSummaryCtx1() and
     sc2 = mid.getSummaryCtx2() and
+    sc3 = mid.getSummaryCtx3() and
     ap = mid.getAp() and
     config = mid.getConfiguration()
     or
     additionalLocalFlowStep(node, mid.getNodeEx(), config) and
+    state = mid.getState() and
     sc1 = mid.getSummaryCtx1() and
     sc2 = mid.getSummaryCtx2() and
+    sc3 = mid.getSummaryCtx3() and
+    mid.getAp() instanceof RevPartialAccessPathNil and
+    ap = TRevPartialNil() and
+    config = mid.getConfiguration()
+    or
+    additionalLocalStateStep(node, state, mid.getNodeEx(), mid.getState(), config) and
+    sc1 = mid.getSummaryCtx1() and
+    sc2 = mid.getSummaryCtx2() and
+    sc3 = mid.getSummaryCtx3() and
     mid.getAp() instanceof RevPartialAccessPathNil and
     ap = TRevPartialNil() and
     config = mid.getConfiguration()
     or
     jumpStep(node, mid.getNodeEx(), config) and
+    state = mid.getState() and
     sc1 = TRevSummaryCtx1None() and
     sc2 = TRevSummaryCtx2None() and
+    sc3 = TRevSummaryCtx3None() and
     ap = mid.getAp() and
     config = mid.getConfiguration()
     or
     additionalJumpStep(node, mid.getNodeEx(), config) and
+    state = mid.getState() and
     sc1 = TRevSummaryCtx1None() and
     sc2 = TRevSummaryCtx2None() and
+    sc3 = TRevSummaryCtx3None() and
+    mid.getAp() instanceof RevPartialAccessPathNil and
+    ap = TRevPartialNil() and
+    config = mid.getConfiguration()
+    or
+    additionalJumpStateStep(node, state, mid.getNodeEx(), mid.getState(), config) and
+    sc1 = TRevSummaryCtx1None() and
+    sc2 = TRevSummaryCtx2None() and
+    sc3 = TRevSummaryCtx3None() and
     mid.getAp() instanceof RevPartialAccessPathNil and
     ap = TRevPartialNil() and
     config = mid.getConfiguration()
     or
     revPartialPathReadStep(mid, _, _, node, ap) and
+    state = mid.getState() and
     sc1 = mid.getSummaryCtx1() and
     sc2 = mid.getSummaryCtx2() and
+    sc3 = mid.getSummaryCtx3() and
     config = mid.getConfiguration()
     or
     exists(RevPartialAccessPath ap0, Content c |
       revPartialPathStoreStep(mid, ap0, c, node, config) and
+      state = mid.getState() and
       sc1 = mid.getSummaryCtx1() and
       sc2 = mid.getSummaryCtx2() and
+      sc3 = mid.getSummaryCtx3() and
       apConsRev(ap, c, ap0, config)
     )
     or
     exists(ParamNodeEx p |
       mid.getNodeEx() = p and
       viableParamArgEx(_, p, node) and
+      state = mid.getState() and
       sc1 = mid.getSummaryCtx1() and
       sc2 = mid.getSummaryCtx2() and
+      sc3 = mid.getSummaryCtx3() and
       sc1 = TRevSummaryCtx1None() and
       sc2 = TRevSummaryCtx2None() and
+      sc3 = TRevSummaryCtx3None() and
       ap = mid.getAp() and
       config = mid.getConfiguration()
     )
     or
     exists(ReturnPosition pos |
-      revPartialPathIntoReturn(mid, pos, sc1, sc2, _, ap, config) and
+      revPartialPathIntoReturn(mid, pos, state, sc1, sc2, sc3, _, ap, config) and
       pos = getReturnPosition(node.asNode())
     )
     or
-    revPartialPathThroughCallable(mid, node, ap, config) and
+    revPartialPathThroughCallable(mid, node, state, ap, config) and
     sc1 = mid.getSummaryCtx1() and
-    sc2 = mid.getSummaryCtx2()
+    sc2 = mid.getSummaryCtx2() and
+    sc3 = mid.getSummaryCtx3()
   }
 
   pragma[inline]
@@ -4633,14 +5345,17 @@ private module FlowExploration {
 
   pragma[nomagic]
   private predicate revPartialPathIntoReturn(
-    PartialPathNodeRev mid, ReturnPosition pos, TRevSummaryCtx1Some sc1, TRevSummaryCtx2Some sc2,
-    DataFlowCall call, RevPartialAccessPath ap, Configuration config
+    PartialPathNodeRev mid, ReturnPosition pos, FlowState state, TRevSummaryCtx1Some sc1,
+    TRevSummaryCtx2Some sc2, TRevSummaryCtx3Some sc3, DataFlowCall call, RevPartialAccessPath ap,
+    Configuration config
   ) {
     exists(NodeEx out |
       mid.getNodeEx() = out and
+      mid.getState() = state and
       viableReturnPosOutEx(call, pos, out) and
       sc1 = TRevSummaryCtx1Some(pos) and
-      sc2 = TRevSummaryCtx2Some(ap) and
+      sc2 = TRevSummaryCtx2Some(state) and
+      sc3 = TRevSummaryCtx3Some(ap) and
       ap = mid.getAp() and
       config = mid.getConfiguration()
     )
@@ -4648,36 +5363,40 @@ private module FlowExploration {
 
   pragma[nomagic]
   private predicate revPartialPathFlowsThrough(
-    int pos, TRevSummaryCtx1Some sc1, TRevSummaryCtx2Some sc2, RevPartialAccessPath ap,
-    Configuration config
+    ArgumentPosition apos, FlowState state, TRevSummaryCtx1Some sc1, TRevSummaryCtx2Some sc2,
+    TRevSummaryCtx3Some sc3, RevPartialAccessPath ap, Configuration config
   ) {
-    exists(PartialPathNodeRev mid, ParamNodeEx p |
+    exists(PartialPathNodeRev mid, ParamNodeEx p, ParameterPosition ppos |
       mid.getNodeEx() = p and
-      p.getPosition() = pos and
+      mid.getState() = state and
+      p.getPosition() = ppos and
       sc1 = mid.getSummaryCtx1() and
       sc2 = mid.getSummaryCtx2() and
+      sc3 = mid.getSummaryCtx3() and
       ap = mid.getAp() and
-      config = mid.getConfiguration()
+      config = mid.getConfiguration() and
+      parameterMatch(ppos, apos)
     )
   }
 
   pragma[nomagic]
   private predicate revPartialPathThroughCallable0(
-    DataFlowCall call, PartialPathNodeRev mid, int pos, RevPartialAccessPath ap,
-    Configuration config
+    DataFlowCall call, PartialPathNodeRev mid, ArgumentPosition pos, FlowState state,
+    RevPartialAccessPath ap, Configuration config
   ) {
-    exists(TRevSummaryCtx1Some sc1, TRevSummaryCtx2Some sc2 |
-      revPartialPathIntoReturn(mid, _, sc1, sc2, call, _, config) and
-      revPartialPathFlowsThrough(pos, sc1, sc2, ap, config)
+    exists(TRevSummaryCtx1Some sc1, TRevSummaryCtx2Some sc2, TRevSummaryCtx3Some sc3 |
+      revPartialPathIntoReturn(mid, _, _, sc1, sc2, sc3, call, _, config) and
+      revPartialPathFlowsThrough(pos, state, sc1, sc2, sc3, ap, config)
     )
   }
 
   pragma[nomagic]
   private predicate revPartialPathThroughCallable(
-    PartialPathNodeRev mid, ArgNodeEx node, RevPartialAccessPath ap, Configuration config
+    PartialPathNodeRev mid, ArgNodeEx node, FlowState state, RevPartialAccessPath ap,
+    Configuration config
   ) {
-    exists(DataFlowCall call, int pos |
-      revPartialPathThroughCallable0(call, mid, pos, ap, config) and
+    exists(DataFlowCall call, ArgumentPosition pos |
+      revPartialPathThroughCallable0(call, mid, pos, state, ap, config) and
       node.asNode().(ArgNode).argumentOf(call, pos)
     )
   }
diff --git a/go/ql/lib/semmle/go/dataflow/internal/DataFlowImplCommon.qll b/go/ql/lib/semmle/go/dataflow/internal/DataFlowImplCommon.qll
index c139593b1b8..95b34f15dad 100644
--- a/go/ql/lib/semmle/go/dataflow/internal/DataFlowImplCommon.qll
+++ b/go/ql/lib/semmle/go/dataflow/internal/DataFlowImplCommon.qll
@@ -3,6 +3,17 @@ private import DataFlowImplSpecific::Public
 import Cached
 
 module DataFlowImplCommonPublic {
+  /** A state value to track during data flow. */
+  class FlowState = string;
+
+  /**
+   * The default state, which is used when the state is unspecified for a source
+   * or a sink.
+   */
+  class FlowStateEmpty extends FlowState {
+    FlowStateEmpty() { this = "" }
+  }
+
   private newtype TFlowFeature =
     TFeatureHasSourceCallContext() or
     TFeatureHasSinkCallContext() or
@@ -62,6 +73,18 @@ predicate accessPathCostLimits(int apLimit, int tupleLimit) {
   tupleLimit = 1000
 }
 
+/**
+ * Holds if `arg` is an argument of `call` with an argument position that matches
+ * parameter position `ppos`.
+ */
+pragma[noinline]
+predicate argumentPositionMatch(DataFlowCall call, ArgNode arg, ParameterPosition ppos) {
+  exists(ArgumentPosition apos |
+    arg.argumentOf(call, apos) and
+    parameterMatch(ppos, apos)
+  )
+}
+
 /**
  * Provides a simple data-flow analysis for resolving lambda calls. The analysis
  * currently excludes read-steps, store-steps, and flow-through.
@@ -71,25 +94,27 @@ predicate accessPathCostLimits(int apLimit, int tupleLimit) {
  * calls. For this reason, we cannot reuse the code from `DataFlowImpl.qll` directly.
  */
 private module LambdaFlow {
-  private predicate viableParamNonLambda(DataFlowCall call, int i, ParamNode p) {
-    p.isParameterOf(viableCallable(call), i)
+  pragma[noinline]
+  private predicate viableParamNonLambda(DataFlowCall call, ParameterPosition ppos, ParamNode p) {
+    p.isParameterOf(viableCallable(call), ppos)
   }
 
-  private predicate viableParamLambda(DataFlowCall call, int i, ParamNode p) {
-    p.isParameterOf(viableCallableLambda(call, _), i)
+  pragma[noinline]
+  private predicate viableParamLambda(DataFlowCall call, ParameterPosition ppos, ParamNode p) {
+    p.isParameterOf(viableCallableLambda(call, _), ppos)
   }
 
   private predicate viableParamArgNonLambda(DataFlowCall call, ParamNode p, ArgNode arg) {
-    exists(int i |
-      viableParamNonLambda(call, i, p) and
-      arg.argumentOf(call, i)
+    exists(ParameterPosition ppos |
+      viableParamNonLambda(call, ppos, p) and
+      argumentPositionMatch(call, arg, ppos)
     )
   }
 
   private predicate viableParamArgLambda(DataFlowCall call, ParamNode p, ArgNode arg) {
-    exists(int i |
-      viableParamLambda(call, i, p) and
-      arg.argumentOf(call, i)
+    exists(ParameterPosition ppos |
+      viableParamLambda(call, ppos, p) and
+      argumentPositionMatch(call, arg, ppos)
     )
   }
 
@@ -191,10 +216,9 @@ private module LambdaFlow {
     or
     // jump step
     exists(Node mid, DataFlowType t0 |
-      revLambdaFlow(lambdaCall, kind, mid, t0, _, _, _) and
+      revLambdaFlow(lambdaCall, kind, mid, t0, _, _, lastCall) and
       toReturn = false and
-      toJump = true and
-      lastCall = TDataFlowCallNone()
+      toJump = true
     |
       jumpStepCached(node, mid) and
       t = t0
@@ -301,7 +325,10 @@ private module Cached {
   predicate jumpStepCached(Node node1, Node node2) { jumpStep(node1, node2) }
 
   cached
-  predicate clearsContentCached(Node n, Content c) { clearsContent(n, c) }
+  predicate clearsContentCached(Node n, ContentSet c) { clearsContent(n, c) }
+
+  cached
+  predicate expectsContentCached(Node n, ContentSet c) { expectsContent(n, c) }
 
   cached
   predicate isUnreachableInCallCached(Node n, DataFlowCall call) { isUnreachableInCall(n, call) }
@@ -322,7 +349,7 @@ private module Cached {
     or
     exists(ArgNode arg |
       result.(PostUpdateNode).getPreUpdateNode() = arg and
-      arg.argumentOf(call, k.(ParamUpdateReturnKind).getPosition())
+      arg.argumentOf(call, k.(ParamUpdateReturnKind).getAMatchingArgumentPosition())
     )
   }
 
@@ -330,7 +357,7 @@ private module Cached {
   predicate returnNodeExt(Node n, ReturnKindExt k) {
     k = TValueReturn(n.(ReturnNode).getKind())
     or
-    exists(ParamNode p, int pos |
+    exists(ParamNode p, ParameterPosition pos |
       parameterValueFlowsToPreUpdate(p, n) and
       p.isParameterOf(_, pos) and
       k = TParamUpdate(pos)
@@ -348,15 +375,17 @@ private module Cached {
     // For reads, `x.f`, we want to check that the tracked type after the read (which
     // is obtained by popping the head of the access path stack) is compatible with
     // the type of `x.f`.
-    read(_, _, n)
+    readSet(_, _, n)
   }
 
   cached
-  predicate parameterNode(Node p, DataFlowCallable c, int pos) { isParameterNode(p, c, pos) }
+  predicate parameterNode(Node p, DataFlowCallable c, ParameterPosition pos) {
+    isParameterNode(p, c, pos)
+  }
 
   cached
-  predicate argumentNode(Node n, DataFlowCall call, int pos) {
-    n.(ArgumentNode).argumentOf(call, pos)
+  predicate argumentNode(Node n, DataFlowCall call, ArgumentPosition pos) {
+    isArgumentNode(n, call, pos)
   }
 
   /**
@@ -374,12 +403,12 @@ private module Cached {
   }
 
   /**
-   * Holds if `p` is the `i`th parameter of a viable dispatch target of `call`.
-   * The instance parameter is considered to have index `-1`.
+   * Holds if `p` is the parameter of a viable dispatch target of `call`,
+   * and `p` has position `ppos`.
    */
   pragma[nomagic]
-  private predicate viableParam(DataFlowCall call, int i, ParamNode p) {
-    p.isParameterOf(viableCallableExt(call), i)
+  private predicate viableParam(DataFlowCall call, ParameterPosition ppos, ParamNode p) {
+    p.isParameterOf(viableCallableExt(call), ppos)
   }
 
   /**
@@ -388,9 +417,9 @@ private module Cached {
    */
   cached
   predicate viableParamArg(DataFlowCall call, ParamNode p, ArgNode arg) {
-    exists(int i |
-      viableParam(call, i, p) and
-      arg.argumentOf(call, i) and
+    exists(ParameterPosition ppos |
+      viableParam(call, ppos, p) and
+      argumentPositionMatch(call, arg, ppos) and
       compatibleTypes(getNodeDataFlowType(arg), getNodeDataFlowType(p))
     )
   }
@@ -442,7 +471,7 @@ private module Cached {
         // read
         exists(Node mid |
           parameterValueFlowCand(p, mid, false) and
-          read(mid, _, node) and
+          readSet(mid, _, node) and
           read = true
         )
         or
@@ -630,8 +659,10 @@ private module Cached {
        * Holds if `arg` flows to `out` through a call using only
        * value-preserving steps and a single read step, not taking call
        * contexts into account, thus representing a getter-step.
+       *
+       * This predicate is exposed for testing only.
        */
-      predicate getterStep(ArgNode arg, Content c, Node out) {
+      predicate getterStep(ArgNode arg, ContentSet c, Node out) {
         argumentValueFlowsThrough(arg, TReadStepTypesSome(_, c, _), out)
       }
 
@@ -754,8 +785,12 @@ private module Cached {
     parameterValueFlow(p, n.getPreUpdateNode(), TReadStepTypesNone())
   }
 
-  private predicate store(
-    Node node1, Content c, Node node2, DataFlowType contentType, DataFlowType containerType
+  cached
+  predicate readSet(Node node1, ContentSet c, Node node2) { readStep(node1, c, node2) }
+
+  cached
+  predicate storeSet(
+    Node node1, ContentSet c, Node node2, DataFlowType contentType, DataFlowType containerType
   ) {
     storeStep(node1, c, node2) and
     contentType = getNodeDataFlowType(node1) and
@@ -767,14 +802,19 @@ private module Cached {
     |
       argumentValueFlowsThrough(n2, TReadStepTypesSome(containerType, c, contentType), n1)
       or
-      read(n2, c, n1) and
+      readSet(n2, c, n1) and
       contentType = getNodeDataFlowType(n1) and
       containerType = getNodeDataFlowType(n2)
     )
   }
 
-  cached
-  predicate read(Node node1, Content c, Node node2) { readStep(node1, c, node2) }
+  private predicate store(
+    Node node1, Content c, Node node2, DataFlowType contentType, DataFlowType containerType
+  ) {
+    exists(ContentSet cs |
+      c = cs.getAStoreContent() and storeSet(node1, cs, node2, contentType, containerType)
+    )
+  }
 
   /**
    * Holds if data can flow from `node1` to `node2` via a direct assignment to
@@ -862,7 +902,7 @@ private module Cached {
   cached
   newtype TReturnKindExt =
     TValueReturn(ReturnKind kind) or
-    TParamUpdate(int pos) { exists(ParamNode p | p.isParameterOf(_, pos)) }
+    TParamUpdate(ParameterPosition pos) { exists(ParamNode p | p.isParameterOf(_, pos)) }
 
   cached
   newtype TBooleanOption =
@@ -905,16 +945,16 @@ class CastingNode extends Node {
 }
 
 private predicate readStepWithTypes(
-  Node n1, DataFlowType container, Content c, Node n2, DataFlowType content
+  Node n1, DataFlowType container, ContentSet c, Node n2, DataFlowType content
 ) {
-  read(n1, c, n2) and
+  readSet(n1, c, n2) and
   container = getNodeDataFlowType(n1) and
   content = getNodeDataFlowType(n2)
 }
 
 private newtype TReadStepTypesOption =
   TReadStepTypesNone() or
-  TReadStepTypesSome(DataFlowType container, Content c, DataFlowType content) {
+  TReadStepTypesSome(DataFlowType container, ContentSet c, DataFlowType content) {
     readStepWithTypes(_, container, c, _, content)
   }
 
@@ -923,7 +963,7 @@ private class ReadStepTypesOption extends TReadStepTypesOption {
 
   DataFlowType getContainerType() { this = TReadStepTypesSome(result, _, _) }
 
-  Content getContent() { this = TReadStepTypesSome(_, result, _) }
+  ContentSet getContent() { this = TReadStepTypesSome(_, result, _) }
 
   DataFlowType getContentType() { this = TReadStepTypesSome(_, _, result) }
 
@@ -1054,9 +1094,9 @@ class ParamNode extends Node {
 
   /**
    * Holds if this node is the parameter of callable `c` at the specified
-   * (zero-based) position.
+   * position.
    */
-  predicate isParameterOf(DataFlowCallable c, int i) { parameterNode(this, c, i) }
+  predicate isParameterOf(DataFlowCallable c, ParameterPosition pos) { parameterNode(this, c, pos) }
 }
 
 /** A data-flow node that represents a call argument. */
@@ -1064,7 +1104,9 @@ class ArgNode extends Node {
   ArgNode() { argumentNode(this, _, _) }
 
   /** Holds if this argument occurs at the given position in the given call. */
-  final predicate argumentOf(DataFlowCall call, int pos) { argumentNode(this, call, pos) }
+  final predicate argumentOf(DataFlowCall call, ArgumentPosition pos) {
+    argumentNode(this, call, pos)
+  }
 }
 
 /**
@@ -1110,11 +1152,14 @@ class ValueReturnKind extends ReturnKindExt, TValueReturn {
 }
 
 class ParamUpdateReturnKind extends ReturnKindExt, TParamUpdate {
-  private int pos;
+  private ParameterPosition pos;
 
   ParamUpdateReturnKind() { this = TParamUpdate(pos) }
 
-  int getPosition() { result = pos }
+  ParameterPosition getPosition() { result = pos }
+
+  pragma[nomagic]
+  ArgumentPosition getAMatchingArgumentPosition() { parameterMatch(pos, result) }
 
   override string toString() { result = "param update " + pos }
 }
@@ -1258,7 +1303,7 @@ class DataFlowCallOption extends TDataFlowCallOption {
   }
 }
 
-/** Content tagged with the type of a containing object. */
+/** A `Content` tagged with the type of a containing object. */
 class TypedContent extends MkTypedContent {
   private Content c;
   private DataFlowType t;
@@ -1293,8 +1338,6 @@ abstract class AccessPathFront extends TAccessPathFront {
   abstract boolean toBoolNonEmpty();
 
   TypedContent getHead() { this = TFrontHead(result) }
-
-  predicate isClearedAt(Node n) { clearsContentCached(n, this.getHead().getContent()) }
 }
 
 class AccessPathFrontNil extends AccessPathFront, TFrontNil {
diff --git a/go/ql/lib/semmle/go/dataflow/internal/FlowSummaryImpl.qll b/go/ql/lib/semmle/go/dataflow/internal/FlowSummaryImpl.qll
index e59c96a5c17..7abae2b105b 100644
--- a/go/ql/lib/semmle/go/dataflow/internal/FlowSummaryImpl.qll
+++ b/go/ql/lib/semmle/go/dataflow/internal/FlowSummaryImpl.qll
@@ -24,7 +24,11 @@ module Public {
   class SummaryComponent extends TSummaryComponent {
     /** Gets a textual representation of this summary component. */
     string toString() {
-      exists(Content c | this = TContentSummaryComponent(c) and result = c.toString())
+      exists(ContentSet c | this = TContentSummaryComponent(c) and result = c.toString())
+      or
+      exists(ContentSet c | this = TWithoutContentSummaryComponent(c) and result = "without " + c)
+      or
+      exists(ContentSet c | this = TWithContentSummaryComponent(c) and result = "with " + c)
       or
       exists(ArgumentPosition pos |
         this = TParameterSummaryComponent(pos) and result = "parameter " + pos
@@ -41,7 +45,13 @@ module Public {
   /** Provides predicates for constructing summary components. */
   module SummaryComponent {
     /** Gets a summary component for content `c`. */
-    SummaryComponent content(Content c) { result = TContentSummaryComponent(c) }
+    SummaryComponent content(ContentSet c) { result = TContentSummaryComponent(c) }
+
+    /** Gets a summary component where data is not allowed to be stored in `c`. */
+    SummaryComponent withoutContent(ContentSet c) { result = TWithoutContentSummaryComponent(c) }
+
+    /** Gets a summary component where data must be stored in `c`. */
+    SummaryComponent withContent(ContentSet c) { result = TWithContentSummaryComponent(c) }
 
     /** Gets a summary component for a parameter at position `pos`. */
     SummaryComponent parameter(ArgumentPosition pos) { result = TParameterSummaryComponent(pos) }
@@ -185,7 +195,10 @@ module Public {
   }
 
   /** A callable with a flow summary. */
-  abstract class SummarizedCallable extends DataFlowCallable {
+  abstract class SummarizedCallable extends SummarizedCallableBase {
+    bindingset[this]
+    SummarizedCallable() { any() }
+
     /**
      * Holds if data may flow from `input` to `output` through this callable.
      *
@@ -216,9 +229,16 @@ module Public {
     /**
      * Holds if values stored inside `content` are cleared on objects passed as
      * arguments at position `pos` to this callable.
+     *
+     * TODO: Remove once all languages support `WithoutContent` tokens.
      */
     pragma[nomagic]
-    predicate clearsContent(ParameterPosition pos, Content content) { none() }
+    predicate clearsContent(ParameterPosition pos, ContentSet content) { none() }
+
+    /**
+     * Holds if the summary is auto generated.
+     */
+    predicate isAutoGenerated() { none() }
   }
 }
 
@@ -231,10 +251,12 @@ module Private {
   import AccessPathSyntax
 
   newtype TSummaryComponent =
-    TContentSummaryComponent(Content c) or
+    TContentSummaryComponent(ContentSet c) or
     TParameterSummaryComponent(ArgumentPosition pos) or
     TArgumentSummaryComponent(ParameterPosition pos) or
-    TReturnSummaryComponent(ReturnKind rk)
+    TReturnSummaryComponent(ReturnKind rk) or
+    TWithoutContentSummaryComponent(ContentSet c) or
+    TWithContentSummaryComponent(ContentSet c)
 
   private TParameterSummaryComponent thisParam() {
     result = TParameterSummaryComponent(instanceParameterPosition())
@@ -296,6 +318,23 @@ module Private {
           SummaryComponentStack::singleton(TArgumentSummaryComponent(_))) and
       preservesValue = preservesValue1.booleanAnd(preservesValue2)
     )
+    or
+    exists(ParameterPosition ppos, ContentSet cs |
+      c.clearsContent(ppos, cs) and
+      input = SummaryComponentStack::push(SummaryComponent::withoutContent(cs), output) and
+      output = SummaryComponentStack::argument(ppos) and
+      preservesValue = true
+    )
+  }
+
+  private class MkClearStack extends RequiredSummaryComponentStack {
+    override predicate required(SummaryComponent head, SummaryComponentStack tail) {
+      exists(SummarizedCallable sc, ParameterPosition ppos, ContentSet cs |
+        sc.clearsContent(ppos, cs) and
+        head = SummaryComponent::withoutContent(cs) and
+        tail = SummaryComponentStack::argument(ppos)
+      )
+    }
   }
 
   /**
@@ -378,10 +417,7 @@ module Private {
 
   private newtype TSummaryNodeState =
     TSummaryNodeInputState(SummaryComponentStack s) { inputState(_, s) } or
-    TSummaryNodeOutputState(SummaryComponentStack s) { outputState(_, s) } or
-    TSummaryNodeClearsContentState(ParameterPosition pos, boolean post) {
-      any(SummarizedCallable sc).clearsContent(pos, _) and post in [false, true]
-    }
+    TSummaryNodeOutputState(SummaryComponentStack s) { outputState(_, s) }
 
   /**
    * A state used to break up (complex) flow summaries into atomic flow steps.
@@ -428,12 +464,6 @@ module Private {
         this = TSummaryNodeOutputState(s) and
         result = "to write: " + s
       )
-      or
-      exists(ParameterPosition pos, boolean post, string postStr |
-        this = TSummaryNodeClearsContentState(pos, post) and
-        (if post = true then postStr = " (post)" else postStr = "") and
-        result = "clear: " + pos + postStr
-      )
     }
   }
 
@@ -457,11 +487,6 @@ module Private {
     not parameterReadState(c, state, _)
     or
     state.isOutputState(c, _)
-    or
-    exists(ParameterPosition pos |
-      c.clearsContent(pos, _) and
-      state = TSummaryNodeClearsContentState(pos, _)
-    )
   }
 
   pragma[noinline]
@@ -471,7 +496,7 @@ module Private {
       or
       exists(ParameterPosition pos |
         parameterReadState(c, state, pos) and
-        result.(ParamNode).isParameterOf(c, pos)
+        result.(ParamNode).isParameterOf(inject(c), pos)
       )
     )
   }
@@ -497,8 +522,6 @@ module Private {
     parameterReadState(c, _, pos)
     or
     isParameterPostUpdate(_, c, pos)
-    or
-    c.clearsContent(pos, _)
   }
 
   private predicate callbackOutput(
@@ -506,7 +529,7 @@ module Private {
   ) {
     any(SummaryNodeState state).isInputState(c, s) and
     s.head() = TReturnSummaryComponent(rk) and
-    receiver = summaryNodeInputState(c, s.drop(1))
+    receiver = summaryNodeInputState(c, s.tail())
   }
 
   private predicate callbackInput(
@@ -514,7 +537,7 @@ module Private {
   ) {
     any(SummaryNodeState state).isOutputState(c, s) and
     s.head() = TParameterSummaryComponent(pos) and
-    receiver = summaryNodeInputState(c, s.drop(1))
+    receiver = summaryNodeInputState(c, s.tail())
   }
 
   /** Holds if a call targeting `receiver` should be synthesized inside `c`. */
@@ -540,21 +563,27 @@ module Private {
     exists(SummarizedCallable c, SummaryComponentStack s, SummaryComponent head | head = s.head() |
       n = summaryNodeInputState(c, s) and
       (
-        exists(Content cont |
-          head = TContentSummaryComponent(cont) and result = getContentType(cont)
+        exists(ContentSet cont | result = getContentType(cont) |
+          head = TContentSummaryComponent(cont) or
+          head = TWithContentSummaryComponent(cont)
+        )
+        or
+        exists(ContentSet cont |
+          head = TWithoutContentSummaryComponent(cont) and
+          result = getNodeType(summaryNodeInputState(c, s.tail()))
         )
         or
         exists(ReturnKind rk |
           head = TReturnSummaryComponent(rk) and
           result =
             getCallbackReturnType(getNodeType(summaryNodeInputState(pragma[only_bind_out](c),
-                  s.drop(1))), rk)
+                  s.tail())), rk)
         )
       )
       or
       n = summaryNodeOutputState(c, s) and
       (
-        exists(Content cont |
+        exists(ContentSet cont |
           head = TContentSummaryComponent(cont) and result = getContentType(cont)
         )
         or
@@ -567,16 +596,10 @@ module Private {
         exists(ArgumentPosition pos | head = TParameterSummaryComponent(pos) |
           result =
             getCallbackParameterType(getNodeType(summaryNodeInputState(pragma[only_bind_out](c),
-                  s.drop(1))), pos)
+                  s.tail())), pos)
         )
       )
     )
-    or
-    exists(SummarizedCallable c, ParameterPosition pos, ParamNode p |
-      n = summaryNode(c, TSummaryNodeClearsContentState(pos, false)) and
-      p.isParameterOf(c, pos) and
-      result = getNodeType(p)
-    )
   }
 
   /** Holds if summary node `out` contains output of kind `rk` from call `c`. */
@@ -601,10 +624,7 @@ module Private {
   predicate summaryPostUpdateNode(Node post, Node pre) {
     exists(SummarizedCallable c, ParameterPosition pos |
       isParameterPostUpdate(post, c, pos) and
-      pre.(ParamNode).isParameterOf(c, pos)
-      or
-      pre = summaryNode(c, TSummaryNodeClearsContentState(pos, false)) and
-      post = summaryNode(c, TSummaryNodeClearsContentState(pos, true))
+      pre.(ParamNode).isParameterOf(inject(c), pos)
     )
     or
     exists(SummarizedCallable callable, SummaryComponentStack s |
@@ -627,9 +647,7 @@ module Private {
    * node, and back out to `p`.
    */
   predicate summaryAllowParameterReturnInSelf(ParamNode p) {
-    exists(SummarizedCallable c, ParameterPosition ppos | p.isParameterOf(c, ppos) |
-      c.clearsContent(ppos, _)
-      or
+    exists(SummarizedCallable c, ParameterPosition ppos | p.isParameterOf(inject(c), ppos) |
       exists(SummaryComponentStack inputContents, SummaryComponentStack outputContents |
         summary(c, inputContents, outputContents, _) and
         inputContents.bottom() = pragma[only_bind_into](TArgumentSummaryComponent(ppos)) and
@@ -658,9 +676,10 @@ module Private {
         preservesValue = false and not summary(c, inputContents, outputContents, true)
       )
       or
-      exists(SummarizedCallable c, ParameterPosition pos |
-        pred.(ParamNode).isParameterOf(c, pos) and
-        succ = summaryNode(c, TSummaryNodeClearsContentState(pos, _)) and
+      exists(SummarizedCallable c, SummaryComponentStack s |
+        pred = summaryNodeInputState(c, s.tail()) and
+        succ = summaryNodeInputState(c, s) and
+        s.head() = [SummaryComponent::withContent(_), SummaryComponent::withoutContent(_)] and
         preservesValue = true
       )
     }
@@ -669,9 +688,9 @@ module Private {
      * Holds if there is a read step of content `c` from `pred` to `succ`, which
      * is synthesized from a flow summary.
      */
-    predicate summaryReadStep(Node pred, Content c, Node succ) {
+    predicate summaryReadStep(Node pred, ContentSet c, Node succ) {
       exists(SummarizedCallable sc, SummaryComponentStack s |
-        pred = summaryNodeInputState(sc, s.drop(1)) and
+        pred = summaryNodeInputState(sc, s.tail()) and
         succ = summaryNodeInputState(sc, s) and
         SummaryComponent::content(c) = s.head()
       )
@@ -681,10 +700,10 @@ module Private {
      * Holds if there is a store step of content `c` from `pred` to `succ`, which
      * is synthesized from a flow summary.
      */
-    predicate summaryStoreStep(Node pred, Content c, Node succ) {
+    predicate summaryStoreStep(Node pred, ContentSet c, Node succ) {
       exists(SummarizedCallable sc, SummaryComponentStack s |
         pred = summaryNodeOutputState(sc, s) and
-        succ = summaryNodeOutputState(sc, s.drop(1)) and
+        succ = summaryNodeOutputState(sc, s.tail()) and
         SummaryComponent::content(c) = s.head()
       )
     }
@@ -708,10 +727,23 @@ module Private {
      * `a` on line 2 to the post-update node for `a` on that line (via an intermediate
      * node where field `b` is cleared).
      */
-    predicate summaryClearsContent(Node n, Content c) {
-      exists(SummarizedCallable sc, ParameterPosition pos |
-        n = summaryNode(sc, TSummaryNodeClearsContentState(pos, true)) and
-        sc.clearsContent(pos, c)
+    predicate summaryClearsContent(Node n, ContentSet c) {
+      exists(SummarizedCallable sc, SummaryNodeState state, SummaryComponentStack stack |
+        n = summaryNode(sc, state) and
+        state.isInputState(sc, stack) and
+        stack.head() = SummaryComponent::withoutContent(c)
+      )
+    }
+
+    /**
+     * Holds if the value that is being tracked is expected to be stored inside
+     * content `c` at `n`.
+     */
+    predicate summaryExpectsContent(Node n, ContentSet c) {
+      exists(SummarizedCallable sc, SummaryNodeState state, SummaryComponentStack stack |
+        n = summaryNode(sc, state) and
+        state.isInputState(sc, stack) and
+        stack.head() = SummaryComponent::withContent(c)
       )
     }
 
@@ -719,55 +751,79 @@ module Private {
     private predicate viableParam(
       DataFlowCall call, SummarizedCallable sc, ParameterPosition ppos, ParamNode p
     ) {
-      p.isParameterOf(sc, ppos) and
-      sc = viableCallable(call)
-    }
-
-    /**
-     * Holds if values stored inside content `c` are cleared inside a
-     * callable to which `arg` is an argument.
-     *
-     * In such cases, it is important to prevent use-use flow out of
-     * `arg` (see comment for `summaryClearsContent`).
-     */
-    predicate summaryClearsContentArg(ArgNode arg, Content c) {
-      exists(DataFlowCall call, SummarizedCallable sc, ParameterPosition ppos |
-        argumentPositionMatch(call, arg, ppos) and
-        viableParam(call, sc, ppos, _) and
-        sc.clearsContent(ppos, c)
+      exists(DataFlowCallable c |
+        c = inject(sc) and
+        p.isParameterOf(c, ppos) and
+        c = viableCallable(call)
       )
     }
 
     pragma[nomagic]
-    private ParamNode summaryArgParam0(DataFlowCall call, ArgNode arg) {
-      exists(ParameterPosition ppos, SummarizedCallable sc |
+    private ParamNode summaryArgParam0(DataFlowCall call, ArgNode arg, SummarizedCallable sc) {
+      exists(ParameterPosition ppos |
         argumentPositionMatch(call, arg, ppos) and
         viableParam(call, sc, ppos, result)
       )
     }
 
+    /**
+     * Holds if use-use flow starting from `arg` should be prohibited.
+     *
+     * This is the case when `arg` is the argument of a call that targets a
+     * flow summary where the corresponding parameter either clears contents
+     * or expects contents.
+     */
     pragma[nomagic]
-    private ParamNode summaryArgParam(ArgNode arg, ReturnKindExt rk, OutNodeExt out) {
-      exists(DataFlowCall call |
-        result = summaryArgParam0(call, arg) and
-        out = rk.getAnOutNode(call)
+    predicate prohibitsUseUseFlow(ArgNode arg, SummarizedCallable sc) {
+      exists(ParamNode p, Node mid, ParameterPosition ppos, Node ret |
+        p = summaryArgParam0(_, arg, sc) and
+        p.isParameterOf(_, pragma[only_bind_into](ppos)) and
+        summaryLocalStep(p, mid, true) and
+        summaryLocalStep(mid, ret, true) and
+        isParameterPostUpdate(ret, _, pragma[only_bind_into](ppos))
+      |
+        summaryClearsContent(mid, _) or
+        summaryExpectsContent(mid, _)
+      )
+    }
+
+    bindingset[ret]
+    private ParamNode summaryArgParam(
+      ArgNode arg, ReturnNodeExt ret, OutNodeExt out, SummarizedCallable sc
+    ) {
+      exists(DataFlowCall call, ReturnKindExt rk |
+        result = summaryArgParam0(call, arg, sc) and
+        ret.getKind() = pragma[only_bind_into](rk) and
+        out = pragma[only_bind_into](rk).getAnOutNode(call)
       )
     }
 
     /**
-     * Holds if `arg` flows to `out` using a simple flow summary, that is, a flow
-     * summary without reads and stores.
+     * Holds if `arg` flows to `out` using a simple value-preserving flow
+     * summary, that is, a flow summary without reads and stores.
      *
      * NOTE: This step should not be used in global data-flow/taint-tracking, but may
      * be useful to include in the exposed local data-flow/taint-tracking relations.
      */
-    predicate summaryThroughStep(ArgNode arg, Node out, boolean preservesValue) {
-      exists(ReturnKindExt rk, ReturnNodeExt ret |
-        summaryLocalStep(summaryArgParam(arg, rk, out), ret, preservesValue) and
-        ret.getKind() = rk
+    predicate summaryThroughStepValue(ArgNode arg, Node out, SummarizedCallable sc) {
+      exists(ReturnKind rk, ReturnNode ret, DataFlowCall call |
+        summaryLocalStep(summaryArgParam0(call, arg, sc), ret, true) and
+        ret.getKind() = pragma[only_bind_into](rk) and
+        out = getAnOutNode(call, pragma[only_bind_into](rk))
       )
     }
 
+    /**
+     * Holds if `arg` flows to `out` using a simple flow summary involving taint
+     * step, that is, a flow summary without reads and stores.
+     *
+     * NOTE: This step should not be used in global data-flow/taint-tracking, but may
+     * be useful to include in the exposed local data-flow/taint-tracking relations.
+     */
+    predicate summaryThroughStepTaint(ArgNode arg, Node out, SummarizedCallable sc) {
+      exists(ReturnNodeExt ret | summaryLocalStep(summaryArgParam(arg, ret, out, sc), ret, false))
+    }
+
     /**
      * Holds if there is a read(+taint) of `c` from `arg` to `out` using a
      * flow summary.
@@ -775,11 +831,10 @@ module Private {
      * NOTE: This step should not be used in global data-flow/taint-tracking, but may
      * be useful to include in the exposed local data-flow/taint-tracking relations.
      */
-    predicate summaryGetterStep(ArgNode arg, Content c, Node out) {
-      exists(ReturnKindExt rk, Node mid, ReturnNodeExt ret |
-        summaryReadStep(summaryArgParam(arg, rk, out), c, mid) and
-        summaryLocalStep(mid, ret, _) and
-        ret.getKind() = rk
+    predicate summaryGetterStep(ArgNode arg, ContentSet c, Node out, SummarizedCallable sc) {
+      exists(Node mid, ReturnNodeExt ret |
+        summaryReadStep(summaryArgParam(arg, ret, out, sc), c, mid) and
+        summaryLocalStep(mid, ret, _)
       )
     }
 
@@ -790,11 +845,10 @@ module Private {
      * NOTE: This step should not be used in global data-flow/taint-tracking, but may
      * be useful to include in the exposed local data-flow/taint-tracking relations.
      */
-    predicate summarySetterStep(ArgNode arg, Content c, Node out) {
-      exists(ReturnKindExt rk, Node mid, ReturnNodeExt ret |
-        summaryLocalStep(summaryArgParam(arg, rk, out), mid, _) and
-        summaryStoreStep(mid, c, ret) and
-        ret.getKind() = rk
+    predicate summarySetterStep(ArgNode arg, ContentSet c, Node out, SummarizedCallable sc) {
+      exists(Node mid, ReturnNodeExt ret |
+        summaryLocalStep(summaryArgParam(arg, ret, out, sc), mid, _) and
+        summaryStoreStep(mid, c, ret)
       )
     }
   }
@@ -806,10 +860,10 @@ module Private {
   module External {
     /** Holds if `spec` is a relevant external specification. */
     private predicate relevantSpec(string spec) {
-      summaryElement(_, spec, _, _) or
-      summaryElement(_, _, spec, _) or
-      sourceElement(_, spec, _) or
-      sinkElement(_, spec, _)
+      summaryElement(_, spec, _, _, _) or
+      summaryElement(_, _, spec, _, _) or
+      sourceElement(_, spec, _, _) or
+      sinkElement(_, spec, _, _)
     }
 
     private class AccessPathRange extends AccessPath::Range {
@@ -875,13 +929,27 @@ module Private {
     }
 
     private class SummarizedCallableExternal extends SummarizedCallable {
-      SummarizedCallableExternal() { summaryElement(this, _, _, _) }
+      SummarizedCallableExternal() { summaryElement(this, _, _, _, _) }
+
+      private predicate relevantSummaryElementGenerated(
+        AccessPath inSpec, AccessPath outSpec, string kind
+      ) {
+        summaryElement(this, inSpec, outSpec, kind, true) and
+        not summaryElement(this, _, _, _, false) and
+        not this.clearsContent(_, _)
+      }
+
+      private predicate relevantSummaryElement(AccessPath inSpec, AccessPath outSpec, string kind) {
+        summaryElement(this, inSpec, outSpec, kind, false)
+        or
+        this.relevantSummaryElementGenerated(inSpec, outSpec, kind)
+      }
 
       override predicate propagatesFlow(
         SummaryComponentStack input, SummaryComponentStack output, boolean preservesValue
       ) {
         exists(AccessPath inSpec, AccessPath outSpec, string kind |
-          summaryElement(this, inSpec, outSpec, kind) and
+          this.relevantSummaryElement(inSpec, outSpec, kind) and
           interpretSpec(inSpec, input) and
           interpretSpec(outSpec, output)
         |
@@ -890,6 +958,8 @@ module Private {
           kind = "taint" and preservesValue = false
         )
       }
+
+      override predicate isAutoGenerated() { this.relevantSummaryElementGenerated(_, _, _) }
     }
 
     /** Holds if component `c` of specification `spec` cannot be parsed. */
@@ -910,7 +980,7 @@ module Private {
 
     private predicate sourceElementRef(InterpretNode ref, AccessPath output, string kind) {
       exists(SourceOrSinkElement e |
-        sourceElement(e, output, kind) and
+        sourceElement(e, output, kind, _) and
         if outputNeedsReference(output.getToken(0))
         then e = ref.getCallTarget()
         else e = ref.asElement()
@@ -919,7 +989,7 @@ module Private {
 
     private predicate sinkElementRef(InterpretNode ref, AccessPath input, string kind) {
       exists(SourceOrSinkElement e |
-        sinkElement(e, input, kind) and
+        sinkElement(e, input, kind, _) and
         if inputNeedsReference(input.getToken(0))
         then e = ref.getCallTarget()
         else e = ref.asElement()
@@ -1025,7 +1095,7 @@ module Private {
   /** Provides a query predicate for outputting a set of relevant flow summaries. */
   module TestOutput {
     /** A flow summary to include in the `summary/3` query predicate. */
-    abstract class RelevantSummarizedCallable extends SummarizedCallable {
+    abstract class RelevantSummarizedCallable instanceof SummarizedCallable {
       /** Gets the string representation of this callable used by `summary/1`. */
       abstract string getCallableCsv();
 
@@ -1033,8 +1103,10 @@ module Private {
       predicate relevantSummary(
         SummaryComponentStack input, SummaryComponentStack output, boolean preservesValue
       ) {
-        this.propagatesFlow(input, output, preservesValue)
+        super.propagatesFlow(input, output, preservesValue)
       }
+
+      string toString() { result = super.toString() }
     }
 
     /** Render the kind in the format used in flow summaries. */
@@ -1044,9 +1116,13 @@ module Private {
       preservesValue = false and result = "taint"
     }
 
+    private string renderProvenance(RelevantSummarizedCallable c) {
+      if c.(SummarizedCallable).isAutoGenerated() then result = "generated" else result = "manual"
+    }
+
     /**
      * A query predicate for outputting flow summaries in semi-colon separated format in QL tests.
-     * The syntax is: "namespace;type;overrides;name;signature;ext;inputspec;outputspec;kind",
+     * The syntax is: "namespace;type;overrides;name;signature;ext;inputspec;outputspec;kind;provenance"",
      * ext is hardcoded to empty.
      */
     query predicate summary(string csv) {
@@ -1056,8 +1132,8 @@ module Private {
       |
         c.relevantSummary(input, output, preservesValue) and
         csv =
-          c.getCallableCsv() + ";;" + getComponentStackCsv(input) + ";" +
-            getComponentStackCsv(output) + ";" + renderKind(preservesValue)
+          c.getCallableCsv() + getComponentStackCsv(input) + ";" + getComponentStackCsv(output) +
+            ";" + renderKind(preservesValue) + ";" + renderProvenance(c)
       )
     }
   }
@@ -1071,19 +1147,21 @@ module Private {
    */
   module RenderSummarizedCallable {
     /** A summarized callable to include in the graph. */
-    abstract class RelevantSummarizedCallable extends SummarizedCallable { }
+    abstract class RelevantSummarizedCallable instanceof SummarizedCallable {
+      string toString() { result = super.toString() }
+    }
 
     private newtype TNodeOrCall =
       MkNode(Node n) {
         exists(RelevantSummarizedCallable c |
           n = summaryNode(c, _)
           or
-          n.(ParamNode).isParameterOf(c, _)
+          n.(ParamNode).isParameterOf(inject(c), _)
         )
       } or
       MkCall(DataFlowCall call) {
         call = summaryDataFlowCall(_) and
-        call.getEnclosingCallable() instanceof RelevantSummarizedCallable
+        call.getEnclosingCallable() = inject(any(RelevantSummarizedCallable c))
       }
 
     private class NodeOrCall extends TNodeOrCall {
@@ -1123,7 +1201,7 @@ module Private {
         if preservesValue = true then value = "value" else value = "taint"
       )
       or
-      exists(Content c |
+      exists(ContentSet c |
         Private::Steps::summaryReadStep(a.asNode(), c, b.asNode()) and
         value = "read (" + c + ")"
         or
@@ -1133,6 +1211,10 @@ module Private {
         Private::Steps::summaryClearsContent(a.asNode(), c) and
         b = a and
         value = "clear (" + c + ")"
+        or
+        Private::Steps::summaryExpectsContent(a.asNode(), c) and
+        b = a and
+        value = "expect (" + c + ")"
       )
       or
       summaryPostUpdateNode(b.asNode(), a.asNode()) and
diff --git a/go/ql/lib/semmle/go/dataflow/internal/tainttracking1/TaintTrackingImpl.qll b/go/ql/lib/semmle/go/dataflow/internal/tainttracking1/TaintTrackingImpl.qll
index 4e613ba727e..e6ce1ada8d4 100644
--- a/go/ql/lib/semmle/go/dataflow/internal/tainttracking1/TaintTrackingImpl.qll
+++ b/go/ql/lib/semmle/go/dataflow/internal/tainttracking1/TaintTrackingImpl.qll
@@ -61,15 +61,32 @@ abstract class Configuration extends DataFlow::Configuration {
    * The smaller this predicate is, the faster `hasFlow()` will converge.
    */
   // overridden to provide taint-tracking specific qldoc
-  abstract override predicate isSource(DataFlow::Node source);
+  override predicate isSource(DataFlow::Node source) { none() }
 
   /**
-   * Holds if `sink` is a relevant taint sink.
+   * Holds if `source` is a relevant taint source with the given initial
+   * `state`.
    *
    * The smaller this predicate is, the faster `hasFlow()` will converge.
    */
   // overridden to provide taint-tracking specific qldoc
-  abstract override predicate isSink(DataFlow::Node sink);
+  override predicate isSource(DataFlow::Node source, DataFlow::FlowState state) { none() }
+
+  /**
+   * Holds if `sink` is a relevant taint sink
+   *
+   * The smaller this predicate is, the faster `hasFlow()` will converge.
+   */
+  // overridden to provide taint-tracking specific qldoc
+  override predicate isSink(DataFlow::Node sink) { none() }
+
+  /**
+   * Holds if `sink` is a relevant taint sink accepting `state`.
+   *
+   * The smaller this predicate is, the faster `hasFlow()` will converge.
+   */
+  // overridden to provide taint-tracking specific qldoc
+  override predicate isSink(DataFlow::Node sink, DataFlow::FlowState state) { none() }
 
   /** Holds if the node `node` is a taint sanitizer. */
   predicate isSanitizer(DataFlow::Node node) { none() }
@@ -79,6 +96,16 @@ abstract class Configuration extends DataFlow::Configuration {
     defaultTaintSanitizer(node)
   }
 
+  /**
+   * Holds if the node `node` is a taint sanitizer when the flow state is
+   * `state`.
+   */
+  predicate isSanitizer(DataFlow::Node node, DataFlow::FlowState state) { none() }
+
+  final override predicate isBarrier(DataFlow::Node node, DataFlow::FlowState state) {
+    this.isSanitizer(node, state)
+  }
+
   /** Holds if taint propagation into `node` is prohibited. */
   predicate isSanitizerIn(DataFlow::Node node) { none() }
 
@@ -101,8 +128,23 @@ abstract class Configuration extends DataFlow::Configuration {
   }
 
   /**
-   * Holds if the additional taint propagation step from `node1` to `node2`
-   * must be taken into account in the analysis.
+   * DEPRECATED: Use `isSanitizer` and `BarrierGuard` module instead.
+   *
+   * Holds if taint propagation through nodes guarded by `guard` is prohibited
+   * when the flow state is `state`.
+   */
+  deprecated predicate isSanitizerGuard(DataFlow::BarrierGuard guard, DataFlow::FlowState state) {
+    none()
+  }
+
+  deprecated final override predicate isBarrierGuard(
+    DataFlow::BarrierGuard guard, DataFlow::FlowState state
+  ) {
+    this.isSanitizerGuard(guard, state)
+  }
+
+  /**
+   * Holds if taint may propagate from `node1` to `node2` in addition to the normal data-flow and taint steps.
    */
   predicate isAdditionalTaintStep(DataFlow::Node node1, DataFlow::Node node2) { none() }
 
@@ -111,7 +153,25 @@ abstract class Configuration extends DataFlow::Configuration {
     defaultAdditionalTaintStep(node1, node2)
   }
 
-  override predicate allowImplicitRead(DataFlow::Node node, DataFlow::Content c) {
+  /**
+   * Holds if taint may propagate from `node1` to `node2` in addition to the normal data-flow and taint steps.
+   * This step is only applicable in `state1` and updates the flow state to `state2`.
+   */
+  predicate isAdditionalTaintStep(
+    DataFlow::Node node1, DataFlow::FlowState state1, DataFlow::Node node2,
+    DataFlow::FlowState state2
+  ) {
+    none()
+  }
+
+  final override predicate isAdditionalFlowStep(
+    DataFlow::Node node1, DataFlow::FlowState state1, DataFlow::Node node2,
+    DataFlow::FlowState state2
+  ) {
+    this.isAdditionalTaintStep(node1, state1, node2, state2)
+  }
+
+  override predicate allowImplicitRead(DataFlow::Node node, DataFlow::ContentSet c) {
     (this.isSink(node) or this.isAdditionalTaintStep(node, _)) and
     defaultImplicitTaintRead(node, c)
   }
diff --git a/go/ql/lib/semmle/go/dataflow/internal/tainttracking2/TaintTrackingImpl.qll b/go/ql/lib/semmle/go/dataflow/internal/tainttracking2/TaintTrackingImpl.qll
index 4e613ba727e..e6ce1ada8d4 100644
--- a/go/ql/lib/semmle/go/dataflow/internal/tainttracking2/TaintTrackingImpl.qll
+++ b/go/ql/lib/semmle/go/dataflow/internal/tainttracking2/TaintTrackingImpl.qll
@@ -61,15 +61,32 @@ abstract class Configuration extends DataFlow::Configuration {
    * The smaller this predicate is, the faster `hasFlow()` will converge.
    */
   // overridden to provide taint-tracking specific qldoc
-  abstract override predicate isSource(DataFlow::Node source);
+  override predicate isSource(DataFlow::Node source) { none() }
 
   /**
-   * Holds if `sink` is a relevant taint sink.
+   * Holds if `source` is a relevant taint source with the given initial
+   * `state`.
    *
    * The smaller this predicate is, the faster `hasFlow()` will converge.
    */
   // overridden to provide taint-tracking specific qldoc
-  abstract override predicate isSink(DataFlow::Node sink);
+  override predicate isSource(DataFlow::Node source, DataFlow::FlowState state) { none() }
+
+  /**
+   * Holds if `sink` is a relevant taint sink
+   *
+   * The smaller this predicate is, the faster `hasFlow()` will converge.
+   */
+  // overridden to provide taint-tracking specific qldoc
+  override predicate isSink(DataFlow::Node sink) { none() }
+
+  /**
+   * Holds if `sink` is a relevant taint sink accepting `state`.
+   *
+   * The smaller this predicate is, the faster `hasFlow()` will converge.
+   */
+  // overridden to provide taint-tracking specific qldoc
+  override predicate isSink(DataFlow::Node sink, DataFlow::FlowState state) { none() }
 
   /** Holds if the node `node` is a taint sanitizer. */
   predicate isSanitizer(DataFlow::Node node) { none() }
@@ -79,6 +96,16 @@ abstract class Configuration extends DataFlow::Configuration {
     defaultTaintSanitizer(node)
   }
 
+  /**
+   * Holds if the node `node` is a taint sanitizer when the flow state is
+   * `state`.
+   */
+  predicate isSanitizer(DataFlow::Node node, DataFlow::FlowState state) { none() }
+
+  final override predicate isBarrier(DataFlow::Node node, DataFlow::FlowState state) {
+    this.isSanitizer(node, state)
+  }
+
   /** Holds if taint propagation into `node` is prohibited. */
   predicate isSanitizerIn(DataFlow::Node node) { none() }
 
@@ -101,8 +128,23 @@ abstract class Configuration extends DataFlow::Configuration {
   }
 
   /**
-   * Holds if the additional taint propagation step from `node1` to `node2`
-   * must be taken into account in the analysis.
+   * DEPRECATED: Use `isSanitizer` and `BarrierGuard` module instead.
+   *
+   * Holds if taint propagation through nodes guarded by `guard` is prohibited
+   * when the flow state is `state`.
+   */
+  deprecated predicate isSanitizerGuard(DataFlow::BarrierGuard guard, DataFlow::FlowState state) {
+    none()
+  }
+
+  deprecated final override predicate isBarrierGuard(
+    DataFlow::BarrierGuard guard, DataFlow::FlowState state
+  ) {
+    this.isSanitizerGuard(guard, state)
+  }
+
+  /**
+   * Holds if taint may propagate from `node1` to `node2` in addition to the normal data-flow and taint steps.
    */
   predicate isAdditionalTaintStep(DataFlow::Node node1, DataFlow::Node node2) { none() }
 
@@ -111,7 +153,25 @@ abstract class Configuration extends DataFlow::Configuration {
     defaultAdditionalTaintStep(node1, node2)
   }
 
-  override predicate allowImplicitRead(DataFlow::Node node, DataFlow::Content c) {
+  /**
+   * Holds if taint may propagate from `node1` to `node2` in addition to the normal data-flow and taint steps.
+   * This step is only applicable in `state1` and updates the flow state to `state2`.
+   */
+  predicate isAdditionalTaintStep(
+    DataFlow::Node node1, DataFlow::FlowState state1, DataFlow::Node node2,
+    DataFlow::FlowState state2
+  ) {
+    none()
+  }
+
+  final override predicate isAdditionalFlowStep(
+    DataFlow::Node node1, DataFlow::FlowState state1, DataFlow::Node node2,
+    DataFlow::FlowState state2
+  ) {
+    this.isAdditionalTaintStep(node1, state1, node2, state2)
+  }
+
+  override predicate allowImplicitRead(DataFlow::Node node, DataFlow::ContentSet c) {
     (this.isSink(node) or this.isAdditionalTaintStep(node, _)) and
     defaultImplicitTaintRead(node, c)
   }

From c768f04e3264f6114741ccf3c8d9c55c70d35165 Mon Sep 17 00:00:00 2001
From: Owen Mansel-Chan <owen-mc@github.com>
Date: Tue, 25 Oct 2022 12:58:27 +0100
Subject: [PATCH 0435/1420] Go: Introduce generated flag as a part of the kind
 column for flow summaries

Equivalent of https://github.com/github/codeql/pull/8628
---
 go/ql/lib/semmle/go/dataflow/ExternalFlow.qll | 70 +++++++++++--------
 .../internal/FlowSummaryImplSpecific.qll      | 21 +++---
 2 files changed, 52 insertions(+), 39 deletions(-)

diff --git a/go/ql/lib/semmle/go/dataflow/ExternalFlow.qll b/go/ql/lib/semmle/go/dataflow/ExternalFlow.qll
index 3f414c8e6af..556c5d3b726 100644
--- a/go/ql/lib/semmle/go/dataflow/ExternalFlow.qll
+++ b/go/ql/lib/semmle/go/dataflow/ExternalFlow.qll
@@ -124,10 +124,17 @@ predicate sinkModel(string row) { any(SinkModelCsv s).row(row) }
 /** Holds if `row` is a summary model. */
 predicate summaryModel(string row) { any(SummaryModelCsv s).row(row) }
 
+bindingset[input]
+private predicate getKind(string input, string kind, boolean generated) {
+  input.splitAt(":", 0) = "generated" and kind = input.splitAt(":", 1) and generated = true
+  or
+  not input.matches("%:%") and kind = input and generated = false
+}
+
 /** Holds if a source model exists for the given parameters. */
 predicate sourceModel(
   string namespace, string type, boolean subtypes, string name, string signature, string ext,
-  string output, string kind
+  string output, string kind, boolean generated
 ) {
   exists(string row |
     sourceModel(row) and
@@ -139,14 +146,14 @@ predicate sourceModel(
     row.splitAt(";", 4) = signature and
     row.splitAt(";", 5) = ext and
     row.splitAt(";", 6) = output and
-    row.splitAt(";", 7) = kind
+    exists(string k | row.splitAt(";", 7) = k and getKind(k, kind, generated))
   )
 }
 
 /** Holds if a sink model exists for the given parameters. */
 predicate sinkModel(
   string namespace, string type, boolean subtypes, string name, string signature, string ext,
-  string input, string kind
+  string input, string kind, boolean generated
 ) {
   exists(string row |
     sinkModel(row) and
@@ -158,22 +165,22 @@ predicate sinkModel(
     row.splitAt(";", 4) = signature and
     row.splitAt(";", 5) = ext and
     row.splitAt(";", 6) = input and
-    row.splitAt(";", 7) = kind
+    exists(string k | row.splitAt(";", 7) = k and getKind(k, kind, generated))
   )
 }
 
 /** Holds if a summary model exists for the given parameters. */
 predicate summaryModel(
   string namespace, string type, boolean subtypes, string name, string signature, string ext,
-  string input, string output, string kind
+  string input, string output, string kind, boolean generated
 ) {
-  summaryModel(namespace, type, subtypes, name, signature, ext, input, output, kind, _)
+  summaryModel(namespace, type, subtypes, name, signature, ext, input, output, kind, generated, _)
 }
 
 /** Holds if a summary model `row` exists for the given parameters. */
 predicate summaryModel(
   string namespace, string type, boolean subtypes, string name, string signature, string ext,
-  string input, string output, string kind, string row
+  string input, string output, string kind, boolean generated, string row
 ) {
   summaryModel(row) and
   row.splitAt(";", 0) = namespace and
@@ -185,14 +192,14 @@ predicate summaryModel(
   row.splitAt(";", 5) = ext and
   row.splitAt(";", 6) = input and
   row.splitAt(";", 7) = output and
-  row.splitAt(";", 8) = kind
+  exists(string k | row.splitAt(";", 8) = k and getKind(k, kind, generated))
 }
 
 /** Holds if `package` have CSV framework coverage. */
 private predicate packageHasCsvCoverage(string package) {
-  sourceModel(package, _, _, _, _, _, _, _) or
-  sinkModel(package, _, _, _, _, _, _, _) or
-  summaryModel(package, _, _, _, _, _, _, _, _)
+  sourceModel(package, _, _, _, _, _, _, _, _) or
+  sinkModel(package, _, _, _, _, _, _, _, _) or
+  summaryModel(package, _, _, _, _, _, _, _, _, _)
 }
 
 /**
@@ -234,25 +241,25 @@ predicate modelCoverage(string package, int pkgs, string kind, string part, int
     part = "source" and
     n =
       strictcount(string subpkg, string type, boolean subtypes, string name, string signature,
-        string ext, string output |
+        string ext, string output, boolean generated |
         canonicalPackageHasASubpackage(package, subpkg) and
-        sourceModel(subpkg, type, subtypes, name, signature, ext, output, kind)
+        sourceModel(subpkg, type, subtypes, name, signature, ext, output, kind, generated)
       )
     or
     part = "sink" and
     n =
       strictcount(string subpkg, string type, boolean subtypes, string name, string signature,
-        string ext, string input |
+        string ext, string input, boolean generated |
         canonicalPackageHasASubpackage(package, subpkg) and
-        sinkModel(subpkg, type, subtypes, name, signature, ext, input, kind)
+        sinkModel(subpkg, type, subtypes, name, signature, ext, input, kind, generated)
       )
     or
     part = "summary" and
     n =
       strictcount(string subpkg, string type, boolean subtypes, string name, string signature,
-        string ext, string input, string output |
+        string ext, string input, string output, boolean generated |
         canonicalPackageHasASubpackage(package, subpkg) and
-        summaryModel(subpkg, type, subtypes, name, signature, ext, input, output, kind)
+        summaryModel(subpkg, type, subtypes, name, signature, ext, input, output, kind, generated)
       )
   )
 }
@@ -261,9 +268,9 @@ predicate modelCoverage(string package, int pkgs, string kind, string part, int
 module CsvValidation {
   private string getInvalidModelInput() {
     exists(string pred, AccessPath input, string part |
-      sinkModel(_, _, _, _, _, _, input, _) and pred = "sink"
+      sinkModel(_, _, _, _, _, _, input, _, _) and pred = "sink"
       or
-      summaryModel(_, _, _, _, _, _, input, _, _) and pred = "summary"
+      summaryModel(_, _, _, _, _, _, input, _, _, _) and pred = "summary"
     |
       (
         invalidSpecComponent(input, part) and
@@ -279,9 +286,9 @@ module CsvValidation {
 
   private string getInvalidModelOutput() {
     exists(string pred, string output, string part |
-      sourceModel(_, _, _, _, _, _, output, _) and pred = "source"
+      sourceModel(_, _, _, _, _, _, output, _, _) and pred = "source"
       or
-      summaryModel(_, _, _, _, _, _, _, output, _) and pred = "summary"
+      summaryModel(_, _, _, _, _, _, _, output, _, _) and pred = "summary"
     |
       invalidSpecComponent(output, part) and
       not part = "" and
@@ -291,8 +298,9 @@ module CsvValidation {
   }
 
   private string getInvalidModelKind() {
-    exists(string row, string kind | summaryModel(row) |
-      kind = row.splitAt(";", 8) and
+    exists(string row, string k, string kind | summaryModel(row) |
+      k = row.splitAt(";", 8) and
+      getKind(k, kind, _) and
       not kind = ["taint", "value"] and
       result = "Invalid kind \"" + kind + "\" in summary model."
     )
@@ -334,11 +342,11 @@ module CsvValidation {
 
   private string getInvalidModelSignature() {
     exists(string pred, string namespace, string type, string name, string signature, string ext |
-      sourceModel(namespace, type, _, name, signature, ext, _, _) and pred = "source"
+      sourceModel(namespace, type, _, name, signature, ext, _, _, _) and pred = "source"
       or
-      sinkModel(namespace, type, _, name, signature, ext, _, _) and pred = "sink"
+      sinkModel(namespace, type, _, name, signature, ext, _, _, _) and pred = "sink"
       or
-      summaryModel(namespace, type, _, name, signature, ext, _, _, _) and pred = "summary"
+      summaryModel(namespace, type, _, name, signature, ext, _, _, _, _) and pred = "summary"
     |
       not namespace.regexpMatch("[a-zA-Z0-9_\\./]*") and
       result = "Dubious namespace \"" + namespace + "\" in " + pred + " model."
@@ -371,9 +379,9 @@ pragma[nomagic]
 private predicate elementSpec(
   string namespace, string type, boolean subtypes, string name, string signature, string ext
 ) {
-  sourceModel(namespace, type, subtypes, name, signature, ext, _, _) or
-  sinkModel(namespace, type, subtypes, name, signature, ext, _, _) or
-  summaryModel(namespace, type, subtypes, name, signature, ext, _, _, _)
+  sourceModel(namespace, type, subtypes, name, signature, ext, _, _, _) or
+  sinkModel(namespace, type, subtypes, name, signature, ext, _, _, _) or
+  summaryModel(namespace, type, subtypes, name, signature, ext, _, _, _, _)
 }
 
 private string paramsStringPart(Function f, int i) {
@@ -421,7 +429,9 @@ SourceOrSinkElement interpretElement(
 predicate hasExternalSpecification(Function f) {
   f = any(SummarizedCallable sc).asFunction()
   or
-  exists(SourceOrSinkElement e | f = e.asEntity() | sourceElement(e, _, _) or sinkElement(e, _, _))
+  exists(SourceOrSinkElement e | f = e.asEntity() |
+    sourceElement(e, _, _, _) or sinkElement(e, _, _, _)
+  )
 }
 
 private predicate parseField(AccessPathToken c, DataFlow::FieldContent f) {
diff --git a/go/ql/lib/semmle/go/dataflow/internal/FlowSummaryImplSpecific.qll b/go/ql/lib/semmle/go/dataflow/internal/FlowSummaryImplSpecific.qll
index 4d8e19461df..f4e18377a62 100644
--- a/go/ql/lib/semmle/go/dataflow/internal/FlowSummaryImplSpecific.qll
+++ b/go/ql/lib/semmle/go/dataflow/internal/FlowSummaryImplSpecific.qll
@@ -84,13 +84,14 @@ DataFlowType getCallbackReturnType(DataFlowType t, ReturnKind rk) { none() }
 
 /**
  * Holds if an external flow summary exists for `c` with input specification
- * `input`, output specification `output`, and kind `kind`.
+ * `input`, output specification `output`, kind `kind`, and a flag `generated`
+ * stating whether the summary is autogenerated.
  */
-predicate summaryElement(DataFlowCallable c, string input, string output, string kind) {
+predicate summaryElement(DataFlowCallable c, string input, string output, string kind, boolean generated) {
   exists(
     string namespace, string type, boolean subtypes, string name, string signature, string ext
   |
-    summaryModel(namespace, type, subtypes, name, signature, ext, input, output, kind) and
+    summaryModel(namespace, type, subtypes, name, signature, ext, input, output, kind, generated) and
     c.asFunction() = interpretElement(namespace, type, subtypes, name, signature, ext).asEntity()
   )
 }
@@ -166,26 +167,28 @@ class SourceOrSinkElement extends TSourceOrSinkElement {
 
 /**
  * Holds if an external source specification exists for `e` with output specification
- * `output` and kind `kind`.
+ * `output`, kind `kind`, and a flag `generated` stating whether the source specification is
+ * autogenerated.
  */
-predicate sourceElement(SourceOrSinkElement e, string output, string kind) {
+predicate sourceElement(SourceOrSinkElement e, string output, string kind, boolean generated) {
   exists(
     string namespace, string type, boolean subtypes, string name, string signature, string ext
   |
-    sourceModel(namespace, type, subtypes, name, signature, ext, output, kind) and
+    sourceModel(namespace, type, subtypes, name, signature, ext, output, kind, generated) and
     e = interpretElement(namespace, type, subtypes, name, signature, ext)
   )
 }
 
 /**
  * Holds if an external sink specification exists for `e` with input specification
- * `input` and kind `kind`.
+ * `input`, kind `kind` and a flag `generated` stating whether the sink specification is
+ * autogenerated.
  */
-predicate sinkElement(SourceOrSinkElement e, string input, string kind) {
+predicate sinkElement(SourceOrSinkElement e, string input, string kind, boolean generated) {
   exists(
     string namespace, string type, boolean subtypes, string name, string signature, string ext
   |
-    sinkModel(namespace, type, subtypes, name, signature, ext, input, kind) and
+    sinkModel(namespace, type, subtypes, name, signature, ext, input, kind, generated) and
     e = interpretElement(namespace, type, subtypes, name, signature, ext)
   )
 }

From 282699e5b5842fb0d938cd3e13d67358a75a61c2 Mon Sep 17 00:00:00 2001
From: Owen Mansel-Chan <owen-mc@github.com>
Date: Thu, 20 Oct 2022 14:41:22 +0100
Subject: [PATCH 0436/1420]  Go: Refactor SummarizedCallable.

 Equivalent of https://github.com/github/codeql/pull/9210
---
 go/ql/lib/semmle/go/dataflow/internal/DataFlowNodes.qll     | 4 ++--
 .../semmle/go/dataflow/internal/FlowSummaryImplSpecific.qll | 6 +++++-
 2 files changed, 7 insertions(+), 3 deletions(-)

diff --git a/go/ql/lib/semmle/go/dataflow/internal/DataFlowNodes.qll b/go/ql/lib/semmle/go/dataflow/internal/DataFlowNodes.qll
index ea3f757b440..ab3ecf0c64b 100644
--- a/go/ql/lib/semmle/go/dataflow/internal/DataFlowNodes.qll
+++ b/go/ql/lib/semmle/go/dataflow/internal/DataFlowNodes.qll
@@ -12,7 +12,7 @@ private newtype TNode =
   MkGlobalFunctionNode(Function f) or
   MkSummarizedParameterNode(DataFlowCallable c, int i) {
     not exists(c.getFuncDef()) and
-    c instanceof SummarizedCallable and
+    c.asCallable() instanceof SummarizedCallable and
     (
       i in [0 .. c.getType().getNumParameter() - 1]
       or
@@ -115,7 +115,7 @@ module Public {
       exists(DataFlowCallable dfc | result = dfc.asCallable() |
         this = MkSummarizedParameterNode(dfc, _)
         or
-        this = MkSummaryInternalNode(dfc, _)
+        this = MkSummaryInternalNode(dfc.asCallable(), _)
       )
     }
 
diff --git a/go/ql/lib/semmle/go/dataflow/internal/FlowSummaryImplSpecific.qll b/go/ql/lib/semmle/go/dataflow/internal/FlowSummaryImplSpecific.qll
index f4e18377a62..447b42821cd 100644
--- a/go/ql/lib/semmle/go/dataflow/internal/FlowSummaryImplSpecific.qll
+++ b/go/ql/lib/semmle/go/dataflow/internal/FlowSummaryImplSpecific.qll
@@ -14,6 +14,10 @@ private module FlowSummaries {
   private import semmle.go.dataflow.FlowSummary as F
 }
 
+class SummarizedCallableBase = Callable;
+
+DataFlowCallable inject(SummarizedCallable c) { result.asCallable() = c }
+
 /** Holds if `i` is a valid parameter position. */
 predicate parameterPosition(int i) {
   i = [-1 .. any(DataFlowCallable c).getType().getNumParameter()]
@@ -87,7 +91,7 @@ DataFlowType getCallbackReturnType(DataFlowType t, ReturnKind rk) { none() }
  * `input`, output specification `output`, kind `kind`, and a flag `generated`
  * stating whether the summary is autogenerated.
  */
-predicate summaryElement(DataFlowCallable c, string input, string output, string kind, boolean generated) {
+predicate summaryElement(Callable c, string input, string output, string kind, boolean generated) {
   exists(
     string namespace, string type, boolean subtypes, string name, string signature, string ext
   |

From e5829201e1bc1e8682632b3cf60f15c8bc86002c Mon Sep 17 00:00:00 2001
From: Owen Mansel-Chan <owen-mc@github.com>
Date: Tue, 25 Oct 2022 13:54:06 +0100
Subject: [PATCH 0437/1420] Go: Implement ContentSet

---
 .../go/dataflow/internal/DataFlowUtil.qll     | 28 +++++++++++++++++++
 1 file changed, 28 insertions(+)

diff --git a/go/ql/lib/semmle/go/dataflow/internal/DataFlowUtil.qll b/go/ql/lib/semmle/go/dataflow/internal/DataFlowUtil.qll
index d0a92a322c0..b6a2bfd9123 100644
--- a/go/ql/lib/semmle/go/dataflow/internal/DataFlowUtil.qll
+++ b/go/ql/lib/semmle/go/dataflow/internal/DataFlowUtil.qll
@@ -230,6 +230,34 @@ class SyntheticFieldContent extends Content, TSyntheticFieldContent {
   override string toString() { result = s.toString() }
 }
 
+/**
+ * An entity that represents a set of `Content`s.
+ *
+ * The set may be interpreted differently depending on whether it is
+ * stored into (`getAStoreContent`) or read from (`getAReadContent`).
+ */
+class ContentSet instanceof Content {
+  /** Gets a content that may be stored into when storing into this set. */
+  Content getAStoreContent() { result = this }
+
+  /** Gets a content that may be read from when reading from this set. */
+  Content getAReadContent() { result = this }
+
+  /** Gets a textual representation of this content set. */
+  string toString() { result = super.toString() }
+
+  /**
+   * Holds if this element is at the specified location.
+   * The location spans column `startcolumn` of line `startline` to
+   * column `endcolumn` of line `endline` in file `filepath`.
+   * For more information, see
+   * [Locations](https://codeql.github.com/docs/writing-codeql-queries/providing-locations-in-codeql-queries/).
+   */
+  predicate hasLocationInfo(string path, int sl, int sc, int el, int ec) {
+    super.hasLocationInfo(path, sl, sc, el, ec)
+  }
+}
+
 /**
  * Holds if the guard `g` validates the expression `e` upon evaluating to `branch`.
  *

From 1ee5d3e80eedb50b72e7f6b4be0a9bcc1807db81 Mon Sep 17 00:00:00 2001
From: Owen Mansel-Chan <owen-mc@github.com>
Date: Tue, 25 Oct 2022 15:59:37 +0100
Subject: [PATCH 0438/1420] Move ParameterPosition etc to DataflowDispatch.qll

---
 .../go/dataflow/internal/DataFlowDispatch.qll | 22 ++++++++++++
 .../internal/FlowSummaryImplSpecific.qll      | 35 +------------------
 2 files changed, 23 insertions(+), 34 deletions(-)

diff --git a/go/ql/lib/semmle/go/dataflow/internal/DataFlowDispatch.qll b/go/ql/lib/semmle/go/dataflow/internal/DataFlowDispatch.qll
index 019d2831e5d..4cd6e5446bc 100644
--- a/go/ql/lib/semmle/go/dataflow/internal/DataFlowDispatch.qll
+++ b/go/ql/lib/semmle/go/dataflow/internal/DataFlowDispatch.qll
@@ -108,3 +108,25 @@ predicate mayBenefitFromCallContext(DataFlowCall call, DataFlowCallable f) { non
  * restricted to those `call`s for which a context might make a difference.
  */
 DataFlowCallable viableImplInCallContext(DataFlowCall call, DataFlowCall ctx) { none() }
+
+/** Holds if `i` is a valid parameter position. */
+predicate parameterPosition(int i) {
+  i = [-1 .. any(DataFlowCallable c).getType().getNumParameter()]
+}
+
+/** Gets the parameter position of the instance parameter. */
+int instanceParameterPosition() { result = -1 }
+
+/** A parameter position represented by an integer. */
+class ParameterPosition extends int {
+  ParameterPosition() { parameterPosition(this) }
+}
+
+/** An argument position represented by an integer. */
+class ArgumentPosition extends int {
+  ArgumentPosition() { parameterPosition(this) }
+}
+
+/** Holds if arguments at position `apos` match parameters at position `ppos`. */
+pragma[inline]
+predicate parameterMatch(ParameterPosition ppos, ArgumentPosition apos) { ppos = apos }
diff --git a/go/ql/lib/semmle/go/dataflow/internal/FlowSummaryImplSpecific.qll b/go/ql/lib/semmle/go/dataflow/internal/FlowSummaryImplSpecific.qll
index 447b42821cd..ecf97dd7565 100644
--- a/go/ql/lib/semmle/go/dataflow/internal/FlowSummaryImplSpecific.qll
+++ b/go/ql/lib/semmle/go/dataflow/internal/FlowSummaryImplSpecific.qll
@@ -3,6 +3,7 @@
  */
 
 private import go
+private import DataFlowDispatch
 private import DataFlowPrivate
 private import DataFlowUtil
 private import FlowSummaryImpl::Private
@@ -18,40 +19,6 @@ class SummarizedCallableBase = Callable;
 
 DataFlowCallable inject(SummarizedCallable c) { result.asCallable() = c }
 
-/** Holds if `i` is a valid parameter position. */
-predicate parameterPosition(int i) {
-  i = [-1 .. any(DataFlowCallable c).getType().getNumParameter()]
-}
-
-/** Gets the parameter position of the instance parameter. */
-int instanceParameterPosition() { result = -1 }
-
-/** A parameter position represented by an integer. */
-class ParameterPosition extends int {
-  ParameterPosition() { parameterPosition(this) }
-}
-
-/** An argument position represented by an integer. */
-class ArgumentPosition extends int {
-  ArgumentPosition() { parameterPosition(this) }
-}
-
-/** Holds if arguments at position `apos` match parameters at position `ppos`. */
-pragma[inline]
-predicate parameterMatch(ParameterPosition ppos, ArgumentPosition apos) { ppos = apos }
-
-/**
- * Holds if `arg` is an argument of `call` with an argument position that matches
- * parameter position `ppos`.
- */
-pragma[noinline]
-predicate argumentPositionMatch(DataFlowCall call, ArgNode arg, ParameterPosition ppos) {
-  exists(ArgumentPosition apos |
-    arg.argumentOf(call, apos) and
-    parameterMatch(ppos, apos)
-  )
-}
-
 /** Gets the textual representation of a parameter position in the format used for flow summaries. */
 string getParameterPositionCsv(ParameterPosition pos) { result = pos.toString() }
 

From 10ed4ad3df8e8cd13b95a621d9be16fe5457bb34 Mon Sep 17 00:00:00 2001
From: Owen Mansel-Chan <owen-mc@github.com>
Date: Wed, 26 Oct 2022 11:05:17 +0100
Subject: [PATCH 0439/1420] Go: Split `summaryThroughStep` into two predicates

Cf. https://github.com/github/codeql/pull/9195
---
 go/ql/lib/semmle/go/dataflow/internal/DataFlowUtil.qll          | 2 +-
 go/ql/lib/semmle/go/dataflow/internal/TaintTrackingUtil.qll     | 2 +-
 .../test/library-tests/semmle/go/dataflow/ExternalFlow/steps.ql | 2 +-
 3 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/go/ql/lib/semmle/go/dataflow/internal/DataFlowUtil.qll b/go/ql/lib/semmle/go/dataflow/internal/DataFlowUtil.qll
index b6a2bfd9123..337a368bbea 100644
--- a/go/ql/lib/semmle/go/dataflow/internal/DataFlowUtil.qll
+++ b/go/ql/lib/semmle/go/dataflow/internal/DataFlowUtil.qll
@@ -108,7 +108,7 @@ predicate localFlowStep(Node nodeFrom, Node nodeTo) {
   or
   // Simple flow through library code is included in the exposed local
   // step relation, even though flow is technically inter-procedural
-  FlowSummaryImpl::Private::Steps::summaryThroughStep(nodeFrom, nodeTo, true)
+  FlowSummaryImpl::Private::Steps::summaryThroughStepValue(nodeFrom, nodeTo)
 }
 
 /**
diff --git a/go/ql/lib/semmle/go/dataflow/internal/TaintTrackingUtil.qll b/go/ql/lib/semmle/go/dataflow/internal/TaintTrackingUtil.qll
index 2a93253c480..422f15d93b3 100644
--- a/go/ql/lib/semmle/go/dataflow/internal/TaintTrackingUtil.qll
+++ b/go/ql/lib/semmle/go/dataflow/internal/TaintTrackingUtil.qll
@@ -27,7 +27,7 @@ predicate localTaintStep(DataFlow::Node src, DataFlow::Node sink) {
   localAdditionalTaintStep(src, sink) or
   // Simple flow through library code is included in the exposed local
   // step relation, even though flow is technically inter-procedural
-  FlowSummaryImpl::Private::Steps::summaryThroughStep(src, sink, false)
+  FlowSummaryImpl::Private::Steps::summaryThroughStepTaint(src, sink)
 }
 
 private Type getElementType(Type containerType) {
diff --git a/go/ql/test/library-tests/semmle/go/dataflow/ExternalFlow/steps.ql b/go/ql/test/library-tests/semmle/go/dataflow/ExternalFlow/steps.ql
index 543aecd5d97..0670657bae0 100644
--- a/go/ql/test/library-tests/semmle/go/dataflow/ExternalFlow/steps.ql
+++ b/go/ql/test/library-tests/semmle/go/dataflow/ExternalFlow/steps.ql
@@ -22,5 +22,5 @@ class SummaryModelTest extends SummaryModelCsv {
 }
 
 from DataFlow::Node node1, DataFlow::Node node2
-where FlowSummaryImpl::Private::Steps::summaryThroughStep(node1, node2, false)
+where FlowSummaryImpl::Private::Steps::summaryThroughStepTaint(node1, node2)
 select node1, node2

From 83a3af2ffff294a326f0fe97911fa08663db0147 Mon Sep 17 00:00:00 2001
From: Owen Mansel-Chan <owen-mc@github.com>
Date: Wed, 26 Oct 2022 11:13:39 +0100
Subject: [PATCH 0440/1420] Go: Summarized Callable

Corresponds to https://github.com/github/codeql/pull/9270
---
 go/ql/lib/semmle/go/dataflow/internal/DataFlowUtil.qll          | 2 +-
 go/ql/lib/semmle/go/dataflow/internal/TaintTrackingUtil.qll     | 2 +-
 .../test/library-tests/semmle/go/dataflow/ExternalFlow/steps.ql | 2 +-
 3 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/go/ql/lib/semmle/go/dataflow/internal/DataFlowUtil.qll b/go/ql/lib/semmle/go/dataflow/internal/DataFlowUtil.qll
index 337a368bbea..9b905087753 100644
--- a/go/ql/lib/semmle/go/dataflow/internal/DataFlowUtil.qll
+++ b/go/ql/lib/semmle/go/dataflow/internal/DataFlowUtil.qll
@@ -108,7 +108,7 @@ predicate localFlowStep(Node nodeFrom, Node nodeTo) {
   or
   // Simple flow through library code is included in the exposed local
   // step relation, even though flow is technically inter-procedural
-  FlowSummaryImpl::Private::Steps::summaryThroughStepValue(nodeFrom, nodeTo)
+  FlowSummaryImpl::Private::Steps::summaryThroughStepValue(nodeFrom, nodeTo, _)
 }
 
 /**
diff --git a/go/ql/lib/semmle/go/dataflow/internal/TaintTrackingUtil.qll b/go/ql/lib/semmle/go/dataflow/internal/TaintTrackingUtil.qll
index 422f15d93b3..e9173cc605a 100644
--- a/go/ql/lib/semmle/go/dataflow/internal/TaintTrackingUtil.qll
+++ b/go/ql/lib/semmle/go/dataflow/internal/TaintTrackingUtil.qll
@@ -27,7 +27,7 @@ predicate localTaintStep(DataFlow::Node src, DataFlow::Node sink) {
   localAdditionalTaintStep(src, sink) or
   // Simple flow through library code is included in the exposed local
   // step relation, even though flow is technically inter-procedural
-  FlowSummaryImpl::Private::Steps::summaryThroughStepTaint(src, sink)
+  FlowSummaryImpl::Private::Steps::summaryThroughStepTaint(src, sink, _)
 }
 
 private Type getElementType(Type containerType) {
diff --git a/go/ql/test/library-tests/semmle/go/dataflow/ExternalFlow/steps.ql b/go/ql/test/library-tests/semmle/go/dataflow/ExternalFlow/steps.ql
index 0670657bae0..c6603c5df93 100644
--- a/go/ql/test/library-tests/semmle/go/dataflow/ExternalFlow/steps.ql
+++ b/go/ql/test/library-tests/semmle/go/dataflow/ExternalFlow/steps.ql
@@ -22,5 +22,5 @@ class SummaryModelTest extends SummaryModelCsv {
 }
 
 from DataFlow::Node node1, DataFlow::Node node2
-where FlowSummaryImpl::Private::Steps::summaryThroughStepTaint(node1, node2)
+where FlowSummaryImpl::Private::Steps::summaryThroughStepTaint(node1, node2, _)
 select node1, node2

From 50210a9d24c52812a0e46c97fb3fc55fb2c31254 Mon Sep 17 00:00:00 2001
From: Owen Mansel-Chan <owen-mc@github.com>
Date: Wed, 26 Oct 2022 11:37:42 +0100
Subject: [PATCH 0441/1420] Go: ParameterPosition and ArgumentPosition

Corresponds to https://github.com/github/codeql/pull/7260, though some
of those changes had already been made.
---
 .../semmle/go/dataflow/internal/DataFlowDispatch.qll | 12 ++++--------
 .../semmle/go/dataflow/internal/DataFlowNodes.qll    |  9 ++++++++-
 .../go/dataflow/internal/FlowSummaryImplSpecific.qll | 10 +++++++++-
 3 files changed, 21 insertions(+), 10 deletions(-)

diff --git a/go/ql/lib/semmle/go/dataflow/internal/DataFlowDispatch.qll b/go/ql/lib/semmle/go/dataflow/internal/DataFlowDispatch.qll
index 4cd6e5446bc..8f10eee1aab 100644
--- a/go/ql/lib/semmle/go/dataflow/internal/DataFlowDispatch.qll
+++ b/go/ql/lib/semmle/go/dataflow/internal/DataFlowDispatch.qll
@@ -109,22 +109,18 @@ predicate mayBenefitFromCallContext(DataFlowCall call, DataFlowCallable f) { non
  */
 DataFlowCallable viableImplInCallContext(DataFlowCall call, DataFlowCall ctx) { none() }
 
-/** Holds if `i` is a valid parameter position. */
-predicate parameterPosition(int i) {
-  i = [-1 .. any(DataFlowCallable c).getType().getNumParameter()]
+private int parameterPosition() {
+  result = [-1 .. any(DataFlowCallable c).getType().getNumParameter()]
 }
 
-/** Gets the parameter position of the instance parameter. */
-int instanceParameterPosition() { result = -1 }
-
 /** A parameter position represented by an integer. */
 class ParameterPosition extends int {
-  ParameterPosition() { parameterPosition(this) }
+  ParameterPosition() { this = parameterPosition() }
 }
 
 /** An argument position represented by an integer. */
 class ArgumentPosition extends int {
-  ArgumentPosition() { parameterPosition(this) }
+  ArgumentPosition() { this = parameterPosition() }
 }
 
 /** Holds if arguments at position `apos` match parameters at position `ppos`. */
diff --git a/go/ql/lib/semmle/go/dataflow/internal/DataFlowNodes.qll b/go/ql/lib/semmle/go/dataflow/internal/DataFlowNodes.qll
index ab3ecf0c64b..715330f87d9 100644
--- a/go/ql/lib/semmle/go/dataflow/internal/DataFlowNodes.qll
+++ b/go/ql/lib/semmle/go/dataflow/internal/DataFlowNodes.qll
@@ -25,6 +25,8 @@ private newtype TNode =
 
 /** Nodes intended for only use inside the data-flow libraries. */
 module Private {
+  private import DataFlowDispatch
+
   /** Gets the callable in which this node occurs. */
   DataFlowCallable nodeGetEnclosingCallable(Node n) {
     result.asCallable() = n.getEnclosingCallable()
@@ -33,10 +35,15 @@ module Private {
   }
 
   /** Holds if `p` is a `ParameterNode` of `c` with position `pos`. */
-  predicate isParameterNode(ParameterNode p, DataFlowCallable c, int pos) {
+  predicate isParameterNode(ParameterNode p, DataFlowCallable c, ParameterPosition pos) {
     p.isParameterOf(c.asCallable(), pos)
   }
 
+  /** Holds if `arg` is an `ArgumentNode` of `c` with position `pos`. */
+  predicate isArgumentNode(ArgumentNode arg, DataFlowCall c, ArgumentPosition pos) {
+    arg.argumentOf(c, pos)
+  }
+
   /** A data flow node that represents returning a value from a function. */
   class ReturnNode extends Node {
     ReturnKind kind;
diff --git a/go/ql/lib/semmle/go/dataflow/internal/FlowSummaryImplSpecific.qll b/go/ql/lib/semmle/go/dataflow/internal/FlowSummaryImplSpecific.qll
index ecf97dd7565..5b5382a3cb7 100644
--- a/go/ql/lib/semmle/go/dataflow/internal/FlowSummaryImplSpecific.qll
+++ b/go/ql/lib/semmle/go/dataflow/internal/FlowSummaryImplSpecific.qll
@@ -19,6 +19,9 @@ class SummarizedCallableBase = Callable;
 
 DataFlowCallable inject(SummarizedCallable c) { result.asCallable() = c }
 
+/** Gets the parameter position of the instance parameter. */
+ArgumentPosition instanceParameterPosition() { result = -1 }
+
 /** Gets the textual representation of a parameter position in the format used for flow summaries. */
 string getParameterPositionCsv(ParameterPosition pos) { result = pos.toString() }
 
@@ -245,7 +248,10 @@ predicate interpretInputSpecific(string c, InterpretNode mid, InterpretNode n) {
   )
 }
 
-/** Holds if specification component `c` parses as return value `n`. */
+/**
+ * Holds if specification component `c` parses as return value `n` or a range
+ * containing `n`.
+ */
 predicate parseReturn(AccessPathToken c, int n) {
   (
     c = "ReturnValue" and n = 0
@@ -266,8 +272,10 @@ private int parseConstantOrRange(string arg) {
   )
 }
 
+/** Gets the argument position obtained by parsing `X` in `Parameter[X]`. */
 bindingset[arg]
 ArgumentPosition parseParamBody(string arg) { result = parseConstantOrRange(arg) }
 
+/** Gets the parameter position obtained by parsing `X` in `Argument[X]`. */
 bindingset[arg]
 ParameterPosition parseArgBody(string arg) { result = parseConstantOrRange(arg) }

From 736435adda41b7e2e04d2d1ab92e2f7b7174443d Mon Sep 17 00:00:00 2001
From: Owen Mansel-Chan <owen-mc@github.com>
Date: Wed, 26 Oct 2022 11:43:09 +0100
Subject: [PATCH 0442/1420] Go: Add stub `expectsContent`

Corresponds to https://github.com/github/codeql/pull/8870
---
 go/ql/lib/semmle/go/dataflow/internal/DataFlowPrivate.qll | 6 ++++++
 1 file changed, 6 insertions(+)

diff --git a/go/ql/lib/semmle/go/dataflow/internal/DataFlowPrivate.qll b/go/ql/lib/semmle/go/dataflow/internal/DataFlowPrivate.qll
index d83014b0b93..e34880f7017 100644
--- a/go/ql/lib/semmle/go/dataflow/internal/DataFlowPrivate.qll
+++ b/go/ql/lib/semmle/go/dataflow/internal/DataFlowPrivate.qll
@@ -188,6 +188,12 @@ predicate clearsContent(Node n, Content c) {
   // FlowSummaryImpl::Private::Steps::summaryClearsContent(n, c)
 }
 
+/**
+ * Holds if the value that is being tracked is expected to be stored inside content `c`
+ * at node `n`.
+ */
+predicate expectsContent(Node n, ContentSet c) { none() }
+
 /** Gets the type of `n` used for type pruning. */
 DataFlowType getNodeType(Node n) {
   result = n.getType()

From 1718ef88be205084a9b56d3820a9670b06e40d59 Mon Sep 17 00:00:00 2001
From: Owen Mansel-Chan <owen-mc@github.com>
Date: Wed, 2 Nov 2022 15:51:37 +0000
Subject: [PATCH 0443/1420]  Data flow: Inline local(Expr)?(Flow|Taint)

 See https://github.com/github/codeql/pull/7791
---
 go/ql/lib/semmle/go/dataflow/internal/DataFlowUtil.qll      | 1 +
 go/ql/lib/semmle/go/dataflow/internal/TaintTrackingUtil.qll | 2 ++
 2 files changed, 3 insertions(+)

diff --git a/go/ql/lib/semmle/go/dataflow/internal/DataFlowUtil.qll b/go/ql/lib/semmle/go/dataflow/internal/DataFlowUtil.qll
index 9b905087753..69ec6aedd3e 100644
--- a/go/ql/lib/semmle/go/dataflow/internal/DataFlowUtil.qll
+++ b/go/ql/lib/semmle/go/dataflow/internal/DataFlowUtil.qll
@@ -131,6 +131,7 @@ predicate simpleLocalFlowStep(Node nodeFrom, Node nodeTo) {
  * Holds if data flows from `source` to `sink` in zero or more local
  * (intra-procedural) steps.
  */
+pragma[inline]
 predicate localFlow(Node source, Node sink) { localFlowStep*(source, sink) }
 
 private newtype TContent =
diff --git a/go/ql/lib/semmle/go/dataflow/internal/TaintTrackingUtil.qll b/go/ql/lib/semmle/go/dataflow/internal/TaintTrackingUtil.qll
index e9173cc605a..77dadd8e3a8 100644
--- a/go/ql/lib/semmle/go/dataflow/internal/TaintTrackingUtil.qll
+++ b/go/ql/lib/semmle/go/dataflow/internal/TaintTrackingUtil.qll
@@ -9,12 +9,14 @@ private import FlowSummaryImpl as FlowSummaryImpl
  * Holds if taint can flow from `src` to `sink` in zero or more
  * local (intra-procedural) steps.
  */
+pragma[inline]
 predicate localTaint(DataFlow::Node src, DataFlow::Node sink) { localTaintStep*(src, sink) }
 
 /**
  * Holds if taint can flow from `src` to `sink` in zero or more
  * local (intra-procedural) steps.
  */
+pragma[inline]
 predicate localExprTaint(Expr src, Expr sink) {
   localTaint(DataFlow::exprNode(src), DataFlow::exprNode(sink))
 }

From f2e2c02db6d91a5441f2a0887cd35abeb851fb32 Mon Sep 17 00:00:00 2001
From: Owen Mansel-Chan <owen-mc@github.com>
Date: Wed, 26 Oct 2022 15:28:48 +0100
Subject: [PATCH 0444/1420] Rename predicates to avoid clashes

---
 .../go/security/AllocationSizeOverflow.qll    |  4 ++--
 .../IncorrectIntegerConversionLib.qll         |  6 ++---
 .../semmle/go/security/InsecureRandomness.qll |  4 ++--
 .../CWE-020/IncompleteHostnameRegexp.ql       |  6 ++---
 .../Security/CWE-020/MissingRegexpAnchor.ql   |  6 ++---
 .../CWE-020/SuspiciousCharacterInRegexp.ql    |  6 ++---
 .../CWE-190/AllocationSizeOverflow.ql         |  2 +-
 .../CWE-322/InsecureHostKeyCallback.ql        |  8 +++----
 go/ql/src/Security/CWE-327/InsecureTLS.ql     |  8 +++----
 .../Security/CWE-338/InsecureRandomness.ql    |  2 +-
 .../Security/CWE-352/ConstantOauth2State.ql   | 16 +++++++-------
 .../src/Security/CWE-601/BadRedirectCheck.ql  |  6 ++---
 .../CWE-942/CorsMisconfiguration.ql           | 12 +++++-----
 .../experimental/Unsafe/WrongUsageOfUnsafe.ql | 22 ++++++++++---------
 .../StdlibTaintFlow/StdlibTaintFlow.ql        | 14 ++++++------
 15 files changed, 62 insertions(+), 60 deletions(-)

diff --git a/go/ql/lib/semmle/go/security/AllocationSizeOverflow.qll b/go/ql/lib/semmle/go/security/AllocationSizeOverflow.qll
index 0cd2ff2bc79..294e1048b29 100644
--- a/go/ql/lib/semmle/go/security/AllocationSizeOverflow.qll
+++ b/go/ql/lib/semmle/go/security/AllocationSizeOverflow.qll
@@ -48,11 +48,11 @@ module AllocationSizeOverflow {
      * Holds if `nd` is at a position where overflow might occur, and its result is used to compute
      * allocation size `allocsz`.
      */
-    predicate isSink(DataFlow::Node nd, DataFlow::Node allocsz) {
+    predicate isSinkWithAllocationSize(DataFlow::Node nd, DataFlow::Node allocsz) {
       nd.(Sink).getAllocationSize() = allocsz
     }
 
-    override predicate isSink(DataFlow::Node nd) { isSink(nd, _) }
+    override predicate isSink(DataFlow::Node nd) { isSinkWithAllocationSize(nd, _) }
 
     override predicate isAdditionalTaintStep(DataFlow::Node pred, DataFlow::Node succ) {
       additionalStep(pred, succ)
diff --git a/go/ql/lib/semmle/go/security/IncorrectIntegerConversionLib.qll b/go/ql/lib/semmle/go/security/IncorrectIntegerConversionLib.qll
index fbe73ae1128..060832cfffc 100644
--- a/go/ql/lib/semmle/go/security/IncorrectIntegerConversionLib.qll
+++ b/go/ql/lib/semmle/go/security/IncorrectIntegerConversionLib.qll
@@ -109,7 +109,7 @@ class ConversionWithoutBoundsCheckConfig extends TaintTracking::Configuration {
    * not also in a right-shift expression. We allow this case because it is
    * a common pattern to serialise `byte(v)`, `byte(v >> 8)`, and so on.
    */
-  predicate isSink(DataFlow::TypeCastNode sink, int bitSize) {
+  predicate isSinkWithBitSize(DataFlow::TypeCastNode sink, int bitSize) {
     sink.asExpr() instanceof ConversionExpr and
     exists(IntegerType integerType | sink.getResultType().getUnderlyingType() = integerType |
       bitSize = integerType.getSize()
@@ -125,7 +125,7 @@ class ConversionWithoutBoundsCheckConfig extends TaintTracking::Configuration {
     )
   }
 
-  override predicate isSink(DataFlow::Node sink) { this.isSink(sink, sinkBitSize) }
+  override predicate isSink(DataFlow::Node sink) { this.isSinkWithBitSize(sink, sinkBitSize) }
 
   override predicate isSanitizer(DataFlow::Node node) {
     // To catch flows that only happen on 32-bit architectures we
@@ -140,7 +140,7 @@ class ConversionWithoutBoundsCheckConfig extends TaintTracking::Configuration {
 
   override predicate isSanitizerOut(DataFlow::Node node) {
     exists(int bitSize | isIncorrectIntegerConversion(sourceBitSize, bitSize) |
-      this.isSink(node, bitSize)
+      this.isSinkWithBitSize(node, bitSize)
     )
   }
 }
diff --git a/go/ql/lib/semmle/go/security/InsecureRandomness.qll b/go/ql/lib/semmle/go/security/InsecureRandomness.qll
index 6de3071b598..38916389c9b 100644
--- a/go/ql/lib/semmle/go/security/InsecureRandomness.qll
+++ b/go/ql/lib/semmle/go/security/InsecureRandomness.qll
@@ -25,10 +25,10 @@ module InsecureRandomness {
 
     override predicate isSource(DataFlow::Node source) { source instanceof Source }
 
-    override predicate isSink(DataFlow::Node sink) { this.isSink(sink, _) }
+    override predicate isSink(DataFlow::Node sink) { this.isSinkWithKind(sink, _) }
 
     /** Holds if `sink` is a sink for this configuration with kind `kind`. */
-    predicate isSink(Sink sink, string kind) { kind = sink.getKind() }
+    predicate isSinkWithKind(Sink sink, string kind) { kind = sink.getKind() }
 
     override predicate isSanitizer(DataFlow::Node node) { node instanceof Sanitizer }
   }
diff --git a/go/ql/src/Security/CWE-020/IncompleteHostnameRegexp.ql b/go/ql/src/Security/CWE-020/IncompleteHostnameRegexp.ql
index fdd83673b74..29e94f67823 100644
--- a/go/ql/src/Security/CWE-020/IncompleteHostnameRegexp.ql
+++ b/go/ql/src/Security/CWE-020/IncompleteHostnameRegexp.ql
@@ -83,7 +83,7 @@ predicate regexpGuardsError(RegexpPattern regexp) {
 class Config extends DataFlow::Configuration {
   Config() { this = "IncompleteHostNameRegexp::Config" }
 
-  predicate isSource(DataFlow::Node source, string hostPart) {
+  predicate isSourceString(DataFlow::Node source, string hostPart) {
     exists(Expr e |
       e = source.asExpr() and
       isIncompleteHostNameRegexpPattern(e.getStringValue(), hostPart)
@@ -95,7 +95,7 @@ class Config extends DataFlow::Configuration {
     )
   }
 
-  override predicate isSource(DataFlow::Node source) { isSource(source, _) }
+  override predicate isSource(DataFlow::Node source) { isSourceString(source, _) }
 
   override predicate isSink(DataFlow::Node sink) {
     sink instanceof RegexpPattern and
@@ -107,7 +107,7 @@ class Config extends DataFlow::Configuration {
 }
 
 from Config c, DataFlow::PathNode source, DataFlow::PathNode sink, string hostPart
-where c.hasFlowPath(source, sink) and c.isSource(source.getNode(), hostPart)
+where c.hasFlowPath(source, sink) and c.isSourceString(source.getNode(), hostPart)
 select source, source, sink,
   "This regular expression has an unescaped dot before '" + hostPart + "', " +
     "so it might match more hosts than expected when $@.", sink, "the regular expression is used"
diff --git a/go/ql/src/Security/CWE-020/MissingRegexpAnchor.ql b/go/ql/src/Security/CWE-020/MissingRegexpAnchor.ql
index 8538e435819..f19bee4b179 100644
--- a/go/ql/src/Security/CWE-020/MissingRegexpAnchor.ql
+++ b/go/ql/src/Security/CWE-020/MissingRegexpAnchor.ql
@@ -63,7 +63,7 @@ predicate isInterestingUnanchoredRegexpString(string re, string msg) {
 class Config extends DataFlow::Configuration {
   Config() { this = "MissingRegexpAnchor::Config" }
 
-  predicate isSource(DataFlow::Node source, string msg) {
+  predicate isSourceString(DataFlow::Node source, string msg) {
     exists(Expr e | e = source.asExpr() |
       isInterestingUnanchoredRegexpString(e.getStringValue(), msg)
       or
@@ -71,11 +71,11 @@ class Config extends DataFlow::Configuration {
     )
   }
 
-  override predicate isSource(DataFlow::Node source) { isSource(source, _) }
+  override predicate isSource(DataFlow::Node source) { isSourceString(source, _) }
 
   override predicate isSink(DataFlow::Node sink) { sink instanceof RegexpPattern }
 }
 
 from Config c, DataFlow::PathNode source, string msg
-where c.hasFlowPath(source, _) and c.isSource(source.getNode(), msg)
+where c.hasFlowPath(source, _) and c.isSourceString(source.getNode(), msg)
 select source.getNode(), msg
diff --git a/go/ql/src/Security/CWE-020/SuspiciousCharacterInRegexp.ql b/go/ql/src/Security/CWE-020/SuspiciousCharacterInRegexp.ql
index 5c1b4528302..667ab999a34 100644
--- a/go/ql/src/Security/CWE-020/SuspiciousCharacterInRegexp.ql
+++ b/go/ql/src/Security/CWE-020/SuspiciousCharacterInRegexp.ql
@@ -32,7 +32,7 @@ predicate containsEscapedCharacter(DataFlow::Node source, string character) {
 class Config extends DataFlow::Configuration {
   Config() { this = "SuspiciousRegexpEscape" }
 
-  predicate isSource(DataFlow::Node source, string report) {
+  predicate isSourceString(DataFlow::Node source, string report) {
     containsEscapedCharacter(source, "a") and
     report =
       "the bell character \\a; did you mean \\\\a, the Vim alphabetic character class (use [[:alpha:]] instead) or \\\\A, the beginning of text?"
@@ -41,12 +41,12 @@ class Config extends DataFlow::Configuration {
     report = "a literal backspace \\b; did you mean \\\\b, a word boundary?"
   }
 
-  override predicate isSource(DataFlow::Node source) { isSource(source, _) }
+  override predicate isSource(DataFlow::Node source) { isSourceString(source, _) }
 
   override predicate isSink(DataFlow::Node sink) { sink instanceof RegexpPattern }
 }
 
 from Config c, DataFlow::PathNode source, DataFlow::PathNode sink, string report
-where c.hasFlowPath(source, sink) and c.isSource(source.getNode(), report)
+where c.hasFlowPath(source, sink) and c.isSourceString(source.getNode(), report)
 select source, source, sink, "This string literal that is $@ contains " + report, sink,
   "used as a regular expression"
diff --git a/go/ql/src/Security/CWE-190/AllocationSizeOverflow.ql b/go/ql/src/Security/CWE-190/AllocationSizeOverflow.ql
index c52e9c33305..4962a6626fc 100644
--- a/go/ql/src/Security/CWE-190/AllocationSizeOverflow.ql
+++ b/go/ql/src/Security/CWE-190/AllocationSizeOverflow.ql
@@ -20,7 +20,7 @@ from
   DataFlow::Node allocsz
 where
   cfg.hasFlowPath(source, sink) and
-  cfg.isSink(sink.getNode(), allocsz)
+  cfg.isSinkWithAllocationSize(sink.getNode(), allocsz)
 select sink, source, sink,
   "This operation, which is used in an $@, involves a $@ and might overflow.", allocsz,
   "allocation", source, "potentially large value"
diff --git a/go/ql/src/Security/CWE-322/InsecureHostKeyCallback.ql b/go/ql/src/Security/CWE-322/InsecureHostKeyCallback.ql
index 452e3b94108..486283ddcb4 100644
--- a/go/ql/src/Security/CWE-322/InsecureHostKeyCallback.ql
+++ b/go/ql/src/Security/CWE-322/InsecureHostKeyCallback.ql
@@ -66,14 +66,14 @@ class HostKeyCallbackAssignmentConfig extends DataFlow::Configuration {
   /**
    * Holds if `sink` is a value written by `write` to a field `ClientConfig.HostKeyCallback`.
    */
-  predicate isSink(DataFlow::Node sink, Write write) {
+  predicate writeIsSink(DataFlow::Node sink, Write write) {
     exists(Field f |
       f.hasQualifiedName(CryptoSsh::packagePath(), "ClientConfig", "HostKeyCallback") and
       write.writesField(_, f, sink)
     )
   }
 
-  override predicate isSink(DataFlow::Node sink) { this.isSink(sink, _) }
+  override predicate isSink(DataFlow::Node sink) { this.writeIsSink(sink, _) }
 }
 
 /**
@@ -92,8 +92,8 @@ predicate hostCheckReachesSink(DataFlow::PathNode sink) {
         SsaWithFields sinkAccessPath, SsaWithFields otherSinkAccessPath
       |
         config.hasFlowPath(source, otherSink) and
-        config.isSink(sink.getNode(), sinkWrite) and
-        config.isSink(otherSink.getNode(), otherSinkWrite) and
+        config.writeIsSink(sink.getNode(), sinkWrite) and
+        config.writeIsSink(otherSink.getNode(), otherSinkWrite) and
         sinkWrite.writesField(sinkAccessPath.getAUse(), _, sink.getNode()) and
         otherSinkWrite.writesField(otherSinkAccessPath.getAUse(), _, otherSink.getNode()) and
         otherSinkAccessPath = sinkAccessPath.similar()
diff --git a/go/ql/src/Security/CWE-327/InsecureTLS.ql b/go/ql/src/Security/CWE-327/InsecureTLS.ql
index f8277226144..9163f767382 100644
--- a/go/ql/src/Security/CWE-327/InsecureTLS.ql
+++ b/go/ql/src/Security/CWE-327/InsecureTLS.ql
@@ -60,7 +60,7 @@ class TlsVersionFlowConfig extends TaintTracking::Configuration {
   /**
    * Holds if `source` is a TLS version source yielding value `val`.
    */
-  predicate isSource(DataFlow::Node source, int val) {
+  predicate intIsSource(DataFlow::Node source, int val) {
     val = source.getIntValue() and
     val = getATlsVersion() and
     not DataFlow::isReturnedWithError(source)
@@ -74,7 +74,7 @@ class TlsVersionFlowConfig extends TaintTracking::Configuration {
     fieldWrite.writesField(base, fld, sink)
   }
 
-  override predicate isSource(DataFlow::Node source) { isSource(source, _) }
+  override predicate isSource(DataFlow::Node source) { intIsSource(source, _) }
 
   override predicate isSink(DataFlow::Node sink) { isSink(sink, _, _, _) }
 }
@@ -87,7 +87,7 @@ predicate secureTlsVersionFlow(
 ) {
   exists(int version |
     config.hasFlowPath(source, sink) and
-    config.isSource(source.getNode(), version) and
+    config.intIsSource(source.getNode(), version) and
     not isInsecureTlsVersion(version, _, fld.getName())
   )
 }
@@ -130,7 +130,7 @@ predicate isInsecureTlsVersionFlow(
 ) {
   exists(TlsVersionFlowConfig cfg, int version, Field fld |
     cfg.hasFlowPath(source, sink) and
-    cfg.isSource(source.getNode(), version) and
+    cfg.intIsSource(source.getNode(), version) and
     cfg.isSink(sink.getNode(), fld, base, _) and
     isInsecureTlsVersion(version, _, fld.getName()) and
     // Exclude cases where a secure TLS version can also flow to the same
diff --git a/go/ql/src/Security/CWE-338/InsecureRandomness.ql b/go/ql/src/Security/CWE-338/InsecureRandomness.ql
index e87bbbae37b..aa26e171e50 100644
--- a/go/ql/src/Security/CWE-338/InsecureRandomness.ql
+++ b/go/ql/src/Security/CWE-338/InsecureRandomness.ql
@@ -17,7 +17,7 @@ import DataFlow::PathGraph
 from Configuration cfg, DataFlow::PathNode source, DataFlow::PathNode sink, string kind
 where
   cfg.hasFlowPath(source, sink) and
-  cfg.isSink(sink.getNode(), kind) and
+  cfg.isSinkWithKind(sink.getNode(), kind) and
   (
     kind != "A password-related function"
     or
diff --git a/go/ql/src/Security/CWE-352/ConstantOauth2State.ql b/go/ql/src/Security/CWE-352/ConstantOauth2State.ql
index a35fc03b030..92ac3a9b54f 100644
--- a/go/ql/src/Security/CWE-352/ConstantOauth2State.ql
+++ b/go/ql/src/Security/CWE-352/ConstantOauth2State.ql
@@ -31,7 +31,7 @@ class AuthCodeUrl extends Method {
 class ConstantStateFlowConf extends DataFlow::Configuration {
   ConstantStateFlowConf() { this = "ConstantStateFlowConf" }
 
-  predicate isSink(DataFlow::Node sink, DataFlow::CallNode call) {
+  predicate isSinkCall(DataFlow::Node sink, DataFlow::CallNode call) {
     exists(AuthCodeUrl m | call = m.getACall() | sink = call.getArgument(0))
   }
 
@@ -46,7 +46,7 @@ class ConstantStateFlowConf extends DataFlow::Configuration {
     )
   }
 
-  override predicate isSink(DataFlow::Node sink) { this.isSink(sink, _) }
+  override predicate isSink(DataFlow::Node sink) { this.isSinkCall(sink, _) }
 }
 
 /**
@@ -109,11 +109,11 @@ class PrivateUrlFlowsToAuthCodeUrlCall extends DataFlow::Configuration {
     any(Fmt::AppenderOrSprinter s).taintStep(pred, succ)
   }
 
-  predicate isSink(DataFlow::Node sink, DataFlow::CallNode call) {
+  predicate isSinkCall(DataFlow::Node sink, DataFlow::CallNode call) {
     exists(AuthCodeUrl m | call = m.getACall() | sink = call.getReceiver())
   }
 
-  override predicate isSink(DataFlow::Node sink) { this.isSink(sink, _) }
+  override predicate isSink(DataFlow::Node sink) { this.isSinkCall(sink, _) }
 }
 
 /**
@@ -126,7 +126,7 @@ class PrivateUrlFlowsToAuthCodeUrlCall extends DataFlow::Configuration {
 predicate privateUrlFlowsToAuthCodeUrlCall(DataFlow::CallNode call) {
   exists(PrivateUrlFlowsToAuthCodeUrlCall flowConfig, DataFlow::Node receiver |
     flowConfig.hasFlowTo(receiver) and
-    flowConfig.isSink(receiver, call)
+    flowConfig.isSinkCall(receiver, call)
   )
 }
 
@@ -134,7 +134,7 @@ predicate privateUrlFlowsToAuthCodeUrlCall(DataFlow::CallNode call) {
 class FlowToPrint extends DataFlow::Configuration {
   FlowToPrint() { this = "FlowToPrint" }
 
-  predicate isSink(DataFlow::Node sink, DataFlow::CallNode call) {
+  predicate isSinkCall(DataFlow::Node sink, DataFlow::CallNode call) {
     exists(LoggerCall logCall | call = logCall | sink = logCall.getAMessageComponent())
   }
 
@@ -142,7 +142,7 @@ class FlowToPrint extends DataFlow::Configuration {
     source = any(AuthCodeUrl m).getACall().getResult()
   }
 
-  override predicate isSink(DataFlow::Node sink) { this.isSink(sink, _) }
+  override predicate isSink(DataFlow::Node sink) { this.isSinkCall(sink, _) }
 }
 
 /** Holds if the provided `CallNode`'s result flows to an argument of a printer call. */
@@ -198,7 +198,7 @@ from
   DataFlow::CallNode sinkCall
 where
   cfg.hasFlowPath(source, sink) and
-  cfg.isSink(sink.getNode(), sinkCall) and
+  cfg.isSinkCall(sink.getNode(), sinkCall) and
   // Exclude cases that seem to be oauth flows done from within a terminal:
   not seemsLikeDoneWithinATerminal(sinkCall) and
   not privateUrlFlowsToAuthCodeUrlCall(sinkCall)
diff --git a/go/ql/src/Security/CWE-601/BadRedirectCheck.ql b/go/ql/src/Security/CWE-601/BadRedirectCheck.ql
index a35d78519bb..9beb2fe160b 100644
--- a/go/ql/src/Security/CWE-601/BadRedirectCheck.ql
+++ b/go/ql/src/Security/CWE-601/BadRedirectCheck.ql
@@ -94,13 +94,13 @@ predicate urlPath(DataFlow::Node nd) {
 class Configuration extends TaintTracking::Configuration {
   Configuration() { this = "BadRedirectCheck" }
 
-  override predicate isSource(DataFlow::Node source) { this.isSource(source, _) }
+  override predicate isSource(DataFlow::Node source) { this.isCheckedSource(source, _) }
 
   /**
    * Holds if `source` is the first node that flows into a use of a variable that is checked by a
    * bad redirect check `check`..
    */
-  predicate isSource(DataFlow::Node source, DataFlow::Node check) {
+  predicate isCheckedSource(DataFlow::Node source, DataFlow::Node check) {
     exists(SsaWithFields v |
       DataFlow::localFlow(source, v.getAUse()) and
       not exists(source.getAPredecessor()) and
@@ -170,7 +170,7 @@ predicate isBadRedirectCheckWrapper(DataFlow::Node check, FuncDef f, FunctionInp
 
 from Configuration cfg, DataFlow::PathNode source, DataFlow::PathNode sink, DataFlow::Node check
 where
-  cfg.isSource(source.getNode(), check) and
+  cfg.isCheckedSource(source.getNode(), check) and
   cfg.hasFlowPath(source, sink)
 select check, source, sink,
   "This is a check that $@, which flows into a $@, has a leading slash, but not that it does not have '/' or '\\' in its second position.",
diff --git a/go/ql/src/experimental/CWE-942/CorsMisconfiguration.ql b/go/ql/src/experimental/CWE-942/CorsMisconfiguration.ql
index 372b1c21642..9dd62083df4 100644
--- a/go/ql/src/experimental/CWE-942/CorsMisconfiguration.ql
+++ b/go/ql/src/experimental/CWE-942/CorsMisconfiguration.ql
@@ -61,7 +61,7 @@ class FlowsUntrustedToAllowOriginHeader extends TaintTracking::Configuration {
 
   override predicate isSource(DataFlow::Node source) { source instanceof UntrustedFlowSource }
 
-  predicate isSink(DataFlow::Node sink, AllowOriginHeaderWrite hw) { sink = hw.getValue() }
+  predicate isSinkHW(DataFlow::Node sink, AllowOriginHeaderWrite hw) { sink = hw.getValue() }
 
   override predicate isSanitizer(DataFlow::Node node) {
     exists(ControlFlow::ConditionGuardNode cgn |
@@ -71,7 +71,7 @@ class FlowsUntrustedToAllowOriginHeader extends TaintTracking::Configuration {
     )
   }
 
-  override predicate isSink(DataFlow::Node sink) { this.isSink(sink, _) }
+  override predicate isSink(DataFlow::Node sink) { this.isSinkHW(sink, _) }
 }
 
 /**
@@ -95,7 +95,7 @@ predicate allowCredentialsIsSetToTrue(AllowOriginHeaderWrite allowOriginHW) {
 predicate flowsFromUntrustedToAllowOrigin(AllowOriginHeaderWrite allowOriginHW, string message) {
   exists(FlowsUntrustedToAllowOriginHeader cfg, DataFlow::Node sink |
     cfg.hasFlowTo(sink) and
-    cfg.isSink(sink, allowOriginHW)
+    cfg.isSinkHW(sink, allowOriginHW)
   |
     message =
       headerAllowOrigin() + " header is set to a user-defined value, and " +
@@ -130,9 +130,9 @@ class FlowsFromUntrusted extends TaintTracking::Configuration {
 
   override predicate isSource(DataFlow::Node source) { source instanceof UntrustedFlowSource }
 
-  override predicate isSink(DataFlow::Node sink) { this.isSink(sink, _) }
+  override predicate isSink(DataFlow::Node sink) { this.isSinkCgn(sink, _) }
 
-  predicate isSink(DataFlow::Node sink, ControlFlow::ConditionGuardNode cgn) {
+  predicate isSinkCgn(DataFlow::Node sink, ControlFlow::ConditionGuardNode cgn) {
     exists(IfStmt ifs |
       exists(Expr operand |
         operand = ifs.getCond().getAChildExpr*() and
@@ -171,7 +171,7 @@ class FlowsFromUntrusted extends TaintTracking::Configuration {
  */
 predicate flowsToGuardedByCheckOnUntrusted(AllowOriginHeaderWrite allowOriginHW) {
   exists(FlowsFromUntrusted cfg, DataFlow::Node sink, ControlFlow::ConditionGuardNode cgn |
-    cfg.hasFlowTo(sink) and cfg.isSink(sink, cgn)
+    cfg.hasFlowTo(sink) and cfg.isSinkCgn(sink, cgn)
   |
     cgn.dominates(allowOriginHW.getBasicBlock())
   )
diff --git a/go/ql/src/experimental/Unsafe/WrongUsageOfUnsafe.ql b/go/ql/src/experimental/Unsafe/WrongUsageOfUnsafe.ql
index cafc719dd7a..3dfc90dc40a 100644
--- a/go/ql/src/experimental/Unsafe/WrongUsageOfUnsafe.ql
+++ b/go/ql/src/experimental/Unsafe/WrongUsageOfUnsafe.ql
@@ -41,16 +41,18 @@ class ConversionToUnsafePointer extends DataFlow::TypeCastNode {
 class UnsafeTypeCastingConf extends TaintTracking::Configuration {
   UnsafeTypeCastingConf() { this = "UnsafeTypeCastingConf" }
 
-  predicate isSource(DataFlow::Node source, ConversionToUnsafePointer conv) { source = conv }
+  predicate conversionIsSource(DataFlow::Node source, ConversionToUnsafePointer conv) {
+    source = conv
+  }
 
-  predicate isSink(DataFlow::Node sink, DataFlow::TypeCastNode ca) {
+  predicate typeCastNodeIsSink(DataFlow::Node sink, DataFlow::TypeCastNode ca) {
     ca.getOperand().getType() instanceof UnsafePointerType and
     sink = ca
   }
 
-  override predicate isSource(DataFlow::Node source) { isSource(source, _) }
+  override predicate isSource(DataFlow::Node source) { conversionIsSource(source, _) }
 
-  override predicate isSink(DataFlow::Node sink) { isSink(sink, _) }
+  override predicate isSink(DataFlow::Node sink) { typeCastNodeIsSink(sink, _) }
 }
 
 /*
@@ -66,8 +68,8 @@ predicate castShortArrayToLongerArray(
     ArrayType arrTo, ArrayType arrFrom, int arrFromSize
   |
     cfg.hasFlowPath(source, sink) and
-    cfg.isSource(source.getNode(), castLittle) and
-    cfg.isSink(sink.getNode(), castBig) and
+    cfg.conversionIsSource(source.getNode(), castLittle) and
+    cfg.typeCastNodeIsSink(sink.getNode(), castBig) and
     arrTo = getFinalType(castBig.getResultType()) and
     (
       // Array (whole) to array:
@@ -111,8 +113,8 @@ predicate castTypeToArray(DataFlow::PathNode source, DataFlow::PathNode sink, st
     ArrayType arrTo, Type typeFrom
   |
     cfg.hasFlowPath(source, sink) and
-    cfg.isSource(source.getNode(), castLittle) and
-    cfg.isSink(sink.getNode(), castBig) and
+    cfg.conversionIsSource(source.getNode(), castLittle) and
+    cfg.typeCastNodeIsSink(sink.getNode(), castBig) and
     arrTo = getFinalType(castBig.getResultType()) and
     not typeFrom.getUnderlyingType() instanceof ArrayType and
     not typeFrom instanceof PointerType and
@@ -141,8 +143,8 @@ predicate castDifferentBitSizeNumbers(
     NumericType numTo, NumericType numFrom
   |
     cfg.hasFlowPath(source, sink) and
-    cfg.isSource(source.getNode(), castLittle) and
-    cfg.isSink(sink.getNode(), castBig) and
+    cfg.conversionIsSource(source.getNode(), castLittle) and
+    cfg.typeCastNodeIsSink(sink.getNode(), castBig) and
     numTo = getFinalType(castBig.getResultType()) and
     numFrom = getFinalType(castLittle.getOperand().getType()) and
     // TODO: also consider cast from uint to int?
diff --git a/go/ql/test/library-tests/semmle/go/frameworks/StdlibTaintFlow/StdlibTaintFlow.ql b/go/ql/test/library-tests/semmle/go/frameworks/StdlibTaintFlow/StdlibTaintFlow.ql
index bc41ecbd76e..8a3456691a9 100644
--- a/go/ql/test/library-tests/semmle/go/frameworks/StdlibTaintFlow/StdlibTaintFlow.ql
+++ b/go/ql/test/library-tests/semmle/go/frameworks/StdlibTaintFlow/StdlibTaintFlow.ql
@@ -13,13 +13,13 @@ class Link extends TaintTracking::FunctionModel {
   }
 }
 
-predicate isSource(DataFlow::Node source, DataFlow::CallNode call) {
+predicate callResultisSource(DataFlow::Node source, DataFlow::CallNode call) {
   exists(Function fn | fn.hasQualifiedName(_, "newSource") |
     call = fn.getACall() and source = call.getResult()
   )
 }
 
-predicate isSink(DataFlow::Node sink, DataFlow::CallNode call) {
+predicate callArgumentisSink(DataFlow::Node sink, DataFlow::CallNode call) {
   exists(Function fn | fn.hasQualifiedName(_, "sink") |
     call = fn.getACall() and sink = call.getArgument(1)
   )
@@ -28,9 +28,9 @@ predicate isSink(DataFlow::Node sink, DataFlow::CallNode call) {
 class FlowConf extends TaintTracking::Configuration {
   FlowConf() { this = "FlowConf" }
 
-  override predicate isSource(DataFlow::Node source) { isSource(source, _) }
+  override predicate isSource(DataFlow::Node source) { callResultisSource(source, _) }
 
-  override predicate isSink(DataFlow::Node sink) { isSink(sink, _) }
+  override predicate isSink(DataFlow::Node sink) { callArgumentisSink(sink, _) }
 }
 
 /**
@@ -43,8 +43,8 @@ predicate flowsToSink(DataFlow::CallNode sourceCall) {
   |
     cfg.hasFlowPath(source, sink) and
     (
-      isSource(source.getNode(), sourceCall) and
-      isSink(sink.getNode(), sinkCall) and
+      callResultisSource(source.getNode(), sourceCall) and
+      callArgumentisSink(sink.getNode(), sinkCall) and
       sourceCall.getArgument(0).getIntValue() = sinkCall.getArgument(0).getIntValue()
     )
   )
@@ -52,5 +52,5 @@ predicate flowsToSink(DataFlow::CallNode sourceCall) {
 
 /* Show only flow sources that DON'T flow to their dedicated sink. */
 from DataFlow::CallNode sourceCall
-where isSource(_, sourceCall) and not flowsToSink(sourceCall)
+where callResultisSource(_, sourceCall) and not flowsToSink(sourceCall)
 select sourceCall, "No flow to its sink"

From 71aeeee7c87b84b728170d221b649ce8704e34c9 Mon Sep 17 00:00:00 2001
From: Owen Mansel-Chan <owen-mc@github.com>
Date: Wed, 2 Nov 2022 13:53:44 +0000
Subject: [PATCH 0445/1420] Accept trivial change to test output

In the `subpaths` section, the last node is now printed without its type
if it is the sink of the path.

This comes from the commit "Dataflow: Bugfix: include subpaths ending at
a sink. " in https://github.com/github/codeql/pull/7526
---
 .../query-tests/Security/CWE-312/CleartextLogging.expected    | 2 +-
 .../CWE-601/BadRedirectCheck/BadRedirectCheck.expected        | 4 ++--
 2 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/go/ql/test/query-tests/Security/CWE-312/CleartextLogging.expected b/go/ql/test/query-tests/Security/CWE-312/CleartextLogging.expected
index 8d66b76c863..698779c4ad0 100644
--- a/go/ql/test/query-tests/Security/CWE-312/CleartextLogging.expected
+++ b/go/ql/test/query-tests/Security/CWE-312/CleartextLogging.expected
@@ -99,7 +99,7 @@ nodes
 | protos/query/query.pb.go:119:10:119:22 | selection of Description : string | semmle.label | selection of Description : string |
 | util.go:16:9:16:18 | selection of password : string | semmle.label | selection of password : string |
 subpaths
-| protobuf.go:14:14:14:18 | query [pointer, Description] : string | protos/query/query.pb.go:117:7:117:7 | definition of x [pointer, Description] : string | protos/query/query.pb.go:119:10:119:22 | selection of Description : string | protobuf.go:14:14:14:35 | call to GetDescription : string |
+| protobuf.go:14:14:14:18 | query [pointer, Description] : string | protos/query/query.pb.go:117:7:117:7 | definition of x [pointer, Description] : string | protos/query/query.pb.go:119:10:119:22 | selection of Description : string | protobuf.go:14:14:14:35 | call to GetDescription |
 #select
 | klog.go:22:15:22:20 | header | klog.go:20:30:20:37 | selection of Header : Header | klog.go:22:15:22:20 | header | $@ flows to a logging call. | klog.go:20:30:20:37 | selection of Header | Sensitive data returned by HTTP request headers |
 | klog.go:28:13:28:41 | call to Get | klog.go:28:13:28:20 | selection of Header : Header | klog.go:28:13:28:41 | call to Get | $@ flows to a logging call. | klog.go:28:13:28:20 | selection of Header | Sensitive data returned by HTTP request headers |
diff --git a/go/ql/test/query-tests/Security/CWE-601/BadRedirectCheck/BadRedirectCheck.expected b/go/ql/test/query-tests/Security/CWE-601/BadRedirectCheck/BadRedirectCheck.expected
index e140ce0ce96..240c71fb6c1 100644
--- a/go/ql/test/query-tests/Security/CWE-601/BadRedirectCheck/BadRedirectCheck.expected
+++ b/go/ql/test/query-tests/Security/CWE-601/BadRedirectCheck/BadRedirectCheck.expected
@@ -42,8 +42,8 @@ nodes
 | main.go:87:9:87:14 | selection of Path : string | semmle.label | selection of Path : string |
 | main.go:91:25:91:39 | call to getTarget2 | semmle.label | call to getTarget2 |
 subpaths
-| main.go:11:37:11:44 | redirect : string | BadRedirectCheck.go:3:18:3:22 | definition of redir : string | BadRedirectCheck.go:5:10:5:14 | redir : string | main.go:11:25:11:45 | call to sanitizeUrl : string |
-| main.go:77:36:77:38 | url : string | main.go:68:17:68:24 | definition of redirect : string | main.go:73:9:73:28 | call to Clean : string | main.go:77:25:77:39 | call to getTarget1 : string |
+| main.go:11:37:11:44 | redirect : string | BadRedirectCheck.go:3:18:3:22 | definition of redir : string | BadRedirectCheck.go:5:10:5:14 | redir : string | main.go:11:25:11:45 | call to sanitizeUrl |
+| main.go:77:36:77:38 | url : string | main.go:68:17:68:24 | definition of redirect : string | main.go:73:9:73:28 | call to Clean : string | main.go:77:25:77:39 | call to getTarget1 |
 #select
 | BadRedirectCheck.go:4:23:4:37 | ...==... | BadRedirectCheck.go:3:18:3:22 | argument corresponding to redir : string | main.go:11:25:11:45 | call to sanitizeUrl | This is a check that $@, which flows into a $@, has a leading slash, but not that it does not have '/' or '\\' in its second position. | BadRedirectCheck.go:3:18:3:22 | argument corresponding to redir | this value | main.go:11:25:11:45 | call to sanitizeUrl | redirect |
 | BadRedirectCheck.go:4:23:4:37 | ...==... | main.go:10:18:10:25 | argument corresponding to redirect : string | main.go:11:25:11:45 | call to sanitizeUrl | This is a check that $@, which flows into a $@, has a leading slash, but not that it does not have '/' or '\\' in its second position. | main.go:10:18:10:25 | argument corresponding to redirect | this value | main.go:11:25:11:45 | call to sanitizeUrl | redirect |

From 1a65a27fde35443377ab0e53b6d8c04f4fbd6101 Mon Sep 17 00:00:00 2001
From: Owen Mansel-Chan <owen-mc@github.com>
Date: Wed, 9 Nov 2022 14:07:51 +0000
Subject: [PATCH 0446/1420] Update test expectations

In https://github.com/github/codeql/pull/8641, `localFlowExit` was
changed to use `Stage2::readStepCand` instead of `read`, which means
that the big-step relation is broken up less. This causes test result
changes. Nothing is lost from the `select` clause, but some results may
have fewer paths, and fewer nodes and edges are output in the test
results.
---
 go/ql/test/experimental/CWE-918/SSRF.expected |   6 -
 .../go/frameworks/Beego/ReflectedXss.expected | 125 ------------------
 .../go/frameworks/BeegoOrm/StoredXss.expected |  17 ---
 .../go/frameworks/Chi/ReflectedXss.expected   |   6 -
 .../go/frameworks/Echo/OpenRedirect.expected  |   2 -
 .../go/frameworks/Echo/ReflectedXss.expected  |  40 ------
 .../go/frameworks/Revel/OpenRedirect.expected |   6 -
 .../go/frameworks/Revel/ReflectedXss.expected |  30 -----
 .../go/frameworks/Revel/TaintedPath.expected  |  12 --
 .../frameworks/XNetHtml/ReflectedXss.expected |  36 -----
 .../Security/CWE-022/TaintedPath.expected     |   4 -
 .../Security/CWE-022/ZipSlip.expected         |  32 -----
 .../Security/CWE-079/ReflectedXss.expected    |   4 -
 .../Security/CWE-327/UnsafeTLS.expected       |  18 ---
 .../OpenUrlRedirect/OpenUrlRedirect.expected  |   7 -
 15 files changed, 345 deletions(-)

diff --git a/go/ql/test/experimental/CWE-918/SSRF.expected b/go/ql/test/experimental/CWE-918/SSRF.expected
index 5fdd1775d3d..31b9e81ff89 100644
--- a/go/ql/test/experimental/CWE-918/SSRF.expected
+++ b/go/ql/test/experimental/CWE-918/SSRF.expected
@@ -13,11 +13,6 @@ edges
 | new-tests.go:62:31:62:38 | selection of Body : ReadCloser | new-tests.go:69:11:69:57 | call to Sprintf |
 | new-tests.go:62:31:62:38 | selection of Body : ReadCloser | new-tests.go:74:12:74:58 | call to Sprintf |
 | new-tests.go:78:18:78:24 | selection of URL : pointer type | new-tests.go:79:11:79:46 | ...+... |
-| new-tests.go:81:37:81:43 | implicit dereference : URL | new-tests.go:81:37:81:43 | implicit dereference : URL |
-| new-tests.go:81:37:81:43 | implicit dereference : URL | new-tests.go:81:37:81:43 | selection of URL : pointer type |
-| new-tests.go:81:37:81:43 | implicit dereference : URL | new-tests.go:82:11:82:46 | ...+... |
-| new-tests.go:81:37:81:43 | selection of URL : pointer type | new-tests.go:81:37:81:43 | implicit dereference : URL |
-| new-tests.go:81:37:81:43 | selection of URL : pointer type | new-tests.go:81:37:81:43 | selection of URL : pointer type |
 | new-tests.go:81:37:81:43 | selection of URL : pointer type | new-tests.go:82:11:82:46 | ...+... |
 | new-tests.go:86:10:86:20 | call to Vars : map type | new-tests.go:88:11:88:46 | ...+... |
 | new-tests.go:95:18:95:45 | call to URLParam : string | new-tests.go:96:11:96:46 | ...+... |
@@ -46,7 +41,6 @@ nodes
 | new-tests.go:74:12:74:58 | call to Sprintf | semmle.label | call to Sprintf |
 | new-tests.go:78:18:78:24 | selection of URL : pointer type | semmle.label | selection of URL : pointer type |
 | new-tests.go:79:11:79:46 | ...+... | semmle.label | ...+... |
-| new-tests.go:81:37:81:43 | implicit dereference : URL | semmle.label | implicit dereference : URL |
 | new-tests.go:81:37:81:43 | selection of URL : pointer type | semmle.label | selection of URL : pointer type |
 | new-tests.go:82:11:82:46 | ...+... | semmle.label | ...+... |
 | new-tests.go:86:10:86:20 | call to Vars : map type | semmle.label | call to Vars : map type |
diff --git a/go/ql/test/library-tests/semmle/go/frameworks/Beego/ReflectedXss.expected b/go/ql/test/library-tests/semmle/go/frameworks/Beego/ReflectedXss.expected
index cb39cfdd247..6af1a75cbbd 100644
--- a/go/ql/test/library-tests/semmle/go/frameworks/Beego/ReflectedXss.expected
+++ b/go/ql/test/library-tests/semmle/go/frameworks/Beego/ReflectedXss.expected
@@ -1,11 +1,7 @@
 edges
 | test.go:27:6:27:10 | definition of bound : bindMe | test.go:29:13:29:30 | type conversion |
-| test.go:27:6:27:10 | definition of bound : bindMe | test.go:29:20:29:26 | selection of a : slice type |
 | test.go:27:6:27:10 | definition of bound : bindMe | test.go:30:13:30:27 | type conversion |
 | test.go:27:6:27:10 | definition of bound : bindMe | test.go:31:13:31:29 | type conversion |
-| test.go:27:6:27:10 | definition of bound : bindMe | test.go:31:20:31:26 | selection of c : subBindMe |
-| test.go:29:20:29:26 | selection of a : slice type | test.go:29:13:29:30 | type conversion |
-| test.go:31:20:31:26 | selection of c : subBindMe | test.go:31:13:31:29 | type conversion |
 | test.go:36:20:36:42 | call to Cookie : string | test.go:36:13:36:43 | type conversion |
 | test.go:41:20:41:31 | call to Data : map type | test.go:41:13:41:52 | type conversion |
 | test.go:46:20:46:43 | call to GetData : basic interface type | test.go:46:13:46:53 | type conversion |
@@ -30,18 +26,7 @@ edges
 | test.go:202:18:202:33 | selection of Form : Values | test.go:203:14:203:28 | type conversion |
 | test.go:217:2:217:34 | ... := ...[0] : File | test.go:220:14:220:20 | content |
 | test.go:217:2:217:34 | ... := ...[1] : pointer type | test.go:218:14:218:32 | type conversion |
-| test.go:217:2:217:34 | ... := ...[1] : pointer type | test.go:218:21:218:22 | implicit dereference : FileHeader |
-| test.go:218:21:218:22 | implicit dereference : FileHeader | test.go:218:14:218:32 | type conversion |
-| test.go:218:21:218:22 | implicit dereference : FileHeader | test.go:218:21:218:22 | implicit dereference : FileHeader |
 | test.go:222:2:222:40 | ... := ...[0] : slice type | test.go:223:14:223:38 | type conversion |
-| test.go:222:2:222:40 | ... := ...[0] : slice type | test.go:223:21:223:28 | implicit dereference : FileHeader |
-| test.go:222:2:222:40 | ... := ...[0] : slice type | test.go:223:21:223:28 | index expression : pointer type |
-| test.go:223:21:223:28 | implicit dereference : FileHeader | test.go:223:14:223:38 | type conversion |
-| test.go:223:21:223:28 | implicit dereference : FileHeader | test.go:223:21:223:28 | implicit dereference : FileHeader |
-| test.go:223:21:223:28 | implicit dereference : FileHeader | test.go:223:21:223:28 | index expression : pointer type |
-| test.go:223:21:223:28 | index expression : pointer type | test.go:223:14:223:38 | type conversion |
-| test.go:223:21:223:28 | index expression : pointer type | test.go:223:21:223:28 | implicit dereference : FileHeader |
-| test.go:223:21:223:28 | index expression : pointer type | test.go:223:21:223:28 | index expression : pointer type |
 | test.go:225:7:225:28 | call to GetString : string | test.go:226:14:226:22 | type conversion |
 | test.go:228:8:228:35 | call to GetStrings : slice type | test.go:229:14:229:26 | type conversion |
 | test.go:231:9:231:17 | call to Input : Values | test.go:232:14:232:27 | type conversion |
@@ -50,104 +35,26 @@ edges
 | test.go:253:23:253:44 | call to GetCookie : string | test.go:253:16:253:45 | type conversion |
 | test.go:264:62:264:83 | call to GetCookie : string | test.go:264:55:264:84 | type conversion |
 | test.go:269:2:269:40 | ... := ...[0] : slice type | test.go:277:21:277:61 | call to GetDisplayString |
-| test.go:269:2:269:40 | ... := ...[0] : slice type | test.go:277:44:277:51 | implicit dereference : FileHeader |
-| test.go:269:2:269:40 | ... := ...[0] : slice type | test.go:277:44:277:51 | index expression : pointer type |
-| test.go:269:2:269:40 | ... := ...[0] : slice type | test.go:278:21:278:53 | call to SliceChunk : slice type |
-| test.go:269:2:269:40 | ... := ...[0] : slice type | test.go:278:21:278:56 | index expression : slice type |
-| test.go:269:2:269:40 | ... := ...[0] : slice type | test.go:278:21:278:83 | implicit dereference : FileHeader |
 | test.go:269:2:269:40 | ... := ...[0] : slice type | test.go:278:21:278:92 | selection of Filename |
-| test.go:269:2:269:40 | ... := ...[0] : slice type | test.go:279:21:279:60 | call to SliceDiff : slice type |
-| test.go:269:2:269:40 | ... := ...[0] : slice type | test.go:279:21:279:87 | implicit dereference : FileHeader |
 | test.go:269:2:269:40 | ... := ...[0] : slice type | test.go:279:21:279:96 | selection of Filename |
-| test.go:269:2:269:40 | ... := ...[0] : slice type | test.go:284:3:286:44 | call to SliceFilter : slice type |
-| test.go:269:2:269:40 | ... := ...[0] : slice type | test.go:284:3:286:71 | implicit dereference : FileHeader |
 | test.go:269:2:269:40 | ... := ...[0] : slice type | test.go:284:3:286:80 | selection of Filename |
-| test.go:269:2:269:40 | ... := ...[0] : slice type | test.go:287:21:287:65 | call to SliceIntersect : slice type |
-| test.go:269:2:269:40 | ... := ...[0] : slice type | test.go:287:21:287:92 | implicit dereference : FileHeader |
 | test.go:269:2:269:40 | ... := ...[0] : slice type | test.go:287:21:287:101 | selection of Filename |
-| test.go:269:2:269:40 | ... := ...[0] : slice type | test.go:288:21:288:65 | call to SliceIntersect : slice type |
-| test.go:269:2:269:40 | ... := ...[0] : slice type | test.go:288:21:288:92 | implicit dereference : FileHeader |
 | test.go:269:2:269:40 | ... := ...[0] : slice type | test.go:288:21:288:101 | selection of Filename |
-| test.go:269:2:269:40 | ... := ...[0] : slice type | test.go:289:21:289:61 | call to SliceMerge : slice type |
-| test.go:269:2:269:40 | ... := ...[0] : slice type | test.go:289:21:289:88 | implicit dereference : FileHeader |
 | test.go:269:2:269:40 | ... := ...[0] : slice type | test.go:289:21:289:97 | selection of Filename |
-| test.go:269:2:269:40 | ... := ...[0] : slice type | test.go:290:21:290:61 | call to SliceMerge : slice type |
-| test.go:269:2:269:40 | ... := ...[0] : slice type | test.go:290:21:290:88 | implicit dereference : FileHeader |
 | test.go:269:2:269:40 | ... := ...[0] : slice type | test.go:290:21:290:97 | selection of Filename |
-| test.go:269:2:269:40 | ... := ...[0] : slice type | test.go:291:21:291:66 | call to SlicePad : slice type |
-| test.go:269:2:269:40 | ... := ...[0] : slice type | test.go:291:21:291:93 | implicit dereference : FileHeader |
 | test.go:269:2:269:40 | ... := ...[0] : slice type | test.go:291:21:291:102 | selection of Filename |
-| test.go:269:2:269:40 | ... := ...[0] : slice type | test.go:292:21:292:66 | call to SlicePad : slice type |
-| test.go:269:2:269:40 | ... := ...[0] : slice type | test.go:292:21:292:93 | implicit dereference : FileHeader |
 | test.go:269:2:269:40 | ... := ...[0] : slice type | test.go:292:21:292:102 | selection of Filename |
-| test.go:269:2:269:40 | ... := ...[0] : slice type | test.go:293:21:293:73 | implicit dereference : FileHeader |
 | test.go:269:2:269:40 | ... := ...[0] : slice type | test.go:293:21:293:82 | selection of Filename |
-| test.go:269:2:269:40 | ... := ...[0] : slice type | test.go:295:21:295:97 | call to SliceReduce : slice type |
-| test.go:269:2:269:40 | ... := ...[0] : slice type | test.go:295:21:295:124 | implicit dereference : FileHeader |
 | test.go:269:2:269:40 | ... := ...[0] : slice type | test.go:295:21:295:133 | selection of Filename |
-| test.go:269:2:269:40 | ... := ...[0] : slice type | test.go:296:21:296:52 | call to SliceShuffle : slice type |
-| test.go:269:2:269:40 | ... := ...[0] : slice type | test.go:296:21:296:79 | implicit dereference : FileHeader |
 | test.go:269:2:269:40 | ... := ...[0] : slice type | test.go:296:21:296:88 | selection of Filename |
-| test.go:269:2:269:40 | ... := ...[0] : slice type | test.go:297:21:297:51 | call to SliceUnique : slice type |
-| test.go:269:2:269:40 | ... := ...[0] : slice type | test.go:297:21:297:78 | implicit dereference : FileHeader |
 | test.go:269:2:269:40 | ... := ...[0] : slice type | test.go:297:21:297:87 | selection of Filename |
-| test.go:277:44:277:51 | implicit dereference : FileHeader | test.go:277:21:277:61 | call to GetDisplayString |
-| test.go:277:44:277:51 | implicit dereference : FileHeader | test.go:277:44:277:51 | implicit dereference : FileHeader |
-| test.go:277:44:277:51 | implicit dereference : FileHeader | test.go:277:44:277:51 | index expression : pointer type |
-| test.go:277:44:277:51 | index expression : pointer type | test.go:277:21:277:61 | call to GetDisplayString |
-| test.go:277:44:277:51 | index expression : pointer type | test.go:277:44:277:51 | implicit dereference : FileHeader |
-| test.go:277:44:277:51 | index expression : pointer type | test.go:277:44:277:51 | index expression : pointer type |
-| test.go:278:21:278:53 | call to SliceChunk : slice type | test.go:278:21:278:56 | index expression : slice type |
-| test.go:278:21:278:53 | call to SliceChunk : slice type | test.go:278:21:278:83 | implicit dereference : FileHeader |
-| test.go:278:21:278:53 | call to SliceChunk : slice type | test.go:278:21:278:92 | selection of Filename |
-| test.go:278:21:278:56 | index expression : slice type | test.go:278:21:278:83 | implicit dereference : FileHeader |
-| test.go:278:21:278:56 | index expression : slice type | test.go:278:21:278:92 | selection of Filename |
-| test.go:278:21:278:83 | implicit dereference : FileHeader | test.go:278:21:278:92 | selection of Filename |
-| test.go:279:21:279:60 | call to SliceDiff : slice type | test.go:279:21:279:87 | implicit dereference : FileHeader |
-| test.go:279:21:279:60 | call to SliceDiff : slice type | test.go:279:21:279:96 | selection of Filename |
-| test.go:279:21:279:87 | implicit dereference : FileHeader | test.go:279:21:279:96 | selection of Filename |
-| test.go:284:3:286:44 | call to SliceFilter : slice type | test.go:284:3:286:71 | implicit dereference : FileHeader |
-| test.go:284:3:286:44 | call to SliceFilter : slice type | test.go:284:3:286:80 | selection of Filename |
-| test.go:284:3:286:71 | implicit dereference : FileHeader | test.go:284:3:286:80 | selection of Filename |
-| test.go:287:21:287:65 | call to SliceIntersect : slice type | test.go:287:21:287:92 | implicit dereference : FileHeader |
-| test.go:287:21:287:65 | call to SliceIntersect : slice type | test.go:287:21:287:101 | selection of Filename |
-| test.go:287:21:287:92 | implicit dereference : FileHeader | test.go:287:21:287:101 | selection of Filename |
-| test.go:288:21:288:65 | call to SliceIntersect : slice type | test.go:288:21:288:92 | implicit dereference : FileHeader |
-| test.go:288:21:288:65 | call to SliceIntersect : slice type | test.go:288:21:288:101 | selection of Filename |
-| test.go:288:21:288:92 | implicit dereference : FileHeader | test.go:288:21:288:101 | selection of Filename |
-| test.go:289:21:289:61 | call to SliceMerge : slice type | test.go:289:21:289:88 | implicit dereference : FileHeader |
-| test.go:289:21:289:61 | call to SliceMerge : slice type | test.go:289:21:289:97 | selection of Filename |
-| test.go:289:21:289:88 | implicit dereference : FileHeader | test.go:289:21:289:97 | selection of Filename |
-| test.go:290:21:290:61 | call to SliceMerge : slice type | test.go:290:21:290:88 | implicit dereference : FileHeader |
-| test.go:290:21:290:61 | call to SliceMerge : slice type | test.go:290:21:290:97 | selection of Filename |
-| test.go:290:21:290:88 | implicit dereference : FileHeader | test.go:290:21:290:97 | selection of Filename |
-| test.go:291:21:291:66 | call to SlicePad : slice type | test.go:291:21:291:93 | implicit dereference : FileHeader |
-| test.go:291:21:291:66 | call to SlicePad : slice type | test.go:291:21:291:102 | selection of Filename |
-| test.go:291:21:291:93 | implicit dereference : FileHeader | test.go:291:21:291:102 | selection of Filename |
-| test.go:292:21:292:66 | call to SlicePad : slice type | test.go:292:21:292:93 | implicit dereference : FileHeader |
-| test.go:292:21:292:66 | call to SlicePad : slice type | test.go:292:21:292:102 | selection of Filename |
-| test.go:292:21:292:93 | implicit dereference : FileHeader | test.go:292:21:292:102 | selection of Filename |
-| test.go:293:21:293:73 | implicit dereference : FileHeader | test.go:293:21:293:82 | selection of Filename |
-| test.go:295:21:295:97 | call to SliceReduce : slice type | test.go:295:21:295:124 | implicit dereference : FileHeader |
-| test.go:295:21:295:97 | call to SliceReduce : slice type | test.go:295:21:295:133 | selection of Filename |
-| test.go:295:21:295:124 | implicit dereference : FileHeader | test.go:295:21:295:133 | selection of Filename |
-| test.go:296:21:296:52 | call to SliceShuffle : slice type | test.go:296:21:296:79 | implicit dereference : FileHeader |
-| test.go:296:21:296:52 | call to SliceShuffle : slice type | test.go:296:21:296:88 | selection of Filename |
-| test.go:296:21:296:79 | implicit dereference : FileHeader | test.go:296:21:296:88 | selection of Filename |
-| test.go:297:21:297:51 | call to SliceUnique : slice type | test.go:297:21:297:78 | implicit dereference : FileHeader |
-| test.go:297:21:297:51 | call to SliceUnique : slice type | test.go:297:21:297:87 | selection of Filename |
-| test.go:297:21:297:78 | implicit dereference : FileHeader | test.go:297:21:297:87 | selection of Filename |
 | test.go:303:15:303:36 | call to GetString : string | test.go:305:21:305:48 | type assertion |
-| test.go:303:15:303:36 | call to GetString : string | test.go:306:21:306:32 | call to Items : map type |
 | test.go:303:15:303:36 | call to GetString : string | test.go:306:21:306:52 | type assertion |
-| test.go:306:21:306:32 | call to Items : map type | test.go:306:21:306:52 | type assertion |
 nodes
 | test.go:27:6:27:10 | definition of bound : bindMe | semmle.label | definition of bound : bindMe |
 | test.go:29:13:29:30 | type conversion | semmle.label | type conversion |
-| test.go:29:20:29:26 | selection of a : slice type | semmle.label | selection of a : slice type |
 | test.go:30:13:30:27 | type conversion | semmle.label | type conversion |
 | test.go:31:13:31:29 | type conversion | semmle.label | type conversion |
-| test.go:31:20:31:26 | selection of c : subBindMe | semmle.label | selection of c : subBindMe |
 | test.go:36:13:36:43 | type conversion | semmle.label | type conversion |
 | test.go:36:20:36:42 | call to Cookie : string | semmle.label | call to Cookie : string |
 | test.go:41:13:41:52 | type conversion | semmle.label | type conversion |
@@ -191,12 +98,9 @@ nodes
 | test.go:217:2:217:34 | ... := ...[0] : File | semmle.label | ... := ...[0] : File |
 | test.go:217:2:217:34 | ... := ...[1] : pointer type | semmle.label | ... := ...[1] : pointer type |
 | test.go:218:14:218:32 | type conversion | semmle.label | type conversion |
-| test.go:218:21:218:22 | implicit dereference : FileHeader | semmle.label | implicit dereference : FileHeader |
 | test.go:220:14:220:20 | content | semmle.label | content |
 | test.go:222:2:222:40 | ... := ...[0] : slice type | semmle.label | ... := ...[0] : slice type |
 | test.go:223:14:223:38 | type conversion | semmle.label | type conversion |
-| test.go:223:21:223:28 | implicit dereference : FileHeader | semmle.label | implicit dereference : FileHeader |
-| test.go:223:21:223:28 | index expression : pointer type | semmle.label | index expression : pointer type |
 | test.go:225:7:225:28 | call to GetString : string | semmle.label | call to GetString : string |
 | test.go:226:14:226:22 | type conversion | semmle.label | type conversion |
 | test.go:228:8:228:35 | call to GetStrings : slice type | semmle.label | call to GetStrings : slice type |
@@ -215,50 +119,21 @@ nodes
 | test.go:264:62:264:83 | call to GetCookie : string | semmle.label | call to GetCookie : string |
 | test.go:269:2:269:40 | ... := ...[0] : slice type | semmle.label | ... := ...[0] : slice type |
 | test.go:277:21:277:61 | call to GetDisplayString | semmle.label | call to GetDisplayString |
-| test.go:277:44:277:51 | implicit dereference : FileHeader | semmle.label | implicit dereference : FileHeader |
-| test.go:277:44:277:51 | index expression : pointer type | semmle.label | index expression : pointer type |
-| test.go:278:21:278:53 | call to SliceChunk : slice type | semmle.label | call to SliceChunk : slice type |
-| test.go:278:21:278:56 | index expression : slice type | semmle.label | index expression : slice type |
-| test.go:278:21:278:83 | implicit dereference : FileHeader | semmle.label | implicit dereference : FileHeader |
 | test.go:278:21:278:92 | selection of Filename | semmle.label | selection of Filename |
-| test.go:279:21:279:60 | call to SliceDiff : slice type | semmle.label | call to SliceDiff : slice type |
-| test.go:279:21:279:87 | implicit dereference : FileHeader | semmle.label | implicit dereference : FileHeader |
 | test.go:279:21:279:96 | selection of Filename | semmle.label | selection of Filename |
-| test.go:284:3:286:44 | call to SliceFilter : slice type | semmle.label | call to SliceFilter : slice type |
-| test.go:284:3:286:71 | implicit dereference : FileHeader | semmle.label | implicit dereference : FileHeader |
 | test.go:284:3:286:80 | selection of Filename | semmle.label | selection of Filename |
-| test.go:287:21:287:65 | call to SliceIntersect : slice type | semmle.label | call to SliceIntersect : slice type |
-| test.go:287:21:287:92 | implicit dereference : FileHeader | semmle.label | implicit dereference : FileHeader |
 | test.go:287:21:287:101 | selection of Filename | semmle.label | selection of Filename |
-| test.go:288:21:288:65 | call to SliceIntersect : slice type | semmle.label | call to SliceIntersect : slice type |
-| test.go:288:21:288:92 | implicit dereference : FileHeader | semmle.label | implicit dereference : FileHeader |
 | test.go:288:21:288:101 | selection of Filename | semmle.label | selection of Filename |
-| test.go:289:21:289:61 | call to SliceMerge : slice type | semmle.label | call to SliceMerge : slice type |
-| test.go:289:21:289:88 | implicit dereference : FileHeader | semmle.label | implicit dereference : FileHeader |
 | test.go:289:21:289:97 | selection of Filename | semmle.label | selection of Filename |
-| test.go:290:21:290:61 | call to SliceMerge : slice type | semmle.label | call to SliceMerge : slice type |
-| test.go:290:21:290:88 | implicit dereference : FileHeader | semmle.label | implicit dereference : FileHeader |
 | test.go:290:21:290:97 | selection of Filename | semmle.label | selection of Filename |
-| test.go:291:21:291:66 | call to SlicePad : slice type | semmle.label | call to SlicePad : slice type |
-| test.go:291:21:291:93 | implicit dereference : FileHeader | semmle.label | implicit dereference : FileHeader |
 | test.go:291:21:291:102 | selection of Filename | semmle.label | selection of Filename |
-| test.go:292:21:292:66 | call to SlicePad : slice type | semmle.label | call to SlicePad : slice type |
-| test.go:292:21:292:93 | implicit dereference : FileHeader | semmle.label | implicit dereference : FileHeader |
 | test.go:292:21:292:102 | selection of Filename | semmle.label | selection of Filename |
-| test.go:293:21:293:73 | implicit dereference : FileHeader | semmle.label | implicit dereference : FileHeader |
 | test.go:293:21:293:82 | selection of Filename | semmle.label | selection of Filename |
-| test.go:295:21:295:97 | call to SliceReduce : slice type | semmle.label | call to SliceReduce : slice type |
-| test.go:295:21:295:124 | implicit dereference : FileHeader | semmle.label | implicit dereference : FileHeader |
 | test.go:295:21:295:133 | selection of Filename | semmle.label | selection of Filename |
-| test.go:296:21:296:52 | call to SliceShuffle : slice type | semmle.label | call to SliceShuffle : slice type |
-| test.go:296:21:296:79 | implicit dereference : FileHeader | semmle.label | implicit dereference : FileHeader |
 | test.go:296:21:296:88 | selection of Filename | semmle.label | selection of Filename |
-| test.go:297:21:297:51 | call to SliceUnique : slice type | semmle.label | call to SliceUnique : slice type |
-| test.go:297:21:297:78 | implicit dereference : FileHeader | semmle.label | implicit dereference : FileHeader |
 | test.go:297:21:297:87 | selection of Filename | semmle.label | selection of Filename |
 | test.go:303:15:303:36 | call to GetString : string | semmle.label | call to GetString : string |
 | test.go:305:21:305:48 | type assertion | semmle.label | type assertion |
-| test.go:306:21:306:32 | call to Items : map type | semmle.label | call to Items : map type |
 | test.go:306:21:306:52 | type assertion | semmle.label | type assertion |
 subpaths
 #select
diff --git a/go/ql/test/library-tests/semmle/go/frameworks/BeegoOrm/StoredXss.expected b/go/ql/test/library-tests/semmle/go/frameworks/BeegoOrm/StoredXss.expected
index e0d6b678335..502de21a22e 100644
--- a/go/ql/test/library-tests/semmle/go/frameworks/BeegoOrm/StoredXss.expected
+++ b/go/ql/test/library-tests/semmle/go/frameworks/BeegoOrm/StoredXss.expected
@@ -1,11 +1,6 @@
 edges
 | test.go:77:13:77:16 | &... : pointer type | test.go:78:13:78:29 | type conversion |
 | test.go:77:13:77:16 | &... : pointer type | test.go:79:13:79:43 | type conversion |
-| test.go:77:13:77:16 | &... : pointer type | test.go:79:20:79:33 | selection of substructs : slice type |
-| test.go:77:13:77:16 | &... : pointer type | test.go:79:20:79:36 | index expression : SubStruct |
-| test.go:79:20:79:33 | selection of substructs : slice type | test.go:79:13:79:43 | type conversion |
-| test.go:79:20:79:33 | selection of substructs : slice type | test.go:79:20:79:36 | index expression : SubStruct |
-| test.go:79:20:79:36 | index expression : SubStruct | test.go:79:13:79:43 | type conversion |
 | test.go:82:22:82:26 | &... : pointer type | test.go:83:13:83:30 | type conversion |
 | test.go:86:21:86:25 | &... : pointer type | test.go:87:13:87:30 | type conversion |
 | test.go:92:20:92:36 | call to Value : string | test.go:92:13:92:37 | type conversion |
@@ -18,14 +13,6 @@ edges
 | test.go:99:20:99:40 | call to RawValue : basic interface type | test.go:99:13:99:50 | type conversion |
 | test.go:100:20:100:38 | call to String : string | test.go:100:13:100:39 | type conversion |
 | test.go:106:9:106:13 | &... : pointer type | test.go:107:13:107:33 | type conversion |
-| test.go:106:9:106:13 | &... : pointer type | test.go:107:20:107:26 | implicit dereference : MyStruct |
-| test.go:106:9:106:13 | &... : pointer type | test.go:107:20:107:26 | index expression : pointer type |
-| test.go:107:20:107:26 | implicit dereference : MyStruct | test.go:107:13:107:33 | type conversion |
-| test.go:107:20:107:26 | implicit dereference : MyStruct | test.go:107:20:107:26 | implicit dereference : MyStruct |
-| test.go:107:20:107:26 | implicit dereference : MyStruct | test.go:107:20:107:26 | index expression : pointer type |
-| test.go:107:20:107:26 | index expression : pointer type | test.go:107:13:107:33 | type conversion |
-| test.go:107:20:107:26 | index expression : pointer type | test.go:107:20:107:26 | implicit dereference : MyStruct |
-| test.go:107:20:107:26 | index expression : pointer type | test.go:107:20:107:26 | index expression : pointer type |
 | test.go:110:9:110:12 | &... : pointer type | test.go:111:13:111:29 | type conversion |
 | test.go:114:12:114:19 | &... : pointer type | test.go:115:13:115:48 | type conversion |
 | test.go:118:16:118:24 | &... : pointer type | test.go:119:13:119:43 | type conversion |
@@ -43,8 +30,6 @@ nodes
 | test.go:77:13:77:16 | &... : pointer type | semmle.label | &... : pointer type |
 | test.go:78:13:78:29 | type conversion | semmle.label | type conversion |
 | test.go:79:13:79:43 | type conversion | semmle.label | type conversion |
-| test.go:79:20:79:33 | selection of substructs : slice type | semmle.label | selection of substructs : slice type |
-| test.go:79:20:79:36 | index expression : SubStruct | semmle.label | index expression : SubStruct |
 | test.go:82:22:82:26 | &... : pointer type | semmle.label | &... : pointer type |
 | test.go:83:13:83:30 | type conversion | semmle.label | type conversion |
 | test.go:86:21:86:25 | &... : pointer type | semmle.label | &... : pointer type |
@@ -69,8 +54,6 @@ nodes
 | test.go:100:20:100:38 | call to String : string | semmle.label | call to String : string |
 | test.go:106:9:106:13 | &... : pointer type | semmle.label | &... : pointer type |
 | test.go:107:13:107:33 | type conversion | semmle.label | type conversion |
-| test.go:107:20:107:26 | implicit dereference : MyStruct | semmle.label | implicit dereference : MyStruct |
-| test.go:107:20:107:26 | index expression : pointer type | semmle.label | index expression : pointer type |
 | test.go:110:9:110:12 | &... : pointer type | semmle.label | &... : pointer type |
 | test.go:111:13:111:29 | type conversion | semmle.label | type conversion |
 | test.go:114:12:114:19 | &... : pointer type | semmle.label | &... : pointer type |
diff --git a/go/ql/test/library-tests/semmle/go/frameworks/Chi/ReflectedXss.expected b/go/ql/test/library-tests/semmle/go/frameworks/Chi/ReflectedXss.expected
index d934df79582..3c2812ee51a 100644
--- a/go/ql/test/library-tests/semmle/go/frameworks/Chi/ReflectedXss.expected
+++ b/go/ql/test/library-tests/semmle/go/frameworks/Chi/ReflectedXss.expected
@@ -1,9 +1,4 @@
 edges
-| test.go:13:12:13:16 | implicit dereference : URL | test.go:13:12:13:16 | implicit dereference : URL |
-| test.go:13:12:13:16 | implicit dereference : URL | test.go:13:12:13:16 | selection of URL : pointer type |
-| test.go:13:12:13:16 | implicit dereference : URL | test.go:13:12:13:21 | selection of Path : string |
-| test.go:13:12:13:16 | selection of URL : pointer type | test.go:13:12:13:16 | implicit dereference : URL |
-| test.go:13:12:13:16 | selection of URL : pointer type | test.go:13:12:13:16 | selection of URL : pointer type |
 | test.go:13:12:13:16 | selection of URL : pointer type | test.go:13:12:13:21 | selection of Path : string |
 | test.go:13:12:13:21 | selection of Path : string | test.go:21:18:21:23 | hidden : string |
 | test.go:21:18:21:23 | hidden : string | test.go:21:11:21:24 | type conversion |
@@ -11,7 +6,6 @@ edges
 | test.go:23:18:23:60 | call to URLParamFromCtx : string | test.go:23:11:23:61 | type conversion |
 | test.go:24:18:24:71 | call to URLParam : string | test.go:24:11:24:72 | type conversion |
 nodes
-| test.go:13:12:13:16 | implicit dereference : URL | semmle.label | implicit dereference : URL |
 | test.go:13:12:13:16 | selection of URL : pointer type | semmle.label | selection of URL : pointer type |
 | test.go:13:12:13:21 | selection of Path : string | semmle.label | selection of Path : string |
 | test.go:21:11:21:24 | type conversion | semmle.label | type conversion |
diff --git a/go/ql/test/library-tests/semmle/go/frameworks/Echo/OpenRedirect.expected b/go/ql/test/library-tests/semmle/go/frameworks/Echo/OpenRedirect.expected
index e29c066c9b5..a51104dfa47 100644
--- a/go/ql/test/library-tests/semmle/go/frameworks/Echo/OpenRedirect.expected
+++ b/go/ql/test/library-tests/semmle/go/frameworks/Echo/OpenRedirect.expected
@@ -1,8 +1,6 @@
 edges
 | test.go:170:11:170:32 | call to Param : string | test.go:171:20:171:24 | param |
 | test.go:176:11:176:32 | call to Param : string | test.go:180:20:180:28 | ...+... |
-| test.go:188:10:188:26 | selection of URL : pointer type | test.go:188:10:188:26 | selection of URL : pointer type |
-| test.go:188:10:188:26 | selection of URL : pointer type | test.go:188:10:188:26 | selection of URL : pointer type |
 | test.go:188:10:188:26 | selection of URL : pointer type | test.go:191:21:191:32 | call to String |
 | test.go:188:10:188:26 | selection of URL : pointer type | test.go:191:21:191:32 | call to String |
 nodes
diff --git a/go/ql/test/library-tests/semmle/go/frameworks/Echo/ReflectedXss.expected b/go/ql/test/library-tests/semmle/go/frameworks/Echo/ReflectedXss.expected
index f6d15897938..1e7a86c70cd 100644
--- a/go/ql/test/library-tests/semmle/go/frameworks/Echo/ReflectedXss.expected
+++ b/go/ql/test/library-tests/semmle/go/frameworks/Echo/ReflectedXss.expected
@@ -7,41 +7,10 @@ edges
 | test.go:43:9:43:34 | call to FormValue : string | test.go:44:16:44:18 | val |
 | test.go:49:2:49:30 | ... := ...[0] : Values | test.go:50:16:50:37 | index expression |
 | test.go:55:2:55:46 | ... := ...[0] : pointer type | test.go:59:20:59:25 | buffer |
-| test.go:64:2:64:31 | ... := ...[0] : pointer type | test.go:65:16:65:19 | implicit dereference : Form |
-| test.go:64:2:64:31 | ... := ...[0] : pointer type | test.go:65:16:65:25 | selection of Value : map type |
-| test.go:64:2:64:31 | ... := ...[0] : pointer type | test.go:65:16:65:38 | index expression : slice type |
 | test.go:64:2:64:31 | ... := ...[0] : pointer type | test.go:65:16:65:41 | index expression |
-| test.go:65:16:65:19 | implicit dereference : Form | test.go:65:16:65:19 | implicit dereference : Form |
-| test.go:65:16:65:19 | implicit dereference : Form | test.go:65:16:65:25 | selection of Value : map type |
-| test.go:65:16:65:19 | implicit dereference : Form | test.go:65:16:65:38 | index expression : slice type |
-| test.go:65:16:65:19 | implicit dereference : Form | test.go:65:16:65:41 | index expression |
-| test.go:65:16:65:25 | selection of Value : map type | test.go:65:16:65:38 | index expression : slice type |
-| test.go:65:16:65:25 | selection of Value : map type | test.go:65:16:65:41 | index expression |
-| test.go:65:16:65:38 | index expression : slice type | test.go:65:16:65:41 | index expression |
-| test.go:70:2:70:31 | ... := ...[0] : pointer type | test.go:71:16:71:19 | implicit dereference : Form |
-| test.go:70:2:70:31 | ... := ...[0] : pointer type | test.go:71:16:71:24 | selection of File : map type |
-| test.go:70:2:70:31 | ... := ...[0] : pointer type | test.go:71:16:71:40 | index expression : slice type |
 | test.go:70:2:70:31 | ... := ...[0] : pointer type | test.go:75:20:75:25 | buffer |
-| test.go:71:16:71:19 | implicit dereference : Form | test.go:71:16:71:19 | implicit dereference : Form |
-| test.go:71:16:71:19 | implicit dereference : Form | test.go:71:16:71:24 | selection of File : map type |
-| test.go:71:16:71:19 | implicit dereference : Form | test.go:71:16:71:40 | index expression : slice type |
-| test.go:71:16:71:19 | implicit dereference : Form | test.go:75:20:75:25 | buffer |
-| test.go:71:16:71:24 | selection of File : map type | test.go:71:16:71:40 | index expression : slice type |
-| test.go:71:16:71:24 | selection of File : map type | test.go:75:20:75:25 | buffer |
-| test.go:71:16:71:40 | index expression : slice type | test.go:75:20:75:25 | buffer |
-| test.go:80:2:80:32 | ... := ...[0] : pointer type | test.go:81:16:81:18 | implicit dereference : Cookie |
 | test.go:80:2:80:32 | ... := ...[0] : pointer type | test.go:81:16:81:24 | selection of Value |
-| test.go:81:16:81:18 | implicit dereference : Cookie | test.go:81:16:81:18 | implicit dereference : Cookie |
-| test.go:81:16:81:18 | implicit dereference : Cookie | test.go:81:16:81:24 | selection of Value |
-| test.go:86:13:86:25 | call to Cookies : slice type | test.go:87:16:87:25 | implicit dereference : Cookie |
-| test.go:86:13:86:25 | call to Cookies : slice type | test.go:87:16:87:25 | index expression : pointer type |
 | test.go:86:13:86:25 | call to Cookies : slice type | test.go:87:16:87:31 | selection of Value |
-| test.go:87:16:87:25 | implicit dereference : Cookie | test.go:87:16:87:25 | implicit dereference : Cookie |
-| test.go:87:16:87:25 | implicit dereference : Cookie | test.go:87:16:87:25 | index expression : pointer type |
-| test.go:87:16:87:25 | implicit dereference : Cookie | test.go:87:16:87:31 | selection of Value |
-| test.go:87:16:87:25 | index expression : pointer type | test.go:87:16:87:25 | implicit dereference : Cookie |
-| test.go:87:16:87:25 | index expression : pointer type | test.go:87:16:87:25 | index expression : pointer type |
-| test.go:87:16:87:25 | index expression : pointer type | test.go:87:16:87:31 | selection of Value |
 | test.go:97:11:97:15 | &... : pointer type | test.go:98:16:98:21 | selection of s |
 | test.go:111:21:111:42 | call to Param : string | test.go:112:16:112:42 | type assertion |
 | test.go:122:11:122:32 | call to Param : string | test.go:123:16:123:20 | param |
@@ -67,21 +36,12 @@ nodes
 | test.go:55:2:55:46 | ... := ...[0] : pointer type | semmle.label | ... := ...[0] : pointer type |
 | test.go:59:20:59:25 | buffer | semmle.label | buffer |
 | test.go:64:2:64:31 | ... := ...[0] : pointer type | semmle.label | ... := ...[0] : pointer type |
-| test.go:65:16:65:19 | implicit dereference : Form | semmle.label | implicit dereference : Form |
-| test.go:65:16:65:25 | selection of Value : map type | semmle.label | selection of Value : map type |
-| test.go:65:16:65:38 | index expression : slice type | semmle.label | index expression : slice type |
 | test.go:65:16:65:41 | index expression | semmle.label | index expression |
 | test.go:70:2:70:31 | ... := ...[0] : pointer type | semmle.label | ... := ...[0] : pointer type |
-| test.go:71:16:71:19 | implicit dereference : Form | semmle.label | implicit dereference : Form |
-| test.go:71:16:71:24 | selection of File : map type | semmle.label | selection of File : map type |
-| test.go:71:16:71:40 | index expression : slice type | semmle.label | index expression : slice type |
 | test.go:75:20:75:25 | buffer | semmle.label | buffer |
 | test.go:80:2:80:32 | ... := ...[0] : pointer type | semmle.label | ... := ...[0] : pointer type |
-| test.go:81:16:81:18 | implicit dereference : Cookie | semmle.label | implicit dereference : Cookie |
 | test.go:81:16:81:24 | selection of Value | semmle.label | selection of Value |
 | test.go:86:13:86:25 | call to Cookies : slice type | semmle.label | call to Cookies : slice type |
-| test.go:87:16:87:25 | implicit dereference : Cookie | semmle.label | implicit dereference : Cookie |
-| test.go:87:16:87:25 | index expression : pointer type | semmle.label | index expression : pointer type |
 | test.go:87:16:87:31 | selection of Value | semmle.label | selection of Value |
 | test.go:97:11:97:15 | &... : pointer type | semmle.label | &... : pointer type |
 | test.go:98:16:98:21 | selection of s | semmle.label | selection of s |
diff --git a/go/ql/test/library-tests/semmle/go/frameworks/Revel/OpenRedirect.expected b/go/ql/test/library-tests/semmle/go/frameworks/Revel/OpenRedirect.expected
index a1e94fbd058..f0411268af8 100644
--- a/go/ql/test/library-tests/semmle/go/frameworks/Revel/OpenRedirect.expected
+++ b/go/ql/test/library-tests/semmle/go/frameworks/Revel/OpenRedirect.expected
@@ -1,12 +1,6 @@
 edges
-| EndToEnd.go:94:20:94:27 | implicit dereference : Params | EndToEnd.go:94:20:94:27 | implicit dereference : Params |
-| EndToEnd.go:94:20:94:27 | implicit dereference : Params | EndToEnd.go:94:20:94:27 | selection of Params : pointer type |
-| EndToEnd.go:94:20:94:27 | implicit dereference : Params | EndToEnd.go:94:20:94:49 | call to Get |
-| EndToEnd.go:94:20:94:27 | selection of Params : pointer type | EndToEnd.go:94:20:94:27 | implicit dereference : Params |
-| EndToEnd.go:94:20:94:27 | selection of Params : pointer type | EndToEnd.go:94:20:94:27 | selection of Params : pointer type |
 | EndToEnd.go:94:20:94:27 | selection of Params : pointer type | EndToEnd.go:94:20:94:49 | call to Get |
 nodes
-| EndToEnd.go:94:20:94:27 | implicit dereference : Params | semmle.label | implicit dereference : Params |
 | EndToEnd.go:94:20:94:27 | selection of Params : pointer type | semmle.label | selection of Params : pointer type |
 | EndToEnd.go:94:20:94:49 | call to Get | semmle.label | call to Get |
 subpaths
diff --git a/go/ql/test/library-tests/semmle/go/frameworks/Revel/ReflectedXss.expected b/go/ql/test/library-tests/semmle/go/frameworks/Revel/ReflectedXss.expected
index 7f1596dbbf8..8d8c3bc3360 100644
--- a/go/ql/test/library-tests/semmle/go/frameworks/Revel/ReflectedXss.expected
+++ b/go/ql/test/library-tests/semmle/go/frameworks/Revel/ReflectedXss.expected
@@ -1,48 +1,18 @@
 edges
-| EndToEnd.go:36:18:36:25 | implicit dereference : Params | EndToEnd.go:36:18:36:25 | implicit dereference : Params |
-| EndToEnd.go:36:18:36:25 | implicit dereference : Params | EndToEnd.go:36:18:36:25 | selection of Params : pointer type |
-| EndToEnd.go:36:18:36:25 | implicit dereference : Params | EndToEnd.go:37:24:37:26 | buf |
-| EndToEnd.go:36:18:36:25 | selection of Params : pointer type | EndToEnd.go:36:18:36:25 | implicit dereference : Params |
-| EndToEnd.go:36:18:36:25 | selection of Params : pointer type | EndToEnd.go:36:18:36:25 | selection of Params : pointer type |
 | EndToEnd.go:36:18:36:25 | selection of Params : pointer type | EndToEnd.go:37:24:37:26 | buf |
-| EndToEnd.go:69:22:69:29 | implicit dereference : Params | EndToEnd.go:69:22:69:29 | implicit dereference : Params |
-| EndToEnd.go:69:22:69:29 | implicit dereference : Params | EndToEnd.go:69:22:69:29 | selection of Params : pointer type |
-| EndToEnd.go:69:22:69:29 | implicit dereference : Params | EndToEnd.go:69:22:69:51 | call to Get |
-| EndToEnd.go:69:22:69:29 | selection of Params : pointer type | EndToEnd.go:69:22:69:29 | implicit dereference : Params |
-| EndToEnd.go:69:22:69:29 | selection of Params : pointer type | EndToEnd.go:69:22:69:29 | selection of Params : pointer type |
 | EndToEnd.go:69:22:69:29 | selection of Params : pointer type | EndToEnd.go:69:22:69:51 | call to Get |
-| Revel.go:70:22:70:29 | implicit dereference : Params | Revel.go:70:22:70:29 | implicit dereference : Params |
-| Revel.go:70:22:70:29 | implicit dereference : Params | Revel.go:70:22:70:29 | selection of Params : pointer type |
-| Revel.go:70:22:70:29 | implicit dereference : Params | Revel.go:70:22:70:35 | selection of Query |
-| Revel.go:70:22:70:29 | selection of Params : pointer type | Revel.go:70:22:70:29 | implicit dereference : Params |
-| Revel.go:70:22:70:29 | selection of Params : pointer type | Revel.go:70:22:70:29 | selection of Params : pointer type |
 | Revel.go:70:22:70:29 | selection of Params : pointer type | Revel.go:70:22:70:35 | selection of Query |
-| examples/booking/app/init.go:36:44:36:48 | implicit dereference : URL | examples/booking/app/init.go:36:44:36:48 | implicit dereference : URL |
-| examples/booking/app/init.go:36:44:36:48 | implicit dereference : URL | examples/booking/app/init.go:36:44:36:48 | selection of URL : pointer type |
-| examples/booking/app/init.go:36:44:36:48 | implicit dereference : URL | examples/booking/app/init.go:36:44:36:53 | selection of Path |
-| examples/booking/app/init.go:36:44:36:48 | selection of URL : pointer type | examples/booking/app/init.go:36:44:36:48 | implicit dereference : URL |
-| examples/booking/app/init.go:36:44:36:48 | selection of URL : pointer type | examples/booking/app/init.go:36:44:36:48 | selection of URL : pointer type |
 | examples/booking/app/init.go:36:44:36:48 | selection of URL : pointer type | examples/booking/app/init.go:36:44:36:53 | selection of Path |
-| examples/booking/app/init.go:40:49:40:53 | implicit dereference : URL | examples/booking/app/init.go:40:49:40:53 | implicit dereference : URL |
-| examples/booking/app/init.go:40:49:40:53 | implicit dereference : URL | examples/booking/app/init.go:40:49:40:53 | selection of URL : pointer type |
-| examples/booking/app/init.go:40:49:40:53 | implicit dereference : URL | examples/booking/app/init.go:40:49:40:58 | selection of Path |
-| examples/booking/app/init.go:40:49:40:53 | selection of URL : pointer type | examples/booking/app/init.go:40:49:40:53 | implicit dereference : URL |
-| examples/booking/app/init.go:40:49:40:53 | selection of URL : pointer type | examples/booking/app/init.go:40:49:40:53 | selection of URL : pointer type |
 | examples/booking/app/init.go:40:49:40:53 | selection of URL : pointer type | examples/booking/app/init.go:40:49:40:58 | selection of Path |
 nodes
-| EndToEnd.go:36:18:36:25 | implicit dereference : Params | semmle.label | implicit dereference : Params |
 | EndToEnd.go:36:18:36:25 | selection of Params : pointer type | semmle.label | selection of Params : pointer type |
 | EndToEnd.go:37:24:37:26 | buf | semmle.label | buf |
-| EndToEnd.go:69:22:69:29 | implicit dereference : Params | semmle.label | implicit dereference : Params |
 | EndToEnd.go:69:22:69:29 | selection of Params : pointer type | semmle.label | selection of Params : pointer type |
 | EndToEnd.go:69:22:69:51 | call to Get | semmle.label | call to Get |
-| Revel.go:70:22:70:29 | implicit dereference : Params | semmle.label | implicit dereference : Params |
 | Revel.go:70:22:70:29 | selection of Params : pointer type | semmle.label | selection of Params : pointer type |
 | Revel.go:70:22:70:35 | selection of Query | semmle.label | selection of Query |
-| examples/booking/app/init.go:36:44:36:48 | implicit dereference : URL | semmle.label | implicit dereference : URL |
 | examples/booking/app/init.go:36:44:36:48 | selection of URL : pointer type | semmle.label | selection of URL : pointer type |
 | examples/booking/app/init.go:36:44:36:53 | selection of Path | semmle.label | selection of Path |
-| examples/booking/app/init.go:40:49:40:53 | implicit dereference : URL | semmle.label | implicit dereference : URL |
 | examples/booking/app/init.go:40:49:40:53 | selection of URL : pointer type | semmle.label | selection of URL : pointer type |
 | examples/booking/app/init.go:40:49:40:58 | selection of Path | semmle.label | selection of Path |
 subpaths
diff --git a/go/ql/test/library-tests/semmle/go/frameworks/Revel/TaintedPath.expected b/go/ql/test/library-tests/semmle/go/frameworks/Revel/TaintedPath.expected
index fc24c4a73ca..97e912afcc9 100644
--- a/go/ql/test/library-tests/semmle/go/frameworks/Revel/TaintedPath.expected
+++ b/go/ql/test/library-tests/semmle/go/frameworks/Revel/TaintedPath.expected
@@ -1,21 +1,9 @@
 edges
-| EndToEnd.go:58:18:58:25 | implicit dereference : Params | EndToEnd.go:58:18:58:25 | implicit dereference : Params |
-| EndToEnd.go:58:18:58:25 | implicit dereference : Params | EndToEnd.go:58:18:58:25 | selection of Params : pointer type |
-| EndToEnd.go:58:18:58:25 | implicit dereference : Params | EndToEnd.go:58:18:58:47 | call to Get |
-| EndToEnd.go:58:18:58:25 | selection of Params : pointer type | EndToEnd.go:58:18:58:25 | implicit dereference : Params |
-| EndToEnd.go:58:18:58:25 | selection of Params : pointer type | EndToEnd.go:58:18:58:25 | selection of Params : pointer type |
 | EndToEnd.go:58:18:58:25 | selection of Params : pointer type | EndToEnd.go:58:18:58:47 | call to Get |
-| EndToEnd.go:64:26:64:33 | implicit dereference : Params | EndToEnd.go:64:26:64:33 | implicit dereference : Params |
-| EndToEnd.go:64:26:64:33 | implicit dereference : Params | EndToEnd.go:64:26:64:33 | selection of Params : pointer type |
-| EndToEnd.go:64:26:64:33 | implicit dereference : Params | EndToEnd.go:64:26:64:55 | call to Get |
-| EndToEnd.go:64:26:64:33 | selection of Params : pointer type | EndToEnd.go:64:26:64:33 | implicit dereference : Params |
-| EndToEnd.go:64:26:64:33 | selection of Params : pointer type | EndToEnd.go:64:26:64:33 | selection of Params : pointer type |
 | EndToEnd.go:64:26:64:33 | selection of Params : pointer type | EndToEnd.go:64:26:64:55 | call to Get |
 nodes
-| EndToEnd.go:58:18:58:25 | implicit dereference : Params | semmle.label | implicit dereference : Params |
 | EndToEnd.go:58:18:58:25 | selection of Params : pointer type | semmle.label | selection of Params : pointer type |
 | EndToEnd.go:58:18:58:47 | call to Get | semmle.label | call to Get |
-| EndToEnd.go:64:26:64:33 | implicit dereference : Params | semmle.label | implicit dereference : Params |
 | EndToEnd.go:64:26:64:33 | selection of Params : pointer type | semmle.label | selection of Params : pointer type |
 | EndToEnd.go:64:26:64:55 | call to Get | semmle.label | call to Get |
 subpaths
diff --git a/go/ql/test/library-tests/semmle/go/frameworks/XNetHtml/ReflectedXss.expected b/go/ql/test/library-tests/semmle/go/frameworks/XNetHtml/ReflectedXss.expected
index 8a4bf0b48ed..ca8c2655274 100644
--- a/go/ql/test/library-tests/semmle/go/frameworks/XNetHtml/ReflectedXss.expected
+++ b/go/ql/test/library-tests/semmle/go/frameworks/XNetHtml/ReflectedXss.expected
@@ -1,61 +1,26 @@
 edges
 | test.go:10:2:10:42 | ... := ...[0] : pointer type | test.go:14:15:14:55 | type conversion |
-| test.go:10:2:10:42 | ... := ...[0] : pointer type | test.go:14:42:14:47 | implicit dereference : Cookie |
-| test.go:14:42:14:47 | implicit dereference : Cookie | test.go:14:15:14:55 | type conversion |
-| test.go:14:42:14:47 | implicit dereference : Cookie | test.go:14:42:14:47 | implicit dereference : Cookie |
 | test.go:16:24:16:35 | selection of Body : ReadCloser | test.go:17:15:17:31 | type conversion |
-| test.go:16:24:16:35 | selection of Body : ReadCloser | test.go:17:22:17:25 | implicit dereference : Node |
 | test.go:16:24:16:35 | selection of Body : ReadCloser | test.go:28:22:28:25 | node |
-| test.go:17:22:17:25 | implicit dereference : Node | test.go:17:15:17:31 | type conversion |
-| test.go:17:22:17:25 | implicit dereference : Node | test.go:17:22:17:25 | implicit dereference : Node |
-| test.go:17:22:17:25 | implicit dereference : Node | test.go:28:22:28:25 | node |
 | test.go:19:36:19:47 | selection of Body : ReadCloser | test.go:20:15:20:32 | type conversion |
-| test.go:19:36:19:47 | selection of Body : ReadCloser | test.go:20:22:20:26 | implicit dereference : Node |
-| test.go:20:22:20:26 | implicit dereference : Node | test.go:20:15:20:32 | type conversion |
-| test.go:20:22:20:26 | implicit dereference : Node | test.go:20:22:20:26 | implicit dereference : Node |
 | test.go:22:33:22:44 | selection of Body : ReadCloser | test.go:23:15:23:35 | type conversion |
-| test.go:22:33:22:44 | selection of Body : ReadCloser | test.go:23:22:23:29 | implicit dereference : Node |
-| test.go:22:33:22:44 | selection of Body : ReadCloser | test.go:23:22:23:29 | index expression : pointer type |
-| test.go:23:22:23:29 | implicit dereference : Node | test.go:23:15:23:35 | type conversion |
-| test.go:23:22:23:29 | implicit dereference : Node | test.go:23:22:23:29 | implicit dereference : Node |
-| test.go:23:22:23:29 | implicit dereference : Node | test.go:23:22:23:29 | index expression : pointer type |
-| test.go:23:22:23:29 | index expression : pointer type | test.go:23:15:23:35 | type conversion |
-| test.go:23:22:23:29 | index expression : pointer type | test.go:23:22:23:29 | implicit dereference : Node |
-| test.go:23:22:23:29 | index expression : pointer type | test.go:23:22:23:29 | index expression : pointer type |
 | test.go:25:45:25:56 | selection of Body : ReadCloser | test.go:26:15:26:36 | type conversion |
-| test.go:25:45:25:56 | selection of Body : ReadCloser | test.go:26:22:26:30 | implicit dereference : Node |
-| test.go:25:45:25:56 | selection of Body : ReadCloser | test.go:26:22:26:30 | index expression : pointer type |
-| test.go:26:22:26:30 | implicit dereference : Node | test.go:26:15:26:36 | type conversion |
-| test.go:26:22:26:30 | implicit dereference : Node | test.go:26:22:26:30 | implicit dereference : Node |
-| test.go:26:22:26:30 | implicit dereference : Node | test.go:26:22:26:30 | index expression : pointer type |
-| test.go:26:22:26:30 | index expression : pointer type | test.go:26:15:26:36 | type conversion |
-| test.go:26:22:26:30 | index expression : pointer type | test.go:26:22:26:30 | implicit dereference : Node |
-| test.go:26:22:26:30 | index expression : pointer type | test.go:26:22:26:30 | index expression : pointer type |
 | test.go:30:33:30:44 | selection of Body : ReadCloser | test.go:31:15:31:34 | call to Buffered |
 | test.go:30:33:30:44 | selection of Body : ReadCloser | test.go:32:15:32:29 | call to Raw |
 | test.go:30:33:30:44 | selection of Body : ReadCloser | test.go:34:15:34:19 | value |
 | test.go:30:33:30:44 | selection of Body : ReadCloser | test.go:35:15:35:30 | call to Text |
 | test.go:30:33:30:44 | selection of Body : ReadCloser | test.go:36:15:36:44 | type conversion |
-| test.go:30:33:30:44 | selection of Body : ReadCloser | test.go:36:22:36:38 | call to Token : Token |
-| test.go:36:22:36:38 | call to Token : Token | test.go:36:15:36:44 | type conversion |
 nodes
 | test.go:10:2:10:42 | ... := ...[0] : pointer type | semmle.label | ... := ...[0] : pointer type |
 | test.go:14:15:14:55 | type conversion | semmle.label | type conversion |
-| test.go:14:42:14:47 | implicit dereference : Cookie | semmle.label | implicit dereference : Cookie |
 | test.go:16:24:16:35 | selection of Body : ReadCloser | semmle.label | selection of Body : ReadCloser |
 | test.go:17:15:17:31 | type conversion | semmle.label | type conversion |
-| test.go:17:22:17:25 | implicit dereference : Node | semmle.label | implicit dereference : Node |
 | test.go:19:36:19:47 | selection of Body : ReadCloser | semmle.label | selection of Body : ReadCloser |
 | test.go:20:15:20:32 | type conversion | semmle.label | type conversion |
-| test.go:20:22:20:26 | implicit dereference : Node | semmle.label | implicit dereference : Node |
 | test.go:22:33:22:44 | selection of Body : ReadCloser | semmle.label | selection of Body : ReadCloser |
 | test.go:23:15:23:35 | type conversion | semmle.label | type conversion |
-| test.go:23:22:23:29 | implicit dereference : Node | semmle.label | implicit dereference : Node |
-| test.go:23:22:23:29 | index expression : pointer type | semmle.label | index expression : pointer type |
 | test.go:25:45:25:56 | selection of Body : ReadCloser | semmle.label | selection of Body : ReadCloser |
 | test.go:26:15:26:36 | type conversion | semmle.label | type conversion |
-| test.go:26:22:26:30 | implicit dereference : Node | semmle.label | implicit dereference : Node |
-| test.go:26:22:26:30 | index expression : pointer type | semmle.label | index expression : pointer type |
 | test.go:28:22:28:25 | node | semmle.label | node |
 | test.go:30:33:30:44 | selection of Body : ReadCloser | semmle.label | selection of Body : ReadCloser |
 | test.go:31:15:31:34 | call to Buffered | semmle.label | call to Buffered |
@@ -63,7 +28,6 @@ nodes
 | test.go:34:15:34:19 | value | semmle.label | value |
 | test.go:35:15:35:30 | call to Text | semmle.label | call to Text |
 | test.go:36:15:36:44 | type conversion | semmle.label | type conversion |
-| test.go:36:22:36:38 | call to Token : Token | semmle.label | call to Token : Token |
 subpaths
 #select
 | test.go:14:15:14:55 | type conversion | test.go:10:2:10:42 | ... := ...[0] : pointer type | test.go:14:15:14:55 | type conversion | Cross-site scripting vulnerability due to $@. | test.go:10:2:10:42 | ... := ...[0] | user-provided value | test.go:0:0:0:0 | test.go |  |
diff --git a/go/ql/test/query-tests/Security/CWE-022/TaintedPath.expected b/go/ql/test/query-tests/Security/CWE-022/TaintedPath.expected
index acbcbcdeb31..568ba70ff81 100644
--- a/go/ql/test/query-tests/Security/CWE-022/TaintedPath.expected
+++ b/go/ql/test/query-tests/Security/CWE-022/TaintedPath.expected
@@ -1,16 +1,12 @@
 edges
 | TaintedPath.go:13:18:13:22 | selection of URL : pointer type | TaintedPath.go:16:29:16:40 | tainted_path |
 | TaintedPath.go:13:18:13:22 | selection of URL : pointer type | TaintedPath.go:20:28:20:69 | call to Join |
-| tst.go:14:2:14:39 | ... := ...[1] : pointer type | tst.go:17:41:17:47 | implicit dereference : FileHeader |
 | tst.go:14:2:14:39 | ... := ...[1] : pointer type | tst.go:17:41:17:56 | selection of Filename |
-| tst.go:17:41:17:47 | implicit dereference : FileHeader | tst.go:17:41:17:47 | implicit dereference : FileHeader |
-| tst.go:17:41:17:47 | implicit dereference : FileHeader | tst.go:17:41:17:56 | selection of Filename |
 nodes
 | TaintedPath.go:13:18:13:22 | selection of URL : pointer type | semmle.label | selection of URL : pointer type |
 | TaintedPath.go:16:29:16:40 | tainted_path | semmle.label | tainted_path |
 | TaintedPath.go:20:28:20:69 | call to Join | semmle.label | call to Join |
 | tst.go:14:2:14:39 | ... := ...[1] : pointer type | semmle.label | ... := ...[1] : pointer type |
-| tst.go:17:41:17:47 | implicit dereference : FileHeader | semmle.label | implicit dereference : FileHeader |
 | tst.go:17:41:17:56 | selection of Filename | semmle.label | selection of Filename |
 subpaths
 #select
diff --git a/go/ql/test/query-tests/Security/CWE-022/ZipSlip.expected b/go/ql/test/query-tests/Security/CWE-022/ZipSlip.expected
index 35714558cc5..2a58d80fe26 100644
--- a/go/ql/test/query-tests/Security/CWE-022/ZipSlip.expected
+++ b/go/ql/test/query-tests/Security/CWE-022/ZipSlip.expected
@@ -1,55 +1,23 @@
 edges
 | UnsafeUnzipSymlinkGood.go:52:24:52:32 | definition of candidate : string | UnsafeUnzipSymlinkGood.go:61:31:61:62 | call to Join |
-| UnsafeUnzipSymlinkGood.go:72:3:72:25 | ... := ...[0] : pointer type | UnsafeUnzipSymlinkGood.go:76:24:76:29 | implicit dereference : Header |
 | UnsafeUnzipSymlinkGood.go:72:3:72:25 | ... := ...[0] : pointer type | UnsafeUnzipSymlinkGood.go:76:24:76:38 | selection of Linkname : string |
-| UnsafeUnzipSymlinkGood.go:72:3:72:25 | ... := ...[0] : pointer type | UnsafeUnzipSymlinkGood.go:76:70:76:75 | implicit dereference : Header |
 | UnsafeUnzipSymlinkGood.go:72:3:72:25 | ... := ...[0] : pointer type | UnsafeUnzipSymlinkGood.go:76:70:76:80 | selection of Name : string |
-| UnsafeUnzipSymlinkGood.go:76:24:76:29 | implicit dereference : Header | UnsafeUnzipSymlinkGood.go:76:24:76:29 | implicit dereference : Header |
-| UnsafeUnzipSymlinkGood.go:76:24:76:29 | implicit dereference : Header | UnsafeUnzipSymlinkGood.go:76:24:76:38 | selection of Linkname : string |
-| UnsafeUnzipSymlinkGood.go:76:24:76:29 | implicit dereference : Header | UnsafeUnzipSymlinkGood.go:76:70:76:75 | implicit dereference : Header |
-| UnsafeUnzipSymlinkGood.go:76:24:76:29 | implicit dereference : Header | UnsafeUnzipSymlinkGood.go:76:70:76:80 | selection of Name : string |
 | UnsafeUnzipSymlinkGood.go:76:24:76:38 | selection of Linkname : string | UnsafeUnzipSymlinkGood.go:52:24:52:32 | definition of candidate : string |
-| UnsafeUnzipSymlinkGood.go:76:70:76:75 | implicit dereference : Header | UnsafeUnzipSymlinkGood.go:76:24:76:29 | implicit dereference : Header |
-| UnsafeUnzipSymlinkGood.go:76:70:76:75 | implicit dereference : Header | UnsafeUnzipSymlinkGood.go:76:24:76:38 | selection of Linkname : string |
-| UnsafeUnzipSymlinkGood.go:76:70:76:75 | implicit dereference : Header | UnsafeUnzipSymlinkGood.go:76:70:76:75 | implicit dereference : Header |
-| UnsafeUnzipSymlinkGood.go:76:70:76:75 | implicit dereference : Header | UnsafeUnzipSymlinkGood.go:76:70:76:80 | selection of Name : string |
 | UnsafeUnzipSymlinkGood.go:76:70:76:80 | selection of Name : string | UnsafeUnzipSymlinkGood.go:52:24:52:32 | definition of candidate : string |
-| ZipSlip.go:11:2:15:2 | range statement[1] : pointer type | ZipSlip.go:12:24:12:24 | implicit dereference : File |
-| ZipSlip.go:11:2:15:2 | range statement[1] : pointer type | ZipSlip.go:12:24:12:24 | implicit read of field FileHeader : FileHeader |
 | ZipSlip.go:11:2:15:2 | range statement[1] : pointer type | ZipSlip.go:14:20:14:20 | p |
-| ZipSlip.go:12:24:12:24 | implicit dereference : File | ZipSlip.go:12:24:12:24 | implicit dereference : File |
-| ZipSlip.go:12:24:12:24 | implicit dereference : File | ZipSlip.go:12:24:12:24 | implicit read of field FileHeader : FileHeader |
-| ZipSlip.go:12:24:12:24 | implicit dereference : File | ZipSlip.go:14:20:14:20 | p |
-| ZipSlip.go:12:24:12:24 | implicit read of field FileHeader : FileHeader | ZipSlip.go:14:20:14:20 | p |
 | tarslip.go:15:2:15:30 | ... := ...[0] : pointer type | tarslip.go:16:14:16:34 | call to Dir |
-| tarslip.go:15:2:15:30 | ... := ...[0] : pointer type | tarslip.go:16:23:16:28 | implicit dereference : Header |
-| tarslip.go:16:23:16:28 | implicit dereference : Header | tarslip.go:16:14:16:34 | call to Dir |
-| tarslip.go:16:23:16:28 | implicit dereference : Header | tarslip.go:16:23:16:28 | implicit dereference : Header |
-| tst.go:23:2:43:2 | range statement[1] : pointer type | tst.go:24:11:24:11 | implicit dereference : File |
-| tst.go:23:2:43:2 | range statement[1] : pointer type | tst.go:24:11:24:11 | implicit read of field FileHeader : FileHeader |
 | tst.go:23:2:43:2 | range statement[1] : pointer type | tst.go:29:20:29:23 | path |
-| tst.go:24:11:24:11 | implicit dereference : File | tst.go:24:11:24:11 | implicit dereference : File |
-| tst.go:24:11:24:11 | implicit dereference : File | tst.go:24:11:24:11 | implicit read of field FileHeader : FileHeader |
-| tst.go:24:11:24:11 | implicit dereference : File | tst.go:29:20:29:23 | path |
-| tst.go:24:11:24:11 | implicit read of field FileHeader : FileHeader | tst.go:29:20:29:23 | path |
 nodes
 | UnsafeUnzipSymlinkGood.go:52:24:52:32 | definition of candidate : string | semmle.label | definition of candidate : string |
 | UnsafeUnzipSymlinkGood.go:61:31:61:62 | call to Join | semmle.label | call to Join |
 | UnsafeUnzipSymlinkGood.go:72:3:72:25 | ... := ...[0] : pointer type | semmle.label | ... := ...[0] : pointer type |
-| UnsafeUnzipSymlinkGood.go:76:24:76:29 | implicit dereference : Header | semmle.label | implicit dereference : Header |
 | UnsafeUnzipSymlinkGood.go:76:24:76:38 | selection of Linkname : string | semmle.label | selection of Linkname : string |
-| UnsafeUnzipSymlinkGood.go:76:70:76:75 | implicit dereference : Header | semmle.label | implicit dereference : Header |
 | UnsafeUnzipSymlinkGood.go:76:70:76:80 | selection of Name : string | semmle.label | selection of Name : string |
 | ZipSlip.go:11:2:15:2 | range statement[1] : pointer type | semmle.label | range statement[1] : pointer type |
-| ZipSlip.go:12:24:12:24 | implicit dereference : File | semmle.label | implicit dereference : File |
-| ZipSlip.go:12:24:12:24 | implicit read of field FileHeader : FileHeader | semmle.label | implicit read of field FileHeader : FileHeader |
 | ZipSlip.go:14:20:14:20 | p | semmle.label | p |
 | tarslip.go:15:2:15:30 | ... := ...[0] : pointer type | semmle.label | ... := ...[0] : pointer type |
 | tarslip.go:16:14:16:34 | call to Dir | semmle.label | call to Dir |
-| tarslip.go:16:23:16:28 | implicit dereference : Header | semmle.label | implicit dereference : Header |
 | tst.go:23:2:43:2 | range statement[1] : pointer type | semmle.label | range statement[1] : pointer type |
-| tst.go:24:11:24:11 | implicit dereference : File | semmle.label | implicit dereference : File |
-| tst.go:24:11:24:11 | implicit read of field FileHeader : FileHeader | semmle.label | implicit read of field FileHeader : FileHeader |
 | tst.go:29:20:29:23 | path | semmle.label | path |
 subpaths
 #select
diff --git a/go/ql/test/query-tests/Security/CWE-079/ReflectedXss.expected b/go/ql/test/query-tests/Security/CWE-079/ReflectedXss.expected
index a71e27e63ac..a5a5028447a 100644
--- a/go/ql/test/query-tests/Security/CWE-079/ReflectedXss.expected
+++ b/go/ql/test/query-tests/Security/CWE-079/ReflectedXss.expected
@@ -9,9 +9,6 @@ edges
 | reflectedxsstest.go:27:2:27:38 | ... := ...[0] : pointer type | reflectedxsstest.go:28:10:28:57 | type conversion |
 | reflectedxsstest.go:31:2:31:44 | ... := ...[0] : File | reflectedxsstest.go:33:10:33:57 | type conversion |
 | reflectedxsstest.go:31:2:31:44 | ... := ...[1] : pointer type | reflectedxsstest.go:34:10:34:62 | type conversion |
-| reflectedxsstest.go:31:2:31:44 | ... := ...[1] : pointer type | reflectedxsstest.go:34:46:34:51 | implicit dereference : FileHeader |
-| reflectedxsstest.go:34:46:34:51 | implicit dereference : FileHeader | reflectedxsstest.go:34:10:34:62 | type conversion |
-| reflectedxsstest.go:34:46:34:51 | implicit dereference : FileHeader | reflectedxsstest.go:34:46:34:51 | implicit dereference : FileHeader |
 | reflectedxsstest.go:38:2:38:35 | ... := ...[0] : pointer type | reflectedxsstest.go:44:10:44:55 | type conversion |
 | reflectedxsstest.go:38:2:38:35 | ... := ...[0] : pointer type | reflectedxsstest.go:45:10:45:18 | byteSlice |
 | reflectedxsstest.go:51:14:51:18 | selection of URL : pointer type | reflectedxsstest.go:54:11:54:21 | type conversion |
@@ -44,7 +41,6 @@ nodes
 | reflectedxsstest.go:31:2:31:44 | ... := ...[1] : pointer type | semmle.label | ... := ...[1] : pointer type |
 | reflectedxsstest.go:33:10:33:57 | type conversion | semmle.label | type conversion |
 | reflectedxsstest.go:34:10:34:62 | type conversion | semmle.label | type conversion |
-| reflectedxsstest.go:34:46:34:51 | implicit dereference : FileHeader | semmle.label | implicit dereference : FileHeader |
 | reflectedxsstest.go:38:2:38:35 | ... := ...[0] : pointer type | semmle.label | ... := ...[0] : pointer type |
 | reflectedxsstest.go:44:10:44:55 | type conversion | semmle.label | type conversion |
 | reflectedxsstest.go:45:10:45:18 | byteSlice | semmle.label | byteSlice |
diff --git a/go/ql/test/query-tests/Security/CWE-327/UnsafeTLS.expected b/go/ql/test/query-tests/Security/CWE-327/UnsafeTLS.expected
index 6ae0010ec99..78bb9148a09 100644
--- a/go/ql/test/query-tests/Security/CWE-327/UnsafeTLS.expected
+++ b/go/ql/test/query-tests/Security/CWE-327/UnsafeTLS.expected
@@ -15,22 +15,8 @@ edges
 | UnsafeTLS.go:313:5:313:45 | selection of TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256 : uint16 | UnsafeTLS.go:312:18:314:4 | slice literal |
 | UnsafeTLS.go:329:53:329:93 | selection of TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256 : uint16 | UnsafeTLS.go:329:25:329:94 | call to append |
 | UnsafeTLS.go:334:13:334:38 | call to InsecureCipherSuites : slice type | UnsafeTLS.go:336:26:336:58 | call to append |
-| UnsafeTLS.go:334:13:334:38 | call to InsecureCipherSuites : slice type | UnsafeTLS.go:336:54:336:54 | implicit dereference : CipherSuite |
-| UnsafeTLS.go:336:54:336:54 | implicit dereference : CipherSuite | UnsafeTLS.go:336:26:336:58 | call to append |
-| UnsafeTLS.go:336:54:336:54 | implicit dereference : CipherSuite | UnsafeTLS.go:336:54:336:54 | implicit dereference : CipherSuite |
-| UnsafeTLS.go:342:13:342:38 | call to InsecureCipherSuites : slice type | UnsafeTLS.go:344:40:344:40 | implicit dereference : CipherSuite |
 | UnsafeTLS.go:342:13:342:38 | call to InsecureCipherSuites : slice type | UnsafeTLS.go:346:25:346:36 | cipherSuites |
-| UnsafeTLS.go:344:40:344:40 | implicit dereference : CipherSuite | UnsafeTLS.go:344:40:344:40 | implicit dereference : CipherSuite |
-| UnsafeTLS.go:344:40:344:40 | implicit dereference : CipherSuite | UnsafeTLS.go:346:25:346:36 | cipherSuites |
-| UnsafeTLS.go:351:13:351:38 | call to InsecureCipherSuites : slice type | UnsafeTLS.go:353:40:353:48 | implicit dereference : CipherSuite |
-| UnsafeTLS.go:351:13:351:38 | call to InsecureCipherSuites : slice type | UnsafeTLS.go:353:40:353:48 | index expression : pointer type |
 | UnsafeTLS.go:351:13:351:38 | call to InsecureCipherSuites : slice type | UnsafeTLS.go:355:25:355:36 | cipherSuites |
-| UnsafeTLS.go:353:40:353:48 | implicit dereference : CipherSuite | UnsafeTLS.go:353:40:353:48 | implicit dereference : CipherSuite |
-| UnsafeTLS.go:353:40:353:48 | implicit dereference : CipherSuite | UnsafeTLS.go:353:40:353:48 | index expression : pointer type |
-| UnsafeTLS.go:353:40:353:48 | implicit dereference : CipherSuite | UnsafeTLS.go:355:25:355:36 | cipherSuites |
-| UnsafeTLS.go:353:40:353:48 | index expression : pointer type | UnsafeTLS.go:353:40:353:48 | implicit dereference : CipherSuite |
-| UnsafeTLS.go:353:40:353:48 | index expression : pointer type | UnsafeTLS.go:353:40:353:48 | index expression : pointer type |
-| UnsafeTLS.go:353:40:353:48 | index expression : pointer type | UnsafeTLS.go:355:25:355:36 | cipherSuites |
 | UnsafeTLS.go:363:5:363:47 | selection of TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 : uint16 | UnsafeTLS.go:362:18:364:4 | slice literal |
 | UnsafeTLS.go:371:5:371:47 | selection of TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 : uint16 | UnsafeTLS.go:370:18:372:4 | slice literal |
 | UnsafeTLS.go:379:5:379:47 | selection of TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 : uint16 | UnsafeTLS.go:378:18:380:4 | slice literal |
@@ -108,13 +94,9 @@ nodes
 | UnsafeTLS.go:329:53:329:93 | selection of TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256 : uint16 | semmle.label | selection of TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256 : uint16 |
 | UnsafeTLS.go:334:13:334:38 | call to InsecureCipherSuites : slice type | semmle.label | call to InsecureCipherSuites : slice type |
 | UnsafeTLS.go:336:26:336:58 | call to append | semmle.label | call to append |
-| UnsafeTLS.go:336:54:336:54 | implicit dereference : CipherSuite | semmle.label | implicit dereference : CipherSuite |
 | UnsafeTLS.go:342:13:342:38 | call to InsecureCipherSuites : slice type | semmle.label | call to InsecureCipherSuites : slice type |
-| UnsafeTLS.go:344:40:344:40 | implicit dereference : CipherSuite | semmle.label | implicit dereference : CipherSuite |
 | UnsafeTLS.go:346:25:346:36 | cipherSuites | semmle.label | cipherSuites |
 | UnsafeTLS.go:351:13:351:38 | call to InsecureCipherSuites : slice type | semmle.label | call to InsecureCipherSuites : slice type |
-| UnsafeTLS.go:353:40:353:48 | implicit dereference : CipherSuite | semmle.label | implicit dereference : CipherSuite |
-| UnsafeTLS.go:353:40:353:48 | index expression : pointer type | semmle.label | index expression : pointer type |
 | UnsafeTLS.go:355:25:355:36 | cipherSuites | semmle.label | cipherSuites |
 | UnsafeTLS.go:362:18:364:4 | slice literal | semmle.label | slice literal |
 | UnsafeTLS.go:363:5:363:47 | selection of TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 : uint16 | semmle.label | selection of TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 : uint16 |
diff --git a/go/ql/test/query-tests/Security/CWE-601/OpenUrlRedirect/OpenUrlRedirect.expected b/go/ql/test/query-tests/Security/CWE-601/OpenUrlRedirect/OpenUrlRedirect.expected
index c27f575acc3..7cf22603fb1 100644
--- a/go/ql/test/query-tests/Security/CWE-601/OpenUrlRedirect/OpenUrlRedirect.expected
+++ b/go/ql/test/query-tests/Security/CWE-601/OpenUrlRedirect/OpenUrlRedirect.expected
@@ -47,19 +47,13 @@ edges
 | stdlib.go:113:24:113:28 | selection of URL : pointer type | stdlib.go:113:24:113:37 | call to String |
 | stdlib.go:113:24:113:28 | selection of URL : pointer type | stdlib.go:113:24:113:37 | call to String |
 | stdlib.go:146:13:146:18 | selection of Form : Values | stdlib.go:152:23:152:28 | target |
-| stdlib.go:159:11:159:15 | selection of URL : pointer type | stdlib.go:159:11:159:15 | selection of URL : pointer type |
-| stdlib.go:159:11:159:15 | selection of URL : pointer type | stdlib.go:159:11:159:15 | selection of URL : pointer type |
 | stdlib.go:159:11:159:15 | selection of URL : pointer type | stdlib.go:162:24:162:35 | call to String |
 | stdlib.go:159:11:159:15 | selection of URL : pointer type | stdlib.go:162:24:162:35 | call to String |
 | stdlib.go:173:35:173:39 | selection of URL : pointer type | stdlib.go:173:24:173:52 | ...+... |
 | stdlib.go:173:35:173:39 | selection of URL : pointer type | stdlib.go:173:24:173:52 | ...+... |
 | stdlib.go:182:13:182:33 | call to FormValue : string | stdlib.go:184:23:184:28 | target |
-| stdlib.go:190:36:190:56 | call to FormValue : string | stdlib.go:192:23:192:28 | implicit dereference : URL |
 | stdlib.go:190:36:190:56 | call to FormValue : string | stdlib.go:192:23:192:33 | selection of Path |
 | stdlib.go:190:36:190:56 | call to FormValue : string | stdlib.go:194:23:194:42 | call to EscapedPath |
-| stdlib.go:192:23:192:28 | implicit dereference : URL | stdlib.go:192:23:192:28 | implicit dereference : URL |
-| stdlib.go:192:23:192:28 | implicit dereference : URL | stdlib.go:192:23:192:33 | selection of Path |
-| stdlib.go:192:23:192:28 | implicit dereference : URL | stdlib.go:194:23:194:42 | call to EscapedPath |
 nodes
 | OpenUrlRedirect.go:10:23:10:28 | selection of Form : Values | semmle.label | selection of Form : Values |
 | OpenUrlRedirect.go:10:23:10:42 | call to Get | semmle.label | call to Get |
@@ -114,7 +108,6 @@ nodes
 | stdlib.go:182:13:182:33 | call to FormValue : string | semmle.label | call to FormValue : string |
 | stdlib.go:184:23:184:28 | target | semmle.label | target |
 | stdlib.go:190:36:190:56 | call to FormValue : string | semmle.label | call to FormValue : string |
-| stdlib.go:192:23:192:28 | implicit dereference : URL | semmle.label | implicit dereference : URL |
 | stdlib.go:192:23:192:33 | selection of Path | semmle.label | selection of Path |
 | stdlib.go:194:23:194:42 | call to EscapedPath | semmle.label | call to EscapedPath |
 subpaths

From 166a3688f8ee13933fa636f76c33d813cfb23020 Mon Sep 17 00:00:00 2001
From: Owen Mansel-Chan <owen-mc@github.com>
Date: Wed, 9 Nov 2022 20:49:03 +0000
Subject: [PATCH 0447/1420] Use standard variable names for `hasLocationInfo`

This makes them match the QLDoc and also other implementations of
`hasLocationInfo`.
---
 .../lib/semmle/go/dataflow/internal/DataFlowUtil.qll | 12 ++++++++----
 1 file changed, 8 insertions(+), 4 deletions(-)

diff --git a/go/ql/lib/semmle/go/dataflow/internal/DataFlowUtil.qll b/go/ql/lib/semmle/go/dataflow/internal/DataFlowUtil.qll
index 69ec6aedd3e..b38c3c291bd 100644
--- a/go/ql/lib/semmle/go/dataflow/internal/DataFlowUtil.qll
+++ b/go/ql/lib/semmle/go/dataflow/internal/DataFlowUtil.qll
@@ -161,8 +161,10 @@ class Content extends TContent {
    * For more information, see
    * [Locations](https://codeql.github.com/docs/writing-codeql-queries/providing-locations-in-codeql-queries/).
    */
-  predicate hasLocationInfo(string path, int sl, int sc, int el, int ec) {
-    path = "" and sl = 0 and sc = 0 and el = 0 and ec = 0
+  predicate hasLocationInfo(
+    string filepath, int startline, int startcolumn, int endline, int endcolumn
+  ) {
+    filepath = "" and startline = 0 and startcolumn = 0 and endline = 0 and endcolumn = 0
   }
 }
 
@@ -254,8 +256,10 @@ class ContentSet instanceof Content {
    * For more information, see
    * [Locations](https://codeql.github.com/docs/writing-codeql-queries/providing-locations-in-codeql-queries/).
    */
-  predicate hasLocationInfo(string path, int sl, int sc, int el, int ec) {
-    super.hasLocationInfo(path, sl, sc, el, ec)
+  predicate hasLocationInfo(
+    string filepath, int startline, int startcolumn, int endline, int endcolumn
+  ) {
+    super.hasLocationInfo(filepath, startline, startcolumn, endline, endcolumn)
   }
 }
 

From ab15a190280faa483219c8f730be200a55b8c863 Mon Sep 17 00:00:00 2001
From: Owen Mansel-Chan <owen-mc@github.com>
Date: Tue, 15 Nov 2022 13:36:48 +0000
Subject: [PATCH 0448/1420] Address review comments

---
 go/ql/lib/semmle/go/dataflow/internal/DataFlowPrivate.qll     | 4 +++-
 .../semmle/go/dataflow/internal/FlowSummaryImplSpecific.qll   | 4 +++-
 2 files changed, 6 insertions(+), 2 deletions(-)

diff --git a/go/ql/lib/semmle/go/dataflow/internal/DataFlowPrivate.qll b/go/ql/lib/semmle/go/dataflow/internal/DataFlowPrivate.qll
index e34880f7017..dfc01b6c574 100644
--- a/go/ql/lib/semmle/go/dataflow/internal/DataFlowPrivate.qll
+++ b/go/ql/lib/semmle/go/dataflow/internal/DataFlowPrivate.qll
@@ -192,7 +192,9 @@ predicate clearsContent(Node n, Content c) {
  * Holds if the value that is being tracked is expected to be stored inside content `c`
  * at node `n`.
  */
-predicate expectsContent(Node n, ContentSet c) { none() }
+predicate expectsContent(Node n, ContentSet c) {
+  FlowSummaryImpl::Private::Steps::summaryExpectsContent(n, c)
+}
 
 /** Gets the type of `n` used for type pruning. */
 DataFlowType getNodeType(Node n) {
diff --git a/go/ql/lib/semmle/go/dataflow/internal/FlowSummaryImplSpecific.qll b/go/ql/lib/semmle/go/dataflow/internal/FlowSummaryImplSpecific.qll
index 5b5382a3cb7..2af6cde0d63 100644
--- a/go/ql/lib/semmle/go/dataflow/internal/FlowSummaryImplSpecific.qll
+++ b/go/ql/lib/semmle/go/dataflow/internal/FlowSummaryImplSpecific.qll
@@ -61,7 +61,9 @@ DataFlowType getCallbackReturnType(DataFlowType t, ReturnKind rk) { none() }
  * `input`, output specification `output`, kind `kind`, and a flag `generated`
  * stating whether the summary is autogenerated.
  */
-predicate summaryElement(Callable c, string input, string output, string kind, boolean generated) {
+predicate summaryElement(
+  SummarizedCallableBase c, string input, string output, string kind, boolean generated
+) {
   exists(
     string namespace, string type, boolean subtypes, string name, string signature, string ext
   |

From 4073d776358d86ab40986b136cd347c6205cad3e Mon Sep 17 00:00:00 2001
From: Owen Mansel-Chan <owen-mc@github.com>
Date: Thu, 17 Nov 2022 14:25:23 +0000
Subject: [PATCH 0449/1420] Add change notes

---
 .../change-notes/2022-11-17-allow-implicit-read-signature.md  | 4 ++++
 go/ql/lib/change-notes/2022-11-17-barrierguard-deprecation.md | 4 ++++
 2 files changed, 8 insertions(+)
 create mode 100644 go/ql/lib/change-notes/2022-11-17-allow-implicit-read-signature.md
 create mode 100644 go/ql/lib/change-notes/2022-11-17-barrierguard-deprecation.md

diff --git a/go/ql/lib/change-notes/2022-11-17-allow-implicit-read-signature.md b/go/ql/lib/change-notes/2022-11-17-allow-implicit-read-signature.md
new file mode 100644
index 00000000000..a796e953583
--- /dev/null
+++ b/go/ql/lib/change-notes/2022-11-17-allow-implicit-read-signature.md
@@ -0,0 +1,4 @@
+---
+category: breaking
+---
+The signature of `allowImplicitRead` on `DataFlow::Configuration` and `TaintTracking::Configuration` has changed from `allowImplicitRead(DataFlow::Node node, DataFlow::Content c)` to `allowImplicitRead(DataFlow::Node node, DataFlow::ContentSet c)`.
diff --git a/go/ql/lib/change-notes/2022-11-17-barrierguard-deprecation.md b/go/ql/lib/change-notes/2022-11-17-barrierguard-deprecation.md
new file mode 100644
index 00000000000..2bd95798f89
--- /dev/null
+++ b/go/ql/lib/change-notes/2022-11-17-barrierguard-deprecation.md
@@ -0,0 +1,4 @@
+---
+category: deprecated
+---
+* The `BarrierGuard` class has been deprecated. Such barriers and sanitizers can now instead be created using the new `BarrierGuard` parameterized module.

From 4e88b8453abd2ffd04c7a6d61fe3e86271590367 Mon Sep 17 00:00:00 2001
From: Arthur Baars <aibaars@github.com>
Date: Wed, 16 Nov 2022 13:41:21 +0100
Subject: [PATCH 0450/1420] Ruby: add flow summary for Enumerable#index_with

---
 .../codeql/ruby/frameworks/ActiveSupport.qll  | 16 +++-
 .../ActiveSupportDataFlow.expected            | 81 +++++++++++++++++++
 .../active_support/hash_extensions.rb         | 18 +++++
 3 files changed, 114 insertions(+), 1 deletion(-)

diff --git a/ruby/ql/lib/codeql/ruby/frameworks/ActiveSupport.qll b/ruby/ql/lib/codeql/ruby/frameworks/ActiveSupport.qll
index 7d3286a0a74..48bd1193aaa 100644
--- a/ruby/ql/lib/codeql/ruby/frameworks/ActiveSupport.qll
+++ b/ruby/ql/lib/codeql/ruby/frameworks/ActiveSupport.qll
@@ -294,7 +294,21 @@ module ActiveSupport {
           preservesValue = true
         }
       }
-      // TODO: index_with, pick, pluck (they require Hash dataflow)
+
+      private class IndexWithSummary extends SimpleSummarizedCallable {
+        IndexWithSummary() { this = "index_with" }
+
+        override predicate propagatesFlowExt(string input, string output, boolean preservesValue) {
+          input = "Argument[self].Element[any]" and
+          output = "Argument[block].Parameter[0]" and
+          preservesValue = true
+          or
+          input = ["Argument[0]", "Argument[block].ReturnValue"] and
+          output = "ReturnValue.Element[?]" and
+          preservesValue = true
+        }
+      }
+      // TODO: pick, pluck (they require Hash dataflow)
     }
   }
 
diff --git a/ruby/ql/test/library-tests/frameworks/active_support/ActiveSupportDataFlow.expected b/ruby/ql/test/library-tests/frameworks/active_support/ActiveSupportDataFlow.expected
index 11b6b46ee3e..c2d169d1bb9 100644
--- a/ruby/ql/test/library-tests/frameworks/active_support/ActiveSupportDataFlow.expected
+++ b/ruby/ql/test/library-tests/frameworks/active_support/ActiveSupportDataFlow.expected
@@ -286,6 +286,40 @@ edges
 | hash_extensions.rb:73:10:73:10 | h [element] :  | hash_extensions.rb:73:10:73:16 | ...[...] |
 | hash_extensions.rb:74:10:74:10 | h [element] :  | hash_extensions.rb:74:10:74:16 | ...[...] |
 | hash_extensions.rb:74:10:74:10 | h [element] :  | hash_extensions.rb:74:10:74:16 | ...[...] |
+| hash_extensions.rb:80:15:80:25 | call to source :  | hash_extensions.rb:81:9:81:14 | values [element 0] :  |
+| hash_extensions.rb:80:15:80:25 | call to source :  | hash_extensions.rb:81:9:81:14 | values [element 0] :  |
+| hash_extensions.rb:80:28:80:38 | call to source :  | hash_extensions.rb:81:9:81:14 | values [element 1] :  |
+| hash_extensions.rb:80:28:80:38 | call to source :  | hash_extensions.rb:81:9:81:14 | values [element 1] :  |
+| hash_extensions.rb:80:41:80:51 | call to source :  | hash_extensions.rb:81:9:81:14 | values [element 2] :  |
+| hash_extensions.rb:80:41:80:51 | call to source :  | hash_extensions.rb:81:9:81:14 | values [element 2] :  |
+| hash_extensions.rb:81:9:81:14 | values [element 0] :  | hash_extensions.rb:81:31:81:33 | key :  |
+| hash_extensions.rb:81:9:81:14 | values [element 0] :  | hash_extensions.rb:81:31:81:33 | key :  |
+| hash_extensions.rb:81:9:81:14 | values [element 1] :  | hash_extensions.rb:81:31:81:33 | key :  |
+| hash_extensions.rb:81:9:81:14 | values [element 1] :  | hash_extensions.rb:81:31:81:33 | key :  |
+| hash_extensions.rb:81:9:81:14 | values [element 2] :  | hash_extensions.rb:81:31:81:33 | key :  |
+| hash_extensions.rb:81:9:81:14 | values [element 2] :  | hash_extensions.rb:81:31:81:33 | key :  |
+| hash_extensions.rb:81:9:84:7 | call to index_with [element] :  | hash_extensions.rb:86:10:86:10 | h [element] :  |
+| hash_extensions.rb:81:9:84:7 | call to index_with [element] :  | hash_extensions.rb:86:10:86:10 | h [element] :  |
+| hash_extensions.rb:81:9:84:7 | call to index_with [element] :  | hash_extensions.rb:87:10:87:10 | h [element] :  |
+| hash_extensions.rb:81:9:84:7 | call to index_with [element] :  | hash_extensions.rb:87:10:87:10 | h [element] :  |
+| hash_extensions.rb:81:31:81:33 | key :  | hash_extensions.rb:82:14:82:16 | key |
+| hash_extensions.rb:81:31:81:33 | key :  | hash_extensions.rb:82:14:82:16 | key |
+| hash_extensions.rb:83:9:83:19 | call to source :  | hash_extensions.rb:81:9:84:7 | call to index_with [element] :  |
+| hash_extensions.rb:83:9:83:19 | call to source :  | hash_extensions.rb:81:9:84:7 | call to index_with [element] :  |
+| hash_extensions.rb:86:10:86:10 | h [element] :  | hash_extensions.rb:86:10:86:16 | ...[...] |
+| hash_extensions.rb:86:10:86:10 | h [element] :  | hash_extensions.rb:86:10:86:16 | ...[...] |
+| hash_extensions.rb:87:10:87:10 | h [element] :  | hash_extensions.rb:87:10:87:16 | ...[...] |
+| hash_extensions.rb:87:10:87:10 | h [element] :  | hash_extensions.rb:87:10:87:16 | ...[...] |
+| hash_extensions.rb:89:9:89:38 | call to index_with [element] :  | hash_extensions.rb:91:10:91:10 | j [element] :  |
+| hash_extensions.rb:89:9:89:38 | call to index_with [element] :  | hash_extensions.rb:91:10:91:10 | j [element] :  |
+| hash_extensions.rb:89:9:89:38 | call to index_with [element] :  | hash_extensions.rb:92:10:92:10 | j [element] :  |
+| hash_extensions.rb:89:9:89:38 | call to index_with [element] :  | hash_extensions.rb:92:10:92:10 | j [element] :  |
+| hash_extensions.rb:89:27:89:37 | call to source :  | hash_extensions.rb:89:9:89:38 | call to index_with [element] :  |
+| hash_extensions.rb:89:27:89:37 | call to source :  | hash_extensions.rb:89:9:89:38 | call to index_with [element] :  |
+| hash_extensions.rb:91:10:91:10 | j [element] :  | hash_extensions.rb:91:10:91:16 | ...[...] |
+| hash_extensions.rb:91:10:91:10 | j [element] :  | hash_extensions.rb:91:10:91:16 | ...[...] |
+| hash_extensions.rb:92:10:92:10 | j [element] :  | hash_extensions.rb:92:10:92:16 | ...[...] |
+| hash_extensions.rb:92:10:92:10 | j [element] :  | hash_extensions.rb:92:10:92:16 | ...[...] |
 nodes
 | active_support.rb:10:9:10:18 | call to source :  | semmle.label | call to source :  |
 | active_support.rb:11:10:11:10 | x :  | semmle.label | x :  |
@@ -648,6 +682,46 @@ nodes
 | hash_extensions.rb:74:10:74:10 | h [element] :  | semmle.label | h [element] :  |
 | hash_extensions.rb:74:10:74:16 | ...[...] | semmle.label | ...[...] |
 | hash_extensions.rb:74:10:74:16 | ...[...] | semmle.label | ...[...] |
+| hash_extensions.rb:80:15:80:25 | call to source :  | semmle.label | call to source :  |
+| hash_extensions.rb:80:15:80:25 | call to source :  | semmle.label | call to source :  |
+| hash_extensions.rb:80:28:80:38 | call to source :  | semmle.label | call to source :  |
+| hash_extensions.rb:80:28:80:38 | call to source :  | semmle.label | call to source :  |
+| hash_extensions.rb:80:41:80:51 | call to source :  | semmle.label | call to source :  |
+| hash_extensions.rb:80:41:80:51 | call to source :  | semmle.label | call to source :  |
+| hash_extensions.rb:81:9:81:14 | values [element 0] :  | semmle.label | values [element 0] :  |
+| hash_extensions.rb:81:9:81:14 | values [element 0] :  | semmle.label | values [element 0] :  |
+| hash_extensions.rb:81:9:81:14 | values [element 1] :  | semmle.label | values [element 1] :  |
+| hash_extensions.rb:81:9:81:14 | values [element 1] :  | semmle.label | values [element 1] :  |
+| hash_extensions.rb:81:9:81:14 | values [element 2] :  | semmle.label | values [element 2] :  |
+| hash_extensions.rb:81:9:81:14 | values [element 2] :  | semmle.label | values [element 2] :  |
+| hash_extensions.rb:81:9:84:7 | call to index_with [element] :  | semmle.label | call to index_with [element] :  |
+| hash_extensions.rb:81:9:84:7 | call to index_with [element] :  | semmle.label | call to index_with [element] :  |
+| hash_extensions.rb:81:31:81:33 | key :  | semmle.label | key :  |
+| hash_extensions.rb:81:31:81:33 | key :  | semmle.label | key :  |
+| hash_extensions.rb:82:14:82:16 | key | semmle.label | key |
+| hash_extensions.rb:82:14:82:16 | key | semmle.label | key |
+| hash_extensions.rb:83:9:83:19 | call to source :  | semmle.label | call to source :  |
+| hash_extensions.rb:83:9:83:19 | call to source :  | semmle.label | call to source :  |
+| hash_extensions.rb:86:10:86:10 | h [element] :  | semmle.label | h [element] :  |
+| hash_extensions.rb:86:10:86:10 | h [element] :  | semmle.label | h [element] :  |
+| hash_extensions.rb:86:10:86:16 | ...[...] | semmle.label | ...[...] |
+| hash_extensions.rb:86:10:86:16 | ...[...] | semmle.label | ...[...] |
+| hash_extensions.rb:87:10:87:10 | h [element] :  | semmle.label | h [element] :  |
+| hash_extensions.rb:87:10:87:10 | h [element] :  | semmle.label | h [element] :  |
+| hash_extensions.rb:87:10:87:16 | ...[...] | semmle.label | ...[...] |
+| hash_extensions.rb:87:10:87:16 | ...[...] | semmle.label | ...[...] |
+| hash_extensions.rb:89:9:89:38 | call to index_with [element] :  | semmle.label | call to index_with [element] :  |
+| hash_extensions.rb:89:9:89:38 | call to index_with [element] :  | semmle.label | call to index_with [element] :  |
+| hash_extensions.rb:89:27:89:37 | call to source :  | semmle.label | call to source :  |
+| hash_extensions.rb:89:27:89:37 | call to source :  | semmle.label | call to source :  |
+| hash_extensions.rb:91:10:91:10 | j [element] :  | semmle.label | j [element] :  |
+| hash_extensions.rb:91:10:91:10 | j [element] :  | semmle.label | j [element] :  |
+| hash_extensions.rb:91:10:91:16 | ...[...] | semmle.label | ...[...] |
+| hash_extensions.rb:91:10:91:16 | ...[...] | semmle.label | ...[...] |
+| hash_extensions.rb:92:10:92:10 | j [element] :  | semmle.label | j [element] :  |
+| hash_extensions.rb:92:10:92:10 | j [element] :  | semmle.label | j [element] :  |
+| hash_extensions.rb:92:10:92:16 | ...[...] | semmle.label | ...[...] |
+| hash_extensions.rb:92:10:92:16 | ...[...] | semmle.label | ...[...] |
 subpaths
 #select
 | active_support.rb:182:10:182:13 | ...[...] | active_support.rb:180:10:180:17 | call to source :  | active_support.rb:182:10:182:13 | ...[...] | $@ | active_support.rb:180:10:180:17 | call to source :  | call to source :  |
@@ -685,3 +759,10 @@ subpaths
 | hash_extensions.rb:74:10:74:16 | ...[...] | hash_extensions.rb:67:15:67:25 | call to source :  | hash_extensions.rb:74:10:74:16 | ...[...] | $@ | hash_extensions.rb:67:15:67:25 | call to source :  | call to source :  |
 | hash_extensions.rb:74:10:74:16 | ...[...] | hash_extensions.rb:67:28:67:38 | call to source :  | hash_extensions.rb:74:10:74:16 | ...[...] | $@ | hash_extensions.rb:67:28:67:38 | call to source :  | call to source :  |
 | hash_extensions.rb:74:10:74:16 | ...[...] | hash_extensions.rb:67:41:67:51 | call to source :  | hash_extensions.rb:74:10:74:16 | ...[...] | $@ | hash_extensions.rb:67:41:67:51 | call to source :  | call to source :  |
+| hash_extensions.rb:82:14:82:16 | key | hash_extensions.rb:80:15:80:25 | call to source :  | hash_extensions.rb:82:14:82:16 | key | $@ | hash_extensions.rb:80:15:80:25 | call to source :  | call to source :  |
+| hash_extensions.rb:82:14:82:16 | key | hash_extensions.rb:80:28:80:38 | call to source :  | hash_extensions.rb:82:14:82:16 | key | $@ | hash_extensions.rb:80:28:80:38 | call to source :  | call to source :  |
+| hash_extensions.rb:82:14:82:16 | key | hash_extensions.rb:80:41:80:51 | call to source :  | hash_extensions.rb:82:14:82:16 | key | $@ | hash_extensions.rb:80:41:80:51 | call to source :  | call to source :  |
+| hash_extensions.rb:86:10:86:16 | ...[...] | hash_extensions.rb:83:9:83:19 | call to source :  | hash_extensions.rb:86:10:86:16 | ...[...] | $@ | hash_extensions.rb:83:9:83:19 | call to source :  | call to source :  |
+| hash_extensions.rb:87:10:87:16 | ...[...] | hash_extensions.rb:83:9:83:19 | call to source :  | hash_extensions.rb:87:10:87:16 | ...[...] | $@ | hash_extensions.rb:83:9:83:19 | call to source :  | call to source :  |
+| hash_extensions.rb:91:10:91:16 | ...[...] | hash_extensions.rb:89:27:89:37 | call to source :  | hash_extensions.rb:91:10:91:16 | ...[...] | $@ | hash_extensions.rb:89:27:89:37 | call to source :  | call to source :  |
+| hash_extensions.rb:92:10:92:16 | ...[...] | hash_extensions.rb:89:27:89:37 | call to source :  | hash_extensions.rb:92:10:92:16 | ...[...] | $@ | hash_extensions.rb:89:27:89:37 | call to source :  | call to source :  |
diff --git a/ruby/ql/test/library-tests/frameworks/active_support/hash_extensions.rb b/ruby/ql/test/library-tests/frameworks/active_support/hash_extensions.rb
index 6669cd83c37..4675e6ea72e 100644
--- a/ruby/ql/test/library-tests/frameworks/active_support/hash_extensions.rb
+++ b/ruby/ql/test/library-tests/frameworks/active_support/hash_extensions.rb
@@ -75,3 +75,21 @@ def m_index_by
 end
 
 m_index_by()
+
+def m_index_with
+    values = [source("a"), source("b"), source("c")]
+    h = values.index_with do |key|
+        sink key # $ hasValueFlow=a $ hasValueFlow=b $ hasValueFlow=c
+        source("x")
+    end
+
+    sink h[:foo] # $ hasValueFlow=x
+    sink h[:bar] # $ hasValueFlow=x
+
+    j = values.index_with(source("y"))
+
+    sink j[:foo] # $ hasValueFlow=y
+    sink j[:bar] # $ hasValueFlow=y
+end
+
+m_index_with()

From e105c13e777d5a251a0e232224d34101cbda195e Mon Sep 17 00:00:00 2001
From: "github-actions[bot]" <github-actions@github.com>
Date: Thu, 17 Nov 2022 16:40:45 +0000
Subject: [PATCH 0451/1420] Release preparation for version 2.11.4

---
 cpp/ql/lib/CHANGELOG.md                            |  4 ++++
 cpp/ql/lib/change-notes/released/0.4.4.md          |  3 +++
 cpp/ql/lib/codeql-pack.release.yml                 |  2 +-
 cpp/ql/lib/qlpack.yml                              |  2 +-
 cpp/ql/src/CHANGELOG.md                            |  4 ++++
 cpp/ql/src/change-notes/released/0.4.4.md          |  3 +++
 cpp/ql/src/codeql-pack.release.yml                 |  2 +-
 cpp/ql/src/qlpack.yml                              |  2 +-
 csharp/ql/campaigns/Solorigate/lib/CHANGELOG.md    |  4 ++++
 .../Solorigate/lib/change-notes/released/1.3.4.md  |  3 +++
 .../Solorigate/lib/codeql-pack.release.yml         |  2 +-
 csharp/ql/campaigns/Solorigate/lib/qlpack.yml      |  2 +-
 csharp/ql/campaigns/Solorigate/src/CHANGELOG.md    |  4 ++++
 .../Solorigate/src/change-notes/released/1.3.4.md  |  3 +++
 .../Solorigate/src/codeql-pack.release.yml         |  2 +-
 csharp/ql/campaigns/Solorigate/src/qlpack.yml      |  2 +-
 csharp/ql/lib/CHANGELOG.md                         |  6 ++++++
 .../0.4.4.md}                                      |  9 +++++----
 csharp/ql/lib/codeql-pack.release.yml              |  2 +-
 csharp/ql/lib/qlpack.yml                           |  2 +-
 csharp/ql/src/CHANGELOG.md                         |  4 ++++
 csharp/ql/src/change-notes/released/0.4.4.md       |  3 +++
 csharp/ql/src/codeql-pack.release.yml              |  2 +-
 csharp/ql/src/qlpack.yml                           |  2 +-
 go/ql/lib/CHANGELOG.md                             |  4 ++++
 go/ql/lib/change-notes/released/0.3.4.md           |  3 +++
 go/ql/lib/codeql-pack.release.yml                  |  2 +-
 go/ql/lib/qlpack.yml                               |  2 +-
 go/ql/src/CHANGELOG.md                             |  4 ++++
 go/ql/src/change-notes/released/0.3.4.md           |  3 +++
 go/ql/src/codeql-pack.release.yml                  |  2 +-
 go/ql/src/qlpack.yml                               |  2 +-
 java/ql/lib/CHANGELOG.md                           | 12 ++++++++++++
 ...2022-10-19-android-startactivities-summaries.md |  4 ----
 .../change-notes/2022-10-31-shared-redos-pack.md   |  4 ----
 java/ql/lib/change-notes/2022-11-10-getInfo.md     |  4 ----
 .../lib/change-notes/2022-11-10-kotlin-default.md  |  4 ----
 java/ql/lib/change-notes/released/0.4.4.md         | 11 +++++++++++
 java/ql/lib/codeql-pack.release.yml                |  2 +-
 java/ql/lib/qlpack.yml                             |  2 +-
 java/ql/src/CHANGELOG.md                           |  7 +++++++
 .../2022-10-07-sensitive-keyboard-cache.md         |  4 ----
 .../0.4.4.md}                                      |  8 +++++---
 java/ql/src/codeql-pack.release.yml                |  2 +-
 java/ql/src/qlpack.yml                             |  2 +-
 javascript/ql/lib/CHANGELOG.md                     |  6 ++++++
 .../lib/change-notes/2022-11-15-typescript-4-9.md  |  4 ----
 javascript/ql/lib/change-notes/released/0.3.4.md   |  5 +++++
 javascript/ql/lib/codeql-pack.release.yml          |  2 +-
 javascript/ql/lib/qlpack.yml                       |  2 +-
 javascript/ql/src/CHANGELOG.md                     | 13 +++++++++++++
 .../ql/src/change-notes/2022-11-08-hapi-glue.md    |  4 ----
 .../src/change-notes/2022-11-08-yaml-locations.md  |  5 -----
 .../2022-11-14-dynamic-import-type-expr.md         |  5 -----
 javascript/ql/src/change-notes/released/0.4.4.md   | 12 ++++++++++++
 javascript/ql/src/codeql-pack.release.yml          |  2 +-
 javascript/ql/src/qlpack.yml                       |  2 +-
 misc/suite-helpers/CHANGELOG.md                    |  4 ++++
 misc/suite-helpers/change-notes/released/0.3.4.md  |  3 +++
 misc/suite-helpers/codeql-pack.release.yml         |  2 +-
 misc/suite-helpers/qlpack.yml                      |  2 +-
 python/ql/lib/CHANGELOG.md                         |  6 ++++++
 .../0.6.4.md}                                      |  9 +++++----
 python/ql/lib/codeql-pack.release.yml              |  2 +-
 python/ql/lib/qlpack.yml                           |  2 +-
 python/ql/src/CHANGELOG.md                         |  4 ++++
 python/ql/src/change-notes/released/0.5.4.md       |  3 +++
 python/ql/src/codeql-pack.release.yml              |  2 +-
 python/ql/src/qlpack.yml                           |  2 +-
 ruby/ql/lib/CHANGELOG.md                           | 14 ++++++++++++++
 .../change-notes/2022-10-28-try-code-execution.md  |  4 ----
 .../2022-11-01-actioncontroller-logger.md          |  6 ------
 .../2022-11-08-activesupport-hash-extensions.md    |  4 ----
 .../2022-11-09-actioncable-channels.md             |  4 ----
 ruby/ql/lib/change-notes/2022-11-10-arel-sql.md    |  5 -----
 ...2022-11-14-activesupport-enumerable-index-by.md |  4 ----
 ruby/ql/lib/change-notes/released/0.4.4.md         | 13 +++++++++++++
 ruby/ql/lib/codeql-pack.release.yml                |  2 +-
 ruby/ql/lib/qlpack.yml                             |  2 +-
 ruby/ql/src/CHANGELOG.md                           | 10 ++++++++++
 ...2022-10-10-unsafe-shell-command-construction.md |  4 ----
 ruby/ql/src/change-notes/2022-11-10-arel-sql.md    |  4 ----
 ruby/ql/src/change-notes/released/0.4.4.md         |  9 +++++++++
 ruby/ql/src/codeql-pack.release.yml                |  2 +-
 ruby/ql/src/qlpack.yml                             |  2 +-
 .../2022-09-26-initial-version.md => CHANGELOG.md} |  7 ++++---
 shared/regex/change-notes/released/0.0.1.md        |  5 +++++
 shared/regex/codeql-pack.release.yml               |  2 ++
 shared/regex/qlpack.yml                            |  2 +-
 shared/ssa/CHANGELOG.md                            |  4 ++++
 shared/ssa/change-notes/released/0.0.5.md          |  3 +++
 shared/ssa/codeql-pack.release.yml                 |  2 +-
 shared/ssa/qlpack.yml                              |  2 +-
 shared/typos/CHANGELOG.md                          |  4 ++++
 shared/typos/change-notes/released/0.0.5.md        |  3 +++
 shared/typos/codeql-pack.release.yml               |  2 +-
 shared/typos/qlpack.yml                            |  2 +-
 97 files changed, 266 insertions(+), 126 deletions(-)
 create mode 100644 cpp/ql/lib/change-notes/released/0.4.4.md
 create mode 100644 cpp/ql/src/change-notes/released/0.4.4.md
 create mode 100644 csharp/ql/campaigns/Solorigate/lib/change-notes/released/1.3.4.md
 create mode 100644 csharp/ql/campaigns/Solorigate/src/change-notes/released/1.3.4.md
 rename csharp/ql/lib/change-notes/{2022-11-09-modelsasdataextensions.md => released/0.4.4.md} (72%)
 create mode 100644 csharp/ql/src/change-notes/released/0.4.4.md
 create mode 100644 go/ql/lib/change-notes/released/0.3.4.md
 create mode 100644 go/ql/src/change-notes/released/0.3.4.md
 delete mode 100644 java/ql/lib/change-notes/2022-10-19-android-startactivities-summaries.md
 delete mode 100644 java/ql/lib/change-notes/2022-10-31-shared-redos-pack.md
 delete mode 100644 java/ql/lib/change-notes/2022-11-10-getInfo.md
 delete mode 100644 java/ql/lib/change-notes/2022-11-10-kotlin-default.md
 create mode 100644 java/ql/lib/change-notes/released/0.4.4.md
 delete mode 100644 java/ql/src/change-notes/2022-10-07-sensitive-keyboard-cache.md
 rename java/ql/src/change-notes/{2022-10-19-insufficient-key-size.md => released/0.4.4.md} (59%)
 delete mode 100644 javascript/ql/lib/change-notes/2022-11-15-typescript-4-9.md
 create mode 100644 javascript/ql/lib/change-notes/released/0.3.4.md
 delete mode 100644 javascript/ql/src/change-notes/2022-11-08-hapi-glue.md
 delete mode 100644 javascript/ql/src/change-notes/2022-11-08-yaml-locations.md
 delete mode 100644 javascript/ql/src/change-notes/2022-11-14-dynamic-import-type-expr.md
 create mode 100644 javascript/ql/src/change-notes/released/0.4.4.md
 create mode 100644 misc/suite-helpers/change-notes/released/0.3.4.md
 rename python/ql/lib/change-notes/{2022-10-31-shared-redos-pack.md => released/0.6.4.md} (59%)
 create mode 100644 python/ql/src/change-notes/released/0.5.4.md
 delete mode 100644 ruby/ql/lib/change-notes/2022-10-28-try-code-execution.md
 delete mode 100644 ruby/ql/lib/change-notes/2022-11-01-actioncontroller-logger.md
 delete mode 100644 ruby/ql/lib/change-notes/2022-11-08-activesupport-hash-extensions.md
 delete mode 100644 ruby/ql/lib/change-notes/2022-11-09-actioncable-channels.md
 delete mode 100644 ruby/ql/lib/change-notes/2022-11-10-arel-sql.md
 delete mode 100644 ruby/ql/lib/change-notes/2022-11-14-activesupport-enumerable-index-by.md
 create mode 100644 ruby/ql/lib/change-notes/released/0.4.4.md
 delete mode 100644 ruby/ql/src/change-notes/2022-10-10-unsafe-shell-command-construction.md
 delete mode 100644 ruby/ql/src/change-notes/2022-11-10-arel-sql.md
 create mode 100644 ruby/ql/src/change-notes/released/0.4.4.md
 rename shared/regex/{change-notes/2022-09-26-initial-version.md => CHANGELOG.md} (76%)
 create mode 100644 shared/regex/change-notes/released/0.0.1.md
 create mode 100644 shared/regex/codeql-pack.release.yml
 create mode 100644 shared/ssa/change-notes/released/0.0.5.md
 create mode 100644 shared/typos/change-notes/released/0.0.5.md

diff --git a/cpp/ql/lib/CHANGELOG.md b/cpp/ql/lib/CHANGELOG.md
index 0a7a31b8db9..30a996fdba6 100644
--- a/cpp/ql/lib/CHANGELOG.md
+++ b/cpp/ql/lib/CHANGELOG.md
@@ -1,3 +1,7 @@
+## 0.4.4
+
+No user-facing changes.
+
 ## 0.4.3
 
 ### Minor Analysis Improvements
diff --git a/cpp/ql/lib/change-notes/released/0.4.4.md b/cpp/ql/lib/change-notes/released/0.4.4.md
new file mode 100644
index 00000000000..33e1c91255d
--- /dev/null
+++ b/cpp/ql/lib/change-notes/released/0.4.4.md
@@ -0,0 +1,3 @@
+## 0.4.4
+
+No user-facing changes.
diff --git a/cpp/ql/lib/codeql-pack.release.yml b/cpp/ql/lib/codeql-pack.release.yml
index 1ec9c4ea5d9..e9b57993a01 100644
--- a/cpp/ql/lib/codeql-pack.release.yml
+++ b/cpp/ql/lib/codeql-pack.release.yml
@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 0.4.3
+lastReleaseVersion: 0.4.4
diff --git a/cpp/ql/lib/qlpack.yml b/cpp/ql/lib/qlpack.yml
index ef1fd2099a3..e8c0a17068e 100644
--- a/cpp/ql/lib/qlpack.yml
+++ b/cpp/ql/lib/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/cpp-all
-version: 0.4.4-dev
+version: 0.4.4
 groups: cpp
 dbscheme: semmlecode.cpp.dbscheme
 extractor: cpp
diff --git a/cpp/ql/src/CHANGELOG.md b/cpp/ql/src/CHANGELOG.md
index f32f416b540..5546105176e 100644
--- a/cpp/ql/src/CHANGELOG.md
+++ b/cpp/ql/src/CHANGELOG.md
@@ -1,3 +1,7 @@
+## 0.4.4
+
+No user-facing changes.
+
 ## 0.4.3
 
 ### Minor Analysis Improvements
diff --git a/cpp/ql/src/change-notes/released/0.4.4.md b/cpp/ql/src/change-notes/released/0.4.4.md
new file mode 100644
index 00000000000..33e1c91255d
--- /dev/null
+++ b/cpp/ql/src/change-notes/released/0.4.4.md
@@ -0,0 +1,3 @@
+## 0.4.4
+
+No user-facing changes.
diff --git a/cpp/ql/src/codeql-pack.release.yml b/cpp/ql/src/codeql-pack.release.yml
index 1ec9c4ea5d9..e9b57993a01 100644
--- a/cpp/ql/src/codeql-pack.release.yml
+++ b/cpp/ql/src/codeql-pack.release.yml
@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 0.4.3
+lastReleaseVersion: 0.4.4
diff --git a/cpp/ql/src/qlpack.yml b/cpp/ql/src/qlpack.yml
index 3a44ef8b743..4ee5b28070c 100644
--- a/cpp/ql/src/qlpack.yml
+++ b/cpp/ql/src/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/cpp-queries
-version: 0.4.4-dev
+version: 0.4.4
 groups: 
   - cpp
   - queries
diff --git a/csharp/ql/campaigns/Solorigate/lib/CHANGELOG.md b/csharp/ql/campaigns/Solorigate/lib/CHANGELOG.md
index 98c13dfaa77..4aa822f9369 100644
--- a/csharp/ql/campaigns/Solorigate/lib/CHANGELOG.md
+++ b/csharp/ql/campaigns/Solorigate/lib/CHANGELOG.md
@@ -1,3 +1,7 @@
+## 1.3.4
+
+No user-facing changes.
+
 ## 1.3.3
 
 No user-facing changes.
diff --git a/csharp/ql/campaigns/Solorigate/lib/change-notes/released/1.3.4.md b/csharp/ql/campaigns/Solorigate/lib/change-notes/released/1.3.4.md
new file mode 100644
index 00000000000..5073aca7222
--- /dev/null
+++ b/csharp/ql/campaigns/Solorigate/lib/change-notes/released/1.3.4.md
@@ -0,0 +1,3 @@
+## 1.3.4
+
+No user-facing changes.
diff --git a/csharp/ql/campaigns/Solorigate/lib/codeql-pack.release.yml b/csharp/ql/campaigns/Solorigate/lib/codeql-pack.release.yml
index eb1f7dabc84..8263ddf2c8b 100644
--- a/csharp/ql/campaigns/Solorigate/lib/codeql-pack.release.yml
+++ b/csharp/ql/campaigns/Solorigate/lib/codeql-pack.release.yml
@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 1.3.3
+lastReleaseVersion: 1.3.4
diff --git a/csharp/ql/campaigns/Solorigate/lib/qlpack.yml b/csharp/ql/campaigns/Solorigate/lib/qlpack.yml
index ccab1b3a8b8..41c454bb5c0 100644
--- a/csharp/ql/campaigns/Solorigate/lib/qlpack.yml
+++ b/csharp/ql/campaigns/Solorigate/lib/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/csharp-solorigate-all
-version: 1.3.4-dev
+version: 1.3.4
 groups:
     - csharp
     - solorigate
diff --git a/csharp/ql/campaigns/Solorigate/src/CHANGELOG.md b/csharp/ql/campaigns/Solorigate/src/CHANGELOG.md
index 98c13dfaa77..4aa822f9369 100644
--- a/csharp/ql/campaigns/Solorigate/src/CHANGELOG.md
+++ b/csharp/ql/campaigns/Solorigate/src/CHANGELOG.md
@@ -1,3 +1,7 @@
+## 1.3.4
+
+No user-facing changes.
+
 ## 1.3.3
 
 No user-facing changes.
diff --git a/csharp/ql/campaigns/Solorigate/src/change-notes/released/1.3.4.md b/csharp/ql/campaigns/Solorigate/src/change-notes/released/1.3.4.md
new file mode 100644
index 00000000000..5073aca7222
--- /dev/null
+++ b/csharp/ql/campaigns/Solorigate/src/change-notes/released/1.3.4.md
@@ -0,0 +1,3 @@
+## 1.3.4
+
+No user-facing changes.
diff --git a/csharp/ql/campaigns/Solorigate/src/codeql-pack.release.yml b/csharp/ql/campaigns/Solorigate/src/codeql-pack.release.yml
index eb1f7dabc84..8263ddf2c8b 100644
--- a/csharp/ql/campaigns/Solorigate/src/codeql-pack.release.yml
+++ b/csharp/ql/campaigns/Solorigate/src/codeql-pack.release.yml
@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 1.3.3
+lastReleaseVersion: 1.3.4
diff --git a/csharp/ql/campaigns/Solorigate/src/qlpack.yml b/csharp/ql/campaigns/Solorigate/src/qlpack.yml
index 209538a2014..7ba0669ba7b 100644
--- a/csharp/ql/campaigns/Solorigate/src/qlpack.yml
+++ b/csharp/ql/campaigns/Solorigate/src/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/csharp-solorigate-queries
-version: 1.3.4-dev
+version: 1.3.4
 groups:
     - csharp
     - solorigate
diff --git a/csharp/ql/lib/CHANGELOG.md b/csharp/ql/lib/CHANGELOG.md
index 2fff5e72443..265b1a3183d 100644
--- a/csharp/ql/lib/CHANGELOG.md
+++ b/csharp/ql/lib/CHANGELOG.md
@@ -1,3 +1,9 @@
+## 0.4.4
+
+### Minor Analysis Improvements
+
+* The `[Summary|Sink|Source]ModelCsv` classes have been deprecated and Models as Data models are defined as data extensions instead.
+
 ## 0.4.3
 
 No user-facing changes.
diff --git a/csharp/ql/lib/change-notes/2022-11-09-modelsasdataextensions.md b/csharp/ql/lib/change-notes/released/0.4.4.md
similarity index 72%
rename from csharp/ql/lib/change-notes/2022-11-09-modelsasdataextensions.md
rename to csharp/ql/lib/change-notes/released/0.4.4.md
index 1c9bb14754d..b3d7e2c3be1 100644
--- a/csharp/ql/lib/change-notes/2022-11-09-modelsasdataextensions.md
+++ b/csharp/ql/lib/change-notes/released/0.4.4.md
@@ -1,4 +1,5 @@
----
-category: minorAnalysis
----
-* The `[Summary|Sink|Source]ModelCsv` classes have been deprecated and Models as Data models are defined as data extensions instead.
\ No newline at end of file
+## 0.4.4
+
+### Minor Analysis Improvements
+
+* The `[Summary|Sink|Source]ModelCsv` classes have been deprecated and Models as Data models are defined as data extensions instead.
diff --git a/csharp/ql/lib/codeql-pack.release.yml b/csharp/ql/lib/codeql-pack.release.yml
index 1ec9c4ea5d9..e9b57993a01 100644
--- a/csharp/ql/lib/codeql-pack.release.yml
+++ b/csharp/ql/lib/codeql-pack.release.yml
@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 0.4.3
+lastReleaseVersion: 0.4.4
diff --git a/csharp/ql/lib/qlpack.yml b/csharp/ql/lib/qlpack.yml
index a43762f9433..bd5cd1b7e16 100644
--- a/csharp/ql/lib/qlpack.yml
+++ b/csharp/ql/lib/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/csharp-all
-version: 0.4.4-dev
+version: 0.4.4
 groups: csharp
 dbscheme: semmlecode.csharp.dbscheme
 extractor: csharp
diff --git a/csharp/ql/src/CHANGELOG.md b/csharp/ql/src/CHANGELOG.md
index 46be24580ef..486c21a1125 100644
--- a/csharp/ql/src/CHANGELOG.md
+++ b/csharp/ql/src/CHANGELOG.md
@@ -1,3 +1,7 @@
+## 0.4.4
+
+No user-facing changes.
+
 ## 0.4.3
 
 No user-facing changes.
diff --git a/csharp/ql/src/change-notes/released/0.4.4.md b/csharp/ql/src/change-notes/released/0.4.4.md
new file mode 100644
index 00000000000..33e1c91255d
--- /dev/null
+++ b/csharp/ql/src/change-notes/released/0.4.4.md
@@ -0,0 +1,3 @@
+## 0.4.4
+
+No user-facing changes.
diff --git a/csharp/ql/src/codeql-pack.release.yml b/csharp/ql/src/codeql-pack.release.yml
index 1ec9c4ea5d9..e9b57993a01 100644
--- a/csharp/ql/src/codeql-pack.release.yml
+++ b/csharp/ql/src/codeql-pack.release.yml
@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 0.4.3
+lastReleaseVersion: 0.4.4
diff --git a/csharp/ql/src/qlpack.yml b/csharp/ql/src/qlpack.yml
index 7f537bcae49..6964f93b085 100644
--- a/csharp/ql/src/qlpack.yml
+++ b/csharp/ql/src/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/csharp-queries
-version: 0.4.4-dev
+version: 0.4.4
 groups: 
   - csharp
   - queries
diff --git a/go/ql/lib/CHANGELOG.md b/go/ql/lib/CHANGELOG.md
index 681412ed46f..a5f5d96020a 100644
--- a/go/ql/lib/CHANGELOG.md
+++ b/go/ql/lib/CHANGELOG.md
@@ -1,3 +1,7 @@
+## 0.3.4
+
+No user-facing changes.
+
 ## 0.3.3
 
 No user-facing changes.
diff --git a/go/ql/lib/change-notes/released/0.3.4.md b/go/ql/lib/change-notes/released/0.3.4.md
new file mode 100644
index 00000000000..5fae94b07c9
--- /dev/null
+++ b/go/ql/lib/change-notes/released/0.3.4.md
@@ -0,0 +1,3 @@
+## 0.3.4
+
+No user-facing changes.
diff --git a/go/ql/lib/codeql-pack.release.yml b/go/ql/lib/codeql-pack.release.yml
index 9da182d3394..5ed15c24b9c 100644
--- a/go/ql/lib/codeql-pack.release.yml
+++ b/go/ql/lib/codeql-pack.release.yml
@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 0.3.3
+lastReleaseVersion: 0.3.4
diff --git a/go/ql/lib/qlpack.yml b/go/ql/lib/qlpack.yml
index 9daccdd80b6..0d453d90f88 100644
--- a/go/ql/lib/qlpack.yml
+++ b/go/ql/lib/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/go-all
-version: 0.3.4-dev
+version: 0.3.4
 groups: go
 dbscheme: go.dbscheme
 extractor: go
diff --git a/go/ql/src/CHANGELOG.md b/go/ql/src/CHANGELOG.md
index 65aa3c40d99..f74e3c23d7c 100644
--- a/go/ql/src/CHANGELOG.md
+++ b/go/ql/src/CHANGELOG.md
@@ -1,3 +1,7 @@
+## 0.3.4
+
+No user-facing changes.
+
 ## 0.3.3
 
 ### Minor Analysis Improvements
diff --git a/go/ql/src/change-notes/released/0.3.4.md b/go/ql/src/change-notes/released/0.3.4.md
new file mode 100644
index 00000000000..5fae94b07c9
--- /dev/null
+++ b/go/ql/src/change-notes/released/0.3.4.md
@@ -0,0 +1,3 @@
+## 0.3.4
+
+No user-facing changes.
diff --git a/go/ql/src/codeql-pack.release.yml b/go/ql/src/codeql-pack.release.yml
index 9da182d3394..5ed15c24b9c 100644
--- a/go/ql/src/codeql-pack.release.yml
+++ b/go/ql/src/codeql-pack.release.yml
@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 0.3.3
+lastReleaseVersion: 0.3.4
diff --git a/go/ql/src/qlpack.yml b/go/ql/src/qlpack.yml
index e44f8ef80d9..297b6ce7ff9 100644
--- a/go/ql/src/qlpack.yml
+++ b/go/ql/src/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/go-queries
-version: 0.3.4-dev
+version: 0.3.4
 groups:
   - go
   - queries
diff --git a/java/ql/lib/CHANGELOG.md b/java/ql/lib/CHANGELOG.md
index 696c3097fac..47c2cc4289d 100644
--- a/java/ql/lib/CHANGELOG.md
+++ b/java/ql/lib/CHANGELOG.md
@@ -1,3 +1,15 @@
+## 0.4.4
+
+### New Features
+
+* The new `string Compilation.getInfo(string)` provides access to some information about compilations.
+* Kotlin support is now in beta. This means that Java analyses will also include Kotlin code by default. Kotlin support can be disabled by setting `CODEQL_EXTRACTOR_JAVA_AGENT_DISABLE_KOTLIN` to `true` in the environment.
+
+### Minor Analysis Improvements
+
+ * The ReDoS libraries in `semmle.code.java.security.regexp` has been moved to a shared pack inside the `shared/` folder, and the previous location has been deprecated.
+* Added data flow summaries for tainted Android intents sent to activities via `Activity.startActivities`.
+
 ## 0.4.3
 
 No user-facing changes.
diff --git a/java/ql/lib/change-notes/2022-10-19-android-startactivities-summaries.md b/java/ql/lib/change-notes/2022-10-19-android-startactivities-summaries.md
deleted file mode 100644
index 4716fb2ac41..00000000000
--- a/java/ql/lib/change-notes/2022-10-19-android-startactivities-summaries.md
+++ /dev/null
@@ -1,4 +0,0 @@
----
-category: minorAnalysis
----
-* Added data flow summaries for tainted Android intents sent to activities via `Activity.startActivities`.
\ No newline at end of file
diff --git a/java/ql/lib/change-notes/2022-10-31-shared-redos-pack.md b/java/ql/lib/change-notes/2022-10-31-shared-redos-pack.md
deleted file mode 100644
index 405ddd1108c..00000000000
--- a/java/ql/lib/change-notes/2022-10-31-shared-redos-pack.md
+++ /dev/null
@@ -1,4 +0,0 @@
----
- category: minorAnalysis
----
- * The ReDoS libraries in `semmle.code.java.security.regexp` has been moved to a shared pack inside the `shared/` folder, and the previous location has been deprecated.
\ No newline at end of file
diff --git a/java/ql/lib/change-notes/2022-11-10-getInfo.md b/java/ql/lib/change-notes/2022-11-10-getInfo.md
deleted file mode 100644
index 7a113ca3459..00000000000
--- a/java/ql/lib/change-notes/2022-11-10-getInfo.md
+++ /dev/null
@@ -1,4 +0,0 @@
----
-category: feature
----
-* The new `string Compilation.getInfo(string)` provides access to some information about compilations.
diff --git a/java/ql/lib/change-notes/2022-11-10-kotlin-default.md b/java/ql/lib/change-notes/2022-11-10-kotlin-default.md
deleted file mode 100644
index d411c58173c..00000000000
--- a/java/ql/lib/change-notes/2022-11-10-kotlin-default.md
+++ /dev/null
@@ -1,4 +0,0 @@
----
-category: feature
----
-* Kotlin support is now in beta. This means that Java analyses will also include Kotlin code by default. Kotlin support can be disabled by setting `CODEQL_EXTRACTOR_JAVA_AGENT_DISABLE_KOTLIN` to `true` in the environment.
diff --git a/java/ql/lib/change-notes/released/0.4.4.md b/java/ql/lib/change-notes/released/0.4.4.md
new file mode 100644
index 00000000000..09858b4465d
--- /dev/null
+++ b/java/ql/lib/change-notes/released/0.4.4.md
@@ -0,0 +1,11 @@
+## 0.4.4
+
+### New Features
+
+* The new `string Compilation.getInfo(string)` provides access to some information about compilations.
+* Kotlin support is now in beta. This means that Java analyses will also include Kotlin code by default. Kotlin support can be disabled by setting `CODEQL_EXTRACTOR_JAVA_AGENT_DISABLE_KOTLIN` to `true` in the environment.
+
+### Minor Analysis Improvements
+
+ * The ReDoS libraries in `semmle.code.java.security.regexp` has been moved to a shared pack inside the `shared/` folder, and the previous location has been deprecated.
+* Added data flow summaries for tainted Android intents sent to activities via `Activity.startActivities`.
diff --git a/java/ql/lib/codeql-pack.release.yml b/java/ql/lib/codeql-pack.release.yml
index 1ec9c4ea5d9..e9b57993a01 100644
--- a/java/ql/lib/codeql-pack.release.yml
+++ b/java/ql/lib/codeql-pack.release.yml
@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 0.4.3
+lastReleaseVersion: 0.4.4
diff --git a/java/ql/lib/qlpack.yml b/java/ql/lib/qlpack.yml
index 4b103c629a2..65e160f8720 100644
--- a/java/ql/lib/qlpack.yml
+++ b/java/ql/lib/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/java-all
-version: 0.4.4-dev
+version: 0.4.4
 groups: java
 dbscheme: config/semmlecode.dbscheme
 extractor: java
diff --git a/java/ql/src/CHANGELOG.md b/java/ql/src/CHANGELOG.md
index 61b4170ca74..78c032e50b4 100644
--- a/java/ql/src/CHANGELOG.md
+++ b/java/ql/src/CHANGELOG.md
@@ -1,3 +1,10 @@
+## 0.4.4
+
+### New Queries
+
+* The query `java/insufficient-key-size` has been promoted from experimental to the main query pack. Its results will now appear by default. This query was originally [submitted as an experimental query by @luchua-bc](https://github.com/github/codeql/pull/4926).
+* Added a new query, `java/android/sensitive-keyboard-cache`, to detect instances of sensitive information possibly being saved to the keyboard cache.
+
 ## 0.4.3
 
 No user-facing changes.
diff --git a/java/ql/src/change-notes/2022-10-07-sensitive-keyboard-cache.md b/java/ql/src/change-notes/2022-10-07-sensitive-keyboard-cache.md
deleted file mode 100644
index 21a1652cc93..00000000000
--- a/java/ql/src/change-notes/2022-10-07-sensitive-keyboard-cache.md
+++ /dev/null
@@ -1,4 +0,0 @@
----
-category: newQuery
----
-* Added a new query, `java/android/sensitive-keyboard-cache`, to detect instances of sensitive information possibly being saved to the keyboard cache.
\ No newline at end of file
diff --git a/java/ql/src/change-notes/2022-10-19-insufficient-key-size.md b/java/ql/src/change-notes/released/0.4.4.md
similarity index 59%
rename from java/ql/src/change-notes/2022-10-19-insufficient-key-size.md
rename to java/ql/src/change-notes/released/0.4.4.md
index e117b5b5941..6cf1320bbd1 100644
--- a/java/ql/src/change-notes/2022-10-19-insufficient-key-size.md
+++ b/java/ql/src/change-notes/released/0.4.4.md
@@ -1,4 +1,6 @@
----
-category: newQuery
----
+## 0.4.4
+
+### New Queries
+
 * The query `java/insufficient-key-size` has been promoted from experimental to the main query pack. Its results will now appear by default. This query was originally [submitted as an experimental query by @luchua-bc](https://github.com/github/codeql/pull/4926).
+* Added a new query, `java/android/sensitive-keyboard-cache`, to detect instances of sensitive information possibly being saved to the keyboard cache.
diff --git a/java/ql/src/codeql-pack.release.yml b/java/ql/src/codeql-pack.release.yml
index 1ec9c4ea5d9..e9b57993a01 100644
--- a/java/ql/src/codeql-pack.release.yml
+++ b/java/ql/src/codeql-pack.release.yml
@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 0.4.3
+lastReleaseVersion: 0.4.4
diff --git a/java/ql/src/qlpack.yml b/java/ql/src/qlpack.yml
index 87267893413..b15d45f78f9 100644
--- a/java/ql/src/qlpack.yml
+++ b/java/ql/src/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/java-queries
-version: 0.4.4-dev
+version: 0.4.4
 groups: 
   - java
   - queries
diff --git a/javascript/ql/lib/CHANGELOG.md b/javascript/ql/lib/CHANGELOG.md
index ac17e9e9f27..7bf9f7f1db0 100644
--- a/javascript/ql/lib/CHANGELOG.md
+++ b/javascript/ql/lib/CHANGELOG.md
@@ -1,3 +1,9 @@
+## 0.3.4
+
+### Major Analysis Improvements
+
+* Added support for TypeScript 4.9.
+
 ## 0.3.3
 
 No user-facing changes.
diff --git a/javascript/ql/lib/change-notes/2022-11-15-typescript-4-9.md b/javascript/ql/lib/change-notes/2022-11-15-typescript-4-9.md
deleted file mode 100644
index 723f0a5c65f..00000000000
--- a/javascript/ql/lib/change-notes/2022-11-15-typescript-4-9.md
+++ /dev/null
@@ -1,4 +0,0 @@
----
-category: majorAnalysis
----
-* Added support for TypeScript 4.9.
diff --git a/javascript/ql/lib/change-notes/released/0.3.4.md b/javascript/ql/lib/change-notes/released/0.3.4.md
new file mode 100644
index 00000000000..04b51176020
--- /dev/null
+++ b/javascript/ql/lib/change-notes/released/0.3.4.md
@@ -0,0 +1,5 @@
+## 0.3.4
+
+### Major Analysis Improvements
+
+* Added support for TypeScript 4.9.
diff --git a/javascript/ql/lib/codeql-pack.release.yml b/javascript/ql/lib/codeql-pack.release.yml
index 9da182d3394..5ed15c24b9c 100644
--- a/javascript/ql/lib/codeql-pack.release.yml
+++ b/javascript/ql/lib/codeql-pack.release.yml
@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 0.3.3
+lastReleaseVersion: 0.3.4
diff --git a/javascript/ql/lib/qlpack.yml b/javascript/ql/lib/qlpack.yml
index 0a3a773e368..8e1f29f47e0 100644
--- a/javascript/ql/lib/qlpack.yml
+++ b/javascript/ql/lib/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/javascript-all
-version: 0.3.4-dev
+version: 0.3.4
 groups: javascript
 dbscheme: semmlecode.javascript.dbscheme
 extractor: javascript
diff --git a/javascript/ql/src/CHANGELOG.md b/javascript/ql/src/CHANGELOG.md
index bdd74c9a701..0783d222cb8 100644
--- a/javascript/ql/src/CHANGELOG.md
+++ b/javascript/ql/src/CHANGELOG.md
@@ -1,3 +1,16 @@
+## 0.4.4
+
+### Minor Analysis Improvements
+
+* Added support for @hapi/glue and Hapi plugins to the frameworks/Hapi.qll library.
+
+### Bug Fixes
+
+* Fixed a bug that would cause the extractor to crash when an `import` type is used in
+  the `extends` clause of an `interface`.
+* Fixed an issue with multi-line strings in YAML files being associated with an invalid location,
+  causing alerts related to such strings to appear at the top of the YAML file.
+
 ## 0.4.3
 
 ### New Queries
diff --git a/javascript/ql/src/change-notes/2022-11-08-hapi-glue.md b/javascript/ql/src/change-notes/2022-11-08-hapi-glue.md
deleted file mode 100644
index 18816a2af13..00000000000
--- a/javascript/ql/src/change-notes/2022-11-08-hapi-glue.md
+++ /dev/null
@@ -1,4 +0,0 @@
----
-category: minorAnalysis
----
-* Added support for @hapi/glue and Hapi plugins to the frameworks/Hapi.qll library.
diff --git a/javascript/ql/src/change-notes/2022-11-08-yaml-locations.md b/javascript/ql/src/change-notes/2022-11-08-yaml-locations.md
deleted file mode 100644
index 68664780beb..00000000000
--- a/javascript/ql/src/change-notes/2022-11-08-yaml-locations.md
+++ /dev/null
@@ -1,5 +0,0 @@
----
-category: fix
----
-* Fixed an issue with multi-line strings in YAML files being associated with an invalid location,
-  causing alerts related to such strings to appear at the top of the YAML file.
diff --git a/javascript/ql/src/change-notes/2022-11-14-dynamic-import-type-expr.md b/javascript/ql/src/change-notes/2022-11-14-dynamic-import-type-expr.md
deleted file mode 100644
index 5f975516620..00000000000
--- a/javascript/ql/src/change-notes/2022-11-14-dynamic-import-type-expr.md
+++ /dev/null
@@ -1,5 +0,0 @@
----
-category: fix
----
-* Fixed a bug that would cause the extractor to crash when an `import` type is used in
-  the `extends` clause of an `interface`.
diff --git a/javascript/ql/src/change-notes/released/0.4.4.md b/javascript/ql/src/change-notes/released/0.4.4.md
new file mode 100644
index 00000000000..e423d671d22
--- /dev/null
+++ b/javascript/ql/src/change-notes/released/0.4.4.md
@@ -0,0 +1,12 @@
+## 0.4.4
+
+### Minor Analysis Improvements
+
+* Added support for @hapi/glue and Hapi plugins to the frameworks/Hapi.qll library.
+
+### Bug Fixes
+
+* Fixed a bug that would cause the extractor to crash when an `import` type is used in
+  the `extends` clause of an `interface`.
+* Fixed an issue with multi-line strings in YAML files being associated with an invalid location,
+  causing alerts related to such strings to appear at the top of the YAML file.
diff --git a/javascript/ql/src/codeql-pack.release.yml b/javascript/ql/src/codeql-pack.release.yml
index 1ec9c4ea5d9..e9b57993a01 100644
--- a/javascript/ql/src/codeql-pack.release.yml
+++ b/javascript/ql/src/codeql-pack.release.yml
@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 0.4.3
+lastReleaseVersion: 0.4.4
diff --git a/javascript/ql/src/qlpack.yml b/javascript/ql/src/qlpack.yml
index 0d9eb306ee9..ba9e83a24cd 100644
--- a/javascript/ql/src/qlpack.yml
+++ b/javascript/ql/src/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/javascript-queries
-version: 0.4.4-dev
+version: 0.4.4
 groups: 
   - javascript
   - queries
diff --git a/misc/suite-helpers/CHANGELOG.md b/misc/suite-helpers/CHANGELOG.md
index e3d9cec6f66..9ee41acc1ec 100644
--- a/misc/suite-helpers/CHANGELOG.md
+++ b/misc/suite-helpers/CHANGELOG.md
@@ -1,3 +1,7 @@
+## 0.3.4
+
+No user-facing changes.
+
 ## 0.3.3
 
 No user-facing changes.
diff --git a/misc/suite-helpers/change-notes/released/0.3.4.md b/misc/suite-helpers/change-notes/released/0.3.4.md
new file mode 100644
index 00000000000..5fae94b07c9
--- /dev/null
+++ b/misc/suite-helpers/change-notes/released/0.3.4.md
@@ -0,0 +1,3 @@
+## 0.3.4
+
+No user-facing changes.
diff --git a/misc/suite-helpers/codeql-pack.release.yml b/misc/suite-helpers/codeql-pack.release.yml
index 9da182d3394..5ed15c24b9c 100644
--- a/misc/suite-helpers/codeql-pack.release.yml
+++ b/misc/suite-helpers/codeql-pack.release.yml
@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 0.3.3
+lastReleaseVersion: 0.3.4
diff --git a/misc/suite-helpers/qlpack.yml b/misc/suite-helpers/qlpack.yml
index 6a377895b2a..24d2ef3172f 100644
--- a/misc/suite-helpers/qlpack.yml
+++ b/misc/suite-helpers/qlpack.yml
@@ -1,3 +1,3 @@
 name: codeql/suite-helpers
-version: 0.3.4-dev
+version: 0.3.4
 groups: shared
diff --git a/python/ql/lib/CHANGELOG.md b/python/ql/lib/CHANGELOG.md
index ee84607f683..88107c85b2e 100644
--- a/python/ql/lib/CHANGELOG.md
+++ b/python/ql/lib/CHANGELOG.md
@@ -1,3 +1,9 @@
+## 0.6.4
+
+### Minor Analysis Improvements
+
+ * The ReDoS libraries in `semmle.code.python.security.regexp` has been moved to a shared pack inside the `shared/` folder, and the previous location has been deprecated.
+
 ## 0.6.3
 
 No user-facing changes.
diff --git a/python/ql/lib/change-notes/2022-10-31-shared-redos-pack.md b/python/ql/lib/change-notes/released/0.6.4.md
similarity index 59%
rename from python/ql/lib/change-notes/2022-10-31-shared-redos-pack.md
rename to python/ql/lib/change-notes/released/0.6.4.md
index 44212066527..75f233118a7 100644
--- a/python/ql/lib/change-notes/2022-10-31-shared-redos-pack.md
+++ b/python/ql/lib/change-notes/released/0.6.4.md
@@ -1,4 +1,5 @@
----
- category: minorAnalysis
----
- * The ReDoS libraries in `semmle.code.python.security.regexp` has been moved to a shared pack inside the `shared/` folder, and the previous location has been deprecated.
\ No newline at end of file
+## 0.6.4
+
+### Minor Analysis Improvements
+
+ * The ReDoS libraries in `semmle.code.python.security.regexp` has been moved to a shared pack inside the `shared/` folder, and the previous location has been deprecated.
diff --git a/python/ql/lib/codeql-pack.release.yml b/python/ql/lib/codeql-pack.release.yml
index b7dafe32c5d..ced8cf94614 100644
--- a/python/ql/lib/codeql-pack.release.yml
+++ b/python/ql/lib/codeql-pack.release.yml
@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 0.6.3
+lastReleaseVersion: 0.6.4
diff --git a/python/ql/lib/qlpack.yml b/python/ql/lib/qlpack.yml
index cf9d72aa9d2..ad7d4faa837 100644
--- a/python/ql/lib/qlpack.yml
+++ b/python/ql/lib/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/python-all
-version: 0.6.4-dev
+version: 0.6.4
 groups: python
 dbscheme: semmlecode.python.dbscheme
 extractor: python
diff --git a/python/ql/src/CHANGELOG.md b/python/ql/src/CHANGELOG.md
index 9e30f0aba2f..8c5b1bbc2ed 100644
--- a/python/ql/src/CHANGELOG.md
+++ b/python/ql/src/CHANGELOG.md
@@ -1,3 +1,7 @@
+## 0.5.4
+
+No user-facing changes.
+
 ## 0.5.3
 
 No user-facing changes.
diff --git a/python/ql/src/change-notes/released/0.5.4.md b/python/ql/src/change-notes/released/0.5.4.md
new file mode 100644
index 00000000000..1686ab4354d
--- /dev/null
+++ b/python/ql/src/change-notes/released/0.5.4.md
@@ -0,0 +1,3 @@
+## 0.5.4
+
+No user-facing changes.
diff --git a/python/ql/src/codeql-pack.release.yml b/python/ql/src/codeql-pack.release.yml
index 2164e038a5d..cd3f72e2513 100644
--- a/python/ql/src/codeql-pack.release.yml
+++ b/python/ql/src/codeql-pack.release.yml
@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 0.5.3
+lastReleaseVersion: 0.5.4
diff --git a/python/ql/src/qlpack.yml b/python/ql/src/qlpack.yml
index c5f06d5b464..6e3ab19be4b 100644
--- a/python/ql/src/qlpack.yml
+++ b/python/ql/src/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/python-queries
-version: 0.5.4-dev
+version: 0.5.4
 groups: 
   - python
   - queries
diff --git a/ruby/ql/lib/CHANGELOG.md b/ruby/ql/lib/CHANGELOG.md
index c92874cdbb7..7d0ff13d907 100644
--- a/ruby/ql/lib/CHANGELOG.md
+++ b/ruby/ql/lib/CHANGELOG.md
@@ -1,3 +1,17 @@
+## 0.4.4
+
+### Minor Analysis Improvements
+
+* Data flow through the `ActiveSupport` extension `Enumerable#index_by` is now modeled.
+* The `codeql.ruby.Concepts` library now has a `SqlConstruction` class, in addition to the existing `SqlExecution` class.
+* Calls to `Arel.sql` are now modeled as instances of the new `SqlConstruction` concept.
+* Arguments to RPC endpoints (public methods) on subclasses of `ActionCable::Channel::Base` are now recognized as sources of remote user input.
+* Taint flow through the `ActiveSupport` extensions `Hash#reverse_merge` and `Hash:reverse_merge!`, and their aliases, is now modeled more generally, where previously it was only modeled in the context of `ActionController` parameters.
+* Calls to `logger` in `ActiveSupport` actions are now recognised as logger instances.
+* Calls to `send_data` in `ActiveSupport` actions are recognised as HTTP responses.
+* Calls to `body_stream` in `ActiveSupport` actions are recognised as HTTP request accesses.
+* The `ActiveSupport` extensions `Object#try` and `Object#try!` are now recognised as code executions.
+
 ## 0.4.3
 
 ### Minor Analysis Improvements
diff --git a/ruby/ql/lib/change-notes/2022-10-28-try-code-execution.md b/ruby/ql/lib/change-notes/2022-10-28-try-code-execution.md
deleted file mode 100644
index af5b1cb59e4..00000000000
--- a/ruby/ql/lib/change-notes/2022-10-28-try-code-execution.md
+++ /dev/null
@@ -1,4 +0,0 @@
----
-category: minorAnalysis
----
-* The `ActiveSupport` extensions `Object#try` and `Object#try!` are now recognised as code executions.
diff --git a/ruby/ql/lib/change-notes/2022-11-01-actioncontroller-logger.md b/ruby/ql/lib/change-notes/2022-11-01-actioncontroller-logger.md
deleted file mode 100644
index 367665ac61a..00000000000
--- a/ruby/ql/lib/change-notes/2022-11-01-actioncontroller-logger.md
+++ /dev/null
@@ -1,6 +0,0 @@
----
-category: minorAnalysis
----
-* Calls to `logger` in `ActiveSupport` actions are now recognised as logger instances.
-* Calls to `send_data` in `ActiveSupport` actions are recognised as HTTP responses.
-* Calls to `body_stream` in `ActiveSupport` actions are recognised as HTTP request accesses.
diff --git a/ruby/ql/lib/change-notes/2022-11-08-activesupport-hash-extensions.md b/ruby/ql/lib/change-notes/2022-11-08-activesupport-hash-extensions.md
deleted file mode 100644
index e979c49ce0a..00000000000
--- a/ruby/ql/lib/change-notes/2022-11-08-activesupport-hash-extensions.md
+++ /dev/null
@@ -1,4 +0,0 @@
----
-category: minorAnalysis
----
-* Taint flow through the `ActiveSupport` extensions `Hash#reverse_merge` and `Hash:reverse_merge!`, and their aliases, is now modeled more generally, where previously it was only modeled in the context of `ActionController` parameters.
diff --git a/ruby/ql/lib/change-notes/2022-11-09-actioncable-channels.md b/ruby/ql/lib/change-notes/2022-11-09-actioncable-channels.md
deleted file mode 100644
index 3248fc194e0..00000000000
--- a/ruby/ql/lib/change-notes/2022-11-09-actioncable-channels.md
+++ /dev/null
@@ -1,4 +0,0 @@
----
-category: minorAnalysis
----
-* Arguments to RPC endpoints (public methods) on subclasses of `ActionCable::Channel::Base` are now recognized as sources of remote user input.
diff --git a/ruby/ql/lib/change-notes/2022-11-10-arel-sql.md b/ruby/ql/lib/change-notes/2022-11-10-arel-sql.md
deleted file mode 100644
index e803d0e0895..00000000000
--- a/ruby/ql/lib/change-notes/2022-11-10-arel-sql.md
+++ /dev/null
@@ -1,5 +0,0 @@
----
-category: minorAnalysis
----
-* The `codeql.ruby.Concepts` library now has a `SqlConstruction` class, in addition to the existing `SqlExecution` class.
-* Calls to `Arel.sql` are now modeled as instances of the new `SqlConstruction` concept.
diff --git a/ruby/ql/lib/change-notes/2022-11-14-activesupport-enumerable-index-by.md b/ruby/ql/lib/change-notes/2022-11-14-activesupport-enumerable-index-by.md
deleted file mode 100644
index 812c292dd94..00000000000
--- a/ruby/ql/lib/change-notes/2022-11-14-activesupport-enumerable-index-by.md
+++ /dev/null
@@ -1,4 +0,0 @@
----
-category: minorAnalysis
----
-* Data flow through the `ActiveSupport` extension `Enumerable#index_by` is now modeled.
diff --git a/ruby/ql/lib/change-notes/released/0.4.4.md b/ruby/ql/lib/change-notes/released/0.4.4.md
new file mode 100644
index 00000000000..6147687886b
--- /dev/null
+++ b/ruby/ql/lib/change-notes/released/0.4.4.md
@@ -0,0 +1,13 @@
+## 0.4.4
+
+### Minor Analysis Improvements
+
+* Data flow through the `ActiveSupport` extension `Enumerable#index_by` is now modeled.
+* The `codeql.ruby.Concepts` library now has a `SqlConstruction` class, in addition to the existing `SqlExecution` class.
+* Calls to `Arel.sql` are now modeled as instances of the new `SqlConstruction` concept.
+* Arguments to RPC endpoints (public methods) on subclasses of `ActionCable::Channel::Base` are now recognized as sources of remote user input.
+* Taint flow through the `ActiveSupport` extensions `Hash#reverse_merge` and `Hash:reverse_merge!`, and their aliases, is now modeled more generally, where previously it was only modeled in the context of `ActionController` parameters.
+* Calls to `logger` in `ActiveSupport` actions are now recognised as logger instances.
+* Calls to `send_data` in `ActiveSupport` actions are recognised as HTTP responses.
+* Calls to `body_stream` in `ActiveSupport` actions are recognised as HTTP request accesses.
+* The `ActiveSupport` extensions `Object#try` and `Object#try!` are now recognised as code executions.
diff --git a/ruby/ql/lib/codeql-pack.release.yml b/ruby/ql/lib/codeql-pack.release.yml
index 1ec9c4ea5d9..e9b57993a01 100644
--- a/ruby/ql/lib/codeql-pack.release.yml
+++ b/ruby/ql/lib/codeql-pack.release.yml
@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 0.4.3
+lastReleaseVersion: 0.4.4
diff --git a/ruby/ql/lib/qlpack.yml b/ruby/ql/lib/qlpack.yml
index 016f75260eb..cf26086c71c 100644
--- a/ruby/ql/lib/qlpack.yml
+++ b/ruby/ql/lib/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/ruby-all
-version: 0.4.4-dev
+version: 0.4.4
 groups: ruby
 extractor: ruby
 dbscheme: ruby.dbscheme
diff --git a/ruby/ql/src/CHANGELOG.md b/ruby/ql/src/CHANGELOG.md
index 1e45bb15389..ea095374247 100644
--- a/ruby/ql/src/CHANGELOG.md
+++ b/ruby/ql/src/CHANGELOG.md
@@ -1,3 +1,13 @@
+## 0.4.4
+
+### New Queries
+
+* Added a new query, `rb/shell-command-constructed-from-input`, to detect libraries that unsafely construct shell commands from their inputs.
+
+### Minor Analysis Improvements
+
+* The `rb/sql-injection` query now considers consider SQL constructions, such as calls to `Arel.sql`, as sinks.
+
 ## 0.4.3
 
 ### Minor Analysis Improvements
diff --git a/ruby/ql/src/change-notes/2022-10-10-unsafe-shell-command-construction.md b/ruby/ql/src/change-notes/2022-10-10-unsafe-shell-command-construction.md
deleted file mode 100644
index fba6a9304cf..00000000000
--- a/ruby/ql/src/change-notes/2022-10-10-unsafe-shell-command-construction.md
+++ /dev/null
@@ -1,4 +0,0 @@
----
-category: newQuery
----
-* Added a new query, `rb/shell-command-constructed-from-input`, to detect libraries that unsafely construct shell commands from their inputs.
diff --git a/ruby/ql/src/change-notes/2022-11-10-arel-sql.md b/ruby/ql/src/change-notes/2022-11-10-arel-sql.md
deleted file mode 100644
index 918e46a9d9b..00000000000
--- a/ruby/ql/src/change-notes/2022-11-10-arel-sql.md
+++ /dev/null
@@ -1,4 +0,0 @@
----
-category: minorAnalysis
----
-* The `rb/sql-injection` query now considers consider SQL constructions, such as calls to `Arel.sql`, as sinks.
diff --git a/ruby/ql/src/change-notes/released/0.4.4.md b/ruby/ql/src/change-notes/released/0.4.4.md
new file mode 100644
index 00000000000..59be09518f7
--- /dev/null
+++ b/ruby/ql/src/change-notes/released/0.4.4.md
@@ -0,0 +1,9 @@
+## 0.4.4
+
+### New Queries
+
+* Added a new query, `rb/shell-command-constructed-from-input`, to detect libraries that unsafely construct shell commands from their inputs.
+
+### Minor Analysis Improvements
+
+* The `rb/sql-injection` query now considers consider SQL constructions, such as calls to `Arel.sql`, as sinks.
diff --git a/ruby/ql/src/codeql-pack.release.yml b/ruby/ql/src/codeql-pack.release.yml
index 1ec9c4ea5d9..e9b57993a01 100644
--- a/ruby/ql/src/codeql-pack.release.yml
+++ b/ruby/ql/src/codeql-pack.release.yml
@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 0.4.3
+lastReleaseVersion: 0.4.4
diff --git a/ruby/ql/src/qlpack.yml b/ruby/ql/src/qlpack.yml
index 93c261cc264..5d1a123e58a 100644
--- a/ruby/ql/src/qlpack.yml
+++ b/ruby/ql/src/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/ruby-queries
-version: 0.4.4-dev
+version: 0.4.4
 groups: 
   - ruby
   - queries
diff --git a/shared/regex/change-notes/2022-09-26-initial-version.md b/shared/regex/CHANGELOG.md
similarity index 76%
rename from shared/regex/change-notes/2022-09-26-initial-version.md
rename to shared/regex/CHANGELOG.md
index e4d6e0490c2..68156d29a72 100644
--- a/shared/regex/change-notes/2022-09-26-initial-version.md
+++ b/shared/regex/CHANGELOG.md
@@ -1,4 +1,5 @@
----
-category: minorAnalysis
----
+## 0.0.1
+
+### Minor Analysis Improvements
+
 * Initial release. Extracted common regex related code, including the ReDoS analysis, into a library pack to share code between languages.
diff --git a/shared/regex/change-notes/released/0.0.1.md b/shared/regex/change-notes/released/0.0.1.md
new file mode 100644
index 00000000000..68156d29a72
--- /dev/null
+++ b/shared/regex/change-notes/released/0.0.1.md
@@ -0,0 +1,5 @@
+## 0.0.1
+
+### Minor Analysis Improvements
+
+* Initial release. Extracted common regex related code, including the ReDoS analysis, into a library pack to share code between languages.
diff --git a/shared/regex/codeql-pack.release.yml b/shared/regex/codeql-pack.release.yml
new file mode 100644
index 00000000000..c6933410b71
--- /dev/null
+++ b/shared/regex/codeql-pack.release.yml
@@ -0,0 +1,2 @@
+---
+lastReleaseVersion: 0.0.1
diff --git a/shared/regex/qlpack.yml b/shared/regex/qlpack.yml
index 4b25672b6c5..c82cff186d0 100644
--- a/shared/regex/qlpack.yml
+++ b/shared/regex/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/regex
-version: 0.0.1-dev
+version: 0.0.1
 groups: shared
 library: true
 dependencies:
diff --git a/shared/ssa/CHANGELOG.md b/shared/ssa/CHANGELOG.md
index d26b43c4358..76932ab7a0f 100644
--- a/shared/ssa/CHANGELOG.md
+++ b/shared/ssa/CHANGELOG.md
@@ -1,3 +1,7 @@
+## 0.0.5
+
+No user-facing changes.
+
 ## 0.0.4
 
 No user-facing changes.
diff --git a/shared/ssa/change-notes/released/0.0.5.md b/shared/ssa/change-notes/released/0.0.5.md
new file mode 100644
index 00000000000..766ec2723b5
--- /dev/null
+++ b/shared/ssa/change-notes/released/0.0.5.md
@@ -0,0 +1,3 @@
+## 0.0.5
+
+No user-facing changes.
diff --git a/shared/ssa/codeql-pack.release.yml b/shared/ssa/codeql-pack.release.yml
index ec411a674bc..bb45a1ab018 100644
--- a/shared/ssa/codeql-pack.release.yml
+++ b/shared/ssa/codeql-pack.release.yml
@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 0.0.4
+lastReleaseVersion: 0.0.5
diff --git a/shared/ssa/qlpack.yml b/shared/ssa/qlpack.yml
index 80e454bf99f..7fb2ed664cb 100644
--- a/shared/ssa/qlpack.yml
+++ b/shared/ssa/qlpack.yml
@@ -1,4 +1,4 @@
 name: codeql/ssa
-version: 0.0.5-dev
+version: 0.0.5
 groups: shared
 library: true
diff --git a/shared/typos/CHANGELOG.md b/shared/typos/CHANGELOG.md
index 6741585b960..89e542713a7 100644
--- a/shared/typos/CHANGELOG.md
+++ b/shared/typos/CHANGELOG.md
@@ -1,3 +1,7 @@
+## 0.0.5
+
+No user-facing changes.
+
 ## 0.0.4
 
 No user-facing changes.
diff --git a/shared/typos/change-notes/released/0.0.5.md b/shared/typos/change-notes/released/0.0.5.md
new file mode 100644
index 00000000000..766ec2723b5
--- /dev/null
+++ b/shared/typos/change-notes/released/0.0.5.md
@@ -0,0 +1,3 @@
+## 0.0.5
+
+No user-facing changes.
diff --git a/shared/typos/codeql-pack.release.yml b/shared/typos/codeql-pack.release.yml
index ec411a674bc..bb45a1ab018 100644
--- a/shared/typos/codeql-pack.release.yml
+++ b/shared/typos/codeql-pack.release.yml
@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 0.0.4
+lastReleaseVersion: 0.0.5
diff --git a/shared/typos/qlpack.yml b/shared/typos/qlpack.yml
index 1bada6ef1ff..39df1ba73d5 100644
--- a/shared/typos/qlpack.yml
+++ b/shared/typos/qlpack.yml
@@ -1,4 +1,4 @@
 name: codeql/typos
-version: 0.0.5-dev
+version: 0.0.5
 groups: shared
 library: true

From 7c74350d5e50696f1fcb4e05ada34125e04d1ead Mon Sep 17 00:00:00 2001
From: Chris Smowton <smowton@github.com>
Date: Thu, 17 Nov 2022 16:51:21 +0000
Subject: [PATCH 0452/1420] Copyedit Java changelog

---
 java/ql/lib/CHANGELOG.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/java/ql/lib/CHANGELOG.md b/java/ql/lib/CHANGELOG.md
index 47c2cc4289d..f199a1a7589 100644
--- a/java/ql/lib/CHANGELOG.md
+++ b/java/ql/lib/CHANGELOG.md
@@ -2,8 +2,8 @@
 
 ### New Features
 
-* The new `string Compilation.getInfo(string)` provides access to some information about compilations.
 * Kotlin support is now in beta. This means that Java analyses will also include Kotlin code by default. Kotlin support can be disabled by setting `CODEQL_EXTRACTOR_JAVA_AGENT_DISABLE_KOTLIN` to `true` in the environment.
+* The new `string Compilation.getInfo(string)` predicate provides access to some information about compilations.
 
 ### Minor Analysis Improvements
 

From 2bd151ba9c3ed594d77e5dfc631094a2a1c9c12a Mon Sep 17 00:00:00 2001
From: Chris Smowton <smowton@github.com>
Date: Thu, 17 Nov 2022 16:54:33 +0000
Subject: [PATCH 0453/1420] Copyedit Java changelog

---
 java/ql/lib/CHANGELOG.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/java/ql/lib/CHANGELOG.md b/java/ql/lib/CHANGELOG.md
index f199a1a7589..32632d9ea68 100644
--- a/java/ql/lib/CHANGELOG.md
+++ b/java/ql/lib/CHANGELOG.md
@@ -7,7 +7,7 @@
 
 ### Minor Analysis Improvements
 
- * The ReDoS libraries in `semmle.code.java.security.regexp` has been moved to a shared pack inside the `shared/` folder, and the previous location has been deprecated.
+* The ReDoS libraries in `semmle.code.java.security.regexp` has been moved to a shared pack inside the `shared/` folder, and the previous location has been deprecated.
 * Added data flow summaries for tainted Android intents sent to activities via `Activity.startActivities`.
 
 ## 0.4.3

From e13eb79f5b95f326f11d112cec34fc7a4bc0d7ca Mon Sep 17 00:00:00 2001
From: Chris Smowton <smowton@github.com>
Date: Thu, 17 Nov 2022 16:55:26 +0000
Subject: [PATCH 0454/1420] Java: edit 0.4.4 release notes to match the
 changelog

---
 java/ql/lib/change-notes/released/0.4.4.md | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/java/ql/lib/change-notes/released/0.4.4.md b/java/ql/lib/change-notes/released/0.4.4.md
index 09858b4465d..ca76975d283 100644
--- a/java/ql/lib/change-notes/released/0.4.4.md
+++ b/java/ql/lib/change-notes/released/0.4.4.md
@@ -2,10 +2,10 @@
 
 ### New Features
 
-* The new `string Compilation.getInfo(string)` provides access to some information about compilations.
 * Kotlin support is now in beta. This means that Java analyses will also include Kotlin code by default. Kotlin support can be disabled by setting `CODEQL_EXTRACTOR_JAVA_AGENT_DISABLE_KOTLIN` to `true` in the environment.
+* The new `string Compilation.getInfo(string)` predicate provides access to some information about compilations.
 
 ### Minor Analysis Improvements
 
- * The ReDoS libraries in `semmle.code.java.security.regexp` has been moved to a shared pack inside the `shared/` folder, and the previous location has been deprecated.
+* The ReDoS libraries in `semmle.code.java.security.regexp` has been moved to a shared pack inside the `shared/` folder, and the previous location has been deprecated.
 * Added data flow summaries for tainted Android intents sent to activities via `Activity.startActivities`.

From 47f07d83b8f1efbcc281bcbd63d063231bb3d024 Mon Sep 17 00:00:00 2001
From: Chris Smowton <smowton@github.com>
Date: Thu, 17 Nov 2022 16:56:39 +0000
Subject: [PATCH 0455/1420] Copyedit Java src qlpack changelog

---
 java/ql/src/CHANGELOG.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/java/ql/src/CHANGELOG.md b/java/ql/src/CHANGELOG.md
index 78c032e50b4..8bbe06cf3fe 100644
--- a/java/ql/src/CHANGELOG.md
+++ b/java/ql/src/CHANGELOG.md
@@ -3,7 +3,7 @@
 ### New Queries
 
 * The query `java/insufficient-key-size` has been promoted from experimental to the main query pack. Its results will now appear by default. This query was originally [submitted as an experimental query by @luchua-bc](https://github.com/github/codeql/pull/4926).
-* Added a new query, `java/android/sensitive-keyboard-cache`, to detect instances of sensitive information possibly being saved to the keyboard cache.
+* Added a new query, `java/android/sensitive-keyboard-cache`, to detect instances of sensitive information possibly being saved to the Android keyboard cache.
 
 ## 0.4.3
 

From d45c35a02e54213fdf92e175e20112e4e515b406 Mon Sep 17 00:00:00 2001
From: Chris Smowton <smowton@github.com>
Date: Thu, 17 Nov 2022 16:57:08 +0000
Subject: [PATCH 0456/1420] Copyedit the Java src qlpack 0.4.4 release nnotes

---
 java/ql/src/change-notes/released/0.4.4.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/java/ql/src/change-notes/released/0.4.4.md b/java/ql/src/change-notes/released/0.4.4.md
index 6cf1320bbd1..849452aa9c0 100644
--- a/java/ql/src/change-notes/released/0.4.4.md
+++ b/java/ql/src/change-notes/released/0.4.4.md
@@ -3,4 +3,4 @@
 ### New Queries
 
 * The query `java/insufficient-key-size` has been promoted from experimental to the main query pack. Its results will now appear by default. This query was originally [submitted as an experimental query by @luchua-bc](https://github.com/github/codeql/pull/4926).
-* Added a new query, `java/android/sensitive-keyboard-cache`, to detect instances of sensitive information possibly being saved to the keyboard cache.
+* Added a new query, `java/android/sensitive-keyboard-cache`, to detect instances of sensitive information possibly being saved to the Android keyboard cache.

From 80b2f0d3cd65b74fcfce6057ed44b185ff9c949a Mon Sep 17 00:00:00 2001
From: Chris Smowton <smowton@github.com>
Date: Thu, 17 Nov 2022 17:01:43 +0000
Subject: [PATCH 0457/1420] Coopyedit Javascript changelog

---
 javascript/ql/src/CHANGELOG.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/javascript/ql/src/CHANGELOG.md b/javascript/ql/src/CHANGELOG.md
index 0783d222cb8..fe221bce7d3 100644
--- a/javascript/ql/src/CHANGELOG.md
+++ b/javascript/ql/src/CHANGELOG.md
@@ -2,7 +2,7 @@
 
 ### Minor Analysis Improvements
 
-* Added support for @hapi/glue and Hapi plugins to the frameworks/Hapi.qll library.
+* Added support for `@hapi/glue` and Hapi plugins to the `frameworks/Hapi.qll` library.
 
 ### Bug Fixes
 

From 0219c2b02b65cef13d829da295c868156037bc6b Mon Sep 17 00:00:00 2001
From: Chris Smowton <smowton@github.com>
Date: Thu, 17 Nov 2022 17:02:01 +0000
Subject: [PATCH 0458/1420] Copyedit Javascript changelog

---
 javascript/ql/src/change-notes/released/0.4.4.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/javascript/ql/src/change-notes/released/0.4.4.md b/javascript/ql/src/change-notes/released/0.4.4.md
index e423d671d22..90a5df9d9df 100644
--- a/javascript/ql/src/change-notes/released/0.4.4.md
+++ b/javascript/ql/src/change-notes/released/0.4.4.md
@@ -2,7 +2,7 @@
 
 ### Minor Analysis Improvements
 
-* Added support for @hapi/glue and Hapi plugins to the frameworks/Hapi.qll library.
+* Added support for `@hapi/glue` and Hapi plugins to the `frameworks/Hapi.qll` library.
 
 ### Bug Fixes
 

From 63fcbb5969c311d31b442014a695d4ef95f51f95 Mon Sep 17 00:00:00 2001
From: Chris Smowton <smowton@github.com>
Date: Thu, 17 Nov 2022 17:02:55 +0000
Subject: [PATCH 0459/1420] Copyedit Python release notes

---
 python/ql/lib/CHANGELOG.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/python/ql/lib/CHANGELOG.md b/python/ql/lib/CHANGELOG.md
index 88107c85b2e..fe35f8daf38 100644
--- a/python/ql/lib/CHANGELOG.md
+++ b/python/ql/lib/CHANGELOG.md
@@ -2,7 +2,7 @@
 
 ### Minor Analysis Improvements
 
- * The ReDoS libraries in `semmle.code.python.security.regexp` has been moved to a shared pack inside the `shared/` folder, and the previous location has been deprecated.
+ * The ReDoS libraries in `semmle.code.python.security.regexp` have been moved to a shared pack inside the `shared/` folder, and the previous location has been deprecated.
 
 ## 0.6.3
 

From 0deb2d4c5f4242c9b41f6ea239bfc1cd10175348 Mon Sep 17 00:00:00 2001
From: Chris Smowton <smowton@github.com>
Date: Thu, 17 Nov 2022 17:03:09 +0000
Subject: [PATCH 0460/1420] Copyedit Python release notes

---
 python/ql/lib/change-notes/released/0.6.4.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/python/ql/lib/change-notes/released/0.6.4.md b/python/ql/lib/change-notes/released/0.6.4.md
index 75f233118a7..9f12960721c 100644
--- a/python/ql/lib/change-notes/released/0.6.4.md
+++ b/python/ql/lib/change-notes/released/0.6.4.md
@@ -2,4 +2,4 @@
 
 ### Minor Analysis Improvements
 
- * The ReDoS libraries in `semmle.code.python.security.regexp` has been moved to a shared pack inside the `shared/` folder, and the previous location has been deprecated.
+ * The ReDoS libraries in `semmle.code.python.security.regexp` have been moved to a shared pack inside the `shared/` folder, and the previous location has been deprecated.

From 8b332778e3e75ac182dfe99adb1734b771a1cacf Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Nora=20Dimitrijevi=C4=87?= <d10c@users.noreply.github.com>
Date: Thu, 17 Nov 2022 18:08:06 +0100
Subject: [PATCH 0461/1420] Swift: update `@security-severity`

---
 swift/ql/src/queries/Security/CWE-094/UnsafeJsEval.ql | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/swift/ql/src/queries/Security/CWE-094/UnsafeJsEval.ql b/swift/ql/src/queries/Security/CWE-094/UnsafeJsEval.ql
index 41065a9d47d..cd96709b6f6 100644
--- a/swift/ql/src/queries/Security/CWE-094/UnsafeJsEval.ql
+++ b/swift/ql/src/queries/Security/CWE-094/UnsafeJsEval.ql
@@ -3,7 +3,7 @@
  * @description Evaluating JavaScript code containing a substring from a remote source may lead to remote code execution.
  * @kind path-problem
  * @problem.severity warning
- * @security-severity 6.1
+ * @security-severity 9.3
  * @precision high
  * @id swift/unsafe-js-eval
  * @tags security

From cf34dbd27632070958f9abb9b7f167886b5c7c9b Mon Sep 17 00:00:00 2001
From: Chris Smowton <smowton@github.com>
Date: Wed, 16 Nov 2022 12:33:32 +0000
Subject: [PATCH 0462/1420] Kotlin: format string literals like the Java
 annotaton extractor

Java's regular strings are formatted as they appear in source, but we don't easily have this information available in Kotlin. During annotation extraction however it guesses a source rendering because the source is not necessarily available. By formatting to match the annotation extractor, we prepare to ensure consistency with a Java database
when extracting annotations as seen by Kotlin.
---
 .../src/main/kotlin/KotlinFileExtractor.kt    |  19 +-
 .../PrintAst.expected                         |  26 +-
 .../kotlin_java_static_fields/test.expected   |  18 +-
 .../kotlin/nested_generic_types/test.expected |  18 +-
 .../kotlin/custom_plugin/PrintAst.expected    |   2 +-
 .../kotlin/custom_plugin/staticinit.expected  |   2 +-
 .../library-tests/classes/PrintAst.expected   |   6 +-
 .../collection-literals/PrintAst.expected     |   4 +-
 .../controlflow/basic/bbStmts.expected        |   4 +-
 .../controlflow/basic/getASuccessor.expected  |   8 +-
 .../data-classes/PrintAst.expected            |  10 +-
 .../dataflow/foreach/test.expected            |   8 +-
 .../library-tests/exprs/PrintAst.expected     |  40 +--
 .../kotlin/library-tests/exprs/binop.expected |   2 +-
 .../kotlin/library-tests/exprs/exprs.expected |  40 +--
 .../exprs_typeaccess/PrintAst.expected        |   2 +-
 .../extensions/methodaccesses.expected        |  22 +-
 .../extensions/parameters.expected            |  22 +-
 .../generic-inner-classes/test.expected       |   8 +-
 .../library-tests/generics/PrintAst.expected  |   8 +-
 .../java-map-methods/PrintAst.expected        |   4 +-
 .../jvmoverloads-annotation/PrintAst.expected |  10 +-
 .../jvmstatic-annotation/PrintAst.expected    |  16 +-
 .../library-tests/lateinit/PrintAst.expected  |   2 +-
 .../library-tests/literals/literals.expected  |   6 +-
 .../library-tests/methods/exprs.expected      |  16 +-
 .../operator-overloads/PrintAst.expected      |   8 +-
 .../parameter-defaults/PrintAst.expected      | 238 +++++++++---------
 .../reflection/PrintAst.expected              |  14 +-
 .../library-tests/stmts/PrintAst.expected     |   2 +-
 .../kotlin/library-tests/stmts/exprs.expected |   2 +-
 .../kotlin/library-tests/trap/diags.expected  |  14 +-
 .../kotlin/library-tests/trap/literals.ql     |   2 +-
 .../library-tests/trap/long_comments.kt       |   4 +-
 .../kotlin/library-tests/vararg/args.expected |  12 +-
 35 files changed, 320 insertions(+), 299 deletions(-)

diff --git a/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt b/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt
index 511b97fd4d0..489d1b85743 100644
--- a/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt
+++ b/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt
@@ -3395,6 +3395,23 @@ open class KotlinFileExtractor(
             extractExprContext(it, locId, callable, enclosingStmt)
         }
 
+    private fun escapeCharForQuotedLiteral(c: Char) =
+        when (c) {
+            '\r' -> "\\r"
+            '\n' -> "\\n"
+            '\t' -> "\\t"
+            '\\' -> "\\\\"
+            '"' -> "\\\""
+            else -> c.toString()
+        }
+
+    // Render a string literal as it might occur in Kotlin source. Note this is a reasonable guess; the real source
+    // could use other escape sequences to describe the same String. Importantly, this is the same guess the Java
+    // extractor makes regarding string literals occurring within annotations, which we need to coincide with to ensure
+    // database consistency.
+    private fun toQuotedLiteral(s: String) =
+        s.toCharArray().joinToString(separator = "", prefix = "\"", postfix = "\"") { c -> escapeCharForQuotedLiteral(c) }
+
     private fun extractExpression(e: IrExpression, callable: Label<out DbCallable>, parent: StmtExprParent) {
         with("expression", e) {
             when(e) {
@@ -3602,7 +3619,7 @@ open class KotlinFileExtractor(
                             tw.writeExprs_stringliteral(id, type.javaResult.id, exprParent.parent, exprParent.idx)
                             tw.writeExprsKotlinType(id, type.kotlinResult.id)
                             extractExprContext(id, locId, callable, exprParent.enclosingStmt)
-                            tw.writeNamestrings(v.toString(), v.toString(), id)
+                            tw.writeNamestrings(toQuotedLiteral(v.toString()), v.toString(), id)
                         }
                         v == null -> {
                             extractNull(e.type, tw.getLocation(e), exprParent.parent, exprParent.idx, callable, exprParent.enclosingStmt)
diff --git a/java/ql/integration-tests/all-platforms/kotlin/gradle_kotlinx_serialization/PrintAst.expected b/java/ql/integration-tests/all-platforms/kotlin/gradle_kotlinx_serialization/PrintAst.expected
index ae23298c033..4f056c3c4fb 100644
--- a/java/ql/integration-tests/all-platforms/kotlin/gradle_kotlinx_serialization/PrintAst.expected
+++ b/java/ql/integration-tests/all-platforms/kotlin/gradle_kotlinx_serialization/PrintAst.expected
@@ -180,15 +180,15 @@ app/src/main/kotlin/testProject/App.kt:
 #    0|       5: [BlockStmt] { ... }
 #    0|         0: [ReturnStmt] return ...
 #    0|           0: [StringTemplateExpr] "..."
-#    0|             0: [StringLiteral] Project(
-#    0|             1: [StringLiteral] name=
+#    0|             0: [StringLiteral] "Project("
+#    0|             1: [StringLiteral] "name="
 #    0|             2: [VarAccess] this.name
 #    0|               -1: [ThisAccess] this
-#    0|             3: [StringLiteral] , 
-#    0|             4: [StringLiteral] language=
+#    0|             3: [StringLiteral] ", "
+#    0|             4: [StringLiteral] "language="
 #    0|             5: [VarAccess] this.language
 #    0|               -1: [ThisAccess] this
-#    0|             6: [StringLiteral] )
+#    0|             6: [StringLiteral] ")"
 #    0|     9: [Method] write$Self
 #    0|       3: [TypeAccess] Unit
 #-----|       4: (Parameters)
@@ -405,19 +405,19 @@ app/src/main/kotlin/testProject/App.kt:
 #    7|               1: [LocalVariableDeclExpr] tmp0_serialDesc
 #    7|                 0: [ClassInstanceExpr] new PluginGeneratedSerialDescriptor(...)
 #    7|                   -3: [TypeAccess] PluginGeneratedSerialDescriptor
-#    7|                   0: [StringLiteral] testProject.Project
+#    7|                   0: [StringLiteral] "testProject.Project"
 #    7|                   1: [ThisAccess] $serializer.this
 #    7|                     0: [TypeAccess] $serializer
 #    7|                   2: [IntegerLiteral] 2
 #    7|             1: [ExprStmt] <Expr>;
 #    7|               0: [MethodAccess] addElement(...)
 #    7|                 -1: [VarAccess] tmp0_serialDesc
-#    7|                 0: [StringLiteral] name
+#    7|                 0: [StringLiteral] "name"
 #    7|                 1: [BooleanLiteral] false
 #    7|             2: [ExprStmt] <Expr>;
 #    7|               0: [MethodAccess] addElement(...)
 #    7|                 -1: [VarAccess] tmp0_serialDesc
-#    7|                 0: [StringLiteral] language
+#    7|                 0: [StringLiteral] "language"
 #    7|                 1: [BooleanLiteral] false
 #    7|             3: [ExprStmt] <Expr>;
 #    7|               0: [AssignExpr] ...=...
@@ -520,7 +520,7 @@ app/src/main/kotlin/testProject/App.kt:
 #   14|                   0: [VarAccess] X.this.id
 #   14|                     -1: [ThisAccess] X.this
 #   14|                       0: [TypeAccess] X
-#   16|                   1: [StringLiteral] X
+#   16|                   1: [StringLiteral] "X"
 #   14|             1: [WhenBranch] ... -> ...
 #   14|               0: [BooleanLiteral] true
 #   14|               1: [ExprStmt] <Expr>;
@@ -556,7 +556,7 @@ app/src/main/kotlin/testProject/App.kt:
 #   14|                     0: [ValueNEExpr] ... (value not-equals) ...
 #   14|                       0: [MethodAccess] getId(...)
 #   14|                         -1: [VarAccess] self
-#   16|                       1: [StringLiteral] X
+#   16|                       1: [StringLiteral] "X"
 #   14|               1: [ExprStmt] <Expr>;
 #   14|                 0: [MethodAccess] encodeStringElement(...)
 #   14|                   -1: [VarAccess] output
@@ -720,14 +720,14 @@ app/src/main/kotlin/testProject/App.kt:
 #   14|               1: [LocalVariableDeclExpr] tmp0_serialDesc
 #   14|                 0: [ClassInstanceExpr] new PluginGeneratedSerialDescriptor(...)
 #   14|                   -3: [TypeAccess] PluginGeneratedSerialDescriptor
-#   14|                   0: [StringLiteral] testProject.X
+#   14|                   0: [StringLiteral] "testProject.X"
 #   14|                   1: [ThisAccess] $serializer.this
 #   14|                     0: [TypeAccess] $serializer
 #   14|                   2: [IntegerLiteral] 1
 #   14|             1: [ExprStmt] <Expr>;
 #   14|               0: [MethodAccess] addElement(...)
 #   14|                 -1: [VarAccess] tmp0_serialDesc
-#   14|                 0: [StringLiteral] id
+#   14|                 0: [StringLiteral] "id"
 #   14|                 1: [BooleanLiteral] true
 #   14|             2: [ExprStmt] <Expr>;
 #   14|               0: [AssignExpr] ...=...
@@ -764,7 +764,7 @@ app/src/main/kotlin/testProject/App.kt:
 #   16|               0: [VarAccess] id
 #   16|     6: [FieldDeclaration] String id;
 #   16|       -1: [TypeAccess] String
-#   16|       0: [StringLiteral] X
+#   16|       0: [StringLiteral] "X"
 #   16|     7: [Method] getId
 #   16|       3: [TypeAccess] String
 #   16|       5: [BlockStmt] { ... }
diff --git a/java/ql/integration-tests/all-platforms/kotlin/kotlin_java_static_fields/test.expected b/java/ql/integration-tests/all-platforms/kotlin/kotlin_java_static_fields/test.expected
index 3581a178422..9f16308bdfc 100644
--- a/java/ql/integration-tests/all-platforms/kotlin/kotlin_java_static_fields/test.expected
+++ b/java/ql/integration-tests/all-platforms/kotlin/kotlin_java_static_fields/test.expected
@@ -1,26 +1,26 @@
 edges
 | hasFields.kt:5:5:5:34 | constField : String | ReadsFields.java:5:10:5:29 | HasFields.constField |
-| hasFields.kt:5:28:5:34 | taint : String | hasFields.kt:5:5:5:34 | constField : String |
+| hasFields.kt:5:28:5:34 | "taint" : String | hasFields.kt:5:5:5:34 | constField : String |
 | hasFields.kt:7:5:7:38 | lateinitField : String | ReadsFields.java:6:10:6:32 | HasFields.lateinitField |
 | hasFields.kt:7:14:7:38 | <set-?> : String | hasFields.kt:7:5:7:38 | lateinitField : String |
 | hasFields.kt:7:14:7:38 | <set-?> : String | hasFields.kt:7:14:7:38 | <set-?> : String |
 | hasFields.kt:9:5:9:50 | jvmFieldAnnotatedField : String | ReadsFields.java:7:10:7:41 | HasFields.jvmFieldAnnotatedField |
-| hasFields.kt:9:44:9:50 | taint : String | hasFields.kt:9:5:9:50 | jvmFieldAnnotatedField : String |
-| hasFields.kt:14:22:14:26 | taint : String | hasFields.kt:7:14:7:38 | <set-?> : String |
+| hasFields.kt:9:44:9:50 | "taint" : String | hasFields.kt:9:5:9:50 | jvmFieldAnnotatedField : String |
+| hasFields.kt:14:22:14:26 | "taint" : String | hasFields.kt:7:14:7:38 | <set-?> : String |
 nodes
 | ReadsFields.java:5:10:5:29 | HasFields.constField | semmle.label | HasFields.constField |
 | ReadsFields.java:6:10:6:32 | HasFields.lateinitField | semmle.label | HasFields.lateinitField |
 | ReadsFields.java:7:10:7:41 | HasFields.jvmFieldAnnotatedField | semmle.label | HasFields.jvmFieldAnnotatedField |
 | hasFields.kt:5:5:5:34 | constField : String | semmle.label | constField : String |
-| hasFields.kt:5:28:5:34 | taint : String | semmle.label | taint : String |
+| hasFields.kt:5:28:5:34 | "taint" : String | semmle.label | "taint" : String |
 | hasFields.kt:7:5:7:38 | lateinitField : String | semmle.label | lateinitField : String |
 | hasFields.kt:7:14:7:38 | <set-?> : String | semmle.label | <set-?> : String |
 | hasFields.kt:7:14:7:38 | <set-?> : String | semmle.label | <set-?> : String |
 | hasFields.kt:9:5:9:50 | jvmFieldAnnotatedField : String | semmle.label | jvmFieldAnnotatedField : String |
-| hasFields.kt:9:44:9:50 | taint : String | semmle.label | taint : String |
-| hasFields.kt:14:22:14:26 | taint : String | semmle.label | taint : String |
+| hasFields.kt:9:44:9:50 | "taint" : String | semmle.label | "taint" : String |
+| hasFields.kt:14:22:14:26 | "taint" : String | semmle.label | "taint" : String |
 subpaths
 #select
-| hasFields.kt:5:28:5:34 | taint : String | hasFields.kt:5:28:5:34 | taint : String | ReadsFields.java:5:10:5:29 | HasFields.constField | flow path |
-| hasFields.kt:9:44:9:50 | taint : String | hasFields.kt:9:44:9:50 | taint : String | ReadsFields.java:7:10:7:41 | HasFields.jvmFieldAnnotatedField | flow path |
-| hasFields.kt:14:22:14:26 | taint : String | hasFields.kt:14:22:14:26 | taint : String | ReadsFields.java:6:10:6:32 | HasFields.lateinitField | flow path |
+| hasFields.kt:5:28:5:34 | "taint" : String | hasFields.kt:5:28:5:34 | "taint" : String | ReadsFields.java:5:10:5:29 | HasFields.constField | flow path |
+| hasFields.kt:9:44:9:50 | "taint" : String | hasFields.kt:9:44:9:50 | "taint" : String | ReadsFields.java:7:10:7:41 | HasFields.jvmFieldAnnotatedField | flow path |
+| hasFields.kt:14:22:14:26 | "taint" : String | hasFields.kt:14:22:14:26 | "taint" : String | ReadsFields.java:6:10:6:32 | HasFields.lateinitField | flow path |
diff --git a/java/ql/integration-tests/all-platforms/kotlin/nested_generic_types/test.expected b/java/ql/integration-tests/all-platforms/kotlin/nested_generic_types/test.expected
index 27db355f838..94ec21eca1a 100644
--- a/java/ql/integration-tests/all-platforms/kotlin/nested_generic_types/test.expected
+++ b/java/ql/integration-tests/all-platforms/kotlin/nested_generic_types/test.expected
@@ -76,7 +76,7 @@ callArgs
 | KotlinUser.kt:10:34:10:65 | new InnerGeneric<String>(...) | KotlinUser.kt:10:14:10:32 | new OuterGeneric<Integer>(...) | -2 |
 | KotlinUser.kt:10:34:10:65 | new InnerGeneric<String>(...) | KotlinUser.kt:10:34:10:65 | InnerGeneric<String> | -3 |
 | KotlinUser.kt:10:34:10:65 | new InnerGeneric<String>(...) | KotlinUser.kt:10:47:10:49 | a | 0 |
-| KotlinUser.kt:10:34:10:65 | new InnerGeneric<String>(...) | KotlinUser.kt:10:53:10:63 | hello world | 1 |
+| KotlinUser.kt:10:34:10:65 | new InnerGeneric<String>(...) | KotlinUser.kt:10:53:10:63 | "hello world" | 1 |
 | KotlinUser.kt:11:13:11:31 | new OuterGeneric<Integer>(...) | KotlinUser.kt:11:13:11:31 | OuterGeneric<Integer> | -3 |
 | KotlinUser.kt:11:33:11:49 | new InnerNotGeneric<>(...) | KotlinUser.kt:11:13:11:31 | new OuterGeneric<Integer>(...) | -2 |
 | KotlinUser.kt:11:33:11:49 | new InnerNotGeneric<>(...) | KotlinUser.kt:11:33:11:49 | InnerNotGeneric<> | -3 |
@@ -88,10 +88,10 @@ callArgs
 | KotlinUser.kt:13:31:13:52 | new InnerGeneric<String>(...) | KotlinUser.kt:13:31:13:52 | InnerGeneric<String> | -3 |
 | KotlinUser.kt:14:26:14:63 | new InnerStaticGeneric<String>(...) | KotlinUser.kt:14:26:14:63 | InnerStaticGeneric<String> | -3 |
 | KotlinUser.kt:14:26:14:63 | new InnerStaticGeneric<String>(...) | KotlinUser.kt:14:45:14:47 | a | 0 |
-| KotlinUser.kt:14:26:14:63 | new InnerStaticGeneric<String>(...) | KotlinUser.kt:14:51:14:61 | hello world | 1 |
+| KotlinUser.kt:14:26:14:63 | new InnerStaticGeneric<String>(...) | KotlinUser.kt:14:51:14:61 | "hello world" | 1 |
 | KotlinUser.kt:15:13:15:39 | new OuterManyParams<Integer,String>(...) | KotlinUser.kt:15:13:15:39 | OuterManyParams<Integer,String> | -3 |
 | KotlinUser.kt:15:13:15:39 | new OuterManyParams<Integer,String>(...) | KotlinUser.kt:15:29:15:29 | 1 | 0 |
-| KotlinUser.kt:15:13:15:39 | new OuterManyParams<Integer,String>(...) | KotlinUser.kt:15:33:15:37 | hello | 1 |
+| KotlinUser.kt:15:13:15:39 | new OuterManyParams<Integer,String>(...) | KotlinUser.kt:15:33:15:37 | "hello" | 1 |
 | KotlinUser.kt:15:41:15:67 | new MiddleManyParams<Float,Double>(...) | KotlinUser.kt:15:13:15:39 | new OuterManyParams<Integer,String>(...) | -2 |
 | KotlinUser.kt:15:41:15:67 | new MiddleManyParams<Float,Double>(...) | KotlinUser.kt:15:41:15:67 | MiddleManyParams<Float,Double> | -3 |
 | KotlinUser.kt:15:41:15:67 | new MiddleManyParams<Float,Double>(...) | KotlinUser.kt:15:58:15:61 | 1.0 | 0 |
@@ -103,23 +103,23 @@ callArgs
 | KotlinUser.kt:15:89:15:99 | shortValue(...) | KotlinUser.kt:15:89:15:89 | 1 | -1 |
 | KotlinUser.kt:17:19:17:44 | returnsecond(...) | KotlinUser.kt:17:19:17:19 | a | -1 |
 | KotlinUser.kt:17:19:17:44 | returnsecond(...) | KotlinUser.kt:17:34:17:34 | 0 | 0 |
-| KotlinUser.kt:17:19:17:44 | returnsecond(...) | KotlinUser.kt:17:38:17:42 | hello | 1 |
+| KotlinUser.kt:17:19:17:44 | returnsecond(...) | KotlinUser.kt:17:38:17:42 | "hello" | 1 |
 | KotlinUser.kt:18:20:18:50 | returnsecond(...) | KotlinUser.kt:18:20:18:20 | a | -1 |
 | KotlinUser.kt:18:20:18:50 | returnsecond(...) | KotlinUser.kt:18:20:18:50 | Character | -2 |
 | KotlinUser.kt:18:20:18:50 | returnsecond(...) | KotlinUser.kt:18:35:18:35 | 0 | 0 |
-| KotlinUser.kt:18:20:18:50 | returnsecond(...) | KotlinUser.kt:18:39:18:43 | hello | 1 |
+| KotlinUser.kt:18:20:18:50 | returnsecond(...) | KotlinUser.kt:18:39:18:43 | "hello" | 1 |
 | KotlinUser.kt:18:20:18:50 | returnsecond(...) | KotlinUser.kt:18:47:18:49 | a | 2 |
 | KotlinUser.kt:19:19:19:31 | identity(...) | KotlinUser.kt:19:19:19:19 | b | -1 |
 | KotlinUser.kt:19:19:19:31 | identity(...) | KotlinUser.kt:19:30:19:30 | 5 | 0 |
 | KotlinUser.kt:20:20:20:39 | identity(...) | KotlinUser.kt:20:20:20:21 | b2 | -1 |
-| KotlinUser.kt:20:20:20:39 | identity(...) | KotlinUser.kt:20:33:20:37 | hello | 0 |
+| KotlinUser.kt:20:20:20:39 | identity(...) | KotlinUser.kt:20:33:20:37 | "hello" | 0 |
 | KotlinUser.kt:21:19:21:37 | identity(...) | KotlinUser.kt:21:19:21:19 | c | -1 |
-| KotlinUser.kt:21:19:21:37 | identity(...) | KotlinUser.kt:21:31:21:35 | world | 0 |
+| KotlinUser.kt:21:19:21:37 | identity(...) | KotlinUser.kt:21:31:21:35 | "world" | 0 |
 | KotlinUser.kt:22:19:22:39 | identity(...) | KotlinUser.kt:22:19:22:19 | d | -1 |
-| KotlinUser.kt:22:19:22:39 | identity(...) | KotlinUser.kt:22:31:22:37 | goodbye | 0 |
+| KotlinUser.kt:22:19:22:39 | identity(...) | KotlinUser.kt:22:31:22:37 | "goodbye" | 0 |
 | KotlinUser.kt:23:19:23:71 | returnSixth(...) | KotlinUser.kt:23:19:23:19 | e | -1 |
 | KotlinUser.kt:23:19:23:71 | returnSixth(...) | KotlinUser.kt:23:33:23:33 | 1 | 0 |
-| KotlinUser.kt:23:19:23:71 | returnSixth(...) | KotlinUser.kt:23:37:23:41 | hello | 1 |
+| KotlinUser.kt:23:19:23:71 | returnSixth(...) | KotlinUser.kt:23:37:23:41 | "hello" | 1 |
 | KotlinUser.kt:23:19:23:71 | returnSixth(...) | KotlinUser.kt:23:45:23:48 | 1.0 | 2 |
 | KotlinUser.kt:23:19:23:71 | returnSixth(...) | KotlinUser.kt:23:51:23:53 | 1.0 | 3 |
 | KotlinUser.kt:23:19:23:71 | returnSixth(...) | KotlinUser.kt:23:56:23:57 | 1 | 4 |
diff --git a/java/ql/integration-tests/linux-only/kotlin/custom_plugin/PrintAst.expected b/java/ql/integration-tests/linux-only/kotlin/custom_plugin/PrintAst.expected
index 51186ef7b15..6921b7541ad 100644
--- a/java/ql/integration-tests/linux-only/kotlin/custom_plugin/PrintAst.expected
+++ b/java/ql/integration-tests/linux-only/kotlin/custom_plugin/PrintAst.expected
@@ -50,7 +50,7 @@ d.kt:
 #    1|   1: [Class] D
 #    0|     2: [FieldDeclaration] String bar;
 #    0|       -1: [TypeAccess] String
-#    0|       0: [StringLiteral] Foobar
+#    0|       0: [StringLiteral] "Foobar"
 #    1|     3: [Constructor] D
 #    1|       5: [BlockStmt] { ... }
 #    1|         0: [SuperConstructorInvocationStmt] super(...)
diff --git a/java/ql/integration-tests/linux-only/kotlin/custom_plugin/staticinit.expected b/java/ql/integration-tests/linux-only/kotlin/custom_plugin/staticinit.expected
index 606bbd3f338..092e8241a3d 100644
--- a/java/ql/integration-tests/linux-only/kotlin/custom_plugin/staticinit.expected
+++ b/java/ql/integration-tests/linux-only/kotlin/custom_plugin/staticinit.expected
@@ -1 +1 @@
-| d.kt:0:0:0:0 | bar | d.kt:0:0:0:0 | Foobar |
+| d.kt:0:0:0:0 | bar | d.kt:0:0:0:0 | "Foobar" |
diff --git a/java/ql/test/kotlin/library-tests/classes/PrintAst.expected b/java/ql/test/kotlin/library-tests/classes/PrintAst.expected
index 698a4f874c9..6f19fb37fee 100644
--- a/java/ql/test/kotlin/library-tests/classes/PrintAst.expected
+++ b/java/ql/test/kotlin/library-tests/classes/PrintAst.expected
@@ -138,14 +138,14 @@ classes.kt:
 #   39|           0: [ExprStmt] <Expr>;
 #   39|             0: [MethodAccess] f(...)
 #   39|               -1: [TypeAccess] ClassesKt
-#   39|               0: [StringLiteral] init1
+#   39|               0: [StringLiteral] "init1"
 #   42|           1: [ExprStmt] <Expr>;
 #   42|             0: [KtInitializerAssignExpr] ...=...
 #   42|               0: [VarAccess] x
 #   45|           2: [ExprStmt] <Expr>;
 #   45|             0: [MethodAccess] f(...)
 #   45|               -1: [TypeAccess] ClassesKt
-#   45|               0: [StringLiteral] init2
+#   45|               0: [StringLiteral] "init2"
 #   36|         2: [ExprStmt] <Expr>;
 #   36|           0: [MethodAccess] f(...)
 #   36|             -1: [TypeAccess] ClassesKt
@@ -1119,7 +1119,7 @@ local_anonymous.kt:
 #   40|                   1: [BlockStmt] { ... }
 #   42|                     0: [LocalVariableDeclStmt] var ...;
 #   42|                       1: [LocalVariableDeclExpr] answer
-#   42|                         0: [StringLiteral] 42
+#   42|                         0: [StringLiteral] "42"
 #   40|           1: [ExprStmt] <Expr>;
 #   40|             0: [ClassInstanceExpr] new (...)
 #   40|               -3: [TypeAccess] Interface2
diff --git a/java/ql/test/kotlin/library-tests/collection-literals/PrintAst.expected b/java/ql/test/kotlin/library-tests/collection-literals/PrintAst.expected
index 99312685a0e..5a81043964b 100644
--- a/java/ql/test/kotlin/library-tests/collection-literals/PrintAst.expected
+++ b/java/ql/test/kotlin/library-tests/collection-literals/PrintAst.expected
@@ -39,8 +39,8 @@ test.kt:
 #    1|               0: [VarAccess] p0
 #    0|               1: [ArrayCreationExpr] new String[]
 #    0|                 -2: [ArrayInit] {...}
-#    0|                   0: [StringLiteral] hello
-#    0|                   1: [StringLiteral] world
+#    0|                   0: [StringLiteral] "hello"
+#    0|                   1: [StringLiteral] "world"
 #    0|                 -1: [TypeAccess] String
 #    0|                 0: [IntegerLiteral] 2
 #    1|         1: [IfStmt] if (...)
diff --git a/java/ql/test/kotlin/library-tests/controlflow/basic/bbStmts.expected b/java/ql/test/kotlin/library-tests/controlflow/basic/bbStmts.expected
index 4e0724fca1f..b3f3c19341f 100644
--- a/java/ql/test/kotlin/library-tests/controlflow/basic/bbStmts.expected
+++ b/java/ql/test/kotlin/library-tests/controlflow/basic/bbStmts.expected
@@ -155,7 +155,7 @@
 | Test.kt:105:5:109:5 | <Expr>; | 5 | Test.kt:105:9:105:17 | ... (value not-equals) ... |
 | Test.kt:105:20:107:5 | { ... } | 0 | Test.kt:105:20:107:5 | { ... } |
 | Test.kt:105:20:107:5 | { ... } | 1 | Test.kt:106:9:106:29 | <Expr>; |
-| Test.kt:105:20:107:5 | { ... } | 2 | Test.kt:106:18:106:27 | x not null |
+| Test.kt:105:20:107:5 | { ... } | 2 | Test.kt:106:18:106:27 | "x not null" |
 | Test.kt:105:20:107:5 | { ... } | 3 | Test.kt:106:9:106:29 | println(...) |
 | Test.kt:107:16:109:5 | ... -> ... | 0 | Test.kt:107:16:109:5 | ... -> ... |
 | Test.kt:107:16:109:5 | ... -> ... | 1 | Test.kt:107:16:107:16 | y |
@@ -163,7 +163,7 @@
 | Test.kt:107:16:109:5 | ... -> ... | 3 | Test.kt:107:16:107:24 | ... (value not-equals) ... |
 | Test.kt:107:27:109:5 | { ... } | 0 | Test.kt:107:27:109:5 | { ... } |
 | Test.kt:107:27:109:5 | { ... } | 1 | Test.kt:108:9:108:29 | <Expr>; |
-| Test.kt:107:27:109:5 | { ... } | 2 | Test.kt:108:18:108:27 | y not null |
+| Test.kt:107:27:109:5 | { ... } | 2 | Test.kt:108:18:108:27 | "y not null" |
 | Test.kt:107:27:109:5 | { ... } | 3 | Test.kt:108:9:108:29 | println(...) |
 | Test.kt:112:1:116:1 | fn | 0 | Test.kt:112:1:116:1 | fn |
 | Test.kt:112:32:116:1 | { ... } | 0 | Test.kt:112:32:116:1 | { ... } |
diff --git a/java/ql/test/kotlin/library-tests/controlflow/basic/getASuccessor.expected b/java/ql/test/kotlin/library-tests/controlflow/basic/getASuccessor.expected
index bba6e9cbae7..ddd54d10b7b 100644
--- a/java/ql/test/kotlin/library-tests/controlflow/basic/getASuccessor.expected
+++ b/java/ql/test/kotlin/library-tests/controlflow/basic/getASuccessor.expected
@@ -207,20 +207,20 @@ missingSuccessor
 | Test.kt:105:9:107:5 | ... -> ... | WhenBranch | Test.kt:105:9:105:9 | x | VarAccess |
 | Test.kt:105:14:105:17 | null | NullLiteral | Test.kt:105:9:105:17 | ... (value not-equals) ... | ValueNEExpr |
 | Test.kt:105:20:107:5 | { ... } | BlockStmt | Test.kt:106:9:106:29 | <Expr>; | ExprStmt |
-| Test.kt:106:9:106:29 | <Expr>; | ExprStmt | Test.kt:106:18:106:27 | x not null | StringLiteral |
+| Test.kt:106:9:106:29 | <Expr>; | ExprStmt | Test.kt:106:18:106:27 | "x not null" | StringLiteral |
 | Test.kt:106:9:106:29 | ConsoleKt | TypeAccess | file://:0:0:0:0 | <none> | <none> |
 | Test.kt:106:9:106:29 | println(...) | MethodAccess | Test.kt:100:1:110:1 | fn | Method |
-| Test.kt:106:18:106:27 | x not null | StringLiteral | Test.kt:106:9:106:29 | println(...) | MethodAccess |
+| Test.kt:106:18:106:27 | "x not null" | StringLiteral | Test.kt:106:9:106:29 | println(...) | MethodAccess |
 | Test.kt:107:16:107:16 | y | VarAccess | Test.kt:107:21:107:24 | null | NullLiteral |
 | Test.kt:107:16:107:24 | ... (value not-equals) ... | ValueNEExpr | Test.kt:100:1:110:1 | fn | Method |
 | Test.kt:107:16:107:24 | ... (value not-equals) ... | ValueNEExpr | Test.kt:107:27:109:5 | { ... } | BlockStmt |
 | Test.kt:107:16:109:5 | ... -> ... | WhenBranch | Test.kt:107:16:107:16 | y | VarAccess |
 | Test.kt:107:21:107:24 | null | NullLiteral | Test.kt:107:16:107:24 | ... (value not-equals) ... | ValueNEExpr |
 | Test.kt:107:27:109:5 | { ... } | BlockStmt | Test.kt:108:9:108:29 | <Expr>; | ExprStmt |
-| Test.kt:108:9:108:29 | <Expr>; | ExprStmt | Test.kt:108:18:108:27 | y not null | StringLiteral |
+| Test.kt:108:9:108:29 | <Expr>; | ExprStmt | Test.kt:108:18:108:27 | "y not null" | StringLiteral |
 | Test.kt:108:9:108:29 | ConsoleKt | TypeAccess | file://:0:0:0:0 | <none> | <none> |
 | Test.kt:108:9:108:29 | println(...) | MethodAccess | Test.kt:100:1:110:1 | fn | Method |
-| Test.kt:108:18:108:27 | y not null | StringLiteral | Test.kt:108:9:108:29 | println(...) | MethodAccess |
+| Test.kt:108:18:108:27 | "y not null" | StringLiteral | Test.kt:108:9:108:29 | println(...) | MethodAccess |
 | Test.kt:112:1:116:1 | Unit | TypeAccess | file://:0:0:0:0 | <none> | <none> |
 | Test.kt:112:1:116:1 | fn | Method | file://:0:0:0:0 | <none> | <none> |
 | Test.kt:112:8:112:17 | boolean | TypeAccess | file://:0:0:0:0 | <none> | <none> |
diff --git a/java/ql/test/kotlin/library-tests/data-classes/PrintAst.expected b/java/ql/test/kotlin/library-tests/data-classes/PrintAst.expected
index d52888544dc..7ea9b169c7c 100644
--- a/java/ql/test/kotlin/library-tests/data-classes/PrintAst.expected
+++ b/java/ql/test/kotlin/library-tests/data-classes/PrintAst.expected
@@ -145,19 +145,19 @@ dc.kt:
 #    0|       5: [BlockStmt] { ... }
 #    0|         0: [ReturnStmt] return ...
 #    0|           0: [StringTemplateExpr] "..."
-#    0|             0: [StringLiteral] ProtoMapValue(
-#    0|             1: [StringLiteral] bytes=
+#    0|             0: [StringLiteral] "ProtoMapValue("
+#    0|             1: [StringLiteral] "bytes="
 #    0|             2: [MethodAccess] toString(...)
 #    0|               -1: [TypeAccess] Arrays
 #    0|               0: [VarAccess] this.bytes
 #    0|                 -1: [ThisAccess] this
-#    0|             3: [StringLiteral] , 
-#    0|             4: [StringLiteral] strs=
+#    0|             3: [StringLiteral] ", "
+#    0|             4: [StringLiteral] "strs="
 #    0|             5: [MethodAccess] toString(...)
 #    0|               -1: [TypeAccess] Arrays
 #    0|               0: [VarAccess] this.strs
 #    0|                 -1: [ThisAccess] this
-#    0|             6: [StringLiteral] )
+#    0|             6: [StringLiteral] ")"
 #    1|     8: [Constructor] ProtoMapValue
 #-----|       4: (Parameters)
 #    1|         0: [Parameter] bytes
diff --git a/java/ql/test/kotlin/library-tests/dataflow/foreach/test.expected b/java/ql/test/kotlin/library-tests/dataflow/foreach/test.expected
index f204c12ebe2..7c7b382a9ad 100644
--- a/java/ql/test/kotlin/library-tests/dataflow/foreach/test.expected
+++ b/java/ql/test/kotlin/library-tests/dataflow/foreach/test.expected
@@ -2,7 +2,7 @@
 | C1.java:10:44:10:46 | "a" | C1.java:12:17:12:20 | ...[...] |
 | C1.java:10:44:10:46 | "a" | C1.java:15:20:15:23 | ...[...] |
 | C1.java:10:44:10:46 | "a" | C1.java:19:20:19:20 | s |
-| C2.kt:8:32:8:32 | a | C2.kt:9:14:9:14 | l |
-| C2.kt:8:32:8:32 | a | C2.kt:10:14:10:17 | ...[...] |
-| C2.kt:8:32:8:32 | a | C2.kt:12:18:12:21 | ...[...] |
-| C2.kt:8:32:8:32 | a | C2.kt:15:18:15:18 | s |
+| C2.kt:8:32:8:32 | "a" | C2.kt:9:14:9:14 | l |
+| C2.kt:8:32:8:32 | "a" | C2.kt:10:14:10:17 | ...[...] |
+| C2.kt:8:32:8:32 | "a" | C2.kt:12:18:12:21 | ...[...] |
+| C2.kt:8:32:8:32 | "a" | C2.kt:15:18:15:18 | s |
diff --git a/java/ql/test/kotlin/library-tests/exprs/PrintAst.expected b/java/ql/test/kotlin/library-tests/exprs/PrintAst.expected
index f821bdadd5b..78bf583ec0d 100644
--- a/java/ql/test/kotlin/library-tests/exprs/PrintAst.expected
+++ b/java/ql/test/kotlin/library-tests/exprs/PrintAst.expected
@@ -171,7 +171,7 @@ delegatedProperties.kt:
 #    7|                         0: [ExprStmt] <Expr>;
 #    7|                           0: [MethodAccess] println(...)
 #    7|                             -1: [TypeAccess] ConsoleKt
-#    7|                             0: [StringLiteral] init
+#    7|                             0: [StringLiteral] "init"
 #    8|                         1: [ReturnStmt] return ...
 #    8|                           0: [IntegerLiteral] 5
 #    6|                   -3: [TypeAccess] Function0<Integer>
@@ -2459,10 +2459,10 @@ exprs.kt:
 #  123|             0: [CharacterLiteral] x
 #  124|         106: [LocalVariableDeclStmt] var ...;
 #  124|           1: [LocalVariableDeclExpr] str
-#  124|             0: [StringLiteral] string lit
+#  124|             0: [StringLiteral] "string lit"
 #  125|         107: [LocalVariableDeclStmt] var ...;
 #  125|           1: [LocalVariableDeclExpr] strWithQuote
-#  125|             0: [StringLiteral] string " lit
+#  125|             0: [StringLiteral] "string \" lit"
 #  126|         108: [LocalVariableDeclStmt] var ...;
 #  126|           1: [LocalVariableDeclExpr] b6
 #  126|             0: [InstanceOfExpr] ...instanceof...
@@ -2480,34 +2480,34 @@ exprs.kt:
 #  128|               1: [VarAccess] b7
 #  129|         111: [LocalVariableDeclStmt] var ...;
 #  129|           1: [LocalVariableDeclExpr] str1
-#  129|             0: [StringLiteral] string lit
+#  129|             0: [StringLiteral] "string lit"
 #  130|         112: [LocalVariableDeclStmt] var ...;
 #  130|           1: [LocalVariableDeclExpr] str2
-#  130|             0: [StringLiteral] string lit
+#  130|             0: [StringLiteral] "string lit"
 #  131|         113: [LocalVariableDeclStmt] var ...;
 #  131|           1: [LocalVariableDeclExpr] str3
 #  131|             0: [NullLiteral] null
 #  132|         114: [LocalVariableDeclStmt] var ...;
 #  132|           1: [LocalVariableDeclExpr] str4
 #  132|             0: [StringTemplateExpr] "..."
-#  132|               0: [StringLiteral] foo 
+#  132|               0: [StringLiteral] "foo "
 #  132|               1: [VarAccess] str1
-#  132|               2: [StringLiteral]  bar 
+#  132|               2: [StringLiteral] " bar "
 #  132|               3: [VarAccess] str2
-#  132|               4: [StringLiteral]  baz
+#  132|               4: [StringLiteral] " baz"
 #  133|         115: [LocalVariableDeclStmt] var ...;
 #  133|           1: [LocalVariableDeclExpr] str5
 #  133|             0: [StringTemplateExpr] "..."
-#  133|               0: [StringLiteral] foo 
+#  133|               0: [StringLiteral] "foo "
 #  133|               1: [AddExpr] ... + ...
 #  133|                 0: [VarAccess] str1
 #  133|                 1: [VarAccess] str2
-#  133|               2: [StringLiteral]  bar 
+#  133|               2: [StringLiteral] " bar "
 #  133|               3: [MethodAccess] stringPlus(...)
 #  133|                 -1: [TypeAccess] Intrinsics
 #  133|                 0: [VarAccess] str2
 #  133|                 1: [VarAccess] str1
-#  133|               4: [StringLiteral]  baz
+#  133|               4: [StringLiteral] " baz"
 #  134|         116: [LocalVariableDeclStmt] var ...;
 #  134|           1: [LocalVariableDeclExpr] str6
 #  134|             0: [AddExpr] ... + ...
@@ -3531,12 +3531,12 @@ exprs.kt:
 #  215|           1: [LocalVariableDeclExpr] d0
 #  215|             0: [MethodAccess] valueOf(...)
 #  215|               -1: [TypeAccess] Color
-#  215|               0: [StringLiteral] GREEN
+#  215|               0: [StringLiteral] "GREEN"
 #  216|         8: [LocalVariableDeclStmt] var ...;
 #  216|           1: [LocalVariableDeclExpr] d1
 #  216|             0: [MethodAccess] valueOf(...)
 #  216|               -1: [TypeAccess] Color
-#  216|               0: [StringLiteral] GREEN
+#  216|               0: [StringLiteral] "GREEN"
 #  224|   11: [Class] SomeClass1
 #  224|     1: [Constructor] SomeClass1
 #  224|       5: [BlockStmt] { ... }
@@ -4468,7 +4468,7 @@ funcExprs.kt:
 #   36|                       0: [TypeAccess] int
 #   36|                   5: [BlockStmt] { ... }
 #   36|                     0: [ReturnStmt] return ...
-#   36|                       0: [StringLiteral] 
+#   36|                       0: [StringLiteral] ""
 #   36|               -3: [TypeAccess] FunctionN<String>
 #   36|                 0: [TypeAccess] String
 #   38|         14: [ExprStmt] <Expr>;
@@ -5316,7 +5316,7 @@ funcExprs.kt:
 #   90|                       0: [TypeAccess] int
 #   90|                   5: [BlockStmt] { ... }
 #   90|                     0: [ReturnStmt] return ...
-#   90|                       0: [StringLiteral] 
+#   90|                       0: [StringLiteral] ""
 #   90|               -3: [TypeAccess] FunctionN<String>
 #   90|                 0: [TypeAccess] String
 #   91|         5: [ExprStmt] <Expr>;
@@ -5407,7 +5407,7 @@ funcExprs.kt:
 #   94|                       0: [TypeAccess] int
 #   94|                   5: [BlockStmt] { ... }
 #   94|                     0: [ReturnStmt] return ...
-#   94|                       0: [StringLiteral] 
+#   94|                       0: [StringLiteral] ""
 #   94|               -3: [TypeAccess] Function22<Integer,Integer,Integer,Integer,Integer,Integer,Integer,Integer,Integer,Integer,Integer,Integer,Integer,Integer,Integer,Integer,Integer,Integer,Integer,Integer,Integer,Integer,String>
 #   94|                 0: [TypeAccess] Integer
 #   94|                 1: [TypeAccess] Integer
@@ -5599,7 +5599,7 @@ funcExprs.kt:
 #   70|           0: [TypeAccess] int
 #   70|       5: [BlockStmt] { ... }
 #   70|         0: [ReturnStmt] return ...
-#   70|           0: [StringLiteral] 
+#   70|           0: [StringLiteral] ""
 #   73|   4: [Class] Class3
 #   73|     3: [Constructor] Class3
 #   73|       5: [BlockStmt] { ... }
@@ -5625,7 +5625,7 @@ funcExprs.kt:
 #   75|                           0: [TypeAccess] Integer
 #   75|                   5: [BlockStmt] { ... }
 #   75|                     0: [ReturnStmt] return ...
-#   75|                       0: [StringLiteral] a
+#   75|                       0: [StringLiteral] "a"
 #   75|               -3: [TypeAccess] Function1<Generic<Generic<Integer>>,String>
 #   75|                 0: [TypeAccess] Generic<Generic<Integer>>
 #   75|                   0: [TypeAccess] Generic<Integer>
@@ -6014,7 +6014,7 @@ samConversion.kt:
 #    7|                         0: [ReturnStmt] return ...
 #    7|                           0: [ValueEQExpr] ... (value equals) ...
 #    7|                             0: [ExtensionReceiverAccess] this
-#    7|                             1: [StringLiteral] 
+#    7|                             1: [StringLiteral] ""
 #    7|                   -3: [TypeAccess] Function2<String,Integer,Boolean>
 #    7|                     0: [TypeAccess] String
 #    7|                     1: [TypeAccess] Integer
@@ -7058,7 +7058,7 @@ whenExpr.kt:
 #    6|                     1: [ThrowStmt] throw ...
 #    6|                       0: [ClassInstanceExpr] new Exception(...)
 #    6|                         -3: [TypeAccess] Exception
-#    6|                         0: [StringLiteral] No threes please
+#    6|                         0: [StringLiteral] "No threes please"
 #    7|                   4: [WhenBranch] ... -> ...
 #    7|                     0: [BooleanLiteral] true
 #    7|                     1: [ExprStmt] <Expr>;
diff --git a/java/ql/test/kotlin/library-tests/exprs/binop.expected b/java/ql/test/kotlin/library-tests/exprs/binop.expected
index 4c08b123a68..f69701028d5 100644
--- a/java/ql/test/kotlin/library-tests/exprs/binop.expected
+++ b/java/ql/test/kotlin/library-tests/exprs/binop.expected
@@ -127,7 +127,7 @@
 | localFunctionCalls.kt:5:25:5:29 | ... + ... | localFunctionCalls.kt:5:25:5:25 | i | localFunctionCalls.kt:5:29:5:29 | x |
 | samConversion.kt:2:33:2:38 | ... % ... | samConversion.kt:2:33:2:34 | it | samConversion.kt:2:38:2:38 | 2 |
 | samConversion.kt:2:33:2:43 | ... (value equals) ... | samConversion.kt:2:33:2:38 | ... % ... | samConversion.kt:2:43:2:43 | 0 |
-| samConversion.kt:7:36:7:45 | ... (value equals) ... | samConversion.kt:7:36:7:39 | this | samConversion.kt:7:44:7:45 |  |
+| samConversion.kt:7:36:7:45 | ... (value equals) ... | samConversion.kt:7:36:7:39 | this | samConversion.kt:7:44:7:45 | "" |
 | samConversion.kt:10:18:10:22 | ... % ... | samConversion.kt:10:18:10:18 | j | samConversion.kt:10:22:10:22 | 2 |
 | samConversion.kt:10:18:10:27 | ... (value equals) ... | samConversion.kt:10:18:10:22 | ... % ... | samConversion.kt:10:27:10:27 | 0 |
 | samConversion.kt:12:18:12:22 | ... % ... | samConversion.kt:12:18:12:18 | j | samConversion.kt:12:22:12:22 | 2 |
diff --git a/java/ql/test/kotlin/library-tests/exprs/exprs.expected b/java/ql/test/kotlin/library-tests/exprs/exprs.expected
index 08a9891f64b..4b8d200a1d7 100644
--- a/java/ql/test/kotlin/library-tests/exprs/exprs.expected
+++ b/java/ql/test/kotlin/library-tests/exprs/exprs.expected
@@ -51,7 +51,7 @@
 | delegatedProperties.kt:6:32:9:9 | int | file://:0:0:0:0 | <none> | TypeAccess |
 | delegatedProperties.kt:7:13:7:27 | ConsoleKt | delegatedProperties.kt:6:32:9:9 | invoke | TypeAccess |
 | delegatedProperties.kt:7:13:7:27 | println(...) | delegatedProperties.kt:6:32:9:9 | invoke | MethodAccess |
-| delegatedProperties.kt:7:22:7:25 | init | delegatedProperties.kt:6:32:9:9 | invoke | StringLiteral |
+| delegatedProperties.kt:7:22:7:25 | "init" | delegatedProperties.kt:6:32:9:9 | invoke | StringLiteral |
 | delegatedProperties.kt:8:13:8:13 | 5 | delegatedProperties.kt:6:32:9:9 | invoke | IntegerLiteral |
 | delegatedProperties.kt:10:9:10:22 | ConsoleKt | delegatedProperties.kt:5:5:12:5 | fn | TypeAccess |
 | delegatedProperties.kt:10:9:10:22 | println(...) | delegatedProperties.kt:5:5:12:5 | fn | MethodAccess |
@@ -1337,9 +1337,9 @@
 | exprs.kt:123:5:123:15 | c | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
 | exprs.kt:123:13:123:15 | x | exprs.kt:4:1:142:1 | topLevelMethod | CharacterLiteral |
 | exprs.kt:124:5:124:26 | str | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
-| exprs.kt:124:16:124:25 | string lit | exprs.kt:4:1:142:1 | topLevelMethod | StringLiteral |
+| exprs.kt:124:16:124:25 | "string lit" | exprs.kt:4:1:142:1 | topLevelMethod | StringLiteral |
 | exprs.kt:125:5:125:38 | strWithQuote | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
-| exprs.kt:125:25:125:37 | string " lit | exprs.kt:4:1:142:1 | topLevelMethod | StringLiteral |
+| exprs.kt:125:25:125:37 | "string \\" lit" | exprs.kt:4:1:142:1 | topLevelMethod | StringLiteral |
 | exprs.kt:126:5:126:22 | b6 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
 | exprs.kt:126:14:126:15 | i1 | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
 | exprs.kt:126:14:126:22 | ...instanceof... | exprs.kt:4:1:142:1 | topLevelMethod | InstanceOfExpr |
@@ -1353,30 +1353,30 @@
 | exprs.kt:128:14:128:26 | (...)... | exprs.kt:4:1:142:1 | topLevelMethod | CastExpr |
 | exprs.kt:128:14:128:26 | boolean | exprs.kt:4:1:142:1 | topLevelMethod | TypeAccess |
 | exprs.kt:129:5:129:35 | str1 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
-| exprs.kt:129:25:129:34 | string lit | exprs.kt:4:1:142:1 | topLevelMethod | StringLiteral |
+| exprs.kt:129:25:129:34 | "string lit" | exprs.kt:4:1:142:1 | topLevelMethod | StringLiteral |
 | exprs.kt:130:5:130:36 | str2 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
-| exprs.kt:130:26:130:35 | string lit | exprs.kt:4:1:142:1 | topLevelMethod | StringLiteral |
+| exprs.kt:130:26:130:35 | "string lit" | exprs.kt:4:1:142:1 | topLevelMethod | StringLiteral |
 | exprs.kt:131:5:131:28 | str3 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
 | exprs.kt:131:25:131:28 | null | exprs.kt:4:1:142:1 | topLevelMethod | NullLiteral |
 | exprs.kt:132:5:132:48 | str4 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
 | exprs.kt:132:24:132:48 | "..." | exprs.kt:4:1:142:1 | topLevelMethod | StringTemplateExpr |
-| exprs.kt:132:25:132:28 | foo  | exprs.kt:4:1:142:1 | topLevelMethod | StringLiteral |
+| exprs.kt:132:25:132:28 | "foo " | exprs.kt:4:1:142:1 | topLevelMethod | StringLiteral |
 | exprs.kt:132:30:132:33 | str1 | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
-| exprs.kt:132:34:132:38 |  bar  | exprs.kt:4:1:142:1 | topLevelMethod | StringLiteral |
+| exprs.kt:132:34:132:38 | " bar " | exprs.kt:4:1:142:1 | topLevelMethod | StringLiteral |
 | exprs.kt:132:40:132:43 | str2 | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
-| exprs.kt:132:44:132:47 |  baz | exprs.kt:4:1:142:1 | topLevelMethod | StringLiteral |
+| exprs.kt:132:44:132:47 | " baz" | exprs.kt:4:1:142:1 | topLevelMethod | StringLiteral |
 | exprs.kt:133:5:133:66 | str5 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
 | exprs.kt:133:24:133:66 | "..." | exprs.kt:4:1:142:1 | topLevelMethod | StringTemplateExpr |
-| exprs.kt:133:25:133:28 | foo  | exprs.kt:4:1:142:1 | topLevelMethod | StringLiteral |
+| exprs.kt:133:25:133:28 | "foo " | exprs.kt:4:1:142:1 | topLevelMethod | StringLiteral |
 | exprs.kt:133:31:133:34 | str1 | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
 | exprs.kt:133:31:133:41 | ... + ... | exprs.kt:4:1:142:1 | topLevelMethod | AddExpr |
 | exprs.kt:133:38:133:41 | str2 | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
-| exprs.kt:133:43:133:47 |  bar  | exprs.kt:4:1:142:1 | topLevelMethod | StringLiteral |
+| exprs.kt:133:43:133:47 | " bar " | exprs.kt:4:1:142:1 | topLevelMethod | StringLiteral |
 | exprs.kt:133:50:133:53 | str2 | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
 | exprs.kt:133:50:133:60 | Intrinsics | exprs.kt:4:1:142:1 | topLevelMethod | TypeAccess |
 | exprs.kt:133:50:133:60 | stringPlus(...) | exprs.kt:4:1:142:1 | topLevelMethod | MethodAccess |
 | exprs.kt:133:57:133:60 | str1 | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
-| exprs.kt:133:62:133:65 |  baz | exprs.kt:4:1:142:1 | topLevelMethod | StringLiteral |
+| exprs.kt:133:62:133:65 | " baz" | exprs.kt:4:1:142:1 | topLevelMethod | StringLiteral |
 | exprs.kt:134:5:134:26 | str6 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
 | exprs.kt:134:16:134:19 | str1 | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
 | exprs.kt:134:16:134:26 | ... + ... | exprs.kt:4:1:142:1 | topLevelMethod | AddExpr |
@@ -1605,11 +1605,11 @@
 | exprs.kt:215:9:215:44 | d0 | exprs.kt:206:5:217:5 | x | LocalVariableDeclExpr |
 | exprs.kt:215:18:215:44 | Color | exprs.kt:206:5:217:5 | x | TypeAccess |
 | exprs.kt:215:18:215:44 | valueOf(...) | exprs.kt:206:5:217:5 | x | MethodAccess |
-| exprs.kt:215:38:215:42 | GREEN | exprs.kt:206:5:217:5 | x | StringLiteral |
+| exprs.kt:215:38:215:42 | "GREEN" | exprs.kt:206:5:217:5 | x | StringLiteral |
 | exprs.kt:216:9:216:39 | d1 | exprs.kt:206:5:217:5 | x | LocalVariableDeclExpr |
 | exprs.kt:216:24:216:39 | Color | exprs.kt:206:5:217:5 | x | TypeAccess |
 | exprs.kt:216:24:216:39 | valueOf(...) | exprs.kt:206:5:217:5 | x | MethodAccess |
-| exprs.kt:216:33:216:37 | GREEN | exprs.kt:206:5:217:5 | x | StringLiteral |
+| exprs.kt:216:33:216:37 | "GREEN" | exprs.kt:206:5:217:5 | x | StringLiteral |
 | exprs.kt:220:1:222:1 | Unit | file://:0:0:0:0 | <none> | TypeAccess |
 | exprs.kt:221:5:221:10 | StandardKt | exprs.kt:220:1:222:1 | todo | TypeAccess |
 | exprs.kt:221:5:221:10 | TODO(...) | exprs.kt:220:1:222:1 | todo | MethodAccess |
@@ -2730,7 +2730,7 @@
 | funcExprs.kt:36:100:36:102 | int | file://:0:0:0:0 | <none> | TypeAccess |
 | funcExprs.kt:36:104:36:106 | int | file://:0:0:0:0 | <none> | TypeAccess |
 | funcExprs.kt:36:108:36:110 | int | file://:0:0:0:0 | <none> | TypeAccess |
-| funcExprs.kt:36:115:36:116 |  | funcExprs.kt:36:29:36:117 | invoke | StringLiteral |
+| funcExprs.kt:36:115:36:116 | "" | funcExprs.kt:36:29:36:117 | invoke | StringLiteral |
 | funcExprs.kt:38:5:38:39 | FuncExprsKt | funcExprs.kt:21:1:52:1 | call | TypeAccess |
 | funcExprs.kt:38:5:38:39 | functionExpression0a(...) | funcExprs.kt:21:1:52:1 | call | MethodAccess |
 | funcExprs.kt:38:26:38:34 | FuncRef | funcExprs.kt:21:1:52:1 | call | TypeAccess |
@@ -3231,7 +3231,7 @@
 | funcExprs.kt:70:102:70:109 | int | file://:0:0:0:0 | <none> | TypeAccess |
 | funcExprs.kt:70:112:70:119 | int | file://:0:0:0:0 | <none> | TypeAccess |
 | funcExprs.kt:70:122:70:129 | int | file://:0:0:0:0 | <none> | TypeAccess |
-| funcExprs.kt:70:134:70:135 |  | funcExprs.kt:69:5:70:135 | f23 | StringLiteral |
+| funcExprs.kt:70:134:70:135 | "" | funcExprs.kt:69:5:70:135 | f23 | StringLiteral |
 | funcExprs.kt:74:5:76:5 | Unit | file://:0:0:0:0 | <none> | TypeAccess |
 | funcExprs.kt:75:9:75:22 | fn(...) | funcExprs.kt:74:5:76:5 | call | MethodAccess |
 | funcExprs.kt:75:9:75:22 | this | funcExprs.kt:74:5:76:5 | call | ThisAccess |
@@ -3245,7 +3245,7 @@
 | funcExprs.kt:75:14:75:14 | Generic<Generic<Integer>> | file://:0:0:0:0 | <none> | TypeAccess |
 | funcExprs.kt:75:14:75:14 | Generic<Integer> | file://:0:0:0:0 | <none> | TypeAccess |
 | funcExprs.kt:75:14:75:14 | Integer | file://:0:0:0:0 | <none> | TypeAccess |
-| funcExprs.kt:75:20:75:20 | a | funcExprs.kt:75:12:75:22 | invoke | StringLiteral |
+| funcExprs.kt:75:20:75:20 | "a" | funcExprs.kt:75:12:75:22 | invoke | StringLiteral |
 | funcExprs.kt:77:13:77:60 | Unit | file://:0:0:0:0 | <none> | TypeAccess |
 | funcExprs.kt:77:20:77:55 | ? ... | file://:0:0:0:0 | <none> | WildcardTypeAccess |
 | funcExprs.kt:77:20:77:55 | Function1<? super Generic<Generic<Integer>>,String> | file://:0:0:0:0 | <none> | TypeAccess |
@@ -3427,7 +3427,7 @@
 | funcExprs.kt:90:57:90:57 | int | file://:0:0:0:0 | <none> | TypeAccess |
 | funcExprs.kt:90:59:90:59 | int | file://:0:0:0:0 | <none> | TypeAccess |
 | funcExprs.kt:90:61:90:61 | int | file://:0:0:0:0 | <none> | TypeAccess |
-| funcExprs.kt:90:67:90:68 |  | funcExprs.kt:90:15:90:69 | invoke | StringLiteral |
+| funcExprs.kt:90:67:90:68 | "" | funcExprs.kt:90:15:90:69 | invoke | StringLiteral |
 | funcExprs.kt:91:5:91:6 | l3 | funcExprs.kt:82:9:96:1 | fn | VarAccess |
 | funcExprs.kt:91:5:91:60 | 23 | funcExprs.kt:82:9:96:1 | fn | IntegerLiteral |
 | funcExprs.kt:91:5:91:60 | Object | funcExprs.kt:82:9:96:1 | fn | TypeAccess |
@@ -3508,7 +3508,7 @@
 | funcExprs.kt:94:55:94:55 | int | file://:0:0:0:0 | <none> | TypeAccess |
 | funcExprs.kt:94:57:94:57 | int | file://:0:0:0:0 | <none> | TypeAccess |
 | funcExprs.kt:94:59:94:59 | int | file://:0:0:0:0 | <none> | TypeAccess |
-| funcExprs.kt:94:65:94:66 |  | funcExprs.kt:94:15:94:67 | invoke | StringLiteral |
+| funcExprs.kt:94:65:94:66 | "" | funcExprs.kt:94:15:94:67 | invoke | StringLiteral |
 | funcExprs.kt:95:5:95:6 | l4 | funcExprs.kt:82:9:96:1 | fn | VarAccess |
 | funcExprs.kt:95:5:95:58 | invoke(...) | funcExprs.kt:82:9:96:1 | fn | MethodAccess |
 | funcExprs.kt:95:8:95:58 | <implicit coercion to unit> | funcExprs.kt:82:9:96:1 | fn | ImplicitCoercionToUnitExpr |
@@ -3724,7 +3724,7 @@
 | samConversion.kt:7:31:7:31 | int | file://:0:0:0:0 | <none> | TypeAccess |
 | samConversion.kt:7:36:7:39 | this | samConversion.kt:7:29:7:46 | invoke | ExtensionReceiverAccess |
 | samConversion.kt:7:36:7:45 | ... (value equals) ... | samConversion.kt:7:29:7:46 | invoke | ValueEQExpr |
-| samConversion.kt:7:44:7:45 |  | samConversion.kt:7:29:7:46 | invoke | StringLiteral |
+| samConversion.kt:7:44:7:45 | "" | samConversion.kt:7:29:7:46 | invoke | StringLiteral |
 | samConversion.kt:9:5:13:6 | x | samConversion.kt:1:1:14:1 | main | LocalVariableDeclExpr |
 | samConversion.kt:9:13:13:6 | (...)... | samConversion.kt:1:1:14:1 | main | CastExpr |
 | samConversion.kt:9:13:13:6 | ...=... | samConversion.kt:9:13:13:6 |  | AssignExpr |
@@ -4379,6 +4379,6 @@
 | whenExpr.kt:6:5:6:5 | tmp0_subject | whenExpr.kt:1:1:9:1 | testWhen | VarAccess |
 | whenExpr.kt:6:16:6:44 | Exception | whenExpr.kt:1:1:9:1 | testWhen | TypeAccess |
 | whenExpr.kt:6:16:6:44 | new Exception(...) | whenExpr.kt:1:1:9:1 | testWhen | ClassInstanceExpr |
-| whenExpr.kt:6:27:6:42 | No threes please | whenExpr.kt:1:1:9:1 | testWhen | StringLiteral |
+| whenExpr.kt:6:27:6:42 | "No threes please" | whenExpr.kt:1:1:9:1 | testWhen | StringLiteral |
 | whenExpr.kt:7:13:7:15 | 999 | whenExpr.kt:1:1:9:1 | testWhen | IntegerLiteral |
 | whenExpr.kt:7:13:7:15 | true | whenExpr.kt:1:1:9:1 | testWhen | BooleanLiteral |
diff --git a/java/ql/test/kotlin/library-tests/exprs_typeaccess/PrintAst.expected b/java/ql/test/kotlin/library-tests/exprs_typeaccess/PrintAst.expected
index 77b2fbb794e..5af83a46a01 100644
--- a/java/ql/test/kotlin/library-tests/exprs_typeaccess/PrintAst.expected
+++ b/java/ql/test/kotlin/library-tests/exprs_typeaccess/PrintAst.expected
@@ -27,7 +27,7 @@ A.kt:
 #   10|         2: [ExprStmt] <Expr>;
 #   10|           0: [MethodAccess] println(...)
 #   10|             -1: [TypeAccess] ConsoleKt
-#   10|             0: [StringLiteral] 
+#   10|             0: [StringLiteral] ""
 #   13|     6: [Method] getProp
 #   13|       3: [TypeAccess] int
 #   13|       5: [BlockStmt] { ... }
diff --git a/java/ql/test/kotlin/library-tests/extensions/methodaccesses.expected b/java/ql/test/kotlin/library-tests/extensions/methodaccesses.expected
index 03322ec3313..4aa35cde90b 100644
--- a/java/ql/test/kotlin/library-tests/extensions/methodaccesses.expected
+++ b/java/ql/test/kotlin/library-tests/extensions/methodaccesses.expected
@@ -1,20 +1,20 @@
 | A.java:3:9:3:49 | someFun(...) | A.java:3:9:3:20 | ExtensionsKt | A.java:3:30:3:44 | new SomeClass(...) |
 | A.java:3:9:3:49 | someFun(...) | A.java:3:9:3:20 | ExtensionsKt | A.java:3:47:3:48 | "" |
-| extensions.kt:21:5:21:38 | someClassMethod(...) | extensions.kt:21:5:21:15 | new SomeClass(...) | extensions.kt:21:34:21:36 | foo |
+| extensions.kt:21:5:21:38 | someClassMethod(...) | extensions.kt:21:5:21:15 | new SomeClass(...) | extensions.kt:21:34:21:36 | "foo" |
 | extensions.kt:22:5:22:30 | someFun(...) | extensions.kt:22:5:22:30 | ExtensionsKt | extensions.kt:22:5:22:15 | new SomeClass(...) |
-| extensions.kt:22:5:22:30 | someFun(...) | extensions.kt:22:5:22:30 | ExtensionsKt | extensions.kt:22:26:22:28 | foo |
+| extensions.kt:22:5:22:30 | someFun(...) | extensions.kt:22:5:22:30 | ExtensionsKt | extensions.kt:22:26:22:28 | "foo" |
 | extensions.kt:23:5:23:30 | bothFun(...) | extensions.kt:23:5:23:30 | ExtensionsKt | extensions.kt:23:5:23:15 | new SomeClass(...) |
-| extensions.kt:23:5:23:30 | bothFun(...) | extensions.kt:23:5:23:30 | ExtensionsKt | extensions.kt:23:26:23:28 | foo |
+| extensions.kt:23:5:23:30 | bothFun(...) | extensions.kt:23:5:23:30 | ExtensionsKt | extensions.kt:23:26:23:28 | "foo" |
 | extensions.kt:24:5:24:35 | bothFunDiffTypes(...) | extensions.kt:24:5:24:35 | ExtensionsKt | extensions.kt:24:5:24:15 | new SomeClass(...) |
 | extensions.kt:24:5:24:35 | bothFunDiffTypes(...) | extensions.kt:24:5:24:35 | ExtensionsKt | extensions.kt:24:34:24:34 | 1 |
-| extensions.kt:25:5:25:44 | anotherClassMethod(...) | extensions.kt:25:5:25:18 | new AnotherClass(...) | extensions.kt:25:40:25:42 | foo |
+| extensions.kt:25:5:25:44 | anotherClassMethod(...) | extensions.kt:25:5:25:18 | new AnotherClass(...) | extensions.kt:25:40:25:42 | "foo" |
 | extensions.kt:26:5:26:36 | anotherFun(...) | extensions.kt:26:5:26:36 | ExtensionsKt | extensions.kt:26:5:26:18 | new AnotherClass(...) |
-| extensions.kt:26:5:26:36 | anotherFun(...) | extensions.kt:26:5:26:36 | ExtensionsKt | extensions.kt:26:32:26:34 | foo |
+| extensions.kt:26:5:26:36 | anotherFun(...) | extensions.kt:26:5:26:36 | ExtensionsKt | extensions.kt:26:32:26:34 | "foo" |
 | extensions.kt:27:5:27:33 | bothFun(...) | extensions.kt:27:5:27:33 | ExtensionsKt | extensions.kt:27:5:27:18 | new AnotherClass(...) |
-| extensions.kt:27:5:27:33 | bothFun(...) | extensions.kt:27:5:27:33 | ExtensionsKt | extensions.kt:27:29:27:31 | foo |
+| extensions.kt:27:5:27:33 | bothFun(...) | extensions.kt:27:5:27:33 | ExtensionsKt | extensions.kt:27:29:27:31 | "foo" |
 | extensions.kt:28:5:28:42 | bothFunDiffTypes(...) | extensions.kt:28:5:28:42 | ExtensionsKt | extensions.kt:28:5:28:18 | new AnotherClass(...) |
-| extensions.kt:28:5:28:42 | bothFunDiffTypes(...) | extensions.kt:28:5:28:42 | ExtensionsKt | extensions.kt:28:38:28:40 | foo |
-| extensions.kt:29:6:29:27 | bar(...) | extensions.kt:29:6:29:27 | ExtensionsKt | extensions.kt:29:6:29:15 | someString |
-| extensions.kt:29:6:29:27 | bar(...) | extensions.kt:29:6:29:27 | ExtensionsKt | extensions.kt:29:23:29:25 | foo |
-| extensions.kt:31:6:31:32 | baz(...) | extensions.kt:31:6:31:32 | new (...) | extensions.kt:31:6:31:15 | someString |
-| extensions.kt:31:6:31:32 | baz(...) | extensions.kt:31:6:31:32 | new (...) | extensions.kt:31:23:31:30 | bazParam |
+| extensions.kt:28:5:28:42 | bothFunDiffTypes(...) | extensions.kt:28:5:28:42 | ExtensionsKt | extensions.kt:28:38:28:40 | "foo" |
+| extensions.kt:29:6:29:27 | bar(...) | extensions.kt:29:6:29:27 | ExtensionsKt | extensions.kt:29:6:29:15 | "someString" |
+| extensions.kt:29:6:29:27 | bar(...) | extensions.kt:29:6:29:27 | ExtensionsKt | extensions.kt:29:23:29:25 | "foo" |
+| extensions.kt:31:6:31:32 | baz(...) | extensions.kt:31:6:31:32 | new (...) | extensions.kt:31:6:31:15 | "someString" |
+| extensions.kt:31:6:31:32 | baz(...) | extensions.kt:31:6:31:32 | new (...) | extensions.kt:31:23:31:30 | "bazParam" |
diff --git a/java/ql/test/kotlin/library-tests/extensions/parameters.expected b/java/ql/test/kotlin/library-tests/extensions/parameters.expected
index 5cb7e0986d3..65906e57dd2 100644
--- a/java/ql/test/kotlin/library-tests/extensions/parameters.expected
+++ b/java/ql/test/kotlin/library-tests/extensions/parameters.expected
@@ -1,24 +1,24 @@
 parametersWithArgs
-| extensions.kt:3:25:3:34 | p1 | 0 | extensions.kt:21:34:21:36 | foo |
-| extensions.kt:6:28:6:37 | p1 | 0 | extensions.kt:25:40:25:42 | foo |
+| extensions.kt:3:25:3:34 | p1 | 0 | extensions.kt:21:34:21:36 | "foo" |
+| extensions.kt:6:28:6:37 | p1 | 0 | extensions.kt:25:40:25:42 | "foo" |
 | extensions.kt:9:5:9:13 | <this> | 0 | A.java:3:30:3:44 | new SomeClass(...) |
 | extensions.kt:9:5:9:13 | <this> | 0 | extensions.kt:22:5:22:15 | new SomeClass(...) |
 | extensions.kt:9:23:9:32 | p1 | 1 | A.java:3:47:3:48 | "" |
-| extensions.kt:9:23:9:32 | p1 | 1 | extensions.kt:22:26:22:28 | foo |
+| extensions.kt:9:23:9:32 | p1 | 1 | extensions.kt:22:26:22:28 | "foo" |
 | extensions.kt:10:5:10:16 | <this> | 0 | extensions.kt:26:5:26:18 | new AnotherClass(...) |
-| extensions.kt:10:29:10:38 | p1 | 1 | extensions.kt:26:32:26:34 | foo |
+| extensions.kt:10:29:10:38 | p1 | 1 | extensions.kt:26:32:26:34 | "foo" |
 | extensions.kt:12:5:12:13 | <this> | 0 | extensions.kt:23:5:23:15 | new SomeClass(...) |
-| extensions.kt:12:23:12:32 | p1 | 1 | extensions.kt:23:26:23:28 | foo |
+| extensions.kt:12:23:12:32 | p1 | 1 | extensions.kt:23:26:23:28 | "foo" |
 | extensions.kt:13:5:13:16 | <this> | 0 | extensions.kt:27:5:27:18 | new AnotherClass(...) |
-| extensions.kt:13:26:13:35 | p1 | 1 | extensions.kt:27:29:27:31 | foo |
+| extensions.kt:13:26:13:35 | p1 | 1 | extensions.kt:27:29:27:31 | "foo" |
 | extensions.kt:15:5:15:13 | <this> | 0 | extensions.kt:24:5:24:15 | new SomeClass(...) |
 | extensions.kt:15:32:15:38 | p1 | 1 | extensions.kt:24:34:24:34 | 1 |
 | extensions.kt:16:5:16:16 | <this> | 0 | extensions.kt:28:5:28:18 | new AnotherClass(...) |
-| extensions.kt:16:35:16:44 | p1 | 1 | extensions.kt:28:38:28:40 | foo |
-| extensions.kt:18:5:18:10 | <this> | 0 | extensions.kt:29:6:29:15 | someString |
-| extensions.kt:18:16:18:25 | p1 | 1 | extensions.kt:29:23:29:25 | foo |
-| extensions.kt:30:9:30:14 | <this> | 0 | extensions.kt:31:6:31:15 | someString |
-| extensions.kt:30:20:30:29 | p1 | 1 | extensions.kt:31:23:31:30 | bazParam |
+| extensions.kt:16:35:16:44 | p1 | 1 | extensions.kt:28:38:28:40 | "foo" |
+| extensions.kt:18:5:18:10 | <this> | 0 | extensions.kt:29:6:29:15 | "someString" |
+| extensions.kt:18:16:18:25 | p1 | 1 | extensions.kt:29:23:29:25 | "foo" |
+| extensions.kt:30:9:30:14 | <this> | 0 | extensions.kt:31:6:31:15 | "someString" |
+| extensions.kt:30:20:30:29 | p1 | 1 | extensions.kt:31:23:31:30 | "bazParam" |
 extensionParameter
 | extensions.kt:9:5:9:13 | <this> |
 | extensions.kt:10:5:10:16 | <this> |
diff --git a/java/ql/test/kotlin/library-tests/generic-inner-classes/test.expected b/java/ql/test/kotlin/library-tests/generic-inner-classes/test.expected
index deed53a7269..8b6a502898e 100644
--- a/java/ql/test/kotlin/library-tests/generic-inner-classes/test.expected
+++ b/java/ql/test/kotlin/library-tests/generic-inner-classes/test.expected
@@ -2,11 +2,11 @@ callArgs
 | KotlinUser.kt:7:13:7:31 | new OuterGeneric<Integer>(...) | KotlinUser.kt:7:13:7:31 | OuterGeneric<Integer> | -3 |
 | KotlinUser.kt:7:33:7:61 | new InnerGeneric<String>(...) | KotlinUser.kt:7:13:7:31 | new OuterGeneric<Integer>(...) | -2 |
 | KotlinUser.kt:7:33:7:61 | new InnerGeneric<String>(...) | KotlinUser.kt:7:33:7:61 | InnerGeneric<String> | -3 |
-| KotlinUser.kt:7:33:7:61 | new InnerGeneric<String>(...) | KotlinUser.kt:7:55:7:59 | hello | 0 |
+| KotlinUser.kt:7:33:7:61 | new InnerGeneric<String>(...) | KotlinUser.kt:7:55:7:59 | "hello" | 0 |
 | KotlinUser.kt:8:14:8:32 | new OuterGeneric<Integer>(...) | KotlinUser.kt:8:14:8:32 | OuterGeneric<Integer> | -3 |
 | KotlinUser.kt:8:34:8:54 | new InnerGeneric<String>(...) | KotlinUser.kt:8:14:8:32 | new OuterGeneric<Integer>(...) | -2 |
 | KotlinUser.kt:8:34:8:54 | new InnerGeneric<String>(...) | KotlinUser.kt:8:34:8:54 | InnerGeneric<String> | -3 |
-| KotlinUser.kt:8:34:8:54 | new InnerGeneric<String>(...) | KotlinUser.kt:8:48:8:52 | hello | 0 |
+| KotlinUser.kt:8:34:8:54 | new InnerGeneric<String>(...) | KotlinUser.kt:8:48:8:52 | "hello" | 0 |
 | KotlinUser.kt:9:13:9:31 | new OuterGeneric<Integer>(...) | KotlinUser.kt:9:13:9:31 | OuterGeneric<Integer> | -3 |
 | KotlinUser.kt:9:33:9:49 | new InnerNotGeneric<>(...) | KotlinUser.kt:9:13:9:31 | new OuterGeneric<Integer>(...) | -2 |
 | KotlinUser.kt:9:33:9:49 | new InnerNotGeneric<>(...) | KotlinUser.kt:9:33:9:49 | InnerNotGeneric<> | -3 |
@@ -15,11 +15,11 @@ callArgs
 | KotlinUser.kt:10:31:10:52 | new InnerGeneric<String>(...) | KotlinUser.kt:10:31:10:52 | InnerGeneric<String> | -3 |
 | KotlinUser.kt:12:19:12:44 | returnsecond(...) | KotlinUser.kt:12:19:12:19 | a | -1 |
 | KotlinUser.kt:12:19:12:44 | returnsecond(...) | KotlinUser.kt:12:34:12:34 | 0 | 0 |
-| KotlinUser.kt:12:19:12:44 | returnsecond(...) | KotlinUser.kt:12:38:12:42 | hello | 1 |
+| KotlinUser.kt:12:19:12:44 | returnsecond(...) | KotlinUser.kt:12:38:12:42 | "hello" | 1 |
 | KotlinUser.kt:13:19:13:31 | identity(...) | KotlinUser.kt:13:19:13:19 | b | -1 |
 | KotlinUser.kt:13:19:13:31 | identity(...) | KotlinUser.kt:13:30:13:30 | 5 | 0 |
 | KotlinUser.kt:14:19:14:37 | identity(...) | KotlinUser.kt:14:19:14:19 | c | -1 |
-| KotlinUser.kt:14:19:14:37 | identity(...) | KotlinUser.kt:14:31:14:35 | world | 0 |
+| KotlinUser.kt:14:19:14:37 | identity(...) | KotlinUser.kt:14:31:14:35 | "world" | 0 |
 genericTypes
 | OuterGeneric.kt:3:1:21:1 | OuterGeneric | OuterGeneric.kt:3:27:3:27 | T |
 | OuterGeneric.kt:11:3:19:3 | InnerGeneric | OuterGeneric.kt:11:35:11:35 | S |
diff --git a/java/ql/test/kotlin/library-tests/generics/PrintAst.expected b/java/ql/test/kotlin/library-tests/generics/PrintAst.expected
index 619ba5f3bcc..2c3b395f4f1 100644
--- a/java/ql/test/kotlin/library-tests/generics/PrintAst.expected
+++ b/java/ql/test/kotlin/library-tests/generics/PrintAst.expected
@@ -45,18 +45,18 @@ generics.kt:
 #   27|             0: [MethodAccess] f2(...)
 #   27|               -2: [TypeAccess] String
 #   27|               -1: [VarAccess] c1
-#   27|               0: [StringLiteral] 
+#   27|               0: [StringLiteral] ""
 #   28|         3: [LocalVariableDeclStmt] var ...;
 #   28|           1: [LocalVariableDeclExpr] c2
 #   28|             0: [ClassInstanceExpr] new C1<String,Integer>(...)
 #   28|               -3: [TypeAccess] C1<String,Integer>
 #   28|                 0: [TypeAccess] String
 #   28|                 1: [TypeAccess] Integer
-#   28|               0: [StringLiteral] 
+#   28|               0: [StringLiteral] ""
 #   29|         4: [ExprStmt] <Expr>;
 #   29|           0: [MethodAccess] f1(...)
 #   29|             -1: [VarAccess] c2
-#   29|             0: [StringLiteral] a
+#   29|             0: [StringLiteral] "a"
 #   30|         5: [LocalVariableDeclStmt] var ...;
 #   30|           1: [LocalVariableDeclExpr] x2
 #   30|             0: [MethodAccess] f2(...)
@@ -256,4 +256,4 @@ generics.kt:
 #   61|               -3: [TypeAccess] Local<Integer>
 #   61|                 0: [TypeAccess] Integer
 #   61|             0: [VarAccess] t
-#   61|             1: [StringLiteral] 
+#   61|             1: [StringLiteral] ""
diff --git a/java/ql/test/kotlin/library-tests/java-map-methods/PrintAst.expected b/java/ql/test/kotlin/library-tests/java-map-methods/PrintAst.expected
index 978c4777b09..e356679e208 100644
--- a/java/ql/test/kotlin/library-tests/java-map-methods/PrintAst.expected
+++ b/java/ql/test/kotlin/library-tests/java-map-methods/PrintAst.expected
@@ -45,7 +45,7 @@ test.kt:
 #    9|         0: [ReturnStmt] return ...
 #    9|           0: [AddExpr] ... + ...
 #    9|             0: [VarAccess] s
-#    9|             1: [StringLiteral] 
+#    9|             1: [StringLiteral] ""
 #   10|     5: [Method] fn2
 #   10|       3: [TypeAccess] String
 #-----|       4: (Parameters)
@@ -55,7 +55,7 @@ test.kt:
 #   10|         0: [ReturnStmt] return ...
 #   10|           0: [AddExpr] ... + ...
 #   10|             0: [VarAccess] s
-#   10|             1: [StringLiteral] 
+#   10|             1: [StringLiteral] ""
 #   12|     6: [Method] fn1
 #   12|       3: [TypeAccess] int
 #-----|       4: (Parameters)
diff --git a/java/ql/test/kotlin/library-tests/jvmoverloads-annotation/PrintAst.expected b/java/ql/test/kotlin/library-tests/jvmoverloads-annotation/PrintAst.expected
index 6dfd45e83f4..a1d0808d7a9 100644
--- a/java/ql/test/kotlin/library-tests/jvmoverloads-annotation/PrintAst.expected
+++ b/java/ql/test/kotlin/library-tests/jvmoverloads-annotation/PrintAst.expected
@@ -5,7 +5,7 @@ test.kt:
 #    1|       3: [TypeAccess] String
 #    1|       5: [BlockStmt] { ... }
 #    1|         0: [ReturnStmt] return ...
-#    1|           0: [StringLiteral] Hello world
+#    1|           0: [StringLiteral] "Hello world"
 #   45|     2: [ExtensionMethod] testExtensionFunction
 #   45|       3: [TypeAccess] int
 #-----|       4: (Parameters)
@@ -929,7 +929,7 @@ test.kt:
 #   30|           1: [ExprStmt] <Expr>;
 #   30|             0: [AssignExpr] ...=...
 #   30|               0: [VarAccess] p2
-#   30|               1: [StringLiteral] Hello world
+#   30|               1: [StringLiteral] "Hello world"
 #   30|         2: [ThisConstructorInvocationStmt] this(...)
 #   30|           0: [VarAccess] p0
 #   30|           1: [VarAccess] p1
@@ -1024,7 +1024,7 @@ test.kt:
 #   33|           1: [ExprStmt] <Expr>;
 #   33|             0: [AssignExpr] ...=...
 #   33|               0: [VarAccess] p3
-#   33|               1: [StringLiteral] Hello world
+#   33|               1: [StringLiteral] "Hello world"
 #   33|         2: [ReturnStmt] return ...
 #   33|           0: [MethodAccess] testMemberFunction(...)
 #   33|             -1: [VarAccess] p0
@@ -1049,7 +1049,7 @@ test.kt:
 #   37|               -1: [VarAccess] spec1
 #   37|               0: [IntegerLiteral] 1
 #   37|               1: [FloatLiteral] 1.0
-#   37|               2: [StringLiteral] Hello world
+#   37|               2: [StringLiteral] "Hello world"
 #   37|               3: [FloatLiteral] 2.0
 #   38|         1: [ExprStmt] <Expr>;
 #   38|           0: [ImplicitCoercionToUnitExpr] <implicit coercion to unit>
@@ -1058,5 +1058,5 @@ test.kt:
 #   38|               -1: [VarAccess] spec2
 #   38|               0: [IntegerLiteral] 1
 #   38|               1: [DoubleLiteral] 1.0
-#   38|               2: [StringLiteral] Hello world
+#   38|               2: [StringLiteral] "Hello world"
 #   38|               3: [DoubleLiteral] 2.0
diff --git a/java/ql/test/kotlin/library-tests/jvmstatic-annotation/PrintAst.expected b/java/ql/test/kotlin/library-tests/jvmstatic-annotation/PrintAst.expected
index 6386ec036fb..1db0b09adc0 100644
--- a/java/ql/test/kotlin/library-tests/jvmstatic-annotation/PrintAst.expected
+++ b/java/ql/test/kotlin/library-tests/jvmstatic-annotation/PrintAst.expected
@@ -81,13 +81,13 @@ test.kt:
 #   52|             0: [TypeAccess] Unit
 #   52|             1: [MethodAccess] staticMethod(...)
 #   52|               -1: [VarAccess] Companion
-#   52|               0: [StringLiteral] 1
+#   52|               0: [StringLiteral] "1"
 #   53|         1: [ExprStmt] <Expr>;
 #   53|           0: [ImplicitCoercionToUnitExpr] <implicit coercion to unit>
 #   53|             0: [TypeAccess] Unit
 #   53|             1: [MethodAccess] nonStaticMethod(...)
 #   53|               -1: [VarAccess] Companion
-#   53|               0: [StringLiteral] 2
+#   53|               0: [StringLiteral] "2"
 #   54|         2: [ExprStmt] <Expr>;
 #   54|           0: [MethodAccess] setStaticProp(...)
 #   54|             -1: [VarAccess] Companion
@@ -113,13 +113,13 @@ test.kt:
 #   60|             0: [TypeAccess] Unit
 #   60|             1: [MethodAccess] staticMethod(...)
 #   60|               -1: [TypeAccess] NonCompanion
-#   60|               0: [StringLiteral] 1
+#   60|               0: [StringLiteral] "1"
 #   61|         7: [ExprStmt] <Expr>;
 #   61|           0: [ImplicitCoercionToUnitExpr] <implicit coercion to unit>
 #   61|             0: [TypeAccess] Unit
 #   61|             1: [MethodAccess] nonStaticMethod(...)
 #   61|               -1: [VarAccess] INSTANCE
-#   61|               0: [StringLiteral] 2
+#   61|               0: [StringLiteral] "2"
 #   62|         8: [ExprStmt] <Expr>;
 #   62|           0: [MethodAccess] setStaticProp(...)
 #   62|             -1: [TypeAccess] NonCompanion
@@ -182,7 +182,7 @@ test.kt:
 #   14|               0: [VarAccess] s
 #   16|       4: [FieldDeclaration] String staticProp;
 #   16|         -1: [TypeAccess] String
-#   16|         0: [StringLiteral] a
+#   16|         0: [StringLiteral] "a"
 #   16|       5: [Method] getStaticProp
 #-----|         1: (Annotations)
 #   16|         3: [TypeAccess] String
@@ -204,7 +204,7 @@ test.kt:
 #   16|               1: [VarAccess] <set-?>
 #   17|       7: [FieldDeclaration] String nonStaticProp;
 #   17|         -1: [TypeAccess] String
-#   17|         0: [StringLiteral] b
+#   17|         0: [StringLiteral] "b"
 #   17|       8: [Method] getNonStaticProp
 #-----|         1: (Annotations)
 #   17|         3: [TypeAccess] String
@@ -353,7 +353,7 @@ test.kt:
 #   34|             0: [VarAccess] s
 #   36|     5: [FieldDeclaration] String staticProp;
 #   36|       -1: [TypeAccess] String
-#   36|       0: [StringLiteral] a
+#   36|       0: [StringLiteral] "a"
 #   36|     6: [Method] getStaticProp
 #-----|       1: (Annotations)
 #   36|       3: [TypeAccess] String
@@ -377,7 +377,7 @@ test.kt:
 #   36|             1: [VarAccess] <set-?>
 #   37|     8: [FieldDeclaration] String nonStaticProp;
 #   37|       -1: [TypeAccess] String
-#   37|       0: [StringLiteral] b
+#   37|       0: [StringLiteral] "b"
 #   37|     9: [Method] getNonStaticProp
 #-----|       1: (Annotations)
 #   37|       3: [TypeAccess] String
diff --git a/java/ql/test/kotlin/library-tests/lateinit/PrintAst.expected b/java/ql/test/kotlin/library-tests/lateinit/PrintAst.expected
index c2119ec6123..9f482ab3b71 100644
--- a/java/ql/test/kotlin/library-tests/lateinit/PrintAst.expected
+++ b/java/ql/test/kotlin/library-tests/lateinit/PrintAst.expected
@@ -30,7 +30,7 @@ test.kt:
 #    4|         0: [ReturnStmt] return ...
 #    4|           0: [MethodAccess] println(...)
 #    4|             -1: [TypeAccess] ConsoleKt
-#    4|             0: [StringLiteral] a
+#    4|             0: [StringLiteral] "a"
 #    6|     6: [Method] init
 #    6|       3: [TypeAccess] LateInit
 #    6|       5: [BlockStmt] { ... }
diff --git a/java/ql/test/kotlin/library-tests/literals/literals.expected b/java/ql/test/kotlin/library-tests/literals/literals.expected
index 86d23aa0d05..a22709ce194 100644
--- a/java/ql/test/kotlin/library-tests/literals/literals.expected
+++ b/java/ql/test/kotlin/library-tests/literals/literals.expected
@@ -23,7 +23,7 @@
 | literals.kt:25:34:25:39 | -123.4 | DoubleLiteral |
 | literals.kt:26:30:26:32 | c | CharacterLiteral |
 | literals.kt:27:30:27:33 | \n | CharacterLiteral |
-| literals.kt:28:34:28:35 |  | StringLiteral |
-| literals.kt:29:35:29:45 | Some string | StringLiteral |
-| literals.kt:30:35:30:46 | Some\nstring | StringLiteral |
+| literals.kt:28:34:28:35 | "" | StringLiteral |
+| literals.kt:29:35:29:45 | "Some string" | StringLiteral |
+| literals.kt:30:35:30:46 | "Some\\nstring" | StringLiteral |
 | literals.kt:31:30:31:33 | null | NullLiteral |
diff --git a/java/ql/test/kotlin/library-tests/methods/exprs.expected b/java/ql/test/kotlin/library-tests/methods/exprs.expected
index 76a48c189c4..6d2221b5bae 100644
--- a/java/ql/test/kotlin/library-tests/methods/exprs.expected
+++ b/java/ql/test/kotlin/library-tests/methods/exprs.expected
@@ -17,10 +17,13 @@
 | dataClass.kt:0:0:0:0 | 1 | IntegerLiteral |
 | dataClass.kt:0:0:0:0 | 2 | IntegerLiteral |
 | dataClass.kt:0:0:0:0 | 31 | IntegerLiteral |
+| dataClass.kt:0:0:0:0 | ")" | StringLiteral |
+| dataClass.kt:0:0:0:0 | ", " | StringLiteral |
 | dataClass.kt:0:0:0:0 | "..." | StringTemplateExpr |
+| dataClass.kt:0:0:0:0 | "DataClass(" | StringLiteral |
+| dataClass.kt:0:0:0:0 | "x=" | StringLiteral |
+| dataClass.kt:0:0:0:0 | "y=" | StringLiteral |
 | dataClass.kt:0:0:0:0 | (...)... | CastExpr |
-| dataClass.kt:0:0:0:0 | ) | StringLiteral |
-| dataClass.kt:0:0:0:0 | ,  | StringLiteral |
 | dataClass.kt:0:0:0:0 | ... !is ... | NotInstanceOfExpr |
 | dataClass.kt:0:0:0:0 | ... & ... | AndBitwiseExpr |
 | dataClass.kt:0:0:0:0 | ... & ... | AndBitwiseExpr |
@@ -40,7 +43,6 @@
 | dataClass.kt:0:0:0:0 | DataClass | TypeAccess |
 | dataClass.kt:0:0:0:0 | DataClass | TypeAccess |
 | dataClass.kt:0:0:0:0 | DataClass | TypeAccess |
-| dataClass.kt:0:0:0:0 | DataClass( | StringLiteral |
 | dataClass.kt:0:0:0:0 | Object | TypeAccess |
 | dataClass.kt:0:0:0:0 | Object | TypeAccess |
 | dataClass.kt:0:0:0:0 | String | TypeAccess |
@@ -105,9 +107,7 @@
 | dataClass.kt:0:0:0:0 | when ... | WhenExpr |
 | dataClass.kt:0:0:0:0 | when ... | WhenExpr |
 | dataClass.kt:0:0:0:0 | x | VarAccess |
-| dataClass.kt:0:0:0:0 | x= | StringLiteral |
 | dataClass.kt:0:0:0:0 | y | VarAccess |
-| dataClass.kt:0:0:0:0 | y= | StringLiteral |
 | dataClass.kt:1:22:1:31 | ...=... | KtInitializerAssignExpr |
 | dataClass.kt:1:22:1:31 | int | TypeAccess |
 | dataClass.kt:1:22:1:31 | int | TypeAccess |
@@ -204,7 +204,7 @@
 | delegates.kt:8:35:11:5 | <set-?> | VarAccess |
 | delegates.kt:8:35:11:5 | String | TypeAccess |
 | delegates.kt:8:35:11:5 | observable(...) | MethodAccess |
-| delegates.kt:8:57:8:62 | <none> | StringLiteral |
+| delegates.kt:8:57:8:62 | "<none>" | StringLiteral |
 | delegates.kt:8:66:11:5 | ...->... | LambdaExpr |
 | delegates.kt:8:66:11:5 | Function3<KProperty<?>,String,String,Unit> | TypeAccess |
 | delegates.kt:8:66:11:5 | KProperty<?> | TypeAccess |
@@ -219,9 +219,9 @@
 | delegates.kt:10:9:10:37 | ConsoleKt | TypeAccess |
 | delegates.kt:10:9:10:37 | println(...) | MethodAccess |
 | delegates.kt:10:17:10:36 | "..." | StringTemplateExpr |
-| delegates.kt:10:18:10:21 | Was  | StringLiteral |
+| delegates.kt:10:18:10:21 | "Was " | StringLiteral |
 | delegates.kt:10:23:10:25 | old | VarAccess |
-| delegates.kt:10:26:10:31 | , now  | StringLiteral |
+| delegates.kt:10:26:10:31 | ", now " | StringLiteral |
 | delegates.kt:10:33:10:35 | new | VarAccess |
 | enumClass.kt:0:0:0:0 | EnumClass | TypeAccess |
 | enumClass.kt:0:0:0:0 | EnumClass | TypeAccess |
diff --git a/java/ql/test/kotlin/library-tests/operator-overloads/PrintAst.expected b/java/ql/test/kotlin/library-tests/operator-overloads/PrintAst.expected
index af62c3e412e..46fd70318ad 100644
--- a/java/ql/test/kotlin/library-tests/operator-overloads/PrintAst.expected
+++ b/java/ql/test/kotlin/library-tests/operator-overloads/PrintAst.expected
@@ -59,7 +59,7 @@ test.kt:
 #   10|           0: [TypeAccess] int
 #   10|       5: [BlockStmt] { ... }
 #   10|         0: [ReturnStmt] return ...
-#   10|           0: [StringLiteral] 
+#   10|           0: [StringLiteral] ""
 #   11|     3: [ExtensionMethod] set
 #   11|       3: [TypeAccess] String
 #-----|       4: (Parameters)
@@ -73,7 +73,7 @@ test.kt:
 #   11|           0: [TypeAccess] int
 #   11|       5: [BlockStmt] { ... }
 #   11|         0: [ReturnStmt] return ...
-#   11|           0: [StringLiteral] 
+#   11|           0: [StringLiteral] ""
 #   12|     4: [ExtensionMethod] set
 #   12|       3: [TypeAccess] String
 #-----|       4: (Parameters)
@@ -85,7 +85,7 @@ test.kt:
 #   12|           0: [TypeAccess] C
 #   12|       5: [BlockStmt] { ... }
 #   12|         0: [ReturnStmt] return ...
-#   12|           0: [StringLiteral] 
+#   12|           0: [StringLiteral] ""
 #   15|   2: [Class] C
 #   15|     1: [Constructor] C
 #   15|       5: [BlockStmt] { ... }
@@ -100,4 +100,4 @@ test.kt:
 #   16|           0: [TypeAccess] int
 #   16|       5: [BlockStmt] { ... }
 #   16|         0: [ReturnStmt] return ...
-#   16|           0: [StringLiteral] 
+#   16|           0: [StringLiteral] ""
diff --git a/java/ql/test/kotlin/library-tests/parameter-defaults/PrintAst.expected b/java/ql/test/kotlin/library-tests/parameter-defaults/PrintAst.expected
index a769bc397ee..972e826cdca 100644
--- a/java/ql/test/kotlin/library-tests/parameter-defaults/PrintAst.expected
+++ b/java/ql/test/kotlin/library-tests/parameter-defaults/PrintAst.expected
@@ -56,7 +56,7 @@ test.kt:
 #  184|           1: [ExprStmt] <Expr>;
 #  184|             0: [AssignExpr] ...=...
 #  184|               0: [VarAccess] p0
-#  184|               1: [StringLiteral] before-vararg-default sunk
+#  184|               1: [StringLiteral] "before-vararg-default sunk"
 #  184|         1: [IfStmt] if (...)
 #  184|           0: [EQExpr] ... == ...
 #  184|             0: [AndBitwiseExpr] ... & ...
@@ -68,8 +68,8 @@ test.kt:
 #  184|               0: [VarAccess] p1
 #  184|               1: [ArrayCreationExpr] new String[]
 #  184|                 -2: [ArrayInit] {...}
-#  184|                   0: [StringLiteral] first-vararg-default sunk
-#  184|                   1: [StringLiteral] second-vararg-default sunk
+#  184|                   0: [StringLiteral] "first-vararg-default sunk"
+#  184|                   1: [StringLiteral] "second-vararg-default sunk"
 #  184|                 -1: [TypeAccess] String
 #  184|                 0: [IntegerLiteral] 2
 #  184|         2: [IfStmt] if (...)
@@ -81,7 +81,7 @@ test.kt:
 #  184|           1: [ExprStmt] <Expr>;
 #  184|             0: [AssignExpr] ...=...
 #  184|               0: [VarAccess] p2
-#  184|               1: [StringLiteral] after-vararg-default sunk
+#  184|               1: [StringLiteral] "after-vararg-default sunk"
 #  184|         3: [ReturnStmt] return ...
 #  184|           0: [MethodAccess] varargsTest(...)
 #  184|             -1: [TypeAccess] TestKt
@@ -102,7 +102,7 @@ test.kt:
 #  192|         1: [ExprStmt] <Expr>;
 #  192|           0: [MethodAccess] varargsTest$default(...)
 #  192|             -1: [TypeAccess] TestKt
-#  192|             0: [StringLiteral] no-varargs-before, no-z-parameter sunk
+#  192|             0: [StringLiteral] "no-varargs-before, no-z-parameter sunk"
 #    1|             1: [NullLiteral] null
 #    1|             2: [NullLiteral] null
 #    1|             3: [IntegerLiteral] 1
@@ -110,32 +110,32 @@ test.kt:
 #  193|         2: [ExprStmt] <Expr>;
 #  193|           0: [MethodAccess] varargsTest$default(...)
 #  193|             -1: [TypeAccess] TestKt
-#  193|             0: [StringLiteral] no-varargs-before sunk
+#  193|             0: [StringLiteral] "no-varargs-before sunk"
 #    1|             1: [NullLiteral] null
-#  193|             2: [StringLiteral] no-varargs-after sunk
+#  193|             2: [StringLiteral] "no-varargs-after sunk"
 #    1|             3: [IntegerLiteral] 5
 #    1|             4: [NullLiteral] null
 #  194|         3: [ExprStmt] <Expr>;
 #  194|           0: [MethodAccess] varargsTest(...)
 #  194|             -1: [TypeAccess] TestKt
-#  194|             0: [StringLiteral] one-vararg-before sunk
-#  194|             1: [StringLiteral] one-vararg sunk
-#  194|             2: [StringLiteral] one-vararg-after sunk
+#  194|             0: [StringLiteral] "one-vararg-before sunk"
+#  194|             1: [StringLiteral] "one-vararg sunk"
+#  194|             2: [StringLiteral] "one-vararg-after sunk"
 #  195|         4: [ExprStmt] <Expr>;
 #  195|           0: [MethodAccess] varargsTest(...)
 #  195|             -1: [TypeAccess] TestKt
-#  195|             0: [StringLiteral] two-varargs-before sunk
-#  195|             1: [StringLiteral] two-vararg-first sunk
-#  195|             2: [StringLiteral] two-vararg-second sunk
-#  195|             3: [StringLiteral] two-varargs-after sunk
+#  195|             0: [StringLiteral] "two-varargs-before sunk"
+#  195|             1: [StringLiteral] "two-vararg-first sunk"
+#  195|             2: [StringLiteral] "two-vararg-second sunk"
+#  195|             3: [StringLiteral] "two-varargs-after sunk"
 #  196|         5: [ExprStmt] <Expr>;
 #  196|           0: [MethodAccess] varargsTest$default(...)
 #  196|             -1: [TypeAccess] TestKt
-#  196|             0: [StringLiteral] no-z-parmeter sunk
+#  196|             0: [StringLiteral] "no-z-parmeter sunk"
 #  196|             1: [ArrayCreationExpr] new String[]
 #  196|               -2: [ArrayInit] {...}
-#  196|                 0: [StringLiteral] no-z-parameter first vararg sunk
-#  196|                 1: [StringLiteral] no-z-parameter second vararg sunk
+#  196|                 0: [StringLiteral] "no-z-parameter first vararg sunk"
+#  196|                 1: [StringLiteral] "no-z-parameter second vararg sunk"
 #  196|               -1: [TypeAccess] String
 #  196|               0: [IntegerLiteral] 2
 #    1|             2: [NullLiteral] null
@@ -182,7 +182,7 @@ test.kt:
 #  199|           1: [ExprStmt] <Expr>;
 #  199|             0: [AssignExpr] ...=...
 #  199|               0: [VarAccess] p0
-#  199|               1: [StringLiteral] before-vararg-default not sunk 2
+#  199|               1: [StringLiteral] "before-vararg-default not sunk 2"
 #  199|         1: [IfStmt] if (...)
 #  199|           0: [EQExpr] ... == ...
 #  199|             0: [AndBitwiseExpr] ... & ...
@@ -194,8 +194,8 @@ test.kt:
 #  199|               0: [VarAccess] p1
 #  199|               1: [ArrayCreationExpr] new String[]
 #  199|                 -2: [ArrayInit] {...}
-#  199|                   0: [StringLiteral] first-vararg-default sunk 2
-#  199|                   1: [StringLiteral] second-vararg-default sunk 2
+#  199|                   0: [StringLiteral] "first-vararg-default sunk 2"
+#  199|                   1: [StringLiteral] "second-vararg-default sunk 2"
 #  199|                 -1: [TypeAccess] String
 #  199|                 0: [IntegerLiteral] 2
 #  199|         2: [IfStmt] if (...)
@@ -207,7 +207,7 @@ test.kt:
 #  199|           1: [ExprStmt] <Expr>;
 #  199|             0: [AssignExpr] ...=...
 #  199|               0: [VarAccess] p2
-#  199|               1: [StringLiteral] after-vararg-default not sunk 2
+#  199|               1: [StringLiteral] "after-vararg-default not sunk 2"
 #  199|         3: [ReturnStmt] return ...
 #  199|           0: [MethodAccess] varargsTestOnlySinkVarargs(...)
 #  199|             -1: [TypeAccess] TestKt
@@ -228,7 +228,7 @@ test.kt:
 #  205|         1: [ExprStmt] <Expr>;
 #  205|           0: [MethodAccess] varargsTestOnlySinkVarargs$default(...)
 #  205|             -1: [TypeAccess] TestKt
-#  205|             0: [StringLiteral] no-varargs-before, no-z-parameter not sunk 2
+#  205|             0: [StringLiteral] "no-varargs-before, no-z-parameter not sunk 2"
 #    1|             1: [NullLiteral] null
 #    1|             2: [NullLiteral] null
 #    1|             3: [IntegerLiteral] 1
@@ -236,32 +236,32 @@ test.kt:
 #  206|         2: [ExprStmt] <Expr>;
 #  206|           0: [MethodAccess] varargsTestOnlySinkVarargs$default(...)
 #  206|             -1: [TypeAccess] TestKt
-#  206|             0: [StringLiteral] no-varargs-before not sunk 2
+#  206|             0: [StringLiteral] "no-varargs-before not sunk 2"
 #    1|             1: [NullLiteral] null
-#  206|             2: [StringLiteral] no-varargs-after not sunk 2
+#  206|             2: [StringLiteral] "no-varargs-after not sunk 2"
 #    1|             3: [IntegerLiteral] 5
 #    1|             4: [NullLiteral] null
 #  207|         3: [ExprStmt] <Expr>;
 #  207|           0: [MethodAccess] varargsTestOnlySinkVarargs(...)
 #  207|             -1: [TypeAccess] TestKt
-#  207|             0: [StringLiteral] one-vararg-before not sunk 2
-#  207|             1: [StringLiteral] one-vararg sunk 2
-#  207|             2: [StringLiteral] one-vararg-after not sunk 2
+#  207|             0: [StringLiteral] "one-vararg-before not sunk 2"
+#  207|             1: [StringLiteral] "one-vararg sunk 2"
+#  207|             2: [StringLiteral] "one-vararg-after not sunk 2"
 #  208|         4: [ExprStmt] <Expr>;
 #  208|           0: [MethodAccess] varargsTestOnlySinkVarargs(...)
 #  208|             -1: [TypeAccess] TestKt
-#  208|             0: [StringLiteral] two-varargs-before not sunk 2
-#  208|             1: [StringLiteral] two-vararg-first sunk 2
-#  208|             2: [StringLiteral] two-vararg-second sunk 2
-#  208|             3: [StringLiteral] two-varargs-after not sunk 2
+#  208|             0: [StringLiteral] "two-varargs-before not sunk 2"
+#  208|             1: [StringLiteral] "two-vararg-first sunk 2"
+#  208|             2: [StringLiteral] "two-vararg-second sunk 2"
+#  208|             3: [StringLiteral] "two-varargs-after not sunk 2"
 #  209|         5: [ExprStmt] <Expr>;
 #  209|           0: [MethodAccess] varargsTestOnlySinkVarargs$default(...)
 #  209|             -1: [TypeAccess] TestKt
-#  209|             0: [StringLiteral] no-z-parmeter not sunk 2
+#  209|             0: [StringLiteral] "no-z-parmeter not sunk 2"
 #  209|             1: [ArrayCreationExpr] new String[]
 #  209|               -2: [ArrayInit] {...}
-#  209|                 0: [StringLiteral] no-z-parameter first vararg sunk 2
-#  209|                 1: [StringLiteral] no-z-parameter second vararg sunk 2
+#  209|                 0: [StringLiteral] "no-z-parameter first vararg sunk 2"
+#  209|                 1: [StringLiteral] "no-z-parameter second vararg sunk 2"
 #  209|               -1: [TypeAccess] String
 #  209|               0: [IntegerLiteral] 2
 #    1|             2: [NullLiteral] null
@@ -310,7 +310,7 @@ test.kt:
 #  212|           1: [ExprStmt] <Expr>;
 #  212|             0: [AssignExpr] ...=...
 #  212|               0: [VarAccess] p0
-#  212|               1: [StringLiteral] before-vararg-default sunk 3
+#  212|               1: [StringLiteral] "before-vararg-default sunk 3"
 #  212|         1: [IfStmt] if (...)
 #  212|           0: [EQExpr] ... == ...
 #  212|             0: [AndBitwiseExpr] ... & ...
@@ -322,8 +322,8 @@ test.kt:
 #  212|               0: [VarAccess] p1
 #  212|               1: [ArrayCreationExpr] new String[]
 #  212|                 -2: [ArrayInit] {...}
-#  212|                   0: [StringLiteral] first-vararg-default not sunk 3
-#  212|                   1: [StringLiteral] second-vararg-default not sunk 3
+#  212|                   0: [StringLiteral] "first-vararg-default not sunk 3"
+#  212|                   1: [StringLiteral] "second-vararg-default not sunk 3"
 #  212|                 -1: [TypeAccess] String
 #  212|                 0: [IntegerLiteral] 2
 #  212|         2: [IfStmt] if (...)
@@ -335,7 +335,7 @@ test.kt:
 #  212|           1: [ExprStmt] <Expr>;
 #  212|             0: [AssignExpr] ...=...
 #  212|               0: [VarAccess] p2
-#  212|               1: [StringLiteral] after-vararg-default sunk 3
+#  212|               1: [StringLiteral] "after-vararg-default sunk 3"
 #  212|         3: [ReturnStmt] return ...
 #  212|           0: [MethodAccess] varargsTestOnlySinkRegularArgs(...)
 #  212|             -1: [TypeAccess] TestKt
@@ -356,7 +356,7 @@ test.kt:
 #  219|         1: [ExprStmt] <Expr>;
 #  219|           0: [MethodAccess] varargsTestOnlySinkRegularArgs$default(...)
 #  219|             -1: [TypeAccess] TestKt
-#  219|             0: [StringLiteral] no-varargs-before, no-z-parameter sunk 3
+#  219|             0: [StringLiteral] "no-varargs-before, no-z-parameter sunk 3"
 #    1|             1: [NullLiteral] null
 #    1|             2: [NullLiteral] null
 #    1|             3: [IntegerLiteral] 1
@@ -364,32 +364,32 @@ test.kt:
 #  220|         2: [ExprStmt] <Expr>;
 #  220|           0: [MethodAccess] varargsTestOnlySinkRegularArgs$default(...)
 #  220|             -1: [TypeAccess] TestKt
-#  220|             0: [StringLiteral] no-varargs-before sunk 3
+#  220|             0: [StringLiteral] "no-varargs-before sunk 3"
 #    1|             1: [NullLiteral] null
-#  220|             2: [StringLiteral] no-varargs-after sunk 3
+#  220|             2: [StringLiteral] "no-varargs-after sunk 3"
 #    1|             3: [IntegerLiteral] 5
 #    1|             4: [NullLiteral] null
 #  221|         3: [ExprStmt] <Expr>;
 #  221|           0: [MethodAccess] varargsTestOnlySinkRegularArgs(...)
 #  221|             -1: [TypeAccess] TestKt
-#  221|             0: [StringLiteral] one-vararg-before sunk 3
-#  221|             1: [StringLiteral] one-vararg not sunk 3
-#  221|             2: [StringLiteral] one-vararg-after sunk 3
+#  221|             0: [StringLiteral] "one-vararg-before sunk 3"
+#  221|             1: [StringLiteral] "one-vararg not sunk 3"
+#  221|             2: [StringLiteral] "one-vararg-after sunk 3"
 #  222|         4: [ExprStmt] <Expr>;
 #  222|           0: [MethodAccess] varargsTestOnlySinkRegularArgs(...)
 #  222|             -1: [TypeAccess] TestKt
-#  222|             0: [StringLiteral] two-varargs-before sunk 3
-#  222|             1: [StringLiteral] two-vararg-first not sunk 3
-#  222|             2: [StringLiteral] two-vararg-second not sunk 3
-#  222|             3: [StringLiteral] two-varargs-after sunk 3
+#  222|             0: [StringLiteral] "two-varargs-before sunk 3"
+#  222|             1: [StringLiteral] "two-vararg-first not sunk 3"
+#  222|             2: [StringLiteral] "two-vararg-second not sunk 3"
+#  222|             3: [StringLiteral] "two-varargs-after sunk 3"
 #  223|         5: [ExprStmt] <Expr>;
 #  223|           0: [MethodAccess] varargsTestOnlySinkRegularArgs$default(...)
 #  223|             -1: [TypeAccess] TestKt
-#  223|             0: [StringLiteral] no-z-parmeter sunk 3
+#  223|             0: [StringLiteral] "no-z-parmeter sunk 3"
 #  223|             1: [ArrayCreationExpr] new String[]
 #  223|               -2: [ArrayInit] {...}
-#  223|                 0: [StringLiteral] no-z-parameter first vararg not sunk 3
-#  223|                 1: [StringLiteral] no-z-parameter second vararg not sunk 3
+#  223|                 0: [StringLiteral] "no-z-parameter first vararg not sunk 3"
+#  223|                 1: [StringLiteral] "no-z-parameter second vararg not sunk 3"
 #  223|               -1: [TypeAccess] String
 #  223|               0: [IntegerLiteral] 2
 #    1|             2: [NullLiteral] null
@@ -403,15 +403,15 @@ test.kt:
 #  233|             0: [TypeAccess] Unit
 #  233|             1: [ClassInstanceExpr] new VarargsConstructorTest(...)
 #  233|               -3: [TypeAccess] VarargsConstructorTest
-#  233|               0: [StringLiteral] varargs constructor test sunk
+#  233|               0: [StringLiteral] "varargs constructor test sunk"
 #  234|         1: [ExprStmt] <Expr>;
 #  234|           0: [ImplicitCoercionToUnitExpr] <implicit coercion to unit>
 #  234|             0: [TypeAccess] Unit
 #  234|             1: [ClassInstanceExpr] new VarargsConstructorTest(...)
 #  234|               -3: [TypeAccess] VarargsConstructorTest
-#  234|               0: [StringLiteral] varargs constructor test sunk 2
-#  234|               1: [StringLiteral] varargs constructor test not sunk 1
-#  234|               2: [StringLiteral] varargs constructor test not sunk 2
+#  234|               0: [StringLiteral] "varargs constructor test sunk 2"
+#  234|               1: [StringLiteral] "varargs constructor test not sunk 1"
+#  234|               2: [StringLiteral] "varargs constructor test not sunk 2"
 #    3|   2: [Class] TestMember
 #    3|     1: [Constructor] TestMember
 #    3|       5: [BlockStmt] { ... }
@@ -466,7 +466,7 @@ test.kt:
 #    5|           1: [ExprStmt] <Expr>;
 #    5|             0: [AssignExpr] ...=...
 #    5|               0: [VarAccess] p3
-#    5|               1: [StringLiteral] hello world
+#    5|               1: [StringLiteral] "hello world"
 #    5|         2: [ReturnStmt] return ...
 #    5|           0: [MethodAccess] f(...)
 #    5|             -1: [VarAccess] p0
@@ -480,7 +480,7 @@ test.kt:
 #   10|           0: [MethodAccess] f$default(...)
 #   10|             -1: [TypeAccess] TestMember
 #   10|             0: [ThisAccess] this
-#   10|             1: [StringLiteral] member sunk
+#   10|             1: [StringLiteral] "member sunk"
 #    1|             2: [NullLiteral] null
 #    1|             3: [NullLiteral] null
 #    1|             4: [IntegerLiteral] 1
@@ -489,17 +489,17 @@ test.kt:
 #   11|           0: [MethodAccess] f$default(...)
 #   11|             -1: [TypeAccess] TestMember
 #   11|             0: [ThisAccess] this
-#   11|             1: [StringLiteral] member sunk fp
-#   11|             2: [StringLiteral] member sunk 2
+#   11|             1: [StringLiteral] "member sunk fp"
+#   11|             2: [StringLiteral] "member sunk 2"
 #    1|             3: [NullLiteral] null
 #    1|             4: [IntegerLiteral] 3
 #    1|             5: [NullLiteral] null
 #   12|         2: [ExprStmt] <Expr>;
 #   12|           0: [MethodAccess] f(...)
 #   12|             -1: [ThisAccess] this
-#   12|             0: [StringLiteral] not sunk
-#   12|             1: [StringLiteral] member sunk 3
-#   12|             2: [StringLiteral] not sunk
+#   12|             0: [StringLiteral] "not sunk"
+#   12|             1: [StringLiteral] "member sunk 3"
+#   12|             2: [StringLiteral] "not sunk"
 #   17|   3: [Class] TestExtensionMember
 #   17|     1: [Constructor] TestExtensionMember
 #   17|       5: [BlockStmt] { ... }
@@ -562,7 +562,7 @@ test.kt:
 #   19|           1: [ExprStmt] <Expr>;
 #   19|             0: [AssignExpr] ...=...
 #   19|               0: [VarAccess] p4
-#   19|               1: [StringLiteral] hello world
+#   19|               1: [StringLiteral] "hello world"
 #   19|         2: [ReturnStmt] return ...
 #   19|           0: [MethodAccess] f(...)
 #   19|             -1: [VarAccess] p1
@@ -581,7 +581,7 @@ test.kt:
 #   25|             -1: [TypeAccess] TestExtensionMember
 #   25|             0: [VarAccess] sunk
 #   25|             1: [ThisAccess] this
-#   25|             2: [StringLiteral] extension sunk
+#   25|             2: [StringLiteral] "extension sunk"
 #    1|             3: [NullLiteral] null
 #    1|             4: [NullLiteral] null
 #    1|             5: [IntegerLiteral] 1
@@ -591,8 +591,8 @@ test.kt:
 #   26|             -1: [TypeAccess] TestExtensionMember
 #   26|             0: [VarAccess] sunk
 #   26|             1: [ThisAccess] this
-#   26|             2: [StringLiteral] extension sunk fp
-#   26|             3: [StringLiteral] extension sunk 2
+#   26|             2: [StringLiteral] "extension sunk fp"
+#   26|             3: [StringLiteral] "extension sunk 2"
 #    1|             4: [NullLiteral] null
 #    1|             5: [IntegerLiteral] 3
 #    1|             6: [NullLiteral] null
@@ -600,9 +600,9 @@ test.kt:
 #   27|           0: [MethodAccess] f(...)
 #   27|             -1: [ThisAccess] this
 #   27|             0: [VarAccess] sunk
-#   27|             1: [StringLiteral] not sunk
-#   27|             2: [StringLiteral] extension sunk 3
-#   27|             3: [StringLiteral] not sunk
+#   27|             1: [StringLiteral] "not sunk"
+#   27|             2: [StringLiteral] "extension sunk 3"
+#   27|             3: [StringLiteral] "not sunk"
 #   32|   4: [Class] TestStaticMember
 #   32|     1: [Constructor] TestStaticMember
 #   32|       5: [BlockStmt] { ... }
@@ -655,7 +655,7 @@ test.kt:
 #   34|           1: [ExprStmt] <Expr>;
 #   34|             0: [AssignExpr] ...=...
 #   34|               0: [VarAccess] p2
-#   34|               1: [StringLiteral] hello world
+#   34|               1: [StringLiteral] "hello world"
 #   34|         2: [ReturnStmt] return ...
 #   34|           0: [MethodAccess] f(...)
 #   34|             -1: [TypeAccess] TestStaticMember
@@ -668,7 +668,7 @@ test.kt:
 #   39|         0: [ExprStmt] <Expr>;
 #   39|           0: [MethodAccess] f$default(...)
 #   39|             -1: [TypeAccess] TestStaticMember
-#   39|             0: [StringLiteral] static sunk
+#   39|             0: [StringLiteral] "static sunk"
 #    1|             1: [NullLiteral] null
 #    1|             2: [NullLiteral] null
 #    1|             3: [IntegerLiteral] 1
@@ -676,17 +676,17 @@ test.kt:
 #   40|         1: [ExprStmt] <Expr>;
 #   40|           0: [MethodAccess] f$default(...)
 #   40|             -1: [TypeAccess] TestStaticMember
-#   40|             0: [StringLiteral] static sunk fp
-#   40|             1: [StringLiteral] static sunk 2
+#   40|             0: [StringLiteral] "static sunk fp"
+#   40|             1: [StringLiteral] "static sunk 2"
 #    1|             2: [NullLiteral] null
 #    1|             3: [IntegerLiteral] 3
 #    1|             4: [NullLiteral] null
 #   41|         2: [ExprStmt] <Expr>;
 #   41|           0: [MethodAccess] f(...)
 #   41|             -1: [TypeAccess] TestStaticMember
-#   41|             0: [StringLiteral] not sunk
-#   41|             1: [StringLiteral] static sunk 3
-#   41|             2: [StringLiteral] not sunk
+#   41|             0: [StringLiteral] "not sunk"
+#   41|             1: [StringLiteral] "static sunk 3"
+#   41|             2: [StringLiteral] "not sunk"
 #   46|   5: [Class] ExtendMe
 #   46|     1: [Constructor] ExtendMe
 #   46|       5: [BlockStmt] { ... }
@@ -770,7 +770,7 @@ test.kt:
 #   56|           1: [ExprStmt] <Expr>;
 #   56|             0: [AssignExpr] ...=...
 #   56|               0: [VarAccess] p4
-#   56|               1: [StringLiteral] hello world
+#   56|               1: [StringLiteral] "hello world"
 #   56|         2: [ReturnStmt] return ...
 #   56|           0: [MethodAccess] test(...)
 #   56|             -1: [VarAccess] p1
@@ -789,7 +789,7 @@ test.kt:
 #   61|             -1: [TypeAccess] TestReceiverReferences
 #   61|             0: [VarAccess] t
 #   61|             1: [ThisAccess] this
-#   61|             2: [StringLiteral] receiver refs sunk
+#   61|             2: [StringLiteral] "receiver refs sunk"
 #    1|             3: [NullLiteral] null
 #    1|             4: [NullLiteral] null
 #    1|             5: [IntegerLiteral] 1
@@ -799,8 +799,8 @@ test.kt:
 #   62|             -1: [TypeAccess] TestReceiverReferences
 #   62|             0: [VarAccess] t
 #   62|             1: [ThisAccess] this
-#   62|             2: [StringLiteral] receiver refs sunk fp
-#   62|             3: [StringLiteral] receiver refs sunk 2
+#   62|             2: [StringLiteral] "receiver refs sunk fp"
+#   62|             3: [StringLiteral] "receiver refs sunk 2"
 #    1|             4: [NullLiteral] null
 #    1|             5: [IntegerLiteral] 3
 #    1|             6: [NullLiteral] null
@@ -808,9 +808,9 @@ test.kt:
 #   63|           0: [MethodAccess] test(...)
 #   63|             -1: [ThisAccess] this
 #   63|             0: [VarAccess] t
-#   63|             1: [StringLiteral] not sunk
-#   63|             2: [StringLiteral] receiver refs sunk 3
-#   63|             3: [StringLiteral] not sunk
+#   63|             1: [StringLiteral] "not sunk"
+#   63|             2: [StringLiteral] "receiver refs sunk 3"
+#   63|             3: [StringLiteral] "not sunk"
 #   68|   7: [Class] TestConstructor
 #   68|     1: [Constructor] TestConstructor
 #-----|       4: (Parameters)
@@ -859,7 +859,7 @@ test.kt:
 #   68|           1: [ExprStmt] <Expr>;
 #   68|             0: [AssignExpr] ...=...
 #   68|               0: [VarAccess] p2
-#   68|               1: [StringLiteral] hello world
+#   68|               1: [StringLiteral] "hello world"
 #   68|         2: [ThisConstructorInvocationStmt] this(...)
 #   68|           0: [VarAccess] p0
 #   68|           1: [VarAccess] p1
@@ -872,7 +872,7 @@ test.kt:
 #   75|             0: [TypeAccess] Unit
 #   75|             1: [ClassInstanceExpr] new TestConstructor(...)
 #   75|               -3: [TypeAccess] TestConstructor
-#   75|               0: [StringLiteral] constructor sunk
+#   75|               0: [StringLiteral] "constructor sunk"
 #    1|               1: [NullLiteral] null
 #    1|               2: [NullLiteral] null
 #    1|               3: [IntegerLiteral] 1
@@ -882,8 +882,8 @@ test.kt:
 #   76|             0: [TypeAccess] Unit
 #   76|             1: [ClassInstanceExpr] new TestConstructor(...)
 #   76|               -3: [TypeAccess] TestConstructor
-#   76|               0: [StringLiteral] constructor sunk fp
-#   76|               1: [StringLiteral] constructor sunk 2
+#   76|               0: [StringLiteral] "constructor sunk fp"
+#   76|               1: [StringLiteral] "constructor sunk 2"
 #    1|               2: [NullLiteral] null
 #    1|               3: [IntegerLiteral] 3
 #    1|               4: [NullLiteral] null
@@ -892,9 +892,9 @@ test.kt:
 #   77|             0: [TypeAccess] Unit
 #   77|             1: [ClassInstanceExpr] new TestConstructor(...)
 #   77|               -3: [TypeAccess] TestConstructor
-#   77|               0: [StringLiteral] not sunk
-#   77|               1: [StringLiteral] constructor sunk 3
-#   77|               2: [StringLiteral] not sunk
+#   77|               0: [StringLiteral] "not sunk"
+#   77|               1: [StringLiteral] "constructor sunk 3"
+#   77|               2: [StringLiteral] "not sunk"
 #   82|   8: [Class] TestLocal
 #   82|     1: [Constructor] TestLocal
 #   82|       5: [BlockStmt] { ... }
@@ -955,7 +955,7 @@ test.kt:
 #   86|                   1: [ExprStmt] <Expr>;
 #   86|                     0: [AssignExpr] ...=...
 #   86|                       0: [VarAccess] p2
-#   86|                       1: [StringLiteral] hello world
+#   86|                       1: [StringLiteral] "hello world"
 #   86|                 2: [ReturnStmt] return ...
 #   86|                   0: [MethodAccess] f(...)
 #   86|                     -1: [ClassInstanceExpr] new (...)
@@ -974,7 +974,7 @@ test.kt:
 #   91|                 0: [ExprStmt] <Expr>;
 #   91|                   0: [MethodAccess] f$default(...)
 #   91|                     -1: [TypeAccess] 
-#   91|                     0: [StringLiteral] local sunk
+#   91|                     0: [StringLiteral] "local sunk"
 #    1|                     1: [NullLiteral] null
 #    1|                     2: [NullLiteral] null
 #    1|                     3: [IntegerLiteral] 1
@@ -982,8 +982,8 @@ test.kt:
 #   92|                 1: [ExprStmt] <Expr>;
 #   92|                   0: [MethodAccess] f$default(...)
 #   92|                     -1: [TypeAccess] 
-#   92|                     0: [StringLiteral] local sunk fp
-#   92|                     1: [StringLiteral] local sunk 2
+#   92|                     0: [StringLiteral] "local sunk fp"
+#   92|                     1: [StringLiteral] "local sunk 2"
 #    1|                     2: [NullLiteral] null
 #    1|                     3: [IntegerLiteral] 3
 #    1|                     4: [NullLiteral] null
@@ -991,9 +991,9 @@ test.kt:
 #   93|                   0: [MethodAccess] f(...)
 #   93|                     -1: [ClassInstanceExpr] new (...)
 #   93|                       -3: [TypeAccess] Object
-#   93|                     0: [StringLiteral] not sunk
-#   93|                     1: [StringLiteral] local sunk 3
-#   93|                     2: [StringLiteral] not sunk
+#   93|                     0: [StringLiteral] "not sunk"
+#   93|                     1: [StringLiteral] "local sunk 3"
+#   93|                     2: [StringLiteral] "not sunk"
 #  100|   9: [Class] TestLocalClass
 #  100|     1: [Constructor] TestLocalClass
 #  100|       5: [BlockStmt] { ... }
@@ -1057,7 +1057,7 @@ test.kt:
 #  106|                   1: [ExprStmt] <Expr>;
 #  106|                     0: [AssignExpr] ...=...
 #  106|                       0: [VarAccess] p3
-#  106|                       1: [StringLiteral] hello world
+#  106|                       1: [StringLiteral] "hello world"
 #  106|                 2: [ReturnStmt] return ...
 #  106|                   0: [MethodAccess] f(...)
 #  106|                     -1: [VarAccess] p0
@@ -1071,7 +1071,7 @@ test.kt:
 #  111|                   0: [MethodAccess] f$default(...)
 #  111|                     -1: [TypeAccess] EnclosingLocalClass
 #  111|                     0: [ThisAccess] this
-#  111|                     1: [StringLiteral] local sunk
+#  111|                     1: [StringLiteral] "local sunk"
 #    1|                     2: [NullLiteral] null
 #    1|                     3: [NullLiteral] null
 #    1|                     4: [IntegerLiteral] 1
@@ -1080,17 +1080,17 @@ test.kt:
 #  112|                   0: [MethodAccess] f$default(...)
 #  112|                     -1: [TypeAccess] EnclosingLocalClass
 #  112|                     0: [ThisAccess] this
-#  112|                     1: [StringLiteral] local sunk fp
-#  112|                     2: [StringLiteral] local sunk 2
+#  112|                     1: [StringLiteral] "local sunk fp"
+#  112|                     2: [StringLiteral] "local sunk 2"
 #    1|                     3: [NullLiteral] null
 #    1|                     4: [IntegerLiteral] 3
 #    1|                     5: [NullLiteral] null
 #  113|                 2: [ExprStmt] <Expr>;
 #  113|                   0: [MethodAccess] f(...)
 #  113|                     -1: [ThisAccess] this
-#  113|                     0: [StringLiteral] not sunk
-#  113|                     1: [StringLiteral] local sunk 3
-#  113|                     2: [StringLiteral] not sunk
+#  113|                     0: [StringLiteral] "not sunk"
+#  113|                     1: [StringLiteral] "local sunk 3"
+#  113|                     2: [StringLiteral] "not sunk"
 #  122|   10: [Class,GenericType,ParameterizedType] TestGeneric
 #-----|     -2: (Generic Parameters)
 #  122|       0: [TypeVariable] T
@@ -1168,7 +1168,7 @@ test.kt:
 #  129|           0: [MethodAccess] f$default(...)
 #  129|             -1: [TypeAccess] TestGeneric<>
 #  129|             0: [VarAccess] tgs
-#  129|             1: [StringLiteral] generic sunk
+#  129|             1: [StringLiteral] "generic sunk"
 #    1|             2: [NullLiteral] null
 #    1|             3: [NullLiteral] null
 #    1|             4: [IntegerLiteral] 1
@@ -1177,23 +1177,23 @@ test.kt:
 #  130|           0: [MethodAccess] f$default(...)
 #  130|             -1: [TypeAccess] TestGeneric<>
 #  130|             0: [VarAccess] tcs
-#  130|             1: [StringLiteral] generic sunk fp
-#  130|             2: [StringLiteral] generic sunk 2
+#  130|             1: [StringLiteral] "generic sunk fp"
+#  130|             2: [StringLiteral] "generic sunk 2"
 #    1|             3: [NullLiteral] null
 #    1|             4: [IntegerLiteral] 3
 #    1|             5: [NullLiteral] null
 #  131|         2: [ExprStmt] <Expr>;
 #  131|           0: [MethodAccess] f(...)
 #  131|             -1: [VarAccess] tgs
-#  131|             0: [StringLiteral] not sunk
-#  131|             1: [StringLiteral] generic sunk 3
-#  131|             2: [StringLiteral] not sunk
+#  131|             0: [StringLiteral] "not sunk"
+#  131|             1: [StringLiteral] "generic sunk 3"
+#  131|             2: [StringLiteral] "not sunk"
 #  132|         3: [ExprStmt] <Expr>;
 #  132|           0: [MethodAccess] f(...)
 #  132|             -1: [VarAccess] tcs
-#  132|             0: [StringLiteral] not sunk
-#  132|             1: [StringLiteral] generic sunk 3
-#  132|             2: [StringLiteral] not sunk
+#  132|             0: [StringLiteral] "not sunk"
+#  132|             1: [StringLiteral] "generic sunk 3"
+#  132|             2: [StringLiteral] "not sunk"
 #  135|     5: [Method] testReturn
 #  135|       3: [TypeAccess] T
 #-----|       4: (Parameters)
@@ -1246,7 +1246,7 @@ test.kt:
 #  138|             0: [MethodAccess] testReturn$default(...)
 #  138|               -1: [TypeAccess] TestGeneric<>
 #  138|               0: [VarAccess] tgs
-#  138|               1: [StringLiteral] sunk return value
+#  138|               1: [StringLiteral] "sunk return value"
 #    1|               2: [NullLiteral] null
 #    1|               3: [IntegerLiteral] 1
 #    1|               4: [NullLiteral] null
@@ -1381,7 +1381,7 @@ test.kt:
 #  150|           0: [MethodAccess] f$default(...)
 #  150|             -1: [TypeAccess] TestGenericFunction<>
 #  150|             0: [VarAccess] inst
-#  150|             1: [StringLiteral] generic function sunk
+#  150|             1: [StringLiteral] "generic function sunk"
 #    1|             2: [NullLiteral] null
 #    1|             3: [NullLiteral] null
 #    1|             4: [NullLiteral] null
@@ -1393,8 +1393,8 @@ test.kt:
 #  151|           0: [MethodAccess] f$default(...)
 #  151|             -1: [TypeAccess] TestGenericFunction<>
 #  151|             0: [VarAccess] inst
-#  151|             1: [StringLiteral] generic function sunk fp
-#  151|             2: [StringLiteral] generic function sunk 2
+#  151|             1: [StringLiteral] "generic function sunk fp"
+#  151|             2: [StringLiteral] "generic function sunk 2"
 #    1|             3: [NullLiteral] null
 #    1|             4: [NullLiteral] null
 #    1|             5: [NullLiteral] null
@@ -1612,7 +1612,7 @@ test.kt:
 #  171|                 -1: [ClassInstanceExpr] new TestGenericUsedWithinDefaultValue<String>(...)
 #  171|                   -3: [TypeAccess] TestGenericUsedWithinDefaultValue<String>
 #  171|                     0: [TypeAccess] String
-#  171|                 0: [StringLiteral] Hello world
+#  171|                 0: [StringLiteral] "Hello world"
 #  171|         1: [ReturnStmt] return ...
 #  171|           0: [MethodAccess] f(...)
 #  171|             -1: [VarAccess] p0
@@ -1662,7 +1662,7 @@ test.kt:
 #  179|           1: [ExprStmt] <Expr>;
 #  179|             0: [AssignExpr] ...=...
 #  179|               0: [VarAccess] p2
-#  179|               1: [StringLiteral] Hello world
+#  179|               1: [StringLiteral] "Hello world"
 #  179|         1: [ReturnStmt] return ...
 #  179|           0: [MethodAccess] f(...)
 #  179|             -1: [VarAccess] p0
diff --git a/java/ql/test/kotlin/library-tests/reflection/PrintAst.expected b/java/ql/test/kotlin/library-tests/reflection/PrintAst.expected
index 64fffd47586..c46be5c7900 100644
--- a/java/ql/test/kotlin/library-tests/reflection/PrintAst.expected
+++ b/java/ql/test/kotlin/library-tests/reflection/PrintAst.expected
@@ -45,7 +45,7 @@ reflection.kt:
 #   50|                 -3: [TypeAccess] KProperty1<String,Character>
 #   50|                   0: [TypeAccess] String
 #   50|                   1: [TypeAccess] Character
-#   50|               0: [StringLiteral] abc
+#   50|               0: [StringLiteral] "abc"
 #   51|         1: [ExprStmt] <Expr>;
 #   51|           0: [MethodAccess] println(...)
 #   51|             -1: [TypeAccess] ConsoleKt
@@ -78,7 +78,7 @@ reflection.kt:
 #   51|                           -1: [ThisAccess] this
 #   51|                 -3: [TypeAccess] KProperty0<Character>
 #   51|                   0: [TypeAccess] Character
-#   51|                 0: [StringLiteral] abcd
+#   51|                 0: [StringLiteral] "abcd"
 #   54|     3: [ExtensionMethod] ext1
 #-----|       2: (Generic Parameters)
 #   54|         0: [TypeVariable] T2
@@ -118,7 +118,7 @@ reflection.kt:
 #   97|               0: [TypeAccess] String
 #   97|             -2: [TypeAccess] String
 #   97|             -1: [TypeAccess] ReflectionKt
-#   97|             0: [StringLiteral] 
+#   97|             0: [StringLiteral] ""
 #   97|             1: [MemberRefExpr] ...::...
 #   97|               -4: [AnonymousClass] new Function1<String,Class2<String>>(...) { ... }
 #   97|                 1: [Constructor] 
@@ -143,7 +143,7 @@ reflection.kt:
 #   98|             -3: [TypeAccess] Unit
 #   98|             -2: [TypeAccess] String
 #   98|             -1: [TypeAccess] ReflectionKt
-#   98|             0: [StringLiteral] 
+#   98|             0: [StringLiteral] ""
 #   98|             1: [MemberRefExpr] ...::...
 #   98|               -4: [AnonymousClass] new Function1<String,Unit>(...) { ... }
 #   98|                 1: [Constructor] 
@@ -169,7 +169,7 @@ reflection.kt:
 #   99|               1: [TypeAccess] Integer
 #   99|             -2: [TypeAccess] String
 #   99|             -1: [TypeAccess] ReflectionKt
-#   99|             0: [StringLiteral] 
+#   99|             0: [StringLiteral] ""
 #   99|             1: [MemberRefExpr] ...::...
 #   99|               -4: [AnonymousClass] new Function1<String,Inner<String>>(...) { ... }
 #   99|                 1: [Constructor] 
@@ -1026,7 +1026,7 @@ reflection.kt:
 #   24|                           0: [ValueEQExpr] ... (value equals) ...
 #   24|                             0: [MethodAccess] getName(...)
 #   24|                               -1: [VarAccess] it
-#   24|                             1: [StringLiteral] p3
+#   24|                             1: [StringLiteral] "p3"
 #   24|                   -3: [TypeAccess] Function1<KCallable<?>,Boolean>
 #   24|                     0: [TypeAccess] KCallable<?>
 #   24|                     1: [TypeAccess] Boolean
@@ -1534,7 +1534,7 @@ reflection.kt:
 #   90|               1: [TypeAccess] T
 #   90|             -2: [TypeAccess] String
 #   90|             -1: [TypeAccess] ReflectionKt
-#   90|             0: [StringLiteral] 
+#   90|             0: [StringLiteral] ""
 #   90|             1: [MemberRefExpr] ...::...
 #   90|               -4: [AnonymousClass] new Function1<String,Inner<String>>(...) { ... }
 #   90|                 1: [Constructor] 
diff --git a/java/ql/test/kotlin/library-tests/stmts/PrintAst.expected b/java/ql/test/kotlin/library-tests/stmts/PrintAst.expected
index 2edcd3755b6..7ab29615bd3 100644
--- a/java/ql/test/kotlin/library-tests/stmts/PrintAst.expected
+++ b/java/ql/test/kotlin/library-tests/stmts/PrintAst.expected
@@ -188,7 +188,7 @@ stmts.kt:
 #   48|             0: [ThrowStmt] throw ...
 #   48|               0: [ClassInstanceExpr] new Exception(...)
 #   48|                 -3: [TypeAccess] Exception
-#   48|                 0: [StringLiteral] Foo
+#   48|                 0: [StringLiteral] "Foo"
 #   50|           0: [CatchClause] catch (...)
 #-----|             0: (Single Local Variable Declaration)
 #   50|               0: [TypeAccess] Exception
diff --git a/java/ql/test/kotlin/library-tests/stmts/exprs.expected b/java/ql/test/kotlin/library-tests/stmts/exprs.expected
index 01631139da3..9193248487f 100644
--- a/java/ql/test/kotlin/library-tests/stmts/exprs.expected
+++ b/java/ql/test/kotlin/library-tests/stmts/exprs.expected
@@ -101,7 +101,7 @@
 | stmts.kt:46:1:56:1 | int | TypeAccess |
 | stmts.kt:48:15:48:30 | Exception | TypeAccess |
 | stmts.kt:48:15:48:30 | new Exception(...) | ClassInstanceExpr |
-| stmts.kt:48:26:48:28 | Foo | StringLiteral |
+| stmts.kt:48:26:48:28 | "Foo" | StringLiteral |
 | stmts.kt:50:12:50:23 | Exception | TypeAccess |
 | stmts.kt:50:12:50:23 | e | LocalVariableDeclExpr |
 | stmts.kt:51:16:51:16 | 1 | IntegerLiteral |
diff --git a/java/ql/test/kotlin/library-tests/trap/diags.expected b/java/ql/test/kotlin/library-tests/trap/diags.expected
index 377b7fd0a99..6e145a5e4e0 100644
--- a/java/ql/test/kotlin/library-tests/trap/diags.expected
+++ b/java/ql/test/kotlin/library-tests/trap/diags.expected
@@ -1,9 +1,11 @@
-| file://:0:0:0:0 | Truncated string of length 1048577 | CodeQL Kotlin extractor | 2 |  | Truncated string of length 1048577 | DATE TIME Truncated string of length 1048577\nTruncated string of length 1048577, starting '//A03BBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBB', ending 'BBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBCDE'  ...while extracting a file (long_comments.kt) at long_comments.kt:1:1:22:0\n |
+| file://:0:0:0:0 | Truncated string of length 1048577 | CodeQL Kotlin extractor | 2 |  | Truncated string of length 1048577 | DATE TIME Truncated string of length 1048577\nTruncated string of length 1048577, starting '"ABBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBB', ending 'BBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBC"'  ...while extracting a expression (<no name>) at long_string.kt:14:31:14:1048605\n  ...while extracting a variable expr (longStringLiteral1) at long_string.kt:14:5:14:1048606\n  ...while extracting a variable (longStringLiteral1) at long_string.kt:14:5:14:1048606\n  ...while extracting a statement (longStringLiteral1) at long_string.kt:14:5:14:1048606\n  ...while extracting a block body (<no name>) at long_string.kt:13:22:19:1\n  ...while extracting a body (<no name>) at long_string.kt:13:22:19:1\n  ...while extracting a function (longLiteralFun) at long_string.kt:13:1:19:1\n  ...while extracting a declaration (longLiteralFun) at long_string.kt:13:1:19:1\n  ...while extracting a file (long_string.kt) at long_string.kt:1:1:21:0\n |
+| file://:0:0:0:0 | Truncated string of length 1048577 | CodeQL Kotlin extractor | 2 |  | Truncated string of length 1048577 | DATE TIME Truncated string of length 1048577\nTruncated string of length 1048577, starting '//A03BBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBB', ending 'BBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBCDE'  ...while extracting a file (long_comments.kt) at long_comments.kt:1:1:24:0\n |
 | file://:0:0:0:0 | Truncated string of length 1048577 | CodeQL Kotlin extractor | 2 |  | Truncated string of length 1048577 | DATE TIME Truncated string of length 1048577\nTruncated string of length 1048577, starting 'ABBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBB', ending 'BBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBCDE'  ...while extracting a expression (<no name>) at long_string.kt:16:31:16:1048607\n  ...while extracting a variable expr (longStringLiteral3) at long_string.kt:16:5:16:1048608\n  ...while extracting a variable (longStringLiteral3) at long_string.kt:16:5:16:1048608\n  ...while extracting a statement (longStringLiteral3) at long_string.kt:16:5:16:1048608\n  ...while extracting a block body (<no name>) at long_string.kt:13:22:19:1\n  ...while extracting a body (<no name>) at long_string.kt:13:22:19:1\n  ...while extracting a function (longLiteralFun) at long_string.kt:13:1:19:1\n  ...while extracting a declaration (longLiteralFun) at long_string.kt:13:1:19:1\n  ...while extracting a file (long_string.kt) at long_string.kt:1:1:21:0\n |
-| file://:0:0:0:0 | Truncated string of length 1048577 | CodeQL Kotlin extractor | 2 |  | Truncated string of length 1048577 | DATE TIME Truncated string of length 1048577\nTruncated string of length 1048577, starting 'ABBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBB', ending 'BBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBCDE'  ...while extracting a expression (<no name>) at long_string.kt:16:31:16:1048607\n  ...while extracting a variable expr (longStringLiteral3) at long_string.kt:16:5:16:1048608\n  ...while extracting a variable (longStringLiteral3) at long_string.kt:16:5:16:1048608\n  ...while extracting a statement (longStringLiteral3) at long_string.kt:16:5:16:1048608\n  ...while extracting a block body (<no name>) at long_string.kt:13:22:19:1\n  ...while extracting a body (<no name>) at long_string.kt:13:22:19:1\n  ...while extracting a function (longLiteralFun) at long_string.kt:13:1:19:1\n  ...while extracting a declaration (longLiteralFun) at long_string.kt:13:1:19:1\n  ...while extracting a file (long_string.kt) at long_string.kt:1:1:21:0\n |
-| file://:0:0:0:0 | Truncated string of length 1048578 | CodeQL Kotlin extractor | 2 |  | Truncated string of length 1048578 | DATE TIME Truncated string of length 1048578\nTruncated string of length 1048578, starting '//A04BBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBB', ending 'BBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBCDEF'  ...while extracting a file (long_comments.kt) at long_comments.kt:1:1:22:0\n |
-| file://:0:0:0:0 | Truncated string of length 1048578 | CodeQL Kotlin extractor | 2 |  | Truncated string of length 1048578 | DATE TIME Truncated string of length 1048578\nTruncated string of length 1048578, starting '//A05"""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""', ending '""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""CDEF'  ...while extracting a file (long_comments.kt) at long_comments.kt:1:1:22:0\n |
-| file://:0:0:0:0 | Truncated string of length 1048578 | CodeQL Kotlin extractor | 2 |  | Truncated string of length 1048578 | DATE TIME Truncated string of length 1048578\nTruncated string of length 1048578, starting 'A"""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""', ending '""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""CDEF'  ...while extracting a expression (<no name>) at long_string.kt:18:31:18:2097181\n  ...while extracting a variable expr (longStringLiteral5) at long_string.kt:18:5:18:2097182\n  ...while extracting a variable (longStringLiteral5) at long_string.kt:18:5:18:2097182\n  ...while extracting a statement (longStringLiteral5) at long_string.kt:18:5:18:2097182\n  ...while extracting a block body (<no name>) at long_string.kt:13:22:19:1\n  ...while extracting a body (<no name>) at long_string.kt:13:22:19:1\n  ...while extracting a function (longLiteralFun) at long_string.kt:13:1:19:1\n  ...while extracting a declaration (longLiteralFun) at long_string.kt:13:1:19:1\n  ...while extracting a file (long_string.kt) at long_string.kt:1:1:21:0\n |
+| file://:0:0:0:0 | Truncated string of length 1048578 | CodeQL Kotlin extractor | 2 |  | Truncated string of length 1048578 | DATE TIME Truncated string of length 1048578\nTruncated string of length 1048578, starting '"ABBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBB', ending 'BBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBCD"'  ...while extracting a expression (<no name>) at long_string.kt:15:31:15:1048606\n  ...while extracting a variable expr (longStringLiteral2) at long_string.kt:15:5:15:1048607\n  ...while extracting a variable (longStringLiteral2) at long_string.kt:15:5:15:1048607\n  ...while extracting a statement (longStringLiteral2) at long_string.kt:15:5:15:1048607\n  ...while extracting a block body (<no name>) at long_string.kt:13:22:19:1\n  ...while extracting a body (<no name>) at long_string.kt:13:22:19:1\n  ...while extracting a function (longLiteralFun) at long_string.kt:13:1:19:1\n  ...while extracting a declaration (longLiteralFun) at long_string.kt:13:1:19:1\n  ...while extracting a file (long_string.kt) at long_string.kt:1:1:21:0\n |
+| file://:0:0:0:0 | Truncated string of length 1048578 | CodeQL Kotlin extractor | 2 |  | Truncated string of length 1048578 | DATE TIME Truncated string of length 1048578\nTruncated string of length 1048578, starting '//A04BBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBB', ending 'BBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBCDEF'  ...while extracting a file (long_comments.kt) at long_comments.kt:1:1:24:0\n |
+| file://:0:0:0:0 | Truncated string of length 1048578 | CodeQL Kotlin extractor | 2 |  | Truncated string of length 1048578 | DATE TIME Truncated string of length 1048578\nTruncated string of length 1048578, starting '//A05"""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""', ending '""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""CDEF'  ...while extracting a file (long_comments.kt) at long_comments.kt:1:1:24:0\n |
 | file://:0:0:0:0 | Truncated string of length 1048578 | CodeQL Kotlin extractor | 2 |  | Truncated string of length 1048578 | DATE TIME Truncated string of length 1048578\nTruncated string of length 1048578, starting 'A"""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""', ending '""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""CDEF'  ...while extracting a expression (<no name>) at long_string.kt:18:31:18:2097181\n  ...while extracting a variable expr (longStringLiteral5) at long_string.kt:18:5:18:2097182\n  ...while extracting a variable (longStringLiteral5) at long_string.kt:18:5:18:2097182\n  ...while extracting a statement (longStringLiteral5) at long_string.kt:18:5:18:2097182\n  ...while extracting a block body (<no name>) at long_string.kt:13:22:19:1\n  ...while extracting a body (<no name>) at long_string.kt:13:22:19:1\n  ...while extracting a function (longLiteralFun) at long_string.kt:13:1:19:1\n  ...while extracting a declaration (longLiteralFun) at long_string.kt:13:1:19:1\n  ...while extracting a file (long_string.kt) at long_string.kt:1:1:21:0\n |
 | file://:0:0:0:0 | Truncated string of length 1048578 | CodeQL Kotlin extractor | 2 |  | Truncated string of length 1048578 | DATE TIME Truncated string of length 1048578\nTruncated string of length 1048578, starting 'ABBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBB', ending 'BBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBCDEF'  ...while extracting a expression (<no name>) at long_string.kt:17:31:17:1048608\n  ...while extracting a variable expr (longStringLiteral4) at long_string.kt:17:5:17:1048609\n  ...while extracting a variable (longStringLiteral4) at long_string.kt:17:5:17:1048609\n  ...while extracting a statement (longStringLiteral4) at long_string.kt:17:5:17:1048609\n  ...while extracting a block body (<no name>) at long_string.kt:13:22:19:1\n  ...while extracting a body (<no name>) at long_string.kt:13:22:19:1\n  ...while extracting a function (longLiteralFun) at long_string.kt:13:1:19:1\n  ...while extracting a declaration (longLiteralFun) at long_string.kt:13:1:19:1\n  ...while extracting a file (long_string.kt) at long_string.kt:1:1:21:0\n |
-| file://:0:0:0:0 | Truncated string of length 1048578 | CodeQL Kotlin extractor | 2 |  | Truncated string of length 1048578 | DATE TIME Truncated string of length 1048578\nTruncated string of length 1048578, starting 'ABBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBB', ending 'BBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBCDEF'  ...while extracting a expression (<no name>) at long_string.kt:17:31:17:1048608\n  ...while extracting a variable expr (longStringLiteral4) at long_string.kt:17:5:17:1048609\n  ...while extracting a variable (longStringLiteral4) at long_string.kt:17:5:17:1048609\n  ...while extracting a statement (longStringLiteral4) at long_string.kt:17:5:17:1048609\n  ...while extracting a block body (<no name>) at long_string.kt:13:22:19:1\n  ...while extracting a body (<no name>) at long_string.kt:13:22:19:1\n  ...while extracting a function (longLiteralFun) at long_string.kt:13:1:19:1\n  ...while extracting a declaration (longLiteralFun) at long_string.kt:13:1:19:1\n  ...while extracting a file (long_string.kt) at long_string.kt:1:1:21:0\n |
+| file://:0:0:0:0 | Truncated string of length 1048579 | CodeQL Kotlin extractor | 2 |  | Truncated string of length 1048579 | DATE TIME Truncated string of length 1048579\nTruncated string of length 1048579, starting '"ABBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBB', ending 'BBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBCDE"'  ...while extracting a expression (<no name>) at long_string.kt:16:31:16:1048607\n  ...while extracting a variable expr (longStringLiteral3) at long_string.kt:16:5:16:1048608\n  ...while extracting a variable (longStringLiteral3) at long_string.kt:16:5:16:1048608\n  ...while extracting a statement (longStringLiteral3) at long_string.kt:16:5:16:1048608\n  ...while extracting a block body (<no name>) at long_string.kt:13:22:19:1\n  ...while extracting a body (<no name>) at long_string.kt:13:22:19:1\n  ...while extracting a function (longLiteralFun) at long_string.kt:13:1:19:1\n  ...while extracting a declaration (longLiteralFun) at long_string.kt:13:1:19:1\n  ...while extracting a file (long_string.kt) at long_string.kt:1:1:21:0\n |
+| file://:0:0:0:0 | Truncated string of length 1048580 | CodeQL Kotlin extractor | 2 |  | Truncated string of length 1048580 | DATE TIME Truncated string of length 1048580\nTruncated string of length 1048580, starting '"ABBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBB', ending 'BBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBCDEF"'  ...while extracting a expression (<no name>) at long_string.kt:17:31:17:1048608\n  ...while extracting a variable expr (longStringLiteral4) at long_string.kt:17:5:17:1048609\n  ...while extracting a variable (longStringLiteral4) at long_string.kt:17:5:17:1048609\n  ...while extracting a statement (longStringLiteral4) at long_string.kt:17:5:17:1048609\n  ...while extracting a block body (<no name>) at long_string.kt:13:22:19:1\n  ...while extracting a body (<no name>) at long_string.kt:13:22:19:1\n  ...while extracting a function (longLiteralFun) at long_string.kt:13:1:19:1\n  ...while extracting a declaration (longLiteralFun) at long_string.kt:13:1:19:1\n  ...while extracting a file (long_string.kt) at long_string.kt:1:1:21:0\n |
+| file://:0:0:0:0 | Truncated string of length 2097153 | CodeQL Kotlin extractor | 2 |  | Truncated string of length 2097153 | DATE TIME Truncated string of length 2097153\nTruncated string of length 2097153, starting '"A\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"', ending '"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"CDEF"'  ...while extracting a expression (<no name>) at long_string.kt:18:31:18:2097181\n  ...while extracting a variable expr (longStringLiteral5) at long_string.kt:18:5:18:2097182\n  ...while extracting a variable (longStringLiteral5) at long_string.kt:18:5:18:2097182\n  ...while extracting a statement (longStringLiteral5) at long_string.kt:18:5:18:2097182\n  ...while extracting a block body (<no name>) at long_string.kt:13:22:19:1\n  ...while extracting a body (<no name>) at long_string.kt:13:22:19:1\n  ...while extracting a function (longLiteralFun) at long_string.kt:13:1:19:1\n  ...while extracting a declaration (longLiteralFun) at long_string.kt:13:1:19:1\n  ...while extracting a file (long_string.kt) at long_string.kt:1:1:21:0\n |
diff --git a/java/ql/test/kotlin/library-tests/trap/literals.ql b/java/ql/test/kotlin/library-tests/trap/literals.ql
index 1490a21b458..b6dc1dcff6f 100644
--- a/java/ql/test/kotlin/library-tests/trap/literals.ql
+++ b/java/ql/test/kotlin/library-tests/trap/literals.ql
@@ -1,6 +1,6 @@
 import java
 
 from Literal l, int len
-where len = l.getValue().length()
+where len = l.getValue().length() and l.getFile().isSourceFile()
 select l.getLocation(), len, l.getValue().prefix(5) + "..." + l.getValue().suffix(len - 5),
   l.getPrimaryQlClasses()
diff --git a/java/ql/test/kotlin/library-tests/trap/long_comments.kt b/java/ql/test/kotlin/library-tests/trap/long_comments.kt
index 3c5cb1d3764..55db7520f21 100644
--- a/java/ql/test/kotlin/library-tests/trap/long_comments.kt
+++ b/java/ql/test/kotlin/library-tests/trap/long_comments.kt
@@ -18,4 +18,6 @@
 
 // Diagnostic Matches: %Truncated string of length 1048577%
 // Diagnostic Matches: %Truncated string of length 1048578%
-
+// Diagnostic Matches: %Truncated string of length 1048579%
+// Diagnostic Matches: %Truncated string of length 1048580%
+// Diagnostic Matches: %Truncated string of length 2097153%
diff --git a/java/ql/test/kotlin/library-tests/vararg/args.expected b/java/ql/test/kotlin/library-tests/vararg/args.expected
index 1e5a60a3545..6f5e0fbc035 100644
--- a/java/ql/test/kotlin/library-tests/vararg/args.expected
+++ b/java/ql/test/kotlin/library-tests/vararg/args.expected
@@ -53,33 +53,33 @@ implicitVarargsArguments
 | test.kt:35:5:35:34 | funWithOnlyVarArgs(...) | 0 | test.kt:35:24:35:25 | 20 |
 | test.kt:35:5:35:34 | funWithOnlyVarArgs(...) | 1 | test.kt:35:28:35:29 | 21 |
 | test.kt:35:5:35:34 | funWithOnlyVarArgs(...) | 2 | test.kt:35:32:35:33 | 22 |
-| test.kt:36:5:36:50 | funWithArgsAndVarArgs(...) | 0 | test.kt:36:28:36:30 | foo |
+| test.kt:36:5:36:50 | funWithArgsAndVarArgs(...) | 0 | test.kt:36:28:36:30 | "foo" |
 | test.kt:36:5:36:50 | funWithArgsAndVarArgs(...) | 1 | test.kt:36:34:36:37 | true |
 | test.kt:36:5:36:50 | funWithArgsAndVarArgs(...) | 2 | test.kt:36:40:36:41 | 30 |
 | test.kt:36:5:36:50 | funWithArgsAndVarArgs(...) | 3 | test.kt:36:44:36:45 | 31 |
 | test.kt:36:5:36:50 | funWithArgsAndVarArgs(...) | 4 | test.kt:36:48:36:49 | 32 |
-| test.kt:37:5:37:53 | funWithMiddleVarArgs(...) | 0 | test.kt:37:27:37:29 | foo |
+| test.kt:37:5:37:53 | funWithMiddleVarArgs(...) | 0 | test.kt:37:27:37:29 | "foo" |
 | test.kt:37:5:37:53 | funWithMiddleVarArgs(...) | 1 | test.kt:37:33:37:34 | 41 |
 | test.kt:37:5:37:53 | funWithMiddleVarArgs(...) | 2 | test.kt:37:37:37:38 | 42 |
 | test.kt:37:5:37:53 | funWithMiddleVarArgs(...) | 3 | test.kt:37:41:37:42 | 43 |
 | test.kt:37:5:37:53 | funWithMiddleVarArgs(...) | 4 | test.kt:37:49:37:52 | true |
 | test.kt:38:5:38:30 | funWithOnlyVarArgs(...) | 0 | test.kt:38:25:38:29 | array |
-| test.kt:39:5:39:46 | funWithArgsAndVarArgs(...) | 0 | test.kt:39:28:39:30 | foo |
+| test.kt:39:5:39:46 | funWithArgsAndVarArgs(...) | 0 | test.kt:39:28:39:30 | "foo" |
 | test.kt:39:5:39:46 | funWithArgsAndVarArgs(...) | 1 | test.kt:39:34:39:37 | true |
 | test.kt:39:5:39:46 | funWithArgsAndVarArgs(...) | 2 | test.kt:39:41:39:45 | array |
-| test.kt:40:5:40:49 | funWithMiddleVarArgs(...) | 0 | test.kt:40:27:40:29 | foo |
+| test.kt:40:5:40:49 | funWithMiddleVarArgs(...) | 0 | test.kt:40:27:40:29 | "foo" |
 | test.kt:40:5:40:49 | funWithMiddleVarArgs(...) | 1 | test.kt:40:34:40:38 | array |
 | test.kt:40:5:40:49 | funWithMiddleVarArgs(...) | 2 | test.kt:40:45:40:48 | true |
 | test.kt:41:5:41:36 | new HasVarargConstructor(...) | 0 | test.kt:41:26:41:27 | 51 |
 | test.kt:41:5:41:36 | new HasVarargConstructor(...) | 1 | test.kt:41:30:41:31 | 52 |
 | test.kt:41:5:41:36 | new HasVarargConstructor(...) | 2 | test.kt:41:34:41:35 | 53 |
-| test.kt:42:5:42:43 | new HasVarargConstructor(...) | 0 | test.kt:42:27:42:29 | foo |
+| test.kt:42:5:42:43 | new HasVarargConstructor(...) | 0 | test.kt:42:27:42:29 | "foo" |
 | test.kt:42:5:42:43 | new HasVarargConstructor(...) | 1 | test.kt:42:33:42:34 | 61 |
 | test.kt:42:5:42:43 | new HasVarargConstructor(...) | 2 | test.kt:42:37:42:38 | 62 |
 | test.kt:42:5:42:43 | new HasVarargConstructor(...) | 3 | test.kt:42:41:42:42 | 63 |
 | test.kt:43:5:43:38 | new SuperclassHasVarargConstructor(...) | 0 | test.kt:43:36:43:37 | 91 |
 | test.kt:44:5:44:32 | new HasVarargConstructor(...) | 0 | test.kt:44:27:44:31 | array |
-| test.kt:45:5:45:39 | new HasVarargConstructor(...) | 0 | test.kt:45:27:45:29 | foo |
+| test.kt:45:5:45:39 | new HasVarargConstructor(...) | 0 | test.kt:45:27:45:29 | "foo" |
 | test.kt:45:5:45:39 | new HasVarargConstructor(...) | 1 | test.kt:45:34:45:38 | array |
 | test.kt:55:13:55:43 | new X(...) | 0 | test.kt:55:42:55:42 | 1 |
 | test.kt:55:13:55:43 | new X(...) | 1 | test.kt:55:15:55:35 | tmp0_s |

From a5a244fc5303080d1c5931eceba35425275efe70 Mon Sep 17 00:00:00 2001
From: erik-krogh <erik-krogh@github.com>
Date: Thu, 17 Nov 2022 12:33:06 +0100
Subject: [PATCH 0463/1420] CPP: delete old deprecations

---
 cpp/ql/lib/change-notes/2022-11-17-deleted-deps.md |  4 ++++
 cpp/ql/lib/semmle/code/cpp/File.qll                | 12 ------------
 2 files changed, 4 insertions(+), 12 deletions(-)
 create mode 100644 cpp/ql/lib/change-notes/2022-11-17-deleted-deps.md

diff --git a/cpp/ql/lib/change-notes/2022-11-17-deleted-deps.md b/cpp/ql/lib/change-notes/2022-11-17-deleted-deps.md
new file mode 100644
index 00000000000..bf2d5a07de6
--- /dev/null
+++ b/cpp/ql/lib/change-notes/2022-11-17-deleted-deps.md
@@ -0,0 +1,4 @@
+---
+category: minorAnalysis
+---
+* Deleted the deprecated `getName` and `getShortName` predicates from the `Folder` class.
\ No newline at end of file
diff --git a/cpp/ql/lib/semmle/code/cpp/File.qll b/cpp/ql/lib/semmle/code/cpp/File.qll
index e58467fac20..b2e4e0a41a5 100644
--- a/cpp/ql/lib/semmle/code/cpp/File.qll
+++ b/cpp/ql/lib/semmle/code/cpp/File.qll
@@ -189,18 +189,6 @@ class Folder extends Container, @folder {
    * Gets the URL of this folder.
    */
   deprecated override string getURL() { result = "file://" + this.getAbsolutePath() + ":0:0:0:0" }
-
-  /**
-   * DEPRECATED: use `getAbsolutePath` instead.
-   * Gets the name of this folder.
-   */
-  deprecated string getName() { folders(underlyingElement(this), result) }
-
-  /**
-   * DEPRECATED: use `getBaseName` instead.
-   * Gets the last part of the folder name.
-   */
-  deprecated string getShortName() { result = this.getBaseName() }
 }
 
 /**

From d5ec781d4c2a95a6af74ff1b655e27810012db97 Mon Sep 17 00:00:00 2001
From: erik-krogh <erik-krogh@github.com>
Date: Thu, 17 Nov 2022 12:34:52 +0100
Subject: [PATCH 0464/1420] C#: delete old deprecations

---
 csharp/ql/lib/change-notes/2022-11-17-deleted-deps.md | 4 ++++
 csharp/ql/lib/semmle/code/csharp/Type.qll             | 7 -------
 2 files changed, 4 insertions(+), 7 deletions(-)
 create mode 100644 csharp/ql/lib/change-notes/2022-11-17-deleted-deps.md

diff --git a/csharp/ql/lib/change-notes/2022-11-17-deleted-deps.md b/csharp/ql/lib/change-notes/2022-11-17-deleted-deps.md
new file mode 100644
index 00000000000..da5a8d8cd9b
--- /dev/null
+++ b/csharp/ql/lib/change-notes/2022-11-17-deleted-deps.md
@@ -0,0 +1,4 @@
+---
+category: minorAnalysis
+---
+* Deleted the deprecated `getNameWithoutBrackets` predicate from the `ValueOrRefType` class in `Type.qll`.
\ No newline at end of file
diff --git a/csharp/ql/lib/semmle/code/csharp/Type.qll b/csharp/ql/lib/semmle/code/csharp/Type.qll
index dfabea580a4..d475442f886 100644
--- a/csharp/ql/lib/semmle/code/csharp/Type.qll
+++ b/csharp/ql/lib/semmle/code/csharp/Type.qll
@@ -56,13 +56,6 @@ private predicate isObjectClass(Class c) { c instanceof ObjectType }
  * Either a value type (`ValueType`) or a reference type (`RefType`).
  */
 class ValueOrRefType extends DotNet::ValueOrRefType, Type, Attributable, @value_or_ref_type {
-  /**
-   * DEPRECATED: use `getUndecoratedName()` instead.
-   *
-   * Gets the name of this type without `<...>` brackets, in case it is a generic type.
-   */
-  deprecated string getNameWithoutBrackets() { types(this, _, result) }
-
   /**
    * Holds if this type has the qualified name `qualifier`.`name`.
    *

From a4e5d752e127ca2cf1e707bdb3bed412fe82514e Mon Sep 17 00:00:00 2001
From: erik-krogh <erik-krogh@github.com>
Date: Thu, 17 Nov 2022 12:37:31 +0100
Subject: [PATCH 0465/1420] Java: delete old deprecations

---
 java/ql/lib/change-notes/2022-11-17-deleted-deps.md |  5 +++++
 java/ql/lib/semmle/code/java/PrintAst.qll           |  6 ------
 java/ql/lib/semmle/code/java/Statement.qll          | 12 ------------
 java/ql/lib/semmle/code/java/Type.qll               |  6 ------
 4 files changed, 5 insertions(+), 24 deletions(-)
 create mode 100644 java/ql/lib/change-notes/2022-11-17-deleted-deps.md

diff --git a/java/ql/lib/change-notes/2022-11-17-deleted-deps.md b/java/ql/lib/change-notes/2022-11-17-deleted-deps.md
new file mode 100644
index 00000000000..014b4ff23eb
--- /dev/null
+++ b/java/ql/lib/change-notes/2022-11-17-deleted-deps.md
@@ -0,0 +1,5 @@
+---
+category: minorAnalysis
+---
+* Deleted the deprecated `LocalClassDeclStmtNode` and `LocalClassDeclStmt` classes from `PrintAst.qll` and `Statement.qll` respectively.
+* Deleted the deprecated `getLocalClass` predicate from `LocalTypeDeclStmt`, and the deprecated `getLocalClassDeclStmt` predicate from `LocalClassOrInterface`.
\ No newline at end of file
diff --git a/java/ql/lib/semmle/code/java/PrintAst.qll b/java/ql/lib/semmle/code/java/PrintAst.qll
index 4df23f4ec14..d6420f2e4ca 100644
--- a/java/ql/lib/semmle/code/java/PrintAst.qll
+++ b/java/ql/lib/semmle/code/java/PrintAst.qll
@@ -393,12 +393,6 @@ final class LocalTypeDeclStmtNode extends ExprStmtNode {
   }
 }
 
-/**
- * DEPRECATED: Renamed `LocalTypeDeclStmtNode` to reflect the fact that
- * as of Java 16 interfaces can also be declared locally, not just classes.
- */
-deprecated class LocalClassDeclStmtNode = LocalTypeDeclStmtNode;
-
 /**
  * A node representing a `ForStmt`.
  */
diff --git a/java/ql/lib/semmle/code/java/Statement.qll b/java/ql/lib/semmle/code/java/Statement.qll
index 2c8cff3c217..fe0ba23093a 100644
--- a/java/ql/lib/semmle/code/java/Statement.qll
+++ b/java/ql/lib/semmle/code/java/Statement.qll
@@ -781,12 +781,6 @@ class LocalTypeDeclStmt extends Stmt, @localtypedeclstmt {
   /** Gets the local type declared by this statement. */
   LocalClassOrInterface getLocalType() { isLocalClassOrInterface(result, this) }
 
-  /**
-   * DEPRECATED: Renamed `getLocalType` to reflect the fact that
-   * as of Java 16 interfaces can also be declared locally, not just classes.
-   */
-  deprecated LocalClassOrInterface getLocalClass() { result = this.getLocalType() }
-
   private string getDeclKeyword() {
     result = "class" and this.getLocalType() instanceof Class
     or
@@ -802,12 +796,6 @@ class LocalTypeDeclStmt extends Stmt, @localtypedeclstmt {
   override string getAPrimaryQlClass() { result = "LocalTypeDeclStmt" }
 }
 
-/**
- * DEPRECATED: Renamed `LocalTypeDeclStmt` to reflect the fact that
- * as of Java 16 interfaces can also be declared locally, not just classes.
- */
-deprecated class LocalClassDeclStmt = LocalTypeDeclStmt;
-
 /** An explicit `this(...)` constructor invocation. */
 class ThisConstructorInvocationStmt extends Stmt, ConstructorCall, @constructorinvocationstmt {
   /** Gets an argument of this constructor invocation. */
diff --git a/java/ql/lib/semmle/code/java/Type.qll b/java/ql/lib/semmle/code/java/Type.qll
index 63df6feef42..eff61ed0fde 100644
--- a/java/ql/lib/semmle/code/java/Type.qll
+++ b/java/ql/lib/semmle/code/java/Type.qll
@@ -828,12 +828,6 @@ class LocalClassOrInterface extends NestedType, ClassOrInterface {
   /** Gets the statement that declares this local class. */
   LocalTypeDeclStmt getLocalTypeDeclStmt() { isLocalClassOrInterface(this, result) }
 
-  /**
-   * DEPRECATED: renamed `getLocalTypeDeclStmt` to reflect the fact that
-   * as of Java 16 interfaces can also be declared locally.
-   */
-  deprecated LocalTypeDeclStmt getLocalClassDeclStmt() { result = this.getLocalTypeDeclStmt() }
-
   override string getAPrimaryQlClass() { result = "LocalClassOrInterface" }
 }
 

From a7ba693ccbd050d9d5d9a04dc5fc7b4bebf7b338 Mon Sep 17 00:00:00 2001
From: erik-krogh <erik-krogh@github.com>
Date: Thu, 17 Nov 2022 12:44:56 +0100
Subject: [PATCH 0466/1420] Python: delete old deprecations

---
 .../change-notes/2022-11-17-deleted-deps.md   |   7 ++
 .../dataflow/new/internal/DataFlowUtil.qll    |  64 ----------
 .../lib/semmle/python/frameworks/PEP249.qll   |  25 ----
 .../lib/semmle/python/frameworks/Werkzeug.qll | 115 ------------------
 .../python/frameworks/internal/PEP249Impl.qll |   9 --
 5 files changed, 7 insertions(+), 213 deletions(-)
 create mode 100644 python/ql/lib/change-notes/2022-11-17-deleted-deps.md

diff --git a/python/ql/lib/change-notes/2022-11-17-deleted-deps.md b/python/ql/lib/change-notes/2022-11-17-deleted-deps.md
new file mode 100644
index 00000000000..6d366b9c114
--- /dev/null
+++ b/python/ql/lib/change-notes/2022-11-17-deleted-deps.md
@@ -0,0 +1,7 @@
+---
+category: minorAnalysis
+---
+* Deleted the deprecated `importNode` predicate from the `DataFlowUtil.qll` file.
+* Deleted the deprecated features from `PEP249.qll` that were not inside the `PEP249` module.
+* Deleted the deprecated `werkzeug` from the `Werkzeug` module in `Werkzeug.qll`.
+* Deleted the deprecated `methodResult` predicate from `PEP249::Cursor`.
\ No newline at end of file
diff --git a/python/ql/lib/semmle/python/dataflow/new/internal/DataFlowUtil.qll b/python/ql/lib/semmle/python/dataflow/new/internal/DataFlowUtil.qll
index fc697d45524..7f1a6464adf 100644
--- a/python/ql/lib/semmle/python/dataflow/new/internal/DataFlowUtil.qll
+++ b/python/ql/lib/semmle/python/dataflow/new/internal/DataFlowUtil.qll
@@ -26,67 +26,3 @@ predicate localFlowStep(Node nodeFrom, Node nodeTo) {
  */
 pragma[inline]
 predicate localFlow(Node source, Node sink) { localFlowStep*(source, sink) }
-
-/**
- * DEPRECATED. Use the API graphs library (`semmle.python.ApiGraphs`) instead.
- *
- * For a drop-in replacement, use `API::moduleImport(name).getAUse()`.
- *
- * Gets a `Node` that refers to the module referenced by `name`.
- * Note that for the statement `import pkg.mod`, the new variable introduced is `pkg` that is a
- * reference to the module `pkg`.
- *
- * This predicate handles (with optional `... as <new-name>`):
- * 1. `import <name>`
- * 2. `from <package> import <module>` when `<name> = <package> + "." + <module>`
- * 3. `from <module> import <member>` when `<name> = <module> + "." + <member>`
- *
- * Finally, in `from <module> import <member>` we consider the `ImportExpr` corresponding to
- * `<module>` to be a reference to that module.
- *
- * Note:
- * While it is technically possible that `import mypkg.foo` and `from mypkg import foo` can give different values,
- * it's highly unlikely that this will be a problem in production level code.
- *   Example: If `mypkg/__init__.py` contains `foo = 42`, then `from mypkg import foo` will not import the module
- *   `mypkg/foo.py` but the variable `foo` containing `42` -- however, `import mypkg.foo` will always cause `mypkg.foo`
- *   to refer to the module.
- */
-deprecated Node importNode(string name) {
-  exists(Variable var, Import imp, Alias alias |
-    alias = imp.getAName() and
-    alias.getAsname() = var.getAStore() and
-    (
-      name = alias.getValue().(ImportMember).getImportedModuleName()
-      or
-      name = alias.getValue().(ImportExpr).getImportedModuleName()
-    ) and
-    result.asExpr() = alias.getValue()
-  )
-  or
-  // Although it may seem superfluous to consider the `foo` part of `from foo import bar as baz` to
-  // be a reference to a module (since that reference only makes sense locally within the `import`
-  // statement), it's important for our use of type trackers to consider this local reference to
-  // also refer to the `foo` module. That way, if one wants to track references to the `bar`
-  // attribute using a type tracker, one can simply write
-  //
-  // ```ql
-  // DataFlow::Node bar_attr_tracker(TypeTracker t) {
-  //   t.startInAttr("bar") and
-  //   result = foo_module_tracker()
-  //   or
-  //   exists(TypeTracker t2 | result = bar_attr_tracker(t2).track(t2, t))
-  // }
-  // ```
-  //
-  // Where `foo_module_tracker` is a type tracker that tracks references to the `foo` module.
-  // Because named imports are modeled as `AttrRead`s, the statement `from foo import bar as baz`
-  // is interpreted as if it was an assignment `baz = foo.bar`, which means `baz` gets tracked as a
-  // reference to `foo.bar`, as desired.
-  exists(ImportExpr imp_expr |
-    imp_expr.getName() = name and
-    result.asCfgNode().getNode() = imp_expr and
-    // in `import foo.bar` we DON'T want to give a result for `importNode("foo.bar")`,
-    // only for `importNode("foo")`. We exclude those cases with the following clause.
-    not exists(Import imp | imp.getAName().getValue() = imp_expr)
-  )
-}
diff --git a/python/ql/lib/semmle/python/frameworks/PEP249.qll b/python/ql/lib/semmle/python/frameworks/PEP249.qll
index 6c4e07cd801..9d09fc4078b 100644
--- a/python/ql/lib/semmle/python/frameworks/PEP249.qll
+++ b/python/ql/lib/semmle/python/frameworks/PEP249.qll
@@ -9,28 +9,3 @@ private import semmle.python.dataflow.new.RemoteFlowSources
 private import semmle.python.Concepts
 private import semmle.python.ApiGraphs
 import semmle.python.frameworks.internal.PEP249Impl
-
-/**
- * DEPRECATED: Use `PEP249::PEP249ModuleApiNode` instead.
- */
-deprecated class PEP249ModuleApiNode = PEP249::PEP249ModuleApiNode;
-
-/**
- * DEPRECATED: Use `PEP249::Connection` instead.
- */
-deprecated module Connection = PEP249::Connection;
-
-/**
- * DEPRECATED: Use `PEP249::Cursor` instead.
- */
-deprecated module cursor = PEP249::Cursor;
-
-/**
- * DEPRECATED: Use `PEP249::execute` instead.
- */
-deprecated predicate execute = PEP249::execute/0;
-
-/**
- * DEPRECATED: Use `PEP249::connect` instead.
- */
-deprecated predicate connect = PEP249::connect/0;
diff --git a/python/ql/lib/semmle/python/frameworks/Werkzeug.qll b/python/ql/lib/semmle/python/frameworks/Werkzeug.qll
index 2867516dcd8..66cea37020e 100644
--- a/python/ql/lib/semmle/python/frameworks/Werkzeug.qll
+++ b/python/ql/lib/semmle/python/frameworks/Werkzeug.qll
@@ -231,119 +231,4 @@ module Werkzeug {
       override string getAsyncMethodName() { none() }
     }
   }
-
-  import WerkzeugOld
-}
-
-/**
- * Old version that contains the deprecated modules.
- */
-private module WerkzeugOld {
-  /**
-   * DEPRECATED: Use the modeling available directly in the `Werkzeug` module instead.
-   *
-   * Provides models for the `werkzeug` module.
-   */
-  deprecated module werkzeug {
-    /**
-     * DEPRECATED: Use the modeling available directly in the `Werkzeug` module instead.
-     *
-     * Provides models for the `werkzeug.datastructures` module.
-     */
-    deprecated module datastructures {
-      /**
-       * DEPRECATED: Use `Werkzeug::MultiDict` instead.
-       *
-       * Provides models for the `werkzeug.datastructures.MultiDict` class
-       *
-       * See https://werkzeug.palletsprojects.com/en/1.0.x/datastructures/#werkzeug.datastructures.MultiDict.
-       */
-      deprecated module MultiDict {
-        /**
-         * DEPRECATED. Use `Werkzeug::MultiDict::InstanceSource` instead.
-         *
-         * A source of instances of `werkzeug.datastructures.MultiDict`, extend this class to model new instances.
-         *
-         * This can include instantiations of the class, return values from function
-         * calls, or a special parameter that will be set when functions are called by an external
-         * library.
-         *
-         * Use the predicate `MultiDict::instance()` to get references to instances of `werkzeug.datastructures.MultiDict`.
-         */
-        abstract deprecated class InstanceSourceApiNode extends API::Node { }
-
-        /**
-         * DEPRECATED
-         *
-         * Gets a reference to the `getlist` method on an instance of `werkzeug.datastructures.MultiDict`.
-         *
-         * See https://werkzeug.palletsprojects.com/en/1.0.x/datastructures/#werkzeug.datastructures.Headers.getlist
-         */
-        deprecated DataFlow::Node getlist() {
-          result = any(InstanceSourceApiNode a).getMember("getlist").getAValueReachableFromSource()
-        }
-
-        private class MultiDictAdditionalTaintStep extends TaintTracking::AdditionalTaintStep {
-          override predicate step(DataFlow::Node nodeFrom, DataFlow::Node nodeTo) {
-            // obj -> obj.getlist
-            exists(DataFlow::AttrRead read |
-              read.getObject() = nodeFrom and
-              nodeTo = read and
-              nodeTo = getlist()
-            )
-            or
-            // getlist -> getlist()
-            nodeFrom = getlist() and
-            nodeTo.(DataFlow::CallCfgNode).getFunction() = nodeFrom
-          }
-        }
-      }
-
-      /**
-       * DEPRECATED: Use `Werkzeug::FileStorage` instead.
-       *
-       * Provides models for the `werkzeug.datastructures.FileStorage` class
-       *
-       * See https://werkzeug.palletsprojects.com/en/1.0.x/datastructures/#werkzeug.datastructures.FileStorage.
-       */
-      deprecated module FileStorage {
-        /**
-         * DEPRECATED. Use `Werkzeug::FileStorage::InstanceSource` instead.
-         *
-         * A source of instances of `werkzeug.datastructures.FileStorage`, extend this class to model new instances.
-         *
-         * This can include instantiations of the class, return values from function
-         * calls, or a special parameter that will be set when functions are called by an external
-         * library.
-         *
-         * Use the predicate `FileStorage::instance()` to get references to instances of `werkzeug.datastructures.FileStorage`.
-         */
-        abstract deprecated class InstanceSourceApiNode extends API::Node { }
-
-        /** Gets a reference to an instance of `werkzeug.datastructures.FileStorage`. */
-        deprecated DataFlow::Node instance() {
-          result = any(InstanceSourceApiNode a).getAValueReachableFromSource()
-        }
-
-        private class FileStorageAdditionalTaintStep extends TaintTracking::AdditionalTaintStep {
-          override predicate step(DataFlow::Node nodeFrom, DataFlow::Node nodeTo) {
-            nodeFrom = instance() and
-            exists(DataFlow::AttrRead read | nodeTo = read |
-              read.getAttributeName() in [
-                  // str
-                  "filename", "name", "content_type", "mimetype",
-                  // file-like
-                  "stream",
-                  // TODO: werkzeug.datastructures.Headers
-                  "headers",
-                  // dict[str, str]
-                  "mimetype_params"
-                ] and
-              read.getObject() = nodeFrom
-            )
-          }
-        }
-      }
-    }
-  }
 }
diff --git a/python/ql/lib/semmle/python/frameworks/internal/PEP249Impl.qll b/python/ql/lib/semmle/python/frameworks/internal/PEP249Impl.qll
index bf63bbb3731..538929bd646 100644
--- a/python/ql/lib/semmle/python/frameworks/internal/PEP249Impl.qll
+++ b/python/ql/lib/semmle/python/frameworks/internal/PEP249Impl.qll
@@ -129,15 +129,6 @@ module PEP249 {
       or
       exists(DataFlow::TypeTracker t2 | result = methodResult(t2).track(t2, t))
     }
-
-    /**
-     * DEPRECATED: Use `Cursor::instance()` to get references to database cursors instead.
-     *
-     * Gets a reference to a result of calling the `cursor` method on a database connection.
-     */
-    deprecated DataFlow::Node methodResult() {
-      methodResult(DataFlow::TypeTracker::end()).flowsTo(result)
-    }
   }
 
   /**

From e491b61e09daace19adf25b9b4737978b9b6ecbd Mon Sep 17 00:00:00 2001
From: erik-krogh <erik-krogh@github.com>
Date: Thu, 17 Nov 2022 12:46:21 +0100
Subject: [PATCH 0467/1420] Python: move the contents of `PEP249Impl` to
 `PEP249`, which is possible now that the deprecations have been deleted

---
 .../lib/semmle/python/frameworks/PEP249.qll   | 176 +++++++++++++++-
 .../python/frameworks/internal/PEP249Impl.qll | 195 ------------------
 2 files changed, 175 insertions(+), 196 deletions(-)
 delete mode 100644 python/ql/lib/semmle/python/frameworks/internal/PEP249Impl.qll

diff --git a/python/ql/lib/semmle/python/frameworks/PEP249.qll b/python/ql/lib/semmle/python/frameworks/PEP249.qll
index 9d09fc4078b..6dee86b5346 100644
--- a/python/ql/lib/semmle/python/frameworks/PEP249.qll
+++ b/python/ql/lib/semmle/python/frameworks/PEP249.qll
@@ -8,4 +8,178 @@ private import semmle.python.dataflow.new.DataFlow
 private import semmle.python.dataflow.new.RemoteFlowSources
 private import semmle.python.Concepts
 private import semmle.python.ApiGraphs
-import semmle.python.frameworks.internal.PEP249Impl
+
+/**
+ * Provides classes modeling database interfaces following PEP 249.
+ * See https://www.python.org/dev/peps/pep-0249/.
+ */
+module PEP249 {
+  /**
+   * An API graph node representing a module that implements PEP 249.
+   */
+  abstract class PEP249ModuleApiNode extends API::Node {
+    /** Gets a string representation of this element. */
+    override string toString() { result = this.(API::Node).toString() }
+  }
+
+  /** Gets a reference to the `connect` function of a module that implements PEP 249. */
+  DataFlow::Node connect() {
+    result = any(PEP249ModuleApiNode a).getMember("connect").getAValueReachableFromSource()
+  }
+
+  /**
+   * Provides models for database connections (following PEP 249).
+   *
+   * See https://www.python.org/dev/peps/pep-0249/#connection-objects.
+   */
+  module Connection {
+    /**
+     * A source of database connections (following PEP 249), extend this class to model new instances.
+     *
+     * This can include instantiations of the class, return values from function
+     * calls, or a special parameter that will be set when functions are called by external
+     * libraries.
+     *
+     * Use the predicate `Connection::instance()` to get references to database connections (following PEP 249).
+     *
+     * Extend this class if the module implementing PEP 249 offers more direct ways to obtain
+     * a connection than going through `connect`.
+     */
+    abstract class InstanceSource extends DataFlow::Node { }
+
+    /** A call to the `connect` function of a module that implements PEP 249. */
+    private class ConnectCall extends InstanceSource, DataFlow::CallCfgNode {
+      ConnectCall() { this.getFunction() = connect() }
+    }
+
+    /** Gets a reference to a database connection (following PEP 249). */
+    private DataFlow::TypeTrackingNode instance(DataFlow::TypeTracker t) {
+      t.start() and
+      result instanceof InstanceSource
+      or
+      exists(DataFlow::TypeTracker t2 | result = instance(t2).track(t2, t))
+    }
+
+    /** Gets a reference to a database connection (following PEP 249). */
+    DataFlow::Node instance() { instance(DataFlow::TypeTracker::end()).flowsTo(result) }
+  }
+
+  /**
+   * Provides models for database cursors (following PEP 249).
+   *
+   * These are returned by the `cursor` method on a database connection.
+   * See https://www.python.org/dev/peps/pep-0249/#cursor.
+   */
+  module Cursor {
+    /**
+     * A source of database cursors (following PEP 249), extend this class to model new instances.
+     *
+     * This can include instantiations of the class, return values from function
+     * calls, or a special parameter that will be set when functions are called by external
+     * libraries.
+     *
+     * Use the predicate `Cursor::instance()` to get references to database cursors (following PEP 249).
+     *
+     * Extend this class if the module implementing PEP 249 offers more direct ways to obtain
+     * a connection than going through `connect`.
+     */
+    abstract class InstanceSource extends DataFlow::LocalSourceNode { }
+
+    /** Gets a reference to a database cursor. */
+    private DataFlow::TypeTrackingNode instance(DataFlow::TypeTracker t) {
+      t.start() and
+      result instanceof InstanceSource
+      or
+      exists(DataFlow::TypeTracker t2 | result = instance(t2).track(t2, t))
+    }
+
+    /** Gets a reference to a database cursor. */
+    DataFlow::Node instance() { instance(DataFlow::TypeTracker::end()).flowsTo(result) }
+
+    /** Gets a reference to the `cursor` method on a database connection. */
+    private DataFlow::TypeTrackingNode methodRef(DataFlow::TypeTracker t) {
+      t.startInAttr("cursor") and
+      result = Connection::instance()
+      or
+      exists(DataFlow::TypeTracker t2 | result = methodRef(t2).track(t2, t))
+    }
+
+    /** Gets a reference to the `cursor` method on a database connection. */
+    DataFlow::Node methodRef() { methodRef(DataFlow::TypeTracker::end()).flowsTo(result) }
+
+    /** A call to the `cursor` method on a database connection */
+    private class CursorCall extends InstanceSource, DataFlow::CallCfgNode {
+      CursorCall() { this.getFunction() = methodRef() }
+    }
+
+    /** Gets a reference to a result of calling the `cursor` method on a database connection. */
+    private DataFlow::TypeTrackingNode methodResult(DataFlow::TypeTracker t) {
+      t.start() and
+      result.asCfgNode().(CallNode).getFunction() = methodRef().asCfgNode()
+      or
+      exists(DataFlow::TypeTracker t2 | result = methodResult(t2).track(t2, t))
+    }
+  }
+
+  /**
+   * Gets a reference to the `execute` method on a cursor (or on a connection).
+   *
+   * Note: while `execute` method on a connection is not part of PEP249, if it is used, we
+   * recognize it as an alias for constructing a cursor and calling `execute` on it.
+   *
+   * See https://peps.python.org/pep-0249/#execute.
+   */
+  private DataFlow::TypeTrackingNode execute(DataFlow::TypeTracker t) {
+    t.startInAttr("execute") and
+    result in [Cursor::instance(), Connection::instance()]
+    or
+    exists(DataFlow::TypeTracker t2 | result = execute(t2).track(t2, t))
+  }
+
+  /**
+   * Gets a reference to the `execute` method on a cursor (or on a connection).
+   *
+   * Note: while `execute` method on a connection is not part of PEP249, if it is used, we
+   * recognize it as an alias for constructing a cursor and calling `execute` on it.
+   *
+   * See https://peps.python.org/pep-0249/#execute.
+   */
+  DataFlow::Node execute() { execute(DataFlow::TypeTracker::end()).flowsTo(result) }
+
+  /**
+   * A call to the `execute` method on a cursor or a connection.
+   *
+   * See https://peps.python.org/pep-0249/#execute
+   *
+   * Note: While `execute` method on a connection is not part of PEP249, if it is used, we
+   * recognize it as an alias for constructing a cursor and calling `execute` on it.
+   */
+  private class ExecuteCall extends SqlExecution::Range, DataFlow::CallCfgNode {
+    ExecuteCall() { this.getFunction() = execute() }
+
+    override DataFlow::Node getSql() { result in [this.getArg(0), this.getArgByName("sql")] }
+  }
+
+  private DataFlow::TypeTrackingNode executemany(DataFlow::TypeTracker t) {
+    t.startInAttr("executemany") and
+    result in [Cursor::instance(), Connection::instance()]
+    or
+    exists(DataFlow::TypeTracker t2 | result = executemany(t2).track(t2, t))
+  }
+
+  private DataFlow::Node executemany() { executemany(DataFlow::TypeTracker::end()).flowsTo(result) }
+
+  /**
+   * A call to the `executemany` method on a cursor or a connection.
+   *
+   * See https://peps.python.org/pep-0249/#executemany
+   *
+   * Note: While `executemany` method on a connection is not part of PEP249, if it is used, we
+   * recognize it as an alias for constructing a cursor and calling `executemany` on it.
+   */
+  private class ExecutemanyCall extends SqlExecution::Range, DataFlow::CallCfgNode {
+    ExecutemanyCall() { this.getFunction() = executemany() }
+
+    override DataFlow::Node getSql() { result in [this.getArg(0), this.getArgByName("sql")] }
+  }
+}
diff --git a/python/ql/lib/semmle/python/frameworks/internal/PEP249Impl.qll b/python/ql/lib/semmle/python/frameworks/internal/PEP249Impl.qll
deleted file mode 100644
index 538929bd646..00000000000
--- a/python/ql/lib/semmle/python/frameworks/internal/PEP249Impl.qll
+++ /dev/null
@@ -1,195 +0,0 @@
-/**
- * INTERNAL: Do not use.
- *
- * Provides internal implementation of PEP249. This currently resides in a different
- * file than `python/ql/src/semmle/python/frameworks/PEP249.qll`, since we used to
- * export everything without being encapsulated in a module, and shadowing rules means
- * that we can't just add the module directly to that file :(
- *
- * So once we can remove those deprecated things (Start of July 2022), we can also move
- * the core implementation into its' proper place.
- *
- * Provides classes modeling PEP 249.
- * See https://www.python.org/dev/peps/pep-0249/.
- */
-
-private import python
-private import semmle.python.dataflow.new.DataFlow
-private import semmle.python.dataflow.new.RemoteFlowSources
-private import semmle.python.Concepts
-private import semmle.python.ApiGraphs
-
-/**
- * Provides classes modeling database interfaces following PEP 249.
- * See https://www.python.org/dev/peps/pep-0249/.
- */
-module PEP249 {
-  /**
-   * An API graph node representing a module that implements PEP 249.
-   */
-  abstract class PEP249ModuleApiNode extends API::Node {
-    /** Gets a string representation of this element. */
-    override string toString() { result = this.(API::Node).toString() }
-  }
-
-  /** Gets a reference to the `connect` function of a module that implements PEP 249. */
-  DataFlow::Node connect() {
-    result = any(PEP249ModuleApiNode a).getMember("connect").getAValueReachableFromSource()
-  }
-
-  /**
-   * Provides models for database connections (following PEP 249).
-   *
-   * See https://www.python.org/dev/peps/pep-0249/#connection-objects.
-   */
-  module Connection {
-    /**
-     * A source of database connections (following PEP 249), extend this class to model new instances.
-     *
-     * This can include instantiations of the class, return values from function
-     * calls, or a special parameter that will be set when functions are called by external
-     * libraries.
-     *
-     * Use the predicate `Connection::instance()` to get references to database connections (following PEP 249).
-     *
-     * Extend this class if the module implementing PEP 249 offers more direct ways to obtain
-     * a connection than going through `connect`.
-     */
-    abstract class InstanceSource extends DataFlow::Node { }
-
-    /** A call to the `connect` function of a module that implements PEP 249. */
-    private class ConnectCall extends InstanceSource, DataFlow::CallCfgNode {
-      ConnectCall() { this.getFunction() = connect() }
-    }
-
-    /** Gets a reference to a database connection (following PEP 249). */
-    private DataFlow::TypeTrackingNode instance(DataFlow::TypeTracker t) {
-      t.start() and
-      result instanceof InstanceSource
-      or
-      exists(DataFlow::TypeTracker t2 | result = instance(t2).track(t2, t))
-    }
-
-    /** Gets a reference to a database connection (following PEP 249). */
-    DataFlow::Node instance() { instance(DataFlow::TypeTracker::end()).flowsTo(result) }
-  }
-
-  /**
-   * Provides models for database cursors (following PEP 249).
-   *
-   * These are returned by the `cursor` method on a database connection.
-   * See https://www.python.org/dev/peps/pep-0249/#cursor.
-   */
-  module Cursor {
-    /**
-     * A source of database cursors (following PEP 249), extend this class to model new instances.
-     *
-     * This can include instantiations of the class, return values from function
-     * calls, or a special parameter that will be set when functions are called by external
-     * libraries.
-     *
-     * Use the predicate `Cursor::instance()` to get references to database cursors (following PEP 249).
-     *
-     * Extend this class if the module implementing PEP 249 offers more direct ways to obtain
-     * a connection than going through `connect`.
-     */
-    abstract class InstanceSource extends DataFlow::LocalSourceNode { }
-
-    /** Gets a reference to a database cursor. */
-    private DataFlow::TypeTrackingNode instance(DataFlow::TypeTracker t) {
-      t.start() and
-      result instanceof InstanceSource
-      or
-      exists(DataFlow::TypeTracker t2 | result = instance(t2).track(t2, t))
-    }
-
-    /** Gets a reference to a database cursor. */
-    DataFlow::Node instance() { instance(DataFlow::TypeTracker::end()).flowsTo(result) }
-
-    /** Gets a reference to the `cursor` method on a database connection. */
-    private DataFlow::TypeTrackingNode methodRef(DataFlow::TypeTracker t) {
-      t.startInAttr("cursor") and
-      result = Connection::instance()
-      or
-      exists(DataFlow::TypeTracker t2 | result = methodRef(t2).track(t2, t))
-    }
-
-    /** Gets a reference to the `cursor` method on a database connection. */
-    DataFlow::Node methodRef() { methodRef(DataFlow::TypeTracker::end()).flowsTo(result) }
-
-    /** A call to the `cursor` method on a database connection */
-    private class CursorCall extends InstanceSource, DataFlow::CallCfgNode {
-      CursorCall() { this.getFunction() = methodRef() }
-    }
-
-    /** Gets a reference to a result of calling the `cursor` method on a database connection. */
-    private DataFlow::TypeTrackingNode methodResult(DataFlow::TypeTracker t) {
-      t.start() and
-      result.asCfgNode().(CallNode).getFunction() = methodRef().asCfgNode()
-      or
-      exists(DataFlow::TypeTracker t2 | result = methodResult(t2).track(t2, t))
-    }
-  }
-
-  /**
-   * Gets a reference to the `execute` method on a cursor (or on a connection).
-   *
-   * Note: while `execute` method on a connection is not part of PEP249, if it is used, we
-   * recognize it as an alias for constructing a cursor and calling `execute` on it.
-   *
-   * See https://peps.python.org/pep-0249/#execute.
-   */
-  private DataFlow::TypeTrackingNode execute(DataFlow::TypeTracker t) {
-    t.startInAttr("execute") and
-    result in [Cursor::instance(), Connection::instance()]
-    or
-    exists(DataFlow::TypeTracker t2 | result = execute(t2).track(t2, t))
-  }
-
-  /**
-   * Gets a reference to the `execute` method on a cursor (or on a connection).
-   *
-   * Note: while `execute` method on a connection is not part of PEP249, if it is used, we
-   * recognize it as an alias for constructing a cursor and calling `execute` on it.
-   *
-   * See https://peps.python.org/pep-0249/#execute.
-   */
-  DataFlow::Node execute() { execute(DataFlow::TypeTracker::end()).flowsTo(result) }
-
-  /**
-   * A call to the `execute` method on a cursor or a connection.
-   *
-   * See https://peps.python.org/pep-0249/#execute
-   *
-   * Note: While `execute` method on a connection is not part of PEP249, if it is used, we
-   * recognize it as an alias for constructing a cursor and calling `execute` on it.
-   */
-  private class ExecuteCall extends SqlExecution::Range, DataFlow::CallCfgNode {
-    ExecuteCall() { this.getFunction() = execute() }
-
-    override DataFlow::Node getSql() { result in [this.getArg(0), this.getArgByName("sql")] }
-  }
-
-  private DataFlow::TypeTrackingNode executemany(DataFlow::TypeTracker t) {
-    t.startInAttr("executemany") and
-    result in [Cursor::instance(), Connection::instance()]
-    or
-    exists(DataFlow::TypeTracker t2 | result = executemany(t2).track(t2, t))
-  }
-
-  private DataFlow::Node executemany() { executemany(DataFlow::TypeTracker::end()).flowsTo(result) }
-
-  /**
-   * A call to the `executemany` method on a cursor or a connection.
-   *
-   * See https://peps.python.org/pep-0249/#executemany
-   *
-   * Note: While `executemany` method on a connection is not part of PEP249, if it is used, we
-   * recognize it as an alias for constructing a cursor and calling `executemany` on it.
-   */
-  private class ExecutemanyCall extends SqlExecution::Range, DataFlow::CallCfgNode {
-    ExecutemanyCall() { this.getFunction() = executemany() }
-
-    override DataFlow::Node getSql() { result in [this.getArg(0), this.getArgByName("sql")] }
-  }
-}

From 635b8772d72999d964df7dde9cd202bcc7f2bda4 Mon Sep 17 00:00:00 2001
From: erik-krogh <erik-krogh@github.com>
Date: Thu, 17 Nov 2022 12:50:50 +0100
Subject: [PATCH 0468/1420] JS: delete old deprecations

---
 .../change-notes/2022-11-17-deleted-deps.md   |  5 +++
 .../lib/semmle/javascript/frameworks/Vue.qll  | 43 -------------------
 .../security/dataflow/DomBasedXssQuery.qll    |  5 ---
 3 files changed, 5 insertions(+), 48 deletions(-)
 create mode 100644 javascript/ql/lib/change-notes/2022-11-17-deleted-deps.md

diff --git a/javascript/ql/lib/change-notes/2022-11-17-deleted-deps.md b/javascript/ql/lib/change-notes/2022-11-17-deleted-deps.md
new file mode 100644
index 00000000000..e5f1a1c6f56
--- /dev/null
+++ b/javascript/ql/lib/change-notes/2022-11-17-deleted-deps.md
@@ -0,0 +1,5 @@
+---
+category: minorAnalysis
+---
+* Deleted the deprecated `Instance` class from the `Vue` module.
+* Deleted the deprecated `VHtmlSourceWrite` class from `DomBasedXssQuery.qll`.
diff --git a/javascript/ql/lib/semmle/javascript/frameworks/Vue.qll b/javascript/ql/lib/semmle/javascript/frameworks/Vue.qll
index 95a372025e2..f3eb2e5bb0d 100644
--- a/javascript/ql/lib/semmle/javascript/frameworks/Vue.qll
+++ b/javascript/ql/lib/semmle/javascript/frameworks/Vue.qll
@@ -115,11 +115,6 @@ module Vue {
     kind = DataFlow::MemberKind::setter() and result = "set"
   }
 
-  /**
-   * DEPRECATED. This class has been renamed to `Vue::Component`.
-   */
-  deprecated class Instance = Component;
-
   /**
    * A Vue component, such as a `new Vue({ ... })` call or a `.vue` file.
    *
@@ -383,23 +378,6 @@ module Vue {
     }
   }
 
-  /**
-   * DEPRECATED. Use `Vue::Component` instead.
-   *
-   * A Vue component from `new Vue({...})`.
-   */
-  deprecated class VueInstance extends Component {
-    VueInstance() {
-      // restrict charpred to match original behavior
-      this = MkComponentInstantiation(vueLibrary().getAnInstantiation())
-    }
-  }
-
-  /**
-   * DEPRECATED. Use `Vue::ComponentExtension` or `Vue::Component` instead.
-   */
-  deprecated class ExtendedVue = ComponentExtension;
-
   /**
    * A component created via an explicit call to `Vue.extend({...})` or `CustomComponent.extend({...})`.
    */
@@ -429,19 +407,6 @@ module Vue {
     }
   }
 
-  /**
-   * DEPRECATED. Use `Vue::Component` instead.
-   *
-   * An instance of an extended Vue, for example `instance` of `var Ext = Vue.extend({...}); var instance = new Ext({...})`.
-   */
-  deprecated class ExtendedInstance extends Component {
-    ExtendedInstance() {
-      // restrict charpred to match original behavior
-      this =
-        MkComponentInstantiation(vueLibrary().getMember("extend").getReturn().getAnInstantiation())
-    }
-  }
-
   /**
    * A Vue component from `Vue.component("my-component", { ... })`.
    */
@@ -568,9 +533,6 @@ module Vue {
     }
   }
 
-  /** DEPRECATED. Do not use. */
-  deprecated class InstanceHeapStep = PropStep;
-
   /**
    * A Vue `v-html` attribute.
    */
@@ -609,11 +571,6 @@ module Vue {
     }
   }
 
-  /**
-   * DEPRECATED. Do not use.
-   */
-  deprecated class VHtmlSourceWrite = VHtmlAttributeStep;
-
   /*
    * Provides classes for working with Vue templates.
    */
diff --git a/javascript/ql/lib/semmle/javascript/security/dataflow/DomBasedXssQuery.qll b/javascript/ql/lib/semmle/javascript/security/dataflow/DomBasedXssQuery.qll
index e8c1a144920..2f920f59604 100644
--- a/javascript/ql/lib/semmle/javascript/security/dataflow/DomBasedXssQuery.qll
+++ b/javascript/ql/lib/semmle/javascript/security/dataflow/DomBasedXssQuery.qll
@@ -8,11 +8,6 @@ private import semmle.javascript.security.TaintedUrlSuffix
 import DomBasedXssCustomizations::DomBasedXss
 private import Xss::Shared as Shared
 
-/**
- * DEPRECATED. Use `Vue::VHtmlSourceWrite` instead.
- */
-deprecated class VHtmlSourceWrite = Vue::VHtmlSourceWrite;
-
 /** DEPRECATED. Use `Configuration`. */
 deprecated class HtmlInjectionConfiguration = Configuration;
 

From 3635db82441b3677c12cdc4e0be43872732c3cea Mon Sep 17 00:00:00 2001
From: erik-krogh <erik-krogh@github.com>
Date: Thu, 17 Nov 2022 12:54:35 +0100
Subject: [PATCH 0469/1420] JS: delete the deprecated [queryName].qll files

---
 .../ql/lib/change-notes/2022-11-17-deleted-deps.md     |  1 +
 .../security/dataflow/BrokenCryptoAlgorithm.qll        |  7 -------
 .../javascript/security/dataflow/BuildArtifactLeak.qll |  7 -------
 .../javascript/security/dataflow/CleartextLogging.qll  |  7 -------
 .../javascript/security/dataflow/CleartextStorage.qll  |  7 -------
 .../security/dataflow/ClientSideUrlRedirect.qll        |  8 --------
 .../javascript/security/dataflow/CodeInjection.qll     |  7 -------
 .../javascript/security/dataflow/CommandInjection.qll  |  7 -------
 .../javascript/security/dataflow/ConditionalBypass.qll |  7 -------
 .../dataflow/CorsMisconfigurationForCredentials.qll    |  7 -------
 .../security/dataflow/DeepObjectResourceExhaustion.qll |  8 --------
 .../dataflow/DifferentKindsComparisonBypass.qll        |  7 -------
 .../javascript/security/dataflow/DomBasedXss.qll       |  7 -------
 .../javascript/security/dataflow/ExceptionXss.qll      |  7 -------
 .../javascript/security/dataflow/FileAccessToHttp.qll  |  7 -------
 .../security/dataflow/HardcodedCredentials.qll         |  7 -------
 .../dataflow/HardcodedDataInterpretedAsCode.qll        |  7 -------
 .../dataflow/HostHeaderPoisoningInEmailGeneration.qll  |  7 -------
 .../javascript/security/dataflow/HttpToFileAccess.qll  |  7 -------
 .../security/dataflow/ImproperCodeSanitization.qll     |  7 -------
 .../dataflow/IncompleteHtmlAttributeSanitization.qll   |  7 -------
 .../security/dataflow/IndirectCommandInjection.qll     |  7 -------
 .../javascript/security/dataflow/InsecureDownload.qll  |  7 -------
 .../security/dataflow/InsecureRandomness.qll           |  7 -------
 .../security/dataflow/InsufficientPasswordHash.qll     |  7 -------
 .../javascript/security/dataflow/LogInjection.qll      |  7 -------
 .../security/dataflow/LoopBoundInjection.qll           |  8 --------
 .../javascript/security/dataflow/NosqlInjection.qll    |  8 --------
 .../javascript/security/dataflow/PostMessageStar.qll   |  7 -------
 .../security/dataflow/PrototypePollutingAssignment.qll |  6 ------
 .../security/dataflow/PrototypePollution.qll           | 10 ----------
 .../javascript/security/dataflow/ReflectedXss.qll      |  7 -------
 .../javascript/security/dataflow/RegExpInjection.qll   |  7 -------
 .../security/dataflow/RemotePropertyInjection.qll      |  7 -------
 .../javascript/security/dataflow/RequestForgery.qll    |  8 --------
 .../security/dataflow/ServerSideUrlRedirect.qll        |  9 ---------
 .../dataflow/ShellCommandInjectionFromEnvironment.qll  |  7 -------
 .../javascript/security/dataflow/SqlInjection.qll      |  7 -------
 .../security/dataflow/StackTraceExposure.qll           |  7 -------
 .../semmle/javascript/security/dataflow/StoredXss.qll  |  7 -------
 .../security/dataflow/TaintedFormatString.qll          |  8 --------
 .../javascript/security/dataflow/TaintedPath.qll       |  7 -------
 .../security/dataflow/TemplateObjectInjection.qll      |  7 -------
 .../TypeConfusionThroughParameterTampering.qll         |  8 --------
 .../security/dataflow/UnsafeDeserialization.qll        |  7 -------
 .../security/dataflow/UnsafeDynamicMethodAccess.qll    |  8 --------
 .../security/dataflow/UnsafeHtmlConstruction.qll       |  7 -------
 .../security/dataflow/UnsafeJQueryPlugin.qll           |  8 --------
 .../dataflow/UnsafeShellCommandConstruction.qll        |  7 -------
 .../security/dataflow/UnvalidatedDynamicMethodCall.qll |  9 ---------
 .../semmle/javascript/security/dataflow/XmlBomb.qll    |  7 -------
 .../javascript/security/dataflow/XpathInjection.qll    |  8 --------
 .../javascript/security/dataflow/XssThroughDom.qll     |  7 -------
 .../ql/lib/semmle/javascript/security/dataflow/Xxe.qll |  7 -------
 .../semmle/javascript/security/dataflow/ZipSlip.qll    |  7 -------
 55 files changed, 1 insertion(+), 394 deletions(-)
 delete mode 100644 javascript/ql/lib/semmle/javascript/security/dataflow/BrokenCryptoAlgorithm.qll
 delete mode 100644 javascript/ql/lib/semmle/javascript/security/dataflow/BuildArtifactLeak.qll
 delete mode 100644 javascript/ql/lib/semmle/javascript/security/dataflow/CleartextLogging.qll
 delete mode 100644 javascript/ql/lib/semmle/javascript/security/dataflow/CleartextStorage.qll
 delete mode 100644 javascript/ql/lib/semmle/javascript/security/dataflow/ClientSideUrlRedirect.qll
 delete mode 100644 javascript/ql/lib/semmle/javascript/security/dataflow/CodeInjection.qll
 delete mode 100644 javascript/ql/lib/semmle/javascript/security/dataflow/CommandInjection.qll
 delete mode 100644 javascript/ql/lib/semmle/javascript/security/dataflow/ConditionalBypass.qll
 delete mode 100644 javascript/ql/lib/semmle/javascript/security/dataflow/CorsMisconfigurationForCredentials.qll
 delete mode 100644 javascript/ql/lib/semmle/javascript/security/dataflow/DeepObjectResourceExhaustion.qll
 delete mode 100644 javascript/ql/lib/semmle/javascript/security/dataflow/DifferentKindsComparisonBypass.qll
 delete mode 100644 javascript/ql/lib/semmle/javascript/security/dataflow/DomBasedXss.qll
 delete mode 100644 javascript/ql/lib/semmle/javascript/security/dataflow/ExceptionXss.qll
 delete mode 100644 javascript/ql/lib/semmle/javascript/security/dataflow/FileAccessToHttp.qll
 delete mode 100644 javascript/ql/lib/semmle/javascript/security/dataflow/HardcodedCredentials.qll
 delete mode 100644 javascript/ql/lib/semmle/javascript/security/dataflow/HardcodedDataInterpretedAsCode.qll
 delete mode 100644 javascript/ql/lib/semmle/javascript/security/dataflow/HostHeaderPoisoningInEmailGeneration.qll
 delete mode 100644 javascript/ql/lib/semmle/javascript/security/dataflow/HttpToFileAccess.qll
 delete mode 100644 javascript/ql/lib/semmle/javascript/security/dataflow/ImproperCodeSanitization.qll
 delete mode 100644 javascript/ql/lib/semmle/javascript/security/dataflow/IncompleteHtmlAttributeSanitization.qll
 delete mode 100644 javascript/ql/lib/semmle/javascript/security/dataflow/IndirectCommandInjection.qll
 delete mode 100644 javascript/ql/lib/semmle/javascript/security/dataflow/InsecureDownload.qll
 delete mode 100644 javascript/ql/lib/semmle/javascript/security/dataflow/InsecureRandomness.qll
 delete mode 100644 javascript/ql/lib/semmle/javascript/security/dataflow/InsufficientPasswordHash.qll
 delete mode 100644 javascript/ql/lib/semmle/javascript/security/dataflow/LogInjection.qll
 delete mode 100644 javascript/ql/lib/semmle/javascript/security/dataflow/LoopBoundInjection.qll
 delete mode 100644 javascript/ql/lib/semmle/javascript/security/dataflow/NosqlInjection.qll
 delete mode 100644 javascript/ql/lib/semmle/javascript/security/dataflow/PostMessageStar.qll
 delete mode 100644 javascript/ql/lib/semmle/javascript/security/dataflow/PrototypePollutingAssignment.qll
 delete mode 100644 javascript/ql/lib/semmle/javascript/security/dataflow/PrototypePollution.qll
 delete mode 100644 javascript/ql/lib/semmle/javascript/security/dataflow/ReflectedXss.qll
 delete mode 100644 javascript/ql/lib/semmle/javascript/security/dataflow/RegExpInjection.qll
 delete mode 100644 javascript/ql/lib/semmle/javascript/security/dataflow/RemotePropertyInjection.qll
 delete mode 100644 javascript/ql/lib/semmle/javascript/security/dataflow/RequestForgery.qll
 delete mode 100644 javascript/ql/lib/semmle/javascript/security/dataflow/ServerSideUrlRedirect.qll
 delete mode 100644 javascript/ql/lib/semmle/javascript/security/dataflow/ShellCommandInjectionFromEnvironment.qll
 delete mode 100644 javascript/ql/lib/semmle/javascript/security/dataflow/SqlInjection.qll
 delete mode 100644 javascript/ql/lib/semmle/javascript/security/dataflow/StackTraceExposure.qll
 delete mode 100644 javascript/ql/lib/semmle/javascript/security/dataflow/StoredXss.qll
 delete mode 100644 javascript/ql/lib/semmle/javascript/security/dataflow/TaintedFormatString.qll
 delete mode 100644 javascript/ql/lib/semmle/javascript/security/dataflow/TaintedPath.qll
 delete mode 100644 javascript/ql/lib/semmle/javascript/security/dataflow/TemplateObjectInjection.qll
 delete mode 100644 javascript/ql/lib/semmle/javascript/security/dataflow/TypeConfusionThroughParameterTampering.qll
 delete mode 100644 javascript/ql/lib/semmle/javascript/security/dataflow/UnsafeDeserialization.qll
 delete mode 100644 javascript/ql/lib/semmle/javascript/security/dataflow/UnsafeDynamicMethodAccess.qll
 delete mode 100644 javascript/ql/lib/semmle/javascript/security/dataflow/UnsafeHtmlConstruction.qll
 delete mode 100644 javascript/ql/lib/semmle/javascript/security/dataflow/UnsafeJQueryPlugin.qll
 delete mode 100644 javascript/ql/lib/semmle/javascript/security/dataflow/UnsafeShellCommandConstruction.qll
 delete mode 100644 javascript/ql/lib/semmle/javascript/security/dataflow/UnvalidatedDynamicMethodCall.qll
 delete mode 100644 javascript/ql/lib/semmle/javascript/security/dataflow/XmlBomb.qll
 delete mode 100644 javascript/ql/lib/semmle/javascript/security/dataflow/XpathInjection.qll
 delete mode 100644 javascript/ql/lib/semmle/javascript/security/dataflow/XssThroughDom.qll
 delete mode 100644 javascript/ql/lib/semmle/javascript/security/dataflow/Xxe.qll
 delete mode 100644 javascript/ql/lib/semmle/javascript/security/dataflow/ZipSlip.qll

diff --git a/javascript/ql/lib/change-notes/2022-11-17-deleted-deps.md b/javascript/ql/lib/change-notes/2022-11-17-deleted-deps.md
index e5f1a1c6f56..eade7244ce1 100644
--- a/javascript/ql/lib/change-notes/2022-11-17-deleted-deps.md
+++ b/javascript/ql/lib/change-notes/2022-11-17-deleted-deps.md
@@ -3,3 +3,4 @@ category: minorAnalysis
 ---
 * Deleted the deprecated `Instance` class from the `Vue` module.
 * Deleted the deprecated `VHtmlSourceWrite` class from `DomBasedXssQuery.qll`.
+* Deleted all the deprecated `[QueryName].qll` files from the `javascript/ql/lib/semmle/javascript/security/dataflow` folder, use the corresponding `[QueryName]Query.qll` files instead.
\ No newline at end of file
diff --git a/javascript/ql/lib/semmle/javascript/security/dataflow/BrokenCryptoAlgorithm.qll b/javascript/ql/lib/semmle/javascript/security/dataflow/BrokenCryptoAlgorithm.qll
deleted file mode 100644
index 43a56b14dbc..00000000000
--- a/javascript/ql/lib/semmle/javascript/security/dataflow/BrokenCryptoAlgorithm.qll
+++ /dev/null
@@ -1,7 +0,0 @@
-/** DEPRECATED. Import `BrokenCryptoAlgorithmQuery` instead. */
-
-import javascript
-private import BrokenCryptoAlgorithmQuery as BrokenCryptoAlgorithmQuery // ignore-query-import
-
-/** DEPRECATED. Import `BrokenCryptoAlgorithmQuery` instead. */
-deprecated module BrokenCryptoAlgorithm = BrokenCryptoAlgorithmQuery;
diff --git a/javascript/ql/lib/semmle/javascript/security/dataflow/BuildArtifactLeak.qll b/javascript/ql/lib/semmle/javascript/security/dataflow/BuildArtifactLeak.qll
deleted file mode 100644
index f4853263d63..00000000000
--- a/javascript/ql/lib/semmle/javascript/security/dataflow/BuildArtifactLeak.qll
+++ /dev/null
@@ -1,7 +0,0 @@
-/** DEPRECATED. Import `BuildArtifactLeakQuery` instead. */
-
-import javascript
-private import BuildArtifactLeakQuery as BuildArtifactLeakQuery // ignore-query-import
-
-/** DEPRECATED. Import `BuildArtifactLeakQuery` instead. */
-deprecated module BuildArtifactLeak = BuildArtifactLeakQuery;
diff --git a/javascript/ql/lib/semmle/javascript/security/dataflow/CleartextLogging.qll b/javascript/ql/lib/semmle/javascript/security/dataflow/CleartextLogging.qll
deleted file mode 100644
index 40f18772fb3..00000000000
--- a/javascript/ql/lib/semmle/javascript/security/dataflow/CleartextLogging.qll
+++ /dev/null
@@ -1,7 +0,0 @@
-/** DEPRECATED. Import `CleartextLoggingQuery` instead. */
-
-import javascript
-private import CleartextLoggingQuery as CleartextLoggingQuery // ignore-query-import
-
-/** DEPRECATED. Import `CleartextLoggingQuery` instead. */
-deprecated module CleartextLogging = CleartextLoggingQuery;
diff --git a/javascript/ql/lib/semmle/javascript/security/dataflow/CleartextStorage.qll b/javascript/ql/lib/semmle/javascript/security/dataflow/CleartextStorage.qll
deleted file mode 100644
index ac6bc090d66..00000000000
--- a/javascript/ql/lib/semmle/javascript/security/dataflow/CleartextStorage.qll
+++ /dev/null
@@ -1,7 +0,0 @@
-/** DEPRECATED. Import `CleartextStorageQuery` instead. */
-
-import javascript
-private import CleartextStorageQuery as CleartextStorageQuery // ignore-query-import
-
-/** DEPRECATED. Import `CleartextStorageQuery` instead. */
-deprecated module CleartextStorage = CleartextStorageQuery;
diff --git a/javascript/ql/lib/semmle/javascript/security/dataflow/ClientSideUrlRedirect.qll b/javascript/ql/lib/semmle/javascript/security/dataflow/ClientSideUrlRedirect.qll
deleted file mode 100644
index 744646e168c..00000000000
--- a/javascript/ql/lib/semmle/javascript/security/dataflow/ClientSideUrlRedirect.qll
+++ /dev/null
@@ -1,8 +0,0 @@
-/** DEPRECATED. Import `ClientSideUrlRedirectQuery` instead. */
-
-import javascript
-import UrlConcatenation
-private import ClientSideUrlRedirectQuery as ClientSideUrlRedirectQuery // ignore-query-import
-
-/** DEPRECATED. Import `ClientSideUrlRedirectQuery` instead. */
-deprecated module ClientSideUrlRedirect = ClientSideUrlRedirectQuery;
diff --git a/javascript/ql/lib/semmle/javascript/security/dataflow/CodeInjection.qll b/javascript/ql/lib/semmle/javascript/security/dataflow/CodeInjection.qll
deleted file mode 100644
index 6c03cef6cd3..00000000000
--- a/javascript/ql/lib/semmle/javascript/security/dataflow/CodeInjection.qll
+++ /dev/null
@@ -1,7 +0,0 @@
-/** DEPRECATED. Import `CodeInjectionQuery` instead. */
-
-import javascript
-private import CodeInjectionQuery as CodeInjectionQuery // ignore-query-import
-
-/** DEPRECATED. Import `CodeInjectionQuery` instead. */
-deprecated module CodeInjection = CodeInjectionQuery;
diff --git a/javascript/ql/lib/semmle/javascript/security/dataflow/CommandInjection.qll b/javascript/ql/lib/semmle/javascript/security/dataflow/CommandInjection.qll
deleted file mode 100644
index b424c3695e1..00000000000
--- a/javascript/ql/lib/semmle/javascript/security/dataflow/CommandInjection.qll
+++ /dev/null
@@ -1,7 +0,0 @@
-/** DEPRECATED. Import `CommandInjectionQuery` instead. */
-
-import javascript
-private import CommandInjectionQuery as CommandInjectionQuery // ignore-query-import
-
-/** DEPRECATED. Import `CommandInjectionQuery` instead. */
-deprecated module CommandInjection = CommandInjectionQuery;
diff --git a/javascript/ql/lib/semmle/javascript/security/dataflow/ConditionalBypass.qll b/javascript/ql/lib/semmle/javascript/security/dataflow/ConditionalBypass.qll
deleted file mode 100644
index 54f1e9418fc..00000000000
--- a/javascript/ql/lib/semmle/javascript/security/dataflow/ConditionalBypass.qll
+++ /dev/null
@@ -1,7 +0,0 @@
-/** DEPRECATED. Import `ConditionalBypassQuery` instead. */
-
-import javascript
-private import ConditionalBypassQuery as ConditionalBypassQuery // ignore-query-import
-
-/** DEPRECATED. Import `ConditionalBypassQuery` instead. */
-deprecated module ConditionalBypass = ConditionalBypassQuery;
diff --git a/javascript/ql/lib/semmle/javascript/security/dataflow/CorsMisconfigurationForCredentials.qll b/javascript/ql/lib/semmle/javascript/security/dataflow/CorsMisconfigurationForCredentials.qll
deleted file mode 100644
index 06a6378e8ef..00000000000
--- a/javascript/ql/lib/semmle/javascript/security/dataflow/CorsMisconfigurationForCredentials.qll
+++ /dev/null
@@ -1,7 +0,0 @@
-/** DEPRECATED. Import `CorsMisconfigurationForCredentialsQuery` instead. */
-
-import javascript
-private import CorsMisconfigurationForCredentialsQuery as CorsMisconfigurationForCredentialsQuery // ignore-query-import
-
-/** DEPRECATED. Import `CorsMisconfigurationForCredentialsQuery` instead. */
-deprecated module CorsMisconfigurationForCredentials = CorsMisconfigurationForCredentialsQuery;
diff --git a/javascript/ql/lib/semmle/javascript/security/dataflow/DeepObjectResourceExhaustion.qll b/javascript/ql/lib/semmle/javascript/security/dataflow/DeepObjectResourceExhaustion.qll
deleted file mode 100644
index 82d9f4156a5..00000000000
--- a/javascript/ql/lib/semmle/javascript/security/dataflow/DeepObjectResourceExhaustion.qll
+++ /dev/null
@@ -1,8 +0,0 @@
-/** DEPRECATED. Import `DeepObjectResourceExhaustionQuery` instead. */
-
-import javascript
-import semmle.javascript.security.TaintedObject
-private import DeepObjectResourceExhaustionQuery as DeepObjectResourceExhaustionQuery // ignore-query-import
-
-/** DEPRECATED. Import `DeepObjectResourceExhaustionQuery` instead. */
-deprecated module DeepObjectResourceExhaustion = DeepObjectResourceExhaustionQuery;
diff --git a/javascript/ql/lib/semmle/javascript/security/dataflow/DifferentKindsComparisonBypass.qll b/javascript/ql/lib/semmle/javascript/security/dataflow/DifferentKindsComparisonBypass.qll
deleted file mode 100644
index e28dc5e34f1..00000000000
--- a/javascript/ql/lib/semmle/javascript/security/dataflow/DifferentKindsComparisonBypass.qll
+++ /dev/null
@@ -1,7 +0,0 @@
-/** DEPRECATED. Import `DifferentKindsComparisonBypassQuery` instead. */
-
-import javascript
-private import DifferentKindsComparisonBypassQuery as DifferentKindsComparisonBypassQuery // ignore-query-import
-
-/** DEPRECATED. Import `DifferentKindsComparisonBypassQuery` instead. */
-deprecated module DifferentKindsComparisonBypass = DifferentKindsComparisonBypassQuery;
diff --git a/javascript/ql/lib/semmle/javascript/security/dataflow/DomBasedXss.qll b/javascript/ql/lib/semmle/javascript/security/dataflow/DomBasedXss.qll
deleted file mode 100644
index 9a687eb06a0..00000000000
--- a/javascript/ql/lib/semmle/javascript/security/dataflow/DomBasedXss.qll
+++ /dev/null
@@ -1,7 +0,0 @@
-/** DEPRECATED. Import `DomBasedXssQuery` instead. */
-
-import javascript
-private import DomBasedXssQuery as DomBasedXssQuery // ignore-query-import
-
-/** DEPRECATED. Import `DomBasedXssQuery` instead. */
-deprecated module DomBasedXss = DomBasedXssQuery;
diff --git a/javascript/ql/lib/semmle/javascript/security/dataflow/ExceptionXss.qll b/javascript/ql/lib/semmle/javascript/security/dataflow/ExceptionXss.qll
deleted file mode 100644
index 7f133319438..00000000000
--- a/javascript/ql/lib/semmle/javascript/security/dataflow/ExceptionXss.qll
+++ /dev/null
@@ -1,7 +0,0 @@
-/** DEPRECATED. Import `ExceptionXssQuery` instead. */
-
-import javascript
-private import ExceptionXssQuery as ExceptionXssQuery // ignore-query-import
-
-/** DEPRECATED. Import `ExceptionXssQuery` instead. */
-deprecated module ExceptionXss = ExceptionXssQuery;
diff --git a/javascript/ql/lib/semmle/javascript/security/dataflow/FileAccessToHttp.qll b/javascript/ql/lib/semmle/javascript/security/dataflow/FileAccessToHttp.qll
deleted file mode 100644
index 7b6e88d0669..00000000000
--- a/javascript/ql/lib/semmle/javascript/security/dataflow/FileAccessToHttp.qll
+++ /dev/null
@@ -1,7 +0,0 @@
-/** DEPRECATED. Import `FileAccessToHttpQuery` instead. */
-
-import javascript
-private import FileAccessToHttpQuery as FileAccessToHttpQuery // ignore-query-import
-
-/** DEPRECATED. Import `FileAccessToHttpQuery` instead. */
-deprecated module FileAccessToHttp = FileAccessToHttpQuery;
diff --git a/javascript/ql/lib/semmle/javascript/security/dataflow/HardcodedCredentials.qll b/javascript/ql/lib/semmle/javascript/security/dataflow/HardcodedCredentials.qll
deleted file mode 100644
index 9fabc93d9ac..00000000000
--- a/javascript/ql/lib/semmle/javascript/security/dataflow/HardcodedCredentials.qll
+++ /dev/null
@@ -1,7 +0,0 @@
-/** DEPRECATED. Import `HardcodedCredentialsQuery` instead. */
-
-import javascript
-private import HardcodedCredentialsQuery as HardcodedCredentialsQuery // ignore-query-import
-
-/** DEPRECATED. Import `HardcodedCredentialsQuery` instead. */
-deprecated module HardcodedCredentials = HardcodedCredentialsQuery;
diff --git a/javascript/ql/lib/semmle/javascript/security/dataflow/HardcodedDataInterpretedAsCode.qll b/javascript/ql/lib/semmle/javascript/security/dataflow/HardcodedDataInterpretedAsCode.qll
deleted file mode 100644
index e1ca461183a..00000000000
--- a/javascript/ql/lib/semmle/javascript/security/dataflow/HardcodedDataInterpretedAsCode.qll
+++ /dev/null
@@ -1,7 +0,0 @@
-/** DEPRECATED. Import `HardcodedDataInterpretedAsCodeQuery` instead. */
-
-import javascript
-private import HardcodedDataInterpretedAsCodeQuery as HardcodedDataInterpretedAsCodeQuery // ignore-query-import
-
-/** DEPRECATED. Import `HardcodedDataInterpretedAsCodeQuery` instead. */
-deprecated module HardcodedDataInterpretedAsCode = HardcodedDataInterpretedAsCodeQuery;
diff --git a/javascript/ql/lib/semmle/javascript/security/dataflow/HostHeaderPoisoningInEmailGeneration.qll b/javascript/ql/lib/semmle/javascript/security/dataflow/HostHeaderPoisoningInEmailGeneration.qll
deleted file mode 100644
index 18f90400e3d..00000000000
--- a/javascript/ql/lib/semmle/javascript/security/dataflow/HostHeaderPoisoningInEmailGeneration.qll
+++ /dev/null
@@ -1,7 +0,0 @@
-/** DEPRECATED. Import `HostHeaderPoisoningInEmailGenerationQuery` instead. */
-
-import javascript
-private import HostHeaderPoisoningInEmailGenerationQuery as HostHeaderPoisoningInEmailGenerationQuery // ignore-query-import
-
-/** DEPRECATED. Import `HostHeaderPoisoningInEmailGenerationQuery` instead. */
-deprecated module HostHeaderPoisoningInEmailGeneration = HostHeaderPoisoningInEmailGenerationQuery;
diff --git a/javascript/ql/lib/semmle/javascript/security/dataflow/HttpToFileAccess.qll b/javascript/ql/lib/semmle/javascript/security/dataflow/HttpToFileAccess.qll
deleted file mode 100644
index 0569ba0e692..00000000000
--- a/javascript/ql/lib/semmle/javascript/security/dataflow/HttpToFileAccess.qll
+++ /dev/null
@@ -1,7 +0,0 @@
-/** DEPRECATED. Import `HttpToFileAccessQuery` instead. */
-
-import javascript
-private import HttpToFileAccessQuery as HttpToFileAccessQuery // ignore-query-import
-
-/** DEPRECATED. Import `HttpToFileAccessQuery` instead. */
-deprecated module HttpToFileAccess = HttpToFileAccessQuery;
diff --git a/javascript/ql/lib/semmle/javascript/security/dataflow/ImproperCodeSanitization.qll b/javascript/ql/lib/semmle/javascript/security/dataflow/ImproperCodeSanitization.qll
deleted file mode 100644
index 7b221c4edb5..00000000000
--- a/javascript/ql/lib/semmle/javascript/security/dataflow/ImproperCodeSanitization.qll
+++ /dev/null
@@ -1,7 +0,0 @@
-/** DEPRECATED. Import `ImproperCodeSanitizationQuery` instead. */
-
-import javascript
-private import ImproperCodeSanitizationQuery as ImproperCodeSanitizationQuery // ignore-query-import
-
-/** DEPRECATED. Import `ImproperCodeSanitizationQuery` instead. */
-deprecated module ImproperCodeSanitization = ImproperCodeSanitizationQuery;
diff --git a/javascript/ql/lib/semmle/javascript/security/dataflow/IncompleteHtmlAttributeSanitization.qll b/javascript/ql/lib/semmle/javascript/security/dataflow/IncompleteHtmlAttributeSanitization.qll
deleted file mode 100644
index f036a3388df..00000000000
--- a/javascript/ql/lib/semmle/javascript/security/dataflow/IncompleteHtmlAttributeSanitization.qll
+++ /dev/null
@@ -1,7 +0,0 @@
-/** DEPRECATED. Import `IncompleteHtmlAttributeSanitizationQuery` instead. */
-
-import javascript
-private import IncompleteHtmlAttributeSanitizationQuery as IncompleteHtmlAttributeSanitizationQuery // ignore-query-import
-
-/** DEPRECATED. Import `IncompleteHtmlAttributeSanitizationQuery` instead. */
-deprecated module IncompleteHtmlAttributeSanitization = IncompleteHtmlAttributeSanitizationQuery;
diff --git a/javascript/ql/lib/semmle/javascript/security/dataflow/IndirectCommandInjection.qll b/javascript/ql/lib/semmle/javascript/security/dataflow/IndirectCommandInjection.qll
deleted file mode 100644
index 64e24b9ceba..00000000000
--- a/javascript/ql/lib/semmle/javascript/security/dataflow/IndirectCommandInjection.qll
+++ /dev/null
@@ -1,7 +0,0 @@
-/** DEPRECATED. Import `IndirectCommandInjectionQuery` instead. */
-
-import javascript
-private import IndirectCommandInjectionQuery as IndirectCommandInjectionQuery // ignore-query-import
-
-/** DEPRECATED. Import `IndirectCommandInjectionQuery` instead. */
-deprecated module IndirectCommandInjection = IndirectCommandInjectionQuery;
diff --git a/javascript/ql/lib/semmle/javascript/security/dataflow/InsecureDownload.qll b/javascript/ql/lib/semmle/javascript/security/dataflow/InsecureDownload.qll
deleted file mode 100644
index 83c1d179243..00000000000
--- a/javascript/ql/lib/semmle/javascript/security/dataflow/InsecureDownload.qll
+++ /dev/null
@@ -1,7 +0,0 @@
-/** DEPRECATED. Import `InsecureDownloadQuery` instead. */
-
-import javascript
-private import InsecureDownloadQuery as InsecureDownloadQuery // ignore-query-import
-
-/** DEPRECATED. Import `InsecureDownloadQuery` instead. */
-deprecated module InsecureDownload = InsecureDownloadQuery;
diff --git a/javascript/ql/lib/semmle/javascript/security/dataflow/InsecureRandomness.qll b/javascript/ql/lib/semmle/javascript/security/dataflow/InsecureRandomness.qll
deleted file mode 100644
index 2672d48bee7..00000000000
--- a/javascript/ql/lib/semmle/javascript/security/dataflow/InsecureRandomness.qll
+++ /dev/null
@@ -1,7 +0,0 @@
-/** DEPRECATED. Import `InsecureRandomnessQuery` instead. */
-
-import javascript
-private import InsecureRandomnessQuery as InsecureRandomnessQuery // ignore-query-import
-
-/** DEPRECATED. Import `InsecureRandomnessQuery` instead. */
-deprecated module InsecureRandomness = InsecureRandomnessQuery;
diff --git a/javascript/ql/lib/semmle/javascript/security/dataflow/InsufficientPasswordHash.qll b/javascript/ql/lib/semmle/javascript/security/dataflow/InsufficientPasswordHash.qll
deleted file mode 100644
index f3d814e3601..00000000000
--- a/javascript/ql/lib/semmle/javascript/security/dataflow/InsufficientPasswordHash.qll
+++ /dev/null
@@ -1,7 +0,0 @@
-/** DEPRECATED. Import `InsufficientPasswordHashQuery` instead. */
-
-import javascript
-private import InsufficientPasswordHashQuery as InsufficientPasswordHashQuery // ignore-query-import
-
-/** DEPRECATED. Import `InsufficientPasswordHashQuery` instead. */
-deprecated module InsufficientPasswordHash = InsufficientPasswordHashQuery;
diff --git a/javascript/ql/lib/semmle/javascript/security/dataflow/LogInjection.qll b/javascript/ql/lib/semmle/javascript/security/dataflow/LogInjection.qll
deleted file mode 100644
index 95dec6e87fd..00000000000
--- a/javascript/ql/lib/semmle/javascript/security/dataflow/LogInjection.qll
+++ /dev/null
@@ -1,7 +0,0 @@
-/** DEPRECATED. Import `LogInjectionQuery` instead. */
-
-import javascript
-private import LogInjectionQuery as LogInjectionQuery // ignore-query-import
-
-/** DEPRECATED. Import `LogInjectionQuery` instead. */
-deprecated module LogInjection = LogInjectionQuery;
diff --git a/javascript/ql/lib/semmle/javascript/security/dataflow/LoopBoundInjection.qll b/javascript/ql/lib/semmle/javascript/security/dataflow/LoopBoundInjection.qll
deleted file mode 100644
index ab65fb9705e..00000000000
--- a/javascript/ql/lib/semmle/javascript/security/dataflow/LoopBoundInjection.qll
+++ /dev/null
@@ -1,8 +0,0 @@
-/** DEPRECATED. Import `LoopBoundInjectionQuery` instead. */
-
-import javascript
-import semmle.javascript.security.TaintedObject
-private import LoopBoundInjectionQuery as LoopBoundInjectionQuery // ignore-query-import
-
-/** DEPRECATED. Import `LoopBoundInjectionQuery` instead. */
-deprecated module LoopBoundInjection = LoopBoundInjectionQuery;
diff --git a/javascript/ql/lib/semmle/javascript/security/dataflow/NosqlInjection.qll b/javascript/ql/lib/semmle/javascript/security/dataflow/NosqlInjection.qll
deleted file mode 100644
index 8534cad9a7e..00000000000
--- a/javascript/ql/lib/semmle/javascript/security/dataflow/NosqlInjection.qll
+++ /dev/null
@@ -1,8 +0,0 @@
-/** DEPRECATED. Import `NosqlInjectionQuery` instead. */
-
-import javascript
-import semmle.javascript.security.TaintedObject
-private import NosqlInjectionQuery as NosqlInjectionQuery // ignore-query-import
-
-/** DEPRECATED. Import `NosqlInjectionQuery` instead. */
-deprecated module NosqlInjection = NosqlInjectionQuery;
diff --git a/javascript/ql/lib/semmle/javascript/security/dataflow/PostMessageStar.qll b/javascript/ql/lib/semmle/javascript/security/dataflow/PostMessageStar.qll
deleted file mode 100644
index 392466f32ab..00000000000
--- a/javascript/ql/lib/semmle/javascript/security/dataflow/PostMessageStar.qll
+++ /dev/null
@@ -1,7 +0,0 @@
-/** DEPRECATED. Import `PostMessageStarQuery` instead. */
-
-import javascript
-private import PostMessageStarQuery as PostMessageStarQuery // ignore-query-import
-
-/** DEPRECATED. Import `PostMessageStarQuery` instead. */
-deprecated module PostMessageStar = PostMessageStarQuery;
diff --git a/javascript/ql/lib/semmle/javascript/security/dataflow/PrototypePollutingAssignment.qll b/javascript/ql/lib/semmle/javascript/security/dataflow/PrototypePollutingAssignment.qll
deleted file mode 100644
index 6663d74e91a..00000000000
--- a/javascript/ql/lib/semmle/javascript/security/dataflow/PrototypePollutingAssignment.qll
+++ /dev/null
@@ -1,6 +0,0 @@
-/** DEPRECATED. Import `PrototypePollutingAssignmentQuery` instead. */
-
-private import PrototypePollutingAssignmentQuery as PrototypePollutingAssignmentQuery // ignore-query-import
-
-/** DEPRECATED. Import `PrototypePollutingAssignmentQuery` instead. */
-deprecated module PrototypePollutingAssignment = PrototypePollutingAssignmentQuery;
diff --git a/javascript/ql/lib/semmle/javascript/security/dataflow/PrototypePollution.qll b/javascript/ql/lib/semmle/javascript/security/dataflow/PrototypePollution.qll
deleted file mode 100644
index 7783a551775..00000000000
--- a/javascript/ql/lib/semmle/javascript/security/dataflow/PrototypePollution.qll
+++ /dev/null
@@ -1,10 +0,0 @@
-/** DEPRECATED. Import `PrototypePollutionQuery` instead. */
-
-import javascript
-import semmle.javascript.security.TaintedObject
-import semmle.javascript.dependencies.Dependencies
-import semmle.javascript.dependencies.SemVer
-private import PrototypePollutionQuery as PrototypePollutionQuery // ignore-query-import
-
-/** DEPRECATED. Import `PrototypePollutionQuery` instead. */
-deprecated module PrototypePollution = PrototypePollutionQuery;
diff --git a/javascript/ql/lib/semmle/javascript/security/dataflow/ReflectedXss.qll b/javascript/ql/lib/semmle/javascript/security/dataflow/ReflectedXss.qll
deleted file mode 100644
index 92ffd84fdda..00000000000
--- a/javascript/ql/lib/semmle/javascript/security/dataflow/ReflectedXss.qll
+++ /dev/null
@@ -1,7 +0,0 @@
-/** DEPRECATED. Import `ReflectedXssQuery` instead. */
-
-import javascript
-private import ReflectedXssQuery as ReflectedXssQuery // ignore-query-import
-
-/** DEPRECATED. Import `ReflectedXssQuery` instead. */
-deprecated module ReflectedXss = ReflectedXssQuery;
diff --git a/javascript/ql/lib/semmle/javascript/security/dataflow/RegExpInjection.qll b/javascript/ql/lib/semmle/javascript/security/dataflow/RegExpInjection.qll
deleted file mode 100644
index c1a27c66354..00000000000
--- a/javascript/ql/lib/semmle/javascript/security/dataflow/RegExpInjection.qll
+++ /dev/null
@@ -1,7 +0,0 @@
-/** DEPRECATED. Import `RegExpInjectionQuery` instead. */
-
-import javascript
-private import RegExpInjectionQuery as RegExpInjectionQuery // ignore-query-import
-
-/** DEPRECATED. Import `RegExpInjectionQuery` instead. */
-deprecated module RegExpInjection = RegExpInjectionQuery;
diff --git a/javascript/ql/lib/semmle/javascript/security/dataflow/RemotePropertyInjection.qll b/javascript/ql/lib/semmle/javascript/security/dataflow/RemotePropertyInjection.qll
deleted file mode 100644
index f19b02fdcb3..00000000000
--- a/javascript/ql/lib/semmle/javascript/security/dataflow/RemotePropertyInjection.qll
+++ /dev/null
@@ -1,7 +0,0 @@
-/** DEPRECATED. Import `RemotePropertyInjectionQuery` instead. */
-
-import javascript
-private import RemotePropertyInjectionQuery as RemotePropertyInjectionQuery // ignore-query-import
-
-/** DEPRECATED. Import `RemotePropertyInjectionQuery` instead. */
-deprecated module RemotePropertyInjection = RemotePropertyInjectionQuery;
diff --git a/javascript/ql/lib/semmle/javascript/security/dataflow/RequestForgery.qll b/javascript/ql/lib/semmle/javascript/security/dataflow/RequestForgery.qll
deleted file mode 100644
index a4612bf360d..00000000000
--- a/javascript/ql/lib/semmle/javascript/security/dataflow/RequestForgery.qll
+++ /dev/null
@@ -1,8 +0,0 @@
-/** DEPRECATED. Import `RequestForgeryQuery` instead. */
-
-import javascript
-import UrlConcatenation
-private import RequestForgeryQuery as RequestForgeryQuery // ignore-query-import
-
-/** DEPRECATED. Import `RequestForgeryQuery` instead. */
-deprecated module RequestForgery = RequestForgeryQuery;
diff --git a/javascript/ql/lib/semmle/javascript/security/dataflow/ServerSideUrlRedirect.qll b/javascript/ql/lib/semmle/javascript/security/dataflow/ServerSideUrlRedirect.qll
deleted file mode 100644
index 25d27e77f2f..00000000000
--- a/javascript/ql/lib/semmle/javascript/security/dataflow/ServerSideUrlRedirect.qll
+++ /dev/null
@@ -1,9 +0,0 @@
-/** DEPRECATED. Import `ServerSideUrlRedirectQuery` instead. */
-
-import javascript
-import RemoteFlowSources
-import UrlConcatenation
-private import ServerSideUrlRedirectQuery as ServerSideUrlRedirectQuery // ignore-query-import
-
-/** DEPRECATED. Import `ServerSideUrlRedirectQuery` instead. */
-deprecated module ServerSideUrlRedirect = ServerSideUrlRedirectQuery;
diff --git a/javascript/ql/lib/semmle/javascript/security/dataflow/ShellCommandInjectionFromEnvironment.qll b/javascript/ql/lib/semmle/javascript/security/dataflow/ShellCommandInjectionFromEnvironment.qll
deleted file mode 100644
index af1c0e7a574..00000000000
--- a/javascript/ql/lib/semmle/javascript/security/dataflow/ShellCommandInjectionFromEnvironment.qll
+++ /dev/null
@@ -1,7 +0,0 @@
-/** DEPRECATED. Import `ShellCommandInjectionFromEnvironmentQuery` instead. */
-
-import javascript
-private import ShellCommandInjectionFromEnvironmentQuery as ShellCommandInjectionFromEnvironmentQuery // ignore-query-import
-
-/** DEPRECATED. Import `ShellCommandInjectionFromEnvironmentQuery` instead. */
-deprecated module ShellCommandInjectionFromEnvironment = ShellCommandInjectionFromEnvironmentQuery;
diff --git a/javascript/ql/lib/semmle/javascript/security/dataflow/SqlInjection.qll b/javascript/ql/lib/semmle/javascript/security/dataflow/SqlInjection.qll
deleted file mode 100644
index 32b0d80669b..00000000000
--- a/javascript/ql/lib/semmle/javascript/security/dataflow/SqlInjection.qll
+++ /dev/null
@@ -1,7 +0,0 @@
-/** DEPRECATED. Import `SqlInjectionQuery` instead. */
-
-import javascript
-private import SqlInjectionQuery as SqlInjectionQuery // ignore-query-import
-
-/** DEPRECATED. Import `SqlInjectionQuery` instead. */
-deprecated module SqlInjection = SqlInjectionQuery;
diff --git a/javascript/ql/lib/semmle/javascript/security/dataflow/StackTraceExposure.qll b/javascript/ql/lib/semmle/javascript/security/dataflow/StackTraceExposure.qll
deleted file mode 100644
index 4211c6fd633..00000000000
--- a/javascript/ql/lib/semmle/javascript/security/dataflow/StackTraceExposure.qll
+++ /dev/null
@@ -1,7 +0,0 @@
-/** DEPRECATED. Import `StackTraceExposureQuery` instead. */
-
-import javascript
-private import StackTraceExposureQuery as StackTraceExposureQuery // ignore-query-import
-
-/** DEPRECATED. Import `StackTraceExposureQuery` instead. */
-deprecated module StackTraceExposure = StackTraceExposureQuery;
diff --git a/javascript/ql/lib/semmle/javascript/security/dataflow/StoredXss.qll b/javascript/ql/lib/semmle/javascript/security/dataflow/StoredXss.qll
deleted file mode 100644
index 65536440bcb..00000000000
--- a/javascript/ql/lib/semmle/javascript/security/dataflow/StoredXss.qll
+++ /dev/null
@@ -1,7 +0,0 @@
-/** DEPRECATED. Import `StoredXssQuery` instead. */
-
-import javascript
-private import StoredXssQuery as StoredXssQuery // ignore-query-import
-
-/** DEPRECATED. Import `StoredXssQuery` instead. */
-deprecated module StoredXss = StoredXssQuery;
diff --git a/javascript/ql/lib/semmle/javascript/security/dataflow/TaintedFormatString.qll b/javascript/ql/lib/semmle/javascript/security/dataflow/TaintedFormatString.qll
deleted file mode 100644
index a0660580206..00000000000
--- a/javascript/ql/lib/semmle/javascript/security/dataflow/TaintedFormatString.qll
+++ /dev/null
@@ -1,8 +0,0 @@
-/** DEPRECATED. Import `TaintedFormatStringQuery` instead. */
-
-import javascript
-import semmle.javascript.security.dataflow.DOM
-private import TaintedFormatStringQuery as TaintedFormatStringQuery // ignore-query-import
-
-/** DEPRECATED. Import `TaintedFormatStringQuery` instead. */
-deprecated module TaintedFormatString = TaintedFormatStringQuery;
diff --git a/javascript/ql/lib/semmle/javascript/security/dataflow/TaintedPath.qll b/javascript/ql/lib/semmle/javascript/security/dataflow/TaintedPath.qll
deleted file mode 100644
index ffd7d320684..00000000000
--- a/javascript/ql/lib/semmle/javascript/security/dataflow/TaintedPath.qll
+++ /dev/null
@@ -1,7 +0,0 @@
-/** DEPRECATED. Import `TaintedPathQuery` instead. */
-
-import javascript
-private import TaintedPathQuery as TaintedPathQuery // ignore-query-import
-
-/** DEPRECATED. Import `TaintedPathQuery` instead. */
-deprecated module TaintedPath = TaintedPathQuery;
diff --git a/javascript/ql/lib/semmle/javascript/security/dataflow/TemplateObjectInjection.qll b/javascript/ql/lib/semmle/javascript/security/dataflow/TemplateObjectInjection.qll
deleted file mode 100644
index 37f3721d600..00000000000
--- a/javascript/ql/lib/semmle/javascript/security/dataflow/TemplateObjectInjection.qll
+++ /dev/null
@@ -1,7 +0,0 @@
-/** DEPRECATED. Import `TemplateObjectInjectionQuery` instead. */
-
-import javascript
-private import TemplateObjectInjectionQuery as TemplateObjectInjectionQuery // ignore-query-import
-
-/** DEPRECATED. Import `TemplateObjectInjectionQuery` instead. */
-deprecated module TemplateObjectInjection = TemplateObjectInjectionQuery;
diff --git a/javascript/ql/lib/semmle/javascript/security/dataflow/TypeConfusionThroughParameterTampering.qll b/javascript/ql/lib/semmle/javascript/security/dataflow/TypeConfusionThroughParameterTampering.qll
deleted file mode 100644
index 44744e0efa3..00000000000
--- a/javascript/ql/lib/semmle/javascript/security/dataflow/TypeConfusionThroughParameterTampering.qll
+++ /dev/null
@@ -1,8 +0,0 @@
-/** DEPRECATED. Import `TypeConfusionThroughParameterTamperingQuery` instead. */
-
-import javascript
-private import TypeConfusionThroughParameterTamperingQuery as TypeConfusionThroughParameterTamperingQuery // ignore-query-import
-
-/** DEPRECATED. Import `TypeConfusionThroughParameterTamperingQuery` instead. */
-deprecated module TypeConfusionThroughParameterTampering =
-  TypeConfusionThroughParameterTamperingQuery;
diff --git a/javascript/ql/lib/semmle/javascript/security/dataflow/UnsafeDeserialization.qll b/javascript/ql/lib/semmle/javascript/security/dataflow/UnsafeDeserialization.qll
deleted file mode 100644
index 4b1fd4b58ea..00000000000
--- a/javascript/ql/lib/semmle/javascript/security/dataflow/UnsafeDeserialization.qll
+++ /dev/null
@@ -1,7 +0,0 @@
-/** DEPRECATED. Import `UnsafeDeserializationQuery` instead. */
-
-import javascript
-private import UnsafeDeserializationQuery as UnsafeDeserializationQuery // ignore-query-import
-
-/** DEPRECATED. Import `UnsafeDeserializationQuery` instead. */
-deprecated module UnsafeDeserialization = UnsafeDeserializationQuery;
diff --git a/javascript/ql/lib/semmle/javascript/security/dataflow/UnsafeDynamicMethodAccess.qll b/javascript/ql/lib/semmle/javascript/security/dataflow/UnsafeDynamicMethodAccess.qll
deleted file mode 100644
index c38bb4cdeb8..00000000000
--- a/javascript/ql/lib/semmle/javascript/security/dataflow/UnsafeDynamicMethodAccess.qll
+++ /dev/null
@@ -1,8 +0,0 @@
-/** DEPRECATED. Import `UnsafeDynamicMethodAccessQuery` instead. */
-
-import javascript
-import PropertyInjectionShared
-private import UnsafeDynamicMethodAccessQuery as UnsafeDynamicMethodAccessQuery // ignore-query-import
-
-/** DEPRECATED. Import `UnsafeDynamicMethodAccessQuery` instead. */
-deprecated module UnsafeDynamicMethodAccess = UnsafeDynamicMethodAccessQuery;
diff --git a/javascript/ql/lib/semmle/javascript/security/dataflow/UnsafeHtmlConstruction.qll b/javascript/ql/lib/semmle/javascript/security/dataflow/UnsafeHtmlConstruction.qll
deleted file mode 100644
index 8617d3e8724..00000000000
--- a/javascript/ql/lib/semmle/javascript/security/dataflow/UnsafeHtmlConstruction.qll
+++ /dev/null
@@ -1,7 +0,0 @@
-/** DEPRECATED. Import `UnsafeHtmlConstructionQuery` instead. */
-
-import javascript
-private import UnsafeHtmlConstructionQuery as UnsafeHtmlConstructionQuery // ignore-query-import
-
-/** DEPRECATED. Import `UnsafeHtmlConstructionQuery` instead. */
-deprecated module UnsafeHtmlConstruction = UnsafeHtmlConstructionQuery;
diff --git a/javascript/ql/lib/semmle/javascript/security/dataflow/UnsafeJQueryPlugin.qll b/javascript/ql/lib/semmle/javascript/security/dataflow/UnsafeJQueryPlugin.qll
deleted file mode 100644
index 634b7d917aa..00000000000
--- a/javascript/ql/lib/semmle/javascript/security/dataflow/UnsafeJQueryPlugin.qll
+++ /dev/null
@@ -1,8 +0,0 @@
-/** DEPRECATED. Import `UnsafeJQueryPluginQuery` instead. */
-
-import javascript
-import semmle.javascript.security.dataflow.Xss
-private import UnsafeJQueryPluginQuery as UnsafeJQueryPluginQuery // ignore-query-import
-
-/** DEPRECATED. Import `UnsafeJQueryPluginQuery` instead. */
-deprecated module UnsafeJQueryPlugin = UnsafeJQueryPluginQuery;
diff --git a/javascript/ql/lib/semmle/javascript/security/dataflow/UnsafeShellCommandConstruction.qll b/javascript/ql/lib/semmle/javascript/security/dataflow/UnsafeShellCommandConstruction.qll
deleted file mode 100644
index 7e9470a7334..00000000000
--- a/javascript/ql/lib/semmle/javascript/security/dataflow/UnsafeShellCommandConstruction.qll
+++ /dev/null
@@ -1,7 +0,0 @@
-/** DEPRECATED. Import `UnsafeShellCommandConstructionQuery` instead. */
-
-import javascript
-private import UnsafeShellCommandConstructionQuery as UnsafeShellCommandConstructionQuery // ignore-query-import
-
-/** DEPRECATED. Import `UnsafeShellCommandConstructionQuery` instead. */
-deprecated module UnsafeShellCommandConstruction = UnsafeShellCommandConstructionQuery;
diff --git a/javascript/ql/lib/semmle/javascript/security/dataflow/UnvalidatedDynamicMethodCall.qll b/javascript/ql/lib/semmle/javascript/security/dataflow/UnvalidatedDynamicMethodCall.qll
deleted file mode 100644
index f5af520e0d7..00000000000
--- a/javascript/ql/lib/semmle/javascript/security/dataflow/UnvalidatedDynamicMethodCall.qll
+++ /dev/null
@@ -1,9 +0,0 @@
-/** DEPRECATED. Import `UnvalidatedDynamicMethodCallQuery` instead. */
-
-import javascript
-import semmle.javascript.frameworks.Express
-import PropertyInjectionShared
-private import UnvalidatedDynamicMethodCallQuery as UnvalidatedDynamicMethodCallQuery // ignore-query-import
-
-/** DEPRECATED. Import `UnvalidatedDynamicMethodCallQuery` instead. */
-deprecated module UnvalidatedDynamicMethodCall = UnvalidatedDynamicMethodCallQuery;
diff --git a/javascript/ql/lib/semmle/javascript/security/dataflow/XmlBomb.qll b/javascript/ql/lib/semmle/javascript/security/dataflow/XmlBomb.qll
deleted file mode 100644
index 45615a92000..00000000000
--- a/javascript/ql/lib/semmle/javascript/security/dataflow/XmlBomb.qll
+++ /dev/null
@@ -1,7 +0,0 @@
-/** DEPRECATED. Import `XmlBombQuery` instead. */
-
-import javascript
-private import XmlBombQuery as XmlBombQuery // ignore-query-import
-
-/** DEPRECATED. Import `XmlBombQuery` instead. */
-deprecated module XmlBomb = XmlBombQuery;
diff --git a/javascript/ql/lib/semmle/javascript/security/dataflow/XpathInjection.qll b/javascript/ql/lib/semmle/javascript/security/dataflow/XpathInjection.qll
deleted file mode 100644
index 15f5413a620..00000000000
--- a/javascript/ql/lib/semmle/javascript/security/dataflow/XpathInjection.qll
+++ /dev/null
@@ -1,8 +0,0 @@
-/** DEPRECATED. Import `XpathInjectionQuery` instead. */
-
-import javascript
-import semmle.javascript.security.dataflow.DOM
-private import XpathInjectionQuery as XpathInjectionQuery // ignore-query-import
-
-/** DEPRECATED. Import `XpathInjectionQuery` instead. */
-deprecated module XpathInjection = XpathInjectionQuery;
diff --git a/javascript/ql/lib/semmle/javascript/security/dataflow/XssThroughDom.qll b/javascript/ql/lib/semmle/javascript/security/dataflow/XssThroughDom.qll
deleted file mode 100644
index 0d3096d5c1b..00000000000
--- a/javascript/ql/lib/semmle/javascript/security/dataflow/XssThroughDom.qll
+++ /dev/null
@@ -1,7 +0,0 @@
-/** DEPRECATED. Import `XssThroughDomQuery` instead. */
-
-import javascript
-private import XssThroughDomQuery as XssThroughDomQuery // ignore-query-import
-
-/** DEPRECATED. Import `XssThroughDomQuery` instead. */
-deprecated module XssThroughDom = XssThroughDomQuery;
diff --git a/javascript/ql/lib/semmle/javascript/security/dataflow/Xxe.qll b/javascript/ql/lib/semmle/javascript/security/dataflow/Xxe.qll
deleted file mode 100644
index 5275c96bada..00000000000
--- a/javascript/ql/lib/semmle/javascript/security/dataflow/Xxe.qll
+++ /dev/null
@@ -1,7 +0,0 @@
-/** DEPRECATED. Import `XxeQuery` instead. */
-
-import javascript
-private import XxeQuery as XxeQuery // ignore-query-import
-
-/** DEPRECATED. Import `XxeQuery` instead. */
-deprecated module Xxe = XxeQuery;
diff --git a/javascript/ql/lib/semmle/javascript/security/dataflow/ZipSlip.qll b/javascript/ql/lib/semmle/javascript/security/dataflow/ZipSlip.qll
deleted file mode 100644
index cc3fd8a2f27..00000000000
--- a/javascript/ql/lib/semmle/javascript/security/dataflow/ZipSlip.qll
+++ /dev/null
@@ -1,7 +0,0 @@
-/** DEPRECATED. Import `ZipSlipQuery` instead. */
-
-import javascript
-private import ZipSlipQuery as ZipSlipQuery // ignore-query-import
-
-/** DEPRECATED. Import `ZipSlipQuery` instead. */
-deprecated module ZipSlip = ZipSlipQuery;

From ba2734909f58a07be155cf71068f61283191e79f Mon Sep 17 00:00:00 2001
From: erik-krogh <erik-krogh@github.com>
Date: Thu, 17 Nov 2022 15:22:14 +0100
Subject: [PATCH 0470/1420] JS: don't use deprecated files in tests

---
 .../PoI/CommandInjectionPoIConfiguration.ql            |  6 +++---
 .../experimental/PoI/TaintedPathPoIConfiguration.ql    |  2 +-
 .../ql/test/experimental/PoI/XssPoIConfiguration.ql    |  8 ++++----
 .../test/library-tests/frameworks/Nest/Consistency.ql  |  4 ++--
 .../test/query-tests/Security/CWE-078/Consistency.ql   | 10 +++++-----
 .../CWE-079/ExceptionXss/ConsistencyExceptionXss.ql    |  2 +-
 .../CWE-079/ReflectedXss/ConsistencyReflectedXss.ql    |  2 +-
 .../Security/CWE-079/StoredXss/ConsistencyStoredXss.ql |  2 +-
 .../ConsistencyUnsafeHtmlConstruction.ql               |  2 +-
 .../ConsistencyUnsafeJQueryPlugin.ql                   |  2 +-
 .../CWE-079/XssThroughDom/ConsistencyXssThroughDom.ql  |  2 +-
 .../Security/CWE-089/untyped/Consistency.ql            |  4 ++--
 12 files changed, 23 insertions(+), 23 deletions(-)

diff --git a/javascript/ql/test/experimental/PoI/CommandInjectionPoIConfiguration.ql b/javascript/ql/test/experimental/PoI/CommandInjectionPoIConfiguration.ql
index 4b7e798b226..5ea8c17fc28 100644
--- a/javascript/ql/test/experimental/PoI/CommandInjectionPoIConfiguration.ql
+++ b/javascript/ql/test/experimental/PoI/CommandInjectionPoIConfiguration.ql
@@ -4,9 +4,9 @@
 
 import javascript
 import experimental.poi.PoI
-import semmle.javascript.security.dataflow.CommandInjection
-import semmle.javascript.security.dataflow.IndirectCommandInjection
-import semmle.javascript.security.dataflow.ShellCommandInjectionFromEnvironment
+import semmle.javascript.security.dataflow.CommandInjectionQuery as CommandInjection
+import semmle.javascript.security.dataflow.IndirectCommandInjectionQuery as IndirectCommandInjection
+import semmle.javascript.security.dataflow.ShellCommandInjectionFromEnvironmentQuery as ShellCommandInjectionFromEnvironment
 
 class MyDataFlowConfigurationPoIs extends DataFlowConfigurationPoI, ActivePoI { }
 
diff --git a/javascript/ql/test/experimental/PoI/TaintedPathPoIConfiguration.ql b/javascript/ql/test/experimental/PoI/TaintedPathPoIConfiguration.ql
index e21bc68f68c..784abb7e85b 100644
--- a/javascript/ql/test/experimental/PoI/TaintedPathPoIConfiguration.ql
+++ b/javascript/ql/test/experimental/PoI/TaintedPathPoIConfiguration.ql
@@ -4,7 +4,7 @@
 
 import javascript
 import experimental.poi.PoI
-import semmle.javascript.security.dataflow.TaintedPath
+import semmle.javascript.security.dataflow.TaintedPathQuery as TaintedPath
 
 class MyDataflowRelatedPoIs extends DataFlowConfigurationPoI, ActivePoI { }
 
diff --git a/javascript/ql/test/experimental/PoI/XssPoIConfiguration.ql b/javascript/ql/test/experimental/PoI/XssPoIConfiguration.ql
index e18b2e96913..05b43a06cd1 100644
--- a/javascript/ql/test/experimental/PoI/XssPoIConfiguration.ql
+++ b/javascript/ql/test/experimental/PoI/XssPoIConfiguration.ql
@@ -4,10 +4,10 @@
 
 import javascript
 import experimental.poi.PoI
-import semmle.javascript.security.dataflow.ReflectedXss
-import semmle.javascript.security.dataflow.StoredXss
-import semmle.javascript.security.dataflow.DomBasedXss
-import semmle.javascript.security.dataflow.ExceptionXss
+import semmle.javascript.security.dataflow.ReflectedXssQuery as ReflectedXss
+import semmle.javascript.security.dataflow.StoredXssQuery as StoredXss
+import semmle.javascript.security.dataflow.DomBasedXssQuery as DomBasedXss
+import semmle.javascript.security.dataflow.ExceptionXssQuery as ExceptionXss
 
 class MyDataFlowConfigurationPoIs extends DataFlowConfigurationPoI, ActivePoI { }
 
diff --git a/javascript/ql/test/library-tests/frameworks/Nest/Consistency.ql b/javascript/ql/test/library-tests/frameworks/Nest/Consistency.ql
index 787d0a5fdc4..e96cbc4b70f 100644
--- a/javascript/ql/test/library-tests/frameworks/Nest/Consistency.ql
+++ b/javascript/ql/test/library-tests/frameworks/Nest/Consistency.ql
@@ -1,3 +1,3 @@
 import testUtilities.ConsistencyChecking
-import semmle.javascript.security.dataflow.ReflectedXss
-import semmle.javascript.security.dataflow.ServerSideUrlRedirect
+import semmle.javascript.security.dataflow.ReflectedXssQuery as ReflectedXss
+import semmle.javascript.security.dataflow.ServerSideUrlRedirectQuery as ServerSideUrlRedirect
diff --git a/javascript/ql/test/query-tests/Security/CWE-078/Consistency.ql b/javascript/ql/test/query-tests/Security/CWE-078/Consistency.ql
index 6ae7fd0a970..c48af1a7971 100644
--- a/javascript/ql/test/query-tests/Security/CWE-078/Consistency.ql
+++ b/javascript/ql/test/query-tests/Security/CWE-078/Consistency.ql
@@ -1,10 +1,10 @@
 import javascript
 import testUtilities.ConsistencyChecking
-import semmle.javascript.security.dataflow.CommandInjection
-import semmle.javascript.security.dataflow.IndirectCommandInjection
-import semmle.javascript.security.dataflow.ShellCommandInjectionFromEnvironment
-import semmle.javascript.security.dataflow.UnsafeShellCommandConstruction
-import semmle.javascript.security.dataflow.SecondOrderCommandInjectionQuery
+import semmle.javascript.security.dataflow.CommandInjectionQuery as CommandInjection
+import semmle.javascript.security.dataflow.IndirectCommandInjectionQuery as IndirectCommandInjection
+import semmle.javascript.security.dataflow.ShellCommandInjectionFromEnvironmentQuery as ShellCommandInjectionFromEnvironment
+import semmle.javascript.security.dataflow.UnsafeShellCommandConstructionQuery as UnsafeShellCommandConstruction
+import semmle.javascript.security.dataflow.SecondOrderCommandInjectionQuery as SecondOrderCommandInjectionQuery
 
 class CommandInjectionConsistency extends ConsistencyConfiguration {
   CommandInjectionConsistency() { this = "ComandInjection" }
diff --git a/javascript/ql/test/query-tests/Security/CWE-079/ExceptionXss/ConsistencyExceptionXss.ql b/javascript/ql/test/query-tests/Security/CWE-079/ExceptionXss/ConsistencyExceptionXss.ql
index 584faa27c11..5b40a626e4a 100644
--- a/javascript/ql/test/query-tests/Security/CWE-079/ExceptionXss/ConsistencyExceptionXss.ql
+++ b/javascript/ql/test/query-tests/Security/CWE-079/ExceptionXss/ConsistencyExceptionXss.ql
@@ -1,3 +1,3 @@
 import javascript
 import testUtilities.ConsistencyChecking
-import semmle.javascript.security.dataflow.ExceptionXss as ExceptionXss
+import semmle.javascript.security.dataflow.ExceptionXssQuery as ExceptionXss
diff --git a/javascript/ql/test/query-tests/Security/CWE-079/ReflectedXss/ConsistencyReflectedXss.ql b/javascript/ql/test/query-tests/Security/CWE-079/ReflectedXss/ConsistencyReflectedXss.ql
index 76785917fb5..3200271daa6 100644
--- a/javascript/ql/test/query-tests/Security/CWE-079/ReflectedXss/ConsistencyReflectedXss.ql
+++ b/javascript/ql/test/query-tests/Security/CWE-079/ReflectedXss/ConsistencyReflectedXss.ql
@@ -1,3 +1,3 @@
 import javascript
 import testUtilities.ConsistencyChecking
-import semmle.javascript.security.dataflow.ReflectedXss as ReflectedXss
+import semmle.javascript.security.dataflow.ReflectedXssQuery as ReflectedXss
diff --git a/javascript/ql/test/query-tests/Security/CWE-079/StoredXss/ConsistencyStoredXss.ql b/javascript/ql/test/query-tests/Security/CWE-079/StoredXss/ConsistencyStoredXss.ql
index 63794389bab..c75dbb17b71 100644
--- a/javascript/ql/test/query-tests/Security/CWE-079/StoredXss/ConsistencyStoredXss.ql
+++ b/javascript/ql/test/query-tests/Security/CWE-079/StoredXss/ConsistencyStoredXss.ql
@@ -1,3 +1,3 @@
 import javascript
 import testUtilities.ConsistencyChecking
-import semmle.javascript.security.dataflow.StoredXss as StoredXss
+import semmle.javascript.security.dataflow.StoredXssQuery as StoredXss
diff --git a/javascript/ql/test/query-tests/Security/CWE-079/UnsafeHtmlConstruction/ConsistencyUnsafeHtmlConstruction.ql b/javascript/ql/test/query-tests/Security/CWE-079/UnsafeHtmlConstruction/ConsistencyUnsafeHtmlConstruction.ql
index 823644730b2..f09744a4d6c 100644
--- a/javascript/ql/test/query-tests/Security/CWE-079/UnsafeHtmlConstruction/ConsistencyUnsafeHtmlConstruction.ql
+++ b/javascript/ql/test/query-tests/Security/CWE-079/UnsafeHtmlConstruction/ConsistencyUnsafeHtmlConstruction.ql
@@ -1,3 +1,3 @@
 import javascript
 import testUtilities.ConsistencyChecking
-import semmle.javascript.security.dataflow.UnsafeHtmlConstruction as UnsafeHtmlConstruction
+import semmle.javascript.security.dataflow.UnsafeHtmlConstructionQuery as UnsafeHtmlConstruction
diff --git a/javascript/ql/test/query-tests/Security/CWE-079/UnsafeJQueryPlugin/ConsistencyUnsafeJQueryPlugin.ql b/javascript/ql/test/query-tests/Security/CWE-079/UnsafeJQueryPlugin/ConsistencyUnsafeJQueryPlugin.ql
index 6a16badb37f..b77df2a8d67 100644
--- a/javascript/ql/test/query-tests/Security/CWE-079/UnsafeJQueryPlugin/ConsistencyUnsafeJQueryPlugin.ql
+++ b/javascript/ql/test/query-tests/Security/CWE-079/UnsafeJQueryPlugin/ConsistencyUnsafeJQueryPlugin.ql
@@ -1,3 +1,3 @@
 import javascript
 import testUtilities.ConsistencyChecking
-import semmle.javascript.security.dataflow.UnsafeJQueryPlugin as UnsafeJqueryPlugin
+import semmle.javascript.security.dataflow.UnsafeJQueryPluginQuery as UnsafeJqueryPlugin
diff --git a/javascript/ql/test/query-tests/Security/CWE-079/XssThroughDom/ConsistencyXssThroughDom.ql b/javascript/ql/test/query-tests/Security/CWE-079/XssThroughDom/ConsistencyXssThroughDom.ql
index 118a875f15d..75416d5a0dc 100644
--- a/javascript/ql/test/query-tests/Security/CWE-079/XssThroughDom/ConsistencyXssThroughDom.ql
+++ b/javascript/ql/test/query-tests/Security/CWE-079/XssThroughDom/ConsistencyXssThroughDom.ql
@@ -1,3 +1,3 @@
 import javascript
 import testUtilities.ConsistencyChecking
-import semmle.javascript.security.dataflow.XssThroughDom as ThroughDomXss
+import semmle.javascript.security.dataflow.XssThroughDomQuery as ThroughDomXss
diff --git a/javascript/ql/test/query-tests/Security/CWE-089/untyped/Consistency.ql b/javascript/ql/test/query-tests/Security/CWE-089/untyped/Consistency.ql
index 0ab292b7b82..bd24059f31c 100644
--- a/javascript/ql/test/query-tests/Security/CWE-089/untyped/Consistency.ql
+++ b/javascript/ql/test/query-tests/Security/CWE-089/untyped/Consistency.ql
@@ -1,4 +1,4 @@
 import javascript
 import testUtilities.ConsistencyChecking
-import semmle.javascript.security.dataflow.SqlInjection
-import semmle.javascript.security.dataflow.NosqlInjection
+import semmle.javascript.security.dataflow.SqlInjectionQuery as SqlInjection
+import semmle.javascript.security.dataflow.NosqlInjectionQuery as NosqlInjection

From 468a879c1f5e96af8c4b13d13ed8b96283f6472b Mon Sep 17 00:00:00 2001
From: erik-krogh <erik-krogh@github.com>
Date: Thu, 17 Nov 2022 15:27:39 +0100
Subject: [PATCH 0471/1420] Python: delete dead code. thanks QL-for-QL

---
 python/ql/lib/semmle/python/frameworks/PEP249.qll | 8 --------
 1 file changed, 8 deletions(-)

diff --git a/python/ql/lib/semmle/python/frameworks/PEP249.qll b/python/ql/lib/semmle/python/frameworks/PEP249.qll
index 6dee86b5346..594c3e938e2 100644
--- a/python/ql/lib/semmle/python/frameworks/PEP249.qll
+++ b/python/ql/lib/semmle/python/frameworks/PEP249.qll
@@ -111,14 +111,6 @@ module PEP249 {
     private class CursorCall extends InstanceSource, DataFlow::CallCfgNode {
       CursorCall() { this.getFunction() = methodRef() }
     }
-
-    /** Gets a reference to a result of calling the `cursor` method on a database connection. */
-    private DataFlow::TypeTrackingNode methodResult(DataFlow::TypeTracker t) {
-      t.start() and
-      result.asCfgNode().(CallNode).getFunction() = methodRef().asCfgNode()
-      or
-      exists(DataFlow::TypeTracker t2 | result = methodResult(t2).track(t2, t))
-    }
   }
 
   /**

From 5deb16e58cd40f7f181a1caaaeef3772d7c88e8a Mon Sep 17 00:00:00 2001
From: Harry Maclean <hmac@github.com>
Date: Fri, 18 Nov 2022 18:14:53 +1300
Subject: [PATCH 0472/1420] Ruby: Remove redundant predicate

The existing barrier guard machinery recognises guards such as `if x and y`,
so there's no need to explicitly model them.
---
 .../codeql/ruby/dataflow/BarrierGuards.qll    | 19 -------------------
 1 file changed, 19 deletions(-)

diff --git a/ruby/ql/lib/codeql/ruby/dataflow/BarrierGuards.qll b/ruby/ql/lib/codeql/ruby/dataflow/BarrierGuards.qll
index 16e965f6657..92fb759c468 100644
--- a/ruby/ql/lib/codeql/ruby/dataflow/BarrierGuards.qll
+++ b/ruby/ql/lib/codeql/ruby/dataflow/BarrierGuards.qll
@@ -35,8 +35,6 @@ private predicate stringConstCompare(CfgNodes::AstCfgNode guard, CfgNode testedN
     stringConstCompareOr(guard, def, branch) and
     stringConstCompare(g.getLeftOperand(), testedNode, _)
   )
-  or
-  stringConstCompareAnd(guard, testedNode, branch)
 }
 
 /**
@@ -57,23 +55,6 @@ private predicate stringConstCompareOr(
   )
 }
 
-/**
- * Holds if `guard` is an `and` expression containing a string comparison guard in either operand.
- * For example:
- *
- * ```rb
- * x == "foo" and other_condition()
- * other_condition() and x == "foo"
- * ```
- */
-private predicate stringConstCompareAnd(
-  CfgNodes::ExprNodes::BinaryOperationCfgNode guard, CfgNode testedNode, boolean branch
-) {
-  guard.getExpr() instanceof LogicalAndExpr and
-  branch = true and
-  stringConstCompare(guard.getAnOperand(), testedNode, branch)
-}
-
 /**
  * A validation of value by comparing with a constant string value, for example
  * in:

From 376d4e03a144178d7ed2744201c449e808c0a7db Mon Sep 17 00:00:00 2001
From: Harry Maclean <hmac@github.com>
Date: Fri, 18 Nov 2022 18:17:02 +1300
Subject: [PATCH 0473/1420] Ruby: Cache some barrier guard predicates

---
 ruby/ql/lib/codeql/ruby/dataflow/BarrierGuards.qll | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/ruby/ql/lib/codeql/ruby/dataflow/BarrierGuards.qll b/ruby/ql/lib/codeql/ruby/dataflow/BarrierGuards.qll
index 92fb759c468..f1f8d2c5b46 100644
--- a/ruby/ql/lib/codeql/ruby/dataflow/BarrierGuards.qll
+++ b/ruby/ql/lib/codeql/ruby/dataflow/BarrierGuards.qll
@@ -9,6 +9,7 @@ private import codeql.ruby.ast.internal.Constant
 private import codeql.ruby.InclusionTests
 private import codeql.ruby.ast.internal.Literal
 
+cached
 private predicate stringConstCompare(CfgNodes::AstCfgNode guard, CfgNode testedNode, boolean branch) {
   exists(CfgNodes::ExprNodes::ComparisonOperationCfgNode c |
     c = guard and
@@ -102,6 +103,7 @@ deprecated class StringConstCompare extends DataFlow::BarrierGuard,
   }
 }
 
+cached
 private predicate stringConstArrayInclusionCall(
   CfgNodes::AstCfgNode guard, CfgNode testedNode, boolean branch
 ) {

From 7496b61b8df2a19178b9d85cdcb18edf0a54dae5 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Alvaro=20Mu=C3=B1oz?= <pwntester@github.com>
Date: Thu, 17 Nov 2022 11:47:45 +0100
Subject: [PATCH 0474/1420] Add rsync since both --rsh and --rsync-path admit
 commands

---
 .../semmle/go/frameworks/SystemCommandExecutors.qll  |  6 ++++--
 .../Security/CWE-078/ArgumentInjection.go            | 12 ++++++++++++
 .../Security/CWE-078/CommandInjection.expected       |  4 ++++
 3 files changed, 20 insertions(+), 2 deletions(-)
 create mode 100644 go/ql/test/query-tests/Security/CWE-078/ArgumentInjection.go

diff --git a/go/ql/lib/semmle/go/frameworks/SystemCommandExecutors.qll b/go/ql/lib/semmle/go/frameworks/SystemCommandExecutors.qll
index c2d9929fa54..1e4b7637581 100644
--- a/go/ql/lib/semmle/go/frameworks/SystemCommandExecutors.qll
+++ b/go/ql/lib/semmle/go/frameworks/SystemCommandExecutors.qll
@@ -20,7 +20,9 @@ private class ShellOrSudoExecution extends SystemCommandExecution::Range, DataFl
 
   override DataFlow::Node getCommandName() { result = this.getAnArgument() }
 
-  override predicate doubleDashIsSanitizing() { shellCommand.getStringValue().matches("%git") }
+  override predicate doubleDashIsSanitizing() {
+    shellCommand.getStringValue().matches("%" + ["git", "rsync"])
+  }
 }
 
 private class SystemCommandExecutors extends SystemCommandExecution::Range, DataFlow::CallNode {
@@ -126,7 +128,7 @@ private string getASudoCommand() {
       "fakeroot", "fakeroot-sysv", "su", "fakeroot-tcp", "fstab-decode", "jrunscript", "nohup",
       "parallel", "find", "pkexec", "sg", "sem", "runcon", "sudoedit", "runuser", "stdbuf",
       "system", "timeout", "xargs", "time", "awk", "gawk", "mawk", "nawk", "doas", "git", "access",
-      "vsys", "userv", "sus", "super"
+      "vsys", "userv", "sus", "super", "rsync"
     ]
 }
 
diff --git a/go/ql/test/query-tests/Security/CWE-078/ArgumentInjection.go b/go/ql/test/query-tests/Security/CWE-078/ArgumentInjection.go
new file mode 100644
index 00000000000..2731b907a4e
--- /dev/null
+++ b/go/ql/test/query-tests/Security/CWE-078/ArgumentInjection.go
@@ -0,0 +1,12 @@
+package main
+
+import (
+	"net/http"
+	"os/exec"
+)
+
+func handler(req *http.Request) {
+	path := req.URL.Query()["path"][0]
+	cmd := exec.Command("rsync", path, "/tmp")
+	cmd.Run()
+}
diff --git a/go/ql/test/query-tests/Security/CWE-078/CommandInjection.expected b/go/ql/test/query-tests/Security/CWE-078/CommandInjection.expected
index 02c56107106..3c93a4657ca 100644
--- a/go/ql/test/query-tests/Security/CWE-078/CommandInjection.expected
+++ b/go/ql/test/query-tests/Security/CWE-078/CommandInjection.expected
@@ -1,4 +1,5 @@
 edges
+| ArgumentInjection.go:9:10:9:16 | selection of URL : pointer type | ArgumentInjection.go:10:31:10:34 | path |
 | CommandInjection.go:9:13:9:19 | selection of URL : pointer type | CommandInjection.go:10:22:10:28 | cmdName |
 | GitSubcommands.go:10:13:10:19 | selection of URL : pointer type | GitSubcommands.go:12:31:12:37 | tainted |
 | GitSubcommands.go:10:13:10:19 | selection of URL : pointer type | GitSubcommands.go:13:31:13:37 | tainted |
@@ -25,6 +26,8 @@ edges
 | SanitizingDoubleDash.go:105:15:105:37 | slice literal [array] : string | SanitizingDoubleDash.go:106:24:106:31 | arrayLit |
 | SanitizingDoubleDash.go:105:30:105:36 | tainted : string | SanitizingDoubleDash.go:105:15:105:37 | slice literal [array] : string |
 nodes
+| ArgumentInjection.go:9:10:9:16 | selection of URL : pointer type | semmle.label | selection of URL : pointer type |
+| ArgumentInjection.go:10:31:10:34 | path | semmle.label | path |
 | CommandInjection.go:9:13:9:19 | selection of URL : pointer type | semmle.label | selection of URL : pointer type |
 | CommandInjection.go:10:22:10:28 | cmdName | semmle.label | cmdName |
 | GitSubcommands.go:10:13:10:19 | selection of URL : pointer type | semmle.label | selection of URL : pointer type |
@@ -55,6 +58,7 @@ nodes
 | SanitizingDoubleDash.go:152:24:152:30 | tainted | semmle.label | tainted |
 subpaths
 #select
+| ArgumentInjection.go:10:31:10:34 | path | ArgumentInjection.go:9:10:9:16 | selection of URL : pointer type | ArgumentInjection.go:10:31:10:34 | path | This command depends on a $@. | ArgumentInjection.go:9:10:9:16 | selection of URL | user-provided value |
 | CommandInjection.go:10:22:10:28 | cmdName | CommandInjection.go:9:13:9:19 | selection of URL : pointer type | CommandInjection.go:10:22:10:28 | cmdName | This command depends on a $@. | CommandInjection.go:9:13:9:19 | selection of URL | user-provided value |
 | GitSubcommands.go:12:31:12:37 | tainted | GitSubcommands.go:10:13:10:19 | selection of URL : pointer type | GitSubcommands.go:12:31:12:37 | tainted | This command depends on a $@. | GitSubcommands.go:10:13:10:19 | selection of URL | user-provided value |
 | GitSubcommands.go:13:31:13:37 | tainted | GitSubcommands.go:10:13:10:19 | selection of URL : pointer type | GitSubcommands.go:13:31:13:37 | tainted | This command depends on a $@. | GitSubcommands.go:10:13:10:19 | selection of URL | user-provided value |

From 69ecbda133885f3ad909cfa7d4ffb196f9c8e41a Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Alvaro=20Mu=C3=B1oz?= <pwntester@github.com>
Date: Thu, 17 Nov 2022 13:06:07 +0100
Subject: [PATCH 0475/1420] add change note

---
 go/ql/lib/change-notes/2022-11-17-rsync-argument-injection.md | 4 ++++
 1 file changed, 4 insertions(+)
 create mode 100644 go/ql/lib/change-notes/2022-11-17-rsync-argument-injection.md

diff --git a/go/ql/lib/change-notes/2022-11-17-rsync-argument-injection.md b/go/ql/lib/change-notes/2022-11-17-rsync-argument-injection.md
new file mode 100644
index 00000000000..fb39aebe09c
--- /dev/null
+++ b/go/ql/lib/change-notes/2022-11-17-rsync-argument-injection.md
@@ -0,0 +1,4 @@
+---
+ category: minorAnalysis
+---
+ * `rsync` has been added to the list of commands which may evaluate its parameters as a shell command.

From 8a27660615eaf3da3b6865405fe04d4e26a33db6 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Alvaro=20Mu=C3=B1oz?= <pwntester@github.com>
Date: Fri, 18 Nov 2022 09:41:30 +0100
Subject: [PATCH 0476/1420] change handler function name

---
 go/ql/test/query-tests/Security/CWE-078/ArgumentInjection.go | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/go/ql/test/query-tests/Security/CWE-078/ArgumentInjection.go b/go/ql/test/query-tests/Security/CWE-078/ArgumentInjection.go
index 2731b907a4e..d38d4662542 100644
--- a/go/ql/test/query-tests/Security/CWE-078/ArgumentInjection.go
+++ b/go/ql/test/query-tests/Security/CWE-078/ArgumentInjection.go
@@ -5,7 +5,7 @@ import (
 	"os/exec"
 )
 
-func handler(req *http.Request) {
+func handler2(req *http.Request) {
 	path := req.URL.Query()["path"][0]
 	cmd := exec.Command("rsync", path, "/tmp")
 	cmd.Run()

From 23dc977d48190f5411022504c09bdcab3d953649 Mon Sep 17 00:00:00 2001
From: erik-krogh <erik-krogh@github.com>
Date: Fri, 18 Nov 2022 10:29:42 +0100
Subject: [PATCH 0477/1420] add a severity to incompleteswitchoverenum.ql to
 fix a compiler warning

---
 go/ql/examples/snippets/incompleteswitchoverenum.ql | 1 +
 1 file changed, 1 insertion(+)

diff --git a/go/ql/examples/snippets/incompleteswitchoverenum.ql b/go/ql/examples/snippets/incompleteswitchoverenum.ql
index b201e55089e..1ded8d0a1ab 100644
--- a/go/ql/examples/snippets/incompleteswitchoverenum.ql
+++ b/go/ql/examples/snippets/incompleteswitchoverenum.ql
@@ -2,6 +2,7 @@
  * @name Incomplete switch over enum
  * @description A switch statement of enum type should explicitly reference each
  *   of the members of that enum.
+ * @severity warning
  * @kind problem
  * @id go/examples/incomplete-switch
  */

From 7c091fa6cd2ed857c03894f9c1881719dc84b817 Mon Sep 17 00:00:00 2001
From: erik-krogh <erik-krogh@github.com>
Date: Fri, 18 Nov 2022 10:31:42 +0100
Subject: [PATCH 0478/1420] also compile the examples folders as part of the
 compilation check

---
 .github/workflows/compile-queries.yml | 14 +++++++-------
 1 file changed, 7 insertions(+), 7 deletions(-)

diff --git a/.github/workflows/compile-queries.yml b/.github/workflows/compile-queries.yml
index 94378250c85..d053b1cb7c1 100644
--- a/.github/workflows/compile-queries.yml
+++ b/.github/workflows/compile-queries.yml
@@ -26,7 +26,7 @@ jobs:
         if: ${{ github.event_name == 'pull_request' }}
         uses: actions/cache@v3
         with:
-          path: '*/ql/src/.cache'
+          path: '**/.cache'
           key: codeql-compile-pr-${{ github.sha }} # deliberately not using the `compile-compile-main` keys here.
           restore-keys: |
             codeql-compile-${{ github.base_ref }}-${{ env.merge-base }}
@@ -36,7 +36,7 @@ jobs:
         if: ${{ github.event_name != 'pull_request' }}
         uses: actions/cache@v3
         with:
-          path: '*/ql/src/.cache'
+          path: '**/.cache'
           key: codeql-compile-${{ github.ref_name }}-${{ github.sha }} # just fill on main
           restore-keys: | # restore from another random commit, to speed up compilation.
             codeql-compile-${{ github.ref_name }}- 
@@ -51,7 +51,7 @@ jobs:
         # run with --check-only if running in a PR (github.sha != main)
         if : ${{ github.event_name == 'pull_request' }}
         shell: bash
-        run: codeql query compile -j0 */ql/src --keep-going --warnings=error --check-only
+        run: codeql query compile -j0 */ql/{src,examples} --keep-going --warnings=error --check-only
       - name: compile queries - full
         # do full compile if running on main - this populates the cache
         if : ${{ github.event_name != 'pull_request' }}
@@ -59,13 +59,13 @@ jobs:
         run: |
           # Move all the existing cache into another folder, so we only preserve the cache for the current queries.
           mkdir -p ${COMBINED_CACHE_DIR}
-          rm */ql/src/.cache/{lock,size}
+          rm -f */ql/{src,examples}/.cache/{lock,size} # -f to avoid errors if the cache is empty.
           # copy the contents of the .cache folders into the combined cache folder.
-          cp -r */ql/src/.cache/* ${COMBINED_CACHE_DIR}/
+          cp -r */ql/{src,examples}/.cache/* ${COMBINED_CACHE_DIR}/ || : # ignore missing files
           # clean up the .cache folders
-          rm -rf */ql/src/.cache/*
+          rm -rf */ql/{src,examples}/.cache/*
 
           # compile the queries
-          codeql query compile -j0 */ql/src --keep-going --warnings=error --compilation-cache ${COMBINED_CACHE_DIR}
+          codeql query compile -j0 */ql/{src,examples} --keep-going --warnings=error --compilation-cache ${COMBINED_CACHE_DIR}
         env: 
           COMBINED_CACHE_DIR: ${{ github.workspace }}/compilation-dir
\ No newline at end of file

From 5b14ebf22abd25e88786cce9f8a21875ee5780d1 Mon Sep 17 00:00:00 2001
From: "github-actions[bot]" <github-actions@github.com>
Date: Fri, 18 Nov 2022 11:26:00 +0000
Subject: [PATCH 0479/1420] Post-release preparation for codeql-cli-2.11.4

---
 cpp/ql/lib/qlpack.yml                         | 2 +-
 cpp/ql/src/qlpack.yml                         | 2 +-
 csharp/ql/campaigns/Solorigate/lib/qlpack.yml | 2 +-
 csharp/ql/campaigns/Solorigate/src/qlpack.yml | 2 +-
 csharp/ql/lib/qlpack.yml                      | 2 +-
 csharp/ql/src/qlpack.yml                      | 2 +-
 go/ql/lib/qlpack.yml                          | 2 +-
 go/ql/src/qlpack.yml                          | 2 +-
 java/ql/lib/qlpack.yml                        | 2 +-
 java/ql/src/qlpack.yml                        | 2 +-
 javascript/ql/lib/qlpack.yml                  | 2 +-
 javascript/ql/src/qlpack.yml                  | 2 +-
 misc/suite-helpers/qlpack.yml                 | 2 +-
 python/ql/lib/qlpack.yml                      | 2 +-
 python/ql/src/qlpack.yml                      | 2 +-
 ruby/ql/lib/qlpack.yml                        | 2 +-
 ruby/ql/src/qlpack.yml                        | 2 +-
 shared/regex/qlpack.yml                       | 2 +-
 shared/ssa/qlpack.yml                         | 2 +-
 shared/typos/qlpack.yml                       | 2 +-
 20 files changed, 20 insertions(+), 20 deletions(-)

diff --git a/cpp/ql/lib/qlpack.yml b/cpp/ql/lib/qlpack.yml
index e8c0a17068e..4e0b86be561 100644
--- a/cpp/ql/lib/qlpack.yml
+++ b/cpp/ql/lib/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/cpp-all
-version: 0.4.4
+version: 0.4.5-dev
 groups: cpp
 dbscheme: semmlecode.cpp.dbscheme
 extractor: cpp
diff --git a/cpp/ql/src/qlpack.yml b/cpp/ql/src/qlpack.yml
index 4ee5b28070c..75602332e29 100644
--- a/cpp/ql/src/qlpack.yml
+++ b/cpp/ql/src/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/cpp-queries
-version: 0.4.4
+version: 0.4.5-dev
 groups: 
   - cpp
   - queries
diff --git a/csharp/ql/campaigns/Solorigate/lib/qlpack.yml b/csharp/ql/campaigns/Solorigate/lib/qlpack.yml
index 41c454bb5c0..3b918b3442d 100644
--- a/csharp/ql/campaigns/Solorigate/lib/qlpack.yml
+++ b/csharp/ql/campaigns/Solorigate/lib/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/csharp-solorigate-all
-version: 1.3.4
+version: 1.3.5-dev
 groups:
     - csharp
     - solorigate
diff --git a/csharp/ql/campaigns/Solorigate/src/qlpack.yml b/csharp/ql/campaigns/Solorigate/src/qlpack.yml
index 7ba0669ba7b..18101db5518 100644
--- a/csharp/ql/campaigns/Solorigate/src/qlpack.yml
+++ b/csharp/ql/campaigns/Solorigate/src/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/csharp-solorigate-queries
-version: 1.3.4
+version: 1.3.5-dev
 groups:
     - csharp
     - solorigate
diff --git a/csharp/ql/lib/qlpack.yml b/csharp/ql/lib/qlpack.yml
index bd5cd1b7e16..5103c8f0ab7 100644
--- a/csharp/ql/lib/qlpack.yml
+++ b/csharp/ql/lib/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/csharp-all
-version: 0.4.4
+version: 0.4.5-dev
 groups: csharp
 dbscheme: semmlecode.csharp.dbscheme
 extractor: csharp
diff --git a/csharp/ql/src/qlpack.yml b/csharp/ql/src/qlpack.yml
index 6964f93b085..e455b240f04 100644
--- a/csharp/ql/src/qlpack.yml
+++ b/csharp/ql/src/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/csharp-queries
-version: 0.4.4
+version: 0.4.5-dev
 groups: 
   - csharp
   - queries
diff --git a/go/ql/lib/qlpack.yml b/go/ql/lib/qlpack.yml
index 0d453d90f88..823bb20f97b 100644
--- a/go/ql/lib/qlpack.yml
+++ b/go/ql/lib/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/go-all
-version: 0.3.4
+version: 0.3.5-dev
 groups: go
 dbscheme: go.dbscheme
 extractor: go
diff --git a/go/ql/src/qlpack.yml b/go/ql/src/qlpack.yml
index 297b6ce7ff9..258d6809c80 100644
--- a/go/ql/src/qlpack.yml
+++ b/go/ql/src/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/go-queries
-version: 0.3.4
+version: 0.3.5-dev
 groups:
   - go
   - queries
diff --git a/java/ql/lib/qlpack.yml b/java/ql/lib/qlpack.yml
index 65e160f8720..dfab979e9bd 100644
--- a/java/ql/lib/qlpack.yml
+++ b/java/ql/lib/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/java-all
-version: 0.4.4
+version: 0.4.5-dev
 groups: java
 dbscheme: config/semmlecode.dbscheme
 extractor: java
diff --git a/java/ql/src/qlpack.yml b/java/ql/src/qlpack.yml
index b15d45f78f9..50d76873114 100644
--- a/java/ql/src/qlpack.yml
+++ b/java/ql/src/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/java-queries
-version: 0.4.4
+version: 0.4.5-dev
 groups: 
   - java
   - queries
diff --git a/javascript/ql/lib/qlpack.yml b/javascript/ql/lib/qlpack.yml
index 8e1f29f47e0..fed1085652e 100644
--- a/javascript/ql/lib/qlpack.yml
+++ b/javascript/ql/lib/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/javascript-all
-version: 0.3.4
+version: 0.3.5-dev
 groups: javascript
 dbscheme: semmlecode.javascript.dbscheme
 extractor: javascript
diff --git a/javascript/ql/src/qlpack.yml b/javascript/ql/src/qlpack.yml
index ba9e83a24cd..48d1f2353cf 100644
--- a/javascript/ql/src/qlpack.yml
+++ b/javascript/ql/src/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/javascript-queries
-version: 0.4.4
+version: 0.4.5-dev
 groups: 
   - javascript
   - queries
diff --git a/misc/suite-helpers/qlpack.yml b/misc/suite-helpers/qlpack.yml
index 24d2ef3172f..77c5496ea53 100644
--- a/misc/suite-helpers/qlpack.yml
+++ b/misc/suite-helpers/qlpack.yml
@@ -1,3 +1,3 @@
 name: codeql/suite-helpers
-version: 0.3.4
+version: 0.3.5-dev
 groups: shared
diff --git a/python/ql/lib/qlpack.yml b/python/ql/lib/qlpack.yml
index ad7d4faa837..2cc69948b1d 100644
--- a/python/ql/lib/qlpack.yml
+++ b/python/ql/lib/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/python-all
-version: 0.6.4
+version: 0.6.5-dev
 groups: python
 dbscheme: semmlecode.python.dbscheme
 extractor: python
diff --git a/python/ql/src/qlpack.yml b/python/ql/src/qlpack.yml
index 6e3ab19be4b..c907e7ee1d0 100644
--- a/python/ql/src/qlpack.yml
+++ b/python/ql/src/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/python-queries
-version: 0.5.4
+version: 0.5.5-dev
 groups: 
   - python
   - queries
diff --git a/ruby/ql/lib/qlpack.yml b/ruby/ql/lib/qlpack.yml
index cf26086c71c..d36fc9c53ea 100644
--- a/ruby/ql/lib/qlpack.yml
+++ b/ruby/ql/lib/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/ruby-all
-version: 0.4.4
+version: 0.4.5-dev
 groups: ruby
 extractor: ruby
 dbscheme: ruby.dbscheme
diff --git a/ruby/ql/src/qlpack.yml b/ruby/ql/src/qlpack.yml
index 5d1a123e58a..c31d52e4fe7 100644
--- a/ruby/ql/src/qlpack.yml
+++ b/ruby/ql/src/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/ruby-queries
-version: 0.4.4
+version: 0.4.5-dev
 groups: 
   - ruby
   - queries
diff --git a/shared/regex/qlpack.yml b/shared/regex/qlpack.yml
index c82cff186d0..af31de79697 100644
--- a/shared/regex/qlpack.yml
+++ b/shared/regex/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/regex
-version: 0.0.1
+version: 0.0.2-dev
 groups: shared
 library: true
 dependencies:
diff --git a/shared/ssa/qlpack.yml b/shared/ssa/qlpack.yml
index 7fb2ed664cb..bf307418089 100644
--- a/shared/ssa/qlpack.yml
+++ b/shared/ssa/qlpack.yml
@@ -1,4 +1,4 @@
 name: codeql/ssa
-version: 0.0.5
+version: 0.0.6-dev
 groups: shared
 library: true
diff --git a/shared/typos/qlpack.yml b/shared/typos/qlpack.yml
index 39df1ba73d5..4d0a7ddae81 100644
--- a/shared/typos/qlpack.yml
+++ b/shared/typos/qlpack.yml
@@ -1,4 +1,4 @@
 name: codeql/typos
-version: 0.0.5
+version: 0.0.6-dev
 groups: shared
 library: true

From 3cdfed94830f34cc5c4ab852a7e1ec97aba61d7d Mon Sep 17 00:00:00 2001
From: erik-krogh <erik-krogh@github.com>
Date: Fri, 18 Nov 2022 14:41:29 +0100
Subject: [PATCH 0480/1420] CI: delete language specific codeql query compile
 checks

---
 .github/workflows/ql-for-ql-tests.yml | 5 -----
 .github/workflows/ruby-qltest.yml     | 5 -----
 2 files changed, 10 deletions(-)

diff --git a/.github/workflows/ql-for-ql-tests.yml b/.github/workflows/ql-for-ql-tests.yml
index b820d00a3e4..ce7963e8f79 100644
--- a/.github/workflows/ql-for-ql-tests.yml
+++ b/.github/workflows/ql-for-ql-tests.yml
@@ -47,8 +47,3 @@ jobs:
           find ql/ql/src "(" -name "*.ql" -or -name "*.qll" ")" -print0 | xargs -0 "${CODEQL}" query format --check-only
         env:
           CODEQL: ${{ steps.find-codeql.outputs.codeql-path }}
-      - name: Check QL compilation
-        run: |
-          "${CODEQL}" query compile --check-only --threads=4 --warnings=error --search-path "${{ github.workspace }}/ql/extractor-pack" "ql/ql/src" "ql/ql/examples"
-        env:
-          CODEQL: ${{ steps.find-codeql.outputs.codeql-path }}
diff --git a/.github/workflows/ruby-qltest.yml b/.github/workflows/ruby-qltest.yml
index 125e2694fb0..056543a237b 100644
--- a/.github/workflows/ruby-qltest.yml
+++ b/.github/workflows/ruby-qltest.yml
@@ -33,11 +33,6 @@ jobs:
     steps:
       - uses: actions/checkout@v3
       - uses: ./.github/actions/fetch-codeql
-      - name: Check QL compilation
-        run: |
-          codeql query compile --check-only --threads=0 --ram 5000 --warnings=error "ql/src" "ql/examples"
-        env:
-          GITHUB_TOKEN: ${{ github.token }}
   qlupgrade:
     runs-on: ubuntu-latest
     steps:

From d79eed533b83cbe8bfd8b1a4feb1d8cc06a4daa0 Mon Sep 17 00:00:00 2001
From: Taus <tausbn@github.com>
Date: Fri, 18 Nov 2022 13:50:50 +0000
Subject: [PATCH 0481/1420] Python: Remove unwanted recursion

Depending on `localFlowStep` meant that this predicate ended up being
recursive with itself (by way of flow summaries which depend on API
graphs, which in turn depend on import resolution).

Changing this to use the simple local flow step predicate that we use
for type tracking should fix this issue.
---
 .../semmle/python/dataflow/new/internal/ImportResolution.qll   | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/python/ql/lib/semmle/python/dataflow/new/internal/ImportResolution.qll b/python/ql/lib/semmle/python/dataflow/new/internal/ImportResolution.qll
index 320ec8d998e..e4af21caacc 100644
--- a/python/ql/lib/semmle/python/dataflow/new/internal/ImportResolution.qll
+++ b/python/ql/lib/semmle/python/dataflow/new/internal/ImportResolution.qll
@@ -8,6 +8,7 @@ private import python
 private import semmle.python.dataflow.new.DataFlow
 private import semmle.python.dataflow.new.internal.ImportStar
 private import semmle.python.dataflow.new.TypeTracker
+private import semmle.python.dataflow.new.internal.DataFlowPrivate
 
 /**
  * Python modules and the way imports are resolved are... complicated. Here's a crash course in how
@@ -279,7 +280,7 @@ module ImportResolution {
     or
     // Flow (local or global) forward to a later reference to the module.
     exists(DataFlow::Node ref | ref = getModuleReference(m) |
-      DataFlow::localFlow(ref, result)
+      simpleLocalFlowStepForTypetracking(ref, result)
       or
       exists(DataFlow::ModuleVariableNode mv |
         mv.getAWrite() = ref and

From 2cd58817d74ad2d9e47fec40de937467d8c0db14 Mon Sep 17 00:00:00 2001
From: Paolo Tranquilli <redsun82@github.com>
Date: Fri, 18 Nov 2022 16:29:19 +0100
Subject: [PATCH 0482/1420] Swift: skip QL code generation on untouched files

This is a developer QoL improvement, where running codegen will skip
writing (and especially formatting) any files that were not changed.

**Why?** While code generation in itself was pretty much instant, QL
formatting of generated code was starting to take a long time. This made
unconditionally running codegen quite annoying, for example before each
test run as part of an IDE workflow or as part of the pre-commit hook.

**How?** This was not completely straightforward as we could not work
with the contents of the file prior to code generation as that was
already post-processed by the QL formatting, so we had no chance of
comparing the output of template rendering with that. We therefore store
the hashes of the files _prior_ to QL formatting in a checked-in file
(`swift/ql/.generated.list`). We can therefore load those hashes at
the beginning of code generation, use them to compare the template
rendering output and update them in this special registry file.

**What else?** We also extend this mechanism to detect accidental
modification of generated files in a more robust way. Before this patch,
we were doing it with a rough regexp based heuristic. Now, we just store
the hashes of the files _after_ QL formatting in the same checked file,
so we can check that and stop generation if a generated file was
modified, or a stub was modified without removing the `// generated`
header.
---
 .github/workflows/swift.yml       |   1 +
 .pre-commit-config.yaml           |   2 +-
 swift/codegen/codegen.py          |   9 +-
 swift/codegen/generators/qlgen.py | 170 +++---
 swift/codegen/lib/render.py       | 145 ++++-
 swift/codegen/test/test_qlgen.py  |  53 +-
 swift/codegen/test/test_render.py | 218 ++++++--
 swift/codegen/test/utils.py       |  26 +-
 swift/ql/.generated.list          | 890 ++++++++++++++++++++++++++++++
 9 files changed, 1314 insertions(+), 200 deletions(-)
 create mode 100644 swift/ql/.generated.list

diff --git a/.github/workflows/swift.yml b/.github/workflows/swift.yml
index 797d950ee57..99579421adf 100644
--- a/.github/workflows/swift.yml
+++ b/.github/workflows/swift.yml
@@ -39,6 +39,7 @@ jobs:
               - 'swift/ql/lib/codeql/swift/elements/**'
               - 'swift/ql/lib/codeql/swift/generated/**'
               - 'swift/ql/test/extractor-tests/generated/**'
+              - 'swift/ql/.generated.list'
             ql:
               - 'github/workflows/swift.yml'
               - 'swift/**/*.ql'
diff --git a/.pre-commit-config.yaml b/.pre-commit-config.yaml
index 14845337b36..5f35c2c183b 100644
--- a/.pre-commit-config.yaml
+++ b/.pre-commit-config.yaml
@@ -44,7 +44,7 @@ repos:
 
       - id: swift-codegen
         name: Run Swift checked in code generation
-        files: ^swift/(schema.py$|codegen/|.*/generated/|ql/lib/(swift\.dbscheme$|codeql/swift/elements))
+        files: ^swift/(schema.py$|codegen/|.*/generated/|ql/lib/(swift\.dbscheme$|codeql/swift/elements)|ql/\.generated.list)
         language: system
         entry: bazel run //swift/codegen -- --quiet
         pass_filenames: false
diff --git a/swift/codegen/codegen.py b/swift/codegen/codegen.py
index aa09ab805c8..b2da3678b1c 100755
--- a/swift/codegen/codegen.py
+++ b/swift/codegen/codegen.py
@@ -40,11 +40,13 @@ def _parse_args() -> argparse.Namespace:
     p.add_argument("--codeql-binary", default="codeql", help="command to use for QL formatting (default %(default)s)")
     p.add_argument("--cpp-output", type=_abspath,
                    help="output directory for generated C++ files, required if trap or cpp is provided to --generate")
+    p.add_argument("--generated-registry", type=_abspath, default=paths.swift_dir / "ql/.generated.list",
+                   help="registry file containing information about checked-in generated code")
     return p.parse_args()
 
 
-def _abspath(x: str) -> pathlib.Path:
-    return pathlib.Path(x).resolve()
+def _abspath(x: str) -> typing.Optional[pathlib.Path]:
+    return pathlib.Path(x).resolve() if x else None
 
 
 def run():
@@ -56,9 +58,8 @@ def run():
     else:
         log_level = logging.INFO
     logging.basicConfig(format="{levelname} {message}", style='{', level=log_level)
-    exe_path = paths.exe_file.relative_to(opts.swift_dir)
     for target in opts.generate:
-        generate(target, opts, render.Renderer(exe_path))
+        generate(target, opts, render.Renderer(opts.swift_dir))
 
 
 if __name__ == "__main__":
diff --git a/swift/codegen/generators/qlgen.py b/swift/codegen/generators/qlgen.py
index 662a782dbd7..4a7d8435a1e 100755
--- a/swift/codegen/generators/qlgen.py
+++ b/swift/codegen/generators/qlgen.py
@@ -216,32 +216,11 @@ def get_classes_used_by(cls: ql.Class) -> typing.List[str]:
     return sorted(set(t for t in get_types_used_by(cls) if t[0].isupper() and t != cls.name))
 
 
-_generated_stub_re = re.compile(r"\n*private import .*\n+class \w+ extends Generated::\w+ \{[ \n]?\}", re.MULTILINE)
-
-
-def _is_generated_stub(file: pathlib.Path) -> bool:
-    with open(file) as contents:
-        for line in contents:
-            if not line.startswith("// generated"):
-                return False
-            break
-        else:
-            # no lines
-            return False
-        # we still do not detect modified synth constructors
-        if not file.name.endswith("Constructor.qll"):
-            # one line already read, if we can read 5 other we are past the normal stub generation
-            line_threshold = 5
-            first_lines = list(itertools.islice(contents, line_threshold))
-            if len(first_lines) == line_threshold or not _generated_stub_re.match("".join(first_lines)):
-                raise ModifiedStubMarkedAsGeneratedError(
-                    f"{file.name} stub was modified but is still marked as generated")
-        return True
-
-
 def format(codeql, files):
-    format_cmd = [codeql, "query", "format", "--in-place", "--"]
-    format_cmd.extend(str(f) for f in files if f.suffix in (".qll", ".ql"))
+    ql_files = [str(f) for f in files if f.suffix in (".qll", ".ql")]
+    if not ql_files:
+        return
+    format_cmd = [codeql, "query", "format", "--in-place", "--"] + ql_files
     res = subprocess.run(format_cmd, stderr=subprocess.PIPE, text=True)
     if res.returncode:
         for line in res.stderr.splitlines():
@@ -307,11 +286,14 @@ def generate(opts, renderer):
     stub_out = opts.ql_stub_output
     test_out = opts.ql_test_output
     missing_test_source_filename = "MISSING_SOURCE.txt"
+    include_file = stub_out.with_suffix(".qll")
 
-    existing = {q for q in out.rglob("*.qll")}
-    existing |= {q for q in stub_out.rglob("*.qll") if _is_generated_stub(q)}
-    existing |= {q for q in test_out.rglob("*.ql")}
-    existing |= {q for q in test_out.rglob(missing_test_source_filename)}
+    generated = {q for q in out.rglob("*.qll")}
+    generated.add(include_file)
+    generated.update(q for q in test_out.rglob("*.ql"))
+    generated.update(q for q in test_out.rglob(missing_test_source_filename))
+
+    stubs = {q for q in stub_out.rglob("*.qll")}
 
     data = schema.load_file(input)
 
@@ -324,77 +306,75 @@ def generate(opts, renderer):
 
     imports = {}
 
-    db_classes = [cls for cls in classes.values() if not cls.ipa]
-    renderer.render(ql.DbClasses(db_classes), out / "Raw.qll")
+    with renderer.manage(generated=generated, stubs=stubs, registry=opts.generated_registry) as renderer:
 
-    classes_by_dir_and_name = sorted(classes.values(), key=lambda cls: (cls.dir, cls.name))
-    for c in classes_by_dir_and_name:
-        imports[c.name] = get_import(stub_out / c.path, opts.swift_dir)
+        db_classes = [cls for cls in classes.values() if not cls.ipa]
+        renderer.render(ql.DbClasses(db_classes), out / "Raw.qll")
 
-    for c in classes.values():
-        qll = out / c.path.with_suffix(".qll")
-        c.imports = [imports[t] for t in get_classes_used_by(c)]
-        renderer.render(c, qll)
-        stub_file = stub_out / c.path.with_suffix(".qll")
-        if not stub_file.is_file() or _is_generated_stub(stub_file):
-            stub = ql.Stub(
-                name=c.name, base_import=get_import(qll, opts.swift_dir))
-            renderer.render(stub, stub_file)
+        classes_by_dir_and_name = sorted(classes.values(), key=lambda cls: (cls.dir, cls.name))
+        for c in classes_by_dir_and_name:
+            imports[c.name] = get_import(stub_out / c.path, opts.swift_dir)
 
-    # for example path/to/elements -> path/to/elements.qll
-    include_file = stub_out.with_suffix(".qll")
-    renderer.render(ql.ImportList(list(imports.values())), include_file)
+        for c in classes.values():
+            qll = out / c.path.with_suffix(".qll")
+            c.imports = [imports[t] for t in get_classes_used_by(c)]
+            renderer.render(c, qll)
+            stub_file = stub_out / c.path.with_suffix(".qll")
+            if not renderer.is_customized_stub(stub_file):
+                stub = ql.Stub(name=c.name, base_import=get_import(qll, opts.swift_dir))
+                renderer.render(stub, stub_file)
 
-    renderer.render(ql.GetParentImplementation(list(classes.values())), out / 'ParentChild.qll')
+        # for example path/to/elements -> path/to/elements.qll
+        renderer.render(ql.ImportList(list(imports.values())), include_file)
 
-    for c in data.classes.values():
-        if _should_skip_qltest(c, data.classes):
-            continue
-        test_dir = test_out / c.group / c.name
-        test_dir.mkdir(parents=True, exist_ok=True)
-        if not any(test_dir.glob("*.swift")):
-            log.warning(f"no test source in {test_dir.relative_to(test_out)}")
-            renderer.render(ql.MissingTestInstructions(),
-                            test_dir / missing_test_source_filename)
-            continue
-        total_props, partial_props = _partition(_get_all_properties_to_be_tested(c, data.classes),
-                                                lambda p: p.is_single or p.is_predicate)
-        renderer.render(ql.ClassTester(class_name=c.name,
-                                       properties=total_props,
-                                       # in case of collapsed hierarchies we want to see the actual QL class in results
-                                       show_ql_class="qltest_collapse_hierarchy" in c.pragmas),
-                        test_dir / f"{c.name}.ql")
-        for p in partial_props:
-            renderer.render(ql.PropertyTester(class_name=c.name,
-                                              property=p), test_dir / f"{c.name}_{p.getter}.ql")
+        renderer.render(ql.GetParentImplementation(list(classes.values())), out / 'ParentChild.qll')
 
-    final_ipa_types = []
-    non_final_ipa_types = []
-    constructor_imports = []
-    ipa_constructor_imports = []
-    stubs = {}
-    for cls in sorted(data.classes.values(), key=lambda cls: (cls.group, cls.name)):
-        ipa_type = get_ql_ipa_class(cls)
-        if ipa_type.is_final:
-            final_ipa_types.append(ipa_type)
-            if ipa_type.has_params:
-                stub_file = stub_out / cls.group / f"{cls.name}Constructor.qll"
-                if not stub_file.is_file() or _is_generated_stub(stub_file):
-                    # stub rendering must be postponed as we might not have yet all subtracted ipa types in `ipa_type`
-                    stubs[stub_file] = ql.Synth.ConstructorStub(ipa_type)
-                constructor_import = get_import(stub_file, opts.swift_dir)
-                constructor_imports.append(constructor_import)
-                if ipa_type.is_ipa:
-                    ipa_constructor_imports.append(constructor_import)
-        else:
-            non_final_ipa_types.append(ipa_type)
+        for c in data.classes.values():
+            if _should_skip_qltest(c, data.classes):
+                continue
+            test_dir = test_out / c.group / c.name
+            test_dir.mkdir(parents=True, exist_ok=True)
+            if not any(test_dir.glob("*.swift")):
+                log.warning(f"no test source in {test_dir.relative_to(test_out)}")
+                renderer.render(ql.MissingTestInstructions(),
+                                test_dir / missing_test_source_filename)
+                continue
+            total_props, partial_props = _partition(_get_all_properties_to_be_tested(c, data.classes),
+                                                    lambda p: p.is_single or p.is_predicate)
+            renderer.render(ql.ClassTester(class_name=c.name,
+                                           properties=total_props,
+                                           # in case of collapsed hierarchies we want to see the actual QL class in results
+                                           show_ql_class="qltest_collapse_hierarchy" in c.pragmas),
+                            test_dir / f"{c.name}.ql")
+            for p in partial_props:
+                renderer.render(ql.PropertyTester(class_name=c.name,
+                                                  property=p), test_dir / f"{c.name}_{p.getter}.ql")
 
-    for stub_file, data in stubs.items():
-        renderer.render(data, stub_file)
-    renderer.render(ql.Synth.Types(root.name, final_ipa_types, non_final_ipa_types), out / "Synth.qll")
-    renderer.render(ql.ImportList(constructor_imports), out / "SynthConstructors.qll")
-    renderer.render(ql.ImportList(ipa_constructor_imports), out / "PureSynthConstructors.qll")
+        final_ipa_types = []
+        non_final_ipa_types = []
+        constructor_imports = []
+        ipa_constructor_imports = []
+        stubs = {}
+        for cls in sorted(data.classes.values(), key=lambda cls: (cls.group, cls.name)):
+            ipa_type = get_ql_ipa_class(cls)
+            if ipa_type.is_final:
+                final_ipa_types.append(ipa_type)
+                if ipa_type.has_params:
+                    stub_file = stub_out / cls.group / f"{cls.name}Constructor.qll"
+                    if not renderer.is_customized_stub(stub_file):
+                        # stub rendering must be postponed as we might not have yet all subtracted ipa types in `ipa_type`
+                        stubs[stub_file] = ql.Synth.ConstructorStub(ipa_type)
+                    constructor_import = get_import(stub_file, opts.swift_dir)
+                    constructor_imports.append(constructor_import)
+                    if ipa_type.is_ipa:
+                        ipa_constructor_imports.append(constructor_import)
+            else:
+                non_final_ipa_types.append(ipa_type)
 
-    renderer.cleanup(existing)
-    if opts.ql_format:
-        format(opts.codeql_binary, renderer.written)
+        for stub_file, data in stubs.items():
+            renderer.render(data, stub_file)
+        renderer.render(ql.Synth.Types(root.name, final_ipa_types, non_final_ipa_types), out / "Synth.qll")
+        renderer.render(ql.ImportList(constructor_imports), out / "SynthConstructors.qll")
+        renderer.render(ql.ImportList(ipa_constructor_imports), out / "PureSynthConstructors.qll")
+        if opts.ql_format:
+            format(opts.codeql_binary, renderer.written)
diff --git a/swift/codegen/lib/render.py b/swift/codegen/lib/render.py
index d077161bce0..9564f5eb4ab 100644
--- a/swift/codegen/lib/render.py
+++ b/swift/codegen/lib/render.py
@@ -7,6 +7,9 @@ https://mustache.github.io/
 
 import logging
 import pathlib
+import typing
+import hashlib
+from dataclasses import dataclass
 
 import pystache
 
@@ -15,15 +18,22 @@ from . import paths
 log = logging.getLogger(__name__)
 
 
+class Error(Exception):
+    pass
+
+
 class Renderer:
     """ Template renderer using mustache templates in the `templates` directory """
 
-    def __init__(self, generator):
+    def __init__(self, swift_dir: pathlib.Path):
         self._r = pystache.Renderer(search_dirs=str(paths.templates_dir), escape=lambda u: u)
-        self.written = set()
-        self._generator = generator
+        self._swift_dir = swift_dir
+        self._generator = self._get_path(paths.exe_file)
 
-    def render(self, data, output: pathlib.Path):
+    def _get_path(self, file: pathlib.Path):
+        return file.relative_to(self._swift_dir)
+
+    def render(self, data: object, output: pathlib.Path):
         """ Render `data` to `output`.
 
         `data` must have a `template` attribute denoting which template to use from the template directory.
@@ -41,13 +51,126 @@ class Renderer:
                 output_filename = output_filename.with_suffix(f".{ext}")
                 template += f"_{ext}"
             contents = self._r.render_name(template, data, generator=self._generator)
-            with open(output_filename, "w") as out:
-                out.write(contents)
-            log.debug(f"{mnemonic}: generated {output.name}")
-            self.written.add(output_filename)
+            self._do_write(mnemonic, contents, output_filename)
 
-    def cleanup(self, existing):
-        """ Remove files in `existing` for which no `render` has been called """
-        for f in existing - self.written:
+    def _do_write(self, mnemonic: str, contents: str, output: pathlib.Path):
+        with open(output, "w") as out:
+            out.write(contents)
+        log.debug(f"{mnemonic}: generated {output.name}")
+
+    def manage(self, generated: typing.Iterable[pathlib.Path], stubs: typing.Iterable[pathlib.Path],
+               registry: pathlib.Path) -> "RenderManager":
+        return RenderManager(self._swift_dir, generated, stubs, registry)
+
+
+class RenderManager(Renderer):
+    """ A context manager allowing to manage checked in generated files and their cleanup, able
+    to skip unneeded writes.
+
+    This is done by using and updating a checked in list of generated files that assigns two
+    hashes to each file:
+    * one is the hash of the mustache rendered contents, that can be used to quickly check whether a
+      write is needed
+    * the other is the hash of the actual file after code generation has finished. This will be
+      different from the above because of post-processing like QL formatting. This hash is used
+      to detect invalid modification of generated files"""
+    written: typing.Set[pathlib.Path]
+
+    @dataclass
+    class Hashes:
+        """
+        pre contains the hash of a file as rendered, post is the hash after
+        postprocessing (for example QL formatting)
+        """
+        pre: str
+        post: typing.Optional[str] = None
+
+    def __init__(self, swift_dir: pathlib.Path, generated: typing.Iterable[pathlib.Path],
+                 stubs: typing.Iterable[pathlib.Path],
+                 registry: pathlib.Path):
+        super().__init__(swift_dir)
+        self._registry_path = registry
+        self._hashes = {}
+        self.written = set()
+        self._existing = set()
+        self._skipped = set()
+
+        self._load_registry()
+        self._process_generated(generated)
+        self._process_stubs(stubs)
+
+    def __enter__(self):
+        return self
+
+    def __exit__(self, exc_type, exc_val, exc_tb):
+        for f in self._existing - self._skipped - self.written:
+            self._hashes.pop(self._get_path(f), None)
             f.unlink(missing_ok=True)
             log.info(f"removed {f.name}")
+        for f in self.written:
+            self._hashes[self._get_path(f)].post = self._hash_file(f)
+        self._dump_registry()
+
+    def _do_write(self, mnemonic: str, contents: str, output: pathlib.Path):
+        hash = self._hash_string(contents)
+        rel_output = self._get_path(output)
+        if rel_output in self._hashes and self._hashes[rel_output].pre == hash:
+            self._skipped.add(output)
+            log.debug(f"{mnemonic}: skipped {output.name}")
+        else:
+            self.written.add(output)
+            super()._do_write(mnemonic, contents, output)
+            self._hashes[rel_output] = self.Hashes(pre=hash)
+
+    def _process_generated(self, generated: typing.Iterable[pathlib.Path]):
+        for f in generated:
+            self._existing.add(f)
+            rel_path = self._get_path(f)
+            if rel_path not in self._hashes:
+                log.warning(f"{rel_path} marked as generated but absent from the registry")
+            elif self._hashes[rel_path].post != self._hash_file(f):
+                raise Error(f"{rel_path} is generated but was modified, please revert the file")
+
+    def _process_stubs(self, stubs: typing.Iterable[pathlib.Path]):
+        for f in stubs:
+            rel_path = self._get_path(f)
+            if self.is_customized_stub(f):
+                self._hashes.pop(rel_path, None)
+                continue
+            self._existing.add(f)
+            if rel_path not in self._hashes:
+                log.warning(f"{rel_path} marked as stub but absent from the registry")
+            elif self._hashes[rel_path].post != self._hash_file(f):
+                raise Error(f"{rel_path} is a stub marked as generated, but it was modified")
+
+    @staticmethod
+    def is_customized_stub(file: pathlib.Path) -> bool:
+        if not file.is_file():
+            return False
+        with open(file) as contents:
+            for line in contents:
+                return not line.startswith("// generated")
+        # no lines
+        return True
+
+    @staticmethod
+    def _hash_file(filename: pathlib.Path) -> str:
+        with open(filename) as inp:
+            return RenderManager._hash_string(inp.read())
+
+    @staticmethod
+    def _hash_string(data: str) -> str:
+        h = hashlib.sha256()
+        h.update(data.encode())
+        return h.hexdigest()
+
+    def _load_registry(self):
+        with open(self._registry_path) as reg:
+            for line in reg:
+                filename, prehash, posthash = line.split()
+                self._hashes[pathlib.Path(filename)] = self.Hashes(prehash, posthash)
+
+    def _dump_registry(self):
+        with open(self._registry_path, 'w') as out:
+            for f, hashes in sorted(self._hashes.items()):
+                print(f, hashes.pre, hashes.post, file=out)
diff --git a/swift/codegen/test/test_qlgen.py b/swift/codegen/test/test_qlgen.py
index 0e27f2b7516..0db445f07b9 100644
--- a/swift/codegen/test/test_qlgen.py
+++ b/swift/codegen/test/test_qlgen.py
@@ -26,6 +26,9 @@ def ql_output_path(): return paths.swift_dir / "ql/lib/other/path"
 def ql_test_output_path(): return paths.swift_dir / "ql/test/path"
 
 
+def generated_registry_path(): return paths.swift_dir / "registry.list"
+
+
 def import_file(): return stub_path().with_suffix(".qll")
 
 
@@ -42,18 +45,19 @@ def qlgen_opts(opts):
     opts.ql_stub_output = stub_path()
     opts.ql_output = ql_output_path()
     opts.ql_test_output = ql_test_output_path()
+    opts.generated_registry = generated_registry_path()
     opts.ql_format = True
     opts.swift_dir = paths.swift_dir
     return opts
 
 
 @pytest.fixture
-def generate(input, qlgen_opts, renderer):
-    renderer.written = []
+def generate(input, qlgen_opts, renderer, render_manager):
+    render_manager.written = []
 
     def func(classes):
         input.classes = {cls.name: cls for cls in classes}
-        return run_generation(qlgen.generate, qlgen_opts, renderer)
+        return run_managed_generation(qlgen.generate, qlgen_opts, renderer, render_manager)
 
     return func
 
@@ -80,6 +84,7 @@ def generate_children_implementations(generate):
 
 def _filter_generated_classes(ret, output_test_files=False):
     files = {x for x in ret}
+    print(files)
     files.remove(import_file())
     files.remove(children_file())
     stub_files = set()
@@ -88,6 +93,7 @@ def _filter_generated_classes(ret, output_test_files=False):
     for f in files:
         try:
             stub_files.add(f.relative_to(stub_path()))
+            print(f)
         except ValueError:
             try:
                 base_files.add(f.relative_to(ql_output_path()))
@@ -396,10 +402,10 @@ def test_class_dir_imports(generate_import_list):
     ])
 
 
-def test_format(opts, generate, renderer, run_mock):
+def test_format(opts, generate, render_manager, run_mock):
     opts.codeql_binary = "my_fake_codeql"
     run_mock.return_value.stderr = "some\nlines\n"
-    renderer.written = [
+    render_manager.written = [
         pathlib.Path("x", "foo.ql"),
         pathlib.Path("bar.qll"),
         pathlib.Path("y", "baz.txt"),
@@ -411,11 +417,11 @@ def test_format(opts, generate, renderer, run_mock):
     ]
 
 
-def test_format_error(opts, generate, renderer, run_mock):
+def test_format_error(opts, generate, render_manager, run_mock):
     opts.codeql_binary = "my_fake_codeql"
     run_mock.return_value.stderr = "some\nlines\n"
     run_mock.return_value.returncode = 1
-    renderer.written = [
+    render_manager.written = [
         pathlib.Path("x", "foo.ql"),
         pathlib.Path("bar.qll"),
         pathlib.Path("y", "baz.txt"),
@@ -424,12 +430,7 @@ def test_format_error(opts, generate, renderer, run_mock):
         generate([schema.Class('A')])
 
 
-def test_empty_cleanup(generate, renderer):
-    generate([schema.Class('A')])
-    assert renderer.mock_calls[-1] == mock.call.cleanup(set())
-
-
-def test_non_empty_cleanup(opts, generate, renderer):
+def test_manage_parameters(opts, generate, renderer):
     ql_a = opts.ql_output / "A.qll"
     ql_b = opts.ql_output / "B.qll"
     stub_a = opts.ql_stub_output / "A.qll"
@@ -439,30 +440,22 @@ def test_non_empty_cleanup(opts, generate, renderer):
     test_c = opts.ql_test_output / "B.txt"
     write(ql_a)
     write(ql_b)
-    write(stub_a, "// generated\nprivate import bla\n\nclass foo extends Generated::bar {\n}\n")
-    write(stub_b, "bar\n")
+    write(stub_a)
+    write(stub_b)
     write(test_a)
     write(test_b)
     write(test_c)
     generate([schema.Class('A')])
-    assert renderer.mock_calls[-1] == mock.call.cleanup(
-        {ql_a, ql_b, stub_a, test_a, test_b})
+    assert renderer.mock_calls == [
+        mock.call.manage(generated={ql_a, ql_b, test_a, test_b, import_file()}, stubs={stub_a, stub_b},
+                         registry=opts.generated_registry)
+    ]
 
 
-def test_modified_stub_still_generated(qlgen_opts, renderer):
+def test_modified_stub_skipped(qlgen_opts, generate, render_manager):
     stub = qlgen_opts.ql_stub_output / "A.qll"
-    write(stub, "// generated\nprivate import bla\n\nclass foo extends Generated::bar, baz {\n}\n")
-    with pytest.raises(qlgen.ModifiedStubMarkedAsGeneratedError):
-        run_generation(qlgen.generate, qlgen_opts, renderer)
-
-
-def test_extended_stub_still_generated(qlgen_opts, renderer):
-    stub = qlgen_opts.ql_stub_output / "A.qll"
-    write(stub,
-          "// generated\nprivate import bla\n\nclass foo extends Generated::bar {\n}\n\n"
-          "class other {\n  other() { none() }\n}")
-    with pytest.raises(qlgen.ModifiedStubMarkedAsGeneratedError):
-        run_generation(qlgen.generate, qlgen_opts, renderer)
+    render_manager.is_customized_stub.side_effect = lambda f: f == stub
+    assert stub not in generate([schema.Class('A')])
 
 
 def test_test_missing_source(generate_tests):
diff --git a/swift/codegen/test/test_render.py b/swift/codegen/test/test_render.py
index 7055930dd6b..64cc745046f 100644
--- a/swift/codegen/test/test_render.py
+++ b/swift/codegen/test/test_render.py
@@ -1,14 +1,10 @@
 import sys
-from unittest import mock
-import pathlib
 
 import pytest
 
-from swift.codegen.lib import paths
-from swift.codegen.lib import render
+from swift.codegen.test.utils import *
 
-
-generator = "test/foogen"
+import hashlib
 
 
 @pytest.fixture
@@ -20,13 +16,24 @@ def pystache_renderer_cls():
 @pytest.fixture
 def pystache_renderer(pystache_renderer_cls):
     ret = mock.Mock()
-    pystache_renderer_cls.side_effect = (ret,)
+    pystache_renderer_cls.return_value = ret
     return ret
 
 
 @pytest.fixture
 def sut(pystache_renderer):
-    return render.Renderer(generator)
+    return render.Renderer(paths.swift_dir)
+
+
+def assert_file(file, text):
+    with open(file) as inp:
+        assert inp.read() == text
+
+
+def hash(text):
+    h = hashlib.sha256()
+    h.update(text.encode())
+    return h.hexdigest()
 
 
 def test_constructor(pystache_renderer_cls, sut):
@@ -35,24 +42,154 @@ def test_constructor(pystache_renderer_cls, sut):
     assert pystache_init.kwargs['search_dirs'] == str(paths.templates_dir)
     an_object = object()
     assert pystache_init.kwargs['escape'](an_object) is an_object
-    assert sut.written == set()
 
 
 def test_render(pystache_renderer, sut):
     data = mock.Mock(spec=("template",))
-    output = mock.Mock()
-    with mock.patch("builtins.open", mock.mock_open()) as output_stream:
-        sut.render(data, output)
+    text = "some text"
+    pystache_renderer.render_name.side_effect = (text,)
+    output = paths.swift_dir / "some/output.txt"
+    sut.render(data, output)
+
+    assert_file(output, text)
     assert pystache_renderer.mock_calls == [
-        mock.call.render_name(data.template, data, generator=generator),
+        mock.call.render_name(data.template, data, generator=paths.exe_file.relative_to(paths.swift_dir)),
     ]
-    assert output_stream.mock_calls == [
-        mock.call(output, 'w'),
-        mock.call().__enter__(),
-        mock.call().write(pystache_renderer.render_name.return_value),
-        mock.call().__exit__(None, None, None),
+
+
+def test_managed_render(pystache_renderer, sut):
+    data = mock.Mock(spec=("template",))
+    text = "some text"
+    pystache_renderer.render_name.side_effect = (text,)
+    output = paths.swift_dir / "some/output.txt"
+    registry = paths.swift_dir / "a/registry.list"
+    write(registry)
+
+    with sut.manage(generated=(), stubs=(), registry=registry) as renderer:
+        renderer.render(data, output)
+        assert renderer.written == {output}
+        assert_file(output, text)
+
+    assert_file(registry, f"some/output.txt {hash(text)} {hash(text)}\n")
+    assert pystache_renderer.mock_calls == [
+        mock.call.render_name(data.template, data, generator=paths.exe_file.relative_to(paths.swift_dir)),
     ]
-    assert sut.written == {output}
+
+
+def test_managed_render_with_post_processing(pystache_renderer, sut):
+    data = mock.Mock(spec=("template",))
+    text = "some text"
+    postprocessed_text = "some other text"
+    pystache_renderer.render_name.side_effect = (text,)
+    output = paths.swift_dir / "some/output.txt"
+    registry = paths.swift_dir / "a/registry.list"
+    write(registry)
+
+    with sut.manage(generated=(), stubs=(), registry=registry) as renderer:
+        renderer.render(data, output)
+        assert renderer.written == {output}
+        assert_file(output, text)
+        write(output, postprocessed_text)
+
+    assert_file(registry, f"some/output.txt {hash(text)} {hash(postprocessed_text)}\n")
+    assert pystache_renderer.mock_calls == [
+        mock.call.render_name(data.template, data, generator=paths.exe_file.relative_to(paths.swift_dir)),
+    ]
+
+
+def test_managed_render_with_erasing(pystache_renderer, sut):
+    output = paths.swift_dir / "some/output.txt"
+    stub = paths.swift_dir / "some/stub.txt"
+    registry = paths.swift_dir / "a/registry.list"
+    write(output)
+    write(stub, "// generated bla bla")
+    write(registry)
+
+    with sut.manage(generated=(output,), stubs=(stub,), registry=registry) as renderer:
+        pass
+
+    assert not output.is_file()
+    assert not stub.is_file()
+    assert_file(registry, "")
+    assert pystache_renderer.mock_calls == []
+
+
+def test_managed_render_with_skipping_of_generated_file(pystache_renderer, sut):
+    data = mock.Mock(spec=("template",))
+    output = paths.swift_dir / "some/output.txt"
+    some_output = "some output"
+    registry = paths.swift_dir / "a/registry.list"
+    write(output, some_output)
+    write(registry, f"some/output.txt {hash(some_output)} {hash(some_output)}\n")
+
+    pystache_renderer.render_name.side_effect = (some_output,)
+
+    with sut.manage(generated=(output,), stubs=(), registry=registry) as renderer:
+        renderer.render(data, output)
+        assert renderer.written == set()
+        assert_file(output, some_output)
+
+    assert_file(registry, f"some/output.txt {hash(some_output)} {hash(some_output)}\n")
+    assert pystache_renderer.mock_calls == [
+        mock.call.render_name(data.template, data, generator=paths.exe_file.relative_to(paths.swift_dir)),
+    ]
+
+
+def test_managed_render_with_skipping_of_stub_file(pystache_renderer, sut):
+    data = mock.Mock(spec=("template",))
+    stub = paths.swift_dir / "some/stub.txt"
+    some_output = "// generated some output"
+    some_processed_output = "// generated some processed output"
+    registry = paths.swift_dir / "a/registry.list"
+    write(stub, some_processed_output)
+    write(registry, f"some/stub.txt {hash(some_output)} {hash(some_processed_output)}\n")
+
+    pystache_renderer.render_name.side_effect = (some_output,)
+
+    with sut.manage(generated=(), stubs=(stub,), registry=registry) as renderer:
+        renderer.render(data, stub)
+        assert renderer.written == set()
+        assert_file(stub, some_processed_output)
+
+    assert_file(registry, f"some/stub.txt {hash(some_output)} {hash(some_processed_output)}\n")
+    assert pystache_renderer.mock_calls == [
+        mock.call.render_name(data.template, data, generator=paths.exe_file.relative_to(paths.swift_dir)),
+    ]
+
+
+def test_managed_render_with_modified_generated_file(pystache_renderer, sut):
+    output = paths.swift_dir / "some/output.txt"
+    some_processed_output = "// some processed output"
+    registry = paths.swift_dir / "a/registry.list"
+    write(output, "// something else")
+    write(registry, f"some/output.txt whatever {hash(some_processed_output)}\n")
+
+    with pytest.raises(render.Error):
+        sut.manage(generated=(output,), stubs=(), registry=registry)
+
+
+def test_managed_render_with_modified_stub_file_still_marked_as_generated(pystache_renderer, sut):
+    stub = paths.swift_dir / "some/stub.txt"
+    some_processed_output = "// generated some processed output"
+    registry = paths.swift_dir / "a/registry.list"
+    write(stub, "// generated something else")
+    write(registry, f"some/stub.txt whatever {hash(some_processed_output)}\n")
+
+    with pytest.raises(render.Error):
+        sut.manage(generated=(), stubs=(stub,), registry=registry)
+
+
+def test_managed_render_with_modified_stub_file_not_marked_as_generated(pystache_renderer, sut):
+    stub = paths.swift_dir / "some/stub.txt"
+    some_processed_output = "// generated some processed output"
+    registry = paths.swift_dir / "a/registry.list"
+    write(stub, "// no more generated")
+    write(registry, f"some/stub.txt whatever {hash(some_processed_output)}\n")
+
+    with sut.manage(generated=(), stubs=(stub,), registry=registry) as renderer:
+        pass
+
+    assert_file(registry, "")
 
 
 def test_render_with_extensions(pystache_renderer, sut):
@@ -61,47 +198,16 @@ def test_render_with_extensions(pystache_renderer, sut):
     data.extensions = ["foo", "bar", "baz"]
     output = pathlib.Path("my", "test", "file")
     expected_outputs = [pathlib.Path("my", "test", p) for p in ("file.foo", "file.bar", "file.baz")]
-    rendered = [object() for _ in expected_outputs]
+    rendered = [f"text{i}" for i in range(len(expected_outputs))]
     pystache_renderer.render_name.side_effect = rendered
-    with mock.patch("builtins.open", mock.mock_open()) as output_stream:
-        sut.render(data, output)
+    sut.render(data, output)
     expected_templates = ["test_template_foo", "test_template_bar", "test_template_baz"]
     assert pystache_renderer.mock_calls == [
-        mock.call.render_name(t, data, generator=generator) for t in expected_templates
+        mock.call.render_name(t, data, generator=paths.exe_file.relative_to(paths.swift_dir))
+        for t in expected_templates
     ]
-    expected_calls = []
-    for contents, out in zip(rendered, expected_outputs):
-        expected_calls.extend((
-            mock.call(out, 'w'),
-            mock.call().__enter__(),
-            mock.call().write(contents),
-            mock.call().__exit__(None, None, None),
-        ))
-    assert sut.written == set(expected_outputs)
-
-
-def test_written(sut):
-    data = [mock.Mock(spec=("template",)) for _ in range(4)]
-    output = [mock.Mock() for _ in data]
-    with mock.patch("builtins.open", mock.mock_open()) as output_stream:
-        for d, o in zip(data, output):
-            sut.render(d, o)
-    assert sut.written == set(output)
-
-
-def test_cleanup(sut):
-    data = [mock.Mock(spec=("template",)) for _ in range(4)]
-    output = [mock.Mock() for _ in data]
-    with mock.patch("builtins.open", mock.mock_open()) as output_stream:
-        for d, o in zip(data, output):
-            sut.render(d, o)
-    expected_erased = [mock.Mock() for _ in range(3)]
-    existing = set(expected_erased + output[2:])
-    sut.cleanup(existing)
-    for f in expected_erased:
-        assert f.mock_calls == [mock.call.unlink(missing_ok=True)]
-    for f in output:
-        assert f.unlink.mock_calls == []
+    for expected_output, expected_contents in zip(expected_outputs, rendered):
+        assert_file(expected_output, expected_contents)
 
 
 if __name__ == '__main__':
diff --git a/swift/codegen/test/utils.py b/swift/codegen/test/utils.py
index af033aaa75a..2678190c9f8 100644
--- a/swift/codegen/test/utils.py
+++ b/swift/codegen/test/utils.py
@@ -6,7 +6,7 @@ import pytest
 from swift.codegen.lib import render, schema, paths
 
 schema_dir = pathlib.Path("a", "dir")
-schema_file = schema_dir / "schema.yml"
+schema_file = schema_dir / "schema.py"
 dbscheme_file = pathlib.Path("another", "dir", "test.dbscheme")
 
 
@@ -18,7 +18,16 @@ def write(out, contents=""):
 
 @pytest.fixture
 def renderer():
-    return mock.Mock(spec=render.Renderer(""))
+    return mock.Mock(spec=render.Renderer)
+
+
+@pytest.fixture
+def render_manager(renderer):
+    ret = mock.Mock(spec=render.RenderManager)
+    ret.__enter__ = mock.Mock(return_value=ret)
+    ret.__exit__ = mock.Mock(return_value=None)
+    ret.is_customized_stub.return_value = False
+    return ret
 
 
 @pytest.fixture
@@ -30,7 +39,9 @@ def opts():
 
 @pytest.fixture(autouse=True)
 def override_paths(tmp_path):
-    with mock.patch("swift.codegen.lib.paths.swift_dir", tmp_path):
+    with (mock.patch("swift.codegen.lib.paths.swift_dir", tmp_path),
+          mock.patch("swift.codegen.lib.paths.exe_file", tmp_path / "exe"),
+          ):
         yield
 
 
@@ -63,3 +74,12 @@ def run_generation(generate, opts, renderer):
     renderer.render.side_effect = lambda data, out: output.__setitem__(out, data)
     generate(opts, renderer)
     return output
+
+
+def run_managed_generation(generate, opts, renderer, render_manager):
+    output = {}
+
+    renderer.manage.side_effect = (render_manager,)
+    render_manager.render.side_effect = lambda data, out: output.__setitem__(out, data)
+    generate(opts, renderer)
+    return output
diff --git a/swift/ql/.generated.list b/swift/ql/.generated.list
new file mode 100644
index 00000000000..fd75bc1ade4
--- /dev/null
+++ b/swift/ql/.generated.list
@@ -0,0 +1,890 @@
+ql/lib/codeql/swift/elements/CommentConstructor.qll c5a4c55fb26e57a9b4efcff329b428f7de22406b35198d99290b6e646794777a 326365475f2fda857ffa00e1c7841089660eca02d739400b6d62ed6f39ea4d03
+ql/lib/codeql/swift/elements/DbFile.qll 9e0f3c54075f75af82a9c917777755f47cb04a5777b064f5cba4a951414ac004 a3b08dd6ccd18d1a5f6f29b829da473c28a921e8d626b264b4b73515a49164f9
+ql/lib/codeql/swift/elements/DbFileConstructor.qll 2913b16780f4369b405a088bb70f3b0f941b2978e8827ed30745f2ab7ba0cd8e c21b21b100d0b245bb1d498b4c3696db73dd710a5be211c6b825ebf733681da7
+ql/lib/codeql/swift/elements/DbLocation.qll e3e7bf56c7857329e250a44e9df1ccb31f6c2ada47d5199d549b4b92b44bc2f8 aa46535db08966b8045ceb2820b9fd580637272ae4e487192ee57b6215c16e49
+ql/lib/codeql/swift/elements/DbLocationConstructor.qll 88366e22ba40eaaee097f413130117925dda488f1bcbd3989e301e86dd394df3 c61b32994d403a8c4f85c26251e24ffb8c6ea34dbbe935872d868ccbfb6c1ff6
+ql/lib/codeql/swift/elements/DiagnosticsConstructor.qll 6a3e312f3ed57465747c672cbb6d615eca89f42586519221d2973ac3e2ab052c a010ef546f9ed2a75b812ee47db00110056b3076b1f939efa2addb000c327427
+ql/lib/codeql/swift/elements/ErrorElement.qll 6b6be3731a2fd178e5093ddebb7cd519ecc5fbbd549bd4dbd5f69687791c3630 ab0028bab8a9ed14c6b4bfe0f8a10e4768ea1e21f86b495258021ab9b8e65aeb
+ql/lib/codeql/swift/elements/UnspecifiedElementConstructor.qll 0d179f8189f6268916f88c78a2665f8d4e78dc71e71b6229354677e915ac505d e8f5c313b7d8b0e93cee84151a5f080013d2ca502f3facbbde4cdb0889bc7f8e
+ql/lib/codeql/swift/elements/decl/AbstractStorageDecl.qll 6196ecc35d358e6fe1c34b0478c0479acd0f0de67a64daac4d814af90a87d514 74a74330a953d16ce1cc19b2dbabdf8c8ff0fc3d250d101b8108a6597844e179
+ql/lib/codeql/swift/elements/decl/AbstractTypeParamDecl.qll 83950437007703c0f35ef154f46577d8754fb191c93772ff718b29107ce8852e 737ad9c857c079605e84dc7ebaecbafa86fe129283756b98e6e574ac9e24c22c
+ql/lib/codeql/swift/elements/decl/AccessorDeclConstructor.qll 08376434fd14a2b07280e931d3e22d3eafd2063d745f7c78cad0f9fd7e6156ba 6f74d15a88433953998a07eb2131841679a88cb13efb0569ed9b5502c4a2e362
+ql/lib/codeql/swift/elements/decl/AssociatedTypeDecl.qll ae6107c8d9ee9affa7e8430a4d8cd58879578eafcfba668275af4d20f8ea9c53 e81dc740623b4e2c75f83104acaa3d2b6cc6d001dd36a8520c381e0de10e15c4
+ql/lib/codeql/swift/elements/decl/AssociatedTypeDeclConstructor.qll ec9007ea072ff22c367f40da69db2f0a8463bb411bbfd33e2d6c8b489a496027 631f688a8410ddcfbaa575fa2f8ffcdbc1b51ee37639b337c804ca1d5af56e0c
+ql/lib/codeql/swift/elements/decl/ClassDecl.qll 225405ad04e5e959319fbc1ea086ec4eab0b66f5671ebc58290cce45e4103c51 ac681bdc1770a823ea529456f32b1da7b389621254ccd9102e6a49136c53854b
+ql/lib/codeql/swift/elements/decl/ClassDeclConstructor.qll 0092ab4b76cd858489d76be94a43442c0e5f395b1d5684309674957e107979b7 9bc496e483feb88552ca0d48e32039aa4566f4612fc27073fea48ad954985d46
+ql/lib/codeql/swift/elements/decl/ConcreteFuncDecl.qll 7dd23b6145977ec6ca60dd39cf9db09673e0340cdb8de2080279c83599ccd831 3a07a73dc11ef06ddaeb3d401748ef14a1ee66447c86d2e8c8f187dda92b34a2
+ql/lib/codeql/swift/elements/decl/ConcreteFuncDeclConstructor.qll 4eb2e9dc8b4c93e457bb594085d8f50862dc07a712ce7a0f2dee7f108467ce3e 1f994d6ae1ca2e4fd5da075b70ea22322181bdaf43034face1e82ef353fe34bf
+ql/lib/codeql/swift/elements/decl/ConcreteVarDecl.qll be33f40e8870a10aec413f35d8f62a502d7d5dd8a52665730740e880566206d7 d821efa43c6d83aedfb959500de42c5ecabbf856f8556f739bc6cec30a88dfab
+ql/lib/codeql/swift/elements/decl/ConcreteVarDeclConstructor.qll 4b6a9f458db5437f9351b14464b3809a78194029554ea818b3e18272c17afba3 a60d695b0d0ffa917ad01908bec2beaa663e644eddb00fb370fbc906623775d4
+ql/lib/codeql/swift/elements/decl/ConstructorDecl.qll df6725dfa6670b1ff9a5135126b38cb93d813f852ffd1290bb60b541e28b92d9 fb3ed454cdc97bedc5577c9823f6385eb9616d156085fc8796cc09732ae48121
+ql/lib/codeql/swift/elements/decl/ConstructorDeclConstructor.qll ba5cc6f440cba3d47b364a37febd64f85941cdc0237db52a2b8844d1dc75d483 9fc039ca7a0f33f03b3f573186f02efecbac0c2e0dc5abba5d47876ca26390fe
+ql/lib/codeql/swift/elements/decl/Decl.qll 7a7ea5727a238684e783adf04ce8f721bf4451e1324ffc966ad671d60a43d64b 662e53ffc8226ae351032d0389784e6b70d517794e83a4c698ac84996361608f
+ql/lib/codeql/swift/elements/decl/DestructorDecl.qll a2ba5e8861661ebc4cf875d540bf1edf0970920304aeeaef34592ea2739afc21 10001d21ec5aecc398e4c0e9bf05ee905c3edc4f89dd0afc7b2e5aca6b767dec
+ql/lib/codeql/swift/elements/decl/DestructorDeclConstructor.qll c33b113a3ccb0b1bfd9aad8b909940776da5fdb8a24e1b998c5ebde3903be981 155ad928fbebf9688eec30a2cf61d9a2d4cd15d1161dc3f6202e6331bdb3a56a
+ql/lib/codeql/swift/elements/decl/EnumCaseDeclConstructor.qll 8c907544170671f713a8665d294eeefdbe78a607c2f16e2c630ea9c33f484baf eec83efc930683628185dbdad8f73311aad510074d168a53d85ea09d13f1f7e1
+ql/lib/codeql/swift/elements/decl/EnumDecl.qll 04271e164379af3a33eb060d230b768878e06acc37c3d132cad089a2c663c6c4 779940ebdbd510eb651972c57eb84b04af39c44ef59a8c307a44549ab730febb
+ql/lib/codeql/swift/elements/decl/EnumDeclConstructor.qll 642bbfb71e917d84695622f3b2c7b36bf5be4e185358609810267ab1fc4e221b f6e06d79e7ff65fbabf72c553508b67406fb59c577215d28cc47971d34b6af05
+ql/lib/codeql/swift/elements/decl/EnumElementDeclConstructor.qll 736074246a795c14a30a8ec7bb8da595a729983187887294e485487309919dc6 4614fb380fad7af1b5fb8afce920f3e7350378254ece60d19722046046672fbb
+ql/lib/codeql/swift/elements/decl/ExtensionDeclConstructor.qll 4f811e3332720327d2b9019edbb2fa70fb24322e72881afc040e7927452409d6 554f9832311dfc30762507e0bd4b25c5b6fdb9d0c4e8252cc5a1ef1033fafacb
+ql/lib/codeql/swift/elements/decl/FuncDecl.qll 47ff5eaccc79944bb01ad819a4a9e373475d7511d477e76226538fc4efc9c88d ba8e48682e93af0804e66f5bf0207049e291a0c1430a872252dc67af17ea700a
+ql/lib/codeql/swift/elements/decl/GenericContext.qll b8f21d625cfdccc201201e0d84aab7b5c1e7ccaec21ee788ac425916be8f8ac9 4747af5faf0a93d7508e0ec58021a842ca5ec41831b5d71cbc7fce2a2389a820
+ql/lib/codeql/swift/elements/decl/GenericTypeDecl.qll 774e087cc7208a4fe5df753a848191f4b986265b2b74856a52049aeb018c937a 42e1e3e055f3e5fa70c8624910d635ab10fe4015d378be9e1e6e1adb39f0dc40
+ql/lib/codeql/swift/elements/decl/GenericTypeParamDecl.qll bbcf2844cb26435e3af6d58c2b37ffeee3295a5f3330fbee34881fada7bde85b 569a380917adf4e26b286343c654954d472eabf3fe91e0d1b5f26549d9c6d24e
+ql/lib/codeql/swift/elements/decl/GenericTypeParamDeclConstructor.qll 63db91dc8d42746bfdd9a6bcf1f8df5b723b4ee752bd80cc61d512f2813ef959 096972e3f7f5775e60af189345bece7c0e8baec9e218709a49ed9511a3089424
+ql/lib/codeql/swift/elements/decl/IfConfigDeclConstructor.qll ebd945f0a081421bd720235d0aefde800a8ad8a1db4cbd37b44447c417ff7114 1448bfdd290ad41e038a1a1ffd5ea60a75b5ec06f3a8d4d138bd56b8b960332e
+ql/lib/codeql/swift/elements/decl/ImportDeclConstructor.qll f2f09df91784d7a6d348d67eaf3429780ac820d2d3a08f66e1922ea1d4c8c60d 4496865a26be2857a335cbc00b112beb78a319ff891d0c5d2ad41a4d299f0457
+ql/lib/codeql/swift/elements/decl/InfixOperatorDecl.qll ca3af3b403b9d456029cb4f4b94b610a93d2d70ea71a3d6c4532088ebc83bd0b 5dec87f0c43948f38e942b204583043eb4f7386caa80cec8bf2857a2fd933ed4
+ql/lib/codeql/swift/elements/decl/InfixOperatorDeclConstructor.qll ca6c5c477e35e2d6c45f8e7a08577c43e151d3e16085f1eae5c0a69081714b04 73543543dff1f9847f3299091979fdf3d105a84e2bcdb890ce5d72ea18bba6c8
+ql/lib/codeql/swift/elements/decl/IterableDeclContext.qll 7b27fe02dca453d5bdb5f10be07978d98308e466bad5585b3040ed9c1a817737 fed59974e47c3011d4bddefb959f5cacaa3b770ad5a6db15558334ef02ad04e9
+ql/lib/codeql/swift/elements/decl/MissingMemberDeclConstructor.qll 82738836fa49447262e184d781df955429c5e3697d39bf3689397d828f04ce65 8ef82ed7c4f641dc8b4d71cd83944582da539c34fb3d946c2377883abada8578
+ql/lib/codeql/swift/elements/decl/ModuleDecl.qll 0d39d88c926d5633f467ab7a1db0101e8d61250ee5e4847de862232f997de783 410311bf3ae1efac53d8fd6515c2fe69d9ab79902c1048780e87d478cd200e26
+ql/lib/codeql/swift/elements/decl/ModuleDeclConstructor.qll 9b18b6d3517fd0c524ac051fd5dea288e8f923ada00fe4cc809cbebce036f890 0efc90492417089b0982a9a6d60310faba7a1fce5c1749396e3a29b3aac75dc5
+ql/lib/codeql/swift/elements/decl/NominalTypeDecl.qll 0b101f879e48e000074971d6412183f6be98fe99512037967ee650ffd82ec7a3 9faf5bd4e51b47a75edb67e9115281ca5b20ab6c0d8f6882f043734495bb399f
+ql/lib/codeql/swift/elements/decl/OpaqueTypeDecl.qll 7c4a5fda798c9b44e481905f28e6c105ab3f8ab5567c2c336b24d27102fd7d66 e84e0dd1a3175ad29123def00e71efbd6f4526a12601fc027b0892930602046b
+ql/lib/codeql/swift/elements/decl/OpaqueTypeDeclConstructor.qll f707aab3627801e94c63aedcded21eab14d3617c35da5cf317692eeb39c84710 20888ae6e386ae31e3cb9ff78155cb408e781ef1e7b6d687c2705843bcac0340
+ql/lib/codeql/swift/elements/decl/ParamDeclConstructor.qll cfa0ba73a9727b8222efbf65845d6df0d01800646feaf7b407b8ffe21a6691d8 916ff2d3e96546eac6828e1b151d4b045ce5f7bcd5d7dbb074f82ecf126b0e09
+ql/lib/codeql/swift/elements/decl/PatternBindingDeclConstructor.qll bcefa54011001b2559f90eb6ddcd286d8c47f2707103226abe3f2701ec1f45ef d58ca16ab91943a2fd97e4c7b71881b097e927156f56f3bd9dfaababccfda8f7
+ql/lib/codeql/swift/elements/decl/PostfixOperatorDecl.qll af46544addbb5bf5241e71c1846b40f33f73d64ae0932f0d057058a32ad63bee 3befb6218e934681e874c7655677eb4618edc817111ed18ef4ebcf16e06f4027
+ql/lib/codeql/swift/elements/decl/PostfixOperatorDeclConstructor.qll 27356cfe1d1c45a1999a200a3f1268bf09cfb019fbb7f9fb48cd32aa38b67880 6638c1acc9b0b642c106b1a14f98dfad7a9ebcc78a1b8212037d32a147e40086
+ql/lib/codeql/swift/elements/decl/PoundDiagnosticDeclConstructor.qll 1b85ec959c92d1e8b218ae99d0dcd0acaa1b96e741cf7d0cf1137f2dca25d765 b8f164d00d4c5db4356933de5c3b6833b54ae8d3e9fcb908e324fcdc91a5f6ec
+ql/lib/codeql/swift/elements/decl/PrecedenceGroupDeclConstructor.qll 4f7548c613ee98f561a104f46ae61335d51be1b4598ae420397ae63d3ae619ca 87c11e093fb0bc5ed498f7fd36bfb844099f0e93e55de731c3e8c5fdeded35f1
+ql/lib/codeql/swift/elements/decl/PrefixOperatorDecl.qll d314c804e5ab476920a6e970b1c33cb09bf1ad076bc1f889b5068053d9de8ab5 19558ab5d027f580463ea096eb7882066d0ff95123493b8e23be79613bfdd28d
+ql/lib/codeql/swift/elements/decl/PrefixOperatorDeclConstructor.qll eee048d4c2314234df17966deefeee08e769a831fa500e6e494f64fca9e9dda1 01d9b09f809645c91f92b981a46c9ed6e332f5734d768ab369b7a328a9a391d4
+ql/lib/codeql/swift/elements/decl/ProtocolDecl.qll 17e89e410275aa2fbc1687a5380e23354a1b64e1b9581d52875210921b0eed8f 0bb0dca7980934cfb98dab5b83fd253153740ac8054cdf85bdce8b5ed6db9398
+ql/lib/codeql/swift/elements/decl/ProtocolDeclConstructor.qll 2bbc92ddcec810cefb6cfa85320f873f1c542b1c62a197a8fbafa12e0e949c00 b2060fb804a16619e235afcd76856cdc377c4e47cfb43c5a6f9d32ff5b852e74
+ql/lib/codeql/swift/elements/decl/StructDecl.qll 1cb599afb1c574a64c2033a2c20bddbf2142b593f0775abc3d5b1cfafccca6b6 ebc04601ac1cd736151783073ef4ad1a42311731aab36b38dc02760ecb22bd4a
+ql/lib/codeql/swift/elements/decl/StructDeclConstructor.qll 653fef1ce7a5924f9db110dfab4ebc191b6688fa14ebeb6cf2a09fe338f00646 c7ed15002c41b7dd11a5dd768e0f6f1fe241c680d155364404c64d6251adee5c
+ql/lib/codeql/swift/elements/decl/SubscriptDeclConstructor.qll 3a88617b41f96827cb6edd596d6d95ebcf5baf99ba113bdd298276666c6aeadf 166e04fc72507cb27e2c16ad2d5217074f8678d286cb6d0980e5b84125648abe
+ql/lib/codeql/swift/elements/decl/TopLevelCodeDeclConstructor.qll 6920a4e7aec45ae2a561cef95b9082b861f81c16c259698541f317481645e194 4bd65820b93a5ec7332dd1bbf59326fc19b77e94c122ad65d41393c84e6ac581
+ql/lib/codeql/swift/elements/decl/TypeAliasDecl.qll ecb457a9a81c6b13a1068f471c0b87e59227838f54c5d4effe7d4c2f6e7f5800 630dc9cbf20603855c599a9f86037ba0d889ad3d2c2b6f9ac17508d398bff9e3
+ql/lib/codeql/swift/elements/decl/TypeAliasDeclConstructor.qll ba70bb69b3a14283def254cc1859c29963838f624b3f1062a200a8df38f1edd5 96ac51d1b3156d4139e583f7f803e9eb95fe25cc61c12986e1b2972a781f9c8b
+ql/lib/codeql/swift/elements/decl/ValueDecl.qll b344768498e0d1794d92bc5b7c0417e75079aa8a82e27d7b3449f1e52f78d1e9 e3056cf6a883da2737cb220a89499a9e3977eb1c56b9e1d2f41a56b71a0c29f9
+ql/lib/codeql/swift/elements/expr/AbstractClosureExpr.qll 125f8bd8f21c95c439616744539577afcfa9fd63c65683132a2c971abcec3523 400790fe643585ad39f40c433eff8934bbe542d140b81341bca3b6dfc5b22861
+ql/lib/codeql/swift/elements/expr/AnyHashableErasureExpr.qll 20dd848a35a47af94d0fb8cf1a33a2bd6582c751440708c365cf338e522f6de5 bf80cab3e9ff5366a6223153409f4852acdb9e4a5d464fb73b2a8cffc664ca29
+ql/lib/codeql/swift/elements/expr/AnyHashableErasureExprConstructor.qll 12816f18d079477176519a20b0f1262fc84da98f60bce3d3dd6476098c6542e7 4cc5c8492a97f4639e7d857f2fca9065293dfa953d6af451206ce911cda9f323
+ql/lib/codeql/swift/elements/expr/AnyTryExpr.qll 51aa09941b366d147a685452b3b89be4f0cc35f8cf9ff5ebcd53622ddd7df727 988b5df28972e877486704a43698ada91e68fe875efc331f0d7139c78b36f7dd
+ql/lib/codeql/swift/elements/expr/AppliedPropertyWrapperExpr.qll b1a6c026b0167c7299d1f2de30935a8f805382edd8d91c1f7f18e9278ccd564c 9508f93ca59561455e1eb194eaddd9f071960a752f985844c65b3b498f057461
+ql/lib/codeql/swift/elements/expr/AppliedPropertyWrapperExprConstructor.qll d9baf27c0d64e08466952b584ef08e4f40f7dfb861582aef2e7ebb16bb3da13b 2f19e7dbc02f9450c5521728ff1c5f178b14f50de4ff345fcd9bc834070a21d6
+ql/lib/codeql/swift/elements/expr/ArchetypeToSuperExpr.qll ea81d53ed038e29d0454b2411feb069e3396e6f7a0aa93bcfd05793772fe1d52 64e21e6f3307cd39d817ea66be2935e717168187bbeaedd4247bb77cec9d95ea
+ql/lib/codeql/swift/elements/expr/ArchetypeToSuperExprConstructor.qll df9f0db27fd2420e9d9cc4e1c6796b5513f6781940b5f571e8b8b9850a6e163f b4b15aa01de7ce91f74bd47a2e654c3ea360b90687c92ef9e19257289696f97e
+ql/lib/codeql/swift/elements/expr/ArrayExprConstructor.qll 57d37bb5a745f504c1bf06e51ffa0c757e224c158034c34e2bbb805b4efdc9f4 808753dccddfc0a02ef871af8f3d6487289ca48e7b4e4ea6356e0a87e3692583
+ql/lib/codeql/swift/elements/expr/ArrayToPointerExpr.qll 202b724bcf20f8083028d9d683d748ffceab3d0becf02c29c57228fe8aca30a5 035b15b1ecb700c4e6961b9a99e3c33476cedaa1a96310601b558e7ede9de39f
+ql/lib/codeql/swift/elements/expr/ArrayToPointerExprConstructor.qll ad4346298ff16512f06f9841bf8171b163f59fde949e24e257db7379eb524c4f b2d038e1e13340b0616044fc28005904562035bc8c9871bd6c9b117f15adffe6
+ql/lib/codeql/swift/elements/expr/AssignExprConstructor.qll 14cb0d217bc9ca982d29cdbf39c79399b39faa7e031469bc47884f413507e743 646658cb2f664ba0675f48cb51591c64cf2107a0c756038bfc66243b4c092b45
+ql/lib/codeql/swift/elements/expr/AutoClosureExprConstructor.qll 928391f52b914e42625fafadbdfa703e6fb246a09a7d8e39bf7700bc2fc8c22c 2d698cceed54a230890f5f2ad9f019ebe82fdd15831b8a5b6aaabf1ea855063f
+ql/lib/codeql/swift/elements/expr/AwaitExprConstructor.qll 5c73999bf54f43c845e3a8ec9dcd9898f35c9b5160aadb1837a266d3413a76e4 74830d06f6fbd443393dbba61a48480f7632ce2c38fcb15febfeaf88ec8fd868
+ql/lib/codeql/swift/elements/expr/BinaryExprConstructor.qll 99baa77331e4e5b2d0fe0ca31e839c901ba677e4337bed3aa4d580c3258fb610 7f42ac4bfc73c18743f73a3e961b529f1d302e70a634ab91fcf3676b959ddb22
+ql/lib/codeql/swift/elements/expr/BindOptionalExprConstructor.qll 1dd7074d6513977eb50f857de87aea35686ddda8f1ee442569fcfac16fc02fd6 1c23977e1f5ad4fd1a9d43a01765dda2fe72496a0361701f92212f7eef3f13c2
+ql/lib/codeql/swift/elements/expr/BooleanLiteralExprConstructor.qll 561ac38c94fdc3eb7baab09d0f2f2d7f64424dbfe879c395470ee6d5cd6a9354 2b76d00a58cd7d051d422f050d187c36e97614de6d99f52068aff3c20a45c7af
+ql/lib/codeql/swift/elements/expr/BridgeFromObjCExpr.qll 129251956d27cd32ce806c4b11cd2ea1774723d53c4dc1d8112cab7401a2db0b 91385232931b55817e53e4caebf7a2dd9c0a520ec055012de82e7b1da923f0ec
+ql/lib/codeql/swift/elements/expr/BridgeFromObjCExprConstructor.qll f91e80dad19b7177c6ea1b127c7622d145cb250575acba9bf34d99b933849b94 c3133e6ad25d86bcec697999c16d0c18db1abf894068f5b8d14c90ffae35ca09
+ql/lib/codeql/swift/elements/expr/BridgeToObjCExpr.qll 436b10412525fb6fca966416f2fb563efd569ee2826b003c9cee594a4887658f 8fc781a59f6009fa64fbbf28f302b2e83b0f7fcbe0cf13d5236637248dcb6579
+ql/lib/codeql/swift/elements/expr/BridgeToObjCExprConstructor.qll 7e51fef328ad149170f83664efd57de2b7058511934f3cf1a9d6cb4033562bed 34ab05bbdddc5477ba681cc89f03283057867116c83b3e57766c3b24f38ca7bf
+ql/lib/codeql/swift/elements/expr/BuiltinLiteralExpr.qll 5455879c4f3aef960881da579007544e8f20a973d2fba0c58aa21705800a0c9d 9d9de530709c80cfe710a9e3d62a1b7cede61ba22da46365b1ba7766dbc48b44
+ql/lib/codeql/swift/elements/expr/CallExpr.qll 625c0e0866c1e6384591c5022952391d256b2366d1b83174c2d299ccca086d23 8040ab28b4e1630ff343ab77d10b2449e792908b55e683316f442d853eee6c0a
+ql/lib/codeql/swift/elements/expr/CallExprConstructor.qll 478caaaee61b5d83126da6de16ff21d11dc452428f15a879e1401d595b7bed75 7014f17d347b781e4c8211568954c2858ab2dcf37ef5dfd5ed36678415000009
+ql/lib/codeql/swift/elements/expr/CaptureListExprConstructor.qll 03af12d1b10bdc2cc4ac2b0322c4cd7f68a77699f37315ddca97f1e99a770c93 0fc709cdca8935a3142f7718d660c932af65952db8603bd909087aa68eab9236
+ql/lib/codeql/swift/elements/expr/CheckedCastExpr.qll 766f2fc44952f34ac0609aa346a5fedf7eb9c1d7bf1393890a05cb5bda45725e e7c90a92829472335199fd7a8e4ba7b781fbbf7d18cf12d6c421ddb22c719a4b
+ql/lib/codeql/swift/elements/expr/ClassMetatypeToObjectExpr.qll 36fd3daf20130882e26e0f301b02380219e67ed3fe8a1caaac3854789eb6bcad 4b5aca9fa4524dc25dc6d12eb32eeda179a7e7ec20f4504493cf7eb828a8e7be
+ql/lib/codeql/swift/elements/expr/ClassMetatypeToObjectExprConstructor.qll 369cecb4859164413d997ee4afba444853b77fb857fa2d82589603d88d01e1dc 3b4ebd1fb2e426cba21edd91b36e14dc3963a1ede8c482cdf04ef5003a290b28
+ql/lib/codeql/swift/elements/expr/ClosureExprConstructor.qll cf2fa2dab328f6b98aeffcdc833de4d74f69d23779ac897f5ada9c2dca9ef093 13f85b735ebb56c361458baba45eb854e70b7987d5e1863e564084c1a6165cc5
+ql/lib/codeql/swift/elements/expr/CoerceExpr.qll efc1e3852212089d81b5c3d06ae74b0a36abf2dd8843689d50dcc22d3bed12ba eb13ef05c7436d039c1f8a4164b039bdbf12323310c249d7702291058f244d38
+ql/lib/codeql/swift/elements/expr/CoerceExprConstructor.qll aa80ea0e6c904fab461c463137ce1e755089c3990f789fae6a0b29dea7013f6d 455f5184a3d2e2a6b9720a191f1f568699f598984779d923c2b28e8a3718fa9d
+ql/lib/codeql/swift/elements/expr/CollectionExpr.qll 80fedf0757cd8024ebcadd0b82507cfd5cec57b4d7c53ff0f97357384f9d89c4 87977b7661bcd8212b07b36f45ff94f5e98513c6dddb4cca697d1d6b853dff72
+ql/lib/codeql/swift/elements/expr/CollectionUpcastConversionExpr.qll 37aa0e9e829a480a5db855a2d2617ace57ac8d89fe01ec11251aa9183ccbd0a1 ab8370b77f27ed658f58571638f96187746cbafdfdf86583caf807bf3910f8c2
+ql/lib/codeql/swift/elements/expr/CollectionUpcastConversionExprConstructor.qll 4896b2ac56def7a428945c97cd5d5e44ca6378be96707baf1cb3a47c81ef9ca3 c8f1efdfcc67b5d631447ab2b87a0a70722bd52ef3282ad74d8de929c361f626
+ql/lib/codeql/swift/elements/expr/ConditionalBridgeFromObjCExpr.qll f9b1da899020c8dd9c0633376410f5b8b8d00f4df43d5da164e5e5696c813499 4013b1dcebbc873f337ee433042ad1e5d178b0afe2d62434fe235a234e9b8aa6
+ql/lib/codeql/swift/elements/expr/ConditionalBridgeFromObjCExprConstructor.qll 7350d9e279995181f08dcc931723d21a36aac17b3ea5b633c82bac5c7aeb733a dc6767f621bddcc22be8594b46b7d3170e5d7bfcee6f1e0279c26492fd88c81d
+ql/lib/codeql/swift/elements/expr/ConditionalCheckedCastExpr.qll 527f8f1dd071e2647f6f86a6b204a082c7e9929f9a37f35b8dcd40e99e1064b2 a66a1e07b210a1e8d999380db04a8b3210b66049a876bd92c8f56eae66c5a062
+ql/lib/codeql/swift/elements/expr/ConditionalCheckedCastExprConstructor.qll 13a1032bfa1199245746d4aac2c54d3ba336d3580c2713a66a91ad47eb8648ca 2a7c66669551aaa3528d77a8525985b850acbc983fea6f076561709a076dadb7
+ql/lib/codeql/swift/elements/expr/ConstructorRefCallExpr.qll e8830d2c73a10d394495b8aa5bc68290f9524b0f09dba932d7cd7b533f149a1b fc4b855b27f7afefab8132bd2adc3567cceec6b2fd762bf1dc7463ce76421326
+ql/lib/codeql/swift/elements/expr/ConstructorRefCallExprConstructor.qll 7f22cf621c69a4cd11f40332d8f0bce9381f87830d600f5fa5aae6df9a0bcace 7005c9c220532188b338b99c87f6fd8c9975f7af0fee16812a2faf69a9660ac0
+ql/lib/codeql/swift/elements/expr/CovariantFunctionConversionExpr.qll 687065e8625a249d51e8e92136afacfd3c48f85f689d5aff077a5a9dac56272e 4510d77d211f4b6db9dd4c941706d7eb7579fe7311714758c9d1d24513bfbdc4
+ql/lib/codeql/swift/elements/expr/CovariantFunctionConversionExprConstructor.qll eac12524819e9fe29074f90ea89fea866023b5ed4a5494345f2b9d8eec531620 71a6eb320630f42403e1e67bb37c39a1bae1c9f6cc38c0f1688a31f3f206d83f
+ql/lib/codeql/swift/elements/expr/CovariantReturnConversionExpr.qll e6a7a3ce538c068bd7ab0974b4615acbf00038d3b01dc594372152114559fa44 720fb172ebcb800c70810539c7a80dbdf61acb970277f2b6a54b9159ab4e016e
+ql/lib/codeql/swift/elements/expr/CovariantReturnConversionExprConstructor.qll b32a9b3c067d09bd6350efe57215e3b3b9ae598631756878da4a1e474876fc3f bcc963ee556fdd5e1563c305d1bfc6a89e8953243f5dfa1b92144d280ccb3b1a
+ql/lib/codeql/swift/elements/expr/DefaultArgumentExprConstructor.qll 013827d95e2a9d65830b748093fd8a02da6b6cae78729875f624bf71cc28a4fe 900879fd1c26cfbcea0cd0c3b8f95425644458a8a1dd6628a8bd4bc61bc45809
+ql/lib/codeql/swift/elements/expr/DerivedToBaseExpr.qll 782d47d73634aea8ee4ea991acde27180b77535d8e5112d40df77262d9e9a19e e12acd24f48b7b59009615af6a43e061ffc595f1edc55bfe01c1524f30d7be7c
+ql/lib/codeql/swift/elements/expr/DerivedToBaseExprConstructor.qll ca74471f6ac2500145de98bb75880450c9185f697f5ce25905271358182a29b3 797b9eaa9d3d56a963d584ba560a67ec94e1a1b10916f0d03f4ad4777e4984f9
+ql/lib/codeql/swift/elements/expr/DestructureTupleExpr.qll 618298ec50ac464268472bba7925695ba3d37bd3ae07b310a69724b396265554 8bc4a6238bec6dbdc2f91e2777cb00d86c63642bf3d2d9758a192d170cf6fcde
+ql/lib/codeql/swift/elements/expr/DestructureTupleExprConstructor.qll 7d844c6c4a0f9008e2fdf9a194621f09595e328a5f5c6f2f993b1a3cd2a74a03 e75d47955ae9a91c75fcb8e0bb12b6ed792c361645ee29bbcc37fa2ac27c4517
+ql/lib/codeql/swift/elements/expr/DictionaryExprConstructor.qll 6bd61507158b62fd8d2f3a68c61cceff5926915bf71730c898cf6be402d1e426 37cfce5600dd047a65f1321709350eabae5846429a1940c6f8b27f601420a687
+ql/lib/codeql/swift/elements/expr/DifferentiableFunctionExpr.qll 32d59a601c7ee95715e09478561018788e8f10eca34c5637c94d7700a868636c 520f79dd2fd9b500c32fb31d578fffaec67d232690638746792417a0b80b98e6
+ql/lib/codeql/swift/elements/expr/DifferentiableFunctionExprConstructor.qll 4ee532a020a6e75ba2971cee5724fcccc7e6b60530ec26385cbbda0b2626f9be 6c35cd2b0142b2c74e7d8a46cf3aebfcf92e5809e5c0c480a666d8a7dacdcfa2
+ql/lib/codeql/swift/elements/expr/DifferentiableFunctionExtractOriginalExprConstructor.qll ce008cb7ce392277dd0678203f845f94a9933b9530c265a58a66c16542423495 4b4522c39929d062662b5e321371e76df5f2c9c8e5eebdf5c62e88b8eb84960b
+ql/lib/codeql/swift/elements/expr/DiscardAssignmentExprConstructor.qll cd814e77f82fac48949382335655f22b0d1d99ece04612f026aebc2bc60f0dc9 d1faa9e2d863175feb00cd2b503ac839e09744cbbfbe4c18b670416f9d50483c
+ql/lib/codeql/swift/elements/expr/DotSelfExprConstructor.qll 4b6956818dac5b460dfbe9878c2c5b6761fcf1c65556b38555f68de9cc6f2562 2ae26f5e7bde2f972cc5a63e4a3dca1698e3a7c75b06419bb7bb080cb8ce78d9
+ql/lib/codeql/swift/elements/expr/DotSyntaxBaseIgnoredExprConstructor.qll 8ca889cc506cac0eeb35c246a3f317c9da8fe4dbfaf736a2056108b00b1c8521 9a20b12ad44f1dbf58d205a58cdfc1d63d2540353d8c8df48d87393d3b50d8b6
+ql/lib/codeql/swift/elements/expr/DotSyntaxCallExpr.qll f5048cff6fcdd298c8822ece1cd2042a61b40521dfc230f0f0e1798527010e58 5220861621d01b15ea0182bbb8358d700f842b94ec07745f77c5285d0e84a509
+ql/lib/codeql/swift/elements/expr/DotSyntaxCallExprConstructor.qll d32660cba3474b84e060eb33bbf57d77722ce7bf2a320aec15ccd980e0a0d0bb 0a6f46f887750221f01e7f5d834b7c811009e4351c1afc0b4ef61ac6c0af421b
+ql/lib/codeql/swift/elements/expr/DynamicLookupExpr.qll cd5670379df14b7a765037378221e541dd93567c97729d6be24bbbbb9aacc054 89f564a793d1f09a8aeb2dd61c475df3e55a49f4f0b6094ceb9f0ebe6d42fa76
+ql/lib/codeql/swift/elements/expr/DynamicMemberRefExprConstructor.qll 6bd769bdbb83999bfd94bf4d5a1b8a32cc045460183f5f2fcf7055257f6c3787 e2b72550a71f2f39bde171ada6e04c6bdbd797caa74813ea3c8070b93cefa25e
+ql/lib/codeql/swift/elements/expr/DynamicSubscriptExprConstructor.qll d40d88069371807c72445453f26e0777ac857e200c9c3e8a88cd55628ccb9230 6ff580bbc1b7f99c95145168f7099ab19b5d150e7d7e83747595ff2eb2c289c4
+ql/lib/codeql/swift/elements/expr/DynamicTypeExprConstructor.qll 37066c57e8a9b7044b8b4ecf42a7bf079e3400dd02bf28a1d51abd5406391ba0 62cc0405ecfe4c8d5477957d8789a6b03a4e9eecabbb0f94e1bde5ce2adabb8c
+ql/lib/codeql/swift/elements/expr/EnumIsCaseExprConstructor.qll a02f992035c7ef7692c381377b1e594f0021025df6bcab23f149efeacd61c8e6 687df32678e1b3bcc4241270962593f7838e461970621f6e5b829321718ed257
+ql/lib/codeql/swift/elements/expr/ErasureExpr.qll 3549ee36cbca32207ec7a339de87e81126b0ca0e087e74a6f525c817b4dd15be 91a60971ff01d158f6358a6cb2e028234b66b3a75c851a3f5289af0aa8c16613
+ql/lib/codeql/swift/elements/expr/ErasureExprConstructor.qll 29e0ab9f363b6009f59a24b2b293d12b12c3cdea0f771952d1a57c693f4db4a3 c4bc12f016b792dff79e38b296ef58dba3370357d088fd63931a8af09c8444a9
+ql/lib/codeql/swift/elements/expr/ErrorExpr.qll 89468d8ed9c1cc69575cb9c890b8e424ec0c8495894f691a657774e9146a896d bc3e4a566bc37590929e90a72e383f9fbc446e4f955e07e83c1c59a86cee8215
+ql/lib/codeql/swift/elements/expr/ErrorExprConstructor.qll dd2bec0e35121e0a65d47600100834963a7695c268e3832aad513e70b1b92a75 e85dcf686403511c5f72b25ae9cf62f77703575137c39610e61562efc988bbac
+ql/lib/codeql/swift/elements/expr/ExistentialMetatypeToObjectExpr.qll cd5d01e8410ed65165bb4a1a570a63864b0a75c742ac9224cef8c2683d72f62d c0b5811c8665f3324b04d40f5952a62e631ec4b3f00db8e9cc13cb5d60028178
+ql/lib/codeql/swift/elements/expr/ExistentialMetatypeToObjectExprConstructor.qll 1a735425a59f8a2bd208a845e3b4fc961632c82db3b69d0b71a1bc2875090f3b 769b6a80a451c64cbf9ce09729b34493a59330d4ef54ab0d51d8ff81305b680f
+ql/lib/codeql/swift/elements/expr/FloatLiteralExprConstructor.qll 4dfb34d32e4022b55caadcfbe147e94ebe771395c59f137228213a51a744ba10 1eb78fcda9e0b70d1993e02408fb6032035991bf937c4267149ab9c7c6a99d3a
+ql/lib/codeql/swift/elements/expr/ForceTryExprConstructor.qll 48cbc408bb34a50558d25aa092188e1ad0f68d83e98836e05072037f3d8b49af 62ce7b92410bf712ecd49d3eb7dd9b195b9157415713aaf59712542339f37e4c
+ql/lib/codeql/swift/elements/expr/ForceValueExprConstructor.qll 3b201ee2d70ab13ad7e3c52aad6f210385466ec4a60d03867808b4d3d97511a8 d5d9f0e7e7b4cae52f97e4681960fa36a0c59b47164868a4a099754f133e25af
+ql/lib/codeql/swift/elements/expr/ForcedCheckedCastExpr.qll 27612d688194618da2403d9c913cb7fe0f423e099f0abdb9b54f4eb58b2767be a3bae0709caac887bec37c502f191ea51608006e719bb17550c3215f65b16f7f
+ql/lib/codeql/swift/elements/expr/ForcedCheckedCastExprConstructor.qll 3fdd87183e72c4b0ee927c5865c8cbadf4f133bd09441bf77324941c4057cbc8 a6e7dc34de8d1767512c2595121524bd8369bd21879857e13590cec87a4b0eeb
+ql/lib/codeql/swift/elements/expr/ForeignObjectConversionExpr.qll fbffcd3bde46cd3e443ce583bf7bfb2d73b86e3d061465c7ddb4468be7447b72 7ea9aa492b2d37ad05d92421a92bb9b1786175b2f3b02867c1d39f1c67934f3d
+ql/lib/codeql/swift/elements/expr/ForeignObjectConversionExprConstructor.qll d90fdb1b4125299e45be4dead6831835e8d3cd7137c82143e687e1d0b0a0a3bc a2f38e36823a18d275e199c35a246a6bc5ec4a37bf8547a09a59fe5dd39a0b4e
+ql/lib/codeql/swift/elements/expr/FunctionConversionExpr.qll e6dcf7fb3966d2ee5e4434221ec615b066da0e17ddc442692ca7936fcebec70b 87c1f5a44d9cc7dd10d05f17f5d4c718ecc5b673c7b7f4c1662b5d97e0177803
+ql/lib/codeql/swift/elements/expr/FunctionConversionExprConstructor.qll ff88509ae6754c622d5d020c0e92e0ea1efe2f7c54e59482366640b2100d187b fd640286e765dc00c4a6c87d766750cad0acd2544566ec9a21bc49c44cf09dba
+ql/lib/codeql/swift/elements/expr/IfExprConstructor.qll 19450ccaa41321db4114c2751e9083fbd6ceb9f6a68905e6dca5993f90dd567a 42605d9af0376e3e23b982716266f776d998d3073d228e2bf3b90705c7cb6c58
+ql/lib/codeql/swift/elements/expr/InOutExprConstructor.qll c8c230f9a396acadca6df83aed6751ec1710a51575f85546c2664e5244b6c395 2e354aca8430185889e091ddaecd7d7df54da10706fe7fe11b4fa0ee04d892e0
+ql/lib/codeql/swift/elements/expr/InOutToPointerExpr.qll 60e70359ea6a433cac1b4d7afe27d739979176d2f881a8108e61fe7c1dea1a9a e9c7db3671cce65c775760c52d1e58e91903ad7be656457f096bfe2abab63d29
+ql/lib/codeql/swift/elements/expr/InOutToPointerExprConstructor.qll 06b1377d3d7399ef308ba3c7787192446452a4c2e80e4bb9e235267b765ae05d 969680fddeb48d9e97c05061ae9cbc56263e4c5ad7f4fad5ff34fdaa6c0010b4
+ql/lib/codeql/swift/elements/expr/InjectIntoOptionalExpr.qll d44e2ccede83bc55fb5fcd135d176a53be55783904be700e4b7bc6ca54f23499 6ec93a725c92a9abf62c39451eaf6435942b61b56bd06db0d494da0b5f407441
+ql/lib/codeql/swift/elements/expr/InjectIntoOptionalExprConstructor.qll e25cee8b12b0640bfcc652973bbe677c93b4cb252feba46f9ffe3d822f9d97e0 4211336657fce1789dcdc97d9fe75e6bc5ab3e79ec9999733488e0be0ae52ca2
+ql/lib/codeql/swift/elements/expr/IntegerLiteralExprConstructor.qll 779c97ef157265fa4e02dacc6ece40834d78e061a273d30773ac2a444cf099d0 d57c9e8bbb04d8c852906a099dc319473ae126b55145735b0c2dc2b671e1bcbd
+ql/lib/codeql/swift/elements/expr/InterpolatedStringLiteralExprConstructor.qll 2d288a4cbaa3d7e412543fe851bb8764c56f8ccd88dc9d3a22734e7aa8da3c1a dfa6bea9f18f17d548d8af0bb4cd15e9a327a8100349d2ecfce51908062b45c8
+ql/lib/codeql/swift/elements/expr/IsExprConstructor.qll 0dc758a178c448c453fb390257f1a7a98d105efd8d8b2b592b290ef733d0fc80 e93e77865988bf522b9f48e105f913a7e33f98764e3edf910f9203ec44a785b1
+ql/lib/codeql/swift/elements/expr/KeyPathApplicationExprConstructor.qll c58c6812821d81dfb724fd37f17b2d80512c0584cf79e58ebb3a9657199e8f91 a4b9d8369f0224f9878bf20fcad4047756e26592fb7848988bdb96e463236440
+ql/lib/codeql/swift/elements/expr/KeyPathDotExprConstructor.qll d112a3a1c1b421fc6901933685179232ac37134270482a5b18d96ba6f78a1fd1 abce0b957bdf2c4b7316f4041491d31735b6c893a38fbf8d96e700a377617b51
+ql/lib/codeql/swift/elements/expr/KeyPathExprConstructor.qll 96f7bc80a1364b95f5a02526b3da4f937abe6d8672e2a324d57c1b036389e102 2f65b63e8eac280b338db29875f620751c8eb14fbdcf6864d852f332c9951dd7
+ql/lib/codeql/swift/elements/expr/LazyInitializerExprConstructor.qll deba52e51f31504564adc33da079b70f1f2da1e3e6f9538cba8bf97be0c27c64 4499c688d86c08cb33a754ad86f6adbe47754aa0fc58a4d77dd7cbfa1ca1fa50
+ql/lib/codeql/swift/elements/expr/LinearFunctionExpr.qll bcdc3b7c9f854f622e087a16a892af677439fee023d29341be534d297596bd3e b3253571f09a743a235c0d27384e72cf66b26ba8aa5e34061956c63be4940f15
+ql/lib/codeql/swift/elements/expr/LinearFunctionExprConstructor.qll 18998356c31c95a9a706a62dd2db24b3751015878c354dc36aa4655e386f53c3 7e02b4801e624c50d880c2826ef7149ad609aa896d194d64f715c16cfbd11a7d
+ql/lib/codeql/swift/elements/expr/LinearFunctionExtractOriginalExpr.qll fb5d879aa0dd3191dfc587926618b59f977914780c607c6c62c293ecc654b6fe bd9f3c1a5114cec5c360a1bb94fe2ffaa8559dfdd69d78bd1a1c039b9d0cab10
+ql/lib/codeql/swift/elements/expr/LinearFunctionExtractOriginalExprConstructor.qll 4cdacae7a04da12cd19a51ff6b8fa5d0a5fb40b915073a261c1b71a1a0586c90 b4f338fa97ff256a53932901cf209473af8c78c8da0ec7caa66335bfb2aabe1f
+ql/lib/codeql/swift/elements/expr/LinearToDifferentiableFunctionExpr.qll c841a3a0d5deb1d0f8c26122270c10793f8d49d8a484ac0fb838ad0733619fb6 a002c9d1cfc933b45eecf317654c90727a2986fb6d3403fc541be431d7c6b901
+ql/lib/codeql/swift/elements/expr/LinearToDifferentiableFunctionExprConstructor.qll 8a66e39915b4945bef0b1d5b31f4cbbf8149e1392ae42a29d661cfea9c0e3476 954242936f413271a64da2b8862168712ee7b3e0a31653344268f1d615e20fdf
+ql/lib/codeql/swift/elements/expr/LiteralExpr.qll 8e39746df049b3598013901e5b5f9e5d328c22fb7893c273f1a8ab96ec8305fa a599db9010b51379172c400cbd28ab3ea0e893a2dd049e2af3ed1a5eb9329f73
+ql/lib/codeql/swift/elements/expr/LoadExpr.qll 74643292340ccd9ac1c6449faa65bb02ba86749ec6a4f64e7ff04572822a1acd 44b0d1213be692586ac2a2af025ed2c4c2c2f707d2d3e6abab11ee7a28083510
+ql/lib/codeql/swift/elements/expr/LoadExprConstructor.qll 47e2766b4019cec454177db59429f66ff4cc5e6c2ba811b9afd6b651fb390c8d a37517b63ad9e83b18a6e03cad5a4b31bc58d471a078603e7346c2f52dbb5ef9
+ql/lib/codeql/swift/elements/expr/LookupExpr.qll 46ed9daef8b3fe31ad93bb7450b11d35dfae639a7803c24c999603f49517e1ef cf76a591d96ccd9f64f404332b1be1e0587a124e3de0f9ea978d819549f51582
+ql/lib/codeql/swift/elements/expr/MagicIdentifierLiteralExprConstructor.qll 9ac0c8296b8a0920782210520b1d55b780f037cd080bbd1332daddddc23dac97 d87f853e1a761f3986236c44937cbe21d233e821a9ad4739d98ec8255829eb32
+ql/lib/codeql/swift/elements/expr/MakeTemporarilyEscapableExprConstructor.qll b291d55ccbdef0d783ba05c68f496c0a015a211c9e5067dc6e4e65b50292a358 1c2ee4068da4b6fc5f3671af5319a784c0d3e1aa715392f8416918738f3d3633
+ql/lib/codeql/swift/elements/expr/MemberRefExprConstructor.qll 484391d318c767336ae0b1625e28adcc656cbfa6075a38732d92848aaf8fb25e 2907badc97b8aa8df10912fd116758ce4762940753d6fa66d61a557e9d76cde6
+ql/lib/codeql/swift/elements/expr/MetatypeConversionExpr.qll 50ee8a089204600476f1a629bdfc8efe7718a62806abcd81901df9c8b257797c f4debff6b8aab8ddf041f3d2a9a3d9e1432e77178b3d6128ebd9861c4fa73ac1
+ql/lib/codeql/swift/elements/expr/MetatypeConversionExprConstructor.qll 925f2a5c20517f60d6464f52fe1f2940ea1c46b418571d9050f387be51b36705 60063f936b7180aea9eba42a029202a362473c0bb620e880001f0b76d326b54a
+ql/lib/codeql/swift/elements/expr/NilLiteralExprConstructor.qll 483911d82316ea9c4fd29a46aa9e587e91ce51e78e6f55959aa6edafd5ae4c88 12ec784670587f43e793dd50e2bc47555897203dfa9bf3d8fc591ddeb39d3bb5
+ql/lib/codeql/swift/elements/expr/NumberLiteralExpr.qll 14e4dd1acbd947ccb86c1700ac0f0dd0830aee733da356b857d0efe612498fe3 abbe1abbabb1d0511429e2c25b7cbcfba524b9f8391f4d8a5aca079b2c1085e6
+ql/lib/codeql/swift/elements/expr/ObjCSelectorExprConstructor.qll f61b72989d2729e279b0e70343cf020e72de8daa530ef8f1e996816431720a50 37c5f7695da3a7db0f7281e06cc34328a5ae158a5c7a15e0ac64100e06beb7f9
+ql/lib/codeql/swift/elements/expr/ObjectLiteralExprConstructor.qll a18863eb82d0615e631a3fd04343646a2d45f21c14e666d4425a139d333ec035 b41bed928509bd792ec619a08560f1b5c80fb75cec485648601d55b9d7c53d1c
+ql/lib/codeql/swift/elements/expr/OneWayExprConstructor.qll 1f6b634d0c211d4b2fb13b5ac3f9cf6af93c535f9b0d9b764feb36dbc11a252e a2f0660ac48420cfd73111b1100f7f4f6523140c5860e1e5489c105707106275
+ql/lib/codeql/swift/elements/expr/OpaqueValueExpr.qll 15e24ab58aa38242dcc01cce60fb006da3e1a1fd98d7d3a715af3c96d28f1efc 3bf654dc10e2057a92f5f6b727237ec0b0ec7f564a6cc6ef2027c20e8e23a1e9
+ql/lib/codeql/swift/elements/expr/OpaqueValueExprConstructor.qll 35e8475fd6a83e3ef7678529465852de9fb60d129bb5db13a26380c1376ada8b c9c999cb816b948be266aaa83bc22fb9af11b104137b4da1d99f453759784a62
+ql/lib/codeql/swift/elements/expr/OpenExistentialExpr.qll d6187b0ccca6e84c502a4528dcaa0ada8ade1c96ba0a85c5fcd2d052ad291558 cfd96b626180ef3c63c2dbc17b13cd6f585515427f5c3beac48896cf98234a67
+ql/lib/codeql/swift/elements/expr/OpenExistentialExprConstructor.qll c56e5e6f7ae59a089316cd66a9b03d2584024625c2c662e7f74526c0b15dbd60 ea3cc78dd1b1f8fb744258e1c2bf6a3ec09eb9c1181e1a502c6a9bc2cf449337
+ql/lib/codeql/swift/elements/expr/OptionalEvaluationExpr.qll 2f46c15d17a50b14e91552be8ac5b72dbdc9f39b8fac9fa068e519ae5c8aa99b 559902efedbf4c5ef24697267c7b48162129b4ab463b41d89bdfb8b94742fa9f
+ql/lib/codeql/swift/elements/expr/OptionalEvaluationExprConstructor.qll 4ba0af8f8b4b7920bc1106d069455eb754b7404d9a4bfc361d2ea22e8763f4fe 6d07e7838339290d1a2aec88addd511f01224d7e1d485b08ef4793e01f4b4421
+ql/lib/codeql/swift/elements/expr/OptionalTryExprConstructor.qll 60d2f88e2c6fc843353cc52ce1e1c9f7b80978750d0e780361f817b1b2fea895 4eabd9f03dc5c1f956e50e2a7af0535292484acc69692d7c7f771e213609fd04
+ql/lib/codeql/swift/elements/expr/OtherConstructorDeclRefExprConstructor.qll cf726ed7ed830e17aaedf1acddf1edc4efc7d72ab9f9580bc89cc8eefbd54d8a 4ef3010dc5500bd503db8aa531d5455a9c80bc30172fb005abc6459b6f66ea00
+ql/lib/codeql/swift/elements/expr/OverloadedDeclRefExpr.qll adb49e25cdd87d2e6259399a7ce3a1fbe6eb345f9b8f4e34eb23cb39eb3555da 47b1c6df5397de490f62e96edc0656b1f97c0be73c6b99ecd78b62d46106ce61
+ql/lib/codeql/swift/elements/expr/OverloadedDeclRefExprConstructor.qll 2cf79b483f942fbf8aaf9956429b92bf9536e212bb7f7940c2bc1d30e8e8dfd5 f4c16a90e3ab944dded491887779f960e3077f0a8823f17f50f82cf5b9803737
+ql/lib/codeql/swift/elements/expr/ParenExprConstructor.qll 6baaa592db57870f5ecd9be632bd3f653c44d72581efd41e8a837916e1590f9e 6f28988d04b2cb69ddcb63fba9ae3166b527803a61c250f97e48ff39a28379f6
+ql/lib/codeql/swift/elements/expr/PointerToPointerExpr.qll 921645a373443d050dbc29b9f6bc4a734163c75aeffce453a4f8334b34077d30 54089de77845f6b0e623c537bc25a010ecf1b5c7630b1b4060d2b378abc07f4e
+ql/lib/codeql/swift/elements/expr/PointerToPointerExprConstructor.qll 95cc8003b9a3b2101afb8f110ec4cbd29e380fc048ee080f5047bcf0e14a06c7 114d487a1bb2cd33b27a9c3a47ad1d7254766e169512642f8b09b9c32cf3dc86
+ql/lib/codeql/swift/elements/expr/PostfixUnaryExpr.qll a67abdf379f04f1aeee0795cd3ebeb28ed8dfe0efad15b128d44cc9e30b32cbd cbb2b2d54c8e316dc71388ea4ff6bb5d0a6204b4e9d9ce2888e1877a54e85e8f
+ql/lib/codeql/swift/elements/expr/PostfixUnaryExprConstructor.qll c26326e2703b9a8b077ea9f132ae86a76b4010a108b8dcde29864f4206096231 70e45fbe365b63226d0132158cdd453e2e00d740a31c1fb0f7bfb3b2dedfd928
+ql/lib/codeql/swift/elements/expr/PrefixUnaryExprConstructor.qll 6d4c915baf460691cc22681154b1129852c26f1bd9fe3e27b4e162f819d934f5 7971698433bc03dbff2fec34426a96a969fab1a5a575aaf91f10044819e16f6d
+ql/lib/codeql/swift/elements/expr/PropertyWrapperValuePlaceholderExpr.qll 35a61a7f68e71165690127b445fff39780028cb6be5e7b5eadaafa8aeb6b2321 f9e32f65e6d453d3fa857a4d3ca19700be1f8ea2f3d13534656bc21a2fc5f0b0
+ql/lib/codeql/swift/elements/expr/PropertyWrapperValuePlaceholderExprConstructor.qll 874da84b8ac2fbf6f44e5343e09629225f9196f0f1f3584e6bc314e5d01d8593 e01fc8f9a1d1cddab7c249437c13f63e8dc93e7892409791728f82f1111ac924
+ql/lib/codeql/swift/elements/expr/ProtocolMetatypeToObjectExpr.qll db0a35204b99aa6665d95461db0c5592739172d3def43d38461612622d39fea7 1f342dead634daf2cd77dd32a1e59546e8c2c073e997108e17eb2c3c832b3070
+ql/lib/codeql/swift/elements/expr/ProtocolMetatypeToObjectExprConstructor.qll aaaf5fd2496e24b341345933a5c730bbfd4de31c5737e22269c3f6927f8ae733 bece45f59dc21e9deffc1632aae52c17cf41924f953afc31a1aa94149ecc1512
+ql/lib/codeql/swift/elements/expr/RebindSelfInConstructorExprConstructor.qll 434e00b6e5d3ccf356dabb4a7d6574966676c32d4c257ad3606d5b9e2b715524 637a16d0f5f504bad4a04bb85d6491a94738781d3282bc27363cceafb3023408
+ql/lib/codeql/swift/elements/expr/RegexLiteralExprConstructor.qll 7bf1bdba26d38e8397a9a489d05042ea2057f06e35f2a664876dc0225e45892d dcc697170a9fc03b708f4a13391395e3986d60eb482639e3f5a3ba0984b72349
+ql/lib/codeql/swift/elements/expr/SelfApplyExpr.qll 75a7f14daedd69803bbb2650e503c7db5589044347c3b783f8cd13130c7c508e f0349628f9ead822783e09e56e0721f939bfb7f59c8661e6155b5a7d113c26f3
+ql/lib/codeql/swift/elements/expr/SequenceExpr.qll b1269230db9782dacba9a61e60fb2b962b05d47048b205a5bcf89157fe475b82 3b2d06ac54746033a90319463243f2d0f17265c7f1573cbfedbdca3fb7063fd2
+ql/lib/codeql/swift/elements/expr/SequenceExprConstructor.qll 5a15ede013bb017a85092aff35dd2f4f1fb025e0e4e9002ac6e65b8e27c27a0b 05d6c0e2fa80bbd088b67c039520fe74ef4aa7c946f75c86207af125e7e2e6b4
+ql/lib/codeql/swift/elements/expr/StringLiteralExprConstructor.qll 49de92f9566459609f4a05b7bf9b776e3a420a7316151e1d3d4ec4c5471dcffb 4a7474d3782b74a098afe48599faee2c35c88c1c7a47d4b94f79d39921cd4a1f
+ql/lib/codeql/swift/elements/expr/StringToPointerExpr.qll 8fcb58665cac6f01df36fbd4f3cd78f515ee57bc1a2bdf5f414174615442cf49 6f6710f7ac709102b0f3240dcd779baf5da00d2e7a547d19291600bc405c5a54
+ql/lib/codeql/swift/elements/expr/StringToPointerExprConstructor.qll 138dd290fff168d00af79f78d9d39a1940c2a1654afd0ec02e36be86cebef970 66f7385721789915b6d5311665b89feff9469707fab630a6dcbf742980857fd9
+ql/lib/codeql/swift/elements/expr/SubscriptExprConstructor.qll dd2a249c6fb3a2ce2641929206df147167682c6294c9e5815dab7dddbac0d3bd ad382cbd793461f4b4b1979b93144b5e545ba91773f06957c8e1b4808113cd80
+ql/lib/codeql/swift/elements/expr/SuperRefExprConstructor.qll 7d503393bddf5c32fb4af9b47e6d748d523fc4f3deb58b36a43d3c8c176c7233 86d2312a61ccb3661d899b90ac1f37a1079b5599782d52adaf48f773b7e7dd72
+ql/lib/codeql/swift/elements/expr/TapExprConstructor.qll aa35459a9f1d6a6201ce1629bc64d5902f3e163fcef42e62b1828fa8fde724f8 88d92995026d2c2cbd25fab9e467d91572174d3459584729723a5fe3c41f75b9
+ql/lib/codeql/swift/elements/expr/TryExprConstructor.qll 786f2e720922c6d485a3e02fe39ef53271399be4a86fdea7226a7edb1e01b111 e9f527562c45e75276cbe2b899c52677268dffd08c3f6c260cd1a9abbc04bd25
+ql/lib/codeql/swift/elements/expr/TupleElementExprConstructor.qll d5677df4f573dd79af7636bf632f854e5fd1cbe05a42a5d141892be83550e655 5248a81d39ed60c663987463f1ce35f0d48b300cd8e9c1bcd2fdbf5a32db48dc
+ql/lib/codeql/swift/elements/expr/TupleExprConstructor.qll 0eec270bb267006b7cdb0579efe4c420e0b01d901254a4034c3d16f98dc18fc0 4dab110e17ff808e01e46fc33436ffd22ebf5644abcb92158b5b09a93c0b1c19
+ql/lib/codeql/swift/elements/expr/TypeExprConstructor.qll d4cbe4ddbd7a43a67f9a9ca55081ae11c4a85aa1cc598bc31edd3ff975255c62 1ca407571c456237f3f4f212bbcfa821d96aac44c9e569c6e5a4929c144c4569
+ql/lib/codeql/swift/elements/expr/UnderlyingToOpaqueExpr.qll f8238439d553627d5b82f21fd906f602e2d1fc884d593209be00deb2fb85b8c7 f947161c8956113ff052743fea50645176959f2b04041cb30f4111c2569400be
+ql/lib/codeql/swift/elements/expr/UnderlyingToOpaqueExprConstructor.qll 6b580c0c36a8c5497b3ec7c2b704c230de4529cfdeb44399184503048dc547d7 b896b2635319b2b2498eac7d22c98f1190ff7ba23a1e2e285c97a773860d9884
+ql/lib/codeql/swift/elements/expr/UnevaluatedInstanceExpr.qll 7d390adafff48b7365e4abe80e98a9367030ad62992b0ee8b17e16d140c0e673 a094972b3b30a8a5ead53e12ede960f637190f9fa7dd061f76b4a4ab1ff5282e
+ql/lib/codeql/swift/elements/expr/UnevaluatedInstanceExprConstructor.qll 9453bb0ae5e6b9f92c3c9ded75a6bbaff7a68f8770b160b3dd1e4c133b421a80 51ac38be089bbc98950e8175f8a2b0ab2a6b8e6dbb736c754b46bf3c21b7551e
+ql/lib/codeql/swift/elements/expr/UnresolvedDeclRefExprConstructor.qll 6f7498cf4edc48fa4c0184bb4068be63a88a0a5ab349bd54228f23d23df292cb b9e16dc1bd56535494a65f8faa780fca70a7eae1e04da132d99638ca2ee5e62c
+ql/lib/codeql/swift/elements/expr/UnresolvedDotExprConstructor.qll 11d54c61f34291a77e4de8d1d763de06da5933ab784f0ae6b4bf6798ab6e2297 78b01e12cd7f49dc71456419922cf972b322bd76554090bedeb4263a8701f1af
+ql/lib/codeql/swift/elements/expr/UnresolvedMemberChainResultExpr.qll 0eaae416c14e9e6cb7319344509012a321587f96fcbd4f9c45002908450ff3d9 97362882ce004dce33e97a76f2857527925696f21ac5f1f1b285d57fea7e1d57
+ql/lib/codeql/swift/elements/expr/UnresolvedMemberChainResultExprConstructor.qll 3e76d7a004acd986c8d58ff399d6fb0510577b9a67e01a85294f89319038e895 e02f88167623ad78bc44f4682b87312bd3c44ddb1f0f85970e19fdbf4df3a4a8
+ql/lib/codeql/swift/elements/expr/UnresolvedMemberExpr.qll 4afc9da4eeb97f89adf31d3e04610d7df3437b66fe1c601507421fad7d3d3996 6591d38ddf3aa0e4db0fa7fdb28b8f70d8278ff96e8117c560ecb1bdf770bb2a
+ql/lib/codeql/swift/elements/expr/UnresolvedMemberExprConstructor.qll db3c55863184bd02e003bf159cab3d7f713a29749d35485473f727f3ccf801a8 ea74f8904d67ac3552d85c12a2b8a19d3e2edf216efccb4263a546501fd4eba2
+ql/lib/codeql/swift/elements/expr/UnresolvedPatternExpr.qll cb316e3bd39f7d558466f91428c5c8da7b3b07ea12e138c72fda33f3b4e3398a f3624cdd8025f1bb525cd0e9a85dc098ca8fa7876f1754849bade0d4e3840589
+ql/lib/codeql/swift/elements/expr/UnresolvedPatternExprConstructor.qll 7b7f834d2793c7e3d60fbd69cb989a170b0e62c2777d817d33a83110ca337e94 f4f8ee260274e547514f3a46ced487abe074409b209adb84f41dc9ebb3d67691
+ql/lib/codeql/swift/elements/expr/UnresolvedSpecializeExpr.qll 8b6975b0759e4a694d2b715f48b22af0b58b390c85ca1299e5a3aa5a687a61db c6fa963f07ed372dca97ea217a836f603c276ed309576b6a13e7cc75d13038c4
+ql/lib/codeql/swift/elements/expr/UnresolvedSpecializeExprConstructor.qll 1cbb484b72efa96b510103bea12247adfe31ec17f9d62b982868d4a5ca3e19b9 af57548a00010dc5e8a51342e85e0c7fc15a30068d7d68b082236cfc53b8c60b
+ql/lib/codeql/swift/elements/expr/UnresolvedTypeConversionExpr.qll d7e889aa4c45ea8a7f171b0de7229cae8872f2f37dc2d5cdb458ffba66ef27b9 0270bc88ba7c53e443e35d04309fcff756f0afac0b3cd601779358b54f81e4a1
+ql/lib/codeql/swift/elements/expr/UnresolvedTypeConversionExprConstructor.qll 191cc2641ea735a72cedd50a1b4fcc66e0e42e3bdc5d1368003790d1621478f4 07384657c12f97d9cac284154a2bcff9c7bc4a745e705cbd7c1e2f0bc857ad48
+ql/lib/codeql/swift/elements/expr/VarargExpansionExprConstructor.qll b3d9bb66747c3495a47f8d7ea27162a216124e94ceb4a0c403faf7c1ca0c1ea1 84cfb1600f461ddfe088b0028ca26b1e2708bd5b59e634eed2d8766817fa6906
+ql/lib/codeql/swift/elements/pattern/AnyPatternConstructor.qll 9ce05c2c4c015a072f7ab5b0d1a15fa7c2666f252ae361164c59e90150338b2a 4a0d79d90e5392187cf631397b94a0e23bc6d661d381e880b129e4964e6468f2
+ql/lib/codeql/swift/elements/pattern/BindingPatternConstructor.qll efbf0b1979430d4a285f683a1a8869366e14948499e015beca8f4d6b80fe9c9b 5e9e5339cda4e6864078883421ee5bc5c5300efc48dc8a0fcf0c9fbdd508a10e
+ql/lib/codeql/swift/elements/pattern/BoolPatternConstructor.qll 6f06125093da5b555990c1636bedc95e5664551bc3bc429a3428dba2ebe2e0dd 4d775af563074088dcd6b91adf133a0a03201e21b32669ea3c0f47043e4800c6
+ql/lib/codeql/swift/elements/pattern/EnumElementPatternConstructor.qll 3d4fd658bbece603aba093d524c60db5e3da912aa6f730bd99de1bb23c829fe3 b63c250501f5d778a9fbece1661c8f48b65f0a5c6791f89ce38a073591496d41
+ql/lib/codeql/swift/elements/pattern/ExprPatternConstructor.qll 477db1715b13660d1fecab766d65ef719be2d700e1f43767c6853f77506534d9 8fe20342b9da54f4aae05b7f925afa39cbbb4b0d26f1c4f294fcd5f83a5b536b
+ql/lib/codeql/swift/elements/pattern/IsPatternConstructor.qll 209ad40227f49dfe1b82e6c9c318d0a8adc808c99fb46034512bcff96324ee91 2776b04bca8fbaadd5d2cc4017f3760f2294d5793ecf70135920036cff3d6275
+ql/lib/codeql/swift/elements/pattern/NamedPatternConstructor.qll 437ccf0a28c204a83861babc91e0e422846630f001554a3d7764b323c8632a26 91c52727ccf6b035cc1f0c2ca1eb91482ef28fa874bca382fb34f9226c31c84e
+ql/lib/codeql/swift/elements/pattern/OptionalSomePatternConstructor.qll bc33a81415edfa4294ad9dfb57f5aa929ea4d7f21a013f145949352009a93975 9fb2afa86dc9cedd28af9f27543ea8babf431a4ba48e9941bcd484b9aa0aeab5
+ql/lib/codeql/swift/elements/pattern/ParenPatternConstructor.qll 7229439aac7010dbb82f2aaa48aedf47b189e21cc70cb926072e00faa8358369 341cfacd838185178e95a2a7bb29f198e46954098f6d13890351a82943969809
+ql/lib/codeql/swift/elements/pattern/Pattern.qll e2f802e788d00a9da18dd6b5d3536666972d9a6a87969b93f95174a922afbbac cbecbc4b2d9bea7b571b9d184a0bb8cf472f66106e96d4f70e0e98d627f269a5
+ql/lib/codeql/swift/elements/pattern/TuplePatternConstructor.qll 208fe1f6af1eb569ea4cd5f76e8fbe4dfab9a6264f6c12b762f074a237934bdc 174c55ad1bf3058059ed6c3c3502d6099cda95fbfce925cfd261705accbddbcd
+ql/lib/codeql/swift/elements/pattern/TypedPatternConstructor.qll 1befdd0455e94d4daa0332b644b74eae43f98bab6aab7491a37176a431c36c34 e574ecf38aac7d9381133bfb894da8cb96aec1c933093f4f7cc951dba8152570
+ql/lib/codeql/swift/elements/stmt/BraceStmtConstructor.qll eb2b4817d84da4063eaa0b95fe22131cc980c761dcf41f1336566e95bc28aae4 c8e5f7fecd01a7724d8f58c2cd8c845264be91252281f37e3eb20f4a6f421c72
+ql/lib/codeql/swift/elements/stmt/BreakStmtConstructor.qll 700a23b837fa95fc5bce58d4dd7d08f86cb7e75d8de828fee6eb9c7b9d1df085 4282838548f870a1488efb851edb96ec9d143bf6f714efe72d033ee51f67a2c5
+ql/lib/codeql/swift/elements/stmt/CaseLabelItemConstructor.qll ff8649d218f874dddb712fbeb71d1060bd74d857420abbd60afa5f233e865d65 438526ef34e6ff3f70c4861e7824fdb4cf3651d7fbeea013c13455b05b2b5b97
+ql/lib/codeql/swift/elements/stmt/CaseStmtConstructor.qll f80665bfea9bf5f33a0195d9fb273fe425383c6612a85b02166279466d814f03 5b45dbf87b2c660c7f0cc9c10c4bc9fefd8d3d7f8a0a7c95dabe257169ea14db
+ql/lib/codeql/swift/elements/stmt/ConditionElementConstructor.qll 05e98b9c9ecaf343aff209c6b509ae03a774d522b5b4a1e90a071ac724a3100f 620e57a7082160e810cb4bcf129736c7510a75d437c3c1e5a2becc5ca4d013ce
+ql/lib/codeql/swift/elements/stmt/ContinueStmtConstructor.qll 64932cdf9e5a6908547a195568e0b3d3da615699cf44d8e03c3a2b146f8addf4 32d5aad9b594b4d0349d79c0b200936864eafc998ab82b2e5a1c6165d3b88cbd
+ql/lib/codeql/swift/elements/stmt/DeferStmtConstructor.qll 1d541efcd414a5c0db07afebd34556181b5339cb2d2df3dc9a97c8b518b21581 598096568e26177d0fc602b4a00092372771f9ba840296e30e8c3b280f7c630d
+ql/lib/codeql/swift/elements/stmt/DoCatchStmtConstructor.qll c23512debcea7db48ca0b66560a752301de8ec148de31bda0ba7614d6f6f2c51 f1165f2854a7e0699da0c11f65dbf199baf93fc0855f5a6c06c73adf0ded6bab
+ql/lib/codeql/swift/elements/stmt/DoStmtConstructor.qll 6555b197019d88e59e4676251fe65e5a72db52b284644c942091851cc96acac4 9d0c764391405c8cacfdf423ba20c6aa06823e30e8eee15fba255938ad3c6bd9
+ql/lib/codeql/swift/elements/stmt/FailStmtConstructor.qll a44f0fc51bcf51215256e2ead3f32ff41cd61cc6af2a73f952e046ab5cca60ed 1634392524d9c70421f9b0fbe03121858b43cfd740e25f271a1fce2022d2cc2b
+ql/lib/codeql/swift/elements/stmt/FallthroughStmtConstructor.qll 657f6a565884949e0d99429a75b3b46d6da2b6fe2ecacfdc2be71d95ad03decb 282b99f61fc51d6acb82256d4f816497add99bf84a0022f5757ca9911fb62a20
+ql/lib/codeql/swift/elements/stmt/ForEachStmtConstructor.qll e21b78d279a072736b9e5ce14a1c5c68c6d4536f64093bf21f8c4e2103586105 02a28c4ef39f8e7efffb2e6d8dcfeccb6f0a0fc2889cbcda5dd971711ac0ff07
+ql/lib/codeql/swift/elements/stmt/GuardStmtConstructor.qll 77ddea5f97777902854eec271811cd13f86d944bcc4df80a40ed19ad0ee9411e 1602e1209b64530ee0399536bff3c13dcecbccbc92cc1f46bc5bbb5edb4e7350
+ql/lib/codeql/swift/elements/stmt/IfStmtConstructor.qll c65681a3e20e383173877720e1a8a5db141215158fffad87db0a5b9e4e76e394 104d1a33a5afb61543f7f76e60a51420599625e857151c02ac874c50c6985ee9
+ql/lib/codeql/swift/elements/stmt/LabeledConditionalStmt.qll 77c2dc7bfa551dd96109ee64ca9bbd5774a36762dd00cfad89a21eaf237e1f18 2b082cc547b431391f143d317c74fe7a3533f21cd422a6bd3c9ef617cacecc0f
+ql/lib/codeql/swift/elements/stmt/PoundAssertStmtConstructor.qll 70a0d22f81d7d7ce4b67cc22442beee681a64ac9d0b74108dfa2e8b109d7670e 08fee916772704f02c560b06b926cb4a56154d01d87166763b3179c5d4c85542
+ql/lib/codeql/swift/elements/stmt/RepeatWhileStmtConstructor.qll e19d34dbf98501b60978db21c69abe2b77896b4b6379c6ff02b15c9f5c37270e a72db7c5cb0eb5be7b07cbddb17247d4d69d2bb8cbc957dc648c25fa6c0636ce
+ql/lib/codeql/swift/elements/stmt/ReturnStmtConstructor.qll ade838b3c154898f24a8e1d4ef547d460eac1cd6df81148ffb0f904d38855138 c00befd9ac0962172369319d7a791c44268413f760f2ac5e377fdee09c163101
+ql/lib/codeql/swift/elements/stmt/Stmt.qll 18aaec168417ad00fcb7fa120f9b4251b6a260ab7e31799687ac57b31c4a4819 014e29f6cc639359708f4416b1719823218efa0e92dc33630ecfc051144c7ac0
+ql/lib/codeql/swift/elements/stmt/StmtConditionConstructor.qll 599663e986ff31d0174500788d42a66180efb299769fc0f72a5c751621ddb9e2 8da4524319980f8039289165d01b53d588180cc1139b16ea7a6714b857086795
+ql/lib/codeql/swift/elements/stmt/SwitchStmtConstructor.qll e55c4bda4e8c1b02e8bb00b546eca91b8797c9efb315d17aa9d7044bef0568b9 a8315347d620671ec752e7ff150faa6e6cbb2353773bc16f1d0162aa53f2c8ed
+ql/lib/codeql/swift/elements/stmt/ThrowStmtConstructor.qll 5a0905f1385b41e184c41d474a5d5fa031ed43e11c0f05b0411de097302cf81c 658daa8e97de69ed0c6bb79bc1e945c39bac9ff8d7530bd4aca5a5d3e3606a3a
+ql/lib/codeql/swift/elements/stmt/WhileStmtConstructor.qll 9b5711a82db7c4f2c01f124a1c787baa26fd038433979fd01e778b3326c2c357 4e89d6b2dfefd88b67ec7335376ea0cdccab047319a7ec23113728f937ff1c26
+ql/lib/codeql/swift/elements/stmt/YieldStmtConstructor.qll c0aa7145a96c7ba46b904e39989f6ebf81b53239f84e5b96023ea84aef4b0195 50908d5ee60b7bc811ca1350eff5294e8426dbbab862e0866ef2df6e90c4859c
+ql/lib/codeql/swift/elements/type/AnyBuiltinIntegerType.qll f89e8ede8fc455a74ad643521d3910dc27b29359f7e15b0333d823831b7cd20c bbd9611e593c95c7ddff9d648b06b236f1973759f5cd3783d359ddb7d2c7d29e
+ql/lib/codeql/swift/elements/type/AnyFunctionType.qll 9a2f25f7f72aa80a2dcd936886dfda32f2b48ae44b79da58dbad5201ef4d7375 c7154b0018d161a6dcf461f351f37b2b4f6813968d2c2d0b1e357ea8c6f50710
+ql/lib/codeql/swift/elements/type/AnyGenericType.qll 9020d36bc6899c7f305cd99403d007c6d63fadfa080b4ec57372e7a76ca60975 4474fb21ac3f092f6c1e551cd9cf397abaa721ac2e30019b1d1a3974224d907d
+ql/lib/codeql/swift/elements/type/AnyMetatypeType.qll d71d790b77c2d83f3637a1fbf2bae77ac5e95d8dc81a7fd662c22db586eea71c c73a76b03eee2faee33bb7e80ab057dbc6c302d9c8d5bfa452a7e919f86d942a
+ql/lib/codeql/swift/elements/type/ArchetypeType.qll 5dba765115cc421e84c56e196d2a2d70310f3d8048aa78bd3b2042785aa5e880 28190086005e4e14b0556162d18aafe4d59eef0cb69e1a02bc440b27db012197
+ql/lib/codeql/swift/elements/type/ArraySliceType.qll 57184bc51fb02bc966d1ae143750a2a82e704dc52d20e314965420a83ebd9164 21d15a7dab938ce81de00b646b897e7348476da01096168430a4a19261b74f6d
+ql/lib/codeql/swift/elements/type/ArraySliceTypeConstructor.qll a1f1eb78e59c6ddf2c95a43908b11c25e2113c870a5b0b58e00b1ef5e89974c0 f0b4681e070343a13ee91b25aa20c0c6a474b701d1f7ea587ad72543a32dab72
+ql/lib/codeql/swift/elements/type/BoundGenericClassType.qll 7d02a471484de918f1395638f6e8017a3301f8953016c9ed62300308c6e2b6ac 284da181c967e57023009eb9e91ed4d26ae93925fea07e71d3af0d1b0c50f90a
+ql/lib/codeql/swift/elements/type/BoundGenericClassTypeConstructor.qll 1174753a0421f88abdca9f124768946d790f488554e9af3136bb0c08c5a6027f c6565c9f112f1297e12f025865d6b26c6622d25a8718de92222dd4fb64ede53e
+ql/lib/codeql/swift/elements/type/BoundGenericEnumType.qll 685670068892a04cd20b718118c46c768488807a57cc75102b3d6be5b07e3c94 c394d8e963e2edec82b27368dc7832c033dbf56a8acd8990ff6cf825c29cc7d9
+ql/lib/codeql/swift/elements/type/BoundGenericEnumTypeConstructor.qll 4faf2e4f76d446940d2801b457e8b24f5087494b145bae1e1e0a05ba2e8d4eee eda2bdd1b9f2176d8a6c78de68ae86148e35f5d75d96d78a84995ae99816f80e
+ql/lib/codeql/swift/elements/type/BoundGenericStructType.qll 8e87dbeb3bad4c3b37a5260aadfac5b6c15c067a84be376ba8b5c3cf0794bd21 a3f7a3549ff7ab0bdbfda7da4c84b125c5b96073744ae62d719e9d3278e127cf
+ql/lib/codeql/swift/elements/type/BoundGenericStructTypeConstructor.qll 9bc4dd0ffc865f0d2668e160fb0ce526bb4aa7e400ad20a10707aad839330d31 a0f28828125726f1e5d18ed7a2145ad133c3a2200523928b69abbdc1204e3349
+ql/lib/codeql/swift/elements/type/BoundGenericType.qll 1854ab70126e449cb64e9ac00b2eb465d1fac342e172a4eff6e7417a5d663d0e 86a3a2c73a837a4c58d104af5d473fe3171bd12b03d7a2862cc0ec6d2e85667f
+ql/lib/codeql/swift/elements/type/BuiltinBridgeObjectType.qll 86971ec94ed0b5db7b33484d310c01e3b7d835e7845e7ec6f5f7a3e3df3bfe3d d5f2623c2742b9c123bd6789215f32dcb8035475c98b792e53c6ef583e245f65
+ql/lib/codeql/swift/elements/type/BuiltinBridgeObjectTypeConstructor.qll e309fbf1bb61cc755fd0844697f8d587c63477fe11947f4af7d39b07fc731e8f 41acdb0acf0f2eb6b1b38fb57cbbf4dfcec46afc089798b829c1ffc0539cd0fc
+ql/lib/codeql/swift/elements/type/BuiltinDefaultActorStorageType.qll 3f2a38da5222ebddcd9c0ef7ddccf84e26616a56e19978a2caa725ee6743e594 96777d099fe5e06a17e5770ce73fa4f50eefbe27703218871dc7dec4c2e8e11f
+ql/lib/codeql/swift/elements/type/BuiltinDefaultActorStorageTypeConstructor.qll 645d8dd261fffb8b7f8d326bcdd0b153085c7cf45fe1cc50c8cb06dbe43a9d8d 0424cf62f6f0efb86a78ba55b2ef799caf04e63fdf15f3f8458108a93ee174b1
+ql/lib/codeql/swift/elements/type/BuiltinExecutorType.qll 226a09b42840529bd31c4e9795d570466462a8e5e1833edbcb36fc96458a33b3 bb2f7e62295b20fa07cc905ef0329293c932ab8ad115f8d37aa021e421b425c0
+ql/lib/codeql/swift/elements/type/BuiltinExecutorTypeConstructor.qll 72545245dbf61a3ab298ece1de108950c063b146a585126753684218ad40ea10 b926c1688325022c98611b5e7c9747faf0faf8f9d301d976aa208a5aace46e0d
+ql/lib/codeql/swift/elements/type/BuiltinFloatType.qll 7b307414ec4175d87ef715abe950830214785eca4728bfe32542f89f061cc3a6 3dfa2ed2e1f469e1f03dcc88b29cb2318a285051aa2941dcc29c7c925dad0d29
+ql/lib/codeql/swift/elements/type/BuiltinFloatTypeConstructor.qll 4254aa8c61c82fbea44d3ca1a94876546024600a56ac88d0e622c6126dfe6b9f 953f0fcb52668e1a435f6cabf01f9c96c5fc1645bf90b8257907218a4ce51e02
+ql/lib/codeql/swift/elements/type/BuiltinIntegerLiteralType.qll 5ca7d5b579924cd37d67703ce032fd626f6f2e53aecbd8246284471a7c766237 462bfc80eb0cfe478562fc5dcade8e6a1ecdd958b26481e4df19ecf632e72a7f
+ql/lib/codeql/swift/elements/type/BuiltinIntegerLiteralTypeConstructor.qll 21c0ba7a316accd4197d57dafbeb7ce356ccef0a376e9188ec78b3e9a7d046bd 165f4a30ffb1fa34ee94c69975cbea57d940aea2e46558af7eff3a1941a269c2
+ql/lib/codeql/swift/elements/type/BuiltinIntegerType.qll ba9c4722bc8adcd3b81a516f228a2d1d6c6900a0a74c1586e6fda11fdc57cde9 2807cb11ca75f8d8cc3bc87159786528f7f28e6c594ee79bf0984d0dd960d524
+ql/lib/codeql/swift/elements/type/BuiltinIntegerTypeConstructor.qll 8e738b8996c0b1612900dd40d6dd9ea395e7463a501feb04cc3c27e7fe73ee02 c517e29002513b5ae6d05d52bc3f7e8a85f33f6e9be0f56cdd53eb25de0c9cb9
+ql/lib/codeql/swift/elements/type/BuiltinJobType.qll 77ae06df788a1d6bdf060525f842408fb5ff773397862d30dfd46f80fe889c64 7c381ec2a6be2991518cfeef57be62238f50c27845cad8b72434c404ecc5c298
+ql/lib/codeql/swift/elements/type/BuiltinJobTypeConstructor.qll a63724058d426fc38c092235adec6348aa9ea302aca408d4e9721d924ec28539 abf1263e6fad8f3de7692340399f013010f39c01f5fe93b92a491b7301be998c
+ql/lib/codeql/swift/elements/type/BuiltinNativeObjectType.qll 5fddd40563fdff908bd357c5b34086b927f9e615554a8c0942a3bc24ee5936fc 3225e0b8e70f488b84d02b84ef02bf1a3ac879d8f442de2b6d2c3ae53445e8e8
+ql/lib/codeql/swift/elements/type/BuiltinNativeObjectTypeConstructor.qll 9ec77aa1da74d7fe83a7c22e60a6b370d04c6859e59eed11b8dbc06a1ac8e68b bd9dcd8c5317d13a07695c51ff15f7d9cbf59ad7549301d42950caf5c6cc878f
+ql/lib/codeql/swift/elements/type/BuiltinRawPointerType.qll 06ebac74cfcdc7195de3159d528288afb32786a071e42c2ede932666d89ea4d3 d2f6b327e6c5d4ff9382041bcebad2b9312eb86116c42b24b88c558b10a7561a
+ql/lib/codeql/swift/elements/type/BuiltinRawPointerTypeConstructor.qll 7f77e1c768cb46b0eb8b08bb36e721417b95f1411bd200636ffdfc4e80c3c5c3 ce0916e95044ad74f5d7e762f3cc22065cc37e804f094e6067908bd635da6d97
+ql/lib/codeql/swift/elements/type/BuiltinRawUnsafeContinuationType.qll c91a28c12be5694004e02680d5d32bc3b67208ef6a7e0f9ab04cd4a7bb3a83ed 81682a768dcbcd72b2f13b5257e1f05b642e762de92bb3f0e275f863bad261c7
+ql/lib/codeql/swift/elements/type/BuiltinRawUnsafeContinuationTypeConstructor.qll f5a6c5ea5dd91c892f242b2a05837b2a4dd440365a33749994df8df30f393701 2eab1e5815c5f4854f310a2706482f1e7b401502291d0328d37184e50c0136b9
+ql/lib/codeql/swift/elements/type/BuiltinType.qll 6031ef4546c562d127d7c7120d12b9183021f2d9ff171ebf41ffa8491ce1a628 8e02dc1d67222a969ba563365897d93be105a64ec405fd0db367370624796db2
+ql/lib/codeql/swift/elements/type/BuiltinUnsafeValueBufferType.qll 2feff34c6e0c3cb22ff287b4b0fd7bac97ce796289175524a63c0a16258ef966 27a98fe13786b8d59d587ac042e440dec6699c76eb65288bbff6d374c28bfc53
+ql/lib/codeql/swift/elements/type/BuiltinUnsafeValueBufferTypeConstructor.qll 08a3a0f1ab53739a0db79a185a0e05538c1b7c7318b25bea93e0044ad98a3c6b fb8bb4ca4b20c6581d4419ac48581bf6e75b20e1612a953e31a7207c7dd0a0d8
+ql/lib/codeql/swift/elements/type/BuiltinVectorType.qll cfe1887a0f626704881622fb63287bc408fcf72022c8ba7f3bd14974068f36a5 df375c900db766f3f66dc022cb6302f2000bda90b5f2f023be992519948151f1
+ql/lib/codeql/swift/elements/type/BuiltinVectorTypeConstructor.qll 81d10e15693a33c51df659d4d8e8fa5dedea310415f580c6861e0043d36e83d3 3f60d067b860f3331edb5c0e67b2e9e469b78a9bcdb39a2f3a8724c6a6638f5e
+ql/lib/codeql/swift/elements/type/ClassType.qll a69b0552206ca564124dfc9befd6288c0b84dcbadfd758baa85a33e0d8b820e8 a50d11cff50d948fcbbe3d27332f7e5842291844eaee9750d72063b7d2c0d7c2
+ql/lib/codeql/swift/elements/type/ClassTypeConstructor.qll 0c462e43cc8139d666fe1d77b394f29f4141064c9295ec3581fe20f920cbbbe7 43cce957ebb274ff34f14ca8bdcf93ab9c81a27a204fa56e37d7d17c4a469600
+ql/lib/codeql/swift/elements/type/DependentMemberType.qll 5d57942f02b68fce9970176a15365cd5a4e7c8092f886781388098d53cdc8615 46b2e84f7731e2cc32b98c25b1c8794f0919fbd3c653ba9b2e82822ab351e164
+ql/lib/codeql/swift/elements/type/DependentMemberTypeConstructor.qll 8580f6bbd73045908f33920cbd5a4406522dc57b5719e6034656eec0812d3754 fdeba4bfc25eecff972235d4d19305747eaa58963024735fd839b06b434ae9f2
+ql/lib/codeql/swift/elements/type/DictionaryType.qll b5b815ec4518781ccc600caaea81371e95fbee8a97803e5dce8e0bfc8789bae6 6b6901e8331ae2bd814a3011f057b12431f37b1ad57d3ecdaf7c2b599809060f
+ql/lib/codeql/swift/elements/type/DictionaryTypeConstructor.qll 663bd10225565fab7ecd272b29356a89750e9fc57668b83bdb40bfb95b7b1fcb 5bfe2900eceee331765b15889357d3b45fc5b9ccaf034f13c76f51ad073c247f
+ql/lib/codeql/swift/elements/type/DynamicSelfType.qll 7ba19e4fa1a8bbbc41fb08c16abbd1949feebe8ddadad7d3dfcb525f2abf5746 f9544f83ee11ae2317c7f67372a98eca904ea25667eeef4d0d21c5ef66fe6b28
+ql/lib/codeql/swift/elements/type/DynamicSelfTypeConstructor.qll f81ea2287fade045d164e6f14bf3f8a43d2bb7124e0ad6b7adf26e581acd58ff 73889ef1ac9a114a76a95708929185240fb1762c1fff8db9a77d3949d827599a
+ql/lib/codeql/swift/elements/type/EnumType.qll d5428bcca8398cfbf706689b32390460d8c93cc2c733ceb10432ed496d11579d 7eb0dad9ffc7fad2a22e68710deac11d5e4dfa18698001f121c50850a758078f
+ql/lib/codeql/swift/elements/type/EnumTypeConstructor.qll aa9dbd67637aae078e3975328b383824a6ad0f0446d17b9c24939a95a0caf8df 1d697f400a5401c7962c09da430b8ce23be063aa1d83985d81bcdc947fd00b81
+ql/lib/codeql/swift/elements/type/ErrorType.qll ac897e297783736a984eb6168be9b300b7a2a536ae3988b6ec29426a38bc11f0 c02282abefeb4c93938cc398d4c06ccd2be2c64e45612f20eafc73783fa84486
+ql/lib/codeql/swift/elements/type/ErrorTypeConstructor.qll b62dcd329e8bba82bd70aa439ed4d0ddb070da6fcd3ce5ce235e9c660ce5b5a8 43e3c4b7174bc17ca98c40554c2dbae281f1b66617d8ae59e8f970308fd24573
+ql/lib/codeql/swift/elements/type/ExistentialMetatypeType.qll 2b37fa25e3a06b42b3ecb211c1d4ca72f85a99474714811ef5e89d5c2e5e4592 e22e904092b9c5784aa2890968a27265df277c60f88d968e2546f39ab6454536
+ql/lib/codeql/swift/elements/type/ExistentialMetatypeTypeConstructor.qll a6b088425c0b0993b3ba3649a49c72c15c7bb3b369f610a7971d5cef858ed9b8 56e8663f9c50f5437b6f8269e41675e8832cfae7aa3b204fa03b86d4f35ce9ff
+ql/lib/codeql/swift/elements/type/ExistentialType.qll 8cc0eb534ea2152dcd83e986103616c4f7aa31f0c0e23c73c1addcb39e3758b2 0d5ef028a6bd998fa2de2f4456bf7519202a2f0e66f2bc98bcb43c8af686cade
+ql/lib/codeql/swift/elements/type/ExistentialTypeConstructor.qll bc9bd26dc789fe389c5f9781a0d5465189c4b685ef29cd9ca3488c64b5423e45 d9977de27830d154e2afa34c3c69a7a02b750eda00a21a70554ca31c086cfe2e
+ql/lib/codeql/swift/elements/type/FunctionType.qll e2d289fcb9e2fabfaef2a1265b29fa1595e3e188eec7d8d5847ad7d2862d4a6e 1bfc06f2ca2abf5861602fc45ab4531f69bf40646ac39a12f3b6dba8e43b0b21
+ql/lib/codeql/swift/elements/type/FunctionTypeConstructor.qll 1fa2829f1ee961a1ce1cfd8259a6cc88bedcbee0aad7aece207839b4066e73f4 8537e7e2f61998e5cf1920fb872089e68b81d67d5e9939611117e7e5a6d62eb5
+ql/lib/codeql/swift/elements/type/GenericFunctionType.qll 06446c074997ba2b99aa0f4f5d1928e01117e431326578e2ead6294abd90daf0 6d52f6ee2f3b6e9976d473d0d33ab1b9b3274f1e6b352f2d1e33215a27d68ad4
+ql/lib/codeql/swift/elements/type/GenericFunctionTypeConstructor.qll cd3099dfa77dc5186c98e6323a0e02f6496e5b2ab131aab7b3dac403365607d0 cf6c83cef81a52c336e10f83f3eff265df34d97fbe5accdebaccfa24baefe07b
+ql/lib/codeql/swift/elements/type/GenericTypeParamType.qll 6881305d3599d5a511561e4eae0664a5681d8cbb2aa6718dfffcde943474cef0 e1288015ff8a0261edc1876320ea475180d0e6e75f4b5565b1ccd1498949740f
+ql/lib/codeql/swift/elements/type/GenericTypeParamTypeConstructor.qll 4265701fad1ad336be3e08e820946dcd1f119b4fa29132ae913318c784236172 d4bf5127edc0dfa4fb8758081a557b768c6e4854c9489184c7955f66b68d3148
+ql/lib/codeql/swift/elements/type/InOutType.qll d2f6be1da40e93a6d6745b467824b1e974bb64ec56378dc328cc3e864c54e433 942f46afd617151783c79c69d96234aa4ca5741084b12b3d8349338cebb99cc2
+ql/lib/codeql/swift/elements/type/InOutTypeConstructor.qll c4889f1009018a55d0ac18c5f2a006572ac6de1f57633adc904e8a2046c09e83 8a2496df02e9f5fcb07331165cee64f97dd40dc4b4f8f32eacaf395c7c014a99
+ql/lib/codeql/swift/elements/type/LValueType.qll 60a55935763564f2fa7a5ca71af5ac59914289435d2385aee9a01e5d161b1600 daa1eacb13397c20fe3c092e4b7f7f5798da43005bad61c0fef2b18357770b01
+ql/lib/codeql/swift/elements/type/LValueTypeConstructor.qll e426dac8fce60f9bbd6aa12b8e33230c405c9c773046226c948bc9791e03c911 4d495938b0eb604033cea8ff105854c0c9917dbad59bb47a8751fc12d7554bdd
+ql/lib/codeql/swift/elements/type/MetatypeType.qll 5d2995b2269ec118daf81268cca62beaa4189e65cae32ef7ec83b9129858cef8 34c021dc051d5d80410cd7aa25b45ccd2d7b267b2bbcb92f4249f528f524c5d8
+ql/lib/codeql/swift/elements/type/MetatypeTypeConstructor.qll 5dfa528a0c849afa46ad08c4c92e47c3bc3418abb7674e94a0d36bc0e45d5686 6b95579b99e4cdd53cc95d9288ecbdb07ef268e5344e467336d89adddb7cc853
+ql/lib/codeql/swift/elements/type/ModuleType.qll 5f7540f8520ee7e3c7c15c1f7da269e4acd4b02b57912902e3d334fc53a9ac76 2b6cec36c543c6319178415b9ccb29e4f840b1f6e8b760a83d0f9399722995da
+ql/lib/codeql/swift/elements/type/ModuleTypeConstructor.qll da4d1836c7e453d67221f59d007b5aff113ee31b4c9ad9445c2a7726851acf9b c902ed1ffbde644498c987708b8a4ea06ab891ffd4656ab7eb5008420bd89273
+ql/lib/codeql/swift/elements/type/NominalOrBoundGenericNominalType.qll 76248640645cf2f6ad096a73189447b3b42565e91d8f85ee1a0e3922a231c1a5 bf7e4ff426288481e9b6b5c48be7ff10a69ace0f2d2a848462c21ad9ec3167b7
+ql/lib/codeql/swift/elements/type/OpaqueTypeArchetypeType.qll fe987d7f715f118695b43ceebd4ab6c7fc9eab1530fbb54f3b79b8edfb5666a2 73bf49c826d791678af964d51836c0e1693e994465af9531aa4d1a542455c93f
+ql/lib/codeql/swift/elements/type/OpaqueTypeArchetypeTypeConstructor.qll 20c8aa032f25f2e9759d69849e943e7049a22f8b452c055591be982f8c1aee2b 17341a9c4ec4bbad59c82d217501c771df2a58cb6adb8f1d50cf4ec31e65f803
+ql/lib/codeql/swift/elements/type/OpenedArchetypeType.qll a69b4dc52f6e25014a0db401ca90a7f827c1c906cc91ab9dd18be6b3296acefe 49fd53e2f449da6b2f40bf16f3e8c394bf0f46e5d1e019b54b5a29a3ad964e2b
+ql/lib/codeql/swift/elements/type/OpenedArchetypeTypeConstructor.qll cc114bee717de27c63efed38ddb9d8101e6ba96e91c358541625dc24eb0c6dd5 92c1f22b4c9e0486a2fd6eca7d43c7353ac265026de482235d2045f32473aeb7
+ql/lib/codeql/swift/elements/type/OptionalType.qll 27e81ae79cbfa22c8cda3839ebaac95d11abf68615caedc2bd8c0c3362cbc7c6 37be60f19fd806fa4e1c66d6bee4091e1fb605861d1f79aa428a1e7b6b991280
+ql/lib/codeql/swift/elements/type/OptionalTypeConstructor.qll 61219c8fa7226e782b36e1f5a2719272e532146004da9358e1b369e669760b7e 74621440a712a77f85678bc408e0f1dc3da4d0971e18ef70c4de112800fc48ac
+ql/lib/codeql/swift/elements/type/ParameterizedProtocolType.qll 342a6a5bc7709d9de4819041e1b9b85caf8d716e4b817020d4eff12d8790006c 78b09022b0f9448d347c9faf7b8373ebae40c889428e342e0cefbd228ceff053
+ql/lib/codeql/swift/elements/type/ParameterizedProtocolTypeConstructor.qll 549649fd93b455bb6220677733a26539565240bc8b49163e934e9a42ebebd115 3886762d26172facf53a0baab2fe7b310a2f356cf9c30d325217ba2c51c136f4
+ql/lib/codeql/swift/elements/type/ParenType.qll 8a1aaf7c3e4c354a3848b3285d0261d1dc14324d65dfa64986cc9240f3869eed cde8c9488dfefbbdb177c6d37f7aa3f9c2f327e0d92383b294fbd2172bba2dff
+ql/lib/codeql/swift/elements/type/ParenTypeConstructor.qll a8dc27a9de0d1492ba3bab4bf87aa45e557eccf142cee12ffde224cd670d41df a08ce80fcd6255bc2492e2447c26210631ca09a30c4cc3874eb747ae1153bf66
+ql/lib/codeql/swift/elements/type/PrimaryArchetypeType.qll f9807812ae3827e0f195935b44528537ff91e769df131ac4755b0547c113834d c950a30ba14eaad1b72d944b5a65ba04dd064726cf65061b472fefdfa8828dbb
+ql/lib/codeql/swift/elements/type/PrimaryArchetypeTypeConstructor.qll a0d24202332449b15a1e804959896f045c123e2153291a7a2805473b8efbb347 1be1fbfbff1bb63f18402e4e082878b81d57708cfc20d1499f5fd91e8332b90b
+ql/lib/codeql/swift/elements/type/ProtocolCompositionType.qll 97bdcfde6955bef578f121f803ce5cea42ebca80568ae6eb8d3451f079b8fd3d 3048be59e02ee821e8bf2d470b8901f61b18075696d598babda1964b2b00cbde
+ql/lib/codeql/swift/elements/type/ProtocolCompositionTypeConstructor.qll b5f4d7e73ea9281874521acf0d91a1deb2f3744854531ee2026913e695d5090d be55225d2fd21e40d9cacb0ad52f5721fed47c36a559d859fba9c9f0cb3b73c3
+ql/lib/codeql/swift/elements/type/ProtocolType.qll 7f6806952e1fe87648516cdc310370ccd886a53f4a2014e9d62cd6ce14dbd7c3 527b2acdc24eca89847fa80deb84b9584d9c92fab333724f5994dfb5e475269d
+ql/lib/codeql/swift/elements/type/ProtocolTypeConstructor.qll c0252a9975f1a21e46969d03e608d2bd11f4d1f249406f263c34232d31c9574d 145e536a0836ed5047408f0f4cf79ab8855938e99927e458d3a893cd796fda74
+ql/lib/codeql/swift/elements/type/ReferenceStorageType.qll 12966c9aeaec22d3991ba970a314d8618971f7f6a579f249c88c47333fc518a2 5635deaf09199afe8fff909f34f989c864c65447c43edf8d8e2afdf0e89a7351
+ql/lib/codeql/swift/elements/type/StructType.qll 1b92a9a6107abd816d00193b910ab236de700299793b90fa50bfbea6e0055f45 07d5b0a29e946a7e5bf6dc131b6373745f75dbdbca6fe6a3843d4b0ba7ab0309
+ql/lib/codeql/swift/elements/type/StructTypeConstructor.qll a784445a9bb98bb59b866aff23bbe4763e02a2dc4a268b84a72e6cd60da5b17d 8718e384a94fd23910f5d04e18f2a6f14b2148047244e485214b55ae7d28e877
+ql/lib/codeql/swift/elements/type/SubstitutableType.qll 2dc4774a5b6c941376e37785b34891e9311075715af840273322fd422e93e671 cdc27e531f61fb50aaa9a20f5bf05c081759ac27df35e16afcdd2d1ecdac5da0
+ql/lib/codeql/swift/elements/type/SugarType.qll d13faf1eb71d9fa1d6fd378455cbbcfea49029e94303e33f1d08bb03d115d654 cbcbd68098b76d99c09e7ee43c9e7d04e1b2e860df943a520bf793e835c4db81
+ql/lib/codeql/swift/elements/type/SyntaxSugarType.qll 0843801d8abcb3090a6dc8c41cce5d60bba47761aa68f3c89ce21cf659696af5 a7a002cf597c3e3d0fda67111116c61a80f1e66ab8db8ddb3e189c6f15cadda6
+ql/lib/codeql/swift/elements/type/TupleType.qll ef49280a8d01acf3ecba2d3c12b512d3d3480048c412d922a1997cb1ac76fc6b 0b34c17ce9db336d0be9a869da988f31f10f754d6ffab6fa88791e508044edd2
+ql/lib/codeql/swift/elements/type/TupleTypeConstructor.qll 060633b22ee9884cb98103b380963fac62a02799461d342372cfb9cc6303d693 c9a89f695c85e7e22947287bcc32909b1f701168fd89c3598a45c97909e879f4
+ql/lib/codeql/swift/elements/type/TypeAliasType.qll 615273f833d588940a32e16adacdfa56b6ac480e1aca6ebd11adfaa878b6d19e 760c79b9b581cc645f1002ca892656d406d3d339267fd58e765738257dbb45ce
+ql/lib/codeql/swift/elements/type/TypeAliasTypeConstructor.qll f63ada921beb95d5f3484ab072aa4412e93adfc8e7c0b1637273f99356f5cb13 f90d2789f7c922bc8254a0d131e36b40db1e00f9b32518633520d5c3341cd70a
+ql/lib/codeql/swift/elements/type/TypeReprConstructor.qll 2bb9c5ece40c6caed9c3a614affc0efd47ad2309c09392800ad346bf369969bf 30429adc135eb8fc476bc9bc185cff0a4119ddc0e618368c44f4a43246b5287f
+ql/lib/codeql/swift/elements/type/UnarySyntaxSugarType.qll 072fbc064fb059a49befab907dd6049b4bf1a28e4ba3fcddf3e73d7913bc3906 0b113b1a7834779fabfa046a64c6d256cde0f510edb84da253e89d36f41f8241
+ql/lib/codeql/swift/elements/type/UnboundGenericType.qll 21878a4bf3ad77085812ad55c85e3ed0257cad10e6d7c72e513aae81616ef405 cca58789f97e51acb9d873d826eb77eda793fc514db6656ee44d33180578680c
+ql/lib/codeql/swift/elements/type/UnboundGenericTypeConstructor.qll 63462b24e0acceea0546ec04c808fb6cf33659c44ea26df1f407205e70b0243d d591e96f9831cce1ca6f776e2c324c8e0e1c4e37077f25f3457c885e29afbf3e
+ql/lib/codeql/swift/elements/type/UnmanagedStorageType.qll 3e8276cc1bae19f448027d2a0629c95c0b58b3e096b898ef006cb5eaea613908 d32206af9bf319b4b0b826d91705dbd920073d6aaa002a21ec60175996ab9d1a
+ql/lib/codeql/swift/elements/type/UnmanagedStorageTypeConstructor.qll c5927ab988beb973785a840840647e47cc0fb6d51712bed796cb23de67b9d7d6 b9f0f451c58f70f54c47ad98d9421a187cf8bd52972e898c66988a9f49e4eda0
+ql/lib/codeql/swift/elements/type/UnownedStorageType.qll 18923326a76bcfa31697551fb001a06b2a38ea074fa312c47953dd9a7ac16604 3b5d90688070be5dc0b84ab29aed2439b734e65d57c7556c6d763f5714a466ba
+ql/lib/codeql/swift/elements/type/UnownedStorageTypeConstructor.qll 211c9f3a9d41d1c9e768aa8ece5c48cca37f7811c5daab8bf80fdc2bd663dd86 c4fb8b39d319e1c27175f96ceec9712f473e0df1597e801d5b475b4c5c9c6389
+ql/lib/codeql/swift/elements/type/UnresolvedType.qll d573017fef5394a11d43cdcbaad91060e0b1e4c9ba6f2a9e358f818176ca8f45 680dd2fc64eeec5f81d2c2a05221c56a1ef7004bdcb1a8517640caa5fba0890d
+ql/lib/codeql/swift/elements/type/UnresolvedTypeConstructor.qll 76c34ca055a017a0fa7cfff93843392d0698657fbf864ac798e1ae98325b3556 d0770637ec9674f9e2a47ad5c59423b91d12bb22a9d35dcfa8afa65da9e6ed93
+ql/lib/codeql/swift/elements/type/VariadicSequenceType.qll 5bca77dd661d3b2653d31005c2341b408c86661e89ae0cab9539999ecac60eea 3ac870a1d6df1642fae26ccda6274a288524a5cf242fab6fac8705d70e3fca88
+ql/lib/codeql/swift/elements/type/VariadicSequenceTypeConstructor.qll 0d1d2328a3b5e503a883e7e6d7efd0ca5e7f2633abead9e4c94a9f98ed3cb223 69bff81c1b9413949eacb9298d2efb718ea808e68364569a1090c9878c4af856
+ql/lib/codeql/swift/elements/type/WeakStorageType.qll 87a28616eea3600fb0156fffcd65eeddc1ea74ce9c0ba5886c6365b9359e00ce 9c968414d7cc8d672f3754bced5d4f83f43a6d7872d0d263d79ff60483e1f996
+ql/lib/codeql/swift/elements/type/WeakStorageTypeConstructor.qll d88b031ef44d6de14b3ddcff2eb47b53dbd11550c37250ff2edb42e5d21ec3e9 26d855c33492cf7a118e439f7baeed0e5425cfaf058b1dcc007eca7ed765c897
+ql/lib/codeql/swift/elements.qll af0ce7fc361a5cffdbdfbe1c7ff2a5addf6b8a79e3fc062f266776bc97886c33 af0ce7fc361a5cffdbdfbe1c7ff2a5addf6b8a79e3fc062f266776bc97886c33
+ql/lib/codeql/swift/generated/AstNode.qll 02ca56d82801f942ae6265c6079d92ccafdf6b532f6bcebd98a04029ddf696e4 6216fda240e45bd4302fa0cf0f08f5f945418b144659264cdda84622b0420aa2
+ql/lib/codeql/swift/generated/Callable.qll f4050fac68d745fe0fc4d7bd6cff7c326d6c19a5820a780e1d7e589328b1e550 b6540534acc0b583481a18918264b95a129f13ad26256abe667bf4f72c4432d2
+ql/lib/codeql/swift/generated/Comment.qll f58b49f6e68c21f87c51e2ff84c8a64b09286d733e86f70d67d3a98fe6260bd6 975bbb599a2a7adc35179f6ae06d9cbc56ea8a03b972ef2ee87604834bc6deb1
+ql/lib/codeql/swift/generated/DbFile.qll a49b2a2cb2788cb49c861ebcd458b8daead7b15adb19c3a9f4db3bf39a0051fc a49b2a2cb2788cb49c861ebcd458b8daead7b15adb19c3a9f4db3bf39a0051fc
+ql/lib/codeql/swift/generated/DbLocation.qll b9baea963d9fa82068986512c0649d1050897654eee3df51dba17cf6b1170873 b9baea963d9fa82068986512c0649d1050897654eee3df51dba17cf6b1170873
+ql/lib/codeql/swift/generated/Diagnostics.qll d2ee2db55e932dcaee95fcc1164a51ffbe1a78d86ee0f50aabb299b458462afe 566d554d579cadde26dc4d1d6b1750ca800511201b737b629f15b6f873af3733
+ql/lib/codeql/swift/generated/Element.qll 9caf84a1da2509f5b01a22d6597126c573ae63ec3e8c6af6fd6fcc7ead0b4e82 70deb2238509d5ed660369bf763c796065d92efd732469088cdf67f68bacd796
+ql/lib/codeql/swift/generated/ErrorElement.qll 4b032abe8ffb71376a29c63e470a52943ace2527bf7b433c97a8bf716f9ad102 4f2b1be162a5c275e3264dbc51bf98bce8846d251be8490a0d4b16cbc85f630f
+ql/lib/codeql/swift/generated/File.qll 61454459f5f1ae378bd4970ad1da4f39f3e696bac8a5eebdd162f131995c5316 3e6805f8858cd55dd0e0d0e5aeab923d6a55292dbf98b0029db1ae0208efe684
+ql/lib/codeql/swift/generated/Locatable.qll bdc98b9fb7788f44a4bf7e487ee5bd329473409950a8e9f116d61995615ad849 0b36b4fe45e2aa195e4bb70c50ea95f32f141b8e01e5f23466c6427dd9ab88fb
+ql/lib/codeql/swift/generated/Location.qll 851766e474cdfdfa67da42e0031fc42dd60196ff5edd39d82f08d3e32deb84c1 b29b2c37672f5acff15f1d3c5727d902f193e51122327b31bd27ec5f877bca3b
+ql/lib/codeql/swift/generated/ParentChild.qll 9d6fe5dd7ab99fa9afdc1bd846e21ce951613bbe6a89d4e34c29e36466a8293f e0e59a05018e4b59ebda3a9fdc3435b1c82207b915630d55edbe6d3f92488356
+ql/lib/codeql/swift/generated/PureSynthConstructors.qll 1cd47d61fec37e019ce2e476603eb2273775bea81062d6bf3d6bbc49796f7b77 1cd47d61fec37e019ce2e476603eb2273775bea81062d6bf3d6bbc49796f7b77
+ql/lib/codeql/swift/generated/Raw.qll 34ce12e57d0cfffb8ca127e44041fece4ac6079cb2a80d14e0a05c0a8d344fdd dd7b6f54f2cc4ba1d8ed31168f97e3f6f8197ebb4d759e0bed0ed68d55a43c25
+ql/lib/codeql/swift/generated/Synth.qll 90df85be365c89c3c2e22041ee7dc9dd2ad9194b66f82e8f9d8fefb8afd900ec 1632984f7a55f6bc55adb9f647baf634b002c299655cbf641dfb110525291689
+ql/lib/codeql/swift/generated/SynthConstructors.qll 5c91f09bd82728651ed61f498704e0f62847788fa986dec5e674d81f294076c7 5c91f09bd82728651ed61f498704e0f62847788fa986dec5e674d81f294076c7
+ql/lib/codeql/swift/generated/UnknownFile.qll 0fcf9beb8de79440bcdfff4bb6ab3dd139bd273e6c32754e05e6a632651e85f6 0fcf9beb8de79440bcdfff4bb6ab3dd139bd273e6c32754e05e6a632651e85f6
+ql/lib/codeql/swift/generated/UnknownLocation.qll e50efefa02a0ec1ff635a00951b5924602fc8cab57e5756e4a039382c69d3882 e50efefa02a0ec1ff635a00951b5924602fc8cab57e5756e4a039382c69d3882
+ql/lib/codeql/swift/generated/UnspecifiedElement.qll dbc6ca4018012977b26ca184a88044c55b0661e3998cd14d46295b62a8d69625 184c9a0ce18c2ac881943b0fb400613d1401ed1d5564f90716b6c310ba5afe71
+ql/lib/codeql/swift/generated/decl/AbstractFunctionDecl.qll 8255b24dddda83e8a7dee9d69a4cf9883b5a7ae43676d7242b5aab5169f68982 407c7d63681fb03ad6cb4ea3c2b04be7ccb5ddbe655a8aec4219eb3799bc36e8
+ql/lib/codeql/swift/generated/decl/AbstractStorageDecl.qll 66147ad36cefce974b4ae0f3e84569bd6742ea2f3e842c3c04e6e5cbd17e7928 ce7c2347e2dfe0b141db103ccb8e56a61d286476c201aebe6a275edd7fca2c0f
+ql/lib/codeql/swift/generated/decl/AbstractTypeParamDecl.qll 1e268b00d0f2dbbd85aa70ac206c5e4a4612f06ba0091e5253483635f486ccf9 5479e13e99f68f1f347283535f8098964f7fd4a34326ff36ad5711b2de1ab0d0
+ql/lib/codeql/swift/generated/decl/AccessorDecl.qll 97773751c95475efd78ee5cb0c71e3094b13bba121b564c99934659d1908dca2 25c97d7586379558ff8f7cea4d4fcf7633256029fe3e560964353c3b90497076
+ql/lib/codeql/swift/generated/decl/AssociatedTypeDecl.qll 4169d083104f9c089223ed3c5968f757b8cd6c726887bbb6fbaf21f5ed7ee144 4169d083104f9c089223ed3c5968f757b8cd6c726887bbb6fbaf21f5ed7ee144
+ql/lib/codeql/swift/generated/decl/ClassDecl.qll a60e8af2fdbcd20cfa2049660c8bcbbc00508fbd3dde72b4778317dfc23c5ae4 a60e8af2fdbcd20cfa2049660c8bcbbc00508fbd3dde72b4778317dfc23c5ae4
+ql/lib/codeql/swift/generated/decl/ConcreteFuncDecl.qll c7192e79ce67f77df36575cceb942f11b182c26c93899469654316de2d543cf9 c7192e79ce67f77df36575cceb942f11b182c26c93899469654316de2d543cf9
+ql/lib/codeql/swift/generated/decl/ConcreteVarDecl.qll 4801ccc477480c4bc4fc117976fbab152e081064e064c97fbb0f37199cb1d0a8 4d7cfbf5b39b307dd673781adc220fdef04213f2e3d080004fa658ba6d3acb8d
+ql/lib/codeql/swift/generated/decl/ConstructorDecl.qll 20e3a37809eacfc43828fa61248ad19b0ff610faad3a12b82b3cf5ed2bcce13c 20e3a37809eacfc43828fa61248ad19b0ff610faad3a12b82b3cf5ed2bcce13c
+ql/lib/codeql/swift/generated/decl/Decl.qll b850ab1b909c1b555f3847ce9dca0e2f075db87e7b40f460b8774220bf87a1e6 a3496437246cb10eafaa9d6d45f57f830b6a1c88f15bbcffa3c5dae476004140
+ql/lib/codeql/swift/generated/decl/DestructorDecl.qll 8767e3ddabdf05ea5ee99867e9b77e67f7926c305b2fba1ca3abf94e31d836b9 8767e3ddabdf05ea5ee99867e9b77e67f7926c305b2fba1ca3abf94e31d836b9
+ql/lib/codeql/swift/generated/decl/EnumCaseDecl.qll b25413c29fa814f5cd594004e5abdeeb420f75fd86d3ab483dc04fd5d4ec8135 9ef8a30873476ace498d78b91a902e3bb600e9e3a9defc4bea42ea9d3ac7b2f7
+ql/lib/codeql/swift/generated/decl/EnumDecl.qll fa4490d511ee537751a4fab2478e65250ff3deba43c74db5341184c9ba25b534 fa4490d511ee537751a4fab2478e65250ff3deba43c74db5341184c9ba25b534
+ql/lib/codeql/swift/generated/decl/EnumElementDecl.qll d56a4d26ed209de4836fe324415a3a1e545af52ab47af607827a6f0ef7d309fd c0672aad1c9b688bb9367850005bf5f595ce628041a02d666aa0a2403338df61
+ql/lib/codeql/swift/generated/decl/ExtensionDecl.qll c6c057adadf3682d5d9e58154eaf2a28f769f7df3c2e48f9d2f5bae017917e5f 8aa2d7f20f7452ec25d2a8e1e00a7d3f4465c9c3c21326bfb3fe416c6fe83057
+ql/lib/codeql/swift/generated/decl/FuncDecl.qll 11ebe386dd06937c84fdb283a73be806763d939c163d3c0fd0c4c3eb1caeda41 6a5b6854818cb3d2bc76f0abdee4933ca839c182abd07fb4d271400f5267f6e2
+ql/lib/codeql/swift/generated/decl/GenericContext.qll 948ed5af71b3247a8e252b3691864d6a6b769c68088c60f00521d87de3a5349b 51f3f1a2b2c8b4e1f5bf549ac5864bf6f87e7c6e480c673210eccda4daca9846
+ql/lib/codeql/swift/generated/decl/GenericTypeDecl.qll 71f5c9c6078567dda0a3ac17e2d2d590454776b2459267e31fed975724f84aec 669c5dbd8fad8daf007598e719ac0b2dbcb4f9fad698bffb6f1d0bcd2cee9102
+ql/lib/codeql/swift/generated/decl/GenericTypeParamDecl.qll bc41a9d854e65b1e0da86350870a8fe050eb1dc031cd17ded11c15b5ad8ad183 bc41a9d854e65b1e0da86350870a8fe050eb1dc031cd17ded11c15b5ad8ad183
+ql/lib/codeql/swift/generated/decl/IfConfigDecl.qll 4923f062fe485d2e10a628df6d34fdb019eaf35431aea2a314f76534b28156ff 8fc67cde1a0b061bfc0532375088a12681ebf64ff5ebfd8368ba86875795514c
+ql/lib/codeql/swift/generated/decl/ImportDecl.qll 46c927960d563dd229cb4305babc95f14c9fb08fbf3ffb5a145ea1d902bdfdcb c6a04e12c3be1af134d321d01337dd114bacc1afe615ed8053a90a5fed1d0a0f
+ql/lib/codeql/swift/generated/decl/InfixOperatorDecl.qll d98168fdf180f28582bae8ec0242c1220559235230a9c94e9f479708c561ea21 aad805aa74d63116b19f435983d6df6df31cef6a5bbd30d7c2944280b470dee6
+ql/lib/codeql/swift/generated/decl/IterableDeclContext.qll 1594024f03130e8b1b86376131abdfa7612915cd1ed6fff19a2879613a2df400 029134916cf708839263b28e3cd0e822c9455a65cbb272d015f7ea1d05062780
+ql/lib/codeql/swift/generated/decl/MissingMemberDecl.qll eaf8989eda461ec886a2e25c1e5e80fc4a409f079c8d28671e6e2127e3167479 d74b31b5dfa54ca5411cd5d41c58f1f76cfccc1e12b4f1fdeed398b4faae5355
+ql/lib/codeql/swift/generated/decl/ModuleDecl.qll 2d99174fe4e0684a1b184e8fb5b78974a0c5b49bf50b944710ba497278dceb5d 56c28abf63bd691add7d4768652989b03722b2fd3b8a027521fd7af30505b2e9
+ql/lib/codeql/swift/generated/decl/NominalTypeDecl.qll 1ff6cc5226206b6ce08c7206ef574ac36110403e97bd9a7ab3aef49c3966f2c5 50d25a5356b3b0863ef175afefed1d8159ee1b1a354f374b99de9c04f2146bde
+ql/lib/codeql/swift/generated/decl/OpaqueTypeDecl.qll b07f9bc85897e420016f681731fcb54a6ef737c1146053e8904e4114a21817e7 c02b02f619dfa381db8c1beb96d1392c274db7115e34af34d6419caeaddb23c4
+ql/lib/codeql/swift/generated/decl/OperatorDecl.qll 3ffdc7ab780ee94a975f0ce3ae4252b52762ca8dbea6f0eb95f951e404c36a5b 25e39ccd868fa2d1fbce0eb7cbf8e9c2aca67d6fd42f76e247fb0fa74a51b230
+ql/lib/codeql/swift/generated/decl/ParamDecl.qll f182ebac3c54a57a291d695b87ff3dbc1499ea699747b800dc4a8c1a5a4524b1 979e27a6ce2bc932a45b968ee2f556afe1071888f1de8dd8ead60fb11acf300c
+ql/lib/codeql/swift/generated/decl/PatternBindingDecl.qll 914c711b4dcf3bd386571215fae55262e095911a65b26571e635d84064baf62d 0fccb9434f9c3c99b1707835b9a5fc247d6700e864f2c02cb2253fcf2818e851
+ql/lib/codeql/swift/generated/decl/PostfixOperatorDecl.qll 5aa85fa325020b39769fdb18ef97ef63bd28e0d46f26c1383138221a63065083 5aa85fa325020b39769fdb18ef97ef63bd28e0d46f26c1383138221a63065083
+ql/lib/codeql/swift/generated/decl/PoundDiagnosticDecl.qll c5a646d7b82c97b97d8c79855fc68d36ca494d81dfc83582131d0551187a9b77 a2c567589a89bda3de916d9c5111b123136f03239bb40ac71ac5e949f9b527ce
+ql/lib/codeql/swift/generated/decl/PrecedenceGroupDecl.qll d0918f238484052a0af902624b671c04eb8d018ee71ef4931c2fdbb74fa5c5d4 d0918f238484052a0af902624b671c04eb8d018ee71ef4931c2fdbb74fa5c5d4
+ql/lib/codeql/swift/generated/decl/PrefixOperatorDecl.qll 18f2a1f83ea880775344fbc57ed332e17edba97a56594da64580baeb45e95a5d 18f2a1f83ea880775344fbc57ed332e17edba97a56594da64580baeb45e95a5d
+ql/lib/codeql/swift/generated/decl/ProtocolDecl.qll 4b03e3c2a7af66e66e8abc40bd2ea35e71959f471669e551f4c42af7f0fd4566 4b03e3c2a7af66e66e8abc40bd2ea35e71959f471669e551f4c42af7f0fd4566
+ql/lib/codeql/swift/generated/decl/StructDecl.qll 9343b001dfeec83a6b41e88dc1ec75744d39c397e8e48441aa4d01493f10026a 9343b001dfeec83a6b41e88dc1ec75744d39c397e8e48441aa4d01493f10026a
+ql/lib/codeql/swift/generated/decl/SubscriptDecl.qll d08bc4dbeecafe0d758234e0e3487c2d67b3453aa6b9671b4947518276348a2f 89eaf1b579d41eb66069a75352f385e12e15e15e17583e05349c573586c10e8d
+ql/lib/codeql/swift/generated/decl/TopLevelCodeDecl.qll aececf62fda517bd90b1c56bb112bb3ee2eecac3bb2358a889dc8c4de898346e d8c69935ac88f0343a03f17ea155653b97e9b9feff40586cfa8452ac5232700d
+ql/lib/codeql/swift/generated/decl/TypeAliasDecl.qll 15cb5bdbe9d722c403874f744bfb3da85f532e33638a64a593acbbdee2f6095e 15cb5bdbe9d722c403874f744bfb3da85f532e33638a64a593acbbdee2f6095e
+ql/lib/codeql/swift/generated/decl/TypeDecl.qll 3fb055ab433ec40186f822c5711e3d47f9084fb12a1faee550e1e3e2507cfb45 1f46f7ae90c414c5d00bc2e33c86aa80f5ffddfd6be1853d8d6d4222b8e3f584
+ql/lib/codeql/swift/generated/decl/ValueDecl.qll 7b4e4c9334be676f242857c77099306d8a0a4357b253f8bc68f71328cedf1f58 f18938c47f670f2e0c27ffd7e31e55f291f88fb50d8e576fcea116d5f9e5c66d
+ql/lib/codeql/swift/generated/decl/VarDecl.qll 2fca00ba8b535d7cefc2fa863246a0821437ca29b885c4c30362e8a63f284479 5ba623001e071c16267e94d050bfd973addf2436152c7726945b5d87aa521af8
+ql/lib/codeql/swift/generated/expr/AbstractClosureExpr.qll f0060c2972d2e1f9818d8deea3ceebbbe0b19d2ce11adc9b670beb672c4564d3 5f2500c5f3728f81599bd4e1fb9c97ac5a44a6dce8c1ab84a850c62aae3741ff
+ql/lib/codeql/swift/generated/expr/AnyHashableErasureExpr.qll f450ac8e316def1cd64dcb61411bae191144079df7f313a5973e59dc89fe367f f450ac8e316def1cd64dcb61411bae191144079df7f313a5973e59dc89fe367f
+ql/lib/codeql/swift/generated/expr/AnyTryExpr.qll f2929f39407e1717b91fc41f593bd52f1ae14c619d61598bd0668a478a04a91e 62693c2c18678af1ff9ce5393f0dd87c5381e567b340f1a8a9ecf91a92e2e666
+ql/lib/codeql/swift/generated/expr/AppliedPropertyWrapperExpr.qll 191612ec26b3f0d5a61301789a34d9e349b4c9754618760d1c0614f71712e828 cc212df0068ec318c997a83dc6e95bdda5135bccc12d1076b0aebf245da78a4b
+ql/lib/codeql/swift/generated/expr/ApplyExpr.qll 478467da16196b55805b5a1746352384b998c211f29d4423ffeacbb95da20080 daf7a0579663245ff32c3813f00dd65d8e5c93e1ae9fdce35067f44f32f96ca8
+ql/lib/codeql/swift/generated/expr/ArchetypeToSuperExpr.qll e0b665b7389e5d0cb736426b9fd56abfec3b52f57178a12d55073f0776d8e5b7 e0b665b7389e5d0cb736426b9fd56abfec3b52f57178a12d55073f0776d8e5b7
+ql/lib/codeql/swift/generated/expr/Argument.qll fe3cf5660e46df1447eac88c97da79b2d9e3530210978831f6e915d4930534ba 814e107498892203bac688198792eefa83afc3472f3c321ba2592579d3093310
+ql/lib/codeql/swift/generated/expr/ArrayExpr.qll d4239a0260189cdfa7b841bcaa4134a035900e511b22b6552cfd61f4d47ab535 dc490a2b3c94c69dbd6340d7bf71e0aaccd5ed4d1050b5149b6e4f9cf496d428
+ql/lib/codeql/swift/generated/expr/ArrayToPointerExpr.qll afa9d62eb0f2044d8b2f5768c728558fe7d8f7be26de48261086752f57c70539 afa9d62eb0f2044d8b2f5768c728558fe7d8f7be26de48261086752f57c70539
+ql/lib/codeql/swift/generated/expr/AssignExpr.qll b9cbe998daccc6b8646b754e903667de171fefe6845d73a952ae9b4e84f0ae13 14f1972f704f0b31e88cca317157e6e185692f871ba3e4548c9384bcf1387163
+ql/lib/codeql/swift/generated/expr/AutoClosureExpr.qll 26f2ef81e6e66541da75316f894498e74525c0703076cf67398c73a7cbd9736e 26f2ef81e6e66541da75316f894498e74525c0703076cf67398c73a7cbd9736e
+ql/lib/codeql/swift/generated/expr/AwaitExpr.qll e17b87b23bd71308ba957b6fe320047b76c261e65d8f9377430e392f831ce2f1 e17b87b23bd71308ba957b6fe320047b76c261e65d8f9377430e392f831ce2f1
+ql/lib/codeql/swift/generated/expr/BinaryExpr.qll 5ace1961cd6d6cf67960e1db97db177240acb6c6c4eba0a99e4a4e0cc2dae2e3 5ace1961cd6d6cf67960e1db97db177240acb6c6c4eba0a99e4a4e0cc2dae2e3
+ql/lib/codeql/swift/generated/expr/BindOptionalExpr.qll 79b8ade1f9c10f4d5095011a651e04ea33b9280cacac6e964b50581f32278825 38197be5874ac9d1221e2d2868696aceedf4d10247021ca043feb21d0a741839
+ql/lib/codeql/swift/generated/expr/BooleanLiteralExpr.qll 8e13cdeb8bc2da9ef5d0c19e3904ac891dc126f4aa695bfe14a55f6e3b567ccb 4960b899c265547f7e9a935880cb3e12a25de2bc980aa128fbd90042dab63aff
+ql/lib/codeql/swift/generated/expr/BridgeFromObjCExpr.qll b9a6520d01613dfb8c7606177e2d23759e2d8ce54bd255a4b76a817971061a6b b9a6520d01613dfb8c7606177e2d23759e2d8ce54bd255a4b76a817971061a6b
+ql/lib/codeql/swift/generated/expr/BridgeToObjCExpr.qll 31ca13762aee9a6a17746f40ec4e1e929811c81fdadb27c48e0e7ce6a3a6222d 31ca13762aee9a6a17746f40ec4e1e929811c81fdadb27c48e0e7ce6a3a6222d
+ql/lib/codeql/swift/generated/expr/BuiltinLiteralExpr.qll 052f8d0e9109a0d4496da1ae2b461417951614c88dbc9d80220908734b3f70c6 536fa290bb75deae0517d53528237eab74664958bf7fdbf8041283415dda2142
+ql/lib/codeql/swift/generated/expr/CallExpr.qll c7dc105fcb6c0956e20d40f736db35bd7f38f41c3d872858972c2ca120110d36 c7dc105fcb6c0956e20d40f736db35bd7f38f41c3d872858972c2ca120110d36
+ql/lib/codeql/swift/generated/expr/CaptureListExpr.qll d6eacfd06c99be3fbe563854856d8b6838f5e63230e1db80824685c8c627aec6 e6116de199aa7ddd549f205476e6ebe7edddb1f53f43ea4efcfa41d0a31586cd
+ql/lib/codeql/swift/generated/expr/CheckedCastExpr.qll 146c24e72cda519676321d3bdb89d1953dfe1810d2710f04cfdc4210ace24c40 91093e0ba88ec3621b538d98454573b5eea6d43075a2ab0a08f80f9b9be336d3
+ql/lib/codeql/swift/generated/expr/ClassMetatypeToObjectExpr.qll 076c0f7369af3fffc8860429bd8e290962bf7fc8cf53bbba061de534e99cc8bf 076c0f7369af3fffc8860429bd8e290962bf7fc8cf53bbba061de534e99cc8bf
+ql/lib/codeql/swift/generated/expr/ClosureExpr.qll 4c20a922fc4c1f2a0f77026436282d056d0d188cc038443cca0d033dc57cf5a9 4c20a922fc4c1f2a0f77026436282d056d0d188cc038443cca0d033dc57cf5a9
+ql/lib/codeql/swift/generated/expr/CoerceExpr.qll a2656e30dff4adc693589cab20e0419886959c821e542d7f996ab38613fa8456 a2656e30dff4adc693589cab20e0419886959c821e542d7f996ab38613fa8456
+ql/lib/codeql/swift/generated/expr/CollectionExpr.qll 8782f55c91dc77310d9282303ba623cb852a4b5e7a8f6426e7df07a08efb8819 b2ce17bf217fe3df3da54ac2a9896ab052c1daaf5559a5c73cc866ca255a6b74
+ql/lib/codeql/swift/generated/expr/CollectionUpcastConversionExpr.qll 2d007ed079803843a4413466988d659f78af8e6d06089ed9e22a0a8dedf78dbe 38a49c14fc0f47d5a6c86fa1176bf7ae69d88a13f008c8adac9b3dc509b1917d
+ql/lib/codeql/swift/generated/expr/ConditionalBridgeFromObjCExpr.qll 4a21e63cc547021b70ca1b8080903997574ab5a2508a14f780ce08aa4de050de 5bc488e29f5bb1fae6830285c3206ac133e5bde5c3e5e3a7c882abf827a725c3
+ql/lib/codeql/swift/generated/expr/ConditionalCheckedCastExpr.qll 92a999dd1dcc1f498ed2e28b4d65ac697788960a66452a66b5281c287596d42b 92a999dd1dcc1f498ed2e28b4d65ac697788960a66452a66b5281c287596d42b
+ql/lib/codeql/swift/generated/expr/ConstructorRefCallExpr.qll d0662d960b78c3cf7e81cf5b619aa9e2a906d35c094ae32702da96720354fe4f d0662d960b78c3cf7e81cf5b619aa9e2a906d35c094ae32702da96720354fe4f
+ql/lib/codeql/swift/generated/expr/CovariantFunctionConversionExpr.qll b749118590163eafbd538e71e4c903668451f52ae0dabbb13e504e7b1fefa9e1 d3af8e3beb6e395f537348d875978dfae119243dc3495c48a7c83b056aff2f6c
+ql/lib/codeql/swift/generated/expr/CovariantReturnConversionExpr.qll f1b409f0bf54b149deb1a40fbe337579a0f6eb2498ef176ef5f64bc53e94e2fe a32992597057657c7bbf13c809db67844b834668e8d2804adabcf6187d81c244
+ql/lib/codeql/swift/generated/expr/DeclRefExpr.qll c68a39ef4445d6c865976fe9f6013bbe77dca68a23d188f1fac3a8492eac70a6 92ae3f39d0e9e1d5017bd660c940225ad2cb07ef9076608dc1bca844adb5d6f0
+ql/lib/codeql/swift/generated/expr/DefaultArgumentExpr.qll b38015d25ef840298a284b3f4e20cd444987474545544dc451dd5e12c3783f20 afc581e2127983faae125fd58b24d346bfee34d9a474e6d499e4606b672fe5f0
+ql/lib/codeql/swift/generated/expr/DerivedToBaseExpr.qll 5f371b5b82262efb416af1a54073079dcf857f7a744010294f79a631c76c0e68 5f371b5b82262efb416af1a54073079dcf857f7a744010294f79a631c76c0e68
+ql/lib/codeql/swift/generated/expr/DestructureTupleExpr.qll 1214d25d0fa6a7c2f183d9b12c97c679e9b92420ca1970d802ea1fe84b42ccc8 1214d25d0fa6a7c2f183d9b12c97c679e9b92420ca1970d802ea1fe84b42ccc8
+ql/lib/codeql/swift/generated/expr/DictionaryExpr.qll 72a103889a7dfe9c2e25ef3336aabddad168d5573f3b19670f198e79e20f3bca aac250a0b831d632adaaa4484f85e55e04f9e95fe5ae152bd68758d9a3116f21
+ql/lib/codeql/swift/generated/expr/DifferentiableFunctionExpr.qll 9143e12dfe0b3b4cc2d1fe27d893498f5bd6725c31bee217ab9fa1ca5efeca7b 8af001026d4b1a08d787af5146affb2df57c0432b1dfcdb557cd4de2cebe51a5
+ql/lib/codeql/swift/generated/expr/DifferentiableFunctionExtractOriginalExpr.qll d90266387d6eecf2bacb2d0f5f05a2132a018f1ccf723664e314dcfd8972772d 878ea62a077e8cda87490bbf770ca0df68d94cbafd2576ff7b725311d73ffef7
+ql/lib/codeql/swift/generated/expr/DiscardAssignmentExpr.qll f2cb4a5295855bcfe47a223e0ab9b915c22081fe7dddda801b360aa365604efd f2cb4a5295855bcfe47a223e0ab9b915c22081fe7dddda801b360aa365604efd
+ql/lib/codeql/swift/generated/expr/DotSelfExpr.qll af32541b2a03d91c4b4184b8ebca50e2fe61307c2b438f50f46cd90592147425 af32541b2a03d91c4b4184b8ebca50e2fe61307c2b438f50f46cd90592147425
+ql/lib/codeql/swift/generated/expr/DotSyntaxBaseIgnoredExpr.qll 12c9cf8d2fd3c5245e12f43520de8b7558d65407fa935da7014ac12de8d6887e 49f5f12aeb7430fa15430efd1193f56c7e236e87786e57fd49629bd61daa7981
+ql/lib/codeql/swift/generated/expr/DotSyntaxCallExpr.qll 3768ef558b4fe8c2f0fb4db9b61f84999577a9a4ce5f97fa773a98bf367202ff 3768ef558b4fe8c2f0fb4db9b61f84999577a9a4ce5f97fa773a98bf367202ff
+ql/lib/codeql/swift/generated/expr/DynamicLookupExpr.qll 0f0d745085364bca3b67f67e3445d530cbd3733d857c76acab2bccedabb5446e f252dd4b1ba1580fc9a32f42ab1b5be49b85120ec10c278083761494d1ee4c5d
+ql/lib/codeql/swift/generated/expr/DynamicMemberRefExpr.qll 2eab0e58a191624a9bf81a25f5ddad841f04001b7e9412a91e49b9d015259bbe 2eab0e58a191624a9bf81a25f5ddad841f04001b7e9412a91e49b9d015259bbe
+ql/lib/codeql/swift/generated/expr/DynamicSubscriptExpr.qll f9d7d2fc89f1b724cab837be23188604cefa2c368fa07e942c7a408c9e824f3d f9d7d2fc89f1b724cab837be23188604cefa2c368fa07e942c7a408c9e824f3d
+ql/lib/codeql/swift/generated/expr/DynamicTypeExpr.qll 8fc5dcb619161af4c54ff219d13312690dbe9b03657c62ec456656e3c0d5d21b e230d2b148bb95ebd4c504f3473539a45ef08092e0e5650dc35b6f25c1b9e7ed
+ql/lib/codeql/swift/generated/expr/EnumIsCaseExpr.qll f49fcf0f610095b49dcabe0189f6f3966407eddb6914c2f0aa629dc5ebe901d2 a9dbc91391643f35cd9285e4ecfeaae5921566dd058250f947153569fd3b36eb
+ql/lib/codeql/swift/generated/expr/ErasureExpr.qll c232bc7b612429b97dbd4bb2383c2601c7d12f63312f2c49e695c7a8a87fa72a c232bc7b612429b97dbd4bb2383c2601c7d12f63312f2c49e695c7a8a87fa72a
+ql/lib/codeql/swift/generated/expr/ErrorExpr.qll 8e354eed5655e7261d939f3831eb6fa2961cdd2cebe41e3e3e7f54475e8a6083 8e354eed5655e7261d939f3831eb6fa2961cdd2cebe41e3e3e7f54475e8a6083
+ql/lib/codeql/swift/generated/expr/ExistentialMetatypeToObjectExpr.qll eb0d42aac3f6331011a0e26cf5581c5e0a1b5523d2da94672abdebe70000d65b 0ce8b72c817161bc5c1ffc40cb778643b3694512df0502e5295afdf2987b37df
+ql/lib/codeql/swift/generated/expr/ExplicitCastExpr.qll d98c1ad02175cfaad739870cf041fcd58143dd4b2675b632b68cda63855a4ceb 2aded243b54c1428ba16c0f131ab5e4480c2004002b1089d9186a435eb3a6ab5
+ql/lib/codeql/swift/generated/expr/Expr.qll 68beba5a460429be58ba2dcad990932b791209405345fae35b975fe64444f07e a0a25a6870f8c9f129289cec7929aa3d6ec67e434919f3fb39dc060656bd1529
+ql/lib/codeql/swift/generated/expr/FloatLiteralExpr.qll ae851773886b3d33ab5535572a4d6f771d4b11d6c93e802f01348edb2d80c454 35f103436fc2d1b2cec67b5fbae07b28c054c9687d57cbd3245c38c55d8bde0b
+ql/lib/codeql/swift/generated/expr/ForceTryExpr.qll 062997b5e9a9e993de703856ae6af60fe1950951cf77cdab11b972fb0a5a4ed3 062997b5e9a9e993de703856ae6af60fe1950951cf77cdab11b972fb0a5a4ed3
+ql/lib/codeql/swift/generated/expr/ForceValueExpr.qll 97a8860edae2ea0754b31f63fc53be1739cd32f8eb56c812709f38e6554edef7 359b9c4708f0c28465661690e8c3b1ed60247ca24460749993fe34cf4f2f22f9
+ql/lib/codeql/swift/generated/expr/ForcedCheckedCastExpr.qll cf4792bd4a2c5ce264de141bdbc2ec10f59f1a79a5def8c052737f67807bb8c1 cf4792bd4a2c5ce264de141bdbc2ec10f59f1a79a5def8c052737f67807bb8c1
+ql/lib/codeql/swift/generated/expr/ForeignObjectConversionExpr.qll 243a4e14037546fcbb0afc1c3ba9e93d386780e83518b0f03383a721c68998d6 468fa46af1209c089c003a84acec449412947a6e8a3c9c31f40b4316df3877d9
+ql/lib/codeql/swift/generated/expr/FunctionConversionExpr.qll 8f6c927adaf036358b276ad1d9069620f932fa9e0e15f77e46e5ed19318349ab 8f6c927adaf036358b276ad1d9069620f932fa9e0e15f77e46e5ed19318349ab
+ql/lib/codeql/swift/generated/expr/IdentityExpr.qll 1b9f8d1db63b90150dae48b81b4b3e55c28f0b712e567109f451dcc7a42b9f21 6e64db232f3069cf03df98a83033cd139e7215d4585de7a55a0e20ee7a79b1c8
+ql/lib/codeql/swift/generated/expr/IfExpr.qll d9ef7f9ee06f718fd7f244ca0d892e4b11ada18b6579029d229906460f9d4d7e e9ef16296b66f2a35af1dad4c3abcf33071766748bcab99a02a0e489a5614c88
+ql/lib/codeql/swift/generated/expr/ImplicitConversionExpr.qll 52dc57e4413ab523d2c2254ce6527d2d9adaaa4e7faba49b02a88df292aa911d 39883081b5feacf1c55ed99499a135c1da53cd175ab6a05a6969625c6247efd7
+ql/lib/codeql/swift/generated/expr/InOutExpr.qll 26d2019105c38695bace614aa9552b901fa5580f463822688ee556b0e0832859 665333c422f6f34f134254cf2a48d3f5f441786517d0916ade5bec717a28d59d
+ql/lib/codeql/swift/generated/expr/InOutToPointerExpr.qll 4b9ceffe43f192fac0c428d66e6d91c3a6e2136b6d4e3c98cdab83b2e6a77719 4b9ceffe43f192fac0c428d66e6d91c3a6e2136b6d4e3c98cdab83b2e6a77719
+ql/lib/codeql/swift/generated/expr/InjectIntoOptionalExpr.qll b6fafb589901d73e94eb9bb0f5e87b54378d06ccc04c51a9f4c8003d1f23ead6 b6fafb589901d73e94eb9bb0f5e87b54378d06ccc04c51a9f4c8003d1f23ead6
+ql/lib/codeql/swift/generated/expr/IntegerLiteralExpr.qll aa54660c47169a35e396ea44430c3c4ec4353e33df1a00bd82aff7119f5af71b 7ba90cf17dd34080a9923253986b0f2680b44c4a4ba6e0fbad8b39d3b20c44b9
+ql/lib/codeql/swift/generated/expr/InterpolatedStringLiteralExpr.qll 35f79ec9d443165229a2aa4744551e9e288d5cd051ace48a24af96dc99e7184a 28e8a3dc8491bcb91827a6316f16540518b2f85a875c4a03501986730a468935
+ql/lib/codeql/swift/generated/expr/IsExpr.qll b5ca50490cae8ac590b68a1a51b7039a54280d606b42c444808a04fa26c7e1b6 b5ca50490cae8ac590b68a1a51b7039a54280d606b42c444808a04fa26c7e1b6
+ql/lib/codeql/swift/generated/expr/KeyPathApplicationExpr.qll 232e204a06b8fad3247040d47a1aa34c6736b764ab1ebca6c5dc74c3d4fc0c9b 6b823c483ee33cd6419f0a61a543cfce0cecfd0c90df72e60d01f5df8b3da3c0
+ql/lib/codeql/swift/generated/expr/KeyPathDotExpr.qll ea73a462801fbe5e27b2f47bca4b39f6936d326d15d6de3f18b7afa6ace35878 ea73a462801fbe5e27b2f47bca4b39f6936d326d15d6de3f18b7afa6ace35878
+ql/lib/codeql/swift/generated/expr/KeyPathExpr.qll e44b9d2a7a6c046d2e61b40192c878e37bd9391c03c8277d92dfba05d9040228 e32c4f6fc35f4e7ada95e82b8dd2cd3eb1912406d3604066f2d183f1311f8c0d
+ql/lib/codeql/swift/generated/expr/LazyInitializerExpr.qll d8e93dcfa7fa8a00005f30b4aaa426f50d5040db11bef0c3b56558419b6cc110 3ca7d7ca9e52a025c38d7605c509d6758a4d5ceb0543192074c901f5935d4453
+ql/lib/codeql/swift/generated/expr/LinearFunctionExpr.qll cd4c31bed9d0beb09fdfc57069d28adb3a661c064d9c6f52bb250011d8e212a7 cd4c31bed9d0beb09fdfc57069d28adb3a661c064d9c6f52bb250011d8e212a7
+ql/lib/codeql/swift/generated/expr/LinearFunctionExtractOriginalExpr.qll ee7d3e025815b5af392ffc006ec91e3150130f2bd708ab92dbe80f2efa9e6792 e1646e4b50f6c4af5ed179786e4cbba33910dd642ca47959fec938770e6c7a0e
+ql/lib/codeql/swift/generated/expr/LinearToDifferentiableFunctionExpr.qll f7aa178bff083d8e2822fda63de201d9d7f56f7f59f797ec92826001fca98143 e8da45d1f1c61936f8d2d52058ea029af13647bbb40a15e3688ece27918da365
+ql/lib/codeql/swift/generated/expr/LiteralExpr.qll b501f426fa4e638b24d772c2ce4a4e0d40fce25b083a3eee361a66983683ee9d 068208879c86fbd5bed8290ce5962868af6c294a53ad1548cf89cf5a7f8e1781
+ql/lib/codeql/swift/generated/expr/LoadExpr.qll 90b9ba4c96c26c476c3692b1200c31071aa10199d3e21ef386ff48b9f0b6d33a 90b9ba4c96c26c476c3692b1200c31071aa10199d3e21ef386ff48b9f0b6d33a
+ql/lib/codeql/swift/generated/expr/LookupExpr.qll 4b8c4f710e3cbdeb684a07c105f48915782e5de002da87f693ae1e07f3b67031 eceb13729282b77a44317c39f9206d9c1467bc93633b7bac5ada97ea13a773fe
+ql/lib/codeql/swift/generated/expr/MagicIdentifierLiteralExpr.qll 16f0050128caf916506b1f7372dc225a12809a60b5b00f108705fcdfce3344a8 c064778526a5854bdf8cdbf4b64ad680b60df9fe71ec7a2d9aa6c36a7c4e5b31
+ql/lib/codeql/swift/generated/expr/MakeTemporarilyEscapableExpr.qll d23bd9ea3b13869d7a7f7eef3c3d1c3c156d384b72c65867a0b955bc517da775 f2fd167ac40f01c092b2b443af1557c92dac32074506f2195d32f60b0e0547d8
+ql/lib/codeql/swift/generated/expr/MemberRefExpr.qll 07000a05bec2e6d18e89ec4bbdba41a149691c50527da9073630d4193c0248d8 1bd43b79231aa31e0d60f9f7104f2b889fc3d9f042ecba8fe09d2cd289f4381d
+ql/lib/codeql/swift/generated/expr/MetatypeConversionExpr.qll 714ecbc8ac51fdaaa4075388f20fe5063ead9264ca20c4ab8864c48364ef4b42 714ecbc8ac51fdaaa4075388f20fe5063ead9264ca20c4ab8864c48364ef4b42
+ql/lib/codeql/swift/generated/expr/MethodRefExpr.qll 014f976ce55cfc07a18a86c379fcf12c68f3c300c2d5e730731e61bfa50c6419 014f976ce55cfc07a18a86c379fcf12c68f3c300c2d5e730731e61bfa50c6419
+ql/lib/codeql/swift/generated/expr/NilLiteralExpr.qll 6f44106bc5396c87681676fc3e1239fe052d1a481d0a854afa8b66369668b058 6f44106bc5396c87681676fc3e1239fe052d1a481d0a854afa8b66369668b058
+ql/lib/codeql/swift/generated/expr/NumberLiteralExpr.qll 8acc7df8fe83b7d36d66b2feed0b8859bfde873c6a88dd676c9ebed32f39bd04 4bbafc8996b2e95522d8167417668b536b2651817f732554de3083c4857af96a
+ql/lib/codeql/swift/generated/expr/ObjCSelectorExpr.qll 8b4f7a9668d1cae4058ba460673b3e0b79f05f2fe871fd992ca1b7ea85f7c09d 629a3057c0ff3ede3a18ea8ea1aa29b24bc780d0dc60b51f99793a6001432a4e
+ql/lib/codeql/swift/generated/expr/ObjectLiteralExpr.qll 1eb11648e4ffc2d49b8bdfc332092787972c60394df1827b4c3317e1a4985323 80e767bd0f02a23c32af061e37c5847cb76406be1d848a3411ac78b05ac07aab
+ql/lib/codeql/swift/generated/expr/OneWayExpr.qll bf6dbe9429634a59e831624dde3fe6d32842a543d25a8a5e5026899b7a608a54 dd2d844f3e4b190dfba123cf470a2c2fcfdcc0e02944468742abe816db13f6ba
+ql/lib/codeql/swift/generated/expr/OpaqueValueExpr.qll 354f23d00d5ea2e734fd192130620d26c76c14d5bb7b0a1aa69f17ffb5289793 354f23d00d5ea2e734fd192130620d26c76c14d5bb7b0a1aa69f17ffb5289793
+ql/lib/codeql/swift/generated/expr/OpenExistentialExpr.qll 55cfe105f217a4bdb15d1392705030f1d7dec8c082cafa875301f81440ec0b7b 168389014cddb8fd738e2e84ddd22983e5c620c3c843de51976171038d95adc0
+ql/lib/codeql/swift/generated/expr/OptionalEvaluationExpr.qll 000b00afe1dcdec43f756f699fd3e38212884eab14bf90e3c276d4ca9cb444a6 177bd4bfbb44e9f5aeaaf283b6537f3146900c1376854607827d224a81456f59
+ql/lib/codeql/swift/generated/expr/OptionalTryExpr.qll f0c8dff90faee4fbf07772efda53afe1acc1fd148c16ee4d85a1502a36178e71 f0c8dff90faee4fbf07772efda53afe1acc1fd148c16ee4d85a1502a36178e71
+ql/lib/codeql/swift/generated/expr/OtherConstructorDeclRefExpr.qll b40c18df25bdb08f159eb34d685d2e27fbba2c5e518b7d8b236f9913d76029cb 30f743385b8a47c36ec54c2c13b42fc6937568aa3cace5f075b51c02a64ca506
+ql/lib/codeql/swift/generated/expr/OverloadedDeclRefExpr.qll 364d63e962d8a741e1fde33e743217cdda176cc58d7da365d4af1ad5401575d8 ac798b3bd5e7f166b6647dbf5fcee04e3bb38d4cd214c6b0141c6b91af1c277f
+ql/lib/codeql/swift/generated/expr/ParenExpr.qll f3fb35017423ee7360cab737249c01623cafc5affe8845f3898697d3bd2ef9d7 f3fb35017423ee7360cab737249c01623cafc5affe8845f3898697d3bd2ef9d7
+ql/lib/codeql/swift/generated/expr/PointerToPointerExpr.qll 7d6fa806bba09804705f9cef5be66e09cbbbbda9a4c5eae75d4380f1527bb1bd 7d6fa806bba09804705f9cef5be66e09cbbbbda9a4c5eae75d4380f1527bb1bd
+ql/lib/codeql/swift/generated/expr/PostfixUnaryExpr.qll d1094c42aa03158bf89bace09b0a92b3056d560ebf69ddbf286accce7940d3ab d1094c42aa03158bf89bace09b0a92b3056d560ebf69ddbf286accce7940d3ab
+ql/lib/codeql/swift/generated/expr/PrefixUnaryExpr.qll f66dee3c70ed257914de4dd4e8501bb49c9fe6c156ddad86cdcc636cf49b5f62 f66dee3c70ed257914de4dd4e8501bb49c9fe6c156ddad86cdcc636cf49b5f62
+ql/lib/codeql/swift/generated/expr/PropertyWrapperValuePlaceholderExpr.qll 011897278a75050f1c55bd3f2378b73b447d5882404fd410c9707cd06d226a0e e04b210ab15ffcada94a70d4a1333c348d6d9111697129938c7591364ac88c9f
+ql/lib/codeql/swift/generated/expr/ProtocolMetatypeToObjectExpr.qll b692be6e5b249c095b77f4adcad5760f48bc07f6f53767ee3d236025ee4a2a51 cc69abe3cde83a4cd398ce666509326b21e7ee0b4b766c8dc0e0fea0c7d1ca91
+ql/lib/codeql/swift/generated/expr/RebindSelfInConstructorExpr.qll 7796a88c1635b3bd2492563880c995f1a7a0c68f69bad33b8bd77086eb1ce404 aee11e030ba21115931cbc1e34ac001eaafe4460fb3724a078aa4cbda84e4642
+ql/lib/codeql/swift/generated/expr/RegexLiteralExpr.qll ed7eccdf051b18a6388c47986b68e755edfae5d81d83e58772effb72c0e9d75e ed7eccdf051b18a6388c47986b68e755edfae5d81d83e58772effb72c0e9d75e
+ql/lib/codeql/swift/generated/expr/SelfApplyExpr.qll c676c551bcb528512dad6422cce39be8391d03f517df2d5dc4d6ac7ab4f23897 64b3ddb7e2b093acca289d5e81d4662560d8aef20d4dd07fcd41771d54fb3f5c
+ql/lib/codeql/swift/generated/expr/SequenceExpr.qll 044581c933d44ecf153a22724985d0c9d3b1bb0ca2614ba60db962ee126a293a 3ae93804ece0fa386099be2344dc7cb8b5d8091ce53980a265973c0faacad1c7
+ql/lib/codeql/swift/generated/expr/StringLiteralExpr.qll f420c5cd51a223b6f98177147967266e0094a5718ba2d57ae2d3acbb64bbb4b6 30d6dab2a93fd95e652a700902c4d106fecfce13880c2ece565de29f2504bedf
+ql/lib/codeql/swift/generated/expr/StringToPointerExpr.qll ef69b570aa90697d438f5787a86797955b4b2f985960b5859a7bd13b9ecb9cd3 ef69b570aa90697d438f5787a86797955b4b2f985960b5859a7bd13b9ecb9cd3
+ql/lib/codeql/swift/generated/expr/SubscriptExpr.qll f207679b6a8387fe71eb7ce13061bc4ca8af62ccec92d062b8d67fb2ea0f0d10 ba7ed5c7105f2297ff15e0b07dce96b731da1249c9319bddb723d6898254c5f7
+ql/lib/codeql/swift/generated/expr/SuperRefExpr.qll 3cc44a550ecab7d11b591082a3ad1ac88207d55cd694942ce44a90c576517482 d1712eed916f83d3e1b21c6af944ef56df2b82d163b9b3cb8dc793d48305fa6c
+ql/lib/codeql/swift/generated/expr/TapExpr.qll 0a2cbaaec596fa5aabb7acc3cab23bbf1bb1173ea4f240634698d5a89686d014 2267243198f67bb879d639f566e9729cfa9e3a3e205ffe6ff3782b7017a8bf7f
+ql/lib/codeql/swift/generated/expr/TryExpr.qll e6619905d9b2e06708c3bf41dace8c4e6332903f7111b3a59609d2bb7a6483ee e6619905d9b2e06708c3bf41dace8c4e6332903f7111b3a59609d2bb7a6483ee
+ql/lib/codeql/swift/generated/expr/TupleElementExpr.qll 764371c3b6189f21dcdc8d87f9e6f6ba24e3f2ef0b8c35b8ce8c3b7d4feb7370 25f4f2b747b3887edd82d5eb3fa9ba1b45e7921d2745bfee06300db22a35c291
+ql/lib/codeql/swift/generated/expr/TupleExpr.qll e01ce2dea15839076f32a0b6ebbb4f76a1d1428d4c93cf275ac271140edea91b b3a062055a45cac48e0ae0b0b57b58471827ea47675379f6411ba1cec2a24eab
+ql/lib/codeql/swift/generated/expr/TypeExpr.qll 132096079d0da05ac0e06616e4165c32c5f7e3bc338e37930bb81f4d26d7caea edd58d31ce921a8f7d09c49de3683d5170dfed636184bafc862bbfd78c474ca6
+ql/lib/codeql/swift/generated/expr/UnderlyingToOpaqueExpr.qll 13d6c7a16ec0c4c92d12e052437dfa84274394ee8a4ca9b2c9e59514564dc683 13d6c7a16ec0c4c92d12e052437dfa84274394ee8a4ca9b2c9e59514564dc683
+ql/lib/codeql/swift/generated/expr/UnevaluatedInstanceExpr.qll 21dedc617838eed25a8d3a011296fda78f99aee0e8ae2c06789484da6886cfea 21dedc617838eed25a8d3a011296fda78f99aee0e8ae2c06789484da6886cfea
+ql/lib/codeql/swift/generated/expr/UnresolvedDeclRefExpr.qll 3469931227ad5ea0c09226e866f2820bfed3636caa2250a1241c2d396e39e7cb b6a7934e17ac4799409724d1438582a372c6e8395cb142aaf101c66b04cc8cf7
+ql/lib/codeql/swift/generated/expr/UnresolvedDotExpr.qll d6bf4bf1a3c4732f2ca3feef34e8482fc6707ac387a2d6f75cb5dde2e742cc38 d58048081b4c2ed582749b03ae8158d9aa0786f1f0bf2988f2339fee2d42e13b
+ql/lib/codeql/swift/generated/expr/UnresolvedMemberChainResultExpr.qll ce900badb9484eb2202c4df5ab11de7a3765e8e5eefaa9639779500942790ef1 8ac96bb5d41e4808300838c0f6b8cd23b6bb9bb1ca777994d11840dc7a343ba3
+ql/lib/codeql/swift/generated/expr/UnresolvedMemberExpr.qll 6604f7eea32c151322c446c58e91ff68f3cfbf0fc040ccee046669bcc59fb42d c7738e6b909cb621ac109235ba13ede67a10b32894fd1a5114b16d48d6e9b606
+ql/lib/codeql/swift/generated/expr/UnresolvedPatternExpr.qll 6f4494d73d3f286daef9b0c6edef9e2b39454db3f1f54fcb5a74f3df955e659d 39fbd35d8755353b3aad89fbf49344b2280561f2c271d9cee6011c9ea9c7bf03
+ql/lib/codeql/swift/generated/expr/UnresolvedSpecializeExpr.qll 17387e6e516254bfda7836974771ec1cf9afe6d255f6d28768f6033ac9feced8 e6ec877eb07aa4b83857214675f4d0bc0c89f8c2041daeccaa1285c4a77642f7
+ql/lib/codeql/swift/generated/expr/UnresolvedTypeConversionExpr.qll a38b74b695b9a21b2f1202d4d39017c3ac401e468079477b6d4901c118ae26b6 f8ec529a812c61e85247c4c59f240472a238f87b2001f03ad1b161392795cb9f
+ql/lib/codeql/swift/generated/expr/VarargExpansionExpr.qll de72227f75493de4bbb75b80fd072c994ef0e6c096bcaf81fd7dd0b274df5ea9 5400811b30f9673f387a26cfb1ab9fc7ef0055fafb1b96985211b4dde8b1b8f9
+ql/lib/codeql/swift/generated/pattern/AnyPattern.qll ce091e368da281381539d17e3bac59497ad51bb9c167d8991b661db11c482775 ce091e368da281381539d17e3bac59497ad51bb9c167d8991b661db11c482775
+ql/lib/codeql/swift/generated/pattern/BindingPattern.qll 0687ec9761718aed5a13b23fe394f478844c25d6e1feec44d877d82deccd7a70 01bcb096073747e10fc3d2de0c3cc0971ab34626e2b4b2f2bfd670680aff3d5e
+ql/lib/codeql/swift/generated/pattern/BoolPattern.qll 118300aa665defa688a7c28f82deb73fa76adce1429d19aa082c71cfcbeb0903 0cd6db87e925e89f8ad6d464762d01d63ddfd34b05a31d5e80eb41aec37480b4
+ql/lib/codeql/swift/generated/pattern/EnumElementPattern.qll 397ae58175ff54d35388b86524172009904cb784040ef06b8421f1dcdf064e3e 1485105498b397d7ee5cb1b3dd99e76597018dc357983b3e463bf689ddda865d
+ql/lib/codeql/swift/generated/pattern/ExprPattern.qll 99072c50c5361966cdb312e9b1571c1c313cbcfffe5ea9e77247709f5ff9acf5 6ec3ad407528f0bd773103945e3184681ef2af990efdc8fcf1982799909c54bf
+ql/lib/codeql/swift/generated/pattern/IsPattern.qll 3716a0e7153393f253fe046f479c2bc3bf1a2c5d7afb1bfa577bb830fcb6b52b 730324d250c4a4e9073b1c5b777aa1ab57759caf447696feee90068baa337f20
+ql/lib/codeql/swift/generated/pattern/NamedPattern.qll 5d25e51eb83e86363b95a6531ffb164e5a6070b4a577f3900140edbef0e83c71 9e88b2b2b90a547b402d4782e8d494bc555d4200763c094dd985fe3b7ebc1ec8
+ql/lib/codeql/swift/generated/pattern/OptionalSomePattern.qll 4230ba4adaac68868c7c5bd2bf30d1f8284f1025acb3ae9c47b6a87f09ccdcd9 449568950700d21854ec65f9751506fc4dc4e490a4744fb67ca421fc2956fc6a
+ql/lib/codeql/swift/generated/pattern/ParenPattern.qll 4e5e2968ffdf07a68f5d5a49f4ecc1a2e7ff389c4fd498cc272e7afd7af7bea5 a143af906ab0cef8cbe3ed8ae06cb4dcb520ded3d70dbb800dab2227b9bf8d3c
+ql/lib/codeql/swift/generated/pattern/Pattern.qll 0e96528a8dd87185f4fb23ba33ea418932762127e99739d7e56e5c8988e024d1 ba1e010c9f7f891048fb8c4ff8ea5a6c664c09e43d74b860d559f6459f82554a
+ql/lib/codeql/swift/generated/pattern/TuplePattern.qll 4df0d495ac82b3bb4d1a4288218b6cd0394620c1452fbdc9b444e061c70da412 4ca0edab4e2c39166830f2a7951e36f95157c523326272c148af84bd0b87c60e
+ql/lib/codeql/swift/generated/pattern/TypedPattern.qll e46078cd90a30379011f565fefb71d42b92b34b1d7fd4be915aad2bafbdbeaf3 aedf0e4a931f868cc2a171f791e96732c6e931a979b2f03e37907a9b2b776cad
+ql/lib/codeql/swift/generated/stmt/BraceStmt.qll 7bfad90b392b7ac6b84af948ad0ff76192da22a916bb8cae8254ee1374d3f4c4 c35a36d1d32f046d914a543aad3acf8efbe75f69485157050d6a64dd36fd57ab
+ql/lib/codeql/swift/generated/stmt/BreakStmt.qll 31d6b2969a919062c46e7bf0203f91c3489ee3c364e73fc2788f0e06ac109b25 7fca57698a821e81903204f271d0a220adfdd50ff144eafd6868286aa6aefa33
+ql/lib/codeql/swift/generated/stmt/CaseLabelItem.qll 0755fabf3ca7a5ee9a553dec0a6d8af3c8abdc99015c229ce1c4b154a3af80d9 b3c9b88610a3dc729a5eb4f9667710d84a5ac0f3acddcda3031e744309265c68
+ql/lib/codeql/swift/generated/stmt/CaseStmt.qll 32fdcdb193ec523a12b283bade57606dcde4f320f5d760be622782ac011ba908 2adfdff2d3105818c29dbf9571bc0e531fe758f11e85deea27f6e32bf190aabd
+ql/lib/codeql/swift/generated/stmt/ConditionElement.qll fd53a99d1af1e16412424c0c48eae7c866db4fd491f2de6d5a5271f227a96275 599db45ed78be3943b76c1ff4ae24cd8a9ff8d1f875d1718ab884e4507843995
+ql/lib/codeql/swift/generated/stmt/ContinueStmt.qll 3213c4ede9c8240bcb1d1c02ee6171821cdfbf89056f1e5c607428dcfaf464f6 00756c533dfd9ee5402e739f360dfe5203ee2043e20fc1982d7782ca7a249f9a
+ql/lib/codeql/swift/generated/stmt/DeferStmt.qll 69a8e04618569b61ce680bae1d20cda299eea6064f50433fa8a5787114a6cf5e 12c4f66fc74803f276bbb65e8a696f9bd47cc2a8edfebb286f5c3b2a5b6efce7
+ql/lib/codeql/swift/generated/stmt/DoCatchStmt.qll 92f095ee43b1637269a4c3ba7db4743011f6a10a92012cd02b972f41d3b2668f f90c5d82805e1d7b1f9799c440f82c772b167f68cd7df0967b2f02486b407766
+ql/lib/codeql/swift/generated/stmt/DoStmt.qll dfa2879944e9b6879be7b47ba7e2be3cbb066322a891453891c4719bf0eb4a43 581c57de1a60084f8122fc698934894bbb8848825cb759fa62ff4e07002840cb
+ql/lib/codeql/swift/generated/stmt/FailStmt.qll d8f5816c51c5027fd6dacc8d9f5ddd21f691c138dfc80c6c79e250402a1fe165 d8f5816c51c5027fd6dacc8d9f5ddd21f691c138dfc80c6c79e250402a1fe165
+ql/lib/codeql/swift/generated/stmt/FallthroughStmt.qll 7574c3b0d4e7901509b64c4a1d0355a06c02a09fc1282c0c5e86fa7566359c2e 54e85e2fd57313a20dfc196ded519422e4adee5ae4b17f4cc47d47b89650bf47
+ql/lib/codeql/swift/generated/stmt/ForEachStmt.qll c58b8ba4bbcb7609ea52181bfd095ecd0f162cd48600b9ce909ae646127a286f af93281c6e6ad02b249d25b0ce35086da37395aaf77dc0801a7b7df406938b1d
+ql/lib/codeql/swift/generated/stmt/GuardStmt.qll 18875adfca4a804932fcc035a0f1931fc781b3b4031e1df435c3e6a505d9edba 10f7a0ed8d4975d854f8b558654bfc2ab604b203c2429240e3a4b615e50c7ad8
+ql/lib/codeql/swift/generated/stmt/IfStmt.qll b55a7407988abba2ffc6f37803cff8d62abd5f27048d83a3fc64b8b6ce66590a 91def4db6dd271f5283e9a55a1e186e28e02962df334b5d753cea132731d7a85
+ql/lib/codeql/swift/generated/stmt/LabeledConditionalStmt.qll 42e8f32da8451cab4abf3a262abdf95aec8359606971700eb8c34d6dc3a3472f fa3c186f2cd57e16c7d09b5bf1dc3076db9e97ade0d78f4b12dd563b57207f00
+ql/lib/codeql/swift/generated/stmt/LabeledStmt.qll ffbfa0dc114399aabc217a9a245a8bcacbfbad6f20e6ff1078c62e29b051f093 33ddfd86495acc7a452fa34e02fe5cce755129aa7ee84f1c2ad67699574b55dc
+ql/lib/codeql/swift/generated/stmt/PoundAssertStmt.qll a03dc4a5ef847d74a3cbae6529f7534b35c1345caf15c04694eab71decefd9ab f968f8e8766e19c91852856ea3a84f8fa3fc1b4923c47f2ea42d82118b6f2e0d
+ql/lib/codeql/swift/generated/stmt/RepeatWhileStmt.qll adfebcb8a804842866c5f363c39856298de06fd538cca9ffe9c9cd4f59ddc6a7 19d74a05cb01fb586b08d3842a258de82721b1c709d556373e4a75c408e3c891
+ql/lib/codeql/swift/generated/stmt/ReturnStmt.qll 464dc2a4060ffdee4db3d405c344543c4d4e20b969ab536b47f0057b13ff0ce9 8d02dc871965db4947ee895f120ae6fe4c999d8d47e658a970990ea1bf76dd4c
+ql/lib/codeql/swift/generated/stmt/Stmt.qll b2a4f3712e3575321a4bc65d31b9eb8ddcd2d20af9863f3b9240e78e4b32ccff e0fc13b3af867aa53b21f58a5be1b7d1333b3e8543a4d214a346468f783dbf40
+ql/lib/codeql/swift/generated/stmt/StmtCondition.qll 2275318cf6cc58deb57b81f3120ef3b3694ad1cd1e5fa8a21c84b9ff65fd53e9 266fc4e5daf8140cb1da5f354fa2033b2fe6b7bc422585cf7fafaad0007b8473
+ql/lib/codeql/swift/generated/stmt/SwitchStmt.qll 5bfa39b4e4a5fae1d7268f15e1c00059e888199a22615011cd18d4ad0aadc873 57eecf592b6cedf97f77e0016e789a6b314fcf3bf97a941f6d93a10ea58b2c60
+ql/lib/codeql/swift/generated/stmt/ThrowStmt.qll 480553a18c58c2fa594ee3c7bc6b69f8aafb1c209e27379b711681652cbe6dd3 23829747c8b8428d7a2eea6017bb01536df01d7346c136bd6b654ebdd04342de
+ql/lib/codeql/swift/generated/stmt/WhileStmt.qll 1ac3c3638899386a953905f98f432b7ba5c89e23e28ca55def478ce726127f50 4ac6f0f62082a2a5c1a0119addbb6e4cdebe468a7f972c682c114a70a58c1e80
+ql/lib/codeql/swift/generated/stmt/YieldStmt.qll 442e6c7ef71a45eddb2aef9eb879dad7e3a8fe3ff09605c4bcca11d9279bd42a fc745260bc8783792a735464ef6b9d5083492de56c37a172b11cef878316ec9e
+ql/lib/codeql/swift/generated/type/AnyBuiltinIntegerType.qll a263451163e027c4c4223ec288e090b7e0d399cc46eb962013342bfeac5f6b86 d850ec1ee1902945b172ddd0ecd8884e399e963f939c04bc8bfaadacebdf55a9
+ql/lib/codeql/swift/generated/type/AnyFunctionType.qll 4381225f3d267eca8bd2ecab8eaca93afe8860b59d3cc733c76e180995ace6c8 a96ac57a7737d584100d445d99b2e0ffedbc9a8ea827bf3f3a0f53052f5835b6
+ql/lib/codeql/swift/generated/type/AnyGenericType.qll af3e8060bec6128f3135960da1703a72c51c461e85737b9a336d72910fd33e7a 470e51991d606170482dba555bf4067a442e8fec25706a481ef38bdedb1531b1
+ql/lib/codeql/swift/generated/type/AnyMetatypeType.qll 6805a6895e748e02502105d844b66fab5111dbb0d727534d305a0396dacc9465 58e0794b8d6dccd9809f5b83bf64b162e69f3f84b5f3161b88aed10f16a8ede8
+ql/lib/codeql/swift/generated/type/ArchetypeType.qll 6c1590b59683ebd5b632bb77acf9a6f6fb20c3862a3d6c796e897f7aff72a32e ce7f20a8c20aff5d770216c939bae3d110ae70a9180a2203c5066430691566d9
+ql/lib/codeql/swift/generated/type/ArraySliceType.qll 72d0409e2704e89ebca364ae28d55c874152f55dd1deaac6c954617f6566f3c2 72d0409e2704e89ebca364ae28d55c874152f55dd1deaac6c954617f6566f3c2
+ql/lib/codeql/swift/generated/type/BoundGenericClassType.qll c82971dcd306a4cbc6bb885ae300556717eb2d068066b7752a36480e5eb14b5f c82971dcd306a4cbc6bb885ae300556717eb2d068066b7752a36480e5eb14b5f
+ql/lib/codeql/swift/generated/type/BoundGenericEnumType.qll 89fcee52adbe6c9b130eae45cf43b2a2c302e8812f8519ea885e5d41dec3ec56 89fcee52adbe6c9b130eae45cf43b2a2c302e8812f8519ea885e5d41dec3ec56
+ql/lib/codeql/swift/generated/type/BoundGenericStructType.qll ff24933889dcc9579fe9a52bd5992b6ecd7b7a7b59c4b1005734e5cd367c8ed6 ff24933889dcc9579fe9a52bd5992b6ecd7b7a7b59c4b1005734e5cd367c8ed6
+ql/lib/codeql/swift/generated/type/BoundGenericType.qll 22451d348947604932c9c560bfade72c06264a53a378ad7553ef3e160e5f769a 64d848e4237febf3e693752478f4f8e4218a6d546c200536a270b4db809a1ee6
+ql/lib/codeql/swift/generated/type/BuiltinBridgeObjectType.qll 848291382ac6bd7cf5dd6707418d4881ec9750ca8e345f7eff9e358715c11264 848291382ac6bd7cf5dd6707418d4881ec9750ca8e345f7eff9e358715c11264
+ql/lib/codeql/swift/generated/type/BuiltinDefaultActorStorageType.qll 54e981860527a18660c9c76da60b14fa6dd3dae0441490ed7eb47d36f1190d8b 54e981860527a18660c9c76da60b14fa6dd3dae0441490ed7eb47d36f1190d8b
+ql/lib/codeql/swift/generated/type/BuiltinExecutorType.qll 149642b70b123bcffb0a235ca0fca21a667939fe17cdae62fee09a54dca3e6be 149642b70b123bcffb0a235ca0fca21a667939fe17cdae62fee09a54dca3e6be
+ql/lib/codeql/swift/generated/type/BuiltinFloatType.qll 7a1c769c34d67f278074f6179596ec8aee0f92fb30a7de64e8165df2f377cd3f 7a1c769c34d67f278074f6179596ec8aee0f92fb30a7de64e8165df2f377cd3f
+ql/lib/codeql/swift/generated/type/BuiltinIntegerLiteralType.qll 94406446732709afdf28852160017c1ca286ad5b2b7812aa8a1a5c96952a7da1 94406446732709afdf28852160017c1ca286ad5b2b7812aa8a1a5c96952a7da1
+ql/lib/codeql/swift/generated/type/BuiltinIntegerType.qll c466054ad1bd06e225937cf67d947a0ae81a078475f9ab6149d4ffb23531c933 8813c8b99df42a489c6b38f7764daac5ab5a55b1c76167da200409b09a4d6244
+ql/lib/codeql/swift/generated/type/BuiltinJobType.qll 4ba48722281db420aeca34fc9bb638500832d273db80337aaff0a0fa709ec873 4ba48722281db420aeca34fc9bb638500832d273db80337aaff0a0fa709ec873
+ql/lib/codeql/swift/generated/type/BuiltinNativeObjectType.qll 7231290a65e31dbee4ec2a89b011ee1e5adb444848f6e8117e56bea0a1e11631 7231290a65e31dbee4ec2a89b011ee1e5adb444848f6e8117e56bea0a1e11631
+ql/lib/codeql/swift/generated/type/BuiltinRawPointerType.qll bc3f6c3388c08e05d6f7d086123dc2189480dae240fcb575aef2e0f24241d207 bc3f6c3388c08e05d6f7d086123dc2189480dae240fcb575aef2e0f24241d207
+ql/lib/codeql/swift/generated/type/BuiltinRawUnsafeContinuationType.qll f9e2ccc7c7505a44cca960c4ff32c33abbef350710bb4099dd8b7e2aaa4ba374 19f7e4b4e02825460374ac0d578544134a7a4d65940e32c1052e0c49b1b54aef
+ql/lib/codeql/swift/generated/type/BuiltinType.qll 0f90f2fd18b67edf20712ff51484afd5343f95c0b1a73e4af90b0bc52aed14d9 35bb8ee31eed786a4544e6b77b3423a549330d7f1fb8c131ba728ca4db41b95f
+ql/lib/codeql/swift/generated/type/BuiltinUnsafeValueBufferType.qll d569e7c255de5e87bb0eb68ae5e7fea011121e01b2868007485af91da7417cd6 d569e7c255de5e87bb0eb68ae5e7fea011121e01b2868007485af91da7417cd6
+ql/lib/codeql/swift/generated/type/BuiltinVectorType.qll f51ce577abec2a1de3ae77a5cd9719aa4a1a6f3f5ec492c7444e410fb1de802a f51ce577abec2a1de3ae77a5cd9719aa4a1a6f3f5ec492c7444e410fb1de802a
+ql/lib/codeql/swift/generated/type/ClassType.qll b52f0383d3dcbf7cf56d0b143cbb63783cb5fa319bcbfc4754e362d935e0fb53 b52f0383d3dcbf7cf56d0b143cbb63783cb5fa319bcbfc4754e362d935e0fb53
+ql/lib/codeql/swift/generated/type/DependentMemberType.qll d9806aa84e0c9a7f0d96155ffeae586ced8ee1343e139f754ebd97d4476f0911 d0b3395e3263be150a6b6df550c02a2567cfa4a827dcb625d0bf1e7bf01956eb
+ql/lib/codeql/swift/generated/type/DictionaryType.qll 8b9aad8e8eca8881c1b1516e354c25bf60f12f63f294e906d236f70de025307c 53b0102e1b8f9f5b2c502faa82982c2105dd0e7194eb9ff76d514bddfa50f1dd
+ql/lib/codeql/swift/generated/type/DynamicSelfType.qll 9a2950762ad4d78bfacbf5b166ea9dc562b662cf3fcbfc50198aaacf1ea55047 8fb21715ed4ba88866b010cbba73fc004d6f8baef9ce63c747e4d680f382ca6e
+ql/lib/codeql/swift/generated/type/EnumType.qll dcf653c7ee2e76882d9f415fbbc208905b8d8ed68cc32e36c0439a9205e65b35 dcf653c7ee2e76882d9f415fbbc208905b8d8ed68cc32e36c0439a9205e65b35
+ql/lib/codeql/swift/generated/type/ErrorType.qll cbc17f4d9977268b2ff0f8a517ca898978af869d97310b6c88519ff8d07efff3 cbc17f4d9977268b2ff0f8a517ca898978af869d97310b6c88519ff8d07efff3
+ql/lib/codeql/swift/generated/type/ExistentialMetatypeType.qll 3a7fd0829381fe4d3768d4c6b0b1257f8386be6c59a73458f68387f66ea23e05 3a7fd0829381fe4d3768d4c6b0b1257f8386be6c59a73458f68387f66ea23e05
+ql/lib/codeql/swift/generated/type/ExistentialType.qll 974537bfafdd509743ccd5173770c31d29aaa311acb07bb9808c62b7fa63f67a c6fbbfb8dacf78087828d68bc94db5d18db75f6c6183ab4425dfa13fccb6b220
+ql/lib/codeql/swift/generated/type/FunctionType.qll 36e1de86e127d2fb1b0a3a7abce68422bdf55a3ab207e2df03ea0a861ab5ccb4 36e1de86e127d2fb1b0a3a7abce68422bdf55a3ab207e2df03ea0a861ab5ccb4
+ql/lib/codeql/swift/generated/type/GenericFunctionType.qll 2465d7729e6b8950d04e9dbdf9018b1f651dba3716387d874de1a1175eb1bc42 a458be5441cd9d29d204c39ccd3e39c347f92c32d8ac2a75ad16fbe698545062
+ql/lib/codeql/swift/generated/type/GenericTypeParamType.qll f515debe8b21f3ea6551e4f8513cda14c3a5ed0cebd4cbfd3b533ff6f0e8b0bf f515debe8b21f3ea6551e4f8513cda14c3a5ed0cebd4cbfd3b533ff6f0e8b0bf
+ql/lib/codeql/swift/generated/type/InOutType.qll c69d0f3c3f3d82c6300e052366709760c12f91a6580865ff8718f29057925235 2a9e1d66bec636a727f5ebc60827d90afcdbee69aabe8ae7501f0e089c6dbd5e
+ql/lib/codeql/swift/generated/type/LValueType.qll 5159f8cf7004e497db76130d2bfd10228f60864f0e6e9e809fc9a2765eafa978 fc238183b7bf54632fa003e9e91a1c49fb9167170fe60c22358dc3a651acbf98
+ql/lib/codeql/swift/generated/type/MetatypeType.qll cd752f81257820f74c1f5c016e19bdc9b0f8ff8ddcc231daa68061a85c4b38e2 cd752f81257820f74c1f5c016e19bdc9b0f8ff8ddcc231daa68061a85c4b38e2
+ql/lib/codeql/swift/generated/type/ModuleType.qll 0198db803b999e2c42b65783f62a2556029c59d6c7cc52b788865fd7bb736e70 199f8fd9b4f9d48c44f6f8d11cb1be80eb35e9e5e71a0e92a549905092000e98
+ql/lib/codeql/swift/generated/type/NominalOrBoundGenericNominalType.qll 27d87dc4792b7f46fa1b708aadecef742ab2a78b23d4eb28ce392da49766122f 299c3ed5837dcb992a2a28d44ac6709c1d86a828879c62187fe29094e0e66c52
+ql/lib/codeql/swift/generated/type/NominalType.qll f7e85d544eaaa259c727b8b4ba691578861d15612a134d19936a20943270b629 87472017a129921d2af9d380f69c293f4deba788e7660b0fe085a455e76562e8
+ql/lib/codeql/swift/generated/type/OpaqueTypeArchetypeType.qll 74c840ae210fff84636fbfb75d8fce2c2e0bc5bda1489c57f312d2195fdfeda3 0c9986107dcf497798dc69842a277045dcaacfe8eec0ed1f5fc7244dd213ff56
+ql/lib/codeql/swift/generated/type/OpenedArchetypeType.qll ed97d3fb8810424643953a0d5ebd93e58d1b2e397ea01ccde0dcd8e68c41adb2 ed97d3fb8810424643953a0d5ebd93e58d1b2e397ea01ccde0dcd8e68c41adb2
+ql/lib/codeql/swift/generated/type/OptionalType.qll d99dd5ec5636cc6c3e0e52bf27d0d8bf8dfcff25739cd7e1b845f5d96b1a5ac9 d99dd5ec5636cc6c3e0e52bf27d0d8bf8dfcff25739cd7e1b845f5d96b1a5ac9
+ql/lib/codeql/swift/generated/type/ParameterizedProtocolType.qll 73308e43fc3db3218d5970505ddf698d4082fe38c9241077f5356f75cf422015 33508199a580da52644d1d592cc1ffc2065384e8bc22787cbf4ab9a45d2400bd
+ql/lib/codeql/swift/generated/type/ParenType.qll 4c8db82abce7b0a1e9a77d2cf799a3e897348fc48f098488bad4ca46890b2646 9ae88f83b4d09a8b59b27f6272533c1aebf04517264804e1cecd42d55e236aa3
+ql/lib/codeql/swift/generated/type/PrimaryArchetypeType.qll 87279ab9a04415fcbcf825af0145b4fc7f118fc8ce57727b840cb18f7d203b59 87279ab9a04415fcbcf825af0145b4fc7f118fc8ce57727b840cb18f7d203b59
+ql/lib/codeql/swift/generated/type/ProtocolCompositionType.qll 644a0618321838b5762424673b040352607745119c45aa0f5dd1022966970f3c 2344abae4c1f5ebece0d62078d0cea10513a80acbb22a0cb1024a2743a49af80
+ql/lib/codeql/swift/generated/type/ProtocolType.qll 07eb08216ca978c9565a7907ab3a932aa915041b6e7520bc421450b32070dbcf 07eb08216ca978c9565a7907ab3a932aa915041b6e7520bc421450b32070dbcf
+ql/lib/codeql/swift/generated/type/ReferenceStorageType.qll f565055bb52939ebb38eae4ec2fb9a70ee3045c1c7c9d604037ecf0557cce481 4d5b884f3947a1c0cb9673dc61b8735c9aeec19c9f0a87aa9b7fbe01f49fc957
+ql/lib/codeql/swift/generated/type/StructType.qll 5681060ec1cb83be082c4d5d521cdfc1c48a4095b56415efc03de7f960d1fa04 5681060ec1cb83be082c4d5d521cdfc1c48a4095b56415efc03de7f960d1fa04
+ql/lib/codeql/swift/generated/type/SubstitutableType.qll 9e74ec2d281cd3dedbc5791d66a820a56e0387260f7b2d30a5875dc3f5883389 619f0e4d509bdd9e8cfc061e5627762e9cbae8779bec998564556894a475f9d8
+ql/lib/codeql/swift/generated/type/SugarType.qll 4ea82201ae20e769c0c3e6e158bae86493e1b16bbd3ef6495e2a3760baa1fc6b 6c78df86db6f9c70398484819a9b9ecc8ee337b0a4ac2d84e17294951a6fd788
+ql/lib/codeql/swift/generated/type/SyntaxSugarType.qll 253e036452e0ba8ae3bb60d6ed22f4efb8436f4ef19f158f1114a6f9a14df42c 743fe4dede40ca173b19d5757d14e0f606fe36f51119445503e8eea7cf6df3b0
+ql/lib/codeql/swift/generated/type/TupleType.qll 036318b5e527c28d9bfc234e74ea60d8f0560737ed8c73d26e46b4d21cf49d78 8a50c7308cf91bc057bdce3e695bcb57d83831a7423cf8e946b005aaee36d5c2
+ql/lib/codeql/swift/generated/type/Type.qll 2bd40fd723b2feca4728efe1941ae4b7d830b1021b2de304e6d52c16d744f5a1 c9e44bc375a4dede3f5f1d5bcc8a2f667db0f1919f2549c8c2bb1af5eee899cf
+ql/lib/codeql/swift/generated/type/TypeAliasType.qll 081916a36657d4e7df02d6c034715e674cdc980e7067d5317785f7f5bd1b6acb 47b1b7502f8e0792bbe31f03b9df0302cc3d7332b84e104d83304e09f425a06b
+ql/lib/codeql/swift/generated/type/TypeRepr.qll 10febbf304b45c9c15f158ccc7f52aa4f4da0f7ca8856c082ef19823d9a1d114 89dcafe7b9939cf6915215ef2906becf5658a3fd2c7b20968b3fc72c3f5155ec
+ql/lib/codeql/swift/generated/type/UnarySyntaxSugarType.qll ffdaa0851a0db7c69cf6b8f4437fe848a73d8a1f20e1be52917c682bd6200634 ca5a9912c9f99a9aa9c7685242de1692aad21182f8105cbdce3ba3e7f1118b40
+ql/lib/codeql/swift/generated/type/UnboundGenericType.qll 43549cbdaaa05c3c6e3d6757aca7c549b67f3c1f7d7f0a987121de0c80567a78 43549cbdaaa05c3c6e3d6757aca7c549b67f3c1f7d7f0a987121de0c80567a78
+ql/lib/codeql/swift/generated/type/UnmanagedStorageType.qll 198727a7c9557a0a92c6d833768086f0a0a18c546b4bfd486d7ff7ad5677a6aa 198727a7c9557a0a92c6d833768086f0a0a18c546b4bfd486d7ff7ad5677a6aa
+ql/lib/codeql/swift/generated/type/UnownedStorageType.qll 062fd6e902ecbde78a7b8a6d80029731ffb7b4ca741fdc1573c19dd373b6df8e 062fd6e902ecbde78a7b8a6d80029731ffb7b4ca741fdc1573c19dd373b6df8e
+ql/lib/codeql/swift/generated/type/UnresolvedType.qll 4bdb583cf2bf654a6a37486d06a14fd631b715f47f7e8aea314d939143c5c6c9 4bdb583cf2bf654a6a37486d06a14fd631b715f47f7e8aea314d939143c5c6c9
+ql/lib/codeql/swift/generated/type/VariadicSequenceType.qll 796537097d8e32eda38be55adde9ec935e25c74ff7450f7ce8cd687c50c0ba89 796537097d8e32eda38be55adde9ec935e25c74ff7450f7ce8cd687c50c0ba89
+ql/lib/codeql/swift/generated/type/WeakStorageType.qll dda4397a49f537ec44117a86dc09705a07d281e31bf4643738b15219053ed380 dda4397a49f537ec44117a86dc09705a07d281e31bf4643738b15219053ed380
+ql/test/extractor-tests/generated/Comment/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
+ql/test/extractor-tests/generated/Diagnostics/Diagnostics.ql 6a4a9480cc929381e0337b181e5ac519a7abc6d597ebe24fb6701acf79ced86f 199c5bf8bd38e161d989e0e4db1ea1d3ddcb4d7cf571afd9112ce3ed8d9b8d2a
+ql/test/extractor-tests/generated/File/File.ql ab0968ae31b749da2b66462bd04e4dfb30604dba405a84594b575abfc4fa4c35 bcc0ff648b28c5ecd567e196e700272883756bbcc65296bbb880a979e3162628
+ql/test/extractor-tests/generated/decl/AccessorDecl/AccessorDecl.ql f378065da46252a3fb7f960731645ad0d69639907bcbe4a5922c416a0c8efcf9 e80e09a2bb54c397f101aaa4c820c94a6d7df819dd746437e74325a8243405e0
+ql/test/extractor-tests/generated/decl/AccessorDecl/AccessorDecl_getBody.ql 1d42eb1a5b832cfaf1949b61a01a6a11448a6d4369a44f2511bb31d1d7fc10a8 b326a6743121353f8a66410d3d9151ca969939abcbbe5c411872ca290da45123
+ql/test/extractor-tests/generated/decl/AccessorDecl/AccessorDecl_getGenericTypeParam.ql 8648679e9403477c7f97b6df450a0fa623dc9aff0777021ee33f9cc96eef2611 59c384c35804bf205c3c63e8b956e6bc89d3ded7952911c40e7bf156acb56bf8
+ql/test/extractor-tests/generated/decl/AccessorDecl/AccessorDecl_getParam.ql 7c61c15d75f681c5f5817bdc1e0c1e2594afdc43a5a8889bd385b6cd007d6509 7f6111069c3f289fb3bd21933893757a0adbf8be8f21bf5f8960b6fb26840219
+ql/test/extractor-tests/generated/decl/AccessorDecl/AccessorDecl_getSelfParam.ql 0d773ccd4c84a5280f03341cccff8363479b668541d269311215db866a1cfd53 743d584a8d5d85aa11e96ca44151f1239c750bf8a429d60269129696411a0294
+ql/test/extractor-tests/generated/decl/AssociatedTypeDecl/AssociatedTypeDecl.ql 392e439539392e58582b366a5816ea0ec57c665910933ea42a9420d1feb06a0a f9c0720fb174e765385b70d512c894215713a658b442cb387a2658d43686b69c
+ql/test/extractor-tests/generated/decl/AssociatedTypeDecl/AssociatedTypeDecl_getBaseType.ql 39d26252c242eec5aaef23951bd76755a4d3cdceff7349b15067fefb2ece14b3 214fdbaa77d32ee6f21bcccf112d46c9d26006552081cc1f90cbb00a527a9d7f
+ql/test/extractor-tests/generated/decl/ClassDecl/ClassDecl.ql 8a717374e7ba42fb907fbcd013116679375998638056f7b81a1f67305a9e60ca fb4776c0231a6430e5e89f51a70a9627a1af5d3ee91331914220295977444002
+ql/test/extractor-tests/generated/decl/ClassDecl/ClassDecl_getBaseType.ql 5f4fddbb3fb3d003f1485dc4c5a56f7d0d26dfc1d691540085654c4c66e70e69 0b5a5b757ca92e664ef136d26ac682aa5a0e071494d9f09d85f66cd13807e81d
+ql/test/extractor-tests/generated/decl/ClassDecl/ClassDecl_getGenericTypeParam.ql ca0b73a4f31eea47def7a1de017de36b5fdaec96ae98edb03ff00611bfcac572 f9badd62887a30113484496532b3ff9b67ff5047eb5a311aa2ec2e4d91321e0e
+ql/test/extractor-tests/generated/decl/ClassDecl/ClassDecl_getMember.ql f73881b14bb4eaf83dacf60b9e46d440227f90566e2dfb8908a55567626ccdda f78a7261f7ccfe01ca55f7279bd5a1a302fc65ba36b13e779426d173c7465b84
+ql/test/extractor-tests/generated/decl/ConcreteFuncDecl/ConcreteFuncDecl.ql 650ab6b91b39fca2192f739a967edaf8190caa863223c50848a7786bfe0ca367 e5131d099e3aef634aa24cad937347a5f99902f6c7be7d398304485eccbfb95f
+ql/test/extractor-tests/generated/decl/ConcreteFuncDecl/ConcreteFuncDecl_getBody.ql 3c742b9c8d8d8c23d1bef03f559e1b91f0d3848084ba5819f118c323dd1920a2 340d4e4a6312ffaf4c47bbc753828c1e478d84a2d399c66220288c081c8357ca
+ql/test/extractor-tests/generated/decl/ConcreteFuncDecl/ConcreteFuncDecl_getGenericTypeParam.ql b5e64bf02a5991a1549794af0aaab9ae654c88b5d52a3e04b7ac525b3a64af5e 034a7d0bf7500afa952a28d184d1d073e71c3dcec3bc26fcefaed70aef9de3ce
+ql/test/extractor-tests/generated/decl/ConcreteFuncDecl/ConcreteFuncDecl_getParam.ql 392bc906a24a432b0dd65a18248cab53874e1ea018b44fdf07d8acb55939c85d cf272febc8355d7171308c0b35f65ae0469106c022093f87ffd25d5951eef4a3
+ql/test/extractor-tests/generated/decl/ConcreteFuncDecl/ConcreteFuncDecl_getSelfParam.ql c8a593149db6785d9bc7017a3fcee305832ab434955b4c36ac2842e214f0acac b70a7c18085961d2c907631d69811071deb391c45c94ef7165bf7ce700dabaf9
+ql/test/extractor-tests/generated/decl/ConcreteVarDecl/ConcreteVarDecl.ql f736e383b4be2b927ba982ed41d863178a1a48b3fe92938ae59eea8dd348f6f6 fa468b5423243617ca5ad3fe9eea474a60ed045f441ed1fa47e03ec4e82e1f2d
+ql/test/extractor-tests/generated/decl/ConcreteVarDecl/ConcreteVarDecl_getAccessorDecl.ql 7f1890b891402c7974087bd1621ce7ce2893008a2ab0218396c82e99ce2e6c9d 4d483e18ad2211759e3a57f973679844d28505b84fe2b10b2303a561d0ac7ca5
+ql/test/extractor-tests/generated/decl/ConcreteVarDecl/ConcreteVarDecl_getAttachedPropertyWrapperType.ql 0fd114f752aae89ef80bc80e0532aa4849106f6d1af40b1861e4ba191898b69e fdf28e036a1c4dcb0a3aaaa9fb96dcc755ff530ab6f252270c319df9a1d0d7ac
+ql/test/extractor-tests/generated/decl/ConcreteVarDecl/ConcreteVarDecl_getParentInitializer.ql c90aa3ae4249af7d436f976773e9208b41d784b57c6d73e23e1993f01262f592 3b1391d6b0605011bec7cc6f3f964ed476273bd5ed4bb5d6590f862aa4e7a2a3
+ql/test/extractor-tests/generated/decl/ConcreteVarDecl/ConcreteVarDecl_getParentPattern.ql a46347331698857119cd74495a25ea6cff6d20f8003741dc94e9d68b87e7ed1d c60aeb108f56485200eafbc677662869f4393f1d462a3385fa334926adff233c
+ql/test/extractor-tests/generated/decl/ConcreteVarDecl/ConcreteVarDecl_getPropertyWrapperBackingVar.ql 370da9dd7a6bcb02c18246f680ec2af9e12c81504285b43cbf6ffd8963fbd6e4 d9e86f574111e15d42c0eaabe4e65882ad55d3604d9cc281baf28d4817e438a8
+ql/test/extractor-tests/generated/decl/ConcreteVarDecl/ConcreteVarDecl_getPropertyWrapperBackingVarBinding.ql addbf4e32d383fc35b7505a33c5a675feeedd708c4b94ce8fc89c5bc88c36f1f 549c8ec9cf2c1dc6881e848af8be9900d54604a747ded1f04bd5cadf93e5ede3
+ql/test/extractor-tests/generated/decl/ConcreteVarDecl/ConcreteVarDecl_getPropertyWrapperProjectionVar.ql 502a76b34c78d3cf8f38969671840dc9e28d478ba7afe671963145ba4dc9460d 6125a91820b6b8d139392c32478383e52e40e572e0f92a32f0e513409d2c4e11
+ql/test/extractor-tests/generated/decl/ConcreteVarDecl/ConcreteVarDecl_getPropertyWrapperProjectionVarBinding.ql 40274aac8b67cb6a285bf91ccdc725ae1556b13ebcc6854a43e759b029733687 44e569aac32148bcce4cd5e8ebb33d7418580b7f5f03dfbd18635db9965b28d9
+ql/test/extractor-tests/generated/decl/ConstructorDecl/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
+ql/test/extractor-tests/generated/decl/DestructorDecl/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
+ql/test/extractor-tests/generated/decl/EnumCaseDecl/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
+ql/test/extractor-tests/generated/decl/EnumDecl/EnumDecl.ql d735a44938c2ad55a09a135d4e24b47e8e3dad4ae00e3335ea7352d1d7137bbb 8bfd5d4c816fc989f031a85f534c61a55b04f69b678adc579d53f4ddb2f8b6a3
+ql/test/extractor-tests/generated/decl/EnumDecl/EnumDecl_getBaseType.ql 4ace6176a57dd4c759356ddbefc28b25481c80bdeddfeb396d91b07db55af22a d0d1337ccbba45a648fe68fefc51006e14506d4fb7211fb2bde45f7761c4dbf1
+ql/test/extractor-tests/generated/decl/EnumDecl/EnumDecl_getGenericTypeParam.ql 3a0927f87a21d69bfc309f5f7faedb3d0cc2956c071b16c38b2b4acd36f24ea9 aafed56a1744579f05b3817adef6a5fd011d1b5cb7da2db230a43b6f55a04649
+ql/test/extractor-tests/generated/decl/EnumDecl/EnumDecl_getMember.ql 621870b7dbeaeefa93cbbfc102e97810b15d39b49db685019c9e3cbf2423ffef e110630f0ba8f588e7f8ebc56a1a31c2ca2f22f2cc763baa76854beb3b3a4ece
+ql/test/extractor-tests/generated/decl/EnumElementDecl/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
+ql/test/extractor-tests/generated/decl/ExtensionDecl/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
+ql/test/extractor-tests/generated/decl/GenericTypeParamDecl/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
+ql/test/extractor-tests/generated/decl/IfConfigDecl/IfConfigDecl.ql d6cb84e2beb3042390b177e8f47a6e030bd439582b698c0a635fb59654b1ca7e 08e06c55de5642be69b4155e400d5fe3a6a2eb51baeea0ba0386d47d8e79d88d
+ql/test/extractor-tests/generated/decl/IfConfigDecl/IfConfigDecl_getActiveElement.ql 914165306a2eb5c8039750e1e03bda156a684946abc8709d786b4144d9c9eb3b 5e87dfd99858ae257506415369bff937a731b6309dac2242b03ea79ead045fc1
+ql/test/extractor-tests/generated/decl/ImportDecl/ImportDecl.ql eb56535b0c351b04fcfdd468c5abe5b0c53b7f84ba2813de9a3a236d2a3589a8 56d894aabbe8275754ee2d420e7400676866538f1befd9a3a2fc846a1966da48
+ql/test/extractor-tests/generated/decl/ImportDecl/ImportDecl_getDeclaration.ql a76c6360ed7b423229ec64dc4d03f586204fbf5107408b7d07c06ef43b30526e bc8569ecf097f0e6176da4f42379158137f70dcfb9b6d60f4c16f643b68f9d91
+ql/test/extractor-tests/generated/decl/ImportDecl/ImportDecl_getImportedModule.ql 0339867ca4f414cceba85df20d12eca64a3eea9847bb02829dc28fa95701e987 8c292768f56cecbdfeb92985212e6b39ecada819891921c3ba1532d88d84c43e
+ql/test/extractor-tests/generated/decl/InfixOperatorDecl/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
+ql/test/extractor-tests/generated/decl/ModuleDecl/ModuleDecl.ql e80e0f64d36027d9f064be0147711379a9cd82da8c52517bab39572e934ed1ac ff58e0dc81e399ee95496a4d2cf3f23974698c971dfe323b87d01164fa1de18f
+ql/test/extractor-tests/generated/decl/ModuleDecl/ModuleDecl_getBaseType.ql 54a4bd2cfa666271ae9092285bb7217b082c88483d614066cfb599fc8ab84305 8b24ab8e93efe3922cb192eb5de5f517763058782e83e8732153421adddd68e1
+ql/test/extractor-tests/generated/decl/ModuleDecl/ModuleDecl_getExportedModule.ql cfca012f0951c86560d892ea5eae182d5eda661c9484a0df71ef9c905123e8f6 dfebda4fcad0e2f2a2c944782a7355b3caeac569e5a45621c582bc1bb243b2cc
+ql/test/extractor-tests/generated/decl/ModuleDecl/ModuleDecl_getImportedModule.ql 44018a788205592c59cd10072f8b8d0558100bb15fff4b3e490176e86193e5b1 cc9fe6571713af8a0e844ac5da682c24feb1a2be4535e3feeb4cbbafba91a414
+ql/test/extractor-tests/generated/decl/OpaqueTypeDecl/OpaqueTypeDecl.ql 263d878d5a60ad0b63c9c8fc7a8463e71ad920de9b5e0afa5c657d44f5fcedb3 615435e94f0c55f1bcdf59176dace7c3737ed052e7b2a049e2a0706523de5fa2
+ql/test/extractor-tests/generated/decl/OpaqueTypeDecl/OpaqueTypeDecl_getBaseType.ql d030fd55ea5a5443c03e8ba1a024c03e3c68c96c948c850131f59fbac6409402 46816c1a75a4cf11db95884733382e46d5573b6c1116d5de0bfe5ae91fed4c3d
+ql/test/extractor-tests/generated/decl/OpaqueTypeDecl/OpaqueTypeDecl_getGenericTypeParam.ql c147420a91c157ee37a900dd7739bdb386fba5eeaadd84e609d2642d3fdbf2e0 cf1c981b6cb7b84944e9430cfe361905dcc396d4356d7f20a0ba993352bd5b02
+ql/test/extractor-tests/generated/decl/OpaqueTypeDecl/OpaqueTypeDecl_getOpaqueGenericParam.ql 2b4264a68817f53ddd73e4fd80e9f7c3a5fcfa4d0692135e2d3b10c8a8379d98 c2efac460b655e726d898b2b80cbfce24820a922e26935804ddd21ae9c474085
+ql/test/extractor-tests/generated/decl/ParamDecl/ParamDecl.ql a02dc34d4f3cfab7d3080413062f320e8ce77162cfc4e61094b5f26a761e4949 e9737a4bec7afc503f7b6cfeb54d0a1753777cbfad03943209431b5387b7850a
+ql/test/extractor-tests/generated/decl/ParamDecl/ParamDecl_getAccessorDecl.ql bf6bd41b1eedad87a2d86acb4b183ddbd150119a0301ec56c6d7129fe5dee453 247fe28adde08cb86e03f9f21c32ea96b8bdc522b848bb84a592292338cac6b1
+ql/test/extractor-tests/generated/decl/ParamDecl/ParamDecl_getAttachedPropertyWrapperType.ql 3642cfd3ecf47a6b81a1745dc043131df349b898a937445eadfdee9f69aec3fc 97137c6673c45b0743db310b0839426eab71f5bc80ccc7bab99c304b8198159f
+ql/test/extractor-tests/generated/decl/ParamDecl/ParamDecl_getParentInitializer.ql f0ecd0352a7e34e13040f31440a6170b0661b625c65b35d13021731b6db0f441 9fc89925050c9538ba3ba0b8c45278e30dffba64b53002f675e3f7a9ef014539
+ql/test/extractor-tests/generated/decl/ParamDecl/ParamDecl_getParentPattern.ql d6cbe58a6fb294762d88cbad55e2a8a188573969c1c691e73a9d6f598001f01e ddc4c06dccebaa4e92dcf765304278ca10339070955ee6616dfec6c814074496
+ql/test/extractor-tests/generated/decl/ParamDecl/ParamDecl_getPropertyWrapperBackingVar.ql d8b0a5264ebfd405d7a400cb56feffe66b73cbeb8caac92d96a5ee9acfc7a59d c3fd21ee69682592135fc2c88633dba36f5a5c4b07a3ad756977afdc055b9d6b
+ql/test/extractor-tests/generated/decl/ParamDecl/ParamDecl_getPropertyWrapperBackingVarBinding.ql 71ad0741b1db153c02506d324b4211526209884a4206a2fc12565aae9426f5f0 e90e963ba9b709743d2bc973027e7f2985f072e2f0dd2e92db9a9053e136de63
+ql/test/extractor-tests/generated/decl/ParamDecl/ParamDecl_getPropertyWrapperLocalWrappedVar.ql 97255410c46dcfae6b454eb71b377ae4a14b2c5ce5bd40e4ba57f351476e87ee 277094dbdde3018cc24d660e7dca9ecea732ce22d2a7c009f36644d3e9676f68
+ql/test/extractor-tests/generated/decl/ParamDecl/ParamDecl_getPropertyWrapperLocalWrappedVarBinding.ql 14f50b706a2dba7123888868d93fa72a4871e6e04949cc87a7df52e27b7197d1 680242c73f78a64a1687cf59b0a80f715c98b994b32ec90044bcedd2c258f786
+ql/test/extractor-tests/generated/decl/ParamDecl/ParamDecl_getPropertyWrapperProjectionVar.ql 406436f415d5a6895be712471e7ab2d8b945539ac01b845ce191c4186e1cd275 4fdd0bc67207fd5cbe30743df46fdc61eeb5e58d877ef4aef5c7d7f0f684ef05
+ql/test/extractor-tests/generated/decl/ParamDecl/ParamDecl_getPropertyWrapperProjectionVarBinding.ql c79a13e49d3375edac8e51b27a58318afee959a8df639f7b0d7d77de1e2d60bc 8c3b9dae1079e674854d15f4bd43f1f507b7fac6900f0831d92f2140aae268b4
+ql/test/extractor-tests/generated/decl/PatternBindingDecl/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
+ql/test/extractor-tests/generated/decl/PostfixOperatorDecl/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
+ql/test/extractor-tests/generated/decl/PoundDiagnosticDecl/PoundDiagnosticDecl.ql 5a84b0117ba0bd438a7b6d034a95b4cf487eaec6ed45fa5a24df421a666704e0 2dd647c445849cc0ecfaa55b918d36c4f06a7c6e15f1f01a7a2f9c25e2b3b45b
+ql/test/extractor-tests/generated/decl/PrecedenceGroupDecl/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
+ql/test/extractor-tests/generated/decl/PrefixOperatorDecl/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
+ql/test/extractor-tests/generated/decl/ProtocolDecl/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
+ql/test/extractor-tests/generated/decl/StructDecl/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
+ql/test/extractor-tests/generated/decl/SubscriptDecl/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
+ql/test/extractor-tests/generated/decl/TopLevelCodeDecl/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
+ql/test/extractor-tests/generated/decl/TypeAliasDecl/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
+ql/test/extractor-tests/generated/expr/AppliedPropertyWrapperExpr/AppliedPropertyWrapperExpr.ql 5fc96795860963e91b1073a18347b81ca60e57e364636b33d452bf721cd33d88 798e5804cf4a7cc53f150d081ca585b20aee66ff3e4f676e96806a84aabf4ba1
+ql/test/extractor-tests/generated/expr/AppliedPropertyWrapperExpr/AppliedPropertyWrapperExpr_getType.ql 1caa0b9c70afc6f63fb1cb05b30499a615a997849d5128006f9c7147b7f1d4a4 64474604bf6d9028bdcbbb8dd2a607c65cb74038e2d6e88e86908f82590ba7a7
+ql/test/extractor-tests/generated/expr/Argument/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
+ql/test/extractor-tests/generated/expr/ArrayExpr/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
+ql/test/extractor-tests/generated/expr/AssignExpr/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
+ql/test/extractor-tests/generated/expr/AutoClosureExpr/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
+ql/test/extractor-tests/generated/expr/BinaryExpr/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
+ql/test/extractor-tests/generated/expr/BindOptionalExpr/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
+ql/test/extractor-tests/generated/expr/BooleanLiteralExpr/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
+ql/test/extractor-tests/generated/expr/CallExpr/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
+ql/test/extractor-tests/generated/expr/CaptureListExpr/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
+ql/test/extractor-tests/generated/expr/ClosureExpr/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
+ql/test/extractor-tests/generated/expr/CoerceExpr/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
+ql/test/extractor-tests/generated/expr/ConditionalCheckedCastExpr/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
+ql/test/extractor-tests/generated/expr/ConstructorRefCallExpr/ConstructorRefCallExpr.ql 1364aaeb8354078d479fc32b389febf5a76d18d86924be8357be5d7c59b68e48 816f5bf8b36e68c63d7849d883f3cf7fe9d19ee55d3244099d3178ae62aef1d3
+ql/test/extractor-tests/generated/expr/ConstructorRefCallExpr/ConstructorRefCallExpr_getArgument.ql a3a01f99aa8df3aafed50cc7828829e567e01fed7874854e7a620904f1641fc9 962669b36b9adbc3d75bae79a9a754692c20d6e14ee2b47aca8f3f93b27895da
+ql/test/extractor-tests/generated/expr/ConstructorRefCallExpr/ConstructorRefCallExpr_getType.ql c3504dda8c41ebc386a9011deb06b0f5312538306b5ca10f7c4ff2e0f2c277dd aa6785ac86fe4954ef679fdfa6cd91f964d9281ab0162240b6e4b9eb67b0eda3
+ql/test/extractor-tests/generated/expr/DeclRefExpr/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
+ql/test/extractor-tests/generated/expr/DefaultArgumentExpr/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
+ql/test/extractor-tests/generated/expr/DictionaryExpr/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
+ql/test/extractor-tests/generated/expr/DiscardAssignmentExpr/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
+ql/test/extractor-tests/generated/expr/DotSyntaxBaseIgnoredExpr/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
+ql/test/extractor-tests/generated/expr/DotSyntaxCallExpr/DotSyntaxCallExpr.ql 0065feb0a78820e5905518ed06b41095fead328ed10fa6c7e6318e845f06670f d37a87dd726d27888b0673aac38726f7b190d6522e57c443e1a56f77c15e7bee
+ql/test/extractor-tests/generated/expr/DotSyntaxCallExpr/DotSyntaxCallExpr_getArgument.ql ab0023396a31a9fad384ac6ab2819fa3b45726d651fee6ee5d84ea4fbdb55992 410afe1ae14ca17bc245c9fa88f84ba1d02e20a7803910746316ddcacc062ace
+ql/test/extractor-tests/generated/expr/DotSyntaxCallExpr/DotSyntaxCallExpr_getType.ql ea3d25737d4c02d6ecd405d23471a587945362dee1160f6346484fffa166835d 3edcaae4cd47839dc716640ac9c098a9c65f365a69fb5442d15eb1955c06dcaa
+ql/test/extractor-tests/generated/expr/DynamicLookupExpr/DynamicLookupExpr.ql 626a984185cb3082e3138740cc44dcd94334340266f8dff4212d1df8b2950a7d 5b3af58bcb8eb2a05677f5e19bbd5dfd77ff340d020869b780329f5e21b985a9
+ql/test/extractor-tests/generated/expr/DynamicLookupExpr/DynamicLookupExpr_getMember.ql ab1669430da9e60e3b5187bd4f45e7a9b501348cd0c66e4d8570c6facc3a82a3 a2e5e9781c9af9c52fe9d5735f146dc4a2e077096f2baee8db75f2a2f82b0037
+ql/test/extractor-tests/generated/expr/DynamicLookupExpr/DynamicLookupExpr_getType.ql 216b9caa3388b85959b19db012c6a7af40981ef92e4749b9cc644caee830041c 32691b624baed5c89fbef438214ecb893f9c1d1a575194133b56d79877e3feec
+ql/test/extractor-tests/generated/expr/DynamicTypeExpr/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
+ql/test/extractor-tests/generated/expr/EnumIsCaseExpr/EnumIsCaseExpr.ql 6828ec28bceddb96c23eaa9b4b2ee6d6223edbca47c9f30219c09093fa7c6465 334b8ecfb0b9fc40b2e1440173e25aeba65905765c35bfbbf68090ad864c10d0
+ql/test/extractor-tests/generated/expr/EnumIsCaseExpr/EnumIsCaseExpr_getType.ql edc2e175c971465f5667c4586bc4c77e5c245d267f80009a049b8f657238a5f4 5df26b5bdf975ba910a7c3446705c3ac82a67d05565d860fe58464ee82bafdde
+ql/test/extractor-tests/generated/expr/FloatLiteralExpr/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
+ql/test/extractor-tests/generated/expr/ForceTryExpr/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
+ql/test/extractor-tests/generated/expr/ForceValueExpr/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
+ql/test/extractor-tests/generated/expr/ForcedCheckedCastExpr/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
+ql/test/extractor-tests/generated/expr/IdentityExpr/IdentityExpr.ql 682a734d58a9bc731f4b73b2c54467774243438be7bb8d5c8fe6483c66401332 cbe4c4df1b7163995c76b89eee41eacb1a573c774155323aa8dcf79e404379ed
+ql/test/extractor-tests/generated/expr/IdentityExpr/IdentityExpr_getType.ql 7a8520abbf50642f886a3cdea37530b0577d509f31d76224467ad5d435bb0e39 a6fd63a7964cf778cc4b23ce5112138d7d5a5db96956e9514741ef9789bd1f19
+ql/test/extractor-tests/generated/expr/IfExpr/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
+ql/test/extractor-tests/generated/expr/ImplicitConversionExpr/ImplicitConversionExpr.ql c9e1a3f60f760077b2149c0bd647195628f1969758d885174665b7fb4c0c9b8a a3a9766f976499caaee2739ed5a81b63cf2f556924643713cee59fac4ab07e5d
+ql/test/extractor-tests/generated/expr/ImplicitConversionExpr/ImplicitConversionExpr_getType.ql 184ff1dec5d65024c8a0c2b316706ac58c68c62c715c266211e947168750c89a 486fc8d65c0db86bdada2d540f665278caab43454a69ccc8c2e702729397fef0
+ql/test/extractor-tests/generated/expr/InOutExpr/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
+ql/test/extractor-tests/generated/expr/IntegerLiteralExpr/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
+ql/test/extractor-tests/generated/expr/InterpolatedStringLiteralExpr/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
+ql/test/extractor-tests/generated/expr/IsExpr/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
+ql/test/extractor-tests/generated/expr/KeyPathApplicationExpr/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
+ql/test/extractor-tests/generated/expr/KeyPathDotExpr/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
+ql/test/extractor-tests/generated/expr/KeyPathExpr/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
+ql/test/extractor-tests/generated/expr/LazyInitializerExpr/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
+ql/test/extractor-tests/generated/expr/MagicIdentifierLiteralExpr/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
+ql/test/extractor-tests/generated/expr/MakeTemporarilyEscapableExpr/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
+ql/test/extractor-tests/generated/expr/MemberRefExpr/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
+ql/test/extractor-tests/generated/expr/MethodRefExpr/MethodRefExpr.ql a2fd4e761b2425c3055b0035937e0303e1b3555ab48d699f765db91c31bac7ae 6a1c3b2379001592095ae2a48740373cf8cec3a256a308ffad8a1a1c74ae656e
+ql/test/extractor-tests/generated/expr/MethodRefExpr/MethodRefExpr_getMember.ql 178794928d040a4a5ebbae0cd835936eac0214756fbb5b4bbbe29d4487e86d0c 6efedf486a073a487a45539f097219bb7ac9c11c0ce8d539e950a9e5035d8a61
+ql/test/extractor-tests/generated/expr/MethodRefExpr/MethodRefExpr_getType.ql 991f8855bd8297971aec205aa13d072674739133d4adb8cdaa272c6340848bb4 08810d4640f61ab4ede0ddb0d23c498936ae3b6ee3f40ab7f702b96ad5dba101
+ql/test/extractor-tests/generated/expr/NilLiteralExpr/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
+ql/test/extractor-tests/generated/expr/ObjectLiteralExpr/ObjectLiteralExpr.ql b47984c8a72cc757922beda3a38ec090c9286aa5ccba9b799fc27223f4f85952 9297bd78da12cc7db6d183e6c6de86e259220c44674a21a972a51e2661030d55
+ql/test/extractor-tests/generated/expr/ObjectLiteralExpr/ObjectLiteralExpr_getArgument.ql ab308c1fa027136070a6ee9ebe5149c69b34bb9ae910f201f37cecd8b6341ff8 deef69f4a1a94386a32ec964e696972a2c6a91c34d7e99c7e4a3811980f5ecc4
+ql/test/extractor-tests/generated/expr/ObjectLiteralExpr/ObjectLiteralExpr_getType.ql 07d59d9962f3705f8f32302c0d730c179ca980172dd000b724a72e768fbf39db cd146e19249590316bb83efec19dd41234723513025cf9df45313f78f2b364dd
+ql/test/extractor-tests/generated/expr/OneWayExpr/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
+ql/test/extractor-tests/generated/expr/OpaqueValueExpr/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
+ql/test/extractor-tests/generated/expr/OpenExistentialExpr/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
+ql/test/extractor-tests/generated/expr/OptionalEvaluationExpr/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
+ql/test/extractor-tests/generated/expr/OptionalTryExpr/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
+ql/test/extractor-tests/generated/expr/OtherConstructorDeclRefExpr/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
+ql/test/extractor-tests/generated/expr/PostfixUnaryExpr/PostfixUnaryExpr.ql b6e8de27cc17a1bd3883948af8fb620fd7872b01e63ae3d030dadc09e8eccb18 378588263065a827aef9cca17ceda876cfc6f40295bb7e46d506d59400a86521
+ql/test/extractor-tests/generated/expr/PostfixUnaryExpr/PostfixUnaryExpr_getArgument.ql 3b0e6f81599e5565bb78aff753932776c933fefdc8dc49e57db9f5b4164017f6 43031a3d0baa58f69b89a8a5d69f1a40ffeeaddc8a630d241e107de63ea54532
+ql/test/extractor-tests/generated/expr/PostfixUnaryExpr/PostfixUnaryExpr_getType.ql fa909883140fe89084c289c18ebc681402c38d0f37159d01f043f62de80521fc 4cd748e201e9374e589eaa0e3cc10310a1378bba15272a327d5cf54dbd526e8f
+ql/test/extractor-tests/generated/expr/PrefixUnaryExpr/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
+ql/test/extractor-tests/generated/expr/PropertyWrapperValuePlaceholderExpr/PropertyWrapperValuePlaceholderExpr.ql 3b24e7b4c80d3d2a614be7a9329c45d71691d82ba624b5a4512048a9aa560491 8209c8bcf99ed5b81f212bb8c9fac2c1562cf342b0f596116dc3d5c7c8e4eb83
+ql/test/extractor-tests/generated/expr/PropertyWrapperValuePlaceholderExpr/PropertyWrapperValuePlaceholderExpr_getType.ql 0972415a8ac29f460d480990f85c3976ad947e26510da447bbf74ee61d9b3f4e 463b8ce871911b99c495ea84669b4e6f8eafc645df483f6a99413e930bc0275e
+ql/test/extractor-tests/generated/expr/PropertyWrapperValuePlaceholderExpr/PropertyWrapperValuePlaceholderExpr_getWrappedValue.ql 208153f062b04bec13a860b64ea51c1d531597140d81a6d4598294dc9f8649a2 dfaea19e1075c02dfc0366fac8fd2edfae8dde06308730eb462c54be5b571129
+ql/test/extractor-tests/generated/expr/RebindSelfInConstructorExpr/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
+ql/test/extractor-tests/generated/expr/RegexLiteralExpr/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
+ql/test/extractor-tests/generated/expr/StringLiteralExpr/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
+ql/test/extractor-tests/generated/expr/SubscriptExpr/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
+ql/test/extractor-tests/generated/expr/SuperRefExpr/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
+ql/test/extractor-tests/generated/expr/TapExpr/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
+ql/test/extractor-tests/generated/expr/TryExpr/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
+ql/test/extractor-tests/generated/expr/TupleElementExpr/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
+ql/test/extractor-tests/generated/expr/TupleExpr/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
+ql/test/extractor-tests/generated/expr/TypeExpr/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
+ql/test/extractor-tests/generated/expr/VarargExpansionExpr/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
+ql/test/extractor-tests/generated/pattern/AnyPattern/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
+ql/test/extractor-tests/generated/pattern/BindingPattern/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
+ql/test/extractor-tests/generated/pattern/BoolPattern/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
+ql/test/extractor-tests/generated/pattern/EnumElementPattern/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
+ql/test/extractor-tests/generated/pattern/ExprPattern/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
+ql/test/extractor-tests/generated/pattern/IsPattern/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
+ql/test/extractor-tests/generated/pattern/NamedPattern/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
+ql/test/extractor-tests/generated/pattern/OptionalSomePattern/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
+ql/test/extractor-tests/generated/pattern/ParenPattern/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
+ql/test/extractor-tests/generated/pattern/TuplePattern/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
+ql/test/extractor-tests/generated/pattern/TypedPattern/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
+ql/test/extractor-tests/generated/stmt/BraceStmt/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
+ql/test/extractor-tests/generated/stmt/BreakStmt/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
+ql/test/extractor-tests/generated/stmt/CaseLabelItem/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
+ql/test/extractor-tests/generated/stmt/CaseStmt/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
+ql/test/extractor-tests/generated/stmt/ConditionElement/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
+ql/test/extractor-tests/generated/stmt/ContinueStmt/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
+ql/test/extractor-tests/generated/stmt/DeferStmt/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
+ql/test/extractor-tests/generated/stmt/DoCatchStmt/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
+ql/test/extractor-tests/generated/stmt/DoStmt/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
+ql/test/extractor-tests/generated/stmt/FailStmt/FailStmt.ql 75bf8a697d3a610caf25cb0d25748f2d1620c20fdd84c278c3e2f2502bc3f418 6e2377b8d2a63deaadbf8661dc7da70e8523637020e7d5fd601ca6893f10a573
+ql/test/extractor-tests/generated/stmt/FallthroughStmt/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
+ql/test/extractor-tests/generated/stmt/ForEachStmt/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
+ql/test/extractor-tests/generated/stmt/GuardStmt/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
+ql/test/extractor-tests/generated/stmt/IfStmt/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
+ql/test/extractor-tests/generated/stmt/PoundAssertStmt/PoundAssertStmt.ql dc72e3a7ff4c5dc39530322c343931cdfe63565eb76b29deef64bb311bfe302a 18eb3dab5ae8cfada5d42f1e70be9cb464a61ab5ce91897ce5a44a34387915e7
+ql/test/extractor-tests/generated/stmt/RepeatWhileStmt/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
+ql/test/extractor-tests/generated/stmt/ReturnStmt/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
+ql/test/extractor-tests/generated/stmt/StmtCondition/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
+ql/test/extractor-tests/generated/stmt/SwitchStmt/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
+ql/test/extractor-tests/generated/stmt/ThrowStmt/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
+ql/test/extractor-tests/generated/stmt/WhileStmt/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
+ql/test/extractor-tests/generated/stmt/YieldStmt/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
+ql/test/extractor-tests/generated/type/ArraySliceType/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
+ql/test/extractor-tests/generated/type/BoundGenericClassType/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
+ql/test/extractor-tests/generated/type/BoundGenericEnumType/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
+ql/test/extractor-tests/generated/type/BoundGenericStructType/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
+ql/test/extractor-tests/generated/type/BuiltinIntegerType/BuiltinIntegerType.ql fd632ef56c3586fc9b96bf0553567cce61c9cb33bc6d4b3714a6cbbfd04be58a 7a396b997dfd287bca46c6e6c44a7e609015932370e3fb4fc240b462817d9e34
+ql/test/extractor-tests/generated/type/BuiltinIntegerType/BuiltinIntegerType_getWidth.ql 61e99a3987c5a4b10d5d105184c60dacc1c08d8106cf41b81d491a7f0ac36ef2 b02395a219768e0f41cbf77e4111da3a271e777bfe448eea1ea5d6f0910ff1e8
+ql/test/extractor-tests/generated/type/BuiltinType/BuiltinType.ql 48f3b997bdb2c37dc22fd3dc2d18bc853888503d0d8d8cb075c6cd18657553e2 278d18e1fae3d8693a4d363b67c6ff111c111464f104d72ccad37793bc425200
+ql/test/extractor-tests/generated/type/ClassType/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
+ql/test/extractor-tests/generated/type/DependentMemberType/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
+ql/test/extractor-tests/generated/type/DictionaryType/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
+ql/test/extractor-tests/generated/type/DynamicSelfType/DynamicSelfType.ql d2c942b55f3a9f5af2cde39999b736ce2d50ae4514f36cc1e3f750905b03c49b b7ccdcf083da1598eaf4b5ad22e393253b8d58577580048290651a20f6e6df2f
+ql/test/extractor-tests/generated/type/EnumType/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
+ql/test/extractor-tests/generated/type/ExistentialMetatypeType/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
+ql/test/extractor-tests/generated/type/ExistentialType/ExistentialType.ql f7894f01a440b5db281dfaa9c083be0898d15b67e1b0047be3f9c959b97bdeb0 725a54f6ed26d53603a3e25cbf78c90b1f16837c1c0c39b56e7d3bdd51a78265
+ql/test/extractor-tests/generated/type/FunctionType/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
+ql/test/extractor-tests/generated/type/GenericFunctionType/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
+ql/test/extractor-tests/generated/type/GenericTypeParamType/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
+ql/test/extractor-tests/generated/type/InOutType/InOutType.ql 35b7c048fbd053f6821ab1d996fabf55dada014873f25c5ed7141b59eb5e0fb6 06ca9b5be9a999cbd7e1ab2f26918a5923d7d351dd9ec74137550f1947013b7d
+ql/test/extractor-tests/generated/type/LValueType/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
+ql/test/extractor-tests/generated/type/MetatypeType/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
+ql/test/extractor-tests/generated/type/ModuleType/ModuleType.ql 8f798fea381d1b502f262b5ee790758b38008cadcdee848d0ddba1bd9f8ff4f9 4c3d623607be1a5f6503500f3331ee3b3e5200e9e78cca8a4ef3d24c83d0e7ba
+ql/test/extractor-tests/generated/type/OpaqueTypeArchetypeType/OpaqueTypeArchetypeType.ql d15e89cbf72f4cf278258df3e6885baefef86960f4c891178ef0dbad69ff1db7 fb6854084970e0da3ae743299a2b0f69bd724ebdd8dfacc777010aaa7f61304c
+ql/test/extractor-tests/generated/type/OpaqueTypeArchetypeType/OpaqueTypeArchetypeType_getProtocol.ql fb9baf55660e0eedf1a387267d170ae066a8d1531156eab5447feca92f05b751 139529998fc2060a46a70cb645a9aa36240ab225bd9fbdb3decc3eaec3aa2261
+ql/test/extractor-tests/generated/type/OpaqueTypeArchetypeType/OpaqueTypeArchetypeType_getSuperclass.ql 3556a07117f10a070638f3049dff85dd41c042ff3d13be275e19b995b3e7af81 5f0f6d66d9852eff45c25451dae087117077aa7b11a7908178769489f3726e11
+ql/test/extractor-tests/generated/type/OpenedArchetypeType/OpenedArchetypeType.ql 0de02f1777f4b9216609a8be67e2c1fe34ab0657ecdd0ab11ca8a78b7a9daa30 ab2d57361e4c11443531100b06dd97ce8ee6871a40f1a99ad395b45ba8b74dd0
+ql/test/extractor-tests/generated/type/OpenedArchetypeType/OpenedArchetypeType_getProtocol.ql c208618d6bd7d4759581f06fad2b452077a0d865b4fb4288eff591fc7b16cd67 3bd6b8e1d1bc14bd27144a8356e07520d36ea21b6ea4adb61e84a2013e8701fc
+ql/test/extractor-tests/generated/type/OpenedArchetypeType/OpenedArchetypeType_getSuperclass.ql bb7fc71b2d84e8c5492bb4c61492dabbce898bfb680979aadd88c4de44ea5af7 acae343087222e8eb7e4dfa0e256097d9592a9668afcb5706bcba5548afc0770
+ql/test/extractor-tests/generated/type/OptionalType/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
+ql/test/extractor-tests/generated/type/ParameterizedProtocolType/ParameterizedProtocolType.ql 79da7723c0eb935b061b08aa71d349b36db4a6b46bc7c3274f550c1d7c870a13 0cdb58f4d9a481927187dc5ec4af4847a6cd4882b87b03c25dc0eb96495439f7
+ql/test/extractor-tests/generated/type/ParameterizedProtocolType/ParameterizedProtocolType_getArg.ql 8d10c3c858dedba47f227ebc92745916a248cd040ad944b80bf0d7a19af229d3 a29e2e0df269034c4f1fbd8f6de6d5898e895ad8b90628d5c869a45b596b53fc
+ql/test/extractor-tests/generated/type/ParenType/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
+ql/test/extractor-tests/generated/type/PrimaryArchetypeType/PrimaryArchetypeType.ql e1c6ffa622b9a5635147311640709bdbf9bb708c5846902c36e1cefe08cf69e7 fcd271f52fc698e5d866da73226ef546aae0fc161a85647426886bbfb510ab48
+ql/test/extractor-tests/generated/type/PrimaryArchetypeType/PrimaryArchetypeType_getProtocol.ql 8af9b686cb9c3d988aea21cdaca42a0b625985111caa71d3eebaba4aea883e9c beecb31ab8fccb05c853926bccec33e298bed519385a25d6158646c94a019af9
+ql/test/extractor-tests/generated/type/PrimaryArchetypeType/PrimaryArchetypeType_getSuperclass.ql 3b752a38eac8204ae6d902d03da8caeaad4072f30206420c97056e4bf3639eb4 fc5959969d5b229fa5d90dde7d997aa0d1b91bdb9d77cc6811377044eed4a6cb
+ql/test/extractor-tests/generated/type/ProtocolCompositionType/ProtocolCompositionType.ql 724be7f272566bb15acf34b32686df5a2bba7423baed8efcbffc1b6153e8d34c c6eb710b89fcca0410f0e1ac64ba76c12aa72d5b2ebc3889fc5d55c7168b2f0d
+ql/test/extractor-tests/generated/type/ProtocolCompositionType/ProtocolCompositionType_getMember.ql 8c1e8e5932cd775f0d0812a64954be5fd5b3eedd8a26eedb0bd6009cbc156e24 5c43ef8000bb67ed0e070bbd9d5fc167dcb7b6334ae34747d27eb8060af1a7e5
+ql/test/extractor-tests/generated/type/ProtocolType/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
+ql/test/extractor-tests/generated/type/StructType/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
+ql/test/extractor-tests/generated/type/TupleType/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
+ql/test/extractor-tests/generated/type/TypeAliasType/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
+ql/test/extractor-tests/generated/type/TypeRepr/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
+ql/test/extractor-tests/generated/type/UnboundGenericType/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
+ql/test/extractor-tests/generated/type/UnmanagedStorageType/UnmanagedStorageType.ql 3047ed64cbdb03d719d096fd3b2c4c54c92a2b65e46943424e84eeca705ab2d3 a8ee8ca4bf257c7472fa8cd7e661d352e8856b9e5855ebb3681f4d313209141c
+ql/test/extractor-tests/generated/type/UnownedStorageType/UnownedStorageType.ql 11e205283b368b9c9dbc79636c6007df501c952e6f715a9f07e65ec452192b38 ceb1e9c1279df07c77f9b23356b71c3e7672ec4cd5253898e09b27b2b24e4b00
+ql/test/extractor-tests/generated/type/VariadicSequenceType/VariadicSequenceType.ql 8c44ebc1fd1fa0b5caad5eb5b280f227f002dcfaddba45131b2959dad0b458f6 5f497990e2bd57a3ea8e2eb7da598af0c4ba7c7b4cc89b549e45de0ae3712e60
+ql/test/extractor-tests/generated/type/WeakStorageType/WeakStorageType.ql 39f1d90f8884d98235618a0bb955840daa0b1626b5f100a8f8d3b507b3b4fb84 2bd89193e20cc756a774bee940733a0b1c09f103d106d08433274eaed318a256

From aeb7b0d050b482a6ea30d0109ac29505274bde55 Mon Sep 17 00:00:00 2001
From: Paolo Tranquilli <redsun82@github.com>
Date: Fri, 18 Nov 2022 17:10:01 +0100
Subject: [PATCH 0483/1420] Swift: remove `ModifiedStubMarkedAsGeneratedError`

---
 swift/actions/setup-env/action.yml | 1 +
 swift/codegen/generators/qlgen.py  | 4 ----
 2 files changed, 1 insertion(+), 4 deletions(-)

diff --git a/swift/actions/setup-env/action.yml b/swift/actions/setup-env/action.yml
index 8e3bf3478f0..3ee90d9355f 100644
--- a/swift/actions/setup-env/action.yml
+++ b/swift/actions/setup-env/action.yml
@@ -21,3 +21,4 @@ runs:
       shell: bash
       run: |
         echo build --repository_cache=~/.cache/bazel-repository-cache --disk_cache=~/.cache/bazel-disk-cache > ~/.bazelrc
+        echo test --test_output=errors
diff --git a/swift/codegen/generators/qlgen.py b/swift/codegen/generators/qlgen.py
index 4a7d8435a1e..c1650974796 100755
--- a/swift/codegen/generators/qlgen.py
+++ b/swift/codegen/generators/qlgen.py
@@ -43,10 +43,6 @@ class FormatError(Error):
     pass
 
 
-class ModifiedStubMarkedAsGeneratedError(Error):
-    pass
-
-
 class RootElementHasChildren(Error):
     pass
 

From 6dcdf8c71f7c266209fa0305a7bd4547c083ae2a Mon Sep 17 00:00:00 2001
From: Paolo Tranquilli <redsun82@github.com>
Date: Fri, 18 Nov 2022 17:22:44 +0100
Subject: [PATCH 0484/1420] Swift: fix bazel setup

---
 swift/actions/setup-env/action.yml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/swift/actions/setup-env/action.yml b/swift/actions/setup-env/action.yml
index 3ee90d9355f..83c65d6f82a 100644
--- a/swift/actions/setup-env/action.yml
+++ b/swift/actions/setup-env/action.yml
@@ -21,4 +21,4 @@ runs:
       shell: bash
       run: |
         echo build --repository_cache=~/.cache/bazel-repository-cache --disk_cache=~/.cache/bazel-disk-cache > ~/.bazelrc
-        echo test --test_output=errors
+        echo test --test_output=errors >> ~/.bazelrc

From b748ed8f43921ceb833425f3d990730cd0c4e761 Mon Sep 17 00:00:00 2001
From: Mathias Vorreiter Pedersen <mathiasvp@github.com>
Date: Wed, 16 Nov 2022 15:08:53 +0000
Subject: [PATCH 0485/1420] C++: Repair the 'MustFlow' library.

---
 .../semmle/code/cpp/ir/dataflow/MustFlow.qll  | 52 +++++++++----------
 .../ReturnStackAllocatedMemory.ql             | 22 ++++----
 cpp/ql/src/Likely Bugs/OO/UnsafeUseOfThis.ql  | 40 +++++++-------
 3 files changed, 56 insertions(+), 58 deletions(-)

diff --git a/cpp/ql/lib/semmle/code/cpp/ir/dataflow/MustFlow.qll b/cpp/ql/lib/semmle/code/cpp/ir/dataflow/MustFlow.qll
index 08ee06acdda..904701144ca 100644
--- a/cpp/ql/lib/semmle/code/cpp/ir/dataflow/MustFlow.qll
+++ b/cpp/ql/lib/semmle/code/cpp/ir/dataflow/MustFlow.qll
@@ -5,7 +5,6 @@
  */
 
 private import cpp
-import semmle.code.cpp.ir.dataflow.DataFlow
 private import semmle.code.cpp.ir.IR
 
 /**
@@ -25,18 +24,18 @@ abstract class MustFlowConfiguration extends string {
   /**
    * Holds if `source` is a relevant data flow source.
    */
-  abstract predicate isSource(DataFlow::Node source);
+  abstract predicate isSource(Instruction source);
 
   /**
    * Holds if `sink` is a relevant data flow sink.
    */
-  abstract predicate isSink(DataFlow::Node sink);
+  abstract predicate isSink(Operand sink);
 
   /**
    * Holds if the additional flow step from `node1` to `node2` must be taken
    * into account in the analysis.
    */
-  predicate isAdditionalFlowStep(DataFlow::Node node1, DataFlow::Node node2) { none() }
+  predicate isAdditionalFlowStep(Operand node1, Instruction node2) { none() }
 
   /** Holds if this configuration allows flow from arguments to parameters. */
   predicate allowInterproceduralFlow() { any() }
@@ -48,17 +47,17 @@ abstract class MustFlowConfiguration extends string {
    * included in the module `PathGraph`.
    */
   final predicate hasFlowPath(MustFlowPathNode source, MustFlowPathSink sink) {
-    this.isSource(source.getNode()) and
+    this.isSource(source.getInstruction()) and
     source.getASuccessor+() = sink
   }
 }
 
 /** Holds if `node` flows from a source. */
 pragma[nomagic]
-private predicate flowsFromSource(DataFlow::Node node, MustFlowConfiguration config) {
+private predicate flowsFromSource(Instruction node, MustFlowConfiguration config) {
   config.isSource(node)
   or
-  exists(DataFlow::Node mid |
+  exists(Instruction mid |
     step(mid, node, config) and
     flowsFromSource(mid, pragma[only_bind_into](config))
   )
@@ -66,12 +65,12 @@ private predicate flowsFromSource(DataFlow::Node node, MustFlowConfiguration con
 
 /** Holds if `node` flows to a sink. */
 pragma[nomagic]
-private predicate flowsToSink(DataFlow::Node node, MustFlowConfiguration config) {
+private predicate flowsToSink(Instruction node, MustFlowConfiguration config) {
   flowsFromSource(node, pragma[only_bind_into](config)) and
   (
-    config.isSink(node)
+    config.isSink(node.getAUse())
     or
-    exists(DataFlow::Node mid |
+    exists(Instruction mid |
       step(node, mid, config) and
       flowsToSink(mid, pragma[only_bind_into](config))
     )
@@ -198,12 +197,13 @@ private module Cached {
   }
 
   cached
-  predicate step(DataFlow::Node nodeFrom, DataFlow::Node nodeTo) {
-    instructionToOperandStep(nodeFrom.asInstruction(), nodeTo.asOperand())
+  predicate step(Instruction nodeFrom, Instruction nodeTo) {
+    exists(Operand mid |
+      instructionToOperandStep(nodeFrom, mid) and
+      operandToInstructionStep(mid, nodeTo)
+    )
     or
-    flowThroughCallable(nodeFrom.asInstruction(), nodeTo.asInstruction())
-    or
-    operandToInstructionStep(nodeFrom.asOperand(), nodeTo.asInstruction())
+    flowThroughCallable(nodeFrom, nodeTo)
   }
 }
 
@@ -213,12 +213,12 @@ private module Cached {
  * way around.
  */
 pragma[inline]
-private Declaration getEnclosingCallable(DataFlow::Node n) {
-  pragma[only_bind_into](result) = pragma[only_bind_out](n).getEnclosingCallable()
+private IRFunction getEnclosingCallable(Instruction n) {
+  pragma[only_bind_into](result) = pragma[only_bind_out](n).getEnclosingIRFunction()
 }
 
 /** Holds if `nodeFrom` flows to `nodeTo`. */
-private predicate step(DataFlow::Node nodeFrom, DataFlow::Node nodeTo, MustFlowConfiguration config) {
+private predicate step(Instruction nodeFrom, Instruction nodeTo, MustFlowConfiguration config) {
   exists(config) and
   Cached::step(pragma[only_bind_into](nodeFrom), pragma[only_bind_into](nodeTo)) and
   (
@@ -227,37 +227,37 @@ private predicate step(DataFlow::Node nodeFrom, DataFlow::Node nodeTo, MustFlowC
     getEnclosingCallable(nodeFrom) = getEnclosingCallable(nodeTo)
   )
   or
-  config.isAdditionalFlowStep(nodeFrom, nodeTo)
+  config.isAdditionalFlowStep(nodeFrom.getAUse(), nodeTo)
 }
 
 private newtype TLocalPathNode =
-  MkLocalPathNode(DataFlow::Node n, MustFlowConfiguration config) {
+  MkLocalPathNode(Instruction n, MustFlowConfiguration config) {
     flowsToSink(n, config) and
     (
       config.isSource(n)
       or
-      exists(MustFlowPathNode mid | step(mid.getNode(), n, config))
+      exists(MustFlowPathNode mid | step(mid.getInstruction(), n, config))
     )
   }
 
 /** A `Node` that is in a path from a source to a sink. */
 class MustFlowPathNode extends TLocalPathNode {
-  DataFlow::Node n;
+  Instruction n;
 
   MustFlowPathNode() { this = MkLocalPathNode(n, _) }
 
   /** Gets the underlying node. */
-  DataFlow::Node getNode() { result = n }
+  Instruction getInstruction() { result = n }
 
   /** Gets a textual representation of this node. */
-  string toString() { result = n.toString() }
+  string toString() { result = n.getAst().toString() }
 
   /** Gets the location of this element. */
   Location getLocation() { result = n.getLocation() }
 
   /** Gets a successor node, if any. */
   MustFlowPathNode getASuccessor() {
-    step(this.getNode(), result.getNode(), this.getConfiguration())
+    step(this.getInstruction(), result.getInstruction(), this.getConfiguration())
   }
 
   /** Gets the associated configuration. */
@@ -265,7 +265,7 @@ class MustFlowPathNode extends TLocalPathNode {
 }
 
 private class MustFlowPathSink extends MustFlowPathNode {
-  MustFlowPathSink() { this.getConfiguration().isSink(this.getNode()) }
+  MustFlowPathSink() { this.getConfiguration().isSink(this.getInstruction().getAUse()) }
 }
 
 /**
diff --git a/cpp/ql/src/Likely Bugs/Memory Management/ReturnStackAllocatedMemory.ql b/cpp/ql/src/Likely Bugs/Memory Management/ReturnStackAllocatedMemory.ql
index 26c8ae4c258..af4bd8c61a3 100644
--- a/cpp/ql/src/Likely Bugs/Memory Management/ReturnStackAllocatedMemory.ql	
+++ b/cpp/ql/src/Likely Bugs/Memory Management/ReturnStackAllocatedMemory.ql	
@@ -26,11 +26,11 @@ predicate intentionallyReturnsStackPointer(Function f) {
 class ReturnStackAllocatedMemoryConfig extends MustFlowConfiguration {
   ReturnStackAllocatedMemoryConfig() { this = "ReturnStackAllocatedMemoryConfig" }
 
-  override predicate isSource(DataFlow::Node source) {
+  override predicate isSource(Instruction source) {
     // Holds if `source` is a node that represents the use of a stack variable
     exists(VariableAddressInstruction var, Function func |
-      var = source.asInstruction() and
-      func = var.getEnclosingFunction() and
+      var = source and
+      func = source.getEnclosingFunction() and
       var.getAstVariable() instanceof StackVariable and
       // Pointer-to-member types aren't properly handled in the dbscheme.
       not var.getResultType() instanceof PointerToMemberType and
@@ -40,7 +40,7 @@ class ReturnStackAllocatedMemoryConfig extends MustFlowConfiguration {
     )
   }
 
-  override predicate isSink(DataFlow::Node sink) {
+  override predicate isSink(Operand sink) {
     // Holds if `sink` is a node that represents the `StoreInstruction` that is subsequently used in
     // a `ReturnValueInstruction`.
     // We use the `StoreInstruction` instead of the instruction that defines the
@@ -48,7 +48,7 @@ class ReturnStackAllocatedMemoryConfig extends MustFlowConfiguration {
     exists(StoreInstruction store |
       store.getDestinationAddress().(VariableAddressInstruction).getIRVariable() instanceof
         IRReturnVariable and
-      sink.asOperand() = store.getSourceValueOperand()
+      sink = store.getSourceValueOperand()
     )
   }
 
@@ -77,10 +77,10 @@ class ReturnStackAllocatedMemoryConfig extends MustFlowConfiguration {
    * }
    * ```
    */
-  override predicate isAdditionalFlowStep(DataFlow::Node node1, DataFlow::Node node2) {
-    node2.asInstruction().(FieldAddressInstruction).getObjectAddressOperand() = node1.asOperand()
+  override predicate isAdditionalFlowStep(Operand node1, Instruction node2) {
+    node2.(FieldAddressInstruction).getObjectAddressOperand() = node1
     or
-    node2.asInstruction().(PointerOffsetInstruction).getLeftOperand() = node1.asOperand()
+    node2.(PointerOffsetInstruction).getLeftOperand() = node1
   }
 }
 
@@ -89,6 +89,6 @@ from
   ReturnStackAllocatedMemoryConfig conf
 where
   conf.hasFlowPath(pragma[only_bind_into](source), pragma[only_bind_into](sink)) and
-  source.getNode().asInstruction() = var
-select sink.getNode(), source, sink, "May return stack-allocated memory from $@.", var.getAst(),
-  var.getAst().toString()
+  source.getInstruction() = var
+select sink.getInstruction(), source, sink, "May return stack-allocated memory from $@.",
+  var.getAst(), var.getAst().toString()
diff --git a/cpp/ql/src/Likely Bugs/OO/UnsafeUseOfThis.ql b/cpp/ql/src/Likely Bugs/OO/UnsafeUseOfThis.ql
index db1816f7a72..39ee43a373a 100644
--- a/cpp/ql/src/Likely Bugs/OO/UnsafeUseOfThis.ql	
+++ b/cpp/ql/src/Likely Bugs/OO/UnsafeUseOfThis.ql	
@@ -22,37 +22,35 @@ import PathGraph
 class UnsafeUseOfThisConfig extends MustFlowConfiguration {
   UnsafeUseOfThisConfig() { this = "UnsafeUseOfThisConfig" }
 
-  override predicate isSource(DataFlow::Node source) { isSource(source, _, _) }
+  override predicate isSource(Instruction source) { isSource(source, _, _) }
 
-  override predicate isSink(DataFlow::Node sink) { isSink(sink, _) }
+  override predicate isSink(Operand sink) { isSink(sink, _) }
 }
 
 /** Holds if `instr` is a `this` pointer used by the call instruction `call`. */
-predicate isSink(DataFlow::Node sink, CallInstruction call) {
+predicate isSink(Operand sink, CallInstruction call) {
   exists(PureVirtualFunction func |
     call.getStaticCallTarget() = func and
-    call.getThisArgument() = sink.asInstruction() and
+    call.getThisArgumentOperand() = sink and
     // Weed out implicit calls to destructors of a base class
     not func instanceof Destructor
   )
 }
 
 /** Holds if `init` initializes the `this` pointer in class `c`. */
-predicate isSource(DataFlow::Node source, string msg, Class c) {
-  exists(InitializeParameterInstruction init | init = source.asInstruction() |
-    (
-      exists(Constructor func |
-        not func instanceof CopyConstructor and
-        not func instanceof MoveConstructor and
-        func = init.getEnclosingFunction() and
-        msg = "construction"
-      )
-      or
-      init.getEnclosingFunction() instanceof Destructor and msg = "destruction"
-    ) and
-    init.getIRVariable() instanceof IRThisVariable and
-    init.getEnclosingFunction().getDeclaringType() = c
-  )
+predicate isSource(InitializeParameterInstruction source, string msg, Class c) {
+  (
+    exists(Constructor func |
+      not func instanceof CopyConstructor and
+      not func instanceof MoveConstructor and
+      func = source.getEnclosingFunction() and
+      msg = "construction"
+    )
+    or
+    source.getEnclosingFunction() instanceof Destructor and msg = "destruction"
+  ) and
+  source.getIRVariable() instanceof IRThisVariable and
+  source.getEnclosingFunction().getDeclaringType() = c
 }
 
 /**
@@ -68,8 +66,8 @@ predicate flows(
 ) {
   exists(UnsafeUseOfThisConfig conf |
     conf.hasFlowPath(source, sink) and
-    isSource(source.getNode(), msg, sourceClass) and
-    isSink(sink.getNode(), call)
+    isSource(source.getInstruction(), msg, sourceClass) and
+    isSink(sink.getInstruction().getAUse(), call)
   )
 }
 

From ef6b85fa77a919d0a7d0610f9661c06b2ce01e51 Mon Sep 17 00:00:00 2001
From: Mathias Vorreiter Pedersen <mathiasvp@github.com>
Date: Wed, 16 Nov 2022 15:10:18 +0000
Subject: [PATCH 0486/1420] C++: Accept test changes.

---
 .../UnsafeUseOfThis/UnsafeUseOfThis.expected  | 108 +++-----
 .../ReturnStackAllocatedMemory.expected       | 248 +++++-------------
 2 files changed, 100 insertions(+), 256 deletions(-)

diff --git a/cpp/ql/test/query-tests/Critical/UnsafeUseOfThis/UnsafeUseOfThis.expected b/cpp/ql/test/query-tests/Critical/UnsafeUseOfThis/UnsafeUseOfThis.expected
index 067ba7ab4fc..7f1ee1356ab 100644
--- a/cpp/ql/test/query-tests/Critical/UnsafeUseOfThis/UnsafeUseOfThis.expected
+++ b/cpp/ql/test/query-tests/Critical/UnsafeUseOfThis/UnsafeUseOfThis.expected
@@ -1,103 +1,61 @@
 edges
-| test.cpp:7:3:7:3 | this | test.cpp:8:12:8:15 | Load |
-| test.cpp:8:12:8:15 | Load | test.cpp:8:12:8:15 | this |
+| test.cpp:7:3:7:3 | B | test.cpp:8:12:8:15 | this |
 | test.cpp:8:12:8:15 | this | test.cpp:34:16:34:16 | x |
-| test.cpp:11:8:11:8 | b | test.cpp:12:5:12:5 | Load |
-| test.cpp:12:5:12:5 | (reference dereference) | test.cpp:12:5:12:5 | Unary |
-| test.cpp:12:5:12:5 | Load | test.cpp:12:5:12:5 | b |
-| test.cpp:12:5:12:5 | Unary | test.cpp:12:5:12:5 | (A)... |
-| test.cpp:12:5:12:5 | Unary | test.cpp:12:5:12:5 | (reference dereference) |
-| test.cpp:12:5:12:5 | b | test.cpp:12:5:12:5 | Unary |
-| test.cpp:15:3:15:4 | this | test.cpp:16:5:16:5 | Load |
-| test.cpp:16:5:16:5 | Load | test.cpp:16:5:16:5 | this |
-| test.cpp:16:5:16:5 | Unary | file://:0:0:0:0 | (A *)... |
-| test.cpp:16:5:16:5 | this | test.cpp:16:5:16:5 | Unary |
-| test.cpp:21:3:21:3 | Unary | test.cpp:21:13:21:13 | ConvertToNonVirtualBase |
-| test.cpp:21:3:21:3 | this | test.cpp:21:3:21:3 | Unary |
-| test.cpp:21:3:21:3 | this | test.cpp:22:12:22:15 | Load |
-| test.cpp:21:3:21:3 | this | test.cpp:25:7:25:10 | Load |
-| test.cpp:21:13:21:13 | ConvertToNonVirtualBase | test.cpp:7:3:7:3 | this |
+| test.cpp:11:8:11:8 | b | test.cpp:12:5:12:5 | b |
+| test.cpp:12:5:12:5 | (reference dereference) | test.cpp:12:5:12:5 | (A)... |
+| test.cpp:12:5:12:5 | b | test.cpp:12:5:12:5 | (reference dereference) |
+| test.cpp:15:3:15:4 | ~B | test.cpp:16:5:16:5 | this |
+| test.cpp:16:5:16:5 | this | file://:0:0:0:0 | (A *)... |
+| test.cpp:21:3:21:3 | C | test.cpp:21:13:21:13 | call to B |
+| test.cpp:21:3:21:3 | C | test.cpp:22:12:22:15 | this |
+| test.cpp:21:3:21:3 | C | test.cpp:25:7:25:10 | this |
+| test.cpp:21:13:21:13 | call to B | test.cpp:7:3:7:3 | B |
 | test.cpp:22:12:22:15 | (B *)... | test.cpp:34:16:34:16 | x |
-| test.cpp:22:12:22:15 | Load | test.cpp:22:12:22:15 | this |
-| test.cpp:22:12:22:15 | Unary | test.cpp:22:12:22:15 | (B *)... |
-| test.cpp:22:12:22:15 | this | test.cpp:22:12:22:15 | Unary |
-| test.cpp:25:7:25:10 | (B *)... | test.cpp:25:7:25:10 | Unary |
-| test.cpp:25:7:25:10 | Load | test.cpp:25:7:25:10 | this |
-| test.cpp:25:7:25:10 | Unary | test.cpp:25:7:25:10 | (A *)... |
-| test.cpp:25:7:25:10 | Unary | test.cpp:25:7:25:10 | (B *)... |
-| test.cpp:25:7:25:10 | this | test.cpp:25:7:25:10 | Unary |
-| test.cpp:31:3:31:3 | this | test.cpp:31:12:31:15 | Load |
-| test.cpp:31:11:31:15 | (B)... | test.cpp:31:11:31:15 | Unary |
+| test.cpp:22:12:22:15 | this | test.cpp:22:12:22:15 | (B *)... |
+| test.cpp:25:7:25:10 | (B *)... | test.cpp:25:7:25:10 | (A *)... |
+| test.cpp:25:7:25:10 | this | test.cpp:25:7:25:10 | (B *)... |
+| test.cpp:31:3:31:3 | D | test.cpp:31:12:31:15 | this |
+| test.cpp:31:11:31:15 | (B)... | test.cpp:31:11:31:15 | (reference to) |
 | test.cpp:31:11:31:15 | (reference to) | test.cpp:11:8:11:8 | b |
-| test.cpp:31:11:31:15 | * ... | test.cpp:31:11:31:15 | Unary |
-| test.cpp:31:11:31:15 | Unary | test.cpp:31:11:31:15 | (B)... |
-| test.cpp:31:11:31:15 | Unary | test.cpp:31:11:31:15 | (reference to) |
-| test.cpp:31:12:31:15 | Load | test.cpp:31:12:31:15 | this |
-| test.cpp:31:12:31:15 | Unary | test.cpp:31:11:31:15 | * ... |
-| test.cpp:31:12:31:15 | this | test.cpp:31:12:31:15 | Unary |
-| test.cpp:34:16:34:16 | x | test.cpp:35:3:35:3 | Load |
-| test.cpp:35:3:35:3 | Load | test.cpp:35:3:35:3 | x |
-| test.cpp:35:3:35:3 | Unary | test.cpp:35:3:35:3 | (A *)... |
-| test.cpp:35:3:35:3 | x | test.cpp:35:3:35:3 | Unary |
-| test.cpp:47:3:47:3 | this | test.cpp:48:10:48:13 | Load |
-| test.cpp:48:10:48:13 | (E *)... | test.cpp:48:10:48:13 | Unary |
-| test.cpp:48:10:48:13 | Load | test.cpp:48:10:48:13 | this |
-| test.cpp:48:10:48:13 | Unary | test.cpp:48:6:48:13 | (A *)... |
-| test.cpp:48:10:48:13 | Unary | test.cpp:48:10:48:13 | (E *)... |
-| test.cpp:48:10:48:13 | this | test.cpp:48:10:48:13 | Unary |
+| test.cpp:31:11:31:15 | * ... | test.cpp:31:11:31:15 | (B)... |
+| test.cpp:31:12:31:15 | this | test.cpp:31:11:31:15 | * ... |
+| test.cpp:34:16:34:16 | x | test.cpp:35:3:35:3 | x |
+| test.cpp:35:3:35:3 | x | test.cpp:35:3:35:3 | (A *)... |
+| test.cpp:47:3:47:3 | F | test.cpp:48:10:48:13 | this |
+| test.cpp:48:10:48:13 | (E *)... | test.cpp:48:6:48:13 | (A *)... |
+| test.cpp:48:10:48:13 | this | test.cpp:48:10:48:13 | (E *)... |
 nodes
 | file://:0:0:0:0 | (A *)... | semmle.label | (A *)... |
-| test.cpp:7:3:7:3 | this | semmle.label | this |
-| test.cpp:8:12:8:15 | Load | semmle.label | Load |
+| test.cpp:7:3:7:3 | B | semmle.label | B |
 | test.cpp:8:12:8:15 | this | semmle.label | this |
 | test.cpp:11:8:11:8 | b | semmle.label | b |
 | test.cpp:12:5:12:5 | (A)... | semmle.label | (A)... |
 | test.cpp:12:5:12:5 | (reference dereference) | semmle.label | (reference dereference) |
-| test.cpp:12:5:12:5 | Load | semmle.label | Load |
-| test.cpp:12:5:12:5 | Unary | semmle.label | Unary |
-| test.cpp:12:5:12:5 | Unary | semmle.label | Unary |
 | test.cpp:12:5:12:5 | b | semmle.label | b |
-| test.cpp:15:3:15:4 | this | semmle.label | this |
-| test.cpp:16:5:16:5 | Load | semmle.label | Load |
-| test.cpp:16:5:16:5 | Unary | semmle.label | Unary |
+| test.cpp:15:3:15:4 | ~B | semmle.label | ~B |
 | test.cpp:16:5:16:5 | this | semmle.label | this |
-| test.cpp:21:3:21:3 | Unary | semmle.label | Unary |
-| test.cpp:21:3:21:3 | this | semmle.label | this |
-| test.cpp:21:13:21:13 | ConvertToNonVirtualBase | semmle.label | ConvertToNonVirtualBase |
+| test.cpp:21:3:21:3 | C | semmle.label | C |
+| test.cpp:21:13:21:13 | call to B | semmle.label | call to B |
 | test.cpp:22:12:22:15 | (B *)... | semmle.label | (B *)... |
-| test.cpp:22:12:22:15 | Load | semmle.label | Load |
-| test.cpp:22:12:22:15 | Unary | semmle.label | Unary |
 | test.cpp:22:12:22:15 | this | semmle.label | this |
 | test.cpp:25:7:25:10 | (A *)... | semmle.label | (A *)... |
 | test.cpp:25:7:25:10 | (B *)... | semmle.label | (B *)... |
-| test.cpp:25:7:25:10 | Load | semmle.label | Load |
-| test.cpp:25:7:25:10 | Unary | semmle.label | Unary |
-| test.cpp:25:7:25:10 | Unary | semmle.label | Unary |
 | test.cpp:25:7:25:10 | this | semmle.label | this |
-| test.cpp:31:3:31:3 | this | semmle.label | this |
+| test.cpp:31:3:31:3 | D | semmle.label | D |
 | test.cpp:31:11:31:15 | (B)... | semmle.label | (B)... |
 | test.cpp:31:11:31:15 | (reference to) | semmle.label | (reference to) |
 | test.cpp:31:11:31:15 | * ... | semmle.label | * ... |
-| test.cpp:31:11:31:15 | Unary | semmle.label | Unary |
-| test.cpp:31:11:31:15 | Unary | semmle.label | Unary |
-| test.cpp:31:12:31:15 | Load | semmle.label | Load |
-| test.cpp:31:12:31:15 | Unary | semmle.label | Unary |
 | test.cpp:31:12:31:15 | this | semmle.label | this |
 | test.cpp:34:16:34:16 | x | semmle.label | x |
 | test.cpp:35:3:35:3 | (A *)... | semmle.label | (A *)... |
-| test.cpp:35:3:35:3 | Load | semmle.label | Load |
-| test.cpp:35:3:35:3 | Unary | semmle.label | Unary |
 | test.cpp:35:3:35:3 | x | semmle.label | x |
-| test.cpp:47:3:47:3 | this | semmle.label | this |
+| test.cpp:47:3:47:3 | F | semmle.label | F |
 | test.cpp:48:6:48:13 | (A *)... | semmle.label | (A *)... |
 | test.cpp:48:10:48:13 | (E *)... | semmle.label | (E *)... |
-| test.cpp:48:10:48:13 | Load | semmle.label | Load |
-| test.cpp:48:10:48:13 | Unary | semmle.label | Unary |
-| test.cpp:48:10:48:13 | Unary | semmle.label | Unary |
 | test.cpp:48:10:48:13 | this | semmle.label | this |
 #select
-| test.cpp:12:7:12:7 | call to f | test.cpp:31:3:31:3 | this | test.cpp:12:5:12:5 | (A)... | Call to pure virtual function during construction. |
-| test.cpp:16:5:16:5 | call to f | test.cpp:15:3:15:4 | this | file://:0:0:0:0 | (A *)... | Call to pure virtual function during destruction. |
-| test.cpp:25:13:25:13 | call to f | test.cpp:21:3:21:3 | this | test.cpp:25:7:25:10 | (A *)... | Call to pure virtual function during construction. |
-| test.cpp:35:6:35:6 | call to f | test.cpp:7:3:7:3 | this | test.cpp:35:3:35:3 | (A *)... | Call to pure virtual function during construction. |
-| test.cpp:35:6:35:6 | call to f | test.cpp:21:3:21:3 | this | test.cpp:35:3:35:3 | (A *)... | Call to pure virtual function during construction. |
+| test.cpp:12:7:12:7 | call to f | test.cpp:31:3:31:3 | D | test.cpp:12:5:12:5 | (A)... | Call to pure virtual function during construction. |
+| test.cpp:16:5:16:5 | call to f | test.cpp:15:3:15:4 | ~B | file://:0:0:0:0 | (A *)... | Call to pure virtual function during destruction. |
+| test.cpp:25:13:25:13 | call to f | test.cpp:21:3:21:3 | C | test.cpp:25:7:25:10 | (A *)... | Call to pure virtual function during construction. |
+| test.cpp:35:6:35:6 | call to f | test.cpp:7:3:7:3 | B | test.cpp:35:3:35:3 | (A *)... | Call to pure virtual function during construction. |
+| test.cpp:35:6:35:6 | call to f | test.cpp:21:3:21:3 | C | test.cpp:35:3:35:3 | (A *)... | Call to pure virtual function during construction. |
diff --git a/cpp/ql/test/query-tests/Likely Bugs/Memory Management/ReturnStackAllocatedMemory/ReturnStackAllocatedMemory.expected b/cpp/ql/test/query-tests/Likely Bugs/Memory Management/ReturnStackAllocatedMemory/ReturnStackAllocatedMemory.expected
index 8f9d91fc1ad..b7b598a13c5 100644
--- a/cpp/ql/test/query-tests/Likely Bugs/Memory Management/ReturnStackAllocatedMemory/ReturnStackAllocatedMemory.expected	
+++ b/cpp/ql/test/query-tests/Likely Bugs/Memory Management/ReturnStackAllocatedMemory/ReturnStackAllocatedMemory.expected	
@@ -1,231 +1,117 @@
 edges
-| test.cpp:17:9:17:11 | & ... | test.cpp:17:9:17:11 | StoreValue |
-| test.cpp:17:10:17:11 | Unary | test.cpp:17:9:17:11 | & ... |
-| test.cpp:17:10:17:11 | mc | test.cpp:17:10:17:11 | Unary |
-| test.cpp:23:17:23:19 | & ... | test.cpp:23:17:23:19 | StoreValue |
-| test.cpp:23:17:23:19 | Store | test.cpp:25:9:25:11 | Load |
-| test.cpp:23:17:23:19 | StoreValue | test.cpp:23:17:23:19 | Store |
-| test.cpp:23:18:23:19 | Unary | test.cpp:23:17:23:19 | & ... |
-| test.cpp:23:18:23:19 | mc | test.cpp:23:18:23:19 | Unary |
-| test.cpp:25:9:25:11 | Load | test.cpp:25:9:25:11 | ptr |
-| test.cpp:25:9:25:11 | ptr | test.cpp:25:9:25:11 | StoreValue |
-| test.cpp:39:17:39:18 | (reference to) | test.cpp:39:17:39:18 | StoreValue |
-| test.cpp:39:17:39:18 | Store | test.cpp:41:10:41:12 | Load |
-| test.cpp:39:17:39:18 | StoreValue | test.cpp:39:17:39:18 | Store |
-| test.cpp:39:17:39:18 | Unary | test.cpp:39:17:39:18 | (reference to) |
-| test.cpp:39:17:39:18 | mc | test.cpp:39:17:39:18 | Unary |
-| test.cpp:41:9:41:12 | & ... | test.cpp:41:9:41:12 | StoreValue |
-| test.cpp:41:10:41:12 | (reference dereference) | test.cpp:41:10:41:12 | Unary |
-| test.cpp:41:10:41:12 | Load | test.cpp:41:10:41:12 | ref |
-| test.cpp:41:10:41:12 | Unary | test.cpp:41:9:41:12 | & ... |
-| test.cpp:41:10:41:12 | Unary | test.cpp:41:10:41:12 | (reference dereference) |
-| test.cpp:41:10:41:12 | ref | test.cpp:41:10:41:12 | Unary |
-| test.cpp:47:9:47:10 | (reference to) | test.cpp:47:9:47:10 | StoreValue |
-| test.cpp:47:9:47:10 | Unary | test.cpp:47:9:47:10 | (reference to) |
-| test.cpp:47:9:47:10 | mc | test.cpp:47:9:47:10 | Unary |
-| test.cpp:54:9:54:15 | & ... | test.cpp:54:9:54:15 | StoreValue |
-| test.cpp:54:11:54:12 | Unary | test.cpp:54:14:54:14 | a |
-| test.cpp:54:11:54:12 | mc | test.cpp:54:11:54:12 | Unary |
-| test.cpp:54:14:54:14 | Unary | test.cpp:54:9:54:15 | & ... |
-| test.cpp:54:14:54:14 | a | test.cpp:54:14:54:14 | Unary |
-| test.cpp:89:3:89:11 | Store | test.cpp:92:9:92:11 | Load |
-| test.cpp:89:9:89:11 | & ... | test.cpp:89:9:89:11 | StoreValue |
-| test.cpp:89:9:89:11 | StoreValue | test.cpp:89:3:89:11 | Store |
-| test.cpp:89:10:89:11 | Unary | test.cpp:89:9:89:11 | & ... |
-| test.cpp:89:10:89:11 | mc | test.cpp:89:10:89:11 | Unary |
-| test.cpp:92:9:92:11 | Load | test.cpp:92:9:92:11 | ptr |
-| test.cpp:92:9:92:11 | ptr | test.cpp:92:9:92:11 | StoreValue |
-| test.cpp:112:9:112:11 | Unary | test.cpp:112:9:112:11 | array to pointer conversion |
-| test.cpp:112:9:112:11 | arr | test.cpp:112:9:112:11 | Unary |
-| test.cpp:112:9:112:11 | array to pointer conversion | test.cpp:112:9:112:11 | StoreValue |
-| test.cpp:119:9:119:18 | & ... | test.cpp:119:9:119:18 | StoreValue |
-| test.cpp:119:11:119:13 | Left | test.cpp:119:11:119:17 | access to array |
-| test.cpp:119:11:119:13 | Unary | test.cpp:119:11:119:13 | array to pointer conversion |
-| test.cpp:119:11:119:13 | arr | test.cpp:119:11:119:13 | Unary |
-| test.cpp:119:11:119:13 | array to pointer conversion | test.cpp:119:11:119:13 | Left |
-| test.cpp:119:11:119:17 | Unary | test.cpp:119:9:119:18 | & ... |
-| test.cpp:119:11:119:17 | access to array | test.cpp:119:11:119:17 | Unary |
-| test.cpp:134:2:134:14 | Store | test.cpp:135:2:135:4 | Load |
-| test.cpp:134:8:134:10 | Left | test.cpp:134:8:134:14 | ... + ... |
-| test.cpp:134:8:134:10 | Unary | test.cpp:134:8:134:10 | array to pointer conversion |
-| test.cpp:134:8:134:10 | arr | test.cpp:134:8:134:10 | Unary |
-| test.cpp:134:8:134:10 | array to pointer conversion | test.cpp:134:8:134:10 | Left |
-| test.cpp:134:8:134:14 | ... + ... | test.cpp:134:8:134:14 | StoreValue |
-| test.cpp:134:8:134:14 | StoreValue | test.cpp:134:2:134:14 | Store |
-| test.cpp:135:2:135:4 | Left | test.cpp:135:2:135:6 | PointerAdd |
-| test.cpp:135:2:135:4 | Load | test.cpp:135:2:135:4 | ptr |
-| test.cpp:135:2:135:4 | ptr | test.cpp:135:2:135:4 | Left |
-| test.cpp:135:2:135:6 | PointerAdd | test.cpp:135:2:135:6 | StoreValue |
-| test.cpp:135:2:135:6 | Store | test.cpp:137:9:137:11 | Load |
-| test.cpp:135:2:135:6 | StoreValue | test.cpp:135:2:135:6 | Store |
-| test.cpp:137:9:137:11 | Load | test.cpp:137:9:137:11 | ptr |
-| test.cpp:137:9:137:11 | ptr | test.cpp:137:9:137:11 | StoreValue |
-| test.cpp:170:26:170:41 | (void *)... | test.cpp:170:26:170:41 | StoreValue |
-| test.cpp:170:26:170:41 | Store | test.cpp:171:10:171:23 | Load |
-| test.cpp:170:26:170:41 | StoreValue | test.cpp:170:26:170:41 | Store |
-| test.cpp:170:34:170:41 | & ... | test.cpp:170:34:170:41 | Unary |
-| test.cpp:170:34:170:41 | Unary | test.cpp:170:26:170:41 | (void *)... |
-| test.cpp:170:35:170:41 | Unary | test.cpp:170:34:170:41 | & ... |
-| test.cpp:170:35:170:41 | myLocal | test.cpp:170:35:170:41 | Unary |
-| test.cpp:171:10:171:23 | Load | test.cpp:171:10:171:23 | pointerToLocal |
-| test.cpp:171:10:171:23 | pointerToLocal | test.cpp:171:10:171:23 | StoreValue |
-| test.cpp:176:25:176:34 | Store | test.cpp:177:10:177:23 | Load |
-| test.cpp:176:25:176:34 | StoreValue | test.cpp:176:25:176:34 | Store |
-| test.cpp:176:25:176:34 | Unary | test.cpp:176:25:176:34 | array to pointer conversion |
-| test.cpp:176:25:176:34 | array to pointer conversion | test.cpp:176:25:176:34 | StoreValue |
-| test.cpp:176:25:176:34 | localArray | test.cpp:176:25:176:34 | Unary |
-| test.cpp:177:10:177:23 | (void *)... | test.cpp:177:10:177:23 | StoreValue |
-| test.cpp:177:10:177:23 | Load | test.cpp:177:10:177:23 | pointerToLocal |
-| test.cpp:177:10:177:23 | Unary | test.cpp:177:10:177:23 | (void *)... |
-| test.cpp:177:10:177:23 | pointerToLocal | test.cpp:177:10:177:23 | Unary |
-| test.cpp:182:21:182:27 | (reference to) | test.cpp:182:21:182:27 | StoreValue |
-| test.cpp:182:21:182:27 | Store | test.cpp:183:10:183:19 | Load |
-| test.cpp:182:21:182:27 | StoreValue | test.cpp:182:21:182:27 | Store |
-| test.cpp:182:21:182:27 | Unary | test.cpp:182:21:182:27 | (reference to) |
-| test.cpp:182:21:182:27 | myLocal | test.cpp:182:21:182:27 | Unary |
-| test.cpp:183:10:183:19 | (reference dereference) | test.cpp:183:10:183:19 | Unary |
-| test.cpp:183:10:183:19 | (reference to) | test.cpp:183:10:183:19 | StoreValue |
-| test.cpp:183:10:183:19 | Load | test.cpp:183:10:183:19 | refToLocal |
-| test.cpp:183:10:183:19 | Unary | test.cpp:183:10:183:19 | (reference dereference) |
-| test.cpp:183:10:183:19 | Unary | test.cpp:183:10:183:19 | (reference to) |
-| test.cpp:183:10:183:19 | refToLocal | test.cpp:183:10:183:19 | Unary |
-| test.cpp:189:16:189:16 | (reference to) | test.cpp:189:16:189:16 | StoreValue |
-| test.cpp:189:16:189:16 | Store | test.cpp:190:10:190:13 | Load |
-| test.cpp:189:16:189:16 | StoreValue | test.cpp:189:16:189:16 | Store |
-| test.cpp:189:16:189:16 | Unary | test.cpp:189:16:189:16 | (reference to) |
-| test.cpp:189:16:189:16 | p | test.cpp:189:16:189:16 | Unary |
-| test.cpp:190:10:190:13 | (reference dereference) | test.cpp:190:10:190:13 | Unary |
-| test.cpp:190:10:190:13 | (reference to) | test.cpp:190:10:190:13 | StoreValue |
-| test.cpp:190:10:190:13 | Load | test.cpp:190:10:190:13 | pRef |
-| test.cpp:190:10:190:13 | Unary | test.cpp:190:10:190:13 | (reference dereference) |
-| test.cpp:190:10:190:13 | Unary | test.cpp:190:10:190:13 | (reference to) |
-| test.cpp:190:10:190:13 | pRef | test.cpp:190:10:190:13 | Unary |
+| test.cpp:17:10:17:11 | mc | test.cpp:17:9:17:11 | & ... |
+| test.cpp:23:17:23:19 | & ... | test.cpp:23:17:23:19 | & ... |
+| test.cpp:23:17:23:19 | & ... | test.cpp:25:9:25:11 | ptr |
+| test.cpp:23:18:23:19 | mc | test.cpp:23:17:23:19 | & ... |
+| test.cpp:39:17:39:18 | (reference to) | test.cpp:39:17:39:18 | (reference to) |
+| test.cpp:39:17:39:18 | (reference to) | test.cpp:41:10:41:12 | ref |
+| test.cpp:39:17:39:18 | mc | test.cpp:39:17:39:18 | (reference to) |
+| test.cpp:41:10:41:12 | (reference dereference) | test.cpp:41:9:41:12 | & ... |
+| test.cpp:41:10:41:12 | ref | test.cpp:41:10:41:12 | (reference dereference) |
+| test.cpp:47:9:47:10 | mc | test.cpp:47:9:47:10 | (reference to) |
+| test.cpp:54:11:54:12 | mc | test.cpp:54:14:54:14 | a |
+| test.cpp:54:14:54:14 | a | test.cpp:54:9:54:15 | & ... |
+| test.cpp:89:3:89:11 | ... = ... | test.cpp:92:9:92:11 | ptr |
+| test.cpp:89:9:89:11 | & ... | test.cpp:89:3:89:11 | ... = ... |
+| test.cpp:89:10:89:11 | mc | test.cpp:89:9:89:11 | & ... |
+| test.cpp:112:9:112:11 | arr | test.cpp:112:9:112:11 | array to pointer conversion |
+| test.cpp:119:11:119:13 | arr | test.cpp:119:11:119:13 | array to pointer conversion |
+| test.cpp:119:11:119:13 | array to pointer conversion | test.cpp:119:11:119:17 | access to array |
+| test.cpp:119:11:119:17 | access to array | test.cpp:119:9:119:18 | & ... |
+| test.cpp:134:2:134:14 | ... = ... | test.cpp:135:2:135:4 | ptr |
+| test.cpp:134:8:134:10 | arr | test.cpp:134:8:134:10 | array to pointer conversion |
+| test.cpp:134:8:134:10 | array to pointer conversion | test.cpp:134:8:134:14 | ... + ... |
+| test.cpp:134:8:134:14 | ... + ... | test.cpp:134:2:134:14 | ... = ... |
+| test.cpp:135:2:135:4 | ptr | test.cpp:135:2:135:6 | ... ++ |
+| test.cpp:135:2:135:6 | ... ++ | test.cpp:135:2:135:6 | ... ++ |
+| test.cpp:135:2:135:6 | ... ++ | test.cpp:137:9:137:11 | ptr |
+| test.cpp:170:26:170:41 | (void *)... | test.cpp:170:26:170:41 | (void *)... |
+| test.cpp:170:26:170:41 | (void *)... | test.cpp:171:10:171:23 | pointerToLocal |
+| test.cpp:170:34:170:41 | & ... | test.cpp:170:26:170:41 | (void *)... |
+| test.cpp:170:35:170:41 | myLocal | test.cpp:170:34:170:41 | & ... |
+| test.cpp:176:25:176:34 | array to pointer conversion | test.cpp:176:25:176:34 | array to pointer conversion |
+| test.cpp:176:25:176:34 | array to pointer conversion | test.cpp:177:10:177:23 | pointerToLocal |
+| test.cpp:176:25:176:34 | localArray | test.cpp:176:25:176:34 | array to pointer conversion |
+| test.cpp:177:10:177:23 | pointerToLocal | test.cpp:177:10:177:23 | (void *)... |
+| test.cpp:182:21:182:27 | (reference to) | test.cpp:182:21:182:27 | (reference to) |
+| test.cpp:182:21:182:27 | (reference to) | test.cpp:183:10:183:19 | refToLocal |
+| test.cpp:182:21:182:27 | myLocal | test.cpp:182:21:182:27 | (reference to) |
+| test.cpp:183:10:183:19 | (reference dereference) | test.cpp:183:10:183:19 | (reference to) |
+| test.cpp:183:10:183:19 | refToLocal | test.cpp:183:10:183:19 | (reference dereference) |
+| test.cpp:189:16:189:16 | (reference to) | test.cpp:189:16:189:16 | (reference to) |
+| test.cpp:189:16:189:16 | (reference to) | test.cpp:190:10:190:13 | pRef |
+| test.cpp:189:16:189:16 | p | test.cpp:189:16:189:16 | (reference to) |
+| test.cpp:190:10:190:13 | (reference dereference) | test.cpp:190:10:190:13 | (reference to) |
+| test.cpp:190:10:190:13 | pRef | test.cpp:190:10:190:13 | (reference dereference) |
 nodes
 | test.cpp:17:9:17:11 | & ... | semmle.label | & ... |
-| test.cpp:17:9:17:11 | StoreValue | semmle.label | StoreValue |
-| test.cpp:17:10:17:11 | Unary | semmle.label | Unary |
 | test.cpp:17:10:17:11 | mc | semmle.label | mc |
 | test.cpp:23:17:23:19 | & ... | semmle.label | & ... |
-| test.cpp:23:17:23:19 | Store | semmle.label | Store |
-| test.cpp:23:17:23:19 | StoreValue | semmle.label | StoreValue |
-| test.cpp:23:18:23:19 | Unary | semmle.label | Unary |
+| test.cpp:23:17:23:19 | & ... | semmle.label | & ... |
 | test.cpp:23:18:23:19 | mc | semmle.label | mc |
-| test.cpp:25:9:25:11 | Load | semmle.label | Load |
-| test.cpp:25:9:25:11 | StoreValue | semmle.label | StoreValue |
 | test.cpp:25:9:25:11 | ptr | semmle.label | ptr |
 | test.cpp:39:17:39:18 | (reference to) | semmle.label | (reference to) |
-| test.cpp:39:17:39:18 | Store | semmle.label | Store |
-| test.cpp:39:17:39:18 | StoreValue | semmle.label | StoreValue |
-| test.cpp:39:17:39:18 | Unary | semmle.label | Unary |
+| test.cpp:39:17:39:18 | (reference to) | semmle.label | (reference to) |
 | test.cpp:39:17:39:18 | mc | semmle.label | mc |
 | test.cpp:41:9:41:12 | & ... | semmle.label | & ... |
-| test.cpp:41:9:41:12 | StoreValue | semmle.label | StoreValue |
 | test.cpp:41:10:41:12 | (reference dereference) | semmle.label | (reference dereference) |
-| test.cpp:41:10:41:12 | Load | semmle.label | Load |
-| test.cpp:41:10:41:12 | Unary | semmle.label | Unary |
-| test.cpp:41:10:41:12 | Unary | semmle.label | Unary |
 | test.cpp:41:10:41:12 | ref | semmle.label | ref |
 | test.cpp:47:9:47:10 | (reference to) | semmle.label | (reference to) |
-| test.cpp:47:9:47:10 | StoreValue | semmle.label | StoreValue |
-| test.cpp:47:9:47:10 | Unary | semmle.label | Unary |
 | test.cpp:47:9:47:10 | mc | semmle.label | mc |
 | test.cpp:54:9:54:15 | & ... | semmle.label | & ... |
-| test.cpp:54:9:54:15 | StoreValue | semmle.label | StoreValue |
-| test.cpp:54:11:54:12 | Unary | semmle.label | Unary |
 | test.cpp:54:11:54:12 | mc | semmle.label | mc |
-| test.cpp:54:14:54:14 | Unary | semmle.label | Unary |
 | test.cpp:54:14:54:14 | a | semmle.label | a |
-| test.cpp:89:3:89:11 | Store | semmle.label | Store |
+| test.cpp:89:3:89:11 | ... = ... | semmle.label | ... = ... |
 | test.cpp:89:9:89:11 | & ... | semmle.label | & ... |
-| test.cpp:89:9:89:11 | StoreValue | semmle.label | StoreValue |
-| test.cpp:89:10:89:11 | Unary | semmle.label | Unary |
 | test.cpp:89:10:89:11 | mc | semmle.label | mc |
-| test.cpp:92:9:92:11 | Load | semmle.label | Load |
-| test.cpp:92:9:92:11 | StoreValue | semmle.label | StoreValue |
 | test.cpp:92:9:92:11 | ptr | semmle.label | ptr |
-| test.cpp:112:9:112:11 | StoreValue | semmle.label | StoreValue |
-| test.cpp:112:9:112:11 | Unary | semmle.label | Unary |
 | test.cpp:112:9:112:11 | arr | semmle.label | arr |
 | test.cpp:112:9:112:11 | array to pointer conversion | semmle.label | array to pointer conversion |
 | test.cpp:119:9:119:18 | & ... | semmle.label | & ... |
-| test.cpp:119:9:119:18 | StoreValue | semmle.label | StoreValue |
-| test.cpp:119:11:119:13 | Left | semmle.label | Left |
-| test.cpp:119:11:119:13 | Unary | semmle.label | Unary |
 | test.cpp:119:11:119:13 | arr | semmle.label | arr |
 | test.cpp:119:11:119:13 | array to pointer conversion | semmle.label | array to pointer conversion |
-| test.cpp:119:11:119:17 | Unary | semmle.label | Unary |
 | test.cpp:119:11:119:17 | access to array | semmle.label | access to array |
-| test.cpp:134:2:134:14 | Store | semmle.label | Store |
-| test.cpp:134:8:134:10 | Left | semmle.label | Left |
-| test.cpp:134:8:134:10 | Unary | semmle.label | Unary |
+| test.cpp:134:2:134:14 | ... = ... | semmle.label | ... = ... |
 | test.cpp:134:8:134:10 | arr | semmle.label | arr |
 | test.cpp:134:8:134:10 | array to pointer conversion | semmle.label | array to pointer conversion |
 | test.cpp:134:8:134:14 | ... + ... | semmle.label | ... + ... |
-| test.cpp:134:8:134:14 | StoreValue | semmle.label | StoreValue |
-| test.cpp:135:2:135:4 | Left | semmle.label | Left |
-| test.cpp:135:2:135:4 | Load | semmle.label | Load |
 | test.cpp:135:2:135:4 | ptr | semmle.label | ptr |
-| test.cpp:135:2:135:6 | PointerAdd | semmle.label | PointerAdd |
-| test.cpp:135:2:135:6 | Store | semmle.label | Store |
-| test.cpp:135:2:135:6 | StoreValue | semmle.label | StoreValue |
-| test.cpp:137:9:137:11 | Load | semmle.label | Load |
-| test.cpp:137:9:137:11 | StoreValue | semmle.label | StoreValue |
+| test.cpp:135:2:135:6 | ... ++ | semmle.label | ... ++ |
+| test.cpp:135:2:135:6 | ... ++ | semmle.label | ... ++ |
 | test.cpp:137:9:137:11 | ptr | semmle.label | ptr |
 | test.cpp:170:26:170:41 | (void *)... | semmle.label | (void *)... |
-| test.cpp:170:26:170:41 | Store | semmle.label | Store |
-| test.cpp:170:26:170:41 | StoreValue | semmle.label | StoreValue |
+| test.cpp:170:26:170:41 | (void *)... | semmle.label | (void *)... |
 | test.cpp:170:34:170:41 | & ... | semmle.label | & ... |
-| test.cpp:170:34:170:41 | Unary | semmle.label | Unary |
-| test.cpp:170:35:170:41 | Unary | semmle.label | Unary |
 | test.cpp:170:35:170:41 | myLocal | semmle.label | myLocal |
-| test.cpp:171:10:171:23 | Load | semmle.label | Load |
-| test.cpp:171:10:171:23 | StoreValue | semmle.label | StoreValue |
 | test.cpp:171:10:171:23 | pointerToLocal | semmle.label | pointerToLocal |
-| test.cpp:176:25:176:34 | Store | semmle.label | Store |
-| test.cpp:176:25:176:34 | StoreValue | semmle.label | StoreValue |
-| test.cpp:176:25:176:34 | Unary | semmle.label | Unary |
+| test.cpp:176:25:176:34 | array to pointer conversion | semmle.label | array to pointer conversion |
 | test.cpp:176:25:176:34 | array to pointer conversion | semmle.label | array to pointer conversion |
 | test.cpp:176:25:176:34 | localArray | semmle.label | localArray |
 | test.cpp:177:10:177:23 | (void *)... | semmle.label | (void *)... |
-| test.cpp:177:10:177:23 | Load | semmle.label | Load |
-| test.cpp:177:10:177:23 | StoreValue | semmle.label | StoreValue |
-| test.cpp:177:10:177:23 | Unary | semmle.label | Unary |
 | test.cpp:177:10:177:23 | pointerToLocal | semmle.label | pointerToLocal |
 | test.cpp:182:21:182:27 | (reference to) | semmle.label | (reference to) |
-| test.cpp:182:21:182:27 | Store | semmle.label | Store |
-| test.cpp:182:21:182:27 | StoreValue | semmle.label | StoreValue |
-| test.cpp:182:21:182:27 | Unary | semmle.label | Unary |
+| test.cpp:182:21:182:27 | (reference to) | semmle.label | (reference to) |
 | test.cpp:182:21:182:27 | myLocal | semmle.label | myLocal |
 | test.cpp:183:10:183:19 | (reference dereference) | semmle.label | (reference dereference) |
 | test.cpp:183:10:183:19 | (reference to) | semmle.label | (reference to) |
-| test.cpp:183:10:183:19 | Load | semmle.label | Load |
-| test.cpp:183:10:183:19 | StoreValue | semmle.label | StoreValue |
-| test.cpp:183:10:183:19 | Unary | semmle.label | Unary |
-| test.cpp:183:10:183:19 | Unary | semmle.label | Unary |
 | test.cpp:183:10:183:19 | refToLocal | semmle.label | refToLocal |
 | test.cpp:189:16:189:16 | (reference to) | semmle.label | (reference to) |
-| test.cpp:189:16:189:16 | Store | semmle.label | Store |
-| test.cpp:189:16:189:16 | StoreValue | semmle.label | StoreValue |
-| test.cpp:189:16:189:16 | Unary | semmle.label | Unary |
+| test.cpp:189:16:189:16 | (reference to) | semmle.label | (reference to) |
 | test.cpp:189:16:189:16 | p | semmle.label | p |
 | test.cpp:190:10:190:13 | (reference dereference) | semmle.label | (reference dereference) |
 | test.cpp:190:10:190:13 | (reference to) | semmle.label | (reference to) |
-| test.cpp:190:10:190:13 | Load | semmle.label | Load |
-| test.cpp:190:10:190:13 | StoreValue | semmle.label | StoreValue |
-| test.cpp:190:10:190:13 | Unary | semmle.label | Unary |
-| test.cpp:190:10:190:13 | Unary | semmle.label | Unary |
 | test.cpp:190:10:190:13 | pRef | semmle.label | pRef |
 #select
-| test.cpp:17:9:17:11 | StoreValue | test.cpp:17:10:17:11 | mc | test.cpp:17:9:17:11 | StoreValue | May return stack-allocated memory from $@. | test.cpp:17:10:17:11 | mc | mc |
-| test.cpp:25:9:25:11 | StoreValue | test.cpp:23:18:23:19 | mc | test.cpp:25:9:25:11 | StoreValue | May return stack-allocated memory from $@. | test.cpp:23:18:23:19 | mc | mc |
-| test.cpp:41:9:41:12 | StoreValue | test.cpp:39:17:39:18 | mc | test.cpp:41:9:41:12 | StoreValue | May return stack-allocated memory from $@. | test.cpp:39:17:39:18 | mc | mc |
-| test.cpp:47:9:47:10 | StoreValue | test.cpp:47:9:47:10 | mc | test.cpp:47:9:47:10 | StoreValue | May return stack-allocated memory from $@. | test.cpp:47:9:47:10 | mc | mc |
-| test.cpp:54:9:54:15 | StoreValue | test.cpp:54:11:54:12 | mc | test.cpp:54:9:54:15 | StoreValue | May return stack-allocated memory from $@. | test.cpp:54:11:54:12 | mc | mc |
-| test.cpp:92:9:92:11 | StoreValue | test.cpp:89:10:89:11 | mc | test.cpp:92:9:92:11 | StoreValue | May return stack-allocated memory from $@. | test.cpp:89:10:89:11 | mc | mc |
-| test.cpp:112:9:112:11 | StoreValue | test.cpp:112:9:112:11 | arr | test.cpp:112:9:112:11 | StoreValue | May return stack-allocated memory from $@. | test.cpp:112:9:112:11 | arr | arr |
-| test.cpp:119:9:119:18 | StoreValue | test.cpp:119:11:119:13 | arr | test.cpp:119:9:119:18 | StoreValue | May return stack-allocated memory from $@. | test.cpp:119:11:119:13 | arr | arr |
-| test.cpp:137:9:137:11 | StoreValue | test.cpp:134:8:134:10 | arr | test.cpp:137:9:137:11 | StoreValue | May return stack-allocated memory from $@. | test.cpp:134:8:134:10 | arr | arr |
-| test.cpp:171:10:171:23 | StoreValue | test.cpp:170:35:170:41 | myLocal | test.cpp:171:10:171:23 | StoreValue | May return stack-allocated memory from $@. | test.cpp:170:35:170:41 | myLocal | myLocal |
-| test.cpp:177:10:177:23 | StoreValue | test.cpp:176:25:176:34 | localArray | test.cpp:177:10:177:23 | StoreValue | May return stack-allocated memory from $@. | test.cpp:176:25:176:34 | localArray | localArray |
-| test.cpp:183:10:183:19 | StoreValue | test.cpp:182:21:182:27 | myLocal | test.cpp:183:10:183:19 | StoreValue | May return stack-allocated memory from $@. | test.cpp:182:21:182:27 | myLocal | myLocal |
-| test.cpp:190:10:190:13 | StoreValue | test.cpp:189:16:189:16 | p | test.cpp:190:10:190:13 | StoreValue | May return stack-allocated memory from $@. | test.cpp:189:16:189:16 | p | p |
+| test.cpp:17:9:17:11 | CopyValue: & ... | test.cpp:17:10:17:11 | mc | test.cpp:17:9:17:11 | & ... | May return stack-allocated memory from $@. | test.cpp:17:10:17:11 | mc | mc |
+| test.cpp:25:9:25:11 | Load: ptr | test.cpp:23:18:23:19 | mc | test.cpp:25:9:25:11 | ptr | May return stack-allocated memory from $@. | test.cpp:23:18:23:19 | mc | mc |
+| test.cpp:41:9:41:12 | CopyValue: & ... | test.cpp:39:17:39:18 | mc | test.cpp:41:9:41:12 | & ... | May return stack-allocated memory from $@. | test.cpp:39:17:39:18 | mc | mc |
+| test.cpp:47:9:47:10 | CopyValue: (reference to) | test.cpp:47:9:47:10 | mc | test.cpp:47:9:47:10 | (reference to) | May return stack-allocated memory from $@. | test.cpp:47:9:47:10 | mc | mc |
+| test.cpp:54:9:54:15 | CopyValue: & ... | test.cpp:54:11:54:12 | mc | test.cpp:54:9:54:15 | & ... | May return stack-allocated memory from $@. | test.cpp:54:11:54:12 | mc | mc |
+| test.cpp:92:9:92:11 | Load: ptr | test.cpp:89:10:89:11 | mc | test.cpp:92:9:92:11 | ptr | May return stack-allocated memory from $@. | test.cpp:89:10:89:11 | mc | mc |
+| test.cpp:112:9:112:11 | Convert: array to pointer conversion | test.cpp:112:9:112:11 | arr | test.cpp:112:9:112:11 | array to pointer conversion | May return stack-allocated memory from $@. | test.cpp:112:9:112:11 | arr | arr |
+| test.cpp:119:9:119:18 | CopyValue: & ... | test.cpp:119:11:119:13 | arr | test.cpp:119:9:119:18 | & ... | May return stack-allocated memory from $@. | test.cpp:119:11:119:13 | arr | arr |
+| test.cpp:137:9:137:11 | Load: ptr | test.cpp:134:8:134:10 | arr | test.cpp:137:9:137:11 | ptr | May return stack-allocated memory from $@. | test.cpp:134:8:134:10 | arr | arr |
+| test.cpp:171:10:171:23 | Load: pointerToLocal | test.cpp:170:35:170:41 | myLocal | test.cpp:171:10:171:23 | pointerToLocal | May return stack-allocated memory from $@. | test.cpp:170:35:170:41 | myLocal | myLocal |
+| test.cpp:177:10:177:23 | Convert: (void *)... | test.cpp:176:25:176:34 | localArray | test.cpp:177:10:177:23 | (void *)... | May return stack-allocated memory from $@. | test.cpp:176:25:176:34 | localArray | localArray |
+| test.cpp:183:10:183:19 | CopyValue: (reference to) | test.cpp:182:21:182:27 | myLocal | test.cpp:183:10:183:19 | (reference to) | May return stack-allocated memory from $@. | test.cpp:182:21:182:27 | myLocal | myLocal |
+| test.cpp:190:10:190:13 | CopyValue: (reference to) | test.cpp:189:16:189:16 | p | test.cpp:190:10:190:13 | (reference to) | May return stack-allocated memory from $@. | test.cpp:189:16:189:16 | p | p |

From 4478ac2c17fe7d2ab8fc8bfc7f1a6c34557267aa Mon Sep 17 00:00:00 2001
From: Mathias Vorreiter Pedersen <mathiasvp@github.com>
Date: Wed, 16 Nov 2022 15:19:53 +0000
Subject: [PATCH 0487/1420] C++: Add change note.

---
 cpp/ql/lib/change-notes/2022-11-16-must-flow.md | 4 ++++
 1 file changed, 4 insertions(+)
 create mode 100644 cpp/ql/lib/change-notes/2022-11-16-must-flow.md

diff --git a/cpp/ql/lib/change-notes/2022-11-16-must-flow.md b/cpp/ql/lib/change-notes/2022-11-16-must-flow.md
new file mode 100644
index 00000000000..bdb17d671a3
--- /dev/null
+++ b/cpp/ql/lib/change-notes/2022-11-16-must-flow.md
@@ -0,0 +1,4 @@
+---
+category: breaking
+---
+The predicates in the `MustFlow::Configuration` class used by the `MustFlow` library (`semmle.code.cpp.ir.dataflow.MustFlow`) has changed to be defined directly in terms of the C++ IR instead of IR dataflow nodes.

From aaa96b20ed9637998a45db01f8a3c8e5706b4bfd Mon Sep 17 00:00:00 2001
From: Paolo Tranquilli <redsun82@github.com>
Date: Fri, 18 Nov 2022 17:51:20 +0100
Subject: [PATCH 0488/1420] Swift: fix python compatibility with CI

---
 swift/codegen/test/utils.py | 5 ++---
 1 file changed, 2 insertions(+), 3 deletions(-)

diff --git a/swift/codegen/test/utils.py b/swift/codegen/test/utils.py
index 2678190c9f8..3911206bfa5 100644
--- a/swift/codegen/test/utils.py
+++ b/swift/codegen/test/utils.py
@@ -39,9 +39,8 @@ def opts():
 
 @pytest.fixture(autouse=True)
 def override_paths(tmp_path):
-    with (mock.patch("swift.codegen.lib.paths.swift_dir", tmp_path),
-          mock.patch("swift.codegen.lib.paths.exe_file", tmp_path / "exe"),
-          ):
+    with mock.patch("swift.codegen.lib.paths.swift_dir", tmp_path), \
+            mock.patch("swift.codegen.lib.paths.exe_file", tmp_path / "exe"):
         yield
 
 

From a97570be6364c939c39bf80306149b936aea5ad0 Mon Sep 17 00:00:00 2001
From: sigfaulterror <95027071+sigfaulterror@users.noreply.github.com>
Date: Fri, 18 Nov 2022 18:54:03 +0100
Subject: [PATCH 0489/1420] Update analyzing-databases-with-the-codeql-cli.rst

just small doc error
---
 .../codeql-cli/analyzing-databases-with-the-codeql-cli.rst      | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/docs/codeql/codeql-cli/analyzing-databases-with-the-codeql-cli.rst b/docs/codeql/codeql-cli/analyzing-databases-with-the-codeql-cli.rst
index 72fb979c563..bc9924b740a 100644
--- a/docs/codeql/codeql-cli/analyzing-databases-with-the-codeql-cli.rst
+++ b/docs/codeql/codeql-cli/analyzing-databases-with-the-codeql-cli.rst
@@ -312,7 +312,7 @@ For more information, see "`Using CodeQL query packs in the CodeQL action <https
 Including query help for custom CodeQL queries in SARIF files
 ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 
-If you use the CodeQL CLI to to run code scanning analyses on third party CI/CD systems,
+If you use the CodeQL CLI to run code scanning analyses on third party CI/CD systems,
 you can include the query help for your custom queries in SARIF files generated during an analysis.
 After uploading the SARIF file to GitHub, the query help is shown in the code scanning UI for any
 alerts generated by the custom queries.

From db231a111c3690c6358942a55b78bb5c3669c748 Mon Sep 17 00:00:00 2001
From: Porcupiney Hairs <porcupiney.hairs@protonmail.com>
Date: Mon, 3 Oct 2022 02:31:43 +0530
Subject: [PATCH 0490/1420] Python : Improve the PAM authentication bypass
 query

The current PAM auth bypass query which was contributed by me a few months back, alert on a vulenrable function but does not check if the function is actually function. This leads to a lot of fasle positives.

With this PR, I add a taint-tracking configuration to check if the username parameter can actually be supplied by an attacker.

This should bring the FP's significantly down.
---
 .../change-notes/2022-11-17-py-pam-improve.md |  4 ++
 .../security/dataflow/PamAuthorization.qll    | 44 +++++++++++++
 .../PamAuthorizationCustomizations.qll        | 61 +++++++++++++++++++
 .../src/Security/CWE-285/PamAuthorization.ql  | 31 +++-------
 .../PamAuthorization.expected                 | 11 +++-
 .../Security/CWE-285-PamAuthorization/options |  1 +
 .../CWE-285-PamAuthorization/pam_test.py      | 33 +++++++++-
 7 files changed, 158 insertions(+), 27 deletions(-)
 create mode 100644 python/ql/lib/change-notes/2022-11-17-py-pam-improve.md
 create mode 100644 python/ql/lib/semmle/python/security/dataflow/PamAuthorization.qll
 create mode 100644 python/ql/lib/semmle/python/security/dataflow/PamAuthorizationCustomizations.qll
 create mode 100644 python/ql/test/query-tests/Security/CWE-285-PamAuthorization/options

diff --git a/python/ql/lib/change-notes/2022-11-17-py-pam-improve.md b/python/ql/lib/change-notes/2022-11-17-py-pam-improve.md
new file mode 100644
index 00000000000..95c5f387103
--- /dev/null
+++ b/python/ql/lib/change-notes/2022-11-17-py-pam-improve.md
@@ -0,0 +1,4 @@
+---
+ category: majorAnalysis
+---
+* Converted `py/pam-auth-bypass` to a data-flow query, resulting in significantly lower false positives.
diff --git a/python/ql/lib/semmle/python/security/dataflow/PamAuthorization.qll b/python/ql/lib/semmle/python/security/dataflow/PamAuthorization.qll
new file mode 100644
index 00000000000..82d73cc3e89
--- /dev/null
+++ b/python/ql/lib/semmle/python/security/dataflow/PamAuthorization.qll
@@ -0,0 +1,44 @@
+/**
+ * Provides a taint-tracking configuration for detecting "PAM Authorization" vulnerabilities.
+ *
+ * Note, for performance reasons: only import this file if
+ * `PamAuthorization::Configuration` is needed, otherwise
+ * `PamAuthorizationCustomizations` should be imported instead.
+ */
+
+import python
+import semmle.python.ApiGraphs
+import semmle.python.dataflow.new.TaintTracking
+import PamAuthorizationCustomizations::PamAuthorizationCustomizations
+
+/**
+ * Provides a taint-tracking configuration for detecting "PAM Authorization" vulnerabilities.
+ */
+module PamAuthorization {
+  /**
+   * A taint-tracking configuration for detecting "PAM Authorization" vulnerabilities.
+   */
+  class Configuration extends TaintTracking::Configuration {
+    Configuration() { this = "RemoteToPam" }
+
+    override predicate isSource(DataFlow::Node node) { node instanceof Source }
+
+    override predicate isSink(DataFlow::Node node) { node instanceof Sink }
+
+    override predicate isAdditionalTaintStep(DataFlow::Node node1, DataFlow::Node node2) {
+      // Models flow from a remotely supplied username field to a PAM `handle`.
+      // `retval = pam_start(service, username, byref(conv), byref(handle))`
+      exists(API::CallNode pamStart, DataFlow::Node handle, API::CallNode pointer |
+        pointer = API::moduleImport("ctypes").getMember(["pointer", "byref"]).getACall() and
+        pamStart = libPam().getMember("pam_start").getACall() and
+        pointer = pamStart.getArg(3) and
+        handle = pointer.getArg(0) and
+        pamStart.getArg(1) = node1 and
+        handle = node2
+      )
+      or
+      // Flow from handle to the authenticate call in the final step
+      exists(VulnPamAuthCall c | c.getArg(0) = node1 | node2 = c)
+    }
+  }
+}
diff --git a/python/ql/lib/semmle/python/security/dataflow/PamAuthorizationCustomizations.qll b/python/ql/lib/semmle/python/security/dataflow/PamAuthorizationCustomizations.qll
new file mode 100644
index 00000000000..b3acdef6ef5
--- /dev/null
+++ b/python/ql/lib/semmle/python/security/dataflow/PamAuthorizationCustomizations.qll
@@ -0,0 +1,61 @@
+/**
+ * Provides default sources, sinks and sanitizers for detecting
+ * "PAM Authorization" vulnerabilities.
+ */
+
+import python
+import semmle.python.ApiGraphs
+import semmle.python.dataflow.new.TaintTracking
+import semmle.python.dataflow.new.RemoteFlowSources
+
+/**
+ * Provides default sources, sinks and sanitizers for detecting
+ * "PAM Authorization" vulnerabilities.
+ */
+module PamAuthorizationCustomizations {
+  /**
+   * Models a node corresponding to the `pam` library
+   */
+  API::Node libPam() {
+    exists(API::CallNode findLibCall, API::CallNode cdllCall |
+      findLibCall =
+        API::moduleImport("ctypes").getMember("util").getMember("find_library").getACall() and
+      findLibCall.getParameter(0).getAValueReachingSink().asExpr().(StrConst).getText() = "pam" and
+      cdllCall = API::moduleImport("ctypes").getMember("CDLL").getACall() and
+      cdllCall.getParameter(0).getAValueReachingSink() = findLibCall
+    |
+      result = cdllCall.getReturn()
+    )
+  }
+
+  /**
+   * A data flow source for "PAM Authorization" vulnerabilities.
+   */
+  abstract class Source extends DataFlow::Node { }
+
+  /**
+   * A data flow sink for "PAM Authorization" vulnerabilities.
+   */
+  abstract class Sink extends DataFlow::Node { }
+
+  /**
+   * A source of remote user input, considered as a flow source.
+   */
+  class RemoteFlowSourceAsSource extends Source, RemoteFlowSource { }
+
+  /**
+   * A vulnerable `pam_authenticate` call considered as a flow sink.
+   */
+  class VulnPamAuthCall extends API::CallNode, Sink {
+    VulnPamAuthCall() {
+      exists(DataFlow::Node h |
+        this = libPam().getMember("pam_authenticate").getACall() and
+        h = this.getArg(0) and
+        not exists(API::CallNode acctMgmtCall |
+          acctMgmtCall = libPam().getMember("pam_acct_mgmt").getACall() and
+          DataFlow::localFlow(h, acctMgmtCall.getArg(0))
+        )
+      )
+    }
+  }
+}
diff --git a/python/ql/src/Security/CWE-285/PamAuthorization.ql b/python/ql/src/Security/CWE-285/PamAuthorization.ql
index affb59ff7db..9e2eb00d815 100644
--- a/python/ql/src/Security/CWE-285/PamAuthorization.ql
+++ b/python/ql/src/Security/CWE-285/PamAuthorization.ql
@@ -1,7 +1,7 @@
 /**
  * @name PAM authorization bypass due to incorrect usage
  * @description Not using `pam_acct_mgmt` after `pam_authenticate` to check the validity of a login can lead to authorization bypass.
- * @kind problem
+ * @kind path-problem
  * @problem.severity warning
  * @security-severity 8.1
  * @precision high
@@ -11,28 +11,11 @@
  */
 
 import python
+import DataFlow::PathGraph
 import semmle.python.ApiGraphs
-import experimental.semmle.python.Concepts
-import semmle.python.dataflow.new.TaintTracking
+import semmle.python.security.dataflow.PamAuthorization::PamAuthorization
 
-API::Node libPam() {
-  exists(API::CallNode findLibCall, API::CallNode cdllCall |
-    findLibCall = API::moduleImport("ctypes").getMember("util").getMember("find_library").getACall() and
-    findLibCall.getParameter(0).getAValueReachingSink().asExpr().(StrConst).getText() = "pam" and
-    cdllCall = API::moduleImport("ctypes").getMember("CDLL").getACall() and
-    cdllCall.getParameter(0).getAValueReachingSink() = findLibCall
-  |
-    result = cdllCall.getReturn()
-  )
-}
-
-from API::CallNode authenticateCall, DataFlow::Node handle
-where
-  authenticateCall = libPam().getMember("pam_authenticate").getACall() and
-  handle = authenticateCall.getArg(0) and
-  not exists(API::CallNode acctMgmtCall |
-    acctMgmtCall = libPam().getMember("pam_acct_mgmt").getACall() and
-    DataFlow::localFlow(handle, acctMgmtCall.getArg(0))
-  )
-select authenticateCall,
-  "This PAM authentication call may lead to an authorization bypass, since 'pam_acct_mgmt' is not called afterwards."
+from Configuration config, DataFlow::PathNode source, DataFlow::PathNode sink
+where config.hasFlowPath(source, sink)
+select sink.getNode(), source, sink,
+  "This PAM authentication call may lead to an authorization bypass, since `pam_acct_mgmt` is not called afterwards."
diff --git a/python/ql/test/query-tests/Security/CWE-285-PamAuthorization/PamAuthorization.expected b/python/ql/test/query-tests/Security/CWE-285-PamAuthorization/PamAuthorization.expected
index 54b38f21aa6..7fb5217dbe1 100644
--- a/python/ql/test/query-tests/Security/CWE-285-PamAuthorization/PamAuthorization.expected
+++ b/python/ql/test/query-tests/Security/CWE-285-PamAuthorization/PamAuthorization.expected
@@ -1 +1,10 @@
-| pam_test.py:48:18:48:44 | ControlFlowNode for pam_authenticate() | This PAM authentication call may lead to an authorization bypass, since 'pam_acct_mgmt' is not called afterwards. |
+edges
+| pam_test.py:70:16:70:22 | ControlFlowNode for request | pam_test.py:70:16:70:27 | ControlFlowNode for Attribute |
+| pam_test.py:70:16:70:27 | ControlFlowNode for Attribute | pam_test.py:75:14:75:40 | ControlFlowNode for pam_authenticate() |
+nodes
+| pam_test.py:70:16:70:22 | ControlFlowNode for request | semmle.label | ControlFlowNode for request |
+| pam_test.py:70:16:70:27 | ControlFlowNode for Attribute | semmle.label | ControlFlowNode for Attribute |
+| pam_test.py:75:14:75:40 | ControlFlowNode for pam_authenticate() | semmle.label | ControlFlowNode for pam_authenticate() |
+subpaths
+#select
+| pam_test.py:75:14:75:40 | ControlFlowNode for pam_authenticate() | pam_test.py:70:16:70:22 | ControlFlowNode for request | pam_test.py:75:14:75:40 | ControlFlowNode for pam_authenticate() | This PAM authentication call may lead to an authorization bypass, since `pam_acct_mgmt` is not called afterwards. |
diff --git a/python/ql/test/query-tests/Security/CWE-285-PamAuthorization/options b/python/ql/test/query-tests/Security/CWE-285-PamAuthorization/options
new file mode 100644
index 00000000000..28b616e5f19
--- /dev/null
+++ b/python/ql/test/query-tests/Security/CWE-285-PamAuthorization/options
@@ -0,0 +1 @@
+semmle-extractor-options: --lang=3 --max-import-depth=2 -p ../lib
diff --git a/python/ql/test/query-tests/Security/CWE-285-PamAuthorization/pam_test.py b/python/ql/test/query-tests/Security/CWE-285-PamAuthorization/pam_test.py
index 966e13cb991..f80ce82669a 100644
--- a/python/ql/test/query-tests/Security/CWE-285-PamAuthorization/pam_test.py
+++ b/python/ql/test/query-tests/Security/CWE-285-PamAuthorization/pam_test.py
@@ -1,6 +1,7 @@
 from ctypes import CDLL, POINTER, Structure, byref
 from ctypes import c_char_p, c_int
 from ctypes.util import find_library
+from flask import Flask, request, redirect
 
 
 class PamHandle(Structure):
@@ -40,11 +41,11 @@ pam_acct_mgmt.argtypes = [PamHandle, c_int]
 
 class pam():
 
-    def authenticate_bad(self, username, service='login'):
+    def authenticate_bad_but_good(self, username, service='login'):
         handle = PamHandle()
         conv = PamConv(None, 0)
         retval = pam_start(service, username, byref(conv), byref(handle))
-
+        # This is not fine but we don't alert here as there is a possibility that the function is not actually used
         retval = pam_authenticate(handle, 0)
         auth_success = retval == 0
 
@@ -61,3 +62,31 @@ class pam():
         auth_success = retval == 0
 
         return auth_success
+
+
+app = Flask(__name__)
+@app.route('/bad')
+def bad():
+    username = request.args.get('username', '')
+    handle = PamHandle()
+    conv = PamConv(None, 0)
+    retval = pam_start(service, username, byref(conv), byref(handle))
+
+    retval = pam_authenticate(handle, 0)
+    auth_success = retval == 0
+
+    return auth_success
+
+@app.route('/good')
+def good():
+    username = request.args.get('username', '')
+    handle = PamHandle()
+    conv = PamConv(None, 0)
+    retval = pam_start(service, username, byref(conv), byref(handle))
+
+    retval = pam_authenticate(handle, 0)
+    if retval == 0:
+        retval = pam_acct_mgmt(handle, 0)
+    auth_success = retval == 0
+
+    return auth_success
\ No newline at end of file

From 8d22fd25f1b12f3cb8bdd37f302ebd2b79a23e61 Mon Sep 17 00:00:00 2001
From: tiferet <tiferet@github.com>
Date: Fri, 18 Nov 2022 15:57:46 -0800
Subject: [PATCH 0491/1420] Suggestions from code review

---
 .../adaptivethreatmodeling/EndpointCharacteristics.qll    | 8 +++-----
 1 file changed, 3 insertions(+), 5 deletions(-)

diff --git a/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/EndpointCharacteristics.qll b/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/EndpointCharacteristics.qll
index 5218f65b337..0f899d795d9 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/EndpointCharacteristics.qll
+++ b/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/EndpointCharacteristics.qll
@@ -552,8 +552,7 @@ private class InIrrelevantFileCharacteristic extends StandardEndpointFilterChara
 
   override predicate getEndpoints(DataFlow::Node n) {
     // Ignore candidate sinks within externs, generated, library, and test code
-    ClassifyFiles::classify(n.getFile(), category) and
-    this = "in " + category + " file"
+    ClassifyFiles::classify(n.getFile(), category)
   }
 }
 
@@ -575,10 +574,9 @@ private class DatabaseAccessCallHeuristicCharacteristic extends NosqlInjectionSi
   DatabaseAccessCallHeuristicCharacteristic() { this = "matches database access call heuristic" }
 
   override predicate getEndpoints(DataFlow::Node n) {
-    exists(DataFlow::CallNode call | n = call.getAnArgument() |
+    exists(DataFlow::MethodCallNode call | n = call.getAnArgument() |
       // additional databases accesses that aren't modeled yet
-      call.(DataFlow::MethodCallNode).getMethodName() =
-        ["create", "createCollection", "createIndexes"]
+      call.getMethodName() = ["create", "createCollection", "createIndexes"]
     )
   }
 }

From 41e8170d596bc92bd42bfa02986586caa9a8cfbb Mon Sep 17 00:00:00 2001
From: erik-krogh <erik-krogh@github.com>
Date: Sat, 19 Nov 2022 11:16:24 +0100
Subject: [PATCH 0492/1420] delete the rest of the qlcompile job in Ruby

---
 .github/workflows/ruby-qltest.yml | 5 -----
 1 file changed, 5 deletions(-)

diff --git a/.github/workflows/ruby-qltest.yml b/.github/workflows/ruby-qltest.yml
index 056543a237b..e3ede23479a 100644
--- a/.github/workflows/ruby-qltest.yml
+++ b/.github/workflows/ruby-qltest.yml
@@ -28,11 +28,6 @@ defaults:
     working-directory: ruby
 
 jobs:
-  qlcompile:
-    runs-on: ubuntu-latest
-    steps:
-      - uses: actions/checkout@v3
-      - uses: ./.github/actions/fetch-codeql
   qlupgrade:
     runs-on: ubuntu-latest
     steps:

From 1dbcf8eb10599dcadbcd1eccde2c5107d98fa3ee Mon Sep 17 00:00:00 2001
From: Tom Hvitved <hvitved@github.com>
Date: Sun, 20 Nov 2022 10:16:35 +0100
Subject: [PATCH 0493/1420] Ruby: Add `--check-undefined-labels` to QL test job

---
 .github/workflows/ruby-qltest.yml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/ruby-qltest.yml b/.github/workflows/ruby-qltest.yml
index 125e2694fb0..73f8cecd1ab 100644
--- a/.github/workflows/ruby-qltest.yml
+++ b/.github/workflows/ruby-qltest.yml
@@ -69,6 +69,6 @@ jobs:
       - uses: ./ruby/actions/create-extractor-pack
       - name: Run QL tests
         run: |
-          codeql test run --threads=0 --ram 5000 --slice ${{ matrix.slice }} --search-path "${{ github.workspace }}/ruby/extractor-pack" --check-databases --check-unused-labels --check-repeated-labels --check-redefined-labels --check-use-before-definition --consistency-queries ql/consistency-queries ql/test
+          codeql test run --threads=0 --ram 5000 --slice ${{ matrix.slice }} --search-path "${{ github.workspace }}/ruby/extractor-pack" --check-databases --check-undefined-labels --check-unused-labels --check-repeated-labels --check-redefined-labels --check-use-before-definition --consistency-queries ql/consistency-queries ql/test
         env:
           GITHUB_TOKEN: ${{ github.token }}

From ca17c5b053e018034d817b0b1fcc51fb46683cb1 Mon Sep 17 00:00:00 2001
From: Tom Hvitved <hvitved@github.com>
Date: Wed, 2 Nov 2022 15:08:28 +0100
Subject: [PATCH 0494/1420] Data flow: Add summary context to pruning stages
 2-4

---
 .../ruby/dataflow/internal/DataFlowImpl.qll   | 240 +++++++++---------
 .../dataflow/internal/DataFlowImplCommon.qll  |  18 ++
 2 files changed, 144 insertions(+), 114 deletions(-)

diff --git a/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImpl.qll b/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImpl.qll
index 3c41b1876dc..840a0a46796 100644
--- a/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImpl.qll
+++ b/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImpl.qll
@@ -319,8 +319,6 @@ private class ParamNodeEx extends NodeEx {
   }
 
   ParameterPosition getPosition() { this.isParameterOf(_, result) }
-
-  predicate allowParameterReturnInSelf() { allowParameterReturnInSelfCached(this.asNode()) }
 }
 
 private class RetNodeEx extends NodeEx {
@@ -608,6 +606,21 @@ private predicate hasSinkCallCtx(Configuration config) {
   )
 }
 
+/**
+ * Holds if flow from `p` to a return node of kind `kind` is allowed.
+ *
+ * We don't expect a parameter to return stored in itself, unless
+ * explicitly allowed
+ */
+bindingset[p, kind]
+private predicate parameterFlowThroughAllowed(ParamNode p, ReturnKindExt kind) {
+  exists(ParameterPosition pos | p.isParameterOf(_, pos) |
+    not kind.(ParamUpdateReturnKind).getPosition() = pos
+    or
+    allowParameterReturnInSelfCached(p)
+  )
+}
+
 private module Stage1 implements StageSig {
   class Ap = Unit;
 
@@ -981,21 +994,21 @@ private module Stage1 implements StageSig {
    * candidate for the origin of a summary.
    */
   pragma[nomagic]
-  predicate parameterMayFlowThrough(ParamNodeEx p, DataFlowCallable c, Ap ap, Configuration config) {
-    exists(ReturnKindExt kind |
+  predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
+    exists(DataFlowCallable c, ReturnKindExt kind |
       throughFlowNodeCand(p, config) and
       returnFlowCallableNodeCand(c, kind, config) and
       p.getEnclosingCallable() = c and
       exists(ap) and
-      // we don't expect a parameter to return stored in itself, unless explicitly allowed
-      (
-        not kind.(ParamUpdateReturnKind).getPosition() = p.getPosition()
-        or
-        p.allowParameterReturnInSelf()
-      )
+      parameterFlowThroughAllowed(p.asNode(), kind)
     )
   }
 
+  pragma[nomagic]
+  predicate returnMayFlowThrough(RetNodeEx ret, Configuration config) {
+    throughFlowNodeCand(ret, config)
+  }
+
   pragma[nomagic]
   predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
     exists(ArgNodeEx arg, boolean toReturn |
@@ -1156,7 +1169,9 @@ private signature module StageSig {
 
   predicate callMayFlowThroughRev(DataFlowCall call, Configuration config);
 
-  predicate parameterMayFlowThrough(ParamNodeEx p, DataFlowCallable c, Ap ap, Configuration config);
+  predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config);
+
+  predicate returnMayFlowThrough(RetNodeEx ret, Configuration config);
 
   predicate storeStepCand(
     NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, DataFlowType contentType,
@@ -1252,8 +1267,7 @@ private module MkStage<StageSig PrevStage> {
     ) {
       flowOutOfCall(call, ret, out, allowsFieldFlow, pragma[only_bind_into](config)) and
       PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
-      PrevStage::parameterMayFlowThrough(_, ret.getEnclosingCallable(), _,
-        pragma[only_bind_into](config)) and
+      PrevStage::returnMayFlowThrough(ret, pragma[only_bind_into](config)) and
       matchesCall(ccc, call)
     }
 
@@ -1262,29 +1276,32 @@ private module MkStage<StageSig PrevStage> {
      * configuration `config`.
      *
      * The call context `cc` records whether the node is reached through an
-     * argument in a call, and if so, `argAp` records the access path of that
-     * argument.
+     * argument in a call, and if so, `summaryCtx` and `argAp` record the
+     * corresponding parameter and access path of that argument, respectively.
      */
     pragma[nomagic]
     additional predicate fwdFlow(
-      NodeEx node, FlowState state, Cc cc, ApOption argAp, Ap ap, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      Configuration config
     ) {
-      fwdFlow0(node, state, cc, argAp, ap, config) and
+      fwdFlow0(node, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::revFlow(node, state, unbindApa(getApprox(ap)), config) and
       filter(node, state, ap, config)
     }
 
     pragma[nomagic]
     private predicate fwdFlow0(
-      NodeEx node, FlowState state, Cc cc, ApOption argAp, Ap ap, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      Configuration config
     ) {
       sourceNode(node, state, config) and
       (if hasSourceCallCtx(config) then cc = ccSomeCall() else cc = ccNone()) and
       argAp = apNone() and
+      summaryCtx = TParamNodeNone() and
       ap = getApNil(node)
       or
       exists(NodeEx mid, FlowState state0, Ap ap0, LocalCc localCc |
-        fwdFlow(mid, state0, cc, argAp, ap0, config) and
+        fwdFlow(mid, state0, cc, summaryCtx, argAp, ap0, config) and
         localCc = getLocalCc(mid, cc)
       |
         localStep(mid, state0, node, state, true, _, config, localCc) and
@@ -1295,65 +1312,72 @@ private module MkStage<StageSig PrevStage> {
       )
       or
       exists(NodeEx mid |
-        fwdFlow(mid, pragma[only_bind_into](state), _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, pragma[only_bind_into](config)) and
         jumpStep(mid, node, config) and
         cc = ccNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone()
       )
       or
       exists(NodeEx mid, ApNil nil |
-        fwdFlow(mid, state, _, _, nil, pragma[only_bind_into](config)) and
+        fwdFlow(mid, state, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStep(mid, node, config) and
         cc = ccNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone() and
         ap = getApNil(node)
       )
       or
       exists(NodeEx mid, FlowState state0, ApNil nil |
-        fwdFlow(mid, state0, _, _, nil, pragma[only_bind_into](config)) and
+        fwdFlow(mid, state0, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStateStep(mid, state0, node, state, config) and
         cc = ccNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone() and
         ap = getApNil(node)
       )
       or
       // store
       exists(TypedContent tc, Ap ap0 |
-        fwdFlowStore(_, ap0, tc, node, state, cc, argAp, config) and
+        fwdFlowStore(_, ap0, tc, node, state, cc, summaryCtx, argAp, config) and
         ap = apCons(tc, ap0)
       )
       or
       // read
       exists(Ap ap0, Content c |
-        fwdFlowRead(ap0, c, _, node, state, cc, argAp, config) and
+        fwdFlowRead(ap0, c, _, node, state, cc, summaryCtx, argAp, config) and
         fwdFlowConsCand(ap0, c, ap, config)
       )
       or
       // flow into a callable
       exists(ApApprox apa |
-        fwdFlowIn(_, node, state, _, cc, _, ap, config) and
+        fwdFlowIn(_, node, state, _, cc, _, _, ap, config) and
         apa = getApprox(ap) and
-        if PrevStage::parameterMayFlowThrough(node, _, apa, config)
-        then argAp = apSome(ap)
-        else argAp = apNone()
+        if PrevStage::parameterMayFlowThrough(node, apa, config)
+        then (
+          summaryCtx = TParamNodeSome(node.asNode()) and argAp = apSome(ap)
+        ) else (
+          summaryCtx = TParamNodeNone() and argAp = apNone()
+        )
       )
       or
       // flow out of a callable
-      fwdFlowOutNotFromArg(node, state, cc, argAp, ap, config)
+      fwdFlowOutNotFromArg(node, state, cc, summaryCtx, argAp, ap, config)
       or
-      exists(DataFlowCall call, Ap argAp0 |
-        fwdFlowOutFromArg(call, node, state, argAp0, ap, config) and
-        fwdFlowIsEntered(call, cc, argAp, argAp0, config)
+      // flow through a callable
+      exists(DataFlowCall call, ParamNode summaryCtx0, Ap argAp0 |
+        fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, config) and
+        fwdFlowIsEntered(call, cc, summaryCtx, argAp, summaryCtx0, argAp0, config)
       )
     }
 
     pragma[nomagic]
     private predicate fwdFlowStore(
-      NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc, ApOption argAp,
-      Configuration config
+      NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc,
+      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
     ) {
       exists(DataFlowType contentType |
-        fwdFlow(node1, state, cc, argAp, ap1, config) and
+        fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, config) and
         PrevStage::storeStepCand(node1, unbindApa(getApprox(ap1)), tc, node2, contentType, config) and
         typecheckStore(ap1, contentType)
       )
@@ -1366,7 +1390,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowConsCand(Ap cons, Content c, Ap tail, Configuration config) {
       exists(TypedContent tc |
-        fwdFlowStore(_, tail, tc, _, _, _, _, config) and
+        fwdFlowStore(_, tail, tc, _, _, _, _, _, config) and
         tc.getContent() = c and
         cons = apCons(tc, tail)
       )
@@ -1374,21 +1398,21 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowRead(
-      Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc, ApOption argAp,
-      Configuration config
+      Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc,
+      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
     ) {
-      fwdFlow(node1, state, cc, argAp, ap, config) and
+      fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, c, node2, config) and
       getHeadContent(ap) = c
     }
 
     pragma[nomagic]
     private predicate fwdFlowIn(
-      DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, Cc innercc, ApOption argAp,
-      Ap ap, Configuration config
+      DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, Cc innercc,
+      ParamNodeOption summaryCtx, ApOption argAp, Ap ap, Configuration config
     ) {
       exists(ArgNodeEx arg, boolean allowsFieldFlow |
-        fwdFlow(arg, state, outercc, argAp, ap, config) and
+        fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, config) and
         flowIntoCall(call, arg, p, allowsFieldFlow, config) and
         innercc = getCallContextCall(call, p.getEnclosingCallable(), outercc) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
@@ -1397,13 +1421,14 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowOutNotFromArg(
-      NodeEx out, FlowState state, Cc ccOut, ApOption argAp, Ap ap, Configuration config
+      NodeEx out, FlowState state, Cc ccOut, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      Configuration config
     ) {
       exists(
         DataFlowCall call, RetNodeEx ret, boolean allowsFieldFlow, CcNoCall innercc,
         DataFlowCallable inner
       |
-        fwdFlow(ret, state, innercc, argAp, ap, config) and
+        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, config) and
         flowOutOfCall(call, ret, out, allowsFieldFlow, config) and
         inner = ret.getEnclosingCallable() and
         ccOut = getCallContextReturn(inner, call, innercc) and
@@ -1413,12 +1438,14 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowOutFromArg(
-      DataFlowCall call, NodeEx out, FlowState state, Ap argAp, Ap ap, Configuration config
+      DataFlowCall call, NodeEx out, FlowState state, ParamNode summaryCtx, Ap argAp, Ap ap,
+      Configuration config
     ) {
       exists(RetNodeEx ret, boolean allowsFieldFlow, CcCall ccc |
-        fwdFlow(ret, state, ccc, apSome(argAp), ap, config) and
+        fwdFlow(ret, state, ccc, TParamNodeSome(summaryCtx), apSome(argAp), ap, config) and
         flowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, config) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
+        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
+        parameterFlowThroughAllowed(summaryCtx, ret.getKind())
       )
     }
 
@@ -1428,11 +1455,13 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate fwdFlowIsEntered(
-      DataFlowCall call, Cc cc, ApOption argAp, Ap ap, Configuration config
+      DataFlowCall call, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, ParamNode p, Ap ap,
+      Configuration config
     ) {
-      exists(ParamNodeEx p |
-        fwdFlowIn(call, p, _, cc, _, argAp, ap, config) and
-        PrevStage::parameterMayFlowThrough(p, _, unbindApa(getApprox(ap)), config)
+      exists(ParamNodeEx param |
+        fwdFlowIn(call, param, _, cc, _, summaryCtx, argAp, ap, config) and
+        PrevStage::parameterMayFlowThrough(param, unbindApa(getApprox(ap)), config) and
+        p = param.asNode()
       )
     }
 
@@ -1440,45 +1469,38 @@ private module MkStage<StageSig PrevStage> {
     private predicate storeStepFwd(
       NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, Ap ap2, Configuration config
     ) {
-      fwdFlowStore(node1, ap1, tc, node2, _, _, _, config) and
+      fwdFlowStore(node1, ap1, tc, node2, _, _, _, _, config) and
       ap2 = apCons(tc, ap1) and
-      fwdFlowRead(ap2, tc.getContent(), _, _, _, _, _, config)
+      fwdFlowRead(ap2, tc.getContent(), _, _, _, _, _, _, config)
     }
 
     private predicate readStepFwd(
       NodeEx n1, Ap ap1, Content c, NodeEx n2, Ap ap2, Configuration config
     ) {
-      fwdFlowRead(ap1, c, n1, n2, _, _, _, config) and
+      fwdFlowRead(ap1, c, n1, n2, _, _, _, _, config) and
       fwdFlowConsCand(ap1, c, ap2, config)
     }
 
     pragma[nomagic]
-    private predicate callMayFlowThroughFwd(DataFlowCall call, Configuration config) {
-      exists(Ap argAp0, NodeEx out, FlowState state, Cc cc, ApOption argAp, Ap ap |
-        fwdFlow(out, state, pragma[only_bind_into](cc), pragma[only_bind_into](argAp), ap,
-          pragma[only_bind_into](config)) and
-        fwdFlowOutFromArg(call, out, state, argAp0, ap, config) and
-        fwdFlowIsEntered(pragma[only_bind_into](call), pragma[only_bind_into](cc),
-          pragma[only_bind_into](argAp), pragma[only_bind_into](argAp0),
-          pragma[only_bind_into](config))
-      )
+    private predicate returnFlowsThrough(
+      RetNodeEx ret, FlowState state, CcCall ccc, ParamNode p, Ap argAp, Ap ap, Configuration config
+    ) {
+      fwdFlow(ret, state, ccc, TParamNodeSome(p), apSome(argAp), ap, config) and
+      parameterFlowThroughAllowed(p, ret.getKind())
+    }
+
+    predicate returnMayFlowThrough(RetNodeEx ret, Configuration config) {
+      returnFlowsThrough(ret, _, _, _, _, _, config)
     }
 
     pragma[nomagic]
     private predicate flowThroughIntoCall(
       DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
     ) {
-      flowIntoCall(call, arg, p, allowsFieldFlow, config) and
-      fwdFlow(arg, _, _, _, _, pragma[only_bind_into](config)) and
-      PrevStage::parameterMayFlowThrough(p, _, _, pragma[only_bind_into](config)) and
-      callMayFlowThroughFwd(call, pragma[only_bind_into](config))
-    }
-
-    pragma[nomagic]
-    private predicate returnNodeMayFlowThrough(
-      RetNodeEx ret, FlowState state, Ap ap, Configuration config
-    ) {
-      fwdFlow(ret, state, any(CcCall ccc), apSome(_), ap, config)
+      flowIntoCall(call, pragma[only_bind_into](arg), pragma[only_bind_into](p), allowsFieldFlow,
+        pragma[only_bind_into](config)) and
+      fwdFlow(arg, _, _, _, _, _, pragma[only_bind_into](config)) and
+      returnFlowsThrough(_, _, _, p.asNode(), _, _, pragma[only_bind_into](config))
     }
 
     /**
@@ -1494,14 +1516,14 @@ private module MkStage<StageSig PrevStage> {
       NodeEx node, FlowState state, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
     ) {
       revFlow0(node, state, toReturn, returnAp, ap, config) and
-      fwdFlow(node, state, _, _, ap, config)
+      fwdFlow(node, state, _, _, _, ap, config)
     }
 
     pragma[nomagic]
     private predicate revFlow0(
       NodeEx node, FlowState state, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
     ) {
-      fwdFlow(node, state, _, _, ap, config) and
+      fwdFlow(node, state, _, _, _, ap, config) and
       sinkNode(node, state, config) and
       (if hasSinkCallCtx(config) then toReturn = true else toReturn = false) and
       returnAp = apNone() and
@@ -1513,7 +1535,7 @@ private module MkStage<StageSig PrevStage> {
       )
       or
       exists(NodeEx mid, FlowState state0, ApNil nil |
-        fwdFlow(node, pragma[only_bind_into](state), _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(node, pragma[only_bind_into](state), _, _, _, ap, pragma[only_bind_into](config)) and
         localStep(node, pragma[only_bind_into](state), mid, state0, false, _, config, _) and
         revFlow(mid, state0, toReturn, returnAp, nil, pragma[only_bind_into](config)) and
         ap instanceof ApNil
@@ -1527,7 +1549,7 @@ private module MkStage<StageSig PrevStage> {
       )
       or
       exists(NodeEx mid, ApNil nil |
-        fwdFlow(node, _, _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(node, _, _, _, _, ap, pragma[only_bind_into](config)) and
         additionalJumpStep(node, mid, config) and
         revFlow(pragma[only_bind_into](mid), state, _, _, nil, pragma[only_bind_into](config)) and
         toReturn = false and
@@ -1536,7 +1558,7 @@ private module MkStage<StageSig PrevStage> {
       )
       or
       exists(NodeEx mid, FlowState state0, ApNil nil |
-        fwdFlow(node, _, _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(node, _, _, _, _, ap, pragma[only_bind_into](config)) and
         additionalJumpStateStep(node, state, mid, state0, config) and
         revFlow(pragma[only_bind_into](mid), pragma[only_bind_into](state0), _, _, nil,
           pragma[only_bind_into](config)) and
@@ -1561,6 +1583,7 @@ private module MkStage<StageSig PrevStage> {
       revFlowInNotToReturn(node, state, returnAp, ap, config) and
       toReturn = false
       or
+      // flow through a callable
       exists(DataFlowCall call, Ap returnAp0 |
         revFlowInToReturn(call, node, state, returnAp0, ap, config) and
         revFlowIsReturned(call, toReturn, returnAp, returnAp0, config)
@@ -1569,7 +1592,7 @@ private module MkStage<StageSig PrevStage> {
       // flow out of a callable
       revFlowOut(_, node, state, _, _, ap, config) and
       toReturn = true and
-      if returnNodeMayFlowThrough(node, state, ap, config)
+      if returnFlowsThrough(node, state, _, _, _, ap, config)
       then returnAp = apSome(ap)
       else returnAp = apNone()
     }
@@ -1642,7 +1665,7 @@ private module MkStage<StageSig PrevStage> {
     ) {
       exists(RetNodeEx ret, FlowState state, CcCall ccc |
         revFlowOut(call, ret, state, toReturn, returnAp, ap, config) and
-        fwdFlow(ret, state, ccc, apSome(_), ap, config) and
+        returnFlowsThrough(ret, state, ccc, _, _, ap, config) and
         matchesCall(ccc, call)
       )
     }
@@ -1721,21 +1744,15 @@ private module MkStage<StageSig PrevStage> {
       c = p.getEnclosingCallable()
     }
 
-    predicate parameterMayFlowThrough(ParamNodeEx p, DataFlowCallable c, Ap ap, Configuration config) {
-      exists(RetNodeEx ret, FlowState state, Ap ap0, ReturnKindExt kind, ParameterPosition pos |
+    predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
+      exists(DataFlowCallable c, RetNodeEx ret, FlowState state, Ap ap0, ParameterPosition pos |
         parameterFlow(p, ap, ap0, c, config) and
         c = ret.getEnclosingCallable() and
         revFlow(pragma[only_bind_into](ret), pragma[only_bind_into](state), true, apSome(_),
           pragma[only_bind_into](ap0), pragma[only_bind_into](config)) and
-        fwdFlow(ret, state, any(CcCall ccc), apSome(ap), ap0, config) and
-        kind = ret.getKind() and
+        returnFlowsThrough(ret, state, _, p.asNode(), ap, ap0, config) and
         p.getPosition() = pos and
-        // we don't expect a parameter to return stored in itself, unless explicitly allowed
-        (
-          not kind.(ParamUpdateReturnKind).getPosition() = pos
-          or
-          p.allowParameterReturnInSelf()
-        )
+        parameterFlowThroughAllowed(p.asNode(), ret.getKind())
       )
     }
 
@@ -1754,13 +1771,13 @@ private module MkStage<StageSig PrevStage> {
       boolean fwd, int nodes, int fields, int conscand, int states, int tuples, Configuration config
     ) {
       fwd = true and
-      nodes = count(NodeEx node | fwdFlow(node, _, _, _, _, config)) and
+      nodes = count(NodeEx node | fwdFlow(node, _, _, _, _, _, config)) and
       fields = count(TypedContent f0 | fwdConsCand(f0, _, config)) and
       conscand = count(TypedContent f0, Ap ap | fwdConsCand(f0, ap, config)) and
-      states = count(FlowState state | fwdFlow(_, state, _, _, _, config)) and
+      states = count(FlowState state | fwdFlow(_, state, _, _, _, _, config)) and
       tuples =
-        count(NodeEx n, FlowState state, Cc cc, ApOption argAp, Ap ap |
-          fwdFlow(n, state, cc, argAp, ap, config)
+        count(NodeEx n, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap |
+          fwdFlow(n, state, cc, summaryCtx, argAp, ap, config)
         )
       or
       fwd = false and
@@ -2021,8 +2038,8 @@ private module LocalFlowBigStep {
     exists(NodeEx next | Stage2::revFlow(next, state, config) |
       jumpStep(node, next, config) or
       additionalJumpStep(node, next, config) or
-      flowIntoCallNodeCand1(_, node, next, config) or
-      flowOutOfCallNodeCand1(_, node, next, config) or
+      flowIntoCallNodeCand2(_, node, next, _, config) or
+      flowOutOfCallNodeCand2(_, node, next, _, config) or
       Stage2::storeStepCand(node, _, _, next, _, config) or
       Stage2::readStepCand(node, _, next, config)
     )
@@ -2234,7 +2251,8 @@ private predicate flowCandSummaryCtx(
 ) {
   exists(AccessPathFront apf |
     Stage3::revFlow(node, state, true, _, apf, config) and
-    Stage3::fwdFlow(node, state, any(Stage3::CcCall ccc), TAccessPathFrontSome(argApf), apf, config)
+    Stage3::fwdFlow(node, state, any(Stage3::CcCall ccc), _, TAccessPathFrontSome(argApf), apf,
+      config)
   )
 }
 
@@ -2508,13 +2526,13 @@ private Configuration unbindConf(Configuration conf) {
 
 pragma[nomagic]
 private predicate nodeMayUseSummary0(
-  NodeEx n, DataFlowCallable c, FlowState state, AccessPathApprox apa, Configuration config
+  NodeEx n, ParamNodeEx p, FlowState state, AccessPathApprox apa, Configuration config
 ) {
   exists(AccessPathApprox apa0 |
-    Stage4::parameterMayFlowThrough(_, c, _, _) and
+    Stage4::parameterMayFlowThrough(p, _, _) and
     Stage4::revFlow(n, state, true, _, apa0, config) and
-    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TAccessPathApproxSome(apa), apa0, config) and
-    n.getEnclosingCallable() = c
+    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TParamNodeSome(p.asNode()),
+      TAccessPathApproxSome(apa), apa0, config)
   )
 }
 
@@ -2522,9 +2540,9 @@ pragma[nomagic]
 private predicate nodeMayUseSummary(
   NodeEx n, FlowState state, AccessPathApprox apa, Configuration config
 ) {
-  exists(DataFlowCallable c |
-    Stage4::parameterMayFlowThrough(_, c, apa, config) and
-    nodeMayUseSummary0(n, c, state, apa, config)
+  exists(ParamNodeEx p |
+    Stage4::parameterMayFlowThrough(p, apa, config) and
+    nodeMayUseSummary0(n, p, state, apa, config)
   )
 }
 
@@ -2532,7 +2550,7 @@ private newtype TSummaryCtx =
   TSummaryCtxNone() or
   TSummaryCtxSome(ParamNodeEx p, FlowState state, AccessPath ap) {
     exists(Configuration config |
-      Stage4::parameterMayFlowThrough(p, _, ap.getApprox(), config) and
+      Stage4::parameterMayFlowThrough(p, ap.getApprox(), config) and
       Stage4::revFlow(p, state, _, config)
     )
   }
@@ -3453,17 +3471,11 @@ private predicate paramFlowsThrough(
   ReturnKindExt kind, FlowState state, CallContextCall cc, SummaryCtxSome sc, AccessPath ap,
   AccessPathApprox apa, Configuration config
 ) {
-  exists(PathNodeMid mid, RetNodeEx ret, ParameterPosition pos |
+  exists(PathNodeMid mid, RetNodeEx ret |
     pathNode(mid, ret, state, cc, sc, ap, config, _) and
     kind = ret.getKind() and
     apa = ap.getApprox() and
-    pos = sc.getParameterPos() and
-    // we don't expect a parameter to return stored in itself, unless explicitly allowed
-    (
-      not kind.(ParamUpdateReturnKind).getPosition() = pos
-      or
-      sc.getParamNode().allowParameterReturnInSelf()
-    )
+    parameterFlowThroughAllowed(sc.getParamNode().asNode(), kind)
   )
 }
 
diff --git a/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImplCommon.qll b/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImplCommon.qll
index ae9c6f3f12e..9923fd955a8 100644
--- a/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImplCommon.qll
+++ b/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImplCommon.qll
@@ -915,6 +915,11 @@ private module Cached {
     TDataFlowCallNone() or
     TDataFlowCallSome(DataFlowCall call)
 
+  cached
+  newtype TParamNodeOption =
+    TParamNodeNone() or
+    TParamNodeSome(ParamNode p)
+
   cached
   newtype TTypedContent = MkTypedContent(Content c, DataFlowType t) { store(_, c, _, _, t) }
 
@@ -1304,6 +1309,19 @@ class DataFlowCallOption extends TDataFlowCallOption {
   }
 }
 
+/** An optional `ParamNode`. */
+class ParamNodeOption extends TParamNodeOption {
+  string toString() {
+    this = TParamNodeNone() and
+    result = "(none)"
+    or
+    exists(ParamNode p |
+      this = TParamNodeSome(p) and
+      result = p.toString()
+    )
+  }
+}
+
 /** A `Content` tagged with the type of a containing object. */
 class TypedContent extends MkTypedContent {
   private Content c;

From 5adf10fcbab0969d74cd3f36fc2d9e90a179b996 Mon Sep 17 00:00:00 2001
From: Tom Hvitved <hvitved@github.com>
Date: Wed, 2 Nov 2022 20:49:39 +0100
Subject: [PATCH 0495/1420] Data flow: Add return context to pruning stages 2-4

---
 .../ruby/dataflow/internal/DataFlowImpl.qll   | 128 ++++++++++--------
 .../dataflow/internal/DataFlowImplCommon.qll  |  31 +++++
 2 files changed, 102 insertions(+), 57 deletions(-)

diff --git a/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImpl.qll b/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImpl.qll
index 840a0a46796..8ee4677fc96 100644
--- a/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImpl.qll
+++ b/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImpl.qll
@@ -1489,10 +1489,6 @@ private module MkStage<StageSig PrevStage> {
       parameterFlowThroughAllowed(p, ret.getKind())
     }
 
-    predicate returnMayFlowThrough(RetNodeEx ret, Configuration config) {
-      returnFlowsThrough(ret, _, _, _, _, _, config)
-    }
-
     pragma[nomagic]
     private predicate flowThroughIntoCall(
       DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
@@ -1507,44 +1503,50 @@ private module MkStage<StageSig PrevStage> {
      * Holds if `node` with access path `ap` is part of a path from a source to a
      * sink in the configuration `config`.
      *
-     * The Boolean `toReturn` records whether the node must be returned from the
-     * enclosing callable in order to reach a sink, and if so, `returnAp` records
-     * the access path of the returned value.
+     * The parameter `returnCtx` records whether (and how) the node must be returned
+     * from the enclosing callable in order to reach a sink, and if so, `returnAp`
+     * records the access path of the returned value.
      */
     pragma[nomagic]
     additional predicate revFlow(
-      NodeEx node, FlowState state, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
+      NodeEx node, FlowState state, ReturnCtx returnCtx, ApOption returnAp, Ap ap,
+      Configuration config
     ) {
-      revFlow0(node, state, toReturn, returnAp, ap, config) and
+      revFlow0(node, state, returnCtx, returnAp, ap, config) and
       fwdFlow(node, state, _, _, _, ap, config)
     }
 
     pragma[nomagic]
     private predicate revFlow0(
-      NodeEx node, FlowState state, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
+      NodeEx node, FlowState state, ReturnCtx returnCtx, ApOption returnAp, Ap ap,
+      Configuration config
     ) {
       fwdFlow(node, state, _, _, _, ap, config) and
       sinkNode(node, state, config) and
-      (if hasSinkCallCtx(config) then toReturn = true else toReturn = false) and
+      (
+        if hasSinkCallCtx(config)
+        then returnCtx = TReturnCtxNoFlowThrough()
+        else returnCtx = TReturnCtxNone()
+      ) and
       returnAp = apNone() and
       ap instanceof ApNil
       or
       exists(NodeEx mid, FlowState state0 |
         localStep(node, state, mid, state0, true, _, config, _) and
-        revFlow(mid, state0, toReturn, returnAp, ap, config)
+        revFlow(mid, state0, returnCtx, returnAp, ap, config)
       )
       or
       exists(NodeEx mid, FlowState state0, ApNil nil |
         fwdFlow(node, pragma[only_bind_into](state), _, _, _, ap, pragma[only_bind_into](config)) and
         localStep(node, pragma[only_bind_into](state), mid, state0, false, _, config, _) and
-        revFlow(mid, state0, toReturn, returnAp, nil, pragma[only_bind_into](config)) and
+        revFlow(mid, state0, returnCtx, returnAp, nil, pragma[only_bind_into](config)) and
         ap instanceof ApNil
       )
       or
       exists(NodeEx mid |
         jumpStep(node, mid, config) and
         revFlow(mid, state, _, _, ap, config) and
-        toReturn = false and
+        returnCtx = TReturnCtxNone() and
         returnAp = apNone()
       )
       or
@@ -1552,7 +1554,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(node, _, _, _, _, ap, pragma[only_bind_into](config)) and
         additionalJumpStep(node, mid, config) and
         revFlow(pragma[only_bind_into](mid), state, _, _, nil, pragma[only_bind_into](config)) and
-        toReturn = false and
+        returnCtx = TReturnCtxNone() and
         returnAp = apNone() and
         ap instanceof ApNil
       )
@@ -1562,47 +1564,50 @@ private module MkStage<StageSig PrevStage> {
         additionalJumpStateStep(node, state, mid, state0, config) and
         revFlow(pragma[only_bind_into](mid), pragma[only_bind_into](state0), _, _, nil,
           pragma[only_bind_into](config)) and
-        toReturn = false and
+        returnCtx = TReturnCtxNone() and
         returnAp = apNone() and
         ap instanceof ApNil
       )
       or
       // store
       exists(Ap ap0, Content c |
-        revFlowStore(ap0, c, ap, node, state, _, _, toReturn, returnAp, config) and
+        revFlowStore(ap0, c, ap, node, state, _, _, returnCtx, returnAp, config) and
         revFlowConsCand(ap0, c, ap, config)
       )
       or
       // read
       exists(NodeEx mid, Ap ap0 |
-        revFlow(mid, state, toReturn, returnAp, ap0, config) and
+        revFlow(mid, state, returnCtx, returnAp, ap0, config) and
         readStepFwd(node, ap, _, mid, ap0, config)
       )
       or
       // flow into a callable
       revFlowInNotToReturn(node, state, returnAp, ap, config) and
-      toReturn = false
+      returnCtx = TReturnCtxNone()
       or
       // flow through a callable
-      exists(DataFlowCall call, Ap returnAp0 |
-        revFlowInToReturn(call, node, state, returnAp0, ap, config) and
-        revFlowIsReturned(call, toReturn, returnAp, returnAp0, config)
+      exists(DataFlowCall call, ReturnPosition returnPos0, Ap returnAp0 |
+        revFlowInToReturn(call, node, state, returnPos0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnPos0, returnAp0, config)
       )
       or
       // flow out of a callable
       revFlowOut(_, node, state, _, _, ap, config) and
-      toReturn = true and
       if returnFlowsThrough(node, state, _, _, _, ap, config)
-      then returnAp = apSome(ap)
-      else returnAp = apNone()
+      then (
+        returnCtx = TReturnCtxMaybeFlowThrough(node.(RetNodeEx).getReturnPosition()) and
+        returnAp = apSome(ap)
+      ) else (
+        returnCtx = TReturnCtxNoFlowThrough() and returnAp = apNone()
+      )
     }
 
     pragma[nomagic]
     private predicate revFlowStore(
       Ap ap0, Content c, Ap ap, NodeEx node, FlowState state, TypedContent tc, NodeEx mid,
-      boolean toReturn, ApOption returnAp, Configuration config
+      ReturnCtx returnCtx, ApOption returnAp, Configuration config
     ) {
-      revFlow(mid, state, toReturn, returnAp, ap0, config) and
+      revFlow(mid, state, returnCtx, returnAp, ap0, config) and
       storeStepFwd(node, ap, tc, mid, ap0, config) and
       tc.getContent() = c
     }
@@ -1622,11 +1627,11 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate revFlowOut(
-      DataFlowCall call, RetNodeEx ret, FlowState state, boolean toReturn, ApOption returnAp, Ap ap,
-      Configuration config
+      DataFlowCall call, RetNodeEx ret, FlowState state, ReturnCtx returnCtx, ApOption returnAp,
+      Ap ap, Configuration config
     ) {
       exists(NodeEx out, boolean allowsFieldFlow |
-        revFlow(out, state, toReturn, returnAp, ap, config) and
+        revFlow(out, state, returnCtx, returnAp, ap, config) and
         flowOutOfCall(call, ret, out, allowsFieldFlow, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
@@ -1637,7 +1642,7 @@ private module MkStage<StageSig PrevStage> {
       ArgNodeEx arg, FlowState state, ApOption returnAp, Ap ap, Configuration config
     ) {
       exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(p, state, false, returnAp, ap, config) and
+        revFlow(p, state, TReturnCtxNone(), returnAp, ap, config) and
         flowIntoCall(_, arg, p, allowsFieldFlow, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
@@ -1645,12 +1650,14 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate revFlowInToReturn(
-      DataFlowCall call, ArgNodeEx arg, FlowState state, Ap returnAp, Ap ap, Configuration config
+      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnPosition returnPos, Ap returnAp,
+      Ap ap, Configuration config
     ) {
       exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(p, state, true, apSome(returnAp), ap, config) and
+        revFlow(p, state, TReturnCtxMaybeFlowThrough(returnPos), apSome(returnAp), ap, config) and
         flowThroughIntoCall(call, arg, p, allowsFieldFlow, config) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
+        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
+        parameterFlowThroughAllowed(p.asNode(), returnPos.getKind())
       )
     }
 
@@ -1661,11 +1668,13 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate revFlowIsReturned(
-      DataFlowCall call, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
+      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnPosition pos, Ap ap,
+      Configuration config
     ) {
       exists(RetNodeEx ret, FlowState state, CcCall ccc |
-        revFlowOut(call, ret, state, toReturn, returnAp, ap, config) and
+        revFlowOut(call, ret, state, returnCtx, returnAp, ap, config) and
         returnFlowsThrough(ret, state, ccc, _, _, ap, config) and
+        pos = ret.getReturnPosition() and
         matchesCall(ccc, call)
       )
     }
@@ -1736,34 +1745,39 @@ private module MkStage<StageSig PrevStage> {
       validAp(ap, config)
     }
 
-    pragma[noinline]
-    private predicate parameterFlow(
-      ParamNodeEx p, Ap ap, Ap ap0, DataFlowCallable c, Configuration config
+    pragma[nomagic]
+    private predicate parameterFlowsThroughRev(
+      ParamNodeEx p, Ap ap, ReturnPosition returnPos, Configuration config
     ) {
-      revFlow(p, _, true, apSome(ap0), ap, config) and
-      c = p.getEnclosingCallable()
+      revFlow(p, _, TReturnCtxMaybeFlowThrough(returnPos), apSome(_), ap, config) and
+      parameterFlowThroughAllowed(p.asNode(), returnPos.getKind())
     }
 
+    pragma[nomagic]
     predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
-      exists(DataFlowCallable c, RetNodeEx ret, FlowState state, Ap ap0, ParameterPosition pos |
-        parameterFlow(p, ap, ap0, c, config) and
-        c = ret.getEnclosingCallable() and
-        revFlow(pragma[only_bind_into](ret), pragma[only_bind_into](state), true, apSome(_),
-          pragma[only_bind_into](ap0), pragma[only_bind_into](config)) and
-        returnFlowsThrough(ret, state, _, p.asNode(), ap, ap0, config) and
-        p.getPosition() = pos and
-        parameterFlowThroughAllowed(p.asNode(), ret.getKind())
+      exists(RetNodeEx ret |
+        returnFlowsThrough(ret, _, _, p.asNode(), ap, _, config) and
+        parameterFlowsThroughRev(p, ap, ret.getReturnPosition(), config)
+      )
+    }
+
+    pragma[nomagic]
+    predicate returnMayFlowThrough(RetNodeEx ret, Configuration config) {
+      exists(ParamNodeEx p, Ap ap |
+        returnFlowsThrough(ret, _, _, p.asNode(), ap, _, config) and
+        parameterFlowsThroughRev(p, ap, ret.getReturnPosition(), config)
       )
     }
 
     pragma[nomagic]
     predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
       exists(
-        Ap returnAp0, ArgNodeEx arg, FlowState state, boolean toReturn, ApOption returnAp, Ap ap
+        ReturnPosition returnPos0, Ap returnAp0, ArgNodeEx arg, FlowState state,
+        ReturnCtx returnCtx, ApOption returnAp, Ap ap
       |
-        revFlow(arg, state, toReturn, returnAp, ap, config) and
-        revFlowInToReturn(call, arg, state, returnAp0, ap, config) and
-        revFlowIsReturned(call, toReturn, returnAp, returnAp0, config)
+        revFlow(arg, state, returnCtx, returnAp, ap, config) and
+        revFlowInToReturn(call, arg, state, returnPos0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnPos0, returnAp0, config)
       )
     }
 
@@ -1786,8 +1800,8 @@ private module MkStage<StageSig PrevStage> {
       conscand = count(TypedContent f0, Ap ap | consCand(f0, ap, config)) and
       states = count(FlowState state | revFlow(_, state, _, _, _, config)) and
       tuples =
-        count(NodeEx n, FlowState state, boolean b, ApOption retAp, Ap ap |
-          revFlow(n, state, b, retAp, ap, config)
+        count(NodeEx n, FlowState state, ReturnCtx returnCtx, ApOption retAp, Ap ap |
+          revFlow(n, state, returnCtx, retAp, ap, config)
         )
     }
     /* End: Stage logic. */
@@ -2250,7 +2264,7 @@ private predicate flowCandSummaryCtx(
   NodeEx node, FlowState state, AccessPathFront argApf, Configuration config
 ) {
   exists(AccessPathFront apf |
-    Stage3::revFlow(node, state, true, _, apf, config) and
+    Stage3::revFlow(node, state, TReturnCtxMaybeFlowThrough(_), _, apf, config) and
     Stage3::fwdFlow(node, state, any(Stage3::CcCall ccc), _, TAccessPathFrontSome(argApf), apf,
       config)
   )
@@ -2530,7 +2544,7 @@ private predicate nodeMayUseSummary0(
 ) {
   exists(AccessPathApprox apa0 |
     Stage4::parameterMayFlowThrough(p, _, _) and
-    Stage4::revFlow(n, state, true, _, apa0, config) and
+    Stage4::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
     Stage4::fwdFlow(n, state, any(CallContextCall ccc), TParamNodeSome(p.asNode()),
       TAccessPathApproxSome(apa), apa0, config)
   )
diff --git a/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImplCommon.qll b/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImplCommon.qll
index 9923fd955a8..621ed34f9d0 100644
--- a/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImplCommon.qll
+++ b/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImplCommon.qll
@@ -920,6 +920,12 @@ private module Cached {
     TParamNodeNone() or
     TParamNodeSome(ParamNode p)
 
+  cached
+  newtype TReturnCtx =
+    TReturnCtxNone() or
+    TReturnCtxNoFlowThrough() or
+    TReturnCtxMaybeFlowThrough(ReturnPosition pos)
+
   cached
   newtype TTypedContent = MkTypedContent(Content c, DataFlowType t) { store(_, c, _, _, t) }
 
@@ -1322,6 +1328,31 @@ class ParamNodeOption extends TParamNodeOption {
   }
 }
 
+/**
+ * A return context used to calculate flow summaries in reverse flow.
+ *
+ * The possible values are:
+ *
+ * - `TReturnCtxNone()`: no return flow.
+ * - `TReturnCtxNoFlowThrough()`: return flow, but flow through is not possible.
+ * - `TReturnCtxMaybeFlowThrough(ReturnPosition pos)`: return flow, of kind `pos`, and
+ *    flow through may be possible.
+ */
+class ReturnCtx extends TReturnCtx {
+  string toString() {
+    this = TReturnCtxNone() and
+    result = "(none)"
+    or
+    this = TReturnCtxNoFlowThrough() and
+    result = "(no flow through)"
+    or
+    exists(ReturnPosition pos |
+      this = TReturnCtxMaybeFlowThrough(pos) and
+      result = pos.toString()
+    )
+  }
+}
+
 /** A `Content` tagged with the type of a containing object. */
 class TypedContent extends MkTypedContent {
   private Content c;

From a3a3b46d54695a1164cf369327857b08b6ad79cc Mon Sep 17 00:00:00 2001
From: Tom Hvitved <hvitved@github.com>
Date: Mon, 7 Nov 2022 11:55:33 +0100
Subject: [PATCH 0496/1420] Data flow: Account for return nodes with multiple
 return kinds when restricting flow through

For example, flow out via parameters allows for return nodes with multiple
return kinds:

```csharp
void SetXOrY(C x, C y, bool b)
{
    C c = x;
    if (b)
        c = y;
    c.Field = taint; // post-update node for `c` has two return kinds
}
```
---
 .../ruby/dataflow/internal/DataFlowImpl.qll   | 114 ++++++++++--------
 1 file changed, 63 insertions(+), 51 deletions(-)

diff --git a/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImpl.qll b/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImpl.qll
index 8ee4677fc96..a52ad110662 100644
--- a/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImpl.qll
+++ b/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImpl.qll
@@ -1005,8 +1005,9 @@ private module Stage1 implements StageSig {
   }
 
   pragma[nomagic]
-  predicate returnMayFlowThrough(RetNodeEx ret, Configuration config) {
-    throughFlowNodeCand(ret, config)
+  predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config) {
+    throughFlowNodeCand(ret, config) and
+    pos = ret.getReturnPosition()
   }
 
   pragma[nomagic]
@@ -1065,9 +1066,10 @@ private predicate viableReturnPosOutNodeCand1(
  */
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand1(
-  DataFlowCall call, RetNodeEx ret, NodeEx out, Configuration config
+  DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, Configuration config
 ) {
-  viableReturnPosOutNodeCand1(call, ret.getReturnPosition(), out, config) and
+  viableReturnPosOutNodeCand1(call, pos, out, config) and
+  pos = ret.getReturnPosition() and
   Stage1::revFlow(ret, config) and
   not outBarrier(ret, config) and
   not inBarrier(out, config)
@@ -1103,7 +1105,7 @@ private predicate flowIntoCallNodeCand1(
 private int branch(NodeEx n1, Configuration conf) {
   result =
     strictcount(NodeEx n |
-      flowOutOfCallNodeCand1(_, n1, n, conf) or flowIntoCallNodeCand1(_, n1, n, conf)
+      flowOutOfCallNodeCand1(_, n1, _, n, conf) or flowIntoCallNodeCand1(_, n1, n, conf)
     )
 }
 
@@ -1115,7 +1117,7 @@ private int branch(NodeEx n1, Configuration conf) {
 private int join(NodeEx n2, Configuration conf) {
   result =
     strictcount(NodeEx n |
-      flowOutOfCallNodeCand1(_, n, n2, conf) or flowIntoCallNodeCand1(_, n, n2, conf)
+      flowOutOfCallNodeCand1(_, n, _, n2, conf) or flowIntoCallNodeCand1(_, n, n2, conf)
     )
 }
 
@@ -1128,12 +1130,13 @@ private int join(NodeEx n2, Configuration conf) {
  */
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand1(
-  DataFlowCall call, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow, Configuration config
+  DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
+  Configuration config
 ) {
-  flowOutOfCallNodeCand1(call, ret, out, config) and
+  flowOutOfCallNodeCand1(call, ret, pos, out, pragma[only_bind_into](config)) and
   exists(int b, int j |
-    b = branch(ret, config) and
-    j = join(out, config) and
+    b = branch(ret, pragma[only_bind_into](config)) and
+    j = join(out, pragma[only_bind_into](config)) and
     if b.minimum(j) <= config.fieldFlowBranchLimit()
     then allowsFieldFlow = true
     else allowsFieldFlow = false
@@ -1171,7 +1174,7 @@ private signature module StageSig {
 
   predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config);
 
-  predicate returnMayFlowThrough(RetNodeEx ret, Configuration config);
+  predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config);
 
   predicate storeStepCand(
     NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, DataFlowType contentType,
@@ -1237,7 +1240,8 @@ private module MkStage<StageSig PrevStage> {
     );
 
     predicate flowOutOfCall(
-      DataFlowCall call, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow, Configuration config
+      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
+      Configuration config
     );
 
     predicate flowIntoCall(
@@ -1262,13 +1266,16 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate flowThroughOutOfCall(
-      DataFlowCall call, CcCall ccc, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow,
-      Configuration config
+      DataFlowCall call, CcCall ccc, RetNodeEx ret, ReturnKindExt kind, NodeEx out,
+      boolean allowsFieldFlow, Configuration config
     ) {
-      flowOutOfCall(call, ret, out, allowsFieldFlow, pragma[only_bind_into](config)) and
-      PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
-      PrevStage::returnMayFlowThrough(ret, pragma[only_bind_into](config)) and
-      matchesCall(ccc, call)
+      exists(ReturnPosition pos |
+        flowOutOfCall(call, ret, pos, out, allowsFieldFlow, pragma[only_bind_into](config)) and
+        kind = pos.getKind() and
+        PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
+        PrevStage::returnMayFlowThrough(ret, pos, pragma[only_bind_into](config)) and
+        matchesCall(ccc, call)
+      )
     }
 
     /**
@@ -1429,7 +1436,7 @@ private module MkStage<StageSig PrevStage> {
         DataFlowCallable inner
       |
         fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, config) and
-        flowOutOfCall(call, ret, out, allowsFieldFlow, config) and
+        flowOutOfCall(call, ret, _, out, allowsFieldFlow, config) and
         inner = ret.getEnclosingCallable() and
         ccOut = getCallContextReturn(inner, call, innercc) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
@@ -1441,11 +1448,11 @@ private module MkStage<StageSig PrevStage> {
       DataFlowCall call, NodeEx out, FlowState state, ParamNode summaryCtx, Ap argAp, Ap ap,
       Configuration config
     ) {
-      exists(RetNodeEx ret, boolean allowsFieldFlow, CcCall ccc |
+      exists(RetNodeEx ret, ReturnKindExt kind, boolean allowsFieldFlow, CcCall ccc |
         fwdFlow(ret, state, ccc, TParamNodeSome(summaryCtx), apSome(argAp), ap, config) and
-        flowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, config) and
+        flowThroughOutOfCall(call, ccc, ret, kind, out, allowsFieldFlow, config) and
         (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
-        parameterFlowThroughAllowed(summaryCtx, ret.getKind())
+        parameterFlowThroughAllowed(summaryCtx, kind)
       )
     }
 
@@ -1483,10 +1490,12 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate returnFlowsThrough(
-      RetNodeEx ret, FlowState state, CcCall ccc, ParamNode p, Ap argAp, Ap ap, Configuration config
+      RetNodeEx ret, ReturnPosition pos, FlowState state, CcCall ccc, ParamNode p, Ap argAp, Ap ap,
+      Configuration config
     ) {
       fwdFlow(ret, state, ccc, TParamNodeSome(p), apSome(argAp), ap, config) and
-      parameterFlowThroughAllowed(p, ret.getKind())
+      pos = ret.getReturnPosition() and
+      parameterFlowThroughAllowed(p, pos.getKind())
     }
 
     pragma[nomagic]
@@ -1496,7 +1505,7 @@ private module MkStage<StageSig PrevStage> {
       flowIntoCall(call, pragma[only_bind_into](arg), pragma[only_bind_into](p), allowsFieldFlow,
         pragma[only_bind_into](config)) and
       fwdFlow(arg, _, _, _, _, _, pragma[only_bind_into](config)) and
-      returnFlowsThrough(_, _, _, p.asNode(), _, _, pragma[only_bind_into](config))
+      returnFlowsThrough(_, _, _, _, p.asNode(), _, _, pragma[only_bind_into](config))
     }
 
     /**
@@ -1592,13 +1601,15 @@ private module MkStage<StageSig PrevStage> {
       )
       or
       // flow out of a callable
-      revFlowOut(_, node, state, _, _, ap, config) and
-      if returnFlowsThrough(node, state, _, _, _, ap, config)
-      then (
-        returnCtx = TReturnCtxMaybeFlowThrough(node.(RetNodeEx).getReturnPosition()) and
-        returnAp = apSome(ap)
-      ) else (
-        returnCtx = TReturnCtxNoFlowThrough() and returnAp = apNone()
+      exists(ReturnPosition pos |
+        revFlowOut(_, node, pos, state, _, _, ap, config) and
+        if returnFlowsThrough(node, pos, state, _, _, _, ap, config)
+        then (
+          returnCtx = TReturnCtxMaybeFlowThrough(pos) and
+          returnAp = apSome(ap)
+        ) else (
+          returnCtx = TReturnCtxNoFlowThrough() and returnAp = apNone()
+        )
       )
     }
 
@@ -1627,12 +1638,12 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate revFlowOut(
-      DataFlowCall call, RetNodeEx ret, FlowState state, ReturnCtx returnCtx, ApOption returnAp,
-      Ap ap, Configuration config
+      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, FlowState state, ReturnCtx returnCtx,
+      ApOption returnAp, Ap ap, Configuration config
     ) {
       exists(NodeEx out, boolean allowsFieldFlow |
         revFlow(out, state, returnCtx, returnAp, ap, config) and
-        flowOutOfCall(call, ret, out, allowsFieldFlow, config) and
+        flowOutOfCall(call, ret, pos, out, allowsFieldFlow, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
@@ -1672,9 +1683,8 @@ private module MkStage<StageSig PrevStage> {
       Configuration config
     ) {
       exists(RetNodeEx ret, FlowState state, CcCall ccc |
-        revFlowOut(call, ret, state, returnCtx, returnAp, ap, config) and
-        returnFlowsThrough(ret, state, ccc, _, _, ap, config) and
-        pos = ret.getReturnPosition() and
+        revFlowOut(call, ret, pos, state, returnCtx, returnAp, ap, config) and
+        returnFlowsThrough(ret, pos, state, ccc, _, _, ap, config) and
         matchesCall(ccc, call)
       )
     }
@@ -1755,17 +1765,17 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
-      exists(RetNodeEx ret |
-        returnFlowsThrough(ret, _, _, p.asNode(), ap, _, config) and
-        parameterFlowsThroughRev(p, ap, ret.getReturnPosition(), config)
+      exists(RetNodeEx ret, ReturnPosition pos |
+        returnFlowsThrough(ret, pos, _, _, p.asNode(), ap, _, config) and
+        parameterFlowsThroughRev(p, ap, pos, config)
       )
     }
 
     pragma[nomagic]
-    predicate returnMayFlowThrough(RetNodeEx ret, Configuration config) {
+    predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config) {
       exists(ParamNodeEx p, Ap ap |
-        returnFlowsThrough(ret, _, _, p.asNode(), ap, _, config) and
-        parameterFlowsThroughRev(p, ap, ret.getReturnPosition(), config)
+        returnFlowsThrough(ret, pos, _, _, p.asNode(), ap, _, config) and
+        parameterFlowsThroughRev(p, ap, pos, config)
       )
     }
 
@@ -1946,7 +1956,7 @@ private module Stage2Param implements MkStage<Stage1>::StageParam {
     exists(lcc)
   }
 
-  predicate flowOutOfCall = flowOutOfCallNodeCand1/5;
+  predicate flowOutOfCall = flowOutOfCallNodeCand1/6;
 
   predicate flowIntoCall = flowIntoCallNodeCand1/5;
 
@@ -1982,9 +1992,10 @@ private module Stage2 implements StageSig {
 
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand2(
-  DataFlowCall call, RetNodeEx node1, NodeEx node2, boolean allowsFieldFlow, Configuration config
+  DataFlowCall call, RetNodeEx node1, ReturnPosition pos, NodeEx node2, boolean allowsFieldFlow,
+  Configuration config
 ) {
-  flowOutOfCallNodeCand1(call, node1, node2, allowsFieldFlow, config) and
+  flowOutOfCallNodeCand1(call, node1, pos, node2, allowsFieldFlow, config) and
   Stage2::revFlow(node2, pragma[only_bind_into](config)) and
   Stage2::revFlowAlias(node1, pragma[only_bind_into](config))
 }
@@ -2053,7 +2064,7 @@ private module LocalFlowBigStep {
       jumpStep(node, next, config) or
       additionalJumpStep(node, next, config) or
       flowIntoCallNodeCand2(_, node, next, _, config) or
-      flowOutOfCallNodeCand2(_, node, next, _, config) or
+      flowOutOfCallNodeCand2(_, node, _, next, _, config) or
       Stage2::storeStepCand(node, _, _, next, _, config) or
       Stage2::readStepCand(node, _, next, config)
     )
@@ -2194,7 +2205,7 @@ private module Stage3Param implements MkStage<Stage2>::StageParam {
     localFlowBigStep(node1, state1, node2, state2, preservesValue, ap, config, _) and exists(lcc)
   }
 
-  predicate flowOutOfCall = flowOutOfCallNodeCand2/5;
+  predicate flowOutOfCall = flowOutOfCallNodeCand2/6;
 
   predicate flowIntoCall = flowIntoCallNodeCand2/5;
 
@@ -2500,10 +2511,11 @@ private module Stage4Param implements MkStage<Stage3>::StageParam {
 
   pragma[nomagic]
   predicate flowOutOfCall(
-    DataFlowCall call, RetNodeEx node1, NodeEx node2, boolean allowsFieldFlow, Configuration config
+    DataFlowCall call, RetNodeEx node1, ReturnPosition pos, NodeEx node2, boolean allowsFieldFlow,
+    Configuration config
   ) {
     exists(FlowState state |
-      flowOutOfCallNodeCand2(call, node1, node2, allowsFieldFlow, config) and
+      flowOutOfCallNodeCand2(call, node1, pos, node2, allowsFieldFlow, config) and
       PrevStage::revFlow(node2, pragma[only_bind_into](state), _, pragma[only_bind_into](config)) and
       PrevStage::revFlowAlias(node1, pragma[only_bind_into](state), _,
         pragma[only_bind_into](config))

From 99e70e9a50fdf85f151af20d1ef78f448029beb3 Mon Sep 17 00:00:00 2001
From: Tom Hvitved <hvitved@github.com>
Date: Wed, 2 Nov 2022 21:03:05 +0100
Subject: [PATCH 0497/1420] Data flow: Sync files

---
 .../cpp/ir/dataflow/internal/DataFlowImpl.qll | 416 ++++++++++--------
 .../ir/dataflow/internal/DataFlowImpl2.qll    | 416 ++++++++++--------
 .../ir/dataflow/internal/DataFlowImpl3.qll    | 416 ++++++++++--------
 .../ir/dataflow/internal/DataFlowImpl4.qll    | 416 ++++++++++--------
 .../dataflow/internal/DataFlowImplCommon.qll  |  49 +++
 .../cpp/dataflow/internal/DataFlowImpl.qll    | 416 ++++++++++--------
 .../cpp/dataflow/internal/DataFlowImpl2.qll   | 416 ++++++++++--------
 .../cpp/dataflow/internal/DataFlowImpl3.qll   | 416 ++++++++++--------
 .../cpp/dataflow/internal/DataFlowImpl4.qll   | 416 ++++++++++--------
 .../dataflow/internal/DataFlowImplCommon.qll  |  49 +++
 .../dataflow/internal/DataFlowImplLocal.qll   | 416 ++++++++++--------
 .../cpp/ir/dataflow/internal/DataFlowImpl.qll | 416 ++++++++++--------
 .../ir/dataflow/internal/DataFlowImpl2.qll    | 416 ++++++++++--------
 .../ir/dataflow/internal/DataFlowImpl3.qll    | 416 ++++++++++--------
 .../ir/dataflow/internal/DataFlowImpl4.qll    | 416 ++++++++++--------
 .../dataflow/internal/DataFlowImplCommon.qll  |  49 +++
 .../csharp/dataflow/internal/DataFlowImpl.qll | 416 ++++++++++--------
 .../dataflow/internal/DataFlowImpl2.qll       | 416 ++++++++++--------
 .../dataflow/internal/DataFlowImpl3.qll       | 416 ++++++++++--------
 .../dataflow/internal/DataFlowImpl4.qll       | 416 ++++++++++--------
 .../dataflow/internal/DataFlowImpl5.qll       | 416 ++++++++++--------
 .../dataflow/internal/DataFlowImplCommon.qll  |  49 +++
 .../DataFlowImplForContentDataFlow.qll        | 416 ++++++++++--------
 .../java/dataflow/internal/DataFlowImpl.qll   | 416 ++++++++++--------
 .../java/dataflow/internal/DataFlowImpl2.qll  | 416 ++++++++++--------
 .../java/dataflow/internal/DataFlowImpl3.qll  | 416 ++++++++++--------
 .../java/dataflow/internal/DataFlowImpl4.qll  | 416 ++++++++++--------
 .../java/dataflow/internal/DataFlowImpl5.qll  | 416 ++++++++++--------
 .../java/dataflow/internal/DataFlowImpl6.qll  | 416 ++++++++++--------
 .../dataflow/internal/DataFlowImplCommon.qll  |  49 +++
 .../DataFlowImplForOnActivityResult.qll       | 416 ++++++++++--------
 .../DataFlowImplForSerializability.qll        | 416 ++++++++++--------
 .../dataflow/new/internal/DataFlowImpl.qll    | 416 ++++++++++--------
 .../dataflow/new/internal/DataFlowImpl2.qll   | 416 ++++++++++--------
 .../dataflow/new/internal/DataFlowImpl3.qll   | 416 ++++++++++--------
 .../dataflow/new/internal/DataFlowImpl4.qll   | 416 ++++++++++--------
 .../new/internal/DataFlowImplCommon.qll       |  49 +++
 .../ruby/dataflow/internal/DataFlowImpl2.qll  | 416 ++++++++++--------
 .../DataFlowImplForHttpClientLibraries.qll    | 416 ++++++++++--------
 .../internal/DataFlowImplForPathname.qll      | 416 ++++++++++--------
 .../internal/DataFlowImplForRegExp.qll        | 416 ++++++++++--------
 .../swift/dataflow/internal/DataFlowImpl.qll  | 416 ++++++++++--------
 .../dataflow/internal/DataFlowImplCommon.qll  |  49 +++
 43 files changed, 8515 insertions(+), 6804 deletions(-)

diff --git a/cpp/ql/lib/experimental/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl.qll b/cpp/ql/lib/experimental/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl.qll
index 3c41b1876dc..a52ad110662 100644
--- a/cpp/ql/lib/experimental/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl.qll
+++ b/cpp/ql/lib/experimental/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl.qll
@@ -319,8 +319,6 @@ private class ParamNodeEx extends NodeEx {
   }
 
   ParameterPosition getPosition() { this.isParameterOf(_, result) }
-
-  predicate allowParameterReturnInSelf() { allowParameterReturnInSelfCached(this.asNode()) }
 }
 
 private class RetNodeEx extends NodeEx {
@@ -608,6 +606,21 @@ private predicate hasSinkCallCtx(Configuration config) {
   )
 }
 
+/**
+ * Holds if flow from `p` to a return node of kind `kind` is allowed.
+ *
+ * We don't expect a parameter to return stored in itself, unless
+ * explicitly allowed
+ */
+bindingset[p, kind]
+private predicate parameterFlowThroughAllowed(ParamNode p, ReturnKindExt kind) {
+  exists(ParameterPosition pos | p.isParameterOf(_, pos) |
+    not kind.(ParamUpdateReturnKind).getPosition() = pos
+    or
+    allowParameterReturnInSelfCached(p)
+  )
+}
+
 private module Stage1 implements StageSig {
   class Ap = Unit;
 
@@ -981,21 +994,22 @@ private module Stage1 implements StageSig {
    * candidate for the origin of a summary.
    */
   pragma[nomagic]
-  predicate parameterMayFlowThrough(ParamNodeEx p, DataFlowCallable c, Ap ap, Configuration config) {
-    exists(ReturnKindExt kind |
+  predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
+    exists(DataFlowCallable c, ReturnKindExt kind |
       throughFlowNodeCand(p, config) and
       returnFlowCallableNodeCand(c, kind, config) and
       p.getEnclosingCallable() = c and
       exists(ap) and
-      // we don't expect a parameter to return stored in itself, unless explicitly allowed
-      (
-        not kind.(ParamUpdateReturnKind).getPosition() = p.getPosition()
-        or
-        p.allowParameterReturnInSelf()
-      )
+      parameterFlowThroughAllowed(p.asNode(), kind)
     )
   }
 
+  pragma[nomagic]
+  predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config) {
+    throughFlowNodeCand(ret, config) and
+    pos = ret.getReturnPosition()
+  }
+
   pragma[nomagic]
   predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
     exists(ArgNodeEx arg, boolean toReturn |
@@ -1052,9 +1066,10 @@ private predicate viableReturnPosOutNodeCand1(
  */
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand1(
-  DataFlowCall call, RetNodeEx ret, NodeEx out, Configuration config
+  DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, Configuration config
 ) {
-  viableReturnPosOutNodeCand1(call, ret.getReturnPosition(), out, config) and
+  viableReturnPosOutNodeCand1(call, pos, out, config) and
+  pos = ret.getReturnPosition() and
   Stage1::revFlow(ret, config) and
   not outBarrier(ret, config) and
   not inBarrier(out, config)
@@ -1090,7 +1105,7 @@ private predicate flowIntoCallNodeCand1(
 private int branch(NodeEx n1, Configuration conf) {
   result =
     strictcount(NodeEx n |
-      flowOutOfCallNodeCand1(_, n1, n, conf) or flowIntoCallNodeCand1(_, n1, n, conf)
+      flowOutOfCallNodeCand1(_, n1, _, n, conf) or flowIntoCallNodeCand1(_, n1, n, conf)
     )
 }
 
@@ -1102,7 +1117,7 @@ private int branch(NodeEx n1, Configuration conf) {
 private int join(NodeEx n2, Configuration conf) {
   result =
     strictcount(NodeEx n |
-      flowOutOfCallNodeCand1(_, n, n2, conf) or flowIntoCallNodeCand1(_, n, n2, conf)
+      flowOutOfCallNodeCand1(_, n, _, n2, conf) or flowIntoCallNodeCand1(_, n, n2, conf)
     )
 }
 
@@ -1115,12 +1130,13 @@ private int join(NodeEx n2, Configuration conf) {
  */
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand1(
-  DataFlowCall call, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow, Configuration config
+  DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
+  Configuration config
 ) {
-  flowOutOfCallNodeCand1(call, ret, out, config) and
+  flowOutOfCallNodeCand1(call, ret, pos, out, pragma[only_bind_into](config)) and
   exists(int b, int j |
-    b = branch(ret, config) and
-    j = join(out, config) and
+    b = branch(ret, pragma[only_bind_into](config)) and
+    j = join(out, pragma[only_bind_into](config)) and
     if b.minimum(j) <= config.fieldFlowBranchLimit()
     then allowsFieldFlow = true
     else allowsFieldFlow = false
@@ -1156,7 +1172,9 @@ private signature module StageSig {
 
   predicate callMayFlowThroughRev(DataFlowCall call, Configuration config);
 
-  predicate parameterMayFlowThrough(ParamNodeEx p, DataFlowCallable c, Ap ap, Configuration config);
+  predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config);
+
+  predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config);
 
   predicate storeStepCand(
     NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, DataFlowType contentType,
@@ -1222,7 +1240,8 @@ private module MkStage<StageSig PrevStage> {
     );
 
     predicate flowOutOfCall(
-      DataFlowCall call, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow, Configuration config
+      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
+      Configuration config
     );
 
     predicate flowIntoCall(
@@ -1247,14 +1266,16 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate flowThroughOutOfCall(
-      DataFlowCall call, CcCall ccc, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow,
-      Configuration config
+      DataFlowCall call, CcCall ccc, RetNodeEx ret, ReturnKindExt kind, NodeEx out,
+      boolean allowsFieldFlow, Configuration config
     ) {
-      flowOutOfCall(call, ret, out, allowsFieldFlow, pragma[only_bind_into](config)) and
-      PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
-      PrevStage::parameterMayFlowThrough(_, ret.getEnclosingCallable(), _,
-        pragma[only_bind_into](config)) and
-      matchesCall(ccc, call)
+      exists(ReturnPosition pos |
+        flowOutOfCall(call, ret, pos, out, allowsFieldFlow, pragma[only_bind_into](config)) and
+        kind = pos.getKind() and
+        PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
+        PrevStage::returnMayFlowThrough(ret, pos, pragma[only_bind_into](config)) and
+        matchesCall(ccc, call)
+      )
     }
 
     /**
@@ -1262,29 +1283,32 @@ private module MkStage<StageSig PrevStage> {
      * configuration `config`.
      *
      * The call context `cc` records whether the node is reached through an
-     * argument in a call, and if so, `argAp` records the access path of that
-     * argument.
+     * argument in a call, and if so, `summaryCtx` and `argAp` record the
+     * corresponding parameter and access path of that argument, respectively.
      */
     pragma[nomagic]
     additional predicate fwdFlow(
-      NodeEx node, FlowState state, Cc cc, ApOption argAp, Ap ap, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      Configuration config
     ) {
-      fwdFlow0(node, state, cc, argAp, ap, config) and
+      fwdFlow0(node, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::revFlow(node, state, unbindApa(getApprox(ap)), config) and
       filter(node, state, ap, config)
     }
 
     pragma[nomagic]
     private predicate fwdFlow0(
-      NodeEx node, FlowState state, Cc cc, ApOption argAp, Ap ap, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      Configuration config
     ) {
       sourceNode(node, state, config) and
       (if hasSourceCallCtx(config) then cc = ccSomeCall() else cc = ccNone()) and
       argAp = apNone() and
+      summaryCtx = TParamNodeNone() and
       ap = getApNil(node)
       or
       exists(NodeEx mid, FlowState state0, Ap ap0, LocalCc localCc |
-        fwdFlow(mid, state0, cc, argAp, ap0, config) and
+        fwdFlow(mid, state0, cc, summaryCtx, argAp, ap0, config) and
         localCc = getLocalCc(mid, cc)
       |
         localStep(mid, state0, node, state, true, _, config, localCc) and
@@ -1295,65 +1319,72 @@ private module MkStage<StageSig PrevStage> {
       )
       or
       exists(NodeEx mid |
-        fwdFlow(mid, pragma[only_bind_into](state), _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, pragma[only_bind_into](config)) and
         jumpStep(mid, node, config) and
         cc = ccNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone()
       )
       or
       exists(NodeEx mid, ApNil nil |
-        fwdFlow(mid, state, _, _, nil, pragma[only_bind_into](config)) and
+        fwdFlow(mid, state, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStep(mid, node, config) and
         cc = ccNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone() and
         ap = getApNil(node)
       )
       or
       exists(NodeEx mid, FlowState state0, ApNil nil |
-        fwdFlow(mid, state0, _, _, nil, pragma[only_bind_into](config)) and
+        fwdFlow(mid, state0, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStateStep(mid, state0, node, state, config) and
         cc = ccNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone() and
         ap = getApNil(node)
       )
       or
       // store
       exists(TypedContent tc, Ap ap0 |
-        fwdFlowStore(_, ap0, tc, node, state, cc, argAp, config) and
+        fwdFlowStore(_, ap0, tc, node, state, cc, summaryCtx, argAp, config) and
         ap = apCons(tc, ap0)
       )
       or
       // read
       exists(Ap ap0, Content c |
-        fwdFlowRead(ap0, c, _, node, state, cc, argAp, config) and
+        fwdFlowRead(ap0, c, _, node, state, cc, summaryCtx, argAp, config) and
         fwdFlowConsCand(ap0, c, ap, config)
       )
       or
       // flow into a callable
       exists(ApApprox apa |
-        fwdFlowIn(_, node, state, _, cc, _, ap, config) and
+        fwdFlowIn(_, node, state, _, cc, _, _, ap, config) and
         apa = getApprox(ap) and
-        if PrevStage::parameterMayFlowThrough(node, _, apa, config)
-        then argAp = apSome(ap)
-        else argAp = apNone()
+        if PrevStage::parameterMayFlowThrough(node, apa, config)
+        then (
+          summaryCtx = TParamNodeSome(node.asNode()) and argAp = apSome(ap)
+        ) else (
+          summaryCtx = TParamNodeNone() and argAp = apNone()
+        )
       )
       or
       // flow out of a callable
-      fwdFlowOutNotFromArg(node, state, cc, argAp, ap, config)
+      fwdFlowOutNotFromArg(node, state, cc, summaryCtx, argAp, ap, config)
       or
-      exists(DataFlowCall call, Ap argAp0 |
-        fwdFlowOutFromArg(call, node, state, argAp0, ap, config) and
-        fwdFlowIsEntered(call, cc, argAp, argAp0, config)
+      // flow through a callable
+      exists(DataFlowCall call, ParamNode summaryCtx0, Ap argAp0 |
+        fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, config) and
+        fwdFlowIsEntered(call, cc, summaryCtx, argAp, summaryCtx0, argAp0, config)
       )
     }
 
     pragma[nomagic]
     private predicate fwdFlowStore(
-      NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc, ApOption argAp,
-      Configuration config
+      NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc,
+      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
     ) {
       exists(DataFlowType contentType |
-        fwdFlow(node1, state, cc, argAp, ap1, config) and
+        fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, config) and
         PrevStage::storeStepCand(node1, unbindApa(getApprox(ap1)), tc, node2, contentType, config) and
         typecheckStore(ap1, contentType)
       )
@@ -1366,7 +1397,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowConsCand(Ap cons, Content c, Ap tail, Configuration config) {
       exists(TypedContent tc |
-        fwdFlowStore(_, tail, tc, _, _, _, _, config) and
+        fwdFlowStore(_, tail, tc, _, _, _, _, _, config) and
         tc.getContent() = c and
         cons = apCons(tc, tail)
       )
@@ -1374,21 +1405,21 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowRead(
-      Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc, ApOption argAp,
-      Configuration config
+      Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc,
+      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
     ) {
-      fwdFlow(node1, state, cc, argAp, ap, config) and
+      fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, c, node2, config) and
       getHeadContent(ap) = c
     }
 
     pragma[nomagic]
     private predicate fwdFlowIn(
-      DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, Cc innercc, ApOption argAp,
-      Ap ap, Configuration config
+      DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, Cc innercc,
+      ParamNodeOption summaryCtx, ApOption argAp, Ap ap, Configuration config
     ) {
       exists(ArgNodeEx arg, boolean allowsFieldFlow |
-        fwdFlow(arg, state, outercc, argAp, ap, config) and
+        fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, config) and
         flowIntoCall(call, arg, p, allowsFieldFlow, config) and
         innercc = getCallContextCall(call, p.getEnclosingCallable(), outercc) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
@@ -1397,14 +1428,15 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowOutNotFromArg(
-      NodeEx out, FlowState state, Cc ccOut, ApOption argAp, Ap ap, Configuration config
+      NodeEx out, FlowState state, Cc ccOut, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      Configuration config
     ) {
       exists(
         DataFlowCall call, RetNodeEx ret, boolean allowsFieldFlow, CcNoCall innercc,
         DataFlowCallable inner
       |
-        fwdFlow(ret, state, innercc, argAp, ap, config) and
-        flowOutOfCall(call, ret, out, allowsFieldFlow, config) and
+        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, config) and
+        flowOutOfCall(call, ret, _, out, allowsFieldFlow, config) and
         inner = ret.getEnclosingCallable() and
         ccOut = getCallContextReturn(inner, call, innercc) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
@@ -1413,12 +1445,14 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowOutFromArg(
-      DataFlowCall call, NodeEx out, FlowState state, Ap argAp, Ap ap, Configuration config
+      DataFlowCall call, NodeEx out, FlowState state, ParamNode summaryCtx, Ap argAp, Ap ap,
+      Configuration config
     ) {
-      exists(RetNodeEx ret, boolean allowsFieldFlow, CcCall ccc |
-        fwdFlow(ret, state, ccc, apSome(argAp), ap, config) and
-        flowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, config) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
+      exists(RetNodeEx ret, ReturnKindExt kind, boolean allowsFieldFlow, CcCall ccc |
+        fwdFlow(ret, state, ccc, TParamNodeSome(summaryCtx), apSome(argAp), ap, config) and
+        flowThroughOutOfCall(call, ccc, ret, kind, out, allowsFieldFlow, config) and
+        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
+        parameterFlowThroughAllowed(summaryCtx, kind)
       )
     }
 
@@ -1428,11 +1462,13 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate fwdFlowIsEntered(
-      DataFlowCall call, Cc cc, ApOption argAp, Ap ap, Configuration config
+      DataFlowCall call, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, ParamNode p, Ap ap,
+      Configuration config
     ) {
-      exists(ParamNodeEx p |
-        fwdFlowIn(call, p, _, cc, _, argAp, ap, config) and
-        PrevStage::parameterMayFlowThrough(p, _, unbindApa(getApprox(ap)), config)
+      exists(ParamNodeEx param |
+        fwdFlowIn(call, param, _, cc, _, summaryCtx, argAp, ap, config) and
+        PrevStage::parameterMayFlowThrough(param, unbindApa(getApprox(ap)), config) and
+        p = param.asNode()
       )
     }
 
@@ -1440,146 +1476,149 @@ private module MkStage<StageSig PrevStage> {
     private predicate storeStepFwd(
       NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, Ap ap2, Configuration config
     ) {
-      fwdFlowStore(node1, ap1, tc, node2, _, _, _, config) and
+      fwdFlowStore(node1, ap1, tc, node2, _, _, _, _, config) and
       ap2 = apCons(tc, ap1) and
-      fwdFlowRead(ap2, tc.getContent(), _, _, _, _, _, config)
+      fwdFlowRead(ap2, tc.getContent(), _, _, _, _, _, _, config)
     }
 
     private predicate readStepFwd(
       NodeEx n1, Ap ap1, Content c, NodeEx n2, Ap ap2, Configuration config
     ) {
-      fwdFlowRead(ap1, c, n1, n2, _, _, _, config) and
+      fwdFlowRead(ap1, c, n1, n2, _, _, _, _, config) and
       fwdFlowConsCand(ap1, c, ap2, config)
     }
 
     pragma[nomagic]
-    private predicate callMayFlowThroughFwd(DataFlowCall call, Configuration config) {
-      exists(Ap argAp0, NodeEx out, FlowState state, Cc cc, ApOption argAp, Ap ap |
-        fwdFlow(out, state, pragma[only_bind_into](cc), pragma[only_bind_into](argAp), ap,
-          pragma[only_bind_into](config)) and
-        fwdFlowOutFromArg(call, out, state, argAp0, ap, config) and
-        fwdFlowIsEntered(pragma[only_bind_into](call), pragma[only_bind_into](cc),
-          pragma[only_bind_into](argAp), pragma[only_bind_into](argAp0),
-          pragma[only_bind_into](config))
-      )
+    private predicate returnFlowsThrough(
+      RetNodeEx ret, ReturnPosition pos, FlowState state, CcCall ccc, ParamNode p, Ap argAp, Ap ap,
+      Configuration config
+    ) {
+      fwdFlow(ret, state, ccc, TParamNodeSome(p), apSome(argAp), ap, config) and
+      pos = ret.getReturnPosition() and
+      parameterFlowThroughAllowed(p, pos.getKind())
     }
 
     pragma[nomagic]
     private predicate flowThroughIntoCall(
       DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
     ) {
-      flowIntoCall(call, arg, p, allowsFieldFlow, config) and
-      fwdFlow(arg, _, _, _, _, pragma[only_bind_into](config)) and
-      PrevStage::parameterMayFlowThrough(p, _, _, pragma[only_bind_into](config)) and
-      callMayFlowThroughFwd(call, pragma[only_bind_into](config))
-    }
-
-    pragma[nomagic]
-    private predicate returnNodeMayFlowThrough(
-      RetNodeEx ret, FlowState state, Ap ap, Configuration config
-    ) {
-      fwdFlow(ret, state, any(CcCall ccc), apSome(_), ap, config)
+      flowIntoCall(call, pragma[only_bind_into](arg), pragma[only_bind_into](p), allowsFieldFlow,
+        pragma[only_bind_into](config)) and
+      fwdFlow(arg, _, _, _, _, _, pragma[only_bind_into](config)) and
+      returnFlowsThrough(_, _, _, _, p.asNode(), _, _, pragma[only_bind_into](config))
     }
 
     /**
      * Holds if `node` with access path `ap` is part of a path from a source to a
      * sink in the configuration `config`.
      *
-     * The Boolean `toReturn` records whether the node must be returned from the
-     * enclosing callable in order to reach a sink, and if so, `returnAp` records
-     * the access path of the returned value.
+     * The parameter `returnCtx` records whether (and how) the node must be returned
+     * from the enclosing callable in order to reach a sink, and if so, `returnAp`
+     * records the access path of the returned value.
      */
     pragma[nomagic]
     additional predicate revFlow(
-      NodeEx node, FlowState state, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
+      NodeEx node, FlowState state, ReturnCtx returnCtx, ApOption returnAp, Ap ap,
+      Configuration config
     ) {
-      revFlow0(node, state, toReturn, returnAp, ap, config) and
-      fwdFlow(node, state, _, _, ap, config)
+      revFlow0(node, state, returnCtx, returnAp, ap, config) and
+      fwdFlow(node, state, _, _, _, ap, config)
     }
 
     pragma[nomagic]
     private predicate revFlow0(
-      NodeEx node, FlowState state, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
+      NodeEx node, FlowState state, ReturnCtx returnCtx, ApOption returnAp, Ap ap,
+      Configuration config
     ) {
-      fwdFlow(node, state, _, _, ap, config) and
+      fwdFlow(node, state, _, _, _, ap, config) and
       sinkNode(node, state, config) and
-      (if hasSinkCallCtx(config) then toReturn = true else toReturn = false) and
+      (
+        if hasSinkCallCtx(config)
+        then returnCtx = TReturnCtxNoFlowThrough()
+        else returnCtx = TReturnCtxNone()
+      ) and
       returnAp = apNone() and
       ap instanceof ApNil
       or
       exists(NodeEx mid, FlowState state0 |
         localStep(node, state, mid, state0, true, _, config, _) and
-        revFlow(mid, state0, toReturn, returnAp, ap, config)
+        revFlow(mid, state0, returnCtx, returnAp, ap, config)
       )
       or
       exists(NodeEx mid, FlowState state0, ApNil nil |
-        fwdFlow(node, pragma[only_bind_into](state), _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(node, pragma[only_bind_into](state), _, _, _, ap, pragma[only_bind_into](config)) and
         localStep(node, pragma[only_bind_into](state), mid, state0, false, _, config, _) and
-        revFlow(mid, state0, toReturn, returnAp, nil, pragma[only_bind_into](config)) and
+        revFlow(mid, state0, returnCtx, returnAp, nil, pragma[only_bind_into](config)) and
         ap instanceof ApNil
       )
       or
       exists(NodeEx mid |
         jumpStep(node, mid, config) and
         revFlow(mid, state, _, _, ap, config) and
-        toReturn = false and
+        returnCtx = TReturnCtxNone() and
         returnAp = apNone()
       )
       or
       exists(NodeEx mid, ApNil nil |
-        fwdFlow(node, _, _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(node, _, _, _, _, ap, pragma[only_bind_into](config)) and
         additionalJumpStep(node, mid, config) and
         revFlow(pragma[only_bind_into](mid), state, _, _, nil, pragma[only_bind_into](config)) and
-        toReturn = false and
+        returnCtx = TReturnCtxNone() and
         returnAp = apNone() and
         ap instanceof ApNil
       )
       or
       exists(NodeEx mid, FlowState state0, ApNil nil |
-        fwdFlow(node, _, _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(node, _, _, _, _, ap, pragma[only_bind_into](config)) and
         additionalJumpStateStep(node, state, mid, state0, config) and
         revFlow(pragma[only_bind_into](mid), pragma[only_bind_into](state0), _, _, nil,
           pragma[only_bind_into](config)) and
-        toReturn = false and
+        returnCtx = TReturnCtxNone() and
         returnAp = apNone() and
         ap instanceof ApNil
       )
       or
       // store
       exists(Ap ap0, Content c |
-        revFlowStore(ap0, c, ap, node, state, _, _, toReturn, returnAp, config) and
+        revFlowStore(ap0, c, ap, node, state, _, _, returnCtx, returnAp, config) and
         revFlowConsCand(ap0, c, ap, config)
       )
       or
       // read
       exists(NodeEx mid, Ap ap0 |
-        revFlow(mid, state, toReturn, returnAp, ap0, config) and
+        revFlow(mid, state, returnCtx, returnAp, ap0, config) and
         readStepFwd(node, ap, _, mid, ap0, config)
       )
       or
       // flow into a callable
       revFlowInNotToReturn(node, state, returnAp, ap, config) and
-      toReturn = false
+      returnCtx = TReturnCtxNone()
       or
-      exists(DataFlowCall call, Ap returnAp0 |
-        revFlowInToReturn(call, node, state, returnAp0, ap, config) and
-        revFlowIsReturned(call, toReturn, returnAp, returnAp0, config)
+      // flow through a callable
+      exists(DataFlowCall call, ReturnPosition returnPos0, Ap returnAp0 |
+        revFlowInToReturn(call, node, state, returnPos0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnPos0, returnAp0, config)
       )
       or
       // flow out of a callable
-      revFlowOut(_, node, state, _, _, ap, config) and
-      toReturn = true and
-      if returnNodeMayFlowThrough(node, state, ap, config)
-      then returnAp = apSome(ap)
-      else returnAp = apNone()
+      exists(ReturnPosition pos |
+        revFlowOut(_, node, pos, state, _, _, ap, config) and
+        if returnFlowsThrough(node, pos, state, _, _, _, ap, config)
+        then (
+          returnCtx = TReturnCtxMaybeFlowThrough(pos) and
+          returnAp = apSome(ap)
+        ) else (
+          returnCtx = TReturnCtxNoFlowThrough() and returnAp = apNone()
+        )
+      )
     }
 
     pragma[nomagic]
     private predicate revFlowStore(
       Ap ap0, Content c, Ap ap, NodeEx node, FlowState state, TypedContent tc, NodeEx mid,
-      boolean toReturn, ApOption returnAp, Configuration config
+      ReturnCtx returnCtx, ApOption returnAp, Configuration config
     ) {
-      revFlow(mid, state, toReturn, returnAp, ap0, config) and
+      revFlow(mid, state, returnCtx, returnAp, ap0, config) and
       storeStepFwd(node, ap, tc, mid, ap0, config) and
       tc.getContent() = c
     }
@@ -1599,12 +1638,12 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate revFlowOut(
-      DataFlowCall call, RetNodeEx ret, FlowState state, boolean toReturn, ApOption returnAp, Ap ap,
-      Configuration config
+      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, FlowState state, ReturnCtx returnCtx,
+      ApOption returnAp, Ap ap, Configuration config
     ) {
       exists(NodeEx out, boolean allowsFieldFlow |
-        revFlow(out, state, toReturn, returnAp, ap, config) and
-        flowOutOfCall(call, ret, out, allowsFieldFlow, config) and
+        revFlow(out, state, returnCtx, returnAp, ap, config) and
+        flowOutOfCall(call, ret, pos, out, allowsFieldFlow, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
@@ -1614,7 +1653,7 @@ private module MkStage<StageSig PrevStage> {
       ArgNodeEx arg, FlowState state, ApOption returnAp, Ap ap, Configuration config
     ) {
       exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(p, state, false, returnAp, ap, config) and
+        revFlow(p, state, TReturnCtxNone(), returnAp, ap, config) and
         flowIntoCall(_, arg, p, allowsFieldFlow, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
@@ -1622,12 +1661,14 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate revFlowInToReturn(
-      DataFlowCall call, ArgNodeEx arg, FlowState state, Ap returnAp, Ap ap, Configuration config
+      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnPosition returnPos, Ap returnAp,
+      Ap ap, Configuration config
     ) {
       exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(p, state, true, apSome(returnAp), ap, config) and
+        revFlow(p, state, TReturnCtxMaybeFlowThrough(returnPos), apSome(returnAp), ap, config) and
         flowThroughIntoCall(call, arg, p, allowsFieldFlow, config) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
+        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
+        parameterFlowThroughAllowed(p.asNode(), returnPos.getKind())
       )
     }
 
@@ -1638,11 +1679,12 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate revFlowIsReturned(
-      DataFlowCall call, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
+      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnPosition pos, Ap ap,
+      Configuration config
     ) {
       exists(RetNodeEx ret, FlowState state, CcCall ccc |
-        revFlowOut(call, ret, state, toReturn, returnAp, ap, config) and
-        fwdFlow(ret, state, ccc, apSome(_), ap, config) and
+        revFlowOut(call, ret, pos, state, returnCtx, returnAp, ap, config) and
+        returnFlowsThrough(ret, pos, state, ccc, _, _, ap, config) and
         matchesCall(ccc, call)
       )
     }
@@ -1713,40 +1755,39 @@ private module MkStage<StageSig PrevStage> {
       validAp(ap, config)
     }
 
-    pragma[noinline]
-    private predicate parameterFlow(
-      ParamNodeEx p, Ap ap, Ap ap0, DataFlowCallable c, Configuration config
+    pragma[nomagic]
+    private predicate parameterFlowsThroughRev(
+      ParamNodeEx p, Ap ap, ReturnPosition returnPos, Configuration config
     ) {
-      revFlow(p, _, true, apSome(ap0), ap, config) and
-      c = p.getEnclosingCallable()
+      revFlow(p, _, TReturnCtxMaybeFlowThrough(returnPos), apSome(_), ap, config) and
+      parameterFlowThroughAllowed(p.asNode(), returnPos.getKind())
     }
 
-    predicate parameterMayFlowThrough(ParamNodeEx p, DataFlowCallable c, Ap ap, Configuration config) {
-      exists(RetNodeEx ret, FlowState state, Ap ap0, ReturnKindExt kind, ParameterPosition pos |
-        parameterFlow(p, ap, ap0, c, config) and
-        c = ret.getEnclosingCallable() and
-        revFlow(pragma[only_bind_into](ret), pragma[only_bind_into](state), true, apSome(_),
-          pragma[only_bind_into](ap0), pragma[only_bind_into](config)) and
-        fwdFlow(ret, state, any(CcCall ccc), apSome(ap), ap0, config) and
-        kind = ret.getKind() and
-        p.getPosition() = pos and
-        // we don't expect a parameter to return stored in itself, unless explicitly allowed
-        (
-          not kind.(ParamUpdateReturnKind).getPosition() = pos
-          or
-          p.allowParameterReturnInSelf()
-        )
+    pragma[nomagic]
+    predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
+      exists(RetNodeEx ret, ReturnPosition pos |
+        returnFlowsThrough(ret, pos, _, _, p.asNode(), ap, _, config) and
+        parameterFlowsThroughRev(p, ap, pos, config)
+      )
+    }
+
+    pragma[nomagic]
+    predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config) {
+      exists(ParamNodeEx p, Ap ap |
+        returnFlowsThrough(ret, pos, _, _, p.asNode(), ap, _, config) and
+        parameterFlowsThroughRev(p, ap, pos, config)
       )
     }
 
     pragma[nomagic]
     predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
       exists(
-        Ap returnAp0, ArgNodeEx arg, FlowState state, boolean toReturn, ApOption returnAp, Ap ap
+        ReturnPosition returnPos0, Ap returnAp0, ArgNodeEx arg, FlowState state,
+        ReturnCtx returnCtx, ApOption returnAp, Ap ap
       |
-        revFlow(arg, state, toReturn, returnAp, ap, config) and
-        revFlowInToReturn(call, arg, state, returnAp0, ap, config) and
-        revFlowIsReturned(call, toReturn, returnAp, returnAp0, config)
+        revFlow(arg, state, returnCtx, returnAp, ap, config) and
+        revFlowInToReturn(call, arg, state, returnPos0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnPos0, returnAp0, config)
       )
     }
 
@@ -1754,13 +1795,13 @@ private module MkStage<StageSig PrevStage> {
       boolean fwd, int nodes, int fields, int conscand, int states, int tuples, Configuration config
     ) {
       fwd = true and
-      nodes = count(NodeEx node | fwdFlow(node, _, _, _, _, config)) and
+      nodes = count(NodeEx node | fwdFlow(node, _, _, _, _, _, config)) and
       fields = count(TypedContent f0 | fwdConsCand(f0, _, config)) and
       conscand = count(TypedContent f0, Ap ap | fwdConsCand(f0, ap, config)) and
-      states = count(FlowState state | fwdFlow(_, state, _, _, _, config)) and
+      states = count(FlowState state | fwdFlow(_, state, _, _, _, _, config)) and
       tuples =
-        count(NodeEx n, FlowState state, Cc cc, ApOption argAp, Ap ap |
-          fwdFlow(n, state, cc, argAp, ap, config)
+        count(NodeEx n, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap |
+          fwdFlow(n, state, cc, summaryCtx, argAp, ap, config)
         )
       or
       fwd = false and
@@ -1769,8 +1810,8 @@ private module MkStage<StageSig PrevStage> {
       conscand = count(TypedContent f0, Ap ap | consCand(f0, ap, config)) and
       states = count(FlowState state | revFlow(_, state, _, _, _, config)) and
       tuples =
-        count(NodeEx n, FlowState state, boolean b, ApOption retAp, Ap ap |
-          revFlow(n, state, b, retAp, ap, config)
+        count(NodeEx n, FlowState state, ReturnCtx returnCtx, ApOption retAp, Ap ap |
+          revFlow(n, state, returnCtx, retAp, ap, config)
         )
     }
     /* End: Stage logic. */
@@ -1915,7 +1956,7 @@ private module Stage2Param implements MkStage<Stage1>::StageParam {
     exists(lcc)
   }
 
-  predicate flowOutOfCall = flowOutOfCallNodeCand1/5;
+  predicate flowOutOfCall = flowOutOfCallNodeCand1/6;
 
   predicate flowIntoCall = flowIntoCallNodeCand1/5;
 
@@ -1951,9 +1992,10 @@ private module Stage2 implements StageSig {
 
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand2(
-  DataFlowCall call, RetNodeEx node1, NodeEx node2, boolean allowsFieldFlow, Configuration config
+  DataFlowCall call, RetNodeEx node1, ReturnPosition pos, NodeEx node2, boolean allowsFieldFlow,
+  Configuration config
 ) {
-  flowOutOfCallNodeCand1(call, node1, node2, allowsFieldFlow, config) and
+  flowOutOfCallNodeCand1(call, node1, pos, node2, allowsFieldFlow, config) and
   Stage2::revFlow(node2, pragma[only_bind_into](config)) and
   Stage2::revFlowAlias(node1, pragma[only_bind_into](config))
 }
@@ -2021,8 +2063,8 @@ private module LocalFlowBigStep {
     exists(NodeEx next | Stage2::revFlow(next, state, config) |
       jumpStep(node, next, config) or
       additionalJumpStep(node, next, config) or
-      flowIntoCallNodeCand1(_, node, next, config) or
-      flowOutOfCallNodeCand1(_, node, next, config) or
+      flowIntoCallNodeCand2(_, node, next, _, config) or
+      flowOutOfCallNodeCand2(_, node, _, next, _, config) or
       Stage2::storeStepCand(node, _, _, next, _, config) or
       Stage2::readStepCand(node, _, next, config)
     )
@@ -2163,7 +2205,7 @@ private module Stage3Param implements MkStage<Stage2>::StageParam {
     localFlowBigStep(node1, state1, node2, state2, preservesValue, ap, config, _) and exists(lcc)
   }
 
-  predicate flowOutOfCall = flowOutOfCallNodeCand2/5;
+  predicate flowOutOfCall = flowOutOfCallNodeCand2/6;
 
   predicate flowIntoCall = flowIntoCallNodeCand2/5;
 
@@ -2233,8 +2275,9 @@ private predicate flowCandSummaryCtx(
   NodeEx node, FlowState state, AccessPathFront argApf, Configuration config
 ) {
   exists(AccessPathFront apf |
-    Stage3::revFlow(node, state, true, _, apf, config) and
-    Stage3::fwdFlow(node, state, any(Stage3::CcCall ccc), TAccessPathFrontSome(argApf), apf, config)
+    Stage3::revFlow(node, state, TReturnCtxMaybeFlowThrough(_), _, apf, config) and
+    Stage3::fwdFlow(node, state, any(Stage3::CcCall ccc), _, TAccessPathFrontSome(argApf), apf,
+      config)
   )
 }
 
@@ -2468,10 +2511,11 @@ private module Stage4Param implements MkStage<Stage3>::StageParam {
 
   pragma[nomagic]
   predicate flowOutOfCall(
-    DataFlowCall call, RetNodeEx node1, NodeEx node2, boolean allowsFieldFlow, Configuration config
+    DataFlowCall call, RetNodeEx node1, ReturnPosition pos, NodeEx node2, boolean allowsFieldFlow,
+    Configuration config
   ) {
     exists(FlowState state |
-      flowOutOfCallNodeCand2(call, node1, node2, allowsFieldFlow, config) and
+      flowOutOfCallNodeCand2(call, node1, pos, node2, allowsFieldFlow, config) and
       PrevStage::revFlow(node2, pragma[only_bind_into](state), _, pragma[only_bind_into](config)) and
       PrevStage::revFlowAlias(node1, pragma[only_bind_into](state), _,
         pragma[only_bind_into](config))
@@ -2508,13 +2552,13 @@ private Configuration unbindConf(Configuration conf) {
 
 pragma[nomagic]
 private predicate nodeMayUseSummary0(
-  NodeEx n, DataFlowCallable c, FlowState state, AccessPathApprox apa, Configuration config
+  NodeEx n, ParamNodeEx p, FlowState state, AccessPathApprox apa, Configuration config
 ) {
   exists(AccessPathApprox apa0 |
-    Stage4::parameterMayFlowThrough(_, c, _, _) and
-    Stage4::revFlow(n, state, true, _, apa0, config) and
-    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TAccessPathApproxSome(apa), apa0, config) and
-    n.getEnclosingCallable() = c
+    Stage4::parameterMayFlowThrough(p, _, _) and
+    Stage4::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
+    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TParamNodeSome(p.asNode()),
+      TAccessPathApproxSome(apa), apa0, config)
   )
 }
 
@@ -2522,9 +2566,9 @@ pragma[nomagic]
 private predicate nodeMayUseSummary(
   NodeEx n, FlowState state, AccessPathApprox apa, Configuration config
 ) {
-  exists(DataFlowCallable c |
-    Stage4::parameterMayFlowThrough(_, c, apa, config) and
-    nodeMayUseSummary0(n, c, state, apa, config)
+  exists(ParamNodeEx p |
+    Stage4::parameterMayFlowThrough(p, apa, config) and
+    nodeMayUseSummary0(n, p, state, apa, config)
   )
 }
 
@@ -2532,7 +2576,7 @@ private newtype TSummaryCtx =
   TSummaryCtxNone() or
   TSummaryCtxSome(ParamNodeEx p, FlowState state, AccessPath ap) {
     exists(Configuration config |
-      Stage4::parameterMayFlowThrough(p, _, ap.getApprox(), config) and
+      Stage4::parameterMayFlowThrough(p, ap.getApprox(), config) and
       Stage4::revFlow(p, state, _, config)
     )
   }
@@ -3453,17 +3497,11 @@ private predicate paramFlowsThrough(
   ReturnKindExt kind, FlowState state, CallContextCall cc, SummaryCtxSome sc, AccessPath ap,
   AccessPathApprox apa, Configuration config
 ) {
-  exists(PathNodeMid mid, RetNodeEx ret, ParameterPosition pos |
+  exists(PathNodeMid mid, RetNodeEx ret |
     pathNode(mid, ret, state, cc, sc, ap, config, _) and
     kind = ret.getKind() and
     apa = ap.getApprox() and
-    pos = sc.getParameterPos() and
-    // we don't expect a parameter to return stored in itself, unless explicitly allowed
-    (
-      not kind.(ParamUpdateReturnKind).getPosition() = pos
-      or
-      sc.getParamNode().allowParameterReturnInSelf()
-    )
+    parameterFlowThroughAllowed(sc.getParamNode().asNode(), kind)
   )
 }
 
diff --git a/cpp/ql/lib/experimental/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl2.qll b/cpp/ql/lib/experimental/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl2.qll
index 3c41b1876dc..a52ad110662 100644
--- a/cpp/ql/lib/experimental/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl2.qll
+++ b/cpp/ql/lib/experimental/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl2.qll
@@ -319,8 +319,6 @@ private class ParamNodeEx extends NodeEx {
   }
 
   ParameterPosition getPosition() { this.isParameterOf(_, result) }
-
-  predicate allowParameterReturnInSelf() { allowParameterReturnInSelfCached(this.asNode()) }
 }
 
 private class RetNodeEx extends NodeEx {
@@ -608,6 +606,21 @@ private predicate hasSinkCallCtx(Configuration config) {
   )
 }
 
+/**
+ * Holds if flow from `p` to a return node of kind `kind` is allowed.
+ *
+ * We don't expect a parameter to return stored in itself, unless
+ * explicitly allowed
+ */
+bindingset[p, kind]
+private predicate parameterFlowThroughAllowed(ParamNode p, ReturnKindExt kind) {
+  exists(ParameterPosition pos | p.isParameterOf(_, pos) |
+    not kind.(ParamUpdateReturnKind).getPosition() = pos
+    or
+    allowParameterReturnInSelfCached(p)
+  )
+}
+
 private module Stage1 implements StageSig {
   class Ap = Unit;
 
@@ -981,21 +994,22 @@ private module Stage1 implements StageSig {
    * candidate for the origin of a summary.
    */
   pragma[nomagic]
-  predicate parameterMayFlowThrough(ParamNodeEx p, DataFlowCallable c, Ap ap, Configuration config) {
-    exists(ReturnKindExt kind |
+  predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
+    exists(DataFlowCallable c, ReturnKindExt kind |
       throughFlowNodeCand(p, config) and
       returnFlowCallableNodeCand(c, kind, config) and
       p.getEnclosingCallable() = c and
       exists(ap) and
-      // we don't expect a parameter to return stored in itself, unless explicitly allowed
-      (
-        not kind.(ParamUpdateReturnKind).getPosition() = p.getPosition()
-        or
-        p.allowParameterReturnInSelf()
-      )
+      parameterFlowThroughAllowed(p.asNode(), kind)
     )
   }
 
+  pragma[nomagic]
+  predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config) {
+    throughFlowNodeCand(ret, config) and
+    pos = ret.getReturnPosition()
+  }
+
   pragma[nomagic]
   predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
     exists(ArgNodeEx arg, boolean toReturn |
@@ -1052,9 +1066,10 @@ private predicate viableReturnPosOutNodeCand1(
  */
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand1(
-  DataFlowCall call, RetNodeEx ret, NodeEx out, Configuration config
+  DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, Configuration config
 ) {
-  viableReturnPosOutNodeCand1(call, ret.getReturnPosition(), out, config) and
+  viableReturnPosOutNodeCand1(call, pos, out, config) and
+  pos = ret.getReturnPosition() and
   Stage1::revFlow(ret, config) and
   not outBarrier(ret, config) and
   not inBarrier(out, config)
@@ -1090,7 +1105,7 @@ private predicate flowIntoCallNodeCand1(
 private int branch(NodeEx n1, Configuration conf) {
   result =
     strictcount(NodeEx n |
-      flowOutOfCallNodeCand1(_, n1, n, conf) or flowIntoCallNodeCand1(_, n1, n, conf)
+      flowOutOfCallNodeCand1(_, n1, _, n, conf) or flowIntoCallNodeCand1(_, n1, n, conf)
     )
 }
 
@@ -1102,7 +1117,7 @@ private int branch(NodeEx n1, Configuration conf) {
 private int join(NodeEx n2, Configuration conf) {
   result =
     strictcount(NodeEx n |
-      flowOutOfCallNodeCand1(_, n, n2, conf) or flowIntoCallNodeCand1(_, n, n2, conf)
+      flowOutOfCallNodeCand1(_, n, _, n2, conf) or flowIntoCallNodeCand1(_, n, n2, conf)
     )
 }
 
@@ -1115,12 +1130,13 @@ private int join(NodeEx n2, Configuration conf) {
  */
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand1(
-  DataFlowCall call, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow, Configuration config
+  DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
+  Configuration config
 ) {
-  flowOutOfCallNodeCand1(call, ret, out, config) and
+  flowOutOfCallNodeCand1(call, ret, pos, out, pragma[only_bind_into](config)) and
   exists(int b, int j |
-    b = branch(ret, config) and
-    j = join(out, config) and
+    b = branch(ret, pragma[only_bind_into](config)) and
+    j = join(out, pragma[only_bind_into](config)) and
     if b.minimum(j) <= config.fieldFlowBranchLimit()
     then allowsFieldFlow = true
     else allowsFieldFlow = false
@@ -1156,7 +1172,9 @@ private signature module StageSig {
 
   predicate callMayFlowThroughRev(DataFlowCall call, Configuration config);
 
-  predicate parameterMayFlowThrough(ParamNodeEx p, DataFlowCallable c, Ap ap, Configuration config);
+  predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config);
+
+  predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config);
 
   predicate storeStepCand(
     NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, DataFlowType contentType,
@@ -1222,7 +1240,8 @@ private module MkStage<StageSig PrevStage> {
     );
 
     predicate flowOutOfCall(
-      DataFlowCall call, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow, Configuration config
+      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
+      Configuration config
     );
 
     predicate flowIntoCall(
@@ -1247,14 +1266,16 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate flowThroughOutOfCall(
-      DataFlowCall call, CcCall ccc, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow,
-      Configuration config
+      DataFlowCall call, CcCall ccc, RetNodeEx ret, ReturnKindExt kind, NodeEx out,
+      boolean allowsFieldFlow, Configuration config
     ) {
-      flowOutOfCall(call, ret, out, allowsFieldFlow, pragma[only_bind_into](config)) and
-      PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
-      PrevStage::parameterMayFlowThrough(_, ret.getEnclosingCallable(), _,
-        pragma[only_bind_into](config)) and
-      matchesCall(ccc, call)
+      exists(ReturnPosition pos |
+        flowOutOfCall(call, ret, pos, out, allowsFieldFlow, pragma[only_bind_into](config)) and
+        kind = pos.getKind() and
+        PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
+        PrevStage::returnMayFlowThrough(ret, pos, pragma[only_bind_into](config)) and
+        matchesCall(ccc, call)
+      )
     }
 
     /**
@@ -1262,29 +1283,32 @@ private module MkStage<StageSig PrevStage> {
      * configuration `config`.
      *
      * The call context `cc` records whether the node is reached through an
-     * argument in a call, and if so, `argAp` records the access path of that
-     * argument.
+     * argument in a call, and if so, `summaryCtx` and `argAp` record the
+     * corresponding parameter and access path of that argument, respectively.
      */
     pragma[nomagic]
     additional predicate fwdFlow(
-      NodeEx node, FlowState state, Cc cc, ApOption argAp, Ap ap, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      Configuration config
     ) {
-      fwdFlow0(node, state, cc, argAp, ap, config) and
+      fwdFlow0(node, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::revFlow(node, state, unbindApa(getApprox(ap)), config) and
       filter(node, state, ap, config)
     }
 
     pragma[nomagic]
     private predicate fwdFlow0(
-      NodeEx node, FlowState state, Cc cc, ApOption argAp, Ap ap, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      Configuration config
     ) {
       sourceNode(node, state, config) and
       (if hasSourceCallCtx(config) then cc = ccSomeCall() else cc = ccNone()) and
       argAp = apNone() and
+      summaryCtx = TParamNodeNone() and
       ap = getApNil(node)
       or
       exists(NodeEx mid, FlowState state0, Ap ap0, LocalCc localCc |
-        fwdFlow(mid, state0, cc, argAp, ap0, config) and
+        fwdFlow(mid, state0, cc, summaryCtx, argAp, ap0, config) and
         localCc = getLocalCc(mid, cc)
       |
         localStep(mid, state0, node, state, true, _, config, localCc) and
@@ -1295,65 +1319,72 @@ private module MkStage<StageSig PrevStage> {
       )
       or
       exists(NodeEx mid |
-        fwdFlow(mid, pragma[only_bind_into](state), _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, pragma[only_bind_into](config)) and
         jumpStep(mid, node, config) and
         cc = ccNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone()
       )
       or
       exists(NodeEx mid, ApNil nil |
-        fwdFlow(mid, state, _, _, nil, pragma[only_bind_into](config)) and
+        fwdFlow(mid, state, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStep(mid, node, config) and
         cc = ccNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone() and
         ap = getApNil(node)
       )
       or
       exists(NodeEx mid, FlowState state0, ApNil nil |
-        fwdFlow(mid, state0, _, _, nil, pragma[only_bind_into](config)) and
+        fwdFlow(mid, state0, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStateStep(mid, state0, node, state, config) and
         cc = ccNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone() and
         ap = getApNil(node)
       )
       or
       // store
       exists(TypedContent tc, Ap ap0 |
-        fwdFlowStore(_, ap0, tc, node, state, cc, argAp, config) and
+        fwdFlowStore(_, ap0, tc, node, state, cc, summaryCtx, argAp, config) and
         ap = apCons(tc, ap0)
       )
       or
       // read
       exists(Ap ap0, Content c |
-        fwdFlowRead(ap0, c, _, node, state, cc, argAp, config) and
+        fwdFlowRead(ap0, c, _, node, state, cc, summaryCtx, argAp, config) and
         fwdFlowConsCand(ap0, c, ap, config)
       )
       or
       // flow into a callable
       exists(ApApprox apa |
-        fwdFlowIn(_, node, state, _, cc, _, ap, config) and
+        fwdFlowIn(_, node, state, _, cc, _, _, ap, config) and
         apa = getApprox(ap) and
-        if PrevStage::parameterMayFlowThrough(node, _, apa, config)
-        then argAp = apSome(ap)
-        else argAp = apNone()
+        if PrevStage::parameterMayFlowThrough(node, apa, config)
+        then (
+          summaryCtx = TParamNodeSome(node.asNode()) and argAp = apSome(ap)
+        ) else (
+          summaryCtx = TParamNodeNone() and argAp = apNone()
+        )
       )
       or
       // flow out of a callable
-      fwdFlowOutNotFromArg(node, state, cc, argAp, ap, config)
+      fwdFlowOutNotFromArg(node, state, cc, summaryCtx, argAp, ap, config)
       or
-      exists(DataFlowCall call, Ap argAp0 |
-        fwdFlowOutFromArg(call, node, state, argAp0, ap, config) and
-        fwdFlowIsEntered(call, cc, argAp, argAp0, config)
+      // flow through a callable
+      exists(DataFlowCall call, ParamNode summaryCtx0, Ap argAp0 |
+        fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, config) and
+        fwdFlowIsEntered(call, cc, summaryCtx, argAp, summaryCtx0, argAp0, config)
       )
     }
 
     pragma[nomagic]
     private predicate fwdFlowStore(
-      NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc, ApOption argAp,
-      Configuration config
+      NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc,
+      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
     ) {
       exists(DataFlowType contentType |
-        fwdFlow(node1, state, cc, argAp, ap1, config) and
+        fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, config) and
         PrevStage::storeStepCand(node1, unbindApa(getApprox(ap1)), tc, node2, contentType, config) and
         typecheckStore(ap1, contentType)
       )
@@ -1366,7 +1397,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowConsCand(Ap cons, Content c, Ap tail, Configuration config) {
       exists(TypedContent tc |
-        fwdFlowStore(_, tail, tc, _, _, _, _, config) and
+        fwdFlowStore(_, tail, tc, _, _, _, _, _, config) and
         tc.getContent() = c and
         cons = apCons(tc, tail)
       )
@@ -1374,21 +1405,21 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowRead(
-      Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc, ApOption argAp,
-      Configuration config
+      Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc,
+      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
     ) {
-      fwdFlow(node1, state, cc, argAp, ap, config) and
+      fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, c, node2, config) and
       getHeadContent(ap) = c
     }
 
     pragma[nomagic]
     private predicate fwdFlowIn(
-      DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, Cc innercc, ApOption argAp,
-      Ap ap, Configuration config
+      DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, Cc innercc,
+      ParamNodeOption summaryCtx, ApOption argAp, Ap ap, Configuration config
     ) {
       exists(ArgNodeEx arg, boolean allowsFieldFlow |
-        fwdFlow(arg, state, outercc, argAp, ap, config) and
+        fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, config) and
         flowIntoCall(call, arg, p, allowsFieldFlow, config) and
         innercc = getCallContextCall(call, p.getEnclosingCallable(), outercc) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
@@ -1397,14 +1428,15 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowOutNotFromArg(
-      NodeEx out, FlowState state, Cc ccOut, ApOption argAp, Ap ap, Configuration config
+      NodeEx out, FlowState state, Cc ccOut, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      Configuration config
     ) {
       exists(
         DataFlowCall call, RetNodeEx ret, boolean allowsFieldFlow, CcNoCall innercc,
         DataFlowCallable inner
       |
-        fwdFlow(ret, state, innercc, argAp, ap, config) and
-        flowOutOfCall(call, ret, out, allowsFieldFlow, config) and
+        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, config) and
+        flowOutOfCall(call, ret, _, out, allowsFieldFlow, config) and
         inner = ret.getEnclosingCallable() and
         ccOut = getCallContextReturn(inner, call, innercc) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
@@ -1413,12 +1445,14 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowOutFromArg(
-      DataFlowCall call, NodeEx out, FlowState state, Ap argAp, Ap ap, Configuration config
+      DataFlowCall call, NodeEx out, FlowState state, ParamNode summaryCtx, Ap argAp, Ap ap,
+      Configuration config
     ) {
-      exists(RetNodeEx ret, boolean allowsFieldFlow, CcCall ccc |
-        fwdFlow(ret, state, ccc, apSome(argAp), ap, config) and
-        flowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, config) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
+      exists(RetNodeEx ret, ReturnKindExt kind, boolean allowsFieldFlow, CcCall ccc |
+        fwdFlow(ret, state, ccc, TParamNodeSome(summaryCtx), apSome(argAp), ap, config) and
+        flowThroughOutOfCall(call, ccc, ret, kind, out, allowsFieldFlow, config) and
+        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
+        parameterFlowThroughAllowed(summaryCtx, kind)
       )
     }
 
@@ -1428,11 +1462,13 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate fwdFlowIsEntered(
-      DataFlowCall call, Cc cc, ApOption argAp, Ap ap, Configuration config
+      DataFlowCall call, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, ParamNode p, Ap ap,
+      Configuration config
     ) {
-      exists(ParamNodeEx p |
-        fwdFlowIn(call, p, _, cc, _, argAp, ap, config) and
-        PrevStage::parameterMayFlowThrough(p, _, unbindApa(getApprox(ap)), config)
+      exists(ParamNodeEx param |
+        fwdFlowIn(call, param, _, cc, _, summaryCtx, argAp, ap, config) and
+        PrevStage::parameterMayFlowThrough(param, unbindApa(getApprox(ap)), config) and
+        p = param.asNode()
       )
     }
 
@@ -1440,146 +1476,149 @@ private module MkStage<StageSig PrevStage> {
     private predicate storeStepFwd(
       NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, Ap ap2, Configuration config
     ) {
-      fwdFlowStore(node1, ap1, tc, node2, _, _, _, config) and
+      fwdFlowStore(node1, ap1, tc, node2, _, _, _, _, config) and
       ap2 = apCons(tc, ap1) and
-      fwdFlowRead(ap2, tc.getContent(), _, _, _, _, _, config)
+      fwdFlowRead(ap2, tc.getContent(), _, _, _, _, _, _, config)
     }
 
     private predicate readStepFwd(
       NodeEx n1, Ap ap1, Content c, NodeEx n2, Ap ap2, Configuration config
     ) {
-      fwdFlowRead(ap1, c, n1, n2, _, _, _, config) and
+      fwdFlowRead(ap1, c, n1, n2, _, _, _, _, config) and
       fwdFlowConsCand(ap1, c, ap2, config)
     }
 
     pragma[nomagic]
-    private predicate callMayFlowThroughFwd(DataFlowCall call, Configuration config) {
-      exists(Ap argAp0, NodeEx out, FlowState state, Cc cc, ApOption argAp, Ap ap |
-        fwdFlow(out, state, pragma[only_bind_into](cc), pragma[only_bind_into](argAp), ap,
-          pragma[only_bind_into](config)) and
-        fwdFlowOutFromArg(call, out, state, argAp0, ap, config) and
-        fwdFlowIsEntered(pragma[only_bind_into](call), pragma[only_bind_into](cc),
-          pragma[only_bind_into](argAp), pragma[only_bind_into](argAp0),
-          pragma[only_bind_into](config))
-      )
+    private predicate returnFlowsThrough(
+      RetNodeEx ret, ReturnPosition pos, FlowState state, CcCall ccc, ParamNode p, Ap argAp, Ap ap,
+      Configuration config
+    ) {
+      fwdFlow(ret, state, ccc, TParamNodeSome(p), apSome(argAp), ap, config) and
+      pos = ret.getReturnPosition() and
+      parameterFlowThroughAllowed(p, pos.getKind())
     }
 
     pragma[nomagic]
     private predicate flowThroughIntoCall(
       DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
     ) {
-      flowIntoCall(call, arg, p, allowsFieldFlow, config) and
-      fwdFlow(arg, _, _, _, _, pragma[only_bind_into](config)) and
-      PrevStage::parameterMayFlowThrough(p, _, _, pragma[only_bind_into](config)) and
-      callMayFlowThroughFwd(call, pragma[only_bind_into](config))
-    }
-
-    pragma[nomagic]
-    private predicate returnNodeMayFlowThrough(
-      RetNodeEx ret, FlowState state, Ap ap, Configuration config
-    ) {
-      fwdFlow(ret, state, any(CcCall ccc), apSome(_), ap, config)
+      flowIntoCall(call, pragma[only_bind_into](arg), pragma[only_bind_into](p), allowsFieldFlow,
+        pragma[only_bind_into](config)) and
+      fwdFlow(arg, _, _, _, _, _, pragma[only_bind_into](config)) and
+      returnFlowsThrough(_, _, _, _, p.asNode(), _, _, pragma[only_bind_into](config))
     }
 
     /**
      * Holds if `node` with access path `ap` is part of a path from a source to a
      * sink in the configuration `config`.
      *
-     * The Boolean `toReturn` records whether the node must be returned from the
-     * enclosing callable in order to reach a sink, and if so, `returnAp` records
-     * the access path of the returned value.
+     * The parameter `returnCtx` records whether (and how) the node must be returned
+     * from the enclosing callable in order to reach a sink, and if so, `returnAp`
+     * records the access path of the returned value.
      */
     pragma[nomagic]
     additional predicate revFlow(
-      NodeEx node, FlowState state, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
+      NodeEx node, FlowState state, ReturnCtx returnCtx, ApOption returnAp, Ap ap,
+      Configuration config
     ) {
-      revFlow0(node, state, toReturn, returnAp, ap, config) and
-      fwdFlow(node, state, _, _, ap, config)
+      revFlow0(node, state, returnCtx, returnAp, ap, config) and
+      fwdFlow(node, state, _, _, _, ap, config)
     }
 
     pragma[nomagic]
     private predicate revFlow0(
-      NodeEx node, FlowState state, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
+      NodeEx node, FlowState state, ReturnCtx returnCtx, ApOption returnAp, Ap ap,
+      Configuration config
     ) {
-      fwdFlow(node, state, _, _, ap, config) and
+      fwdFlow(node, state, _, _, _, ap, config) and
       sinkNode(node, state, config) and
-      (if hasSinkCallCtx(config) then toReturn = true else toReturn = false) and
+      (
+        if hasSinkCallCtx(config)
+        then returnCtx = TReturnCtxNoFlowThrough()
+        else returnCtx = TReturnCtxNone()
+      ) and
       returnAp = apNone() and
       ap instanceof ApNil
       or
       exists(NodeEx mid, FlowState state0 |
         localStep(node, state, mid, state0, true, _, config, _) and
-        revFlow(mid, state0, toReturn, returnAp, ap, config)
+        revFlow(mid, state0, returnCtx, returnAp, ap, config)
       )
       or
       exists(NodeEx mid, FlowState state0, ApNil nil |
-        fwdFlow(node, pragma[only_bind_into](state), _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(node, pragma[only_bind_into](state), _, _, _, ap, pragma[only_bind_into](config)) and
         localStep(node, pragma[only_bind_into](state), mid, state0, false, _, config, _) and
-        revFlow(mid, state0, toReturn, returnAp, nil, pragma[only_bind_into](config)) and
+        revFlow(mid, state0, returnCtx, returnAp, nil, pragma[only_bind_into](config)) and
         ap instanceof ApNil
       )
       or
       exists(NodeEx mid |
         jumpStep(node, mid, config) and
         revFlow(mid, state, _, _, ap, config) and
-        toReturn = false and
+        returnCtx = TReturnCtxNone() and
         returnAp = apNone()
       )
       or
       exists(NodeEx mid, ApNil nil |
-        fwdFlow(node, _, _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(node, _, _, _, _, ap, pragma[only_bind_into](config)) and
         additionalJumpStep(node, mid, config) and
         revFlow(pragma[only_bind_into](mid), state, _, _, nil, pragma[only_bind_into](config)) and
-        toReturn = false and
+        returnCtx = TReturnCtxNone() and
         returnAp = apNone() and
         ap instanceof ApNil
       )
       or
       exists(NodeEx mid, FlowState state0, ApNil nil |
-        fwdFlow(node, _, _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(node, _, _, _, _, ap, pragma[only_bind_into](config)) and
         additionalJumpStateStep(node, state, mid, state0, config) and
         revFlow(pragma[only_bind_into](mid), pragma[only_bind_into](state0), _, _, nil,
           pragma[only_bind_into](config)) and
-        toReturn = false and
+        returnCtx = TReturnCtxNone() and
         returnAp = apNone() and
         ap instanceof ApNil
       )
       or
       // store
       exists(Ap ap0, Content c |
-        revFlowStore(ap0, c, ap, node, state, _, _, toReturn, returnAp, config) and
+        revFlowStore(ap0, c, ap, node, state, _, _, returnCtx, returnAp, config) and
         revFlowConsCand(ap0, c, ap, config)
       )
       or
       // read
       exists(NodeEx mid, Ap ap0 |
-        revFlow(mid, state, toReturn, returnAp, ap0, config) and
+        revFlow(mid, state, returnCtx, returnAp, ap0, config) and
         readStepFwd(node, ap, _, mid, ap0, config)
       )
       or
       // flow into a callable
       revFlowInNotToReturn(node, state, returnAp, ap, config) and
-      toReturn = false
+      returnCtx = TReturnCtxNone()
       or
-      exists(DataFlowCall call, Ap returnAp0 |
-        revFlowInToReturn(call, node, state, returnAp0, ap, config) and
-        revFlowIsReturned(call, toReturn, returnAp, returnAp0, config)
+      // flow through a callable
+      exists(DataFlowCall call, ReturnPosition returnPos0, Ap returnAp0 |
+        revFlowInToReturn(call, node, state, returnPos0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnPos0, returnAp0, config)
       )
       or
       // flow out of a callable
-      revFlowOut(_, node, state, _, _, ap, config) and
-      toReturn = true and
-      if returnNodeMayFlowThrough(node, state, ap, config)
-      then returnAp = apSome(ap)
-      else returnAp = apNone()
+      exists(ReturnPosition pos |
+        revFlowOut(_, node, pos, state, _, _, ap, config) and
+        if returnFlowsThrough(node, pos, state, _, _, _, ap, config)
+        then (
+          returnCtx = TReturnCtxMaybeFlowThrough(pos) and
+          returnAp = apSome(ap)
+        ) else (
+          returnCtx = TReturnCtxNoFlowThrough() and returnAp = apNone()
+        )
+      )
     }
 
     pragma[nomagic]
     private predicate revFlowStore(
       Ap ap0, Content c, Ap ap, NodeEx node, FlowState state, TypedContent tc, NodeEx mid,
-      boolean toReturn, ApOption returnAp, Configuration config
+      ReturnCtx returnCtx, ApOption returnAp, Configuration config
     ) {
-      revFlow(mid, state, toReturn, returnAp, ap0, config) and
+      revFlow(mid, state, returnCtx, returnAp, ap0, config) and
       storeStepFwd(node, ap, tc, mid, ap0, config) and
       tc.getContent() = c
     }
@@ -1599,12 +1638,12 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate revFlowOut(
-      DataFlowCall call, RetNodeEx ret, FlowState state, boolean toReturn, ApOption returnAp, Ap ap,
-      Configuration config
+      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, FlowState state, ReturnCtx returnCtx,
+      ApOption returnAp, Ap ap, Configuration config
     ) {
       exists(NodeEx out, boolean allowsFieldFlow |
-        revFlow(out, state, toReturn, returnAp, ap, config) and
-        flowOutOfCall(call, ret, out, allowsFieldFlow, config) and
+        revFlow(out, state, returnCtx, returnAp, ap, config) and
+        flowOutOfCall(call, ret, pos, out, allowsFieldFlow, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
@@ -1614,7 +1653,7 @@ private module MkStage<StageSig PrevStage> {
       ArgNodeEx arg, FlowState state, ApOption returnAp, Ap ap, Configuration config
     ) {
       exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(p, state, false, returnAp, ap, config) and
+        revFlow(p, state, TReturnCtxNone(), returnAp, ap, config) and
         flowIntoCall(_, arg, p, allowsFieldFlow, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
@@ -1622,12 +1661,14 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate revFlowInToReturn(
-      DataFlowCall call, ArgNodeEx arg, FlowState state, Ap returnAp, Ap ap, Configuration config
+      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnPosition returnPos, Ap returnAp,
+      Ap ap, Configuration config
     ) {
       exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(p, state, true, apSome(returnAp), ap, config) and
+        revFlow(p, state, TReturnCtxMaybeFlowThrough(returnPos), apSome(returnAp), ap, config) and
         flowThroughIntoCall(call, arg, p, allowsFieldFlow, config) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
+        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
+        parameterFlowThroughAllowed(p.asNode(), returnPos.getKind())
       )
     }
 
@@ -1638,11 +1679,12 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate revFlowIsReturned(
-      DataFlowCall call, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
+      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnPosition pos, Ap ap,
+      Configuration config
     ) {
       exists(RetNodeEx ret, FlowState state, CcCall ccc |
-        revFlowOut(call, ret, state, toReturn, returnAp, ap, config) and
-        fwdFlow(ret, state, ccc, apSome(_), ap, config) and
+        revFlowOut(call, ret, pos, state, returnCtx, returnAp, ap, config) and
+        returnFlowsThrough(ret, pos, state, ccc, _, _, ap, config) and
         matchesCall(ccc, call)
       )
     }
@@ -1713,40 +1755,39 @@ private module MkStage<StageSig PrevStage> {
       validAp(ap, config)
     }
 
-    pragma[noinline]
-    private predicate parameterFlow(
-      ParamNodeEx p, Ap ap, Ap ap0, DataFlowCallable c, Configuration config
+    pragma[nomagic]
+    private predicate parameterFlowsThroughRev(
+      ParamNodeEx p, Ap ap, ReturnPosition returnPos, Configuration config
     ) {
-      revFlow(p, _, true, apSome(ap0), ap, config) and
-      c = p.getEnclosingCallable()
+      revFlow(p, _, TReturnCtxMaybeFlowThrough(returnPos), apSome(_), ap, config) and
+      parameterFlowThroughAllowed(p.asNode(), returnPos.getKind())
     }
 
-    predicate parameterMayFlowThrough(ParamNodeEx p, DataFlowCallable c, Ap ap, Configuration config) {
-      exists(RetNodeEx ret, FlowState state, Ap ap0, ReturnKindExt kind, ParameterPosition pos |
-        parameterFlow(p, ap, ap0, c, config) and
-        c = ret.getEnclosingCallable() and
-        revFlow(pragma[only_bind_into](ret), pragma[only_bind_into](state), true, apSome(_),
-          pragma[only_bind_into](ap0), pragma[only_bind_into](config)) and
-        fwdFlow(ret, state, any(CcCall ccc), apSome(ap), ap0, config) and
-        kind = ret.getKind() and
-        p.getPosition() = pos and
-        // we don't expect a parameter to return stored in itself, unless explicitly allowed
-        (
-          not kind.(ParamUpdateReturnKind).getPosition() = pos
-          or
-          p.allowParameterReturnInSelf()
-        )
+    pragma[nomagic]
+    predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
+      exists(RetNodeEx ret, ReturnPosition pos |
+        returnFlowsThrough(ret, pos, _, _, p.asNode(), ap, _, config) and
+        parameterFlowsThroughRev(p, ap, pos, config)
+      )
+    }
+
+    pragma[nomagic]
+    predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config) {
+      exists(ParamNodeEx p, Ap ap |
+        returnFlowsThrough(ret, pos, _, _, p.asNode(), ap, _, config) and
+        parameterFlowsThroughRev(p, ap, pos, config)
       )
     }
 
     pragma[nomagic]
     predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
       exists(
-        Ap returnAp0, ArgNodeEx arg, FlowState state, boolean toReturn, ApOption returnAp, Ap ap
+        ReturnPosition returnPos0, Ap returnAp0, ArgNodeEx arg, FlowState state,
+        ReturnCtx returnCtx, ApOption returnAp, Ap ap
       |
-        revFlow(arg, state, toReturn, returnAp, ap, config) and
-        revFlowInToReturn(call, arg, state, returnAp0, ap, config) and
-        revFlowIsReturned(call, toReturn, returnAp, returnAp0, config)
+        revFlow(arg, state, returnCtx, returnAp, ap, config) and
+        revFlowInToReturn(call, arg, state, returnPos0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnPos0, returnAp0, config)
       )
     }
 
@@ -1754,13 +1795,13 @@ private module MkStage<StageSig PrevStage> {
       boolean fwd, int nodes, int fields, int conscand, int states, int tuples, Configuration config
     ) {
       fwd = true and
-      nodes = count(NodeEx node | fwdFlow(node, _, _, _, _, config)) and
+      nodes = count(NodeEx node | fwdFlow(node, _, _, _, _, _, config)) and
       fields = count(TypedContent f0 | fwdConsCand(f0, _, config)) and
       conscand = count(TypedContent f0, Ap ap | fwdConsCand(f0, ap, config)) and
-      states = count(FlowState state | fwdFlow(_, state, _, _, _, config)) and
+      states = count(FlowState state | fwdFlow(_, state, _, _, _, _, config)) and
       tuples =
-        count(NodeEx n, FlowState state, Cc cc, ApOption argAp, Ap ap |
-          fwdFlow(n, state, cc, argAp, ap, config)
+        count(NodeEx n, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap |
+          fwdFlow(n, state, cc, summaryCtx, argAp, ap, config)
         )
       or
       fwd = false and
@@ -1769,8 +1810,8 @@ private module MkStage<StageSig PrevStage> {
       conscand = count(TypedContent f0, Ap ap | consCand(f0, ap, config)) and
       states = count(FlowState state | revFlow(_, state, _, _, _, config)) and
       tuples =
-        count(NodeEx n, FlowState state, boolean b, ApOption retAp, Ap ap |
-          revFlow(n, state, b, retAp, ap, config)
+        count(NodeEx n, FlowState state, ReturnCtx returnCtx, ApOption retAp, Ap ap |
+          revFlow(n, state, returnCtx, retAp, ap, config)
         )
     }
     /* End: Stage logic. */
@@ -1915,7 +1956,7 @@ private module Stage2Param implements MkStage<Stage1>::StageParam {
     exists(lcc)
   }
 
-  predicate flowOutOfCall = flowOutOfCallNodeCand1/5;
+  predicate flowOutOfCall = flowOutOfCallNodeCand1/6;
 
   predicate flowIntoCall = flowIntoCallNodeCand1/5;
 
@@ -1951,9 +1992,10 @@ private module Stage2 implements StageSig {
 
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand2(
-  DataFlowCall call, RetNodeEx node1, NodeEx node2, boolean allowsFieldFlow, Configuration config
+  DataFlowCall call, RetNodeEx node1, ReturnPosition pos, NodeEx node2, boolean allowsFieldFlow,
+  Configuration config
 ) {
-  flowOutOfCallNodeCand1(call, node1, node2, allowsFieldFlow, config) and
+  flowOutOfCallNodeCand1(call, node1, pos, node2, allowsFieldFlow, config) and
   Stage2::revFlow(node2, pragma[only_bind_into](config)) and
   Stage2::revFlowAlias(node1, pragma[only_bind_into](config))
 }
@@ -2021,8 +2063,8 @@ private module LocalFlowBigStep {
     exists(NodeEx next | Stage2::revFlow(next, state, config) |
       jumpStep(node, next, config) or
       additionalJumpStep(node, next, config) or
-      flowIntoCallNodeCand1(_, node, next, config) or
-      flowOutOfCallNodeCand1(_, node, next, config) or
+      flowIntoCallNodeCand2(_, node, next, _, config) or
+      flowOutOfCallNodeCand2(_, node, _, next, _, config) or
       Stage2::storeStepCand(node, _, _, next, _, config) or
       Stage2::readStepCand(node, _, next, config)
     )
@@ -2163,7 +2205,7 @@ private module Stage3Param implements MkStage<Stage2>::StageParam {
     localFlowBigStep(node1, state1, node2, state2, preservesValue, ap, config, _) and exists(lcc)
   }
 
-  predicate flowOutOfCall = flowOutOfCallNodeCand2/5;
+  predicate flowOutOfCall = flowOutOfCallNodeCand2/6;
 
   predicate flowIntoCall = flowIntoCallNodeCand2/5;
 
@@ -2233,8 +2275,9 @@ private predicate flowCandSummaryCtx(
   NodeEx node, FlowState state, AccessPathFront argApf, Configuration config
 ) {
   exists(AccessPathFront apf |
-    Stage3::revFlow(node, state, true, _, apf, config) and
-    Stage3::fwdFlow(node, state, any(Stage3::CcCall ccc), TAccessPathFrontSome(argApf), apf, config)
+    Stage3::revFlow(node, state, TReturnCtxMaybeFlowThrough(_), _, apf, config) and
+    Stage3::fwdFlow(node, state, any(Stage3::CcCall ccc), _, TAccessPathFrontSome(argApf), apf,
+      config)
   )
 }
 
@@ -2468,10 +2511,11 @@ private module Stage4Param implements MkStage<Stage3>::StageParam {
 
   pragma[nomagic]
   predicate flowOutOfCall(
-    DataFlowCall call, RetNodeEx node1, NodeEx node2, boolean allowsFieldFlow, Configuration config
+    DataFlowCall call, RetNodeEx node1, ReturnPosition pos, NodeEx node2, boolean allowsFieldFlow,
+    Configuration config
   ) {
     exists(FlowState state |
-      flowOutOfCallNodeCand2(call, node1, node2, allowsFieldFlow, config) and
+      flowOutOfCallNodeCand2(call, node1, pos, node2, allowsFieldFlow, config) and
       PrevStage::revFlow(node2, pragma[only_bind_into](state), _, pragma[only_bind_into](config)) and
       PrevStage::revFlowAlias(node1, pragma[only_bind_into](state), _,
         pragma[only_bind_into](config))
@@ -2508,13 +2552,13 @@ private Configuration unbindConf(Configuration conf) {
 
 pragma[nomagic]
 private predicate nodeMayUseSummary0(
-  NodeEx n, DataFlowCallable c, FlowState state, AccessPathApprox apa, Configuration config
+  NodeEx n, ParamNodeEx p, FlowState state, AccessPathApprox apa, Configuration config
 ) {
   exists(AccessPathApprox apa0 |
-    Stage4::parameterMayFlowThrough(_, c, _, _) and
-    Stage4::revFlow(n, state, true, _, apa0, config) and
-    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TAccessPathApproxSome(apa), apa0, config) and
-    n.getEnclosingCallable() = c
+    Stage4::parameterMayFlowThrough(p, _, _) and
+    Stage4::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
+    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TParamNodeSome(p.asNode()),
+      TAccessPathApproxSome(apa), apa0, config)
   )
 }
 
@@ -2522,9 +2566,9 @@ pragma[nomagic]
 private predicate nodeMayUseSummary(
   NodeEx n, FlowState state, AccessPathApprox apa, Configuration config
 ) {
-  exists(DataFlowCallable c |
-    Stage4::parameterMayFlowThrough(_, c, apa, config) and
-    nodeMayUseSummary0(n, c, state, apa, config)
+  exists(ParamNodeEx p |
+    Stage4::parameterMayFlowThrough(p, apa, config) and
+    nodeMayUseSummary0(n, p, state, apa, config)
   )
 }
 
@@ -2532,7 +2576,7 @@ private newtype TSummaryCtx =
   TSummaryCtxNone() or
   TSummaryCtxSome(ParamNodeEx p, FlowState state, AccessPath ap) {
     exists(Configuration config |
-      Stage4::parameterMayFlowThrough(p, _, ap.getApprox(), config) and
+      Stage4::parameterMayFlowThrough(p, ap.getApprox(), config) and
       Stage4::revFlow(p, state, _, config)
     )
   }
@@ -3453,17 +3497,11 @@ private predicate paramFlowsThrough(
   ReturnKindExt kind, FlowState state, CallContextCall cc, SummaryCtxSome sc, AccessPath ap,
   AccessPathApprox apa, Configuration config
 ) {
-  exists(PathNodeMid mid, RetNodeEx ret, ParameterPosition pos |
+  exists(PathNodeMid mid, RetNodeEx ret |
     pathNode(mid, ret, state, cc, sc, ap, config, _) and
     kind = ret.getKind() and
     apa = ap.getApprox() and
-    pos = sc.getParameterPos() and
-    // we don't expect a parameter to return stored in itself, unless explicitly allowed
-    (
-      not kind.(ParamUpdateReturnKind).getPosition() = pos
-      or
-      sc.getParamNode().allowParameterReturnInSelf()
-    )
+    parameterFlowThroughAllowed(sc.getParamNode().asNode(), kind)
   )
 }
 
diff --git a/cpp/ql/lib/experimental/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl3.qll b/cpp/ql/lib/experimental/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl3.qll
index 3c41b1876dc..a52ad110662 100644
--- a/cpp/ql/lib/experimental/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl3.qll
+++ b/cpp/ql/lib/experimental/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl3.qll
@@ -319,8 +319,6 @@ private class ParamNodeEx extends NodeEx {
   }
 
   ParameterPosition getPosition() { this.isParameterOf(_, result) }
-
-  predicate allowParameterReturnInSelf() { allowParameterReturnInSelfCached(this.asNode()) }
 }
 
 private class RetNodeEx extends NodeEx {
@@ -608,6 +606,21 @@ private predicate hasSinkCallCtx(Configuration config) {
   )
 }
 
+/**
+ * Holds if flow from `p` to a return node of kind `kind` is allowed.
+ *
+ * We don't expect a parameter to return stored in itself, unless
+ * explicitly allowed
+ */
+bindingset[p, kind]
+private predicate parameterFlowThroughAllowed(ParamNode p, ReturnKindExt kind) {
+  exists(ParameterPosition pos | p.isParameterOf(_, pos) |
+    not kind.(ParamUpdateReturnKind).getPosition() = pos
+    or
+    allowParameterReturnInSelfCached(p)
+  )
+}
+
 private module Stage1 implements StageSig {
   class Ap = Unit;
 
@@ -981,21 +994,22 @@ private module Stage1 implements StageSig {
    * candidate for the origin of a summary.
    */
   pragma[nomagic]
-  predicate parameterMayFlowThrough(ParamNodeEx p, DataFlowCallable c, Ap ap, Configuration config) {
-    exists(ReturnKindExt kind |
+  predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
+    exists(DataFlowCallable c, ReturnKindExt kind |
       throughFlowNodeCand(p, config) and
       returnFlowCallableNodeCand(c, kind, config) and
       p.getEnclosingCallable() = c and
       exists(ap) and
-      // we don't expect a parameter to return stored in itself, unless explicitly allowed
-      (
-        not kind.(ParamUpdateReturnKind).getPosition() = p.getPosition()
-        or
-        p.allowParameterReturnInSelf()
-      )
+      parameterFlowThroughAllowed(p.asNode(), kind)
     )
   }
 
+  pragma[nomagic]
+  predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config) {
+    throughFlowNodeCand(ret, config) and
+    pos = ret.getReturnPosition()
+  }
+
   pragma[nomagic]
   predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
     exists(ArgNodeEx arg, boolean toReturn |
@@ -1052,9 +1066,10 @@ private predicate viableReturnPosOutNodeCand1(
  */
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand1(
-  DataFlowCall call, RetNodeEx ret, NodeEx out, Configuration config
+  DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, Configuration config
 ) {
-  viableReturnPosOutNodeCand1(call, ret.getReturnPosition(), out, config) and
+  viableReturnPosOutNodeCand1(call, pos, out, config) and
+  pos = ret.getReturnPosition() and
   Stage1::revFlow(ret, config) and
   not outBarrier(ret, config) and
   not inBarrier(out, config)
@@ -1090,7 +1105,7 @@ private predicate flowIntoCallNodeCand1(
 private int branch(NodeEx n1, Configuration conf) {
   result =
     strictcount(NodeEx n |
-      flowOutOfCallNodeCand1(_, n1, n, conf) or flowIntoCallNodeCand1(_, n1, n, conf)
+      flowOutOfCallNodeCand1(_, n1, _, n, conf) or flowIntoCallNodeCand1(_, n1, n, conf)
     )
 }
 
@@ -1102,7 +1117,7 @@ private int branch(NodeEx n1, Configuration conf) {
 private int join(NodeEx n2, Configuration conf) {
   result =
     strictcount(NodeEx n |
-      flowOutOfCallNodeCand1(_, n, n2, conf) or flowIntoCallNodeCand1(_, n, n2, conf)
+      flowOutOfCallNodeCand1(_, n, _, n2, conf) or flowIntoCallNodeCand1(_, n, n2, conf)
     )
 }
 
@@ -1115,12 +1130,13 @@ private int join(NodeEx n2, Configuration conf) {
  */
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand1(
-  DataFlowCall call, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow, Configuration config
+  DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
+  Configuration config
 ) {
-  flowOutOfCallNodeCand1(call, ret, out, config) and
+  flowOutOfCallNodeCand1(call, ret, pos, out, pragma[only_bind_into](config)) and
   exists(int b, int j |
-    b = branch(ret, config) and
-    j = join(out, config) and
+    b = branch(ret, pragma[only_bind_into](config)) and
+    j = join(out, pragma[only_bind_into](config)) and
     if b.minimum(j) <= config.fieldFlowBranchLimit()
     then allowsFieldFlow = true
     else allowsFieldFlow = false
@@ -1156,7 +1172,9 @@ private signature module StageSig {
 
   predicate callMayFlowThroughRev(DataFlowCall call, Configuration config);
 
-  predicate parameterMayFlowThrough(ParamNodeEx p, DataFlowCallable c, Ap ap, Configuration config);
+  predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config);
+
+  predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config);
 
   predicate storeStepCand(
     NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, DataFlowType contentType,
@@ -1222,7 +1240,8 @@ private module MkStage<StageSig PrevStage> {
     );
 
     predicate flowOutOfCall(
-      DataFlowCall call, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow, Configuration config
+      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
+      Configuration config
     );
 
     predicate flowIntoCall(
@@ -1247,14 +1266,16 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate flowThroughOutOfCall(
-      DataFlowCall call, CcCall ccc, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow,
-      Configuration config
+      DataFlowCall call, CcCall ccc, RetNodeEx ret, ReturnKindExt kind, NodeEx out,
+      boolean allowsFieldFlow, Configuration config
     ) {
-      flowOutOfCall(call, ret, out, allowsFieldFlow, pragma[only_bind_into](config)) and
-      PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
-      PrevStage::parameterMayFlowThrough(_, ret.getEnclosingCallable(), _,
-        pragma[only_bind_into](config)) and
-      matchesCall(ccc, call)
+      exists(ReturnPosition pos |
+        flowOutOfCall(call, ret, pos, out, allowsFieldFlow, pragma[only_bind_into](config)) and
+        kind = pos.getKind() and
+        PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
+        PrevStage::returnMayFlowThrough(ret, pos, pragma[only_bind_into](config)) and
+        matchesCall(ccc, call)
+      )
     }
 
     /**
@@ -1262,29 +1283,32 @@ private module MkStage<StageSig PrevStage> {
      * configuration `config`.
      *
      * The call context `cc` records whether the node is reached through an
-     * argument in a call, and if so, `argAp` records the access path of that
-     * argument.
+     * argument in a call, and if so, `summaryCtx` and `argAp` record the
+     * corresponding parameter and access path of that argument, respectively.
      */
     pragma[nomagic]
     additional predicate fwdFlow(
-      NodeEx node, FlowState state, Cc cc, ApOption argAp, Ap ap, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      Configuration config
     ) {
-      fwdFlow0(node, state, cc, argAp, ap, config) and
+      fwdFlow0(node, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::revFlow(node, state, unbindApa(getApprox(ap)), config) and
       filter(node, state, ap, config)
     }
 
     pragma[nomagic]
     private predicate fwdFlow0(
-      NodeEx node, FlowState state, Cc cc, ApOption argAp, Ap ap, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      Configuration config
     ) {
       sourceNode(node, state, config) and
       (if hasSourceCallCtx(config) then cc = ccSomeCall() else cc = ccNone()) and
       argAp = apNone() and
+      summaryCtx = TParamNodeNone() and
       ap = getApNil(node)
       or
       exists(NodeEx mid, FlowState state0, Ap ap0, LocalCc localCc |
-        fwdFlow(mid, state0, cc, argAp, ap0, config) and
+        fwdFlow(mid, state0, cc, summaryCtx, argAp, ap0, config) and
         localCc = getLocalCc(mid, cc)
       |
         localStep(mid, state0, node, state, true, _, config, localCc) and
@@ -1295,65 +1319,72 @@ private module MkStage<StageSig PrevStage> {
       )
       or
       exists(NodeEx mid |
-        fwdFlow(mid, pragma[only_bind_into](state), _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, pragma[only_bind_into](config)) and
         jumpStep(mid, node, config) and
         cc = ccNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone()
       )
       or
       exists(NodeEx mid, ApNil nil |
-        fwdFlow(mid, state, _, _, nil, pragma[only_bind_into](config)) and
+        fwdFlow(mid, state, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStep(mid, node, config) and
         cc = ccNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone() and
         ap = getApNil(node)
       )
       or
       exists(NodeEx mid, FlowState state0, ApNil nil |
-        fwdFlow(mid, state0, _, _, nil, pragma[only_bind_into](config)) and
+        fwdFlow(mid, state0, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStateStep(mid, state0, node, state, config) and
         cc = ccNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone() and
         ap = getApNil(node)
       )
       or
       // store
       exists(TypedContent tc, Ap ap0 |
-        fwdFlowStore(_, ap0, tc, node, state, cc, argAp, config) and
+        fwdFlowStore(_, ap0, tc, node, state, cc, summaryCtx, argAp, config) and
         ap = apCons(tc, ap0)
       )
       or
       // read
       exists(Ap ap0, Content c |
-        fwdFlowRead(ap0, c, _, node, state, cc, argAp, config) and
+        fwdFlowRead(ap0, c, _, node, state, cc, summaryCtx, argAp, config) and
         fwdFlowConsCand(ap0, c, ap, config)
       )
       or
       // flow into a callable
       exists(ApApprox apa |
-        fwdFlowIn(_, node, state, _, cc, _, ap, config) and
+        fwdFlowIn(_, node, state, _, cc, _, _, ap, config) and
         apa = getApprox(ap) and
-        if PrevStage::parameterMayFlowThrough(node, _, apa, config)
-        then argAp = apSome(ap)
-        else argAp = apNone()
+        if PrevStage::parameterMayFlowThrough(node, apa, config)
+        then (
+          summaryCtx = TParamNodeSome(node.asNode()) and argAp = apSome(ap)
+        ) else (
+          summaryCtx = TParamNodeNone() and argAp = apNone()
+        )
       )
       or
       // flow out of a callable
-      fwdFlowOutNotFromArg(node, state, cc, argAp, ap, config)
+      fwdFlowOutNotFromArg(node, state, cc, summaryCtx, argAp, ap, config)
       or
-      exists(DataFlowCall call, Ap argAp0 |
-        fwdFlowOutFromArg(call, node, state, argAp0, ap, config) and
-        fwdFlowIsEntered(call, cc, argAp, argAp0, config)
+      // flow through a callable
+      exists(DataFlowCall call, ParamNode summaryCtx0, Ap argAp0 |
+        fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, config) and
+        fwdFlowIsEntered(call, cc, summaryCtx, argAp, summaryCtx0, argAp0, config)
       )
     }
 
     pragma[nomagic]
     private predicate fwdFlowStore(
-      NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc, ApOption argAp,
-      Configuration config
+      NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc,
+      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
     ) {
       exists(DataFlowType contentType |
-        fwdFlow(node1, state, cc, argAp, ap1, config) and
+        fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, config) and
         PrevStage::storeStepCand(node1, unbindApa(getApprox(ap1)), tc, node2, contentType, config) and
         typecheckStore(ap1, contentType)
       )
@@ -1366,7 +1397,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowConsCand(Ap cons, Content c, Ap tail, Configuration config) {
       exists(TypedContent tc |
-        fwdFlowStore(_, tail, tc, _, _, _, _, config) and
+        fwdFlowStore(_, tail, tc, _, _, _, _, _, config) and
         tc.getContent() = c and
         cons = apCons(tc, tail)
       )
@@ -1374,21 +1405,21 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowRead(
-      Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc, ApOption argAp,
-      Configuration config
+      Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc,
+      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
     ) {
-      fwdFlow(node1, state, cc, argAp, ap, config) and
+      fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, c, node2, config) and
       getHeadContent(ap) = c
     }
 
     pragma[nomagic]
     private predicate fwdFlowIn(
-      DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, Cc innercc, ApOption argAp,
-      Ap ap, Configuration config
+      DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, Cc innercc,
+      ParamNodeOption summaryCtx, ApOption argAp, Ap ap, Configuration config
     ) {
       exists(ArgNodeEx arg, boolean allowsFieldFlow |
-        fwdFlow(arg, state, outercc, argAp, ap, config) and
+        fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, config) and
         flowIntoCall(call, arg, p, allowsFieldFlow, config) and
         innercc = getCallContextCall(call, p.getEnclosingCallable(), outercc) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
@@ -1397,14 +1428,15 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowOutNotFromArg(
-      NodeEx out, FlowState state, Cc ccOut, ApOption argAp, Ap ap, Configuration config
+      NodeEx out, FlowState state, Cc ccOut, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      Configuration config
     ) {
       exists(
         DataFlowCall call, RetNodeEx ret, boolean allowsFieldFlow, CcNoCall innercc,
         DataFlowCallable inner
       |
-        fwdFlow(ret, state, innercc, argAp, ap, config) and
-        flowOutOfCall(call, ret, out, allowsFieldFlow, config) and
+        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, config) and
+        flowOutOfCall(call, ret, _, out, allowsFieldFlow, config) and
         inner = ret.getEnclosingCallable() and
         ccOut = getCallContextReturn(inner, call, innercc) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
@@ -1413,12 +1445,14 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowOutFromArg(
-      DataFlowCall call, NodeEx out, FlowState state, Ap argAp, Ap ap, Configuration config
+      DataFlowCall call, NodeEx out, FlowState state, ParamNode summaryCtx, Ap argAp, Ap ap,
+      Configuration config
     ) {
-      exists(RetNodeEx ret, boolean allowsFieldFlow, CcCall ccc |
-        fwdFlow(ret, state, ccc, apSome(argAp), ap, config) and
-        flowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, config) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
+      exists(RetNodeEx ret, ReturnKindExt kind, boolean allowsFieldFlow, CcCall ccc |
+        fwdFlow(ret, state, ccc, TParamNodeSome(summaryCtx), apSome(argAp), ap, config) and
+        flowThroughOutOfCall(call, ccc, ret, kind, out, allowsFieldFlow, config) and
+        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
+        parameterFlowThroughAllowed(summaryCtx, kind)
       )
     }
 
@@ -1428,11 +1462,13 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate fwdFlowIsEntered(
-      DataFlowCall call, Cc cc, ApOption argAp, Ap ap, Configuration config
+      DataFlowCall call, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, ParamNode p, Ap ap,
+      Configuration config
     ) {
-      exists(ParamNodeEx p |
-        fwdFlowIn(call, p, _, cc, _, argAp, ap, config) and
-        PrevStage::parameterMayFlowThrough(p, _, unbindApa(getApprox(ap)), config)
+      exists(ParamNodeEx param |
+        fwdFlowIn(call, param, _, cc, _, summaryCtx, argAp, ap, config) and
+        PrevStage::parameterMayFlowThrough(param, unbindApa(getApprox(ap)), config) and
+        p = param.asNode()
       )
     }
 
@@ -1440,146 +1476,149 @@ private module MkStage<StageSig PrevStage> {
     private predicate storeStepFwd(
       NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, Ap ap2, Configuration config
     ) {
-      fwdFlowStore(node1, ap1, tc, node2, _, _, _, config) and
+      fwdFlowStore(node1, ap1, tc, node2, _, _, _, _, config) and
       ap2 = apCons(tc, ap1) and
-      fwdFlowRead(ap2, tc.getContent(), _, _, _, _, _, config)
+      fwdFlowRead(ap2, tc.getContent(), _, _, _, _, _, _, config)
     }
 
     private predicate readStepFwd(
       NodeEx n1, Ap ap1, Content c, NodeEx n2, Ap ap2, Configuration config
     ) {
-      fwdFlowRead(ap1, c, n1, n2, _, _, _, config) and
+      fwdFlowRead(ap1, c, n1, n2, _, _, _, _, config) and
       fwdFlowConsCand(ap1, c, ap2, config)
     }
 
     pragma[nomagic]
-    private predicate callMayFlowThroughFwd(DataFlowCall call, Configuration config) {
-      exists(Ap argAp0, NodeEx out, FlowState state, Cc cc, ApOption argAp, Ap ap |
-        fwdFlow(out, state, pragma[only_bind_into](cc), pragma[only_bind_into](argAp), ap,
-          pragma[only_bind_into](config)) and
-        fwdFlowOutFromArg(call, out, state, argAp0, ap, config) and
-        fwdFlowIsEntered(pragma[only_bind_into](call), pragma[only_bind_into](cc),
-          pragma[only_bind_into](argAp), pragma[only_bind_into](argAp0),
-          pragma[only_bind_into](config))
-      )
+    private predicate returnFlowsThrough(
+      RetNodeEx ret, ReturnPosition pos, FlowState state, CcCall ccc, ParamNode p, Ap argAp, Ap ap,
+      Configuration config
+    ) {
+      fwdFlow(ret, state, ccc, TParamNodeSome(p), apSome(argAp), ap, config) and
+      pos = ret.getReturnPosition() and
+      parameterFlowThroughAllowed(p, pos.getKind())
     }
 
     pragma[nomagic]
     private predicate flowThroughIntoCall(
       DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
     ) {
-      flowIntoCall(call, arg, p, allowsFieldFlow, config) and
-      fwdFlow(arg, _, _, _, _, pragma[only_bind_into](config)) and
-      PrevStage::parameterMayFlowThrough(p, _, _, pragma[only_bind_into](config)) and
-      callMayFlowThroughFwd(call, pragma[only_bind_into](config))
-    }
-
-    pragma[nomagic]
-    private predicate returnNodeMayFlowThrough(
-      RetNodeEx ret, FlowState state, Ap ap, Configuration config
-    ) {
-      fwdFlow(ret, state, any(CcCall ccc), apSome(_), ap, config)
+      flowIntoCall(call, pragma[only_bind_into](arg), pragma[only_bind_into](p), allowsFieldFlow,
+        pragma[only_bind_into](config)) and
+      fwdFlow(arg, _, _, _, _, _, pragma[only_bind_into](config)) and
+      returnFlowsThrough(_, _, _, _, p.asNode(), _, _, pragma[only_bind_into](config))
     }
 
     /**
      * Holds if `node` with access path `ap` is part of a path from a source to a
      * sink in the configuration `config`.
      *
-     * The Boolean `toReturn` records whether the node must be returned from the
-     * enclosing callable in order to reach a sink, and if so, `returnAp` records
-     * the access path of the returned value.
+     * The parameter `returnCtx` records whether (and how) the node must be returned
+     * from the enclosing callable in order to reach a sink, and if so, `returnAp`
+     * records the access path of the returned value.
      */
     pragma[nomagic]
     additional predicate revFlow(
-      NodeEx node, FlowState state, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
+      NodeEx node, FlowState state, ReturnCtx returnCtx, ApOption returnAp, Ap ap,
+      Configuration config
     ) {
-      revFlow0(node, state, toReturn, returnAp, ap, config) and
-      fwdFlow(node, state, _, _, ap, config)
+      revFlow0(node, state, returnCtx, returnAp, ap, config) and
+      fwdFlow(node, state, _, _, _, ap, config)
     }
 
     pragma[nomagic]
     private predicate revFlow0(
-      NodeEx node, FlowState state, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
+      NodeEx node, FlowState state, ReturnCtx returnCtx, ApOption returnAp, Ap ap,
+      Configuration config
     ) {
-      fwdFlow(node, state, _, _, ap, config) and
+      fwdFlow(node, state, _, _, _, ap, config) and
       sinkNode(node, state, config) and
-      (if hasSinkCallCtx(config) then toReturn = true else toReturn = false) and
+      (
+        if hasSinkCallCtx(config)
+        then returnCtx = TReturnCtxNoFlowThrough()
+        else returnCtx = TReturnCtxNone()
+      ) and
       returnAp = apNone() and
       ap instanceof ApNil
       or
       exists(NodeEx mid, FlowState state0 |
         localStep(node, state, mid, state0, true, _, config, _) and
-        revFlow(mid, state0, toReturn, returnAp, ap, config)
+        revFlow(mid, state0, returnCtx, returnAp, ap, config)
       )
       or
       exists(NodeEx mid, FlowState state0, ApNil nil |
-        fwdFlow(node, pragma[only_bind_into](state), _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(node, pragma[only_bind_into](state), _, _, _, ap, pragma[only_bind_into](config)) and
         localStep(node, pragma[only_bind_into](state), mid, state0, false, _, config, _) and
-        revFlow(mid, state0, toReturn, returnAp, nil, pragma[only_bind_into](config)) and
+        revFlow(mid, state0, returnCtx, returnAp, nil, pragma[only_bind_into](config)) and
         ap instanceof ApNil
       )
       or
       exists(NodeEx mid |
         jumpStep(node, mid, config) and
         revFlow(mid, state, _, _, ap, config) and
-        toReturn = false and
+        returnCtx = TReturnCtxNone() and
         returnAp = apNone()
       )
       or
       exists(NodeEx mid, ApNil nil |
-        fwdFlow(node, _, _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(node, _, _, _, _, ap, pragma[only_bind_into](config)) and
         additionalJumpStep(node, mid, config) and
         revFlow(pragma[only_bind_into](mid), state, _, _, nil, pragma[only_bind_into](config)) and
-        toReturn = false and
+        returnCtx = TReturnCtxNone() and
         returnAp = apNone() and
         ap instanceof ApNil
       )
       or
       exists(NodeEx mid, FlowState state0, ApNil nil |
-        fwdFlow(node, _, _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(node, _, _, _, _, ap, pragma[only_bind_into](config)) and
         additionalJumpStateStep(node, state, mid, state0, config) and
         revFlow(pragma[only_bind_into](mid), pragma[only_bind_into](state0), _, _, nil,
           pragma[only_bind_into](config)) and
-        toReturn = false and
+        returnCtx = TReturnCtxNone() and
         returnAp = apNone() and
         ap instanceof ApNil
       )
       or
       // store
       exists(Ap ap0, Content c |
-        revFlowStore(ap0, c, ap, node, state, _, _, toReturn, returnAp, config) and
+        revFlowStore(ap0, c, ap, node, state, _, _, returnCtx, returnAp, config) and
         revFlowConsCand(ap0, c, ap, config)
       )
       or
       // read
       exists(NodeEx mid, Ap ap0 |
-        revFlow(mid, state, toReturn, returnAp, ap0, config) and
+        revFlow(mid, state, returnCtx, returnAp, ap0, config) and
         readStepFwd(node, ap, _, mid, ap0, config)
       )
       or
       // flow into a callable
       revFlowInNotToReturn(node, state, returnAp, ap, config) and
-      toReturn = false
+      returnCtx = TReturnCtxNone()
       or
-      exists(DataFlowCall call, Ap returnAp0 |
-        revFlowInToReturn(call, node, state, returnAp0, ap, config) and
-        revFlowIsReturned(call, toReturn, returnAp, returnAp0, config)
+      // flow through a callable
+      exists(DataFlowCall call, ReturnPosition returnPos0, Ap returnAp0 |
+        revFlowInToReturn(call, node, state, returnPos0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnPos0, returnAp0, config)
       )
       or
       // flow out of a callable
-      revFlowOut(_, node, state, _, _, ap, config) and
-      toReturn = true and
-      if returnNodeMayFlowThrough(node, state, ap, config)
-      then returnAp = apSome(ap)
-      else returnAp = apNone()
+      exists(ReturnPosition pos |
+        revFlowOut(_, node, pos, state, _, _, ap, config) and
+        if returnFlowsThrough(node, pos, state, _, _, _, ap, config)
+        then (
+          returnCtx = TReturnCtxMaybeFlowThrough(pos) and
+          returnAp = apSome(ap)
+        ) else (
+          returnCtx = TReturnCtxNoFlowThrough() and returnAp = apNone()
+        )
+      )
     }
 
     pragma[nomagic]
     private predicate revFlowStore(
       Ap ap0, Content c, Ap ap, NodeEx node, FlowState state, TypedContent tc, NodeEx mid,
-      boolean toReturn, ApOption returnAp, Configuration config
+      ReturnCtx returnCtx, ApOption returnAp, Configuration config
     ) {
-      revFlow(mid, state, toReturn, returnAp, ap0, config) and
+      revFlow(mid, state, returnCtx, returnAp, ap0, config) and
       storeStepFwd(node, ap, tc, mid, ap0, config) and
       tc.getContent() = c
     }
@@ -1599,12 +1638,12 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate revFlowOut(
-      DataFlowCall call, RetNodeEx ret, FlowState state, boolean toReturn, ApOption returnAp, Ap ap,
-      Configuration config
+      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, FlowState state, ReturnCtx returnCtx,
+      ApOption returnAp, Ap ap, Configuration config
     ) {
       exists(NodeEx out, boolean allowsFieldFlow |
-        revFlow(out, state, toReturn, returnAp, ap, config) and
-        flowOutOfCall(call, ret, out, allowsFieldFlow, config) and
+        revFlow(out, state, returnCtx, returnAp, ap, config) and
+        flowOutOfCall(call, ret, pos, out, allowsFieldFlow, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
@@ -1614,7 +1653,7 @@ private module MkStage<StageSig PrevStage> {
       ArgNodeEx arg, FlowState state, ApOption returnAp, Ap ap, Configuration config
     ) {
       exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(p, state, false, returnAp, ap, config) and
+        revFlow(p, state, TReturnCtxNone(), returnAp, ap, config) and
         flowIntoCall(_, arg, p, allowsFieldFlow, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
@@ -1622,12 +1661,14 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate revFlowInToReturn(
-      DataFlowCall call, ArgNodeEx arg, FlowState state, Ap returnAp, Ap ap, Configuration config
+      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnPosition returnPos, Ap returnAp,
+      Ap ap, Configuration config
     ) {
       exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(p, state, true, apSome(returnAp), ap, config) and
+        revFlow(p, state, TReturnCtxMaybeFlowThrough(returnPos), apSome(returnAp), ap, config) and
         flowThroughIntoCall(call, arg, p, allowsFieldFlow, config) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
+        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
+        parameterFlowThroughAllowed(p.asNode(), returnPos.getKind())
       )
     }
 
@@ -1638,11 +1679,12 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate revFlowIsReturned(
-      DataFlowCall call, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
+      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnPosition pos, Ap ap,
+      Configuration config
     ) {
       exists(RetNodeEx ret, FlowState state, CcCall ccc |
-        revFlowOut(call, ret, state, toReturn, returnAp, ap, config) and
-        fwdFlow(ret, state, ccc, apSome(_), ap, config) and
+        revFlowOut(call, ret, pos, state, returnCtx, returnAp, ap, config) and
+        returnFlowsThrough(ret, pos, state, ccc, _, _, ap, config) and
         matchesCall(ccc, call)
       )
     }
@@ -1713,40 +1755,39 @@ private module MkStage<StageSig PrevStage> {
       validAp(ap, config)
     }
 
-    pragma[noinline]
-    private predicate parameterFlow(
-      ParamNodeEx p, Ap ap, Ap ap0, DataFlowCallable c, Configuration config
+    pragma[nomagic]
+    private predicate parameterFlowsThroughRev(
+      ParamNodeEx p, Ap ap, ReturnPosition returnPos, Configuration config
     ) {
-      revFlow(p, _, true, apSome(ap0), ap, config) and
-      c = p.getEnclosingCallable()
+      revFlow(p, _, TReturnCtxMaybeFlowThrough(returnPos), apSome(_), ap, config) and
+      parameterFlowThroughAllowed(p.asNode(), returnPos.getKind())
     }
 
-    predicate parameterMayFlowThrough(ParamNodeEx p, DataFlowCallable c, Ap ap, Configuration config) {
-      exists(RetNodeEx ret, FlowState state, Ap ap0, ReturnKindExt kind, ParameterPosition pos |
-        parameterFlow(p, ap, ap0, c, config) and
-        c = ret.getEnclosingCallable() and
-        revFlow(pragma[only_bind_into](ret), pragma[only_bind_into](state), true, apSome(_),
-          pragma[only_bind_into](ap0), pragma[only_bind_into](config)) and
-        fwdFlow(ret, state, any(CcCall ccc), apSome(ap), ap0, config) and
-        kind = ret.getKind() and
-        p.getPosition() = pos and
-        // we don't expect a parameter to return stored in itself, unless explicitly allowed
-        (
-          not kind.(ParamUpdateReturnKind).getPosition() = pos
-          or
-          p.allowParameterReturnInSelf()
-        )
+    pragma[nomagic]
+    predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
+      exists(RetNodeEx ret, ReturnPosition pos |
+        returnFlowsThrough(ret, pos, _, _, p.asNode(), ap, _, config) and
+        parameterFlowsThroughRev(p, ap, pos, config)
+      )
+    }
+
+    pragma[nomagic]
+    predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config) {
+      exists(ParamNodeEx p, Ap ap |
+        returnFlowsThrough(ret, pos, _, _, p.asNode(), ap, _, config) and
+        parameterFlowsThroughRev(p, ap, pos, config)
       )
     }
 
     pragma[nomagic]
     predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
       exists(
-        Ap returnAp0, ArgNodeEx arg, FlowState state, boolean toReturn, ApOption returnAp, Ap ap
+        ReturnPosition returnPos0, Ap returnAp0, ArgNodeEx arg, FlowState state,
+        ReturnCtx returnCtx, ApOption returnAp, Ap ap
       |
-        revFlow(arg, state, toReturn, returnAp, ap, config) and
-        revFlowInToReturn(call, arg, state, returnAp0, ap, config) and
-        revFlowIsReturned(call, toReturn, returnAp, returnAp0, config)
+        revFlow(arg, state, returnCtx, returnAp, ap, config) and
+        revFlowInToReturn(call, arg, state, returnPos0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnPos0, returnAp0, config)
       )
     }
 
@@ -1754,13 +1795,13 @@ private module MkStage<StageSig PrevStage> {
       boolean fwd, int nodes, int fields, int conscand, int states, int tuples, Configuration config
     ) {
       fwd = true and
-      nodes = count(NodeEx node | fwdFlow(node, _, _, _, _, config)) and
+      nodes = count(NodeEx node | fwdFlow(node, _, _, _, _, _, config)) and
       fields = count(TypedContent f0 | fwdConsCand(f0, _, config)) and
       conscand = count(TypedContent f0, Ap ap | fwdConsCand(f0, ap, config)) and
-      states = count(FlowState state | fwdFlow(_, state, _, _, _, config)) and
+      states = count(FlowState state | fwdFlow(_, state, _, _, _, _, config)) and
       tuples =
-        count(NodeEx n, FlowState state, Cc cc, ApOption argAp, Ap ap |
-          fwdFlow(n, state, cc, argAp, ap, config)
+        count(NodeEx n, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap |
+          fwdFlow(n, state, cc, summaryCtx, argAp, ap, config)
         )
       or
       fwd = false and
@@ -1769,8 +1810,8 @@ private module MkStage<StageSig PrevStage> {
       conscand = count(TypedContent f0, Ap ap | consCand(f0, ap, config)) and
       states = count(FlowState state | revFlow(_, state, _, _, _, config)) and
       tuples =
-        count(NodeEx n, FlowState state, boolean b, ApOption retAp, Ap ap |
-          revFlow(n, state, b, retAp, ap, config)
+        count(NodeEx n, FlowState state, ReturnCtx returnCtx, ApOption retAp, Ap ap |
+          revFlow(n, state, returnCtx, retAp, ap, config)
         )
     }
     /* End: Stage logic. */
@@ -1915,7 +1956,7 @@ private module Stage2Param implements MkStage<Stage1>::StageParam {
     exists(lcc)
   }
 
-  predicate flowOutOfCall = flowOutOfCallNodeCand1/5;
+  predicate flowOutOfCall = flowOutOfCallNodeCand1/6;
 
   predicate flowIntoCall = flowIntoCallNodeCand1/5;
 
@@ -1951,9 +1992,10 @@ private module Stage2 implements StageSig {
 
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand2(
-  DataFlowCall call, RetNodeEx node1, NodeEx node2, boolean allowsFieldFlow, Configuration config
+  DataFlowCall call, RetNodeEx node1, ReturnPosition pos, NodeEx node2, boolean allowsFieldFlow,
+  Configuration config
 ) {
-  flowOutOfCallNodeCand1(call, node1, node2, allowsFieldFlow, config) and
+  flowOutOfCallNodeCand1(call, node1, pos, node2, allowsFieldFlow, config) and
   Stage2::revFlow(node2, pragma[only_bind_into](config)) and
   Stage2::revFlowAlias(node1, pragma[only_bind_into](config))
 }
@@ -2021,8 +2063,8 @@ private module LocalFlowBigStep {
     exists(NodeEx next | Stage2::revFlow(next, state, config) |
       jumpStep(node, next, config) or
       additionalJumpStep(node, next, config) or
-      flowIntoCallNodeCand1(_, node, next, config) or
-      flowOutOfCallNodeCand1(_, node, next, config) or
+      flowIntoCallNodeCand2(_, node, next, _, config) or
+      flowOutOfCallNodeCand2(_, node, _, next, _, config) or
       Stage2::storeStepCand(node, _, _, next, _, config) or
       Stage2::readStepCand(node, _, next, config)
     )
@@ -2163,7 +2205,7 @@ private module Stage3Param implements MkStage<Stage2>::StageParam {
     localFlowBigStep(node1, state1, node2, state2, preservesValue, ap, config, _) and exists(lcc)
   }
 
-  predicate flowOutOfCall = flowOutOfCallNodeCand2/5;
+  predicate flowOutOfCall = flowOutOfCallNodeCand2/6;
 
   predicate flowIntoCall = flowIntoCallNodeCand2/5;
 
@@ -2233,8 +2275,9 @@ private predicate flowCandSummaryCtx(
   NodeEx node, FlowState state, AccessPathFront argApf, Configuration config
 ) {
   exists(AccessPathFront apf |
-    Stage3::revFlow(node, state, true, _, apf, config) and
-    Stage3::fwdFlow(node, state, any(Stage3::CcCall ccc), TAccessPathFrontSome(argApf), apf, config)
+    Stage3::revFlow(node, state, TReturnCtxMaybeFlowThrough(_), _, apf, config) and
+    Stage3::fwdFlow(node, state, any(Stage3::CcCall ccc), _, TAccessPathFrontSome(argApf), apf,
+      config)
   )
 }
 
@@ -2468,10 +2511,11 @@ private module Stage4Param implements MkStage<Stage3>::StageParam {
 
   pragma[nomagic]
   predicate flowOutOfCall(
-    DataFlowCall call, RetNodeEx node1, NodeEx node2, boolean allowsFieldFlow, Configuration config
+    DataFlowCall call, RetNodeEx node1, ReturnPosition pos, NodeEx node2, boolean allowsFieldFlow,
+    Configuration config
   ) {
     exists(FlowState state |
-      flowOutOfCallNodeCand2(call, node1, node2, allowsFieldFlow, config) and
+      flowOutOfCallNodeCand2(call, node1, pos, node2, allowsFieldFlow, config) and
       PrevStage::revFlow(node2, pragma[only_bind_into](state), _, pragma[only_bind_into](config)) and
       PrevStage::revFlowAlias(node1, pragma[only_bind_into](state), _,
         pragma[only_bind_into](config))
@@ -2508,13 +2552,13 @@ private Configuration unbindConf(Configuration conf) {
 
 pragma[nomagic]
 private predicate nodeMayUseSummary0(
-  NodeEx n, DataFlowCallable c, FlowState state, AccessPathApprox apa, Configuration config
+  NodeEx n, ParamNodeEx p, FlowState state, AccessPathApprox apa, Configuration config
 ) {
   exists(AccessPathApprox apa0 |
-    Stage4::parameterMayFlowThrough(_, c, _, _) and
-    Stage4::revFlow(n, state, true, _, apa0, config) and
-    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TAccessPathApproxSome(apa), apa0, config) and
-    n.getEnclosingCallable() = c
+    Stage4::parameterMayFlowThrough(p, _, _) and
+    Stage4::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
+    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TParamNodeSome(p.asNode()),
+      TAccessPathApproxSome(apa), apa0, config)
   )
 }
 
@@ -2522,9 +2566,9 @@ pragma[nomagic]
 private predicate nodeMayUseSummary(
   NodeEx n, FlowState state, AccessPathApprox apa, Configuration config
 ) {
-  exists(DataFlowCallable c |
-    Stage4::parameterMayFlowThrough(_, c, apa, config) and
-    nodeMayUseSummary0(n, c, state, apa, config)
+  exists(ParamNodeEx p |
+    Stage4::parameterMayFlowThrough(p, apa, config) and
+    nodeMayUseSummary0(n, p, state, apa, config)
   )
 }
 
@@ -2532,7 +2576,7 @@ private newtype TSummaryCtx =
   TSummaryCtxNone() or
   TSummaryCtxSome(ParamNodeEx p, FlowState state, AccessPath ap) {
     exists(Configuration config |
-      Stage4::parameterMayFlowThrough(p, _, ap.getApprox(), config) and
+      Stage4::parameterMayFlowThrough(p, ap.getApprox(), config) and
       Stage4::revFlow(p, state, _, config)
     )
   }
@@ -3453,17 +3497,11 @@ private predicate paramFlowsThrough(
   ReturnKindExt kind, FlowState state, CallContextCall cc, SummaryCtxSome sc, AccessPath ap,
   AccessPathApprox apa, Configuration config
 ) {
-  exists(PathNodeMid mid, RetNodeEx ret, ParameterPosition pos |
+  exists(PathNodeMid mid, RetNodeEx ret |
     pathNode(mid, ret, state, cc, sc, ap, config, _) and
     kind = ret.getKind() and
     apa = ap.getApprox() and
-    pos = sc.getParameterPos() and
-    // we don't expect a parameter to return stored in itself, unless explicitly allowed
-    (
-      not kind.(ParamUpdateReturnKind).getPosition() = pos
-      or
-      sc.getParamNode().allowParameterReturnInSelf()
-    )
+    parameterFlowThroughAllowed(sc.getParamNode().asNode(), kind)
   )
 }
 
diff --git a/cpp/ql/lib/experimental/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl4.qll b/cpp/ql/lib/experimental/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl4.qll
index 3c41b1876dc..a52ad110662 100644
--- a/cpp/ql/lib/experimental/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl4.qll
+++ b/cpp/ql/lib/experimental/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl4.qll
@@ -319,8 +319,6 @@ private class ParamNodeEx extends NodeEx {
   }
 
   ParameterPosition getPosition() { this.isParameterOf(_, result) }
-
-  predicate allowParameterReturnInSelf() { allowParameterReturnInSelfCached(this.asNode()) }
 }
 
 private class RetNodeEx extends NodeEx {
@@ -608,6 +606,21 @@ private predicate hasSinkCallCtx(Configuration config) {
   )
 }
 
+/**
+ * Holds if flow from `p` to a return node of kind `kind` is allowed.
+ *
+ * We don't expect a parameter to return stored in itself, unless
+ * explicitly allowed
+ */
+bindingset[p, kind]
+private predicate parameterFlowThroughAllowed(ParamNode p, ReturnKindExt kind) {
+  exists(ParameterPosition pos | p.isParameterOf(_, pos) |
+    not kind.(ParamUpdateReturnKind).getPosition() = pos
+    or
+    allowParameterReturnInSelfCached(p)
+  )
+}
+
 private module Stage1 implements StageSig {
   class Ap = Unit;
 
@@ -981,21 +994,22 @@ private module Stage1 implements StageSig {
    * candidate for the origin of a summary.
    */
   pragma[nomagic]
-  predicate parameterMayFlowThrough(ParamNodeEx p, DataFlowCallable c, Ap ap, Configuration config) {
-    exists(ReturnKindExt kind |
+  predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
+    exists(DataFlowCallable c, ReturnKindExt kind |
       throughFlowNodeCand(p, config) and
       returnFlowCallableNodeCand(c, kind, config) and
       p.getEnclosingCallable() = c and
       exists(ap) and
-      // we don't expect a parameter to return stored in itself, unless explicitly allowed
-      (
-        not kind.(ParamUpdateReturnKind).getPosition() = p.getPosition()
-        or
-        p.allowParameterReturnInSelf()
-      )
+      parameterFlowThroughAllowed(p.asNode(), kind)
     )
   }
 
+  pragma[nomagic]
+  predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config) {
+    throughFlowNodeCand(ret, config) and
+    pos = ret.getReturnPosition()
+  }
+
   pragma[nomagic]
   predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
     exists(ArgNodeEx arg, boolean toReturn |
@@ -1052,9 +1066,10 @@ private predicate viableReturnPosOutNodeCand1(
  */
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand1(
-  DataFlowCall call, RetNodeEx ret, NodeEx out, Configuration config
+  DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, Configuration config
 ) {
-  viableReturnPosOutNodeCand1(call, ret.getReturnPosition(), out, config) and
+  viableReturnPosOutNodeCand1(call, pos, out, config) and
+  pos = ret.getReturnPosition() and
   Stage1::revFlow(ret, config) and
   not outBarrier(ret, config) and
   not inBarrier(out, config)
@@ -1090,7 +1105,7 @@ private predicate flowIntoCallNodeCand1(
 private int branch(NodeEx n1, Configuration conf) {
   result =
     strictcount(NodeEx n |
-      flowOutOfCallNodeCand1(_, n1, n, conf) or flowIntoCallNodeCand1(_, n1, n, conf)
+      flowOutOfCallNodeCand1(_, n1, _, n, conf) or flowIntoCallNodeCand1(_, n1, n, conf)
     )
 }
 
@@ -1102,7 +1117,7 @@ private int branch(NodeEx n1, Configuration conf) {
 private int join(NodeEx n2, Configuration conf) {
   result =
     strictcount(NodeEx n |
-      flowOutOfCallNodeCand1(_, n, n2, conf) or flowIntoCallNodeCand1(_, n, n2, conf)
+      flowOutOfCallNodeCand1(_, n, _, n2, conf) or flowIntoCallNodeCand1(_, n, n2, conf)
     )
 }
 
@@ -1115,12 +1130,13 @@ private int join(NodeEx n2, Configuration conf) {
  */
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand1(
-  DataFlowCall call, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow, Configuration config
+  DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
+  Configuration config
 ) {
-  flowOutOfCallNodeCand1(call, ret, out, config) and
+  flowOutOfCallNodeCand1(call, ret, pos, out, pragma[only_bind_into](config)) and
   exists(int b, int j |
-    b = branch(ret, config) and
-    j = join(out, config) and
+    b = branch(ret, pragma[only_bind_into](config)) and
+    j = join(out, pragma[only_bind_into](config)) and
     if b.minimum(j) <= config.fieldFlowBranchLimit()
     then allowsFieldFlow = true
     else allowsFieldFlow = false
@@ -1156,7 +1172,9 @@ private signature module StageSig {
 
   predicate callMayFlowThroughRev(DataFlowCall call, Configuration config);
 
-  predicate parameterMayFlowThrough(ParamNodeEx p, DataFlowCallable c, Ap ap, Configuration config);
+  predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config);
+
+  predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config);
 
   predicate storeStepCand(
     NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, DataFlowType contentType,
@@ -1222,7 +1240,8 @@ private module MkStage<StageSig PrevStage> {
     );
 
     predicate flowOutOfCall(
-      DataFlowCall call, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow, Configuration config
+      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
+      Configuration config
     );
 
     predicate flowIntoCall(
@@ -1247,14 +1266,16 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate flowThroughOutOfCall(
-      DataFlowCall call, CcCall ccc, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow,
-      Configuration config
+      DataFlowCall call, CcCall ccc, RetNodeEx ret, ReturnKindExt kind, NodeEx out,
+      boolean allowsFieldFlow, Configuration config
     ) {
-      flowOutOfCall(call, ret, out, allowsFieldFlow, pragma[only_bind_into](config)) and
-      PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
-      PrevStage::parameterMayFlowThrough(_, ret.getEnclosingCallable(), _,
-        pragma[only_bind_into](config)) and
-      matchesCall(ccc, call)
+      exists(ReturnPosition pos |
+        flowOutOfCall(call, ret, pos, out, allowsFieldFlow, pragma[only_bind_into](config)) and
+        kind = pos.getKind() and
+        PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
+        PrevStage::returnMayFlowThrough(ret, pos, pragma[only_bind_into](config)) and
+        matchesCall(ccc, call)
+      )
     }
 
     /**
@@ -1262,29 +1283,32 @@ private module MkStage<StageSig PrevStage> {
      * configuration `config`.
      *
      * The call context `cc` records whether the node is reached through an
-     * argument in a call, and if so, `argAp` records the access path of that
-     * argument.
+     * argument in a call, and if so, `summaryCtx` and `argAp` record the
+     * corresponding parameter and access path of that argument, respectively.
      */
     pragma[nomagic]
     additional predicate fwdFlow(
-      NodeEx node, FlowState state, Cc cc, ApOption argAp, Ap ap, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      Configuration config
     ) {
-      fwdFlow0(node, state, cc, argAp, ap, config) and
+      fwdFlow0(node, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::revFlow(node, state, unbindApa(getApprox(ap)), config) and
       filter(node, state, ap, config)
     }
 
     pragma[nomagic]
     private predicate fwdFlow0(
-      NodeEx node, FlowState state, Cc cc, ApOption argAp, Ap ap, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      Configuration config
     ) {
       sourceNode(node, state, config) and
       (if hasSourceCallCtx(config) then cc = ccSomeCall() else cc = ccNone()) and
       argAp = apNone() and
+      summaryCtx = TParamNodeNone() and
       ap = getApNil(node)
       or
       exists(NodeEx mid, FlowState state0, Ap ap0, LocalCc localCc |
-        fwdFlow(mid, state0, cc, argAp, ap0, config) and
+        fwdFlow(mid, state0, cc, summaryCtx, argAp, ap0, config) and
         localCc = getLocalCc(mid, cc)
       |
         localStep(mid, state0, node, state, true, _, config, localCc) and
@@ -1295,65 +1319,72 @@ private module MkStage<StageSig PrevStage> {
       )
       or
       exists(NodeEx mid |
-        fwdFlow(mid, pragma[only_bind_into](state), _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, pragma[only_bind_into](config)) and
         jumpStep(mid, node, config) and
         cc = ccNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone()
       )
       or
       exists(NodeEx mid, ApNil nil |
-        fwdFlow(mid, state, _, _, nil, pragma[only_bind_into](config)) and
+        fwdFlow(mid, state, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStep(mid, node, config) and
         cc = ccNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone() and
         ap = getApNil(node)
       )
       or
       exists(NodeEx mid, FlowState state0, ApNil nil |
-        fwdFlow(mid, state0, _, _, nil, pragma[only_bind_into](config)) and
+        fwdFlow(mid, state0, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStateStep(mid, state0, node, state, config) and
         cc = ccNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone() and
         ap = getApNil(node)
       )
       or
       // store
       exists(TypedContent tc, Ap ap0 |
-        fwdFlowStore(_, ap0, tc, node, state, cc, argAp, config) and
+        fwdFlowStore(_, ap0, tc, node, state, cc, summaryCtx, argAp, config) and
         ap = apCons(tc, ap0)
       )
       or
       // read
       exists(Ap ap0, Content c |
-        fwdFlowRead(ap0, c, _, node, state, cc, argAp, config) and
+        fwdFlowRead(ap0, c, _, node, state, cc, summaryCtx, argAp, config) and
         fwdFlowConsCand(ap0, c, ap, config)
       )
       or
       // flow into a callable
       exists(ApApprox apa |
-        fwdFlowIn(_, node, state, _, cc, _, ap, config) and
+        fwdFlowIn(_, node, state, _, cc, _, _, ap, config) and
         apa = getApprox(ap) and
-        if PrevStage::parameterMayFlowThrough(node, _, apa, config)
-        then argAp = apSome(ap)
-        else argAp = apNone()
+        if PrevStage::parameterMayFlowThrough(node, apa, config)
+        then (
+          summaryCtx = TParamNodeSome(node.asNode()) and argAp = apSome(ap)
+        ) else (
+          summaryCtx = TParamNodeNone() and argAp = apNone()
+        )
       )
       or
       // flow out of a callable
-      fwdFlowOutNotFromArg(node, state, cc, argAp, ap, config)
+      fwdFlowOutNotFromArg(node, state, cc, summaryCtx, argAp, ap, config)
       or
-      exists(DataFlowCall call, Ap argAp0 |
-        fwdFlowOutFromArg(call, node, state, argAp0, ap, config) and
-        fwdFlowIsEntered(call, cc, argAp, argAp0, config)
+      // flow through a callable
+      exists(DataFlowCall call, ParamNode summaryCtx0, Ap argAp0 |
+        fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, config) and
+        fwdFlowIsEntered(call, cc, summaryCtx, argAp, summaryCtx0, argAp0, config)
       )
     }
 
     pragma[nomagic]
     private predicate fwdFlowStore(
-      NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc, ApOption argAp,
-      Configuration config
+      NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc,
+      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
     ) {
       exists(DataFlowType contentType |
-        fwdFlow(node1, state, cc, argAp, ap1, config) and
+        fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, config) and
         PrevStage::storeStepCand(node1, unbindApa(getApprox(ap1)), tc, node2, contentType, config) and
         typecheckStore(ap1, contentType)
       )
@@ -1366,7 +1397,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowConsCand(Ap cons, Content c, Ap tail, Configuration config) {
       exists(TypedContent tc |
-        fwdFlowStore(_, tail, tc, _, _, _, _, config) and
+        fwdFlowStore(_, tail, tc, _, _, _, _, _, config) and
         tc.getContent() = c and
         cons = apCons(tc, tail)
       )
@@ -1374,21 +1405,21 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowRead(
-      Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc, ApOption argAp,
-      Configuration config
+      Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc,
+      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
     ) {
-      fwdFlow(node1, state, cc, argAp, ap, config) and
+      fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, c, node2, config) and
       getHeadContent(ap) = c
     }
 
     pragma[nomagic]
     private predicate fwdFlowIn(
-      DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, Cc innercc, ApOption argAp,
-      Ap ap, Configuration config
+      DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, Cc innercc,
+      ParamNodeOption summaryCtx, ApOption argAp, Ap ap, Configuration config
     ) {
       exists(ArgNodeEx arg, boolean allowsFieldFlow |
-        fwdFlow(arg, state, outercc, argAp, ap, config) and
+        fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, config) and
         flowIntoCall(call, arg, p, allowsFieldFlow, config) and
         innercc = getCallContextCall(call, p.getEnclosingCallable(), outercc) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
@@ -1397,14 +1428,15 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowOutNotFromArg(
-      NodeEx out, FlowState state, Cc ccOut, ApOption argAp, Ap ap, Configuration config
+      NodeEx out, FlowState state, Cc ccOut, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      Configuration config
     ) {
       exists(
         DataFlowCall call, RetNodeEx ret, boolean allowsFieldFlow, CcNoCall innercc,
         DataFlowCallable inner
       |
-        fwdFlow(ret, state, innercc, argAp, ap, config) and
-        flowOutOfCall(call, ret, out, allowsFieldFlow, config) and
+        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, config) and
+        flowOutOfCall(call, ret, _, out, allowsFieldFlow, config) and
         inner = ret.getEnclosingCallable() and
         ccOut = getCallContextReturn(inner, call, innercc) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
@@ -1413,12 +1445,14 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowOutFromArg(
-      DataFlowCall call, NodeEx out, FlowState state, Ap argAp, Ap ap, Configuration config
+      DataFlowCall call, NodeEx out, FlowState state, ParamNode summaryCtx, Ap argAp, Ap ap,
+      Configuration config
     ) {
-      exists(RetNodeEx ret, boolean allowsFieldFlow, CcCall ccc |
-        fwdFlow(ret, state, ccc, apSome(argAp), ap, config) and
-        flowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, config) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
+      exists(RetNodeEx ret, ReturnKindExt kind, boolean allowsFieldFlow, CcCall ccc |
+        fwdFlow(ret, state, ccc, TParamNodeSome(summaryCtx), apSome(argAp), ap, config) and
+        flowThroughOutOfCall(call, ccc, ret, kind, out, allowsFieldFlow, config) and
+        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
+        parameterFlowThroughAllowed(summaryCtx, kind)
       )
     }
 
@@ -1428,11 +1462,13 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate fwdFlowIsEntered(
-      DataFlowCall call, Cc cc, ApOption argAp, Ap ap, Configuration config
+      DataFlowCall call, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, ParamNode p, Ap ap,
+      Configuration config
     ) {
-      exists(ParamNodeEx p |
-        fwdFlowIn(call, p, _, cc, _, argAp, ap, config) and
-        PrevStage::parameterMayFlowThrough(p, _, unbindApa(getApprox(ap)), config)
+      exists(ParamNodeEx param |
+        fwdFlowIn(call, param, _, cc, _, summaryCtx, argAp, ap, config) and
+        PrevStage::parameterMayFlowThrough(param, unbindApa(getApprox(ap)), config) and
+        p = param.asNode()
       )
     }
 
@@ -1440,146 +1476,149 @@ private module MkStage<StageSig PrevStage> {
     private predicate storeStepFwd(
       NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, Ap ap2, Configuration config
     ) {
-      fwdFlowStore(node1, ap1, tc, node2, _, _, _, config) and
+      fwdFlowStore(node1, ap1, tc, node2, _, _, _, _, config) and
       ap2 = apCons(tc, ap1) and
-      fwdFlowRead(ap2, tc.getContent(), _, _, _, _, _, config)
+      fwdFlowRead(ap2, tc.getContent(), _, _, _, _, _, _, config)
     }
 
     private predicate readStepFwd(
       NodeEx n1, Ap ap1, Content c, NodeEx n2, Ap ap2, Configuration config
     ) {
-      fwdFlowRead(ap1, c, n1, n2, _, _, _, config) and
+      fwdFlowRead(ap1, c, n1, n2, _, _, _, _, config) and
       fwdFlowConsCand(ap1, c, ap2, config)
     }
 
     pragma[nomagic]
-    private predicate callMayFlowThroughFwd(DataFlowCall call, Configuration config) {
-      exists(Ap argAp0, NodeEx out, FlowState state, Cc cc, ApOption argAp, Ap ap |
-        fwdFlow(out, state, pragma[only_bind_into](cc), pragma[only_bind_into](argAp), ap,
-          pragma[only_bind_into](config)) and
-        fwdFlowOutFromArg(call, out, state, argAp0, ap, config) and
-        fwdFlowIsEntered(pragma[only_bind_into](call), pragma[only_bind_into](cc),
-          pragma[only_bind_into](argAp), pragma[only_bind_into](argAp0),
-          pragma[only_bind_into](config))
-      )
+    private predicate returnFlowsThrough(
+      RetNodeEx ret, ReturnPosition pos, FlowState state, CcCall ccc, ParamNode p, Ap argAp, Ap ap,
+      Configuration config
+    ) {
+      fwdFlow(ret, state, ccc, TParamNodeSome(p), apSome(argAp), ap, config) and
+      pos = ret.getReturnPosition() and
+      parameterFlowThroughAllowed(p, pos.getKind())
     }
 
     pragma[nomagic]
     private predicate flowThroughIntoCall(
       DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
     ) {
-      flowIntoCall(call, arg, p, allowsFieldFlow, config) and
-      fwdFlow(arg, _, _, _, _, pragma[only_bind_into](config)) and
-      PrevStage::parameterMayFlowThrough(p, _, _, pragma[only_bind_into](config)) and
-      callMayFlowThroughFwd(call, pragma[only_bind_into](config))
-    }
-
-    pragma[nomagic]
-    private predicate returnNodeMayFlowThrough(
-      RetNodeEx ret, FlowState state, Ap ap, Configuration config
-    ) {
-      fwdFlow(ret, state, any(CcCall ccc), apSome(_), ap, config)
+      flowIntoCall(call, pragma[only_bind_into](arg), pragma[only_bind_into](p), allowsFieldFlow,
+        pragma[only_bind_into](config)) and
+      fwdFlow(arg, _, _, _, _, _, pragma[only_bind_into](config)) and
+      returnFlowsThrough(_, _, _, _, p.asNode(), _, _, pragma[only_bind_into](config))
     }
 
     /**
      * Holds if `node` with access path `ap` is part of a path from a source to a
      * sink in the configuration `config`.
      *
-     * The Boolean `toReturn` records whether the node must be returned from the
-     * enclosing callable in order to reach a sink, and if so, `returnAp` records
-     * the access path of the returned value.
+     * The parameter `returnCtx` records whether (and how) the node must be returned
+     * from the enclosing callable in order to reach a sink, and if so, `returnAp`
+     * records the access path of the returned value.
      */
     pragma[nomagic]
     additional predicate revFlow(
-      NodeEx node, FlowState state, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
+      NodeEx node, FlowState state, ReturnCtx returnCtx, ApOption returnAp, Ap ap,
+      Configuration config
     ) {
-      revFlow0(node, state, toReturn, returnAp, ap, config) and
-      fwdFlow(node, state, _, _, ap, config)
+      revFlow0(node, state, returnCtx, returnAp, ap, config) and
+      fwdFlow(node, state, _, _, _, ap, config)
     }
 
     pragma[nomagic]
     private predicate revFlow0(
-      NodeEx node, FlowState state, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
+      NodeEx node, FlowState state, ReturnCtx returnCtx, ApOption returnAp, Ap ap,
+      Configuration config
     ) {
-      fwdFlow(node, state, _, _, ap, config) and
+      fwdFlow(node, state, _, _, _, ap, config) and
       sinkNode(node, state, config) and
-      (if hasSinkCallCtx(config) then toReturn = true else toReturn = false) and
+      (
+        if hasSinkCallCtx(config)
+        then returnCtx = TReturnCtxNoFlowThrough()
+        else returnCtx = TReturnCtxNone()
+      ) and
       returnAp = apNone() and
       ap instanceof ApNil
       or
       exists(NodeEx mid, FlowState state0 |
         localStep(node, state, mid, state0, true, _, config, _) and
-        revFlow(mid, state0, toReturn, returnAp, ap, config)
+        revFlow(mid, state0, returnCtx, returnAp, ap, config)
       )
       or
       exists(NodeEx mid, FlowState state0, ApNil nil |
-        fwdFlow(node, pragma[only_bind_into](state), _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(node, pragma[only_bind_into](state), _, _, _, ap, pragma[only_bind_into](config)) and
         localStep(node, pragma[only_bind_into](state), mid, state0, false, _, config, _) and
-        revFlow(mid, state0, toReturn, returnAp, nil, pragma[only_bind_into](config)) and
+        revFlow(mid, state0, returnCtx, returnAp, nil, pragma[only_bind_into](config)) and
         ap instanceof ApNil
       )
       or
       exists(NodeEx mid |
         jumpStep(node, mid, config) and
         revFlow(mid, state, _, _, ap, config) and
-        toReturn = false and
+        returnCtx = TReturnCtxNone() and
         returnAp = apNone()
       )
       or
       exists(NodeEx mid, ApNil nil |
-        fwdFlow(node, _, _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(node, _, _, _, _, ap, pragma[only_bind_into](config)) and
         additionalJumpStep(node, mid, config) and
         revFlow(pragma[only_bind_into](mid), state, _, _, nil, pragma[only_bind_into](config)) and
-        toReturn = false and
+        returnCtx = TReturnCtxNone() and
         returnAp = apNone() and
         ap instanceof ApNil
       )
       or
       exists(NodeEx mid, FlowState state0, ApNil nil |
-        fwdFlow(node, _, _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(node, _, _, _, _, ap, pragma[only_bind_into](config)) and
         additionalJumpStateStep(node, state, mid, state0, config) and
         revFlow(pragma[only_bind_into](mid), pragma[only_bind_into](state0), _, _, nil,
           pragma[only_bind_into](config)) and
-        toReturn = false and
+        returnCtx = TReturnCtxNone() and
         returnAp = apNone() and
         ap instanceof ApNil
       )
       or
       // store
       exists(Ap ap0, Content c |
-        revFlowStore(ap0, c, ap, node, state, _, _, toReturn, returnAp, config) and
+        revFlowStore(ap0, c, ap, node, state, _, _, returnCtx, returnAp, config) and
         revFlowConsCand(ap0, c, ap, config)
       )
       or
       // read
       exists(NodeEx mid, Ap ap0 |
-        revFlow(mid, state, toReturn, returnAp, ap0, config) and
+        revFlow(mid, state, returnCtx, returnAp, ap0, config) and
         readStepFwd(node, ap, _, mid, ap0, config)
       )
       or
       // flow into a callable
       revFlowInNotToReturn(node, state, returnAp, ap, config) and
-      toReturn = false
+      returnCtx = TReturnCtxNone()
       or
-      exists(DataFlowCall call, Ap returnAp0 |
-        revFlowInToReturn(call, node, state, returnAp0, ap, config) and
-        revFlowIsReturned(call, toReturn, returnAp, returnAp0, config)
+      // flow through a callable
+      exists(DataFlowCall call, ReturnPosition returnPos0, Ap returnAp0 |
+        revFlowInToReturn(call, node, state, returnPos0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnPos0, returnAp0, config)
       )
       or
       // flow out of a callable
-      revFlowOut(_, node, state, _, _, ap, config) and
-      toReturn = true and
-      if returnNodeMayFlowThrough(node, state, ap, config)
-      then returnAp = apSome(ap)
-      else returnAp = apNone()
+      exists(ReturnPosition pos |
+        revFlowOut(_, node, pos, state, _, _, ap, config) and
+        if returnFlowsThrough(node, pos, state, _, _, _, ap, config)
+        then (
+          returnCtx = TReturnCtxMaybeFlowThrough(pos) and
+          returnAp = apSome(ap)
+        ) else (
+          returnCtx = TReturnCtxNoFlowThrough() and returnAp = apNone()
+        )
+      )
     }
 
     pragma[nomagic]
     private predicate revFlowStore(
       Ap ap0, Content c, Ap ap, NodeEx node, FlowState state, TypedContent tc, NodeEx mid,
-      boolean toReturn, ApOption returnAp, Configuration config
+      ReturnCtx returnCtx, ApOption returnAp, Configuration config
     ) {
-      revFlow(mid, state, toReturn, returnAp, ap0, config) and
+      revFlow(mid, state, returnCtx, returnAp, ap0, config) and
       storeStepFwd(node, ap, tc, mid, ap0, config) and
       tc.getContent() = c
     }
@@ -1599,12 +1638,12 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate revFlowOut(
-      DataFlowCall call, RetNodeEx ret, FlowState state, boolean toReturn, ApOption returnAp, Ap ap,
-      Configuration config
+      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, FlowState state, ReturnCtx returnCtx,
+      ApOption returnAp, Ap ap, Configuration config
     ) {
       exists(NodeEx out, boolean allowsFieldFlow |
-        revFlow(out, state, toReturn, returnAp, ap, config) and
-        flowOutOfCall(call, ret, out, allowsFieldFlow, config) and
+        revFlow(out, state, returnCtx, returnAp, ap, config) and
+        flowOutOfCall(call, ret, pos, out, allowsFieldFlow, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
@@ -1614,7 +1653,7 @@ private module MkStage<StageSig PrevStage> {
       ArgNodeEx arg, FlowState state, ApOption returnAp, Ap ap, Configuration config
     ) {
       exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(p, state, false, returnAp, ap, config) and
+        revFlow(p, state, TReturnCtxNone(), returnAp, ap, config) and
         flowIntoCall(_, arg, p, allowsFieldFlow, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
@@ -1622,12 +1661,14 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate revFlowInToReturn(
-      DataFlowCall call, ArgNodeEx arg, FlowState state, Ap returnAp, Ap ap, Configuration config
+      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnPosition returnPos, Ap returnAp,
+      Ap ap, Configuration config
     ) {
       exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(p, state, true, apSome(returnAp), ap, config) and
+        revFlow(p, state, TReturnCtxMaybeFlowThrough(returnPos), apSome(returnAp), ap, config) and
         flowThroughIntoCall(call, arg, p, allowsFieldFlow, config) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
+        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
+        parameterFlowThroughAllowed(p.asNode(), returnPos.getKind())
       )
     }
 
@@ -1638,11 +1679,12 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate revFlowIsReturned(
-      DataFlowCall call, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
+      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnPosition pos, Ap ap,
+      Configuration config
     ) {
       exists(RetNodeEx ret, FlowState state, CcCall ccc |
-        revFlowOut(call, ret, state, toReturn, returnAp, ap, config) and
-        fwdFlow(ret, state, ccc, apSome(_), ap, config) and
+        revFlowOut(call, ret, pos, state, returnCtx, returnAp, ap, config) and
+        returnFlowsThrough(ret, pos, state, ccc, _, _, ap, config) and
         matchesCall(ccc, call)
       )
     }
@@ -1713,40 +1755,39 @@ private module MkStage<StageSig PrevStage> {
       validAp(ap, config)
     }
 
-    pragma[noinline]
-    private predicate parameterFlow(
-      ParamNodeEx p, Ap ap, Ap ap0, DataFlowCallable c, Configuration config
+    pragma[nomagic]
+    private predicate parameterFlowsThroughRev(
+      ParamNodeEx p, Ap ap, ReturnPosition returnPos, Configuration config
     ) {
-      revFlow(p, _, true, apSome(ap0), ap, config) and
-      c = p.getEnclosingCallable()
+      revFlow(p, _, TReturnCtxMaybeFlowThrough(returnPos), apSome(_), ap, config) and
+      parameterFlowThroughAllowed(p.asNode(), returnPos.getKind())
     }
 
-    predicate parameterMayFlowThrough(ParamNodeEx p, DataFlowCallable c, Ap ap, Configuration config) {
-      exists(RetNodeEx ret, FlowState state, Ap ap0, ReturnKindExt kind, ParameterPosition pos |
-        parameterFlow(p, ap, ap0, c, config) and
-        c = ret.getEnclosingCallable() and
-        revFlow(pragma[only_bind_into](ret), pragma[only_bind_into](state), true, apSome(_),
-          pragma[only_bind_into](ap0), pragma[only_bind_into](config)) and
-        fwdFlow(ret, state, any(CcCall ccc), apSome(ap), ap0, config) and
-        kind = ret.getKind() and
-        p.getPosition() = pos and
-        // we don't expect a parameter to return stored in itself, unless explicitly allowed
-        (
-          not kind.(ParamUpdateReturnKind).getPosition() = pos
-          or
-          p.allowParameterReturnInSelf()
-        )
+    pragma[nomagic]
+    predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
+      exists(RetNodeEx ret, ReturnPosition pos |
+        returnFlowsThrough(ret, pos, _, _, p.asNode(), ap, _, config) and
+        parameterFlowsThroughRev(p, ap, pos, config)
+      )
+    }
+
+    pragma[nomagic]
+    predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config) {
+      exists(ParamNodeEx p, Ap ap |
+        returnFlowsThrough(ret, pos, _, _, p.asNode(), ap, _, config) and
+        parameterFlowsThroughRev(p, ap, pos, config)
       )
     }
 
     pragma[nomagic]
     predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
       exists(
-        Ap returnAp0, ArgNodeEx arg, FlowState state, boolean toReturn, ApOption returnAp, Ap ap
+        ReturnPosition returnPos0, Ap returnAp0, ArgNodeEx arg, FlowState state,
+        ReturnCtx returnCtx, ApOption returnAp, Ap ap
       |
-        revFlow(arg, state, toReturn, returnAp, ap, config) and
-        revFlowInToReturn(call, arg, state, returnAp0, ap, config) and
-        revFlowIsReturned(call, toReturn, returnAp, returnAp0, config)
+        revFlow(arg, state, returnCtx, returnAp, ap, config) and
+        revFlowInToReturn(call, arg, state, returnPos0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnPos0, returnAp0, config)
       )
     }
 
@@ -1754,13 +1795,13 @@ private module MkStage<StageSig PrevStage> {
       boolean fwd, int nodes, int fields, int conscand, int states, int tuples, Configuration config
     ) {
       fwd = true and
-      nodes = count(NodeEx node | fwdFlow(node, _, _, _, _, config)) and
+      nodes = count(NodeEx node | fwdFlow(node, _, _, _, _, _, config)) and
       fields = count(TypedContent f0 | fwdConsCand(f0, _, config)) and
       conscand = count(TypedContent f0, Ap ap | fwdConsCand(f0, ap, config)) and
-      states = count(FlowState state | fwdFlow(_, state, _, _, _, config)) and
+      states = count(FlowState state | fwdFlow(_, state, _, _, _, _, config)) and
       tuples =
-        count(NodeEx n, FlowState state, Cc cc, ApOption argAp, Ap ap |
-          fwdFlow(n, state, cc, argAp, ap, config)
+        count(NodeEx n, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap |
+          fwdFlow(n, state, cc, summaryCtx, argAp, ap, config)
         )
       or
       fwd = false and
@@ -1769,8 +1810,8 @@ private module MkStage<StageSig PrevStage> {
       conscand = count(TypedContent f0, Ap ap | consCand(f0, ap, config)) and
       states = count(FlowState state | revFlow(_, state, _, _, _, config)) and
       tuples =
-        count(NodeEx n, FlowState state, boolean b, ApOption retAp, Ap ap |
-          revFlow(n, state, b, retAp, ap, config)
+        count(NodeEx n, FlowState state, ReturnCtx returnCtx, ApOption retAp, Ap ap |
+          revFlow(n, state, returnCtx, retAp, ap, config)
         )
     }
     /* End: Stage logic. */
@@ -1915,7 +1956,7 @@ private module Stage2Param implements MkStage<Stage1>::StageParam {
     exists(lcc)
   }
 
-  predicate flowOutOfCall = flowOutOfCallNodeCand1/5;
+  predicate flowOutOfCall = flowOutOfCallNodeCand1/6;
 
   predicate flowIntoCall = flowIntoCallNodeCand1/5;
 
@@ -1951,9 +1992,10 @@ private module Stage2 implements StageSig {
 
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand2(
-  DataFlowCall call, RetNodeEx node1, NodeEx node2, boolean allowsFieldFlow, Configuration config
+  DataFlowCall call, RetNodeEx node1, ReturnPosition pos, NodeEx node2, boolean allowsFieldFlow,
+  Configuration config
 ) {
-  flowOutOfCallNodeCand1(call, node1, node2, allowsFieldFlow, config) and
+  flowOutOfCallNodeCand1(call, node1, pos, node2, allowsFieldFlow, config) and
   Stage2::revFlow(node2, pragma[only_bind_into](config)) and
   Stage2::revFlowAlias(node1, pragma[only_bind_into](config))
 }
@@ -2021,8 +2063,8 @@ private module LocalFlowBigStep {
     exists(NodeEx next | Stage2::revFlow(next, state, config) |
       jumpStep(node, next, config) or
       additionalJumpStep(node, next, config) or
-      flowIntoCallNodeCand1(_, node, next, config) or
-      flowOutOfCallNodeCand1(_, node, next, config) or
+      flowIntoCallNodeCand2(_, node, next, _, config) or
+      flowOutOfCallNodeCand2(_, node, _, next, _, config) or
       Stage2::storeStepCand(node, _, _, next, _, config) or
       Stage2::readStepCand(node, _, next, config)
     )
@@ -2163,7 +2205,7 @@ private module Stage3Param implements MkStage<Stage2>::StageParam {
     localFlowBigStep(node1, state1, node2, state2, preservesValue, ap, config, _) and exists(lcc)
   }
 
-  predicate flowOutOfCall = flowOutOfCallNodeCand2/5;
+  predicate flowOutOfCall = flowOutOfCallNodeCand2/6;
 
   predicate flowIntoCall = flowIntoCallNodeCand2/5;
 
@@ -2233,8 +2275,9 @@ private predicate flowCandSummaryCtx(
   NodeEx node, FlowState state, AccessPathFront argApf, Configuration config
 ) {
   exists(AccessPathFront apf |
-    Stage3::revFlow(node, state, true, _, apf, config) and
-    Stage3::fwdFlow(node, state, any(Stage3::CcCall ccc), TAccessPathFrontSome(argApf), apf, config)
+    Stage3::revFlow(node, state, TReturnCtxMaybeFlowThrough(_), _, apf, config) and
+    Stage3::fwdFlow(node, state, any(Stage3::CcCall ccc), _, TAccessPathFrontSome(argApf), apf,
+      config)
   )
 }
 
@@ -2468,10 +2511,11 @@ private module Stage4Param implements MkStage<Stage3>::StageParam {
 
   pragma[nomagic]
   predicate flowOutOfCall(
-    DataFlowCall call, RetNodeEx node1, NodeEx node2, boolean allowsFieldFlow, Configuration config
+    DataFlowCall call, RetNodeEx node1, ReturnPosition pos, NodeEx node2, boolean allowsFieldFlow,
+    Configuration config
   ) {
     exists(FlowState state |
-      flowOutOfCallNodeCand2(call, node1, node2, allowsFieldFlow, config) and
+      flowOutOfCallNodeCand2(call, node1, pos, node2, allowsFieldFlow, config) and
       PrevStage::revFlow(node2, pragma[only_bind_into](state), _, pragma[only_bind_into](config)) and
       PrevStage::revFlowAlias(node1, pragma[only_bind_into](state), _,
         pragma[only_bind_into](config))
@@ -2508,13 +2552,13 @@ private Configuration unbindConf(Configuration conf) {
 
 pragma[nomagic]
 private predicate nodeMayUseSummary0(
-  NodeEx n, DataFlowCallable c, FlowState state, AccessPathApprox apa, Configuration config
+  NodeEx n, ParamNodeEx p, FlowState state, AccessPathApprox apa, Configuration config
 ) {
   exists(AccessPathApprox apa0 |
-    Stage4::parameterMayFlowThrough(_, c, _, _) and
-    Stage4::revFlow(n, state, true, _, apa0, config) and
-    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TAccessPathApproxSome(apa), apa0, config) and
-    n.getEnclosingCallable() = c
+    Stage4::parameterMayFlowThrough(p, _, _) and
+    Stage4::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
+    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TParamNodeSome(p.asNode()),
+      TAccessPathApproxSome(apa), apa0, config)
   )
 }
 
@@ -2522,9 +2566,9 @@ pragma[nomagic]
 private predicate nodeMayUseSummary(
   NodeEx n, FlowState state, AccessPathApprox apa, Configuration config
 ) {
-  exists(DataFlowCallable c |
-    Stage4::parameterMayFlowThrough(_, c, apa, config) and
-    nodeMayUseSummary0(n, c, state, apa, config)
+  exists(ParamNodeEx p |
+    Stage4::parameterMayFlowThrough(p, apa, config) and
+    nodeMayUseSummary0(n, p, state, apa, config)
   )
 }
 
@@ -2532,7 +2576,7 @@ private newtype TSummaryCtx =
   TSummaryCtxNone() or
   TSummaryCtxSome(ParamNodeEx p, FlowState state, AccessPath ap) {
     exists(Configuration config |
-      Stage4::parameterMayFlowThrough(p, _, ap.getApprox(), config) and
+      Stage4::parameterMayFlowThrough(p, ap.getApprox(), config) and
       Stage4::revFlow(p, state, _, config)
     )
   }
@@ -3453,17 +3497,11 @@ private predicate paramFlowsThrough(
   ReturnKindExt kind, FlowState state, CallContextCall cc, SummaryCtxSome sc, AccessPath ap,
   AccessPathApprox apa, Configuration config
 ) {
-  exists(PathNodeMid mid, RetNodeEx ret, ParameterPosition pos |
+  exists(PathNodeMid mid, RetNodeEx ret |
     pathNode(mid, ret, state, cc, sc, ap, config, _) and
     kind = ret.getKind() and
     apa = ap.getApprox() and
-    pos = sc.getParameterPos() and
-    // we don't expect a parameter to return stored in itself, unless explicitly allowed
-    (
-      not kind.(ParamUpdateReturnKind).getPosition() = pos
-      or
-      sc.getParamNode().allowParameterReturnInSelf()
-    )
+    parameterFlowThroughAllowed(sc.getParamNode().asNode(), kind)
   )
 }
 
diff --git a/cpp/ql/lib/experimental/semmle/code/cpp/ir/dataflow/internal/DataFlowImplCommon.qll b/cpp/ql/lib/experimental/semmle/code/cpp/ir/dataflow/internal/DataFlowImplCommon.qll
index ae9c6f3f12e..621ed34f9d0 100644
--- a/cpp/ql/lib/experimental/semmle/code/cpp/ir/dataflow/internal/DataFlowImplCommon.qll
+++ b/cpp/ql/lib/experimental/semmle/code/cpp/ir/dataflow/internal/DataFlowImplCommon.qll
@@ -915,6 +915,17 @@ private module Cached {
     TDataFlowCallNone() or
     TDataFlowCallSome(DataFlowCall call)
 
+  cached
+  newtype TParamNodeOption =
+    TParamNodeNone() or
+    TParamNodeSome(ParamNode p)
+
+  cached
+  newtype TReturnCtx =
+    TReturnCtxNone() or
+    TReturnCtxNoFlowThrough() or
+    TReturnCtxMaybeFlowThrough(ReturnPosition pos)
+
   cached
   newtype TTypedContent = MkTypedContent(Content c, DataFlowType t) { store(_, c, _, _, t) }
 
@@ -1304,6 +1315,44 @@ class DataFlowCallOption extends TDataFlowCallOption {
   }
 }
 
+/** An optional `ParamNode`. */
+class ParamNodeOption extends TParamNodeOption {
+  string toString() {
+    this = TParamNodeNone() and
+    result = "(none)"
+    or
+    exists(ParamNode p |
+      this = TParamNodeSome(p) and
+      result = p.toString()
+    )
+  }
+}
+
+/**
+ * A return context used to calculate flow summaries in reverse flow.
+ *
+ * The possible values are:
+ *
+ * - `TReturnCtxNone()`: no return flow.
+ * - `TReturnCtxNoFlowThrough()`: return flow, but flow through is not possible.
+ * - `TReturnCtxMaybeFlowThrough(ReturnPosition pos)`: return flow, of kind `pos`, and
+ *    flow through may be possible.
+ */
+class ReturnCtx extends TReturnCtx {
+  string toString() {
+    this = TReturnCtxNone() and
+    result = "(none)"
+    or
+    this = TReturnCtxNoFlowThrough() and
+    result = "(no flow through)"
+    or
+    exists(ReturnPosition pos |
+      this = TReturnCtxMaybeFlowThrough(pos) and
+      result = pos.toString()
+    )
+  }
+}
+
 /** A `Content` tagged with the type of a containing object. */
 class TypedContent extends MkTypedContent {
   private Content c;
diff --git a/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImpl.qll b/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImpl.qll
index 3c41b1876dc..a52ad110662 100644
--- a/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImpl.qll
+++ b/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImpl.qll
@@ -319,8 +319,6 @@ private class ParamNodeEx extends NodeEx {
   }
 
   ParameterPosition getPosition() { this.isParameterOf(_, result) }
-
-  predicate allowParameterReturnInSelf() { allowParameterReturnInSelfCached(this.asNode()) }
 }
 
 private class RetNodeEx extends NodeEx {
@@ -608,6 +606,21 @@ private predicate hasSinkCallCtx(Configuration config) {
   )
 }
 
+/**
+ * Holds if flow from `p` to a return node of kind `kind` is allowed.
+ *
+ * We don't expect a parameter to return stored in itself, unless
+ * explicitly allowed
+ */
+bindingset[p, kind]
+private predicate parameterFlowThroughAllowed(ParamNode p, ReturnKindExt kind) {
+  exists(ParameterPosition pos | p.isParameterOf(_, pos) |
+    not kind.(ParamUpdateReturnKind).getPosition() = pos
+    or
+    allowParameterReturnInSelfCached(p)
+  )
+}
+
 private module Stage1 implements StageSig {
   class Ap = Unit;
 
@@ -981,21 +994,22 @@ private module Stage1 implements StageSig {
    * candidate for the origin of a summary.
    */
   pragma[nomagic]
-  predicate parameterMayFlowThrough(ParamNodeEx p, DataFlowCallable c, Ap ap, Configuration config) {
-    exists(ReturnKindExt kind |
+  predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
+    exists(DataFlowCallable c, ReturnKindExt kind |
       throughFlowNodeCand(p, config) and
       returnFlowCallableNodeCand(c, kind, config) and
       p.getEnclosingCallable() = c and
       exists(ap) and
-      // we don't expect a parameter to return stored in itself, unless explicitly allowed
-      (
-        not kind.(ParamUpdateReturnKind).getPosition() = p.getPosition()
-        or
-        p.allowParameterReturnInSelf()
-      )
+      parameterFlowThroughAllowed(p.asNode(), kind)
     )
   }
 
+  pragma[nomagic]
+  predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config) {
+    throughFlowNodeCand(ret, config) and
+    pos = ret.getReturnPosition()
+  }
+
   pragma[nomagic]
   predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
     exists(ArgNodeEx arg, boolean toReturn |
@@ -1052,9 +1066,10 @@ private predicate viableReturnPosOutNodeCand1(
  */
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand1(
-  DataFlowCall call, RetNodeEx ret, NodeEx out, Configuration config
+  DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, Configuration config
 ) {
-  viableReturnPosOutNodeCand1(call, ret.getReturnPosition(), out, config) and
+  viableReturnPosOutNodeCand1(call, pos, out, config) and
+  pos = ret.getReturnPosition() and
   Stage1::revFlow(ret, config) and
   not outBarrier(ret, config) and
   not inBarrier(out, config)
@@ -1090,7 +1105,7 @@ private predicate flowIntoCallNodeCand1(
 private int branch(NodeEx n1, Configuration conf) {
   result =
     strictcount(NodeEx n |
-      flowOutOfCallNodeCand1(_, n1, n, conf) or flowIntoCallNodeCand1(_, n1, n, conf)
+      flowOutOfCallNodeCand1(_, n1, _, n, conf) or flowIntoCallNodeCand1(_, n1, n, conf)
     )
 }
 
@@ -1102,7 +1117,7 @@ private int branch(NodeEx n1, Configuration conf) {
 private int join(NodeEx n2, Configuration conf) {
   result =
     strictcount(NodeEx n |
-      flowOutOfCallNodeCand1(_, n, n2, conf) or flowIntoCallNodeCand1(_, n, n2, conf)
+      flowOutOfCallNodeCand1(_, n, _, n2, conf) or flowIntoCallNodeCand1(_, n, n2, conf)
     )
 }
 
@@ -1115,12 +1130,13 @@ private int join(NodeEx n2, Configuration conf) {
  */
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand1(
-  DataFlowCall call, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow, Configuration config
+  DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
+  Configuration config
 ) {
-  flowOutOfCallNodeCand1(call, ret, out, config) and
+  flowOutOfCallNodeCand1(call, ret, pos, out, pragma[only_bind_into](config)) and
   exists(int b, int j |
-    b = branch(ret, config) and
-    j = join(out, config) and
+    b = branch(ret, pragma[only_bind_into](config)) and
+    j = join(out, pragma[only_bind_into](config)) and
     if b.minimum(j) <= config.fieldFlowBranchLimit()
     then allowsFieldFlow = true
     else allowsFieldFlow = false
@@ -1156,7 +1172,9 @@ private signature module StageSig {
 
   predicate callMayFlowThroughRev(DataFlowCall call, Configuration config);
 
-  predicate parameterMayFlowThrough(ParamNodeEx p, DataFlowCallable c, Ap ap, Configuration config);
+  predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config);
+
+  predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config);
 
   predicate storeStepCand(
     NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, DataFlowType contentType,
@@ -1222,7 +1240,8 @@ private module MkStage<StageSig PrevStage> {
     );
 
     predicate flowOutOfCall(
-      DataFlowCall call, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow, Configuration config
+      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
+      Configuration config
     );
 
     predicate flowIntoCall(
@@ -1247,14 +1266,16 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate flowThroughOutOfCall(
-      DataFlowCall call, CcCall ccc, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow,
-      Configuration config
+      DataFlowCall call, CcCall ccc, RetNodeEx ret, ReturnKindExt kind, NodeEx out,
+      boolean allowsFieldFlow, Configuration config
     ) {
-      flowOutOfCall(call, ret, out, allowsFieldFlow, pragma[only_bind_into](config)) and
-      PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
-      PrevStage::parameterMayFlowThrough(_, ret.getEnclosingCallable(), _,
-        pragma[only_bind_into](config)) and
-      matchesCall(ccc, call)
+      exists(ReturnPosition pos |
+        flowOutOfCall(call, ret, pos, out, allowsFieldFlow, pragma[only_bind_into](config)) and
+        kind = pos.getKind() and
+        PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
+        PrevStage::returnMayFlowThrough(ret, pos, pragma[only_bind_into](config)) and
+        matchesCall(ccc, call)
+      )
     }
 
     /**
@@ -1262,29 +1283,32 @@ private module MkStage<StageSig PrevStage> {
      * configuration `config`.
      *
      * The call context `cc` records whether the node is reached through an
-     * argument in a call, and if so, `argAp` records the access path of that
-     * argument.
+     * argument in a call, and if so, `summaryCtx` and `argAp` record the
+     * corresponding parameter and access path of that argument, respectively.
      */
     pragma[nomagic]
     additional predicate fwdFlow(
-      NodeEx node, FlowState state, Cc cc, ApOption argAp, Ap ap, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      Configuration config
     ) {
-      fwdFlow0(node, state, cc, argAp, ap, config) and
+      fwdFlow0(node, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::revFlow(node, state, unbindApa(getApprox(ap)), config) and
       filter(node, state, ap, config)
     }
 
     pragma[nomagic]
     private predicate fwdFlow0(
-      NodeEx node, FlowState state, Cc cc, ApOption argAp, Ap ap, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      Configuration config
     ) {
       sourceNode(node, state, config) and
       (if hasSourceCallCtx(config) then cc = ccSomeCall() else cc = ccNone()) and
       argAp = apNone() and
+      summaryCtx = TParamNodeNone() and
       ap = getApNil(node)
       or
       exists(NodeEx mid, FlowState state0, Ap ap0, LocalCc localCc |
-        fwdFlow(mid, state0, cc, argAp, ap0, config) and
+        fwdFlow(mid, state0, cc, summaryCtx, argAp, ap0, config) and
         localCc = getLocalCc(mid, cc)
       |
         localStep(mid, state0, node, state, true, _, config, localCc) and
@@ -1295,65 +1319,72 @@ private module MkStage<StageSig PrevStage> {
       )
       or
       exists(NodeEx mid |
-        fwdFlow(mid, pragma[only_bind_into](state), _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, pragma[only_bind_into](config)) and
         jumpStep(mid, node, config) and
         cc = ccNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone()
       )
       or
       exists(NodeEx mid, ApNil nil |
-        fwdFlow(mid, state, _, _, nil, pragma[only_bind_into](config)) and
+        fwdFlow(mid, state, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStep(mid, node, config) and
         cc = ccNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone() and
         ap = getApNil(node)
       )
       or
       exists(NodeEx mid, FlowState state0, ApNil nil |
-        fwdFlow(mid, state0, _, _, nil, pragma[only_bind_into](config)) and
+        fwdFlow(mid, state0, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStateStep(mid, state0, node, state, config) and
         cc = ccNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone() and
         ap = getApNil(node)
       )
       or
       // store
       exists(TypedContent tc, Ap ap0 |
-        fwdFlowStore(_, ap0, tc, node, state, cc, argAp, config) and
+        fwdFlowStore(_, ap0, tc, node, state, cc, summaryCtx, argAp, config) and
         ap = apCons(tc, ap0)
       )
       or
       // read
       exists(Ap ap0, Content c |
-        fwdFlowRead(ap0, c, _, node, state, cc, argAp, config) and
+        fwdFlowRead(ap0, c, _, node, state, cc, summaryCtx, argAp, config) and
         fwdFlowConsCand(ap0, c, ap, config)
       )
       or
       // flow into a callable
       exists(ApApprox apa |
-        fwdFlowIn(_, node, state, _, cc, _, ap, config) and
+        fwdFlowIn(_, node, state, _, cc, _, _, ap, config) and
         apa = getApprox(ap) and
-        if PrevStage::parameterMayFlowThrough(node, _, apa, config)
-        then argAp = apSome(ap)
-        else argAp = apNone()
+        if PrevStage::parameterMayFlowThrough(node, apa, config)
+        then (
+          summaryCtx = TParamNodeSome(node.asNode()) and argAp = apSome(ap)
+        ) else (
+          summaryCtx = TParamNodeNone() and argAp = apNone()
+        )
       )
       or
       // flow out of a callable
-      fwdFlowOutNotFromArg(node, state, cc, argAp, ap, config)
+      fwdFlowOutNotFromArg(node, state, cc, summaryCtx, argAp, ap, config)
       or
-      exists(DataFlowCall call, Ap argAp0 |
-        fwdFlowOutFromArg(call, node, state, argAp0, ap, config) and
-        fwdFlowIsEntered(call, cc, argAp, argAp0, config)
+      // flow through a callable
+      exists(DataFlowCall call, ParamNode summaryCtx0, Ap argAp0 |
+        fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, config) and
+        fwdFlowIsEntered(call, cc, summaryCtx, argAp, summaryCtx0, argAp0, config)
       )
     }
 
     pragma[nomagic]
     private predicate fwdFlowStore(
-      NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc, ApOption argAp,
-      Configuration config
+      NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc,
+      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
     ) {
       exists(DataFlowType contentType |
-        fwdFlow(node1, state, cc, argAp, ap1, config) and
+        fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, config) and
         PrevStage::storeStepCand(node1, unbindApa(getApprox(ap1)), tc, node2, contentType, config) and
         typecheckStore(ap1, contentType)
       )
@@ -1366,7 +1397,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowConsCand(Ap cons, Content c, Ap tail, Configuration config) {
       exists(TypedContent tc |
-        fwdFlowStore(_, tail, tc, _, _, _, _, config) and
+        fwdFlowStore(_, tail, tc, _, _, _, _, _, config) and
         tc.getContent() = c and
         cons = apCons(tc, tail)
       )
@@ -1374,21 +1405,21 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowRead(
-      Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc, ApOption argAp,
-      Configuration config
+      Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc,
+      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
     ) {
-      fwdFlow(node1, state, cc, argAp, ap, config) and
+      fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, c, node2, config) and
       getHeadContent(ap) = c
     }
 
     pragma[nomagic]
     private predicate fwdFlowIn(
-      DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, Cc innercc, ApOption argAp,
-      Ap ap, Configuration config
+      DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, Cc innercc,
+      ParamNodeOption summaryCtx, ApOption argAp, Ap ap, Configuration config
     ) {
       exists(ArgNodeEx arg, boolean allowsFieldFlow |
-        fwdFlow(arg, state, outercc, argAp, ap, config) and
+        fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, config) and
         flowIntoCall(call, arg, p, allowsFieldFlow, config) and
         innercc = getCallContextCall(call, p.getEnclosingCallable(), outercc) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
@@ -1397,14 +1428,15 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowOutNotFromArg(
-      NodeEx out, FlowState state, Cc ccOut, ApOption argAp, Ap ap, Configuration config
+      NodeEx out, FlowState state, Cc ccOut, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      Configuration config
     ) {
       exists(
         DataFlowCall call, RetNodeEx ret, boolean allowsFieldFlow, CcNoCall innercc,
         DataFlowCallable inner
       |
-        fwdFlow(ret, state, innercc, argAp, ap, config) and
-        flowOutOfCall(call, ret, out, allowsFieldFlow, config) and
+        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, config) and
+        flowOutOfCall(call, ret, _, out, allowsFieldFlow, config) and
         inner = ret.getEnclosingCallable() and
         ccOut = getCallContextReturn(inner, call, innercc) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
@@ -1413,12 +1445,14 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowOutFromArg(
-      DataFlowCall call, NodeEx out, FlowState state, Ap argAp, Ap ap, Configuration config
+      DataFlowCall call, NodeEx out, FlowState state, ParamNode summaryCtx, Ap argAp, Ap ap,
+      Configuration config
     ) {
-      exists(RetNodeEx ret, boolean allowsFieldFlow, CcCall ccc |
-        fwdFlow(ret, state, ccc, apSome(argAp), ap, config) and
-        flowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, config) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
+      exists(RetNodeEx ret, ReturnKindExt kind, boolean allowsFieldFlow, CcCall ccc |
+        fwdFlow(ret, state, ccc, TParamNodeSome(summaryCtx), apSome(argAp), ap, config) and
+        flowThroughOutOfCall(call, ccc, ret, kind, out, allowsFieldFlow, config) and
+        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
+        parameterFlowThroughAllowed(summaryCtx, kind)
       )
     }
 
@@ -1428,11 +1462,13 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate fwdFlowIsEntered(
-      DataFlowCall call, Cc cc, ApOption argAp, Ap ap, Configuration config
+      DataFlowCall call, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, ParamNode p, Ap ap,
+      Configuration config
     ) {
-      exists(ParamNodeEx p |
-        fwdFlowIn(call, p, _, cc, _, argAp, ap, config) and
-        PrevStage::parameterMayFlowThrough(p, _, unbindApa(getApprox(ap)), config)
+      exists(ParamNodeEx param |
+        fwdFlowIn(call, param, _, cc, _, summaryCtx, argAp, ap, config) and
+        PrevStage::parameterMayFlowThrough(param, unbindApa(getApprox(ap)), config) and
+        p = param.asNode()
       )
     }
 
@@ -1440,146 +1476,149 @@ private module MkStage<StageSig PrevStage> {
     private predicate storeStepFwd(
       NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, Ap ap2, Configuration config
     ) {
-      fwdFlowStore(node1, ap1, tc, node2, _, _, _, config) and
+      fwdFlowStore(node1, ap1, tc, node2, _, _, _, _, config) and
       ap2 = apCons(tc, ap1) and
-      fwdFlowRead(ap2, tc.getContent(), _, _, _, _, _, config)
+      fwdFlowRead(ap2, tc.getContent(), _, _, _, _, _, _, config)
     }
 
     private predicate readStepFwd(
       NodeEx n1, Ap ap1, Content c, NodeEx n2, Ap ap2, Configuration config
     ) {
-      fwdFlowRead(ap1, c, n1, n2, _, _, _, config) and
+      fwdFlowRead(ap1, c, n1, n2, _, _, _, _, config) and
       fwdFlowConsCand(ap1, c, ap2, config)
     }
 
     pragma[nomagic]
-    private predicate callMayFlowThroughFwd(DataFlowCall call, Configuration config) {
-      exists(Ap argAp0, NodeEx out, FlowState state, Cc cc, ApOption argAp, Ap ap |
-        fwdFlow(out, state, pragma[only_bind_into](cc), pragma[only_bind_into](argAp), ap,
-          pragma[only_bind_into](config)) and
-        fwdFlowOutFromArg(call, out, state, argAp0, ap, config) and
-        fwdFlowIsEntered(pragma[only_bind_into](call), pragma[only_bind_into](cc),
-          pragma[only_bind_into](argAp), pragma[only_bind_into](argAp0),
-          pragma[only_bind_into](config))
-      )
+    private predicate returnFlowsThrough(
+      RetNodeEx ret, ReturnPosition pos, FlowState state, CcCall ccc, ParamNode p, Ap argAp, Ap ap,
+      Configuration config
+    ) {
+      fwdFlow(ret, state, ccc, TParamNodeSome(p), apSome(argAp), ap, config) and
+      pos = ret.getReturnPosition() and
+      parameterFlowThroughAllowed(p, pos.getKind())
     }
 
     pragma[nomagic]
     private predicate flowThroughIntoCall(
       DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
     ) {
-      flowIntoCall(call, arg, p, allowsFieldFlow, config) and
-      fwdFlow(arg, _, _, _, _, pragma[only_bind_into](config)) and
-      PrevStage::parameterMayFlowThrough(p, _, _, pragma[only_bind_into](config)) and
-      callMayFlowThroughFwd(call, pragma[only_bind_into](config))
-    }
-
-    pragma[nomagic]
-    private predicate returnNodeMayFlowThrough(
-      RetNodeEx ret, FlowState state, Ap ap, Configuration config
-    ) {
-      fwdFlow(ret, state, any(CcCall ccc), apSome(_), ap, config)
+      flowIntoCall(call, pragma[only_bind_into](arg), pragma[only_bind_into](p), allowsFieldFlow,
+        pragma[only_bind_into](config)) and
+      fwdFlow(arg, _, _, _, _, _, pragma[only_bind_into](config)) and
+      returnFlowsThrough(_, _, _, _, p.asNode(), _, _, pragma[only_bind_into](config))
     }
 
     /**
      * Holds if `node` with access path `ap` is part of a path from a source to a
      * sink in the configuration `config`.
      *
-     * The Boolean `toReturn` records whether the node must be returned from the
-     * enclosing callable in order to reach a sink, and if so, `returnAp` records
-     * the access path of the returned value.
+     * The parameter `returnCtx` records whether (and how) the node must be returned
+     * from the enclosing callable in order to reach a sink, and if so, `returnAp`
+     * records the access path of the returned value.
      */
     pragma[nomagic]
     additional predicate revFlow(
-      NodeEx node, FlowState state, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
+      NodeEx node, FlowState state, ReturnCtx returnCtx, ApOption returnAp, Ap ap,
+      Configuration config
     ) {
-      revFlow0(node, state, toReturn, returnAp, ap, config) and
-      fwdFlow(node, state, _, _, ap, config)
+      revFlow0(node, state, returnCtx, returnAp, ap, config) and
+      fwdFlow(node, state, _, _, _, ap, config)
     }
 
     pragma[nomagic]
     private predicate revFlow0(
-      NodeEx node, FlowState state, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
+      NodeEx node, FlowState state, ReturnCtx returnCtx, ApOption returnAp, Ap ap,
+      Configuration config
     ) {
-      fwdFlow(node, state, _, _, ap, config) and
+      fwdFlow(node, state, _, _, _, ap, config) and
       sinkNode(node, state, config) and
-      (if hasSinkCallCtx(config) then toReturn = true else toReturn = false) and
+      (
+        if hasSinkCallCtx(config)
+        then returnCtx = TReturnCtxNoFlowThrough()
+        else returnCtx = TReturnCtxNone()
+      ) and
       returnAp = apNone() and
       ap instanceof ApNil
       or
       exists(NodeEx mid, FlowState state0 |
         localStep(node, state, mid, state0, true, _, config, _) and
-        revFlow(mid, state0, toReturn, returnAp, ap, config)
+        revFlow(mid, state0, returnCtx, returnAp, ap, config)
       )
       or
       exists(NodeEx mid, FlowState state0, ApNil nil |
-        fwdFlow(node, pragma[only_bind_into](state), _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(node, pragma[only_bind_into](state), _, _, _, ap, pragma[only_bind_into](config)) and
         localStep(node, pragma[only_bind_into](state), mid, state0, false, _, config, _) and
-        revFlow(mid, state0, toReturn, returnAp, nil, pragma[only_bind_into](config)) and
+        revFlow(mid, state0, returnCtx, returnAp, nil, pragma[only_bind_into](config)) and
         ap instanceof ApNil
       )
       or
       exists(NodeEx mid |
         jumpStep(node, mid, config) and
         revFlow(mid, state, _, _, ap, config) and
-        toReturn = false and
+        returnCtx = TReturnCtxNone() and
         returnAp = apNone()
       )
       or
       exists(NodeEx mid, ApNil nil |
-        fwdFlow(node, _, _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(node, _, _, _, _, ap, pragma[only_bind_into](config)) and
         additionalJumpStep(node, mid, config) and
         revFlow(pragma[only_bind_into](mid), state, _, _, nil, pragma[only_bind_into](config)) and
-        toReturn = false and
+        returnCtx = TReturnCtxNone() and
         returnAp = apNone() and
         ap instanceof ApNil
       )
       or
       exists(NodeEx mid, FlowState state0, ApNil nil |
-        fwdFlow(node, _, _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(node, _, _, _, _, ap, pragma[only_bind_into](config)) and
         additionalJumpStateStep(node, state, mid, state0, config) and
         revFlow(pragma[only_bind_into](mid), pragma[only_bind_into](state0), _, _, nil,
           pragma[only_bind_into](config)) and
-        toReturn = false and
+        returnCtx = TReturnCtxNone() and
         returnAp = apNone() and
         ap instanceof ApNil
       )
       or
       // store
       exists(Ap ap0, Content c |
-        revFlowStore(ap0, c, ap, node, state, _, _, toReturn, returnAp, config) and
+        revFlowStore(ap0, c, ap, node, state, _, _, returnCtx, returnAp, config) and
         revFlowConsCand(ap0, c, ap, config)
       )
       or
       // read
       exists(NodeEx mid, Ap ap0 |
-        revFlow(mid, state, toReturn, returnAp, ap0, config) and
+        revFlow(mid, state, returnCtx, returnAp, ap0, config) and
         readStepFwd(node, ap, _, mid, ap0, config)
       )
       or
       // flow into a callable
       revFlowInNotToReturn(node, state, returnAp, ap, config) and
-      toReturn = false
+      returnCtx = TReturnCtxNone()
       or
-      exists(DataFlowCall call, Ap returnAp0 |
-        revFlowInToReturn(call, node, state, returnAp0, ap, config) and
-        revFlowIsReturned(call, toReturn, returnAp, returnAp0, config)
+      // flow through a callable
+      exists(DataFlowCall call, ReturnPosition returnPos0, Ap returnAp0 |
+        revFlowInToReturn(call, node, state, returnPos0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnPos0, returnAp0, config)
       )
       or
       // flow out of a callable
-      revFlowOut(_, node, state, _, _, ap, config) and
-      toReturn = true and
-      if returnNodeMayFlowThrough(node, state, ap, config)
-      then returnAp = apSome(ap)
-      else returnAp = apNone()
+      exists(ReturnPosition pos |
+        revFlowOut(_, node, pos, state, _, _, ap, config) and
+        if returnFlowsThrough(node, pos, state, _, _, _, ap, config)
+        then (
+          returnCtx = TReturnCtxMaybeFlowThrough(pos) and
+          returnAp = apSome(ap)
+        ) else (
+          returnCtx = TReturnCtxNoFlowThrough() and returnAp = apNone()
+        )
+      )
     }
 
     pragma[nomagic]
     private predicate revFlowStore(
       Ap ap0, Content c, Ap ap, NodeEx node, FlowState state, TypedContent tc, NodeEx mid,
-      boolean toReturn, ApOption returnAp, Configuration config
+      ReturnCtx returnCtx, ApOption returnAp, Configuration config
     ) {
-      revFlow(mid, state, toReturn, returnAp, ap0, config) and
+      revFlow(mid, state, returnCtx, returnAp, ap0, config) and
       storeStepFwd(node, ap, tc, mid, ap0, config) and
       tc.getContent() = c
     }
@@ -1599,12 +1638,12 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate revFlowOut(
-      DataFlowCall call, RetNodeEx ret, FlowState state, boolean toReturn, ApOption returnAp, Ap ap,
-      Configuration config
+      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, FlowState state, ReturnCtx returnCtx,
+      ApOption returnAp, Ap ap, Configuration config
     ) {
       exists(NodeEx out, boolean allowsFieldFlow |
-        revFlow(out, state, toReturn, returnAp, ap, config) and
-        flowOutOfCall(call, ret, out, allowsFieldFlow, config) and
+        revFlow(out, state, returnCtx, returnAp, ap, config) and
+        flowOutOfCall(call, ret, pos, out, allowsFieldFlow, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
@@ -1614,7 +1653,7 @@ private module MkStage<StageSig PrevStage> {
       ArgNodeEx arg, FlowState state, ApOption returnAp, Ap ap, Configuration config
     ) {
       exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(p, state, false, returnAp, ap, config) and
+        revFlow(p, state, TReturnCtxNone(), returnAp, ap, config) and
         flowIntoCall(_, arg, p, allowsFieldFlow, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
@@ -1622,12 +1661,14 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate revFlowInToReturn(
-      DataFlowCall call, ArgNodeEx arg, FlowState state, Ap returnAp, Ap ap, Configuration config
+      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnPosition returnPos, Ap returnAp,
+      Ap ap, Configuration config
     ) {
       exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(p, state, true, apSome(returnAp), ap, config) and
+        revFlow(p, state, TReturnCtxMaybeFlowThrough(returnPos), apSome(returnAp), ap, config) and
         flowThroughIntoCall(call, arg, p, allowsFieldFlow, config) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
+        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
+        parameterFlowThroughAllowed(p.asNode(), returnPos.getKind())
       )
     }
 
@@ -1638,11 +1679,12 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate revFlowIsReturned(
-      DataFlowCall call, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
+      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnPosition pos, Ap ap,
+      Configuration config
     ) {
       exists(RetNodeEx ret, FlowState state, CcCall ccc |
-        revFlowOut(call, ret, state, toReturn, returnAp, ap, config) and
-        fwdFlow(ret, state, ccc, apSome(_), ap, config) and
+        revFlowOut(call, ret, pos, state, returnCtx, returnAp, ap, config) and
+        returnFlowsThrough(ret, pos, state, ccc, _, _, ap, config) and
         matchesCall(ccc, call)
       )
     }
@@ -1713,40 +1755,39 @@ private module MkStage<StageSig PrevStage> {
       validAp(ap, config)
     }
 
-    pragma[noinline]
-    private predicate parameterFlow(
-      ParamNodeEx p, Ap ap, Ap ap0, DataFlowCallable c, Configuration config
+    pragma[nomagic]
+    private predicate parameterFlowsThroughRev(
+      ParamNodeEx p, Ap ap, ReturnPosition returnPos, Configuration config
     ) {
-      revFlow(p, _, true, apSome(ap0), ap, config) and
-      c = p.getEnclosingCallable()
+      revFlow(p, _, TReturnCtxMaybeFlowThrough(returnPos), apSome(_), ap, config) and
+      parameterFlowThroughAllowed(p.asNode(), returnPos.getKind())
     }
 
-    predicate parameterMayFlowThrough(ParamNodeEx p, DataFlowCallable c, Ap ap, Configuration config) {
-      exists(RetNodeEx ret, FlowState state, Ap ap0, ReturnKindExt kind, ParameterPosition pos |
-        parameterFlow(p, ap, ap0, c, config) and
-        c = ret.getEnclosingCallable() and
-        revFlow(pragma[only_bind_into](ret), pragma[only_bind_into](state), true, apSome(_),
-          pragma[only_bind_into](ap0), pragma[only_bind_into](config)) and
-        fwdFlow(ret, state, any(CcCall ccc), apSome(ap), ap0, config) and
-        kind = ret.getKind() and
-        p.getPosition() = pos and
-        // we don't expect a parameter to return stored in itself, unless explicitly allowed
-        (
-          not kind.(ParamUpdateReturnKind).getPosition() = pos
-          or
-          p.allowParameterReturnInSelf()
-        )
+    pragma[nomagic]
+    predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
+      exists(RetNodeEx ret, ReturnPosition pos |
+        returnFlowsThrough(ret, pos, _, _, p.asNode(), ap, _, config) and
+        parameterFlowsThroughRev(p, ap, pos, config)
+      )
+    }
+
+    pragma[nomagic]
+    predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config) {
+      exists(ParamNodeEx p, Ap ap |
+        returnFlowsThrough(ret, pos, _, _, p.asNode(), ap, _, config) and
+        parameterFlowsThroughRev(p, ap, pos, config)
       )
     }
 
     pragma[nomagic]
     predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
       exists(
-        Ap returnAp0, ArgNodeEx arg, FlowState state, boolean toReturn, ApOption returnAp, Ap ap
+        ReturnPosition returnPos0, Ap returnAp0, ArgNodeEx arg, FlowState state,
+        ReturnCtx returnCtx, ApOption returnAp, Ap ap
       |
-        revFlow(arg, state, toReturn, returnAp, ap, config) and
-        revFlowInToReturn(call, arg, state, returnAp0, ap, config) and
-        revFlowIsReturned(call, toReturn, returnAp, returnAp0, config)
+        revFlow(arg, state, returnCtx, returnAp, ap, config) and
+        revFlowInToReturn(call, arg, state, returnPos0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnPos0, returnAp0, config)
       )
     }
 
@@ -1754,13 +1795,13 @@ private module MkStage<StageSig PrevStage> {
       boolean fwd, int nodes, int fields, int conscand, int states, int tuples, Configuration config
     ) {
       fwd = true and
-      nodes = count(NodeEx node | fwdFlow(node, _, _, _, _, config)) and
+      nodes = count(NodeEx node | fwdFlow(node, _, _, _, _, _, config)) and
       fields = count(TypedContent f0 | fwdConsCand(f0, _, config)) and
       conscand = count(TypedContent f0, Ap ap | fwdConsCand(f0, ap, config)) and
-      states = count(FlowState state | fwdFlow(_, state, _, _, _, config)) and
+      states = count(FlowState state | fwdFlow(_, state, _, _, _, _, config)) and
       tuples =
-        count(NodeEx n, FlowState state, Cc cc, ApOption argAp, Ap ap |
-          fwdFlow(n, state, cc, argAp, ap, config)
+        count(NodeEx n, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap |
+          fwdFlow(n, state, cc, summaryCtx, argAp, ap, config)
         )
       or
       fwd = false and
@@ -1769,8 +1810,8 @@ private module MkStage<StageSig PrevStage> {
       conscand = count(TypedContent f0, Ap ap | consCand(f0, ap, config)) and
       states = count(FlowState state | revFlow(_, state, _, _, _, config)) and
       tuples =
-        count(NodeEx n, FlowState state, boolean b, ApOption retAp, Ap ap |
-          revFlow(n, state, b, retAp, ap, config)
+        count(NodeEx n, FlowState state, ReturnCtx returnCtx, ApOption retAp, Ap ap |
+          revFlow(n, state, returnCtx, retAp, ap, config)
         )
     }
     /* End: Stage logic. */
@@ -1915,7 +1956,7 @@ private module Stage2Param implements MkStage<Stage1>::StageParam {
     exists(lcc)
   }
 
-  predicate flowOutOfCall = flowOutOfCallNodeCand1/5;
+  predicate flowOutOfCall = flowOutOfCallNodeCand1/6;
 
   predicate flowIntoCall = flowIntoCallNodeCand1/5;
 
@@ -1951,9 +1992,10 @@ private module Stage2 implements StageSig {
 
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand2(
-  DataFlowCall call, RetNodeEx node1, NodeEx node2, boolean allowsFieldFlow, Configuration config
+  DataFlowCall call, RetNodeEx node1, ReturnPosition pos, NodeEx node2, boolean allowsFieldFlow,
+  Configuration config
 ) {
-  flowOutOfCallNodeCand1(call, node1, node2, allowsFieldFlow, config) and
+  flowOutOfCallNodeCand1(call, node1, pos, node2, allowsFieldFlow, config) and
   Stage2::revFlow(node2, pragma[only_bind_into](config)) and
   Stage2::revFlowAlias(node1, pragma[only_bind_into](config))
 }
@@ -2021,8 +2063,8 @@ private module LocalFlowBigStep {
     exists(NodeEx next | Stage2::revFlow(next, state, config) |
       jumpStep(node, next, config) or
       additionalJumpStep(node, next, config) or
-      flowIntoCallNodeCand1(_, node, next, config) or
-      flowOutOfCallNodeCand1(_, node, next, config) or
+      flowIntoCallNodeCand2(_, node, next, _, config) or
+      flowOutOfCallNodeCand2(_, node, _, next, _, config) or
       Stage2::storeStepCand(node, _, _, next, _, config) or
       Stage2::readStepCand(node, _, next, config)
     )
@@ -2163,7 +2205,7 @@ private module Stage3Param implements MkStage<Stage2>::StageParam {
     localFlowBigStep(node1, state1, node2, state2, preservesValue, ap, config, _) and exists(lcc)
   }
 
-  predicate flowOutOfCall = flowOutOfCallNodeCand2/5;
+  predicate flowOutOfCall = flowOutOfCallNodeCand2/6;
 
   predicate flowIntoCall = flowIntoCallNodeCand2/5;
 
@@ -2233,8 +2275,9 @@ private predicate flowCandSummaryCtx(
   NodeEx node, FlowState state, AccessPathFront argApf, Configuration config
 ) {
   exists(AccessPathFront apf |
-    Stage3::revFlow(node, state, true, _, apf, config) and
-    Stage3::fwdFlow(node, state, any(Stage3::CcCall ccc), TAccessPathFrontSome(argApf), apf, config)
+    Stage3::revFlow(node, state, TReturnCtxMaybeFlowThrough(_), _, apf, config) and
+    Stage3::fwdFlow(node, state, any(Stage3::CcCall ccc), _, TAccessPathFrontSome(argApf), apf,
+      config)
   )
 }
 
@@ -2468,10 +2511,11 @@ private module Stage4Param implements MkStage<Stage3>::StageParam {
 
   pragma[nomagic]
   predicate flowOutOfCall(
-    DataFlowCall call, RetNodeEx node1, NodeEx node2, boolean allowsFieldFlow, Configuration config
+    DataFlowCall call, RetNodeEx node1, ReturnPosition pos, NodeEx node2, boolean allowsFieldFlow,
+    Configuration config
   ) {
     exists(FlowState state |
-      flowOutOfCallNodeCand2(call, node1, node2, allowsFieldFlow, config) and
+      flowOutOfCallNodeCand2(call, node1, pos, node2, allowsFieldFlow, config) and
       PrevStage::revFlow(node2, pragma[only_bind_into](state), _, pragma[only_bind_into](config)) and
       PrevStage::revFlowAlias(node1, pragma[only_bind_into](state), _,
         pragma[only_bind_into](config))
@@ -2508,13 +2552,13 @@ private Configuration unbindConf(Configuration conf) {
 
 pragma[nomagic]
 private predicate nodeMayUseSummary0(
-  NodeEx n, DataFlowCallable c, FlowState state, AccessPathApprox apa, Configuration config
+  NodeEx n, ParamNodeEx p, FlowState state, AccessPathApprox apa, Configuration config
 ) {
   exists(AccessPathApprox apa0 |
-    Stage4::parameterMayFlowThrough(_, c, _, _) and
-    Stage4::revFlow(n, state, true, _, apa0, config) and
-    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TAccessPathApproxSome(apa), apa0, config) and
-    n.getEnclosingCallable() = c
+    Stage4::parameterMayFlowThrough(p, _, _) and
+    Stage4::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
+    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TParamNodeSome(p.asNode()),
+      TAccessPathApproxSome(apa), apa0, config)
   )
 }
 
@@ -2522,9 +2566,9 @@ pragma[nomagic]
 private predicate nodeMayUseSummary(
   NodeEx n, FlowState state, AccessPathApprox apa, Configuration config
 ) {
-  exists(DataFlowCallable c |
-    Stage4::parameterMayFlowThrough(_, c, apa, config) and
-    nodeMayUseSummary0(n, c, state, apa, config)
+  exists(ParamNodeEx p |
+    Stage4::parameterMayFlowThrough(p, apa, config) and
+    nodeMayUseSummary0(n, p, state, apa, config)
   )
 }
 
@@ -2532,7 +2576,7 @@ private newtype TSummaryCtx =
   TSummaryCtxNone() or
   TSummaryCtxSome(ParamNodeEx p, FlowState state, AccessPath ap) {
     exists(Configuration config |
-      Stage4::parameterMayFlowThrough(p, _, ap.getApprox(), config) and
+      Stage4::parameterMayFlowThrough(p, ap.getApprox(), config) and
       Stage4::revFlow(p, state, _, config)
     )
   }
@@ -3453,17 +3497,11 @@ private predicate paramFlowsThrough(
   ReturnKindExt kind, FlowState state, CallContextCall cc, SummaryCtxSome sc, AccessPath ap,
   AccessPathApprox apa, Configuration config
 ) {
-  exists(PathNodeMid mid, RetNodeEx ret, ParameterPosition pos |
+  exists(PathNodeMid mid, RetNodeEx ret |
     pathNode(mid, ret, state, cc, sc, ap, config, _) and
     kind = ret.getKind() and
     apa = ap.getApprox() and
-    pos = sc.getParameterPos() and
-    // we don't expect a parameter to return stored in itself, unless explicitly allowed
-    (
-      not kind.(ParamUpdateReturnKind).getPosition() = pos
-      or
-      sc.getParamNode().allowParameterReturnInSelf()
-    )
+    parameterFlowThroughAllowed(sc.getParamNode().asNode(), kind)
   )
 }
 
diff --git a/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImpl2.qll b/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImpl2.qll
index 3c41b1876dc..a52ad110662 100644
--- a/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImpl2.qll
+++ b/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImpl2.qll
@@ -319,8 +319,6 @@ private class ParamNodeEx extends NodeEx {
   }
 
   ParameterPosition getPosition() { this.isParameterOf(_, result) }
-
-  predicate allowParameterReturnInSelf() { allowParameterReturnInSelfCached(this.asNode()) }
 }
 
 private class RetNodeEx extends NodeEx {
@@ -608,6 +606,21 @@ private predicate hasSinkCallCtx(Configuration config) {
   )
 }
 
+/**
+ * Holds if flow from `p` to a return node of kind `kind` is allowed.
+ *
+ * We don't expect a parameter to return stored in itself, unless
+ * explicitly allowed
+ */
+bindingset[p, kind]
+private predicate parameterFlowThroughAllowed(ParamNode p, ReturnKindExt kind) {
+  exists(ParameterPosition pos | p.isParameterOf(_, pos) |
+    not kind.(ParamUpdateReturnKind).getPosition() = pos
+    or
+    allowParameterReturnInSelfCached(p)
+  )
+}
+
 private module Stage1 implements StageSig {
   class Ap = Unit;
 
@@ -981,21 +994,22 @@ private module Stage1 implements StageSig {
    * candidate for the origin of a summary.
    */
   pragma[nomagic]
-  predicate parameterMayFlowThrough(ParamNodeEx p, DataFlowCallable c, Ap ap, Configuration config) {
-    exists(ReturnKindExt kind |
+  predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
+    exists(DataFlowCallable c, ReturnKindExt kind |
       throughFlowNodeCand(p, config) and
       returnFlowCallableNodeCand(c, kind, config) and
       p.getEnclosingCallable() = c and
       exists(ap) and
-      // we don't expect a parameter to return stored in itself, unless explicitly allowed
-      (
-        not kind.(ParamUpdateReturnKind).getPosition() = p.getPosition()
-        or
-        p.allowParameterReturnInSelf()
-      )
+      parameterFlowThroughAllowed(p.asNode(), kind)
     )
   }
 
+  pragma[nomagic]
+  predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config) {
+    throughFlowNodeCand(ret, config) and
+    pos = ret.getReturnPosition()
+  }
+
   pragma[nomagic]
   predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
     exists(ArgNodeEx arg, boolean toReturn |
@@ -1052,9 +1066,10 @@ private predicate viableReturnPosOutNodeCand1(
  */
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand1(
-  DataFlowCall call, RetNodeEx ret, NodeEx out, Configuration config
+  DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, Configuration config
 ) {
-  viableReturnPosOutNodeCand1(call, ret.getReturnPosition(), out, config) and
+  viableReturnPosOutNodeCand1(call, pos, out, config) and
+  pos = ret.getReturnPosition() and
   Stage1::revFlow(ret, config) and
   not outBarrier(ret, config) and
   not inBarrier(out, config)
@@ -1090,7 +1105,7 @@ private predicate flowIntoCallNodeCand1(
 private int branch(NodeEx n1, Configuration conf) {
   result =
     strictcount(NodeEx n |
-      flowOutOfCallNodeCand1(_, n1, n, conf) or flowIntoCallNodeCand1(_, n1, n, conf)
+      flowOutOfCallNodeCand1(_, n1, _, n, conf) or flowIntoCallNodeCand1(_, n1, n, conf)
     )
 }
 
@@ -1102,7 +1117,7 @@ private int branch(NodeEx n1, Configuration conf) {
 private int join(NodeEx n2, Configuration conf) {
   result =
     strictcount(NodeEx n |
-      flowOutOfCallNodeCand1(_, n, n2, conf) or flowIntoCallNodeCand1(_, n, n2, conf)
+      flowOutOfCallNodeCand1(_, n, _, n2, conf) or flowIntoCallNodeCand1(_, n, n2, conf)
     )
 }
 
@@ -1115,12 +1130,13 @@ private int join(NodeEx n2, Configuration conf) {
  */
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand1(
-  DataFlowCall call, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow, Configuration config
+  DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
+  Configuration config
 ) {
-  flowOutOfCallNodeCand1(call, ret, out, config) and
+  flowOutOfCallNodeCand1(call, ret, pos, out, pragma[only_bind_into](config)) and
   exists(int b, int j |
-    b = branch(ret, config) and
-    j = join(out, config) and
+    b = branch(ret, pragma[only_bind_into](config)) and
+    j = join(out, pragma[only_bind_into](config)) and
     if b.minimum(j) <= config.fieldFlowBranchLimit()
     then allowsFieldFlow = true
     else allowsFieldFlow = false
@@ -1156,7 +1172,9 @@ private signature module StageSig {
 
   predicate callMayFlowThroughRev(DataFlowCall call, Configuration config);
 
-  predicate parameterMayFlowThrough(ParamNodeEx p, DataFlowCallable c, Ap ap, Configuration config);
+  predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config);
+
+  predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config);
 
   predicate storeStepCand(
     NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, DataFlowType contentType,
@@ -1222,7 +1240,8 @@ private module MkStage<StageSig PrevStage> {
     );
 
     predicate flowOutOfCall(
-      DataFlowCall call, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow, Configuration config
+      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
+      Configuration config
     );
 
     predicate flowIntoCall(
@@ -1247,14 +1266,16 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate flowThroughOutOfCall(
-      DataFlowCall call, CcCall ccc, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow,
-      Configuration config
+      DataFlowCall call, CcCall ccc, RetNodeEx ret, ReturnKindExt kind, NodeEx out,
+      boolean allowsFieldFlow, Configuration config
     ) {
-      flowOutOfCall(call, ret, out, allowsFieldFlow, pragma[only_bind_into](config)) and
-      PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
-      PrevStage::parameterMayFlowThrough(_, ret.getEnclosingCallable(), _,
-        pragma[only_bind_into](config)) and
-      matchesCall(ccc, call)
+      exists(ReturnPosition pos |
+        flowOutOfCall(call, ret, pos, out, allowsFieldFlow, pragma[only_bind_into](config)) and
+        kind = pos.getKind() and
+        PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
+        PrevStage::returnMayFlowThrough(ret, pos, pragma[only_bind_into](config)) and
+        matchesCall(ccc, call)
+      )
     }
 
     /**
@@ -1262,29 +1283,32 @@ private module MkStage<StageSig PrevStage> {
      * configuration `config`.
      *
      * The call context `cc` records whether the node is reached through an
-     * argument in a call, and if so, `argAp` records the access path of that
-     * argument.
+     * argument in a call, and if so, `summaryCtx` and `argAp` record the
+     * corresponding parameter and access path of that argument, respectively.
      */
     pragma[nomagic]
     additional predicate fwdFlow(
-      NodeEx node, FlowState state, Cc cc, ApOption argAp, Ap ap, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      Configuration config
     ) {
-      fwdFlow0(node, state, cc, argAp, ap, config) and
+      fwdFlow0(node, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::revFlow(node, state, unbindApa(getApprox(ap)), config) and
       filter(node, state, ap, config)
     }
 
     pragma[nomagic]
     private predicate fwdFlow0(
-      NodeEx node, FlowState state, Cc cc, ApOption argAp, Ap ap, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      Configuration config
     ) {
       sourceNode(node, state, config) and
       (if hasSourceCallCtx(config) then cc = ccSomeCall() else cc = ccNone()) and
       argAp = apNone() and
+      summaryCtx = TParamNodeNone() and
       ap = getApNil(node)
       or
       exists(NodeEx mid, FlowState state0, Ap ap0, LocalCc localCc |
-        fwdFlow(mid, state0, cc, argAp, ap0, config) and
+        fwdFlow(mid, state0, cc, summaryCtx, argAp, ap0, config) and
         localCc = getLocalCc(mid, cc)
       |
         localStep(mid, state0, node, state, true, _, config, localCc) and
@@ -1295,65 +1319,72 @@ private module MkStage<StageSig PrevStage> {
       )
       or
       exists(NodeEx mid |
-        fwdFlow(mid, pragma[only_bind_into](state), _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, pragma[only_bind_into](config)) and
         jumpStep(mid, node, config) and
         cc = ccNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone()
       )
       or
       exists(NodeEx mid, ApNil nil |
-        fwdFlow(mid, state, _, _, nil, pragma[only_bind_into](config)) and
+        fwdFlow(mid, state, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStep(mid, node, config) and
         cc = ccNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone() and
         ap = getApNil(node)
       )
       or
       exists(NodeEx mid, FlowState state0, ApNil nil |
-        fwdFlow(mid, state0, _, _, nil, pragma[only_bind_into](config)) and
+        fwdFlow(mid, state0, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStateStep(mid, state0, node, state, config) and
         cc = ccNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone() and
         ap = getApNil(node)
       )
       or
       // store
       exists(TypedContent tc, Ap ap0 |
-        fwdFlowStore(_, ap0, tc, node, state, cc, argAp, config) and
+        fwdFlowStore(_, ap0, tc, node, state, cc, summaryCtx, argAp, config) and
         ap = apCons(tc, ap0)
       )
       or
       // read
       exists(Ap ap0, Content c |
-        fwdFlowRead(ap0, c, _, node, state, cc, argAp, config) and
+        fwdFlowRead(ap0, c, _, node, state, cc, summaryCtx, argAp, config) and
         fwdFlowConsCand(ap0, c, ap, config)
       )
       or
       // flow into a callable
       exists(ApApprox apa |
-        fwdFlowIn(_, node, state, _, cc, _, ap, config) and
+        fwdFlowIn(_, node, state, _, cc, _, _, ap, config) and
         apa = getApprox(ap) and
-        if PrevStage::parameterMayFlowThrough(node, _, apa, config)
-        then argAp = apSome(ap)
-        else argAp = apNone()
+        if PrevStage::parameterMayFlowThrough(node, apa, config)
+        then (
+          summaryCtx = TParamNodeSome(node.asNode()) and argAp = apSome(ap)
+        ) else (
+          summaryCtx = TParamNodeNone() and argAp = apNone()
+        )
       )
       or
       // flow out of a callable
-      fwdFlowOutNotFromArg(node, state, cc, argAp, ap, config)
+      fwdFlowOutNotFromArg(node, state, cc, summaryCtx, argAp, ap, config)
       or
-      exists(DataFlowCall call, Ap argAp0 |
-        fwdFlowOutFromArg(call, node, state, argAp0, ap, config) and
-        fwdFlowIsEntered(call, cc, argAp, argAp0, config)
+      // flow through a callable
+      exists(DataFlowCall call, ParamNode summaryCtx0, Ap argAp0 |
+        fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, config) and
+        fwdFlowIsEntered(call, cc, summaryCtx, argAp, summaryCtx0, argAp0, config)
       )
     }
 
     pragma[nomagic]
     private predicate fwdFlowStore(
-      NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc, ApOption argAp,
-      Configuration config
+      NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc,
+      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
     ) {
       exists(DataFlowType contentType |
-        fwdFlow(node1, state, cc, argAp, ap1, config) and
+        fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, config) and
         PrevStage::storeStepCand(node1, unbindApa(getApprox(ap1)), tc, node2, contentType, config) and
         typecheckStore(ap1, contentType)
       )
@@ -1366,7 +1397,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowConsCand(Ap cons, Content c, Ap tail, Configuration config) {
       exists(TypedContent tc |
-        fwdFlowStore(_, tail, tc, _, _, _, _, config) and
+        fwdFlowStore(_, tail, tc, _, _, _, _, _, config) and
         tc.getContent() = c and
         cons = apCons(tc, tail)
       )
@@ -1374,21 +1405,21 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowRead(
-      Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc, ApOption argAp,
-      Configuration config
+      Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc,
+      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
     ) {
-      fwdFlow(node1, state, cc, argAp, ap, config) and
+      fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, c, node2, config) and
       getHeadContent(ap) = c
     }
 
     pragma[nomagic]
     private predicate fwdFlowIn(
-      DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, Cc innercc, ApOption argAp,
-      Ap ap, Configuration config
+      DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, Cc innercc,
+      ParamNodeOption summaryCtx, ApOption argAp, Ap ap, Configuration config
     ) {
       exists(ArgNodeEx arg, boolean allowsFieldFlow |
-        fwdFlow(arg, state, outercc, argAp, ap, config) and
+        fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, config) and
         flowIntoCall(call, arg, p, allowsFieldFlow, config) and
         innercc = getCallContextCall(call, p.getEnclosingCallable(), outercc) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
@@ -1397,14 +1428,15 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowOutNotFromArg(
-      NodeEx out, FlowState state, Cc ccOut, ApOption argAp, Ap ap, Configuration config
+      NodeEx out, FlowState state, Cc ccOut, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      Configuration config
     ) {
       exists(
         DataFlowCall call, RetNodeEx ret, boolean allowsFieldFlow, CcNoCall innercc,
         DataFlowCallable inner
       |
-        fwdFlow(ret, state, innercc, argAp, ap, config) and
-        flowOutOfCall(call, ret, out, allowsFieldFlow, config) and
+        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, config) and
+        flowOutOfCall(call, ret, _, out, allowsFieldFlow, config) and
         inner = ret.getEnclosingCallable() and
         ccOut = getCallContextReturn(inner, call, innercc) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
@@ -1413,12 +1445,14 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowOutFromArg(
-      DataFlowCall call, NodeEx out, FlowState state, Ap argAp, Ap ap, Configuration config
+      DataFlowCall call, NodeEx out, FlowState state, ParamNode summaryCtx, Ap argAp, Ap ap,
+      Configuration config
     ) {
-      exists(RetNodeEx ret, boolean allowsFieldFlow, CcCall ccc |
-        fwdFlow(ret, state, ccc, apSome(argAp), ap, config) and
-        flowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, config) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
+      exists(RetNodeEx ret, ReturnKindExt kind, boolean allowsFieldFlow, CcCall ccc |
+        fwdFlow(ret, state, ccc, TParamNodeSome(summaryCtx), apSome(argAp), ap, config) and
+        flowThroughOutOfCall(call, ccc, ret, kind, out, allowsFieldFlow, config) and
+        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
+        parameterFlowThroughAllowed(summaryCtx, kind)
       )
     }
 
@@ -1428,11 +1462,13 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate fwdFlowIsEntered(
-      DataFlowCall call, Cc cc, ApOption argAp, Ap ap, Configuration config
+      DataFlowCall call, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, ParamNode p, Ap ap,
+      Configuration config
     ) {
-      exists(ParamNodeEx p |
-        fwdFlowIn(call, p, _, cc, _, argAp, ap, config) and
-        PrevStage::parameterMayFlowThrough(p, _, unbindApa(getApprox(ap)), config)
+      exists(ParamNodeEx param |
+        fwdFlowIn(call, param, _, cc, _, summaryCtx, argAp, ap, config) and
+        PrevStage::parameterMayFlowThrough(param, unbindApa(getApprox(ap)), config) and
+        p = param.asNode()
       )
     }
 
@@ -1440,146 +1476,149 @@ private module MkStage<StageSig PrevStage> {
     private predicate storeStepFwd(
       NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, Ap ap2, Configuration config
     ) {
-      fwdFlowStore(node1, ap1, tc, node2, _, _, _, config) and
+      fwdFlowStore(node1, ap1, tc, node2, _, _, _, _, config) and
       ap2 = apCons(tc, ap1) and
-      fwdFlowRead(ap2, tc.getContent(), _, _, _, _, _, config)
+      fwdFlowRead(ap2, tc.getContent(), _, _, _, _, _, _, config)
     }
 
     private predicate readStepFwd(
       NodeEx n1, Ap ap1, Content c, NodeEx n2, Ap ap2, Configuration config
     ) {
-      fwdFlowRead(ap1, c, n1, n2, _, _, _, config) and
+      fwdFlowRead(ap1, c, n1, n2, _, _, _, _, config) and
       fwdFlowConsCand(ap1, c, ap2, config)
     }
 
     pragma[nomagic]
-    private predicate callMayFlowThroughFwd(DataFlowCall call, Configuration config) {
-      exists(Ap argAp0, NodeEx out, FlowState state, Cc cc, ApOption argAp, Ap ap |
-        fwdFlow(out, state, pragma[only_bind_into](cc), pragma[only_bind_into](argAp), ap,
-          pragma[only_bind_into](config)) and
-        fwdFlowOutFromArg(call, out, state, argAp0, ap, config) and
-        fwdFlowIsEntered(pragma[only_bind_into](call), pragma[only_bind_into](cc),
-          pragma[only_bind_into](argAp), pragma[only_bind_into](argAp0),
-          pragma[only_bind_into](config))
-      )
+    private predicate returnFlowsThrough(
+      RetNodeEx ret, ReturnPosition pos, FlowState state, CcCall ccc, ParamNode p, Ap argAp, Ap ap,
+      Configuration config
+    ) {
+      fwdFlow(ret, state, ccc, TParamNodeSome(p), apSome(argAp), ap, config) and
+      pos = ret.getReturnPosition() and
+      parameterFlowThroughAllowed(p, pos.getKind())
     }
 
     pragma[nomagic]
     private predicate flowThroughIntoCall(
       DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
     ) {
-      flowIntoCall(call, arg, p, allowsFieldFlow, config) and
-      fwdFlow(arg, _, _, _, _, pragma[only_bind_into](config)) and
-      PrevStage::parameterMayFlowThrough(p, _, _, pragma[only_bind_into](config)) and
-      callMayFlowThroughFwd(call, pragma[only_bind_into](config))
-    }
-
-    pragma[nomagic]
-    private predicate returnNodeMayFlowThrough(
-      RetNodeEx ret, FlowState state, Ap ap, Configuration config
-    ) {
-      fwdFlow(ret, state, any(CcCall ccc), apSome(_), ap, config)
+      flowIntoCall(call, pragma[only_bind_into](arg), pragma[only_bind_into](p), allowsFieldFlow,
+        pragma[only_bind_into](config)) and
+      fwdFlow(arg, _, _, _, _, _, pragma[only_bind_into](config)) and
+      returnFlowsThrough(_, _, _, _, p.asNode(), _, _, pragma[only_bind_into](config))
     }
 
     /**
      * Holds if `node` with access path `ap` is part of a path from a source to a
      * sink in the configuration `config`.
      *
-     * The Boolean `toReturn` records whether the node must be returned from the
-     * enclosing callable in order to reach a sink, and if so, `returnAp` records
-     * the access path of the returned value.
+     * The parameter `returnCtx` records whether (and how) the node must be returned
+     * from the enclosing callable in order to reach a sink, and if so, `returnAp`
+     * records the access path of the returned value.
      */
     pragma[nomagic]
     additional predicate revFlow(
-      NodeEx node, FlowState state, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
+      NodeEx node, FlowState state, ReturnCtx returnCtx, ApOption returnAp, Ap ap,
+      Configuration config
     ) {
-      revFlow0(node, state, toReturn, returnAp, ap, config) and
-      fwdFlow(node, state, _, _, ap, config)
+      revFlow0(node, state, returnCtx, returnAp, ap, config) and
+      fwdFlow(node, state, _, _, _, ap, config)
     }
 
     pragma[nomagic]
     private predicate revFlow0(
-      NodeEx node, FlowState state, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
+      NodeEx node, FlowState state, ReturnCtx returnCtx, ApOption returnAp, Ap ap,
+      Configuration config
     ) {
-      fwdFlow(node, state, _, _, ap, config) and
+      fwdFlow(node, state, _, _, _, ap, config) and
       sinkNode(node, state, config) and
-      (if hasSinkCallCtx(config) then toReturn = true else toReturn = false) and
+      (
+        if hasSinkCallCtx(config)
+        then returnCtx = TReturnCtxNoFlowThrough()
+        else returnCtx = TReturnCtxNone()
+      ) and
       returnAp = apNone() and
       ap instanceof ApNil
       or
       exists(NodeEx mid, FlowState state0 |
         localStep(node, state, mid, state0, true, _, config, _) and
-        revFlow(mid, state0, toReturn, returnAp, ap, config)
+        revFlow(mid, state0, returnCtx, returnAp, ap, config)
       )
       or
       exists(NodeEx mid, FlowState state0, ApNil nil |
-        fwdFlow(node, pragma[only_bind_into](state), _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(node, pragma[only_bind_into](state), _, _, _, ap, pragma[only_bind_into](config)) and
         localStep(node, pragma[only_bind_into](state), mid, state0, false, _, config, _) and
-        revFlow(mid, state0, toReturn, returnAp, nil, pragma[only_bind_into](config)) and
+        revFlow(mid, state0, returnCtx, returnAp, nil, pragma[only_bind_into](config)) and
         ap instanceof ApNil
       )
       or
       exists(NodeEx mid |
         jumpStep(node, mid, config) and
         revFlow(mid, state, _, _, ap, config) and
-        toReturn = false and
+        returnCtx = TReturnCtxNone() and
         returnAp = apNone()
       )
       or
       exists(NodeEx mid, ApNil nil |
-        fwdFlow(node, _, _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(node, _, _, _, _, ap, pragma[only_bind_into](config)) and
         additionalJumpStep(node, mid, config) and
         revFlow(pragma[only_bind_into](mid), state, _, _, nil, pragma[only_bind_into](config)) and
-        toReturn = false and
+        returnCtx = TReturnCtxNone() and
         returnAp = apNone() and
         ap instanceof ApNil
       )
       or
       exists(NodeEx mid, FlowState state0, ApNil nil |
-        fwdFlow(node, _, _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(node, _, _, _, _, ap, pragma[only_bind_into](config)) and
         additionalJumpStateStep(node, state, mid, state0, config) and
         revFlow(pragma[only_bind_into](mid), pragma[only_bind_into](state0), _, _, nil,
           pragma[only_bind_into](config)) and
-        toReturn = false and
+        returnCtx = TReturnCtxNone() and
         returnAp = apNone() and
         ap instanceof ApNil
       )
       or
       // store
       exists(Ap ap0, Content c |
-        revFlowStore(ap0, c, ap, node, state, _, _, toReturn, returnAp, config) and
+        revFlowStore(ap0, c, ap, node, state, _, _, returnCtx, returnAp, config) and
         revFlowConsCand(ap0, c, ap, config)
       )
       or
       // read
       exists(NodeEx mid, Ap ap0 |
-        revFlow(mid, state, toReturn, returnAp, ap0, config) and
+        revFlow(mid, state, returnCtx, returnAp, ap0, config) and
         readStepFwd(node, ap, _, mid, ap0, config)
       )
       or
       // flow into a callable
       revFlowInNotToReturn(node, state, returnAp, ap, config) and
-      toReturn = false
+      returnCtx = TReturnCtxNone()
       or
-      exists(DataFlowCall call, Ap returnAp0 |
-        revFlowInToReturn(call, node, state, returnAp0, ap, config) and
-        revFlowIsReturned(call, toReturn, returnAp, returnAp0, config)
+      // flow through a callable
+      exists(DataFlowCall call, ReturnPosition returnPos0, Ap returnAp0 |
+        revFlowInToReturn(call, node, state, returnPos0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnPos0, returnAp0, config)
       )
       or
       // flow out of a callable
-      revFlowOut(_, node, state, _, _, ap, config) and
-      toReturn = true and
-      if returnNodeMayFlowThrough(node, state, ap, config)
-      then returnAp = apSome(ap)
-      else returnAp = apNone()
+      exists(ReturnPosition pos |
+        revFlowOut(_, node, pos, state, _, _, ap, config) and
+        if returnFlowsThrough(node, pos, state, _, _, _, ap, config)
+        then (
+          returnCtx = TReturnCtxMaybeFlowThrough(pos) and
+          returnAp = apSome(ap)
+        ) else (
+          returnCtx = TReturnCtxNoFlowThrough() and returnAp = apNone()
+        )
+      )
     }
 
     pragma[nomagic]
     private predicate revFlowStore(
       Ap ap0, Content c, Ap ap, NodeEx node, FlowState state, TypedContent tc, NodeEx mid,
-      boolean toReturn, ApOption returnAp, Configuration config
+      ReturnCtx returnCtx, ApOption returnAp, Configuration config
     ) {
-      revFlow(mid, state, toReturn, returnAp, ap0, config) and
+      revFlow(mid, state, returnCtx, returnAp, ap0, config) and
       storeStepFwd(node, ap, tc, mid, ap0, config) and
       tc.getContent() = c
     }
@@ -1599,12 +1638,12 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate revFlowOut(
-      DataFlowCall call, RetNodeEx ret, FlowState state, boolean toReturn, ApOption returnAp, Ap ap,
-      Configuration config
+      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, FlowState state, ReturnCtx returnCtx,
+      ApOption returnAp, Ap ap, Configuration config
     ) {
       exists(NodeEx out, boolean allowsFieldFlow |
-        revFlow(out, state, toReturn, returnAp, ap, config) and
-        flowOutOfCall(call, ret, out, allowsFieldFlow, config) and
+        revFlow(out, state, returnCtx, returnAp, ap, config) and
+        flowOutOfCall(call, ret, pos, out, allowsFieldFlow, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
@@ -1614,7 +1653,7 @@ private module MkStage<StageSig PrevStage> {
       ArgNodeEx arg, FlowState state, ApOption returnAp, Ap ap, Configuration config
     ) {
       exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(p, state, false, returnAp, ap, config) and
+        revFlow(p, state, TReturnCtxNone(), returnAp, ap, config) and
         flowIntoCall(_, arg, p, allowsFieldFlow, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
@@ -1622,12 +1661,14 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate revFlowInToReturn(
-      DataFlowCall call, ArgNodeEx arg, FlowState state, Ap returnAp, Ap ap, Configuration config
+      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnPosition returnPos, Ap returnAp,
+      Ap ap, Configuration config
     ) {
       exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(p, state, true, apSome(returnAp), ap, config) and
+        revFlow(p, state, TReturnCtxMaybeFlowThrough(returnPos), apSome(returnAp), ap, config) and
         flowThroughIntoCall(call, arg, p, allowsFieldFlow, config) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
+        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
+        parameterFlowThroughAllowed(p.asNode(), returnPos.getKind())
       )
     }
 
@@ -1638,11 +1679,12 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate revFlowIsReturned(
-      DataFlowCall call, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
+      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnPosition pos, Ap ap,
+      Configuration config
     ) {
       exists(RetNodeEx ret, FlowState state, CcCall ccc |
-        revFlowOut(call, ret, state, toReturn, returnAp, ap, config) and
-        fwdFlow(ret, state, ccc, apSome(_), ap, config) and
+        revFlowOut(call, ret, pos, state, returnCtx, returnAp, ap, config) and
+        returnFlowsThrough(ret, pos, state, ccc, _, _, ap, config) and
         matchesCall(ccc, call)
       )
     }
@@ -1713,40 +1755,39 @@ private module MkStage<StageSig PrevStage> {
       validAp(ap, config)
     }
 
-    pragma[noinline]
-    private predicate parameterFlow(
-      ParamNodeEx p, Ap ap, Ap ap0, DataFlowCallable c, Configuration config
+    pragma[nomagic]
+    private predicate parameterFlowsThroughRev(
+      ParamNodeEx p, Ap ap, ReturnPosition returnPos, Configuration config
     ) {
-      revFlow(p, _, true, apSome(ap0), ap, config) and
-      c = p.getEnclosingCallable()
+      revFlow(p, _, TReturnCtxMaybeFlowThrough(returnPos), apSome(_), ap, config) and
+      parameterFlowThroughAllowed(p.asNode(), returnPos.getKind())
     }
 
-    predicate parameterMayFlowThrough(ParamNodeEx p, DataFlowCallable c, Ap ap, Configuration config) {
-      exists(RetNodeEx ret, FlowState state, Ap ap0, ReturnKindExt kind, ParameterPosition pos |
-        parameterFlow(p, ap, ap0, c, config) and
-        c = ret.getEnclosingCallable() and
-        revFlow(pragma[only_bind_into](ret), pragma[only_bind_into](state), true, apSome(_),
-          pragma[only_bind_into](ap0), pragma[only_bind_into](config)) and
-        fwdFlow(ret, state, any(CcCall ccc), apSome(ap), ap0, config) and
-        kind = ret.getKind() and
-        p.getPosition() = pos and
-        // we don't expect a parameter to return stored in itself, unless explicitly allowed
-        (
-          not kind.(ParamUpdateReturnKind).getPosition() = pos
-          or
-          p.allowParameterReturnInSelf()
-        )
+    pragma[nomagic]
+    predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
+      exists(RetNodeEx ret, ReturnPosition pos |
+        returnFlowsThrough(ret, pos, _, _, p.asNode(), ap, _, config) and
+        parameterFlowsThroughRev(p, ap, pos, config)
+      )
+    }
+
+    pragma[nomagic]
+    predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config) {
+      exists(ParamNodeEx p, Ap ap |
+        returnFlowsThrough(ret, pos, _, _, p.asNode(), ap, _, config) and
+        parameterFlowsThroughRev(p, ap, pos, config)
       )
     }
 
     pragma[nomagic]
     predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
       exists(
-        Ap returnAp0, ArgNodeEx arg, FlowState state, boolean toReturn, ApOption returnAp, Ap ap
+        ReturnPosition returnPos0, Ap returnAp0, ArgNodeEx arg, FlowState state,
+        ReturnCtx returnCtx, ApOption returnAp, Ap ap
       |
-        revFlow(arg, state, toReturn, returnAp, ap, config) and
-        revFlowInToReturn(call, arg, state, returnAp0, ap, config) and
-        revFlowIsReturned(call, toReturn, returnAp, returnAp0, config)
+        revFlow(arg, state, returnCtx, returnAp, ap, config) and
+        revFlowInToReturn(call, arg, state, returnPos0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnPos0, returnAp0, config)
       )
     }
 
@@ -1754,13 +1795,13 @@ private module MkStage<StageSig PrevStage> {
       boolean fwd, int nodes, int fields, int conscand, int states, int tuples, Configuration config
     ) {
       fwd = true and
-      nodes = count(NodeEx node | fwdFlow(node, _, _, _, _, config)) and
+      nodes = count(NodeEx node | fwdFlow(node, _, _, _, _, _, config)) and
       fields = count(TypedContent f0 | fwdConsCand(f0, _, config)) and
       conscand = count(TypedContent f0, Ap ap | fwdConsCand(f0, ap, config)) and
-      states = count(FlowState state | fwdFlow(_, state, _, _, _, config)) and
+      states = count(FlowState state | fwdFlow(_, state, _, _, _, _, config)) and
       tuples =
-        count(NodeEx n, FlowState state, Cc cc, ApOption argAp, Ap ap |
-          fwdFlow(n, state, cc, argAp, ap, config)
+        count(NodeEx n, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap |
+          fwdFlow(n, state, cc, summaryCtx, argAp, ap, config)
         )
       or
       fwd = false and
@@ -1769,8 +1810,8 @@ private module MkStage<StageSig PrevStage> {
       conscand = count(TypedContent f0, Ap ap | consCand(f0, ap, config)) and
       states = count(FlowState state | revFlow(_, state, _, _, _, config)) and
       tuples =
-        count(NodeEx n, FlowState state, boolean b, ApOption retAp, Ap ap |
-          revFlow(n, state, b, retAp, ap, config)
+        count(NodeEx n, FlowState state, ReturnCtx returnCtx, ApOption retAp, Ap ap |
+          revFlow(n, state, returnCtx, retAp, ap, config)
         )
     }
     /* End: Stage logic. */
@@ -1915,7 +1956,7 @@ private module Stage2Param implements MkStage<Stage1>::StageParam {
     exists(lcc)
   }
 
-  predicate flowOutOfCall = flowOutOfCallNodeCand1/5;
+  predicate flowOutOfCall = flowOutOfCallNodeCand1/6;
 
   predicate flowIntoCall = flowIntoCallNodeCand1/5;
 
@@ -1951,9 +1992,10 @@ private module Stage2 implements StageSig {
 
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand2(
-  DataFlowCall call, RetNodeEx node1, NodeEx node2, boolean allowsFieldFlow, Configuration config
+  DataFlowCall call, RetNodeEx node1, ReturnPosition pos, NodeEx node2, boolean allowsFieldFlow,
+  Configuration config
 ) {
-  flowOutOfCallNodeCand1(call, node1, node2, allowsFieldFlow, config) and
+  flowOutOfCallNodeCand1(call, node1, pos, node2, allowsFieldFlow, config) and
   Stage2::revFlow(node2, pragma[only_bind_into](config)) and
   Stage2::revFlowAlias(node1, pragma[only_bind_into](config))
 }
@@ -2021,8 +2063,8 @@ private module LocalFlowBigStep {
     exists(NodeEx next | Stage2::revFlow(next, state, config) |
       jumpStep(node, next, config) or
       additionalJumpStep(node, next, config) or
-      flowIntoCallNodeCand1(_, node, next, config) or
-      flowOutOfCallNodeCand1(_, node, next, config) or
+      flowIntoCallNodeCand2(_, node, next, _, config) or
+      flowOutOfCallNodeCand2(_, node, _, next, _, config) or
       Stage2::storeStepCand(node, _, _, next, _, config) or
       Stage2::readStepCand(node, _, next, config)
     )
@@ -2163,7 +2205,7 @@ private module Stage3Param implements MkStage<Stage2>::StageParam {
     localFlowBigStep(node1, state1, node2, state2, preservesValue, ap, config, _) and exists(lcc)
   }
 
-  predicate flowOutOfCall = flowOutOfCallNodeCand2/5;
+  predicate flowOutOfCall = flowOutOfCallNodeCand2/6;
 
   predicate flowIntoCall = flowIntoCallNodeCand2/5;
 
@@ -2233,8 +2275,9 @@ private predicate flowCandSummaryCtx(
   NodeEx node, FlowState state, AccessPathFront argApf, Configuration config
 ) {
   exists(AccessPathFront apf |
-    Stage3::revFlow(node, state, true, _, apf, config) and
-    Stage3::fwdFlow(node, state, any(Stage3::CcCall ccc), TAccessPathFrontSome(argApf), apf, config)
+    Stage3::revFlow(node, state, TReturnCtxMaybeFlowThrough(_), _, apf, config) and
+    Stage3::fwdFlow(node, state, any(Stage3::CcCall ccc), _, TAccessPathFrontSome(argApf), apf,
+      config)
   )
 }
 
@@ -2468,10 +2511,11 @@ private module Stage4Param implements MkStage<Stage3>::StageParam {
 
   pragma[nomagic]
   predicate flowOutOfCall(
-    DataFlowCall call, RetNodeEx node1, NodeEx node2, boolean allowsFieldFlow, Configuration config
+    DataFlowCall call, RetNodeEx node1, ReturnPosition pos, NodeEx node2, boolean allowsFieldFlow,
+    Configuration config
   ) {
     exists(FlowState state |
-      flowOutOfCallNodeCand2(call, node1, node2, allowsFieldFlow, config) and
+      flowOutOfCallNodeCand2(call, node1, pos, node2, allowsFieldFlow, config) and
       PrevStage::revFlow(node2, pragma[only_bind_into](state), _, pragma[only_bind_into](config)) and
       PrevStage::revFlowAlias(node1, pragma[only_bind_into](state), _,
         pragma[only_bind_into](config))
@@ -2508,13 +2552,13 @@ private Configuration unbindConf(Configuration conf) {
 
 pragma[nomagic]
 private predicate nodeMayUseSummary0(
-  NodeEx n, DataFlowCallable c, FlowState state, AccessPathApprox apa, Configuration config
+  NodeEx n, ParamNodeEx p, FlowState state, AccessPathApprox apa, Configuration config
 ) {
   exists(AccessPathApprox apa0 |
-    Stage4::parameterMayFlowThrough(_, c, _, _) and
-    Stage4::revFlow(n, state, true, _, apa0, config) and
-    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TAccessPathApproxSome(apa), apa0, config) and
-    n.getEnclosingCallable() = c
+    Stage4::parameterMayFlowThrough(p, _, _) and
+    Stage4::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
+    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TParamNodeSome(p.asNode()),
+      TAccessPathApproxSome(apa), apa0, config)
   )
 }
 
@@ -2522,9 +2566,9 @@ pragma[nomagic]
 private predicate nodeMayUseSummary(
   NodeEx n, FlowState state, AccessPathApprox apa, Configuration config
 ) {
-  exists(DataFlowCallable c |
-    Stage4::parameterMayFlowThrough(_, c, apa, config) and
-    nodeMayUseSummary0(n, c, state, apa, config)
+  exists(ParamNodeEx p |
+    Stage4::parameterMayFlowThrough(p, apa, config) and
+    nodeMayUseSummary0(n, p, state, apa, config)
   )
 }
 
@@ -2532,7 +2576,7 @@ private newtype TSummaryCtx =
   TSummaryCtxNone() or
   TSummaryCtxSome(ParamNodeEx p, FlowState state, AccessPath ap) {
     exists(Configuration config |
-      Stage4::parameterMayFlowThrough(p, _, ap.getApprox(), config) and
+      Stage4::parameterMayFlowThrough(p, ap.getApprox(), config) and
       Stage4::revFlow(p, state, _, config)
     )
   }
@@ -3453,17 +3497,11 @@ private predicate paramFlowsThrough(
   ReturnKindExt kind, FlowState state, CallContextCall cc, SummaryCtxSome sc, AccessPath ap,
   AccessPathApprox apa, Configuration config
 ) {
-  exists(PathNodeMid mid, RetNodeEx ret, ParameterPosition pos |
+  exists(PathNodeMid mid, RetNodeEx ret |
     pathNode(mid, ret, state, cc, sc, ap, config, _) and
     kind = ret.getKind() and
     apa = ap.getApprox() and
-    pos = sc.getParameterPos() and
-    // we don't expect a parameter to return stored in itself, unless explicitly allowed
-    (
-      not kind.(ParamUpdateReturnKind).getPosition() = pos
-      or
-      sc.getParamNode().allowParameterReturnInSelf()
-    )
+    parameterFlowThroughAllowed(sc.getParamNode().asNode(), kind)
   )
 }
 
diff --git a/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImpl3.qll b/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImpl3.qll
index 3c41b1876dc..a52ad110662 100644
--- a/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImpl3.qll
+++ b/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImpl3.qll
@@ -319,8 +319,6 @@ private class ParamNodeEx extends NodeEx {
   }
 
   ParameterPosition getPosition() { this.isParameterOf(_, result) }
-
-  predicate allowParameterReturnInSelf() { allowParameterReturnInSelfCached(this.asNode()) }
 }
 
 private class RetNodeEx extends NodeEx {
@@ -608,6 +606,21 @@ private predicate hasSinkCallCtx(Configuration config) {
   )
 }
 
+/**
+ * Holds if flow from `p` to a return node of kind `kind` is allowed.
+ *
+ * We don't expect a parameter to return stored in itself, unless
+ * explicitly allowed
+ */
+bindingset[p, kind]
+private predicate parameterFlowThroughAllowed(ParamNode p, ReturnKindExt kind) {
+  exists(ParameterPosition pos | p.isParameterOf(_, pos) |
+    not kind.(ParamUpdateReturnKind).getPosition() = pos
+    or
+    allowParameterReturnInSelfCached(p)
+  )
+}
+
 private module Stage1 implements StageSig {
   class Ap = Unit;
 
@@ -981,21 +994,22 @@ private module Stage1 implements StageSig {
    * candidate for the origin of a summary.
    */
   pragma[nomagic]
-  predicate parameterMayFlowThrough(ParamNodeEx p, DataFlowCallable c, Ap ap, Configuration config) {
-    exists(ReturnKindExt kind |
+  predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
+    exists(DataFlowCallable c, ReturnKindExt kind |
       throughFlowNodeCand(p, config) and
       returnFlowCallableNodeCand(c, kind, config) and
       p.getEnclosingCallable() = c and
       exists(ap) and
-      // we don't expect a parameter to return stored in itself, unless explicitly allowed
-      (
-        not kind.(ParamUpdateReturnKind).getPosition() = p.getPosition()
-        or
-        p.allowParameterReturnInSelf()
-      )
+      parameterFlowThroughAllowed(p.asNode(), kind)
     )
   }
 
+  pragma[nomagic]
+  predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config) {
+    throughFlowNodeCand(ret, config) and
+    pos = ret.getReturnPosition()
+  }
+
   pragma[nomagic]
   predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
     exists(ArgNodeEx arg, boolean toReturn |
@@ -1052,9 +1066,10 @@ private predicate viableReturnPosOutNodeCand1(
  */
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand1(
-  DataFlowCall call, RetNodeEx ret, NodeEx out, Configuration config
+  DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, Configuration config
 ) {
-  viableReturnPosOutNodeCand1(call, ret.getReturnPosition(), out, config) and
+  viableReturnPosOutNodeCand1(call, pos, out, config) and
+  pos = ret.getReturnPosition() and
   Stage1::revFlow(ret, config) and
   not outBarrier(ret, config) and
   not inBarrier(out, config)
@@ -1090,7 +1105,7 @@ private predicate flowIntoCallNodeCand1(
 private int branch(NodeEx n1, Configuration conf) {
   result =
     strictcount(NodeEx n |
-      flowOutOfCallNodeCand1(_, n1, n, conf) or flowIntoCallNodeCand1(_, n1, n, conf)
+      flowOutOfCallNodeCand1(_, n1, _, n, conf) or flowIntoCallNodeCand1(_, n1, n, conf)
     )
 }
 
@@ -1102,7 +1117,7 @@ private int branch(NodeEx n1, Configuration conf) {
 private int join(NodeEx n2, Configuration conf) {
   result =
     strictcount(NodeEx n |
-      flowOutOfCallNodeCand1(_, n, n2, conf) or flowIntoCallNodeCand1(_, n, n2, conf)
+      flowOutOfCallNodeCand1(_, n, _, n2, conf) or flowIntoCallNodeCand1(_, n, n2, conf)
     )
 }
 
@@ -1115,12 +1130,13 @@ private int join(NodeEx n2, Configuration conf) {
  */
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand1(
-  DataFlowCall call, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow, Configuration config
+  DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
+  Configuration config
 ) {
-  flowOutOfCallNodeCand1(call, ret, out, config) and
+  flowOutOfCallNodeCand1(call, ret, pos, out, pragma[only_bind_into](config)) and
   exists(int b, int j |
-    b = branch(ret, config) and
-    j = join(out, config) and
+    b = branch(ret, pragma[only_bind_into](config)) and
+    j = join(out, pragma[only_bind_into](config)) and
     if b.minimum(j) <= config.fieldFlowBranchLimit()
     then allowsFieldFlow = true
     else allowsFieldFlow = false
@@ -1156,7 +1172,9 @@ private signature module StageSig {
 
   predicate callMayFlowThroughRev(DataFlowCall call, Configuration config);
 
-  predicate parameterMayFlowThrough(ParamNodeEx p, DataFlowCallable c, Ap ap, Configuration config);
+  predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config);
+
+  predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config);
 
   predicate storeStepCand(
     NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, DataFlowType contentType,
@@ -1222,7 +1240,8 @@ private module MkStage<StageSig PrevStage> {
     );
 
     predicate flowOutOfCall(
-      DataFlowCall call, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow, Configuration config
+      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
+      Configuration config
     );
 
     predicate flowIntoCall(
@@ -1247,14 +1266,16 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate flowThroughOutOfCall(
-      DataFlowCall call, CcCall ccc, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow,
-      Configuration config
+      DataFlowCall call, CcCall ccc, RetNodeEx ret, ReturnKindExt kind, NodeEx out,
+      boolean allowsFieldFlow, Configuration config
     ) {
-      flowOutOfCall(call, ret, out, allowsFieldFlow, pragma[only_bind_into](config)) and
-      PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
-      PrevStage::parameterMayFlowThrough(_, ret.getEnclosingCallable(), _,
-        pragma[only_bind_into](config)) and
-      matchesCall(ccc, call)
+      exists(ReturnPosition pos |
+        flowOutOfCall(call, ret, pos, out, allowsFieldFlow, pragma[only_bind_into](config)) and
+        kind = pos.getKind() and
+        PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
+        PrevStage::returnMayFlowThrough(ret, pos, pragma[only_bind_into](config)) and
+        matchesCall(ccc, call)
+      )
     }
 
     /**
@@ -1262,29 +1283,32 @@ private module MkStage<StageSig PrevStage> {
      * configuration `config`.
      *
      * The call context `cc` records whether the node is reached through an
-     * argument in a call, and if so, `argAp` records the access path of that
-     * argument.
+     * argument in a call, and if so, `summaryCtx` and `argAp` record the
+     * corresponding parameter and access path of that argument, respectively.
      */
     pragma[nomagic]
     additional predicate fwdFlow(
-      NodeEx node, FlowState state, Cc cc, ApOption argAp, Ap ap, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      Configuration config
     ) {
-      fwdFlow0(node, state, cc, argAp, ap, config) and
+      fwdFlow0(node, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::revFlow(node, state, unbindApa(getApprox(ap)), config) and
       filter(node, state, ap, config)
     }
 
     pragma[nomagic]
     private predicate fwdFlow0(
-      NodeEx node, FlowState state, Cc cc, ApOption argAp, Ap ap, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      Configuration config
     ) {
       sourceNode(node, state, config) and
       (if hasSourceCallCtx(config) then cc = ccSomeCall() else cc = ccNone()) and
       argAp = apNone() and
+      summaryCtx = TParamNodeNone() and
       ap = getApNil(node)
       or
       exists(NodeEx mid, FlowState state0, Ap ap0, LocalCc localCc |
-        fwdFlow(mid, state0, cc, argAp, ap0, config) and
+        fwdFlow(mid, state0, cc, summaryCtx, argAp, ap0, config) and
         localCc = getLocalCc(mid, cc)
       |
         localStep(mid, state0, node, state, true, _, config, localCc) and
@@ -1295,65 +1319,72 @@ private module MkStage<StageSig PrevStage> {
       )
       or
       exists(NodeEx mid |
-        fwdFlow(mid, pragma[only_bind_into](state), _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, pragma[only_bind_into](config)) and
         jumpStep(mid, node, config) and
         cc = ccNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone()
       )
       or
       exists(NodeEx mid, ApNil nil |
-        fwdFlow(mid, state, _, _, nil, pragma[only_bind_into](config)) and
+        fwdFlow(mid, state, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStep(mid, node, config) and
         cc = ccNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone() and
         ap = getApNil(node)
       )
       or
       exists(NodeEx mid, FlowState state0, ApNil nil |
-        fwdFlow(mid, state0, _, _, nil, pragma[only_bind_into](config)) and
+        fwdFlow(mid, state0, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStateStep(mid, state0, node, state, config) and
         cc = ccNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone() and
         ap = getApNil(node)
       )
       or
       // store
       exists(TypedContent tc, Ap ap0 |
-        fwdFlowStore(_, ap0, tc, node, state, cc, argAp, config) and
+        fwdFlowStore(_, ap0, tc, node, state, cc, summaryCtx, argAp, config) and
         ap = apCons(tc, ap0)
       )
       or
       // read
       exists(Ap ap0, Content c |
-        fwdFlowRead(ap0, c, _, node, state, cc, argAp, config) and
+        fwdFlowRead(ap0, c, _, node, state, cc, summaryCtx, argAp, config) and
         fwdFlowConsCand(ap0, c, ap, config)
       )
       or
       // flow into a callable
       exists(ApApprox apa |
-        fwdFlowIn(_, node, state, _, cc, _, ap, config) and
+        fwdFlowIn(_, node, state, _, cc, _, _, ap, config) and
         apa = getApprox(ap) and
-        if PrevStage::parameterMayFlowThrough(node, _, apa, config)
-        then argAp = apSome(ap)
-        else argAp = apNone()
+        if PrevStage::parameterMayFlowThrough(node, apa, config)
+        then (
+          summaryCtx = TParamNodeSome(node.asNode()) and argAp = apSome(ap)
+        ) else (
+          summaryCtx = TParamNodeNone() and argAp = apNone()
+        )
       )
       or
       // flow out of a callable
-      fwdFlowOutNotFromArg(node, state, cc, argAp, ap, config)
+      fwdFlowOutNotFromArg(node, state, cc, summaryCtx, argAp, ap, config)
       or
-      exists(DataFlowCall call, Ap argAp0 |
-        fwdFlowOutFromArg(call, node, state, argAp0, ap, config) and
-        fwdFlowIsEntered(call, cc, argAp, argAp0, config)
+      // flow through a callable
+      exists(DataFlowCall call, ParamNode summaryCtx0, Ap argAp0 |
+        fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, config) and
+        fwdFlowIsEntered(call, cc, summaryCtx, argAp, summaryCtx0, argAp0, config)
       )
     }
 
     pragma[nomagic]
     private predicate fwdFlowStore(
-      NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc, ApOption argAp,
-      Configuration config
+      NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc,
+      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
     ) {
       exists(DataFlowType contentType |
-        fwdFlow(node1, state, cc, argAp, ap1, config) and
+        fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, config) and
         PrevStage::storeStepCand(node1, unbindApa(getApprox(ap1)), tc, node2, contentType, config) and
         typecheckStore(ap1, contentType)
       )
@@ -1366,7 +1397,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowConsCand(Ap cons, Content c, Ap tail, Configuration config) {
       exists(TypedContent tc |
-        fwdFlowStore(_, tail, tc, _, _, _, _, config) and
+        fwdFlowStore(_, tail, tc, _, _, _, _, _, config) and
         tc.getContent() = c and
         cons = apCons(tc, tail)
       )
@@ -1374,21 +1405,21 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowRead(
-      Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc, ApOption argAp,
-      Configuration config
+      Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc,
+      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
     ) {
-      fwdFlow(node1, state, cc, argAp, ap, config) and
+      fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, c, node2, config) and
       getHeadContent(ap) = c
     }
 
     pragma[nomagic]
     private predicate fwdFlowIn(
-      DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, Cc innercc, ApOption argAp,
-      Ap ap, Configuration config
+      DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, Cc innercc,
+      ParamNodeOption summaryCtx, ApOption argAp, Ap ap, Configuration config
     ) {
       exists(ArgNodeEx arg, boolean allowsFieldFlow |
-        fwdFlow(arg, state, outercc, argAp, ap, config) and
+        fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, config) and
         flowIntoCall(call, arg, p, allowsFieldFlow, config) and
         innercc = getCallContextCall(call, p.getEnclosingCallable(), outercc) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
@@ -1397,14 +1428,15 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowOutNotFromArg(
-      NodeEx out, FlowState state, Cc ccOut, ApOption argAp, Ap ap, Configuration config
+      NodeEx out, FlowState state, Cc ccOut, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      Configuration config
     ) {
       exists(
         DataFlowCall call, RetNodeEx ret, boolean allowsFieldFlow, CcNoCall innercc,
         DataFlowCallable inner
       |
-        fwdFlow(ret, state, innercc, argAp, ap, config) and
-        flowOutOfCall(call, ret, out, allowsFieldFlow, config) and
+        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, config) and
+        flowOutOfCall(call, ret, _, out, allowsFieldFlow, config) and
         inner = ret.getEnclosingCallable() and
         ccOut = getCallContextReturn(inner, call, innercc) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
@@ -1413,12 +1445,14 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowOutFromArg(
-      DataFlowCall call, NodeEx out, FlowState state, Ap argAp, Ap ap, Configuration config
+      DataFlowCall call, NodeEx out, FlowState state, ParamNode summaryCtx, Ap argAp, Ap ap,
+      Configuration config
     ) {
-      exists(RetNodeEx ret, boolean allowsFieldFlow, CcCall ccc |
-        fwdFlow(ret, state, ccc, apSome(argAp), ap, config) and
-        flowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, config) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
+      exists(RetNodeEx ret, ReturnKindExt kind, boolean allowsFieldFlow, CcCall ccc |
+        fwdFlow(ret, state, ccc, TParamNodeSome(summaryCtx), apSome(argAp), ap, config) and
+        flowThroughOutOfCall(call, ccc, ret, kind, out, allowsFieldFlow, config) and
+        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
+        parameterFlowThroughAllowed(summaryCtx, kind)
       )
     }
 
@@ -1428,11 +1462,13 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate fwdFlowIsEntered(
-      DataFlowCall call, Cc cc, ApOption argAp, Ap ap, Configuration config
+      DataFlowCall call, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, ParamNode p, Ap ap,
+      Configuration config
     ) {
-      exists(ParamNodeEx p |
-        fwdFlowIn(call, p, _, cc, _, argAp, ap, config) and
-        PrevStage::parameterMayFlowThrough(p, _, unbindApa(getApprox(ap)), config)
+      exists(ParamNodeEx param |
+        fwdFlowIn(call, param, _, cc, _, summaryCtx, argAp, ap, config) and
+        PrevStage::parameterMayFlowThrough(param, unbindApa(getApprox(ap)), config) and
+        p = param.asNode()
       )
     }
 
@@ -1440,146 +1476,149 @@ private module MkStage<StageSig PrevStage> {
     private predicate storeStepFwd(
       NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, Ap ap2, Configuration config
     ) {
-      fwdFlowStore(node1, ap1, tc, node2, _, _, _, config) and
+      fwdFlowStore(node1, ap1, tc, node2, _, _, _, _, config) and
       ap2 = apCons(tc, ap1) and
-      fwdFlowRead(ap2, tc.getContent(), _, _, _, _, _, config)
+      fwdFlowRead(ap2, tc.getContent(), _, _, _, _, _, _, config)
     }
 
     private predicate readStepFwd(
       NodeEx n1, Ap ap1, Content c, NodeEx n2, Ap ap2, Configuration config
     ) {
-      fwdFlowRead(ap1, c, n1, n2, _, _, _, config) and
+      fwdFlowRead(ap1, c, n1, n2, _, _, _, _, config) and
       fwdFlowConsCand(ap1, c, ap2, config)
     }
 
     pragma[nomagic]
-    private predicate callMayFlowThroughFwd(DataFlowCall call, Configuration config) {
-      exists(Ap argAp0, NodeEx out, FlowState state, Cc cc, ApOption argAp, Ap ap |
-        fwdFlow(out, state, pragma[only_bind_into](cc), pragma[only_bind_into](argAp), ap,
-          pragma[only_bind_into](config)) and
-        fwdFlowOutFromArg(call, out, state, argAp0, ap, config) and
-        fwdFlowIsEntered(pragma[only_bind_into](call), pragma[only_bind_into](cc),
-          pragma[only_bind_into](argAp), pragma[only_bind_into](argAp0),
-          pragma[only_bind_into](config))
-      )
+    private predicate returnFlowsThrough(
+      RetNodeEx ret, ReturnPosition pos, FlowState state, CcCall ccc, ParamNode p, Ap argAp, Ap ap,
+      Configuration config
+    ) {
+      fwdFlow(ret, state, ccc, TParamNodeSome(p), apSome(argAp), ap, config) and
+      pos = ret.getReturnPosition() and
+      parameterFlowThroughAllowed(p, pos.getKind())
     }
 
     pragma[nomagic]
     private predicate flowThroughIntoCall(
       DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
     ) {
-      flowIntoCall(call, arg, p, allowsFieldFlow, config) and
-      fwdFlow(arg, _, _, _, _, pragma[only_bind_into](config)) and
-      PrevStage::parameterMayFlowThrough(p, _, _, pragma[only_bind_into](config)) and
-      callMayFlowThroughFwd(call, pragma[only_bind_into](config))
-    }
-
-    pragma[nomagic]
-    private predicate returnNodeMayFlowThrough(
-      RetNodeEx ret, FlowState state, Ap ap, Configuration config
-    ) {
-      fwdFlow(ret, state, any(CcCall ccc), apSome(_), ap, config)
+      flowIntoCall(call, pragma[only_bind_into](arg), pragma[only_bind_into](p), allowsFieldFlow,
+        pragma[only_bind_into](config)) and
+      fwdFlow(arg, _, _, _, _, _, pragma[only_bind_into](config)) and
+      returnFlowsThrough(_, _, _, _, p.asNode(), _, _, pragma[only_bind_into](config))
     }
 
     /**
      * Holds if `node` with access path `ap` is part of a path from a source to a
      * sink in the configuration `config`.
      *
-     * The Boolean `toReturn` records whether the node must be returned from the
-     * enclosing callable in order to reach a sink, and if so, `returnAp` records
-     * the access path of the returned value.
+     * The parameter `returnCtx` records whether (and how) the node must be returned
+     * from the enclosing callable in order to reach a sink, and if so, `returnAp`
+     * records the access path of the returned value.
      */
     pragma[nomagic]
     additional predicate revFlow(
-      NodeEx node, FlowState state, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
+      NodeEx node, FlowState state, ReturnCtx returnCtx, ApOption returnAp, Ap ap,
+      Configuration config
     ) {
-      revFlow0(node, state, toReturn, returnAp, ap, config) and
-      fwdFlow(node, state, _, _, ap, config)
+      revFlow0(node, state, returnCtx, returnAp, ap, config) and
+      fwdFlow(node, state, _, _, _, ap, config)
     }
 
     pragma[nomagic]
     private predicate revFlow0(
-      NodeEx node, FlowState state, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
+      NodeEx node, FlowState state, ReturnCtx returnCtx, ApOption returnAp, Ap ap,
+      Configuration config
     ) {
-      fwdFlow(node, state, _, _, ap, config) and
+      fwdFlow(node, state, _, _, _, ap, config) and
       sinkNode(node, state, config) and
-      (if hasSinkCallCtx(config) then toReturn = true else toReturn = false) and
+      (
+        if hasSinkCallCtx(config)
+        then returnCtx = TReturnCtxNoFlowThrough()
+        else returnCtx = TReturnCtxNone()
+      ) and
       returnAp = apNone() and
       ap instanceof ApNil
       or
       exists(NodeEx mid, FlowState state0 |
         localStep(node, state, mid, state0, true, _, config, _) and
-        revFlow(mid, state0, toReturn, returnAp, ap, config)
+        revFlow(mid, state0, returnCtx, returnAp, ap, config)
       )
       or
       exists(NodeEx mid, FlowState state0, ApNil nil |
-        fwdFlow(node, pragma[only_bind_into](state), _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(node, pragma[only_bind_into](state), _, _, _, ap, pragma[only_bind_into](config)) and
         localStep(node, pragma[only_bind_into](state), mid, state0, false, _, config, _) and
-        revFlow(mid, state0, toReturn, returnAp, nil, pragma[only_bind_into](config)) and
+        revFlow(mid, state0, returnCtx, returnAp, nil, pragma[only_bind_into](config)) and
         ap instanceof ApNil
       )
       or
       exists(NodeEx mid |
         jumpStep(node, mid, config) and
         revFlow(mid, state, _, _, ap, config) and
-        toReturn = false and
+        returnCtx = TReturnCtxNone() and
         returnAp = apNone()
       )
       or
       exists(NodeEx mid, ApNil nil |
-        fwdFlow(node, _, _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(node, _, _, _, _, ap, pragma[only_bind_into](config)) and
         additionalJumpStep(node, mid, config) and
         revFlow(pragma[only_bind_into](mid), state, _, _, nil, pragma[only_bind_into](config)) and
-        toReturn = false and
+        returnCtx = TReturnCtxNone() and
         returnAp = apNone() and
         ap instanceof ApNil
       )
       or
       exists(NodeEx mid, FlowState state0, ApNil nil |
-        fwdFlow(node, _, _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(node, _, _, _, _, ap, pragma[only_bind_into](config)) and
         additionalJumpStateStep(node, state, mid, state0, config) and
         revFlow(pragma[only_bind_into](mid), pragma[only_bind_into](state0), _, _, nil,
           pragma[only_bind_into](config)) and
-        toReturn = false and
+        returnCtx = TReturnCtxNone() and
         returnAp = apNone() and
         ap instanceof ApNil
       )
       or
       // store
       exists(Ap ap0, Content c |
-        revFlowStore(ap0, c, ap, node, state, _, _, toReturn, returnAp, config) and
+        revFlowStore(ap0, c, ap, node, state, _, _, returnCtx, returnAp, config) and
         revFlowConsCand(ap0, c, ap, config)
       )
       or
       // read
       exists(NodeEx mid, Ap ap0 |
-        revFlow(mid, state, toReturn, returnAp, ap0, config) and
+        revFlow(mid, state, returnCtx, returnAp, ap0, config) and
         readStepFwd(node, ap, _, mid, ap0, config)
       )
       or
       // flow into a callable
       revFlowInNotToReturn(node, state, returnAp, ap, config) and
-      toReturn = false
+      returnCtx = TReturnCtxNone()
       or
-      exists(DataFlowCall call, Ap returnAp0 |
-        revFlowInToReturn(call, node, state, returnAp0, ap, config) and
-        revFlowIsReturned(call, toReturn, returnAp, returnAp0, config)
+      // flow through a callable
+      exists(DataFlowCall call, ReturnPosition returnPos0, Ap returnAp0 |
+        revFlowInToReturn(call, node, state, returnPos0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnPos0, returnAp0, config)
       )
       or
       // flow out of a callable
-      revFlowOut(_, node, state, _, _, ap, config) and
-      toReturn = true and
-      if returnNodeMayFlowThrough(node, state, ap, config)
-      then returnAp = apSome(ap)
-      else returnAp = apNone()
+      exists(ReturnPosition pos |
+        revFlowOut(_, node, pos, state, _, _, ap, config) and
+        if returnFlowsThrough(node, pos, state, _, _, _, ap, config)
+        then (
+          returnCtx = TReturnCtxMaybeFlowThrough(pos) and
+          returnAp = apSome(ap)
+        ) else (
+          returnCtx = TReturnCtxNoFlowThrough() and returnAp = apNone()
+        )
+      )
     }
 
     pragma[nomagic]
     private predicate revFlowStore(
       Ap ap0, Content c, Ap ap, NodeEx node, FlowState state, TypedContent tc, NodeEx mid,
-      boolean toReturn, ApOption returnAp, Configuration config
+      ReturnCtx returnCtx, ApOption returnAp, Configuration config
     ) {
-      revFlow(mid, state, toReturn, returnAp, ap0, config) and
+      revFlow(mid, state, returnCtx, returnAp, ap0, config) and
       storeStepFwd(node, ap, tc, mid, ap0, config) and
       tc.getContent() = c
     }
@@ -1599,12 +1638,12 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate revFlowOut(
-      DataFlowCall call, RetNodeEx ret, FlowState state, boolean toReturn, ApOption returnAp, Ap ap,
-      Configuration config
+      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, FlowState state, ReturnCtx returnCtx,
+      ApOption returnAp, Ap ap, Configuration config
     ) {
       exists(NodeEx out, boolean allowsFieldFlow |
-        revFlow(out, state, toReturn, returnAp, ap, config) and
-        flowOutOfCall(call, ret, out, allowsFieldFlow, config) and
+        revFlow(out, state, returnCtx, returnAp, ap, config) and
+        flowOutOfCall(call, ret, pos, out, allowsFieldFlow, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
@@ -1614,7 +1653,7 @@ private module MkStage<StageSig PrevStage> {
       ArgNodeEx arg, FlowState state, ApOption returnAp, Ap ap, Configuration config
     ) {
       exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(p, state, false, returnAp, ap, config) and
+        revFlow(p, state, TReturnCtxNone(), returnAp, ap, config) and
         flowIntoCall(_, arg, p, allowsFieldFlow, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
@@ -1622,12 +1661,14 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate revFlowInToReturn(
-      DataFlowCall call, ArgNodeEx arg, FlowState state, Ap returnAp, Ap ap, Configuration config
+      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnPosition returnPos, Ap returnAp,
+      Ap ap, Configuration config
     ) {
       exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(p, state, true, apSome(returnAp), ap, config) and
+        revFlow(p, state, TReturnCtxMaybeFlowThrough(returnPos), apSome(returnAp), ap, config) and
         flowThroughIntoCall(call, arg, p, allowsFieldFlow, config) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
+        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
+        parameterFlowThroughAllowed(p.asNode(), returnPos.getKind())
       )
     }
 
@@ -1638,11 +1679,12 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate revFlowIsReturned(
-      DataFlowCall call, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
+      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnPosition pos, Ap ap,
+      Configuration config
     ) {
       exists(RetNodeEx ret, FlowState state, CcCall ccc |
-        revFlowOut(call, ret, state, toReturn, returnAp, ap, config) and
-        fwdFlow(ret, state, ccc, apSome(_), ap, config) and
+        revFlowOut(call, ret, pos, state, returnCtx, returnAp, ap, config) and
+        returnFlowsThrough(ret, pos, state, ccc, _, _, ap, config) and
         matchesCall(ccc, call)
       )
     }
@@ -1713,40 +1755,39 @@ private module MkStage<StageSig PrevStage> {
       validAp(ap, config)
     }
 
-    pragma[noinline]
-    private predicate parameterFlow(
-      ParamNodeEx p, Ap ap, Ap ap0, DataFlowCallable c, Configuration config
+    pragma[nomagic]
+    private predicate parameterFlowsThroughRev(
+      ParamNodeEx p, Ap ap, ReturnPosition returnPos, Configuration config
     ) {
-      revFlow(p, _, true, apSome(ap0), ap, config) and
-      c = p.getEnclosingCallable()
+      revFlow(p, _, TReturnCtxMaybeFlowThrough(returnPos), apSome(_), ap, config) and
+      parameterFlowThroughAllowed(p.asNode(), returnPos.getKind())
     }
 
-    predicate parameterMayFlowThrough(ParamNodeEx p, DataFlowCallable c, Ap ap, Configuration config) {
-      exists(RetNodeEx ret, FlowState state, Ap ap0, ReturnKindExt kind, ParameterPosition pos |
-        parameterFlow(p, ap, ap0, c, config) and
-        c = ret.getEnclosingCallable() and
-        revFlow(pragma[only_bind_into](ret), pragma[only_bind_into](state), true, apSome(_),
-          pragma[only_bind_into](ap0), pragma[only_bind_into](config)) and
-        fwdFlow(ret, state, any(CcCall ccc), apSome(ap), ap0, config) and
-        kind = ret.getKind() and
-        p.getPosition() = pos and
-        // we don't expect a parameter to return stored in itself, unless explicitly allowed
-        (
-          not kind.(ParamUpdateReturnKind).getPosition() = pos
-          or
-          p.allowParameterReturnInSelf()
-        )
+    pragma[nomagic]
+    predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
+      exists(RetNodeEx ret, ReturnPosition pos |
+        returnFlowsThrough(ret, pos, _, _, p.asNode(), ap, _, config) and
+        parameterFlowsThroughRev(p, ap, pos, config)
+      )
+    }
+
+    pragma[nomagic]
+    predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config) {
+      exists(ParamNodeEx p, Ap ap |
+        returnFlowsThrough(ret, pos, _, _, p.asNode(), ap, _, config) and
+        parameterFlowsThroughRev(p, ap, pos, config)
       )
     }
 
     pragma[nomagic]
     predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
       exists(
-        Ap returnAp0, ArgNodeEx arg, FlowState state, boolean toReturn, ApOption returnAp, Ap ap
+        ReturnPosition returnPos0, Ap returnAp0, ArgNodeEx arg, FlowState state,
+        ReturnCtx returnCtx, ApOption returnAp, Ap ap
       |
-        revFlow(arg, state, toReturn, returnAp, ap, config) and
-        revFlowInToReturn(call, arg, state, returnAp0, ap, config) and
-        revFlowIsReturned(call, toReturn, returnAp, returnAp0, config)
+        revFlow(arg, state, returnCtx, returnAp, ap, config) and
+        revFlowInToReturn(call, arg, state, returnPos0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnPos0, returnAp0, config)
       )
     }
 
@@ -1754,13 +1795,13 @@ private module MkStage<StageSig PrevStage> {
       boolean fwd, int nodes, int fields, int conscand, int states, int tuples, Configuration config
     ) {
       fwd = true and
-      nodes = count(NodeEx node | fwdFlow(node, _, _, _, _, config)) and
+      nodes = count(NodeEx node | fwdFlow(node, _, _, _, _, _, config)) and
       fields = count(TypedContent f0 | fwdConsCand(f0, _, config)) and
       conscand = count(TypedContent f0, Ap ap | fwdConsCand(f0, ap, config)) and
-      states = count(FlowState state | fwdFlow(_, state, _, _, _, config)) and
+      states = count(FlowState state | fwdFlow(_, state, _, _, _, _, config)) and
       tuples =
-        count(NodeEx n, FlowState state, Cc cc, ApOption argAp, Ap ap |
-          fwdFlow(n, state, cc, argAp, ap, config)
+        count(NodeEx n, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap |
+          fwdFlow(n, state, cc, summaryCtx, argAp, ap, config)
         )
       or
       fwd = false and
@@ -1769,8 +1810,8 @@ private module MkStage<StageSig PrevStage> {
       conscand = count(TypedContent f0, Ap ap | consCand(f0, ap, config)) and
       states = count(FlowState state | revFlow(_, state, _, _, _, config)) and
       tuples =
-        count(NodeEx n, FlowState state, boolean b, ApOption retAp, Ap ap |
-          revFlow(n, state, b, retAp, ap, config)
+        count(NodeEx n, FlowState state, ReturnCtx returnCtx, ApOption retAp, Ap ap |
+          revFlow(n, state, returnCtx, retAp, ap, config)
         )
     }
     /* End: Stage logic. */
@@ -1915,7 +1956,7 @@ private module Stage2Param implements MkStage<Stage1>::StageParam {
     exists(lcc)
   }
 
-  predicate flowOutOfCall = flowOutOfCallNodeCand1/5;
+  predicate flowOutOfCall = flowOutOfCallNodeCand1/6;
 
   predicate flowIntoCall = flowIntoCallNodeCand1/5;
 
@@ -1951,9 +1992,10 @@ private module Stage2 implements StageSig {
 
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand2(
-  DataFlowCall call, RetNodeEx node1, NodeEx node2, boolean allowsFieldFlow, Configuration config
+  DataFlowCall call, RetNodeEx node1, ReturnPosition pos, NodeEx node2, boolean allowsFieldFlow,
+  Configuration config
 ) {
-  flowOutOfCallNodeCand1(call, node1, node2, allowsFieldFlow, config) and
+  flowOutOfCallNodeCand1(call, node1, pos, node2, allowsFieldFlow, config) and
   Stage2::revFlow(node2, pragma[only_bind_into](config)) and
   Stage2::revFlowAlias(node1, pragma[only_bind_into](config))
 }
@@ -2021,8 +2063,8 @@ private module LocalFlowBigStep {
     exists(NodeEx next | Stage2::revFlow(next, state, config) |
       jumpStep(node, next, config) or
       additionalJumpStep(node, next, config) or
-      flowIntoCallNodeCand1(_, node, next, config) or
-      flowOutOfCallNodeCand1(_, node, next, config) or
+      flowIntoCallNodeCand2(_, node, next, _, config) or
+      flowOutOfCallNodeCand2(_, node, _, next, _, config) or
       Stage2::storeStepCand(node, _, _, next, _, config) or
       Stage2::readStepCand(node, _, next, config)
     )
@@ -2163,7 +2205,7 @@ private module Stage3Param implements MkStage<Stage2>::StageParam {
     localFlowBigStep(node1, state1, node2, state2, preservesValue, ap, config, _) and exists(lcc)
   }
 
-  predicate flowOutOfCall = flowOutOfCallNodeCand2/5;
+  predicate flowOutOfCall = flowOutOfCallNodeCand2/6;
 
   predicate flowIntoCall = flowIntoCallNodeCand2/5;
 
@@ -2233,8 +2275,9 @@ private predicate flowCandSummaryCtx(
   NodeEx node, FlowState state, AccessPathFront argApf, Configuration config
 ) {
   exists(AccessPathFront apf |
-    Stage3::revFlow(node, state, true, _, apf, config) and
-    Stage3::fwdFlow(node, state, any(Stage3::CcCall ccc), TAccessPathFrontSome(argApf), apf, config)
+    Stage3::revFlow(node, state, TReturnCtxMaybeFlowThrough(_), _, apf, config) and
+    Stage3::fwdFlow(node, state, any(Stage3::CcCall ccc), _, TAccessPathFrontSome(argApf), apf,
+      config)
   )
 }
 
@@ -2468,10 +2511,11 @@ private module Stage4Param implements MkStage<Stage3>::StageParam {
 
   pragma[nomagic]
   predicate flowOutOfCall(
-    DataFlowCall call, RetNodeEx node1, NodeEx node2, boolean allowsFieldFlow, Configuration config
+    DataFlowCall call, RetNodeEx node1, ReturnPosition pos, NodeEx node2, boolean allowsFieldFlow,
+    Configuration config
   ) {
     exists(FlowState state |
-      flowOutOfCallNodeCand2(call, node1, node2, allowsFieldFlow, config) and
+      flowOutOfCallNodeCand2(call, node1, pos, node2, allowsFieldFlow, config) and
       PrevStage::revFlow(node2, pragma[only_bind_into](state), _, pragma[only_bind_into](config)) and
       PrevStage::revFlowAlias(node1, pragma[only_bind_into](state), _,
         pragma[only_bind_into](config))
@@ -2508,13 +2552,13 @@ private Configuration unbindConf(Configuration conf) {
 
 pragma[nomagic]
 private predicate nodeMayUseSummary0(
-  NodeEx n, DataFlowCallable c, FlowState state, AccessPathApprox apa, Configuration config
+  NodeEx n, ParamNodeEx p, FlowState state, AccessPathApprox apa, Configuration config
 ) {
   exists(AccessPathApprox apa0 |
-    Stage4::parameterMayFlowThrough(_, c, _, _) and
-    Stage4::revFlow(n, state, true, _, apa0, config) and
-    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TAccessPathApproxSome(apa), apa0, config) and
-    n.getEnclosingCallable() = c
+    Stage4::parameterMayFlowThrough(p, _, _) and
+    Stage4::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
+    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TParamNodeSome(p.asNode()),
+      TAccessPathApproxSome(apa), apa0, config)
   )
 }
 
@@ -2522,9 +2566,9 @@ pragma[nomagic]
 private predicate nodeMayUseSummary(
   NodeEx n, FlowState state, AccessPathApprox apa, Configuration config
 ) {
-  exists(DataFlowCallable c |
-    Stage4::parameterMayFlowThrough(_, c, apa, config) and
-    nodeMayUseSummary0(n, c, state, apa, config)
+  exists(ParamNodeEx p |
+    Stage4::parameterMayFlowThrough(p, apa, config) and
+    nodeMayUseSummary0(n, p, state, apa, config)
   )
 }
 
@@ -2532,7 +2576,7 @@ private newtype TSummaryCtx =
   TSummaryCtxNone() or
   TSummaryCtxSome(ParamNodeEx p, FlowState state, AccessPath ap) {
     exists(Configuration config |
-      Stage4::parameterMayFlowThrough(p, _, ap.getApprox(), config) and
+      Stage4::parameterMayFlowThrough(p, ap.getApprox(), config) and
       Stage4::revFlow(p, state, _, config)
     )
   }
@@ -3453,17 +3497,11 @@ private predicate paramFlowsThrough(
   ReturnKindExt kind, FlowState state, CallContextCall cc, SummaryCtxSome sc, AccessPath ap,
   AccessPathApprox apa, Configuration config
 ) {
-  exists(PathNodeMid mid, RetNodeEx ret, ParameterPosition pos |
+  exists(PathNodeMid mid, RetNodeEx ret |
     pathNode(mid, ret, state, cc, sc, ap, config, _) and
     kind = ret.getKind() and
     apa = ap.getApprox() and
-    pos = sc.getParameterPos() and
-    // we don't expect a parameter to return stored in itself, unless explicitly allowed
-    (
-      not kind.(ParamUpdateReturnKind).getPosition() = pos
-      or
-      sc.getParamNode().allowParameterReturnInSelf()
-    )
+    parameterFlowThroughAllowed(sc.getParamNode().asNode(), kind)
   )
 }
 
diff --git a/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImpl4.qll b/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImpl4.qll
index 3c41b1876dc..a52ad110662 100644
--- a/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImpl4.qll
+++ b/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImpl4.qll
@@ -319,8 +319,6 @@ private class ParamNodeEx extends NodeEx {
   }
 
   ParameterPosition getPosition() { this.isParameterOf(_, result) }
-
-  predicate allowParameterReturnInSelf() { allowParameterReturnInSelfCached(this.asNode()) }
 }
 
 private class RetNodeEx extends NodeEx {
@@ -608,6 +606,21 @@ private predicate hasSinkCallCtx(Configuration config) {
   )
 }
 
+/**
+ * Holds if flow from `p` to a return node of kind `kind` is allowed.
+ *
+ * We don't expect a parameter to return stored in itself, unless
+ * explicitly allowed
+ */
+bindingset[p, kind]
+private predicate parameterFlowThroughAllowed(ParamNode p, ReturnKindExt kind) {
+  exists(ParameterPosition pos | p.isParameterOf(_, pos) |
+    not kind.(ParamUpdateReturnKind).getPosition() = pos
+    or
+    allowParameterReturnInSelfCached(p)
+  )
+}
+
 private module Stage1 implements StageSig {
   class Ap = Unit;
 
@@ -981,21 +994,22 @@ private module Stage1 implements StageSig {
    * candidate for the origin of a summary.
    */
   pragma[nomagic]
-  predicate parameterMayFlowThrough(ParamNodeEx p, DataFlowCallable c, Ap ap, Configuration config) {
-    exists(ReturnKindExt kind |
+  predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
+    exists(DataFlowCallable c, ReturnKindExt kind |
       throughFlowNodeCand(p, config) and
       returnFlowCallableNodeCand(c, kind, config) and
       p.getEnclosingCallable() = c and
       exists(ap) and
-      // we don't expect a parameter to return stored in itself, unless explicitly allowed
-      (
-        not kind.(ParamUpdateReturnKind).getPosition() = p.getPosition()
-        or
-        p.allowParameterReturnInSelf()
-      )
+      parameterFlowThroughAllowed(p.asNode(), kind)
     )
   }
 
+  pragma[nomagic]
+  predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config) {
+    throughFlowNodeCand(ret, config) and
+    pos = ret.getReturnPosition()
+  }
+
   pragma[nomagic]
   predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
     exists(ArgNodeEx arg, boolean toReturn |
@@ -1052,9 +1066,10 @@ private predicate viableReturnPosOutNodeCand1(
  */
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand1(
-  DataFlowCall call, RetNodeEx ret, NodeEx out, Configuration config
+  DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, Configuration config
 ) {
-  viableReturnPosOutNodeCand1(call, ret.getReturnPosition(), out, config) and
+  viableReturnPosOutNodeCand1(call, pos, out, config) and
+  pos = ret.getReturnPosition() and
   Stage1::revFlow(ret, config) and
   not outBarrier(ret, config) and
   not inBarrier(out, config)
@@ -1090,7 +1105,7 @@ private predicate flowIntoCallNodeCand1(
 private int branch(NodeEx n1, Configuration conf) {
   result =
     strictcount(NodeEx n |
-      flowOutOfCallNodeCand1(_, n1, n, conf) or flowIntoCallNodeCand1(_, n1, n, conf)
+      flowOutOfCallNodeCand1(_, n1, _, n, conf) or flowIntoCallNodeCand1(_, n1, n, conf)
     )
 }
 
@@ -1102,7 +1117,7 @@ private int branch(NodeEx n1, Configuration conf) {
 private int join(NodeEx n2, Configuration conf) {
   result =
     strictcount(NodeEx n |
-      flowOutOfCallNodeCand1(_, n, n2, conf) or flowIntoCallNodeCand1(_, n, n2, conf)
+      flowOutOfCallNodeCand1(_, n, _, n2, conf) or flowIntoCallNodeCand1(_, n, n2, conf)
     )
 }
 
@@ -1115,12 +1130,13 @@ private int join(NodeEx n2, Configuration conf) {
  */
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand1(
-  DataFlowCall call, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow, Configuration config
+  DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
+  Configuration config
 ) {
-  flowOutOfCallNodeCand1(call, ret, out, config) and
+  flowOutOfCallNodeCand1(call, ret, pos, out, pragma[only_bind_into](config)) and
   exists(int b, int j |
-    b = branch(ret, config) and
-    j = join(out, config) and
+    b = branch(ret, pragma[only_bind_into](config)) and
+    j = join(out, pragma[only_bind_into](config)) and
     if b.minimum(j) <= config.fieldFlowBranchLimit()
     then allowsFieldFlow = true
     else allowsFieldFlow = false
@@ -1156,7 +1172,9 @@ private signature module StageSig {
 
   predicate callMayFlowThroughRev(DataFlowCall call, Configuration config);
 
-  predicate parameterMayFlowThrough(ParamNodeEx p, DataFlowCallable c, Ap ap, Configuration config);
+  predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config);
+
+  predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config);
 
   predicate storeStepCand(
     NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, DataFlowType contentType,
@@ -1222,7 +1240,8 @@ private module MkStage<StageSig PrevStage> {
     );
 
     predicate flowOutOfCall(
-      DataFlowCall call, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow, Configuration config
+      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
+      Configuration config
     );
 
     predicate flowIntoCall(
@@ -1247,14 +1266,16 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate flowThroughOutOfCall(
-      DataFlowCall call, CcCall ccc, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow,
-      Configuration config
+      DataFlowCall call, CcCall ccc, RetNodeEx ret, ReturnKindExt kind, NodeEx out,
+      boolean allowsFieldFlow, Configuration config
     ) {
-      flowOutOfCall(call, ret, out, allowsFieldFlow, pragma[only_bind_into](config)) and
-      PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
-      PrevStage::parameterMayFlowThrough(_, ret.getEnclosingCallable(), _,
-        pragma[only_bind_into](config)) and
-      matchesCall(ccc, call)
+      exists(ReturnPosition pos |
+        flowOutOfCall(call, ret, pos, out, allowsFieldFlow, pragma[only_bind_into](config)) and
+        kind = pos.getKind() and
+        PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
+        PrevStage::returnMayFlowThrough(ret, pos, pragma[only_bind_into](config)) and
+        matchesCall(ccc, call)
+      )
     }
 
     /**
@@ -1262,29 +1283,32 @@ private module MkStage<StageSig PrevStage> {
      * configuration `config`.
      *
      * The call context `cc` records whether the node is reached through an
-     * argument in a call, and if so, `argAp` records the access path of that
-     * argument.
+     * argument in a call, and if so, `summaryCtx` and `argAp` record the
+     * corresponding parameter and access path of that argument, respectively.
      */
     pragma[nomagic]
     additional predicate fwdFlow(
-      NodeEx node, FlowState state, Cc cc, ApOption argAp, Ap ap, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      Configuration config
     ) {
-      fwdFlow0(node, state, cc, argAp, ap, config) and
+      fwdFlow0(node, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::revFlow(node, state, unbindApa(getApprox(ap)), config) and
       filter(node, state, ap, config)
     }
 
     pragma[nomagic]
     private predicate fwdFlow0(
-      NodeEx node, FlowState state, Cc cc, ApOption argAp, Ap ap, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      Configuration config
     ) {
       sourceNode(node, state, config) and
       (if hasSourceCallCtx(config) then cc = ccSomeCall() else cc = ccNone()) and
       argAp = apNone() and
+      summaryCtx = TParamNodeNone() and
       ap = getApNil(node)
       or
       exists(NodeEx mid, FlowState state0, Ap ap0, LocalCc localCc |
-        fwdFlow(mid, state0, cc, argAp, ap0, config) and
+        fwdFlow(mid, state0, cc, summaryCtx, argAp, ap0, config) and
         localCc = getLocalCc(mid, cc)
       |
         localStep(mid, state0, node, state, true, _, config, localCc) and
@@ -1295,65 +1319,72 @@ private module MkStage<StageSig PrevStage> {
       )
       or
       exists(NodeEx mid |
-        fwdFlow(mid, pragma[only_bind_into](state), _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, pragma[only_bind_into](config)) and
         jumpStep(mid, node, config) and
         cc = ccNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone()
       )
       or
       exists(NodeEx mid, ApNil nil |
-        fwdFlow(mid, state, _, _, nil, pragma[only_bind_into](config)) and
+        fwdFlow(mid, state, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStep(mid, node, config) and
         cc = ccNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone() and
         ap = getApNil(node)
       )
       or
       exists(NodeEx mid, FlowState state0, ApNil nil |
-        fwdFlow(mid, state0, _, _, nil, pragma[only_bind_into](config)) and
+        fwdFlow(mid, state0, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStateStep(mid, state0, node, state, config) and
         cc = ccNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone() and
         ap = getApNil(node)
       )
       or
       // store
       exists(TypedContent tc, Ap ap0 |
-        fwdFlowStore(_, ap0, tc, node, state, cc, argAp, config) and
+        fwdFlowStore(_, ap0, tc, node, state, cc, summaryCtx, argAp, config) and
         ap = apCons(tc, ap0)
       )
       or
       // read
       exists(Ap ap0, Content c |
-        fwdFlowRead(ap0, c, _, node, state, cc, argAp, config) and
+        fwdFlowRead(ap0, c, _, node, state, cc, summaryCtx, argAp, config) and
         fwdFlowConsCand(ap0, c, ap, config)
       )
       or
       // flow into a callable
       exists(ApApprox apa |
-        fwdFlowIn(_, node, state, _, cc, _, ap, config) and
+        fwdFlowIn(_, node, state, _, cc, _, _, ap, config) and
         apa = getApprox(ap) and
-        if PrevStage::parameterMayFlowThrough(node, _, apa, config)
-        then argAp = apSome(ap)
-        else argAp = apNone()
+        if PrevStage::parameterMayFlowThrough(node, apa, config)
+        then (
+          summaryCtx = TParamNodeSome(node.asNode()) and argAp = apSome(ap)
+        ) else (
+          summaryCtx = TParamNodeNone() and argAp = apNone()
+        )
       )
       or
       // flow out of a callable
-      fwdFlowOutNotFromArg(node, state, cc, argAp, ap, config)
+      fwdFlowOutNotFromArg(node, state, cc, summaryCtx, argAp, ap, config)
       or
-      exists(DataFlowCall call, Ap argAp0 |
-        fwdFlowOutFromArg(call, node, state, argAp0, ap, config) and
-        fwdFlowIsEntered(call, cc, argAp, argAp0, config)
+      // flow through a callable
+      exists(DataFlowCall call, ParamNode summaryCtx0, Ap argAp0 |
+        fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, config) and
+        fwdFlowIsEntered(call, cc, summaryCtx, argAp, summaryCtx0, argAp0, config)
       )
     }
 
     pragma[nomagic]
     private predicate fwdFlowStore(
-      NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc, ApOption argAp,
-      Configuration config
+      NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc,
+      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
     ) {
       exists(DataFlowType contentType |
-        fwdFlow(node1, state, cc, argAp, ap1, config) and
+        fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, config) and
         PrevStage::storeStepCand(node1, unbindApa(getApprox(ap1)), tc, node2, contentType, config) and
         typecheckStore(ap1, contentType)
       )
@@ -1366,7 +1397,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowConsCand(Ap cons, Content c, Ap tail, Configuration config) {
       exists(TypedContent tc |
-        fwdFlowStore(_, tail, tc, _, _, _, _, config) and
+        fwdFlowStore(_, tail, tc, _, _, _, _, _, config) and
         tc.getContent() = c and
         cons = apCons(tc, tail)
       )
@@ -1374,21 +1405,21 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowRead(
-      Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc, ApOption argAp,
-      Configuration config
+      Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc,
+      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
     ) {
-      fwdFlow(node1, state, cc, argAp, ap, config) and
+      fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, c, node2, config) and
       getHeadContent(ap) = c
     }
 
     pragma[nomagic]
     private predicate fwdFlowIn(
-      DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, Cc innercc, ApOption argAp,
-      Ap ap, Configuration config
+      DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, Cc innercc,
+      ParamNodeOption summaryCtx, ApOption argAp, Ap ap, Configuration config
     ) {
       exists(ArgNodeEx arg, boolean allowsFieldFlow |
-        fwdFlow(arg, state, outercc, argAp, ap, config) and
+        fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, config) and
         flowIntoCall(call, arg, p, allowsFieldFlow, config) and
         innercc = getCallContextCall(call, p.getEnclosingCallable(), outercc) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
@@ -1397,14 +1428,15 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowOutNotFromArg(
-      NodeEx out, FlowState state, Cc ccOut, ApOption argAp, Ap ap, Configuration config
+      NodeEx out, FlowState state, Cc ccOut, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      Configuration config
     ) {
       exists(
         DataFlowCall call, RetNodeEx ret, boolean allowsFieldFlow, CcNoCall innercc,
         DataFlowCallable inner
       |
-        fwdFlow(ret, state, innercc, argAp, ap, config) and
-        flowOutOfCall(call, ret, out, allowsFieldFlow, config) and
+        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, config) and
+        flowOutOfCall(call, ret, _, out, allowsFieldFlow, config) and
         inner = ret.getEnclosingCallable() and
         ccOut = getCallContextReturn(inner, call, innercc) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
@@ -1413,12 +1445,14 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowOutFromArg(
-      DataFlowCall call, NodeEx out, FlowState state, Ap argAp, Ap ap, Configuration config
+      DataFlowCall call, NodeEx out, FlowState state, ParamNode summaryCtx, Ap argAp, Ap ap,
+      Configuration config
     ) {
-      exists(RetNodeEx ret, boolean allowsFieldFlow, CcCall ccc |
-        fwdFlow(ret, state, ccc, apSome(argAp), ap, config) and
-        flowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, config) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
+      exists(RetNodeEx ret, ReturnKindExt kind, boolean allowsFieldFlow, CcCall ccc |
+        fwdFlow(ret, state, ccc, TParamNodeSome(summaryCtx), apSome(argAp), ap, config) and
+        flowThroughOutOfCall(call, ccc, ret, kind, out, allowsFieldFlow, config) and
+        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
+        parameterFlowThroughAllowed(summaryCtx, kind)
       )
     }
 
@@ -1428,11 +1462,13 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate fwdFlowIsEntered(
-      DataFlowCall call, Cc cc, ApOption argAp, Ap ap, Configuration config
+      DataFlowCall call, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, ParamNode p, Ap ap,
+      Configuration config
     ) {
-      exists(ParamNodeEx p |
-        fwdFlowIn(call, p, _, cc, _, argAp, ap, config) and
-        PrevStage::parameterMayFlowThrough(p, _, unbindApa(getApprox(ap)), config)
+      exists(ParamNodeEx param |
+        fwdFlowIn(call, param, _, cc, _, summaryCtx, argAp, ap, config) and
+        PrevStage::parameterMayFlowThrough(param, unbindApa(getApprox(ap)), config) and
+        p = param.asNode()
       )
     }
 
@@ -1440,146 +1476,149 @@ private module MkStage<StageSig PrevStage> {
     private predicate storeStepFwd(
       NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, Ap ap2, Configuration config
     ) {
-      fwdFlowStore(node1, ap1, tc, node2, _, _, _, config) and
+      fwdFlowStore(node1, ap1, tc, node2, _, _, _, _, config) and
       ap2 = apCons(tc, ap1) and
-      fwdFlowRead(ap2, tc.getContent(), _, _, _, _, _, config)
+      fwdFlowRead(ap2, tc.getContent(), _, _, _, _, _, _, config)
     }
 
     private predicate readStepFwd(
       NodeEx n1, Ap ap1, Content c, NodeEx n2, Ap ap2, Configuration config
     ) {
-      fwdFlowRead(ap1, c, n1, n2, _, _, _, config) and
+      fwdFlowRead(ap1, c, n1, n2, _, _, _, _, config) and
       fwdFlowConsCand(ap1, c, ap2, config)
     }
 
     pragma[nomagic]
-    private predicate callMayFlowThroughFwd(DataFlowCall call, Configuration config) {
-      exists(Ap argAp0, NodeEx out, FlowState state, Cc cc, ApOption argAp, Ap ap |
-        fwdFlow(out, state, pragma[only_bind_into](cc), pragma[only_bind_into](argAp), ap,
-          pragma[only_bind_into](config)) and
-        fwdFlowOutFromArg(call, out, state, argAp0, ap, config) and
-        fwdFlowIsEntered(pragma[only_bind_into](call), pragma[only_bind_into](cc),
-          pragma[only_bind_into](argAp), pragma[only_bind_into](argAp0),
-          pragma[only_bind_into](config))
-      )
+    private predicate returnFlowsThrough(
+      RetNodeEx ret, ReturnPosition pos, FlowState state, CcCall ccc, ParamNode p, Ap argAp, Ap ap,
+      Configuration config
+    ) {
+      fwdFlow(ret, state, ccc, TParamNodeSome(p), apSome(argAp), ap, config) and
+      pos = ret.getReturnPosition() and
+      parameterFlowThroughAllowed(p, pos.getKind())
     }
 
     pragma[nomagic]
     private predicate flowThroughIntoCall(
       DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
     ) {
-      flowIntoCall(call, arg, p, allowsFieldFlow, config) and
-      fwdFlow(arg, _, _, _, _, pragma[only_bind_into](config)) and
-      PrevStage::parameterMayFlowThrough(p, _, _, pragma[only_bind_into](config)) and
-      callMayFlowThroughFwd(call, pragma[only_bind_into](config))
-    }
-
-    pragma[nomagic]
-    private predicate returnNodeMayFlowThrough(
-      RetNodeEx ret, FlowState state, Ap ap, Configuration config
-    ) {
-      fwdFlow(ret, state, any(CcCall ccc), apSome(_), ap, config)
+      flowIntoCall(call, pragma[only_bind_into](arg), pragma[only_bind_into](p), allowsFieldFlow,
+        pragma[only_bind_into](config)) and
+      fwdFlow(arg, _, _, _, _, _, pragma[only_bind_into](config)) and
+      returnFlowsThrough(_, _, _, _, p.asNode(), _, _, pragma[only_bind_into](config))
     }
 
     /**
      * Holds if `node` with access path `ap` is part of a path from a source to a
      * sink in the configuration `config`.
      *
-     * The Boolean `toReturn` records whether the node must be returned from the
-     * enclosing callable in order to reach a sink, and if so, `returnAp` records
-     * the access path of the returned value.
+     * The parameter `returnCtx` records whether (and how) the node must be returned
+     * from the enclosing callable in order to reach a sink, and if so, `returnAp`
+     * records the access path of the returned value.
      */
     pragma[nomagic]
     additional predicate revFlow(
-      NodeEx node, FlowState state, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
+      NodeEx node, FlowState state, ReturnCtx returnCtx, ApOption returnAp, Ap ap,
+      Configuration config
     ) {
-      revFlow0(node, state, toReturn, returnAp, ap, config) and
-      fwdFlow(node, state, _, _, ap, config)
+      revFlow0(node, state, returnCtx, returnAp, ap, config) and
+      fwdFlow(node, state, _, _, _, ap, config)
     }
 
     pragma[nomagic]
     private predicate revFlow0(
-      NodeEx node, FlowState state, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
+      NodeEx node, FlowState state, ReturnCtx returnCtx, ApOption returnAp, Ap ap,
+      Configuration config
     ) {
-      fwdFlow(node, state, _, _, ap, config) and
+      fwdFlow(node, state, _, _, _, ap, config) and
       sinkNode(node, state, config) and
-      (if hasSinkCallCtx(config) then toReturn = true else toReturn = false) and
+      (
+        if hasSinkCallCtx(config)
+        then returnCtx = TReturnCtxNoFlowThrough()
+        else returnCtx = TReturnCtxNone()
+      ) and
       returnAp = apNone() and
       ap instanceof ApNil
       or
       exists(NodeEx mid, FlowState state0 |
         localStep(node, state, mid, state0, true, _, config, _) and
-        revFlow(mid, state0, toReturn, returnAp, ap, config)
+        revFlow(mid, state0, returnCtx, returnAp, ap, config)
       )
       or
       exists(NodeEx mid, FlowState state0, ApNil nil |
-        fwdFlow(node, pragma[only_bind_into](state), _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(node, pragma[only_bind_into](state), _, _, _, ap, pragma[only_bind_into](config)) and
         localStep(node, pragma[only_bind_into](state), mid, state0, false, _, config, _) and
-        revFlow(mid, state0, toReturn, returnAp, nil, pragma[only_bind_into](config)) and
+        revFlow(mid, state0, returnCtx, returnAp, nil, pragma[only_bind_into](config)) and
         ap instanceof ApNil
       )
       or
       exists(NodeEx mid |
         jumpStep(node, mid, config) and
         revFlow(mid, state, _, _, ap, config) and
-        toReturn = false and
+        returnCtx = TReturnCtxNone() and
         returnAp = apNone()
       )
       or
       exists(NodeEx mid, ApNil nil |
-        fwdFlow(node, _, _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(node, _, _, _, _, ap, pragma[only_bind_into](config)) and
         additionalJumpStep(node, mid, config) and
         revFlow(pragma[only_bind_into](mid), state, _, _, nil, pragma[only_bind_into](config)) and
-        toReturn = false and
+        returnCtx = TReturnCtxNone() and
         returnAp = apNone() and
         ap instanceof ApNil
       )
       or
       exists(NodeEx mid, FlowState state0, ApNil nil |
-        fwdFlow(node, _, _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(node, _, _, _, _, ap, pragma[only_bind_into](config)) and
         additionalJumpStateStep(node, state, mid, state0, config) and
         revFlow(pragma[only_bind_into](mid), pragma[only_bind_into](state0), _, _, nil,
           pragma[only_bind_into](config)) and
-        toReturn = false and
+        returnCtx = TReturnCtxNone() and
         returnAp = apNone() and
         ap instanceof ApNil
       )
       or
       // store
       exists(Ap ap0, Content c |
-        revFlowStore(ap0, c, ap, node, state, _, _, toReturn, returnAp, config) and
+        revFlowStore(ap0, c, ap, node, state, _, _, returnCtx, returnAp, config) and
         revFlowConsCand(ap0, c, ap, config)
       )
       or
       // read
       exists(NodeEx mid, Ap ap0 |
-        revFlow(mid, state, toReturn, returnAp, ap0, config) and
+        revFlow(mid, state, returnCtx, returnAp, ap0, config) and
         readStepFwd(node, ap, _, mid, ap0, config)
       )
       or
       // flow into a callable
       revFlowInNotToReturn(node, state, returnAp, ap, config) and
-      toReturn = false
+      returnCtx = TReturnCtxNone()
       or
-      exists(DataFlowCall call, Ap returnAp0 |
-        revFlowInToReturn(call, node, state, returnAp0, ap, config) and
-        revFlowIsReturned(call, toReturn, returnAp, returnAp0, config)
+      // flow through a callable
+      exists(DataFlowCall call, ReturnPosition returnPos0, Ap returnAp0 |
+        revFlowInToReturn(call, node, state, returnPos0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnPos0, returnAp0, config)
       )
       or
       // flow out of a callable
-      revFlowOut(_, node, state, _, _, ap, config) and
-      toReturn = true and
-      if returnNodeMayFlowThrough(node, state, ap, config)
-      then returnAp = apSome(ap)
-      else returnAp = apNone()
+      exists(ReturnPosition pos |
+        revFlowOut(_, node, pos, state, _, _, ap, config) and
+        if returnFlowsThrough(node, pos, state, _, _, _, ap, config)
+        then (
+          returnCtx = TReturnCtxMaybeFlowThrough(pos) and
+          returnAp = apSome(ap)
+        ) else (
+          returnCtx = TReturnCtxNoFlowThrough() and returnAp = apNone()
+        )
+      )
     }
 
     pragma[nomagic]
     private predicate revFlowStore(
       Ap ap0, Content c, Ap ap, NodeEx node, FlowState state, TypedContent tc, NodeEx mid,
-      boolean toReturn, ApOption returnAp, Configuration config
+      ReturnCtx returnCtx, ApOption returnAp, Configuration config
     ) {
-      revFlow(mid, state, toReturn, returnAp, ap0, config) and
+      revFlow(mid, state, returnCtx, returnAp, ap0, config) and
       storeStepFwd(node, ap, tc, mid, ap0, config) and
       tc.getContent() = c
     }
@@ -1599,12 +1638,12 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate revFlowOut(
-      DataFlowCall call, RetNodeEx ret, FlowState state, boolean toReturn, ApOption returnAp, Ap ap,
-      Configuration config
+      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, FlowState state, ReturnCtx returnCtx,
+      ApOption returnAp, Ap ap, Configuration config
     ) {
       exists(NodeEx out, boolean allowsFieldFlow |
-        revFlow(out, state, toReturn, returnAp, ap, config) and
-        flowOutOfCall(call, ret, out, allowsFieldFlow, config) and
+        revFlow(out, state, returnCtx, returnAp, ap, config) and
+        flowOutOfCall(call, ret, pos, out, allowsFieldFlow, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
@@ -1614,7 +1653,7 @@ private module MkStage<StageSig PrevStage> {
       ArgNodeEx arg, FlowState state, ApOption returnAp, Ap ap, Configuration config
     ) {
       exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(p, state, false, returnAp, ap, config) and
+        revFlow(p, state, TReturnCtxNone(), returnAp, ap, config) and
         flowIntoCall(_, arg, p, allowsFieldFlow, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
@@ -1622,12 +1661,14 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate revFlowInToReturn(
-      DataFlowCall call, ArgNodeEx arg, FlowState state, Ap returnAp, Ap ap, Configuration config
+      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnPosition returnPos, Ap returnAp,
+      Ap ap, Configuration config
     ) {
       exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(p, state, true, apSome(returnAp), ap, config) and
+        revFlow(p, state, TReturnCtxMaybeFlowThrough(returnPos), apSome(returnAp), ap, config) and
         flowThroughIntoCall(call, arg, p, allowsFieldFlow, config) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
+        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
+        parameterFlowThroughAllowed(p.asNode(), returnPos.getKind())
       )
     }
 
@@ -1638,11 +1679,12 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate revFlowIsReturned(
-      DataFlowCall call, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
+      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnPosition pos, Ap ap,
+      Configuration config
     ) {
       exists(RetNodeEx ret, FlowState state, CcCall ccc |
-        revFlowOut(call, ret, state, toReturn, returnAp, ap, config) and
-        fwdFlow(ret, state, ccc, apSome(_), ap, config) and
+        revFlowOut(call, ret, pos, state, returnCtx, returnAp, ap, config) and
+        returnFlowsThrough(ret, pos, state, ccc, _, _, ap, config) and
         matchesCall(ccc, call)
       )
     }
@@ -1713,40 +1755,39 @@ private module MkStage<StageSig PrevStage> {
       validAp(ap, config)
     }
 
-    pragma[noinline]
-    private predicate parameterFlow(
-      ParamNodeEx p, Ap ap, Ap ap0, DataFlowCallable c, Configuration config
+    pragma[nomagic]
+    private predicate parameterFlowsThroughRev(
+      ParamNodeEx p, Ap ap, ReturnPosition returnPos, Configuration config
     ) {
-      revFlow(p, _, true, apSome(ap0), ap, config) and
-      c = p.getEnclosingCallable()
+      revFlow(p, _, TReturnCtxMaybeFlowThrough(returnPos), apSome(_), ap, config) and
+      parameterFlowThroughAllowed(p.asNode(), returnPos.getKind())
     }
 
-    predicate parameterMayFlowThrough(ParamNodeEx p, DataFlowCallable c, Ap ap, Configuration config) {
-      exists(RetNodeEx ret, FlowState state, Ap ap0, ReturnKindExt kind, ParameterPosition pos |
-        parameterFlow(p, ap, ap0, c, config) and
-        c = ret.getEnclosingCallable() and
-        revFlow(pragma[only_bind_into](ret), pragma[only_bind_into](state), true, apSome(_),
-          pragma[only_bind_into](ap0), pragma[only_bind_into](config)) and
-        fwdFlow(ret, state, any(CcCall ccc), apSome(ap), ap0, config) and
-        kind = ret.getKind() and
-        p.getPosition() = pos and
-        // we don't expect a parameter to return stored in itself, unless explicitly allowed
-        (
-          not kind.(ParamUpdateReturnKind).getPosition() = pos
-          or
-          p.allowParameterReturnInSelf()
-        )
+    pragma[nomagic]
+    predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
+      exists(RetNodeEx ret, ReturnPosition pos |
+        returnFlowsThrough(ret, pos, _, _, p.asNode(), ap, _, config) and
+        parameterFlowsThroughRev(p, ap, pos, config)
+      )
+    }
+
+    pragma[nomagic]
+    predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config) {
+      exists(ParamNodeEx p, Ap ap |
+        returnFlowsThrough(ret, pos, _, _, p.asNode(), ap, _, config) and
+        parameterFlowsThroughRev(p, ap, pos, config)
       )
     }
 
     pragma[nomagic]
     predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
       exists(
-        Ap returnAp0, ArgNodeEx arg, FlowState state, boolean toReturn, ApOption returnAp, Ap ap
+        ReturnPosition returnPos0, Ap returnAp0, ArgNodeEx arg, FlowState state,
+        ReturnCtx returnCtx, ApOption returnAp, Ap ap
       |
-        revFlow(arg, state, toReturn, returnAp, ap, config) and
-        revFlowInToReturn(call, arg, state, returnAp0, ap, config) and
-        revFlowIsReturned(call, toReturn, returnAp, returnAp0, config)
+        revFlow(arg, state, returnCtx, returnAp, ap, config) and
+        revFlowInToReturn(call, arg, state, returnPos0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnPos0, returnAp0, config)
       )
     }
 
@@ -1754,13 +1795,13 @@ private module MkStage<StageSig PrevStage> {
       boolean fwd, int nodes, int fields, int conscand, int states, int tuples, Configuration config
     ) {
       fwd = true and
-      nodes = count(NodeEx node | fwdFlow(node, _, _, _, _, config)) and
+      nodes = count(NodeEx node | fwdFlow(node, _, _, _, _, _, config)) and
       fields = count(TypedContent f0 | fwdConsCand(f0, _, config)) and
       conscand = count(TypedContent f0, Ap ap | fwdConsCand(f0, ap, config)) and
-      states = count(FlowState state | fwdFlow(_, state, _, _, _, config)) and
+      states = count(FlowState state | fwdFlow(_, state, _, _, _, _, config)) and
       tuples =
-        count(NodeEx n, FlowState state, Cc cc, ApOption argAp, Ap ap |
-          fwdFlow(n, state, cc, argAp, ap, config)
+        count(NodeEx n, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap |
+          fwdFlow(n, state, cc, summaryCtx, argAp, ap, config)
         )
       or
       fwd = false and
@@ -1769,8 +1810,8 @@ private module MkStage<StageSig PrevStage> {
       conscand = count(TypedContent f0, Ap ap | consCand(f0, ap, config)) and
       states = count(FlowState state | revFlow(_, state, _, _, _, config)) and
       tuples =
-        count(NodeEx n, FlowState state, boolean b, ApOption retAp, Ap ap |
-          revFlow(n, state, b, retAp, ap, config)
+        count(NodeEx n, FlowState state, ReturnCtx returnCtx, ApOption retAp, Ap ap |
+          revFlow(n, state, returnCtx, retAp, ap, config)
         )
     }
     /* End: Stage logic. */
@@ -1915,7 +1956,7 @@ private module Stage2Param implements MkStage<Stage1>::StageParam {
     exists(lcc)
   }
 
-  predicate flowOutOfCall = flowOutOfCallNodeCand1/5;
+  predicate flowOutOfCall = flowOutOfCallNodeCand1/6;
 
   predicate flowIntoCall = flowIntoCallNodeCand1/5;
 
@@ -1951,9 +1992,10 @@ private module Stage2 implements StageSig {
 
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand2(
-  DataFlowCall call, RetNodeEx node1, NodeEx node2, boolean allowsFieldFlow, Configuration config
+  DataFlowCall call, RetNodeEx node1, ReturnPosition pos, NodeEx node2, boolean allowsFieldFlow,
+  Configuration config
 ) {
-  flowOutOfCallNodeCand1(call, node1, node2, allowsFieldFlow, config) and
+  flowOutOfCallNodeCand1(call, node1, pos, node2, allowsFieldFlow, config) and
   Stage2::revFlow(node2, pragma[only_bind_into](config)) and
   Stage2::revFlowAlias(node1, pragma[only_bind_into](config))
 }
@@ -2021,8 +2063,8 @@ private module LocalFlowBigStep {
     exists(NodeEx next | Stage2::revFlow(next, state, config) |
       jumpStep(node, next, config) or
       additionalJumpStep(node, next, config) or
-      flowIntoCallNodeCand1(_, node, next, config) or
-      flowOutOfCallNodeCand1(_, node, next, config) or
+      flowIntoCallNodeCand2(_, node, next, _, config) or
+      flowOutOfCallNodeCand2(_, node, _, next, _, config) or
       Stage2::storeStepCand(node, _, _, next, _, config) or
       Stage2::readStepCand(node, _, next, config)
     )
@@ -2163,7 +2205,7 @@ private module Stage3Param implements MkStage<Stage2>::StageParam {
     localFlowBigStep(node1, state1, node2, state2, preservesValue, ap, config, _) and exists(lcc)
   }
 
-  predicate flowOutOfCall = flowOutOfCallNodeCand2/5;
+  predicate flowOutOfCall = flowOutOfCallNodeCand2/6;
 
   predicate flowIntoCall = flowIntoCallNodeCand2/5;
 
@@ -2233,8 +2275,9 @@ private predicate flowCandSummaryCtx(
   NodeEx node, FlowState state, AccessPathFront argApf, Configuration config
 ) {
   exists(AccessPathFront apf |
-    Stage3::revFlow(node, state, true, _, apf, config) and
-    Stage3::fwdFlow(node, state, any(Stage3::CcCall ccc), TAccessPathFrontSome(argApf), apf, config)
+    Stage3::revFlow(node, state, TReturnCtxMaybeFlowThrough(_), _, apf, config) and
+    Stage3::fwdFlow(node, state, any(Stage3::CcCall ccc), _, TAccessPathFrontSome(argApf), apf,
+      config)
   )
 }
 
@@ -2468,10 +2511,11 @@ private module Stage4Param implements MkStage<Stage3>::StageParam {
 
   pragma[nomagic]
   predicate flowOutOfCall(
-    DataFlowCall call, RetNodeEx node1, NodeEx node2, boolean allowsFieldFlow, Configuration config
+    DataFlowCall call, RetNodeEx node1, ReturnPosition pos, NodeEx node2, boolean allowsFieldFlow,
+    Configuration config
   ) {
     exists(FlowState state |
-      flowOutOfCallNodeCand2(call, node1, node2, allowsFieldFlow, config) and
+      flowOutOfCallNodeCand2(call, node1, pos, node2, allowsFieldFlow, config) and
       PrevStage::revFlow(node2, pragma[only_bind_into](state), _, pragma[only_bind_into](config)) and
       PrevStage::revFlowAlias(node1, pragma[only_bind_into](state), _,
         pragma[only_bind_into](config))
@@ -2508,13 +2552,13 @@ private Configuration unbindConf(Configuration conf) {
 
 pragma[nomagic]
 private predicate nodeMayUseSummary0(
-  NodeEx n, DataFlowCallable c, FlowState state, AccessPathApprox apa, Configuration config
+  NodeEx n, ParamNodeEx p, FlowState state, AccessPathApprox apa, Configuration config
 ) {
   exists(AccessPathApprox apa0 |
-    Stage4::parameterMayFlowThrough(_, c, _, _) and
-    Stage4::revFlow(n, state, true, _, apa0, config) and
-    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TAccessPathApproxSome(apa), apa0, config) and
-    n.getEnclosingCallable() = c
+    Stage4::parameterMayFlowThrough(p, _, _) and
+    Stage4::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
+    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TParamNodeSome(p.asNode()),
+      TAccessPathApproxSome(apa), apa0, config)
   )
 }
 
@@ -2522,9 +2566,9 @@ pragma[nomagic]
 private predicate nodeMayUseSummary(
   NodeEx n, FlowState state, AccessPathApprox apa, Configuration config
 ) {
-  exists(DataFlowCallable c |
-    Stage4::parameterMayFlowThrough(_, c, apa, config) and
-    nodeMayUseSummary0(n, c, state, apa, config)
+  exists(ParamNodeEx p |
+    Stage4::parameterMayFlowThrough(p, apa, config) and
+    nodeMayUseSummary0(n, p, state, apa, config)
   )
 }
 
@@ -2532,7 +2576,7 @@ private newtype TSummaryCtx =
   TSummaryCtxNone() or
   TSummaryCtxSome(ParamNodeEx p, FlowState state, AccessPath ap) {
     exists(Configuration config |
-      Stage4::parameterMayFlowThrough(p, _, ap.getApprox(), config) and
+      Stage4::parameterMayFlowThrough(p, ap.getApprox(), config) and
       Stage4::revFlow(p, state, _, config)
     )
   }
@@ -3453,17 +3497,11 @@ private predicate paramFlowsThrough(
   ReturnKindExt kind, FlowState state, CallContextCall cc, SummaryCtxSome sc, AccessPath ap,
   AccessPathApprox apa, Configuration config
 ) {
-  exists(PathNodeMid mid, RetNodeEx ret, ParameterPosition pos |
+  exists(PathNodeMid mid, RetNodeEx ret |
     pathNode(mid, ret, state, cc, sc, ap, config, _) and
     kind = ret.getKind() and
     apa = ap.getApprox() and
-    pos = sc.getParameterPos() and
-    // we don't expect a parameter to return stored in itself, unless explicitly allowed
-    (
-      not kind.(ParamUpdateReturnKind).getPosition() = pos
-      or
-      sc.getParamNode().allowParameterReturnInSelf()
-    )
+    parameterFlowThroughAllowed(sc.getParamNode().asNode(), kind)
   )
 }
 
diff --git a/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImplCommon.qll b/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImplCommon.qll
index ae9c6f3f12e..621ed34f9d0 100644
--- a/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImplCommon.qll
+++ b/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImplCommon.qll
@@ -915,6 +915,17 @@ private module Cached {
     TDataFlowCallNone() or
     TDataFlowCallSome(DataFlowCall call)
 
+  cached
+  newtype TParamNodeOption =
+    TParamNodeNone() or
+    TParamNodeSome(ParamNode p)
+
+  cached
+  newtype TReturnCtx =
+    TReturnCtxNone() or
+    TReturnCtxNoFlowThrough() or
+    TReturnCtxMaybeFlowThrough(ReturnPosition pos)
+
   cached
   newtype TTypedContent = MkTypedContent(Content c, DataFlowType t) { store(_, c, _, _, t) }
 
@@ -1304,6 +1315,44 @@ class DataFlowCallOption extends TDataFlowCallOption {
   }
 }
 
+/** An optional `ParamNode`. */
+class ParamNodeOption extends TParamNodeOption {
+  string toString() {
+    this = TParamNodeNone() and
+    result = "(none)"
+    or
+    exists(ParamNode p |
+      this = TParamNodeSome(p) and
+      result = p.toString()
+    )
+  }
+}
+
+/**
+ * A return context used to calculate flow summaries in reverse flow.
+ *
+ * The possible values are:
+ *
+ * - `TReturnCtxNone()`: no return flow.
+ * - `TReturnCtxNoFlowThrough()`: return flow, but flow through is not possible.
+ * - `TReturnCtxMaybeFlowThrough(ReturnPosition pos)`: return flow, of kind `pos`, and
+ *    flow through may be possible.
+ */
+class ReturnCtx extends TReturnCtx {
+  string toString() {
+    this = TReturnCtxNone() and
+    result = "(none)"
+    or
+    this = TReturnCtxNoFlowThrough() and
+    result = "(no flow through)"
+    or
+    exists(ReturnPosition pos |
+      this = TReturnCtxMaybeFlowThrough(pos) and
+      result = pos.toString()
+    )
+  }
+}
+
 /** A `Content` tagged with the type of a containing object. */
 class TypedContent extends MkTypedContent {
   private Content c;
diff --git a/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImplLocal.qll b/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImplLocal.qll
index 3c41b1876dc..a52ad110662 100644
--- a/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImplLocal.qll
+++ b/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImplLocal.qll
@@ -319,8 +319,6 @@ private class ParamNodeEx extends NodeEx {
   }
 
   ParameterPosition getPosition() { this.isParameterOf(_, result) }
-
-  predicate allowParameterReturnInSelf() { allowParameterReturnInSelfCached(this.asNode()) }
 }
 
 private class RetNodeEx extends NodeEx {
@@ -608,6 +606,21 @@ private predicate hasSinkCallCtx(Configuration config) {
   )
 }
 
+/**
+ * Holds if flow from `p` to a return node of kind `kind` is allowed.
+ *
+ * We don't expect a parameter to return stored in itself, unless
+ * explicitly allowed
+ */
+bindingset[p, kind]
+private predicate parameterFlowThroughAllowed(ParamNode p, ReturnKindExt kind) {
+  exists(ParameterPosition pos | p.isParameterOf(_, pos) |
+    not kind.(ParamUpdateReturnKind).getPosition() = pos
+    or
+    allowParameterReturnInSelfCached(p)
+  )
+}
+
 private module Stage1 implements StageSig {
   class Ap = Unit;
 
@@ -981,21 +994,22 @@ private module Stage1 implements StageSig {
    * candidate for the origin of a summary.
    */
   pragma[nomagic]
-  predicate parameterMayFlowThrough(ParamNodeEx p, DataFlowCallable c, Ap ap, Configuration config) {
-    exists(ReturnKindExt kind |
+  predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
+    exists(DataFlowCallable c, ReturnKindExt kind |
       throughFlowNodeCand(p, config) and
       returnFlowCallableNodeCand(c, kind, config) and
       p.getEnclosingCallable() = c and
       exists(ap) and
-      // we don't expect a parameter to return stored in itself, unless explicitly allowed
-      (
-        not kind.(ParamUpdateReturnKind).getPosition() = p.getPosition()
-        or
-        p.allowParameterReturnInSelf()
-      )
+      parameterFlowThroughAllowed(p.asNode(), kind)
     )
   }
 
+  pragma[nomagic]
+  predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config) {
+    throughFlowNodeCand(ret, config) and
+    pos = ret.getReturnPosition()
+  }
+
   pragma[nomagic]
   predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
     exists(ArgNodeEx arg, boolean toReturn |
@@ -1052,9 +1066,10 @@ private predicate viableReturnPosOutNodeCand1(
  */
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand1(
-  DataFlowCall call, RetNodeEx ret, NodeEx out, Configuration config
+  DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, Configuration config
 ) {
-  viableReturnPosOutNodeCand1(call, ret.getReturnPosition(), out, config) and
+  viableReturnPosOutNodeCand1(call, pos, out, config) and
+  pos = ret.getReturnPosition() and
   Stage1::revFlow(ret, config) and
   not outBarrier(ret, config) and
   not inBarrier(out, config)
@@ -1090,7 +1105,7 @@ private predicate flowIntoCallNodeCand1(
 private int branch(NodeEx n1, Configuration conf) {
   result =
     strictcount(NodeEx n |
-      flowOutOfCallNodeCand1(_, n1, n, conf) or flowIntoCallNodeCand1(_, n1, n, conf)
+      flowOutOfCallNodeCand1(_, n1, _, n, conf) or flowIntoCallNodeCand1(_, n1, n, conf)
     )
 }
 
@@ -1102,7 +1117,7 @@ private int branch(NodeEx n1, Configuration conf) {
 private int join(NodeEx n2, Configuration conf) {
   result =
     strictcount(NodeEx n |
-      flowOutOfCallNodeCand1(_, n, n2, conf) or flowIntoCallNodeCand1(_, n, n2, conf)
+      flowOutOfCallNodeCand1(_, n, _, n2, conf) or flowIntoCallNodeCand1(_, n, n2, conf)
     )
 }
 
@@ -1115,12 +1130,13 @@ private int join(NodeEx n2, Configuration conf) {
  */
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand1(
-  DataFlowCall call, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow, Configuration config
+  DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
+  Configuration config
 ) {
-  flowOutOfCallNodeCand1(call, ret, out, config) and
+  flowOutOfCallNodeCand1(call, ret, pos, out, pragma[only_bind_into](config)) and
   exists(int b, int j |
-    b = branch(ret, config) and
-    j = join(out, config) and
+    b = branch(ret, pragma[only_bind_into](config)) and
+    j = join(out, pragma[only_bind_into](config)) and
     if b.minimum(j) <= config.fieldFlowBranchLimit()
     then allowsFieldFlow = true
     else allowsFieldFlow = false
@@ -1156,7 +1172,9 @@ private signature module StageSig {
 
   predicate callMayFlowThroughRev(DataFlowCall call, Configuration config);
 
-  predicate parameterMayFlowThrough(ParamNodeEx p, DataFlowCallable c, Ap ap, Configuration config);
+  predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config);
+
+  predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config);
 
   predicate storeStepCand(
     NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, DataFlowType contentType,
@@ -1222,7 +1240,8 @@ private module MkStage<StageSig PrevStage> {
     );
 
     predicate flowOutOfCall(
-      DataFlowCall call, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow, Configuration config
+      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
+      Configuration config
     );
 
     predicate flowIntoCall(
@@ -1247,14 +1266,16 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate flowThroughOutOfCall(
-      DataFlowCall call, CcCall ccc, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow,
-      Configuration config
+      DataFlowCall call, CcCall ccc, RetNodeEx ret, ReturnKindExt kind, NodeEx out,
+      boolean allowsFieldFlow, Configuration config
     ) {
-      flowOutOfCall(call, ret, out, allowsFieldFlow, pragma[only_bind_into](config)) and
-      PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
-      PrevStage::parameterMayFlowThrough(_, ret.getEnclosingCallable(), _,
-        pragma[only_bind_into](config)) and
-      matchesCall(ccc, call)
+      exists(ReturnPosition pos |
+        flowOutOfCall(call, ret, pos, out, allowsFieldFlow, pragma[only_bind_into](config)) and
+        kind = pos.getKind() and
+        PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
+        PrevStage::returnMayFlowThrough(ret, pos, pragma[only_bind_into](config)) and
+        matchesCall(ccc, call)
+      )
     }
 
     /**
@@ -1262,29 +1283,32 @@ private module MkStage<StageSig PrevStage> {
      * configuration `config`.
      *
      * The call context `cc` records whether the node is reached through an
-     * argument in a call, and if so, `argAp` records the access path of that
-     * argument.
+     * argument in a call, and if so, `summaryCtx` and `argAp` record the
+     * corresponding parameter and access path of that argument, respectively.
      */
     pragma[nomagic]
     additional predicate fwdFlow(
-      NodeEx node, FlowState state, Cc cc, ApOption argAp, Ap ap, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      Configuration config
     ) {
-      fwdFlow0(node, state, cc, argAp, ap, config) and
+      fwdFlow0(node, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::revFlow(node, state, unbindApa(getApprox(ap)), config) and
       filter(node, state, ap, config)
     }
 
     pragma[nomagic]
     private predicate fwdFlow0(
-      NodeEx node, FlowState state, Cc cc, ApOption argAp, Ap ap, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      Configuration config
     ) {
       sourceNode(node, state, config) and
       (if hasSourceCallCtx(config) then cc = ccSomeCall() else cc = ccNone()) and
       argAp = apNone() and
+      summaryCtx = TParamNodeNone() and
       ap = getApNil(node)
       or
       exists(NodeEx mid, FlowState state0, Ap ap0, LocalCc localCc |
-        fwdFlow(mid, state0, cc, argAp, ap0, config) and
+        fwdFlow(mid, state0, cc, summaryCtx, argAp, ap0, config) and
         localCc = getLocalCc(mid, cc)
       |
         localStep(mid, state0, node, state, true, _, config, localCc) and
@@ -1295,65 +1319,72 @@ private module MkStage<StageSig PrevStage> {
       )
       or
       exists(NodeEx mid |
-        fwdFlow(mid, pragma[only_bind_into](state), _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, pragma[only_bind_into](config)) and
         jumpStep(mid, node, config) and
         cc = ccNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone()
       )
       or
       exists(NodeEx mid, ApNil nil |
-        fwdFlow(mid, state, _, _, nil, pragma[only_bind_into](config)) and
+        fwdFlow(mid, state, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStep(mid, node, config) and
         cc = ccNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone() and
         ap = getApNil(node)
       )
       or
       exists(NodeEx mid, FlowState state0, ApNil nil |
-        fwdFlow(mid, state0, _, _, nil, pragma[only_bind_into](config)) and
+        fwdFlow(mid, state0, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStateStep(mid, state0, node, state, config) and
         cc = ccNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone() and
         ap = getApNil(node)
       )
       or
       // store
       exists(TypedContent tc, Ap ap0 |
-        fwdFlowStore(_, ap0, tc, node, state, cc, argAp, config) and
+        fwdFlowStore(_, ap0, tc, node, state, cc, summaryCtx, argAp, config) and
         ap = apCons(tc, ap0)
       )
       or
       // read
       exists(Ap ap0, Content c |
-        fwdFlowRead(ap0, c, _, node, state, cc, argAp, config) and
+        fwdFlowRead(ap0, c, _, node, state, cc, summaryCtx, argAp, config) and
         fwdFlowConsCand(ap0, c, ap, config)
       )
       or
       // flow into a callable
       exists(ApApprox apa |
-        fwdFlowIn(_, node, state, _, cc, _, ap, config) and
+        fwdFlowIn(_, node, state, _, cc, _, _, ap, config) and
         apa = getApprox(ap) and
-        if PrevStage::parameterMayFlowThrough(node, _, apa, config)
-        then argAp = apSome(ap)
-        else argAp = apNone()
+        if PrevStage::parameterMayFlowThrough(node, apa, config)
+        then (
+          summaryCtx = TParamNodeSome(node.asNode()) and argAp = apSome(ap)
+        ) else (
+          summaryCtx = TParamNodeNone() and argAp = apNone()
+        )
       )
       or
       // flow out of a callable
-      fwdFlowOutNotFromArg(node, state, cc, argAp, ap, config)
+      fwdFlowOutNotFromArg(node, state, cc, summaryCtx, argAp, ap, config)
       or
-      exists(DataFlowCall call, Ap argAp0 |
-        fwdFlowOutFromArg(call, node, state, argAp0, ap, config) and
-        fwdFlowIsEntered(call, cc, argAp, argAp0, config)
+      // flow through a callable
+      exists(DataFlowCall call, ParamNode summaryCtx0, Ap argAp0 |
+        fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, config) and
+        fwdFlowIsEntered(call, cc, summaryCtx, argAp, summaryCtx0, argAp0, config)
       )
     }
 
     pragma[nomagic]
     private predicate fwdFlowStore(
-      NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc, ApOption argAp,
-      Configuration config
+      NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc,
+      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
     ) {
       exists(DataFlowType contentType |
-        fwdFlow(node1, state, cc, argAp, ap1, config) and
+        fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, config) and
         PrevStage::storeStepCand(node1, unbindApa(getApprox(ap1)), tc, node2, contentType, config) and
         typecheckStore(ap1, contentType)
       )
@@ -1366,7 +1397,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowConsCand(Ap cons, Content c, Ap tail, Configuration config) {
       exists(TypedContent tc |
-        fwdFlowStore(_, tail, tc, _, _, _, _, config) and
+        fwdFlowStore(_, tail, tc, _, _, _, _, _, config) and
         tc.getContent() = c and
         cons = apCons(tc, tail)
       )
@@ -1374,21 +1405,21 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowRead(
-      Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc, ApOption argAp,
-      Configuration config
+      Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc,
+      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
     ) {
-      fwdFlow(node1, state, cc, argAp, ap, config) and
+      fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, c, node2, config) and
       getHeadContent(ap) = c
     }
 
     pragma[nomagic]
     private predicate fwdFlowIn(
-      DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, Cc innercc, ApOption argAp,
-      Ap ap, Configuration config
+      DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, Cc innercc,
+      ParamNodeOption summaryCtx, ApOption argAp, Ap ap, Configuration config
     ) {
       exists(ArgNodeEx arg, boolean allowsFieldFlow |
-        fwdFlow(arg, state, outercc, argAp, ap, config) and
+        fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, config) and
         flowIntoCall(call, arg, p, allowsFieldFlow, config) and
         innercc = getCallContextCall(call, p.getEnclosingCallable(), outercc) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
@@ -1397,14 +1428,15 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowOutNotFromArg(
-      NodeEx out, FlowState state, Cc ccOut, ApOption argAp, Ap ap, Configuration config
+      NodeEx out, FlowState state, Cc ccOut, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      Configuration config
     ) {
       exists(
         DataFlowCall call, RetNodeEx ret, boolean allowsFieldFlow, CcNoCall innercc,
         DataFlowCallable inner
       |
-        fwdFlow(ret, state, innercc, argAp, ap, config) and
-        flowOutOfCall(call, ret, out, allowsFieldFlow, config) and
+        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, config) and
+        flowOutOfCall(call, ret, _, out, allowsFieldFlow, config) and
         inner = ret.getEnclosingCallable() and
         ccOut = getCallContextReturn(inner, call, innercc) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
@@ -1413,12 +1445,14 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowOutFromArg(
-      DataFlowCall call, NodeEx out, FlowState state, Ap argAp, Ap ap, Configuration config
+      DataFlowCall call, NodeEx out, FlowState state, ParamNode summaryCtx, Ap argAp, Ap ap,
+      Configuration config
     ) {
-      exists(RetNodeEx ret, boolean allowsFieldFlow, CcCall ccc |
-        fwdFlow(ret, state, ccc, apSome(argAp), ap, config) and
-        flowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, config) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
+      exists(RetNodeEx ret, ReturnKindExt kind, boolean allowsFieldFlow, CcCall ccc |
+        fwdFlow(ret, state, ccc, TParamNodeSome(summaryCtx), apSome(argAp), ap, config) and
+        flowThroughOutOfCall(call, ccc, ret, kind, out, allowsFieldFlow, config) and
+        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
+        parameterFlowThroughAllowed(summaryCtx, kind)
       )
     }
 
@@ -1428,11 +1462,13 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate fwdFlowIsEntered(
-      DataFlowCall call, Cc cc, ApOption argAp, Ap ap, Configuration config
+      DataFlowCall call, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, ParamNode p, Ap ap,
+      Configuration config
     ) {
-      exists(ParamNodeEx p |
-        fwdFlowIn(call, p, _, cc, _, argAp, ap, config) and
-        PrevStage::parameterMayFlowThrough(p, _, unbindApa(getApprox(ap)), config)
+      exists(ParamNodeEx param |
+        fwdFlowIn(call, param, _, cc, _, summaryCtx, argAp, ap, config) and
+        PrevStage::parameterMayFlowThrough(param, unbindApa(getApprox(ap)), config) and
+        p = param.asNode()
       )
     }
 
@@ -1440,146 +1476,149 @@ private module MkStage<StageSig PrevStage> {
     private predicate storeStepFwd(
       NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, Ap ap2, Configuration config
     ) {
-      fwdFlowStore(node1, ap1, tc, node2, _, _, _, config) and
+      fwdFlowStore(node1, ap1, tc, node2, _, _, _, _, config) and
       ap2 = apCons(tc, ap1) and
-      fwdFlowRead(ap2, tc.getContent(), _, _, _, _, _, config)
+      fwdFlowRead(ap2, tc.getContent(), _, _, _, _, _, _, config)
     }
 
     private predicate readStepFwd(
       NodeEx n1, Ap ap1, Content c, NodeEx n2, Ap ap2, Configuration config
     ) {
-      fwdFlowRead(ap1, c, n1, n2, _, _, _, config) and
+      fwdFlowRead(ap1, c, n1, n2, _, _, _, _, config) and
       fwdFlowConsCand(ap1, c, ap2, config)
     }
 
     pragma[nomagic]
-    private predicate callMayFlowThroughFwd(DataFlowCall call, Configuration config) {
-      exists(Ap argAp0, NodeEx out, FlowState state, Cc cc, ApOption argAp, Ap ap |
-        fwdFlow(out, state, pragma[only_bind_into](cc), pragma[only_bind_into](argAp), ap,
-          pragma[only_bind_into](config)) and
-        fwdFlowOutFromArg(call, out, state, argAp0, ap, config) and
-        fwdFlowIsEntered(pragma[only_bind_into](call), pragma[only_bind_into](cc),
-          pragma[only_bind_into](argAp), pragma[only_bind_into](argAp0),
-          pragma[only_bind_into](config))
-      )
+    private predicate returnFlowsThrough(
+      RetNodeEx ret, ReturnPosition pos, FlowState state, CcCall ccc, ParamNode p, Ap argAp, Ap ap,
+      Configuration config
+    ) {
+      fwdFlow(ret, state, ccc, TParamNodeSome(p), apSome(argAp), ap, config) and
+      pos = ret.getReturnPosition() and
+      parameterFlowThroughAllowed(p, pos.getKind())
     }
 
     pragma[nomagic]
     private predicate flowThroughIntoCall(
       DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
     ) {
-      flowIntoCall(call, arg, p, allowsFieldFlow, config) and
-      fwdFlow(arg, _, _, _, _, pragma[only_bind_into](config)) and
-      PrevStage::parameterMayFlowThrough(p, _, _, pragma[only_bind_into](config)) and
-      callMayFlowThroughFwd(call, pragma[only_bind_into](config))
-    }
-
-    pragma[nomagic]
-    private predicate returnNodeMayFlowThrough(
-      RetNodeEx ret, FlowState state, Ap ap, Configuration config
-    ) {
-      fwdFlow(ret, state, any(CcCall ccc), apSome(_), ap, config)
+      flowIntoCall(call, pragma[only_bind_into](arg), pragma[only_bind_into](p), allowsFieldFlow,
+        pragma[only_bind_into](config)) and
+      fwdFlow(arg, _, _, _, _, _, pragma[only_bind_into](config)) and
+      returnFlowsThrough(_, _, _, _, p.asNode(), _, _, pragma[only_bind_into](config))
     }
 
     /**
      * Holds if `node` with access path `ap` is part of a path from a source to a
      * sink in the configuration `config`.
      *
-     * The Boolean `toReturn` records whether the node must be returned from the
-     * enclosing callable in order to reach a sink, and if so, `returnAp` records
-     * the access path of the returned value.
+     * The parameter `returnCtx` records whether (and how) the node must be returned
+     * from the enclosing callable in order to reach a sink, and if so, `returnAp`
+     * records the access path of the returned value.
      */
     pragma[nomagic]
     additional predicate revFlow(
-      NodeEx node, FlowState state, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
+      NodeEx node, FlowState state, ReturnCtx returnCtx, ApOption returnAp, Ap ap,
+      Configuration config
     ) {
-      revFlow0(node, state, toReturn, returnAp, ap, config) and
-      fwdFlow(node, state, _, _, ap, config)
+      revFlow0(node, state, returnCtx, returnAp, ap, config) and
+      fwdFlow(node, state, _, _, _, ap, config)
     }
 
     pragma[nomagic]
     private predicate revFlow0(
-      NodeEx node, FlowState state, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
+      NodeEx node, FlowState state, ReturnCtx returnCtx, ApOption returnAp, Ap ap,
+      Configuration config
     ) {
-      fwdFlow(node, state, _, _, ap, config) and
+      fwdFlow(node, state, _, _, _, ap, config) and
       sinkNode(node, state, config) and
-      (if hasSinkCallCtx(config) then toReturn = true else toReturn = false) and
+      (
+        if hasSinkCallCtx(config)
+        then returnCtx = TReturnCtxNoFlowThrough()
+        else returnCtx = TReturnCtxNone()
+      ) and
       returnAp = apNone() and
       ap instanceof ApNil
       or
       exists(NodeEx mid, FlowState state0 |
         localStep(node, state, mid, state0, true, _, config, _) and
-        revFlow(mid, state0, toReturn, returnAp, ap, config)
+        revFlow(mid, state0, returnCtx, returnAp, ap, config)
       )
       or
       exists(NodeEx mid, FlowState state0, ApNil nil |
-        fwdFlow(node, pragma[only_bind_into](state), _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(node, pragma[only_bind_into](state), _, _, _, ap, pragma[only_bind_into](config)) and
         localStep(node, pragma[only_bind_into](state), mid, state0, false, _, config, _) and
-        revFlow(mid, state0, toReturn, returnAp, nil, pragma[only_bind_into](config)) and
+        revFlow(mid, state0, returnCtx, returnAp, nil, pragma[only_bind_into](config)) and
         ap instanceof ApNil
       )
       or
       exists(NodeEx mid |
         jumpStep(node, mid, config) and
         revFlow(mid, state, _, _, ap, config) and
-        toReturn = false and
+        returnCtx = TReturnCtxNone() and
         returnAp = apNone()
       )
       or
       exists(NodeEx mid, ApNil nil |
-        fwdFlow(node, _, _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(node, _, _, _, _, ap, pragma[only_bind_into](config)) and
         additionalJumpStep(node, mid, config) and
         revFlow(pragma[only_bind_into](mid), state, _, _, nil, pragma[only_bind_into](config)) and
-        toReturn = false and
+        returnCtx = TReturnCtxNone() and
         returnAp = apNone() and
         ap instanceof ApNil
       )
       or
       exists(NodeEx mid, FlowState state0, ApNil nil |
-        fwdFlow(node, _, _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(node, _, _, _, _, ap, pragma[only_bind_into](config)) and
         additionalJumpStateStep(node, state, mid, state0, config) and
         revFlow(pragma[only_bind_into](mid), pragma[only_bind_into](state0), _, _, nil,
           pragma[only_bind_into](config)) and
-        toReturn = false and
+        returnCtx = TReturnCtxNone() and
         returnAp = apNone() and
         ap instanceof ApNil
       )
       or
       // store
       exists(Ap ap0, Content c |
-        revFlowStore(ap0, c, ap, node, state, _, _, toReturn, returnAp, config) and
+        revFlowStore(ap0, c, ap, node, state, _, _, returnCtx, returnAp, config) and
         revFlowConsCand(ap0, c, ap, config)
       )
       or
       // read
       exists(NodeEx mid, Ap ap0 |
-        revFlow(mid, state, toReturn, returnAp, ap0, config) and
+        revFlow(mid, state, returnCtx, returnAp, ap0, config) and
         readStepFwd(node, ap, _, mid, ap0, config)
       )
       or
       // flow into a callable
       revFlowInNotToReturn(node, state, returnAp, ap, config) and
-      toReturn = false
+      returnCtx = TReturnCtxNone()
       or
-      exists(DataFlowCall call, Ap returnAp0 |
-        revFlowInToReturn(call, node, state, returnAp0, ap, config) and
-        revFlowIsReturned(call, toReturn, returnAp, returnAp0, config)
+      // flow through a callable
+      exists(DataFlowCall call, ReturnPosition returnPos0, Ap returnAp0 |
+        revFlowInToReturn(call, node, state, returnPos0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnPos0, returnAp0, config)
       )
       or
       // flow out of a callable
-      revFlowOut(_, node, state, _, _, ap, config) and
-      toReturn = true and
-      if returnNodeMayFlowThrough(node, state, ap, config)
-      then returnAp = apSome(ap)
-      else returnAp = apNone()
+      exists(ReturnPosition pos |
+        revFlowOut(_, node, pos, state, _, _, ap, config) and
+        if returnFlowsThrough(node, pos, state, _, _, _, ap, config)
+        then (
+          returnCtx = TReturnCtxMaybeFlowThrough(pos) and
+          returnAp = apSome(ap)
+        ) else (
+          returnCtx = TReturnCtxNoFlowThrough() and returnAp = apNone()
+        )
+      )
     }
 
     pragma[nomagic]
     private predicate revFlowStore(
       Ap ap0, Content c, Ap ap, NodeEx node, FlowState state, TypedContent tc, NodeEx mid,
-      boolean toReturn, ApOption returnAp, Configuration config
+      ReturnCtx returnCtx, ApOption returnAp, Configuration config
     ) {
-      revFlow(mid, state, toReturn, returnAp, ap0, config) and
+      revFlow(mid, state, returnCtx, returnAp, ap0, config) and
       storeStepFwd(node, ap, tc, mid, ap0, config) and
       tc.getContent() = c
     }
@@ -1599,12 +1638,12 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate revFlowOut(
-      DataFlowCall call, RetNodeEx ret, FlowState state, boolean toReturn, ApOption returnAp, Ap ap,
-      Configuration config
+      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, FlowState state, ReturnCtx returnCtx,
+      ApOption returnAp, Ap ap, Configuration config
     ) {
       exists(NodeEx out, boolean allowsFieldFlow |
-        revFlow(out, state, toReturn, returnAp, ap, config) and
-        flowOutOfCall(call, ret, out, allowsFieldFlow, config) and
+        revFlow(out, state, returnCtx, returnAp, ap, config) and
+        flowOutOfCall(call, ret, pos, out, allowsFieldFlow, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
@@ -1614,7 +1653,7 @@ private module MkStage<StageSig PrevStage> {
       ArgNodeEx arg, FlowState state, ApOption returnAp, Ap ap, Configuration config
     ) {
       exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(p, state, false, returnAp, ap, config) and
+        revFlow(p, state, TReturnCtxNone(), returnAp, ap, config) and
         flowIntoCall(_, arg, p, allowsFieldFlow, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
@@ -1622,12 +1661,14 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate revFlowInToReturn(
-      DataFlowCall call, ArgNodeEx arg, FlowState state, Ap returnAp, Ap ap, Configuration config
+      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnPosition returnPos, Ap returnAp,
+      Ap ap, Configuration config
     ) {
       exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(p, state, true, apSome(returnAp), ap, config) and
+        revFlow(p, state, TReturnCtxMaybeFlowThrough(returnPos), apSome(returnAp), ap, config) and
         flowThroughIntoCall(call, arg, p, allowsFieldFlow, config) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
+        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
+        parameterFlowThroughAllowed(p.asNode(), returnPos.getKind())
       )
     }
 
@@ -1638,11 +1679,12 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate revFlowIsReturned(
-      DataFlowCall call, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
+      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnPosition pos, Ap ap,
+      Configuration config
     ) {
       exists(RetNodeEx ret, FlowState state, CcCall ccc |
-        revFlowOut(call, ret, state, toReturn, returnAp, ap, config) and
-        fwdFlow(ret, state, ccc, apSome(_), ap, config) and
+        revFlowOut(call, ret, pos, state, returnCtx, returnAp, ap, config) and
+        returnFlowsThrough(ret, pos, state, ccc, _, _, ap, config) and
         matchesCall(ccc, call)
       )
     }
@@ -1713,40 +1755,39 @@ private module MkStage<StageSig PrevStage> {
       validAp(ap, config)
     }
 
-    pragma[noinline]
-    private predicate parameterFlow(
-      ParamNodeEx p, Ap ap, Ap ap0, DataFlowCallable c, Configuration config
+    pragma[nomagic]
+    private predicate parameterFlowsThroughRev(
+      ParamNodeEx p, Ap ap, ReturnPosition returnPos, Configuration config
     ) {
-      revFlow(p, _, true, apSome(ap0), ap, config) and
-      c = p.getEnclosingCallable()
+      revFlow(p, _, TReturnCtxMaybeFlowThrough(returnPos), apSome(_), ap, config) and
+      parameterFlowThroughAllowed(p.asNode(), returnPos.getKind())
     }
 
-    predicate parameterMayFlowThrough(ParamNodeEx p, DataFlowCallable c, Ap ap, Configuration config) {
-      exists(RetNodeEx ret, FlowState state, Ap ap0, ReturnKindExt kind, ParameterPosition pos |
-        parameterFlow(p, ap, ap0, c, config) and
-        c = ret.getEnclosingCallable() and
-        revFlow(pragma[only_bind_into](ret), pragma[only_bind_into](state), true, apSome(_),
-          pragma[only_bind_into](ap0), pragma[only_bind_into](config)) and
-        fwdFlow(ret, state, any(CcCall ccc), apSome(ap), ap0, config) and
-        kind = ret.getKind() and
-        p.getPosition() = pos and
-        // we don't expect a parameter to return stored in itself, unless explicitly allowed
-        (
-          not kind.(ParamUpdateReturnKind).getPosition() = pos
-          or
-          p.allowParameterReturnInSelf()
-        )
+    pragma[nomagic]
+    predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
+      exists(RetNodeEx ret, ReturnPosition pos |
+        returnFlowsThrough(ret, pos, _, _, p.asNode(), ap, _, config) and
+        parameterFlowsThroughRev(p, ap, pos, config)
+      )
+    }
+
+    pragma[nomagic]
+    predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config) {
+      exists(ParamNodeEx p, Ap ap |
+        returnFlowsThrough(ret, pos, _, _, p.asNode(), ap, _, config) and
+        parameterFlowsThroughRev(p, ap, pos, config)
       )
     }
 
     pragma[nomagic]
     predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
       exists(
-        Ap returnAp0, ArgNodeEx arg, FlowState state, boolean toReturn, ApOption returnAp, Ap ap
+        ReturnPosition returnPos0, Ap returnAp0, ArgNodeEx arg, FlowState state,
+        ReturnCtx returnCtx, ApOption returnAp, Ap ap
       |
-        revFlow(arg, state, toReturn, returnAp, ap, config) and
-        revFlowInToReturn(call, arg, state, returnAp0, ap, config) and
-        revFlowIsReturned(call, toReturn, returnAp, returnAp0, config)
+        revFlow(arg, state, returnCtx, returnAp, ap, config) and
+        revFlowInToReturn(call, arg, state, returnPos0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnPos0, returnAp0, config)
       )
     }
 
@@ -1754,13 +1795,13 @@ private module MkStage<StageSig PrevStage> {
       boolean fwd, int nodes, int fields, int conscand, int states, int tuples, Configuration config
     ) {
       fwd = true and
-      nodes = count(NodeEx node | fwdFlow(node, _, _, _, _, config)) and
+      nodes = count(NodeEx node | fwdFlow(node, _, _, _, _, _, config)) and
       fields = count(TypedContent f0 | fwdConsCand(f0, _, config)) and
       conscand = count(TypedContent f0, Ap ap | fwdConsCand(f0, ap, config)) and
-      states = count(FlowState state | fwdFlow(_, state, _, _, _, config)) and
+      states = count(FlowState state | fwdFlow(_, state, _, _, _, _, config)) and
       tuples =
-        count(NodeEx n, FlowState state, Cc cc, ApOption argAp, Ap ap |
-          fwdFlow(n, state, cc, argAp, ap, config)
+        count(NodeEx n, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap |
+          fwdFlow(n, state, cc, summaryCtx, argAp, ap, config)
         )
       or
       fwd = false and
@@ -1769,8 +1810,8 @@ private module MkStage<StageSig PrevStage> {
       conscand = count(TypedContent f0, Ap ap | consCand(f0, ap, config)) and
       states = count(FlowState state | revFlow(_, state, _, _, _, config)) and
       tuples =
-        count(NodeEx n, FlowState state, boolean b, ApOption retAp, Ap ap |
-          revFlow(n, state, b, retAp, ap, config)
+        count(NodeEx n, FlowState state, ReturnCtx returnCtx, ApOption retAp, Ap ap |
+          revFlow(n, state, returnCtx, retAp, ap, config)
         )
     }
     /* End: Stage logic. */
@@ -1915,7 +1956,7 @@ private module Stage2Param implements MkStage<Stage1>::StageParam {
     exists(lcc)
   }
 
-  predicate flowOutOfCall = flowOutOfCallNodeCand1/5;
+  predicate flowOutOfCall = flowOutOfCallNodeCand1/6;
 
   predicate flowIntoCall = flowIntoCallNodeCand1/5;
 
@@ -1951,9 +1992,10 @@ private module Stage2 implements StageSig {
 
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand2(
-  DataFlowCall call, RetNodeEx node1, NodeEx node2, boolean allowsFieldFlow, Configuration config
+  DataFlowCall call, RetNodeEx node1, ReturnPosition pos, NodeEx node2, boolean allowsFieldFlow,
+  Configuration config
 ) {
-  flowOutOfCallNodeCand1(call, node1, node2, allowsFieldFlow, config) and
+  flowOutOfCallNodeCand1(call, node1, pos, node2, allowsFieldFlow, config) and
   Stage2::revFlow(node2, pragma[only_bind_into](config)) and
   Stage2::revFlowAlias(node1, pragma[only_bind_into](config))
 }
@@ -2021,8 +2063,8 @@ private module LocalFlowBigStep {
     exists(NodeEx next | Stage2::revFlow(next, state, config) |
       jumpStep(node, next, config) or
       additionalJumpStep(node, next, config) or
-      flowIntoCallNodeCand1(_, node, next, config) or
-      flowOutOfCallNodeCand1(_, node, next, config) or
+      flowIntoCallNodeCand2(_, node, next, _, config) or
+      flowOutOfCallNodeCand2(_, node, _, next, _, config) or
       Stage2::storeStepCand(node, _, _, next, _, config) or
       Stage2::readStepCand(node, _, next, config)
     )
@@ -2163,7 +2205,7 @@ private module Stage3Param implements MkStage<Stage2>::StageParam {
     localFlowBigStep(node1, state1, node2, state2, preservesValue, ap, config, _) and exists(lcc)
   }
 
-  predicate flowOutOfCall = flowOutOfCallNodeCand2/5;
+  predicate flowOutOfCall = flowOutOfCallNodeCand2/6;
 
   predicate flowIntoCall = flowIntoCallNodeCand2/5;
 
@@ -2233,8 +2275,9 @@ private predicate flowCandSummaryCtx(
   NodeEx node, FlowState state, AccessPathFront argApf, Configuration config
 ) {
   exists(AccessPathFront apf |
-    Stage3::revFlow(node, state, true, _, apf, config) and
-    Stage3::fwdFlow(node, state, any(Stage3::CcCall ccc), TAccessPathFrontSome(argApf), apf, config)
+    Stage3::revFlow(node, state, TReturnCtxMaybeFlowThrough(_), _, apf, config) and
+    Stage3::fwdFlow(node, state, any(Stage3::CcCall ccc), _, TAccessPathFrontSome(argApf), apf,
+      config)
   )
 }
 
@@ -2468,10 +2511,11 @@ private module Stage4Param implements MkStage<Stage3>::StageParam {
 
   pragma[nomagic]
   predicate flowOutOfCall(
-    DataFlowCall call, RetNodeEx node1, NodeEx node2, boolean allowsFieldFlow, Configuration config
+    DataFlowCall call, RetNodeEx node1, ReturnPosition pos, NodeEx node2, boolean allowsFieldFlow,
+    Configuration config
   ) {
     exists(FlowState state |
-      flowOutOfCallNodeCand2(call, node1, node2, allowsFieldFlow, config) and
+      flowOutOfCallNodeCand2(call, node1, pos, node2, allowsFieldFlow, config) and
       PrevStage::revFlow(node2, pragma[only_bind_into](state), _, pragma[only_bind_into](config)) and
       PrevStage::revFlowAlias(node1, pragma[only_bind_into](state), _,
         pragma[only_bind_into](config))
@@ -2508,13 +2552,13 @@ private Configuration unbindConf(Configuration conf) {
 
 pragma[nomagic]
 private predicate nodeMayUseSummary0(
-  NodeEx n, DataFlowCallable c, FlowState state, AccessPathApprox apa, Configuration config
+  NodeEx n, ParamNodeEx p, FlowState state, AccessPathApprox apa, Configuration config
 ) {
   exists(AccessPathApprox apa0 |
-    Stage4::parameterMayFlowThrough(_, c, _, _) and
-    Stage4::revFlow(n, state, true, _, apa0, config) and
-    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TAccessPathApproxSome(apa), apa0, config) and
-    n.getEnclosingCallable() = c
+    Stage4::parameterMayFlowThrough(p, _, _) and
+    Stage4::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
+    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TParamNodeSome(p.asNode()),
+      TAccessPathApproxSome(apa), apa0, config)
   )
 }
 
@@ -2522,9 +2566,9 @@ pragma[nomagic]
 private predicate nodeMayUseSummary(
   NodeEx n, FlowState state, AccessPathApprox apa, Configuration config
 ) {
-  exists(DataFlowCallable c |
-    Stage4::parameterMayFlowThrough(_, c, apa, config) and
-    nodeMayUseSummary0(n, c, state, apa, config)
+  exists(ParamNodeEx p |
+    Stage4::parameterMayFlowThrough(p, apa, config) and
+    nodeMayUseSummary0(n, p, state, apa, config)
   )
 }
 
@@ -2532,7 +2576,7 @@ private newtype TSummaryCtx =
   TSummaryCtxNone() or
   TSummaryCtxSome(ParamNodeEx p, FlowState state, AccessPath ap) {
     exists(Configuration config |
-      Stage4::parameterMayFlowThrough(p, _, ap.getApprox(), config) and
+      Stage4::parameterMayFlowThrough(p, ap.getApprox(), config) and
       Stage4::revFlow(p, state, _, config)
     )
   }
@@ -3453,17 +3497,11 @@ private predicate paramFlowsThrough(
   ReturnKindExt kind, FlowState state, CallContextCall cc, SummaryCtxSome sc, AccessPath ap,
   AccessPathApprox apa, Configuration config
 ) {
-  exists(PathNodeMid mid, RetNodeEx ret, ParameterPosition pos |
+  exists(PathNodeMid mid, RetNodeEx ret |
     pathNode(mid, ret, state, cc, sc, ap, config, _) and
     kind = ret.getKind() and
     apa = ap.getApprox() and
-    pos = sc.getParameterPos() and
-    // we don't expect a parameter to return stored in itself, unless explicitly allowed
-    (
-      not kind.(ParamUpdateReturnKind).getPosition() = pos
-      or
-      sc.getParamNode().allowParameterReturnInSelf()
-    )
+    parameterFlowThroughAllowed(sc.getParamNode().asNode(), kind)
   )
 }
 
diff --git a/cpp/ql/lib/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl.qll b/cpp/ql/lib/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl.qll
index 3c41b1876dc..a52ad110662 100644
--- a/cpp/ql/lib/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl.qll
+++ b/cpp/ql/lib/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl.qll
@@ -319,8 +319,6 @@ private class ParamNodeEx extends NodeEx {
   }
 
   ParameterPosition getPosition() { this.isParameterOf(_, result) }
-
-  predicate allowParameterReturnInSelf() { allowParameterReturnInSelfCached(this.asNode()) }
 }
 
 private class RetNodeEx extends NodeEx {
@@ -608,6 +606,21 @@ private predicate hasSinkCallCtx(Configuration config) {
   )
 }
 
+/**
+ * Holds if flow from `p` to a return node of kind `kind` is allowed.
+ *
+ * We don't expect a parameter to return stored in itself, unless
+ * explicitly allowed
+ */
+bindingset[p, kind]
+private predicate parameterFlowThroughAllowed(ParamNode p, ReturnKindExt kind) {
+  exists(ParameterPosition pos | p.isParameterOf(_, pos) |
+    not kind.(ParamUpdateReturnKind).getPosition() = pos
+    or
+    allowParameterReturnInSelfCached(p)
+  )
+}
+
 private module Stage1 implements StageSig {
   class Ap = Unit;
 
@@ -981,21 +994,22 @@ private module Stage1 implements StageSig {
    * candidate for the origin of a summary.
    */
   pragma[nomagic]
-  predicate parameterMayFlowThrough(ParamNodeEx p, DataFlowCallable c, Ap ap, Configuration config) {
-    exists(ReturnKindExt kind |
+  predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
+    exists(DataFlowCallable c, ReturnKindExt kind |
       throughFlowNodeCand(p, config) and
       returnFlowCallableNodeCand(c, kind, config) and
       p.getEnclosingCallable() = c and
       exists(ap) and
-      // we don't expect a parameter to return stored in itself, unless explicitly allowed
-      (
-        not kind.(ParamUpdateReturnKind).getPosition() = p.getPosition()
-        or
-        p.allowParameterReturnInSelf()
-      )
+      parameterFlowThroughAllowed(p.asNode(), kind)
     )
   }
 
+  pragma[nomagic]
+  predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config) {
+    throughFlowNodeCand(ret, config) and
+    pos = ret.getReturnPosition()
+  }
+
   pragma[nomagic]
   predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
     exists(ArgNodeEx arg, boolean toReturn |
@@ -1052,9 +1066,10 @@ private predicate viableReturnPosOutNodeCand1(
  */
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand1(
-  DataFlowCall call, RetNodeEx ret, NodeEx out, Configuration config
+  DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, Configuration config
 ) {
-  viableReturnPosOutNodeCand1(call, ret.getReturnPosition(), out, config) and
+  viableReturnPosOutNodeCand1(call, pos, out, config) and
+  pos = ret.getReturnPosition() and
   Stage1::revFlow(ret, config) and
   not outBarrier(ret, config) and
   not inBarrier(out, config)
@@ -1090,7 +1105,7 @@ private predicate flowIntoCallNodeCand1(
 private int branch(NodeEx n1, Configuration conf) {
   result =
     strictcount(NodeEx n |
-      flowOutOfCallNodeCand1(_, n1, n, conf) or flowIntoCallNodeCand1(_, n1, n, conf)
+      flowOutOfCallNodeCand1(_, n1, _, n, conf) or flowIntoCallNodeCand1(_, n1, n, conf)
     )
 }
 
@@ -1102,7 +1117,7 @@ private int branch(NodeEx n1, Configuration conf) {
 private int join(NodeEx n2, Configuration conf) {
   result =
     strictcount(NodeEx n |
-      flowOutOfCallNodeCand1(_, n, n2, conf) or flowIntoCallNodeCand1(_, n, n2, conf)
+      flowOutOfCallNodeCand1(_, n, _, n2, conf) or flowIntoCallNodeCand1(_, n, n2, conf)
     )
 }
 
@@ -1115,12 +1130,13 @@ private int join(NodeEx n2, Configuration conf) {
  */
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand1(
-  DataFlowCall call, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow, Configuration config
+  DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
+  Configuration config
 ) {
-  flowOutOfCallNodeCand1(call, ret, out, config) and
+  flowOutOfCallNodeCand1(call, ret, pos, out, pragma[only_bind_into](config)) and
   exists(int b, int j |
-    b = branch(ret, config) and
-    j = join(out, config) and
+    b = branch(ret, pragma[only_bind_into](config)) and
+    j = join(out, pragma[only_bind_into](config)) and
     if b.minimum(j) <= config.fieldFlowBranchLimit()
     then allowsFieldFlow = true
     else allowsFieldFlow = false
@@ -1156,7 +1172,9 @@ private signature module StageSig {
 
   predicate callMayFlowThroughRev(DataFlowCall call, Configuration config);
 
-  predicate parameterMayFlowThrough(ParamNodeEx p, DataFlowCallable c, Ap ap, Configuration config);
+  predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config);
+
+  predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config);
 
   predicate storeStepCand(
     NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, DataFlowType contentType,
@@ -1222,7 +1240,8 @@ private module MkStage<StageSig PrevStage> {
     );
 
     predicate flowOutOfCall(
-      DataFlowCall call, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow, Configuration config
+      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
+      Configuration config
     );
 
     predicate flowIntoCall(
@@ -1247,14 +1266,16 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate flowThroughOutOfCall(
-      DataFlowCall call, CcCall ccc, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow,
-      Configuration config
+      DataFlowCall call, CcCall ccc, RetNodeEx ret, ReturnKindExt kind, NodeEx out,
+      boolean allowsFieldFlow, Configuration config
     ) {
-      flowOutOfCall(call, ret, out, allowsFieldFlow, pragma[only_bind_into](config)) and
-      PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
-      PrevStage::parameterMayFlowThrough(_, ret.getEnclosingCallable(), _,
-        pragma[only_bind_into](config)) and
-      matchesCall(ccc, call)
+      exists(ReturnPosition pos |
+        flowOutOfCall(call, ret, pos, out, allowsFieldFlow, pragma[only_bind_into](config)) and
+        kind = pos.getKind() and
+        PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
+        PrevStage::returnMayFlowThrough(ret, pos, pragma[only_bind_into](config)) and
+        matchesCall(ccc, call)
+      )
     }
 
     /**
@@ -1262,29 +1283,32 @@ private module MkStage<StageSig PrevStage> {
      * configuration `config`.
      *
      * The call context `cc` records whether the node is reached through an
-     * argument in a call, and if so, `argAp` records the access path of that
-     * argument.
+     * argument in a call, and if so, `summaryCtx` and `argAp` record the
+     * corresponding parameter and access path of that argument, respectively.
      */
     pragma[nomagic]
     additional predicate fwdFlow(
-      NodeEx node, FlowState state, Cc cc, ApOption argAp, Ap ap, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      Configuration config
     ) {
-      fwdFlow0(node, state, cc, argAp, ap, config) and
+      fwdFlow0(node, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::revFlow(node, state, unbindApa(getApprox(ap)), config) and
       filter(node, state, ap, config)
     }
 
     pragma[nomagic]
     private predicate fwdFlow0(
-      NodeEx node, FlowState state, Cc cc, ApOption argAp, Ap ap, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      Configuration config
     ) {
       sourceNode(node, state, config) and
       (if hasSourceCallCtx(config) then cc = ccSomeCall() else cc = ccNone()) and
       argAp = apNone() and
+      summaryCtx = TParamNodeNone() and
       ap = getApNil(node)
       or
       exists(NodeEx mid, FlowState state0, Ap ap0, LocalCc localCc |
-        fwdFlow(mid, state0, cc, argAp, ap0, config) and
+        fwdFlow(mid, state0, cc, summaryCtx, argAp, ap0, config) and
         localCc = getLocalCc(mid, cc)
       |
         localStep(mid, state0, node, state, true, _, config, localCc) and
@@ -1295,65 +1319,72 @@ private module MkStage<StageSig PrevStage> {
       )
       or
       exists(NodeEx mid |
-        fwdFlow(mid, pragma[only_bind_into](state), _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, pragma[only_bind_into](config)) and
         jumpStep(mid, node, config) and
         cc = ccNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone()
       )
       or
       exists(NodeEx mid, ApNil nil |
-        fwdFlow(mid, state, _, _, nil, pragma[only_bind_into](config)) and
+        fwdFlow(mid, state, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStep(mid, node, config) and
         cc = ccNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone() and
         ap = getApNil(node)
       )
       or
       exists(NodeEx mid, FlowState state0, ApNil nil |
-        fwdFlow(mid, state0, _, _, nil, pragma[only_bind_into](config)) and
+        fwdFlow(mid, state0, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStateStep(mid, state0, node, state, config) and
         cc = ccNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone() and
         ap = getApNil(node)
       )
       or
       // store
       exists(TypedContent tc, Ap ap0 |
-        fwdFlowStore(_, ap0, tc, node, state, cc, argAp, config) and
+        fwdFlowStore(_, ap0, tc, node, state, cc, summaryCtx, argAp, config) and
         ap = apCons(tc, ap0)
       )
       or
       // read
       exists(Ap ap0, Content c |
-        fwdFlowRead(ap0, c, _, node, state, cc, argAp, config) and
+        fwdFlowRead(ap0, c, _, node, state, cc, summaryCtx, argAp, config) and
         fwdFlowConsCand(ap0, c, ap, config)
       )
       or
       // flow into a callable
       exists(ApApprox apa |
-        fwdFlowIn(_, node, state, _, cc, _, ap, config) and
+        fwdFlowIn(_, node, state, _, cc, _, _, ap, config) and
         apa = getApprox(ap) and
-        if PrevStage::parameterMayFlowThrough(node, _, apa, config)
-        then argAp = apSome(ap)
-        else argAp = apNone()
+        if PrevStage::parameterMayFlowThrough(node, apa, config)
+        then (
+          summaryCtx = TParamNodeSome(node.asNode()) and argAp = apSome(ap)
+        ) else (
+          summaryCtx = TParamNodeNone() and argAp = apNone()
+        )
       )
       or
       // flow out of a callable
-      fwdFlowOutNotFromArg(node, state, cc, argAp, ap, config)
+      fwdFlowOutNotFromArg(node, state, cc, summaryCtx, argAp, ap, config)
       or
-      exists(DataFlowCall call, Ap argAp0 |
-        fwdFlowOutFromArg(call, node, state, argAp0, ap, config) and
-        fwdFlowIsEntered(call, cc, argAp, argAp0, config)
+      // flow through a callable
+      exists(DataFlowCall call, ParamNode summaryCtx0, Ap argAp0 |
+        fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, config) and
+        fwdFlowIsEntered(call, cc, summaryCtx, argAp, summaryCtx0, argAp0, config)
       )
     }
 
     pragma[nomagic]
     private predicate fwdFlowStore(
-      NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc, ApOption argAp,
-      Configuration config
+      NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc,
+      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
     ) {
       exists(DataFlowType contentType |
-        fwdFlow(node1, state, cc, argAp, ap1, config) and
+        fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, config) and
         PrevStage::storeStepCand(node1, unbindApa(getApprox(ap1)), tc, node2, contentType, config) and
         typecheckStore(ap1, contentType)
       )
@@ -1366,7 +1397,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowConsCand(Ap cons, Content c, Ap tail, Configuration config) {
       exists(TypedContent tc |
-        fwdFlowStore(_, tail, tc, _, _, _, _, config) and
+        fwdFlowStore(_, tail, tc, _, _, _, _, _, config) and
         tc.getContent() = c and
         cons = apCons(tc, tail)
       )
@@ -1374,21 +1405,21 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowRead(
-      Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc, ApOption argAp,
-      Configuration config
+      Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc,
+      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
     ) {
-      fwdFlow(node1, state, cc, argAp, ap, config) and
+      fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, c, node2, config) and
       getHeadContent(ap) = c
     }
 
     pragma[nomagic]
     private predicate fwdFlowIn(
-      DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, Cc innercc, ApOption argAp,
-      Ap ap, Configuration config
+      DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, Cc innercc,
+      ParamNodeOption summaryCtx, ApOption argAp, Ap ap, Configuration config
     ) {
       exists(ArgNodeEx arg, boolean allowsFieldFlow |
-        fwdFlow(arg, state, outercc, argAp, ap, config) and
+        fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, config) and
         flowIntoCall(call, arg, p, allowsFieldFlow, config) and
         innercc = getCallContextCall(call, p.getEnclosingCallable(), outercc) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
@@ -1397,14 +1428,15 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowOutNotFromArg(
-      NodeEx out, FlowState state, Cc ccOut, ApOption argAp, Ap ap, Configuration config
+      NodeEx out, FlowState state, Cc ccOut, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      Configuration config
     ) {
       exists(
         DataFlowCall call, RetNodeEx ret, boolean allowsFieldFlow, CcNoCall innercc,
         DataFlowCallable inner
       |
-        fwdFlow(ret, state, innercc, argAp, ap, config) and
-        flowOutOfCall(call, ret, out, allowsFieldFlow, config) and
+        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, config) and
+        flowOutOfCall(call, ret, _, out, allowsFieldFlow, config) and
         inner = ret.getEnclosingCallable() and
         ccOut = getCallContextReturn(inner, call, innercc) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
@@ -1413,12 +1445,14 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowOutFromArg(
-      DataFlowCall call, NodeEx out, FlowState state, Ap argAp, Ap ap, Configuration config
+      DataFlowCall call, NodeEx out, FlowState state, ParamNode summaryCtx, Ap argAp, Ap ap,
+      Configuration config
     ) {
-      exists(RetNodeEx ret, boolean allowsFieldFlow, CcCall ccc |
-        fwdFlow(ret, state, ccc, apSome(argAp), ap, config) and
-        flowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, config) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
+      exists(RetNodeEx ret, ReturnKindExt kind, boolean allowsFieldFlow, CcCall ccc |
+        fwdFlow(ret, state, ccc, TParamNodeSome(summaryCtx), apSome(argAp), ap, config) and
+        flowThroughOutOfCall(call, ccc, ret, kind, out, allowsFieldFlow, config) and
+        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
+        parameterFlowThroughAllowed(summaryCtx, kind)
       )
     }
 
@@ -1428,11 +1462,13 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate fwdFlowIsEntered(
-      DataFlowCall call, Cc cc, ApOption argAp, Ap ap, Configuration config
+      DataFlowCall call, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, ParamNode p, Ap ap,
+      Configuration config
     ) {
-      exists(ParamNodeEx p |
-        fwdFlowIn(call, p, _, cc, _, argAp, ap, config) and
-        PrevStage::parameterMayFlowThrough(p, _, unbindApa(getApprox(ap)), config)
+      exists(ParamNodeEx param |
+        fwdFlowIn(call, param, _, cc, _, summaryCtx, argAp, ap, config) and
+        PrevStage::parameterMayFlowThrough(param, unbindApa(getApprox(ap)), config) and
+        p = param.asNode()
       )
     }
 
@@ -1440,146 +1476,149 @@ private module MkStage<StageSig PrevStage> {
     private predicate storeStepFwd(
       NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, Ap ap2, Configuration config
     ) {
-      fwdFlowStore(node1, ap1, tc, node2, _, _, _, config) and
+      fwdFlowStore(node1, ap1, tc, node2, _, _, _, _, config) and
       ap2 = apCons(tc, ap1) and
-      fwdFlowRead(ap2, tc.getContent(), _, _, _, _, _, config)
+      fwdFlowRead(ap2, tc.getContent(), _, _, _, _, _, _, config)
     }
 
     private predicate readStepFwd(
       NodeEx n1, Ap ap1, Content c, NodeEx n2, Ap ap2, Configuration config
     ) {
-      fwdFlowRead(ap1, c, n1, n2, _, _, _, config) and
+      fwdFlowRead(ap1, c, n1, n2, _, _, _, _, config) and
       fwdFlowConsCand(ap1, c, ap2, config)
     }
 
     pragma[nomagic]
-    private predicate callMayFlowThroughFwd(DataFlowCall call, Configuration config) {
-      exists(Ap argAp0, NodeEx out, FlowState state, Cc cc, ApOption argAp, Ap ap |
-        fwdFlow(out, state, pragma[only_bind_into](cc), pragma[only_bind_into](argAp), ap,
-          pragma[only_bind_into](config)) and
-        fwdFlowOutFromArg(call, out, state, argAp0, ap, config) and
-        fwdFlowIsEntered(pragma[only_bind_into](call), pragma[only_bind_into](cc),
-          pragma[only_bind_into](argAp), pragma[only_bind_into](argAp0),
-          pragma[only_bind_into](config))
-      )
+    private predicate returnFlowsThrough(
+      RetNodeEx ret, ReturnPosition pos, FlowState state, CcCall ccc, ParamNode p, Ap argAp, Ap ap,
+      Configuration config
+    ) {
+      fwdFlow(ret, state, ccc, TParamNodeSome(p), apSome(argAp), ap, config) and
+      pos = ret.getReturnPosition() and
+      parameterFlowThroughAllowed(p, pos.getKind())
     }
 
     pragma[nomagic]
     private predicate flowThroughIntoCall(
       DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
     ) {
-      flowIntoCall(call, arg, p, allowsFieldFlow, config) and
-      fwdFlow(arg, _, _, _, _, pragma[only_bind_into](config)) and
-      PrevStage::parameterMayFlowThrough(p, _, _, pragma[only_bind_into](config)) and
-      callMayFlowThroughFwd(call, pragma[only_bind_into](config))
-    }
-
-    pragma[nomagic]
-    private predicate returnNodeMayFlowThrough(
-      RetNodeEx ret, FlowState state, Ap ap, Configuration config
-    ) {
-      fwdFlow(ret, state, any(CcCall ccc), apSome(_), ap, config)
+      flowIntoCall(call, pragma[only_bind_into](arg), pragma[only_bind_into](p), allowsFieldFlow,
+        pragma[only_bind_into](config)) and
+      fwdFlow(arg, _, _, _, _, _, pragma[only_bind_into](config)) and
+      returnFlowsThrough(_, _, _, _, p.asNode(), _, _, pragma[only_bind_into](config))
     }
 
     /**
      * Holds if `node` with access path `ap` is part of a path from a source to a
      * sink in the configuration `config`.
      *
-     * The Boolean `toReturn` records whether the node must be returned from the
-     * enclosing callable in order to reach a sink, and if so, `returnAp` records
-     * the access path of the returned value.
+     * The parameter `returnCtx` records whether (and how) the node must be returned
+     * from the enclosing callable in order to reach a sink, and if so, `returnAp`
+     * records the access path of the returned value.
      */
     pragma[nomagic]
     additional predicate revFlow(
-      NodeEx node, FlowState state, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
+      NodeEx node, FlowState state, ReturnCtx returnCtx, ApOption returnAp, Ap ap,
+      Configuration config
     ) {
-      revFlow0(node, state, toReturn, returnAp, ap, config) and
-      fwdFlow(node, state, _, _, ap, config)
+      revFlow0(node, state, returnCtx, returnAp, ap, config) and
+      fwdFlow(node, state, _, _, _, ap, config)
     }
 
     pragma[nomagic]
     private predicate revFlow0(
-      NodeEx node, FlowState state, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
+      NodeEx node, FlowState state, ReturnCtx returnCtx, ApOption returnAp, Ap ap,
+      Configuration config
     ) {
-      fwdFlow(node, state, _, _, ap, config) and
+      fwdFlow(node, state, _, _, _, ap, config) and
       sinkNode(node, state, config) and
-      (if hasSinkCallCtx(config) then toReturn = true else toReturn = false) and
+      (
+        if hasSinkCallCtx(config)
+        then returnCtx = TReturnCtxNoFlowThrough()
+        else returnCtx = TReturnCtxNone()
+      ) and
       returnAp = apNone() and
       ap instanceof ApNil
       or
       exists(NodeEx mid, FlowState state0 |
         localStep(node, state, mid, state0, true, _, config, _) and
-        revFlow(mid, state0, toReturn, returnAp, ap, config)
+        revFlow(mid, state0, returnCtx, returnAp, ap, config)
       )
       or
       exists(NodeEx mid, FlowState state0, ApNil nil |
-        fwdFlow(node, pragma[only_bind_into](state), _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(node, pragma[only_bind_into](state), _, _, _, ap, pragma[only_bind_into](config)) and
         localStep(node, pragma[only_bind_into](state), mid, state0, false, _, config, _) and
-        revFlow(mid, state0, toReturn, returnAp, nil, pragma[only_bind_into](config)) and
+        revFlow(mid, state0, returnCtx, returnAp, nil, pragma[only_bind_into](config)) and
         ap instanceof ApNil
       )
       or
       exists(NodeEx mid |
         jumpStep(node, mid, config) and
         revFlow(mid, state, _, _, ap, config) and
-        toReturn = false and
+        returnCtx = TReturnCtxNone() and
         returnAp = apNone()
       )
       or
       exists(NodeEx mid, ApNil nil |
-        fwdFlow(node, _, _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(node, _, _, _, _, ap, pragma[only_bind_into](config)) and
         additionalJumpStep(node, mid, config) and
         revFlow(pragma[only_bind_into](mid), state, _, _, nil, pragma[only_bind_into](config)) and
-        toReturn = false and
+        returnCtx = TReturnCtxNone() and
         returnAp = apNone() and
         ap instanceof ApNil
       )
       or
       exists(NodeEx mid, FlowState state0, ApNil nil |
-        fwdFlow(node, _, _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(node, _, _, _, _, ap, pragma[only_bind_into](config)) and
         additionalJumpStateStep(node, state, mid, state0, config) and
         revFlow(pragma[only_bind_into](mid), pragma[only_bind_into](state0), _, _, nil,
           pragma[only_bind_into](config)) and
-        toReturn = false and
+        returnCtx = TReturnCtxNone() and
         returnAp = apNone() and
         ap instanceof ApNil
       )
       or
       // store
       exists(Ap ap0, Content c |
-        revFlowStore(ap0, c, ap, node, state, _, _, toReturn, returnAp, config) and
+        revFlowStore(ap0, c, ap, node, state, _, _, returnCtx, returnAp, config) and
         revFlowConsCand(ap0, c, ap, config)
       )
       or
       // read
       exists(NodeEx mid, Ap ap0 |
-        revFlow(mid, state, toReturn, returnAp, ap0, config) and
+        revFlow(mid, state, returnCtx, returnAp, ap0, config) and
         readStepFwd(node, ap, _, mid, ap0, config)
       )
       or
       // flow into a callable
       revFlowInNotToReturn(node, state, returnAp, ap, config) and
-      toReturn = false
+      returnCtx = TReturnCtxNone()
       or
-      exists(DataFlowCall call, Ap returnAp0 |
-        revFlowInToReturn(call, node, state, returnAp0, ap, config) and
-        revFlowIsReturned(call, toReturn, returnAp, returnAp0, config)
+      // flow through a callable
+      exists(DataFlowCall call, ReturnPosition returnPos0, Ap returnAp0 |
+        revFlowInToReturn(call, node, state, returnPos0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnPos0, returnAp0, config)
       )
       or
       // flow out of a callable
-      revFlowOut(_, node, state, _, _, ap, config) and
-      toReturn = true and
-      if returnNodeMayFlowThrough(node, state, ap, config)
-      then returnAp = apSome(ap)
-      else returnAp = apNone()
+      exists(ReturnPosition pos |
+        revFlowOut(_, node, pos, state, _, _, ap, config) and
+        if returnFlowsThrough(node, pos, state, _, _, _, ap, config)
+        then (
+          returnCtx = TReturnCtxMaybeFlowThrough(pos) and
+          returnAp = apSome(ap)
+        ) else (
+          returnCtx = TReturnCtxNoFlowThrough() and returnAp = apNone()
+        )
+      )
     }
 
     pragma[nomagic]
     private predicate revFlowStore(
       Ap ap0, Content c, Ap ap, NodeEx node, FlowState state, TypedContent tc, NodeEx mid,
-      boolean toReturn, ApOption returnAp, Configuration config
+      ReturnCtx returnCtx, ApOption returnAp, Configuration config
     ) {
-      revFlow(mid, state, toReturn, returnAp, ap0, config) and
+      revFlow(mid, state, returnCtx, returnAp, ap0, config) and
       storeStepFwd(node, ap, tc, mid, ap0, config) and
       tc.getContent() = c
     }
@@ -1599,12 +1638,12 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate revFlowOut(
-      DataFlowCall call, RetNodeEx ret, FlowState state, boolean toReturn, ApOption returnAp, Ap ap,
-      Configuration config
+      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, FlowState state, ReturnCtx returnCtx,
+      ApOption returnAp, Ap ap, Configuration config
     ) {
       exists(NodeEx out, boolean allowsFieldFlow |
-        revFlow(out, state, toReturn, returnAp, ap, config) and
-        flowOutOfCall(call, ret, out, allowsFieldFlow, config) and
+        revFlow(out, state, returnCtx, returnAp, ap, config) and
+        flowOutOfCall(call, ret, pos, out, allowsFieldFlow, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
@@ -1614,7 +1653,7 @@ private module MkStage<StageSig PrevStage> {
       ArgNodeEx arg, FlowState state, ApOption returnAp, Ap ap, Configuration config
     ) {
       exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(p, state, false, returnAp, ap, config) and
+        revFlow(p, state, TReturnCtxNone(), returnAp, ap, config) and
         flowIntoCall(_, arg, p, allowsFieldFlow, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
@@ -1622,12 +1661,14 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate revFlowInToReturn(
-      DataFlowCall call, ArgNodeEx arg, FlowState state, Ap returnAp, Ap ap, Configuration config
+      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnPosition returnPos, Ap returnAp,
+      Ap ap, Configuration config
     ) {
       exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(p, state, true, apSome(returnAp), ap, config) and
+        revFlow(p, state, TReturnCtxMaybeFlowThrough(returnPos), apSome(returnAp), ap, config) and
         flowThroughIntoCall(call, arg, p, allowsFieldFlow, config) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
+        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
+        parameterFlowThroughAllowed(p.asNode(), returnPos.getKind())
       )
     }
 
@@ -1638,11 +1679,12 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate revFlowIsReturned(
-      DataFlowCall call, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
+      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnPosition pos, Ap ap,
+      Configuration config
     ) {
       exists(RetNodeEx ret, FlowState state, CcCall ccc |
-        revFlowOut(call, ret, state, toReturn, returnAp, ap, config) and
-        fwdFlow(ret, state, ccc, apSome(_), ap, config) and
+        revFlowOut(call, ret, pos, state, returnCtx, returnAp, ap, config) and
+        returnFlowsThrough(ret, pos, state, ccc, _, _, ap, config) and
         matchesCall(ccc, call)
       )
     }
@@ -1713,40 +1755,39 @@ private module MkStage<StageSig PrevStage> {
       validAp(ap, config)
     }
 
-    pragma[noinline]
-    private predicate parameterFlow(
-      ParamNodeEx p, Ap ap, Ap ap0, DataFlowCallable c, Configuration config
+    pragma[nomagic]
+    private predicate parameterFlowsThroughRev(
+      ParamNodeEx p, Ap ap, ReturnPosition returnPos, Configuration config
     ) {
-      revFlow(p, _, true, apSome(ap0), ap, config) and
-      c = p.getEnclosingCallable()
+      revFlow(p, _, TReturnCtxMaybeFlowThrough(returnPos), apSome(_), ap, config) and
+      parameterFlowThroughAllowed(p.asNode(), returnPos.getKind())
     }
 
-    predicate parameterMayFlowThrough(ParamNodeEx p, DataFlowCallable c, Ap ap, Configuration config) {
-      exists(RetNodeEx ret, FlowState state, Ap ap0, ReturnKindExt kind, ParameterPosition pos |
-        parameterFlow(p, ap, ap0, c, config) and
-        c = ret.getEnclosingCallable() and
-        revFlow(pragma[only_bind_into](ret), pragma[only_bind_into](state), true, apSome(_),
-          pragma[only_bind_into](ap0), pragma[only_bind_into](config)) and
-        fwdFlow(ret, state, any(CcCall ccc), apSome(ap), ap0, config) and
-        kind = ret.getKind() and
-        p.getPosition() = pos and
-        // we don't expect a parameter to return stored in itself, unless explicitly allowed
-        (
-          not kind.(ParamUpdateReturnKind).getPosition() = pos
-          or
-          p.allowParameterReturnInSelf()
-        )
+    pragma[nomagic]
+    predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
+      exists(RetNodeEx ret, ReturnPosition pos |
+        returnFlowsThrough(ret, pos, _, _, p.asNode(), ap, _, config) and
+        parameterFlowsThroughRev(p, ap, pos, config)
+      )
+    }
+
+    pragma[nomagic]
+    predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config) {
+      exists(ParamNodeEx p, Ap ap |
+        returnFlowsThrough(ret, pos, _, _, p.asNode(), ap, _, config) and
+        parameterFlowsThroughRev(p, ap, pos, config)
       )
     }
 
     pragma[nomagic]
     predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
       exists(
-        Ap returnAp0, ArgNodeEx arg, FlowState state, boolean toReturn, ApOption returnAp, Ap ap
+        ReturnPosition returnPos0, Ap returnAp0, ArgNodeEx arg, FlowState state,
+        ReturnCtx returnCtx, ApOption returnAp, Ap ap
       |
-        revFlow(arg, state, toReturn, returnAp, ap, config) and
-        revFlowInToReturn(call, arg, state, returnAp0, ap, config) and
-        revFlowIsReturned(call, toReturn, returnAp, returnAp0, config)
+        revFlow(arg, state, returnCtx, returnAp, ap, config) and
+        revFlowInToReturn(call, arg, state, returnPos0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnPos0, returnAp0, config)
       )
     }
 
@@ -1754,13 +1795,13 @@ private module MkStage<StageSig PrevStage> {
       boolean fwd, int nodes, int fields, int conscand, int states, int tuples, Configuration config
     ) {
       fwd = true and
-      nodes = count(NodeEx node | fwdFlow(node, _, _, _, _, config)) and
+      nodes = count(NodeEx node | fwdFlow(node, _, _, _, _, _, config)) and
       fields = count(TypedContent f0 | fwdConsCand(f0, _, config)) and
       conscand = count(TypedContent f0, Ap ap | fwdConsCand(f0, ap, config)) and
-      states = count(FlowState state | fwdFlow(_, state, _, _, _, config)) and
+      states = count(FlowState state | fwdFlow(_, state, _, _, _, _, config)) and
       tuples =
-        count(NodeEx n, FlowState state, Cc cc, ApOption argAp, Ap ap |
-          fwdFlow(n, state, cc, argAp, ap, config)
+        count(NodeEx n, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap |
+          fwdFlow(n, state, cc, summaryCtx, argAp, ap, config)
         )
       or
       fwd = false and
@@ -1769,8 +1810,8 @@ private module MkStage<StageSig PrevStage> {
       conscand = count(TypedContent f0, Ap ap | consCand(f0, ap, config)) and
       states = count(FlowState state | revFlow(_, state, _, _, _, config)) and
       tuples =
-        count(NodeEx n, FlowState state, boolean b, ApOption retAp, Ap ap |
-          revFlow(n, state, b, retAp, ap, config)
+        count(NodeEx n, FlowState state, ReturnCtx returnCtx, ApOption retAp, Ap ap |
+          revFlow(n, state, returnCtx, retAp, ap, config)
         )
     }
     /* End: Stage logic. */
@@ -1915,7 +1956,7 @@ private module Stage2Param implements MkStage<Stage1>::StageParam {
     exists(lcc)
   }
 
-  predicate flowOutOfCall = flowOutOfCallNodeCand1/5;
+  predicate flowOutOfCall = flowOutOfCallNodeCand1/6;
 
   predicate flowIntoCall = flowIntoCallNodeCand1/5;
 
@@ -1951,9 +1992,10 @@ private module Stage2 implements StageSig {
 
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand2(
-  DataFlowCall call, RetNodeEx node1, NodeEx node2, boolean allowsFieldFlow, Configuration config
+  DataFlowCall call, RetNodeEx node1, ReturnPosition pos, NodeEx node2, boolean allowsFieldFlow,
+  Configuration config
 ) {
-  flowOutOfCallNodeCand1(call, node1, node2, allowsFieldFlow, config) and
+  flowOutOfCallNodeCand1(call, node1, pos, node2, allowsFieldFlow, config) and
   Stage2::revFlow(node2, pragma[only_bind_into](config)) and
   Stage2::revFlowAlias(node1, pragma[only_bind_into](config))
 }
@@ -2021,8 +2063,8 @@ private module LocalFlowBigStep {
     exists(NodeEx next | Stage2::revFlow(next, state, config) |
       jumpStep(node, next, config) or
       additionalJumpStep(node, next, config) or
-      flowIntoCallNodeCand1(_, node, next, config) or
-      flowOutOfCallNodeCand1(_, node, next, config) or
+      flowIntoCallNodeCand2(_, node, next, _, config) or
+      flowOutOfCallNodeCand2(_, node, _, next, _, config) or
       Stage2::storeStepCand(node, _, _, next, _, config) or
       Stage2::readStepCand(node, _, next, config)
     )
@@ -2163,7 +2205,7 @@ private module Stage3Param implements MkStage<Stage2>::StageParam {
     localFlowBigStep(node1, state1, node2, state2, preservesValue, ap, config, _) and exists(lcc)
   }
 
-  predicate flowOutOfCall = flowOutOfCallNodeCand2/5;
+  predicate flowOutOfCall = flowOutOfCallNodeCand2/6;
 
   predicate flowIntoCall = flowIntoCallNodeCand2/5;
 
@@ -2233,8 +2275,9 @@ private predicate flowCandSummaryCtx(
   NodeEx node, FlowState state, AccessPathFront argApf, Configuration config
 ) {
   exists(AccessPathFront apf |
-    Stage3::revFlow(node, state, true, _, apf, config) and
-    Stage3::fwdFlow(node, state, any(Stage3::CcCall ccc), TAccessPathFrontSome(argApf), apf, config)
+    Stage3::revFlow(node, state, TReturnCtxMaybeFlowThrough(_), _, apf, config) and
+    Stage3::fwdFlow(node, state, any(Stage3::CcCall ccc), _, TAccessPathFrontSome(argApf), apf,
+      config)
   )
 }
 
@@ -2468,10 +2511,11 @@ private module Stage4Param implements MkStage<Stage3>::StageParam {
 
   pragma[nomagic]
   predicate flowOutOfCall(
-    DataFlowCall call, RetNodeEx node1, NodeEx node2, boolean allowsFieldFlow, Configuration config
+    DataFlowCall call, RetNodeEx node1, ReturnPosition pos, NodeEx node2, boolean allowsFieldFlow,
+    Configuration config
   ) {
     exists(FlowState state |
-      flowOutOfCallNodeCand2(call, node1, node2, allowsFieldFlow, config) and
+      flowOutOfCallNodeCand2(call, node1, pos, node2, allowsFieldFlow, config) and
       PrevStage::revFlow(node2, pragma[only_bind_into](state), _, pragma[only_bind_into](config)) and
       PrevStage::revFlowAlias(node1, pragma[only_bind_into](state), _,
         pragma[only_bind_into](config))
@@ -2508,13 +2552,13 @@ private Configuration unbindConf(Configuration conf) {
 
 pragma[nomagic]
 private predicate nodeMayUseSummary0(
-  NodeEx n, DataFlowCallable c, FlowState state, AccessPathApprox apa, Configuration config
+  NodeEx n, ParamNodeEx p, FlowState state, AccessPathApprox apa, Configuration config
 ) {
   exists(AccessPathApprox apa0 |
-    Stage4::parameterMayFlowThrough(_, c, _, _) and
-    Stage4::revFlow(n, state, true, _, apa0, config) and
-    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TAccessPathApproxSome(apa), apa0, config) and
-    n.getEnclosingCallable() = c
+    Stage4::parameterMayFlowThrough(p, _, _) and
+    Stage4::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
+    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TParamNodeSome(p.asNode()),
+      TAccessPathApproxSome(apa), apa0, config)
   )
 }
 
@@ -2522,9 +2566,9 @@ pragma[nomagic]
 private predicate nodeMayUseSummary(
   NodeEx n, FlowState state, AccessPathApprox apa, Configuration config
 ) {
-  exists(DataFlowCallable c |
-    Stage4::parameterMayFlowThrough(_, c, apa, config) and
-    nodeMayUseSummary0(n, c, state, apa, config)
+  exists(ParamNodeEx p |
+    Stage4::parameterMayFlowThrough(p, apa, config) and
+    nodeMayUseSummary0(n, p, state, apa, config)
   )
 }
 
@@ -2532,7 +2576,7 @@ private newtype TSummaryCtx =
   TSummaryCtxNone() or
   TSummaryCtxSome(ParamNodeEx p, FlowState state, AccessPath ap) {
     exists(Configuration config |
-      Stage4::parameterMayFlowThrough(p, _, ap.getApprox(), config) and
+      Stage4::parameterMayFlowThrough(p, ap.getApprox(), config) and
       Stage4::revFlow(p, state, _, config)
     )
   }
@@ -3453,17 +3497,11 @@ private predicate paramFlowsThrough(
   ReturnKindExt kind, FlowState state, CallContextCall cc, SummaryCtxSome sc, AccessPath ap,
   AccessPathApprox apa, Configuration config
 ) {
-  exists(PathNodeMid mid, RetNodeEx ret, ParameterPosition pos |
+  exists(PathNodeMid mid, RetNodeEx ret |
     pathNode(mid, ret, state, cc, sc, ap, config, _) and
     kind = ret.getKind() and
     apa = ap.getApprox() and
-    pos = sc.getParameterPos() and
-    // we don't expect a parameter to return stored in itself, unless explicitly allowed
-    (
-      not kind.(ParamUpdateReturnKind).getPosition() = pos
-      or
-      sc.getParamNode().allowParameterReturnInSelf()
-    )
+    parameterFlowThroughAllowed(sc.getParamNode().asNode(), kind)
   )
 }
 
diff --git a/cpp/ql/lib/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl2.qll b/cpp/ql/lib/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl2.qll
index 3c41b1876dc..a52ad110662 100644
--- a/cpp/ql/lib/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl2.qll
+++ b/cpp/ql/lib/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl2.qll
@@ -319,8 +319,6 @@ private class ParamNodeEx extends NodeEx {
   }
 
   ParameterPosition getPosition() { this.isParameterOf(_, result) }
-
-  predicate allowParameterReturnInSelf() { allowParameterReturnInSelfCached(this.asNode()) }
 }
 
 private class RetNodeEx extends NodeEx {
@@ -608,6 +606,21 @@ private predicate hasSinkCallCtx(Configuration config) {
   )
 }
 
+/**
+ * Holds if flow from `p` to a return node of kind `kind` is allowed.
+ *
+ * We don't expect a parameter to return stored in itself, unless
+ * explicitly allowed
+ */
+bindingset[p, kind]
+private predicate parameterFlowThroughAllowed(ParamNode p, ReturnKindExt kind) {
+  exists(ParameterPosition pos | p.isParameterOf(_, pos) |
+    not kind.(ParamUpdateReturnKind).getPosition() = pos
+    or
+    allowParameterReturnInSelfCached(p)
+  )
+}
+
 private module Stage1 implements StageSig {
   class Ap = Unit;
 
@@ -981,21 +994,22 @@ private module Stage1 implements StageSig {
    * candidate for the origin of a summary.
    */
   pragma[nomagic]
-  predicate parameterMayFlowThrough(ParamNodeEx p, DataFlowCallable c, Ap ap, Configuration config) {
-    exists(ReturnKindExt kind |
+  predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
+    exists(DataFlowCallable c, ReturnKindExt kind |
       throughFlowNodeCand(p, config) and
       returnFlowCallableNodeCand(c, kind, config) and
       p.getEnclosingCallable() = c and
       exists(ap) and
-      // we don't expect a parameter to return stored in itself, unless explicitly allowed
-      (
-        not kind.(ParamUpdateReturnKind).getPosition() = p.getPosition()
-        or
-        p.allowParameterReturnInSelf()
-      )
+      parameterFlowThroughAllowed(p.asNode(), kind)
     )
   }
 
+  pragma[nomagic]
+  predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config) {
+    throughFlowNodeCand(ret, config) and
+    pos = ret.getReturnPosition()
+  }
+
   pragma[nomagic]
   predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
     exists(ArgNodeEx arg, boolean toReturn |
@@ -1052,9 +1066,10 @@ private predicate viableReturnPosOutNodeCand1(
  */
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand1(
-  DataFlowCall call, RetNodeEx ret, NodeEx out, Configuration config
+  DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, Configuration config
 ) {
-  viableReturnPosOutNodeCand1(call, ret.getReturnPosition(), out, config) and
+  viableReturnPosOutNodeCand1(call, pos, out, config) and
+  pos = ret.getReturnPosition() and
   Stage1::revFlow(ret, config) and
   not outBarrier(ret, config) and
   not inBarrier(out, config)
@@ -1090,7 +1105,7 @@ private predicate flowIntoCallNodeCand1(
 private int branch(NodeEx n1, Configuration conf) {
   result =
     strictcount(NodeEx n |
-      flowOutOfCallNodeCand1(_, n1, n, conf) or flowIntoCallNodeCand1(_, n1, n, conf)
+      flowOutOfCallNodeCand1(_, n1, _, n, conf) or flowIntoCallNodeCand1(_, n1, n, conf)
     )
 }
 
@@ -1102,7 +1117,7 @@ private int branch(NodeEx n1, Configuration conf) {
 private int join(NodeEx n2, Configuration conf) {
   result =
     strictcount(NodeEx n |
-      flowOutOfCallNodeCand1(_, n, n2, conf) or flowIntoCallNodeCand1(_, n, n2, conf)
+      flowOutOfCallNodeCand1(_, n, _, n2, conf) or flowIntoCallNodeCand1(_, n, n2, conf)
     )
 }
 
@@ -1115,12 +1130,13 @@ private int join(NodeEx n2, Configuration conf) {
  */
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand1(
-  DataFlowCall call, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow, Configuration config
+  DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
+  Configuration config
 ) {
-  flowOutOfCallNodeCand1(call, ret, out, config) and
+  flowOutOfCallNodeCand1(call, ret, pos, out, pragma[only_bind_into](config)) and
   exists(int b, int j |
-    b = branch(ret, config) and
-    j = join(out, config) and
+    b = branch(ret, pragma[only_bind_into](config)) and
+    j = join(out, pragma[only_bind_into](config)) and
     if b.minimum(j) <= config.fieldFlowBranchLimit()
     then allowsFieldFlow = true
     else allowsFieldFlow = false
@@ -1156,7 +1172,9 @@ private signature module StageSig {
 
   predicate callMayFlowThroughRev(DataFlowCall call, Configuration config);
 
-  predicate parameterMayFlowThrough(ParamNodeEx p, DataFlowCallable c, Ap ap, Configuration config);
+  predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config);
+
+  predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config);
 
   predicate storeStepCand(
     NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, DataFlowType contentType,
@@ -1222,7 +1240,8 @@ private module MkStage<StageSig PrevStage> {
     );
 
     predicate flowOutOfCall(
-      DataFlowCall call, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow, Configuration config
+      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
+      Configuration config
     );
 
     predicate flowIntoCall(
@@ -1247,14 +1266,16 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate flowThroughOutOfCall(
-      DataFlowCall call, CcCall ccc, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow,
-      Configuration config
+      DataFlowCall call, CcCall ccc, RetNodeEx ret, ReturnKindExt kind, NodeEx out,
+      boolean allowsFieldFlow, Configuration config
     ) {
-      flowOutOfCall(call, ret, out, allowsFieldFlow, pragma[only_bind_into](config)) and
-      PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
-      PrevStage::parameterMayFlowThrough(_, ret.getEnclosingCallable(), _,
-        pragma[only_bind_into](config)) and
-      matchesCall(ccc, call)
+      exists(ReturnPosition pos |
+        flowOutOfCall(call, ret, pos, out, allowsFieldFlow, pragma[only_bind_into](config)) and
+        kind = pos.getKind() and
+        PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
+        PrevStage::returnMayFlowThrough(ret, pos, pragma[only_bind_into](config)) and
+        matchesCall(ccc, call)
+      )
     }
 
     /**
@@ -1262,29 +1283,32 @@ private module MkStage<StageSig PrevStage> {
      * configuration `config`.
      *
      * The call context `cc` records whether the node is reached through an
-     * argument in a call, and if so, `argAp` records the access path of that
-     * argument.
+     * argument in a call, and if so, `summaryCtx` and `argAp` record the
+     * corresponding parameter and access path of that argument, respectively.
      */
     pragma[nomagic]
     additional predicate fwdFlow(
-      NodeEx node, FlowState state, Cc cc, ApOption argAp, Ap ap, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      Configuration config
     ) {
-      fwdFlow0(node, state, cc, argAp, ap, config) and
+      fwdFlow0(node, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::revFlow(node, state, unbindApa(getApprox(ap)), config) and
       filter(node, state, ap, config)
     }
 
     pragma[nomagic]
     private predicate fwdFlow0(
-      NodeEx node, FlowState state, Cc cc, ApOption argAp, Ap ap, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      Configuration config
     ) {
       sourceNode(node, state, config) and
       (if hasSourceCallCtx(config) then cc = ccSomeCall() else cc = ccNone()) and
       argAp = apNone() and
+      summaryCtx = TParamNodeNone() and
       ap = getApNil(node)
       or
       exists(NodeEx mid, FlowState state0, Ap ap0, LocalCc localCc |
-        fwdFlow(mid, state0, cc, argAp, ap0, config) and
+        fwdFlow(mid, state0, cc, summaryCtx, argAp, ap0, config) and
         localCc = getLocalCc(mid, cc)
       |
         localStep(mid, state0, node, state, true, _, config, localCc) and
@@ -1295,65 +1319,72 @@ private module MkStage<StageSig PrevStage> {
       )
       or
       exists(NodeEx mid |
-        fwdFlow(mid, pragma[only_bind_into](state), _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, pragma[only_bind_into](config)) and
         jumpStep(mid, node, config) and
         cc = ccNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone()
       )
       or
       exists(NodeEx mid, ApNil nil |
-        fwdFlow(mid, state, _, _, nil, pragma[only_bind_into](config)) and
+        fwdFlow(mid, state, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStep(mid, node, config) and
         cc = ccNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone() and
         ap = getApNil(node)
       )
       or
       exists(NodeEx mid, FlowState state0, ApNil nil |
-        fwdFlow(mid, state0, _, _, nil, pragma[only_bind_into](config)) and
+        fwdFlow(mid, state0, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStateStep(mid, state0, node, state, config) and
         cc = ccNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone() and
         ap = getApNil(node)
       )
       or
       // store
       exists(TypedContent tc, Ap ap0 |
-        fwdFlowStore(_, ap0, tc, node, state, cc, argAp, config) and
+        fwdFlowStore(_, ap0, tc, node, state, cc, summaryCtx, argAp, config) and
         ap = apCons(tc, ap0)
       )
       or
       // read
       exists(Ap ap0, Content c |
-        fwdFlowRead(ap0, c, _, node, state, cc, argAp, config) and
+        fwdFlowRead(ap0, c, _, node, state, cc, summaryCtx, argAp, config) and
         fwdFlowConsCand(ap0, c, ap, config)
       )
       or
       // flow into a callable
       exists(ApApprox apa |
-        fwdFlowIn(_, node, state, _, cc, _, ap, config) and
+        fwdFlowIn(_, node, state, _, cc, _, _, ap, config) and
         apa = getApprox(ap) and
-        if PrevStage::parameterMayFlowThrough(node, _, apa, config)
-        then argAp = apSome(ap)
-        else argAp = apNone()
+        if PrevStage::parameterMayFlowThrough(node, apa, config)
+        then (
+          summaryCtx = TParamNodeSome(node.asNode()) and argAp = apSome(ap)
+        ) else (
+          summaryCtx = TParamNodeNone() and argAp = apNone()
+        )
       )
       or
       // flow out of a callable
-      fwdFlowOutNotFromArg(node, state, cc, argAp, ap, config)
+      fwdFlowOutNotFromArg(node, state, cc, summaryCtx, argAp, ap, config)
       or
-      exists(DataFlowCall call, Ap argAp0 |
-        fwdFlowOutFromArg(call, node, state, argAp0, ap, config) and
-        fwdFlowIsEntered(call, cc, argAp, argAp0, config)
+      // flow through a callable
+      exists(DataFlowCall call, ParamNode summaryCtx0, Ap argAp0 |
+        fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, config) and
+        fwdFlowIsEntered(call, cc, summaryCtx, argAp, summaryCtx0, argAp0, config)
       )
     }
 
     pragma[nomagic]
     private predicate fwdFlowStore(
-      NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc, ApOption argAp,
-      Configuration config
+      NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc,
+      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
     ) {
       exists(DataFlowType contentType |
-        fwdFlow(node1, state, cc, argAp, ap1, config) and
+        fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, config) and
         PrevStage::storeStepCand(node1, unbindApa(getApprox(ap1)), tc, node2, contentType, config) and
         typecheckStore(ap1, contentType)
       )
@@ -1366,7 +1397,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowConsCand(Ap cons, Content c, Ap tail, Configuration config) {
       exists(TypedContent tc |
-        fwdFlowStore(_, tail, tc, _, _, _, _, config) and
+        fwdFlowStore(_, tail, tc, _, _, _, _, _, config) and
         tc.getContent() = c and
         cons = apCons(tc, tail)
       )
@@ -1374,21 +1405,21 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowRead(
-      Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc, ApOption argAp,
-      Configuration config
+      Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc,
+      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
     ) {
-      fwdFlow(node1, state, cc, argAp, ap, config) and
+      fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, c, node2, config) and
       getHeadContent(ap) = c
     }
 
     pragma[nomagic]
     private predicate fwdFlowIn(
-      DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, Cc innercc, ApOption argAp,
-      Ap ap, Configuration config
+      DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, Cc innercc,
+      ParamNodeOption summaryCtx, ApOption argAp, Ap ap, Configuration config
     ) {
       exists(ArgNodeEx arg, boolean allowsFieldFlow |
-        fwdFlow(arg, state, outercc, argAp, ap, config) and
+        fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, config) and
         flowIntoCall(call, arg, p, allowsFieldFlow, config) and
         innercc = getCallContextCall(call, p.getEnclosingCallable(), outercc) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
@@ -1397,14 +1428,15 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowOutNotFromArg(
-      NodeEx out, FlowState state, Cc ccOut, ApOption argAp, Ap ap, Configuration config
+      NodeEx out, FlowState state, Cc ccOut, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      Configuration config
     ) {
       exists(
         DataFlowCall call, RetNodeEx ret, boolean allowsFieldFlow, CcNoCall innercc,
         DataFlowCallable inner
       |
-        fwdFlow(ret, state, innercc, argAp, ap, config) and
-        flowOutOfCall(call, ret, out, allowsFieldFlow, config) and
+        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, config) and
+        flowOutOfCall(call, ret, _, out, allowsFieldFlow, config) and
         inner = ret.getEnclosingCallable() and
         ccOut = getCallContextReturn(inner, call, innercc) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
@@ -1413,12 +1445,14 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowOutFromArg(
-      DataFlowCall call, NodeEx out, FlowState state, Ap argAp, Ap ap, Configuration config
+      DataFlowCall call, NodeEx out, FlowState state, ParamNode summaryCtx, Ap argAp, Ap ap,
+      Configuration config
     ) {
-      exists(RetNodeEx ret, boolean allowsFieldFlow, CcCall ccc |
-        fwdFlow(ret, state, ccc, apSome(argAp), ap, config) and
-        flowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, config) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
+      exists(RetNodeEx ret, ReturnKindExt kind, boolean allowsFieldFlow, CcCall ccc |
+        fwdFlow(ret, state, ccc, TParamNodeSome(summaryCtx), apSome(argAp), ap, config) and
+        flowThroughOutOfCall(call, ccc, ret, kind, out, allowsFieldFlow, config) and
+        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
+        parameterFlowThroughAllowed(summaryCtx, kind)
       )
     }
 
@@ -1428,11 +1462,13 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate fwdFlowIsEntered(
-      DataFlowCall call, Cc cc, ApOption argAp, Ap ap, Configuration config
+      DataFlowCall call, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, ParamNode p, Ap ap,
+      Configuration config
     ) {
-      exists(ParamNodeEx p |
-        fwdFlowIn(call, p, _, cc, _, argAp, ap, config) and
-        PrevStage::parameterMayFlowThrough(p, _, unbindApa(getApprox(ap)), config)
+      exists(ParamNodeEx param |
+        fwdFlowIn(call, param, _, cc, _, summaryCtx, argAp, ap, config) and
+        PrevStage::parameterMayFlowThrough(param, unbindApa(getApprox(ap)), config) and
+        p = param.asNode()
       )
     }
 
@@ -1440,146 +1476,149 @@ private module MkStage<StageSig PrevStage> {
     private predicate storeStepFwd(
       NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, Ap ap2, Configuration config
     ) {
-      fwdFlowStore(node1, ap1, tc, node2, _, _, _, config) and
+      fwdFlowStore(node1, ap1, tc, node2, _, _, _, _, config) and
       ap2 = apCons(tc, ap1) and
-      fwdFlowRead(ap2, tc.getContent(), _, _, _, _, _, config)
+      fwdFlowRead(ap2, tc.getContent(), _, _, _, _, _, _, config)
     }
 
     private predicate readStepFwd(
       NodeEx n1, Ap ap1, Content c, NodeEx n2, Ap ap2, Configuration config
     ) {
-      fwdFlowRead(ap1, c, n1, n2, _, _, _, config) and
+      fwdFlowRead(ap1, c, n1, n2, _, _, _, _, config) and
       fwdFlowConsCand(ap1, c, ap2, config)
     }
 
     pragma[nomagic]
-    private predicate callMayFlowThroughFwd(DataFlowCall call, Configuration config) {
-      exists(Ap argAp0, NodeEx out, FlowState state, Cc cc, ApOption argAp, Ap ap |
-        fwdFlow(out, state, pragma[only_bind_into](cc), pragma[only_bind_into](argAp), ap,
-          pragma[only_bind_into](config)) and
-        fwdFlowOutFromArg(call, out, state, argAp0, ap, config) and
-        fwdFlowIsEntered(pragma[only_bind_into](call), pragma[only_bind_into](cc),
-          pragma[only_bind_into](argAp), pragma[only_bind_into](argAp0),
-          pragma[only_bind_into](config))
-      )
+    private predicate returnFlowsThrough(
+      RetNodeEx ret, ReturnPosition pos, FlowState state, CcCall ccc, ParamNode p, Ap argAp, Ap ap,
+      Configuration config
+    ) {
+      fwdFlow(ret, state, ccc, TParamNodeSome(p), apSome(argAp), ap, config) and
+      pos = ret.getReturnPosition() and
+      parameterFlowThroughAllowed(p, pos.getKind())
     }
 
     pragma[nomagic]
     private predicate flowThroughIntoCall(
       DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
     ) {
-      flowIntoCall(call, arg, p, allowsFieldFlow, config) and
-      fwdFlow(arg, _, _, _, _, pragma[only_bind_into](config)) and
-      PrevStage::parameterMayFlowThrough(p, _, _, pragma[only_bind_into](config)) and
-      callMayFlowThroughFwd(call, pragma[only_bind_into](config))
-    }
-
-    pragma[nomagic]
-    private predicate returnNodeMayFlowThrough(
-      RetNodeEx ret, FlowState state, Ap ap, Configuration config
-    ) {
-      fwdFlow(ret, state, any(CcCall ccc), apSome(_), ap, config)
+      flowIntoCall(call, pragma[only_bind_into](arg), pragma[only_bind_into](p), allowsFieldFlow,
+        pragma[only_bind_into](config)) and
+      fwdFlow(arg, _, _, _, _, _, pragma[only_bind_into](config)) and
+      returnFlowsThrough(_, _, _, _, p.asNode(), _, _, pragma[only_bind_into](config))
     }
 
     /**
      * Holds if `node` with access path `ap` is part of a path from a source to a
      * sink in the configuration `config`.
      *
-     * The Boolean `toReturn` records whether the node must be returned from the
-     * enclosing callable in order to reach a sink, and if so, `returnAp` records
-     * the access path of the returned value.
+     * The parameter `returnCtx` records whether (and how) the node must be returned
+     * from the enclosing callable in order to reach a sink, and if so, `returnAp`
+     * records the access path of the returned value.
      */
     pragma[nomagic]
     additional predicate revFlow(
-      NodeEx node, FlowState state, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
+      NodeEx node, FlowState state, ReturnCtx returnCtx, ApOption returnAp, Ap ap,
+      Configuration config
     ) {
-      revFlow0(node, state, toReturn, returnAp, ap, config) and
-      fwdFlow(node, state, _, _, ap, config)
+      revFlow0(node, state, returnCtx, returnAp, ap, config) and
+      fwdFlow(node, state, _, _, _, ap, config)
     }
 
     pragma[nomagic]
     private predicate revFlow0(
-      NodeEx node, FlowState state, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
+      NodeEx node, FlowState state, ReturnCtx returnCtx, ApOption returnAp, Ap ap,
+      Configuration config
     ) {
-      fwdFlow(node, state, _, _, ap, config) and
+      fwdFlow(node, state, _, _, _, ap, config) and
       sinkNode(node, state, config) and
-      (if hasSinkCallCtx(config) then toReturn = true else toReturn = false) and
+      (
+        if hasSinkCallCtx(config)
+        then returnCtx = TReturnCtxNoFlowThrough()
+        else returnCtx = TReturnCtxNone()
+      ) and
       returnAp = apNone() and
       ap instanceof ApNil
       or
       exists(NodeEx mid, FlowState state0 |
         localStep(node, state, mid, state0, true, _, config, _) and
-        revFlow(mid, state0, toReturn, returnAp, ap, config)
+        revFlow(mid, state0, returnCtx, returnAp, ap, config)
       )
       or
       exists(NodeEx mid, FlowState state0, ApNil nil |
-        fwdFlow(node, pragma[only_bind_into](state), _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(node, pragma[only_bind_into](state), _, _, _, ap, pragma[only_bind_into](config)) and
         localStep(node, pragma[only_bind_into](state), mid, state0, false, _, config, _) and
-        revFlow(mid, state0, toReturn, returnAp, nil, pragma[only_bind_into](config)) and
+        revFlow(mid, state0, returnCtx, returnAp, nil, pragma[only_bind_into](config)) and
         ap instanceof ApNil
       )
       or
       exists(NodeEx mid |
         jumpStep(node, mid, config) and
         revFlow(mid, state, _, _, ap, config) and
-        toReturn = false and
+        returnCtx = TReturnCtxNone() and
         returnAp = apNone()
       )
       or
       exists(NodeEx mid, ApNil nil |
-        fwdFlow(node, _, _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(node, _, _, _, _, ap, pragma[only_bind_into](config)) and
         additionalJumpStep(node, mid, config) and
         revFlow(pragma[only_bind_into](mid), state, _, _, nil, pragma[only_bind_into](config)) and
-        toReturn = false and
+        returnCtx = TReturnCtxNone() and
         returnAp = apNone() and
         ap instanceof ApNil
       )
       or
       exists(NodeEx mid, FlowState state0, ApNil nil |
-        fwdFlow(node, _, _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(node, _, _, _, _, ap, pragma[only_bind_into](config)) and
         additionalJumpStateStep(node, state, mid, state0, config) and
         revFlow(pragma[only_bind_into](mid), pragma[only_bind_into](state0), _, _, nil,
           pragma[only_bind_into](config)) and
-        toReturn = false and
+        returnCtx = TReturnCtxNone() and
         returnAp = apNone() and
         ap instanceof ApNil
       )
       or
       // store
       exists(Ap ap0, Content c |
-        revFlowStore(ap0, c, ap, node, state, _, _, toReturn, returnAp, config) and
+        revFlowStore(ap0, c, ap, node, state, _, _, returnCtx, returnAp, config) and
         revFlowConsCand(ap0, c, ap, config)
       )
       or
       // read
       exists(NodeEx mid, Ap ap0 |
-        revFlow(mid, state, toReturn, returnAp, ap0, config) and
+        revFlow(mid, state, returnCtx, returnAp, ap0, config) and
         readStepFwd(node, ap, _, mid, ap0, config)
       )
       or
       // flow into a callable
       revFlowInNotToReturn(node, state, returnAp, ap, config) and
-      toReturn = false
+      returnCtx = TReturnCtxNone()
       or
-      exists(DataFlowCall call, Ap returnAp0 |
-        revFlowInToReturn(call, node, state, returnAp0, ap, config) and
-        revFlowIsReturned(call, toReturn, returnAp, returnAp0, config)
+      // flow through a callable
+      exists(DataFlowCall call, ReturnPosition returnPos0, Ap returnAp0 |
+        revFlowInToReturn(call, node, state, returnPos0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnPos0, returnAp0, config)
       )
       or
       // flow out of a callable
-      revFlowOut(_, node, state, _, _, ap, config) and
-      toReturn = true and
-      if returnNodeMayFlowThrough(node, state, ap, config)
-      then returnAp = apSome(ap)
-      else returnAp = apNone()
+      exists(ReturnPosition pos |
+        revFlowOut(_, node, pos, state, _, _, ap, config) and
+        if returnFlowsThrough(node, pos, state, _, _, _, ap, config)
+        then (
+          returnCtx = TReturnCtxMaybeFlowThrough(pos) and
+          returnAp = apSome(ap)
+        ) else (
+          returnCtx = TReturnCtxNoFlowThrough() and returnAp = apNone()
+        )
+      )
     }
 
     pragma[nomagic]
     private predicate revFlowStore(
       Ap ap0, Content c, Ap ap, NodeEx node, FlowState state, TypedContent tc, NodeEx mid,
-      boolean toReturn, ApOption returnAp, Configuration config
+      ReturnCtx returnCtx, ApOption returnAp, Configuration config
     ) {
-      revFlow(mid, state, toReturn, returnAp, ap0, config) and
+      revFlow(mid, state, returnCtx, returnAp, ap0, config) and
       storeStepFwd(node, ap, tc, mid, ap0, config) and
       tc.getContent() = c
     }
@@ -1599,12 +1638,12 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate revFlowOut(
-      DataFlowCall call, RetNodeEx ret, FlowState state, boolean toReturn, ApOption returnAp, Ap ap,
-      Configuration config
+      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, FlowState state, ReturnCtx returnCtx,
+      ApOption returnAp, Ap ap, Configuration config
     ) {
       exists(NodeEx out, boolean allowsFieldFlow |
-        revFlow(out, state, toReturn, returnAp, ap, config) and
-        flowOutOfCall(call, ret, out, allowsFieldFlow, config) and
+        revFlow(out, state, returnCtx, returnAp, ap, config) and
+        flowOutOfCall(call, ret, pos, out, allowsFieldFlow, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
@@ -1614,7 +1653,7 @@ private module MkStage<StageSig PrevStage> {
       ArgNodeEx arg, FlowState state, ApOption returnAp, Ap ap, Configuration config
     ) {
       exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(p, state, false, returnAp, ap, config) and
+        revFlow(p, state, TReturnCtxNone(), returnAp, ap, config) and
         flowIntoCall(_, arg, p, allowsFieldFlow, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
@@ -1622,12 +1661,14 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate revFlowInToReturn(
-      DataFlowCall call, ArgNodeEx arg, FlowState state, Ap returnAp, Ap ap, Configuration config
+      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnPosition returnPos, Ap returnAp,
+      Ap ap, Configuration config
     ) {
       exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(p, state, true, apSome(returnAp), ap, config) and
+        revFlow(p, state, TReturnCtxMaybeFlowThrough(returnPos), apSome(returnAp), ap, config) and
         flowThroughIntoCall(call, arg, p, allowsFieldFlow, config) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
+        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
+        parameterFlowThroughAllowed(p.asNode(), returnPos.getKind())
       )
     }
 
@@ -1638,11 +1679,12 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate revFlowIsReturned(
-      DataFlowCall call, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
+      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnPosition pos, Ap ap,
+      Configuration config
     ) {
       exists(RetNodeEx ret, FlowState state, CcCall ccc |
-        revFlowOut(call, ret, state, toReturn, returnAp, ap, config) and
-        fwdFlow(ret, state, ccc, apSome(_), ap, config) and
+        revFlowOut(call, ret, pos, state, returnCtx, returnAp, ap, config) and
+        returnFlowsThrough(ret, pos, state, ccc, _, _, ap, config) and
         matchesCall(ccc, call)
       )
     }
@@ -1713,40 +1755,39 @@ private module MkStage<StageSig PrevStage> {
       validAp(ap, config)
     }
 
-    pragma[noinline]
-    private predicate parameterFlow(
-      ParamNodeEx p, Ap ap, Ap ap0, DataFlowCallable c, Configuration config
+    pragma[nomagic]
+    private predicate parameterFlowsThroughRev(
+      ParamNodeEx p, Ap ap, ReturnPosition returnPos, Configuration config
     ) {
-      revFlow(p, _, true, apSome(ap0), ap, config) and
-      c = p.getEnclosingCallable()
+      revFlow(p, _, TReturnCtxMaybeFlowThrough(returnPos), apSome(_), ap, config) and
+      parameterFlowThroughAllowed(p.asNode(), returnPos.getKind())
     }
 
-    predicate parameterMayFlowThrough(ParamNodeEx p, DataFlowCallable c, Ap ap, Configuration config) {
-      exists(RetNodeEx ret, FlowState state, Ap ap0, ReturnKindExt kind, ParameterPosition pos |
-        parameterFlow(p, ap, ap0, c, config) and
-        c = ret.getEnclosingCallable() and
-        revFlow(pragma[only_bind_into](ret), pragma[only_bind_into](state), true, apSome(_),
-          pragma[only_bind_into](ap0), pragma[only_bind_into](config)) and
-        fwdFlow(ret, state, any(CcCall ccc), apSome(ap), ap0, config) and
-        kind = ret.getKind() and
-        p.getPosition() = pos and
-        // we don't expect a parameter to return stored in itself, unless explicitly allowed
-        (
-          not kind.(ParamUpdateReturnKind).getPosition() = pos
-          or
-          p.allowParameterReturnInSelf()
-        )
+    pragma[nomagic]
+    predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
+      exists(RetNodeEx ret, ReturnPosition pos |
+        returnFlowsThrough(ret, pos, _, _, p.asNode(), ap, _, config) and
+        parameterFlowsThroughRev(p, ap, pos, config)
+      )
+    }
+
+    pragma[nomagic]
+    predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config) {
+      exists(ParamNodeEx p, Ap ap |
+        returnFlowsThrough(ret, pos, _, _, p.asNode(), ap, _, config) and
+        parameterFlowsThroughRev(p, ap, pos, config)
       )
     }
 
     pragma[nomagic]
     predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
       exists(
-        Ap returnAp0, ArgNodeEx arg, FlowState state, boolean toReturn, ApOption returnAp, Ap ap
+        ReturnPosition returnPos0, Ap returnAp0, ArgNodeEx arg, FlowState state,
+        ReturnCtx returnCtx, ApOption returnAp, Ap ap
       |
-        revFlow(arg, state, toReturn, returnAp, ap, config) and
-        revFlowInToReturn(call, arg, state, returnAp0, ap, config) and
-        revFlowIsReturned(call, toReturn, returnAp, returnAp0, config)
+        revFlow(arg, state, returnCtx, returnAp, ap, config) and
+        revFlowInToReturn(call, arg, state, returnPos0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnPos0, returnAp0, config)
       )
     }
 
@@ -1754,13 +1795,13 @@ private module MkStage<StageSig PrevStage> {
       boolean fwd, int nodes, int fields, int conscand, int states, int tuples, Configuration config
     ) {
       fwd = true and
-      nodes = count(NodeEx node | fwdFlow(node, _, _, _, _, config)) and
+      nodes = count(NodeEx node | fwdFlow(node, _, _, _, _, _, config)) and
       fields = count(TypedContent f0 | fwdConsCand(f0, _, config)) and
       conscand = count(TypedContent f0, Ap ap | fwdConsCand(f0, ap, config)) and
-      states = count(FlowState state | fwdFlow(_, state, _, _, _, config)) and
+      states = count(FlowState state | fwdFlow(_, state, _, _, _, _, config)) and
       tuples =
-        count(NodeEx n, FlowState state, Cc cc, ApOption argAp, Ap ap |
-          fwdFlow(n, state, cc, argAp, ap, config)
+        count(NodeEx n, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap |
+          fwdFlow(n, state, cc, summaryCtx, argAp, ap, config)
         )
       or
       fwd = false and
@@ -1769,8 +1810,8 @@ private module MkStage<StageSig PrevStage> {
       conscand = count(TypedContent f0, Ap ap | consCand(f0, ap, config)) and
       states = count(FlowState state | revFlow(_, state, _, _, _, config)) and
       tuples =
-        count(NodeEx n, FlowState state, boolean b, ApOption retAp, Ap ap |
-          revFlow(n, state, b, retAp, ap, config)
+        count(NodeEx n, FlowState state, ReturnCtx returnCtx, ApOption retAp, Ap ap |
+          revFlow(n, state, returnCtx, retAp, ap, config)
         )
     }
     /* End: Stage logic. */
@@ -1915,7 +1956,7 @@ private module Stage2Param implements MkStage<Stage1>::StageParam {
     exists(lcc)
   }
 
-  predicate flowOutOfCall = flowOutOfCallNodeCand1/5;
+  predicate flowOutOfCall = flowOutOfCallNodeCand1/6;
 
   predicate flowIntoCall = flowIntoCallNodeCand1/5;
 
@@ -1951,9 +1992,10 @@ private module Stage2 implements StageSig {
 
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand2(
-  DataFlowCall call, RetNodeEx node1, NodeEx node2, boolean allowsFieldFlow, Configuration config
+  DataFlowCall call, RetNodeEx node1, ReturnPosition pos, NodeEx node2, boolean allowsFieldFlow,
+  Configuration config
 ) {
-  flowOutOfCallNodeCand1(call, node1, node2, allowsFieldFlow, config) and
+  flowOutOfCallNodeCand1(call, node1, pos, node2, allowsFieldFlow, config) and
   Stage2::revFlow(node2, pragma[only_bind_into](config)) and
   Stage2::revFlowAlias(node1, pragma[only_bind_into](config))
 }
@@ -2021,8 +2063,8 @@ private module LocalFlowBigStep {
     exists(NodeEx next | Stage2::revFlow(next, state, config) |
       jumpStep(node, next, config) or
       additionalJumpStep(node, next, config) or
-      flowIntoCallNodeCand1(_, node, next, config) or
-      flowOutOfCallNodeCand1(_, node, next, config) or
+      flowIntoCallNodeCand2(_, node, next, _, config) or
+      flowOutOfCallNodeCand2(_, node, _, next, _, config) or
       Stage2::storeStepCand(node, _, _, next, _, config) or
       Stage2::readStepCand(node, _, next, config)
     )
@@ -2163,7 +2205,7 @@ private module Stage3Param implements MkStage<Stage2>::StageParam {
     localFlowBigStep(node1, state1, node2, state2, preservesValue, ap, config, _) and exists(lcc)
   }
 
-  predicate flowOutOfCall = flowOutOfCallNodeCand2/5;
+  predicate flowOutOfCall = flowOutOfCallNodeCand2/6;
 
   predicate flowIntoCall = flowIntoCallNodeCand2/5;
 
@@ -2233,8 +2275,9 @@ private predicate flowCandSummaryCtx(
   NodeEx node, FlowState state, AccessPathFront argApf, Configuration config
 ) {
   exists(AccessPathFront apf |
-    Stage3::revFlow(node, state, true, _, apf, config) and
-    Stage3::fwdFlow(node, state, any(Stage3::CcCall ccc), TAccessPathFrontSome(argApf), apf, config)
+    Stage3::revFlow(node, state, TReturnCtxMaybeFlowThrough(_), _, apf, config) and
+    Stage3::fwdFlow(node, state, any(Stage3::CcCall ccc), _, TAccessPathFrontSome(argApf), apf,
+      config)
   )
 }
 
@@ -2468,10 +2511,11 @@ private module Stage4Param implements MkStage<Stage3>::StageParam {
 
   pragma[nomagic]
   predicate flowOutOfCall(
-    DataFlowCall call, RetNodeEx node1, NodeEx node2, boolean allowsFieldFlow, Configuration config
+    DataFlowCall call, RetNodeEx node1, ReturnPosition pos, NodeEx node2, boolean allowsFieldFlow,
+    Configuration config
   ) {
     exists(FlowState state |
-      flowOutOfCallNodeCand2(call, node1, node2, allowsFieldFlow, config) and
+      flowOutOfCallNodeCand2(call, node1, pos, node2, allowsFieldFlow, config) and
       PrevStage::revFlow(node2, pragma[only_bind_into](state), _, pragma[only_bind_into](config)) and
       PrevStage::revFlowAlias(node1, pragma[only_bind_into](state), _,
         pragma[only_bind_into](config))
@@ -2508,13 +2552,13 @@ private Configuration unbindConf(Configuration conf) {
 
 pragma[nomagic]
 private predicate nodeMayUseSummary0(
-  NodeEx n, DataFlowCallable c, FlowState state, AccessPathApprox apa, Configuration config
+  NodeEx n, ParamNodeEx p, FlowState state, AccessPathApprox apa, Configuration config
 ) {
   exists(AccessPathApprox apa0 |
-    Stage4::parameterMayFlowThrough(_, c, _, _) and
-    Stage4::revFlow(n, state, true, _, apa0, config) and
-    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TAccessPathApproxSome(apa), apa0, config) and
-    n.getEnclosingCallable() = c
+    Stage4::parameterMayFlowThrough(p, _, _) and
+    Stage4::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
+    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TParamNodeSome(p.asNode()),
+      TAccessPathApproxSome(apa), apa0, config)
   )
 }
 
@@ -2522,9 +2566,9 @@ pragma[nomagic]
 private predicate nodeMayUseSummary(
   NodeEx n, FlowState state, AccessPathApprox apa, Configuration config
 ) {
-  exists(DataFlowCallable c |
-    Stage4::parameterMayFlowThrough(_, c, apa, config) and
-    nodeMayUseSummary0(n, c, state, apa, config)
+  exists(ParamNodeEx p |
+    Stage4::parameterMayFlowThrough(p, apa, config) and
+    nodeMayUseSummary0(n, p, state, apa, config)
   )
 }
 
@@ -2532,7 +2576,7 @@ private newtype TSummaryCtx =
   TSummaryCtxNone() or
   TSummaryCtxSome(ParamNodeEx p, FlowState state, AccessPath ap) {
     exists(Configuration config |
-      Stage4::parameterMayFlowThrough(p, _, ap.getApprox(), config) and
+      Stage4::parameterMayFlowThrough(p, ap.getApprox(), config) and
       Stage4::revFlow(p, state, _, config)
     )
   }
@@ -3453,17 +3497,11 @@ private predicate paramFlowsThrough(
   ReturnKindExt kind, FlowState state, CallContextCall cc, SummaryCtxSome sc, AccessPath ap,
   AccessPathApprox apa, Configuration config
 ) {
-  exists(PathNodeMid mid, RetNodeEx ret, ParameterPosition pos |
+  exists(PathNodeMid mid, RetNodeEx ret |
     pathNode(mid, ret, state, cc, sc, ap, config, _) and
     kind = ret.getKind() and
     apa = ap.getApprox() and
-    pos = sc.getParameterPos() and
-    // we don't expect a parameter to return stored in itself, unless explicitly allowed
-    (
-      not kind.(ParamUpdateReturnKind).getPosition() = pos
-      or
-      sc.getParamNode().allowParameterReturnInSelf()
-    )
+    parameterFlowThroughAllowed(sc.getParamNode().asNode(), kind)
   )
 }
 
diff --git a/cpp/ql/lib/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl3.qll b/cpp/ql/lib/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl3.qll
index 3c41b1876dc..a52ad110662 100644
--- a/cpp/ql/lib/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl3.qll
+++ b/cpp/ql/lib/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl3.qll
@@ -319,8 +319,6 @@ private class ParamNodeEx extends NodeEx {
   }
 
   ParameterPosition getPosition() { this.isParameterOf(_, result) }
-
-  predicate allowParameterReturnInSelf() { allowParameterReturnInSelfCached(this.asNode()) }
 }
 
 private class RetNodeEx extends NodeEx {
@@ -608,6 +606,21 @@ private predicate hasSinkCallCtx(Configuration config) {
   )
 }
 
+/**
+ * Holds if flow from `p` to a return node of kind `kind` is allowed.
+ *
+ * We don't expect a parameter to return stored in itself, unless
+ * explicitly allowed
+ */
+bindingset[p, kind]
+private predicate parameterFlowThroughAllowed(ParamNode p, ReturnKindExt kind) {
+  exists(ParameterPosition pos | p.isParameterOf(_, pos) |
+    not kind.(ParamUpdateReturnKind).getPosition() = pos
+    or
+    allowParameterReturnInSelfCached(p)
+  )
+}
+
 private module Stage1 implements StageSig {
   class Ap = Unit;
 
@@ -981,21 +994,22 @@ private module Stage1 implements StageSig {
    * candidate for the origin of a summary.
    */
   pragma[nomagic]
-  predicate parameterMayFlowThrough(ParamNodeEx p, DataFlowCallable c, Ap ap, Configuration config) {
-    exists(ReturnKindExt kind |
+  predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
+    exists(DataFlowCallable c, ReturnKindExt kind |
       throughFlowNodeCand(p, config) and
       returnFlowCallableNodeCand(c, kind, config) and
       p.getEnclosingCallable() = c and
       exists(ap) and
-      // we don't expect a parameter to return stored in itself, unless explicitly allowed
-      (
-        not kind.(ParamUpdateReturnKind).getPosition() = p.getPosition()
-        or
-        p.allowParameterReturnInSelf()
-      )
+      parameterFlowThroughAllowed(p.asNode(), kind)
     )
   }
 
+  pragma[nomagic]
+  predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config) {
+    throughFlowNodeCand(ret, config) and
+    pos = ret.getReturnPosition()
+  }
+
   pragma[nomagic]
   predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
     exists(ArgNodeEx arg, boolean toReturn |
@@ -1052,9 +1066,10 @@ private predicate viableReturnPosOutNodeCand1(
  */
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand1(
-  DataFlowCall call, RetNodeEx ret, NodeEx out, Configuration config
+  DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, Configuration config
 ) {
-  viableReturnPosOutNodeCand1(call, ret.getReturnPosition(), out, config) and
+  viableReturnPosOutNodeCand1(call, pos, out, config) and
+  pos = ret.getReturnPosition() and
   Stage1::revFlow(ret, config) and
   not outBarrier(ret, config) and
   not inBarrier(out, config)
@@ -1090,7 +1105,7 @@ private predicate flowIntoCallNodeCand1(
 private int branch(NodeEx n1, Configuration conf) {
   result =
     strictcount(NodeEx n |
-      flowOutOfCallNodeCand1(_, n1, n, conf) or flowIntoCallNodeCand1(_, n1, n, conf)
+      flowOutOfCallNodeCand1(_, n1, _, n, conf) or flowIntoCallNodeCand1(_, n1, n, conf)
     )
 }
 
@@ -1102,7 +1117,7 @@ private int branch(NodeEx n1, Configuration conf) {
 private int join(NodeEx n2, Configuration conf) {
   result =
     strictcount(NodeEx n |
-      flowOutOfCallNodeCand1(_, n, n2, conf) or flowIntoCallNodeCand1(_, n, n2, conf)
+      flowOutOfCallNodeCand1(_, n, _, n2, conf) or flowIntoCallNodeCand1(_, n, n2, conf)
     )
 }
 
@@ -1115,12 +1130,13 @@ private int join(NodeEx n2, Configuration conf) {
  */
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand1(
-  DataFlowCall call, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow, Configuration config
+  DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
+  Configuration config
 ) {
-  flowOutOfCallNodeCand1(call, ret, out, config) and
+  flowOutOfCallNodeCand1(call, ret, pos, out, pragma[only_bind_into](config)) and
   exists(int b, int j |
-    b = branch(ret, config) and
-    j = join(out, config) and
+    b = branch(ret, pragma[only_bind_into](config)) and
+    j = join(out, pragma[only_bind_into](config)) and
     if b.minimum(j) <= config.fieldFlowBranchLimit()
     then allowsFieldFlow = true
     else allowsFieldFlow = false
@@ -1156,7 +1172,9 @@ private signature module StageSig {
 
   predicate callMayFlowThroughRev(DataFlowCall call, Configuration config);
 
-  predicate parameterMayFlowThrough(ParamNodeEx p, DataFlowCallable c, Ap ap, Configuration config);
+  predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config);
+
+  predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config);
 
   predicate storeStepCand(
     NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, DataFlowType contentType,
@@ -1222,7 +1240,8 @@ private module MkStage<StageSig PrevStage> {
     );
 
     predicate flowOutOfCall(
-      DataFlowCall call, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow, Configuration config
+      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
+      Configuration config
     );
 
     predicate flowIntoCall(
@@ -1247,14 +1266,16 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate flowThroughOutOfCall(
-      DataFlowCall call, CcCall ccc, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow,
-      Configuration config
+      DataFlowCall call, CcCall ccc, RetNodeEx ret, ReturnKindExt kind, NodeEx out,
+      boolean allowsFieldFlow, Configuration config
     ) {
-      flowOutOfCall(call, ret, out, allowsFieldFlow, pragma[only_bind_into](config)) and
-      PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
-      PrevStage::parameterMayFlowThrough(_, ret.getEnclosingCallable(), _,
-        pragma[only_bind_into](config)) and
-      matchesCall(ccc, call)
+      exists(ReturnPosition pos |
+        flowOutOfCall(call, ret, pos, out, allowsFieldFlow, pragma[only_bind_into](config)) and
+        kind = pos.getKind() and
+        PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
+        PrevStage::returnMayFlowThrough(ret, pos, pragma[only_bind_into](config)) and
+        matchesCall(ccc, call)
+      )
     }
 
     /**
@@ -1262,29 +1283,32 @@ private module MkStage<StageSig PrevStage> {
      * configuration `config`.
      *
      * The call context `cc` records whether the node is reached through an
-     * argument in a call, and if so, `argAp` records the access path of that
-     * argument.
+     * argument in a call, and if so, `summaryCtx` and `argAp` record the
+     * corresponding parameter and access path of that argument, respectively.
      */
     pragma[nomagic]
     additional predicate fwdFlow(
-      NodeEx node, FlowState state, Cc cc, ApOption argAp, Ap ap, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      Configuration config
     ) {
-      fwdFlow0(node, state, cc, argAp, ap, config) and
+      fwdFlow0(node, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::revFlow(node, state, unbindApa(getApprox(ap)), config) and
       filter(node, state, ap, config)
     }
 
     pragma[nomagic]
     private predicate fwdFlow0(
-      NodeEx node, FlowState state, Cc cc, ApOption argAp, Ap ap, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      Configuration config
     ) {
       sourceNode(node, state, config) and
       (if hasSourceCallCtx(config) then cc = ccSomeCall() else cc = ccNone()) and
       argAp = apNone() and
+      summaryCtx = TParamNodeNone() and
       ap = getApNil(node)
       or
       exists(NodeEx mid, FlowState state0, Ap ap0, LocalCc localCc |
-        fwdFlow(mid, state0, cc, argAp, ap0, config) and
+        fwdFlow(mid, state0, cc, summaryCtx, argAp, ap0, config) and
         localCc = getLocalCc(mid, cc)
       |
         localStep(mid, state0, node, state, true, _, config, localCc) and
@@ -1295,65 +1319,72 @@ private module MkStage<StageSig PrevStage> {
       )
       or
       exists(NodeEx mid |
-        fwdFlow(mid, pragma[only_bind_into](state), _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, pragma[only_bind_into](config)) and
         jumpStep(mid, node, config) and
         cc = ccNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone()
       )
       or
       exists(NodeEx mid, ApNil nil |
-        fwdFlow(mid, state, _, _, nil, pragma[only_bind_into](config)) and
+        fwdFlow(mid, state, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStep(mid, node, config) and
         cc = ccNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone() and
         ap = getApNil(node)
       )
       or
       exists(NodeEx mid, FlowState state0, ApNil nil |
-        fwdFlow(mid, state0, _, _, nil, pragma[only_bind_into](config)) and
+        fwdFlow(mid, state0, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStateStep(mid, state0, node, state, config) and
         cc = ccNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone() and
         ap = getApNil(node)
       )
       or
       // store
       exists(TypedContent tc, Ap ap0 |
-        fwdFlowStore(_, ap0, tc, node, state, cc, argAp, config) and
+        fwdFlowStore(_, ap0, tc, node, state, cc, summaryCtx, argAp, config) and
         ap = apCons(tc, ap0)
       )
       or
       // read
       exists(Ap ap0, Content c |
-        fwdFlowRead(ap0, c, _, node, state, cc, argAp, config) and
+        fwdFlowRead(ap0, c, _, node, state, cc, summaryCtx, argAp, config) and
         fwdFlowConsCand(ap0, c, ap, config)
       )
       or
       // flow into a callable
       exists(ApApprox apa |
-        fwdFlowIn(_, node, state, _, cc, _, ap, config) and
+        fwdFlowIn(_, node, state, _, cc, _, _, ap, config) and
         apa = getApprox(ap) and
-        if PrevStage::parameterMayFlowThrough(node, _, apa, config)
-        then argAp = apSome(ap)
-        else argAp = apNone()
+        if PrevStage::parameterMayFlowThrough(node, apa, config)
+        then (
+          summaryCtx = TParamNodeSome(node.asNode()) and argAp = apSome(ap)
+        ) else (
+          summaryCtx = TParamNodeNone() and argAp = apNone()
+        )
       )
       or
       // flow out of a callable
-      fwdFlowOutNotFromArg(node, state, cc, argAp, ap, config)
+      fwdFlowOutNotFromArg(node, state, cc, summaryCtx, argAp, ap, config)
       or
-      exists(DataFlowCall call, Ap argAp0 |
-        fwdFlowOutFromArg(call, node, state, argAp0, ap, config) and
-        fwdFlowIsEntered(call, cc, argAp, argAp0, config)
+      // flow through a callable
+      exists(DataFlowCall call, ParamNode summaryCtx0, Ap argAp0 |
+        fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, config) and
+        fwdFlowIsEntered(call, cc, summaryCtx, argAp, summaryCtx0, argAp0, config)
       )
     }
 
     pragma[nomagic]
     private predicate fwdFlowStore(
-      NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc, ApOption argAp,
-      Configuration config
+      NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc,
+      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
     ) {
       exists(DataFlowType contentType |
-        fwdFlow(node1, state, cc, argAp, ap1, config) and
+        fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, config) and
         PrevStage::storeStepCand(node1, unbindApa(getApprox(ap1)), tc, node2, contentType, config) and
         typecheckStore(ap1, contentType)
       )
@@ -1366,7 +1397,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowConsCand(Ap cons, Content c, Ap tail, Configuration config) {
       exists(TypedContent tc |
-        fwdFlowStore(_, tail, tc, _, _, _, _, config) and
+        fwdFlowStore(_, tail, tc, _, _, _, _, _, config) and
         tc.getContent() = c and
         cons = apCons(tc, tail)
       )
@@ -1374,21 +1405,21 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowRead(
-      Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc, ApOption argAp,
-      Configuration config
+      Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc,
+      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
     ) {
-      fwdFlow(node1, state, cc, argAp, ap, config) and
+      fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, c, node2, config) and
       getHeadContent(ap) = c
     }
 
     pragma[nomagic]
     private predicate fwdFlowIn(
-      DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, Cc innercc, ApOption argAp,
-      Ap ap, Configuration config
+      DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, Cc innercc,
+      ParamNodeOption summaryCtx, ApOption argAp, Ap ap, Configuration config
     ) {
       exists(ArgNodeEx arg, boolean allowsFieldFlow |
-        fwdFlow(arg, state, outercc, argAp, ap, config) and
+        fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, config) and
         flowIntoCall(call, arg, p, allowsFieldFlow, config) and
         innercc = getCallContextCall(call, p.getEnclosingCallable(), outercc) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
@@ -1397,14 +1428,15 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowOutNotFromArg(
-      NodeEx out, FlowState state, Cc ccOut, ApOption argAp, Ap ap, Configuration config
+      NodeEx out, FlowState state, Cc ccOut, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      Configuration config
     ) {
       exists(
         DataFlowCall call, RetNodeEx ret, boolean allowsFieldFlow, CcNoCall innercc,
         DataFlowCallable inner
       |
-        fwdFlow(ret, state, innercc, argAp, ap, config) and
-        flowOutOfCall(call, ret, out, allowsFieldFlow, config) and
+        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, config) and
+        flowOutOfCall(call, ret, _, out, allowsFieldFlow, config) and
         inner = ret.getEnclosingCallable() and
         ccOut = getCallContextReturn(inner, call, innercc) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
@@ -1413,12 +1445,14 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowOutFromArg(
-      DataFlowCall call, NodeEx out, FlowState state, Ap argAp, Ap ap, Configuration config
+      DataFlowCall call, NodeEx out, FlowState state, ParamNode summaryCtx, Ap argAp, Ap ap,
+      Configuration config
     ) {
-      exists(RetNodeEx ret, boolean allowsFieldFlow, CcCall ccc |
-        fwdFlow(ret, state, ccc, apSome(argAp), ap, config) and
-        flowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, config) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
+      exists(RetNodeEx ret, ReturnKindExt kind, boolean allowsFieldFlow, CcCall ccc |
+        fwdFlow(ret, state, ccc, TParamNodeSome(summaryCtx), apSome(argAp), ap, config) and
+        flowThroughOutOfCall(call, ccc, ret, kind, out, allowsFieldFlow, config) and
+        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
+        parameterFlowThroughAllowed(summaryCtx, kind)
       )
     }
 
@@ -1428,11 +1462,13 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate fwdFlowIsEntered(
-      DataFlowCall call, Cc cc, ApOption argAp, Ap ap, Configuration config
+      DataFlowCall call, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, ParamNode p, Ap ap,
+      Configuration config
     ) {
-      exists(ParamNodeEx p |
-        fwdFlowIn(call, p, _, cc, _, argAp, ap, config) and
-        PrevStage::parameterMayFlowThrough(p, _, unbindApa(getApprox(ap)), config)
+      exists(ParamNodeEx param |
+        fwdFlowIn(call, param, _, cc, _, summaryCtx, argAp, ap, config) and
+        PrevStage::parameterMayFlowThrough(param, unbindApa(getApprox(ap)), config) and
+        p = param.asNode()
       )
     }
 
@@ -1440,146 +1476,149 @@ private module MkStage<StageSig PrevStage> {
     private predicate storeStepFwd(
       NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, Ap ap2, Configuration config
     ) {
-      fwdFlowStore(node1, ap1, tc, node2, _, _, _, config) and
+      fwdFlowStore(node1, ap1, tc, node2, _, _, _, _, config) and
       ap2 = apCons(tc, ap1) and
-      fwdFlowRead(ap2, tc.getContent(), _, _, _, _, _, config)
+      fwdFlowRead(ap2, tc.getContent(), _, _, _, _, _, _, config)
     }
 
     private predicate readStepFwd(
       NodeEx n1, Ap ap1, Content c, NodeEx n2, Ap ap2, Configuration config
     ) {
-      fwdFlowRead(ap1, c, n1, n2, _, _, _, config) and
+      fwdFlowRead(ap1, c, n1, n2, _, _, _, _, config) and
       fwdFlowConsCand(ap1, c, ap2, config)
     }
 
     pragma[nomagic]
-    private predicate callMayFlowThroughFwd(DataFlowCall call, Configuration config) {
-      exists(Ap argAp0, NodeEx out, FlowState state, Cc cc, ApOption argAp, Ap ap |
-        fwdFlow(out, state, pragma[only_bind_into](cc), pragma[only_bind_into](argAp), ap,
-          pragma[only_bind_into](config)) and
-        fwdFlowOutFromArg(call, out, state, argAp0, ap, config) and
-        fwdFlowIsEntered(pragma[only_bind_into](call), pragma[only_bind_into](cc),
-          pragma[only_bind_into](argAp), pragma[only_bind_into](argAp0),
-          pragma[only_bind_into](config))
-      )
+    private predicate returnFlowsThrough(
+      RetNodeEx ret, ReturnPosition pos, FlowState state, CcCall ccc, ParamNode p, Ap argAp, Ap ap,
+      Configuration config
+    ) {
+      fwdFlow(ret, state, ccc, TParamNodeSome(p), apSome(argAp), ap, config) and
+      pos = ret.getReturnPosition() and
+      parameterFlowThroughAllowed(p, pos.getKind())
     }
 
     pragma[nomagic]
     private predicate flowThroughIntoCall(
       DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
     ) {
-      flowIntoCall(call, arg, p, allowsFieldFlow, config) and
-      fwdFlow(arg, _, _, _, _, pragma[only_bind_into](config)) and
-      PrevStage::parameterMayFlowThrough(p, _, _, pragma[only_bind_into](config)) and
-      callMayFlowThroughFwd(call, pragma[only_bind_into](config))
-    }
-
-    pragma[nomagic]
-    private predicate returnNodeMayFlowThrough(
-      RetNodeEx ret, FlowState state, Ap ap, Configuration config
-    ) {
-      fwdFlow(ret, state, any(CcCall ccc), apSome(_), ap, config)
+      flowIntoCall(call, pragma[only_bind_into](arg), pragma[only_bind_into](p), allowsFieldFlow,
+        pragma[only_bind_into](config)) and
+      fwdFlow(arg, _, _, _, _, _, pragma[only_bind_into](config)) and
+      returnFlowsThrough(_, _, _, _, p.asNode(), _, _, pragma[only_bind_into](config))
     }
 
     /**
      * Holds if `node` with access path `ap` is part of a path from a source to a
      * sink in the configuration `config`.
      *
-     * The Boolean `toReturn` records whether the node must be returned from the
-     * enclosing callable in order to reach a sink, and if so, `returnAp` records
-     * the access path of the returned value.
+     * The parameter `returnCtx` records whether (and how) the node must be returned
+     * from the enclosing callable in order to reach a sink, and if so, `returnAp`
+     * records the access path of the returned value.
      */
     pragma[nomagic]
     additional predicate revFlow(
-      NodeEx node, FlowState state, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
+      NodeEx node, FlowState state, ReturnCtx returnCtx, ApOption returnAp, Ap ap,
+      Configuration config
     ) {
-      revFlow0(node, state, toReturn, returnAp, ap, config) and
-      fwdFlow(node, state, _, _, ap, config)
+      revFlow0(node, state, returnCtx, returnAp, ap, config) and
+      fwdFlow(node, state, _, _, _, ap, config)
     }
 
     pragma[nomagic]
     private predicate revFlow0(
-      NodeEx node, FlowState state, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
+      NodeEx node, FlowState state, ReturnCtx returnCtx, ApOption returnAp, Ap ap,
+      Configuration config
     ) {
-      fwdFlow(node, state, _, _, ap, config) and
+      fwdFlow(node, state, _, _, _, ap, config) and
       sinkNode(node, state, config) and
-      (if hasSinkCallCtx(config) then toReturn = true else toReturn = false) and
+      (
+        if hasSinkCallCtx(config)
+        then returnCtx = TReturnCtxNoFlowThrough()
+        else returnCtx = TReturnCtxNone()
+      ) and
       returnAp = apNone() and
       ap instanceof ApNil
       or
       exists(NodeEx mid, FlowState state0 |
         localStep(node, state, mid, state0, true, _, config, _) and
-        revFlow(mid, state0, toReturn, returnAp, ap, config)
+        revFlow(mid, state0, returnCtx, returnAp, ap, config)
       )
       or
       exists(NodeEx mid, FlowState state0, ApNil nil |
-        fwdFlow(node, pragma[only_bind_into](state), _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(node, pragma[only_bind_into](state), _, _, _, ap, pragma[only_bind_into](config)) and
         localStep(node, pragma[only_bind_into](state), mid, state0, false, _, config, _) and
-        revFlow(mid, state0, toReturn, returnAp, nil, pragma[only_bind_into](config)) and
+        revFlow(mid, state0, returnCtx, returnAp, nil, pragma[only_bind_into](config)) and
         ap instanceof ApNil
       )
       or
       exists(NodeEx mid |
         jumpStep(node, mid, config) and
         revFlow(mid, state, _, _, ap, config) and
-        toReturn = false and
+        returnCtx = TReturnCtxNone() and
         returnAp = apNone()
       )
       or
       exists(NodeEx mid, ApNil nil |
-        fwdFlow(node, _, _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(node, _, _, _, _, ap, pragma[only_bind_into](config)) and
         additionalJumpStep(node, mid, config) and
         revFlow(pragma[only_bind_into](mid), state, _, _, nil, pragma[only_bind_into](config)) and
-        toReturn = false and
+        returnCtx = TReturnCtxNone() and
         returnAp = apNone() and
         ap instanceof ApNil
       )
       or
       exists(NodeEx mid, FlowState state0, ApNil nil |
-        fwdFlow(node, _, _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(node, _, _, _, _, ap, pragma[only_bind_into](config)) and
         additionalJumpStateStep(node, state, mid, state0, config) and
         revFlow(pragma[only_bind_into](mid), pragma[only_bind_into](state0), _, _, nil,
           pragma[only_bind_into](config)) and
-        toReturn = false and
+        returnCtx = TReturnCtxNone() and
         returnAp = apNone() and
         ap instanceof ApNil
       )
       or
       // store
       exists(Ap ap0, Content c |
-        revFlowStore(ap0, c, ap, node, state, _, _, toReturn, returnAp, config) and
+        revFlowStore(ap0, c, ap, node, state, _, _, returnCtx, returnAp, config) and
         revFlowConsCand(ap0, c, ap, config)
       )
       or
       // read
       exists(NodeEx mid, Ap ap0 |
-        revFlow(mid, state, toReturn, returnAp, ap0, config) and
+        revFlow(mid, state, returnCtx, returnAp, ap0, config) and
         readStepFwd(node, ap, _, mid, ap0, config)
       )
       or
       // flow into a callable
       revFlowInNotToReturn(node, state, returnAp, ap, config) and
-      toReturn = false
+      returnCtx = TReturnCtxNone()
       or
-      exists(DataFlowCall call, Ap returnAp0 |
-        revFlowInToReturn(call, node, state, returnAp0, ap, config) and
-        revFlowIsReturned(call, toReturn, returnAp, returnAp0, config)
+      // flow through a callable
+      exists(DataFlowCall call, ReturnPosition returnPos0, Ap returnAp0 |
+        revFlowInToReturn(call, node, state, returnPos0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnPos0, returnAp0, config)
       )
       or
       // flow out of a callable
-      revFlowOut(_, node, state, _, _, ap, config) and
-      toReturn = true and
-      if returnNodeMayFlowThrough(node, state, ap, config)
-      then returnAp = apSome(ap)
-      else returnAp = apNone()
+      exists(ReturnPosition pos |
+        revFlowOut(_, node, pos, state, _, _, ap, config) and
+        if returnFlowsThrough(node, pos, state, _, _, _, ap, config)
+        then (
+          returnCtx = TReturnCtxMaybeFlowThrough(pos) and
+          returnAp = apSome(ap)
+        ) else (
+          returnCtx = TReturnCtxNoFlowThrough() and returnAp = apNone()
+        )
+      )
     }
 
     pragma[nomagic]
     private predicate revFlowStore(
       Ap ap0, Content c, Ap ap, NodeEx node, FlowState state, TypedContent tc, NodeEx mid,
-      boolean toReturn, ApOption returnAp, Configuration config
+      ReturnCtx returnCtx, ApOption returnAp, Configuration config
     ) {
-      revFlow(mid, state, toReturn, returnAp, ap0, config) and
+      revFlow(mid, state, returnCtx, returnAp, ap0, config) and
       storeStepFwd(node, ap, tc, mid, ap0, config) and
       tc.getContent() = c
     }
@@ -1599,12 +1638,12 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate revFlowOut(
-      DataFlowCall call, RetNodeEx ret, FlowState state, boolean toReturn, ApOption returnAp, Ap ap,
-      Configuration config
+      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, FlowState state, ReturnCtx returnCtx,
+      ApOption returnAp, Ap ap, Configuration config
     ) {
       exists(NodeEx out, boolean allowsFieldFlow |
-        revFlow(out, state, toReturn, returnAp, ap, config) and
-        flowOutOfCall(call, ret, out, allowsFieldFlow, config) and
+        revFlow(out, state, returnCtx, returnAp, ap, config) and
+        flowOutOfCall(call, ret, pos, out, allowsFieldFlow, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
@@ -1614,7 +1653,7 @@ private module MkStage<StageSig PrevStage> {
       ArgNodeEx arg, FlowState state, ApOption returnAp, Ap ap, Configuration config
     ) {
       exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(p, state, false, returnAp, ap, config) and
+        revFlow(p, state, TReturnCtxNone(), returnAp, ap, config) and
         flowIntoCall(_, arg, p, allowsFieldFlow, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
@@ -1622,12 +1661,14 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate revFlowInToReturn(
-      DataFlowCall call, ArgNodeEx arg, FlowState state, Ap returnAp, Ap ap, Configuration config
+      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnPosition returnPos, Ap returnAp,
+      Ap ap, Configuration config
     ) {
       exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(p, state, true, apSome(returnAp), ap, config) and
+        revFlow(p, state, TReturnCtxMaybeFlowThrough(returnPos), apSome(returnAp), ap, config) and
         flowThroughIntoCall(call, arg, p, allowsFieldFlow, config) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
+        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
+        parameterFlowThroughAllowed(p.asNode(), returnPos.getKind())
       )
     }
 
@@ -1638,11 +1679,12 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate revFlowIsReturned(
-      DataFlowCall call, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
+      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnPosition pos, Ap ap,
+      Configuration config
     ) {
       exists(RetNodeEx ret, FlowState state, CcCall ccc |
-        revFlowOut(call, ret, state, toReturn, returnAp, ap, config) and
-        fwdFlow(ret, state, ccc, apSome(_), ap, config) and
+        revFlowOut(call, ret, pos, state, returnCtx, returnAp, ap, config) and
+        returnFlowsThrough(ret, pos, state, ccc, _, _, ap, config) and
         matchesCall(ccc, call)
       )
     }
@@ -1713,40 +1755,39 @@ private module MkStage<StageSig PrevStage> {
       validAp(ap, config)
     }
 
-    pragma[noinline]
-    private predicate parameterFlow(
-      ParamNodeEx p, Ap ap, Ap ap0, DataFlowCallable c, Configuration config
+    pragma[nomagic]
+    private predicate parameterFlowsThroughRev(
+      ParamNodeEx p, Ap ap, ReturnPosition returnPos, Configuration config
     ) {
-      revFlow(p, _, true, apSome(ap0), ap, config) and
-      c = p.getEnclosingCallable()
+      revFlow(p, _, TReturnCtxMaybeFlowThrough(returnPos), apSome(_), ap, config) and
+      parameterFlowThroughAllowed(p.asNode(), returnPos.getKind())
     }
 
-    predicate parameterMayFlowThrough(ParamNodeEx p, DataFlowCallable c, Ap ap, Configuration config) {
-      exists(RetNodeEx ret, FlowState state, Ap ap0, ReturnKindExt kind, ParameterPosition pos |
-        parameterFlow(p, ap, ap0, c, config) and
-        c = ret.getEnclosingCallable() and
-        revFlow(pragma[only_bind_into](ret), pragma[only_bind_into](state), true, apSome(_),
-          pragma[only_bind_into](ap0), pragma[only_bind_into](config)) and
-        fwdFlow(ret, state, any(CcCall ccc), apSome(ap), ap0, config) and
-        kind = ret.getKind() and
-        p.getPosition() = pos and
-        // we don't expect a parameter to return stored in itself, unless explicitly allowed
-        (
-          not kind.(ParamUpdateReturnKind).getPosition() = pos
-          or
-          p.allowParameterReturnInSelf()
-        )
+    pragma[nomagic]
+    predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
+      exists(RetNodeEx ret, ReturnPosition pos |
+        returnFlowsThrough(ret, pos, _, _, p.asNode(), ap, _, config) and
+        parameterFlowsThroughRev(p, ap, pos, config)
+      )
+    }
+
+    pragma[nomagic]
+    predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config) {
+      exists(ParamNodeEx p, Ap ap |
+        returnFlowsThrough(ret, pos, _, _, p.asNode(), ap, _, config) and
+        parameterFlowsThroughRev(p, ap, pos, config)
       )
     }
 
     pragma[nomagic]
     predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
       exists(
-        Ap returnAp0, ArgNodeEx arg, FlowState state, boolean toReturn, ApOption returnAp, Ap ap
+        ReturnPosition returnPos0, Ap returnAp0, ArgNodeEx arg, FlowState state,
+        ReturnCtx returnCtx, ApOption returnAp, Ap ap
       |
-        revFlow(arg, state, toReturn, returnAp, ap, config) and
-        revFlowInToReturn(call, arg, state, returnAp0, ap, config) and
-        revFlowIsReturned(call, toReturn, returnAp, returnAp0, config)
+        revFlow(arg, state, returnCtx, returnAp, ap, config) and
+        revFlowInToReturn(call, arg, state, returnPos0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnPos0, returnAp0, config)
       )
     }
 
@@ -1754,13 +1795,13 @@ private module MkStage<StageSig PrevStage> {
       boolean fwd, int nodes, int fields, int conscand, int states, int tuples, Configuration config
     ) {
       fwd = true and
-      nodes = count(NodeEx node | fwdFlow(node, _, _, _, _, config)) and
+      nodes = count(NodeEx node | fwdFlow(node, _, _, _, _, _, config)) and
       fields = count(TypedContent f0 | fwdConsCand(f0, _, config)) and
       conscand = count(TypedContent f0, Ap ap | fwdConsCand(f0, ap, config)) and
-      states = count(FlowState state | fwdFlow(_, state, _, _, _, config)) and
+      states = count(FlowState state | fwdFlow(_, state, _, _, _, _, config)) and
       tuples =
-        count(NodeEx n, FlowState state, Cc cc, ApOption argAp, Ap ap |
-          fwdFlow(n, state, cc, argAp, ap, config)
+        count(NodeEx n, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap |
+          fwdFlow(n, state, cc, summaryCtx, argAp, ap, config)
         )
       or
       fwd = false and
@@ -1769,8 +1810,8 @@ private module MkStage<StageSig PrevStage> {
       conscand = count(TypedContent f0, Ap ap | consCand(f0, ap, config)) and
       states = count(FlowState state | revFlow(_, state, _, _, _, config)) and
       tuples =
-        count(NodeEx n, FlowState state, boolean b, ApOption retAp, Ap ap |
-          revFlow(n, state, b, retAp, ap, config)
+        count(NodeEx n, FlowState state, ReturnCtx returnCtx, ApOption retAp, Ap ap |
+          revFlow(n, state, returnCtx, retAp, ap, config)
         )
     }
     /* End: Stage logic. */
@@ -1915,7 +1956,7 @@ private module Stage2Param implements MkStage<Stage1>::StageParam {
     exists(lcc)
   }
 
-  predicate flowOutOfCall = flowOutOfCallNodeCand1/5;
+  predicate flowOutOfCall = flowOutOfCallNodeCand1/6;
 
   predicate flowIntoCall = flowIntoCallNodeCand1/5;
 
@@ -1951,9 +1992,10 @@ private module Stage2 implements StageSig {
 
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand2(
-  DataFlowCall call, RetNodeEx node1, NodeEx node2, boolean allowsFieldFlow, Configuration config
+  DataFlowCall call, RetNodeEx node1, ReturnPosition pos, NodeEx node2, boolean allowsFieldFlow,
+  Configuration config
 ) {
-  flowOutOfCallNodeCand1(call, node1, node2, allowsFieldFlow, config) and
+  flowOutOfCallNodeCand1(call, node1, pos, node2, allowsFieldFlow, config) and
   Stage2::revFlow(node2, pragma[only_bind_into](config)) and
   Stage2::revFlowAlias(node1, pragma[only_bind_into](config))
 }
@@ -2021,8 +2063,8 @@ private module LocalFlowBigStep {
     exists(NodeEx next | Stage2::revFlow(next, state, config) |
       jumpStep(node, next, config) or
       additionalJumpStep(node, next, config) or
-      flowIntoCallNodeCand1(_, node, next, config) or
-      flowOutOfCallNodeCand1(_, node, next, config) or
+      flowIntoCallNodeCand2(_, node, next, _, config) or
+      flowOutOfCallNodeCand2(_, node, _, next, _, config) or
       Stage2::storeStepCand(node, _, _, next, _, config) or
       Stage2::readStepCand(node, _, next, config)
     )
@@ -2163,7 +2205,7 @@ private module Stage3Param implements MkStage<Stage2>::StageParam {
     localFlowBigStep(node1, state1, node2, state2, preservesValue, ap, config, _) and exists(lcc)
   }
 
-  predicate flowOutOfCall = flowOutOfCallNodeCand2/5;
+  predicate flowOutOfCall = flowOutOfCallNodeCand2/6;
 
   predicate flowIntoCall = flowIntoCallNodeCand2/5;
 
@@ -2233,8 +2275,9 @@ private predicate flowCandSummaryCtx(
   NodeEx node, FlowState state, AccessPathFront argApf, Configuration config
 ) {
   exists(AccessPathFront apf |
-    Stage3::revFlow(node, state, true, _, apf, config) and
-    Stage3::fwdFlow(node, state, any(Stage3::CcCall ccc), TAccessPathFrontSome(argApf), apf, config)
+    Stage3::revFlow(node, state, TReturnCtxMaybeFlowThrough(_), _, apf, config) and
+    Stage3::fwdFlow(node, state, any(Stage3::CcCall ccc), _, TAccessPathFrontSome(argApf), apf,
+      config)
   )
 }
 
@@ -2468,10 +2511,11 @@ private module Stage4Param implements MkStage<Stage3>::StageParam {
 
   pragma[nomagic]
   predicate flowOutOfCall(
-    DataFlowCall call, RetNodeEx node1, NodeEx node2, boolean allowsFieldFlow, Configuration config
+    DataFlowCall call, RetNodeEx node1, ReturnPosition pos, NodeEx node2, boolean allowsFieldFlow,
+    Configuration config
   ) {
     exists(FlowState state |
-      flowOutOfCallNodeCand2(call, node1, node2, allowsFieldFlow, config) and
+      flowOutOfCallNodeCand2(call, node1, pos, node2, allowsFieldFlow, config) and
       PrevStage::revFlow(node2, pragma[only_bind_into](state), _, pragma[only_bind_into](config)) and
       PrevStage::revFlowAlias(node1, pragma[only_bind_into](state), _,
         pragma[only_bind_into](config))
@@ -2508,13 +2552,13 @@ private Configuration unbindConf(Configuration conf) {
 
 pragma[nomagic]
 private predicate nodeMayUseSummary0(
-  NodeEx n, DataFlowCallable c, FlowState state, AccessPathApprox apa, Configuration config
+  NodeEx n, ParamNodeEx p, FlowState state, AccessPathApprox apa, Configuration config
 ) {
   exists(AccessPathApprox apa0 |
-    Stage4::parameterMayFlowThrough(_, c, _, _) and
-    Stage4::revFlow(n, state, true, _, apa0, config) and
-    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TAccessPathApproxSome(apa), apa0, config) and
-    n.getEnclosingCallable() = c
+    Stage4::parameterMayFlowThrough(p, _, _) and
+    Stage4::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
+    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TParamNodeSome(p.asNode()),
+      TAccessPathApproxSome(apa), apa0, config)
   )
 }
 
@@ -2522,9 +2566,9 @@ pragma[nomagic]
 private predicate nodeMayUseSummary(
   NodeEx n, FlowState state, AccessPathApprox apa, Configuration config
 ) {
-  exists(DataFlowCallable c |
-    Stage4::parameterMayFlowThrough(_, c, apa, config) and
-    nodeMayUseSummary0(n, c, state, apa, config)
+  exists(ParamNodeEx p |
+    Stage4::parameterMayFlowThrough(p, apa, config) and
+    nodeMayUseSummary0(n, p, state, apa, config)
   )
 }
 
@@ -2532,7 +2576,7 @@ private newtype TSummaryCtx =
   TSummaryCtxNone() or
   TSummaryCtxSome(ParamNodeEx p, FlowState state, AccessPath ap) {
     exists(Configuration config |
-      Stage4::parameterMayFlowThrough(p, _, ap.getApprox(), config) and
+      Stage4::parameterMayFlowThrough(p, ap.getApprox(), config) and
       Stage4::revFlow(p, state, _, config)
     )
   }
@@ -3453,17 +3497,11 @@ private predicate paramFlowsThrough(
   ReturnKindExt kind, FlowState state, CallContextCall cc, SummaryCtxSome sc, AccessPath ap,
   AccessPathApprox apa, Configuration config
 ) {
-  exists(PathNodeMid mid, RetNodeEx ret, ParameterPosition pos |
+  exists(PathNodeMid mid, RetNodeEx ret |
     pathNode(mid, ret, state, cc, sc, ap, config, _) and
     kind = ret.getKind() and
     apa = ap.getApprox() and
-    pos = sc.getParameterPos() and
-    // we don't expect a parameter to return stored in itself, unless explicitly allowed
-    (
-      not kind.(ParamUpdateReturnKind).getPosition() = pos
-      or
-      sc.getParamNode().allowParameterReturnInSelf()
-    )
+    parameterFlowThroughAllowed(sc.getParamNode().asNode(), kind)
   )
 }
 
diff --git a/cpp/ql/lib/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl4.qll b/cpp/ql/lib/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl4.qll
index 3c41b1876dc..a52ad110662 100644
--- a/cpp/ql/lib/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl4.qll
+++ b/cpp/ql/lib/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl4.qll
@@ -319,8 +319,6 @@ private class ParamNodeEx extends NodeEx {
   }
 
   ParameterPosition getPosition() { this.isParameterOf(_, result) }
-
-  predicate allowParameterReturnInSelf() { allowParameterReturnInSelfCached(this.asNode()) }
 }
 
 private class RetNodeEx extends NodeEx {
@@ -608,6 +606,21 @@ private predicate hasSinkCallCtx(Configuration config) {
   )
 }
 
+/**
+ * Holds if flow from `p` to a return node of kind `kind` is allowed.
+ *
+ * We don't expect a parameter to return stored in itself, unless
+ * explicitly allowed
+ */
+bindingset[p, kind]
+private predicate parameterFlowThroughAllowed(ParamNode p, ReturnKindExt kind) {
+  exists(ParameterPosition pos | p.isParameterOf(_, pos) |
+    not kind.(ParamUpdateReturnKind).getPosition() = pos
+    or
+    allowParameterReturnInSelfCached(p)
+  )
+}
+
 private module Stage1 implements StageSig {
   class Ap = Unit;
 
@@ -981,21 +994,22 @@ private module Stage1 implements StageSig {
    * candidate for the origin of a summary.
    */
   pragma[nomagic]
-  predicate parameterMayFlowThrough(ParamNodeEx p, DataFlowCallable c, Ap ap, Configuration config) {
-    exists(ReturnKindExt kind |
+  predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
+    exists(DataFlowCallable c, ReturnKindExt kind |
       throughFlowNodeCand(p, config) and
       returnFlowCallableNodeCand(c, kind, config) and
       p.getEnclosingCallable() = c and
       exists(ap) and
-      // we don't expect a parameter to return stored in itself, unless explicitly allowed
-      (
-        not kind.(ParamUpdateReturnKind).getPosition() = p.getPosition()
-        or
-        p.allowParameterReturnInSelf()
-      )
+      parameterFlowThroughAllowed(p.asNode(), kind)
     )
   }
 
+  pragma[nomagic]
+  predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config) {
+    throughFlowNodeCand(ret, config) and
+    pos = ret.getReturnPosition()
+  }
+
   pragma[nomagic]
   predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
     exists(ArgNodeEx arg, boolean toReturn |
@@ -1052,9 +1066,10 @@ private predicate viableReturnPosOutNodeCand1(
  */
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand1(
-  DataFlowCall call, RetNodeEx ret, NodeEx out, Configuration config
+  DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, Configuration config
 ) {
-  viableReturnPosOutNodeCand1(call, ret.getReturnPosition(), out, config) and
+  viableReturnPosOutNodeCand1(call, pos, out, config) and
+  pos = ret.getReturnPosition() and
   Stage1::revFlow(ret, config) and
   not outBarrier(ret, config) and
   not inBarrier(out, config)
@@ -1090,7 +1105,7 @@ private predicate flowIntoCallNodeCand1(
 private int branch(NodeEx n1, Configuration conf) {
   result =
     strictcount(NodeEx n |
-      flowOutOfCallNodeCand1(_, n1, n, conf) or flowIntoCallNodeCand1(_, n1, n, conf)
+      flowOutOfCallNodeCand1(_, n1, _, n, conf) or flowIntoCallNodeCand1(_, n1, n, conf)
     )
 }
 
@@ -1102,7 +1117,7 @@ private int branch(NodeEx n1, Configuration conf) {
 private int join(NodeEx n2, Configuration conf) {
   result =
     strictcount(NodeEx n |
-      flowOutOfCallNodeCand1(_, n, n2, conf) or flowIntoCallNodeCand1(_, n, n2, conf)
+      flowOutOfCallNodeCand1(_, n, _, n2, conf) or flowIntoCallNodeCand1(_, n, n2, conf)
     )
 }
 
@@ -1115,12 +1130,13 @@ private int join(NodeEx n2, Configuration conf) {
  */
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand1(
-  DataFlowCall call, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow, Configuration config
+  DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
+  Configuration config
 ) {
-  flowOutOfCallNodeCand1(call, ret, out, config) and
+  flowOutOfCallNodeCand1(call, ret, pos, out, pragma[only_bind_into](config)) and
   exists(int b, int j |
-    b = branch(ret, config) and
-    j = join(out, config) and
+    b = branch(ret, pragma[only_bind_into](config)) and
+    j = join(out, pragma[only_bind_into](config)) and
     if b.minimum(j) <= config.fieldFlowBranchLimit()
     then allowsFieldFlow = true
     else allowsFieldFlow = false
@@ -1156,7 +1172,9 @@ private signature module StageSig {
 
   predicate callMayFlowThroughRev(DataFlowCall call, Configuration config);
 
-  predicate parameterMayFlowThrough(ParamNodeEx p, DataFlowCallable c, Ap ap, Configuration config);
+  predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config);
+
+  predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config);
 
   predicate storeStepCand(
     NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, DataFlowType contentType,
@@ -1222,7 +1240,8 @@ private module MkStage<StageSig PrevStage> {
     );
 
     predicate flowOutOfCall(
-      DataFlowCall call, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow, Configuration config
+      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
+      Configuration config
     );
 
     predicate flowIntoCall(
@@ -1247,14 +1266,16 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate flowThroughOutOfCall(
-      DataFlowCall call, CcCall ccc, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow,
-      Configuration config
+      DataFlowCall call, CcCall ccc, RetNodeEx ret, ReturnKindExt kind, NodeEx out,
+      boolean allowsFieldFlow, Configuration config
     ) {
-      flowOutOfCall(call, ret, out, allowsFieldFlow, pragma[only_bind_into](config)) and
-      PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
-      PrevStage::parameterMayFlowThrough(_, ret.getEnclosingCallable(), _,
-        pragma[only_bind_into](config)) and
-      matchesCall(ccc, call)
+      exists(ReturnPosition pos |
+        flowOutOfCall(call, ret, pos, out, allowsFieldFlow, pragma[only_bind_into](config)) and
+        kind = pos.getKind() and
+        PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
+        PrevStage::returnMayFlowThrough(ret, pos, pragma[only_bind_into](config)) and
+        matchesCall(ccc, call)
+      )
     }
 
     /**
@@ -1262,29 +1283,32 @@ private module MkStage<StageSig PrevStage> {
      * configuration `config`.
      *
      * The call context `cc` records whether the node is reached through an
-     * argument in a call, and if so, `argAp` records the access path of that
-     * argument.
+     * argument in a call, and if so, `summaryCtx` and `argAp` record the
+     * corresponding parameter and access path of that argument, respectively.
      */
     pragma[nomagic]
     additional predicate fwdFlow(
-      NodeEx node, FlowState state, Cc cc, ApOption argAp, Ap ap, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      Configuration config
     ) {
-      fwdFlow0(node, state, cc, argAp, ap, config) and
+      fwdFlow0(node, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::revFlow(node, state, unbindApa(getApprox(ap)), config) and
       filter(node, state, ap, config)
     }
 
     pragma[nomagic]
     private predicate fwdFlow0(
-      NodeEx node, FlowState state, Cc cc, ApOption argAp, Ap ap, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      Configuration config
     ) {
       sourceNode(node, state, config) and
       (if hasSourceCallCtx(config) then cc = ccSomeCall() else cc = ccNone()) and
       argAp = apNone() and
+      summaryCtx = TParamNodeNone() and
       ap = getApNil(node)
       or
       exists(NodeEx mid, FlowState state0, Ap ap0, LocalCc localCc |
-        fwdFlow(mid, state0, cc, argAp, ap0, config) and
+        fwdFlow(mid, state0, cc, summaryCtx, argAp, ap0, config) and
         localCc = getLocalCc(mid, cc)
       |
         localStep(mid, state0, node, state, true, _, config, localCc) and
@@ -1295,65 +1319,72 @@ private module MkStage<StageSig PrevStage> {
       )
       or
       exists(NodeEx mid |
-        fwdFlow(mid, pragma[only_bind_into](state), _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, pragma[only_bind_into](config)) and
         jumpStep(mid, node, config) and
         cc = ccNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone()
       )
       or
       exists(NodeEx mid, ApNil nil |
-        fwdFlow(mid, state, _, _, nil, pragma[only_bind_into](config)) and
+        fwdFlow(mid, state, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStep(mid, node, config) and
         cc = ccNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone() and
         ap = getApNil(node)
       )
       or
       exists(NodeEx mid, FlowState state0, ApNil nil |
-        fwdFlow(mid, state0, _, _, nil, pragma[only_bind_into](config)) and
+        fwdFlow(mid, state0, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStateStep(mid, state0, node, state, config) and
         cc = ccNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone() and
         ap = getApNil(node)
       )
       or
       // store
       exists(TypedContent tc, Ap ap0 |
-        fwdFlowStore(_, ap0, tc, node, state, cc, argAp, config) and
+        fwdFlowStore(_, ap0, tc, node, state, cc, summaryCtx, argAp, config) and
         ap = apCons(tc, ap0)
       )
       or
       // read
       exists(Ap ap0, Content c |
-        fwdFlowRead(ap0, c, _, node, state, cc, argAp, config) and
+        fwdFlowRead(ap0, c, _, node, state, cc, summaryCtx, argAp, config) and
         fwdFlowConsCand(ap0, c, ap, config)
       )
       or
       // flow into a callable
       exists(ApApprox apa |
-        fwdFlowIn(_, node, state, _, cc, _, ap, config) and
+        fwdFlowIn(_, node, state, _, cc, _, _, ap, config) and
         apa = getApprox(ap) and
-        if PrevStage::parameterMayFlowThrough(node, _, apa, config)
-        then argAp = apSome(ap)
-        else argAp = apNone()
+        if PrevStage::parameterMayFlowThrough(node, apa, config)
+        then (
+          summaryCtx = TParamNodeSome(node.asNode()) and argAp = apSome(ap)
+        ) else (
+          summaryCtx = TParamNodeNone() and argAp = apNone()
+        )
       )
       or
       // flow out of a callable
-      fwdFlowOutNotFromArg(node, state, cc, argAp, ap, config)
+      fwdFlowOutNotFromArg(node, state, cc, summaryCtx, argAp, ap, config)
       or
-      exists(DataFlowCall call, Ap argAp0 |
-        fwdFlowOutFromArg(call, node, state, argAp0, ap, config) and
-        fwdFlowIsEntered(call, cc, argAp, argAp0, config)
+      // flow through a callable
+      exists(DataFlowCall call, ParamNode summaryCtx0, Ap argAp0 |
+        fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, config) and
+        fwdFlowIsEntered(call, cc, summaryCtx, argAp, summaryCtx0, argAp0, config)
       )
     }
 
     pragma[nomagic]
     private predicate fwdFlowStore(
-      NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc, ApOption argAp,
-      Configuration config
+      NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc,
+      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
     ) {
       exists(DataFlowType contentType |
-        fwdFlow(node1, state, cc, argAp, ap1, config) and
+        fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, config) and
         PrevStage::storeStepCand(node1, unbindApa(getApprox(ap1)), tc, node2, contentType, config) and
         typecheckStore(ap1, contentType)
       )
@@ -1366,7 +1397,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowConsCand(Ap cons, Content c, Ap tail, Configuration config) {
       exists(TypedContent tc |
-        fwdFlowStore(_, tail, tc, _, _, _, _, config) and
+        fwdFlowStore(_, tail, tc, _, _, _, _, _, config) and
         tc.getContent() = c and
         cons = apCons(tc, tail)
       )
@@ -1374,21 +1405,21 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowRead(
-      Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc, ApOption argAp,
-      Configuration config
+      Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc,
+      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
     ) {
-      fwdFlow(node1, state, cc, argAp, ap, config) and
+      fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, c, node2, config) and
       getHeadContent(ap) = c
     }
 
     pragma[nomagic]
     private predicate fwdFlowIn(
-      DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, Cc innercc, ApOption argAp,
-      Ap ap, Configuration config
+      DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, Cc innercc,
+      ParamNodeOption summaryCtx, ApOption argAp, Ap ap, Configuration config
     ) {
       exists(ArgNodeEx arg, boolean allowsFieldFlow |
-        fwdFlow(arg, state, outercc, argAp, ap, config) and
+        fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, config) and
         flowIntoCall(call, arg, p, allowsFieldFlow, config) and
         innercc = getCallContextCall(call, p.getEnclosingCallable(), outercc) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
@@ -1397,14 +1428,15 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowOutNotFromArg(
-      NodeEx out, FlowState state, Cc ccOut, ApOption argAp, Ap ap, Configuration config
+      NodeEx out, FlowState state, Cc ccOut, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      Configuration config
     ) {
       exists(
         DataFlowCall call, RetNodeEx ret, boolean allowsFieldFlow, CcNoCall innercc,
         DataFlowCallable inner
       |
-        fwdFlow(ret, state, innercc, argAp, ap, config) and
-        flowOutOfCall(call, ret, out, allowsFieldFlow, config) and
+        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, config) and
+        flowOutOfCall(call, ret, _, out, allowsFieldFlow, config) and
         inner = ret.getEnclosingCallable() and
         ccOut = getCallContextReturn(inner, call, innercc) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
@@ -1413,12 +1445,14 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowOutFromArg(
-      DataFlowCall call, NodeEx out, FlowState state, Ap argAp, Ap ap, Configuration config
+      DataFlowCall call, NodeEx out, FlowState state, ParamNode summaryCtx, Ap argAp, Ap ap,
+      Configuration config
     ) {
-      exists(RetNodeEx ret, boolean allowsFieldFlow, CcCall ccc |
-        fwdFlow(ret, state, ccc, apSome(argAp), ap, config) and
-        flowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, config) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
+      exists(RetNodeEx ret, ReturnKindExt kind, boolean allowsFieldFlow, CcCall ccc |
+        fwdFlow(ret, state, ccc, TParamNodeSome(summaryCtx), apSome(argAp), ap, config) and
+        flowThroughOutOfCall(call, ccc, ret, kind, out, allowsFieldFlow, config) and
+        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
+        parameterFlowThroughAllowed(summaryCtx, kind)
       )
     }
 
@@ -1428,11 +1462,13 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate fwdFlowIsEntered(
-      DataFlowCall call, Cc cc, ApOption argAp, Ap ap, Configuration config
+      DataFlowCall call, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, ParamNode p, Ap ap,
+      Configuration config
     ) {
-      exists(ParamNodeEx p |
-        fwdFlowIn(call, p, _, cc, _, argAp, ap, config) and
-        PrevStage::parameterMayFlowThrough(p, _, unbindApa(getApprox(ap)), config)
+      exists(ParamNodeEx param |
+        fwdFlowIn(call, param, _, cc, _, summaryCtx, argAp, ap, config) and
+        PrevStage::parameterMayFlowThrough(param, unbindApa(getApprox(ap)), config) and
+        p = param.asNode()
       )
     }
 
@@ -1440,146 +1476,149 @@ private module MkStage<StageSig PrevStage> {
     private predicate storeStepFwd(
       NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, Ap ap2, Configuration config
     ) {
-      fwdFlowStore(node1, ap1, tc, node2, _, _, _, config) and
+      fwdFlowStore(node1, ap1, tc, node2, _, _, _, _, config) and
       ap2 = apCons(tc, ap1) and
-      fwdFlowRead(ap2, tc.getContent(), _, _, _, _, _, config)
+      fwdFlowRead(ap2, tc.getContent(), _, _, _, _, _, _, config)
     }
 
     private predicate readStepFwd(
       NodeEx n1, Ap ap1, Content c, NodeEx n2, Ap ap2, Configuration config
     ) {
-      fwdFlowRead(ap1, c, n1, n2, _, _, _, config) and
+      fwdFlowRead(ap1, c, n1, n2, _, _, _, _, config) and
       fwdFlowConsCand(ap1, c, ap2, config)
     }
 
     pragma[nomagic]
-    private predicate callMayFlowThroughFwd(DataFlowCall call, Configuration config) {
-      exists(Ap argAp0, NodeEx out, FlowState state, Cc cc, ApOption argAp, Ap ap |
-        fwdFlow(out, state, pragma[only_bind_into](cc), pragma[only_bind_into](argAp), ap,
-          pragma[only_bind_into](config)) and
-        fwdFlowOutFromArg(call, out, state, argAp0, ap, config) and
-        fwdFlowIsEntered(pragma[only_bind_into](call), pragma[only_bind_into](cc),
-          pragma[only_bind_into](argAp), pragma[only_bind_into](argAp0),
-          pragma[only_bind_into](config))
-      )
+    private predicate returnFlowsThrough(
+      RetNodeEx ret, ReturnPosition pos, FlowState state, CcCall ccc, ParamNode p, Ap argAp, Ap ap,
+      Configuration config
+    ) {
+      fwdFlow(ret, state, ccc, TParamNodeSome(p), apSome(argAp), ap, config) and
+      pos = ret.getReturnPosition() and
+      parameterFlowThroughAllowed(p, pos.getKind())
     }
 
     pragma[nomagic]
     private predicate flowThroughIntoCall(
       DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
     ) {
-      flowIntoCall(call, arg, p, allowsFieldFlow, config) and
-      fwdFlow(arg, _, _, _, _, pragma[only_bind_into](config)) and
-      PrevStage::parameterMayFlowThrough(p, _, _, pragma[only_bind_into](config)) and
-      callMayFlowThroughFwd(call, pragma[only_bind_into](config))
-    }
-
-    pragma[nomagic]
-    private predicate returnNodeMayFlowThrough(
-      RetNodeEx ret, FlowState state, Ap ap, Configuration config
-    ) {
-      fwdFlow(ret, state, any(CcCall ccc), apSome(_), ap, config)
+      flowIntoCall(call, pragma[only_bind_into](arg), pragma[only_bind_into](p), allowsFieldFlow,
+        pragma[only_bind_into](config)) and
+      fwdFlow(arg, _, _, _, _, _, pragma[only_bind_into](config)) and
+      returnFlowsThrough(_, _, _, _, p.asNode(), _, _, pragma[only_bind_into](config))
     }
 
     /**
      * Holds if `node` with access path `ap` is part of a path from a source to a
      * sink in the configuration `config`.
      *
-     * The Boolean `toReturn` records whether the node must be returned from the
-     * enclosing callable in order to reach a sink, and if so, `returnAp` records
-     * the access path of the returned value.
+     * The parameter `returnCtx` records whether (and how) the node must be returned
+     * from the enclosing callable in order to reach a sink, and if so, `returnAp`
+     * records the access path of the returned value.
      */
     pragma[nomagic]
     additional predicate revFlow(
-      NodeEx node, FlowState state, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
+      NodeEx node, FlowState state, ReturnCtx returnCtx, ApOption returnAp, Ap ap,
+      Configuration config
     ) {
-      revFlow0(node, state, toReturn, returnAp, ap, config) and
-      fwdFlow(node, state, _, _, ap, config)
+      revFlow0(node, state, returnCtx, returnAp, ap, config) and
+      fwdFlow(node, state, _, _, _, ap, config)
     }
 
     pragma[nomagic]
     private predicate revFlow0(
-      NodeEx node, FlowState state, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
+      NodeEx node, FlowState state, ReturnCtx returnCtx, ApOption returnAp, Ap ap,
+      Configuration config
     ) {
-      fwdFlow(node, state, _, _, ap, config) and
+      fwdFlow(node, state, _, _, _, ap, config) and
       sinkNode(node, state, config) and
-      (if hasSinkCallCtx(config) then toReturn = true else toReturn = false) and
+      (
+        if hasSinkCallCtx(config)
+        then returnCtx = TReturnCtxNoFlowThrough()
+        else returnCtx = TReturnCtxNone()
+      ) and
       returnAp = apNone() and
       ap instanceof ApNil
       or
       exists(NodeEx mid, FlowState state0 |
         localStep(node, state, mid, state0, true, _, config, _) and
-        revFlow(mid, state0, toReturn, returnAp, ap, config)
+        revFlow(mid, state0, returnCtx, returnAp, ap, config)
       )
       or
       exists(NodeEx mid, FlowState state0, ApNil nil |
-        fwdFlow(node, pragma[only_bind_into](state), _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(node, pragma[only_bind_into](state), _, _, _, ap, pragma[only_bind_into](config)) and
         localStep(node, pragma[only_bind_into](state), mid, state0, false, _, config, _) and
-        revFlow(mid, state0, toReturn, returnAp, nil, pragma[only_bind_into](config)) and
+        revFlow(mid, state0, returnCtx, returnAp, nil, pragma[only_bind_into](config)) and
         ap instanceof ApNil
       )
       or
       exists(NodeEx mid |
         jumpStep(node, mid, config) and
         revFlow(mid, state, _, _, ap, config) and
-        toReturn = false and
+        returnCtx = TReturnCtxNone() and
         returnAp = apNone()
       )
       or
       exists(NodeEx mid, ApNil nil |
-        fwdFlow(node, _, _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(node, _, _, _, _, ap, pragma[only_bind_into](config)) and
         additionalJumpStep(node, mid, config) and
         revFlow(pragma[only_bind_into](mid), state, _, _, nil, pragma[only_bind_into](config)) and
-        toReturn = false and
+        returnCtx = TReturnCtxNone() and
         returnAp = apNone() and
         ap instanceof ApNil
       )
       or
       exists(NodeEx mid, FlowState state0, ApNil nil |
-        fwdFlow(node, _, _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(node, _, _, _, _, ap, pragma[only_bind_into](config)) and
         additionalJumpStateStep(node, state, mid, state0, config) and
         revFlow(pragma[only_bind_into](mid), pragma[only_bind_into](state0), _, _, nil,
           pragma[only_bind_into](config)) and
-        toReturn = false and
+        returnCtx = TReturnCtxNone() and
         returnAp = apNone() and
         ap instanceof ApNil
       )
       or
       // store
       exists(Ap ap0, Content c |
-        revFlowStore(ap0, c, ap, node, state, _, _, toReturn, returnAp, config) and
+        revFlowStore(ap0, c, ap, node, state, _, _, returnCtx, returnAp, config) and
         revFlowConsCand(ap0, c, ap, config)
       )
       or
       // read
       exists(NodeEx mid, Ap ap0 |
-        revFlow(mid, state, toReturn, returnAp, ap0, config) and
+        revFlow(mid, state, returnCtx, returnAp, ap0, config) and
         readStepFwd(node, ap, _, mid, ap0, config)
       )
       or
       // flow into a callable
       revFlowInNotToReturn(node, state, returnAp, ap, config) and
-      toReturn = false
+      returnCtx = TReturnCtxNone()
       or
-      exists(DataFlowCall call, Ap returnAp0 |
-        revFlowInToReturn(call, node, state, returnAp0, ap, config) and
-        revFlowIsReturned(call, toReturn, returnAp, returnAp0, config)
+      // flow through a callable
+      exists(DataFlowCall call, ReturnPosition returnPos0, Ap returnAp0 |
+        revFlowInToReturn(call, node, state, returnPos0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnPos0, returnAp0, config)
       )
       or
       // flow out of a callable
-      revFlowOut(_, node, state, _, _, ap, config) and
-      toReturn = true and
-      if returnNodeMayFlowThrough(node, state, ap, config)
-      then returnAp = apSome(ap)
-      else returnAp = apNone()
+      exists(ReturnPosition pos |
+        revFlowOut(_, node, pos, state, _, _, ap, config) and
+        if returnFlowsThrough(node, pos, state, _, _, _, ap, config)
+        then (
+          returnCtx = TReturnCtxMaybeFlowThrough(pos) and
+          returnAp = apSome(ap)
+        ) else (
+          returnCtx = TReturnCtxNoFlowThrough() and returnAp = apNone()
+        )
+      )
     }
 
     pragma[nomagic]
     private predicate revFlowStore(
       Ap ap0, Content c, Ap ap, NodeEx node, FlowState state, TypedContent tc, NodeEx mid,
-      boolean toReturn, ApOption returnAp, Configuration config
+      ReturnCtx returnCtx, ApOption returnAp, Configuration config
     ) {
-      revFlow(mid, state, toReturn, returnAp, ap0, config) and
+      revFlow(mid, state, returnCtx, returnAp, ap0, config) and
       storeStepFwd(node, ap, tc, mid, ap0, config) and
       tc.getContent() = c
     }
@@ -1599,12 +1638,12 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate revFlowOut(
-      DataFlowCall call, RetNodeEx ret, FlowState state, boolean toReturn, ApOption returnAp, Ap ap,
-      Configuration config
+      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, FlowState state, ReturnCtx returnCtx,
+      ApOption returnAp, Ap ap, Configuration config
     ) {
       exists(NodeEx out, boolean allowsFieldFlow |
-        revFlow(out, state, toReturn, returnAp, ap, config) and
-        flowOutOfCall(call, ret, out, allowsFieldFlow, config) and
+        revFlow(out, state, returnCtx, returnAp, ap, config) and
+        flowOutOfCall(call, ret, pos, out, allowsFieldFlow, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
@@ -1614,7 +1653,7 @@ private module MkStage<StageSig PrevStage> {
       ArgNodeEx arg, FlowState state, ApOption returnAp, Ap ap, Configuration config
     ) {
       exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(p, state, false, returnAp, ap, config) and
+        revFlow(p, state, TReturnCtxNone(), returnAp, ap, config) and
         flowIntoCall(_, arg, p, allowsFieldFlow, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
@@ -1622,12 +1661,14 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate revFlowInToReturn(
-      DataFlowCall call, ArgNodeEx arg, FlowState state, Ap returnAp, Ap ap, Configuration config
+      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnPosition returnPos, Ap returnAp,
+      Ap ap, Configuration config
     ) {
       exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(p, state, true, apSome(returnAp), ap, config) and
+        revFlow(p, state, TReturnCtxMaybeFlowThrough(returnPos), apSome(returnAp), ap, config) and
         flowThroughIntoCall(call, arg, p, allowsFieldFlow, config) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
+        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
+        parameterFlowThroughAllowed(p.asNode(), returnPos.getKind())
       )
     }
 
@@ -1638,11 +1679,12 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate revFlowIsReturned(
-      DataFlowCall call, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
+      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnPosition pos, Ap ap,
+      Configuration config
     ) {
       exists(RetNodeEx ret, FlowState state, CcCall ccc |
-        revFlowOut(call, ret, state, toReturn, returnAp, ap, config) and
-        fwdFlow(ret, state, ccc, apSome(_), ap, config) and
+        revFlowOut(call, ret, pos, state, returnCtx, returnAp, ap, config) and
+        returnFlowsThrough(ret, pos, state, ccc, _, _, ap, config) and
         matchesCall(ccc, call)
       )
     }
@@ -1713,40 +1755,39 @@ private module MkStage<StageSig PrevStage> {
       validAp(ap, config)
     }
 
-    pragma[noinline]
-    private predicate parameterFlow(
-      ParamNodeEx p, Ap ap, Ap ap0, DataFlowCallable c, Configuration config
+    pragma[nomagic]
+    private predicate parameterFlowsThroughRev(
+      ParamNodeEx p, Ap ap, ReturnPosition returnPos, Configuration config
     ) {
-      revFlow(p, _, true, apSome(ap0), ap, config) and
-      c = p.getEnclosingCallable()
+      revFlow(p, _, TReturnCtxMaybeFlowThrough(returnPos), apSome(_), ap, config) and
+      parameterFlowThroughAllowed(p.asNode(), returnPos.getKind())
     }
 
-    predicate parameterMayFlowThrough(ParamNodeEx p, DataFlowCallable c, Ap ap, Configuration config) {
-      exists(RetNodeEx ret, FlowState state, Ap ap0, ReturnKindExt kind, ParameterPosition pos |
-        parameterFlow(p, ap, ap0, c, config) and
-        c = ret.getEnclosingCallable() and
-        revFlow(pragma[only_bind_into](ret), pragma[only_bind_into](state), true, apSome(_),
-          pragma[only_bind_into](ap0), pragma[only_bind_into](config)) and
-        fwdFlow(ret, state, any(CcCall ccc), apSome(ap), ap0, config) and
-        kind = ret.getKind() and
-        p.getPosition() = pos and
-        // we don't expect a parameter to return stored in itself, unless explicitly allowed
-        (
-          not kind.(ParamUpdateReturnKind).getPosition() = pos
-          or
-          p.allowParameterReturnInSelf()
-        )
+    pragma[nomagic]
+    predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
+      exists(RetNodeEx ret, ReturnPosition pos |
+        returnFlowsThrough(ret, pos, _, _, p.asNode(), ap, _, config) and
+        parameterFlowsThroughRev(p, ap, pos, config)
+      )
+    }
+
+    pragma[nomagic]
+    predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config) {
+      exists(ParamNodeEx p, Ap ap |
+        returnFlowsThrough(ret, pos, _, _, p.asNode(), ap, _, config) and
+        parameterFlowsThroughRev(p, ap, pos, config)
       )
     }
 
     pragma[nomagic]
     predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
       exists(
-        Ap returnAp0, ArgNodeEx arg, FlowState state, boolean toReturn, ApOption returnAp, Ap ap
+        ReturnPosition returnPos0, Ap returnAp0, ArgNodeEx arg, FlowState state,
+        ReturnCtx returnCtx, ApOption returnAp, Ap ap
       |
-        revFlow(arg, state, toReturn, returnAp, ap, config) and
-        revFlowInToReturn(call, arg, state, returnAp0, ap, config) and
-        revFlowIsReturned(call, toReturn, returnAp, returnAp0, config)
+        revFlow(arg, state, returnCtx, returnAp, ap, config) and
+        revFlowInToReturn(call, arg, state, returnPos0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnPos0, returnAp0, config)
       )
     }
 
@@ -1754,13 +1795,13 @@ private module MkStage<StageSig PrevStage> {
       boolean fwd, int nodes, int fields, int conscand, int states, int tuples, Configuration config
     ) {
       fwd = true and
-      nodes = count(NodeEx node | fwdFlow(node, _, _, _, _, config)) and
+      nodes = count(NodeEx node | fwdFlow(node, _, _, _, _, _, config)) and
       fields = count(TypedContent f0 | fwdConsCand(f0, _, config)) and
       conscand = count(TypedContent f0, Ap ap | fwdConsCand(f0, ap, config)) and
-      states = count(FlowState state | fwdFlow(_, state, _, _, _, config)) and
+      states = count(FlowState state | fwdFlow(_, state, _, _, _, _, config)) and
       tuples =
-        count(NodeEx n, FlowState state, Cc cc, ApOption argAp, Ap ap |
-          fwdFlow(n, state, cc, argAp, ap, config)
+        count(NodeEx n, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap |
+          fwdFlow(n, state, cc, summaryCtx, argAp, ap, config)
         )
       or
       fwd = false and
@@ -1769,8 +1810,8 @@ private module MkStage<StageSig PrevStage> {
       conscand = count(TypedContent f0, Ap ap | consCand(f0, ap, config)) and
       states = count(FlowState state | revFlow(_, state, _, _, _, config)) and
       tuples =
-        count(NodeEx n, FlowState state, boolean b, ApOption retAp, Ap ap |
-          revFlow(n, state, b, retAp, ap, config)
+        count(NodeEx n, FlowState state, ReturnCtx returnCtx, ApOption retAp, Ap ap |
+          revFlow(n, state, returnCtx, retAp, ap, config)
         )
     }
     /* End: Stage logic. */
@@ -1915,7 +1956,7 @@ private module Stage2Param implements MkStage<Stage1>::StageParam {
     exists(lcc)
   }
 
-  predicate flowOutOfCall = flowOutOfCallNodeCand1/5;
+  predicate flowOutOfCall = flowOutOfCallNodeCand1/6;
 
   predicate flowIntoCall = flowIntoCallNodeCand1/5;
 
@@ -1951,9 +1992,10 @@ private module Stage2 implements StageSig {
 
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand2(
-  DataFlowCall call, RetNodeEx node1, NodeEx node2, boolean allowsFieldFlow, Configuration config
+  DataFlowCall call, RetNodeEx node1, ReturnPosition pos, NodeEx node2, boolean allowsFieldFlow,
+  Configuration config
 ) {
-  flowOutOfCallNodeCand1(call, node1, node2, allowsFieldFlow, config) and
+  flowOutOfCallNodeCand1(call, node1, pos, node2, allowsFieldFlow, config) and
   Stage2::revFlow(node2, pragma[only_bind_into](config)) and
   Stage2::revFlowAlias(node1, pragma[only_bind_into](config))
 }
@@ -2021,8 +2063,8 @@ private module LocalFlowBigStep {
     exists(NodeEx next | Stage2::revFlow(next, state, config) |
       jumpStep(node, next, config) or
       additionalJumpStep(node, next, config) or
-      flowIntoCallNodeCand1(_, node, next, config) or
-      flowOutOfCallNodeCand1(_, node, next, config) or
+      flowIntoCallNodeCand2(_, node, next, _, config) or
+      flowOutOfCallNodeCand2(_, node, _, next, _, config) or
       Stage2::storeStepCand(node, _, _, next, _, config) or
       Stage2::readStepCand(node, _, next, config)
     )
@@ -2163,7 +2205,7 @@ private module Stage3Param implements MkStage<Stage2>::StageParam {
     localFlowBigStep(node1, state1, node2, state2, preservesValue, ap, config, _) and exists(lcc)
   }
 
-  predicate flowOutOfCall = flowOutOfCallNodeCand2/5;
+  predicate flowOutOfCall = flowOutOfCallNodeCand2/6;
 
   predicate flowIntoCall = flowIntoCallNodeCand2/5;
 
@@ -2233,8 +2275,9 @@ private predicate flowCandSummaryCtx(
   NodeEx node, FlowState state, AccessPathFront argApf, Configuration config
 ) {
   exists(AccessPathFront apf |
-    Stage3::revFlow(node, state, true, _, apf, config) and
-    Stage3::fwdFlow(node, state, any(Stage3::CcCall ccc), TAccessPathFrontSome(argApf), apf, config)
+    Stage3::revFlow(node, state, TReturnCtxMaybeFlowThrough(_), _, apf, config) and
+    Stage3::fwdFlow(node, state, any(Stage3::CcCall ccc), _, TAccessPathFrontSome(argApf), apf,
+      config)
   )
 }
 
@@ -2468,10 +2511,11 @@ private module Stage4Param implements MkStage<Stage3>::StageParam {
 
   pragma[nomagic]
   predicate flowOutOfCall(
-    DataFlowCall call, RetNodeEx node1, NodeEx node2, boolean allowsFieldFlow, Configuration config
+    DataFlowCall call, RetNodeEx node1, ReturnPosition pos, NodeEx node2, boolean allowsFieldFlow,
+    Configuration config
   ) {
     exists(FlowState state |
-      flowOutOfCallNodeCand2(call, node1, node2, allowsFieldFlow, config) and
+      flowOutOfCallNodeCand2(call, node1, pos, node2, allowsFieldFlow, config) and
       PrevStage::revFlow(node2, pragma[only_bind_into](state), _, pragma[only_bind_into](config)) and
       PrevStage::revFlowAlias(node1, pragma[only_bind_into](state), _,
         pragma[only_bind_into](config))
@@ -2508,13 +2552,13 @@ private Configuration unbindConf(Configuration conf) {
 
 pragma[nomagic]
 private predicate nodeMayUseSummary0(
-  NodeEx n, DataFlowCallable c, FlowState state, AccessPathApprox apa, Configuration config
+  NodeEx n, ParamNodeEx p, FlowState state, AccessPathApprox apa, Configuration config
 ) {
   exists(AccessPathApprox apa0 |
-    Stage4::parameterMayFlowThrough(_, c, _, _) and
-    Stage4::revFlow(n, state, true, _, apa0, config) and
-    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TAccessPathApproxSome(apa), apa0, config) and
-    n.getEnclosingCallable() = c
+    Stage4::parameterMayFlowThrough(p, _, _) and
+    Stage4::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
+    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TParamNodeSome(p.asNode()),
+      TAccessPathApproxSome(apa), apa0, config)
   )
 }
 
@@ -2522,9 +2566,9 @@ pragma[nomagic]
 private predicate nodeMayUseSummary(
   NodeEx n, FlowState state, AccessPathApprox apa, Configuration config
 ) {
-  exists(DataFlowCallable c |
-    Stage4::parameterMayFlowThrough(_, c, apa, config) and
-    nodeMayUseSummary0(n, c, state, apa, config)
+  exists(ParamNodeEx p |
+    Stage4::parameterMayFlowThrough(p, apa, config) and
+    nodeMayUseSummary0(n, p, state, apa, config)
   )
 }
 
@@ -2532,7 +2576,7 @@ private newtype TSummaryCtx =
   TSummaryCtxNone() or
   TSummaryCtxSome(ParamNodeEx p, FlowState state, AccessPath ap) {
     exists(Configuration config |
-      Stage4::parameterMayFlowThrough(p, _, ap.getApprox(), config) and
+      Stage4::parameterMayFlowThrough(p, ap.getApprox(), config) and
       Stage4::revFlow(p, state, _, config)
     )
   }
@@ -3453,17 +3497,11 @@ private predicate paramFlowsThrough(
   ReturnKindExt kind, FlowState state, CallContextCall cc, SummaryCtxSome sc, AccessPath ap,
   AccessPathApprox apa, Configuration config
 ) {
-  exists(PathNodeMid mid, RetNodeEx ret, ParameterPosition pos |
+  exists(PathNodeMid mid, RetNodeEx ret |
     pathNode(mid, ret, state, cc, sc, ap, config, _) and
     kind = ret.getKind() and
     apa = ap.getApprox() and
-    pos = sc.getParameterPos() and
-    // we don't expect a parameter to return stored in itself, unless explicitly allowed
-    (
-      not kind.(ParamUpdateReturnKind).getPosition() = pos
-      or
-      sc.getParamNode().allowParameterReturnInSelf()
-    )
+    parameterFlowThroughAllowed(sc.getParamNode().asNode(), kind)
   )
 }
 
diff --git a/cpp/ql/lib/semmle/code/cpp/ir/dataflow/internal/DataFlowImplCommon.qll b/cpp/ql/lib/semmle/code/cpp/ir/dataflow/internal/DataFlowImplCommon.qll
index ae9c6f3f12e..621ed34f9d0 100644
--- a/cpp/ql/lib/semmle/code/cpp/ir/dataflow/internal/DataFlowImplCommon.qll
+++ b/cpp/ql/lib/semmle/code/cpp/ir/dataflow/internal/DataFlowImplCommon.qll
@@ -915,6 +915,17 @@ private module Cached {
     TDataFlowCallNone() or
     TDataFlowCallSome(DataFlowCall call)
 
+  cached
+  newtype TParamNodeOption =
+    TParamNodeNone() or
+    TParamNodeSome(ParamNode p)
+
+  cached
+  newtype TReturnCtx =
+    TReturnCtxNone() or
+    TReturnCtxNoFlowThrough() or
+    TReturnCtxMaybeFlowThrough(ReturnPosition pos)
+
   cached
   newtype TTypedContent = MkTypedContent(Content c, DataFlowType t) { store(_, c, _, _, t) }
 
@@ -1304,6 +1315,44 @@ class DataFlowCallOption extends TDataFlowCallOption {
   }
 }
 
+/** An optional `ParamNode`. */
+class ParamNodeOption extends TParamNodeOption {
+  string toString() {
+    this = TParamNodeNone() and
+    result = "(none)"
+    or
+    exists(ParamNode p |
+      this = TParamNodeSome(p) and
+      result = p.toString()
+    )
+  }
+}
+
+/**
+ * A return context used to calculate flow summaries in reverse flow.
+ *
+ * The possible values are:
+ *
+ * - `TReturnCtxNone()`: no return flow.
+ * - `TReturnCtxNoFlowThrough()`: return flow, but flow through is not possible.
+ * - `TReturnCtxMaybeFlowThrough(ReturnPosition pos)`: return flow, of kind `pos`, and
+ *    flow through may be possible.
+ */
+class ReturnCtx extends TReturnCtx {
+  string toString() {
+    this = TReturnCtxNone() and
+    result = "(none)"
+    or
+    this = TReturnCtxNoFlowThrough() and
+    result = "(no flow through)"
+    or
+    exists(ReturnPosition pos |
+      this = TReturnCtxMaybeFlowThrough(pos) and
+      result = pos.toString()
+    )
+  }
+}
+
 /** A `Content` tagged with the type of a containing object. */
 class TypedContent extends MkTypedContent {
   private Content c;
diff --git a/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImpl.qll b/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImpl.qll
index 3c41b1876dc..a52ad110662 100644
--- a/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImpl.qll
+++ b/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImpl.qll
@@ -319,8 +319,6 @@ private class ParamNodeEx extends NodeEx {
   }
 
   ParameterPosition getPosition() { this.isParameterOf(_, result) }
-
-  predicate allowParameterReturnInSelf() { allowParameterReturnInSelfCached(this.asNode()) }
 }
 
 private class RetNodeEx extends NodeEx {
@@ -608,6 +606,21 @@ private predicate hasSinkCallCtx(Configuration config) {
   )
 }
 
+/**
+ * Holds if flow from `p` to a return node of kind `kind` is allowed.
+ *
+ * We don't expect a parameter to return stored in itself, unless
+ * explicitly allowed
+ */
+bindingset[p, kind]
+private predicate parameterFlowThroughAllowed(ParamNode p, ReturnKindExt kind) {
+  exists(ParameterPosition pos | p.isParameterOf(_, pos) |
+    not kind.(ParamUpdateReturnKind).getPosition() = pos
+    or
+    allowParameterReturnInSelfCached(p)
+  )
+}
+
 private module Stage1 implements StageSig {
   class Ap = Unit;
 
@@ -981,21 +994,22 @@ private module Stage1 implements StageSig {
    * candidate for the origin of a summary.
    */
   pragma[nomagic]
-  predicate parameterMayFlowThrough(ParamNodeEx p, DataFlowCallable c, Ap ap, Configuration config) {
-    exists(ReturnKindExt kind |
+  predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
+    exists(DataFlowCallable c, ReturnKindExt kind |
       throughFlowNodeCand(p, config) and
       returnFlowCallableNodeCand(c, kind, config) and
       p.getEnclosingCallable() = c and
       exists(ap) and
-      // we don't expect a parameter to return stored in itself, unless explicitly allowed
-      (
-        not kind.(ParamUpdateReturnKind).getPosition() = p.getPosition()
-        or
-        p.allowParameterReturnInSelf()
-      )
+      parameterFlowThroughAllowed(p.asNode(), kind)
     )
   }
 
+  pragma[nomagic]
+  predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config) {
+    throughFlowNodeCand(ret, config) and
+    pos = ret.getReturnPosition()
+  }
+
   pragma[nomagic]
   predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
     exists(ArgNodeEx arg, boolean toReturn |
@@ -1052,9 +1066,10 @@ private predicate viableReturnPosOutNodeCand1(
  */
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand1(
-  DataFlowCall call, RetNodeEx ret, NodeEx out, Configuration config
+  DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, Configuration config
 ) {
-  viableReturnPosOutNodeCand1(call, ret.getReturnPosition(), out, config) and
+  viableReturnPosOutNodeCand1(call, pos, out, config) and
+  pos = ret.getReturnPosition() and
   Stage1::revFlow(ret, config) and
   not outBarrier(ret, config) and
   not inBarrier(out, config)
@@ -1090,7 +1105,7 @@ private predicate flowIntoCallNodeCand1(
 private int branch(NodeEx n1, Configuration conf) {
   result =
     strictcount(NodeEx n |
-      flowOutOfCallNodeCand1(_, n1, n, conf) or flowIntoCallNodeCand1(_, n1, n, conf)
+      flowOutOfCallNodeCand1(_, n1, _, n, conf) or flowIntoCallNodeCand1(_, n1, n, conf)
     )
 }
 
@@ -1102,7 +1117,7 @@ private int branch(NodeEx n1, Configuration conf) {
 private int join(NodeEx n2, Configuration conf) {
   result =
     strictcount(NodeEx n |
-      flowOutOfCallNodeCand1(_, n, n2, conf) or flowIntoCallNodeCand1(_, n, n2, conf)
+      flowOutOfCallNodeCand1(_, n, _, n2, conf) or flowIntoCallNodeCand1(_, n, n2, conf)
     )
 }
 
@@ -1115,12 +1130,13 @@ private int join(NodeEx n2, Configuration conf) {
  */
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand1(
-  DataFlowCall call, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow, Configuration config
+  DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
+  Configuration config
 ) {
-  flowOutOfCallNodeCand1(call, ret, out, config) and
+  flowOutOfCallNodeCand1(call, ret, pos, out, pragma[only_bind_into](config)) and
   exists(int b, int j |
-    b = branch(ret, config) and
-    j = join(out, config) and
+    b = branch(ret, pragma[only_bind_into](config)) and
+    j = join(out, pragma[only_bind_into](config)) and
     if b.minimum(j) <= config.fieldFlowBranchLimit()
     then allowsFieldFlow = true
     else allowsFieldFlow = false
@@ -1156,7 +1172,9 @@ private signature module StageSig {
 
   predicate callMayFlowThroughRev(DataFlowCall call, Configuration config);
 
-  predicate parameterMayFlowThrough(ParamNodeEx p, DataFlowCallable c, Ap ap, Configuration config);
+  predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config);
+
+  predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config);
 
   predicate storeStepCand(
     NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, DataFlowType contentType,
@@ -1222,7 +1240,8 @@ private module MkStage<StageSig PrevStage> {
     );
 
     predicate flowOutOfCall(
-      DataFlowCall call, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow, Configuration config
+      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
+      Configuration config
     );
 
     predicate flowIntoCall(
@@ -1247,14 +1266,16 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate flowThroughOutOfCall(
-      DataFlowCall call, CcCall ccc, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow,
-      Configuration config
+      DataFlowCall call, CcCall ccc, RetNodeEx ret, ReturnKindExt kind, NodeEx out,
+      boolean allowsFieldFlow, Configuration config
     ) {
-      flowOutOfCall(call, ret, out, allowsFieldFlow, pragma[only_bind_into](config)) and
-      PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
-      PrevStage::parameterMayFlowThrough(_, ret.getEnclosingCallable(), _,
-        pragma[only_bind_into](config)) and
-      matchesCall(ccc, call)
+      exists(ReturnPosition pos |
+        flowOutOfCall(call, ret, pos, out, allowsFieldFlow, pragma[only_bind_into](config)) and
+        kind = pos.getKind() and
+        PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
+        PrevStage::returnMayFlowThrough(ret, pos, pragma[only_bind_into](config)) and
+        matchesCall(ccc, call)
+      )
     }
 
     /**
@@ -1262,29 +1283,32 @@ private module MkStage<StageSig PrevStage> {
      * configuration `config`.
      *
      * The call context `cc` records whether the node is reached through an
-     * argument in a call, and if so, `argAp` records the access path of that
-     * argument.
+     * argument in a call, and if so, `summaryCtx` and `argAp` record the
+     * corresponding parameter and access path of that argument, respectively.
      */
     pragma[nomagic]
     additional predicate fwdFlow(
-      NodeEx node, FlowState state, Cc cc, ApOption argAp, Ap ap, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      Configuration config
     ) {
-      fwdFlow0(node, state, cc, argAp, ap, config) and
+      fwdFlow0(node, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::revFlow(node, state, unbindApa(getApprox(ap)), config) and
       filter(node, state, ap, config)
     }
 
     pragma[nomagic]
     private predicate fwdFlow0(
-      NodeEx node, FlowState state, Cc cc, ApOption argAp, Ap ap, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      Configuration config
     ) {
       sourceNode(node, state, config) and
       (if hasSourceCallCtx(config) then cc = ccSomeCall() else cc = ccNone()) and
       argAp = apNone() and
+      summaryCtx = TParamNodeNone() and
       ap = getApNil(node)
       or
       exists(NodeEx mid, FlowState state0, Ap ap0, LocalCc localCc |
-        fwdFlow(mid, state0, cc, argAp, ap0, config) and
+        fwdFlow(mid, state0, cc, summaryCtx, argAp, ap0, config) and
         localCc = getLocalCc(mid, cc)
       |
         localStep(mid, state0, node, state, true, _, config, localCc) and
@@ -1295,65 +1319,72 @@ private module MkStage<StageSig PrevStage> {
       )
       or
       exists(NodeEx mid |
-        fwdFlow(mid, pragma[only_bind_into](state), _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, pragma[only_bind_into](config)) and
         jumpStep(mid, node, config) and
         cc = ccNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone()
       )
       or
       exists(NodeEx mid, ApNil nil |
-        fwdFlow(mid, state, _, _, nil, pragma[only_bind_into](config)) and
+        fwdFlow(mid, state, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStep(mid, node, config) and
         cc = ccNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone() and
         ap = getApNil(node)
       )
       or
       exists(NodeEx mid, FlowState state0, ApNil nil |
-        fwdFlow(mid, state0, _, _, nil, pragma[only_bind_into](config)) and
+        fwdFlow(mid, state0, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStateStep(mid, state0, node, state, config) and
         cc = ccNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone() and
         ap = getApNil(node)
       )
       or
       // store
       exists(TypedContent tc, Ap ap0 |
-        fwdFlowStore(_, ap0, tc, node, state, cc, argAp, config) and
+        fwdFlowStore(_, ap0, tc, node, state, cc, summaryCtx, argAp, config) and
         ap = apCons(tc, ap0)
       )
       or
       // read
       exists(Ap ap0, Content c |
-        fwdFlowRead(ap0, c, _, node, state, cc, argAp, config) and
+        fwdFlowRead(ap0, c, _, node, state, cc, summaryCtx, argAp, config) and
         fwdFlowConsCand(ap0, c, ap, config)
       )
       or
       // flow into a callable
       exists(ApApprox apa |
-        fwdFlowIn(_, node, state, _, cc, _, ap, config) and
+        fwdFlowIn(_, node, state, _, cc, _, _, ap, config) and
         apa = getApprox(ap) and
-        if PrevStage::parameterMayFlowThrough(node, _, apa, config)
-        then argAp = apSome(ap)
-        else argAp = apNone()
+        if PrevStage::parameterMayFlowThrough(node, apa, config)
+        then (
+          summaryCtx = TParamNodeSome(node.asNode()) and argAp = apSome(ap)
+        ) else (
+          summaryCtx = TParamNodeNone() and argAp = apNone()
+        )
       )
       or
       // flow out of a callable
-      fwdFlowOutNotFromArg(node, state, cc, argAp, ap, config)
+      fwdFlowOutNotFromArg(node, state, cc, summaryCtx, argAp, ap, config)
       or
-      exists(DataFlowCall call, Ap argAp0 |
-        fwdFlowOutFromArg(call, node, state, argAp0, ap, config) and
-        fwdFlowIsEntered(call, cc, argAp, argAp0, config)
+      // flow through a callable
+      exists(DataFlowCall call, ParamNode summaryCtx0, Ap argAp0 |
+        fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, config) and
+        fwdFlowIsEntered(call, cc, summaryCtx, argAp, summaryCtx0, argAp0, config)
       )
     }
 
     pragma[nomagic]
     private predicate fwdFlowStore(
-      NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc, ApOption argAp,
-      Configuration config
+      NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc,
+      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
     ) {
       exists(DataFlowType contentType |
-        fwdFlow(node1, state, cc, argAp, ap1, config) and
+        fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, config) and
         PrevStage::storeStepCand(node1, unbindApa(getApprox(ap1)), tc, node2, contentType, config) and
         typecheckStore(ap1, contentType)
       )
@@ -1366,7 +1397,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowConsCand(Ap cons, Content c, Ap tail, Configuration config) {
       exists(TypedContent tc |
-        fwdFlowStore(_, tail, tc, _, _, _, _, config) and
+        fwdFlowStore(_, tail, tc, _, _, _, _, _, config) and
         tc.getContent() = c and
         cons = apCons(tc, tail)
       )
@@ -1374,21 +1405,21 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowRead(
-      Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc, ApOption argAp,
-      Configuration config
+      Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc,
+      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
     ) {
-      fwdFlow(node1, state, cc, argAp, ap, config) and
+      fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, c, node2, config) and
       getHeadContent(ap) = c
     }
 
     pragma[nomagic]
     private predicate fwdFlowIn(
-      DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, Cc innercc, ApOption argAp,
-      Ap ap, Configuration config
+      DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, Cc innercc,
+      ParamNodeOption summaryCtx, ApOption argAp, Ap ap, Configuration config
     ) {
       exists(ArgNodeEx arg, boolean allowsFieldFlow |
-        fwdFlow(arg, state, outercc, argAp, ap, config) and
+        fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, config) and
         flowIntoCall(call, arg, p, allowsFieldFlow, config) and
         innercc = getCallContextCall(call, p.getEnclosingCallable(), outercc) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
@@ -1397,14 +1428,15 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowOutNotFromArg(
-      NodeEx out, FlowState state, Cc ccOut, ApOption argAp, Ap ap, Configuration config
+      NodeEx out, FlowState state, Cc ccOut, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      Configuration config
     ) {
       exists(
         DataFlowCall call, RetNodeEx ret, boolean allowsFieldFlow, CcNoCall innercc,
         DataFlowCallable inner
       |
-        fwdFlow(ret, state, innercc, argAp, ap, config) and
-        flowOutOfCall(call, ret, out, allowsFieldFlow, config) and
+        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, config) and
+        flowOutOfCall(call, ret, _, out, allowsFieldFlow, config) and
         inner = ret.getEnclosingCallable() and
         ccOut = getCallContextReturn(inner, call, innercc) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
@@ -1413,12 +1445,14 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowOutFromArg(
-      DataFlowCall call, NodeEx out, FlowState state, Ap argAp, Ap ap, Configuration config
+      DataFlowCall call, NodeEx out, FlowState state, ParamNode summaryCtx, Ap argAp, Ap ap,
+      Configuration config
     ) {
-      exists(RetNodeEx ret, boolean allowsFieldFlow, CcCall ccc |
-        fwdFlow(ret, state, ccc, apSome(argAp), ap, config) and
-        flowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, config) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
+      exists(RetNodeEx ret, ReturnKindExt kind, boolean allowsFieldFlow, CcCall ccc |
+        fwdFlow(ret, state, ccc, TParamNodeSome(summaryCtx), apSome(argAp), ap, config) and
+        flowThroughOutOfCall(call, ccc, ret, kind, out, allowsFieldFlow, config) and
+        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
+        parameterFlowThroughAllowed(summaryCtx, kind)
       )
     }
 
@@ -1428,11 +1462,13 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate fwdFlowIsEntered(
-      DataFlowCall call, Cc cc, ApOption argAp, Ap ap, Configuration config
+      DataFlowCall call, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, ParamNode p, Ap ap,
+      Configuration config
     ) {
-      exists(ParamNodeEx p |
-        fwdFlowIn(call, p, _, cc, _, argAp, ap, config) and
-        PrevStage::parameterMayFlowThrough(p, _, unbindApa(getApprox(ap)), config)
+      exists(ParamNodeEx param |
+        fwdFlowIn(call, param, _, cc, _, summaryCtx, argAp, ap, config) and
+        PrevStage::parameterMayFlowThrough(param, unbindApa(getApprox(ap)), config) and
+        p = param.asNode()
       )
     }
 
@@ -1440,146 +1476,149 @@ private module MkStage<StageSig PrevStage> {
     private predicate storeStepFwd(
       NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, Ap ap2, Configuration config
     ) {
-      fwdFlowStore(node1, ap1, tc, node2, _, _, _, config) and
+      fwdFlowStore(node1, ap1, tc, node2, _, _, _, _, config) and
       ap2 = apCons(tc, ap1) and
-      fwdFlowRead(ap2, tc.getContent(), _, _, _, _, _, config)
+      fwdFlowRead(ap2, tc.getContent(), _, _, _, _, _, _, config)
     }
 
     private predicate readStepFwd(
       NodeEx n1, Ap ap1, Content c, NodeEx n2, Ap ap2, Configuration config
     ) {
-      fwdFlowRead(ap1, c, n1, n2, _, _, _, config) and
+      fwdFlowRead(ap1, c, n1, n2, _, _, _, _, config) and
       fwdFlowConsCand(ap1, c, ap2, config)
     }
 
     pragma[nomagic]
-    private predicate callMayFlowThroughFwd(DataFlowCall call, Configuration config) {
-      exists(Ap argAp0, NodeEx out, FlowState state, Cc cc, ApOption argAp, Ap ap |
-        fwdFlow(out, state, pragma[only_bind_into](cc), pragma[only_bind_into](argAp), ap,
-          pragma[only_bind_into](config)) and
-        fwdFlowOutFromArg(call, out, state, argAp0, ap, config) and
-        fwdFlowIsEntered(pragma[only_bind_into](call), pragma[only_bind_into](cc),
-          pragma[only_bind_into](argAp), pragma[only_bind_into](argAp0),
-          pragma[only_bind_into](config))
-      )
+    private predicate returnFlowsThrough(
+      RetNodeEx ret, ReturnPosition pos, FlowState state, CcCall ccc, ParamNode p, Ap argAp, Ap ap,
+      Configuration config
+    ) {
+      fwdFlow(ret, state, ccc, TParamNodeSome(p), apSome(argAp), ap, config) and
+      pos = ret.getReturnPosition() and
+      parameterFlowThroughAllowed(p, pos.getKind())
     }
 
     pragma[nomagic]
     private predicate flowThroughIntoCall(
       DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
     ) {
-      flowIntoCall(call, arg, p, allowsFieldFlow, config) and
-      fwdFlow(arg, _, _, _, _, pragma[only_bind_into](config)) and
-      PrevStage::parameterMayFlowThrough(p, _, _, pragma[only_bind_into](config)) and
-      callMayFlowThroughFwd(call, pragma[only_bind_into](config))
-    }
-
-    pragma[nomagic]
-    private predicate returnNodeMayFlowThrough(
-      RetNodeEx ret, FlowState state, Ap ap, Configuration config
-    ) {
-      fwdFlow(ret, state, any(CcCall ccc), apSome(_), ap, config)
+      flowIntoCall(call, pragma[only_bind_into](arg), pragma[only_bind_into](p), allowsFieldFlow,
+        pragma[only_bind_into](config)) and
+      fwdFlow(arg, _, _, _, _, _, pragma[only_bind_into](config)) and
+      returnFlowsThrough(_, _, _, _, p.asNode(), _, _, pragma[only_bind_into](config))
     }
 
     /**
      * Holds if `node` with access path `ap` is part of a path from a source to a
      * sink in the configuration `config`.
      *
-     * The Boolean `toReturn` records whether the node must be returned from the
-     * enclosing callable in order to reach a sink, and if so, `returnAp` records
-     * the access path of the returned value.
+     * The parameter `returnCtx` records whether (and how) the node must be returned
+     * from the enclosing callable in order to reach a sink, and if so, `returnAp`
+     * records the access path of the returned value.
      */
     pragma[nomagic]
     additional predicate revFlow(
-      NodeEx node, FlowState state, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
+      NodeEx node, FlowState state, ReturnCtx returnCtx, ApOption returnAp, Ap ap,
+      Configuration config
     ) {
-      revFlow0(node, state, toReturn, returnAp, ap, config) and
-      fwdFlow(node, state, _, _, ap, config)
+      revFlow0(node, state, returnCtx, returnAp, ap, config) and
+      fwdFlow(node, state, _, _, _, ap, config)
     }
 
     pragma[nomagic]
     private predicate revFlow0(
-      NodeEx node, FlowState state, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
+      NodeEx node, FlowState state, ReturnCtx returnCtx, ApOption returnAp, Ap ap,
+      Configuration config
     ) {
-      fwdFlow(node, state, _, _, ap, config) and
+      fwdFlow(node, state, _, _, _, ap, config) and
       sinkNode(node, state, config) and
-      (if hasSinkCallCtx(config) then toReturn = true else toReturn = false) and
+      (
+        if hasSinkCallCtx(config)
+        then returnCtx = TReturnCtxNoFlowThrough()
+        else returnCtx = TReturnCtxNone()
+      ) and
       returnAp = apNone() and
       ap instanceof ApNil
       or
       exists(NodeEx mid, FlowState state0 |
         localStep(node, state, mid, state0, true, _, config, _) and
-        revFlow(mid, state0, toReturn, returnAp, ap, config)
+        revFlow(mid, state0, returnCtx, returnAp, ap, config)
       )
       or
       exists(NodeEx mid, FlowState state0, ApNil nil |
-        fwdFlow(node, pragma[only_bind_into](state), _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(node, pragma[only_bind_into](state), _, _, _, ap, pragma[only_bind_into](config)) and
         localStep(node, pragma[only_bind_into](state), mid, state0, false, _, config, _) and
-        revFlow(mid, state0, toReturn, returnAp, nil, pragma[only_bind_into](config)) and
+        revFlow(mid, state0, returnCtx, returnAp, nil, pragma[only_bind_into](config)) and
         ap instanceof ApNil
       )
       or
       exists(NodeEx mid |
         jumpStep(node, mid, config) and
         revFlow(mid, state, _, _, ap, config) and
-        toReturn = false and
+        returnCtx = TReturnCtxNone() and
         returnAp = apNone()
       )
       or
       exists(NodeEx mid, ApNil nil |
-        fwdFlow(node, _, _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(node, _, _, _, _, ap, pragma[only_bind_into](config)) and
         additionalJumpStep(node, mid, config) and
         revFlow(pragma[only_bind_into](mid), state, _, _, nil, pragma[only_bind_into](config)) and
-        toReturn = false and
+        returnCtx = TReturnCtxNone() and
         returnAp = apNone() and
         ap instanceof ApNil
       )
       or
       exists(NodeEx mid, FlowState state0, ApNil nil |
-        fwdFlow(node, _, _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(node, _, _, _, _, ap, pragma[only_bind_into](config)) and
         additionalJumpStateStep(node, state, mid, state0, config) and
         revFlow(pragma[only_bind_into](mid), pragma[only_bind_into](state0), _, _, nil,
           pragma[only_bind_into](config)) and
-        toReturn = false and
+        returnCtx = TReturnCtxNone() and
         returnAp = apNone() and
         ap instanceof ApNil
       )
       or
       // store
       exists(Ap ap0, Content c |
-        revFlowStore(ap0, c, ap, node, state, _, _, toReturn, returnAp, config) and
+        revFlowStore(ap0, c, ap, node, state, _, _, returnCtx, returnAp, config) and
         revFlowConsCand(ap0, c, ap, config)
       )
       or
       // read
       exists(NodeEx mid, Ap ap0 |
-        revFlow(mid, state, toReturn, returnAp, ap0, config) and
+        revFlow(mid, state, returnCtx, returnAp, ap0, config) and
         readStepFwd(node, ap, _, mid, ap0, config)
       )
       or
       // flow into a callable
       revFlowInNotToReturn(node, state, returnAp, ap, config) and
-      toReturn = false
+      returnCtx = TReturnCtxNone()
       or
-      exists(DataFlowCall call, Ap returnAp0 |
-        revFlowInToReturn(call, node, state, returnAp0, ap, config) and
-        revFlowIsReturned(call, toReturn, returnAp, returnAp0, config)
+      // flow through a callable
+      exists(DataFlowCall call, ReturnPosition returnPos0, Ap returnAp0 |
+        revFlowInToReturn(call, node, state, returnPos0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnPos0, returnAp0, config)
       )
       or
       // flow out of a callable
-      revFlowOut(_, node, state, _, _, ap, config) and
-      toReturn = true and
-      if returnNodeMayFlowThrough(node, state, ap, config)
-      then returnAp = apSome(ap)
-      else returnAp = apNone()
+      exists(ReturnPosition pos |
+        revFlowOut(_, node, pos, state, _, _, ap, config) and
+        if returnFlowsThrough(node, pos, state, _, _, _, ap, config)
+        then (
+          returnCtx = TReturnCtxMaybeFlowThrough(pos) and
+          returnAp = apSome(ap)
+        ) else (
+          returnCtx = TReturnCtxNoFlowThrough() and returnAp = apNone()
+        )
+      )
     }
 
     pragma[nomagic]
     private predicate revFlowStore(
       Ap ap0, Content c, Ap ap, NodeEx node, FlowState state, TypedContent tc, NodeEx mid,
-      boolean toReturn, ApOption returnAp, Configuration config
+      ReturnCtx returnCtx, ApOption returnAp, Configuration config
     ) {
-      revFlow(mid, state, toReturn, returnAp, ap0, config) and
+      revFlow(mid, state, returnCtx, returnAp, ap0, config) and
       storeStepFwd(node, ap, tc, mid, ap0, config) and
       tc.getContent() = c
     }
@@ -1599,12 +1638,12 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate revFlowOut(
-      DataFlowCall call, RetNodeEx ret, FlowState state, boolean toReturn, ApOption returnAp, Ap ap,
-      Configuration config
+      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, FlowState state, ReturnCtx returnCtx,
+      ApOption returnAp, Ap ap, Configuration config
     ) {
       exists(NodeEx out, boolean allowsFieldFlow |
-        revFlow(out, state, toReturn, returnAp, ap, config) and
-        flowOutOfCall(call, ret, out, allowsFieldFlow, config) and
+        revFlow(out, state, returnCtx, returnAp, ap, config) and
+        flowOutOfCall(call, ret, pos, out, allowsFieldFlow, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
@@ -1614,7 +1653,7 @@ private module MkStage<StageSig PrevStage> {
       ArgNodeEx arg, FlowState state, ApOption returnAp, Ap ap, Configuration config
     ) {
       exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(p, state, false, returnAp, ap, config) and
+        revFlow(p, state, TReturnCtxNone(), returnAp, ap, config) and
         flowIntoCall(_, arg, p, allowsFieldFlow, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
@@ -1622,12 +1661,14 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate revFlowInToReturn(
-      DataFlowCall call, ArgNodeEx arg, FlowState state, Ap returnAp, Ap ap, Configuration config
+      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnPosition returnPos, Ap returnAp,
+      Ap ap, Configuration config
     ) {
       exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(p, state, true, apSome(returnAp), ap, config) and
+        revFlow(p, state, TReturnCtxMaybeFlowThrough(returnPos), apSome(returnAp), ap, config) and
         flowThroughIntoCall(call, arg, p, allowsFieldFlow, config) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
+        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
+        parameterFlowThroughAllowed(p.asNode(), returnPos.getKind())
       )
     }
 
@@ -1638,11 +1679,12 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate revFlowIsReturned(
-      DataFlowCall call, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
+      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnPosition pos, Ap ap,
+      Configuration config
     ) {
       exists(RetNodeEx ret, FlowState state, CcCall ccc |
-        revFlowOut(call, ret, state, toReturn, returnAp, ap, config) and
-        fwdFlow(ret, state, ccc, apSome(_), ap, config) and
+        revFlowOut(call, ret, pos, state, returnCtx, returnAp, ap, config) and
+        returnFlowsThrough(ret, pos, state, ccc, _, _, ap, config) and
         matchesCall(ccc, call)
       )
     }
@@ -1713,40 +1755,39 @@ private module MkStage<StageSig PrevStage> {
       validAp(ap, config)
     }
 
-    pragma[noinline]
-    private predicate parameterFlow(
-      ParamNodeEx p, Ap ap, Ap ap0, DataFlowCallable c, Configuration config
+    pragma[nomagic]
+    private predicate parameterFlowsThroughRev(
+      ParamNodeEx p, Ap ap, ReturnPosition returnPos, Configuration config
     ) {
-      revFlow(p, _, true, apSome(ap0), ap, config) and
-      c = p.getEnclosingCallable()
+      revFlow(p, _, TReturnCtxMaybeFlowThrough(returnPos), apSome(_), ap, config) and
+      parameterFlowThroughAllowed(p.asNode(), returnPos.getKind())
     }
 
-    predicate parameterMayFlowThrough(ParamNodeEx p, DataFlowCallable c, Ap ap, Configuration config) {
-      exists(RetNodeEx ret, FlowState state, Ap ap0, ReturnKindExt kind, ParameterPosition pos |
-        parameterFlow(p, ap, ap0, c, config) and
-        c = ret.getEnclosingCallable() and
-        revFlow(pragma[only_bind_into](ret), pragma[only_bind_into](state), true, apSome(_),
-          pragma[only_bind_into](ap0), pragma[only_bind_into](config)) and
-        fwdFlow(ret, state, any(CcCall ccc), apSome(ap), ap0, config) and
-        kind = ret.getKind() and
-        p.getPosition() = pos and
-        // we don't expect a parameter to return stored in itself, unless explicitly allowed
-        (
-          not kind.(ParamUpdateReturnKind).getPosition() = pos
-          or
-          p.allowParameterReturnInSelf()
-        )
+    pragma[nomagic]
+    predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
+      exists(RetNodeEx ret, ReturnPosition pos |
+        returnFlowsThrough(ret, pos, _, _, p.asNode(), ap, _, config) and
+        parameterFlowsThroughRev(p, ap, pos, config)
+      )
+    }
+
+    pragma[nomagic]
+    predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config) {
+      exists(ParamNodeEx p, Ap ap |
+        returnFlowsThrough(ret, pos, _, _, p.asNode(), ap, _, config) and
+        parameterFlowsThroughRev(p, ap, pos, config)
       )
     }
 
     pragma[nomagic]
     predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
       exists(
-        Ap returnAp0, ArgNodeEx arg, FlowState state, boolean toReturn, ApOption returnAp, Ap ap
+        ReturnPosition returnPos0, Ap returnAp0, ArgNodeEx arg, FlowState state,
+        ReturnCtx returnCtx, ApOption returnAp, Ap ap
       |
-        revFlow(arg, state, toReturn, returnAp, ap, config) and
-        revFlowInToReturn(call, arg, state, returnAp0, ap, config) and
-        revFlowIsReturned(call, toReturn, returnAp, returnAp0, config)
+        revFlow(arg, state, returnCtx, returnAp, ap, config) and
+        revFlowInToReturn(call, arg, state, returnPos0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnPos0, returnAp0, config)
       )
     }
 
@@ -1754,13 +1795,13 @@ private module MkStage<StageSig PrevStage> {
       boolean fwd, int nodes, int fields, int conscand, int states, int tuples, Configuration config
     ) {
       fwd = true and
-      nodes = count(NodeEx node | fwdFlow(node, _, _, _, _, config)) and
+      nodes = count(NodeEx node | fwdFlow(node, _, _, _, _, _, config)) and
       fields = count(TypedContent f0 | fwdConsCand(f0, _, config)) and
       conscand = count(TypedContent f0, Ap ap | fwdConsCand(f0, ap, config)) and
-      states = count(FlowState state | fwdFlow(_, state, _, _, _, config)) and
+      states = count(FlowState state | fwdFlow(_, state, _, _, _, _, config)) and
       tuples =
-        count(NodeEx n, FlowState state, Cc cc, ApOption argAp, Ap ap |
-          fwdFlow(n, state, cc, argAp, ap, config)
+        count(NodeEx n, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap |
+          fwdFlow(n, state, cc, summaryCtx, argAp, ap, config)
         )
       or
       fwd = false and
@@ -1769,8 +1810,8 @@ private module MkStage<StageSig PrevStage> {
       conscand = count(TypedContent f0, Ap ap | consCand(f0, ap, config)) and
       states = count(FlowState state | revFlow(_, state, _, _, _, config)) and
       tuples =
-        count(NodeEx n, FlowState state, boolean b, ApOption retAp, Ap ap |
-          revFlow(n, state, b, retAp, ap, config)
+        count(NodeEx n, FlowState state, ReturnCtx returnCtx, ApOption retAp, Ap ap |
+          revFlow(n, state, returnCtx, retAp, ap, config)
         )
     }
     /* End: Stage logic. */
@@ -1915,7 +1956,7 @@ private module Stage2Param implements MkStage<Stage1>::StageParam {
     exists(lcc)
   }
 
-  predicate flowOutOfCall = flowOutOfCallNodeCand1/5;
+  predicate flowOutOfCall = flowOutOfCallNodeCand1/6;
 
   predicate flowIntoCall = flowIntoCallNodeCand1/5;
 
@@ -1951,9 +1992,10 @@ private module Stage2 implements StageSig {
 
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand2(
-  DataFlowCall call, RetNodeEx node1, NodeEx node2, boolean allowsFieldFlow, Configuration config
+  DataFlowCall call, RetNodeEx node1, ReturnPosition pos, NodeEx node2, boolean allowsFieldFlow,
+  Configuration config
 ) {
-  flowOutOfCallNodeCand1(call, node1, node2, allowsFieldFlow, config) and
+  flowOutOfCallNodeCand1(call, node1, pos, node2, allowsFieldFlow, config) and
   Stage2::revFlow(node2, pragma[only_bind_into](config)) and
   Stage2::revFlowAlias(node1, pragma[only_bind_into](config))
 }
@@ -2021,8 +2063,8 @@ private module LocalFlowBigStep {
     exists(NodeEx next | Stage2::revFlow(next, state, config) |
       jumpStep(node, next, config) or
       additionalJumpStep(node, next, config) or
-      flowIntoCallNodeCand1(_, node, next, config) or
-      flowOutOfCallNodeCand1(_, node, next, config) or
+      flowIntoCallNodeCand2(_, node, next, _, config) or
+      flowOutOfCallNodeCand2(_, node, _, next, _, config) or
       Stage2::storeStepCand(node, _, _, next, _, config) or
       Stage2::readStepCand(node, _, next, config)
     )
@@ -2163,7 +2205,7 @@ private module Stage3Param implements MkStage<Stage2>::StageParam {
     localFlowBigStep(node1, state1, node2, state2, preservesValue, ap, config, _) and exists(lcc)
   }
 
-  predicate flowOutOfCall = flowOutOfCallNodeCand2/5;
+  predicate flowOutOfCall = flowOutOfCallNodeCand2/6;
 
   predicate flowIntoCall = flowIntoCallNodeCand2/5;
 
@@ -2233,8 +2275,9 @@ private predicate flowCandSummaryCtx(
   NodeEx node, FlowState state, AccessPathFront argApf, Configuration config
 ) {
   exists(AccessPathFront apf |
-    Stage3::revFlow(node, state, true, _, apf, config) and
-    Stage3::fwdFlow(node, state, any(Stage3::CcCall ccc), TAccessPathFrontSome(argApf), apf, config)
+    Stage3::revFlow(node, state, TReturnCtxMaybeFlowThrough(_), _, apf, config) and
+    Stage3::fwdFlow(node, state, any(Stage3::CcCall ccc), _, TAccessPathFrontSome(argApf), apf,
+      config)
   )
 }
 
@@ -2468,10 +2511,11 @@ private module Stage4Param implements MkStage<Stage3>::StageParam {
 
   pragma[nomagic]
   predicate flowOutOfCall(
-    DataFlowCall call, RetNodeEx node1, NodeEx node2, boolean allowsFieldFlow, Configuration config
+    DataFlowCall call, RetNodeEx node1, ReturnPosition pos, NodeEx node2, boolean allowsFieldFlow,
+    Configuration config
   ) {
     exists(FlowState state |
-      flowOutOfCallNodeCand2(call, node1, node2, allowsFieldFlow, config) and
+      flowOutOfCallNodeCand2(call, node1, pos, node2, allowsFieldFlow, config) and
       PrevStage::revFlow(node2, pragma[only_bind_into](state), _, pragma[only_bind_into](config)) and
       PrevStage::revFlowAlias(node1, pragma[only_bind_into](state), _,
         pragma[only_bind_into](config))
@@ -2508,13 +2552,13 @@ private Configuration unbindConf(Configuration conf) {
 
 pragma[nomagic]
 private predicate nodeMayUseSummary0(
-  NodeEx n, DataFlowCallable c, FlowState state, AccessPathApprox apa, Configuration config
+  NodeEx n, ParamNodeEx p, FlowState state, AccessPathApprox apa, Configuration config
 ) {
   exists(AccessPathApprox apa0 |
-    Stage4::parameterMayFlowThrough(_, c, _, _) and
-    Stage4::revFlow(n, state, true, _, apa0, config) and
-    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TAccessPathApproxSome(apa), apa0, config) and
-    n.getEnclosingCallable() = c
+    Stage4::parameterMayFlowThrough(p, _, _) and
+    Stage4::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
+    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TParamNodeSome(p.asNode()),
+      TAccessPathApproxSome(apa), apa0, config)
   )
 }
 
@@ -2522,9 +2566,9 @@ pragma[nomagic]
 private predicate nodeMayUseSummary(
   NodeEx n, FlowState state, AccessPathApprox apa, Configuration config
 ) {
-  exists(DataFlowCallable c |
-    Stage4::parameterMayFlowThrough(_, c, apa, config) and
-    nodeMayUseSummary0(n, c, state, apa, config)
+  exists(ParamNodeEx p |
+    Stage4::parameterMayFlowThrough(p, apa, config) and
+    nodeMayUseSummary0(n, p, state, apa, config)
   )
 }
 
@@ -2532,7 +2576,7 @@ private newtype TSummaryCtx =
   TSummaryCtxNone() or
   TSummaryCtxSome(ParamNodeEx p, FlowState state, AccessPath ap) {
     exists(Configuration config |
-      Stage4::parameterMayFlowThrough(p, _, ap.getApprox(), config) and
+      Stage4::parameterMayFlowThrough(p, ap.getApprox(), config) and
       Stage4::revFlow(p, state, _, config)
     )
   }
@@ -3453,17 +3497,11 @@ private predicate paramFlowsThrough(
   ReturnKindExt kind, FlowState state, CallContextCall cc, SummaryCtxSome sc, AccessPath ap,
   AccessPathApprox apa, Configuration config
 ) {
-  exists(PathNodeMid mid, RetNodeEx ret, ParameterPosition pos |
+  exists(PathNodeMid mid, RetNodeEx ret |
     pathNode(mid, ret, state, cc, sc, ap, config, _) and
     kind = ret.getKind() and
     apa = ap.getApprox() and
-    pos = sc.getParameterPos() and
-    // we don't expect a parameter to return stored in itself, unless explicitly allowed
-    (
-      not kind.(ParamUpdateReturnKind).getPosition() = pos
-      or
-      sc.getParamNode().allowParameterReturnInSelf()
-    )
+    parameterFlowThroughAllowed(sc.getParamNode().asNode(), kind)
   )
 }
 
diff --git a/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImpl2.qll b/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImpl2.qll
index 3c41b1876dc..a52ad110662 100644
--- a/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImpl2.qll
+++ b/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImpl2.qll
@@ -319,8 +319,6 @@ private class ParamNodeEx extends NodeEx {
   }
 
   ParameterPosition getPosition() { this.isParameterOf(_, result) }
-
-  predicate allowParameterReturnInSelf() { allowParameterReturnInSelfCached(this.asNode()) }
 }
 
 private class RetNodeEx extends NodeEx {
@@ -608,6 +606,21 @@ private predicate hasSinkCallCtx(Configuration config) {
   )
 }
 
+/**
+ * Holds if flow from `p` to a return node of kind `kind` is allowed.
+ *
+ * We don't expect a parameter to return stored in itself, unless
+ * explicitly allowed
+ */
+bindingset[p, kind]
+private predicate parameterFlowThroughAllowed(ParamNode p, ReturnKindExt kind) {
+  exists(ParameterPosition pos | p.isParameterOf(_, pos) |
+    not kind.(ParamUpdateReturnKind).getPosition() = pos
+    or
+    allowParameterReturnInSelfCached(p)
+  )
+}
+
 private module Stage1 implements StageSig {
   class Ap = Unit;
 
@@ -981,21 +994,22 @@ private module Stage1 implements StageSig {
    * candidate for the origin of a summary.
    */
   pragma[nomagic]
-  predicate parameterMayFlowThrough(ParamNodeEx p, DataFlowCallable c, Ap ap, Configuration config) {
-    exists(ReturnKindExt kind |
+  predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
+    exists(DataFlowCallable c, ReturnKindExt kind |
       throughFlowNodeCand(p, config) and
       returnFlowCallableNodeCand(c, kind, config) and
       p.getEnclosingCallable() = c and
       exists(ap) and
-      // we don't expect a parameter to return stored in itself, unless explicitly allowed
-      (
-        not kind.(ParamUpdateReturnKind).getPosition() = p.getPosition()
-        or
-        p.allowParameterReturnInSelf()
-      )
+      parameterFlowThroughAllowed(p.asNode(), kind)
     )
   }
 
+  pragma[nomagic]
+  predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config) {
+    throughFlowNodeCand(ret, config) and
+    pos = ret.getReturnPosition()
+  }
+
   pragma[nomagic]
   predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
     exists(ArgNodeEx arg, boolean toReturn |
@@ -1052,9 +1066,10 @@ private predicate viableReturnPosOutNodeCand1(
  */
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand1(
-  DataFlowCall call, RetNodeEx ret, NodeEx out, Configuration config
+  DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, Configuration config
 ) {
-  viableReturnPosOutNodeCand1(call, ret.getReturnPosition(), out, config) and
+  viableReturnPosOutNodeCand1(call, pos, out, config) and
+  pos = ret.getReturnPosition() and
   Stage1::revFlow(ret, config) and
   not outBarrier(ret, config) and
   not inBarrier(out, config)
@@ -1090,7 +1105,7 @@ private predicate flowIntoCallNodeCand1(
 private int branch(NodeEx n1, Configuration conf) {
   result =
     strictcount(NodeEx n |
-      flowOutOfCallNodeCand1(_, n1, n, conf) or flowIntoCallNodeCand1(_, n1, n, conf)
+      flowOutOfCallNodeCand1(_, n1, _, n, conf) or flowIntoCallNodeCand1(_, n1, n, conf)
     )
 }
 
@@ -1102,7 +1117,7 @@ private int branch(NodeEx n1, Configuration conf) {
 private int join(NodeEx n2, Configuration conf) {
   result =
     strictcount(NodeEx n |
-      flowOutOfCallNodeCand1(_, n, n2, conf) or flowIntoCallNodeCand1(_, n, n2, conf)
+      flowOutOfCallNodeCand1(_, n, _, n2, conf) or flowIntoCallNodeCand1(_, n, n2, conf)
     )
 }
 
@@ -1115,12 +1130,13 @@ private int join(NodeEx n2, Configuration conf) {
  */
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand1(
-  DataFlowCall call, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow, Configuration config
+  DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
+  Configuration config
 ) {
-  flowOutOfCallNodeCand1(call, ret, out, config) and
+  flowOutOfCallNodeCand1(call, ret, pos, out, pragma[only_bind_into](config)) and
   exists(int b, int j |
-    b = branch(ret, config) and
-    j = join(out, config) and
+    b = branch(ret, pragma[only_bind_into](config)) and
+    j = join(out, pragma[only_bind_into](config)) and
     if b.minimum(j) <= config.fieldFlowBranchLimit()
     then allowsFieldFlow = true
     else allowsFieldFlow = false
@@ -1156,7 +1172,9 @@ private signature module StageSig {
 
   predicate callMayFlowThroughRev(DataFlowCall call, Configuration config);
 
-  predicate parameterMayFlowThrough(ParamNodeEx p, DataFlowCallable c, Ap ap, Configuration config);
+  predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config);
+
+  predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config);
 
   predicate storeStepCand(
     NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, DataFlowType contentType,
@@ -1222,7 +1240,8 @@ private module MkStage<StageSig PrevStage> {
     );
 
     predicate flowOutOfCall(
-      DataFlowCall call, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow, Configuration config
+      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
+      Configuration config
     );
 
     predicate flowIntoCall(
@@ -1247,14 +1266,16 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate flowThroughOutOfCall(
-      DataFlowCall call, CcCall ccc, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow,
-      Configuration config
+      DataFlowCall call, CcCall ccc, RetNodeEx ret, ReturnKindExt kind, NodeEx out,
+      boolean allowsFieldFlow, Configuration config
     ) {
-      flowOutOfCall(call, ret, out, allowsFieldFlow, pragma[only_bind_into](config)) and
-      PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
-      PrevStage::parameterMayFlowThrough(_, ret.getEnclosingCallable(), _,
-        pragma[only_bind_into](config)) and
-      matchesCall(ccc, call)
+      exists(ReturnPosition pos |
+        flowOutOfCall(call, ret, pos, out, allowsFieldFlow, pragma[only_bind_into](config)) and
+        kind = pos.getKind() and
+        PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
+        PrevStage::returnMayFlowThrough(ret, pos, pragma[only_bind_into](config)) and
+        matchesCall(ccc, call)
+      )
     }
 
     /**
@@ -1262,29 +1283,32 @@ private module MkStage<StageSig PrevStage> {
      * configuration `config`.
      *
      * The call context `cc` records whether the node is reached through an
-     * argument in a call, and if so, `argAp` records the access path of that
-     * argument.
+     * argument in a call, and if so, `summaryCtx` and `argAp` record the
+     * corresponding parameter and access path of that argument, respectively.
      */
     pragma[nomagic]
     additional predicate fwdFlow(
-      NodeEx node, FlowState state, Cc cc, ApOption argAp, Ap ap, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      Configuration config
     ) {
-      fwdFlow0(node, state, cc, argAp, ap, config) and
+      fwdFlow0(node, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::revFlow(node, state, unbindApa(getApprox(ap)), config) and
       filter(node, state, ap, config)
     }
 
     pragma[nomagic]
     private predicate fwdFlow0(
-      NodeEx node, FlowState state, Cc cc, ApOption argAp, Ap ap, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      Configuration config
     ) {
       sourceNode(node, state, config) and
       (if hasSourceCallCtx(config) then cc = ccSomeCall() else cc = ccNone()) and
       argAp = apNone() and
+      summaryCtx = TParamNodeNone() and
       ap = getApNil(node)
       or
       exists(NodeEx mid, FlowState state0, Ap ap0, LocalCc localCc |
-        fwdFlow(mid, state0, cc, argAp, ap0, config) and
+        fwdFlow(mid, state0, cc, summaryCtx, argAp, ap0, config) and
         localCc = getLocalCc(mid, cc)
       |
         localStep(mid, state0, node, state, true, _, config, localCc) and
@@ -1295,65 +1319,72 @@ private module MkStage<StageSig PrevStage> {
       )
       or
       exists(NodeEx mid |
-        fwdFlow(mid, pragma[only_bind_into](state), _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, pragma[only_bind_into](config)) and
         jumpStep(mid, node, config) and
         cc = ccNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone()
       )
       or
       exists(NodeEx mid, ApNil nil |
-        fwdFlow(mid, state, _, _, nil, pragma[only_bind_into](config)) and
+        fwdFlow(mid, state, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStep(mid, node, config) and
         cc = ccNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone() and
         ap = getApNil(node)
       )
       or
       exists(NodeEx mid, FlowState state0, ApNil nil |
-        fwdFlow(mid, state0, _, _, nil, pragma[only_bind_into](config)) and
+        fwdFlow(mid, state0, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStateStep(mid, state0, node, state, config) and
         cc = ccNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone() and
         ap = getApNil(node)
       )
       or
       // store
       exists(TypedContent tc, Ap ap0 |
-        fwdFlowStore(_, ap0, tc, node, state, cc, argAp, config) and
+        fwdFlowStore(_, ap0, tc, node, state, cc, summaryCtx, argAp, config) and
         ap = apCons(tc, ap0)
       )
       or
       // read
       exists(Ap ap0, Content c |
-        fwdFlowRead(ap0, c, _, node, state, cc, argAp, config) and
+        fwdFlowRead(ap0, c, _, node, state, cc, summaryCtx, argAp, config) and
         fwdFlowConsCand(ap0, c, ap, config)
       )
       or
       // flow into a callable
       exists(ApApprox apa |
-        fwdFlowIn(_, node, state, _, cc, _, ap, config) and
+        fwdFlowIn(_, node, state, _, cc, _, _, ap, config) and
         apa = getApprox(ap) and
-        if PrevStage::parameterMayFlowThrough(node, _, apa, config)
-        then argAp = apSome(ap)
-        else argAp = apNone()
+        if PrevStage::parameterMayFlowThrough(node, apa, config)
+        then (
+          summaryCtx = TParamNodeSome(node.asNode()) and argAp = apSome(ap)
+        ) else (
+          summaryCtx = TParamNodeNone() and argAp = apNone()
+        )
       )
       or
       // flow out of a callable
-      fwdFlowOutNotFromArg(node, state, cc, argAp, ap, config)
+      fwdFlowOutNotFromArg(node, state, cc, summaryCtx, argAp, ap, config)
       or
-      exists(DataFlowCall call, Ap argAp0 |
-        fwdFlowOutFromArg(call, node, state, argAp0, ap, config) and
-        fwdFlowIsEntered(call, cc, argAp, argAp0, config)
+      // flow through a callable
+      exists(DataFlowCall call, ParamNode summaryCtx0, Ap argAp0 |
+        fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, config) and
+        fwdFlowIsEntered(call, cc, summaryCtx, argAp, summaryCtx0, argAp0, config)
       )
     }
 
     pragma[nomagic]
     private predicate fwdFlowStore(
-      NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc, ApOption argAp,
-      Configuration config
+      NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc,
+      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
     ) {
       exists(DataFlowType contentType |
-        fwdFlow(node1, state, cc, argAp, ap1, config) and
+        fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, config) and
         PrevStage::storeStepCand(node1, unbindApa(getApprox(ap1)), tc, node2, contentType, config) and
         typecheckStore(ap1, contentType)
       )
@@ -1366,7 +1397,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowConsCand(Ap cons, Content c, Ap tail, Configuration config) {
       exists(TypedContent tc |
-        fwdFlowStore(_, tail, tc, _, _, _, _, config) and
+        fwdFlowStore(_, tail, tc, _, _, _, _, _, config) and
         tc.getContent() = c and
         cons = apCons(tc, tail)
       )
@@ -1374,21 +1405,21 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowRead(
-      Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc, ApOption argAp,
-      Configuration config
+      Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc,
+      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
     ) {
-      fwdFlow(node1, state, cc, argAp, ap, config) and
+      fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, c, node2, config) and
       getHeadContent(ap) = c
     }
 
     pragma[nomagic]
     private predicate fwdFlowIn(
-      DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, Cc innercc, ApOption argAp,
-      Ap ap, Configuration config
+      DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, Cc innercc,
+      ParamNodeOption summaryCtx, ApOption argAp, Ap ap, Configuration config
     ) {
       exists(ArgNodeEx arg, boolean allowsFieldFlow |
-        fwdFlow(arg, state, outercc, argAp, ap, config) and
+        fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, config) and
         flowIntoCall(call, arg, p, allowsFieldFlow, config) and
         innercc = getCallContextCall(call, p.getEnclosingCallable(), outercc) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
@@ -1397,14 +1428,15 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowOutNotFromArg(
-      NodeEx out, FlowState state, Cc ccOut, ApOption argAp, Ap ap, Configuration config
+      NodeEx out, FlowState state, Cc ccOut, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      Configuration config
     ) {
       exists(
         DataFlowCall call, RetNodeEx ret, boolean allowsFieldFlow, CcNoCall innercc,
         DataFlowCallable inner
       |
-        fwdFlow(ret, state, innercc, argAp, ap, config) and
-        flowOutOfCall(call, ret, out, allowsFieldFlow, config) and
+        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, config) and
+        flowOutOfCall(call, ret, _, out, allowsFieldFlow, config) and
         inner = ret.getEnclosingCallable() and
         ccOut = getCallContextReturn(inner, call, innercc) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
@@ -1413,12 +1445,14 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowOutFromArg(
-      DataFlowCall call, NodeEx out, FlowState state, Ap argAp, Ap ap, Configuration config
+      DataFlowCall call, NodeEx out, FlowState state, ParamNode summaryCtx, Ap argAp, Ap ap,
+      Configuration config
     ) {
-      exists(RetNodeEx ret, boolean allowsFieldFlow, CcCall ccc |
-        fwdFlow(ret, state, ccc, apSome(argAp), ap, config) and
-        flowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, config) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
+      exists(RetNodeEx ret, ReturnKindExt kind, boolean allowsFieldFlow, CcCall ccc |
+        fwdFlow(ret, state, ccc, TParamNodeSome(summaryCtx), apSome(argAp), ap, config) and
+        flowThroughOutOfCall(call, ccc, ret, kind, out, allowsFieldFlow, config) and
+        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
+        parameterFlowThroughAllowed(summaryCtx, kind)
       )
     }
 
@@ -1428,11 +1462,13 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate fwdFlowIsEntered(
-      DataFlowCall call, Cc cc, ApOption argAp, Ap ap, Configuration config
+      DataFlowCall call, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, ParamNode p, Ap ap,
+      Configuration config
     ) {
-      exists(ParamNodeEx p |
-        fwdFlowIn(call, p, _, cc, _, argAp, ap, config) and
-        PrevStage::parameterMayFlowThrough(p, _, unbindApa(getApprox(ap)), config)
+      exists(ParamNodeEx param |
+        fwdFlowIn(call, param, _, cc, _, summaryCtx, argAp, ap, config) and
+        PrevStage::parameterMayFlowThrough(param, unbindApa(getApprox(ap)), config) and
+        p = param.asNode()
       )
     }
 
@@ -1440,146 +1476,149 @@ private module MkStage<StageSig PrevStage> {
     private predicate storeStepFwd(
       NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, Ap ap2, Configuration config
     ) {
-      fwdFlowStore(node1, ap1, tc, node2, _, _, _, config) and
+      fwdFlowStore(node1, ap1, tc, node2, _, _, _, _, config) and
       ap2 = apCons(tc, ap1) and
-      fwdFlowRead(ap2, tc.getContent(), _, _, _, _, _, config)
+      fwdFlowRead(ap2, tc.getContent(), _, _, _, _, _, _, config)
     }
 
     private predicate readStepFwd(
       NodeEx n1, Ap ap1, Content c, NodeEx n2, Ap ap2, Configuration config
     ) {
-      fwdFlowRead(ap1, c, n1, n2, _, _, _, config) and
+      fwdFlowRead(ap1, c, n1, n2, _, _, _, _, config) and
       fwdFlowConsCand(ap1, c, ap2, config)
     }
 
     pragma[nomagic]
-    private predicate callMayFlowThroughFwd(DataFlowCall call, Configuration config) {
-      exists(Ap argAp0, NodeEx out, FlowState state, Cc cc, ApOption argAp, Ap ap |
-        fwdFlow(out, state, pragma[only_bind_into](cc), pragma[only_bind_into](argAp), ap,
-          pragma[only_bind_into](config)) and
-        fwdFlowOutFromArg(call, out, state, argAp0, ap, config) and
-        fwdFlowIsEntered(pragma[only_bind_into](call), pragma[only_bind_into](cc),
-          pragma[only_bind_into](argAp), pragma[only_bind_into](argAp0),
-          pragma[only_bind_into](config))
-      )
+    private predicate returnFlowsThrough(
+      RetNodeEx ret, ReturnPosition pos, FlowState state, CcCall ccc, ParamNode p, Ap argAp, Ap ap,
+      Configuration config
+    ) {
+      fwdFlow(ret, state, ccc, TParamNodeSome(p), apSome(argAp), ap, config) and
+      pos = ret.getReturnPosition() and
+      parameterFlowThroughAllowed(p, pos.getKind())
     }
 
     pragma[nomagic]
     private predicate flowThroughIntoCall(
       DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
     ) {
-      flowIntoCall(call, arg, p, allowsFieldFlow, config) and
-      fwdFlow(arg, _, _, _, _, pragma[only_bind_into](config)) and
-      PrevStage::parameterMayFlowThrough(p, _, _, pragma[only_bind_into](config)) and
-      callMayFlowThroughFwd(call, pragma[only_bind_into](config))
-    }
-
-    pragma[nomagic]
-    private predicate returnNodeMayFlowThrough(
-      RetNodeEx ret, FlowState state, Ap ap, Configuration config
-    ) {
-      fwdFlow(ret, state, any(CcCall ccc), apSome(_), ap, config)
+      flowIntoCall(call, pragma[only_bind_into](arg), pragma[only_bind_into](p), allowsFieldFlow,
+        pragma[only_bind_into](config)) and
+      fwdFlow(arg, _, _, _, _, _, pragma[only_bind_into](config)) and
+      returnFlowsThrough(_, _, _, _, p.asNode(), _, _, pragma[only_bind_into](config))
     }
 
     /**
      * Holds if `node` with access path `ap` is part of a path from a source to a
      * sink in the configuration `config`.
      *
-     * The Boolean `toReturn` records whether the node must be returned from the
-     * enclosing callable in order to reach a sink, and if so, `returnAp` records
-     * the access path of the returned value.
+     * The parameter `returnCtx` records whether (and how) the node must be returned
+     * from the enclosing callable in order to reach a sink, and if so, `returnAp`
+     * records the access path of the returned value.
      */
     pragma[nomagic]
     additional predicate revFlow(
-      NodeEx node, FlowState state, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
+      NodeEx node, FlowState state, ReturnCtx returnCtx, ApOption returnAp, Ap ap,
+      Configuration config
     ) {
-      revFlow0(node, state, toReturn, returnAp, ap, config) and
-      fwdFlow(node, state, _, _, ap, config)
+      revFlow0(node, state, returnCtx, returnAp, ap, config) and
+      fwdFlow(node, state, _, _, _, ap, config)
     }
 
     pragma[nomagic]
     private predicate revFlow0(
-      NodeEx node, FlowState state, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
+      NodeEx node, FlowState state, ReturnCtx returnCtx, ApOption returnAp, Ap ap,
+      Configuration config
     ) {
-      fwdFlow(node, state, _, _, ap, config) and
+      fwdFlow(node, state, _, _, _, ap, config) and
       sinkNode(node, state, config) and
-      (if hasSinkCallCtx(config) then toReturn = true else toReturn = false) and
+      (
+        if hasSinkCallCtx(config)
+        then returnCtx = TReturnCtxNoFlowThrough()
+        else returnCtx = TReturnCtxNone()
+      ) and
       returnAp = apNone() and
       ap instanceof ApNil
       or
       exists(NodeEx mid, FlowState state0 |
         localStep(node, state, mid, state0, true, _, config, _) and
-        revFlow(mid, state0, toReturn, returnAp, ap, config)
+        revFlow(mid, state0, returnCtx, returnAp, ap, config)
       )
       or
       exists(NodeEx mid, FlowState state0, ApNil nil |
-        fwdFlow(node, pragma[only_bind_into](state), _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(node, pragma[only_bind_into](state), _, _, _, ap, pragma[only_bind_into](config)) and
         localStep(node, pragma[only_bind_into](state), mid, state0, false, _, config, _) and
-        revFlow(mid, state0, toReturn, returnAp, nil, pragma[only_bind_into](config)) and
+        revFlow(mid, state0, returnCtx, returnAp, nil, pragma[only_bind_into](config)) and
         ap instanceof ApNil
       )
       or
       exists(NodeEx mid |
         jumpStep(node, mid, config) and
         revFlow(mid, state, _, _, ap, config) and
-        toReturn = false and
+        returnCtx = TReturnCtxNone() and
         returnAp = apNone()
       )
       or
       exists(NodeEx mid, ApNil nil |
-        fwdFlow(node, _, _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(node, _, _, _, _, ap, pragma[only_bind_into](config)) and
         additionalJumpStep(node, mid, config) and
         revFlow(pragma[only_bind_into](mid), state, _, _, nil, pragma[only_bind_into](config)) and
-        toReturn = false and
+        returnCtx = TReturnCtxNone() and
         returnAp = apNone() and
         ap instanceof ApNil
       )
       or
       exists(NodeEx mid, FlowState state0, ApNil nil |
-        fwdFlow(node, _, _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(node, _, _, _, _, ap, pragma[only_bind_into](config)) and
         additionalJumpStateStep(node, state, mid, state0, config) and
         revFlow(pragma[only_bind_into](mid), pragma[only_bind_into](state0), _, _, nil,
           pragma[only_bind_into](config)) and
-        toReturn = false and
+        returnCtx = TReturnCtxNone() and
         returnAp = apNone() and
         ap instanceof ApNil
       )
       or
       // store
       exists(Ap ap0, Content c |
-        revFlowStore(ap0, c, ap, node, state, _, _, toReturn, returnAp, config) and
+        revFlowStore(ap0, c, ap, node, state, _, _, returnCtx, returnAp, config) and
         revFlowConsCand(ap0, c, ap, config)
       )
       or
       // read
       exists(NodeEx mid, Ap ap0 |
-        revFlow(mid, state, toReturn, returnAp, ap0, config) and
+        revFlow(mid, state, returnCtx, returnAp, ap0, config) and
         readStepFwd(node, ap, _, mid, ap0, config)
       )
       or
       // flow into a callable
       revFlowInNotToReturn(node, state, returnAp, ap, config) and
-      toReturn = false
+      returnCtx = TReturnCtxNone()
       or
-      exists(DataFlowCall call, Ap returnAp0 |
-        revFlowInToReturn(call, node, state, returnAp0, ap, config) and
-        revFlowIsReturned(call, toReturn, returnAp, returnAp0, config)
+      // flow through a callable
+      exists(DataFlowCall call, ReturnPosition returnPos0, Ap returnAp0 |
+        revFlowInToReturn(call, node, state, returnPos0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnPos0, returnAp0, config)
       )
       or
       // flow out of a callable
-      revFlowOut(_, node, state, _, _, ap, config) and
-      toReturn = true and
-      if returnNodeMayFlowThrough(node, state, ap, config)
-      then returnAp = apSome(ap)
-      else returnAp = apNone()
+      exists(ReturnPosition pos |
+        revFlowOut(_, node, pos, state, _, _, ap, config) and
+        if returnFlowsThrough(node, pos, state, _, _, _, ap, config)
+        then (
+          returnCtx = TReturnCtxMaybeFlowThrough(pos) and
+          returnAp = apSome(ap)
+        ) else (
+          returnCtx = TReturnCtxNoFlowThrough() and returnAp = apNone()
+        )
+      )
     }
 
     pragma[nomagic]
     private predicate revFlowStore(
       Ap ap0, Content c, Ap ap, NodeEx node, FlowState state, TypedContent tc, NodeEx mid,
-      boolean toReturn, ApOption returnAp, Configuration config
+      ReturnCtx returnCtx, ApOption returnAp, Configuration config
     ) {
-      revFlow(mid, state, toReturn, returnAp, ap0, config) and
+      revFlow(mid, state, returnCtx, returnAp, ap0, config) and
       storeStepFwd(node, ap, tc, mid, ap0, config) and
       tc.getContent() = c
     }
@@ -1599,12 +1638,12 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate revFlowOut(
-      DataFlowCall call, RetNodeEx ret, FlowState state, boolean toReturn, ApOption returnAp, Ap ap,
-      Configuration config
+      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, FlowState state, ReturnCtx returnCtx,
+      ApOption returnAp, Ap ap, Configuration config
     ) {
       exists(NodeEx out, boolean allowsFieldFlow |
-        revFlow(out, state, toReturn, returnAp, ap, config) and
-        flowOutOfCall(call, ret, out, allowsFieldFlow, config) and
+        revFlow(out, state, returnCtx, returnAp, ap, config) and
+        flowOutOfCall(call, ret, pos, out, allowsFieldFlow, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
@@ -1614,7 +1653,7 @@ private module MkStage<StageSig PrevStage> {
       ArgNodeEx arg, FlowState state, ApOption returnAp, Ap ap, Configuration config
     ) {
       exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(p, state, false, returnAp, ap, config) and
+        revFlow(p, state, TReturnCtxNone(), returnAp, ap, config) and
         flowIntoCall(_, arg, p, allowsFieldFlow, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
@@ -1622,12 +1661,14 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate revFlowInToReturn(
-      DataFlowCall call, ArgNodeEx arg, FlowState state, Ap returnAp, Ap ap, Configuration config
+      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnPosition returnPos, Ap returnAp,
+      Ap ap, Configuration config
     ) {
       exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(p, state, true, apSome(returnAp), ap, config) and
+        revFlow(p, state, TReturnCtxMaybeFlowThrough(returnPos), apSome(returnAp), ap, config) and
         flowThroughIntoCall(call, arg, p, allowsFieldFlow, config) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
+        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
+        parameterFlowThroughAllowed(p.asNode(), returnPos.getKind())
       )
     }
 
@@ -1638,11 +1679,12 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate revFlowIsReturned(
-      DataFlowCall call, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
+      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnPosition pos, Ap ap,
+      Configuration config
     ) {
       exists(RetNodeEx ret, FlowState state, CcCall ccc |
-        revFlowOut(call, ret, state, toReturn, returnAp, ap, config) and
-        fwdFlow(ret, state, ccc, apSome(_), ap, config) and
+        revFlowOut(call, ret, pos, state, returnCtx, returnAp, ap, config) and
+        returnFlowsThrough(ret, pos, state, ccc, _, _, ap, config) and
         matchesCall(ccc, call)
       )
     }
@@ -1713,40 +1755,39 @@ private module MkStage<StageSig PrevStage> {
       validAp(ap, config)
     }
 
-    pragma[noinline]
-    private predicate parameterFlow(
-      ParamNodeEx p, Ap ap, Ap ap0, DataFlowCallable c, Configuration config
+    pragma[nomagic]
+    private predicate parameterFlowsThroughRev(
+      ParamNodeEx p, Ap ap, ReturnPosition returnPos, Configuration config
     ) {
-      revFlow(p, _, true, apSome(ap0), ap, config) and
-      c = p.getEnclosingCallable()
+      revFlow(p, _, TReturnCtxMaybeFlowThrough(returnPos), apSome(_), ap, config) and
+      parameterFlowThroughAllowed(p.asNode(), returnPos.getKind())
     }
 
-    predicate parameterMayFlowThrough(ParamNodeEx p, DataFlowCallable c, Ap ap, Configuration config) {
-      exists(RetNodeEx ret, FlowState state, Ap ap0, ReturnKindExt kind, ParameterPosition pos |
-        parameterFlow(p, ap, ap0, c, config) and
-        c = ret.getEnclosingCallable() and
-        revFlow(pragma[only_bind_into](ret), pragma[only_bind_into](state), true, apSome(_),
-          pragma[only_bind_into](ap0), pragma[only_bind_into](config)) and
-        fwdFlow(ret, state, any(CcCall ccc), apSome(ap), ap0, config) and
-        kind = ret.getKind() and
-        p.getPosition() = pos and
-        // we don't expect a parameter to return stored in itself, unless explicitly allowed
-        (
-          not kind.(ParamUpdateReturnKind).getPosition() = pos
-          or
-          p.allowParameterReturnInSelf()
-        )
+    pragma[nomagic]
+    predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
+      exists(RetNodeEx ret, ReturnPosition pos |
+        returnFlowsThrough(ret, pos, _, _, p.asNode(), ap, _, config) and
+        parameterFlowsThroughRev(p, ap, pos, config)
+      )
+    }
+
+    pragma[nomagic]
+    predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config) {
+      exists(ParamNodeEx p, Ap ap |
+        returnFlowsThrough(ret, pos, _, _, p.asNode(), ap, _, config) and
+        parameterFlowsThroughRev(p, ap, pos, config)
       )
     }
 
     pragma[nomagic]
     predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
       exists(
-        Ap returnAp0, ArgNodeEx arg, FlowState state, boolean toReturn, ApOption returnAp, Ap ap
+        ReturnPosition returnPos0, Ap returnAp0, ArgNodeEx arg, FlowState state,
+        ReturnCtx returnCtx, ApOption returnAp, Ap ap
       |
-        revFlow(arg, state, toReturn, returnAp, ap, config) and
-        revFlowInToReturn(call, arg, state, returnAp0, ap, config) and
-        revFlowIsReturned(call, toReturn, returnAp, returnAp0, config)
+        revFlow(arg, state, returnCtx, returnAp, ap, config) and
+        revFlowInToReturn(call, arg, state, returnPos0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnPos0, returnAp0, config)
       )
     }
 
@@ -1754,13 +1795,13 @@ private module MkStage<StageSig PrevStage> {
       boolean fwd, int nodes, int fields, int conscand, int states, int tuples, Configuration config
     ) {
       fwd = true and
-      nodes = count(NodeEx node | fwdFlow(node, _, _, _, _, config)) and
+      nodes = count(NodeEx node | fwdFlow(node, _, _, _, _, _, config)) and
       fields = count(TypedContent f0 | fwdConsCand(f0, _, config)) and
       conscand = count(TypedContent f0, Ap ap | fwdConsCand(f0, ap, config)) and
-      states = count(FlowState state | fwdFlow(_, state, _, _, _, config)) and
+      states = count(FlowState state | fwdFlow(_, state, _, _, _, _, config)) and
       tuples =
-        count(NodeEx n, FlowState state, Cc cc, ApOption argAp, Ap ap |
-          fwdFlow(n, state, cc, argAp, ap, config)
+        count(NodeEx n, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap |
+          fwdFlow(n, state, cc, summaryCtx, argAp, ap, config)
         )
       or
       fwd = false and
@@ -1769,8 +1810,8 @@ private module MkStage<StageSig PrevStage> {
       conscand = count(TypedContent f0, Ap ap | consCand(f0, ap, config)) and
       states = count(FlowState state | revFlow(_, state, _, _, _, config)) and
       tuples =
-        count(NodeEx n, FlowState state, boolean b, ApOption retAp, Ap ap |
-          revFlow(n, state, b, retAp, ap, config)
+        count(NodeEx n, FlowState state, ReturnCtx returnCtx, ApOption retAp, Ap ap |
+          revFlow(n, state, returnCtx, retAp, ap, config)
         )
     }
     /* End: Stage logic. */
@@ -1915,7 +1956,7 @@ private module Stage2Param implements MkStage<Stage1>::StageParam {
     exists(lcc)
   }
 
-  predicate flowOutOfCall = flowOutOfCallNodeCand1/5;
+  predicate flowOutOfCall = flowOutOfCallNodeCand1/6;
 
   predicate flowIntoCall = flowIntoCallNodeCand1/5;
 
@@ -1951,9 +1992,10 @@ private module Stage2 implements StageSig {
 
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand2(
-  DataFlowCall call, RetNodeEx node1, NodeEx node2, boolean allowsFieldFlow, Configuration config
+  DataFlowCall call, RetNodeEx node1, ReturnPosition pos, NodeEx node2, boolean allowsFieldFlow,
+  Configuration config
 ) {
-  flowOutOfCallNodeCand1(call, node1, node2, allowsFieldFlow, config) and
+  flowOutOfCallNodeCand1(call, node1, pos, node2, allowsFieldFlow, config) and
   Stage2::revFlow(node2, pragma[only_bind_into](config)) and
   Stage2::revFlowAlias(node1, pragma[only_bind_into](config))
 }
@@ -2021,8 +2063,8 @@ private module LocalFlowBigStep {
     exists(NodeEx next | Stage2::revFlow(next, state, config) |
       jumpStep(node, next, config) or
       additionalJumpStep(node, next, config) or
-      flowIntoCallNodeCand1(_, node, next, config) or
-      flowOutOfCallNodeCand1(_, node, next, config) or
+      flowIntoCallNodeCand2(_, node, next, _, config) or
+      flowOutOfCallNodeCand2(_, node, _, next, _, config) or
       Stage2::storeStepCand(node, _, _, next, _, config) or
       Stage2::readStepCand(node, _, next, config)
     )
@@ -2163,7 +2205,7 @@ private module Stage3Param implements MkStage<Stage2>::StageParam {
     localFlowBigStep(node1, state1, node2, state2, preservesValue, ap, config, _) and exists(lcc)
   }
 
-  predicate flowOutOfCall = flowOutOfCallNodeCand2/5;
+  predicate flowOutOfCall = flowOutOfCallNodeCand2/6;
 
   predicate flowIntoCall = flowIntoCallNodeCand2/5;
 
@@ -2233,8 +2275,9 @@ private predicate flowCandSummaryCtx(
   NodeEx node, FlowState state, AccessPathFront argApf, Configuration config
 ) {
   exists(AccessPathFront apf |
-    Stage3::revFlow(node, state, true, _, apf, config) and
-    Stage3::fwdFlow(node, state, any(Stage3::CcCall ccc), TAccessPathFrontSome(argApf), apf, config)
+    Stage3::revFlow(node, state, TReturnCtxMaybeFlowThrough(_), _, apf, config) and
+    Stage3::fwdFlow(node, state, any(Stage3::CcCall ccc), _, TAccessPathFrontSome(argApf), apf,
+      config)
   )
 }
 
@@ -2468,10 +2511,11 @@ private module Stage4Param implements MkStage<Stage3>::StageParam {
 
   pragma[nomagic]
   predicate flowOutOfCall(
-    DataFlowCall call, RetNodeEx node1, NodeEx node2, boolean allowsFieldFlow, Configuration config
+    DataFlowCall call, RetNodeEx node1, ReturnPosition pos, NodeEx node2, boolean allowsFieldFlow,
+    Configuration config
   ) {
     exists(FlowState state |
-      flowOutOfCallNodeCand2(call, node1, node2, allowsFieldFlow, config) and
+      flowOutOfCallNodeCand2(call, node1, pos, node2, allowsFieldFlow, config) and
       PrevStage::revFlow(node2, pragma[only_bind_into](state), _, pragma[only_bind_into](config)) and
       PrevStage::revFlowAlias(node1, pragma[only_bind_into](state), _,
         pragma[only_bind_into](config))
@@ -2508,13 +2552,13 @@ private Configuration unbindConf(Configuration conf) {
 
 pragma[nomagic]
 private predicate nodeMayUseSummary0(
-  NodeEx n, DataFlowCallable c, FlowState state, AccessPathApprox apa, Configuration config
+  NodeEx n, ParamNodeEx p, FlowState state, AccessPathApprox apa, Configuration config
 ) {
   exists(AccessPathApprox apa0 |
-    Stage4::parameterMayFlowThrough(_, c, _, _) and
-    Stage4::revFlow(n, state, true, _, apa0, config) and
-    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TAccessPathApproxSome(apa), apa0, config) and
-    n.getEnclosingCallable() = c
+    Stage4::parameterMayFlowThrough(p, _, _) and
+    Stage4::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
+    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TParamNodeSome(p.asNode()),
+      TAccessPathApproxSome(apa), apa0, config)
   )
 }
 
@@ -2522,9 +2566,9 @@ pragma[nomagic]
 private predicate nodeMayUseSummary(
   NodeEx n, FlowState state, AccessPathApprox apa, Configuration config
 ) {
-  exists(DataFlowCallable c |
-    Stage4::parameterMayFlowThrough(_, c, apa, config) and
-    nodeMayUseSummary0(n, c, state, apa, config)
+  exists(ParamNodeEx p |
+    Stage4::parameterMayFlowThrough(p, apa, config) and
+    nodeMayUseSummary0(n, p, state, apa, config)
   )
 }
 
@@ -2532,7 +2576,7 @@ private newtype TSummaryCtx =
   TSummaryCtxNone() or
   TSummaryCtxSome(ParamNodeEx p, FlowState state, AccessPath ap) {
     exists(Configuration config |
-      Stage4::parameterMayFlowThrough(p, _, ap.getApprox(), config) and
+      Stage4::parameterMayFlowThrough(p, ap.getApprox(), config) and
       Stage4::revFlow(p, state, _, config)
     )
   }
@@ -3453,17 +3497,11 @@ private predicate paramFlowsThrough(
   ReturnKindExt kind, FlowState state, CallContextCall cc, SummaryCtxSome sc, AccessPath ap,
   AccessPathApprox apa, Configuration config
 ) {
-  exists(PathNodeMid mid, RetNodeEx ret, ParameterPosition pos |
+  exists(PathNodeMid mid, RetNodeEx ret |
     pathNode(mid, ret, state, cc, sc, ap, config, _) and
     kind = ret.getKind() and
     apa = ap.getApprox() and
-    pos = sc.getParameterPos() and
-    // we don't expect a parameter to return stored in itself, unless explicitly allowed
-    (
-      not kind.(ParamUpdateReturnKind).getPosition() = pos
-      or
-      sc.getParamNode().allowParameterReturnInSelf()
-    )
+    parameterFlowThroughAllowed(sc.getParamNode().asNode(), kind)
   )
 }
 
diff --git a/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImpl3.qll b/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImpl3.qll
index 3c41b1876dc..a52ad110662 100644
--- a/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImpl3.qll
+++ b/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImpl3.qll
@@ -319,8 +319,6 @@ private class ParamNodeEx extends NodeEx {
   }
 
   ParameterPosition getPosition() { this.isParameterOf(_, result) }
-
-  predicate allowParameterReturnInSelf() { allowParameterReturnInSelfCached(this.asNode()) }
 }
 
 private class RetNodeEx extends NodeEx {
@@ -608,6 +606,21 @@ private predicate hasSinkCallCtx(Configuration config) {
   )
 }
 
+/**
+ * Holds if flow from `p` to a return node of kind `kind` is allowed.
+ *
+ * We don't expect a parameter to return stored in itself, unless
+ * explicitly allowed
+ */
+bindingset[p, kind]
+private predicate parameterFlowThroughAllowed(ParamNode p, ReturnKindExt kind) {
+  exists(ParameterPosition pos | p.isParameterOf(_, pos) |
+    not kind.(ParamUpdateReturnKind).getPosition() = pos
+    or
+    allowParameterReturnInSelfCached(p)
+  )
+}
+
 private module Stage1 implements StageSig {
   class Ap = Unit;
 
@@ -981,21 +994,22 @@ private module Stage1 implements StageSig {
    * candidate for the origin of a summary.
    */
   pragma[nomagic]
-  predicate parameterMayFlowThrough(ParamNodeEx p, DataFlowCallable c, Ap ap, Configuration config) {
-    exists(ReturnKindExt kind |
+  predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
+    exists(DataFlowCallable c, ReturnKindExt kind |
       throughFlowNodeCand(p, config) and
       returnFlowCallableNodeCand(c, kind, config) and
       p.getEnclosingCallable() = c and
       exists(ap) and
-      // we don't expect a parameter to return stored in itself, unless explicitly allowed
-      (
-        not kind.(ParamUpdateReturnKind).getPosition() = p.getPosition()
-        or
-        p.allowParameterReturnInSelf()
-      )
+      parameterFlowThroughAllowed(p.asNode(), kind)
     )
   }
 
+  pragma[nomagic]
+  predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config) {
+    throughFlowNodeCand(ret, config) and
+    pos = ret.getReturnPosition()
+  }
+
   pragma[nomagic]
   predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
     exists(ArgNodeEx arg, boolean toReturn |
@@ -1052,9 +1066,10 @@ private predicate viableReturnPosOutNodeCand1(
  */
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand1(
-  DataFlowCall call, RetNodeEx ret, NodeEx out, Configuration config
+  DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, Configuration config
 ) {
-  viableReturnPosOutNodeCand1(call, ret.getReturnPosition(), out, config) and
+  viableReturnPosOutNodeCand1(call, pos, out, config) and
+  pos = ret.getReturnPosition() and
   Stage1::revFlow(ret, config) and
   not outBarrier(ret, config) and
   not inBarrier(out, config)
@@ -1090,7 +1105,7 @@ private predicate flowIntoCallNodeCand1(
 private int branch(NodeEx n1, Configuration conf) {
   result =
     strictcount(NodeEx n |
-      flowOutOfCallNodeCand1(_, n1, n, conf) or flowIntoCallNodeCand1(_, n1, n, conf)
+      flowOutOfCallNodeCand1(_, n1, _, n, conf) or flowIntoCallNodeCand1(_, n1, n, conf)
     )
 }
 
@@ -1102,7 +1117,7 @@ private int branch(NodeEx n1, Configuration conf) {
 private int join(NodeEx n2, Configuration conf) {
   result =
     strictcount(NodeEx n |
-      flowOutOfCallNodeCand1(_, n, n2, conf) or flowIntoCallNodeCand1(_, n, n2, conf)
+      flowOutOfCallNodeCand1(_, n, _, n2, conf) or flowIntoCallNodeCand1(_, n, n2, conf)
     )
 }
 
@@ -1115,12 +1130,13 @@ private int join(NodeEx n2, Configuration conf) {
  */
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand1(
-  DataFlowCall call, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow, Configuration config
+  DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
+  Configuration config
 ) {
-  flowOutOfCallNodeCand1(call, ret, out, config) and
+  flowOutOfCallNodeCand1(call, ret, pos, out, pragma[only_bind_into](config)) and
   exists(int b, int j |
-    b = branch(ret, config) and
-    j = join(out, config) and
+    b = branch(ret, pragma[only_bind_into](config)) and
+    j = join(out, pragma[only_bind_into](config)) and
     if b.minimum(j) <= config.fieldFlowBranchLimit()
     then allowsFieldFlow = true
     else allowsFieldFlow = false
@@ -1156,7 +1172,9 @@ private signature module StageSig {
 
   predicate callMayFlowThroughRev(DataFlowCall call, Configuration config);
 
-  predicate parameterMayFlowThrough(ParamNodeEx p, DataFlowCallable c, Ap ap, Configuration config);
+  predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config);
+
+  predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config);
 
   predicate storeStepCand(
     NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, DataFlowType contentType,
@@ -1222,7 +1240,8 @@ private module MkStage<StageSig PrevStage> {
     );
 
     predicate flowOutOfCall(
-      DataFlowCall call, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow, Configuration config
+      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
+      Configuration config
     );
 
     predicate flowIntoCall(
@@ -1247,14 +1266,16 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate flowThroughOutOfCall(
-      DataFlowCall call, CcCall ccc, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow,
-      Configuration config
+      DataFlowCall call, CcCall ccc, RetNodeEx ret, ReturnKindExt kind, NodeEx out,
+      boolean allowsFieldFlow, Configuration config
     ) {
-      flowOutOfCall(call, ret, out, allowsFieldFlow, pragma[only_bind_into](config)) and
-      PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
-      PrevStage::parameterMayFlowThrough(_, ret.getEnclosingCallable(), _,
-        pragma[only_bind_into](config)) and
-      matchesCall(ccc, call)
+      exists(ReturnPosition pos |
+        flowOutOfCall(call, ret, pos, out, allowsFieldFlow, pragma[only_bind_into](config)) and
+        kind = pos.getKind() and
+        PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
+        PrevStage::returnMayFlowThrough(ret, pos, pragma[only_bind_into](config)) and
+        matchesCall(ccc, call)
+      )
     }
 
     /**
@@ -1262,29 +1283,32 @@ private module MkStage<StageSig PrevStage> {
      * configuration `config`.
      *
      * The call context `cc` records whether the node is reached through an
-     * argument in a call, and if so, `argAp` records the access path of that
-     * argument.
+     * argument in a call, and if so, `summaryCtx` and `argAp` record the
+     * corresponding parameter and access path of that argument, respectively.
      */
     pragma[nomagic]
     additional predicate fwdFlow(
-      NodeEx node, FlowState state, Cc cc, ApOption argAp, Ap ap, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      Configuration config
     ) {
-      fwdFlow0(node, state, cc, argAp, ap, config) and
+      fwdFlow0(node, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::revFlow(node, state, unbindApa(getApprox(ap)), config) and
       filter(node, state, ap, config)
     }
 
     pragma[nomagic]
     private predicate fwdFlow0(
-      NodeEx node, FlowState state, Cc cc, ApOption argAp, Ap ap, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      Configuration config
     ) {
       sourceNode(node, state, config) and
       (if hasSourceCallCtx(config) then cc = ccSomeCall() else cc = ccNone()) and
       argAp = apNone() and
+      summaryCtx = TParamNodeNone() and
       ap = getApNil(node)
       or
       exists(NodeEx mid, FlowState state0, Ap ap0, LocalCc localCc |
-        fwdFlow(mid, state0, cc, argAp, ap0, config) and
+        fwdFlow(mid, state0, cc, summaryCtx, argAp, ap0, config) and
         localCc = getLocalCc(mid, cc)
       |
         localStep(mid, state0, node, state, true, _, config, localCc) and
@@ -1295,65 +1319,72 @@ private module MkStage<StageSig PrevStage> {
       )
       or
       exists(NodeEx mid |
-        fwdFlow(mid, pragma[only_bind_into](state), _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, pragma[only_bind_into](config)) and
         jumpStep(mid, node, config) and
         cc = ccNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone()
       )
       or
       exists(NodeEx mid, ApNil nil |
-        fwdFlow(mid, state, _, _, nil, pragma[only_bind_into](config)) and
+        fwdFlow(mid, state, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStep(mid, node, config) and
         cc = ccNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone() and
         ap = getApNil(node)
       )
       or
       exists(NodeEx mid, FlowState state0, ApNil nil |
-        fwdFlow(mid, state0, _, _, nil, pragma[only_bind_into](config)) and
+        fwdFlow(mid, state0, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStateStep(mid, state0, node, state, config) and
         cc = ccNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone() and
         ap = getApNil(node)
       )
       or
       // store
       exists(TypedContent tc, Ap ap0 |
-        fwdFlowStore(_, ap0, tc, node, state, cc, argAp, config) and
+        fwdFlowStore(_, ap0, tc, node, state, cc, summaryCtx, argAp, config) and
         ap = apCons(tc, ap0)
       )
       or
       // read
       exists(Ap ap0, Content c |
-        fwdFlowRead(ap0, c, _, node, state, cc, argAp, config) and
+        fwdFlowRead(ap0, c, _, node, state, cc, summaryCtx, argAp, config) and
         fwdFlowConsCand(ap0, c, ap, config)
       )
       or
       // flow into a callable
       exists(ApApprox apa |
-        fwdFlowIn(_, node, state, _, cc, _, ap, config) and
+        fwdFlowIn(_, node, state, _, cc, _, _, ap, config) and
         apa = getApprox(ap) and
-        if PrevStage::parameterMayFlowThrough(node, _, apa, config)
-        then argAp = apSome(ap)
-        else argAp = apNone()
+        if PrevStage::parameterMayFlowThrough(node, apa, config)
+        then (
+          summaryCtx = TParamNodeSome(node.asNode()) and argAp = apSome(ap)
+        ) else (
+          summaryCtx = TParamNodeNone() and argAp = apNone()
+        )
       )
       or
       // flow out of a callable
-      fwdFlowOutNotFromArg(node, state, cc, argAp, ap, config)
+      fwdFlowOutNotFromArg(node, state, cc, summaryCtx, argAp, ap, config)
       or
-      exists(DataFlowCall call, Ap argAp0 |
-        fwdFlowOutFromArg(call, node, state, argAp0, ap, config) and
-        fwdFlowIsEntered(call, cc, argAp, argAp0, config)
+      // flow through a callable
+      exists(DataFlowCall call, ParamNode summaryCtx0, Ap argAp0 |
+        fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, config) and
+        fwdFlowIsEntered(call, cc, summaryCtx, argAp, summaryCtx0, argAp0, config)
       )
     }
 
     pragma[nomagic]
     private predicate fwdFlowStore(
-      NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc, ApOption argAp,
-      Configuration config
+      NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc,
+      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
     ) {
       exists(DataFlowType contentType |
-        fwdFlow(node1, state, cc, argAp, ap1, config) and
+        fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, config) and
         PrevStage::storeStepCand(node1, unbindApa(getApprox(ap1)), tc, node2, contentType, config) and
         typecheckStore(ap1, contentType)
       )
@@ -1366,7 +1397,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowConsCand(Ap cons, Content c, Ap tail, Configuration config) {
       exists(TypedContent tc |
-        fwdFlowStore(_, tail, tc, _, _, _, _, config) and
+        fwdFlowStore(_, tail, tc, _, _, _, _, _, config) and
         tc.getContent() = c and
         cons = apCons(tc, tail)
       )
@@ -1374,21 +1405,21 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowRead(
-      Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc, ApOption argAp,
-      Configuration config
+      Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc,
+      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
     ) {
-      fwdFlow(node1, state, cc, argAp, ap, config) and
+      fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, c, node2, config) and
       getHeadContent(ap) = c
     }
 
     pragma[nomagic]
     private predicate fwdFlowIn(
-      DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, Cc innercc, ApOption argAp,
-      Ap ap, Configuration config
+      DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, Cc innercc,
+      ParamNodeOption summaryCtx, ApOption argAp, Ap ap, Configuration config
     ) {
       exists(ArgNodeEx arg, boolean allowsFieldFlow |
-        fwdFlow(arg, state, outercc, argAp, ap, config) and
+        fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, config) and
         flowIntoCall(call, arg, p, allowsFieldFlow, config) and
         innercc = getCallContextCall(call, p.getEnclosingCallable(), outercc) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
@@ -1397,14 +1428,15 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowOutNotFromArg(
-      NodeEx out, FlowState state, Cc ccOut, ApOption argAp, Ap ap, Configuration config
+      NodeEx out, FlowState state, Cc ccOut, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      Configuration config
     ) {
       exists(
         DataFlowCall call, RetNodeEx ret, boolean allowsFieldFlow, CcNoCall innercc,
         DataFlowCallable inner
       |
-        fwdFlow(ret, state, innercc, argAp, ap, config) and
-        flowOutOfCall(call, ret, out, allowsFieldFlow, config) and
+        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, config) and
+        flowOutOfCall(call, ret, _, out, allowsFieldFlow, config) and
         inner = ret.getEnclosingCallable() and
         ccOut = getCallContextReturn(inner, call, innercc) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
@@ -1413,12 +1445,14 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowOutFromArg(
-      DataFlowCall call, NodeEx out, FlowState state, Ap argAp, Ap ap, Configuration config
+      DataFlowCall call, NodeEx out, FlowState state, ParamNode summaryCtx, Ap argAp, Ap ap,
+      Configuration config
     ) {
-      exists(RetNodeEx ret, boolean allowsFieldFlow, CcCall ccc |
-        fwdFlow(ret, state, ccc, apSome(argAp), ap, config) and
-        flowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, config) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
+      exists(RetNodeEx ret, ReturnKindExt kind, boolean allowsFieldFlow, CcCall ccc |
+        fwdFlow(ret, state, ccc, TParamNodeSome(summaryCtx), apSome(argAp), ap, config) and
+        flowThroughOutOfCall(call, ccc, ret, kind, out, allowsFieldFlow, config) and
+        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
+        parameterFlowThroughAllowed(summaryCtx, kind)
       )
     }
 
@@ -1428,11 +1462,13 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate fwdFlowIsEntered(
-      DataFlowCall call, Cc cc, ApOption argAp, Ap ap, Configuration config
+      DataFlowCall call, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, ParamNode p, Ap ap,
+      Configuration config
     ) {
-      exists(ParamNodeEx p |
-        fwdFlowIn(call, p, _, cc, _, argAp, ap, config) and
-        PrevStage::parameterMayFlowThrough(p, _, unbindApa(getApprox(ap)), config)
+      exists(ParamNodeEx param |
+        fwdFlowIn(call, param, _, cc, _, summaryCtx, argAp, ap, config) and
+        PrevStage::parameterMayFlowThrough(param, unbindApa(getApprox(ap)), config) and
+        p = param.asNode()
       )
     }
 
@@ -1440,146 +1476,149 @@ private module MkStage<StageSig PrevStage> {
     private predicate storeStepFwd(
       NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, Ap ap2, Configuration config
     ) {
-      fwdFlowStore(node1, ap1, tc, node2, _, _, _, config) and
+      fwdFlowStore(node1, ap1, tc, node2, _, _, _, _, config) and
       ap2 = apCons(tc, ap1) and
-      fwdFlowRead(ap2, tc.getContent(), _, _, _, _, _, config)
+      fwdFlowRead(ap2, tc.getContent(), _, _, _, _, _, _, config)
     }
 
     private predicate readStepFwd(
       NodeEx n1, Ap ap1, Content c, NodeEx n2, Ap ap2, Configuration config
     ) {
-      fwdFlowRead(ap1, c, n1, n2, _, _, _, config) and
+      fwdFlowRead(ap1, c, n1, n2, _, _, _, _, config) and
       fwdFlowConsCand(ap1, c, ap2, config)
     }
 
     pragma[nomagic]
-    private predicate callMayFlowThroughFwd(DataFlowCall call, Configuration config) {
-      exists(Ap argAp0, NodeEx out, FlowState state, Cc cc, ApOption argAp, Ap ap |
-        fwdFlow(out, state, pragma[only_bind_into](cc), pragma[only_bind_into](argAp), ap,
-          pragma[only_bind_into](config)) and
-        fwdFlowOutFromArg(call, out, state, argAp0, ap, config) and
-        fwdFlowIsEntered(pragma[only_bind_into](call), pragma[only_bind_into](cc),
-          pragma[only_bind_into](argAp), pragma[only_bind_into](argAp0),
-          pragma[only_bind_into](config))
-      )
+    private predicate returnFlowsThrough(
+      RetNodeEx ret, ReturnPosition pos, FlowState state, CcCall ccc, ParamNode p, Ap argAp, Ap ap,
+      Configuration config
+    ) {
+      fwdFlow(ret, state, ccc, TParamNodeSome(p), apSome(argAp), ap, config) and
+      pos = ret.getReturnPosition() and
+      parameterFlowThroughAllowed(p, pos.getKind())
     }
 
     pragma[nomagic]
     private predicate flowThroughIntoCall(
       DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
     ) {
-      flowIntoCall(call, arg, p, allowsFieldFlow, config) and
-      fwdFlow(arg, _, _, _, _, pragma[only_bind_into](config)) and
-      PrevStage::parameterMayFlowThrough(p, _, _, pragma[only_bind_into](config)) and
-      callMayFlowThroughFwd(call, pragma[only_bind_into](config))
-    }
-
-    pragma[nomagic]
-    private predicate returnNodeMayFlowThrough(
-      RetNodeEx ret, FlowState state, Ap ap, Configuration config
-    ) {
-      fwdFlow(ret, state, any(CcCall ccc), apSome(_), ap, config)
+      flowIntoCall(call, pragma[only_bind_into](arg), pragma[only_bind_into](p), allowsFieldFlow,
+        pragma[only_bind_into](config)) and
+      fwdFlow(arg, _, _, _, _, _, pragma[only_bind_into](config)) and
+      returnFlowsThrough(_, _, _, _, p.asNode(), _, _, pragma[only_bind_into](config))
     }
 
     /**
      * Holds if `node` with access path `ap` is part of a path from a source to a
      * sink in the configuration `config`.
      *
-     * The Boolean `toReturn` records whether the node must be returned from the
-     * enclosing callable in order to reach a sink, and if so, `returnAp` records
-     * the access path of the returned value.
+     * The parameter `returnCtx` records whether (and how) the node must be returned
+     * from the enclosing callable in order to reach a sink, and if so, `returnAp`
+     * records the access path of the returned value.
      */
     pragma[nomagic]
     additional predicate revFlow(
-      NodeEx node, FlowState state, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
+      NodeEx node, FlowState state, ReturnCtx returnCtx, ApOption returnAp, Ap ap,
+      Configuration config
     ) {
-      revFlow0(node, state, toReturn, returnAp, ap, config) and
-      fwdFlow(node, state, _, _, ap, config)
+      revFlow0(node, state, returnCtx, returnAp, ap, config) and
+      fwdFlow(node, state, _, _, _, ap, config)
     }
 
     pragma[nomagic]
     private predicate revFlow0(
-      NodeEx node, FlowState state, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
+      NodeEx node, FlowState state, ReturnCtx returnCtx, ApOption returnAp, Ap ap,
+      Configuration config
     ) {
-      fwdFlow(node, state, _, _, ap, config) and
+      fwdFlow(node, state, _, _, _, ap, config) and
       sinkNode(node, state, config) and
-      (if hasSinkCallCtx(config) then toReturn = true else toReturn = false) and
+      (
+        if hasSinkCallCtx(config)
+        then returnCtx = TReturnCtxNoFlowThrough()
+        else returnCtx = TReturnCtxNone()
+      ) and
       returnAp = apNone() and
       ap instanceof ApNil
       or
       exists(NodeEx mid, FlowState state0 |
         localStep(node, state, mid, state0, true, _, config, _) and
-        revFlow(mid, state0, toReturn, returnAp, ap, config)
+        revFlow(mid, state0, returnCtx, returnAp, ap, config)
       )
       or
       exists(NodeEx mid, FlowState state0, ApNil nil |
-        fwdFlow(node, pragma[only_bind_into](state), _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(node, pragma[only_bind_into](state), _, _, _, ap, pragma[only_bind_into](config)) and
         localStep(node, pragma[only_bind_into](state), mid, state0, false, _, config, _) and
-        revFlow(mid, state0, toReturn, returnAp, nil, pragma[only_bind_into](config)) and
+        revFlow(mid, state0, returnCtx, returnAp, nil, pragma[only_bind_into](config)) and
         ap instanceof ApNil
       )
       or
       exists(NodeEx mid |
         jumpStep(node, mid, config) and
         revFlow(mid, state, _, _, ap, config) and
-        toReturn = false and
+        returnCtx = TReturnCtxNone() and
         returnAp = apNone()
       )
       or
       exists(NodeEx mid, ApNil nil |
-        fwdFlow(node, _, _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(node, _, _, _, _, ap, pragma[only_bind_into](config)) and
         additionalJumpStep(node, mid, config) and
         revFlow(pragma[only_bind_into](mid), state, _, _, nil, pragma[only_bind_into](config)) and
-        toReturn = false and
+        returnCtx = TReturnCtxNone() and
         returnAp = apNone() and
         ap instanceof ApNil
       )
       or
       exists(NodeEx mid, FlowState state0, ApNil nil |
-        fwdFlow(node, _, _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(node, _, _, _, _, ap, pragma[only_bind_into](config)) and
         additionalJumpStateStep(node, state, mid, state0, config) and
         revFlow(pragma[only_bind_into](mid), pragma[only_bind_into](state0), _, _, nil,
           pragma[only_bind_into](config)) and
-        toReturn = false and
+        returnCtx = TReturnCtxNone() and
         returnAp = apNone() and
         ap instanceof ApNil
       )
       or
       // store
       exists(Ap ap0, Content c |
-        revFlowStore(ap0, c, ap, node, state, _, _, toReturn, returnAp, config) and
+        revFlowStore(ap0, c, ap, node, state, _, _, returnCtx, returnAp, config) and
         revFlowConsCand(ap0, c, ap, config)
       )
       or
       // read
       exists(NodeEx mid, Ap ap0 |
-        revFlow(mid, state, toReturn, returnAp, ap0, config) and
+        revFlow(mid, state, returnCtx, returnAp, ap0, config) and
         readStepFwd(node, ap, _, mid, ap0, config)
       )
       or
       // flow into a callable
       revFlowInNotToReturn(node, state, returnAp, ap, config) and
-      toReturn = false
+      returnCtx = TReturnCtxNone()
       or
-      exists(DataFlowCall call, Ap returnAp0 |
-        revFlowInToReturn(call, node, state, returnAp0, ap, config) and
-        revFlowIsReturned(call, toReturn, returnAp, returnAp0, config)
+      // flow through a callable
+      exists(DataFlowCall call, ReturnPosition returnPos0, Ap returnAp0 |
+        revFlowInToReturn(call, node, state, returnPos0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnPos0, returnAp0, config)
       )
       or
       // flow out of a callable
-      revFlowOut(_, node, state, _, _, ap, config) and
-      toReturn = true and
-      if returnNodeMayFlowThrough(node, state, ap, config)
-      then returnAp = apSome(ap)
-      else returnAp = apNone()
+      exists(ReturnPosition pos |
+        revFlowOut(_, node, pos, state, _, _, ap, config) and
+        if returnFlowsThrough(node, pos, state, _, _, _, ap, config)
+        then (
+          returnCtx = TReturnCtxMaybeFlowThrough(pos) and
+          returnAp = apSome(ap)
+        ) else (
+          returnCtx = TReturnCtxNoFlowThrough() and returnAp = apNone()
+        )
+      )
     }
 
     pragma[nomagic]
     private predicate revFlowStore(
       Ap ap0, Content c, Ap ap, NodeEx node, FlowState state, TypedContent tc, NodeEx mid,
-      boolean toReturn, ApOption returnAp, Configuration config
+      ReturnCtx returnCtx, ApOption returnAp, Configuration config
     ) {
-      revFlow(mid, state, toReturn, returnAp, ap0, config) and
+      revFlow(mid, state, returnCtx, returnAp, ap0, config) and
       storeStepFwd(node, ap, tc, mid, ap0, config) and
       tc.getContent() = c
     }
@@ -1599,12 +1638,12 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate revFlowOut(
-      DataFlowCall call, RetNodeEx ret, FlowState state, boolean toReturn, ApOption returnAp, Ap ap,
-      Configuration config
+      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, FlowState state, ReturnCtx returnCtx,
+      ApOption returnAp, Ap ap, Configuration config
     ) {
       exists(NodeEx out, boolean allowsFieldFlow |
-        revFlow(out, state, toReturn, returnAp, ap, config) and
-        flowOutOfCall(call, ret, out, allowsFieldFlow, config) and
+        revFlow(out, state, returnCtx, returnAp, ap, config) and
+        flowOutOfCall(call, ret, pos, out, allowsFieldFlow, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
@@ -1614,7 +1653,7 @@ private module MkStage<StageSig PrevStage> {
       ArgNodeEx arg, FlowState state, ApOption returnAp, Ap ap, Configuration config
     ) {
       exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(p, state, false, returnAp, ap, config) and
+        revFlow(p, state, TReturnCtxNone(), returnAp, ap, config) and
         flowIntoCall(_, arg, p, allowsFieldFlow, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
@@ -1622,12 +1661,14 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate revFlowInToReturn(
-      DataFlowCall call, ArgNodeEx arg, FlowState state, Ap returnAp, Ap ap, Configuration config
+      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnPosition returnPos, Ap returnAp,
+      Ap ap, Configuration config
     ) {
       exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(p, state, true, apSome(returnAp), ap, config) and
+        revFlow(p, state, TReturnCtxMaybeFlowThrough(returnPos), apSome(returnAp), ap, config) and
         flowThroughIntoCall(call, arg, p, allowsFieldFlow, config) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
+        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
+        parameterFlowThroughAllowed(p.asNode(), returnPos.getKind())
       )
     }
 
@@ -1638,11 +1679,12 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate revFlowIsReturned(
-      DataFlowCall call, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
+      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnPosition pos, Ap ap,
+      Configuration config
     ) {
       exists(RetNodeEx ret, FlowState state, CcCall ccc |
-        revFlowOut(call, ret, state, toReturn, returnAp, ap, config) and
-        fwdFlow(ret, state, ccc, apSome(_), ap, config) and
+        revFlowOut(call, ret, pos, state, returnCtx, returnAp, ap, config) and
+        returnFlowsThrough(ret, pos, state, ccc, _, _, ap, config) and
         matchesCall(ccc, call)
       )
     }
@@ -1713,40 +1755,39 @@ private module MkStage<StageSig PrevStage> {
       validAp(ap, config)
     }
 
-    pragma[noinline]
-    private predicate parameterFlow(
-      ParamNodeEx p, Ap ap, Ap ap0, DataFlowCallable c, Configuration config
+    pragma[nomagic]
+    private predicate parameterFlowsThroughRev(
+      ParamNodeEx p, Ap ap, ReturnPosition returnPos, Configuration config
     ) {
-      revFlow(p, _, true, apSome(ap0), ap, config) and
-      c = p.getEnclosingCallable()
+      revFlow(p, _, TReturnCtxMaybeFlowThrough(returnPos), apSome(_), ap, config) and
+      parameterFlowThroughAllowed(p.asNode(), returnPos.getKind())
     }
 
-    predicate parameterMayFlowThrough(ParamNodeEx p, DataFlowCallable c, Ap ap, Configuration config) {
-      exists(RetNodeEx ret, FlowState state, Ap ap0, ReturnKindExt kind, ParameterPosition pos |
-        parameterFlow(p, ap, ap0, c, config) and
-        c = ret.getEnclosingCallable() and
-        revFlow(pragma[only_bind_into](ret), pragma[only_bind_into](state), true, apSome(_),
-          pragma[only_bind_into](ap0), pragma[only_bind_into](config)) and
-        fwdFlow(ret, state, any(CcCall ccc), apSome(ap), ap0, config) and
-        kind = ret.getKind() and
-        p.getPosition() = pos and
-        // we don't expect a parameter to return stored in itself, unless explicitly allowed
-        (
-          not kind.(ParamUpdateReturnKind).getPosition() = pos
-          or
-          p.allowParameterReturnInSelf()
-        )
+    pragma[nomagic]
+    predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
+      exists(RetNodeEx ret, ReturnPosition pos |
+        returnFlowsThrough(ret, pos, _, _, p.asNode(), ap, _, config) and
+        parameterFlowsThroughRev(p, ap, pos, config)
+      )
+    }
+
+    pragma[nomagic]
+    predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config) {
+      exists(ParamNodeEx p, Ap ap |
+        returnFlowsThrough(ret, pos, _, _, p.asNode(), ap, _, config) and
+        parameterFlowsThroughRev(p, ap, pos, config)
       )
     }
 
     pragma[nomagic]
     predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
       exists(
-        Ap returnAp0, ArgNodeEx arg, FlowState state, boolean toReturn, ApOption returnAp, Ap ap
+        ReturnPosition returnPos0, Ap returnAp0, ArgNodeEx arg, FlowState state,
+        ReturnCtx returnCtx, ApOption returnAp, Ap ap
       |
-        revFlow(arg, state, toReturn, returnAp, ap, config) and
-        revFlowInToReturn(call, arg, state, returnAp0, ap, config) and
-        revFlowIsReturned(call, toReturn, returnAp, returnAp0, config)
+        revFlow(arg, state, returnCtx, returnAp, ap, config) and
+        revFlowInToReturn(call, arg, state, returnPos0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnPos0, returnAp0, config)
       )
     }
 
@@ -1754,13 +1795,13 @@ private module MkStage<StageSig PrevStage> {
       boolean fwd, int nodes, int fields, int conscand, int states, int tuples, Configuration config
     ) {
       fwd = true and
-      nodes = count(NodeEx node | fwdFlow(node, _, _, _, _, config)) and
+      nodes = count(NodeEx node | fwdFlow(node, _, _, _, _, _, config)) and
       fields = count(TypedContent f0 | fwdConsCand(f0, _, config)) and
       conscand = count(TypedContent f0, Ap ap | fwdConsCand(f0, ap, config)) and
-      states = count(FlowState state | fwdFlow(_, state, _, _, _, config)) and
+      states = count(FlowState state | fwdFlow(_, state, _, _, _, _, config)) and
       tuples =
-        count(NodeEx n, FlowState state, Cc cc, ApOption argAp, Ap ap |
-          fwdFlow(n, state, cc, argAp, ap, config)
+        count(NodeEx n, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap |
+          fwdFlow(n, state, cc, summaryCtx, argAp, ap, config)
         )
       or
       fwd = false and
@@ -1769,8 +1810,8 @@ private module MkStage<StageSig PrevStage> {
       conscand = count(TypedContent f0, Ap ap | consCand(f0, ap, config)) and
       states = count(FlowState state | revFlow(_, state, _, _, _, config)) and
       tuples =
-        count(NodeEx n, FlowState state, boolean b, ApOption retAp, Ap ap |
-          revFlow(n, state, b, retAp, ap, config)
+        count(NodeEx n, FlowState state, ReturnCtx returnCtx, ApOption retAp, Ap ap |
+          revFlow(n, state, returnCtx, retAp, ap, config)
         )
     }
     /* End: Stage logic. */
@@ -1915,7 +1956,7 @@ private module Stage2Param implements MkStage<Stage1>::StageParam {
     exists(lcc)
   }
 
-  predicate flowOutOfCall = flowOutOfCallNodeCand1/5;
+  predicate flowOutOfCall = flowOutOfCallNodeCand1/6;
 
   predicate flowIntoCall = flowIntoCallNodeCand1/5;
 
@@ -1951,9 +1992,10 @@ private module Stage2 implements StageSig {
 
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand2(
-  DataFlowCall call, RetNodeEx node1, NodeEx node2, boolean allowsFieldFlow, Configuration config
+  DataFlowCall call, RetNodeEx node1, ReturnPosition pos, NodeEx node2, boolean allowsFieldFlow,
+  Configuration config
 ) {
-  flowOutOfCallNodeCand1(call, node1, node2, allowsFieldFlow, config) and
+  flowOutOfCallNodeCand1(call, node1, pos, node2, allowsFieldFlow, config) and
   Stage2::revFlow(node2, pragma[only_bind_into](config)) and
   Stage2::revFlowAlias(node1, pragma[only_bind_into](config))
 }
@@ -2021,8 +2063,8 @@ private module LocalFlowBigStep {
     exists(NodeEx next | Stage2::revFlow(next, state, config) |
       jumpStep(node, next, config) or
       additionalJumpStep(node, next, config) or
-      flowIntoCallNodeCand1(_, node, next, config) or
-      flowOutOfCallNodeCand1(_, node, next, config) or
+      flowIntoCallNodeCand2(_, node, next, _, config) or
+      flowOutOfCallNodeCand2(_, node, _, next, _, config) or
       Stage2::storeStepCand(node, _, _, next, _, config) or
       Stage2::readStepCand(node, _, next, config)
     )
@@ -2163,7 +2205,7 @@ private module Stage3Param implements MkStage<Stage2>::StageParam {
     localFlowBigStep(node1, state1, node2, state2, preservesValue, ap, config, _) and exists(lcc)
   }
 
-  predicate flowOutOfCall = flowOutOfCallNodeCand2/5;
+  predicate flowOutOfCall = flowOutOfCallNodeCand2/6;
 
   predicate flowIntoCall = flowIntoCallNodeCand2/5;
 
@@ -2233,8 +2275,9 @@ private predicate flowCandSummaryCtx(
   NodeEx node, FlowState state, AccessPathFront argApf, Configuration config
 ) {
   exists(AccessPathFront apf |
-    Stage3::revFlow(node, state, true, _, apf, config) and
-    Stage3::fwdFlow(node, state, any(Stage3::CcCall ccc), TAccessPathFrontSome(argApf), apf, config)
+    Stage3::revFlow(node, state, TReturnCtxMaybeFlowThrough(_), _, apf, config) and
+    Stage3::fwdFlow(node, state, any(Stage3::CcCall ccc), _, TAccessPathFrontSome(argApf), apf,
+      config)
   )
 }
 
@@ -2468,10 +2511,11 @@ private module Stage4Param implements MkStage<Stage3>::StageParam {
 
   pragma[nomagic]
   predicate flowOutOfCall(
-    DataFlowCall call, RetNodeEx node1, NodeEx node2, boolean allowsFieldFlow, Configuration config
+    DataFlowCall call, RetNodeEx node1, ReturnPosition pos, NodeEx node2, boolean allowsFieldFlow,
+    Configuration config
   ) {
     exists(FlowState state |
-      flowOutOfCallNodeCand2(call, node1, node2, allowsFieldFlow, config) and
+      flowOutOfCallNodeCand2(call, node1, pos, node2, allowsFieldFlow, config) and
       PrevStage::revFlow(node2, pragma[only_bind_into](state), _, pragma[only_bind_into](config)) and
       PrevStage::revFlowAlias(node1, pragma[only_bind_into](state), _,
         pragma[only_bind_into](config))
@@ -2508,13 +2552,13 @@ private Configuration unbindConf(Configuration conf) {
 
 pragma[nomagic]
 private predicate nodeMayUseSummary0(
-  NodeEx n, DataFlowCallable c, FlowState state, AccessPathApprox apa, Configuration config
+  NodeEx n, ParamNodeEx p, FlowState state, AccessPathApprox apa, Configuration config
 ) {
   exists(AccessPathApprox apa0 |
-    Stage4::parameterMayFlowThrough(_, c, _, _) and
-    Stage4::revFlow(n, state, true, _, apa0, config) and
-    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TAccessPathApproxSome(apa), apa0, config) and
-    n.getEnclosingCallable() = c
+    Stage4::parameterMayFlowThrough(p, _, _) and
+    Stage4::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
+    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TParamNodeSome(p.asNode()),
+      TAccessPathApproxSome(apa), apa0, config)
   )
 }
 
@@ -2522,9 +2566,9 @@ pragma[nomagic]
 private predicate nodeMayUseSummary(
   NodeEx n, FlowState state, AccessPathApprox apa, Configuration config
 ) {
-  exists(DataFlowCallable c |
-    Stage4::parameterMayFlowThrough(_, c, apa, config) and
-    nodeMayUseSummary0(n, c, state, apa, config)
+  exists(ParamNodeEx p |
+    Stage4::parameterMayFlowThrough(p, apa, config) and
+    nodeMayUseSummary0(n, p, state, apa, config)
   )
 }
 
@@ -2532,7 +2576,7 @@ private newtype TSummaryCtx =
   TSummaryCtxNone() or
   TSummaryCtxSome(ParamNodeEx p, FlowState state, AccessPath ap) {
     exists(Configuration config |
-      Stage4::parameterMayFlowThrough(p, _, ap.getApprox(), config) and
+      Stage4::parameterMayFlowThrough(p, ap.getApprox(), config) and
       Stage4::revFlow(p, state, _, config)
     )
   }
@@ -3453,17 +3497,11 @@ private predicate paramFlowsThrough(
   ReturnKindExt kind, FlowState state, CallContextCall cc, SummaryCtxSome sc, AccessPath ap,
   AccessPathApprox apa, Configuration config
 ) {
-  exists(PathNodeMid mid, RetNodeEx ret, ParameterPosition pos |
+  exists(PathNodeMid mid, RetNodeEx ret |
     pathNode(mid, ret, state, cc, sc, ap, config, _) and
     kind = ret.getKind() and
     apa = ap.getApprox() and
-    pos = sc.getParameterPos() and
-    // we don't expect a parameter to return stored in itself, unless explicitly allowed
-    (
-      not kind.(ParamUpdateReturnKind).getPosition() = pos
-      or
-      sc.getParamNode().allowParameterReturnInSelf()
-    )
+    parameterFlowThroughAllowed(sc.getParamNode().asNode(), kind)
   )
 }
 
diff --git a/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImpl4.qll b/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImpl4.qll
index 3c41b1876dc..a52ad110662 100644
--- a/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImpl4.qll
+++ b/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImpl4.qll
@@ -319,8 +319,6 @@ private class ParamNodeEx extends NodeEx {
   }
 
   ParameterPosition getPosition() { this.isParameterOf(_, result) }
-
-  predicate allowParameterReturnInSelf() { allowParameterReturnInSelfCached(this.asNode()) }
 }
 
 private class RetNodeEx extends NodeEx {
@@ -608,6 +606,21 @@ private predicate hasSinkCallCtx(Configuration config) {
   )
 }
 
+/**
+ * Holds if flow from `p` to a return node of kind `kind` is allowed.
+ *
+ * We don't expect a parameter to return stored in itself, unless
+ * explicitly allowed
+ */
+bindingset[p, kind]
+private predicate parameterFlowThroughAllowed(ParamNode p, ReturnKindExt kind) {
+  exists(ParameterPosition pos | p.isParameterOf(_, pos) |
+    not kind.(ParamUpdateReturnKind).getPosition() = pos
+    or
+    allowParameterReturnInSelfCached(p)
+  )
+}
+
 private module Stage1 implements StageSig {
   class Ap = Unit;
 
@@ -981,21 +994,22 @@ private module Stage1 implements StageSig {
    * candidate for the origin of a summary.
    */
   pragma[nomagic]
-  predicate parameterMayFlowThrough(ParamNodeEx p, DataFlowCallable c, Ap ap, Configuration config) {
-    exists(ReturnKindExt kind |
+  predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
+    exists(DataFlowCallable c, ReturnKindExt kind |
       throughFlowNodeCand(p, config) and
       returnFlowCallableNodeCand(c, kind, config) and
       p.getEnclosingCallable() = c and
       exists(ap) and
-      // we don't expect a parameter to return stored in itself, unless explicitly allowed
-      (
-        not kind.(ParamUpdateReturnKind).getPosition() = p.getPosition()
-        or
-        p.allowParameterReturnInSelf()
-      )
+      parameterFlowThroughAllowed(p.asNode(), kind)
     )
   }
 
+  pragma[nomagic]
+  predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config) {
+    throughFlowNodeCand(ret, config) and
+    pos = ret.getReturnPosition()
+  }
+
   pragma[nomagic]
   predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
     exists(ArgNodeEx arg, boolean toReturn |
@@ -1052,9 +1066,10 @@ private predicate viableReturnPosOutNodeCand1(
  */
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand1(
-  DataFlowCall call, RetNodeEx ret, NodeEx out, Configuration config
+  DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, Configuration config
 ) {
-  viableReturnPosOutNodeCand1(call, ret.getReturnPosition(), out, config) and
+  viableReturnPosOutNodeCand1(call, pos, out, config) and
+  pos = ret.getReturnPosition() and
   Stage1::revFlow(ret, config) and
   not outBarrier(ret, config) and
   not inBarrier(out, config)
@@ -1090,7 +1105,7 @@ private predicate flowIntoCallNodeCand1(
 private int branch(NodeEx n1, Configuration conf) {
   result =
     strictcount(NodeEx n |
-      flowOutOfCallNodeCand1(_, n1, n, conf) or flowIntoCallNodeCand1(_, n1, n, conf)
+      flowOutOfCallNodeCand1(_, n1, _, n, conf) or flowIntoCallNodeCand1(_, n1, n, conf)
     )
 }
 
@@ -1102,7 +1117,7 @@ private int branch(NodeEx n1, Configuration conf) {
 private int join(NodeEx n2, Configuration conf) {
   result =
     strictcount(NodeEx n |
-      flowOutOfCallNodeCand1(_, n, n2, conf) or flowIntoCallNodeCand1(_, n, n2, conf)
+      flowOutOfCallNodeCand1(_, n, _, n2, conf) or flowIntoCallNodeCand1(_, n, n2, conf)
     )
 }
 
@@ -1115,12 +1130,13 @@ private int join(NodeEx n2, Configuration conf) {
  */
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand1(
-  DataFlowCall call, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow, Configuration config
+  DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
+  Configuration config
 ) {
-  flowOutOfCallNodeCand1(call, ret, out, config) and
+  flowOutOfCallNodeCand1(call, ret, pos, out, pragma[only_bind_into](config)) and
   exists(int b, int j |
-    b = branch(ret, config) and
-    j = join(out, config) and
+    b = branch(ret, pragma[only_bind_into](config)) and
+    j = join(out, pragma[only_bind_into](config)) and
     if b.minimum(j) <= config.fieldFlowBranchLimit()
     then allowsFieldFlow = true
     else allowsFieldFlow = false
@@ -1156,7 +1172,9 @@ private signature module StageSig {
 
   predicate callMayFlowThroughRev(DataFlowCall call, Configuration config);
 
-  predicate parameterMayFlowThrough(ParamNodeEx p, DataFlowCallable c, Ap ap, Configuration config);
+  predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config);
+
+  predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config);
 
   predicate storeStepCand(
     NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, DataFlowType contentType,
@@ -1222,7 +1240,8 @@ private module MkStage<StageSig PrevStage> {
     );
 
     predicate flowOutOfCall(
-      DataFlowCall call, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow, Configuration config
+      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
+      Configuration config
     );
 
     predicate flowIntoCall(
@@ -1247,14 +1266,16 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate flowThroughOutOfCall(
-      DataFlowCall call, CcCall ccc, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow,
-      Configuration config
+      DataFlowCall call, CcCall ccc, RetNodeEx ret, ReturnKindExt kind, NodeEx out,
+      boolean allowsFieldFlow, Configuration config
     ) {
-      flowOutOfCall(call, ret, out, allowsFieldFlow, pragma[only_bind_into](config)) and
-      PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
-      PrevStage::parameterMayFlowThrough(_, ret.getEnclosingCallable(), _,
-        pragma[only_bind_into](config)) and
-      matchesCall(ccc, call)
+      exists(ReturnPosition pos |
+        flowOutOfCall(call, ret, pos, out, allowsFieldFlow, pragma[only_bind_into](config)) and
+        kind = pos.getKind() and
+        PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
+        PrevStage::returnMayFlowThrough(ret, pos, pragma[only_bind_into](config)) and
+        matchesCall(ccc, call)
+      )
     }
 
     /**
@@ -1262,29 +1283,32 @@ private module MkStage<StageSig PrevStage> {
      * configuration `config`.
      *
      * The call context `cc` records whether the node is reached through an
-     * argument in a call, and if so, `argAp` records the access path of that
-     * argument.
+     * argument in a call, and if so, `summaryCtx` and `argAp` record the
+     * corresponding parameter and access path of that argument, respectively.
      */
     pragma[nomagic]
     additional predicate fwdFlow(
-      NodeEx node, FlowState state, Cc cc, ApOption argAp, Ap ap, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      Configuration config
     ) {
-      fwdFlow0(node, state, cc, argAp, ap, config) and
+      fwdFlow0(node, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::revFlow(node, state, unbindApa(getApprox(ap)), config) and
       filter(node, state, ap, config)
     }
 
     pragma[nomagic]
     private predicate fwdFlow0(
-      NodeEx node, FlowState state, Cc cc, ApOption argAp, Ap ap, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      Configuration config
     ) {
       sourceNode(node, state, config) and
       (if hasSourceCallCtx(config) then cc = ccSomeCall() else cc = ccNone()) and
       argAp = apNone() and
+      summaryCtx = TParamNodeNone() and
       ap = getApNil(node)
       or
       exists(NodeEx mid, FlowState state0, Ap ap0, LocalCc localCc |
-        fwdFlow(mid, state0, cc, argAp, ap0, config) and
+        fwdFlow(mid, state0, cc, summaryCtx, argAp, ap0, config) and
         localCc = getLocalCc(mid, cc)
       |
         localStep(mid, state0, node, state, true, _, config, localCc) and
@@ -1295,65 +1319,72 @@ private module MkStage<StageSig PrevStage> {
       )
       or
       exists(NodeEx mid |
-        fwdFlow(mid, pragma[only_bind_into](state), _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, pragma[only_bind_into](config)) and
         jumpStep(mid, node, config) and
         cc = ccNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone()
       )
       or
       exists(NodeEx mid, ApNil nil |
-        fwdFlow(mid, state, _, _, nil, pragma[only_bind_into](config)) and
+        fwdFlow(mid, state, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStep(mid, node, config) and
         cc = ccNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone() and
         ap = getApNil(node)
       )
       or
       exists(NodeEx mid, FlowState state0, ApNil nil |
-        fwdFlow(mid, state0, _, _, nil, pragma[only_bind_into](config)) and
+        fwdFlow(mid, state0, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStateStep(mid, state0, node, state, config) and
         cc = ccNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone() and
         ap = getApNil(node)
       )
       or
       // store
       exists(TypedContent tc, Ap ap0 |
-        fwdFlowStore(_, ap0, tc, node, state, cc, argAp, config) and
+        fwdFlowStore(_, ap0, tc, node, state, cc, summaryCtx, argAp, config) and
         ap = apCons(tc, ap0)
       )
       or
       // read
       exists(Ap ap0, Content c |
-        fwdFlowRead(ap0, c, _, node, state, cc, argAp, config) and
+        fwdFlowRead(ap0, c, _, node, state, cc, summaryCtx, argAp, config) and
         fwdFlowConsCand(ap0, c, ap, config)
       )
       or
       // flow into a callable
       exists(ApApprox apa |
-        fwdFlowIn(_, node, state, _, cc, _, ap, config) and
+        fwdFlowIn(_, node, state, _, cc, _, _, ap, config) and
         apa = getApprox(ap) and
-        if PrevStage::parameterMayFlowThrough(node, _, apa, config)
-        then argAp = apSome(ap)
-        else argAp = apNone()
+        if PrevStage::parameterMayFlowThrough(node, apa, config)
+        then (
+          summaryCtx = TParamNodeSome(node.asNode()) and argAp = apSome(ap)
+        ) else (
+          summaryCtx = TParamNodeNone() and argAp = apNone()
+        )
       )
       or
       // flow out of a callable
-      fwdFlowOutNotFromArg(node, state, cc, argAp, ap, config)
+      fwdFlowOutNotFromArg(node, state, cc, summaryCtx, argAp, ap, config)
       or
-      exists(DataFlowCall call, Ap argAp0 |
-        fwdFlowOutFromArg(call, node, state, argAp0, ap, config) and
-        fwdFlowIsEntered(call, cc, argAp, argAp0, config)
+      // flow through a callable
+      exists(DataFlowCall call, ParamNode summaryCtx0, Ap argAp0 |
+        fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, config) and
+        fwdFlowIsEntered(call, cc, summaryCtx, argAp, summaryCtx0, argAp0, config)
       )
     }
 
     pragma[nomagic]
     private predicate fwdFlowStore(
-      NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc, ApOption argAp,
-      Configuration config
+      NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc,
+      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
     ) {
       exists(DataFlowType contentType |
-        fwdFlow(node1, state, cc, argAp, ap1, config) and
+        fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, config) and
         PrevStage::storeStepCand(node1, unbindApa(getApprox(ap1)), tc, node2, contentType, config) and
         typecheckStore(ap1, contentType)
       )
@@ -1366,7 +1397,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowConsCand(Ap cons, Content c, Ap tail, Configuration config) {
       exists(TypedContent tc |
-        fwdFlowStore(_, tail, tc, _, _, _, _, config) and
+        fwdFlowStore(_, tail, tc, _, _, _, _, _, config) and
         tc.getContent() = c and
         cons = apCons(tc, tail)
       )
@@ -1374,21 +1405,21 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowRead(
-      Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc, ApOption argAp,
-      Configuration config
+      Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc,
+      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
     ) {
-      fwdFlow(node1, state, cc, argAp, ap, config) and
+      fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, c, node2, config) and
       getHeadContent(ap) = c
     }
 
     pragma[nomagic]
     private predicate fwdFlowIn(
-      DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, Cc innercc, ApOption argAp,
-      Ap ap, Configuration config
+      DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, Cc innercc,
+      ParamNodeOption summaryCtx, ApOption argAp, Ap ap, Configuration config
     ) {
       exists(ArgNodeEx arg, boolean allowsFieldFlow |
-        fwdFlow(arg, state, outercc, argAp, ap, config) and
+        fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, config) and
         flowIntoCall(call, arg, p, allowsFieldFlow, config) and
         innercc = getCallContextCall(call, p.getEnclosingCallable(), outercc) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
@@ -1397,14 +1428,15 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowOutNotFromArg(
-      NodeEx out, FlowState state, Cc ccOut, ApOption argAp, Ap ap, Configuration config
+      NodeEx out, FlowState state, Cc ccOut, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      Configuration config
     ) {
       exists(
         DataFlowCall call, RetNodeEx ret, boolean allowsFieldFlow, CcNoCall innercc,
         DataFlowCallable inner
       |
-        fwdFlow(ret, state, innercc, argAp, ap, config) and
-        flowOutOfCall(call, ret, out, allowsFieldFlow, config) and
+        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, config) and
+        flowOutOfCall(call, ret, _, out, allowsFieldFlow, config) and
         inner = ret.getEnclosingCallable() and
         ccOut = getCallContextReturn(inner, call, innercc) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
@@ -1413,12 +1445,14 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowOutFromArg(
-      DataFlowCall call, NodeEx out, FlowState state, Ap argAp, Ap ap, Configuration config
+      DataFlowCall call, NodeEx out, FlowState state, ParamNode summaryCtx, Ap argAp, Ap ap,
+      Configuration config
     ) {
-      exists(RetNodeEx ret, boolean allowsFieldFlow, CcCall ccc |
-        fwdFlow(ret, state, ccc, apSome(argAp), ap, config) and
-        flowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, config) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
+      exists(RetNodeEx ret, ReturnKindExt kind, boolean allowsFieldFlow, CcCall ccc |
+        fwdFlow(ret, state, ccc, TParamNodeSome(summaryCtx), apSome(argAp), ap, config) and
+        flowThroughOutOfCall(call, ccc, ret, kind, out, allowsFieldFlow, config) and
+        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
+        parameterFlowThroughAllowed(summaryCtx, kind)
       )
     }
 
@@ -1428,11 +1462,13 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate fwdFlowIsEntered(
-      DataFlowCall call, Cc cc, ApOption argAp, Ap ap, Configuration config
+      DataFlowCall call, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, ParamNode p, Ap ap,
+      Configuration config
     ) {
-      exists(ParamNodeEx p |
-        fwdFlowIn(call, p, _, cc, _, argAp, ap, config) and
-        PrevStage::parameterMayFlowThrough(p, _, unbindApa(getApprox(ap)), config)
+      exists(ParamNodeEx param |
+        fwdFlowIn(call, param, _, cc, _, summaryCtx, argAp, ap, config) and
+        PrevStage::parameterMayFlowThrough(param, unbindApa(getApprox(ap)), config) and
+        p = param.asNode()
       )
     }
 
@@ -1440,146 +1476,149 @@ private module MkStage<StageSig PrevStage> {
     private predicate storeStepFwd(
       NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, Ap ap2, Configuration config
     ) {
-      fwdFlowStore(node1, ap1, tc, node2, _, _, _, config) and
+      fwdFlowStore(node1, ap1, tc, node2, _, _, _, _, config) and
       ap2 = apCons(tc, ap1) and
-      fwdFlowRead(ap2, tc.getContent(), _, _, _, _, _, config)
+      fwdFlowRead(ap2, tc.getContent(), _, _, _, _, _, _, config)
     }
 
     private predicate readStepFwd(
       NodeEx n1, Ap ap1, Content c, NodeEx n2, Ap ap2, Configuration config
     ) {
-      fwdFlowRead(ap1, c, n1, n2, _, _, _, config) and
+      fwdFlowRead(ap1, c, n1, n2, _, _, _, _, config) and
       fwdFlowConsCand(ap1, c, ap2, config)
     }
 
     pragma[nomagic]
-    private predicate callMayFlowThroughFwd(DataFlowCall call, Configuration config) {
-      exists(Ap argAp0, NodeEx out, FlowState state, Cc cc, ApOption argAp, Ap ap |
-        fwdFlow(out, state, pragma[only_bind_into](cc), pragma[only_bind_into](argAp), ap,
-          pragma[only_bind_into](config)) and
-        fwdFlowOutFromArg(call, out, state, argAp0, ap, config) and
-        fwdFlowIsEntered(pragma[only_bind_into](call), pragma[only_bind_into](cc),
-          pragma[only_bind_into](argAp), pragma[only_bind_into](argAp0),
-          pragma[only_bind_into](config))
-      )
+    private predicate returnFlowsThrough(
+      RetNodeEx ret, ReturnPosition pos, FlowState state, CcCall ccc, ParamNode p, Ap argAp, Ap ap,
+      Configuration config
+    ) {
+      fwdFlow(ret, state, ccc, TParamNodeSome(p), apSome(argAp), ap, config) and
+      pos = ret.getReturnPosition() and
+      parameterFlowThroughAllowed(p, pos.getKind())
     }
 
     pragma[nomagic]
     private predicate flowThroughIntoCall(
       DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
     ) {
-      flowIntoCall(call, arg, p, allowsFieldFlow, config) and
-      fwdFlow(arg, _, _, _, _, pragma[only_bind_into](config)) and
-      PrevStage::parameterMayFlowThrough(p, _, _, pragma[only_bind_into](config)) and
-      callMayFlowThroughFwd(call, pragma[only_bind_into](config))
-    }
-
-    pragma[nomagic]
-    private predicate returnNodeMayFlowThrough(
-      RetNodeEx ret, FlowState state, Ap ap, Configuration config
-    ) {
-      fwdFlow(ret, state, any(CcCall ccc), apSome(_), ap, config)
+      flowIntoCall(call, pragma[only_bind_into](arg), pragma[only_bind_into](p), allowsFieldFlow,
+        pragma[only_bind_into](config)) and
+      fwdFlow(arg, _, _, _, _, _, pragma[only_bind_into](config)) and
+      returnFlowsThrough(_, _, _, _, p.asNode(), _, _, pragma[only_bind_into](config))
     }
 
     /**
      * Holds if `node` with access path `ap` is part of a path from a source to a
      * sink in the configuration `config`.
      *
-     * The Boolean `toReturn` records whether the node must be returned from the
-     * enclosing callable in order to reach a sink, and if so, `returnAp` records
-     * the access path of the returned value.
+     * The parameter `returnCtx` records whether (and how) the node must be returned
+     * from the enclosing callable in order to reach a sink, and if so, `returnAp`
+     * records the access path of the returned value.
      */
     pragma[nomagic]
     additional predicate revFlow(
-      NodeEx node, FlowState state, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
+      NodeEx node, FlowState state, ReturnCtx returnCtx, ApOption returnAp, Ap ap,
+      Configuration config
     ) {
-      revFlow0(node, state, toReturn, returnAp, ap, config) and
-      fwdFlow(node, state, _, _, ap, config)
+      revFlow0(node, state, returnCtx, returnAp, ap, config) and
+      fwdFlow(node, state, _, _, _, ap, config)
     }
 
     pragma[nomagic]
     private predicate revFlow0(
-      NodeEx node, FlowState state, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
+      NodeEx node, FlowState state, ReturnCtx returnCtx, ApOption returnAp, Ap ap,
+      Configuration config
     ) {
-      fwdFlow(node, state, _, _, ap, config) and
+      fwdFlow(node, state, _, _, _, ap, config) and
       sinkNode(node, state, config) and
-      (if hasSinkCallCtx(config) then toReturn = true else toReturn = false) and
+      (
+        if hasSinkCallCtx(config)
+        then returnCtx = TReturnCtxNoFlowThrough()
+        else returnCtx = TReturnCtxNone()
+      ) and
       returnAp = apNone() and
       ap instanceof ApNil
       or
       exists(NodeEx mid, FlowState state0 |
         localStep(node, state, mid, state0, true, _, config, _) and
-        revFlow(mid, state0, toReturn, returnAp, ap, config)
+        revFlow(mid, state0, returnCtx, returnAp, ap, config)
       )
       or
       exists(NodeEx mid, FlowState state0, ApNil nil |
-        fwdFlow(node, pragma[only_bind_into](state), _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(node, pragma[only_bind_into](state), _, _, _, ap, pragma[only_bind_into](config)) and
         localStep(node, pragma[only_bind_into](state), mid, state0, false, _, config, _) and
-        revFlow(mid, state0, toReturn, returnAp, nil, pragma[only_bind_into](config)) and
+        revFlow(mid, state0, returnCtx, returnAp, nil, pragma[only_bind_into](config)) and
         ap instanceof ApNil
       )
       or
       exists(NodeEx mid |
         jumpStep(node, mid, config) and
         revFlow(mid, state, _, _, ap, config) and
-        toReturn = false and
+        returnCtx = TReturnCtxNone() and
         returnAp = apNone()
       )
       or
       exists(NodeEx mid, ApNil nil |
-        fwdFlow(node, _, _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(node, _, _, _, _, ap, pragma[only_bind_into](config)) and
         additionalJumpStep(node, mid, config) and
         revFlow(pragma[only_bind_into](mid), state, _, _, nil, pragma[only_bind_into](config)) and
-        toReturn = false and
+        returnCtx = TReturnCtxNone() and
         returnAp = apNone() and
         ap instanceof ApNil
       )
       or
       exists(NodeEx mid, FlowState state0, ApNil nil |
-        fwdFlow(node, _, _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(node, _, _, _, _, ap, pragma[only_bind_into](config)) and
         additionalJumpStateStep(node, state, mid, state0, config) and
         revFlow(pragma[only_bind_into](mid), pragma[only_bind_into](state0), _, _, nil,
           pragma[only_bind_into](config)) and
-        toReturn = false and
+        returnCtx = TReturnCtxNone() and
         returnAp = apNone() and
         ap instanceof ApNil
       )
       or
       // store
       exists(Ap ap0, Content c |
-        revFlowStore(ap0, c, ap, node, state, _, _, toReturn, returnAp, config) and
+        revFlowStore(ap0, c, ap, node, state, _, _, returnCtx, returnAp, config) and
         revFlowConsCand(ap0, c, ap, config)
       )
       or
       // read
       exists(NodeEx mid, Ap ap0 |
-        revFlow(mid, state, toReturn, returnAp, ap0, config) and
+        revFlow(mid, state, returnCtx, returnAp, ap0, config) and
         readStepFwd(node, ap, _, mid, ap0, config)
       )
       or
       // flow into a callable
       revFlowInNotToReturn(node, state, returnAp, ap, config) and
-      toReturn = false
+      returnCtx = TReturnCtxNone()
       or
-      exists(DataFlowCall call, Ap returnAp0 |
-        revFlowInToReturn(call, node, state, returnAp0, ap, config) and
-        revFlowIsReturned(call, toReturn, returnAp, returnAp0, config)
+      // flow through a callable
+      exists(DataFlowCall call, ReturnPosition returnPos0, Ap returnAp0 |
+        revFlowInToReturn(call, node, state, returnPos0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnPos0, returnAp0, config)
       )
       or
       // flow out of a callable
-      revFlowOut(_, node, state, _, _, ap, config) and
-      toReturn = true and
-      if returnNodeMayFlowThrough(node, state, ap, config)
-      then returnAp = apSome(ap)
-      else returnAp = apNone()
+      exists(ReturnPosition pos |
+        revFlowOut(_, node, pos, state, _, _, ap, config) and
+        if returnFlowsThrough(node, pos, state, _, _, _, ap, config)
+        then (
+          returnCtx = TReturnCtxMaybeFlowThrough(pos) and
+          returnAp = apSome(ap)
+        ) else (
+          returnCtx = TReturnCtxNoFlowThrough() and returnAp = apNone()
+        )
+      )
     }
 
     pragma[nomagic]
     private predicate revFlowStore(
       Ap ap0, Content c, Ap ap, NodeEx node, FlowState state, TypedContent tc, NodeEx mid,
-      boolean toReturn, ApOption returnAp, Configuration config
+      ReturnCtx returnCtx, ApOption returnAp, Configuration config
     ) {
-      revFlow(mid, state, toReturn, returnAp, ap0, config) and
+      revFlow(mid, state, returnCtx, returnAp, ap0, config) and
       storeStepFwd(node, ap, tc, mid, ap0, config) and
       tc.getContent() = c
     }
@@ -1599,12 +1638,12 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate revFlowOut(
-      DataFlowCall call, RetNodeEx ret, FlowState state, boolean toReturn, ApOption returnAp, Ap ap,
-      Configuration config
+      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, FlowState state, ReturnCtx returnCtx,
+      ApOption returnAp, Ap ap, Configuration config
     ) {
       exists(NodeEx out, boolean allowsFieldFlow |
-        revFlow(out, state, toReturn, returnAp, ap, config) and
-        flowOutOfCall(call, ret, out, allowsFieldFlow, config) and
+        revFlow(out, state, returnCtx, returnAp, ap, config) and
+        flowOutOfCall(call, ret, pos, out, allowsFieldFlow, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
@@ -1614,7 +1653,7 @@ private module MkStage<StageSig PrevStage> {
       ArgNodeEx arg, FlowState state, ApOption returnAp, Ap ap, Configuration config
     ) {
       exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(p, state, false, returnAp, ap, config) and
+        revFlow(p, state, TReturnCtxNone(), returnAp, ap, config) and
         flowIntoCall(_, arg, p, allowsFieldFlow, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
@@ -1622,12 +1661,14 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate revFlowInToReturn(
-      DataFlowCall call, ArgNodeEx arg, FlowState state, Ap returnAp, Ap ap, Configuration config
+      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnPosition returnPos, Ap returnAp,
+      Ap ap, Configuration config
     ) {
       exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(p, state, true, apSome(returnAp), ap, config) and
+        revFlow(p, state, TReturnCtxMaybeFlowThrough(returnPos), apSome(returnAp), ap, config) and
         flowThroughIntoCall(call, arg, p, allowsFieldFlow, config) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
+        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
+        parameterFlowThroughAllowed(p.asNode(), returnPos.getKind())
       )
     }
 
@@ -1638,11 +1679,12 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate revFlowIsReturned(
-      DataFlowCall call, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
+      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnPosition pos, Ap ap,
+      Configuration config
     ) {
       exists(RetNodeEx ret, FlowState state, CcCall ccc |
-        revFlowOut(call, ret, state, toReturn, returnAp, ap, config) and
-        fwdFlow(ret, state, ccc, apSome(_), ap, config) and
+        revFlowOut(call, ret, pos, state, returnCtx, returnAp, ap, config) and
+        returnFlowsThrough(ret, pos, state, ccc, _, _, ap, config) and
         matchesCall(ccc, call)
       )
     }
@@ -1713,40 +1755,39 @@ private module MkStage<StageSig PrevStage> {
       validAp(ap, config)
     }
 
-    pragma[noinline]
-    private predicate parameterFlow(
-      ParamNodeEx p, Ap ap, Ap ap0, DataFlowCallable c, Configuration config
+    pragma[nomagic]
+    private predicate parameterFlowsThroughRev(
+      ParamNodeEx p, Ap ap, ReturnPosition returnPos, Configuration config
     ) {
-      revFlow(p, _, true, apSome(ap0), ap, config) and
-      c = p.getEnclosingCallable()
+      revFlow(p, _, TReturnCtxMaybeFlowThrough(returnPos), apSome(_), ap, config) and
+      parameterFlowThroughAllowed(p.asNode(), returnPos.getKind())
     }
 
-    predicate parameterMayFlowThrough(ParamNodeEx p, DataFlowCallable c, Ap ap, Configuration config) {
-      exists(RetNodeEx ret, FlowState state, Ap ap0, ReturnKindExt kind, ParameterPosition pos |
-        parameterFlow(p, ap, ap0, c, config) and
-        c = ret.getEnclosingCallable() and
-        revFlow(pragma[only_bind_into](ret), pragma[only_bind_into](state), true, apSome(_),
-          pragma[only_bind_into](ap0), pragma[only_bind_into](config)) and
-        fwdFlow(ret, state, any(CcCall ccc), apSome(ap), ap0, config) and
-        kind = ret.getKind() and
-        p.getPosition() = pos and
-        // we don't expect a parameter to return stored in itself, unless explicitly allowed
-        (
-          not kind.(ParamUpdateReturnKind).getPosition() = pos
-          or
-          p.allowParameterReturnInSelf()
-        )
+    pragma[nomagic]
+    predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
+      exists(RetNodeEx ret, ReturnPosition pos |
+        returnFlowsThrough(ret, pos, _, _, p.asNode(), ap, _, config) and
+        parameterFlowsThroughRev(p, ap, pos, config)
+      )
+    }
+
+    pragma[nomagic]
+    predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config) {
+      exists(ParamNodeEx p, Ap ap |
+        returnFlowsThrough(ret, pos, _, _, p.asNode(), ap, _, config) and
+        parameterFlowsThroughRev(p, ap, pos, config)
       )
     }
 
     pragma[nomagic]
     predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
       exists(
-        Ap returnAp0, ArgNodeEx arg, FlowState state, boolean toReturn, ApOption returnAp, Ap ap
+        ReturnPosition returnPos0, Ap returnAp0, ArgNodeEx arg, FlowState state,
+        ReturnCtx returnCtx, ApOption returnAp, Ap ap
       |
-        revFlow(arg, state, toReturn, returnAp, ap, config) and
-        revFlowInToReturn(call, arg, state, returnAp0, ap, config) and
-        revFlowIsReturned(call, toReturn, returnAp, returnAp0, config)
+        revFlow(arg, state, returnCtx, returnAp, ap, config) and
+        revFlowInToReturn(call, arg, state, returnPos0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnPos0, returnAp0, config)
       )
     }
 
@@ -1754,13 +1795,13 @@ private module MkStage<StageSig PrevStage> {
       boolean fwd, int nodes, int fields, int conscand, int states, int tuples, Configuration config
     ) {
       fwd = true and
-      nodes = count(NodeEx node | fwdFlow(node, _, _, _, _, config)) and
+      nodes = count(NodeEx node | fwdFlow(node, _, _, _, _, _, config)) and
       fields = count(TypedContent f0 | fwdConsCand(f0, _, config)) and
       conscand = count(TypedContent f0, Ap ap | fwdConsCand(f0, ap, config)) and
-      states = count(FlowState state | fwdFlow(_, state, _, _, _, config)) and
+      states = count(FlowState state | fwdFlow(_, state, _, _, _, _, config)) and
       tuples =
-        count(NodeEx n, FlowState state, Cc cc, ApOption argAp, Ap ap |
-          fwdFlow(n, state, cc, argAp, ap, config)
+        count(NodeEx n, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap |
+          fwdFlow(n, state, cc, summaryCtx, argAp, ap, config)
         )
       or
       fwd = false and
@@ -1769,8 +1810,8 @@ private module MkStage<StageSig PrevStage> {
       conscand = count(TypedContent f0, Ap ap | consCand(f0, ap, config)) and
       states = count(FlowState state | revFlow(_, state, _, _, _, config)) and
       tuples =
-        count(NodeEx n, FlowState state, boolean b, ApOption retAp, Ap ap |
-          revFlow(n, state, b, retAp, ap, config)
+        count(NodeEx n, FlowState state, ReturnCtx returnCtx, ApOption retAp, Ap ap |
+          revFlow(n, state, returnCtx, retAp, ap, config)
         )
     }
     /* End: Stage logic. */
@@ -1915,7 +1956,7 @@ private module Stage2Param implements MkStage<Stage1>::StageParam {
     exists(lcc)
   }
 
-  predicate flowOutOfCall = flowOutOfCallNodeCand1/5;
+  predicate flowOutOfCall = flowOutOfCallNodeCand1/6;
 
   predicate flowIntoCall = flowIntoCallNodeCand1/5;
 
@@ -1951,9 +1992,10 @@ private module Stage2 implements StageSig {
 
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand2(
-  DataFlowCall call, RetNodeEx node1, NodeEx node2, boolean allowsFieldFlow, Configuration config
+  DataFlowCall call, RetNodeEx node1, ReturnPosition pos, NodeEx node2, boolean allowsFieldFlow,
+  Configuration config
 ) {
-  flowOutOfCallNodeCand1(call, node1, node2, allowsFieldFlow, config) and
+  flowOutOfCallNodeCand1(call, node1, pos, node2, allowsFieldFlow, config) and
   Stage2::revFlow(node2, pragma[only_bind_into](config)) and
   Stage2::revFlowAlias(node1, pragma[only_bind_into](config))
 }
@@ -2021,8 +2063,8 @@ private module LocalFlowBigStep {
     exists(NodeEx next | Stage2::revFlow(next, state, config) |
       jumpStep(node, next, config) or
       additionalJumpStep(node, next, config) or
-      flowIntoCallNodeCand1(_, node, next, config) or
-      flowOutOfCallNodeCand1(_, node, next, config) or
+      flowIntoCallNodeCand2(_, node, next, _, config) or
+      flowOutOfCallNodeCand2(_, node, _, next, _, config) or
       Stage2::storeStepCand(node, _, _, next, _, config) or
       Stage2::readStepCand(node, _, next, config)
     )
@@ -2163,7 +2205,7 @@ private module Stage3Param implements MkStage<Stage2>::StageParam {
     localFlowBigStep(node1, state1, node2, state2, preservesValue, ap, config, _) and exists(lcc)
   }
 
-  predicate flowOutOfCall = flowOutOfCallNodeCand2/5;
+  predicate flowOutOfCall = flowOutOfCallNodeCand2/6;
 
   predicate flowIntoCall = flowIntoCallNodeCand2/5;
 
@@ -2233,8 +2275,9 @@ private predicate flowCandSummaryCtx(
   NodeEx node, FlowState state, AccessPathFront argApf, Configuration config
 ) {
   exists(AccessPathFront apf |
-    Stage3::revFlow(node, state, true, _, apf, config) and
-    Stage3::fwdFlow(node, state, any(Stage3::CcCall ccc), TAccessPathFrontSome(argApf), apf, config)
+    Stage3::revFlow(node, state, TReturnCtxMaybeFlowThrough(_), _, apf, config) and
+    Stage3::fwdFlow(node, state, any(Stage3::CcCall ccc), _, TAccessPathFrontSome(argApf), apf,
+      config)
   )
 }
 
@@ -2468,10 +2511,11 @@ private module Stage4Param implements MkStage<Stage3>::StageParam {
 
   pragma[nomagic]
   predicate flowOutOfCall(
-    DataFlowCall call, RetNodeEx node1, NodeEx node2, boolean allowsFieldFlow, Configuration config
+    DataFlowCall call, RetNodeEx node1, ReturnPosition pos, NodeEx node2, boolean allowsFieldFlow,
+    Configuration config
   ) {
     exists(FlowState state |
-      flowOutOfCallNodeCand2(call, node1, node2, allowsFieldFlow, config) and
+      flowOutOfCallNodeCand2(call, node1, pos, node2, allowsFieldFlow, config) and
       PrevStage::revFlow(node2, pragma[only_bind_into](state), _, pragma[only_bind_into](config)) and
       PrevStage::revFlowAlias(node1, pragma[only_bind_into](state), _,
         pragma[only_bind_into](config))
@@ -2508,13 +2552,13 @@ private Configuration unbindConf(Configuration conf) {
 
 pragma[nomagic]
 private predicate nodeMayUseSummary0(
-  NodeEx n, DataFlowCallable c, FlowState state, AccessPathApprox apa, Configuration config
+  NodeEx n, ParamNodeEx p, FlowState state, AccessPathApprox apa, Configuration config
 ) {
   exists(AccessPathApprox apa0 |
-    Stage4::parameterMayFlowThrough(_, c, _, _) and
-    Stage4::revFlow(n, state, true, _, apa0, config) and
-    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TAccessPathApproxSome(apa), apa0, config) and
-    n.getEnclosingCallable() = c
+    Stage4::parameterMayFlowThrough(p, _, _) and
+    Stage4::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
+    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TParamNodeSome(p.asNode()),
+      TAccessPathApproxSome(apa), apa0, config)
   )
 }
 
@@ -2522,9 +2566,9 @@ pragma[nomagic]
 private predicate nodeMayUseSummary(
   NodeEx n, FlowState state, AccessPathApprox apa, Configuration config
 ) {
-  exists(DataFlowCallable c |
-    Stage4::parameterMayFlowThrough(_, c, apa, config) and
-    nodeMayUseSummary0(n, c, state, apa, config)
+  exists(ParamNodeEx p |
+    Stage4::parameterMayFlowThrough(p, apa, config) and
+    nodeMayUseSummary0(n, p, state, apa, config)
   )
 }
 
@@ -2532,7 +2576,7 @@ private newtype TSummaryCtx =
   TSummaryCtxNone() or
   TSummaryCtxSome(ParamNodeEx p, FlowState state, AccessPath ap) {
     exists(Configuration config |
-      Stage4::parameterMayFlowThrough(p, _, ap.getApprox(), config) and
+      Stage4::parameterMayFlowThrough(p, ap.getApprox(), config) and
       Stage4::revFlow(p, state, _, config)
     )
   }
@@ -3453,17 +3497,11 @@ private predicate paramFlowsThrough(
   ReturnKindExt kind, FlowState state, CallContextCall cc, SummaryCtxSome sc, AccessPath ap,
   AccessPathApprox apa, Configuration config
 ) {
-  exists(PathNodeMid mid, RetNodeEx ret, ParameterPosition pos |
+  exists(PathNodeMid mid, RetNodeEx ret |
     pathNode(mid, ret, state, cc, sc, ap, config, _) and
     kind = ret.getKind() and
     apa = ap.getApprox() and
-    pos = sc.getParameterPos() and
-    // we don't expect a parameter to return stored in itself, unless explicitly allowed
-    (
-      not kind.(ParamUpdateReturnKind).getPosition() = pos
-      or
-      sc.getParamNode().allowParameterReturnInSelf()
-    )
+    parameterFlowThroughAllowed(sc.getParamNode().asNode(), kind)
   )
 }
 
diff --git a/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImpl5.qll b/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImpl5.qll
index 3c41b1876dc..a52ad110662 100644
--- a/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImpl5.qll
+++ b/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImpl5.qll
@@ -319,8 +319,6 @@ private class ParamNodeEx extends NodeEx {
   }
 
   ParameterPosition getPosition() { this.isParameterOf(_, result) }
-
-  predicate allowParameterReturnInSelf() { allowParameterReturnInSelfCached(this.asNode()) }
 }
 
 private class RetNodeEx extends NodeEx {
@@ -608,6 +606,21 @@ private predicate hasSinkCallCtx(Configuration config) {
   )
 }
 
+/**
+ * Holds if flow from `p` to a return node of kind `kind` is allowed.
+ *
+ * We don't expect a parameter to return stored in itself, unless
+ * explicitly allowed
+ */
+bindingset[p, kind]
+private predicate parameterFlowThroughAllowed(ParamNode p, ReturnKindExt kind) {
+  exists(ParameterPosition pos | p.isParameterOf(_, pos) |
+    not kind.(ParamUpdateReturnKind).getPosition() = pos
+    or
+    allowParameterReturnInSelfCached(p)
+  )
+}
+
 private module Stage1 implements StageSig {
   class Ap = Unit;
 
@@ -981,21 +994,22 @@ private module Stage1 implements StageSig {
    * candidate for the origin of a summary.
    */
   pragma[nomagic]
-  predicate parameterMayFlowThrough(ParamNodeEx p, DataFlowCallable c, Ap ap, Configuration config) {
-    exists(ReturnKindExt kind |
+  predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
+    exists(DataFlowCallable c, ReturnKindExt kind |
       throughFlowNodeCand(p, config) and
       returnFlowCallableNodeCand(c, kind, config) and
       p.getEnclosingCallable() = c and
       exists(ap) and
-      // we don't expect a parameter to return stored in itself, unless explicitly allowed
-      (
-        not kind.(ParamUpdateReturnKind).getPosition() = p.getPosition()
-        or
-        p.allowParameterReturnInSelf()
-      )
+      parameterFlowThroughAllowed(p.asNode(), kind)
     )
   }
 
+  pragma[nomagic]
+  predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config) {
+    throughFlowNodeCand(ret, config) and
+    pos = ret.getReturnPosition()
+  }
+
   pragma[nomagic]
   predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
     exists(ArgNodeEx arg, boolean toReturn |
@@ -1052,9 +1066,10 @@ private predicate viableReturnPosOutNodeCand1(
  */
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand1(
-  DataFlowCall call, RetNodeEx ret, NodeEx out, Configuration config
+  DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, Configuration config
 ) {
-  viableReturnPosOutNodeCand1(call, ret.getReturnPosition(), out, config) and
+  viableReturnPosOutNodeCand1(call, pos, out, config) and
+  pos = ret.getReturnPosition() and
   Stage1::revFlow(ret, config) and
   not outBarrier(ret, config) and
   not inBarrier(out, config)
@@ -1090,7 +1105,7 @@ private predicate flowIntoCallNodeCand1(
 private int branch(NodeEx n1, Configuration conf) {
   result =
     strictcount(NodeEx n |
-      flowOutOfCallNodeCand1(_, n1, n, conf) or flowIntoCallNodeCand1(_, n1, n, conf)
+      flowOutOfCallNodeCand1(_, n1, _, n, conf) or flowIntoCallNodeCand1(_, n1, n, conf)
     )
 }
 
@@ -1102,7 +1117,7 @@ private int branch(NodeEx n1, Configuration conf) {
 private int join(NodeEx n2, Configuration conf) {
   result =
     strictcount(NodeEx n |
-      flowOutOfCallNodeCand1(_, n, n2, conf) or flowIntoCallNodeCand1(_, n, n2, conf)
+      flowOutOfCallNodeCand1(_, n, _, n2, conf) or flowIntoCallNodeCand1(_, n, n2, conf)
     )
 }
 
@@ -1115,12 +1130,13 @@ private int join(NodeEx n2, Configuration conf) {
  */
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand1(
-  DataFlowCall call, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow, Configuration config
+  DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
+  Configuration config
 ) {
-  flowOutOfCallNodeCand1(call, ret, out, config) and
+  flowOutOfCallNodeCand1(call, ret, pos, out, pragma[only_bind_into](config)) and
   exists(int b, int j |
-    b = branch(ret, config) and
-    j = join(out, config) and
+    b = branch(ret, pragma[only_bind_into](config)) and
+    j = join(out, pragma[only_bind_into](config)) and
     if b.minimum(j) <= config.fieldFlowBranchLimit()
     then allowsFieldFlow = true
     else allowsFieldFlow = false
@@ -1156,7 +1172,9 @@ private signature module StageSig {
 
   predicate callMayFlowThroughRev(DataFlowCall call, Configuration config);
 
-  predicate parameterMayFlowThrough(ParamNodeEx p, DataFlowCallable c, Ap ap, Configuration config);
+  predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config);
+
+  predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config);
 
   predicate storeStepCand(
     NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, DataFlowType contentType,
@@ -1222,7 +1240,8 @@ private module MkStage<StageSig PrevStage> {
     );
 
     predicate flowOutOfCall(
-      DataFlowCall call, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow, Configuration config
+      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
+      Configuration config
     );
 
     predicate flowIntoCall(
@@ -1247,14 +1266,16 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate flowThroughOutOfCall(
-      DataFlowCall call, CcCall ccc, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow,
-      Configuration config
+      DataFlowCall call, CcCall ccc, RetNodeEx ret, ReturnKindExt kind, NodeEx out,
+      boolean allowsFieldFlow, Configuration config
     ) {
-      flowOutOfCall(call, ret, out, allowsFieldFlow, pragma[only_bind_into](config)) and
-      PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
-      PrevStage::parameterMayFlowThrough(_, ret.getEnclosingCallable(), _,
-        pragma[only_bind_into](config)) and
-      matchesCall(ccc, call)
+      exists(ReturnPosition pos |
+        flowOutOfCall(call, ret, pos, out, allowsFieldFlow, pragma[only_bind_into](config)) and
+        kind = pos.getKind() and
+        PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
+        PrevStage::returnMayFlowThrough(ret, pos, pragma[only_bind_into](config)) and
+        matchesCall(ccc, call)
+      )
     }
 
     /**
@@ -1262,29 +1283,32 @@ private module MkStage<StageSig PrevStage> {
      * configuration `config`.
      *
      * The call context `cc` records whether the node is reached through an
-     * argument in a call, and if so, `argAp` records the access path of that
-     * argument.
+     * argument in a call, and if so, `summaryCtx` and `argAp` record the
+     * corresponding parameter and access path of that argument, respectively.
      */
     pragma[nomagic]
     additional predicate fwdFlow(
-      NodeEx node, FlowState state, Cc cc, ApOption argAp, Ap ap, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      Configuration config
     ) {
-      fwdFlow0(node, state, cc, argAp, ap, config) and
+      fwdFlow0(node, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::revFlow(node, state, unbindApa(getApprox(ap)), config) and
       filter(node, state, ap, config)
     }
 
     pragma[nomagic]
     private predicate fwdFlow0(
-      NodeEx node, FlowState state, Cc cc, ApOption argAp, Ap ap, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      Configuration config
     ) {
       sourceNode(node, state, config) and
       (if hasSourceCallCtx(config) then cc = ccSomeCall() else cc = ccNone()) and
       argAp = apNone() and
+      summaryCtx = TParamNodeNone() and
       ap = getApNil(node)
       or
       exists(NodeEx mid, FlowState state0, Ap ap0, LocalCc localCc |
-        fwdFlow(mid, state0, cc, argAp, ap0, config) and
+        fwdFlow(mid, state0, cc, summaryCtx, argAp, ap0, config) and
         localCc = getLocalCc(mid, cc)
       |
         localStep(mid, state0, node, state, true, _, config, localCc) and
@@ -1295,65 +1319,72 @@ private module MkStage<StageSig PrevStage> {
       )
       or
       exists(NodeEx mid |
-        fwdFlow(mid, pragma[only_bind_into](state), _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, pragma[only_bind_into](config)) and
         jumpStep(mid, node, config) and
         cc = ccNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone()
       )
       or
       exists(NodeEx mid, ApNil nil |
-        fwdFlow(mid, state, _, _, nil, pragma[only_bind_into](config)) and
+        fwdFlow(mid, state, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStep(mid, node, config) and
         cc = ccNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone() and
         ap = getApNil(node)
       )
       or
       exists(NodeEx mid, FlowState state0, ApNil nil |
-        fwdFlow(mid, state0, _, _, nil, pragma[only_bind_into](config)) and
+        fwdFlow(mid, state0, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStateStep(mid, state0, node, state, config) and
         cc = ccNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone() and
         ap = getApNil(node)
       )
       or
       // store
       exists(TypedContent tc, Ap ap0 |
-        fwdFlowStore(_, ap0, tc, node, state, cc, argAp, config) and
+        fwdFlowStore(_, ap0, tc, node, state, cc, summaryCtx, argAp, config) and
         ap = apCons(tc, ap0)
       )
       or
       // read
       exists(Ap ap0, Content c |
-        fwdFlowRead(ap0, c, _, node, state, cc, argAp, config) and
+        fwdFlowRead(ap0, c, _, node, state, cc, summaryCtx, argAp, config) and
         fwdFlowConsCand(ap0, c, ap, config)
       )
       or
       // flow into a callable
       exists(ApApprox apa |
-        fwdFlowIn(_, node, state, _, cc, _, ap, config) and
+        fwdFlowIn(_, node, state, _, cc, _, _, ap, config) and
         apa = getApprox(ap) and
-        if PrevStage::parameterMayFlowThrough(node, _, apa, config)
-        then argAp = apSome(ap)
-        else argAp = apNone()
+        if PrevStage::parameterMayFlowThrough(node, apa, config)
+        then (
+          summaryCtx = TParamNodeSome(node.asNode()) and argAp = apSome(ap)
+        ) else (
+          summaryCtx = TParamNodeNone() and argAp = apNone()
+        )
       )
       or
       // flow out of a callable
-      fwdFlowOutNotFromArg(node, state, cc, argAp, ap, config)
+      fwdFlowOutNotFromArg(node, state, cc, summaryCtx, argAp, ap, config)
       or
-      exists(DataFlowCall call, Ap argAp0 |
-        fwdFlowOutFromArg(call, node, state, argAp0, ap, config) and
-        fwdFlowIsEntered(call, cc, argAp, argAp0, config)
+      // flow through a callable
+      exists(DataFlowCall call, ParamNode summaryCtx0, Ap argAp0 |
+        fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, config) and
+        fwdFlowIsEntered(call, cc, summaryCtx, argAp, summaryCtx0, argAp0, config)
       )
     }
 
     pragma[nomagic]
     private predicate fwdFlowStore(
-      NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc, ApOption argAp,
-      Configuration config
+      NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc,
+      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
     ) {
       exists(DataFlowType contentType |
-        fwdFlow(node1, state, cc, argAp, ap1, config) and
+        fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, config) and
         PrevStage::storeStepCand(node1, unbindApa(getApprox(ap1)), tc, node2, contentType, config) and
         typecheckStore(ap1, contentType)
       )
@@ -1366,7 +1397,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowConsCand(Ap cons, Content c, Ap tail, Configuration config) {
       exists(TypedContent tc |
-        fwdFlowStore(_, tail, tc, _, _, _, _, config) and
+        fwdFlowStore(_, tail, tc, _, _, _, _, _, config) and
         tc.getContent() = c and
         cons = apCons(tc, tail)
       )
@@ -1374,21 +1405,21 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowRead(
-      Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc, ApOption argAp,
-      Configuration config
+      Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc,
+      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
     ) {
-      fwdFlow(node1, state, cc, argAp, ap, config) and
+      fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, c, node2, config) and
       getHeadContent(ap) = c
     }
 
     pragma[nomagic]
     private predicate fwdFlowIn(
-      DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, Cc innercc, ApOption argAp,
-      Ap ap, Configuration config
+      DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, Cc innercc,
+      ParamNodeOption summaryCtx, ApOption argAp, Ap ap, Configuration config
     ) {
       exists(ArgNodeEx arg, boolean allowsFieldFlow |
-        fwdFlow(arg, state, outercc, argAp, ap, config) and
+        fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, config) and
         flowIntoCall(call, arg, p, allowsFieldFlow, config) and
         innercc = getCallContextCall(call, p.getEnclosingCallable(), outercc) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
@@ -1397,14 +1428,15 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowOutNotFromArg(
-      NodeEx out, FlowState state, Cc ccOut, ApOption argAp, Ap ap, Configuration config
+      NodeEx out, FlowState state, Cc ccOut, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      Configuration config
     ) {
       exists(
         DataFlowCall call, RetNodeEx ret, boolean allowsFieldFlow, CcNoCall innercc,
         DataFlowCallable inner
       |
-        fwdFlow(ret, state, innercc, argAp, ap, config) and
-        flowOutOfCall(call, ret, out, allowsFieldFlow, config) and
+        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, config) and
+        flowOutOfCall(call, ret, _, out, allowsFieldFlow, config) and
         inner = ret.getEnclosingCallable() and
         ccOut = getCallContextReturn(inner, call, innercc) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
@@ -1413,12 +1445,14 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowOutFromArg(
-      DataFlowCall call, NodeEx out, FlowState state, Ap argAp, Ap ap, Configuration config
+      DataFlowCall call, NodeEx out, FlowState state, ParamNode summaryCtx, Ap argAp, Ap ap,
+      Configuration config
     ) {
-      exists(RetNodeEx ret, boolean allowsFieldFlow, CcCall ccc |
-        fwdFlow(ret, state, ccc, apSome(argAp), ap, config) and
-        flowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, config) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
+      exists(RetNodeEx ret, ReturnKindExt kind, boolean allowsFieldFlow, CcCall ccc |
+        fwdFlow(ret, state, ccc, TParamNodeSome(summaryCtx), apSome(argAp), ap, config) and
+        flowThroughOutOfCall(call, ccc, ret, kind, out, allowsFieldFlow, config) and
+        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
+        parameterFlowThroughAllowed(summaryCtx, kind)
       )
     }
 
@@ -1428,11 +1462,13 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate fwdFlowIsEntered(
-      DataFlowCall call, Cc cc, ApOption argAp, Ap ap, Configuration config
+      DataFlowCall call, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, ParamNode p, Ap ap,
+      Configuration config
     ) {
-      exists(ParamNodeEx p |
-        fwdFlowIn(call, p, _, cc, _, argAp, ap, config) and
-        PrevStage::parameterMayFlowThrough(p, _, unbindApa(getApprox(ap)), config)
+      exists(ParamNodeEx param |
+        fwdFlowIn(call, param, _, cc, _, summaryCtx, argAp, ap, config) and
+        PrevStage::parameterMayFlowThrough(param, unbindApa(getApprox(ap)), config) and
+        p = param.asNode()
       )
     }
 
@@ -1440,146 +1476,149 @@ private module MkStage<StageSig PrevStage> {
     private predicate storeStepFwd(
       NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, Ap ap2, Configuration config
     ) {
-      fwdFlowStore(node1, ap1, tc, node2, _, _, _, config) and
+      fwdFlowStore(node1, ap1, tc, node2, _, _, _, _, config) and
       ap2 = apCons(tc, ap1) and
-      fwdFlowRead(ap2, tc.getContent(), _, _, _, _, _, config)
+      fwdFlowRead(ap2, tc.getContent(), _, _, _, _, _, _, config)
     }
 
     private predicate readStepFwd(
       NodeEx n1, Ap ap1, Content c, NodeEx n2, Ap ap2, Configuration config
     ) {
-      fwdFlowRead(ap1, c, n1, n2, _, _, _, config) and
+      fwdFlowRead(ap1, c, n1, n2, _, _, _, _, config) and
       fwdFlowConsCand(ap1, c, ap2, config)
     }
 
     pragma[nomagic]
-    private predicate callMayFlowThroughFwd(DataFlowCall call, Configuration config) {
-      exists(Ap argAp0, NodeEx out, FlowState state, Cc cc, ApOption argAp, Ap ap |
-        fwdFlow(out, state, pragma[only_bind_into](cc), pragma[only_bind_into](argAp), ap,
-          pragma[only_bind_into](config)) and
-        fwdFlowOutFromArg(call, out, state, argAp0, ap, config) and
-        fwdFlowIsEntered(pragma[only_bind_into](call), pragma[only_bind_into](cc),
-          pragma[only_bind_into](argAp), pragma[only_bind_into](argAp0),
-          pragma[only_bind_into](config))
-      )
+    private predicate returnFlowsThrough(
+      RetNodeEx ret, ReturnPosition pos, FlowState state, CcCall ccc, ParamNode p, Ap argAp, Ap ap,
+      Configuration config
+    ) {
+      fwdFlow(ret, state, ccc, TParamNodeSome(p), apSome(argAp), ap, config) and
+      pos = ret.getReturnPosition() and
+      parameterFlowThroughAllowed(p, pos.getKind())
     }
 
     pragma[nomagic]
     private predicate flowThroughIntoCall(
       DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
     ) {
-      flowIntoCall(call, arg, p, allowsFieldFlow, config) and
-      fwdFlow(arg, _, _, _, _, pragma[only_bind_into](config)) and
-      PrevStage::parameterMayFlowThrough(p, _, _, pragma[only_bind_into](config)) and
-      callMayFlowThroughFwd(call, pragma[only_bind_into](config))
-    }
-
-    pragma[nomagic]
-    private predicate returnNodeMayFlowThrough(
-      RetNodeEx ret, FlowState state, Ap ap, Configuration config
-    ) {
-      fwdFlow(ret, state, any(CcCall ccc), apSome(_), ap, config)
+      flowIntoCall(call, pragma[only_bind_into](arg), pragma[only_bind_into](p), allowsFieldFlow,
+        pragma[only_bind_into](config)) and
+      fwdFlow(arg, _, _, _, _, _, pragma[only_bind_into](config)) and
+      returnFlowsThrough(_, _, _, _, p.asNode(), _, _, pragma[only_bind_into](config))
     }
 
     /**
      * Holds if `node` with access path `ap` is part of a path from a source to a
      * sink in the configuration `config`.
      *
-     * The Boolean `toReturn` records whether the node must be returned from the
-     * enclosing callable in order to reach a sink, and if so, `returnAp` records
-     * the access path of the returned value.
+     * The parameter `returnCtx` records whether (and how) the node must be returned
+     * from the enclosing callable in order to reach a sink, and if so, `returnAp`
+     * records the access path of the returned value.
      */
     pragma[nomagic]
     additional predicate revFlow(
-      NodeEx node, FlowState state, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
+      NodeEx node, FlowState state, ReturnCtx returnCtx, ApOption returnAp, Ap ap,
+      Configuration config
     ) {
-      revFlow0(node, state, toReturn, returnAp, ap, config) and
-      fwdFlow(node, state, _, _, ap, config)
+      revFlow0(node, state, returnCtx, returnAp, ap, config) and
+      fwdFlow(node, state, _, _, _, ap, config)
     }
 
     pragma[nomagic]
     private predicate revFlow0(
-      NodeEx node, FlowState state, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
+      NodeEx node, FlowState state, ReturnCtx returnCtx, ApOption returnAp, Ap ap,
+      Configuration config
     ) {
-      fwdFlow(node, state, _, _, ap, config) and
+      fwdFlow(node, state, _, _, _, ap, config) and
       sinkNode(node, state, config) and
-      (if hasSinkCallCtx(config) then toReturn = true else toReturn = false) and
+      (
+        if hasSinkCallCtx(config)
+        then returnCtx = TReturnCtxNoFlowThrough()
+        else returnCtx = TReturnCtxNone()
+      ) and
       returnAp = apNone() and
       ap instanceof ApNil
       or
       exists(NodeEx mid, FlowState state0 |
         localStep(node, state, mid, state0, true, _, config, _) and
-        revFlow(mid, state0, toReturn, returnAp, ap, config)
+        revFlow(mid, state0, returnCtx, returnAp, ap, config)
       )
       or
       exists(NodeEx mid, FlowState state0, ApNil nil |
-        fwdFlow(node, pragma[only_bind_into](state), _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(node, pragma[only_bind_into](state), _, _, _, ap, pragma[only_bind_into](config)) and
         localStep(node, pragma[only_bind_into](state), mid, state0, false, _, config, _) and
-        revFlow(mid, state0, toReturn, returnAp, nil, pragma[only_bind_into](config)) and
+        revFlow(mid, state0, returnCtx, returnAp, nil, pragma[only_bind_into](config)) and
         ap instanceof ApNil
       )
       or
       exists(NodeEx mid |
         jumpStep(node, mid, config) and
         revFlow(mid, state, _, _, ap, config) and
-        toReturn = false and
+        returnCtx = TReturnCtxNone() and
         returnAp = apNone()
       )
       or
       exists(NodeEx mid, ApNil nil |
-        fwdFlow(node, _, _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(node, _, _, _, _, ap, pragma[only_bind_into](config)) and
         additionalJumpStep(node, mid, config) and
         revFlow(pragma[only_bind_into](mid), state, _, _, nil, pragma[only_bind_into](config)) and
-        toReturn = false and
+        returnCtx = TReturnCtxNone() and
         returnAp = apNone() and
         ap instanceof ApNil
       )
       or
       exists(NodeEx mid, FlowState state0, ApNil nil |
-        fwdFlow(node, _, _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(node, _, _, _, _, ap, pragma[only_bind_into](config)) and
         additionalJumpStateStep(node, state, mid, state0, config) and
         revFlow(pragma[only_bind_into](mid), pragma[only_bind_into](state0), _, _, nil,
           pragma[only_bind_into](config)) and
-        toReturn = false and
+        returnCtx = TReturnCtxNone() and
         returnAp = apNone() and
         ap instanceof ApNil
       )
       or
       // store
       exists(Ap ap0, Content c |
-        revFlowStore(ap0, c, ap, node, state, _, _, toReturn, returnAp, config) and
+        revFlowStore(ap0, c, ap, node, state, _, _, returnCtx, returnAp, config) and
         revFlowConsCand(ap0, c, ap, config)
       )
       or
       // read
       exists(NodeEx mid, Ap ap0 |
-        revFlow(mid, state, toReturn, returnAp, ap0, config) and
+        revFlow(mid, state, returnCtx, returnAp, ap0, config) and
         readStepFwd(node, ap, _, mid, ap0, config)
       )
       or
       // flow into a callable
       revFlowInNotToReturn(node, state, returnAp, ap, config) and
-      toReturn = false
+      returnCtx = TReturnCtxNone()
       or
-      exists(DataFlowCall call, Ap returnAp0 |
-        revFlowInToReturn(call, node, state, returnAp0, ap, config) and
-        revFlowIsReturned(call, toReturn, returnAp, returnAp0, config)
+      // flow through a callable
+      exists(DataFlowCall call, ReturnPosition returnPos0, Ap returnAp0 |
+        revFlowInToReturn(call, node, state, returnPos0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnPos0, returnAp0, config)
       )
       or
       // flow out of a callable
-      revFlowOut(_, node, state, _, _, ap, config) and
-      toReturn = true and
-      if returnNodeMayFlowThrough(node, state, ap, config)
-      then returnAp = apSome(ap)
-      else returnAp = apNone()
+      exists(ReturnPosition pos |
+        revFlowOut(_, node, pos, state, _, _, ap, config) and
+        if returnFlowsThrough(node, pos, state, _, _, _, ap, config)
+        then (
+          returnCtx = TReturnCtxMaybeFlowThrough(pos) and
+          returnAp = apSome(ap)
+        ) else (
+          returnCtx = TReturnCtxNoFlowThrough() and returnAp = apNone()
+        )
+      )
     }
 
     pragma[nomagic]
     private predicate revFlowStore(
       Ap ap0, Content c, Ap ap, NodeEx node, FlowState state, TypedContent tc, NodeEx mid,
-      boolean toReturn, ApOption returnAp, Configuration config
+      ReturnCtx returnCtx, ApOption returnAp, Configuration config
     ) {
-      revFlow(mid, state, toReturn, returnAp, ap0, config) and
+      revFlow(mid, state, returnCtx, returnAp, ap0, config) and
       storeStepFwd(node, ap, tc, mid, ap0, config) and
       tc.getContent() = c
     }
@@ -1599,12 +1638,12 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate revFlowOut(
-      DataFlowCall call, RetNodeEx ret, FlowState state, boolean toReturn, ApOption returnAp, Ap ap,
-      Configuration config
+      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, FlowState state, ReturnCtx returnCtx,
+      ApOption returnAp, Ap ap, Configuration config
     ) {
       exists(NodeEx out, boolean allowsFieldFlow |
-        revFlow(out, state, toReturn, returnAp, ap, config) and
-        flowOutOfCall(call, ret, out, allowsFieldFlow, config) and
+        revFlow(out, state, returnCtx, returnAp, ap, config) and
+        flowOutOfCall(call, ret, pos, out, allowsFieldFlow, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
@@ -1614,7 +1653,7 @@ private module MkStage<StageSig PrevStage> {
       ArgNodeEx arg, FlowState state, ApOption returnAp, Ap ap, Configuration config
     ) {
       exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(p, state, false, returnAp, ap, config) and
+        revFlow(p, state, TReturnCtxNone(), returnAp, ap, config) and
         flowIntoCall(_, arg, p, allowsFieldFlow, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
@@ -1622,12 +1661,14 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate revFlowInToReturn(
-      DataFlowCall call, ArgNodeEx arg, FlowState state, Ap returnAp, Ap ap, Configuration config
+      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnPosition returnPos, Ap returnAp,
+      Ap ap, Configuration config
     ) {
       exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(p, state, true, apSome(returnAp), ap, config) and
+        revFlow(p, state, TReturnCtxMaybeFlowThrough(returnPos), apSome(returnAp), ap, config) and
         flowThroughIntoCall(call, arg, p, allowsFieldFlow, config) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
+        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
+        parameterFlowThroughAllowed(p.asNode(), returnPos.getKind())
       )
     }
 
@@ -1638,11 +1679,12 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate revFlowIsReturned(
-      DataFlowCall call, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
+      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnPosition pos, Ap ap,
+      Configuration config
     ) {
       exists(RetNodeEx ret, FlowState state, CcCall ccc |
-        revFlowOut(call, ret, state, toReturn, returnAp, ap, config) and
-        fwdFlow(ret, state, ccc, apSome(_), ap, config) and
+        revFlowOut(call, ret, pos, state, returnCtx, returnAp, ap, config) and
+        returnFlowsThrough(ret, pos, state, ccc, _, _, ap, config) and
         matchesCall(ccc, call)
       )
     }
@@ -1713,40 +1755,39 @@ private module MkStage<StageSig PrevStage> {
       validAp(ap, config)
     }
 
-    pragma[noinline]
-    private predicate parameterFlow(
-      ParamNodeEx p, Ap ap, Ap ap0, DataFlowCallable c, Configuration config
+    pragma[nomagic]
+    private predicate parameterFlowsThroughRev(
+      ParamNodeEx p, Ap ap, ReturnPosition returnPos, Configuration config
     ) {
-      revFlow(p, _, true, apSome(ap0), ap, config) and
-      c = p.getEnclosingCallable()
+      revFlow(p, _, TReturnCtxMaybeFlowThrough(returnPos), apSome(_), ap, config) and
+      parameterFlowThroughAllowed(p.asNode(), returnPos.getKind())
     }
 
-    predicate parameterMayFlowThrough(ParamNodeEx p, DataFlowCallable c, Ap ap, Configuration config) {
-      exists(RetNodeEx ret, FlowState state, Ap ap0, ReturnKindExt kind, ParameterPosition pos |
-        parameterFlow(p, ap, ap0, c, config) and
-        c = ret.getEnclosingCallable() and
-        revFlow(pragma[only_bind_into](ret), pragma[only_bind_into](state), true, apSome(_),
-          pragma[only_bind_into](ap0), pragma[only_bind_into](config)) and
-        fwdFlow(ret, state, any(CcCall ccc), apSome(ap), ap0, config) and
-        kind = ret.getKind() and
-        p.getPosition() = pos and
-        // we don't expect a parameter to return stored in itself, unless explicitly allowed
-        (
-          not kind.(ParamUpdateReturnKind).getPosition() = pos
-          or
-          p.allowParameterReturnInSelf()
-        )
+    pragma[nomagic]
+    predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
+      exists(RetNodeEx ret, ReturnPosition pos |
+        returnFlowsThrough(ret, pos, _, _, p.asNode(), ap, _, config) and
+        parameterFlowsThroughRev(p, ap, pos, config)
+      )
+    }
+
+    pragma[nomagic]
+    predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config) {
+      exists(ParamNodeEx p, Ap ap |
+        returnFlowsThrough(ret, pos, _, _, p.asNode(), ap, _, config) and
+        parameterFlowsThroughRev(p, ap, pos, config)
       )
     }
 
     pragma[nomagic]
     predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
       exists(
-        Ap returnAp0, ArgNodeEx arg, FlowState state, boolean toReturn, ApOption returnAp, Ap ap
+        ReturnPosition returnPos0, Ap returnAp0, ArgNodeEx arg, FlowState state,
+        ReturnCtx returnCtx, ApOption returnAp, Ap ap
       |
-        revFlow(arg, state, toReturn, returnAp, ap, config) and
-        revFlowInToReturn(call, arg, state, returnAp0, ap, config) and
-        revFlowIsReturned(call, toReturn, returnAp, returnAp0, config)
+        revFlow(arg, state, returnCtx, returnAp, ap, config) and
+        revFlowInToReturn(call, arg, state, returnPos0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnPos0, returnAp0, config)
       )
     }
 
@@ -1754,13 +1795,13 @@ private module MkStage<StageSig PrevStage> {
       boolean fwd, int nodes, int fields, int conscand, int states, int tuples, Configuration config
     ) {
       fwd = true and
-      nodes = count(NodeEx node | fwdFlow(node, _, _, _, _, config)) and
+      nodes = count(NodeEx node | fwdFlow(node, _, _, _, _, _, config)) and
       fields = count(TypedContent f0 | fwdConsCand(f0, _, config)) and
       conscand = count(TypedContent f0, Ap ap | fwdConsCand(f0, ap, config)) and
-      states = count(FlowState state | fwdFlow(_, state, _, _, _, config)) and
+      states = count(FlowState state | fwdFlow(_, state, _, _, _, _, config)) and
       tuples =
-        count(NodeEx n, FlowState state, Cc cc, ApOption argAp, Ap ap |
-          fwdFlow(n, state, cc, argAp, ap, config)
+        count(NodeEx n, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap |
+          fwdFlow(n, state, cc, summaryCtx, argAp, ap, config)
         )
       or
       fwd = false and
@@ -1769,8 +1810,8 @@ private module MkStage<StageSig PrevStage> {
       conscand = count(TypedContent f0, Ap ap | consCand(f0, ap, config)) and
       states = count(FlowState state | revFlow(_, state, _, _, _, config)) and
       tuples =
-        count(NodeEx n, FlowState state, boolean b, ApOption retAp, Ap ap |
-          revFlow(n, state, b, retAp, ap, config)
+        count(NodeEx n, FlowState state, ReturnCtx returnCtx, ApOption retAp, Ap ap |
+          revFlow(n, state, returnCtx, retAp, ap, config)
         )
     }
     /* End: Stage logic. */
@@ -1915,7 +1956,7 @@ private module Stage2Param implements MkStage<Stage1>::StageParam {
     exists(lcc)
   }
 
-  predicate flowOutOfCall = flowOutOfCallNodeCand1/5;
+  predicate flowOutOfCall = flowOutOfCallNodeCand1/6;
 
   predicate flowIntoCall = flowIntoCallNodeCand1/5;
 
@@ -1951,9 +1992,10 @@ private module Stage2 implements StageSig {
 
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand2(
-  DataFlowCall call, RetNodeEx node1, NodeEx node2, boolean allowsFieldFlow, Configuration config
+  DataFlowCall call, RetNodeEx node1, ReturnPosition pos, NodeEx node2, boolean allowsFieldFlow,
+  Configuration config
 ) {
-  flowOutOfCallNodeCand1(call, node1, node2, allowsFieldFlow, config) and
+  flowOutOfCallNodeCand1(call, node1, pos, node2, allowsFieldFlow, config) and
   Stage2::revFlow(node2, pragma[only_bind_into](config)) and
   Stage2::revFlowAlias(node1, pragma[only_bind_into](config))
 }
@@ -2021,8 +2063,8 @@ private module LocalFlowBigStep {
     exists(NodeEx next | Stage2::revFlow(next, state, config) |
       jumpStep(node, next, config) or
       additionalJumpStep(node, next, config) or
-      flowIntoCallNodeCand1(_, node, next, config) or
-      flowOutOfCallNodeCand1(_, node, next, config) or
+      flowIntoCallNodeCand2(_, node, next, _, config) or
+      flowOutOfCallNodeCand2(_, node, _, next, _, config) or
       Stage2::storeStepCand(node, _, _, next, _, config) or
       Stage2::readStepCand(node, _, next, config)
     )
@@ -2163,7 +2205,7 @@ private module Stage3Param implements MkStage<Stage2>::StageParam {
     localFlowBigStep(node1, state1, node2, state2, preservesValue, ap, config, _) and exists(lcc)
   }
 
-  predicate flowOutOfCall = flowOutOfCallNodeCand2/5;
+  predicate flowOutOfCall = flowOutOfCallNodeCand2/6;
 
   predicate flowIntoCall = flowIntoCallNodeCand2/5;
 
@@ -2233,8 +2275,9 @@ private predicate flowCandSummaryCtx(
   NodeEx node, FlowState state, AccessPathFront argApf, Configuration config
 ) {
   exists(AccessPathFront apf |
-    Stage3::revFlow(node, state, true, _, apf, config) and
-    Stage3::fwdFlow(node, state, any(Stage3::CcCall ccc), TAccessPathFrontSome(argApf), apf, config)
+    Stage3::revFlow(node, state, TReturnCtxMaybeFlowThrough(_), _, apf, config) and
+    Stage3::fwdFlow(node, state, any(Stage3::CcCall ccc), _, TAccessPathFrontSome(argApf), apf,
+      config)
   )
 }
 
@@ -2468,10 +2511,11 @@ private module Stage4Param implements MkStage<Stage3>::StageParam {
 
   pragma[nomagic]
   predicate flowOutOfCall(
-    DataFlowCall call, RetNodeEx node1, NodeEx node2, boolean allowsFieldFlow, Configuration config
+    DataFlowCall call, RetNodeEx node1, ReturnPosition pos, NodeEx node2, boolean allowsFieldFlow,
+    Configuration config
   ) {
     exists(FlowState state |
-      flowOutOfCallNodeCand2(call, node1, node2, allowsFieldFlow, config) and
+      flowOutOfCallNodeCand2(call, node1, pos, node2, allowsFieldFlow, config) and
       PrevStage::revFlow(node2, pragma[only_bind_into](state), _, pragma[only_bind_into](config)) and
       PrevStage::revFlowAlias(node1, pragma[only_bind_into](state), _,
         pragma[only_bind_into](config))
@@ -2508,13 +2552,13 @@ private Configuration unbindConf(Configuration conf) {
 
 pragma[nomagic]
 private predicate nodeMayUseSummary0(
-  NodeEx n, DataFlowCallable c, FlowState state, AccessPathApprox apa, Configuration config
+  NodeEx n, ParamNodeEx p, FlowState state, AccessPathApprox apa, Configuration config
 ) {
   exists(AccessPathApprox apa0 |
-    Stage4::parameterMayFlowThrough(_, c, _, _) and
-    Stage4::revFlow(n, state, true, _, apa0, config) and
-    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TAccessPathApproxSome(apa), apa0, config) and
-    n.getEnclosingCallable() = c
+    Stage4::parameterMayFlowThrough(p, _, _) and
+    Stage4::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
+    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TParamNodeSome(p.asNode()),
+      TAccessPathApproxSome(apa), apa0, config)
   )
 }
 
@@ -2522,9 +2566,9 @@ pragma[nomagic]
 private predicate nodeMayUseSummary(
   NodeEx n, FlowState state, AccessPathApprox apa, Configuration config
 ) {
-  exists(DataFlowCallable c |
-    Stage4::parameterMayFlowThrough(_, c, apa, config) and
-    nodeMayUseSummary0(n, c, state, apa, config)
+  exists(ParamNodeEx p |
+    Stage4::parameterMayFlowThrough(p, apa, config) and
+    nodeMayUseSummary0(n, p, state, apa, config)
   )
 }
 
@@ -2532,7 +2576,7 @@ private newtype TSummaryCtx =
   TSummaryCtxNone() or
   TSummaryCtxSome(ParamNodeEx p, FlowState state, AccessPath ap) {
     exists(Configuration config |
-      Stage4::parameterMayFlowThrough(p, _, ap.getApprox(), config) and
+      Stage4::parameterMayFlowThrough(p, ap.getApprox(), config) and
       Stage4::revFlow(p, state, _, config)
     )
   }
@@ -3453,17 +3497,11 @@ private predicate paramFlowsThrough(
   ReturnKindExt kind, FlowState state, CallContextCall cc, SummaryCtxSome sc, AccessPath ap,
   AccessPathApprox apa, Configuration config
 ) {
-  exists(PathNodeMid mid, RetNodeEx ret, ParameterPosition pos |
+  exists(PathNodeMid mid, RetNodeEx ret |
     pathNode(mid, ret, state, cc, sc, ap, config, _) and
     kind = ret.getKind() and
     apa = ap.getApprox() and
-    pos = sc.getParameterPos() and
-    // we don't expect a parameter to return stored in itself, unless explicitly allowed
-    (
-      not kind.(ParamUpdateReturnKind).getPosition() = pos
-      or
-      sc.getParamNode().allowParameterReturnInSelf()
-    )
+    parameterFlowThroughAllowed(sc.getParamNode().asNode(), kind)
   )
 }
 
diff --git a/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImplCommon.qll b/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImplCommon.qll
index ae9c6f3f12e..621ed34f9d0 100644
--- a/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImplCommon.qll
+++ b/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImplCommon.qll
@@ -915,6 +915,17 @@ private module Cached {
     TDataFlowCallNone() or
     TDataFlowCallSome(DataFlowCall call)
 
+  cached
+  newtype TParamNodeOption =
+    TParamNodeNone() or
+    TParamNodeSome(ParamNode p)
+
+  cached
+  newtype TReturnCtx =
+    TReturnCtxNone() or
+    TReturnCtxNoFlowThrough() or
+    TReturnCtxMaybeFlowThrough(ReturnPosition pos)
+
   cached
   newtype TTypedContent = MkTypedContent(Content c, DataFlowType t) { store(_, c, _, _, t) }
 
@@ -1304,6 +1315,44 @@ class DataFlowCallOption extends TDataFlowCallOption {
   }
 }
 
+/** An optional `ParamNode`. */
+class ParamNodeOption extends TParamNodeOption {
+  string toString() {
+    this = TParamNodeNone() and
+    result = "(none)"
+    or
+    exists(ParamNode p |
+      this = TParamNodeSome(p) and
+      result = p.toString()
+    )
+  }
+}
+
+/**
+ * A return context used to calculate flow summaries in reverse flow.
+ *
+ * The possible values are:
+ *
+ * - `TReturnCtxNone()`: no return flow.
+ * - `TReturnCtxNoFlowThrough()`: return flow, but flow through is not possible.
+ * - `TReturnCtxMaybeFlowThrough(ReturnPosition pos)`: return flow, of kind `pos`, and
+ *    flow through may be possible.
+ */
+class ReturnCtx extends TReturnCtx {
+  string toString() {
+    this = TReturnCtxNone() and
+    result = "(none)"
+    or
+    this = TReturnCtxNoFlowThrough() and
+    result = "(no flow through)"
+    or
+    exists(ReturnPosition pos |
+      this = TReturnCtxMaybeFlowThrough(pos) and
+      result = pos.toString()
+    )
+  }
+}
+
 /** A `Content` tagged with the type of a containing object. */
 class TypedContent extends MkTypedContent {
   private Content c;
diff --git a/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImplForContentDataFlow.qll b/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImplForContentDataFlow.qll
index 3c41b1876dc..a52ad110662 100644
--- a/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImplForContentDataFlow.qll
+++ b/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImplForContentDataFlow.qll
@@ -319,8 +319,6 @@ private class ParamNodeEx extends NodeEx {
   }
 
   ParameterPosition getPosition() { this.isParameterOf(_, result) }
-
-  predicate allowParameterReturnInSelf() { allowParameterReturnInSelfCached(this.asNode()) }
 }
 
 private class RetNodeEx extends NodeEx {
@@ -608,6 +606,21 @@ private predicate hasSinkCallCtx(Configuration config) {
   )
 }
 
+/**
+ * Holds if flow from `p` to a return node of kind `kind` is allowed.
+ *
+ * We don't expect a parameter to return stored in itself, unless
+ * explicitly allowed
+ */
+bindingset[p, kind]
+private predicate parameterFlowThroughAllowed(ParamNode p, ReturnKindExt kind) {
+  exists(ParameterPosition pos | p.isParameterOf(_, pos) |
+    not kind.(ParamUpdateReturnKind).getPosition() = pos
+    or
+    allowParameterReturnInSelfCached(p)
+  )
+}
+
 private module Stage1 implements StageSig {
   class Ap = Unit;
 
@@ -981,21 +994,22 @@ private module Stage1 implements StageSig {
    * candidate for the origin of a summary.
    */
   pragma[nomagic]
-  predicate parameterMayFlowThrough(ParamNodeEx p, DataFlowCallable c, Ap ap, Configuration config) {
-    exists(ReturnKindExt kind |
+  predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
+    exists(DataFlowCallable c, ReturnKindExt kind |
       throughFlowNodeCand(p, config) and
       returnFlowCallableNodeCand(c, kind, config) and
       p.getEnclosingCallable() = c and
       exists(ap) and
-      // we don't expect a parameter to return stored in itself, unless explicitly allowed
-      (
-        not kind.(ParamUpdateReturnKind).getPosition() = p.getPosition()
-        or
-        p.allowParameterReturnInSelf()
-      )
+      parameterFlowThroughAllowed(p.asNode(), kind)
     )
   }
 
+  pragma[nomagic]
+  predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config) {
+    throughFlowNodeCand(ret, config) and
+    pos = ret.getReturnPosition()
+  }
+
   pragma[nomagic]
   predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
     exists(ArgNodeEx arg, boolean toReturn |
@@ -1052,9 +1066,10 @@ private predicate viableReturnPosOutNodeCand1(
  */
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand1(
-  DataFlowCall call, RetNodeEx ret, NodeEx out, Configuration config
+  DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, Configuration config
 ) {
-  viableReturnPosOutNodeCand1(call, ret.getReturnPosition(), out, config) and
+  viableReturnPosOutNodeCand1(call, pos, out, config) and
+  pos = ret.getReturnPosition() and
   Stage1::revFlow(ret, config) and
   not outBarrier(ret, config) and
   not inBarrier(out, config)
@@ -1090,7 +1105,7 @@ private predicate flowIntoCallNodeCand1(
 private int branch(NodeEx n1, Configuration conf) {
   result =
     strictcount(NodeEx n |
-      flowOutOfCallNodeCand1(_, n1, n, conf) or flowIntoCallNodeCand1(_, n1, n, conf)
+      flowOutOfCallNodeCand1(_, n1, _, n, conf) or flowIntoCallNodeCand1(_, n1, n, conf)
     )
 }
 
@@ -1102,7 +1117,7 @@ private int branch(NodeEx n1, Configuration conf) {
 private int join(NodeEx n2, Configuration conf) {
   result =
     strictcount(NodeEx n |
-      flowOutOfCallNodeCand1(_, n, n2, conf) or flowIntoCallNodeCand1(_, n, n2, conf)
+      flowOutOfCallNodeCand1(_, n, _, n2, conf) or flowIntoCallNodeCand1(_, n, n2, conf)
     )
 }
 
@@ -1115,12 +1130,13 @@ private int join(NodeEx n2, Configuration conf) {
  */
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand1(
-  DataFlowCall call, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow, Configuration config
+  DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
+  Configuration config
 ) {
-  flowOutOfCallNodeCand1(call, ret, out, config) and
+  flowOutOfCallNodeCand1(call, ret, pos, out, pragma[only_bind_into](config)) and
   exists(int b, int j |
-    b = branch(ret, config) and
-    j = join(out, config) and
+    b = branch(ret, pragma[only_bind_into](config)) and
+    j = join(out, pragma[only_bind_into](config)) and
     if b.minimum(j) <= config.fieldFlowBranchLimit()
     then allowsFieldFlow = true
     else allowsFieldFlow = false
@@ -1156,7 +1172,9 @@ private signature module StageSig {
 
   predicate callMayFlowThroughRev(DataFlowCall call, Configuration config);
 
-  predicate parameterMayFlowThrough(ParamNodeEx p, DataFlowCallable c, Ap ap, Configuration config);
+  predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config);
+
+  predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config);
 
   predicate storeStepCand(
     NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, DataFlowType contentType,
@@ -1222,7 +1240,8 @@ private module MkStage<StageSig PrevStage> {
     );
 
     predicate flowOutOfCall(
-      DataFlowCall call, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow, Configuration config
+      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
+      Configuration config
     );
 
     predicate flowIntoCall(
@@ -1247,14 +1266,16 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate flowThroughOutOfCall(
-      DataFlowCall call, CcCall ccc, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow,
-      Configuration config
+      DataFlowCall call, CcCall ccc, RetNodeEx ret, ReturnKindExt kind, NodeEx out,
+      boolean allowsFieldFlow, Configuration config
     ) {
-      flowOutOfCall(call, ret, out, allowsFieldFlow, pragma[only_bind_into](config)) and
-      PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
-      PrevStage::parameterMayFlowThrough(_, ret.getEnclosingCallable(), _,
-        pragma[only_bind_into](config)) and
-      matchesCall(ccc, call)
+      exists(ReturnPosition pos |
+        flowOutOfCall(call, ret, pos, out, allowsFieldFlow, pragma[only_bind_into](config)) and
+        kind = pos.getKind() and
+        PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
+        PrevStage::returnMayFlowThrough(ret, pos, pragma[only_bind_into](config)) and
+        matchesCall(ccc, call)
+      )
     }
 
     /**
@@ -1262,29 +1283,32 @@ private module MkStage<StageSig PrevStage> {
      * configuration `config`.
      *
      * The call context `cc` records whether the node is reached through an
-     * argument in a call, and if so, `argAp` records the access path of that
-     * argument.
+     * argument in a call, and if so, `summaryCtx` and `argAp` record the
+     * corresponding parameter and access path of that argument, respectively.
      */
     pragma[nomagic]
     additional predicate fwdFlow(
-      NodeEx node, FlowState state, Cc cc, ApOption argAp, Ap ap, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      Configuration config
     ) {
-      fwdFlow0(node, state, cc, argAp, ap, config) and
+      fwdFlow0(node, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::revFlow(node, state, unbindApa(getApprox(ap)), config) and
       filter(node, state, ap, config)
     }
 
     pragma[nomagic]
     private predicate fwdFlow0(
-      NodeEx node, FlowState state, Cc cc, ApOption argAp, Ap ap, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      Configuration config
     ) {
       sourceNode(node, state, config) and
       (if hasSourceCallCtx(config) then cc = ccSomeCall() else cc = ccNone()) and
       argAp = apNone() and
+      summaryCtx = TParamNodeNone() and
       ap = getApNil(node)
       or
       exists(NodeEx mid, FlowState state0, Ap ap0, LocalCc localCc |
-        fwdFlow(mid, state0, cc, argAp, ap0, config) and
+        fwdFlow(mid, state0, cc, summaryCtx, argAp, ap0, config) and
         localCc = getLocalCc(mid, cc)
       |
         localStep(mid, state0, node, state, true, _, config, localCc) and
@@ -1295,65 +1319,72 @@ private module MkStage<StageSig PrevStage> {
       )
       or
       exists(NodeEx mid |
-        fwdFlow(mid, pragma[only_bind_into](state), _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, pragma[only_bind_into](config)) and
         jumpStep(mid, node, config) and
         cc = ccNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone()
       )
       or
       exists(NodeEx mid, ApNil nil |
-        fwdFlow(mid, state, _, _, nil, pragma[only_bind_into](config)) and
+        fwdFlow(mid, state, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStep(mid, node, config) and
         cc = ccNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone() and
         ap = getApNil(node)
       )
       or
       exists(NodeEx mid, FlowState state0, ApNil nil |
-        fwdFlow(mid, state0, _, _, nil, pragma[only_bind_into](config)) and
+        fwdFlow(mid, state0, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStateStep(mid, state0, node, state, config) and
         cc = ccNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone() and
         ap = getApNil(node)
       )
       or
       // store
       exists(TypedContent tc, Ap ap0 |
-        fwdFlowStore(_, ap0, tc, node, state, cc, argAp, config) and
+        fwdFlowStore(_, ap0, tc, node, state, cc, summaryCtx, argAp, config) and
         ap = apCons(tc, ap0)
       )
       or
       // read
       exists(Ap ap0, Content c |
-        fwdFlowRead(ap0, c, _, node, state, cc, argAp, config) and
+        fwdFlowRead(ap0, c, _, node, state, cc, summaryCtx, argAp, config) and
         fwdFlowConsCand(ap0, c, ap, config)
       )
       or
       // flow into a callable
       exists(ApApprox apa |
-        fwdFlowIn(_, node, state, _, cc, _, ap, config) and
+        fwdFlowIn(_, node, state, _, cc, _, _, ap, config) and
         apa = getApprox(ap) and
-        if PrevStage::parameterMayFlowThrough(node, _, apa, config)
-        then argAp = apSome(ap)
-        else argAp = apNone()
+        if PrevStage::parameterMayFlowThrough(node, apa, config)
+        then (
+          summaryCtx = TParamNodeSome(node.asNode()) and argAp = apSome(ap)
+        ) else (
+          summaryCtx = TParamNodeNone() and argAp = apNone()
+        )
       )
       or
       // flow out of a callable
-      fwdFlowOutNotFromArg(node, state, cc, argAp, ap, config)
+      fwdFlowOutNotFromArg(node, state, cc, summaryCtx, argAp, ap, config)
       or
-      exists(DataFlowCall call, Ap argAp0 |
-        fwdFlowOutFromArg(call, node, state, argAp0, ap, config) and
-        fwdFlowIsEntered(call, cc, argAp, argAp0, config)
+      // flow through a callable
+      exists(DataFlowCall call, ParamNode summaryCtx0, Ap argAp0 |
+        fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, config) and
+        fwdFlowIsEntered(call, cc, summaryCtx, argAp, summaryCtx0, argAp0, config)
       )
     }
 
     pragma[nomagic]
     private predicate fwdFlowStore(
-      NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc, ApOption argAp,
-      Configuration config
+      NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc,
+      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
     ) {
       exists(DataFlowType contentType |
-        fwdFlow(node1, state, cc, argAp, ap1, config) and
+        fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, config) and
         PrevStage::storeStepCand(node1, unbindApa(getApprox(ap1)), tc, node2, contentType, config) and
         typecheckStore(ap1, contentType)
       )
@@ -1366,7 +1397,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowConsCand(Ap cons, Content c, Ap tail, Configuration config) {
       exists(TypedContent tc |
-        fwdFlowStore(_, tail, tc, _, _, _, _, config) and
+        fwdFlowStore(_, tail, tc, _, _, _, _, _, config) and
         tc.getContent() = c and
         cons = apCons(tc, tail)
       )
@@ -1374,21 +1405,21 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowRead(
-      Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc, ApOption argAp,
-      Configuration config
+      Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc,
+      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
     ) {
-      fwdFlow(node1, state, cc, argAp, ap, config) and
+      fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, c, node2, config) and
       getHeadContent(ap) = c
     }
 
     pragma[nomagic]
     private predicate fwdFlowIn(
-      DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, Cc innercc, ApOption argAp,
-      Ap ap, Configuration config
+      DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, Cc innercc,
+      ParamNodeOption summaryCtx, ApOption argAp, Ap ap, Configuration config
     ) {
       exists(ArgNodeEx arg, boolean allowsFieldFlow |
-        fwdFlow(arg, state, outercc, argAp, ap, config) and
+        fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, config) and
         flowIntoCall(call, arg, p, allowsFieldFlow, config) and
         innercc = getCallContextCall(call, p.getEnclosingCallable(), outercc) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
@@ -1397,14 +1428,15 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowOutNotFromArg(
-      NodeEx out, FlowState state, Cc ccOut, ApOption argAp, Ap ap, Configuration config
+      NodeEx out, FlowState state, Cc ccOut, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      Configuration config
     ) {
       exists(
         DataFlowCall call, RetNodeEx ret, boolean allowsFieldFlow, CcNoCall innercc,
         DataFlowCallable inner
       |
-        fwdFlow(ret, state, innercc, argAp, ap, config) and
-        flowOutOfCall(call, ret, out, allowsFieldFlow, config) and
+        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, config) and
+        flowOutOfCall(call, ret, _, out, allowsFieldFlow, config) and
         inner = ret.getEnclosingCallable() and
         ccOut = getCallContextReturn(inner, call, innercc) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
@@ -1413,12 +1445,14 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowOutFromArg(
-      DataFlowCall call, NodeEx out, FlowState state, Ap argAp, Ap ap, Configuration config
+      DataFlowCall call, NodeEx out, FlowState state, ParamNode summaryCtx, Ap argAp, Ap ap,
+      Configuration config
     ) {
-      exists(RetNodeEx ret, boolean allowsFieldFlow, CcCall ccc |
-        fwdFlow(ret, state, ccc, apSome(argAp), ap, config) and
-        flowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, config) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
+      exists(RetNodeEx ret, ReturnKindExt kind, boolean allowsFieldFlow, CcCall ccc |
+        fwdFlow(ret, state, ccc, TParamNodeSome(summaryCtx), apSome(argAp), ap, config) and
+        flowThroughOutOfCall(call, ccc, ret, kind, out, allowsFieldFlow, config) and
+        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
+        parameterFlowThroughAllowed(summaryCtx, kind)
       )
     }
 
@@ -1428,11 +1462,13 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate fwdFlowIsEntered(
-      DataFlowCall call, Cc cc, ApOption argAp, Ap ap, Configuration config
+      DataFlowCall call, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, ParamNode p, Ap ap,
+      Configuration config
     ) {
-      exists(ParamNodeEx p |
-        fwdFlowIn(call, p, _, cc, _, argAp, ap, config) and
-        PrevStage::parameterMayFlowThrough(p, _, unbindApa(getApprox(ap)), config)
+      exists(ParamNodeEx param |
+        fwdFlowIn(call, param, _, cc, _, summaryCtx, argAp, ap, config) and
+        PrevStage::parameterMayFlowThrough(param, unbindApa(getApprox(ap)), config) and
+        p = param.asNode()
       )
     }
 
@@ -1440,146 +1476,149 @@ private module MkStage<StageSig PrevStage> {
     private predicate storeStepFwd(
       NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, Ap ap2, Configuration config
     ) {
-      fwdFlowStore(node1, ap1, tc, node2, _, _, _, config) and
+      fwdFlowStore(node1, ap1, tc, node2, _, _, _, _, config) and
       ap2 = apCons(tc, ap1) and
-      fwdFlowRead(ap2, tc.getContent(), _, _, _, _, _, config)
+      fwdFlowRead(ap2, tc.getContent(), _, _, _, _, _, _, config)
     }
 
     private predicate readStepFwd(
       NodeEx n1, Ap ap1, Content c, NodeEx n2, Ap ap2, Configuration config
     ) {
-      fwdFlowRead(ap1, c, n1, n2, _, _, _, config) and
+      fwdFlowRead(ap1, c, n1, n2, _, _, _, _, config) and
       fwdFlowConsCand(ap1, c, ap2, config)
     }
 
     pragma[nomagic]
-    private predicate callMayFlowThroughFwd(DataFlowCall call, Configuration config) {
-      exists(Ap argAp0, NodeEx out, FlowState state, Cc cc, ApOption argAp, Ap ap |
-        fwdFlow(out, state, pragma[only_bind_into](cc), pragma[only_bind_into](argAp), ap,
-          pragma[only_bind_into](config)) and
-        fwdFlowOutFromArg(call, out, state, argAp0, ap, config) and
-        fwdFlowIsEntered(pragma[only_bind_into](call), pragma[only_bind_into](cc),
-          pragma[only_bind_into](argAp), pragma[only_bind_into](argAp0),
-          pragma[only_bind_into](config))
-      )
+    private predicate returnFlowsThrough(
+      RetNodeEx ret, ReturnPosition pos, FlowState state, CcCall ccc, ParamNode p, Ap argAp, Ap ap,
+      Configuration config
+    ) {
+      fwdFlow(ret, state, ccc, TParamNodeSome(p), apSome(argAp), ap, config) and
+      pos = ret.getReturnPosition() and
+      parameterFlowThroughAllowed(p, pos.getKind())
     }
 
     pragma[nomagic]
     private predicate flowThroughIntoCall(
       DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
     ) {
-      flowIntoCall(call, arg, p, allowsFieldFlow, config) and
-      fwdFlow(arg, _, _, _, _, pragma[only_bind_into](config)) and
-      PrevStage::parameterMayFlowThrough(p, _, _, pragma[only_bind_into](config)) and
-      callMayFlowThroughFwd(call, pragma[only_bind_into](config))
-    }
-
-    pragma[nomagic]
-    private predicate returnNodeMayFlowThrough(
-      RetNodeEx ret, FlowState state, Ap ap, Configuration config
-    ) {
-      fwdFlow(ret, state, any(CcCall ccc), apSome(_), ap, config)
+      flowIntoCall(call, pragma[only_bind_into](arg), pragma[only_bind_into](p), allowsFieldFlow,
+        pragma[only_bind_into](config)) and
+      fwdFlow(arg, _, _, _, _, _, pragma[only_bind_into](config)) and
+      returnFlowsThrough(_, _, _, _, p.asNode(), _, _, pragma[only_bind_into](config))
     }
 
     /**
      * Holds if `node` with access path `ap` is part of a path from a source to a
      * sink in the configuration `config`.
      *
-     * The Boolean `toReturn` records whether the node must be returned from the
-     * enclosing callable in order to reach a sink, and if so, `returnAp` records
-     * the access path of the returned value.
+     * The parameter `returnCtx` records whether (and how) the node must be returned
+     * from the enclosing callable in order to reach a sink, and if so, `returnAp`
+     * records the access path of the returned value.
      */
     pragma[nomagic]
     additional predicate revFlow(
-      NodeEx node, FlowState state, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
+      NodeEx node, FlowState state, ReturnCtx returnCtx, ApOption returnAp, Ap ap,
+      Configuration config
     ) {
-      revFlow0(node, state, toReturn, returnAp, ap, config) and
-      fwdFlow(node, state, _, _, ap, config)
+      revFlow0(node, state, returnCtx, returnAp, ap, config) and
+      fwdFlow(node, state, _, _, _, ap, config)
     }
 
     pragma[nomagic]
     private predicate revFlow0(
-      NodeEx node, FlowState state, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
+      NodeEx node, FlowState state, ReturnCtx returnCtx, ApOption returnAp, Ap ap,
+      Configuration config
     ) {
-      fwdFlow(node, state, _, _, ap, config) and
+      fwdFlow(node, state, _, _, _, ap, config) and
       sinkNode(node, state, config) and
-      (if hasSinkCallCtx(config) then toReturn = true else toReturn = false) and
+      (
+        if hasSinkCallCtx(config)
+        then returnCtx = TReturnCtxNoFlowThrough()
+        else returnCtx = TReturnCtxNone()
+      ) and
       returnAp = apNone() and
       ap instanceof ApNil
       or
       exists(NodeEx mid, FlowState state0 |
         localStep(node, state, mid, state0, true, _, config, _) and
-        revFlow(mid, state0, toReturn, returnAp, ap, config)
+        revFlow(mid, state0, returnCtx, returnAp, ap, config)
       )
       or
       exists(NodeEx mid, FlowState state0, ApNil nil |
-        fwdFlow(node, pragma[only_bind_into](state), _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(node, pragma[only_bind_into](state), _, _, _, ap, pragma[only_bind_into](config)) and
         localStep(node, pragma[only_bind_into](state), mid, state0, false, _, config, _) and
-        revFlow(mid, state0, toReturn, returnAp, nil, pragma[only_bind_into](config)) and
+        revFlow(mid, state0, returnCtx, returnAp, nil, pragma[only_bind_into](config)) and
         ap instanceof ApNil
       )
       or
       exists(NodeEx mid |
         jumpStep(node, mid, config) and
         revFlow(mid, state, _, _, ap, config) and
-        toReturn = false and
+        returnCtx = TReturnCtxNone() and
         returnAp = apNone()
       )
       or
       exists(NodeEx mid, ApNil nil |
-        fwdFlow(node, _, _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(node, _, _, _, _, ap, pragma[only_bind_into](config)) and
         additionalJumpStep(node, mid, config) and
         revFlow(pragma[only_bind_into](mid), state, _, _, nil, pragma[only_bind_into](config)) and
-        toReturn = false and
+        returnCtx = TReturnCtxNone() and
         returnAp = apNone() and
         ap instanceof ApNil
       )
       or
       exists(NodeEx mid, FlowState state0, ApNil nil |
-        fwdFlow(node, _, _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(node, _, _, _, _, ap, pragma[only_bind_into](config)) and
         additionalJumpStateStep(node, state, mid, state0, config) and
         revFlow(pragma[only_bind_into](mid), pragma[only_bind_into](state0), _, _, nil,
           pragma[only_bind_into](config)) and
-        toReturn = false and
+        returnCtx = TReturnCtxNone() and
         returnAp = apNone() and
         ap instanceof ApNil
       )
       or
       // store
       exists(Ap ap0, Content c |
-        revFlowStore(ap0, c, ap, node, state, _, _, toReturn, returnAp, config) and
+        revFlowStore(ap0, c, ap, node, state, _, _, returnCtx, returnAp, config) and
         revFlowConsCand(ap0, c, ap, config)
       )
       or
       // read
       exists(NodeEx mid, Ap ap0 |
-        revFlow(mid, state, toReturn, returnAp, ap0, config) and
+        revFlow(mid, state, returnCtx, returnAp, ap0, config) and
         readStepFwd(node, ap, _, mid, ap0, config)
       )
       or
       // flow into a callable
       revFlowInNotToReturn(node, state, returnAp, ap, config) and
-      toReturn = false
+      returnCtx = TReturnCtxNone()
       or
-      exists(DataFlowCall call, Ap returnAp0 |
-        revFlowInToReturn(call, node, state, returnAp0, ap, config) and
-        revFlowIsReturned(call, toReturn, returnAp, returnAp0, config)
+      // flow through a callable
+      exists(DataFlowCall call, ReturnPosition returnPos0, Ap returnAp0 |
+        revFlowInToReturn(call, node, state, returnPos0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnPos0, returnAp0, config)
       )
       or
       // flow out of a callable
-      revFlowOut(_, node, state, _, _, ap, config) and
-      toReturn = true and
-      if returnNodeMayFlowThrough(node, state, ap, config)
-      then returnAp = apSome(ap)
-      else returnAp = apNone()
+      exists(ReturnPosition pos |
+        revFlowOut(_, node, pos, state, _, _, ap, config) and
+        if returnFlowsThrough(node, pos, state, _, _, _, ap, config)
+        then (
+          returnCtx = TReturnCtxMaybeFlowThrough(pos) and
+          returnAp = apSome(ap)
+        ) else (
+          returnCtx = TReturnCtxNoFlowThrough() and returnAp = apNone()
+        )
+      )
     }
 
     pragma[nomagic]
     private predicate revFlowStore(
       Ap ap0, Content c, Ap ap, NodeEx node, FlowState state, TypedContent tc, NodeEx mid,
-      boolean toReturn, ApOption returnAp, Configuration config
+      ReturnCtx returnCtx, ApOption returnAp, Configuration config
     ) {
-      revFlow(mid, state, toReturn, returnAp, ap0, config) and
+      revFlow(mid, state, returnCtx, returnAp, ap0, config) and
       storeStepFwd(node, ap, tc, mid, ap0, config) and
       tc.getContent() = c
     }
@@ -1599,12 +1638,12 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate revFlowOut(
-      DataFlowCall call, RetNodeEx ret, FlowState state, boolean toReturn, ApOption returnAp, Ap ap,
-      Configuration config
+      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, FlowState state, ReturnCtx returnCtx,
+      ApOption returnAp, Ap ap, Configuration config
     ) {
       exists(NodeEx out, boolean allowsFieldFlow |
-        revFlow(out, state, toReturn, returnAp, ap, config) and
-        flowOutOfCall(call, ret, out, allowsFieldFlow, config) and
+        revFlow(out, state, returnCtx, returnAp, ap, config) and
+        flowOutOfCall(call, ret, pos, out, allowsFieldFlow, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
@@ -1614,7 +1653,7 @@ private module MkStage<StageSig PrevStage> {
       ArgNodeEx arg, FlowState state, ApOption returnAp, Ap ap, Configuration config
     ) {
       exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(p, state, false, returnAp, ap, config) and
+        revFlow(p, state, TReturnCtxNone(), returnAp, ap, config) and
         flowIntoCall(_, arg, p, allowsFieldFlow, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
@@ -1622,12 +1661,14 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate revFlowInToReturn(
-      DataFlowCall call, ArgNodeEx arg, FlowState state, Ap returnAp, Ap ap, Configuration config
+      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnPosition returnPos, Ap returnAp,
+      Ap ap, Configuration config
     ) {
       exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(p, state, true, apSome(returnAp), ap, config) and
+        revFlow(p, state, TReturnCtxMaybeFlowThrough(returnPos), apSome(returnAp), ap, config) and
         flowThroughIntoCall(call, arg, p, allowsFieldFlow, config) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
+        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
+        parameterFlowThroughAllowed(p.asNode(), returnPos.getKind())
       )
     }
 
@@ -1638,11 +1679,12 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate revFlowIsReturned(
-      DataFlowCall call, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
+      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnPosition pos, Ap ap,
+      Configuration config
     ) {
       exists(RetNodeEx ret, FlowState state, CcCall ccc |
-        revFlowOut(call, ret, state, toReturn, returnAp, ap, config) and
-        fwdFlow(ret, state, ccc, apSome(_), ap, config) and
+        revFlowOut(call, ret, pos, state, returnCtx, returnAp, ap, config) and
+        returnFlowsThrough(ret, pos, state, ccc, _, _, ap, config) and
         matchesCall(ccc, call)
       )
     }
@@ -1713,40 +1755,39 @@ private module MkStage<StageSig PrevStage> {
       validAp(ap, config)
     }
 
-    pragma[noinline]
-    private predicate parameterFlow(
-      ParamNodeEx p, Ap ap, Ap ap0, DataFlowCallable c, Configuration config
+    pragma[nomagic]
+    private predicate parameterFlowsThroughRev(
+      ParamNodeEx p, Ap ap, ReturnPosition returnPos, Configuration config
     ) {
-      revFlow(p, _, true, apSome(ap0), ap, config) and
-      c = p.getEnclosingCallable()
+      revFlow(p, _, TReturnCtxMaybeFlowThrough(returnPos), apSome(_), ap, config) and
+      parameterFlowThroughAllowed(p.asNode(), returnPos.getKind())
     }
 
-    predicate parameterMayFlowThrough(ParamNodeEx p, DataFlowCallable c, Ap ap, Configuration config) {
-      exists(RetNodeEx ret, FlowState state, Ap ap0, ReturnKindExt kind, ParameterPosition pos |
-        parameterFlow(p, ap, ap0, c, config) and
-        c = ret.getEnclosingCallable() and
-        revFlow(pragma[only_bind_into](ret), pragma[only_bind_into](state), true, apSome(_),
-          pragma[only_bind_into](ap0), pragma[only_bind_into](config)) and
-        fwdFlow(ret, state, any(CcCall ccc), apSome(ap), ap0, config) and
-        kind = ret.getKind() and
-        p.getPosition() = pos and
-        // we don't expect a parameter to return stored in itself, unless explicitly allowed
-        (
-          not kind.(ParamUpdateReturnKind).getPosition() = pos
-          or
-          p.allowParameterReturnInSelf()
-        )
+    pragma[nomagic]
+    predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
+      exists(RetNodeEx ret, ReturnPosition pos |
+        returnFlowsThrough(ret, pos, _, _, p.asNode(), ap, _, config) and
+        parameterFlowsThroughRev(p, ap, pos, config)
+      )
+    }
+
+    pragma[nomagic]
+    predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config) {
+      exists(ParamNodeEx p, Ap ap |
+        returnFlowsThrough(ret, pos, _, _, p.asNode(), ap, _, config) and
+        parameterFlowsThroughRev(p, ap, pos, config)
       )
     }
 
     pragma[nomagic]
     predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
       exists(
-        Ap returnAp0, ArgNodeEx arg, FlowState state, boolean toReturn, ApOption returnAp, Ap ap
+        ReturnPosition returnPos0, Ap returnAp0, ArgNodeEx arg, FlowState state,
+        ReturnCtx returnCtx, ApOption returnAp, Ap ap
       |
-        revFlow(arg, state, toReturn, returnAp, ap, config) and
-        revFlowInToReturn(call, arg, state, returnAp0, ap, config) and
-        revFlowIsReturned(call, toReturn, returnAp, returnAp0, config)
+        revFlow(arg, state, returnCtx, returnAp, ap, config) and
+        revFlowInToReturn(call, arg, state, returnPos0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnPos0, returnAp0, config)
       )
     }
 
@@ -1754,13 +1795,13 @@ private module MkStage<StageSig PrevStage> {
       boolean fwd, int nodes, int fields, int conscand, int states, int tuples, Configuration config
     ) {
       fwd = true and
-      nodes = count(NodeEx node | fwdFlow(node, _, _, _, _, config)) and
+      nodes = count(NodeEx node | fwdFlow(node, _, _, _, _, _, config)) and
       fields = count(TypedContent f0 | fwdConsCand(f0, _, config)) and
       conscand = count(TypedContent f0, Ap ap | fwdConsCand(f0, ap, config)) and
-      states = count(FlowState state | fwdFlow(_, state, _, _, _, config)) and
+      states = count(FlowState state | fwdFlow(_, state, _, _, _, _, config)) and
       tuples =
-        count(NodeEx n, FlowState state, Cc cc, ApOption argAp, Ap ap |
-          fwdFlow(n, state, cc, argAp, ap, config)
+        count(NodeEx n, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap |
+          fwdFlow(n, state, cc, summaryCtx, argAp, ap, config)
         )
       or
       fwd = false and
@@ -1769,8 +1810,8 @@ private module MkStage<StageSig PrevStage> {
       conscand = count(TypedContent f0, Ap ap | consCand(f0, ap, config)) and
       states = count(FlowState state | revFlow(_, state, _, _, _, config)) and
       tuples =
-        count(NodeEx n, FlowState state, boolean b, ApOption retAp, Ap ap |
-          revFlow(n, state, b, retAp, ap, config)
+        count(NodeEx n, FlowState state, ReturnCtx returnCtx, ApOption retAp, Ap ap |
+          revFlow(n, state, returnCtx, retAp, ap, config)
         )
     }
     /* End: Stage logic. */
@@ -1915,7 +1956,7 @@ private module Stage2Param implements MkStage<Stage1>::StageParam {
     exists(lcc)
   }
 
-  predicate flowOutOfCall = flowOutOfCallNodeCand1/5;
+  predicate flowOutOfCall = flowOutOfCallNodeCand1/6;
 
   predicate flowIntoCall = flowIntoCallNodeCand1/5;
 
@@ -1951,9 +1992,10 @@ private module Stage2 implements StageSig {
 
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand2(
-  DataFlowCall call, RetNodeEx node1, NodeEx node2, boolean allowsFieldFlow, Configuration config
+  DataFlowCall call, RetNodeEx node1, ReturnPosition pos, NodeEx node2, boolean allowsFieldFlow,
+  Configuration config
 ) {
-  flowOutOfCallNodeCand1(call, node1, node2, allowsFieldFlow, config) and
+  flowOutOfCallNodeCand1(call, node1, pos, node2, allowsFieldFlow, config) and
   Stage2::revFlow(node2, pragma[only_bind_into](config)) and
   Stage2::revFlowAlias(node1, pragma[only_bind_into](config))
 }
@@ -2021,8 +2063,8 @@ private module LocalFlowBigStep {
     exists(NodeEx next | Stage2::revFlow(next, state, config) |
       jumpStep(node, next, config) or
       additionalJumpStep(node, next, config) or
-      flowIntoCallNodeCand1(_, node, next, config) or
-      flowOutOfCallNodeCand1(_, node, next, config) or
+      flowIntoCallNodeCand2(_, node, next, _, config) or
+      flowOutOfCallNodeCand2(_, node, _, next, _, config) or
       Stage2::storeStepCand(node, _, _, next, _, config) or
       Stage2::readStepCand(node, _, next, config)
     )
@@ -2163,7 +2205,7 @@ private module Stage3Param implements MkStage<Stage2>::StageParam {
     localFlowBigStep(node1, state1, node2, state2, preservesValue, ap, config, _) and exists(lcc)
   }
 
-  predicate flowOutOfCall = flowOutOfCallNodeCand2/5;
+  predicate flowOutOfCall = flowOutOfCallNodeCand2/6;
 
   predicate flowIntoCall = flowIntoCallNodeCand2/5;
 
@@ -2233,8 +2275,9 @@ private predicate flowCandSummaryCtx(
   NodeEx node, FlowState state, AccessPathFront argApf, Configuration config
 ) {
   exists(AccessPathFront apf |
-    Stage3::revFlow(node, state, true, _, apf, config) and
-    Stage3::fwdFlow(node, state, any(Stage3::CcCall ccc), TAccessPathFrontSome(argApf), apf, config)
+    Stage3::revFlow(node, state, TReturnCtxMaybeFlowThrough(_), _, apf, config) and
+    Stage3::fwdFlow(node, state, any(Stage3::CcCall ccc), _, TAccessPathFrontSome(argApf), apf,
+      config)
   )
 }
 
@@ -2468,10 +2511,11 @@ private module Stage4Param implements MkStage<Stage3>::StageParam {
 
   pragma[nomagic]
   predicate flowOutOfCall(
-    DataFlowCall call, RetNodeEx node1, NodeEx node2, boolean allowsFieldFlow, Configuration config
+    DataFlowCall call, RetNodeEx node1, ReturnPosition pos, NodeEx node2, boolean allowsFieldFlow,
+    Configuration config
   ) {
     exists(FlowState state |
-      flowOutOfCallNodeCand2(call, node1, node2, allowsFieldFlow, config) and
+      flowOutOfCallNodeCand2(call, node1, pos, node2, allowsFieldFlow, config) and
       PrevStage::revFlow(node2, pragma[only_bind_into](state), _, pragma[only_bind_into](config)) and
       PrevStage::revFlowAlias(node1, pragma[only_bind_into](state), _,
         pragma[only_bind_into](config))
@@ -2508,13 +2552,13 @@ private Configuration unbindConf(Configuration conf) {
 
 pragma[nomagic]
 private predicate nodeMayUseSummary0(
-  NodeEx n, DataFlowCallable c, FlowState state, AccessPathApprox apa, Configuration config
+  NodeEx n, ParamNodeEx p, FlowState state, AccessPathApprox apa, Configuration config
 ) {
   exists(AccessPathApprox apa0 |
-    Stage4::parameterMayFlowThrough(_, c, _, _) and
-    Stage4::revFlow(n, state, true, _, apa0, config) and
-    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TAccessPathApproxSome(apa), apa0, config) and
-    n.getEnclosingCallable() = c
+    Stage4::parameterMayFlowThrough(p, _, _) and
+    Stage4::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
+    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TParamNodeSome(p.asNode()),
+      TAccessPathApproxSome(apa), apa0, config)
   )
 }
 
@@ -2522,9 +2566,9 @@ pragma[nomagic]
 private predicate nodeMayUseSummary(
   NodeEx n, FlowState state, AccessPathApprox apa, Configuration config
 ) {
-  exists(DataFlowCallable c |
-    Stage4::parameterMayFlowThrough(_, c, apa, config) and
-    nodeMayUseSummary0(n, c, state, apa, config)
+  exists(ParamNodeEx p |
+    Stage4::parameterMayFlowThrough(p, apa, config) and
+    nodeMayUseSummary0(n, p, state, apa, config)
   )
 }
 
@@ -2532,7 +2576,7 @@ private newtype TSummaryCtx =
   TSummaryCtxNone() or
   TSummaryCtxSome(ParamNodeEx p, FlowState state, AccessPath ap) {
     exists(Configuration config |
-      Stage4::parameterMayFlowThrough(p, _, ap.getApprox(), config) and
+      Stage4::parameterMayFlowThrough(p, ap.getApprox(), config) and
       Stage4::revFlow(p, state, _, config)
     )
   }
@@ -3453,17 +3497,11 @@ private predicate paramFlowsThrough(
   ReturnKindExt kind, FlowState state, CallContextCall cc, SummaryCtxSome sc, AccessPath ap,
   AccessPathApprox apa, Configuration config
 ) {
-  exists(PathNodeMid mid, RetNodeEx ret, ParameterPosition pos |
+  exists(PathNodeMid mid, RetNodeEx ret |
     pathNode(mid, ret, state, cc, sc, ap, config, _) and
     kind = ret.getKind() and
     apa = ap.getApprox() and
-    pos = sc.getParameterPos() and
-    // we don't expect a parameter to return stored in itself, unless explicitly allowed
-    (
-      not kind.(ParamUpdateReturnKind).getPosition() = pos
-      or
-      sc.getParamNode().allowParameterReturnInSelf()
-    )
+    parameterFlowThroughAllowed(sc.getParamNode().asNode(), kind)
   )
 }
 
diff --git a/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl.qll b/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl.qll
index 3c41b1876dc..a52ad110662 100644
--- a/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl.qll
+++ b/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl.qll
@@ -319,8 +319,6 @@ private class ParamNodeEx extends NodeEx {
   }
 
   ParameterPosition getPosition() { this.isParameterOf(_, result) }
-
-  predicate allowParameterReturnInSelf() { allowParameterReturnInSelfCached(this.asNode()) }
 }
 
 private class RetNodeEx extends NodeEx {
@@ -608,6 +606,21 @@ private predicate hasSinkCallCtx(Configuration config) {
   )
 }
 
+/**
+ * Holds if flow from `p` to a return node of kind `kind` is allowed.
+ *
+ * We don't expect a parameter to return stored in itself, unless
+ * explicitly allowed
+ */
+bindingset[p, kind]
+private predicate parameterFlowThroughAllowed(ParamNode p, ReturnKindExt kind) {
+  exists(ParameterPosition pos | p.isParameterOf(_, pos) |
+    not kind.(ParamUpdateReturnKind).getPosition() = pos
+    or
+    allowParameterReturnInSelfCached(p)
+  )
+}
+
 private module Stage1 implements StageSig {
   class Ap = Unit;
 
@@ -981,21 +994,22 @@ private module Stage1 implements StageSig {
    * candidate for the origin of a summary.
    */
   pragma[nomagic]
-  predicate parameterMayFlowThrough(ParamNodeEx p, DataFlowCallable c, Ap ap, Configuration config) {
-    exists(ReturnKindExt kind |
+  predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
+    exists(DataFlowCallable c, ReturnKindExt kind |
       throughFlowNodeCand(p, config) and
       returnFlowCallableNodeCand(c, kind, config) and
       p.getEnclosingCallable() = c and
       exists(ap) and
-      // we don't expect a parameter to return stored in itself, unless explicitly allowed
-      (
-        not kind.(ParamUpdateReturnKind).getPosition() = p.getPosition()
-        or
-        p.allowParameterReturnInSelf()
-      )
+      parameterFlowThroughAllowed(p.asNode(), kind)
     )
   }
 
+  pragma[nomagic]
+  predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config) {
+    throughFlowNodeCand(ret, config) and
+    pos = ret.getReturnPosition()
+  }
+
   pragma[nomagic]
   predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
     exists(ArgNodeEx arg, boolean toReturn |
@@ -1052,9 +1066,10 @@ private predicate viableReturnPosOutNodeCand1(
  */
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand1(
-  DataFlowCall call, RetNodeEx ret, NodeEx out, Configuration config
+  DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, Configuration config
 ) {
-  viableReturnPosOutNodeCand1(call, ret.getReturnPosition(), out, config) and
+  viableReturnPosOutNodeCand1(call, pos, out, config) and
+  pos = ret.getReturnPosition() and
   Stage1::revFlow(ret, config) and
   not outBarrier(ret, config) and
   not inBarrier(out, config)
@@ -1090,7 +1105,7 @@ private predicate flowIntoCallNodeCand1(
 private int branch(NodeEx n1, Configuration conf) {
   result =
     strictcount(NodeEx n |
-      flowOutOfCallNodeCand1(_, n1, n, conf) or flowIntoCallNodeCand1(_, n1, n, conf)
+      flowOutOfCallNodeCand1(_, n1, _, n, conf) or flowIntoCallNodeCand1(_, n1, n, conf)
     )
 }
 
@@ -1102,7 +1117,7 @@ private int branch(NodeEx n1, Configuration conf) {
 private int join(NodeEx n2, Configuration conf) {
   result =
     strictcount(NodeEx n |
-      flowOutOfCallNodeCand1(_, n, n2, conf) or flowIntoCallNodeCand1(_, n, n2, conf)
+      flowOutOfCallNodeCand1(_, n, _, n2, conf) or flowIntoCallNodeCand1(_, n, n2, conf)
     )
 }
 
@@ -1115,12 +1130,13 @@ private int join(NodeEx n2, Configuration conf) {
  */
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand1(
-  DataFlowCall call, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow, Configuration config
+  DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
+  Configuration config
 ) {
-  flowOutOfCallNodeCand1(call, ret, out, config) and
+  flowOutOfCallNodeCand1(call, ret, pos, out, pragma[only_bind_into](config)) and
   exists(int b, int j |
-    b = branch(ret, config) and
-    j = join(out, config) and
+    b = branch(ret, pragma[only_bind_into](config)) and
+    j = join(out, pragma[only_bind_into](config)) and
     if b.minimum(j) <= config.fieldFlowBranchLimit()
     then allowsFieldFlow = true
     else allowsFieldFlow = false
@@ -1156,7 +1172,9 @@ private signature module StageSig {
 
   predicate callMayFlowThroughRev(DataFlowCall call, Configuration config);
 
-  predicate parameterMayFlowThrough(ParamNodeEx p, DataFlowCallable c, Ap ap, Configuration config);
+  predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config);
+
+  predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config);
 
   predicate storeStepCand(
     NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, DataFlowType contentType,
@@ -1222,7 +1240,8 @@ private module MkStage<StageSig PrevStage> {
     );
 
     predicate flowOutOfCall(
-      DataFlowCall call, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow, Configuration config
+      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
+      Configuration config
     );
 
     predicate flowIntoCall(
@@ -1247,14 +1266,16 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate flowThroughOutOfCall(
-      DataFlowCall call, CcCall ccc, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow,
-      Configuration config
+      DataFlowCall call, CcCall ccc, RetNodeEx ret, ReturnKindExt kind, NodeEx out,
+      boolean allowsFieldFlow, Configuration config
     ) {
-      flowOutOfCall(call, ret, out, allowsFieldFlow, pragma[only_bind_into](config)) and
-      PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
-      PrevStage::parameterMayFlowThrough(_, ret.getEnclosingCallable(), _,
-        pragma[only_bind_into](config)) and
-      matchesCall(ccc, call)
+      exists(ReturnPosition pos |
+        flowOutOfCall(call, ret, pos, out, allowsFieldFlow, pragma[only_bind_into](config)) and
+        kind = pos.getKind() and
+        PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
+        PrevStage::returnMayFlowThrough(ret, pos, pragma[only_bind_into](config)) and
+        matchesCall(ccc, call)
+      )
     }
 
     /**
@@ -1262,29 +1283,32 @@ private module MkStage<StageSig PrevStage> {
      * configuration `config`.
      *
      * The call context `cc` records whether the node is reached through an
-     * argument in a call, and if so, `argAp` records the access path of that
-     * argument.
+     * argument in a call, and if so, `summaryCtx` and `argAp` record the
+     * corresponding parameter and access path of that argument, respectively.
      */
     pragma[nomagic]
     additional predicate fwdFlow(
-      NodeEx node, FlowState state, Cc cc, ApOption argAp, Ap ap, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      Configuration config
     ) {
-      fwdFlow0(node, state, cc, argAp, ap, config) and
+      fwdFlow0(node, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::revFlow(node, state, unbindApa(getApprox(ap)), config) and
       filter(node, state, ap, config)
     }
 
     pragma[nomagic]
     private predicate fwdFlow0(
-      NodeEx node, FlowState state, Cc cc, ApOption argAp, Ap ap, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      Configuration config
     ) {
       sourceNode(node, state, config) and
       (if hasSourceCallCtx(config) then cc = ccSomeCall() else cc = ccNone()) and
       argAp = apNone() and
+      summaryCtx = TParamNodeNone() and
       ap = getApNil(node)
       or
       exists(NodeEx mid, FlowState state0, Ap ap0, LocalCc localCc |
-        fwdFlow(mid, state0, cc, argAp, ap0, config) and
+        fwdFlow(mid, state0, cc, summaryCtx, argAp, ap0, config) and
         localCc = getLocalCc(mid, cc)
       |
         localStep(mid, state0, node, state, true, _, config, localCc) and
@@ -1295,65 +1319,72 @@ private module MkStage<StageSig PrevStage> {
       )
       or
       exists(NodeEx mid |
-        fwdFlow(mid, pragma[only_bind_into](state), _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, pragma[only_bind_into](config)) and
         jumpStep(mid, node, config) and
         cc = ccNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone()
       )
       or
       exists(NodeEx mid, ApNil nil |
-        fwdFlow(mid, state, _, _, nil, pragma[only_bind_into](config)) and
+        fwdFlow(mid, state, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStep(mid, node, config) and
         cc = ccNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone() and
         ap = getApNil(node)
       )
       or
       exists(NodeEx mid, FlowState state0, ApNil nil |
-        fwdFlow(mid, state0, _, _, nil, pragma[only_bind_into](config)) and
+        fwdFlow(mid, state0, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStateStep(mid, state0, node, state, config) and
         cc = ccNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone() and
         ap = getApNil(node)
       )
       or
       // store
       exists(TypedContent tc, Ap ap0 |
-        fwdFlowStore(_, ap0, tc, node, state, cc, argAp, config) and
+        fwdFlowStore(_, ap0, tc, node, state, cc, summaryCtx, argAp, config) and
         ap = apCons(tc, ap0)
       )
       or
       // read
       exists(Ap ap0, Content c |
-        fwdFlowRead(ap0, c, _, node, state, cc, argAp, config) and
+        fwdFlowRead(ap0, c, _, node, state, cc, summaryCtx, argAp, config) and
         fwdFlowConsCand(ap0, c, ap, config)
       )
       or
       // flow into a callable
       exists(ApApprox apa |
-        fwdFlowIn(_, node, state, _, cc, _, ap, config) and
+        fwdFlowIn(_, node, state, _, cc, _, _, ap, config) and
         apa = getApprox(ap) and
-        if PrevStage::parameterMayFlowThrough(node, _, apa, config)
-        then argAp = apSome(ap)
-        else argAp = apNone()
+        if PrevStage::parameterMayFlowThrough(node, apa, config)
+        then (
+          summaryCtx = TParamNodeSome(node.asNode()) and argAp = apSome(ap)
+        ) else (
+          summaryCtx = TParamNodeNone() and argAp = apNone()
+        )
       )
       or
       // flow out of a callable
-      fwdFlowOutNotFromArg(node, state, cc, argAp, ap, config)
+      fwdFlowOutNotFromArg(node, state, cc, summaryCtx, argAp, ap, config)
       or
-      exists(DataFlowCall call, Ap argAp0 |
-        fwdFlowOutFromArg(call, node, state, argAp0, ap, config) and
-        fwdFlowIsEntered(call, cc, argAp, argAp0, config)
+      // flow through a callable
+      exists(DataFlowCall call, ParamNode summaryCtx0, Ap argAp0 |
+        fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, config) and
+        fwdFlowIsEntered(call, cc, summaryCtx, argAp, summaryCtx0, argAp0, config)
       )
     }
 
     pragma[nomagic]
     private predicate fwdFlowStore(
-      NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc, ApOption argAp,
-      Configuration config
+      NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc,
+      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
     ) {
       exists(DataFlowType contentType |
-        fwdFlow(node1, state, cc, argAp, ap1, config) and
+        fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, config) and
         PrevStage::storeStepCand(node1, unbindApa(getApprox(ap1)), tc, node2, contentType, config) and
         typecheckStore(ap1, contentType)
       )
@@ -1366,7 +1397,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowConsCand(Ap cons, Content c, Ap tail, Configuration config) {
       exists(TypedContent tc |
-        fwdFlowStore(_, tail, tc, _, _, _, _, config) and
+        fwdFlowStore(_, tail, tc, _, _, _, _, _, config) and
         tc.getContent() = c and
         cons = apCons(tc, tail)
       )
@@ -1374,21 +1405,21 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowRead(
-      Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc, ApOption argAp,
-      Configuration config
+      Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc,
+      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
     ) {
-      fwdFlow(node1, state, cc, argAp, ap, config) and
+      fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, c, node2, config) and
       getHeadContent(ap) = c
     }
 
     pragma[nomagic]
     private predicate fwdFlowIn(
-      DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, Cc innercc, ApOption argAp,
-      Ap ap, Configuration config
+      DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, Cc innercc,
+      ParamNodeOption summaryCtx, ApOption argAp, Ap ap, Configuration config
     ) {
       exists(ArgNodeEx arg, boolean allowsFieldFlow |
-        fwdFlow(arg, state, outercc, argAp, ap, config) and
+        fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, config) and
         flowIntoCall(call, arg, p, allowsFieldFlow, config) and
         innercc = getCallContextCall(call, p.getEnclosingCallable(), outercc) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
@@ -1397,14 +1428,15 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowOutNotFromArg(
-      NodeEx out, FlowState state, Cc ccOut, ApOption argAp, Ap ap, Configuration config
+      NodeEx out, FlowState state, Cc ccOut, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      Configuration config
     ) {
       exists(
         DataFlowCall call, RetNodeEx ret, boolean allowsFieldFlow, CcNoCall innercc,
         DataFlowCallable inner
       |
-        fwdFlow(ret, state, innercc, argAp, ap, config) and
-        flowOutOfCall(call, ret, out, allowsFieldFlow, config) and
+        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, config) and
+        flowOutOfCall(call, ret, _, out, allowsFieldFlow, config) and
         inner = ret.getEnclosingCallable() and
         ccOut = getCallContextReturn(inner, call, innercc) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
@@ -1413,12 +1445,14 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowOutFromArg(
-      DataFlowCall call, NodeEx out, FlowState state, Ap argAp, Ap ap, Configuration config
+      DataFlowCall call, NodeEx out, FlowState state, ParamNode summaryCtx, Ap argAp, Ap ap,
+      Configuration config
     ) {
-      exists(RetNodeEx ret, boolean allowsFieldFlow, CcCall ccc |
-        fwdFlow(ret, state, ccc, apSome(argAp), ap, config) and
-        flowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, config) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
+      exists(RetNodeEx ret, ReturnKindExt kind, boolean allowsFieldFlow, CcCall ccc |
+        fwdFlow(ret, state, ccc, TParamNodeSome(summaryCtx), apSome(argAp), ap, config) and
+        flowThroughOutOfCall(call, ccc, ret, kind, out, allowsFieldFlow, config) and
+        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
+        parameterFlowThroughAllowed(summaryCtx, kind)
       )
     }
 
@@ -1428,11 +1462,13 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate fwdFlowIsEntered(
-      DataFlowCall call, Cc cc, ApOption argAp, Ap ap, Configuration config
+      DataFlowCall call, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, ParamNode p, Ap ap,
+      Configuration config
     ) {
-      exists(ParamNodeEx p |
-        fwdFlowIn(call, p, _, cc, _, argAp, ap, config) and
-        PrevStage::parameterMayFlowThrough(p, _, unbindApa(getApprox(ap)), config)
+      exists(ParamNodeEx param |
+        fwdFlowIn(call, param, _, cc, _, summaryCtx, argAp, ap, config) and
+        PrevStage::parameterMayFlowThrough(param, unbindApa(getApprox(ap)), config) and
+        p = param.asNode()
       )
     }
 
@@ -1440,146 +1476,149 @@ private module MkStage<StageSig PrevStage> {
     private predicate storeStepFwd(
       NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, Ap ap2, Configuration config
     ) {
-      fwdFlowStore(node1, ap1, tc, node2, _, _, _, config) and
+      fwdFlowStore(node1, ap1, tc, node2, _, _, _, _, config) and
       ap2 = apCons(tc, ap1) and
-      fwdFlowRead(ap2, tc.getContent(), _, _, _, _, _, config)
+      fwdFlowRead(ap2, tc.getContent(), _, _, _, _, _, _, config)
     }
 
     private predicate readStepFwd(
       NodeEx n1, Ap ap1, Content c, NodeEx n2, Ap ap2, Configuration config
     ) {
-      fwdFlowRead(ap1, c, n1, n2, _, _, _, config) and
+      fwdFlowRead(ap1, c, n1, n2, _, _, _, _, config) and
       fwdFlowConsCand(ap1, c, ap2, config)
     }
 
     pragma[nomagic]
-    private predicate callMayFlowThroughFwd(DataFlowCall call, Configuration config) {
-      exists(Ap argAp0, NodeEx out, FlowState state, Cc cc, ApOption argAp, Ap ap |
-        fwdFlow(out, state, pragma[only_bind_into](cc), pragma[only_bind_into](argAp), ap,
-          pragma[only_bind_into](config)) and
-        fwdFlowOutFromArg(call, out, state, argAp0, ap, config) and
-        fwdFlowIsEntered(pragma[only_bind_into](call), pragma[only_bind_into](cc),
-          pragma[only_bind_into](argAp), pragma[only_bind_into](argAp0),
-          pragma[only_bind_into](config))
-      )
+    private predicate returnFlowsThrough(
+      RetNodeEx ret, ReturnPosition pos, FlowState state, CcCall ccc, ParamNode p, Ap argAp, Ap ap,
+      Configuration config
+    ) {
+      fwdFlow(ret, state, ccc, TParamNodeSome(p), apSome(argAp), ap, config) and
+      pos = ret.getReturnPosition() and
+      parameterFlowThroughAllowed(p, pos.getKind())
     }
 
     pragma[nomagic]
     private predicate flowThroughIntoCall(
       DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
     ) {
-      flowIntoCall(call, arg, p, allowsFieldFlow, config) and
-      fwdFlow(arg, _, _, _, _, pragma[only_bind_into](config)) and
-      PrevStage::parameterMayFlowThrough(p, _, _, pragma[only_bind_into](config)) and
-      callMayFlowThroughFwd(call, pragma[only_bind_into](config))
-    }
-
-    pragma[nomagic]
-    private predicate returnNodeMayFlowThrough(
-      RetNodeEx ret, FlowState state, Ap ap, Configuration config
-    ) {
-      fwdFlow(ret, state, any(CcCall ccc), apSome(_), ap, config)
+      flowIntoCall(call, pragma[only_bind_into](arg), pragma[only_bind_into](p), allowsFieldFlow,
+        pragma[only_bind_into](config)) and
+      fwdFlow(arg, _, _, _, _, _, pragma[only_bind_into](config)) and
+      returnFlowsThrough(_, _, _, _, p.asNode(), _, _, pragma[only_bind_into](config))
     }
 
     /**
      * Holds if `node` with access path `ap` is part of a path from a source to a
      * sink in the configuration `config`.
      *
-     * The Boolean `toReturn` records whether the node must be returned from the
-     * enclosing callable in order to reach a sink, and if so, `returnAp` records
-     * the access path of the returned value.
+     * The parameter `returnCtx` records whether (and how) the node must be returned
+     * from the enclosing callable in order to reach a sink, and if so, `returnAp`
+     * records the access path of the returned value.
      */
     pragma[nomagic]
     additional predicate revFlow(
-      NodeEx node, FlowState state, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
+      NodeEx node, FlowState state, ReturnCtx returnCtx, ApOption returnAp, Ap ap,
+      Configuration config
     ) {
-      revFlow0(node, state, toReturn, returnAp, ap, config) and
-      fwdFlow(node, state, _, _, ap, config)
+      revFlow0(node, state, returnCtx, returnAp, ap, config) and
+      fwdFlow(node, state, _, _, _, ap, config)
     }
 
     pragma[nomagic]
     private predicate revFlow0(
-      NodeEx node, FlowState state, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
+      NodeEx node, FlowState state, ReturnCtx returnCtx, ApOption returnAp, Ap ap,
+      Configuration config
     ) {
-      fwdFlow(node, state, _, _, ap, config) and
+      fwdFlow(node, state, _, _, _, ap, config) and
       sinkNode(node, state, config) and
-      (if hasSinkCallCtx(config) then toReturn = true else toReturn = false) and
+      (
+        if hasSinkCallCtx(config)
+        then returnCtx = TReturnCtxNoFlowThrough()
+        else returnCtx = TReturnCtxNone()
+      ) and
       returnAp = apNone() and
       ap instanceof ApNil
       or
       exists(NodeEx mid, FlowState state0 |
         localStep(node, state, mid, state0, true, _, config, _) and
-        revFlow(mid, state0, toReturn, returnAp, ap, config)
+        revFlow(mid, state0, returnCtx, returnAp, ap, config)
       )
       or
       exists(NodeEx mid, FlowState state0, ApNil nil |
-        fwdFlow(node, pragma[only_bind_into](state), _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(node, pragma[only_bind_into](state), _, _, _, ap, pragma[only_bind_into](config)) and
         localStep(node, pragma[only_bind_into](state), mid, state0, false, _, config, _) and
-        revFlow(mid, state0, toReturn, returnAp, nil, pragma[only_bind_into](config)) and
+        revFlow(mid, state0, returnCtx, returnAp, nil, pragma[only_bind_into](config)) and
         ap instanceof ApNil
       )
       or
       exists(NodeEx mid |
         jumpStep(node, mid, config) and
         revFlow(mid, state, _, _, ap, config) and
-        toReturn = false and
+        returnCtx = TReturnCtxNone() and
         returnAp = apNone()
       )
       or
       exists(NodeEx mid, ApNil nil |
-        fwdFlow(node, _, _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(node, _, _, _, _, ap, pragma[only_bind_into](config)) and
         additionalJumpStep(node, mid, config) and
         revFlow(pragma[only_bind_into](mid), state, _, _, nil, pragma[only_bind_into](config)) and
-        toReturn = false and
+        returnCtx = TReturnCtxNone() and
         returnAp = apNone() and
         ap instanceof ApNil
       )
       or
       exists(NodeEx mid, FlowState state0, ApNil nil |
-        fwdFlow(node, _, _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(node, _, _, _, _, ap, pragma[only_bind_into](config)) and
         additionalJumpStateStep(node, state, mid, state0, config) and
         revFlow(pragma[only_bind_into](mid), pragma[only_bind_into](state0), _, _, nil,
           pragma[only_bind_into](config)) and
-        toReturn = false and
+        returnCtx = TReturnCtxNone() and
         returnAp = apNone() and
         ap instanceof ApNil
       )
       or
       // store
       exists(Ap ap0, Content c |
-        revFlowStore(ap0, c, ap, node, state, _, _, toReturn, returnAp, config) and
+        revFlowStore(ap0, c, ap, node, state, _, _, returnCtx, returnAp, config) and
         revFlowConsCand(ap0, c, ap, config)
       )
       or
       // read
       exists(NodeEx mid, Ap ap0 |
-        revFlow(mid, state, toReturn, returnAp, ap0, config) and
+        revFlow(mid, state, returnCtx, returnAp, ap0, config) and
         readStepFwd(node, ap, _, mid, ap0, config)
       )
       or
       // flow into a callable
       revFlowInNotToReturn(node, state, returnAp, ap, config) and
-      toReturn = false
+      returnCtx = TReturnCtxNone()
       or
-      exists(DataFlowCall call, Ap returnAp0 |
-        revFlowInToReturn(call, node, state, returnAp0, ap, config) and
-        revFlowIsReturned(call, toReturn, returnAp, returnAp0, config)
+      // flow through a callable
+      exists(DataFlowCall call, ReturnPosition returnPos0, Ap returnAp0 |
+        revFlowInToReturn(call, node, state, returnPos0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnPos0, returnAp0, config)
       )
       or
       // flow out of a callable
-      revFlowOut(_, node, state, _, _, ap, config) and
-      toReturn = true and
-      if returnNodeMayFlowThrough(node, state, ap, config)
-      then returnAp = apSome(ap)
-      else returnAp = apNone()
+      exists(ReturnPosition pos |
+        revFlowOut(_, node, pos, state, _, _, ap, config) and
+        if returnFlowsThrough(node, pos, state, _, _, _, ap, config)
+        then (
+          returnCtx = TReturnCtxMaybeFlowThrough(pos) and
+          returnAp = apSome(ap)
+        ) else (
+          returnCtx = TReturnCtxNoFlowThrough() and returnAp = apNone()
+        )
+      )
     }
 
     pragma[nomagic]
     private predicate revFlowStore(
       Ap ap0, Content c, Ap ap, NodeEx node, FlowState state, TypedContent tc, NodeEx mid,
-      boolean toReturn, ApOption returnAp, Configuration config
+      ReturnCtx returnCtx, ApOption returnAp, Configuration config
     ) {
-      revFlow(mid, state, toReturn, returnAp, ap0, config) and
+      revFlow(mid, state, returnCtx, returnAp, ap0, config) and
       storeStepFwd(node, ap, tc, mid, ap0, config) and
       tc.getContent() = c
     }
@@ -1599,12 +1638,12 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate revFlowOut(
-      DataFlowCall call, RetNodeEx ret, FlowState state, boolean toReturn, ApOption returnAp, Ap ap,
-      Configuration config
+      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, FlowState state, ReturnCtx returnCtx,
+      ApOption returnAp, Ap ap, Configuration config
     ) {
       exists(NodeEx out, boolean allowsFieldFlow |
-        revFlow(out, state, toReturn, returnAp, ap, config) and
-        flowOutOfCall(call, ret, out, allowsFieldFlow, config) and
+        revFlow(out, state, returnCtx, returnAp, ap, config) and
+        flowOutOfCall(call, ret, pos, out, allowsFieldFlow, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
@@ -1614,7 +1653,7 @@ private module MkStage<StageSig PrevStage> {
       ArgNodeEx arg, FlowState state, ApOption returnAp, Ap ap, Configuration config
     ) {
       exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(p, state, false, returnAp, ap, config) and
+        revFlow(p, state, TReturnCtxNone(), returnAp, ap, config) and
         flowIntoCall(_, arg, p, allowsFieldFlow, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
@@ -1622,12 +1661,14 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate revFlowInToReturn(
-      DataFlowCall call, ArgNodeEx arg, FlowState state, Ap returnAp, Ap ap, Configuration config
+      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnPosition returnPos, Ap returnAp,
+      Ap ap, Configuration config
     ) {
       exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(p, state, true, apSome(returnAp), ap, config) and
+        revFlow(p, state, TReturnCtxMaybeFlowThrough(returnPos), apSome(returnAp), ap, config) and
         flowThroughIntoCall(call, arg, p, allowsFieldFlow, config) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
+        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
+        parameterFlowThroughAllowed(p.asNode(), returnPos.getKind())
       )
     }
 
@@ -1638,11 +1679,12 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate revFlowIsReturned(
-      DataFlowCall call, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
+      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnPosition pos, Ap ap,
+      Configuration config
     ) {
       exists(RetNodeEx ret, FlowState state, CcCall ccc |
-        revFlowOut(call, ret, state, toReturn, returnAp, ap, config) and
-        fwdFlow(ret, state, ccc, apSome(_), ap, config) and
+        revFlowOut(call, ret, pos, state, returnCtx, returnAp, ap, config) and
+        returnFlowsThrough(ret, pos, state, ccc, _, _, ap, config) and
         matchesCall(ccc, call)
       )
     }
@@ -1713,40 +1755,39 @@ private module MkStage<StageSig PrevStage> {
       validAp(ap, config)
     }
 
-    pragma[noinline]
-    private predicate parameterFlow(
-      ParamNodeEx p, Ap ap, Ap ap0, DataFlowCallable c, Configuration config
+    pragma[nomagic]
+    private predicate parameterFlowsThroughRev(
+      ParamNodeEx p, Ap ap, ReturnPosition returnPos, Configuration config
     ) {
-      revFlow(p, _, true, apSome(ap0), ap, config) and
-      c = p.getEnclosingCallable()
+      revFlow(p, _, TReturnCtxMaybeFlowThrough(returnPos), apSome(_), ap, config) and
+      parameterFlowThroughAllowed(p.asNode(), returnPos.getKind())
     }
 
-    predicate parameterMayFlowThrough(ParamNodeEx p, DataFlowCallable c, Ap ap, Configuration config) {
-      exists(RetNodeEx ret, FlowState state, Ap ap0, ReturnKindExt kind, ParameterPosition pos |
-        parameterFlow(p, ap, ap0, c, config) and
-        c = ret.getEnclosingCallable() and
-        revFlow(pragma[only_bind_into](ret), pragma[only_bind_into](state), true, apSome(_),
-          pragma[only_bind_into](ap0), pragma[only_bind_into](config)) and
-        fwdFlow(ret, state, any(CcCall ccc), apSome(ap), ap0, config) and
-        kind = ret.getKind() and
-        p.getPosition() = pos and
-        // we don't expect a parameter to return stored in itself, unless explicitly allowed
-        (
-          not kind.(ParamUpdateReturnKind).getPosition() = pos
-          or
-          p.allowParameterReturnInSelf()
-        )
+    pragma[nomagic]
+    predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
+      exists(RetNodeEx ret, ReturnPosition pos |
+        returnFlowsThrough(ret, pos, _, _, p.asNode(), ap, _, config) and
+        parameterFlowsThroughRev(p, ap, pos, config)
+      )
+    }
+
+    pragma[nomagic]
+    predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config) {
+      exists(ParamNodeEx p, Ap ap |
+        returnFlowsThrough(ret, pos, _, _, p.asNode(), ap, _, config) and
+        parameterFlowsThroughRev(p, ap, pos, config)
       )
     }
 
     pragma[nomagic]
     predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
       exists(
-        Ap returnAp0, ArgNodeEx arg, FlowState state, boolean toReturn, ApOption returnAp, Ap ap
+        ReturnPosition returnPos0, Ap returnAp0, ArgNodeEx arg, FlowState state,
+        ReturnCtx returnCtx, ApOption returnAp, Ap ap
       |
-        revFlow(arg, state, toReturn, returnAp, ap, config) and
-        revFlowInToReturn(call, arg, state, returnAp0, ap, config) and
-        revFlowIsReturned(call, toReturn, returnAp, returnAp0, config)
+        revFlow(arg, state, returnCtx, returnAp, ap, config) and
+        revFlowInToReturn(call, arg, state, returnPos0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnPos0, returnAp0, config)
       )
     }
 
@@ -1754,13 +1795,13 @@ private module MkStage<StageSig PrevStage> {
       boolean fwd, int nodes, int fields, int conscand, int states, int tuples, Configuration config
     ) {
       fwd = true and
-      nodes = count(NodeEx node | fwdFlow(node, _, _, _, _, config)) and
+      nodes = count(NodeEx node | fwdFlow(node, _, _, _, _, _, config)) and
       fields = count(TypedContent f0 | fwdConsCand(f0, _, config)) and
       conscand = count(TypedContent f0, Ap ap | fwdConsCand(f0, ap, config)) and
-      states = count(FlowState state | fwdFlow(_, state, _, _, _, config)) and
+      states = count(FlowState state | fwdFlow(_, state, _, _, _, _, config)) and
       tuples =
-        count(NodeEx n, FlowState state, Cc cc, ApOption argAp, Ap ap |
-          fwdFlow(n, state, cc, argAp, ap, config)
+        count(NodeEx n, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap |
+          fwdFlow(n, state, cc, summaryCtx, argAp, ap, config)
         )
       or
       fwd = false and
@@ -1769,8 +1810,8 @@ private module MkStage<StageSig PrevStage> {
       conscand = count(TypedContent f0, Ap ap | consCand(f0, ap, config)) and
       states = count(FlowState state | revFlow(_, state, _, _, _, config)) and
       tuples =
-        count(NodeEx n, FlowState state, boolean b, ApOption retAp, Ap ap |
-          revFlow(n, state, b, retAp, ap, config)
+        count(NodeEx n, FlowState state, ReturnCtx returnCtx, ApOption retAp, Ap ap |
+          revFlow(n, state, returnCtx, retAp, ap, config)
         )
     }
     /* End: Stage logic. */
@@ -1915,7 +1956,7 @@ private module Stage2Param implements MkStage<Stage1>::StageParam {
     exists(lcc)
   }
 
-  predicate flowOutOfCall = flowOutOfCallNodeCand1/5;
+  predicate flowOutOfCall = flowOutOfCallNodeCand1/6;
 
   predicate flowIntoCall = flowIntoCallNodeCand1/5;
 
@@ -1951,9 +1992,10 @@ private module Stage2 implements StageSig {
 
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand2(
-  DataFlowCall call, RetNodeEx node1, NodeEx node2, boolean allowsFieldFlow, Configuration config
+  DataFlowCall call, RetNodeEx node1, ReturnPosition pos, NodeEx node2, boolean allowsFieldFlow,
+  Configuration config
 ) {
-  flowOutOfCallNodeCand1(call, node1, node2, allowsFieldFlow, config) and
+  flowOutOfCallNodeCand1(call, node1, pos, node2, allowsFieldFlow, config) and
   Stage2::revFlow(node2, pragma[only_bind_into](config)) and
   Stage2::revFlowAlias(node1, pragma[only_bind_into](config))
 }
@@ -2021,8 +2063,8 @@ private module LocalFlowBigStep {
     exists(NodeEx next | Stage2::revFlow(next, state, config) |
       jumpStep(node, next, config) or
       additionalJumpStep(node, next, config) or
-      flowIntoCallNodeCand1(_, node, next, config) or
-      flowOutOfCallNodeCand1(_, node, next, config) or
+      flowIntoCallNodeCand2(_, node, next, _, config) or
+      flowOutOfCallNodeCand2(_, node, _, next, _, config) or
       Stage2::storeStepCand(node, _, _, next, _, config) or
       Stage2::readStepCand(node, _, next, config)
     )
@@ -2163,7 +2205,7 @@ private module Stage3Param implements MkStage<Stage2>::StageParam {
     localFlowBigStep(node1, state1, node2, state2, preservesValue, ap, config, _) and exists(lcc)
   }
 
-  predicate flowOutOfCall = flowOutOfCallNodeCand2/5;
+  predicate flowOutOfCall = flowOutOfCallNodeCand2/6;
 
   predicate flowIntoCall = flowIntoCallNodeCand2/5;
 
@@ -2233,8 +2275,9 @@ private predicate flowCandSummaryCtx(
   NodeEx node, FlowState state, AccessPathFront argApf, Configuration config
 ) {
   exists(AccessPathFront apf |
-    Stage3::revFlow(node, state, true, _, apf, config) and
-    Stage3::fwdFlow(node, state, any(Stage3::CcCall ccc), TAccessPathFrontSome(argApf), apf, config)
+    Stage3::revFlow(node, state, TReturnCtxMaybeFlowThrough(_), _, apf, config) and
+    Stage3::fwdFlow(node, state, any(Stage3::CcCall ccc), _, TAccessPathFrontSome(argApf), apf,
+      config)
   )
 }
 
@@ -2468,10 +2511,11 @@ private module Stage4Param implements MkStage<Stage3>::StageParam {
 
   pragma[nomagic]
   predicate flowOutOfCall(
-    DataFlowCall call, RetNodeEx node1, NodeEx node2, boolean allowsFieldFlow, Configuration config
+    DataFlowCall call, RetNodeEx node1, ReturnPosition pos, NodeEx node2, boolean allowsFieldFlow,
+    Configuration config
   ) {
     exists(FlowState state |
-      flowOutOfCallNodeCand2(call, node1, node2, allowsFieldFlow, config) and
+      flowOutOfCallNodeCand2(call, node1, pos, node2, allowsFieldFlow, config) and
       PrevStage::revFlow(node2, pragma[only_bind_into](state), _, pragma[only_bind_into](config)) and
       PrevStage::revFlowAlias(node1, pragma[only_bind_into](state), _,
         pragma[only_bind_into](config))
@@ -2508,13 +2552,13 @@ private Configuration unbindConf(Configuration conf) {
 
 pragma[nomagic]
 private predicate nodeMayUseSummary0(
-  NodeEx n, DataFlowCallable c, FlowState state, AccessPathApprox apa, Configuration config
+  NodeEx n, ParamNodeEx p, FlowState state, AccessPathApprox apa, Configuration config
 ) {
   exists(AccessPathApprox apa0 |
-    Stage4::parameterMayFlowThrough(_, c, _, _) and
-    Stage4::revFlow(n, state, true, _, apa0, config) and
-    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TAccessPathApproxSome(apa), apa0, config) and
-    n.getEnclosingCallable() = c
+    Stage4::parameterMayFlowThrough(p, _, _) and
+    Stage4::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
+    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TParamNodeSome(p.asNode()),
+      TAccessPathApproxSome(apa), apa0, config)
   )
 }
 
@@ -2522,9 +2566,9 @@ pragma[nomagic]
 private predicate nodeMayUseSummary(
   NodeEx n, FlowState state, AccessPathApprox apa, Configuration config
 ) {
-  exists(DataFlowCallable c |
-    Stage4::parameterMayFlowThrough(_, c, apa, config) and
-    nodeMayUseSummary0(n, c, state, apa, config)
+  exists(ParamNodeEx p |
+    Stage4::parameterMayFlowThrough(p, apa, config) and
+    nodeMayUseSummary0(n, p, state, apa, config)
   )
 }
 
@@ -2532,7 +2576,7 @@ private newtype TSummaryCtx =
   TSummaryCtxNone() or
   TSummaryCtxSome(ParamNodeEx p, FlowState state, AccessPath ap) {
     exists(Configuration config |
-      Stage4::parameterMayFlowThrough(p, _, ap.getApprox(), config) and
+      Stage4::parameterMayFlowThrough(p, ap.getApprox(), config) and
       Stage4::revFlow(p, state, _, config)
     )
   }
@@ -3453,17 +3497,11 @@ private predicate paramFlowsThrough(
   ReturnKindExt kind, FlowState state, CallContextCall cc, SummaryCtxSome sc, AccessPath ap,
   AccessPathApprox apa, Configuration config
 ) {
-  exists(PathNodeMid mid, RetNodeEx ret, ParameterPosition pos |
+  exists(PathNodeMid mid, RetNodeEx ret |
     pathNode(mid, ret, state, cc, sc, ap, config, _) and
     kind = ret.getKind() and
     apa = ap.getApprox() and
-    pos = sc.getParameterPos() and
-    // we don't expect a parameter to return stored in itself, unless explicitly allowed
-    (
-      not kind.(ParamUpdateReturnKind).getPosition() = pos
-      or
-      sc.getParamNode().allowParameterReturnInSelf()
-    )
+    parameterFlowThroughAllowed(sc.getParamNode().asNode(), kind)
   )
 }
 
diff --git a/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl2.qll b/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl2.qll
index 3c41b1876dc..a52ad110662 100644
--- a/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl2.qll
+++ b/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl2.qll
@@ -319,8 +319,6 @@ private class ParamNodeEx extends NodeEx {
   }
 
   ParameterPosition getPosition() { this.isParameterOf(_, result) }
-
-  predicate allowParameterReturnInSelf() { allowParameterReturnInSelfCached(this.asNode()) }
 }
 
 private class RetNodeEx extends NodeEx {
@@ -608,6 +606,21 @@ private predicate hasSinkCallCtx(Configuration config) {
   )
 }
 
+/**
+ * Holds if flow from `p` to a return node of kind `kind` is allowed.
+ *
+ * We don't expect a parameter to return stored in itself, unless
+ * explicitly allowed
+ */
+bindingset[p, kind]
+private predicate parameterFlowThroughAllowed(ParamNode p, ReturnKindExt kind) {
+  exists(ParameterPosition pos | p.isParameterOf(_, pos) |
+    not kind.(ParamUpdateReturnKind).getPosition() = pos
+    or
+    allowParameterReturnInSelfCached(p)
+  )
+}
+
 private module Stage1 implements StageSig {
   class Ap = Unit;
 
@@ -981,21 +994,22 @@ private module Stage1 implements StageSig {
    * candidate for the origin of a summary.
    */
   pragma[nomagic]
-  predicate parameterMayFlowThrough(ParamNodeEx p, DataFlowCallable c, Ap ap, Configuration config) {
-    exists(ReturnKindExt kind |
+  predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
+    exists(DataFlowCallable c, ReturnKindExt kind |
       throughFlowNodeCand(p, config) and
       returnFlowCallableNodeCand(c, kind, config) and
       p.getEnclosingCallable() = c and
       exists(ap) and
-      // we don't expect a parameter to return stored in itself, unless explicitly allowed
-      (
-        not kind.(ParamUpdateReturnKind).getPosition() = p.getPosition()
-        or
-        p.allowParameterReturnInSelf()
-      )
+      parameterFlowThroughAllowed(p.asNode(), kind)
     )
   }
 
+  pragma[nomagic]
+  predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config) {
+    throughFlowNodeCand(ret, config) and
+    pos = ret.getReturnPosition()
+  }
+
   pragma[nomagic]
   predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
     exists(ArgNodeEx arg, boolean toReturn |
@@ -1052,9 +1066,10 @@ private predicate viableReturnPosOutNodeCand1(
  */
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand1(
-  DataFlowCall call, RetNodeEx ret, NodeEx out, Configuration config
+  DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, Configuration config
 ) {
-  viableReturnPosOutNodeCand1(call, ret.getReturnPosition(), out, config) and
+  viableReturnPosOutNodeCand1(call, pos, out, config) and
+  pos = ret.getReturnPosition() and
   Stage1::revFlow(ret, config) and
   not outBarrier(ret, config) and
   not inBarrier(out, config)
@@ -1090,7 +1105,7 @@ private predicate flowIntoCallNodeCand1(
 private int branch(NodeEx n1, Configuration conf) {
   result =
     strictcount(NodeEx n |
-      flowOutOfCallNodeCand1(_, n1, n, conf) or flowIntoCallNodeCand1(_, n1, n, conf)
+      flowOutOfCallNodeCand1(_, n1, _, n, conf) or flowIntoCallNodeCand1(_, n1, n, conf)
     )
 }
 
@@ -1102,7 +1117,7 @@ private int branch(NodeEx n1, Configuration conf) {
 private int join(NodeEx n2, Configuration conf) {
   result =
     strictcount(NodeEx n |
-      flowOutOfCallNodeCand1(_, n, n2, conf) or flowIntoCallNodeCand1(_, n, n2, conf)
+      flowOutOfCallNodeCand1(_, n, _, n2, conf) or flowIntoCallNodeCand1(_, n, n2, conf)
     )
 }
 
@@ -1115,12 +1130,13 @@ private int join(NodeEx n2, Configuration conf) {
  */
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand1(
-  DataFlowCall call, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow, Configuration config
+  DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
+  Configuration config
 ) {
-  flowOutOfCallNodeCand1(call, ret, out, config) and
+  flowOutOfCallNodeCand1(call, ret, pos, out, pragma[only_bind_into](config)) and
   exists(int b, int j |
-    b = branch(ret, config) and
-    j = join(out, config) and
+    b = branch(ret, pragma[only_bind_into](config)) and
+    j = join(out, pragma[only_bind_into](config)) and
     if b.minimum(j) <= config.fieldFlowBranchLimit()
     then allowsFieldFlow = true
     else allowsFieldFlow = false
@@ -1156,7 +1172,9 @@ private signature module StageSig {
 
   predicate callMayFlowThroughRev(DataFlowCall call, Configuration config);
 
-  predicate parameterMayFlowThrough(ParamNodeEx p, DataFlowCallable c, Ap ap, Configuration config);
+  predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config);
+
+  predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config);
 
   predicate storeStepCand(
     NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, DataFlowType contentType,
@@ -1222,7 +1240,8 @@ private module MkStage<StageSig PrevStage> {
     );
 
     predicate flowOutOfCall(
-      DataFlowCall call, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow, Configuration config
+      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
+      Configuration config
     );
 
     predicate flowIntoCall(
@@ -1247,14 +1266,16 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate flowThroughOutOfCall(
-      DataFlowCall call, CcCall ccc, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow,
-      Configuration config
+      DataFlowCall call, CcCall ccc, RetNodeEx ret, ReturnKindExt kind, NodeEx out,
+      boolean allowsFieldFlow, Configuration config
     ) {
-      flowOutOfCall(call, ret, out, allowsFieldFlow, pragma[only_bind_into](config)) and
-      PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
-      PrevStage::parameterMayFlowThrough(_, ret.getEnclosingCallable(), _,
-        pragma[only_bind_into](config)) and
-      matchesCall(ccc, call)
+      exists(ReturnPosition pos |
+        flowOutOfCall(call, ret, pos, out, allowsFieldFlow, pragma[only_bind_into](config)) and
+        kind = pos.getKind() and
+        PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
+        PrevStage::returnMayFlowThrough(ret, pos, pragma[only_bind_into](config)) and
+        matchesCall(ccc, call)
+      )
     }
 
     /**
@@ -1262,29 +1283,32 @@ private module MkStage<StageSig PrevStage> {
      * configuration `config`.
      *
      * The call context `cc` records whether the node is reached through an
-     * argument in a call, and if so, `argAp` records the access path of that
-     * argument.
+     * argument in a call, and if so, `summaryCtx` and `argAp` record the
+     * corresponding parameter and access path of that argument, respectively.
      */
     pragma[nomagic]
     additional predicate fwdFlow(
-      NodeEx node, FlowState state, Cc cc, ApOption argAp, Ap ap, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      Configuration config
     ) {
-      fwdFlow0(node, state, cc, argAp, ap, config) and
+      fwdFlow0(node, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::revFlow(node, state, unbindApa(getApprox(ap)), config) and
       filter(node, state, ap, config)
     }
 
     pragma[nomagic]
     private predicate fwdFlow0(
-      NodeEx node, FlowState state, Cc cc, ApOption argAp, Ap ap, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      Configuration config
     ) {
       sourceNode(node, state, config) and
       (if hasSourceCallCtx(config) then cc = ccSomeCall() else cc = ccNone()) and
       argAp = apNone() and
+      summaryCtx = TParamNodeNone() and
       ap = getApNil(node)
       or
       exists(NodeEx mid, FlowState state0, Ap ap0, LocalCc localCc |
-        fwdFlow(mid, state0, cc, argAp, ap0, config) and
+        fwdFlow(mid, state0, cc, summaryCtx, argAp, ap0, config) and
         localCc = getLocalCc(mid, cc)
       |
         localStep(mid, state0, node, state, true, _, config, localCc) and
@@ -1295,65 +1319,72 @@ private module MkStage<StageSig PrevStage> {
       )
       or
       exists(NodeEx mid |
-        fwdFlow(mid, pragma[only_bind_into](state), _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, pragma[only_bind_into](config)) and
         jumpStep(mid, node, config) and
         cc = ccNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone()
       )
       or
       exists(NodeEx mid, ApNil nil |
-        fwdFlow(mid, state, _, _, nil, pragma[only_bind_into](config)) and
+        fwdFlow(mid, state, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStep(mid, node, config) and
         cc = ccNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone() and
         ap = getApNil(node)
       )
       or
       exists(NodeEx mid, FlowState state0, ApNil nil |
-        fwdFlow(mid, state0, _, _, nil, pragma[only_bind_into](config)) and
+        fwdFlow(mid, state0, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStateStep(mid, state0, node, state, config) and
         cc = ccNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone() and
         ap = getApNil(node)
       )
       or
       // store
       exists(TypedContent tc, Ap ap0 |
-        fwdFlowStore(_, ap0, tc, node, state, cc, argAp, config) and
+        fwdFlowStore(_, ap0, tc, node, state, cc, summaryCtx, argAp, config) and
         ap = apCons(tc, ap0)
       )
       or
       // read
       exists(Ap ap0, Content c |
-        fwdFlowRead(ap0, c, _, node, state, cc, argAp, config) and
+        fwdFlowRead(ap0, c, _, node, state, cc, summaryCtx, argAp, config) and
         fwdFlowConsCand(ap0, c, ap, config)
       )
       or
       // flow into a callable
       exists(ApApprox apa |
-        fwdFlowIn(_, node, state, _, cc, _, ap, config) and
+        fwdFlowIn(_, node, state, _, cc, _, _, ap, config) and
         apa = getApprox(ap) and
-        if PrevStage::parameterMayFlowThrough(node, _, apa, config)
-        then argAp = apSome(ap)
-        else argAp = apNone()
+        if PrevStage::parameterMayFlowThrough(node, apa, config)
+        then (
+          summaryCtx = TParamNodeSome(node.asNode()) and argAp = apSome(ap)
+        ) else (
+          summaryCtx = TParamNodeNone() and argAp = apNone()
+        )
       )
       or
       // flow out of a callable
-      fwdFlowOutNotFromArg(node, state, cc, argAp, ap, config)
+      fwdFlowOutNotFromArg(node, state, cc, summaryCtx, argAp, ap, config)
       or
-      exists(DataFlowCall call, Ap argAp0 |
-        fwdFlowOutFromArg(call, node, state, argAp0, ap, config) and
-        fwdFlowIsEntered(call, cc, argAp, argAp0, config)
+      // flow through a callable
+      exists(DataFlowCall call, ParamNode summaryCtx0, Ap argAp0 |
+        fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, config) and
+        fwdFlowIsEntered(call, cc, summaryCtx, argAp, summaryCtx0, argAp0, config)
       )
     }
 
     pragma[nomagic]
     private predicate fwdFlowStore(
-      NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc, ApOption argAp,
-      Configuration config
+      NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc,
+      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
     ) {
       exists(DataFlowType contentType |
-        fwdFlow(node1, state, cc, argAp, ap1, config) and
+        fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, config) and
         PrevStage::storeStepCand(node1, unbindApa(getApprox(ap1)), tc, node2, contentType, config) and
         typecheckStore(ap1, contentType)
       )
@@ -1366,7 +1397,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowConsCand(Ap cons, Content c, Ap tail, Configuration config) {
       exists(TypedContent tc |
-        fwdFlowStore(_, tail, tc, _, _, _, _, config) and
+        fwdFlowStore(_, tail, tc, _, _, _, _, _, config) and
         tc.getContent() = c and
         cons = apCons(tc, tail)
       )
@@ -1374,21 +1405,21 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowRead(
-      Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc, ApOption argAp,
-      Configuration config
+      Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc,
+      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
     ) {
-      fwdFlow(node1, state, cc, argAp, ap, config) and
+      fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, c, node2, config) and
       getHeadContent(ap) = c
     }
 
     pragma[nomagic]
     private predicate fwdFlowIn(
-      DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, Cc innercc, ApOption argAp,
-      Ap ap, Configuration config
+      DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, Cc innercc,
+      ParamNodeOption summaryCtx, ApOption argAp, Ap ap, Configuration config
     ) {
       exists(ArgNodeEx arg, boolean allowsFieldFlow |
-        fwdFlow(arg, state, outercc, argAp, ap, config) and
+        fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, config) and
         flowIntoCall(call, arg, p, allowsFieldFlow, config) and
         innercc = getCallContextCall(call, p.getEnclosingCallable(), outercc) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
@@ -1397,14 +1428,15 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowOutNotFromArg(
-      NodeEx out, FlowState state, Cc ccOut, ApOption argAp, Ap ap, Configuration config
+      NodeEx out, FlowState state, Cc ccOut, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      Configuration config
     ) {
       exists(
         DataFlowCall call, RetNodeEx ret, boolean allowsFieldFlow, CcNoCall innercc,
         DataFlowCallable inner
       |
-        fwdFlow(ret, state, innercc, argAp, ap, config) and
-        flowOutOfCall(call, ret, out, allowsFieldFlow, config) and
+        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, config) and
+        flowOutOfCall(call, ret, _, out, allowsFieldFlow, config) and
         inner = ret.getEnclosingCallable() and
         ccOut = getCallContextReturn(inner, call, innercc) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
@@ -1413,12 +1445,14 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowOutFromArg(
-      DataFlowCall call, NodeEx out, FlowState state, Ap argAp, Ap ap, Configuration config
+      DataFlowCall call, NodeEx out, FlowState state, ParamNode summaryCtx, Ap argAp, Ap ap,
+      Configuration config
     ) {
-      exists(RetNodeEx ret, boolean allowsFieldFlow, CcCall ccc |
-        fwdFlow(ret, state, ccc, apSome(argAp), ap, config) and
-        flowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, config) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
+      exists(RetNodeEx ret, ReturnKindExt kind, boolean allowsFieldFlow, CcCall ccc |
+        fwdFlow(ret, state, ccc, TParamNodeSome(summaryCtx), apSome(argAp), ap, config) and
+        flowThroughOutOfCall(call, ccc, ret, kind, out, allowsFieldFlow, config) and
+        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
+        parameterFlowThroughAllowed(summaryCtx, kind)
       )
     }
 
@@ -1428,11 +1462,13 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate fwdFlowIsEntered(
-      DataFlowCall call, Cc cc, ApOption argAp, Ap ap, Configuration config
+      DataFlowCall call, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, ParamNode p, Ap ap,
+      Configuration config
     ) {
-      exists(ParamNodeEx p |
-        fwdFlowIn(call, p, _, cc, _, argAp, ap, config) and
-        PrevStage::parameterMayFlowThrough(p, _, unbindApa(getApprox(ap)), config)
+      exists(ParamNodeEx param |
+        fwdFlowIn(call, param, _, cc, _, summaryCtx, argAp, ap, config) and
+        PrevStage::parameterMayFlowThrough(param, unbindApa(getApprox(ap)), config) and
+        p = param.asNode()
       )
     }
 
@@ -1440,146 +1476,149 @@ private module MkStage<StageSig PrevStage> {
     private predicate storeStepFwd(
       NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, Ap ap2, Configuration config
     ) {
-      fwdFlowStore(node1, ap1, tc, node2, _, _, _, config) and
+      fwdFlowStore(node1, ap1, tc, node2, _, _, _, _, config) and
       ap2 = apCons(tc, ap1) and
-      fwdFlowRead(ap2, tc.getContent(), _, _, _, _, _, config)
+      fwdFlowRead(ap2, tc.getContent(), _, _, _, _, _, _, config)
     }
 
     private predicate readStepFwd(
       NodeEx n1, Ap ap1, Content c, NodeEx n2, Ap ap2, Configuration config
     ) {
-      fwdFlowRead(ap1, c, n1, n2, _, _, _, config) and
+      fwdFlowRead(ap1, c, n1, n2, _, _, _, _, config) and
       fwdFlowConsCand(ap1, c, ap2, config)
     }
 
     pragma[nomagic]
-    private predicate callMayFlowThroughFwd(DataFlowCall call, Configuration config) {
-      exists(Ap argAp0, NodeEx out, FlowState state, Cc cc, ApOption argAp, Ap ap |
-        fwdFlow(out, state, pragma[only_bind_into](cc), pragma[only_bind_into](argAp), ap,
-          pragma[only_bind_into](config)) and
-        fwdFlowOutFromArg(call, out, state, argAp0, ap, config) and
-        fwdFlowIsEntered(pragma[only_bind_into](call), pragma[only_bind_into](cc),
-          pragma[only_bind_into](argAp), pragma[only_bind_into](argAp0),
-          pragma[only_bind_into](config))
-      )
+    private predicate returnFlowsThrough(
+      RetNodeEx ret, ReturnPosition pos, FlowState state, CcCall ccc, ParamNode p, Ap argAp, Ap ap,
+      Configuration config
+    ) {
+      fwdFlow(ret, state, ccc, TParamNodeSome(p), apSome(argAp), ap, config) and
+      pos = ret.getReturnPosition() and
+      parameterFlowThroughAllowed(p, pos.getKind())
     }
 
     pragma[nomagic]
     private predicate flowThroughIntoCall(
       DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
     ) {
-      flowIntoCall(call, arg, p, allowsFieldFlow, config) and
-      fwdFlow(arg, _, _, _, _, pragma[only_bind_into](config)) and
-      PrevStage::parameterMayFlowThrough(p, _, _, pragma[only_bind_into](config)) and
-      callMayFlowThroughFwd(call, pragma[only_bind_into](config))
-    }
-
-    pragma[nomagic]
-    private predicate returnNodeMayFlowThrough(
-      RetNodeEx ret, FlowState state, Ap ap, Configuration config
-    ) {
-      fwdFlow(ret, state, any(CcCall ccc), apSome(_), ap, config)
+      flowIntoCall(call, pragma[only_bind_into](arg), pragma[only_bind_into](p), allowsFieldFlow,
+        pragma[only_bind_into](config)) and
+      fwdFlow(arg, _, _, _, _, _, pragma[only_bind_into](config)) and
+      returnFlowsThrough(_, _, _, _, p.asNode(), _, _, pragma[only_bind_into](config))
     }
 
     /**
      * Holds if `node` with access path `ap` is part of a path from a source to a
      * sink in the configuration `config`.
      *
-     * The Boolean `toReturn` records whether the node must be returned from the
-     * enclosing callable in order to reach a sink, and if so, `returnAp` records
-     * the access path of the returned value.
+     * The parameter `returnCtx` records whether (and how) the node must be returned
+     * from the enclosing callable in order to reach a sink, and if so, `returnAp`
+     * records the access path of the returned value.
      */
     pragma[nomagic]
     additional predicate revFlow(
-      NodeEx node, FlowState state, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
+      NodeEx node, FlowState state, ReturnCtx returnCtx, ApOption returnAp, Ap ap,
+      Configuration config
     ) {
-      revFlow0(node, state, toReturn, returnAp, ap, config) and
-      fwdFlow(node, state, _, _, ap, config)
+      revFlow0(node, state, returnCtx, returnAp, ap, config) and
+      fwdFlow(node, state, _, _, _, ap, config)
     }
 
     pragma[nomagic]
     private predicate revFlow0(
-      NodeEx node, FlowState state, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
+      NodeEx node, FlowState state, ReturnCtx returnCtx, ApOption returnAp, Ap ap,
+      Configuration config
     ) {
-      fwdFlow(node, state, _, _, ap, config) and
+      fwdFlow(node, state, _, _, _, ap, config) and
       sinkNode(node, state, config) and
-      (if hasSinkCallCtx(config) then toReturn = true else toReturn = false) and
+      (
+        if hasSinkCallCtx(config)
+        then returnCtx = TReturnCtxNoFlowThrough()
+        else returnCtx = TReturnCtxNone()
+      ) and
       returnAp = apNone() and
       ap instanceof ApNil
       or
       exists(NodeEx mid, FlowState state0 |
         localStep(node, state, mid, state0, true, _, config, _) and
-        revFlow(mid, state0, toReturn, returnAp, ap, config)
+        revFlow(mid, state0, returnCtx, returnAp, ap, config)
       )
       or
       exists(NodeEx mid, FlowState state0, ApNil nil |
-        fwdFlow(node, pragma[only_bind_into](state), _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(node, pragma[only_bind_into](state), _, _, _, ap, pragma[only_bind_into](config)) and
         localStep(node, pragma[only_bind_into](state), mid, state0, false, _, config, _) and
-        revFlow(mid, state0, toReturn, returnAp, nil, pragma[only_bind_into](config)) and
+        revFlow(mid, state0, returnCtx, returnAp, nil, pragma[only_bind_into](config)) and
         ap instanceof ApNil
       )
       or
       exists(NodeEx mid |
         jumpStep(node, mid, config) and
         revFlow(mid, state, _, _, ap, config) and
-        toReturn = false and
+        returnCtx = TReturnCtxNone() and
         returnAp = apNone()
       )
       or
       exists(NodeEx mid, ApNil nil |
-        fwdFlow(node, _, _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(node, _, _, _, _, ap, pragma[only_bind_into](config)) and
         additionalJumpStep(node, mid, config) and
         revFlow(pragma[only_bind_into](mid), state, _, _, nil, pragma[only_bind_into](config)) and
-        toReturn = false and
+        returnCtx = TReturnCtxNone() and
         returnAp = apNone() and
         ap instanceof ApNil
       )
       or
       exists(NodeEx mid, FlowState state0, ApNil nil |
-        fwdFlow(node, _, _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(node, _, _, _, _, ap, pragma[only_bind_into](config)) and
         additionalJumpStateStep(node, state, mid, state0, config) and
         revFlow(pragma[only_bind_into](mid), pragma[only_bind_into](state0), _, _, nil,
           pragma[only_bind_into](config)) and
-        toReturn = false and
+        returnCtx = TReturnCtxNone() and
         returnAp = apNone() and
         ap instanceof ApNil
       )
       or
       // store
       exists(Ap ap0, Content c |
-        revFlowStore(ap0, c, ap, node, state, _, _, toReturn, returnAp, config) and
+        revFlowStore(ap0, c, ap, node, state, _, _, returnCtx, returnAp, config) and
         revFlowConsCand(ap0, c, ap, config)
       )
       or
       // read
       exists(NodeEx mid, Ap ap0 |
-        revFlow(mid, state, toReturn, returnAp, ap0, config) and
+        revFlow(mid, state, returnCtx, returnAp, ap0, config) and
         readStepFwd(node, ap, _, mid, ap0, config)
       )
       or
       // flow into a callable
       revFlowInNotToReturn(node, state, returnAp, ap, config) and
-      toReturn = false
+      returnCtx = TReturnCtxNone()
       or
-      exists(DataFlowCall call, Ap returnAp0 |
-        revFlowInToReturn(call, node, state, returnAp0, ap, config) and
-        revFlowIsReturned(call, toReturn, returnAp, returnAp0, config)
+      // flow through a callable
+      exists(DataFlowCall call, ReturnPosition returnPos0, Ap returnAp0 |
+        revFlowInToReturn(call, node, state, returnPos0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnPos0, returnAp0, config)
       )
       or
       // flow out of a callable
-      revFlowOut(_, node, state, _, _, ap, config) and
-      toReturn = true and
-      if returnNodeMayFlowThrough(node, state, ap, config)
-      then returnAp = apSome(ap)
-      else returnAp = apNone()
+      exists(ReturnPosition pos |
+        revFlowOut(_, node, pos, state, _, _, ap, config) and
+        if returnFlowsThrough(node, pos, state, _, _, _, ap, config)
+        then (
+          returnCtx = TReturnCtxMaybeFlowThrough(pos) and
+          returnAp = apSome(ap)
+        ) else (
+          returnCtx = TReturnCtxNoFlowThrough() and returnAp = apNone()
+        )
+      )
     }
 
     pragma[nomagic]
     private predicate revFlowStore(
       Ap ap0, Content c, Ap ap, NodeEx node, FlowState state, TypedContent tc, NodeEx mid,
-      boolean toReturn, ApOption returnAp, Configuration config
+      ReturnCtx returnCtx, ApOption returnAp, Configuration config
     ) {
-      revFlow(mid, state, toReturn, returnAp, ap0, config) and
+      revFlow(mid, state, returnCtx, returnAp, ap0, config) and
       storeStepFwd(node, ap, tc, mid, ap0, config) and
       tc.getContent() = c
     }
@@ -1599,12 +1638,12 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate revFlowOut(
-      DataFlowCall call, RetNodeEx ret, FlowState state, boolean toReturn, ApOption returnAp, Ap ap,
-      Configuration config
+      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, FlowState state, ReturnCtx returnCtx,
+      ApOption returnAp, Ap ap, Configuration config
     ) {
       exists(NodeEx out, boolean allowsFieldFlow |
-        revFlow(out, state, toReturn, returnAp, ap, config) and
-        flowOutOfCall(call, ret, out, allowsFieldFlow, config) and
+        revFlow(out, state, returnCtx, returnAp, ap, config) and
+        flowOutOfCall(call, ret, pos, out, allowsFieldFlow, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
@@ -1614,7 +1653,7 @@ private module MkStage<StageSig PrevStage> {
       ArgNodeEx arg, FlowState state, ApOption returnAp, Ap ap, Configuration config
     ) {
       exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(p, state, false, returnAp, ap, config) and
+        revFlow(p, state, TReturnCtxNone(), returnAp, ap, config) and
         flowIntoCall(_, arg, p, allowsFieldFlow, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
@@ -1622,12 +1661,14 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate revFlowInToReturn(
-      DataFlowCall call, ArgNodeEx arg, FlowState state, Ap returnAp, Ap ap, Configuration config
+      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnPosition returnPos, Ap returnAp,
+      Ap ap, Configuration config
     ) {
       exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(p, state, true, apSome(returnAp), ap, config) and
+        revFlow(p, state, TReturnCtxMaybeFlowThrough(returnPos), apSome(returnAp), ap, config) and
         flowThroughIntoCall(call, arg, p, allowsFieldFlow, config) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
+        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
+        parameterFlowThroughAllowed(p.asNode(), returnPos.getKind())
       )
     }
 
@@ -1638,11 +1679,12 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate revFlowIsReturned(
-      DataFlowCall call, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
+      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnPosition pos, Ap ap,
+      Configuration config
     ) {
       exists(RetNodeEx ret, FlowState state, CcCall ccc |
-        revFlowOut(call, ret, state, toReturn, returnAp, ap, config) and
-        fwdFlow(ret, state, ccc, apSome(_), ap, config) and
+        revFlowOut(call, ret, pos, state, returnCtx, returnAp, ap, config) and
+        returnFlowsThrough(ret, pos, state, ccc, _, _, ap, config) and
         matchesCall(ccc, call)
       )
     }
@@ -1713,40 +1755,39 @@ private module MkStage<StageSig PrevStage> {
       validAp(ap, config)
     }
 
-    pragma[noinline]
-    private predicate parameterFlow(
-      ParamNodeEx p, Ap ap, Ap ap0, DataFlowCallable c, Configuration config
+    pragma[nomagic]
+    private predicate parameterFlowsThroughRev(
+      ParamNodeEx p, Ap ap, ReturnPosition returnPos, Configuration config
     ) {
-      revFlow(p, _, true, apSome(ap0), ap, config) and
-      c = p.getEnclosingCallable()
+      revFlow(p, _, TReturnCtxMaybeFlowThrough(returnPos), apSome(_), ap, config) and
+      parameterFlowThroughAllowed(p.asNode(), returnPos.getKind())
     }
 
-    predicate parameterMayFlowThrough(ParamNodeEx p, DataFlowCallable c, Ap ap, Configuration config) {
-      exists(RetNodeEx ret, FlowState state, Ap ap0, ReturnKindExt kind, ParameterPosition pos |
-        parameterFlow(p, ap, ap0, c, config) and
-        c = ret.getEnclosingCallable() and
-        revFlow(pragma[only_bind_into](ret), pragma[only_bind_into](state), true, apSome(_),
-          pragma[only_bind_into](ap0), pragma[only_bind_into](config)) and
-        fwdFlow(ret, state, any(CcCall ccc), apSome(ap), ap0, config) and
-        kind = ret.getKind() and
-        p.getPosition() = pos and
-        // we don't expect a parameter to return stored in itself, unless explicitly allowed
-        (
-          not kind.(ParamUpdateReturnKind).getPosition() = pos
-          or
-          p.allowParameterReturnInSelf()
-        )
+    pragma[nomagic]
+    predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
+      exists(RetNodeEx ret, ReturnPosition pos |
+        returnFlowsThrough(ret, pos, _, _, p.asNode(), ap, _, config) and
+        parameterFlowsThroughRev(p, ap, pos, config)
+      )
+    }
+
+    pragma[nomagic]
+    predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config) {
+      exists(ParamNodeEx p, Ap ap |
+        returnFlowsThrough(ret, pos, _, _, p.asNode(), ap, _, config) and
+        parameterFlowsThroughRev(p, ap, pos, config)
       )
     }
 
     pragma[nomagic]
     predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
       exists(
-        Ap returnAp0, ArgNodeEx arg, FlowState state, boolean toReturn, ApOption returnAp, Ap ap
+        ReturnPosition returnPos0, Ap returnAp0, ArgNodeEx arg, FlowState state,
+        ReturnCtx returnCtx, ApOption returnAp, Ap ap
       |
-        revFlow(arg, state, toReturn, returnAp, ap, config) and
-        revFlowInToReturn(call, arg, state, returnAp0, ap, config) and
-        revFlowIsReturned(call, toReturn, returnAp, returnAp0, config)
+        revFlow(arg, state, returnCtx, returnAp, ap, config) and
+        revFlowInToReturn(call, arg, state, returnPos0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnPos0, returnAp0, config)
       )
     }
 
@@ -1754,13 +1795,13 @@ private module MkStage<StageSig PrevStage> {
       boolean fwd, int nodes, int fields, int conscand, int states, int tuples, Configuration config
     ) {
       fwd = true and
-      nodes = count(NodeEx node | fwdFlow(node, _, _, _, _, config)) and
+      nodes = count(NodeEx node | fwdFlow(node, _, _, _, _, _, config)) and
       fields = count(TypedContent f0 | fwdConsCand(f0, _, config)) and
       conscand = count(TypedContent f0, Ap ap | fwdConsCand(f0, ap, config)) and
-      states = count(FlowState state | fwdFlow(_, state, _, _, _, config)) and
+      states = count(FlowState state | fwdFlow(_, state, _, _, _, _, config)) and
       tuples =
-        count(NodeEx n, FlowState state, Cc cc, ApOption argAp, Ap ap |
-          fwdFlow(n, state, cc, argAp, ap, config)
+        count(NodeEx n, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap |
+          fwdFlow(n, state, cc, summaryCtx, argAp, ap, config)
         )
       or
       fwd = false and
@@ -1769,8 +1810,8 @@ private module MkStage<StageSig PrevStage> {
       conscand = count(TypedContent f0, Ap ap | consCand(f0, ap, config)) and
       states = count(FlowState state | revFlow(_, state, _, _, _, config)) and
       tuples =
-        count(NodeEx n, FlowState state, boolean b, ApOption retAp, Ap ap |
-          revFlow(n, state, b, retAp, ap, config)
+        count(NodeEx n, FlowState state, ReturnCtx returnCtx, ApOption retAp, Ap ap |
+          revFlow(n, state, returnCtx, retAp, ap, config)
         )
     }
     /* End: Stage logic. */
@@ -1915,7 +1956,7 @@ private module Stage2Param implements MkStage<Stage1>::StageParam {
     exists(lcc)
   }
 
-  predicate flowOutOfCall = flowOutOfCallNodeCand1/5;
+  predicate flowOutOfCall = flowOutOfCallNodeCand1/6;
 
   predicate flowIntoCall = flowIntoCallNodeCand1/5;
 
@@ -1951,9 +1992,10 @@ private module Stage2 implements StageSig {
 
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand2(
-  DataFlowCall call, RetNodeEx node1, NodeEx node2, boolean allowsFieldFlow, Configuration config
+  DataFlowCall call, RetNodeEx node1, ReturnPosition pos, NodeEx node2, boolean allowsFieldFlow,
+  Configuration config
 ) {
-  flowOutOfCallNodeCand1(call, node1, node2, allowsFieldFlow, config) and
+  flowOutOfCallNodeCand1(call, node1, pos, node2, allowsFieldFlow, config) and
   Stage2::revFlow(node2, pragma[only_bind_into](config)) and
   Stage2::revFlowAlias(node1, pragma[only_bind_into](config))
 }
@@ -2021,8 +2063,8 @@ private module LocalFlowBigStep {
     exists(NodeEx next | Stage2::revFlow(next, state, config) |
       jumpStep(node, next, config) or
       additionalJumpStep(node, next, config) or
-      flowIntoCallNodeCand1(_, node, next, config) or
-      flowOutOfCallNodeCand1(_, node, next, config) or
+      flowIntoCallNodeCand2(_, node, next, _, config) or
+      flowOutOfCallNodeCand2(_, node, _, next, _, config) or
       Stage2::storeStepCand(node, _, _, next, _, config) or
       Stage2::readStepCand(node, _, next, config)
     )
@@ -2163,7 +2205,7 @@ private module Stage3Param implements MkStage<Stage2>::StageParam {
     localFlowBigStep(node1, state1, node2, state2, preservesValue, ap, config, _) and exists(lcc)
   }
 
-  predicate flowOutOfCall = flowOutOfCallNodeCand2/5;
+  predicate flowOutOfCall = flowOutOfCallNodeCand2/6;
 
   predicate flowIntoCall = flowIntoCallNodeCand2/5;
 
@@ -2233,8 +2275,9 @@ private predicate flowCandSummaryCtx(
   NodeEx node, FlowState state, AccessPathFront argApf, Configuration config
 ) {
   exists(AccessPathFront apf |
-    Stage3::revFlow(node, state, true, _, apf, config) and
-    Stage3::fwdFlow(node, state, any(Stage3::CcCall ccc), TAccessPathFrontSome(argApf), apf, config)
+    Stage3::revFlow(node, state, TReturnCtxMaybeFlowThrough(_), _, apf, config) and
+    Stage3::fwdFlow(node, state, any(Stage3::CcCall ccc), _, TAccessPathFrontSome(argApf), apf,
+      config)
   )
 }
 
@@ -2468,10 +2511,11 @@ private module Stage4Param implements MkStage<Stage3>::StageParam {
 
   pragma[nomagic]
   predicate flowOutOfCall(
-    DataFlowCall call, RetNodeEx node1, NodeEx node2, boolean allowsFieldFlow, Configuration config
+    DataFlowCall call, RetNodeEx node1, ReturnPosition pos, NodeEx node2, boolean allowsFieldFlow,
+    Configuration config
   ) {
     exists(FlowState state |
-      flowOutOfCallNodeCand2(call, node1, node2, allowsFieldFlow, config) and
+      flowOutOfCallNodeCand2(call, node1, pos, node2, allowsFieldFlow, config) and
       PrevStage::revFlow(node2, pragma[only_bind_into](state), _, pragma[only_bind_into](config)) and
       PrevStage::revFlowAlias(node1, pragma[only_bind_into](state), _,
         pragma[only_bind_into](config))
@@ -2508,13 +2552,13 @@ private Configuration unbindConf(Configuration conf) {
 
 pragma[nomagic]
 private predicate nodeMayUseSummary0(
-  NodeEx n, DataFlowCallable c, FlowState state, AccessPathApprox apa, Configuration config
+  NodeEx n, ParamNodeEx p, FlowState state, AccessPathApprox apa, Configuration config
 ) {
   exists(AccessPathApprox apa0 |
-    Stage4::parameterMayFlowThrough(_, c, _, _) and
-    Stage4::revFlow(n, state, true, _, apa0, config) and
-    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TAccessPathApproxSome(apa), apa0, config) and
-    n.getEnclosingCallable() = c
+    Stage4::parameterMayFlowThrough(p, _, _) and
+    Stage4::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
+    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TParamNodeSome(p.asNode()),
+      TAccessPathApproxSome(apa), apa0, config)
   )
 }
 
@@ -2522,9 +2566,9 @@ pragma[nomagic]
 private predicate nodeMayUseSummary(
   NodeEx n, FlowState state, AccessPathApprox apa, Configuration config
 ) {
-  exists(DataFlowCallable c |
-    Stage4::parameterMayFlowThrough(_, c, apa, config) and
-    nodeMayUseSummary0(n, c, state, apa, config)
+  exists(ParamNodeEx p |
+    Stage4::parameterMayFlowThrough(p, apa, config) and
+    nodeMayUseSummary0(n, p, state, apa, config)
   )
 }
 
@@ -2532,7 +2576,7 @@ private newtype TSummaryCtx =
   TSummaryCtxNone() or
   TSummaryCtxSome(ParamNodeEx p, FlowState state, AccessPath ap) {
     exists(Configuration config |
-      Stage4::parameterMayFlowThrough(p, _, ap.getApprox(), config) and
+      Stage4::parameterMayFlowThrough(p, ap.getApprox(), config) and
       Stage4::revFlow(p, state, _, config)
     )
   }
@@ -3453,17 +3497,11 @@ private predicate paramFlowsThrough(
   ReturnKindExt kind, FlowState state, CallContextCall cc, SummaryCtxSome sc, AccessPath ap,
   AccessPathApprox apa, Configuration config
 ) {
-  exists(PathNodeMid mid, RetNodeEx ret, ParameterPosition pos |
+  exists(PathNodeMid mid, RetNodeEx ret |
     pathNode(mid, ret, state, cc, sc, ap, config, _) and
     kind = ret.getKind() and
     apa = ap.getApprox() and
-    pos = sc.getParameterPos() and
-    // we don't expect a parameter to return stored in itself, unless explicitly allowed
-    (
-      not kind.(ParamUpdateReturnKind).getPosition() = pos
-      or
-      sc.getParamNode().allowParameterReturnInSelf()
-    )
+    parameterFlowThroughAllowed(sc.getParamNode().asNode(), kind)
   )
 }
 
diff --git a/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl3.qll b/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl3.qll
index 3c41b1876dc..a52ad110662 100644
--- a/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl3.qll
+++ b/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl3.qll
@@ -319,8 +319,6 @@ private class ParamNodeEx extends NodeEx {
   }
 
   ParameterPosition getPosition() { this.isParameterOf(_, result) }
-
-  predicate allowParameterReturnInSelf() { allowParameterReturnInSelfCached(this.asNode()) }
 }
 
 private class RetNodeEx extends NodeEx {
@@ -608,6 +606,21 @@ private predicate hasSinkCallCtx(Configuration config) {
   )
 }
 
+/**
+ * Holds if flow from `p` to a return node of kind `kind` is allowed.
+ *
+ * We don't expect a parameter to return stored in itself, unless
+ * explicitly allowed
+ */
+bindingset[p, kind]
+private predicate parameterFlowThroughAllowed(ParamNode p, ReturnKindExt kind) {
+  exists(ParameterPosition pos | p.isParameterOf(_, pos) |
+    not kind.(ParamUpdateReturnKind).getPosition() = pos
+    or
+    allowParameterReturnInSelfCached(p)
+  )
+}
+
 private module Stage1 implements StageSig {
   class Ap = Unit;
 
@@ -981,21 +994,22 @@ private module Stage1 implements StageSig {
    * candidate for the origin of a summary.
    */
   pragma[nomagic]
-  predicate parameterMayFlowThrough(ParamNodeEx p, DataFlowCallable c, Ap ap, Configuration config) {
-    exists(ReturnKindExt kind |
+  predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
+    exists(DataFlowCallable c, ReturnKindExt kind |
       throughFlowNodeCand(p, config) and
       returnFlowCallableNodeCand(c, kind, config) and
       p.getEnclosingCallable() = c and
       exists(ap) and
-      // we don't expect a parameter to return stored in itself, unless explicitly allowed
-      (
-        not kind.(ParamUpdateReturnKind).getPosition() = p.getPosition()
-        or
-        p.allowParameterReturnInSelf()
-      )
+      parameterFlowThroughAllowed(p.asNode(), kind)
     )
   }
 
+  pragma[nomagic]
+  predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config) {
+    throughFlowNodeCand(ret, config) and
+    pos = ret.getReturnPosition()
+  }
+
   pragma[nomagic]
   predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
     exists(ArgNodeEx arg, boolean toReturn |
@@ -1052,9 +1066,10 @@ private predicate viableReturnPosOutNodeCand1(
  */
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand1(
-  DataFlowCall call, RetNodeEx ret, NodeEx out, Configuration config
+  DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, Configuration config
 ) {
-  viableReturnPosOutNodeCand1(call, ret.getReturnPosition(), out, config) and
+  viableReturnPosOutNodeCand1(call, pos, out, config) and
+  pos = ret.getReturnPosition() and
   Stage1::revFlow(ret, config) and
   not outBarrier(ret, config) and
   not inBarrier(out, config)
@@ -1090,7 +1105,7 @@ private predicate flowIntoCallNodeCand1(
 private int branch(NodeEx n1, Configuration conf) {
   result =
     strictcount(NodeEx n |
-      flowOutOfCallNodeCand1(_, n1, n, conf) or flowIntoCallNodeCand1(_, n1, n, conf)
+      flowOutOfCallNodeCand1(_, n1, _, n, conf) or flowIntoCallNodeCand1(_, n1, n, conf)
     )
 }
 
@@ -1102,7 +1117,7 @@ private int branch(NodeEx n1, Configuration conf) {
 private int join(NodeEx n2, Configuration conf) {
   result =
     strictcount(NodeEx n |
-      flowOutOfCallNodeCand1(_, n, n2, conf) or flowIntoCallNodeCand1(_, n, n2, conf)
+      flowOutOfCallNodeCand1(_, n, _, n2, conf) or flowIntoCallNodeCand1(_, n, n2, conf)
     )
 }
 
@@ -1115,12 +1130,13 @@ private int join(NodeEx n2, Configuration conf) {
  */
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand1(
-  DataFlowCall call, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow, Configuration config
+  DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
+  Configuration config
 ) {
-  flowOutOfCallNodeCand1(call, ret, out, config) and
+  flowOutOfCallNodeCand1(call, ret, pos, out, pragma[only_bind_into](config)) and
   exists(int b, int j |
-    b = branch(ret, config) and
-    j = join(out, config) and
+    b = branch(ret, pragma[only_bind_into](config)) and
+    j = join(out, pragma[only_bind_into](config)) and
     if b.minimum(j) <= config.fieldFlowBranchLimit()
     then allowsFieldFlow = true
     else allowsFieldFlow = false
@@ -1156,7 +1172,9 @@ private signature module StageSig {
 
   predicate callMayFlowThroughRev(DataFlowCall call, Configuration config);
 
-  predicate parameterMayFlowThrough(ParamNodeEx p, DataFlowCallable c, Ap ap, Configuration config);
+  predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config);
+
+  predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config);
 
   predicate storeStepCand(
     NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, DataFlowType contentType,
@@ -1222,7 +1240,8 @@ private module MkStage<StageSig PrevStage> {
     );
 
     predicate flowOutOfCall(
-      DataFlowCall call, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow, Configuration config
+      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
+      Configuration config
     );
 
     predicate flowIntoCall(
@@ -1247,14 +1266,16 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate flowThroughOutOfCall(
-      DataFlowCall call, CcCall ccc, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow,
-      Configuration config
+      DataFlowCall call, CcCall ccc, RetNodeEx ret, ReturnKindExt kind, NodeEx out,
+      boolean allowsFieldFlow, Configuration config
     ) {
-      flowOutOfCall(call, ret, out, allowsFieldFlow, pragma[only_bind_into](config)) and
-      PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
-      PrevStage::parameterMayFlowThrough(_, ret.getEnclosingCallable(), _,
-        pragma[only_bind_into](config)) and
-      matchesCall(ccc, call)
+      exists(ReturnPosition pos |
+        flowOutOfCall(call, ret, pos, out, allowsFieldFlow, pragma[only_bind_into](config)) and
+        kind = pos.getKind() and
+        PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
+        PrevStage::returnMayFlowThrough(ret, pos, pragma[only_bind_into](config)) and
+        matchesCall(ccc, call)
+      )
     }
 
     /**
@@ -1262,29 +1283,32 @@ private module MkStage<StageSig PrevStage> {
      * configuration `config`.
      *
      * The call context `cc` records whether the node is reached through an
-     * argument in a call, and if so, `argAp` records the access path of that
-     * argument.
+     * argument in a call, and if so, `summaryCtx` and `argAp` record the
+     * corresponding parameter and access path of that argument, respectively.
      */
     pragma[nomagic]
     additional predicate fwdFlow(
-      NodeEx node, FlowState state, Cc cc, ApOption argAp, Ap ap, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      Configuration config
     ) {
-      fwdFlow0(node, state, cc, argAp, ap, config) and
+      fwdFlow0(node, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::revFlow(node, state, unbindApa(getApprox(ap)), config) and
       filter(node, state, ap, config)
     }
 
     pragma[nomagic]
     private predicate fwdFlow0(
-      NodeEx node, FlowState state, Cc cc, ApOption argAp, Ap ap, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      Configuration config
     ) {
       sourceNode(node, state, config) and
       (if hasSourceCallCtx(config) then cc = ccSomeCall() else cc = ccNone()) and
       argAp = apNone() and
+      summaryCtx = TParamNodeNone() and
       ap = getApNil(node)
       or
       exists(NodeEx mid, FlowState state0, Ap ap0, LocalCc localCc |
-        fwdFlow(mid, state0, cc, argAp, ap0, config) and
+        fwdFlow(mid, state0, cc, summaryCtx, argAp, ap0, config) and
         localCc = getLocalCc(mid, cc)
       |
         localStep(mid, state0, node, state, true, _, config, localCc) and
@@ -1295,65 +1319,72 @@ private module MkStage<StageSig PrevStage> {
       )
       or
       exists(NodeEx mid |
-        fwdFlow(mid, pragma[only_bind_into](state), _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, pragma[only_bind_into](config)) and
         jumpStep(mid, node, config) and
         cc = ccNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone()
       )
       or
       exists(NodeEx mid, ApNil nil |
-        fwdFlow(mid, state, _, _, nil, pragma[only_bind_into](config)) and
+        fwdFlow(mid, state, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStep(mid, node, config) and
         cc = ccNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone() and
         ap = getApNil(node)
       )
       or
       exists(NodeEx mid, FlowState state0, ApNil nil |
-        fwdFlow(mid, state0, _, _, nil, pragma[only_bind_into](config)) and
+        fwdFlow(mid, state0, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStateStep(mid, state0, node, state, config) and
         cc = ccNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone() and
         ap = getApNil(node)
       )
       or
       // store
       exists(TypedContent tc, Ap ap0 |
-        fwdFlowStore(_, ap0, tc, node, state, cc, argAp, config) and
+        fwdFlowStore(_, ap0, tc, node, state, cc, summaryCtx, argAp, config) and
         ap = apCons(tc, ap0)
       )
       or
       // read
       exists(Ap ap0, Content c |
-        fwdFlowRead(ap0, c, _, node, state, cc, argAp, config) and
+        fwdFlowRead(ap0, c, _, node, state, cc, summaryCtx, argAp, config) and
         fwdFlowConsCand(ap0, c, ap, config)
       )
       or
       // flow into a callable
       exists(ApApprox apa |
-        fwdFlowIn(_, node, state, _, cc, _, ap, config) and
+        fwdFlowIn(_, node, state, _, cc, _, _, ap, config) and
         apa = getApprox(ap) and
-        if PrevStage::parameterMayFlowThrough(node, _, apa, config)
-        then argAp = apSome(ap)
-        else argAp = apNone()
+        if PrevStage::parameterMayFlowThrough(node, apa, config)
+        then (
+          summaryCtx = TParamNodeSome(node.asNode()) and argAp = apSome(ap)
+        ) else (
+          summaryCtx = TParamNodeNone() and argAp = apNone()
+        )
       )
       or
       // flow out of a callable
-      fwdFlowOutNotFromArg(node, state, cc, argAp, ap, config)
+      fwdFlowOutNotFromArg(node, state, cc, summaryCtx, argAp, ap, config)
       or
-      exists(DataFlowCall call, Ap argAp0 |
-        fwdFlowOutFromArg(call, node, state, argAp0, ap, config) and
-        fwdFlowIsEntered(call, cc, argAp, argAp0, config)
+      // flow through a callable
+      exists(DataFlowCall call, ParamNode summaryCtx0, Ap argAp0 |
+        fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, config) and
+        fwdFlowIsEntered(call, cc, summaryCtx, argAp, summaryCtx0, argAp0, config)
       )
     }
 
     pragma[nomagic]
     private predicate fwdFlowStore(
-      NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc, ApOption argAp,
-      Configuration config
+      NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc,
+      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
     ) {
       exists(DataFlowType contentType |
-        fwdFlow(node1, state, cc, argAp, ap1, config) and
+        fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, config) and
         PrevStage::storeStepCand(node1, unbindApa(getApprox(ap1)), tc, node2, contentType, config) and
         typecheckStore(ap1, contentType)
       )
@@ -1366,7 +1397,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowConsCand(Ap cons, Content c, Ap tail, Configuration config) {
       exists(TypedContent tc |
-        fwdFlowStore(_, tail, tc, _, _, _, _, config) and
+        fwdFlowStore(_, tail, tc, _, _, _, _, _, config) and
         tc.getContent() = c and
         cons = apCons(tc, tail)
       )
@@ -1374,21 +1405,21 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowRead(
-      Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc, ApOption argAp,
-      Configuration config
+      Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc,
+      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
     ) {
-      fwdFlow(node1, state, cc, argAp, ap, config) and
+      fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, c, node2, config) and
       getHeadContent(ap) = c
     }
 
     pragma[nomagic]
     private predicate fwdFlowIn(
-      DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, Cc innercc, ApOption argAp,
-      Ap ap, Configuration config
+      DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, Cc innercc,
+      ParamNodeOption summaryCtx, ApOption argAp, Ap ap, Configuration config
     ) {
       exists(ArgNodeEx arg, boolean allowsFieldFlow |
-        fwdFlow(arg, state, outercc, argAp, ap, config) and
+        fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, config) and
         flowIntoCall(call, arg, p, allowsFieldFlow, config) and
         innercc = getCallContextCall(call, p.getEnclosingCallable(), outercc) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
@@ -1397,14 +1428,15 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowOutNotFromArg(
-      NodeEx out, FlowState state, Cc ccOut, ApOption argAp, Ap ap, Configuration config
+      NodeEx out, FlowState state, Cc ccOut, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      Configuration config
     ) {
       exists(
         DataFlowCall call, RetNodeEx ret, boolean allowsFieldFlow, CcNoCall innercc,
         DataFlowCallable inner
       |
-        fwdFlow(ret, state, innercc, argAp, ap, config) and
-        flowOutOfCall(call, ret, out, allowsFieldFlow, config) and
+        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, config) and
+        flowOutOfCall(call, ret, _, out, allowsFieldFlow, config) and
         inner = ret.getEnclosingCallable() and
         ccOut = getCallContextReturn(inner, call, innercc) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
@@ -1413,12 +1445,14 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowOutFromArg(
-      DataFlowCall call, NodeEx out, FlowState state, Ap argAp, Ap ap, Configuration config
+      DataFlowCall call, NodeEx out, FlowState state, ParamNode summaryCtx, Ap argAp, Ap ap,
+      Configuration config
     ) {
-      exists(RetNodeEx ret, boolean allowsFieldFlow, CcCall ccc |
-        fwdFlow(ret, state, ccc, apSome(argAp), ap, config) and
-        flowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, config) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
+      exists(RetNodeEx ret, ReturnKindExt kind, boolean allowsFieldFlow, CcCall ccc |
+        fwdFlow(ret, state, ccc, TParamNodeSome(summaryCtx), apSome(argAp), ap, config) and
+        flowThroughOutOfCall(call, ccc, ret, kind, out, allowsFieldFlow, config) and
+        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
+        parameterFlowThroughAllowed(summaryCtx, kind)
       )
     }
 
@@ -1428,11 +1462,13 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate fwdFlowIsEntered(
-      DataFlowCall call, Cc cc, ApOption argAp, Ap ap, Configuration config
+      DataFlowCall call, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, ParamNode p, Ap ap,
+      Configuration config
     ) {
-      exists(ParamNodeEx p |
-        fwdFlowIn(call, p, _, cc, _, argAp, ap, config) and
-        PrevStage::parameterMayFlowThrough(p, _, unbindApa(getApprox(ap)), config)
+      exists(ParamNodeEx param |
+        fwdFlowIn(call, param, _, cc, _, summaryCtx, argAp, ap, config) and
+        PrevStage::parameterMayFlowThrough(param, unbindApa(getApprox(ap)), config) and
+        p = param.asNode()
       )
     }
 
@@ -1440,146 +1476,149 @@ private module MkStage<StageSig PrevStage> {
     private predicate storeStepFwd(
       NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, Ap ap2, Configuration config
     ) {
-      fwdFlowStore(node1, ap1, tc, node2, _, _, _, config) and
+      fwdFlowStore(node1, ap1, tc, node2, _, _, _, _, config) and
       ap2 = apCons(tc, ap1) and
-      fwdFlowRead(ap2, tc.getContent(), _, _, _, _, _, config)
+      fwdFlowRead(ap2, tc.getContent(), _, _, _, _, _, _, config)
     }
 
     private predicate readStepFwd(
       NodeEx n1, Ap ap1, Content c, NodeEx n2, Ap ap2, Configuration config
     ) {
-      fwdFlowRead(ap1, c, n1, n2, _, _, _, config) and
+      fwdFlowRead(ap1, c, n1, n2, _, _, _, _, config) and
       fwdFlowConsCand(ap1, c, ap2, config)
     }
 
     pragma[nomagic]
-    private predicate callMayFlowThroughFwd(DataFlowCall call, Configuration config) {
-      exists(Ap argAp0, NodeEx out, FlowState state, Cc cc, ApOption argAp, Ap ap |
-        fwdFlow(out, state, pragma[only_bind_into](cc), pragma[only_bind_into](argAp), ap,
-          pragma[only_bind_into](config)) and
-        fwdFlowOutFromArg(call, out, state, argAp0, ap, config) and
-        fwdFlowIsEntered(pragma[only_bind_into](call), pragma[only_bind_into](cc),
-          pragma[only_bind_into](argAp), pragma[only_bind_into](argAp0),
-          pragma[only_bind_into](config))
-      )
+    private predicate returnFlowsThrough(
+      RetNodeEx ret, ReturnPosition pos, FlowState state, CcCall ccc, ParamNode p, Ap argAp, Ap ap,
+      Configuration config
+    ) {
+      fwdFlow(ret, state, ccc, TParamNodeSome(p), apSome(argAp), ap, config) and
+      pos = ret.getReturnPosition() and
+      parameterFlowThroughAllowed(p, pos.getKind())
     }
 
     pragma[nomagic]
     private predicate flowThroughIntoCall(
       DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
     ) {
-      flowIntoCall(call, arg, p, allowsFieldFlow, config) and
-      fwdFlow(arg, _, _, _, _, pragma[only_bind_into](config)) and
-      PrevStage::parameterMayFlowThrough(p, _, _, pragma[only_bind_into](config)) and
-      callMayFlowThroughFwd(call, pragma[only_bind_into](config))
-    }
-
-    pragma[nomagic]
-    private predicate returnNodeMayFlowThrough(
-      RetNodeEx ret, FlowState state, Ap ap, Configuration config
-    ) {
-      fwdFlow(ret, state, any(CcCall ccc), apSome(_), ap, config)
+      flowIntoCall(call, pragma[only_bind_into](arg), pragma[only_bind_into](p), allowsFieldFlow,
+        pragma[only_bind_into](config)) and
+      fwdFlow(arg, _, _, _, _, _, pragma[only_bind_into](config)) and
+      returnFlowsThrough(_, _, _, _, p.asNode(), _, _, pragma[only_bind_into](config))
     }
 
     /**
      * Holds if `node` with access path `ap` is part of a path from a source to a
      * sink in the configuration `config`.
      *
-     * The Boolean `toReturn` records whether the node must be returned from the
-     * enclosing callable in order to reach a sink, and if so, `returnAp` records
-     * the access path of the returned value.
+     * The parameter `returnCtx` records whether (and how) the node must be returned
+     * from the enclosing callable in order to reach a sink, and if so, `returnAp`
+     * records the access path of the returned value.
      */
     pragma[nomagic]
     additional predicate revFlow(
-      NodeEx node, FlowState state, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
+      NodeEx node, FlowState state, ReturnCtx returnCtx, ApOption returnAp, Ap ap,
+      Configuration config
     ) {
-      revFlow0(node, state, toReturn, returnAp, ap, config) and
-      fwdFlow(node, state, _, _, ap, config)
+      revFlow0(node, state, returnCtx, returnAp, ap, config) and
+      fwdFlow(node, state, _, _, _, ap, config)
     }
 
     pragma[nomagic]
     private predicate revFlow0(
-      NodeEx node, FlowState state, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
+      NodeEx node, FlowState state, ReturnCtx returnCtx, ApOption returnAp, Ap ap,
+      Configuration config
     ) {
-      fwdFlow(node, state, _, _, ap, config) and
+      fwdFlow(node, state, _, _, _, ap, config) and
       sinkNode(node, state, config) and
-      (if hasSinkCallCtx(config) then toReturn = true else toReturn = false) and
+      (
+        if hasSinkCallCtx(config)
+        then returnCtx = TReturnCtxNoFlowThrough()
+        else returnCtx = TReturnCtxNone()
+      ) and
       returnAp = apNone() and
       ap instanceof ApNil
       or
       exists(NodeEx mid, FlowState state0 |
         localStep(node, state, mid, state0, true, _, config, _) and
-        revFlow(mid, state0, toReturn, returnAp, ap, config)
+        revFlow(mid, state0, returnCtx, returnAp, ap, config)
       )
       or
       exists(NodeEx mid, FlowState state0, ApNil nil |
-        fwdFlow(node, pragma[only_bind_into](state), _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(node, pragma[only_bind_into](state), _, _, _, ap, pragma[only_bind_into](config)) and
         localStep(node, pragma[only_bind_into](state), mid, state0, false, _, config, _) and
-        revFlow(mid, state0, toReturn, returnAp, nil, pragma[only_bind_into](config)) and
+        revFlow(mid, state0, returnCtx, returnAp, nil, pragma[only_bind_into](config)) and
         ap instanceof ApNil
       )
       or
       exists(NodeEx mid |
         jumpStep(node, mid, config) and
         revFlow(mid, state, _, _, ap, config) and
-        toReturn = false and
+        returnCtx = TReturnCtxNone() and
         returnAp = apNone()
       )
       or
       exists(NodeEx mid, ApNil nil |
-        fwdFlow(node, _, _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(node, _, _, _, _, ap, pragma[only_bind_into](config)) and
         additionalJumpStep(node, mid, config) and
         revFlow(pragma[only_bind_into](mid), state, _, _, nil, pragma[only_bind_into](config)) and
-        toReturn = false and
+        returnCtx = TReturnCtxNone() and
         returnAp = apNone() and
         ap instanceof ApNil
       )
       or
       exists(NodeEx mid, FlowState state0, ApNil nil |
-        fwdFlow(node, _, _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(node, _, _, _, _, ap, pragma[only_bind_into](config)) and
         additionalJumpStateStep(node, state, mid, state0, config) and
         revFlow(pragma[only_bind_into](mid), pragma[only_bind_into](state0), _, _, nil,
           pragma[only_bind_into](config)) and
-        toReturn = false and
+        returnCtx = TReturnCtxNone() and
         returnAp = apNone() and
         ap instanceof ApNil
       )
       or
       // store
       exists(Ap ap0, Content c |
-        revFlowStore(ap0, c, ap, node, state, _, _, toReturn, returnAp, config) and
+        revFlowStore(ap0, c, ap, node, state, _, _, returnCtx, returnAp, config) and
         revFlowConsCand(ap0, c, ap, config)
       )
       or
       // read
       exists(NodeEx mid, Ap ap0 |
-        revFlow(mid, state, toReturn, returnAp, ap0, config) and
+        revFlow(mid, state, returnCtx, returnAp, ap0, config) and
         readStepFwd(node, ap, _, mid, ap0, config)
       )
       or
       // flow into a callable
       revFlowInNotToReturn(node, state, returnAp, ap, config) and
-      toReturn = false
+      returnCtx = TReturnCtxNone()
       or
-      exists(DataFlowCall call, Ap returnAp0 |
-        revFlowInToReturn(call, node, state, returnAp0, ap, config) and
-        revFlowIsReturned(call, toReturn, returnAp, returnAp0, config)
+      // flow through a callable
+      exists(DataFlowCall call, ReturnPosition returnPos0, Ap returnAp0 |
+        revFlowInToReturn(call, node, state, returnPos0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnPos0, returnAp0, config)
       )
       or
       // flow out of a callable
-      revFlowOut(_, node, state, _, _, ap, config) and
-      toReturn = true and
-      if returnNodeMayFlowThrough(node, state, ap, config)
-      then returnAp = apSome(ap)
-      else returnAp = apNone()
+      exists(ReturnPosition pos |
+        revFlowOut(_, node, pos, state, _, _, ap, config) and
+        if returnFlowsThrough(node, pos, state, _, _, _, ap, config)
+        then (
+          returnCtx = TReturnCtxMaybeFlowThrough(pos) and
+          returnAp = apSome(ap)
+        ) else (
+          returnCtx = TReturnCtxNoFlowThrough() and returnAp = apNone()
+        )
+      )
     }
 
     pragma[nomagic]
     private predicate revFlowStore(
       Ap ap0, Content c, Ap ap, NodeEx node, FlowState state, TypedContent tc, NodeEx mid,
-      boolean toReturn, ApOption returnAp, Configuration config
+      ReturnCtx returnCtx, ApOption returnAp, Configuration config
     ) {
-      revFlow(mid, state, toReturn, returnAp, ap0, config) and
+      revFlow(mid, state, returnCtx, returnAp, ap0, config) and
       storeStepFwd(node, ap, tc, mid, ap0, config) and
       tc.getContent() = c
     }
@@ -1599,12 +1638,12 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate revFlowOut(
-      DataFlowCall call, RetNodeEx ret, FlowState state, boolean toReturn, ApOption returnAp, Ap ap,
-      Configuration config
+      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, FlowState state, ReturnCtx returnCtx,
+      ApOption returnAp, Ap ap, Configuration config
     ) {
       exists(NodeEx out, boolean allowsFieldFlow |
-        revFlow(out, state, toReturn, returnAp, ap, config) and
-        flowOutOfCall(call, ret, out, allowsFieldFlow, config) and
+        revFlow(out, state, returnCtx, returnAp, ap, config) and
+        flowOutOfCall(call, ret, pos, out, allowsFieldFlow, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
@@ -1614,7 +1653,7 @@ private module MkStage<StageSig PrevStage> {
       ArgNodeEx arg, FlowState state, ApOption returnAp, Ap ap, Configuration config
     ) {
       exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(p, state, false, returnAp, ap, config) and
+        revFlow(p, state, TReturnCtxNone(), returnAp, ap, config) and
         flowIntoCall(_, arg, p, allowsFieldFlow, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
@@ -1622,12 +1661,14 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate revFlowInToReturn(
-      DataFlowCall call, ArgNodeEx arg, FlowState state, Ap returnAp, Ap ap, Configuration config
+      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnPosition returnPos, Ap returnAp,
+      Ap ap, Configuration config
     ) {
       exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(p, state, true, apSome(returnAp), ap, config) and
+        revFlow(p, state, TReturnCtxMaybeFlowThrough(returnPos), apSome(returnAp), ap, config) and
         flowThroughIntoCall(call, arg, p, allowsFieldFlow, config) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
+        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
+        parameterFlowThroughAllowed(p.asNode(), returnPos.getKind())
       )
     }
 
@@ -1638,11 +1679,12 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate revFlowIsReturned(
-      DataFlowCall call, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
+      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnPosition pos, Ap ap,
+      Configuration config
     ) {
       exists(RetNodeEx ret, FlowState state, CcCall ccc |
-        revFlowOut(call, ret, state, toReturn, returnAp, ap, config) and
-        fwdFlow(ret, state, ccc, apSome(_), ap, config) and
+        revFlowOut(call, ret, pos, state, returnCtx, returnAp, ap, config) and
+        returnFlowsThrough(ret, pos, state, ccc, _, _, ap, config) and
         matchesCall(ccc, call)
       )
     }
@@ -1713,40 +1755,39 @@ private module MkStage<StageSig PrevStage> {
       validAp(ap, config)
     }
 
-    pragma[noinline]
-    private predicate parameterFlow(
-      ParamNodeEx p, Ap ap, Ap ap0, DataFlowCallable c, Configuration config
+    pragma[nomagic]
+    private predicate parameterFlowsThroughRev(
+      ParamNodeEx p, Ap ap, ReturnPosition returnPos, Configuration config
     ) {
-      revFlow(p, _, true, apSome(ap0), ap, config) and
-      c = p.getEnclosingCallable()
+      revFlow(p, _, TReturnCtxMaybeFlowThrough(returnPos), apSome(_), ap, config) and
+      parameterFlowThroughAllowed(p.asNode(), returnPos.getKind())
     }
 
-    predicate parameterMayFlowThrough(ParamNodeEx p, DataFlowCallable c, Ap ap, Configuration config) {
-      exists(RetNodeEx ret, FlowState state, Ap ap0, ReturnKindExt kind, ParameterPosition pos |
-        parameterFlow(p, ap, ap0, c, config) and
-        c = ret.getEnclosingCallable() and
-        revFlow(pragma[only_bind_into](ret), pragma[only_bind_into](state), true, apSome(_),
-          pragma[only_bind_into](ap0), pragma[only_bind_into](config)) and
-        fwdFlow(ret, state, any(CcCall ccc), apSome(ap), ap0, config) and
-        kind = ret.getKind() and
-        p.getPosition() = pos and
-        // we don't expect a parameter to return stored in itself, unless explicitly allowed
-        (
-          not kind.(ParamUpdateReturnKind).getPosition() = pos
-          or
-          p.allowParameterReturnInSelf()
-        )
+    pragma[nomagic]
+    predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
+      exists(RetNodeEx ret, ReturnPosition pos |
+        returnFlowsThrough(ret, pos, _, _, p.asNode(), ap, _, config) and
+        parameterFlowsThroughRev(p, ap, pos, config)
+      )
+    }
+
+    pragma[nomagic]
+    predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config) {
+      exists(ParamNodeEx p, Ap ap |
+        returnFlowsThrough(ret, pos, _, _, p.asNode(), ap, _, config) and
+        parameterFlowsThroughRev(p, ap, pos, config)
       )
     }
 
     pragma[nomagic]
     predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
       exists(
-        Ap returnAp0, ArgNodeEx arg, FlowState state, boolean toReturn, ApOption returnAp, Ap ap
+        ReturnPosition returnPos0, Ap returnAp0, ArgNodeEx arg, FlowState state,
+        ReturnCtx returnCtx, ApOption returnAp, Ap ap
       |
-        revFlow(arg, state, toReturn, returnAp, ap, config) and
-        revFlowInToReturn(call, arg, state, returnAp0, ap, config) and
-        revFlowIsReturned(call, toReturn, returnAp, returnAp0, config)
+        revFlow(arg, state, returnCtx, returnAp, ap, config) and
+        revFlowInToReturn(call, arg, state, returnPos0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnPos0, returnAp0, config)
       )
     }
 
@@ -1754,13 +1795,13 @@ private module MkStage<StageSig PrevStage> {
       boolean fwd, int nodes, int fields, int conscand, int states, int tuples, Configuration config
     ) {
       fwd = true and
-      nodes = count(NodeEx node | fwdFlow(node, _, _, _, _, config)) and
+      nodes = count(NodeEx node | fwdFlow(node, _, _, _, _, _, config)) and
       fields = count(TypedContent f0 | fwdConsCand(f0, _, config)) and
       conscand = count(TypedContent f0, Ap ap | fwdConsCand(f0, ap, config)) and
-      states = count(FlowState state | fwdFlow(_, state, _, _, _, config)) and
+      states = count(FlowState state | fwdFlow(_, state, _, _, _, _, config)) and
       tuples =
-        count(NodeEx n, FlowState state, Cc cc, ApOption argAp, Ap ap |
-          fwdFlow(n, state, cc, argAp, ap, config)
+        count(NodeEx n, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap |
+          fwdFlow(n, state, cc, summaryCtx, argAp, ap, config)
         )
       or
       fwd = false and
@@ -1769,8 +1810,8 @@ private module MkStage<StageSig PrevStage> {
       conscand = count(TypedContent f0, Ap ap | consCand(f0, ap, config)) and
       states = count(FlowState state | revFlow(_, state, _, _, _, config)) and
       tuples =
-        count(NodeEx n, FlowState state, boolean b, ApOption retAp, Ap ap |
-          revFlow(n, state, b, retAp, ap, config)
+        count(NodeEx n, FlowState state, ReturnCtx returnCtx, ApOption retAp, Ap ap |
+          revFlow(n, state, returnCtx, retAp, ap, config)
         )
     }
     /* End: Stage logic. */
@@ -1915,7 +1956,7 @@ private module Stage2Param implements MkStage<Stage1>::StageParam {
     exists(lcc)
   }
 
-  predicate flowOutOfCall = flowOutOfCallNodeCand1/5;
+  predicate flowOutOfCall = flowOutOfCallNodeCand1/6;
 
   predicate flowIntoCall = flowIntoCallNodeCand1/5;
 
@@ -1951,9 +1992,10 @@ private module Stage2 implements StageSig {
 
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand2(
-  DataFlowCall call, RetNodeEx node1, NodeEx node2, boolean allowsFieldFlow, Configuration config
+  DataFlowCall call, RetNodeEx node1, ReturnPosition pos, NodeEx node2, boolean allowsFieldFlow,
+  Configuration config
 ) {
-  flowOutOfCallNodeCand1(call, node1, node2, allowsFieldFlow, config) and
+  flowOutOfCallNodeCand1(call, node1, pos, node2, allowsFieldFlow, config) and
   Stage2::revFlow(node2, pragma[only_bind_into](config)) and
   Stage2::revFlowAlias(node1, pragma[only_bind_into](config))
 }
@@ -2021,8 +2063,8 @@ private module LocalFlowBigStep {
     exists(NodeEx next | Stage2::revFlow(next, state, config) |
       jumpStep(node, next, config) or
       additionalJumpStep(node, next, config) or
-      flowIntoCallNodeCand1(_, node, next, config) or
-      flowOutOfCallNodeCand1(_, node, next, config) or
+      flowIntoCallNodeCand2(_, node, next, _, config) or
+      flowOutOfCallNodeCand2(_, node, _, next, _, config) or
       Stage2::storeStepCand(node, _, _, next, _, config) or
       Stage2::readStepCand(node, _, next, config)
     )
@@ -2163,7 +2205,7 @@ private module Stage3Param implements MkStage<Stage2>::StageParam {
     localFlowBigStep(node1, state1, node2, state2, preservesValue, ap, config, _) and exists(lcc)
   }
 
-  predicate flowOutOfCall = flowOutOfCallNodeCand2/5;
+  predicate flowOutOfCall = flowOutOfCallNodeCand2/6;
 
   predicate flowIntoCall = flowIntoCallNodeCand2/5;
 
@@ -2233,8 +2275,9 @@ private predicate flowCandSummaryCtx(
   NodeEx node, FlowState state, AccessPathFront argApf, Configuration config
 ) {
   exists(AccessPathFront apf |
-    Stage3::revFlow(node, state, true, _, apf, config) and
-    Stage3::fwdFlow(node, state, any(Stage3::CcCall ccc), TAccessPathFrontSome(argApf), apf, config)
+    Stage3::revFlow(node, state, TReturnCtxMaybeFlowThrough(_), _, apf, config) and
+    Stage3::fwdFlow(node, state, any(Stage3::CcCall ccc), _, TAccessPathFrontSome(argApf), apf,
+      config)
   )
 }
 
@@ -2468,10 +2511,11 @@ private module Stage4Param implements MkStage<Stage3>::StageParam {
 
   pragma[nomagic]
   predicate flowOutOfCall(
-    DataFlowCall call, RetNodeEx node1, NodeEx node2, boolean allowsFieldFlow, Configuration config
+    DataFlowCall call, RetNodeEx node1, ReturnPosition pos, NodeEx node2, boolean allowsFieldFlow,
+    Configuration config
   ) {
     exists(FlowState state |
-      flowOutOfCallNodeCand2(call, node1, node2, allowsFieldFlow, config) and
+      flowOutOfCallNodeCand2(call, node1, pos, node2, allowsFieldFlow, config) and
       PrevStage::revFlow(node2, pragma[only_bind_into](state), _, pragma[only_bind_into](config)) and
       PrevStage::revFlowAlias(node1, pragma[only_bind_into](state), _,
         pragma[only_bind_into](config))
@@ -2508,13 +2552,13 @@ private Configuration unbindConf(Configuration conf) {
 
 pragma[nomagic]
 private predicate nodeMayUseSummary0(
-  NodeEx n, DataFlowCallable c, FlowState state, AccessPathApprox apa, Configuration config
+  NodeEx n, ParamNodeEx p, FlowState state, AccessPathApprox apa, Configuration config
 ) {
   exists(AccessPathApprox apa0 |
-    Stage4::parameterMayFlowThrough(_, c, _, _) and
-    Stage4::revFlow(n, state, true, _, apa0, config) and
-    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TAccessPathApproxSome(apa), apa0, config) and
-    n.getEnclosingCallable() = c
+    Stage4::parameterMayFlowThrough(p, _, _) and
+    Stage4::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
+    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TParamNodeSome(p.asNode()),
+      TAccessPathApproxSome(apa), apa0, config)
   )
 }
 
@@ -2522,9 +2566,9 @@ pragma[nomagic]
 private predicate nodeMayUseSummary(
   NodeEx n, FlowState state, AccessPathApprox apa, Configuration config
 ) {
-  exists(DataFlowCallable c |
-    Stage4::parameterMayFlowThrough(_, c, apa, config) and
-    nodeMayUseSummary0(n, c, state, apa, config)
+  exists(ParamNodeEx p |
+    Stage4::parameterMayFlowThrough(p, apa, config) and
+    nodeMayUseSummary0(n, p, state, apa, config)
   )
 }
 
@@ -2532,7 +2576,7 @@ private newtype TSummaryCtx =
   TSummaryCtxNone() or
   TSummaryCtxSome(ParamNodeEx p, FlowState state, AccessPath ap) {
     exists(Configuration config |
-      Stage4::parameterMayFlowThrough(p, _, ap.getApprox(), config) and
+      Stage4::parameterMayFlowThrough(p, ap.getApprox(), config) and
       Stage4::revFlow(p, state, _, config)
     )
   }
@@ -3453,17 +3497,11 @@ private predicate paramFlowsThrough(
   ReturnKindExt kind, FlowState state, CallContextCall cc, SummaryCtxSome sc, AccessPath ap,
   AccessPathApprox apa, Configuration config
 ) {
-  exists(PathNodeMid mid, RetNodeEx ret, ParameterPosition pos |
+  exists(PathNodeMid mid, RetNodeEx ret |
     pathNode(mid, ret, state, cc, sc, ap, config, _) and
     kind = ret.getKind() and
     apa = ap.getApprox() and
-    pos = sc.getParameterPos() and
-    // we don't expect a parameter to return stored in itself, unless explicitly allowed
-    (
-      not kind.(ParamUpdateReturnKind).getPosition() = pos
-      or
-      sc.getParamNode().allowParameterReturnInSelf()
-    )
+    parameterFlowThroughAllowed(sc.getParamNode().asNode(), kind)
   )
 }
 
diff --git a/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl4.qll b/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl4.qll
index 3c41b1876dc..a52ad110662 100644
--- a/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl4.qll
+++ b/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl4.qll
@@ -319,8 +319,6 @@ private class ParamNodeEx extends NodeEx {
   }
 
   ParameterPosition getPosition() { this.isParameterOf(_, result) }
-
-  predicate allowParameterReturnInSelf() { allowParameterReturnInSelfCached(this.asNode()) }
 }
 
 private class RetNodeEx extends NodeEx {
@@ -608,6 +606,21 @@ private predicate hasSinkCallCtx(Configuration config) {
   )
 }
 
+/**
+ * Holds if flow from `p` to a return node of kind `kind` is allowed.
+ *
+ * We don't expect a parameter to return stored in itself, unless
+ * explicitly allowed
+ */
+bindingset[p, kind]
+private predicate parameterFlowThroughAllowed(ParamNode p, ReturnKindExt kind) {
+  exists(ParameterPosition pos | p.isParameterOf(_, pos) |
+    not kind.(ParamUpdateReturnKind).getPosition() = pos
+    or
+    allowParameterReturnInSelfCached(p)
+  )
+}
+
 private module Stage1 implements StageSig {
   class Ap = Unit;
 
@@ -981,21 +994,22 @@ private module Stage1 implements StageSig {
    * candidate for the origin of a summary.
    */
   pragma[nomagic]
-  predicate parameterMayFlowThrough(ParamNodeEx p, DataFlowCallable c, Ap ap, Configuration config) {
-    exists(ReturnKindExt kind |
+  predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
+    exists(DataFlowCallable c, ReturnKindExt kind |
       throughFlowNodeCand(p, config) and
       returnFlowCallableNodeCand(c, kind, config) and
       p.getEnclosingCallable() = c and
       exists(ap) and
-      // we don't expect a parameter to return stored in itself, unless explicitly allowed
-      (
-        not kind.(ParamUpdateReturnKind).getPosition() = p.getPosition()
-        or
-        p.allowParameterReturnInSelf()
-      )
+      parameterFlowThroughAllowed(p.asNode(), kind)
     )
   }
 
+  pragma[nomagic]
+  predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config) {
+    throughFlowNodeCand(ret, config) and
+    pos = ret.getReturnPosition()
+  }
+
   pragma[nomagic]
   predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
     exists(ArgNodeEx arg, boolean toReturn |
@@ -1052,9 +1066,10 @@ private predicate viableReturnPosOutNodeCand1(
  */
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand1(
-  DataFlowCall call, RetNodeEx ret, NodeEx out, Configuration config
+  DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, Configuration config
 ) {
-  viableReturnPosOutNodeCand1(call, ret.getReturnPosition(), out, config) and
+  viableReturnPosOutNodeCand1(call, pos, out, config) and
+  pos = ret.getReturnPosition() and
   Stage1::revFlow(ret, config) and
   not outBarrier(ret, config) and
   not inBarrier(out, config)
@@ -1090,7 +1105,7 @@ private predicate flowIntoCallNodeCand1(
 private int branch(NodeEx n1, Configuration conf) {
   result =
     strictcount(NodeEx n |
-      flowOutOfCallNodeCand1(_, n1, n, conf) or flowIntoCallNodeCand1(_, n1, n, conf)
+      flowOutOfCallNodeCand1(_, n1, _, n, conf) or flowIntoCallNodeCand1(_, n1, n, conf)
     )
 }
 
@@ -1102,7 +1117,7 @@ private int branch(NodeEx n1, Configuration conf) {
 private int join(NodeEx n2, Configuration conf) {
   result =
     strictcount(NodeEx n |
-      flowOutOfCallNodeCand1(_, n, n2, conf) or flowIntoCallNodeCand1(_, n, n2, conf)
+      flowOutOfCallNodeCand1(_, n, _, n2, conf) or flowIntoCallNodeCand1(_, n, n2, conf)
     )
 }
 
@@ -1115,12 +1130,13 @@ private int join(NodeEx n2, Configuration conf) {
  */
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand1(
-  DataFlowCall call, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow, Configuration config
+  DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
+  Configuration config
 ) {
-  flowOutOfCallNodeCand1(call, ret, out, config) and
+  flowOutOfCallNodeCand1(call, ret, pos, out, pragma[only_bind_into](config)) and
   exists(int b, int j |
-    b = branch(ret, config) and
-    j = join(out, config) and
+    b = branch(ret, pragma[only_bind_into](config)) and
+    j = join(out, pragma[only_bind_into](config)) and
     if b.minimum(j) <= config.fieldFlowBranchLimit()
     then allowsFieldFlow = true
     else allowsFieldFlow = false
@@ -1156,7 +1172,9 @@ private signature module StageSig {
 
   predicate callMayFlowThroughRev(DataFlowCall call, Configuration config);
 
-  predicate parameterMayFlowThrough(ParamNodeEx p, DataFlowCallable c, Ap ap, Configuration config);
+  predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config);
+
+  predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config);
 
   predicate storeStepCand(
     NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, DataFlowType contentType,
@@ -1222,7 +1240,8 @@ private module MkStage<StageSig PrevStage> {
     );
 
     predicate flowOutOfCall(
-      DataFlowCall call, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow, Configuration config
+      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
+      Configuration config
     );
 
     predicate flowIntoCall(
@@ -1247,14 +1266,16 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate flowThroughOutOfCall(
-      DataFlowCall call, CcCall ccc, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow,
-      Configuration config
+      DataFlowCall call, CcCall ccc, RetNodeEx ret, ReturnKindExt kind, NodeEx out,
+      boolean allowsFieldFlow, Configuration config
     ) {
-      flowOutOfCall(call, ret, out, allowsFieldFlow, pragma[only_bind_into](config)) and
-      PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
-      PrevStage::parameterMayFlowThrough(_, ret.getEnclosingCallable(), _,
-        pragma[only_bind_into](config)) and
-      matchesCall(ccc, call)
+      exists(ReturnPosition pos |
+        flowOutOfCall(call, ret, pos, out, allowsFieldFlow, pragma[only_bind_into](config)) and
+        kind = pos.getKind() and
+        PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
+        PrevStage::returnMayFlowThrough(ret, pos, pragma[only_bind_into](config)) and
+        matchesCall(ccc, call)
+      )
     }
 
     /**
@@ -1262,29 +1283,32 @@ private module MkStage<StageSig PrevStage> {
      * configuration `config`.
      *
      * The call context `cc` records whether the node is reached through an
-     * argument in a call, and if so, `argAp` records the access path of that
-     * argument.
+     * argument in a call, and if so, `summaryCtx` and `argAp` record the
+     * corresponding parameter and access path of that argument, respectively.
      */
     pragma[nomagic]
     additional predicate fwdFlow(
-      NodeEx node, FlowState state, Cc cc, ApOption argAp, Ap ap, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      Configuration config
     ) {
-      fwdFlow0(node, state, cc, argAp, ap, config) and
+      fwdFlow0(node, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::revFlow(node, state, unbindApa(getApprox(ap)), config) and
       filter(node, state, ap, config)
     }
 
     pragma[nomagic]
     private predicate fwdFlow0(
-      NodeEx node, FlowState state, Cc cc, ApOption argAp, Ap ap, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      Configuration config
     ) {
       sourceNode(node, state, config) and
       (if hasSourceCallCtx(config) then cc = ccSomeCall() else cc = ccNone()) and
       argAp = apNone() and
+      summaryCtx = TParamNodeNone() and
       ap = getApNil(node)
       or
       exists(NodeEx mid, FlowState state0, Ap ap0, LocalCc localCc |
-        fwdFlow(mid, state0, cc, argAp, ap0, config) and
+        fwdFlow(mid, state0, cc, summaryCtx, argAp, ap0, config) and
         localCc = getLocalCc(mid, cc)
       |
         localStep(mid, state0, node, state, true, _, config, localCc) and
@@ -1295,65 +1319,72 @@ private module MkStage<StageSig PrevStage> {
       )
       or
       exists(NodeEx mid |
-        fwdFlow(mid, pragma[only_bind_into](state), _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, pragma[only_bind_into](config)) and
         jumpStep(mid, node, config) and
         cc = ccNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone()
       )
       or
       exists(NodeEx mid, ApNil nil |
-        fwdFlow(mid, state, _, _, nil, pragma[only_bind_into](config)) and
+        fwdFlow(mid, state, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStep(mid, node, config) and
         cc = ccNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone() and
         ap = getApNil(node)
       )
       or
       exists(NodeEx mid, FlowState state0, ApNil nil |
-        fwdFlow(mid, state0, _, _, nil, pragma[only_bind_into](config)) and
+        fwdFlow(mid, state0, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStateStep(mid, state0, node, state, config) and
         cc = ccNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone() and
         ap = getApNil(node)
       )
       or
       // store
       exists(TypedContent tc, Ap ap0 |
-        fwdFlowStore(_, ap0, tc, node, state, cc, argAp, config) and
+        fwdFlowStore(_, ap0, tc, node, state, cc, summaryCtx, argAp, config) and
         ap = apCons(tc, ap0)
       )
       or
       // read
       exists(Ap ap0, Content c |
-        fwdFlowRead(ap0, c, _, node, state, cc, argAp, config) and
+        fwdFlowRead(ap0, c, _, node, state, cc, summaryCtx, argAp, config) and
         fwdFlowConsCand(ap0, c, ap, config)
       )
       or
       // flow into a callable
       exists(ApApprox apa |
-        fwdFlowIn(_, node, state, _, cc, _, ap, config) and
+        fwdFlowIn(_, node, state, _, cc, _, _, ap, config) and
         apa = getApprox(ap) and
-        if PrevStage::parameterMayFlowThrough(node, _, apa, config)
-        then argAp = apSome(ap)
-        else argAp = apNone()
+        if PrevStage::parameterMayFlowThrough(node, apa, config)
+        then (
+          summaryCtx = TParamNodeSome(node.asNode()) and argAp = apSome(ap)
+        ) else (
+          summaryCtx = TParamNodeNone() and argAp = apNone()
+        )
       )
       or
       // flow out of a callable
-      fwdFlowOutNotFromArg(node, state, cc, argAp, ap, config)
+      fwdFlowOutNotFromArg(node, state, cc, summaryCtx, argAp, ap, config)
       or
-      exists(DataFlowCall call, Ap argAp0 |
-        fwdFlowOutFromArg(call, node, state, argAp0, ap, config) and
-        fwdFlowIsEntered(call, cc, argAp, argAp0, config)
+      // flow through a callable
+      exists(DataFlowCall call, ParamNode summaryCtx0, Ap argAp0 |
+        fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, config) and
+        fwdFlowIsEntered(call, cc, summaryCtx, argAp, summaryCtx0, argAp0, config)
       )
     }
 
     pragma[nomagic]
     private predicate fwdFlowStore(
-      NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc, ApOption argAp,
-      Configuration config
+      NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc,
+      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
     ) {
       exists(DataFlowType contentType |
-        fwdFlow(node1, state, cc, argAp, ap1, config) and
+        fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, config) and
         PrevStage::storeStepCand(node1, unbindApa(getApprox(ap1)), tc, node2, contentType, config) and
         typecheckStore(ap1, contentType)
       )
@@ -1366,7 +1397,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowConsCand(Ap cons, Content c, Ap tail, Configuration config) {
       exists(TypedContent tc |
-        fwdFlowStore(_, tail, tc, _, _, _, _, config) and
+        fwdFlowStore(_, tail, tc, _, _, _, _, _, config) and
         tc.getContent() = c and
         cons = apCons(tc, tail)
       )
@@ -1374,21 +1405,21 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowRead(
-      Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc, ApOption argAp,
-      Configuration config
+      Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc,
+      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
     ) {
-      fwdFlow(node1, state, cc, argAp, ap, config) and
+      fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, c, node2, config) and
       getHeadContent(ap) = c
     }
 
     pragma[nomagic]
     private predicate fwdFlowIn(
-      DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, Cc innercc, ApOption argAp,
-      Ap ap, Configuration config
+      DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, Cc innercc,
+      ParamNodeOption summaryCtx, ApOption argAp, Ap ap, Configuration config
     ) {
       exists(ArgNodeEx arg, boolean allowsFieldFlow |
-        fwdFlow(arg, state, outercc, argAp, ap, config) and
+        fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, config) and
         flowIntoCall(call, arg, p, allowsFieldFlow, config) and
         innercc = getCallContextCall(call, p.getEnclosingCallable(), outercc) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
@@ -1397,14 +1428,15 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowOutNotFromArg(
-      NodeEx out, FlowState state, Cc ccOut, ApOption argAp, Ap ap, Configuration config
+      NodeEx out, FlowState state, Cc ccOut, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      Configuration config
     ) {
       exists(
         DataFlowCall call, RetNodeEx ret, boolean allowsFieldFlow, CcNoCall innercc,
         DataFlowCallable inner
       |
-        fwdFlow(ret, state, innercc, argAp, ap, config) and
-        flowOutOfCall(call, ret, out, allowsFieldFlow, config) and
+        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, config) and
+        flowOutOfCall(call, ret, _, out, allowsFieldFlow, config) and
         inner = ret.getEnclosingCallable() and
         ccOut = getCallContextReturn(inner, call, innercc) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
@@ -1413,12 +1445,14 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowOutFromArg(
-      DataFlowCall call, NodeEx out, FlowState state, Ap argAp, Ap ap, Configuration config
+      DataFlowCall call, NodeEx out, FlowState state, ParamNode summaryCtx, Ap argAp, Ap ap,
+      Configuration config
     ) {
-      exists(RetNodeEx ret, boolean allowsFieldFlow, CcCall ccc |
-        fwdFlow(ret, state, ccc, apSome(argAp), ap, config) and
-        flowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, config) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
+      exists(RetNodeEx ret, ReturnKindExt kind, boolean allowsFieldFlow, CcCall ccc |
+        fwdFlow(ret, state, ccc, TParamNodeSome(summaryCtx), apSome(argAp), ap, config) and
+        flowThroughOutOfCall(call, ccc, ret, kind, out, allowsFieldFlow, config) and
+        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
+        parameterFlowThroughAllowed(summaryCtx, kind)
       )
     }
 
@@ -1428,11 +1462,13 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate fwdFlowIsEntered(
-      DataFlowCall call, Cc cc, ApOption argAp, Ap ap, Configuration config
+      DataFlowCall call, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, ParamNode p, Ap ap,
+      Configuration config
     ) {
-      exists(ParamNodeEx p |
-        fwdFlowIn(call, p, _, cc, _, argAp, ap, config) and
-        PrevStage::parameterMayFlowThrough(p, _, unbindApa(getApprox(ap)), config)
+      exists(ParamNodeEx param |
+        fwdFlowIn(call, param, _, cc, _, summaryCtx, argAp, ap, config) and
+        PrevStage::parameterMayFlowThrough(param, unbindApa(getApprox(ap)), config) and
+        p = param.asNode()
       )
     }
 
@@ -1440,146 +1476,149 @@ private module MkStage<StageSig PrevStage> {
     private predicate storeStepFwd(
       NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, Ap ap2, Configuration config
     ) {
-      fwdFlowStore(node1, ap1, tc, node2, _, _, _, config) and
+      fwdFlowStore(node1, ap1, tc, node2, _, _, _, _, config) and
       ap2 = apCons(tc, ap1) and
-      fwdFlowRead(ap2, tc.getContent(), _, _, _, _, _, config)
+      fwdFlowRead(ap2, tc.getContent(), _, _, _, _, _, _, config)
     }
 
     private predicate readStepFwd(
       NodeEx n1, Ap ap1, Content c, NodeEx n2, Ap ap2, Configuration config
     ) {
-      fwdFlowRead(ap1, c, n1, n2, _, _, _, config) and
+      fwdFlowRead(ap1, c, n1, n2, _, _, _, _, config) and
       fwdFlowConsCand(ap1, c, ap2, config)
     }
 
     pragma[nomagic]
-    private predicate callMayFlowThroughFwd(DataFlowCall call, Configuration config) {
-      exists(Ap argAp0, NodeEx out, FlowState state, Cc cc, ApOption argAp, Ap ap |
-        fwdFlow(out, state, pragma[only_bind_into](cc), pragma[only_bind_into](argAp), ap,
-          pragma[only_bind_into](config)) and
-        fwdFlowOutFromArg(call, out, state, argAp0, ap, config) and
-        fwdFlowIsEntered(pragma[only_bind_into](call), pragma[only_bind_into](cc),
-          pragma[only_bind_into](argAp), pragma[only_bind_into](argAp0),
-          pragma[only_bind_into](config))
-      )
+    private predicate returnFlowsThrough(
+      RetNodeEx ret, ReturnPosition pos, FlowState state, CcCall ccc, ParamNode p, Ap argAp, Ap ap,
+      Configuration config
+    ) {
+      fwdFlow(ret, state, ccc, TParamNodeSome(p), apSome(argAp), ap, config) and
+      pos = ret.getReturnPosition() and
+      parameterFlowThroughAllowed(p, pos.getKind())
     }
 
     pragma[nomagic]
     private predicate flowThroughIntoCall(
       DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
     ) {
-      flowIntoCall(call, arg, p, allowsFieldFlow, config) and
-      fwdFlow(arg, _, _, _, _, pragma[only_bind_into](config)) and
-      PrevStage::parameterMayFlowThrough(p, _, _, pragma[only_bind_into](config)) and
-      callMayFlowThroughFwd(call, pragma[only_bind_into](config))
-    }
-
-    pragma[nomagic]
-    private predicate returnNodeMayFlowThrough(
-      RetNodeEx ret, FlowState state, Ap ap, Configuration config
-    ) {
-      fwdFlow(ret, state, any(CcCall ccc), apSome(_), ap, config)
+      flowIntoCall(call, pragma[only_bind_into](arg), pragma[only_bind_into](p), allowsFieldFlow,
+        pragma[only_bind_into](config)) and
+      fwdFlow(arg, _, _, _, _, _, pragma[only_bind_into](config)) and
+      returnFlowsThrough(_, _, _, _, p.asNode(), _, _, pragma[only_bind_into](config))
     }
 
     /**
      * Holds if `node` with access path `ap` is part of a path from a source to a
      * sink in the configuration `config`.
      *
-     * The Boolean `toReturn` records whether the node must be returned from the
-     * enclosing callable in order to reach a sink, and if so, `returnAp` records
-     * the access path of the returned value.
+     * The parameter `returnCtx` records whether (and how) the node must be returned
+     * from the enclosing callable in order to reach a sink, and if so, `returnAp`
+     * records the access path of the returned value.
      */
     pragma[nomagic]
     additional predicate revFlow(
-      NodeEx node, FlowState state, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
+      NodeEx node, FlowState state, ReturnCtx returnCtx, ApOption returnAp, Ap ap,
+      Configuration config
     ) {
-      revFlow0(node, state, toReturn, returnAp, ap, config) and
-      fwdFlow(node, state, _, _, ap, config)
+      revFlow0(node, state, returnCtx, returnAp, ap, config) and
+      fwdFlow(node, state, _, _, _, ap, config)
     }
 
     pragma[nomagic]
     private predicate revFlow0(
-      NodeEx node, FlowState state, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
+      NodeEx node, FlowState state, ReturnCtx returnCtx, ApOption returnAp, Ap ap,
+      Configuration config
     ) {
-      fwdFlow(node, state, _, _, ap, config) and
+      fwdFlow(node, state, _, _, _, ap, config) and
       sinkNode(node, state, config) and
-      (if hasSinkCallCtx(config) then toReturn = true else toReturn = false) and
+      (
+        if hasSinkCallCtx(config)
+        then returnCtx = TReturnCtxNoFlowThrough()
+        else returnCtx = TReturnCtxNone()
+      ) and
       returnAp = apNone() and
       ap instanceof ApNil
       or
       exists(NodeEx mid, FlowState state0 |
         localStep(node, state, mid, state0, true, _, config, _) and
-        revFlow(mid, state0, toReturn, returnAp, ap, config)
+        revFlow(mid, state0, returnCtx, returnAp, ap, config)
       )
       or
       exists(NodeEx mid, FlowState state0, ApNil nil |
-        fwdFlow(node, pragma[only_bind_into](state), _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(node, pragma[only_bind_into](state), _, _, _, ap, pragma[only_bind_into](config)) and
         localStep(node, pragma[only_bind_into](state), mid, state0, false, _, config, _) and
-        revFlow(mid, state0, toReturn, returnAp, nil, pragma[only_bind_into](config)) and
+        revFlow(mid, state0, returnCtx, returnAp, nil, pragma[only_bind_into](config)) and
         ap instanceof ApNil
       )
       or
       exists(NodeEx mid |
         jumpStep(node, mid, config) and
         revFlow(mid, state, _, _, ap, config) and
-        toReturn = false and
+        returnCtx = TReturnCtxNone() and
         returnAp = apNone()
       )
       or
       exists(NodeEx mid, ApNil nil |
-        fwdFlow(node, _, _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(node, _, _, _, _, ap, pragma[only_bind_into](config)) and
         additionalJumpStep(node, mid, config) and
         revFlow(pragma[only_bind_into](mid), state, _, _, nil, pragma[only_bind_into](config)) and
-        toReturn = false and
+        returnCtx = TReturnCtxNone() and
         returnAp = apNone() and
         ap instanceof ApNil
       )
       or
       exists(NodeEx mid, FlowState state0, ApNil nil |
-        fwdFlow(node, _, _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(node, _, _, _, _, ap, pragma[only_bind_into](config)) and
         additionalJumpStateStep(node, state, mid, state0, config) and
         revFlow(pragma[only_bind_into](mid), pragma[only_bind_into](state0), _, _, nil,
           pragma[only_bind_into](config)) and
-        toReturn = false and
+        returnCtx = TReturnCtxNone() and
         returnAp = apNone() and
         ap instanceof ApNil
       )
       or
       // store
       exists(Ap ap0, Content c |
-        revFlowStore(ap0, c, ap, node, state, _, _, toReturn, returnAp, config) and
+        revFlowStore(ap0, c, ap, node, state, _, _, returnCtx, returnAp, config) and
         revFlowConsCand(ap0, c, ap, config)
       )
       or
       // read
       exists(NodeEx mid, Ap ap0 |
-        revFlow(mid, state, toReturn, returnAp, ap0, config) and
+        revFlow(mid, state, returnCtx, returnAp, ap0, config) and
         readStepFwd(node, ap, _, mid, ap0, config)
       )
       or
       // flow into a callable
       revFlowInNotToReturn(node, state, returnAp, ap, config) and
-      toReturn = false
+      returnCtx = TReturnCtxNone()
       or
-      exists(DataFlowCall call, Ap returnAp0 |
-        revFlowInToReturn(call, node, state, returnAp0, ap, config) and
-        revFlowIsReturned(call, toReturn, returnAp, returnAp0, config)
+      // flow through a callable
+      exists(DataFlowCall call, ReturnPosition returnPos0, Ap returnAp0 |
+        revFlowInToReturn(call, node, state, returnPos0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnPos0, returnAp0, config)
       )
       or
       // flow out of a callable
-      revFlowOut(_, node, state, _, _, ap, config) and
-      toReturn = true and
-      if returnNodeMayFlowThrough(node, state, ap, config)
-      then returnAp = apSome(ap)
-      else returnAp = apNone()
+      exists(ReturnPosition pos |
+        revFlowOut(_, node, pos, state, _, _, ap, config) and
+        if returnFlowsThrough(node, pos, state, _, _, _, ap, config)
+        then (
+          returnCtx = TReturnCtxMaybeFlowThrough(pos) and
+          returnAp = apSome(ap)
+        ) else (
+          returnCtx = TReturnCtxNoFlowThrough() and returnAp = apNone()
+        )
+      )
     }
 
     pragma[nomagic]
     private predicate revFlowStore(
       Ap ap0, Content c, Ap ap, NodeEx node, FlowState state, TypedContent tc, NodeEx mid,
-      boolean toReturn, ApOption returnAp, Configuration config
+      ReturnCtx returnCtx, ApOption returnAp, Configuration config
     ) {
-      revFlow(mid, state, toReturn, returnAp, ap0, config) and
+      revFlow(mid, state, returnCtx, returnAp, ap0, config) and
       storeStepFwd(node, ap, tc, mid, ap0, config) and
       tc.getContent() = c
     }
@@ -1599,12 +1638,12 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate revFlowOut(
-      DataFlowCall call, RetNodeEx ret, FlowState state, boolean toReturn, ApOption returnAp, Ap ap,
-      Configuration config
+      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, FlowState state, ReturnCtx returnCtx,
+      ApOption returnAp, Ap ap, Configuration config
     ) {
       exists(NodeEx out, boolean allowsFieldFlow |
-        revFlow(out, state, toReturn, returnAp, ap, config) and
-        flowOutOfCall(call, ret, out, allowsFieldFlow, config) and
+        revFlow(out, state, returnCtx, returnAp, ap, config) and
+        flowOutOfCall(call, ret, pos, out, allowsFieldFlow, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
@@ -1614,7 +1653,7 @@ private module MkStage<StageSig PrevStage> {
       ArgNodeEx arg, FlowState state, ApOption returnAp, Ap ap, Configuration config
     ) {
       exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(p, state, false, returnAp, ap, config) and
+        revFlow(p, state, TReturnCtxNone(), returnAp, ap, config) and
         flowIntoCall(_, arg, p, allowsFieldFlow, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
@@ -1622,12 +1661,14 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate revFlowInToReturn(
-      DataFlowCall call, ArgNodeEx arg, FlowState state, Ap returnAp, Ap ap, Configuration config
+      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnPosition returnPos, Ap returnAp,
+      Ap ap, Configuration config
     ) {
       exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(p, state, true, apSome(returnAp), ap, config) and
+        revFlow(p, state, TReturnCtxMaybeFlowThrough(returnPos), apSome(returnAp), ap, config) and
         flowThroughIntoCall(call, arg, p, allowsFieldFlow, config) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
+        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
+        parameterFlowThroughAllowed(p.asNode(), returnPos.getKind())
       )
     }
 
@@ -1638,11 +1679,12 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate revFlowIsReturned(
-      DataFlowCall call, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
+      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnPosition pos, Ap ap,
+      Configuration config
     ) {
       exists(RetNodeEx ret, FlowState state, CcCall ccc |
-        revFlowOut(call, ret, state, toReturn, returnAp, ap, config) and
-        fwdFlow(ret, state, ccc, apSome(_), ap, config) and
+        revFlowOut(call, ret, pos, state, returnCtx, returnAp, ap, config) and
+        returnFlowsThrough(ret, pos, state, ccc, _, _, ap, config) and
         matchesCall(ccc, call)
       )
     }
@@ -1713,40 +1755,39 @@ private module MkStage<StageSig PrevStage> {
       validAp(ap, config)
     }
 
-    pragma[noinline]
-    private predicate parameterFlow(
-      ParamNodeEx p, Ap ap, Ap ap0, DataFlowCallable c, Configuration config
+    pragma[nomagic]
+    private predicate parameterFlowsThroughRev(
+      ParamNodeEx p, Ap ap, ReturnPosition returnPos, Configuration config
     ) {
-      revFlow(p, _, true, apSome(ap0), ap, config) and
-      c = p.getEnclosingCallable()
+      revFlow(p, _, TReturnCtxMaybeFlowThrough(returnPos), apSome(_), ap, config) and
+      parameterFlowThroughAllowed(p.asNode(), returnPos.getKind())
     }
 
-    predicate parameterMayFlowThrough(ParamNodeEx p, DataFlowCallable c, Ap ap, Configuration config) {
-      exists(RetNodeEx ret, FlowState state, Ap ap0, ReturnKindExt kind, ParameterPosition pos |
-        parameterFlow(p, ap, ap0, c, config) and
-        c = ret.getEnclosingCallable() and
-        revFlow(pragma[only_bind_into](ret), pragma[only_bind_into](state), true, apSome(_),
-          pragma[only_bind_into](ap0), pragma[only_bind_into](config)) and
-        fwdFlow(ret, state, any(CcCall ccc), apSome(ap), ap0, config) and
-        kind = ret.getKind() and
-        p.getPosition() = pos and
-        // we don't expect a parameter to return stored in itself, unless explicitly allowed
-        (
-          not kind.(ParamUpdateReturnKind).getPosition() = pos
-          or
-          p.allowParameterReturnInSelf()
-        )
+    pragma[nomagic]
+    predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
+      exists(RetNodeEx ret, ReturnPosition pos |
+        returnFlowsThrough(ret, pos, _, _, p.asNode(), ap, _, config) and
+        parameterFlowsThroughRev(p, ap, pos, config)
+      )
+    }
+
+    pragma[nomagic]
+    predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config) {
+      exists(ParamNodeEx p, Ap ap |
+        returnFlowsThrough(ret, pos, _, _, p.asNode(), ap, _, config) and
+        parameterFlowsThroughRev(p, ap, pos, config)
       )
     }
 
     pragma[nomagic]
     predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
       exists(
-        Ap returnAp0, ArgNodeEx arg, FlowState state, boolean toReturn, ApOption returnAp, Ap ap
+        ReturnPosition returnPos0, Ap returnAp0, ArgNodeEx arg, FlowState state,
+        ReturnCtx returnCtx, ApOption returnAp, Ap ap
       |
-        revFlow(arg, state, toReturn, returnAp, ap, config) and
-        revFlowInToReturn(call, arg, state, returnAp0, ap, config) and
-        revFlowIsReturned(call, toReturn, returnAp, returnAp0, config)
+        revFlow(arg, state, returnCtx, returnAp, ap, config) and
+        revFlowInToReturn(call, arg, state, returnPos0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnPos0, returnAp0, config)
       )
     }
 
@@ -1754,13 +1795,13 @@ private module MkStage<StageSig PrevStage> {
       boolean fwd, int nodes, int fields, int conscand, int states, int tuples, Configuration config
     ) {
       fwd = true and
-      nodes = count(NodeEx node | fwdFlow(node, _, _, _, _, config)) and
+      nodes = count(NodeEx node | fwdFlow(node, _, _, _, _, _, config)) and
       fields = count(TypedContent f0 | fwdConsCand(f0, _, config)) and
       conscand = count(TypedContent f0, Ap ap | fwdConsCand(f0, ap, config)) and
-      states = count(FlowState state | fwdFlow(_, state, _, _, _, config)) and
+      states = count(FlowState state | fwdFlow(_, state, _, _, _, _, config)) and
       tuples =
-        count(NodeEx n, FlowState state, Cc cc, ApOption argAp, Ap ap |
-          fwdFlow(n, state, cc, argAp, ap, config)
+        count(NodeEx n, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap |
+          fwdFlow(n, state, cc, summaryCtx, argAp, ap, config)
         )
       or
       fwd = false and
@@ -1769,8 +1810,8 @@ private module MkStage<StageSig PrevStage> {
       conscand = count(TypedContent f0, Ap ap | consCand(f0, ap, config)) and
       states = count(FlowState state | revFlow(_, state, _, _, _, config)) and
       tuples =
-        count(NodeEx n, FlowState state, boolean b, ApOption retAp, Ap ap |
-          revFlow(n, state, b, retAp, ap, config)
+        count(NodeEx n, FlowState state, ReturnCtx returnCtx, ApOption retAp, Ap ap |
+          revFlow(n, state, returnCtx, retAp, ap, config)
         )
     }
     /* End: Stage logic. */
@@ -1915,7 +1956,7 @@ private module Stage2Param implements MkStage<Stage1>::StageParam {
     exists(lcc)
   }
 
-  predicate flowOutOfCall = flowOutOfCallNodeCand1/5;
+  predicate flowOutOfCall = flowOutOfCallNodeCand1/6;
 
   predicate flowIntoCall = flowIntoCallNodeCand1/5;
 
@@ -1951,9 +1992,10 @@ private module Stage2 implements StageSig {
 
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand2(
-  DataFlowCall call, RetNodeEx node1, NodeEx node2, boolean allowsFieldFlow, Configuration config
+  DataFlowCall call, RetNodeEx node1, ReturnPosition pos, NodeEx node2, boolean allowsFieldFlow,
+  Configuration config
 ) {
-  flowOutOfCallNodeCand1(call, node1, node2, allowsFieldFlow, config) and
+  flowOutOfCallNodeCand1(call, node1, pos, node2, allowsFieldFlow, config) and
   Stage2::revFlow(node2, pragma[only_bind_into](config)) and
   Stage2::revFlowAlias(node1, pragma[only_bind_into](config))
 }
@@ -2021,8 +2063,8 @@ private module LocalFlowBigStep {
     exists(NodeEx next | Stage2::revFlow(next, state, config) |
       jumpStep(node, next, config) or
       additionalJumpStep(node, next, config) or
-      flowIntoCallNodeCand1(_, node, next, config) or
-      flowOutOfCallNodeCand1(_, node, next, config) or
+      flowIntoCallNodeCand2(_, node, next, _, config) or
+      flowOutOfCallNodeCand2(_, node, _, next, _, config) or
       Stage2::storeStepCand(node, _, _, next, _, config) or
       Stage2::readStepCand(node, _, next, config)
     )
@@ -2163,7 +2205,7 @@ private module Stage3Param implements MkStage<Stage2>::StageParam {
     localFlowBigStep(node1, state1, node2, state2, preservesValue, ap, config, _) and exists(lcc)
   }
 
-  predicate flowOutOfCall = flowOutOfCallNodeCand2/5;
+  predicate flowOutOfCall = flowOutOfCallNodeCand2/6;
 
   predicate flowIntoCall = flowIntoCallNodeCand2/5;
 
@@ -2233,8 +2275,9 @@ private predicate flowCandSummaryCtx(
   NodeEx node, FlowState state, AccessPathFront argApf, Configuration config
 ) {
   exists(AccessPathFront apf |
-    Stage3::revFlow(node, state, true, _, apf, config) and
-    Stage3::fwdFlow(node, state, any(Stage3::CcCall ccc), TAccessPathFrontSome(argApf), apf, config)
+    Stage3::revFlow(node, state, TReturnCtxMaybeFlowThrough(_), _, apf, config) and
+    Stage3::fwdFlow(node, state, any(Stage3::CcCall ccc), _, TAccessPathFrontSome(argApf), apf,
+      config)
   )
 }
 
@@ -2468,10 +2511,11 @@ private module Stage4Param implements MkStage<Stage3>::StageParam {
 
   pragma[nomagic]
   predicate flowOutOfCall(
-    DataFlowCall call, RetNodeEx node1, NodeEx node2, boolean allowsFieldFlow, Configuration config
+    DataFlowCall call, RetNodeEx node1, ReturnPosition pos, NodeEx node2, boolean allowsFieldFlow,
+    Configuration config
   ) {
     exists(FlowState state |
-      flowOutOfCallNodeCand2(call, node1, node2, allowsFieldFlow, config) and
+      flowOutOfCallNodeCand2(call, node1, pos, node2, allowsFieldFlow, config) and
       PrevStage::revFlow(node2, pragma[only_bind_into](state), _, pragma[only_bind_into](config)) and
       PrevStage::revFlowAlias(node1, pragma[only_bind_into](state), _,
         pragma[only_bind_into](config))
@@ -2508,13 +2552,13 @@ private Configuration unbindConf(Configuration conf) {
 
 pragma[nomagic]
 private predicate nodeMayUseSummary0(
-  NodeEx n, DataFlowCallable c, FlowState state, AccessPathApprox apa, Configuration config
+  NodeEx n, ParamNodeEx p, FlowState state, AccessPathApprox apa, Configuration config
 ) {
   exists(AccessPathApprox apa0 |
-    Stage4::parameterMayFlowThrough(_, c, _, _) and
-    Stage4::revFlow(n, state, true, _, apa0, config) and
-    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TAccessPathApproxSome(apa), apa0, config) and
-    n.getEnclosingCallable() = c
+    Stage4::parameterMayFlowThrough(p, _, _) and
+    Stage4::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
+    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TParamNodeSome(p.asNode()),
+      TAccessPathApproxSome(apa), apa0, config)
   )
 }
 
@@ -2522,9 +2566,9 @@ pragma[nomagic]
 private predicate nodeMayUseSummary(
   NodeEx n, FlowState state, AccessPathApprox apa, Configuration config
 ) {
-  exists(DataFlowCallable c |
-    Stage4::parameterMayFlowThrough(_, c, apa, config) and
-    nodeMayUseSummary0(n, c, state, apa, config)
+  exists(ParamNodeEx p |
+    Stage4::parameterMayFlowThrough(p, apa, config) and
+    nodeMayUseSummary0(n, p, state, apa, config)
   )
 }
 
@@ -2532,7 +2576,7 @@ private newtype TSummaryCtx =
   TSummaryCtxNone() or
   TSummaryCtxSome(ParamNodeEx p, FlowState state, AccessPath ap) {
     exists(Configuration config |
-      Stage4::parameterMayFlowThrough(p, _, ap.getApprox(), config) and
+      Stage4::parameterMayFlowThrough(p, ap.getApprox(), config) and
       Stage4::revFlow(p, state, _, config)
     )
   }
@@ -3453,17 +3497,11 @@ private predicate paramFlowsThrough(
   ReturnKindExt kind, FlowState state, CallContextCall cc, SummaryCtxSome sc, AccessPath ap,
   AccessPathApprox apa, Configuration config
 ) {
-  exists(PathNodeMid mid, RetNodeEx ret, ParameterPosition pos |
+  exists(PathNodeMid mid, RetNodeEx ret |
     pathNode(mid, ret, state, cc, sc, ap, config, _) and
     kind = ret.getKind() and
     apa = ap.getApprox() and
-    pos = sc.getParameterPos() and
-    // we don't expect a parameter to return stored in itself, unless explicitly allowed
-    (
-      not kind.(ParamUpdateReturnKind).getPosition() = pos
-      or
-      sc.getParamNode().allowParameterReturnInSelf()
-    )
+    parameterFlowThroughAllowed(sc.getParamNode().asNode(), kind)
   )
 }
 
diff --git a/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl5.qll b/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl5.qll
index 3c41b1876dc..a52ad110662 100644
--- a/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl5.qll
+++ b/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl5.qll
@@ -319,8 +319,6 @@ private class ParamNodeEx extends NodeEx {
   }
 
   ParameterPosition getPosition() { this.isParameterOf(_, result) }
-
-  predicate allowParameterReturnInSelf() { allowParameterReturnInSelfCached(this.asNode()) }
 }
 
 private class RetNodeEx extends NodeEx {
@@ -608,6 +606,21 @@ private predicate hasSinkCallCtx(Configuration config) {
   )
 }
 
+/**
+ * Holds if flow from `p` to a return node of kind `kind` is allowed.
+ *
+ * We don't expect a parameter to return stored in itself, unless
+ * explicitly allowed
+ */
+bindingset[p, kind]
+private predicate parameterFlowThroughAllowed(ParamNode p, ReturnKindExt kind) {
+  exists(ParameterPosition pos | p.isParameterOf(_, pos) |
+    not kind.(ParamUpdateReturnKind).getPosition() = pos
+    or
+    allowParameterReturnInSelfCached(p)
+  )
+}
+
 private module Stage1 implements StageSig {
   class Ap = Unit;
 
@@ -981,21 +994,22 @@ private module Stage1 implements StageSig {
    * candidate for the origin of a summary.
    */
   pragma[nomagic]
-  predicate parameterMayFlowThrough(ParamNodeEx p, DataFlowCallable c, Ap ap, Configuration config) {
-    exists(ReturnKindExt kind |
+  predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
+    exists(DataFlowCallable c, ReturnKindExt kind |
       throughFlowNodeCand(p, config) and
       returnFlowCallableNodeCand(c, kind, config) and
       p.getEnclosingCallable() = c and
       exists(ap) and
-      // we don't expect a parameter to return stored in itself, unless explicitly allowed
-      (
-        not kind.(ParamUpdateReturnKind).getPosition() = p.getPosition()
-        or
-        p.allowParameterReturnInSelf()
-      )
+      parameterFlowThroughAllowed(p.asNode(), kind)
     )
   }
 
+  pragma[nomagic]
+  predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config) {
+    throughFlowNodeCand(ret, config) and
+    pos = ret.getReturnPosition()
+  }
+
   pragma[nomagic]
   predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
     exists(ArgNodeEx arg, boolean toReturn |
@@ -1052,9 +1066,10 @@ private predicate viableReturnPosOutNodeCand1(
  */
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand1(
-  DataFlowCall call, RetNodeEx ret, NodeEx out, Configuration config
+  DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, Configuration config
 ) {
-  viableReturnPosOutNodeCand1(call, ret.getReturnPosition(), out, config) and
+  viableReturnPosOutNodeCand1(call, pos, out, config) and
+  pos = ret.getReturnPosition() and
   Stage1::revFlow(ret, config) and
   not outBarrier(ret, config) and
   not inBarrier(out, config)
@@ -1090,7 +1105,7 @@ private predicate flowIntoCallNodeCand1(
 private int branch(NodeEx n1, Configuration conf) {
   result =
     strictcount(NodeEx n |
-      flowOutOfCallNodeCand1(_, n1, n, conf) or flowIntoCallNodeCand1(_, n1, n, conf)
+      flowOutOfCallNodeCand1(_, n1, _, n, conf) or flowIntoCallNodeCand1(_, n1, n, conf)
     )
 }
 
@@ -1102,7 +1117,7 @@ private int branch(NodeEx n1, Configuration conf) {
 private int join(NodeEx n2, Configuration conf) {
   result =
     strictcount(NodeEx n |
-      flowOutOfCallNodeCand1(_, n, n2, conf) or flowIntoCallNodeCand1(_, n, n2, conf)
+      flowOutOfCallNodeCand1(_, n, _, n2, conf) or flowIntoCallNodeCand1(_, n, n2, conf)
     )
 }
 
@@ -1115,12 +1130,13 @@ private int join(NodeEx n2, Configuration conf) {
  */
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand1(
-  DataFlowCall call, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow, Configuration config
+  DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
+  Configuration config
 ) {
-  flowOutOfCallNodeCand1(call, ret, out, config) and
+  flowOutOfCallNodeCand1(call, ret, pos, out, pragma[only_bind_into](config)) and
   exists(int b, int j |
-    b = branch(ret, config) and
-    j = join(out, config) and
+    b = branch(ret, pragma[only_bind_into](config)) and
+    j = join(out, pragma[only_bind_into](config)) and
     if b.minimum(j) <= config.fieldFlowBranchLimit()
     then allowsFieldFlow = true
     else allowsFieldFlow = false
@@ -1156,7 +1172,9 @@ private signature module StageSig {
 
   predicate callMayFlowThroughRev(DataFlowCall call, Configuration config);
 
-  predicate parameterMayFlowThrough(ParamNodeEx p, DataFlowCallable c, Ap ap, Configuration config);
+  predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config);
+
+  predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config);
 
   predicate storeStepCand(
     NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, DataFlowType contentType,
@@ -1222,7 +1240,8 @@ private module MkStage<StageSig PrevStage> {
     );
 
     predicate flowOutOfCall(
-      DataFlowCall call, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow, Configuration config
+      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
+      Configuration config
     );
 
     predicate flowIntoCall(
@@ -1247,14 +1266,16 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate flowThroughOutOfCall(
-      DataFlowCall call, CcCall ccc, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow,
-      Configuration config
+      DataFlowCall call, CcCall ccc, RetNodeEx ret, ReturnKindExt kind, NodeEx out,
+      boolean allowsFieldFlow, Configuration config
     ) {
-      flowOutOfCall(call, ret, out, allowsFieldFlow, pragma[only_bind_into](config)) and
-      PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
-      PrevStage::parameterMayFlowThrough(_, ret.getEnclosingCallable(), _,
-        pragma[only_bind_into](config)) and
-      matchesCall(ccc, call)
+      exists(ReturnPosition pos |
+        flowOutOfCall(call, ret, pos, out, allowsFieldFlow, pragma[only_bind_into](config)) and
+        kind = pos.getKind() and
+        PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
+        PrevStage::returnMayFlowThrough(ret, pos, pragma[only_bind_into](config)) and
+        matchesCall(ccc, call)
+      )
     }
 
     /**
@@ -1262,29 +1283,32 @@ private module MkStage<StageSig PrevStage> {
      * configuration `config`.
      *
      * The call context `cc` records whether the node is reached through an
-     * argument in a call, and if so, `argAp` records the access path of that
-     * argument.
+     * argument in a call, and if so, `summaryCtx` and `argAp` record the
+     * corresponding parameter and access path of that argument, respectively.
      */
     pragma[nomagic]
     additional predicate fwdFlow(
-      NodeEx node, FlowState state, Cc cc, ApOption argAp, Ap ap, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      Configuration config
     ) {
-      fwdFlow0(node, state, cc, argAp, ap, config) and
+      fwdFlow0(node, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::revFlow(node, state, unbindApa(getApprox(ap)), config) and
       filter(node, state, ap, config)
     }
 
     pragma[nomagic]
     private predicate fwdFlow0(
-      NodeEx node, FlowState state, Cc cc, ApOption argAp, Ap ap, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      Configuration config
     ) {
       sourceNode(node, state, config) and
       (if hasSourceCallCtx(config) then cc = ccSomeCall() else cc = ccNone()) and
       argAp = apNone() and
+      summaryCtx = TParamNodeNone() and
       ap = getApNil(node)
       or
       exists(NodeEx mid, FlowState state0, Ap ap0, LocalCc localCc |
-        fwdFlow(mid, state0, cc, argAp, ap0, config) and
+        fwdFlow(mid, state0, cc, summaryCtx, argAp, ap0, config) and
         localCc = getLocalCc(mid, cc)
       |
         localStep(mid, state0, node, state, true, _, config, localCc) and
@@ -1295,65 +1319,72 @@ private module MkStage<StageSig PrevStage> {
       )
       or
       exists(NodeEx mid |
-        fwdFlow(mid, pragma[only_bind_into](state), _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, pragma[only_bind_into](config)) and
         jumpStep(mid, node, config) and
         cc = ccNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone()
       )
       or
       exists(NodeEx mid, ApNil nil |
-        fwdFlow(mid, state, _, _, nil, pragma[only_bind_into](config)) and
+        fwdFlow(mid, state, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStep(mid, node, config) and
         cc = ccNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone() and
         ap = getApNil(node)
       )
       or
       exists(NodeEx mid, FlowState state0, ApNil nil |
-        fwdFlow(mid, state0, _, _, nil, pragma[only_bind_into](config)) and
+        fwdFlow(mid, state0, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStateStep(mid, state0, node, state, config) and
         cc = ccNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone() and
         ap = getApNil(node)
       )
       or
       // store
       exists(TypedContent tc, Ap ap0 |
-        fwdFlowStore(_, ap0, tc, node, state, cc, argAp, config) and
+        fwdFlowStore(_, ap0, tc, node, state, cc, summaryCtx, argAp, config) and
         ap = apCons(tc, ap0)
       )
       or
       // read
       exists(Ap ap0, Content c |
-        fwdFlowRead(ap0, c, _, node, state, cc, argAp, config) and
+        fwdFlowRead(ap0, c, _, node, state, cc, summaryCtx, argAp, config) and
         fwdFlowConsCand(ap0, c, ap, config)
       )
       or
       // flow into a callable
       exists(ApApprox apa |
-        fwdFlowIn(_, node, state, _, cc, _, ap, config) and
+        fwdFlowIn(_, node, state, _, cc, _, _, ap, config) and
         apa = getApprox(ap) and
-        if PrevStage::parameterMayFlowThrough(node, _, apa, config)
-        then argAp = apSome(ap)
-        else argAp = apNone()
+        if PrevStage::parameterMayFlowThrough(node, apa, config)
+        then (
+          summaryCtx = TParamNodeSome(node.asNode()) and argAp = apSome(ap)
+        ) else (
+          summaryCtx = TParamNodeNone() and argAp = apNone()
+        )
       )
       or
       // flow out of a callable
-      fwdFlowOutNotFromArg(node, state, cc, argAp, ap, config)
+      fwdFlowOutNotFromArg(node, state, cc, summaryCtx, argAp, ap, config)
       or
-      exists(DataFlowCall call, Ap argAp0 |
-        fwdFlowOutFromArg(call, node, state, argAp0, ap, config) and
-        fwdFlowIsEntered(call, cc, argAp, argAp0, config)
+      // flow through a callable
+      exists(DataFlowCall call, ParamNode summaryCtx0, Ap argAp0 |
+        fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, config) and
+        fwdFlowIsEntered(call, cc, summaryCtx, argAp, summaryCtx0, argAp0, config)
       )
     }
 
     pragma[nomagic]
     private predicate fwdFlowStore(
-      NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc, ApOption argAp,
-      Configuration config
+      NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc,
+      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
     ) {
       exists(DataFlowType contentType |
-        fwdFlow(node1, state, cc, argAp, ap1, config) and
+        fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, config) and
         PrevStage::storeStepCand(node1, unbindApa(getApprox(ap1)), tc, node2, contentType, config) and
         typecheckStore(ap1, contentType)
       )
@@ -1366,7 +1397,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowConsCand(Ap cons, Content c, Ap tail, Configuration config) {
       exists(TypedContent tc |
-        fwdFlowStore(_, tail, tc, _, _, _, _, config) and
+        fwdFlowStore(_, tail, tc, _, _, _, _, _, config) and
         tc.getContent() = c and
         cons = apCons(tc, tail)
       )
@@ -1374,21 +1405,21 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowRead(
-      Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc, ApOption argAp,
-      Configuration config
+      Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc,
+      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
     ) {
-      fwdFlow(node1, state, cc, argAp, ap, config) and
+      fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, c, node2, config) and
       getHeadContent(ap) = c
     }
 
     pragma[nomagic]
     private predicate fwdFlowIn(
-      DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, Cc innercc, ApOption argAp,
-      Ap ap, Configuration config
+      DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, Cc innercc,
+      ParamNodeOption summaryCtx, ApOption argAp, Ap ap, Configuration config
     ) {
       exists(ArgNodeEx arg, boolean allowsFieldFlow |
-        fwdFlow(arg, state, outercc, argAp, ap, config) and
+        fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, config) and
         flowIntoCall(call, arg, p, allowsFieldFlow, config) and
         innercc = getCallContextCall(call, p.getEnclosingCallable(), outercc) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
@@ -1397,14 +1428,15 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowOutNotFromArg(
-      NodeEx out, FlowState state, Cc ccOut, ApOption argAp, Ap ap, Configuration config
+      NodeEx out, FlowState state, Cc ccOut, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      Configuration config
     ) {
       exists(
         DataFlowCall call, RetNodeEx ret, boolean allowsFieldFlow, CcNoCall innercc,
         DataFlowCallable inner
       |
-        fwdFlow(ret, state, innercc, argAp, ap, config) and
-        flowOutOfCall(call, ret, out, allowsFieldFlow, config) and
+        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, config) and
+        flowOutOfCall(call, ret, _, out, allowsFieldFlow, config) and
         inner = ret.getEnclosingCallable() and
         ccOut = getCallContextReturn(inner, call, innercc) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
@@ -1413,12 +1445,14 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowOutFromArg(
-      DataFlowCall call, NodeEx out, FlowState state, Ap argAp, Ap ap, Configuration config
+      DataFlowCall call, NodeEx out, FlowState state, ParamNode summaryCtx, Ap argAp, Ap ap,
+      Configuration config
     ) {
-      exists(RetNodeEx ret, boolean allowsFieldFlow, CcCall ccc |
-        fwdFlow(ret, state, ccc, apSome(argAp), ap, config) and
-        flowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, config) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
+      exists(RetNodeEx ret, ReturnKindExt kind, boolean allowsFieldFlow, CcCall ccc |
+        fwdFlow(ret, state, ccc, TParamNodeSome(summaryCtx), apSome(argAp), ap, config) and
+        flowThroughOutOfCall(call, ccc, ret, kind, out, allowsFieldFlow, config) and
+        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
+        parameterFlowThroughAllowed(summaryCtx, kind)
       )
     }
 
@@ -1428,11 +1462,13 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate fwdFlowIsEntered(
-      DataFlowCall call, Cc cc, ApOption argAp, Ap ap, Configuration config
+      DataFlowCall call, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, ParamNode p, Ap ap,
+      Configuration config
     ) {
-      exists(ParamNodeEx p |
-        fwdFlowIn(call, p, _, cc, _, argAp, ap, config) and
-        PrevStage::parameterMayFlowThrough(p, _, unbindApa(getApprox(ap)), config)
+      exists(ParamNodeEx param |
+        fwdFlowIn(call, param, _, cc, _, summaryCtx, argAp, ap, config) and
+        PrevStage::parameterMayFlowThrough(param, unbindApa(getApprox(ap)), config) and
+        p = param.asNode()
       )
     }
 
@@ -1440,146 +1476,149 @@ private module MkStage<StageSig PrevStage> {
     private predicate storeStepFwd(
       NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, Ap ap2, Configuration config
     ) {
-      fwdFlowStore(node1, ap1, tc, node2, _, _, _, config) and
+      fwdFlowStore(node1, ap1, tc, node2, _, _, _, _, config) and
       ap2 = apCons(tc, ap1) and
-      fwdFlowRead(ap2, tc.getContent(), _, _, _, _, _, config)
+      fwdFlowRead(ap2, tc.getContent(), _, _, _, _, _, _, config)
     }
 
     private predicate readStepFwd(
       NodeEx n1, Ap ap1, Content c, NodeEx n2, Ap ap2, Configuration config
     ) {
-      fwdFlowRead(ap1, c, n1, n2, _, _, _, config) and
+      fwdFlowRead(ap1, c, n1, n2, _, _, _, _, config) and
       fwdFlowConsCand(ap1, c, ap2, config)
     }
 
     pragma[nomagic]
-    private predicate callMayFlowThroughFwd(DataFlowCall call, Configuration config) {
-      exists(Ap argAp0, NodeEx out, FlowState state, Cc cc, ApOption argAp, Ap ap |
-        fwdFlow(out, state, pragma[only_bind_into](cc), pragma[only_bind_into](argAp), ap,
-          pragma[only_bind_into](config)) and
-        fwdFlowOutFromArg(call, out, state, argAp0, ap, config) and
-        fwdFlowIsEntered(pragma[only_bind_into](call), pragma[only_bind_into](cc),
-          pragma[only_bind_into](argAp), pragma[only_bind_into](argAp0),
-          pragma[only_bind_into](config))
-      )
+    private predicate returnFlowsThrough(
+      RetNodeEx ret, ReturnPosition pos, FlowState state, CcCall ccc, ParamNode p, Ap argAp, Ap ap,
+      Configuration config
+    ) {
+      fwdFlow(ret, state, ccc, TParamNodeSome(p), apSome(argAp), ap, config) and
+      pos = ret.getReturnPosition() and
+      parameterFlowThroughAllowed(p, pos.getKind())
     }
 
     pragma[nomagic]
     private predicate flowThroughIntoCall(
       DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
     ) {
-      flowIntoCall(call, arg, p, allowsFieldFlow, config) and
-      fwdFlow(arg, _, _, _, _, pragma[only_bind_into](config)) and
-      PrevStage::parameterMayFlowThrough(p, _, _, pragma[only_bind_into](config)) and
-      callMayFlowThroughFwd(call, pragma[only_bind_into](config))
-    }
-
-    pragma[nomagic]
-    private predicate returnNodeMayFlowThrough(
-      RetNodeEx ret, FlowState state, Ap ap, Configuration config
-    ) {
-      fwdFlow(ret, state, any(CcCall ccc), apSome(_), ap, config)
+      flowIntoCall(call, pragma[only_bind_into](arg), pragma[only_bind_into](p), allowsFieldFlow,
+        pragma[only_bind_into](config)) and
+      fwdFlow(arg, _, _, _, _, _, pragma[only_bind_into](config)) and
+      returnFlowsThrough(_, _, _, _, p.asNode(), _, _, pragma[only_bind_into](config))
     }
 
     /**
      * Holds if `node` with access path `ap` is part of a path from a source to a
      * sink in the configuration `config`.
      *
-     * The Boolean `toReturn` records whether the node must be returned from the
-     * enclosing callable in order to reach a sink, and if so, `returnAp` records
-     * the access path of the returned value.
+     * The parameter `returnCtx` records whether (and how) the node must be returned
+     * from the enclosing callable in order to reach a sink, and if so, `returnAp`
+     * records the access path of the returned value.
      */
     pragma[nomagic]
     additional predicate revFlow(
-      NodeEx node, FlowState state, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
+      NodeEx node, FlowState state, ReturnCtx returnCtx, ApOption returnAp, Ap ap,
+      Configuration config
     ) {
-      revFlow0(node, state, toReturn, returnAp, ap, config) and
-      fwdFlow(node, state, _, _, ap, config)
+      revFlow0(node, state, returnCtx, returnAp, ap, config) and
+      fwdFlow(node, state, _, _, _, ap, config)
     }
 
     pragma[nomagic]
     private predicate revFlow0(
-      NodeEx node, FlowState state, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
+      NodeEx node, FlowState state, ReturnCtx returnCtx, ApOption returnAp, Ap ap,
+      Configuration config
     ) {
-      fwdFlow(node, state, _, _, ap, config) and
+      fwdFlow(node, state, _, _, _, ap, config) and
       sinkNode(node, state, config) and
-      (if hasSinkCallCtx(config) then toReturn = true else toReturn = false) and
+      (
+        if hasSinkCallCtx(config)
+        then returnCtx = TReturnCtxNoFlowThrough()
+        else returnCtx = TReturnCtxNone()
+      ) and
       returnAp = apNone() and
       ap instanceof ApNil
       or
       exists(NodeEx mid, FlowState state0 |
         localStep(node, state, mid, state0, true, _, config, _) and
-        revFlow(mid, state0, toReturn, returnAp, ap, config)
+        revFlow(mid, state0, returnCtx, returnAp, ap, config)
       )
       or
       exists(NodeEx mid, FlowState state0, ApNil nil |
-        fwdFlow(node, pragma[only_bind_into](state), _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(node, pragma[only_bind_into](state), _, _, _, ap, pragma[only_bind_into](config)) and
         localStep(node, pragma[only_bind_into](state), mid, state0, false, _, config, _) and
-        revFlow(mid, state0, toReturn, returnAp, nil, pragma[only_bind_into](config)) and
+        revFlow(mid, state0, returnCtx, returnAp, nil, pragma[only_bind_into](config)) and
         ap instanceof ApNil
       )
       or
       exists(NodeEx mid |
         jumpStep(node, mid, config) and
         revFlow(mid, state, _, _, ap, config) and
-        toReturn = false and
+        returnCtx = TReturnCtxNone() and
         returnAp = apNone()
       )
       or
       exists(NodeEx mid, ApNil nil |
-        fwdFlow(node, _, _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(node, _, _, _, _, ap, pragma[only_bind_into](config)) and
         additionalJumpStep(node, mid, config) and
         revFlow(pragma[only_bind_into](mid), state, _, _, nil, pragma[only_bind_into](config)) and
-        toReturn = false and
+        returnCtx = TReturnCtxNone() and
         returnAp = apNone() and
         ap instanceof ApNil
       )
       or
       exists(NodeEx mid, FlowState state0, ApNil nil |
-        fwdFlow(node, _, _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(node, _, _, _, _, ap, pragma[only_bind_into](config)) and
         additionalJumpStateStep(node, state, mid, state0, config) and
         revFlow(pragma[only_bind_into](mid), pragma[only_bind_into](state0), _, _, nil,
           pragma[only_bind_into](config)) and
-        toReturn = false and
+        returnCtx = TReturnCtxNone() and
         returnAp = apNone() and
         ap instanceof ApNil
       )
       or
       // store
       exists(Ap ap0, Content c |
-        revFlowStore(ap0, c, ap, node, state, _, _, toReturn, returnAp, config) and
+        revFlowStore(ap0, c, ap, node, state, _, _, returnCtx, returnAp, config) and
         revFlowConsCand(ap0, c, ap, config)
       )
       or
       // read
       exists(NodeEx mid, Ap ap0 |
-        revFlow(mid, state, toReturn, returnAp, ap0, config) and
+        revFlow(mid, state, returnCtx, returnAp, ap0, config) and
         readStepFwd(node, ap, _, mid, ap0, config)
       )
       or
       // flow into a callable
       revFlowInNotToReturn(node, state, returnAp, ap, config) and
-      toReturn = false
+      returnCtx = TReturnCtxNone()
       or
-      exists(DataFlowCall call, Ap returnAp0 |
-        revFlowInToReturn(call, node, state, returnAp0, ap, config) and
-        revFlowIsReturned(call, toReturn, returnAp, returnAp0, config)
+      // flow through a callable
+      exists(DataFlowCall call, ReturnPosition returnPos0, Ap returnAp0 |
+        revFlowInToReturn(call, node, state, returnPos0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnPos0, returnAp0, config)
       )
       or
       // flow out of a callable
-      revFlowOut(_, node, state, _, _, ap, config) and
-      toReturn = true and
-      if returnNodeMayFlowThrough(node, state, ap, config)
-      then returnAp = apSome(ap)
-      else returnAp = apNone()
+      exists(ReturnPosition pos |
+        revFlowOut(_, node, pos, state, _, _, ap, config) and
+        if returnFlowsThrough(node, pos, state, _, _, _, ap, config)
+        then (
+          returnCtx = TReturnCtxMaybeFlowThrough(pos) and
+          returnAp = apSome(ap)
+        ) else (
+          returnCtx = TReturnCtxNoFlowThrough() and returnAp = apNone()
+        )
+      )
     }
 
     pragma[nomagic]
     private predicate revFlowStore(
       Ap ap0, Content c, Ap ap, NodeEx node, FlowState state, TypedContent tc, NodeEx mid,
-      boolean toReturn, ApOption returnAp, Configuration config
+      ReturnCtx returnCtx, ApOption returnAp, Configuration config
     ) {
-      revFlow(mid, state, toReturn, returnAp, ap0, config) and
+      revFlow(mid, state, returnCtx, returnAp, ap0, config) and
       storeStepFwd(node, ap, tc, mid, ap0, config) and
       tc.getContent() = c
     }
@@ -1599,12 +1638,12 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate revFlowOut(
-      DataFlowCall call, RetNodeEx ret, FlowState state, boolean toReturn, ApOption returnAp, Ap ap,
-      Configuration config
+      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, FlowState state, ReturnCtx returnCtx,
+      ApOption returnAp, Ap ap, Configuration config
     ) {
       exists(NodeEx out, boolean allowsFieldFlow |
-        revFlow(out, state, toReturn, returnAp, ap, config) and
-        flowOutOfCall(call, ret, out, allowsFieldFlow, config) and
+        revFlow(out, state, returnCtx, returnAp, ap, config) and
+        flowOutOfCall(call, ret, pos, out, allowsFieldFlow, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
@@ -1614,7 +1653,7 @@ private module MkStage<StageSig PrevStage> {
       ArgNodeEx arg, FlowState state, ApOption returnAp, Ap ap, Configuration config
     ) {
       exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(p, state, false, returnAp, ap, config) and
+        revFlow(p, state, TReturnCtxNone(), returnAp, ap, config) and
         flowIntoCall(_, arg, p, allowsFieldFlow, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
@@ -1622,12 +1661,14 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate revFlowInToReturn(
-      DataFlowCall call, ArgNodeEx arg, FlowState state, Ap returnAp, Ap ap, Configuration config
+      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnPosition returnPos, Ap returnAp,
+      Ap ap, Configuration config
     ) {
       exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(p, state, true, apSome(returnAp), ap, config) and
+        revFlow(p, state, TReturnCtxMaybeFlowThrough(returnPos), apSome(returnAp), ap, config) and
         flowThroughIntoCall(call, arg, p, allowsFieldFlow, config) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
+        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
+        parameterFlowThroughAllowed(p.asNode(), returnPos.getKind())
       )
     }
 
@@ -1638,11 +1679,12 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate revFlowIsReturned(
-      DataFlowCall call, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
+      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnPosition pos, Ap ap,
+      Configuration config
     ) {
       exists(RetNodeEx ret, FlowState state, CcCall ccc |
-        revFlowOut(call, ret, state, toReturn, returnAp, ap, config) and
-        fwdFlow(ret, state, ccc, apSome(_), ap, config) and
+        revFlowOut(call, ret, pos, state, returnCtx, returnAp, ap, config) and
+        returnFlowsThrough(ret, pos, state, ccc, _, _, ap, config) and
         matchesCall(ccc, call)
       )
     }
@@ -1713,40 +1755,39 @@ private module MkStage<StageSig PrevStage> {
       validAp(ap, config)
     }
 
-    pragma[noinline]
-    private predicate parameterFlow(
-      ParamNodeEx p, Ap ap, Ap ap0, DataFlowCallable c, Configuration config
+    pragma[nomagic]
+    private predicate parameterFlowsThroughRev(
+      ParamNodeEx p, Ap ap, ReturnPosition returnPos, Configuration config
     ) {
-      revFlow(p, _, true, apSome(ap0), ap, config) and
-      c = p.getEnclosingCallable()
+      revFlow(p, _, TReturnCtxMaybeFlowThrough(returnPos), apSome(_), ap, config) and
+      parameterFlowThroughAllowed(p.asNode(), returnPos.getKind())
     }
 
-    predicate parameterMayFlowThrough(ParamNodeEx p, DataFlowCallable c, Ap ap, Configuration config) {
-      exists(RetNodeEx ret, FlowState state, Ap ap0, ReturnKindExt kind, ParameterPosition pos |
-        parameterFlow(p, ap, ap0, c, config) and
-        c = ret.getEnclosingCallable() and
-        revFlow(pragma[only_bind_into](ret), pragma[only_bind_into](state), true, apSome(_),
-          pragma[only_bind_into](ap0), pragma[only_bind_into](config)) and
-        fwdFlow(ret, state, any(CcCall ccc), apSome(ap), ap0, config) and
-        kind = ret.getKind() and
-        p.getPosition() = pos and
-        // we don't expect a parameter to return stored in itself, unless explicitly allowed
-        (
-          not kind.(ParamUpdateReturnKind).getPosition() = pos
-          or
-          p.allowParameterReturnInSelf()
-        )
+    pragma[nomagic]
+    predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
+      exists(RetNodeEx ret, ReturnPosition pos |
+        returnFlowsThrough(ret, pos, _, _, p.asNode(), ap, _, config) and
+        parameterFlowsThroughRev(p, ap, pos, config)
+      )
+    }
+
+    pragma[nomagic]
+    predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config) {
+      exists(ParamNodeEx p, Ap ap |
+        returnFlowsThrough(ret, pos, _, _, p.asNode(), ap, _, config) and
+        parameterFlowsThroughRev(p, ap, pos, config)
       )
     }
 
     pragma[nomagic]
     predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
       exists(
-        Ap returnAp0, ArgNodeEx arg, FlowState state, boolean toReturn, ApOption returnAp, Ap ap
+        ReturnPosition returnPos0, Ap returnAp0, ArgNodeEx arg, FlowState state,
+        ReturnCtx returnCtx, ApOption returnAp, Ap ap
       |
-        revFlow(arg, state, toReturn, returnAp, ap, config) and
-        revFlowInToReturn(call, arg, state, returnAp0, ap, config) and
-        revFlowIsReturned(call, toReturn, returnAp, returnAp0, config)
+        revFlow(arg, state, returnCtx, returnAp, ap, config) and
+        revFlowInToReturn(call, arg, state, returnPos0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnPos0, returnAp0, config)
       )
     }
 
@@ -1754,13 +1795,13 @@ private module MkStage<StageSig PrevStage> {
       boolean fwd, int nodes, int fields, int conscand, int states, int tuples, Configuration config
     ) {
       fwd = true and
-      nodes = count(NodeEx node | fwdFlow(node, _, _, _, _, config)) and
+      nodes = count(NodeEx node | fwdFlow(node, _, _, _, _, _, config)) and
       fields = count(TypedContent f0 | fwdConsCand(f0, _, config)) and
       conscand = count(TypedContent f0, Ap ap | fwdConsCand(f0, ap, config)) and
-      states = count(FlowState state | fwdFlow(_, state, _, _, _, config)) and
+      states = count(FlowState state | fwdFlow(_, state, _, _, _, _, config)) and
       tuples =
-        count(NodeEx n, FlowState state, Cc cc, ApOption argAp, Ap ap |
-          fwdFlow(n, state, cc, argAp, ap, config)
+        count(NodeEx n, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap |
+          fwdFlow(n, state, cc, summaryCtx, argAp, ap, config)
         )
       or
       fwd = false and
@@ -1769,8 +1810,8 @@ private module MkStage<StageSig PrevStage> {
       conscand = count(TypedContent f0, Ap ap | consCand(f0, ap, config)) and
       states = count(FlowState state | revFlow(_, state, _, _, _, config)) and
       tuples =
-        count(NodeEx n, FlowState state, boolean b, ApOption retAp, Ap ap |
-          revFlow(n, state, b, retAp, ap, config)
+        count(NodeEx n, FlowState state, ReturnCtx returnCtx, ApOption retAp, Ap ap |
+          revFlow(n, state, returnCtx, retAp, ap, config)
         )
     }
     /* End: Stage logic. */
@@ -1915,7 +1956,7 @@ private module Stage2Param implements MkStage<Stage1>::StageParam {
     exists(lcc)
   }
 
-  predicate flowOutOfCall = flowOutOfCallNodeCand1/5;
+  predicate flowOutOfCall = flowOutOfCallNodeCand1/6;
 
   predicate flowIntoCall = flowIntoCallNodeCand1/5;
 
@@ -1951,9 +1992,10 @@ private module Stage2 implements StageSig {
 
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand2(
-  DataFlowCall call, RetNodeEx node1, NodeEx node2, boolean allowsFieldFlow, Configuration config
+  DataFlowCall call, RetNodeEx node1, ReturnPosition pos, NodeEx node2, boolean allowsFieldFlow,
+  Configuration config
 ) {
-  flowOutOfCallNodeCand1(call, node1, node2, allowsFieldFlow, config) and
+  flowOutOfCallNodeCand1(call, node1, pos, node2, allowsFieldFlow, config) and
   Stage2::revFlow(node2, pragma[only_bind_into](config)) and
   Stage2::revFlowAlias(node1, pragma[only_bind_into](config))
 }
@@ -2021,8 +2063,8 @@ private module LocalFlowBigStep {
     exists(NodeEx next | Stage2::revFlow(next, state, config) |
       jumpStep(node, next, config) or
       additionalJumpStep(node, next, config) or
-      flowIntoCallNodeCand1(_, node, next, config) or
-      flowOutOfCallNodeCand1(_, node, next, config) or
+      flowIntoCallNodeCand2(_, node, next, _, config) or
+      flowOutOfCallNodeCand2(_, node, _, next, _, config) or
       Stage2::storeStepCand(node, _, _, next, _, config) or
       Stage2::readStepCand(node, _, next, config)
     )
@@ -2163,7 +2205,7 @@ private module Stage3Param implements MkStage<Stage2>::StageParam {
     localFlowBigStep(node1, state1, node2, state2, preservesValue, ap, config, _) and exists(lcc)
   }
 
-  predicate flowOutOfCall = flowOutOfCallNodeCand2/5;
+  predicate flowOutOfCall = flowOutOfCallNodeCand2/6;
 
   predicate flowIntoCall = flowIntoCallNodeCand2/5;
 
@@ -2233,8 +2275,9 @@ private predicate flowCandSummaryCtx(
   NodeEx node, FlowState state, AccessPathFront argApf, Configuration config
 ) {
   exists(AccessPathFront apf |
-    Stage3::revFlow(node, state, true, _, apf, config) and
-    Stage3::fwdFlow(node, state, any(Stage3::CcCall ccc), TAccessPathFrontSome(argApf), apf, config)
+    Stage3::revFlow(node, state, TReturnCtxMaybeFlowThrough(_), _, apf, config) and
+    Stage3::fwdFlow(node, state, any(Stage3::CcCall ccc), _, TAccessPathFrontSome(argApf), apf,
+      config)
   )
 }
 
@@ -2468,10 +2511,11 @@ private module Stage4Param implements MkStage<Stage3>::StageParam {
 
   pragma[nomagic]
   predicate flowOutOfCall(
-    DataFlowCall call, RetNodeEx node1, NodeEx node2, boolean allowsFieldFlow, Configuration config
+    DataFlowCall call, RetNodeEx node1, ReturnPosition pos, NodeEx node2, boolean allowsFieldFlow,
+    Configuration config
   ) {
     exists(FlowState state |
-      flowOutOfCallNodeCand2(call, node1, node2, allowsFieldFlow, config) and
+      flowOutOfCallNodeCand2(call, node1, pos, node2, allowsFieldFlow, config) and
       PrevStage::revFlow(node2, pragma[only_bind_into](state), _, pragma[only_bind_into](config)) and
       PrevStage::revFlowAlias(node1, pragma[only_bind_into](state), _,
         pragma[only_bind_into](config))
@@ -2508,13 +2552,13 @@ private Configuration unbindConf(Configuration conf) {
 
 pragma[nomagic]
 private predicate nodeMayUseSummary0(
-  NodeEx n, DataFlowCallable c, FlowState state, AccessPathApprox apa, Configuration config
+  NodeEx n, ParamNodeEx p, FlowState state, AccessPathApprox apa, Configuration config
 ) {
   exists(AccessPathApprox apa0 |
-    Stage4::parameterMayFlowThrough(_, c, _, _) and
-    Stage4::revFlow(n, state, true, _, apa0, config) and
-    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TAccessPathApproxSome(apa), apa0, config) and
-    n.getEnclosingCallable() = c
+    Stage4::parameterMayFlowThrough(p, _, _) and
+    Stage4::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
+    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TParamNodeSome(p.asNode()),
+      TAccessPathApproxSome(apa), apa0, config)
   )
 }
 
@@ -2522,9 +2566,9 @@ pragma[nomagic]
 private predicate nodeMayUseSummary(
   NodeEx n, FlowState state, AccessPathApprox apa, Configuration config
 ) {
-  exists(DataFlowCallable c |
-    Stage4::parameterMayFlowThrough(_, c, apa, config) and
-    nodeMayUseSummary0(n, c, state, apa, config)
+  exists(ParamNodeEx p |
+    Stage4::parameterMayFlowThrough(p, apa, config) and
+    nodeMayUseSummary0(n, p, state, apa, config)
   )
 }
 
@@ -2532,7 +2576,7 @@ private newtype TSummaryCtx =
   TSummaryCtxNone() or
   TSummaryCtxSome(ParamNodeEx p, FlowState state, AccessPath ap) {
     exists(Configuration config |
-      Stage4::parameterMayFlowThrough(p, _, ap.getApprox(), config) and
+      Stage4::parameterMayFlowThrough(p, ap.getApprox(), config) and
       Stage4::revFlow(p, state, _, config)
     )
   }
@@ -3453,17 +3497,11 @@ private predicate paramFlowsThrough(
   ReturnKindExt kind, FlowState state, CallContextCall cc, SummaryCtxSome sc, AccessPath ap,
   AccessPathApprox apa, Configuration config
 ) {
-  exists(PathNodeMid mid, RetNodeEx ret, ParameterPosition pos |
+  exists(PathNodeMid mid, RetNodeEx ret |
     pathNode(mid, ret, state, cc, sc, ap, config, _) and
     kind = ret.getKind() and
     apa = ap.getApprox() and
-    pos = sc.getParameterPos() and
-    // we don't expect a parameter to return stored in itself, unless explicitly allowed
-    (
-      not kind.(ParamUpdateReturnKind).getPosition() = pos
-      or
-      sc.getParamNode().allowParameterReturnInSelf()
-    )
+    parameterFlowThroughAllowed(sc.getParamNode().asNode(), kind)
   )
 }
 
diff --git a/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl6.qll b/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl6.qll
index 3c41b1876dc..a52ad110662 100644
--- a/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl6.qll
+++ b/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl6.qll
@@ -319,8 +319,6 @@ private class ParamNodeEx extends NodeEx {
   }
 
   ParameterPosition getPosition() { this.isParameterOf(_, result) }
-
-  predicate allowParameterReturnInSelf() { allowParameterReturnInSelfCached(this.asNode()) }
 }
 
 private class RetNodeEx extends NodeEx {
@@ -608,6 +606,21 @@ private predicate hasSinkCallCtx(Configuration config) {
   )
 }
 
+/**
+ * Holds if flow from `p` to a return node of kind `kind` is allowed.
+ *
+ * We don't expect a parameter to return stored in itself, unless
+ * explicitly allowed
+ */
+bindingset[p, kind]
+private predicate parameterFlowThroughAllowed(ParamNode p, ReturnKindExt kind) {
+  exists(ParameterPosition pos | p.isParameterOf(_, pos) |
+    not kind.(ParamUpdateReturnKind).getPosition() = pos
+    or
+    allowParameterReturnInSelfCached(p)
+  )
+}
+
 private module Stage1 implements StageSig {
   class Ap = Unit;
 
@@ -981,21 +994,22 @@ private module Stage1 implements StageSig {
    * candidate for the origin of a summary.
    */
   pragma[nomagic]
-  predicate parameterMayFlowThrough(ParamNodeEx p, DataFlowCallable c, Ap ap, Configuration config) {
-    exists(ReturnKindExt kind |
+  predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
+    exists(DataFlowCallable c, ReturnKindExt kind |
       throughFlowNodeCand(p, config) and
       returnFlowCallableNodeCand(c, kind, config) and
       p.getEnclosingCallable() = c and
       exists(ap) and
-      // we don't expect a parameter to return stored in itself, unless explicitly allowed
-      (
-        not kind.(ParamUpdateReturnKind).getPosition() = p.getPosition()
-        or
-        p.allowParameterReturnInSelf()
-      )
+      parameterFlowThroughAllowed(p.asNode(), kind)
     )
   }
 
+  pragma[nomagic]
+  predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config) {
+    throughFlowNodeCand(ret, config) and
+    pos = ret.getReturnPosition()
+  }
+
   pragma[nomagic]
   predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
     exists(ArgNodeEx arg, boolean toReturn |
@@ -1052,9 +1066,10 @@ private predicate viableReturnPosOutNodeCand1(
  */
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand1(
-  DataFlowCall call, RetNodeEx ret, NodeEx out, Configuration config
+  DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, Configuration config
 ) {
-  viableReturnPosOutNodeCand1(call, ret.getReturnPosition(), out, config) and
+  viableReturnPosOutNodeCand1(call, pos, out, config) and
+  pos = ret.getReturnPosition() and
   Stage1::revFlow(ret, config) and
   not outBarrier(ret, config) and
   not inBarrier(out, config)
@@ -1090,7 +1105,7 @@ private predicate flowIntoCallNodeCand1(
 private int branch(NodeEx n1, Configuration conf) {
   result =
     strictcount(NodeEx n |
-      flowOutOfCallNodeCand1(_, n1, n, conf) or flowIntoCallNodeCand1(_, n1, n, conf)
+      flowOutOfCallNodeCand1(_, n1, _, n, conf) or flowIntoCallNodeCand1(_, n1, n, conf)
     )
 }
 
@@ -1102,7 +1117,7 @@ private int branch(NodeEx n1, Configuration conf) {
 private int join(NodeEx n2, Configuration conf) {
   result =
     strictcount(NodeEx n |
-      flowOutOfCallNodeCand1(_, n, n2, conf) or flowIntoCallNodeCand1(_, n, n2, conf)
+      flowOutOfCallNodeCand1(_, n, _, n2, conf) or flowIntoCallNodeCand1(_, n, n2, conf)
     )
 }
 
@@ -1115,12 +1130,13 @@ private int join(NodeEx n2, Configuration conf) {
  */
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand1(
-  DataFlowCall call, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow, Configuration config
+  DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
+  Configuration config
 ) {
-  flowOutOfCallNodeCand1(call, ret, out, config) and
+  flowOutOfCallNodeCand1(call, ret, pos, out, pragma[only_bind_into](config)) and
   exists(int b, int j |
-    b = branch(ret, config) and
-    j = join(out, config) and
+    b = branch(ret, pragma[only_bind_into](config)) and
+    j = join(out, pragma[only_bind_into](config)) and
     if b.minimum(j) <= config.fieldFlowBranchLimit()
     then allowsFieldFlow = true
     else allowsFieldFlow = false
@@ -1156,7 +1172,9 @@ private signature module StageSig {
 
   predicate callMayFlowThroughRev(DataFlowCall call, Configuration config);
 
-  predicate parameterMayFlowThrough(ParamNodeEx p, DataFlowCallable c, Ap ap, Configuration config);
+  predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config);
+
+  predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config);
 
   predicate storeStepCand(
     NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, DataFlowType contentType,
@@ -1222,7 +1240,8 @@ private module MkStage<StageSig PrevStage> {
     );
 
     predicate flowOutOfCall(
-      DataFlowCall call, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow, Configuration config
+      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
+      Configuration config
     );
 
     predicate flowIntoCall(
@@ -1247,14 +1266,16 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate flowThroughOutOfCall(
-      DataFlowCall call, CcCall ccc, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow,
-      Configuration config
+      DataFlowCall call, CcCall ccc, RetNodeEx ret, ReturnKindExt kind, NodeEx out,
+      boolean allowsFieldFlow, Configuration config
     ) {
-      flowOutOfCall(call, ret, out, allowsFieldFlow, pragma[only_bind_into](config)) and
-      PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
-      PrevStage::parameterMayFlowThrough(_, ret.getEnclosingCallable(), _,
-        pragma[only_bind_into](config)) and
-      matchesCall(ccc, call)
+      exists(ReturnPosition pos |
+        flowOutOfCall(call, ret, pos, out, allowsFieldFlow, pragma[only_bind_into](config)) and
+        kind = pos.getKind() and
+        PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
+        PrevStage::returnMayFlowThrough(ret, pos, pragma[only_bind_into](config)) and
+        matchesCall(ccc, call)
+      )
     }
 
     /**
@@ -1262,29 +1283,32 @@ private module MkStage<StageSig PrevStage> {
      * configuration `config`.
      *
      * The call context `cc` records whether the node is reached through an
-     * argument in a call, and if so, `argAp` records the access path of that
-     * argument.
+     * argument in a call, and if so, `summaryCtx` and `argAp` record the
+     * corresponding parameter and access path of that argument, respectively.
      */
     pragma[nomagic]
     additional predicate fwdFlow(
-      NodeEx node, FlowState state, Cc cc, ApOption argAp, Ap ap, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      Configuration config
     ) {
-      fwdFlow0(node, state, cc, argAp, ap, config) and
+      fwdFlow0(node, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::revFlow(node, state, unbindApa(getApprox(ap)), config) and
       filter(node, state, ap, config)
     }
 
     pragma[nomagic]
     private predicate fwdFlow0(
-      NodeEx node, FlowState state, Cc cc, ApOption argAp, Ap ap, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      Configuration config
     ) {
       sourceNode(node, state, config) and
       (if hasSourceCallCtx(config) then cc = ccSomeCall() else cc = ccNone()) and
       argAp = apNone() and
+      summaryCtx = TParamNodeNone() and
       ap = getApNil(node)
       or
       exists(NodeEx mid, FlowState state0, Ap ap0, LocalCc localCc |
-        fwdFlow(mid, state0, cc, argAp, ap0, config) and
+        fwdFlow(mid, state0, cc, summaryCtx, argAp, ap0, config) and
         localCc = getLocalCc(mid, cc)
       |
         localStep(mid, state0, node, state, true, _, config, localCc) and
@@ -1295,65 +1319,72 @@ private module MkStage<StageSig PrevStage> {
       )
       or
       exists(NodeEx mid |
-        fwdFlow(mid, pragma[only_bind_into](state), _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, pragma[only_bind_into](config)) and
         jumpStep(mid, node, config) and
         cc = ccNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone()
       )
       or
       exists(NodeEx mid, ApNil nil |
-        fwdFlow(mid, state, _, _, nil, pragma[only_bind_into](config)) and
+        fwdFlow(mid, state, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStep(mid, node, config) and
         cc = ccNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone() and
         ap = getApNil(node)
       )
       or
       exists(NodeEx mid, FlowState state0, ApNil nil |
-        fwdFlow(mid, state0, _, _, nil, pragma[only_bind_into](config)) and
+        fwdFlow(mid, state0, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStateStep(mid, state0, node, state, config) and
         cc = ccNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone() and
         ap = getApNil(node)
       )
       or
       // store
       exists(TypedContent tc, Ap ap0 |
-        fwdFlowStore(_, ap0, tc, node, state, cc, argAp, config) and
+        fwdFlowStore(_, ap0, tc, node, state, cc, summaryCtx, argAp, config) and
         ap = apCons(tc, ap0)
       )
       or
       // read
       exists(Ap ap0, Content c |
-        fwdFlowRead(ap0, c, _, node, state, cc, argAp, config) and
+        fwdFlowRead(ap0, c, _, node, state, cc, summaryCtx, argAp, config) and
         fwdFlowConsCand(ap0, c, ap, config)
       )
       or
       // flow into a callable
       exists(ApApprox apa |
-        fwdFlowIn(_, node, state, _, cc, _, ap, config) and
+        fwdFlowIn(_, node, state, _, cc, _, _, ap, config) and
         apa = getApprox(ap) and
-        if PrevStage::parameterMayFlowThrough(node, _, apa, config)
-        then argAp = apSome(ap)
-        else argAp = apNone()
+        if PrevStage::parameterMayFlowThrough(node, apa, config)
+        then (
+          summaryCtx = TParamNodeSome(node.asNode()) and argAp = apSome(ap)
+        ) else (
+          summaryCtx = TParamNodeNone() and argAp = apNone()
+        )
       )
       or
       // flow out of a callable
-      fwdFlowOutNotFromArg(node, state, cc, argAp, ap, config)
+      fwdFlowOutNotFromArg(node, state, cc, summaryCtx, argAp, ap, config)
       or
-      exists(DataFlowCall call, Ap argAp0 |
-        fwdFlowOutFromArg(call, node, state, argAp0, ap, config) and
-        fwdFlowIsEntered(call, cc, argAp, argAp0, config)
+      // flow through a callable
+      exists(DataFlowCall call, ParamNode summaryCtx0, Ap argAp0 |
+        fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, config) and
+        fwdFlowIsEntered(call, cc, summaryCtx, argAp, summaryCtx0, argAp0, config)
       )
     }
 
     pragma[nomagic]
     private predicate fwdFlowStore(
-      NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc, ApOption argAp,
-      Configuration config
+      NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc,
+      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
     ) {
       exists(DataFlowType contentType |
-        fwdFlow(node1, state, cc, argAp, ap1, config) and
+        fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, config) and
         PrevStage::storeStepCand(node1, unbindApa(getApprox(ap1)), tc, node2, contentType, config) and
         typecheckStore(ap1, contentType)
       )
@@ -1366,7 +1397,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowConsCand(Ap cons, Content c, Ap tail, Configuration config) {
       exists(TypedContent tc |
-        fwdFlowStore(_, tail, tc, _, _, _, _, config) and
+        fwdFlowStore(_, tail, tc, _, _, _, _, _, config) and
         tc.getContent() = c and
         cons = apCons(tc, tail)
       )
@@ -1374,21 +1405,21 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowRead(
-      Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc, ApOption argAp,
-      Configuration config
+      Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc,
+      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
     ) {
-      fwdFlow(node1, state, cc, argAp, ap, config) and
+      fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, c, node2, config) and
       getHeadContent(ap) = c
     }
 
     pragma[nomagic]
     private predicate fwdFlowIn(
-      DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, Cc innercc, ApOption argAp,
-      Ap ap, Configuration config
+      DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, Cc innercc,
+      ParamNodeOption summaryCtx, ApOption argAp, Ap ap, Configuration config
     ) {
       exists(ArgNodeEx arg, boolean allowsFieldFlow |
-        fwdFlow(arg, state, outercc, argAp, ap, config) and
+        fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, config) and
         flowIntoCall(call, arg, p, allowsFieldFlow, config) and
         innercc = getCallContextCall(call, p.getEnclosingCallable(), outercc) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
@@ -1397,14 +1428,15 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowOutNotFromArg(
-      NodeEx out, FlowState state, Cc ccOut, ApOption argAp, Ap ap, Configuration config
+      NodeEx out, FlowState state, Cc ccOut, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      Configuration config
     ) {
       exists(
         DataFlowCall call, RetNodeEx ret, boolean allowsFieldFlow, CcNoCall innercc,
         DataFlowCallable inner
       |
-        fwdFlow(ret, state, innercc, argAp, ap, config) and
-        flowOutOfCall(call, ret, out, allowsFieldFlow, config) and
+        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, config) and
+        flowOutOfCall(call, ret, _, out, allowsFieldFlow, config) and
         inner = ret.getEnclosingCallable() and
         ccOut = getCallContextReturn(inner, call, innercc) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
@@ -1413,12 +1445,14 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowOutFromArg(
-      DataFlowCall call, NodeEx out, FlowState state, Ap argAp, Ap ap, Configuration config
+      DataFlowCall call, NodeEx out, FlowState state, ParamNode summaryCtx, Ap argAp, Ap ap,
+      Configuration config
     ) {
-      exists(RetNodeEx ret, boolean allowsFieldFlow, CcCall ccc |
-        fwdFlow(ret, state, ccc, apSome(argAp), ap, config) and
-        flowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, config) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
+      exists(RetNodeEx ret, ReturnKindExt kind, boolean allowsFieldFlow, CcCall ccc |
+        fwdFlow(ret, state, ccc, TParamNodeSome(summaryCtx), apSome(argAp), ap, config) and
+        flowThroughOutOfCall(call, ccc, ret, kind, out, allowsFieldFlow, config) and
+        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
+        parameterFlowThroughAllowed(summaryCtx, kind)
       )
     }
 
@@ -1428,11 +1462,13 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate fwdFlowIsEntered(
-      DataFlowCall call, Cc cc, ApOption argAp, Ap ap, Configuration config
+      DataFlowCall call, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, ParamNode p, Ap ap,
+      Configuration config
     ) {
-      exists(ParamNodeEx p |
-        fwdFlowIn(call, p, _, cc, _, argAp, ap, config) and
-        PrevStage::parameterMayFlowThrough(p, _, unbindApa(getApprox(ap)), config)
+      exists(ParamNodeEx param |
+        fwdFlowIn(call, param, _, cc, _, summaryCtx, argAp, ap, config) and
+        PrevStage::parameterMayFlowThrough(param, unbindApa(getApprox(ap)), config) and
+        p = param.asNode()
       )
     }
 
@@ -1440,146 +1476,149 @@ private module MkStage<StageSig PrevStage> {
     private predicate storeStepFwd(
       NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, Ap ap2, Configuration config
     ) {
-      fwdFlowStore(node1, ap1, tc, node2, _, _, _, config) and
+      fwdFlowStore(node1, ap1, tc, node2, _, _, _, _, config) and
       ap2 = apCons(tc, ap1) and
-      fwdFlowRead(ap2, tc.getContent(), _, _, _, _, _, config)
+      fwdFlowRead(ap2, tc.getContent(), _, _, _, _, _, _, config)
     }
 
     private predicate readStepFwd(
       NodeEx n1, Ap ap1, Content c, NodeEx n2, Ap ap2, Configuration config
     ) {
-      fwdFlowRead(ap1, c, n1, n2, _, _, _, config) and
+      fwdFlowRead(ap1, c, n1, n2, _, _, _, _, config) and
       fwdFlowConsCand(ap1, c, ap2, config)
     }
 
     pragma[nomagic]
-    private predicate callMayFlowThroughFwd(DataFlowCall call, Configuration config) {
-      exists(Ap argAp0, NodeEx out, FlowState state, Cc cc, ApOption argAp, Ap ap |
-        fwdFlow(out, state, pragma[only_bind_into](cc), pragma[only_bind_into](argAp), ap,
-          pragma[only_bind_into](config)) and
-        fwdFlowOutFromArg(call, out, state, argAp0, ap, config) and
-        fwdFlowIsEntered(pragma[only_bind_into](call), pragma[only_bind_into](cc),
-          pragma[only_bind_into](argAp), pragma[only_bind_into](argAp0),
-          pragma[only_bind_into](config))
-      )
+    private predicate returnFlowsThrough(
+      RetNodeEx ret, ReturnPosition pos, FlowState state, CcCall ccc, ParamNode p, Ap argAp, Ap ap,
+      Configuration config
+    ) {
+      fwdFlow(ret, state, ccc, TParamNodeSome(p), apSome(argAp), ap, config) and
+      pos = ret.getReturnPosition() and
+      parameterFlowThroughAllowed(p, pos.getKind())
     }
 
     pragma[nomagic]
     private predicate flowThroughIntoCall(
       DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
     ) {
-      flowIntoCall(call, arg, p, allowsFieldFlow, config) and
-      fwdFlow(arg, _, _, _, _, pragma[only_bind_into](config)) and
-      PrevStage::parameterMayFlowThrough(p, _, _, pragma[only_bind_into](config)) and
-      callMayFlowThroughFwd(call, pragma[only_bind_into](config))
-    }
-
-    pragma[nomagic]
-    private predicate returnNodeMayFlowThrough(
-      RetNodeEx ret, FlowState state, Ap ap, Configuration config
-    ) {
-      fwdFlow(ret, state, any(CcCall ccc), apSome(_), ap, config)
+      flowIntoCall(call, pragma[only_bind_into](arg), pragma[only_bind_into](p), allowsFieldFlow,
+        pragma[only_bind_into](config)) and
+      fwdFlow(arg, _, _, _, _, _, pragma[only_bind_into](config)) and
+      returnFlowsThrough(_, _, _, _, p.asNode(), _, _, pragma[only_bind_into](config))
     }
 
     /**
      * Holds if `node` with access path `ap` is part of a path from a source to a
      * sink in the configuration `config`.
      *
-     * The Boolean `toReturn` records whether the node must be returned from the
-     * enclosing callable in order to reach a sink, and if so, `returnAp` records
-     * the access path of the returned value.
+     * The parameter `returnCtx` records whether (and how) the node must be returned
+     * from the enclosing callable in order to reach a sink, and if so, `returnAp`
+     * records the access path of the returned value.
      */
     pragma[nomagic]
     additional predicate revFlow(
-      NodeEx node, FlowState state, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
+      NodeEx node, FlowState state, ReturnCtx returnCtx, ApOption returnAp, Ap ap,
+      Configuration config
     ) {
-      revFlow0(node, state, toReturn, returnAp, ap, config) and
-      fwdFlow(node, state, _, _, ap, config)
+      revFlow0(node, state, returnCtx, returnAp, ap, config) and
+      fwdFlow(node, state, _, _, _, ap, config)
     }
 
     pragma[nomagic]
     private predicate revFlow0(
-      NodeEx node, FlowState state, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
+      NodeEx node, FlowState state, ReturnCtx returnCtx, ApOption returnAp, Ap ap,
+      Configuration config
     ) {
-      fwdFlow(node, state, _, _, ap, config) and
+      fwdFlow(node, state, _, _, _, ap, config) and
       sinkNode(node, state, config) and
-      (if hasSinkCallCtx(config) then toReturn = true else toReturn = false) and
+      (
+        if hasSinkCallCtx(config)
+        then returnCtx = TReturnCtxNoFlowThrough()
+        else returnCtx = TReturnCtxNone()
+      ) and
       returnAp = apNone() and
       ap instanceof ApNil
       or
       exists(NodeEx mid, FlowState state0 |
         localStep(node, state, mid, state0, true, _, config, _) and
-        revFlow(mid, state0, toReturn, returnAp, ap, config)
+        revFlow(mid, state0, returnCtx, returnAp, ap, config)
       )
       or
       exists(NodeEx mid, FlowState state0, ApNil nil |
-        fwdFlow(node, pragma[only_bind_into](state), _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(node, pragma[only_bind_into](state), _, _, _, ap, pragma[only_bind_into](config)) and
         localStep(node, pragma[only_bind_into](state), mid, state0, false, _, config, _) and
-        revFlow(mid, state0, toReturn, returnAp, nil, pragma[only_bind_into](config)) and
+        revFlow(mid, state0, returnCtx, returnAp, nil, pragma[only_bind_into](config)) and
         ap instanceof ApNil
       )
       or
       exists(NodeEx mid |
         jumpStep(node, mid, config) and
         revFlow(mid, state, _, _, ap, config) and
-        toReturn = false and
+        returnCtx = TReturnCtxNone() and
         returnAp = apNone()
       )
       or
       exists(NodeEx mid, ApNil nil |
-        fwdFlow(node, _, _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(node, _, _, _, _, ap, pragma[only_bind_into](config)) and
         additionalJumpStep(node, mid, config) and
         revFlow(pragma[only_bind_into](mid), state, _, _, nil, pragma[only_bind_into](config)) and
-        toReturn = false and
+        returnCtx = TReturnCtxNone() and
         returnAp = apNone() and
         ap instanceof ApNil
       )
       or
       exists(NodeEx mid, FlowState state0, ApNil nil |
-        fwdFlow(node, _, _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(node, _, _, _, _, ap, pragma[only_bind_into](config)) and
         additionalJumpStateStep(node, state, mid, state0, config) and
         revFlow(pragma[only_bind_into](mid), pragma[only_bind_into](state0), _, _, nil,
           pragma[only_bind_into](config)) and
-        toReturn = false and
+        returnCtx = TReturnCtxNone() and
         returnAp = apNone() and
         ap instanceof ApNil
       )
       or
       // store
       exists(Ap ap0, Content c |
-        revFlowStore(ap0, c, ap, node, state, _, _, toReturn, returnAp, config) and
+        revFlowStore(ap0, c, ap, node, state, _, _, returnCtx, returnAp, config) and
         revFlowConsCand(ap0, c, ap, config)
       )
       or
       // read
       exists(NodeEx mid, Ap ap0 |
-        revFlow(mid, state, toReturn, returnAp, ap0, config) and
+        revFlow(mid, state, returnCtx, returnAp, ap0, config) and
         readStepFwd(node, ap, _, mid, ap0, config)
       )
       or
       // flow into a callable
       revFlowInNotToReturn(node, state, returnAp, ap, config) and
-      toReturn = false
+      returnCtx = TReturnCtxNone()
       or
-      exists(DataFlowCall call, Ap returnAp0 |
-        revFlowInToReturn(call, node, state, returnAp0, ap, config) and
-        revFlowIsReturned(call, toReturn, returnAp, returnAp0, config)
+      // flow through a callable
+      exists(DataFlowCall call, ReturnPosition returnPos0, Ap returnAp0 |
+        revFlowInToReturn(call, node, state, returnPos0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnPos0, returnAp0, config)
       )
       or
       // flow out of a callable
-      revFlowOut(_, node, state, _, _, ap, config) and
-      toReturn = true and
-      if returnNodeMayFlowThrough(node, state, ap, config)
-      then returnAp = apSome(ap)
-      else returnAp = apNone()
+      exists(ReturnPosition pos |
+        revFlowOut(_, node, pos, state, _, _, ap, config) and
+        if returnFlowsThrough(node, pos, state, _, _, _, ap, config)
+        then (
+          returnCtx = TReturnCtxMaybeFlowThrough(pos) and
+          returnAp = apSome(ap)
+        ) else (
+          returnCtx = TReturnCtxNoFlowThrough() and returnAp = apNone()
+        )
+      )
     }
 
     pragma[nomagic]
     private predicate revFlowStore(
       Ap ap0, Content c, Ap ap, NodeEx node, FlowState state, TypedContent tc, NodeEx mid,
-      boolean toReturn, ApOption returnAp, Configuration config
+      ReturnCtx returnCtx, ApOption returnAp, Configuration config
     ) {
-      revFlow(mid, state, toReturn, returnAp, ap0, config) and
+      revFlow(mid, state, returnCtx, returnAp, ap0, config) and
       storeStepFwd(node, ap, tc, mid, ap0, config) and
       tc.getContent() = c
     }
@@ -1599,12 +1638,12 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate revFlowOut(
-      DataFlowCall call, RetNodeEx ret, FlowState state, boolean toReturn, ApOption returnAp, Ap ap,
-      Configuration config
+      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, FlowState state, ReturnCtx returnCtx,
+      ApOption returnAp, Ap ap, Configuration config
     ) {
       exists(NodeEx out, boolean allowsFieldFlow |
-        revFlow(out, state, toReturn, returnAp, ap, config) and
-        flowOutOfCall(call, ret, out, allowsFieldFlow, config) and
+        revFlow(out, state, returnCtx, returnAp, ap, config) and
+        flowOutOfCall(call, ret, pos, out, allowsFieldFlow, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
@@ -1614,7 +1653,7 @@ private module MkStage<StageSig PrevStage> {
       ArgNodeEx arg, FlowState state, ApOption returnAp, Ap ap, Configuration config
     ) {
       exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(p, state, false, returnAp, ap, config) and
+        revFlow(p, state, TReturnCtxNone(), returnAp, ap, config) and
         flowIntoCall(_, arg, p, allowsFieldFlow, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
@@ -1622,12 +1661,14 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate revFlowInToReturn(
-      DataFlowCall call, ArgNodeEx arg, FlowState state, Ap returnAp, Ap ap, Configuration config
+      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnPosition returnPos, Ap returnAp,
+      Ap ap, Configuration config
     ) {
       exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(p, state, true, apSome(returnAp), ap, config) and
+        revFlow(p, state, TReturnCtxMaybeFlowThrough(returnPos), apSome(returnAp), ap, config) and
         flowThroughIntoCall(call, arg, p, allowsFieldFlow, config) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
+        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
+        parameterFlowThroughAllowed(p.asNode(), returnPos.getKind())
       )
     }
 
@@ -1638,11 +1679,12 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate revFlowIsReturned(
-      DataFlowCall call, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
+      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnPosition pos, Ap ap,
+      Configuration config
     ) {
       exists(RetNodeEx ret, FlowState state, CcCall ccc |
-        revFlowOut(call, ret, state, toReturn, returnAp, ap, config) and
-        fwdFlow(ret, state, ccc, apSome(_), ap, config) and
+        revFlowOut(call, ret, pos, state, returnCtx, returnAp, ap, config) and
+        returnFlowsThrough(ret, pos, state, ccc, _, _, ap, config) and
         matchesCall(ccc, call)
       )
     }
@@ -1713,40 +1755,39 @@ private module MkStage<StageSig PrevStage> {
       validAp(ap, config)
     }
 
-    pragma[noinline]
-    private predicate parameterFlow(
-      ParamNodeEx p, Ap ap, Ap ap0, DataFlowCallable c, Configuration config
+    pragma[nomagic]
+    private predicate parameterFlowsThroughRev(
+      ParamNodeEx p, Ap ap, ReturnPosition returnPos, Configuration config
     ) {
-      revFlow(p, _, true, apSome(ap0), ap, config) and
-      c = p.getEnclosingCallable()
+      revFlow(p, _, TReturnCtxMaybeFlowThrough(returnPos), apSome(_), ap, config) and
+      parameterFlowThroughAllowed(p.asNode(), returnPos.getKind())
     }
 
-    predicate parameterMayFlowThrough(ParamNodeEx p, DataFlowCallable c, Ap ap, Configuration config) {
-      exists(RetNodeEx ret, FlowState state, Ap ap0, ReturnKindExt kind, ParameterPosition pos |
-        parameterFlow(p, ap, ap0, c, config) and
-        c = ret.getEnclosingCallable() and
-        revFlow(pragma[only_bind_into](ret), pragma[only_bind_into](state), true, apSome(_),
-          pragma[only_bind_into](ap0), pragma[only_bind_into](config)) and
-        fwdFlow(ret, state, any(CcCall ccc), apSome(ap), ap0, config) and
-        kind = ret.getKind() and
-        p.getPosition() = pos and
-        // we don't expect a parameter to return stored in itself, unless explicitly allowed
-        (
-          not kind.(ParamUpdateReturnKind).getPosition() = pos
-          or
-          p.allowParameterReturnInSelf()
-        )
+    pragma[nomagic]
+    predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
+      exists(RetNodeEx ret, ReturnPosition pos |
+        returnFlowsThrough(ret, pos, _, _, p.asNode(), ap, _, config) and
+        parameterFlowsThroughRev(p, ap, pos, config)
+      )
+    }
+
+    pragma[nomagic]
+    predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config) {
+      exists(ParamNodeEx p, Ap ap |
+        returnFlowsThrough(ret, pos, _, _, p.asNode(), ap, _, config) and
+        parameterFlowsThroughRev(p, ap, pos, config)
       )
     }
 
     pragma[nomagic]
     predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
       exists(
-        Ap returnAp0, ArgNodeEx arg, FlowState state, boolean toReturn, ApOption returnAp, Ap ap
+        ReturnPosition returnPos0, Ap returnAp0, ArgNodeEx arg, FlowState state,
+        ReturnCtx returnCtx, ApOption returnAp, Ap ap
       |
-        revFlow(arg, state, toReturn, returnAp, ap, config) and
-        revFlowInToReturn(call, arg, state, returnAp0, ap, config) and
-        revFlowIsReturned(call, toReturn, returnAp, returnAp0, config)
+        revFlow(arg, state, returnCtx, returnAp, ap, config) and
+        revFlowInToReturn(call, arg, state, returnPos0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnPos0, returnAp0, config)
       )
     }
 
@@ -1754,13 +1795,13 @@ private module MkStage<StageSig PrevStage> {
       boolean fwd, int nodes, int fields, int conscand, int states, int tuples, Configuration config
     ) {
       fwd = true and
-      nodes = count(NodeEx node | fwdFlow(node, _, _, _, _, config)) and
+      nodes = count(NodeEx node | fwdFlow(node, _, _, _, _, _, config)) and
       fields = count(TypedContent f0 | fwdConsCand(f0, _, config)) and
       conscand = count(TypedContent f0, Ap ap | fwdConsCand(f0, ap, config)) and
-      states = count(FlowState state | fwdFlow(_, state, _, _, _, config)) and
+      states = count(FlowState state | fwdFlow(_, state, _, _, _, _, config)) and
       tuples =
-        count(NodeEx n, FlowState state, Cc cc, ApOption argAp, Ap ap |
-          fwdFlow(n, state, cc, argAp, ap, config)
+        count(NodeEx n, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap |
+          fwdFlow(n, state, cc, summaryCtx, argAp, ap, config)
         )
       or
       fwd = false and
@@ -1769,8 +1810,8 @@ private module MkStage<StageSig PrevStage> {
       conscand = count(TypedContent f0, Ap ap | consCand(f0, ap, config)) and
       states = count(FlowState state | revFlow(_, state, _, _, _, config)) and
       tuples =
-        count(NodeEx n, FlowState state, boolean b, ApOption retAp, Ap ap |
-          revFlow(n, state, b, retAp, ap, config)
+        count(NodeEx n, FlowState state, ReturnCtx returnCtx, ApOption retAp, Ap ap |
+          revFlow(n, state, returnCtx, retAp, ap, config)
         )
     }
     /* End: Stage logic. */
@@ -1915,7 +1956,7 @@ private module Stage2Param implements MkStage<Stage1>::StageParam {
     exists(lcc)
   }
 
-  predicate flowOutOfCall = flowOutOfCallNodeCand1/5;
+  predicate flowOutOfCall = flowOutOfCallNodeCand1/6;
 
   predicate flowIntoCall = flowIntoCallNodeCand1/5;
 
@@ -1951,9 +1992,10 @@ private module Stage2 implements StageSig {
 
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand2(
-  DataFlowCall call, RetNodeEx node1, NodeEx node2, boolean allowsFieldFlow, Configuration config
+  DataFlowCall call, RetNodeEx node1, ReturnPosition pos, NodeEx node2, boolean allowsFieldFlow,
+  Configuration config
 ) {
-  flowOutOfCallNodeCand1(call, node1, node2, allowsFieldFlow, config) and
+  flowOutOfCallNodeCand1(call, node1, pos, node2, allowsFieldFlow, config) and
   Stage2::revFlow(node2, pragma[only_bind_into](config)) and
   Stage2::revFlowAlias(node1, pragma[only_bind_into](config))
 }
@@ -2021,8 +2063,8 @@ private module LocalFlowBigStep {
     exists(NodeEx next | Stage2::revFlow(next, state, config) |
       jumpStep(node, next, config) or
       additionalJumpStep(node, next, config) or
-      flowIntoCallNodeCand1(_, node, next, config) or
-      flowOutOfCallNodeCand1(_, node, next, config) or
+      flowIntoCallNodeCand2(_, node, next, _, config) or
+      flowOutOfCallNodeCand2(_, node, _, next, _, config) or
       Stage2::storeStepCand(node, _, _, next, _, config) or
       Stage2::readStepCand(node, _, next, config)
     )
@@ -2163,7 +2205,7 @@ private module Stage3Param implements MkStage<Stage2>::StageParam {
     localFlowBigStep(node1, state1, node2, state2, preservesValue, ap, config, _) and exists(lcc)
   }
 
-  predicate flowOutOfCall = flowOutOfCallNodeCand2/5;
+  predicate flowOutOfCall = flowOutOfCallNodeCand2/6;
 
   predicate flowIntoCall = flowIntoCallNodeCand2/5;
 
@@ -2233,8 +2275,9 @@ private predicate flowCandSummaryCtx(
   NodeEx node, FlowState state, AccessPathFront argApf, Configuration config
 ) {
   exists(AccessPathFront apf |
-    Stage3::revFlow(node, state, true, _, apf, config) and
-    Stage3::fwdFlow(node, state, any(Stage3::CcCall ccc), TAccessPathFrontSome(argApf), apf, config)
+    Stage3::revFlow(node, state, TReturnCtxMaybeFlowThrough(_), _, apf, config) and
+    Stage3::fwdFlow(node, state, any(Stage3::CcCall ccc), _, TAccessPathFrontSome(argApf), apf,
+      config)
   )
 }
 
@@ -2468,10 +2511,11 @@ private module Stage4Param implements MkStage<Stage3>::StageParam {
 
   pragma[nomagic]
   predicate flowOutOfCall(
-    DataFlowCall call, RetNodeEx node1, NodeEx node2, boolean allowsFieldFlow, Configuration config
+    DataFlowCall call, RetNodeEx node1, ReturnPosition pos, NodeEx node2, boolean allowsFieldFlow,
+    Configuration config
   ) {
     exists(FlowState state |
-      flowOutOfCallNodeCand2(call, node1, node2, allowsFieldFlow, config) and
+      flowOutOfCallNodeCand2(call, node1, pos, node2, allowsFieldFlow, config) and
       PrevStage::revFlow(node2, pragma[only_bind_into](state), _, pragma[only_bind_into](config)) and
       PrevStage::revFlowAlias(node1, pragma[only_bind_into](state), _,
         pragma[only_bind_into](config))
@@ -2508,13 +2552,13 @@ private Configuration unbindConf(Configuration conf) {
 
 pragma[nomagic]
 private predicate nodeMayUseSummary0(
-  NodeEx n, DataFlowCallable c, FlowState state, AccessPathApprox apa, Configuration config
+  NodeEx n, ParamNodeEx p, FlowState state, AccessPathApprox apa, Configuration config
 ) {
   exists(AccessPathApprox apa0 |
-    Stage4::parameterMayFlowThrough(_, c, _, _) and
-    Stage4::revFlow(n, state, true, _, apa0, config) and
-    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TAccessPathApproxSome(apa), apa0, config) and
-    n.getEnclosingCallable() = c
+    Stage4::parameterMayFlowThrough(p, _, _) and
+    Stage4::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
+    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TParamNodeSome(p.asNode()),
+      TAccessPathApproxSome(apa), apa0, config)
   )
 }
 
@@ -2522,9 +2566,9 @@ pragma[nomagic]
 private predicate nodeMayUseSummary(
   NodeEx n, FlowState state, AccessPathApprox apa, Configuration config
 ) {
-  exists(DataFlowCallable c |
-    Stage4::parameterMayFlowThrough(_, c, apa, config) and
-    nodeMayUseSummary0(n, c, state, apa, config)
+  exists(ParamNodeEx p |
+    Stage4::parameterMayFlowThrough(p, apa, config) and
+    nodeMayUseSummary0(n, p, state, apa, config)
   )
 }
 
@@ -2532,7 +2576,7 @@ private newtype TSummaryCtx =
   TSummaryCtxNone() or
   TSummaryCtxSome(ParamNodeEx p, FlowState state, AccessPath ap) {
     exists(Configuration config |
-      Stage4::parameterMayFlowThrough(p, _, ap.getApprox(), config) and
+      Stage4::parameterMayFlowThrough(p, ap.getApprox(), config) and
       Stage4::revFlow(p, state, _, config)
     )
   }
@@ -3453,17 +3497,11 @@ private predicate paramFlowsThrough(
   ReturnKindExt kind, FlowState state, CallContextCall cc, SummaryCtxSome sc, AccessPath ap,
   AccessPathApprox apa, Configuration config
 ) {
-  exists(PathNodeMid mid, RetNodeEx ret, ParameterPosition pos |
+  exists(PathNodeMid mid, RetNodeEx ret |
     pathNode(mid, ret, state, cc, sc, ap, config, _) and
     kind = ret.getKind() and
     apa = ap.getApprox() and
-    pos = sc.getParameterPos() and
-    // we don't expect a parameter to return stored in itself, unless explicitly allowed
-    (
-      not kind.(ParamUpdateReturnKind).getPosition() = pos
-      or
-      sc.getParamNode().allowParameterReturnInSelf()
-    )
+    parameterFlowThroughAllowed(sc.getParamNode().asNode(), kind)
   )
 }
 
diff --git a/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImplCommon.qll b/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImplCommon.qll
index ae9c6f3f12e..621ed34f9d0 100644
--- a/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImplCommon.qll
+++ b/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImplCommon.qll
@@ -915,6 +915,17 @@ private module Cached {
     TDataFlowCallNone() or
     TDataFlowCallSome(DataFlowCall call)
 
+  cached
+  newtype TParamNodeOption =
+    TParamNodeNone() or
+    TParamNodeSome(ParamNode p)
+
+  cached
+  newtype TReturnCtx =
+    TReturnCtxNone() or
+    TReturnCtxNoFlowThrough() or
+    TReturnCtxMaybeFlowThrough(ReturnPosition pos)
+
   cached
   newtype TTypedContent = MkTypedContent(Content c, DataFlowType t) { store(_, c, _, _, t) }
 
@@ -1304,6 +1315,44 @@ class DataFlowCallOption extends TDataFlowCallOption {
   }
 }
 
+/** An optional `ParamNode`. */
+class ParamNodeOption extends TParamNodeOption {
+  string toString() {
+    this = TParamNodeNone() and
+    result = "(none)"
+    or
+    exists(ParamNode p |
+      this = TParamNodeSome(p) and
+      result = p.toString()
+    )
+  }
+}
+
+/**
+ * A return context used to calculate flow summaries in reverse flow.
+ *
+ * The possible values are:
+ *
+ * - `TReturnCtxNone()`: no return flow.
+ * - `TReturnCtxNoFlowThrough()`: return flow, but flow through is not possible.
+ * - `TReturnCtxMaybeFlowThrough(ReturnPosition pos)`: return flow, of kind `pos`, and
+ *    flow through may be possible.
+ */
+class ReturnCtx extends TReturnCtx {
+  string toString() {
+    this = TReturnCtxNone() and
+    result = "(none)"
+    or
+    this = TReturnCtxNoFlowThrough() and
+    result = "(no flow through)"
+    or
+    exists(ReturnPosition pos |
+      this = TReturnCtxMaybeFlowThrough(pos) and
+      result = pos.toString()
+    )
+  }
+}
+
 /** A `Content` tagged with the type of a containing object. */
 class TypedContent extends MkTypedContent {
   private Content c;
diff --git a/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImplForOnActivityResult.qll b/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImplForOnActivityResult.qll
index 3c41b1876dc..a52ad110662 100644
--- a/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImplForOnActivityResult.qll
+++ b/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImplForOnActivityResult.qll
@@ -319,8 +319,6 @@ private class ParamNodeEx extends NodeEx {
   }
 
   ParameterPosition getPosition() { this.isParameterOf(_, result) }
-
-  predicate allowParameterReturnInSelf() { allowParameterReturnInSelfCached(this.asNode()) }
 }
 
 private class RetNodeEx extends NodeEx {
@@ -608,6 +606,21 @@ private predicate hasSinkCallCtx(Configuration config) {
   )
 }
 
+/**
+ * Holds if flow from `p` to a return node of kind `kind` is allowed.
+ *
+ * We don't expect a parameter to return stored in itself, unless
+ * explicitly allowed
+ */
+bindingset[p, kind]
+private predicate parameterFlowThroughAllowed(ParamNode p, ReturnKindExt kind) {
+  exists(ParameterPosition pos | p.isParameterOf(_, pos) |
+    not kind.(ParamUpdateReturnKind).getPosition() = pos
+    or
+    allowParameterReturnInSelfCached(p)
+  )
+}
+
 private module Stage1 implements StageSig {
   class Ap = Unit;
 
@@ -981,21 +994,22 @@ private module Stage1 implements StageSig {
    * candidate for the origin of a summary.
    */
   pragma[nomagic]
-  predicate parameterMayFlowThrough(ParamNodeEx p, DataFlowCallable c, Ap ap, Configuration config) {
-    exists(ReturnKindExt kind |
+  predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
+    exists(DataFlowCallable c, ReturnKindExt kind |
       throughFlowNodeCand(p, config) and
       returnFlowCallableNodeCand(c, kind, config) and
       p.getEnclosingCallable() = c and
       exists(ap) and
-      // we don't expect a parameter to return stored in itself, unless explicitly allowed
-      (
-        not kind.(ParamUpdateReturnKind).getPosition() = p.getPosition()
-        or
-        p.allowParameterReturnInSelf()
-      )
+      parameterFlowThroughAllowed(p.asNode(), kind)
     )
   }
 
+  pragma[nomagic]
+  predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config) {
+    throughFlowNodeCand(ret, config) and
+    pos = ret.getReturnPosition()
+  }
+
   pragma[nomagic]
   predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
     exists(ArgNodeEx arg, boolean toReturn |
@@ -1052,9 +1066,10 @@ private predicate viableReturnPosOutNodeCand1(
  */
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand1(
-  DataFlowCall call, RetNodeEx ret, NodeEx out, Configuration config
+  DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, Configuration config
 ) {
-  viableReturnPosOutNodeCand1(call, ret.getReturnPosition(), out, config) and
+  viableReturnPosOutNodeCand1(call, pos, out, config) and
+  pos = ret.getReturnPosition() and
   Stage1::revFlow(ret, config) and
   not outBarrier(ret, config) and
   not inBarrier(out, config)
@@ -1090,7 +1105,7 @@ private predicate flowIntoCallNodeCand1(
 private int branch(NodeEx n1, Configuration conf) {
   result =
     strictcount(NodeEx n |
-      flowOutOfCallNodeCand1(_, n1, n, conf) or flowIntoCallNodeCand1(_, n1, n, conf)
+      flowOutOfCallNodeCand1(_, n1, _, n, conf) or flowIntoCallNodeCand1(_, n1, n, conf)
     )
 }
 
@@ -1102,7 +1117,7 @@ private int branch(NodeEx n1, Configuration conf) {
 private int join(NodeEx n2, Configuration conf) {
   result =
     strictcount(NodeEx n |
-      flowOutOfCallNodeCand1(_, n, n2, conf) or flowIntoCallNodeCand1(_, n, n2, conf)
+      flowOutOfCallNodeCand1(_, n, _, n2, conf) or flowIntoCallNodeCand1(_, n, n2, conf)
     )
 }
 
@@ -1115,12 +1130,13 @@ private int join(NodeEx n2, Configuration conf) {
  */
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand1(
-  DataFlowCall call, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow, Configuration config
+  DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
+  Configuration config
 ) {
-  flowOutOfCallNodeCand1(call, ret, out, config) and
+  flowOutOfCallNodeCand1(call, ret, pos, out, pragma[only_bind_into](config)) and
   exists(int b, int j |
-    b = branch(ret, config) and
-    j = join(out, config) and
+    b = branch(ret, pragma[only_bind_into](config)) and
+    j = join(out, pragma[only_bind_into](config)) and
     if b.minimum(j) <= config.fieldFlowBranchLimit()
     then allowsFieldFlow = true
     else allowsFieldFlow = false
@@ -1156,7 +1172,9 @@ private signature module StageSig {
 
   predicate callMayFlowThroughRev(DataFlowCall call, Configuration config);
 
-  predicate parameterMayFlowThrough(ParamNodeEx p, DataFlowCallable c, Ap ap, Configuration config);
+  predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config);
+
+  predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config);
 
   predicate storeStepCand(
     NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, DataFlowType contentType,
@@ -1222,7 +1240,8 @@ private module MkStage<StageSig PrevStage> {
     );
 
     predicate flowOutOfCall(
-      DataFlowCall call, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow, Configuration config
+      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
+      Configuration config
     );
 
     predicate flowIntoCall(
@@ -1247,14 +1266,16 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate flowThroughOutOfCall(
-      DataFlowCall call, CcCall ccc, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow,
-      Configuration config
+      DataFlowCall call, CcCall ccc, RetNodeEx ret, ReturnKindExt kind, NodeEx out,
+      boolean allowsFieldFlow, Configuration config
     ) {
-      flowOutOfCall(call, ret, out, allowsFieldFlow, pragma[only_bind_into](config)) and
-      PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
-      PrevStage::parameterMayFlowThrough(_, ret.getEnclosingCallable(), _,
-        pragma[only_bind_into](config)) and
-      matchesCall(ccc, call)
+      exists(ReturnPosition pos |
+        flowOutOfCall(call, ret, pos, out, allowsFieldFlow, pragma[only_bind_into](config)) and
+        kind = pos.getKind() and
+        PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
+        PrevStage::returnMayFlowThrough(ret, pos, pragma[only_bind_into](config)) and
+        matchesCall(ccc, call)
+      )
     }
 
     /**
@@ -1262,29 +1283,32 @@ private module MkStage<StageSig PrevStage> {
      * configuration `config`.
      *
      * The call context `cc` records whether the node is reached through an
-     * argument in a call, and if so, `argAp` records the access path of that
-     * argument.
+     * argument in a call, and if so, `summaryCtx` and `argAp` record the
+     * corresponding parameter and access path of that argument, respectively.
      */
     pragma[nomagic]
     additional predicate fwdFlow(
-      NodeEx node, FlowState state, Cc cc, ApOption argAp, Ap ap, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      Configuration config
     ) {
-      fwdFlow0(node, state, cc, argAp, ap, config) and
+      fwdFlow0(node, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::revFlow(node, state, unbindApa(getApprox(ap)), config) and
       filter(node, state, ap, config)
     }
 
     pragma[nomagic]
     private predicate fwdFlow0(
-      NodeEx node, FlowState state, Cc cc, ApOption argAp, Ap ap, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      Configuration config
     ) {
       sourceNode(node, state, config) and
       (if hasSourceCallCtx(config) then cc = ccSomeCall() else cc = ccNone()) and
       argAp = apNone() and
+      summaryCtx = TParamNodeNone() and
       ap = getApNil(node)
       or
       exists(NodeEx mid, FlowState state0, Ap ap0, LocalCc localCc |
-        fwdFlow(mid, state0, cc, argAp, ap0, config) and
+        fwdFlow(mid, state0, cc, summaryCtx, argAp, ap0, config) and
         localCc = getLocalCc(mid, cc)
       |
         localStep(mid, state0, node, state, true, _, config, localCc) and
@@ -1295,65 +1319,72 @@ private module MkStage<StageSig PrevStage> {
       )
       or
       exists(NodeEx mid |
-        fwdFlow(mid, pragma[only_bind_into](state), _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, pragma[only_bind_into](config)) and
         jumpStep(mid, node, config) and
         cc = ccNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone()
       )
       or
       exists(NodeEx mid, ApNil nil |
-        fwdFlow(mid, state, _, _, nil, pragma[only_bind_into](config)) and
+        fwdFlow(mid, state, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStep(mid, node, config) and
         cc = ccNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone() and
         ap = getApNil(node)
       )
       or
       exists(NodeEx mid, FlowState state0, ApNil nil |
-        fwdFlow(mid, state0, _, _, nil, pragma[only_bind_into](config)) and
+        fwdFlow(mid, state0, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStateStep(mid, state0, node, state, config) and
         cc = ccNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone() and
         ap = getApNil(node)
       )
       or
       // store
       exists(TypedContent tc, Ap ap0 |
-        fwdFlowStore(_, ap0, tc, node, state, cc, argAp, config) and
+        fwdFlowStore(_, ap0, tc, node, state, cc, summaryCtx, argAp, config) and
         ap = apCons(tc, ap0)
       )
       or
       // read
       exists(Ap ap0, Content c |
-        fwdFlowRead(ap0, c, _, node, state, cc, argAp, config) and
+        fwdFlowRead(ap0, c, _, node, state, cc, summaryCtx, argAp, config) and
         fwdFlowConsCand(ap0, c, ap, config)
       )
       or
       // flow into a callable
       exists(ApApprox apa |
-        fwdFlowIn(_, node, state, _, cc, _, ap, config) and
+        fwdFlowIn(_, node, state, _, cc, _, _, ap, config) and
         apa = getApprox(ap) and
-        if PrevStage::parameterMayFlowThrough(node, _, apa, config)
-        then argAp = apSome(ap)
-        else argAp = apNone()
+        if PrevStage::parameterMayFlowThrough(node, apa, config)
+        then (
+          summaryCtx = TParamNodeSome(node.asNode()) and argAp = apSome(ap)
+        ) else (
+          summaryCtx = TParamNodeNone() and argAp = apNone()
+        )
       )
       or
       // flow out of a callable
-      fwdFlowOutNotFromArg(node, state, cc, argAp, ap, config)
+      fwdFlowOutNotFromArg(node, state, cc, summaryCtx, argAp, ap, config)
       or
-      exists(DataFlowCall call, Ap argAp0 |
-        fwdFlowOutFromArg(call, node, state, argAp0, ap, config) and
-        fwdFlowIsEntered(call, cc, argAp, argAp0, config)
+      // flow through a callable
+      exists(DataFlowCall call, ParamNode summaryCtx0, Ap argAp0 |
+        fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, config) and
+        fwdFlowIsEntered(call, cc, summaryCtx, argAp, summaryCtx0, argAp0, config)
       )
     }
 
     pragma[nomagic]
     private predicate fwdFlowStore(
-      NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc, ApOption argAp,
-      Configuration config
+      NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc,
+      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
     ) {
       exists(DataFlowType contentType |
-        fwdFlow(node1, state, cc, argAp, ap1, config) and
+        fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, config) and
         PrevStage::storeStepCand(node1, unbindApa(getApprox(ap1)), tc, node2, contentType, config) and
         typecheckStore(ap1, contentType)
       )
@@ -1366,7 +1397,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowConsCand(Ap cons, Content c, Ap tail, Configuration config) {
       exists(TypedContent tc |
-        fwdFlowStore(_, tail, tc, _, _, _, _, config) and
+        fwdFlowStore(_, tail, tc, _, _, _, _, _, config) and
         tc.getContent() = c and
         cons = apCons(tc, tail)
       )
@@ -1374,21 +1405,21 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowRead(
-      Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc, ApOption argAp,
-      Configuration config
+      Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc,
+      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
     ) {
-      fwdFlow(node1, state, cc, argAp, ap, config) and
+      fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, c, node2, config) and
       getHeadContent(ap) = c
     }
 
     pragma[nomagic]
     private predicate fwdFlowIn(
-      DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, Cc innercc, ApOption argAp,
-      Ap ap, Configuration config
+      DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, Cc innercc,
+      ParamNodeOption summaryCtx, ApOption argAp, Ap ap, Configuration config
     ) {
       exists(ArgNodeEx arg, boolean allowsFieldFlow |
-        fwdFlow(arg, state, outercc, argAp, ap, config) and
+        fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, config) and
         flowIntoCall(call, arg, p, allowsFieldFlow, config) and
         innercc = getCallContextCall(call, p.getEnclosingCallable(), outercc) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
@@ -1397,14 +1428,15 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowOutNotFromArg(
-      NodeEx out, FlowState state, Cc ccOut, ApOption argAp, Ap ap, Configuration config
+      NodeEx out, FlowState state, Cc ccOut, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      Configuration config
     ) {
       exists(
         DataFlowCall call, RetNodeEx ret, boolean allowsFieldFlow, CcNoCall innercc,
         DataFlowCallable inner
       |
-        fwdFlow(ret, state, innercc, argAp, ap, config) and
-        flowOutOfCall(call, ret, out, allowsFieldFlow, config) and
+        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, config) and
+        flowOutOfCall(call, ret, _, out, allowsFieldFlow, config) and
         inner = ret.getEnclosingCallable() and
         ccOut = getCallContextReturn(inner, call, innercc) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
@@ -1413,12 +1445,14 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowOutFromArg(
-      DataFlowCall call, NodeEx out, FlowState state, Ap argAp, Ap ap, Configuration config
+      DataFlowCall call, NodeEx out, FlowState state, ParamNode summaryCtx, Ap argAp, Ap ap,
+      Configuration config
     ) {
-      exists(RetNodeEx ret, boolean allowsFieldFlow, CcCall ccc |
-        fwdFlow(ret, state, ccc, apSome(argAp), ap, config) and
-        flowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, config) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
+      exists(RetNodeEx ret, ReturnKindExt kind, boolean allowsFieldFlow, CcCall ccc |
+        fwdFlow(ret, state, ccc, TParamNodeSome(summaryCtx), apSome(argAp), ap, config) and
+        flowThroughOutOfCall(call, ccc, ret, kind, out, allowsFieldFlow, config) and
+        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
+        parameterFlowThroughAllowed(summaryCtx, kind)
       )
     }
 
@@ -1428,11 +1462,13 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate fwdFlowIsEntered(
-      DataFlowCall call, Cc cc, ApOption argAp, Ap ap, Configuration config
+      DataFlowCall call, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, ParamNode p, Ap ap,
+      Configuration config
     ) {
-      exists(ParamNodeEx p |
-        fwdFlowIn(call, p, _, cc, _, argAp, ap, config) and
-        PrevStage::parameterMayFlowThrough(p, _, unbindApa(getApprox(ap)), config)
+      exists(ParamNodeEx param |
+        fwdFlowIn(call, param, _, cc, _, summaryCtx, argAp, ap, config) and
+        PrevStage::parameterMayFlowThrough(param, unbindApa(getApprox(ap)), config) and
+        p = param.asNode()
       )
     }
 
@@ -1440,146 +1476,149 @@ private module MkStage<StageSig PrevStage> {
     private predicate storeStepFwd(
       NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, Ap ap2, Configuration config
     ) {
-      fwdFlowStore(node1, ap1, tc, node2, _, _, _, config) and
+      fwdFlowStore(node1, ap1, tc, node2, _, _, _, _, config) and
       ap2 = apCons(tc, ap1) and
-      fwdFlowRead(ap2, tc.getContent(), _, _, _, _, _, config)
+      fwdFlowRead(ap2, tc.getContent(), _, _, _, _, _, _, config)
     }
 
     private predicate readStepFwd(
       NodeEx n1, Ap ap1, Content c, NodeEx n2, Ap ap2, Configuration config
     ) {
-      fwdFlowRead(ap1, c, n1, n2, _, _, _, config) and
+      fwdFlowRead(ap1, c, n1, n2, _, _, _, _, config) and
       fwdFlowConsCand(ap1, c, ap2, config)
     }
 
     pragma[nomagic]
-    private predicate callMayFlowThroughFwd(DataFlowCall call, Configuration config) {
-      exists(Ap argAp0, NodeEx out, FlowState state, Cc cc, ApOption argAp, Ap ap |
-        fwdFlow(out, state, pragma[only_bind_into](cc), pragma[only_bind_into](argAp), ap,
-          pragma[only_bind_into](config)) and
-        fwdFlowOutFromArg(call, out, state, argAp0, ap, config) and
-        fwdFlowIsEntered(pragma[only_bind_into](call), pragma[only_bind_into](cc),
-          pragma[only_bind_into](argAp), pragma[only_bind_into](argAp0),
-          pragma[only_bind_into](config))
-      )
+    private predicate returnFlowsThrough(
+      RetNodeEx ret, ReturnPosition pos, FlowState state, CcCall ccc, ParamNode p, Ap argAp, Ap ap,
+      Configuration config
+    ) {
+      fwdFlow(ret, state, ccc, TParamNodeSome(p), apSome(argAp), ap, config) and
+      pos = ret.getReturnPosition() and
+      parameterFlowThroughAllowed(p, pos.getKind())
     }
 
     pragma[nomagic]
     private predicate flowThroughIntoCall(
       DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
     ) {
-      flowIntoCall(call, arg, p, allowsFieldFlow, config) and
-      fwdFlow(arg, _, _, _, _, pragma[only_bind_into](config)) and
-      PrevStage::parameterMayFlowThrough(p, _, _, pragma[only_bind_into](config)) and
-      callMayFlowThroughFwd(call, pragma[only_bind_into](config))
-    }
-
-    pragma[nomagic]
-    private predicate returnNodeMayFlowThrough(
-      RetNodeEx ret, FlowState state, Ap ap, Configuration config
-    ) {
-      fwdFlow(ret, state, any(CcCall ccc), apSome(_), ap, config)
+      flowIntoCall(call, pragma[only_bind_into](arg), pragma[only_bind_into](p), allowsFieldFlow,
+        pragma[only_bind_into](config)) and
+      fwdFlow(arg, _, _, _, _, _, pragma[only_bind_into](config)) and
+      returnFlowsThrough(_, _, _, _, p.asNode(), _, _, pragma[only_bind_into](config))
     }
 
     /**
      * Holds if `node` with access path `ap` is part of a path from a source to a
      * sink in the configuration `config`.
      *
-     * The Boolean `toReturn` records whether the node must be returned from the
-     * enclosing callable in order to reach a sink, and if so, `returnAp` records
-     * the access path of the returned value.
+     * The parameter `returnCtx` records whether (and how) the node must be returned
+     * from the enclosing callable in order to reach a sink, and if so, `returnAp`
+     * records the access path of the returned value.
      */
     pragma[nomagic]
     additional predicate revFlow(
-      NodeEx node, FlowState state, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
+      NodeEx node, FlowState state, ReturnCtx returnCtx, ApOption returnAp, Ap ap,
+      Configuration config
     ) {
-      revFlow0(node, state, toReturn, returnAp, ap, config) and
-      fwdFlow(node, state, _, _, ap, config)
+      revFlow0(node, state, returnCtx, returnAp, ap, config) and
+      fwdFlow(node, state, _, _, _, ap, config)
     }
 
     pragma[nomagic]
     private predicate revFlow0(
-      NodeEx node, FlowState state, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
+      NodeEx node, FlowState state, ReturnCtx returnCtx, ApOption returnAp, Ap ap,
+      Configuration config
     ) {
-      fwdFlow(node, state, _, _, ap, config) and
+      fwdFlow(node, state, _, _, _, ap, config) and
       sinkNode(node, state, config) and
-      (if hasSinkCallCtx(config) then toReturn = true else toReturn = false) and
+      (
+        if hasSinkCallCtx(config)
+        then returnCtx = TReturnCtxNoFlowThrough()
+        else returnCtx = TReturnCtxNone()
+      ) and
       returnAp = apNone() and
       ap instanceof ApNil
       or
       exists(NodeEx mid, FlowState state0 |
         localStep(node, state, mid, state0, true, _, config, _) and
-        revFlow(mid, state0, toReturn, returnAp, ap, config)
+        revFlow(mid, state0, returnCtx, returnAp, ap, config)
       )
       or
       exists(NodeEx mid, FlowState state0, ApNil nil |
-        fwdFlow(node, pragma[only_bind_into](state), _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(node, pragma[only_bind_into](state), _, _, _, ap, pragma[only_bind_into](config)) and
         localStep(node, pragma[only_bind_into](state), mid, state0, false, _, config, _) and
-        revFlow(mid, state0, toReturn, returnAp, nil, pragma[only_bind_into](config)) and
+        revFlow(mid, state0, returnCtx, returnAp, nil, pragma[only_bind_into](config)) and
         ap instanceof ApNil
       )
       or
       exists(NodeEx mid |
         jumpStep(node, mid, config) and
         revFlow(mid, state, _, _, ap, config) and
-        toReturn = false and
+        returnCtx = TReturnCtxNone() and
         returnAp = apNone()
       )
       or
       exists(NodeEx mid, ApNil nil |
-        fwdFlow(node, _, _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(node, _, _, _, _, ap, pragma[only_bind_into](config)) and
         additionalJumpStep(node, mid, config) and
         revFlow(pragma[only_bind_into](mid), state, _, _, nil, pragma[only_bind_into](config)) and
-        toReturn = false and
+        returnCtx = TReturnCtxNone() and
         returnAp = apNone() and
         ap instanceof ApNil
       )
       or
       exists(NodeEx mid, FlowState state0, ApNil nil |
-        fwdFlow(node, _, _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(node, _, _, _, _, ap, pragma[only_bind_into](config)) and
         additionalJumpStateStep(node, state, mid, state0, config) and
         revFlow(pragma[only_bind_into](mid), pragma[only_bind_into](state0), _, _, nil,
           pragma[only_bind_into](config)) and
-        toReturn = false and
+        returnCtx = TReturnCtxNone() and
         returnAp = apNone() and
         ap instanceof ApNil
       )
       or
       // store
       exists(Ap ap0, Content c |
-        revFlowStore(ap0, c, ap, node, state, _, _, toReturn, returnAp, config) and
+        revFlowStore(ap0, c, ap, node, state, _, _, returnCtx, returnAp, config) and
         revFlowConsCand(ap0, c, ap, config)
       )
       or
       // read
       exists(NodeEx mid, Ap ap0 |
-        revFlow(mid, state, toReturn, returnAp, ap0, config) and
+        revFlow(mid, state, returnCtx, returnAp, ap0, config) and
         readStepFwd(node, ap, _, mid, ap0, config)
       )
       or
       // flow into a callable
       revFlowInNotToReturn(node, state, returnAp, ap, config) and
-      toReturn = false
+      returnCtx = TReturnCtxNone()
       or
-      exists(DataFlowCall call, Ap returnAp0 |
-        revFlowInToReturn(call, node, state, returnAp0, ap, config) and
-        revFlowIsReturned(call, toReturn, returnAp, returnAp0, config)
+      // flow through a callable
+      exists(DataFlowCall call, ReturnPosition returnPos0, Ap returnAp0 |
+        revFlowInToReturn(call, node, state, returnPos0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnPos0, returnAp0, config)
       )
       or
       // flow out of a callable
-      revFlowOut(_, node, state, _, _, ap, config) and
-      toReturn = true and
-      if returnNodeMayFlowThrough(node, state, ap, config)
-      then returnAp = apSome(ap)
-      else returnAp = apNone()
+      exists(ReturnPosition pos |
+        revFlowOut(_, node, pos, state, _, _, ap, config) and
+        if returnFlowsThrough(node, pos, state, _, _, _, ap, config)
+        then (
+          returnCtx = TReturnCtxMaybeFlowThrough(pos) and
+          returnAp = apSome(ap)
+        ) else (
+          returnCtx = TReturnCtxNoFlowThrough() and returnAp = apNone()
+        )
+      )
     }
 
     pragma[nomagic]
     private predicate revFlowStore(
       Ap ap0, Content c, Ap ap, NodeEx node, FlowState state, TypedContent tc, NodeEx mid,
-      boolean toReturn, ApOption returnAp, Configuration config
+      ReturnCtx returnCtx, ApOption returnAp, Configuration config
     ) {
-      revFlow(mid, state, toReturn, returnAp, ap0, config) and
+      revFlow(mid, state, returnCtx, returnAp, ap0, config) and
       storeStepFwd(node, ap, tc, mid, ap0, config) and
       tc.getContent() = c
     }
@@ -1599,12 +1638,12 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate revFlowOut(
-      DataFlowCall call, RetNodeEx ret, FlowState state, boolean toReturn, ApOption returnAp, Ap ap,
-      Configuration config
+      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, FlowState state, ReturnCtx returnCtx,
+      ApOption returnAp, Ap ap, Configuration config
     ) {
       exists(NodeEx out, boolean allowsFieldFlow |
-        revFlow(out, state, toReturn, returnAp, ap, config) and
-        flowOutOfCall(call, ret, out, allowsFieldFlow, config) and
+        revFlow(out, state, returnCtx, returnAp, ap, config) and
+        flowOutOfCall(call, ret, pos, out, allowsFieldFlow, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
@@ -1614,7 +1653,7 @@ private module MkStage<StageSig PrevStage> {
       ArgNodeEx arg, FlowState state, ApOption returnAp, Ap ap, Configuration config
     ) {
       exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(p, state, false, returnAp, ap, config) and
+        revFlow(p, state, TReturnCtxNone(), returnAp, ap, config) and
         flowIntoCall(_, arg, p, allowsFieldFlow, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
@@ -1622,12 +1661,14 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate revFlowInToReturn(
-      DataFlowCall call, ArgNodeEx arg, FlowState state, Ap returnAp, Ap ap, Configuration config
+      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnPosition returnPos, Ap returnAp,
+      Ap ap, Configuration config
     ) {
       exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(p, state, true, apSome(returnAp), ap, config) and
+        revFlow(p, state, TReturnCtxMaybeFlowThrough(returnPos), apSome(returnAp), ap, config) and
         flowThroughIntoCall(call, arg, p, allowsFieldFlow, config) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
+        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
+        parameterFlowThroughAllowed(p.asNode(), returnPos.getKind())
       )
     }
 
@@ -1638,11 +1679,12 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate revFlowIsReturned(
-      DataFlowCall call, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
+      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnPosition pos, Ap ap,
+      Configuration config
     ) {
       exists(RetNodeEx ret, FlowState state, CcCall ccc |
-        revFlowOut(call, ret, state, toReturn, returnAp, ap, config) and
-        fwdFlow(ret, state, ccc, apSome(_), ap, config) and
+        revFlowOut(call, ret, pos, state, returnCtx, returnAp, ap, config) and
+        returnFlowsThrough(ret, pos, state, ccc, _, _, ap, config) and
         matchesCall(ccc, call)
       )
     }
@@ -1713,40 +1755,39 @@ private module MkStage<StageSig PrevStage> {
       validAp(ap, config)
     }
 
-    pragma[noinline]
-    private predicate parameterFlow(
-      ParamNodeEx p, Ap ap, Ap ap0, DataFlowCallable c, Configuration config
+    pragma[nomagic]
+    private predicate parameterFlowsThroughRev(
+      ParamNodeEx p, Ap ap, ReturnPosition returnPos, Configuration config
     ) {
-      revFlow(p, _, true, apSome(ap0), ap, config) and
-      c = p.getEnclosingCallable()
+      revFlow(p, _, TReturnCtxMaybeFlowThrough(returnPos), apSome(_), ap, config) and
+      parameterFlowThroughAllowed(p.asNode(), returnPos.getKind())
     }
 
-    predicate parameterMayFlowThrough(ParamNodeEx p, DataFlowCallable c, Ap ap, Configuration config) {
-      exists(RetNodeEx ret, FlowState state, Ap ap0, ReturnKindExt kind, ParameterPosition pos |
-        parameterFlow(p, ap, ap0, c, config) and
-        c = ret.getEnclosingCallable() and
-        revFlow(pragma[only_bind_into](ret), pragma[only_bind_into](state), true, apSome(_),
-          pragma[only_bind_into](ap0), pragma[only_bind_into](config)) and
-        fwdFlow(ret, state, any(CcCall ccc), apSome(ap), ap0, config) and
-        kind = ret.getKind() and
-        p.getPosition() = pos and
-        // we don't expect a parameter to return stored in itself, unless explicitly allowed
-        (
-          not kind.(ParamUpdateReturnKind).getPosition() = pos
-          or
-          p.allowParameterReturnInSelf()
-        )
+    pragma[nomagic]
+    predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
+      exists(RetNodeEx ret, ReturnPosition pos |
+        returnFlowsThrough(ret, pos, _, _, p.asNode(), ap, _, config) and
+        parameterFlowsThroughRev(p, ap, pos, config)
+      )
+    }
+
+    pragma[nomagic]
+    predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config) {
+      exists(ParamNodeEx p, Ap ap |
+        returnFlowsThrough(ret, pos, _, _, p.asNode(), ap, _, config) and
+        parameterFlowsThroughRev(p, ap, pos, config)
       )
     }
 
     pragma[nomagic]
     predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
       exists(
-        Ap returnAp0, ArgNodeEx arg, FlowState state, boolean toReturn, ApOption returnAp, Ap ap
+        ReturnPosition returnPos0, Ap returnAp0, ArgNodeEx arg, FlowState state,
+        ReturnCtx returnCtx, ApOption returnAp, Ap ap
       |
-        revFlow(arg, state, toReturn, returnAp, ap, config) and
-        revFlowInToReturn(call, arg, state, returnAp0, ap, config) and
-        revFlowIsReturned(call, toReturn, returnAp, returnAp0, config)
+        revFlow(arg, state, returnCtx, returnAp, ap, config) and
+        revFlowInToReturn(call, arg, state, returnPos0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnPos0, returnAp0, config)
       )
     }
 
@@ -1754,13 +1795,13 @@ private module MkStage<StageSig PrevStage> {
       boolean fwd, int nodes, int fields, int conscand, int states, int tuples, Configuration config
     ) {
       fwd = true and
-      nodes = count(NodeEx node | fwdFlow(node, _, _, _, _, config)) and
+      nodes = count(NodeEx node | fwdFlow(node, _, _, _, _, _, config)) and
       fields = count(TypedContent f0 | fwdConsCand(f0, _, config)) and
       conscand = count(TypedContent f0, Ap ap | fwdConsCand(f0, ap, config)) and
-      states = count(FlowState state | fwdFlow(_, state, _, _, _, config)) and
+      states = count(FlowState state | fwdFlow(_, state, _, _, _, _, config)) and
       tuples =
-        count(NodeEx n, FlowState state, Cc cc, ApOption argAp, Ap ap |
-          fwdFlow(n, state, cc, argAp, ap, config)
+        count(NodeEx n, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap |
+          fwdFlow(n, state, cc, summaryCtx, argAp, ap, config)
         )
       or
       fwd = false and
@@ -1769,8 +1810,8 @@ private module MkStage<StageSig PrevStage> {
       conscand = count(TypedContent f0, Ap ap | consCand(f0, ap, config)) and
       states = count(FlowState state | revFlow(_, state, _, _, _, config)) and
       tuples =
-        count(NodeEx n, FlowState state, boolean b, ApOption retAp, Ap ap |
-          revFlow(n, state, b, retAp, ap, config)
+        count(NodeEx n, FlowState state, ReturnCtx returnCtx, ApOption retAp, Ap ap |
+          revFlow(n, state, returnCtx, retAp, ap, config)
         )
     }
     /* End: Stage logic. */
@@ -1915,7 +1956,7 @@ private module Stage2Param implements MkStage<Stage1>::StageParam {
     exists(lcc)
   }
 
-  predicate flowOutOfCall = flowOutOfCallNodeCand1/5;
+  predicate flowOutOfCall = flowOutOfCallNodeCand1/6;
 
   predicate flowIntoCall = flowIntoCallNodeCand1/5;
 
@@ -1951,9 +1992,10 @@ private module Stage2 implements StageSig {
 
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand2(
-  DataFlowCall call, RetNodeEx node1, NodeEx node2, boolean allowsFieldFlow, Configuration config
+  DataFlowCall call, RetNodeEx node1, ReturnPosition pos, NodeEx node2, boolean allowsFieldFlow,
+  Configuration config
 ) {
-  flowOutOfCallNodeCand1(call, node1, node2, allowsFieldFlow, config) and
+  flowOutOfCallNodeCand1(call, node1, pos, node2, allowsFieldFlow, config) and
   Stage2::revFlow(node2, pragma[only_bind_into](config)) and
   Stage2::revFlowAlias(node1, pragma[only_bind_into](config))
 }
@@ -2021,8 +2063,8 @@ private module LocalFlowBigStep {
     exists(NodeEx next | Stage2::revFlow(next, state, config) |
       jumpStep(node, next, config) or
       additionalJumpStep(node, next, config) or
-      flowIntoCallNodeCand1(_, node, next, config) or
-      flowOutOfCallNodeCand1(_, node, next, config) or
+      flowIntoCallNodeCand2(_, node, next, _, config) or
+      flowOutOfCallNodeCand2(_, node, _, next, _, config) or
       Stage2::storeStepCand(node, _, _, next, _, config) or
       Stage2::readStepCand(node, _, next, config)
     )
@@ -2163,7 +2205,7 @@ private module Stage3Param implements MkStage<Stage2>::StageParam {
     localFlowBigStep(node1, state1, node2, state2, preservesValue, ap, config, _) and exists(lcc)
   }
 
-  predicate flowOutOfCall = flowOutOfCallNodeCand2/5;
+  predicate flowOutOfCall = flowOutOfCallNodeCand2/6;
 
   predicate flowIntoCall = flowIntoCallNodeCand2/5;
 
@@ -2233,8 +2275,9 @@ private predicate flowCandSummaryCtx(
   NodeEx node, FlowState state, AccessPathFront argApf, Configuration config
 ) {
   exists(AccessPathFront apf |
-    Stage3::revFlow(node, state, true, _, apf, config) and
-    Stage3::fwdFlow(node, state, any(Stage3::CcCall ccc), TAccessPathFrontSome(argApf), apf, config)
+    Stage3::revFlow(node, state, TReturnCtxMaybeFlowThrough(_), _, apf, config) and
+    Stage3::fwdFlow(node, state, any(Stage3::CcCall ccc), _, TAccessPathFrontSome(argApf), apf,
+      config)
   )
 }
 
@@ -2468,10 +2511,11 @@ private module Stage4Param implements MkStage<Stage3>::StageParam {
 
   pragma[nomagic]
   predicate flowOutOfCall(
-    DataFlowCall call, RetNodeEx node1, NodeEx node2, boolean allowsFieldFlow, Configuration config
+    DataFlowCall call, RetNodeEx node1, ReturnPosition pos, NodeEx node2, boolean allowsFieldFlow,
+    Configuration config
   ) {
     exists(FlowState state |
-      flowOutOfCallNodeCand2(call, node1, node2, allowsFieldFlow, config) and
+      flowOutOfCallNodeCand2(call, node1, pos, node2, allowsFieldFlow, config) and
       PrevStage::revFlow(node2, pragma[only_bind_into](state), _, pragma[only_bind_into](config)) and
       PrevStage::revFlowAlias(node1, pragma[only_bind_into](state), _,
         pragma[only_bind_into](config))
@@ -2508,13 +2552,13 @@ private Configuration unbindConf(Configuration conf) {
 
 pragma[nomagic]
 private predicate nodeMayUseSummary0(
-  NodeEx n, DataFlowCallable c, FlowState state, AccessPathApprox apa, Configuration config
+  NodeEx n, ParamNodeEx p, FlowState state, AccessPathApprox apa, Configuration config
 ) {
   exists(AccessPathApprox apa0 |
-    Stage4::parameterMayFlowThrough(_, c, _, _) and
-    Stage4::revFlow(n, state, true, _, apa0, config) and
-    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TAccessPathApproxSome(apa), apa0, config) and
-    n.getEnclosingCallable() = c
+    Stage4::parameterMayFlowThrough(p, _, _) and
+    Stage4::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
+    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TParamNodeSome(p.asNode()),
+      TAccessPathApproxSome(apa), apa0, config)
   )
 }
 
@@ -2522,9 +2566,9 @@ pragma[nomagic]
 private predicate nodeMayUseSummary(
   NodeEx n, FlowState state, AccessPathApprox apa, Configuration config
 ) {
-  exists(DataFlowCallable c |
-    Stage4::parameterMayFlowThrough(_, c, apa, config) and
-    nodeMayUseSummary0(n, c, state, apa, config)
+  exists(ParamNodeEx p |
+    Stage4::parameterMayFlowThrough(p, apa, config) and
+    nodeMayUseSummary0(n, p, state, apa, config)
   )
 }
 
@@ -2532,7 +2576,7 @@ private newtype TSummaryCtx =
   TSummaryCtxNone() or
   TSummaryCtxSome(ParamNodeEx p, FlowState state, AccessPath ap) {
     exists(Configuration config |
-      Stage4::parameterMayFlowThrough(p, _, ap.getApprox(), config) and
+      Stage4::parameterMayFlowThrough(p, ap.getApprox(), config) and
       Stage4::revFlow(p, state, _, config)
     )
   }
@@ -3453,17 +3497,11 @@ private predicate paramFlowsThrough(
   ReturnKindExt kind, FlowState state, CallContextCall cc, SummaryCtxSome sc, AccessPath ap,
   AccessPathApprox apa, Configuration config
 ) {
-  exists(PathNodeMid mid, RetNodeEx ret, ParameterPosition pos |
+  exists(PathNodeMid mid, RetNodeEx ret |
     pathNode(mid, ret, state, cc, sc, ap, config, _) and
     kind = ret.getKind() and
     apa = ap.getApprox() and
-    pos = sc.getParameterPos() and
-    // we don't expect a parameter to return stored in itself, unless explicitly allowed
-    (
-      not kind.(ParamUpdateReturnKind).getPosition() = pos
-      or
-      sc.getParamNode().allowParameterReturnInSelf()
-    )
+    parameterFlowThroughAllowed(sc.getParamNode().asNode(), kind)
   )
 }
 
diff --git a/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImplForSerializability.qll b/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImplForSerializability.qll
index 3c41b1876dc..a52ad110662 100644
--- a/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImplForSerializability.qll
+++ b/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImplForSerializability.qll
@@ -319,8 +319,6 @@ private class ParamNodeEx extends NodeEx {
   }
 
   ParameterPosition getPosition() { this.isParameterOf(_, result) }
-
-  predicate allowParameterReturnInSelf() { allowParameterReturnInSelfCached(this.asNode()) }
 }
 
 private class RetNodeEx extends NodeEx {
@@ -608,6 +606,21 @@ private predicate hasSinkCallCtx(Configuration config) {
   )
 }
 
+/**
+ * Holds if flow from `p` to a return node of kind `kind` is allowed.
+ *
+ * We don't expect a parameter to return stored in itself, unless
+ * explicitly allowed
+ */
+bindingset[p, kind]
+private predicate parameterFlowThroughAllowed(ParamNode p, ReturnKindExt kind) {
+  exists(ParameterPosition pos | p.isParameterOf(_, pos) |
+    not kind.(ParamUpdateReturnKind).getPosition() = pos
+    or
+    allowParameterReturnInSelfCached(p)
+  )
+}
+
 private module Stage1 implements StageSig {
   class Ap = Unit;
 
@@ -981,21 +994,22 @@ private module Stage1 implements StageSig {
    * candidate for the origin of a summary.
    */
   pragma[nomagic]
-  predicate parameterMayFlowThrough(ParamNodeEx p, DataFlowCallable c, Ap ap, Configuration config) {
-    exists(ReturnKindExt kind |
+  predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
+    exists(DataFlowCallable c, ReturnKindExt kind |
       throughFlowNodeCand(p, config) and
       returnFlowCallableNodeCand(c, kind, config) and
       p.getEnclosingCallable() = c and
       exists(ap) and
-      // we don't expect a parameter to return stored in itself, unless explicitly allowed
-      (
-        not kind.(ParamUpdateReturnKind).getPosition() = p.getPosition()
-        or
-        p.allowParameterReturnInSelf()
-      )
+      parameterFlowThroughAllowed(p.asNode(), kind)
     )
   }
 
+  pragma[nomagic]
+  predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config) {
+    throughFlowNodeCand(ret, config) and
+    pos = ret.getReturnPosition()
+  }
+
   pragma[nomagic]
   predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
     exists(ArgNodeEx arg, boolean toReturn |
@@ -1052,9 +1066,10 @@ private predicate viableReturnPosOutNodeCand1(
  */
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand1(
-  DataFlowCall call, RetNodeEx ret, NodeEx out, Configuration config
+  DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, Configuration config
 ) {
-  viableReturnPosOutNodeCand1(call, ret.getReturnPosition(), out, config) and
+  viableReturnPosOutNodeCand1(call, pos, out, config) and
+  pos = ret.getReturnPosition() and
   Stage1::revFlow(ret, config) and
   not outBarrier(ret, config) and
   not inBarrier(out, config)
@@ -1090,7 +1105,7 @@ private predicate flowIntoCallNodeCand1(
 private int branch(NodeEx n1, Configuration conf) {
   result =
     strictcount(NodeEx n |
-      flowOutOfCallNodeCand1(_, n1, n, conf) or flowIntoCallNodeCand1(_, n1, n, conf)
+      flowOutOfCallNodeCand1(_, n1, _, n, conf) or flowIntoCallNodeCand1(_, n1, n, conf)
     )
 }
 
@@ -1102,7 +1117,7 @@ private int branch(NodeEx n1, Configuration conf) {
 private int join(NodeEx n2, Configuration conf) {
   result =
     strictcount(NodeEx n |
-      flowOutOfCallNodeCand1(_, n, n2, conf) or flowIntoCallNodeCand1(_, n, n2, conf)
+      flowOutOfCallNodeCand1(_, n, _, n2, conf) or flowIntoCallNodeCand1(_, n, n2, conf)
     )
 }
 
@@ -1115,12 +1130,13 @@ private int join(NodeEx n2, Configuration conf) {
  */
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand1(
-  DataFlowCall call, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow, Configuration config
+  DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
+  Configuration config
 ) {
-  flowOutOfCallNodeCand1(call, ret, out, config) and
+  flowOutOfCallNodeCand1(call, ret, pos, out, pragma[only_bind_into](config)) and
   exists(int b, int j |
-    b = branch(ret, config) and
-    j = join(out, config) and
+    b = branch(ret, pragma[only_bind_into](config)) and
+    j = join(out, pragma[only_bind_into](config)) and
     if b.minimum(j) <= config.fieldFlowBranchLimit()
     then allowsFieldFlow = true
     else allowsFieldFlow = false
@@ -1156,7 +1172,9 @@ private signature module StageSig {
 
   predicate callMayFlowThroughRev(DataFlowCall call, Configuration config);
 
-  predicate parameterMayFlowThrough(ParamNodeEx p, DataFlowCallable c, Ap ap, Configuration config);
+  predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config);
+
+  predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config);
 
   predicate storeStepCand(
     NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, DataFlowType contentType,
@@ -1222,7 +1240,8 @@ private module MkStage<StageSig PrevStage> {
     );
 
     predicate flowOutOfCall(
-      DataFlowCall call, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow, Configuration config
+      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
+      Configuration config
     );
 
     predicate flowIntoCall(
@@ -1247,14 +1266,16 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate flowThroughOutOfCall(
-      DataFlowCall call, CcCall ccc, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow,
-      Configuration config
+      DataFlowCall call, CcCall ccc, RetNodeEx ret, ReturnKindExt kind, NodeEx out,
+      boolean allowsFieldFlow, Configuration config
     ) {
-      flowOutOfCall(call, ret, out, allowsFieldFlow, pragma[only_bind_into](config)) and
-      PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
-      PrevStage::parameterMayFlowThrough(_, ret.getEnclosingCallable(), _,
-        pragma[only_bind_into](config)) and
-      matchesCall(ccc, call)
+      exists(ReturnPosition pos |
+        flowOutOfCall(call, ret, pos, out, allowsFieldFlow, pragma[only_bind_into](config)) and
+        kind = pos.getKind() and
+        PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
+        PrevStage::returnMayFlowThrough(ret, pos, pragma[only_bind_into](config)) and
+        matchesCall(ccc, call)
+      )
     }
 
     /**
@@ -1262,29 +1283,32 @@ private module MkStage<StageSig PrevStage> {
      * configuration `config`.
      *
      * The call context `cc` records whether the node is reached through an
-     * argument in a call, and if so, `argAp` records the access path of that
-     * argument.
+     * argument in a call, and if so, `summaryCtx` and `argAp` record the
+     * corresponding parameter and access path of that argument, respectively.
      */
     pragma[nomagic]
     additional predicate fwdFlow(
-      NodeEx node, FlowState state, Cc cc, ApOption argAp, Ap ap, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      Configuration config
     ) {
-      fwdFlow0(node, state, cc, argAp, ap, config) and
+      fwdFlow0(node, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::revFlow(node, state, unbindApa(getApprox(ap)), config) and
       filter(node, state, ap, config)
     }
 
     pragma[nomagic]
     private predicate fwdFlow0(
-      NodeEx node, FlowState state, Cc cc, ApOption argAp, Ap ap, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      Configuration config
     ) {
       sourceNode(node, state, config) and
       (if hasSourceCallCtx(config) then cc = ccSomeCall() else cc = ccNone()) and
       argAp = apNone() and
+      summaryCtx = TParamNodeNone() and
       ap = getApNil(node)
       or
       exists(NodeEx mid, FlowState state0, Ap ap0, LocalCc localCc |
-        fwdFlow(mid, state0, cc, argAp, ap0, config) and
+        fwdFlow(mid, state0, cc, summaryCtx, argAp, ap0, config) and
         localCc = getLocalCc(mid, cc)
       |
         localStep(mid, state0, node, state, true, _, config, localCc) and
@@ -1295,65 +1319,72 @@ private module MkStage<StageSig PrevStage> {
       )
       or
       exists(NodeEx mid |
-        fwdFlow(mid, pragma[only_bind_into](state), _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, pragma[only_bind_into](config)) and
         jumpStep(mid, node, config) and
         cc = ccNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone()
       )
       or
       exists(NodeEx mid, ApNil nil |
-        fwdFlow(mid, state, _, _, nil, pragma[only_bind_into](config)) and
+        fwdFlow(mid, state, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStep(mid, node, config) and
         cc = ccNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone() and
         ap = getApNil(node)
       )
       or
       exists(NodeEx mid, FlowState state0, ApNil nil |
-        fwdFlow(mid, state0, _, _, nil, pragma[only_bind_into](config)) and
+        fwdFlow(mid, state0, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStateStep(mid, state0, node, state, config) and
         cc = ccNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone() and
         ap = getApNil(node)
       )
       or
       // store
       exists(TypedContent tc, Ap ap0 |
-        fwdFlowStore(_, ap0, tc, node, state, cc, argAp, config) and
+        fwdFlowStore(_, ap0, tc, node, state, cc, summaryCtx, argAp, config) and
         ap = apCons(tc, ap0)
       )
       or
       // read
       exists(Ap ap0, Content c |
-        fwdFlowRead(ap0, c, _, node, state, cc, argAp, config) and
+        fwdFlowRead(ap0, c, _, node, state, cc, summaryCtx, argAp, config) and
         fwdFlowConsCand(ap0, c, ap, config)
       )
       or
       // flow into a callable
       exists(ApApprox apa |
-        fwdFlowIn(_, node, state, _, cc, _, ap, config) and
+        fwdFlowIn(_, node, state, _, cc, _, _, ap, config) and
         apa = getApprox(ap) and
-        if PrevStage::parameterMayFlowThrough(node, _, apa, config)
-        then argAp = apSome(ap)
-        else argAp = apNone()
+        if PrevStage::parameterMayFlowThrough(node, apa, config)
+        then (
+          summaryCtx = TParamNodeSome(node.asNode()) and argAp = apSome(ap)
+        ) else (
+          summaryCtx = TParamNodeNone() and argAp = apNone()
+        )
       )
       or
       // flow out of a callable
-      fwdFlowOutNotFromArg(node, state, cc, argAp, ap, config)
+      fwdFlowOutNotFromArg(node, state, cc, summaryCtx, argAp, ap, config)
       or
-      exists(DataFlowCall call, Ap argAp0 |
-        fwdFlowOutFromArg(call, node, state, argAp0, ap, config) and
-        fwdFlowIsEntered(call, cc, argAp, argAp0, config)
+      // flow through a callable
+      exists(DataFlowCall call, ParamNode summaryCtx0, Ap argAp0 |
+        fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, config) and
+        fwdFlowIsEntered(call, cc, summaryCtx, argAp, summaryCtx0, argAp0, config)
       )
     }
 
     pragma[nomagic]
     private predicate fwdFlowStore(
-      NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc, ApOption argAp,
-      Configuration config
+      NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc,
+      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
     ) {
       exists(DataFlowType contentType |
-        fwdFlow(node1, state, cc, argAp, ap1, config) and
+        fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, config) and
         PrevStage::storeStepCand(node1, unbindApa(getApprox(ap1)), tc, node2, contentType, config) and
         typecheckStore(ap1, contentType)
       )
@@ -1366,7 +1397,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowConsCand(Ap cons, Content c, Ap tail, Configuration config) {
       exists(TypedContent tc |
-        fwdFlowStore(_, tail, tc, _, _, _, _, config) and
+        fwdFlowStore(_, tail, tc, _, _, _, _, _, config) and
         tc.getContent() = c and
         cons = apCons(tc, tail)
       )
@@ -1374,21 +1405,21 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowRead(
-      Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc, ApOption argAp,
-      Configuration config
+      Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc,
+      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
     ) {
-      fwdFlow(node1, state, cc, argAp, ap, config) and
+      fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, c, node2, config) and
       getHeadContent(ap) = c
     }
 
     pragma[nomagic]
     private predicate fwdFlowIn(
-      DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, Cc innercc, ApOption argAp,
-      Ap ap, Configuration config
+      DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, Cc innercc,
+      ParamNodeOption summaryCtx, ApOption argAp, Ap ap, Configuration config
     ) {
       exists(ArgNodeEx arg, boolean allowsFieldFlow |
-        fwdFlow(arg, state, outercc, argAp, ap, config) and
+        fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, config) and
         flowIntoCall(call, arg, p, allowsFieldFlow, config) and
         innercc = getCallContextCall(call, p.getEnclosingCallable(), outercc) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
@@ -1397,14 +1428,15 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowOutNotFromArg(
-      NodeEx out, FlowState state, Cc ccOut, ApOption argAp, Ap ap, Configuration config
+      NodeEx out, FlowState state, Cc ccOut, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      Configuration config
     ) {
       exists(
         DataFlowCall call, RetNodeEx ret, boolean allowsFieldFlow, CcNoCall innercc,
         DataFlowCallable inner
       |
-        fwdFlow(ret, state, innercc, argAp, ap, config) and
-        flowOutOfCall(call, ret, out, allowsFieldFlow, config) and
+        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, config) and
+        flowOutOfCall(call, ret, _, out, allowsFieldFlow, config) and
         inner = ret.getEnclosingCallable() and
         ccOut = getCallContextReturn(inner, call, innercc) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
@@ -1413,12 +1445,14 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowOutFromArg(
-      DataFlowCall call, NodeEx out, FlowState state, Ap argAp, Ap ap, Configuration config
+      DataFlowCall call, NodeEx out, FlowState state, ParamNode summaryCtx, Ap argAp, Ap ap,
+      Configuration config
     ) {
-      exists(RetNodeEx ret, boolean allowsFieldFlow, CcCall ccc |
-        fwdFlow(ret, state, ccc, apSome(argAp), ap, config) and
-        flowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, config) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
+      exists(RetNodeEx ret, ReturnKindExt kind, boolean allowsFieldFlow, CcCall ccc |
+        fwdFlow(ret, state, ccc, TParamNodeSome(summaryCtx), apSome(argAp), ap, config) and
+        flowThroughOutOfCall(call, ccc, ret, kind, out, allowsFieldFlow, config) and
+        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
+        parameterFlowThroughAllowed(summaryCtx, kind)
       )
     }
 
@@ -1428,11 +1462,13 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate fwdFlowIsEntered(
-      DataFlowCall call, Cc cc, ApOption argAp, Ap ap, Configuration config
+      DataFlowCall call, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, ParamNode p, Ap ap,
+      Configuration config
     ) {
-      exists(ParamNodeEx p |
-        fwdFlowIn(call, p, _, cc, _, argAp, ap, config) and
-        PrevStage::parameterMayFlowThrough(p, _, unbindApa(getApprox(ap)), config)
+      exists(ParamNodeEx param |
+        fwdFlowIn(call, param, _, cc, _, summaryCtx, argAp, ap, config) and
+        PrevStage::parameterMayFlowThrough(param, unbindApa(getApprox(ap)), config) and
+        p = param.asNode()
       )
     }
 
@@ -1440,146 +1476,149 @@ private module MkStage<StageSig PrevStage> {
     private predicate storeStepFwd(
       NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, Ap ap2, Configuration config
     ) {
-      fwdFlowStore(node1, ap1, tc, node2, _, _, _, config) and
+      fwdFlowStore(node1, ap1, tc, node2, _, _, _, _, config) and
       ap2 = apCons(tc, ap1) and
-      fwdFlowRead(ap2, tc.getContent(), _, _, _, _, _, config)
+      fwdFlowRead(ap2, tc.getContent(), _, _, _, _, _, _, config)
     }
 
     private predicate readStepFwd(
       NodeEx n1, Ap ap1, Content c, NodeEx n2, Ap ap2, Configuration config
     ) {
-      fwdFlowRead(ap1, c, n1, n2, _, _, _, config) and
+      fwdFlowRead(ap1, c, n1, n2, _, _, _, _, config) and
       fwdFlowConsCand(ap1, c, ap2, config)
     }
 
     pragma[nomagic]
-    private predicate callMayFlowThroughFwd(DataFlowCall call, Configuration config) {
-      exists(Ap argAp0, NodeEx out, FlowState state, Cc cc, ApOption argAp, Ap ap |
-        fwdFlow(out, state, pragma[only_bind_into](cc), pragma[only_bind_into](argAp), ap,
-          pragma[only_bind_into](config)) and
-        fwdFlowOutFromArg(call, out, state, argAp0, ap, config) and
-        fwdFlowIsEntered(pragma[only_bind_into](call), pragma[only_bind_into](cc),
-          pragma[only_bind_into](argAp), pragma[only_bind_into](argAp0),
-          pragma[only_bind_into](config))
-      )
+    private predicate returnFlowsThrough(
+      RetNodeEx ret, ReturnPosition pos, FlowState state, CcCall ccc, ParamNode p, Ap argAp, Ap ap,
+      Configuration config
+    ) {
+      fwdFlow(ret, state, ccc, TParamNodeSome(p), apSome(argAp), ap, config) and
+      pos = ret.getReturnPosition() and
+      parameterFlowThroughAllowed(p, pos.getKind())
     }
 
     pragma[nomagic]
     private predicate flowThroughIntoCall(
       DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
     ) {
-      flowIntoCall(call, arg, p, allowsFieldFlow, config) and
-      fwdFlow(arg, _, _, _, _, pragma[only_bind_into](config)) and
-      PrevStage::parameterMayFlowThrough(p, _, _, pragma[only_bind_into](config)) and
-      callMayFlowThroughFwd(call, pragma[only_bind_into](config))
-    }
-
-    pragma[nomagic]
-    private predicate returnNodeMayFlowThrough(
-      RetNodeEx ret, FlowState state, Ap ap, Configuration config
-    ) {
-      fwdFlow(ret, state, any(CcCall ccc), apSome(_), ap, config)
+      flowIntoCall(call, pragma[only_bind_into](arg), pragma[only_bind_into](p), allowsFieldFlow,
+        pragma[only_bind_into](config)) and
+      fwdFlow(arg, _, _, _, _, _, pragma[only_bind_into](config)) and
+      returnFlowsThrough(_, _, _, _, p.asNode(), _, _, pragma[only_bind_into](config))
     }
 
     /**
      * Holds if `node` with access path `ap` is part of a path from a source to a
      * sink in the configuration `config`.
      *
-     * The Boolean `toReturn` records whether the node must be returned from the
-     * enclosing callable in order to reach a sink, and if so, `returnAp` records
-     * the access path of the returned value.
+     * The parameter `returnCtx` records whether (and how) the node must be returned
+     * from the enclosing callable in order to reach a sink, and if so, `returnAp`
+     * records the access path of the returned value.
      */
     pragma[nomagic]
     additional predicate revFlow(
-      NodeEx node, FlowState state, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
+      NodeEx node, FlowState state, ReturnCtx returnCtx, ApOption returnAp, Ap ap,
+      Configuration config
     ) {
-      revFlow0(node, state, toReturn, returnAp, ap, config) and
-      fwdFlow(node, state, _, _, ap, config)
+      revFlow0(node, state, returnCtx, returnAp, ap, config) and
+      fwdFlow(node, state, _, _, _, ap, config)
     }
 
     pragma[nomagic]
     private predicate revFlow0(
-      NodeEx node, FlowState state, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
+      NodeEx node, FlowState state, ReturnCtx returnCtx, ApOption returnAp, Ap ap,
+      Configuration config
     ) {
-      fwdFlow(node, state, _, _, ap, config) and
+      fwdFlow(node, state, _, _, _, ap, config) and
       sinkNode(node, state, config) and
-      (if hasSinkCallCtx(config) then toReturn = true else toReturn = false) and
+      (
+        if hasSinkCallCtx(config)
+        then returnCtx = TReturnCtxNoFlowThrough()
+        else returnCtx = TReturnCtxNone()
+      ) and
       returnAp = apNone() and
       ap instanceof ApNil
       or
       exists(NodeEx mid, FlowState state0 |
         localStep(node, state, mid, state0, true, _, config, _) and
-        revFlow(mid, state0, toReturn, returnAp, ap, config)
+        revFlow(mid, state0, returnCtx, returnAp, ap, config)
       )
       or
       exists(NodeEx mid, FlowState state0, ApNil nil |
-        fwdFlow(node, pragma[only_bind_into](state), _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(node, pragma[only_bind_into](state), _, _, _, ap, pragma[only_bind_into](config)) and
         localStep(node, pragma[only_bind_into](state), mid, state0, false, _, config, _) and
-        revFlow(mid, state0, toReturn, returnAp, nil, pragma[only_bind_into](config)) and
+        revFlow(mid, state0, returnCtx, returnAp, nil, pragma[only_bind_into](config)) and
         ap instanceof ApNil
       )
       or
       exists(NodeEx mid |
         jumpStep(node, mid, config) and
         revFlow(mid, state, _, _, ap, config) and
-        toReturn = false and
+        returnCtx = TReturnCtxNone() and
         returnAp = apNone()
       )
       or
       exists(NodeEx mid, ApNil nil |
-        fwdFlow(node, _, _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(node, _, _, _, _, ap, pragma[only_bind_into](config)) and
         additionalJumpStep(node, mid, config) and
         revFlow(pragma[only_bind_into](mid), state, _, _, nil, pragma[only_bind_into](config)) and
-        toReturn = false and
+        returnCtx = TReturnCtxNone() and
         returnAp = apNone() and
         ap instanceof ApNil
       )
       or
       exists(NodeEx mid, FlowState state0, ApNil nil |
-        fwdFlow(node, _, _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(node, _, _, _, _, ap, pragma[only_bind_into](config)) and
         additionalJumpStateStep(node, state, mid, state0, config) and
         revFlow(pragma[only_bind_into](mid), pragma[only_bind_into](state0), _, _, nil,
           pragma[only_bind_into](config)) and
-        toReturn = false and
+        returnCtx = TReturnCtxNone() and
         returnAp = apNone() and
         ap instanceof ApNil
       )
       or
       // store
       exists(Ap ap0, Content c |
-        revFlowStore(ap0, c, ap, node, state, _, _, toReturn, returnAp, config) and
+        revFlowStore(ap0, c, ap, node, state, _, _, returnCtx, returnAp, config) and
         revFlowConsCand(ap0, c, ap, config)
       )
       or
       // read
       exists(NodeEx mid, Ap ap0 |
-        revFlow(mid, state, toReturn, returnAp, ap0, config) and
+        revFlow(mid, state, returnCtx, returnAp, ap0, config) and
         readStepFwd(node, ap, _, mid, ap0, config)
       )
       or
       // flow into a callable
       revFlowInNotToReturn(node, state, returnAp, ap, config) and
-      toReturn = false
+      returnCtx = TReturnCtxNone()
       or
-      exists(DataFlowCall call, Ap returnAp0 |
-        revFlowInToReturn(call, node, state, returnAp0, ap, config) and
-        revFlowIsReturned(call, toReturn, returnAp, returnAp0, config)
+      // flow through a callable
+      exists(DataFlowCall call, ReturnPosition returnPos0, Ap returnAp0 |
+        revFlowInToReturn(call, node, state, returnPos0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnPos0, returnAp0, config)
       )
       or
       // flow out of a callable
-      revFlowOut(_, node, state, _, _, ap, config) and
-      toReturn = true and
-      if returnNodeMayFlowThrough(node, state, ap, config)
-      then returnAp = apSome(ap)
-      else returnAp = apNone()
+      exists(ReturnPosition pos |
+        revFlowOut(_, node, pos, state, _, _, ap, config) and
+        if returnFlowsThrough(node, pos, state, _, _, _, ap, config)
+        then (
+          returnCtx = TReturnCtxMaybeFlowThrough(pos) and
+          returnAp = apSome(ap)
+        ) else (
+          returnCtx = TReturnCtxNoFlowThrough() and returnAp = apNone()
+        )
+      )
     }
 
     pragma[nomagic]
     private predicate revFlowStore(
       Ap ap0, Content c, Ap ap, NodeEx node, FlowState state, TypedContent tc, NodeEx mid,
-      boolean toReturn, ApOption returnAp, Configuration config
+      ReturnCtx returnCtx, ApOption returnAp, Configuration config
     ) {
-      revFlow(mid, state, toReturn, returnAp, ap0, config) and
+      revFlow(mid, state, returnCtx, returnAp, ap0, config) and
       storeStepFwd(node, ap, tc, mid, ap0, config) and
       tc.getContent() = c
     }
@@ -1599,12 +1638,12 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate revFlowOut(
-      DataFlowCall call, RetNodeEx ret, FlowState state, boolean toReturn, ApOption returnAp, Ap ap,
-      Configuration config
+      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, FlowState state, ReturnCtx returnCtx,
+      ApOption returnAp, Ap ap, Configuration config
     ) {
       exists(NodeEx out, boolean allowsFieldFlow |
-        revFlow(out, state, toReturn, returnAp, ap, config) and
-        flowOutOfCall(call, ret, out, allowsFieldFlow, config) and
+        revFlow(out, state, returnCtx, returnAp, ap, config) and
+        flowOutOfCall(call, ret, pos, out, allowsFieldFlow, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
@@ -1614,7 +1653,7 @@ private module MkStage<StageSig PrevStage> {
       ArgNodeEx arg, FlowState state, ApOption returnAp, Ap ap, Configuration config
     ) {
       exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(p, state, false, returnAp, ap, config) and
+        revFlow(p, state, TReturnCtxNone(), returnAp, ap, config) and
         flowIntoCall(_, arg, p, allowsFieldFlow, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
@@ -1622,12 +1661,14 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate revFlowInToReturn(
-      DataFlowCall call, ArgNodeEx arg, FlowState state, Ap returnAp, Ap ap, Configuration config
+      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnPosition returnPos, Ap returnAp,
+      Ap ap, Configuration config
     ) {
       exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(p, state, true, apSome(returnAp), ap, config) and
+        revFlow(p, state, TReturnCtxMaybeFlowThrough(returnPos), apSome(returnAp), ap, config) and
         flowThroughIntoCall(call, arg, p, allowsFieldFlow, config) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
+        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
+        parameterFlowThroughAllowed(p.asNode(), returnPos.getKind())
       )
     }
 
@@ -1638,11 +1679,12 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate revFlowIsReturned(
-      DataFlowCall call, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
+      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnPosition pos, Ap ap,
+      Configuration config
     ) {
       exists(RetNodeEx ret, FlowState state, CcCall ccc |
-        revFlowOut(call, ret, state, toReturn, returnAp, ap, config) and
-        fwdFlow(ret, state, ccc, apSome(_), ap, config) and
+        revFlowOut(call, ret, pos, state, returnCtx, returnAp, ap, config) and
+        returnFlowsThrough(ret, pos, state, ccc, _, _, ap, config) and
         matchesCall(ccc, call)
       )
     }
@@ -1713,40 +1755,39 @@ private module MkStage<StageSig PrevStage> {
       validAp(ap, config)
     }
 
-    pragma[noinline]
-    private predicate parameterFlow(
-      ParamNodeEx p, Ap ap, Ap ap0, DataFlowCallable c, Configuration config
+    pragma[nomagic]
+    private predicate parameterFlowsThroughRev(
+      ParamNodeEx p, Ap ap, ReturnPosition returnPos, Configuration config
     ) {
-      revFlow(p, _, true, apSome(ap0), ap, config) and
-      c = p.getEnclosingCallable()
+      revFlow(p, _, TReturnCtxMaybeFlowThrough(returnPos), apSome(_), ap, config) and
+      parameterFlowThroughAllowed(p.asNode(), returnPos.getKind())
     }
 
-    predicate parameterMayFlowThrough(ParamNodeEx p, DataFlowCallable c, Ap ap, Configuration config) {
-      exists(RetNodeEx ret, FlowState state, Ap ap0, ReturnKindExt kind, ParameterPosition pos |
-        parameterFlow(p, ap, ap0, c, config) and
-        c = ret.getEnclosingCallable() and
-        revFlow(pragma[only_bind_into](ret), pragma[only_bind_into](state), true, apSome(_),
-          pragma[only_bind_into](ap0), pragma[only_bind_into](config)) and
-        fwdFlow(ret, state, any(CcCall ccc), apSome(ap), ap0, config) and
-        kind = ret.getKind() and
-        p.getPosition() = pos and
-        // we don't expect a parameter to return stored in itself, unless explicitly allowed
-        (
-          not kind.(ParamUpdateReturnKind).getPosition() = pos
-          or
-          p.allowParameterReturnInSelf()
-        )
+    pragma[nomagic]
+    predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
+      exists(RetNodeEx ret, ReturnPosition pos |
+        returnFlowsThrough(ret, pos, _, _, p.asNode(), ap, _, config) and
+        parameterFlowsThroughRev(p, ap, pos, config)
+      )
+    }
+
+    pragma[nomagic]
+    predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config) {
+      exists(ParamNodeEx p, Ap ap |
+        returnFlowsThrough(ret, pos, _, _, p.asNode(), ap, _, config) and
+        parameterFlowsThroughRev(p, ap, pos, config)
       )
     }
 
     pragma[nomagic]
     predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
       exists(
-        Ap returnAp0, ArgNodeEx arg, FlowState state, boolean toReturn, ApOption returnAp, Ap ap
+        ReturnPosition returnPos0, Ap returnAp0, ArgNodeEx arg, FlowState state,
+        ReturnCtx returnCtx, ApOption returnAp, Ap ap
       |
-        revFlow(arg, state, toReturn, returnAp, ap, config) and
-        revFlowInToReturn(call, arg, state, returnAp0, ap, config) and
-        revFlowIsReturned(call, toReturn, returnAp, returnAp0, config)
+        revFlow(arg, state, returnCtx, returnAp, ap, config) and
+        revFlowInToReturn(call, arg, state, returnPos0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnPos0, returnAp0, config)
       )
     }
 
@@ -1754,13 +1795,13 @@ private module MkStage<StageSig PrevStage> {
       boolean fwd, int nodes, int fields, int conscand, int states, int tuples, Configuration config
     ) {
       fwd = true and
-      nodes = count(NodeEx node | fwdFlow(node, _, _, _, _, config)) and
+      nodes = count(NodeEx node | fwdFlow(node, _, _, _, _, _, config)) and
       fields = count(TypedContent f0 | fwdConsCand(f0, _, config)) and
       conscand = count(TypedContent f0, Ap ap | fwdConsCand(f0, ap, config)) and
-      states = count(FlowState state | fwdFlow(_, state, _, _, _, config)) and
+      states = count(FlowState state | fwdFlow(_, state, _, _, _, _, config)) and
       tuples =
-        count(NodeEx n, FlowState state, Cc cc, ApOption argAp, Ap ap |
-          fwdFlow(n, state, cc, argAp, ap, config)
+        count(NodeEx n, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap |
+          fwdFlow(n, state, cc, summaryCtx, argAp, ap, config)
         )
       or
       fwd = false and
@@ -1769,8 +1810,8 @@ private module MkStage<StageSig PrevStage> {
       conscand = count(TypedContent f0, Ap ap | consCand(f0, ap, config)) and
       states = count(FlowState state | revFlow(_, state, _, _, _, config)) and
       tuples =
-        count(NodeEx n, FlowState state, boolean b, ApOption retAp, Ap ap |
-          revFlow(n, state, b, retAp, ap, config)
+        count(NodeEx n, FlowState state, ReturnCtx returnCtx, ApOption retAp, Ap ap |
+          revFlow(n, state, returnCtx, retAp, ap, config)
         )
     }
     /* End: Stage logic. */
@@ -1915,7 +1956,7 @@ private module Stage2Param implements MkStage<Stage1>::StageParam {
     exists(lcc)
   }
 
-  predicate flowOutOfCall = flowOutOfCallNodeCand1/5;
+  predicate flowOutOfCall = flowOutOfCallNodeCand1/6;
 
   predicate flowIntoCall = flowIntoCallNodeCand1/5;
 
@@ -1951,9 +1992,10 @@ private module Stage2 implements StageSig {
 
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand2(
-  DataFlowCall call, RetNodeEx node1, NodeEx node2, boolean allowsFieldFlow, Configuration config
+  DataFlowCall call, RetNodeEx node1, ReturnPosition pos, NodeEx node2, boolean allowsFieldFlow,
+  Configuration config
 ) {
-  flowOutOfCallNodeCand1(call, node1, node2, allowsFieldFlow, config) and
+  flowOutOfCallNodeCand1(call, node1, pos, node2, allowsFieldFlow, config) and
   Stage2::revFlow(node2, pragma[only_bind_into](config)) and
   Stage2::revFlowAlias(node1, pragma[only_bind_into](config))
 }
@@ -2021,8 +2063,8 @@ private module LocalFlowBigStep {
     exists(NodeEx next | Stage2::revFlow(next, state, config) |
       jumpStep(node, next, config) or
       additionalJumpStep(node, next, config) or
-      flowIntoCallNodeCand1(_, node, next, config) or
-      flowOutOfCallNodeCand1(_, node, next, config) or
+      flowIntoCallNodeCand2(_, node, next, _, config) or
+      flowOutOfCallNodeCand2(_, node, _, next, _, config) or
       Stage2::storeStepCand(node, _, _, next, _, config) or
       Stage2::readStepCand(node, _, next, config)
     )
@@ -2163,7 +2205,7 @@ private module Stage3Param implements MkStage<Stage2>::StageParam {
     localFlowBigStep(node1, state1, node2, state2, preservesValue, ap, config, _) and exists(lcc)
   }
 
-  predicate flowOutOfCall = flowOutOfCallNodeCand2/5;
+  predicate flowOutOfCall = flowOutOfCallNodeCand2/6;
 
   predicate flowIntoCall = flowIntoCallNodeCand2/5;
 
@@ -2233,8 +2275,9 @@ private predicate flowCandSummaryCtx(
   NodeEx node, FlowState state, AccessPathFront argApf, Configuration config
 ) {
   exists(AccessPathFront apf |
-    Stage3::revFlow(node, state, true, _, apf, config) and
-    Stage3::fwdFlow(node, state, any(Stage3::CcCall ccc), TAccessPathFrontSome(argApf), apf, config)
+    Stage3::revFlow(node, state, TReturnCtxMaybeFlowThrough(_), _, apf, config) and
+    Stage3::fwdFlow(node, state, any(Stage3::CcCall ccc), _, TAccessPathFrontSome(argApf), apf,
+      config)
   )
 }
 
@@ -2468,10 +2511,11 @@ private module Stage4Param implements MkStage<Stage3>::StageParam {
 
   pragma[nomagic]
   predicate flowOutOfCall(
-    DataFlowCall call, RetNodeEx node1, NodeEx node2, boolean allowsFieldFlow, Configuration config
+    DataFlowCall call, RetNodeEx node1, ReturnPosition pos, NodeEx node2, boolean allowsFieldFlow,
+    Configuration config
   ) {
     exists(FlowState state |
-      flowOutOfCallNodeCand2(call, node1, node2, allowsFieldFlow, config) and
+      flowOutOfCallNodeCand2(call, node1, pos, node2, allowsFieldFlow, config) and
       PrevStage::revFlow(node2, pragma[only_bind_into](state), _, pragma[only_bind_into](config)) and
       PrevStage::revFlowAlias(node1, pragma[only_bind_into](state), _,
         pragma[only_bind_into](config))
@@ -2508,13 +2552,13 @@ private Configuration unbindConf(Configuration conf) {
 
 pragma[nomagic]
 private predicate nodeMayUseSummary0(
-  NodeEx n, DataFlowCallable c, FlowState state, AccessPathApprox apa, Configuration config
+  NodeEx n, ParamNodeEx p, FlowState state, AccessPathApprox apa, Configuration config
 ) {
   exists(AccessPathApprox apa0 |
-    Stage4::parameterMayFlowThrough(_, c, _, _) and
-    Stage4::revFlow(n, state, true, _, apa0, config) and
-    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TAccessPathApproxSome(apa), apa0, config) and
-    n.getEnclosingCallable() = c
+    Stage4::parameterMayFlowThrough(p, _, _) and
+    Stage4::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
+    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TParamNodeSome(p.asNode()),
+      TAccessPathApproxSome(apa), apa0, config)
   )
 }
 
@@ -2522,9 +2566,9 @@ pragma[nomagic]
 private predicate nodeMayUseSummary(
   NodeEx n, FlowState state, AccessPathApprox apa, Configuration config
 ) {
-  exists(DataFlowCallable c |
-    Stage4::parameterMayFlowThrough(_, c, apa, config) and
-    nodeMayUseSummary0(n, c, state, apa, config)
+  exists(ParamNodeEx p |
+    Stage4::parameterMayFlowThrough(p, apa, config) and
+    nodeMayUseSummary0(n, p, state, apa, config)
   )
 }
 
@@ -2532,7 +2576,7 @@ private newtype TSummaryCtx =
   TSummaryCtxNone() or
   TSummaryCtxSome(ParamNodeEx p, FlowState state, AccessPath ap) {
     exists(Configuration config |
-      Stage4::parameterMayFlowThrough(p, _, ap.getApprox(), config) and
+      Stage4::parameterMayFlowThrough(p, ap.getApprox(), config) and
       Stage4::revFlow(p, state, _, config)
     )
   }
@@ -3453,17 +3497,11 @@ private predicate paramFlowsThrough(
   ReturnKindExt kind, FlowState state, CallContextCall cc, SummaryCtxSome sc, AccessPath ap,
   AccessPathApprox apa, Configuration config
 ) {
-  exists(PathNodeMid mid, RetNodeEx ret, ParameterPosition pos |
+  exists(PathNodeMid mid, RetNodeEx ret |
     pathNode(mid, ret, state, cc, sc, ap, config, _) and
     kind = ret.getKind() and
     apa = ap.getApprox() and
-    pos = sc.getParameterPos() and
-    // we don't expect a parameter to return stored in itself, unless explicitly allowed
-    (
-      not kind.(ParamUpdateReturnKind).getPosition() = pos
-      or
-      sc.getParamNode().allowParameterReturnInSelf()
-    )
+    parameterFlowThroughAllowed(sc.getParamNode().asNode(), kind)
   )
 }
 
diff --git a/python/ql/lib/semmle/python/dataflow/new/internal/DataFlowImpl.qll b/python/ql/lib/semmle/python/dataflow/new/internal/DataFlowImpl.qll
index 3c41b1876dc..a52ad110662 100644
--- a/python/ql/lib/semmle/python/dataflow/new/internal/DataFlowImpl.qll
+++ b/python/ql/lib/semmle/python/dataflow/new/internal/DataFlowImpl.qll
@@ -319,8 +319,6 @@ private class ParamNodeEx extends NodeEx {
   }
 
   ParameterPosition getPosition() { this.isParameterOf(_, result) }
-
-  predicate allowParameterReturnInSelf() { allowParameterReturnInSelfCached(this.asNode()) }
 }
 
 private class RetNodeEx extends NodeEx {
@@ -608,6 +606,21 @@ private predicate hasSinkCallCtx(Configuration config) {
   )
 }
 
+/**
+ * Holds if flow from `p` to a return node of kind `kind` is allowed.
+ *
+ * We don't expect a parameter to return stored in itself, unless
+ * explicitly allowed
+ */
+bindingset[p, kind]
+private predicate parameterFlowThroughAllowed(ParamNode p, ReturnKindExt kind) {
+  exists(ParameterPosition pos | p.isParameterOf(_, pos) |
+    not kind.(ParamUpdateReturnKind).getPosition() = pos
+    or
+    allowParameterReturnInSelfCached(p)
+  )
+}
+
 private module Stage1 implements StageSig {
   class Ap = Unit;
 
@@ -981,21 +994,22 @@ private module Stage1 implements StageSig {
    * candidate for the origin of a summary.
    */
   pragma[nomagic]
-  predicate parameterMayFlowThrough(ParamNodeEx p, DataFlowCallable c, Ap ap, Configuration config) {
-    exists(ReturnKindExt kind |
+  predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
+    exists(DataFlowCallable c, ReturnKindExt kind |
       throughFlowNodeCand(p, config) and
       returnFlowCallableNodeCand(c, kind, config) and
       p.getEnclosingCallable() = c and
       exists(ap) and
-      // we don't expect a parameter to return stored in itself, unless explicitly allowed
-      (
-        not kind.(ParamUpdateReturnKind).getPosition() = p.getPosition()
-        or
-        p.allowParameterReturnInSelf()
-      )
+      parameterFlowThroughAllowed(p.asNode(), kind)
     )
   }
 
+  pragma[nomagic]
+  predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config) {
+    throughFlowNodeCand(ret, config) and
+    pos = ret.getReturnPosition()
+  }
+
   pragma[nomagic]
   predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
     exists(ArgNodeEx arg, boolean toReturn |
@@ -1052,9 +1066,10 @@ private predicate viableReturnPosOutNodeCand1(
  */
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand1(
-  DataFlowCall call, RetNodeEx ret, NodeEx out, Configuration config
+  DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, Configuration config
 ) {
-  viableReturnPosOutNodeCand1(call, ret.getReturnPosition(), out, config) and
+  viableReturnPosOutNodeCand1(call, pos, out, config) and
+  pos = ret.getReturnPosition() and
   Stage1::revFlow(ret, config) and
   not outBarrier(ret, config) and
   not inBarrier(out, config)
@@ -1090,7 +1105,7 @@ private predicate flowIntoCallNodeCand1(
 private int branch(NodeEx n1, Configuration conf) {
   result =
     strictcount(NodeEx n |
-      flowOutOfCallNodeCand1(_, n1, n, conf) or flowIntoCallNodeCand1(_, n1, n, conf)
+      flowOutOfCallNodeCand1(_, n1, _, n, conf) or flowIntoCallNodeCand1(_, n1, n, conf)
     )
 }
 
@@ -1102,7 +1117,7 @@ private int branch(NodeEx n1, Configuration conf) {
 private int join(NodeEx n2, Configuration conf) {
   result =
     strictcount(NodeEx n |
-      flowOutOfCallNodeCand1(_, n, n2, conf) or flowIntoCallNodeCand1(_, n, n2, conf)
+      flowOutOfCallNodeCand1(_, n, _, n2, conf) or flowIntoCallNodeCand1(_, n, n2, conf)
     )
 }
 
@@ -1115,12 +1130,13 @@ private int join(NodeEx n2, Configuration conf) {
  */
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand1(
-  DataFlowCall call, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow, Configuration config
+  DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
+  Configuration config
 ) {
-  flowOutOfCallNodeCand1(call, ret, out, config) and
+  flowOutOfCallNodeCand1(call, ret, pos, out, pragma[only_bind_into](config)) and
   exists(int b, int j |
-    b = branch(ret, config) and
-    j = join(out, config) and
+    b = branch(ret, pragma[only_bind_into](config)) and
+    j = join(out, pragma[only_bind_into](config)) and
     if b.minimum(j) <= config.fieldFlowBranchLimit()
     then allowsFieldFlow = true
     else allowsFieldFlow = false
@@ -1156,7 +1172,9 @@ private signature module StageSig {
 
   predicate callMayFlowThroughRev(DataFlowCall call, Configuration config);
 
-  predicate parameterMayFlowThrough(ParamNodeEx p, DataFlowCallable c, Ap ap, Configuration config);
+  predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config);
+
+  predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config);
 
   predicate storeStepCand(
     NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, DataFlowType contentType,
@@ -1222,7 +1240,8 @@ private module MkStage<StageSig PrevStage> {
     );
 
     predicate flowOutOfCall(
-      DataFlowCall call, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow, Configuration config
+      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
+      Configuration config
     );
 
     predicate flowIntoCall(
@@ -1247,14 +1266,16 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate flowThroughOutOfCall(
-      DataFlowCall call, CcCall ccc, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow,
-      Configuration config
+      DataFlowCall call, CcCall ccc, RetNodeEx ret, ReturnKindExt kind, NodeEx out,
+      boolean allowsFieldFlow, Configuration config
     ) {
-      flowOutOfCall(call, ret, out, allowsFieldFlow, pragma[only_bind_into](config)) and
-      PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
-      PrevStage::parameterMayFlowThrough(_, ret.getEnclosingCallable(), _,
-        pragma[only_bind_into](config)) and
-      matchesCall(ccc, call)
+      exists(ReturnPosition pos |
+        flowOutOfCall(call, ret, pos, out, allowsFieldFlow, pragma[only_bind_into](config)) and
+        kind = pos.getKind() and
+        PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
+        PrevStage::returnMayFlowThrough(ret, pos, pragma[only_bind_into](config)) and
+        matchesCall(ccc, call)
+      )
     }
 
     /**
@@ -1262,29 +1283,32 @@ private module MkStage<StageSig PrevStage> {
      * configuration `config`.
      *
      * The call context `cc` records whether the node is reached through an
-     * argument in a call, and if so, `argAp` records the access path of that
-     * argument.
+     * argument in a call, and if so, `summaryCtx` and `argAp` record the
+     * corresponding parameter and access path of that argument, respectively.
      */
     pragma[nomagic]
     additional predicate fwdFlow(
-      NodeEx node, FlowState state, Cc cc, ApOption argAp, Ap ap, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      Configuration config
     ) {
-      fwdFlow0(node, state, cc, argAp, ap, config) and
+      fwdFlow0(node, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::revFlow(node, state, unbindApa(getApprox(ap)), config) and
       filter(node, state, ap, config)
     }
 
     pragma[nomagic]
     private predicate fwdFlow0(
-      NodeEx node, FlowState state, Cc cc, ApOption argAp, Ap ap, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      Configuration config
     ) {
       sourceNode(node, state, config) and
       (if hasSourceCallCtx(config) then cc = ccSomeCall() else cc = ccNone()) and
       argAp = apNone() and
+      summaryCtx = TParamNodeNone() and
       ap = getApNil(node)
       or
       exists(NodeEx mid, FlowState state0, Ap ap0, LocalCc localCc |
-        fwdFlow(mid, state0, cc, argAp, ap0, config) and
+        fwdFlow(mid, state0, cc, summaryCtx, argAp, ap0, config) and
         localCc = getLocalCc(mid, cc)
       |
         localStep(mid, state0, node, state, true, _, config, localCc) and
@@ -1295,65 +1319,72 @@ private module MkStage<StageSig PrevStage> {
       )
       or
       exists(NodeEx mid |
-        fwdFlow(mid, pragma[only_bind_into](state), _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, pragma[only_bind_into](config)) and
         jumpStep(mid, node, config) and
         cc = ccNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone()
       )
       or
       exists(NodeEx mid, ApNil nil |
-        fwdFlow(mid, state, _, _, nil, pragma[only_bind_into](config)) and
+        fwdFlow(mid, state, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStep(mid, node, config) and
         cc = ccNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone() and
         ap = getApNil(node)
       )
       or
       exists(NodeEx mid, FlowState state0, ApNil nil |
-        fwdFlow(mid, state0, _, _, nil, pragma[only_bind_into](config)) and
+        fwdFlow(mid, state0, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStateStep(mid, state0, node, state, config) and
         cc = ccNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone() and
         ap = getApNil(node)
       )
       or
       // store
       exists(TypedContent tc, Ap ap0 |
-        fwdFlowStore(_, ap0, tc, node, state, cc, argAp, config) and
+        fwdFlowStore(_, ap0, tc, node, state, cc, summaryCtx, argAp, config) and
         ap = apCons(tc, ap0)
       )
       or
       // read
       exists(Ap ap0, Content c |
-        fwdFlowRead(ap0, c, _, node, state, cc, argAp, config) and
+        fwdFlowRead(ap0, c, _, node, state, cc, summaryCtx, argAp, config) and
         fwdFlowConsCand(ap0, c, ap, config)
       )
       or
       // flow into a callable
       exists(ApApprox apa |
-        fwdFlowIn(_, node, state, _, cc, _, ap, config) and
+        fwdFlowIn(_, node, state, _, cc, _, _, ap, config) and
         apa = getApprox(ap) and
-        if PrevStage::parameterMayFlowThrough(node, _, apa, config)
-        then argAp = apSome(ap)
-        else argAp = apNone()
+        if PrevStage::parameterMayFlowThrough(node, apa, config)
+        then (
+          summaryCtx = TParamNodeSome(node.asNode()) and argAp = apSome(ap)
+        ) else (
+          summaryCtx = TParamNodeNone() and argAp = apNone()
+        )
       )
       or
       // flow out of a callable
-      fwdFlowOutNotFromArg(node, state, cc, argAp, ap, config)
+      fwdFlowOutNotFromArg(node, state, cc, summaryCtx, argAp, ap, config)
       or
-      exists(DataFlowCall call, Ap argAp0 |
-        fwdFlowOutFromArg(call, node, state, argAp0, ap, config) and
-        fwdFlowIsEntered(call, cc, argAp, argAp0, config)
+      // flow through a callable
+      exists(DataFlowCall call, ParamNode summaryCtx0, Ap argAp0 |
+        fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, config) and
+        fwdFlowIsEntered(call, cc, summaryCtx, argAp, summaryCtx0, argAp0, config)
       )
     }
 
     pragma[nomagic]
     private predicate fwdFlowStore(
-      NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc, ApOption argAp,
-      Configuration config
+      NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc,
+      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
     ) {
       exists(DataFlowType contentType |
-        fwdFlow(node1, state, cc, argAp, ap1, config) and
+        fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, config) and
         PrevStage::storeStepCand(node1, unbindApa(getApprox(ap1)), tc, node2, contentType, config) and
         typecheckStore(ap1, contentType)
       )
@@ -1366,7 +1397,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowConsCand(Ap cons, Content c, Ap tail, Configuration config) {
       exists(TypedContent tc |
-        fwdFlowStore(_, tail, tc, _, _, _, _, config) and
+        fwdFlowStore(_, tail, tc, _, _, _, _, _, config) and
         tc.getContent() = c and
         cons = apCons(tc, tail)
       )
@@ -1374,21 +1405,21 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowRead(
-      Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc, ApOption argAp,
-      Configuration config
+      Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc,
+      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
     ) {
-      fwdFlow(node1, state, cc, argAp, ap, config) and
+      fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, c, node2, config) and
       getHeadContent(ap) = c
     }
 
     pragma[nomagic]
     private predicate fwdFlowIn(
-      DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, Cc innercc, ApOption argAp,
-      Ap ap, Configuration config
+      DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, Cc innercc,
+      ParamNodeOption summaryCtx, ApOption argAp, Ap ap, Configuration config
     ) {
       exists(ArgNodeEx arg, boolean allowsFieldFlow |
-        fwdFlow(arg, state, outercc, argAp, ap, config) and
+        fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, config) and
         flowIntoCall(call, arg, p, allowsFieldFlow, config) and
         innercc = getCallContextCall(call, p.getEnclosingCallable(), outercc) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
@@ -1397,14 +1428,15 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowOutNotFromArg(
-      NodeEx out, FlowState state, Cc ccOut, ApOption argAp, Ap ap, Configuration config
+      NodeEx out, FlowState state, Cc ccOut, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      Configuration config
     ) {
       exists(
         DataFlowCall call, RetNodeEx ret, boolean allowsFieldFlow, CcNoCall innercc,
         DataFlowCallable inner
       |
-        fwdFlow(ret, state, innercc, argAp, ap, config) and
-        flowOutOfCall(call, ret, out, allowsFieldFlow, config) and
+        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, config) and
+        flowOutOfCall(call, ret, _, out, allowsFieldFlow, config) and
         inner = ret.getEnclosingCallable() and
         ccOut = getCallContextReturn(inner, call, innercc) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
@@ -1413,12 +1445,14 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowOutFromArg(
-      DataFlowCall call, NodeEx out, FlowState state, Ap argAp, Ap ap, Configuration config
+      DataFlowCall call, NodeEx out, FlowState state, ParamNode summaryCtx, Ap argAp, Ap ap,
+      Configuration config
     ) {
-      exists(RetNodeEx ret, boolean allowsFieldFlow, CcCall ccc |
-        fwdFlow(ret, state, ccc, apSome(argAp), ap, config) and
-        flowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, config) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
+      exists(RetNodeEx ret, ReturnKindExt kind, boolean allowsFieldFlow, CcCall ccc |
+        fwdFlow(ret, state, ccc, TParamNodeSome(summaryCtx), apSome(argAp), ap, config) and
+        flowThroughOutOfCall(call, ccc, ret, kind, out, allowsFieldFlow, config) and
+        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
+        parameterFlowThroughAllowed(summaryCtx, kind)
       )
     }
 
@@ -1428,11 +1462,13 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate fwdFlowIsEntered(
-      DataFlowCall call, Cc cc, ApOption argAp, Ap ap, Configuration config
+      DataFlowCall call, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, ParamNode p, Ap ap,
+      Configuration config
     ) {
-      exists(ParamNodeEx p |
-        fwdFlowIn(call, p, _, cc, _, argAp, ap, config) and
-        PrevStage::parameterMayFlowThrough(p, _, unbindApa(getApprox(ap)), config)
+      exists(ParamNodeEx param |
+        fwdFlowIn(call, param, _, cc, _, summaryCtx, argAp, ap, config) and
+        PrevStage::parameterMayFlowThrough(param, unbindApa(getApprox(ap)), config) and
+        p = param.asNode()
       )
     }
 
@@ -1440,146 +1476,149 @@ private module MkStage<StageSig PrevStage> {
     private predicate storeStepFwd(
       NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, Ap ap2, Configuration config
     ) {
-      fwdFlowStore(node1, ap1, tc, node2, _, _, _, config) and
+      fwdFlowStore(node1, ap1, tc, node2, _, _, _, _, config) and
       ap2 = apCons(tc, ap1) and
-      fwdFlowRead(ap2, tc.getContent(), _, _, _, _, _, config)
+      fwdFlowRead(ap2, tc.getContent(), _, _, _, _, _, _, config)
     }
 
     private predicate readStepFwd(
       NodeEx n1, Ap ap1, Content c, NodeEx n2, Ap ap2, Configuration config
     ) {
-      fwdFlowRead(ap1, c, n1, n2, _, _, _, config) and
+      fwdFlowRead(ap1, c, n1, n2, _, _, _, _, config) and
       fwdFlowConsCand(ap1, c, ap2, config)
     }
 
     pragma[nomagic]
-    private predicate callMayFlowThroughFwd(DataFlowCall call, Configuration config) {
-      exists(Ap argAp0, NodeEx out, FlowState state, Cc cc, ApOption argAp, Ap ap |
-        fwdFlow(out, state, pragma[only_bind_into](cc), pragma[only_bind_into](argAp), ap,
-          pragma[only_bind_into](config)) and
-        fwdFlowOutFromArg(call, out, state, argAp0, ap, config) and
-        fwdFlowIsEntered(pragma[only_bind_into](call), pragma[only_bind_into](cc),
-          pragma[only_bind_into](argAp), pragma[only_bind_into](argAp0),
-          pragma[only_bind_into](config))
-      )
+    private predicate returnFlowsThrough(
+      RetNodeEx ret, ReturnPosition pos, FlowState state, CcCall ccc, ParamNode p, Ap argAp, Ap ap,
+      Configuration config
+    ) {
+      fwdFlow(ret, state, ccc, TParamNodeSome(p), apSome(argAp), ap, config) and
+      pos = ret.getReturnPosition() and
+      parameterFlowThroughAllowed(p, pos.getKind())
     }
 
     pragma[nomagic]
     private predicate flowThroughIntoCall(
       DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
     ) {
-      flowIntoCall(call, arg, p, allowsFieldFlow, config) and
-      fwdFlow(arg, _, _, _, _, pragma[only_bind_into](config)) and
-      PrevStage::parameterMayFlowThrough(p, _, _, pragma[only_bind_into](config)) and
-      callMayFlowThroughFwd(call, pragma[only_bind_into](config))
-    }
-
-    pragma[nomagic]
-    private predicate returnNodeMayFlowThrough(
-      RetNodeEx ret, FlowState state, Ap ap, Configuration config
-    ) {
-      fwdFlow(ret, state, any(CcCall ccc), apSome(_), ap, config)
+      flowIntoCall(call, pragma[only_bind_into](arg), pragma[only_bind_into](p), allowsFieldFlow,
+        pragma[only_bind_into](config)) and
+      fwdFlow(arg, _, _, _, _, _, pragma[only_bind_into](config)) and
+      returnFlowsThrough(_, _, _, _, p.asNode(), _, _, pragma[only_bind_into](config))
     }
 
     /**
      * Holds if `node` with access path `ap` is part of a path from a source to a
      * sink in the configuration `config`.
      *
-     * The Boolean `toReturn` records whether the node must be returned from the
-     * enclosing callable in order to reach a sink, and if so, `returnAp` records
-     * the access path of the returned value.
+     * The parameter `returnCtx` records whether (and how) the node must be returned
+     * from the enclosing callable in order to reach a sink, and if so, `returnAp`
+     * records the access path of the returned value.
      */
     pragma[nomagic]
     additional predicate revFlow(
-      NodeEx node, FlowState state, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
+      NodeEx node, FlowState state, ReturnCtx returnCtx, ApOption returnAp, Ap ap,
+      Configuration config
     ) {
-      revFlow0(node, state, toReturn, returnAp, ap, config) and
-      fwdFlow(node, state, _, _, ap, config)
+      revFlow0(node, state, returnCtx, returnAp, ap, config) and
+      fwdFlow(node, state, _, _, _, ap, config)
     }
 
     pragma[nomagic]
     private predicate revFlow0(
-      NodeEx node, FlowState state, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
+      NodeEx node, FlowState state, ReturnCtx returnCtx, ApOption returnAp, Ap ap,
+      Configuration config
     ) {
-      fwdFlow(node, state, _, _, ap, config) and
+      fwdFlow(node, state, _, _, _, ap, config) and
       sinkNode(node, state, config) and
-      (if hasSinkCallCtx(config) then toReturn = true else toReturn = false) and
+      (
+        if hasSinkCallCtx(config)
+        then returnCtx = TReturnCtxNoFlowThrough()
+        else returnCtx = TReturnCtxNone()
+      ) and
       returnAp = apNone() and
       ap instanceof ApNil
       or
       exists(NodeEx mid, FlowState state0 |
         localStep(node, state, mid, state0, true, _, config, _) and
-        revFlow(mid, state0, toReturn, returnAp, ap, config)
+        revFlow(mid, state0, returnCtx, returnAp, ap, config)
       )
       or
       exists(NodeEx mid, FlowState state0, ApNil nil |
-        fwdFlow(node, pragma[only_bind_into](state), _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(node, pragma[only_bind_into](state), _, _, _, ap, pragma[only_bind_into](config)) and
         localStep(node, pragma[only_bind_into](state), mid, state0, false, _, config, _) and
-        revFlow(mid, state0, toReturn, returnAp, nil, pragma[only_bind_into](config)) and
+        revFlow(mid, state0, returnCtx, returnAp, nil, pragma[only_bind_into](config)) and
         ap instanceof ApNil
       )
       or
       exists(NodeEx mid |
         jumpStep(node, mid, config) and
         revFlow(mid, state, _, _, ap, config) and
-        toReturn = false and
+        returnCtx = TReturnCtxNone() and
         returnAp = apNone()
       )
       or
       exists(NodeEx mid, ApNil nil |
-        fwdFlow(node, _, _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(node, _, _, _, _, ap, pragma[only_bind_into](config)) and
         additionalJumpStep(node, mid, config) and
         revFlow(pragma[only_bind_into](mid), state, _, _, nil, pragma[only_bind_into](config)) and
-        toReturn = false and
+        returnCtx = TReturnCtxNone() and
         returnAp = apNone() and
         ap instanceof ApNil
       )
       or
       exists(NodeEx mid, FlowState state0, ApNil nil |
-        fwdFlow(node, _, _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(node, _, _, _, _, ap, pragma[only_bind_into](config)) and
         additionalJumpStateStep(node, state, mid, state0, config) and
         revFlow(pragma[only_bind_into](mid), pragma[only_bind_into](state0), _, _, nil,
           pragma[only_bind_into](config)) and
-        toReturn = false and
+        returnCtx = TReturnCtxNone() and
         returnAp = apNone() and
         ap instanceof ApNil
       )
       or
       // store
       exists(Ap ap0, Content c |
-        revFlowStore(ap0, c, ap, node, state, _, _, toReturn, returnAp, config) and
+        revFlowStore(ap0, c, ap, node, state, _, _, returnCtx, returnAp, config) and
         revFlowConsCand(ap0, c, ap, config)
       )
       or
       // read
       exists(NodeEx mid, Ap ap0 |
-        revFlow(mid, state, toReturn, returnAp, ap0, config) and
+        revFlow(mid, state, returnCtx, returnAp, ap0, config) and
         readStepFwd(node, ap, _, mid, ap0, config)
       )
       or
       // flow into a callable
       revFlowInNotToReturn(node, state, returnAp, ap, config) and
-      toReturn = false
+      returnCtx = TReturnCtxNone()
       or
-      exists(DataFlowCall call, Ap returnAp0 |
-        revFlowInToReturn(call, node, state, returnAp0, ap, config) and
-        revFlowIsReturned(call, toReturn, returnAp, returnAp0, config)
+      // flow through a callable
+      exists(DataFlowCall call, ReturnPosition returnPos0, Ap returnAp0 |
+        revFlowInToReturn(call, node, state, returnPos0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnPos0, returnAp0, config)
       )
       or
       // flow out of a callable
-      revFlowOut(_, node, state, _, _, ap, config) and
-      toReturn = true and
-      if returnNodeMayFlowThrough(node, state, ap, config)
-      then returnAp = apSome(ap)
-      else returnAp = apNone()
+      exists(ReturnPosition pos |
+        revFlowOut(_, node, pos, state, _, _, ap, config) and
+        if returnFlowsThrough(node, pos, state, _, _, _, ap, config)
+        then (
+          returnCtx = TReturnCtxMaybeFlowThrough(pos) and
+          returnAp = apSome(ap)
+        ) else (
+          returnCtx = TReturnCtxNoFlowThrough() and returnAp = apNone()
+        )
+      )
     }
 
     pragma[nomagic]
     private predicate revFlowStore(
       Ap ap0, Content c, Ap ap, NodeEx node, FlowState state, TypedContent tc, NodeEx mid,
-      boolean toReturn, ApOption returnAp, Configuration config
+      ReturnCtx returnCtx, ApOption returnAp, Configuration config
     ) {
-      revFlow(mid, state, toReturn, returnAp, ap0, config) and
+      revFlow(mid, state, returnCtx, returnAp, ap0, config) and
       storeStepFwd(node, ap, tc, mid, ap0, config) and
       tc.getContent() = c
     }
@@ -1599,12 +1638,12 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate revFlowOut(
-      DataFlowCall call, RetNodeEx ret, FlowState state, boolean toReturn, ApOption returnAp, Ap ap,
-      Configuration config
+      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, FlowState state, ReturnCtx returnCtx,
+      ApOption returnAp, Ap ap, Configuration config
     ) {
       exists(NodeEx out, boolean allowsFieldFlow |
-        revFlow(out, state, toReturn, returnAp, ap, config) and
-        flowOutOfCall(call, ret, out, allowsFieldFlow, config) and
+        revFlow(out, state, returnCtx, returnAp, ap, config) and
+        flowOutOfCall(call, ret, pos, out, allowsFieldFlow, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
@@ -1614,7 +1653,7 @@ private module MkStage<StageSig PrevStage> {
       ArgNodeEx arg, FlowState state, ApOption returnAp, Ap ap, Configuration config
     ) {
       exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(p, state, false, returnAp, ap, config) and
+        revFlow(p, state, TReturnCtxNone(), returnAp, ap, config) and
         flowIntoCall(_, arg, p, allowsFieldFlow, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
@@ -1622,12 +1661,14 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate revFlowInToReturn(
-      DataFlowCall call, ArgNodeEx arg, FlowState state, Ap returnAp, Ap ap, Configuration config
+      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnPosition returnPos, Ap returnAp,
+      Ap ap, Configuration config
     ) {
       exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(p, state, true, apSome(returnAp), ap, config) and
+        revFlow(p, state, TReturnCtxMaybeFlowThrough(returnPos), apSome(returnAp), ap, config) and
         flowThroughIntoCall(call, arg, p, allowsFieldFlow, config) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
+        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
+        parameterFlowThroughAllowed(p.asNode(), returnPos.getKind())
       )
     }
 
@@ -1638,11 +1679,12 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate revFlowIsReturned(
-      DataFlowCall call, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
+      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnPosition pos, Ap ap,
+      Configuration config
     ) {
       exists(RetNodeEx ret, FlowState state, CcCall ccc |
-        revFlowOut(call, ret, state, toReturn, returnAp, ap, config) and
-        fwdFlow(ret, state, ccc, apSome(_), ap, config) and
+        revFlowOut(call, ret, pos, state, returnCtx, returnAp, ap, config) and
+        returnFlowsThrough(ret, pos, state, ccc, _, _, ap, config) and
         matchesCall(ccc, call)
       )
     }
@@ -1713,40 +1755,39 @@ private module MkStage<StageSig PrevStage> {
       validAp(ap, config)
     }
 
-    pragma[noinline]
-    private predicate parameterFlow(
-      ParamNodeEx p, Ap ap, Ap ap0, DataFlowCallable c, Configuration config
+    pragma[nomagic]
+    private predicate parameterFlowsThroughRev(
+      ParamNodeEx p, Ap ap, ReturnPosition returnPos, Configuration config
     ) {
-      revFlow(p, _, true, apSome(ap0), ap, config) and
-      c = p.getEnclosingCallable()
+      revFlow(p, _, TReturnCtxMaybeFlowThrough(returnPos), apSome(_), ap, config) and
+      parameterFlowThroughAllowed(p.asNode(), returnPos.getKind())
     }
 
-    predicate parameterMayFlowThrough(ParamNodeEx p, DataFlowCallable c, Ap ap, Configuration config) {
-      exists(RetNodeEx ret, FlowState state, Ap ap0, ReturnKindExt kind, ParameterPosition pos |
-        parameterFlow(p, ap, ap0, c, config) and
-        c = ret.getEnclosingCallable() and
-        revFlow(pragma[only_bind_into](ret), pragma[only_bind_into](state), true, apSome(_),
-          pragma[only_bind_into](ap0), pragma[only_bind_into](config)) and
-        fwdFlow(ret, state, any(CcCall ccc), apSome(ap), ap0, config) and
-        kind = ret.getKind() and
-        p.getPosition() = pos and
-        // we don't expect a parameter to return stored in itself, unless explicitly allowed
-        (
-          not kind.(ParamUpdateReturnKind).getPosition() = pos
-          or
-          p.allowParameterReturnInSelf()
-        )
+    pragma[nomagic]
+    predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
+      exists(RetNodeEx ret, ReturnPosition pos |
+        returnFlowsThrough(ret, pos, _, _, p.asNode(), ap, _, config) and
+        parameterFlowsThroughRev(p, ap, pos, config)
+      )
+    }
+
+    pragma[nomagic]
+    predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config) {
+      exists(ParamNodeEx p, Ap ap |
+        returnFlowsThrough(ret, pos, _, _, p.asNode(), ap, _, config) and
+        parameterFlowsThroughRev(p, ap, pos, config)
       )
     }
 
     pragma[nomagic]
     predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
       exists(
-        Ap returnAp0, ArgNodeEx arg, FlowState state, boolean toReturn, ApOption returnAp, Ap ap
+        ReturnPosition returnPos0, Ap returnAp0, ArgNodeEx arg, FlowState state,
+        ReturnCtx returnCtx, ApOption returnAp, Ap ap
       |
-        revFlow(arg, state, toReturn, returnAp, ap, config) and
-        revFlowInToReturn(call, arg, state, returnAp0, ap, config) and
-        revFlowIsReturned(call, toReturn, returnAp, returnAp0, config)
+        revFlow(arg, state, returnCtx, returnAp, ap, config) and
+        revFlowInToReturn(call, arg, state, returnPos0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnPos0, returnAp0, config)
       )
     }
 
@@ -1754,13 +1795,13 @@ private module MkStage<StageSig PrevStage> {
       boolean fwd, int nodes, int fields, int conscand, int states, int tuples, Configuration config
     ) {
       fwd = true and
-      nodes = count(NodeEx node | fwdFlow(node, _, _, _, _, config)) and
+      nodes = count(NodeEx node | fwdFlow(node, _, _, _, _, _, config)) and
       fields = count(TypedContent f0 | fwdConsCand(f0, _, config)) and
       conscand = count(TypedContent f0, Ap ap | fwdConsCand(f0, ap, config)) and
-      states = count(FlowState state | fwdFlow(_, state, _, _, _, config)) and
+      states = count(FlowState state | fwdFlow(_, state, _, _, _, _, config)) and
       tuples =
-        count(NodeEx n, FlowState state, Cc cc, ApOption argAp, Ap ap |
-          fwdFlow(n, state, cc, argAp, ap, config)
+        count(NodeEx n, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap |
+          fwdFlow(n, state, cc, summaryCtx, argAp, ap, config)
         )
       or
       fwd = false and
@@ -1769,8 +1810,8 @@ private module MkStage<StageSig PrevStage> {
       conscand = count(TypedContent f0, Ap ap | consCand(f0, ap, config)) and
       states = count(FlowState state | revFlow(_, state, _, _, _, config)) and
       tuples =
-        count(NodeEx n, FlowState state, boolean b, ApOption retAp, Ap ap |
-          revFlow(n, state, b, retAp, ap, config)
+        count(NodeEx n, FlowState state, ReturnCtx returnCtx, ApOption retAp, Ap ap |
+          revFlow(n, state, returnCtx, retAp, ap, config)
         )
     }
     /* End: Stage logic. */
@@ -1915,7 +1956,7 @@ private module Stage2Param implements MkStage<Stage1>::StageParam {
     exists(lcc)
   }
 
-  predicate flowOutOfCall = flowOutOfCallNodeCand1/5;
+  predicate flowOutOfCall = flowOutOfCallNodeCand1/6;
 
   predicate flowIntoCall = flowIntoCallNodeCand1/5;
 
@@ -1951,9 +1992,10 @@ private module Stage2 implements StageSig {
 
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand2(
-  DataFlowCall call, RetNodeEx node1, NodeEx node2, boolean allowsFieldFlow, Configuration config
+  DataFlowCall call, RetNodeEx node1, ReturnPosition pos, NodeEx node2, boolean allowsFieldFlow,
+  Configuration config
 ) {
-  flowOutOfCallNodeCand1(call, node1, node2, allowsFieldFlow, config) and
+  flowOutOfCallNodeCand1(call, node1, pos, node2, allowsFieldFlow, config) and
   Stage2::revFlow(node2, pragma[only_bind_into](config)) and
   Stage2::revFlowAlias(node1, pragma[only_bind_into](config))
 }
@@ -2021,8 +2063,8 @@ private module LocalFlowBigStep {
     exists(NodeEx next | Stage2::revFlow(next, state, config) |
       jumpStep(node, next, config) or
       additionalJumpStep(node, next, config) or
-      flowIntoCallNodeCand1(_, node, next, config) or
-      flowOutOfCallNodeCand1(_, node, next, config) or
+      flowIntoCallNodeCand2(_, node, next, _, config) or
+      flowOutOfCallNodeCand2(_, node, _, next, _, config) or
       Stage2::storeStepCand(node, _, _, next, _, config) or
       Stage2::readStepCand(node, _, next, config)
     )
@@ -2163,7 +2205,7 @@ private module Stage3Param implements MkStage<Stage2>::StageParam {
     localFlowBigStep(node1, state1, node2, state2, preservesValue, ap, config, _) and exists(lcc)
   }
 
-  predicate flowOutOfCall = flowOutOfCallNodeCand2/5;
+  predicate flowOutOfCall = flowOutOfCallNodeCand2/6;
 
   predicate flowIntoCall = flowIntoCallNodeCand2/5;
 
@@ -2233,8 +2275,9 @@ private predicate flowCandSummaryCtx(
   NodeEx node, FlowState state, AccessPathFront argApf, Configuration config
 ) {
   exists(AccessPathFront apf |
-    Stage3::revFlow(node, state, true, _, apf, config) and
-    Stage3::fwdFlow(node, state, any(Stage3::CcCall ccc), TAccessPathFrontSome(argApf), apf, config)
+    Stage3::revFlow(node, state, TReturnCtxMaybeFlowThrough(_), _, apf, config) and
+    Stage3::fwdFlow(node, state, any(Stage3::CcCall ccc), _, TAccessPathFrontSome(argApf), apf,
+      config)
   )
 }
 
@@ -2468,10 +2511,11 @@ private module Stage4Param implements MkStage<Stage3>::StageParam {
 
   pragma[nomagic]
   predicate flowOutOfCall(
-    DataFlowCall call, RetNodeEx node1, NodeEx node2, boolean allowsFieldFlow, Configuration config
+    DataFlowCall call, RetNodeEx node1, ReturnPosition pos, NodeEx node2, boolean allowsFieldFlow,
+    Configuration config
   ) {
     exists(FlowState state |
-      flowOutOfCallNodeCand2(call, node1, node2, allowsFieldFlow, config) and
+      flowOutOfCallNodeCand2(call, node1, pos, node2, allowsFieldFlow, config) and
       PrevStage::revFlow(node2, pragma[only_bind_into](state), _, pragma[only_bind_into](config)) and
       PrevStage::revFlowAlias(node1, pragma[only_bind_into](state), _,
         pragma[only_bind_into](config))
@@ -2508,13 +2552,13 @@ private Configuration unbindConf(Configuration conf) {
 
 pragma[nomagic]
 private predicate nodeMayUseSummary0(
-  NodeEx n, DataFlowCallable c, FlowState state, AccessPathApprox apa, Configuration config
+  NodeEx n, ParamNodeEx p, FlowState state, AccessPathApprox apa, Configuration config
 ) {
   exists(AccessPathApprox apa0 |
-    Stage4::parameterMayFlowThrough(_, c, _, _) and
-    Stage4::revFlow(n, state, true, _, apa0, config) and
-    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TAccessPathApproxSome(apa), apa0, config) and
-    n.getEnclosingCallable() = c
+    Stage4::parameterMayFlowThrough(p, _, _) and
+    Stage4::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
+    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TParamNodeSome(p.asNode()),
+      TAccessPathApproxSome(apa), apa0, config)
   )
 }
 
@@ -2522,9 +2566,9 @@ pragma[nomagic]
 private predicate nodeMayUseSummary(
   NodeEx n, FlowState state, AccessPathApprox apa, Configuration config
 ) {
-  exists(DataFlowCallable c |
-    Stage4::parameterMayFlowThrough(_, c, apa, config) and
-    nodeMayUseSummary0(n, c, state, apa, config)
+  exists(ParamNodeEx p |
+    Stage4::parameterMayFlowThrough(p, apa, config) and
+    nodeMayUseSummary0(n, p, state, apa, config)
   )
 }
 
@@ -2532,7 +2576,7 @@ private newtype TSummaryCtx =
   TSummaryCtxNone() or
   TSummaryCtxSome(ParamNodeEx p, FlowState state, AccessPath ap) {
     exists(Configuration config |
-      Stage4::parameterMayFlowThrough(p, _, ap.getApprox(), config) and
+      Stage4::parameterMayFlowThrough(p, ap.getApprox(), config) and
       Stage4::revFlow(p, state, _, config)
     )
   }
@@ -3453,17 +3497,11 @@ private predicate paramFlowsThrough(
   ReturnKindExt kind, FlowState state, CallContextCall cc, SummaryCtxSome sc, AccessPath ap,
   AccessPathApprox apa, Configuration config
 ) {
-  exists(PathNodeMid mid, RetNodeEx ret, ParameterPosition pos |
+  exists(PathNodeMid mid, RetNodeEx ret |
     pathNode(mid, ret, state, cc, sc, ap, config, _) and
     kind = ret.getKind() and
     apa = ap.getApprox() and
-    pos = sc.getParameterPos() and
-    // we don't expect a parameter to return stored in itself, unless explicitly allowed
-    (
-      not kind.(ParamUpdateReturnKind).getPosition() = pos
-      or
-      sc.getParamNode().allowParameterReturnInSelf()
-    )
+    parameterFlowThroughAllowed(sc.getParamNode().asNode(), kind)
   )
 }
 
diff --git a/python/ql/lib/semmle/python/dataflow/new/internal/DataFlowImpl2.qll b/python/ql/lib/semmle/python/dataflow/new/internal/DataFlowImpl2.qll
index 3c41b1876dc..a52ad110662 100644
--- a/python/ql/lib/semmle/python/dataflow/new/internal/DataFlowImpl2.qll
+++ b/python/ql/lib/semmle/python/dataflow/new/internal/DataFlowImpl2.qll
@@ -319,8 +319,6 @@ private class ParamNodeEx extends NodeEx {
   }
 
   ParameterPosition getPosition() { this.isParameterOf(_, result) }
-
-  predicate allowParameterReturnInSelf() { allowParameterReturnInSelfCached(this.asNode()) }
 }
 
 private class RetNodeEx extends NodeEx {
@@ -608,6 +606,21 @@ private predicate hasSinkCallCtx(Configuration config) {
   )
 }
 
+/**
+ * Holds if flow from `p` to a return node of kind `kind` is allowed.
+ *
+ * We don't expect a parameter to return stored in itself, unless
+ * explicitly allowed
+ */
+bindingset[p, kind]
+private predicate parameterFlowThroughAllowed(ParamNode p, ReturnKindExt kind) {
+  exists(ParameterPosition pos | p.isParameterOf(_, pos) |
+    not kind.(ParamUpdateReturnKind).getPosition() = pos
+    or
+    allowParameterReturnInSelfCached(p)
+  )
+}
+
 private module Stage1 implements StageSig {
   class Ap = Unit;
 
@@ -981,21 +994,22 @@ private module Stage1 implements StageSig {
    * candidate for the origin of a summary.
    */
   pragma[nomagic]
-  predicate parameterMayFlowThrough(ParamNodeEx p, DataFlowCallable c, Ap ap, Configuration config) {
-    exists(ReturnKindExt kind |
+  predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
+    exists(DataFlowCallable c, ReturnKindExt kind |
       throughFlowNodeCand(p, config) and
       returnFlowCallableNodeCand(c, kind, config) and
       p.getEnclosingCallable() = c and
       exists(ap) and
-      // we don't expect a parameter to return stored in itself, unless explicitly allowed
-      (
-        not kind.(ParamUpdateReturnKind).getPosition() = p.getPosition()
-        or
-        p.allowParameterReturnInSelf()
-      )
+      parameterFlowThroughAllowed(p.asNode(), kind)
     )
   }
 
+  pragma[nomagic]
+  predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config) {
+    throughFlowNodeCand(ret, config) and
+    pos = ret.getReturnPosition()
+  }
+
   pragma[nomagic]
   predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
     exists(ArgNodeEx arg, boolean toReturn |
@@ -1052,9 +1066,10 @@ private predicate viableReturnPosOutNodeCand1(
  */
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand1(
-  DataFlowCall call, RetNodeEx ret, NodeEx out, Configuration config
+  DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, Configuration config
 ) {
-  viableReturnPosOutNodeCand1(call, ret.getReturnPosition(), out, config) and
+  viableReturnPosOutNodeCand1(call, pos, out, config) and
+  pos = ret.getReturnPosition() and
   Stage1::revFlow(ret, config) and
   not outBarrier(ret, config) and
   not inBarrier(out, config)
@@ -1090,7 +1105,7 @@ private predicate flowIntoCallNodeCand1(
 private int branch(NodeEx n1, Configuration conf) {
   result =
     strictcount(NodeEx n |
-      flowOutOfCallNodeCand1(_, n1, n, conf) or flowIntoCallNodeCand1(_, n1, n, conf)
+      flowOutOfCallNodeCand1(_, n1, _, n, conf) or flowIntoCallNodeCand1(_, n1, n, conf)
     )
 }
 
@@ -1102,7 +1117,7 @@ private int branch(NodeEx n1, Configuration conf) {
 private int join(NodeEx n2, Configuration conf) {
   result =
     strictcount(NodeEx n |
-      flowOutOfCallNodeCand1(_, n, n2, conf) or flowIntoCallNodeCand1(_, n, n2, conf)
+      flowOutOfCallNodeCand1(_, n, _, n2, conf) or flowIntoCallNodeCand1(_, n, n2, conf)
     )
 }
 
@@ -1115,12 +1130,13 @@ private int join(NodeEx n2, Configuration conf) {
  */
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand1(
-  DataFlowCall call, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow, Configuration config
+  DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
+  Configuration config
 ) {
-  flowOutOfCallNodeCand1(call, ret, out, config) and
+  flowOutOfCallNodeCand1(call, ret, pos, out, pragma[only_bind_into](config)) and
   exists(int b, int j |
-    b = branch(ret, config) and
-    j = join(out, config) and
+    b = branch(ret, pragma[only_bind_into](config)) and
+    j = join(out, pragma[only_bind_into](config)) and
     if b.minimum(j) <= config.fieldFlowBranchLimit()
     then allowsFieldFlow = true
     else allowsFieldFlow = false
@@ -1156,7 +1172,9 @@ private signature module StageSig {
 
   predicate callMayFlowThroughRev(DataFlowCall call, Configuration config);
 
-  predicate parameterMayFlowThrough(ParamNodeEx p, DataFlowCallable c, Ap ap, Configuration config);
+  predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config);
+
+  predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config);
 
   predicate storeStepCand(
     NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, DataFlowType contentType,
@@ -1222,7 +1240,8 @@ private module MkStage<StageSig PrevStage> {
     );
 
     predicate flowOutOfCall(
-      DataFlowCall call, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow, Configuration config
+      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
+      Configuration config
     );
 
     predicate flowIntoCall(
@@ -1247,14 +1266,16 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate flowThroughOutOfCall(
-      DataFlowCall call, CcCall ccc, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow,
-      Configuration config
+      DataFlowCall call, CcCall ccc, RetNodeEx ret, ReturnKindExt kind, NodeEx out,
+      boolean allowsFieldFlow, Configuration config
     ) {
-      flowOutOfCall(call, ret, out, allowsFieldFlow, pragma[only_bind_into](config)) and
-      PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
-      PrevStage::parameterMayFlowThrough(_, ret.getEnclosingCallable(), _,
-        pragma[only_bind_into](config)) and
-      matchesCall(ccc, call)
+      exists(ReturnPosition pos |
+        flowOutOfCall(call, ret, pos, out, allowsFieldFlow, pragma[only_bind_into](config)) and
+        kind = pos.getKind() and
+        PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
+        PrevStage::returnMayFlowThrough(ret, pos, pragma[only_bind_into](config)) and
+        matchesCall(ccc, call)
+      )
     }
 
     /**
@@ -1262,29 +1283,32 @@ private module MkStage<StageSig PrevStage> {
      * configuration `config`.
      *
      * The call context `cc` records whether the node is reached through an
-     * argument in a call, and if so, `argAp` records the access path of that
-     * argument.
+     * argument in a call, and if so, `summaryCtx` and `argAp` record the
+     * corresponding parameter and access path of that argument, respectively.
      */
     pragma[nomagic]
     additional predicate fwdFlow(
-      NodeEx node, FlowState state, Cc cc, ApOption argAp, Ap ap, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      Configuration config
     ) {
-      fwdFlow0(node, state, cc, argAp, ap, config) and
+      fwdFlow0(node, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::revFlow(node, state, unbindApa(getApprox(ap)), config) and
       filter(node, state, ap, config)
     }
 
     pragma[nomagic]
     private predicate fwdFlow0(
-      NodeEx node, FlowState state, Cc cc, ApOption argAp, Ap ap, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      Configuration config
     ) {
       sourceNode(node, state, config) and
       (if hasSourceCallCtx(config) then cc = ccSomeCall() else cc = ccNone()) and
       argAp = apNone() and
+      summaryCtx = TParamNodeNone() and
       ap = getApNil(node)
       or
       exists(NodeEx mid, FlowState state0, Ap ap0, LocalCc localCc |
-        fwdFlow(mid, state0, cc, argAp, ap0, config) and
+        fwdFlow(mid, state0, cc, summaryCtx, argAp, ap0, config) and
         localCc = getLocalCc(mid, cc)
       |
         localStep(mid, state0, node, state, true, _, config, localCc) and
@@ -1295,65 +1319,72 @@ private module MkStage<StageSig PrevStage> {
       )
       or
       exists(NodeEx mid |
-        fwdFlow(mid, pragma[only_bind_into](state), _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, pragma[only_bind_into](config)) and
         jumpStep(mid, node, config) and
         cc = ccNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone()
       )
       or
       exists(NodeEx mid, ApNil nil |
-        fwdFlow(mid, state, _, _, nil, pragma[only_bind_into](config)) and
+        fwdFlow(mid, state, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStep(mid, node, config) and
         cc = ccNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone() and
         ap = getApNil(node)
       )
       or
       exists(NodeEx mid, FlowState state0, ApNil nil |
-        fwdFlow(mid, state0, _, _, nil, pragma[only_bind_into](config)) and
+        fwdFlow(mid, state0, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStateStep(mid, state0, node, state, config) and
         cc = ccNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone() and
         ap = getApNil(node)
       )
       or
       // store
       exists(TypedContent tc, Ap ap0 |
-        fwdFlowStore(_, ap0, tc, node, state, cc, argAp, config) and
+        fwdFlowStore(_, ap0, tc, node, state, cc, summaryCtx, argAp, config) and
         ap = apCons(tc, ap0)
       )
       or
       // read
       exists(Ap ap0, Content c |
-        fwdFlowRead(ap0, c, _, node, state, cc, argAp, config) and
+        fwdFlowRead(ap0, c, _, node, state, cc, summaryCtx, argAp, config) and
         fwdFlowConsCand(ap0, c, ap, config)
       )
       or
       // flow into a callable
       exists(ApApprox apa |
-        fwdFlowIn(_, node, state, _, cc, _, ap, config) and
+        fwdFlowIn(_, node, state, _, cc, _, _, ap, config) and
         apa = getApprox(ap) and
-        if PrevStage::parameterMayFlowThrough(node, _, apa, config)
-        then argAp = apSome(ap)
-        else argAp = apNone()
+        if PrevStage::parameterMayFlowThrough(node, apa, config)
+        then (
+          summaryCtx = TParamNodeSome(node.asNode()) and argAp = apSome(ap)
+        ) else (
+          summaryCtx = TParamNodeNone() and argAp = apNone()
+        )
       )
       or
       // flow out of a callable
-      fwdFlowOutNotFromArg(node, state, cc, argAp, ap, config)
+      fwdFlowOutNotFromArg(node, state, cc, summaryCtx, argAp, ap, config)
       or
-      exists(DataFlowCall call, Ap argAp0 |
-        fwdFlowOutFromArg(call, node, state, argAp0, ap, config) and
-        fwdFlowIsEntered(call, cc, argAp, argAp0, config)
+      // flow through a callable
+      exists(DataFlowCall call, ParamNode summaryCtx0, Ap argAp0 |
+        fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, config) and
+        fwdFlowIsEntered(call, cc, summaryCtx, argAp, summaryCtx0, argAp0, config)
       )
     }
 
     pragma[nomagic]
     private predicate fwdFlowStore(
-      NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc, ApOption argAp,
-      Configuration config
+      NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc,
+      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
     ) {
       exists(DataFlowType contentType |
-        fwdFlow(node1, state, cc, argAp, ap1, config) and
+        fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, config) and
         PrevStage::storeStepCand(node1, unbindApa(getApprox(ap1)), tc, node2, contentType, config) and
         typecheckStore(ap1, contentType)
       )
@@ -1366,7 +1397,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowConsCand(Ap cons, Content c, Ap tail, Configuration config) {
       exists(TypedContent tc |
-        fwdFlowStore(_, tail, tc, _, _, _, _, config) and
+        fwdFlowStore(_, tail, tc, _, _, _, _, _, config) and
         tc.getContent() = c and
         cons = apCons(tc, tail)
       )
@@ -1374,21 +1405,21 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowRead(
-      Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc, ApOption argAp,
-      Configuration config
+      Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc,
+      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
     ) {
-      fwdFlow(node1, state, cc, argAp, ap, config) and
+      fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, c, node2, config) and
       getHeadContent(ap) = c
     }
 
     pragma[nomagic]
     private predicate fwdFlowIn(
-      DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, Cc innercc, ApOption argAp,
-      Ap ap, Configuration config
+      DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, Cc innercc,
+      ParamNodeOption summaryCtx, ApOption argAp, Ap ap, Configuration config
     ) {
       exists(ArgNodeEx arg, boolean allowsFieldFlow |
-        fwdFlow(arg, state, outercc, argAp, ap, config) and
+        fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, config) and
         flowIntoCall(call, arg, p, allowsFieldFlow, config) and
         innercc = getCallContextCall(call, p.getEnclosingCallable(), outercc) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
@@ -1397,14 +1428,15 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowOutNotFromArg(
-      NodeEx out, FlowState state, Cc ccOut, ApOption argAp, Ap ap, Configuration config
+      NodeEx out, FlowState state, Cc ccOut, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      Configuration config
     ) {
       exists(
         DataFlowCall call, RetNodeEx ret, boolean allowsFieldFlow, CcNoCall innercc,
         DataFlowCallable inner
       |
-        fwdFlow(ret, state, innercc, argAp, ap, config) and
-        flowOutOfCall(call, ret, out, allowsFieldFlow, config) and
+        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, config) and
+        flowOutOfCall(call, ret, _, out, allowsFieldFlow, config) and
         inner = ret.getEnclosingCallable() and
         ccOut = getCallContextReturn(inner, call, innercc) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
@@ -1413,12 +1445,14 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowOutFromArg(
-      DataFlowCall call, NodeEx out, FlowState state, Ap argAp, Ap ap, Configuration config
+      DataFlowCall call, NodeEx out, FlowState state, ParamNode summaryCtx, Ap argAp, Ap ap,
+      Configuration config
     ) {
-      exists(RetNodeEx ret, boolean allowsFieldFlow, CcCall ccc |
-        fwdFlow(ret, state, ccc, apSome(argAp), ap, config) and
-        flowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, config) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
+      exists(RetNodeEx ret, ReturnKindExt kind, boolean allowsFieldFlow, CcCall ccc |
+        fwdFlow(ret, state, ccc, TParamNodeSome(summaryCtx), apSome(argAp), ap, config) and
+        flowThroughOutOfCall(call, ccc, ret, kind, out, allowsFieldFlow, config) and
+        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
+        parameterFlowThroughAllowed(summaryCtx, kind)
       )
     }
 
@@ -1428,11 +1462,13 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate fwdFlowIsEntered(
-      DataFlowCall call, Cc cc, ApOption argAp, Ap ap, Configuration config
+      DataFlowCall call, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, ParamNode p, Ap ap,
+      Configuration config
     ) {
-      exists(ParamNodeEx p |
-        fwdFlowIn(call, p, _, cc, _, argAp, ap, config) and
-        PrevStage::parameterMayFlowThrough(p, _, unbindApa(getApprox(ap)), config)
+      exists(ParamNodeEx param |
+        fwdFlowIn(call, param, _, cc, _, summaryCtx, argAp, ap, config) and
+        PrevStage::parameterMayFlowThrough(param, unbindApa(getApprox(ap)), config) and
+        p = param.asNode()
       )
     }
 
@@ -1440,146 +1476,149 @@ private module MkStage<StageSig PrevStage> {
     private predicate storeStepFwd(
       NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, Ap ap2, Configuration config
     ) {
-      fwdFlowStore(node1, ap1, tc, node2, _, _, _, config) and
+      fwdFlowStore(node1, ap1, tc, node2, _, _, _, _, config) and
       ap2 = apCons(tc, ap1) and
-      fwdFlowRead(ap2, tc.getContent(), _, _, _, _, _, config)
+      fwdFlowRead(ap2, tc.getContent(), _, _, _, _, _, _, config)
     }
 
     private predicate readStepFwd(
       NodeEx n1, Ap ap1, Content c, NodeEx n2, Ap ap2, Configuration config
     ) {
-      fwdFlowRead(ap1, c, n1, n2, _, _, _, config) and
+      fwdFlowRead(ap1, c, n1, n2, _, _, _, _, config) and
       fwdFlowConsCand(ap1, c, ap2, config)
     }
 
     pragma[nomagic]
-    private predicate callMayFlowThroughFwd(DataFlowCall call, Configuration config) {
-      exists(Ap argAp0, NodeEx out, FlowState state, Cc cc, ApOption argAp, Ap ap |
-        fwdFlow(out, state, pragma[only_bind_into](cc), pragma[only_bind_into](argAp), ap,
-          pragma[only_bind_into](config)) and
-        fwdFlowOutFromArg(call, out, state, argAp0, ap, config) and
-        fwdFlowIsEntered(pragma[only_bind_into](call), pragma[only_bind_into](cc),
-          pragma[only_bind_into](argAp), pragma[only_bind_into](argAp0),
-          pragma[only_bind_into](config))
-      )
+    private predicate returnFlowsThrough(
+      RetNodeEx ret, ReturnPosition pos, FlowState state, CcCall ccc, ParamNode p, Ap argAp, Ap ap,
+      Configuration config
+    ) {
+      fwdFlow(ret, state, ccc, TParamNodeSome(p), apSome(argAp), ap, config) and
+      pos = ret.getReturnPosition() and
+      parameterFlowThroughAllowed(p, pos.getKind())
     }
 
     pragma[nomagic]
     private predicate flowThroughIntoCall(
       DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
     ) {
-      flowIntoCall(call, arg, p, allowsFieldFlow, config) and
-      fwdFlow(arg, _, _, _, _, pragma[only_bind_into](config)) and
-      PrevStage::parameterMayFlowThrough(p, _, _, pragma[only_bind_into](config)) and
-      callMayFlowThroughFwd(call, pragma[only_bind_into](config))
-    }
-
-    pragma[nomagic]
-    private predicate returnNodeMayFlowThrough(
-      RetNodeEx ret, FlowState state, Ap ap, Configuration config
-    ) {
-      fwdFlow(ret, state, any(CcCall ccc), apSome(_), ap, config)
+      flowIntoCall(call, pragma[only_bind_into](arg), pragma[only_bind_into](p), allowsFieldFlow,
+        pragma[only_bind_into](config)) and
+      fwdFlow(arg, _, _, _, _, _, pragma[only_bind_into](config)) and
+      returnFlowsThrough(_, _, _, _, p.asNode(), _, _, pragma[only_bind_into](config))
     }
 
     /**
      * Holds if `node` with access path `ap` is part of a path from a source to a
      * sink in the configuration `config`.
      *
-     * The Boolean `toReturn` records whether the node must be returned from the
-     * enclosing callable in order to reach a sink, and if so, `returnAp` records
-     * the access path of the returned value.
+     * The parameter `returnCtx` records whether (and how) the node must be returned
+     * from the enclosing callable in order to reach a sink, and if so, `returnAp`
+     * records the access path of the returned value.
      */
     pragma[nomagic]
     additional predicate revFlow(
-      NodeEx node, FlowState state, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
+      NodeEx node, FlowState state, ReturnCtx returnCtx, ApOption returnAp, Ap ap,
+      Configuration config
     ) {
-      revFlow0(node, state, toReturn, returnAp, ap, config) and
-      fwdFlow(node, state, _, _, ap, config)
+      revFlow0(node, state, returnCtx, returnAp, ap, config) and
+      fwdFlow(node, state, _, _, _, ap, config)
     }
 
     pragma[nomagic]
     private predicate revFlow0(
-      NodeEx node, FlowState state, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
+      NodeEx node, FlowState state, ReturnCtx returnCtx, ApOption returnAp, Ap ap,
+      Configuration config
     ) {
-      fwdFlow(node, state, _, _, ap, config) and
+      fwdFlow(node, state, _, _, _, ap, config) and
       sinkNode(node, state, config) and
-      (if hasSinkCallCtx(config) then toReturn = true else toReturn = false) and
+      (
+        if hasSinkCallCtx(config)
+        then returnCtx = TReturnCtxNoFlowThrough()
+        else returnCtx = TReturnCtxNone()
+      ) and
       returnAp = apNone() and
       ap instanceof ApNil
       or
       exists(NodeEx mid, FlowState state0 |
         localStep(node, state, mid, state0, true, _, config, _) and
-        revFlow(mid, state0, toReturn, returnAp, ap, config)
+        revFlow(mid, state0, returnCtx, returnAp, ap, config)
       )
       or
       exists(NodeEx mid, FlowState state0, ApNil nil |
-        fwdFlow(node, pragma[only_bind_into](state), _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(node, pragma[only_bind_into](state), _, _, _, ap, pragma[only_bind_into](config)) and
         localStep(node, pragma[only_bind_into](state), mid, state0, false, _, config, _) and
-        revFlow(mid, state0, toReturn, returnAp, nil, pragma[only_bind_into](config)) and
+        revFlow(mid, state0, returnCtx, returnAp, nil, pragma[only_bind_into](config)) and
         ap instanceof ApNil
       )
       or
       exists(NodeEx mid |
         jumpStep(node, mid, config) and
         revFlow(mid, state, _, _, ap, config) and
-        toReturn = false and
+        returnCtx = TReturnCtxNone() and
         returnAp = apNone()
       )
       or
       exists(NodeEx mid, ApNil nil |
-        fwdFlow(node, _, _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(node, _, _, _, _, ap, pragma[only_bind_into](config)) and
         additionalJumpStep(node, mid, config) and
         revFlow(pragma[only_bind_into](mid), state, _, _, nil, pragma[only_bind_into](config)) and
-        toReturn = false and
+        returnCtx = TReturnCtxNone() and
         returnAp = apNone() and
         ap instanceof ApNil
       )
       or
       exists(NodeEx mid, FlowState state0, ApNil nil |
-        fwdFlow(node, _, _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(node, _, _, _, _, ap, pragma[only_bind_into](config)) and
         additionalJumpStateStep(node, state, mid, state0, config) and
         revFlow(pragma[only_bind_into](mid), pragma[only_bind_into](state0), _, _, nil,
           pragma[only_bind_into](config)) and
-        toReturn = false and
+        returnCtx = TReturnCtxNone() and
         returnAp = apNone() and
         ap instanceof ApNil
       )
       or
       // store
       exists(Ap ap0, Content c |
-        revFlowStore(ap0, c, ap, node, state, _, _, toReturn, returnAp, config) and
+        revFlowStore(ap0, c, ap, node, state, _, _, returnCtx, returnAp, config) and
         revFlowConsCand(ap0, c, ap, config)
       )
       or
       // read
       exists(NodeEx mid, Ap ap0 |
-        revFlow(mid, state, toReturn, returnAp, ap0, config) and
+        revFlow(mid, state, returnCtx, returnAp, ap0, config) and
         readStepFwd(node, ap, _, mid, ap0, config)
       )
       or
       // flow into a callable
       revFlowInNotToReturn(node, state, returnAp, ap, config) and
-      toReturn = false
+      returnCtx = TReturnCtxNone()
       or
-      exists(DataFlowCall call, Ap returnAp0 |
-        revFlowInToReturn(call, node, state, returnAp0, ap, config) and
-        revFlowIsReturned(call, toReturn, returnAp, returnAp0, config)
+      // flow through a callable
+      exists(DataFlowCall call, ReturnPosition returnPos0, Ap returnAp0 |
+        revFlowInToReturn(call, node, state, returnPos0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnPos0, returnAp0, config)
       )
       or
       // flow out of a callable
-      revFlowOut(_, node, state, _, _, ap, config) and
-      toReturn = true and
-      if returnNodeMayFlowThrough(node, state, ap, config)
-      then returnAp = apSome(ap)
-      else returnAp = apNone()
+      exists(ReturnPosition pos |
+        revFlowOut(_, node, pos, state, _, _, ap, config) and
+        if returnFlowsThrough(node, pos, state, _, _, _, ap, config)
+        then (
+          returnCtx = TReturnCtxMaybeFlowThrough(pos) and
+          returnAp = apSome(ap)
+        ) else (
+          returnCtx = TReturnCtxNoFlowThrough() and returnAp = apNone()
+        )
+      )
     }
 
     pragma[nomagic]
     private predicate revFlowStore(
       Ap ap0, Content c, Ap ap, NodeEx node, FlowState state, TypedContent tc, NodeEx mid,
-      boolean toReturn, ApOption returnAp, Configuration config
+      ReturnCtx returnCtx, ApOption returnAp, Configuration config
     ) {
-      revFlow(mid, state, toReturn, returnAp, ap0, config) and
+      revFlow(mid, state, returnCtx, returnAp, ap0, config) and
       storeStepFwd(node, ap, tc, mid, ap0, config) and
       tc.getContent() = c
     }
@@ -1599,12 +1638,12 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate revFlowOut(
-      DataFlowCall call, RetNodeEx ret, FlowState state, boolean toReturn, ApOption returnAp, Ap ap,
-      Configuration config
+      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, FlowState state, ReturnCtx returnCtx,
+      ApOption returnAp, Ap ap, Configuration config
     ) {
       exists(NodeEx out, boolean allowsFieldFlow |
-        revFlow(out, state, toReturn, returnAp, ap, config) and
-        flowOutOfCall(call, ret, out, allowsFieldFlow, config) and
+        revFlow(out, state, returnCtx, returnAp, ap, config) and
+        flowOutOfCall(call, ret, pos, out, allowsFieldFlow, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
@@ -1614,7 +1653,7 @@ private module MkStage<StageSig PrevStage> {
       ArgNodeEx arg, FlowState state, ApOption returnAp, Ap ap, Configuration config
     ) {
       exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(p, state, false, returnAp, ap, config) and
+        revFlow(p, state, TReturnCtxNone(), returnAp, ap, config) and
         flowIntoCall(_, arg, p, allowsFieldFlow, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
@@ -1622,12 +1661,14 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate revFlowInToReturn(
-      DataFlowCall call, ArgNodeEx arg, FlowState state, Ap returnAp, Ap ap, Configuration config
+      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnPosition returnPos, Ap returnAp,
+      Ap ap, Configuration config
     ) {
       exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(p, state, true, apSome(returnAp), ap, config) and
+        revFlow(p, state, TReturnCtxMaybeFlowThrough(returnPos), apSome(returnAp), ap, config) and
         flowThroughIntoCall(call, arg, p, allowsFieldFlow, config) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
+        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
+        parameterFlowThroughAllowed(p.asNode(), returnPos.getKind())
       )
     }
 
@@ -1638,11 +1679,12 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate revFlowIsReturned(
-      DataFlowCall call, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
+      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnPosition pos, Ap ap,
+      Configuration config
     ) {
       exists(RetNodeEx ret, FlowState state, CcCall ccc |
-        revFlowOut(call, ret, state, toReturn, returnAp, ap, config) and
-        fwdFlow(ret, state, ccc, apSome(_), ap, config) and
+        revFlowOut(call, ret, pos, state, returnCtx, returnAp, ap, config) and
+        returnFlowsThrough(ret, pos, state, ccc, _, _, ap, config) and
         matchesCall(ccc, call)
       )
     }
@@ -1713,40 +1755,39 @@ private module MkStage<StageSig PrevStage> {
       validAp(ap, config)
     }
 
-    pragma[noinline]
-    private predicate parameterFlow(
-      ParamNodeEx p, Ap ap, Ap ap0, DataFlowCallable c, Configuration config
+    pragma[nomagic]
+    private predicate parameterFlowsThroughRev(
+      ParamNodeEx p, Ap ap, ReturnPosition returnPos, Configuration config
     ) {
-      revFlow(p, _, true, apSome(ap0), ap, config) and
-      c = p.getEnclosingCallable()
+      revFlow(p, _, TReturnCtxMaybeFlowThrough(returnPos), apSome(_), ap, config) and
+      parameterFlowThroughAllowed(p.asNode(), returnPos.getKind())
     }
 
-    predicate parameterMayFlowThrough(ParamNodeEx p, DataFlowCallable c, Ap ap, Configuration config) {
-      exists(RetNodeEx ret, FlowState state, Ap ap0, ReturnKindExt kind, ParameterPosition pos |
-        parameterFlow(p, ap, ap0, c, config) and
-        c = ret.getEnclosingCallable() and
-        revFlow(pragma[only_bind_into](ret), pragma[only_bind_into](state), true, apSome(_),
-          pragma[only_bind_into](ap0), pragma[only_bind_into](config)) and
-        fwdFlow(ret, state, any(CcCall ccc), apSome(ap), ap0, config) and
-        kind = ret.getKind() and
-        p.getPosition() = pos and
-        // we don't expect a parameter to return stored in itself, unless explicitly allowed
-        (
-          not kind.(ParamUpdateReturnKind).getPosition() = pos
-          or
-          p.allowParameterReturnInSelf()
-        )
+    pragma[nomagic]
+    predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
+      exists(RetNodeEx ret, ReturnPosition pos |
+        returnFlowsThrough(ret, pos, _, _, p.asNode(), ap, _, config) and
+        parameterFlowsThroughRev(p, ap, pos, config)
+      )
+    }
+
+    pragma[nomagic]
+    predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config) {
+      exists(ParamNodeEx p, Ap ap |
+        returnFlowsThrough(ret, pos, _, _, p.asNode(), ap, _, config) and
+        parameterFlowsThroughRev(p, ap, pos, config)
       )
     }
 
     pragma[nomagic]
     predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
       exists(
-        Ap returnAp0, ArgNodeEx arg, FlowState state, boolean toReturn, ApOption returnAp, Ap ap
+        ReturnPosition returnPos0, Ap returnAp0, ArgNodeEx arg, FlowState state,
+        ReturnCtx returnCtx, ApOption returnAp, Ap ap
       |
-        revFlow(arg, state, toReturn, returnAp, ap, config) and
-        revFlowInToReturn(call, arg, state, returnAp0, ap, config) and
-        revFlowIsReturned(call, toReturn, returnAp, returnAp0, config)
+        revFlow(arg, state, returnCtx, returnAp, ap, config) and
+        revFlowInToReturn(call, arg, state, returnPos0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnPos0, returnAp0, config)
       )
     }
 
@@ -1754,13 +1795,13 @@ private module MkStage<StageSig PrevStage> {
       boolean fwd, int nodes, int fields, int conscand, int states, int tuples, Configuration config
     ) {
       fwd = true and
-      nodes = count(NodeEx node | fwdFlow(node, _, _, _, _, config)) and
+      nodes = count(NodeEx node | fwdFlow(node, _, _, _, _, _, config)) and
       fields = count(TypedContent f0 | fwdConsCand(f0, _, config)) and
       conscand = count(TypedContent f0, Ap ap | fwdConsCand(f0, ap, config)) and
-      states = count(FlowState state | fwdFlow(_, state, _, _, _, config)) and
+      states = count(FlowState state | fwdFlow(_, state, _, _, _, _, config)) and
       tuples =
-        count(NodeEx n, FlowState state, Cc cc, ApOption argAp, Ap ap |
-          fwdFlow(n, state, cc, argAp, ap, config)
+        count(NodeEx n, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap |
+          fwdFlow(n, state, cc, summaryCtx, argAp, ap, config)
         )
       or
       fwd = false and
@@ -1769,8 +1810,8 @@ private module MkStage<StageSig PrevStage> {
       conscand = count(TypedContent f0, Ap ap | consCand(f0, ap, config)) and
       states = count(FlowState state | revFlow(_, state, _, _, _, config)) and
       tuples =
-        count(NodeEx n, FlowState state, boolean b, ApOption retAp, Ap ap |
-          revFlow(n, state, b, retAp, ap, config)
+        count(NodeEx n, FlowState state, ReturnCtx returnCtx, ApOption retAp, Ap ap |
+          revFlow(n, state, returnCtx, retAp, ap, config)
         )
     }
     /* End: Stage logic. */
@@ -1915,7 +1956,7 @@ private module Stage2Param implements MkStage<Stage1>::StageParam {
     exists(lcc)
   }
 
-  predicate flowOutOfCall = flowOutOfCallNodeCand1/5;
+  predicate flowOutOfCall = flowOutOfCallNodeCand1/6;
 
   predicate flowIntoCall = flowIntoCallNodeCand1/5;
 
@@ -1951,9 +1992,10 @@ private module Stage2 implements StageSig {
 
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand2(
-  DataFlowCall call, RetNodeEx node1, NodeEx node2, boolean allowsFieldFlow, Configuration config
+  DataFlowCall call, RetNodeEx node1, ReturnPosition pos, NodeEx node2, boolean allowsFieldFlow,
+  Configuration config
 ) {
-  flowOutOfCallNodeCand1(call, node1, node2, allowsFieldFlow, config) and
+  flowOutOfCallNodeCand1(call, node1, pos, node2, allowsFieldFlow, config) and
   Stage2::revFlow(node2, pragma[only_bind_into](config)) and
   Stage2::revFlowAlias(node1, pragma[only_bind_into](config))
 }
@@ -2021,8 +2063,8 @@ private module LocalFlowBigStep {
     exists(NodeEx next | Stage2::revFlow(next, state, config) |
       jumpStep(node, next, config) or
       additionalJumpStep(node, next, config) or
-      flowIntoCallNodeCand1(_, node, next, config) or
-      flowOutOfCallNodeCand1(_, node, next, config) or
+      flowIntoCallNodeCand2(_, node, next, _, config) or
+      flowOutOfCallNodeCand2(_, node, _, next, _, config) or
       Stage2::storeStepCand(node, _, _, next, _, config) or
       Stage2::readStepCand(node, _, next, config)
     )
@@ -2163,7 +2205,7 @@ private module Stage3Param implements MkStage<Stage2>::StageParam {
     localFlowBigStep(node1, state1, node2, state2, preservesValue, ap, config, _) and exists(lcc)
   }
 
-  predicate flowOutOfCall = flowOutOfCallNodeCand2/5;
+  predicate flowOutOfCall = flowOutOfCallNodeCand2/6;
 
   predicate flowIntoCall = flowIntoCallNodeCand2/5;
 
@@ -2233,8 +2275,9 @@ private predicate flowCandSummaryCtx(
   NodeEx node, FlowState state, AccessPathFront argApf, Configuration config
 ) {
   exists(AccessPathFront apf |
-    Stage3::revFlow(node, state, true, _, apf, config) and
-    Stage3::fwdFlow(node, state, any(Stage3::CcCall ccc), TAccessPathFrontSome(argApf), apf, config)
+    Stage3::revFlow(node, state, TReturnCtxMaybeFlowThrough(_), _, apf, config) and
+    Stage3::fwdFlow(node, state, any(Stage3::CcCall ccc), _, TAccessPathFrontSome(argApf), apf,
+      config)
   )
 }
 
@@ -2468,10 +2511,11 @@ private module Stage4Param implements MkStage<Stage3>::StageParam {
 
   pragma[nomagic]
   predicate flowOutOfCall(
-    DataFlowCall call, RetNodeEx node1, NodeEx node2, boolean allowsFieldFlow, Configuration config
+    DataFlowCall call, RetNodeEx node1, ReturnPosition pos, NodeEx node2, boolean allowsFieldFlow,
+    Configuration config
   ) {
     exists(FlowState state |
-      flowOutOfCallNodeCand2(call, node1, node2, allowsFieldFlow, config) and
+      flowOutOfCallNodeCand2(call, node1, pos, node2, allowsFieldFlow, config) and
       PrevStage::revFlow(node2, pragma[only_bind_into](state), _, pragma[only_bind_into](config)) and
       PrevStage::revFlowAlias(node1, pragma[only_bind_into](state), _,
         pragma[only_bind_into](config))
@@ -2508,13 +2552,13 @@ private Configuration unbindConf(Configuration conf) {
 
 pragma[nomagic]
 private predicate nodeMayUseSummary0(
-  NodeEx n, DataFlowCallable c, FlowState state, AccessPathApprox apa, Configuration config
+  NodeEx n, ParamNodeEx p, FlowState state, AccessPathApprox apa, Configuration config
 ) {
   exists(AccessPathApprox apa0 |
-    Stage4::parameterMayFlowThrough(_, c, _, _) and
-    Stage4::revFlow(n, state, true, _, apa0, config) and
-    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TAccessPathApproxSome(apa), apa0, config) and
-    n.getEnclosingCallable() = c
+    Stage4::parameterMayFlowThrough(p, _, _) and
+    Stage4::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
+    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TParamNodeSome(p.asNode()),
+      TAccessPathApproxSome(apa), apa0, config)
   )
 }
 
@@ -2522,9 +2566,9 @@ pragma[nomagic]
 private predicate nodeMayUseSummary(
   NodeEx n, FlowState state, AccessPathApprox apa, Configuration config
 ) {
-  exists(DataFlowCallable c |
-    Stage4::parameterMayFlowThrough(_, c, apa, config) and
-    nodeMayUseSummary0(n, c, state, apa, config)
+  exists(ParamNodeEx p |
+    Stage4::parameterMayFlowThrough(p, apa, config) and
+    nodeMayUseSummary0(n, p, state, apa, config)
   )
 }
 
@@ -2532,7 +2576,7 @@ private newtype TSummaryCtx =
   TSummaryCtxNone() or
   TSummaryCtxSome(ParamNodeEx p, FlowState state, AccessPath ap) {
     exists(Configuration config |
-      Stage4::parameterMayFlowThrough(p, _, ap.getApprox(), config) and
+      Stage4::parameterMayFlowThrough(p, ap.getApprox(), config) and
       Stage4::revFlow(p, state, _, config)
     )
   }
@@ -3453,17 +3497,11 @@ private predicate paramFlowsThrough(
   ReturnKindExt kind, FlowState state, CallContextCall cc, SummaryCtxSome sc, AccessPath ap,
   AccessPathApprox apa, Configuration config
 ) {
-  exists(PathNodeMid mid, RetNodeEx ret, ParameterPosition pos |
+  exists(PathNodeMid mid, RetNodeEx ret |
     pathNode(mid, ret, state, cc, sc, ap, config, _) and
     kind = ret.getKind() and
     apa = ap.getApprox() and
-    pos = sc.getParameterPos() and
-    // we don't expect a parameter to return stored in itself, unless explicitly allowed
-    (
-      not kind.(ParamUpdateReturnKind).getPosition() = pos
-      or
-      sc.getParamNode().allowParameterReturnInSelf()
-    )
+    parameterFlowThroughAllowed(sc.getParamNode().asNode(), kind)
   )
 }
 
diff --git a/python/ql/lib/semmle/python/dataflow/new/internal/DataFlowImpl3.qll b/python/ql/lib/semmle/python/dataflow/new/internal/DataFlowImpl3.qll
index 3c41b1876dc..a52ad110662 100644
--- a/python/ql/lib/semmle/python/dataflow/new/internal/DataFlowImpl3.qll
+++ b/python/ql/lib/semmle/python/dataflow/new/internal/DataFlowImpl3.qll
@@ -319,8 +319,6 @@ private class ParamNodeEx extends NodeEx {
   }
 
   ParameterPosition getPosition() { this.isParameterOf(_, result) }
-
-  predicate allowParameterReturnInSelf() { allowParameterReturnInSelfCached(this.asNode()) }
 }
 
 private class RetNodeEx extends NodeEx {
@@ -608,6 +606,21 @@ private predicate hasSinkCallCtx(Configuration config) {
   )
 }
 
+/**
+ * Holds if flow from `p` to a return node of kind `kind` is allowed.
+ *
+ * We don't expect a parameter to return stored in itself, unless
+ * explicitly allowed
+ */
+bindingset[p, kind]
+private predicate parameterFlowThroughAllowed(ParamNode p, ReturnKindExt kind) {
+  exists(ParameterPosition pos | p.isParameterOf(_, pos) |
+    not kind.(ParamUpdateReturnKind).getPosition() = pos
+    or
+    allowParameterReturnInSelfCached(p)
+  )
+}
+
 private module Stage1 implements StageSig {
   class Ap = Unit;
 
@@ -981,21 +994,22 @@ private module Stage1 implements StageSig {
    * candidate for the origin of a summary.
    */
   pragma[nomagic]
-  predicate parameterMayFlowThrough(ParamNodeEx p, DataFlowCallable c, Ap ap, Configuration config) {
-    exists(ReturnKindExt kind |
+  predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
+    exists(DataFlowCallable c, ReturnKindExt kind |
       throughFlowNodeCand(p, config) and
       returnFlowCallableNodeCand(c, kind, config) and
       p.getEnclosingCallable() = c and
       exists(ap) and
-      // we don't expect a parameter to return stored in itself, unless explicitly allowed
-      (
-        not kind.(ParamUpdateReturnKind).getPosition() = p.getPosition()
-        or
-        p.allowParameterReturnInSelf()
-      )
+      parameterFlowThroughAllowed(p.asNode(), kind)
     )
   }
 
+  pragma[nomagic]
+  predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config) {
+    throughFlowNodeCand(ret, config) and
+    pos = ret.getReturnPosition()
+  }
+
   pragma[nomagic]
   predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
     exists(ArgNodeEx arg, boolean toReturn |
@@ -1052,9 +1066,10 @@ private predicate viableReturnPosOutNodeCand1(
  */
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand1(
-  DataFlowCall call, RetNodeEx ret, NodeEx out, Configuration config
+  DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, Configuration config
 ) {
-  viableReturnPosOutNodeCand1(call, ret.getReturnPosition(), out, config) and
+  viableReturnPosOutNodeCand1(call, pos, out, config) and
+  pos = ret.getReturnPosition() and
   Stage1::revFlow(ret, config) and
   not outBarrier(ret, config) and
   not inBarrier(out, config)
@@ -1090,7 +1105,7 @@ private predicate flowIntoCallNodeCand1(
 private int branch(NodeEx n1, Configuration conf) {
   result =
     strictcount(NodeEx n |
-      flowOutOfCallNodeCand1(_, n1, n, conf) or flowIntoCallNodeCand1(_, n1, n, conf)
+      flowOutOfCallNodeCand1(_, n1, _, n, conf) or flowIntoCallNodeCand1(_, n1, n, conf)
     )
 }
 
@@ -1102,7 +1117,7 @@ private int branch(NodeEx n1, Configuration conf) {
 private int join(NodeEx n2, Configuration conf) {
   result =
     strictcount(NodeEx n |
-      flowOutOfCallNodeCand1(_, n, n2, conf) or flowIntoCallNodeCand1(_, n, n2, conf)
+      flowOutOfCallNodeCand1(_, n, _, n2, conf) or flowIntoCallNodeCand1(_, n, n2, conf)
     )
 }
 
@@ -1115,12 +1130,13 @@ private int join(NodeEx n2, Configuration conf) {
  */
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand1(
-  DataFlowCall call, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow, Configuration config
+  DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
+  Configuration config
 ) {
-  flowOutOfCallNodeCand1(call, ret, out, config) and
+  flowOutOfCallNodeCand1(call, ret, pos, out, pragma[only_bind_into](config)) and
   exists(int b, int j |
-    b = branch(ret, config) and
-    j = join(out, config) and
+    b = branch(ret, pragma[only_bind_into](config)) and
+    j = join(out, pragma[only_bind_into](config)) and
     if b.minimum(j) <= config.fieldFlowBranchLimit()
     then allowsFieldFlow = true
     else allowsFieldFlow = false
@@ -1156,7 +1172,9 @@ private signature module StageSig {
 
   predicate callMayFlowThroughRev(DataFlowCall call, Configuration config);
 
-  predicate parameterMayFlowThrough(ParamNodeEx p, DataFlowCallable c, Ap ap, Configuration config);
+  predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config);
+
+  predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config);
 
   predicate storeStepCand(
     NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, DataFlowType contentType,
@@ -1222,7 +1240,8 @@ private module MkStage<StageSig PrevStage> {
     );
 
     predicate flowOutOfCall(
-      DataFlowCall call, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow, Configuration config
+      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
+      Configuration config
     );
 
     predicate flowIntoCall(
@@ -1247,14 +1266,16 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate flowThroughOutOfCall(
-      DataFlowCall call, CcCall ccc, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow,
-      Configuration config
+      DataFlowCall call, CcCall ccc, RetNodeEx ret, ReturnKindExt kind, NodeEx out,
+      boolean allowsFieldFlow, Configuration config
     ) {
-      flowOutOfCall(call, ret, out, allowsFieldFlow, pragma[only_bind_into](config)) and
-      PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
-      PrevStage::parameterMayFlowThrough(_, ret.getEnclosingCallable(), _,
-        pragma[only_bind_into](config)) and
-      matchesCall(ccc, call)
+      exists(ReturnPosition pos |
+        flowOutOfCall(call, ret, pos, out, allowsFieldFlow, pragma[only_bind_into](config)) and
+        kind = pos.getKind() and
+        PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
+        PrevStage::returnMayFlowThrough(ret, pos, pragma[only_bind_into](config)) and
+        matchesCall(ccc, call)
+      )
     }
 
     /**
@@ -1262,29 +1283,32 @@ private module MkStage<StageSig PrevStage> {
      * configuration `config`.
      *
      * The call context `cc` records whether the node is reached through an
-     * argument in a call, and if so, `argAp` records the access path of that
-     * argument.
+     * argument in a call, and if so, `summaryCtx` and `argAp` record the
+     * corresponding parameter and access path of that argument, respectively.
      */
     pragma[nomagic]
     additional predicate fwdFlow(
-      NodeEx node, FlowState state, Cc cc, ApOption argAp, Ap ap, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      Configuration config
     ) {
-      fwdFlow0(node, state, cc, argAp, ap, config) and
+      fwdFlow0(node, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::revFlow(node, state, unbindApa(getApprox(ap)), config) and
       filter(node, state, ap, config)
     }
 
     pragma[nomagic]
     private predicate fwdFlow0(
-      NodeEx node, FlowState state, Cc cc, ApOption argAp, Ap ap, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      Configuration config
     ) {
       sourceNode(node, state, config) and
       (if hasSourceCallCtx(config) then cc = ccSomeCall() else cc = ccNone()) and
       argAp = apNone() and
+      summaryCtx = TParamNodeNone() and
       ap = getApNil(node)
       or
       exists(NodeEx mid, FlowState state0, Ap ap0, LocalCc localCc |
-        fwdFlow(mid, state0, cc, argAp, ap0, config) and
+        fwdFlow(mid, state0, cc, summaryCtx, argAp, ap0, config) and
         localCc = getLocalCc(mid, cc)
       |
         localStep(mid, state0, node, state, true, _, config, localCc) and
@@ -1295,65 +1319,72 @@ private module MkStage<StageSig PrevStage> {
       )
       or
       exists(NodeEx mid |
-        fwdFlow(mid, pragma[only_bind_into](state), _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, pragma[only_bind_into](config)) and
         jumpStep(mid, node, config) and
         cc = ccNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone()
       )
       or
       exists(NodeEx mid, ApNil nil |
-        fwdFlow(mid, state, _, _, nil, pragma[only_bind_into](config)) and
+        fwdFlow(mid, state, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStep(mid, node, config) and
         cc = ccNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone() and
         ap = getApNil(node)
       )
       or
       exists(NodeEx mid, FlowState state0, ApNil nil |
-        fwdFlow(mid, state0, _, _, nil, pragma[only_bind_into](config)) and
+        fwdFlow(mid, state0, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStateStep(mid, state0, node, state, config) and
         cc = ccNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone() and
         ap = getApNil(node)
       )
       or
       // store
       exists(TypedContent tc, Ap ap0 |
-        fwdFlowStore(_, ap0, tc, node, state, cc, argAp, config) and
+        fwdFlowStore(_, ap0, tc, node, state, cc, summaryCtx, argAp, config) and
         ap = apCons(tc, ap0)
       )
       or
       // read
       exists(Ap ap0, Content c |
-        fwdFlowRead(ap0, c, _, node, state, cc, argAp, config) and
+        fwdFlowRead(ap0, c, _, node, state, cc, summaryCtx, argAp, config) and
         fwdFlowConsCand(ap0, c, ap, config)
       )
       or
       // flow into a callable
       exists(ApApprox apa |
-        fwdFlowIn(_, node, state, _, cc, _, ap, config) and
+        fwdFlowIn(_, node, state, _, cc, _, _, ap, config) and
         apa = getApprox(ap) and
-        if PrevStage::parameterMayFlowThrough(node, _, apa, config)
-        then argAp = apSome(ap)
-        else argAp = apNone()
+        if PrevStage::parameterMayFlowThrough(node, apa, config)
+        then (
+          summaryCtx = TParamNodeSome(node.asNode()) and argAp = apSome(ap)
+        ) else (
+          summaryCtx = TParamNodeNone() and argAp = apNone()
+        )
       )
       or
       // flow out of a callable
-      fwdFlowOutNotFromArg(node, state, cc, argAp, ap, config)
+      fwdFlowOutNotFromArg(node, state, cc, summaryCtx, argAp, ap, config)
       or
-      exists(DataFlowCall call, Ap argAp0 |
-        fwdFlowOutFromArg(call, node, state, argAp0, ap, config) and
-        fwdFlowIsEntered(call, cc, argAp, argAp0, config)
+      // flow through a callable
+      exists(DataFlowCall call, ParamNode summaryCtx0, Ap argAp0 |
+        fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, config) and
+        fwdFlowIsEntered(call, cc, summaryCtx, argAp, summaryCtx0, argAp0, config)
       )
     }
 
     pragma[nomagic]
     private predicate fwdFlowStore(
-      NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc, ApOption argAp,
-      Configuration config
+      NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc,
+      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
     ) {
       exists(DataFlowType contentType |
-        fwdFlow(node1, state, cc, argAp, ap1, config) and
+        fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, config) and
         PrevStage::storeStepCand(node1, unbindApa(getApprox(ap1)), tc, node2, contentType, config) and
         typecheckStore(ap1, contentType)
       )
@@ -1366,7 +1397,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowConsCand(Ap cons, Content c, Ap tail, Configuration config) {
       exists(TypedContent tc |
-        fwdFlowStore(_, tail, tc, _, _, _, _, config) and
+        fwdFlowStore(_, tail, tc, _, _, _, _, _, config) and
         tc.getContent() = c and
         cons = apCons(tc, tail)
       )
@@ -1374,21 +1405,21 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowRead(
-      Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc, ApOption argAp,
-      Configuration config
+      Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc,
+      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
     ) {
-      fwdFlow(node1, state, cc, argAp, ap, config) and
+      fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, c, node2, config) and
       getHeadContent(ap) = c
     }
 
     pragma[nomagic]
     private predicate fwdFlowIn(
-      DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, Cc innercc, ApOption argAp,
-      Ap ap, Configuration config
+      DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, Cc innercc,
+      ParamNodeOption summaryCtx, ApOption argAp, Ap ap, Configuration config
     ) {
       exists(ArgNodeEx arg, boolean allowsFieldFlow |
-        fwdFlow(arg, state, outercc, argAp, ap, config) and
+        fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, config) and
         flowIntoCall(call, arg, p, allowsFieldFlow, config) and
         innercc = getCallContextCall(call, p.getEnclosingCallable(), outercc) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
@@ -1397,14 +1428,15 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowOutNotFromArg(
-      NodeEx out, FlowState state, Cc ccOut, ApOption argAp, Ap ap, Configuration config
+      NodeEx out, FlowState state, Cc ccOut, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      Configuration config
     ) {
       exists(
         DataFlowCall call, RetNodeEx ret, boolean allowsFieldFlow, CcNoCall innercc,
         DataFlowCallable inner
       |
-        fwdFlow(ret, state, innercc, argAp, ap, config) and
-        flowOutOfCall(call, ret, out, allowsFieldFlow, config) and
+        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, config) and
+        flowOutOfCall(call, ret, _, out, allowsFieldFlow, config) and
         inner = ret.getEnclosingCallable() and
         ccOut = getCallContextReturn(inner, call, innercc) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
@@ -1413,12 +1445,14 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowOutFromArg(
-      DataFlowCall call, NodeEx out, FlowState state, Ap argAp, Ap ap, Configuration config
+      DataFlowCall call, NodeEx out, FlowState state, ParamNode summaryCtx, Ap argAp, Ap ap,
+      Configuration config
     ) {
-      exists(RetNodeEx ret, boolean allowsFieldFlow, CcCall ccc |
-        fwdFlow(ret, state, ccc, apSome(argAp), ap, config) and
-        flowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, config) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
+      exists(RetNodeEx ret, ReturnKindExt kind, boolean allowsFieldFlow, CcCall ccc |
+        fwdFlow(ret, state, ccc, TParamNodeSome(summaryCtx), apSome(argAp), ap, config) and
+        flowThroughOutOfCall(call, ccc, ret, kind, out, allowsFieldFlow, config) and
+        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
+        parameterFlowThroughAllowed(summaryCtx, kind)
       )
     }
 
@@ -1428,11 +1462,13 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate fwdFlowIsEntered(
-      DataFlowCall call, Cc cc, ApOption argAp, Ap ap, Configuration config
+      DataFlowCall call, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, ParamNode p, Ap ap,
+      Configuration config
     ) {
-      exists(ParamNodeEx p |
-        fwdFlowIn(call, p, _, cc, _, argAp, ap, config) and
-        PrevStage::parameterMayFlowThrough(p, _, unbindApa(getApprox(ap)), config)
+      exists(ParamNodeEx param |
+        fwdFlowIn(call, param, _, cc, _, summaryCtx, argAp, ap, config) and
+        PrevStage::parameterMayFlowThrough(param, unbindApa(getApprox(ap)), config) and
+        p = param.asNode()
       )
     }
 
@@ -1440,146 +1476,149 @@ private module MkStage<StageSig PrevStage> {
     private predicate storeStepFwd(
       NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, Ap ap2, Configuration config
     ) {
-      fwdFlowStore(node1, ap1, tc, node2, _, _, _, config) and
+      fwdFlowStore(node1, ap1, tc, node2, _, _, _, _, config) and
       ap2 = apCons(tc, ap1) and
-      fwdFlowRead(ap2, tc.getContent(), _, _, _, _, _, config)
+      fwdFlowRead(ap2, tc.getContent(), _, _, _, _, _, _, config)
     }
 
     private predicate readStepFwd(
       NodeEx n1, Ap ap1, Content c, NodeEx n2, Ap ap2, Configuration config
     ) {
-      fwdFlowRead(ap1, c, n1, n2, _, _, _, config) and
+      fwdFlowRead(ap1, c, n1, n2, _, _, _, _, config) and
       fwdFlowConsCand(ap1, c, ap2, config)
     }
 
     pragma[nomagic]
-    private predicate callMayFlowThroughFwd(DataFlowCall call, Configuration config) {
-      exists(Ap argAp0, NodeEx out, FlowState state, Cc cc, ApOption argAp, Ap ap |
-        fwdFlow(out, state, pragma[only_bind_into](cc), pragma[only_bind_into](argAp), ap,
-          pragma[only_bind_into](config)) and
-        fwdFlowOutFromArg(call, out, state, argAp0, ap, config) and
-        fwdFlowIsEntered(pragma[only_bind_into](call), pragma[only_bind_into](cc),
-          pragma[only_bind_into](argAp), pragma[only_bind_into](argAp0),
-          pragma[only_bind_into](config))
-      )
+    private predicate returnFlowsThrough(
+      RetNodeEx ret, ReturnPosition pos, FlowState state, CcCall ccc, ParamNode p, Ap argAp, Ap ap,
+      Configuration config
+    ) {
+      fwdFlow(ret, state, ccc, TParamNodeSome(p), apSome(argAp), ap, config) and
+      pos = ret.getReturnPosition() and
+      parameterFlowThroughAllowed(p, pos.getKind())
     }
 
     pragma[nomagic]
     private predicate flowThroughIntoCall(
       DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
     ) {
-      flowIntoCall(call, arg, p, allowsFieldFlow, config) and
-      fwdFlow(arg, _, _, _, _, pragma[only_bind_into](config)) and
-      PrevStage::parameterMayFlowThrough(p, _, _, pragma[only_bind_into](config)) and
-      callMayFlowThroughFwd(call, pragma[only_bind_into](config))
-    }
-
-    pragma[nomagic]
-    private predicate returnNodeMayFlowThrough(
-      RetNodeEx ret, FlowState state, Ap ap, Configuration config
-    ) {
-      fwdFlow(ret, state, any(CcCall ccc), apSome(_), ap, config)
+      flowIntoCall(call, pragma[only_bind_into](arg), pragma[only_bind_into](p), allowsFieldFlow,
+        pragma[only_bind_into](config)) and
+      fwdFlow(arg, _, _, _, _, _, pragma[only_bind_into](config)) and
+      returnFlowsThrough(_, _, _, _, p.asNode(), _, _, pragma[only_bind_into](config))
     }
 
     /**
      * Holds if `node` with access path `ap` is part of a path from a source to a
      * sink in the configuration `config`.
      *
-     * The Boolean `toReturn` records whether the node must be returned from the
-     * enclosing callable in order to reach a sink, and if so, `returnAp` records
-     * the access path of the returned value.
+     * The parameter `returnCtx` records whether (and how) the node must be returned
+     * from the enclosing callable in order to reach a sink, and if so, `returnAp`
+     * records the access path of the returned value.
      */
     pragma[nomagic]
     additional predicate revFlow(
-      NodeEx node, FlowState state, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
+      NodeEx node, FlowState state, ReturnCtx returnCtx, ApOption returnAp, Ap ap,
+      Configuration config
     ) {
-      revFlow0(node, state, toReturn, returnAp, ap, config) and
-      fwdFlow(node, state, _, _, ap, config)
+      revFlow0(node, state, returnCtx, returnAp, ap, config) and
+      fwdFlow(node, state, _, _, _, ap, config)
     }
 
     pragma[nomagic]
     private predicate revFlow0(
-      NodeEx node, FlowState state, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
+      NodeEx node, FlowState state, ReturnCtx returnCtx, ApOption returnAp, Ap ap,
+      Configuration config
     ) {
-      fwdFlow(node, state, _, _, ap, config) and
+      fwdFlow(node, state, _, _, _, ap, config) and
       sinkNode(node, state, config) and
-      (if hasSinkCallCtx(config) then toReturn = true else toReturn = false) and
+      (
+        if hasSinkCallCtx(config)
+        then returnCtx = TReturnCtxNoFlowThrough()
+        else returnCtx = TReturnCtxNone()
+      ) and
       returnAp = apNone() and
       ap instanceof ApNil
       or
       exists(NodeEx mid, FlowState state0 |
         localStep(node, state, mid, state0, true, _, config, _) and
-        revFlow(mid, state0, toReturn, returnAp, ap, config)
+        revFlow(mid, state0, returnCtx, returnAp, ap, config)
       )
       or
       exists(NodeEx mid, FlowState state0, ApNil nil |
-        fwdFlow(node, pragma[only_bind_into](state), _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(node, pragma[only_bind_into](state), _, _, _, ap, pragma[only_bind_into](config)) and
         localStep(node, pragma[only_bind_into](state), mid, state0, false, _, config, _) and
-        revFlow(mid, state0, toReturn, returnAp, nil, pragma[only_bind_into](config)) and
+        revFlow(mid, state0, returnCtx, returnAp, nil, pragma[only_bind_into](config)) and
         ap instanceof ApNil
       )
       or
       exists(NodeEx mid |
         jumpStep(node, mid, config) and
         revFlow(mid, state, _, _, ap, config) and
-        toReturn = false and
+        returnCtx = TReturnCtxNone() and
         returnAp = apNone()
       )
       or
       exists(NodeEx mid, ApNil nil |
-        fwdFlow(node, _, _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(node, _, _, _, _, ap, pragma[only_bind_into](config)) and
         additionalJumpStep(node, mid, config) and
         revFlow(pragma[only_bind_into](mid), state, _, _, nil, pragma[only_bind_into](config)) and
-        toReturn = false and
+        returnCtx = TReturnCtxNone() and
         returnAp = apNone() and
         ap instanceof ApNil
       )
       or
       exists(NodeEx mid, FlowState state0, ApNil nil |
-        fwdFlow(node, _, _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(node, _, _, _, _, ap, pragma[only_bind_into](config)) and
         additionalJumpStateStep(node, state, mid, state0, config) and
         revFlow(pragma[only_bind_into](mid), pragma[only_bind_into](state0), _, _, nil,
           pragma[only_bind_into](config)) and
-        toReturn = false and
+        returnCtx = TReturnCtxNone() and
         returnAp = apNone() and
         ap instanceof ApNil
       )
       or
       // store
       exists(Ap ap0, Content c |
-        revFlowStore(ap0, c, ap, node, state, _, _, toReturn, returnAp, config) and
+        revFlowStore(ap0, c, ap, node, state, _, _, returnCtx, returnAp, config) and
         revFlowConsCand(ap0, c, ap, config)
       )
       or
       // read
       exists(NodeEx mid, Ap ap0 |
-        revFlow(mid, state, toReturn, returnAp, ap0, config) and
+        revFlow(mid, state, returnCtx, returnAp, ap0, config) and
         readStepFwd(node, ap, _, mid, ap0, config)
       )
       or
       // flow into a callable
       revFlowInNotToReturn(node, state, returnAp, ap, config) and
-      toReturn = false
+      returnCtx = TReturnCtxNone()
       or
-      exists(DataFlowCall call, Ap returnAp0 |
-        revFlowInToReturn(call, node, state, returnAp0, ap, config) and
-        revFlowIsReturned(call, toReturn, returnAp, returnAp0, config)
+      // flow through a callable
+      exists(DataFlowCall call, ReturnPosition returnPos0, Ap returnAp0 |
+        revFlowInToReturn(call, node, state, returnPos0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnPos0, returnAp0, config)
       )
       or
       // flow out of a callable
-      revFlowOut(_, node, state, _, _, ap, config) and
-      toReturn = true and
-      if returnNodeMayFlowThrough(node, state, ap, config)
-      then returnAp = apSome(ap)
-      else returnAp = apNone()
+      exists(ReturnPosition pos |
+        revFlowOut(_, node, pos, state, _, _, ap, config) and
+        if returnFlowsThrough(node, pos, state, _, _, _, ap, config)
+        then (
+          returnCtx = TReturnCtxMaybeFlowThrough(pos) and
+          returnAp = apSome(ap)
+        ) else (
+          returnCtx = TReturnCtxNoFlowThrough() and returnAp = apNone()
+        )
+      )
     }
 
     pragma[nomagic]
     private predicate revFlowStore(
       Ap ap0, Content c, Ap ap, NodeEx node, FlowState state, TypedContent tc, NodeEx mid,
-      boolean toReturn, ApOption returnAp, Configuration config
+      ReturnCtx returnCtx, ApOption returnAp, Configuration config
     ) {
-      revFlow(mid, state, toReturn, returnAp, ap0, config) and
+      revFlow(mid, state, returnCtx, returnAp, ap0, config) and
       storeStepFwd(node, ap, tc, mid, ap0, config) and
       tc.getContent() = c
     }
@@ -1599,12 +1638,12 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate revFlowOut(
-      DataFlowCall call, RetNodeEx ret, FlowState state, boolean toReturn, ApOption returnAp, Ap ap,
-      Configuration config
+      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, FlowState state, ReturnCtx returnCtx,
+      ApOption returnAp, Ap ap, Configuration config
     ) {
       exists(NodeEx out, boolean allowsFieldFlow |
-        revFlow(out, state, toReturn, returnAp, ap, config) and
-        flowOutOfCall(call, ret, out, allowsFieldFlow, config) and
+        revFlow(out, state, returnCtx, returnAp, ap, config) and
+        flowOutOfCall(call, ret, pos, out, allowsFieldFlow, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
@@ -1614,7 +1653,7 @@ private module MkStage<StageSig PrevStage> {
       ArgNodeEx arg, FlowState state, ApOption returnAp, Ap ap, Configuration config
     ) {
       exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(p, state, false, returnAp, ap, config) and
+        revFlow(p, state, TReturnCtxNone(), returnAp, ap, config) and
         flowIntoCall(_, arg, p, allowsFieldFlow, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
@@ -1622,12 +1661,14 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate revFlowInToReturn(
-      DataFlowCall call, ArgNodeEx arg, FlowState state, Ap returnAp, Ap ap, Configuration config
+      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnPosition returnPos, Ap returnAp,
+      Ap ap, Configuration config
     ) {
       exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(p, state, true, apSome(returnAp), ap, config) and
+        revFlow(p, state, TReturnCtxMaybeFlowThrough(returnPos), apSome(returnAp), ap, config) and
         flowThroughIntoCall(call, arg, p, allowsFieldFlow, config) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
+        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
+        parameterFlowThroughAllowed(p.asNode(), returnPos.getKind())
       )
     }
 
@@ -1638,11 +1679,12 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate revFlowIsReturned(
-      DataFlowCall call, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
+      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnPosition pos, Ap ap,
+      Configuration config
     ) {
       exists(RetNodeEx ret, FlowState state, CcCall ccc |
-        revFlowOut(call, ret, state, toReturn, returnAp, ap, config) and
-        fwdFlow(ret, state, ccc, apSome(_), ap, config) and
+        revFlowOut(call, ret, pos, state, returnCtx, returnAp, ap, config) and
+        returnFlowsThrough(ret, pos, state, ccc, _, _, ap, config) and
         matchesCall(ccc, call)
       )
     }
@@ -1713,40 +1755,39 @@ private module MkStage<StageSig PrevStage> {
       validAp(ap, config)
     }
 
-    pragma[noinline]
-    private predicate parameterFlow(
-      ParamNodeEx p, Ap ap, Ap ap0, DataFlowCallable c, Configuration config
+    pragma[nomagic]
+    private predicate parameterFlowsThroughRev(
+      ParamNodeEx p, Ap ap, ReturnPosition returnPos, Configuration config
     ) {
-      revFlow(p, _, true, apSome(ap0), ap, config) and
-      c = p.getEnclosingCallable()
+      revFlow(p, _, TReturnCtxMaybeFlowThrough(returnPos), apSome(_), ap, config) and
+      parameterFlowThroughAllowed(p.asNode(), returnPos.getKind())
     }
 
-    predicate parameterMayFlowThrough(ParamNodeEx p, DataFlowCallable c, Ap ap, Configuration config) {
-      exists(RetNodeEx ret, FlowState state, Ap ap0, ReturnKindExt kind, ParameterPosition pos |
-        parameterFlow(p, ap, ap0, c, config) and
-        c = ret.getEnclosingCallable() and
-        revFlow(pragma[only_bind_into](ret), pragma[only_bind_into](state), true, apSome(_),
-          pragma[only_bind_into](ap0), pragma[only_bind_into](config)) and
-        fwdFlow(ret, state, any(CcCall ccc), apSome(ap), ap0, config) and
-        kind = ret.getKind() and
-        p.getPosition() = pos and
-        // we don't expect a parameter to return stored in itself, unless explicitly allowed
-        (
-          not kind.(ParamUpdateReturnKind).getPosition() = pos
-          or
-          p.allowParameterReturnInSelf()
-        )
+    pragma[nomagic]
+    predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
+      exists(RetNodeEx ret, ReturnPosition pos |
+        returnFlowsThrough(ret, pos, _, _, p.asNode(), ap, _, config) and
+        parameterFlowsThroughRev(p, ap, pos, config)
+      )
+    }
+
+    pragma[nomagic]
+    predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config) {
+      exists(ParamNodeEx p, Ap ap |
+        returnFlowsThrough(ret, pos, _, _, p.asNode(), ap, _, config) and
+        parameterFlowsThroughRev(p, ap, pos, config)
       )
     }
 
     pragma[nomagic]
     predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
       exists(
-        Ap returnAp0, ArgNodeEx arg, FlowState state, boolean toReturn, ApOption returnAp, Ap ap
+        ReturnPosition returnPos0, Ap returnAp0, ArgNodeEx arg, FlowState state,
+        ReturnCtx returnCtx, ApOption returnAp, Ap ap
       |
-        revFlow(arg, state, toReturn, returnAp, ap, config) and
-        revFlowInToReturn(call, arg, state, returnAp0, ap, config) and
-        revFlowIsReturned(call, toReturn, returnAp, returnAp0, config)
+        revFlow(arg, state, returnCtx, returnAp, ap, config) and
+        revFlowInToReturn(call, arg, state, returnPos0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnPos0, returnAp0, config)
       )
     }
 
@@ -1754,13 +1795,13 @@ private module MkStage<StageSig PrevStage> {
       boolean fwd, int nodes, int fields, int conscand, int states, int tuples, Configuration config
     ) {
       fwd = true and
-      nodes = count(NodeEx node | fwdFlow(node, _, _, _, _, config)) and
+      nodes = count(NodeEx node | fwdFlow(node, _, _, _, _, _, config)) and
       fields = count(TypedContent f0 | fwdConsCand(f0, _, config)) and
       conscand = count(TypedContent f0, Ap ap | fwdConsCand(f0, ap, config)) and
-      states = count(FlowState state | fwdFlow(_, state, _, _, _, config)) and
+      states = count(FlowState state | fwdFlow(_, state, _, _, _, _, config)) and
       tuples =
-        count(NodeEx n, FlowState state, Cc cc, ApOption argAp, Ap ap |
-          fwdFlow(n, state, cc, argAp, ap, config)
+        count(NodeEx n, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap |
+          fwdFlow(n, state, cc, summaryCtx, argAp, ap, config)
         )
       or
       fwd = false and
@@ -1769,8 +1810,8 @@ private module MkStage<StageSig PrevStage> {
       conscand = count(TypedContent f0, Ap ap | consCand(f0, ap, config)) and
       states = count(FlowState state | revFlow(_, state, _, _, _, config)) and
       tuples =
-        count(NodeEx n, FlowState state, boolean b, ApOption retAp, Ap ap |
-          revFlow(n, state, b, retAp, ap, config)
+        count(NodeEx n, FlowState state, ReturnCtx returnCtx, ApOption retAp, Ap ap |
+          revFlow(n, state, returnCtx, retAp, ap, config)
         )
     }
     /* End: Stage logic. */
@@ -1915,7 +1956,7 @@ private module Stage2Param implements MkStage<Stage1>::StageParam {
     exists(lcc)
   }
 
-  predicate flowOutOfCall = flowOutOfCallNodeCand1/5;
+  predicate flowOutOfCall = flowOutOfCallNodeCand1/6;
 
   predicate flowIntoCall = flowIntoCallNodeCand1/5;
 
@@ -1951,9 +1992,10 @@ private module Stage2 implements StageSig {
 
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand2(
-  DataFlowCall call, RetNodeEx node1, NodeEx node2, boolean allowsFieldFlow, Configuration config
+  DataFlowCall call, RetNodeEx node1, ReturnPosition pos, NodeEx node2, boolean allowsFieldFlow,
+  Configuration config
 ) {
-  flowOutOfCallNodeCand1(call, node1, node2, allowsFieldFlow, config) and
+  flowOutOfCallNodeCand1(call, node1, pos, node2, allowsFieldFlow, config) and
   Stage2::revFlow(node2, pragma[only_bind_into](config)) and
   Stage2::revFlowAlias(node1, pragma[only_bind_into](config))
 }
@@ -2021,8 +2063,8 @@ private module LocalFlowBigStep {
     exists(NodeEx next | Stage2::revFlow(next, state, config) |
       jumpStep(node, next, config) or
       additionalJumpStep(node, next, config) or
-      flowIntoCallNodeCand1(_, node, next, config) or
-      flowOutOfCallNodeCand1(_, node, next, config) or
+      flowIntoCallNodeCand2(_, node, next, _, config) or
+      flowOutOfCallNodeCand2(_, node, _, next, _, config) or
       Stage2::storeStepCand(node, _, _, next, _, config) or
       Stage2::readStepCand(node, _, next, config)
     )
@@ -2163,7 +2205,7 @@ private module Stage3Param implements MkStage<Stage2>::StageParam {
     localFlowBigStep(node1, state1, node2, state2, preservesValue, ap, config, _) and exists(lcc)
   }
 
-  predicate flowOutOfCall = flowOutOfCallNodeCand2/5;
+  predicate flowOutOfCall = flowOutOfCallNodeCand2/6;
 
   predicate flowIntoCall = flowIntoCallNodeCand2/5;
 
@@ -2233,8 +2275,9 @@ private predicate flowCandSummaryCtx(
   NodeEx node, FlowState state, AccessPathFront argApf, Configuration config
 ) {
   exists(AccessPathFront apf |
-    Stage3::revFlow(node, state, true, _, apf, config) and
-    Stage3::fwdFlow(node, state, any(Stage3::CcCall ccc), TAccessPathFrontSome(argApf), apf, config)
+    Stage3::revFlow(node, state, TReturnCtxMaybeFlowThrough(_), _, apf, config) and
+    Stage3::fwdFlow(node, state, any(Stage3::CcCall ccc), _, TAccessPathFrontSome(argApf), apf,
+      config)
   )
 }
 
@@ -2468,10 +2511,11 @@ private module Stage4Param implements MkStage<Stage3>::StageParam {
 
   pragma[nomagic]
   predicate flowOutOfCall(
-    DataFlowCall call, RetNodeEx node1, NodeEx node2, boolean allowsFieldFlow, Configuration config
+    DataFlowCall call, RetNodeEx node1, ReturnPosition pos, NodeEx node2, boolean allowsFieldFlow,
+    Configuration config
   ) {
     exists(FlowState state |
-      flowOutOfCallNodeCand2(call, node1, node2, allowsFieldFlow, config) and
+      flowOutOfCallNodeCand2(call, node1, pos, node2, allowsFieldFlow, config) and
       PrevStage::revFlow(node2, pragma[only_bind_into](state), _, pragma[only_bind_into](config)) and
       PrevStage::revFlowAlias(node1, pragma[only_bind_into](state), _,
         pragma[only_bind_into](config))
@@ -2508,13 +2552,13 @@ private Configuration unbindConf(Configuration conf) {
 
 pragma[nomagic]
 private predicate nodeMayUseSummary0(
-  NodeEx n, DataFlowCallable c, FlowState state, AccessPathApprox apa, Configuration config
+  NodeEx n, ParamNodeEx p, FlowState state, AccessPathApprox apa, Configuration config
 ) {
   exists(AccessPathApprox apa0 |
-    Stage4::parameterMayFlowThrough(_, c, _, _) and
-    Stage4::revFlow(n, state, true, _, apa0, config) and
-    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TAccessPathApproxSome(apa), apa0, config) and
-    n.getEnclosingCallable() = c
+    Stage4::parameterMayFlowThrough(p, _, _) and
+    Stage4::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
+    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TParamNodeSome(p.asNode()),
+      TAccessPathApproxSome(apa), apa0, config)
   )
 }
 
@@ -2522,9 +2566,9 @@ pragma[nomagic]
 private predicate nodeMayUseSummary(
   NodeEx n, FlowState state, AccessPathApprox apa, Configuration config
 ) {
-  exists(DataFlowCallable c |
-    Stage4::parameterMayFlowThrough(_, c, apa, config) and
-    nodeMayUseSummary0(n, c, state, apa, config)
+  exists(ParamNodeEx p |
+    Stage4::parameterMayFlowThrough(p, apa, config) and
+    nodeMayUseSummary0(n, p, state, apa, config)
   )
 }
 
@@ -2532,7 +2576,7 @@ private newtype TSummaryCtx =
   TSummaryCtxNone() or
   TSummaryCtxSome(ParamNodeEx p, FlowState state, AccessPath ap) {
     exists(Configuration config |
-      Stage4::parameterMayFlowThrough(p, _, ap.getApprox(), config) and
+      Stage4::parameterMayFlowThrough(p, ap.getApprox(), config) and
       Stage4::revFlow(p, state, _, config)
     )
   }
@@ -3453,17 +3497,11 @@ private predicate paramFlowsThrough(
   ReturnKindExt kind, FlowState state, CallContextCall cc, SummaryCtxSome sc, AccessPath ap,
   AccessPathApprox apa, Configuration config
 ) {
-  exists(PathNodeMid mid, RetNodeEx ret, ParameterPosition pos |
+  exists(PathNodeMid mid, RetNodeEx ret |
     pathNode(mid, ret, state, cc, sc, ap, config, _) and
     kind = ret.getKind() and
     apa = ap.getApprox() and
-    pos = sc.getParameterPos() and
-    // we don't expect a parameter to return stored in itself, unless explicitly allowed
-    (
-      not kind.(ParamUpdateReturnKind).getPosition() = pos
-      or
-      sc.getParamNode().allowParameterReturnInSelf()
-    )
+    parameterFlowThroughAllowed(sc.getParamNode().asNode(), kind)
   )
 }
 
diff --git a/python/ql/lib/semmle/python/dataflow/new/internal/DataFlowImpl4.qll b/python/ql/lib/semmle/python/dataflow/new/internal/DataFlowImpl4.qll
index 3c41b1876dc..a52ad110662 100644
--- a/python/ql/lib/semmle/python/dataflow/new/internal/DataFlowImpl4.qll
+++ b/python/ql/lib/semmle/python/dataflow/new/internal/DataFlowImpl4.qll
@@ -319,8 +319,6 @@ private class ParamNodeEx extends NodeEx {
   }
 
   ParameterPosition getPosition() { this.isParameterOf(_, result) }
-
-  predicate allowParameterReturnInSelf() { allowParameterReturnInSelfCached(this.asNode()) }
 }
 
 private class RetNodeEx extends NodeEx {
@@ -608,6 +606,21 @@ private predicate hasSinkCallCtx(Configuration config) {
   )
 }
 
+/**
+ * Holds if flow from `p` to a return node of kind `kind` is allowed.
+ *
+ * We don't expect a parameter to return stored in itself, unless
+ * explicitly allowed
+ */
+bindingset[p, kind]
+private predicate parameterFlowThroughAllowed(ParamNode p, ReturnKindExt kind) {
+  exists(ParameterPosition pos | p.isParameterOf(_, pos) |
+    not kind.(ParamUpdateReturnKind).getPosition() = pos
+    or
+    allowParameterReturnInSelfCached(p)
+  )
+}
+
 private module Stage1 implements StageSig {
   class Ap = Unit;
 
@@ -981,21 +994,22 @@ private module Stage1 implements StageSig {
    * candidate for the origin of a summary.
    */
   pragma[nomagic]
-  predicate parameterMayFlowThrough(ParamNodeEx p, DataFlowCallable c, Ap ap, Configuration config) {
-    exists(ReturnKindExt kind |
+  predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
+    exists(DataFlowCallable c, ReturnKindExt kind |
       throughFlowNodeCand(p, config) and
       returnFlowCallableNodeCand(c, kind, config) and
       p.getEnclosingCallable() = c and
       exists(ap) and
-      // we don't expect a parameter to return stored in itself, unless explicitly allowed
-      (
-        not kind.(ParamUpdateReturnKind).getPosition() = p.getPosition()
-        or
-        p.allowParameterReturnInSelf()
-      )
+      parameterFlowThroughAllowed(p.asNode(), kind)
     )
   }
 
+  pragma[nomagic]
+  predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config) {
+    throughFlowNodeCand(ret, config) and
+    pos = ret.getReturnPosition()
+  }
+
   pragma[nomagic]
   predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
     exists(ArgNodeEx arg, boolean toReturn |
@@ -1052,9 +1066,10 @@ private predicate viableReturnPosOutNodeCand1(
  */
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand1(
-  DataFlowCall call, RetNodeEx ret, NodeEx out, Configuration config
+  DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, Configuration config
 ) {
-  viableReturnPosOutNodeCand1(call, ret.getReturnPosition(), out, config) and
+  viableReturnPosOutNodeCand1(call, pos, out, config) and
+  pos = ret.getReturnPosition() and
   Stage1::revFlow(ret, config) and
   not outBarrier(ret, config) and
   not inBarrier(out, config)
@@ -1090,7 +1105,7 @@ private predicate flowIntoCallNodeCand1(
 private int branch(NodeEx n1, Configuration conf) {
   result =
     strictcount(NodeEx n |
-      flowOutOfCallNodeCand1(_, n1, n, conf) or flowIntoCallNodeCand1(_, n1, n, conf)
+      flowOutOfCallNodeCand1(_, n1, _, n, conf) or flowIntoCallNodeCand1(_, n1, n, conf)
     )
 }
 
@@ -1102,7 +1117,7 @@ private int branch(NodeEx n1, Configuration conf) {
 private int join(NodeEx n2, Configuration conf) {
   result =
     strictcount(NodeEx n |
-      flowOutOfCallNodeCand1(_, n, n2, conf) or flowIntoCallNodeCand1(_, n, n2, conf)
+      flowOutOfCallNodeCand1(_, n, _, n2, conf) or flowIntoCallNodeCand1(_, n, n2, conf)
     )
 }
 
@@ -1115,12 +1130,13 @@ private int join(NodeEx n2, Configuration conf) {
  */
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand1(
-  DataFlowCall call, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow, Configuration config
+  DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
+  Configuration config
 ) {
-  flowOutOfCallNodeCand1(call, ret, out, config) and
+  flowOutOfCallNodeCand1(call, ret, pos, out, pragma[only_bind_into](config)) and
   exists(int b, int j |
-    b = branch(ret, config) and
-    j = join(out, config) and
+    b = branch(ret, pragma[only_bind_into](config)) and
+    j = join(out, pragma[only_bind_into](config)) and
     if b.minimum(j) <= config.fieldFlowBranchLimit()
     then allowsFieldFlow = true
     else allowsFieldFlow = false
@@ -1156,7 +1172,9 @@ private signature module StageSig {
 
   predicate callMayFlowThroughRev(DataFlowCall call, Configuration config);
 
-  predicate parameterMayFlowThrough(ParamNodeEx p, DataFlowCallable c, Ap ap, Configuration config);
+  predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config);
+
+  predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config);
 
   predicate storeStepCand(
     NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, DataFlowType contentType,
@@ -1222,7 +1240,8 @@ private module MkStage<StageSig PrevStage> {
     );
 
     predicate flowOutOfCall(
-      DataFlowCall call, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow, Configuration config
+      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
+      Configuration config
     );
 
     predicate flowIntoCall(
@@ -1247,14 +1266,16 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate flowThroughOutOfCall(
-      DataFlowCall call, CcCall ccc, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow,
-      Configuration config
+      DataFlowCall call, CcCall ccc, RetNodeEx ret, ReturnKindExt kind, NodeEx out,
+      boolean allowsFieldFlow, Configuration config
     ) {
-      flowOutOfCall(call, ret, out, allowsFieldFlow, pragma[only_bind_into](config)) and
-      PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
-      PrevStage::parameterMayFlowThrough(_, ret.getEnclosingCallable(), _,
-        pragma[only_bind_into](config)) and
-      matchesCall(ccc, call)
+      exists(ReturnPosition pos |
+        flowOutOfCall(call, ret, pos, out, allowsFieldFlow, pragma[only_bind_into](config)) and
+        kind = pos.getKind() and
+        PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
+        PrevStage::returnMayFlowThrough(ret, pos, pragma[only_bind_into](config)) and
+        matchesCall(ccc, call)
+      )
     }
 
     /**
@@ -1262,29 +1283,32 @@ private module MkStage<StageSig PrevStage> {
      * configuration `config`.
      *
      * The call context `cc` records whether the node is reached through an
-     * argument in a call, and if so, `argAp` records the access path of that
-     * argument.
+     * argument in a call, and if so, `summaryCtx` and `argAp` record the
+     * corresponding parameter and access path of that argument, respectively.
      */
     pragma[nomagic]
     additional predicate fwdFlow(
-      NodeEx node, FlowState state, Cc cc, ApOption argAp, Ap ap, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      Configuration config
     ) {
-      fwdFlow0(node, state, cc, argAp, ap, config) and
+      fwdFlow0(node, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::revFlow(node, state, unbindApa(getApprox(ap)), config) and
       filter(node, state, ap, config)
     }
 
     pragma[nomagic]
     private predicate fwdFlow0(
-      NodeEx node, FlowState state, Cc cc, ApOption argAp, Ap ap, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      Configuration config
     ) {
       sourceNode(node, state, config) and
       (if hasSourceCallCtx(config) then cc = ccSomeCall() else cc = ccNone()) and
       argAp = apNone() and
+      summaryCtx = TParamNodeNone() and
       ap = getApNil(node)
       or
       exists(NodeEx mid, FlowState state0, Ap ap0, LocalCc localCc |
-        fwdFlow(mid, state0, cc, argAp, ap0, config) and
+        fwdFlow(mid, state0, cc, summaryCtx, argAp, ap0, config) and
         localCc = getLocalCc(mid, cc)
       |
         localStep(mid, state0, node, state, true, _, config, localCc) and
@@ -1295,65 +1319,72 @@ private module MkStage<StageSig PrevStage> {
       )
       or
       exists(NodeEx mid |
-        fwdFlow(mid, pragma[only_bind_into](state), _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, pragma[only_bind_into](config)) and
         jumpStep(mid, node, config) and
         cc = ccNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone()
       )
       or
       exists(NodeEx mid, ApNil nil |
-        fwdFlow(mid, state, _, _, nil, pragma[only_bind_into](config)) and
+        fwdFlow(mid, state, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStep(mid, node, config) and
         cc = ccNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone() and
         ap = getApNil(node)
       )
       or
       exists(NodeEx mid, FlowState state0, ApNil nil |
-        fwdFlow(mid, state0, _, _, nil, pragma[only_bind_into](config)) and
+        fwdFlow(mid, state0, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStateStep(mid, state0, node, state, config) and
         cc = ccNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone() and
         ap = getApNil(node)
       )
       or
       // store
       exists(TypedContent tc, Ap ap0 |
-        fwdFlowStore(_, ap0, tc, node, state, cc, argAp, config) and
+        fwdFlowStore(_, ap0, tc, node, state, cc, summaryCtx, argAp, config) and
         ap = apCons(tc, ap0)
       )
       or
       // read
       exists(Ap ap0, Content c |
-        fwdFlowRead(ap0, c, _, node, state, cc, argAp, config) and
+        fwdFlowRead(ap0, c, _, node, state, cc, summaryCtx, argAp, config) and
         fwdFlowConsCand(ap0, c, ap, config)
       )
       or
       // flow into a callable
       exists(ApApprox apa |
-        fwdFlowIn(_, node, state, _, cc, _, ap, config) and
+        fwdFlowIn(_, node, state, _, cc, _, _, ap, config) and
         apa = getApprox(ap) and
-        if PrevStage::parameterMayFlowThrough(node, _, apa, config)
-        then argAp = apSome(ap)
-        else argAp = apNone()
+        if PrevStage::parameterMayFlowThrough(node, apa, config)
+        then (
+          summaryCtx = TParamNodeSome(node.asNode()) and argAp = apSome(ap)
+        ) else (
+          summaryCtx = TParamNodeNone() and argAp = apNone()
+        )
       )
       or
       // flow out of a callable
-      fwdFlowOutNotFromArg(node, state, cc, argAp, ap, config)
+      fwdFlowOutNotFromArg(node, state, cc, summaryCtx, argAp, ap, config)
       or
-      exists(DataFlowCall call, Ap argAp0 |
-        fwdFlowOutFromArg(call, node, state, argAp0, ap, config) and
-        fwdFlowIsEntered(call, cc, argAp, argAp0, config)
+      // flow through a callable
+      exists(DataFlowCall call, ParamNode summaryCtx0, Ap argAp0 |
+        fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, config) and
+        fwdFlowIsEntered(call, cc, summaryCtx, argAp, summaryCtx0, argAp0, config)
       )
     }
 
     pragma[nomagic]
     private predicate fwdFlowStore(
-      NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc, ApOption argAp,
-      Configuration config
+      NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc,
+      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
     ) {
       exists(DataFlowType contentType |
-        fwdFlow(node1, state, cc, argAp, ap1, config) and
+        fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, config) and
         PrevStage::storeStepCand(node1, unbindApa(getApprox(ap1)), tc, node2, contentType, config) and
         typecheckStore(ap1, contentType)
       )
@@ -1366,7 +1397,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowConsCand(Ap cons, Content c, Ap tail, Configuration config) {
       exists(TypedContent tc |
-        fwdFlowStore(_, tail, tc, _, _, _, _, config) and
+        fwdFlowStore(_, tail, tc, _, _, _, _, _, config) and
         tc.getContent() = c and
         cons = apCons(tc, tail)
       )
@@ -1374,21 +1405,21 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowRead(
-      Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc, ApOption argAp,
-      Configuration config
+      Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc,
+      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
     ) {
-      fwdFlow(node1, state, cc, argAp, ap, config) and
+      fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, c, node2, config) and
       getHeadContent(ap) = c
     }
 
     pragma[nomagic]
     private predicate fwdFlowIn(
-      DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, Cc innercc, ApOption argAp,
-      Ap ap, Configuration config
+      DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, Cc innercc,
+      ParamNodeOption summaryCtx, ApOption argAp, Ap ap, Configuration config
     ) {
       exists(ArgNodeEx arg, boolean allowsFieldFlow |
-        fwdFlow(arg, state, outercc, argAp, ap, config) and
+        fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, config) and
         flowIntoCall(call, arg, p, allowsFieldFlow, config) and
         innercc = getCallContextCall(call, p.getEnclosingCallable(), outercc) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
@@ -1397,14 +1428,15 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowOutNotFromArg(
-      NodeEx out, FlowState state, Cc ccOut, ApOption argAp, Ap ap, Configuration config
+      NodeEx out, FlowState state, Cc ccOut, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      Configuration config
     ) {
       exists(
         DataFlowCall call, RetNodeEx ret, boolean allowsFieldFlow, CcNoCall innercc,
         DataFlowCallable inner
       |
-        fwdFlow(ret, state, innercc, argAp, ap, config) and
-        flowOutOfCall(call, ret, out, allowsFieldFlow, config) and
+        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, config) and
+        flowOutOfCall(call, ret, _, out, allowsFieldFlow, config) and
         inner = ret.getEnclosingCallable() and
         ccOut = getCallContextReturn(inner, call, innercc) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
@@ -1413,12 +1445,14 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowOutFromArg(
-      DataFlowCall call, NodeEx out, FlowState state, Ap argAp, Ap ap, Configuration config
+      DataFlowCall call, NodeEx out, FlowState state, ParamNode summaryCtx, Ap argAp, Ap ap,
+      Configuration config
     ) {
-      exists(RetNodeEx ret, boolean allowsFieldFlow, CcCall ccc |
-        fwdFlow(ret, state, ccc, apSome(argAp), ap, config) and
-        flowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, config) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
+      exists(RetNodeEx ret, ReturnKindExt kind, boolean allowsFieldFlow, CcCall ccc |
+        fwdFlow(ret, state, ccc, TParamNodeSome(summaryCtx), apSome(argAp), ap, config) and
+        flowThroughOutOfCall(call, ccc, ret, kind, out, allowsFieldFlow, config) and
+        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
+        parameterFlowThroughAllowed(summaryCtx, kind)
       )
     }
 
@@ -1428,11 +1462,13 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate fwdFlowIsEntered(
-      DataFlowCall call, Cc cc, ApOption argAp, Ap ap, Configuration config
+      DataFlowCall call, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, ParamNode p, Ap ap,
+      Configuration config
     ) {
-      exists(ParamNodeEx p |
-        fwdFlowIn(call, p, _, cc, _, argAp, ap, config) and
-        PrevStage::parameterMayFlowThrough(p, _, unbindApa(getApprox(ap)), config)
+      exists(ParamNodeEx param |
+        fwdFlowIn(call, param, _, cc, _, summaryCtx, argAp, ap, config) and
+        PrevStage::parameterMayFlowThrough(param, unbindApa(getApprox(ap)), config) and
+        p = param.asNode()
       )
     }
 
@@ -1440,146 +1476,149 @@ private module MkStage<StageSig PrevStage> {
     private predicate storeStepFwd(
       NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, Ap ap2, Configuration config
     ) {
-      fwdFlowStore(node1, ap1, tc, node2, _, _, _, config) and
+      fwdFlowStore(node1, ap1, tc, node2, _, _, _, _, config) and
       ap2 = apCons(tc, ap1) and
-      fwdFlowRead(ap2, tc.getContent(), _, _, _, _, _, config)
+      fwdFlowRead(ap2, tc.getContent(), _, _, _, _, _, _, config)
     }
 
     private predicate readStepFwd(
       NodeEx n1, Ap ap1, Content c, NodeEx n2, Ap ap2, Configuration config
     ) {
-      fwdFlowRead(ap1, c, n1, n2, _, _, _, config) and
+      fwdFlowRead(ap1, c, n1, n2, _, _, _, _, config) and
       fwdFlowConsCand(ap1, c, ap2, config)
     }
 
     pragma[nomagic]
-    private predicate callMayFlowThroughFwd(DataFlowCall call, Configuration config) {
-      exists(Ap argAp0, NodeEx out, FlowState state, Cc cc, ApOption argAp, Ap ap |
-        fwdFlow(out, state, pragma[only_bind_into](cc), pragma[only_bind_into](argAp), ap,
-          pragma[only_bind_into](config)) and
-        fwdFlowOutFromArg(call, out, state, argAp0, ap, config) and
-        fwdFlowIsEntered(pragma[only_bind_into](call), pragma[only_bind_into](cc),
-          pragma[only_bind_into](argAp), pragma[only_bind_into](argAp0),
-          pragma[only_bind_into](config))
-      )
+    private predicate returnFlowsThrough(
+      RetNodeEx ret, ReturnPosition pos, FlowState state, CcCall ccc, ParamNode p, Ap argAp, Ap ap,
+      Configuration config
+    ) {
+      fwdFlow(ret, state, ccc, TParamNodeSome(p), apSome(argAp), ap, config) and
+      pos = ret.getReturnPosition() and
+      parameterFlowThroughAllowed(p, pos.getKind())
     }
 
     pragma[nomagic]
     private predicate flowThroughIntoCall(
       DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
     ) {
-      flowIntoCall(call, arg, p, allowsFieldFlow, config) and
-      fwdFlow(arg, _, _, _, _, pragma[only_bind_into](config)) and
-      PrevStage::parameterMayFlowThrough(p, _, _, pragma[only_bind_into](config)) and
-      callMayFlowThroughFwd(call, pragma[only_bind_into](config))
-    }
-
-    pragma[nomagic]
-    private predicate returnNodeMayFlowThrough(
-      RetNodeEx ret, FlowState state, Ap ap, Configuration config
-    ) {
-      fwdFlow(ret, state, any(CcCall ccc), apSome(_), ap, config)
+      flowIntoCall(call, pragma[only_bind_into](arg), pragma[only_bind_into](p), allowsFieldFlow,
+        pragma[only_bind_into](config)) and
+      fwdFlow(arg, _, _, _, _, _, pragma[only_bind_into](config)) and
+      returnFlowsThrough(_, _, _, _, p.asNode(), _, _, pragma[only_bind_into](config))
     }
 
     /**
      * Holds if `node` with access path `ap` is part of a path from a source to a
      * sink in the configuration `config`.
      *
-     * The Boolean `toReturn` records whether the node must be returned from the
-     * enclosing callable in order to reach a sink, and if so, `returnAp` records
-     * the access path of the returned value.
+     * The parameter `returnCtx` records whether (and how) the node must be returned
+     * from the enclosing callable in order to reach a sink, and if so, `returnAp`
+     * records the access path of the returned value.
      */
     pragma[nomagic]
     additional predicate revFlow(
-      NodeEx node, FlowState state, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
+      NodeEx node, FlowState state, ReturnCtx returnCtx, ApOption returnAp, Ap ap,
+      Configuration config
     ) {
-      revFlow0(node, state, toReturn, returnAp, ap, config) and
-      fwdFlow(node, state, _, _, ap, config)
+      revFlow0(node, state, returnCtx, returnAp, ap, config) and
+      fwdFlow(node, state, _, _, _, ap, config)
     }
 
     pragma[nomagic]
     private predicate revFlow0(
-      NodeEx node, FlowState state, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
+      NodeEx node, FlowState state, ReturnCtx returnCtx, ApOption returnAp, Ap ap,
+      Configuration config
     ) {
-      fwdFlow(node, state, _, _, ap, config) and
+      fwdFlow(node, state, _, _, _, ap, config) and
       sinkNode(node, state, config) and
-      (if hasSinkCallCtx(config) then toReturn = true else toReturn = false) and
+      (
+        if hasSinkCallCtx(config)
+        then returnCtx = TReturnCtxNoFlowThrough()
+        else returnCtx = TReturnCtxNone()
+      ) and
       returnAp = apNone() and
       ap instanceof ApNil
       or
       exists(NodeEx mid, FlowState state0 |
         localStep(node, state, mid, state0, true, _, config, _) and
-        revFlow(mid, state0, toReturn, returnAp, ap, config)
+        revFlow(mid, state0, returnCtx, returnAp, ap, config)
       )
       or
       exists(NodeEx mid, FlowState state0, ApNil nil |
-        fwdFlow(node, pragma[only_bind_into](state), _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(node, pragma[only_bind_into](state), _, _, _, ap, pragma[only_bind_into](config)) and
         localStep(node, pragma[only_bind_into](state), mid, state0, false, _, config, _) and
-        revFlow(mid, state0, toReturn, returnAp, nil, pragma[only_bind_into](config)) and
+        revFlow(mid, state0, returnCtx, returnAp, nil, pragma[only_bind_into](config)) and
         ap instanceof ApNil
       )
       or
       exists(NodeEx mid |
         jumpStep(node, mid, config) and
         revFlow(mid, state, _, _, ap, config) and
-        toReturn = false and
+        returnCtx = TReturnCtxNone() and
         returnAp = apNone()
       )
       or
       exists(NodeEx mid, ApNil nil |
-        fwdFlow(node, _, _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(node, _, _, _, _, ap, pragma[only_bind_into](config)) and
         additionalJumpStep(node, mid, config) and
         revFlow(pragma[only_bind_into](mid), state, _, _, nil, pragma[only_bind_into](config)) and
-        toReturn = false and
+        returnCtx = TReturnCtxNone() and
         returnAp = apNone() and
         ap instanceof ApNil
       )
       or
       exists(NodeEx mid, FlowState state0, ApNil nil |
-        fwdFlow(node, _, _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(node, _, _, _, _, ap, pragma[only_bind_into](config)) and
         additionalJumpStateStep(node, state, mid, state0, config) and
         revFlow(pragma[only_bind_into](mid), pragma[only_bind_into](state0), _, _, nil,
           pragma[only_bind_into](config)) and
-        toReturn = false and
+        returnCtx = TReturnCtxNone() and
         returnAp = apNone() and
         ap instanceof ApNil
       )
       or
       // store
       exists(Ap ap0, Content c |
-        revFlowStore(ap0, c, ap, node, state, _, _, toReturn, returnAp, config) and
+        revFlowStore(ap0, c, ap, node, state, _, _, returnCtx, returnAp, config) and
         revFlowConsCand(ap0, c, ap, config)
       )
       or
       // read
       exists(NodeEx mid, Ap ap0 |
-        revFlow(mid, state, toReturn, returnAp, ap0, config) and
+        revFlow(mid, state, returnCtx, returnAp, ap0, config) and
         readStepFwd(node, ap, _, mid, ap0, config)
       )
       or
       // flow into a callable
       revFlowInNotToReturn(node, state, returnAp, ap, config) and
-      toReturn = false
+      returnCtx = TReturnCtxNone()
       or
-      exists(DataFlowCall call, Ap returnAp0 |
-        revFlowInToReturn(call, node, state, returnAp0, ap, config) and
-        revFlowIsReturned(call, toReturn, returnAp, returnAp0, config)
+      // flow through a callable
+      exists(DataFlowCall call, ReturnPosition returnPos0, Ap returnAp0 |
+        revFlowInToReturn(call, node, state, returnPos0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnPos0, returnAp0, config)
       )
       or
       // flow out of a callable
-      revFlowOut(_, node, state, _, _, ap, config) and
-      toReturn = true and
-      if returnNodeMayFlowThrough(node, state, ap, config)
-      then returnAp = apSome(ap)
-      else returnAp = apNone()
+      exists(ReturnPosition pos |
+        revFlowOut(_, node, pos, state, _, _, ap, config) and
+        if returnFlowsThrough(node, pos, state, _, _, _, ap, config)
+        then (
+          returnCtx = TReturnCtxMaybeFlowThrough(pos) and
+          returnAp = apSome(ap)
+        ) else (
+          returnCtx = TReturnCtxNoFlowThrough() and returnAp = apNone()
+        )
+      )
     }
 
     pragma[nomagic]
     private predicate revFlowStore(
       Ap ap0, Content c, Ap ap, NodeEx node, FlowState state, TypedContent tc, NodeEx mid,
-      boolean toReturn, ApOption returnAp, Configuration config
+      ReturnCtx returnCtx, ApOption returnAp, Configuration config
     ) {
-      revFlow(mid, state, toReturn, returnAp, ap0, config) and
+      revFlow(mid, state, returnCtx, returnAp, ap0, config) and
       storeStepFwd(node, ap, tc, mid, ap0, config) and
       tc.getContent() = c
     }
@@ -1599,12 +1638,12 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate revFlowOut(
-      DataFlowCall call, RetNodeEx ret, FlowState state, boolean toReturn, ApOption returnAp, Ap ap,
-      Configuration config
+      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, FlowState state, ReturnCtx returnCtx,
+      ApOption returnAp, Ap ap, Configuration config
     ) {
       exists(NodeEx out, boolean allowsFieldFlow |
-        revFlow(out, state, toReturn, returnAp, ap, config) and
-        flowOutOfCall(call, ret, out, allowsFieldFlow, config) and
+        revFlow(out, state, returnCtx, returnAp, ap, config) and
+        flowOutOfCall(call, ret, pos, out, allowsFieldFlow, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
@@ -1614,7 +1653,7 @@ private module MkStage<StageSig PrevStage> {
       ArgNodeEx arg, FlowState state, ApOption returnAp, Ap ap, Configuration config
     ) {
       exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(p, state, false, returnAp, ap, config) and
+        revFlow(p, state, TReturnCtxNone(), returnAp, ap, config) and
         flowIntoCall(_, arg, p, allowsFieldFlow, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
@@ -1622,12 +1661,14 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate revFlowInToReturn(
-      DataFlowCall call, ArgNodeEx arg, FlowState state, Ap returnAp, Ap ap, Configuration config
+      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnPosition returnPos, Ap returnAp,
+      Ap ap, Configuration config
     ) {
       exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(p, state, true, apSome(returnAp), ap, config) and
+        revFlow(p, state, TReturnCtxMaybeFlowThrough(returnPos), apSome(returnAp), ap, config) and
         flowThroughIntoCall(call, arg, p, allowsFieldFlow, config) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
+        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
+        parameterFlowThroughAllowed(p.asNode(), returnPos.getKind())
       )
     }
 
@@ -1638,11 +1679,12 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate revFlowIsReturned(
-      DataFlowCall call, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
+      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnPosition pos, Ap ap,
+      Configuration config
     ) {
       exists(RetNodeEx ret, FlowState state, CcCall ccc |
-        revFlowOut(call, ret, state, toReturn, returnAp, ap, config) and
-        fwdFlow(ret, state, ccc, apSome(_), ap, config) and
+        revFlowOut(call, ret, pos, state, returnCtx, returnAp, ap, config) and
+        returnFlowsThrough(ret, pos, state, ccc, _, _, ap, config) and
         matchesCall(ccc, call)
       )
     }
@@ -1713,40 +1755,39 @@ private module MkStage<StageSig PrevStage> {
       validAp(ap, config)
     }
 
-    pragma[noinline]
-    private predicate parameterFlow(
-      ParamNodeEx p, Ap ap, Ap ap0, DataFlowCallable c, Configuration config
+    pragma[nomagic]
+    private predicate parameterFlowsThroughRev(
+      ParamNodeEx p, Ap ap, ReturnPosition returnPos, Configuration config
     ) {
-      revFlow(p, _, true, apSome(ap0), ap, config) and
-      c = p.getEnclosingCallable()
+      revFlow(p, _, TReturnCtxMaybeFlowThrough(returnPos), apSome(_), ap, config) and
+      parameterFlowThroughAllowed(p.asNode(), returnPos.getKind())
     }
 
-    predicate parameterMayFlowThrough(ParamNodeEx p, DataFlowCallable c, Ap ap, Configuration config) {
-      exists(RetNodeEx ret, FlowState state, Ap ap0, ReturnKindExt kind, ParameterPosition pos |
-        parameterFlow(p, ap, ap0, c, config) and
-        c = ret.getEnclosingCallable() and
-        revFlow(pragma[only_bind_into](ret), pragma[only_bind_into](state), true, apSome(_),
-          pragma[only_bind_into](ap0), pragma[only_bind_into](config)) and
-        fwdFlow(ret, state, any(CcCall ccc), apSome(ap), ap0, config) and
-        kind = ret.getKind() and
-        p.getPosition() = pos and
-        // we don't expect a parameter to return stored in itself, unless explicitly allowed
-        (
-          not kind.(ParamUpdateReturnKind).getPosition() = pos
-          or
-          p.allowParameterReturnInSelf()
-        )
+    pragma[nomagic]
+    predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
+      exists(RetNodeEx ret, ReturnPosition pos |
+        returnFlowsThrough(ret, pos, _, _, p.asNode(), ap, _, config) and
+        parameterFlowsThroughRev(p, ap, pos, config)
+      )
+    }
+
+    pragma[nomagic]
+    predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config) {
+      exists(ParamNodeEx p, Ap ap |
+        returnFlowsThrough(ret, pos, _, _, p.asNode(), ap, _, config) and
+        parameterFlowsThroughRev(p, ap, pos, config)
       )
     }
 
     pragma[nomagic]
     predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
       exists(
-        Ap returnAp0, ArgNodeEx arg, FlowState state, boolean toReturn, ApOption returnAp, Ap ap
+        ReturnPosition returnPos0, Ap returnAp0, ArgNodeEx arg, FlowState state,
+        ReturnCtx returnCtx, ApOption returnAp, Ap ap
       |
-        revFlow(arg, state, toReturn, returnAp, ap, config) and
-        revFlowInToReturn(call, arg, state, returnAp0, ap, config) and
-        revFlowIsReturned(call, toReturn, returnAp, returnAp0, config)
+        revFlow(arg, state, returnCtx, returnAp, ap, config) and
+        revFlowInToReturn(call, arg, state, returnPos0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnPos0, returnAp0, config)
       )
     }
 
@@ -1754,13 +1795,13 @@ private module MkStage<StageSig PrevStage> {
       boolean fwd, int nodes, int fields, int conscand, int states, int tuples, Configuration config
     ) {
       fwd = true and
-      nodes = count(NodeEx node | fwdFlow(node, _, _, _, _, config)) and
+      nodes = count(NodeEx node | fwdFlow(node, _, _, _, _, _, config)) and
       fields = count(TypedContent f0 | fwdConsCand(f0, _, config)) and
       conscand = count(TypedContent f0, Ap ap | fwdConsCand(f0, ap, config)) and
-      states = count(FlowState state | fwdFlow(_, state, _, _, _, config)) and
+      states = count(FlowState state | fwdFlow(_, state, _, _, _, _, config)) and
       tuples =
-        count(NodeEx n, FlowState state, Cc cc, ApOption argAp, Ap ap |
-          fwdFlow(n, state, cc, argAp, ap, config)
+        count(NodeEx n, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap |
+          fwdFlow(n, state, cc, summaryCtx, argAp, ap, config)
         )
       or
       fwd = false and
@@ -1769,8 +1810,8 @@ private module MkStage<StageSig PrevStage> {
       conscand = count(TypedContent f0, Ap ap | consCand(f0, ap, config)) and
       states = count(FlowState state | revFlow(_, state, _, _, _, config)) and
       tuples =
-        count(NodeEx n, FlowState state, boolean b, ApOption retAp, Ap ap |
-          revFlow(n, state, b, retAp, ap, config)
+        count(NodeEx n, FlowState state, ReturnCtx returnCtx, ApOption retAp, Ap ap |
+          revFlow(n, state, returnCtx, retAp, ap, config)
         )
     }
     /* End: Stage logic. */
@@ -1915,7 +1956,7 @@ private module Stage2Param implements MkStage<Stage1>::StageParam {
     exists(lcc)
   }
 
-  predicate flowOutOfCall = flowOutOfCallNodeCand1/5;
+  predicate flowOutOfCall = flowOutOfCallNodeCand1/6;
 
   predicate flowIntoCall = flowIntoCallNodeCand1/5;
 
@@ -1951,9 +1992,10 @@ private module Stage2 implements StageSig {
 
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand2(
-  DataFlowCall call, RetNodeEx node1, NodeEx node2, boolean allowsFieldFlow, Configuration config
+  DataFlowCall call, RetNodeEx node1, ReturnPosition pos, NodeEx node2, boolean allowsFieldFlow,
+  Configuration config
 ) {
-  flowOutOfCallNodeCand1(call, node1, node2, allowsFieldFlow, config) and
+  flowOutOfCallNodeCand1(call, node1, pos, node2, allowsFieldFlow, config) and
   Stage2::revFlow(node2, pragma[only_bind_into](config)) and
   Stage2::revFlowAlias(node1, pragma[only_bind_into](config))
 }
@@ -2021,8 +2063,8 @@ private module LocalFlowBigStep {
     exists(NodeEx next | Stage2::revFlow(next, state, config) |
       jumpStep(node, next, config) or
       additionalJumpStep(node, next, config) or
-      flowIntoCallNodeCand1(_, node, next, config) or
-      flowOutOfCallNodeCand1(_, node, next, config) or
+      flowIntoCallNodeCand2(_, node, next, _, config) or
+      flowOutOfCallNodeCand2(_, node, _, next, _, config) or
       Stage2::storeStepCand(node, _, _, next, _, config) or
       Stage2::readStepCand(node, _, next, config)
     )
@@ -2163,7 +2205,7 @@ private module Stage3Param implements MkStage<Stage2>::StageParam {
     localFlowBigStep(node1, state1, node2, state2, preservesValue, ap, config, _) and exists(lcc)
   }
 
-  predicate flowOutOfCall = flowOutOfCallNodeCand2/5;
+  predicate flowOutOfCall = flowOutOfCallNodeCand2/6;
 
   predicate flowIntoCall = flowIntoCallNodeCand2/5;
 
@@ -2233,8 +2275,9 @@ private predicate flowCandSummaryCtx(
   NodeEx node, FlowState state, AccessPathFront argApf, Configuration config
 ) {
   exists(AccessPathFront apf |
-    Stage3::revFlow(node, state, true, _, apf, config) and
-    Stage3::fwdFlow(node, state, any(Stage3::CcCall ccc), TAccessPathFrontSome(argApf), apf, config)
+    Stage3::revFlow(node, state, TReturnCtxMaybeFlowThrough(_), _, apf, config) and
+    Stage3::fwdFlow(node, state, any(Stage3::CcCall ccc), _, TAccessPathFrontSome(argApf), apf,
+      config)
   )
 }
 
@@ -2468,10 +2511,11 @@ private module Stage4Param implements MkStage<Stage3>::StageParam {
 
   pragma[nomagic]
   predicate flowOutOfCall(
-    DataFlowCall call, RetNodeEx node1, NodeEx node2, boolean allowsFieldFlow, Configuration config
+    DataFlowCall call, RetNodeEx node1, ReturnPosition pos, NodeEx node2, boolean allowsFieldFlow,
+    Configuration config
   ) {
     exists(FlowState state |
-      flowOutOfCallNodeCand2(call, node1, node2, allowsFieldFlow, config) and
+      flowOutOfCallNodeCand2(call, node1, pos, node2, allowsFieldFlow, config) and
       PrevStage::revFlow(node2, pragma[only_bind_into](state), _, pragma[only_bind_into](config)) and
       PrevStage::revFlowAlias(node1, pragma[only_bind_into](state), _,
         pragma[only_bind_into](config))
@@ -2508,13 +2552,13 @@ private Configuration unbindConf(Configuration conf) {
 
 pragma[nomagic]
 private predicate nodeMayUseSummary0(
-  NodeEx n, DataFlowCallable c, FlowState state, AccessPathApprox apa, Configuration config
+  NodeEx n, ParamNodeEx p, FlowState state, AccessPathApprox apa, Configuration config
 ) {
   exists(AccessPathApprox apa0 |
-    Stage4::parameterMayFlowThrough(_, c, _, _) and
-    Stage4::revFlow(n, state, true, _, apa0, config) and
-    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TAccessPathApproxSome(apa), apa0, config) and
-    n.getEnclosingCallable() = c
+    Stage4::parameterMayFlowThrough(p, _, _) and
+    Stage4::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
+    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TParamNodeSome(p.asNode()),
+      TAccessPathApproxSome(apa), apa0, config)
   )
 }
 
@@ -2522,9 +2566,9 @@ pragma[nomagic]
 private predicate nodeMayUseSummary(
   NodeEx n, FlowState state, AccessPathApprox apa, Configuration config
 ) {
-  exists(DataFlowCallable c |
-    Stage4::parameterMayFlowThrough(_, c, apa, config) and
-    nodeMayUseSummary0(n, c, state, apa, config)
+  exists(ParamNodeEx p |
+    Stage4::parameterMayFlowThrough(p, apa, config) and
+    nodeMayUseSummary0(n, p, state, apa, config)
   )
 }
 
@@ -2532,7 +2576,7 @@ private newtype TSummaryCtx =
   TSummaryCtxNone() or
   TSummaryCtxSome(ParamNodeEx p, FlowState state, AccessPath ap) {
     exists(Configuration config |
-      Stage4::parameterMayFlowThrough(p, _, ap.getApprox(), config) and
+      Stage4::parameterMayFlowThrough(p, ap.getApprox(), config) and
       Stage4::revFlow(p, state, _, config)
     )
   }
@@ -3453,17 +3497,11 @@ private predicate paramFlowsThrough(
   ReturnKindExt kind, FlowState state, CallContextCall cc, SummaryCtxSome sc, AccessPath ap,
   AccessPathApprox apa, Configuration config
 ) {
-  exists(PathNodeMid mid, RetNodeEx ret, ParameterPosition pos |
+  exists(PathNodeMid mid, RetNodeEx ret |
     pathNode(mid, ret, state, cc, sc, ap, config, _) and
     kind = ret.getKind() and
     apa = ap.getApprox() and
-    pos = sc.getParameterPos() and
-    // we don't expect a parameter to return stored in itself, unless explicitly allowed
-    (
-      not kind.(ParamUpdateReturnKind).getPosition() = pos
-      or
-      sc.getParamNode().allowParameterReturnInSelf()
-    )
+    parameterFlowThroughAllowed(sc.getParamNode().asNode(), kind)
   )
 }
 
diff --git a/python/ql/lib/semmle/python/dataflow/new/internal/DataFlowImplCommon.qll b/python/ql/lib/semmle/python/dataflow/new/internal/DataFlowImplCommon.qll
index ae9c6f3f12e..621ed34f9d0 100644
--- a/python/ql/lib/semmle/python/dataflow/new/internal/DataFlowImplCommon.qll
+++ b/python/ql/lib/semmle/python/dataflow/new/internal/DataFlowImplCommon.qll
@@ -915,6 +915,17 @@ private module Cached {
     TDataFlowCallNone() or
     TDataFlowCallSome(DataFlowCall call)
 
+  cached
+  newtype TParamNodeOption =
+    TParamNodeNone() or
+    TParamNodeSome(ParamNode p)
+
+  cached
+  newtype TReturnCtx =
+    TReturnCtxNone() or
+    TReturnCtxNoFlowThrough() or
+    TReturnCtxMaybeFlowThrough(ReturnPosition pos)
+
   cached
   newtype TTypedContent = MkTypedContent(Content c, DataFlowType t) { store(_, c, _, _, t) }
 
@@ -1304,6 +1315,44 @@ class DataFlowCallOption extends TDataFlowCallOption {
   }
 }
 
+/** An optional `ParamNode`. */
+class ParamNodeOption extends TParamNodeOption {
+  string toString() {
+    this = TParamNodeNone() and
+    result = "(none)"
+    or
+    exists(ParamNode p |
+      this = TParamNodeSome(p) and
+      result = p.toString()
+    )
+  }
+}
+
+/**
+ * A return context used to calculate flow summaries in reverse flow.
+ *
+ * The possible values are:
+ *
+ * - `TReturnCtxNone()`: no return flow.
+ * - `TReturnCtxNoFlowThrough()`: return flow, but flow through is not possible.
+ * - `TReturnCtxMaybeFlowThrough(ReturnPosition pos)`: return flow, of kind `pos`, and
+ *    flow through may be possible.
+ */
+class ReturnCtx extends TReturnCtx {
+  string toString() {
+    this = TReturnCtxNone() and
+    result = "(none)"
+    or
+    this = TReturnCtxNoFlowThrough() and
+    result = "(no flow through)"
+    or
+    exists(ReturnPosition pos |
+      this = TReturnCtxMaybeFlowThrough(pos) and
+      result = pos.toString()
+    )
+  }
+}
+
 /** A `Content` tagged with the type of a containing object. */
 class TypedContent extends MkTypedContent {
   private Content c;
diff --git a/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImpl2.qll b/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImpl2.qll
index 3c41b1876dc..a52ad110662 100644
--- a/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImpl2.qll
+++ b/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImpl2.qll
@@ -319,8 +319,6 @@ private class ParamNodeEx extends NodeEx {
   }
 
   ParameterPosition getPosition() { this.isParameterOf(_, result) }
-
-  predicate allowParameterReturnInSelf() { allowParameterReturnInSelfCached(this.asNode()) }
 }
 
 private class RetNodeEx extends NodeEx {
@@ -608,6 +606,21 @@ private predicate hasSinkCallCtx(Configuration config) {
   )
 }
 
+/**
+ * Holds if flow from `p` to a return node of kind `kind` is allowed.
+ *
+ * We don't expect a parameter to return stored in itself, unless
+ * explicitly allowed
+ */
+bindingset[p, kind]
+private predicate parameterFlowThroughAllowed(ParamNode p, ReturnKindExt kind) {
+  exists(ParameterPosition pos | p.isParameterOf(_, pos) |
+    not kind.(ParamUpdateReturnKind).getPosition() = pos
+    or
+    allowParameterReturnInSelfCached(p)
+  )
+}
+
 private module Stage1 implements StageSig {
   class Ap = Unit;
 
@@ -981,21 +994,22 @@ private module Stage1 implements StageSig {
    * candidate for the origin of a summary.
    */
   pragma[nomagic]
-  predicate parameterMayFlowThrough(ParamNodeEx p, DataFlowCallable c, Ap ap, Configuration config) {
-    exists(ReturnKindExt kind |
+  predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
+    exists(DataFlowCallable c, ReturnKindExt kind |
       throughFlowNodeCand(p, config) and
       returnFlowCallableNodeCand(c, kind, config) and
       p.getEnclosingCallable() = c and
       exists(ap) and
-      // we don't expect a parameter to return stored in itself, unless explicitly allowed
-      (
-        not kind.(ParamUpdateReturnKind).getPosition() = p.getPosition()
-        or
-        p.allowParameterReturnInSelf()
-      )
+      parameterFlowThroughAllowed(p.asNode(), kind)
     )
   }
 
+  pragma[nomagic]
+  predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config) {
+    throughFlowNodeCand(ret, config) and
+    pos = ret.getReturnPosition()
+  }
+
   pragma[nomagic]
   predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
     exists(ArgNodeEx arg, boolean toReturn |
@@ -1052,9 +1066,10 @@ private predicate viableReturnPosOutNodeCand1(
  */
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand1(
-  DataFlowCall call, RetNodeEx ret, NodeEx out, Configuration config
+  DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, Configuration config
 ) {
-  viableReturnPosOutNodeCand1(call, ret.getReturnPosition(), out, config) and
+  viableReturnPosOutNodeCand1(call, pos, out, config) and
+  pos = ret.getReturnPosition() and
   Stage1::revFlow(ret, config) and
   not outBarrier(ret, config) and
   not inBarrier(out, config)
@@ -1090,7 +1105,7 @@ private predicate flowIntoCallNodeCand1(
 private int branch(NodeEx n1, Configuration conf) {
   result =
     strictcount(NodeEx n |
-      flowOutOfCallNodeCand1(_, n1, n, conf) or flowIntoCallNodeCand1(_, n1, n, conf)
+      flowOutOfCallNodeCand1(_, n1, _, n, conf) or flowIntoCallNodeCand1(_, n1, n, conf)
     )
 }
 
@@ -1102,7 +1117,7 @@ private int branch(NodeEx n1, Configuration conf) {
 private int join(NodeEx n2, Configuration conf) {
   result =
     strictcount(NodeEx n |
-      flowOutOfCallNodeCand1(_, n, n2, conf) or flowIntoCallNodeCand1(_, n, n2, conf)
+      flowOutOfCallNodeCand1(_, n, _, n2, conf) or flowIntoCallNodeCand1(_, n, n2, conf)
     )
 }
 
@@ -1115,12 +1130,13 @@ private int join(NodeEx n2, Configuration conf) {
  */
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand1(
-  DataFlowCall call, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow, Configuration config
+  DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
+  Configuration config
 ) {
-  flowOutOfCallNodeCand1(call, ret, out, config) and
+  flowOutOfCallNodeCand1(call, ret, pos, out, pragma[only_bind_into](config)) and
   exists(int b, int j |
-    b = branch(ret, config) and
-    j = join(out, config) and
+    b = branch(ret, pragma[only_bind_into](config)) and
+    j = join(out, pragma[only_bind_into](config)) and
     if b.minimum(j) <= config.fieldFlowBranchLimit()
     then allowsFieldFlow = true
     else allowsFieldFlow = false
@@ -1156,7 +1172,9 @@ private signature module StageSig {
 
   predicate callMayFlowThroughRev(DataFlowCall call, Configuration config);
 
-  predicate parameterMayFlowThrough(ParamNodeEx p, DataFlowCallable c, Ap ap, Configuration config);
+  predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config);
+
+  predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config);
 
   predicate storeStepCand(
     NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, DataFlowType contentType,
@@ -1222,7 +1240,8 @@ private module MkStage<StageSig PrevStage> {
     );
 
     predicate flowOutOfCall(
-      DataFlowCall call, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow, Configuration config
+      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
+      Configuration config
     );
 
     predicate flowIntoCall(
@@ -1247,14 +1266,16 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate flowThroughOutOfCall(
-      DataFlowCall call, CcCall ccc, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow,
-      Configuration config
+      DataFlowCall call, CcCall ccc, RetNodeEx ret, ReturnKindExt kind, NodeEx out,
+      boolean allowsFieldFlow, Configuration config
     ) {
-      flowOutOfCall(call, ret, out, allowsFieldFlow, pragma[only_bind_into](config)) and
-      PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
-      PrevStage::parameterMayFlowThrough(_, ret.getEnclosingCallable(), _,
-        pragma[only_bind_into](config)) and
-      matchesCall(ccc, call)
+      exists(ReturnPosition pos |
+        flowOutOfCall(call, ret, pos, out, allowsFieldFlow, pragma[only_bind_into](config)) and
+        kind = pos.getKind() and
+        PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
+        PrevStage::returnMayFlowThrough(ret, pos, pragma[only_bind_into](config)) and
+        matchesCall(ccc, call)
+      )
     }
 
     /**
@@ -1262,29 +1283,32 @@ private module MkStage<StageSig PrevStage> {
      * configuration `config`.
      *
      * The call context `cc` records whether the node is reached through an
-     * argument in a call, and if so, `argAp` records the access path of that
-     * argument.
+     * argument in a call, and if so, `summaryCtx` and `argAp` record the
+     * corresponding parameter and access path of that argument, respectively.
      */
     pragma[nomagic]
     additional predicate fwdFlow(
-      NodeEx node, FlowState state, Cc cc, ApOption argAp, Ap ap, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      Configuration config
     ) {
-      fwdFlow0(node, state, cc, argAp, ap, config) and
+      fwdFlow0(node, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::revFlow(node, state, unbindApa(getApprox(ap)), config) and
       filter(node, state, ap, config)
     }
 
     pragma[nomagic]
     private predicate fwdFlow0(
-      NodeEx node, FlowState state, Cc cc, ApOption argAp, Ap ap, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      Configuration config
     ) {
       sourceNode(node, state, config) and
       (if hasSourceCallCtx(config) then cc = ccSomeCall() else cc = ccNone()) and
       argAp = apNone() and
+      summaryCtx = TParamNodeNone() and
       ap = getApNil(node)
       or
       exists(NodeEx mid, FlowState state0, Ap ap0, LocalCc localCc |
-        fwdFlow(mid, state0, cc, argAp, ap0, config) and
+        fwdFlow(mid, state0, cc, summaryCtx, argAp, ap0, config) and
         localCc = getLocalCc(mid, cc)
       |
         localStep(mid, state0, node, state, true, _, config, localCc) and
@@ -1295,65 +1319,72 @@ private module MkStage<StageSig PrevStage> {
       )
       or
       exists(NodeEx mid |
-        fwdFlow(mid, pragma[only_bind_into](state), _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, pragma[only_bind_into](config)) and
         jumpStep(mid, node, config) and
         cc = ccNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone()
       )
       or
       exists(NodeEx mid, ApNil nil |
-        fwdFlow(mid, state, _, _, nil, pragma[only_bind_into](config)) and
+        fwdFlow(mid, state, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStep(mid, node, config) and
         cc = ccNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone() and
         ap = getApNil(node)
       )
       or
       exists(NodeEx mid, FlowState state0, ApNil nil |
-        fwdFlow(mid, state0, _, _, nil, pragma[only_bind_into](config)) and
+        fwdFlow(mid, state0, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStateStep(mid, state0, node, state, config) and
         cc = ccNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone() and
         ap = getApNil(node)
       )
       or
       // store
       exists(TypedContent tc, Ap ap0 |
-        fwdFlowStore(_, ap0, tc, node, state, cc, argAp, config) and
+        fwdFlowStore(_, ap0, tc, node, state, cc, summaryCtx, argAp, config) and
         ap = apCons(tc, ap0)
       )
       or
       // read
       exists(Ap ap0, Content c |
-        fwdFlowRead(ap0, c, _, node, state, cc, argAp, config) and
+        fwdFlowRead(ap0, c, _, node, state, cc, summaryCtx, argAp, config) and
         fwdFlowConsCand(ap0, c, ap, config)
       )
       or
       // flow into a callable
       exists(ApApprox apa |
-        fwdFlowIn(_, node, state, _, cc, _, ap, config) and
+        fwdFlowIn(_, node, state, _, cc, _, _, ap, config) and
         apa = getApprox(ap) and
-        if PrevStage::parameterMayFlowThrough(node, _, apa, config)
-        then argAp = apSome(ap)
-        else argAp = apNone()
+        if PrevStage::parameterMayFlowThrough(node, apa, config)
+        then (
+          summaryCtx = TParamNodeSome(node.asNode()) and argAp = apSome(ap)
+        ) else (
+          summaryCtx = TParamNodeNone() and argAp = apNone()
+        )
       )
       or
       // flow out of a callable
-      fwdFlowOutNotFromArg(node, state, cc, argAp, ap, config)
+      fwdFlowOutNotFromArg(node, state, cc, summaryCtx, argAp, ap, config)
       or
-      exists(DataFlowCall call, Ap argAp0 |
-        fwdFlowOutFromArg(call, node, state, argAp0, ap, config) and
-        fwdFlowIsEntered(call, cc, argAp, argAp0, config)
+      // flow through a callable
+      exists(DataFlowCall call, ParamNode summaryCtx0, Ap argAp0 |
+        fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, config) and
+        fwdFlowIsEntered(call, cc, summaryCtx, argAp, summaryCtx0, argAp0, config)
       )
     }
 
     pragma[nomagic]
     private predicate fwdFlowStore(
-      NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc, ApOption argAp,
-      Configuration config
+      NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc,
+      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
     ) {
       exists(DataFlowType contentType |
-        fwdFlow(node1, state, cc, argAp, ap1, config) and
+        fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, config) and
         PrevStage::storeStepCand(node1, unbindApa(getApprox(ap1)), tc, node2, contentType, config) and
         typecheckStore(ap1, contentType)
       )
@@ -1366,7 +1397,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowConsCand(Ap cons, Content c, Ap tail, Configuration config) {
       exists(TypedContent tc |
-        fwdFlowStore(_, tail, tc, _, _, _, _, config) and
+        fwdFlowStore(_, tail, tc, _, _, _, _, _, config) and
         tc.getContent() = c and
         cons = apCons(tc, tail)
       )
@@ -1374,21 +1405,21 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowRead(
-      Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc, ApOption argAp,
-      Configuration config
+      Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc,
+      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
     ) {
-      fwdFlow(node1, state, cc, argAp, ap, config) and
+      fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, c, node2, config) and
       getHeadContent(ap) = c
     }
 
     pragma[nomagic]
     private predicate fwdFlowIn(
-      DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, Cc innercc, ApOption argAp,
-      Ap ap, Configuration config
+      DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, Cc innercc,
+      ParamNodeOption summaryCtx, ApOption argAp, Ap ap, Configuration config
     ) {
       exists(ArgNodeEx arg, boolean allowsFieldFlow |
-        fwdFlow(arg, state, outercc, argAp, ap, config) and
+        fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, config) and
         flowIntoCall(call, arg, p, allowsFieldFlow, config) and
         innercc = getCallContextCall(call, p.getEnclosingCallable(), outercc) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
@@ -1397,14 +1428,15 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowOutNotFromArg(
-      NodeEx out, FlowState state, Cc ccOut, ApOption argAp, Ap ap, Configuration config
+      NodeEx out, FlowState state, Cc ccOut, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      Configuration config
     ) {
       exists(
         DataFlowCall call, RetNodeEx ret, boolean allowsFieldFlow, CcNoCall innercc,
         DataFlowCallable inner
       |
-        fwdFlow(ret, state, innercc, argAp, ap, config) and
-        flowOutOfCall(call, ret, out, allowsFieldFlow, config) and
+        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, config) and
+        flowOutOfCall(call, ret, _, out, allowsFieldFlow, config) and
         inner = ret.getEnclosingCallable() and
         ccOut = getCallContextReturn(inner, call, innercc) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
@@ -1413,12 +1445,14 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowOutFromArg(
-      DataFlowCall call, NodeEx out, FlowState state, Ap argAp, Ap ap, Configuration config
+      DataFlowCall call, NodeEx out, FlowState state, ParamNode summaryCtx, Ap argAp, Ap ap,
+      Configuration config
     ) {
-      exists(RetNodeEx ret, boolean allowsFieldFlow, CcCall ccc |
-        fwdFlow(ret, state, ccc, apSome(argAp), ap, config) and
-        flowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, config) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
+      exists(RetNodeEx ret, ReturnKindExt kind, boolean allowsFieldFlow, CcCall ccc |
+        fwdFlow(ret, state, ccc, TParamNodeSome(summaryCtx), apSome(argAp), ap, config) and
+        flowThroughOutOfCall(call, ccc, ret, kind, out, allowsFieldFlow, config) and
+        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
+        parameterFlowThroughAllowed(summaryCtx, kind)
       )
     }
 
@@ -1428,11 +1462,13 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate fwdFlowIsEntered(
-      DataFlowCall call, Cc cc, ApOption argAp, Ap ap, Configuration config
+      DataFlowCall call, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, ParamNode p, Ap ap,
+      Configuration config
     ) {
-      exists(ParamNodeEx p |
-        fwdFlowIn(call, p, _, cc, _, argAp, ap, config) and
-        PrevStage::parameterMayFlowThrough(p, _, unbindApa(getApprox(ap)), config)
+      exists(ParamNodeEx param |
+        fwdFlowIn(call, param, _, cc, _, summaryCtx, argAp, ap, config) and
+        PrevStage::parameterMayFlowThrough(param, unbindApa(getApprox(ap)), config) and
+        p = param.asNode()
       )
     }
 
@@ -1440,146 +1476,149 @@ private module MkStage<StageSig PrevStage> {
     private predicate storeStepFwd(
       NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, Ap ap2, Configuration config
     ) {
-      fwdFlowStore(node1, ap1, tc, node2, _, _, _, config) and
+      fwdFlowStore(node1, ap1, tc, node2, _, _, _, _, config) and
       ap2 = apCons(tc, ap1) and
-      fwdFlowRead(ap2, tc.getContent(), _, _, _, _, _, config)
+      fwdFlowRead(ap2, tc.getContent(), _, _, _, _, _, _, config)
     }
 
     private predicate readStepFwd(
       NodeEx n1, Ap ap1, Content c, NodeEx n2, Ap ap2, Configuration config
     ) {
-      fwdFlowRead(ap1, c, n1, n2, _, _, _, config) and
+      fwdFlowRead(ap1, c, n1, n2, _, _, _, _, config) and
       fwdFlowConsCand(ap1, c, ap2, config)
     }
 
     pragma[nomagic]
-    private predicate callMayFlowThroughFwd(DataFlowCall call, Configuration config) {
-      exists(Ap argAp0, NodeEx out, FlowState state, Cc cc, ApOption argAp, Ap ap |
-        fwdFlow(out, state, pragma[only_bind_into](cc), pragma[only_bind_into](argAp), ap,
-          pragma[only_bind_into](config)) and
-        fwdFlowOutFromArg(call, out, state, argAp0, ap, config) and
-        fwdFlowIsEntered(pragma[only_bind_into](call), pragma[only_bind_into](cc),
-          pragma[only_bind_into](argAp), pragma[only_bind_into](argAp0),
-          pragma[only_bind_into](config))
-      )
+    private predicate returnFlowsThrough(
+      RetNodeEx ret, ReturnPosition pos, FlowState state, CcCall ccc, ParamNode p, Ap argAp, Ap ap,
+      Configuration config
+    ) {
+      fwdFlow(ret, state, ccc, TParamNodeSome(p), apSome(argAp), ap, config) and
+      pos = ret.getReturnPosition() and
+      parameterFlowThroughAllowed(p, pos.getKind())
     }
 
     pragma[nomagic]
     private predicate flowThroughIntoCall(
       DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
     ) {
-      flowIntoCall(call, arg, p, allowsFieldFlow, config) and
-      fwdFlow(arg, _, _, _, _, pragma[only_bind_into](config)) and
-      PrevStage::parameterMayFlowThrough(p, _, _, pragma[only_bind_into](config)) and
-      callMayFlowThroughFwd(call, pragma[only_bind_into](config))
-    }
-
-    pragma[nomagic]
-    private predicate returnNodeMayFlowThrough(
-      RetNodeEx ret, FlowState state, Ap ap, Configuration config
-    ) {
-      fwdFlow(ret, state, any(CcCall ccc), apSome(_), ap, config)
+      flowIntoCall(call, pragma[only_bind_into](arg), pragma[only_bind_into](p), allowsFieldFlow,
+        pragma[only_bind_into](config)) and
+      fwdFlow(arg, _, _, _, _, _, pragma[only_bind_into](config)) and
+      returnFlowsThrough(_, _, _, _, p.asNode(), _, _, pragma[only_bind_into](config))
     }
 
     /**
      * Holds if `node` with access path `ap` is part of a path from a source to a
      * sink in the configuration `config`.
      *
-     * The Boolean `toReturn` records whether the node must be returned from the
-     * enclosing callable in order to reach a sink, and if so, `returnAp` records
-     * the access path of the returned value.
+     * The parameter `returnCtx` records whether (and how) the node must be returned
+     * from the enclosing callable in order to reach a sink, and if so, `returnAp`
+     * records the access path of the returned value.
      */
     pragma[nomagic]
     additional predicate revFlow(
-      NodeEx node, FlowState state, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
+      NodeEx node, FlowState state, ReturnCtx returnCtx, ApOption returnAp, Ap ap,
+      Configuration config
     ) {
-      revFlow0(node, state, toReturn, returnAp, ap, config) and
-      fwdFlow(node, state, _, _, ap, config)
+      revFlow0(node, state, returnCtx, returnAp, ap, config) and
+      fwdFlow(node, state, _, _, _, ap, config)
     }
 
     pragma[nomagic]
     private predicate revFlow0(
-      NodeEx node, FlowState state, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
+      NodeEx node, FlowState state, ReturnCtx returnCtx, ApOption returnAp, Ap ap,
+      Configuration config
     ) {
-      fwdFlow(node, state, _, _, ap, config) and
+      fwdFlow(node, state, _, _, _, ap, config) and
       sinkNode(node, state, config) and
-      (if hasSinkCallCtx(config) then toReturn = true else toReturn = false) and
+      (
+        if hasSinkCallCtx(config)
+        then returnCtx = TReturnCtxNoFlowThrough()
+        else returnCtx = TReturnCtxNone()
+      ) and
       returnAp = apNone() and
       ap instanceof ApNil
       or
       exists(NodeEx mid, FlowState state0 |
         localStep(node, state, mid, state0, true, _, config, _) and
-        revFlow(mid, state0, toReturn, returnAp, ap, config)
+        revFlow(mid, state0, returnCtx, returnAp, ap, config)
       )
       or
       exists(NodeEx mid, FlowState state0, ApNil nil |
-        fwdFlow(node, pragma[only_bind_into](state), _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(node, pragma[only_bind_into](state), _, _, _, ap, pragma[only_bind_into](config)) and
         localStep(node, pragma[only_bind_into](state), mid, state0, false, _, config, _) and
-        revFlow(mid, state0, toReturn, returnAp, nil, pragma[only_bind_into](config)) and
+        revFlow(mid, state0, returnCtx, returnAp, nil, pragma[only_bind_into](config)) and
         ap instanceof ApNil
       )
       or
       exists(NodeEx mid |
         jumpStep(node, mid, config) and
         revFlow(mid, state, _, _, ap, config) and
-        toReturn = false and
+        returnCtx = TReturnCtxNone() and
         returnAp = apNone()
       )
       or
       exists(NodeEx mid, ApNil nil |
-        fwdFlow(node, _, _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(node, _, _, _, _, ap, pragma[only_bind_into](config)) and
         additionalJumpStep(node, mid, config) and
         revFlow(pragma[only_bind_into](mid), state, _, _, nil, pragma[only_bind_into](config)) and
-        toReturn = false and
+        returnCtx = TReturnCtxNone() and
         returnAp = apNone() and
         ap instanceof ApNil
       )
       or
       exists(NodeEx mid, FlowState state0, ApNil nil |
-        fwdFlow(node, _, _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(node, _, _, _, _, ap, pragma[only_bind_into](config)) and
         additionalJumpStateStep(node, state, mid, state0, config) and
         revFlow(pragma[only_bind_into](mid), pragma[only_bind_into](state0), _, _, nil,
           pragma[only_bind_into](config)) and
-        toReturn = false and
+        returnCtx = TReturnCtxNone() and
         returnAp = apNone() and
         ap instanceof ApNil
       )
       or
       // store
       exists(Ap ap0, Content c |
-        revFlowStore(ap0, c, ap, node, state, _, _, toReturn, returnAp, config) and
+        revFlowStore(ap0, c, ap, node, state, _, _, returnCtx, returnAp, config) and
         revFlowConsCand(ap0, c, ap, config)
       )
       or
       // read
       exists(NodeEx mid, Ap ap0 |
-        revFlow(mid, state, toReturn, returnAp, ap0, config) and
+        revFlow(mid, state, returnCtx, returnAp, ap0, config) and
         readStepFwd(node, ap, _, mid, ap0, config)
       )
       or
       // flow into a callable
       revFlowInNotToReturn(node, state, returnAp, ap, config) and
-      toReturn = false
+      returnCtx = TReturnCtxNone()
       or
-      exists(DataFlowCall call, Ap returnAp0 |
-        revFlowInToReturn(call, node, state, returnAp0, ap, config) and
-        revFlowIsReturned(call, toReturn, returnAp, returnAp0, config)
+      // flow through a callable
+      exists(DataFlowCall call, ReturnPosition returnPos0, Ap returnAp0 |
+        revFlowInToReturn(call, node, state, returnPos0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnPos0, returnAp0, config)
       )
       or
       // flow out of a callable
-      revFlowOut(_, node, state, _, _, ap, config) and
-      toReturn = true and
-      if returnNodeMayFlowThrough(node, state, ap, config)
-      then returnAp = apSome(ap)
-      else returnAp = apNone()
+      exists(ReturnPosition pos |
+        revFlowOut(_, node, pos, state, _, _, ap, config) and
+        if returnFlowsThrough(node, pos, state, _, _, _, ap, config)
+        then (
+          returnCtx = TReturnCtxMaybeFlowThrough(pos) and
+          returnAp = apSome(ap)
+        ) else (
+          returnCtx = TReturnCtxNoFlowThrough() and returnAp = apNone()
+        )
+      )
     }
 
     pragma[nomagic]
     private predicate revFlowStore(
       Ap ap0, Content c, Ap ap, NodeEx node, FlowState state, TypedContent tc, NodeEx mid,
-      boolean toReturn, ApOption returnAp, Configuration config
+      ReturnCtx returnCtx, ApOption returnAp, Configuration config
     ) {
-      revFlow(mid, state, toReturn, returnAp, ap0, config) and
+      revFlow(mid, state, returnCtx, returnAp, ap0, config) and
       storeStepFwd(node, ap, tc, mid, ap0, config) and
       tc.getContent() = c
     }
@@ -1599,12 +1638,12 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate revFlowOut(
-      DataFlowCall call, RetNodeEx ret, FlowState state, boolean toReturn, ApOption returnAp, Ap ap,
-      Configuration config
+      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, FlowState state, ReturnCtx returnCtx,
+      ApOption returnAp, Ap ap, Configuration config
     ) {
       exists(NodeEx out, boolean allowsFieldFlow |
-        revFlow(out, state, toReturn, returnAp, ap, config) and
-        flowOutOfCall(call, ret, out, allowsFieldFlow, config) and
+        revFlow(out, state, returnCtx, returnAp, ap, config) and
+        flowOutOfCall(call, ret, pos, out, allowsFieldFlow, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
@@ -1614,7 +1653,7 @@ private module MkStage<StageSig PrevStage> {
       ArgNodeEx arg, FlowState state, ApOption returnAp, Ap ap, Configuration config
     ) {
       exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(p, state, false, returnAp, ap, config) and
+        revFlow(p, state, TReturnCtxNone(), returnAp, ap, config) and
         flowIntoCall(_, arg, p, allowsFieldFlow, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
@@ -1622,12 +1661,14 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate revFlowInToReturn(
-      DataFlowCall call, ArgNodeEx arg, FlowState state, Ap returnAp, Ap ap, Configuration config
+      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnPosition returnPos, Ap returnAp,
+      Ap ap, Configuration config
     ) {
       exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(p, state, true, apSome(returnAp), ap, config) and
+        revFlow(p, state, TReturnCtxMaybeFlowThrough(returnPos), apSome(returnAp), ap, config) and
         flowThroughIntoCall(call, arg, p, allowsFieldFlow, config) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
+        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
+        parameterFlowThroughAllowed(p.asNode(), returnPos.getKind())
       )
     }
 
@@ -1638,11 +1679,12 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate revFlowIsReturned(
-      DataFlowCall call, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
+      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnPosition pos, Ap ap,
+      Configuration config
     ) {
       exists(RetNodeEx ret, FlowState state, CcCall ccc |
-        revFlowOut(call, ret, state, toReturn, returnAp, ap, config) and
-        fwdFlow(ret, state, ccc, apSome(_), ap, config) and
+        revFlowOut(call, ret, pos, state, returnCtx, returnAp, ap, config) and
+        returnFlowsThrough(ret, pos, state, ccc, _, _, ap, config) and
         matchesCall(ccc, call)
       )
     }
@@ -1713,40 +1755,39 @@ private module MkStage<StageSig PrevStage> {
       validAp(ap, config)
     }
 
-    pragma[noinline]
-    private predicate parameterFlow(
-      ParamNodeEx p, Ap ap, Ap ap0, DataFlowCallable c, Configuration config
+    pragma[nomagic]
+    private predicate parameterFlowsThroughRev(
+      ParamNodeEx p, Ap ap, ReturnPosition returnPos, Configuration config
     ) {
-      revFlow(p, _, true, apSome(ap0), ap, config) and
-      c = p.getEnclosingCallable()
+      revFlow(p, _, TReturnCtxMaybeFlowThrough(returnPos), apSome(_), ap, config) and
+      parameterFlowThroughAllowed(p.asNode(), returnPos.getKind())
     }
 
-    predicate parameterMayFlowThrough(ParamNodeEx p, DataFlowCallable c, Ap ap, Configuration config) {
-      exists(RetNodeEx ret, FlowState state, Ap ap0, ReturnKindExt kind, ParameterPosition pos |
-        parameterFlow(p, ap, ap0, c, config) and
-        c = ret.getEnclosingCallable() and
-        revFlow(pragma[only_bind_into](ret), pragma[only_bind_into](state), true, apSome(_),
-          pragma[only_bind_into](ap0), pragma[only_bind_into](config)) and
-        fwdFlow(ret, state, any(CcCall ccc), apSome(ap), ap0, config) and
-        kind = ret.getKind() and
-        p.getPosition() = pos and
-        // we don't expect a parameter to return stored in itself, unless explicitly allowed
-        (
-          not kind.(ParamUpdateReturnKind).getPosition() = pos
-          or
-          p.allowParameterReturnInSelf()
-        )
+    pragma[nomagic]
+    predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
+      exists(RetNodeEx ret, ReturnPosition pos |
+        returnFlowsThrough(ret, pos, _, _, p.asNode(), ap, _, config) and
+        parameterFlowsThroughRev(p, ap, pos, config)
+      )
+    }
+
+    pragma[nomagic]
+    predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config) {
+      exists(ParamNodeEx p, Ap ap |
+        returnFlowsThrough(ret, pos, _, _, p.asNode(), ap, _, config) and
+        parameterFlowsThroughRev(p, ap, pos, config)
       )
     }
 
     pragma[nomagic]
     predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
       exists(
-        Ap returnAp0, ArgNodeEx arg, FlowState state, boolean toReturn, ApOption returnAp, Ap ap
+        ReturnPosition returnPos0, Ap returnAp0, ArgNodeEx arg, FlowState state,
+        ReturnCtx returnCtx, ApOption returnAp, Ap ap
       |
-        revFlow(arg, state, toReturn, returnAp, ap, config) and
-        revFlowInToReturn(call, arg, state, returnAp0, ap, config) and
-        revFlowIsReturned(call, toReturn, returnAp, returnAp0, config)
+        revFlow(arg, state, returnCtx, returnAp, ap, config) and
+        revFlowInToReturn(call, arg, state, returnPos0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnPos0, returnAp0, config)
       )
     }
 
@@ -1754,13 +1795,13 @@ private module MkStage<StageSig PrevStage> {
       boolean fwd, int nodes, int fields, int conscand, int states, int tuples, Configuration config
     ) {
       fwd = true and
-      nodes = count(NodeEx node | fwdFlow(node, _, _, _, _, config)) and
+      nodes = count(NodeEx node | fwdFlow(node, _, _, _, _, _, config)) and
       fields = count(TypedContent f0 | fwdConsCand(f0, _, config)) and
       conscand = count(TypedContent f0, Ap ap | fwdConsCand(f0, ap, config)) and
-      states = count(FlowState state | fwdFlow(_, state, _, _, _, config)) and
+      states = count(FlowState state | fwdFlow(_, state, _, _, _, _, config)) and
       tuples =
-        count(NodeEx n, FlowState state, Cc cc, ApOption argAp, Ap ap |
-          fwdFlow(n, state, cc, argAp, ap, config)
+        count(NodeEx n, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap |
+          fwdFlow(n, state, cc, summaryCtx, argAp, ap, config)
         )
       or
       fwd = false and
@@ -1769,8 +1810,8 @@ private module MkStage<StageSig PrevStage> {
       conscand = count(TypedContent f0, Ap ap | consCand(f0, ap, config)) and
       states = count(FlowState state | revFlow(_, state, _, _, _, config)) and
       tuples =
-        count(NodeEx n, FlowState state, boolean b, ApOption retAp, Ap ap |
-          revFlow(n, state, b, retAp, ap, config)
+        count(NodeEx n, FlowState state, ReturnCtx returnCtx, ApOption retAp, Ap ap |
+          revFlow(n, state, returnCtx, retAp, ap, config)
         )
     }
     /* End: Stage logic. */
@@ -1915,7 +1956,7 @@ private module Stage2Param implements MkStage<Stage1>::StageParam {
     exists(lcc)
   }
 
-  predicate flowOutOfCall = flowOutOfCallNodeCand1/5;
+  predicate flowOutOfCall = flowOutOfCallNodeCand1/6;
 
   predicate flowIntoCall = flowIntoCallNodeCand1/5;
 
@@ -1951,9 +1992,10 @@ private module Stage2 implements StageSig {
 
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand2(
-  DataFlowCall call, RetNodeEx node1, NodeEx node2, boolean allowsFieldFlow, Configuration config
+  DataFlowCall call, RetNodeEx node1, ReturnPosition pos, NodeEx node2, boolean allowsFieldFlow,
+  Configuration config
 ) {
-  flowOutOfCallNodeCand1(call, node1, node2, allowsFieldFlow, config) and
+  flowOutOfCallNodeCand1(call, node1, pos, node2, allowsFieldFlow, config) and
   Stage2::revFlow(node2, pragma[only_bind_into](config)) and
   Stage2::revFlowAlias(node1, pragma[only_bind_into](config))
 }
@@ -2021,8 +2063,8 @@ private module LocalFlowBigStep {
     exists(NodeEx next | Stage2::revFlow(next, state, config) |
       jumpStep(node, next, config) or
       additionalJumpStep(node, next, config) or
-      flowIntoCallNodeCand1(_, node, next, config) or
-      flowOutOfCallNodeCand1(_, node, next, config) or
+      flowIntoCallNodeCand2(_, node, next, _, config) or
+      flowOutOfCallNodeCand2(_, node, _, next, _, config) or
       Stage2::storeStepCand(node, _, _, next, _, config) or
       Stage2::readStepCand(node, _, next, config)
     )
@@ -2163,7 +2205,7 @@ private module Stage3Param implements MkStage<Stage2>::StageParam {
     localFlowBigStep(node1, state1, node2, state2, preservesValue, ap, config, _) and exists(lcc)
   }
 
-  predicate flowOutOfCall = flowOutOfCallNodeCand2/5;
+  predicate flowOutOfCall = flowOutOfCallNodeCand2/6;
 
   predicate flowIntoCall = flowIntoCallNodeCand2/5;
 
@@ -2233,8 +2275,9 @@ private predicate flowCandSummaryCtx(
   NodeEx node, FlowState state, AccessPathFront argApf, Configuration config
 ) {
   exists(AccessPathFront apf |
-    Stage3::revFlow(node, state, true, _, apf, config) and
-    Stage3::fwdFlow(node, state, any(Stage3::CcCall ccc), TAccessPathFrontSome(argApf), apf, config)
+    Stage3::revFlow(node, state, TReturnCtxMaybeFlowThrough(_), _, apf, config) and
+    Stage3::fwdFlow(node, state, any(Stage3::CcCall ccc), _, TAccessPathFrontSome(argApf), apf,
+      config)
   )
 }
 
@@ -2468,10 +2511,11 @@ private module Stage4Param implements MkStage<Stage3>::StageParam {
 
   pragma[nomagic]
   predicate flowOutOfCall(
-    DataFlowCall call, RetNodeEx node1, NodeEx node2, boolean allowsFieldFlow, Configuration config
+    DataFlowCall call, RetNodeEx node1, ReturnPosition pos, NodeEx node2, boolean allowsFieldFlow,
+    Configuration config
   ) {
     exists(FlowState state |
-      flowOutOfCallNodeCand2(call, node1, node2, allowsFieldFlow, config) and
+      flowOutOfCallNodeCand2(call, node1, pos, node2, allowsFieldFlow, config) and
       PrevStage::revFlow(node2, pragma[only_bind_into](state), _, pragma[only_bind_into](config)) and
       PrevStage::revFlowAlias(node1, pragma[only_bind_into](state), _,
         pragma[only_bind_into](config))
@@ -2508,13 +2552,13 @@ private Configuration unbindConf(Configuration conf) {
 
 pragma[nomagic]
 private predicate nodeMayUseSummary0(
-  NodeEx n, DataFlowCallable c, FlowState state, AccessPathApprox apa, Configuration config
+  NodeEx n, ParamNodeEx p, FlowState state, AccessPathApprox apa, Configuration config
 ) {
   exists(AccessPathApprox apa0 |
-    Stage4::parameterMayFlowThrough(_, c, _, _) and
-    Stage4::revFlow(n, state, true, _, apa0, config) and
-    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TAccessPathApproxSome(apa), apa0, config) and
-    n.getEnclosingCallable() = c
+    Stage4::parameterMayFlowThrough(p, _, _) and
+    Stage4::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
+    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TParamNodeSome(p.asNode()),
+      TAccessPathApproxSome(apa), apa0, config)
   )
 }
 
@@ -2522,9 +2566,9 @@ pragma[nomagic]
 private predicate nodeMayUseSummary(
   NodeEx n, FlowState state, AccessPathApprox apa, Configuration config
 ) {
-  exists(DataFlowCallable c |
-    Stage4::parameterMayFlowThrough(_, c, apa, config) and
-    nodeMayUseSummary0(n, c, state, apa, config)
+  exists(ParamNodeEx p |
+    Stage4::parameterMayFlowThrough(p, apa, config) and
+    nodeMayUseSummary0(n, p, state, apa, config)
   )
 }
 
@@ -2532,7 +2576,7 @@ private newtype TSummaryCtx =
   TSummaryCtxNone() or
   TSummaryCtxSome(ParamNodeEx p, FlowState state, AccessPath ap) {
     exists(Configuration config |
-      Stage4::parameterMayFlowThrough(p, _, ap.getApprox(), config) and
+      Stage4::parameterMayFlowThrough(p, ap.getApprox(), config) and
       Stage4::revFlow(p, state, _, config)
     )
   }
@@ -3453,17 +3497,11 @@ private predicate paramFlowsThrough(
   ReturnKindExt kind, FlowState state, CallContextCall cc, SummaryCtxSome sc, AccessPath ap,
   AccessPathApprox apa, Configuration config
 ) {
-  exists(PathNodeMid mid, RetNodeEx ret, ParameterPosition pos |
+  exists(PathNodeMid mid, RetNodeEx ret |
     pathNode(mid, ret, state, cc, sc, ap, config, _) and
     kind = ret.getKind() and
     apa = ap.getApprox() and
-    pos = sc.getParameterPos() and
-    // we don't expect a parameter to return stored in itself, unless explicitly allowed
-    (
-      not kind.(ParamUpdateReturnKind).getPosition() = pos
-      or
-      sc.getParamNode().allowParameterReturnInSelf()
-    )
+    parameterFlowThroughAllowed(sc.getParamNode().asNode(), kind)
   )
 }
 
diff --git a/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImplForHttpClientLibraries.qll b/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImplForHttpClientLibraries.qll
index 3c41b1876dc..a52ad110662 100644
--- a/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImplForHttpClientLibraries.qll
+++ b/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImplForHttpClientLibraries.qll
@@ -319,8 +319,6 @@ private class ParamNodeEx extends NodeEx {
   }
 
   ParameterPosition getPosition() { this.isParameterOf(_, result) }
-
-  predicate allowParameterReturnInSelf() { allowParameterReturnInSelfCached(this.asNode()) }
 }
 
 private class RetNodeEx extends NodeEx {
@@ -608,6 +606,21 @@ private predicate hasSinkCallCtx(Configuration config) {
   )
 }
 
+/**
+ * Holds if flow from `p` to a return node of kind `kind` is allowed.
+ *
+ * We don't expect a parameter to return stored in itself, unless
+ * explicitly allowed
+ */
+bindingset[p, kind]
+private predicate parameterFlowThroughAllowed(ParamNode p, ReturnKindExt kind) {
+  exists(ParameterPosition pos | p.isParameterOf(_, pos) |
+    not kind.(ParamUpdateReturnKind).getPosition() = pos
+    or
+    allowParameterReturnInSelfCached(p)
+  )
+}
+
 private module Stage1 implements StageSig {
   class Ap = Unit;
 
@@ -981,21 +994,22 @@ private module Stage1 implements StageSig {
    * candidate for the origin of a summary.
    */
   pragma[nomagic]
-  predicate parameterMayFlowThrough(ParamNodeEx p, DataFlowCallable c, Ap ap, Configuration config) {
-    exists(ReturnKindExt kind |
+  predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
+    exists(DataFlowCallable c, ReturnKindExt kind |
       throughFlowNodeCand(p, config) and
       returnFlowCallableNodeCand(c, kind, config) and
       p.getEnclosingCallable() = c and
       exists(ap) and
-      // we don't expect a parameter to return stored in itself, unless explicitly allowed
-      (
-        not kind.(ParamUpdateReturnKind).getPosition() = p.getPosition()
-        or
-        p.allowParameterReturnInSelf()
-      )
+      parameterFlowThroughAllowed(p.asNode(), kind)
     )
   }
 
+  pragma[nomagic]
+  predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config) {
+    throughFlowNodeCand(ret, config) and
+    pos = ret.getReturnPosition()
+  }
+
   pragma[nomagic]
   predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
     exists(ArgNodeEx arg, boolean toReturn |
@@ -1052,9 +1066,10 @@ private predicate viableReturnPosOutNodeCand1(
  */
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand1(
-  DataFlowCall call, RetNodeEx ret, NodeEx out, Configuration config
+  DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, Configuration config
 ) {
-  viableReturnPosOutNodeCand1(call, ret.getReturnPosition(), out, config) and
+  viableReturnPosOutNodeCand1(call, pos, out, config) and
+  pos = ret.getReturnPosition() and
   Stage1::revFlow(ret, config) and
   not outBarrier(ret, config) and
   not inBarrier(out, config)
@@ -1090,7 +1105,7 @@ private predicate flowIntoCallNodeCand1(
 private int branch(NodeEx n1, Configuration conf) {
   result =
     strictcount(NodeEx n |
-      flowOutOfCallNodeCand1(_, n1, n, conf) or flowIntoCallNodeCand1(_, n1, n, conf)
+      flowOutOfCallNodeCand1(_, n1, _, n, conf) or flowIntoCallNodeCand1(_, n1, n, conf)
     )
 }
 
@@ -1102,7 +1117,7 @@ private int branch(NodeEx n1, Configuration conf) {
 private int join(NodeEx n2, Configuration conf) {
   result =
     strictcount(NodeEx n |
-      flowOutOfCallNodeCand1(_, n, n2, conf) or flowIntoCallNodeCand1(_, n, n2, conf)
+      flowOutOfCallNodeCand1(_, n, _, n2, conf) or flowIntoCallNodeCand1(_, n, n2, conf)
     )
 }
 
@@ -1115,12 +1130,13 @@ private int join(NodeEx n2, Configuration conf) {
  */
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand1(
-  DataFlowCall call, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow, Configuration config
+  DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
+  Configuration config
 ) {
-  flowOutOfCallNodeCand1(call, ret, out, config) and
+  flowOutOfCallNodeCand1(call, ret, pos, out, pragma[only_bind_into](config)) and
   exists(int b, int j |
-    b = branch(ret, config) and
-    j = join(out, config) and
+    b = branch(ret, pragma[only_bind_into](config)) and
+    j = join(out, pragma[only_bind_into](config)) and
     if b.minimum(j) <= config.fieldFlowBranchLimit()
     then allowsFieldFlow = true
     else allowsFieldFlow = false
@@ -1156,7 +1172,9 @@ private signature module StageSig {
 
   predicate callMayFlowThroughRev(DataFlowCall call, Configuration config);
 
-  predicate parameterMayFlowThrough(ParamNodeEx p, DataFlowCallable c, Ap ap, Configuration config);
+  predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config);
+
+  predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config);
 
   predicate storeStepCand(
     NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, DataFlowType contentType,
@@ -1222,7 +1240,8 @@ private module MkStage<StageSig PrevStage> {
     );
 
     predicate flowOutOfCall(
-      DataFlowCall call, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow, Configuration config
+      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
+      Configuration config
     );
 
     predicate flowIntoCall(
@@ -1247,14 +1266,16 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate flowThroughOutOfCall(
-      DataFlowCall call, CcCall ccc, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow,
-      Configuration config
+      DataFlowCall call, CcCall ccc, RetNodeEx ret, ReturnKindExt kind, NodeEx out,
+      boolean allowsFieldFlow, Configuration config
     ) {
-      flowOutOfCall(call, ret, out, allowsFieldFlow, pragma[only_bind_into](config)) and
-      PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
-      PrevStage::parameterMayFlowThrough(_, ret.getEnclosingCallable(), _,
-        pragma[only_bind_into](config)) and
-      matchesCall(ccc, call)
+      exists(ReturnPosition pos |
+        flowOutOfCall(call, ret, pos, out, allowsFieldFlow, pragma[only_bind_into](config)) and
+        kind = pos.getKind() and
+        PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
+        PrevStage::returnMayFlowThrough(ret, pos, pragma[only_bind_into](config)) and
+        matchesCall(ccc, call)
+      )
     }
 
     /**
@@ -1262,29 +1283,32 @@ private module MkStage<StageSig PrevStage> {
      * configuration `config`.
      *
      * The call context `cc` records whether the node is reached through an
-     * argument in a call, and if so, `argAp` records the access path of that
-     * argument.
+     * argument in a call, and if so, `summaryCtx` and `argAp` record the
+     * corresponding parameter and access path of that argument, respectively.
      */
     pragma[nomagic]
     additional predicate fwdFlow(
-      NodeEx node, FlowState state, Cc cc, ApOption argAp, Ap ap, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      Configuration config
     ) {
-      fwdFlow0(node, state, cc, argAp, ap, config) and
+      fwdFlow0(node, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::revFlow(node, state, unbindApa(getApprox(ap)), config) and
       filter(node, state, ap, config)
     }
 
     pragma[nomagic]
     private predicate fwdFlow0(
-      NodeEx node, FlowState state, Cc cc, ApOption argAp, Ap ap, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      Configuration config
     ) {
       sourceNode(node, state, config) and
       (if hasSourceCallCtx(config) then cc = ccSomeCall() else cc = ccNone()) and
       argAp = apNone() and
+      summaryCtx = TParamNodeNone() and
       ap = getApNil(node)
       or
       exists(NodeEx mid, FlowState state0, Ap ap0, LocalCc localCc |
-        fwdFlow(mid, state0, cc, argAp, ap0, config) and
+        fwdFlow(mid, state0, cc, summaryCtx, argAp, ap0, config) and
         localCc = getLocalCc(mid, cc)
       |
         localStep(mid, state0, node, state, true, _, config, localCc) and
@@ -1295,65 +1319,72 @@ private module MkStage<StageSig PrevStage> {
       )
       or
       exists(NodeEx mid |
-        fwdFlow(mid, pragma[only_bind_into](state), _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, pragma[only_bind_into](config)) and
         jumpStep(mid, node, config) and
         cc = ccNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone()
       )
       or
       exists(NodeEx mid, ApNil nil |
-        fwdFlow(mid, state, _, _, nil, pragma[only_bind_into](config)) and
+        fwdFlow(mid, state, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStep(mid, node, config) and
         cc = ccNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone() and
         ap = getApNil(node)
       )
       or
       exists(NodeEx mid, FlowState state0, ApNil nil |
-        fwdFlow(mid, state0, _, _, nil, pragma[only_bind_into](config)) and
+        fwdFlow(mid, state0, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStateStep(mid, state0, node, state, config) and
         cc = ccNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone() and
         ap = getApNil(node)
       )
       or
       // store
       exists(TypedContent tc, Ap ap0 |
-        fwdFlowStore(_, ap0, tc, node, state, cc, argAp, config) and
+        fwdFlowStore(_, ap0, tc, node, state, cc, summaryCtx, argAp, config) and
         ap = apCons(tc, ap0)
       )
       or
       // read
       exists(Ap ap0, Content c |
-        fwdFlowRead(ap0, c, _, node, state, cc, argAp, config) and
+        fwdFlowRead(ap0, c, _, node, state, cc, summaryCtx, argAp, config) and
         fwdFlowConsCand(ap0, c, ap, config)
       )
       or
       // flow into a callable
       exists(ApApprox apa |
-        fwdFlowIn(_, node, state, _, cc, _, ap, config) and
+        fwdFlowIn(_, node, state, _, cc, _, _, ap, config) and
         apa = getApprox(ap) and
-        if PrevStage::parameterMayFlowThrough(node, _, apa, config)
-        then argAp = apSome(ap)
-        else argAp = apNone()
+        if PrevStage::parameterMayFlowThrough(node, apa, config)
+        then (
+          summaryCtx = TParamNodeSome(node.asNode()) and argAp = apSome(ap)
+        ) else (
+          summaryCtx = TParamNodeNone() and argAp = apNone()
+        )
       )
       or
       // flow out of a callable
-      fwdFlowOutNotFromArg(node, state, cc, argAp, ap, config)
+      fwdFlowOutNotFromArg(node, state, cc, summaryCtx, argAp, ap, config)
       or
-      exists(DataFlowCall call, Ap argAp0 |
-        fwdFlowOutFromArg(call, node, state, argAp0, ap, config) and
-        fwdFlowIsEntered(call, cc, argAp, argAp0, config)
+      // flow through a callable
+      exists(DataFlowCall call, ParamNode summaryCtx0, Ap argAp0 |
+        fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, config) and
+        fwdFlowIsEntered(call, cc, summaryCtx, argAp, summaryCtx0, argAp0, config)
       )
     }
 
     pragma[nomagic]
     private predicate fwdFlowStore(
-      NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc, ApOption argAp,
-      Configuration config
+      NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc,
+      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
     ) {
       exists(DataFlowType contentType |
-        fwdFlow(node1, state, cc, argAp, ap1, config) and
+        fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, config) and
         PrevStage::storeStepCand(node1, unbindApa(getApprox(ap1)), tc, node2, contentType, config) and
         typecheckStore(ap1, contentType)
       )
@@ -1366,7 +1397,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowConsCand(Ap cons, Content c, Ap tail, Configuration config) {
       exists(TypedContent tc |
-        fwdFlowStore(_, tail, tc, _, _, _, _, config) and
+        fwdFlowStore(_, tail, tc, _, _, _, _, _, config) and
         tc.getContent() = c and
         cons = apCons(tc, tail)
       )
@@ -1374,21 +1405,21 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowRead(
-      Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc, ApOption argAp,
-      Configuration config
+      Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc,
+      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
     ) {
-      fwdFlow(node1, state, cc, argAp, ap, config) and
+      fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, c, node2, config) and
       getHeadContent(ap) = c
     }
 
     pragma[nomagic]
     private predicate fwdFlowIn(
-      DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, Cc innercc, ApOption argAp,
-      Ap ap, Configuration config
+      DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, Cc innercc,
+      ParamNodeOption summaryCtx, ApOption argAp, Ap ap, Configuration config
     ) {
       exists(ArgNodeEx arg, boolean allowsFieldFlow |
-        fwdFlow(arg, state, outercc, argAp, ap, config) and
+        fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, config) and
         flowIntoCall(call, arg, p, allowsFieldFlow, config) and
         innercc = getCallContextCall(call, p.getEnclosingCallable(), outercc) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
@@ -1397,14 +1428,15 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowOutNotFromArg(
-      NodeEx out, FlowState state, Cc ccOut, ApOption argAp, Ap ap, Configuration config
+      NodeEx out, FlowState state, Cc ccOut, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      Configuration config
     ) {
       exists(
         DataFlowCall call, RetNodeEx ret, boolean allowsFieldFlow, CcNoCall innercc,
         DataFlowCallable inner
       |
-        fwdFlow(ret, state, innercc, argAp, ap, config) and
-        flowOutOfCall(call, ret, out, allowsFieldFlow, config) and
+        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, config) and
+        flowOutOfCall(call, ret, _, out, allowsFieldFlow, config) and
         inner = ret.getEnclosingCallable() and
         ccOut = getCallContextReturn(inner, call, innercc) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
@@ -1413,12 +1445,14 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowOutFromArg(
-      DataFlowCall call, NodeEx out, FlowState state, Ap argAp, Ap ap, Configuration config
+      DataFlowCall call, NodeEx out, FlowState state, ParamNode summaryCtx, Ap argAp, Ap ap,
+      Configuration config
     ) {
-      exists(RetNodeEx ret, boolean allowsFieldFlow, CcCall ccc |
-        fwdFlow(ret, state, ccc, apSome(argAp), ap, config) and
-        flowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, config) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
+      exists(RetNodeEx ret, ReturnKindExt kind, boolean allowsFieldFlow, CcCall ccc |
+        fwdFlow(ret, state, ccc, TParamNodeSome(summaryCtx), apSome(argAp), ap, config) and
+        flowThroughOutOfCall(call, ccc, ret, kind, out, allowsFieldFlow, config) and
+        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
+        parameterFlowThroughAllowed(summaryCtx, kind)
       )
     }
 
@@ -1428,11 +1462,13 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate fwdFlowIsEntered(
-      DataFlowCall call, Cc cc, ApOption argAp, Ap ap, Configuration config
+      DataFlowCall call, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, ParamNode p, Ap ap,
+      Configuration config
     ) {
-      exists(ParamNodeEx p |
-        fwdFlowIn(call, p, _, cc, _, argAp, ap, config) and
-        PrevStage::parameterMayFlowThrough(p, _, unbindApa(getApprox(ap)), config)
+      exists(ParamNodeEx param |
+        fwdFlowIn(call, param, _, cc, _, summaryCtx, argAp, ap, config) and
+        PrevStage::parameterMayFlowThrough(param, unbindApa(getApprox(ap)), config) and
+        p = param.asNode()
       )
     }
 
@@ -1440,146 +1476,149 @@ private module MkStage<StageSig PrevStage> {
     private predicate storeStepFwd(
       NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, Ap ap2, Configuration config
     ) {
-      fwdFlowStore(node1, ap1, tc, node2, _, _, _, config) and
+      fwdFlowStore(node1, ap1, tc, node2, _, _, _, _, config) and
       ap2 = apCons(tc, ap1) and
-      fwdFlowRead(ap2, tc.getContent(), _, _, _, _, _, config)
+      fwdFlowRead(ap2, tc.getContent(), _, _, _, _, _, _, config)
     }
 
     private predicate readStepFwd(
       NodeEx n1, Ap ap1, Content c, NodeEx n2, Ap ap2, Configuration config
     ) {
-      fwdFlowRead(ap1, c, n1, n2, _, _, _, config) and
+      fwdFlowRead(ap1, c, n1, n2, _, _, _, _, config) and
       fwdFlowConsCand(ap1, c, ap2, config)
     }
 
     pragma[nomagic]
-    private predicate callMayFlowThroughFwd(DataFlowCall call, Configuration config) {
-      exists(Ap argAp0, NodeEx out, FlowState state, Cc cc, ApOption argAp, Ap ap |
-        fwdFlow(out, state, pragma[only_bind_into](cc), pragma[only_bind_into](argAp), ap,
-          pragma[only_bind_into](config)) and
-        fwdFlowOutFromArg(call, out, state, argAp0, ap, config) and
-        fwdFlowIsEntered(pragma[only_bind_into](call), pragma[only_bind_into](cc),
-          pragma[only_bind_into](argAp), pragma[only_bind_into](argAp0),
-          pragma[only_bind_into](config))
-      )
+    private predicate returnFlowsThrough(
+      RetNodeEx ret, ReturnPosition pos, FlowState state, CcCall ccc, ParamNode p, Ap argAp, Ap ap,
+      Configuration config
+    ) {
+      fwdFlow(ret, state, ccc, TParamNodeSome(p), apSome(argAp), ap, config) and
+      pos = ret.getReturnPosition() and
+      parameterFlowThroughAllowed(p, pos.getKind())
     }
 
     pragma[nomagic]
     private predicate flowThroughIntoCall(
       DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
     ) {
-      flowIntoCall(call, arg, p, allowsFieldFlow, config) and
-      fwdFlow(arg, _, _, _, _, pragma[only_bind_into](config)) and
-      PrevStage::parameterMayFlowThrough(p, _, _, pragma[only_bind_into](config)) and
-      callMayFlowThroughFwd(call, pragma[only_bind_into](config))
-    }
-
-    pragma[nomagic]
-    private predicate returnNodeMayFlowThrough(
-      RetNodeEx ret, FlowState state, Ap ap, Configuration config
-    ) {
-      fwdFlow(ret, state, any(CcCall ccc), apSome(_), ap, config)
+      flowIntoCall(call, pragma[only_bind_into](arg), pragma[only_bind_into](p), allowsFieldFlow,
+        pragma[only_bind_into](config)) and
+      fwdFlow(arg, _, _, _, _, _, pragma[only_bind_into](config)) and
+      returnFlowsThrough(_, _, _, _, p.asNode(), _, _, pragma[only_bind_into](config))
     }
 
     /**
      * Holds if `node` with access path `ap` is part of a path from a source to a
      * sink in the configuration `config`.
      *
-     * The Boolean `toReturn` records whether the node must be returned from the
-     * enclosing callable in order to reach a sink, and if so, `returnAp` records
-     * the access path of the returned value.
+     * The parameter `returnCtx` records whether (and how) the node must be returned
+     * from the enclosing callable in order to reach a sink, and if so, `returnAp`
+     * records the access path of the returned value.
      */
     pragma[nomagic]
     additional predicate revFlow(
-      NodeEx node, FlowState state, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
+      NodeEx node, FlowState state, ReturnCtx returnCtx, ApOption returnAp, Ap ap,
+      Configuration config
     ) {
-      revFlow0(node, state, toReturn, returnAp, ap, config) and
-      fwdFlow(node, state, _, _, ap, config)
+      revFlow0(node, state, returnCtx, returnAp, ap, config) and
+      fwdFlow(node, state, _, _, _, ap, config)
     }
 
     pragma[nomagic]
     private predicate revFlow0(
-      NodeEx node, FlowState state, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
+      NodeEx node, FlowState state, ReturnCtx returnCtx, ApOption returnAp, Ap ap,
+      Configuration config
     ) {
-      fwdFlow(node, state, _, _, ap, config) and
+      fwdFlow(node, state, _, _, _, ap, config) and
       sinkNode(node, state, config) and
-      (if hasSinkCallCtx(config) then toReturn = true else toReturn = false) and
+      (
+        if hasSinkCallCtx(config)
+        then returnCtx = TReturnCtxNoFlowThrough()
+        else returnCtx = TReturnCtxNone()
+      ) and
       returnAp = apNone() and
       ap instanceof ApNil
       or
       exists(NodeEx mid, FlowState state0 |
         localStep(node, state, mid, state0, true, _, config, _) and
-        revFlow(mid, state0, toReturn, returnAp, ap, config)
+        revFlow(mid, state0, returnCtx, returnAp, ap, config)
       )
       or
       exists(NodeEx mid, FlowState state0, ApNil nil |
-        fwdFlow(node, pragma[only_bind_into](state), _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(node, pragma[only_bind_into](state), _, _, _, ap, pragma[only_bind_into](config)) and
         localStep(node, pragma[only_bind_into](state), mid, state0, false, _, config, _) and
-        revFlow(mid, state0, toReturn, returnAp, nil, pragma[only_bind_into](config)) and
+        revFlow(mid, state0, returnCtx, returnAp, nil, pragma[only_bind_into](config)) and
         ap instanceof ApNil
       )
       or
       exists(NodeEx mid |
         jumpStep(node, mid, config) and
         revFlow(mid, state, _, _, ap, config) and
-        toReturn = false and
+        returnCtx = TReturnCtxNone() and
         returnAp = apNone()
       )
       or
       exists(NodeEx mid, ApNil nil |
-        fwdFlow(node, _, _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(node, _, _, _, _, ap, pragma[only_bind_into](config)) and
         additionalJumpStep(node, mid, config) and
         revFlow(pragma[only_bind_into](mid), state, _, _, nil, pragma[only_bind_into](config)) and
-        toReturn = false and
+        returnCtx = TReturnCtxNone() and
         returnAp = apNone() and
         ap instanceof ApNil
       )
       or
       exists(NodeEx mid, FlowState state0, ApNil nil |
-        fwdFlow(node, _, _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(node, _, _, _, _, ap, pragma[only_bind_into](config)) and
         additionalJumpStateStep(node, state, mid, state0, config) and
         revFlow(pragma[only_bind_into](mid), pragma[only_bind_into](state0), _, _, nil,
           pragma[only_bind_into](config)) and
-        toReturn = false and
+        returnCtx = TReturnCtxNone() and
         returnAp = apNone() and
         ap instanceof ApNil
       )
       or
       // store
       exists(Ap ap0, Content c |
-        revFlowStore(ap0, c, ap, node, state, _, _, toReturn, returnAp, config) and
+        revFlowStore(ap0, c, ap, node, state, _, _, returnCtx, returnAp, config) and
         revFlowConsCand(ap0, c, ap, config)
       )
       or
       // read
       exists(NodeEx mid, Ap ap0 |
-        revFlow(mid, state, toReturn, returnAp, ap0, config) and
+        revFlow(mid, state, returnCtx, returnAp, ap0, config) and
         readStepFwd(node, ap, _, mid, ap0, config)
       )
       or
       // flow into a callable
       revFlowInNotToReturn(node, state, returnAp, ap, config) and
-      toReturn = false
+      returnCtx = TReturnCtxNone()
       or
-      exists(DataFlowCall call, Ap returnAp0 |
-        revFlowInToReturn(call, node, state, returnAp0, ap, config) and
-        revFlowIsReturned(call, toReturn, returnAp, returnAp0, config)
+      // flow through a callable
+      exists(DataFlowCall call, ReturnPosition returnPos0, Ap returnAp0 |
+        revFlowInToReturn(call, node, state, returnPos0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnPos0, returnAp0, config)
       )
       or
       // flow out of a callable
-      revFlowOut(_, node, state, _, _, ap, config) and
-      toReturn = true and
-      if returnNodeMayFlowThrough(node, state, ap, config)
-      then returnAp = apSome(ap)
-      else returnAp = apNone()
+      exists(ReturnPosition pos |
+        revFlowOut(_, node, pos, state, _, _, ap, config) and
+        if returnFlowsThrough(node, pos, state, _, _, _, ap, config)
+        then (
+          returnCtx = TReturnCtxMaybeFlowThrough(pos) and
+          returnAp = apSome(ap)
+        ) else (
+          returnCtx = TReturnCtxNoFlowThrough() and returnAp = apNone()
+        )
+      )
     }
 
     pragma[nomagic]
     private predicate revFlowStore(
       Ap ap0, Content c, Ap ap, NodeEx node, FlowState state, TypedContent tc, NodeEx mid,
-      boolean toReturn, ApOption returnAp, Configuration config
+      ReturnCtx returnCtx, ApOption returnAp, Configuration config
     ) {
-      revFlow(mid, state, toReturn, returnAp, ap0, config) and
+      revFlow(mid, state, returnCtx, returnAp, ap0, config) and
       storeStepFwd(node, ap, tc, mid, ap0, config) and
       tc.getContent() = c
     }
@@ -1599,12 +1638,12 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate revFlowOut(
-      DataFlowCall call, RetNodeEx ret, FlowState state, boolean toReturn, ApOption returnAp, Ap ap,
-      Configuration config
+      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, FlowState state, ReturnCtx returnCtx,
+      ApOption returnAp, Ap ap, Configuration config
     ) {
       exists(NodeEx out, boolean allowsFieldFlow |
-        revFlow(out, state, toReturn, returnAp, ap, config) and
-        flowOutOfCall(call, ret, out, allowsFieldFlow, config) and
+        revFlow(out, state, returnCtx, returnAp, ap, config) and
+        flowOutOfCall(call, ret, pos, out, allowsFieldFlow, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
@@ -1614,7 +1653,7 @@ private module MkStage<StageSig PrevStage> {
       ArgNodeEx arg, FlowState state, ApOption returnAp, Ap ap, Configuration config
     ) {
       exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(p, state, false, returnAp, ap, config) and
+        revFlow(p, state, TReturnCtxNone(), returnAp, ap, config) and
         flowIntoCall(_, arg, p, allowsFieldFlow, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
@@ -1622,12 +1661,14 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate revFlowInToReturn(
-      DataFlowCall call, ArgNodeEx arg, FlowState state, Ap returnAp, Ap ap, Configuration config
+      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnPosition returnPos, Ap returnAp,
+      Ap ap, Configuration config
     ) {
       exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(p, state, true, apSome(returnAp), ap, config) and
+        revFlow(p, state, TReturnCtxMaybeFlowThrough(returnPos), apSome(returnAp), ap, config) and
         flowThroughIntoCall(call, arg, p, allowsFieldFlow, config) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
+        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
+        parameterFlowThroughAllowed(p.asNode(), returnPos.getKind())
       )
     }
 
@@ -1638,11 +1679,12 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate revFlowIsReturned(
-      DataFlowCall call, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
+      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnPosition pos, Ap ap,
+      Configuration config
     ) {
       exists(RetNodeEx ret, FlowState state, CcCall ccc |
-        revFlowOut(call, ret, state, toReturn, returnAp, ap, config) and
-        fwdFlow(ret, state, ccc, apSome(_), ap, config) and
+        revFlowOut(call, ret, pos, state, returnCtx, returnAp, ap, config) and
+        returnFlowsThrough(ret, pos, state, ccc, _, _, ap, config) and
         matchesCall(ccc, call)
       )
     }
@@ -1713,40 +1755,39 @@ private module MkStage<StageSig PrevStage> {
       validAp(ap, config)
     }
 
-    pragma[noinline]
-    private predicate parameterFlow(
-      ParamNodeEx p, Ap ap, Ap ap0, DataFlowCallable c, Configuration config
+    pragma[nomagic]
+    private predicate parameterFlowsThroughRev(
+      ParamNodeEx p, Ap ap, ReturnPosition returnPos, Configuration config
     ) {
-      revFlow(p, _, true, apSome(ap0), ap, config) and
-      c = p.getEnclosingCallable()
+      revFlow(p, _, TReturnCtxMaybeFlowThrough(returnPos), apSome(_), ap, config) and
+      parameterFlowThroughAllowed(p.asNode(), returnPos.getKind())
     }
 
-    predicate parameterMayFlowThrough(ParamNodeEx p, DataFlowCallable c, Ap ap, Configuration config) {
-      exists(RetNodeEx ret, FlowState state, Ap ap0, ReturnKindExt kind, ParameterPosition pos |
-        parameterFlow(p, ap, ap0, c, config) and
-        c = ret.getEnclosingCallable() and
-        revFlow(pragma[only_bind_into](ret), pragma[only_bind_into](state), true, apSome(_),
-          pragma[only_bind_into](ap0), pragma[only_bind_into](config)) and
-        fwdFlow(ret, state, any(CcCall ccc), apSome(ap), ap0, config) and
-        kind = ret.getKind() and
-        p.getPosition() = pos and
-        // we don't expect a parameter to return stored in itself, unless explicitly allowed
-        (
-          not kind.(ParamUpdateReturnKind).getPosition() = pos
-          or
-          p.allowParameterReturnInSelf()
-        )
+    pragma[nomagic]
+    predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
+      exists(RetNodeEx ret, ReturnPosition pos |
+        returnFlowsThrough(ret, pos, _, _, p.asNode(), ap, _, config) and
+        parameterFlowsThroughRev(p, ap, pos, config)
+      )
+    }
+
+    pragma[nomagic]
+    predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config) {
+      exists(ParamNodeEx p, Ap ap |
+        returnFlowsThrough(ret, pos, _, _, p.asNode(), ap, _, config) and
+        parameterFlowsThroughRev(p, ap, pos, config)
       )
     }
 
     pragma[nomagic]
     predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
       exists(
-        Ap returnAp0, ArgNodeEx arg, FlowState state, boolean toReturn, ApOption returnAp, Ap ap
+        ReturnPosition returnPos0, Ap returnAp0, ArgNodeEx arg, FlowState state,
+        ReturnCtx returnCtx, ApOption returnAp, Ap ap
       |
-        revFlow(arg, state, toReturn, returnAp, ap, config) and
-        revFlowInToReturn(call, arg, state, returnAp0, ap, config) and
-        revFlowIsReturned(call, toReturn, returnAp, returnAp0, config)
+        revFlow(arg, state, returnCtx, returnAp, ap, config) and
+        revFlowInToReturn(call, arg, state, returnPos0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnPos0, returnAp0, config)
       )
     }
 
@@ -1754,13 +1795,13 @@ private module MkStage<StageSig PrevStage> {
       boolean fwd, int nodes, int fields, int conscand, int states, int tuples, Configuration config
     ) {
       fwd = true and
-      nodes = count(NodeEx node | fwdFlow(node, _, _, _, _, config)) and
+      nodes = count(NodeEx node | fwdFlow(node, _, _, _, _, _, config)) and
       fields = count(TypedContent f0 | fwdConsCand(f0, _, config)) and
       conscand = count(TypedContent f0, Ap ap | fwdConsCand(f0, ap, config)) and
-      states = count(FlowState state | fwdFlow(_, state, _, _, _, config)) and
+      states = count(FlowState state | fwdFlow(_, state, _, _, _, _, config)) and
       tuples =
-        count(NodeEx n, FlowState state, Cc cc, ApOption argAp, Ap ap |
-          fwdFlow(n, state, cc, argAp, ap, config)
+        count(NodeEx n, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap |
+          fwdFlow(n, state, cc, summaryCtx, argAp, ap, config)
         )
       or
       fwd = false and
@@ -1769,8 +1810,8 @@ private module MkStage<StageSig PrevStage> {
       conscand = count(TypedContent f0, Ap ap | consCand(f0, ap, config)) and
       states = count(FlowState state | revFlow(_, state, _, _, _, config)) and
       tuples =
-        count(NodeEx n, FlowState state, boolean b, ApOption retAp, Ap ap |
-          revFlow(n, state, b, retAp, ap, config)
+        count(NodeEx n, FlowState state, ReturnCtx returnCtx, ApOption retAp, Ap ap |
+          revFlow(n, state, returnCtx, retAp, ap, config)
         )
     }
     /* End: Stage logic. */
@@ -1915,7 +1956,7 @@ private module Stage2Param implements MkStage<Stage1>::StageParam {
     exists(lcc)
   }
 
-  predicate flowOutOfCall = flowOutOfCallNodeCand1/5;
+  predicate flowOutOfCall = flowOutOfCallNodeCand1/6;
 
   predicate flowIntoCall = flowIntoCallNodeCand1/5;
 
@@ -1951,9 +1992,10 @@ private module Stage2 implements StageSig {
 
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand2(
-  DataFlowCall call, RetNodeEx node1, NodeEx node2, boolean allowsFieldFlow, Configuration config
+  DataFlowCall call, RetNodeEx node1, ReturnPosition pos, NodeEx node2, boolean allowsFieldFlow,
+  Configuration config
 ) {
-  flowOutOfCallNodeCand1(call, node1, node2, allowsFieldFlow, config) and
+  flowOutOfCallNodeCand1(call, node1, pos, node2, allowsFieldFlow, config) and
   Stage2::revFlow(node2, pragma[only_bind_into](config)) and
   Stage2::revFlowAlias(node1, pragma[only_bind_into](config))
 }
@@ -2021,8 +2063,8 @@ private module LocalFlowBigStep {
     exists(NodeEx next | Stage2::revFlow(next, state, config) |
       jumpStep(node, next, config) or
       additionalJumpStep(node, next, config) or
-      flowIntoCallNodeCand1(_, node, next, config) or
-      flowOutOfCallNodeCand1(_, node, next, config) or
+      flowIntoCallNodeCand2(_, node, next, _, config) or
+      flowOutOfCallNodeCand2(_, node, _, next, _, config) or
       Stage2::storeStepCand(node, _, _, next, _, config) or
       Stage2::readStepCand(node, _, next, config)
     )
@@ -2163,7 +2205,7 @@ private module Stage3Param implements MkStage<Stage2>::StageParam {
     localFlowBigStep(node1, state1, node2, state2, preservesValue, ap, config, _) and exists(lcc)
   }
 
-  predicate flowOutOfCall = flowOutOfCallNodeCand2/5;
+  predicate flowOutOfCall = flowOutOfCallNodeCand2/6;
 
   predicate flowIntoCall = flowIntoCallNodeCand2/5;
 
@@ -2233,8 +2275,9 @@ private predicate flowCandSummaryCtx(
   NodeEx node, FlowState state, AccessPathFront argApf, Configuration config
 ) {
   exists(AccessPathFront apf |
-    Stage3::revFlow(node, state, true, _, apf, config) and
-    Stage3::fwdFlow(node, state, any(Stage3::CcCall ccc), TAccessPathFrontSome(argApf), apf, config)
+    Stage3::revFlow(node, state, TReturnCtxMaybeFlowThrough(_), _, apf, config) and
+    Stage3::fwdFlow(node, state, any(Stage3::CcCall ccc), _, TAccessPathFrontSome(argApf), apf,
+      config)
   )
 }
 
@@ -2468,10 +2511,11 @@ private module Stage4Param implements MkStage<Stage3>::StageParam {
 
   pragma[nomagic]
   predicate flowOutOfCall(
-    DataFlowCall call, RetNodeEx node1, NodeEx node2, boolean allowsFieldFlow, Configuration config
+    DataFlowCall call, RetNodeEx node1, ReturnPosition pos, NodeEx node2, boolean allowsFieldFlow,
+    Configuration config
   ) {
     exists(FlowState state |
-      flowOutOfCallNodeCand2(call, node1, node2, allowsFieldFlow, config) and
+      flowOutOfCallNodeCand2(call, node1, pos, node2, allowsFieldFlow, config) and
       PrevStage::revFlow(node2, pragma[only_bind_into](state), _, pragma[only_bind_into](config)) and
       PrevStage::revFlowAlias(node1, pragma[only_bind_into](state), _,
         pragma[only_bind_into](config))
@@ -2508,13 +2552,13 @@ private Configuration unbindConf(Configuration conf) {
 
 pragma[nomagic]
 private predicate nodeMayUseSummary0(
-  NodeEx n, DataFlowCallable c, FlowState state, AccessPathApprox apa, Configuration config
+  NodeEx n, ParamNodeEx p, FlowState state, AccessPathApprox apa, Configuration config
 ) {
   exists(AccessPathApprox apa0 |
-    Stage4::parameterMayFlowThrough(_, c, _, _) and
-    Stage4::revFlow(n, state, true, _, apa0, config) and
-    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TAccessPathApproxSome(apa), apa0, config) and
-    n.getEnclosingCallable() = c
+    Stage4::parameterMayFlowThrough(p, _, _) and
+    Stage4::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
+    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TParamNodeSome(p.asNode()),
+      TAccessPathApproxSome(apa), apa0, config)
   )
 }
 
@@ -2522,9 +2566,9 @@ pragma[nomagic]
 private predicate nodeMayUseSummary(
   NodeEx n, FlowState state, AccessPathApprox apa, Configuration config
 ) {
-  exists(DataFlowCallable c |
-    Stage4::parameterMayFlowThrough(_, c, apa, config) and
-    nodeMayUseSummary0(n, c, state, apa, config)
+  exists(ParamNodeEx p |
+    Stage4::parameterMayFlowThrough(p, apa, config) and
+    nodeMayUseSummary0(n, p, state, apa, config)
   )
 }
 
@@ -2532,7 +2576,7 @@ private newtype TSummaryCtx =
   TSummaryCtxNone() or
   TSummaryCtxSome(ParamNodeEx p, FlowState state, AccessPath ap) {
     exists(Configuration config |
-      Stage4::parameterMayFlowThrough(p, _, ap.getApprox(), config) and
+      Stage4::parameterMayFlowThrough(p, ap.getApprox(), config) and
       Stage4::revFlow(p, state, _, config)
     )
   }
@@ -3453,17 +3497,11 @@ private predicate paramFlowsThrough(
   ReturnKindExt kind, FlowState state, CallContextCall cc, SummaryCtxSome sc, AccessPath ap,
   AccessPathApprox apa, Configuration config
 ) {
-  exists(PathNodeMid mid, RetNodeEx ret, ParameterPosition pos |
+  exists(PathNodeMid mid, RetNodeEx ret |
     pathNode(mid, ret, state, cc, sc, ap, config, _) and
     kind = ret.getKind() and
     apa = ap.getApprox() and
-    pos = sc.getParameterPos() and
-    // we don't expect a parameter to return stored in itself, unless explicitly allowed
-    (
-      not kind.(ParamUpdateReturnKind).getPosition() = pos
-      or
-      sc.getParamNode().allowParameterReturnInSelf()
-    )
+    parameterFlowThroughAllowed(sc.getParamNode().asNode(), kind)
   )
 }
 
diff --git a/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImplForPathname.qll b/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImplForPathname.qll
index 3c41b1876dc..a52ad110662 100644
--- a/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImplForPathname.qll
+++ b/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImplForPathname.qll
@@ -319,8 +319,6 @@ private class ParamNodeEx extends NodeEx {
   }
 
   ParameterPosition getPosition() { this.isParameterOf(_, result) }
-
-  predicate allowParameterReturnInSelf() { allowParameterReturnInSelfCached(this.asNode()) }
 }
 
 private class RetNodeEx extends NodeEx {
@@ -608,6 +606,21 @@ private predicate hasSinkCallCtx(Configuration config) {
   )
 }
 
+/**
+ * Holds if flow from `p` to a return node of kind `kind` is allowed.
+ *
+ * We don't expect a parameter to return stored in itself, unless
+ * explicitly allowed
+ */
+bindingset[p, kind]
+private predicate parameterFlowThroughAllowed(ParamNode p, ReturnKindExt kind) {
+  exists(ParameterPosition pos | p.isParameterOf(_, pos) |
+    not kind.(ParamUpdateReturnKind).getPosition() = pos
+    or
+    allowParameterReturnInSelfCached(p)
+  )
+}
+
 private module Stage1 implements StageSig {
   class Ap = Unit;
 
@@ -981,21 +994,22 @@ private module Stage1 implements StageSig {
    * candidate for the origin of a summary.
    */
   pragma[nomagic]
-  predicate parameterMayFlowThrough(ParamNodeEx p, DataFlowCallable c, Ap ap, Configuration config) {
-    exists(ReturnKindExt kind |
+  predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
+    exists(DataFlowCallable c, ReturnKindExt kind |
       throughFlowNodeCand(p, config) and
       returnFlowCallableNodeCand(c, kind, config) and
       p.getEnclosingCallable() = c and
       exists(ap) and
-      // we don't expect a parameter to return stored in itself, unless explicitly allowed
-      (
-        not kind.(ParamUpdateReturnKind).getPosition() = p.getPosition()
-        or
-        p.allowParameterReturnInSelf()
-      )
+      parameterFlowThroughAllowed(p.asNode(), kind)
     )
   }
 
+  pragma[nomagic]
+  predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config) {
+    throughFlowNodeCand(ret, config) and
+    pos = ret.getReturnPosition()
+  }
+
   pragma[nomagic]
   predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
     exists(ArgNodeEx arg, boolean toReturn |
@@ -1052,9 +1066,10 @@ private predicate viableReturnPosOutNodeCand1(
  */
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand1(
-  DataFlowCall call, RetNodeEx ret, NodeEx out, Configuration config
+  DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, Configuration config
 ) {
-  viableReturnPosOutNodeCand1(call, ret.getReturnPosition(), out, config) and
+  viableReturnPosOutNodeCand1(call, pos, out, config) and
+  pos = ret.getReturnPosition() and
   Stage1::revFlow(ret, config) and
   not outBarrier(ret, config) and
   not inBarrier(out, config)
@@ -1090,7 +1105,7 @@ private predicate flowIntoCallNodeCand1(
 private int branch(NodeEx n1, Configuration conf) {
   result =
     strictcount(NodeEx n |
-      flowOutOfCallNodeCand1(_, n1, n, conf) or flowIntoCallNodeCand1(_, n1, n, conf)
+      flowOutOfCallNodeCand1(_, n1, _, n, conf) or flowIntoCallNodeCand1(_, n1, n, conf)
     )
 }
 
@@ -1102,7 +1117,7 @@ private int branch(NodeEx n1, Configuration conf) {
 private int join(NodeEx n2, Configuration conf) {
   result =
     strictcount(NodeEx n |
-      flowOutOfCallNodeCand1(_, n, n2, conf) or flowIntoCallNodeCand1(_, n, n2, conf)
+      flowOutOfCallNodeCand1(_, n, _, n2, conf) or flowIntoCallNodeCand1(_, n, n2, conf)
     )
 }
 
@@ -1115,12 +1130,13 @@ private int join(NodeEx n2, Configuration conf) {
  */
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand1(
-  DataFlowCall call, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow, Configuration config
+  DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
+  Configuration config
 ) {
-  flowOutOfCallNodeCand1(call, ret, out, config) and
+  flowOutOfCallNodeCand1(call, ret, pos, out, pragma[only_bind_into](config)) and
   exists(int b, int j |
-    b = branch(ret, config) and
-    j = join(out, config) and
+    b = branch(ret, pragma[only_bind_into](config)) and
+    j = join(out, pragma[only_bind_into](config)) and
     if b.minimum(j) <= config.fieldFlowBranchLimit()
     then allowsFieldFlow = true
     else allowsFieldFlow = false
@@ -1156,7 +1172,9 @@ private signature module StageSig {
 
   predicate callMayFlowThroughRev(DataFlowCall call, Configuration config);
 
-  predicate parameterMayFlowThrough(ParamNodeEx p, DataFlowCallable c, Ap ap, Configuration config);
+  predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config);
+
+  predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config);
 
   predicate storeStepCand(
     NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, DataFlowType contentType,
@@ -1222,7 +1240,8 @@ private module MkStage<StageSig PrevStage> {
     );
 
     predicate flowOutOfCall(
-      DataFlowCall call, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow, Configuration config
+      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
+      Configuration config
     );
 
     predicate flowIntoCall(
@@ -1247,14 +1266,16 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate flowThroughOutOfCall(
-      DataFlowCall call, CcCall ccc, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow,
-      Configuration config
+      DataFlowCall call, CcCall ccc, RetNodeEx ret, ReturnKindExt kind, NodeEx out,
+      boolean allowsFieldFlow, Configuration config
     ) {
-      flowOutOfCall(call, ret, out, allowsFieldFlow, pragma[only_bind_into](config)) and
-      PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
-      PrevStage::parameterMayFlowThrough(_, ret.getEnclosingCallable(), _,
-        pragma[only_bind_into](config)) and
-      matchesCall(ccc, call)
+      exists(ReturnPosition pos |
+        flowOutOfCall(call, ret, pos, out, allowsFieldFlow, pragma[only_bind_into](config)) and
+        kind = pos.getKind() and
+        PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
+        PrevStage::returnMayFlowThrough(ret, pos, pragma[only_bind_into](config)) and
+        matchesCall(ccc, call)
+      )
     }
 
     /**
@@ -1262,29 +1283,32 @@ private module MkStage<StageSig PrevStage> {
      * configuration `config`.
      *
      * The call context `cc` records whether the node is reached through an
-     * argument in a call, and if so, `argAp` records the access path of that
-     * argument.
+     * argument in a call, and if so, `summaryCtx` and `argAp` record the
+     * corresponding parameter and access path of that argument, respectively.
      */
     pragma[nomagic]
     additional predicate fwdFlow(
-      NodeEx node, FlowState state, Cc cc, ApOption argAp, Ap ap, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      Configuration config
     ) {
-      fwdFlow0(node, state, cc, argAp, ap, config) and
+      fwdFlow0(node, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::revFlow(node, state, unbindApa(getApprox(ap)), config) and
       filter(node, state, ap, config)
     }
 
     pragma[nomagic]
     private predicate fwdFlow0(
-      NodeEx node, FlowState state, Cc cc, ApOption argAp, Ap ap, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      Configuration config
     ) {
       sourceNode(node, state, config) and
       (if hasSourceCallCtx(config) then cc = ccSomeCall() else cc = ccNone()) and
       argAp = apNone() and
+      summaryCtx = TParamNodeNone() and
       ap = getApNil(node)
       or
       exists(NodeEx mid, FlowState state0, Ap ap0, LocalCc localCc |
-        fwdFlow(mid, state0, cc, argAp, ap0, config) and
+        fwdFlow(mid, state0, cc, summaryCtx, argAp, ap0, config) and
         localCc = getLocalCc(mid, cc)
       |
         localStep(mid, state0, node, state, true, _, config, localCc) and
@@ -1295,65 +1319,72 @@ private module MkStage<StageSig PrevStage> {
       )
       or
       exists(NodeEx mid |
-        fwdFlow(mid, pragma[only_bind_into](state), _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, pragma[only_bind_into](config)) and
         jumpStep(mid, node, config) and
         cc = ccNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone()
       )
       or
       exists(NodeEx mid, ApNil nil |
-        fwdFlow(mid, state, _, _, nil, pragma[only_bind_into](config)) and
+        fwdFlow(mid, state, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStep(mid, node, config) and
         cc = ccNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone() and
         ap = getApNil(node)
       )
       or
       exists(NodeEx mid, FlowState state0, ApNil nil |
-        fwdFlow(mid, state0, _, _, nil, pragma[only_bind_into](config)) and
+        fwdFlow(mid, state0, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStateStep(mid, state0, node, state, config) and
         cc = ccNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone() and
         ap = getApNil(node)
       )
       or
       // store
       exists(TypedContent tc, Ap ap0 |
-        fwdFlowStore(_, ap0, tc, node, state, cc, argAp, config) and
+        fwdFlowStore(_, ap0, tc, node, state, cc, summaryCtx, argAp, config) and
         ap = apCons(tc, ap0)
       )
       or
       // read
       exists(Ap ap0, Content c |
-        fwdFlowRead(ap0, c, _, node, state, cc, argAp, config) and
+        fwdFlowRead(ap0, c, _, node, state, cc, summaryCtx, argAp, config) and
         fwdFlowConsCand(ap0, c, ap, config)
       )
       or
       // flow into a callable
       exists(ApApprox apa |
-        fwdFlowIn(_, node, state, _, cc, _, ap, config) and
+        fwdFlowIn(_, node, state, _, cc, _, _, ap, config) and
         apa = getApprox(ap) and
-        if PrevStage::parameterMayFlowThrough(node, _, apa, config)
-        then argAp = apSome(ap)
-        else argAp = apNone()
+        if PrevStage::parameterMayFlowThrough(node, apa, config)
+        then (
+          summaryCtx = TParamNodeSome(node.asNode()) and argAp = apSome(ap)
+        ) else (
+          summaryCtx = TParamNodeNone() and argAp = apNone()
+        )
       )
       or
       // flow out of a callable
-      fwdFlowOutNotFromArg(node, state, cc, argAp, ap, config)
+      fwdFlowOutNotFromArg(node, state, cc, summaryCtx, argAp, ap, config)
       or
-      exists(DataFlowCall call, Ap argAp0 |
-        fwdFlowOutFromArg(call, node, state, argAp0, ap, config) and
-        fwdFlowIsEntered(call, cc, argAp, argAp0, config)
+      // flow through a callable
+      exists(DataFlowCall call, ParamNode summaryCtx0, Ap argAp0 |
+        fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, config) and
+        fwdFlowIsEntered(call, cc, summaryCtx, argAp, summaryCtx0, argAp0, config)
       )
     }
 
     pragma[nomagic]
     private predicate fwdFlowStore(
-      NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc, ApOption argAp,
-      Configuration config
+      NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc,
+      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
     ) {
       exists(DataFlowType contentType |
-        fwdFlow(node1, state, cc, argAp, ap1, config) and
+        fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, config) and
         PrevStage::storeStepCand(node1, unbindApa(getApprox(ap1)), tc, node2, contentType, config) and
         typecheckStore(ap1, contentType)
       )
@@ -1366,7 +1397,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowConsCand(Ap cons, Content c, Ap tail, Configuration config) {
       exists(TypedContent tc |
-        fwdFlowStore(_, tail, tc, _, _, _, _, config) and
+        fwdFlowStore(_, tail, tc, _, _, _, _, _, config) and
         tc.getContent() = c and
         cons = apCons(tc, tail)
       )
@@ -1374,21 +1405,21 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowRead(
-      Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc, ApOption argAp,
-      Configuration config
+      Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc,
+      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
     ) {
-      fwdFlow(node1, state, cc, argAp, ap, config) and
+      fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, c, node2, config) and
       getHeadContent(ap) = c
     }
 
     pragma[nomagic]
     private predicate fwdFlowIn(
-      DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, Cc innercc, ApOption argAp,
-      Ap ap, Configuration config
+      DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, Cc innercc,
+      ParamNodeOption summaryCtx, ApOption argAp, Ap ap, Configuration config
     ) {
       exists(ArgNodeEx arg, boolean allowsFieldFlow |
-        fwdFlow(arg, state, outercc, argAp, ap, config) and
+        fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, config) and
         flowIntoCall(call, arg, p, allowsFieldFlow, config) and
         innercc = getCallContextCall(call, p.getEnclosingCallable(), outercc) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
@@ -1397,14 +1428,15 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowOutNotFromArg(
-      NodeEx out, FlowState state, Cc ccOut, ApOption argAp, Ap ap, Configuration config
+      NodeEx out, FlowState state, Cc ccOut, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      Configuration config
     ) {
       exists(
         DataFlowCall call, RetNodeEx ret, boolean allowsFieldFlow, CcNoCall innercc,
         DataFlowCallable inner
       |
-        fwdFlow(ret, state, innercc, argAp, ap, config) and
-        flowOutOfCall(call, ret, out, allowsFieldFlow, config) and
+        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, config) and
+        flowOutOfCall(call, ret, _, out, allowsFieldFlow, config) and
         inner = ret.getEnclosingCallable() and
         ccOut = getCallContextReturn(inner, call, innercc) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
@@ -1413,12 +1445,14 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowOutFromArg(
-      DataFlowCall call, NodeEx out, FlowState state, Ap argAp, Ap ap, Configuration config
+      DataFlowCall call, NodeEx out, FlowState state, ParamNode summaryCtx, Ap argAp, Ap ap,
+      Configuration config
     ) {
-      exists(RetNodeEx ret, boolean allowsFieldFlow, CcCall ccc |
-        fwdFlow(ret, state, ccc, apSome(argAp), ap, config) and
-        flowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, config) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
+      exists(RetNodeEx ret, ReturnKindExt kind, boolean allowsFieldFlow, CcCall ccc |
+        fwdFlow(ret, state, ccc, TParamNodeSome(summaryCtx), apSome(argAp), ap, config) and
+        flowThroughOutOfCall(call, ccc, ret, kind, out, allowsFieldFlow, config) and
+        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
+        parameterFlowThroughAllowed(summaryCtx, kind)
       )
     }
 
@@ -1428,11 +1462,13 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate fwdFlowIsEntered(
-      DataFlowCall call, Cc cc, ApOption argAp, Ap ap, Configuration config
+      DataFlowCall call, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, ParamNode p, Ap ap,
+      Configuration config
     ) {
-      exists(ParamNodeEx p |
-        fwdFlowIn(call, p, _, cc, _, argAp, ap, config) and
-        PrevStage::parameterMayFlowThrough(p, _, unbindApa(getApprox(ap)), config)
+      exists(ParamNodeEx param |
+        fwdFlowIn(call, param, _, cc, _, summaryCtx, argAp, ap, config) and
+        PrevStage::parameterMayFlowThrough(param, unbindApa(getApprox(ap)), config) and
+        p = param.asNode()
       )
     }
 
@@ -1440,146 +1476,149 @@ private module MkStage<StageSig PrevStage> {
     private predicate storeStepFwd(
       NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, Ap ap2, Configuration config
     ) {
-      fwdFlowStore(node1, ap1, tc, node2, _, _, _, config) and
+      fwdFlowStore(node1, ap1, tc, node2, _, _, _, _, config) and
       ap2 = apCons(tc, ap1) and
-      fwdFlowRead(ap2, tc.getContent(), _, _, _, _, _, config)
+      fwdFlowRead(ap2, tc.getContent(), _, _, _, _, _, _, config)
     }
 
     private predicate readStepFwd(
       NodeEx n1, Ap ap1, Content c, NodeEx n2, Ap ap2, Configuration config
     ) {
-      fwdFlowRead(ap1, c, n1, n2, _, _, _, config) and
+      fwdFlowRead(ap1, c, n1, n2, _, _, _, _, config) and
       fwdFlowConsCand(ap1, c, ap2, config)
     }
 
     pragma[nomagic]
-    private predicate callMayFlowThroughFwd(DataFlowCall call, Configuration config) {
-      exists(Ap argAp0, NodeEx out, FlowState state, Cc cc, ApOption argAp, Ap ap |
-        fwdFlow(out, state, pragma[only_bind_into](cc), pragma[only_bind_into](argAp), ap,
-          pragma[only_bind_into](config)) and
-        fwdFlowOutFromArg(call, out, state, argAp0, ap, config) and
-        fwdFlowIsEntered(pragma[only_bind_into](call), pragma[only_bind_into](cc),
-          pragma[only_bind_into](argAp), pragma[only_bind_into](argAp0),
-          pragma[only_bind_into](config))
-      )
+    private predicate returnFlowsThrough(
+      RetNodeEx ret, ReturnPosition pos, FlowState state, CcCall ccc, ParamNode p, Ap argAp, Ap ap,
+      Configuration config
+    ) {
+      fwdFlow(ret, state, ccc, TParamNodeSome(p), apSome(argAp), ap, config) and
+      pos = ret.getReturnPosition() and
+      parameterFlowThroughAllowed(p, pos.getKind())
     }
 
     pragma[nomagic]
     private predicate flowThroughIntoCall(
       DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
     ) {
-      flowIntoCall(call, arg, p, allowsFieldFlow, config) and
-      fwdFlow(arg, _, _, _, _, pragma[only_bind_into](config)) and
-      PrevStage::parameterMayFlowThrough(p, _, _, pragma[only_bind_into](config)) and
-      callMayFlowThroughFwd(call, pragma[only_bind_into](config))
-    }
-
-    pragma[nomagic]
-    private predicate returnNodeMayFlowThrough(
-      RetNodeEx ret, FlowState state, Ap ap, Configuration config
-    ) {
-      fwdFlow(ret, state, any(CcCall ccc), apSome(_), ap, config)
+      flowIntoCall(call, pragma[only_bind_into](arg), pragma[only_bind_into](p), allowsFieldFlow,
+        pragma[only_bind_into](config)) and
+      fwdFlow(arg, _, _, _, _, _, pragma[only_bind_into](config)) and
+      returnFlowsThrough(_, _, _, _, p.asNode(), _, _, pragma[only_bind_into](config))
     }
 
     /**
      * Holds if `node` with access path `ap` is part of a path from a source to a
      * sink in the configuration `config`.
      *
-     * The Boolean `toReturn` records whether the node must be returned from the
-     * enclosing callable in order to reach a sink, and if so, `returnAp` records
-     * the access path of the returned value.
+     * The parameter `returnCtx` records whether (and how) the node must be returned
+     * from the enclosing callable in order to reach a sink, and if so, `returnAp`
+     * records the access path of the returned value.
      */
     pragma[nomagic]
     additional predicate revFlow(
-      NodeEx node, FlowState state, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
+      NodeEx node, FlowState state, ReturnCtx returnCtx, ApOption returnAp, Ap ap,
+      Configuration config
     ) {
-      revFlow0(node, state, toReturn, returnAp, ap, config) and
-      fwdFlow(node, state, _, _, ap, config)
+      revFlow0(node, state, returnCtx, returnAp, ap, config) and
+      fwdFlow(node, state, _, _, _, ap, config)
     }
 
     pragma[nomagic]
     private predicate revFlow0(
-      NodeEx node, FlowState state, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
+      NodeEx node, FlowState state, ReturnCtx returnCtx, ApOption returnAp, Ap ap,
+      Configuration config
     ) {
-      fwdFlow(node, state, _, _, ap, config) and
+      fwdFlow(node, state, _, _, _, ap, config) and
       sinkNode(node, state, config) and
-      (if hasSinkCallCtx(config) then toReturn = true else toReturn = false) and
+      (
+        if hasSinkCallCtx(config)
+        then returnCtx = TReturnCtxNoFlowThrough()
+        else returnCtx = TReturnCtxNone()
+      ) and
       returnAp = apNone() and
       ap instanceof ApNil
       or
       exists(NodeEx mid, FlowState state0 |
         localStep(node, state, mid, state0, true, _, config, _) and
-        revFlow(mid, state0, toReturn, returnAp, ap, config)
+        revFlow(mid, state0, returnCtx, returnAp, ap, config)
       )
       or
       exists(NodeEx mid, FlowState state0, ApNil nil |
-        fwdFlow(node, pragma[only_bind_into](state), _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(node, pragma[only_bind_into](state), _, _, _, ap, pragma[only_bind_into](config)) and
         localStep(node, pragma[only_bind_into](state), mid, state0, false, _, config, _) and
-        revFlow(mid, state0, toReturn, returnAp, nil, pragma[only_bind_into](config)) and
+        revFlow(mid, state0, returnCtx, returnAp, nil, pragma[only_bind_into](config)) and
         ap instanceof ApNil
       )
       or
       exists(NodeEx mid |
         jumpStep(node, mid, config) and
         revFlow(mid, state, _, _, ap, config) and
-        toReturn = false and
+        returnCtx = TReturnCtxNone() and
         returnAp = apNone()
       )
       or
       exists(NodeEx mid, ApNil nil |
-        fwdFlow(node, _, _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(node, _, _, _, _, ap, pragma[only_bind_into](config)) and
         additionalJumpStep(node, mid, config) and
         revFlow(pragma[only_bind_into](mid), state, _, _, nil, pragma[only_bind_into](config)) and
-        toReturn = false and
+        returnCtx = TReturnCtxNone() and
         returnAp = apNone() and
         ap instanceof ApNil
       )
       or
       exists(NodeEx mid, FlowState state0, ApNil nil |
-        fwdFlow(node, _, _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(node, _, _, _, _, ap, pragma[only_bind_into](config)) and
         additionalJumpStateStep(node, state, mid, state0, config) and
         revFlow(pragma[only_bind_into](mid), pragma[only_bind_into](state0), _, _, nil,
           pragma[only_bind_into](config)) and
-        toReturn = false and
+        returnCtx = TReturnCtxNone() and
         returnAp = apNone() and
         ap instanceof ApNil
       )
       or
       // store
       exists(Ap ap0, Content c |
-        revFlowStore(ap0, c, ap, node, state, _, _, toReturn, returnAp, config) and
+        revFlowStore(ap0, c, ap, node, state, _, _, returnCtx, returnAp, config) and
         revFlowConsCand(ap0, c, ap, config)
       )
       or
       // read
       exists(NodeEx mid, Ap ap0 |
-        revFlow(mid, state, toReturn, returnAp, ap0, config) and
+        revFlow(mid, state, returnCtx, returnAp, ap0, config) and
         readStepFwd(node, ap, _, mid, ap0, config)
       )
       or
       // flow into a callable
       revFlowInNotToReturn(node, state, returnAp, ap, config) and
-      toReturn = false
+      returnCtx = TReturnCtxNone()
       or
-      exists(DataFlowCall call, Ap returnAp0 |
-        revFlowInToReturn(call, node, state, returnAp0, ap, config) and
-        revFlowIsReturned(call, toReturn, returnAp, returnAp0, config)
+      // flow through a callable
+      exists(DataFlowCall call, ReturnPosition returnPos0, Ap returnAp0 |
+        revFlowInToReturn(call, node, state, returnPos0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnPos0, returnAp0, config)
       )
       or
       // flow out of a callable
-      revFlowOut(_, node, state, _, _, ap, config) and
-      toReturn = true and
-      if returnNodeMayFlowThrough(node, state, ap, config)
-      then returnAp = apSome(ap)
-      else returnAp = apNone()
+      exists(ReturnPosition pos |
+        revFlowOut(_, node, pos, state, _, _, ap, config) and
+        if returnFlowsThrough(node, pos, state, _, _, _, ap, config)
+        then (
+          returnCtx = TReturnCtxMaybeFlowThrough(pos) and
+          returnAp = apSome(ap)
+        ) else (
+          returnCtx = TReturnCtxNoFlowThrough() and returnAp = apNone()
+        )
+      )
     }
 
     pragma[nomagic]
     private predicate revFlowStore(
       Ap ap0, Content c, Ap ap, NodeEx node, FlowState state, TypedContent tc, NodeEx mid,
-      boolean toReturn, ApOption returnAp, Configuration config
+      ReturnCtx returnCtx, ApOption returnAp, Configuration config
     ) {
-      revFlow(mid, state, toReturn, returnAp, ap0, config) and
+      revFlow(mid, state, returnCtx, returnAp, ap0, config) and
       storeStepFwd(node, ap, tc, mid, ap0, config) and
       tc.getContent() = c
     }
@@ -1599,12 +1638,12 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate revFlowOut(
-      DataFlowCall call, RetNodeEx ret, FlowState state, boolean toReturn, ApOption returnAp, Ap ap,
-      Configuration config
+      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, FlowState state, ReturnCtx returnCtx,
+      ApOption returnAp, Ap ap, Configuration config
     ) {
       exists(NodeEx out, boolean allowsFieldFlow |
-        revFlow(out, state, toReturn, returnAp, ap, config) and
-        flowOutOfCall(call, ret, out, allowsFieldFlow, config) and
+        revFlow(out, state, returnCtx, returnAp, ap, config) and
+        flowOutOfCall(call, ret, pos, out, allowsFieldFlow, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
@@ -1614,7 +1653,7 @@ private module MkStage<StageSig PrevStage> {
       ArgNodeEx arg, FlowState state, ApOption returnAp, Ap ap, Configuration config
     ) {
       exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(p, state, false, returnAp, ap, config) and
+        revFlow(p, state, TReturnCtxNone(), returnAp, ap, config) and
         flowIntoCall(_, arg, p, allowsFieldFlow, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
@@ -1622,12 +1661,14 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate revFlowInToReturn(
-      DataFlowCall call, ArgNodeEx arg, FlowState state, Ap returnAp, Ap ap, Configuration config
+      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnPosition returnPos, Ap returnAp,
+      Ap ap, Configuration config
     ) {
       exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(p, state, true, apSome(returnAp), ap, config) and
+        revFlow(p, state, TReturnCtxMaybeFlowThrough(returnPos), apSome(returnAp), ap, config) and
         flowThroughIntoCall(call, arg, p, allowsFieldFlow, config) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
+        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
+        parameterFlowThroughAllowed(p.asNode(), returnPos.getKind())
       )
     }
 
@@ -1638,11 +1679,12 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate revFlowIsReturned(
-      DataFlowCall call, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
+      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnPosition pos, Ap ap,
+      Configuration config
     ) {
       exists(RetNodeEx ret, FlowState state, CcCall ccc |
-        revFlowOut(call, ret, state, toReturn, returnAp, ap, config) and
-        fwdFlow(ret, state, ccc, apSome(_), ap, config) and
+        revFlowOut(call, ret, pos, state, returnCtx, returnAp, ap, config) and
+        returnFlowsThrough(ret, pos, state, ccc, _, _, ap, config) and
         matchesCall(ccc, call)
       )
     }
@@ -1713,40 +1755,39 @@ private module MkStage<StageSig PrevStage> {
       validAp(ap, config)
     }
 
-    pragma[noinline]
-    private predicate parameterFlow(
-      ParamNodeEx p, Ap ap, Ap ap0, DataFlowCallable c, Configuration config
+    pragma[nomagic]
+    private predicate parameterFlowsThroughRev(
+      ParamNodeEx p, Ap ap, ReturnPosition returnPos, Configuration config
     ) {
-      revFlow(p, _, true, apSome(ap0), ap, config) and
-      c = p.getEnclosingCallable()
+      revFlow(p, _, TReturnCtxMaybeFlowThrough(returnPos), apSome(_), ap, config) and
+      parameterFlowThroughAllowed(p.asNode(), returnPos.getKind())
     }
 
-    predicate parameterMayFlowThrough(ParamNodeEx p, DataFlowCallable c, Ap ap, Configuration config) {
-      exists(RetNodeEx ret, FlowState state, Ap ap0, ReturnKindExt kind, ParameterPosition pos |
-        parameterFlow(p, ap, ap0, c, config) and
-        c = ret.getEnclosingCallable() and
-        revFlow(pragma[only_bind_into](ret), pragma[only_bind_into](state), true, apSome(_),
-          pragma[only_bind_into](ap0), pragma[only_bind_into](config)) and
-        fwdFlow(ret, state, any(CcCall ccc), apSome(ap), ap0, config) and
-        kind = ret.getKind() and
-        p.getPosition() = pos and
-        // we don't expect a parameter to return stored in itself, unless explicitly allowed
-        (
-          not kind.(ParamUpdateReturnKind).getPosition() = pos
-          or
-          p.allowParameterReturnInSelf()
-        )
+    pragma[nomagic]
+    predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
+      exists(RetNodeEx ret, ReturnPosition pos |
+        returnFlowsThrough(ret, pos, _, _, p.asNode(), ap, _, config) and
+        parameterFlowsThroughRev(p, ap, pos, config)
+      )
+    }
+
+    pragma[nomagic]
+    predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config) {
+      exists(ParamNodeEx p, Ap ap |
+        returnFlowsThrough(ret, pos, _, _, p.asNode(), ap, _, config) and
+        parameterFlowsThroughRev(p, ap, pos, config)
       )
     }
 
     pragma[nomagic]
     predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
       exists(
-        Ap returnAp0, ArgNodeEx arg, FlowState state, boolean toReturn, ApOption returnAp, Ap ap
+        ReturnPosition returnPos0, Ap returnAp0, ArgNodeEx arg, FlowState state,
+        ReturnCtx returnCtx, ApOption returnAp, Ap ap
       |
-        revFlow(arg, state, toReturn, returnAp, ap, config) and
-        revFlowInToReturn(call, arg, state, returnAp0, ap, config) and
-        revFlowIsReturned(call, toReturn, returnAp, returnAp0, config)
+        revFlow(arg, state, returnCtx, returnAp, ap, config) and
+        revFlowInToReturn(call, arg, state, returnPos0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnPos0, returnAp0, config)
       )
     }
 
@@ -1754,13 +1795,13 @@ private module MkStage<StageSig PrevStage> {
       boolean fwd, int nodes, int fields, int conscand, int states, int tuples, Configuration config
     ) {
       fwd = true and
-      nodes = count(NodeEx node | fwdFlow(node, _, _, _, _, config)) and
+      nodes = count(NodeEx node | fwdFlow(node, _, _, _, _, _, config)) and
       fields = count(TypedContent f0 | fwdConsCand(f0, _, config)) and
       conscand = count(TypedContent f0, Ap ap | fwdConsCand(f0, ap, config)) and
-      states = count(FlowState state | fwdFlow(_, state, _, _, _, config)) and
+      states = count(FlowState state | fwdFlow(_, state, _, _, _, _, config)) and
       tuples =
-        count(NodeEx n, FlowState state, Cc cc, ApOption argAp, Ap ap |
-          fwdFlow(n, state, cc, argAp, ap, config)
+        count(NodeEx n, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap |
+          fwdFlow(n, state, cc, summaryCtx, argAp, ap, config)
         )
       or
       fwd = false and
@@ -1769,8 +1810,8 @@ private module MkStage<StageSig PrevStage> {
       conscand = count(TypedContent f0, Ap ap | consCand(f0, ap, config)) and
       states = count(FlowState state | revFlow(_, state, _, _, _, config)) and
       tuples =
-        count(NodeEx n, FlowState state, boolean b, ApOption retAp, Ap ap |
-          revFlow(n, state, b, retAp, ap, config)
+        count(NodeEx n, FlowState state, ReturnCtx returnCtx, ApOption retAp, Ap ap |
+          revFlow(n, state, returnCtx, retAp, ap, config)
         )
     }
     /* End: Stage logic. */
@@ -1915,7 +1956,7 @@ private module Stage2Param implements MkStage<Stage1>::StageParam {
     exists(lcc)
   }
 
-  predicate flowOutOfCall = flowOutOfCallNodeCand1/5;
+  predicate flowOutOfCall = flowOutOfCallNodeCand1/6;
 
   predicate flowIntoCall = flowIntoCallNodeCand1/5;
 
@@ -1951,9 +1992,10 @@ private module Stage2 implements StageSig {
 
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand2(
-  DataFlowCall call, RetNodeEx node1, NodeEx node2, boolean allowsFieldFlow, Configuration config
+  DataFlowCall call, RetNodeEx node1, ReturnPosition pos, NodeEx node2, boolean allowsFieldFlow,
+  Configuration config
 ) {
-  flowOutOfCallNodeCand1(call, node1, node2, allowsFieldFlow, config) and
+  flowOutOfCallNodeCand1(call, node1, pos, node2, allowsFieldFlow, config) and
   Stage2::revFlow(node2, pragma[only_bind_into](config)) and
   Stage2::revFlowAlias(node1, pragma[only_bind_into](config))
 }
@@ -2021,8 +2063,8 @@ private module LocalFlowBigStep {
     exists(NodeEx next | Stage2::revFlow(next, state, config) |
       jumpStep(node, next, config) or
       additionalJumpStep(node, next, config) or
-      flowIntoCallNodeCand1(_, node, next, config) or
-      flowOutOfCallNodeCand1(_, node, next, config) or
+      flowIntoCallNodeCand2(_, node, next, _, config) or
+      flowOutOfCallNodeCand2(_, node, _, next, _, config) or
       Stage2::storeStepCand(node, _, _, next, _, config) or
       Stage2::readStepCand(node, _, next, config)
     )
@@ -2163,7 +2205,7 @@ private module Stage3Param implements MkStage<Stage2>::StageParam {
     localFlowBigStep(node1, state1, node2, state2, preservesValue, ap, config, _) and exists(lcc)
   }
 
-  predicate flowOutOfCall = flowOutOfCallNodeCand2/5;
+  predicate flowOutOfCall = flowOutOfCallNodeCand2/6;
 
   predicate flowIntoCall = flowIntoCallNodeCand2/5;
 
@@ -2233,8 +2275,9 @@ private predicate flowCandSummaryCtx(
   NodeEx node, FlowState state, AccessPathFront argApf, Configuration config
 ) {
   exists(AccessPathFront apf |
-    Stage3::revFlow(node, state, true, _, apf, config) and
-    Stage3::fwdFlow(node, state, any(Stage3::CcCall ccc), TAccessPathFrontSome(argApf), apf, config)
+    Stage3::revFlow(node, state, TReturnCtxMaybeFlowThrough(_), _, apf, config) and
+    Stage3::fwdFlow(node, state, any(Stage3::CcCall ccc), _, TAccessPathFrontSome(argApf), apf,
+      config)
   )
 }
 
@@ -2468,10 +2511,11 @@ private module Stage4Param implements MkStage<Stage3>::StageParam {
 
   pragma[nomagic]
   predicate flowOutOfCall(
-    DataFlowCall call, RetNodeEx node1, NodeEx node2, boolean allowsFieldFlow, Configuration config
+    DataFlowCall call, RetNodeEx node1, ReturnPosition pos, NodeEx node2, boolean allowsFieldFlow,
+    Configuration config
   ) {
     exists(FlowState state |
-      flowOutOfCallNodeCand2(call, node1, node2, allowsFieldFlow, config) and
+      flowOutOfCallNodeCand2(call, node1, pos, node2, allowsFieldFlow, config) and
       PrevStage::revFlow(node2, pragma[only_bind_into](state), _, pragma[only_bind_into](config)) and
       PrevStage::revFlowAlias(node1, pragma[only_bind_into](state), _,
         pragma[only_bind_into](config))
@@ -2508,13 +2552,13 @@ private Configuration unbindConf(Configuration conf) {
 
 pragma[nomagic]
 private predicate nodeMayUseSummary0(
-  NodeEx n, DataFlowCallable c, FlowState state, AccessPathApprox apa, Configuration config
+  NodeEx n, ParamNodeEx p, FlowState state, AccessPathApprox apa, Configuration config
 ) {
   exists(AccessPathApprox apa0 |
-    Stage4::parameterMayFlowThrough(_, c, _, _) and
-    Stage4::revFlow(n, state, true, _, apa0, config) and
-    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TAccessPathApproxSome(apa), apa0, config) and
-    n.getEnclosingCallable() = c
+    Stage4::parameterMayFlowThrough(p, _, _) and
+    Stage4::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
+    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TParamNodeSome(p.asNode()),
+      TAccessPathApproxSome(apa), apa0, config)
   )
 }
 
@@ -2522,9 +2566,9 @@ pragma[nomagic]
 private predicate nodeMayUseSummary(
   NodeEx n, FlowState state, AccessPathApprox apa, Configuration config
 ) {
-  exists(DataFlowCallable c |
-    Stage4::parameterMayFlowThrough(_, c, apa, config) and
-    nodeMayUseSummary0(n, c, state, apa, config)
+  exists(ParamNodeEx p |
+    Stage4::parameterMayFlowThrough(p, apa, config) and
+    nodeMayUseSummary0(n, p, state, apa, config)
   )
 }
 
@@ -2532,7 +2576,7 @@ private newtype TSummaryCtx =
   TSummaryCtxNone() or
   TSummaryCtxSome(ParamNodeEx p, FlowState state, AccessPath ap) {
     exists(Configuration config |
-      Stage4::parameterMayFlowThrough(p, _, ap.getApprox(), config) and
+      Stage4::parameterMayFlowThrough(p, ap.getApprox(), config) and
       Stage4::revFlow(p, state, _, config)
     )
   }
@@ -3453,17 +3497,11 @@ private predicate paramFlowsThrough(
   ReturnKindExt kind, FlowState state, CallContextCall cc, SummaryCtxSome sc, AccessPath ap,
   AccessPathApprox apa, Configuration config
 ) {
-  exists(PathNodeMid mid, RetNodeEx ret, ParameterPosition pos |
+  exists(PathNodeMid mid, RetNodeEx ret |
     pathNode(mid, ret, state, cc, sc, ap, config, _) and
     kind = ret.getKind() and
     apa = ap.getApprox() and
-    pos = sc.getParameterPos() and
-    // we don't expect a parameter to return stored in itself, unless explicitly allowed
-    (
-      not kind.(ParamUpdateReturnKind).getPosition() = pos
-      or
-      sc.getParamNode().allowParameterReturnInSelf()
-    )
+    parameterFlowThroughAllowed(sc.getParamNode().asNode(), kind)
   )
 }
 
diff --git a/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImplForRegExp.qll b/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImplForRegExp.qll
index 3c41b1876dc..a52ad110662 100644
--- a/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImplForRegExp.qll
+++ b/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImplForRegExp.qll
@@ -319,8 +319,6 @@ private class ParamNodeEx extends NodeEx {
   }
 
   ParameterPosition getPosition() { this.isParameterOf(_, result) }
-
-  predicate allowParameterReturnInSelf() { allowParameterReturnInSelfCached(this.asNode()) }
 }
 
 private class RetNodeEx extends NodeEx {
@@ -608,6 +606,21 @@ private predicate hasSinkCallCtx(Configuration config) {
   )
 }
 
+/**
+ * Holds if flow from `p` to a return node of kind `kind` is allowed.
+ *
+ * We don't expect a parameter to return stored in itself, unless
+ * explicitly allowed
+ */
+bindingset[p, kind]
+private predicate parameterFlowThroughAllowed(ParamNode p, ReturnKindExt kind) {
+  exists(ParameterPosition pos | p.isParameterOf(_, pos) |
+    not kind.(ParamUpdateReturnKind).getPosition() = pos
+    or
+    allowParameterReturnInSelfCached(p)
+  )
+}
+
 private module Stage1 implements StageSig {
   class Ap = Unit;
 
@@ -981,21 +994,22 @@ private module Stage1 implements StageSig {
    * candidate for the origin of a summary.
    */
   pragma[nomagic]
-  predicate parameterMayFlowThrough(ParamNodeEx p, DataFlowCallable c, Ap ap, Configuration config) {
-    exists(ReturnKindExt kind |
+  predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
+    exists(DataFlowCallable c, ReturnKindExt kind |
       throughFlowNodeCand(p, config) and
       returnFlowCallableNodeCand(c, kind, config) and
       p.getEnclosingCallable() = c and
       exists(ap) and
-      // we don't expect a parameter to return stored in itself, unless explicitly allowed
-      (
-        not kind.(ParamUpdateReturnKind).getPosition() = p.getPosition()
-        or
-        p.allowParameterReturnInSelf()
-      )
+      parameterFlowThroughAllowed(p.asNode(), kind)
     )
   }
 
+  pragma[nomagic]
+  predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config) {
+    throughFlowNodeCand(ret, config) and
+    pos = ret.getReturnPosition()
+  }
+
   pragma[nomagic]
   predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
     exists(ArgNodeEx arg, boolean toReturn |
@@ -1052,9 +1066,10 @@ private predicate viableReturnPosOutNodeCand1(
  */
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand1(
-  DataFlowCall call, RetNodeEx ret, NodeEx out, Configuration config
+  DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, Configuration config
 ) {
-  viableReturnPosOutNodeCand1(call, ret.getReturnPosition(), out, config) and
+  viableReturnPosOutNodeCand1(call, pos, out, config) and
+  pos = ret.getReturnPosition() and
   Stage1::revFlow(ret, config) and
   not outBarrier(ret, config) and
   not inBarrier(out, config)
@@ -1090,7 +1105,7 @@ private predicate flowIntoCallNodeCand1(
 private int branch(NodeEx n1, Configuration conf) {
   result =
     strictcount(NodeEx n |
-      flowOutOfCallNodeCand1(_, n1, n, conf) or flowIntoCallNodeCand1(_, n1, n, conf)
+      flowOutOfCallNodeCand1(_, n1, _, n, conf) or flowIntoCallNodeCand1(_, n1, n, conf)
     )
 }
 
@@ -1102,7 +1117,7 @@ private int branch(NodeEx n1, Configuration conf) {
 private int join(NodeEx n2, Configuration conf) {
   result =
     strictcount(NodeEx n |
-      flowOutOfCallNodeCand1(_, n, n2, conf) or flowIntoCallNodeCand1(_, n, n2, conf)
+      flowOutOfCallNodeCand1(_, n, _, n2, conf) or flowIntoCallNodeCand1(_, n, n2, conf)
     )
 }
 
@@ -1115,12 +1130,13 @@ private int join(NodeEx n2, Configuration conf) {
  */
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand1(
-  DataFlowCall call, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow, Configuration config
+  DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
+  Configuration config
 ) {
-  flowOutOfCallNodeCand1(call, ret, out, config) and
+  flowOutOfCallNodeCand1(call, ret, pos, out, pragma[only_bind_into](config)) and
   exists(int b, int j |
-    b = branch(ret, config) and
-    j = join(out, config) and
+    b = branch(ret, pragma[only_bind_into](config)) and
+    j = join(out, pragma[only_bind_into](config)) and
     if b.minimum(j) <= config.fieldFlowBranchLimit()
     then allowsFieldFlow = true
     else allowsFieldFlow = false
@@ -1156,7 +1172,9 @@ private signature module StageSig {
 
   predicate callMayFlowThroughRev(DataFlowCall call, Configuration config);
 
-  predicate parameterMayFlowThrough(ParamNodeEx p, DataFlowCallable c, Ap ap, Configuration config);
+  predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config);
+
+  predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config);
 
   predicate storeStepCand(
     NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, DataFlowType contentType,
@@ -1222,7 +1240,8 @@ private module MkStage<StageSig PrevStage> {
     );
 
     predicate flowOutOfCall(
-      DataFlowCall call, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow, Configuration config
+      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
+      Configuration config
     );
 
     predicate flowIntoCall(
@@ -1247,14 +1266,16 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate flowThroughOutOfCall(
-      DataFlowCall call, CcCall ccc, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow,
-      Configuration config
+      DataFlowCall call, CcCall ccc, RetNodeEx ret, ReturnKindExt kind, NodeEx out,
+      boolean allowsFieldFlow, Configuration config
     ) {
-      flowOutOfCall(call, ret, out, allowsFieldFlow, pragma[only_bind_into](config)) and
-      PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
-      PrevStage::parameterMayFlowThrough(_, ret.getEnclosingCallable(), _,
-        pragma[only_bind_into](config)) and
-      matchesCall(ccc, call)
+      exists(ReturnPosition pos |
+        flowOutOfCall(call, ret, pos, out, allowsFieldFlow, pragma[only_bind_into](config)) and
+        kind = pos.getKind() and
+        PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
+        PrevStage::returnMayFlowThrough(ret, pos, pragma[only_bind_into](config)) and
+        matchesCall(ccc, call)
+      )
     }
 
     /**
@@ -1262,29 +1283,32 @@ private module MkStage<StageSig PrevStage> {
      * configuration `config`.
      *
      * The call context `cc` records whether the node is reached through an
-     * argument in a call, and if so, `argAp` records the access path of that
-     * argument.
+     * argument in a call, and if so, `summaryCtx` and `argAp` record the
+     * corresponding parameter and access path of that argument, respectively.
      */
     pragma[nomagic]
     additional predicate fwdFlow(
-      NodeEx node, FlowState state, Cc cc, ApOption argAp, Ap ap, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      Configuration config
     ) {
-      fwdFlow0(node, state, cc, argAp, ap, config) and
+      fwdFlow0(node, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::revFlow(node, state, unbindApa(getApprox(ap)), config) and
       filter(node, state, ap, config)
     }
 
     pragma[nomagic]
     private predicate fwdFlow0(
-      NodeEx node, FlowState state, Cc cc, ApOption argAp, Ap ap, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      Configuration config
     ) {
       sourceNode(node, state, config) and
       (if hasSourceCallCtx(config) then cc = ccSomeCall() else cc = ccNone()) and
       argAp = apNone() and
+      summaryCtx = TParamNodeNone() and
       ap = getApNil(node)
       or
       exists(NodeEx mid, FlowState state0, Ap ap0, LocalCc localCc |
-        fwdFlow(mid, state0, cc, argAp, ap0, config) and
+        fwdFlow(mid, state0, cc, summaryCtx, argAp, ap0, config) and
         localCc = getLocalCc(mid, cc)
       |
         localStep(mid, state0, node, state, true, _, config, localCc) and
@@ -1295,65 +1319,72 @@ private module MkStage<StageSig PrevStage> {
       )
       or
       exists(NodeEx mid |
-        fwdFlow(mid, pragma[only_bind_into](state), _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, pragma[only_bind_into](config)) and
         jumpStep(mid, node, config) and
         cc = ccNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone()
       )
       or
       exists(NodeEx mid, ApNil nil |
-        fwdFlow(mid, state, _, _, nil, pragma[only_bind_into](config)) and
+        fwdFlow(mid, state, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStep(mid, node, config) and
         cc = ccNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone() and
         ap = getApNil(node)
       )
       or
       exists(NodeEx mid, FlowState state0, ApNil nil |
-        fwdFlow(mid, state0, _, _, nil, pragma[only_bind_into](config)) and
+        fwdFlow(mid, state0, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStateStep(mid, state0, node, state, config) and
         cc = ccNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone() and
         ap = getApNil(node)
       )
       or
       // store
       exists(TypedContent tc, Ap ap0 |
-        fwdFlowStore(_, ap0, tc, node, state, cc, argAp, config) and
+        fwdFlowStore(_, ap0, tc, node, state, cc, summaryCtx, argAp, config) and
         ap = apCons(tc, ap0)
       )
       or
       // read
       exists(Ap ap0, Content c |
-        fwdFlowRead(ap0, c, _, node, state, cc, argAp, config) and
+        fwdFlowRead(ap0, c, _, node, state, cc, summaryCtx, argAp, config) and
         fwdFlowConsCand(ap0, c, ap, config)
       )
       or
       // flow into a callable
       exists(ApApprox apa |
-        fwdFlowIn(_, node, state, _, cc, _, ap, config) and
+        fwdFlowIn(_, node, state, _, cc, _, _, ap, config) and
         apa = getApprox(ap) and
-        if PrevStage::parameterMayFlowThrough(node, _, apa, config)
-        then argAp = apSome(ap)
-        else argAp = apNone()
+        if PrevStage::parameterMayFlowThrough(node, apa, config)
+        then (
+          summaryCtx = TParamNodeSome(node.asNode()) and argAp = apSome(ap)
+        ) else (
+          summaryCtx = TParamNodeNone() and argAp = apNone()
+        )
       )
       or
       // flow out of a callable
-      fwdFlowOutNotFromArg(node, state, cc, argAp, ap, config)
+      fwdFlowOutNotFromArg(node, state, cc, summaryCtx, argAp, ap, config)
       or
-      exists(DataFlowCall call, Ap argAp0 |
-        fwdFlowOutFromArg(call, node, state, argAp0, ap, config) and
-        fwdFlowIsEntered(call, cc, argAp, argAp0, config)
+      // flow through a callable
+      exists(DataFlowCall call, ParamNode summaryCtx0, Ap argAp0 |
+        fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, config) and
+        fwdFlowIsEntered(call, cc, summaryCtx, argAp, summaryCtx0, argAp0, config)
       )
     }
 
     pragma[nomagic]
     private predicate fwdFlowStore(
-      NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc, ApOption argAp,
-      Configuration config
+      NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc,
+      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
     ) {
       exists(DataFlowType contentType |
-        fwdFlow(node1, state, cc, argAp, ap1, config) and
+        fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, config) and
         PrevStage::storeStepCand(node1, unbindApa(getApprox(ap1)), tc, node2, contentType, config) and
         typecheckStore(ap1, contentType)
       )
@@ -1366,7 +1397,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowConsCand(Ap cons, Content c, Ap tail, Configuration config) {
       exists(TypedContent tc |
-        fwdFlowStore(_, tail, tc, _, _, _, _, config) and
+        fwdFlowStore(_, tail, tc, _, _, _, _, _, config) and
         tc.getContent() = c and
         cons = apCons(tc, tail)
       )
@@ -1374,21 +1405,21 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowRead(
-      Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc, ApOption argAp,
-      Configuration config
+      Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc,
+      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
     ) {
-      fwdFlow(node1, state, cc, argAp, ap, config) and
+      fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, c, node2, config) and
       getHeadContent(ap) = c
     }
 
     pragma[nomagic]
     private predicate fwdFlowIn(
-      DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, Cc innercc, ApOption argAp,
-      Ap ap, Configuration config
+      DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, Cc innercc,
+      ParamNodeOption summaryCtx, ApOption argAp, Ap ap, Configuration config
     ) {
       exists(ArgNodeEx arg, boolean allowsFieldFlow |
-        fwdFlow(arg, state, outercc, argAp, ap, config) and
+        fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, config) and
         flowIntoCall(call, arg, p, allowsFieldFlow, config) and
         innercc = getCallContextCall(call, p.getEnclosingCallable(), outercc) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
@@ -1397,14 +1428,15 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowOutNotFromArg(
-      NodeEx out, FlowState state, Cc ccOut, ApOption argAp, Ap ap, Configuration config
+      NodeEx out, FlowState state, Cc ccOut, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      Configuration config
     ) {
       exists(
         DataFlowCall call, RetNodeEx ret, boolean allowsFieldFlow, CcNoCall innercc,
         DataFlowCallable inner
       |
-        fwdFlow(ret, state, innercc, argAp, ap, config) and
-        flowOutOfCall(call, ret, out, allowsFieldFlow, config) and
+        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, config) and
+        flowOutOfCall(call, ret, _, out, allowsFieldFlow, config) and
         inner = ret.getEnclosingCallable() and
         ccOut = getCallContextReturn(inner, call, innercc) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
@@ -1413,12 +1445,14 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowOutFromArg(
-      DataFlowCall call, NodeEx out, FlowState state, Ap argAp, Ap ap, Configuration config
+      DataFlowCall call, NodeEx out, FlowState state, ParamNode summaryCtx, Ap argAp, Ap ap,
+      Configuration config
     ) {
-      exists(RetNodeEx ret, boolean allowsFieldFlow, CcCall ccc |
-        fwdFlow(ret, state, ccc, apSome(argAp), ap, config) and
-        flowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, config) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
+      exists(RetNodeEx ret, ReturnKindExt kind, boolean allowsFieldFlow, CcCall ccc |
+        fwdFlow(ret, state, ccc, TParamNodeSome(summaryCtx), apSome(argAp), ap, config) and
+        flowThroughOutOfCall(call, ccc, ret, kind, out, allowsFieldFlow, config) and
+        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
+        parameterFlowThroughAllowed(summaryCtx, kind)
       )
     }
 
@@ -1428,11 +1462,13 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate fwdFlowIsEntered(
-      DataFlowCall call, Cc cc, ApOption argAp, Ap ap, Configuration config
+      DataFlowCall call, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, ParamNode p, Ap ap,
+      Configuration config
     ) {
-      exists(ParamNodeEx p |
-        fwdFlowIn(call, p, _, cc, _, argAp, ap, config) and
-        PrevStage::parameterMayFlowThrough(p, _, unbindApa(getApprox(ap)), config)
+      exists(ParamNodeEx param |
+        fwdFlowIn(call, param, _, cc, _, summaryCtx, argAp, ap, config) and
+        PrevStage::parameterMayFlowThrough(param, unbindApa(getApprox(ap)), config) and
+        p = param.asNode()
       )
     }
 
@@ -1440,146 +1476,149 @@ private module MkStage<StageSig PrevStage> {
     private predicate storeStepFwd(
       NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, Ap ap2, Configuration config
     ) {
-      fwdFlowStore(node1, ap1, tc, node2, _, _, _, config) and
+      fwdFlowStore(node1, ap1, tc, node2, _, _, _, _, config) and
       ap2 = apCons(tc, ap1) and
-      fwdFlowRead(ap2, tc.getContent(), _, _, _, _, _, config)
+      fwdFlowRead(ap2, tc.getContent(), _, _, _, _, _, _, config)
     }
 
     private predicate readStepFwd(
       NodeEx n1, Ap ap1, Content c, NodeEx n2, Ap ap2, Configuration config
     ) {
-      fwdFlowRead(ap1, c, n1, n2, _, _, _, config) and
+      fwdFlowRead(ap1, c, n1, n2, _, _, _, _, config) and
       fwdFlowConsCand(ap1, c, ap2, config)
     }
 
     pragma[nomagic]
-    private predicate callMayFlowThroughFwd(DataFlowCall call, Configuration config) {
-      exists(Ap argAp0, NodeEx out, FlowState state, Cc cc, ApOption argAp, Ap ap |
-        fwdFlow(out, state, pragma[only_bind_into](cc), pragma[only_bind_into](argAp), ap,
-          pragma[only_bind_into](config)) and
-        fwdFlowOutFromArg(call, out, state, argAp0, ap, config) and
-        fwdFlowIsEntered(pragma[only_bind_into](call), pragma[only_bind_into](cc),
-          pragma[only_bind_into](argAp), pragma[only_bind_into](argAp0),
-          pragma[only_bind_into](config))
-      )
+    private predicate returnFlowsThrough(
+      RetNodeEx ret, ReturnPosition pos, FlowState state, CcCall ccc, ParamNode p, Ap argAp, Ap ap,
+      Configuration config
+    ) {
+      fwdFlow(ret, state, ccc, TParamNodeSome(p), apSome(argAp), ap, config) and
+      pos = ret.getReturnPosition() and
+      parameterFlowThroughAllowed(p, pos.getKind())
     }
 
     pragma[nomagic]
     private predicate flowThroughIntoCall(
       DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
     ) {
-      flowIntoCall(call, arg, p, allowsFieldFlow, config) and
-      fwdFlow(arg, _, _, _, _, pragma[only_bind_into](config)) and
-      PrevStage::parameterMayFlowThrough(p, _, _, pragma[only_bind_into](config)) and
-      callMayFlowThroughFwd(call, pragma[only_bind_into](config))
-    }
-
-    pragma[nomagic]
-    private predicate returnNodeMayFlowThrough(
-      RetNodeEx ret, FlowState state, Ap ap, Configuration config
-    ) {
-      fwdFlow(ret, state, any(CcCall ccc), apSome(_), ap, config)
+      flowIntoCall(call, pragma[only_bind_into](arg), pragma[only_bind_into](p), allowsFieldFlow,
+        pragma[only_bind_into](config)) and
+      fwdFlow(arg, _, _, _, _, _, pragma[only_bind_into](config)) and
+      returnFlowsThrough(_, _, _, _, p.asNode(), _, _, pragma[only_bind_into](config))
     }
 
     /**
      * Holds if `node` with access path `ap` is part of a path from a source to a
      * sink in the configuration `config`.
      *
-     * The Boolean `toReturn` records whether the node must be returned from the
-     * enclosing callable in order to reach a sink, and if so, `returnAp` records
-     * the access path of the returned value.
+     * The parameter `returnCtx` records whether (and how) the node must be returned
+     * from the enclosing callable in order to reach a sink, and if so, `returnAp`
+     * records the access path of the returned value.
      */
     pragma[nomagic]
     additional predicate revFlow(
-      NodeEx node, FlowState state, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
+      NodeEx node, FlowState state, ReturnCtx returnCtx, ApOption returnAp, Ap ap,
+      Configuration config
     ) {
-      revFlow0(node, state, toReturn, returnAp, ap, config) and
-      fwdFlow(node, state, _, _, ap, config)
+      revFlow0(node, state, returnCtx, returnAp, ap, config) and
+      fwdFlow(node, state, _, _, _, ap, config)
     }
 
     pragma[nomagic]
     private predicate revFlow0(
-      NodeEx node, FlowState state, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
+      NodeEx node, FlowState state, ReturnCtx returnCtx, ApOption returnAp, Ap ap,
+      Configuration config
     ) {
-      fwdFlow(node, state, _, _, ap, config) and
+      fwdFlow(node, state, _, _, _, ap, config) and
       sinkNode(node, state, config) and
-      (if hasSinkCallCtx(config) then toReturn = true else toReturn = false) and
+      (
+        if hasSinkCallCtx(config)
+        then returnCtx = TReturnCtxNoFlowThrough()
+        else returnCtx = TReturnCtxNone()
+      ) and
       returnAp = apNone() and
       ap instanceof ApNil
       or
       exists(NodeEx mid, FlowState state0 |
         localStep(node, state, mid, state0, true, _, config, _) and
-        revFlow(mid, state0, toReturn, returnAp, ap, config)
+        revFlow(mid, state0, returnCtx, returnAp, ap, config)
       )
       or
       exists(NodeEx mid, FlowState state0, ApNil nil |
-        fwdFlow(node, pragma[only_bind_into](state), _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(node, pragma[only_bind_into](state), _, _, _, ap, pragma[only_bind_into](config)) and
         localStep(node, pragma[only_bind_into](state), mid, state0, false, _, config, _) and
-        revFlow(mid, state0, toReturn, returnAp, nil, pragma[only_bind_into](config)) and
+        revFlow(mid, state0, returnCtx, returnAp, nil, pragma[only_bind_into](config)) and
         ap instanceof ApNil
       )
       or
       exists(NodeEx mid |
         jumpStep(node, mid, config) and
         revFlow(mid, state, _, _, ap, config) and
-        toReturn = false and
+        returnCtx = TReturnCtxNone() and
         returnAp = apNone()
       )
       or
       exists(NodeEx mid, ApNil nil |
-        fwdFlow(node, _, _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(node, _, _, _, _, ap, pragma[only_bind_into](config)) and
         additionalJumpStep(node, mid, config) and
         revFlow(pragma[only_bind_into](mid), state, _, _, nil, pragma[only_bind_into](config)) and
-        toReturn = false and
+        returnCtx = TReturnCtxNone() and
         returnAp = apNone() and
         ap instanceof ApNil
       )
       or
       exists(NodeEx mid, FlowState state0, ApNil nil |
-        fwdFlow(node, _, _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(node, _, _, _, _, ap, pragma[only_bind_into](config)) and
         additionalJumpStateStep(node, state, mid, state0, config) and
         revFlow(pragma[only_bind_into](mid), pragma[only_bind_into](state0), _, _, nil,
           pragma[only_bind_into](config)) and
-        toReturn = false and
+        returnCtx = TReturnCtxNone() and
         returnAp = apNone() and
         ap instanceof ApNil
       )
       or
       // store
       exists(Ap ap0, Content c |
-        revFlowStore(ap0, c, ap, node, state, _, _, toReturn, returnAp, config) and
+        revFlowStore(ap0, c, ap, node, state, _, _, returnCtx, returnAp, config) and
         revFlowConsCand(ap0, c, ap, config)
       )
       or
       // read
       exists(NodeEx mid, Ap ap0 |
-        revFlow(mid, state, toReturn, returnAp, ap0, config) and
+        revFlow(mid, state, returnCtx, returnAp, ap0, config) and
         readStepFwd(node, ap, _, mid, ap0, config)
       )
       or
       // flow into a callable
       revFlowInNotToReturn(node, state, returnAp, ap, config) and
-      toReturn = false
+      returnCtx = TReturnCtxNone()
       or
-      exists(DataFlowCall call, Ap returnAp0 |
-        revFlowInToReturn(call, node, state, returnAp0, ap, config) and
-        revFlowIsReturned(call, toReturn, returnAp, returnAp0, config)
+      // flow through a callable
+      exists(DataFlowCall call, ReturnPosition returnPos0, Ap returnAp0 |
+        revFlowInToReturn(call, node, state, returnPos0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnPos0, returnAp0, config)
       )
       or
       // flow out of a callable
-      revFlowOut(_, node, state, _, _, ap, config) and
-      toReturn = true and
-      if returnNodeMayFlowThrough(node, state, ap, config)
-      then returnAp = apSome(ap)
-      else returnAp = apNone()
+      exists(ReturnPosition pos |
+        revFlowOut(_, node, pos, state, _, _, ap, config) and
+        if returnFlowsThrough(node, pos, state, _, _, _, ap, config)
+        then (
+          returnCtx = TReturnCtxMaybeFlowThrough(pos) and
+          returnAp = apSome(ap)
+        ) else (
+          returnCtx = TReturnCtxNoFlowThrough() and returnAp = apNone()
+        )
+      )
     }
 
     pragma[nomagic]
     private predicate revFlowStore(
       Ap ap0, Content c, Ap ap, NodeEx node, FlowState state, TypedContent tc, NodeEx mid,
-      boolean toReturn, ApOption returnAp, Configuration config
+      ReturnCtx returnCtx, ApOption returnAp, Configuration config
     ) {
-      revFlow(mid, state, toReturn, returnAp, ap0, config) and
+      revFlow(mid, state, returnCtx, returnAp, ap0, config) and
       storeStepFwd(node, ap, tc, mid, ap0, config) and
       tc.getContent() = c
     }
@@ -1599,12 +1638,12 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate revFlowOut(
-      DataFlowCall call, RetNodeEx ret, FlowState state, boolean toReturn, ApOption returnAp, Ap ap,
-      Configuration config
+      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, FlowState state, ReturnCtx returnCtx,
+      ApOption returnAp, Ap ap, Configuration config
     ) {
       exists(NodeEx out, boolean allowsFieldFlow |
-        revFlow(out, state, toReturn, returnAp, ap, config) and
-        flowOutOfCall(call, ret, out, allowsFieldFlow, config) and
+        revFlow(out, state, returnCtx, returnAp, ap, config) and
+        flowOutOfCall(call, ret, pos, out, allowsFieldFlow, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
@@ -1614,7 +1653,7 @@ private module MkStage<StageSig PrevStage> {
       ArgNodeEx arg, FlowState state, ApOption returnAp, Ap ap, Configuration config
     ) {
       exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(p, state, false, returnAp, ap, config) and
+        revFlow(p, state, TReturnCtxNone(), returnAp, ap, config) and
         flowIntoCall(_, arg, p, allowsFieldFlow, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
@@ -1622,12 +1661,14 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate revFlowInToReturn(
-      DataFlowCall call, ArgNodeEx arg, FlowState state, Ap returnAp, Ap ap, Configuration config
+      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnPosition returnPos, Ap returnAp,
+      Ap ap, Configuration config
     ) {
       exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(p, state, true, apSome(returnAp), ap, config) and
+        revFlow(p, state, TReturnCtxMaybeFlowThrough(returnPos), apSome(returnAp), ap, config) and
         flowThroughIntoCall(call, arg, p, allowsFieldFlow, config) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
+        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
+        parameterFlowThroughAllowed(p.asNode(), returnPos.getKind())
       )
     }
 
@@ -1638,11 +1679,12 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate revFlowIsReturned(
-      DataFlowCall call, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
+      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnPosition pos, Ap ap,
+      Configuration config
     ) {
       exists(RetNodeEx ret, FlowState state, CcCall ccc |
-        revFlowOut(call, ret, state, toReturn, returnAp, ap, config) and
-        fwdFlow(ret, state, ccc, apSome(_), ap, config) and
+        revFlowOut(call, ret, pos, state, returnCtx, returnAp, ap, config) and
+        returnFlowsThrough(ret, pos, state, ccc, _, _, ap, config) and
         matchesCall(ccc, call)
       )
     }
@@ -1713,40 +1755,39 @@ private module MkStage<StageSig PrevStage> {
       validAp(ap, config)
     }
 
-    pragma[noinline]
-    private predicate parameterFlow(
-      ParamNodeEx p, Ap ap, Ap ap0, DataFlowCallable c, Configuration config
+    pragma[nomagic]
+    private predicate parameterFlowsThroughRev(
+      ParamNodeEx p, Ap ap, ReturnPosition returnPos, Configuration config
     ) {
-      revFlow(p, _, true, apSome(ap0), ap, config) and
-      c = p.getEnclosingCallable()
+      revFlow(p, _, TReturnCtxMaybeFlowThrough(returnPos), apSome(_), ap, config) and
+      parameterFlowThroughAllowed(p.asNode(), returnPos.getKind())
     }
 
-    predicate parameterMayFlowThrough(ParamNodeEx p, DataFlowCallable c, Ap ap, Configuration config) {
-      exists(RetNodeEx ret, FlowState state, Ap ap0, ReturnKindExt kind, ParameterPosition pos |
-        parameterFlow(p, ap, ap0, c, config) and
-        c = ret.getEnclosingCallable() and
-        revFlow(pragma[only_bind_into](ret), pragma[only_bind_into](state), true, apSome(_),
-          pragma[only_bind_into](ap0), pragma[only_bind_into](config)) and
-        fwdFlow(ret, state, any(CcCall ccc), apSome(ap), ap0, config) and
-        kind = ret.getKind() and
-        p.getPosition() = pos and
-        // we don't expect a parameter to return stored in itself, unless explicitly allowed
-        (
-          not kind.(ParamUpdateReturnKind).getPosition() = pos
-          or
-          p.allowParameterReturnInSelf()
-        )
+    pragma[nomagic]
+    predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
+      exists(RetNodeEx ret, ReturnPosition pos |
+        returnFlowsThrough(ret, pos, _, _, p.asNode(), ap, _, config) and
+        parameterFlowsThroughRev(p, ap, pos, config)
+      )
+    }
+
+    pragma[nomagic]
+    predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config) {
+      exists(ParamNodeEx p, Ap ap |
+        returnFlowsThrough(ret, pos, _, _, p.asNode(), ap, _, config) and
+        parameterFlowsThroughRev(p, ap, pos, config)
       )
     }
 
     pragma[nomagic]
     predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
       exists(
-        Ap returnAp0, ArgNodeEx arg, FlowState state, boolean toReturn, ApOption returnAp, Ap ap
+        ReturnPosition returnPos0, Ap returnAp0, ArgNodeEx arg, FlowState state,
+        ReturnCtx returnCtx, ApOption returnAp, Ap ap
       |
-        revFlow(arg, state, toReturn, returnAp, ap, config) and
-        revFlowInToReturn(call, arg, state, returnAp0, ap, config) and
-        revFlowIsReturned(call, toReturn, returnAp, returnAp0, config)
+        revFlow(arg, state, returnCtx, returnAp, ap, config) and
+        revFlowInToReturn(call, arg, state, returnPos0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnPos0, returnAp0, config)
       )
     }
 
@@ -1754,13 +1795,13 @@ private module MkStage<StageSig PrevStage> {
       boolean fwd, int nodes, int fields, int conscand, int states, int tuples, Configuration config
     ) {
       fwd = true and
-      nodes = count(NodeEx node | fwdFlow(node, _, _, _, _, config)) and
+      nodes = count(NodeEx node | fwdFlow(node, _, _, _, _, _, config)) and
       fields = count(TypedContent f0 | fwdConsCand(f0, _, config)) and
       conscand = count(TypedContent f0, Ap ap | fwdConsCand(f0, ap, config)) and
-      states = count(FlowState state | fwdFlow(_, state, _, _, _, config)) and
+      states = count(FlowState state | fwdFlow(_, state, _, _, _, _, config)) and
       tuples =
-        count(NodeEx n, FlowState state, Cc cc, ApOption argAp, Ap ap |
-          fwdFlow(n, state, cc, argAp, ap, config)
+        count(NodeEx n, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap |
+          fwdFlow(n, state, cc, summaryCtx, argAp, ap, config)
         )
       or
       fwd = false and
@@ -1769,8 +1810,8 @@ private module MkStage<StageSig PrevStage> {
       conscand = count(TypedContent f0, Ap ap | consCand(f0, ap, config)) and
       states = count(FlowState state | revFlow(_, state, _, _, _, config)) and
       tuples =
-        count(NodeEx n, FlowState state, boolean b, ApOption retAp, Ap ap |
-          revFlow(n, state, b, retAp, ap, config)
+        count(NodeEx n, FlowState state, ReturnCtx returnCtx, ApOption retAp, Ap ap |
+          revFlow(n, state, returnCtx, retAp, ap, config)
         )
     }
     /* End: Stage logic. */
@@ -1915,7 +1956,7 @@ private module Stage2Param implements MkStage<Stage1>::StageParam {
     exists(lcc)
   }
 
-  predicate flowOutOfCall = flowOutOfCallNodeCand1/5;
+  predicate flowOutOfCall = flowOutOfCallNodeCand1/6;
 
   predicate flowIntoCall = flowIntoCallNodeCand1/5;
 
@@ -1951,9 +1992,10 @@ private module Stage2 implements StageSig {
 
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand2(
-  DataFlowCall call, RetNodeEx node1, NodeEx node2, boolean allowsFieldFlow, Configuration config
+  DataFlowCall call, RetNodeEx node1, ReturnPosition pos, NodeEx node2, boolean allowsFieldFlow,
+  Configuration config
 ) {
-  flowOutOfCallNodeCand1(call, node1, node2, allowsFieldFlow, config) and
+  flowOutOfCallNodeCand1(call, node1, pos, node2, allowsFieldFlow, config) and
   Stage2::revFlow(node2, pragma[only_bind_into](config)) and
   Stage2::revFlowAlias(node1, pragma[only_bind_into](config))
 }
@@ -2021,8 +2063,8 @@ private module LocalFlowBigStep {
     exists(NodeEx next | Stage2::revFlow(next, state, config) |
       jumpStep(node, next, config) or
       additionalJumpStep(node, next, config) or
-      flowIntoCallNodeCand1(_, node, next, config) or
-      flowOutOfCallNodeCand1(_, node, next, config) or
+      flowIntoCallNodeCand2(_, node, next, _, config) or
+      flowOutOfCallNodeCand2(_, node, _, next, _, config) or
       Stage2::storeStepCand(node, _, _, next, _, config) or
       Stage2::readStepCand(node, _, next, config)
     )
@@ -2163,7 +2205,7 @@ private module Stage3Param implements MkStage<Stage2>::StageParam {
     localFlowBigStep(node1, state1, node2, state2, preservesValue, ap, config, _) and exists(lcc)
   }
 
-  predicate flowOutOfCall = flowOutOfCallNodeCand2/5;
+  predicate flowOutOfCall = flowOutOfCallNodeCand2/6;
 
   predicate flowIntoCall = flowIntoCallNodeCand2/5;
 
@@ -2233,8 +2275,9 @@ private predicate flowCandSummaryCtx(
   NodeEx node, FlowState state, AccessPathFront argApf, Configuration config
 ) {
   exists(AccessPathFront apf |
-    Stage3::revFlow(node, state, true, _, apf, config) and
-    Stage3::fwdFlow(node, state, any(Stage3::CcCall ccc), TAccessPathFrontSome(argApf), apf, config)
+    Stage3::revFlow(node, state, TReturnCtxMaybeFlowThrough(_), _, apf, config) and
+    Stage3::fwdFlow(node, state, any(Stage3::CcCall ccc), _, TAccessPathFrontSome(argApf), apf,
+      config)
   )
 }
 
@@ -2468,10 +2511,11 @@ private module Stage4Param implements MkStage<Stage3>::StageParam {
 
   pragma[nomagic]
   predicate flowOutOfCall(
-    DataFlowCall call, RetNodeEx node1, NodeEx node2, boolean allowsFieldFlow, Configuration config
+    DataFlowCall call, RetNodeEx node1, ReturnPosition pos, NodeEx node2, boolean allowsFieldFlow,
+    Configuration config
   ) {
     exists(FlowState state |
-      flowOutOfCallNodeCand2(call, node1, node2, allowsFieldFlow, config) and
+      flowOutOfCallNodeCand2(call, node1, pos, node2, allowsFieldFlow, config) and
       PrevStage::revFlow(node2, pragma[only_bind_into](state), _, pragma[only_bind_into](config)) and
       PrevStage::revFlowAlias(node1, pragma[only_bind_into](state), _,
         pragma[only_bind_into](config))
@@ -2508,13 +2552,13 @@ private Configuration unbindConf(Configuration conf) {
 
 pragma[nomagic]
 private predicate nodeMayUseSummary0(
-  NodeEx n, DataFlowCallable c, FlowState state, AccessPathApprox apa, Configuration config
+  NodeEx n, ParamNodeEx p, FlowState state, AccessPathApprox apa, Configuration config
 ) {
   exists(AccessPathApprox apa0 |
-    Stage4::parameterMayFlowThrough(_, c, _, _) and
-    Stage4::revFlow(n, state, true, _, apa0, config) and
-    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TAccessPathApproxSome(apa), apa0, config) and
-    n.getEnclosingCallable() = c
+    Stage4::parameterMayFlowThrough(p, _, _) and
+    Stage4::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
+    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TParamNodeSome(p.asNode()),
+      TAccessPathApproxSome(apa), apa0, config)
   )
 }
 
@@ -2522,9 +2566,9 @@ pragma[nomagic]
 private predicate nodeMayUseSummary(
   NodeEx n, FlowState state, AccessPathApprox apa, Configuration config
 ) {
-  exists(DataFlowCallable c |
-    Stage4::parameterMayFlowThrough(_, c, apa, config) and
-    nodeMayUseSummary0(n, c, state, apa, config)
+  exists(ParamNodeEx p |
+    Stage4::parameterMayFlowThrough(p, apa, config) and
+    nodeMayUseSummary0(n, p, state, apa, config)
   )
 }
 
@@ -2532,7 +2576,7 @@ private newtype TSummaryCtx =
   TSummaryCtxNone() or
   TSummaryCtxSome(ParamNodeEx p, FlowState state, AccessPath ap) {
     exists(Configuration config |
-      Stage4::parameterMayFlowThrough(p, _, ap.getApprox(), config) and
+      Stage4::parameterMayFlowThrough(p, ap.getApprox(), config) and
       Stage4::revFlow(p, state, _, config)
     )
   }
@@ -3453,17 +3497,11 @@ private predicate paramFlowsThrough(
   ReturnKindExt kind, FlowState state, CallContextCall cc, SummaryCtxSome sc, AccessPath ap,
   AccessPathApprox apa, Configuration config
 ) {
-  exists(PathNodeMid mid, RetNodeEx ret, ParameterPosition pos |
+  exists(PathNodeMid mid, RetNodeEx ret |
     pathNode(mid, ret, state, cc, sc, ap, config, _) and
     kind = ret.getKind() and
     apa = ap.getApprox() and
-    pos = sc.getParameterPos() and
-    // we don't expect a parameter to return stored in itself, unless explicitly allowed
-    (
-      not kind.(ParamUpdateReturnKind).getPosition() = pos
-      or
-      sc.getParamNode().allowParameterReturnInSelf()
-    )
+    parameterFlowThroughAllowed(sc.getParamNode().asNode(), kind)
   )
 }
 
diff --git a/swift/ql/lib/codeql/swift/dataflow/internal/DataFlowImpl.qll b/swift/ql/lib/codeql/swift/dataflow/internal/DataFlowImpl.qll
index 3c41b1876dc..a52ad110662 100644
--- a/swift/ql/lib/codeql/swift/dataflow/internal/DataFlowImpl.qll
+++ b/swift/ql/lib/codeql/swift/dataflow/internal/DataFlowImpl.qll
@@ -319,8 +319,6 @@ private class ParamNodeEx extends NodeEx {
   }
 
   ParameterPosition getPosition() { this.isParameterOf(_, result) }
-
-  predicate allowParameterReturnInSelf() { allowParameterReturnInSelfCached(this.asNode()) }
 }
 
 private class RetNodeEx extends NodeEx {
@@ -608,6 +606,21 @@ private predicate hasSinkCallCtx(Configuration config) {
   )
 }
 
+/**
+ * Holds if flow from `p` to a return node of kind `kind` is allowed.
+ *
+ * We don't expect a parameter to return stored in itself, unless
+ * explicitly allowed
+ */
+bindingset[p, kind]
+private predicate parameterFlowThroughAllowed(ParamNode p, ReturnKindExt kind) {
+  exists(ParameterPosition pos | p.isParameterOf(_, pos) |
+    not kind.(ParamUpdateReturnKind).getPosition() = pos
+    or
+    allowParameterReturnInSelfCached(p)
+  )
+}
+
 private module Stage1 implements StageSig {
   class Ap = Unit;
 
@@ -981,21 +994,22 @@ private module Stage1 implements StageSig {
    * candidate for the origin of a summary.
    */
   pragma[nomagic]
-  predicate parameterMayFlowThrough(ParamNodeEx p, DataFlowCallable c, Ap ap, Configuration config) {
-    exists(ReturnKindExt kind |
+  predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
+    exists(DataFlowCallable c, ReturnKindExt kind |
       throughFlowNodeCand(p, config) and
       returnFlowCallableNodeCand(c, kind, config) and
       p.getEnclosingCallable() = c and
       exists(ap) and
-      // we don't expect a parameter to return stored in itself, unless explicitly allowed
-      (
-        not kind.(ParamUpdateReturnKind).getPosition() = p.getPosition()
-        or
-        p.allowParameterReturnInSelf()
-      )
+      parameterFlowThroughAllowed(p.asNode(), kind)
     )
   }
 
+  pragma[nomagic]
+  predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config) {
+    throughFlowNodeCand(ret, config) and
+    pos = ret.getReturnPosition()
+  }
+
   pragma[nomagic]
   predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
     exists(ArgNodeEx arg, boolean toReturn |
@@ -1052,9 +1066,10 @@ private predicate viableReturnPosOutNodeCand1(
  */
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand1(
-  DataFlowCall call, RetNodeEx ret, NodeEx out, Configuration config
+  DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, Configuration config
 ) {
-  viableReturnPosOutNodeCand1(call, ret.getReturnPosition(), out, config) and
+  viableReturnPosOutNodeCand1(call, pos, out, config) and
+  pos = ret.getReturnPosition() and
   Stage1::revFlow(ret, config) and
   not outBarrier(ret, config) and
   not inBarrier(out, config)
@@ -1090,7 +1105,7 @@ private predicate flowIntoCallNodeCand1(
 private int branch(NodeEx n1, Configuration conf) {
   result =
     strictcount(NodeEx n |
-      flowOutOfCallNodeCand1(_, n1, n, conf) or flowIntoCallNodeCand1(_, n1, n, conf)
+      flowOutOfCallNodeCand1(_, n1, _, n, conf) or flowIntoCallNodeCand1(_, n1, n, conf)
     )
 }
 
@@ -1102,7 +1117,7 @@ private int branch(NodeEx n1, Configuration conf) {
 private int join(NodeEx n2, Configuration conf) {
   result =
     strictcount(NodeEx n |
-      flowOutOfCallNodeCand1(_, n, n2, conf) or flowIntoCallNodeCand1(_, n, n2, conf)
+      flowOutOfCallNodeCand1(_, n, _, n2, conf) or flowIntoCallNodeCand1(_, n, n2, conf)
     )
 }
 
@@ -1115,12 +1130,13 @@ private int join(NodeEx n2, Configuration conf) {
  */
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand1(
-  DataFlowCall call, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow, Configuration config
+  DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
+  Configuration config
 ) {
-  flowOutOfCallNodeCand1(call, ret, out, config) and
+  flowOutOfCallNodeCand1(call, ret, pos, out, pragma[only_bind_into](config)) and
   exists(int b, int j |
-    b = branch(ret, config) and
-    j = join(out, config) and
+    b = branch(ret, pragma[only_bind_into](config)) and
+    j = join(out, pragma[only_bind_into](config)) and
     if b.minimum(j) <= config.fieldFlowBranchLimit()
     then allowsFieldFlow = true
     else allowsFieldFlow = false
@@ -1156,7 +1172,9 @@ private signature module StageSig {
 
   predicate callMayFlowThroughRev(DataFlowCall call, Configuration config);
 
-  predicate parameterMayFlowThrough(ParamNodeEx p, DataFlowCallable c, Ap ap, Configuration config);
+  predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config);
+
+  predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config);
 
   predicate storeStepCand(
     NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, DataFlowType contentType,
@@ -1222,7 +1240,8 @@ private module MkStage<StageSig PrevStage> {
     );
 
     predicate flowOutOfCall(
-      DataFlowCall call, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow, Configuration config
+      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
+      Configuration config
     );
 
     predicate flowIntoCall(
@@ -1247,14 +1266,16 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate flowThroughOutOfCall(
-      DataFlowCall call, CcCall ccc, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow,
-      Configuration config
+      DataFlowCall call, CcCall ccc, RetNodeEx ret, ReturnKindExt kind, NodeEx out,
+      boolean allowsFieldFlow, Configuration config
     ) {
-      flowOutOfCall(call, ret, out, allowsFieldFlow, pragma[only_bind_into](config)) and
-      PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
-      PrevStage::parameterMayFlowThrough(_, ret.getEnclosingCallable(), _,
-        pragma[only_bind_into](config)) and
-      matchesCall(ccc, call)
+      exists(ReturnPosition pos |
+        flowOutOfCall(call, ret, pos, out, allowsFieldFlow, pragma[only_bind_into](config)) and
+        kind = pos.getKind() and
+        PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
+        PrevStage::returnMayFlowThrough(ret, pos, pragma[only_bind_into](config)) and
+        matchesCall(ccc, call)
+      )
     }
 
     /**
@@ -1262,29 +1283,32 @@ private module MkStage<StageSig PrevStage> {
      * configuration `config`.
      *
      * The call context `cc` records whether the node is reached through an
-     * argument in a call, and if so, `argAp` records the access path of that
-     * argument.
+     * argument in a call, and if so, `summaryCtx` and `argAp` record the
+     * corresponding parameter and access path of that argument, respectively.
      */
     pragma[nomagic]
     additional predicate fwdFlow(
-      NodeEx node, FlowState state, Cc cc, ApOption argAp, Ap ap, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      Configuration config
     ) {
-      fwdFlow0(node, state, cc, argAp, ap, config) and
+      fwdFlow0(node, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::revFlow(node, state, unbindApa(getApprox(ap)), config) and
       filter(node, state, ap, config)
     }
 
     pragma[nomagic]
     private predicate fwdFlow0(
-      NodeEx node, FlowState state, Cc cc, ApOption argAp, Ap ap, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      Configuration config
     ) {
       sourceNode(node, state, config) and
       (if hasSourceCallCtx(config) then cc = ccSomeCall() else cc = ccNone()) and
       argAp = apNone() and
+      summaryCtx = TParamNodeNone() and
       ap = getApNil(node)
       or
       exists(NodeEx mid, FlowState state0, Ap ap0, LocalCc localCc |
-        fwdFlow(mid, state0, cc, argAp, ap0, config) and
+        fwdFlow(mid, state0, cc, summaryCtx, argAp, ap0, config) and
         localCc = getLocalCc(mid, cc)
       |
         localStep(mid, state0, node, state, true, _, config, localCc) and
@@ -1295,65 +1319,72 @@ private module MkStage<StageSig PrevStage> {
       )
       or
       exists(NodeEx mid |
-        fwdFlow(mid, pragma[only_bind_into](state), _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, pragma[only_bind_into](config)) and
         jumpStep(mid, node, config) and
         cc = ccNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone()
       )
       or
       exists(NodeEx mid, ApNil nil |
-        fwdFlow(mid, state, _, _, nil, pragma[only_bind_into](config)) and
+        fwdFlow(mid, state, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStep(mid, node, config) and
         cc = ccNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone() and
         ap = getApNil(node)
       )
       or
       exists(NodeEx mid, FlowState state0, ApNil nil |
-        fwdFlow(mid, state0, _, _, nil, pragma[only_bind_into](config)) and
+        fwdFlow(mid, state0, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStateStep(mid, state0, node, state, config) and
         cc = ccNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone() and
         ap = getApNil(node)
       )
       or
       // store
       exists(TypedContent tc, Ap ap0 |
-        fwdFlowStore(_, ap0, tc, node, state, cc, argAp, config) and
+        fwdFlowStore(_, ap0, tc, node, state, cc, summaryCtx, argAp, config) and
         ap = apCons(tc, ap0)
       )
       or
       // read
       exists(Ap ap0, Content c |
-        fwdFlowRead(ap0, c, _, node, state, cc, argAp, config) and
+        fwdFlowRead(ap0, c, _, node, state, cc, summaryCtx, argAp, config) and
         fwdFlowConsCand(ap0, c, ap, config)
       )
       or
       // flow into a callable
       exists(ApApprox apa |
-        fwdFlowIn(_, node, state, _, cc, _, ap, config) and
+        fwdFlowIn(_, node, state, _, cc, _, _, ap, config) and
         apa = getApprox(ap) and
-        if PrevStage::parameterMayFlowThrough(node, _, apa, config)
-        then argAp = apSome(ap)
-        else argAp = apNone()
+        if PrevStage::parameterMayFlowThrough(node, apa, config)
+        then (
+          summaryCtx = TParamNodeSome(node.asNode()) and argAp = apSome(ap)
+        ) else (
+          summaryCtx = TParamNodeNone() and argAp = apNone()
+        )
       )
       or
       // flow out of a callable
-      fwdFlowOutNotFromArg(node, state, cc, argAp, ap, config)
+      fwdFlowOutNotFromArg(node, state, cc, summaryCtx, argAp, ap, config)
       or
-      exists(DataFlowCall call, Ap argAp0 |
-        fwdFlowOutFromArg(call, node, state, argAp0, ap, config) and
-        fwdFlowIsEntered(call, cc, argAp, argAp0, config)
+      // flow through a callable
+      exists(DataFlowCall call, ParamNode summaryCtx0, Ap argAp0 |
+        fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, config) and
+        fwdFlowIsEntered(call, cc, summaryCtx, argAp, summaryCtx0, argAp0, config)
       )
     }
 
     pragma[nomagic]
     private predicate fwdFlowStore(
-      NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc, ApOption argAp,
-      Configuration config
+      NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc,
+      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
     ) {
       exists(DataFlowType contentType |
-        fwdFlow(node1, state, cc, argAp, ap1, config) and
+        fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, config) and
         PrevStage::storeStepCand(node1, unbindApa(getApprox(ap1)), tc, node2, contentType, config) and
         typecheckStore(ap1, contentType)
       )
@@ -1366,7 +1397,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowConsCand(Ap cons, Content c, Ap tail, Configuration config) {
       exists(TypedContent tc |
-        fwdFlowStore(_, tail, tc, _, _, _, _, config) and
+        fwdFlowStore(_, tail, tc, _, _, _, _, _, config) and
         tc.getContent() = c and
         cons = apCons(tc, tail)
       )
@@ -1374,21 +1405,21 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowRead(
-      Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc, ApOption argAp,
-      Configuration config
+      Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc,
+      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
     ) {
-      fwdFlow(node1, state, cc, argAp, ap, config) and
+      fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, c, node2, config) and
       getHeadContent(ap) = c
     }
 
     pragma[nomagic]
     private predicate fwdFlowIn(
-      DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, Cc innercc, ApOption argAp,
-      Ap ap, Configuration config
+      DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, Cc innercc,
+      ParamNodeOption summaryCtx, ApOption argAp, Ap ap, Configuration config
     ) {
       exists(ArgNodeEx arg, boolean allowsFieldFlow |
-        fwdFlow(arg, state, outercc, argAp, ap, config) and
+        fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, config) and
         flowIntoCall(call, arg, p, allowsFieldFlow, config) and
         innercc = getCallContextCall(call, p.getEnclosingCallable(), outercc) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
@@ -1397,14 +1428,15 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowOutNotFromArg(
-      NodeEx out, FlowState state, Cc ccOut, ApOption argAp, Ap ap, Configuration config
+      NodeEx out, FlowState state, Cc ccOut, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      Configuration config
     ) {
       exists(
         DataFlowCall call, RetNodeEx ret, boolean allowsFieldFlow, CcNoCall innercc,
         DataFlowCallable inner
       |
-        fwdFlow(ret, state, innercc, argAp, ap, config) and
-        flowOutOfCall(call, ret, out, allowsFieldFlow, config) and
+        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, config) and
+        flowOutOfCall(call, ret, _, out, allowsFieldFlow, config) and
         inner = ret.getEnclosingCallable() and
         ccOut = getCallContextReturn(inner, call, innercc) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
@@ -1413,12 +1445,14 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowOutFromArg(
-      DataFlowCall call, NodeEx out, FlowState state, Ap argAp, Ap ap, Configuration config
+      DataFlowCall call, NodeEx out, FlowState state, ParamNode summaryCtx, Ap argAp, Ap ap,
+      Configuration config
     ) {
-      exists(RetNodeEx ret, boolean allowsFieldFlow, CcCall ccc |
-        fwdFlow(ret, state, ccc, apSome(argAp), ap, config) and
-        flowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, config) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
+      exists(RetNodeEx ret, ReturnKindExt kind, boolean allowsFieldFlow, CcCall ccc |
+        fwdFlow(ret, state, ccc, TParamNodeSome(summaryCtx), apSome(argAp), ap, config) and
+        flowThroughOutOfCall(call, ccc, ret, kind, out, allowsFieldFlow, config) and
+        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
+        parameterFlowThroughAllowed(summaryCtx, kind)
       )
     }
 
@@ -1428,11 +1462,13 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate fwdFlowIsEntered(
-      DataFlowCall call, Cc cc, ApOption argAp, Ap ap, Configuration config
+      DataFlowCall call, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, ParamNode p, Ap ap,
+      Configuration config
     ) {
-      exists(ParamNodeEx p |
-        fwdFlowIn(call, p, _, cc, _, argAp, ap, config) and
-        PrevStage::parameterMayFlowThrough(p, _, unbindApa(getApprox(ap)), config)
+      exists(ParamNodeEx param |
+        fwdFlowIn(call, param, _, cc, _, summaryCtx, argAp, ap, config) and
+        PrevStage::parameterMayFlowThrough(param, unbindApa(getApprox(ap)), config) and
+        p = param.asNode()
       )
     }
 
@@ -1440,146 +1476,149 @@ private module MkStage<StageSig PrevStage> {
     private predicate storeStepFwd(
       NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, Ap ap2, Configuration config
     ) {
-      fwdFlowStore(node1, ap1, tc, node2, _, _, _, config) and
+      fwdFlowStore(node1, ap1, tc, node2, _, _, _, _, config) and
       ap2 = apCons(tc, ap1) and
-      fwdFlowRead(ap2, tc.getContent(), _, _, _, _, _, config)
+      fwdFlowRead(ap2, tc.getContent(), _, _, _, _, _, _, config)
     }
 
     private predicate readStepFwd(
       NodeEx n1, Ap ap1, Content c, NodeEx n2, Ap ap2, Configuration config
     ) {
-      fwdFlowRead(ap1, c, n1, n2, _, _, _, config) and
+      fwdFlowRead(ap1, c, n1, n2, _, _, _, _, config) and
       fwdFlowConsCand(ap1, c, ap2, config)
     }
 
     pragma[nomagic]
-    private predicate callMayFlowThroughFwd(DataFlowCall call, Configuration config) {
-      exists(Ap argAp0, NodeEx out, FlowState state, Cc cc, ApOption argAp, Ap ap |
-        fwdFlow(out, state, pragma[only_bind_into](cc), pragma[only_bind_into](argAp), ap,
-          pragma[only_bind_into](config)) and
-        fwdFlowOutFromArg(call, out, state, argAp0, ap, config) and
-        fwdFlowIsEntered(pragma[only_bind_into](call), pragma[only_bind_into](cc),
-          pragma[only_bind_into](argAp), pragma[only_bind_into](argAp0),
-          pragma[only_bind_into](config))
-      )
+    private predicate returnFlowsThrough(
+      RetNodeEx ret, ReturnPosition pos, FlowState state, CcCall ccc, ParamNode p, Ap argAp, Ap ap,
+      Configuration config
+    ) {
+      fwdFlow(ret, state, ccc, TParamNodeSome(p), apSome(argAp), ap, config) and
+      pos = ret.getReturnPosition() and
+      parameterFlowThroughAllowed(p, pos.getKind())
     }
 
     pragma[nomagic]
     private predicate flowThroughIntoCall(
       DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
     ) {
-      flowIntoCall(call, arg, p, allowsFieldFlow, config) and
-      fwdFlow(arg, _, _, _, _, pragma[only_bind_into](config)) and
-      PrevStage::parameterMayFlowThrough(p, _, _, pragma[only_bind_into](config)) and
-      callMayFlowThroughFwd(call, pragma[only_bind_into](config))
-    }
-
-    pragma[nomagic]
-    private predicate returnNodeMayFlowThrough(
-      RetNodeEx ret, FlowState state, Ap ap, Configuration config
-    ) {
-      fwdFlow(ret, state, any(CcCall ccc), apSome(_), ap, config)
+      flowIntoCall(call, pragma[only_bind_into](arg), pragma[only_bind_into](p), allowsFieldFlow,
+        pragma[only_bind_into](config)) and
+      fwdFlow(arg, _, _, _, _, _, pragma[only_bind_into](config)) and
+      returnFlowsThrough(_, _, _, _, p.asNode(), _, _, pragma[only_bind_into](config))
     }
 
     /**
      * Holds if `node` with access path `ap` is part of a path from a source to a
      * sink in the configuration `config`.
      *
-     * The Boolean `toReturn` records whether the node must be returned from the
-     * enclosing callable in order to reach a sink, and if so, `returnAp` records
-     * the access path of the returned value.
+     * The parameter `returnCtx` records whether (and how) the node must be returned
+     * from the enclosing callable in order to reach a sink, and if so, `returnAp`
+     * records the access path of the returned value.
      */
     pragma[nomagic]
     additional predicate revFlow(
-      NodeEx node, FlowState state, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
+      NodeEx node, FlowState state, ReturnCtx returnCtx, ApOption returnAp, Ap ap,
+      Configuration config
     ) {
-      revFlow0(node, state, toReturn, returnAp, ap, config) and
-      fwdFlow(node, state, _, _, ap, config)
+      revFlow0(node, state, returnCtx, returnAp, ap, config) and
+      fwdFlow(node, state, _, _, _, ap, config)
     }
 
     pragma[nomagic]
     private predicate revFlow0(
-      NodeEx node, FlowState state, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
+      NodeEx node, FlowState state, ReturnCtx returnCtx, ApOption returnAp, Ap ap,
+      Configuration config
     ) {
-      fwdFlow(node, state, _, _, ap, config) and
+      fwdFlow(node, state, _, _, _, ap, config) and
       sinkNode(node, state, config) and
-      (if hasSinkCallCtx(config) then toReturn = true else toReturn = false) and
+      (
+        if hasSinkCallCtx(config)
+        then returnCtx = TReturnCtxNoFlowThrough()
+        else returnCtx = TReturnCtxNone()
+      ) and
       returnAp = apNone() and
       ap instanceof ApNil
       or
       exists(NodeEx mid, FlowState state0 |
         localStep(node, state, mid, state0, true, _, config, _) and
-        revFlow(mid, state0, toReturn, returnAp, ap, config)
+        revFlow(mid, state0, returnCtx, returnAp, ap, config)
       )
       or
       exists(NodeEx mid, FlowState state0, ApNil nil |
-        fwdFlow(node, pragma[only_bind_into](state), _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(node, pragma[only_bind_into](state), _, _, _, ap, pragma[only_bind_into](config)) and
         localStep(node, pragma[only_bind_into](state), mid, state0, false, _, config, _) and
-        revFlow(mid, state0, toReturn, returnAp, nil, pragma[only_bind_into](config)) and
+        revFlow(mid, state0, returnCtx, returnAp, nil, pragma[only_bind_into](config)) and
         ap instanceof ApNil
       )
       or
       exists(NodeEx mid |
         jumpStep(node, mid, config) and
         revFlow(mid, state, _, _, ap, config) and
-        toReturn = false and
+        returnCtx = TReturnCtxNone() and
         returnAp = apNone()
       )
       or
       exists(NodeEx mid, ApNil nil |
-        fwdFlow(node, _, _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(node, _, _, _, _, ap, pragma[only_bind_into](config)) and
         additionalJumpStep(node, mid, config) and
         revFlow(pragma[only_bind_into](mid), state, _, _, nil, pragma[only_bind_into](config)) and
-        toReturn = false and
+        returnCtx = TReturnCtxNone() and
         returnAp = apNone() and
         ap instanceof ApNil
       )
       or
       exists(NodeEx mid, FlowState state0, ApNil nil |
-        fwdFlow(node, _, _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(node, _, _, _, _, ap, pragma[only_bind_into](config)) and
         additionalJumpStateStep(node, state, mid, state0, config) and
         revFlow(pragma[only_bind_into](mid), pragma[only_bind_into](state0), _, _, nil,
           pragma[only_bind_into](config)) and
-        toReturn = false and
+        returnCtx = TReturnCtxNone() and
         returnAp = apNone() and
         ap instanceof ApNil
       )
       or
       // store
       exists(Ap ap0, Content c |
-        revFlowStore(ap0, c, ap, node, state, _, _, toReturn, returnAp, config) and
+        revFlowStore(ap0, c, ap, node, state, _, _, returnCtx, returnAp, config) and
         revFlowConsCand(ap0, c, ap, config)
       )
       or
       // read
       exists(NodeEx mid, Ap ap0 |
-        revFlow(mid, state, toReturn, returnAp, ap0, config) and
+        revFlow(mid, state, returnCtx, returnAp, ap0, config) and
         readStepFwd(node, ap, _, mid, ap0, config)
       )
       or
       // flow into a callable
       revFlowInNotToReturn(node, state, returnAp, ap, config) and
-      toReturn = false
+      returnCtx = TReturnCtxNone()
       or
-      exists(DataFlowCall call, Ap returnAp0 |
-        revFlowInToReturn(call, node, state, returnAp0, ap, config) and
-        revFlowIsReturned(call, toReturn, returnAp, returnAp0, config)
+      // flow through a callable
+      exists(DataFlowCall call, ReturnPosition returnPos0, Ap returnAp0 |
+        revFlowInToReturn(call, node, state, returnPos0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnPos0, returnAp0, config)
       )
       or
       // flow out of a callable
-      revFlowOut(_, node, state, _, _, ap, config) and
-      toReturn = true and
-      if returnNodeMayFlowThrough(node, state, ap, config)
-      then returnAp = apSome(ap)
-      else returnAp = apNone()
+      exists(ReturnPosition pos |
+        revFlowOut(_, node, pos, state, _, _, ap, config) and
+        if returnFlowsThrough(node, pos, state, _, _, _, ap, config)
+        then (
+          returnCtx = TReturnCtxMaybeFlowThrough(pos) and
+          returnAp = apSome(ap)
+        ) else (
+          returnCtx = TReturnCtxNoFlowThrough() and returnAp = apNone()
+        )
+      )
     }
 
     pragma[nomagic]
     private predicate revFlowStore(
       Ap ap0, Content c, Ap ap, NodeEx node, FlowState state, TypedContent tc, NodeEx mid,
-      boolean toReturn, ApOption returnAp, Configuration config
+      ReturnCtx returnCtx, ApOption returnAp, Configuration config
     ) {
-      revFlow(mid, state, toReturn, returnAp, ap0, config) and
+      revFlow(mid, state, returnCtx, returnAp, ap0, config) and
       storeStepFwd(node, ap, tc, mid, ap0, config) and
       tc.getContent() = c
     }
@@ -1599,12 +1638,12 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate revFlowOut(
-      DataFlowCall call, RetNodeEx ret, FlowState state, boolean toReturn, ApOption returnAp, Ap ap,
-      Configuration config
+      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, FlowState state, ReturnCtx returnCtx,
+      ApOption returnAp, Ap ap, Configuration config
     ) {
       exists(NodeEx out, boolean allowsFieldFlow |
-        revFlow(out, state, toReturn, returnAp, ap, config) and
-        flowOutOfCall(call, ret, out, allowsFieldFlow, config) and
+        revFlow(out, state, returnCtx, returnAp, ap, config) and
+        flowOutOfCall(call, ret, pos, out, allowsFieldFlow, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
@@ -1614,7 +1653,7 @@ private module MkStage<StageSig PrevStage> {
       ArgNodeEx arg, FlowState state, ApOption returnAp, Ap ap, Configuration config
     ) {
       exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(p, state, false, returnAp, ap, config) and
+        revFlow(p, state, TReturnCtxNone(), returnAp, ap, config) and
         flowIntoCall(_, arg, p, allowsFieldFlow, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
@@ -1622,12 +1661,14 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate revFlowInToReturn(
-      DataFlowCall call, ArgNodeEx arg, FlowState state, Ap returnAp, Ap ap, Configuration config
+      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnPosition returnPos, Ap returnAp,
+      Ap ap, Configuration config
     ) {
       exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(p, state, true, apSome(returnAp), ap, config) and
+        revFlow(p, state, TReturnCtxMaybeFlowThrough(returnPos), apSome(returnAp), ap, config) and
         flowThroughIntoCall(call, arg, p, allowsFieldFlow, config) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
+        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
+        parameterFlowThroughAllowed(p.asNode(), returnPos.getKind())
       )
     }
 
@@ -1638,11 +1679,12 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate revFlowIsReturned(
-      DataFlowCall call, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
+      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnPosition pos, Ap ap,
+      Configuration config
     ) {
       exists(RetNodeEx ret, FlowState state, CcCall ccc |
-        revFlowOut(call, ret, state, toReturn, returnAp, ap, config) and
-        fwdFlow(ret, state, ccc, apSome(_), ap, config) and
+        revFlowOut(call, ret, pos, state, returnCtx, returnAp, ap, config) and
+        returnFlowsThrough(ret, pos, state, ccc, _, _, ap, config) and
         matchesCall(ccc, call)
       )
     }
@@ -1713,40 +1755,39 @@ private module MkStage<StageSig PrevStage> {
       validAp(ap, config)
     }
 
-    pragma[noinline]
-    private predicate parameterFlow(
-      ParamNodeEx p, Ap ap, Ap ap0, DataFlowCallable c, Configuration config
+    pragma[nomagic]
+    private predicate parameterFlowsThroughRev(
+      ParamNodeEx p, Ap ap, ReturnPosition returnPos, Configuration config
     ) {
-      revFlow(p, _, true, apSome(ap0), ap, config) and
-      c = p.getEnclosingCallable()
+      revFlow(p, _, TReturnCtxMaybeFlowThrough(returnPos), apSome(_), ap, config) and
+      parameterFlowThroughAllowed(p.asNode(), returnPos.getKind())
     }
 
-    predicate parameterMayFlowThrough(ParamNodeEx p, DataFlowCallable c, Ap ap, Configuration config) {
-      exists(RetNodeEx ret, FlowState state, Ap ap0, ReturnKindExt kind, ParameterPosition pos |
-        parameterFlow(p, ap, ap0, c, config) and
-        c = ret.getEnclosingCallable() and
-        revFlow(pragma[only_bind_into](ret), pragma[only_bind_into](state), true, apSome(_),
-          pragma[only_bind_into](ap0), pragma[only_bind_into](config)) and
-        fwdFlow(ret, state, any(CcCall ccc), apSome(ap), ap0, config) and
-        kind = ret.getKind() and
-        p.getPosition() = pos and
-        // we don't expect a parameter to return stored in itself, unless explicitly allowed
-        (
-          not kind.(ParamUpdateReturnKind).getPosition() = pos
-          or
-          p.allowParameterReturnInSelf()
-        )
+    pragma[nomagic]
+    predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
+      exists(RetNodeEx ret, ReturnPosition pos |
+        returnFlowsThrough(ret, pos, _, _, p.asNode(), ap, _, config) and
+        parameterFlowsThroughRev(p, ap, pos, config)
+      )
+    }
+
+    pragma[nomagic]
+    predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config) {
+      exists(ParamNodeEx p, Ap ap |
+        returnFlowsThrough(ret, pos, _, _, p.asNode(), ap, _, config) and
+        parameterFlowsThroughRev(p, ap, pos, config)
       )
     }
 
     pragma[nomagic]
     predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
       exists(
-        Ap returnAp0, ArgNodeEx arg, FlowState state, boolean toReturn, ApOption returnAp, Ap ap
+        ReturnPosition returnPos0, Ap returnAp0, ArgNodeEx arg, FlowState state,
+        ReturnCtx returnCtx, ApOption returnAp, Ap ap
       |
-        revFlow(arg, state, toReturn, returnAp, ap, config) and
-        revFlowInToReturn(call, arg, state, returnAp0, ap, config) and
-        revFlowIsReturned(call, toReturn, returnAp, returnAp0, config)
+        revFlow(arg, state, returnCtx, returnAp, ap, config) and
+        revFlowInToReturn(call, arg, state, returnPos0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnPos0, returnAp0, config)
       )
     }
 
@@ -1754,13 +1795,13 @@ private module MkStage<StageSig PrevStage> {
       boolean fwd, int nodes, int fields, int conscand, int states, int tuples, Configuration config
     ) {
       fwd = true and
-      nodes = count(NodeEx node | fwdFlow(node, _, _, _, _, config)) and
+      nodes = count(NodeEx node | fwdFlow(node, _, _, _, _, _, config)) and
       fields = count(TypedContent f0 | fwdConsCand(f0, _, config)) and
       conscand = count(TypedContent f0, Ap ap | fwdConsCand(f0, ap, config)) and
-      states = count(FlowState state | fwdFlow(_, state, _, _, _, config)) and
+      states = count(FlowState state | fwdFlow(_, state, _, _, _, _, config)) and
       tuples =
-        count(NodeEx n, FlowState state, Cc cc, ApOption argAp, Ap ap |
-          fwdFlow(n, state, cc, argAp, ap, config)
+        count(NodeEx n, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap |
+          fwdFlow(n, state, cc, summaryCtx, argAp, ap, config)
         )
       or
       fwd = false and
@@ -1769,8 +1810,8 @@ private module MkStage<StageSig PrevStage> {
       conscand = count(TypedContent f0, Ap ap | consCand(f0, ap, config)) and
       states = count(FlowState state | revFlow(_, state, _, _, _, config)) and
       tuples =
-        count(NodeEx n, FlowState state, boolean b, ApOption retAp, Ap ap |
-          revFlow(n, state, b, retAp, ap, config)
+        count(NodeEx n, FlowState state, ReturnCtx returnCtx, ApOption retAp, Ap ap |
+          revFlow(n, state, returnCtx, retAp, ap, config)
         )
     }
     /* End: Stage logic. */
@@ -1915,7 +1956,7 @@ private module Stage2Param implements MkStage<Stage1>::StageParam {
     exists(lcc)
   }
 
-  predicate flowOutOfCall = flowOutOfCallNodeCand1/5;
+  predicate flowOutOfCall = flowOutOfCallNodeCand1/6;
 
   predicate flowIntoCall = flowIntoCallNodeCand1/5;
 
@@ -1951,9 +1992,10 @@ private module Stage2 implements StageSig {
 
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand2(
-  DataFlowCall call, RetNodeEx node1, NodeEx node2, boolean allowsFieldFlow, Configuration config
+  DataFlowCall call, RetNodeEx node1, ReturnPosition pos, NodeEx node2, boolean allowsFieldFlow,
+  Configuration config
 ) {
-  flowOutOfCallNodeCand1(call, node1, node2, allowsFieldFlow, config) and
+  flowOutOfCallNodeCand1(call, node1, pos, node2, allowsFieldFlow, config) and
   Stage2::revFlow(node2, pragma[only_bind_into](config)) and
   Stage2::revFlowAlias(node1, pragma[only_bind_into](config))
 }
@@ -2021,8 +2063,8 @@ private module LocalFlowBigStep {
     exists(NodeEx next | Stage2::revFlow(next, state, config) |
       jumpStep(node, next, config) or
       additionalJumpStep(node, next, config) or
-      flowIntoCallNodeCand1(_, node, next, config) or
-      flowOutOfCallNodeCand1(_, node, next, config) or
+      flowIntoCallNodeCand2(_, node, next, _, config) or
+      flowOutOfCallNodeCand2(_, node, _, next, _, config) or
       Stage2::storeStepCand(node, _, _, next, _, config) or
       Stage2::readStepCand(node, _, next, config)
     )
@@ -2163,7 +2205,7 @@ private module Stage3Param implements MkStage<Stage2>::StageParam {
     localFlowBigStep(node1, state1, node2, state2, preservesValue, ap, config, _) and exists(lcc)
   }
 
-  predicate flowOutOfCall = flowOutOfCallNodeCand2/5;
+  predicate flowOutOfCall = flowOutOfCallNodeCand2/6;
 
   predicate flowIntoCall = flowIntoCallNodeCand2/5;
 
@@ -2233,8 +2275,9 @@ private predicate flowCandSummaryCtx(
   NodeEx node, FlowState state, AccessPathFront argApf, Configuration config
 ) {
   exists(AccessPathFront apf |
-    Stage3::revFlow(node, state, true, _, apf, config) and
-    Stage3::fwdFlow(node, state, any(Stage3::CcCall ccc), TAccessPathFrontSome(argApf), apf, config)
+    Stage3::revFlow(node, state, TReturnCtxMaybeFlowThrough(_), _, apf, config) and
+    Stage3::fwdFlow(node, state, any(Stage3::CcCall ccc), _, TAccessPathFrontSome(argApf), apf,
+      config)
   )
 }
 
@@ -2468,10 +2511,11 @@ private module Stage4Param implements MkStage<Stage3>::StageParam {
 
   pragma[nomagic]
   predicate flowOutOfCall(
-    DataFlowCall call, RetNodeEx node1, NodeEx node2, boolean allowsFieldFlow, Configuration config
+    DataFlowCall call, RetNodeEx node1, ReturnPosition pos, NodeEx node2, boolean allowsFieldFlow,
+    Configuration config
   ) {
     exists(FlowState state |
-      flowOutOfCallNodeCand2(call, node1, node2, allowsFieldFlow, config) and
+      flowOutOfCallNodeCand2(call, node1, pos, node2, allowsFieldFlow, config) and
       PrevStage::revFlow(node2, pragma[only_bind_into](state), _, pragma[only_bind_into](config)) and
       PrevStage::revFlowAlias(node1, pragma[only_bind_into](state), _,
         pragma[only_bind_into](config))
@@ -2508,13 +2552,13 @@ private Configuration unbindConf(Configuration conf) {
 
 pragma[nomagic]
 private predicate nodeMayUseSummary0(
-  NodeEx n, DataFlowCallable c, FlowState state, AccessPathApprox apa, Configuration config
+  NodeEx n, ParamNodeEx p, FlowState state, AccessPathApprox apa, Configuration config
 ) {
   exists(AccessPathApprox apa0 |
-    Stage4::parameterMayFlowThrough(_, c, _, _) and
-    Stage4::revFlow(n, state, true, _, apa0, config) and
-    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TAccessPathApproxSome(apa), apa0, config) and
-    n.getEnclosingCallable() = c
+    Stage4::parameterMayFlowThrough(p, _, _) and
+    Stage4::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
+    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TParamNodeSome(p.asNode()),
+      TAccessPathApproxSome(apa), apa0, config)
   )
 }
 
@@ -2522,9 +2566,9 @@ pragma[nomagic]
 private predicate nodeMayUseSummary(
   NodeEx n, FlowState state, AccessPathApprox apa, Configuration config
 ) {
-  exists(DataFlowCallable c |
-    Stage4::parameterMayFlowThrough(_, c, apa, config) and
-    nodeMayUseSummary0(n, c, state, apa, config)
+  exists(ParamNodeEx p |
+    Stage4::parameterMayFlowThrough(p, apa, config) and
+    nodeMayUseSummary0(n, p, state, apa, config)
   )
 }
 
@@ -2532,7 +2576,7 @@ private newtype TSummaryCtx =
   TSummaryCtxNone() or
   TSummaryCtxSome(ParamNodeEx p, FlowState state, AccessPath ap) {
     exists(Configuration config |
-      Stage4::parameterMayFlowThrough(p, _, ap.getApprox(), config) and
+      Stage4::parameterMayFlowThrough(p, ap.getApprox(), config) and
       Stage4::revFlow(p, state, _, config)
     )
   }
@@ -3453,17 +3497,11 @@ private predicate paramFlowsThrough(
   ReturnKindExt kind, FlowState state, CallContextCall cc, SummaryCtxSome sc, AccessPath ap,
   AccessPathApprox apa, Configuration config
 ) {
-  exists(PathNodeMid mid, RetNodeEx ret, ParameterPosition pos |
+  exists(PathNodeMid mid, RetNodeEx ret |
     pathNode(mid, ret, state, cc, sc, ap, config, _) and
     kind = ret.getKind() and
     apa = ap.getApprox() and
-    pos = sc.getParameterPos() and
-    // we don't expect a parameter to return stored in itself, unless explicitly allowed
-    (
-      not kind.(ParamUpdateReturnKind).getPosition() = pos
-      or
-      sc.getParamNode().allowParameterReturnInSelf()
-    )
+    parameterFlowThroughAllowed(sc.getParamNode().asNode(), kind)
   )
 }
 
diff --git a/swift/ql/lib/codeql/swift/dataflow/internal/DataFlowImplCommon.qll b/swift/ql/lib/codeql/swift/dataflow/internal/DataFlowImplCommon.qll
index ae9c6f3f12e..621ed34f9d0 100644
--- a/swift/ql/lib/codeql/swift/dataflow/internal/DataFlowImplCommon.qll
+++ b/swift/ql/lib/codeql/swift/dataflow/internal/DataFlowImplCommon.qll
@@ -915,6 +915,17 @@ private module Cached {
     TDataFlowCallNone() or
     TDataFlowCallSome(DataFlowCall call)
 
+  cached
+  newtype TParamNodeOption =
+    TParamNodeNone() or
+    TParamNodeSome(ParamNode p)
+
+  cached
+  newtype TReturnCtx =
+    TReturnCtxNone() or
+    TReturnCtxNoFlowThrough() or
+    TReturnCtxMaybeFlowThrough(ReturnPosition pos)
+
   cached
   newtype TTypedContent = MkTypedContent(Content c, DataFlowType t) { store(_, c, _, _, t) }
 
@@ -1304,6 +1315,44 @@ class DataFlowCallOption extends TDataFlowCallOption {
   }
 }
 
+/** An optional `ParamNode`. */
+class ParamNodeOption extends TParamNodeOption {
+  string toString() {
+    this = TParamNodeNone() and
+    result = "(none)"
+    or
+    exists(ParamNode p |
+      this = TParamNodeSome(p) and
+      result = p.toString()
+    )
+  }
+}
+
+/**
+ * A return context used to calculate flow summaries in reverse flow.
+ *
+ * The possible values are:
+ *
+ * - `TReturnCtxNone()`: no return flow.
+ * - `TReturnCtxNoFlowThrough()`: return flow, but flow through is not possible.
+ * - `TReturnCtxMaybeFlowThrough(ReturnPosition pos)`: return flow, of kind `pos`, and
+ *    flow through may be possible.
+ */
+class ReturnCtx extends TReturnCtx {
+  string toString() {
+    this = TReturnCtxNone() and
+    result = "(none)"
+    or
+    this = TReturnCtxNoFlowThrough() and
+    result = "(no flow through)"
+    or
+    exists(ReturnPosition pos |
+      this = TReturnCtxMaybeFlowThrough(pos) and
+      result = pos.toString()
+    )
+  }
+}
+
 /** A `Content` tagged with the type of a containing object. */
 class TypedContent extends MkTypedContent {
   private Content c;

From 26866a733785cf9f8a10adcb0cb7e3bbdbba420e Mon Sep 17 00:00:00 2001
From: Anders Fugmann <anders@fugmann.net>
Date: Mon, 21 Nov 2022 09:58:12 +0100
Subject: [PATCH 0498/1420] Swift: set @github/codeql-swift as owner

---
 CODEOWNERS | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/CODEOWNERS b/CODEOWNERS
index 86f38eeee22..55ee2f974f7 100644
--- a/CODEOWNERS
+++ b/CODEOWNERS
@@ -5,7 +5,7 @@
 /javascript/ @github/codeql-javascript
 /python/ @github/codeql-python
 /ruby/ @github/codeql-ruby
-/swift/ @github/codeql-c
+/swift/ @github/codeql-swift
 /java/kotlin-extractor/ @github/codeql-kotlin
 /java/kotlin-explorer/ @github/codeql-kotlin
 
@@ -45,4 +45,4 @@ WORKSPACE.bazel @github/codeql-ci-reviewers
 /.github/workflows/js-ml-tests.yml @github/codeql-ml-powered-queries-reviewers
 /.github/workflows/ql-for-ql-* @github/codeql-ql-for-ql-reviewers
 /.github/workflows/ruby-* @github/codeql-ruby
-/.github/workflows/swift.yml @github/codeql-c
+/.github/workflows/swift.yml @github/codeql-swift

From 2809c3a77cf4dbd64b824d78d0620ba85cb62ccc Mon Sep 17 00:00:00 2001
From: Tony Torralba <atorralba@users.noreply.github.com>
Date: Mon, 21 Nov 2022 10:11:57 +0100
Subject: [PATCH 0499/1420] Handle disabled Maven repositories

---
 java/ql/lib/semmle/code/xml/MavenPom.qll             |  9 +++++++++
 .../CWE/CWE-829/InsecureDependencyResolution.ql      |  3 ++-
 .../security/CWE-829/semmle/tests/secure-pom.xml     | 12 ++++++++++++
 3 files changed, 23 insertions(+), 1 deletion(-)

diff --git a/java/ql/lib/semmle/code/xml/MavenPom.qll b/java/ql/lib/semmle/code/xml/MavenPom.qll
index 8af6e6f0128..612c1468259 100644
--- a/java/ql/lib/semmle/code/xml/MavenPom.qll
+++ b/java/ql/lib/semmle/code/xml/MavenPom.qll
@@ -381,6 +381,15 @@ class DeclaredRepository extends PomElement {
    * be the string contents of that tag.
    */
   string getRepositoryUrl() { result = this.getAChild("url").(PomElement).getValue() }
+
+  /**
+   * Holds if this repository is disabled in both the `releases` and `snapshots` policies.
+   */
+  predicate isDisabled() {
+    forex(PomElement policy | policy = this.getAChild(["releases", "snapshots"]) |
+      policy.getAChild("enabled").(PomElement).getValue() = "false"
+    )
+  }
 }
 
 /**
diff --git a/java/ql/src/Security/CWE/CWE-829/InsecureDependencyResolution.ql b/java/ql/src/Security/CWE/CWE-829/InsecureDependencyResolution.ql
index ede03c50b00..dca1a9cc4b7 100644
--- a/java/ql/src/Security/CWE/CWE-829/InsecureDependencyResolution.ql
+++ b/java/ql/src/Security/CWE/CWE-829/InsecureDependencyResolution.ql
@@ -17,7 +17,8 @@ import java
 import semmle.code.xml.MavenPom
 
 predicate isInsecureRepositoryUsage(DeclaredRepository repository) {
-  repository.getRepositoryUrl().regexpMatch("(?i)^(http|ftp)://(?!localhost[:/]).*")
+  repository.getRepositoryUrl().regexpMatch("(?i)^(http|ftp)://(?!localhost[:/]).*") and
+  not repository.isDisabled()
 }
 
 from DeclaredRepository repository
diff --git a/java/ql/test/query-tests/security/CWE-829/semmle/tests/secure-pom.xml b/java/ql/test/query-tests/security/CWE-829/semmle/tests/secure-pom.xml
index 2f96052d584..2dc5709b320 100644
--- a/java/ql/test/query-tests/security/CWE-829/semmle/tests/secure-pom.xml
+++ b/java/ql/test/query-tests/security/CWE-829/semmle/tests/secure-pom.xml
@@ -61,5 +61,17 @@
             <!-- GOOD! Use HTTPS -->
             <url>https://insecure-repository.example</url>
         </pluginRepository>
+        <pluginRepository>
+            <id>disabled-repo</id>
+            <name>Disabled Repository</name>
+            <releases>
+                <enabled>false</enabled>
+            </releases>
+            <snapshots>
+                <enabled>false</enabled>
+            </snapshots>
+            <!-- GOOD! Disabled repo -->
+            <url>http://insecure-repository.example</url>
+        </pluginRepository>
     </pluginRepositories>
 </project>

From aa2c7426ad63aead9fe3572421b40e44bf541a5f Mon Sep 17 00:00:00 2001
From: Tony Torralba <atorralba@users.noreply.github.com>
Date: Mon, 21 Nov 2022 11:42:40 +0100
Subject: [PATCH 0500/1420] Add change note

---
 .../change-notes/2022-11-21-disabled-maven-repositories.md    | 4 ++++
 1 file changed, 4 insertions(+)
 create mode 100644 java/ql/src/change-notes/2022-11-21-disabled-maven-repositories.md

diff --git a/java/ql/src/change-notes/2022-11-21-disabled-maven-repositories.md b/java/ql/src/change-notes/2022-11-21-disabled-maven-repositories.md
new file mode 100644
index 00000000000..5d060b06076
--- /dev/null
+++ b/java/ql/src/change-notes/2022-11-21-disabled-maven-repositories.md
@@ -0,0 +1,4 @@
+---
+category: minorAnalysis
+---
+* The query `java/maven/non-https-url` no longer alerts about disabled repositories.

From 752bc2e980cd93f6db49a0cd1cbe16f37b3d2514 Mon Sep 17 00:00:00 2001
From: Jeroen Ketema <jketema@github.com>
Date: Mon, 21 Nov 2022 11:45:09 +0100
Subject: [PATCH 0501/1420] C++: Accept test changes after AST-based GVN
 deprecation

---
 .../valuenumbering/GlobalValueNumbering/ast_gvn.expected       | 1 +
 .../GlobalValueNumbering/ast_uniqueness.expected               | 3 +++
 .../valuenumbering/GlobalValueNumbering/diff_ir_expr.expected  | 1 +
 3 files changed, 5 insertions(+)

diff --git a/cpp/ql/test/library-tests/valuenumbering/GlobalValueNumbering/ast_gvn.expected b/cpp/ql/test/library-tests/valuenumbering/GlobalValueNumbering/ast_gvn.expected
index d5d46ee0b72..69c21b5e0b1 100644
--- a/cpp/ql/test/library-tests/valuenumbering/GlobalValueNumbering/ast_gvn.expected
+++ b/cpp/ql/test/library-tests/valuenumbering/GlobalValueNumbering/ast_gvn.expected
@@ -1,3 +1,4 @@
+WARNING: Type GVN has been deprecated and may be removed in future (ast_gvn.ql:4,6-9)
 | test.cpp:5:3:5:3 | x | 5:c3-c3 6:c3-c3 |
 | test.cpp:5:7:5:8 | p0 | 5:c7-c8 6:c7-c8 |
 | test.cpp:5:7:5:13 | ... + ... | 5:c7-c13 6:c7-c13 7:c7-c7 |
diff --git a/cpp/ql/test/library-tests/valuenumbering/GlobalValueNumbering/ast_uniqueness.expected b/cpp/ql/test/library-tests/valuenumbering/GlobalValueNumbering/ast_uniqueness.expected
index e69de29bb2d..d94d58ad5ea 100644
--- a/cpp/ql/test/library-tests/valuenumbering/GlobalValueNumbering/ast_uniqueness.expected
+++ b/cpp/ql/test/library-tests/valuenumbering/GlobalValueNumbering/ast_uniqueness.expected
@@ -0,0 +1,3 @@
+WARNING: Predicate globalValueNumber has been deprecated and may be removed in future (ast_uniqueness.ql:7,13-30)
+WARNING: Predicate globalValueNumber has been deprecated and may be removed in future (ast_uniqueness.ql:8,30-47)
+WARNING: Type GVN has been deprecated and may be removed in future (ast_uniqueness.ql:8,18-21)
diff --git a/cpp/ql/test/library-tests/valuenumbering/GlobalValueNumbering/diff_ir_expr.expected b/cpp/ql/test/library-tests/valuenumbering/GlobalValueNumbering/diff_ir_expr.expected
index b838a13d5af..810c83f197f 100644
--- a/cpp/ql/test/library-tests/valuenumbering/GlobalValueNumbering/diff_ir_expr.expected
+++ b/cpp/ql/test/library-tests/valuenumbering/GlobalValueNumbering/diff_ir_expr.expected
@@ -1,3 +1,4 @@
+WARNING: Predicate globalValueNumber has been deprecated and may be removed in future (diff_ir_expr.ql:8,29-51)
 | test.cpp:5:3:5:13 | ... = ... | test.cpp:5:3:5:13 | ... = ... | AST only |
 | test.cpp:6:3:6:13 | ... = ... | test.cpp:6:3:6:13 | ... = ... | AST only |
 | test.cpp:7:3:7:7 | ... = ... | test.cpp:7:3:7:7 | ... = ... | AST only |

From 8c9431d278670f29d41784396d4bb69a2e325432 Mon Sep 17 00:00:00 2001
From: Tom Hvitved <hvitved@github.com>
Date: Mon, 21 Nov 2022 11:58:59 +0100
Subject: [PATCH 0502/1420] CFG: Workaround in test output for source/sink
 pairs with multiple edges

---
 .../internal/ControlFlowGraphImplShared.qll            | 10 +++++++---
 .../library-tests/controlflow/graph/NodeGraph.expected |  4 ++--
 2 files changed, 9 insertions(+), 5 deletions(-)

diff --git a/csharp/ql/lib/semmle/code/csharp/controlflow/internal/ControlFlowGraphImplShared.qll b/csharp/ql/lib/semmle/code/csharp/controlflow/internal/ControlFlowGraphImplShared.qll
index dbd90ba0ae1..5039d09ff22 100644
--- a/csharp/ql/lib/semmle/code/csharp/controlflow/internal/ControlFlowGraphImplShared.qll
+++ b/csharp/ql/lib/semmle/code/csharp/controlflow/internal/ControlFlowGraphImplShared.qll
@@ -907,9 +907,13 @@ module TestOutput {
 
   query predicate edges(RelevantNode pred, RelevantNode succ, string attr, string val) {
     attr = "semmle.label" and
-    exists(SuccessorType t | succ = getASuccessor(pred, t) |
-      if successorTypeIsSimple(t) then val = "" else val = t.toString()
-    )
+    val =
+      strictconcat(SuccessorType t, string s |
+        succ = getASuccessor(pred, t) and
+        if successorTypeIsSimple(t) then s = "" else s = t.toString()
+      |
+        s, ", " order by s
+      )
     or
     attr = "semmle.order" and
     val =
diff --git a/csharp/ql/test/library-tests/controlflow/graph/NodeGraph.expected b/csharp/ql/test/library-tests/controlflow/graph/NodeGraph.expected
index acabdc1835a..d5c2e78587d 100644
--- a/csharp/ql/test/library-tests/controlflow/graph/NodeGraph.expected
+++ b/csharp/ql/test/library-tests/controlflow/graph/NodeGraph.expected
@@ -2775,7 +2775,7 @@ Assert.cs:
 #-----| true -> access to parameter b2
 
 #  140| [assertion failure] access to parameter b2
-#-----| false -> [assertion failure] access to parameter b3
+#-----| false, true -> [assertion failure] access to parameter b3
 
 #  140| access to parameter b2
 #-----| false -> [assertion success] access to parameter b3
@@ -4924,7 +4924,7 @@ ExitMethods.cs:
 #-----|  -> ...;
 
 #   22| call to method ErrorAlways
-#-----| exception(Exception) -> exit M3 (abnormal)
+#-----| exception(ArgumentException), exception(Exception) -> exit M3 (abnormal)
 
 #   22| ...;
 #-----|  -> true

From e7ed056b6f27988b6ca90fb32dce3cf634c560fb Mon Sep 17 00:00:00 2001
From: Tom Hvitved <hvitved@github.com>
Date: Mon, 21 Nov 2022 12:00:36 +0100
Subject: [PATCH 0503/1420] Sync files

---
 .../internal/ControlFlowGraphImplShared.qll            | 10 +++++++---
 .../internal/ControlFlowGraphImplShared.qll            | 10 +++++++---
 2 files changed, 14 insertions(+), 6 deletions(-)

diff --git a/ruby/ql/lib/codeql/ruby/controlflow/internal/ControlFlowGraphImplShared.qll b/ruby/ql/lib/codeql/ruby/controlflow/internal/ControlFlowGraphImplShared.qll
index dbd90ba0ae1..5039d09ff22 100644
--- a/ruby/ql/lib/codeql/ruby/controlflow/internal/ControlFlowGraphImplShared.qll
+++ b/ruby/ql/lib/codeql/ruby/controlflow/internal/ControlFlowGraphImplShared.qll
@@ -907,9 +907,13 @@ module TestOutput {
 
   query predicate edges(RelevantNode pred, RelevantNode succ, string attr, string val) {
     attr = "semmle.label" and
-    exists(SuccessorType t | succ = getASuccessor(pred, t) |
-      if successorTypeIsSimple(t) then val = "" else val = t.toString()
-    )
+    val =
+      strictconcat(SuccessorType t, string s |
+        succ = getASuccessor(pred, t) and
+        if successorTypeIsSimple(t) then s = "" else s = t.toString()
+      |
+        s, ", " order by s
+      )
     or
     attr = "semmle.order" and
     val =
diff --git a/swift/ql/lib/codeql/swift/controlflow/internal/ControlFlowGraphImplShared.qll b/swift/ql/lib/codeql/swift/controlflow/internal/ControlFlowGraphImplShared.qll
index dbd90ba0ae1..5039d09ff22 100644
--- a/swift/ql/lib/codeql/swift/controlflow/internal/ControlFlowGraphImplShared.qll
+++ b/swift/ql/lib/codeql/swift/controlflow/internal/ControlFlowGraphImplShared.qll
@@ -907,9 +907,13 @@ module TestOutput {
 
   query predicate edges(RelevantNode pred, RelevantNode succ, string attr, string val) {
     attr = "semmle.label" and
-    exists(SuccessorType t | succ = getASuccessor(pred, t) |
-      if successorTypeIsSimple(t) then val = "" else val = t.toString()
-    )
+    val =
+      strictconcat(SuccessorType t, string s |
+        succ = getASuccessor(pred, t) and
+        if successorTypeIsSimple(t) then s = "" else s = t.toString()
+      |
+        s, ", " order by s
+      )
     or
     attr = "semmle.order" and
     val =

From 256d8547c1b80739f7bdd757de364a7dc77e1d80 Mon Sep 17 00:00:00 2001
From: Gustav <grddev@gmail.com>
Date: Mon, 21 Nov 2022 12:29:16 +0100
Subject: [PATCH 0504/1420] Fix copy-paste error

---
 go/extractor/util/util.go | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/go/extractor/util/util.go b/go/extractor/util/util.go
index 71ca932f366..b50651dbe98 100644
--- a/go/extractor/util/util.go
+++ b/go/extractor/util/util.go
@@ -123,8 +123,8 @@ func GetPkgsInfo(patterns []string, includingDeps bool, flags ...string) (map[st
 // It passes the `go list` the flags specified by `flags`.
 func GetPkgInfo(pkgpath string, flags ...string) PkgInfo {
 	return PkgInfo{
-		PkgDir: GetModDir(pkgpath, flags...),
-		ModDir: GetPkgDir(pkgpath, flags...),
+		PkgDir: GetPkgDir(pkgpath, flags...),
+		ModDir: GetModDir(pkgpath, flags...),
 	}
 }
 

From 2fac505221f7361066d02eb732b7703a4ca93f2e Mon Sep 17 00:00:00 2001
From: Tom Hvitved <hvitved@github.com>
Date: Mon, 21 Nov 2022 12:52:27 +0100
Subject: [PATCH 0505/1420] Ruby: Update expected test output

---
 .../controlflow/graph/Cfg.expected            | 20 +++++++++----------
 1 file changed, 10 insertions(+), 10 deletions(-)

diff --git a/ruby/ql/test/library-tests/controlflow/graph/Cfg.expected b/ruby/ql/test/library-tests/controlflow/graph/Cfg.expected
index 9c26785029e..e51c50d2af5 100644
--- a/ruby/ql/test/library-tests/controlflow/graph/Cfg.expected
+++ b/ruby/ql/test/library-tests/controlflow/graph/Cfg.expected
@@ -811,7 +811,7 @@ case.rb:
 #-----|  -> [ ..., * ]
 
 #   35| [ ..., * ]
-#-----| match -> x
+#-----| false, match, true -> x
 #-----| no-match -> in ... then ...
 
 #   35| x
@@ -821,7 +821,7 @@ case.rb:
 #-----|  -> [ ..., * ]
 
 #   36| [ ..., * ]
-#-----| match -> x
+#-----| false, match, true -> x
 #-----| no-match -> in ... then ...
 
 #   36| x
@@ -836,7 +836,7 @@ case.rb:
 
 #   37| [ ..., * ]
 #-----| raise -> exit case_match_array (abnormal)
-#-----| match -> a
+#-----| false, match, true -> a
 
 #   37| a
 #-----| match -> b
@@ -881,7 +881,7 @@ case.rb:
 
 #   43| [ *,...,* ]
 #-----| raise -> exit case_match_find (abnormal)
-#-----| match -> x
+#-----| false, match, true -> x
 
 #   43| x
 #-----|  -> 1
@@ -931,7 +931,7 @@ case.rb:
 #-----| no-match -> in ... then ...
 
 #   49| { ..., ** }
-#-----| match -> 1
+#-----| false, match, true -> 1
 #-----| no-match -> in ... then ...
 
 #   49| 1
@@ -952,7 +952,7 @@ case.rb:
 #-----| no-match -> in ... then ...
 
 #   50| { ..., ** }
-#-----| match -> 1
+#-----| false, match, true -> 1
 #-----| no-match -> in ... then ...
 
 #   50| 1
@@ -968,7 +968,7 @@ case.rb:
 
 #   51| { ..., ** }
 #-----| raise -> exit case_match_hash (abnormal)
-#-----| match -> case ...
+#-----| false, match, true -> case ...
 
 #   55| case_match_variable
 #-----|  -> case_match_underscore
@@ -1372,7 +1372,7 @@ case.rb:
 
 #   91| { ..., ** }
 #-----| raise -> exit case_match_various (abnormal)
-#-----| match -> case ...
+#-----| false, match, true -> case ...
 
 #   95| case_match_guard_no_else
 #-----|  -> exit case.rb (normal)
@@ -2559,7 +2559,7 @@ cfg.rb:
 #-----|  -> type
 
 #  101| value
-#-----| no-match -> 42
+#-----| false, no-match, true -> 42
 #-----| match -> key
 
 #  101| 42
@@ -6535,7 +6535,7 @@ raise.rb:
 #-----|  -> m11
 
 #  121| p
-#-----| no-match -> self
+#-----| false, no-match, true -> self
 #-----| match -> self
 
 #  121| call to raise

From 0d89f57680bf9d8fc8549af4a87c9a784a857668 Mon Sep 17 00:00:00 2001
From: Tom Hvitved <hvitved@github.com>
Date: Mon, 21 Nov 2022 12:55:40 +0100
Subject: [PATCH 0506/1420] Swift: Update expected test output

---
 .../ql/test/library-tests/controlflow/graph/Cfg.expected  | 8 ++++----
 1 file changed, 4 insertions(+), 4 deletions(-)

diff --git a/swift/ql/test/library-tests/controlflow/graph/Cfg.expected b/swift/ql/test/library-tests/controlflow/graph/Cfg.expected
index c32c235ca1b..8146cf4fa3a 100644
--- a/swift/ql/test/library-tests/controlflow/graph/Cfg.expected
+++ b/swift/ql/test/library-tests/controlflow/graph/Cfg.expected
@@ -250,14 +250,14 @@ cfg.swift:
 #-----| match -> 0
 
 #   33| .error1
-#-----| no-match -> ... is ...
+#-----| match, no-match -> ... is ...
 
 #   33| ... is ...
-#-----| no-match -> call to isZero(x:)
+#-----| match, no-match -> call to isZero(x:)
 #-----| no-match -> case ...
 
 #   33| .error2
-#-----| no-match -> ... is ...
+#-----| match, no-match -> ... is ...
 
 #   33| ... is ... where ...
 #-----|  -> .error2
@@ -1577,7 +1577,7 @@ cfg.swift:
 #-----|  -> =~ ... where ...
 
 #  144| =~ ...
-#-----| no-match -> ... .&&(_:_:) ...
+#-----| match, no-match -> ... .&&(_:_:) ...
 #-----| no-match -> case ...
 
 #  144| x

From af58329931e4b8f1ae5c4ead2bb9722db5b4ba91 Mon Sep 17 00:00:00 2001
From: erik-krogh <erik-krogh@github.com>
Date: Mon, 21 Nov 2022 14:30:29 +0100
Subject: [PATCH 0507/1420] split saving the compilation cache into a shared
 workflow

---
 .../cache-query-compilation/action.yml        | 60 +++++++++++++++++++
 .github/workflows/compile-queries.yml         | 46 +++-----------
 2 files changed, 67 insertions(+), 39 deletions(-)
 create mode 100644 .github/actions/cache-query-compilation/action.yml

diff --git a/.github/actions/cache-query-compilation/action.yml b/.github/actions/cache-query-compilation/action.yml
new file mode 100644
index 00000000000..55b1eb10ffa
--- /dev/null
+++ b/.github/actions/cache-query-compilation/action.yml
@@ -0,0 +1,60 @@
+name: Cache query compilation
+description: Caches CodeQL compilation caches - should be run both on PRs and pushes to main.
+
+inputs:
+  key:
+    description: 'The cache key to use - should be unique to the workflow'
+    required: true
+
+outputs:
+  cache-dir:
+    description: "The directory where the cache was stored"
+    value: ${{ steps.fill-compilation-dir.outputs.compdir }}
+
+runs:
+  using: composite
+  steps:
+    # Cache the query compilation caches.
+    # calculate the merge-base with main, in a way that works both on PRs and pushes to main. 
+    - name: Calculate merge-base
+      shell: bash
+      if: ${{ github.event_name == 'pull_request' }}
+      env:
+        BASE_BRANCH: ${{ github.base_ref }}
+      run: |
+        MERGE_BASE=$(git cat-file commit $GITHUB_SHA | grep '^parent ' | head -1 | cut -f 2 -d " ")
+        echo "merge-base=$MERGE_BASE" >> $GITHUB_ENV
+    - name: Read CodeQL query compilation - PR
+      if: ${{ github.event_name == 'pull_request' }}
+      uses: actions/cache@v3
+      with:
+        path: '**/.cache'
+        key: codeql-compile-${{ inputs.key }}-pr-${{ github.sha }} # deliberately not using the `compile-compile-main` keys here.
+        restore-keys: |
+          codeql-compile-${{ inputs.key }}-${{ github.base_ref }}-${{ env.merge-base }}
+          codeql-compile-${{ inputs.key }}-${{ github.base_ref }}-
+          codeql-compile-${{ inputs.key }}-main-
+    - name: Fill CodeQL query compilation cache - main
+      if: ${{ github.event_name != 'pull_request' }}
+      uses: actions/cache@v3
+      with:
+        path: '**/.cache'
+        key: codeql-compile-${{ inputs.key }}-${{ github.ref_name }}-${{ github.sha }} # just fill on main
+        restore-keys: | # restore from another random commit, to speed up compilation.
+          codeql-compile-${{ inputs.key }}-${{ github.ref_name }}- 
+          codeql-compile-${{ inputs.key }}-main-
+    - name: Fill compilation cache directory
+      id: fill-compilation-dir
+      shell: bash 
+      run: |
+        # Move all the existing cache into another folder, so we only preserve the cache for the current queries.
+        mkdir -p ${COMBINED_CACHE_DIR}
+        rm -f **/.cache/{lock,size} # -f to avoid errors if the cache is empty.
+        # copy the contents of the .cache folders into the combined cache folder.
+        cp -r **/.cache/* ${COMBINED_CACHE_DIR}/ || : # ignore missing files
+        # clean up the .cache folders
+        rm -rf **/.cache/*
+
+        echo "compdir=${COMBINED_CACHE_DIR}" >> $GITHUB_OUTPUT
+      env: 
+        COMBINED_CACHE_DIR: ${{ github.workspace }}/compilation-dir
\ No newline at end of file
diff --git a/.github/workflows/compile-queries.yml b/.github/workflows/compile-queries.yml
index d053b1cb7c1..ee6d48c45ea 100644
--- a/.github/workflows/compile-queries.yml
+++ b/.github/workflows/compile-queries.yml
@@ -14,58 +14,26 @@ jobs:
 
     steps:
       - uses: actions/checkout@v3
-      # calculate the merge-base with main, in a way that works both on PRs and pushes to main. 
-      - name: Calculate merge-base
-        if: ${{ github.event_name == 'pull_request' }}
-        env:
-          BASE_BRANCH: ${{ github.base_ref }}
-        run: |
-          MERGE_BASE=$(git cat-file commit $GITHUB_SHA | grep '^parent ' | head -1 | cut -f 2 -d " ")
-          echo "merge-base=$MERGE_BASE" >> $GITHUB_ENV
-      - name: Read CodeQL query compilation - PR
-        if: ${{ github.event_name == 'pull_request' }}
-        uses: actions/cache@v3
-        with:
-          path: '**/.cache'
-          key: codeql-compile-pr-${{ github.sha }} # deliberately not using the `compile-compile-main` keys here.
-          restore-keys: |
-            codeql-compile-${{ github.base_ref }}-${{ env.merge-base }}
-            codeql-compile-${{ github.base_ref }}-
-            codeql-compile-main-
-      - name: Fill CodeQL query compilation cache - main
-        if: ${{ github.event_name != 'pull_request' }}
-        uses: actions/cache@v3
-        with:
-          path: '**/.cache'
-          key: codeql-compile-${{ github.ref_name }}-${{ github.sha }} # just fill on main
-          restore-keys: | # restore from another random commit, to speed up compilation.
-            codeql-compile-${{ github.ref_name }}- 
-            codeql-compile-main-
       - name: Setup CodeQL
         uses: ./.github/actions/fetch-codeql
         with:
           channel: 'release'
+      - name: Cache compilation cache
+        id: query-cache
+        uses: ./.github/actions/cache-query-compilation
+        with: 
+          key: all-queries
       - name: check formatting
         run: find */ql -type f \( -name "*.qll" -o -name "*.ql" \) -print0 | xargs -0 codeql query format --check-only
       - name: compile queries - check-only
         # run with --check-only if running in a PR (github.sha != main)
         if : ${{ github.event_name == 'pull_request' }}
         shell: bash
-        run: codeql query compile -j0 */ql/{src,examples} --keep-going --warnings=error --check-only
+        run: codeql query compile -j0 */ql/{src,examples} --keep-going --warnings=error --check-only --compilation-cache "${{ steps.query-cache.outputs.cache-dir }}"
       - name: compile queries - full
         # do full compile if running on main - this populates the cache
         if : ${{ github.event_name != 'pull_request' }}
         shell: bash
-        run: |
-          # Move all the existing cache into another folder, so we only preserve the cache for the current queries.
-          mkdir -p ${COMBINED_CACHE_DIR}
-          rm -f */ql/{src,examples}/.cache/{lock,size} # -f to avoid errors if the cache is empty.
-          # copy the contents of the .cache folders into the combined cache folder.
-          cp -r */ql/{src,examples}/.cache/* ${COMBINED_CACHE_DIR}/ || : # ignore missing files
-          # clean up the .cache folders
-          rm -rf */ql/{src,examples}/.cache/*
-
-          # compile the queries
-          codeql query compile -j0 */ql/{src,examples} --keep-going --warnings=error --compilation-cache ${COMBINED_CACHE_DIR}
+        run: codeql query compile -j0 */ql/{src,examples} --keep-going --warnings=error --compilation-cache "${{ steps.query-cache.outputs.cache-dir }}"
         env: 
           COMBINED_CACHE_DIR: ${{ github.workspace }}/compilation-dir
\ No newline at end of file

From 24a973e545edd1fc4d5874713f7be05f0c205a5a Mon Sep 17 00:00:00 2001
From: erik-krogh <erik-krogh@github.com>
Date: Mon, 21 Nov 2022 14:31:24 +0100
Subject: [PATCH 0508/1420] run ruby qltest on a single XL worker

---
 .github/workflows/ruby-qltest.yml | 6 ++----
 1 file changed, 2 insertions(+), 4 deletions(-)

diff --git a/.github/workflows/ruby-qltest.yml b/.github/workflows/ruby-qltest.yml
index 76727f626f0..dafeee4157c 100644
--- a/.github/workflows/ruby-qltest.yml
+++ b/.github/workflows/ruby-qltest.yml
@@ -48,17 +48,15 @@ jobs:
            xargs codeql execute upgrades testdb
           diff -q testdb/ruby.dbscheme downgrades/initial/ruby.dbscheme
   qltest:
-    runs-on: ubuntu-latest
+    runs-on: ubuntu-latest-xl
     strategy:
       fail-fast: false
-      matrix:
-        slice: ["1/2", "2/2"]
     steps:
       - uses: actions/checkout@v3
       - uses: ./.github/actions/fetch-codeql
       - uses: ./ruby/actions/create-extractor-pack
       - name: Run QL tests
         run: |
-          codeql test run --threads=0 --ram 5000 --slice ${{ matrix.slice }} --search-path "${{ github.workspace }}/ruby/extractor-pack" --check-databases --check-undefined-labels --check-unused-labels --check-repeated-labels --check-redefined-labels --check-use-before-definition --consistency-queries ql/consistency-queries ql/test
+          codeql test run --threads=0 --search-path "${{ github.workspace }}/ruby/extractor-pack" --check-databases --check-undefined-labels --check-unused-labels --check-repeated-labels --check-redefined-labels --check-use-before-definition --consistency-queries ql/consistency-queries ql/test
         env:
           GITHUB_TOKEN: ${{ github.token }}

From 4af8d5769a4efc19c548d8bf9a63fe582baf2c11 Mon Sep 17 00:00:00 2001
From: erik-krogh <erik-krogh@github.com>
Date: Mon, 21 Nov 2022 14:32:18 +0100
Subject: [PATCH 0509/1420] use compilation cache in ruby qltest

---
 .github/workflows/ruby-qltest.yml | 7 ++++++-
 1 file changed, 6 insertions(+), 1 deletion(-)

diff --git a/.github/workflows/ruby-qltest.yml b/.github/workflows/ruby-qltest.yml
index dafeee4157c..893e123ece5 100644
--- a/.github/workflows/ruby-qltest.yml
+++ b/.github/workflows/ruby-qltest.yml
@@ -55,8 +55,13 @@ jobs:
       - uses: actions/checkout@v3
       - uses: ./.github/actions/fetch-codeql
       - uses: ./ruby/actions/create-extractor-pack
+      - name: Cache compilation cache
+        id: query-cache
+        uses: ./.github/actions/cache-query-compilation
+        with: 
+          key: ruby-qltest
       - name: Run QL tests
         run: |
-          codeql test run --threads=0 --search-path "${{ github.workspace }}/ruby/extractor-pack" --check-databases --check-undefined-labels --check-unused-labels --check-repeated-labels --check-redefined-labels --check-use-before-definition --consistency-queries ql/consistency-queries ql/test
+          codeql test run --threads=0 --search-path "${{ github.workspace }}/ruby/extractor-pack" --check-databases --check-undefined-labels --check-unused-labels --check-repeated-labels --check-redefined-labels --check-use-before-definition --consistency-queries ql/consistency-queries ql/test --compilation-cache "${{ steps.query-cache.outputs.cache-dir }}"
         env:
           GITHUB_TOKEN: ${{ github.token }}

From a9c95a3230d4d4db5d353db9bf11110b03308155 Mon Sep 17 00:00:00 2001
From: erik-krogh <erik-krogh@github.com>
Date: Mon, 21 Nov 2022 14:39:56 +0100
Subject: [PATCH 0510/1420] ruby: delete the path requirement when running
 qltest on branches

---
 .github/workflows/ruby-qltest.yml | 6 +-----
 1 file changed, 1 insertion(+), 5 deletions(-)

diff --git a/.github/workflows/ruby-qltest.yml b/.github/workflows/ruby-qltest.yml
index 893e123ece5..a6cd41a55bd 100644
--- a/.github/workflows/ruby-qltest.yml
+++ b/.github/workflows/ruby-qltest.yml
@@ -2,11 +2,7 @@ name: "Ruby: Run QL Tests"
 
 on:
   push:
-    paths:
-      - "ruby/**"
-      - .github/workflows/ruby-qltest.yml
-      - .github/actions/fetch-codeql/action.yml
-      - codeql-workspace.yml
+    # no path requirement on branch pushes, so the cache is more effective.
     branches:
       - main
       - "rc/*"

From f50778ae2646ff72d48a59abd59f77f9bd575346 Mon Sep 17 00:00:00 2001
From: erik-krogh <erik-krogh@github.com>
Date: Mon, 21 Nov 2022 15:02:14 +0100
Subject: [PATCH 0511/1420] Ruby: set ram usage to 52GB in the qltest workflow

---
 .github/workflows/ruby-qltest.yml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/ruby-qltest.yml b/.github/workflows/ruby-qltest.yml
index a6cd41a55bd..abb6d2bf0eb 100644
--- a/.github/workflows/ruby-qltest.yml
+++ b/.github/workflows/ruby-qltest.yml
@@ -58,6 +58,6 @@ jobs:
           key: ruby-qltest
       - name: Run QL tests
         run: |
-          codeql test run --threads=0 --search-path "${{ github.workspace }}/ruby/extractor-pack" --check-databases --check-undefined-labels --check-unused-labels --check-repeated-labels --check-redefined-labels --check-use-before-definition --consistency-queries ql/consistency-queries ql/test --compilation-cache "${{ steps.query-cache.outputs.cache-dir }}"
+          codeql test run --threads=0 --ram 52000 --search-path "${{ github.workspace }}/ruby/extractor-pack" --check-databases --check-undefined-labels --check-unused-labels --check-repeated-labels --check-redefined-labels --check-use-before-definition --consistency-queries ql/consistency-queries ql/test --compilation-cache "${{ steps.query-cache.outputs.cache-dir }}"
         env:
           GITHUB_TOKEN: ${{ github.token }}

From 57656d0a7edc8aa385cc519e20faae283ccf8f99 Mon Sep 17 00:00:00 2001
From: Tony Torralba <atorralba@users.noreply.github.com>
Date: Mon, 21 Nov 2022 15:14:02 +0100
Subject: [PATCH 0512/1420] Fix a couple of java.nio.file.Path(s) MaD rows

---
 .../lib/semmle/code/java/security/Files.qll   |   4 +-
 java/ql/test/library-tests/paths/Test.java    | 138 ++++++++++++++++--
 2 files changed, 129 insertions(+), 13 deletions(-)

diff --git a/java/ql/lib/semmle/code/java/security/Files.qll b/java/ql/lib/semmle/code/java/security/Files.qll
index 2cc55a1076f..52ea86bc5b7 100644
--- a/java/ql/lib/semmle/code/java/security/Files.qll
+++ b/java/ql/lib/semmle/code/java/security/Files.qll
@@ -84,13 +84,15 @@ private class FileSummaryModels extends SummaryModelCsv {
         "java.io;File;true;toPath;;;Argument[-1];ReturnValue;taint;manual",
         "java.io;File;true;toString;;;Argument[-1];ReturnValue;taint;manual",
         "java.io;File;true;toURI;;;Argument[-1];ReturnValue;taint;manual",
+        "java.nio.file;Path;true;getParent;;;Argument[-1];ReturnValue;taint;manual",
         "java.nio.file;Path;true;normalize;;;Argument[-1];ReturnValue;taint;manual",
         "java.nio.file;Path;true;resolve;;;Argument[-1..0];ReturnValue;taint;manual",
         "java.nio.file;Path;true;toAbsolutePath;;;Argument[-1];ReturnValue;taint;manual",
         "java.nio.file;Path;false;toFile;;;Argument[-1];ReturnValue;taint;manual",
         "java.nio.file;Path;true;toString;;;Argument[-1];ReturnValue;taint;manual",
         "java.nio.file;Path;true;toUri;;;Argument[-1];ReturnValue;taint;manual",
-        "java.nio.file;Paths;true;get;;;Argument[0..1];ReturnValue;taint;manual",
+        "java.nio.file;Paths;true;get;;;Argument[0];ReturnValue;taint;manual",
+        "java.nio.file;Paths;true;get;;;Argument[1].ArrayElement;ReturnValue;taint;manual",
         "java.nio.file;FileSystem;true;getPath;;;Argument[0];ReturnValue;taint;manual",
         "java.nio.file;FileSystem;true;getRootDirectories;;;Argument[0];ReturnValue;taint;manual"
       ]
diff --git a/java/ql/test/library-tests/paths/Test.java b/java/ql/test/library-tests/paths/Test.java
index 3ba4d97ca78..b00a667d823 100644
--- a/java/ql/test/library-tests/paths/Test.java
+++ b/java/ql/test/library-tests/paths/Test.java
@@ -2,6 +2,7 @@ package generatedtest;
 
 import java.io.File;
 import java.net.URI;
+import java.nio.file.FileSystem;
 import java.nio.file.Path;
 import java.nio.file.Paths;
 
@@ -13,6 +14,119 @@ public class Test {
 
 	public void test() throws Exception {
 
+		{
+			// "java.io;File;false;File;;;Argument[0];Argument[-1];taint;manual"
+			File out = null;
+			File in = (File)source();
+			out = new File(in, (String)null);
+			sink(out); // $ hasTaintFlow
+		}
+		{
+			// "java.io;File;false;File;;;Argument[0];Argument[-1];taint;manual"
+			File out = null;
+			String in = (String)source();
+			out = new File(in);
+			sink(out); // $ hasTaintFlow
+		}
+		{
+			// "java.io;File;false;File;;;Argument[0];Argument[-1];taint;manual"
+			File out = null;
+			String in = (String)source();
+			out = new File(in, (String)null);
+			sink(out); // $ hasTaintFlow
+		}
+		{
+			// "java.io;File;false;File;;;Argument[0];Argument[-1];taint;manual"
+			File out = null;
+			URI in = (URI)source();
+			out = new File(in);
+			sink(out); // $ hasTaintFlow
+		}
+		{
+			// "java.io;File;false;File;;;Argument[1];Argument[-1];taint;manual"
+			File out = null;
+			String in = (String)source();
+			out = new File((File)null, in);
+			sink(out); // $ hasTaintFlow
+		}
+		{
+			// "java.io;File;false;File;;;Argument[1];Argument[-1];taint;manual"
+			File out = null;
+			String in = (String)source();
+			out = new File((String)null, in);
+			sink(out); // $ hasTaintFlow
+		}
+		{
+			// "java.io;File;true;getAbsoluteFile;;;Argument[-1];ReturnValue;taint;manual"
+			File out = null;
+			File in = (File)source();
+			out = in.getAbsoluteFile();
+			sink(out); // $ hasTaintFlow
+		}
+		{
+			// "java.io;File;true;getAbsolutePath;;;Argument[-1];ReturnValue;taint;manual"
+			String out = null;
+			File in = (File)source();
+			out = in.getAbsolutePath();
+			sink(out); // $ hasTaintFlow
+		}
+		{
+			// "java.io;File;true;getCanonicalFile;;;Argument[-1];ReturnValue;taint;manual"
+			File out = null;
+			File in = (File)source();
+			out = in.getCanonicalFile();
+			sink(out); // $ hasTaintFlow
+		}
+		{
+			// "java.io;File;true;getCanonicalPath;;;Argument[-1];ReturnValue;taint;manual"
+			String out = null;
+			File in = (File)source();
+			out = in.getCanonicalPath();
+			sink(out); // $ hasTaintFlow
+		}
+		{
+			// "java.io;File;true;toPath;;;Argument[-1];ReturnValue;taint;manual"
+			Path out = null;
+			File in = (File)source();
+			out = in.toPath();
+			sink(out); // $ hasTaintFlow
+		}
+		{
+			// "java.io;File;true;toString;;;Argument[-1];ReturnValue;taint;manual"
+			String out = null;
+			File in = (File)source();
+			out = in.toString();
+			sink(out); // $ hasTaintFlow
+		}
+		{
+			// "java.io;File;true;toURI;;;Argument[-1];ReturnValue;taint;manual"
+			URI out = null;
+			File in = (File)source();
+			out = in.toURI();
+			sink(out); // $ hasTaintFlow
+		}
+		{
+			// "java.nio.file;FileSystem;true;getPath;;;Argument[0];ReturnValue;taint;manual"
+			Path out = null;
+			String in = (String)source();
+			FileSystem instance = null;
+			out = instance.getPath(in, (String[])null);
+			sink(out); // $ hasTaintFlow
+		}
+		{
+			// "java.nio.file;Path;false;toFile;;;Argument[-1];ReturnValue;taint;manual"
+			File out = null;
+			Path in = (Path)source();
+			out = in.toFile();
+			sink(out); // $ hasTaintFlow
+		}
+		{
+			// "java.nio.file;Path;true;getParent;;;Argument[-1];ReturnValue;taint;manual"
+			Path out = null;
+			Path in = (Path)source();
+			out = in.getParent();
+			sink(out); // $ hasTaintFlow
+		}
 		{
 			// "java.nio.file;Path;true;normalize;;;Argument[-1];ReturnValue;taint;manual"
 			Path out = null;
@@ -51,10 +165,10 @@ public class Test {
 			sink(out); // $ hasTaintFlow
 		}
 		{
-			// "java.nio.file;Path;true;toFile;;;Argument[-1];ReturnValue;taint;manual"
-			File out = null;
+			// "java.nio.file;Path;true;toAbsolutePath;;;Argument[-1];ReturnValue;taint;manual"
+			Path out = null;
 			Path in = (Path)source();
-			out = in.toFile();
+			out = in.toAbsolutePath();
 			sink(out); // $ hasTaintFlow
 		}
 		{
@@ -72,26 +186,26 @@ public class Test {
 			sink(out); // $ hasTaintFlow
 		}
 		{
-			// "java.nio.file;Paths;true;get;;;Argument[0..1];ReturnValue;taint;manual"
+			// "java.nio.file;Paths;true;get;;;Argument[0];ReturnValue;taint;manual"
 			Path out = null;
 			String in = (String)source();
 			out = Paths.get(in, (String[])null);
 			sink(out); // $ hasTaintFlow
 		}
 		{
-			// "java.nio.file;Paths;true;get;;;Argument[0..1];ReturnValue;taint;manual"
-			Path out = null;
-			String[] in = (String[])source();
-			out = Paths.get((String)null, in);
-			sink(out); // $ hasTaintFlow
-		}
-		{
-			// "java.nio.file;Paths;true;get;;;Argument[0..1];ReturnValue;taint;manual"
+			// "java.nio.file;Paths;true;get;;;Argument[0];ReturnValue;taint;manual"
 			Path out = null;
 			URI in = (URI)source();
 			out = Paths.get(in);
 			sink(out); // $ hasTaintFlow
 		}
+		{
+			// "java.nio.file;Paths;true;get;;;Argument[1].ArrayElement;ReturnValue;taint;manual"
+			Path out = null;
+			String[] in = (String[])new String[]{(String)source()};
+			out = Paths.get((String)null, in);
+			sink(out); // $ hasTaintFlow
+		}
 
 	}
 

From 57a7f8948596bef0c8021975ceba582b9a96fe16 Mon Sep 17 00:00:00 2001
From: erik-krogh <erik-krogh@github.com>
Date: Mon, 21 Nov 2022 15:15:12 +0100
Subject: [PATCH 0513/1420] change merge-base to merge_base

---
 .github/actions/cache-query-compilation/action.yml | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/.github/actions/cache-query-compilation/action.yml b/.github/actions/cache-query-compilation/action.yml
index 55b1eb10ffa..c071aa204d9 100644
--- a/.github/actions/cache-query-compilation/action.yml
+++ b/.github/actions/cache-query-compilation/action.yml
@@ -23,7 +23,7 @@ runs:
         BASE_BRANCH: ${{ github.base_ref }}
       run: |
         MERGE_BASE=$(git cat-file commit $GITHUB_SHA | grep '^parent ' | head -1 | cut -f 2 -d " ")
-        echo "merge-base=$MERGE_BASE" >> $GITHUB_ENV
+        echo "merge_base=$MERGE_BASE" >> $GITHUB_ENV
     - name: Read CodeQL query compilation - PR
       if: ${{ github.event_name == 'pull_request' }}
       uses: actions/cache@v3
@@ -31,7 +31,7 @@ runs:
         path: '**/.cache'
         key: codeql-compile-${{ inputs.key }}-pr-${{ github.sha }} # deliberately not using the `compile-compile-main` keys here.
         restore-keys: |
-          codeql-compile-${{ inputs.key }}-${{ github.base_ref }}-${{ env.merge-base }}
+          codeql-compile-${{ inputs.key }}-${{ github.base_ref }}-${{ env.merge_base }}
           codeql-compile-${{ inputs.key }}-${{ github.base_ref }}-
           codeql-compile-${{ inputs.key }}-main-
     - name: Fill CodeQL query compilation cache - main

From fcd9dd0be4f67ee8742fca64152d675d4742c5cc Mon Sep 17 00:00:00 2001
From: Mathias Vorreiter Pedersen <mathiasvp@github.com>
Date: Mon, 21 Nov 2022 14:18:20 +0000
Subject: [PATCH 0514/1420] Update
 cpp/ql/lib/change-notes/2022-11-16-must-flow.md

Co-authored-by: Jeroen Ketema <93738568+jketema@users.noreply.github.com>
---
 cpp/ql/lib/change-notes/2022-11-16-must-flow.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/cpp/ql/lib/change-notes/2022-11-16-must-flow.md b/cpp/ql/lib/change-notes/2022-11-16-must-flow.md
index bdb17d671a3..0f87b8d8bcd 100644
--- a/cpp/ql/lib/change-notes/2022-11-16-must-flow.md
+++ b/cpp/ql/lib/change-notes/2022-11-16-must-flow.md
@@ -1,4 +1,4 @@
 ---
 category: breaking
 ---
-The predicates in the `MustFlow::Configuration` class used by the `MustFlow` library (`semmle.code.cpp.ir.dataflow.MustFlow`) has changed to be defined directly in terms of the C++ IR instead of IR dataflow nodes.
+The predicates in the `MustFlow::Configuration` class used by the `MustFlow` library (`semmle.code.cpp.ir.dataflow.MustFlow`) have changed to be defined directly in terms of the C++ IR instead of IR dataflow nodes.

From 5000a1445188a5c7cd98472a9c56625843e04235 Mon Sep 17 00:00:00 2001
From: Tony Torralba <atorralba@users.noreply.github.com>
Date: Mon, 21 Nov 2022 15:22:26 +0100
Subject: [PATCH 0515/1420] Add change note

---
 java/ql/lib/change-notes/2022-11-21-paths-get-fix.md | 5 +++++
 1 file changed, 5 insertions(+)
 create mode 100644 java/ql/lib/change-notes/2022-11-21-paths-get-fix.md

diff --git a/java/ql/lib/change-notes/2022-11-21-paths-get-fix.md b/java/ql/lib/change-notes/2022-11-21-paths-get-fix.md
new file mode 100644
index 00000000000..a586cecf04b
--- /dev/null
+++ b/java/ql/lib/change-notes/2022-11-21-paths-get-fix.md
@@ -0,0 +1,5 @@
+---
+category: minorAnalysis
+---
+* Added a taint model for the method `java.nio.file.Path.getParent`.
+* Fixed a problem in the taint model for the method `java.nio.file.Paths.get`.

From a385e872733be4a0a6969abede237cca7b349e3e Mon Sep 17 00:00:00 2001
From: Taus <tausbn@github.com>
Date: Mon, 21 Nov 2022 14:29:39 +0000
Subject: [PATCH 0516/1420] Python: Add change note for module resolution

Also adapts the version-specific tests to support results specific to
Python 2 (though at the moment there are no such tests).
---
 .../2022-11-21-module-resolution-rewrite.md     |  5 +++++
 .../import-resolution/importflow.ql             | 17 ++++++++++-------
 2 files changed, 15 insertions(+), 7 deletions(-)
 create mode 100644 python/ql/lib/change-notes/2022-11-21-module-resolution-rewrite.md

diff --git a/python/ql/lib/change-notes/2022-11-21-module-resolution-rewrite.md b/python/ql/lib/change-notes/2022-11-21-module-resolution-rewrite.md
new file mode 100644
index 00000000000..32484ffed56
--- /dev/null
+++ b/python/ql/lib/change-notes/2022-11-21-module-resolution-rewrite.md
@@ -0,0 +1,5 @@
+---
+ category: minorAnalysis
+---
+ * The data-flow library has been rewritten to no longer rely on the points-to analysis in order to
+   resolve references to modules. This should result in more results for data-flow queries.
diff --git a/python/ql/test/experimental/import-resolution/importflow.ql b/python/ql/test/experimental/import-resolution/importflow.ql
index 6160560a3ee..875fb947901 100644
--- a/python/ql/test/experimental/import-resolution/importflow.ql
+++ b/python/ql/test/experimental/import-resolution/importflow.ql
@@ -93,26 +93,29 @@ class ResolutionTest extends InlineExpectationsTest {
   }
 }
 
-class ResolutionTest3 extends InlineExpectationsTest {
-  ResolutionTest3() { this = "ResolutionTest3" }
+class VersionSpecificResolutionTest extends InlineExpectationsTest {
+  VersionSpecificResolutionTest() { this = "VersionSpecificResolutionTest" }
 
-  override string getARelevantTag() { result = "prints3" and major_version() = 3 }
+  override string getARelevantTag() { result = getTagForVersion(_) }
+
+  private string getTagForVersion(int version) {
+    result = "prints" + version and
+    version = major_version()
+  }
 
   override predicate hasActualResult(Location location, string element, string tag, string value) {
     (
       exists(DataFlow::PathNode source, DataFlow::PathNode sink, ImportConfiguration config |
         config.hasFlowPath(source, sink) and
-        sink.getNode().(VersionGuardedNode).getVersion() = 3 and
-        tag = "prints3" and
+        tag = getTagForVersion(sink.getNode().(VersionGuardedNode).getVersion()) and
         location = sink.getNode().getLocation() and
         value = source.getNode().(SourceString).getContents() and
         element = sink.getNode().toString()
       )
       or
       exists(ModuleRef ref |
-        ref.(VersionGuardedNode).getVersion() = 3 and
         ref instanceof CheckArgument and
-        tag = "prints3" and
+        tag = getTagForVersion(ref.(VersionGuardedNode).getVersion()) and
         location = ref.getLocation() and
         value = "\"<module " + ref.getName() + ">\"" and
         element = ref.toString()

From 7e80a57724da97d4527177742fddcccc691d89ab Mon Sep 17 00:00:00 2001
From: Mathias Vorreiter Pedersen <mathiasvp@github.com>
Date: Mon, 21 Nov 2022 15:13:19 +0000
Subject: [PATCH 0517/1420] C++: Make ql-for-ql happy.

---
 cpp/ql/src/Likely Bugs/OO/UnsafeUseOfThis.ql | 9 +++++++--
 1 file changed, 7 insertions(+), 2 deletions(-)

diff --git a/cpp/ql/src/Likely Bugs/OO/UnsafeUseOfThis.ql b/cpp/ql/src/Likely Bugs/OO/UnsafeUseOfThis.ql
index 39ee43a373a..bb62cfc1755 100644
--- a/cpp/ql/src/Likely Bugs/OO/UnsafeUseOfThis.ql	
+++ b/cpp/ql/src/Likely Bugs/OO/UnsafeUseOfThis.ql	
@@ -27,7 +27,7 @@ class UnsafeUseOfThisConfig extends MustFlowConfiguration {
   override predicate isSink(Operand sink) { isSink(sink, _) }
 }
 
-/** Holds if `instr` is a `this` pointer used by the call instruction `call`. */
+/** Holds if `sink` is a `this` pointer used by the call instruction `call`. */
 predicate isSink(Operand sink, CallInstruction call) {
   exists(PureVirtualFunction func |
     call.getStaticCallTarget() = func and
@@ -37,7 +37,12 @@ predicate isSink(Operand sink, CallInstruction call) {
   )
 }
 
-/** Holds if `init` initializes the `this` pointer in class `c`. */
+/**
+ * Holds if `source` initializes the `this` pointer in class `c`.
+ *
+ * The string `msg` describes whether the enclosing function is a
+ * constructor or destructor.
+ */
 predicate isSource(InitializeParameterInstruction source, string msg, Class c) {
   (
     exists(Constructor func |

From f12e15b46b0679fae1465620788d5fa3797933f2 Mon Sep 17 00:00:00 2001
From: Taus <tausbn@github.com>
Date: Mon, 21 Nov 2022 15:23:13 +0000
Subject: [PATCH 0518/1420] Python: Fix implicit `this` warnings

---
 .../test/experimental/import-resolution/importflow.ql  | 10 +++++-----
 1 file changed, 5 insertions(+), 5 deletions(-)

diff --git a/python/ql/test/experimental/import-resolution/importflow.ql b/python/ql/test/experimental/import-resolution/importflow.ql
index 875fb947901..e6e51afa963 100644
--- a/python/ql/test/experimental/import-resolution/importflow.ql
+++ b/python/ql/test/experimental/import-resolution/importflow.ql
@@ -93,16 +93,16 @@ class ResolutionTest extends InlineExpectationsTest {
   }
 }
 
+private string getTagForVersion(int version) {
+  result = "prints" + version and
+  version = major_version()
+}
+
 class VersionSpecificResolutionTest extends InlineExpectationsTest {
   VersionSpecificResolutionTest() { this = "VersionSpecificResolutionTest" }
 
   override string getARelevantTag() { result = getTagForVersion(_) }
 
-  private string getTagForVersion(int version) {
-    result = "prints" + version and
-    version = major_version()
-  }
-
   override predicate hasActualResult(Location location, string element, string tag, string value) {
     (
       exists(DataFlow::PathNode source, DataFlow::PathNode sink, ImportConfiguration config |

From 16a76853f4106867bbe4b0697eb0c7075757c1ff Mon Sep 17 00:00:00 2001
From: Tony Torralba <atorralba@users.noreply.github.com>
Date: Tue, 8 Nov 2022 15:23:43 +0100
Subject: [PATCH 0519/1420] Add libxml2 sinks

---
 .../lib/codeql/swift/frameworks/Libxml2.qll   | 54 +++++++++++
 swift/ql/lib/codeql/swift/security/XXE.qll    | 38 ++++++++
 .../query-tests/Security/CWE-611/XXETest.ql   |  7 ++
 .../Security/CWE-611/testLibxmlXXE.swift      | 96 +++++++++++++++++++
 4 files changed, 195 insertions(+)
 create mode 100644 swift/ql/lib/codeql/swift/frameworks/Libxml2.qll
 create mode 100644 swift/ql/test/query-tests/Security/CWE-611/testLibxmlXXE.swift

diff --git a/swift/ql/lib/codeql/swift/frameworks/Libxml2.qll b/swift/ql/lib/codeql/swift/frameworks/Libxml2.qll
new file mode 100644
index 00000000000..12f8603c69b
--- /dev/null
+++ b/swift/ql/lib/codeql/swift/frameworks/Libxml2.qll
@@ -0,0 +1,54 @@
+import swift
+
+/**
+ * A call to a `libxml2` function that parses XML.
+ */
+class Libxml2ParseCall extends ApplyExpr {
+  int xmlArg;
+  int optionsArg;
+
+  Libxml2ParseCall() {
+    exists(string fname | this.getStaticTarget().getName() = fname |
+      fname = "xmlCtxtUseOptions(_:_:)" and xmlArg = 0 and optionsArg = 1
+      or
+      fname = "xmlReadFile(_:_:_:)" and xmlArg = 0 and optionsArg = 2
+      or
+      fname = ["xmlReadDoc(_:_:_:_:)", "xmlReadFd(_:_:_:_:)"] and
+      xmlArg = 0 and
+      optionsArg = 3
+      or
+      fname = ["xmlCtxtReadFile(_:_:_:_:)", "xmlParseInNodeContext(_:_:_:_:_:)"] and
+      xmlArg = 1 and
+      optionsArg = 3
+      or
+      fname = ["xmlCtxtReadDoc(_:_:_:_:_:)", "xmlCtxtReadFd(_:_:_:_:_:)"] and
+      xmlArg = 1 and
+      optionsArg = 4
+      or
+      fname = "xmlReadMemory(_:_:_:_:_:)" and xmlArg = 0 and optionsArg = 4
+      or
+      fname = "xmlCtxtReadMemory(_:_:_:_:_:_:)" and xmlArg = 1 and optionsArg = 5
+      or
+      fname = "xmlReadIO(_:_:_:_:_:_:)" and xmlArg = 0 and optionsArg = 5
+      or
+      fname = "xmlCtxtReadIO(_:_:_:_:_:_:_:)" and xmlArg = 1 and optionsArg = 6
+    )
+  }
+
+  /**
+   * Gets the argument that receives the XML raw data.
+   */
+  Expr getXml() { result = this.getArgument(xmlArg).getExpr() }
+
+  /**
+   * Gets the argument that specifies `xmlParserOption`s.
+   */
+  Expr getOptions() { result = this.getArgument(optionsArg).getExpr() }
+}
+
+/**
+ * An `xmlParserOption` for `libxml2` that is considered unsafe.
+ */
+class Libxml2BadOption extends ConcreteVarDecl {
+  Libxml2BadOption() { this.getName() = ["XML_PARSE_NOENT", "XML_PARSE_DTDLOAD"] }
+}
diff --git a/swift/ql/lib/codeql/swift/security/XXE.qll b/swift/ql/lib/codeql/swift/security/XXE.qll
index 5f80426fa56..623be39060c 100644
--- a/swift/ql/lib/codeql/swift/security/XXE.qll
+++ b/swift/ql/lib/codeql/swift/security/XXE.qll
@@ -3,6 +3,7 @@
 import swift
 private import codeql.swift.dataflow.DataFlow
 private import codeql.swift.frameworks.AEXML
+private import codeql.swift.frameworks.Libxml2
 
 /** A data flow sink for XML external entities (XXE) vulnerabilities. */
 abstract class XxeSink extends DataFlow::Node { }
@@ -163,3 +164,40 @@ private class AexmlOptions extends Expr {
     this.getType() = any(LValueType t | t.getObjectType() instanceof AexmlOptionsType)
   }
 }
+
+/** The XML argument of a `libxml2` parsing call vulnerable to XXE. */
+private class Libxml2XxeSink extends XxeSink {
+  Libxml2XxeSink() {
+    exists(Libxml2ParseCall c, Libxml2BadOption opt |
+      this.asExpr() = c.getXml() and
+      lib2xmlOptionLocalTaintStep*(DataFlow::exprNode(opt.getAnAccess()),
+        DataFlow::exprNode(c.getOptions()))
+    )
+  }
+}
+
+/**
+ * Holds if taint can flow from `source` to `sink` in one local step,
+ * including bitwise operations, accesses to `.rawValue`, and casts to `Int32`.
+ */
+private predicate lib2xmlOptionLocalTaintStep(DataFlow::Node source, DataFlow::Node sink) {
+  DataFlow::localFlowStep(source, sink)
+  or
+  source.asExpr() = sink.asExpr().(BitwiseOperation).getAnOperand()
+  or
+  exists(MemberRefExpr rawValue | rawValue.getMember().(VarDecl).getName() = "rawValue" |
+    source.asExpr() = rawValue.getBase() and sink.asExpr() = rawValue
+  )
+  or
+  exists(ApplyExpr int32Init |
+    int32Init
+        .getStaticTarget()
+        .(ConstructorDecl)
+        .getEnclosingDecl()
+        .(ExtensionDecl)
+        .getExtendedTypeDecl()
+        .getName() = "SignedInteger"
+  |
+    source.asExpr() = int32Init.getAnArgument().getExpr() and sink.asExpr() = int32Init
+  )
+}
diff --git a/swift/ql/test/query-tests/Security/CWE-611/XXETest.ql b/swift/ql/test/query-tests/Security/CWE-611/XXETest.ql
index 817f55678ad..757e45a102b 100644
--- a/swift/ql/test/query-tests/Security/CWE-611/XXETest.ql
+++ b/swift/ql/test/query-tests/Security/CWE-611/XXETest.ql
@@ -1,7 +1,14 @@
 import swift
+import codeql.swift.dataflow.FlowSources
 import codeql.swift.security.XXEQuery
 import TestUtilities.InlineExpectationsTest
 
+class TestRemoteSource extends RemoteFlowSource {
+  TestRemoteSource() { this.asExpr().(ApplyExpr).getStaticTarget().getName().matches("source%") }
+
+  override string getSourceType() { result = "Test source" }
+}
+
 class XxeTest extends InlineExpectationsTest {
   XxeTest() { this = "XxeTest" }
 
diff --git a/swift/ql/test/query-tests/Security/CWE-611/testLibxmlXXE.swift b/swift/ql/test/query-tests/Security/CWE-611/testLibxmlXXE.swift
new file mode 100644
index 00000000000..b0e580c42a0
--- /dev/null
+++ b/swift/ql/test/query-tests/Security/CWE-611/testLibxmlXXE.swift
@@ -0,0 +1,96 @@
+// --- stubs ---
+
+class Data {
+    init<S>(_ elements: S) {}
+    func copyBytes(to: UnsafeMutablePointer<UInt8>, count: Int) {}
+}
+
+struct URL {
+	init?(string: String) {}
+}
+
+extension String {
+	init(contentsOf: URL) {
+        let data = ""
+        self.init(data)
+    }
+}
+
+struct xmlParserOption : Hashable {
+    let rawValue: UInt32 = 0
+}
+
+var XML_PARSE_NOENT: xmlParserOption { get { return xmlParserOption() } } 
+var XML_PARSE_DTDLOAD: xmlParserOption { get { return xmlParserOption() } } 
+
+typealias xmlChar = UInt8
+typealias xmlDocPtr = UnsafeMutablePointer<xmlDoc>
+typealias xmlNodePtr = UnsafeMutablePointer<xmlNode>
+typealias xmlParserCtxtPtr = UnsafeMutablePointer<xmlParserCtxt>
+struct xmlDoc {}
+struct xmlNode {}
+struct xmlParserCtxt {}
+struct xmlParserErrors {}
+struct xmlInputReadCallback {}
+struct xmlInputCloseCallback {}
+
+func xmlCtxtUseOptions(_ ctxt: xmlParserCtxtPtr!, _ options: Int32) -> Int32 { return 0 }
+func xmlReadDoc(_ cur: UnsafePointer<xmlChar>!, _ URL: UnsafePointer<CChar>!, _ encoding: UnsafePointer<CChar>!, _ options: Int32) -> xmlDocPtr! { return xmlDocPtr.allocate(capacity: 0) }
+func xmlReadFile(_ URL: UnsafePointer<CChar>!, _ encoding: UnsafePointer<CChar>!, _ options: Int32) -> xmlDocPtr! { return xmlDocPtr.allocate(capacity: 0) }
+func xmlReadMemory(_ buffer: UnsafePointer<CChar>!, _ size: Int32, _ URL: UnsafePointer<CChar>!, _ encoding: UnsafePointer<CChar>!, _ options: Int32) -> xmlDocPtr! { return xmlDocPtr.allocate(capacity: 0) }
+func xmlReadFd(_ fd: Int32, _ URL: UnsafePointer<CChar>!, _ encoding: UnsafePointer<CChar>!, _ options: Int32) -> xmlDocPtr! { return xmlDocPtr.allocate(capacity: 0) }
+func xmlReadIO(_ ioread: xmlInputReadCallback!, _ ioclose: xmlInputCloseCallback!, _ ioctx: UnsafeMutableRawPointer!, _ URL: UnsafePointer<CChar>!, _ encoding: UnsafePointer<CChar>!, _ options: Int32) -> xmlDocPtr! { return xmlDocPtr.allocate(capacity: 0) }
+func xmlCtxtReadDoc(_ ctxt: xmlParserCtxtPtr!, _ cur: UnsafePointer<xmlChar>!, _ URL: UnsafePointer<CChar>!, _ encoding: UnsafePointer<CChar>!, _ options: Int32) -> xmlDocPtr! { return xmlDocPtr.allocate(capacity: 0) }
+func xmlCtxtReadFile(_ ctxt: xmlParserCtxtPtr!, _ filename: UnsafePointer<CChar>!, _ encoding: UnsafePointer<CChar>!, _ options: Int32) -> xmlDocPtr! { return xmlDocPtr.allocate(capacity: 0) }
+func xmlParseInNodeContext(_ node: xmlNodePtr!, _ data: UnsafePointer<CChar>!, _ datalen: Int32, _ options: Int32, _ lst: UnsafeMutablePointer<xmlNodePtr?>!) -> xmlParserErrors { return xmlParserErrors() }
+func xmlCtxtReadMemory(_ ctxt: xmlParserCtxtPtr!, _ buffer: UnsafePointer<CChar>!, _ size: Int32, _ URL: UnsafePointer<CChar>!, _ encoding: UnsafePointer<CChar>!, _ options: Int32) -> xmlDocPtr! { return xmlDocPtr.allocate(capacity: 0) }
+func xmlCtxtReadFd(_ ctxt: xmlParserCtxtPtr!, _ fd: Int32, _ URL: UnsafePointer<CChar>!, _ encoding: UnsafePointer<CChar>!, _ options: Int32) -> xmlDocPtr! { return xmlDocPtr.allocate(capacity: 0) }
+func xmlCtxtReadIO(_ ctxt: xmlParserCtxtPtr!, _ ioread: xmlInputReadCallback!, _ ioclose: xmlInputCloseCallback!, _ ioctx: UnsafeMutableRawPointer!, _ URL: UnsafePointer<CChar>!, _ encoding: UnsafePointer<CChar>!, _ options: Int32) -> xmlDocPtr! { return xmlDocPtr.allocate(capacity: 0) }
+
+// --- tests ---
+
+func sourcePtr() -> UnsafeMutablePointer<UInt8> { return UnsafeMutablePointer<UInt8>.allocate(capacity: 0) }
+func sourceCharPtr() -> UnsafeMutablePointer<CChar> { return UnsafeMutablePointer<CChar>.allocate(capacity: 0) }
+
+func test() {
+    let remotePtr = sourcePtr()
+    let remoteCharPtr = sourceCharPtr()
+    let _ = xmlReadFile(remoteCharPtr, nil, 0) // NO XXE: external entities not enabled
+    let _ = xmlReadFile(remoteCharPtr, nil, Int32(XML_PARSE_NOENT.rawValue)) // $ hasXXE=57
+    let _ = xmlReadFile(remoteCharPtr, nil, Int32(XML_PARSE_DTDLOAD.rawValue)) // $ hasXXE=57
+    let _ = xmlReadDoc(remotePtr, nil, nil, 0) // NO XXE: external entities not enabled
+    let _ = xmlReadDoc(remotePtr, nil, nil, Int32(XML_PARSE_NOENT.rawValue)) // $ hasXXE=56
+    let _ = xmlReadDoc(remotePtr, nil, nil, Int32(XML_PARSE_DTDLOAD.rawValue)) // $ hasXXE=56
+    let _ = xmlCtxtReadFile(nil, remoteCharPtr, nil, 0) // NO XXE: external entities not enabled
+    let _ = xmlCtxtReadFile(nil, remoteCharPtr, nil, Int32(XML_PARSE_NOENT.rawValue)) // $ hasXXE=57
+    let _ = xmlCtxtReadFile(nil, remoteCharPtr, nil, Int32(XML_PARSE_DTDLOAD.rawValue)) // $ hasXXE=57
+    let _ = xmlParseInNodeContext(nil, remoteCharPtr, -1, 0, nil) // NO XXE: external entities not enabled
+    let _ = xmlParseInNodeContext(nil, remoteCharPtr, -1, Int32(XML_PARSE_DTDLOAD.rawValue), nil) // $ hasXXE=57
+    let _ = xmlParseInNodeContext(nil, remoteCharPtr, -1, Int32(XML_PARSE_NOENT.rawValue), nil) // $ hasXXE=57
+    let _ = xmlCtxtReadDoc(nil, remotePtr, nil, nil, 0) // NO XXE: external entities not enabled
+    let _ = xmlCtxtReadDoc(nil, remotePtr, nil, nil, Int32(XML_PARSE_NOENT.rawValue)) // $ hasXXE=56
+    let _ = xmlCtxtReadDoc(nil, remotePtr, nil, nil, Int32(XML_PARSE_DTDLOAD.rawValue)) // $ hasXXE=56
+    let _ = xmlReadMemory(remoteCharPtr, -1, nil, nil, 0) // NO XXE: external entities not enabled
+    let _ = xmlReadMemory(remoteCharPtr, -1, nil, nil, Int32(XML_PARSE_NOENT.rawValue)) // $ hasXXE=57
+    let _ = xmlReadMemory(remoteCharPtr, -1, nil, nil, Int32(XML_PARSE_DTDLOAD.rawValue)) // $ hasXXE=57
+    let _ = xmlCtxtReadMemory(nil, remoteCharPtr, -1, nil, nil, 0) // NO XXE: external entities not enabled
+    let _ = xmlCtxtReadMemory(nil, remoteCharPtr, -1, nil, nil, Int32(XML_PARSE_NOENT.rawValue)) // $ hasXXE=57
+    let _ = xmlCtxtReadMemory(nil, remoteCharPtr, -1, nil, nil, Int32(XML_PARSE_DTDLOAD.rawValue)) // $ hasXXE=57
+    // TODO: We would need to model taint around `xmlParserCtxtPtr`, file descriptors, and `xmlInputReadCallback`
+    // to be able to alert on these methods. Not doing it for now because of the effort required vs the expected gain.
+    let _ = xmlCtxtUseOptions(nil, 0)
+    let _ = xmlCtxtUseOptions(nil, Int32(XML_PARSE_NOENT.rawValue))
+    let _ = xmlCtxtUseOptions(nil, Int32(XML_PARSE_DTDLOAD.rawValue))
+    let _ = xmlReadFd(0, nil, nil, 0)
+    let _ = xmlReadFd(0, nil, nil, Int32(XML_PARSE_NOENT.rawValue))
+    let _ = xmlReadFd(0, nil, nil, Int32(XML_PARSE_DTDLOAD.rawValue))
+    let _ = xmlCtxtReadFd(nil, 0, nil, nil, 0)
+    let _ = xmlCtxtReadFd(nil, 0, nil, nil, Int32(XML_PARSE_NOENT.rawValue))
+    let _ = xmlCtxtReadFd(nil, 0, nil, nil, Int32(XML_PARSE_DTDLOAD.rawValue))
+    let _ = xmlReadIO(nil, nil, nil, nil, nil, 0)
+    let _ = xmlReadIO(nil, nil, nil, nil, nil, Int32(XML_PARSE_NOENT.rawValue))
+    let _ = xmlReadIO(nil, nil, nil, nil, nil, Int32(XML_PARSE_DTDLOAD.rawValue))
+    let _ = xmlCtxtReadIO(nil, nil, nil, nil, nil, nil, 0)
+    let _ = xmlCtxtReadIO(nil, nil, nil, nil, nil, nil, Int32(XML_PARSE_NOENT.rawValue))
+    let _ = xmlCtxtReadIO(nil, nil, nil, nil, nil, nil, Int32(XML_PARSE_DTDLOAD.rawValue))
+}

From 1c9545e49a92ab13334decdf6c764e04944c95e7 Mon Sep 17 00:00:00 2001
From: tiferet <tiferet@github.com>
Date: Mon, 21 Nov 2022 08:00:31 -0800
Subject: [PATCH 0520/1420] Address comment from code review:

Make `SyntacticHeuristics` an explicit import
---
 .../EndpointCharacteristics.qll               | 32 ++++++++++---------
 1 file changed, 17 insertions(+), 15 deletions(-)

diff --git a/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/EndpointCharacteristics.qll b/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/EndpointCharacteristics.qll
index 0f899d795d9..1b305fa0b11 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/EndpointCharacteristics.qll
+++ b/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/EndpointCharacteristics.qll
@@ -8,7 +8,7 @@ private import semmle.javascript.security.dataflow.DomBasedXssCustomizations
 private import semmle.javascript.security.dataflow.NosqlInjectionCustomizations
 private import semmle.javascript.security.dataflow.TaintedPathCustomizations
 private import CoreKnowledge as CoreKnowledge
-private import semmle.javascript.heuristics.SyntacticHeuristics
+private import semmle.javascript.heuristics.SyntacticHeuristics as SyntacticHeuristics
 private import semmle.javascript.filters.ClassifyFiles as ClassifyFiles
 private import StandardEndpointFilters as StandardEndpointFilters
 
@@ -540,7 +540,9 @@ private class IsHashCharacteristic extends StandardEndpointFilterCharacteristic
 private class IsNumericCharacteristic extends StandardEndpointFilterCharacteristic {
   IsNumericCharacteristic() { this = "numeric" }
 
-  override predicate getEndpoints(DataFlow::Node n) { isReadFrom(n, ".*index.*") }
+  override predicate getEndpoints(DataFlow::Node n) {
+    SyntacticHeuristics::isReadFrom(n, ".*index.*")
+  }
 }
 
 private class InIrrelevantFileCharacteristic extends StandardEndpointFilterCharacteristic {
@@ -676,8 +678,8 @@ private class NotDirectArgumentToLikelyExternalLibraryCallOrHeuristicSinkNosqlCh
     // heuristic sinks as known sinks.
     not n = StandardEndpointFilters::getALikelyExternalLibraryCall().getAnArgument() and
     not (
-      isAssignedToOrConcatenatedWith(n, "(?i)(nosql|query)") or
-      isArgTo(n, "(?i)(query)")
+      SyntacticHeuristics::isAssignedToOrConcatenatedWith(n, "(?i)(nosql|query)") or
+      SyntacticHeuristics::isArgTo(n, "(?i)(query)")
     )
   }
 }
@@ -745,9 +747,9 @@ private class NotAnArgumentToLikelyExternalLibraryCallOrHeuristicSinkCharacteris
     // heuristic sinks as known sinks.
     not StandardEndpointFilters::flowsToArgumentOfLikelyExternalLibraryCall(n) and
     not (
-      isAssignedToOrConcatenatedWith(n, "(?i)(sql|query)") or
-      isArgTo(n, "(?i)(query)") or
-      isConcatenatedWithString(n,
+      SyntacticHeuristics::isAssignedToOrConcatenatedWith(n, "(?i)(sql|query)") or
+      SyntacticHeuristics::isArgTo(n, "(?i)(query)") or
+      SyntacticHeuristics::isConcatenatedWithString(n,
         "(?s).*(ALTER|COUNT|CREATE|DATABASE|DELETE|DISTINCT|DROP|FROM|GROUP|INSERT|INTO|LIMIT|ORDER|SELECT|TABLE|UPDATE|WHERE).*")
     )
   }
@@ -783,24 +785,24 @@ private class NotDirectArgumentToLikelyExternalLibraryCallOrHeuristicSinkTainted
     // heuristic sinks as known sinks.
     not StandardEndpointFilters::flowsToArgumentOfLikelyExternalLibraryCall(n) and
     not (
-      isAssignedToOrConcatenatedWith(n, "(?i)(file|folder|dir|absolute)")
+      SyntacticHeuristics::isAssignedToOrConcatenatedWith(n, "(?i)(file|folder|dir|absolute)")
       or
-      isArgTo(n, "(?i)(get|read)file")
+      SyntacticHeuristics::isArgTo(n, "(?i)(get|read)file")
       or
       exists(string pathPattern |
         // paths with at least two parts, and either a trailing or leading slash
         pathPattern = "(?i)([a-z0-9_.-]+/){2,}" or
         pathPattern = "(?i)(/[a-z0-9_.-]+){2,}"
       |
-        isConcatenatedWithString(n, pathPattern)
+        SyntacticHeuristics::isConcatenatedWithString(n, pathPattern)
       )
       or
-      isConcatenatedWithStrings(".*/", n, "/.*")
+      SyntacticHeuristics::isConcatenatedWithStrings(".*/", n, "/.*")
       or
       // In addition to the names from `HeuristicTaintedPathSink` in the
       // `isAssignedToOrConcatenatedWith` predicate call above, we also allow the noisier "path"
       // name.
-      isAssignedToOrConcatenatedWith(n, "(?i)path")
+      SyntacticHeuristics::isAssignedToOrConcatenatedWith(n, "(?i)path")
     )
   }
 }
@@ -844,13 +846,13 @@ private class NotDirectArgumentToLikelyExternalLibraryCallOrHeuristicSinkXssChar
     // heuristic sinks as known sinks.
     not StandardEndpointFilters::flowsToArgumentOfLikelyExternalLibraryCall(n) and
     not (
-      isAssignedToOrConcatenatedWith(n, "(?i)(html|innerhtml)")
+      SyntacticHeuristics::isAssignedToOrConcatenatedWith(n, "(?i)(html|innerhtml)")
       or
-      isArgTo(n, "(?i)(html|render)")
+      SyntacticHeuristics::isArgTo(n, "(?i)(html|render)")
       or
       n instanceof StringOps::HtmlConcatenationLeaf
       or
-      isConcatenatedWithStrings("(?is).*<[a-z ]+.*", n, "(?s).*>.*")
+      SyntacticHeuristics::isConcatenatedWithStrings("(?is).*<[a-z ]+.*", n, "(?s).*>.*")
       or
       // In addition to the heuristic sinks from `HeuristicDomBasedXssSink`, explicitly allow
       // property writes like `elem.innerHTML = <TAINT>` that may not be picked up as HTML

From 937365141fe40761186189b6ab7cb788fb15b3e7 Mon Sep 17 00:00:00 2001
From: erik-krogh <erik-krogh@github.com>
Date: Mon, 21 Nov 2022 13:04:22 +0100
Subject: [PATCH 0521/1420] QL: add redundant-assignment query

---
 ql/ql/src/codeql/GlobalValueNumbering.qll     |   2 +-
 .../src/queries/style/RedundantAssignment.ql  | 110 ++++++++++++++++++
 2 files changed, 111 insertions(+), 1 deletion(-)
 create mode 100644 ql/ql/src/queries/style/RedundantAssignment.ql

diff --git a/ql/ql/src/codeql/GlobalValueNumbering.qll b/ql/ql/src/codeql/GlobalValueNumbering.qll
index cb9483200d0..21fe729fedc 100644
--- a/ql/ql/src/codeql/GlobalValueNumbering.qll
+++ b/ql/ql/src/codeql/GlobalValueNumbering.qll
@@ -237,7 +237,7 @@ private TValueNumber nonUniqueValueNumber(Expr e) {
 
 /** Gets the value number of an expression `e`. */
 cached
-TValueNumber valueNumber(Expr e) {
+ValueNumber valueNumber(Expr e) {
   result = nonUniqueValueNumber(e)
   or
   uniqueValueNumber(e) and
diff --git a/ql/ql/src/queries/style/RedundantAssignment.ql b/ql/ql/src/queries/style/RedundantAssignment.ql
new file mode 100644
index 00000000000..7baf046b97a
--- /dev/null
+++ b/ql/ql/src/queries/style/RedundantAssignment.ql
@@ -0,0 +1,110 @@
+/**
+ * @name Redundant assignment.
+ * @description Assigning the same value twice is redundant.
+ * @kind problem
+ * @problem.severity warning
+ * @precision high
+ * @id ql/redunant-assignment
+ * @tags maintainability
+ */
+
+import ql
+
+/**
+ * A variable that is set equal to (assigned) a value one or more times.
+ */
+class AssignedVariable extends VarDecl {
+  AssignedVariable() {
+    exists(VarAccess access, ComparisonFormula comp | comp.getOperator() = "=" |
+      access.getDeclaration() = this and
+      comp.getAnOperand() = access
+    )
+  }
+
+  /**
+   * Gets an expression that is assigned to this variable.
+   */
+  Expr getAnAssignedExpr() {
+    exists(VarAccess access, ComparisonFormula comp, Expr operand |
+      comp.getOperator() = "=" and
+      access.getDeclaration() = this and
+      comp.getAnOperand() = access and
+      operand = comp.getAnOperand() and
+      not operand.(VarAccess).getDeclaration() = this
+    |
+      result = operand and
+      not result instanceof Set
+      or
+      result = operand.(Set).getAnElement()
+    )
+  }
+}
+
+import codeql.GlobalValueNumbering as GVN
+
+/**
+ * Holds if `assigned1` and `assigned2` assigns the same value to `var`.
+ * The assignments may be on different branches of a disjunction.
+ */
+predicate candidateRedundantAssignment(AssignedVariable var, Expr assigned1, Expr assigned2) {
+  assigned1 = var.getAnAssignedExpr() and
+  assigned2 = var.getAnAssignedExpr() and
+  (
+    GVN::valueNumber(assigned1) = GVN::valueNumber(assigned2)
+    or
+    // because GVN skips large strings, we need to check for equality manually
+    assigned1.(String).getValue() = assigned2.(String).getValue()
+  ) and
+  assigned1 != assigned2
+}
+
+/**
+ * Gets a (transitive) parent of `p`, where the parent is not a disjunction, and `p` is a candidate assignment from `candidateRedundantAssignment`.
+ */
+AstNode getConjunctionParentRec(AstNode p) {
+  candidateRedundantAssignment(_, p, _) and
+  result = p
+  or
+  result = getConjunctionParentRec(p).getParent() and
+  not result instanceof Disjunction and
+  not result instanceof IfFormula and
+  not result instanceof Implication and
+  not result instanceof Negation and
+  not result instanceof Predicate
+}
+
+/**
+ * Gets which level in the AST `p` is at.
+ * E.g. the top-level is 0, the next level is 1, etc.
+ */
+int level(AstNode p) {
+  p instanceof TopLevel and result = 0
+  or
+  result = level(p.getParent()) + 1
+}
+
+/**
+ * Gets the top-most parent of `p` that is not a disjunction.
+ */
+AstNode getConjunctionParent(AstNode p) {
+  result =
+    min(int level, AstNode parent |
+      parent = getConjunctionParentRec(p) and level = level(parent)
+    |
+      parent order by level
+    )
+}
+
+from AssignedVariable var, Expr assigned1, Expr assigned2
+where
+  candidateRedundantAssignment(var, assigned1, assigned2) and
+  getConjunctionParent(assigned1) = getConjunctionParent(assigned2) and
+  // de-duplcation:
+  (
+    assigned1.getLocation().getStartLine() < assigned2.getLocation().getStartLine()
+    or
+    assigned1.getLocation().getStartLine() = assigned2.getLocation().getStartLine() and
+    assigned1.getLocation().getStartColumn() < assigned2.getLocation().getStartColumn()
+  )
+select assigned2, "$@ has previously been assigned $@.", var, "The variable " + var.getName(),
+  assigned1, "the same value"

From 64707f4f7b47e1b64d313f3ef653b05998d54460 Mon Sep 17 00:00:00 2001
From: erik-krogh <erik-krogh@github.com>
Date: Mon, 21 Nov 2022 17:40:57 +0100
Subject: [PATCH 0522/1420] remove redundant assignments

---
 .../Magic Constants/MagicConstants.qll        | 40 +++++++++----------
 .../library-tests/assemblies/assemblies.ql    |  1 -
 .../OpenUrlRedirectCustomizations.qll         |  2 +-
 .../java/dataflow/internal/ContainerFlow.qll  |  1 -
 .../frameworks/android/ContentProviders.qll   |  1 -
 .../java/frameworks/guava/Collections.qll     |  1 -
 .../semmle/code/java/frameworks/guava/IO.qll  |  1 -
 .../Magic Constants/MagicConstants.qll        | 40 +++++++++----------
 .../semmle/javascript/frameworks/NoSQL.qll    |  2 +-
 .../LoopBoundInjectionCustomizations.qll      |  8 ++--
 10 files changed, 46 insertions(+), 51 deletions(-)

diff --git a/csharp/ql/src/Bad Practices/Magic Constants/MagicConstants.qll b/csharp/ql/src/Bad Practices/Magic Constants/MagicConstants.qll
index b65cdcd1961..73b82c14700 100644
--- a/csharp/ql/src/Bad Practices/Magic Constants/MagicConstants.qll	
+++ b/csharp/ql/src/Bad Practices/Magic Constants/MagicConstants.qll	
@@ -10,26 +10,26 @@ private predicate trivialPositiveIntValue(string s) {
   s =
     [
       "0", "1", "2", "3", "4", "5", "6", "7", "8", "9", "10", "11", "12", "13", "14", "15", "16",
-      "17", "18", "19", "20", "16", "32", "64", "128", "256", "512", "1024", "2048", "4096",
-      "16384", "32768", "65536", "1048576", "2147483648", "4294967296", "15", "31", "63", "127",
-      "255", "511", "1023", "2047", "4095", "16383", "32767", "65535", "1048577", "2147483647",
-      "4294967295", "0x00000001", "0x00000002", "0x00000004", "0x00000008", "0x00000010",
-      "0x00000020", "0x00000040", "0x00000080", "0x00000100", "0x00000200", "0x00000400",
-      "0x00000800", "0x00001000", "0x00002000", "0x00004000", "0x00008000", "0x00010000",
-      "0x00020000", "0x00040000", "0x00080000", "0x00100000", "0x00200000", "0x00400000",
-      "0x00800000", "0x01000000", "0x02000000", "0x04000000", "0x08000000", "0x10000000",
-      "0x20000000", "0x40000000", "0x80000000", "0x00000001", "0x00000003", "0x00000007",
-      "0x0000000f", "0x0000001f", "0x0000003f", "0x0000007f", "0x000000ff", "0x000001ff",
-      "0x000003ff", "0x000007ff", "0x00000fff", "0x00001fff", "0x00003fff", "0x00007fff",
-      "0x0000ffff", "0x0001ffff", "0x0003ffff", "0x0007ffff", "0x000fffff", "0x001fffff",
-      "0x003fffff", "0x007fffff", "0x00ffffff", "0x01ffffff", "0x03ffffff", "0x07ffffff",
-      "0x0fffffff", "0x1fffffff", "0x3fffffff", "0x7fffffff", "0xffffffff", "0x0001", "0x0002",
-      "0x0004", "0x0008", "0x0010", "0x0020", "0x0040", "0x0080", "0x0100", "0x0200", "0x0400",
-      "0x0800", "0x1000", "0x2000", "0x4000", "0x8000", "0x0001", "0x0003", "0x0007", "0x000f",
-      "0x001f", "0x003f", "0x007f", "0x00ff", "0x01ff", "0x03ff", "0x07ff", "0x0fff", "0x1fff",
-      "0x3fff", "0x7fff", "0xffff", "0x01", "0x02", "0x04", "0x08", "0x10", "0x20", "0x40", "0x80",
-      "0x01", "0x03", "0x07", "0x0f", "0x1f", "0x3f", "0x7f", "0xff", "0x00", "10", "100", "1000",
-      "10000", "100000", "1000000", "10000000", "100000000", "1000000000"
+      "17", "18", "19", "20", "32", "64", "128", "256", "512", "1024", "2048", "4096", "16384",
+      "32768", "65536", "1048576", "2147483648", "4294967296", "31", "63", "127", "255", "511",
+      "1023", "2047", "4095", "16383", "32767", "65535", "1048577", "2147483647", "4294967295",
+      "0x00000001", "0x00000002", "0x00000004", "0x00000008", "0x00000010", "0x00000020",
+      "0x00000040", "0x00000080", "0x00000100", "0x00000200", "0x00000400", "0x00000800",
+      "0x00001000", "0x00002000", "0x00004000", "0x00008000", "0x00010000", "0x00020000",
+      "0x00040000", "0x00080000", "0x00100000", "0x00200000", "0x00400000", "0x00800000",
+      "0x01000000", "0x02000000", "0x04000000", "0x08000000", "0x10000000", "0x20000000",
+      "0x40000000", "0x80000000", "0x00000003", "0x00000007", "0x0000000f", "0x0000001f",
+      "0x0000003f", "0x0000007f", "0x000000ff", "0x000001ff", "0x000003ff", "0x000007ff",
+      "0x00000fff", "0x00001fff", "0x00003fff", "0x00007fff", "0x0000ffff", "0x0001ffff",
+      "0x0003ffff", "0x0007ffff", "0x000fffff", "0x001fffff", "0x003fffff", "0x007fffff",
+      "0x00ffffff", "0x01ffffff", "0x03ffffff", "0x07ffffff", "0x0fffffff", "0x1fffffff",
+      "0x3fffffff", "0x7fffffff", "0xffffffff", "0x0001", "0x0002", "0x0004", "0x0008", "0x0010",
+      "0x0020", "0x0040", "0x0080", "0x0100", "0x0200", "0x0400", "0x0800", "0x1000", "0x2000",
+      "0x4000", "0x8000", "0x0003", "0x0007", "0x000f", "0x001f", "0x003f", "0x007f", "0x00ff",
+      "0x01ff", "0x03ff", "0x07ff", "0x0fff", "0x1fff", "0x3fff", "0x7fff", "0xffff", "0x02",
+      "0x04", "0x08", "0x10", "0x20", "0x40", "0x80", "0x01", "0x03", "0x07", "0x0f", "0x1f",
+      "0x3f", "0x7f", "0xff", "0x00", "100", "1000", "10000", "100000", "1000000", "10000000",
+      "100000000", "1000000000"
     ]
 }
 
diff --git a/csharp/ql/test/library-tests/assemblies/assemblies.ql b/csharp/ql/test/library-tests/assemblies/assemblies.ql
index 98db2a0f973..9c072f0d51e 100644
--- a/csharp/ql/test/library-tests/assemblies/assemblies.ql
+++ b/csharp/ql/test/library-tests/assemblies/assemblies.ql
@@ -34,7 +34,6 @@ where
   f.hasName("f") and
   g.hasName("g") and
   a.getDeclaringType() = class1 and
-  a.getDeclaringType() = class1 and
   b.getDeclaringType() = class1 and
   c.getDeclaringType() = class1 and
   not exists(c.getParameter(0).getType().(KnownType)) and
diff --git a/go/ql/lib/semmle/go/security/OpenUrlRedirectCustomizations.qll b/go/ql/lib/semmle/go/security/OpenUrlRedirectCustomizations.qll
index 80b9bb4a126..2d7f6948115 100644
--- a/go/ql/lib/semmle/go/security/OpenUrlRedirectCustomizations.qll
+++ b/go/ql/lib/semmle/go/security/OpenUrlRedirectCustomizations.qll
@@ -128,7 +128,7 @@ private class SafeUrlSink extends SafeUrlFlow::Sink {
 private class UnsafeFieldReadSanitizer extends SafeUrlFlow::SanitizerEdge {
   UnsafeFieldReadSanitizer() {
     exists(DataFlow::FieldReadNode frn, string name |
-      name = ["User", "RawQuery", "Fragment", "User"] and
+      name = ["User", "RawQuery", "Fragment"] and
       frn.getField().hasQualifiedName("net/url", "URL")
     |
       this = frn.getBase()
diff --git a/java/ql/lib/semmle/code/java/dataflow/internal/ContainerFlow.qll b/java/ql/lib/semmle/code/java/dataflow/internal/ContainerFlow.qll
index 8f9a40ed8d0..aebe509816f 100644
--- a/java/ql/lib/semmle/code/java/dataflow/internal/ContainerFlow.qll
+++ b/java/ql/lib/semmle/code/java/dataflow/internal/ContainerFlow.qll
@@ -250,7 +250,6 @@ private class ContainerFlowSummaries extends SummaryModelCsv {
         "java.util;Scanner;true;Scanner;;;Argument[0];Argument[-1];taint;manual",
         "java.util;Scanner;true;findInLine;;;Argument[-1];ReturnValue;taint;manual",
         "java.util;Scanner;true;findWithinHorizon;;;Argument[-1];ReturnValue;taint;manual",
-        "java.util;Scanner;true;findWithinHorizon;;;Argument[-1];ReturnValue;taint;manual",
         "java.util;Scanner;true;next;;;Argument[-1];ReturnValue;taint;manual",
         "java.util;Scanner;true;nextBigDecimal;;;Argument[-1];ReturnValue;taint;manual",
         "java.util;Scanner;true;nextBigInteger;;;Argument[-1];ReturnValue;taint;manual",
diff --git a/java/ql/lib/semmle/code/java/frameworks/android/ContentProviders.qll b/java/ql/lib/semmle/code/java/frameworks/android/ContentProviders.qll
index 1e10a01d451..bf47e98b8fb 100644
--- a/java/ql/lib/semmle/code/java/frameworks/android/ContentProviders.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/android/ContentProviders.qll
@@ -56,7 +56,6 @@ private class SummaryModels extends SummaryModelCsv {
         "android.content;ContentValues;false;putAll;;;Argument[0].MapValue;Argument[-1].MapValue;value;manual",
         "android.content;ContentResolver;true;acquireContentProviderClient;;;Argument[0];ReturnValue;taint;manual",
         "android.content;ContentResolver;true;acquireUnstableContentProviderClient;;;Argument[0];ReturnValue;taint;manual",
-        "android.content;ContentResolver;true;acquireUnstableContentProviderClient;;;Argument[0];ReturnValue;taint;manual",
         "android.content;ContentResolver;true;applyBatch;;;Argument[1];ReturnValue;taint;manual",
         "android.content;ContentResolver;true;call;;;Argument[0];ReturnValue;taint;manual",
         "android.content;ContentResolver;true;canonicalize;;;Argument[0];ReturnValue;taint;manual",
diff --git a/java/ql/lib/semmle/code/java/frameworks/guava/Collections.qll b/java/ql/lib/semmle/code/java/frameworks/guava/Collections.qll
index d662e7ee7cd..feb27d22ec0 100644
--- a/java/ql/lib/semmle/code/java/frameworks/guava/Collections.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/guava/Collections.qll
@@ -503,7 +503,6 @@ private class GuavaCollectCsv extends SummaryModelCsv {
         "com.google.common.collect;Sets;false;filter;(SortedSet,Predicate);;Argument[0].Element;ReturnValue.Element;value;manual",
         "com.google.common.collect;Sets;false;intersection;(Set,Set);;Argument[0..1].Element;ReturnValue.Element;value;manual",
         "com.google.common.collect;Sets;false;newConcurrentHashSet;(Iterable);;Argument[0].Element;ReturnValue.Element;value;manual",
-        "com.google.common.collect;Sets;false;newConcurrentHashSet;(Iterable);;Argument[0].Element;ReturnValue.Element;value;manual",
         "com.google.common.collect;Sets;false;newCopyOnWriteArraySet;(Iterable);;Argument[0].Element;ReturnValue.Element;value;manual",
         "com.google.common.collect;Sets;false;newHashSet;(Iterable);;Argument[0].Element;ReturnValue.Element;value;manual",
         "com.google.common.collect;Sets;false;newHashSet;(Iterator);;Argument[0].Element;ReturnValue.Element;value;manual",
diff --git a/java/ql/lib/semmle/code/java/frameworks/guava/IO.qll b/java/ql/lib/semmle/code/java/frameworks/guava/IO.qll
index 6137a4e47f3..59fc0113e10 100644
--- a/java/ql/lib/semmle/code/java/frameworks/guava/IO.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/guava/IO.qll
@@ -93,7 +93,6 @@ private class GuavaIoSinkCsv extends SinkModelCsv {
         "com.google.common.io;Resources;false;asByteSource;(URL);;Argument[0];url-open-stream;manual",
         "com.google.common.io;Resources;false;asCharSource;(URL,Charset);;Argument[0];url-open-stream;manual",
         "com.google.common.io;Resources;false;copy;(URL,OutputStream);;Argument[0];url-open-stream;manual",
-        "com.google.common.io;Resources;false;asByteSource;(URL);;Argument[0];url-open-stream;manual",
         "com.google.common.io;Resources;false;readLines;;;Argument[0];url-open-stream;manual",
         "com.google.common.io;Resources;false;toByteArray;(URL);;Argument[0];url-open-stream;manual",
         "com.google.common.io;Resources;false;toString;(URL,Charset);;Argument[0];url-open-stream;manual"
diff --git a/java/ql/src/Violations of Best Practice/Magic Constants/MagicConstants.qll b/java/ql/src/Violations of Best Practice/Magic Constants/MagicConstants.qll
index 11dbd5cd8d3..5fc7e9069cd 100644
--- a/java/ql/src/Violations of Best Practice/Magic Constants/MagicConstants.qll	
+++ b/java/ql/src/Violations of Best Practice/Magic Constants/MagicConstants.qll	
@@ -8,26 +8,26 @@ private predicate trivialPositiveIntValue(string s) {
   s =
     [
       "0", "1", "2", "3", "4", "5", "6", "7", "8", "9", "10", "11", "12", "13", "14", "15", "16",
-      "17", "18", "19", "20", "16", "32", "64", "128", "256", "512", "1024", "2048", "4096",
-      "16384", "32768", "65536", "1048576", "2147483648", "4294967296", "15", "31", "63", "127",
-      "255", "511", "1023", "2047", "4095", "16383", "32767", "65535", "1048577", "2147483647",
-      "4294967295", "0x00000001", "0x00000002", "0x00000004", "0x00000008", "0x00000010",
-      "0x00000020", "0x00000040", "0x00000080", "0x00000100", "0x00000200", "0x00000400",
-      "0x00000800", "0x00001000", "0x00002000", "0x00004000", "0x00008000", "0x00010000",
-      "0x00020000", "0x00040000", "0x00080000", "0x00100000", "0x00200000", "0x00400000",
-      "0x00800000", "0x01000000", "0x02000000", "0x04000000", "0x08000000", "0x10000000",
-      "0x20000000", "0x40000000", "0x80000000", "0x00000001", "0x00000003", "0x00000007",
-      "0x0000000f", "0x0000001f", "0x0000003f", "0x0000007f", "0x000000ff", "0x000001ff",
-      "0x000003ff", "0x000007ff", "0x00000fff", "0x00001fff", "0x00003fff", "0x00007fff",
-      "0x0000ffff", "0x0001ffff", "0x0003ffff", "0x0007ffff", "0x000fffff", "0x001fffff",
-      "0x003fffff", "0x007fffff", "0x00ffffff", "0x01ffffff", "0x03ffffff", "0x07ffffff",
-      "0x0fffffff", "0x1fffffff", "0x3fffffff", "0x7fffffff", "0xffffffff", "0x0001", "0x0002",
-      "0x0004", "0x0008", "0x0010", "0x0020", "0x0040", "0x0080", "0x0100", "0x0200", "0x0400",
-      "0x0800", "0x1000", "0x2000", "0x4000", "0x8000", "0x0001", "0x0003", "0x0007", "0x000f",
-      "0x001f", "0x003f", "0x007f", "0x00ff", "0x01ff", "0x03ff", "0x07ff", "0x0fff", "0x1fff",
-      "0x3fff", "0x7fff", "0xffff", "0x01", "0x02", "0x04", "0x08", "0x10", "0x20", "0x40", "0x80",
-      "0x01", "0x03", "0x07", "0x0f", "0x1f", "0x3f", "0x7f", "0xff", "0x00", "10", "100", "1000",
-      "10000", "100000", "1000000", "10000000", "100000000", "1000000000"
+      "17", "18", "19", "20", "32", "64", "128", "256", "512", "1024", "2048", "4096", "16384",
+      "32768", "65536", "1048576", "2147483648", "4294967296", "31", "63", "127", "255", "511",
+      "1023", "2047", "4095", "16383", "32767", "65535", "1048577", "2147483647", "4294967295",
+      "0x00000001", "0x00000002", "0x00000004", "0x00000008", "0x00000010", "0x00000020",
+      "0x00000040", "0x00000080", "0x00000100", "0x00000200", "0x00000400", "0x00000800",
+      "0x00001000", "0x00002000", "0x00004000", "0x00008000", "0x00010000", "0x00020000",
+      "0x00040000", "0x00080000", "0x00100000", "0x00200000", "0x00400000", "0x00800000",
+      "0x01000000", "0x02000000", "0x04000000", "0x08000000", "0x10000000", "0x20000000",
+      "0x40000000", "0x80000000", "0x00000003", "0x00000007", "0x0000000f", "0x0000001f",
+      "0x0000003f", "0x0000007f", "0x000000ff", "0x000001ff", "0x000003ff", "0x000007ff",
+      "0x00000fff", "0x00001fff", "0x00003fff", "0x00007fff", "0x0000ffff", "0x0001ffff",
+      "0x0003ffff", "0x0007ffff", "0x000fffff", "0x001fffff", "0x003fffff", "0x007fffff",
+      "0x00ffffff", "0x01ffffff", "0x03ffffff", "0x07ffffff", "0x0fffffff", "0x1fffffff",
+      "0x3fffffff", "0x7fffffff", "0xffffffff", "0x0001", "0x0002", "0x0004", "0x0008", "0x0010",
+      "0x0020", "0x0040", "0x0080", "0x0100", "0x0200", "0x0400", "0x0800", "0x1000", "0x2000",
+      "0x4000", "0x8000", "0x0003", "0x0007", "0x000f", "0x001f", "0x003f", "0x007f", "0x00ff",
+      "0x01ff", "0x03ff", "0x07ff", "0x0fff", "0x1fff", "0x3fff", "0x7fff", "0xffff", "0x01",
+      "0x02", "0x04", "0x08", "0x10", "0x20", "0x40", "0x80", "0x03", "0x07", "0x0f", "0x1f",
+      "0x3f", "0x7f", "0xff", "0x00", "100", "1000", "10000", "100000", "1000000", "10000000",
+      "100000000", "1000000000"
     ]
 }
 
diff --git a/javascript/ql/lib/semmle/javascript/frameworks/NoSQL.qll b/javascript/ql/lib/semmle/javascript/frameworks/NoSQL.qll
index 11f454eadd5..568ae3c93a1 100644
--- a/javascript/ql/lib/semmle/javascript/frameworks/NoSQL.qll
+++ b/javascript/ql/lib/semmle/javascript/frameworks/NoSQL.qll
@@ -251,7 +251,7 @@ private module Redis {
           "set", "publish", "append", "bitfield", "decrby", "getset", "hincrby", "hincrbyfloat",
           "hset", "hsetnx", "incrby", "incrbyfloat", "linsert", "lpush", "lpushx", "lset", "ltrim",
           "rename", "renamenx", "rpushx", "setbit", "setex", "smove", "zincrby", "zinterstore",
-          "hdel", "lpush", "pfadd", "rpush", "sadd", "sdiffstore", "srem"
+          "hdel", "pfadd", "rpush", "sadd", "sdiffstore", "srem"
         ] and
       argIndex = 0
       or
diff --git a/javascript/ql/lib/semmle/javascript/security/dataflow/LoopBoundInjectionCustomizations.qll b/javascript/ql/lib/semmle/javascript/security/dataflow/LoopBoundInjectionCustomizations.qll
index 2142d468b90..1c92ff66c5b 100644
--- a/javascript/ql/lib/semmle/javascript/security/dataflow/LoopBoundInjectionCustomizations.qll
+++ b/javascript/ql/lib/semmle/javascript/security/dataflow/LoopBoundInjectionCustomizations.qll
@@ -122,10 +122,10 @@ module LoopBoundInjection {
         "flattenDeep", "flattenDepth", "initial", "intersection", "intersectionBy",
         "intersectionWith", "join", "remove", "reverse", "slice", "sortedUniq", "sortedUniqBy",
         "tail", "union", "unionBy", "unionWith", "uniqBy", "unzip", "unzipWith", "without", "zip",
-        "zipObject", "zipObjectDeep", "zipWith", "countBy", "each", "forEach", "eachRight",
-        "forEachRight", "filter", "find", "findLast", "flatMap", "flatMapDeep", "flatMapDepth",
-        "forEach", "forEachRight", "groupBy", "invokeMap", "keyBy", "map", "orderBy", "partition",
-        "reduce", "reduceRight", "reject", "sortBy"
+        "zipObject", "zipObjectDeep", "zipWith", "countBy", "each", "eachRight", "forEachRight",
+        "filter", "find", "findLast", "flatMap", "flatMapDeep", "flatMapDepth", "forEach",
+        "groupBy", "invokeMap", "keyBy", "map", "orderBy", "partition", "reduce", "reduceRight",
+        "reject", "sortBy"
       ]
   }
 

From 9c792902c7eab3ae5451092d0209bdc28ea846e2 Mon Sep 17 00:00:00 2001
From: erik-krogh <erik-krogh@github.com>
Date: Mon, 21 Nov 2022 16:25:26 +0100
Subject: [PATCH 0523/1420] Ruby: cache the entire extractor

---
 ruby/actions/create-extractor-pack/action.yml | 11 ++++++++++-
 1 file changed, 10 insertions(+), 1 deletion(-)

diff --git a/ruby/actions/create-extractor-pack/action.yml b/ruby/actions/create-extractor-pack/action.yml
index b0907eff834..667158c264c 100644
--- a/ruby/actions/create-extractor-pack/action.yml
+++ b/ruby/actions/create-extractor-pack/action.yml
@@ -3,7 +3,15 @@ description: Builds the Ruby CodeQL pack
 runs:
   using: composite
   steps:
-    - uses: actions/cache@v3
+    - name: Cache entire extractor
+      id: cache-extractor
+      uses: actions/cache@v3
+      with:
+        path: ruby/extractor-pack
+        key: ${{ runner.os }}-extractor-${{ hashFiles('ruby/rust-toolchain.toml', 'ruby/**/Cargo.lock') }}-${{ hashFiles('ruby/**/*.rs') }}-${{ hashFiles('ruby/codeql-extractor.yml', 'ruby/downgrades', 'ruby/tools', 'ruby/ql/lib/ruby.dbscheme', 'ruby/ql/lib/ruby.dbscheme.stats') }}
+    - name: Cache cargo
+      uses: actions/cache@v3
+      if: steps.cache-extractor.outputs.cache-hit != 'true'
       with:
         path: |
           ~/.cargo/registry
@@ -11,6 +19,7 @@ runs:
           ruby/target
         key: ${{ runner.os }}-ruby-qltest-cargo-${{ hashFiles('ruby/rust-toolchain.toml', 'ruby/**/Cargo.lock') }}
     - name: Build Extractor
+      if: steps.cache-extractor.outputs.cache-hit != 'true'
       shell: bash
       run: scripts/create-extractor-pack.sh
       working-directory: ruby

From b1db39020057ad96e2321ff08c6ca8da0e973613 Mon Sep 17 00:00:00 2001
From: erik-krogh <erik-krogh@github.com>
Date: Mon, 21 Nov 2022 16:25:44 +0100
Subject: [PATCH 0524/1420] Ruby: use compilation cache in the ruby-build
 workflow

---
 .github/workflows/ruby-build.yml | 15 ++++++++++-----
 1 file changed, 10 insertions(+), 5 deletions(-)

diff --git a/.github/workflows/ruby-build.yml b/.github/workflows/ruby-build.yml
index 2c4ddb8a582..3ba334b94a2 100644
--- a/.github/workflows/ruby-build.yml
+++ b/.github/workflows/ruby-build.yml
@@ -93,13 +93,18 @@ jobs:
       - uses: actions/checkout@v3
       - name: Fetch CodeQL
         uses: ./.github/actions/fetch-codeql
+      - name: Cache compilation cache
+        id: query-cache
+        uses: ./.github/actions/cache-query-compilation
+        with: 
+          key: ruby-build
       - name: Build Query Pack
         run: |
-          codeql pack create ../shared/ssa --output target/packs
-          codeql pack create ../misc/suite-helpers --output target/packs
-          codeql pack create ../shared/regex --output target/packs
-          codeql pack create ql/lib --output target/packs
-          codeql pack create ql/src --output target/packs
+          codeql pack create ../shared/ssa --output target/packs --compilation-cache "${{ steps.query-cache.outputs.cache-dir }}"
+          codeql pack create ../misc/suite-helpers --output target/packs --compilation-cache "${{ steps.query-cache.outputs.cache-dir }}"
+          codeql pack create ../shared/regex --output target/packs --compilation-cache "${{ steps.query-cache.outputs.cache-dir }}"
+          codeql pack create ql/lib --output target/packs --compilation-cache "${{ steps.query-cache.outputs.cache-dir }}"
+          codeql pack create ql/src --output target/packs --compilation-cache "${{ steps.query-cache.outputs.cache-dir }}"
           PACK_FOLDER=$(readlink -f target/packs/codeql/ruby-queries/*)
           codeql generate query-help --format=sarifv2.1.0 --output="${PACK_FOLDER}/rules.sarif" ql/src
           (cd ql/src; find queries \( -name '*.qhelp' -o -name '*.rb' -o -name '*.erb' \) -exec bash -c 'mkdir -p "'"${PACK_FOLDER}"'/$(dirname "{}")"' \; -exec cp "{}" "${PACK_FOLDER}/{}" \;)

From 999e8ed0d08f442d0d51ddafdbd9b4e19985f21f Mon Sep 17 00:00:00 2001
From: erik-krogh <erik-krogh@github.com>
Date: Mon, 21 Nov 2022 16:30:15 +0100
Subject: [PATCH 0525/1420] Ruby: remove the path on branch pushes, for caching

---
 .github/workflows/ruby-build.yml | 6 +-----
 1 file changed, 1 insertion(+), 5 deletions(-)

diff --git a/.github/workflows/ruby-build.yml b/.github/workflows/ruby-build.yml
index 3ba334b94a2..6895e3afeb1 100644
--- a/.github/workflows/ruby-build.yml
+++ b/.github/workflows/ruby-build.yml
@@ -2,11 +2,7 @@ name: "Ruby: Build"
 
 on:
   push:
-    paths:
-      - "ruby/**"
-      - .github/workflows/ruby-build.yml
-      - .github/actions/fetch-codeql/action.yml
-      - codeql-workspace.yml
+    # No path requirement on branch pushes, so the cache is more effective.
     branches:
       - main
       - "rc/*"

From 3b7ce0680d51b977cf0d8df64ea124ea2499d2b4 Mon Sep 17 00:00:00 2001
From: erik-krogh <erik-krogh@github.com>
Date: Mon, 21 Nov 2022 16:35:11 +0100
Subject: [PATCH 0526/1420] Ruby: build queries on an XL worker, and use all
 the threads

---
 .github/workflows/ruby-build.yml | 14 ++++++--------
 1 file changed, 6 insertions(+), 8 deletions(-)

diff --git a/.github/workflows/ruby-build.yml b/.github/workflows/ruby-build.yml
index 6895e3afeb1..cb9278f091e 100644
--- a/.github/workflows/ruby-build.yml
+++ b/.github/workflows/ruby-build.yml
@@ -82,9 +82,7 @@ jobs:
             ruby/target/release/ruby-extractor.exe
           retention-days: 1
   compile-queries:
-    runs-on: ubuntu-latest
-    env:
-      CODEQL_THREADS: 4 # TODO: remove this once it's set by the CLI
+    runs-on: ubuntu-latest-xl
     steps:
       - uses: actions/checkout@v3
       - name: Fetch CodeQL
@@ -96,11 +94,11 @@ jobs:
           key: ruby-build
       - name: Build Query Pack
         run: |
-          codeql pack create ../shared/ssa --output target/packs --compilation-cache "${{ steps.query-cache.outputs.cache-dir }}"
-          codeql pack create ../misc/suite-helpers --output target/packs --compilation-cache "${{ steps.query-cache.outputs.cache-dir }}"
-          codeql pack create ../shared/regex --output target/packs --compilation-cache "${{ steps.query-cache.outputs.cache-dir }}"
-          codeql pack create ql/lib --output target/packs --compilation-cache "${{ steps.query-cache.outputs.cache-dir }}"
-          codeql pack create ql/src --output target/packs --compilation-cache "${{ steps.query-cache.outputs.cache-dir }}"
+          codeql pack create -j0 ../shared/ssa --output target/packs --compilation-cache "${{ steps.query-cache.outputs.cache-dir }}"
+          codeql pack create -j0 ../misc/suite-helpers --output target/packs --compilation-cache "${{ steps.query-cache.outputs.cache-dir }}"
+          codeql pack create -j0 ../shared/regex --output target/packs --compilation-cache "${{ steps.query-cache.outputs.cache-dir }}"
+          codeql pack create -j0 ql/lib --output target/packs --compilation-cache "${{ steps.query-cache.outputs.cache-dir }}"
+          codeql pack create -j0 ql/src --output target/packs --compilation-cache "${{ steps.query-cache.outputs.cache-dir }}"
           PACK_FOLDER=$(readlink -f target/packs/codeql/ruby-queries/*)
           codeql generate query-help --format=sarifv2.1.0 --output="${PACK_FOLDER}/rules.sarif" ql/src
           (cd ql/src; find queries \( -name '*.qhelp' -o -name '*.rb' -o -name '*.erb' \) -exec bash -c 'mkdir -p "'"${PACK_FOLDER}"'/$(dirname "{}")"' \; -exec cp "{}" "${PACK_FOLDER}/{}" \;)

From 53ba22ab5c565770e1ac0c89362184f29f7ce3bf Mon Sep 17 00:00:00 2001
From: Erik Krogh Kristensen <erik-krogh@github.com>
Date: Mon, 21 Nov 2022 17:37:11 +0100
Subject: [PATCH 0527/1420] simplify pack creation

Co-authored-by: Arthur Baars <aibaars@github.com>
---
 .github/workflows/ruby-build.yml | 8 ++++----
 1 file changed, 4 insertions(+), 4 deletions(-)

diff --git a/.github/workflows/ruby-build.yml b/.github/workflows/ruby-build.yml
index cb9278f091e..abca7bd8913 100644
--- a/.github/workflows/ruby-build.yml
+++ b/.github/workflows/ruby-build.yml
@@ -94,10 +94,10 @@ jobs:
           key: ruby-build
       - name: Build Query Pack
         run: |
-          codeql pack create -j0 ../shared/ssa --output target/packs --compilation-cache "${{ steps.query-cache.outputs.cache-dir }}"
-          codeql pack create -j0 ../misc/suite-helpers --output target/packs --compilation-cache "${{ steps.query-cache.outputs.cache-dir }}"
-          codeql pack create -j0 ../shared/regex --output target/packs --compilation-cache "${{ steps.query-cache.outputs.cache-dir }}"
-          codeql pack create -j0 ql/lib --output target/packs --compilation-cache "${{ steps.query-cache.outputs.cache-dir }}"
+          codeql pack create ../shared/ssa --output target/packs
+          codeql pack create ../misc/suite-helpers --output target/packs
+          codeql pack create ../shared/regex --output target/packs
+          codeql pack create ql/lib --output target/packs
           codeql pack create -j0 ql/src --output target/packs --compilation-cache "${{ steps.query-cache.outputs.cache-dir }}"
           PACK_FOLDER=$(readlink -f target/packs/codeql/ruby-queries/*)
           codeql generate query-help --format=sarifv2.1.0 --output="${PACK_FOLDER}/rules.sarif" ql/src

From 76ceb498417dd15ba181c81f32c9c1371be1be1b Mon Sep 17 00:00:00 2001
From: erik-krogh <erik-krogh@github.com>
Date: Mon, 21 Nov 2022 17:52:06 +0100
Subject: [PATCH 0528/1420] re-introduce the paths requirements in the ruby
 workflows

---
 .github/workflows/ruby-build.yml  | 6 +++++-
 .github/workflows/ruby-qltest.yml | 6 +++++-
 2 files changed, 10 insertions(+), 2 deletions(-)

diff --git a/.github/workflows/ruby-build.yml b/.github/workflows/ruby-build.yml
index abca7bd8913..784a7db3dc9 100644
--- a/.github/workflows/ruby-build.yml
+++ b/.github/workflows/ruby-build.yml
@@ -2,7 +2,11 @@ name: "Ruby: Build"
 
 on:
   push:
-    # No path requirement on branch pushes, so the cache is more effective.
+    paths:
+      - "ruby/**"
+      - .github/workflows/ruby-build.yml
+      - .github/actions/fetch-codeql/action.yml
+      - codeql-workspace.yml
     branches:
       - main
       - "rc/*"
diff --git a/.github/workflows/ruby-qltest.yml b/.github/workflows/ruby-qltest.yml
index abb6d2bf0eb..d8af552c8c6 100644
--- a/.github/workflows/ruby-qltest.yml
+++ b/.github/workflows/ruby-qltest.yml
@@ -2,7 +2,11 @@ name: "Ruby: Run QL Tests"
 
 on:
   push:
-    # no path requirement on branch pushes, so the cache is more effective.
+    paths:
+      - "ruby/**"
+      - .github/workflows/ruby-build.yml
+      - .github/actions/fetch-codeql/action.yml
+      - codeql-workspace.yml
     branches:
       - main
       - "rc/*"

From 9e2ec9d12f599408f20a28d036163316b6eb077a Mon Sep 17 00:00:00 2001
From: Jami Cogswell <jcogs33@Jamis-MacBook-Pro.local>
Date: Mon, 21 Nov 2022 13:39:46 -0500
Subject: [PATCH 0529/1420] apply docs review suggestion

---
 java/ql/src/Security/CWE/CWE-730/RegexInjection.qhelp | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/java/ql/src/Security/CWE/CWE-730/RegexInjection.qhelp b/java/ql/src/Security/CWE/CWE-730/RegexInjection.qhelp
index fc8ab33ca80..3e239d07107 100644
--- a/java/ql/src/Security/CWE/CWE-730/RegexInjection.qhelp
+++ b/java/ql/src/Security/CWE/CWE-730/RegexInjection.qhelp
@@ -25,7 +25,7 @@ The following example shows an HTTP request parameter that is used to construct
 </p>
 <p>
 In the first case the user-provided regex is not escaped.
-If a malicious user provides a regex that has exponential worst case performance,
+If a malicious user provides a regex whose worst-case performance is exponential,
 then this could lead to a Denial of Service.
 </p>
 <p>

From 29055f770904c543a933fa8cbbffe2f2e8dc3763 Mon Sep 17 00:00:00 2001
From: erik-krogh <erik-krogh@github.com>
Date: Tue, 22 Nov 2022 00:09:42 +0100
Subject: [PATCH 0530/1420] delete packs

---
 .github/workflows/ruby-build.yml | 1 +
 1 file changed, 1 insertion(+)

diff --git a/.github/workflows/ruby-build.yml b/.github/workflows/ruby-build.yml
index 784a7db3dc9..cbe7f32fb17 100644
--- a/.github/workflows/ruby-build.yml
+++ b/.github/workflows/ruby-build.yml
@@ -98,6 +98,7 @@ jobs:
           key: ruby-build
       - name: Build Query Pack
         run: |
+          rm -rf target/packs
           codeql pack create ../shared/ssa --output target/packs
           codeql pack create ../misc/suite-helpers --output target/packs
           codeql pack create ../shared/regex --output target/packs

From e70eb3a3ee07c875ff7a0b0c8312725f778ca6e6 Mon Sep 17 00:00:00 2001
From: "github-actions[bot]"
 <41898282+github-actions[bot]@users.noreply.github.com>
Date: Tue, 22 Nov 2022 00:19:21 +0000
Subject: [PATCH 0531/1420] Add changed framework coverage reports

---
 .../library-coverage/coverage.csv             | 260 +++++++++---------
 .../library-coverage/coverage.rst             |   6 +-
 2 files changed, 133 insertions(+), 133 deletions(-)

diff --git a/java/documentation/library-coverage/coverage.csv b/java/documentation/library-coverage/coverage.csv
index 189dbab6b94..75e3309bb4c 100644
--- a/java/documentation/library-coverage/coverage.csv
+++ b/java/documentation/library-coverage/coverage.csv
@@ -1,130 +1,130 @@
-package,sink,source,summary,sink:bean-validation,sink:create-file,sink:groovy,sink:header-splitting,sink:information-leak,sink:intent-start,sink:jdbc-url,sink:jexl,sink:jndi-injection,sink:ldap,sink:logging,sink:mvel,sink:ognl-injection,sink:open-url,sink:pending-intent-sent,sink:regex-use[-1],sink:regex-use[0],sink:regex-use[],sink:regex-use[f-1],sink:regex-use[f1],sink:regex-use[f],sink:set-hostname-verifier,sink:sql,sink:ssti,sink:url-open-stream,sink:url-redirect,sink:write-file,sink:xpath,sink:xslt,sink:xss,source:android-external-storage-dir,source:android-widget,source:contentprovider,source:remote,summary:taint,summary:value
-android.app,24,,103,,,,,,7,,,,,,,,,17,,,,,,,,,,,,,,,,,,,,18,85
-android.content,24,31,154,,,,,,16,,,,,,,,,,,,,,,,,8,,,,,,,,4,,27,,63,91
-android.database,59,,39,,,,,,,,,,,,,,,,,,,,,,,59,,,,,,,,,,,,39,
-android.net,,,60,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,45,15
-android.os,,2,122,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,2,,,,41,81
-android.util,6,16,,,,,,,,,,,,6,,,,,,,,,,,,,,,,,,,,,,,16,,
-android.webkit,3,2,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,3,,,,2,,
-android.widget,,1,1,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,1,,,1,
-androidx.core.app,6,,95,,,,,,,,,,,,,,,6,,,,,,,,,,,,,,,,,,,,12,83
-androidx.slice,2,5,88,,,,,,,,,,,,,,,2,,,,,,,,,,,,,,,,,,5,,27,61
-cn.hutool.core.codec,,,1,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,1,
-com.esotericsoftware.kryo.io,,,1,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,1,
-com.esotericsoftware.kryo5.io,,,1,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,1,
-com.fasterxml.jackson.core,,,1,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,1,
-com.fasterxml.jackson.databind,,,6,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,6,
-com.google.common.base,4,,85,,,,,,,,,,,,,,,,,3,1,,,,,,,,,,,,,,,,,62,23
-com.google.common.cache,,,17,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,17
-com.google.common.collect,,,553,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,2,551
-com.google.common.flogger,29,,,,,,,,,,,,,29,,,,,,,,,,,,,,,,,,,,,,,,,
-com.google.common.io,6,,73,,,,,,,,,,,,,,,,,,,,,,,,,6,,,,,,,,,,72,1
-com.hubspot.jinjava,2,,,,,,,,,,,,,,,,,,,,,,,,,,2,,,,,,,,,,,,
-com.mitchellbosecke.pebble,2,,,,,,,,,,,,,,,,,,,,,,,,,,2,,,,,,,,,,,,
-com.opensymphony.xwork2.ognl,3,,,,,,,,,,,,,,,3,,,,,,,,,,,,,,,,,,,,,,,
-com.rabbitmq.client,,21,7,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,21,7,
-com.unboundid.ldap.sdk,17,,,,,,,,,,,,17,,,,,,,,,,,,,,,,,,,,,,,,,,
-com.zaxxer.hikari,2,,,,,,,,,2,,,,,,,,,,,,,,,,,,,,,,,,,,,,,
-flexjson,,,1,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,1
-freemarker.cache,1,,,,,,,,,,,,,,,,,,,,,,,,,,1,,,,,,,,,,,,
-freemarker.template,7,,,,,,,,,,,,,,,,,,,,,,,,,,7,,,,,,,,,,,,
-groovy.lang,26,,,,,26,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,
-groovy.util,5,,,,,5,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,
-jakarta.faces.context,2,7,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,2,,,,7,,
-jakarta.json,,,123,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,100,23
-jakarta.ws.rs.client,1,,,,,,,,,,,,,,,,1,,,,,,,,,,,,,,,,,,,,,,
-jakarta.ws.rs.container,,9,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,9,,
-jakarta.ws.rs.core,2,,149,,,,,,,,,,,,,,,,,,,,,,,,,,2,,,,,,,,,94,55
-java.beans,,,1,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,1,
-java.io,37,,40,,15,,,,,,,,,,,,,,,,,,,,,,,,,22,,,,,,,,40,
-java.lang,13,,66,,,,,,,,,,,8,,,,,4,,,1,,,,,,,,,,,,,,,,54,12
-java.net,10,3,7,,,,,,,,,,,,,,10,,,,,,,,,,,,,,,,,,,,3,7,
-java.nio,15,,14,,13,,,,,,,,,,,,,,,,,,,,,,,,,2,,,,,,,,14,
-java.sql,11,,,,,,,,,4,,,,,,,,,,,,,,,,7,,,,,,,,,,,,,
-java.util,44,,461,,,,,,,,,,,34,,,,,,5,2,,1,2,,,,,,,,,,,,,,36,425
-javax.faces.context,2,7,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,2,,,,7,,
-javax.jms,,9,57,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,9,57,
-javax.json,,,123,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,100,23
-javax.management.remote,2,,,,,,,,,,,2,,,,,,,,,,,,,,,,,,,,,,,,,,,
-javax.naming,7,,,,,,,,,,,6,1,,,,,,,,,,,,,,,,,,,,,,,,,,
-javax.net.ssl,2,,,,,,,,,,,,,,,,,,,,,,,,2,,,,,,,,,,,,,,
-javax.script,1,,,,,,,,,,,,,,1,,,,,,,,,,,,,,,,,,,,,,,,
-javax.servlet,4,21,2,,,,3,1,,,,,,,,,,,,,,,,,,,,,,,,,,,,,21,2,
-javax.validation,1,1,,1,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,1,,
-javax.ws.rs.client,1,,,,,,,,,,,,,,,,1,,,,,,,,,,,,,,,,,,,,,,
-javax.ws.rs.container,,9,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,9,,
-javax.ws.rs.core,3,,149,,,,1,,,,,,,,,,,,,,,,,,,,,,2,,,,,,,,,94,55
-javax.xml.transform,1,,6,,,,,,,,,,,,,,,,,,,,,,,,,,,,,1,,,,,,6,
-javax.xml.xpath,3,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,3,,,,,,,,
-jodd.json,,,10,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,10
-kotlin,12,,1835,,10,,,,,,,,,,,,2,,,,,,,,,,,,,,,,,,,,,1828,7
-net.sf.saxon.s9api,5,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,5,,,,,,,
-ognl,6,,,,,,,,,,,,,,,6,,,,,,,,,,,,,,,,,,,,,,,
-okhttp3,2,,47,,,,,,,,,,,,,,2,,,,,,,,,,,,,,,,,,,,,22,25
-org.apache.commons.codec,,,6,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,6,
-org.apache.commons.collections,,,800,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,17,783
-org.apache.commons.collections4,,,800,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,17,783
-org.apache.commons.io,106,,556,,91,,,,,,,,,,,,15,,,,,,,,,,,,,,,,,,,,,542,14
-org.apache.commons.jexl2,15,,,,,,,,,,15,,,,,,,,,,,,,,,,,,,,,,,,,,,,
-org.apache.commons.jexl3,15,,,,,,,,,,15,,,,,,,,,,,,,,,,,,,,,,,,,,,,
-org.apache.commons.lang3,,,424,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,293,131
-org.apache.commons.logging,6,,,,,,,,,,,,,6,,,,,,,,,,,,,,,,,,,,,,,,,
-org.apache.commons.ognl,6,,,,,,,,,,,,,,,6,,,,,,,,,,,,,,,,,,,,,,,
-org.apache.commons.text,,,272,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,220,52
-org.apache.directory.ldap.client.api,1,,,,,,,,,,,,1,,,,,,,,,,,,,,,,,,,,,,,,,,
-org.apache.hc.core5.function,,,1,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,1,
-org.apache.hc.core5.http,1,2,39,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,1,,,,2,39,
-org.apache.hc.core5.net,,,2,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,2,
-org.apache.hc.core5.util,,,24,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,18,6
-org.apache.http,27,3,70,,,,,,,,,,,,,,25,,,,,,,,,,,,,,,,2,,,,3,62,8
-org.apache.ibatis.jdbc,6,,57,,,,,,,,,,,,,,,,,,,,,,,6,,,,,,,,,,,,57,
-org.apache.log4j,11,,,,,,,,,,,,,11,,,,,,,,,,,,,,,,,,,,,,,,,
-org.apache.logging.log4j,359,,8,,,,,,,,,,,359,,,,,,,,,,,,,,,,,,,,,,,,4,4
-org.apache.shiro.codec,,,1,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,1,
-org.apache.shiro.jndi,1,,,,,,,,,,,1,,,,,,,,,,,,,,,,,,,,,,,,,,,
-org.apache.velocity.app,4,,,,,,,,,,,,,,,,,,,,,,,,,,4,,,,,,,,,,,,
-org.apache.velocity.runtime,4,,,,,,,,,,,,,,,,,,,,,,,,,,4,,,,,,,,,,,,
-org.codehaus.groovy.control,1,,,,,1,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,
-org.dom4j,20,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,20,,,,,,,,
-org.hibernate,7,,,,,,,,,,,,,,,,,,,,,,,,,7,,,,,,,,,,,,,
-org.jboss.logging,324,,,,,,,,,,,,,324,,,,,,,,,,,,,,,,,,,,,,,,,
-org.jdbi.v3.core,6,,,,,,,,,6,,,,,,,,,,,,,,,,,,,,,,,,,,,,,
-org.jooq,1,,,,,,,,,,,,,,,,,,,,,,,,,1,,,,,,,,,,,,,
-org.json,,,236,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,198,38
-org.mvel2,16,,,,,,,,,,,,,,16,,,,,,,,,,,,,,,,,,,,,,,,
-org.scijava.log,13,,,,,,,,,,,,,13,,,,,,,,,,,,,,,,,,,,,,,,,
-org.slf4j,55,,6,,,,,,,,,,,55,,,,,,,,,,,,,,,,,,,,,,,,2,4
-org.springframework.beans,,,30,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,30
-org.springframework.boot.jdbc,1,,,,,,,,,1,,,,,,,,,,,,,,,,,,,,,,,,,,,,,
-org.springframework.cache,,,13,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,13
-org.springframework.context,,,3,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,3,
-org.springframework.data.repository,,,1,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,1
-org.springframework.http,14,,70,,,,,,,,,,,,,,14,,,,,,,,,,,,,,,,,,,,,60,10
-org.springframework.jdbc.core,10,,,,,,,,,,,,,,,,,,,,,,,,,10,,,,,,,,,,,,,
-org.springframework.jdbc.datasource,4,,,,,,,,,4,,,,,,,,,,,,,,,,,,,,,,,,,,,,,
-org.springframework.jdbc.object,9,,,,,,,,,,,,,,,,,,,,,,,,,9,,,,,,,,,,,,,
-org.springframework.jndi,1,,,,,,,,,,,1,,,,,,,,,,,,,,,,,,,,,,,,,,,
-org.springframework.ldap,47,,,,,,,,,,,33,14,,,,,,,,,,,,,,,,,,,,,,,,,,
-org.springframework.security.web.savedrequest,,6,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,6,,
-org.springframework.ui,,,32,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,32
-org.springframework.util,,,139,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,87,52
-org.springframework.validation,,,13,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,13,
-org.springframework.web.client,13,3,,,,,,,,,,,,,,,13,,,,,,,,,,,,,,,,,,,,3,,
-org.springframework.web.context.request,,8,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,8,,
-org.springframework.web.multipart,,12,13,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,12,13,
-org.springframework.web.reactive.function.client,2,,,,,,,,,,,,,,,,2,,,,,,,,,,,,,,,,,,,,,,
-org.springframework.web.util,,,163,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,138,25
-org.thymeleaf,2,,2,,,,,,,,,,,,,,,,,,,,,,,,2,,,,,,,,,,,2,
-org.xml.sax,,,1,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,1,
-org.xmlpull.v1,,3,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,3,,
-play.mvc,,4,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,4,,
-ratpack.core.form,,,3,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,3,
-ratpack.core.handling,,6,4,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,6,4,
-ratpack.core.http,,10,10,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,10,10,
-ratpack.exec,,,48,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,48
-ratpack.form,,,3,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,3,
-ratpack.func,,,35,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,35
-ratpack.handling,,6,4,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,6,4,
-ratpack.http,,10,10,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,10,10,
-ratpack.util,,,35,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,35
-retrofit2,1,,,,,,,,,,,,,,,,1,,,,,,,,,,,,,,,,,,,,,,
+package,sink,source,summary,sink:bean-validation,sink:create-file,sink:groovy,sink:header-splitting,sink:information-leak,sink:intent-start,sink:jdbc-url,sink:jexl,sink:jndi-injection,sink:ldap,sink:logging,sink:mvel,sink:ognl-injection,sink:open-url,sink:pending-intent-sent,sink:regex-use,sink:regex-use[-1],sink:regex-use[0],sink:regex-use[],sink:regex-use[f-1],sink:regex-use[f1],sink:regex-use[f],sink:set-hostname-verifier,sink:sql,sink:ssti,sink:url-open-stream,sink:url-redirect,sink:write-file,sink:xpath,sink:xslt,sink:xss,source:android-external-storage-dir,source:android-widget,source:contentprovider,source:remote,summary:taint,summary:value
+android.app,24,,103,,,,,,7,,,,,,,,,17,,,,,,,,,,,,,,,,,,,,,18,85
+android.content,24,31,154,,,,,,16,,,,,,,,,,,,,,,,,,8,,,,,,,,4,,27,,63,91
+android.database,59,,39,,,,,,,,,,,,,,,,,,,,,,,,59,,,,,,,,,,,,39,
+android.net,,,60,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,45,15
+android.os,,2,122,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,2,,,,41,81
+android.util,6,16,,,,,,,,,,,,6,,,,,,,,,,,,,,,,,,,,,,,,16,,
+android.webkit,3,2,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,3,,,,2,,
+android.widget,,1,1,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,1,,,1,
+androidx.core.app,6,,95,,,,,,,,,,,,,,,6,,,,,,,,,,,,,,,,,,,,,12,83
+androidx.slice,2,5,88,,,,,,,,,,,,,,,2,,,,,,,,,,,,,,,,,,,5,,27,61
+cn.hutool.core.codec,,,1,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,1,
+com.esotericsoftware.kryo.io,,,1,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,1,
+com.esotericsoftware.kryo5.io,,,1,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,1,
+com.fasterxml.jackson.core,,,1,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,1,
+com.fasterxml.jackson.databind,,,6,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,6,
+com.google.common.base,4,,85,,,,,,,,,,,,,,,,,,3,1,,,,,,,,,,,,,,,,,62,23
+com.google.common.cache,,,17,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,17
+com.google.common.collect,,,553,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,2,551
+com.google.common.flogger,29,,,,,,,,,,,,,29,,,,,,,,,,,,,,,,,,,,,,,,,,
+com.google.common.io,6,,73,,,,,,,,,,,,,,,,,,,,,,,,,,6,,,,,,,,,,72,1
+com.hubspot.jinjava,2,,,,,,,,,,,,,,,,,,,,,,,,,,,2,,,,,,,,,,,,
+com.mitchellbosecke.pebble,2,,,,,,,,,,,,,,,,,,,,,,,,,,,2,,,,,,,,,,,,
+com.opensymphony.xwork2.ognl,3,,,,,,,,,,,,,,,3,,,,,,,,,,,,,,,,,,,,,,,,
+com.rabbitmq.client,,21,7,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,21,7,
+com.unboundid.ldap.sdk,17,,,,,,,,,,,,17,,,,,,,,,,,,,,,,,,,,,,,,,,,
+com.zaxxer.hikari,2,,,,,,,,,2,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,
+flexjson,,,1,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,1
+freemarker.cache,1,,,,,,,,,,,,,,,,,,,,,,,,,,,1,,,,,,,,,,,,
+freemarker.template,7,,,,,,,,,,,,,,,,,,,,,,,,,,,7,,,,,,,,,,,,
+groovy.lang,26,,,,,26,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,
+groovy.util,5,,,,,5,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,
+jakarta.faces.context,2,7,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,2,,,,7,,
+jakarta.json,,,123,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,100,23
+jakarta.ws.rs.client,1,,,,,,,,,,,,,,,,1,,,,,,,,,,,,,,,,,,,,,,,
+jakarta.ws.rs.container,,9,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,9,,
+jakarta.ws.rs.core,2,,149,,,,,,,,,,,,,,,,,,,,,,,,,,,2,,,,,,,,,94,55
+java.beans,,,1,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,1,
+java.io,37,,40,,15,,,,,,,,,,,,,,,,,,,,,,,,,,22,,,,,,,,40,
+java.lang,13,,66,,,,,,,,,,,8,,,,,,4,,,1,,,,,,,,,,,,,,,,54,12
+java.net,10,3,7,,,,,,,,,,,,,,10,,,,,,,,,,,,,,,,,,,,,3,7,
+java.nio,15,,16,,13,,,,,,,,,,,,,,,,,,,,,,,,,,2,,,,,,,,16,
+java.sql,11,,,,,,,,,4,,,,,,,,,,,,,,,,,7,,,,,,,,,,,,,
+java.util,44,,461,,,,,,,,,,,34,,,,,,,5,2,,1,2,,,,,,,,,,,,,,36,425
+javax.faces.context,2,7,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,2,,,,7,,
+javax.jms,,9,57,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,9,57,
+javax.json,,,123,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,100,23
+javax.management.remote,2,,,,,,,,,,,2,,,,,,,,,,,,,,,,,,,,,,,,,,,,
+javax.naming,7,,,,,,,,,,,6,1,,,,,,,,,,,,,,,,,,,,,,,,,,,
+javax.net.ssl,2,,,,,,,,,,,,,,,,,,,,,,,,,2,,,,,,,,,,,,,,
+javax.script,1,,,,,,,,,,,,,,1,,,,,,,,,,,,,,,,,,,,,,,,,
+javax.servlet,4,21,2,,,,3,1,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,21,2,
+javax.validation,1,1,,1,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,1,,
+javax.ws.rs.client,1,,,,,,,,,,,,,,,,1,,,,,,,,,,,,,,,,,,,,,,,
+javax.ws.rs.container,,9,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,9,,
+javax.ws.rs.core,3,,149,,,,1,,,,,,,,,,,,,,,,,,,,,,,2,,,,,,,,,94,55
+javax.xml.transform,1,,6,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,1,,,,,,6,
+javax.xml.xpath,3,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,3,,,,,,,,
+jodd.json,,,10,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,10
+kotlin,12,,1835,,10,,,,,,,,,,,,2,,,,,,,,,,,,,,,,,,,,,,1828,7
+net.sf.saxon.s9api,5,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,5,,,,,,,
+ognl,6,,,,,,,,,,,,,,,6,,,,,,,,,,,,,,,,,,,,,,,,
+okhttp3,2,,47,,,,,,,,,,,,,,2,,,,,,,,,,,,,,,,,,,,,,22,25
+org.apache.commons.codec,,,6,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,6,
+org.apache.commons.collections,,,800,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,17,783
+org.apache.commons.collections4,,,800,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,17,783
+org.apache.commons.io,106,,556,,91,,,,,,,,,,,,15,,,,,,,,,,,,,,,,,,,,,,542,14
+org.apache.commons.jexl2,15,,,,,,,,,,15,,,,,,,,,,,,,,,,,,,,,,,,,,,,,
+org.apache.commons.jexl3,15,,,,,,,,,,15,,,,,,,,,,,,,,,,,,,,,,,,,,,,,
+org.apache.commons.lang3,6,,424,,,,,,,,,,,,,,,,6,,,,,,,,,,,,,,,,,,,,293,131
+org.apache.commons.logging,6,,,,,,,,,,,,,6,,,,,,,,,,,,,,,,,,,,,,,,,,
+org.apache.commons.ognl,6,,,,,,,,,,,,,,,6,,,,,,,,,,,,,,,,,,,,,,,,
+org.apache.commons.text,,,272,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,220,52
+org.apache.directory.ldap.client.api,1,,,,,,,,,,,,1,,,,,,,,,,,,,,,,,,,,,,,,,,,
+org.apache.hc.core5.function,,,1,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,1,
+org.apache.hc.core5.http,1,2,39,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,1,,,,2,39,
+org.apache.hc.core5.net,,,2,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,2,
+org.apache.hc.core5.util,,,24,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,18,6
+org.apache.http,27,3,70,,,,,,,,,,,,,,25,,,,,,,,,,,,,,,,,2,,,,3,62,8
+org.apache.ibatis.jdbc,6,,57,,,,,,,,,,,,,,,,,,,,,,,,6,,,,,,,,,,,,57,
+org.apache.log4j,11,,,,,,,,,,,,,11,,,,,,,,,,,,,,,,,,,,,,,,,,
+org.apache.logging.log4j,359,,8,,,,,,,,,,,359,,,,,,,,,,,,,,,,,,,,,,,,,4,4
+org.apache.shiro.codec,,,1,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,1,
+org.apache.shiro.jndi,1,,,,,,,,,,,1,,,,,,,,,,,,,,,,,,,,,,,,,,,,
+org.apache.velocity.app,4,,,,,,,,,,,,,,,,,,,,,,,,,,,4,,,,,,,,,,,,
+org.apache.velocity.runtime,4,,,,,,,,,,,,,,,,,,,,,,,,,,,4,,,,,,,,,,,,
+org.codehaus.groovy.control,1,,,,,1,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,
+org.dom4j,20,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,20,,,,,,,,
+org.hibernate,7,,,,,,,,,,,,,,,,,,,,,,,,,,7,,,,,,,,,,,,,
+org.jboss.logging,324,,,,,,,,,,,,,324,,,,,,,,,,,,,,,,,,,,,,,,,,
+org.jdbi.v3.core,6,,,,,,,,,6,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,
+org.jooq,1,,,,,,,,,,,,,,,,,,,,,,,,,,1,,,,,,,,,,,,,
+org.json,,,236,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,198,38
+org.mvel2,16,,,,,,,,,,,,,,16,,,,,,,,,,,,,,,,,,,,,,,,,
+org.scijava.log,13,,,,,,,,,,,,,13,,,,,,,,,,,,,,,,,,,,,,,,,,
+org.slf4j,55,,6,,,,,,,,,,,55,,,,,,,,,,,,,,,,,,,,,,,,,2,4
+org.springframework.beans,,,30,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,30
+org.springframework.boot.jdbc,1,,,,,,,,,1,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,
+org.springframework.cache,,,13,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,13
+org.springframework.context,,,3,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,3,
+org.springframework.data.repository,,,1,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,1
+org.springframework.http,14,,70,,,,,,,,,,,,,,14,,,,,,,,,,,,,,,,,,,,,,60,10
+org.springframework.jdbc.core,10,,,,,,,,,,,,,,,,,,,,,,,,,,10,,,,,,,,,,,,,
+org.springframework.jdbc.datasource,4,,,,,,,,,4,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,
+org.springframework.jdbc.object,9,,,,,,,,,,,,,,,,,,,,,,,,,,9,,,,,,,,,,,,,
+org.springframework.jndi,1,,,,,,,,,,,1,,,,,,,,,,,,,,,,,,,,,,,,,,,,
+org.springframework.ldap,47,,,,,,,,,,,33,14,,,,,,,,,,,,,,,,,,,,,,,,,,,
+org.springframework.security.web.savedrequest,,6,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,6,,
+org.springframework.ui,,,32,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,32
+org.springframework.util,,,139,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,87,52
+org.springframework.validation,,,13,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,13,
+org.springframework.web.client,13,3,,,,,,,,,,,,,,,13,,,,,,,,,,,,,,,,,,,,,3,,
+org.springframework.web.context.request,,8,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,8,,
+org.springframework.web.multipart,,12,13,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,12,13,
+org.springframework.web.reactive.function.client,2,,,,,,,,,,,,,,,,2,,,,,,,,,,,,,,,,,,,,,,,
+org.springframework.web.util,,,163,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,138,25
+org.thymeleaf,2,,2,,,,,,,,,,,,,,,,,,,,,,,,,2,,,,,,,,,,,2,
+org.xml.sax,,,1,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,1,
+org.xmlpull.v1,,3,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,3,,
+play.mvc,,4,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,4,,
+ratpack.core.form,,,3,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,3,
+ratpack.core.handling,,6,4,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,6,4,
+ratpack.core.http,,10,10,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,10,10,
+ratpack.exec,,,48,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,48
+ratpack.form,,,3,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,3,
+ratpack.func,,,35,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,35
+ratpack.handling,,6,4,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,6,4,
+ratpack.http,,10,10,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,10,10,
+ratpack.util,,,35,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,35
+retrofit2,1,,,,,,,,,,,,,,,,1,,,,,,,,,,,,,,,,,,,,,,,
diff --git a/java/documentation/library-coverage/coverage.rst b/java/documentation/library-coverage/coverage.rst
index 46da8bda328..703932814c1 100644
--- a/java/documentation/library-coverage/coverage.rst
+++ b/java/documentation/library-coverage/coverage.rst
@@ -11,17 +11,17 @@ Java framework & library support
    Android extensions,``androidx.*``,5,183,8,,,,,,,
    `Apache Commons Collections <https://commons.apache.org/proper/commons-collections/>`_,"``org.apache.commons.collections``, ``org.apache.commons.collections4``",,1600,,,,,,,,
    `Apache Commons IO <https://commons.apache.org/proper/commons-io/>`_,``org.apache.commons.io``,,556,106,91,,,,,,15
-   `Apache Commons Lang <https://commons.apache.org/proper/commons-lang/>`_,``org.apache.commons.lang3``,,424,,,,,,,,
+   `Apache Commons Lang <https://commons.apache.org/proper/commons-lang/>`_,``org.apache.commons.lang3``,,424,6,,,,,,,
    `Apache Commons Text <https://commons.apache.org/proper/commons-text/>`_,``org.apache.commons.text``,,272,,,,,,,,
    `Apache HttpComponents <https://hc.apache.org/>`_,"``org.apache.hc.core5.*``, ``org.apache.http``",5,136,28,,,3,,,,25
    `Apache Log4j 2 <https://logging.apache.org/log4j/2.0/>`_,``org.apache.logging.log4j``,,8,359,,,,,,,
    `Google Guava <https://guava.dev/>`_,``com.google.common.*``,,728,39,,6,,,,,
    JBoss Logging,``org.jboss.logging``,,,324,,,,,,,
    `JSON-java <https://github.com/stleary/JSON-java>`_,``org.json``,,236,,,,,,,,
-   Java Standard Library,``java.*``,3,589,130,28,,,7,,,10
+   Java Standard Library,``java.*``,3,591,130,28,,,7,,,10
    Java extensions,"``javax.*``, ``jakarta.*``",63,609,32,,,4,,1,1,2
    Kotlin Standard Library,``kotlin*``,,1835,12,10,,,,,,2
    `Spring <https://spring.io/>`_,``org.springframework.*``,29,477,101,,,,19,14,,29
    Others,"``cn.hutool.core.codec``, ``com.esotericsoftware.kryo.io``, ``com.esotericsoftware.kryo5.io``, ``com.fasterxml.jackson.core``, ``com.fasterxml.jackson.databind``, ``com.hubspot.jinjava``, ``com.mitchellbosecke.pebble``, ``com.opensymphony.xwork2.ognl``, ``com.rabbitmq.client``, ``com.unboundid.ldap.sdk``, ``com.zaxxer.hikari``, ``flexjson``, ``freemarker.cache``, ``freemarker.template``, ``groovy.lang``, ``groovy.util``, ``jodd.json``, ``net.sf.saxon.s9api``, ``ognl``, ``okhttp3``, ``org.apache.commons.codec``, ``org.apache.commons.jexl2``, ``org.apache.commons.jexl3``, ``org.apache.commons.logging``, ``org.apache.commons.ognl``, ``org.apache.directory.ldap.client.api``, ``org.apache.ibatis.jdbc``, ``org.apache.log4j``, ``org.apache.shiro.codec``, ``org.apache.shiro.jndi``, ``org.apache.velocity.app``, ``org.apache.velocity.runtime``, ``org.codehaus.groovy.control``, ``org.dom4j``, ``org.hibernate``, ``org.jdbi.v3.core``, ``org.jooq``, ``org.mvel2``, ``org.scijava.log``, ``org.slf4j``, ``org.thymeleaf``, ``org.xml.sax``, ``org.xmlpull.v1``, ``play.mvc``, ``ratpack.core.form``, ``ratpack.core.handling``, ``ratpack.core.http``, ``ratpack.exec``, ``ratpack.form``, ``ratpack.func``, ``ratpack.handling``, ``ratpack.http``, ``ratpack.util``, ``retrofit2``",60,300,269,,,,14,18,,3
-   Totals,,217,8432,1524,129,6,10,107,33,1,86
+   Totals,,217,8434,1530,129,6,10,107,33,1,86
 

From 313767539ad633e164e13c78d42137ecda54cf72 Mon Sep 17 00:00:00 2001
From: Tom Hvitved <hvitved@github.com>
Date: Fri, 18 Nov 2022 15:59:06 +0100
Subject: [PATCH 0532/1420] C#: Add workflow for running QL tests

---
 .github/workflows/csharp-qltest.yml           | 72 +++++++++++++++++++
 .gitignore                                    |  2 -
 csharp/.gitignore                             |  5 +-
 .../actions/create-extractor-pack/action.yml  | 13 ++++
 .../controlflow/internal/Completion.qll       |  1 -
 csharp/scripts/create-extractor-pack.sh       | 27 +++++++
 6 files changed, 116 insertions(+), 4 deletions(-)
 create mode 100644 .github/workflows/csharp-qltest.yml
 create mode 100644 csharp/actions/create-extractor-pack/action.yml
 create mode 100755 csharp/scripts/create-extractor-pack.sh

diff --git a/.github/workflows/csharp-qltest.yml b/.github/workflows/csharp-qltest.yml
new file mode 100644
index 00000000000..78b0ef6a87b
--- /dev/null
+++ b/.github/workflows/csharp-qltest.yml
@@ -0,0 +1,72 @@
+name: "C#: Run QL Tests"
+
+on:
+  push:
+    paths:
+      - "csharp/**"
+      - "shared/**"
+      - .github/actions/fetch-codeql/action.yml
+      - codeql-workspace.yml
+    branches:
+      - main
+      - "rc/*"
+  pull_request:
+    paths:
+      - "csharp/**"
+      - "shared/**"
+      - .github/workflows/csharp-qltest.yml
+      - .github/actions/fetch-codeql/action.yml
+      - codeql-workspace.yml
+    branches:
+      - main
+      - "rc/*"
+
+defaults:
+  run:
+    working-directory: csharp
+
+jobs:
+  qlupgrade:
+    runs-on: ubuntu-latest
+    steps:
+      - uses: actions/checkout@v3
+      - uses: ./.github/actions/fetch-codeql
+      - name: Check DB upgrade scripts
+        run: |
+          echo >empty.trap
+          codeql dataset import -S ql/lib/upgrades/initial/semmlecode.csharp.dbscheme testdb empty.trap
+          codeql dataset upgrade testdb --additional-packs ql/lib
+          diff -q testdb/semmlecode.csharp.dbscheme ql/lib/semmlecode.csharp.dbscheme
+      - name: Check DB downgrade scripts
+        run: |
+          echo >empty.trap
+          rm -rf testdb; codeql dataset import -S ql/lib/semmlecode.csharp.dbscheme testdb empty.trap
+          codeql resolve upgrades --format=lines --allow-downgrades --additional-packs downgrades \
+           --dbscheme=ql/lib/semmlecode.csharp.dbscheme --target-dbscheme=downgrades/initial/semmlecode.csharp.dbscheme |
+           xargs codeql execute upgrades testdb
+          diff -q testdb/semmlecode.csharp.dbscheme downgrades/initial/semmlecode.csharp.dbscheme
+  qltest:
+    runs-on: ubuntu-latest-xl
+    strategy:
+      fail-fast: false
+      matrix:
+        slice: ["1/2", "2/2"]
+    steps:
+      - uses: actions/checkout@v3
+      - uses: ./.github/actions/fetch-codeql
+      - uses: ./csharp/actions/create-extractor-pack
+      - name: Cache compilation cache
+        id: query-cache
+        uses: ./.github/actions/cache-query-compilation
+        with:
+          key: csharp-qltest-${{ matrix.slice }}
+      - name: Run QL tests
+        run: |
+          CODEQL_PATH=$(gh codeql version --format=json | jq -r .unpackedLocation)
+          # The legacy ASP extractor is not in this repo, so take the one from the nightly build
+          mv "$CODEQL_PATH/csharp/tools/extractor-asp.jar" "${{ github.workspace }}/csharp/extractor-pack/tools"
+          # Safe guard against using the bundled extractor
+          rm -rf "$CODEQL_PATH/csharp"
+          codeql test run --threads=0 --ram 52000 --slice ${{ matrix.slice }} --search-path "${{ github.workspace }}/csharp/extractor-pack" --check-databases --check-undefined-labels --check-repeated-labels --check-redefined-labels --consistency-queries ql/consistency-queries ql/test --compilation-cache "${{ steps.query-cache.outputs.cache-dir }}"
+        env:
+          GITHUB_TOKEN: ${{ github.token }}
diff --git a/.gitignore b/.gitignore
index 7b8532b00d2..c81e23fc7f8 100644
--- a/.gitignore
+++ b/.gitignore
@@ -27,8 +27,6 @@
 # It's useful (though not required) to be able to unpack codeql in the ql checkout itself
 /codeql/
 
-csharp/extractor/Semmle.Extraction.CSharp.Driver/Properties/launchSettings.json
-
 # Avoid committing cached package components
 .codeql
 
diff --git a/csharp/.gitignore b/csharp/.gitignore
index 0701c11fe1d..a030c9444fe 100644
--- a/csharp/.gitignore
+++ b/csharp/.gitignore
@@ -11,4 +11,7 @@ csharp.log
 *.tlog
 .vs
 *.user
-.vscode/launch.json
\ No newline at end of file
+.vscode/launch.json
+
+extractor/Semmle.Extraction.CSharp.Driver/Properties/launchSettings.json
+extractor-pack
\ No newline at end of file
diff --git a/csharp/actions/create-extractor-pack/action.yml b/csharp/actions/create-extractor-pack/action.yml
new file mode 100644
index 00000000000..43b0ec9c6fe
--- /dev/null
+++ b/csharp/actions/create-extractor-pack/action.yml
@@ -0,0 +1,13 @@
+name: Build C# CodeQL pack
+description: Builds the C# CodeQL pack
+runs:
+  using: composite
+  steps:
+    - name: Setup dotnet
+      uses: actions/setup-dotnet@v3
+      with:
+        dotnet-version: 6.0.202
+    - name: Build Extractor
+      shell: bash
+      run: scripts/create-extractor-pack.sh
+      working-directory: csharp
diff --git a/csharp/ql/lib/semmle/code/csharp/controlflow/internal/Completion.qll b/csharp/ql/lib/semmle/code/csharp/controlflow/internal/Completion.qll
index bda14e0b4ae..4003e8cfac2 100644
--- a/csharp/ql/lib/semmle/code/csharp/controlflow/internal/Completion.qll
+++ b/csharp/ql/lib/semmle/code/csharp/controlflow/internal/Completion.qll
@@ -103,7 +103,6 @@ abstract class Completion extends TCompletion {
    * otherwise it is a normal non-Boolean completion.
    */
   predicate isValidFor(ControlFlowElement cfe) {
-    cfe instanceof NonReturningCall and
     this = cfe.(NonReturningCall).getACompletion()
     or
     this = TThrowCompletion(cfe.(TriedControlFlowElement).getAThrownException())
diff --git a/csharp/scripts/create-extractor-pack.sh b/csharp/scripts/create-extractor-pack.sh
new file mode 100755
index 00000000000..dbbe8219a02
--- /dev/null
+++ b/csharp/scripts/create-extractor-pack.sh
@@ -0,0 +1,27 @@
+#!/bin/bash
+set -eux
+
+if [[ "$OSTYPE" == "linux-gnu"* ]]; then
+  platform="linux64"
+  dotnet_platform="linux-x64"
+elif [[ "$OSTYPE" == "darwin"* ]]; then
+  platform="osx64"
+  dotnet_platform="osx-x64"
+else
+  echo "Unknown OS"
+  exit 1
+fi
+
+rm -rf extractor-pack
+mkdir -p extractor-pack
+mkdir -p extractor-pack/tools/${platform}
+
+function dotnet_publish {
+  dotnet publish --self-contained --configuration Release --runtime ${dotnet_platform} -p:RuntimeFrameworkVersion=6.0.4 $1 --output extractor-pack/tools/${platform}
+}
+
+dotnet_publish extractor/Semmle.Extraction.CSharp.Standalone
+dotnet_publish extractor/Semmle.Extraction.CSharp.Driver
+dotnet_publish autobuilder/Semmle.Autobuild.CSharp
+
+cp -r codeql-extractor.yml tools/* downgrades tools ql/lib/semmlecode.csharp.dbscheme ql/lib/semmlecode.csharp.dbscheme.stats extractor-pack/

From 10c602d9fbd3183079b81decbaf83807d6f3e7ff Mon Sep 17 00:00:00 2001
From: erik-krogh <erik-krogh@github.com>
Date: Tue, 22 Nov 2022 10:19:50 +0100
Subject: [PATCH 0533/1420] CI: use read-only-cache when running on a PR

---
 .github/actions/cache-query-compilation/action.yml | 5 +++--
 1 file changed, 3 insertions(+), 2 deletions(-)

diff --git a/.github/actions/cache-query-compilation/action.yml b/.github/actions/cache-query-compilation/action.yml
index c071aa204d9..9f7569e5f0c 100644
--- a/.github/actions/cache-query-compilation/action.yml
+++ b/.github/actions/cache-query-compilation/action.yml
@@ -26,9 +26,10 @@ runs:
         echo "merge_base=$MERGE_BASE" >> $GITHUB_ENV
     - name: Read CodeQL query compilation - PR
       if: ${{ github.event_name == 'pull_request' }}
-      uses: actions/cache@v3
+      uses: erik-krogh/actions-cache@a88d0603fe5fb5606db9f002dfcadeb32b5f84c6
       with:
         path: '**/.cache'
+        read-only: true
         key: codeql-compile-${{ inputs.key }}-pr-${{ github.sha }} # deliberately not using the `compile-compile-main` keys here.
         restore-keys: |
           codeql-compile-${{ inputs.key }}-${{ github.base_ref }}-${{ env.merge_base }}
@@ -36,7 +37,7 @@ runs:
           codeql-compile-${{ inputs.key }}-main-
     - name: Fill CodeQL query compilation cache - main
       if: ${{ github.event_name != 'pull_request' }}
-      uses: actions/cache@v3
+      uses: erik-krogh/actions-cache@a88d0603fe5fb5606db9f002dfcadeb32b5f84c6
       with:
         path: '**/.cache'
         key: codeql-compile-${{ inputs.key }}-${{ github.ref_name }}-${{ github.sha }} # just fill on main

From 414f18fc974088c4d587e0cf7a62d8d8801ee656 Mon Sep 17 00:00:00 2001
From: Paolo Tranquilli <redsun82@github.com>
Date: Tue, 22 Nov 2022 10:44:47 +0100
Subject: [PATCH 0534/1420] Swift: fix extractor tests pack

This allows `codeql query compile` to run on integration test queries.
---
 codeql-workspace.yml               | 1 +
 swift/integration-tests/qlpack.yml | 5 +++--
 2 files changed, 4 insertions(+), 2 deletions(-)

diff --git a/codeql-workspace.yml b/codeql-workspace.yml
index f93ed4ac5c8..1e1691df082 100644
--- a/codeql-workspace.yml
+++ b/codeql-workspace.yml
@@ -25,6 +25,7 @@ provide:
   - "misc/suite-helpers/qlpack.yml"
   - "ruby/extractor-pack/codeql-extractor.yml"
   - "swift/extractor-pack/codeql-extractor.yml"
+  - "swift/integration-tests/qlpack.yml"
   - "ql/extractor-pack/codeql-extractor.ym"
 
 versionPolicies:
diff --git a/swift/integration-tests/qlpack.yml b/swift/integration-tests/qlpack.yml
index f5b65c68822..c0030d14bdf 100644
--- a/swift/integration-tests/qlpack.yml
+++ b/swift/integration-tests/qlpack.yml
@@ -1,5 +1,6 @@
 name: integration-tests-swift
 version: 0.0.0
-extractor: swift
 dependencies:
-  codeql/swift-all: '*'
+  codeql/swift-all: ${workspace}
+tests: .
+extractor: swift

From d876acde4c4b9fbd3e47e24593264d4b1aa4707c Mon Sep 17 00:00:00 2001
From: Rasmus Wriedt Larsen <rasmuswl@github.com>
Date: Tue, 22 Nov 2022 11:01:26 +0100
Subject: [PATCH 0535/1420] Python: Fix SINK/SINK_F usage for crosstalk tests

As discussed in PR review
https://github.com/github/codeql/pull/11208#discussion_r1022473421
---
 .../dataflow/TestUtil/NormalDataflowTest.qll  |  3 ++-
 .../experimental/dataflow/fieldflow/test.py   | 25 ++++++++++++++-----
 .../test/experimental/dataflow/testConfig.qll |  7 +++---
 3 files changed, 25 insertions(+), 10 deletions(-)

diff --git a/python/ql/test/experimental/dataflow/TestUtil/NormalDataflowTest.qll b/python/ql/test/experimental/dataflow/TestUtil/NormalDataflowTest.qll
index b0f0009b30d..f526a1f43ae 100644
--- a/python/ql/test/experimental/dataflow/TestUtil/NormalDataflowTest.qll
+++ b/python/ql/test/experimental/dataflow/TestUtil/NormalDataflowTest.qll
@@ -16,8 +16,9 @@ class DataFlowTest extends FlowTest {
 query predicate missingAnnotationOnSink(Location location, string error, string element) {
   error = "ERROR, you should add `# $ MISSING: flow` annotation" and
   exists(DataFlow::Node sink |
+    any(TestConfiguration config).isSink(sink) and
+    // note: we only care about `SINK` and not `SINK_F`, so we have to reconstruct manually.
     exists(DataFlow::CallCfgNode call |
-      // note: we only care about `SINK` and not `SINK_F`, so we have to reconstruct manually.
       call.getFunction().asCfgNode().(NameNode).getId() = "SINK" and
       (sink = call.getArg(_) or sink = call.getArgByName(_))
     ) and
diff --git a/python/ql/test/experimental/dataflow/fieldflow/test.py b/python/ql/test/experimental/dataflow/fieldflow/test.py
index f5b20daff96..d9cb0280c73 100644
--- a/python/ql/test/experimental/dataflow/fieldflow/test.py
+++ b/python/ql/test/experimental/dataflow/fieldflow/test.py
@@ -13,7 +13,17 @@ def is_source(x):
     return x == "source" or x == b"source" or x == 42 or x == 42.0 or x == 42j
 
 
-def SINK(x):
+def SINK(x, *, not_present_at_runtime=False):
+    # not_present_at_runtime supports use-cases where we want flow from data-flow layer
+    # (so we want to use SINK), but we end up in a siaution where it's not possible to
+    # actually get flow from a source at runtime. The only use-case is for the
+    # cross-talk tests, where our ability to use if-then-else is limited because doing
+    # so would make cfg-splitting kick in, and that would solve the problem trivially
+    # (by the splitting).
+    if not_present_at_runtime:
+        print("OK")
+        return
+
     if is_source(x):
         print("OK")
     else:
@@ -186,6 +196,9 @@ def test_nested_obj_method():
 # ------------------------------------------------------------------------------
 # Crosstalk test -- using different function based on conditional
 # ------------------------------------------------------------------------------
+# NOTE: These tests use `SINK(objy.y, not_present_at_runtime=True)` since it's not
+# possible to use if-then-else statements, since that would make cfg-splitting kick in,
+# and that would solve the problem trivially (by the splitting).
 
 class CrosstalkTestX:
     def __init__(self):
@@ -229,7 +242,7 @@ def test_no_crosstalk_reference(cond=True):
     SINK(objx.x) # $ flow="SOURCE, l:-4 -> objx.x"
     SINK_F(objx.y)
     SINK_F(objy.x)
-    SINK_F(objy.y) # $ flow="SOURCE, l:-5 -> objy.y"
+    SINK(objy.y, not_present_at_runtime=True) # $ flow="SOURCE, l:-5 -> objy.y"
 
 
 @expects(8) # $ unresolved_call=expects(..) unresolved_call=expects(..)(..)
@@ -252,7 +265,7 @@ def test_potential_crosstalk_different_name(cond=True):
     SINK(objx.x) # $ MISSING: flow="SOURCE, l:-2 -> objx.x"
     SINK_F(objx.y)
     SINK_F(objy.x)
-    SINK_F(objy.y) # $ MISSING: flow="SOURCE, l:-5 -> objy.y"
+    SINK(objy.y, not_present_at_runtime=True) # $ MISSING: flow="SOURCE, l:-5 -> objy.y"
 
 
 @expects(8) # $ unresolved_call=expects(..) unresolved_call=expects(..)(..)
@@ -275,7 +288,7 @@ def test_potential_crosstalk_same_name(cond=True):
     SINK(objx.x) # $ MISSING: flow="SOURCE, l:-2 -> objx.x"
     SINK_F(objx.y)
     SINK_F(objy.x)
-    SINK_F(objy.y) # $ MISSING: flow="SOURCE, l:-5 -> objy.y"
+    SINK(objy.y, not_present_at_runtime=True) # $ MISSING: flow="SOURCE, l:-5 -> objy.y"
 
 
 @expects(10) # $ unresolved_call=expects(..) unresolved_call=expects(..)(..)
@@ -298,10 +311,10 @@ def test_potential_crosstalk_same_name_object_reference(cond=True):
     SINK(objx.x) # $ MISSING: flow="SOURCE, l:-2 -> objx.x"
     SINK_F(objx.y)
     SINK_F(objy.x)
-    SINK_F(objy.y) # $ MISSING: flow="SOURCE, l:-5 -> objy.y"
+    SINK(objy.y, not_present_at_runtime=True) # $ MISSING: flow="SOURCE, l:-5 -> objy.y"
 
     SINK(obj.x) # $ flow="SOURCE, l:-7 -> obj.x"
-    SINK_F(obj.y) # $ flow="SOURCE, l:-8 -> obj.y"
+    SINK(obj.y, not_present_at_runtime=True) # $ flow="SOURCE, l:-8 -> obj.y"
 
 
 # ------------------------------------------------------------------------------
diff --git a/python/ql/test/experimental/dataflow/testConfig.qll b/python/ql/test/experimental/dataflow/testConfig.qll
index 03815e2f7f9..addbeefeebf 100644
--- a/python/ql/test/experimental/dataflow/testConfig.qll
+++ b/python/ql/test/experimental/dataflow/testConfig.qll
@@ -38,9 +38,10 @@ class TestConfiguration extends DataFlow::Configuration {
   }
 
   override predicate isSink(DataFlow::Node node) {
-    exists(CallNode call |
-      call.getFunction().(NameNode).getId() in ["SINK", "SINK_F"] and
-      node.(DataFlow::CfgNode).getNode() = call.getAnArg()
+    exists(DataFlow::CallCfgNode call |
+      call.getFunction().asCfgNode().(NameNode).getId() in ["SINK", "SINK_F"] and
+      (node = call.getArg(_) or node = call.getArgByName(_)) and
+      not node = call.getArgByName("not_present_at_runtime")
     )
   }
 

From 84faf49bf0d63f19dc43619ef2ccfaa1ef3f8be2 Mon Sep 17 00:00:00 2001
From: Rasmus Wriedt Larsen <rasmuswl@github.com>
Date: Tue, 20 Sep 2022 14:28:44 +0200
Subject: [PATCH 0536/1420] Python: Add tests for compound arguments field flow

---
 .../experimental/dataflow/fieldflow/test.py   | 33 +++++++++++++++++++
 1 file changed, 33 insertions(+)

diff --git a/python/ql/test/experimental/dataflow/fieldflow/test.py b/python/ql/test/experimental/dataflow/fieldflow/test.py
index d9cb0280c73..100ab6aac70 100644
--- a/python/ql/test/experimental/dataflow/fieldflow/test.py
+++ b/python/ql/test/experimental/dataflow/fieldflow/test.py
@@ -193,6 +193,39 @@ def test_nested_obj_method():
     SINK(a.obj.foo) # $ flow="SOURCE, l:-3 -> a.obj.foo"
 
 
+# ------------------------------------------------------------------------------
+# Field access on compound arguments
+# ------------------------------------------------------------------------------
+
+# TODO: Add support for this, see https://github.com/github/codeql/pull/10444
+
+@expects(5) # $ unresolved_call=expects(..) unresolved_call=expects(..)(..)
+def test_field_on_compound_arg(cond_true=True, cond_false=False):
+    class Ex:
+        def __init__(self):
+            self.attr = None
+
+    def set_attr(obj):
+        obj.attr = SOURCE
+
+    x = Ex()
+    y = Ex()
+    set_attr(x if cond_true else y)
+    SINK(x.attr) # $ MISSING: flow
+
+    x = Ex()
+    y = Ex()
+    set_attr(x if cond_false else y)
+    SINK(y.attr) # $ MISSING: flow
+
+    x = Ex()
+    y = Ex()
+    z = Ex()
+    set_attr(x if cond_false else (y if cond_true else z))
+    SINK_F(x.attr) # $ MISSING: flow
+    SINK(y.attr) # $ MISSING: flow
+    SINK_F(z.attr) # $ MISSING: flow
+
 # ------------------------------------------------------------------------------
 # Crosstalk test -- using different function based on conditional
 # ------------------------------------------------------------------------------

From ce2ba21240e6690b3819178c8eccead8e12941b4 Mon Sep 17 00:00:00 2001
From: ka1n4t <574702476@qq.com>
Date: Tue, 22 Nov 2022 18:32:14 +0800
Subject: [PATCH 0537/1420] Add binding between annotation and sink-param

---
 .../src/experimental/Security/CWE/CWE-089/MyBatisCommonLib.qll | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/java/ql/src/experimental/Security/CWE/CWE-089/MyBatisCommonLib.qll b/java/ql/src/experimental/Security/CWE/CWE-089/MyBatisCommonLib.qll
index 3351af22a25..8399efcc229 100644
--- a/java/ql/src/experimental/Security/CWE/CWE-089/MyBatisCommonLib.qll
+++ b/java/ql/src/experimental/Security/CWE/CWE-089/MyBatisCommonLib.qll
@@ -134,7 +134,8 @@ predicate isMybatisXmlOrAnnotationSqlInjection(
           .matches("${" + annotation.getValue("value").(CompileTimeConstantExpr).getStringValue() +
               "%}") and
       annotation.getType() instanceof TypeParam and
-      ma.getAnArgument() = node.asExpr()
+      ma.getAnArgument() = node.asExpr() and
+      annotation.getTarget() = ma.getMethod().getParameter(node.asExpr().getIndex())
     )
     or
     // MyBatis default parameter sql injection vulnerabilities.the default parameter form of the method is arg[0...n] or param[1...n].

From 43f4dd8bc4db753aac52fc945832b6787494d608 Mon Sep 17 00:00:00 2001
From: Tony Torralba <atorralba@users.noreply.github.com>
Date: Mon, 21 Nov 2022 10:10:38 +0100
Subject: [PATCH 0538/1420] Consider taint through bitwise operations on
 PendingIntent flags

---
 .../code/java/security/ImplicitPendingIntents.qll | 15 +++++++++++++--
 .../CWE-927/ImplicitPendingIntentsTest.java       |  2 +-
 2 files changed, 14 insertions(+), 3 deletions(-)

diff --git a/java/ql/lib/semmle/code/java/security/ImplicitPendingIntents.qll b/java/ql/lib/semmle/code/java/security/ImplicitPendingIntents.qll
index 3441cfaef18..bbfafc2d9c4 100644
--- a/java/ql/lib/semmle/code/java/security/ImplicitPendingIntents.qll
+++ b/java/ql/lib/semmle/code/java/security/ImplicitPendingIntents.qll
@@ -85,9 +85,11 @@ private class MutablePendingIntentFlowStep extends ImplicitPendingIntentAddition
       // unless it is at least sometimes explicitly marked immutable and never marked mutable.
       // Note: for API level < 31, PendingIntents were mutable by default, whereas since then
       // they are immutable by default.
-      not TaintTracking::localExprTaint(any(ImmutablePendingIntentFlag flag).getAnAccess(), flagArg)
+      not bitwiseLocalTaintStep*(DataFlow::exprNode(any(ImmutablePendingIntentFlag flag)
+              .getAnAccess()), DataFlow::exprNode(flagArg))
       or
-      TaintTracking::localExprTaint(any(MutablePendingIntentFlag flag).getAnAccess(), flagArg)
+      bitwiseLocalTaintStep*(DataFlow::exprNode(any(MutablePendingIntentFlag flag).getAnAccess()),
+        DataFlow::exprNode(flagArg))
     )
   }
 }
@@ -124,3 +126,12 @@ private class PendingIntentSentSinkModels extends SinkModelCsv {
       ]
   }
 }
+
+/**
+ * Holds if taint can flow from `source` to `sink` in one local step,
+ * including bitwise operations.
+ */
+private predicate bitwiseLocalTaintStep(DataFlow::Node source, DataFlow::Node sink) {
+  TaintTracking::localTaintStep(source, sink) or
+  source.asExpr() = sink.asExpr().(BitwiseExpr).(BinaryExpr).getAnOperand()
+}
diff --git a/java/ql/test/query-tests/security/CWE-927/ImplicitPendingIntentsTest.java b/java/ql/test/query-tests/security/CWE-927/ImplicitPendingIntentsTest.java
index 9c8f098d467..746c9ca83dc 100644
--- a/java/ql/test/query-tests/security/CWE-927/ImplicitPendingIntentsTest.java
+++ b/java/ql/test/query-tests/security/CWE-927/ImplicitPendingIntentsTest.java
@@ -156,7 +156,7 @@ public class ImplicitPendingIntentsTest {
             PendingIntent pi = PendingIntent.getActivity(ctx, 0, baseIntent, flag); // Sanitizer
             Intent fwdIntent = new Intent();
             fwdIntent.putExtra("fwdIntent", pi);
-            ctx.startActivity(fwdIntent); // $ SPURIOUS: $ hasImplicitPendingIntent
+            ctx.startActivity(fwdIntent); // Safe
         }
     }
 

From 1667fbad88abb40cd9970c3471bdf79a2ca26517 Mon Sep 17 00:00:00 2001
From: Tony Torralba <atorralba@users.noreply.github.com>
Date: Tue, 22 Nov 2022 11:48:21 +0100
Subject: [PATCH 0539/1420] Add change note

---
 .../change-notes/2022-11-22-bitwise-implicit-intent-flags.md  | 4 ++++
 1 file changed, 4 insertions(+)
 create mode 100644 java/ql/src/change-notes/2022-11-22-bitwise-implicit-intent-flags.md

diff --git a/java/ql/src/change-notes/2022-11-22-bitwise-implicit-intent-flags.md b/java/ql/src/change-notes/2022-11-22-bitwise-implicit-intent-flags.md
new file mode 100644
index 00000000000..20612e86325
--- /dev/null
+++ b/java/ql/src/change-notes/2022-11-22-bitwise-implicit-intent-flags.md
@@ -0,0 +1,4 @@
+---
+category: minorAnalysis
+---
+* Fixed an issue in the query `java/android/implicit-pendingintents` by which an implicit Pending Intent marked as immutable was not correctly recognized as such.

From f9b775e4b89d5a385b6337a8c9332da3b94fd531 Mon Sep 17 00:00:00 2001
From: erik-krogh <erik-krogh@github.com>
Date: Tue, 22 Nov 2022 12:39:56 +0100
Subject: [PATCH 0540/1420] do private imports of the deprecated Dep modules

---
 .../ql/lib/semmle/javascript/security/BadTagFilterQuery.qll     | 2 +-
 .../ql/lib/semmle/javascript/security/OverlyLargeRangeQuery.qll | 2 +-
 .../javascript/security/performance/ExponentialBackTracking.qll | 2 +-
 .../security/performance/PolynomialReDoSCustomizations.qll      | 2 +-
 .../ql/lib/semmle/javascript/security/performance/ReDoSUtil.qll | 2 +-
 .../javascript/security/performance/SuperlinearBackTracking.qll | 2 +-
 .../ql/lib/semmle/javascript/security/regexp/RegexpMatching.qll | 2 +-
 7 files changed, 7 insertions(+), 7 deletions(-)

diff --git a/javascript/ql/lib/semmle/javascript/security/BadTagFilterQuery.qll b/javascript/ql/lib/semmle/javascript/security/BadTagFilterQuery.qll
index 428275df487..eb9349a9ab7 100644
--- a/javascript/ql/lib/semmle/javascript/security/BadTagFilterQuery.qll
+++ b/javascript/ql/lib/semmle/javascript/security/BadTagFilterQuery.qll
@@ -4,5 +4,5 @@
 
 private import regexp.RegexTreeView::RegexTreeView as TreeView
 // BadTagFilterQuery should be used directly from the shared pack, and not from this file.
-deprecated import codeql.regex.nfa.BadTagFilterQuery::Make<TreeView> as Dep
+deprecated private import codeql.regex.nfa.BadTagFilterQuery::Make<TreeView> as Dep
 import Dep
diff --git a/javascript/ql/lib/semmle/javascript/security/OverlyLargeRangeQuery.qll b/javascript/ql/lib/semmle/javascript/security/OverlyLargeRangeQuery.qll
index 3d9732f1fd6..0a34f328688 100644
--- a/javascript/ql/lib/semmle/javascript/security/OverlyLargeRangeQuery.qll
+++ b/javascript/ql/lib/semmle/javascript/security/OverlyLargeRangeQuery.qll
@@ -4,5 +4,5 @@
 
 private import regexp.RegexTreeView::RegexTreeView as TreeView
 // OverlyLargeRangeQuery should be used directly from the shared pack, and not from this file.
-deprecated import codeql.regex.OverlyLargeRangeQuery::Make<TreeView> as Dep
+deprecated private import codeql.regex.OverlyLargeRangeQuery::Make<TreeView> as Dep
 import Dep
diff --git a/javascript/ql/lib/semmle/javascript/security/performance/ExponentialBackTracking.qll b/javascript/ql/lib/semmle/javascript/security/performance/ExponentialBackTracking.qll
index 8edb433b202..65b120d21cf 100644
--- a/javascript/ql/lib/semmle/javascript/security/performance/ExponentialBackTracking.qll
+++ b/javascript/ql/lib/semmle/javascript/security/performance/ExponentialBackTracking.qll
@@ -1,4 +1,4 @@
 /** DEPRECATED. Import `semmle.javascript.security.regexp.ExponentialBackTracking` instead. */
 
-deprecated import semmle.javascript.security.regexp.ExponentialBackTracking as Dep
+deprecated private import semmle.javascript.security.regexp.ExponentialBackTracking as Dep
 import Dep
diff --git a/javascript/ql/lib/semmle/javascript/security/performance/PolynomialReDoSCustomizations.qll b/javascript/ql/lib/semmle/javascript/security/performance/PolynomialReDoSCustomizations.qll
index 96a6ef67188..e1c70e5ac53 100644
--- a/javascript/ql/lib/semmle/javascript/security/performance/PolynomialReDoSCustomizations.qll
+++ b/javascript/ql/lib/semmle/javascript/security/performance/PolynomialReDoSCustomizations.qll
@@ -1,4 +1,4 @@
 /** DEPRECATED. Import `semmle.javascript.security.regexp.PolynomialReDoSCustomizations` instead. */
 
-deprecated import semmle.javascript.security.regexp.PolynomialReDoSCustomizations as Dep
+deprecated private import semmle.javascript.security.regexp.PolynomialReDoSCustomizations as Dep
 import Dep
diff --git a/javascript/ql/lib/semmle/javascript/security/performance/ReDoSUtil.qll b/javascript/ql/lib/semmle/javascript/security/performance/ReDoSUtil.qll
index 42e6270bf18..952e0eda722 100644
--- a/javascript/ql/lib/semmle/javascript/security/performance/ReDoSUtil.qll
+++ b/javascript/ql/lib/semmle/javascript/security/performance/ReDoSUtil.qll
@@ -1,4 +1,4 @@
 /** DEPRECATED. Import `semmle.javascript.security.regexp.NfaUtils` instead. */
 
-deprecated import semmle.javascript.security.regexp.NfaUtils as Dep
+deprecated private import semmle.javascript.security.regexp.NfaUtils as Dep
 import Dep
diff --git a/javascript/ql/lib/semmle/javascript/security/performance/SuperlinearBackTracking.qll b/javascript/ql/lib/semmle/javascript/security/performance/SuperlinearBackTracking.qll
index 11bdab67bd5..ee36f03b116 100644
--- a/javascript/ql/lib/semmle/javascript/security/performance/SuperlinearBackTracking.qll
+++ b/javascript/ql/lib/semmle/javascript/security/performance/SuperlinearBackTracking.qll
@@ -1,4 +1,4 @@
 /** DEPRECATED. Import `semmle.javascript.security.regexp.SuperlinearBackTracking` instead. */
 
-deprecated import semmle.javascript.security.regexp.SuperlinearBackTracking as Dep
+deprecated private import semmle.javascript.security.regexp.SuperlinearBackTracking as Dep
 import Dep
diff --git a/javascript/ql/lib/semmle/javascript/security/regexp/RegexpMatching.qll b/javascript/ql/lib/semmle/javascript/security/regexp/RegexpMatching.qll
index d3f6aae96b3..a6265545b3a 100644
--- a/javascript/ql/lib/semmle/javascript/security/regexp/RegexpMatching.qll
+++ b/javascript/ql/lib/semmle/javascript/security/regexp/RegexpMatching.qll
@@ -5,5 +5,5 @@
 
 private import RegexTreeView::RegexTreeView as TreeView
 // RegexpMatching should be used directly from the shared pack, and not from this file.
-deprecated import codeql.regex.nfa.RegexpMatching::Make<TreeView> as Dep
+deprecated private import codeql.regex.nfa.RegexpMatching::Make<TreeView> as Dep
 import Dep

From 6b5cd9abc3715d17afd30a0565b0a232457cf6c9 Mon Sep 17 00:00:00 2001
From: erik-krogh <erik-krogh@github.com>
Date: Tue, 22 Nov 2022 12:47:21 +0100
Subject: [PATCH 0541/1420] use RegExpTreeView insteaed of RegexTreeView in JS

---
 .../ql/lib/semmle/javascript/security/BadTagFilterQuery.qll     | 2 +-
 .../security/IncompleteMultiCharacterSanitizationSpecific.qll   | 2 +-
 .../ql/lib/semmle/javascript/security/OverlyLargeRangeQuery.qll | 2 +-
 .../javascript/security/regexp/ExponentialBackTracking.qll      | 2 +-
 .../ql/lib/semmle/javascript/security/regexp/NfaUtils.qll       | 2 +-
 .../security/regexp/PolynomialReDoSCustomizations.qll           | 2 +-
 .../security/regexp/{RegexTreeView.qll => RegExpTreeView.qll}   | 2 +-
 .../ql/lib/semmle/javascript/security/regexp/RegexpMatching.qll | 2 +-
 .../javascript/security/regexp/SuperlinearBackTracking.qll      | 2 +-
 javascript/ql/src/Performance/ReDoS.ql                          | 2 +-
 javascript/ql/src/Security/CWE-020/OverlyLargeRange.ql          | 2 +-
 javascript/ql/src/Security/CWE-116/BadTagFilter.ql              | 2 +-
 .../ql/src/Security/CWE-178/CaseSensitiveMiddlewarePath.ql      | 2 +-
 .../Security/CWE-400/ReDoS/PolynomialBackTracking.ql            | 2 +-
 14 files changed, 14 insertions(+), 14 deletions(-)
 rename javascript/ql/lib/semmle/javascript/security/regexp/{RegexTreeView.qll => RegExpTreeView.qll} (97%)

diff --git a/javascript/ql/lib/semmle/javascript/security/BadTagFilterQuery.qll b/javascript/ql/lib/semmle/javascript/security/BadTagFilterQuery.qll
index eb9349a9ab7..0bc83143e8c 100644
--- a/javascript/ql/lib/semmle/javascript/security/BadTagFilterQuery.qll
+++ b/javascript/ql/lib/semmle/javascript/security/BadTagFilterQuery.qll
@@ -2,7 +2,7 @@
  * Provides predicates for reasoning about bad tag filter vulnerabilities.
  */
 
-private import regexp.RegexTreeView::RegexTreeView as TreeView
+private import regexp.RegExpTreeView::RegExpTreeView as TreeView
 // BadTagFilterQuery should be used directly from the shared pack, and not from this file.
 deprecated private import codeql.regex.nfa.BadTagFilterQuery::Make<TreeView> as Dep
 import Dep
diff --git a/javascript/ql/lib/semmle/javascript/security/IncompleteMultiCharacterSanitizationSpecific.qll b/javascript/ql/lib/semmle/javascript/security/IncompleteMultiCharacterSanitizationSpecific.qll
index a133c4b8529..10d9ab19f98 100644
--- a/javascript/ql/lib/semmle/javascript/security/IncompleteMultiCharacterSanitizationSpecific.qll
+++ b/javascript/ql/lib/semmle/javascript/security/IncompleteMultiCharacterSanitizationSpecific.qll
@@ -3,7 +3,7 @@
  */
 
 import javascript
-private import semmle.javascript.security.regexp.RegexTreeView::RegexTreeView as TreeView
+private import semmle.javascript.security.regexp.RegExpTreeView::RegExpTreeView as TreeView
 import codeql.regex.nfa.NfaUtils::Make<TreeView> as NfaUtils
 
 class StringSubstitutionCall = StringReplaceCall;
diff --git a/javascript/ql/lib/semmle/javascript/security/OverlyLargeRangeQuery.qll b/javascript/ql/lib/semmle/javascript/security/OverlyLargeRangeQuery.qll
index 0a34f328688..2053afe95f8 100644
--- a/javascript/ql/lib/semmle/javascript/security/OverlyLargeRangeQuery.qll
+++ b/javascript/ql/lib/semmle/javascript/security/OverlyLargeRangeQuery.qll
@@ -2,7 +2,7 @@
  * Classes and predicates for working with suspicious character ranges.
  */
 
-private import regexp.RegexTreeView::RegexTreeView as TreeView
+private import regexp.RegExpTreeView::RegExpTreeView as TreeView
 // OverlyLargeRangeQuery should be used directly from the shared pack, and not from this file.
 deprecated private import codeql.regex.OverlyLargeRangeQuery::Make<TreeView> as Dep
 import Dep
diff --git a/javascript/ql/lib/semmle/javascript/security/regexp/ExponentialBackTracking.qll b/javascript/ql/lib/semmle/javascript/security/regexp/ExponentialBackTracking.qll
index 07e0093e8ba..aa0cd6b3e69 100644
--- a/javascript/ql/lib/semmle/javascript/security/regexp/ExponentialBackTracking.qll
+++ b/javascript/ql/lib/semmle/javascript/security/regexp/ExponentialBackTracking.qll
@@ -62,7 +62,7 @@
  *     a suffix `x` (possible empty) that is most likely __not__ accepted.
  */
 
-private import RegexTreeView::RegexTreeView as TreeView
+private import RegExpTreeView::RegExpTreeView as TreeView
 // ExponentialBackTracking should be used directly from the shared pack, and not from this file.
 deprecated private import codeql.regex.nfa.ExponentialBackTracking::Make<TreeView> as Dep
 import Dep
diff --git a/javascript/ql/lib/semmle/javascript/security/regexp/NfaUtils.qll b/javascript/ql/lib/semmle/javascript/security/regexp/NfaUtils.qll
index 030303cde3f..c2be46a244d 100644
--- a/javascript/ql/lib/semmle/javascript/security/regexp/NfaUtils.qll
+++ b/javascript/ql/lib/semmle/javascript/security/regexp/NfaUtils.qll
@@ -7,7 +7,7 @@
  * other queries that benefit from reasoning about NFAs.
  */
 
-private import RegexTreeView::RegexTreeView as TreeView
+private import RegExpTreeView::RegExpTreeView as TreeView
 // NfaUtils should be used directly from the shared pack, and not from this file.
 deprecated private import codeql.regex.nfa.NfaUtils::Make<TreeView> as Dep
 import Dep
diff --git a/javascript/ql/lib/semmle/javascript/security/regexp/PolynomialReDoSCustomizations.qll b/javascript/ql/lib/semmle/javascript/security/regexp/PolynomialReDoSCustomizations.qll
index c802218ffab..a46ca1dcf40 100644
--- a/javascript/ql/lib/semmle/javascript/security/regexp/PolynomialReDoSCustomizations.qll
+++ b/javascript/ql/lib/semmle/javascript/security/regexp/PolynomialReDoSCustomizations.qll
@@ -5,7 +5,7 @@
  */
 
 import javascript
-private import semmle.javascript.security.regexp.RegexTreeView::RegexTreeView as TreeView
+private import semmle.javascript.security.regexp.RegExpTreeView::RegExpTreeView as TreeView
 
 /** Module containing sources, sinks, and sanitizers for polynomial regular expression denial-of-service attacks. */
 module PolynomialReDoS {
diff --git a/javascript/ql/lib/semmle/javascript/security/regexp/RegexTreeView.qll b/javascript/ql/lib/semmle/javascript/security/regexp/RegExpTreeView.qll
similarity index 97%
rename from javascript/ql/lib/semmle/javascript/security/regexp/RegexTreeView.qll
rename to javascript/ql/lib/semmle/javascript/security/regexp/RegExpTreeView.qll
index 9009133f4c0..d4440ed7db5 100644
--- a/javascript/ql/lib/semmle/javascript/security/regexp/RegexTreeView.qll
+++ b/javascript/ql/lib/semmle/javascript/security/regexp/RegExpTreeView.qll
@@ -6,7 +6,7 @@ private import codeql.regex.nfa.NfaUtils as NfaUtils
 private import codeql.regex.RegexTreeView
 
 /** An implementation that parses a regular expression into a tree of `RegExpTerm`s. */
-module RegexTreeView implements RegexTreeViewSig {
+module RegExpTreeView implements RegexTreeViewSig {
   import javascript
 
   class Top = Locatable;
diff --git a/javascript/ql/lib/semmle/javascript/security/regexp/RegexpMatching.qll b/javascript/ql/lib/semmle/javascript/security/regexp/RegexpMatching.qll
index a6265545b3a..cfc0f499240 100644
--- a/javascript/ql/lib/semmle/javascript/security/regexp/RegexpMatching.qll
+++ b/javascript/ql/lib/semmle/javascript/security/regexp/RegexpMatching.qll
@@ -3,7 +3,7 @@
  * and for testing which capture groups are filled when a particular regexp matches a string.
  */
 
-private import RegexTreeView::RegexTreeView as TreeView
+private import RegExpTreeView::RegExpTreeView as TreeView
 // RegexpMatching should be used directly from the shared pack, and not from this file.
 deprecated private import codeql.regex.nfa.RegexpMatching::Make<TreeView> as Dep
 import Dep
diff --git a/javascript/ql/lib/semmle/javascript/security/regexp/SuperlinearBackTracking.qll b/javascript/ql/lib/semmle/javascript/security/regexp/SuperlinearBackTracking.qll
index 9996b227ec1..ec3d65ab195 100644
--- a/javascript/ql/lib/semmle/javascript/security/regexp/SuperlinearBackTracking.qll
+++ b/javascript/ql/lib/semmle/javascript/security/regexp/SuperlinearBackTracking.qll
@@ -35,7 +35,7 @@
  * It also doesn't find all transitions in the product automaton, which can cause false negatives.
  */
 
-private import RegexTreeView::RegexTreeView as TreeView
+private import RegExpTreeView::RegExpTreeView as TreeView
 // SuperlinearBackTracking should be used directly from the shared pack, and not from this file.
 deprecated private import codeql.regex.nfa.SuperlinearBackTracking::Make<TreeView> as Dep
 import Dep
diff --git a/javascript/ql/src/Performance/ReDoS.ql b/javascript/ql/src/Performance/ReDoS.ql
index 850b47cb669..cf4f80c34ce 100644
--- a/javascript/ql/src/Performance/ReDoS.ql
+++ b/javascript/ql/src/Performance/ReDoS.ql
@@ -15,7 +15,7 @@
  */
 
 import javascript
-private import semmle.javascript.security.regexp.RegexTreeView::RegexTreeView as TreeView
+private import semmle.javascript.security.regexp.RegExpTreeView::RegExpTreeView as TreeView
 import codeql.regex.nfa.ExponentialBackTracking::Make<TreeView>
 
 from RegExpTerm t, string pump, State s, string prefixMsg
diff --git a/javascript/ql/src/Security/CWE-020/OverlyLargeRange.ql b/javascript/ql/src/Security/CWE-020/OverlyLargeRange.ql
index 4083c6e79aa..582a8975c8f 100644
--- a/javascript/ql/src/Security/CWE-020/OverlyLargeRange.ql
+++ b/javascript/ql/src/Security/CWE-020/OverlyLargeRange.ql
@@ -12,7 +12,7 @@
  *       external/cwe/cwe-020
  */
 
-private import semmle.javascript.security.regexp.RegexTreeView::RegexTreeView as TreeView
+private import semmle.javascript.security.regexp.RegExpTreeView::RegExpTreeView as TreeView
 import codeql.regex.OverlyLargeRangeQuery::Make<TreeView>
 
 from TreeView::RegExpCharacterRange range, string reason
diff --git a/javascript/ql/src/Security/CWE-116/BadTagFilter.ql b/javascript/ql/src/Security/CWE-116/BadTagFilter.ql
index 46a87e914cd..fc376566823 100644
--- a/javascript/ql/src/Security/CWE-116/BadTagFilter.ql
+++ b/javascript/ql/src/Security/CWE-116/BadTagFilter.ql
@@ -16,7 +16,7 @@
  *       external/cwe/cwe-186
  */
 
-private import semmle.javascript.security.regexp.RegexTreeView::RegexTreeView as TreeView
+private import semmle.javascript.security.regexp.RegExpTreeView::RegExpTreeView as TreeView
 import codeql.regex.nfa.BadTagFilterQuery::Make<TreeView>
 
 from HtmlMatchingRegExp regexp, string msg
diff --git a/javascript/ql/src/Security/CWE-178/CaseSensitiveMiddlewarePath.ql b/javascript/ql/src/Security/CWE-178/CaseSensitiveMiddlewarePath.ql
index ed1f6f4347f..d16f72d4172 100644
--- a/javascript/ql/src/Security/CWE-178/CaseSensitiveMiddlewarePath.ql
+++ b/javascript/ql/src/Security/CWE-178/CaseSensitiveMiddlewarePath.ql
@@ -20,7 +20,7 @@ string toOtherCase(string s) {
   if s.regexpMatch(".*[a-z].*") then result = s.toUpperCase() else result = s.toLowerCase()
 }
 
-private import semmle.javascript.security.regexp.RegexTreeView::RegexTreeView as TreeView
+private import semmle.javascript.security.regexp.RegExpTreeView::RegExpTreeView as TreeView
 import codeql.regex.nfa.NfaUtils::Make<TreeView> as NfaUtils
 
 /** Holds if `s` is a relevant regexp term were we want to compute a string that matches the term (for `getCaseSensitiveBypassExample`). */
diff --git a/javascript/ql/test/query-tests/Security/CWE-400/ReDoS/PolynomialBackTracking.ql b/javascript/ql/test/query-tests/Security/CWE-400/ReDoS/PolynomialBackTracking.ql
index fdd39eb4211..5b5d5eb14ab 100644
--- a/javascript/ql/test/query-tests/Security/CWE-400/ReDoS/PolynomialBackTracking.ql
+++ b/javascript/ql/test/query-tests/Security/CWE-400/ReDoS/PolynomialBackTracking.ql
@@ -1,4 +1,4 @@
-private import semmle.javascript.security.regexp.RegexTreeView::RegexTreeView as TreeView
+private import semmle.javascript.security.regexp.RegExpTreeView::RegExpTreeView as TreeView
 import codeql.regex.nfa.SuperlinearBackTracking::Make<TreeView>
 
 from PolynomialBackTrackingTerm t

From 18be30d1774ab7a84452da1306f69941f2ea3b6b Mon Sep 17 00:00:00 2001
From: Taus <tausbn@github.com>
Date: Tue, 22 Nov 2022 13:46:45 +0100
Subject: [PATCH 0542/1420] Python: Apply suggestion from review

Co-authored-by: Rasmus Wriedt Larsen <rasmuswriedtlarsen@gmail.com>
---
 .../ql/lib/change-notes/2022-11-21-module-resolution-rewrite.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/python/ql/lib/change-notes/2022-11-21-module-resolution-rewrite.md b/python/ql/lib/change-notes/2022-11-21-module-resolution-rewrite.md
index 32484ffed56..fa04c07e9d5 100644
--- a/python/ql/lib/change-notes/2022-11-21-module-resolution-rewrite.md
+++ b/python/ql/lib/change-notes/2022-11-21-module-resolution-rewrite.md
@@ -2,4 +2,4 @@
  category: minorAnalysis
 ---
  * The data-flow library has been rewritten to no longer rely on the points-to analysis in order to
-   resolve references to modules. This should result in more results for data-flow queries.
+   resolve references to modules. Improvements in the module resolution can lead to more results.

From e01df3ea7c502e5e6c19c6063b408ff2b474d48a Mon Sep 17 00:00:00 2001
From: Rasmus Wriedt Larsen <rasmuswl@github.com>
Date: Tue, 22 Nov 2022 13:38:10 +0100
Subject: [PATCH 0543/1420] Python: Prepare for new test

.expected line changes :angry:
---
 .../CleartextLogging.expected                        | 12 ++++++------
 .../Security/CWE-312-CleartextLogging/test.py        |  5 +++++
 2 files changed, 11 insertions(+), 6 deletions(-)

diff --git a/python/ql/test/query-tests/Security/CWE-312-CleartextLogging/CleartextLogging.expected b/python/ql/test/query-tests/Security/CWE-312-CleartextLogging/CleartextLogging.expected
index e9b5ac67585..00de056f78b 100644
--- a/python/ql/test/query-tests/Security/CWE-312-CleartextLogging/CleartextLogging.expected
+++ b/python/ql/test/query-tests/Security/CWE-312-CleartextLogging/CleartextLogging.expected
@@ -4,8 +4,8 @@ edges
 | test.py:19:16:19:29 | ControlFlowNode for get_password() | test.py:23:58:23:65 | ControlFlowNode for password |
 | test.py:19:16:19:29 | ControlFlowNode for get_password() | test.py:27:40:27:47 | ControlFlowNode for password |
 | test.py:19:16:19:29 | ControlFlowNode for get_password() | test.py:30:58:30:65 | ControlFlowNode for password |
-| test.py:65:14:68:5 | ControlFlowNode for Dict | test.py:69:11:69:31 | ControlFlowNode for Subscript |
-| test.py:67:21:67:37 | ControlFlowNode for Attribute | test.py:65:14:68:5 | ControlFlowNode for Dict |
+| test.py:70:14:73:5 | ControlFlowNode for Dict | test.py:74:11:74:31 | ControlFlowNode for Subscript |
+| test.py:72:21:72:37 | ControlFlowNode for Attribute | test.py:70:14:73:5 | ControlFlowNode for Dict |
 nodes
 | test.py:19:16:19:29 | ControlFlowNode for get_password() | semmle.label | ControlFlowNode for get_password() |
 | test.py:20:48:20:55 | ControlFlowNode for password | semmle.label | ControlFlowNode for password |
@@ -17,9 +17,9 @@ nodes
 | test.py:37:11:37:24 | ControlFlowNode for get_password() | semmle.label | ControlFlowNode for get_password() |
 | test.py:39:22:39:35 | ControlFlowNode for get_password() | semmle.label | ControlFlowNode for get_password() |
 | test.py:40:22:40:35 | ControlFlowNode for get_password() | semmle.label | ControlFlowNode for get_password() |
-| test.py:65:14:68:5 | ControlFlowNode for Dict | semmle.label | ControlFlowNode for Dict |
-| test.py:67:21:67:37 | ControlFlowNode for Attribute | semmle.label | ControlFlowNode for Attribute |
-| test.py:69:11:69:31 | ControlFlowNode for Subscript | semmle.label | ControlFlowNode for Subscript |
+| test.py:70:14:73:5 | ControlFlowNode for Dict | semmle.label | ControlFlowNode for Dict |
+| test.py:72:21:72:37 | ControlFlowNode for Attribute | semmle.label | ControlFlowNode for Attribute |
+| test.py:74:11:74:31 | ControlFlowNode for Subscript | semmle.label | ControlFlowNode for Subscript |
 subpaths
 #select
 | test.py:20:48:20:55 | ControlFlowNode for password | test.py:19:16:19:29 | ControlFlowNode for get_password() | test.py:20:48:20:55 | ControlFlowNode for password | This expression logs $@ as clear text. | test.py:19:16:19:29 | ControlFlowNode for get_password() | sensitive data (password) |
@@ -31,4 +31,4 @@ subpaths
 | test.py:37:11:37:24 | ControlFlowNode for get_password() | test.py:37:11:37:24 | ControlFlowNode for get_password() | test.py:37:11:37:24 | ControlFlowNode for get_password() | This expression logs $@ as clear text. | test.py:37:11:37:24 | ControlFlowNode for get_password() | sensitive data (password) |
 | test.py:39:22:39:35 | ControlFlowNode for get_password() | test.py:39:22:39:35 | ControlFlowNode for get_password() | test.py:39:22:39:35 | ControlFlowNode for get_password() | This expression logs $@ as clear text. | test.py:39:22:39:35 | ControlFlowNode for get_password() | sensitive data (password) |
 | test.py:40:22:40:35 | ControlFlowNode for get_password() | test.py:40:22:40:35 | ControlFlowNode for get_password() | test.py:40:22:40:35 | ControlFlowNode for get_password() | This expression logs $@ as clear text. | test.py:40:22:40:35 | ControlFlowNode for get_password() | sensitive data (password) |
-| test.py:69:11:69:31 | ControlFlowNode for Subscript | test.py:67:21:67:37 | ControlFlowNode for Attribute | test.py:69:11:69:31 | ControlFlowNode for Subscript | This expression logs $@ as clear text. | test.py:67:21:67:37 | ControlFlowNode for Attribute | sensitive data (password) |
+| test.py:74:11:74:31 | ControlFlowNode for Subscript | test.py:72:21:72:37 | ControlFlowNode for Attribute | test.py:74:11:74:31 | ControlFlowNode for Subscript | This expression logs $@ as clear text. | test.py:72:21:72:37 | ControlFlowNode for Attribute | sensitive data (password) |
diff --git a/python/ql/test/query-tests/Security/CWE-312-CleartextLogging/test.py b/python/ql/test/query-tests/Security/CWE-312-CleartextLogging/test.py
index 0a3d97426e0..265bda6d53d 100644
--- a/python/ql/test/query-tests/Security/CWE-312-CleartextLogging/test.py
+++ b/python/ql/test/query-tests/Security/CWE-312-CleartextLogging/test.py
@@ -39,6 +39,11 @@ def print_password():
     sys.stdout.write(get_password()) # NOT OK
     sys.stderr.write(get_password()) # NOT OK
 
+    # import getpass
+
+    # x = getpass.getpass()
+    # print(x) # NOT OK
+
 
 def FPs(account, account_id):
     # we assume that any account parameter is sensitive (id/username)

From 9342e3ba76ec910fabd19f739a85dd0192e93b3b Mon Sep 17 00:00:00 2001
From: Rasmus Wriedt Larsen <rasmuswl@github.com>
Date: Tue, 22 Nov 2022 13:59:59 +0100
Subject: [PATCH 0544/1420] Python: Enable new test

But look at all those elements from getpass.py implementation :(
---
 .../CleartextLogging.expected                 | 35 +++++++++++++++++++
 .../Security/CWE-312-CleartextLogging/test.py |  6 ++--
 2 files changed, 38 insertions(+), 3 deletions(-)

diff --git a/python/ql/test/query-tests/Security/CWE-312-CleartextLogging/CleartextLogging.expected b/python/ql/test/query-tests/Security/CWE-312-CleartextLogging/CleartextLogging.expected
index 00de056f78b..9d8152dd627 100644
--- a/python/ql/test/query-tests/Security/CWE-312-CleartextLogging/CleartextLogging.expected
+++ b/python/ql/test/query-tests/Security/CWE-312-CleartextLogging/CleartextLogging.expected
@@ -1,12 +1,37 @@
 edges
+| file:///usr/lib/python3.8/getpass.py:44:14:44:17 | ControlFlowNode for None | file:///usr/lib/python3.8/getpass.py:94:16:94:21 | ControlFlowNode for passwd |
+| file:///usr/lib/python3.8/getpass.py:44:14:44:17 | ControlFlowNode for None | file:///usr/lib/python3.8/getpass.py:94:16:94:21 | ControlFlowNode for passwd |
+| file:///usr/lib/python3.8/getpass.py:44:14:44:17 | ControlFlowNode for None | file:///usr/lib/python3.8/getpass.py:94:16:94:21 | ControlFlowNode for passwd |
+| file:///usr/lib/python3.8/getpass.py:62:26:62:57 | ControlFlowNode for fallback_getpass() | file:///usr/lib/python3.8/getpass.py:94:16:94:21 | ControlFlowNode for passwd |
+| file:///usr/lib/python3.8/getpass.py:77:30:77:68 | ControlFlowNode for _raw_input() | file:///usr/lib/python3.8/getpass.py:94:16:94:21 | ControlFlowNode for passwd |
+| file:///usr/lib/python3.8/getpass.py:77:30:77:68 | ControlFlowNode for _raw_input() | file:///usr/lib/python3.8/getpass.py:94:16:94:21 | ControlFlowNode for passwd |
+| file:///usr/lib/python3.8/getpass.py:77:30:77:68 | ControlFlowNode for _raw_input() | file:///usr/lib/python3.8/getpass.py:94:16:94:21 | ControlFlowNode for passwd |
+| file:///usr/lib/python3.8/getpass.py:91:26:91:57 | ControlFlowNode for fallback_getpass() | file:///usr/lib/python3.8/getpass.py:94:16:94:21 | ControlFlowNode for passwd |
+| file:///usr/lib/python3.8/getpass.py:91:26:91:57 | ControlFlowNode for fallback_getpass() | file:///usr/lib/python3.8/getpass.py:94:16:94:21 | ControlFlowNode for passwd |
+| file:///usr/lib/python3.8/getpass.py:91:26:91:57 | ControlFlowNode for fallback_getpass() | file:///usr/lib/python3.8/getpass.py:94:16:94:21 | ControlFlowNode for passwd |
+| file:///usr/lib/python3.8/getpass.py:94:16:94:21 | ControlFlowNode for passwd | test.py:44:9:44:25 | ControlFlowNode for Attribute() |
+| file:///usr/lib/python3.8/getpass.py:94:16:94:21 | ControlFlowNode for passwd | test.py:44:9:44:25 | ControlFlowNode for Attribute() |
+| file:///usr/lib/python3.8/getpass.py:94:16:94:21 | ControlFlowNode for passwd | test.py:44:9:44:25 | ControlFlowNode for Attribute() |
 | test.py:19:16:19:29 | ControlFlowNode for get_password() | test.py:20:48:20:55 | ControlFlowNode for password |
 | test.py:19:16:19:29 | ControlFlowNode for get_password() | test.py:22:58:22:65 | ControlFlowNode for password |
 | test.py:19:16:19:29 | ControlFlowNode for get_password() | test.py:23:58:23:65 | ControlFlowNode for password |
 | test.py:19:16:19:29 | ControlFlowNode for get_password() | test.py:27:40:27:47 | ControlFlowNode for password |
 | test.py:19:16:19:29 | ControlFlowNode for get_password() | test.py:30:58:30:65 | ControlFlowNode for password |
+| test.py:44:9:44:25 | ControlFlowNode for Attribute() | test.py:45:11:45:11 | ControlFlowNode for x |
 | test.py:70:14:73:5 | ControlFlowNode for Dict | test.py:74:11:74:31 | ControlFlowNode for Subscript |
 | test.py:72:21:72:37 | ControlFlowNode for Attribute | test.py:70:14:73:5 | ControlFlowNode for Dict |
 nodes
+| file:///usr/lib/python3.8/getpass.py:44:14:44:17 | ControlFlowNode for None | semmle.label | ControlFlowNode for None |
+| file:///usr/lib/python3.8/getpass.py:62:26:62:57 | ControlFlowNode for fallback_getpass() | semmle.label | ControlFlowNode for fallback_getpass() |
+| file:///usr/lib/python3.8/getpass.py:77:30:77:68 | ControlFlowNode for _raw_input() | semmle.label | ControlFlowNode for _raw_input() |
+| file:///usr/lib/python3.8/getpass.py:77:30:77:68 | ControlFlowNode for _raw_input() | semmle.label | ControlFlowNode for _raw_input() |
+| file:///usr/lib/python3.8/getpass.py:77:30:77:68 | ControlFlowNode for _raw_input() | semmle.label | ControlFlowNode for _raw_input() |
+| file:///usr/lib/python3.8/getpass.py:91:26:91:57 | ControlFlowNode for fallback_getpass() | semmle.label | ControlFlowNode for fallback_getpass() |
+| file:///usr/lib/python3.8/getpass.py:91:26:91:57 | ControlFlowNode for fallback_getpass() | semmle.label | ControlFlowNode for fallback_getpass() |
+| file:///usr/lib/python3.8/getpass.py:91:26:91:57 | ControlFlowNode for fallback_getpass() | semmle.label | ControlFlowNode for fallback_getpass() |
+| file:///usr/lib/python3.8/getpass.py:94:16:94:21 | ControlFlowNode for passwd | semmle.label | ControlFlowNode for passwd |
+| file:///usr/lib/python3.8/getpass.py:94:16:94:21 | ControlFlowNode for passwd | semmle.label | ControlFlowNode for passwd |
+| file:///usr/lib/python3.8/getpass.py:94:16:94:21 | ControlFlowNode for passwd | semmle.label | ControlFlowNode for passwd |
 | test.py:19:16:19:29 | ControlFlowNode for get_password() | semmle.label | ControlFlowNode for get_password() |
 | test.py:20:48:20:55 | ControlFlowNode for password | semmle.label | ControlFlowNode for password |
 | test.py:22:58:22:65 | ControlFlowNode for password | semmle.label | ControlFlowNode for password |
@@ -17,6 +42,8 @@ nodes
 | test.py:37:11:37:24 | ControlFlowNode for get_password() | semmle.label | ControlFlowNode for get_password() |
 | test.py:39:22:39:35 | ControlFlowNode for get_password() | semmle.label | ControlFlowNode for get_password() |
 | test.py:40:22:40:35 | ControlFlowNode for get_password() | semmle.label | ControlFlowNode for get_password() |
+| test.py:44:9:44:25 | ControlFlowNode for Attribute() | semmle.label | ControlFlowNode for Attribute() |
+| test.py:45:11:45:11 | ControlFlowNode for x | semmle.label | ControlFlowNode for x |
 | test.py:70:14:73:5 | ControlFlowNode for Dict | semmle.label | ControlFlowNode for Dict |
 | test.py:72:21:72:37 | ControlFlowNode for Attribute | semmle.label | ControlFlowNode for Attribute |
 | test.py:74:11:74:31 | ControlFlowNode for Subscript | semmle.label | ControlFlowNode for Subscript |
@@ -31,4 +58,12 @@ subpaths
 | test.py:37:11:37:24 | ControlFlowNode for get_password() | test.py:37:11:37:24 | ControlFlowNode for get_password() | test.py:37:11:37:24 | ControlFlowNode for get_password() | This expression logs $@ as clear text. | test.py:37:11:37:24 | ControlFlowNode for get_password() | sensitive data (password) |
 | test.py:39:22:39:35 | ControlFlowNode for get_password() | test.py:39:22:39:35 | ControlFlowNode for get_password() | test.py:39:22:39:35 | ControlFlowNode for get_password() | This expression logs $@ as clear text. | test.py:39:22:39:35 | ControlFlowNode for get_password() | sensitive data (password) |
 | test.py:40:22:40:35 | ControlFlowNode for get_password() | test.py:40:22:40:35 | ControlFlowNode for get_password() | test.py:40:22:40:35 | ControlFlowNode for get_password() | This expression logs $@ as clear text. | test.py:40:22:40:35 | ControlFlowNode for get_password() | sensitive data (password) |
+| test.py:45:11:45:11 | ControlFlowNode for x | file:///usr/lib/python3.8/getpass.py:44:14:44:17 | ControlFlowNode for None | test.py:45:11:45:11 | ControlFlowNode for x | This expression logs $@ as clear text. | file:///usr/lib/python3.8/getpass.py:44:14:44:17 | ControlFlowNode for None | sensitive data (password) |
+| test.py:45:11:45:11 | ControlFlowNode for x | file:///usr/lib/python3.8/getpass.py:62:26:62:57 | ControlFlowNode for fallback_getpass() | test.py:45:11:45:11 | ControlFlowNode for x | This expression logs $@ as clear text. | file:///usr/lib/python3.8/getpass.py:62:26:62:57 | ControlFlowNode for fallback_getpass() | sensitive data (password) |
+| test.py:45:11:45:11 | ControlFlowNode for x | file:///usr/lib/python3.8/getpass.py:77:30:77:68 | ControlFlowNode for _raw_input() | test.py:45:11:45:11 | ControlFlowNode for x | This expression logs $@ as clear text. | file:///usr/lib/python3.8/getpass.py:77:30:77:68 | ControlFlowNode for _raw_input() | sensitive data (password) |
+| test.py:45:11:45:11 | ControlFlowNode for x | file:///usr/lib/python3.8/getpass.py:77:30:77:68 | ControlFlowNode for _raw_input() | test.py:45:11:45:11 | ControlFlowNode for x | This expression logs $@ as clear text. | file:///usr/lib/python3.8/getpass.py:77:30:77:68 | ControlFlowNode for _raw_input() | sensitive data (password) |
+| test.py:45:11:45:11 | ControlFlowNode for x | file:///usr/lib/python3.8/getpass.py:77:30:77:68 | ControlFlowNode for _raw_input() | test.py:45:11:45:11 | ControlFlowNode for x | This expression logs $@ as clear text. | file:///usr/lib/python3.8/getpass.py:77:30:77:68 | ControlFlowNode for _raw_input() | sensitive data (password) |
+| test.py:45:11:45:11 | ControlFlowNode for x | file:///usr/lib/python3.8/getpass.py:91:26:91:57 | ControlFlowNode for fallback_getpass() | test.py:45:11:45:11 | ControlFlowNode for x | This expression logs $@ as clear text. | file:///usr/lib/python3.8/getpass.py:91:26:91:57 | ControlFlowNode for fallback_getpass() | sensitive data (password) |
+| test.py:45:11:45:11 | ControlFlowNode for x | file:///usr/lib/python3.8/getpass.py:91:26:91:57 | ControlFlowNode for fallback_getpass() | test.py:45:11:45:11 | ControlFlowNode for x | This expression logs $@ as clear text. | file:///usr/lib/python3.8/getpass.py:91:26:91:57 | ControlFlowNode for fallback_getpass() | sensitive data (password) |
+| test.py:45:11:45:11 | ControlFlowNode for x | file:///usr/lib/python3.8/getpass.py:91:26:91:57 | ControlFlowNode for fallback_getpass() | test.py:45:11:45:11 | ControlFlowNode for x | This expression logs $@ as clear text. | file:///usr/lib/python3.8/getpass.py:91:26:91:57 | ControlFlowNode for fallback_getpass() | sensitive data (password) |
 | test.py:74:11:74:31 | ControlFlowNode for Subscript | test.py:72:21:72:37 | ControlFlowNode for Attribute | test.py:74:11:74:31 | ControlFlowNode for Subscript | This expression logs $@ as clear text. | test.py:72:21:72:37 | ControlFlowNode for Attribute | sensitive data (password) |
diff --git a/python/ql/test/query-tests/Security/CWE-312-CleartextLogging/test.py b/python/ql/test/query-tests/Security/CWE-312-CleartextLogging/test.py
index 265bda6d53d..b5ebe7593ba 100644
--- a/python/ql/test/query-tests/Security/CWE-312-CleartextLogging/test.py
+++ b/python/ql/test/query-tests/Security/CWE-312-CleartextLogging/test.py
@@ -39,10 +39,10 @@ def print_password():
     sys.stdout.write(get_password()) # NOT OK
     sys.stderr.write(get_password()) # NOT OK
 
-    # import getpass
+    import getpass
 
-    # x = getpass.getpass()
-    # print(x) # NOT OK
+    x = getpass.getpass()
+    print(x) # NOT OK
 
 
 def FPs(account, account_id):

From 80e71b202a851dc8605862bfe774683ddce177db Mon Sep 17 00:00:00 2001
From: Rasmus Wriedt Larsen <rasmuswl@github.com>
Date: Tue, 22 Nov 2022 14:08:00 +0100
Subject: [PATCH 0545/1420] Python: Cleartext queires: Remove flow from
 getpass.py

---
 .../dataflow/new/SensitiveDataSources.qll     | 12 ++++++-
 .../CleartextLogging.expected                 | 35 -------------------
 2 files changed, 11 insertions(+), 36 deletions(-)

diff --git a/python/ql/lib/semmle/python/dataflow/new/SensitiveDataSources.qll b/python/ql/lib/semmle/python/dataflow/new/SensitiveDataSources.qll
index 65d334f1c38..e5ee3e346b5 100644
--- a/python/ql/lib/semmle/python/dataflow/new/SensitiveDataSources.qll
+++ b/python/ql/lib/semmle/python/dataflow/new/SensitiveDataSources.qll
@@ -23,7 +23,17 @@ module SensitiveDataClassification = SensitiveDataHeuristics::SensitiveDataClass
 class SensitiveDataSource extends DataFlow::Node {
   SensitiveDataSource::Range range;
 
-  SensitiveDataSource() { this = range }
+  SensitiveDataSource() {
+    this = range and
+    // ignore sensitive password sources in getpass.py, that can escape through `getpass.getpass()` return value,
+    // since `getpass.getpass()` is considered a source itself.
+    not exists(Module getpass |
+      getpass.getName() = "getpass" and
+      this.getScope().getEnclosingModule() = getpass and
+      // do allow this call if we're analyzing getpass.py as part of CPython though
+      not exists(getpass.getFile().getRelativePath())
+    )
+  }
 
   /**
    * Gets the classification of the sensitive data.
diff --git a/python/ql/test/query-tests/Security/CWE-312-CleartextLogging/CleartextLogging.expected b/python/ql/test/query-tests/Security/CWE-312-CleartextLogging/CleartextLogging.expected
index 9d8152dd627..00de056f78b 100644
--- a/python/ql/test/query-tests/Security/CWE-312-CleartextLogging/CleartextLogging.expected
+++ b/python/ql/test/query-tests/Security/CWE-312-CleartextLogging/CleartextLogging.expected
@@ -1,37 +1,12 @@
 edges
-| file:///usr/lib/python3.8/getpass.py:44:14:44:17 | ControlFlowNode for None | file:///usr/lib/python3.8/getpass.py:94:16:94:21 | ControlFlowNode for passwd |
-| file:///usr/lib/python3.8/getpass.py:44:14:44:17 | ControlFlowNode for None | file:///usr/lib/python3.8/getpass.py:94:16:94:21 | ControlFlowNode for passwd |
-| file:///usr/lib/python3.8/getpass.py:44:14:44:17 | ControlFlowNode for None | file:///usr/lib/python3.8/getpass.py:94:16:94:21 | ControlFlowNode for passwd |
-| file:///usr/lib/python3.8/getpass.py:62:26:62:57 | ControlFlowNode for fallback_getpass() | file:///usr/lib/python3.8/getpass.py:94:16:94:21 | ControlFlowNode for passwd |
-| file:///usr/lib/python3.8/getpass.py:77:30:77:68 | ControlFlowNode for _raw_input() | file:///usr/lib/python3.8/getpass.py:94:16:94:21 | ControlFlowNode for passwd |
-| file:///usr/lib/python3.8/getpass.py:77:30:77:68 | ControlFlowNode for _raw_input() | file:///usr/lib/python3.8/getpass.py:94:16:94:21 | ControlFlowNode for passwd |
-| file:///usr/lib/python3.8/getpass.py:77:30:77:68 | ControlFlowNode for _raw_input() | file:///usr/lib/python3.8/getpass.py:94:16:94:21 | ControlFlowNode for passwd |
-| file:///usr/lib/python3.8/getpass.py:91:26:91:57 | ControlFlowNode for fallback_getpass() | file:///usr/lib/python3.8/getpass.py:94:16:94:21 | ControlFlowNode for passwd |
-| file:///usr/lib/python3.8/getpass.py:91:26:91:57 | ControlFlowNode for fallback_getpass() | file:///usr/lib/python3.8/getpass.py:94:16:94:21 | ControlFlowNode for passwd |
-| file:///usr/lib/python3.8/getpass.py:91:26:91:57 | ControlFlowNode for fallback_getpass() | file:///usr/lib/python3.8/getpass.py:94:16:94:21 | ControlFlowNode for passwd |
-| file:///usr/lib/python3.8/getpass.py:94:16:94:21 | ControlFlowNode for passwd | test.py:44:9:44:25 | ControlFlowNode for Attribute() |
-| file:///usr/lib/python3.8/getpass.py:94:16:94:21 | ControlFlowNode for passwd | test.py:44:9:44:25 | ControlFlowNode for Attribute() |
-| file:///usr/lib/python3.8/getpass.py:94:16:94:21 | ControlFlowNode for passwd | test.py:44:9:44:25 | ControlFlowNode for Attribute() |
 | test.py:19:16:19:29 | ControlFlowNode for get_password() | test.py:20:48:20:55 | ControlFlowNode for password |
 | test.py:19:16:19:29 | ControlFlowNode for get_password() | test.py:22:58:22:65 | ControlFlowNode for password |
 | test.py:19:16:19:29 | ControlFlowNode for get_password() | test.py:23:58:23:65 | ControlFlowNode for password |
 | test.py:19:16:19:29 | ControlFlowNode for get_password() | test.py:27:40:27:47 | ControlFlowNode for password |
 | test.py:19:16:19:29 | ControlFlowNode for get_password() | test.py:30:58:30:65 | ControlFlowNode for password |
-| test.py:44:9:44:25 | ControlFlowNode for Attribute() | test.py:45:11:45:11 | ControlFlowNode for x |
 | test.py:70:14:73:5 | ControlFlowNode for Dict | test.py:74:11:74:31 | ControlFlowNode for Subscript |
 | test.py:72:21:72:37 | ControlFlowNode for Attribute | test.py:70:14:73:5 | ControlFlowNode for Dict |
 nodes
-| file:///usr/lib/python3.8/getpass.py:44:14:44:17 | ControlFlowNode for None | semmle.label | ControlFlowNode for None |
-| file:///usr/lib/python3.8/getpass.py:62:26:62:57 | ControlFlowNode for fallback_getpass() | semmle.label | ControlFlowNode for fallback_getpass() |
-| file:///usr/lib/python3.8/getpass.py:77:30:77:68 | ControlFlowNode for _raw_input() | semmle.label | ControlFlowNode for _raw_input() |
-| file:///usr/lib/python3.8/getpass.py:77:30:77:68 | ControlFlowNode for _raw_input() | semmle.label | ControlFlowNode for _raw_input() |
-| file:///usr/lib/python3.8/getpass.py:77:30:77:68 | ControlFlowNode for _raw_input() | semmle.label | ControlFlowNode for _raw_input() |
-| file:///usr/lib/python3.8/getpass.py:91:26:91:57 | ControlFlowNode for fallback_getpass() | semmle.label | ControlFlowNode for fallback_getpass() |
-| file:///usr/lib/python3.8/getpass.py:91:26:91:57 | ControlFlowNode for fallback_getpass() | semmle.label | ControlFlowNode for fallback_getpass() |
-| file:///usr/lib/python3.8/getpass.py:91:26:91:57 | ControlFlowNode for fallback_getpass() | semmle.label | ControlFlowNode for fallback_getpass() |
-| file:///usr/lib/python3.8/getpass.py:94:16:94:21 | ControlFlowNode for passwd | semmle.label | ControlFlowNode for passwd |
-| file:///usr/lib/python3.8/getpass.py:94:16:94:21 | ControlFlowNode for passwd | semmle.label | ControlFlowNode for passwd |
-| file:///usr/lib/python3.8/getpass.py:94:16:94:21 | ControlFlowNode for passwd | semmle.label | ControlFlowNode for passwd |
 | test.py:19:16:19:29 | ControlFlowNode for get_password() | semmle.label | ControlFlowNode for get_password() |
 | test.py:20:48:20:55 | ControlFlowNode for password | semmle.label | ControlFlowNode for password |
 | test.py:22:58:22:65 | ControlFlowNode for password | semmle.label | ControlFlowNode for password |
@@ -42,8 +17,6 @@ nodes
 | test.py:37:11:37:24 | ControlFlowNode for get_password() | semmle.label | ControlFlowNode for get_password() |
 | test.py:39:22:39:35 | ControlFlowNode for get_password() | semmle.label | ControlFlowNode for get_password() |
 | test.py:40:22:40:35 | ControlFlowNode for get_password() | semmle.label | ControlFlowNode for get_password() |
-| test.py:44:9:44:25 | ControlFlowNode for Attribute() | semmle.label | ControlFlowNode for Attribute() |
-| test.py:45:11:45:11 | ControlFlowNode for x | semmle.label | ControlFlowNode for x |
 | test.py:70:14:73:5 | ControlFlowNode for Dict | semmle.label | ControlFlowNode for Dict |
 | test.py:72:21:72:37 | ControlFlowNode for Attribute | semmle.label | ControlFlowNode for Attribute |
 | test.py:74:11:74:31 | ControlFlowNode for Subscript | semmle.label | ControlFlowNode for Subscript |
@@ -58,12 +31,4 @@ subpaths
 | test.py:37:11:37:24 | ControlFlowNode for get_password() | test.py:37:11:37:24 | ControlFlowNode for get_password() | test.py:37:11:37:24 | ControlFlowNode for get_password() | This expression logs $@ as clear text. | test.py:37:11:37:24 | ControlFlowNode for get_password() | sensitive data (password) |
 | test.py:39:22:39:35 | ControlFlowNode for get_password() | test.py:39:22:39:35 | ControlFlowNode for get_password() | test.py:39:22:39:35 | ControlFlowNode for get_password() | This expression logs $@ as clear text. | test.py:39:22:39:35 | ControlFlowNode for get_password() | sensitive data (password) |
 | test.py:40:22:40:35 | ControlFlowNode for get_password() | test.py:40:22:40:35 | ControlFlowNode for get_password() | test.py:40:22:40:35 | ControlFlowNode for get_password() | This expression logs $@ as clear text. | test.py:40:22:40:35 | ControlFlowNode for get_password() | sensitive data (password) |
-| test.py:45:11:45:11 | ControlFlowNode for x | file:///usr/lib/python3.8/getpass.py:44:14:44:17 | ControlFlowNode for None | test.py:45:11:45:11 | ControlFlowNode for x | This expression logs $@ as clear text. | file:///usr/lib/python3.8/getpass.py:44:14:44:17 | ControlFlowNode for None | sensitive data (password) |
-| test.py:45:11:45:11 | ControlFlowNode for x | file:///usr/lib/python3.8/getpass.py:62:26:62:57 | ControlFlowNode for fallback_getpass() | test.py:45:11:45:11 | ControlFlowNode for x | This expression logs $@ as clear text. | file:///usr/lib/python3.8/getpass.py:62:26:62:57 | ControlFlowNode for fallback_getpass() | sensitive data (password) |
-| test.py:45:11:45:11 | ControlFlowNode for x | file:///usr/lib/python3.8/getpass.py:77:30:77:68 | ControlFlowNode for _raw_input() | test.py:45:11:45:11 | ControlFlowNode for x | This expression logs $@ as clear text. | file:///usr/lib/python3.8/getpass.py:77:30:77:68 | ControlFlowNode for _raw_input() | sensitive data (password) |
-| test.py:45:11:45:11 | ControlFlowNode for x | file:///usr/lib/python3.8/getpass.py:77:30:77:68 | ControlFlowNode for _raw_input() | test.py:45:11:45:11 | ControlFlowNode for x | This expression logs $@ as clear text. | file:///usr/lib/python3.8/getpass.py:77:30:77:68 | ControlFlowNode for _raw_input() | sensitive data (password) |
-| test.py:45:11:45:11 | ControlFlowNode for x | file:///usr/lib/python3.8/getpass.py:77:30:77:68 | ControlFlowNode for _raw_input() | test.py:45:11:45:11 | ControlFlowNode for x | This expression logs $@ as clear text. | file:///usr/lib/python3.8/getpass.py:77:30:77:68 | ControlFlowNode for _raw_input() | sensitive data (password) |
-| test.py:45:11:45:11 | ControlFlowNode for x | file:///usr/lib/python3.8/getpass.py:91:26:91:57 | ControlFlowNode for fallback_getpass() | test.py:45:11:45:11 | ControlFlowNode for x | This expression logs $@ as clear text. | file:///usr/lib/python3.8/getpass.py:91:26:91:57 | ControlFlowNode for fallback_getpass() | sensitive data (password) |
-| test.py:45:11:45:11 | ControlFlowNode for x | file:///usr/lib/python3.8/getpass.py:91:26:91:57 | ControlFlowNode for fallback_getpass() | test.py:45:11:45:11 | ControlFlowNode for x | This expression logs $@ as clear text. | file:///usr/lib/python3.8/getpass.py:91:26:91:57 | ControlFlowNode for fallback_getpass() | sensitive data (password) |
-| test.py:45:11:45:11 | ControlFlowNode for x | file:///usr/lib/python3.8/getpass.py:91:26:91:57 | ControlFlowNode for fallback_getpass() | test.py:45:11:45:11 | ControlFlowNode for x | This expression logs $@ as clear text. | file:///usr/lib/python3.8/getpass.py:91:26:91:57 | ControlFlowNode for fallback_getpass() | sensitive data (password) |
 | test.py:74:11:74:31 | ControlFlowNode for Subscript | test.py:72:21:72:37 | ControlFlowNode for Attribute | test.py:74:11:74:31 | ControlFlowNode for Subscript | This expression logs $@ as clear text. | test.py:72:21:72:37 | ControlFlowNode for Attribute | sensitive data (password) |

From 9195b73d8447b23670cb8433338af7be14073e8a Mon Sep 17 00:00:00 2001
From: Rasmus Wriedt Larsen <rasmuswl@github.com>
Date: Tue, 22 Nov 2022 14:08:16 +0100
Subject: [PATCH 0546/1420] Python: Model `getpass.getpass` as source of
 passwords

---
 .../python/dataflow/new/SensitiveDataSources.qll     | 12 ++++++++++++
 python/ql/src/change-notes/2022-11-22-getpass.md     |  4 ++++
 .../CleartextLogging.expected                        |  4 ++++
 3 files changed, 20 insertions(+)
 create mode 100644 python/ql/src/change-notes/2022-11-22-getpass.md

diff --git a/python/ql/lib/semmle/python/dataflow/new/SensitiveDataSources.qll b/python/ql/lib/semmle/python/dataflow/new/SensitiveDataSources.qll
index e5ee3e346b5..926ae46d33e 100644
--- a/python/ql/lib/semmle/python/dataflow/new/SensitiveDataSources.qll
+++ b/python/ql/lib/semmle/python/dataflow/new/SensitiveDataSources.qll
@@ -8,6 +8,7 @@ private import semmle.python.dataflow.new.DataFlow
 // Need to import `semmle.python.Frameworks` since frameworks can extend `SensitiveDataSource::Range`
 private import semmle.python.Frameworks
 private import semmle.python.security.internal.SensitiveDataHeuristics as SensitiveDataHeuristics
+private import semmle.python.ApiGraphs
 
 // We export these explicitly, so we don't also export the `HeuristicNames` module.
 class SensitiveDataClassification = SensitiveDataHeuristics::SensitiveDataClassification;
@@ -322,6 +323,17 @@ private module SensitiveDataModeling {
 
     override SensitiveDataClassification getClassification() { result = classification }
   }
+
+  /**
+   * A call to `getpass.getpass`, see https://docs.python.org/3.10/library/getpass.html#getpass.getpass
+   */
+  class GetPassCall extends SensitiveDataSource::Range, API::CallNode {
+    GetPassCall() { this = API::moduleImport("getpass").getMember("getpass").getACall() }
+
+    override SensitiveDataClassification getClassification() {
+      result = SensitiveDataClassification::password()
+    }
+  }
 }
 
 predicate sensitiveDataExtraStepForCalls = SensitiveDataModeling::extraStepForCalls/2;
diff --git a/python/ql/src/change-notes/2022-11-22-getpass.md b/python/ql/src/change-notes/2022-11-22-getpass.md
new file mode 100644
index 00000000000..d9df302bc63
--- /dev/null
+++ b/python/ql/src/change-notes/2022-11-22-getpass.md
@@ -0,0 +1,4 @@
+---
+ category: minorAnalysis
+---
+ * Added modeling of `getpass.getpass` as a source of passwords, which will be an additional source for `py/clear-text-logging-sensitive-data`, `py/clear-text-storage-sensitive-data`, and `py/weak-sensitive-data-hashing`.
diff --git a/python/ql/test/query-tests/Security/CWE-312-CleartextLogging/CleartextLogging.expected b/python/ql/test/query-tests/Security/CWE-312-CleartextLogging/CleartextLogging.expected
index 00de056f78b..b2162352bae 100644
--- a/python/ql/test/query-tests/Security/CWE-312-CleartextLogging/CleartextLogging.expected
+++ b/python/ql/test/query-tests/Security/CWE-312-CleartextLogging/CleartextLogging.expected
@@ -4,6 +4,7 @@ edges
 | test.py:19:16:19:29 | ControlFlowNode for get_password() | test.py:23:58:23:65 | ControlFlowNode for password |
 | test.py:19:16:19:29 | ControlFlowNode for get_password() | test.py:27:40:27:47 | ControlFlowNode for password |
 | test.py:19:16:19:29 | ControlFlowNode for get_password() | test.py:30:58:30:65 | ControlFlowNode for password |
+| test.py:44:9:44:25 | ControlFlowNode for Attribute() | test.py:45:11:45:11 | ControlFlowNode for x |
 | test.py:70:14:73:5 | ControlFlowNode for Dict | test.py:74:11:74:31 | ControlFlowNode for Subscript |
 | test.py:72:21:72:37 | ControlFlowNode for Attribute | test.py:70:14:73:5 | ControlFlowNode for Dict |
 nodes
@@ -17,6 +18,8 @@ nodes
 | test.py:37:11:37:24 | ControlFlowNode for get_password() | semmle.label | ControlFlowNode for get_password() |
 | test.py:39:22:39:35 | ControlFlowNode for get_password() | semmle.label | ControlFlowNode for get_password() |
 | test.py:40:22:40:35 | ControlFlowNode for get_password() | semmle.label | ControlFlowNode for get_password() |
+| test.py:44:9:44:25 | ControlFlowNode for Attribute() | semmle.label | ControlFlowNode for Attribute() |
+| test.py:45:11:45:11 | ControlFlowNode for x | semmle.label | ControlFlowNode for x |
 | test.py:70:14:73:5 | ControlFlowNode for Dict | semmle.label | ControlFlowNode for Dict |
 | test.py:72:21:72:37 | ControlFlowNode for Attribute | semmle.label | ControlFlowNode for Attribute |
 | test.py:74:11:74:31 | ControlFlowNode for Subscript | semmle.label | ControlFlowNode for Subscript |
@@ -31,4 +34,5 @@ subpaths
 | test.py:37:11:37:24 | ControlFlowNode for get_password() | test.py:37:11:37:24 | ControlFlowNode for get_password() | test.py:37:11:37:24 | ControlFlowNode for get_password() | This expression logs $@ as clear text. | test.py:37:11:37:24 | ControlFlowNode for get_password() | sensitive data (password) |
 | test.py:39:22:39:35 | ControlFlowNode for get_password() | test.py:39:22:39:35 | ControlFlowNode for get_password() | test.py:39:22:39:35 | ControlFlowNode for get_password() | This expression logs $@ as clear text. | test.py:39:22:39:35 | ControlFlowNode for get_password() | sensitive data (password) |
 | test.py:40:22:40:35 | ControlFlowNode for get_password() | test.py:40:22:40:35 | ControlFlowNode for get_password() | test.py:40:22:40:35 | ControlFlowNode for get_password() | This expression logs $@ as clear text. | test.py:40:22:40:35 | ControlFlowNode for get_password() | sensitive data (password) |
+| test.py:45:11:45:11 | ControlFlowNode for x | test.py:44:9:44:25 | ControlFlowNode for Attribute() | test.py:45:11:45:11 | ControlFlowNode for x | This expression logs $@ as clear text. | test.py:44:9:44:25 | ControlFlowNode for Attribute() | sensitive data (password) |
 | test.py:74:11:74:31 | ControlFlowNode for Subscript | test.py:72:21:72:37 | ControlFlowNode for Attribute | test.py:74:11:74:31 | ControlFlowNode for Subscript | This expression logs $@ as clear text. | test.py:72:21:72:37 | ControlFlowNode for Attribute | sensitive data (password) |

From 2e1a78e1bfa2e8c412a1651c102c4f15e722bd34 Mon Sep 17 00:00:00 2001
From: Tony Torralba <atorralba@users.noreply.github.com>
Date: Tue, 22 Nov 2022 14:44:05 +0100
Subject: [PATCH 0547/1420] Add models for NSData and NSMutableData

---
 .../codeql/swift/dataflow/ExternalFlow.qll    |   1 +
 .../frameworks/StandardLibrary/NSData.qll     |  92 +++++
 .../dataflow/flowsources/FlowSources.expected |   4 +
 .../dataflow/flowsources/nsdata.swift         |  20 +
 .../dataflow/taint/LocalTaint.expected        |   3 +
 .../dataflow/taint/Taint.expected             | 363 ++++++++++++++++++
 .../library-tests/dataflow/taint/nsdata.swift | 141 +++++++
 .../dataflow/taint/nsmutabledata.swift        |  50 +++
 8 files changed, 674 insertions(+)
 create mode 100644 swift/ql/lib/codeql/swift/frameworks/StandardLibrary/NSData.qll
 create mode 100644 swift/ql/test/library-tests/dataflow/flowsources/nsdata.swift
 create mode 100644 swift/ql/test/library-tests/dataflow/taint/nsdata.swift
 create mode 100644 swift/ql/test/library-tests/dataflow/taint/nsmutabledata.swift

diff --git a/swift/ql/lib/codeql/swift/dataflow/ExternalFlow.qll b/swift/ql/lib/codeql/swift/dataflow/ExternalFlow.qll
index 4d563525830..9e0433958ba 100644
--- a/swift/ql/lib/codeql/swift/dataflow/ExternalFlow.qll
+++ b/swift/ql/lib/codeql/swift/dataflow/ExternalFlow.qll
@@ -81,6 +81,7 @@ private module Frameworks {
   private import codeql.swift.frameworks.StandardLibrary.CustomUrlSchemes
   private import codeql.swift.frameworks.StandardLibrary.Data
   private import codeql.swift.frameworks.StandardLibrary.InputStream
+  private import codeql.swift.frameworks.StandardLibrary.NSData
   private import codeql.swift.frameworks.StandardLibrary.String
   private import codeql.swift.frameworks.StandardLibrary.Url
   private import codeql.swift.frameworks.StandardLibrary.UrlSession
diff --git a/swift/ql/lib/codeql/swift/frameworks/StandardLibrary/NSData.qll b/swift/ql/lib/codeql/swift/frameworks/StandardLibrary/NSData.qll
new file mode 100644
index 00000000000..4fd8cba33fc
--- /dev/null
+++ b/swift/ql/lib/codeql/swift/frameworks/StandardLibrary/NSData.qll
@@ -0,0 +1,92 @@
+/** Provides classes and models to work with `NSData`-related objects. */
+
+import swift
+private import codeql.swift.dataflow.DataFlow
+private import codeql.swift.dataflow.ExternalFlow
+private import codeql.swift.dataflow.FlowSteps
+
+/** The class `NSData`. */
+class NsData extends ClassDecl {
+  NsData() { this.getFullName() = "NSData" }
+}
+
+/** The class `NSMutableData`. */
+class NsMutableData extends ClassDecl {
+  NsMutableData() { this.getFullName() = "NSMutableData" }
+}
+
+private class NsDataSources extends SourceModelCsv {
+  override predicate row(string row) {
+    row =
+      [
+        ";NSData;true;init(contentsOf:);;;ReturnValue;remote",
+        ";NSData;true;init(contentsOf:options:);;;ReturnValue;remote"
+      ]
+  }
+}
+
+private class NsDataSummaries extends SummaryModelCsv {
+  override predicate row(string row) {
+    row =
+      [
+        ";NSData;true;init(bytes:length:);;;Argument[0];ReturnValue;taint",
+        ";NSData;true;init(bytesNoCopy:length:);;;Argument[0];ReturnValue;taint",
+        ";NSData;true;init(bytesNoCopy:length:deallocator:);;;Argument[0];ReturnValue;taint",
+        ";NSData;true;init(bytesNoCopy:length:freeWhenDone:);;;Argument[0];ReturnValue;taint",
+        ";NSData;true;init(data:);;;Argument[0];ReturnValue;taint",
+        ";NSData;true;init(contentsOfFile:);;;Argument[0];ReturnValue;taint",
+        ";NSData;true;init(contentsOfFile:options:);;;Argument[0];ReturnValue;taint",
+        ";NSData;true;init(contentsOf:);;;Argument[0];ReturnValue;taint",
+        ";NSData;true;init(contentsOf:options:);;;Argument[0];ReturnValue;taint",
+        ";NSData;true;init(contentsOfMappedFile:);;;Argument[0];ReturnValue;taint",
+        ";NSData;true;init(base64Encoded:options:);;;Argument[0];ReturnValue;taint",
+        ";NSData;true;init(base64Encoding:);;;Argument[0];ReturnValue;taint",
+        ";NSData;true;base64EncodedData(options:);;;Argument[-1];ReturnValue;taint",
+        ";NSData;true;base64EncodedString(options:);;;Argument[-1];ReturnValue;taint",
+        ";NSData;true;base64Encoding();;;Argument[-1];ReturnValue;taint",
+        ";NSData;true;dataWithContentsOfMappedFile(_:);;;Argument[0];ReturnValue;taint",
+        // TODO: Needs block flow
+        // ";NSData;true;enumerateBytes(_:);;;Argument[-1];Argument[0].Parameter[0];taint"
+        ";NSData;true;getBytes(_:);;;Argument[-1];Argument[0];taint",
+        ";NSData;true;getBytes(_:length:);;;Argument[-1];Argument[0];taint",
+        ";NSData;true;getBytes(_:range:);;;Argument[-1];Argument[0];taint",
+        ";NSData;true;subdata(with:);;;Argument[-1];ReturnValue;taint",
+        ";NSData;true;compressed(using:);;;Argument[-1];ReturnValue;taint",
+        ";NSData;true;decompressed(using:);;;Argument[-1];ReturnValue;taint"
+      ]
+  }
+}
+
+private class NsMutableDataSummaries extends SummaryModelCsv {
+  override predicate row(string row) {
+    row =
+      [
+        ";NSMutableData;true;append(_:length:);;;Argument[0];Argument[-1];taint",
+        ";NSMutableData;true;append(_:);;;Argument[0];Argument[-1];taint",
+        ";NSMutableData;true;replaceBytes(in:withBytes:);;;Argument[1];Argument[-1];taint",
+        ";NSMutableData;true;replaceBytes(in:withBytes:length:);;;Argument[1];Argument[-1];taint",
+        ";NSMutableData;true;setData(_:);;;Argument[0];Argument[-1];taint",
+      ]
+  }
+}
+
+/** A content implying that, if a `NSData` object is tainted, some of its fields are also tainted. */
+private class NsDataTaintedFields extends TaintInheritingContent, DataFlow::Content::FieldContent {
+  NsDataTaintedFields() {
+    exists(FieldDecl f | this.getField() = f |
+      f.getEnclosingDecl() instanceof NsData and
+      f.getName() = ["bytes", "description"]
+    )
+  }
+}
+
+/** A content implying that, if a `NSMutableData` object is tainted, some of its fields are also tainted. */
+private class NsMutableDataTaintedFields extends TaintInheritingContent,
+  DataFlow::Content::FieldContent {
+  NsMutableDataTaintedFields() {
+    exists(FieldDecl f | this.getField() = f |
+      f.getEnclosingDecl() instanceof NsMutableData and
+      f.getName() = "mutableBytes"
+    )
+  }
+}
diff --git a/swift/ql/test/library-tests/dataflow/flowsources/FlowSources.expected b/swift/ql/test/library-tests/dataflow/flowsources/FlowSources.expected
index d3deab14155..01c18633b5d 100644
--- a/swift/ql/test/library-tests/dataflow/flowsources/FlowSources.expected
+++ b/swift/ql/test/library-tests/dataflow/flowsources/FlowSources.expected
@@ -3,6 +3,10 @@
 | customurlschemes.swift:38:52:38:62 | url | external |
 | customurlschemes.swift:43:9:43:28 | ...[...] | Remote URL in UIApplicationDelegate.application.launchOptions |
 | customurlschemes.swift:48:9:48:28 | ...[...] | Remote URL in UIApplicationDelegate.application.launchOptions |
+| nsdata.swift:18:17:18:17 | call to init(contentsOf:) | external |
+| nsdata.swift:18:17:18:40 | call to init(contentsOf:) | external |
+| nsdata.swift:19:17:19:17 | call to init(contentsOf:options:) | external |
+| nsdata.swift:19:17:19:53 | call to init(contentsOf:options:) | external |
 | string.swift:56:21:56:21 | call to init(contentsOf:) | external |
 | string.swift:56:21:56:44 | call to init(contentsOf:) | external |
 | string.swift:57:21:57:21 | call to init(contentsOf:encoding:) | external |
diff --git a/swift/ql/test/library-tests/dataflow/flowsources/nsdata.swift b/swift/ql/test/library-tests/dataflow/flowsources/nsdata.swift
new file mode 100644
index 00000000000..d1258f10364
--- /dev/null
+++ b/swift/ql/test/library-tests/dataflow/flowsources/nsdata.swift
@@ -0,0 +1,20 @@
+// --- stubs ---
+
+struct URL
+{
+	init?(string: String) {}
+}
+
+class NSData {
+    struct ReadingOptions : OptionSet { let rawValue: Int }
+    init?(contentsOf: URL) {}
+    init?(contentsOf: URL, options: NSData.ReadingOptions) {}
+}
+
+// --- tests ---
+
+func testNSData() {
+    let url = URL(string: "http://example.com/")
+    let _ = try NSData(contentsOf: url!) // SOURCE
+    let _ = try NSData(contentsOf: url!, options: []) // SOURCE
+}
diff --git a/swift/ql/test/library-tests/dataflow/taint/LocalTaint.expected b/swift/ql/test/library-tests/dataflow/taint/LocalTaint.expected
index c5b7944178a..e2c893738d3 100644
--- a/swift/ql/test/library-tests/dataflow/taint/LocalTaint.expected
+++ b/swift/ql/test/library-tests/dataflow/taint/LocalTaint.expected
@@ -1,3 +1,6 @@
+| nsdata.swift:139:15:139:15 | nsDataTainted24 | nsdata.swift:139:15:139:31 | .bytes |
+| nsdata.swift:140:15:140:15 | nsDataTainted24 | nsdata.swift:140:15:140:31 | .description |
+| nsmutabledata.swift:49:15:49:15 | nsMutableDataTainted6 | nsmutabledata.swift:49:15:49:37 | .mutableBytes |
 | string.swift:7:13:7:13 |  | string.swift:7:13:7:13 | [post]  |
 | string.swift:7:13:7:13 |  | string.swift:7:14:7:14 | [post] &... |
 | string.swift:7:13:7:13 | TapExpr | string.swift:7:13:7:13 | "..." |
diff --git a/swift/ql/test/library-tests/dataflow/taint/Taint.expected b/swift/ql/test/library-tests/dataflow/taint/Taint.expected
index b562c44bdc5..16e2f0bec8d 100644
--- a/swift/ql/test/library-tests/dataflow/taint/Taint.expected
+++ b/swift/ql/test/library-tests/dataflow/taint/Taint.expected
@@ -1,5 +1,141 @@
 edges
 | file://:0:0:0:0 | [summary] to write: argument 1.parameter 0 in dataTask(with:completionHandler:) :  | url.swift:120:61:120:61 | data :  |
+| nsdata.swift:22:9:22:9 | self :  | file://:0:0:0:0 | .bytes :  |
+| nsdata.swift:23:9:23:9 | self :  | file://:0:0:0:0 | .description :  |
+| nsdata.swift:24:5:24:50 | [summary param] 0 in init(bytes:length:) :  | file://:0:0:0:0 | [summary] to write: return (return) in init(bytes:length:) :  |
+| nsdata.swift:25:5:25:68 | [summary param] 0 in init(bytesNoCopy:length:) :  | file://:0:0:0:0 | [summary] to write: return (return) in init(bytesNoCopy:length:) :  |
+| nsdata.swift:26:5:26:130 | [summary param] 0 in init(bytesNoCopy:length:deallocator:) :  | file://:0:0:0:0 | [summary] to write: return (return) in init(bytesNoCopy:length:deallocator:) :  |
+| nsdata.swift:27:5:27:90 | [summary param] 0 in init(bytesNoCopy:length:freeWhenDone:) :  | file://:0:0:0:0 | [summary] to write: return (return) in init(bytesNoCopy:length:freeWhenDone:) :  |
+| nsdata.swift:28:5:28:23 | [summary param] 0 in init(data:) :  | file://:0:0:0:0 | [summary] to write: return (return) in init(data:) :  |
+| nsdata.swift:29:5:29:36 | [summary param] 0 in init(contentsOfFile:) :  | file://:0:0:0:0 | [summary] to write: return (return) in init(contentsOfFile:) :  |
+| nsdata.swift:30:5:30:93 | [summary param] 0 in init(contentsOfFile:options:) :  | file://:0:0:0:0 | [summary] to write: return (return) in init(contentsOfFile:options:) :  |
+| nsdata.swift:31:5:31:29 | [summary param] 0 in init(contentsOf:) :  | file://:0:0:0:0 | [summary] to write: return (return) in init(contentsOf:) :  |
+| nsdata.swift:32:5:32:61 | [summary param] 0 in init(contentsOf:options:) :  | file://:0:0:0:0 | [summary] to write: return (return) in init(contentsOf:options:) :  |
+| nsdata.swift:33:5:33:47 | [summary param] 0 in init(contentsOfMappedFile:) :  | file://:0:0:0:0 | [summary] to write: return (return) in init(contentsOfMappedFile:) :  |
+| nsdata.swift:34:5:34:88 | [summary param] 0 in init(base64Encoded:options:) :  | file://:0:0:0:0 | [summary] to write: return (return) in init(base64Encoded:options:) :  |
+| nsdata.swift:35:5:35:92 | [summary param] 0 in init(base64Encoded:options:) :  | file://:0:0:0:0 | [summary] to write: return (return) in init(base64Encoded:options:) :  |
+| nsdata.swift:36:5:36:49 | [summary param] 0 in init(base64Encoding:) :  | file://:0:0:0:0 | [summary] to write: return (return) in init(base64Encoding:) :  |
+| nsdata.swift:37:5:37:98 | [summary param] this in base64EncodedData(options:) :  | file://:0:0:0:0 | [summary] to write: return (return) in base64EncodedData(options:) :  |
+| nsdata.swift:38:5:38:96 | [summary param] this in base64EncodedString(options:) :  | file://:0:0:0:0 | [summary] to write: return (return) in base64EncodedString(options:) :  |
+| nsdata.swift:39:5:39:49 | [summary param] this in base64Encoding() :  | file://:0:0:0:0 | [summary] to write: return (return) in base64Encoding() :  |
+| nsdata.swift:40:5:40:82 | [summary param] 0 in dataWithContentsOfMappedFile(_:) :  | file://:0:0:0:0 | [summary] to write: return (return) in dataWithContentsOfMappedFile(_:) :  |
+| nsdata.swift:42:5:42:55 | [summary param] this in getBytes(_:) :  | file://:0:0:0:0 | [summary] to write: argument 0 in getBytes(_:) :  |
+| nsdata.swift:43:5:43:68 | [summary param] this in getBytes(_:length:) :  | file://:0:0:0:0 | [summary] to write: argument 0 in getBytes(_:length:) :  |
+| nsdata.swift:44:5:44:71 | [summary param] this in getBytes(_:range:) :  | file://:0:0:0:0 | [summary] to write: argument 0 in getBytes(_:range:) :  |
+| nsdata.swift:45:5:45:65 | [summary param] this in subdata(with:) :  | file://:0:0:0:0 | [summary] to write: return (return) in subdata(with:) :  |
+| nsdata.swift:46:5:46:89 | [summary param] this in compressed(using:) :  | file://:0:0:0:0 | [summary] to write: return (return) in compressed(using:) :  |
+| nsdata.swift:47:5:47:91 | [summary param] this in decompressed(using:) :  | file://:0:0:0:0 | [summary] to write: return (return) in decompressed(using:) :  |
+| nsdata.swift:57:26:57:80 | call to init(bytes:length:) :  | nsdata.swift:58:15:58:15 | nsDataTainted1 |
+| nsdata.swift:57:40:57:47 | call to source() :  | nsdata.swift:24:5:24:50 | [summary param] 0 in init(bytes:length:) :  |
+| nsdata.swift:57:40:57:47 | call to source() :  | nsdata.swift:57:26:57:80 | call to init(bytes:length:) :  |
+| nsdata.swift:60:26:60:93 | call to init(bytesNoCopy:length:) :  | nsdata.swift:61:15:61:15 | nsDataTainted2 |
+| nsdata.swift:60:46:60:53 | call to source() :  | nsdata.swift:25:5:25:68 | [summary param] 0 in init(bytesNoCopy:length:) :  |
+| nsdata.swift:60:46:60:53 | call to source() :  | nsdata.swift:60:26:60:93 | call to init(bytesNoCopy:length:) :  |
+| nsdata.swift:63:26:63:111 | call to init(bytesNoCopy:length:deallocator:) :  | nsdata.swift:64:15:64:15 | nsDataTainted3 |
+| nsdata.swift:63:46:63:53 | call to source() :  | nsdata.swift:26:5:26:130 | [summary param] 0 in init(bytesNoCopy:length:deallocator:) :  |
+| nsdata.swift:63:46:63:53 | call to source() :  | nsdata.swift:63:26:63:111 | call to init(bytesNoCopy:length:deallocator:) :  |
+| nsdata.swift:66:26:66:113 | call to init(bytesNoCopy:length:freeWhenDone:) :  | nsdata.swift:67:15:67:15 | nsDataTainted4 |
+| nsdata.swift:66:46:66:53 | call to source() :  | nsdata.swift:27:5:27:90 | [summary param] 0 in init(bytesNoCopy:length:freeWhenDone:) :  |
+| nsdata.swift:66:46:66:53 | call to source() :  | nsdata.swift:66:26:66:113 | call to init(bytesNoCopy:length:freeWhenDone:) :  |
+| nsdata.swift:69:26:69:56 | call to init(data:) :  | nsdata.swift:70:15:70:15 | nsDataTainted5 |
+| nsdata.swift:69:39:69:46 | call to source() :  | nsdata.swift:28:5:28:23 | [summary param] 0 in init(data:) :  |
+| nsdata.swift:69:39:69:46 | call to source() :  | nsdata.swift:69:26:69:56 | call to init(data:) :  |
+| nsdata.swift:72:26:72:68 | call to init(contentsOfFile:) :  | nsdata.swift:73:15:73:29 | ...! |
+| nsdata.swift:72:49:72:56 | call to source() :  | nsdata.swift:29:5:29:36 | [summary param] 0 in init(contentsOfFile:) :  |
+| nsdata.swift:72:49:72:56 | call to source() :  | nsdata.swift:72:26:72:68 | call to init(contentsOfFile:) :  |
+| nsdata.swift:75:26:75:81 | call to init(contentsOfFile:options:) :  | nsdata.swift:76:15:76:15 | nsDataTainted7 |
+| nsdata.swift:75:49:75:56 | call to source() :  | nsdata.swift:30:5:30:93 | [summary param] 0 in init(contentsOfFile:options:) :  |
+| nsdata.swift:75:49:75:56 | call to source() :  | nsdata.swift:75:26:75:81 | call to init(contentsOfFile:options:) :  |
+| nsdata.swift:78:26:78:61 | call to init(contentsOf:) :  | nsdata.swift:79:15:79:29 | ...! |
+| nsdata.swift:78:45:78:52 | call to source() :  | nsdata.swift:31:5:31:29 | [summary param] 0 in init(contentsOf:) :  |
+| nsdata.swift:78:45:78:52 | call to source() :  | nsdata.swift:78:26:78:61 | call to init(contentsOf:) :  |
+| nsdata.swift:81:26:81:74 | call to init(contentsOf:options:) :  | nsdata.swift:82:15:82:29 | ...! |
+| nsdata.swift:81:45:81:52 | call to source() :  | nsdata.swift:32:5:32:61 | [summary param] 0 in init(contentsOf:options:) :  |
+| nsdata.swift:81:45:81:52 | call to source() :  | nsdata.swift:81:26:81:74 | call to init(contentsOf:options:) :  |
+| nsdata.swift:84:27:84:75 | call to init(contentsOfMappedFile:) :  | nsdata.swift:85:15:85:30 | ...! |
+| nsdata.swift:84:56:84:63 | call to source() :  | nsdata.swift:33:5:33:47 | [summary param] 0 in init(contentsOfMappedFile:) :  |
+| nsdata.swift:84:56:84:63 | call to source() :  | nsdata.swift:84:27:84:75 | call to init(contentsOfMappedFile:) :  |
+| nsdata.swift:87:27:87:79 | call to init(base64Encoded:options:) :  | nsdata.swift:88:15:88:30 | ...! |
+| nsdata.swift:87:49:87:56 | call to source() :  | nsdata.swift:34:5:34:88 | [summary param] 0 in init(base64Encoded:options:) :  |
+| nsdata.swift:87:49:87:56 | call to source() :  | nsdata.swift:87:27:87:79 | call to init(base64Encoded:options:) :  |
+| nsdata.swift:89:27:89:81 | call to init(base64Encoded:options:) :  | nsdata.swift:90:15:90:30 | ...! |
+| nsdata.swift:89:49:89:56 | call to source() :  | nsdata.swift:35:5:35:92 | [summary param] 0 in init(base64Encoded:options:) :  |
+| nsdata.swift:89:49:89:56 | call to source() :  | nsdata.swift:89:27:89:81 | call to init(base64Encoded:options:) :  |
+| nsdata.swift:92:27:92:69 | call to init(base64Encoding:) :  | nsdata.swift:93:15:93:30 | ...! |
+| nsdata.swift:92:50:92:57 | call to source() :  | nsdata.swift:36:5:36:49 | [summary param] 0 in init(base64Encoding:) :  |
+| nsdata.swift:92:50:92:57 | call to source() :  | nsdata.swift:92:27:92:69 | call to init(base64Encoding:) :  |
+| nsdata.swift:95:27:95:34 | call to source() :  | nsdata.swift:96:15:96:15 | nsDataTainted14 :  |
+| nsdata.swift:95:27:95:34 | call to source() :  | nsdata.swift:97:15:97:15 | nsDataTainted14 :  |
+| nsdata.swift:96:15:96:15 | nsDataTainted14 :  | nsdata.swift:37:5:37:98 | [summary param] this in base64EncodedData(options:) :  |
+| nsdata.swift:96:15:96:15 | nsDataTainted14 :  | nsdata.swift:96:15:96:49 | call to base64EncodedData(options:) |
+| nsdata.swift:97:15:97:15 | nsDataTainted14 :  | nsdata.swift:37:5:37:98 | [summary param] this in base64EncodedData(options:) :  |
+| nsdata.swift:97:15:97:15 | nsDataTainted14 :  | nsdata.swift:97:15:97:60 | call to base64EncodedData(options:) |
+| nsdata.swift:99:27:99:34 | call to source() :  | nsdata.swift:100:15:100:15 | nsDataTainted15 :  |
+| nsdata.swift:99:27:99:34 | call to source() :  | nsdata.swift:101:15:101:15 | nsDataTainted15 :  |
+| nsdata.swift:100:15:100:15 | nsDataTainted15 :  | nsdata.swift:38:5:38:96 | [summary param] this in base64EncodedString(options:) :  |
+| nsdata.swift:100:15:100:15 | nsDataTainted15 :  | nsdata.swift:100:15:100:51 | call to base64EncodedString(options:) |
+| nsdata.swift:101:15:101:15 | nsDataTainted15 :  | nsdata.swift:38:5:38:96 | [summary param] this in base64EncodedString(options:) :  |
+| nsdata.swift:101:15:101:15 | nsDataTainted15 :  | nsdata.swift:101:15:101:62 | call to base64EncodedString(options:) |
+| nsdata.swift:103:27:103:34 | call to source() :  | nsdata.swift:104:15:104:15 | nsDataTainted16 :  |
+| nsdata.swift:104:15:104:15 | nsDataTainted16 :  | nsdata.swift:39:5:39:49 | [summary param] this in base64Encoding() :  |
+| nsdata.swift:104:15:104:15 | nsDataTainted16 :  | nsdata.swift:104:15:104:46 | call to base64Encoding() |
+| nsdata.swift:106:15:106:70 | call to dataWithContentsOfMappedFile(_:) :  | nsdata.swift:106:15:106:71 | ...! |
+| nsdata.swift:106:51:106:58 | call to source() :  | nsdata.swift:40:5:40:82 | [summary param] 0 in dataWithContentsOfMappedFile(_:) :  |
+| nsdata.swift:106:51:106:58 | call to source() :  | nsdata.swift:106:15:106:70 | call to dataWithContentsOfMappedFile(_:) :  |
+| nsdata.swift:113:27:113:34 | call to source() :  | nsdata.swift:115:5:115:5 | nsDataTainted18 :  |
+| nsdata.swift:115:5:115:5 | nsDataTainted18 :  | nsdata.swift:42:5:42:55 | [summary param] this in getBytes(_:) :  |
+| nsdata.swift:115:5:115:5 | nsDataTainted18 :  | nsdata.swift:115:30:115:30 | [post] bufferTainted18 :  |
+| nsdata.swift:115:30:115:30 | [post] bufferTainted18 :  | nsdata.swift:116:15:116:15 | bufferTainted18 |
+| nsdata.swift:118:27:118:34 | call to source() :  | nsdata.swift:120:5:120:5 | nsDataTainted19 :  |
+| nsdata.swift:120:5:120:5 | nsDataTainted19 :  | nsdata.swift:43:5:43:68 | [summary param] this in getBytes(_:length:) :  |
+| nsdata.swift:120:5:120:5 | nsDataTainted19 :  | nsdata.swift:120:30:120:30 | [post] bufferTainted19 :  |
+| nsdata.swift:120:30:120:30 | [post] bufferTainted19 :  | nsdata.swift:121:15:121:15 | bufferTainted19 |
+| nsdata.swift:123:27:123:34 | call to source() :  | nsdata.swift:125:5:125:5 | nsDataTainted20 :  |
+| nsdata.swift:125:5:125:5 | nsDataTainted20 :  | nsdata.swift:44:5:44:71 | [summary param] this in getBytes(_:range:) :  |
+| nsdata.swift:125:5:125:5 | nsDataTainted20 :  | nsdata.swift:125:30:125:30 | [post] bufferTainted20 :  |
+| nsdata.swift:125:30:125:30 | [post] bufferTainted20 :  | nsdata.swift:126:15:126:15 | bufferTainted20 |
+| nsdata.swift:128:27:128:34 | call to source() :  | nsdata.swift:129:15:129:15 | nsDataTainted21 :  |
+| nsdata.swift:129:15:129:15 | nsDataTainted21 :  | nsdata.swift:45:5:45:65 | [summary param] this in subdata(with:) :  |
+| nsdata.swift:129:15:129:15 | nsDataTainted21 :  | nsdata.swift:129:15:129:54 | call to subdata(with:) |
+| nsdata.swift:131:27:131:34 | call to source() :  | nsdata.swift:132:15:132:15 | nsDataTainted22 :  |
+| nsdata.swift:132:15:132:15 | nsDataTainted22 :  | nsdata.swift:46:5:46:89 | [summary param] this in compressed(using:) :  |
+| nsdata.swift:132:15:132:15 | nsDataTainted22 :  | nsdata.swift:132:15:132:81 | call to compressed(using:) |
+| nsdata.swift:134:27:134:34 | call to source() :  | nsdata.swift:135:15:135:15 | nsDataTainted23 :  |
+| nsdata.swift:135:15:135:15 | nsDataTainted23 :  | nsdata.swift:47:5:47:91 | [summary param] this in decompressed(using:) :  |
+| nsdata.swift:135:15:135:15 | nsDataTainted23 :  | nsdata.swift:135:15:135:83 | call to decompressed(using:) |
+| nsdata.swift:138:27:138:34 | call to source() :  | nsdata.swift:139:15:139:15 | nsDataTainted24 :  |
+| nsdata.swift:138:27:138:34 | call to source() :  | nsdata.swift:139:15:139:31 | .bytes |
+| nsdata.swift:138:27:138:34 | call to source() :  | nsdata.swift:140:15:140:15 | nsDataTainted24 :  |
+| nsdata.swift:138:27:138:34 | call to source() :  | nsdata.swift:140:15:140:31 | .description |
+| nsdata.swift:139:15:139:15 | nsDataTainted24 :  | nsdata.swift:22:9:22:9 | self :  |
+| nsdata.swift:139:15:139:15 | nsDataTainted24 :  | nsdata.swift:139:15:139:31 | .bytes |
+| nsdata.swift:140:15:140:15 | nsDataTainted24 :  | nsdata.swift:23:9:23:9 | self :  |
+| nsdata.swift:140:15:140:15 | nsDataTainted24 :  | nsdata.swift:140:15:140:31 | .description |
+| nsmutabledata.swift:13:9:13:9 | self :  | file://:0:0:0:0 | .mutableBytes :  |
+| nsmutabledata.swift:14:5:14:58 | [summary param] 0 in append(_:length:) :  | file://:0:0:0:0 | [summary] to write: argument this in append(_:length:) :  |
+| nsmutabledata.swift:15:5:15:33 | [summary param] 0 in append(_:) :  | file://:0:0:0:0 | [summary] to write: argument this in append(_:) :  |
+| nsmutabledata.swift:16:5:16:78 | [summary param] 1 in replaceBytes(in:withBytes:) :  | file://:0:0:0:0 | [summary] to write: argument this in replaceBytes(in:withBytes:) :  |
+| nsmutabledata.swift:17:5:17:121 | [summary param] 1 in replaceBytes(in:withBytes:length:) :  | file://:0:0:0:0 | [summary] to write: argument this in replaceBytes(in:withBytes:length:) :  |
+| nsmutabledata.swift:18:5:18:33 | [summary param] 0 in setData(_:) :  | file://:0:0:0:0 | [summary] to write: argument this in setData(_:) :  |
+| nsmutabledata.swift:28:5:28:5 | [post] nsMutableDataTainted1 :  | nsmutabledata.swift:29:15:29:15 | nsMutableDataTainted1 |
+| nsmutabledata.swift:28:34:28:41 | call to source() :  | nsmutabledata.swift:14:5:14:58 | [summary param] 0 in append(_:length:) :  |
+| nsmutabledata.swift:28:34:28:41 | call to source() :  | nsmutabledata.swift:28:5:28:5 | [post] nsMutableDataTainted1 :  |
+| nsmutabledata.swift:32:5:32:5 | [post] nsMutableDataTainted2 :  | nsmutabledata.swift:33:15:33:15 | nsMutableDataTainted2 |
+| nsmutabledata.swift:32:34:32:41 | call to source() :  | nsmutabledata.swift:15:5:15:33 | [summary param] 0 in append(_:) :  |
+| nsmutabledata.swift:32:34:32:41 | call to source() :  | nsmutabledata.swift:32:5:32:5 | [post] nsMutableDataTainted2 :  |
+| nsmutabledata.swift:36:5:36:5 | [post] nsMutableDataTainted3 :  | nsmutabledata.swift:37:15:37:15 | nsMutableDataTainted3 |
+| nsmutabledata.swift:36:66:36:73 | call to source() :  | nsmutabledata.swift:16:5:16:78 | [summary param] 1 in replaceBytes(in:withBytes:) :  |
+| nsmutabledata.swift:36:66:36:73 | call to source() :  | nsmutabledata.swift:36:5:36:5 | [post] nsMutableDataTainted3 :  |
+| nsmutabledata.swift:40:5:40:5 | [post] nsMutableDataTainted4 :  | nsmutabledata.swift:41:15:41:15 | nsMutableDataTainted4 |
+| nsmutabledata.swift:40:66:40:73 | call to source() :  | nsmutabledata.swift:17:5:17:121 | [summary param] 1 in replaceBytes(in:withBytes:length:) :  |
+| nsmutabledata.swift:40:66:40:73 | call to source() :  | nsmutabledata.swift:40:5:40:5 | [post] nsMutableDataTainted4 :  |
+| nsmutabledata.swift:44:5:44:5 | [post] nsMutableDataTainted5 :  | nsmutabledata.swift:45:15:45:15 | nsMutableDataTainted5 |
+| nsmutabledata.swift:44:35:44:42 | call to source() :  | nsmutabledata.swift:18:5:18:33 | [summary param] 0 in setData(_:) :  |
+| nsmutabledata.swift:44:35:44:42 | call to source() :  | nsmutabledata.swift:44:5:44:5 | [post] nsMutableDataTainted5 :  |
+| nsmutabledata.swift:48:33:48:40 | call to source() :  | nsmutabledata.swift:49:15:49:15 | nsMutableDataTainted6 :  |
+| nsmutabledata.swift:48:33:48:40 | call to source() :  | nsmutabledata.swift:49:15:49:37 | .mutableBytes |
+| nsmutabledata.swift:49:15:49:15 | nsMutableDataTainted6 :  | nsmutabledata.swift:13:9:13:9 | self :  |
+| nsmutabledata.swift:49:15:49:15 | nsMutableDataTainted6 :  | nsmutabledata.swift:49:15:49:37 | .mutableBytes |
 | string.swift:5:11:5:18 | call to source() :  | string.swift:7:13:7:13 | "..." |
 | string.swift:5:11:5:18 | call to source() :  | string.swift:9:13:9:13 | "..." |
 | string.swift:5:11:5:18 | call to source() :  | string.swift:11:13:11:13 | "..." |
@@ -240,13 +376,43 @@ edges
 | webview.swift:97:17:97:17 | s :  | webview.swift:44:5:44:48 | [summary param] 0 in setValue(_:forProperty:) :  |
 | webview.swift:97:17:97:17 | s :  | webview.swift:97:5:97:5 | [post] v3 :  |
 nodes
+| file://:0:0:0:0 | .bytes :  | semmle.label | .bytes :  |
+| file://:0:0:0:0 | .description :  | semmle.label | .description :  |
+| file://:0:0:0:0 | .mutableBytes :  | semmle.label | .mutableBytes :  |
+| file://:0:0:0:0 | [summary] to write: argument 0 in getBytes(_:) :  | semmle.label | [summary] to write: argument 0 in getBytes(_:) :  |
+| file://:0:0:0:0 | [summary] to write: argument 0 in getBytes(_:length:) :  | semmle.label | [summary] to write: argument 0 in getBytes(_:length:) :  |
+| file://:0:0:0:0 | [summary] to write: argument 0 in getBytes(_:range:) :  | semmle.label | [summary] to write: argument 0 in getBytes(_:range:) :  |
 | file://:0:0:0:0 | [summary] to write: argument 1.parameter 0 in dataTask(with:completionHandler:) :  | semmle.label | [summary] to write: argument 1.parameter 0 in dataTask(with:completionHandler:) :  |
+| file://:0:0:0:0 | [summary] to write: argument this in append(_:) :  | semmle.label | [summary] to write: argument this in append(_:) :  |
+| file://:0:0:0:0 | [summary] to write: argument this in append(_:length:) :  | semmle.label | [summary] to write: argument this in append(_:length:) :  |
 | file://:0:0:0:0 | [summary] to write: argument this in defineProperty(_:descriptor:) :  | semmle.label | [summary] to write: argument this in defineProperty(_:descriptor:) :  |
+| file://:0:0:0:0 | [summary] to write: argument this in replaceBytes(in:withBytes:) :  | semmle.label | [summary] to write: argument this in replaceBytes(in:withBytes:) :  |
+| file://:0:0:0:0 | [summary] to write: argument this in replaceBytes(in:withBytes:length:) :  | semmle.label | [summary] to write: argument this in replaceBytes(in:withBytes:length:) :  |
+| file://:0:0:0:0 | [summary] to write: argument this in setData(_:) :  | semmle.label | [summary] to write: argument this in setData(_:) :  |
 | file://:0:0:0:0 | [summary] to write: argument this in setValue(_:at:) :  | semmle.label | [summary] to write: argument this in setValue(_:at:) :  |
 | file://:0:0:0:0 | [summary] to write: argument this in setValue(_:forProperty:) :  | semmle.label | [summary] to write: argument this in setValue(_:forProperty:) :  |
 | file://:0:0:0:0 | [summary] to write: return (return) in atIndex(_:) :  | semmle.label | [summary] to write: return (return) in atIndex(_:) :  |
+| file://:0:0:0:0 | [summary] to write: return (return) in base64EncodedData(options:) :  | semmle.label | [summary] to write: return (return) in base64EncodedData(options:) :  |
+| file://:0:0:0:0 | [summary] to write: return (return) in base64EncodedString(options:) :  | semmle.label | [summary] to write: return (return) in base64EncodedString(options:) :  |
+| file://:0:0:0:0 | [summary] to write: return (return) in base64Encoding() :  | semmle.label | [summary] to write: return (return) in base64Encoding() :  |
+| file://:0:0:0:0 | [summary] to write: return (return) in compressed(using:) :  | semmle.label | [summary] to write: return (return) in compressed(using:) :  |
+| file://:0:0:0:0 | [summary] to write: return (return) in dataWithContentsOfMappedFile(_:) :  | semmle.label | [summary] to write: return (return) in dataWithContentsOfMappedFile(_:) :  |
+| file://:0:0:0:0 | [summary] to write: return (return) in decompressed(using:) :  | semmle.label | [summary] to write: return (return) in decompressed(using:) :  |
 | file://:0:0:0:0 | [summary] to write: return (return) in forProperty(_:) :  | semmle.label | [summary] to write: return (return) in forProperty(_:) :  |
+| file://:0:0:0:0 | [summary] to write: return (return) in init(base64Encoded:options:) :  | semmle.label | [summary] to write: return (return) in init(base64Encoded:options:) :  |
+| file://:0:0:0:0 | [summary] to write: return (return) in init(base64Encoded:options:) :  | semmle.label | [summary] to write: return (return) in init(base64Encoded:options:) :  |
+| file://:0:0:0:0 | [summary] to write: return (return) in init(base64Encoding:) :  | semmle.label | [summary] to write: return (return) in init(base64Encoding:) :  |
 | file://:0:0:0:0 | [summary] to write: return (return) in init(bool:in:) :  | semmle.label | [summary] to write: return (return) in init(bool:in:) :  |
+| file://:0:0:0:0 | [summary] to write: return (return) in init(bytes:length:) :  | semmle.label | [summary] to write: return (return) in init(bytes:length:) :  |
+| file://:0:0:0:0 | [summary] to write: return (return) in init(bytesNoCopy:length:) :  | semmle.label | [summary] to write: return (return) in init(bytesNoCopy:length:) :  |
+| file://:0:0:0:0 | [summary] to write: return (return) in init(bytesNoCopy:length:deallocator:) :  | semmle.label | [summary] to write: return (return) in init(bytesNoCopy:length:deallocator:) :  |
+| file://:0:0:0:0 | [summary] to write: return (return) in init(bytesNoCopy:length:freeWhenDone:) :  | semmle.label | [summary] to write: return (return) in init(bytesNoCopy:length:freeWhenDone:) :  |
+| file://:0:0:0:0 | [summary] to write: return (return) in init(contentsOf:) :  | semmle.label | [summary] to write: return (return) in init(contentsOf:) :  |
+| file://:0:0:0:0 | [summary] to write: return (return) in init(contentsOf:options:) :  | semmle.label | [summary] to write: return (return) in init(contentsOf:options:) :  |
+| file://:0:0:0:0 | [summary] to write: return (return) in init(contentsOfFile:) :  | semmle.label | [summary] to write: return (return) in init(contentsOfFile:) :  |
+| file://:0:0:0:0 | [summary] to write: return (return) in init(contentsOfFile:options:) :  | semmle.label | [summary] to write: return (return) in init(contentsOfFile:options:) :  |
+| file://:0:0:0:0 | [summary] to write: return (return) in init(contentsOfMappedFile:) :  | semmle.label | [summary] to write: return (return) in init(contentsOfMappedFile:) :  |
+| file://:0:0:0:0 | [summary] to write: return (return) in init(data:) :  | semmle.label | [summary] to write: return (return) in init(data:) :  |
 | file://:0:0:0:0 | [summary] to write: return (return) in init(double:in:) :  | semmle.label | [summary] to write: return (return) in init(double:in:) :  |
 | file://:0:0:0:0 | [summary] to write: return (return) in init(int32:in:) :  | semmle.label | [summary] to write: return (return) in init(int32:in:) :  |
 | file://:0:0:0:0 | [summary] to write: return (return) in init(object:in:) :  | semmle.label | [summary] to write: return (return) in init(object:in:) :  |
@@ -258,6 +424,7 @@ nodes
 | file://:0:0:0:0 | [summary] to write: return (return) in init(string:relativeTo:) :  | semmle.label | [summary] to write: return (return) in init(string:relativeTo:) :  |
 | file://:0:0:0:0 | [summary] to write: return (return) in init(string:relativeTo:) :  | semmle.label | [summary] to write: return (return) in init(string:relativeTo:) :  |
 | file://:0:0:0:0 | [summary] to write: return (return) in init(uInt32:in:) :  | semmle.label | [summary] to write: return (return) in init(uInt32:in:) :  |
+| file://:0:0:0:0 | [summary] to write: return (return) in subdata(with:) :  | semmle.label | [summary] to write: return (return) in subdata(with:) :  |
 | file://:0:0:0:0 | [summary] to write: return (return) in toArray() :  | semmle.label | [summary] to write: return (return) in toArray() :  |
 | file://:0:0:0:0 | [summary] to write: return (return) in toBool() :  | semmle.label | [summary] to write: return (return) in toBool() :  |
 | file://:0:0:0:0 | [summary] to write: return (return) in toDate() :  | semmle.label | [summary] to write: return (return) in toDate() :  |
@@ -273,6 +440,136 @@ nodes
 | file://:0:0:0:0 | [summary] to write: return (return) in toSize() :  | semmle.label | [summary] to write: return (return) in toSize() :  |
 | file://:0:0:0:0 | [summary] to write: return (return) in toString() :  | semmle.label | [summary] to write: return (return) in toString() :  |
 | file://:0:0:0:0 | [summary] to write: return (return) in toUInt32() :  | semmle.label | [summary] to write: return (return) in toUInt32() :  |
+| nsdata.swift:22:9:22:9 | self :  | semmle.label | self :  |
+| nsdata.swift:23:9:23:9 | self :  | semmle.label | self :  |
+| nsdata.swift:24:5:24:50 | [summary param] 0 in init(bytes:length:) :  | semmle.label | [summary param] 0 in init(bytes:length:) :  |
+| nsdata.swift:25:5:25:68 | [summary param] 0 in init(bytesNoCopy:length:) :  | semmle.label | [summary param] 0 in init(bytesNoCopy:length:) :  |
+| nsdata.swift:26:5:26:130 | [summary param] 0 in init(bytesNoCopy:length:deallocator:) :  | semmle.label | [summary param] 0 in init(bytesNoCopy:length:deallocator:) :  |
+| nsdata.swift:27:5:27:90 | [summary param] 0 in init(bytesNoCopy:length:freeWhenDone:) :  | semmle.label | [summary param] 0 in init(bytesNoCopy:length:freeWhenDone:) :  |
+| nsdata.swift:28:5:28:23 | [summary param] 0 in init(data:) :  | semmle.label | [summary param] 0 in init(data:) :  |
+| nsdata.swift:29:5:29:36 | [summary param] 0 in init(contentsOfFile:) :  | semmle.label | [summary param] 0 in init(contentsOfFile:) :  |
+| nsdata.swift:30:5:30:93 | [summary param] 0 in init(contentsOfFile:options:) :  | semmle.label | [summary param] 0 in init(contentsOfFile:options:) :  |
+| nsdata.swift:31:5:31:29 | [summary param] 0 in init(contentsOf:) :  | semmle.label | [summary param] 0 in init(contentsOf:) :  |
+| nsdata.swift:32:5:32:61 | [summary param] 0 in init(contentsOf:options:) :  | semmle.label | [summary param] 0 in init(contentsOf:options:) :  |
+| nsdata.swift:33:5:33:47 | [summary param] 0 in init(contentsOfMappedFile:) :  | semmle.label | [summary param] 0 in init(contentsOfMappedFile:) :  |
+| nsdata.swift:34:5:34:88 | [summary param] 0 in init(base64Encoded:options:) :  | semmle.label | [summary param] 0 in init(base64Encoded:options:) :  |
+| nsdata.swift:35:5:35:92 | [summary param] 0 in init(base64Encoded:options:) :  | semmle.label | [summary param] 0 in init(base64Encoded:options:) :  |
+| nsdata.swift:36:5:36:49 | [summary param] 0 in init(base64Encoding:) :  | semmle.label | [summary param] 0 in init(base64Encoding:) :  |
+| nsdata.swift:37:5:37:98 | [summary param] this in base64EncodedData(options:) :  | semmle.label | [summary param] this in base64EncodedData(options:) :  |
+| nsdata.swift:38:5:38:96 | [summary param] this in base64EncodedString(options:) :  | semmle.label | [summary param] this in base64EncodedString(options:) :  |
+| nsdata.swift:39:5:39:49 | [summary param] this in base64Encoding() :  | semmle.label | [summary param] this in base64Encoding() :  |
+| nsdata.swift:40:5:40:82 | [summary param] 0 in dataWithContentsOfMappedFile(_:) :  | semmle.label | [summary param] 0 in dataWithContentsOfMappedFile(_:) :  |
+| nsdata.swift:42:5:42:55 | [summary param] this in getBytes(_:) :  | semmle.label | [summary param] this in getBytes(_:) :  |
+| nsdata.swift:43:5:43:68 | [summary param] this in getBytes(_:length:) :  | semmle.label | [summary param] this in getBytes(_:length:) :  |
+| nsdata.swift:44:5:44:71 | [summary param] this in getBytes(_:range:) :  | semmle.label | [summary param] this in getBytes(_:range:) :  |
+| nsdata.swift:45:5:45:65 | [summary param] this in subdata(with:) :  | semmle.label | [summary param] this in subdata(with:) :  |
+| nsdata.swift:46:5:46:89 | [summary param] this in compressed(using:) :  | semmle.label | [summary param] this in compressed(using:) :  |
+| nsdata.swift:47:5:47:91 | [summary param] this in decompressed(using:) :  | semmle.label | [summary param] this in decompressed(using:) :  |
+| nsdata.swift:57:26:57:80 | call to init(bytes:length:) :  | semmle.label | call to init(bytes:length:) :  |
+| nsdata.swift:57:40:57:47 | call to source() :  | semmle.label | call to source() :  |
+| nsdata.swift:58:15:58:15 | nsDataTainted1 | semmle.label | nsDataTainted1 |
+| nsdata.swift:60:26:60:93 | call to init(bytesNoCopy:length:) :  | semmle.label | call to init(bytesNoCopy:length:) :  |
+| nsdata.swift:60:46:60:53 | call to source() :  | semmle.label | call to source() :  |
+| nsdata.swift:61:15:61:15 | nsDataTainted2 | semmle.label | nsDataTainted2 |
+| nsdata.swift:63:26:63:111 | call to init(bytesNoCopy:length:deallocator:) :  | semmle.label | call to init(bytesNoCopy:length:deallocator:) :  |
+| nsdata.swift:63:46:63:53 | call to source() :  | semmle.label | call to source() :  |
+| nsdata.swift:64:15:64:15 | nsDataTainted3 | semmle.label | nsDataTainted3 |
+| nsdata.swift:66:26:66:113 | call to init(bytesNoCopy:length:freeWhenDone:) :  | semmle.label | call to init(bytesNoCopy:length:freeWhenDone:) :  |
+| nsdata.swift:66:46:66:53 | call to source() :  | semmle.label | call to source() :  |
+| nsdata.swift:67:15:67:15 | nsDataTainted4 | semmle.label | nsDataTainted4 |
+| nsdata.swift:69:26:69:56 | call to init(data:) :  | semmle.label | call to init(data:) :  |
+| nsdata.swift:69:39:69:46 | call to source() :  | semmle.label | call to source() :  |
+| nsdata.swift:70:15:70:15 | nsDataTainted5 | semmle.label | nsDataTainted5 |
+| nsdata.swift:72:26:72:68 | call to init(contentsOfFile:) :  | semmle.label | call to init(contentsOfFile:) :  |
+| nsdata.swift:72:49:72:56 | call to source() :  | semmle.label | call to source() :  |
+| nsdata.swift:73:15:73:29 | ...! | semmle.label | ...! |
+| nsdata.swift:75:26:75:81 | call to init(contentsOfFile:options:) :  | semmle.label | call to init(contentsOfFile:options:) :  |
+| nsdata.swift:75:49:75:56 | call to source() :  | semmle.label | call to source() :  |
+| nsdata.swift:76:15:76:15 | nsDataTainted7 | semmle.label | nsDataTainted7 |
+| nsdata.swift:78:26:78:61 | call to init(contentsOf:) :  | semmle.label | call to init(contentsOf:) :  |
+| nsdata.swift:78:45:78:52 | call to source() :  | semmle.label | call to source() :  |
+| nsdata.swift:79:15:79:29 | ...! | semmle.label | ...! |
+| nsdata.swift:81:26:81:74 | call to init(contentsOf:options:) :  | semmle.label | call to init(contentsOf:options:) :  |
+| nsdata.swift:81:45:81:52 | call to source() :  | semmle.label | call to source() :  |
+| nsdata.swift:82:15:82:29 | ...! | semmle.label | ...! |
+| nsdata.swift:84:27:84:75 | call to init(contentsOfMappedFile:) :  | semmle.label | call to init(contentsOfMappedFile:) :  |
+| nsdata.swift:84:56:84:63 | call to source() :  | semmle.label | call to source() :  |
+| nsdata.swift:85:15:85:30 | ...! | semmle.label | ...! |
+| nsdata.swift:87:27:87:79 | call to init(base64Encoded:options:) :  | semmle.label | call to init(base64Encoded:options:) :  |
+| nsdata.swift:87:49:87:56 | call to source() :  | semmle.label | call to source() :  |
+| nsdata.swift:88:15:88:30 | ...! | semmle.label | ...! |
+| nsdata.swift:89:27:89:81 | call to init(base64Encoded:options:) :  | semmle.label | call to init(base64Encoded:options:) :  |
+| nsdata.swift:89:49:89:56 | call to source() :  | semmle.label | call to source() :  |
+| nsdata.swift:90:15:90:30 | ...! | semmle.label | ...! |
+| nsdata.swift:92:27:92:69 | call to init(base64Encoding:) :  | semmle.label | call to init(base64Encoding:) :  |
+| nsdata.swift:92:50:92:57 | call to source() :  | semmle.label | call to source() :  |
+| nsdata.swift:93:15:93:30 | ...! | semmle.label | ...! |
+| nsdata.swift:95:27:95:34 | call to source() :  | semmle.label | call to source() :  |
+| nsdata.swift:96:15:96:15 | nsDataTainted14 :  | semmle.label | nsDataTainted14 :  |
+| nsdata.swift:96:15:96:49 | call to base64EncodedData(options:) | semmle.label | call to base64EncodedData(options:) |
+| nsdata.swift:97:15:97:15 | nsDataTainted14 :  | semmle.label | nsDataTainted14 :  |
+| nsdata.swift:97:15:97:60 | call to base64EncodedData(options:) | semmle.label | call to base64EncodedData(options:) |
+| nsdata.swift:99:27:99:34 | call to source() :  | semmle.label | call to source() :  |
+| nsdata.swift:100:15:100:15 | nsDataTainted15 :  | semmle.label | nsDataTainted15 :  |
+| nsdata.swift:100:15:100:51 | call to base64EncodedString(options:) | semmle.label | call to base64EncodedString(options:) |
+| nsdata.swift:101:15:101:15 | nsDataTainted15 :  | semmle.label | nsDataTainted15 :  |
+| nsdata.swift:101:15:101:62 | call to base64EncodedString(options:) | semmle.label | call to base64EncodedString(options:) |
+| nsdata.swift:103:27:103:34 | call to source() :  | semmle.label | call to source() :  |
+| nsdata.swift:104:15:104:15 | nsDataTainted16 :  | semmle.label | nsDataTainted16 :  |
+| nsdata.swift:104:15:104:46 | call to base64Encoding() | semmle.label | call to base64Encoding() |
+| nsdata.swift:106:15:106:70 | call to dataWithContentsOfMappedFile(_:) :  | semmle.label | call to dataWithContentsOfMappedFile(_:) :  |
+| nsdata.swift:106:15:106:71 | ...! | semmle.label | ...! |
+| nsdata.swift:106:51:106:58 | call to source() :  | semmle.label | call to source() :  |
+| nsdata.swift:113:27:113:34 | call to source() :  | semmle.label | call to source() :  |
+| nsdata.swift:115:5:115:5 | nsDataTainted18 :  | semmle.label | nsDataTainted18 :  |
+| nsdata.swift:115:30:115:30 | [post] bufferTainted18 :  | semmle.label | [post] bufferTainted18 :  |
+| nsdata.swift:116:15:116:15 | bufferTainted18 | semmle.label | bufferTainted18 |
+| nsdata.swift:118:27:118:34 | call to source() :  | semmle.label | call to source() :  |
+| nsdata.swift:120:5:120:5 | nsDataTainted19 :  | semmle.label | nsDataTainted19 :  |
+| nsdata.swift:120:30:120:30 | [post] bufferTainted19 :  | semmle.label | [post] bufferTainted19 :  |
+| nsdata.swift:121:15:121:15 | bufferTainted19 | semmle.label | bufferTainted19 |
+| nsdata.swift:123:27:123:34 | call to source() :  | semmle.label | call to source() :  |
+| nsdata.swift:125:5:125:5 | nsDataTainted20 :  | semmle.label | nsDataTainted20 :  |
+| nsdata.swift:125:30:125:30 | [post] bufferTainted20 :  | semmle.label | [post] bufferTainted20 :  |
+| nsdata.swift:126:15:126:15 | bufferTainted20 | semmle.label | bufferTainted20 |
+| nsdata.swift:128:27:128:34 | call to source() :  | semmle.label | call to source() :  |
+| nsdata.swift:129:15:129:15 | nsDataTainted21 :  | semmle.label | nsDataTainted21 :  |
+| nsdata.swift:129:15:129:54 | call to subdata(with:) | semmle.label | call to subdata(with:) |
+| nsdata.swift:131:27:131:34 | call to source() :  | semmle.label | call to source() :  |
+| nsdata.swift:132:15:132:15 | nsDataTainted22 :  | semmle.label | nsDataTainted22 :  |
+| nsdata.swift:132:15:132:81 | call to compressed(using:) | semmle.label | call to compressed(using:) |
+| nsdata.swift:134:27:134:34 | call to source() :  | semmle.label | call to source() :  |
+| nsdata.swift:135:15:135:15 | nsDataTainted23 :  | semmle.label | nsDataTainted23 :  |
+| nsdata.swift:135:15:135:83 | call to decompressed(using:) | semmle.label | call to decompressed(using:) |
+| nsdata.swift:138:27:138:34 | call to source() :  | semmle.label | call to source() :  |
+| nsdata.swift:139:15:139:15 | nsDataTainted24 :  | semmle.label | nsDataTainted24 :  |
+| nsdata.swift:139:15:139:31 | .bytes | semmle.label | .bytes |
+| nsdata.swift:140:15:140:15 | nsDataTainted24 :  | semmle.label | nsDataTainted24 :  |
+| nsdata.swift:140:15:140:31 | .description | semmle.label | .description |
+| nsmutabledata.swift:13:9:13:9 | self :  | semmle.label | self :  |
+| nsmutabledata.swift:14:5:14:58 | [summary param] 0 in append(_:length:) :  | semmle.label | [summary param] 0 in append(_:length:) :  |
+| nsmutabledata.swift:15:5:15:33 | [summary param] 0 in append(_:) :  | semmle.label | [summary param] 0 in append(_:) :  |
+| nsmutabledata.swift:16:5:16:78 | [summary param] 1 in replaceBytes(in:withBytes:) :  | semmle.label | [summary param] 1 in replaceBytes(in:withBytes:) :  |
+| nsmutabledata.swift:17:5:17:121 | [summary param] 1 in replaceBytes(in:withBytes:length:) :  | semmle.label | [summary param] 1 in replaceBytes(in:withBytes:length:) :  |
+| nsmutabledata.swift:18:5:18:33 | [summary param] 0 in setData(_:) :  | semmle.label | [summary param] 0 in setData(_:) :  |
+| nsmutabledata.swift:28:5:28:5 | [post] nsMutableDataTainted1 :  | semmle.label | [post] nsMutableDataTainted1 :  |
+| nsmutabledata.swift:28:34:28:41 | call to source() :  | semmle.label | call to source() :  |
+| nsmutabledata.swift:29:15:29:15 | nsMutableDataTainted1 | semmle.label | nsMutableDataTainted1 |
+| nsmutabledata.swift:32:5:32:5 | [post] nsMutableDataTainted2 :  | semmle.label | [post] nsMutableDataTainted2 :  |
+| nsmutabledata.swift:32:34:32:41 | call to source() :  | semmle.label | call to source() :  |
+| nsmutabledata.swift:33:15:33:15 | nsMutableDataTainted2 | semmle.label | nsMutableDataTainted2 |
+| nsmutabledata.swift:36:5:36:5 | [post] nsMutableDataTainted3 :  | semmle.label | [post] nsMutableDataTainted3 :  |
+| nsmutabledata.swift:36:66:36:73 | call to source() :  | semmle.label | call to source() :  |
+| nsmutabledata.swift:37:15:37:15 | nsMutableDataTainted3 | semmle.label | nsMutableDataTainted3 |
+| nsmutabledata.swift:40:5:40:5 | [post] nsMutableDataTainted4 :  | semmle.label | [post] nsMutableDataTainted4 :  |
+| nsmutabledata.swift:40:66:40:73 | call to source() :  | semmle.label | call to source() :  |
+| nsmutabledata.swift:41:15:41:15 | nsMutableDataTainted4 | semmle.label | nsMutableDataTainted4 |
+| nsmutabledata.swift:44:5:44:5 | [post] nsMutableDataTainted5 :  | semmle.label | [post] nsMutableDataTainted5 :  |
+| nsmutabledata.swift:44:35:44:42 | call to source() :  | semmle.label | call to source() :  |
+| nsmutabledata.swift:45:15:45:15 | nsMutableDataTainted5 | semmle.label | nsMutableDataTainted5 |
+| nsmutabledata.swift:48:33:48:40 | call to source() :  | semmle.label | call to source() :  |
+| nsmutabledata.swift:49:15:49:15 | nsMutableDataTainted6 :  | semmle.label | nsMutableDataTainted6 :  |
+| nsmutabledata.swift:49:15:49:37 | .mutableBytes | semmle.label | .mutableBytes |
 | string.swift:5:11:5:18 | call to source() :  | semmle.label | call to source() :  |
 | string.swift:7:13:7:13 | "..." | semmle.label | "..." |
 | string.swift:9:13:9:13 | "..." | semmle.label | "..." |
@@ -474,6 +771,39 @@ nodes
 | webview.swift:97:17:97:17 | s :  | semmle.label | s :  |
 | webview.swift:98:10:98:10 | v3 | semmle.label | v3 |
 subpaths
+| nsdata.swift:57:40:57:47 | call to source() :  | nsdata.swift:24:5:24:50 | [summary param] 0 in init(bytes:length:) :  | file://:0:0:0:0 | [summary] to write: return (return) in init(bytes:length:) :  | nsdata.swift:57:26:57:80 | call to init(bytes:length:) :  |
+| nsdata.swift:60:46:60:53 | call to source() :  | nsdata.swift:25:5:25:68 | [summary param] 0 in init(bytesNoCopy:length:) :  | file://:0:0:0:0 | [summary] to write: return (return) in init(bytesNoCopy:length:) :  | nsdata.swift:60:26:60:93 | call to init(bytesNoCopy:length:) :  |
+| nsdata.swift:63:46:63:53 | call to source() :  | nsdata.swift:26:5:26:130 | [summary param] 0 in init(bytesNoCopy:length:deallocator:) :  | file://:0:0:0:0 | [summary] to write: return (return) in init(bytesNoCopy:length:deallocator:) :  | nsdata.swift:63:26:63:111 | call to init(bytesNoCopy:length:deallocator:) :  |
+| nsdata.swift:66:46:66:53 | call to source() :  | nsdata.swift:27:5:27:90 | [summary param] 0 in init(bytesNoCopy:length:freeWhenDone:) :  | file://:0:0:0:0 | [summary] to write: return (return) in init(bytesNoCopy:length:freeWhenDone:) :  | nsdata.swift:66:26:66:113 | call to init(bytesNoCopy:length:freeWhenDone:) :  |
+| nsdata.swift:69:39:69:46 | call to source() :  | nsdata.swift:28:5:28:23 | [summary param] 0 in init(data:) :  | file://:0:0:0:0 | [summary] to write: return (return) in init(data:) :  | nsdata.swift:69:26:69:56 | call to init(data:) :  |
+| nsdata.swift:72:49:72:56 | call to source() :  | nsdata.swift:29:5:29:36 | [summary param] 0 in init(contentsOfFile:) :  | file://:0:0:0:0 | [summary] to write: return (return) in init(contentsOfFile:) :  | nsdata.swift:72:26:72:68 | call to init(contentsOfFile:) :  |
+| nsdata.swift:75:49:75:56 | call to source() :  | nsdata.swift:30:5:30:93 | [summary param] 0 in init(contentsOfFile:options:) :  | file://:0:0:0:0 | [summary] to write: return (return) in init(contentsOfFile:options:) :  | nsdata.swift:75:26:75:81 | call to init(contentsOfFile:options:) :  |
+| nsdata.swift:78:45:78:52 | call to source() :  | nsdata.swift:31:5:31:29 | [summary param] 0 in init(contentsOf:) :  | file://:0:0:0:0 | [summary] to write: return (return) in init(contentsOf:) :  | nsdata.swift:78:26:78:61 | call to init(contentsOf:) :  |
+| nsdata.swift:81:45:81:52 | call to source() :  | nsdata.swift:32:5:32:61 | [summary param] 0 in init(contentsOf:options:) :  | file://:0:0:0:0 | [summary] to write: return (return) in init(contentsOf:options:) :  | nsdata.swift:81:26:81:74 | call to init(contentsOf:options:) :  |
+| nsdata.swift:84:56:84:63 | call to source() :  | nsdata.swift:33:5:33:47 | [summary param] 0 in init(contentsOfMappedFile:) :  | file://:0:0:0:0 | [summary] to write: return (return) in init(contentsOfMappedFile:) :  | nsdata.swift:84:27:84:75 | call to init(contentsOfMappedFile:) :  |
+| nsdata.swift:87:49:87:56 | call to source() :  | nsdata.swift:34:5:34:88 | [summary param] 0 in init(base64Encoded:options:) :  | file://:0:0:0:0 | [summary] to write: return (return) in init(base64Encoded:options:) :  | nsdata.swift:87:27:87:79 | call to init(base64Encoded:options:) :  |
+| nsdata.swift:89:49:89:56 | call to source() :  | nsdata.swift:35:5:35:92 | [summary param] 0 in init(base64Encoded:options:) :  | file://:0:0:0:0 | [summary] to write: return (return) in init(base64Encoded:options:) :  | nsdata.swift:89:27:89:81 | call to init(base64Encoded:options:) :  |
+| nsdata.swift:92:50:92:57 | call to source() :  | nsdata.swift:36:5:36:49 | [summary param] 0 in init(base64Encoding:) :  | file://:0:0:0:0 | [summary] to write: return (return) in init(base64Encoding:) :  | nsdata.swift:92:27:92:69 | call to init(base64Encoding:) :  |
+| nsdata.swift:96:15:96:15 | nsDataTainted14 :  | nsdata.swift:37:5:37:98 | [summary param] this in base64EncodedData(options:) :  | file://:0:0:0:0 | [summary] to write: return (return) in base64EncodedData(options:) :  | nsdata.swift:96:15:96:49 | call to base64EncodedData(options:) |
+| nsdata.swift:97:15:97:15 | nsDataTainted14 :  | nsdata.swift:37:5:37:98 | [summary param] this in base64EncodedData(options:) :  | file://:0:0:0:0 | [summary] to write: return (return) in base64EncodedData(options:) :  | nsdata.swift:97:15:97:60 | call to base64EncodedData(options:) |
+| nsdata.swift:100:15:100:15 | nsDataTainted15 :  | nsdata.swift:38:5:38:96 | [summary param] this in base64EncodedString(options:) :  | file://:0:0:0:0 | [summary] to write: return (return) in base64EncodedString(options:) :  | nsdata.swift:100:15:100:51 | call to base64EncodedString(options:) |
+| nsdata.swift:101:15:101:15 | nsDataTainted15 :  | nsdata.swift:38:5:38:96 | [summary param] this in base64EncodedString(options:) :  | file://:0:0:0:0 | [summary] to write: return (return) in base64EncodedString(options:) :  | nsdata.swift:101:15:101:62 | call to base64EncodedString(options:) |
+| nsdata.swift:104:15:104:15 | nsDataTainted16 :  | nsdata.swift:39:5:39:49 | [summary param] this in base64Encoding() :  | file://:0:0:0:0 | [summary] to write: return (return) in base64Encoding() :  | nsdata.swift:104:15:104:46 | call to base64Encoding() |
+| nsdata.swift:106:51:106:58 | call to source() :  | nsdata.swift:40:5:40:82 | [summary param] 0 in dataWithContentsOfMappedFile(_:) :  | file://:0:0:0:0 | [summary] to write: return (return) in dataWithContentsOfMappedFile(_:) :  | nsdata.swift:106:15:106:70 | call to dataWithContentsOfMappedFile(_:) :  |
+| nsdata.swift:115:5:115:5 | nsDataTainted18 :  | nsdata.swift:42:5:42:55 | [summary param] this in getBytes(_:) :  | file://:0:0:0:0 | [summary] to write: argument 0 in getBytes(_:) :  | nsdata.swift:115:30:115:30 | [post] bufferTainted18 :  |
+| nsdata.swift:120:5:120:5 | nsDataTainted19 :  | nsdata.swift:43:5:43:68 | [summary param] this in getBytes(_:length:) :  | file://:0:0:0:0 | [summary] to write: argument 0 in getBytes(_:length:) :  | nsdata.swift:120:30:120:30 | [post] bufferTainted19 :  |
+| nsdata.swift:125:5:125:5 | nsDataTainted20 :  | nsdata.swift:44:5:44:71 | [summary param] this in getBytes(_:range:) :  | file://:0:0:0:0 | [summary] to write: argument 0 in getBytes(_:range:) :  | nsdata.swift:125:30:125:30 | [post] bufferTainted20 :  |
+| nsdata.swift:129:15:129:15 | nsDataTainted21 :  | nsdata.swift:45:5:45:65 | [summary param] this in subdata(with:) :  | file://:0:0:0:0 | [summary] to write: return (return) in subdata(with:) :  | nsdata.swift:129:15:129:54 | call to subdata(with:) |
+| nsdata.swift:132:15:132:15 | nsDataTainted22 :  | nsdata.swift:46:5:46:89 | [summary param] this in compressed(using:) :  | file://:0:0:0:0 | [summary] to write: return (return) in compressed(using:) :  | nsdata.swift:132:15:132:81 | call to compressed(using:) |
+| nsdata.swift:135:15:135:15 | nsDataTainted23 :  | nsdata.swift:47:5:47:91 | [summary param] this in decompressed(using:) :  | file://:0:0:0:0 | [summary] to write: return (return) in decompressed(using:) :  | nsdata.swift:135:15:135:83 | call to decompressed(using:) |
+| nsdata.swift:139:15:139:15 | nsDataTainted24 :  | nsdata.swift:22:9:22:9 | self :  | file://:0:0:0:0 | .bytes :  | nsdata.swift:139:15:139:31 | .bytes |
+| nsdata.swift:140:15:140:15 | nsDataTainted24 :  | nsdata.swift:23:9:23:9 | self :  | file://:0:0:0:0 | .description :  | nsdata.swift:140:15:140:31 | .description |
+| nsmutabledata.swift:28:34:28:41 | call to source() :  | nsmutabledata.swift:14:5:14:58 | [summary param] 0 in append(_:length:) :  | file://:0:0:0:0 | [summary] to write: argument this in append(_:length:) :  | nsmutabledata.swift:28:5:28:5 | [post] nsMutableDataTainted1 :  |
+| nsmutabledata.swift:32:34:32:41 | call to source() :  | nsmutabledata.swift:15:5:15:33 | [summary param] 0 in append(_:) :  | file://:0:0:0:0 | [summary] to write: argument this in append(_:) :  | nsmutabledata.swift:32:5:32:5 | [post] nsMutableDataTainted2 :  |
+| nsmutabledata.swift:36:66:36:73 | call to source() :  | nsmutabledata.swift:16:5:16:78 | [summary param] 1 in replaceBytes(in:withBytes:) :  | file://:0:0:0:0 | [summary] to write: argument this in replaceBytes(in:withBytes:) :  | nsmutabledata.swift:36:5:36:5 | [post] nsMutableDataTainted3 :  |
+| nsmutabledata.swift:40:66:40:73 | call to source() :  | nsmutabledata.swift:17:5:17:121 | [summary param] 1 in replaceBytes(in:withBytes:length:) :  | file://:0:0:0:0 | [summary] to write: argument this in replaceBytes(in:withBytes:length:) :  | nsmutabledata.swift:40:5:40:5 | [post] nsMutableDataTainted4 :  |
+| nsmutabledata.swift:44:35:44:42 | call to source() :  | nsmutabledata.swift:18:5:18:33 | [summary param] 0 in setData(_:) :  | file://:0:0:0:0 | [summary] to write: argument this in setData(_:) :  | nsmutabledata.swift:44:5:44:5 | [post] nsMutableDataTainted5 :  |
+| nsmutabledata.swift:49:15:49:15 | nsMutableDataTainted6 :  | nsmutabledata.swift:13:9:13:9 | self :  | file://:0:0:0:0 | .mutableBytes :  | nsmutabledata.swift:49:15:49:37 | .mutableBytes |
 | url.swift:59:31:59:31 | tainted :  | url.swift:8:2:8:25 | [summary param] 0 in init(string:) :  | file://:0:0:0:0 | [summary] to write: return (return) in init(string:) :  | url.swift:59:19:59:38 | call to init(string:) :  |
 | url.swift:83:24:83:24 | tainted :  | url.swift:9:2:9:43 | [summary param] 0 in init(string:relativeTo:) :  | file://:0:0:0:0 | [summary] to write: return (return) in init(string:relativeTo:) :  | url.swift:83:12:83:48 | call to init(string:relativeTo:) :  |
 | url.swift:86:43:86:43 | urlTainted :  | url.swift:9:2:9:43 | [summary param] 1 in init(string:relativeTo:) :  | file://:0:0:0:0 | [summary] to write: return (return) in init(string:relativeTo:) :  | url.swift:86:12:86:53 | call to init(string:relativeTo:) :  |
@@ -524,6 +854,39 @@ subpaths
 | webview.swift:93:17:93:17 | s :  | webview.swift:43:5:43:38 | [summary param] 0 in setValue(_:at:) :  | file://:0:0:0:0 | [summary] to write: argument this in setValue(_:at:) :  | webview.swift:93:5:93:5 | [post] v2 :  |
 | webview.swift:97:17:97:17 | s :  | webview.swift:44:5:44:48 | [summary param] 0 in setValue(_:forProperty:) :  | file://:0:0:0:0 | [summary] to write: argument this in setValue(_:forProperty:) :  | webview.swift:97:5:97:5 | [post] v3 :  |
 #select
+| nsdata.swift:58:15:58:15 | nsDataTainted1 | nsdata.swift:57:40:57:47 | call to source() :  | nsdata.swift:58:15:58:15 | nsDataTainted1 | result |
+| nsdata.swift:61:15:61:15 | nsDataTainted2 | nsdata.swift:60:46:60:53 | call to source() :  | nsdata.swift:61:15:61:15 | nsDataTainted2 | result |
+| nsdata.swift:64:15:64:15 | nsDataTainted3 | nsdata.swift:63:46:63:53 | call to source() :  | nsdata.swift:64:15:64:15 | nsDataTainted3 | result |
+| nsdata.swift:67:15:67:15 | nsDataTainted4 | nsdata.swift:66:46:66:53 | call to source() :  | nsdata.swift:67:15:67:15 | nsDataTainted4 | result |
+| nsdata.swift:70:15:70:15 | nsDataTainted5 | nsdata.swift:69:39:69:46 | call to source() :  | nsdata.swift:70:15:70:15 | nsDataTainted5 | result |
+| nsdata.swift:73:15:73:29 | ...! | nsdata.swift:72:49:72:56 | call to source() :  | nsdata.swift:73:15:73:29 | ...! | result |
+| nsdata.swift:76:15:76:15 | nsDataTainted7 | nsdata.swift:75:49:75:56 | call to source() :  | nsdata.swift:76:15:76:15 | nsDataTainted7 | result |
+| nsdata.swift:79:15:79:29 | ...! | nsdata.swift:78:45:78:52 | call to source() :  | nsdata.swift:79:15:79:29 | ...! | result |
+| nsdata.swift:82:15:82:29 | ...! | nsdata.swift:81:45:81:52 | call to source() :  | nsdata.swift:82:15:82:29 | ...! | result |
+| nsdata.swift:85:15:85:30 | ...! | nsdata.swift:84:56:84:63 | call to source() :  | nsdata.swift:85:15:85:30 | ...! | result |
+| nsdata.swift:88:15:88:30 | ...! | nsdata.swift:87:49:87:56 | call to source() :  | nsdata.swift:88:15:88:30 | ...! | result |
+| nsdata.swift:90:15:90:30 | ...! | nsdata.swift:89:49:89:56 | call to source() :  | nsdata.swift:90:15:90:30 | ...! | result |
+| nsdata.swift:93:15:93:30 | ...! | nsdata.swift:92:50:92:57 | call to source() :  | nsdata.swift:93:15:93:30 | ...! | result |
+| nsdata.swift:96:15:96:49 | call to base64EncodedData(options:) | nsdata.swift:95:27:95:34 | call to source() :  | nsdata.swift:96:15:96:49 | call to base64EncodedData(options:) | result |
+| nsdata.swift:97:15:97:60 | call to base64EncodedData(options:) | nsdata.swift:95:27:95:34 | call to source() :  | nsdata.swift:97:15:97:60 | call to base64EncodedData(options:) | result |
+| nsdata.swift:100:15:100:51 | call to base64EncodedString(options:) | nsdata.swift:99:27:99:34 | call to source() :  | nsdata.swift:100:15:100:51 | call to base64EncodedString(options:) | result |
+| nsdata.swift:101:15:101:62 | call to base64EncodedString(options:) | nsdata.swift:99:27:99:34 | call to source() :  | nsdata.swift:101:15:101:62 | call to base64EncodedString(options:) | result |
+| nsdata.swift:104:15:104:46 | call to base64Encoding() | nsdata.swift:103:27:103:34 | call to source() :  | nsdata.swift:104:15:104:46 | call to base64Encoding() | result |
+| nsdata.swift:106:15:106:71 | ...! | nsdata.swift:106:51:106:58 | call to source() :  | nsdata.swift:106:15:106:71 | ...! | result |
+| nsdata.swift:116:15:116:15 | bufferTainted18 | nsdata.swift:113:27:113:34 | call to source() :  | nsdata.swift:116:15:116:15 | bufferTainted18 | result |
+| nsdata.swift:121:15:121:15 | bufferTainted19 | nsdata.swift:118:27:118:34 | call to source() :  | nsdata.swift:121:15:121:15 | bufferTainted19 | result |
+| nsdata.swift:126:15:126:15 | bufferTainted20 | nsdata.swift:123:27:123:34 | call to source() :  | nsdata.swift:126:15:126:15 | bufferTainted20 | result |
+| nsdata.swift:129:15:129:54 | call to subdata(with:) | nsdata.swift:128:27:128:34 | call to source() :  | nsdata.swift:129:15:129:54 | call to subdata(with:) | result |
+| nsdata.swift:132:15:132:81 | call to compressed(using:) | nsdata.swift:131:27:131:34 | call to source() :  | nsdata.swift:132:15:132:81 | call to compressed(using:) | result |
+| nsdata.swift:135:15:135:83 | call to decompressed(using:) | nsdata.swift:134:27:134:34 | call to source() :  | nsdata.swift:135:15:135:83 | call to decompressed(using:) | result |
+| nsdata.swift:139:15:139:31 | .bytes | nsdata.swift:138:27:138:34 | call to source() :  | nsdata.swift:139:15:139:31 | .bytes | result |
+| nsdata.swift:140:15:140:31 | .description | nsdata.swift:138:27:138:34 | call to source() :  | nsdata.swift:140:15:140:31 | .description | result |
+| nsmutabledata.swift:29:15:29:15 | nsMutableDataTainted1 | nsmutabledata.swift:28:34:28:41 | call to source() :  | nsmutabledata.swift:29:15:29:15 | nsMutableDataTainted1 | result |
+| nsmutabledata.swift:33:15:33:15 | nsMutableDataTainted2 | nsmutabledata.swift:32:34:32:41 | call to source() :  | nsmutabledata.swift:33:15:33:15 | nsMutableDataTainted2 | result |
+| nsmutabledata.swift:37:15:37:15 | nsMutableDataTainted3 | nsmutabledata.swift:36:66:36:73 | call to source() :  | nsmutabledata.swift:37:15:37:15 | nsMutableDataTainted3 | result |
+| nsmutabledata.swift:41:15:41:15 | nsMutableDataTainted4 | nsmutabledata.swift:40:66:40:73 | call to source() :  | nsmutabledata.swift:41:15:41:15 | nsMutableDataTainted4 | result |
+| nsmutabledata.swift:45:15:45:15 | nsMutableDataTainted5 | nsmutabledata.swift:44:35:44:42 | call to source() :  | nsmutabledata.swift:45:15:45:15 | nsMutableDataTainted5 | result |
+| nsmutabledata.swift:49:15:49:37 | .mutableBytes | nsmutabledata.swift:48:33:48:40 | call to source() :  | nsmutabledata.swift:49:15:49:37 | .mutableBytes | result |
 | string.swift:7:13:7:13 | "..." | string.swift:5:11:5:18 | call to source() :  | string.swift:7:13:7:13 | "..." | result |
 | string.swift:9:13:9:13 | "..." | string.swift:5:11:5:18 | call to source() :  | string.swift:9:13:9:13 | "..." | result |
 | string.swift:11:13:11:13 | "..." | string.swift:5:11:5:18 | call to source() :  | string.swift:11:13:11:13 | "..." | result |
diff --git a/swift/ql/test/library-tests/dataflow/taint/nsdata.swift b/swift/ql/test/library-tests/dataflow/taint/nsdata.swift
new file mode 100644
index 00000000000..f6d82ede499
--- /dev/null
+++ b/swift/ql/test/library-tests/dataflow/taint/nsdata.swift
@@ -0,0 +1,141 @@
+// --- stubs ---
+
+struct URL
+{
+	init?(string: String) {}
+}
+
+struct Data
+{
+    init<S>(_ elements: S) {}
+}
+
+struct NSRange {}
+
+struct ObjCBool {}
+
+class NSData {
+    struct ReadingOptions : OptionSet { let rawValue: Int }
+    struct Base64EncodingOptions : OptionSet { let rawValue: Int }
+    struct Base64DecodingOptions : OptionSet { let rawValue: Int }
+    enum CompressionAlgorithm : Int { case none }
+    var bytes: UnsafeRawPointer = UnsafeRawPointer(bitPattern: 0)!
+    var description: String = ""
+    init(bytes: UnsafeRawPointer?, length: Int) {}
+    init(bytesNoCopy bytes: UnsafeMutableRawPointer, length: Int) {}
+    init(bytesNoCopy bytes: UnsafeMutableRawPointer, length: Int, deallocator: ((UnsafeMutableRawPointer, Int) -> Void)? = nil) {}
+    init(bytesNoCopy bytes: UnsafeMutableRawPointer, length: Int, freeWhenDone b: Bool) {}
+    init(data: Data) {}
+    init?(contentsOfFile: String) {}
+    init(contentsOfFile path: String, options readOptionsMask: NSData.ReadingOptions = []) {} 
+    init?(contentsOf: URL) {}
+    init?(contentsOf: URL, options: NSData.ReadingOptions) {}
+    init?(contentsOfMappedFile path: String) {}
+    init?(base64Encoded base64Data: Data, options: NSData.Base64DecodingOptions = []) {}
+    init?(base64Encoded base64String: String, options: NSData.Base64DecodingOptions = []) {}
+    init?(base64Encoding base64String: String) {}
+    func base64EncodedData(options: NSData.Base64EncodingOptions = []) -> Data { return Data("") }
+    func base64EncodedString(options: NSData.Base64EncodingOptions = []) -> String { return "" }
+    func base64Encoding() -> String { return "" }
+    class func dataWithContentsOfMappedFile(_ path: String) -> Any? { return nil }
+    func enumerateBytes(_ block: (UnsafeRawPointer, NSRange, UnsafeMutablePointer<ObjCBool>) -> Void) {}
+    func getBytes(_ buffer: UnsafeMutableRawPointer) {}
+    func getBytes(_ buffer: UnsafeMutableRawPointer, length: Int) {}
+    func getBytes(_ buffer: UnsafeMutableRawPointer, range: NSRange) {}
+    func subdata(with range: NSRange) -> Data { return Data("") }
+    func compressed(using algorithm: NSData.CompressionAlgorithm) -> Self { return self }
+    func decompressed(using algorithm: NSData.CompressionAlgorithm) -> Self { return self }
+}
+
+// --- tests ---
+
+func source() -> Any { return "" }
+func sink(arg: Any) {}
+
+func test() {
+    // ";NSData;true;init(bytes:length:);;;Argument[0];ReturnValue;taint",
+    let nsDataTainted1 = NSData(bytes: source() as? UnsafeRawPointer, length: 0)
+    sink(arg: nsDataTainted1) // $ tainted=57
+    // ";NSData;true;init(bytesNoCopy:length:);;;Argument[0];ReturnValue;taint",
+    let nsDataTainted2 = NSData(bytesNoCopy: source() as! UnsafeMutableRawPointer, length: 0)
+    sink(arg: nsDataTainted2) // $ tainted=60
+    // ";NSData;true;init(bytesNoCopy:length:deallocator:);;;Argument[0];ReturnValue;taint",
+    let nsDataTainted3 = NSData(bytesNoCopy: source() as! UnsafeMutableRawPointer, length: 0, deallocator: nil)
+    sink(arg: nsDataTainted3) // $ tainted=63
+    // ";NSData;true;init(bytesNoCopy:length:freeWhenDone:);;;Argument[0];ReturnValue;taint",
+    let nsDataTainted4 = NSData(bytesNoCopy: source() as! UnsafeMutableRawPointer, length: 0, freeWhenDone: true)
+    sink(arg: nsDataTainted4) // $ tainted=66
+    // ";NSData;true;init(data:);;;Argument[0];ReturnValue;taint",
+    let nsDataTainted5 = NSData(data: source() as! Data)
+    sink(arg: nsDataTainted5) // $ tainted=69
+    // ";NSData;true;init(contentsOfFile:);;;Argument[0];ReturnValue;taint",
+    let nsDataTainted6 = NSData(contentsOfFile: source() as! String)
+    sink(arg: nsDataTainted6!) // $ tainted=72
+    // ";NSData;true;init(contentsOfFile:options:);;;Argument[0];ReturnValue;taint",
+    let nsDataTainted7 = NSData(contentsOfFile: source() as! String, options: [])
+    sink(arg: nsDataTainted7) // $ tainted=75
+    // ";NSData;true;init(contentsOf:);;;Argument[0];ReturnValue;taint",
+    let nsDataTainted8 = NSData(contentsOf: source() as! URL)
+    sink(arg: nsDataTainted8!) // $ tainted=78
+    // ";NSData;true;init(contentsOf:options:);;;Argument[0];ReturnValue;taint",
+    let nsDataTainted9 = NSData(contentsOf: source() as! URL, options: [])
+    sink(arg: nsDataTainted9!) // $ tainted=81
+    // ";NSData;true;init(contentsOfMappedFile:);;;Argument[0];ReturnValue;taint",
+    let nsDataTainted10 = NSData(contentsOfMappedFile: source() as! String)
+    sink(arg: nsDataTainted10!) // $ tainted=84
+    // ";NSData;true;init(base64Encoded:options:);;;Argument[0];ReturnValue;taint",
+    let nsDataTainted11 = NSData(base64Encoded: source() as! Data, options: [])
+    sink(arg: nsDataTainted11!) // $ tainted=87
+    let nsDataTainted12 = NSData(base64Encoded: source() as! String, options: [])
+    sink(arg: nsDataTainted12!) // $ tainted=89
+    // ";NSData;true;init(base64Encoding:);;;Argument[0];ReturnValue;taint",
+    let nsDataTainted13 = NSData(base64Encoding: source() as! String)
+    sink(arg: nsDataTainted13!) // $ tainted=92
+    // ";NSData;true;base64EncodedData(options:);;;Argument[-1];ReturnValue;taint",
+    let nsDataTainted14 = source() as! NSData
+    sink(arg: nsDataTainted14.base64EncodedData()) // $ tainted=95
+    sink(arg: nsDataTainted14.base64EncodedData(options: [])) // $ tainted=95
+    // ";NSData;true;base64EncodedString(options:);;;Argument[-1];ReturnValue;taint",
+    let nsDataTainted15 = source() as! NSData
+    sink(arg: nsDataTainted15.base64EncodedString()) // $ tainted=99
+    sink(arg: nsDataTainted15.base64EncodedString(options: [])) // $ tainted=99
+    // ";NSData;true;base64Encoding();;;Argument[-1];ReturnValue;taint",
+    let nsDataTainted16 = source() as! NSData
+    sink(arg: nsDataTainted16.base64Encoding()) // $ tainted=103
+    // ";NSData;true;dataWithContentsOfMappedFile(_:);;;Argument[0];ReturnValue;taint",
+    sink(arg: NSData.dataWithContentsOfMappedFile(source() as! String)!) // $ tainted=106
+    // ";NSData;true;enumerateBytes(_:);;;Argument[-1];Argument[0].Parameter[0];taint"
+    let nsDataTainted17 = source() as! NSData
+    nsDataTainted17.enumerateBytes {
+        bytes, byteRange, stop in sink(arg: bytes) // $ MISSING: tainted=108
+    }
+    // ";NSData;true;getBytes(_:);;;Argument[-1];Argument[0];taint",
+    let nsDataTainted18 = source() as! NSData
+    let bufferTainted18 = UnsafeMutableRawPointer(bitPattern: 0)!
+    nsDataTainted18.getBytes(bufferTainted18)
+    sink(arg: bufferTainted18) // $ tainted=113
+    // ";NSData;true;getBytes(_:length:);;;Argument[-1];Argument[0];taint",
+    let nsDataTainted19 = source() as! NSData
+    let bufferTainted19 = UnsafeMutableRawPointer(bitPattern: 0)!
+    nsDataTainted19.getBytes(bufferTainted19, length: 0)
+    sink(arg: bufferTainted19) // $ tainted=118
+    // ";NSData;true;getBytes(_:range:);;;Argument[-1];Argument[0];taint",
+    let nsDataTainted20 = source() as! NSData
+    let bufferTainted20 = UnsafeMutableRawPointer(bitPattern: 0)!
+    nsDataTainted20.getBytes(bufferTainted20, range: NSRange())
+    sink(arg: bufferTainted20) // $ tainted=123
+    // ";NSData;true;subdata(with:);;;Argument[-1];ReturnValue;taint",
+    let nsDataTainted21 = source() as! NSData
+    sink(arg: nsDataTainted21.subdata(with: NSRange())) // $ tainted=128
+    // ";NSData;true;compressed(using:);;;Argument[-1];ReturnValue;taint",
+    let nsDataTainted22 = source() as! NSData
+    sink(arg: nsDataTainted22.compressed(using: NSData.CompressionAlgorithm.none)) // $ tainted=131
+    // ";NSData;true;decompressed(using:);;;Argument[-1];ReturnValue;taint"
+    let nsDataTainted23 = source() as! NSData
+    sink(arg: nsDataTainted23.decompressed(using: NSData.CompressionAlgorithm.none)) // $ tainted=134
+
+    // Fields
+    let nsDataTainted24 = source() as! NSData
+    sink(arg: nsDataTainted24.bytes) // $ tainted=138
+    sink(arg: nsDataTainted24.description) // $ tainted=138
+}
diff --git a/swift/ql/test/library-tests/dataflow/taint/nsmutabledata.swift b/swift/ql/test/library-tests/dataflow/taint/nsmutabledata.swift
new file mode 100644
index 00000000000..20f2739f9f9
--- /dev/null
+++ b/swift/ql/test/library-tests/dataflow/taint/nsmutabledata.swift
@@ -0,0 +1,50 @@
+// --- stubs ---
+
+struct Data
+{
+    init<S>(_ elements: S) {}
+}
+
+struct NSRange {}
+
+class NSData {}
+
+class NSMutableData : NSData {
+    var mutableBytes: UnsafeMutableRawPointer = UnsafeMutableRawPointer(bitPattern: 0)!
+    func append(_ bytes: UnsafeRawPointer, length: Int) {}
+    func append(_ other: Data) {}
+    func replaceBytes(in range: NSRange, withBytes bytes: UnsafeRawPointer) {}
+    func replaceBytes(in range: NSRange, withBytes replacementBytes: UnsafeRawPointer?, length replacementLength: Int) {}
+    func setData(_ data: Data) {}
+}
+
+// --- tests ---
+func source() -> Any { return "" }
+func sink(arg: Any) {}
+
+func test() {
+    // ";NSMutableData;true;append(_:length:);;;Argument[0];Argument[-1];taint",
+    let nsMutableDataTainted1 = NSMutableData()
+    nsMutableDataTainted1.append(source() as! UnsafeRawPointer, length: 0)
+    sink(arg: nsMutableDataTainted1) // $ tainted=28
+    // ";MutableNSData;true;append(_:);;;Argument[0];Argument[-1];taint",
+    let nsMutableDataTainted2 = NSMutableData()
+    nsMutableDataTainted2.append(source() as! Data)
+    sink(arg: nsMutableDataTainted2) // $ tainted=32
+    // ";NSMutableData;true;replaceBytes(in:withBytes:);;;Argument[1];Argument[-1];taint",
+    let nsMutableDataTainted3 = NSMutableData()
+    nsMutableDataTainted3.replaceBytes(in: NSRange(), withBytes: source() as! UnsafeRawPointer)
+    sink(arg: nsMutableDataTainted3) // $ tainted=36
+    // ";NSMutableData;true;replaceBytes(in:withBytes:length:);;;Argument[1];Argument[-1];taint",
+    let nsMutableDataTainted4 = NSMutableData()
+    nsMutableDataTainted4.replaceBytes(in: NSRange(), withBytes: source() as? UnsafeRawPointer, length: 0)
+    sink(arg: nsMutableDataTainted4) // $ tainted=40
+    // ";NSMutableData;true;setData(_:);;;Argument[1];Argument[-1];taint",
+    let nsMutableDataTainted5 = NSMutableData()
+    nsMutableDataTainted5.setData(source() as! Data)
+    sink(arg: nsMutableDataTainted5) // $ tainted=44
+
+    // Fields
+    let nsMutableDataTainted6 = source() as! NSMutableData
+    sink(arg: nsMutableDataTainted6.mutableBytes) // $ tainted=48
+}

From a2ac1384cb7dd36365265561ef3f1aff9e3bec35 Mon Sep 17 00:00:00 2001
From: Alex Denisov <alexdenisov@github.com>
Date: Tue, 22 Nov 2022 17:16:57 +0100
Subject: [PATCH 0548/1420] Swift: do not abort if cannot archive a source file

---
 swift/extractor/SwiftExtractor.cpp | 1 -
 1 file changed, 1 deletion(-)

diff --git a/swift/extractor/SwiftExtractor.cpp b/swift/extractor/SwiftExtractor.cpp
index 981ab7c1370..349943f2869 100644
--- a/swift/extractor/SwiftExtractor.cpp
+++ b/swift/extractor/SwiftExtractor.cpp
@@ -46,7 +46,6 @@ static void archiveFile(const SwiftExtractorConfiguration& config, swift::Source
   if (ec) {
     std::cerr << "Cannot archive source file " << srcFilePath << " -> " << dstFilePath << ": "
               << ec.message() << "\n";
-    std::abort();
   }
 }
 

From 8f02463411efd9f90a2bce28cc0845df9ede7b16 Mon Sep 17 00:00:00 2001
From: Alex Denisov <alexdenisov@github.com>
Date: Tue, 22 Nov 2022 13:47:24 +0100
Subject: [PATCH 0549/1420] Swift: fix remapping bug

This issue has slipped during a recent refactoring:
https://github.com/github/codeql/pull/10987/files#diff-c5ab26a06a93c4507a834859a6a56878d5bfe16c4d7cbac4afc4f081d46f461aL63-R64
---
 swift/extractor/remapping/SwiftOpenInterception.macOS.cpp | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/swift/extractor/remapping/SwiftOpenInterception.macOS.cpp b/swift/extractor/remapping/SwiftOpenInterception.macOS.cpp
index 035492fd385..0ac23d14cbc 100644
--- a/swift/extractor/remapping/SwiftOpenInterception.macOS.cpp
+++ b/swift/extractor/remapping/SwiftOpenInterception.macOS.cpp
@@ -61,7 +61,7 @@ void finalizeRemapping(
     }
     auto hash = originalHashFile(original);
     auto hashed = scratchDir / hash;
-    if (!hash.empty() && fs::exists(hashed)) {
+    if (!hash.empty() && fs::exists(patched)) {
       std::error_code ec;
       fs::create_symlink(/* target */ patched, /* symlink */ hashed, ec);
       if (ec) {

From 24c413fbf98eb3e66521d2f8496505ab2dd00003 Mon Sep 17 00:00:00 2001
From: Ben Ahmady <32935794+subatoi@users.noreply.github.com>
Date: Tue, 22 Nov 2022 18:33:24 +0000
Subject: [PATCH 0550/1420] Adds Kotlin (beta) content

---
 .../codeql-cli/creating-codeql-databases.rst   |  4 +++-
 ...with-codeql-packs-in-visual-studio-code.rst |  2 +-
 ...-classes-for-working-with-java-programs.rst |  2 ++
 .../analyzing-data-flow-in-java.rst            |  2 ++
 .../codeql-language-guides/codeql-for-java.rst | 14 +++++++++++---
 .../codeql-overview/system-requirements.rst    |  2 ++
 docs/codeql/query-help/codeql-cwe-coverage.rst |  2 ++
 docs/codeql/query-help/index.rst               |  4 +++-
 docs/codeql/reusables/extractors.rst           |  2 +-
 docs/codeql/reusables/kotlin-beta-note.rst     |  4 ++++
 .../reusables/kotlin-java-differences.rst      | 18 ++++++++++++++++++
 docs/codeql/support/reusables/frameworks.rst   |  4 +++-
 12 files changed, 52 insertions(+), 8 deletions(-)
 create mode 100644 docs/codeql/reusables/kotlin-beta-note.rst
 create mode 100644 docs/codeql/reusables/kotlin-java-differences.rst

diff --git a/docs/codeql/codeql-cli/creating-codeql-databases.rst b/docs/codeql/codeql-cli/creating-codeql-databases.rst
index b305c6e1cb6..326f260fc70 100644
--- a/docs/codeql/codeql-cli/creating-codeql-databases.rst
+++ b/docs/codeql/codeql-cli/creating-codeql-databases.rst
@@ -168,7 +168,9 @@ generate a database, therefore the build method must be available to the CLI.
 Detecting the build system
 ~~~~~~~~~~~~~~~~~~~~~~~~~~
 
-The CodeQL CLI includes autobuilders for C/C++, C#, Go, and Java code. CodeQL
+.. include:: ../reusables/kotlin-beta-note.rst
+
+The CodeQL CLI includes autobuilders for C/C++, C#, Go, Java and Kotlin code. CodeQL
 autobuilders allow you to build projects for compiled languages without
 specifying any build commands. When an autobuilder is invoked, CodeQL examines
 the source for evidence of a build system and attempts to run the optimal set of
diff --git a/docs/codeql/codeql-for-visual-studio-code/working-with-codeql-packs-in-visual-studio-code.rst b/docs/codeql/codeql-for-visual-studio-code/working-with-codeql-packs-in-visual-studio-code.rst
index a13832239dc..65cf1ef78ef 100644
--- a/docs/codeql/codeql-for-visual-studio-code/working-with-codeql-packs-in-visual-studio-code.rst
+++ b/docs/codeql/codeql-for-visual-studio-code/working-with-codeql-packs-in-visual-studio-code.rst
@@ -30,7 +30,7 @@ You can then use the CodeQL CLI to publish your pack to share with others. For m
 Viewing CodeQL packs and their dependencies in Visual Studio Code
 -----------------------------------------------------------------
 To download a CodeQL pack that someone else has created, run the **CodeQL: Download Packs** command from the Command Palette.
-You can download all the core CodeQL query packs, or enter the full name of a specific pack to download. For example, to download the core queries for analyzing Java, enter ``codeql/java-queries``.
+You can download all the core CodeQL query packs, or enter the full name of a specific pack to download. For example, to download the core queries for analyzing Java or Kotlin, enter ``codeql/java-queries``.
 
 Whether you have downloaded a CodeQL pack or created your own, you can open the ``qlpack.yml`` file in the root of a CodeQL pack directory in Visual Studio Code and view the dependencies section to see what libraries the pack depends on.
 
diff --git a/docs/codeql/codeql-language-guides/abstract-syntax-tree-classes-for-working-with-java-programs.rst b/docs/codeql/codeql-language-guides/abstract-syntax-tree-classes-for-working-with-java-programs.rst
index 83bce3652b9..7819f762b98 100644
--- a/docs/codeql/codeql-language-guides/abstract-syntax-tree-classes-for-working-with-java-programs.rst
+++ b/docs/codeql/codeql-language-guides/abstract-syntax-tree-classes-for-working-with-java-programs.rst
@@ -7,6 +7,8 @@ CodeQL has a large selection of classes for representing the abstract syntax tre
 
 .. include:: ../reusables/abstract-syntax-tree.rst
 
+.. include:: ../reusables/kotlin-java-differences.rst
+
 Statement classes
 -----------------
 
diff --git a/docs/codeql/codeql-language-guides/analyzing-data-flow-in-java.rst b/docs/codeql/codeql-language-guides/analyzing-data-flow-in-java.rst
index 75309842ad5..cd64a18bcad 100644
--- a/docs/codeql/codeql-language-guides/analyzing-data-flow-in-java.rst
+++ b/docs/codeql/codeql-language-guides/analyzing-data-flow-in-java.rst
@@ -5,6 +5,8 @@ Analyzing data flow in Java
 
 You can use CodeQL to track the flow of data through a Java program to its use. 
 
+.. include:: ../reusables/kotlin-java-differences.rst
+
 About this article
 ------------------
 
diff --git a/docs/codeql/codeql-language-guides/codeql-for-java.rst b/docs/codeql/codeql-language-guides/codeql-for-java.rst
index 53489bc5207..6a16ea0658d 100644
--- a/docs/codeql/codeql-language-guides/codeql-for-java.rst
+++ b/docs/codeql/codeql-language-guides/codeql-for-java.rst
@@ -1,9 +1,17 @@
 .. _codeql-for-java:
 
-CodeQL for Java
-===============
+CodeQL for Java and Kotlin
+==========================
 
-Experiment and learn how to write effective and efficient queries for CodeQL databases generated from Java codebases.
+Experiment and learn how to write effective and efficient queries for CodeQL databases generated from Java and Kotlin codebases.
+
+.. include:: ../reusables/kotlin-beta-note.rst
+
+.. include:: ../reusables/kotlin-java-differences.rst
+
+.. pull-quote:: Enabling Kotlin support
+
+   To enable Kotlin support, you should enable `java` as a language.
 
 .. toctree::
    :hidden:
diff --git a/docs/codeql/codeql-overview/system-requirements.rst b/docs/codeql/codeql-overview/system-requirements.rst
index 5569462e5ae..fd4465f9ba4 100644
--- a/docs/codeql/codeql-overview/system-requirements.rst
+++ b/docs/codeql/codeql-overview/system-requirements.rst
@@ -11,6 +11,8 @@ Supported platforms
 #######################
 
 .. include:: ../support/reusables/platforms.rst
+    
+.. include:: ../reusables/kotlin-beta-note.rst
 
 Additional software requirements
 ################################
diff --git a/docs/codeql/query-help/codeql-cwe-coverage.rst b/docs/codeql/query-help/codeql-cwe-coverage.rst
index c0b36646df8..680f41b1056 100644
--- a/docs/codeql/query-help/codeql-cwe-coverage.rst
+++ b/docs/codeql/query-help/codeql-cwe-coverage.rst
@@ -3,6 +3,8 @@ CodeQL CWE coverage
 
 You can view the full coverage of MITRE's Common Weakness Enumeration (CWE) or coverage by language for the latest release of CodeQL.
 
+.. include:: ../reusables/kotlin-beta-note.rst
+
 About CWEs
 ##########
 
diff --git a/docs/codeql/query-help/index.rst b/docs/codeql/query-help/index.rst
index b45b3a5bf87..6dad02ce2b1 100644
--- a/docs/codeql/query-help/index.rst
+++ b/docs/codeql/query-help/index.rst
@@ -6,11 +6,13 @@ View the query help for the queries included in the ``code-scanning``, ``securit
 - :doc:`CodeQL query help for C and C++ <cpp>`
 - :doc:`CodeQL query help for C# <csharp>`
 - :doc:`CodeQL query help for Go <go>`
-- :doc:`CodeQL query help for Java <java>`
+- :doc:`CodeQL query help for Java and Kotlin <java>`
 - :doc:`CodeQL query help for JavaScript <javascript>`
 - :doc:`CodeQL query help for Python <python>`
 - :doc:`CodeQL query help for Ruby <ruby>`
 
+.. include:: ../reusables/kotlin-beta-note.rst
+
 .. pull-quote:: Information
 
    Each query help article includes: 
diff --git a/docs/codeql/reusables/extractors.rst b/docs/codeql/reusables/extractors.rst
index a3a4952811d..606c57d0208 100644
--- a/docs/codeql/reusables/extractors.rst
+++ b/docs/codeql/reusables/extractors.rst
@@ -10,7 +10,7 @@
      - ``csharp``
    * - Go
      - ``go``
-   * - Java 
+   * - Java/Kotlin
      - ``java``
    * - JavaScript/TypeScript
      - ``javascript``
diff --git a/docs/codeql/reusables/kotlin-beta-note.rst b/docs/codeql/reusables/kotlin-beta-note.rst
new file mode 100644
index 00000000000..d05d137a13e
--- /dev/null
+++ b/docs/codeql/reusables/kotlin-beta-note.rst
@@ -0,0 +1,4 @@
+  .. pull-quote:: Note
+
+     CodeQL analysis for Kotlin is currently in beta. During the beta, analysis of Kotlin code, 
+     and the accompanying documentation, will not be as comprehensive as for other languages.
\ No newline at end of file
diff --git a/docs/codeql/reusables/kotlin-java-differences.rst b/docs/codeql/reusables/kotlin-java-differences.rst
new file mode 100644
index 00000000000..b9d792d6d9f
--- /dev/null
+++ b/docs/codeql/reusables/kotlin-java-differences.rst
@@ -0,0 +1,18 @@
+Writing CodeQL queries in Kotlin versus Java
+--------------------------------------------
+
+When writing Kotlin-specific elements (such as a `WhenExpr`) you’ll need to use Kotlin-specific CodeQL classes, but writing queries for Kotlin and Java is largely the same. The two make use of the same libraries such as DataFlow, TaintTracking, or SSA, and the same classes such as `MethodAccess` or `Class`. 
+
+There are however some important cases where writing queries for Kotlin can produce surprising results compared to writing Java queries, as CodeQL works with the JVM bytecode representation of the source code. 
+
+Be careful when trying to model code elements that don’t exist in Java, such as `NotNullExpr (expr!!)`, because they could interact in unexpected ways with common predicates. For example, `MethodAccess.getQualifier()` gets a `NotNullExpr `instead of a `VarAccess`` in the following Kotlin code:
+
+`someVar!!.someMethodCall()`
+
+In that specific case, you can use the predicate `Expr.getUnderlyingExpr()`. This goes directly to the underlying `VarAccess`` to produce a more similar behavior to that in Java.
+
+Nullable elements (`?`) can also produce unexpected behavior. To avoid a `NullPointerException`, Kotlin may inline calls like `expr.toString()` to `String.valueOf(expr)` when `expr` is nullable. Make sure that you write CodeQL around the extracted code, and do not directly modify the source code in the codebase.
+
+Another example is that if-else expressions are translated into `WhenExprs` in CodeQL, instead of the more typical `IfStmt` in Java.
+
+In general, you can debug these issues with the AST (you can use the `CodeQL: View AST`` command from Visual Studio Code’s CodeQL extension, or run the `PrintAst.ql`` query) and checking what exactly CodeQL is extracting from your code.
\ No newline at end of file
diff --git a/docs/codeql/support/reusables/frameworks.rst b/docs/codeql/support/reusables/frameworks.rst
index b83b26f486a..191b40b4896 100644
--- a/docs/codeql/support/reusables/frameworks.rst
+++ b/docs/codeql/support/reusables/frameworks.rst
@@ -93,9 +93,11 @@ and the CodeQL library pack ``codeql/go-all`` (`changelog <https://github.com/gi
    `yaml <https://gopkg.in/yaml.v3>`_, Serialization
    `zap <https://go.uber.org/zap>`_, Logging library
 
-Java built-in support
+Java and Kotlin built-in support
 ==================================
 
+.. include:: ../reusables/kotlin-beta-note.rst
+
 Provided by the current versions of the
 CodeQL query pack ``codeql/java-queries`` (`changelog <https://github.com/github/codeql/tree/codeql-cli/latest/java/ql/src/CHANGELOG.md>`__, `source <https://github.com/github/codeql/tree/codeql-cli/latest/java/ql/src>`__)
 and the CodeQL library pack ``codeql/java-all`` (`changelog <https://github.com/github/codeql/tree/codeql-cli/latest/java/ql/lib/CHANGELOG.md>`__, `source <https://github.com/github/codeql/tree/codeql-cli/latest/java/ql/lib>`__).

From 4ad7d2d8220126b21ea1abcec6d056d02b96ec1e Mon Sep 17 00:00:00 2001
From: Tom Hvitved <hvitved@github.com>
Date: Tue, 22 Nov 2022 19:51:44 +0100
Subject: [PATCH 0551/1420] C#: Also include extractor unit tests in
 `csharp-qltest.yml`

---
 .github/workflows/csharp-qltest.yml | 13 +++++++++++++
 1 file changed, 13 insertions(+)

diff --git a/.github/workflows/csharp-qltest.yml b/.github/workflows/csharp-qltest.yml
index 78b0ef6a87b..28b3fb7477d 100644
--- a/.github/workflows/csharp-qltest.yml
+++ b/.github/workflows/csharp-qltest.yml
@@ -70,3 +70,16 @@ jobs:
           codeql test run --threads=0 --ram 52000 --slice ${{ matrix.slice }} --search-path "${{ github.workspace }}/csharp/extractor-pack" --check-databases --check-undefined-labels --check-repeated-labels --check-redefined-labels --consistency-queries ql/consistency-queries ql/test --compilation-cache "${{ steps.query-cache.outputs.cache-dir }}"
         env:
           GITHUB_TOKEN: ${{ github.token }}
+  unit-tests:
+    runs-on: ubuntu-latest
+    steps:
+      - uses: actions/checkout@v3
+      - name: Setup dotnet
+        uses: actions/setup-dotnet@v3
+        with:
+          dotnet-version: 6.0.202
+      - name: Extractor unit tests
+        run: |
+          dotnet test -p:RuntimeFrameworkVersion=6.0.4 "${{ github.workspace }}/csharp/extractor/Semmle.Util.Tests"
+          dotnet test -p:RuntimeFrameworkVersion=6.0.4 "${{ github.workspace }}/csharp/extractor/Semmle.Extraction.Tests"
+          dotnet test -p:RuntimeFrameworkVersion=6.0.4 "${{ github.workspace }}/csharp/autobuilder/Semmle.Autobuild.CSharp.Tests"

From d113fb23c839723e96709db42b071b7f90c484e4 Mon Sep 17 00:00:00 2001
From: ka1n4t <574702476@qq.com>
Date: Wed, 23 Nov 2022 11:05:58 +0800
Subject: [PATCH 0552/1420] Add test case for PR-11368

---
 .../MyBatisAnnotationSqlInjection.expected    | 14 +++++++++++
 .../CWE-089/src/main/MybatisSqlInjection.java | 12 +++++++++-
 .../src/main/MybatisSqlInjectionService.java  |  8 +++++++
 .../CWE-089/src/main/SqlInjectionMapper.java  | 23 ++++++++++++-------
 4 files changed, 48 insertions(+), 9 deletions(-)

diff --git a/java/ql/test/experimental/query-tests/security/CWE-089/src/main/MyBatisAnnotationSqlInjection.expected b/java/ql/test/experimental/query-tests/security/CWE-089/src/main/MyBatisAnnotationSqlInjection.expected
index dfc923f9b58..481c8307ac3 100644
--- a/java/ql/test/experimental/query-tests/security/CWE-089/src/main/MyBatisAnnotationSqlInjection.expected
+++ b/java/ql/test/experimental/query-tests/security/CWE-089/src/main/MyBatisAnnotationSqlInjection.expected
@@ -1,16 +1,30 @@
 edges
 | MybatisSqlInjection.java:62:19:62:43 | name : String | MybatisSqlInjection.java:63:35:63:38 | name : String |
 | MybatisSqlInjection.java:63:35:63:38 | name : String | MybatisSqlInjectionService.java:48:19:48:29 | name : String |
+| MybatisSqlInjection.java:94:21:94:45 | name : String | MybatisSqlInjection.java:95:37:95:40 | name : String |
+| MybatisSqlInjection.java:95:37:95:40 | name : String | MybatisSqlInjectionService.java:76:21:76:31 | name : String |
+| MybatisSqlInjection.java:99:21:99:44 | age : String | MybatisSqlInjection.java:100:37:100:39 | age : String |
+| MybatisSqlInjection.java:100:37:100:39 | age : String | MybatisSqlInjectionService.java:80:21:80:30 | age : String |
 | MybatisSqlInjectionService.java:48:19:48:29 | name : String | MybatisSqlInjectionService.java:50:23:50:26 | name : String |
 | MybatisSqlInjectionService.java:50:3:50:9 | hashMap [post update] [<map.value>] : String | MybatisSqlInjectionService.java:51:27:51:33 | hashMap |
 | MybatisSqlInjectionService.java:50:23:50:26 | name : String | MybatisSqlInjectionService.java:50:3:50:9 | hashMap [post update] [<map.value>] : String |
+| MybatisSqlInjectionService.java:76:21:76:31 | name : String | MybatisSqlInjectionService.java:77:29:77:32 | name |
+| MybatisSqlInjectionService.java:80:21:80:30 | age : String | MybatisSqlInjectionService.java:81:29:81:31 | age |
 nodes
 | MybatisSqlInjection.java:62:19:62:43 | name : String | semmle.label | name : String |
 | MybatisSqlInjection.java:63:35:63:38 | name : String | semmle.label | name : String |
+| MybatisSqlInjection.java:94:21:94:45 | name : String | semmle.label | name : String |
+| MybatisSqlInjection.java:95:37:95:40 | name : String | semmle.label | name : String |
+| MybatisSqlInjection.java:99:21:99:44 | age : String | semmle.label | age : String |
+| MybatisSqlInjection.java:100:37:100:39 | age : String | semmle.label | age : String |
 | MybatisSqlInjectionService.java:48:19:48:29 | name : String | semmle.label | name : String |
 | MybatisSqlInjectionService.java:50:3:50:9 | hashMap [post update] [<map.value>] : String | semmle.label | hashMap [post update] [<map.value>] : String |
 | MybatisSqlInjectionService.java:50:23:50:26 | name : String | semmle.label | name : String |
 | MybatisSqlInjectionService.java:51:27:51:33 | hashMap | semmle.label | hashMap |
+| MybatisSqlInjectionService.java:76:21:76:31 | name : String | semmle.label | name : String |
+| MybatisSqlInjectionService.java:77:29:77:32 | name | semmle.label | name |
+| MybatisSqlInjectionService.java:80:21:80:30 | age : String | semmle.label | age : String |
+| MybatisSqlInjectionService.java:81:29:81:31 | age | semmle.label | age |
 subpaths
 #select
 | MybatisSqlInjectionService.java:51:27:51:33 | hashMap | MybatisSqlInjection.java:62:19:62:43 | name : String | MybatisSqlInjectionService.java:51:27:51:33 | hashMap | MyBatis annotation SQL injection might include code from $@ to $@. | MybatisSqlInjection.java:62:19:62:43 | name | this user input | SqlInjectionMapper.java:33:2:33:54 | Select | this SQL operation |
diff --git a/java/ql/test/experimental/query-tests/security/CWE-089/src/main/MybatisSqlInjection.java b/java/ql/test/experimental/query-tests/security/CWE-089/src/main/MybatisSqlInjection.java
index 624f27ad81d..5aa6876e00c 100644
--- a/java/ql/test/experimental/query-tests/security/CWE-089/src/main/MybatisSqlInjection.java
+++ b/java/ql/test/experimental/query-tests/security/CWE-089/src/main/MybatisSqlInjection.java
@@ -79,7 +79,7 @@ public class MybatisSqlInjection {
 	public void badDelete(@RequestParam String name) {
 		mybatisSqlInjectionService.badDelete(name);
 	}
-	
+
 	@GetMapping(value = "badUpdate")
 	public void badUpdate(@RequestParam String name) {
 		mybatisSqlInjectionService.badUpdate(name);
@@ -89,4 +89,14 @@ public class MybatisSqlInjection {
 	public void badInsert(@RequestParam String name) {
 		mybatisSqlInjectionService.badInsert(name);
 	}
+
+	@GetMapping(value = "kkbad1")
+	public void kkbad1(@RequestParam String name, @RequestParam Integer age) {
+		mybatisSqlInjectionService.kkbad1(name, age);
+	}
+
+	@GetMapping(value = "kkbad2")
+	public void kkbad2(@RequestParam String age) {
+		mybatisSqlInjectionService.kkbad2(age);
+	}
 }
diff --git a/java/ql/test/experimental/query-tests/security/CWE-089/src/main/MybatisSqlInjectionService.java b/java/ql/test/experimental/query-tests/security/CWE-089/src/main/MybatisSqlInjectionService.java
index 89dbd599d71..28b9bebc1f4 100644
--- a/java/ql/test/experimental/query-tests/security/CWE-089/src/main/MybatisSqlInjectionService.java
+++ b/java/ql/test/experimental/query-tests/security/CWE-089/src/main/MybatisSqlInjectionService.java
@@ -72,4 +72,12 @@ public class MybatisSqlInjectionService {
 	public void badInsert(String input) {
 		sqlInjectionMapper.badInsert(input);
 	}
+
+	public void kkbad1(String name, Integer age){
+		sqlInjectionMapper.kkbad1(name, age);
+	}
+
+	public void kkbad2(String age){
+		sqlInjectionMapper.kkbad2(age);
+	}
 }
diff --git a/java/ql/test/experimental/query-tests/security/CWE-089/src/main/SqlInjectionMapper.java b/java/ql/test/experimental/query-tests/security/CWE-089/src/main/SqlInjectionMapper.java
index 5b159817297..50801558eb8 100644
--- a/java/ql/test/experimental/query-tests/security/CWE-089/src/main/SqlInjectionMapper.java
+++ b/java/ql/test/experimental/query-tests/security/CWE-089/src/main/SqlInjectionMapper.java
@@ -37,26 +37,33 @@ public interface SqlInjectionMapper {
 
 	//using providers
 	@SelectProvider(
-		type = MyBatisProvider.class,
-		method = "badSelect"
+			type = MyBatisProvider.class,
+			method = "badSelect"
 	)
 	String badSelect(String input);
 
 	@DeleteProvider(
-		type = MyBatisProvider.class,
-		method = "badDelete"
+			type = MyBatisProvider.class,
+			method = "badDelete"
 	)
 	void badDelete(String input);
 
 	@UpdateProvider(
-		type = MyBatisProvider.class,
-		method = "badUpdate"
+			type = MyBatisProvider.class,
+			method = "badUpdate"
 	)
 	void badUpdate(String input);
 
 	@InsertProvider(
-		type = MyBatisProvider.class,
-		method = "badInsert"
+			type = MyBatisProvider.class,
+			method = "badInsert"
 	)
 	void badInsert(String input);
+
+	@Select("select * from user_info where name = #{name} and age = ${age}")
+	String kkbad1(@Param("name") String name, Integer age);
+
+	@Select("select * from user_info where age = #{age}")
+	String kkbad2(@Param("age") String age);
+
 }

From 556d68aeed7bd6177c410c7badf472645de43ce8 Mon Sep 17 00:00:00 2001
From: Geoffrey White <40627776+geoffw0@users.noreply.github.com>
Date: Wed, 23 Nov 2022 09:17:18 +0000
Subject: [PATCH 0553/1420] Update
 swift/ql/src/queries/Security/CWE-311/CleartextTransmission.ql

Co-authored-by: Tony Torralba <atorralba@users.noreply.github.com>
---
 swift/ql/src/queries/Security/CWE-311/CleartextTransmission.ql | 3 +--
 1 file changed, 1 insertion(+), 2 deletions(-)

diff --git a/swift/ql/src/queries/Security/CWE-311/CleartextTransmission.ql b/swift/ql/src/queries/Security/CWE-311/CleartextTransmission.ql
index 21c1c538462..04108a33d29 100644
--- a/swift/ql/src/queries/Security/CWE-311/CleartextTransmission.ql
+++ b/swift/ql/src/queries/Security/CWE-311/CleartextTransmission.ql
@@ -66,8 +66,7 @@ class AlamofireTransmitted extends Transmitted {
       fName.regexpMatch("(request|streamRequest|download)\\(.*") and
       (
         call.getArgument(0).getExpr() = this or
-        call.getArgumentWithLabel("parameters").getExpr() = this or
-        call.getArgumentWithLabel("headers").getExpr() = this
+        call.getArgumentWithLabel(["headers", "parameters"]).getExpr() = this
       )
     )
   }

From e16bdc4d07741ba024d1ebcc27cd17157f0c8e74 Mon Sep 17 00:00:00 2001
From: Nick Rolfe <nickrolfe@github.com>
Date: Wed, 23 Nov 2022 09:43:15 +0000
Subject: [PATCH 0554/1420] Ruby/QL: only create dbscheme case-splits for
 columns on defining tables

---
 ql/node-types/src/lib.rs   | 17 +++++++++++++----
 ruby/node-types/src/lib.rs | 17 +++++++++++++----
 2 files changed, 26 insertions(+), 8 deletions(-)

diff --git a/ql/node-types/src/lib.rs b/ql/node-types/src/lib.rs
index 0472443a380..9467e23fd62 100644
--- a/ql/node-types/src/lib.rs
+++ b/ql/node-types/src/lib.rs
@@ -81,6 +81,14 @@ pub enum Storage {
     },
 }
 
+impl Storage {
+    pub fn is_column(&self) -> bool {
+        match self {
+            Storage::Column { .. } => true,
+            _ => false,
+        }
+    }
+}
 pub fn read_node_types(prefix: &str, node_types_path: &Path) -> std::io::Result<NodeTypeMap> {
     let file = fs::File::open(node_types_path)?;
     let node_types: Vec<NodeInfo> = serde_json::from_reader(file)?;
@@ -245,10 +253,11 @@ fn add_field(
         }
     };
     let converted_types = convert_types(&field_info.types);
-    let type_info = if field_info
-        .types
-        .iter()
-        .all(|t| !t.named && token_kinds.contains(&convert_type(t)))
+    let type_info = if storage.is_column()
+        && field_info
+            .types
+            .iter()
+            .all(|t| !t.named && token_kinds.contains(&convert_type(t)))
     {
         // All possible types for this field are reserved words. The db
         // representation will be an `int` with a `case @foo.field = ...` to
diff --git a/ruby/node-types/src/lib.rs b/ruby/node-types/src/lib.rs
index a48e9ddbf9a..97b535ae912 100644
--- a/ruby/node-types/src/lib.rs
+++ b/ruby/node-types/src/lib.rs
@@ -81,6 +81,14 @@ pub enum Storage {
     },
 }
 
+impl Storage {
+    pub fn is_column(&self) -> bool {
+        match self {
+            Storage::Column { .. } => true,
+            _ => false,
+        }
+    }
+}
 pub fn read_node_types(prefix: &str, node_types_path: &Path) -> std::io::Result<NodeTypeMap> {
     let file = fs::File::open(node_types_path)?;
     let node_types: Vec<NodeInfo> = serde_json::from_reader(file)?;
@@ -245,10 +253,11 @@ fn add_field(
         }
     };
     let converted_types = convert_types(&field_info.types);
-    let type_info = if field_info
-        .types
-        .iter()
-        .all(|t| !t.named && token_kinds.contains(&convert_type(t)))
+    let type_info = if storage.is_column()
+        && field_info
+            .types
+            .iter()
+            .all(|t| !t.named && token_kinds.contains(&convert_type(t)))
     {
         // All possible types for this field are reserved words. The db
         // representation will be an `int` with a `case @foo.field = ...` to

From e2240abc7853cc1ef3d64c56ec335ee6a32de279 Mon Sep 17 00:00:00 2001
From: Ben Ahmady <32935794+subatoi@users.noreply.github.com>
Date: Wed, 23 Nov 2022 10:06:34 +0000
Subject: [PATCH 0555/1420] Update
 docs/codeql/codeql-language-guides/codeql-for-java.rst

Co-authored-by: Felicity Chapman <felicitymay@github.com>
---
 docs/codeql/codeql-language-guides/codeql-for-java.rst | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/docs/codeql/codeql-language-guides/codeql-for-java.rst b/docs/codeql/codeql-language-guides/codeql-for-java.rst
index 6a16ea0658d..536dfbc294e 100644
--- a/docs/codeql/codeql-language-guides/codeql-for-java.rst
+++ b/docs/codeql/codeql-language-guides/codeql-for-java.rst
@@ -11,7 +11,7 @@ Experiment and learn how to write effective and efficient queries for CodeQL dat
 
 .. pull-quote:: Enabling Kotlin support
 
-   To enable Kotlin support, you should enable `java` as a language.
+   To enable Kotlin support, you should enable ``java`` as a language.
 
 .. toctree::
    :hidden:

From 605c7113a2b1f7b947be9c45518c84807b589521 Mon Sep 17 00:00:00 2001
From: Ben Ahmady <32935794+subatoi@users.noreply.github.com>
Date: Wed, 23 Nov 2022 10:06:48 +0000
Subject: [PATCH 0556/1420] Update
 docs/codeql/reusables/kotlin-java-differences.rst

Co-authored-by: Felicity Chapman <felicitymay@github.com>
---
 docs/codeql/reusables/kotlin-java-differences.rst | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/docs/codeql/reusables/kotlin-java-differences.rst b/docs/codeql/reusables/kotlin-java-differences.rst
index b9d792d6d9f..7f091d2b7a8 100644
--- a/docs/codeql/reusables/kotlin-java-differences.rst
+++ b/docs/codeql/reusables/kotlin-java-differences.rst
@@ -1,5 +1,5 @@
-Writing CodeQL queries in Kotlin versus Java
---------------------------------------------
+Writing CodeQL queries for Kotlin versus Java analysis
+------------------------------------------------------
 
 When writing Kotlin-specific elements (such as a `WhenExpr`) you’ll need to use Kotlin-specific CodeQL classes, but writing queries for Kotlin and Java is largely the same. The two make use of the same libraries such as DataFlow, TaintTracking, or SSA, and the same classes such as `MethodAccess` or `Class`. 
 

From 4bd7e24b5fac88d428867dca0103b30984035dee Mon Sep 17 00:00:00 2001
From: Ben Ahmady <32935794+subatoi@users.noreply.github.com>
Date: Wed, 23 Nov 2022 10:06:57 +0000
Subject: [PATCH 0557/1420] Update
 docs/codeql/reusables/kotlin-java-differences.rst

Co-authored-by: Felicity Chapman <felicitymay@github.com>
---
 docs/codeql/reusables/kotlin-java-differences.rst | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/docs/codeql/reusables/kotlin-java-differences.rst b/docs/codeql/reusables/kotlin-java-differences.rst
index 7f091d2b7a8..f36b1c62845 100644
--- a/docs/codeql/reusables/kotlin-java-differences.rst
+++ b/docs/codeql/reusables/kotlin-java-differences.rst
@@ -7,7 +7,8 @@ There are however some important cases where writing queries for Kotlin can prod
 
 Be careful when trying to model code elements that don’t exist in Java, such as `NotNullExpr (expr!!)`, because they could interact in unexpected ways with common predicates. For example, `MethodAccess.getQualifier()` gets a `NotNullExpr `instead of a `VarAccess`` in the following Kotlin code:
 
-`someVar!!.someMethodCall()`
+.. code-block:: kotlin
+   someVar!!.someMethodCall()
 
 In that specific case, you can use the predicate `Expr.getUnderlyingExpr()`. This goes directly to the underlying `VarAccess`` to produce a more similar behavior to that in Java.
 

From c663da5be6d90734ab34e06b316e4218a39743d3 Mon Sep 17 00:00:00 2001
From: Ben Ahmady <32935794+subatoi@users.noreply.github.com>
Date: Wed, 23 Nov 2022 10:07:03 +0000
Subject: [PATCH 0558/1420] Update
 docs/codeql/reusables/kotlin-java-differences.rst

Co-authored-by: Felicity Chapman <felicitymay@github.com>
---
 docs/codeql/reusables/kotlin-java-differences.rst | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/docs/codeql/reusables/kotlin-java-differences.rst b/docs/codeql/reusables/kotlin-java-differences.rst
index f36b1c62845..39d7e39d21e 100644
--- a/docs/codeql/reusables/kotlin-java-differences.rst
+++ b/docs/codeql/reusables/kotlin-java-differences.rst
@@ -5,7 +5,7 @@ When writing Kotlin-specific elements (such as a `WhenExpr`) you’ll need to us
 
 There are however some important cases where writing queries for Kotlin can produce surprising results compared to writing Java queries, as CodeQL works with the JVM bytecode representation of the source code. 
 
-Be careful when trying to model code elements that don’t exist in Java, such as `NotNullExpr (expr!!)`, because they could interact in unexpected ways with common predicates. For example, `MethodAccess.getQualifier()` gets a `NotNullExpr `instead of a `VarAccess`` in the following Kotlin code:
+Be careful when you model code elements that don’t exist in Java, such as ``NotNullExpr (expr!!)``, because they could interact in unexpected ways with common predicates. For example, ``MethodAccess.getQualifier()`` returns a ``NotNullExpr`` instead of a ``VarAccess`` in the following Kotlin code:
 
 .. code-block:: kotlin
    someVar!!.someMethodCall()

From c06b8a68e5211f193c6956de395480b5f8349e06 Mon Sep 17 00:00:00 2001
From: Ben Ahmady <32935794+subatoi@users.noreply.github.com>
Date: Wed, 23 Nov 2022 10:08:00 +0000
Subject: [PATCH 0559/1420] Update
 docs/codeql/reusables/kotlin-java-differences.rst

Co-authored-by: Felicity Chapman <felicitymay@github.com>
---
 docs/codeql/reusables/kotlin-java-differences.rst | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/docs/codeql/reusables/kotlin-java-differences.rst b/docs/codeql/reusables/kotlin-java-differences.rst
index 39d7e39d21e..7a228408104 100644
--- a/docs/codeql/reusables/kotlin-java-differences.rst
+++ b/docs/codeql/reusables/kotlin-java-differences.rst
@@ -3,7 +3,7 @@ Writing CodeQL queries for Kotlin versus Java analysis
 
 When writing Kotlin-specific elements (such as a `WhenExpr`) you’ll need to use Kotlin-specific CodeQL classes, but writing queries for Kotlin and Java is largely the same. The two make use of the same libraries such as DataFlow, TaintTracking, or SSA, and the same classes such as `MethodAccess` or `Class`. 
 
-There are however some important cases where writing queries for Kotlin can produce surprising results compared to writing Java queries, as CodeQL works with the JVM bytecode representation of the source code. 
+There are however some important cases where writing queries for Kotlin can produce surprising results compared to writing queries for Java, as CodeQL works with the JVM bytecode representation of the Kotlin source code. 
 
 Be careful when you model code elements that don’t exist in Java, such as ``NotNullExpr (expr!!)``, because they could interact in unexpected ways with common predicates. For example, ``MethodAccess.getQualifier()`` returns a ``NotNullExpr`` instead of a ``VarAccess`` in the following Kotlin code:
 

From df7f0cf9a96c11ea1eed51cb1f9f301bdd1302f8 Mon Sep 17 00:00:00 2001
From: Ben Ahmady <32935794+subatoi@users.noreply.github.com>
Date: Wed, 23 Nov 2022 10:08:10 +0000
Subject: [PATCH 0560/1420] Update
 docs/codeql/codeql-language-guides/analyzing-data-flow-in-java.rst

---
 .../codeql-language-guides/analyzing-data-flow-in-java.rst      | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/docs/codeql/codeql-language-guides/analyzing-data-flow-in-java.rst b/docs/codeql/codeql-language-guides/analyzing-data-flow-in-java.rst
index cd64a18bcad..2eccdf5e103 100644
--- a/docs/codeql/codeql-language-guides/analyzing-data-flow-in-java.rst
+++ b/docs/codeql/codeql-language-guides/analyzing-data-flow-in-java.rst
@@ -5,6 +5,8 @@ Analyzing data flow in Java
 
 You can use CodeQL to track the flow of data through a Java program to its use. 
 
+.. include:: ../reusables/kotlin-beta-note.rst
+
 .. include:: ../reusables/kotlin-java-differences.rst
 
 About this article

From 0a91ee10195a35743dd8bb1be2c5630acfa25c0e Mon Sep 17 00:00:00 2001
From: Ben Ahmady <32935794+subatoi@users.noreply.github.com>
Date: Wed, 23 Nov 2022 10:08:20 +0000
Subject: [PATCH 0561/1420] Update
 docs/codeql/codeql-language-guides/abstract-syntax-tree-classes-for-working-with-java-programs.rst

---
 ...tract-syntax-tree-classes-for-working-with-java-programs.rst | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/docs/codeql/codeql-language-guides/abstract-syntax-tree-classes-for-working-with-java-programs.rst b/docs/codeql/codeql-language-guides/abstract-syntax-tree-classes-for-working-with-java-programs.rst
index 7819f762b98..7d41785ea89 100644
--- a/docs/codeql/codeql-language-guides/abstract-syntax-tree-classes-for-working-with-java-programs.rst
+++ b/docs/codeql/codeql-language-guides/abstract-syntax-tree-classes-for-working-with-java-programs.rst
@@ -7,6 +7,8 @@ CodeQL has a large selection of classes for representing the abstract syntax tre
 
 .. include:: ../reusables/abstract-syntax-tree.rst
 
+.. include:: ../reusables/kotlin-beta-note.rst
+
 .. include:: ../reusables/kotlin-java-differences.rst
 
 Statement classes

From 7644ecad52fdb11d1d511a179d6d18280e9bdd4a Mon Sep 17 00:00:00 2001
From: Ben Ahmady <32935794+subatoi@users.noreply.github.com>
Date: Wed, 23 Nov 2022 10:08:29 +0000
Subject: [PATCH 0562/1420] Update
 docs/codeql/reusables/kotlin-java-differences.rst

Co-authored-by: Felicity Chapman <felicitymay@github.com>
---
 docs/codeql/reusables/kotlin-java-differences.rst | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/docs/codeql/reusables/kotlin-java-differences.rst b/docs/codeql/reusables/kotlin-java-differences.rst
index 7a228408104..15831b5d2bc 100644
--- a/docs/codeql/reusables/kotlin-java-differences.rst
+++ b/docs/codeql/reusables/kotlin-java-differences.rst
@@ -16,4 +16,4 @@ Nullable elements (`?`) can also produce unexpected behavior. To avoid a `NullPo
 
 Another example is that if-else expressions are translated into `WhenExprs` in CodeQL, instead of the more typical `IfStmt` in Java.
 
-In general, you can debug these issues with the AST (you can use the `CodeQL: View AST`` command from Visual Studio Code’s CodeQL extension, or run the `PrintAst.ql`` query) and checking what exactly CodeQL is extracting from your code.
\ No newline at end of file
+In general, you can debug these issues with the AST (you can use the ``CodeQL: View AST`` command from Visual Studio Code’s CodeQL extension, or run the ``PrintAst.ql`` query) and see exactly what CodeQL is extracting from your code.
\ No newline at end of file

From 093ff4061dab1b6dde2b898559c788ff6d77c23d Mon Sep 17 00:00:00 2001
From: Ben Ahmady <32935794+subatoi@users.noreply.github.com>
Date: Wed, 23 Nov 2022 10:08:45 +0000
Subject: [PATCH 0563/1420] Update
 docs/codeql/reusables/kotlin-java-differences.rst

Co-authored-by: Felicity Chapman <felicitymay@github.com>
---
 docs/codeql/reusables/kotlin-java-differences.rst | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/docs/codeql/reusables/kotlin-java-differences.rst b/docs/codeql/reusables/kotlin-java-differences.rst
index 15831b5d2bc..2cefb35a6ea 100644
--- a/docs/codeql/reusables/kotlin-java-differences.rst
+++ b/docs/codeql/reusables/kotlin-java-differences.rst
@@ -1,7 +1,7 @@
 Writing CodeQL queries for Kotlin versus Java analysis
 ------------------------------------------------------
 
-When writing Kotlin-specific elements (such as a `WhenExpr`) you’ll need to use Kotlin-specific CodeQL classes, but writing queries for Kotlin and Java is largely the same. The two make use of the same libraries such as DataFlow, TaintTracking, or SSA, and the same classes such as `MethodAccess` or `Class`. 
+Generally you use the same classes to write queries for Kotlin and for Java. You use the same libraries such as DataFlow, TaintTracking, or SSA, and the same classes such as `MethodAccess` or `Class` for both languages. When you want to access Kotlin-specific elements (such as a ``WhenExpr``) you’ll need to use Kotlin-specific CodeQL classes.
 
 There are however some important cases where writing queries for Kotlin can produce surprising results compared to writing queries for Java, as CodeQL works with the JVM bytecode representation of the Kotlin source code. 
 

From 2e3413c9b8db194fa5eaf7e6e3df5e96fe3bd043 Mon Sep 17 00:00:00 2001
From: Asger F <asgerf@github.com>
Date: Fri, 11 Nov 2022 13:07:38 +0100
Subject: [PATCH 0564/1420] JS: Merge package/type columns

---
 .../ql/lib/semmle/javascript/ApiGraphs.qll    |    3 +
 .../semmle/javascript/frameworks/NoSQL.qll    |   26 +-
 .../lib/semmle/javascript/frameworks/SQL.qll  |   18 +-
 .../data/internal/ApiGraphModels.qll          |  312 ++--
 .../data/internal/ApiGraphModelsSpecific.qll  |   85 +-
 .../javascript/frameworks/minimongo/Model.qll |  150 +-
 .../frameworks/minimongo/model.json           |  150 +-
 .../javascript/frameworks/mongodb/Model.qll   | 1338 ++++++++--------
 .../javascript/frameworks/mongodb/model.json  | 1352 ++++++++---------
 .../javascript/frameworks/mssql/Model.qll     |   68 +-
 .../javascript/frameworks/mssql/model.json    |   74 +-
 .../javascript/frameworks/mysql/Model.qll     |  120 +-
 .../javascript/frameworks/mysql/model.json    |  138 +-
 .../semmle/javascript/frameworks/pg/Model.qll |  150 +-
 .../javascript/frameworks/pg/model.json       |  166 +-
 .../javascript/frameworks/sequelize/Model.qll |  520 +++----
 .../frameworks/sequelize/model.json           |  522 +++----
 .../javascript/frameworks/spanner/Model.qll   |  348 ++---
 .../javascript/frameworks/spanner/model.json  |  348 ++---
 .../javascript/frameworks/sqlite3/Model.qll   |   36 +-
 .../javascript/frameworks/sqlite3/model.json  |   38 +-
 .../test/ApiGraphs/typed/NodeOfType.expected  |    5 +
 .../frameworks/data/test.expected             |    1 +
 .../library-tests/frameworks/data/test.ql     |   95 +-
 .../frameworks/data/warnings.expected         |    4 +-
 .../library-tests/frameworks/data/warnings.ql |   14 +-
 26 files changed, 3050 insertions(+), 3031 deletions(-)

diff --git a/javascript/ql/lib/semmle/javascript/ApiGraphs.qll b/javascript/ql/lib/semmle/javascript/ApiGraphs.qll
index 72d5a50cebe..f7460d802f5 100644
--- a/javascript/ql/lib/semmle/javascript/ApiGraphs.qll
+++ b/javascript/ql/lib/semmle/javascript/ApiGraphs.qll
@@ -562,6 +562,9 @@ module API {
     /** Gets a node whose type has the given qualified name, not including types from models. */
     Node getANodeOfTypeRaw(string moduleName, string exportedName) {
       result = Impl::MkTypeUse(moduleName, exportedName).(Node).getInstance()
+      or
+      exportedName = "" and
+      result = getAModuleImportRaw(moduleName)
     }
   }
 
diff --git a/javascript/ql/lib/semmle/javascript/frameworks/NoSQL.qll b/javascript/ql/lib/semmle/javascript/frameworks/NoSQL.qll
index 11f454eadd5..3fa7b3bd3e2 100644
--- a/javascript/ql/lib/semmle/javascript/frameworks/NoSQL.qll
+++ b/javascript/ql/lib/semmle/javascript/frameworks/NoSQL.qll
@@ -24,7 +24,7 @@ private module MongoDB {
     override predicate row(string row) {
       // In Mongo version 2.x, a client and a database handle were the same concept, but in 3.x
       // they were separated. To handle everything with a single model, we treat them as the same here.
-      row = "mongodb;Db;mongodb;MongoClient;"
+      row = "mongodb.Db;mongodb.MongoClient;"
     }
   }
 
@@ -42,11 +42,11 @@ private module MongoDB {
   /** A call to a MongoDB query method. */
   private class QueryCall extends DatabaseAccess, API::CallNode {
     QueryCall() {
-      this = ModelOutput::getATypeNode("mongodb", "Collection").getAMember().getACall() and
+      this = ModelOutput::getATypeNode("mongodb.Collection").getAMember().getACall() and
       not this.getCalleeName() = ["toString", "valueOf", "getLogger"]
       or
       this =
-        ModelOutput::getATypeNode("mongodb", ["Db", "MongoClient"])
+        ModelOutput::getATypeNode(["mongodb.Db", "mongodb.MongoClient"])
             .getMember(["watch", "aggregate"])
             .getACall()
     }
@@ -63,7 +63,7 @@ private module MongoDB {
 
   private class Insertion extends DatabaseAccess, API::CallNode {
     Insertion() {
-      this = ModelOutput::getATypeNode("mongodb", "Collection").getAMember().getACall() and
+      this = ModelOutput::getATypeNode("mongodb.Collection").getAMember().getACall() and
       this.getCalleeName().matches("insert%")
     }
 
@@ -105,9 +105,7 @@ private module Mongoose {
   private class QueryCall extends DatabaseAccess, API::CallNode {
     QueryCall() {
       this =
-        ModelOutput::getATypeNode("mongoose", "Query")
-            .getMember(["exec", "then", "catch"])
-            .getACall()
+        ModelOutput::getATypeNode("mongoose.Query").getMember(["exec", "then", "catch"]).getACall()
     }
 
     override DataFlow::Node getAQueryArgument() { result = this.getReceiver() }
@@ -132,10 +130,10 @@ private module Mongoose {
   private class QueryWithCallback extends DatabaseAccess, API::CallNode {
     QueryWithCallback() {
       this =
-        ModelOutput::getATypeNode("mongoose", ["Document", "Model", "Query"])
+        ModelOutput::getATypeNode(["mongoose.Document", "mongoose.Model", "mongoose.Query"])
             .getAMember()
             .getACall() and
-      this.getReturn() = ModelOutput::getATypeNode("mongoose", "Query") and
+      this.getReturn() = ModelOutput::getATypeNode("mongoose.Query") and
       exists(this.getLastArgument().getABoundFunctionValue(_))
     }
 
@@ -152,7 +150,7 @@ private module Mongoose {
 
     QueryAwait() {
       astNode.getOperand().flow() =
-        ModelOutput::getATypeNode("mongoose", "Query").getAValueReachableFromSource()
+        ModelOutput::getATypeNode("mongoose.Query").getAValueReachableFromSource()
     }
 
     override DataFlow::Node getAQueryArgument() { result = astNode.getOperand().flow() }
@@ -162,7 +160,7 @@ private module Mongoose {
 
   class Insertion extends DatabaseAccess, API::CallNode {
     Insertion() {
-      this = ModelOutput::getATypeNode("mongoose", "Model").getAMember().getACall() and
+      this = ModelOutput::getATypeNode("mongoose.Model").getAMember().getACall() and
       this.getCalleeName().matches("insert%")
     }
 
@@ -180,9 +178,9 @@ private module MarsDB {
     override predicate row(string row) {
       row =
         [
-          "mongoose;Query;marsdb;;Member[Collection].Instance",
-          "mongoose;Model;marsdb;;Member[Collection].Instance",
-          "mongoose;Query;mongoose;Query;Member[sortFunc].ReturnValue",
+          "mongoose.Query;marsdb;Member[Collection].Instance",
+          "mongoose.Model;marsdb;Member[Collection].Instance",
+          "mongoose.Query;mongoose.Query;Member[sortFunc].ReturnValue",
         ]
     }
   }
diff --git a/javascript/ql/lib/semmle/javascript/frameworks/SQL.qll b/javascript/ql/lib/semmle/javascript/frameworks/SQL.qll
index 8bbeb1cbf55..80694f0c723 100644
--- a/javascript/ql/lib/semmle/javascript/frameworks/SQL.qll
+++ b/javascript/ql/lib/semmle/javascript/frameworks/SQL.qll
@@ -357,7 +357,7 @@ private module Sequelize {
   // Note: the sinks are specified directly in the MaD model
   class SequelizeSource extends ModelInput::SourceModelCsv {
     override predicate row(string row) {
-      row = "sequelize;Sequelize;Member[query].ReturnValue.Awaited;database-access-result"
+      row = "sequelize.Sequelize;Member[query].ReturnValue.Awaited;database-access-result"
     }
   }
 }
@@ -368,10 +368,10 @@ private module SpannerCsv {
       // package; type; path; kind
       row =
         [
-          "@google-cloud/spanner;~SqlExecutorDirect;Argument[0];sql-injection",
-          "@google-cloud/spanner;~SqlExecutorDirect;Argument[0].Member[sql];sql-injection",
-          "@google-cloud/spanner;Transaction;Member[batchUpdate].Argument[0];sql-injection",
-          "@google-cloud/spanner;Transaction;Member[batchUpdate].Argument[0].ArrayElement.Member[sql];sql-injection",
+          "@google-cloud/spanner.~SqlExecutorDirect;Argument[0];sql-injection",
+          "@google-cloud/spanner.~SqlExecutorDirect;Argument[0].Member[sql];sql-injection",
+          "@google-cloud/spanner.Transaction;Member[batchUpdate].Argument[0];sql-injection",
+          "@google-cloud/spanner.Transaction;Member[batchUpdate].Argument[0].ArrayElement.Member[sql];sql-injection",
         ]
     }
   }
@@ -380,10 +380,10 @@ private module SpannerCsv {
     override predicate row(string row) {
       row =
         [
-          "@google-cloud/spanner;~SpannerObject;Member[executeSql].Argument[0..].Parameter[1];database-access-result",
-          "@google-cloud/spanner;~SpannerObject;Member[executeSql].ReturnValue.Awaited.Member[0];database-access-result",
-          "@google-cloud/spanner;~SpannerObject;Member[run].ReturnValue.Awaited;database-access-result",
-          "@google-cloud/spanner;~SpannerObject;Member[run].Argument[0..].Parameter[1];database-access-result",
+          "@google-cloud/spanner.~SpannerObject;Member[executeSql].Argument[0..].Parameter[1];database-access-result",
+          "@google-cloud/spanner.~SpannerObject;Member[executeSql].ReturnValue.Awaited.Member[0];database-access-result",
+          "@google-cloud/spanner.~SpannerObject;Member[run].ReturnValue.Awaited;database-access-result",
+          "@google-cloud/spanner.~SpannerObject;Member[run].Argument[0..].Parameter[1];database-access-result",
         ]
     }
   }
diff --git a/javascript/ql/lib/semmle/javascript/frameworks/data/internal/ApiGraphModels.qll b/javascript/ql/lib/semmle/javascript/frameworks/data/internal/ApiGraphModels.qll
index 9b2428f3413..0e744ba801a 100644
--- a/javascript/ql/lib/semmle/javascript/frameworks/data/internal/ApiGraphModels.qll
+++ b/javascript/ql/lib/semmle/javascript/frameworks/data/internal/ApiGraphModels.qll
@@ -5,23 +5,20 @@
  *
  * The CSV specification has the following columns:
  * - Sources:
- *   `package; type; path; kind`
+ *   `type; path; kind`
  * - Sinks:
- *   `package; type; path; kind`
+ *   `type; path; kind`
  * - Summaries:
- *   `package; type; path; input; output; kind`
+ *   `type; path; input; output; kind`
  * - Types:
- *   `package1; type1; package2; type2; path`
+ *   `type1; type2; path`
  *
  * The interpretation of a row is similar to API-graphs with a left-to-right
  * reading.
- * 1. The `package` column selects a package name, as it would be referenced in the source code,
- *    such as an NPM package, PIP package, or Ruby gem. (See `ModelsAsData.qll` for language-specific details).
- *    It may also be a synthetic package used for a type definition (see type definitions below).
- * 2. The `type` column selects all instances of a named type originating from that package,
- *    or the empty string if referring to the package itself.
+ * 1. The `type` column selects all instances of a named type. The syntax of this column is language-specific.
+ *    The language defines some type names that the analysis knows how to identify without models.
  *    It can also be a synthetic type name defined by a type definition (see type definitions below).
- * 3. The `path` column is a `.`-separated list of "access path tokens" to resolve, starting at the node selected by `package` and `type`.
+ * 2. The `path` column is a `.`-separated list of "access path tokens" to resolve, starting at the node selected by `type`.
  *
  *    Every language supports the following tokens:
  *     - Argument[n]: the n-th argument to a call. May be a range of form `x..y` (inclusive) and/or a comma-separated list.
@@ -42,10 +39,10 @@
  *
  *    For the time being, please consult `ApiGraphModelsSpecific.qll` to see which language-specific tokens are currently supported.
  *
- * 4. The `input` and `output` columns specify how data enters and leaves the element selected by the
- *    first `(package, type, path)` tuple. Both strings are `.`-separated access paths
+ * 3. The `input` and `output` columns specify how data enters and leaves the element selected by the
+ *    first `(type, path)` tuple. Both strings are `.`-separated access paths
  *    of the same syntax as the `path` column.
- * 5. The `kind` column is a tag that can be referenced from QL to determine to
+ * 4. The `kind` column is a tag that can be referenced from QL to determine to
  *    which classes the interpreted elements should be added. For example, for
  *    sources `"remote"` indicates a default remote flow source, and for summaries
  *    `"taint"` indicates a default additional taint step and `"value"` indicates a
@@ -53,17 +50,17 @@
  *
  * ### Types
  *
- * A type row of form `package1; type1; package2; type2; path` indicates that `package2; type2; path`
- * should be seen as an instance of the type `package1; type1`.
+ * A type row of form `type1; type2; path` indicates that `type2; path`
+ * should be seen as an instance of the type `type1`.
  *
- * A `(package,type)` pair may refer to a static type or a synthetic type name used internally in the model.
+ * A type may refer to a static type or a synthetic type name used internally in the model.
  * Synthetic type names can be used to reuse intermediate sub-paths, when there are multiple ways to access the same
  * element.
- * See `ModelsAsData.qll` for the language-specific interpretation of packages and static type names.
+ * See `ModelsAsData.qll` for the language-specific interpretation of type names.
  *
- * By convention, if one wants to avoid clashes with static types from the package, the type name
- * should be prefixed with a tilde character (`~`). For example, `(foo, ~Bar)` can be used to indicate that
- * the type is related to the `foo` package but is not intended to match a static type.
+ * By convention, if one wants to avoid clashes with static types, the type name
+ * should be prefixed with a tilde character (`~`). For example, `~Bar` can be used to indicate that
+ * the type is not intended to match a static type.
  */
 
 private import ApiGraphModelsSpecific as Specific
@@ -89,9 +86,9 @@ module ModelInput {
      *
      * A row of form
      * ```
-     * package;type;path;kind
+     * type;path;kind
      * ```
-     * indicates that the value at `(package, type, path)` should be seen as a flow
+     * indicates that the value at `(type, path)` should be seen as a flow
      * source of the given `kind`.
      *
      * The kind `remote` represents a general remote flow source.
@@ -110,9 +107,9 @@ module ModelInput {
      *
      * A row of form
      * ```
-     * package;type;path;kind
+     * type;path;kind
      * ```
-     * indicates that the value at `(package, type, path)` should be seen as a sink
+     * indicates that the value at `(type, path)` should be seen as a sink
      * of the given `kind`.
      */
     abstract predicate row(string row);
@@ -129,9 +126,9 @@ module ModelInput {
      *
      * A row of form
      * ```
-     * package;type;path;input;output;kind
+     * type;path;input;output;kind
      * ```
-     * indicates that for each call to `(package, type, path)`, the value referred to by `input`
+     * indicates that for each call to `(type, path)`, the value referred to by `input`
      * can flow to the value referred to by `output`.
      *
      * `kind` should be either `value` or `taint`, for value-preserving or taint-preserving steps,
@@ -151,9 +148,9 @@ module ModelInput {
      *
      * A row of form,
      * ```
-     * package1;type1;package2;type2;path
+     * type1;type2;path
      * ```
-     * indicates that `(package2, type2, path)` should be seen as an instance of `(package1, type1)`.
+     * indicates that `(type2, path)` should be seen as an instance of `type1`.
      */
     abstract predicate row(string row);
   }
@@ -163,28 +160,28 @@ module ModelInput {
    */
   class TypeModel extends Unit {
     /**
-     * Gets a data-flow node that is a source of the type `package;type`.
+     * Gets a data-flow node that is a source of the given `type`.
      *
      * This must not depend on API graphs, but ensures that an API node is generated for
      * the source.
      */
-    DataFlow::Node getASource(string package, string type) { none() }
+    DataFlow::Node getASource(string type) { none() }
 
     /**
-     * Gets a data-flow node that is a sink of the type `package;type`,
+     * Gets a data-flow node that is a sink of the given `type`,
      * usually because it is an argument passed to a parameter of that type.
      *
      * This must not depend on API graphs, but ensures that an API node is generated for
      * the sink.
      */
-    DataFlow::Node getASink(string package, string type) { none() }
+    DataFlow::Node getASink(string type) { none() }
 
     /**
-     * Gets an API node that is a source or sink of the type `package;type`.
+     * Gets an API node that is a source or sink of the given `type`.
      *
      * Unlike `getASource` and `getASink`, this may depend on API graphs.
      */
-    API::Node getAnApiNode(string package, string type) { none() }
+    API::Node getAnApiNode(string type) { none() }
   }
 
   /**
@@ -209,7 +206,7 @@ private import ModelInput
 /**
  * An empty class, except in specific tests.
  *
- * If this is non-empty, all models are parsed even if the package is not
+ * If this is non-empty, all models are parsed even if the type name is not
  * considered relevant for the current database.
  */
 abstract class TestAllModels extends Unit { }
@@ -232,53 +229,44 @@ private predicate typeModel(string row) { any(TypeModelCsv s).row(inversePad(row
 private predicate typeVariableModel(string row) { any(TypeVariableModelCsv s).row(inversePad(row)) }
 
 /** Holds if a source model exists for the given parameters. */
-predicate sourceModel(string package, string type, string path, string kind) {
+predicate sourceModel(string type, string path, string kind) {
   exists(string row |
     sourceModel(row) and
-    row.splitAt(";", 0) = package and
-    row.splitAt(";", 1) = type and
-    row.splitAt(";", 2) = path and
-    row.splitAt(";", 3) = kind
+    row.splitAt(";", 0) = type and
+    row.splitAt(";", 1) = path and
+    row.splitAt(";", 2) = kind
   )
 }
 
 /** Holds if a sink model exists for the given parameters. */
-private predicate sinkModel(string package, string type, string path, string kind) {
+private predicate sinkModel(string type, string path, string kind) {
   exists(string row |
     sinkModel(row) and
-    row.splitAt(";", 0) = package and
-    row.splitAt(";", 1) = type and
-    row.splitAt(";", 2) = path and
-    row.splitAt(";", 3) = kind
+    row.splitAt(";", 0) = type and
+    row.splitAt(";", 1) = path and
+    row.splitAt(";", 2) = kind
   )
 }
 
 /** Holds if a summary model `row` exists for the given parameters. */
-private predicate summaryModel(
-  string package, string type, string path, string input, string output, string kind
-) {
+private predicate summaryModel(string type, string path, string input, string output, string kind) {
   exists(string row |
     summaryModel(row) and
-    row.splitAt(";", 0) = package and
-    row.splitAt(";", 1) = type and
-    row.splitAt(";", 2) = path and
-    row.splitAt(";", 3) = input and
-    row.splitAt(";", 4) = output and
-    row.splitAt(";", 5) = kind
+    row.splitAt(";", 0) = type and
+    row.splitAt(";", 1) = path and
+    row.splitAt(";", 2) = input and
+    row.splitAt(";", 3) = output and
+    row.splitAt(";", 4) = kind
   )
 }
 
 /** Holds if a type model exists for the given parameters. */
-private predicate typeModel(
-  string package1, string type1, string package2, string type2, string path
-) {
+private predicate typeModel(string type1, string type2, string path) {
   exists(string row |
     typeModel(row) and
-    row.splitAt(";", 0) = package1 and
-    row.splitAt(";", 1) = type1 and
-    row.splitAt(";", 2) = package2 and
-    row.splitAt(";", 3) = type2 and
-    row.splitAt(";", 4) = path
+    row.splitAt(";", 0) = type1 and
+    row.splitAt(";", 1) = type2 and
+    row.splitAt(";", 2) = path
   )
 }
 
@@ -292,61 +280,50 @@ private predicate typeVariableModel(string name, string path) {
 }
 
 /**
- * Gets a package that should be seen as an alias for the given other `package`,
- * or the `package` itself.
+ * Holds if CSV rows involving `type` might be relevant for the analysis of this database.
  */
-bindingset[package]
-bindingset[result]
-string getAPackageAlias(string package) {
-  typeModel(package, "", result, "", "")
-  or
-  result = package
-}
-
-/**
- * Holds if CSV rows involving `package` might be relevant for the analysis of this database.
- */
-private predicate isRelevantPackage(string package) {
+predicate isRelevantType(string type) {
   (
-    sourceModel(package, _, _, _) or
-    sinkModel(package, _, _, _) or
-    summaryModel(package, _, _, _, _, _) or
-    typeModel(_, _, package, _, _)
+    sourceModel(type, _, _) or
+    sinkModel(type, _, _) or
+    summaryModel(type, _, _, _, _) or
+    typeModel(_, type, _)
   ) and
   (
-    Specific::isPackageUsed(package)
+    Specific::isTypeUsed(type)
     or
     exists(TestAllModels t)
   )
   or
-  exists(string other |
-    isRelevantPackage(other) and
-    typeModel(package, _, other, _, _)
+  exists(string other | isRelevantType(other) |
+    typeModel(type, other, _)
+    or
+    Specific::hasImplicitTypeModel(type, other)
   )
 }
 
 /**
- * Holds if `package,type,path` is used in some CSV row.
+ * Holds if `type,path` is used in some CSV row.
  */
 pragma[nomagic]
-predicate isRelevantFullPath(string package, string type, string path) {
-  isRelevantPackage(package) and
+predicate isRelevantFullPath(string type, string path) {
+  isRelevantType(type) and
   (
-    sourceModel(package, type, path, _) or
-    sinkModel(package, type, path, _) or
-    summaryModel(package, type, path, _, _, _) or
-    typeModel(_, _, package, type, path)
+    sourceModel(type, path, _) or
+    sinkModel(type, path, _) or
+    summaryModel(type, path, _, _, _) or
+    typeModel(_, type, path)
   )
 }
 
 /** A string from a CSV row that should be parsed as an access path. */
 private class AccessPathRange extends AccessPath::Range {
   AccessPathRange() {
-    isRelevantFullPath(_, _, this)
+    isRelevantFullPath(_, this)
     or
-    exists(string package | isRelevantPackage(package) |
-      summaryModel(package, _, _, this, _, _) or
-      summaryModel(package, _, _, _, this, _)
+    exists(string type | isRelevantType(type) |
+      summaryModel(type, _, this, _, _) or
+      summaryModel(type, _, _, this, _)
     )
     or
     typeVariableModel(_, this)
@@ -400,83 +377,73 @@ private predicate invocationMatchesCallSiteFilter(Specific::InvokeNode invoke, A
 }
 
 private class TypeModelUseEntry extends API::EntryPoint {
-  private string package;
   private string type;
 
   TypeModelUseEntry() {
-    exists(any(TypeModel tm).getASource(package, type)) and
-    this = "TypeModelUseEntry;" + package + ";" + type
+    exists(any(TypeModel tm).getASource(type)) and
+    this = "TypeModelUseEntry;" + type
   }
 
-  override DataFlow::LocalSourceNode getASource() {
-    result = any(TypeModel tm).getASource(package, type)
-  }
+  override DataFlow::LocalSourceNode getASource() { result = any(TypeModel tm).getASource(type) }
 
-  API::Node getNodeForType(string package_, string type_) {
-    package = package_ and type = type_ and result = this.getANode()
-  }
+  API::Node getNodeForType(string type_) { type = type_ and result = this.getANode() }
 }
 
 private class TypeModelDefEntry extends API::EntryPoint {
-  private string package;
   private string type;
 
   TypeModelDefEntry() {
-    exists(any(TypeModel tm).getASink(package, type)) and
-    this = "TypeModelDefEntry;" + package + ";" + type
+    exists(any(TypeModel tm).getASink(type)) and
+    this = "TypeModelDefEntry;" + type
   }
 
-  override DataFlow::Node getASink() { result = any(TypeModel tm).getASink(package, type) }
+  override DataFlow::Node getASink() { result = any(TypeModel tm).getASink(type) }
 
-  API::Node getNodeForType(string package_, string type_) {
-    package = package_ and type = type_ and result = this.getANode()
-  }
+  API::Node getNodeForType(string type_) { type = type_ and result = this.getANode() }
 }
 
 /**
- * Gets an API node identified by the given `(package,type)` pair.
+ * Gets an API node identified by the given `type`.
  */
 pragma[nomagic]
-private API::Node getNodeFromType(string package, string type) {
-  exists(string package2, string type2, AccessPath path2 |
-    typeModel(package, type, package2, type2, path2) and
-    result = getNodeFromPath(package2, type2, path2)
+private API::Node getNodeFromType(string type) {
+  exists(string type2, AccessPath path2 |
+    typeModel(type, type2, path2) and
+    result = getNodeFromPath(type2, path2)
   )
   or
-  result = any(TypeModelUseEntry e).getNodeForType(package, type)
+  result = any(TypeModelUseEntry e).getNodeForType(type)
   or
-  result = any(TypeModelDefEntry e).getNodeForType(package, type)
+  result = any(TypeModelDefEntry e).getNodeForType(type)
   or
-  result = any(TypeModel t).getAnApiNode(package, type)
+  result = any(TypeModel t).getAnApiNode(type)
   or
-  result = Specific::getExtraNodeFromType(package, type)
+  result = Specific::getExtraNodeFromType(type)
 }
 
 /**
- * Gets the API node identified by the first `n` tokens of `path` in the given `(package, type, path)` tuple.
+ * Gets the API node identified by the first `n` tokens of `path` in the given `(type, path)` tuple.
  */
 pragma[nomagic]
-private API::Node getNodeFromPath(string package, string type, AccessPath path, int n) {
-  isRelevantFullPath(package, type, path) and
+private API::Node getNodeFromPath(string type, AccessPath path, int n) {
+  isRelevantFullPath(type, path) and
   (
     n = 0 and
-    result = getNodeFromType(package, type)
+    result = getNodeFromType(type)
     or
-    result = Specific::getExtraNodeFromPath(package, type, path, n)
+    result = Specific::getExtraNodeFromPath(type, path, n)
   )
   or
-  result = getSuccessorFromNode(getNodeFromPath(package, type, path, n - 1), path.getToken(n - 1))
+  result = getSuccessorFromNode(getNodeFromPath(type, path, n - 1), path.getToken(n - 1))
   or
   // Similar to the other recursive case, but where the path may have stepped through one or more call-site filters
-  result =
-    getSuccessorFromInvoke(getInvocationFromPath(package, type, path, n - 1), path.getToken(n - 1))
+  result = getSuccessorFromInvoke(getInvocationFromPath(type, path, n - 1), path.getToken(n - 1))
   or
   // Apply a subpath
-  result =
-    getNodeFromSubPath(getNodeFromPath(package, type, path, n - 1), getSubPathAt(path, n - 1))
+  result = getNodeFromSubPath(getNodeFromPath(type, path, n - 1), getSubPathAt(path, n - 1))
   or
   // Apply a type step
-  typeStep(getNodeFromPath(package, type, path, n), result)
+  typeStep(getNodeFromPath(type, path, n), result)
 }
 
 /**
@@ -496,15 +463,15 @@ private AccessPath getSubPathAt(AccessPath path, int n) {
 pragma[nomagic]
 private API::Node getNodeFromSubPath(API::Node base, AccessPath subPath, int n) {
   exists(AccessPath path, int k |
-    base = [getNodeFromPath(_, _, path, k), getNodeFromSubPath(_, path, k)] and
+    base = [getNodeFromPath(_, path, k), getNodeFromSubPath(_, path, k)] and
     subPath = getSubPathAt(path, k) and
     result = base and
     n = 0
   )
   or
-  exists(string package, string type, AccessPath basePath |
-    typeStepModel(package, type, basePath, subPath) and
-    base = getNodeFromPath(package, type, basePath) and
+  exists(string type, AccessPath basePath |
+    typeStepModel(type, basePath, subPath) and
+    base = getNodeFromPath(type, basePath) and
     result = base and
     n = 0
   )
@@ -543,42 +510,40 @@ private API::Node getNodeFromSubPath(API::Node base, AccessPath subPath) {
   result = getNodeFromSubPath(base, subPath, subPath.getNumToken())
 }
 
-/** Gets the node identified by the given `(package, type, path)` tuple. */
-private API::Node getNodeFromPath(string package, string type, AccessPath path) {
-  result = getNodeFromPath(package, type, path, path.getNumToken())
+/** Gets the node identified by the given `(type, path)` tuple. */
+private API::Node getNodeFromPath(string type, AccessPath path) {
+  result = getNodeFromPath(type, path, path.getNumToken())
 }
 
 pragma[nomagic]
-private predicate typeStepModel(string package, string type, AccessPath basePath, AccessPath output) {
-  summaryModel(package, type, basePath, "", output, "type")
+private predicate typeStepModel(string type, AccessPath basePath, AccessPath output) {
+  summaryModel(type, basePath, "", output, "type")
 }
 
 pragma[nomagic]
 private predicate typeStep(API::Node pred, API::Node succ) {
-  exists(string package, string type, AccessPath basePath, AccessPath output |
-    typeStepModel(package, type, basePath, output) and
-    pred = getNodeFromPath(package, type, basePath) and
+  exists(string type, AccessPath basePath, AccessPath output |
+    typeStepModel(type, basePath, output) and
+    pred = getNodeFromPath(type, basePath) and
     succ = getNodeFromSubPath(pred, output)
   )
 }
 
 /**
- * Gets an invocation identified by the given `(package, type, path)` tuple.
+ * Gets an invocation identified by the given `(type, path)` tuple.
  *
  * Unlike `getNodeFromPath`, the `path` may end with one or more call-site filters.
  */
-private Specific::InvokeNode getInvocationFromPath(
-  string package, string type, AccessPath path, int n
-) {
-  result = Specific::getAnInvocationOf(getNodeFromPath(package, type, path, n))
+private Specific::InvokeNode getInvocationFromPath(string type, AccessPath path, int n) {
+  result = Specific::getAnInvocationOf(getNodeFromPath(type, path, n))
   or
-  result = getInvocationFromPath(package, type, path, n - 1) and
+  result = getInvocationFromPath(type, path, n - 1) and
   invocationMatchesCallSiteFilter(result, path.getToken(n - 1))
 }
 
-/** Gets an invocation identified by the given `(package, type, path)` tuple. */
-private Specific::InvokeNode getInvocationFromPath(string package, string type, AccessPath path) {
-  result = getInvocationFromPath(package, type, path, path.getNumToken())
+/** Gets an invocation identified by the given `(type, path)` tuple. */
+private Specific::InvokeNode getInvocationFromPath(string type, AccessPath path) {
+  result = getInvocationFromPath(type, path, path.getNumToken())
 }
 
 /**
@@ -631,9 +596,9 @@ module ModelOutput {
      */
     cached
     API::Node getASourceNode(string kind) {
-      exists(string package, string type, string path |
-        sourceModel(package, type, path, kind) and
-        result = getNodeFromPath(package, type, path)
+      exists(string type, string path |
+        sourceModel(type, path, kind) and
+        result = getNodeFromPath(type, path)
       )
     }
 
@@ -642,9 +607,9 @@ module ModelOutput {
      */
     cached
     API::Node getASinkNode(string kind) {
-      exists(string package, string type, string path |
-        sinkModel(package, type, path, kind) and
-        result = getNodeFromPath(package, type, path)
+      exists(string type, string path |
+        sinkModel(type, path, kind) and
+        result = getNodeFromPath(type, path)
       )
     }
 
@@ -653,32 +618,31 @@ module ModelOutput {
      */
     cached
     predicate relevantSummaryModel(
-      string package, string type, string path, string input, string output, string kind
+      string type, string path, string input, string output, string kind
     ) {
-      isRelevantPackage(package) and
-      summaryModel(package, type, path, input, output, kind)
+      isRelevantType(type) and
+      summaryModel(type, path, input, output, kind)
     }
 
     /**
-     * Holds if a `baseNode` is an invocation identified by the `package,type,path` part of a summary row.
+     * Holds if a `baseNode` is an invocation identified by the `type,path` part of a summary row.
      */
     cached
-    predicate resolvedSummaryBase(
-      string package, string type, string path, Specific::InvokeNode baseNode
-    ) {
-      summaryModel(package, type, path, _, _, _) and
-      baseNode = getInvocationFromPath(package, type, path)
+    predicate resolvedSummaryBase(string type, string path, Specific::InvokeNode baseNode) {
+      summaryModel(type, path, _, _, _) and
+      baseNode = getInvocationFromPath(type, path)
     }
 
     /**
-     * Holds if `node` is seen as an instance of `(package,type)` due to a type definition
+     * Holds if `node` is seen as an instance of `type` due to a type definition
      * contributed by a CSV model.
      */
     cached
-    API::Node getATypeNode(string package, string type) { result = getNodeFromType(package, type) }
+    API::Node getATypeNode(string type) { result = getNodeFromType(type) }
   }
 
   import Cached
+  import Specific::ModelOutputSpecific
 
   /**
    * Gets an error message relating to an invalid CSV row in a model.
@@ -686,13 +650,13 @@ module ModelOutput {
   string getAWarning() {
     // Check number of columns
     exists(string row, string kind, int expectedArity, int actualArity |
-      any(SourceModelCsv csv).row(row) and kind = "source" and expectedArity = 4
+      any(SourceModelCsv csv).row(row) and kind = "source" and expectedArity = 3
       or
-      any(SinkModelCsv csv).row(row) and kind = "sink" and expectedArity = 4
+      any(SinkModelCsv csv).row(row) and kind = "sink" and expectedArity = 3
       or
-      any(SummaryModelCsv csv).row(row) and kind = "summary" and expectedArity = 6
+      any(SummaryModelCsv csv).row(row) and kind = "summary" and expectedArity = 5
       or
-      any(TypeModelCsv csv).row(row) and kind = "type" and expectedArity = 5
+      any(TypeModelCsv csv).row(row) and kind = "type" and expectedArity = 3
       or
       any(TypeVariableModelCsv csv).row(row) and kind = "type-variable" and expectedArity = 2
     |
@@ -705,7 +669,7 @@ module ModelOutput {
     or
     // Check names and arguments of access path tokens
     exists(AccessPath path, AccessPathToken token |
-      (isRelevantFullPath(_, _, path) or typeVariableModel(_, path)) and
+      (isRelevantFullPath(_, path) or typeVariableModel(_, path)) and
       token = path.getToken(_)
     |
       not isValidTokenNameInIdentifyingAccessPath(token.getName()) and
diff --git a/javascript/ql/lib/semmle/javascript/frameworks/data/internal/ApiGraphModelsSpecific.qll b/javascript/ql/lib/semmle/javascript/frameworks/data/internal/ApiGraphModelsSpecific.qll
index 097a46fd11a..73a2fd28d0c 100644
--- a/javascript/ql/lib/semmle/javascript/frameworks/data/internal/ApiGraphModelsSpecific.qll
+++ b/javascript/ql/lib/semmle/javascript/frameworks/data/internal/ApiGraphModelsSpecific.qll
@@ -31,6 +31,15 @@ import semmle.javascript.frameworks.data.internal.AccessPathSyntax as AccessPath
 import JS::DataFlow as DataFlow
 private import AccessPathSyntax
 
+bindingset[rawType]
+predicate parseTypeString(string rawType, string package, string qualifiedName) {
+  exists(string regexp |
+    regexp = "('[^']+'|[^.]+)(.*)" and
+    package = rawType.regexpCapture(regexp, 1).regexpReplaceAll("^'|'$", "") and
+    qualifiedName = rawType.regexpCapture(regexp, 2).regexpReplaceAll("^\\.", "")
+  )
+}
+
 /**
  * Holds if models describing `package` may be relevant for the analysis of this database.
  */
@@ -42,10 +51,30 @@ predicate isPackageUsed(string package) {
   any(DataFlow::SourceNode sn).hasUnderlyingType(package, _)
 }
 
+bindingset[type]
+predicate isTypeUsed(string type) {
+  exists(string package |
+    parseTypeString(type, package, _) and
+    isPackageUsed(package)
+  )
+}
+
+/**
+ * Holds if `type` can be obtained from an instance of `otherType` due to
+ * language semantics modeled by `getExtraNodeFromType`.
+ */
+predicate hasImplicitTypeModel(string type, string otherType) { none() }
+
+pragma[nomagic]
+private predicate parseRelevantTypeString(string rawType, string package, string qualifiedName) {
+  isRelevantFullPath(rawType, _) and
+  parseTypeString(rawType, package, qualifiedName)
+}
+
 /** Holds if `global` is a global variable referenced via a the `global` package in a CSV row. */
 private predicate isRelevantGlobal(string global) {
   exists(AccessPath path, AccessPathToken token |
-    isRelevantFullPath("global", "", path) and
+    isRelevantFullPath("global", path) and
     token = path.getToken(0) and
     token.getName() = "Member" and
     global = token.getAnArgument()
@@ -74,13 +103,12 @@ private API::Node getGlobalNode(string globalName) {
   result = any(GlobalApiEntryPoint e | e.getGlobal() = globalName).getANode()
 }
 
-/** Gets a JavaScript-specific interpretation of the `(package, type, path)` tuple after resolving the first `n` access path tokens. */
-bindingset[package, type, path]
-API::Node getExtraNodeFromPath(string package, string type, AccessPath path, int n) {
+/** Gets a JavaScript-specific interpretation of the `(type, path)` tuple after resolving the first `n` access path tokens. */
+bindingset[type, path]
+API::Node getExtraNodeFromPath(string type, AccessPath path, int n) {
   // Global variable accesses is via the 'global' package
   exists(AccessPathToken token |
-    package = getAPackageAlias("global") and
-    type = "" and
+    type = "global" and
     token = path.getToken(0) and
     token.getName() = "Member" and
     result = getGlobalNode(token.getAnArgument()) and
@@ -89,12 +117,16 @@ API::Node getExtraNodeFromPath(string package, string type, AccessPath path, int
 }
 
 /** Gets a JavaScript-specific interpretation of the `(package, type)` tuple. */
-API::Node getExtraNodeFromType(string package, string type) {
-  type = "" and
-  result = API::moduleImport(package)
-  or
-  // Access instance of a type based on type annotations
-  result = API::Internal::getANodeOfTypeRaw(getAPackageAlias(package), type)
+API::Node getExtraNodeFromType(string type) {
+  exists(string package, string qualifiedName |
+    parseRelevantTypeString(type, package, qualifiedName)
+  |
+    qualifiedName = "" and
+    result = API::moduleImport(package)
+    or
+    // Access instance of a type based on type annotations
+    result = API::Internal::getANodeOfTypeRaw(package, qualifiedName)
+  )
 }
 
 /**
@@ -184,9 +216,9 @@ predicate invocationMatchesExtraCallSiteFilter(API::InvokeNode invoke, AccessPat
  */
 pragma[nomagic]
 private predicate relevantInputOutputPath(API::InvokeNode base, AccessPath inputOrOutput) {
-  exists(string package, string type, string input, string output, string path |
-    ModelOutput::relevantSummaryModel(package, type, path, input, output, _) and
-    ModelOutput::resolvedSummaryBase(package, type, path, base) and
+  exists(string type, string input, string output, string path |
+    ModelOutput::relevantSummaryModel(type, path, input, output, _) and
+    ModelOutput::resolvedSummaryBase(type, path, base) and
     inputOrOutput = [input, output]
   )
 }
@@ -216,12 +248,9 @@ private API::Node getNodeFromInputOutputPath(API::InvokeNode baseNode, AccessPat
  * Holds if a CSV summary contributed the step `pred -> succ` of the given `kind`.
  */
 predicate summaryStep(API::Node pred, API::Node succ, string kind) {
-  exists(
-    string package, string type, string path, API::InvokeNode base, AccessPath input,
-    AccessPath output
-  |
-    ModelOutput::relevantSummaryModel(package, type, path, input, output, kind) and
-    ModelOutput::resolvedSummaryBase(package, type, path, base) and
+  exists(string type, string path, API::InvokeNode base, AccessPath input, AccessPath output |
+    ModelOutput::relevantSummaryModel(type, path, input, output, kind) and
+    ModelOutput::resolvedSummaryBase(type, path, base) and
     pred = getNodeFromInputOutputPath(base, input) and
     succ = getNodeFromInputOutputPath(base, output)
   )
@@ -270,3 +299,17 @@ predicate isExtraValidTokenArgumentInIdentifyingAccessPath(string name, string a
   exists(argument.indexOf("=")) and
   exists(AccessPath::parseIntWithArity(argument.splitAt("=", 0), 10))
 }
+
+module ModelOutputSpecific {
+  /**
+   * Gets a node that should be seen as an instance of `package,type` due to a type definition
+   * contributed by a CSV model.
+   */
+  cached
+  API::Node getATypeNode(string package, string qualifiedName) {
+    exists(string rawType |
+      result = ModelOutput::getATypeNode(rawType) and
+      parseTypeString(rawType, package, qualifiedName)
+    )
+  }
+}
diff --git a/javascript/ql/lib/semmle/javascript/frameworks/minimongo/Model.qll b/javascript/ql/lib/semmle/javascript/frameworks/minimongo/Model.qll
index d0ba6c3ed23..56b1470166b 100644
--- a/javascript/ql/lib/semmle/javascript/frameworks/minimongo/Model.qll
+++ b/javascript/ql/lib/semmle/javascript/frameworks/minimongo/Model.qll
@@ -6,81 +6,81 @@ private class Types extends ModelInput::TypeModelCsv {
   override predicate row(string row) {
     row =
       [
-        "minimongo/IndexedDb;IndexedDbCollection;minimongo/IndexedDb;IndexedDbCollectionStatic;Instance", //
-        "minimongo/IndexedDb;IndexedDbCollection;minimongo/lib/IndexedDb;default;Member[collections].AnyMember", //
-        "minimongo/MemoryDb;Collection;minimongo/MemoryDb;CollectionStatic;Instance", //
-        "minimongo/MemoryDb;Collection;minimongo/lib/MemoryDb;default;Member[collections].AnyMember", //
-        "minimongo/RemoteDb;Collection;minimongo/RemoteDb;CollectionStatic;Instance", //
-        "minimongo/RemoteDb;Collection;minimongo/lib/RemoteDb;default;Member[collections].AnyMember", //
-        "minimongo/ReplicatingDb;Collection;minimongo/ReplicatingDb;CollectionStatic;Instance", //
-        "minimongo/ReplicatingDb;Collection;minimongo/lib/ReplicatingDb;default;Member[collections].AnyMember", //
-        "minimongo/lib/HybridDb;default;minimongo/lib/HybridDb;defaultStatic;Instance", //
-        "minimongo/lib/HybridDb;defaultStatic;minimongo/lib/HybridDb;;Member[default]", //
-        "minimongo/lib/HybridDb;defaultStatic;minimongo;;Member[HybridDb]", //
-        "minimongo/lib/IndexedDb;default;minimongo/lib/IndexedDb;defaultStatic;Instance", //
-        "minimongo/lib/IndexedDb;default;minimongo;;Member[utils].Member[autoselectLocalDb].ReturnValue", //
-        "minimongo/lib/IndexedDb;defaultStatic;minimongo/lib/IndexedDb;;Member[default]", //
-        "minimongo/lib/IndexedDb;defaultStatic;minimongo;;Member[IndexedDb]", //
-        "minimongo/lib/LocalStorageDb;default;minimongo/lib/LocalStorageDb;defaultStatic;Instance", //
-        "minimongo/lib/LocalStorageDb;default;minimongo;;Member[utils].Member[autoselectLocalDb].ReturnValue", //
-        "minimongo/lib/LocalStorageDb;defaultStatic;minimongo/lib/LocalStorageDb;;Member[default]", //
-        "minimongo/lib/LocalStorageDb;defaultStatic;minimongo;;Member[LocalStorageDb]", //
-        "minimongo/lib/MemoryDb;default;minimongo/lib/MemoryDb;defaultStatic;Instance", //
-        "minimongo/lib/MemoryDb;default;minimongo;;Member[utils].Member[autoselectLocalDb].ReturnValue", //
-        "minimongo/lib/MemoryDb;defaultStatic;minimongo/lib/MemoryDb;;Member[default]", //
-        "minimongo/lib/MemoryDb;defaultStatic;minimongo;;Member[MemoryDb]", //
-        "minimongo/lib/RemoteDb;default;minimongo/lib/RemoteDb;defaultStatic;Instance", //
-        "minimongo/lib/RemoteDb;defaultStatic;minimongo/lib/RemoteDb;;Member[default]", //
-        "minimongo/lib/RemoteDb;defaultStatic;minimongo;;Member[RemoteDb]", //
-        "minimongo/lib/ReplicatingDb;default;minimongo/lib/ReplicatingDb;defaultStatic;Instance", //
-        "minimongo/lib/ReplicatingDb;defaultStatic;minimongo/lib/ReplicatingDb;;Member[default]", //
-        "minimongo/lib/ReplicatingDb;defaultStatic;minimongo;;Member[ReplicatingDb]", //
-        "minimongo/lib/WebSQLDb;default;minimongo/lib/WebSQLDb;defaultStatic;Instance", //
-        "minimongo/lib/WebSQLDb;default;minimongo;;Member[utils].Member[autoselectLocalDb].ReturnValue", //
-        "minimongo/lib/WebSQLDb;defaultStatic;minimongo/lib/WebSQLDb;;Member[default]", //
-        "minimongo/lib/WebSQLDb;defaultStatic;minimongo;;Member[WebSQLDb]", //
-        "minimongo;HybridCollection;minimongo/lib/HybridDb;HybridCollection;", //
-        "minimongo;HybridCollection;minimongo/lib/HybridDb;default;Member[collections].AnyMember", //
-        "minimongo;HybridCollection;minimongo;HybridCollectionStatic;Instance", //
-        "minimongo;HybridCollectionStatic;minimongo/lib/HybridDb;;Member[HybridCollection]", //
-        "minimongo;HybridCollectionStatic;minimongo/lib/HybridDb;HybridCollectionStatic;", //
-        "minimongo;HybridCollectionStatic;minimongo;;Member[HybridCollection]", //
-        "minimongo;MinimongoBaseCollection;minimongo/RemoteDb;Collection;", //
-        "minimongo;MinimongoBaseCollection;minimongo/lib/types;MinimongoBaseCollection;", //
-        "minimongo;MinimongoBaseCollection;minimongo;HybridCollection;", //
-        "minimongo;MinimongoBaseCollection;minimongo;MinimongoCollection;", //
-        "minimongo;MinimongoBaseCollection;minimongo;MinimongoDb;AnyMember", //
-        "minimongo;MinimongoBaseCollection;minimongo;MinimongoLocalCollection;", //
-        "minimongo;MinimongoCollection;minimongo/lib/LocalStorageDb;default;Member[collections].AnyMember", //
-        "minimongo;MinimongoCollection;minimongo/lib/WebSQLDb;default;Member[collections].AnyMember", //
-        "minimongo;MinimongoCollection;minimongo/lib/types;MinimongoCollection;", //
-        "minimongo;MinimongoCollection;minimongo;HybridCollection;Member[remoteCol]", //
-        "minimongo;MinimongoCollection;minimongo;MinimongoDb;Member[collections].AnyMember", //
-        "minimongo;MinimongoDb;minimongo/lib/HybridDb;default;", //
-        "minimongo;MinimongoDb;minimongo/lib/HybridDb;default;Member[remoteDb]", //
-        "minimongo;MinimongoDb;minimongo/lib/LocalStorageDb;default;", //
-        "minimongo;MinimongoDb;minimongo/lib/MemoryDb;default;", //
-        "minimongo;MinimongoDb;minimongo/lib/RemoteDb;default;", //
-        "minimongo;MinimongoDb;minimongo/lib/ReplicatingDb;default;Member[masterDb,replicaDb]", //
-        "minimongo;MinimongoDb;minimongo/lib/WebSQLDb;default;", //
-        "minimongo;MinimongoDb;minimongo/lib/types;MinimongoDb;", //
-        "minimongo;MinimongoDb;minimongo;MinimongoDb;Member[remoteDb]", //
-        "minimongo;MinimongoDb;minimongo;MinimongoLocalDb;", //
-        "minimongo;MinimongoLocalCollection;minimongo/IndexedDb;IndexedDbCollection;", //
-        "minimongo;MinimongoLocalCollection;minimongo/MemoryDb;Collection;", //
-        "minimongo;MinimongoLocalCollection;minimongo/ReplicatingDb;Collection;", //
-        "minimongo;MinimongoLocalCollection;minimongo/ReplicatingDb;Collection;Member[masterCol,replicaCol]", //
-        "minimongo;MinimongoLocalCollection;minimongo/lib/types;MinimongoLocalCollection;", //
-        "minimongo;MinimongoLocalCollection;minimongo;HybridCollection;Member[localCol]", //
-        "minimongo;MinimongoLocalCollection;minimongo;MinimongoCollection;", //
-        "minimongo;MinimongoLocalCollection;minimongo;MinimongoLocalDb;Member[addCollection].Argument[2].Argument[0]", //
-        "minimongo;MinimongoLocalCollection;minimongo;MinimongoLocalDb;Member[collections].AnyMember", //
-        "minimongo;MinimongoLocalDb;minimongo/lib/HybridDb;default;Member[localDb]", //
-        "minimongo;MinimongoLocalDb;minimongo/lib/IndexedDb;default;", //
-        "minimongo;MinimongoLocalDb;minimongo/lib/ReplicatingDb;default;", //
-        "minimongo;MinimongoLocalDb;minimongo/lib/types;MinimongoLocalDb;", //
-        "minimongo;MinimongoLocalDb;minimongo;MinimongoDb;Member[localDb]", //
-        "mongodb;Collection;minimongo;MinimongoBaseCollection;", //
+        "minimongo.HybridCollection;minimongo.HybridCollectionStatic;Instance", //
+        "minimongo.HybridCollection;minimongo/lib/HybridDb.HybridCollection;", //
+        "minimongo.HybridCollection;minimongo/lib/HybridDb.default;Member[collections].AnyMember", //
+        "minimongo.HybridCollectionStatic;minimongo/lib/HybridDb.HybridCollectionStatic;", //
+        "minimongo.HybridCollectionStatic;minimongo/lib/HybridDb;Member[HybridCollection]", //
+        "minimongo.HybridCollectionStatic;minimongo;Member[HybridCollection]", //
+        "minimongo.MinimongoBaseCollection;minimongo.HybridCollection;", //
+        "minimongo.MinimongoBaseCollection;minimongo.MinimongoCollection;", //
+        "minimongo.MinimongoBaseCollection;minimongo.MinimongoDb;AnyMember", //
+        "minimongo.MinimongoBaseCollection;minimongo.MinimongoLocalCollection;", //
+        "minimongo.MinimongoBaseCollection;minimongo/RemoteDb.Collection;", //
+        "minimongo.MinimongoBaseCollection;minimongo/lib/types.MinimongoBaseCollection;", //
+        "minimongo.MinimongoCollection;minimongo.HybridCollection;Member[remoteCol]", //
+        "minimongo.MinimongoCollection;minimongo.MinimongoDb;Member[collections].AnyMember", //
+        "minimongo.MinimongoCollection;minimongo/lib/LocalStorageDb.default;Member[collections].AnyMember", //
+        "minimongo.MinimongoCollection;minimongo/lib/WebSQLDb.default;Member[collections].AnyMember", //
+        "minimongo.MinimongoCollection;minimongo/lib/types.MinimongoCollection;", //
+        "minimongo.MinimongoDb;minimongo.MinimongoDb;Member[remoteDb]", //
+        "minimongo.MinimongoDb;minimongo.MinimongoLocalDb;", //
+        "minimongo.MinimongoDb;minimongo/lib/HybridDb.default;", //
+        "minimongo.MinimongoDb;minimongo/lib/HybridDb.default;Member[remoteDb]", //
+        "minimongo.MinimongoDb;minimongo/lib/LocalStorageDb.default;", //
+        "minimongo.MinimongoDb;minimongo/lib/MemoryDb.default;", //
+        "minimongo.MinimongoDb;minimongo/lib/RemoteDb.default;", //
+        "minimongo.MinimongoDb;minimongo/lib/ReplicatingDb.default;Member[masterDb,replicaDb]", //
+        "minimongo.MinimongoDb;minimongo/lib/WebSQLDb.default;", //
+        "minimongo.MinimongoDb;minimongo/lib/types.MinimongoDb;", //
+        "minimongo.MinimongoLocalCollection;minimongo.HybridCollection;Member[localCol]", //
+        "minimongo.MinimongoLocalCollection;minimongo.MinimongoCollection;", //
+        "minimongo.MinimongoLocalCollection;minimongo.MinimongoLocalDb;Member[addCollection].Argument[2].Argument[0]", //
+        "minimongo.MinimongoLocalCollection;minimongo.MinimongoLocalDb;Member[collections].AnyMember", //
+        "minimongo.MinimongoLocalCollection;minimongo/IndexedDb.IndexedDbCollection;", //
+        "minimongo.MinimongoLocalCollection;minimongo/MemoryDb.Collection;", //
+        "minimongo.MinimongoLocalCollection;minimongo/ReplicatingDb.Collection;", //
+        "minimongo.MinimongoLocalCollection;minimongo/ReplicatingDb.Collection;Member[masterCol,replicaCol]", //
+        "minimongo.MinimongoLocalCollection;minimongo/lib/types.MinimongoLocalCollection;", //
+        "minimongo.MinimongoLocalDb;minimongo.MinimongoDb;Member[localDb]", //
+        "minimongo.MinimongoLocalDb;minimongo/lib/HybridDb.default;Member[localDb]", //
+        "minimongo.MinimongoLocalDb;minimongo/lib/IndexedDb.default;", //
+        "minimongo.MinimongoLocalDb;minimongo/lib/ReplicatingDb.default;", //
+        "minimongo.MinimongoLocalDb;minimongo/lib/types.MinimongoLocalDb;", //
+        "minimongo/IndexedDb.IndexedDbCollection;minimongo/IndexedDb.IndexedDbCollectionStatic;Instance", //
+        "minimongo/IndexedDb.IndexedDbCollection;minimongo/lib/IndexedDb.default;Member[collections].AnyMember", //
+        "minimongo/MemoryDb.Collection;minimongo/MemoryDb.CollectionStatic;Instance", //
+        "minimongo/MemoryDb.Collection;minimongo/lib/MemoryDb.default;Member[collections].AnyMember", //
+        "minimongo/RemoteDb.Collection;minimongo/RemoteDb.CollectionStatic;Instance", //
+        "minimongo/RemoteDb.Collection;minimongo/lib/RemoteDb.default;Member[collections].AnyMember", //
+        "minimongo/ReplicatingDb.Collection;minimongo/ReplicatingDb.CollectionStatic;Instance", //
+        "minimongo/ReplicatingDb.Collection;minimongo/lib/ReplicatingDb.default;Member[collections].AnyMember", //
+        "minimongo/lib/HybridDb.default;minimongo/lib/HybridDb.defaultStatic;Instance", //
+        "minimongo/lib/HybridDb.defaultStatic;minimongo/lib/HybridDb;Member[default]", //
+        "minimongo/lib/HybridDb.defaultStatic;minimongo;Member[HybridDb]", //
+        "minimongo/lib/IndexedDb.default;minimongo/lib/IndexedDb.defaultStatic;Instance", //
+        "minimongo/lib/IndexedDb.default;minimongo;Member[utils].Member[autoselectLocalDb].ReturnValue", //
+        "minimongo/lib/IndexedDb.defaultStatic;minimongo/lib/IndexedDb;Member[default]", //
+        "minimongo/lib/IndexedDb.defaultStatic;minimongo;Member[IndexedDb]", //
+        "minimongo/lib/LocalStorageDb.default;minimongo/lib/LocalStorageDb.defaultStatic;Instance", //
+        "minimongo/lib/LocalStorageDb.default;minimongo;Member[utils].Member[autoselectLocalDb].ReturnValue", //
+        "minimongo/lib/LocalStorageDb.defaultStatic;minimongo/lib/LocalStorageDb;Member[default]", //
+        "minimongo/lib/LocalStorageDb.defaultStatic;minimongo;Member[LocalStorageDb]", //
+        "minimongo/lib/MemoryDb.default;minimongo/lib/MemoryDb.defaultStatic;Instance", //
+        "minimongo/lib/MemoryDb.default;minimongo;Member[utils].Member[autoselectLocalDb].ReturnValue", //
+        "minimongo/lib/MemoryDb.defaultStatic;minimongo/lib/MemoryDb;Member[default]", //
+        "minimongo/lib/MemoryDb.defaultStatic;minimongo;Member[MemoryDb]", //
+        "minimongo/lib/RemoteDb.default;minimongo/lib/RemoteDb.defaultStatic;Instance", //
+        "minimongo/lib/RemoteDb.defaultStatic;minimongo/lib/RemoteDb;Member[default]", //
+        "minimongo/lib/RemoteDb.defaultStatic;minimongo;Member[RemoteDb]", //
+        "minimongo/lib/ReplicatingDb.default;minimongo/lib/ReplicatingDb.defaultStatic;Instance", //
+        "minimongo/lib/ReplicatingDb.defaultStatic;minimongo/lib/ReplicatingDb;Member[default]", //
+        "minimongo/lib/ReplicatingDb.defaultStatic;minimongo;Member[ReplicatingDb]", //
+        "minimongo/lib/WebSQLDb.default;minimongo/lib/WebSQLDb.defaultStatic;Instance", //
+        "minimongo/lib/WebSQLDb.default;minimongo;Member[utils].Member[autoselectLocalDb].ReturnValue", //
+        "minimongo/lib/WebSQLDb.defaultStatic;minimongo/lib/WebSQLDb;Member[default]", //
+        "minimongo/lib/WebSQLDb.defaultStatic;minimongo;Member[WebSQLDb]", //
+        "mongodb.Collection;minimongo.MinimongoBaseCollection;", //
       ]
   }
 }
diff --git a/javascript/ql/lib/semmle/javascript/frameworks/minimongo/model.json b/javascript/ql/lib/semmle/javascript/frameworks/minimongo/model.json
index 9911cd9b3c8..2a254ea3a69 100644
--- a/javascript/ql/lib/semmle/javascript/frameworks/minimongo/model.json
+++ b/javascript/ql/lib/semmle/javascript/frameworks/minimongo/model.json
@@ -6,87 +6,87 @@
     "language": "javascript",
     "model": {
         "typeDefinitions": [
-            "mongodb;Collection;minimongo;MinimongoBaseCollection;",
-            "minimongo;MinimongoBaseCollection;minimongo;MinimongoDb;AnyMember"
+            "mongodb.Collection;minimongo.MinimongoBaseCollection;",
+            "minimongo.MinimongoBaseCollection;minimongo.MinimongoDb;AnyMember"
         ],
         "sinks": []
     },
     "generatedModel": {
         "//": "Autogenerated section. Manual edits in here will be lost.",
         "typeDefinitions": [
-            "minimongo/IndexedDb;IndexedDbCollection;minimongo/IndexedDb;IndexedDbCollectionStatic;Instance",
-            "minimongo/IndexedDb;IndexedDbCollection;minimongo/lib/IndexedDb;default;Member[collections].AnyMember",
-            "minimongo/MemoryDb;Collection;minimongo/MemoryDb;CollectionStatic;Instance",
-            "minimongo/MemoryDb;Collection;minimongo/lib/MemoryDb;default;Member[collections].AnyMember",
-            "minimongo/RemoteDb;Collection;minimongo/RemoteDb;CollectionStatic;Instance",
-            "minimongo/RemoteDb;Collection;minimongo/lib/RemoteDb;default;Member[collections].AnyMember",
-            "minimongo/ReplicatingDb;Collection;minimongo/ReplicatingDb;CollectionStatic;Instance",
-            "minimongo/ReplicatingDb;Collection;minimongo/lib/ReplicatingDb;default;Member[collections].AnyMember",
-            "minimongo/lib/HybridDb;default;minimongo/lib/HybridDb;defaultStatic;Instance",
-            "minimongo/lib/HybridDb;defaultStatic;minimongo/lib/HybridDb;;Member[default]",
-            "minimongo/lib/HybridDb;defaultStatic;minimongo;;Member[HybridDb]",
-            "minimongo/lib/IndexedDb;default;minimongo/lib/IndexedDb;defaultStatic;Instance",
-            "minimongo/lib/IndexedDb;default;minimongo;;Member[utils].Member[autoselectLocalDb].ReturnValue",
-            "minimongo/lib/IndexedDb;defaultStatic;minimongo/lib/IndexedDb;;Member[default]",
-            "minimongo/lib/IndexedDb;defaultStatic;minimongo;;Member[IndexedDb]",
-            "minimongo/lib/LocalStorageDb;default;minimongo/lib/LocalStorageDb;defaultStatic;Instance",
-            "minimongo/lib/LocalStorageDb;default;minimongo;;Member[utils].Member[autoselectLocalDb].ReturnValue",
-            "minimongo/lib/LocalStorageDb;defaultStatic;minimongo/lib/LocalStorageDb;;Member[default]",
-            "minimongo/lib/LocalStorageDb;defaultStatic;minimongo;;Member[LocalStorageDb]",
-            "minimongo/lib/MemoryDb;default;minimongo/lib/MemoryDb;defaultStatic;Instance",
-            "minimongo/lib/MemoryDb;default;minimongo;;Member[utils].Member[autoselectLocalDb].ReturnValue",
-            "minimongo/lib/MemoryDb;defaultStatic;minimongo/lib/MemoryDb;;Member[default]",
-            "minimongo/lib/MemoryDb;defaultStatic;minimongo;;Member[MemoryDb]",
-            "minimongo/lib/RemoteDb;default;minimongo/lib/RemoteDb;defaultStatic;Instance",
-            "minimongo/lib/RemoteDb;defaultStatic;minimongo/lib/RemoteDb;;Member[default]",
-            "minimongo/lib/RemoteDb;defaultStatic;minimongo;;Member[RemoteDb]",
-            "minimongo/lib/ReplicatingDb;default;minimongo/lib/ReplicatingDb;defaultStatic;Instance",
-            "minimongo/lib/ReplicatingDb;defaultStatic;minimongo/lib/ReplicatingDb;;Member[default]",
-            "minimongo/lib/ReplicatingDb;defaultStatic;minimongo;;Member[ReplicatingDb]",
-            "minimongo/lib/WebSQLDb;default;minimongo/lib/WebSQLDb;defaultStatic;Instance",
-            "minimongo/lib/WebSQLDb;default;minimongo;;Member[utils].Member[autoselectLocalDb].ReturnValue",
-            "minimongo/lib/WebSQLDb;defaultStatic;minimongo/lib/WebSQLDb;;Member[default]",
-            "minimongo/lib/WebSQLDb;defaultStatic;minimongo;;Member[WebSQLDb]",
-            "minimongo;HybridCollection;minimongo/lib/HybridDb;HybridCollection;",
-            "minimongo;HybridCollection;minimongo/lib/HybridDb;default;Member[collections].AnyMember",
-            "minimongo;HybridCollection;minimongo;HybridCollectionStatic;Instance",
-            "minimongo;HybridCollectionStatic;minimongo/lib/HybridDb;;Member[HybridCollection]",
-            "minimongo;HybridCollectionStatic;minimongo/lib/HybridDb;HybridCollectionStatic;",
-            "minimongo;HybridCollectionStatic;minimongo;;Member[HybridCollection]",
-            "minimongo;MinimongoBaseCollection;minimongo/RemoteDb;Collection;",
-            "minimongo;MinimongoBaseCollection;minimongo/lib/types;MinimongoBaseCollection;",
-            "minimongo;MinimongoBaseCollection;minimongo;HybridCollection;",
-            "minimongo;MinimongoBaseCollection;minimongo;MinimongoCollection;",
-            "minimongo;MinimongoBaseCollection;minimongo;MinimongoLocalCollection;",
-            "minimongo;MinimongoCollection;minimongo/lib/LocalStorageDb;default;Member[collections].AnyMember",
-            "minimongo;MinimongoCollection;minimongo/lib/WebSQLDb;default;Member[collections].AnyMember",
-            "minimongo;MinimongoCollection;minimongo/lib/types;MinimongoCollection;",
-            "minimongo;MinimongoCollection;minimongo;HybridCollection;Member[remoteCol]",
-            "minimongo;MinimongoCollection;minimongo;MinimongoDb;Member[collections].AnyMember",
-            "minimongo;MinimongoDb;minimongo/lib/HybridDb;default;",
-            "minimongo;MinimongoDb;minimongo/lib/HybridDb;default;Member[remoteDb]",
-            "minimongo;MinimongoDb;minimongo/lib/LocalStorageDb;default;",
-            "minimongo;MinimongoDb;minimongo/lib/MemoryDb;default;",
-            "minimongo;MinimongoDb;minimongo/lib/RemoteDb;default;",
-            "minimongo;MinimongoDb;minimongo/lib/ReplicatingDb;default;Member[masterDb,replicaDb]",
-            "minimongo;MinimongoDb;minimongo/lib/WebSQLDb;default;",
-            "minimongo;MinimongoDb;minimongo/lib/types;MinimongoDb;",
-            "minimongo;MinimongoDb;minimongo;MinimongoDb;Member[remoteDb]",
-            "minimongo;MinimongoDb;minimongo;MinimongoLocalDb;",
-            "minimongo;MinimongoLocalCollection;minimongo/IndexedDb;IndexedDbCollection;",
-            "minimongo;MinimongoLocalCollection;minimongo/MemoryDb;Collection;",
-            "minimongo;MinimongoLocalCollection;minimongo/ReplicatingDb;Collection;",
-            "minimongo;MinimongoLocalCollection;minimongo/ReplicatingDb;Collection;Member[masterCol,replicaCol]",
-            "minimongo;MinimongoLocalCollection;minimongo/lib/types;MinimongoLocalCollection;",
-            "minimongo;MinimongoLocalCollection;minimongo;HybridCollection;Member[localCol]",
-            "minimongo;MinimongoLocalCollection;minimongo;MinimongoCollection;",
-            "minimongo;MinimongoLocalCollection;minimongo;MinimongoLocalDb;Member[addCollection].Argument[2].Argument[0]",
-            "minimongo;MinimongoLocalCollection;minimongo;MinimongoLocalDb;Member[collections].AnyMember",
-            "minimongo;MinimongoLocalDb;minimongo/lib/HybridDb;default;Member[localDb]",
-            "minimongo;MinimongoLocalDb;minimongo/lib/IndexedDb;default;",
-            "minimongo;MinimongoLocalDb;minimongo/lib/ReplicatingDb;default;",
-            "minimongo;MinimongoLocalDb;minimongo/lib/types;MinimongoLocalDb;",
-            "minimongo;MinimongoLocalDb;minimongo;MinimongoDb;Member[localDb]"
+            "minimongo.HybridCollection;minimongo.HybridCollectionStatic;Instance",
+            "minimongo.HybridCollection;minimongo/lib/HybridDb.HybridCollection;",
+            "minimongo.HybridCollection;minimongo/lib/HybridDb.default;Member[collections].AnyMember",
+            "minimongo.HybridCollectionStatic;minimongo/lib/HybridDb.HybridCollectionStatic;",
+            "minimongo.HybridCollectionStatic;minimongo/lib/HybridDb;Member[HybridCollection]",
+            "minimongo.HybridCollectionStatic;minimongo;Member[HybridCollection]",
+            "minimongo.MinimongoBaseCollection;minimongo.HybridCollection;",
+            "minimongo.MinimongoBaseCollection;minimongo.MinimongoCollection;",
+            "minimongo.MinimongoBaseCollection;minimongo.MinimongoLocalCollection;",
+            "minimongo.MinimongoBaseCollection;minimongo/RemoteDb.Collection;",
+            "minimongo.MinimongoBaseCollection;minimongo/lib/types.MinimongoBaseCollection;",
+            "minimongo.MinimongoCollection;minimongo.HybridCollection;Member[remoteCol]",
+            "minimongo.MinimongoCollection;minimongo.MinimongoDb;Member[collections].AnyMember",
+            "minimongo.MinimongoCollection;minimongo/lib/LocalStorageDb.default;Member[collections].AnyMember",
+            "minimongo.MinimongoCollection;minimongo/lib/WebSQLDb.default;Member[collections].AnyMember",
+            "minimongo.MinimongoCollection;minimongo/lib/types.MinimongoCollection;",
+            "minimongo.MinimongoDb;minimongo.MinimongoDb;Member[remoteDb]",
+            "minimongo.MinimongoDb;minimongo.MinimongoLocalDb;",
+            "minimongo.MinimongoDb;minimongo/lib/HybridDb.default;",
+            "minimongo.MinimongoDb;minimongo/lib/HybridDb.default;Member[remoteDb]",
+            "minimongo.MinimongoDb;minimongo/lib/LocalStorageDb.default;",
+            "minimongo.MinimongoDb;minimongo/lib/MemoryDb.default;",
+            "minimongo.MinimongoDb;minimongo/lib/RemoteDb.default;",
+            "minimongo.MinimongoDb;minimongo/lib/ReplicatingDb.default;Member[masterDb,replicaDb]",
+            "minimongo.MinimongoDb;minimongo/lib/WebSQLDb.default;",
+            "minimongo.MinimongoDb;minimongo/lib/types.MinimongoDb;",
+            "minimongo.MinimongoLocalCollection;minimongo.HybridCollection;Member[localCol]",
+            "minimongo.MinimongoLocalCollection;minimongo.MinimongoCollection;",
+            "minimongo.MinimongoLocalCollection;minimongo.MinimongoLocalDb;Member[addCollection].Argument[2].Argument[0]",
+            "minimongo.MinimongoLocalCollection;minimongo.MinimongoLocalDb;Member[collections].AnyMember",
+            "minimongo.MinimongoLocalCollection;minimongo/IndexedDb.IndexedDbCollection;",
+            "minimongo.MinimongoLocalCollection;minimongo/MemoryDb.Collection;",
+            "minimongo.MinimongoLocalCollection;minimongo/ReplicatingDb.Collection;",
+            "minimongo.MinimongoLocalCollection;minimongo/ReplicatingDb.Collection;Member[masterCol,replicaCol]",
+            "minimongo.MinimongoLocalCollection;minimongo/lib/types.MinimongoLocalCollection;",
+            "minimongo.MinimongoLocalDb;minimongo.MinimongoDb;Member[localDb]",
+            "minimongo.MinimongoLocalDb;minimongo/lib/HybridDb.default;Member[localDb]",
+            "minimongo.MinimongoLocalDb;minimongo/lib/IndexedDb.default;",
+            "minimongo.MinimongoLocalDb;minimongo/lib/ReplicatingDb.default;",
+            "minimongo.MinimongoLocalDb;minimongo/lib/types.MinimongoLocalDb;",
+            "minimongo/IndexedDb.IndexedDbCollection;minimongo/IndexedDb.IndexedDbCollectionStatic;Instance",
+            "minimongo/IndexedDb.IndexedDbCollection;minimongo/lib/IndexedDb.default;Member[collections].AnyMember",
+            "minimongo/MemoryDb.Collection;minimongo/MemoryDb.CollectionStatic;Instance",
+            "minimongo/MemoryDb.Collection;minimongo/lib/MemoryDb.default;Member[collections].AnyMember",
+            "minimongo/RemoteDb.Collection;minimongo/RemoteDb.CollectionStatic;Instance",
+            "minimongo/RemoteDb.Collection;minimongo/lib/RemoteDb.default;Member[collections].AnyMember",
+            "minimongo/ReplicatingDb.Collection;minimongo/ReplicatingDb.CollectionStatic;Instance",
+            "minimongo/ReplicatingDb.Collection;minimongo/lib/ReplicatingDb.default;Member[collections].AnyMember",
+            "minimongo/lib/HybridDb.default;minimongo/lib/HybridDb.defaultStatic;Instance",
+            "minimongo/lib/HybridDb.defaultStatic;minimongo/lib/HybridDb;Member[default]",
+            "minimongo/lib/HybridDb.defaultStatic;minimongo;Member[HybridDb]",
+            "minimongo/lib/IndexedDb.default;minimongo/lib/IndexedDb.defaultStatic;Instance",
+            "minimongo/lib/IndexedDb.default;minimongo;Member[utils].Member[autoselectLocalDb].ReturnValue",
+            "minimongo/lib/IndexedDb.defaultStatic;minimongo/lib/IndexedDb;Member[default]",
+            "minimongo/lib/IndexedDb.defaultStatic;minimongo;Member[IndexedDb]",
+            "minimongo/lib/LocalStorageDb.default;minimongo/lib/LocalStorageDb.defaultStatic;Instance",
+            "minimongo/lib/LocalStorageDb.default;minimongo;Member[utils].Member[autoselectLocalDb].ReturnValue",
+            "minimongo/lib/LocalStorageDb.defaultStatic;minimongo/lib/LocalStorageDb;Member[default]",
+            "minimongo/lib/LocalStorageDb.defaultStatic;minimongo;Member[LocalStorageDb]",
+            "minimongo/lib/MemoryDb.default;minimongo/lib/MemoryDb.defaultStatic;Instance",
+            "minimongo/lib/MemoryDb.default;minimongo;Member[utils].Member[autoselectLocalDb].ReturnValue",
+            "minimongo/lib/MemoryDb.defaultStatic;minimongo/lib/MemoryDb;Member[default]",
+            "minimongo/lib/MemoryDb.defaultStatic;minimongo;Member[MemoryDb]",
+            "minimongo/lib/RemoteDb.default;minimongo/lib/RemoteDb.defaultStatic;Instance",
+            "minimongo/lib/RemoteDb.defaultStatic;minimongo/lib/RemoteDb;Member[default]",
+            "minimongo/lib/RemoteDb.defaultStatic;minimongo;Member[RemoteDb]",
+            "minimongo/lib/ReplicatingDb.default;minimongo/lib/ReplicatingDb.defaultStatic;Instance",
+            "minimongo/lib/ReplicatingDb.defaultStatic;minimongo/lib/ReplicatingDb;Member[default]",
+            "minimongo/lib/ReplicatingDb.defaultStatic;minimongo;Member[ReplicatingDb]",
+            "minimongo/lib/WebSQLDb.default;minimongo/lib/WebSQLDb.defaultStatic;Instance",
+            "minimongo/lib/WebSQLDb.default;minimongo;Member[utils].Member[autoselectLocalDb].ReturnValue",
+            "minimongo/lib/WebSQLDb.defaultStatic;minimongo/lib/WebSQLDb;Member[default]",
+            "minimongo/lib/WebSQLDb.defaultStatic;minimongo;Member[WebSQLDb]"
         ],
         "summaries": [],
         "typeVariables": []
diff --git a/javascript/ql/lib/semmle/javascript/frameworks/mongodb/Model.qll b/javascript/ql/lib/semmle/javascript/frameworks/mongodb/Model.qll
index 9509a5a34e0..4cceff77185 100644
--- a/javascript/ql/lib/semmle/javascript/frameworks/mongodb/Model.qll
+++ b/javascript/ql/lib/semmle/javascript/frameworks/mongodb/Model.qll
@@ -6,32 +6,32 @@ private class Sinks extends ModelInput::SinkModelCsv {
   override predicate row(string row) {
     row =
       [
-        "mongodb;Collection;Member[aggregate,count,countDocuments,deleteMany,deleteOne,find,findOne,findOneAndDelete,findOneAndReplace,remove,replaceOne,watch].Argument[0];mongodb.sink", //
-        "mongodb;Collection;Member[distinct].Argument[1];mongodb.sink", //
-        "mongodb;Collection;Member[findOneAndUpdate,update,updateMany,updateOne].Argument[0,1];mongodb.sink", //
-        "mongodb;Db;Member[aggregate,watch].Argument[0];mongodb.sink", //
-        "mongodb;DeleteManyModel;Member[filter];mongodb.sink", //
-        "mongodb;DeleteOneModel;Member[filter];mongodb.sink", //
-        "mongodb;MongoClient;Member[watch].Argument[0];mongodb.sink", //
-        "mongodb;UpdateManyModel;Member[filter,update];mongodb.sink", //
-        "mongodb;UpdateOneModel;Member[filter,update];mongodb.sink", //
-        "mongoose;CollectionBase;Member[findAndModify].Argument[0];mongodb.sink", //
-        "mongoose;Connection;Member[watch].Argument[0];mongodb.sink", //
-        "mongoose;Document;Member[update,updateOne].Argument[0];mongodb.sink", //
-        "mongoose;Model;Member[$where,aggregate,exists,find,findById,findByIdAndDelete,findByIdAndRemove,findOne,findOneAndDelete,findOneAndRemove,findOneAndReplace,geoSearch,remove,replaceOne,watch].Argument[0];mongodb.sink", //
-        "mongoose;Model;Member[count,where].WithArity[1,2].Argument[0];mongodb.sink", //
-        "mongoose;Model;Member[countDocuments].WithArity[1,2,3].Argument[0];mongodb.sink", //
-        "mongoose;Model;Member[deleteMany,deleteOne].WithArity[0,1,2,3].Argument[0];mongodb.sink", //
-        "mongoose;Model;Member[distinct,where].Argument[1];mongodb.sink", //
-        "mongoose;Model;Member[findByIdAndUpdate,findOneAndUpdate,update,updateMany,updateOne].Argument[0,1];mongodb.sink", //
-        "mongoose;Model;Member[find].WithArity[1,2,3,4].Argument[0];mongodb.sink", //
-        "mongoose;Query;Member[$where,and,find,findByIdAndDelete,findOne,findOneAndDelete,findOneAndRemove,nor,or,remove,replaceOne,setUpdate].Argument[0];mongodb.sink", //
-        "mongoose;Query;Member[count,where].WithArity[1,2].Argument[0];mongodb.sink", //
-        "mongoose;Query;Member[deleteMany,deleteOne].WithArity[0,1,2,3].Argument[0];mongodb.sink", //
-        "mongoose;Query;Member[distinct,where].Argument[1];mongodb.sink", //
-        "mongoose;Query;Member[findByIdAndUpdate,findOneAndUpdate,update,updateMany,updateOne].Argument[0,1];mongodb.sink", //
-        "mongoose;Query;Member[find].WithArity[1,2,3,4].Argument[0];mongodb.sink", //
-        "mongoose;QueryStatic;Argument[2];mongodb.sink", //
+        "mongodb.Collection;Member[aggregate,count,countDocuments,deleteMany,deleteOne,find,findOne,findOneAndDelete,findOneAndReplace,remove,replaceOne,watch].Argument[0];mongodb.sink", //
+        "mongodb.Collection;Member[distinct].Argument[1];mongodb.sink", //
+        "mongodb.Collection;Member[findOneAndUpdate,update,updateMany,updateOne].Argument[0,1];mongodb.sink", //
+        "mongodb.Db;Member[aggregate,watch].Argument[0];mongodb.sink", //
+        "mongodb.DeleteManyModel;Member[filter];mongodb.sink", //
+        "mongodb.DeleteOneModel;Member[filter];mongodb.sink", //
+        "mongodb.MongoClient;Member[watch].Argument[0];mongodb.sink", //
+        "mongodb.UpdateManyModel;Member[filter,update];mongodb.sink", //
+        "mongodb.UpdateOneModel;Member[filter,update];mongodb.sink", //
+        "mongoose.CollectionBase;Member[findAndModify].Argument[0];mongodb.sink", //
+        "mongoose.Connection;Member[watch].Argument[0];mongodb.sink", //
+        "mongoose.Document;Member[update,updateOne].Argument[0];mongodb.sink", //
+        "mongoose.Model;Member[$where,aggregate,exists,find,findById,findByIdAndDelete,findByIdAndRemove,findOne,findOneAndDelete,findOneAndRemove,findOneAndReplace,geoSearch,remove,replaceOne,watch].Argument[0];mongodb.sink", //
+        "mongoose.Model;Member[count,where].WithArity[1,2].Argument[0];mongodb.sink", //
+        "mongoose.Model;Member[countDocuments].WithArity[1,2,3].Argument[0];mongodb.sink", //
+        "mongoose.Model;Member[deleteMany,deleteOne].WithArity[0,1,2,3].Argument[0];mongodb.sink", //
+        "mongoose.Model;Member[distinct,where].Argument[1];mongodb.sink", //
+        "mongoose.Model;Member[findByIdAndUpdate,findOneAndUpdate,update,updateMany,updateOne].Argument[0,1];mongodb.sink", //
+        "mongoose.Model;Member[find].WithArity[1,2,3,4].Argument[0];mongodb.sink", //
+        "mongoose.Query;Member[$where,and,find,findByIdAndDelete,findOne,findOneAndDelete,findOneAndRemove,nor,or,remove,replaceOne,setUpdate].Argument[0];mongodb.sink", //
+        "mongoose.Query;Member[count,where].WithArity[1,2].Argument[0];mongodb.sink", //
+        "mongoose.Query;Member[deleteMany,deleteOne].WithArity[0,1,2,3].Argument[0];mongodb.sink", //
+        "mongoose.Query;Member[distinct,where].Argument[1];mongodb.sink", //
+        "mongoose.Query;Member[findByIdAndUpdate,findOneAndUpdate,update,updateMany,updateOne].Argument[0,1];mongodb.sink", //
+        "mongoose.Query;Member[find].WithArity[1,2,3,4].Argument[0];mongodb.sink", //
+        "mongoose.QueryStatic;Argument[2];mongodb.sink", //
       ]
   }
 }
@@ -40,617 +40,617 @@ private class Types extends ModelInput::TypeModelCsv {
   override predicate row(string row) {
     row =
       [
-        "mongodb;;mongoose;;Member[mongodb]", //
-        "mongodb;AbstractCursor;mongodb;FindCursor;", //
-        "mongodb;AbstractCursor;mongodb;ListCollectionsCursor;", //
-        "mongodb;AbstractCursor;mongodb;ListIndexesCursor;", //
-        "mongodb;AbstractCursorOptions;mongodb/mongodb;AbstractCursorOptions;", //
-        "mongodb;AbstractCursorOptions;mongodb;AggregationCursorOptions;", //
-        "mongodb;AbstractCursorOptions;mongoose;mongodb.AbstractCursorOptions;", //
-        "mongodb;AddUserOptions;mongodb/mongodb;AddUserOptions;", //
-        "mongodb;AddUserOptions;mongodb;Admin;Member[addUser].Argument[1,2]", //
-        "mongodb;AddUserOptions;mongodb;Db;Member[addUser].Argument[1,2]", //
-        "mongodb;AddUserOptions;mongoose;mongodb.AddUserOptions;", //
-        "mongodb;Admin;mongodb/mongodb;Admin;", //
-        "mongodb;Admin;mongodb;AdminStatic;Instance", //
-        "mongodb;Admin;mongodb;Db;Member[admin].ReturnValue", //
-        "mongodb;Admin;mongoose;mongodb.Admin;", //
-        "mongodb;AdminStatic;mongodb/mongodb;AdminStatic;", //
-        "mongodb;AdminStatic;mongodb;;Member[Admin]", //
-        "mongodb;AdminStatic;mongoose;mongodb.AdminStatic;", //
-        "mongodb;AggregateOptions;mongodb/mongodb;AggregateOptions;", //
-        "mongodb;AggregateOptions;mongodb;AggregationCursorOptions;", //
-        "mongodb;AggregateOptions;mongodb;ChangeStreamOptions;", //
-        "mongodb;AggregateOptions;mongodb;Collection;Member[aggregate].Argument[1]", //
-        "mongodb;AggregateOptions;mongodb;CountDocumentsOptions;", //
-        "mongodb;AggregateOptions;mongodb;Db;Member[aggregate].Argument[1]", //
-        "mongodb;AggregateOptions;mongoose;mongodb.AggregateOptions;", //
-        "mongodb;AggregationCursorOptions;mongodb/mongodb;AggregationCursorOptions;", //
-        "mongodb;AggregationCursorOptions;mongoose;mongodb.AggregationCursorOptions;", //
-        "mongodb;AnyBulkWriteOperation;mongodb/mongodb;AnyBulkWriteOperation;", //
-        "mongodb;AnyBulkWriteOperation;mongodb;BulkOperationBase;Member[raw].Argument[0]", //
-        "mongodb;AnyBulkWriteOperation;mongodb;Collection;Member[bulkWrite].Argument[0].ArrayElement", //
-        "mongodb;AnyBulkWriteOperation;mongoose;mongodb.AnyBulkWriteOperation;", //
-        "mongodb;Auth;mongodb/mongodb;Auth;", //
-        "mongodb;Auth;mongodb;MongoClientOptions;Member[auth]", //
-        "mongodb;Auth;mongoose;mongodb.Auth;", //
-        "mongodb;AutoEncrypter;mongodb/mongodb;AutoEncrypter;", //
-        "mongodb;AutoEncrypter;mongodb;AutoEncrypter;Instance", //
-        "mongodb;AutoEncrypter;mongodb;ConnectionOptions;Member[autoEncrypter]", //
-        "mongodb;AutoEncrypter;mongodb;MongoClient;Member[autoEncrypter]", //
-        "mongodb;AutoEncrypter;mongodb;MongoOptions;Member[autoEncrypter]", //
-        "mongodb;AutoEncrypter;mongoose;mongodb.AutoEncrypter;", //
-        "mongodb;AutoEncryptionOptions;mongodb/mongodb;AutoEncryptionOptions;", //
-        "mongodb;AutoEncryptionOptions;mongodb;AutoEncrypter;Argument[1]", //
-        "mongodb;AutoEncryptionOptions;mongodb;MongoClientOptions;Member[autoEncryption]", //
-        "mongodb;AutoEncryptionOptions;mongoose;mongodb.AutoEncryptionOptions;", //
-        "mongodb;BulkOperationBase;mongodb/mongodb;BulkOperationBase;", //
-        "mongodb;BulkOperationBase;mongodb;BulkOperationBase;Member[addToOperationsList,insert,raw].ReturnValue", //
-        "mongodb;BulkOperationBase;mongodb;BulkOperationBaseStatic;Instance", //
-        "mongodb;BulkOperationBase;mongodb;FindOperators;Member[bulkOperation]", //
-        "mongodb;BulkOperationBase;mongodb;FindOperators;Member[delete,deleteOne,replaceOne,update,updateOne].ReturnValue", //
-        "mongodb;BulkOperationBase;mongodb;OrderedBulkOperation;", //
-        "mongodb;BulkOperationBase;mongodb;UnorderedBulkOperation;", //
-        "mongodb;BulkOperationBase;mongoose;mongodb.BulkOperationBase;", //
-        "mongodb;BulkOperationBaseStatic;mongodb/mongodb;BulkOperationBaseStatic;", //
-        "mongodb;BulkOperationBaseStatic;mongodb;;Member[BulkOperationBase]", //
-        "mongodb;BulkOperationBaseStatic;mongoose;mongodb.BulkOperationBaseStatic;", //
-        "mongodb;BulkWriteOptions;mongodb/mongodb;BulkWriteOptions;", //
-        "mongodb;BulkWriteOptions;mongodb;BulkOperationBase;Member[execute].WithArity[0,1,2].Argument[0]", //
-        "mongodb;BulkWriteOptions;mongodb;Collection;Member[bulkWrite,insert,insertMany].Argument[1]", //
-        "mongodb;BulkWriteOptions;mongodb;Collection;Member[initializeOrderedBulkOp,initializeUnorderedBulkOp].Argument[0]", //
-        "mongodb;BulkWriteOptions;mongodb;OrderedBulkOperationStatic;Argument[1]", //
-        "mongodb;BulkWriteOptions;mongodb;UnorderedBulkOperationStatic;Argument[1]", //
-        "mongodb;BulkWriteOptions;mongoose;mongodb.BulkWriteOptions;", //
-        "mongodb;ChangeStream;mongodb/mongodb;ChangeStream;", //
-        "mongodb;ChangeStream;mongodb;ChangeStreamStatic;Instance", //
-        "mongodb;ChangeStream;mongodb;Collection;Member[watch].ReturnValue", //
-        "mongodb;ChangeStream;mongodb;Db;Member[watch].ReturnValue", //
-        "mongodb;ChangeStream;mongodb;MongoClient;Member[watch].ReturnValue", //
-        "mongodb;ChangeStream;mongoose;mongodb.ChangeStream;", //
-        "mongodb;ChangeStreamOptions;mongodb/mongodb;ChangeStreamOptions;", //
-        "mongodb;ChangeStreamOptions;mongodb;ChangeStream;Member[options]", //
-        "mongodb;ChangeStreamOptions;mongodb;Collection;Member[watch].Argument[1]", //
-        "mongodb;ChangeStreamOptions;mongodb;Db;Member[watch].Argument[1]", //
-        "mongodb;ChangeStreamOptions;mongodb;MongoClient;Member[watch].Argument[1]", //
-        "mongodb;ChangeStreamOptions;mongoose;mongodb.ChangeStreamOptions;", //
-        "mongodb;ChangeStreamStatic;mongodb/mongodb;ChangeStreamStatic;", //
-        "mongodb;ChangeStreamStatic;mongodb;;Member[ChangeStream]", //
-        "mongodb;ChangeStreamStatic;mongoose;mongodb.ChangeStreamStatic;", //
-        "mongodb;ClientSession;mongodb/mongodb;ClientSession;", //
-        "mongodb;ClientSession;mongodb;AbstractCursorOptions;Member[session]", //
-        "mongodb;ClientSession;mongodb;ClientSession;Member[equals].Argument[0]", //
-        "mongodb;ClientSession;mongodb;ClientSessionEvents;Member[ended].Argument[0]", //
-        "mongodb;ClientSession;mongodb;ClientSessionStatic;Instance", //
-        "mongodb;ClientSession;mongodb;IndexInformationOptions;Member[session]", //
-        "mongodb;ClientSession;mongodb;MongoClient;Member[startSession].ReturnValue", //
-        "mongodb;ClientSession;mongodb;OperationOptions;Member[session]", //
-        "mongodb;ClientSession;mongodb;ReadPreferenceFromOptions;Member[session]", //
-        "mongodb;ClientSession;mongodb;SelectServerOptions;Member[session]", //
-        "mongodb;ClientSession;mongodb;WithSessionCallback;Argument[0]", //
-        "mongodb;ClientSession;mongodb;WithTransactionCallback;Argument[0]", //
-        "mongodb;ClientSession;mongoose;mongodb.ClientSession;", //
-        "mongodb;ClientSessionEvents;mongodb/mongodb;ClientSessionEvents;", //
-        "mongodb;ClientSessionEvents;mongoose;mongodb.ClientSessionEvents;", //
-        "mongodb;ClientSessionOptions;mongodb/mongodb;ClientSessionOptions;", //
-        "mongodb;ClientSessionOptions;mongodb;MongoClient;Member[startSession].Argument[0]", //
-        "mongodb;ClientSessionOptions;mongodb;MongoClient;Member[withSession].WithArity[2].Argument[0]", //
-        "mongodb;ClientSessionOptions;mongoose;mongodb.ClientSessionOptions;", //
-        "mongodb;ClientSessionStatic;mongodb/mongodb;ClientSessionStatic;", //
-        "mongodb;ClientSessionStatic;mongodb;;Member[ClientSession]", //
-        "mongodb;ClientSessionStatic;mongoose;mongodb.ClientSessionStatic;", //
-        "mongodb;CollStatsOptions;mongodb/mongodb;CollStatsOptions;", //
-        "mongodb;CollStatsOptions;mongodb;Collection;Member[stats].Argument[0]", //
-        "mongodb;CollStatsOptions;mongoose;mongodb.CollStatsOptions;", //
-        "mongodb;Collection;mongodb/mongodb;Collection;", //
-        "mongodb;Collection;mongodb;ChangeStream;Member[parent]", //
-        "mongodb;Collection;mongodb;Collection;Member[rename].Argument[1,2].TypeVar[mongodb.Callback.0]", //
-        "mongodb;Collection;mongodb;Collection;Member[rename].WithArity[1,2].ReturnValue.Awaited", //
-        "mongodb;Collection;mongodb;CollectionStatic;Instance", //
-        "mongodb;Collection;mongodb;Db;Member[collection].ReturnValue", //
-        "mongodb;Collection;mongodb;Db;Member[collections].Argument[0,1].TypeVar[mongodb.Callback.0].ArrayElement", //
-        "mongodb;Collection;mongodb;Db;Member[collections].WithArity[0,1].ReturnValue.Awaited.ArrayElement", //
-        "mongodb;Collection;mongodb;Db;Member[createCollection].Argument[2].TypeVar[mongodb.Callback.0]", //
-        "mongodb;Collection;mongodb;Db;Member[createCollection].WithArity[1,2].ReturnValue.Awaited", //
-        "mongodb;Collection;mongodb;Db;Member[createCollection].WithArity[2].Argument[1].TypeVar[mongodb.Callback.0]", //
-        "mongodb;Collection;mongodb;Db;Member[renameCollection].Argument[2,3].TypeVar[mongodb.Callback.0]", //
-        "mongodb;Collection;mongodb;Db;Member[renameCollection].WithArity[2,3].ReturnValue.Awaited", //
-        "mongodb;Collection;mongodb;GridFSBucketWriteStream;Member[chunks,files]", //
-        "mongodb;Collection;mongodb;ListIndexesCursor;Member[parent]", //
-        "mongodb;Collection;mongodb;ListIndexesCursorStatic;Argument[0]", //
-        "mongodb;Collection;mongodb;OrderedBulkOperationStatic;Argument[0]", //
-        "mongodb;Collection;mongodb;UnorderedBulkOperationStatic;Argument[0]", //
-        "mongodb;Collection;mongoose;mongodb.Collection;", //
-        "mongodb;CollectionStatic;mongodb/mongodb;CollectionStatic;", //
-        "mongodb;CollectionStatic;mongodb;;Member[Collection]", //
-        "mongodb;CollectionStatic;mongoose;mongodb.CollectionStatic;", //
-        "mongodb;CommandOperationOptions;mongodb/mongodb;CommandOperationOptions;", //
-        "mongodb;CommandOperationOptions;mongodb;AddUserOptions;", //
-        "mongodb;CommandOperationOptions;mongodb;Admin;Member[buildInfo,ping,replSetGetStatus,serverInfo,serverStatus].Argument[0]", //
-        "mongodb;CommandOperationOptions;mongodb;AggregateOptions;", //
-        "mongodb;CommandOperationOptions;mongodb;BulkWriteOptions;", //
-        "mongodb;CommandOperationOptions;mongodb;CollStatsOptions;", //
-        "mongodb;CommandOperationOptions;mongodb;CountOptions;", //
-        "mongodb;CommandOperationOptions;mongodb;CreateCollectionOptions;", //
-        "mongodb;CommandOperationOptions;mongodb;CreateIndexesOptions;", //
-        "mongodb;CommandOperationOptions;mongodb;DbStatsOptions;", //
-        "mongodb;CommandOperationOptions;mongodb;DeleteOptions;", //
-        "mongodb;CommandOperationOptions;mongodb;DistinctOptions;", //
-        "mongodb;CommandOperationOptions;mongodb;DropCollectionOptions;", //
-        "mongodb;CommandOperationOptions;mongodb;DropDatabaseOptions;", //
-        "mongodb;CommandOperationOptions;mongodb;DropIndexesOptions;", //
-        "mongodb;CommandOperationOptions;mongodb;EstimatedDocumentCountOptions;", //
-        "mongodb;CommandOperationOptions;mongodb;EvalOptions;", //
-        "mongodb;CommandOperationOptions;mongodb;FindOneAndDeleteOptions;", //
-        "mongodb;CommandOperationOptions;mongodb;FindOneAndReplaceOptions;", //
-        "mongodb;CommandOperationOptions;mongodb;FindOneAndUpdateOptions;", //
-        "mongodb;CommandOperationOptions;mongodb;FindOptions;", //
-        "mongodb;CommandOperationOptions;mongodb;InsertOneOptions;", //
-        "mongodb;CommandOperationOptions;mongodb;ListCollectionsOptions;", //
-        "mongodb;CommandOperationOptions;mongodb;ListDatabasesOptions;", //
-        "mongodb;CommandOperationOptions;mongodb;ListIndexesOptions;", //
-        "mongodb;CommandOperationOptions;mongodb;MapReduceOptions;", //
-        "mongodb;CommandOperationOptions;mongodb;ProfilingLevelOptions;", //
-        "mongodb;CommandOperationOptions;mongodb;RemoveUserOptions;", //
-        "mongodb;CommandOperationOptions;mongodb;RenameOptions;", //
-        "mongodb;CommandOperationOptions;mongodb;ReplaceOptions;", //
-        "mongodb;CommandOperationOptions;mongodb;RunCommandOptions;", //
-        "mongodb;CommandOperationOptions;mongodb;SetProfilingLevelOptions;", //
-        "mongodb;CommandOperationOptions;mongodb;TransactionOptions;", //
-        "mongodb;CommandOperationOptions;mongodb;UpdateOptions;", //
-        "mongodb;CommandOperationOptions;mongodb;ValidateCollectionOptions;", //
-        "mongodb;CommandOperationOptions;mongoose;mongodb.CommandOperationOptions;", //
-        "mongodb;ConnectionOptions;mongodb/mongodb;ConnectionOptions;", //
-        "mongodb;ConnectionOptions;mongoose;mongodb.ConnectionOptions;", //
-        "mongodb;CountDocumentsOptions;mongodb/mongodb;CountDocumentsOptions;", //
-        "mongodb;CountDocumentsOptions;mongodb;Collection;Member[countDocuments].Argument[1]", //
-        "mongodb;CountDocumentsOptions;mongoose;mongodb.CountDocumentsOptions;", //
-        "mongodb;CountOptions;mongodb/mongodb;CountOptions;", //
-        "mongodb;CountOptions;mongodb;Collection;Member[count].Argument[1]", //
-        "mongodb;CountOptions;mongodb;FindCursor;Member[count].Argument[0]", //
-        "mongodb;CountOptions;mongoose;mongodb.CountOptions;", //
-        "mongodb;CreateCollectionOptions;mongodb/mongodb;CreateCollectionOptions;", //
-        "mongodb;CreateCollectionOptions;mongodb;Db;Member[createCollection].WithArity[1,2,3].Argument[1]", //
-        "mongodb;CreateCollectionOptions;mongoose;mongodb.CreateCollectionOptions;", //
-        "mongodb;CreateIndexesOptions;mongodb/mongodb;CreateIndexesOptions;", //
-        "mongodb;CreateIndexesOptions;mongodb;Collection;Member[createIndex,createIndexes].Argument[1]", //
-        "mongodb;CreateIndexesOptions;mongodb;Db;Member[createIndex].Argument[2]", //
-        "mongodb;CreateIndexesOptions;mongoose;mongodb.CreateIndexesOptions;", //
-        "mongodb;Db;mongodb/mongodb;Db;", //
-        "mongodb;Db;mongodb;ChangeStream;Member[parent]", //
-        "mongodb;Db;mongodb;DbStatic;Instance", //
-        "mongodb;Db;mongodb;GridFSBucketStatic;Argument[0]", //
-        "mongodb;Db;mongodb;ListCollectionsCursor;Member[parent]", //
-        "mongodb;Db;mongodb;ListCollectionsCursorStatic;Argument[0]", //
-        "mongodb;Db;mongodb;MongoClient;Member[db].ReturnValue", //
-        "mongodb;Db;mongoose;mongodb.Db;", //
-        "mongodb;DbStatic;mongodb/mongodb;DbStatic;", //
-        "mongodb;DbStatic;mongodb;;Member[Db]", //
-        "mongodb;DbStatic;mongoose;mongodb.DbStatic;", //
-        "mongodb;DbStatsOptions;mongodb/mongodb;DbStatsOptions;", //
-        "mongodb;DbStatsOptions;mongodb;Db;Member[stats].Argument[0]", //
-        "mongodb;DbStatsOptions;mongoose;mongodb.DbStatsOptions;", //
-        "mongodb;DeleteManyModel;mongodb/mongodb;DeleteManyModel;", //
-        "mongodb;DeleteManyModel;mongodb;AnyBulkWriteOperation;Member[deleteMany]", //
-        "mongodb;DeleteManyModel;mongoose;mongodb.DeleteManyModel;", //
-        "mongodb;DeleteOneModel;mongodb/mongodb;DeleteOneModel;", //
-        "mongodb;DeleteOneModel;mongodb;AnyBulkWriteOperation;Member[deleteOne]", //
-        "mongodb;DeleteOneModel;mongoose;mongodb.DeleteOneModel;", //
-        "mongodb;DeleteOptions;mongodb/mongodb;DeleteOptions;", //
-        "mongodb;DeleteOptions;mongodb;Collection;Member[deleteMany,deleteOne,remove].Argument[1]", //
-        "mongodb;DeleteOptions;mongoose;mongodb.DeleteOptions;", //
-        "mongodb;DistinctOptions;mongodb/mongodb;DistinctOptions;", //
-        "mongodb;DistinctOptions;mongodb;Collection;Member[distinct].Argument[2]", //
-        "mongodb;DistinctOptions;mongoose;mongodb.DistinctOptions;", //
-        "mongodb;DropCollectionOptions;mongodb/mongodb;DropCollectionOptions;", //
-        "mongodb;DropCollectionOptions;mongodb;Collection;Member[drop].Argument[0]", //
-        "mongodb;DropCollectionOptions;mongodb;Db;Member[dropCollection].Argument[1]", //
-        "mongodb;DropCollectionOptions;mongoose;mongodb.DropCollectionOptions;", //
-        "mongodb;DropDatabaseOptions;mongodb/mongodb;DropDatabaseOptions;", //
-        "mongodb;DropDatabaseOptions;mongodb;Db;Member[dropDatabase].Argument[0]", //
-        "mongodb;DropDatabaseOptions;mongoose;mongodb.DropDatabaseOptions;", //
-        "mongodb;DropIndexesOptions;mongodb/mongodb;DropIndexesOptions;", //
-        "mongodb;DropIndexesOptions;mongodb;Collection;Member[dropIndex].Argument[1]", //
-        "mongodb;DropIndexesOptions;mongodb;Collection;Member[dropIndexes].Argument[0]", //
-        "mongodb;DropIndexesOptions;mongoose;mongodb.DropIndexesOptions;", //
-        "mongodb;EstimatedDocumentCountOptions;mongodb/mongodb;EstimatedDocumentCountOptions;", //
-        "mongodb;EstimatedDocumentCountOptions;mongodb;Collection;Member[estimatedDocumentCount].Argument[0]", //
-        "mongodb;EstimatedDocumentCountOptions;mongoose;mongodb.EstimatedDocumentCountOptions;", //
-        "mongodb;EvalOptions;mongodb/mongodb;EvalOptions;", //
-        "mongodb;EvalOptions;mongoose;mongodb.EvalOptions;", //
-        "mongodb;FindCursor;mongodb/mongodb;FindCursor;", //
-        "mongodb;FindCursor;mongodb;Collection;Member[find].WithArity[0,1,2].ReturnValue", //
-        "mongodb;FindCursor;mongodb;FindCursor;Member[addQueryModifier,allowDiskUse,clone,collation,comment,filter,hint,limit,map,max,maxAwaitTimeMS,maxTimeMS,min,project,returnKey,showRecordId,skip,sort].ReturnValue", //
-        "mongodb;FindCursor;mongodb;FindCursorStatic;Instance", //
-        "mongodb;FindCursor;mongodb;GridFSBucket;Member[find].ReturnValue", //
-        "mongodb;FindCursor;mongoose;mongodb.FindCursor;", //
-        "mongodb;FindCursorStatic;mongodb/mongodb;FindCursorStatic;", //
-        "mongodb;FindCursorStatic;mongodb;;Member[FindCursor]", //
-        "mongodb;FindCursorStatic;mongoose;mongodb.FindCursorStatic;", //
-        "mongodb;FindOneAndDeleteOptions;mongodb/mongodb;FindOneAndDeleteOptions;", //
-        "mongodb;FindOneAndDeleteOptions;mongodb;Collection;Member[findOneAndDelete].Argument[1]", //
-        "mongodb;FindOneAndDeleteOptions;mongoose;mongodb.FindOneAndDeleteOptions;", //
-        "mongodb;FindOneAndReplaceOptions;mongodb/mongodb;FindOneAndReplaceOptions;", //
-        "mongodb;FindOneAndReplaceOptions;mongodb;Collection;Member[findOneAndReplace].Argument[2]", //
-        "mongodb;FindOneAndReplaceOptions;mongoose;mongodb.FindOneAndReplaceOptions;", //
-        "mongodb;FindOneAndUpdateOptions;mongodb/mongodb;FindOneAndUpdateOptions;", //
-        "mongodb;FindOneAndUpdateOptions;mongodb;Collection;Member[findOneAndUpdate].Argument[2]", //
-        "mongodb;FindOneAndUpdateOptions;mongoose;mongodb.FindOneAndUpdateOptions;", //
-        "mongodb;FindOperators;mongodb/mongodb;FindOperators;", //
-        "mongodb;FindOperators;mongodb;BulkOperationBase;Member[find].ReturnValue", //
-        "mongodb;FindOperators;mongodb;FindOperators;Member[arrayFilters,collation,upsert].ReturnValue", //
-        "mongodb;FindOperators;mongodb;FindOperatorsStatic;Instance", //
-        "mongodb;FindOperators;mongoose;mongodb.FindOperators;", //
-        "mongodb;FindOperatorsStatic;mongodb/mongodb;FindOperatorsStatic;", //
-        "mongodb;FindOperatorsStatic;mongodb;;Member[FindOperators]", //
-        "mongodb;FindOperatorsStatic;mongoose;mongodb.FindOperatorsStatic;", //
-        "mongodb;FindOptions;mongodb/mongodb;FindOptions;", //
-        "mongodb;FindOptions;mongodb;Collection;Member[find,findOne].Argument[1]", //
-        "mongodb;FindOptions;mongodb;GridFSBucket;Member[find].Argument[1]", //
-        "mongodb;FindOptions;mongoose;mongodb.FindOptions;", //
-        "mongodb;GridFSBucket;mongodb/mongodb;GridFSBucket;", //
-        "mongodb;GridFSBucket;mongodb;GridFSBucketStatic;Instance", //
-        "mongodb;GridFSBucket;mongodb;GridFSBucketWriteStream;Member[bucket]", //
-        "mongodb;GridFSBucket;mongoose;mongodb.GridFSBucket;", //
-        "mongodb;GridFSBucketStatic;mongodb/mongodb;GridFSBucketStatic;", //
-        "mongodb;GridFSBucketStatic;mongodb;;Member[GridFSBucket]", //
-        "mongodb;GridFSBucketStatic;mongoose;mongodb.GridFSBucketStatic;", //
-        "mongodb;GridFSBucketWriteStream;mongodb/mongodb;GridFSBucketWriteStream;", //
-        "mongodb;GridFSBucketWriteStream;mongodb;GridFSBucket;Member[openUploadStream,openUploadStreamWithId].ReturnValue", //
-        "mongodb;GridFSBucketWriteStream;mongodb;GridFSBucketWriteStream;Member[end].ReturnValue", //
-        "mongodb;GridFSBucketWriteStream;mongodb;GridFSBucketWriteStreamStatic;Instance", //
-        "mongodb;GridFSBucketWriteStream;mongoose;mongodb.GridFSBucketWriteStream;", //
-        "mongodb;GridFSBucketWriteStreamStatic;mongodb/mongodb;GridFSBucketWriteStreamStatic;", //
-        "mongodb;GridFSBucketWriteStreamStatic;mongodb;;Member[GridFSBucketWriteStream]", //
-        "mongodb;GridFSBucketWriteStreamStatic;mongoose;mongodb.GridFSBucketWriteStreamStatic;", //
-        "mongodb;IndexInformationOptions;mongodb/mongodb;IndexInformationOptions;", //
-        "mongodb;IndexInformationOptions;mongodb;Collection;Member[indexExists].Argument[1]", //
-        "mongodb;IndexInformationOptions;mongodb;Collection;Member[indexInformation,indexes].Argument[0]", //
-        "mongodb;IndexInformationOptions;mongodb;Db;Member[indexInformation].Argument[1]", //
-        "mongodb;IndexInformationOptions;mongoose;mongodb.IndexInformationOptions;", //
-        "mongodb;InsertOneOptions;mongodb/mongodb;InsertOneOptions;", //
-        "mongodb;InsertOneOptions;mongodb;Collection;Member[insertOne].Argument[1]", //
-        "mongodb;InsertOneOptions;mongoose;mongodb.InsertOneOptions;", //
-        "mongodb;ListCollectionsCursor;mongodb/mongodb;ListCollectionsCursor;", //
-        "mongodb;ListCollectionsCursor;mongodb;Db;Member[listCollections].WithArity[0,1,2].ReturnValue", //
-        "mongodb;ListCollectionsCursor;mongodb;ListCollectionsCursor;Member[clone].ReturnValue", //
-        "mongodb;ListCollectionsCursor;mongodb;ListCollectionsCursorStatic;Instance", //
-        "mongodb;ListCollectionsCursor;mongoose;mongodb.ListCollectionsCursor;", //
-        "mongodb;ListCollectionsCursorStatic;mongodb/mongodb;ListCollectionsCursorStatic;", //
-        "mongodb;ListCollectionsCursorStatic;mongodb;;Member[ListCollectionsCursor]", //
-        "mongodb;ListCollectionsCursorStatic;mongoose;mongodb.ListCollectionsCursorStatic;", //
-        "mongodb;ListCollectionsOptions;mongodb/mongodb;ListCollectionsOptions;", //
-        "mongodb;ListCollectionsOptions;mongodb;Db;Member[collections].Argument[0]", //
-        "mongodb;ListCollectionsOptions;mongodb;Db;Member[listCollections].WithArity[0,1,2].Argument[1]", //
-        "mongodb;ListCollectionsOptions;mongodb;ListCollectionsCursor;Member[options]", //
-        "mongodb;ListCollectionsOptions;mongodb;ListCollectionsCursorStatic;Argument[2]", //
-        "mongodb;ListCollectionsOptions;mongoose;mongodb.ListCollectionsOptions;", //
-        "mongodb;ListDatabasesOptions;mongodb/mongodb;ListDatabasesOptions;", //
-        "mongodb;ListDatabasesOptions;mongodb;Admin;Member[listDatabases].Argument[0]", //
-        "mongodb;ListDatabasesOptions;mongoose;mongodb.ListDatabasesOptions;", //
-        "mongodb;ListIndexesCursor;mongodb/mongodb;ListIndexesCursor;", //
-        "mongodb;ListIndexesCursor;mongodb;Collection;Member[listIndexes].ReturnValue", //
-        "mongodb;ListIndexesCursor;mongodb;ListIndexesCursor;Member[clone].ReturnValue", //
-        "mongodb;ListIndexesCursor;mongodb;ListIndexesCursorStatic;Instance", //
-        "mongodb;ListIndexesCursor;mongoose;mongodb.ListIndexesCursor;", //
-        "mongodb;ListIndexesCursorStatic;mongodb/mongodb;ListIndexesCursorStatic;", //
-        "mongodb;ListIndexesCursorStatic;mongodb;;Member[ListIndexesCursor]", //
-        "mongodb;ListIndexesCursorStatic;mongoose;mongodb.ListIndexesCursorStatic;", //
-        "mongodb;ListIndexesOptions;mongodb/mongodb;ListIndexesOptions;", //
-        "mongodb;ListIndexesOptions;mongodb;Collection;Member[listIndexes].Argument[0]", //
-        "mongodb;ListIndexesOptions;mongodb;ListIndexesCursor;Member[options]", //
-        "mongodb;ListIndexesOptions;mongodb;ListIndexesCursorStatic;Argument[1]", //
-        "mongodb;ListIndexesOptions;mongoose;mongodb.ListIndexesOptions;", //
-        "mongodb;MapReduceOptions;mongodb/mongodb;MapReduceOptions;", //
-        "mongodb;MapReduceOptions;mongodb;Collection;Member[mapReduce].Argument[2]", //
-        "mongodb;MapReduceOptions;mongoose;mongodb.MapReduceOptions;", //
-        "mongodb;MongoClient;mongodb/mongodb;MongoClient;", //
-        "mongodb;MongoClient;mongodb;AutoEncrypter;Argument[0]", //
-        "mongodb;MongoClient;mongodb;AutoEncryptionOptions;Member[keyVaultClient]", //
-        "mongodb;MongoClient;mongodb;ChangeStream;Member[parent]", //
-        "mongodb;MongoClient;mongodb;DbStatic;Argument[0]", //
-        "mongodb;MongoClient;mongodb;MongoClient;Member[connect].Argument[0].TypeVar[mongodb.Callback.0]", //
-        "mongodb;MongoClient;mongodb;MongoClient;Member[connect].WithArity[0].ReturnValue.Awaited", //
-        "mongodb;MongoClient;mongodb;MongoClientEvents;Member[open].Argument[0]", //
-        "mongodb;MongoClient;mongodb;MongoClientStatic;Instance", //
-        "mongodb;MongoClient;mongodb;MongoClientStatic;Member[connect].Argument[1,2].TypeVar[mongodb.Callback.0]", //
-        "mongodb;MongoClient;mongodb;MongoClientStatic;Member[connect].WithArity[1,2].ReturnValue.Awaited", //
-        "mongodb;MongoClient;mongoose;mongodb.MongoClient;", //
-        "mongodb;MongoClientEvents;mongodb/mongodb;MongoClientEvents;", //
-        "mongodb;MongoClientEvents;mongoose;mongodb.MongoClientEvents;", //
-        "mongodb;MongoClientOptions;mongodb/mongodb;MongoClientOptions;", //
-        "mongodb;MongoClientOptions;mongodb;MongoClientStatic;Argument[1]", //
-        "mongodb;MongoClientOptions;mongodb;MongoClientStatic;Member[connect].Argument[1]", //
-        "mongodb;MongoClientOptions;mongoose;mongodb.MongoClientOptions;", //
-        "mongodb;MongoClientStatic;mongodb/mongodb;MongoClientStatic;", //
-        "mongodb;MongoClientStatic;mongodb;;Member[MongoClient]", //
-        "mongodb;MongoClientStatic;mongoose;mongodb.MongoClientStatic;", //
-        "mongodb;MongoOptions;mongodb/mongodb;MongoOptions;", //
-        "mongodb;MongoOptions;mongodb;ClientSession;Member[clientOptions]", //
-        "mongodb;MongoOptions;mongodb;MongoClient;Member[options]", //
-        "mongodb;MongoOptions;mongoose;mongodb.MongoOptions;", //
-        "mongodb;OperationOptions;mongodb/mongodb;OperationOptions;", //
-        "mongodb;OperationOptions;mongodb;Collection;Member[isCapped,options].Argument[0]", //
-        "mongodb;OperationOptions;mongodb;CommandOperationOptions;", //
-        "mongodb;OperationOptions;mongoose;mongodb.OperationOptions;", //
-        "mongodb;OrderedBulkOperation;mongodb/mongodb;OrderedBulkOperation;", //
-        "mongodb;OrderedBulkOperation;mongodb;Collection;Member[initializeOrderedBulkOp].ReturnValue", //
-        "mongodb;OrderedBulkOperation;mongodb;OrderedBulkOperation;Member[addToOperationsList].ReturnValue", //
-        "mongodb;OrderedBulkOperation;mongodb;OrderedBulkOperationStatic;Instance", //
-        "mongodb;OrderedBulkOperation;mongoose;mongodb.OrderedBulkOperation;", //
-        "mongodb;OrderedBulkOperationStatic;mongodb/mongodb;OrderedBulkOperationStatic;", //
-        "mongodb;OrderedBulkOperationStatic;mongodb;;Member[OrderedBulkOperation]", //
-        "mongodb;OrderedBulkOperationStatic;mongoose;mongodb.OrderedBulkOperationStatic;", //
-        "mongodb;ProfilingLevelOptions;mongodb/mongodb;ProfilingLevelOptions;", //
-        "mongodb;ProfilingLevelOptions;mongodb;Db;Member[profilingLevel].Argument[0]", //
-        "mongodb;ProfilingLevelOptions;mongoose;mongodb.ProfilingLevelOptions;", //
-        "mongodb;ReadPreferenceFromOptions;mongodb/mongodb;ReadPreferenceFromOptions;", //
-        "mongodb;ReadPreferenceFromOptions;mongodb;ReadPreferenceStatic;Member[fromOptions].Argument[0]", //
-        "mongodb;ReadPreferenceFromOptions;mongoose;mongodb.ReadPreferenceFromOptions;", //
-        "mongodb;ReadPreferenceStatic;mongodb/mongodb;ReadPreferenceStatic;", //
-        "mongodb;ReadPreferenceStatic;mongodb;;Member[ReadPreference]", //
-        "mongodb;ReadPreferenceStatic;mongoose;mongodb.ReadPreferenceStatic;", //
-        "mongodb;RemoveUserOptions;mongodb/mongodb;RemoveUserOptions;", //
-        "mongodb;RemoveUserOptions;mongodb;Admin;Member[removeUser].Argument[1]", //
-        "mongodb;RemoveUserOptions;mongodb;Db;Member[removeUser].Argument[1]", //
-        "mongodb;RemoveUserOptions;mongoose;mongodb.RemoveUserOptions;", //
-        "mongodb;RenameOptions;mongodb/mongodb;RenameOptions;", //
-        "mongodb;RenameOptions;mongodb;Collection;Member[rename].Argument[1]", //
-        "mongodb;RenameOptions;mongodb;Db;Member[renameCollection].Argument[2]", //
-        "mongodb;RenameOptions;mongoose;mongodb.RenameOptions;", //
-        "mongodb;ReplaceOptions;mongodb/mongodb;ReplaceOptions;", //
-        "mongodb;ReplaceOptions;mongodb;Collection;Member[replaceOne].Argument[2]", //
-        "mongodb;ReplaceOptions;mongoose;mongodb.ReplaceOptions;", //
-        "mongodb;RunCommandOptions;mongodb/mongodb;RunCommandOptions;", //
-        "mongodb;RunCommandOptions;mongodb;Admin;Member[command].Argument[1]", //
-        "mongodb;RunCommandOptions;mongodb;Db;Member[command].Argument[1]", //
-        "mongodb;RunCommandOptions;mongoose;mongodb.RunCommandOptions;", //
-        "mongodb;SelectServerOptions;mongodb/mongodb;SelectServerOptions;", //
-        "mongodb;SelectServerOptions;mongoose;mongodb.SelectServerOptions;", //
-        "mongodb;SetProfilingLevelOptions;mongodb/mongodb;SetProfilingLevelOptions;", //
-        "mongodb;SetProfilingLevelOptions;mongodb;Db;Member[setProfilingLevel].Argument[1]", //
-        "mongodb;SetProfilingLevelOptions;mongoose;mongodb.SetProfilingLevelOptions;", //
-        "mongodb;Transaction;mongodb/mongodb;Transaction;", //
-        "mongodb;Transaction;mongodb;ClientSession;Member[transaction]", //
-        "mongodb;Transaction;mongodb;TransactionStatic;Instance", //
-        "mongodb;Transaction;mongoose;mongodb.Transaction;", //
-        "mongodb;TransactionOptions;mongodb/mongodb;TransactionOptions;", //
-        "mongodb;TransactionOptions;mongodb;ClientSession;Member[defaultTransactionOptions]", //
-        "mongodb;TransactionOptions;mongodb;ClientSession;Member[startTransaction].Argument[0]", //
-        "mongodb;TransactionOptions;mongodb;ClientSession;Member[withTransaction].Argument[1]", //
-        "mongodb;TransactionOptions;mongodb;ClientSessionOptions;Member[defaultTransactionOptions]", //
-        "mongodb;TransactionOptions;mongodb;Transaction;Member[options]", //
-        "mongodb;TransactionOptions;mongoose;mongodb.TransactionOptions;", //
-        "mongodb;TransactionStatic;mongodb/mongodb;TransactionStatic;", //
-        "mongodb;TransactionStatic;mongodb;;Member[Transaction]", //
-        "mongodb;TransactionStatic;mongoose;mongodb.TransactionStatic;", //
-        "mongodb;TypedEventEmitter;mongodb;AbstractCursor;", //
-        "mongodb;TypedEventEmitter;mongodb;ChangeStream;", //
-        "mongodb;TypedEventEmitter;mongodb;ClientSession;", //
-        "mongodb;TypedEventEmitter;mongodb;GridFSBucket;", //
-        "mongodb;TypedEventEmitter;mongodb;MongoClient;", //
-        "mongodb;UnorderedBulkOperation;mongodb/mongodb;UnorderedBulkOperation;", //
-        "mongodb;UnorderedBulkOperation;mongodb;Collection;Member[initializeUnorderedBulkOp].ReturnValue", //
-        "mongodb;UnorderedBulkOperation;mongodb;UnorderedBulkOperation;Member[addToOperationsList].ReturnValue", //
-        "mongodb;UnorderedBulkOperation;mongodb;UnorderedBulkOperationStatic;Instance", //
-        "mongodb;UnorderedBulkOperation;mongoose;mongodb.UnorderedBulkOperation;", //
-        "mongodb;UnorderedBulkOperationStatic;mongodb/mongodb;UnorderedBulkOperationStatic;", //
-        "mongodb;UnorderedBulkOperationStatic;mongodb;;Member[UnorderedBulkOperation]", //
-        "mongodb;UnorderedBulkOperationStatic;mongoose;mongodb.UnorderedBulkOperationStatic;", //
-        "mongodb;UpdateManyModel;mongodb/mongodb;UpdateManyModel;", //
-        "mongodb;UpdateManyModel;mongodb;AnyBulkWriteOperation;Member[updateMany]", //
-        "mongodb;UpdateManyModel;mongoose;mongodb.UpdateManyModel;", //
-        "mongodb;UpdateOneModel;mongodb/mongodb;UpdateOneModel;", //
-        "mongodb;UpdateOneModel;mongodb;AnyBulkWriteOperation;Member[updateOne]", //
-        "mongodb;UpdateOneModel;mongoose;mongodb.UpdateOneModel;", //
-        "mongodb;UpdateOptions;mongodb/mongodb;UpdateOptions;", //
-        "mongodb;UpdateOptions;mongodb;Collection;Member[update,updateMany,updateOne].Argument[2]", //
-        "mongodb;UpdateOptions;mongoose;mongodb.UpdateOptions;", //
-        "mongodb;ValidateCollectionOptions;mongodb/mongodb;ValidateCollectionOptions;", //
-        "mongodb;ValidateCollectionOptions;mongodb;Admin;Member[validateCollection].Argument[1]", //
-        "mongodb;ValidateCollectionOptions;mongoose;mongodb.ValidateCollectionOptions;", //
-        "mongodb;WithSessionCallback;mongodb/mongodb;WithSessionCallback;", //
-        "mongodb;WithSessionCallback;mongodb;MongoClient;Member[withSession].Argument[1]", //
-        "mongodb;WithSessionCallback;mongodb;MongoClient;Member[withSession].WithArity[1].Argument[0]", //
-        "mongodb;WithSessionCallback;mongoose;mongodb.WithSessionCallback;", //
-        "mongodb;WithTransactionCallback;mongodb/mongodb;WithTransactionCallback;", //
-        "mongodb;WithTransactionCallback;mongodb;ClientSession;Member[withTransaction].Argument[0]", //
-        "mongodb;WithTransactionCallback;mongoose;mongodb.WithTransactionCallback;", //
-        "mongoose/inferschematype;ResolvePathType;mongoose/inferschematype;ObtainDocumentPathType;", //
-        "mongoose/inferschematype;ResolvePathType;mongoose/inferschematype;ResolvePathType;TypeVar[mongoose.IfEquals.3].ArrayElement", //
-        "mongoose/inferschematype;ResolvePathType;mongoose/inferschematype;ResolvePathType;TypeVar[mongoose.IfEquals.3].TypeVar[mongoose.Types.DocumentArray.0]", //
-        "mongoose;;mongoose;;Member[mongoose]", //
-        "mongoose;AcceptsDiscriminator;mongoose;Model;", //
-        "mongoose;AcceptsDiscriminator;mongoose;Schema.Types.Array;", //
-        "mongoose;AcceptsDiscriminator;mongoose;Schema.Types.DocumentArray;", //
-        "mongoose;AcceptsDiscriminator;mongoose;Schema.Types.Subdocument;", //
-        "mongoose;Aggregate;mongoose;Aggregate;Member[addCursorFlag,addFields,allowDiskUse,append,collation,count,facet,graphLookup,group,hint,limit,lookup,match,model,near,option,project,read,readConcern,redact,replaceRoot,sample,search,session,skip,sort,sortByCount,unionWith,unwind].ReturnValue", //
-        "mongoose;Aggregate;mongoose;AggregateStatic;Instance", //
-        "mongoose;Aggregate;mongoose;Model;Member[aggregate].ReturnValue", //
-        "mongoose;AggregateStatic;mongoose;;Member[Aggregate]", //
-        "mongoose;Collection;mongoose;;Member[Collection]", //
-        "mongoose;Collection;mongoose;Collection;Instance", //
-        "mongoose;Collection;mongoose;Connection;Member[collection].ReturnValue", //
-        "mongoose;Collection;mongoose;Connection;Member[collections].AnyMember", //
-        "mongoose;Collection;mongoose;Document;Member[collection]", //
-        "mongoose;Collection;mongoose;Model;Member[collection]", //
-        "mongoose;CollectionBase;mongoose;Collection;", //
-        "mongoose;CompileModelOptions;mongoose;;Member[model].Argument[3]", //
-        "mongoose;CompileModelOptions;mongoose;Connection;Member[model].Argument[3]", //
-        "mongoose;ConnectOptions;mongoose;;Member[connect,createConnection].WithArity[1,2,3].Argument[1]", //
-        "mongoose;ConnectOptions;mongoose;Connection;Member[openUri].WithArity[1,2,3].Argument[1]", //
-        "mongoose;Connection;mongoose;;Member[connection]", //
-        "mongoose;Connection;mongoose;;Member[connections].ArrayElement", //
-        "mongoose;Connection;mongoose;;Member[createConnection].Argument[2].TypeVar[mongoose.Callback.0]", //
-        "mongoose;Connection;mongoose;;Member[createConnection].WithArity[0,1,2].ReturnValue", //
-        "mongoose;Connection;mongoose;;Member[createConnection].WithArity[2].Argument[1].TypeVar[mongoose.Callback.0]", //
-        "mongoose;Connection;mongoose;Collection;Argument[1]", //
-        "mongoose;Connection;mongoose;CollectionBase;Member[conn]", //
-        "mongoose;Connection;mongoose;CompileModelOptions;Member[connection]", //
-        "mongoose;Connection;mongoose;Connection;Member[asPromise].ReturnValue.Awaited", //
-        "mongoose;Connection;mongoose;Connection;Member[deleteModel,plugin,setClient,useDb].ReturnValue", //
-        "mongoose;Connection;mongoose;Connection;Member[openUri].Argument[2].TypeVar[mongoose.Callback.0]", //
-        "mongoose;Connection;mongoose;Connection;Member[openUri].WithArity[1,2].ReturnValue.Awaited", //
-        "mongoose;Connection;mongoose;Connection;Member[openUri].WithArity[2,3].ReturnValue", //
-        "mongoose;Connection;mongoose;Connection;Member[openUri].WithArity[2].Argument[1].TypeVar[mongoose.Callback.0]", //
-        "mongoose;Connection;mongoose;ConnectionStatic;Instance", //
-        "mongoose;Connection;mongoose;Document;Member[db]", //
-        "mongoose;Connection;mongoose;Model;Member[db]", //
-        "mongoose;ConnectionStatic;mongoose;;Member[Connection]", //
-        "mongoose;Cursor;mongoose;Query;Member[cursor].ReturnValue", //
-        "mongoose;DiscriminatorModel;mongoose;DiscriminatorSchema;TypeVar[mongoose.Schema.1]", //
-        "mongoose;Document;mongoose;Document;Member[$getAllSubdocs,$getPopulatedDocs].ReturnValue.ArrayElement", //
-        "mongoose;Document;mongoose;Document;Member[$inc,$parent,$set,depopulate,increment,init,overwrite,set].ReturnValue", //
-        "mongoose;Document;mongoose;Document;Member[delete,deleteOne].WithArity[0,1].ReturnValue.TypeVar[mongoose.QueryWithHelpers.1]", //
-        "mongoose;Document;mongoose;Document;Member[equals].Argument[0]", //
-        "mongoose;Document;mongoose;Document;Member[init].Argument[2].TypeVar[mongoose.Callback.0]", //
-        "mongoose;Document;mongoose;Document;Member[remove,save].WithArity[0,1].ReturnValue.Awaited", //
-        "mongoose;Document;mongoose;Document;Member[replaceOne,update,updateOne].ReturnValue.TypeVar[mongoose.Query.1]", //
-        "mongoose;Document;mongoose;Document;Member[save].Argument[1].TypeVar[mongoose.Callback.0]", //
-        "mongoose;Document;mongoose;Document;Member[save].WithArity[1].Argument[0].TypeVar[mongoose.Callback.0]", //
-        "mongoose;Document;mongoose;DocumentStatic;Instance", //
-        "mongoose;Document;mongoose;Error.VersionErrorStatic;Argument[0]", //
-        "mongoose;Document;mongoose;HydratedDocument;", //
-        "mongoose;Document;mongoose;HydratedDocument;TypeVar[mongoose.Require_id.0]", //
-        "mongoose;Document;mongoose;Model;Member[bulkSave].Argument[0].ArrayElement", //
-        "mongoose;Document;mongoose;TVirtualPathFN;Argument[2]", //
-        "mongoose;Document;mongoose;Types.Subdocument;", //
-        "mongoose;Document;mongoose;Types.Subdocument;Member[$parent,ownerDocument,parent].ReturnValue", //
-        "mongoose;Document;mongoose;VirtualType;Member[applyGetters,applySetters].Argument[1]", //
-        "mongoose;DocumentStatic;mongoose;;Member[Document]", //
-        "mongoose;Error.VersionErrorStatic;mongoose;;Member[Error].Member[VersionError]", //
-        "mongoose;HydratedDocument;mongoose;Model;Instance", //
-        "mongoose;HydratedDocument;mongoose;Model;Member[$where,count,countDocuments,deleteMany,deleteOne,distinct,estimatedDocumentCount,find,geoSearch,remove,replaceOne,update,updateMany,updateOne,where].ReturnValue.TypeVar[mongoose.QueryWithHelpers.1]", //
-        "mongoose;HydratedDocument;mongoose;Model;Member[$where,find,geoSearch,where].ReturnValue.TypeVar[mongoose.QueryWithHelpers.0].ArrayElement", //
-        "mongoose;HydratedDocument;mongoose;Model;Member[create,insertMany].WithArity[2].Argument[1].TypeVar[mongoose.Callback.0].ArrayElement", //
-        "mongoose;HydratedDocument;mongoose;Model;Member[create].WithArity[0..,1,2].ReturnValue.Awaited.ArrayElement", //
-        "mongoose;HydratedDocument;mongoose;Model;Member[create].WithArity[1].ReturnValue.Awaited", //
-        "mongoose;HydratedDocument;mongoose;Model;Member[create].WithArity[2].Argument[1].TypeVar[mongoose.Callback.0]", //
-        "mongoose;HydratedDocument;mongoose;Model;Member[exists].WithArity[1,2].ReturnValue.TypeVar[mongoose.QueryWithHelpers.1]", //
-        "mongoose;HydratedDocument;mongoose;Model;Member[find,insertMany].WithArity[3].Argument[2].TypeVar[mongoose.Callback.0].ArrayElement", //
-        "mongoose;HydratedDocument;mongoose;Model;Member[findById,findByIdAndDelete,findByIdAndRemove,findOne,findOneAndDelete,findOneAndRemove].ReturnValue.TypeVar[mongoose.QueryWithHelpers.0,mongoose.QueryWithHelpers.1]", //
-        "mongoose;HydratedDocument;mongoose;Model;Member[findById,findOne].Argument[3].TypeVar[mongoose.Callback.0]", //
-        "mongoose;HydratedDocument;mongoose;Model;Member[findByIdAndDelete,findByIdAndRemove,findOneAndDelete,findOneAndRemove].Argument[2].Argument[1]", //
-        "mongoose;HydratedDocument;mongoose;Model;Member[findByIdAndUpdate,findOneAndReplace,findOneAndUpdate].WithArity[0,1,2,3,4].ReturnValue.TypeVar[mongoose.QueryWithHelpers.0,mongoose.QueryWithHelpers.1]", //
-        "mongoose;HydratedDocument;mongoose;Model;Member[findByIdAndUpdate,findOneAndReplace,findOneAndUpdate].WithArity[3,4].ReturnValue.TypeVar[mongoose.QueryWithHelpers.0].TypeVar[mongoose.ModifyResult.0]", //
-        "mongoose;HydratedDocument;mongoose;Model;Member[findByIdAndUpdate].WithArity[0,1,2,4].Argument[3].Argument[1]", //
-        "mongoose;HydratedDocument;mongoose;Model;Member[findByIdAndUpdate].WithArity[3].Argument[2,3].Argument[1]", //
-        "mongoose;HydratedDocument;mongoose;Model;Member[findById].WithArity[1,2,3].Argument[2].TypeVar[mongoose.Callback.0]", //
-        "mongoose;HydratedDocument;mongoose;Model;Member[findOneAndReplace].WithArity[0,1,2,3,4].Argument[3].Argument[1]", //
-        "mongoose;HydratedDocument;mongoose;Model;Member[findOneAndUpdate].WithArity[3,4].Argument[3].Argument[1]", //
-        "mongoose;HydratedDocument;mongoose;Model;Member[findOne].WithArity[0,1,2].Argument[1,2].TypeVar[mongoose.Callback.0]", //
-        "mongoose;HydratedDocument;mongoose;Model;Member[findOne].WithArity[3].Argument[2].TypeVar[mongoose.Callback.0]", //
-        "mongoose;HydratedDocument;mongoose;Model;Member[find].Argument[3].TypeVar[mongoose.Callback.0].ArrayElement", //
-        "mongoose;HydratedDocument;mongoose;Model;Member[find].WithArity[0].Argument[0].TypeVar[mongoose.Callback.0].ArrayElement", //
-        "mongoose;HydratedDocument;mongoose;Model;Member[find].WithArity[1].Argument[0,1,2].TypeVar[mongoose.Callback.0].ArrayElement", //
-        "mongoose;HydratedDocument;mongoose;Model;Member[find].WithArity[2].Argument[1,2].TypeVar[mongoose.Callback.0].ArrayElement", //
-        "mongoose;HydratedDocument;mongoose;Model;Member[geoSearch].Argument[2].TypeVar[mongoose.Callback.0].ArrayElement", //
-        "mongoose;HydratedDocument;mongoose;Model;Member[hydrate].ReturnValue", //
-        "mongoose;HydratedDocument;mongoose;Model;Member[init].ReturnValue.Awaited", //
-        "mongoose;HydratedDocument;mongoose;Model;Member[insertMany].WithArity[1,2].ReturnValue.Awaited.ArrayElement", //
-        "mongoose;HydratedDocument;mongoose;Model;Member[populate].WithArity[2,3].Argument[2].TypeVar[mongoose.Callback.0]", //
-        "mongoose;HydratedDocument;mongoose;Model;Member[populate].WithArity[2,3].Argument[2].TypeVar[mongoose.Callback.0].ArrayElement", //
-        "mongoose;HydratedDocument;mongoose;Model;Member[populate].WithArity[2,3].ReturnValue.Awaited", //
-        "mongoose;HydratedDocument;mongoose;Model;Member[populate].WithArity[2,3].ReturnValue.Awaited.ArrayElement", //
-        "mongoose;HydratedDocument;mongoose;TVirtualPathFN;Argument[1].TypeVar[mongoose.VirtualType.0]", //
-        "mongoose;HydratedDocument;mongoose;VirtualPathFunctions;Member[options].TypeVar[mongoose.VirtualTypeOptions.0]", //
-        "mongoose;InsertManyOptions;mongoose;Model;Member[insertMany].WithArity[2,3].Argument[1]", //
-        "mongoose;Model;mongoose;;Member[Model]", //
-        "mongoose;Model;mongoose;;Member[model].ReturnValue", //
-        "mongoose;Model;mongoose;AcceptsDiscriminator;Member[discriminator].WithArity[2,3].ReturnValue", //
-        "mongoose;Model;mongoose;Aggregate;Member[model].Argument[0]", //
-        "mongoose;Model;mongoose;Connection;Member[model].WithArity[1,2,3,4].ReturnValue", //
-        "mongoose;Model;mongoose;Connection;Member[models].AnyMember", //
-        "mongoose;Model;mongoose;DiscriminatorModel;", //
-        "mongoose;Model;mongoose;Document;Member[$model].ReturnValue", //
-        "mongoose;Model;mongoose;Document;Member[populate].Argument[2]", //
-        "mongoose;Model;mongoose;Model;Member[discriminators].AnyMember", //
-        "mongoose;Model;mongoose;Models;AnyMember", //
-        "mongoose;Model;mongoose;PopulateOptions;Member[model]", //
-        "mongoose;Model;mongoose;Query;Member[cast].Argument[0]", //
-        "mongoose;Model;mongoose;Query;Member[populate].Argument[2]", //
-        "mongoose;Model;mongoose;Schema.Types.Array;Member[discriminator].WithArity[2,3].ReturnValue", //
-        "mongoose;Model;mongoose;Schema.Types.DocumentArray;Member[discriminator].WithArity[2,3].ReturnValue", //
-        "mongoose;Model;mongoose;Schema.Types.Subdocument;Member[discriminator].WithArity[2,3].ReturnValue", //
-        "mongoose;Model;mongoose;SchemaStatic;Instance.TypeVar[mongoose.Schema.1]", //
-        "mongoose;Models;mongoose;;Member[models]", //
-        "mongoose;PopulateOption;mongoose;InsertManyOptions;", //
-        "mongoose;PopulateOption;mongoose;QueryOptions;", //
-        "mongoose;PopulateOptions;mongoose;Document;Member[populate].Argument[4]", //
-        "mongoose;PopulateOptions;mongoose;Document;Member[populate].WithArity[1,2].Argument[0]", //
-        "mongoose;PopulateOptions;mongoose;Document;Member[populate].WithArity[1,2].Argument[0].ArrayElement", //
-        "mongoose;PopulateOptions;mongoose;Model;Member[populate].Argument[1]", //
-        "mongoose;PopulateOptions;mongoose;Model;Member[populate].Argument[1].ArrayElement", //
-        "mongoose;PopulateOptions;mongoose;PopulateOption;Member[populate]", //
-        "mongoose;PopulateOptions;mongoose;PopulateOption;Member[populate].ArrayElement", //
-        "mongoose;PopulateOptions;mongoose;PopulateOptions;Member[populate]", //
-        "mongoose;PopulateOptions;mongoose;PopulateOptions;Member[populate].ArrayElement", //
-        "mongoose;PopulateOptions;mongoose;Query;Member[populate].WithArity[1].Argument[0]", //
-        "mongoose;PopulateOptions;mongoose;Query;Member[populate].WithArity[1].Argument[0].ArrayElement", //
-        "mongoose;Query;mongoose;Document;Member[replaceOne,update,updateOne].ReturnValue", //
-        "mongoose;Query;mongoose;HydratedDocument;TypeVar[mongoose.Require_id.0]", //
-        "mongoose;Query;mongoose;Query;Member[all,allowDiskUse,and,batchSize,box,circle,clone,collation,comment,elemMatch,equals,exists,explain,geometry,gt,gte,hint,in,intersects,j,limit,lt,lte,maxDistance,maxScan,maxTimeMS,merge,mod,ne,near,nin,nor,or,polygon,read,readConcern,regex,remove,select,session,set,setOptions,size,skip,slice,snapshot,sort,tailable,w,where,within,wtimeout].ReturnValue", //
-        "mongoose;Query;mongoose;Query;Member[error].WithArity[1].ReturnValue", //
-        "mongoose;Query;mongoose;Query;Member[merge].Argument[0]", //
-        "mongoose;Query;mongoose;QueryStatic;Instance", //
-        "mongoose;Query;mongoose;QueryWithHelpers;", //
-        "mongoose;QueryOptions;mongoose;Document;Member[delete,deleteOne,remove].WithArity[0,1,2].Argument[0]", //
-        "mongoose;QueryOptions;mongoose;Document;Member[replaceOne,update,updateOne].Argument[1]", //
-        "mongoose;QueryOptions;mongoose;Model;Member[countDocuments,findByIdAndDelete,findByIdAndRemove,findOneAndDelete,findOneAndRemove].Argument[1]", //
-        "mongoose;QueryOptions;mongoose;Model;Member[deleteMany,deleteOne].WithArity[0,1,2,3].Argument[1]", //
-        "mongoose;QueryOptions;mongoose;Model;Member[estimatedDocumentCount].Argument[0]", //
-        "mongoose;QueryOptions;mongoose;Model;Member[find,findById].WithArity[1,2,3,4].Argument[2]", //
-        "mongoose;QueryOptions;mongoose;Model;Member[findByIdAndUpdate,findOne,findOneAndReplace,findOneAndUpdate].WithArity[0,1,2,3,4].Argument[2]", //
-        "mongoose;QueryOptions;mongoose;Model;Member[replaceOne,update,updateMany,updateOne].Argument[2]", //
-        "mongoose;QueryOptions;mongoose;PopulateOptions;Member[options]", //
-        "mongoose;QueryOptions;mongoose;Query;Member[countDocuments,findByIdAndDelete,findOneAndDelete,findOneAndRemove].Argument[1]", //
-        "mongoose;QueryOptions;mongoose;Query;Member[cursor,estimatedDocumentCount,setOptions].Argument[0]", //
-        "mongoose;QueryOptions;mongoose;Query;Member[cursor].ReturnValue.TypeVar[mongoose.Cursor.1]", //
-        "mongoose;QueryOptions;mongoose;Query;Member[deleteMany,deleteOne].WithArity[0,1,2,3].Argument[1]", //
-        "mongoose;QueryOptions;mongoose;Query;Member[findByIdAndUpdate,findOne,findOneAndUpdate].WithArity[0,1,2,3,4].Argument[2]", //
-        "mongoose;QueryOptions;mongoose;Query;Member[find].WithArity[1,2,3,4].Argument[2]", //
-        "mongoose;QueryOptions;mongoose;Query;Member[getOptions].ReturnValue", //
-        "mongoose;QueryOptions;mongoose;Query;Member[replaceOne,update,updateMany,updateOne].Argument[2]", //
-        "mongoose;QueryOptions;mongoose;VirtualTypeOptions;Member[options]", //
-        "mongoose;QueryStatic;mongoose;;Member[Query]", //
-        "mongoose;QueryWithHelpers;mongoose;Document;Member[delete,deleteOne].WithArity[0,1].ReturnValue", //
-        "mongoose;QueryWithHelpers;mongoose;Model;Member[$where,count,countDocuments,deleteMany,deleteOne,distinct,estimatedDocumentCount,find,findById,findByIdAndDelete,findByIdAndRemove,findOne,findOneAndDelete,findOneAndRemove,geoSearch,remove,replaceOne,update,updateMany,updateOne,where].ReturnValue", //
-        "mongoose;QueryWithHelpers;mongoose;Model;Member[exists].WithArity[1,2].ReturnValue", //
-        "mongoose;QueryWithHelpers;mongoose;Model;Member[findByIdAndUpdate,findOneAndReplace,findOneAndUpdate].WithArity[0,1,2,3,4].ReturnValue", //
-        "mongoose;QueryWithHelpers;mongoose;Query;Member[$where,count,countDocuments,deleteMany,deleteOne,distinct,estimatedDocumentCount,find,findByIdAndDelete,findOne,findOneAndDelete,findOneAndRemove,lean,orFail,populate,replaceOne,transform,update,updateMany,updateOne].ReturnValue", //
-        "mongoose;QueryWithHelpers;mongoose;Query;Member[findByIdAndUpdate,findOneAndUpdate].WithArity[0,1,2,3,4].ReturnValue", //
-        "mongoose;QueryWithHelpers;mongoose;Query;Member[toConstructor].ReturnValue.Instance", //
-        "mongoose;Schema.Types.Array;mongoose;Schema.Types.Array;Member[enum].ReturnValue", //
-        "mongoose;Schema.Types.Array;mongoose;Schema.Types.ArrayStatic;Instance", //
-        "mongoose;Schema.Types.ArrayStatic;mongoose;;Member[Schema].Member[Types].Member[Array]", //
-        "mongoose;Schema.Types.DocumentArray;mongoose;Schema.Types.DocumentArrayStatic;Instance", //
-        "mongoose;Schema.Types.DocumentArrayStatic;mongoose;;Member[Schema].Member[Types].Member[DocumentArray]", //
-        "mongoose;Schema.Types.Subdocument;mongoose;Schema.Types.SubdocumentStatic;Instance", //
-        "mongoose;Schema.Types.SubdocumentStatic;mongoose;;Member[Schema].Member[Types].Member[Subdocument]", //
-        "mongoose;Schema.Types.SubdocumentStatic;mongoose;Schema.Types.DocumentArray;Member[caster]", //
-        "mongoose;SchemaStatic;mongoose;;Member[Schema]", //
-        "mongoose;SessionOperation;mongoose;Aggregate;", //
-        "mongoose;SessionOperation;mongoose;Query;", //
-        "mongoose;TVirtualPathFN;mongoose;VirtualPathFunctions;Member[get,set]", //
-        "mongoose;Types.Array;mongoose;Types.DocumentArray;", //
-        "mongoose;Types.ArraySubdocument;mongoose;Types.ArraySubdocumentStatic;Instance", //
-        "mongoose;Types.ArraySubdocumentStatic;mongoose;;Member[Types].Member[ArraySubdocument]", //
-        "mongoose;Types.DocumentArray;mongoose/inferschematype;ResolvePathType;TypeVar[mongoose.IfEquals.3]", //
-        "mongoose;Types.DocumentArray;mongoose;Types.ArraySubdocument;Member[parentArray].ReturnValue", //
-        "mongoose;Types.DocumentArray;mongoose;Types.DocumentArrayStatic;Instance", //
-        "mongoose;Types.DocumentArrayStatic;mongoose;;Member[Types].Member[DocumentArray]", //
-        "mongoose;Types.ObjectId;mongoose/inferschematype;ResolvePathType;", //
-        "mongoose;Types.Subdocument;mongoose;Types.ArraySubdocument;", //
-        "mongoose;Types.Subdocument;mongoose;Types.DocumentArray;Member[create,id].ReturnValue", //
-        "mongoose;Types.Subdocument;mongoose;Types.DocumentArray;TypeVar[mongoose.Types.Array.0]", //
-        "mongoose;Types.Subdocument;mongoose;Types.SubdocumentStatic;Instance", //
-        "mongoose;Types.SubdocumentStatic;mongoose;;Member[Types].Member[Subdocument]", //
-        "mongoose;VirtualType;mongoose;TVirtualPathFN;Argument[1]", //
-        "mongoose;VirtualType;mongoose;VirtualType;Member[get,set].Argument[0].Argument[1]", //
-        "mongoose;VirtualType;mongoose;VirtualType;Member[get,set].ReturnValue", //
-        "mongoose;VirtualType;mongoose;VirtualTypeStatic;Instance", //
-        "mongoose;VirtualTypeOptions;mongoose;VirtualPathFunctions;Member[options]", //
-        "mongoose;VirtualTypeStatic;mongoose;;Member[VirtualType]", //
+        "mongodb.AbstractCursor;mongodb.FindCursor;", //
+        "mongodb.AbstractCursor;mongodb.ListCollectionsCursor;", //
+        "mongodb.AbstractCursor;mongodb.ListIndexesCursor;", //
+        "mongodb.AbstractCursorOptions;mongodb.AggregationCursorOptions;", //
+        "mongodb.AbstractCursorOptions;mongodb/mongodb.AbstractCursorOptions;", //
+        "mongodb.AbstractCursorOptions;mongoose.mongodb.AbstractCursorOptions;", //
+        "mongodb.AddUserOptions;mongodb.Admin;Member[addUser].Argument[1,2]", //
+        "mongodb.AddUserOptions;mongodb.Db;Member[addUser].Argument[1,2]", //
+        "mongodb.AddUserOptions;mongodb/mongodb.AddUserOptions;", //
+        "mongodb.AddUserOptions;mongoose.mongodb.AddUserOptions;", //
+        "mongodb.Admin;mongodb.AdminStatic;Instance", //
+        "mongodb.Admin;mongodb.Db;Member[admin].ReturnValue", //
+        "mongodb.Admin;mongodb/mongodb.Admin;", //
+        "mongodb.Admin;mongoose.mongodb.Admin;", //
+        "mongodb.AdminStatic;mongodb/mongodb.AdminStatic;", //
+        "mongodb.AdminStatic;mongodb;Member[Admin]", //
+        "mongodb.AdminStatic;mongoose.mongodb.AdminStatic;", //
+        "mongodb.AggregateOptions;mongodb.AggregationCursorOptions;", //
+        "mongodb.AggregateOptions;mongodb.ChangeStreamOptions;", //
+        "mongodb.AggregateOptions;mongodb.Collection;Member[aggregate].Argument[1]", //
+        "mongodb.AggregateOptions;mongodb.CountDocumentsOptions;", //
+        "mongodb.AggregateOptions;mongodb.Db;Member[aggregate].Argument[1]", //
+        "mongodb.AggregateOptions;mongodb/mongodb.AggregateOptions;", //
+        "mongodb.AggregateOptions;mongoose.mongodb.AggregateOptions;", //
+        "mongodb.AggregationCursorOptions;mongodb/mongodb.AggregationCursorOptions;", //
+        "mongodb.AggregationCursorOptions;mongoose.mongodb.AggregationCursorOptions;", //
+        "mongodb.AnyBulkWriteOperation;mongodb.BulkOperationBase;Member[raw].Argument[0]", //
+        "mongodb.AnyBulkWriteOperation;mongodb.Collection;Member[bulkWrite].Argument[0].ArrayElement", //
+        "mongodb.AnyBulkWriteOperation;mongodb/mongodb.AnyBulkWriteOperation;", //
+        "mongodb.AnyBulkWriteOperation;mongoose.mongodb.AnyBulkWriteOperation;", //
+        "mongodb.Auth;mongodb.MongoClientOptions;Member[auth]", //
+        "mongodb.Auth;mongodb/mongodb.Auth;", //
+        "mongodb.Auth;mongoose.mongodb.Auth;", //
+        "mongodb.AutoEncrypter;mongodb.AutoEncrypter;Instance", //
+        "mongodb.AutoEncrypter;mongodb.ConnectionOptions;Member[autoEncrypter]", //
+        "mongodb.AutoEncrypter;mongodb.MongoClient;Member[autoEncrypter]", //
+        "mongodb.AutoEncrypter;mongodb.MongoOptions;Member[autoEncrypter]", //
+        "mongodb.AutoEncrypter;mongodb/mongodb.AutoEncrypter;", //
+        "mongodb.AutoEncrypter;mongoose.mongodb.AutoEncrypter;", //
+        "mongodb.AutoEncryptionOptions;mongodb.AutoEncrypter;Argument[1]", //
+        "mongodb.AutoEncryptionOptions;mongodb.MongoClientOptions;Member[autoEncryption]", //
+        "mongodb.AutoEncryptionOptions;mongodb/mongodb.AutoEncryptionOptions;", //
+        "mongodb.AutoEncryptionOptions;mongoose.mongodb.AutoEncryptionOptions;", //
+        "mongodb.BulkOperationBase;mongodb.BulkOperationBase;Member[addToOperationsList,insert,raw].ReturnValue", //
+        "mongodb.BulkOperationBase;mongodb.BulkOperationBaseStatic;Instance", //
+        "mongodb.BulkOperationBase;mongodb.FindOperators;Member[bulkOperation]", //
+        "mongodb.BulkOperationBase;mongodb.FindOperators;Member[delete,deleteOne,replaceOne,update,updateOne].ReturnValue", //
+        "mongodb.BulkOperationBase;mongodb.OrderedBulkOperation;", //
+        "mongodb.BulkOperationBase;mongodb.UnorderedBulkOperation;", //
+        "mongodb.BulkOperationBase;mongodb/mongodb.BulkOperationBase;", //
+        "mongodb.BulkOperationBase;mongoose.mongodb.BulkOperationBase;", //
+        "mongodb.BulkOperationBaseStatic;mongodb/mongodb.BulkOperationBaseStatic;", //
+        "mongodb.BulkOperationBaseStatic;mongodb;Member[BulkOperationBase]", //
+        "mongodb.BulkOperationBaseStatic;mongoose.mongodb.BulkOperationBaseStatic;", //
+        "mongodb.BulkWriteOptions;mongodb.BulkOperationBase;Member[execute].WithArity[0,1,2].Argument[0]", //
+        "mongodb.BulkWriteOptions;mongodb.Collection;Member[bulkWrite,insert,insertMany].Argument[1]", //
+        "mongodb.BulkWriteOptions;mongodb.Collection;Member[initializeOrderedBulkOp,initializeUnorderedBulkOp].Argument[0]", //
+        "mongodb.BulkWriteOptions;mongodb.OrderedBulkOperationStatic;Argument[1]", //
+        "mongodb.BulkWriteOptions;mongodb.UnorderedBulkOperationStatic;Argument[1]", //
+        "mongodb.BulkWriteOptions;mongodb/mongodb.BulkWriteOptions;", //
+        "mongodb.BulkWriteOptions;mongoose.mongodb.BulkWriteOptions;", //
+        "mongodb.ChangeStream;mongodb.ChangeStreamStatic;Instance", //
+        "mongodb.ChangeStream;mongodb.Collection;Member[watch].ReturnValue", //
+        "mongodb.ChangeStream;mongodb.Db;Member[watch].ReturnValue", //
+        "mongodb.ChangeStream;mongodb.MongoClient;Member[watch].ReturnValue", //
+        "mongodb.ChangeStream;mongodb/mongodb.ChangeStream;", //
+        "mongodb.ChangeStream;mongoose.mongodb.ChangeStream;", //
+        "mongodb.ChangeStreamOptions;mongodb.ChangeStream;Member[options]", //
+        "mongodb.ChangeStreamOptions;mongodb.Collection;Member[watch].Argument[1]", //
+        "mongodb.ChangeStreamOptions;mongodb.Db;Member[watch].Argument[1]", //
+        "mongodb.ChangeStreamOptions;mongodb.MongoClient;Member[watch].Argument[1]", //
+        "mongodb.ChangeStreamOptions;mongodb/mongodb.ChangeStreamOptions;", //
+        "mongodb.ChangeStreamOptions;mongoose.mongodb.ChangeStreamOptions;", //
+        "mongodb.ChangeStreamStatic;mongodb/mongodb.ChangeStreamStatic;", //
+        "mongodb.ChangeStreamStatic;mongodb;Member[ChangeStream]", //
+        "mongodb.ChangeStreamStatic;mongoose.mongodb.ChangeStreamStatic;", //
+        "mongodb.ClientSession;mongodb.AbstractCursorOptions;Member[session]", //
+        "mongodb.ClientSession;mongodb.ClientSession;Member[equals].Argument[0]", //
+        "mongodb.ClientSession;mongodb.ClientSessionEvents;Member[ended].Argument[0]", //
+        "mongodb.ClientSession;mongodb.ClientSessionStatic;Instance", //
+        "mongodb.ClientSession;mongodb.IndexInformationOptions;Member[session]", //
+        "mongodb.ClientSession;mongodb.MongoClient;Member[startSession].ReturnValue", //
+        "mongodb.ClientSession;mongodb.OperationOptions;Member[session]", //
+        "mongodb.ClientSession;mongodb.ReadPreferenceFromOptions;Member[session]", //
+        "mongodb.ClientSession;mongodb.SelectServerOptions;Member[session]", //
+        "mongodb.ClientSession;mongodb.WithSessionCallback;Argument[0]", //
+        "mongodb.ClientSession;mongodb.WithTransactionCallback;Argument[0]", //
+        "mongodb.ClientSession;mongodb/mongodb.ClientSession;", //
+        "mongodb.ClientSession;mongoose.mongodb.ClientSession;", //
+        "mongodb.ClientSessionEvents;mongodb/mongodb.ClientSessionEvents;", //
+        "mongodb.ClientSessionEvents;mongoose.mongodb.ClientSessionEvents;", //
+        "mongodb.ClientSessionOptions;mongodb.MongoClient;Member[startSession].Argument[0]", //
+        "mongodb.ClientSessionOptions;mongodb.MongoClient;Member[withSession].WithArity[2].Argument[0]", //
+        "mongodb.ClientSessionOptions;mongodb/mongodb.ClientSessionOptions;", //
+        "mongodb.ClientSessionOptions;mongoose.mongodb.ClientSessionOptions;", //
+        "mongodb.ClientSessionStatic;mongodb/mongodb.ClientSessionStatic;", //
+        "mongodb.ClientSessionStatic;mongodb;Member[ClientSession]", //
+        "mongodb.ClientSessionStatic;mongoose.mongodb.ClientSessionStatic;", //
+        "mongodb.CollStatsOptions;mongodb.Collection;Member[stats].Argument[0]", //
+        "mongodb.CollStatsOptions;mongodb/mongodb.CollStatsOptions;", //
+        "mongodb.CollStatsOptions;mongoose.mongodb.CollStatsOptions;", //
+        "mongodb.Collection;mongodb.ChangeStream;Member[parent]", //
+        "mongodb.Collection;mongodb.Collection;Member[rename].Argument[1,2].TypeVar[mongodb.Callback.0]", //
+        "mongodb.Collection;mongodb.Collection;Member[rename].WithArity[1,2].ReturnValue.Awaited", //
+        "mongodb.Collection;mongodb.CollectionStatic;Instance", //
+        "mongodb.Collection;mongodb.Db;Member[collection].ReturnValue", //
+        "mongodb.Collection;mongodb.Db;Member[collections].Argument[0,1].TypeVar[mongodb.Callback.0].ArrayElement", //
+        "mongodb.Collection;mongodb.Db;Member[collections].WithArity[0,1].ReturnValue.Awaited.ArrayElement", //
+        "mongodb.Collection;mongodb.Db;Member[createCollection].Argument[2].TypeVar[mongodb.Callback.0]", //
+        "mongodb.Collection;mongodb.Db;Member[createCollection].WithArity[1,2].ReturnValue.Awaited", //
+        "mongodb.Collection;mongodb.Db;Member[createCollection].WithArity[2].Argument[1].TypeVar[mongodb.Callback.0]", //
+        "mongodb.Collection;mongodb.Db;Member[renameCollection].Argument[2,3].TypeVar[mongodb.Callback.0]", //
+        "mongodb.Collection;mongodb.Db;Member[renameCollection].WithArity[2,3].ReturnValue.Awaited", //
+        "mongodb.Collection;mongodb.GridFSBucketWriteStream;Member[chunks,files]", //
+        "mongodb.Collection;mongodb.ListIndexesCursor;Member[parent]", //
+        "mongodb.Collection;mongodb.ListIndexesCursorStatic;Argument[0]", //
+        "mongodb.Collection;mongodb.OrderedBulkOperationStatic;Argument[0]", //
+        "mongodb.Collection;mongodb.UnorderedBulkOperationStatic;Argument[0]", //
+        "mongodb.Collection;mongodb/mongodb.Collection;", //
+        "mongodb.Collection;mongoose.mongodb.Collection;", //
+        "mongodb.CollectionStatic;mongodb/mongodb.CollectionStatic;", //
+        "mongodb.CollectionStatic;mongodb;Member[Collection]", //
+        "mongodb.CollectionStatic;mongoose.mongodb.CollectionStatic;", //
+        "mongodb.CommandOperationOptions;mongodb.AddUserOptions;", //
+        "mongodb.CommandOperationOptions;mongodb.Admin;Member[buildInfo,ping,replSetGetStatus,serverInfo,serverStatus].Argument[0]", //
+        "mongodb.CommandOperationOptions;mongodb.AggregateOptions;", //
+        "mongodb.CommandOperationOptions;mongodb.BulkWriteOptions;", //
+        "mongodb.CommandOperationOptions;mongodb.CollStatsOptions;", //
+        "mongodb.CommandOperationOptions;mongodb.CountOptions;", //
+        "mongodb.CommandOperationOptions;mongodb.CreateCollectionOptions;", //
+        "mongodb.CommandOperationOptions;mongodb.CreateIndexesOptions;", //
+        "mongodb.CommandOperationOptions;mongodb.DbStatsOptions;", //
+        "mongodb.CommandOperationOptions;mongodb.DeleteOptions;", //
+        "mongodb.CommandOperationOptions;mongodb.DistinctOptions;", //
+        "mongodb.CommandOperationOptions;mongodb.DropCollectionOptions;", //
+        "mongodb.CommandOperationOptions;mongodb.DropDatabaseOptions;", //
+        "mongodb.CommandOperationOptions;mongodb.DropIndexesOptions;", //
+        "mongodb.CommandOperationOptions;mongodb.EstimatedDocumentCountOptions;", //
+        "mongodb.CommandOperationOptions;mongodb.EvalOptions;", //
+        "mongodb.CommandOperationOptions;mongodb.FindOneAndDeleteOptions;", //
+        "mongodb.CommandOperationOptions;mongodb.FindOneAndReplaceOptions;", //
+        "mongodb.CommandOperationOptions;mongodb.FindOneAndUpdateOptions;", //
+        "mongodb.CommandOperationOptions;mongodb.FindOptions;", //
+        "mongodb.CommandOperationOptions;mongodb.InsertOneOptions;", //
+        "mongodb.CommandOperationOptions;mongodb.ListCollectionsOptions;", //
+        "mongodb.CommandOperationOptions;mongodb.ListDatabasesOptions;", //
+        "mongodb.CommandOperationOptions;mongodb.ListIndexesOptions;", //
+        "mongodb.CommandOperationOptions;mongodb.MapReduceOptions;", //
+        "mongodb.CommandOperationOptions;mongodb.ProfilingLevelOptions;", //
+        "mongodb.CommandOperationOptions;mongodb.RemoveUserOptions;", //
+        "mongodb.CommandOperationOptions;mongodb.RenameOptions;", //
+        "mongodb.CommandOperationOptions;mongodb.ReplaceOptions;", //
+        "mongodb.CommandOperationOptions;mongodb.RunCommandOptions;", //
+        "mongodb.CommandOperationOptions;mongodb.SetProfilingLevelOptions;", //
+        "mongodb.CommandOperationOptions;mongodb.TransactionOptions;", //
+        "mongodb.CommandOperationOptions;mongodb.UpdateOptions;", //
+        "mongodb.CommandOperationOptions;mongodb.ValidateCollectionOptions;", //
+        "mongodb.CommandOperationOptions;mongodb/mongodb.CommandOperationOptions;", //
+        "mongodb.CommandOperationOptions;mongoose.mongodb.CommandOperationOptions;", //
+        "mongodb.ConnectionOptions;mongodb/mongodb.ConnectionOptions;", //
+        "mongodb.ConnectionOptions;mongoose.mongodb.ConnectionOptions;", //
+        "mongodb.CountDocumentsOptions;mongodb.Collection;Member[countDocuments].Argument[1]", //
+        "mongodb.CountDocumentsOptions;mongodb/mongodb.CountDocumentsOptions;", //
+        "mongodb.CountDocumentsOptions;mongoose.mongodb.CountDocumentsOptions;", //
+        "mongodb.CountOptions;mongodb.Collection;Member[count].Argument[1]", //
+        "mongodb.CountOptions;mongodb.FindCursor;Member[count].Argument[0]", //
+        "mongodb.CountOptions;mongodb/mongodb.CountOptions;", //
+        "mongodb.CountOptions;mongoose.mongodb.CountOptions;", //
+        "mongodb.CreateCollectionOptions;mongodb.Db;Member[createCollection].WithArity[1,2,3].Argument[1]", //
+        "mongodb.CreateCollectionOptions;mongodb/mongodb.CreateCollectionOptions;", //
+        "mongodb.CreateCollectionOptions;mongoose.mongodb.CreateCollectionOptions;", //
+        "mongodb.CreateIndexesOptions;mongodb.Collection;Member[createIndex,createIndexes].Argument[1]", //
+        "mongodb.CreateIndexesOptions;mongodb.Db;Member[createIndex].Argument[2]", //
+        "mongodb.CreateIndexesOptions;mongodb/mongodb.CreateIndexesOptions;", //
+        "mongodb.CreateIndexesOptions;mongoose.mongodb.CreateIndexesOptions;", //
+        "mongodb.Db;mongodb.ChangeStream;Member[parent]", //
+        "mongodb.Db;mongodb.DbStatic;Instance", //
+        "mongodb.Db;mongodb.GridFSBucketStatic;Argument[0]", //
+        "mongodb.Db;mongodb.ListCollectionsCursor;Member[parent]", //
+        "mongodb.Db;mongodb.ListCollectionsCursorStatic;Argument[0]", //
+        "mongodb.Db;mongodb.MongoClient;Member[db].ReturnValue", //
+        "mongodb.Db;mongodb/mongodb.Db;", //
+        "mongodb.Db;mongoose.mongodb.Db;", //
+        "mongodb.DbStatic;mongodb/mongodb.DbStatic;", //
+        "mongodb.DbStatic;mongodb;Member[Db]", //
+        "mongodb.DbStatic;mongoose.mongodb.DbStatic;", //
+        "mongodb.DbStatsOptions;mongodb.Db;Member[stats].Argument[0]", //
+        "mongodb.DbStatsOptions;mongodb/mongodb.DbStatsOptions;", //
+        "mongodb.DbStatsOptions;mongoose.mongodb.DbStatsOptions;", //
+        "mongodb.DeleteManyModel;mongodb.AnyBulkWriteOperation;Member[deleteMany]", //
+        "mongodb.DeleteManyModel;mongodb/mongodb.DeleteManyModel;", //
+        "mongodb.DeleteManyModel;mongoose.mongodb.DeleteManyModel;", //
+        "mongodb.DeleteOneModel;mongodb.AnyBulkWriteOperation;Member[deleteOne]", //
+        "mongodb.DeleteOneModel;mongodb/mongodb.DeleteOneModel;", //
+        "mongodb.DeleteOneModel;mongoose.mongodb.DeleteOneModel;", //
+        "mongodb.DeleteOptions;mongodb.Collection;Member[deleteMany,deleteOne,remove].Argument[1]", //
+        "mongodb.DeleteOptions;mongodb/mongodb.DeleteOptions;", //
+        "mongodb.DeleteOptions;mongoose.mongodb.DeleteOptions;", //
+        "mongodb.DistinctOptions;mongodb.Collection;Member[distinct].Argument[2]", //
+        "mongodb.DistinctOptions;mongodb/mongodb.DistinctOptions;", //
+        "mongodb.DistinctOptions;mongoose.mongodb.DistinctOptions;", //
+        "mongodb.DropCollectionOptions;mongodb.Collection;Member[drop].Argument[0]", //
+        "mongodb.DropCollectionOptions;mongodb.Db;Member[dropCollection].Argument[1]", //
+        "mongodb.DropCollectionOptions;mongodb/mongodb.DropCollectionOptions;", //
+        "mongodb.DropCollectionOptions;mongoose.mongodb.DropCollectionOptions;", //
+        "mongodb.DropDatabaseOptions;mongodb.Db;Member[dropDatabase].Argument[0]", //
+        "mongodb.DropDatabaseOptions;mongodb/mongodb.DropDatabaseOptions;", //
+        "mongodb.DropDatabaseOptions;mongoose.mongodb.DropDatabaseOptions;", //
+        "mongodb.DropIndexesOptions;mongodb.Collection;Member[dropIndex].Argument[1]", //
+        "mongodb.DropIndexesOptions;mongodb.Collection;Member[dropIndexes].Argument[0]", //
+        "mongodb.DropIndexesOptions;mongodb/mongodb.DropIndexesOptions;", //
+        "mongodb.DropIndexesOptions;mongoose.mongodb.DropIndexesOptions;", //
+        "mongodb.EstimatedDocumentCountOptions;mongodb.Collection;Member[estimatedDocumentCount].Argument[0]", //
+        "mongodb.EstimatedDocumentCountOptions;mongodb/mongodb.EstimatedDocumentCountOptions;", //
+        "mongodb.EstimatedDocumentCountOptions;mongoose.mongodb.EstimatedDocumentCountOptions;", //
+        "mongodb.EvalOptions;mongodb/mongodb.EvalOptions;", //
+        "mongodb.EvalOptions;mongoose.mongodb.EvalOptions;", //
+        "mongodb.FindCursor;mongodb.Collection;Member[find].WithArity[0,1,2].ReturnValue", //
+        "mongodb.FindCursor;mongodb.FindCursor;Member[addQueryModifier,allowDiskUse,clone,collation,comment,filter,hint,limit,map,max,maxAwaitTimeMS,maxTimeMS,min,project,returnKey,showRecordId,skip,sort].ReturnValue", //
+        "mongodb.FindCursor;mongodb.FindCursorStatic;Instance", //
+        "mongodb.FindCursor;mongodb.GridFSBucket;Member[find].ReturnValue", //
+        "mongodb.FindCursor;mongodb/mongodb.FindCursor;", //
+        "mongodb.FindCursor;mongoose.mongodb.FindCursor;", //
+        "mongodb.FindCursorStatic;mongodb/mongodb.FindCursorStatic;", //
+        "mongodb.FindCursorStatic;mongodb;Member[FindCursor]", //
+        "mongodb.FindCursorStatic;mongoose.mongodb.FindCursorStatic;", //
+        "mongodb.FindOneAndDeleteOptions;mongodb.Collection;Member[findOneAndDelete].Argument[1]", //
+        "mongodb.FindOneAndDeleteOptions;mongodb/mongodb.FindOneAndDeleteOptions;", //
+        "mongodb.FindOneAndDeleteOptions;mongoose.mongodb.FindOneAndDeleteOptions;", //
+        "mongodb.FindOneAndReplaceOptions;mongodb.Collection;Member[findOneAndReplace].Argument[2]", //
+        "mongodb.FindOneAndReplaceOptions;mongodb/mongodb.FindOneAndReplaceOptions;", //
+        "mongodb.FindOneAndReplaceOptions;mongoose.mongodb.FindOneAndReplaceOptions;", //
+        "mongodb.FindOneAndUpdateOptions;mongodb.Collection;Member[findOneAndUpdate].Argument[2]", //
+        "mongodb.FindOneAndUpdateOptions;mongodb/mongodb.FindOneAndUpdateOptions;", //
+        "mongodb.FindOneAndUpdateOptions;mongoose.mongodb.FindOneAndUpdateOptions;", //
+        "mongodb.FindOperators;mongodb.BulkOperationBase;Member[find].ReturnValue", //
+        "mongodb.FindOperators;mongodb.FindOperators;Member[arrayFilters,collation,upsert].ReturnValue", //
+        "mongodb.FindOperators;mongodb.FindOperatorsStatic;Instance", //
+        "mongodb.FindOperators;mongodb/mongodb.FindOperators;", //
+        "mongodb.FindOperators;mongoose.mongodb.FindOperators;", //
+        "mongodb.FindOperatorsStatic;mongodb/mongodb.FindOperatorsStatic;", //
+        "mongodb.FindOperatorsStatic;mongodb;Member[FindOperators]", //
+        "mongodb.FindOperatorsStatic;mongoose.mongodb.FindOperatorsStatic;", //
+        "mongodb.FindOptions;mongodb.Collection;Member[find,findOne].Argument[1]", //
+        "mongodb.FindOptions;mongodb.GridFSBucket;Member[find].Argument[1]", //
+        "mongodb.FindOptions;mongodb/mongodb.FindOptions;", //
+        "mongodb.FindOptions;mongoose.mongodb.FindOptions;", //
+        "mongodb.GridFSBucket;mongodb.GridFSBucketStatic;Instance", //
+        "mongodb.GridFSBucket;mongodb.GridFSBucketWriteStream;Member[bucket]", //
+        "mongodb.GridFSBucket;mongodb/mongodb.GridFSBucket;", //
+        "mongodb.GridFSBucket;mongoose.mongodb.GridFSBucket;", //
+        "mongodb.GridFSBucketStatic;mongodb/mongodb.GridFSBucketStatic;", //
+        "mongodb.GridFSBucketStatic;mongodb;Member[GridFSBucket]", //
+        "mongodb.GridFSBucketStatic;mongoose.mongodb.GridFSBucketStatic;", //
+        "mongodb.GridFSBucketWriteStream;mongodb.GridFSBucket;Member[openUploadStream,openUploadStreamWithId].ReturnValue", //
+        "mongodb.GridFSBucketWriteStream;mongodb.GridFSBucketWriteStream;Member[end].ReturnValue", //
+        "mongodb.GridFSBucketWriteStream;mongodb.GridFSBucketWriteStreamStatic;Instance", //
+        "mongodb.GridFSBucketWriteStream;mongodb/mongodb.GridFSBucketWriteStream;", //
+        "mongodb.GridFSBucketWriteStream;mongoose.mongodb.GridFSBucketWriteStream;", //
+        "mongodb.GridFSBucketWriteStreamStatic;mongodb/mongodb.GridFSBucketWriteStreamStatic;", //
+        "mongodb.GridFSBucketWriteStreamStatic;mongodb;Member[GridFSBucketWriteStream]", //
+        "mongodb.GridFSBucketWriteStreamStatic;mongoose.mongodb.GridFSBucketWriteStreamStatic;", //
+        "mongodb.IndexInformationOptions;mongodb.Collection;Member[indexExists].Argument[1]", //
+        "mongodb.IndexInformationOptions;mongodb.Collection;Member[indexInformation,indexes].Argument[0]", //
+        "mongodb.IndexInformationOptions;mongodb.Db;Member[indexInformation].Argument[1]", //
+        "mongodb.IndexInformationOptions;mongodb/mongodb.IndexInformationOptions;", //
+        "mongodb.IndexInformationOptions;mongoose.mongodb.IndexInformationOptions;", //
+        "mongodb.InsertOneOptions;mongodb.Collection;Member[insertOne].Argument[1]", //
+        "mongodb.InsertOneOptions;mongodb/mongodb.InsertOneOptions;", //
+        "mongodb.InsertOneOptions;mongoose.mongodb.InsertOneOptions;", //
+        "mongodb.ListCollectionsCursor;mongodb.Db;Member[listCollections].WithArity[0,1,2].ReturnValue", //
+        "mongodb.ListCollectionsCursor;mongodb.ListCollectionsCursor;Member[clone].ReturnValue", //
+        "mongodb.ListCollectionsCursor;mongodb.ListCollectionsCursorStatic;Instance", //
+        "mongodb.ListCollectionsCursor;mongodb/mongodb.ListCollectionsCursor;", //
+        "mongodb.ListCollectionsCursor;mongoose.mongodb.ListCollectionsCursor;", //
+        "mongodb.ListCollectionsCursorStatic;mongodb/mongodb.ListCollectionsCursorStatic;", //
+        "mongodb.ListCollectionsCursorStatic;mongodb;Member[ListCollectionsCursor]", //
+        "mongodb.ListCollectionsCursorStatic;mongoose.mongodb.ListCollectionsCursorStatic;", //
+        "mongodb.ListCollectionsOptions;mongodb.Db;Member[collections].Argument[0]", //
+        "mongodb.ListCollectionsOptions;mongodb.Db;Member[listCollections].WithArity[0,1,2].Argument[1]", //
+        "mongodb.ListCollectionsOptions;mongodb.ListCollectionsCursor;Member[options]", //
+        "mongodb.ListCollectionsOptions;mongodb.ListCollectionsCursorStatic;Argument[2]", //
+        "mongodb.ListCollectionsOptions;mongodb/mongodb.ListCollectionsOptions;", //
+        "mongodb.ListCollectionsOptions;mongoose.mongodb.ListCollectionsOptions;", //
+        "mongodb.ListDatabasesOptions;mongodb.Admin;Member[listDatabases].Argument[0]", //
+        "mongodb.ListDatabasesOptions;mongodb/mongodb.ListDatabasesOptions;", //
+        "mongodb.ListDatabasesOptions;mongoose.mongodb.ListDatabasesOptions;", //
+        "mongodb.ListIndexesCursor;mongodb.Collection;Member[listIndexes].ReturnValue", //
+        "mongodb.ListIndexesCursor;mongodb.ListIndexesCursor;Member[clone].ReturnValue", //
+        "mongodb.ListIndexesCursor;mongodb.ListIndexesCursorStatic;Instance", //
+        "mongodb.ListIndexesCursor;mongodb/mongodb.ListIndexesCursor;", //
+        "mongodb.ListIndexesCursor;mongoose.mongodb.ListIndexesCursor;", //
+        "mongodb.ListIndexesCursorStatic;mongodb/mongodb.ListIndexesCursorStatic;", //
+        "mongodb.ListIndexesCursorStatic;mongodb;Member[ListIndexesCursor]", //
+        "mongodb.ListIndexesCursorStatic;mongoose.mongodb.ListIndexesCursorStatic;", //
+        "mongodb.ListIndexesOptions;mongodb.Collection;Member[listIndexes].Argument[0]", //
+        "mongodb.ListIndexesOptions;mongodb.ListIndexesCursor;Member[options]", //
+        "mongodb.ListIndexesOptions;mongodb.ListIndexesCursorStatic;Argument[1]", //
+        "mongodb.ListIndexesOptions;mongodb/mongodb.ListIndexesOptions;", //
+        "mongodb.ListIndexesOptions;mongoose.mongodb.ListIndexesOptions;", //
+        "mongodb.MapReduceOptions;mongodb.Collection;Member[mapReduce].Argument[2]", //
+        "mongodb.MapReduceOptions;mongodb/mongodb.MapReduceOptions;", //
+        "mongodb.MapReduceOptions;mongoose.mongodb.MapReduceOptions;", //
+        "mongodb.MongoClient;mongodb.AutoEncrypter;Argument[0]", //
+        "mongodb.MongoClient;mongodb.AutoEncryptionOptions;Member[keyVaultClient]", //
+        "mongodb.MongoClient;mongodb.ChangeStream;Member[parent]", //
+        "mongodb.MongoClient;mongodb.DbStatic;Argument[0]", //
+        "mongodb.MongoClient;mongodb.MongoClient;Member[connect].Argument[0].TypeVar[mongodb.Callback.0]", //
+        "mongodb.MongoClient;mongodb.MongoClient;Member[connect].WithArity[0].ReturnValue.Awaited", //
+        "mongodb.MongoClient;mongodb.MongoClientEvents;Member[open].Argument[0]", //
+        "mongodb.MongoClient;mongodb.MongoClientStatic;Instance", //
+        "mongodb.MongoClient;mongodb.MongoClientStatic;Member[connect].Argument[1,2].TypeVar[mongodb.Callback.0]", //
+        "mongodb.MongoClient;mongodb.MongoClientStatic;Member[connect].WithArity[1,2].ReturnValue.Awaited", //
+        "mongodb.MongoClient;mongodb/mongodb.MongoClient;", //
+        "mongodb.MongoClient;mongoose.mongodb.MongoClient;", //
+        "mongodb.MongoClientEvents;mongodb/mongodb.MongoClientEvents;", //
+        "mongodb.MongoClientEvents;mongoose.mongodb.MongoClientEvents;", //
+        "mongodb.MongoClientOptions;mongodb.MongoClientStatic;Argument[1]", //
+        "mongodb.MongoClientOptions;mongodb.MongoClientStatic;Member[connect].Argument[1]", //
+        "mongodb.MongoClientOptions;mongodb/mongodb.MongoClientOptions;", //
+        "mongodb.MongoClientOptions;mongoose.mongodb.MongoClientOptions;", //
+        "mongodb.MongoClientStatic;mongodb/mongodb.MongoClientStatic;", //
+        "mongodb.MongoClientStatic;mongodb;Member[MongoClient]", //
+        "mongodb.MongoClientStatic;mongoose.mongodb.MongoClientStatic;", //
+        "mongodb.MongoOptions;mongodb.ClientSession;Member[clientOptions]", //
+        "mongodb.MongoOptions;mongodb.MongoClient;Member[options]", //
+        "mongodb.MongoOptions;mongodb/mongodb.MongoOptions;", //
+        "mongodb.MongoOptions;mongoose.mongodb.MongoOptions;", //
+        "mongodb.OperationOptions;mongodb.Collection;Member[isCapped,options].Argument[0]", //
+        "mongodb.OperationOptions;mongodb.CommandOperationOptions;", //
+        "mongodb.OperationOptions;mongodb/mongodb.OperationOptions;", //
+        "mongodb.OperationOptions;mongoose.mongodb.OperationOptions;", //
+        "mongodb.OrderedBulkOperation;mongodb.Collection;Member[initializeOrderedBulkOp].ReturnValue", //
+        "mongodb.OrderedBulkOperation;mongodb.OrderedBulkOperation;Member[addToOperationsList].ReturnValue", //
+        "mongodb.OrderedBulkOperation;mongodb.OrderedBulkOperationStatic;Instance", //
+        "mongodb.OrderedBulkOperation;mongodb/mongodb.OrderedBulkOperation;", //
+        "mongodb.OrderedBulkOperation;mongoose.mongodb.OrderedBulkOperation;", //
+        "mongodb.OrderedBulkOperationStatic;mongodb/mongodb.OrderedBulkOperationStatic;", //
+        "mongodb.OrderedBulkOperationStatic;mongodb;Member[OrderedBulkOperation]", //
+        "mongodb.OrderedBulkOperationStatic;mongoose.mongodb.OrderedBulkOperationStatic;", //
+        "mongodb.ProfilingLevelOptions;mongodb.Db;Member[profilingLevel].Argument[0]", //
+        "mongodb.ProfilingLevelOptions;mongodb/mongodb.ProfilingLevelOptions;", //
+        "mongodb.ProfilingLevelOptions;mongoose.mongodb.ProfilingLevelOptions;", //
+        "mongodb.ReadPreferenceFromOptions;mongodb.ReadPreferenceStatic;Member[fromOptions].Argument[0]", //
+        "mongodb.ReadPreferenceFromOptions;mongodb/mongodb.ReadPreferenceFromOptions;", //
+        "mongodb.ReadPreferenceFromOptions;mongoose.mongodb.ReadPreferenceFromOptions;", //
+        "mongodb.ReadPreferenceStatic;mongodb/mongodb.ReadPreferenceStatic;", //
+        "mongodb.ReadPreferenceStatic;mongodb;Member[ReadPreference]", //
+        "mongodb.ReadPreferenceStatic;mongoose.mongodb.ReadPreferenceStatic;", //
+        "mongodb.RemoveUserOptions;mongodb.Admin;Member[removeUser].Argument[1]", //
+        "mongodb.RemoveUserOptions;mongodb.Db;Member[removeUser].Argument[1]", //
+        "mongodb.RemoveUserOptions;mongodb/mongodb.RemoveUserOptions;", //
+        "mongodb.RemoveUserOptions;mongoose.mongodb.RemoveUserOptions;", //
+        "mongodb.RenameOptions;mongodb.Collection;Member[rename].Argument[1]", //
+        "mongodb.RenameOptions;mongodb.Db;Member[renameCollection].Argument[2]", //
+        "mongodb.RenameOptions;mongodb/mongodb.RenameOptions;", //
+        "mongodb.RenameOptions;mongoose.mongodb.RenameOptions;", //
+        "mongodb.ReplaceOptions;mongodb.Collection;Member[replaceOne].Argument[2]", //
+        "mongodb.ReplaceOptions;mongodb/mongodb.ReplaceOptions;", //
+        "mongodb.ReplaceOptions;mongoose.mongodb.ReplaceOptions;", //
+        "mongodb.RunCommandOptions;mongodb.Admin;Member[command].Argument[1]", //
+        "mongodb.RunCommandOptions;mongodb.Db;Member[command].Argument[1]", //
+        "mongodb.RunCommandOptions;mongodb/mongodb.RunCommandOptions;", //
+        "mongodb.RunCommandOptions;mongoose.mongodb.RunCommandOptions;", //
+        "mongodb.SelectServerOptions;mongodb/mongodb.SelectServerOptions;", //
+        "mongodb.SelectServerOptions;mongoose.mongodb.SelectServerOptions;", //
+        "mongodb.SetProfilingLevelOptions;mongodb.Db;Member[setProfilingLevel].Argument[1]", //
+        "mongodb.SetProfilingLevelOptions;mongodb/mongodb.SetProfilingLevelOptions;", //
+        "mongodb.SetProfilingLevelOptions;mongoose.mongodb.SetProfilingLevelOptions;", //
+        "mongodb.Transaction;mongodb.ClientSession;Member[transaction]", //
+        "mongodb.Transaction;mongodb.TransactionStatic;Instance", //
+        "mongodb.Transaction;mongodb/mongodb.Transaction;", //
+        "mongodb.Transaction;mongoose.mongodb.Transaction;", //
+        "mongodb.TransactionOptions;mongodb.ClientSession;Member[defaultTransactionOptions]", //
+        "mongodb.TransactionOptions;mongodb.ClientSession;Member[startTransaction].Argument[0]", //
+        "mongodb.TransactionOptions;mongodb.ClientSession;Member[withTransaction].Argument[1]", //
+        "mongodb.TransactionOptions;mongodb.ClientSessionOptions;Member[defaultTransactionOptions]", //
+        "mongodb.TransactionOptions;mongodb.Transaction;Member[options]", //
+        "mongodb.TransactionOptions;mongodb/mongodb.TransactionOptions;", //
+        "mongodb.TransactionOptions;mongoose.mongodb.TransactionOptions;", //
+        "mongodb.TransactionStatic;mongodb/mongodb.TransactionStatic;", //
+        "mongodb.TransactionStatic;mongodb;Member[Transaction]", //
+        "mongodb.TransactionStatic;mongoose.mongodb.TransactionStatic;", //
+        "mongodb.TypedEventEmitter;mongodb.AbstractCursor;", //
+        "mongodb.TypedEventEmitter;mongodb.ChangeStream;", //
+        "mongodb.TypedEventEmitter;mongodb.ClientSession;", //
+        "mongodb.TypedEventEmitter;mongodb.GridFSBucket;", //
+        "mongodb.TypedEventEmitter;mongodb.MongoClient;", //
+        "mongodb.UnorderedBulkOperation;mongodb.Collection;Member[initializeUnorderedBulkOp].ReturnValue", //
+        "mongodb.UnorderedBulkOperation;mongodb.UnorderedBulkOperation;Member[addToOperationsList].ReturnValue", //
+        "mongodb.UnorderedBulkOperation;mongodb.UnorderedBulkOperationStatic;Instance", //
+        "mongodb.UnorderedBulkOperation;mongodb/mongodb.UnorderedBulkOperation;", //
+        "mongodb.UnorderedBulkOperation;mongoose.mongodb.UnorderedBulkOperation;", //
+        "mongodb.UnorderedBulkOperationStatic;mongodb/mongodb.UnorderedBulkOperationStatic;", //
+        "mongodb.UnorderedBulkOperationStatic;mongodb;Member[UnorderedBulkOperation]", //
+        "mongodb.UnorderedBulkOperationStatic;mongoose.mongodb.UnorderedBulkOperationStatic;", //
+        "mongodb.UpdateManyModel;mongodb.AnyBulkWriteOperation;Member[updateMany]", //
+        "mongodb.UpdateManyModel;mongodb/mongodb.UpdateManyModel;", //
+        "mongodb.UpdateManyModel;mongoose.mongodb.UpdateManyModel;", //
+        "mongodb.UpdateOneModel;mongodb.AnyBulkWriteOperation;Member[updateOne]", //
+        "mongodb.UpdateOneModel;mongodb/mongodb.UpdateOneModel;", //
+        "mongodb.UpdateOneModel;mongoose.mongodb.UpdateOneModel;", //
+        "mongodb.UpdateOptions;mongodb.Collection;Member[update,updateMany,updateOne].Argument[2]", //
+        "mongodb.UpdateOptions;mongodb/mongodb.UpdateOptions;", //
+        "mongodb.UpdateOptions;mongoose.mongodb.UpdateOptions;", //
+        "mongodb.ValidateCollectionOptions;mongodb.Admin;Member[validateCollection].Argument[1]", //
+        "mongodb.ValidateCollectionOptions;mongodb/mongodb.ValidateCollectionOptions;", //
+        "mongodb.ValidateCollectionOptions;mongoose.mongodb.ValidateCollectionOptions;", //
+        "mongodb.WithSessionCallback;mongodb.MongoClient;Member[withSession].Argument[1]", //
+        "mongodb.WithSessionCallback;mongodb.MongoClient;Member[withSession].WithArity[1].Argument[0]", //
+        "mongodb.WithSessionCallback;mongodb/mongodb.WithSessionCallback;", //
+        "mongodb.WithSessionCallback;mongoose.mongodb.WithSessionCallback;", //
+        "mongodb.WithTransactionCallback;mongodb.ClientSession;Member[withTransaction].Argument[0]", //
+        "mongodb.WithTransactionCallback;mongodb/mongodb.WithTransactionCallback;", //
+        "mongodb.WithTransactionCallback;mongoose.mongodb.WithTransactionCallback;", //
+        "mongodb;mongoose;Member[mongodb]", //
+        "mongoose.AcceptsDiscriminator;mongoose.Model;", //
+        "mongoose.AcceptsDiscriminator;mongoose.Schema.Types.Array;", //
+        "mongoose.AcceptsDiscriminator;mongoose.Schema.Types.DocumentArray;", //
+        "mongoose.AcceptsDiscriminator;mongoose.Schema.Types.Subdocument;", //
+        "mongoose.Aggregate;mongoose.Aggregate;Member[addCursorFlag,addFields,allowDiskUse,append,collation,count,facet,graphLookup,group,hint,limit,lookup,match,model,near,option,project,read,readConcern,redact,replaceRoot,sample,search,session,skip,sort,sortByCount,unionWith,unwind].ReturnValue", //
+        "mongoose.Aggregate;mongoose.AggregateStatic;Instance", //
+        "mongoose.Aggregate;mongoose.Model;Member[aggregate].ReturnValue", //
+        "mongoose.AggregateStatic;mongoose;Member[Aggregate]", //
+        "mongoose.Collection;mongoose.Collection;Instance", //
+        "mongoose.Collection;mongoose.Connection;Member[collection].ReturnValue", //
+        "mongoose.Collection;mongoose.Connection;Member[collections].AnyMember", //
+        "mongoose.Collection;mongoose.Document;Member[collection]", //
+        "mongoose.Collection;mongoose.Model;Member[collection]", //
+        "mongoose.Collection;mongoose;Member[Collection]", //
+        "mongoose.CollectionBase;mongoose.Collection;", //
+        "mongoose.CompileModelOptions;mongoose.Connection;Member[model].Argument[3]", //
+        "mongoose.CompileModelOptions;mongoose;Member[model].Argument[3]", //
+        "mongoose.ConnectOptions;mongoose.Connection;Member[openUri].WithArity[1,2,3].Argument[1]", //
+        "mongoose.ConnectOptions;mongoose;Member[connect,createConnection].WithArity[1,2,3].Argument[1]", //
+        "mongoose.Connection;mongoose.Collection;Argument[1]", //
+        "mongoose.Connection;mongoose.CollectionBase;Member[conn]", //
+        "mongoose.Connection;mongoose.CompileModelOptions;Member[connection]", //
+        "mongoose.Connection;mongoose.Connection;Member[asPromise].ReturnValue.Awaited", //
+        "mongoose.Connection;mongoose.Connection;Member[deleteModel,plugin,setClient,useDb].ReturnValue", //
+        "mongoose.Connection;mongoose.Connection;Member[openUri].Argument[2].TypeVar[mongoose.Callback.0]", //
+        "mongoose.Connection;mongoose.Connection;Member[openUri].WithArity[1,2].ReturnValue.Awaited", //
+        "mongoose.Connection;mongoose.Connection;Member[openUri].WithArity[2,3].ReturnValue", //
+        "mongoose.Connection;mongoose.Connection;Member[openUri].WithArity[2].Argument[1].TypeVar[mongoose.Callback.0]", //
+        "mongoose.Connection;mongoose.ConnectionStatic;Instance", //
+        "mongoose.Connection;mongoose.Document;Member[db]", //
+        "mongoose.Connection;mongoose.Model;Member[db]", //
+        "mongoose.Connection;mongoose;Member[connection]", //
+        "mongoose.Connection;mongoose;Member[connections].ArrayElement", //
+        "mongoose.Connection;mongoose;Member[createConnection].Argument[2].TypeVar[mongoose.Callback.0]", //
+        "mongoose.Connection;mongoose;Member[createConnection].WithArity[0,1,2].ReturnValue", //
+        "mongoose.Connection;mongoose;Member[createConnection].WithArity[2].Argument[1].TypeVar[mongoose.Callback.0]", //
+        "mongoose.ConnectionStatic;mongoose;Member[Connection]", //
+        "mongoose.Cursor;mongoose.Query;Member[cursor].ReturnValue", //
+        "mongoose.DiscriminatorModel;mongoose.DiscriminatorSchema;TypeVar[mongoose.Schema.1]", //
+        "mongoose.Document;mongoose.Document;Member[$getAllSubdocs,$getPopulatedDocs].ReturnValue.ArrayElement", //
+        "mongoose.Document;mongoose.Document;Member[$inc,$parent,$set,depopulate,increment,init,overwrite,set].ReturnValue", //
+        "mongoose.Document;mongoose.Document;Member[delete,deleteOne].WithArity[0,1].ReturnValue.TypeVar[mongoose.QueryWithHelpers.1]", //
+        "mongoose.Document;mongoose.Document;Member[equals].Argument[0]", //
+        "mongoose.Document;mongoose.Document;Member[init].Argument[2].TypeVar[mongoose.Callback.0]", //
+        "mongoose.Document;mongoose.Document;Member[remove,save].WithArity[0,1].ReturnValue.Awaited", //
+        "mongoose.Document;mongoose.Document;Member[replaceOne,update,updateOne].ReturnValue.TypeVar[mongoose.Query.1]", //
+        "mongoose.Document;mongoose.Document;Member[save].Argument[1].TypeVar[mongoose.Callback.0]", //
+        "mongoose.Document;mongoose.Document;Member[save].WithArity[1].Argument[0].TypeVar[mongoose.Callback.0]", //
+        "mongoose.Document;mongoose.DocumentStatic;Instance", //
+        "mongoose.Document;mongoose.Error.VersionErrorStatic;Argument[0]", //
+        "mongoose.Document;mongoose.HydratedDocument;", //
+        "mongoose.Document;mongoose.HydratedDocument;TypeVar[mongoose.Require_id.0]", //
+        "mongoose.Document;mongoose.Model;Member[bulkSave].Argument[0].ArrayElement", //
+        "mongoose.Document;mongoose.TVirtualPathFN;Argument[2]", //
+        "mongoose.Document;mongoose.Types.Subdocument;", //
+        "mongoose.Document;mongoose.Types.Subdocument;Member[$parent,ownerDocument,parent].ReturnValue", //
+        "mongoose.Document;mongoose.VirtualType;Member[applyGetters,applySetters].Argument[1]", //
+        "mongoose.DocumentStatic;mongoose;Member[Document]", //
+        "mongoose.Error.VersionErrorStatic;mongoose;Member[Error].Member[VersionError]", //
+        "mongoose.HydratedDocument;mongoose.Model;Instance", //
+        "mongoose.HydratedDocument;mongoose.Model;Member[$where,count,countDocuments,deleteMany,deleteOne,distinct,estimatedDocumentCount,find,geoSearch,remove,replaceOne,update,updateMany,updateOne,where].ReturnValue.TypeVar[mongoose.QueryWithHelpers.1]", //
+        "mongoose.HydratedDocument;mongoose.Model;Member[$where,find,geoSearch,where].ReturnValue.TypeVar[mongoose.QueryWithHelpers.0].ArrayElement", //
+        "mongoose.HydratedDocument;mongoose.Model;Member[create,insertMany].WithArity[2].Argument[1].TypeVar[mongoose.Callback.0].ArrayElement", //
+        "mongoose.HydratedDocument;mongoose.Model;Member[create].WithArity[0..,1,2].ReturnValue.Awaited.ArrayElement", //
+        "mongoose.HydratedDocument;mongoose.Model;Member[create].WithArity[1].ReturnValue.Awaited", //
+        "mongoose.HydratedDocument;mongoose.Model;Member[create].WithArity[2].Argument[1].TypeVar[mongoose.Callback.0]", //
+        "mongoose.HydratedDocument;mongoose.Model;Member[exists].WithArity[1,2].ReturnValue.TypeVar[mongoose.QueryWithHelpers.1]", //
+        "mongoose.HydratedDocument;mongoose.Model;Member[find,insertMany].WithArity[3].Argument[2].TypeVar[mongoose.Callback.0].ArrayElement", //
+        "mongoose.HydratedDocument;mongoose.Model;Member[findById,findByIdAndDelete,findByIdAndRemove,findOne,findOneAndDelete,findOneAndRemove].ReturnValue.TypeVar[mongoose.QueryWithHelpers.0,mongoose.QueryWithHelpers.1]", //
+        "mongoose.HydratedDocument;mongoose.Model;Member[findById,findOne].Argument[3].TypeVar[mongoose.Callback.0]", //
+        "mongoose.HydratedDocument;mongoose.Model;Member[findByIdAndDelete,findByIdAndRemove,findOneAndDelete,findOneAndRemove].Argument[2].Argument[1]", //
+        "mongoose.HydratedDocument;mongoose.Model;Member[findByIdAndUpdate,findOneAndReplace,findOneAndUpdate].WithArity[0,1,2,3,4].ReturnValue.TypeVar[mongoose.QueryWithHelpers.0,mongoose.QueryWithHelpers.1]", //
+        "mongoose.HydratedDocument;mongoose.Model;Member[findByIdAndUpdate,findOneAndReplace,findOneAndUpdate].WithArity[3,4].ReturnValue.TypeVar[mongoose.QueryWithHelpers.0].TypeVar[mongoose.ModifyResult.0]", //
+        "mongoose.HydratedDocument;mongoose.Model;Member[findByIdAndUpdate].WithArity[0,1,2,4].Argument[3].Argument[1]", //
+        "mongoose.HydratedDocument;mongoose.Model;Member[findByIdAndUpdate].WithArity[3].Argument[2,3].Argument[1]", //
+        "mongoose.HydratedDocument;mongoose.Model;Member[findById].WithArity[1,2,3].Argument[2].TypeVar[mongoose.Callback.0]", //
+        "mongoose.HydratedDocument;mongoose.Model;Member[findOneAndReplace].WithArity[0,1,2,3,4].Argument[3].Argument[1]", //
+        "mongoose.HydratedDocument;mongoose.Model;Member[findOneAndUpdate].WithArity[3,4].Argument[3].Argument[1]", //
+        "mongoose.HydratedDocument;mongoose.Model;Member[findOne].WithArity[0,1,2].Argument[1,2].TypeVar[mongoose.Callback.0]", //
+        "mongoose.HydratedDocument;mongoose.Model;Member[findOne].WithArity[3].Argument[2].TypeVar[mongoose.Callback.0]", //
+        "mongoose.HydratedDocument;mongoose.Model;Member[find].Argument[3].TypeVar[mongoose.Callback.0].ArrayElement", //
+        "mongoose.HydratedDocument;mongoose.Model;Member[find].WithArity[0].Argument[0].TypeVar[mongoose.Callback.0].ArrayElement", //
+        "mongoose.HydratedDocument;mongoose.Model;Member[find].WithArity[1].Argument[0,1,2].TypeVar[mongoose.Callback.0].ArrayElement", //
+        "mongoose.HydratedDocument;mongoose.Model;Member[find].WithArity[2].Argument[1,2].TypeVar[mongoose.Callback.0].ArrayElement", //
+        "mongoose.HydratedDocument;mongoose.Model;Member[geoSearch].Argument[2].TypeVar[mongoose.Callback.0].ArrayElement", //
+        "mongoose.HydratedDocument;mongoose.Model;Member[hydrate].ReturnValue", //
+        "mongoose.HydratedDocument;mongoose.Model;Member[init].ReturnValue.Awaited", //
+        "mongoose.HydratedDocument;mongoose.Model;Member[insertMany].WithArity[1,2].ReturnValue.Awaited.ArrayElement", //
+        "mongoose.HydratedDocument;mongoose.Model;Member[populate].WithArity[2,3].Argument[2].TypeVar[mongoose.Callback.0]", //
+        "mongoose.HydratedDocument;mongoose.Model;Member[populate].WithArity[2,3].Argument[2].TypeVar[mongoose.Callback.0].ArrayElement", //
+        "mongoose.HydratedDocument;mongoose.Model;Member[populate].WithArity[2,3].ReturnValue.Awaited", //
+        "mongoose.HydratedDocument;mongoose.Model;Member[populate].WithArity[2,3].ReturnValue.Awaited.ArrayElement", //
+        "mongoose.HydratedDocument;mongoose.TVirtualPathFN;Argument[1].TypeVar[mongoose.VirtualType.0]", //
+        "mongoose.HydratedDocument;mongoose.VirtualPathFunctions;Member[options].TypeVar[mongoose.VirtualTypeOptions.0]", //
+        "mongoose.InsertManyOptions;mongoose.Model;Member[insertMany].WithArity[2,3].Argument[1]", //
+        "mongoose.Model;mongoose.AcceptsDiscriminator;Member[discriminator].WithArity[2,3].ReturnValue", //
+        "mongoose.Model;mongoose.Aggregate;Member[model].Argument[0]", //
+        "mongoose.Model;mongoose.Connection;Member[model].WithArity[1,2,3,4].ReturnValue", //
+        "mongoose.Model;mongoose.Connection;Member[models].AnyMember", //
+        "mongoose.Model;mongoose.DiscriminatorModel;", //
+        "mongoose.Model;mongoose.Document;Member[$model].ReturnValue", //
+        "mongoose.Model;mongoose.Document;Member[populate].Argument[2]", //
+        "mongoose.Model;mongoose.Model;Member[discriminators].AnyMember", //
+        "mongoose.Model;mongoose.Models;AnyMember", //
+        "mongoose.Model;mongoose.PopulateOptions;Member[model]", //
+        "mongoose.Model;mongoose.Query;Member[cast].Argument[0]", //
+        "mongoose.Model;mongoose.Query;Member[populate].Argument[2]", //
+        "mongoose.Model;mongoose.Schema.Types.Array;Member[discriminator].WithArity[2,3].ReturnValue", //
+        "mongoose.Model;mongoose.Schema.Types.DocumentArray;Member[discriminator].WithArity[2,3].ReturnValue", //
+        "mongoose.Model;mongoose.Schema.Types.Subdocument;Member[discriminator].WithArity[2,3].ReturnValue", //
+        "mongoose.Model;mongoose.SchemaStatic;Instance.TypeVar[mongoose.Schema.1]", //
+        "mongoose.Model;mongoose;Member[Model]", //
+        "mongoose.Model;mongoose;Member[model].ReturnValue", //
+        "mongoose.Models;mongoose;Member[models]", //
+        "mongoose.PopulateOption;mongoose.InsertManyOptions;", //
+        "mongoose.PopulateOption;mongoose.QueryOptions;", //
+        "mongoose.PopulateOptions;mongoose.Document;Member[populate].Argument[4]", //
+        "mongoose.PopulateOptions;mongoose.Document;Member[populate].WithArity[1,2].Argument[0]", //
+        "mongoose.PopulateOptions;mongoose.Document;Member[populate].WithArity[1,2].Argument[0].ArrayElement", //
+        "mongoose.PopulateOptions;mongoose.Model;Member[populate].Argument[1]", //
+        "mongoose.PopulateOptions;mongoose.Model;Member[populate].Argument[1].ArrayElement", //
+        "mongoose.PopulateOptions;mongoose.PopulateOption;Member[populate]", //
+        "mongoose.PopulateOptions;mongoose.PopulateOption;Member[populate].ArrayElement", //
+        "mongoose.PopulateOptions;mongoose.PopulateOptions;Member[populate]", //
+        "mongoose.PopulateOptions;mongoose.PopulateOptions;Member[populate].ArrayElement", //
+        "mongoose.PopulateOptions;mongoose.Query;Member[populate].WithArity[1].Argument[0]", //
+        "mongoose.PopulateOptions;mongoose.Query;Member[populate].WithArity[1].Argument[0].ArrayElement", //
+        "mongoose.Query;mongoose.Document;Member[replaceOne,update,updateOne].ReturnValue", //
+        "mongoose.Query;mongoose.HydratedDocument;TypeVar[mongoose.Require_id.0]", //
+        "mongoose.Query;mongoose.Query;Member[all,allowDiskUse,and,batchSize,box,circle,clone,collation,comment,elemMatch,equals,exists,explain,geometry,gt,gte,hint,in,intersects,j,limit,lt,lte,maxDistance,maxScan,maxTimeMS,merge,mod,ne,near,nin,nor,or,polygon,read,readConcern,regex,remove,select,session,set,setOptions,size,skip,slice,snapshot,sort,tailable,w,where,within,wtimeout].ReturnValue", //
+        "mongoose.Query;mongoose.Query;Member[error].WithArity[1].ReturnValue", //
+        "mongoose.Query;mongoose.Query;Member[merge].Argument[0]", //
+        "mongoose.Query;mongoose.QueryStatic;Instance", //
+        "mongoose.Query;mongoose.QueryWithHelpers;", //
+        "mongoose.QueryOptions;mongoose.Document;Member[delete,deleteOne,remove].WithArity[0,1,2].Argument[0]", //
+        "mongoose.QueryOptions;mongoose.Document;Member[replaceOne,update,updateOne].Argument[1]", //
+        "mongoose.QueryOptions;mongoose.Model;Member[countDocuments,findByIdAndDelete,findByIdAndRemove,findOneAndDelete,findOneAndRemove].Argument[1]", //
+        "mongoose.QueryOptions;mongoose.Model;Member[deleteMany,deleteOne].WithArity[0,1,2,3].Argument[1]", //
+        "mongoose.QueryOptions;mongoose.Model;Member[estimatedDocumentCount].Argument[0]", //
+        "mongoose.QueryOptions;mongoose.Model;Member[find,findById].WithArity[1,2,3,4].Argument[2]", //
+        "mongoose.QueryOptions;mongoose.Model;Member[findByIdAndUpdate,findOne,findOneAndReplace,findOneAndUpdate].WithArity[0,1,2,3,4].Argument[2]", //
+        "mongoose.QueryOptions;mongoose.Model;Member[replaceOne,update,updateMany,updateOne].Argument[2]", //
+        "mongoose.QueryOptions;mongoose.PopulateOptions;Member[options]", //
+        "mongoose.QueryOptions;mongoose.Query;Member[countDocuments,findByIdAndDelete,findOneAndDelete,findOneAndRemove].Argument[1]", //
+        "mongoose.QueryOptions;mongoose.Query;Member[cursor,estimatedDocumentCount,setOptions].Argument[0]", //
+        "mongoose.QueryOptions;mongoose.Query;Member[cursor].ReturnValue.TypeVar[mongoose.Cursor.1]", //
+        "mongoose.QueryOptions;mongoose.Query;Member[deleteMany,deleteOne].WithArity[0,1,2,3].Argument[1]", //
+        "mongoose.QueryOptions;mongoose.Query;Member[findByIdAndUpdate,findOne,findOneAndUpdate].WithArity[0,1,2,3,4].Argument[2]", //
+        "mongoose.QueryOptions;mongoose.Query;Member[find].WithArity[1,2,3,4].Argument[2]", //
+        "mongoose.QueryOptions;mongoose.Query;Member[getOptions].ReturnValue", //
+        "mongoose.QueryOptions;mongoose.Query;Member[replaceOne,update,updateMany,updateOne].Argument[2]", //
+        "mongoose.QueryOptions;mongoose.VirtualTypeOptions;Member[options]", //
+        "mongoose.QueryStatic;mongoose;Member[Query]", //
+        "mongoose.QueryWithHelpers;mongoose.Document;Member[delete,deleteOne].WithArity[0,1].ReturnValue", //
+        "mongoose.QueryWithHelpers;mongoose.Model;Member[$where,count,countDocuments,deleteMany,deleteOne,distinct,estimatedDocumentCount,find,findById,findByIdAndDelete,findByIdAndRemove,findOne,findOneAndDelete,findOneAndRemove,geoSearch,remove,replaceOne,update,updateMany,updateOne,where].ReturnValue", //
+        "mongoose.QueryWithHelpers;mongoose.Model;Member[exists].WithArity[1,2].ReturnValue", //
+        "mongoose.QueryWithHelpers;mongoose.Model;Member[findByIdAndUpdate,findOneAndReplace,findOneAndUpdate].WithArity[0,1,2,3,4].ReturnValue", //
+        "mongoose.QueryWithHelpers;mongoose.Query;Member[$where,count,countDocuments,deleteMany,deleteOne,distinct,estimatedDocumentCount,find,findByIdAndDelete,findOne,findOneAndDelete,findOneAndRemove,lean,orFail,populate,replaceOne,transform,update,updateMany,updateOne].ReturnValue", //
+        "mongoose.QueryWithHelpers;mongoose.Query;Member[findByIdAndUpdate,findOneAndUpdate].WithArity[0,1,2,3,4].ReturnValue", //
+        "mongoose.QueryWithHelpers;mongoose.Query;Member[toConstructor].ReturnValue.Instance", //
+        "mongoose.Schema.Types.Array;mongoose.Schema.Types.Array;Member[enum].ReturnValue", //
+        "mongoose.Schema.Types.Array;mongoose.Schema.Types.ArrayStatic;Instance", //
+        "mongoose.Schema.Types.ArrayStatic;mongoose;Member[Schema].Member[Types].Member[Array]", //
+        "mongoose.Schema.Types.DocumentArray;mongoose.Schema.Types.DocumentArrayStatic;Instance", //
+        "mongoose.Schema.Types.DocumentArrayStatic;mongoose;Member[Schema].Member[Types].Member[DocumentArray]", //
+        "mongoose.Schema.Types.Subdocument;mongoose.Schema.Types.SubdocumentStatic;Instance", //
+        "mongoose.Schema.Types.SubdocumentStatic;mongoose.Schema.Types.DocumentArray;Member[caster]", //
+        "mongoose.Schema.Types.SubdocumentStatic;mongoose;Member[Schema].Member[Types].Member[Subdocument]", //
+        "mongoose.SchemaStatic;mongoose;Member[Schema]", //
+        "mongoose.SessionOperation;mongoose.Aggregate;", //
+        "mongoose.SessionOperation;mongoose.Query;", //
+        "mongoose.TVirtualPathFN;mongoose.VirtualPathFunctions;Member[get,set]", //
+        "mongoose.Types.Array;mongoose.Types.DocumentArray;", //
+        "mongoose.Types.ArraySubdocument;mongoose.Types.ArraySubdocumentStatic;Instance", //
+        "mongoose.Types.ArraySubdocumentStatic;mongoose;Member[Types].Member[ArraySubdocument]", //
+        "mongoose.Types.DocumentArray;mongoose.Types.ArraySubdocument;Member[parentArray].ReturnValue", //
+        "mongoose.Types.DocumentArray;mongoose.Types.DocumentArrayStatic;Instance", //
+        "mongoose.Types.DocumentArray;mongoose/inferschematype.ResolvePathType;TypeVar[mongoose.IfEquals.3]", //
+        "mongoose.Types.DocumentArrayStatic;mongoose;Member[Types].Member[DocumentArray]", //
+        "mongoose.Types.ObjectId;mongoose/inferschematype.ResolvePathType;", //
+        "mongoose.Types.Subdocument;mongoose.Types.ArraySubdocument;", //
+        "mongoose.Types.Subdocument;mongoose.Types.DocumentArray;Member[create,id].ReturnValue", //
+        "mongoose.Types.Subdocument;mongoose.Types.DocumentArray;TypeVar[mongoose.Types.Array.0]", //
+        "mongoose.Types.Subdocument;mongoose.Types.SubdocumentStatic;Instance", //
+        "mongoose.Types.SubdocumentStatic;mongoose;Member[Types].Member[Subdocument]", //
+        "mongoose.VirtualType;mongoose.TVirtualPathFN;Argument[1]", //
+        "mongoose.VirtualType;mongoose.VirtualType;Member[get,set].Argument[0].Argument[1]", //
+        "mongoose.VirtualType;mongoose.VirtualType;Member[get,set].ReturnValue", //
+        "mongoose.VirtualType;mongoose.VirtualTypeStatic;Instance", //
+        "mongoose.VirtualTypeOptions;mongoose.VirtualPathFunctions;Member[options]", //
+        "mongoose.VirtualTypeStatic;mongoose;Member[VirtualType]", //
+        "mongoose/inferschematype.ResolvePathType;mongoose/inferschematype.ObtainDocumentPathType;", //
+        "mongoose/inferschematype.ResolvePathType;mongoose/inferschematype.ResolvePathType;TypeVar[mongoose.IfEquals.3].ArrayElement", //
+        "mongoose/inferschematype.ResolvePathType;mongoose/inferschematype.ResolvePathType;TypeVar[mongoose.IfEquals.3].TypeVar[mongoose.Types.DocumentArray.0]", //
+        "mongoose;mongoose;Member[mongoose]", //
       ]
   }
 }
@@ -659,38 +659,38 @@ private class Summaries extends ModelInput::SummaryModelCsv {
   override predicate row(string row) {
     row =
       [
-        "mongodb;AbstractCursor;;;Member[addCursorFlag,batchSize,maxTimeMS,withReadConcern,withReadPreference].ReturnValue;type", //
-        "mongodb;BulkOperationBase;;;Member[addToOperationsList,raw].ReturnValue;type", //
-        "mongodb;FindCursor;;;Member[addQueryModifier,allowDiskUse,collation,comment,filter,hint,limit,max,maxAwaitTimeMS,maxTimeMS,min,returnKey,showRecordId,skip,sort].ReturnValue;type", //
-        "mongodb;FindOperators;;;Member[arrayFilters,collation,upsert].ReturnValue;type", //
-        "mongodb;GridFSBucketWriteStream;;;Member[end].ReturnValue;type", //
-        "mongodb;MongoClient;;;Member[connect].Argument[0].TypeVar[mongodb.Callback.0];type", //
-        "mongodb;MongoClient;;;Member[connect].WithArity[0].ReturnValue.Awaited;type", //
-        "mongodb;OrderedBulkOperation;;;Member[addToOperationsList].ReturnValue;type", //
-        "mongodb;TypedEventEmitter;;;Member[addListener,off,on,once,prependListener,prependOnceListener,removeAllListeners,removeListener,setMaxListeners].ReturnValue;type", //
-        "mongodb;UnorderedBulkOperation;;;Member[addToOperationsList].ReturnValue;type", //
-        "mongoose;Aggregate;;;Member[addCursorFlag,addFields,allowDiskUse,append,collation,count,facet,graphLookup,group,hint,limit,lookup,match,model,near,option,project,read,readConcern,redact,replaceRoot,sample,search,session,skip,sort,sortByCount,unionWith,unwind].ReturnValue;type", //
-        "mongoose;Connection;;;Member[asPromise].ReturnValue.Awaited;type", //
-        "mongoose;Connection;;;Member[deleteModel,setClient].ReturnValue;type", //
-        "mongoose;Cursor;;;Member[addCursorFlag].ReturnValue;type", //
-        "mongoose;Document;;;Member[$inc,$set,depopulate,increment,init,overwrite,set].ReturnValue;type", //
-        "mongoose;Document;;;Member[delete,deleteOne].WithArity[0,1].ReturnValue.TypeVar[mongoose.QueryWithHelpers.1];type", //
-        "mongoose;Document;;;Member[getChanges].ReturnValue.TypeVar[mongoose.UpdateQuery.0];type", //
-        "mongoose;Document;;;Member[init].Argument[2].TypeVar[mongoose.Callback.0];type", //
-        "mongoose;Document;;;Member[populate].Argument[1,5].TypeVar[mongoose.Callback.0].TypeVar[mongoose.MergeType.0];type", //
-        "mongoose;Document;;;Member[populate].WithArity[1,2,3,4,5].ReturnValue.Awaited.TypeVar[mongoose.MergeType.0];type", //
-        "mongoose;Document;;;Member[remove,save].WithArity[0,1].ReturnValue.Awaited;type", //
-        "mongoose;Document;;;Member[replaceOne,update,updateOne].ReturnValue.TypeVar[mongoose.Query.1];type", //
-        "mongoose;Document;;;Member[save].Argument[1].TypeVar[mongoose.Callback.0];type", //
-        "mongoose;Document;;;Member[save].WithArity[1].Argument[0].TypeVar[mongoose.Callback.0];type", //
-        "mongoose;Document;;;Member[update,updateOne].Argument[0].TypeVar[mongoose.UpdateQuery.0];type", //
-        "mongoose;Query;;;Member[all,allowDiskUse,and,batchSize,box,circle,clone,collation,comment,elemMatch,equals,exists,explain,geometry,gt,gte,hint,in,intersects,j,limit,lt,lte,maxDistance,maxScan,maxTimeMS,merge,mod,ne,near,nin,nor,or,polygon,read,readConcern,regex,select,session,set,setOptions,size,skip,slice,snapshot,sort,tailable,w,where,within,wtimeout].ReturnValue;type", //
-        "mongoose;Query;;;Member[error].WithArity[1].ReturnValue;type", //
-        "mongoose;Schema.Types.Array;;;Member[enum].ReturnValue;type", //
-        "mongoose;SessionOperation;;;Member[session].ReturnValue;type", //
-        "mongoose;Types.Array;;;Member[pull,remove,set].ReturnValue;type", //
-        "mongoose;Types.ObjectId;;;Member[_id];type", //
-        "mongoose;VirtualType;;;Member[get,set].ReturnValue;type", //
+        "mongodb.AbstractCursor;;;Member[addCursorFlag,batchSize,maxTimeMS,withReadConcern,withReadPreference].ReturnValue;type", //
+        "mongodb.BulkOperationBase;;;Member[addToOperationsList,raw].ReturnValue;type", //
+        "mongodb.FindCursor;;;Member[addQueryModifier,allowDiskUse,collation,comment,filter,hint,limit,max,maxAwaitTimeMS,maxTimeMS,min,returnKey,showRecordId,skip,sort].ReturnValue;type", //
+        "mongodb.FindOperators;;;Member[arrayFilters,collation,upsert].ReturnValue;type", //
+        "mongodb.GridFSBucketWriteStream;;;Member[end].ReturnValue;type", //
+        "mongodb.MongoClient;;;Member[connect].Argument[0].TypeVar[mongodb.Callback.0];type", //
+        "mongodb.MongoClient;;;Member[connect].WithArity[0].ReturnValue.Awaited;type", //
+        "mongodb.OrderedBulkOperation;;;Member[addToOperationsList].ReturnValue;type", //
+        "mongodb.TypedEventEmitter;;;Member[addListener,off,on,once,prependListener,prependOnceListener,removeAllListeners,removeListener,setMaxListeners].ReturnValue;type", //
+        "mongodb.UnorderedBulkOperation;;;Member[addToOperationsList].ReturnValue;type", //
+        "mongoose.Aggregate;;;Member[addCursorFlag,addFields,allowDiskUse,append,collation,count,facet,graphLookup,group,hint,limit,lookup,match,model,near,option,project,read,readConcern,redact,replaceRoot,sample,search,session,skip,sort,sortByCount,unionWith,unwind].ReturnValue;type", //
+        "mongoose.Connection;;;Member[asPromise].ReturnValue.Awaited;type", //
+        "mongoose.Connection;;;Member[deleteModel,setClient].ReturnValue;type", //
+        "mongoose.Cursor;;;Member[addCursorFlag].ReturnValue;type", //
+        "mongoose.Document;;;Member[$inc,$set,depopulate,increment,init,overwrite,set].ReturnValue;type", //
+        "mongoose.Document;;;Member[delete,deleteOne].WithArity[0,1].ReturnValue.TypeVar[mongoose.QueryWithHelpers.1];type", //
+        "mongoose.Document;;;Member[getChanges].ReturnValue.TypeVar[mongoose.UpdateQuery.0];type", //
+        "mongoose.Document;;;Member[init].Argument[2].TypeVar[mongoose.Callback.0];type", //
+        "mongoose.Document;;;Member[populate].Argument[1,5].TypeVar[mongoose.Callback.0].TypeVar[mongoose.MergeType.0];type", //
+        "mongoose.Document;;;Member[populate].WithArity[1,2,3,4,5].ReturnValue.Awaited.TypeVar[mongoose.MergeType.0];type", //
+        "mongoose.Document;;;Member[remove,save].WithArity[0,1].ReturnValue.Awaited;type", //
+        "mongoose.Document;;;Member[replaceOne,update,updateOne].ReturnValue.TypeVar[mongoose.Query.1];type", //
+        "mongoose.Document;;;Member[save].Argument[1].TypeVar[mongoose.Callback.0];type", //
+        "mongoose.Document;;;Member[save].WithArity[1].Argument[0].TypeVar[mongoose.Callback.0];type", //
+        "mongoose.Document;;;Member[update,updateOne].Argument[0].TypeVar[mongoose.UpdateQuery.0];type", //
+        "mongoose.Query;;;Member[all,allowDiskUse,and,batchSize,box,circle,clone,collation,comment,elemMatch,equals,exists,explain,geometry,gt,gte,hint,in,intersects,j,limit,lt,lte,maxDistance,maxScan,maxTimeMS,merge,mod,ne,near,nin,nor,or,polygon,read,readConcern,regex,select,session,set,setOptions,size,skip,slice,snapshot,sort,tailable,w,where,within,wtimeout].ReturnValue;type", //
+        "mongoose.Query;;;Member[error].WithArity[1].ReturnValue;type", //
+        "mongoose.Schema.Types.Array;;;Member[enum].ReturnValue;type", //
+        "mongoose.SessionOperation;;;Member[session].ReturnValue;type", //
+        "mongoose.Types.Array;;;Member[pull,remove,set].ReturnValue;type", //
+        "mongoose.Types.ObjectId;;;Member[_id];type", //
+        "mongoose.VirtualType;;;Member[get,set].ReturnValue;type", //
       ]
   }
 }
diff --git a/javascript/ql/lib/semmle/javascript/frameworks/mongodb/model.json b/javascript/ql/lib/semmle/javascript/frameworks/mongodb/model.json
index 583347db454..1111a250741 100644
--- a/javascript/ql/lib/semmle/javascript/frameworks/mongodb/model.json
+++ b/javascript/ql/lib/semmle/javascript/frameworks/mongodb/model.json
@@ -15,700 +15,700 @@
     },
     "language": "javascript",
     "replaceTypeParameters": [
-        "mongoose;HydratedDocument;0;mongoose;Document",
-        "mongoose;HydratedDocument;0;mongoose;Query"
+        "mongoose.HydratedDocument;0;mongoose.Document",
+        "mongoose.HydratedDocument;0;mongoose.Query"
     ],
     "usedTypes": {
         "sinks": [
-            "mongoose;ConnectOptions",
-            "mongodb;Auth"
+            "mongoose.ConnectOptions",
+            "mongodb.Auth"
         ]
     },
     "ignoredTypes": {
         "sourcesAndSinks": [
-            "mongoose;Schema",
-            "mongoose;SchemaType",
-            "mongoose;SchemaTypeOptions"
+            "mongoose.Schema",
+            "mongoose.SchemaType",
+            "mongoose.SchemaTypeOptions"
         ]
     },
     "model": {
         "sinks": [
-            "mongodb;Collection;Member[aggregate,count,countDocuments,deleteMany,deleteOne,find,findOne,findOneAndDelete,findOneAndReplace,remove,replaceOne,watch].Argument[0];mongodb.sink",
-            "mongodb;Collection;Member[distinct].Argument[1];mongodb.sink",
-            "mongodb;Collection;Member[findOneAndUpdate,update,updateMany,updateOne].Argument[0,1];mongodb.sink",
-            "mongodb;Db;Member[aggregate,watch].Argument[0];mongodb.sink",
-            "mongodb;DeleteManyModel;Member[filter];mongodb.sink",
-            "mongodb;DeleteOneModel;Member[filter];mongodb.sink",
-            "mongodb;MongoClient;Member[watch].Argument[0];mongodb.sink",
-            "mongodb;UpdateManyModel;Member[filter,update];mongodb.sink",
-            "mongodb;UpdateOneModel;Member[filter,update];mongodb.sink",
-            "mongoose;CollectionBase;Member[findAndModify].Argument[0];mongodb.sink",
-            "mongoose;Connection;Member[watch].Argument[0];mongodb.sink",
-            "mongoose;Document;Member[update,updateOne].Argument[0];mongodb.sink",
-            "mongoose;Model;Member[$where,aggregate,exists,find,findById,findByIdAndDelete,findByIdAndRemove,findOne,findOneAndDelete,findOneAndRemove,findOneAndReplace,geoSearch,remove,replaceOne,watch].Argument[0];mongodb.sink",
-            "mongoose;Model;Member[count,where].WithArity[1,2].Argument[0];mongodb.sink",
-            "mongoose;Model;Member[countDocuments].WithArity[1,2,3].Argument[0];mongodb.sink",
-            "mongoose;Model;Member[deleteMany,deleteOne].WithArity[0,1,2,3].Argument[0];mongodb.sink",
-            "mongoose;Model;Member[distinct,where].Argument[1];mongodb.sink",
-            "mongoose;Model;Member[findByIdAndUpdate,findOneAndUpdate,update,updateMany,updateOne].Argument[0,1];mongodb.sink",
-            "mongoose;Model;Member[find].WithArity[1,2,3,4].Argument[0];mongodb.sink",
-            "mongoose;Query;Member[$where,and,find,findByIdAndDelete,findOne,findOneAndDelete,findOneAndRemove,nor,or,remove,replaceOne,setUpdate].Argument[0];mongodb.sink",
-            "mongoose;Query;Member[count,where].WithArity[1,2].Argument[0];mongodb.sink",
-            "mongoose;Query;Member[deleteMany,deleteOne].WithArity[0,1,2,3].Argument[0];mongodb.sink",
-            "mongoose;Query;Member[distinct,where].Argument[1];mongodb.sink",
-            "mongoose;Query;Member[findByIdAndUpdate,findOneAndUpdate,update,updateMany,updateOne].Argument[0,1];mongodb.sink",
-            "mongoose;Query;Member[find].WithArity[1,2,3,4].Argument[0];mongodb.sink",
-            "mongoose;QueryStatic;Argument[2];mongodb.sink"
+            "mongodb.Collection;Member[aggregate,count,countDocuments,deleteMany,deleteOne,find,findOne,findOneAndDelete,findOneAndReplace,remove,replaceOne,watch].Argument[0];mongodb.sink",
+            "mongodb.Collection;Member[distinct].Argument[1];mongodb.sink",
+            "mongodb.Collection;Member[findOneAndUpdate,update,updateMany,updateOne].Argument[0,1];mongodb.sink",
+            "mongodb.Db;Member[aggregate,watch].Argument[0];mongodb.sink",
+            "mongodb.DeleteManyModel;Member[filter];mongodb.sink",
+            "mongodb.DeleteOneModel;Member[filter];mongodb.sink",
+            "mongodb.MongoClient;Member[watch].Argument[0];mongodb.sink",
+            "mongodb.UpdateManyModel;Member[filter,update];mongodb.sink",
+            "mongodb.UpdateOneModel;Member[filter,update];mongodb.sink",
+            "mongoose.CollectionBase;Member[findAndModify].Argument[0];mongodb.sink",
+            "mongoose.Connection;Member[watch].Argument[0];mongodb.sink",
+            "mongoose.Document;Member[update,updateOne].Argument[0];mongodb.sink",
+            "mongoose.Model;Member[$where,aggregate,exists,find,findById,findByIdAndDelete,findByIdAndRemove,findOne,findOneAndDelete,findOneAndRemove,findOneAndReplace,geoSearch,remove,replaceOne,watch].Argument[0];mongodb.sink",
+            "mongoose.Model;Member[count,where].WithArity[1,2].Argument[0];mongodb.sink",
+            "mongoose.Model;Member[countDocuments].WithArity[1,2,3].Argument[0];mongodb.sink",
+            "mongoose.Model;Member[deleteMany,deleteOne].WithArity[0,1,2,3].Argument[0];mongodb.sink",
+            "mongoose.Model;Member[distinct,where].Argument[1];mongodb.sink",
+            "mongoose.Model;Member[findByIdAndUpdate,findOneAndUpdate,update,updateMany,updateOne].Argument[0,1];mongodb.sink",
+            "mongoose.Model;Member[find].WithArity[1,2,3,4].Argument[0];mongodb.sink",
+            "mongoose.Query;Member[$where,and,find,findByIdAndDelete,findOne,findOneAndDelete,findOneAndRemove,nor,or,remove,replaceOne,setUpdate].Argument[0];mongodb.sink",
+            "mongoose.Query;Member[count,where].WithArity[1,2].Argument[0];mongodb.sink",
+            "mongoose.Query;Member[deleteMany,deleteOne].WithArity[0,1,2,3].Argument[0];mongodb.sink",
+            "mongoose.Query;Member[distinct,where].Argument[1];mongodb.sink",
+            "mongoose.Query;Member[findByIdAndUpdate,findOneAndUpdate,update,updateMany,updateOne].Argument[0,1];mongodb.sink",
+            "mongoose.Query;Member[find].WithArity[1,2,3,4].Argument[0];mongodb.sink",
+            "mongoose.QueryStatic;Argument[2];mongodb.sink"
         ]
     },
     "generatedModel": {
         "//": "Autogenerated section. Manual edits in here will be lost.",
         "typeDefinitions": [
-            "mongodb;;mongoose;;Member[mongodb]",
-            "mongodb;AbstractCursor;mongodb;FindCursor;",
-            "mongodb;AbstractCursor;mongodb;ListCollectionsCursor;",
-            "mongodb;AbstractCursor;mongodb;ListIndexesCursor;",
-            "mongodb;AbstractCursorOptions;mongodb/mongodb;AbstractCursorOptions;",
-            "mongodb;AbstractCursorOptions;mongodb;AggregationCursorOptions;",
-            "mongodb;AbstractCursorOptions;mongoose;mongodb.AbstractCursorOptions;",
-            "mongodb;AddUserOptions;mongodb/mongodb;AddUserOptions;",
-            "mongodb;AddUserOptions;mongodb;Admin;Member[addUser].Argument[1,2]",
-            "mongodb;AddUserOptions;mongodb;Db;Member[addUser].Argument[1,2]",
-            "mongodb;AddUserOptions;mongoose;mongodb.AddUserOptions;",
-            "mongodb;Admin;mongodb/mongodb;Admin;",
-            "mongodb;Admin;mongodb;AdminStatic;Instance",
-            "mongodb;Admin;mongodb;Db;Member[admin].ReturnValue",
-            "mongodb;Admin;mongoose;mongodb.Admin;",
-            "mongodb;AdminStatic;mongodb/mongodb;AdminStatic;",
-            "mongodb;AdminStatic;mongodb;;Member[Admin]",
-            "mongodb;AdminStatic;mongoose;mongodb.AdminStatic;",
-            "mongodb;AggregateOptions;mongodb/mongodb;AggregateOptions;",
-            "mongodb;AggregateOptions;mongodb;AggregationCursorOptions;",
-            "mongodb;AggregateOptions;mongodb;ChangeStreamOptions;",
-            "mongodb;AggregateOptions;mongodb;Collection;Member[aggregate].Argument[1]",
-            "mongodb;AggregateOptions;mongodb;CountDocumentsOptions;",
-            "mongodb;AggregateOptions;mongodb;Db;Member[aggregate].Argument[1]",
-            "mongodb;AggregateOptions;mongoose;mongodb.AggregateOptions;",
-            "mongodb;AggregationCursorOptions;mongodb/mongodb;AggregationCursorOptions;",
-            "mongodb;AggregationCursorOptions;mongoose;mongodb.AggregationCursorOptions;",
-            "mongodb;AnyBulkWriteOperation;mongodb/mongodb;AnyBulkWriteOperation;",
-            "mongodb;AnyBulkWriteOperation;mongodb;BulkOperationBase;Member[raw].Argument[0]",
-            "mongodb;AnyBulkWriteOperation;mongodb;Collection;Member[bulkWrite].Argument[0].ArrayElement",
-            "mongodb;AnyBulkWriteOperation;mongoose;mongodb.AnyBulkWriteOperation;",
-            "mongodb;Auth;mongodb/mongodb;Auth;",
-            "mongodb;Auth;mongodb;MongoClientOptions;Member[auth]",
-            "mongodb;Auth;mongoose;mongodb.Auth;",
-            "mongodb;AutoEncrypter;mongodb/mongodb;AutoEncrypter;",
-            "mongodb;AutoEncrypter;mongodb;AutoEncrypter;Instance",
-            "mongodb;AutoEncrypter;mongodb;ConnectionOptions;Member[autoEncrypter]",
-            "mongodb;AutoEncrypter;mongodb;MongoClient;Member[autoEncrypter]",
-            "mongodb;AutoEncrypter;mongodb;MongoOptions;Member[autoEncrypter]",
-            "mongodb;AutoEncrypter;mongoose;mongodb.AutoEncrypter;",
-            "mongodb;AutoEncryptionOptions;mongodb/mongodb;AutoEncryptionOptions;",
-            "mongodb;AutoEncryptionOptions;mongodb;AutoEncrypter;Argument[1]",
-            "mongodb;AutoEncryptionOptions;mongodb;MongoClientOptions;Member[autoEncryption]",
-            "mongodb;AutoEncryptionOptions;mongoose;mongodb.AutoEncryptionOptions;",
-            "mongodb;BulkOperationBase;mongodb/mongodb;BulkOperationBase;",
-            "mongodb;BulkOperationBase;mongodb;BulkOperationBase;Member[addToOperationsList,insert,raw].ReturnValue",
-            "mongodb;BulkOperationBase;mongodb;BulkOperationBaseStatic;Instance",
-            "mongodb;BulkOperationBase;mongodb;FindOperators;Member[bulkOperation]",
-            "mongodb;BulkOperationBase;mongodb;FindOperators;Member[delete,deleteOne,replaceOne,update,updateOne].ReturnValue",
-            "mongodb;BulkOperationBase;mongodb;OrderedBulkOperation;",
-            "mongodb;BulkOperationBase;mongodb;UnorderedBulkOperation;",
-            "mongodb;BulkOperationBase;mongoose;mongodb.BulkOperationBase;",
-            "mongodb;BulkOperationBaseStatic;mongodb/mongodb;BulkOperationBaseStatic;",
-            "mongodb;BulkOperationBaseStatic;mongodb;;Member[BulkOperationBase]",
-            "mongodb;BulkOperationBaseStatic;mongoose;mongodb.BulkOperationBaseStatic;",
-            "mongodb;BulkWriteOptions;mongodb/mongodb;BulkWriteOptions;",
-            "mongodb;BulkWriteOptions;mongodb;BulkOperationBase;Member[execute].WithArity[0,1,2].Argument[0]",
-            "mongodb;BulkWriteOptions;mongodb;Collection;Member[bulkWrite,insert,insertMany].Argument[1]",
-            "mongodb;BulkWriteOptions;mongodb;Collection;Member[initializeOrderedBulkOp,initializeUnorderedBulkOp].Argument[0]",
-            "mongodb;BulkWriteOptions;mongodb;OrderedBulkOperationStatic;Argument[1]",
-            "mongodb;BulkWriteOptions;mongodb;UnorderedBulkOperationStatic;Argument[1]",
-            "mongodb;BulkWriteOptions;mongoose;mongodb.BulkWriteOptions;",
-            "mongodb;ChangeStream;mongodb/mongodb;ChangeStream;",
-            "mongodb;ChangeStream;mongodb;ChangeStreamStatic;Instance",
-            "mongodb;ChangeStream;mongodb;Collection;Member[watch].ReturnValue",
-            "mongodb;ChangeStream;mongodb;Db;Member[watch].ReturnValue",
-            "mongodb;ChangeStream;mongodb;MongoClient;Member[watch].ReturnValue",
-            "mongodb;ChangeStream;mongoose;mongodb.ChangeStream;",
-            "mongodb;ChangeStreamOptions;mongodb/mongodb;ChangeStreamOptions;",
-            "mongodb;ChangeStreamOptions;mongodb;ChangeStream;Member[options]",
-            "mongodb;ChangeStreamOptions;mongodb;Collection;Member[watch].Argument[1]",
-            "mongodb;ChangeStreamOptions;mongodb;Db;Member[watch].Argument[1]",
-            "mongodb;ChangeStreamOptions;mongodb;MongoClient;Member[watch].Argument[1]",
-            "mongodb;ChangeStreamOptions;mongoose;mongodb.ChangeStreamOptions;",
-            "mongodb;ChangeStreamStatic;mongodb/mongodb;ChangeStreamStatic;",
-            "mongodb;ChangeStreamStatic;mongodb;;Member[ChangeStream]",
-            "mongodb;ChangeStreamStatic;mongoose;mongodb.ChangeStreamStatic;",
-            "mongodb;ClientSession;mongodb/mongodb;ClientSession;",
-            "mongodb;ClientSession;mongodb;AbstractCursorOptions;Member[session]",
-            "mongodb;ClientSession;mongodb;ClientSession;Member[equals].Argument[0]",
-            "mongodb;ClientSession;mongodb;ClientSessionEvents;Member[ended].Argument[0]",
-            "mongodb;ClientSession;mongodb;ClientSessionStatic;Instance",
-            "mongodb;ClientSession;mongodb;IndexInformationOptions;Member[session]",
-            "mongodb;ClientSession;mongodb;MongoClient;Member[startSession].ReturnValue",
-            "mongodb;ClientSession;mongodb;OperationOptions;Member[session]",
-            "mongodb;ClientSession;mongodb;ReadPreferenceFromOptions;Member[session]",
-            "mongodb;ClientSession;mongodb;SelectServerOptions;Member[session]",
-            "mongodb;ClientSession;mongodb;WithSessionCallback;Argument[0]",
-            "mongodb;ClientSession;mongodb;WithTransactionCallback;Argument[0]",
-            "mongodb;ClientSession;mongoose;mongodb.ClientSession;",
-            "mongodb;ClientSessionEvents;mongodb/mongodb;ClientSessionEvents;",
-            "mongodb;ClientSessionEvents;mongoose;mongodb.ClientSessionEvents;",
-            "mongodb;ClientSessionOptions;mongodb/mongodb;ClientSessionOptions;",
-            "mongodb;ClientSessionOptions;mongodb;MongoClient;Member[startSession].Argument[0]",
-            "mongodb;ClientSessionOptions;mongodb;MongoClient;Member[withSession].WithArity[2].Argument[0]",
-            "mongodb;ClientSessionOptions;mongoose;mongodb.ClientSessionOptions;",
-            "mongodb;ClientSessionStatic;mongodb/mongodb;ClientSessionStatic;",
-            "mongodb;ClientSessionStatic;mongodb;;Member[ClientSession]",
-            "mongodb;ClientSessionStatic;mongoose;mongodb.ClientSessionStatic;",
-            "mongodb;CollStatsOptions;mongodb/mongodb;CollStatsOptions;",
-            "mongodb;CollStatsOptions;mongodb;Collection;Member[stats].Argument[0]",
-            "mongodb;CollStatsOptions;mongoose;mongodb.CollStatsOptions;",
-            "mongodb;Collection;mongodb/mongodb;Collection;",
-            "mongodb;Collection;mongodb;ChangeStream;Member[parent]",
-            "mongodb;Collection;mongodb;Collection;Member[rename].Argument[1,2].TypeVar[mongodb.Callback.0]",
-            "mongodb;Collection;mongodb;Collection;Member[rename].WithArity[1,2].ReturnValue.Awaited",
-            "mongodb;Collection;mongodb;CollectionStatic;Instance",
-            "mongodb;Collection;mongodb;Db;Member[collection].ReturnValue",
-            "mongodb;Collection;mongodb;Db;Member[collections].Argument[0,1].TypeVar[mongodb.Callback.0].ArrayElement",
-            "mongodb;Collection;mongodb;Db;Member[collections].WithArity[0,1].ReturnValue.Awaited.ArrayElement",
-            "mongodb;Collection;mongodb;Db;Member[createCollection].Argument[2].TypeVar[mongodb.Callback.0]",
-            "mongodb;Collection;mongodb;Db;Member[createCollection].WithArity[1,2].ReturnValue.Awaited",
-            "mongodb;Collection;mongodb;Db;Member[createCollection].WithArity[2].Argument[1].TypeVar[mongodb.Callback.0]",
-            "mongodb;Collection;mongodb;Db;Member[renameCollection].Argument[2,3].TypeVar[mongodb.Callback.0]",
-            "mongodb;Collection;mongodb;Db;Member[renameCollection].WithArity[2,3].ReturnValue.Awaited",
-            "mongodb;Collection;mongodb;GridFSBucketWriteStream;Member[chunks,files]",
-            "mongodb;Collection;mongodb;ListIndexesCursor;Member[parent]",
-            "mongodb;Collection;mongodb;ListIndexesCursorStatic;Argument[0]",
-            "mongodb;Collection;mongodb;OrderedBulkOperationStatic;Argument[0]",
-            "mongodb;Collection;mongodb;UnorderedBulkOperationStatic;Argument[0]",
-            "mongodb;Collection;mongoose;mongodb.Collection;",
-            "mongodb;CollectionStatic;mongodb/mongodb;CollectionStatic;",
-            "mongodb;CollectionStatic;mongodb;;Member[Collection]",
-            "mongodb;CollectionStatic;mongoose;mongodb.CollectionStatic;",
-            "mongodb;CommandOperationOptions;mongodb/mongodb;CommandOperationOptions;",
-            "mongodb;CommandOperationOptions;mongodb;AddUserOptions;",
-            "mongodb;CommandOperationOptions;mongodb;Admin;Member[buildInfo,ping,replSetGetStatus,serverInfo,serverStatus].Argument[0]",
-            "mongodb;CommandOperationOptions;mongodb;AggregateOptions;",
-            "mongodb;CommandOperationOptions;mongodb;BulkWriteOptions;",
-            "mongodb;CommandOperationOptions;mongodb;CollStatsOptions;",
-            "mongodb;CommandOperationOptions;mongodb;CountOptions;",
-            "mongodb;CommandOperationOptions;mongodb;CreateCollectionOptions;",
-            "mongodb;CommandOperationOptions;mongodb;CreateIndexesOptions;",
-            "mongodb;CommandOperationOptions;mongodb;DbStatsOptions;",
-            "mongodb;CommandOperationOptions;mongodb;DeleteOptions;",
-            "mongodb;CommandOperationOptions;mongodb;DistinctOptions;",
-            "mongodb;CommandOperationOptions;mongodb;DropCollectionOptions;",
-            "mongodb;CommandOperationOptions;mongodb;DropDatabaseOptions;",
-            "mongodb;CommandOperationOptions;mongodb;DropIndexesOptions;",
-            "mongodb;CommandOperationOptions;mongodb;EstimatedDocumentCountOptions;",
-            "mongodb;CommandOperationOptions;mongodb;EvalOptions;",
-            "mongodb;CommandOperationOptions;mongodb;FindOneAndDeleteOptions;",
-            "mongodb;CommandOperationOptions;mongodb;FindOneAndReplaceOptions;",
-            "mongodb;CommandOperationOptions;mongodb;FindOneAndUpdateOptions;",
-            "mongodb;CommandOperationOptions;mongodb;FindOptions;",
-            "mongodb;CommandOperationOptions;mongodb;InsertOneOptions;",
-            "mongodb;CommandOperationOptions;mongodb;ListCollectionsOptions;",
-            "mongodb;CommandOperationOptions;mongodb;ListDatabasesOptions;",
-            "mongodb;CommandOperationOptions;mongodb;ListIndexesOptions;",
-            "mongodb;CommandOperationOptions;mongodb;MapReduceOptions;",
-            "mongodb;CommandOperationOptions;mongodb;ProfilingLevelOptions;",
-            "mongodb;CommandOperationOptions;mongodb;RemoveUserOptions;",
-            "mongodb;CommandOperationOptions;mongodb;RenameOptions;",
-            "mongodb;CommandOperationOptions;mongodb;ReplaceOptions;",
-            "mongodb;CommandOperationOptions;mongodb;RunCommandOptions;",
-            "mongodb;CommandOperationOptions;mongodb;SetProfilingLevelOptions;",
-            "mongodb;CommandOperationOptions;mongodb;TransactionOptions;",
-            "mongodb;CommandOperationOptions;mongodb;UpdateOptions;",
-            "mongodb;CommandOperationOptions;mongodb;ValidateCollectionOptions;",
-            "mongodb;CommandOperationOptions;mongoose;mongodb.CommandOperationOptions;",
-            "mongodb;ConnectionOptions;mongodb/mongodb;ConnectionOptions;",
-            "mongodb;ConnectionOptions;mongoose;mongodb.ConnectionOptions;",
-            "mongodb;CountDocumentsOptions;mongodb/mongodb;CountDocumentsOptions;",
-            "mongodb;CountDocumentsOptions;mongodb;Collection;Member[countDocuments].Argument[1]",
-            "mongodb;CountDocumentsOptions;mongoose;mongodb.CountDocumentsOptions;",
-            "mongodb;CountOptions;mongodb/mongodb;CountOptions;",
-            "mongodb;CountOptions;mongodb;Collection;Member[count].Argument[1]",
-            "mongodb;CountOptions;mongodb;FindCursor;Member[count].Argument[0]",
-            "mongodb;CountOptions;mongoose;mongodb.CountOptions;",
-            "mongodb;CreateCollectionOptions;mongodb/mongodb;CreateCollectionOptions;",
-            "mongodb;CreateCollectionOptions;mongodb;Db;Member[createCollection].WithArity[1,2,3].Argument[1]",
-            "mongodb;CreateCollectionOptions;mongoose;mongodb.CreateCollectionOptions;",
-            "mongodb;CreateIndexesOptions;mongodb/mongodb;CreateIndexesOptions;",
-            "mongodb;CreateIndexesOptions;mongodb;Collection;Member[createIndex,createIndexes].Argument[1]",
-            "mongodb;CreateIndexesOptions;mongodb;Db;Member[createIndex].Argument[2]",
-            "mongodb;CreateIndexesOptions;mongoose;mongodb.CreateIndexesOptions;",
-            "mongodb;Db;mongodb/mongodb;Db;",
-            "mongodb;Db;mongodb;ChangeStream;Member[parent]",
-            "mongodb;Db;mongodb;DbStatic;Instance",
-            "mongodb;Db;mongodb;GridFSBucketStatic;Argument[0]",
-            "mongodb;Db;mongodb;ListCollectionsCursor;Member[parent]",
-            "mongodb;Db;mongodb;ListCollectionsCursorStatic;Argument[0]",
-            "mongodb;Db;mongodb;MongoClient;Member[db].ReturnValue",
-            "mongodb;Db;mongoose;mongodb.Db;",
-            "mongodb;DbStatic;mongodb/mongodb;DbStatic;",
-            "mongodb;DbStatic;mongodb;;Member[Db]",
-            "mongodb;DbStatic;mongoose;mongodb.DbStatic;",
-            "mongodb;DbStatsOptions;mongodb/mongodb;DbStatsOptions;",
-            "mongodb;DbStatsOptions;mongodb;Db;Member[stats].Argument[0]",
-            "mongodb;DbStatsOptions;mongoose;mongodb.DbStatsOptions;",
-            "mongodb;DeleteManyModel;mongodb/mongodb;DeleteManyModel;",
-            "mongodb;DeleteManyModel;mongodb;AnyBulkWriteOperation;Member[deleteMany]",
-            "mongodb;DeleteManyModel;mongoose;mongodb.DeleteManyModel;",
-            "mongodb;DeleteOneModel;mongodb/mongodb;DeleteOneModel;",
-            "mongodb;DeleteOneModel;mongodb;AnyBulkWriteOperation;Member[deleteOne]",
-            "mongodb;DeleteOneModel;mongoose;mongodb.DeleteOneModel;",
-            "mongodb;DeleteOptions;mongodb/mongodb;DeleteOptions;",
-            "mongodb;DeleteOptions;mongodb;Collection;Member[deleteMany,deleteOne,remove].Argument[1]",
-            "mongodb;DeleteOptions;mongoose;mongodb.DeleteOptions;",
-            "mongodb;DistinctOptions;mongodb/mongodb;DistinctOptions;",
-            "mongodb;DistinctOptions;mongodb;Collection;Member[distinct].Argument[2]",
-            "mongodb;DistinctOptions;mongoose;mongodb.DistinctOptions;",
-            "mongodb;DropCollectionOptions;mongodb/mongodb;DropCollectionOptions;",
-            "mongodb;DropCollectionOptions;mongodb;Collection;Member[drop].Argument[0]",
-            "mongodb;DropCollectionOptions;mongodb;Db;Member[dropCollection].Argument[1]",
-            "mongodb;DropCollectionOptions;mongoose;mongodb.DropCollectionOptions;",
-            "mongodb;DropDatabaseOptions;mongodb/mongodb;DropDatabaseOptions;",
-            "mongodb;DropDatabaseOptions;mongodb;Db;Member[dropDatabase].Argument[0]",
-            "mongodb;DropDatabaseOptions;mongoose;mongodb.DropDatabaseOptions;",
-            "mongodb;DropIndexesOptions;mongodb/mongodb;DropIndexesOptions;",
-            "mongodb;DropIndexesOptions;mongodb;Collection;Member[dropIndex].Argument[1]",
-            "mongodb;DropIndexesOptions;mongodb;Collection;Member[dropIndexes].Argument[0]",
-            "mongodb;DropIndexesOptions;mongoose;mongodb.DropIndexesOptions;",
-            "mongodb;EstimatedDocumentCountOptions;mongodb/mongodb;EstimatedDocumentCountOptions;",
-            "mongodb;EstimatedDocumentCountOptions;mongodb;Collection;Member[estimatedDocumentCount].Argument[0]",
-            "mongodb;EstimatedDocumentCountOptions;mongoose;mongodb.EstimatedDocumentCountOptions;",
-            "mongodb;EvalOptions;mongodb/mongodb;EvalOptions;",
-            "mongodb;EvalOptions;mongoose;mongodb.EvalOptions;",
-            "mongodb;FindCursor;mongodb/mongodb;FindCursor;",
-            "mongodb;FindCursor;mongodb;Collection;Member[find].WithArity[0,1,2].ReturnValue",
-            "mongodb;FindCursor;mongodb;FindCursor;Member[addQueryModifier,allowDiskUse,clone,collation,comment,filter,hint,limit,map,max,maxAwaitTimeMS,maxTimeMS,min,project,returnKey,showRecordId,skip,sort].ReturnValue",
-            "mongodb;FindCursor;mongodb;FindCursorStatic;Instance",
-            "mongodb;FindCursor;mongodb;GridFSBucket;Member[find].ReturnValue",
-            "mongodb;FindCursor;mongoose;mongodb.FindCursor;",
-            "mongodb;FindCursorStatic;mongodb/mongodb;FindCursorStatic;",
-            "mongodb;FindCursorStatic;mongodb;;Member[FindCursor]",
-            "mongodb;FindCursorStatic;mongoose;mongodb.FindCursorStatic;",
-            "mongodb;FindOneAndDeleteOptions;mongodb/mongodb;FindOneAndDeleteOptions;",
-            "mongodb;FindOneAndDeleteOptions;mongodb;Collection;Member[findOneAndDelete].Argument[1]",
-            "mongodb;FindOneAndDeleteOptions;mongoose;mongodb.FindOneAndDeleteOptions;",
-            "mongodb;FindOneAndReplaceOptions;mongodb/mongodb;FindOneAndReplaceOptions;",
-            "mongodb;FindOneAndReplaceOptions;mongodb;Collection;Member[findOneAndReplace].Argument[2]",
-            "mongodb;FindOneAndReplaceOptions;mongoose;mongodb.FindOneAndReplaceOptions;",
-            "mongodb;FindOneAndUpdateOptions;mongodb/mongodb;FindOneAndUpdateOptions;",
-            "mongodb;FindOneAndUpdateOptions;mongodb;Collection;Member[findOneAndUpdate].Argument[2]",
-            "mongodb;FindOneAndUpdateOptions;mongoose;mongodb.FindOneAndUpdateOptions;",
-            "mongodb;FindOperators;mongodb/mongodb;FindOperators;",
-            "mongodb;FindOperators;mongodb;BulkOperationBase;Member[find].ReturnValue",
-            "mongodb;FindOperators;mongodb;FindOperators;Member[arrayFilters,collation,upsert].ReturnValue",
-            "mongodb;FindOperators;mongodb;FindOperatorsStatic;Instance",
-            "mongodb;FindOperators;mongoose;mongodb.FindOperators;",
-            "mongodb;FindOperatorsStatic;mongodb/mongodb;FindOperatorsStatic;",
-            "mongodb;FindOperatorsStatic;mongodb;;Member[FindOperators]",
-            "mongodb;FindOperatorsStatic;mongoose;mongodb.FindOperatorsStatic;",
-            "mongodb;FindOptions;mongodb/mongodb;FindOptions;",
-            "mongodb;FindOptions;mongodb;Collection;Member[find,findOne].Argument[1]",
-            "mongodb;FindOptions;mongodb;GridFSBucket;Member[find].Argument[1]",
-            "mongodb;FindOptions;mongoose;mongodb.FindOptions;",
-            "mongodb;GridFSBucket;mongodb/mongodb;GridFSBucket;",
-            "mongodb;GridFSBucket;mongodb;GridFSBucketStatic;Instance",
-            "mongodb;GridFSBucket;mongodb;GridFSBucketWriteStream;Member[bucket]",
-            "mongodb;GridFSBucket;mongoose;mongodb.GridFSBucket;",
-            "mongodb;GridFSBucketStatic;mongodb/mongodb;GridFSBucketStatic;",
-            "mongodb;GridFSBucketStatic;mongodb;;Member[GridFSBucket]",
-            "mongodb;GridFSBucketStatic;mongoose;mongodb.GridFSBucketStatic;",
-            "mongodb;GridFSBucketWriteStream;mongodb/mongodb;GridFSBucketWriteStream;",
-            "mongodb;GridFSBucketWriteStream;mongodb;GridFSBucket;Member[openUploadStream,openUploadStreamWithId].ReturnValue",
-            "mongodb;GridFSBucketWriteStream;mongodb;GridFSBucketWriteStream;Member[end].ReturnValue",
-            "mongodb;GridFSBucketWriteStream;mongodb;GridFSBucketWriteStreamStatic;Instance",
-            "mongodb;GridFSBucketWriteStream;mongoose;mongodb.GridFSBucketWriteStream;",
-            "mongodb;GridFSBucketWriteStreamStatic;mongodb/mongodb;GridFSBucketWriteStreamStatic;",
-            "mongodb;GridFSBucketWriteStreamStatic;mongodb;;Member[GridFSBucketWriteStream]",
-            "mongodb;GridFSBucketWriteStreamStatic;mongoose;mongodb.GridFSBucketWriteStreamStatic;",
-            "mongodb;IndexInformationOptions;mongodb/mongodb;IndexInformationOptions;",
-            "mongodb;IndexInformationOptions;mongodb;Collection;Member[indexExists].Argument[1]",
-            "mongodb;IndexInformationOptions;mongodb;Collection;Member[indexInformation,indexes].Argument[0]",
-            "mongodb;IndexInformationOptions;mongodb;Db;Member[indexInformation].Argument[1]",
-            "mongodb;IndexInformationOptions;mongoose;mongodb.IndexInformationOptions;",
-            "mongodb;InsertOneOptions;mongodb/mongodb;InsertOneOptions;",
-            "mongodb;InsertOneOptions;mongodb;Collection;Member[insertOne].Argument[1]",
-            "mongodb;InsertOneOptions;mongoose;mongodb.InsertOneOptions;",
-            "mongodb;ListCollectionsCursor;mongodb/mongodb;ListCollectionsCursor;",
-            "mongodb;ListCollectionsCursor;mongodb;Db;Member[listCollections].WithArity[0,1,2].ReturnValue",
-            "mongodb;ListCollectionsCursor;mongodb;ListCollectionsCursor;Member[clone].ReturnValue",
-            "mongodb;ListCollectionsCursor;mongodb;ListCollectionsCursorStatic;Instance",
-            "mongodb;ListCollectionsCursor;mongoose;mongodb.ListCollectionsCursor;",
-            "mongodb;ListCollectionsCursorStatic;mongodb/mongodb;ListCollectionsCursorStatic;",
-            "mongodb;ListCollectionsCursorStatic;mongodb;;Member[ListCollectionsCursor]",
-            "mongodb;ListCollectionsCursorStatic;mongoose;mongodb.ListCollectionsCursorStatic;",
-            "mongodb;ListCollectionsOptions;mongodb/mongodb;ListCollectionsOptions;",
-            "mongodb;ListCollectionsOptions;mongodb;Db;Member[collections].Argument[0]",
-            "mongodb;ListCollectionsOptions;mongodb;Db;Member[listCollections].WithArity[0,1,2].Argument[1]",
-            "mongodb;ListCollectionsOptions;mongodb;ListCollectionsCursor;Member[options]",
-            "mongodb;ListCollectionsOptions;mongodb;ListCollectionsCursorStatic;Argument[2]",
-            "mongodb;ListCollectionsOptions;mongoose;mongodb.ListCollectionsOptions;",
-            "mongodb;ListDatabasesOptions;mongodb/mongodb;ListDatabasesOptions;",
-            "mongodb;ListDatabasesOptions;mongodb;Admin;Member[listDatabases].Argument[0]",
-            "mongodb;ListDatabasesOptions;mongoose;mongodb.ListDatabasesOptions;",
-            "mongodb;ListIndexesCursor;mongodb/mongodb;ListIndexesCursor;",
-            "mongodb;ListIndexesCursor;mongodb;Collection;Member[listIndexes].ReturnValue",
-            "mongodb;ListIndexesCursor;mongodb;ListIndexesCursor;Member[clone].ReturnValue",
-            "mongodb;ListIndexesCursor;mongodb;ListIndexesCursorStatic;Instance",
-            "mongodb;ListIndexesCursor;mongoose;mongodb.ListIndexesCursor;",
-            "mongodb;ListIndexesCursorStatic;mongodb/mongodb;ListIndexesCursorStatic;",
-            "mongodb;ListIndexesCursorStatic;mongodb;;Member[ListIndexesCursor]",
-            "mongodb;ListIndexesCursorStatic;mongoose;mongodb.ListIndexesCursorStatic;",
-            "mongodb;ListIndexesOptions;mongodb/mongodb;ListIndexesOptions;",
-            "mongodb;ListIndexesOptions;mongodb;Collection;Member[listIndexes].Argument[0]",
-            "mongodb;ListIndexesOptions;mongodb;ListIndexesCursor;Member[options]",
-            "mongodb;ListIndexesOptions;mongodb;ListIndexesCursorStatic;Argument[1]",
-            "mongodb;ListIndexesOptions;mongoose;mongodb.ListIndexesOptions;",
-            "mongodb;MapReduceOptions;mongodb/mongodb;MapReduceOptions;",
-            "mongodb;MapReduceOptions;mongodb;Collection;Member[mapReduce].Argument[2]",
-            "mongodb;MapReduceOptions;mongoose;mongodb.MapReduceOptions;",
-            "mongodb;MongoClient;mongodb/mongodb;MongoClient;",
-            "mongodb;MongoClient;mongodb;AutoEncrypter;Argument[0]",
-            "mongodb;MongoClient;mongodb;AutoEncryptionOptions;Member[keyVaultClient]",
-            "mongodb;MongoClient;mongodb;ChangeStream;Member[parent]",
-            "mongodb;MongoClient;mongodb;DbStatic;Argument[0]",
-            "mongodb;MongoClient;mongodb;MongoClient;Member[connect].Argument[0].TypeVar[mongodb.Callback.0]",
-            "mongodb;MongoClient;mongodb;MongoClient;Member[connect].WithArity[0].ReturnValue.Awaited",
-            "mongodb;MongoClient;mongodb;MongoClientEvents;Member[open].Argument[0]",
-            "mongodb;MongoClient;mongodb;MongoClientStatic;Instance",
-            "mongodb;MongoClient;mongodb;MongoClientStatic;Member[connect].Argument[1,2].TypeVar[mongodb.Callback.0]",
-            "mongodb;MongoClient;mongodb;MongoClientStatic;Member[connect].WithArity[1,2].ReturnValue.Awaited",
-            "mongodb;MongoClient;mongoose;mongodb.MongoClient;",
-            "mongodb;MongoClientEvents;mongodb/mongodb;MongoClientEvents;",
-            "mongodb;MongoClientEvents;mongoose;mongodb.MongoClientEvents;",
-            "mongodb;MongoClientOptions;mongodb/mongodb;MongoClientOptions;",
-            "mongodb;MongoClientOptions;mongodb;MongoClientStatic;Argument[1]",
-            "mongodb;MongoClientOptions;mongodb;MongoClientStatic;Member[connect].Argument[1]",
-            "mongodb;MongoClientOptions;mongoose;mongodb.MongoClientOptions;",
-            "mongodb;MongoClientStatic;mongodb/mongodb;MongoClientStatic;",
-            "mongodb;MongoClientStatic;mongodb;;Member[MongoClient]",
-            "mongodb;MongoClientStatic;mongoose;mongodb.MongoClientStatic;",
-            "mongodb;MongoOptions;mongodb/mongodb;MongoOptions;",
-            "mongodb;MongoOptions;mongodb;ClientSession;Member[clientOptions]",
-            "mongodb;MongoOptions;mongodb;MongoClient;Member[options]",
-            "mongodb;MongoOptions;mongoose;mongodb.MongoOptions;",
-            "mongodb;OperationOptions;mongodb/mongodb;OperationOptions;",
-            "mongodb;OperationOptions;mongodb;Collection;Member[isCapped,options].Argument[0]",
-            "mongodb;OperationOptions;mongodb;CommandOperationOptions;",
-            "mongodb;OperationOptions;mongoose;mongodb.OperationOptions;",
-            "mongodb;OrderedBulkOperation;mongodb/mongodb;OrderedBulkOperation;",
-            "mongodb;OrderedBulkOperation;mongodb;Collection;Member[initializeOrderedBulkOp].ReturnValue",
-            "mongodb;OrderedBulkOperation;mongodb;OrderedBulkOperation;Member[addToOperationsList].ReturnValue",
-            "mongodb;OrderedBulkOperation;mongodb;OrderedBulkOperationStatic;Instance",
-            "mongodb;OrderedBulkOperation;mongoose;mongodb.OrderedBulkOperation;",
-            "mongodb;OrderedBulkOperationStatic;mongodb/mongodb;OrderedBulkOperationStatic;",
-            "mongodb;OrderedBulkOperationStatic;mongodb;;Member[OrderedBulkOperation]",
-            "mongodb;OrderedBulkOperationStatic;mongoose;mongodb.OrderedBulkOperationStatic;",
-            "mongodb;ProfilingLevelOptions;mongodb/mongodb;ProfilingLevelOptions;",
-            "mongodb;ProfilingLevelOptions;mongodb;Db;Member[profilingLevel].Argument[0]",
-            "mongodb;ProfilingLevelOptions;mongoose;mongodb.ProfilingLevelOptions;",
-            "mongodb;ReadPreferenceFromOptions;mongodb/mongodb;ReadPreferenceFromOptions;",
-            "mongodb;ReadPreferenceFromOptions;mongodb;ReadPreferenceStatic;Member[fromOptions].Argument[0]",
-            "mongodb;ReadPreferenceFromOptions;mongoose;mongodb.ReadPreferenceFromOptions;",
-            "mongodb;ReadPreferenceStatic;mongodb/mongodb;ReadPreferenceStatic;",
-            "mongodb;ReadPreferenceStatic;mongodb;;Member[ReadPreference]",
-            "mongodb;ReadPreferenceStatic;mongoose;mongodb.ReadPreferenceStatic;",
-            "mongodb;RemoveUserOptions;mongodb/mongodb;RemoveUserOptions;",
-            "mongodb;RemoveUserOptions;mongodb;Admin;Member[removeUser].Argument[1]",
-            "mongodb;RemoveUserOptions;mongodb;Db;Member[removeUser].Argument[1]",
-            "mongodb;RemoveUserOptions;mongoose;mongodb.RemoveUserOptions;",
-            "mongodb;RenameOptions;mongodb/mongodb;RenameOptions;",
-            "mongodb;RenameOptions;mongodb;Collection;Member[rename].Argument[1]",
-            "mongodb;RenameOptions;mongodb;Db;Member[renameCollection].Argument[2]",
-            "mongodb;RenameOptions;mongoose;mongodb.RenameOptions;",
-            "mongodb;ReplaceOptions;mongodb/mongodb;ReplaceOptions;",
-            "mongodb;ReplaceOptions;mongodb;Collection;Member[replaceOne].Argument[2]",
-            "mongodb;ReplaceOptions;mongoose;mongodb.ReplaceOptions;",
-            "mongodb;RunCommandOptions;mongodb/mongodb;RunCommandOptions;",
-            "mongodb;RunCommandOptions;mongodb;Admin;Member[command].Argument[1]",
-            "mongodb;RunCommandOptions;mongodb;Db;Member[command].Argument[1]",
-            "mongodb;RunCommandOptions;mongoose;mongodb.RunCommandOptions;",
-            "mongodb;SelectServerOptions;mongodb/mongodb;SelectServerOptions;",
-            "mongodb;SelectServerOptions;mongoose;mongodb.SelectServerOptions;",
-            "mongodb;SetProfilingLevelOptions;mongodb/mongodb;SetProfilingLevelOptions;",
-            "mongodb;SetProfilingLevelOptions;mongodb;Db;Member[setProfilingLevel].Argument[1]",
-            "mongodb;SetProfilingLevelOptions;mongoose;mongodb.SetProfilingLevelOptions;",
-            "mongodb;Transaction;mongodb/mongodb;Transaction;",
-            "mongodb;Transaction;mongodb;ClientSession;Member[transaction]",
-            "mongodb;Transaction;mongodb;TransactionStatic;Instance",
-            "mongodb;Transaction;mongoose;mongodb.Transaction;",
-            "mongodb;TransactionOptions;mongodb/mongodb;TransactionOptions;",
-            "mongodb;TransactionOptions;mongodb;ClientSession;Member[defaultTransactionOptions]",
-            "mongodb;TransactionOptions;mongodb;ClientSession;Member[startTransaction].Argument[0]",
-            "mongodb;TransactionOptions;mongodb;ClientSession;Member[withTransaction].Argument[1]",
-            "mongodb;TransactionOptions;mongodb;ClientSessionOptions;Member[defaultTransactionOptions]",
-            "mongodb;TransactionOptions;mongodb;Transaction;Member[options]",
-            "mongodb;TransactionOptions;mongoose;mongodb.TransactionOptions;",
-            "mongodb;TransactionStatic;mongodb/mongodb;TransactionStatic;",
-            "mongodb;TransactionStatic;mongodb;;Member[Transaction]",
-            "mongodb;TransactionStatic;mongoose;mongodb.TransactionStatic;",
-            "mongodb;TypedEventEmitter;mongodb;AbstractCursor;",
-            "mongodb;TypedEventEmitter;mongodb;ChangeStream;",
-            "mongodb;TypedEventEmitter;mongodb;ClientSession;",
-            "mongodb;TypedEventEmitter;mongodb;GridFSBucket;",
-            "mongodb;TypedEventEmitter;mongodb;MongoClient;",
-            "mongodb;UnorderedBulkOperation;mongodb/mongodb;UnorderedBulkOperation;",
-            "mongodb;UnorderedBulkOperation;mongodb;Collection;Member[initializeUnorderedBulkOp].ReturnValue",
-            "mongodb;UnorderedBulkOperation;mongodb;UnorderedBulkOperation;Member[addToOperationsList].ReturnValue",
-            "mongodb;UnorderedBulkOperation;mongodb;UnorderedBulkOperationStatic;Instance",
-            "mongodb;UnorderedBulkOperation;mongoose;mongodb.UnorderedBulkOperation;",
-            "mongodb;UnorderedBulkOperationStatic;mongodb/mongodb;UnorderedBulkOperationStatic;",
-            "mongodb;UnorderedBulkOperationStatic;mongodb;;Member[UnorderedBulkOperation]",
-            "mongodb;UnorderedBulkOperationStatic;mongoose;mongodb.UnorderedBulkOperationStatic;",
-            "mongodb;UpdateManyModel;mongodb/mongodb;UpdateManyModel;",
-            "mongodb;UpdateManyModel;mongodb;AnyBulkWriteOperation;Member[updateMany]",
-            "mongodb;UpdateManyModel;mongoose;mongodb.UpdateManyModel;",
-            "mongodb;UpdateOneModel;mongodb/mongodb;UpdateOneModel;",
-            "mongodb;UpdateOneModel;mongodb;AnyBulkWriteOperation;Member[updateOne]",
-            "mongodb;UpdateOneModel;mongoose;mongodb.UpdateOneModel;",
-            "mongodb;UpdateOptions;mongodb/mongodb;UpdateOptions;",
-            "mongodb;UpdateOptions;mongodb;Collection;Member[update,updateMany,updateOne].Argument[2]",
-            "mongodb;UpdateOptions;mongoose;mongodb.UpdateOptions;",
-            "mongodb;ValidateCollectionOptions;mongodb/mongodb;ValidateCollectionOptions;",
-            "mongodb;ValidateCollectionOptions;mongodb;Admin;Member[validateCollection].Argument[1]",
-            "mongodb;ValidateCollectionOptions;mongoose;mongodb.ValidateCollectionOptions;",
-            "mongodb;WithSessionCallback;mongodb/mongodb;WithSessionCallback;",
-            "mongodb;WithSessionCallback;mongodb;MongoClient;Member[withSession].Argument[1]",
-            "mongodb;WithSessionCallback;mongodb;MongoClient;Member[withSession].WithArity[1].Argument[0]",
-            "mongodb;WithSessionCallback;mongoose;mongodb.WithSessionCallback;",
-            "mongodb;WithTransactionCallback;mongodb/mongodb;WithTransactionCallback;",
-            "mongodb;WithTransactionCallback;mongodb;ClientSession;Member[withTransaction].Argument[0]",
-            "mongodb;WithTransactionCallback;mongoose;mongodb.WithTransactionCallback;",
-            "mongoose/inferschematype;ResolvePathType;mongoose/inferschematype;ObtainDocumentPathType;",
-            "mongoose/inferschematype;ResolvePathType;mongoose/inferschematype;ResolvePathType;TypeVar[mongoose.IfEquals.3].ArrayElement",
-            "mongoose/inferschematype;ResolvePathType;mongoose/inferschematype;ResolvePathType;TypeVar[mongoose.IfEquals.3].TypeVar[mongoose.Types.DocumentArray.0]",
-            "mongoose;;mongoose;;Member[mongoose]",
-            "mongoose;AcceptsDiscriminator;mongoose;Model;",
-            "mongoose;AcceptsDiscriminator;mongoose;Schema.Types.Array;",
-            "mongoose;AcceptsDiscriminator;mongoose;Schema.Types.DocumentArray;",
-            "mongoose;AcceptsDiscriminator;mongoose;Schema.Types.Subdocument;",
-            "mongoose;Aggregate;mongoose;Aggregate;Member[addCursorFlag,addFields,allowDiskUse,append,collation,count,facet,graphLookup,group,hint,limit,lookup,match,model,near,option,project,read,readConcern,redact,replaceRoot,sample,search,session,skip,sort,sortByCount,unionWith,unwind].ReturnValue",
-            "mongoose;Aggregate;mongoose;AggregateStatic;Instance",
-            "mongoose;Aggregate;mongoose;Model;Member[aggregate].ReturnValue",
-            "mongoose;AggregateStatic;mongoose;;Member[Aggregate]",
-            "mongoose;Collection;mongoose;;Member[Collection]",
-            "mongoose;Collection;mongoose;Collection;Instance",
-            "mongoose;Collection;mongoose;Connection;Member[collection].ReturnValue",
-            "mongoose;Collection;mongoose;Connection;Member[collections].AnyMember",
-            "mongoose;Collection;mongoose;Document;Member[collection]",
-            "mongoose;Collection;mongoose;Model;Member[collection]",
-            "mongoose;CollectionBase;mongoose;Collection;",
-            "mongoose;CompileModelOptions;mongoose;;Member[model].Argument[3]",
-            "mongoose;CompileModelOptions;mongoose;Connection;Member[model].Argument[3]",
-            "mongoose;ConnectOptions;mongoose;;Member[connect,createConnection].WithArity[1,2,3].Argument[1]",
-            "mongoose;ConnectOptions;mongoose;Connection;Member[openUri].WithArity[1,2,3].Argument[1]",
-            "mongoose;Connection;mongoose;;Member[connection]",
-            "mongoose;Connection;mongoose;;Member[connections].ArrayElement",
-            "mongoose;Connection;mongoose;;Member[createConnection].Argument[2].TypeVar[mongoose.Callback.0]",
-            "mongoose;Connection;mongoose;;Member[createConnection].WithArity[0,1,2].ReturnValue",
-            "mongoose;Connection;mongoose;;Member[createConnection].WithArity[2].Argument[1].TypeVar[mongoose.Callback.0]",
-            "mongoose;Connection;mongoose;Collection;Argument[1]",
-            "mongoose;Connection;mongoose;CollectionBase;Member[conn]",
-            "mongoose;Connection;mongoose;CompileModelOptions;Member[connection]",
-            "mongoose;Connection;mongoose;Connection;Member[asPromise].ReturnValue.Awaited",
-            "mongoose;Connection;mongoose;Connection;Member[deleteModel,plugin,setClient,useDb].ReturnValue",
-            "mongoose;Connection;mongoose;Connection;Member[openUri].Argument[2].TypeVar[mongoose.Callback.0]",
-            "mongoose;Connection;mongoose;Connection;Member[openUri].WithArity[1,2].ReturnValue.Awaited",
-            "mongoose;Connection;mongoose;Connection;Member[openUri].WithArity[2,3].ReturnValue",
-            "mongoose;Connection;mongoose;Connection;Member[openUri].WithArity[2].Argument[1].TypeVar[mongoose.Callback.0]",
-            "mongoose;Connection;mongoose;ConnectionStatic;Instance",
-            "mongoose;Connection;mongoose;Document;Member[db]",
-            "mongoose;Connection;mongoose;Model;Member[db]",
-            "mongoose;ConnectionStatic;mongoose;;Member[Connection]",
-            "mongoose;Cursor;mongoose;Query;Member[cursor].ReturnValue",
-            "mongoose;DiscriminatorModel;mongoose;DiscriminatorSchema;TypeVar[mongoose.Schema.1]",
-            "mongoose;Document;mongoose;Document;Member[$getAllSubdocs,$getPopulatedDocs].ReturnValue.ArrayElement",
-            "mongoose;Document;mongoose;Document;Member[$inc,$parent,$set,depopulate,increment,init,overwrite,set].ReturnValue",
-            "mongoose;Document;mongoose;Document;Member[delete,deleteOne].WithArity[0,1].ReturnValue.TypeVar[mongoose.QueryWithHelpers.1]",
-            "mongoose;Document;mongoose;Document;Member[equals].Argument[0]",
-            "mongoose;Document;mongoose;Document;Member[init].Argument[2].TypeVar[mongoose.Callback.0]",
-            "mongoose;Document;mongoose;Document;Member[remove,save].WithArity[0,1].ReturnValue.Awaited",
-            "mongoose;Document;mongoose;Document;Member[replaceOne,update,updateOne].ReturnValue.TypeVar[mongoose.Query.1]",
-            "mongoose;Document;mongoose;Document;Member[save].Argument[1].TypeVar[mongoose.Callback.0]",
-            "mongoose;Document;mongoose;Document;Member[save].WithArity[1].Argument[0].TypeVar[mongoose.Callback.0]",
-            "mongoose;Document;mongoose;DocumentStatic;Instance",
-            "mongoose;Document;mongoose;Error.VersionErrorStatic;Argument[0]",
-            "mongoose;Document;mongoose;HydratedDocument;",
-            "mongoose;Document;mongoose;HydratedDocument;TypeVar[mongoose.Require_id.0]",
-            "mongoose;Document;mongoose;Model;Member[bulkSave].Argument[0].ArrayElement",
-            "mongoose;Document;mongoose;TVirtualPathFN;Argument[2]",
-            "mongoose;Document;mongoose;Types.Subdocument;",
-            "mongoose;Document;mongoose;Types.Subdocument;Member[$parent,ownerDocument,parent].ReturnValue",
-            "mongoose;Document;mongoose;VirtualType;Member[applyGetters,applySetters].Argument[1]",
-            "mongoose;DocumentStatic;mongoose;;Member[Document]",
-            "mongoose;Error.VersionErrorStatic;mongoose;;Member[Error].Member[VersionError]",
-            "mongoose;HydratedDocument;mongoose;Model;Instance",
-            "mongoose;HydratedDocument;mongoose;Model;Member[$where,count,countDocuments,deleteMany,deleteOne,distinct,estimatedDocumentCount,find,geoSearch,remove,replaceOne,update,updateMany,updateOne,where].ReturnValue.TypeVar[mongoose.QueryWithHelpers.1]",
-            "mongoose;HydratedDocument;mongoose;Model;Member[$where,find,geoSearch,where].ReturnValue.TypeVar[mongoose.QueryWithHelpers.0].ArrayElement",
-            "mongoose;HydratedDocument;mongoose;Model;Member[create,insertMany].WithArity[2].Argument[1].TypeVar[mongoose.Callback.0].ArrayElement",
-            "mongoose;HydratedDocument;mongoose;Model;Member[create].WithArity[0..,1,2].ReturnValue.Awaited.ArrayElement",
-            "mongoose;HydratedDocument;mongoose;Model;Member[create].WithArity[1].ReturnValue.Awaited",
-            "mongoose;HydratedDocument;mongoose;Model;Member[create].WithArity[2].Argument[1].TypeVar[mongoose.Callback.0]",
-            "mongoose;HydratedDocument;mongoose;Model;Member[exists].WithArity[1,2].ReturnValue.TypeVar[mongoose.QueryWithHelpers.1]",
-            "mongoose;HydratedDocument;mongoose;Model;Member[find,insertMany].WithArity[3].Argument[2].TypeVar[mongoose.Callback.0].ArrayElement",
-            "mongoose;HydratedDocument;mongoose;Model;Member[findById,findByIdAndDelete,findByIdAndRemove,findOne,findOneAndDelete,findOneAndRemove].ReturnValue.TypeVar[mongoose.QueryWithHelpers.0,mongoose.QueryWithHelpers.1]",
-            "mongoose;HydratedDocument;mongoose;Model;Member[findById,findOne].Argument[3].TypeVar[mongoose.Callback.0]",
-            "mongoose;HydratedDocument;mongoose;Model;Member[findByIdAndDelete,findByIdAndRemove,findOneAndDelete,findOneAndRemove].Argument[2].Argument[1]",
-            "mongoose;HydratedDocument;mongoose;Model;Member[findByIdAndUpdate,findOneAndReplace,findOneAndUpdate].WithArity[0,1,2,3,4].ReturnValue.TypeVar[mongoose.QueryWithHelpers.0,mongoose.QueryWithHelpers.1]",
-            "mongoose;HydratedDocument;mongoose;Model;Member[findByIdAndUpdate,findOneAndReplace,findOneAndUpdate].WithArity[3,4].ReturnValue.TypeVar[mongoose.QueryWithHelpers.0].TypeVar[mongoose.ModifyResult.0]",
-            "mongoose;HydratedDocument;mongoose;Model;Member[findByIdAndUpdate].WithArity[0,1,2,4].Argument[3].Argument[1]",
-            "mongoose;HydratedDocument;mongoose;Model;Member[findByIdAndUpdate].WithArity[3].Argument[2,3].Argument[1]",
-            "mongoose;HydratedDocument;mongoose;Model;Member[findById].WithArity[1,2,3].Argument[2].TypeVar[mongoose.Callback.0]",
-            "mongoose;HydratedDocument;mongoose;Model;Member[findOneAndReplace].WithArity[0,1,2,3,4].Argument[3].Argument[1]",
-            "mongoose;HydratedDocument;mongoose;Model;Member[findOneAndUpdate].WithArity[3,4].Argument[3].Argument[1]",
-            "mongoose;HydratedDocument;mongoose;Model;Member[findOne].WithArity[0,1,2].Argument[1,2].TypeVar[mongoose.Callback.0]",
-            "mongoose;HydratedDocument;mongoose;Model;Member[findOne].WithArity[3].Argument[2].TypeVar[mongoose.Callback.0]",
-            "mongoose;HydratedDocument;mongoose;Model;Member[find].Argument[3].TypeVar[mongoose.Callback.0].ArrayElement",
-            "mongoose;HydratedDocument;mongoose;Model;Member[find].WithArity[0].Argument[0].TypeVar[mongoose.Callback.0].ArrayElement",
-            "mongoose;HydratedDocument;mongoose;Model;Member[find].WithArity[1].Argument[0,1,2].TypeVar[mongoose.Callback.0].ArrayElement",
-            "mongoose;HydratedDocument;mongoose;Model;Member[find].WithArity[2].Argument[1,2].TypeVar[mongoose.Callback.0].ArrayElement",
-            "mongoose;HydratedDocument;mongoose;Model;Member[geoSearch].Argument[2].TypeVar[mongoose.Callback.0].ArrayElement",
-            "mongoose;HydratedDocument;mongoose;Model;Member[hydrate].ReturnValue",
-            "mongoose;HydratedDocument;mongoose;Model;Member[init].ReturnValue.Awaited",
-            "mongoose;HydratedDocument;mongoose;Model;Member[insertMany].WithArity[1,2].ReturnValue.Awaited.ArrayElement",
-            "mongoose;HydratedDocument;mongoose;Model;Member[populate].WithArity[2,3].Argument[2].TypeVar[mongoose.Callback.0]",
-            "mongoose;HydratedDocument;mongoose;Model;Member[populate].WithArity[2,3].Argument[2].TypeVar[mongoose.Callback.0].ArrayElement",
-            "mongoose;HydratedDocument;mongoose;Model;Member[populate].WithArity[2,3].ReturnValue.Awaited",
-            "mongoose;HydratedDocument;mongoose;Model;Member[populate].WithArity[2,3].ReturnValue.Awaited.ArrayElement",
-            "mongoose;HydratedDocument;mongoose;TVirtualPathFN;Argument[1].TypeVar[mongoose.VirtualType.0]",
-            "mongoose;HydratedDocument;mongoose;VirtualPathFunctions;Member[options].TypeVar[mongoose.VirtualTypeOptions.0]",
-            "mongoose;InsertManyOptions;mongoose;Model;Member[insertMany].WithArity[2,3].Argument[1]",
-            "mongoose;Model;mongoose;;Member[Model]",
-            "mongoose;Model;mongoose;;Member[model].ReturnValue",
-            "mongoose;Model;mongoose;AcceptsDiscriminator;Member[discriminator].WithArity[2,3].ReturnValue",
-            "mongoose;Model;mongoose;Aggregate;Member[model].Argument[0]",
-            "mongoose;Model;mongoose;Connection;Member[model].WithArity[1,2,3,4].ReturnValue",
-            "mongoose;Model;mongoose;Connection;Member[models].AnyMember",
-            "mongoose;Model;mongoose;DiscriminatorModel;",
-            "mongoose;Model;mongoose;Document;Member[$model].ReturnValue",
-            "mongoose;Model;mongoose;Document;Member[populate].Argument[2]",
-            "mongoose;Model;mongoose;Model;Member[discriminators].AnyMember",
-            "mongoose;Model;mongoose;Models;AnyMember",
-            "mongoose;Model;mongoose;PopulateOptions;Member[model]",
-            "mongoose;Model;mongoose;Query;Member[cast].Argument[0]",
-            "mongoose;Model;mongoose;Query;Member[populate].Argument[2]",
-            "mongoose;Model;mongoose;Schema.Types.Array;Member[discriminator].WithArity[2,3].ReturnValue",
-            "mongoose;Model;mongoose;Schema.Types.DocumentArray;Member[discriminator].WithArity[2,3].ReturnValue",
-            "mongoose;Model;mongoose;Schema.Types.Subdocument;Member[discriminator].WithArity[2,3].ReturnValue",
-            "mongoose;Model;mongoose;SchemaStatic;Instance.TypeVar[mongoose.Schema.1]",
-            "mongoose;Models;mongoose;;Member[models]",
-            "mongoose;PopulateOption;mongoose;InsertManyOptions;",
-            "mongoose;PopulateOption;mongoose;QueryOptions;",
-            "mongoose;PopulateOptions;mongoose;Document;Member[populate].Argument[4]",
-            "mongoose;PopulateOptions;mongoose;Document;Member[populate].WithArity[1,2].Argument[0]",
-            "mongoose;PopulateOptions;mongoose;Document;Member[populate].WithArity[1,2].Argument[0].ArrayElement",
-            "mongoose;PopulateOptions;mongoose;Model;Member[populate].Argument[1]",
-            "mongoose;PopulateOptions;mongoose;Model;Member[populate].Argument[1].ArrayElement",
-            "mongoose;PopulateOptions;mongoose;PopulateOption;Member[populate]",
-            "mongoose;PopulateOptions;mongoose;PopulateOption;Member[populate].ArrayElement",
-            "mongoose;PopulateOptions;mongoose;PopulateOptions;Member[populate]",
-            "mongoose;PopulateOptions;mongoose;PopulateOptions;Member[populate].ArrayElement",
-            "mongoose;PopulateOptions;mongoose;Query;Member[populate].WithArity[1].Argument[0]",
-            "mongoose;PopulateOptions;mongoose;Query;Member[populate].WithArity[1].Argument[0].ArrayElement",
-            "mongoose;Query;mongoose;Document;Member[replaceOne,update,updateOne].ReturnValue",
-            "mongoose;Query;mongoose;HydratedDocument;TypeVar[mongoose.Require_id.0]",
-            "mongoose;Query;mongoose;Query;Member[all,allowDiskUse,and,batchSize,box,circle,clone,collation,comment,elemMatch,equals,exists,explain,geometry,gt,gte,hint,in,intersects,j,limit,lt,lte,maxDistance,maxScan,maxTimeMS,merge,mod,ne,near,nin,nor,or,polygon,read,readConcern,regex,remove,select,session,set,setOptions,size,skip,slice,snapshot,sort,tailable,w,where,within,wtimeout].ReturnValue",
-            "mongoose;Query;mongoose;Query;Member[error].WithArity[1].ReturnValue",
-            "mongoose;Query;mongoose;Query;Member[merge].Argument[0]",
-            "mongoose;Query;mongoose;QueryStatic;Instance",
-            "mongoose;Query;mongoose;QueryWithHelpers;",
-            "mongoose;QueryOptions;mongoose;Document;Member[delete,deleteOne,remove].WithArity[0,1,2].Argument[0]",
-            "mongoose;QueryOptions;mongoose;Document;Member[replaceOne,update,updateOne].Argument[1]",
-            "mongoose;QueryOptions;mongoose;Model;Member[countDocuments,findByIdAndDelete,findByIdAndRemove,findOneAndDelete,findOneAndRemove].Argument[1]",
-            "mongoose;QueryOptions;mongoose;Model;Member[deleteMany,deleteOne].WithArity[0,1,2,3].Argument[1]",
-            "mongoose;QueryOptions;mongoose;Model;Member[estimatedDocumentCount].Argument[0]",
-            "mongoose;QueryOptions;mongoose;Model;Member[find,findById].WithArity[1,2,3,4].Argument[2]",
-            "mongoose;QueryOptions;mongoose;Model;Member[findByIdAndUpdate,findOne,findOneAndReplace,findOneAndUpdate].WithArity[0,1,2,3,4].Argument[2]",
-            "mongoose;QueryOptions;mongoose;Model;Member[replaceOne,update,updateMany,updateOne].Argument[2]",
-            "mongoose;QueryOptions;mongoose;PopulateOptions;Member[options]",
-            "mongoose;QueryOptions;mongoose;Query;Member[countDocuments,findByIdAndDelete,findOneAndDelete,findOneAndRemove].Argument[1]",
-            "mongoose;QueryOptions;mongoose;Query;Member[cursor,estimatedDocumentCount,setOptions].Argument[0]",
-            "mongoose;QueryOptions;mongoose;Query;Member[cursor].ReturnValue.TypeVar[mongoose.Cursor.1]",
-            "mongoose;QueryOptions;mongoose;Query;Member[deleteMany,deleteOne].WithArity[0,1,2,3].Argument[1]",
-            "mongoose;QueryOptions;mongoose;Query;Member[findByIdAndUpdate,findOne,findOneAndUpdate].WithArity[0,1,2,3,4].Argument[2]",
-            "mongoose;QueryOptions;mongoose;Query;Member[find].WithArity[1,2,3,4].Argument[2]",
-            "mongoose;QueryOptions;mongoose;Query;Member[getOptions].ReturnValue",
-            "mongoose;QueryOptions;mongoose;Query;Member[replaceOne,update,updateMany,updateOne].Argument[2]",
-            "mongoose;QueryOptions;mongoose;VirtualTypeOptions;Member[options]",
-            "mongoose;QueryStatic;mongoose;;Member[Query]",
-            "mongoose;QueryWithHelpers;mongoose;Document;Member[delete,deleteOne].WithArity[0,1].ReturnValue",
-            "mongoose;QueryWithHelpers;mongoose;Model;Member[$where,count,countDocuments,deleteMany,deleteOne,distinct,estimatedDocumentCount,find,findById,findByIdAndDelete,findByIdAndRemove,findOne,findOneAndDelete,findOneAndRemove,geoSearch,remove,replaceOne,update,updateMany,updateOne,where].ReturnValue",
-            "mongoose;QueryWithHelpers;mongoose;Model;Member[exists].WithArity[1,2].ReturnValue",
-            "mongoose;QueryWithHelpers;mongoose;Model;Member[findByIdAndUpdate,findOneAndReplace,findOneAndUpdate].WithArity[0,1,2,3,4].ReturnValue",
-            "mongoose;QueryWithHelpers;mongoose;Query;Member[$where,count,countDocuments,deleteMany,deleteOne,distinct,estimatedDocumentCount,find,findByIdAndDelete,findOne,findOneAndDelete,findOneAndRemove,lean,orFail,populate,replaceOne,transform,update,updateMany,updateOne].ReturnValue",
-            "mongoose;QueryWithHelpers;mongoose;Query;Member[findByIdAndUpdate,findOneAndUpdate].WithArity[0,1,2,3,4].ReturnValue",
-            "mongoose;QueryWithHelpers;mongoose;Query;Member[toConstructor].ReturnValue.Instance",
-            "mongoose;Schema.Types.Array;mongoose;Schema.Types.Array;Member[enum].ReturnValue",
-            "mongoose;Schema.Types.Array;mongoose;Schema.Types.ArrayStatic;Instance",
-            "mongoose;Schema.Types.ArrayStatic;mongoose;;Member[Schema].Member[Types].Member[Array]",
-            "mongoose;Schema.Types.DocumentArray;mongoose;Schema.Types.DocumentArrayStatic;Instance",
-            "mongoose;Schema.Types.DocumentArrayStatic;mongoose;;Member[Schema].Member[Types].Member[DocumentArray]",
-            "mongoose;Schema.Types.Subdocument;mongoose;Schema.Types.SubdocumentStatic;Instance",
-            "mongoose;Schema.Types.SubdocumentStatic;mongoose;;Member[Schema].Member[Types].Member[Subdocument]",
-            "mongoose;Schema.Types.SubdocumentStatic;mongoose;Schema.Types.DocumentArray;Member[caster]",
-            "mongoose;SchemaStatic;mongoose;;Member[Schema]",
-            "mongoose;SessionOperation;mongoose;Aggregate;",
-            "mongoose;SessionOperation;mongoose;Query;",
-            "mongoose;TVirtualPathFN;mongoose;VirtualPathFunctions;Member[get,set]",
-            "mongoose;Types.Array;mongoose;Types.DocumentArray;",
-            "mongoose;Types.ArraySubdocument;mongoose;Types.ArraySubdocumentStatic;Instance",
-            "mongoose;Types.ArraySubdocumentStatic;mongoose;;Member[Types].Member[ArraySubdocument]",
-            "mongoose;Types.DocumentArray;mongoose/inferschematype;ResolvePathType;TypeVar[mongoose.IfEquals.3]",
-            "mongoose;Types.DocumentArray;mongoose;Types.ArraySubdocument;Member[parentArray].ReturnValue",
-            "mongoose;Types.DocumentArray;mongoose;Types.DocumentArrayStatic;Instance",
-            "mongoose;Types.DocumentArrayStatic;mongoose;;Member[Types].Member[DocumentArray]",
-            "mongoose;Types.ObjectId;mongoose/inferschematype;ResolvePathType;",
-            "mongoose;Types.Subdocument;mongoose;Types.ArraySubdocument;",
-            "mongoose;Types.Subdocument;mongoose;Types.DocumentArray;Member[create,id].ReturnValue",
-            "mongoose;Types.Subdocument;mongoose;Types.DocumentArray;TypeVar[mongoose.Types.Array.0]",
-            "mongoose;Types.Subdocument;mongoose;Types.SubdocumentStatic;Instance",
-            "mongoose;Types.SubdocumentStatic;mongoose;;Member[Types].Member[Subdocument]",
-            "mongoose;VirtualType;mongoose;TVirtualPathFN;Argument[1]",
-            "mongoose;VirtualType;mongoose;VirtualType;Member[get,set].Argument[0].Argument[1]",
-            "mongoose;VirtualType;mongoose;VirtualType;Member[get,set].ReturnValue",
-            "mongoose;VirtualType;mongoose;VirtualTypeStatic;Instance",
-            "mongoose;VirtualTypeOptions;mongoose;VirtualPathFunctions;Member[options]",
-            "mongoose;VirtualTypeStatic;mongoose;;Member[VirtualType]"
+            "mongodb.AbstractCursor;mongodb.FindCursor;",
+            "mongodb.AbstractCursor;mongodb.ListCollectionsCursor;",
+            "mongodb.AbstractCursor;mongodb.ListIndexesCursor;",
+            "mongodb.AbstractCursorOptions;mongodb.AggregationCursorOptions;",
+            "mongodb.AbstractCursorOptions;mongodb/mongodb.AbstractCursorOptions;",
+            "mongodb.AbstractCursorOptions;mongoose.mongodb.AbstractCursorOptions;",
+            "mongodb.AddUserOptions;mongodb.Admin;Member[addUser].Argument[1,2]",
+            "mongodb.AddUserOptions;mongodb.Db;Member[addUser].Argument[1,2]",
+            "mongodb.AddUserOptions;mongodb/mongodb.AddUserOptions;",
+            "mongodb.AddUserOptions;mongoose.mongodb.AddUserOptions;",
+            "mongodb.Admin;mongodb.AdminStatic;Instance",
+            "mongodb.Admin;mongodb.Db;Member[admin].ReturnValue",
+            "mongodb.Admin;mongodb/mongodb.Admin;",
+            "mongodb.Admin;mongoose.mongodb.Admin;",
+            "mongodb.AdminStatic;mongodb/mongodb.AdminStatic;",
+            "mongodb.AdminStatic;mongodb;Member[Admin]",
+            "mongodb.AdminStatic;mongoose.mongodb.AdminStatic;",
+            "mongodb.AggregateOptions;mongodb.AggregationCursorOptions;",
+            "mongodb.AggregateOptions;mongodb.ChangeStreamOptions;",
+            "mongodb.AggregateOptions;mongodb.Collection;Member[aggregate].Argument[1]",
+            "mongodb.AggregateOptions;mongodb.CountDocumentsOptions;",
+            "mongodb.AggregateOptions;mongodb.Db;Member[aggregate].Argument[1]",
+            "mongodb.AggregateOptions;mongodb/mongodb.AggregateOptions;",
+            "mongodb.AggregateOptions;mongoose.mongodb.AggregateOptions;",
+            "mongodb.AggregationCursorOptions;mongodb/mongodb.AggregationCursorOptions;",
+            "mongodb.AggregationCursorOptions;mongoose.mongodb.AggregationCursorOptions;",
+            "mongodb.AnyBulkWriteOperation;mongodb.BulkOperationBase;Member[raw].Argument[0]",
+            "mongodb.AnyBulkWriteOperation;mongodb.Collection;Member[bulkWrite].Argument[0].ArrayElement",
+            "mongodb.AnyBulkWriteOperation;mongodb/mongodb.AnyBulkWriteOperation;",
+            "mongodb.AnyBulkWriteOperation;mongoose.mongodb.AnyBulkWriteOperation;",
+            "mongodb.Auth;mongodb.MongoClientOptions;Member[auth]",
+            "mongodb.Auth;mongodb/mongodb.Auth;",
+            "mongodb.Auth;mongoose.mongodb.Auth;",
+            "mongodb.AutoEncrypter;mongodb.AutoEncrypter;Instance",
+            "mongodb.AutoEncrypter;mongodb.ConnectionOptions;Member[autoEncrypter]",
+            "mongodb.AutoEncrypter;mongodb.MongoClient;Member[autoEncrypter]",
+            "mongodb.AutoEncrypter;mongodb.MongoOptions;Member[autoEncrypter]",
+            "mongodb.AutoEncrypter;mongodb/mongodb.AutoEncrypter;",
+            "mongodb.AutoEncrypter;mongoose.mongodb.AutoEncrypter;",
+            "mongodb.AutoEncryptionOptions;mongodb.AutoEncrypter;Argument[1]",
+            "mongodb.AutoEncryptionOptions;mongodb.MongoClientOptions;Member[autoEncryption]",
+            "mongodb.AutoEncryptionOptions;mongodb/mongodb.AutoEncryptionOptions;",
+            "mongodb.AutoEncryptionOptions;mongoose.mongodb.AutoEncryptionOptions;",
+            "mongodb.BulkOperationBase;mongodb.BulkOperationBase;Member[addToOperationsList,insert,raw].ReturnValue",
+            "mongodb.BulkOperationBase;mongodb.BulkOperationBaseStatic;Instance",
+            "mongodb.BulkOperationBase;mongodb.FindOperators;Member[bulkOperation]",
+            "mongodb.BulkOperationBase;mongodb.FindOperators;Member[delete,deleteOne,replaceOne,update,updateOne].ReturnValue",
+            "mongodb.BulkOperationBase;mongodb.OrderedBulkOperation;",
+            "mongodb.BulkOperationBase;mongodb.UnorderedBulkOperation;",
+            "mongodb.BulkOperationBase;mongodb/mongodb.BulkOperationBase;",
+            "mongodb.BulkOperationBase;mongoose.mongodb.BulkOperationBase;",
+            "mongodb.BulkOperationBaseStatic;mongodb/mongodb.BulkOperationBaseStatic;",
+            "mongodb.BulkOperationBaseStatic;mongodb;Member[BulkOperationBase]",
+            "mongodb.BulkOperationBaseStatic;mongoose.mongodb.BulkOperationBaseStatic;",
+            "mongodb.BulkWriteOptions;mongodb.BulkOperationBase;Member[execute].WithArity[0,1,2].Argument[0]",
+            "mongodb.BulkWriteOptions;mongodb.Collection;Member[bulkWrite,insert,insertMany].Argument[1]",
+            "mongodb.BulkWriteOptions;mongodb.Collection;Member[initializeOrderedBulkOp,initializeUnorderedBulkOp].Argument[0]",
+            "mongodb.BulkWriteOptions;mongodb.OrderedBulkOperationStatic;Argument[1]",
+            "mongodb.BulkWriteOptions;mongodb.UnorderedBulkOperationStatic;Argument[1]",
+            "mongodb.BulkWriteOptions;mongodb/mongodb.BulkWriteOptions;",
+            "mongodb.BulkWriteOptions;mongoose.mongodb.BulkWriteOptions;",
+            "mongodb.ChangeStream;mongodb.ChangeStreamStatic;Instance",
+            "mongodb.ChangeStream;mongodb.Collection;Member[watch].ReturnValue",
+            "mongodb.ChangeStream;mongodb.Db;Member[watch].ReturnValue",
+            "mongodb.ChangeStream;mongodb.MongoClient;Member[watch].ReturnValue",
+            "mongodb.ChangeStream;mongodb/mongodb.ChangeStream;",
+            "mongodb.ChangeStream;mongoose.mongodb.ChangeStream;",
+            "mongodb.ChangeStreamOptions;mongodb.ChangeStream;Member[options]",
+            "mongodb.ChangeStreamOptions;mongodb.Collection;Member[watch].Argument[1]",
+            "mongodb.ChangeStreamOptions;mongodb.Db;Member[watch].Argument[1]",
+            "mongodb.ChangeStreamOptions;mongodb.MongoClient;Member[watch].Argument[1]",
+            "mongodb.ChangeStreamOptions;mongodb/mongodb.ChangeStreamOptions;",
+            "mongodb.ChangeStreamOptions;mongoose.mongodb.ChangeStreamOptions;",
+            "mongodb.ChangeStreamStatic;mongodb/mongodb.ChangeStreamStatic;",
+            "mongodb.ChangeStreamStatic;mongodb;Member[ChangeStream]",
+            "mongodb.ChangeStreamStatic;mongoose.mongodb.ChangeStreamStatic;",
+            "mongodb.ClientSession;mongodb.AbstractCursorOptions;Member[session]",
+            "mongodb.ClientSession;mongodb.ClientSession;Member[equals].Argument[0]",
+            "mongodb.ClientSession;mongodb.ClientSessionEvents;Member[ended].Argument[0]",
+            "mongodb.ClientSession;mongodb.ClientSessionStatic;Instance",
+            "mongodb.ClientSession;mongodb.IndexInformationOptions;Member[session]",
+            "mongodb.ClientSession;mongodb.MongoClient;Member[startSession].ReturnValue",
+            "mongodb.ClientSession;mongodb.OperationOptions;Member[session]",
+            "mongodb.ClientSession;mongodb.ReadPreferenceFromOptions;Member[session]",
+            "mongodb.ClientSession;mongodb.SelectServerOptions;Member[session]",
+            "mongodb.ClientSession;mongodb.WithSessionCallback;Argument[0]",
+            "mongodb.ClientSession;mongodb.WithTransactionCallback;Argument[0]",
+            "mongodb.ClientSession;mongodb/mongodb.ClientSession;",
+            "mongodb.ClientSession;mongoose.mongodb.ClientSession;",
+            "mongodb.ClientSessionEvents;mongodb/mongodb.ClientSessionEvents;",
+            "mongodb.ClientSessionEvents;mongoose.mongodb.ClientSessionEvents;",
+            "mongodb.ClientSessionOptions;mongodb.MongoClient;Member[startSession].Argument[0]",
+            "mongodb.ClientSessionOptions;mongodb.MongoClient;Member[withSession].WithArity[2].Argument[0]",
+            "mongodb.ClientSessionOptions;mongodb/mongodb.ClientSessionOptions;",
+            "mongodb.ClientSessionOptions;mongoose.mongodb.ClientSessionOptions;",
+            "mongodb.ClientSessionStatic;mongodb/mongodb.ClientSessionStatic;",
+            "mongodb.ClientSessionStatic;mongodb;Member[ClientSession]",
+            "mongodb.ClientSessionStatic;mongoose.mongodb.ClientSessionStatic;",
+            "mongodb.CollStatsOptions;mongodb.Collection;Member[stats].Argument[0]",
+            "mongodb.CollStatsOptions;mongodb/mongodb.CollStatsOptions;",
+            "mongodb.CollStatsOptions;mongoose.mongodb.CollStatsOptions;",
+            "mongodb.Collection;mongodb.ChangeStream;Member[parent]",
+            "mongodb.Collection;mongodb.Collection;Member[rename].Argument[1,2].TypeVar[mongodb.Callback.0]",
+            "mongodb.Collection;mongodb.Collection;Member[rename].WithArity[1,2].ReturnValue.Awaited",
+            "mongodb.Collection;mongodb.CollectionStatic;Instance",
+            "mongodb.Collection;mongodb.Db;Member[collection].ReturnValue",
+            "mongodb.Collection;mongodb.Db;Member[collections].Argument[0,1].TypeVar[mongodb.Callback.0].ArrayElement",
+            "mongodb.Collection;mongodb.Db;Member[collections].WithArity[0,1].ReturnValue.Awaited.ArrayElement",
+            "mongodb.Collection;mongodb.Db;Member[createCollection].Argument[2].TypeVar[mongodb.Callback.0]",
+            "mongodb.Collection;mongodb.Db;Member[createCollection].WithArity[1,2].ReturnValue.Awaited",
+            "mongodb.Collection;mongodb.Db;Member[createCollection].WithArity[2].Argument[1].TypeVar[mongodb.Callback.0]",
+            "mongodb.Collection;mongodb.Db;Member[renameCollection].Argument[2,3].TypeVar[mongodb.Callback.0]",
+            "mongodb.Collection;mongodb.Db;Member[renameCollection].WithArity[2,3].ReturnValue.Awaited",
+            "mongodb.Collection;mongodb.GridFSBucketWriteStream;Member[chunks,files]",
+            "mongodb.Collection;mongodb.ListIndexesCursor;Member[parent]",
+            "mongodb.Collection;mongodb.ListIndexesCursorStatic;Argument[0]",
+            "mongodb.Collection;mongodb.OrderedBulkOperationStatic;Argument[0]",
+            "mongodb.Collection;mongodb.UnorderedBulkOperationStatic;Argument[0]",
+            "mongodb.Collection;mongodb/mongodb.Collection;",
+            "mongodb.Collection;mongoose.mongodb.Collection;",
+            "mongodb.CollectionStatic;mongodb/mongodb.CollectionStatic;",
+            "mongodb.CollectionStatic;mongodb;Member[Collection]",
+            "mongodb.CollectionStatic;mongoose.mongodb.CollectionStatic;",
+            "mongodb.CommandOperationOptions;mongodb.AddUserOptions;",
+            "mongodb.CommandOperationOptions;mongodb.Admin;Member[buildInfo,ping,replSetGetStatus,serverInfo,serverStatus].Argument[0]",
+            "mongodb.CommandOperationOptions;mongodb.AggregateOptions;",
+            "mongodb.CommandOperationOptions;mongodb.BulkWriteOptions;",
+            "mongodb.CommandOperationOptions;mongodb.CollStatsOptions;",
+            "mongodb.CommandOperationOptions;mongodb.CountOptions;",
+            "mongodb.CommandOperationOptions;mongodb.CreateCollectionOptions;",
+            "mongodb.CommandOperationOptions;mongodb.CreateIndexesOptions;",
+            "mongodb.CommandOperationOptions;mongodb.DbStatsOptions;",
+            "mongodb.CommandOperationOptions;mongodb.DeleteOptions;",
+            "mongodb.CommandOperationOptions;mongodb.DistinctOptions;",
+            "mongodb.CommandOperationOptions;mongodb.DropCollectionOptions;",
+            "mongodb.CommandOperationOptions;mongodb.DropDatabaseOptions;",
+            "mongodb.CommandOperationOptions;mongodb.DropIndexesOptions;",
+            "mongodb.CommandOperationOptions;mongodb.EstimatedDocumentCountOptions;",
+            "mongodb.CommandOperationOptions;mongodb.EvalOptions;",
+            "mongodb.CommandOperationOptions;mongodb.FindOneAndDeleteOptions;",
+            "mongodb.CommandOperationOptions;mongodb.FindOneAndReplaceOptions;",
+            "mongodb.CommandOperationOptions;mongodb.FindOneAndUpdateOptions;",
+            "mongodb.CommandOperationOptions;mongodb.FindOptions;",
+            "mongodb.CommandOperationOptions;mongodb.InsertOneOptions;",
+            "mongodb.CommandOperationOptions;mongodb.ListCollectionsOptions;",
+            "mongodb.CommandOperationOptions;mongodb.ListDatabasesOptions;",
+            "mongodb.CommandOperationOptions;mongodb.ListIndexesOptions;",
+            "mongodb.CommandOperationOptions;mongodb.MapReduceOptions;",
+            "mongodb.CommandOperationOptions;mongodb.ProfilingLevelOptions;",
+            "mongodb.CommandOperationOptions;mongodb.RemoveUserOptions;",
+            "mongodb.CommandOperationOptions;mongodb.RenameOptions;",
+            "mongodb.CommandOperationOptions;mongodb.ReplaceOptions;",
+            "mongodb.CommandOperationOptions;mongodb.RunCommandOptions;",
+            "mongodb.CommandOperationOptions;mongodb.SetProfilingLevelOptions;",
+            "mongodb.CommandOperationOptions;mongodb.TransactionOptions;",
+            "mongodb.CommandOperationOptions;mongodb.UpdateOptions;",
+            "mongodb.CommandOperationOptions;mongodb.ValidateCollectionOptions;",
+            "mongodb.CommandOperationOptions;mongodb/mongodb.CommandOperationOptions;",
+            "mongodb.CommandOperationOptions;mongoose.mongodb.CommandOperationOptions;",
+            "mongodb.ConnectionOptions;mongodb/mongodb.ConnectionOptions;",
+            "mongodb.ConnectionOptions;mongoose.mongodb.ConnectionOptions;",
+            "mongodb.CountDocumentsOptions;mongodb.Collection;Member[countDocuments].Argument[1]",
+            "mongodb.CountDocumentsOptions;mongodb/mongodb.CountDocumentsOptions;",
+            "mongodb.CountDocumentsOptions;mongoose.mongodb.CountDocumentsOptions;",
+            "mongodb.CountOptions;mongodb.Collection;Member[count].Argument[1]",
+            "mongodb.CountOptions;mongodb.FindCursor;Member[count].Argument[0]",
+            "mongodb.CountOptions;mongodb/mongodb.CountOptions;",
+            "mongodb.CountOptions;mongoose.mongodb.CountOptions;",
+            "mongodb.CreateCollectionOptions;mongodb.Db;Member[createCollection].WithArity[1,2,3].Argument[1]",
+            "mongodb.CreateCollectionOptions;mongodb/mongodb.CreateCollectionOptions;",
+            "mongodb.CreateCollectionOptions;mongoose.mongodb.CreateCollectionOptions;",
+            "mongodb.CreateIndexesOptions;mongodb.Collection;Member[createIndex,createIndexes].Argument[1]",
+            "mongodb.CreateIndexesOptions;mongodb.Db;Member[createIndex].Argument[2]",
+            "mongodb.CreateIndexesOptions;mongodb/mongodb.CreateIndexesOptions;",
+            "mongodb.CreateIndexesOptions;mongoose.mongodb.CreateIndexesOptions;",
+            "mongodb.Db;mongodb.ChangeStream;Member[parent]",
+            "mongodb.Db;mongodb.DbStatic;Instance",
+            "mongodb.Db;mongodb.GridFSBucketStatic;Argument[0]",
+            "mongodb.Db;mongodb.ListCollectionsCursor;Member[parent]",
+            "mongodb.Db;mongodb.ListCollectionsCursorStatic;Argument[0]",
+            "mongodb.Db;mongodb.MongoClient;Member[db].ReturnValue",
+            "mongodb.Db;mongodb/mongodb.Db;",
+            "mongodb.Db;mongoose.mongodb.Db;",
+            "mongodb.DbStatic;mongodb/mongodb.DbStatic;",
+            "mongodb.DbStatic;mongodb;Member[Db]",
+            "mongodb.DbStatic;mongoose.mongodb.DbStatic;",
+            "mongodb.DbStatsOptions;mongodb.Db;Member[stats].Argument[0]",
+            "mongodb.DbStatsOptions;mongodb/mongodb.DbStatsOptions;",
+            "mongodb.DbStatsOptions;mongoose.mongodb.DbStatsOptions;",
+            "mongodb.DeleteManyModel;mongodb.AnyBulkWriteOperation;Member[deleteMany]",
+            "mongodb.DeleteManyModel;mongodb/mongodb.DeleteManyModel;",
+            "mongodb.DeleteManyModel;mongoose.mongodb.DeleteManyModel;",
+            "mongodb.DeleteOneModel;mongodb.AnyBulkWriteOperation;Member[deleteOne]",
+            "mongodb.DeleteOneModel;mongodb/mongodb.DeleteOneModel;",
+            "mongodb.DeleteOneModel;mongoose.mongodb.DeleteOneModel;",
+            "mongodb.DeleteOptions;mongodb.Collection;Member[deleteMany,deleteOne,remove].Argument[1]",
+            "mongodb.DeleteOptions;mongodb/mongodb.DeleteOptions;",
+            "mongodb.DeleteOptions;mongoose.mongodb.DeleteOptions;",
+            "mongodb.DistinctOptions;mongodb.Collection;Member[distinct].Argument[2]",
+            "mongodb.DistinctOptions;mongodb/mongodb.DistinctOptions;",
+            "mongodb.DistinctOptions;mongoose.mongodb.DistinctOptions;",
+            "mongodb.DropCollectionOptions;mongodb.Collection;Member[drop].Argument[0]",
+            "mongodb.DropCollectionOptions;mongodb.Db;Member[dropCollection].Argument[1]",
+            "mongodb.DropCollectionOptions;mongodb/mongodb.DropCollectionOptions;",
+            "mongodb.DropCollectionOptions;mongoose.mongodb.DropCollectionOptions;",
+            "mongodb.DropDatabaseOptions;mongodb.Db;Member[dropDatabase].Argument[0]",
+            "mongodb.DropDatabaseOptions;mongodb/mongodb.DropDatabaseOptions;",
+            "mongodb.DropDatabaseOptions;mongoose.mongodb.DropDatabaseOptions;",
+            "mongodb.DropIndexesOptions;mongodb.Collection;Member[dropIndex].Argument[1]",
+            "mongodb.DropIndexesOptions;mongodb.Collection;Member[dropIndexes].Argument[0]",
+            "mongodb.DropIndexesOptions;mongodb/mongodb.DropIndexesOptions;",
+            "mongodb.DropIndexesOptions;mongoose.mongodb.DropIndexesOptions;",
+            "mongodb.EstimatedDocumentCountOptions;mongodb.Collection;Member[estimatedDocumentCount].Argument[0]",
+            "mongodb.EstimatedDocumentCountOptions;mongodb/mongodb.EstimatedDocumentCountOptions;",
+            "mongodb.EstimatedDocumentCountOptions;mongoose.mongodb.EstimatedDocumentCountOptions;",
+            "mongodb.EvalOptions;mongodb/mongodb.EvalOptions;",
+            "mongodb.EvalOptions;mongoose.mongodb.EvalOptions;",
+            "mongodb.FindCursor;mongodb.Collection;Member[find].WithArity[0,1,2].ReturnValue",
+            "mongodb.FindCursor;mongodb.FindCursor;Member[addQueryModifier,allowDiskUse,clone,collation,comment,filter,hint,limit,map,max,maxAwaitTimeMS,maxTimeMS,min,project,returnKey,showRecordId,skip,sort].ReturnValue",
+            "mongodb.FindCursor;mongodb.FindCursorStatic;Instance",
+            "mongodb.FindCursor;mongodb.GridFSBucket;Member[find].ReturnValue",
+            "mongodb.FindCursor;mongodb/mongodb.FindCursor;",
+            "mongodb.FindCursor;mongoose.mongodb.FindCursor;",
+            "mongodb.FindCursorStatic;mongodb/mongodb.FindCursorStatic;",
+            "mongodb.FindCursorStatic;mongodb;Member[FindCursor]",
+            "mongodb.FindCursorStatic;mongoose.mongodb.FindCursorStatic;",
+            "mongodb.FindOneAndDeleteOptions;mongodb.Collection;Member[findOneAndDelete].Argument[1]",
+            "mongodb.FindOneAndDeleteOptions;mongodb/mongodb.FindOneAndDeleteOptions;",
+            "mongodb.FindOneAndDeleteOptions;mongoose.mongodb.FindOneAndDeleteOptions;",
+            "mongodb.FindOneAndReplaceOptions;mongodb.Collection;Member[findOneAndReplace].Argument[2]",
+            "mongodb.FindOneAndReplaceOptions;mongodb/mongodb.FindOneAndReplaceOptions;",
+            "mongodb.FindOneAndReplaceOptions;mongoose.mongodb.FindOneAndReplaceOptions;",
+            "mongodb.FindOneAndUpdateOptions;mongodb.Collection;Member[findOneAndUpdate].Argument[2]",
+            "mongodb.FindOneAndUpdateOptions;mongodb/mongodb.FindOneAndUpdateOptions;",
+            "mongodb.FindOneAndUpdateOptions;mongoose.mongodb.FindOneAndUpdateOptions;",
+            "mongodb.FindOperators;mongodb.BulkOperationBase;Member[find].ReturnValue",
+            "mongodb.FindOperators;mongodb.FindOperators;Member[arrayFilters,collation,upsert].ReturnValue",
+            "mongodb.FindOperators;mongodb.FindOperatorsStatic;Instance",
+            "mongodb.FindOperators;mongodb/mongodb.FindOperators;",
+            "mongodb.FindOperators;mongoose.mongodb.FindOperators;",
+            "mongodb.FindOperatorsStatic;mongodb/mongodb.FindOperatorsStatic;",
+            "mongodb.FindOperatorsStatic;mongodb;Member[FindOperators]",
+            "mongodb.FindOperatorsStatic;mongoose.mongodb.FindOperatorsStatic;",
+            "mongodb.FindOptions;mongodb.Collection;Member[find,findOne].Argument[1]",
+            "mongodb.FindOptions;mongodb.GridFSBucket;Member[find].Argument[1]",
+            "mongodb.FindOptions;mongodb/mongodb.FindOptions;",
+            "mongodb.FindOptions;mongoose.mongodb.FindOptions;",
+            "mongodb.GridFSBucket;mongodb.GridFSBucketStatic;Instance",
+            "mongodb.GridFSBucket;mongodb.GridFSBucketWriteStream;Member[bucket]",
+            "mongodb.GridFSBucket;mongodb/mongodb.GridFSBucket;",
+            "mongodb.GridFSBucket;mongoose.mongodb.GridFSBucket;",
+            "mongodb.GridFSBucketStatic;mongodb/mongodb.GridFSBucketStatic;",
+            "mongodb.GridFSBucketStatic;mongodb;Member[GridFSBucket]",
+            "mongodb.GridFSBucketStatic;mongoose.mongodb.GridFSBucketStatic;",
+            "mongodb.GridFSBucketWriteStream;mongodb.GridFSBucket;Member[openUploadStream,openUploadStreamWithId].ReturnValue",
+            "mongodb.GridFSBucketWriteStream;mongodb.GridFSBucketWriteStream;Member[end].ReturnValue",
+            "mongodb.GridFSBucketWriteStream;mongodb.GridFSBucketWriteStreamStatic;Instance",
+            "mongodb.GridFSBucketWriteStream;mongodb/mongodb.GridFSBucketWriteStream;",
+            "mongodb.GridFSBucketWriteStream;mongoose.mongodb.GridFSBucketWriteStream;",
+            "mongodb.GridFSBucketWriteStreamStatic;mongodb/mongodb.GridFSBucketWriteStreamStatic;",
+            "mongodb.GridFSBucketWriteStreamStatic;mongodb;Member[GridFSBucketWriteStream]",
+            "mongodb.GridFSBucketWriteStreamStatic;mongoose.mongodb.GridFSBucketWriteStreamStatic;",
+            "mongodb.IndexInformationOptions;mongodb.Collection;Member[indexExists].Argument[1]",
+            "mongodb.IndexInformationOptions;mongodb.Collection;Member[indexInformation,indexes].Argument[0]",
+            "mongodb.IndexInformationOptions;mongodb.Db;Member[indexInformation].Argument[1]",
+            "mongodb.IndexInformationOptions;mongodb/mongodb.IndexInformationOptions;",
+            "mongodb.IndexInformationOptions;mongoose.mongodb.IndexInformationOptions;",
+            "mongodb.InsertOneOptions;mongodb.Collection;Member[insertOne].Argument[1]",
+            "mongodb.InsertOneOptions;mongodb/mongodb.InsertOneOptions;",
+            "mongodb.InsertOneOptions;mongoose.mongodb.InsertOneOptions;",
+            "mongodb.ListCollectionsCursor;mongodb.Db;Member[listCollections].WithArity[0,1,2].ReturnValue",
+            "mongodb.ListCollectionsCursor;mongodb.ListCollectionsCursor;Member[clone].ReturnValue",
+            "mongodb.ListCollectionsCursor;mongodb.ListCollectionsCursorStatic;Instance",
+            "mongodb.ListCollectionsCursor;mongodb/mongodb.ListCollectionsCursor;",
+            "mongodb.ListCollectionsCursor;mongoose.mongodb.ListCollectionsCursor;",
+            "mongodb.ListCollectionsCursorStatic;mongodb/mongodb.ListCollectionsCursorStatic;",
+            "mongodb.ListCollectionsCursorStatic;mongodb;Member[ListCollectionsCursor]",
+            "mongodb.ListCollectionsCursorStatic;mongoose.mongodb.ListCollectionsCursorStatic;",
+            "mongodb.ListCollectionsOptions;mongodb.Db;Member[collections].Argument[0]",
+            "mongodb.ListCollectionsOptions;mongodb.Db;Member[listCollections].WithArity[0,1,2].Argument[1]",
+            "mongodb.ListCollectionsOptions;mongodb.ListCollectionsCursor;Member[options]",
+            "mongodb.ListCollectionsOptions;mongodb.ListCollectionsCursorStatic;Argument[2]",
+            "mongodb.ListCollectionsOptions;mongodb/mongodb.ListCollectionsOptions;",
+            "mongodb.ListCollectionsOptions;mongoose.mongodb.ListCollectionsOptions;",
+            "mongodb.ListDatabasesOptions;mongodb.Admin;Member[listDatabases].Argument[0]",
+            "mongodb.ListDatabasesOptions;mongodb/mongodb.ListDatabasesOptions;",
+            "mongodb.ListDatabasesOptions;mongoose.mongodb.ListDatabasesOptions;",
+            "mongodb.ListIndexesCursor;mongodb.Collection;Member[listIndexes].ReturnValue",
+            "mongodb.ListIndexesCursor;mongodb.ListIndexesCursor;Member[clone].ReturnValue",
+            "mongodb.ListIndexesCursor;mongodb.ListIndexesCursorStatic;Instance",
+            "mongodb.ListIndexesCursor;mongodb/mongodb.ListIndexesCursor;",
+            "mongodb.ListIndexesCursor;mongoose.mongodb.ListIndexesCursor;",
+            "mongodb.ListIndexesCursorStatic;mongodb/mongodb.ListIndexesCursorStatic;",
+            "mongodb.ListIndexesCursorStatic;mongodb;Member[ListIndexesCursor]",
+            "mongodb.ListIndexesCursorStatic;mongoose.mongodb.ListIndexesCursorStatic;",
+            "mongodb.ListIndexesOptions;mongodb.Collection;Member[listIndexes].Argument[0]",
+            "mongodb.ListIndexesOptions;mongodb.ListIndexesCursor;Member[options]",
+            "mongodb.ListIndexesOptions;mongodb.ListIndexesCursorStatic;Argument[1]",
+            "mongodb.ListIndexesOptions;mongodb/mongodb.ListIndexesOptions;",
+            "mongodb.ListIndexesOptions;mongoose.mongodb.ListIndexesOptions;",
+            "mongodb.MapReduceOptions;mongodb.Collection;Member[mapReduce].Argument[2]",
+            "mongodb.MapReduceOptions;mongodb/mongodb.MapReduceOptions;",
+            "mongodb.MapReduceOptions;mongoose.mongodb.MapReduceOptions;",
+            "mongodb.MongoClient;mongodb.AutoEncrypter;Argument[0]",
+            "mongodb.MongoClient;mongodb.AutoEncryptionOptions;Member[keyVaultClient]",
+            "mongodb.MongoClient;mongodb.ChangeStream;Member[parent]",
+            "mongodb.MongoClient;mongodb.DbStatic;Argument[0]",
+            "mongodb.MongoClient;mongodb.MongoClient;Member[connect].Argument[0].TypeVar[mongodb.Callback.0]",
+            "mongodb.MongoClient;mongodb.MongoClient;Member[connect].WithArity[0].ReturnValue.Awaited",
+            "mongodb.MongoClient;mongodb.MongoClientEvents;Member[open].Argument[0]",
+            "mongodb.MongoClient;mongodb.MongoClientStatic;Instance",
+            "mongodb.MongoClient;mongodb.MongoClientStatic;Member[connect].Argument[1,2].TypeVar[mongodb.Callback.0]",
+            "mongodb.MongoClient;mongodb.MongoClientStatic;Member[connect].WithArity[1,2].ReturnValue.Awaited",
+            "mongodb.MongoClient;mongodb/mongodb.MongoClient;",
+            "mongodb.MongoClient;mongoose.mongodb.MongoClient;",
+            "mongodb.MongoClientEvents;mongodb/mongodb.MongoClientEvents;",
+            "mongodb.MongoClientEvents;mongoose.mongodb.MongoClientEvents;",
+            "mongodb.MongoClientOptions;mongodb.MongoClientStatic;Argument[1]",
+            "mongodb.MongoClientOptions;mongodb.MongoClientStatic;Member[connect].Argument[1]",
+            "mongodb.MongoClientOptions;mongodb/mongodb.MongoClientOptions;",
+            "mongodb.MongoClientOptions;mongoose.mongodb.MongoClientOptions;",
+            "mongodb.MongoClientStatic;mongodb/mongodb.MongoClientStatic;",
+            "mongodb.MongoClientStatic;mongodb;Member[MongoClient]",
+            "mongodb.MongoClientStatic;mongoose.mongodb.MongoClientStatic;",
+            "mongodb.MongoOptions;mongodb.ClientSession;Member[clientOptions]",
+            "mongodb.MongoOptions;mongodb.MongoClient;Member[options]",
+            "mongodb.MongoOptions;mongodb/mongodb.MongoOptions;",
+            "mongodb.MongoOptions;mongoose.mongodb.MongoOptions;",
+            "mongodb.OperationOptions;mongodb.Collection;Member[isCapped,options].Argument[0]",
+            "mongodb.OperationOptions;mongodb.CommandOperationOptions;",
+            "mongodb.OperationOptions;mongodb/mongodb.OperationOptions;",
+            "mongodb.OperationOptions;mongoose.mongodb.OperationOptions;",
+            "mongodb.OrderedBulkOperation;mongodb.Collection;Member[initializeOrderedBulkOp].ReturnValue",
+            "mongodb.OrderedBulkOperation;mongodb.OrderedBulkOperation;Member[addToOperationsList].ReturnValue",
+            "mongodb.OrderedBulkOperation;mongodb.OrderedBulkOperationStatic;Instance",
+            "mongodb.OrderedBulkOperation;mongodb/mongodb.OrderedBulkOperation;",
+            "mongodb.OrderedBulkOperation;mongoose.mongodb.OrderedBulkOperation;",
+            "mongodb.OrderedBulkOperationStatic;mongodb/mongodb.OrderedBulkOperationStatic;",
+            "mongodb.OrderedBulkOperationStatic;mongodb;Member[OrderedBulkOperation]",
+            "mongodb.OrderedBulkOperationStatic;mongoose.mongodb.OrderedBulkOperationStatic;",
+            "mongodb.ProfilingLevelOptions;mongodb.Db;Member[profilingLevel].Argument[0]",
+            "mongodb.ProfilingLevelOptions;mongodb/mongodb.ProfilingLevelOptions;",
+            "mongodb.ProfilingLevelOptions;mongoose.mongodb.ProfilingLevelOptions;",
+            "mongodb.ReadPreferenceFromOptions;mongodb.ReadPreferenceStatic;Member[fromOptions].Argument[0]",
+            "mongodb.ReadPreferenceFromOptions;mongodb/mongodb.ReadPreferenceFromOptions;",
+            "mongodb.ReadPreferenceFromOptions;mongoose.mongodb.ReadPreferenceFromOptions;",
+            "mongodb.ReadPreferenceStatic;mongodb/mongodb.ReadPreferenceStatic;",
+            "mongodb.ReadPreferenceStatic;mongodb;Member[ReadPreference]",
+            "mongodb.ReadPreferenceStatic;mongoose.mongodb.ReadPreferenceStatic;",
+            "mongodb.RemoveUserOptions;mongodb.Admin;Member[removeUser].Argument[1]",
+            "mongodb.RemoveUserOptions;mongodb.Db;Member[removeUser].Argument[1]",
+            "mongodb.RemoveUserOptions;mongodb/mongodb.RemoveUserOptions;",
+            "mongodb.RemoveUserOptions;mongoose.mongodb.RemoveUserOptions;",
+            "mongodb.RenameOptions;mongodb.Collection;Member[rename].Argument[1]",
+            "mongodb.RenameOptions;mongodb.Db;Member[renameCollection].Argument[2]",
+            "mongodb.RenameOptions;mongodb/mongodb.RenameOptions;",
+            "mongodb.RenameOptions;mongoose.mongodb.RenameOptions;",
+            "mongodb.ReplaceOptions;mongodb.Collection;Member[replaceOne].Argument[2]",
+            "mongodb.ReplaceOptions;mongodb/mongodb.ReplaceOptions;",
+            "mongodb.ReplaceOptions;mongoose.mongodb.ReplaceOptions;",
+            "mongodb.RunCommandOptions;mongodb.Admin;Member[command].Argument[1]",
+            "mongodb.RunCommandOptions;mongodb.Db;Member[command].Argument[1]",
+            "mongodb.RunCommandOptions;mongodb/mongodb.RunCommandOptions;",
+            "mongodb.RunCommandOptions;mongoose.mongodb.RunCommandOptions;",
+            "mongodb.SelectServerOptions;mongodb/mongodb.SelectServerOptions;",
+            "mongodb.SelectServerOptions;mongoose.mongodb.SelectServerOptions;",
+            "mongodb.SetProfilingLevelOptions;mongodb.Db;Member[setProfilingLevel].Argument[1]",
+            "mongodb.SetProfilingLevelOptions;mongodb/mongodb.SetProfilingLevelOptions;",
+            "mongodb.SetProfilingLevelOptions;mongoose.mongodb.SetProfilingLevelOptions;",
+            "mongodb.Transaction;mongodb.ClientSession;Member[transaction]",
+            "mongodb.Transaction;mongodb.TransactionStatic;Instance",
+            "mongodb.Transaction;mongodb/mongodb.Transaction;",
+            "mongodb.Transaction;mongoose.mongodb.Transaction;",
+            "mongodb.TransactionOptions;mongodb.ClientSession;Member[defaultTransactionOptions]",
+            "mongodb.TransactionOptions;mongodb.ClientSession;Member[startTransaction].Argument[0]",
+            "mongodb.TransactionOptions;mongodb.ClientSession;Member[withTransaction].Argument[1]",
+            "mongodb.TransactionOptions;mongodb.ClientSessionOptions;Member[defaultTransactionOptions]",
+            "mongodb.TransactionOptions;mongodb.Transaction;Member[options]",
+            "mongodb.TransactionOptions;mongodb/mongodb.TransactionOptions;",
+            "mongodb.TransactionOptions;mongoose.mongodb.TransactionOptions;",
+            "mongodb.TransactionStatic;mongodb/mongodb.TransactionStatic;",
+            "mongodb.TransactionStatic;mongodb;Member[Transaction]",
+            "mongodb.TransactionStatic;mongoose.mongodb.TransactionStatic;",
+            "mongodb.TypedEventEmitter;mongodb.AbstractCursor;",
+            "mongodb.TypedEventEmitter;mongodb.ChangeStream;",
+            "mongodb.TypedEventEmitter;mongodb.ClientSession;",
+            "mongodb.TypedEventEmitter;mongodb.GridFSBucket;",
+            "mongodb.TypedEventEmitter;mongodb.MongoClient;",
+            "mongodb.UnorderedBulkOperation;mongodb.Collection;Member[initializeUnorderedBulkOp].ReturnValue",
+            "mongodb.UnorderedBulkOperation;mongodb.UnorderedBulkOperation;Member[addToOperationsList].ReturnValue",
+            "mongodb.UnorderedBulkOperation;mongodb.UnorderedBulkOperationStatic;Instance",
+            "mongodb.UnorderedBulkOperation;mongodb/mongodb.UnorderedBulkOperation;",
+            "mongodb.UnorderedBulkOperation;mongoose.mongodb.UnorderedBulkOperation;",
+            "mongodb.UnorderedBulkOperationStatic;mongodb/mongodb.UnorderedBulkOperationStatic;",
+            "mongodb.UnorderedBulkOperationStatic;mongodb;Member[UnorderedBulkOperation]",
+            "mongodb.UnorderedBulkOperationStatic;mongoose.mongodb.UnorderedBulkOperationStatic;",
+            "mongodb.UpdateManyModel;mongodb.AnyBulkWriteOperation;Member[updateMany]",
+            "mongodb.UpdateManyModel;mongodb/mongodb.UpdateManyModel;",
+            "mongodb.UpdateManyModel;mongoose.mongodb.UpdateManyModel;",
+            "mongodb.UpdateOneModel;mongodb.AnyBulkWriteOperation;Member[updateOne]",
+            "mongodb.UpdateOneModel;mongodb/mongodb.UpdateOneModel;",
+            "mongodb.UpdateOneModel;mongoose.mongodb.UpdateOneModel;",
+            "mongodb.UpdateOptions;mongodb.Collection;Member[update,updateMany,updateOne].Argument[2]",
+            "mongodb.UpdateOptions;mongodb/mongodb.UpdateOptions;",
+            "mongodb.UpdateOptions;mongoose.mongodb.UpdateOptions;",
+            "mongodb.ValidateCollectionOptions;mongodb.Admin;Member[validateCollection].Argument[1]",
+            "mongodb.ValidateCollectionOptions;mongodb/mongodb.ValidateCollectionOptions;",
+            "mongodb.ValidateCollectionOptions;mongoose.mongodb.ValidateCollectionOptions;",
+            "mongodb.WithSessionCallback;mongodb.MongoClient;Member[withSession].Argument[1]",
+            "mongodb.WithSessionCallback;mongodb.MongoClient;Member[withSession].WithArity[1].Argument[0]",
+            "mongodb.WithSessionCallback;mongodb/mongodb.WithSessionCallback;",
+            "mongodb.WithSessionCallback;mongoose.mongodb.WithSessionCallback;",
+            "mongodb.WithTransactionCallback;mongodb.ClientSession;Member[withTransaction].Argument[0]",
+            "mongodb.WithTransactionCallback;mongodb/mongodb.WithTransactionCallback;",
+            "mongodb.WithTransactionCallback;mongoose.mongodb.WithTransactionCallback;",
+            "mongodb;mongoose;Member[mongodb]",
+            "mongoose.AcceptsDiscriminator;mongoose.Model;",
+            "mongoose.AcceptsDiscriminator;mongoose.Schema.Types.Array;",
+            "mongoose.AcceptsDiscriminator;mongoose.Schema.Types.DocumentArray;",
+            "mongoose.AcceptsDiscriminator;mongoose.Schema.Types.Subdocument;",
+            "mongoose.Aggregate;mongoose.Aggregate;Member[addCursorFlag,addFields,allowDiskUse,append,collation,count,facet,graphLookup,group,hint,limit,lookup,match,model,near,option,project,read,readConcern,redact,replaceRoot,sample,search,session,skip,sort,sortByCount,unionWith,unwind].ReturnValue",
+            "mongoose.Aggregate;mongoose.AggregateStatic;Instance",
+            "mongoose.Aggregate;mongoose.Model;Member[aggregate].ReturnValue",
+            "mongoose.AggregateStatic;mongoose;Member[Aggregate]",
+            "mongoose.Collection;mongoose.Collection;Instance",
+            "mongoose.Collection;mongoose.Connection;Member[collection].ReturnValue",
+            "mongoose.Collection;mongoose.Connection;Member[collections].AnyMember",
+            "mongoose.Collection;mongoose.Document;Member[collection]",
+            "mongoose.Collection;mongoose.Model;Member[collection]",
+            "mongoose.Collection;mongoose;Member[Collection]",
+            "mongoose.CollectionBase;mongoose.Collection;",
+            "mongoose.CompileModelOptions;mongoose.Connection;Member[model].Argument[3]",
+            "mongoose.CompileModelOptions;mongoose;Member[model].Argument[3]",
+            "mongoose.ConnectOptions;mongoose.Connection;Member[openUri].WithArity[1,2,3].Argument[1]",
+            "mongoose.ConnectOptions;mongoose;Member[connect,createConnection].WithArity[1,2,3].Argument[1]",
+            "mongoose.Connection;mongoose.Collection;Argument[1]",
+            "mongoose.Connection;mongoose.CollectionBase;Member[conn]",
+            "mongoose.Connection;mongoose.CompileModelOptions;Member[connection]",
+            "mongoose.Connection;mongoose.Connection;Member[asPromise].ReturnValue.Awaited",
+            "mongoose.Connection;mongoose.Connection;Member[deleteModel,plugin,setClient,useDb].ReturnValue",
+            "mongoose.Connection;mongoose.Connection;Member[openUri].Argument[2].TypeVar[mongoose.Callback.0]",
+            "mongoose.Connection;mongoose.Connection;Member[openUri].WithArity[1,2].ReturnValue.Awaited",
+            "mongoose.Connection;mongoose.Connection;Member[openUri].WithArity[2,3].ReturnValue",
+            "mongoose.Connection;mongoose.Connection;Member[openUri].WithArity[2].Argument[1].TypeVar[mongoose.Callback.0]",
+            "mongoose.Connection;mongoose.ConnectionStatic;Instance",
+            "mongoose.Connection;mongoose.Document;Member[db]",
+            "mongoose.Connection;mongoose.Model;Member[db]",
+            "mongoose.Connection;mongoose;Member[connection]",
+            "mongoose.Connection;mongoose;Member[connections].ArrayElement",
+            "mongoose.Connection;mongoose;Member[createConnection].Argument[2].TypeVar[mongoose.Callback.0]",
+            "mongoose.Connection;mongoose;Member[createConnection].WithArity[0,1,2].ReturnValue",
+            "mongoose.Connection;mongoose;Member[createConnection].WithArity[2].Argument[1].TypeVar[mongoose.Callback.0]",
+            "mongoose.ConnectionStatic;mongoose;Member[Connection]",
+            "mongoose.Cursor;mongoose.Query;Member[cursor].ReturnValue",
+            "mongoose.DiscriminatorModel;mongoose.DiscriminatorSchema;TypeVar[mongoose.Schema.1]",
+            "mongoose.Document;mongoose.Document;Member[$getAllSubdocs,$getPopulatedDocs].ReturnValue.ArrayElement",
+            "mongoose.Document;mongoose.Document;Member[$inc,$parent,$set,depopulate,increment,init,overwrite,set].ReturnValue",
+            "mongoose.Document;mongoose.Document;Member[delete,deleteOne].WithArity[0,1].ReturnValue.TypeVar[mongoose.QueryWithHelpers.1]",
+            "mongoose.Document;mongoose.Document;Member[equals].Argument[0]",
+            "mongoose.Document;mongoose.Document;Member[init].Argument[2].TypeVar[mongoose.Callback.0]",
+            "mongoose.Document;mongoose.Document;Member[remove,save].WithArity[0,1].ReturnValue.Awaited",
+            "mongoose.Document;mongoose.Document;Member[replaceOne,update,updateOne].ReturnValue.TypeVar[mongoose.Query.1]",
+            "mongoose.Document;mongoose.Document;Member[save].Argument[1].TypeVar[mongoose.Callback.0]",
+            "mongoose.Document;mongoose.Document;Member[save].WithArity[1].Argument[0].TypeVar[mongoose.Callback.0]",
+            "mongoose.Document;mongoose.DocumentStatic;Instance",
+            "mongoose.Document;mongoose.Error.VersionErrorStatic;Argument[0]",
+            "mongoose.Document;mongoose.HydratedDocument;",
+            "mongoose.Document;mongoose.HydratedDocument;TypeVar[mongoose.Require_id.0]",
+            "mongoose.Document;mongoose.Model;Member[bulkSave].Argument[0].ArrayElement",
+            "mongoose.Document;mongoose.TVirtualPathFN;Argument[2]",
+            "mongoose.Document;mongoose.Types.Subdocument;",
+            "mongoose.Document;mongoose.Types.Subdocument;Member[$parent,ownerDocument,parent].ReturnValue",
+            "mongoose.Document;mongoose.VirtualType;Member[applyGetters,applySetters].Argument[1]",
+            "mongoose.DocumentStatic;mongoose;Member[Document]",
+            "mongoose.Error.VersionErrorStatic;mongoose;Member[Error].Member[VersionError]",
+            "mongoose.HydratedDocument;mongoose.Model;Instance",
+            "mongoose.HydratedDocument;mongoose.Model;Member[$where,count,countDocuments,deleteMany,deleteOne,distinct,estimatedDocumentCount,find,geoSearch,remove,replaceOne,update,updateMany,updateOne,where].ReturnValue.TypeVar[mongoose.QueryWithHelpers.1]",
+            "mongoose.HydratedDocument;mongoose.Model;Member[$where,find,geoSearch,where].ReturnValue.TypeVar[mongoose.QueryWithHelpers.0].ArrayElement",
+            "mongoose.HydratedDocument;mongoose.Model;Member[create,insertMany].WithArity[2].Argument[1].TypeVar[mongoose.Callback.0].ArrayElement",
+            "mongoose.HydratedDocument;mongoose.Model;Member[create].WithArity[0..,1,2].ReturnValue.Awaited.ArrayElement",
+            "mongoose.HydratedDocument;mongoose.Model;Member[create].WithArity[1].ReturnValue.Awaited",
+            "mongoose.HydratedDocument;mongoose.Model;Member[create].WithArity[2].Argument[1].TypeVar[mongoose.Callback.0]",
+            "mongoose.HydratedDocument;mongoose.Model;Member[exists].WithArity[1,2].ReturnValue.TypeVar[mongoose.QueryWithHelpers.1]",
+            "mongoose.HydratedDocument;mongoose.Model;Member[find,insertMany].WithArity[3].Argument[2].TypeVar[mongoose.Callback.0].ArrayElement",
+            "mongoose.HydratedDocument;mongoose.Model;Member[findById,findByIdAndDelete,findByIdAndRemove,findOne,findOneAndDelete,findOneAndRemove].ReturnValue.TypeVar[mongoose.QueryWithHelpers.0,mongoose.QueryWithHelpers.1]",
+            "mongoose.HydratedDocument;mongoose.Model;Member[findById,findOne].Argument[3].TypeVar[mongoose.Callback.0]",
+            "mongoose.HydratedDocument;mongoose.Model;Member[findByIdAndDelete,findByIdAndRemove,findOneAndDelete,findOneAndRemove].Argument[2].Argument[1]",
+            "mongoose.HydratedDocument;mongoose.Model;Member[findByIdAndUpdate,findOneAndReplace,findOneAndUpdate].WithArity[0,1,2,3,4].ReturnValue.TypeVar[mongoose.QueryWithHelpers.0,mongoose.QueryWithHelpers.1]",
+            "mongoose.HydratedDocument;mongoose.Model;Member[findByIdAndUpdate,findOneAndReplace,findOneAndUpdate].WithArity[3,4].ReturnValue.TypeVar[mongoose.QueryWithHelpers.0].TypeVar[mongoose.ModifyResult.0]",
+            "mongoose.HydratedDocument;mongoose.Model;Member[findByIdAndUpdate].WithArity[0,1,2,4].Argument[3].Argument[1]",
+            "mongoose.HydratedDocument;mongoose.Model;Member[findByIdAndUpdate].WithArity[3].Argument[2,3].Argument[1]",
+            "mongoose.HydratedDocument;mongoose.Model;Member[findById].WithArity[1,2,3].Argument[2].TypeVar[mongoose.Callback.0]",
+            "mongoose.HydratedDocument;mongoose.Model;Member[findOneAndReplace].WithArity[0,1,2,3,4].Argument[3].Argument[1]",
+            "mongoose.HydratedDocument;mongoose.Model;Member[findOneAndUpdate].WithArity[3,4].Argument[3].Argument[1]",
+            "mongoose.HydratedDocument;mongoose.Model;Member[findOne].WithArity[0,1,2].Argument[1,2].TypeVar[mongoose.Callback.0]",
+            "mongoose.HydratedDocument;mongoose.Model;Member[findOne].WithArity[3].Argument[2].TypeVar[mongoose.Callback.0]",
+            "mongoose.HydratedDocument;mongoose.Model;Member[find].Argument[3].TypeVar[mongoose.Callback.0].ArrayElement",
+            "mongoose.HydratedDocument;mongoose.Model;Member[find].WithArity[0].Argument[0].TypeVar[mongoose.Callback.0].ArrayElement",
+            "mongoose.HydratedDocument;mongoose.Model;Member[find].WithArity[1].Argument[0,1,2].TypeVar[mongoose.Callback.0].ArrayElement",
+            "mongoose.HydratedDocument;mongoose.Model;Member[find].WithArity[2].Argument[1,2].TypeVar[mongoose.Callback.0].ArrayElement",
+            "mongoose.HydratedDocument;mongoose.Model;Member[geoSearch].Argument[2].TypeVar[mongoose.Callback.0].ArrayElement",
+            "mongoose.HydratedDocument;mongoose.Model;Member[hydrate].ReturnValue",
+            "mongoose.HydratedDocument;mongoose.Model;Member[init].ReturnValue.Awaited",
+            "mongoose.HydratedDocument;mongoose.Model;Member[insertMany].WithArity[1,2].ReturnValue.Awaited.ArrayElement",
+            "mongoose.HydratedDocument;mongoose.Model;Member[populate].WithArity[2,3].Argument[2].TypeVar[mongoose.Callback.0]",
+            "mongoose.HydratedDocument;mongoose.Model;Member[populate].WithArity[2,3].Argument[2].TypeVar[mongoose.Callback.0].ArrayElement",
+            "mongoose.HydratedDocument;mongoose.Model;Member[populate].WithArity[2,3].ReturnValue.Awaited",
+            "mongoose.HydratedDocument;mongoose.Model;Member[populate].WithArity[2,3].ReturnValue.Awaited.ArrayElement",
+            "mongoose.HydratedDocument;mongoose.TVirtualPathFN;Argument[1].TypeVar[mongoose.VirtualType.0]",
+            "mongoose.HydratedDocument;mongoose.VirtualPathFunctions;Member[options].TypeVar[mongoose.VirtualTypeOptions.0]",
+            "mongoose.InsertManyOptions;mongoose.Model;Member[insertMany].WithArity[2,3].Argument[1]",
+            "mongoose.Model;mongoose.AcceptsDiscriminator;Member[discriminator].WithArity[2,3].ReturnValue",
+            "mongoose.Model;mongoose.Aggregate;Member[model].Argument[0]",
+            "mongoose.Model;mongoose.Connection;Member[model].WithArity[1,2,3,4].ReturnValue",
+            "mongoose.Model;mongoose.Connection;Member[models].AnyMember",
+            "mongoose.Model;mongoose.DiscriminatorModel;",
+            "mongoose.Model;mongoose.Document;Member[$model].ReturnValue",
+            "mongoose.Model;mongoose.Document;Member[populate].Argument[2]",
+            "mongoose.Model;mongoose.Model;Member[discriminators].AnyMember",
+            "mongoose.Model;mongoose.Models;AnyMember",
+            "mongoose.Model;mongoose.PopulateOptions;Member[model]",
+            "mongoose.Model;mongoose.Query;Member[cast].Argument[0]",
+            "mongoose.Model;mongoose.Query;Member[populate].Argument[2]",
+            "mongoose.Model;mongoose.Schema.Types.Array;Member[discriminator].WithArity[2,3].ReturnValue",
+            "mongoose.Model;mongoose.Schema.Types.DocumentArray;Member[discriminator].WithArity[2,3].ReturnValue",
+            "mongoose.Model;mongoose.Schema.Types.Subdocument;Member[discriminator].WithArity[2,3].ReturnValue",
+            "mongoose.Model;mongoose.SchemaStatic;Instance.TypeVar[mongoose.Schema.1]",
+            "mongoose.Model;mongoose;Member[Model]",
+            "mongoose.Model;mongoose;Member[model].ReturnValue",
+            "mongoose.Models;mongoose;Member[models]",
+            "mongoose.PopulateOption;mongoose.InsertManyOptions;",
+            "mongoose.PopulateOption;mongoose.QueryOptions;",
+            "mongoose.PopulateOptions;mongoose.Document;Member[populate].Argument[4]",
+            "mongoose.PopulateOptions;mongoose.Document;Member[populate].WithArity[1,2].Argument[0]",
+            "mongoose.PopulateOptions;mongoose.Document;Member[populate].WithArity[1,2].Argument[0].ArrayElement",
+            "mongoose.PopulateOptions;mongoose.Model;Member[populate].Argument[1]",
+            "mongoose.PopulateOptions;mongoose.Model;Member[populate].Argument[1].ArrayElement",
+            "mongoose.PopulateOptions;mongoose.PopulateOption;Member[populate]",
+            "mongoose.PopulateOptions;mongoose.PopulateOption;Member[populate].ArrayElement",
+            "mongoose.PopulateOptions;mongoose.PopulateOptions;Member[populate]",
+            "mongoose.PopulateOptions;mongoose.PopulateOptions;Member[populate].ArrayElement",
+            "mongoose.PopulateOptions;mongoose.Query;Member[populate].WithArity[1].Argument[0]",
+            "mongoose.PopulateOptions;mongoose.Query;Member[populate].WithArity[1].Argument[0].ArrayElement",
+            "mongoose.Query;mongoose.Document;Member[replaceOne,update,updateOne].ReturnValue",
+            "mongoose.Query;mongoose.HydratedDocument;TypeVar[mongoose.Require_id.0]",
+            "mongoose.Query;mongoose.Query;Member[all,allowDiskUse,and,batchSize,box,circle,clone,collation,comment,elemMatch,equals,exists,explain,geometry,gt,gte,hint,in,intersects,j,limit,lt,lte,maxDistance,maxScan,maxTimeMS,merge,mod,ne,near,nin,nor,or,polygon,read,readConcern,regex,remove,select,session,set,setOptions,size,skip,slice,snapshot,sort,tailable,w,where,within,wtimeout].ReturnValue",
+            "mongoose.Query;mongoose.Query;Member[error].WithArity[1].ReturnValue",
+            "mongoose.Query;mongoose.Query;Member[merge].Argument[0]",
+            "mongoose.Query;mongoose.QueryStatic;Instance",
+            "mongoose.Query;mongoose.QueryWithHelpers;",
+            "mongoose.QueryOptions;mongoose.Document;Member[delete,deleteOne,remove].WithArity[0,1,2].Argument[0]",
+            "mongoose.QueryOptions;mongoose.Document;Member[replaceOne,update,updateOne].Argument[1]",
+            "mongoose.QueryOptions;mongoose.Model;Member[countDocuments,findByIdAndDelete,findByIdAndRemove,findOneAndDelete,findOneAndRemove].Argument[1]",
+            "mongoose.QueryOptions;mongoose.Model;Member[deleteMany,deleteOne].WithArity[0,1,2,3].Argument[1]",
+            "mongoose.QueryOptions;mongoose.Model;Member[estimatedDocumentCount].Argument[0]",
+            "mongoose.QueryOptions;mongoose.Model;Member[find,findById].WithArity[1,2,3,4].Argument[2]",
+            "mongoose.QueryOptions;mongoose.Model;Member[findByIdAndUpdate,findOne,findOneAndReplace,findOneAndUpdate].WithArity[0,1,2,3,4].Argument[2]",
+            "mongoose.QueryOptions;mongoose.Model;Member[replaceOne,update,updateMany,updateOne].Argument[2]",
+            "mongoose.QueryOptions;mongoose.PopulateOptions;Member[options]",
+            "mongoose.QueryOptions;mongoose.Query;Member[countDocuments,findByIdAndDelete,findOneAndDelete,findOneAndRemove].Argument[1]",
+            "mongoose.QueryOptions;mongoose.Query;Member[cursor,estimatedDocumentCount,setOptions].Argument[0]",
+            "mongoose.QueryOptions;mongoose.Query;Member[cursor].ReturnValue.TypeVar[mongoose.Cursor.1]",
+            "mongoose.QueryOptions;mongoose.Query;Member[deleteMany,deleteOne].WithArity[0,1,2,3].Argument[1]",
+            "mongoose.QueryOptions;mongoose.Query;Member[findByIdAndUpdate,findOne,findOneAndUpdate].WithArity[0,1,2,3,4].Argument[2]",
+            "mongoose.QueryOptions;mongoose.Query;Member[find].WithArity[1,2,3,4].Argument[2]",
+            "mongoose.QueryOptions;mongoose.Query;Member[getOptions].ReturnValue",
+            "mongoose.QueryOptions;mongoose.Query;Member[replaceOne,update,updateMany,updateOne].Argument[2]",
+            "mongoose.QueryOptions;mongoose.VirtualTypeOptions;Member[options]",
+            "mongoose.QueryStatic;mongoose;Member[Query]",
+            "mongoose.QueryWithHelpers;mongoose.Document;Member[delete,deleteOne].WithArity[0,1].ReturnValue",
+            "mongoose.QueryWithHelpers;mongoose.Model;Member[$where,count,countDocuments,deleteMany,deleteOne,distinct,estimatedDocumentCount,find,findById,findByIdAndDelete,findByIdAndRemove,findOne,findOneAndDelete,findOneAndRemove,geoSearch,remove,replaceOne,update,updateMany,updateOne,where].ReturnValue",
+            "mongoose.QueryWithHelpers;mongoose.Model;Member[exists].WithArity[1,2].ReturnValue",
+            "mongoose.QueryWithHelpers;mongoose.Model;Member[findByIdAndUpdate,findOneAndReplace,findOneAndUpdate].WithArity[0,1,2,3,4].ReturnValue",
+            "mongoose.QueryWithHelpers;mongoose.Query;Member[$where,count,countDocuments,deleteMany,deleteOne,distinct,estimatedDocumentCount,find,findByIdAndDelete,findOne,findOneAndDelete,findOneAndRemove,lean,orFail,populate,replaceOne,transform,update,updateMany,updateOne].ReturnValue",
+            "mongoose.QueryWithHelpers;mongoose.Query;Member[findByIdAndUpdate,findOneAndUpdate].WithArity[0,1,2,3,4].ReturnValue",
+            "mongoose.QueryWithHelpers;mongoose.Query;Member[toConstructor].ReturnValue.Instance",
+            "mongoose.Schema.Types.Array;mongoose.Schema.Types.Array;Member[enum].ReturnValue",
+            "mongoose.Schema.Types.Array;mongoose.Schema.Types.ArrayStatic;Instance",
+            "mongoose.Schema.Types.ArrayStatic;mongoose;Member[Schema].Member[Types].Member[Array]",
+            "mongoose.Schema.Types.DocumentArray;mongoose.Schema.Types.DocumentArrayStatic;Instance",
+            "mongoose.Schema.Types.DocumentArrayStatic;mongoose;Member[Schema].Member[Types].Member[DocumentArray]",
+            "mongoose.Schema.Types.Subdocument;mongoose.Schema.Types.SubdocumentStatic;Instance",
+            "mongoose.Schema.Types.SubdocumentStatic;mongoose.Schema.Types.DocumentArray;Member[caster]",
+            "mongoose.Schema.Types.SubdocumentStatic;mongoose;Member[Schema].Member[Types].Member[Subdocument]",
+            "mongoose.SchemaStatic;mongoose;Member[Schema]",
+            "mongoose.SessionOperation;mongoose.Aggregate;",
+            "mongoose.SessionOperation;mongoose.Query;",
+            "mongoose.TVirtualPathFN;mongoose.VirtualPathFunctions;Member[get,set]",
+            "mongoose.Types.Array;mongoose.Types.DocumentArray;",
+            "mongoose.Types.ArraySubdocument;mongoose.Types.ArraySubdocumentStatic;Instance",
+            "mongoose.Types.ArraySubdocumentStatic;mongoose;Member[Types].Member[ArraySubdocument]",
+            "mongoose.Types.DocumentArray;mongoose.Types.ArraySubdocument;Member[parentArray].ReturnValue",
+            "mongoose.Types.DocumentArray;mongoose.Types.DocumentArrayStatic;Instance",
+            "mongoose.Types.DocumentArray;mongoose/inferschematype.ResolvePathType;TypeVar[mongoose.IfEquals.3]",
+            "mongoose.Types.DocumentArrayStatic;mongoose;Member[Types].Member[DocumentArray]",
+            "mongoose.Types.ObjectId;mongoose/inferschematype.ResolvePathType;",
+            "mongoose.Types.Subdocument;mongoose.Types.ArraySubdocument;",
+            "mongoose.Types.Subdocument;mongoose.Types.DocumentArray;Member[create,id].ReturnValue",
+            "mongoose.Types.Subdocument;mongoose.Types.DocumentArray;TypeVar[mongoose.Types.Array.0]",
+            "mongoose.Types.Subdocument;mongoose.Types.SubdocumentStatic;Instance",
+            "mongoose.Types.SubdocumentStatic;mongoose;Member[Types].Member[Subdocument]",
+            "mongoose.VirtualType;mongoose.TVirtualPathFN;Argument[1]",
+            "mongoose.VirtualType;mongoose.VirtualType;Member[get,set].Argument[0].Argument[1]",
+            "mongoose.VirtualType;mongoose.VirtualType;Member[get,set].ReturnValue",
+            "mongoose.VirtualType;mongoose.VirtualTypeStatic;Instance",
+            "mongoose.VirtualTypeOptions;mongoose.VirtualPathFunctions;Member[options]",
+            "mongoose.VirtualTypeStatic;mongoose;Member[VirtualType]",
+            "mongoose/inferschematype.ResolvePathType;mongoose/inferschematype.ObtainDocumentPathType;",
+            "mongoose/inferschematype.ResolvePathType;mongoose/inferschematype.ResolvePathType;TypeVar[mongoose.IfEquals.3].ArrayElement",
+            "mongoose/inferschematype.ResolvePathType;mongoose/inferschematype.ResolvePathType;TypeVar[mongoose.IfEquals.3].TypeVar[mongoose.Types.DocumentArray.0]",
+            "mongoose;mongoose;Member[mongoose]"
         ],
         "summaries": [
-            "mongodb;AbstractCursor;;;Member[addCursorFlag,batchSize,maxTimeMS,withReadConcern,withReadPreference].ReturnValue;type",
-            "mongodb;BulkOperationBase;;;Member[addToOperationsList,raw].ReturnValue;type",
-            "mongodb;FindCursor;;;Member[addQueryModifier,allowDiskUse,collation,comment,filter,hint,limit,max,maxAwaitTimeMS,maxTimeMS,min,returnKey,showRecordId,skip,sort].ReturnValue;type",
-            "mongodb;FindOperators;;;Member[arrayFilters,collation,upsert].ReturnValue;type",
-            "mongodb;GridFSBucketWriteStream;;;Member[end].ReturnValue;type",
-            "mongodb;MongoClient;;;Member[connect].Argument[0].TypeVar[mongodb.Callback.0];type",
-            "mongodb;MongoClient;;;Member[connect].WithArity[0].ReturnValue.Awaited;type",
-            "mongodb;OrderedBulkOperation;;;Member[addToOperationsList].ReturnValue;type",
-            "mongodb;TypedEventEmitter;;;Member[addListener,off,on,once,prependListener,prependOnceListener,removeAllListeners,removeListener,setMaxListeners].ReturnValue;type",
-            "mongodb;UnorderedBulkOperation;;;Member[addToOperationsList].ReturnValue;type",
-            "mongoose;Aggregate;;;Member[addCursorFlag,addFields,allowDiskUse,append,collation,count,facet,graphLookup,group,hint,limit,lookup,match,model,near,option,project,read,readConcern,redact,replaceRoot,sample,search,session,skip,sort,sortByCount,unionWith,unwind].ReturnValue;type",
-            "mongoose;Connection;;;Member[asPromise].ReturnValue.Awaited;type",
-            "mongoose;Connection;;;Member[deleteModel,setClient].ReturnValue;type",
-            "mongoose;Cursor;;;Member[addCursorFlag].ReturnValue;type",
-            "mongoose;Document;;;Member[$inc,$set,depopulate,increment,init,overwrite,set].ReturnValue;type",
-            "mongoose;Document;;;Member[delete,deleteOne].WithArity[0,1].ReturnValue.TypeVar[mongoose.QueryWithHelpers.1];type",
-            "mongoose;Document;;;Member[getChanges].ReturnValue.TypeVar[mongoose.UpdateQuery.0];type",
-            "mongoose;Document;;;Member[init].Argument[2].TypeVar[mongoose.Callback.0];type",
-            "mongoose;Document;;;Member[populate].Argument[1,5].TypeVar[mongoose.Callback.0].TypeVar[mongoose.MergeType.0];type",
-            "mongoose;Document;;;Member[populate].WithArity[1,2,3,4,5].ReturnValue.Awaited.TypeVar[mongoose.MergeType.0];type",
-            "mongoose;Document;;;Member[remove,save].WithArity[0,1].ReturnValue.Awaited;type",
-            "mongoose;Document;;;Member[replaceOne,update,updateOne].ReturnValue.TypeVar[mongoose.Query.1];type",
-            "mongoose;Document;;;Member[save].Argument[1].TypeVar[mongoose.Callback.0];type",
-            "mongoose;Document;;;Member[save].WithArity[1].Argument[0].TypeVar[mongoose.Callback.0];type",
-            "mongoose;Document;;;Member[update,updateOne].Argument[0].TypeVar[mongoose.UpdateQuery.0];type",
-            "mongoose;Query;;;Member[all,allowDiskUse,and,batchSize,box,circle,clone,collation,comment,elemMatch,equals,exists,explain,geometry,gt,gte,hint,in,intersects,j,limit,lt,lte,maxDistance,maxScan,maxTimeMS,merge,mod,ne,near,nin,nor,or,polygon,read,readConcern,regex,select,session,set,setOptions,size,skip,slice,snapshot,sort,tailable,w,where,within,wtimeout].ReturnValue;type",
-            "mongoose;Query;;;Member[error].WithArity[1].ReturnValue;type",
-            "mongoose;Schema.Types.Array;;;Member[enum].ReturnValue;type",
-            "mongoose;SessionOperation;;;Member[session].ReturnValue;type",
-            "mongoose;Types.Array;;;Member[pull,remove,set].ReturnValue;type",
-            "mongoose;Types.ObjectId;;;Member[_id];type",
-            "mongoose;VirtualType;;;Member[get,set].ReturnValue;type"
+            "mongodb.AbstractCursor;;;Member[addCursorFlag,batchSize,maxTimeMS,withReadConcern,withReadPreference].ReturnValue;type",
+            "mongodb.BulkOperationBase;;;Member[addToOperationsList,raw].ReturnValue;type",
+            "mongodb.FindCursor;;;Member[addQueryModifier,allowDiskUse,collation,comment,filter,hint,limit,max,maxAwaitTimeMS,maxTimeMS,min,returnKey,showRecordId,skip,sort].ReturnValue;type",
+            "mongodb.FindOperators;;;Member[arrayFilters,collation,upsert].ReturnValue;type",
+            "mongodb.GridFSBucketWriteStream;;;Member[end].ReturnValue;type",
+            "mongodb.MongoClient;;;Member[connect].Argument[0].TypeVar[mongodb.Callback.0];type",
+            "mongodb.MongoClient;;;Member[connect].WithArity[0].ReturnValue.Awaited;type",
+            "mongodb.OrderedBulkOperation;;;Member[addToOperationsList].ReturnValue;type",
+            "mongodb.TypedEventEmitter;;;Member[addListener,off,on,once,prependListener,prependOnceListener,removeAllListeners,removeListener,setMaxListeners].ReturnValue;type",
+            "mongodb.UnorderedBulkOperation;;;Member[addToOperationsList].ReturnValue;type",
+            "mongoose.Aggregate;;;Member[addCursorFlag,addFields,allowDiskUse,append,collation,count,facet,graphLookup,group,hint,limit,lookup,match,model,near,option,project,read,readConcern,redact,replaceRoot,sample,search,session,skip,sort,sortByCount,unionWith,unwind].ReturnValue;type",
+            "mongoose.Connection;;;Member[asPromise].ReturnValue.Awaited;type",
+            "mongoose.Connection;;;Member[deleteModel,setClient].ReturnValue;type",
+            "mongoose.Cursor;;;Member[addCursorFlag].ReturnValue;type",
+            "mongoose.Document;;;Member[$inc,$set,depopulate,increment,init,overwrite,set].ReturnValue;type",
+            "mongoose.Document;;;Member[delete,deleteOne].WithArity[0,1].ReturnValue.TypeVar[mongoose.QueryWithHelpers.1];type",
+            "mongoose.Document;;;Member[getChanges].ReturnValue.TypeVar[mongoose.UpdateQuery.0];type",
+            "mongoose.Document;;;Member[init].Argument[2].TypeVar[mongoose.Callback.0];type",
+            "mongoose.Document;;;Member[populate].Argument[1,5].TypeVar[mongoose.Callback.0].TypeVar[mongoose.MergeType.0];type",
+            "mongoose.Document;;;Member[populate].WithArity[1,2,3,4,5].ReturnValue.Awaited.TypeVar[mongoose.MergeType.0];type",
+            "mongoose.Document;;;Member[remove,save].WithArity[0,1].ReturnValue.Awaited;type",
+            "mongoose.Document;;;Member[replaceOne,update,updateOne].ReturnValue.TypeVar[mongoose.Query.1];type",
+            "mongoose.Document;;;Member[save].Argument[1].TypeVar[mongoose.Callback.0];type",
+            "mongoose.Document;;;Member[save].WithArity[1].Argument[0].TypeVar[mongoose.Callback.0];type",
+            "mongoose.Document;;;Member[update,updateOne].Argument[0].TypeVar[mongoose.UpdateQuery.0];type",
+            "mongoose.Query;;;Member[all,allowDiskUse,and,batchSize,box,circle,clone,collation,comment,elemMatch,equals,exists,explain,geometry,gt,gte,hint,in,intersects,j,limit,lt,lte,maxDistance,maxScan,maxTimeMS,merge,mod,ne,near,nin,nor,or,polygon,read,readConcern,regex,select,session,set,setOptions,size,skip,slice,snapshot,sort,tailable,w,where,within,wtimeout].ReturnValue;type",
+            "mongoose.Query;;;Member[error].WithArity[1].ReturnValue;type",
+            "mongoose.Schema.Types.Array;;;Member[enum].ReturnValue;type",
+            "mongoose.SessionOperation;;;Member[session].ReturnValue;type",
+            "mongoose.Types.Array;;;Member[pull,remove,set].ReturnValue;type",
+            "mongoose.Types.ObjectId;;;Member[_id];type",
+            "mongoose.VirtualType;;;Member[get,set].ReturnValue;type"
         ],
         "typeVariables": [
             "mongodb.Callback.0;Argument[1]",
diff --git a/javascript/ql/lib/semmle/javascript/frameworks/mssql/Model.qll b/javascript/ql/lib/semmle/javascript/frameworks/mssql/Model.qll
index 0d69eea01e0..7d119ebfc02 100644
--- a/javascript/ql/lib/semmle/javascript/frameworks/mssql/Model.qll
+++ b/javascript/ql/lib/semmle/javascript/frameworks/mssql/Model.qll
@@ -6,40 +6,40 @@ private class Types extends ModelInput::TypeModelCsv {
   override predicate row(string row) {
     row =
       [
-        "mssql;ConnectionPool;mssql/msnodesqlv8;;Member[connect].ReturnValue.Awaited", //
-        "mssql;ConnectionPool;mssql/msnodesqlv8;;Member[pool]", //
-        "mssql;ConnectionPool;mssql;;Member[connect].ReturnValue.Awaited", //
-        "mssql;ConnectionPool;mssql;;Member[pool]", //
-        "mssql;ConnectionPool;mssql;ConnectionPool;Member[connect].WithArity[0].ReturnValue.Awaited", //
-        "mssql;ConnectionPool;mssql;ConnectionPoolStatic;Instance", //
-        "mssql;ConnectionPoolStatic;mssql/msnodesqlv8;;Member[ConnectionPool]", //
-        "mssql;ConnectionPoolStatic;mssql;;Member[ConnectionPool]", //
-        "mssql;PreparedStatement;mssql;PreparedStatement;Member[input,output].ReturnValue", //
-        "mssql;PreparedStatement;mssql;PreparedStatement;Member[prepare].WithArity[0,1,2].ReturnValue", //
-        "mssql;PreparedStatement;mssql;PreparedStatement;Member[unprepare].WithArity[1].ReturnValue", //
-        "mssql;PreparedStatement;mssql;PreparedStatementStatic;Instance", //
-        "mssql;PreparedStatement;mssql;Request;Member[pstatement]", //
-        "mssql;PreparedStatementStatic;mssql/msnodesqlv8;;Member[PreparedStatement]", //
-        "mssql;PreparedStatementStatic;mssql;;Member[PreparedStatement]", //
-        "mssql;Request;mssql;ConnectionPool;Member[request].ReturnValue", //
-        "mssql;Request;mssql;PreparedStatement;Member[execute].WithArity[2].ReturnValue", //
-        "mssql;Request;mssql;Request;Member[input,output,replaceInput].ReturnValue", //
-        "mssql;Request;mssql;Request;Member[replaceOutput].ReturnValue", //
-        "mssql;Request;mssql;RequestStatic;Instance", //
-        "mssql;Request;mssql;Transaction;Member[request].ReturnValue", //
-        "mssql;RequestStatic;mssql/msnodesqlv8;;Member[Request]", //
-        "mssql;RequestStatic;mssql;;Member[Request]", //
-        "mssql;Transaction;mssql;ConnectionPool;Member[transaction].ReturnValue", //
-        "mssql;Transaction;mssql;PreparedStatement;Member[transaction]", //
-        "mssql;Transaction;mssql;Request;Member[transaction]", //
-        "mssql;Transaction;mssql;Transaction;Member[begin].WithArity[0,1,2].ReturnValue", //
-        "mssql;Transaction;mssql;Transaction;Member[begin].WithArity[0,1].ReturnValue.Awaited", //
-        "mssql;Transaction;mssql;TransactionStatic;Instance", //
-        "mssql;TransactionStatic;mssql/msnodesqlv8;;Member[Transaction]", //
-        "mssql;TransactionStatic;mssql;;Member[Transaction]", //
-        "mssql;config;mssql/msnodesqlv8;;Member[connect].Argument[0]", //
-        "mssql;config;mssql;;Member[connect].Argument[0]", //
-        "mssql;config;mssql;ConnectionPoolStatic;WithArity[1,2].Argument[0]", //
+        "mssql.ConnectionPool;mssql.ConnectionPool;Member[connect].WithArity[0].ReturnValue.Awaited", //
+        "mssql.ConnectionPool;mssql.ConnectionPoolStatic;Instance", //
+        "mssql.ConnectionPool;mssql/msnodesqlv8;Member[connect].ReturnValue.Awaited", //
+        "mssql.ConnectionPool;mssql/msnodesqlv8;Member[pool]", //
+        "mssql.ConnectionPool;mssql;Member[connect].ReturnValue.Awaited", //
+        "mssql.ConnectionPool;mssql;Member[pool]", //
+        "mssql.ConnectionPoolStatic;mssql/msnodesqlv8;Member[ConnectionPool]", //
+        "mssql.ConnectionPoolStatic;mssql;Member[ConnectionPool]", //
+        "mssql.PreparedStatement;mssql.PreparedStatement;Member[input,output].ReturnValue", //
+        "mssql.PreparedStatement;mssql.PreparedStatement;Member[prepare].WithArity[0,1,2].ReturnValue", //
+        "mssql.PreparedStatement;mssql.PreparedStatement;Member[unprepare].WithArity[1].ReturnValue", //
+        "mssql.PreparedStatement;mssql.PreparedStatementStatic;Instance", //
+        "mssql.PreparedStatement;mssql.Request;Member[pstatement]", //
+        "mssql.PreparedStatementStatic;mssql/msnodesqlv8;Member[PreparedStatement]", //
+        "mssql.PreparedStatementStatic;mssql;Member[PreparedStatement]", //
+        "mssql.Request;mssql.ConnectionPool;Member[request].ReturnValue", //
+        "mssql.Request;mssql.PreparedStatement;Member[execute].WithArity[2].ReturnValue", //
+        "mssql.Request;mssql.Request;Member[input,output,replaceInput].ReturnValue", //
+        "mssql.Request;mssql.Request;Member[replaceOutput].ReturnValue", //
+        "mssql.Request;mssql.RequestStatic;Instance", //
+        "mssql.Request;mssql.Transaction;Member[request].ReturnValue", //
+        "mssql.RequestStatic;mssql/msnodesqlv8;Member[Request]", //
+        "mssql.RequestStatic;mssql;Member[Request]", //
+        "mssql.Transaction;mssql.ConnectionPool;Member[transaction].ReturnValue", //
+        "mssql.Transaction;mssql.PreparedStatement;Member[transaction]", //
+        "mssql.Transaction;mssql.Request;Member[transaction]", //
+        "mssql.Transaction;mssql.Transaction;Member[begin].WithArity[0,1,2].ReturnValue", //
+        "mssql.Transaction;mssql.Transaction;Member[begin].WithArity[0,1].ReturnValue.Awaited", //
+        "mssql.Transaction;mssql.TransactionStatic;Instance", //
+        "mssql.TransactionStatic;mssql/msnodesqlv8;Member[Transaction]", //
+        "mssql.TransactionStatic;mssql;Member[Transaction]", //
+        "mssql.config;mssql.ConnectionPoolStatic;WithArity[1,2].Argument[0]", //
+        "mssql.config;mssql/msnodesqlv8;Member[connect].Argument[0]", //
+        "mssql.config;mssql;Member[connect].Argument[0]", //
       ]
   }
 }
diff --git a/javascript/ql/lib/semmle/javascript/frameworks/mssql/model.json b/javascript/ql/lib/semmle/javascript/frameworks/mssql/model.json
index bd8e780a881..5dc81faeb49 100644
--- a/javascript/ql/lib/semmle/javascript/frameworks/mssql/model.json
+++ b/javascript/ql/lib/semmle/javascript/frameworks/mssql/model.json
@@ -10,55 +10,55 @@
     "language": "javascript",
     "usedTypes": {
         "sources": [
-            "mssql;Request",
-            "mssql;ConnectionPool"
+            "mssql.Request",
+            "mssql.ConnectionPool"
         ],
         "sinks": [
-            "mssql;config"
+            "mssql.config"
         ]
     },
     "model": {
         "typeDefinitions": [
-            "mssql;Request;mssql;Request;Member[replaceOutput].ReturnValue"
+            "mssql.Request;mssql.Request;Member[replaceOutput].ReturnValue"
         ],
         "sinks": []
     },
     "generatedModel": {
         "//": "Autogenerated section. Manual edits in here will be lost.",
         "typeDefinitions": [
-            "mssql;ConnectionPool;mssql/msnodesqlv8;;Member[connect].ReturnValue.Awaited",
-            "mssql;ConnectionPool;mssql/msnodesqlv8;;Member[pool]",
-            "mssql;ConnectionPool;mssql;;Member[connect].ReturnValue.Awaited",
-            "mssql;ConnectionPool;mssql;;Member[pool]",
-            "mssql;ConnectionPool;mssql;ConnectionPool;Member[connect].WithArity[0].ReturnValue.Awaited",
-            "mssql;ConnectionPool;mssql;ConnectionPoolStatic;Instance",
-            "mssql;ConnectionPoolStatic;mssql/msnodesqlv8;;Member[ConnectionPool]",
-            "mssql;ConnectionPoolStatic;mssql;;Member[ConnectionPool]",
-            "mssql;PreparedStatement;mssql;PreparedStatement;Member[input,output].ReturnValue",
-            "mssql;PreparedStatement;mssql;PreparedStatement;Member[prepare].WithArity[0,1,2].ReturnValue",
-            "mssql;PreparedStatement;mssql;PreparedStatement;Member[unprepare].WithArity[1].ReturnValue",
-            "mssql;PreparedStatement;mssql;PreparedStatementStatic;Instance",
-            "mssql;PreparedStatement;mssql;Request;Member[pstatement]",
-            "mssql;PreparedStatementStatic;mssql/msnodesqlv8;;Member[PreparedStatement]",
-            "mssql;PreparedStatementStatic;mssql;;Member[PreparedStatement]",
-            "mssql;Request;mssql;ConnectionPool;Member[request].ReturnValue",
-            "mssql;Request;mssql;PreparedStatement;Member[execute].WithArity[2].ReturnValue",
-            "mssql;Request;mssql;Request;Member[input,output,replaceInput].ReturnValue",
-            "mssql;Request;mssql;RequestStatic;Instance",
-            "mssql;Request;mssql;Transaction;Member[request].ReturnValue",
-            "mssql;RequestStatic;mssql/msnodesqlv8;;Member[Request]",
-            "mssql;RequestStatic;mssql;;Member[Request]",
-            "mssql;Transaction;mssql;ConnectionPool;Member[transaction].ReturnValue",
-            "mssql;Transaction;mssql;PreparedStatement;Member[transaction]",
-            "mssql;Transaction;mssql;Request;Member[transaction]",
-            "mssql;Transaction;mssql;Transaction;Member[begin].WithArity[0,1,2].ReturnValue",
-            "mssql;Transaction;mssql;Transaction;Member[begin].WithArity[0,1].ReturnValue.Awaited",
-            "mssql;Transaction;mssql;TransactionStatic;Instance",
-            "mssql;TransactionStatic;mssql/msnodesqlv8;;Member[Transaction]",
-            "mssql;TransactionStatic;mssql;;Member[Transaction]",
-            "mssql;config;mssql/msnodesqlv8;;Member[connect].Argument[0]",
-            "mssql;config;mssql;;Member[connect].Argument[0]",
-            "mssql;config;mssql;ConnectionPoolStatic;WithArity[1,2].Argument[0]"
+            "mssql.ConnectionPool;mssql.ConnectionPool;Member[connect].WithArity[0].ReturnValue.Awaited",
+            "mssql.ConnectionPool;mssql.ConnectionPoolStatic;Instance",
+            "mssql.ConnectionPool;mssql/msnodesqlv8;Member[connect].ReturnValue.Awaited",
+            "mssql.ConnectionPool;mssql/msnodesqlv8;Member[pool]",
+            "mssql.ConnectionPool;mssql;Member[connect].ReturnValue.Awaited",
+            "mssql.ConnectionPool;mssql;Member[pool]",
+            "mssql.ConnectionPoolStatic;mssql/msnodesqlv8;Member[ConnectionPool]",
+            "mssql.ConnectionPoolStatic;mssql;Member[ConnectionPool]",
+            "mssql.PreparedStatement;mssql.PreparedStatement;Member[input,output].ReturnValue",
+            "mssql.PreparedStatement;mssql.PreparedStatement;Member[prepare].WithArity[0,1,2].ReturnValue",
+            "mssql.PreparedStatement;mssql.PreparedStatement;Member[unprepare].WithArity[1].ReturnValue",
+            "mssql.PreparedStatement;mssql.PreparedStatementStatic;Instance",
+            "mssql.PreparedStatement;mssql.Request;Member[pstatement]",
+            "mssql.PreparedStatementStatic;mssql/msnodesqlv8;Member[PreparedStatement]",
+            "mssql.PreparedStatementStatic;mssql;Member[PreparedStatement]",
+            "mssql.Request;mssql.ConnectionPool;Member[request].ReturnValue",
+            "mssql.Request;mssql.PreparedStatement;Member[execute].WithArity[2].ReturnValue",
+            "mssql.Request;mssql.Request;Member[input,output,replaceInput].ReturnValue",
+            "mssql.Request;mssql.RequestStatic;Instance",
+            "mssql.Request;mssql.Transaction;Member[request].ReturnValue",
+            "mssql.RequestStatic;mssql/msnodesqlv8;Member[Request]",
+            "mssql.RequestStatic;mssql;Member[Request]",
+            "mssql.Transaction;mssql.ConnectionPool;Member[transaction].ReturnValue",
+            "mssql.Transaction;mssql.PreparedStatement;Member[transaction]",
+            "mssql.Transaction;mssql.Request;Member[transaction]",
+            "mssql.Transaction;mssql.Transaction;Member[begin].WithArity[0,1,2].ReturnValue",
+            "mssql.Transaction;mssql.Transaction;Member[begin].WithArity[0,1].ReturnValue.Awaited",
+            "mssql.Transaction;mssql.TransactionStatic;Instance",
+            "mssql.TransactionStatic;mssql/msnodesqlv8;Member[Transaction]",
+            "mssql.TransactionStatic;mssql;Member[Transaction]",
+            "mssql.config;mssql.ConnectionPoolStatic;WithArity[1,2].Argument[0]",
+            "mssql.config;mssql/msnodesqlv8;Member[connect].Argument[0]",
+            "mssql.config;mssql;Member[connect].Argument[0]"
         ],
         "summaries": [],
         "typeVariables": []
diff --git a/javascript/ql/lib/semmle/javascript/frameworks/mysql/Model.qll b/javascript/ql/lib/semmle/javascript/frameworks/mysql/Model.qll
index e8019d5a435..34ea14abb0b 100644
--- a/javascript/ql/lib/semmle/javascript/frameworks/mysql/Model.qll
+++ b/javascript/ql/lib/semmle/javascript/frameworks/mysql/Model.qll
@@ -6,63 +6,63 @@ private class Types extends ModelInput::TypeModelCsv {
   override predicate row(string row) {
     row =
       [
-        "mysql2/promise;Connection;mysql2/promise;;Member[createConnectionPromise].ReturnValue.Awaited", //
-        "mysql2/promise;Connection;mysql2/promise;;Member[createConnection].ReturnValue.Awaited", //
-        "mysql2/promise;Connection;mysql2/promise;PoolConnection;", //
-        "mysql2/promise;Connection;mysql2;;Member[createConnectionPromise].ReturnValue.Awaited", //
-        "mysql2/promise;Connection;mysql2;Connection;Member[promise].ReturnValue", //
-        "mysql2/promise;Pool;mysql2/promise;;Member[createPool].ReturnValue", //
-        "mysql2/promise;Pool;mysql2/promise;Pool;Member[addListener,on,once,prependListener,prependOnceListener].ReturnValue", //
-        "mysql2/promise;Pool;mysql2;Pool;Member[promise].ReturnValue", //
-        "mysql2/promise;PoolConnection;mysql2/promise;Pool;Member[addListener,on,once,prependListener,prependOnceListener].WithArity[2].WithStringArgument[0=acquire,0=connection,0=release].Argument[1].Argument[0]", //
-        "mysql2/promise;PoolConnection;mysql2/promise;Pool;Member[getConnection].ReturnValue.Awaited", //
-        "mysql2/promise;PoolConnection;mysql2;PoolConnection;Member[promise].ReturnValue", //
-        "mysql2/typings/mysql/lib/Connection;;mysql2/typings/mysql/lib/PoolConnection;;", //
-        "mysql2/typings/mysql/lib/Connection;;mysql2/typings/mysql;Connection;", //
-        "mysql2/typings/mysql/lib/PoolConnection;;mysql2/typings/mysql;PoolConnection;", //
-        "mysql2/typings/mysql;Connection;mysql2;Connection;", //
-        "mysql2/typings/mysql;Connection;mysql2;Pool;", //
-        "mysql2/typings/mysql;PoolConnection;mysql2;PoolConnection;", //
-        "mysql2;Connection;mysql2;;Member[createConnection].ReturnValue", //
-        "mysql2;Connection;mysql2;PoolConnection;", //
-        "mysql2;Connection;mysql2;authPlugins;Argument[0].Member[connection]", //
-        "mysql2;ConnectionOptions;mysql2/promise;;Member[createConnection].Argument[0]", //
-        "mysql2;ConnectionOptions;mysql2/promise;Connection;Member[changeUser].Argument[0]", //
-        "mysql2;ConnectionOptions;mysql2/promise;Connection;Member[config]", //
-        "mysql2;ConnectionOptions;mysql2;;Member[createConnection].Argument[0]", //
-        "mysql2;ConnectionOptions;mysql2;PoolOptions;", //
-        "mysql2;Pool;mysql2;;Member[createPool].ReturnValue", //
-        "mysql2;Pool;mysql2;Pool;Member[addListener,on,once,prependListener,prependOnceListener].ReturnValue", //
-        "mysql2;PoolConnection;mysql2;Pool;Member[addListener,on,once,prependListener,prependOnceListener].WithArity[2].WithStringArgument[0=acquire,0=connection,0=release].Argument[1].Argument[0]", //
-        "mysql2;PoolConnection;mysql2;Pool;Member[getConnection].Argument[0].Argument[1]", //
-        "mysql2;PoolOptions;mysql2/promise;;Member[createPool].Argument[0]", //
-        "mysql2;PoolOptions;mysql2;;Member[createPool].Argument[0]", //
-        "mysql2;authPlugins;mysql2;ConnectionOptions;Member[authPlugins].AnyMember", //
-        "mysql;Connection;mysql;;Member[createConnection].ReturnValue", //
-        "mysql;Connection;mysql;Pool;Member[on,addListener].WithStringArgument[0=acquire,0=connection,0=release].Argument[1].Argument[0]", //
-        "mysql;Connection;mysql;PoolConnection;", //
-        "mysql;Connection;mysql;Query;Member[RowDataPacket].Argument[2]", //
-        "mysql;ConnectionConfig;mysql;;Member[createConnection].Argument[0]", //
-        "mysql;ConnectionConfig;mysql;Connection;Member[config]", //
-        "mysql;ConnectionConfig;mysql;PoolConfig;", //
-        "mysql;ConnectionOptions;mysql;Connection;Member[changeUser].WithArity[1,2].Argument[0]", //
-        "mysql;ConnectionOptions;mysql;ConnectionConfig;", //
-        "mysql;Pool;mysql;;Member[createPool].ReturnValue", //
-        "mysql;Pool;mysql;PoolCluster;Member[of].ReturnValue", //
-        "mysql;PoolCluster;mysql;;Member[createPoolCluster].ReturnValue", //
-        "mysql;PoolConfig;mysql;;Member[createPool].Argument[0]", //
-        "mysql;PoolConfig;mysql;PoolCluster;Member[add].Argument[1]", //
-        "mysql;PoolConfig;mysql;PoolCluster;Member[add].WithArity[1].Argument[0]", //
-        "mysql;PoolConnection;mysql;Pool;Member[acquireConnection].Argument[0]", //
-        "mysql;PoolConnection;mysql;Pool;Member[acquireConnection].Argument[1].Argument[1]", //
-        "mysql;PoolConnection;mysql;Pool;Member[getConnection].Argument[0].Argument[1]", //
-        "mysql;PoolConnection;mysql;PoolCluster;Member[getConnection].Argument[1,2].Argument[1]", //
-        "mysql;PoolConnection;mysql;PoolCluster;Member[getConnection].WithArity[1].Argument[0].Argument[1]", //
-        "mysql;Query;mysql;Query;Member[on].ReturnValue", //
-        "mysql;Query;mysql;QueryFunction;ReturnValue", //
-        "mysql;Query;mysql;QueryFunction;WithArity[1].Argument[0]", //
-        "mysql;QueryFunction;mysql;Connection;Member[createQuery,query]", //
-        "mysql;QueryFunction;mysql;Pool;Member[query]", //
+        "mysql.Connection;mysql.Pool;Member[on,addListener].WithStringArgument[0=acquire,0=connection,0=release].Argument[1].Argument[0]", //
+        "mysql.Connection;mysql.PoolConnection;", //
+        "mysql.Connection;mysql.Query;Member[RowDataPacket].Argument[2]", //
+        "mysql.Connection;mysql;Member[createConnection].ReturnValue", //
+        "mysql.ConnectionConfig;mysql.Connection;Member[config]", //
+        "mysql.ConnectionConfig;mysql.PoolConfig;", //
+        "mysql.ConnectionConfig;mysql;Member[createConnection].Argument[0]", //
+        "mysql.ConnectionOptions;mysql.Connection;Member[changeUser].WithArity[1,2].Argument[0]", //
+        "mysql.ConnectionOptions;mysql.ConnectionConfig;", //
+        "mysql.Pool;mysql.PoolCluster;Member[of].ReturnValue", //
+        "mysql.Pool;mysql;Member[createPool].ReturnValue", //
+        "mysql.PoolCluster;mysql;Member[createPoolCluster].ReturnValue", //
+        "mysql.PoolConfig;mysql.PoolCluster;Member[add].Argument[1]", //
+        "mysql.PoolConfig;mysql.PoolCluster;Member[add].WithArity[1].Argument[0]", //
+        "mysql.PoolConfig;mysql;Member[createPool].Argument[0]", //
+        "mysql.PoolConnection;mysql.Pool;Member[acquireConnection].Argument[0]", //
+        "mysql.PoolConnection;mysql.Pool;Member[acquireConnection].Argument[1].Argument[1]", //
+        "mysql.PoolConnection;mysql.Pool;Member[getConnection].Argument[0].Argument[1]", //
+        "mysql.PoolConnection;mysql.PoolCluster;Member[getConnection].Argument[1,2].Argument[1]", //
+        "mysql.PoolConnection;mysql.PoolCluster;Member[getConnection].WithArity[1].Argument[0].Argument[1]", //
+        "mysql.Query;mysql.Query;Member[on].ReturnValue", //
+        "mysql.Query;mysql.QueryFunction;ReturnValue", //
+        "mysql.Query;mysql.QueryFunction;WithArity[1].Argument[0]", //
+        "mysql.QueryFunction;mysql.Connection;Member[createQuery,query]", //
+        "mysql.QueryFunction;mysql.Pool;Member[query]", //
+        "mysql2.Connection;mysql2.PoolConnection;", //
+        "mysql2.Connection;mysql2.authPlugins;Argument[0].Member[connection]", //
+        "mysql2.Connection;mysql2;Member[createConnection].ReturnValue", //
+        "mysql2.ConnectionOptions;mysql2.PoolOptions;", //
+        "mysql2.ConnectionOptions;mysql2/promise.Connection;Member[changeUser].Argument[0]", //
+        "mysql2.ConnectionOptions;mysql2/promise.Connection;Member[config]", //
+        "mysql2.ConnectionOptions;mysql2/promise;Member[createConnection].Argument[0]", //
+        "mysql2.ConnectionOptions;mysql2;Member[createConnection].Argument[0]", //
+        "mysql2.Pool;mysql2.Pool;Member[addListener,on,once,prependListener,prependOnceListener].ReturnValue", //
+        "mysql2.Pool;mysql2;Member[createPool].ReturnValue", //
+        "mysql2.PoolConnection;mysql2.Pool;Member[addListener,on,once,prependListener,prependOnceListener].WithArity[2].WithStringArgument[0=acquire,0=connection,0=release].Argument[1].Argument[0]", //
+        "mysql2.PoolConnection;mysql2.Pool;Member[getConnection].Argument[0].Argument[1]", //
+        "mysql2.PoolOptions;mysql2/promise;Member[createPool].Argument[0]", //
+        "mysql2.PoolOptions;mysql2;Member[createPool].Argument[0]", //
+        "mysql2.authPlugins;mysql2.ConnectionOptions;Member[authPlugins].AnyMember", //
+        "mysql2/promise.Connection;mysql2.Connection;Member[promise].ReturnValue", //
+        "mysql2/promise.Connection;mysql2/promise.PoolConnection;", //
+        "mysql2/promise.Connection;mysql2/promise;Member[createConnectionPromise].ReturnValue.Awaited", //
+        "mysql2/promise.Connection;mysql2/promise;Member[createConnection].ReturnValue.Awaited", //
+        "mysql2/promise.Connection;mysql2;Member[createConnectionPromise].ReturnValue.Awaited", //
+        "mysql2/promise.Pool;mysql2.Pool;Member[promise].ReturnValue", //
+        "mysql2/promise.Pool;mysql2/promise.Pool;Member[addListener,on,once,prependListener,prependOnceListener].ReturnValue", //
+        "mysql2/promise.Pool;mysql2/promise;Member[createPool].ReturnValue", //
+        "mysql2/promise.PoolConnection;mysql2.PoolConnection;Member[promise].ReturnValue", //
+        "mysql2/promise.PoolConnection;mysql2/promise.Pool;Member[addListener,on,once,prependListener,prependOnceListener].WithArity[2].WithStringArgument[0=acquire,0=connection,0=release].Argument[1].Argument[0]", //
+        "mysql2/promise.PoolConnection;mysql2/promise.Pool;Member[getConnection].ReturnValue.Awaited", //
+        "mysql2/typings/mysql.Connection;mysql2.Connection;", //
+        "mysql2/typings/mysql.Connection;mysql2.Pool;", //
+        "mysql2/typings/mysql.PoolConnection;mysql2.PoolConnection;", //
+        "mysql2/typings/mysql/lib/Connection;mysql2/typings/mysql.Connection;", //
+        "mysql2/typings/mysql/lib/Connection;mysql2/typings/mysql/lib/PoolConnection;", //
+        "mysql2/typings/mysql/lib/PoolConnection;mysql2/typings/mysql.PoolConnection;", //
       ]
   }
 }
@@ -71,9 +71,9 @@ private class Summaries extends ModelInput::SummaryModelCsv {
   override predicate row(string row) {
     row =
       [
-        "mysql2/promise;Pool;;;Member[addListener,on,once,prependListener,prependOnceListener].ReturnValue;type", //
-        "mysql2/typings/mysql/lib/Connection;;;;Member[addListener,on,once,prependListener,prependOnceListener].ReturnValue;type", //
-        "mysql2;Pool;;;Member[addListener,on,once,prependListener,prependOnceListener].ReturnValue;type", //
+        "mysql2.Pool;;;Member[addListener,on,once,prependListener,prependOnceListener].ReturnValue;type", //
+        "mysql2/promise.Pool;;;Member[addListener,on,once,prependListener,prependOnceListener].ReturnValue;type", //
+        "mysql2/typings/mysql/lib/Connection;;;Member[addListener,on,once,prependListener,prependOnceListener].ReturnValue;type", //
       ]
   }
 }
diff --git a/javascript/ql/lib/semmle/javascript/frameworks/mysql/model.json b/javascript/ql/lib/semmle/javascript/frameworks/mysql/model.json
index 759956faa11..69add1ddad9 100644
--- a/javascript/ql/lib/semmle/javascript/frameworks/mysql/model.json
+++ b/javascript/ql/lib/semmle/javascript/frameworks/mysql/model.json
@@ -11,89 +11,89 @@
     "language": "javascript",
     "usedTypes": {
         "sources": [
-            "mysql;Pool",
-            "mysql;Connection",
-            "mysql2;Pool",
-            "mysql2;Connection",
-            "mysql2/promise;Pool",
-            "mysql2/promise;Connection"
+            "mysql.Pool",
+            "mysql.Connection",
+            "mysql2.Pool",
+            "mysql2.Connection",
+            "mysql2/promise.Pool",
+            "mysql2/promise.Connection"
         ],
         "sinks": [
-            "mysql;ConnectionOptions",
-            "mysql2;ConnectionOptions",
-            "mysql2/promise;ConnectionOptions"
+            "mysql.ConnectionOptions",
+            "mysql2.ConnectionOptions",
+            "mysql2/promise.ConnectionOptions"
         ]
     },
     "model": {
         "sinks": [],
         "typeDefinitions": [
-            "mysql;Connection;mysql;Pool;Member[on,addListener].WithStringArgument[0=acquire,0=connection,0=release].Argument[1].Argument[0]",
-            "mysql2/promise;Connection;mysql2;;Member[createConnectionPromise].ReturnValue.Awaited",
-            "mysql2/promise;Connection;mysql2/promise;;Member[createConnectionPromise].ReturnValue.Awaited"
+            "mysql.Connection;mysql.Pool;Member[on,addListener].WithStringArgument[0=acquire,0=connection,0=release].Argument[1].Argument[0]",
+            "mysql2/promise.Connection;mysql2;Member[createConnectionPromise].ReturnValue.Awaited",
+            "mysql2/promise.Connection;mysql2/promise;Member[createConnectionPromise].ReturnValue.Awaited"
         ]
     },
     "generatedModel": {
         "//": "Autogenerated section. Manual edits in here will be lost.",
         "typeDefinitions": [
-            "mysql2/promise;Connection;mysql2/promise;;Member[createConnection].ReturnValue.Awaited",
-            "mysql2/promise;Connection;mysql2/promise;PoolConnection;",
-            "mysql2/promise;Connection;mysql2;Connection;Member[promise].ReturnValue",
-            "mysql2/promise;Pool;mysql2/promise;;Member[createPool].ReturnValue",
-            "mysql2/promise;Pool;mysql2/promise;Pool;Member[addListener,on,once,prependListener,prependOnceListener].ReturnValue",
-            "mysql2/promise;Pool;mysql2;Pool;Member[promise].ReturnValue",
-            "mysql2/promise;PoolConnection;mysql2/promise;Pool;Member[addListener,on,once,prependListener,prependOnceListener].WithArity[2].WithStringArgument[0=acquire,0=connection,0=release].Argument[1].Argument[0]",
-            "mysql2/promise;PoolConnection;mysql2/promise;Pool;Member[getConnection].ReturnValue.Awaited",
-            "mysql2/promise;PoolConnection;mysql2;PoolConnection;Member[promise].ReturnValue",
-            "mysql2/typings/mysql/lib/Connection;;mysql2/typings/mysql/lib/PoolConnection;;",
-            "mysql2/typings/mysql/lib/Connection;;mysql2/typings/mysql;Connection;",
-            "mysql2/typings/mysql/lib/PoolConnection;;mysql2/typings/mysql;PoolConnection;",
-            "mysql2/typings/mysql;Connection;mysql2;Connection;",
-            "mysql2/typings/mysql;Connection;mysql2;Pool;",
-            "mysql2/typings/mysql;PoolConnection;mysql2;PoolConnection;",
-            "mysql2;Connection;mysql2;;Member[createConnection].ReturnValue",
-            "mysql2;Connection;mysql2;PoolConnection;",
-            "mysql2;Connection;mysql2;authPlugins;Argument[0].Member[connection]",
-            "mysql2;ConnectionOptions;mysql2/promise;;Member[createConnection].Argument[0]",
-            "mysql2;ConnectionOptions;mysql2/promise;Connection;Member[changeUser].Argument[0]",
-            "mysql2;ConnectionOptions;mysql2/promise;Connection;Member[config]",
-            "mysql2;ConnectionOptions;mysql2;;Member[createConnection].Argument[0]",
-            "mysql2;ConnectionOptions;mysql2;PoolOptions;",
-            "mysql2;Pool;mysql2;;Member[createPool].ReturnValue",
-            "mysql2;Pool;mysql2;Pool;Member[addListener,on,once,prependListener,prependOnceListener].ReturnValue",
-            "mysql2;PoolConnection;mysql2;Pool;Member[addListener,on,once,prependListener,prependOnceListener].WithArity[2].WithStringArgument[0=acquire,0=connection,0=release].Argument[1].Argument[0]",
-            "mysql2;PoolConnection;mysql2;Pool;Member[getConnection].Argument[0].Argument[1]",
-            "mysql2;PoolOptions;mysql2/promise;;Member[createPool].Argument[0]",
-            "mysql2;PoolOptions;mysql2;;Member[createPool].Argument[0]",
-            "mysql2;authPlugins;mysql2;ConnectionOptions;Member[authPlugins].AnyMember",
-            "mysql;Connection;mysql;;Member[createConnection].ReturnValue",
-            "mysql;Connection;mysql;PoolConnection;",
-            "mysql;Connection;mysql;Query;Member[RowDataPacket].Argument[2]",
-            "mysql;ConnectionConfig;mysql;;Member[createConnection].Argument[0]",
-            "mysql;ConnectionConfig;mysql;Connection;Member[config]",
-            "mysql;ConnectionConfig;mysql;PoolConfig;",
-            "mysql;ConnectionOptions;mysql;Connection;Member[changeUser].WithArity[1,2].Argument[0]",
-            "mysql;ConnectionOptions;mysql;ConnectionConfig;",
-            "mysql;Pool;mysql;;Member[createPool].ReturnValue",
-            "mysql;Pool;mysql;PoolCluster;Member[of].ReturnValue",
-            "mysql;PoolCluster;mysql;;Member[createPoolCluster].ReturnValue",
-            "mysql;PoolConfig;mysql;;Member[createPool].Argument[0]",
-            "mysql;PoolConfig;mysql;PoolCluster;Member[add].Argument[1]",
-            "mysql;PoolConfig;mysql;PoolCluster;Member[add].WithArity[1].Argument[0]",
-            "mysql;PoolConnection;mysql;Pool;Member[acquireConnection].Argument[0]",
-            "mysql;PoolConnection;mysql;Pool;Member[acquireConnection].Argument[1].Argument[1]",
-            "mysql;PoolConnection;mysql;Pool;Member[getConnection].Argument[0].Argument[1]",
-            "mysql;PoolConnection;mysql;PoolCluster;Member[getConnection].Argument[1,2].Argument[1]",
-            "mysql;PoolConnection;mysql;PoolCluster;Member[getConnection].WithArity[1].Argument[0].Argument[1]",
-            "mysql;Query;mysql;Query;Member[on].ReturnValue",
-            "mysql;Query;mysql;QueryFunction;ReturnValue",
-            "mysql;Query;mysql;QueryFunction;WithArity[1].Argument[0]",
-            "mysql;QueryFunction;mysql;Connection;Member[createQuery,query]",
-            "mysql;QueryFunction;mysql;Pool;Member[query]"
+            "mysql.Connection;mysql.PoolConnection;",
+            "mysql.Connection;mysql.Query;Member[RowDataPacket].Argument[2]",
+            "mysql.Connection;mysql;Member[createConnection].ReturnValue",
+            "mysql.ConnectionConfig;mysql.Connection;Member[config]",
+            "mysql.ConnectionConfig;mysql.PoolConfig;",
+            "mysql.ConnectionConfig;mysql;Member[createConnection].Argument[0]",
+            "mysql.ConnectionOptions;mysql.Connection;Member[changeUser].WithArity[1,2].Argument[0]",
+            "mysql.ConnectionOptions;mysql.ConnectionConfig;",
+            "mysql.Pool;mysql.PoolCluster;Member[of].ReturnValue",
+            "mysql.Pool;mysql;Member[createPool].ReturnValue",
+            "mysql.PoolCluster;mysql;Member[createPoolCluster].ReturnValue",
+            "mysql.PoolConfig;mysql.PoolCluster;Member[add].Argument[1]",
+            "mysql.PoolConfig;mysql.PoolCluster;Member[add].WithArity[1].Argument[0]",
+            "mysql.PoolConfig;mysql;Member[createPool].Argument[0]",
+            "mysql.PoolConnection;mysql.Pool;Member[acquireConnection].Argument[0]",
+            "mysql.PoolConnection;mysql.Pool;Member[acquireConnection].Argument[1].Argument[1]",
+            "mysql.PoolConnection;mysql.Pool;Member[getConnection].Argument[0].Argument[1]",
+            "mysql.PoolConnection;mysql.PoolCluster;Member[getConnection].Argument[1,2].Argument[1]",
+            "mysql.PoolConnection;mysql.PoolCluster;Member[getConnection].WithArity[1].Argument[0].Argument[1]",
+            "mysql.Query;mysql.Query;Member[on].ReturnValue",
+            "mysql.Query;mysql.QueryFunction;ReturnValue",
+            "mysql.Query;mysql.QueryFunction;WithArity[1].Argument[0]",
+            "mysql.QueryFunction;mysql.Connection;Member[createQuery,query]",
+            "mysql.QueryFunction;mysql.Pool;Member[query]",
+            "mysql2.Connection;mysql2.PoolConnection;",
+            "mysql2.Connection;mysql2.authPlugins;Argument[0].Member[connection]",
+            "mysql2.Connection;mysql2;Member[createConnection].ReturnValue",
+            "mysql2.ConnectionOptions;mysql2.PoolOptions;",
+            "mysql2.ConnectionOptions;mysql2/promise.Connection;Member[changeUser].Argument[0]",
+            "mysql2.ConnectionOptions;mysql2/promise.Connection;Member[config]",
+            "mysql2.ConnectionOptions;mysql2/promise;Member[createConnection].Argument[0]",
+            "mysql2.ConnectionOptions;mysql2;Member[createConnection].Argument[0]",
+            "mysql2.Pool;mysql2.Pool;Member[addListener,on,once,prependListener,prependOnceListener].ReturnValue",
+            "mysql2.Pool;mysql2;Member[createPool].ReturnValue",
+            "mysql2.PoolConnection;mysql2.Pool;Member[addListener,on,once,prependListener,prependOnceListener].WithArity[2].WithStringArgument[0=acquire,0=connection,0=release].Argument[1].Argument[0]",
+            "mysql2.PoolConnection;mysql2.Pool;Member[getConnection].Argument[0].Argument[1]",
+            "mysql2.PoolOptions;mysql2/promise;Member[createPool].Argument[0]",
+            "mysql2.PoolOptions;mysql2;Member[createPool].Argument[0]",
+            "mysql2.authPlugins;mysql2.ConnectionOptions;Member[authPlugins].AnyMember",
+            "mysql2/promise.Connection;mysql2.Connection;Member[promise].ReturnValue",
+            "mysql2/promise.Connection;mysql2/promise.PoolConnection;",
+            "mysql2/promise.Connection;mysql2/promise;Member[createConnection].ReturnValue.Awaited",
+            "mysql2/promise.Pool;mysql2.Pool;Member[promise].ReturnValue",
+            "mysql2/promise.Pool;mysql2/promise.Pool;Member[addListener,on,once,prependListener,prependOnceListener].ReturnValue",
+            "mysql2/promise.Pool;mysql2/promise;Member[createPool].ReturnValue",
+            "mysql2/promise.PoolConnection;mysql2.PoolConnection;Member[promise].ReturnValue",
+            "mysql2/promise.PoolConnection;mysql2/promise.Pool;Member[addListener,on,once,prependListener,prependOnceListener].WithArity[2].WithStringArgument[0=acquire,0=connection,0=release].Argument[1].Argument[0]",
+            "mysql2/promise.PoolConnection;mysql2/promise.Pool;Member[getConnection].ReturnValue.Awaited",
+            "mysql2/typings/mysql.Connection;mysql2.Connection;",
+            "mysql2/typings/mysql.Connection;mysql2.Pool;",
+            "mysql2/typings/mysql.PoolConnection;mysql2.PoolConnection;",
+            "mysql2/typings/mysql/lib/Connection;mysql2/typings/mysql.Connection;",
+            "mysql2/typings/mysql/lib/Connection;mysql2/typings/mysql/lib/PoolConnection;",
+            "mysql2/typings/mysql/lib/PoolConnection;mysql2/typings/mysql.PoolConnection;"
         ],
         "summaries": [
-            "mysql2/promise;Pool;;;Member[addListener,on,once,prependListener,prependOnceListener].ReturnValue;type",
-            "mysql2/typings/mysql/lib/Connection;;;;Member[addListener,on,once,prependListener,prependOnceListener].ReturnValue;type",
-            "mysql2;Pool;;;Member[addListener,on,once,prependListener,prependOnceListener].ReturnValue;type"
+            "mysql2.Pool;;;Member[addListener,on,once,prependListener,prependOnceListener].ReturnValue;type",
+            "mysql2/promise.Pool;;;Member[addListener,on,once,prependListener,prependOnceListener].ReturnValue;type",
+            "mysql2/typings/mysql/lib/Connection;;;Member[addListener,on,once,prependListener,prependOnceListener].ReturnValue;type"
         ],
         "typeVariables": []
     }
diff --git a/javascript/ql/lib/semmle/javascript/frameworks/pg/Model.qll b/javascript/ql/lib/semmle/javascript/frameworks/pg/Model.qll
index 82a43df3174..979b98bd0c5 100644
--- a/javascript/ql/lib/semmle/javascript/frameworks/pg/Model.qll
+++ b/javascript/ql/lib/semmle/javascript/frameworks/pg/Model.qll
@@ -6,71 +6,71 @@ private class Types extends ModelInput::TypeModelCsv {
   override predicate row(string row) {
     row =
       [
-        "events;;pg-cursor;;", //
-        "events;;pg-promise/pg-subset;pg.IClient;", //
-        "events;;pg-promise/pg-subset;pg.IConnection;", //
-        "events;;pg-promise/pg-subset;pg.IPool;", //
-        "events;;pg;ClientBase;", //
-        "events;;pg;Events;", //
-        "events;;pg;Pool;", //
-        "global;NodeJS.EventEmitter;events;;", //
-        "pg-cursor;;pg-cursor;Static;Instance", //
-        "pg-cursor;Static;pg-cursor;;", //
-        "pg-pool;;pg-pool;;Member[addListener,on,once,prependListener,prependOnceListener].ReturnValue", //
-        "pg-pool;;pg-pool;Static;Instance", //
-        "pg-pool;Static;pg-pool;;", //
-        "pg-promise/pg-subset;pg.IClient;pg-promise/pg-subset;;Member[Client].Instance", //
-        "pg-promise/pg-subset;pg.IClient;pg-promise;;Argument[0].TypeVar[pg-promise.IInitOptions.1]", //
-        "pg-promise/pg-subset;pg.IClient;pg-promise;IMain;Argument[0].TypeVar[pg-promise/pg-subset.pg.IConnectionParameters.0]", //
-        "pg-promise/pg-subset;pg.IClient;pg-promise;IMain;ReturnValue.TypeVar[pg-promise.IDatabase.1]", //
-        "pg-promise/pg-subset;pg.IConnection;pg-promise/pg-subset;pg.IClient;Member[connection]", //
-        "pg-promise/pg-subset;pg.IPool;pg-promise;IDatabase;Member[$pool]", //
-        "pg-promise;IBaseProtocol;pg-promise/typescript/pg-promise;IBaseProtocol;", //
-        "pg-promise;IBaseProtocol;pg-promise;IConnected;", //
-        "pg-promise;IBaseProtocol;pg-promise;IDatabase;", //
-        "pg-promise;IBaseProtocol;pg-promise;ITask;", //
-        "pg-promise;IConnected;pg-promise/typescript/pg-promise;IConnected;", //
-        "pg-promise;IConnected;pg-promise;IDatabase;Member[connect].ReturnValue.Awaited", //
-        "pg-promise;IDatabase;pg-promise/typescript/pg-promise;IDatabase;", //
-        "pg-promise;IDatabase;pg-promise;IInitOptions;Member[extend].Argument[0]", //
-        "pg-promise;IDatabase;pg-promise;IMain;ReturnValue", //
-        "pg-promise;IInitOptions;pg-promise/typescript/pg-promise;IInitOptions;", //
-        "pg-promise;IInitOptions;pg-promise;;Argument[0]", //
-        "pg-promise;IInitOptions;pg-promise;ILibConfig;Member[options]", //
-        "pg-promise;ILibConfig;pg-promise/typescript/pg-promise;ILibConfig;", //
-        "pg-promise;ILibConfig;pg-promise;IDatabase;Member[$config]", //
-        "pg-promise;IMain;pg-promise/typescript/pg-promise;IMain;", //
-        "pg-promise;IMain;pg-promise;;ReturnValue", //
-        "pg-promise;IMain;pg-promise;ILibConfig;Member[pgp]", //
-        "pg-promise;ITask;pg-promise/typescript/pg-promise;ITask;", //
-        "pg-promise;ITask;pg-promise;IBaseProtocol;Member[task,taskIf,tx,txIf].Argument[1].Argument[0]", //
-        "pg-promise;ITask;pg-promise;IBaseProtocol;Member[task,taskIf,tx,txIf].WithArity[1].Argument[0].Argument[0]", //
-        "pg-promise;ITask;pg-promise;IBaseProtocol;Member[taskIf].WithArity[2].Argument[0].Member[cnd].Argument[0]", //
-        "pg-promise;ITask;pg-promise;IBaseProtocol;Member[txIf].WithArity[2].Argument[0].Member[cnd,reusable].Argument[0]", //
-        "pg;Client;pg-pool;Static;Instance.TypeVar[pg-pool..0]", //
-        "pg;Client;pg-promise/pg-subset;pg.IClient;", //
-        "pg;Client;pg;ClientStatic;Instance", //
-        "pg;Client;pg;Events;Member[addListener,on,once,prependListener,prependOnceListener].Argument[1].Argument[1]", //
-        "pg;ClientBase;pg;Client;", //
-        "pg;ClientBase;pg;PoolClient;", //
-        "pg;ClientStatic;pg;;Member[Client]", //
-        "pg;Connection;pg-promise/pg-subset;pg.IConnection;", //
-        "pg;Events;pg;Events;Member[addListener,on,once,prependListener,prependOnceListener].ReturnValue", //
-        "pg;Events;pg;EventsStatic;Instance", //
-        "pg;EventsStatic;pg;;Member[Events]", //
-        "pg;Pool;pg-pool;;", //
-        "pg;Pool;pg-promise/pg-subset;pg.IPool;", //
-        "pg;Pool;pg;Pool;Member[addListener,on,once,prependListener,prependOnceListener].ReturnValue", //
-        "pg;Pool;pg;PoolStatic;Instance", //
-        "pg;PoolClient;pg-pool;;Member[addListener,on,once,prependListener,prependOnceListener].WithArity[2].WithStringArgument[0=acquire,0=connect,0=remove].Argument[1].Argument[0]", //
-        "pg;PoolClient;pg-pool;;Member[addListener,on,once,prependListener,prependOnceListener].WithArity[2].WithStringArgument[0=error].Argument[1].Argument[1]", //
-        "pg;PoolClient;pg-pool;;Member[connect].Argument[0].Argument[1]", //
-        "pg;PoolClient;pg-pool;;Member[connect].WithArity[0].ReturnValue.Awaited", //
-        "pg;PoolClient;pg;Pool;Member[addListener,on,once,prependListener,prependOnceListener].WithArity[2].WithStringArgument[0=acquire,0=connect,0=remove].Argument[1].Argument[0]", //
-        "pg;PoolClient;pg;Pool;Member[addListener,on,once,prependListener,prependOnceListener].WithArity[2].WithStringArgument[0=error].Argument[1].Argument[1]", //
-        "pg;PoolClient;pg;Pool;Member[connect].Argument[0].Argument[1]", //
-        "pg;PoolClient;pg;Pool;Member[connect].WithArity[0].ReturnValue.Awaited", //
-        "pg;PoolStatic;pg;;Member[Pool]", //
+        "events;pg-cursor;", //
+        "events;pg-promise/pg-subset.pg.IClient;", //
+        "events;pg-promise/pg-subset.pg.IConnection;", //
+        "events;pg-promise/pg-subset.pg.IPool;", //
+        "events;pg.ClientBase;", //
+        "events;pg.Events;", //
+        "events;pg.Pool;", //
+        "global.NodeJS.EventEmitter;events;", //
+        "pg-cursor.Static;pg-cursor;", //
+        "pg-cursor;pg-cursor.Static;Instance", //
+        "pg-pool.Static;pg-pool;", //
+        "pg-pool;pg-pool.Static;Instance", //
+        "pg-pool;pg-pool;Member[addListener,on,once,prependListener,prependOnceListener].ReturnValue", //
+        "pg-promise.IBaseProtocol;pg-promise.IConnected;", //
+        "pg-promise.IBaseProtocol;pg-promise.IDatabase;", //
+        "pg-promise.IBaseProtocol;pg-promise.ITask;", //
+        "pg-promise.IBaseProtocol;pg-promise/typescript/pg-promise.IBaseProtocol;", //
+        "pg-promise.IConnected;pg-promise.IDatabase;Member[connect].ReturnValue.Awaited", //
+        "pg-promise.IConnected;pg-promise/typescript/pg-promise.IConnected;", //
+        "pg-promise.IDatabase;pg-promise.IInitOptions;Member[extend].Argument[0]", //
+        "pg-promise.IDatabase;pg-promise.IMain;ReturnValue", //
+        "pg-promise.IDatabase;pg-promise/typescript/pg-promise.IDatabase;", //
+        "pg-promise.IInitOptions;pg-promise.ILibConfig;Member[options]", //
+        "pg-promise.IInitOptions;pg-promise/typescript/pg-promise.IInitOptions;", //
+        "pg-promise.IInitOptions;pg-promise;Argument[0]", //
+        "pg-promise.ILibConfig;pg-promise.IDatabase;Member[$config]", //
+        "pg-promise.ILibConfig;pg-promise/typescript/pg-promise.ILibConfig;", //
+        "pg-promise.IMain;pg-promise.ILibConfig;Member[pgp]", //
+        "pg-promise.IMain;pg-promise/typescript/pg-promise.IMain;", //
+        "pg-promise.IMain;pg-promise;ReturnValue", //
+        "pg-promise.ITask;pg-promise.IBaseProtocol;Member[task,taskIf,tx,txIf].Argument[1].Argument[0]", //
+        "pg-promise.ITask;pg-promise.IBaseProtocol;Member[task,taskIf,tx,txIf].WithArity[1].Argument[0].Argument[0]", //
+        "pg-promise.ITask;pg-promise.IBaseProtocol;Member[taskIf].WithArity[2].Argument[0].Member[cnd].Argument[0]", //
+        "pg-promise.ITask;pg-promise.IBaseProtocol;Member[txIf].WithArity[2].Argument[0].Member[cnd,reusable].Argument[0]", //
+        "pg-promise.ITask;pg-promise/typescript/pg-promise.ITask;", //
+        "pg-promise/pg-subset.pg.IClient;pg-promise.IMain;Argument[0].TypeVar[pg-promise/pg-subset.pg.IConnectionParameters.0]", //
+        "pg-promise/pg-subset.pg.IClient;pg-promise.IMain;ReturnValue.TypeVar[pg-promise.IDatabase.1]", //
+        "pg-promise/pg-subset.pg.IClient;pg-promise/pg-subset;Member[Client].Instance", //
+        "pg-promise/pg-subset.pg.IClient;pg-promise;Argument[0].TypeVar[pg-promise.IInitOptions.1]", //
+        "pg-promise/pg-subset.pg.IConnection;pg-promise/pg-subset.pg.IClient;Member[connection]", //
+        "pg-promise/pg-subset.pg.IPool;pg-promise.IDatabase;Member[$pool]", //
+        "pg.Client;pg-pool.Static;Instance.TypeVar[pg-pool.0]", //
+        "pg.Client;pg-promise/pg-subset.pg.IClient;", //
+        "pg.Client;pg.ClientStatic;Instance", //
+        "pg.Client;pg.Events;Member[addListener,on,once,prependListener,prependOnceListener].Argument[1].Argument[1]", //
+        "pg.ClientBase;pg.Client;", //
+        "pg.ClientBase;pg.PoolClient;", //
+        "pg.ClientStatic;pg;Member[Client]", //
+        "pg.Connection;pg-promise/pg-subset.pg.IConnection;", //
+        "pg.Events;pg.Events;Member[addListener,on,once,prependListener,prependOnceListener].ReturnValue", //
+        "pg.Events;pg.EventsStatic;Instance", //
+        "pg.EventsStatic;pg;Member[Events]", //
+        "pg.Pool;pg-pool;", //
+        "pg.Pool;pg-promise/pg-subset.pg.IPool;", //
+        "pg.Pool;pg.Pool;Member[addListener,on,once,prependListener,prependOnceListener].ReturnValue", //
+        "pg.Pool;pg.PoolStatic;Instance", //
+        "pg.PoolClient;pg-pool;Member[addListener,on,once,prependListener,prependOnceListener].WithArity[2].WithStringArgument[0=acquire,0=connect,0=remove].Argument[1].Argument[0]", //
+        "pg.PoolClient;pg-pool;Member[addListener,on,once,prependListener,prependOnceListener].WithArity[2].WithStringArgument[0=error].Argument[1].Argument[1]", //
+        "pg.PoolClient;pg-pool;Member[connect].Argument[0].Argument[1]", //
+        "pg.PoolClient;pg-pool;Member[connect].WithArity[0].ReturnValue.Awaited", //
+        "pg.PoolClient;pg.Pool;Member[addListener,on,once,prependListener,prependOnceListener].WithArity[2].WithStringArgument[0=acquire,0=connect,0=remove].Argument[1].Argument[0]", //
+        "pg.PoolClient;pg.Pool;Member[addListener,on,once,prependListener,prependOnceListener].WithArity[2].WithStringArgument[0=error].Argument[1].Argument[1]", //
+        "pg.PoolClient;pg.Pool;Member[connect].Argument[0].Argument[1]", //
+        "pg.PoolClient;pg.Pool;Member[connect].WithArity[0].ReturnValue.Awaited", //
+        "pg.PoolStatic;pg;Member[Pool]", //
       ]
   }
 }
@@ -79,11 +79,11 @@ private class Summaries extends ModelInput::SummaryModelCsv {
   override predicate row(string row) {
     row =
       [
-        "global;NodeJS.EventEmitter;;;Member[addListener,off,on,once,prependListener,prependOnceListener,removeAllListeners,removeListener,setMaxListeners].ReturnValue;type", //
-        "pg-pool;;;;Member[addListener,on,once,prependListener,prependOnceListener].ReturnValue;type", //
-        "pg;ClientBase;;;Member[addListener,on,once,prependListener,prependOnceListener].ReturnValue;type", //
-        "pg;Events;;;Member[addListener,on,once,prependListener,prependOnceListener].ReturnValue;type", //
-        "pg;Pool;;;Member[addListener,on,once,prependListener,prependOnceListener].ReturnValue;type", //
+        "global.NodeJS.EventEmitter;;;Member[addListener,off,on,once,prependListener,prependOnceListener,removeAllListeners,removeListener,setMaxListeners].ReturnValue;type", //
+        "pg-pool;;;Member[addListener,on,once,prependListener,prependOnceListener].ReturnValue;type", //
+        "pg.ClientBase;;;Member[addListener,on,once,prependListener,prependOnceListener].ReturnValue;type", //
+        "pg.Events;;;Member[addListener,on,once,prependListener,prependOnceListener].ReturnValue;type", //
+        "pg.Pool;;;Member[addListener,on,once,prependListener,prependOnceListener].ReturnValue;type", //
       ]
   }
 }
@@ -92,11 +92,11 @@ private class TypeVariables extends ModelInput::TypeVariableModelCsv {
   override predicate row(string row) {
     row =
       [
-        "pg-pool..0;Member[Client].TypeVar[pg-pool.ClientLikeCtr.0]", //
-        "pg-pool..0;Member[addListener,on,once,prependListener,prependOnceListener].WithArity[2].WithStringArgument[0=acquire,0=connect,0=remove].Argument[1].Argument[0]", //
-        "pg-pool..0;Member[addListener,on,once,prependListener,prependOnceListener].WithArity[2].WithStringArgument[0=error].Argument[1].Argument[1]", //
-        "pg-pool..0;Member[connect].Argument[0].Argument[1]", //
-        "pg-pool..0;Member[connect].WithArity[0].ReturnValue.Awaited", //
+        "pg-pool.0;Member[Client].TypeVar[pg-pool.ClientLikeCtr.0]", //
+        "pg-pool.0;Member[addListener,on,once,prependListener,prependOnceListener].WithArity[2].WithStringArgument[0=acquire,0=connect,0=remove].Argument[1].Argument[0]", //
+        "pg-pool.0;Member[addListener,on,once,prependListener,prependOnceListener].WithArity[2].WithStringArgument[0=error].Argument[1].Argument[1]", //
+        "pg-pool.0;Member[connect].Argument[0].Argument[1]", //
+        "pg-pool.0;Member[connect].WithArity[0].ReturnValue.Awaited", //
         "pg-pool.ClientLikeCtr.0;Instance", //
         "pg-promise.IConnected.1;Member[client]", //
         "pg-promise.IConnectionOptions.0;Member[onLost].Argument[1].TypeVar[pg-promise.ILostContext.0]", //
diff --git a/javascript/ql/lib/semmle/javascript/frameworks/pg/model.json b/javascript/ql/lib/semmle/javascript/frameworks/pg/model.json
index 50e1c6c8949..783759df4b9 100644
--- a/javascript/ql/lib/semmle/javascript/frameworks/pg/model.json
+++ b/javascript/ql/lib/semmle/javascript/frameworks/pg/model.json
@@ -18,103 +18,103 @@
     "language": "javascript",
     "usedTypes": {
         "sources": [
-            "pg-cursor;",
-            "pg-pool;",
-            "pg-promise;IBaseProtocol",
-            "pg;Client",
-            "pg;ClientStatic",
-            "pg;Pool",
-            "pg;PoolClient",
-            "pg;PoolStatic"
+            "pg-cursor",
+            "pg-pool",
+            "pg-promise.IBaseProtocol",
+            "pg.Client",
+            "pg.ClientStatic",
+            "pg.Pool",
+            "pg.PoolClient",
+            "pg.PoolStatic"
         ]
     },
     "model": {
         "typeDefinitions": [
-            "pg;Client;pg-promise/pg-subset;pg.IClient;",
-            "pg;Connection;pg-promise/pg-subset;pg.IConnection;",
-            "pg;Pool;pg-promise/pg-subset;pg.IPool;"
+            "pg.Client;pg-promise/pg-subset.pg.IClient;",
+            "pg.Connection;pg-promise/pg-subset.pg.IConnection;",
+            "pg.Pool;pg-promise/pg-subset.pg.IPool;"
         ],
         "sinks": []
     },
     "generatedModel": {
         "//": "Autogenerated section. Manual edits in here will be lost.",
         "typeDefinitions": [
-            "events;;pg-cursor;;",
-            "events;;pg-promise/pg-subset;pg.IClient;",
-            "events;;pg-promise/pg-subset;pg.IConnection;",
-            "events;;pg-promise/pg-subset;pg.IPool;",
-            "events;;pg;ClientBase;",
-            "events;;pg;Events;",
-            "events;;pg;Pool;",
-            "global;NodeJS.EventEmitter;events;;",
-            "pg-cursor;;pg-cursor;Static;Instance",
-            "pg-cursor;Static;pg-cursor;;",
-            "pg-pool;;pg-pool;;Member[addListener,on,once,prependListener,prependOnceListener].ReturnValue",
-            "pg-pool;;pg-pool;Static;Instance",
-            "pg-pool;Static;pg-pool;;",
-            "pg-promise/pg-subset;pg.IClient;pg-promise/pg-subset;;Member[Client].Instance",
-            "pg-promise/pg-subset;pg.IClient;pg-promise;;Argument[0].TypeVar[pg-promise.IInitOptions.1]",
-            "pg-promise/pg-subset;pg.IClient;pg-promise;IMain;Argument[0].TypeVar[pg-promise/pg-subset.pg.IConnectionParameters.0]",
-            "pg-promise/pg-subset;pg.IClient;pg-promise;IMain;ReturnValue.TypeVar[pg-promise.IDatabase.1]",
-            "pg-promise/pg-subset;pg.IConnection;pg-promise/pg-subset;pg.IClient;Member[connection]",
-            "pg-promise/pg-subset;pg.IPool;pg-promise;IDatabase;Member[$pool]",
-            "pg-promise;IBaseProtocol;pg-promise/typescript/pg-promise;IBaseProtocol;",
-            "pg-promise;IBaseProtocol;pg-promise;IConnected;",
-            "pg-promise;IBaseProtocol;pg-promise;IDatabase;",
-            "pg-promise;IBaseProtocol;pg-promise;ITask;",
-            "pg-promise;IConnected;pg-promise/typescript/pg-promise;IConnected;",
-            "pg-promise;IConnected;pg-promise;IDatabase;Member[connect].ReturnValue.Awaited",
-            "pg-promise;IDatabase;pg-promise/typescript/pg-promise;IDatabase;",
-            "pg-promise;IDatabase;pg-promise;IInitOptions;Member[extend].Argument[0]",
-            "pg-promise;IDatabase;pg-promise;IMain;ReturnValue",
-            "pg-promise;IInitOptions;pg-promise/typescript/pg-promise;IInitOptions;",
-            "pg-promise;IInitOptions;pg-promise;;Argument[0]",
-            "pg-promise;IInitOptions;pg-promise;ILibConfig;Member[options]",
-            "pg-promise;ILibConfig;pg-promise/typescript/pg-promise;ILibConfig;",
-            "pg-promise;ILibConfig;pg-promise;IDatabase;Member[$config]",
-            "pg-promise;IMain;pg-promise/typescript/pg-promise;IMain;",
-            "pg-promise;IMain;pg-promise;;ReturnValue",
-            "pg-promise;IMain;pg-promise;ILibConfig;Member[pgp]",
-            "pg-promise;ITask;pg-promise/typescript/pg-promise;ITask;",
-            "pg-promise;ITask;pg-promise;IBaseProtocol;Member[task,taskIf,tx,txIf].Argument[1].Argument[0]",
-            "pg-promise;ITask;pg-promise;IBaseProtocol;Member[task,taskIf,tx,txIf].WithArity[1].Argument[0].Argument[0]",
-            "pg-promise;ITask;pg-promise;IBaseProtocol;Member[taskIf].WithArity[2].Argument[0].Member[cnd].Argument[0]",
-            "pg-promise;ITask;pg-promise;IBaseProtocol;Member[txIf].WithArity[2].Argument[0].Member[cnd,reusable].Argument[0]",
-            "pg;Client;pg-pool;Static;Instance.TypeVar[pg-pool..0]",
-            "pg;Client;pg;ClientStatic;Instance",
-            "pg;Client;pg;Events;Member[addListener,on,once,prependListener,prependOnceListener].Argument[1].Argument[1]",
-            "pg;ClientBase;pg;Client;",
-            "pg;ClientBase;pg;PoolClient;",
-            "pg;ClientStatic;pg;;Member[Client]",
-            "pg;Events;pg;Events;Member[addListener,on,once,prependListener,prependOnceListener].ReturnValue",
-            "pg;Events;pg;EventsStatic;Instance",
-            "pg;EventsStatic;pg;;Member[Events]",
-            "pg;Pool;pg-pool;;",
-            "pg;Pool;pg;Pool;Member[addListener,on,once,prependListener,prependOnceListener].ReturnValue",
-            "pg;Pool;pg;PoolStatic;Instance",
-            "pg;PoolClient;pg-pool;;Member[addListener,on,once,prependListener,prependOnceListener].WithArity[2].WithStringArgument[0=acquire,0=connect,0=remove].Argument[1].Argument[0]",
-            "pg;PoolClient;pg-pool;;Member[addListener,on,once,prependListener,prependOnceListener].WithArity[2].WithStringArgument[0=error].Argument[1].Argument[1]",
-            "pg;PoolClient;pg-pool;;Member[connect].Argument[0].Argument[1]",
-            "pg;PoolClient;pg-pool;;Member[connect].WithArity[0].ReturnValue.Awaited",
-            "pg;PoolClient;pg;Pool;Member[addListener,on,once,prependListener,prependOnceListener].WithArity[2].WithStringArgument[0=acquire,0=connect,0=remove].Argument[1].Argument[0]",
-            "pg;PoolClient;pg;Pool;Member[addListener,on,once,prependListener,prependOnceListener].WithArity[2].WithStringArgument[0=error].Argument[1].Argument[1]",
-            "pg;PoolClient;pg;Pool;Member[connect].Argument[0].Argument[1]",
-            "pg;PoolClient;pg;Pool;Member[connect].WithArity[0].ReturnValue.Awaited",
-            "pg;PoolStatic;pg;;Member[Pool]"
+            "events;pg-cursor;",
+            "events;pg-promise/pg-subset.pg.IClient;",
+            "events;pg-promise/pg-subset.pg.IConnection;",
+            "events;pg-promise/pg-subset.pg.IPool;",
+            "events;pg.ClientBase;",
+            "events;pg.Events;",
+            "events;pg.Pool;",
+            "global.NodeJS.EventEmitter;events;",
+            "pg-cursor.Static;pg-cursor;",
+            "pg-cursor;pg-cursor.Static;Instance",
+            "pg-pool.Static;pg-pool;",
+            "pg-pool;pg-pool.Static;Instance",
+            "pg-pool;pg-pool;Member[addListener,on,once,prependListener,prependOnceListener].ReturnValue",
+            "pg-promise.IBaseProtocol;pg-promise.IConnected;",
+            "pg-promise.IBaseProtocol;pg-promise.IDatabase;",
+            "pg-promise.IBaseProtocol;pg-promise.ITask;",
+            "pg-promise.IBaseProtocol;pg-promise/typescript/pg-promise.IBaseProtocol;",
+            "pg-promise.IConnected;pg-promise.IDatabase;Member[connect].ReturnValue.Awaited",
+            "pg-promise.IConnected;pg-promise/typescript/pg-promise.IConnected;",
+            "pg-promise.IDatabase;pg-promise.IInitOptions;Member[extend].Argument[0]",
+            "pg-promise.IDatabase;pg-promise.IMain;ReturnValue",
+            "pg-promise.IDatabase;pg-promise/typescript/pg-promise.IDatabase;",
+            "pg-promise.IInitOptions;pg-promise.ILibConfig;Member[options]",
+            "pg-promise.IInitOptions;pg-promise/typescript/pg-promise.IInitOptions;",
+            "pg-promise.IInitOptions;pg-promise;Argument[0]",
+            "pg-promise.ILibConfig;pg-promise.IDatabase;Member[$config]",
+            "pg-promise.ILibConfig;pg-promise/typescript/pg-promise.ILibConfig;",
+            "pg-promise.IMain;pg-promise.ILibConfig;Member[pgp]",
+            "pg-promise.IMain;pg-promise/typescript/pg-promise.IMain;",
+            "pg-promise.IMain;pg-promise;ReturnValue",
+            "pg-promise.ITask;pg-promise.IBaseProtocol;Member[task,taskIf,tx,txIf].Argument[1].Argument[0]",
+            "pg-promise.ITask;pg-promise.IBaseProtocol;Member[task,taskIf,tx,txIf].WithArity[1].Argument[0].Argument[0]",
+            "pg-promise.ITask;pg-promise.IBaseProtocol;Member[taskIf].WithArity[2].Argument[0].Member[cnd].Argument[0]",
+            "pg-promise.ITask;pg-promise.IBaseProtocol;Member[txIf].WithArity[2].Argument[0].Member[cnd,reusable].Argument[0]",
+            "pg-promise.ITask;pg-promise/typescript/pg-promise.ITask;",
+            "pg-promise/pg-subset.pg.IClient;pg-promise.IMain;Argument[0].TypeVar[pg-promise/pg-subset.pg.IConnectionParameters.0]",
+            "pg-promise/pg-subset.pg.IClient;pg-promise.IMain;ReturnValue.TypeVar[pg-promise.IDatabase.1]",
+            "pg-promise/pg-subset.pg.IClient;pg-promise/pg-subset;Member[Client].Instance",
+            "pg-promise/pg-subset.pg.IClient;pg-promise;Argument[0].TypeVar[pg-promise.IInitOptions.1]",
+            "pg-promise/pg-subset.pg.IConnection;pg-promise/pg-subset.pg.IClient;Member[connection]",
+            "pg-promise/pg-subset.pg.IPool;pg-promise.IDatabase;Member[$pool]",
+            "pg.Client;pg-pool.Static;Instance.TypeVar[pg-pool.0]",
+            "pg.Client;pg.ClientStatic;Instance",
+            "pg.Client;pg.Events;Member[addListener,on,once,prependListener,prependOnceListener].Argument[1].Argument[1]",
+            "pg.ClientBase;pg.Client;",
+            "pg.ClientBase;pg.PoolClient;",
+            "pg.ClientStatic;pg;Member[Client]",
+            "pg.Events;pg.Events;Member[addListener,on,once,prependListener,prependOnceListener].ReturnValue",
+            "pg.Events;pg.EventsStatic;Instance",
+            "pg.EventsStatic;pg;Member[Events]",
+            "pg.Pool;pg-pool;",
+            "pg.Pool;pg.Pool;Member[addListener,on,once,prependListener,prependOnceListener].ReturnValue",
+            "pg.Pool;pg.PoolStatic;Instance",
+            "pg.PoolClient;pg-pool;Member[addListener,on,once,prependListener,prependOnceListener].WithArity[2].WithStringArgument[0=acquire,0=connect,0=remove].Argument[1].Argument[0]",
+            "pg.PoolClient;pg-pool;Member[addListener,on,once,prependListener,prependOnceListener].WithArity[2].WithStringArgument[0=error].Argument[1].Argument[1]",
+            "pg.PoolClient;pg-pool;Member[connect].Argument[0].Argument[1]",
+            "pg.PoolClient;pg-pool;Member[connect].WithArity[0].ReturnValue.Awaited",
+            "pg.PoolClient;pg.Pool;Member[addListener,on,once,prependListener,prependOnceListener].WithArity[2].WithStringArgument[0=acquire,0=connect,0=remove].Argument[1].Argument[0]",
+            "pg.PoolClient;pg.Pool;Member[addListener,on,once,prependListener,prependOnceListener].WithArity[2].WithStringArgument[0=error].Argument[1].Argument[1]",
+            "pg.PoolClient;pg.Pool;Member[connect].Argument[0].Argument[1]",
+            "pg.PoolClient;pg.Pool;Member[connect].WithArity[0].ReturnValue.Awaited",
+            "pg.PoolStatic;pg;Member[Pool]"
         ],
         "summaries": [
-            "global;NodeJS.EventEmitter;;;Member[addListener,off,on,once,prependListener,prependOnceListener,removeAllListeners,removeListener,setMaxListeners].ReturnValue;type",
-            "pg-pool;;;;Member[addListener,on,once,prependListener,prependOnceListener].ReturnValue;type",
-            "pg;ClientBase;;;Member[addListener,on,once,prependListener,prependOnceListener].ReturnValue;type",
-            "pg;Events;;;Member[addListener,on,once,prependListener,prependOnceListener].ReturnValue;type",
-            "pg;Pool;;;Member[addListener,on,once,prependListener,prependOnceListener].ReturnValue;type"
+            "global.NodeJS.EventEmitter;;;Member[addListener,off,on,once,prependListener,prependOnceListener,removeAllListeners,removeListener,setMaxListeners].ReturnValue;type",
+            "pg-pool;;;Member[addListener,on,once,prependListener,prependOnceListener].ReturnValue;type",
+            "pg.ClientBase;;;Member[addListener,on,once,prependListener,prependOnceListener].ReturnValue;type",
+            "pg.Events;;;Member[addListener,on,once,prependListener,prependOnceListener].ReturnValue;type",
+            "pg.Pool;;;Member[addListener,on,once,prependListener,prependOnceListener].ReturnValue;type"
         ],
         "typeVariables": [
-            "pg-pool..0;Member[Client].TypeVar[pg-pool.ClientLikeCtr.0]",
-            "pg-pool..0;Member[addListener,on,once,prependListener,prependOnceListener].WithArity[2].WithStringArgument[0=acquire,0=connect,0=remove].Argument[1].Argument[0]",
-            "pg-pool..0;Member[addListener,on,once,prependListener,prependOnceListener].WithArity[2].WithStringArgument[0=error].Argument[1].Argument[1]",
-            "pg-pool..0;Member[connect].Argument[0].Argument[1]",
-            "pg-pool..0;Member[connect].WithArity[0].ReturnValue.Awaited",
+            "pg-pool.0;Member[Client].TypeVar[pg-pool.ClientLikeCtr.0]",
+            "pg-pool.0;Member[addListener,on,once,prependListener,prependOnceListener].WithArity[2].WithStringArgument[0=acquire,0=connect,0=remove].Argument[1].Argument[0]",
+            "pg-pool.0;Member[addListener,on,once,prependListener,prependOnceListener].WithArity[2].WithStringArgument[0=error].Argument[1].Argument[1]",
+            "pg-pool.0;Member[connect].Argument[0].Argument[1]",
+            "pg-pool.0;Member[connect].WithArity[0].ReturnValue.Awaited",
             "pg-pool.ClientLikeCtr.0;Instance",
             "pg-promise.IConnected.1;Member[client]",
             "pg-promise.IConnectionOptions.0;Member[onLost].Argument[1].TypeVar[pg-promise.ILostContext.0]",
diff --git a/javascript/ql/lib/semmle/javascript/frameworks/sequelize/Model.qll b/javascript/ql/lib/semmle/javascript/frameworks/sequelize/Model.qll
index f9c06c3739a..ba4d9669661 100644
--- a/javascript/ql/lib/semmle/javascript/frameworks/sequelize/Model.qll
+++ b/javascript/ql/lib/semmle/javascript/frameworks/sequelize/Model.qll
@@ -6,13 +6,13 @@ private class Sinks extends ModelInput::SinkModelCsv {
   override predicate row(string row) {
     row =
       [
-        "sequelize;;Argument[0..].Member[password];credentials[password]", //
-        "sequelize;;Argument[0..].Member[username];credentials[username]", //
-        "sequelize;;Argument[1];credentials[username]", //
-        "sequelize;;Argument[2];credentials[password]", //
-        "sequelize;Sequelize;Member[query].Argument[0].Member[query];sql-injection", //
-        "sequelize;Sequelize;Member[query].Argument[0];sql-injection", //
-        "sequelize;SequelizeStaticAndInstance;Member[asIs,literal].Argument[0];sql-injection", //
+        "sequelize.Sequelize;Member[query].Argument[0].Member[query];sql-injection", //
+        "sequelize.Sequelize;Member[query].Argument[0];sql-injection", //
+        "sequelize.SequelizeStaticAndInstance;Member[asIs,literal].Argument[0];sql-injection", //
+        "sequelize;Argument[0..].Member[password];credentials[password]", //
+        "sequelize;Argument[0..].Member[username];credentials[username]", //
+        "sequelize;Argument[1];credentials[username]", //
+        "sequelize;Argument[2];credentials[password]", //
       ]
   }
 }
@@ -21,254 +21,254 @@ private class Types extends ModelInput::TypeModelCsv {
   override predicate row(string row) {
     row =
       [
-        "sequelize-typescript/associations/foreign-key/foreign-key-meta;ForeignKeyMeta;sequelize-typescript/associations/foreign-key/foreign-key-service;;Member[getForeignKeys].ReturnValue.ArrayElement", //
-        "sequelize-typescript/model/model/association/association-create-options;AssociationCreateOptions;sequelize-typescript;Model;Member[$create].Argument[2]", //
-        "sequelize-typescript/model/shared/model-not-initialized-error;ModelNotInitializedErrorStatic;sequelize-typescript/model/shared/model-not-initialized-error;;Member[ModelNotInitializedError]", //
-        "sequelize-typescript;AssociationCountOptions;sequelize-typescript/model/model/association/association-count-options;AssociationCountOptions;", //
-        "sequelize-typescript;AssociationCountOptions;sequelize-typescript;Model;Member[$count].Argument[1]", //
-        "sequelize-typescript;AssociationGetOptions;sequelize-typescript/model/model/association/association-get-options;AssociationGetOptions;", //
-        "sequelize-typescript;AssociationGetOptions;sequelize-typescript;Model;Member[$get].Argument[1]", //
-        "sequelize-typescript;AssociationGetOptions;sequelize-typescript;Model;Member[$has].Argument[2]", //
-        "sequelize-typescript;BaseAssociation;sequelize-typescript/associations/shared/association-service;;Member[addAssociation].Argument[1]", //
-        "sequelize-typescript;BaseAssociation;sequelize-typescript/associations/shared/association-service;;Member[getAssociations,getAssociationsByRelation].ReturnValue.ArrayElement", //
-        "sequelize-typescript;BaseAssociation;sequelize-typescript/associations/shared/association-service;;Member[setAssociations].Argument[1].ArrayElement", //
-        "sequelize-typescript;BaseAssociation;sequelize-typescript/associations/shared/base-association;BaseAssociation;", //
-        "sequelize-typescript;BaseAssociation;sequelize-typescript;;Member[addAssociation].Argument[1]", //
-        "sequelize-typescript;BaseAssociation;sequelize-typescript;;Member[getAssociations,getAssociationsByRelation].ReturnValue.ArrayElement", //
-        "sequelize-typescript;BaseAssociation;sequelize-typescript;;Member[setAssociations].Argument[1].ArrayElement", //
-        "sequelize-typescript;BaseAssociation;sequelize-typescript;BaseAssociationStatic;Instance", //
-        "sequelize-typescript;BaseAssociation;sequelize-typescript;BelongsToAssociation;", //
-        "sequelize-typescript;BaseAssociation;sequelize-typescript;BelongsToManyAssociation;", //
-        "sequelize-typescript;BaseAssociation;sequelize-typescript;HasAssociation;", //
-        "sequelize-typescript;BaseAssociationStatic;sequelize-typescript/associations/shared/base-association;;Member[BaseAssociation]", //
-        "sequelize-typescript;BaseAssociationStatic;sequelize-typescript/associations/shared/base-association;BaseAssociationStatic;", //
-        "sequelize-typescript;BaseAssociationStatic;sequelize-typescript;;Member[BaseAssociation]", //
-        "sequelize-typescript;BelongsToAssociation;sequelize-typescript/associations/belongs-to/belongs-to-association;BelongsToAssociation;", //
-        "sequelize-typescript;BelongsToAssociation;sequelize-typescript;BelongsToAssociationStatic;Instance", //
-        "sequelize-typescript;BelongsToAssociationStatic;sequelize-typescript/associations/belongs-to/belongs-to-association;;Member[BelongsToAssociation]", //
-        "sequelize-typescript;BelongsToAssociationStatic;sequelize-typescript/associations/belongs-to/belongs-to-association;BelongsToAssociationStatic;", //
-        "sequelize-typescript;BelongsToAssociationStatic;sequelize-typescript;;Member[BelongsToAssociation]", //
-        "sequelize-typescript;BelongsToManyAssociation;sequelize-typescript/associations/belongs-to-many/belongs-to-many-association;BelongsToManyAssociation;", //
-        "sequelize-typescript;BelongsToManyAssociation;sequelize-typescript;BelongsToManyAssociationStatic;Instance", //
-        "sequelize-typescript;BelongsToManyAssociationStatic;sequelize-typescript/associations/belongs-to-many/belongs-to-many-association;;Member[BelongsToManyAssociation]", //
-        "sequelize-typescript;BelongsToManyAssociationStatic;sequelize-typescript/associations/belongs-to-many/belongs-to-many-association;BelongsToManyAssociationStatic;", //
-        "sequelize-typescript;BelongsToManyAssociationStatic;sequelize-typescript;;Member[BelongsToManyAssociation]", //
-        "sequelize-typescript;DefaultScopeGetter;sequelize-typescript/scopes/default-scope;;Member[DefaultScope].Argument[0]", //
-        "sequelize-typescript;DefaultScopeGetter;sequelize-typescript/scopes/scope-options;DefaultScopeGetter;", //
-        "sequelize-typescript;DefaultScopeGetter;sequelize-typescript;;Member[DefaultScope].Argument[0]", //
-        "sequelize-typescript;DefaultScopeGetter;sequelize-typescript;ScopeOptionsGetters;Member[getDefaultScope]", //
-        "sequelize-typescript;HasAssociation;sequelize-typescript/associations/has/has-association;HasAssociation;", //
-        "sequelize-typescript;HasAssociation;sequelize-typescript;HasAssociationStatic;Instance", //
-        "sequelize-typescript;HasAssociationStatic;sequelize-typescript/associations/has/has-association;;Member[HasAssociation]", //
-        "sequelize-typescript;HasAssociationStatic;sequelize-typescript/associations/has/has-association;HasAssociationStatic;", //
-        "sequelize-typescript;HasAssociationStatic;sequelize-typescript;;Member[HasAssociation]", //
-        "sequelize-typescript;Model;sequelize-typescript/model/model/model;Model;", //
-        "sequelize-typescript;Model;sequelize-typescript;Model;Member[$add,$has,$remove,$set].Argument[1]", //
-        "sequelize-typescript;Model;sequelize-typescript;Model;Member[$add,$has,$remove,$set].Argument[1].ArrayElement", //
-        "sequelize-typescript;Model;sequelize-typescript;Model;Member[$create,reload].ReturnValue.Awaited", //
-        "sequelize-typescript;Model;sequelize-typescript;ModelStatic~;Instance", //
-        "sequelize-typescript;Model;sequelize-typescript;ModelStatic~;Member[initialize].ReturnValue.TypeVar[sequelize-typescript.ModelStatic.0]", //
-        "sequelize-typescript;Model;sequelize-typescript;ModelType;Instance", //
-        "sequelize-typescript;Model;sequelize-typescript;Sequelize;Member[getRepository].Argument[0].Instance", //
-        "sequelize-typescript;Model;sequelize-typescript;Sequelize;Member[getRepository].ReturnValue.TypeVar[sequelize-typescript.Repository.0]", //
-        "sequelize-typescript;ModelClassGetter;sequelize-typescript/associations/belongs-to-many/belongs-to-many;;Member[BelongsToMany].Argument[0,1]", //
-        "sequelize-typescript;ModelClassGetter;sequelize-typescript/associations/belongs-to/belongs-to;;Member[BelongsTo].Argument[0]", //
-        "sequelize-typescript;ModelClassGetter;sequelize-typescript/associations/foreign-key/foreign-key-meta;ForeignKeyMeta;Member[relatedClassGetter]", //
-        "sequelize-typescript;ModelClassGetter;sequelize-typescript/associations/foreign-key/foreign-key-service;;Member[addForeignKey].Argument[1]", //
-        "sequelize-typescript;ModelClassGetter;sequelize-typescript/associations/foreign-key/foreign-key;;Member[ForeignKey].Argument[0]", //
-        "sequelize-typescript;ModelClassGetter;sequelize-typescript/associations/has/has-many;;Member[HasMany].Argument[0]", //
-        "sequelize-typescript;ModelClassGetter;sequelize-typescript/associations/has/has-one;;Member[HasOne].Argument[0]", //
-        "sequelize-typescript;ModelClassGetter;sequelize-typescript/model/shared/model-class-getter;ModelClassGetter;", //
-        "sequelize-typescript;ModelClassGetter;sequelize-typescript;;Member[BelongsTo,ForeignKey,HasMany,HasOne].Argument[0]", //
-        "sequelize-typescript;ModelClassGetter;sequelize-typescript;;Member[BelongsToMany].Argument[0,1]", //
-        "sequelize-typescript;ModelClassGetter;sequelize-typescript;BaseAssociationStatic;Argument[0]", //
-        "sequelize-typescript;ModelClassGetter;sequelize-typescript;BelongsToAssociationStatic;Argument[0]", //
-        "sequelize-typescript;ModelClassGetter;sequelize-typescript;BelongsToManyAssociationStatic;Argument[0]", //
-        "sequelize-typescript;ModelClassGetter;sequelize-typescript;HasAssociationStatic;Argument[0]", //
-        "sequelize-typescript;ModelStatic~;sequelize-typescript/model/model/model;;Member[Model]", //
-        "sequelize-typescript;ModelStatic~;sequelize-typescript/model/model/model;ModelStatic~;", //
-        "sequelize-typescript;ModelStatic~;sequelize-typescript/model/shared/model-not-initialized-error;ModelNotInitializedErrorStatic;Argument[0]", //
-        "sequelize-typescript;ModelStatic~;sequelize-typescript;;Member[Model]", //
-        "sequelize-typescript;ModelType;sequelize-typescript/associations/foreign-key/foreign-key-service;;Member[getForeignKeyOptions].Argument[0,1]", //
-        "sequelize-typescript;ModelType;sequelize-typescript/model/model/model;ModelType;", //
-        "sequelize-typescript;ModelType;sequelize-typescript;BaseAssociation;Member[getAssociatedClass].ReturnValue", //
-        "sequelize-typescript;ModelType;sequelize-typescript;BaseAssociation;Member[getSequelizeOptions].Argument[0]", //
-        "sequelize-typescript;ModelType;sequelize-typescript;BelongsToAssociation;Member[getSequelizeOptions].Argument[0]", //
-        "sequelize-typescript;ModelType;sequelize-typescript;BelongsToManyAssociation;Member[getSequelizeOptions].Argument[0]", //
-        "sequelize-typescript;ModelType;sequelize-typescript;HasAssociation;Member[getSequelizeOptions].Argument[0]", //
-        "sequelize-typescript;ModelType;sequelize-typescript;ModelClassGetter;ReturnValue", //
-        "sequelize-typescript;ModelType;sequelize-typescript;Sequelize;Member[model].Argument[0]", //
-        "sequelize-typescript;ScopeOptionsGetters;sequelize-typescript/scopes/scope-options;ScopeOptionsGetters;", //
-        "sequelize-typescript;ScopeOptionsGetters;sequelize-typescript/scopes/scope-service;;Member[addScopeOptionsGetter,setScopeOptionsGetters].Argument[1]", //
-        "sequelize-typescript;ScopeOptionsGetters;sequelize-typescript/scopes/scope-service;;Member[getScopeOptionsGetters].ReturnValue", //
-        "sequelize-typescript;ScopeOptionsGetters;sequelize-typescript;;Member[addScopeOptionsGetter,setScopeOptionsGetters].Argument[1]", //
-        "sequelize-typescript;ScopeOptionsGetters;sequelize-typescript;;Member[getScopeOptionsGetters].ReturnValue", //
-        "sequelize-typescript;ScopesOptions;sequelize-typescript/scopes/scope-options;ScopesOptions;", //
-        "sequelize-typescript;ScopesOptions;sequelize-typescript/scopes/scope-service;;Member[resolveScope].Argument[2]", //
-        "sequelize-typescript;ScopesOptions;sequelize-typescript;;Member[resolveScope].Argument[2]", //
-        "sequelize-typescript;ScopesOptions;sequelize-typescript;ScopesOptionsGetter;ReturnValue.AnyMember", //
-        "sequelize-typescript;ScopesOptionsGetter;sequelize-typescript/scopes/scope-options;ScopesOptionsGetter;", //
-        "sequelize-typescript;ScopesOptionsGetter;sequelize-typescript/scopes/scopes;;Member[Scopes].Argument[0]", //
-        "sequelize-typescript;ScopesOptionsGetter;sequelize-typescript;;Member[Scopes].Argument[0]", //
-        "sequelize-typescript;ScopesOptionsGetter;sequelize-typescript;ScopeOptionsGetters;Member[getScopes]", //
-        "sequelize-typescript;Sequelize;sequelize-typescript/sequelize/sequelize/sequelize;Sequelize;", //
-        "sequelize-typescript;Sequelize;sequelize-typescript;BaseAssociation;Member[getSequelizeOptions].Argument[1]", //
-        "sequelize-typescript;Sequelize;sequelize-typescript;BelongsToManyAssociation;Member[getSequelizeOptions].Argument[1]", //
-        "sequelize-typescript;Sequelize;sequelize-typescript;SequelizeStatic;Instance", //
-        "sequelize-typescript;SequelizeOptions;sequelize-typescript/sequelize/sequelize/sequelize-options;SequelizeOptions;", //
-        "sequelize-typescript;SequelizeOptions;sequelize-typescript/sequelize/sequelize/sequelize-service;;Member[prepareArgs].ReturnValue.Member[options]", //
-        "sequelize-typescript;SequelizeOptions;sequelize-typescript/sequelize/sequelize/sequelize-service;;Member[prepareOptions].Argument[0]", //
-        "sequelize-typescript;SequelizeOptions;sequelize-typescript/sequelize/sequelize/sequelize-service;;Member[prepareOptions].ReturnValue", //
-        "sequelize-typescript;SequelizeOptions;sequelize-typescript;;Member[prepareArgs].ReturnValue.Member[options]", //
-        "sequelize-typescript;SequelizeOptions;sequelize-typescript;;Member[prepareOptions].Argument[0]", //
-        "sequelize-typescript;SequelizeOptions;sequelize-typescript;;Member[prepareOptions].ReturnValue", //
-        "sequelize-typescript;SequelizeOptions;sequelize-typescript;Sequelize;Member[options]", //
-        "sequelize-typescript;SequelizeOptions;sequelize-typescript;SequelizeStatic;Argument[3]", //
-        "sequelize-typescript;SequelizeOptions;sequelize-typescript;SequelizeStatic;WithArity[0].Argument[0]", //
-        "sequelize-typescript;SequelizeOptions;sequelize-typescript;SequelizeStatic;WithArity[1].Argument[0,1]", //
-        "sequelize-typescript;SequelizeOptions;sequelize-typescript;SequelizeStatic;WithArity[2].Argument[1,2]", //
-        "sequelize-typescript;SequelizeOptions;sequelize-typescript;SequelizeStatic;WithArity[3].Argument[2]", //
-        "sequelize-typescript;SequelizeStatic;sequelize-typescript/sequelize/sequelize/sequelize;;Member[Sequelize]", //
-        "sequelize-typescript;SequelizeStatic;sequelize-typescript/sequelize/sequelize/sequelize;SequelizeStatic;", //
-        "sequelize-typescript;SequelizeStatic;sequelize-typescript;;Member[Sequelize]", //
-        "sequelize;AnyFindOptions;sequelize;BelongsToManyAddAssociationMixin;Argument[1]", //
-        "sequelize;AnyFindOptions;sequelize;BelongsToManyAddAssociationsMixin;Argument[1]", //
-        "sequelize;AnyFindOptions;sequelize;BelongsToManySetAssociationsMixin;Argument[1]", //
-        "sequelize;AnyFindOptions;sequelize;DefineOptions;Member[defaultScope]", //
-        "sequelize;AnyFindOptions;sequelize;DefineScopeOptions;AnyMember", //
-        "sequelize;AnyFindOptions;sequelize;HasManySetAssociationsMixin;Argument[1]", //
-        "sequelize;AnyFindOptions;sequelize;Instance;Member[reload].Argument[0]", //
-        "sequelize;AnyFindOptions;sequelize;Model;Member[addScope].Argument[1]", //
-        "sequelize;AssociationOptionsBelongsToMany;sequelize;Associations;Member[belongsToMany].Argument[1]", //
-        "sequelize;Associations;sequelize;Model;", //
-        "sequelize;Associations;sequelize;SequelizeStaticAndInstance.Model;", //
-        "sequelize;BuildOptions;sequelize-typescript;ModelStatic~;Argument[1]", //
-        "sequelize;BuildOptions;sequelize;CreateOptions;", //
-        "sequelize;BuildOptions;sequelize;Model;Member[build,bulkBuild].Argument[1]", //
-        "sequelize;CountOptions;sequelize;Model;Member[count].Argument[0]", //
-        "sequelize;CreateOptions;sequelize-typescript/model/model/association/association-create-options;AssociationCreateOptions;", //
-        "sequelize;CreateOptions;sequelize;BelongsToCreateAssociationMixin;Argument[1]", //
-        "sequelize;CreateOptions;sequelize;BelongsToManyCreateAssociationMixin;Argument[1]", //
-        "sequelize;CreateOptions;sequelize;HasManyCreateAssociationMixin;Argument[1]", //
-        "sequelize;CreateOptions;sequelize;HasOneCreateAssociationMixin;Argument[1]", //
-        "sequelize;CreateOptions;sequelize;Model;Member[create].Argument[1]", //
-        "sequelize;DefineAttributeColumnOptions;sequelize;DefineAttributes;AnyMember", //
-        "sequelize;DefineAttributeColumnOptions;sequelize;QueryInterface;Member[addColumn,changeColumn].Argument[2]", //
-        "sequelize;DefineAttributeColumnReferencesOptions;sequelize;DefineAttributeColumnOptions;Member[references]", //
-        "sequelize;DefineAttributes;sequelize;Hooks;Member[beforeDefine].Argument[1].Argument[0]", //
-        "sequelize;DefineAttributes;sequelize;Hooks;Member[beforeDefine].WithArity[1].Argument[0].Argument[0]", //
-        "sequelize;DefineAttributes;sequelize;QueryInterface;Member[createTable].Argument[1]", //
-        "sequelize;DefineOptions;sequelize;Options;Member[define]", //
-        "sequelize;DefineOptions;sequelize;Sequelize;Member[define].Argument[2]", //
-        "sequelize;DefineScopeOptions;sequelize;DefineOptions;Member[scopes]", //
-        "sequelize;FindCreateFindOptions;sequelize;Model;Member[findCreateFind].Argument[0]", //
-        "sequelize;FindOptions;sequelize-typescript;AssociationCountOptions;", //
-        "sequelize;FindOptions;sequelize-typescript;AssociationGetOptions;", //
-        "sequelize;FindOptions;sequelize-typescript;DefaultScopeGetter;ReturnValue", //
-        "sequelize;FindOptions;sequelize-typescript;Model;Member[reload].Argument[0]", //
-        "sequelize;FindOptions;sequelize-typescript;ScopesOptions;", //
-        "sequelize;FindOptions;sequelize-typescript;ScopesOptions;ReturnValue", //
-        "sequelize;FindOptions;sequelize;AnyFindOptions;", //
-        "sequelize;FindOptions;sequelize;FindCreateFindOptions;", //
-        "sequelize;FindOptions;sequelize;FindOrInitializeOptions;", //
-        "sequelize;FindOptions;sequelize;Model;Member[all,find,findAll,findAndCount,findAndCountAll,findOne].Argument[0]", //
-        "sequelize;FindOptionsOrderArray;sequelize;FindOptions;Member[order]", //
-        "sequelize;FindOptionsOrderArray;sequelize;FindOptions;Member[order].ArrayElement", //
-        "sequelize;FindOrInitializeOptions;sequelize;Model;Member[findOrBuild,findOrCreate,findOrInitialize].Argument[0]", //
-        "sequelize;HasManyGetAssociationsMixinOptions;sequelize;HasManyGetAssociationsMixin;Argument[0]", //
-        "sequelize;HasManyGetAssociationsMixinOptions;sequelize;HasManyHasAssociationMixin;Argument[1]", //
-        "sequelize;HasManyGetAssociationsMixinOptions;sequelize;HasManyHasAssociationsMixin;Argument[1]", //
-        "sequelize;Hooks;sequelize;Hooks;Member[addHook,hook,removeHook].ReturnValue", //
-        "sequelize;Hooks;sequelize;Model;", //
-        "sequelize;Hooks;sequelize;Sequelize;", //
-        "sequelize;Hooks;sequelize;SequelizeStaticAndInstance.Model;", //
-        "sequelize;IncludeAssociation;sequelize;Associations;Member[belongsTo,belongsToMany,hasMany,hasOne].ReturnValue", //
-        "sequelize;IncludeAssociation;sequelize;IncludeOptions;Member[association]", //
-        "sequelize;IncludeOptions;sequelize;BuildOptions;Member[include].ArrayElement", //
-        "sequelize;IncludeOptions;sequelize;CountOptions;Member[include]", //
-        "sequelize;IncludeOptions;sequelize;CountOptions;Member[include].ArrayElement", //
-        "sequelize;IncludeOptions;sequelize;FindOptions;Member[include]", //
-        "sequelize;IncludeOptions;sequelize;FindOptions;Member[include].ArrayElement", //
-        "sequelize;IncludeOptions;sequelize;HasManyGetAssociationsMixinOptions;Member[include]", //
-        "sequelize;IncludeOptions;sequelize;IncludeOptions;Member[include]", //
-        "sequelize;IncludeOptions;sequelize;IncludeOptions;Member[include].ArrayElement", //
-        "sequelize;Instance;sequelize;Instance;Member[decrement,increment,reload,save,update,updateAttributes].ReturnValue.Awaited", //
-        "sequelize;Instance;sequelize;Instance;Member[equalsOneOf].Argument[0].ArrayElement", //
-        "sequelize;Instance;sequelize;Instance;Member[equals].Argument[0]", //
-        "sequelize;Instance;sequelize;Instance;Member[set,setAttributes].ReturnValue", //
-        "sequelize;Instance;sequelize;Model;Member[Instance,build].ReturnValue", //
-        "sequelize;Instance;sequelize;Model;Member[all,bulkCreate,findAll].ReturnValue.Awaited.ArrayElement", //
-        "sequelize;Instance;sequelize;Model;Member[bulkBuild].ReturnValue.ArrayElement", //
-        "sequelize;Instance;sequelize;Model;Member[create,find,findById,findByPk,findByPrimary,findOne].ReturnValue.Awaited", //
-        "sequelize;Instance;sequelize;Model;Member[findAndCount,findAndCountAll].ReturnValue.Awaited.Member[rows].ArrayElement", //
-        "sequelize;Instance;sequelize;QueryInterface;Member[delete,increment,insert,update].Argument[0]", //
-        "sequelize;Instance;sequelize;QueryOptions;Member[instance]", //
-        "sequelize;Instance;sequelize;SequelizeStaticAndInstance;Member[Instance]", //
-        "sequelize;Model;sequelize;AssociationOptionsBelongsToMany;Member[through]", //
-        "sequelize;Model;sequelize;Associations;Member[belongsTo,belongsToMany,hasMany,hasOne].Argument[0]", //
-        "sequelize;Model;sequelize;BuildOptions;Member[include].ArrayElement", //
-        "sequelize;Model;sequelize;CountOptions;Member[include]", //
-        "sequelize;Model;sequelize;CountOptions;Member[include].ArrayElement", //
-        "sequelize;Model;sequelize;DefineAttributeColumnReferencesOptions;Member[model]", //
-        "sequelize;Model;sequelize;FindOptions;Member[include]", //
-        "sequelize;Model;sequelize;FindOptions;Member[include].ArrayElement", //
-        "sequelize;Model;sequelize;FindOptions;Member[lock].Member[of]", //
-        "sequelize;Model;sequelize;FindOptionsOrderArray;ArrayElement", //
-        "sequelize;Model;sequelize;FindOptionsOrderArray;ArrayElement.Member[model]", //
-        "sequelize;Model;sequelize;Hooks;Member[afterDefine].Argument[1].Argument[0]", //
-        "sequelize;Model;sequelize;Hooks;Member[afterDefine].WithArity[1].Argument[0].Argument[0]", //
-        "sequelize;Model;sequelize;IncludeAssociation;Member[source,target]", //
-        "sequelize;Model;sequelize;IncludeOptions;Member[include,model]", //
-        "sequelize;Model;sequelize;IncludeOptions;Member[include].ArrayElement", //
-        "sequelize;Model;sequelize;Instance;Member[Model]", //
-        "sequelize;Model;sequelize;Model;Member[schema,scope,unscoped].ReturnValue", //
-        "sequelize;Model;sequelize;Model;Member[sync].ReturnValue.Awaited", //
-        "sequelize;Model;sequelize;Models;AnyMember", //
-        "sequelize;Model;sequelize;ModelsHashInterface;AnyMember", //
-        "sequelize;Model;sequelize;QueryInterface;Member[bulkDelete,rawSelect,upsert].Argument[3]", //
-        "sequelize;Model;sequelize;QueryInterface;Member[select].Argument[0]", //
-        "sequelize;Model;sequelize;QueryOptions;Member[model]", //
-        "sequelize;Model;sequelize;Sequelize;Member[define,import,model].ReturnValue", //
-        "sequelize;Model;sequelize;Sequelize;Member[import].Argument[1].ReturnValue", //
-        "sequelize;Model;sequelize;SequelizeStaticAndInstance;Member[Model]", //
-        "sequelize;Model;sequelize;ThroughOptions;Member[model]", //
-        "sequelize;Model;sequelize;Utils;Member[mapOptionFieldNames].Argument[1]", //
-        "sequelize;Model;sequelize;Utils;Member[mapValueFieldNames].Argument[2]", //
-        "sequelize;Models;sequelize;Model;Member[associate].Argument[0]", //
-        "sequelize;ModelsHashInterface;sequelize;Sequelize;Member[models]", //
-        "sequelize;Options;sequelize-typescript;SequelizeOptions;", //
-        "sequelize;Options;sequelize;Sequelize;Member[options]", //
-        "sequelize;Options;sequelize;SequelizeStatic;Argument[3]", //
-        "sequelize;Options;sequelize;SequelizeStatic;WithArity[1].Argument[0,1]", //
-        "sequelize;Options;sequelize;SequelizeStatic;WithArity[2].Argument[1,2]", //
-        "sequelize;Options;sequelize;SequelizeStatic;WithArity[3].Argument[2]", //
-        "sequelize;QueryInterface;sequelize;Sequelize;Member[getQueryInterface].ReturnValue", //
-        "sequelize;QueryOptions;sequelize;Options;Member[query]", //
-        "sequelize;QueryOptions;sequelize;QueryInterface;Member[bulkDelete,bulkInsert,createTable,select,setAutocommit,setIsolationLevel].Argument[2]", //
-        "sequelize;QueryOptions;sequelize;QueryInterface;Member[bulkUpdate,delete,insert].Argument[3]", //
-        "sequelize;QueryOptions;sequelize;QueryInterface;Member[commitTransaction,deferConstraints,dropTable,rawSelect,rollbackTransaction,showIndex,startTransaction].Argument[1]", //
-        "sequelize;QueryOptions;sequelize;QueryInterface;Member[createFunction].Argument[5]", //
-        "sequelize;QueryOptions;sequelize;QueryInterface;Member[dropAllEnums,dropAllTables,showAllSchemas,showAllTables].Argument[0]", //
-        "sequelize;QueryOptions;sequelize;QueryInterface;Member[increment,update,upsert].Argument[4]", //
-        "sequelize;QueryOptions;sequelize;Sequelize;Member[authenticate,validate].Argument[0]", //
-        "sequelize;QueryOptions;sequelize;Sequelize;Member[query].Argument[1]", //
-        "sequelize;Sequelize;sequelize-typescript;Sequelize;", //
-        "sequelize;Sequelize;sequelize;Hooks;Member[afterInit].Argument[1].Argument[0]", //
-        "sequelize;Sequelize;sequelize;Hooks;Member[afterInit].WithArity[1].Argument[0].Argument[0]", //
-        "sequelize;Sequelize;sequelize;Instance;Member[sequelize]", //
-        "sequelize;Sequelize;sequelize;QueryInterface;Member[sequelize]", //
-        "sequelize;Sequelize;sequelize;Sequelize;Member[import].Argument[1].Argument[0]", //
-        "sequelize;Sequelize;sequelize;SequelizeStatic;Instance", //
-        "sequelize;Sequelize;sequelize;SequelizeStatic;Member[useCLS].ReturnValue", //
-        "sequelize;SequelizeStatic;sequelize-typescript;Sequelize;", //
-        "sequelize;SequelizeStatic;sequelize;;", //
-        "sequelize;SequelizeStatic;sequelize;Sequelize;Member[Sequelize]", //
-        "sequelize;SequelizeStatic;sequelize;SequelizeStatic;Member[Sequelize,default]", //
-        "sequelize;SequelizeStaticAndInstance.Model;sequelize-typescript;Model;", //
-        "sequelize;SequelizeStaticAndInstance;sequelize;Sequelize;", //
-        "sequelize;SequelizeStaticAndInstance;sequelize;SequelizeStatic;", //
-        "sequelize;ThroughOptions;sequelize;AssociationOptionsBelongsToMany;Member[through]", //
-        "sequelize;Utils;sequelize;SequelizeStaticAndInstance;Member[Utils]", //
+        "sequelize-typescript.AssociationCountOptions;sequelize-typescript.Model;Member[$count].Argument[1]", //
+        "sequelize-typescript.AssociationCountOptions;sequelize-typescript/model/model/association/association-count-options.AssociationCountOptions;", //
+        "sequelize-typescript.AssociationGetOptions;sequelize-typescript.Model;Member[$get].Argument[1]", //
+        "sequelize-typescript.AssociationGetOptions;sequelize-typescript.Model;Member[$has].Argument[2]", //
+        "sequelize-typescript.AssociationGetOptions;sequelize-typescript/model/model/association/association-get-options.AssociationGetOptions;", //
+        "sequelize-typescript.BaseAssociation;sequelize-typescript.BaseAssociationStatic;Instance", //
+        "sequelize-typescript.BaseAssociation;sequelize-typescript.BelongsToAssociation;", //
+        "sequelize-typescript.BaseAssociation;sequelize-typescript.BelongsToManyAssociation;", //
+        "sequelize-typescript.BaseAssociation;sequelize-typescript.HasAssociation;", //
+        "sequelize-typescript.BaseAssociation;sequelize-typescript/associations/shared/association-service;Member[addAssociation].Argument[1]", //
+        "sequelize-typescript.BaseAssociation;sequelize-typescript/associations/shared/association-service;Member[getAssociations,getAssociationsByRelation].ReturnValue.ArrayElement", //
+        "sequelize-typescript.BaseAssociation;sequelize-typescript/associations/shared/association-service;Member[setAssociations].Argument[1].ArrayElement", //
+        "sequelize-typescript.BaseAssociation;sequelize-typescript/associations/shared/base-association.BaseAssociation;", //
+        "sequelize-typescript.BaseAssociation;sequelize-typescript;Member[addAssociation].Argument[1]", //
+        "sequelize-typescript.BaseAssociation;sequelize-typescript;Member[getAssociations,getAssociationsByRelation].ReturnValue.ArrayElement", //
+        "sequelize-typescript.BaseAssociation;sequelize-typescript;Member[setAssociations].Argument[1].ArrayElement", //
+        "sequelize-typescript.BaseAssociationStatic;sequelize-typescript/associations/shared/base-association.BaseAssociationStatic;", //
+        "sequelize-typescript.BaseAssociationStatic;sequelize-typescript/associations/shared/base-association;Member[BaseAssociation]", //
+        "sequelize-typescript.BaseAssociationStatic;sequelize-typescript;Member[BaseAssociation]", //
+        "sequelize-typescript.BelongsToAssociation;sequelize-typescript.BelongsToAssociationStatic;Instance", //
+        "sequelize-typescript.BelongsToAssociation;sequelize-typescript/associations/belongs-to/belongs-to-association.BelongsToAssociation;", //
+        "sequelize-typescript.BelongsToAssociationStatic;sequelize-typescript/associations/belongs-to/belongs-to-association.BelongsToAssociationStatic;", //
+        "sequelize-typescript.BelongsToAssociationStatic;sequelize-typescript/associations/belongs-to/belongs-to-association;Member[BelongsToAssociation]", //
+        "sequelize-typescript.BelongsToAssociationStatic;sequelize-typescript;Member[BelongsToAssociation]", //
+        "sequelize-typescript.BelongsToManyAssociation;sequelize-typescript.BelongsToManyAssociationStatic;Instance", //
+        "sequelize-typescript.BelongsToManyAssociation;sequelize-typescript/associations/belongs-to-many/belongs-to-many-association.BelongsToManyAssociation;", //
+        "sequelize-typescript.BelongsToManyAssociationStatic;sequelize-typescript/associations/belongs-to-many/belongs-to-many-association.BelongsToManyAssociationStatic;", //
+        "sequelize-typescript.BelongsToManyAssociationStatic;sequelize-typescript/associations/belongs-to-many/belongs-to-many-association;Member[BelongsToManyAssociation]", //
+        "sequelize-typescript.BelongsToManyAssociationStatic;sequelize-typescript;Member[BelongsToManyAssociation]", //
+        "sequelize-typescript.DefaultScopeGetter;sequelize-typescript.ScopeOptionsGetters;Member[getDefaultScope]", //
+        "sequelize-typescript.DefaultScopeGetter;sequelize-typescript/scopes/default-scope;Member[DefaultScope].Argument[0]", //
+        "sequelize-typescript.DefaultScopeGetter;sequelize-typescript/scopes/scope-options.DefaultScopeGetter;", //
+        "sequelize-typescript.DefaultScopeGetter;sequelize-typescript;Member[DefaultScope].Argument[0]", //
+        "sequelize-typescript.HasAssociation;sequelize-typescript.HasAssociationStatic;Instance", //
+        "sequelize-typescript.HasAssociation;sequelize-typescript/associations/has/has-association.HasAssociation;", //
+        "sequelize-typescript.HasAssociationStatic;sequelize-typescript/associations/has/has-association.HasAssociationStatic;", //
+        "sequelize-typescript.HasAssociationStatic;sequelize-typescript/associations/has/has-association;Member[HasAssociation]", //
+        "sequelize-typescript.HasAssociationStatic;sequelize-typescript;Member[HasAssociation]", //
+        "sequelize-typescript.Model;sequelize-typescript.Model;Member[$add,$has,$remove,$set].Argument[1]", //
+        "sequelize-typescript.Model;sequelize-typescript.Model;Member[$add,$has,$remove,$set].Argument[1].ArrayElement", //
+        "sequelize-typescript.Model;sequelize-typescript.Model;Member[$create,reload].ReturnValue.Awaited", //
+        "sequelize-typescript.Model;sequelize-typescript.ModelStatic~;Instance", //
+        "sequelize-typescript.Model;sequelize-typescript.ModelStatic~;Member[initialize].ReturnValue.TypeVar[sequelize-typescript.ModelStatic.0]", //
+        "sequelize-typescript.Model;sequelize-typescript.ModelType;Instance", //
+        "sequelize-typescript.Model;sequelize-typescript.Sequelize;Member[getRepository].Argument[0].Instance", //
+        "sequelize-typescript.Model;sequelize-typescript.Sequelize;Member[getRepository].ReturnValue.TypeVar[sequelize-typescript.Repository.0]", //
+        "sequelize-typescript.Model;sequelize-typescript/model/model/model.Model;", //
+        "sequelize-typescript.ModelClassGetter;sequelize-typescript.BaseAssociationStatic;Argument[0]", //
+        "sequelize-typescript.ModelClassGetter;sequelize-typescript.BelongsToAssociationStatic;Argument[0]", //
+        "sequelize-typescript.ModelClassGetter;sequelize-typescript.BelongsToManyAssociationStatic;Argument[0]", //
+        "sequelize-typescript.ModelClassGetter;sequelize-typescript.HasAssociationStatic;Argument[0]", //
+        "sequelize-typescript.ModelClassGetter;sequelize-typescript/associations/belongs-to-many/belongs-to-many;Member[BelongsToMany].Argument[0,1]", //
+        "sequelize-typescript.ModelClassGetter;sequelize-typescript/associations/belongs-to/belongs-to;Member[BelongsTo].Argument[0]", //
+        "sequelize-typescript.ModelClassGetter;sequelize-typescript/associations/foreign-key/foreign-key-meta.ForeignKeyMeta;Member[relatedClassGetter]", //
+        "sequelize-typescript.ModelClassGetter;sequelize-typescript/associations/foreign-key/foreign-key-service;Member[addForeignKey].Argument[1]", //
+        "sequelize-typescript.ModelClassGetter;sequelize-typescript/associations/foreign-key/foreign-key;Member[ForeignKey].Argument[0]", //
+        "sequelize-typescript.ModelClassGetter;sequelize-typescript/associations/has/has-many;Member[HasMany].Argument[0]", //
+        "sequelize-typescript.ModelClassGetter;sequelize-typescript/associations/has/has-one;Member[HasOne].Argument[0]", //
+        "sequelize-typescript.ModelClassGetter;sequelize-typescript/model/shared/model-class-getter.ModelClassGetter;", //
+        "sequelize-typescript.ModelClassGetter;sequelize-typescript;Member[BelongsTo,ForeignKey,HasMany,HasOne].Argument[0]", //
+        "sequelize-typescript.ModelClassGetter;sequelize-typescript;Member[BelongsToMany].Argument[0,1]", //
+        "sequelize-typescript.ModelStatic~;sequelize-typescript/model/model/model.ModelStatic~;", //
+        "sequelize-typescript.ModelStatic~;sequelize-typescript/model/model/model;Member[Model]", //
+        "sequelize-typescript.ModelStatic~;sequelize-typescript/model/shared/model-not-initialized-error.ModelNotInitializedErrorStatic;Argument[0]", //
+        "sequelize-typescript.ModelStatic~;sequelize-typescript;Member[Model]", //
+        "sequelize-typescript.ModelType;sequelize-typescript.BaseAssociation;Member[getAssociatedClass].ReturnValue", //
+        "sequelize-typescript.ModelType;sequelize-typescript.BaseAssociation;Member[getSequelizeOptions].Argument[0]", //
+        "sequelize-typescript.ModelType;sequelize-typescript.BelongsToAssociation;Member[getSequelizeOptions].Argument[0]", //
+        "sequelize-typescript.ModelType;sequelize-typescript.BelongsToManyAssociation;Member[getSequelizeOptions].Argument[0]", //
+        "sequelize-typescript.ModelType;sequelize-typescript.HasAssociation;Member[getSequelizeOptions].Argument[0]", //
+        "sequelize-typescript.ModelType;sequelize-typescript.ModelClassGetter;ReturnValue", //
+        "sequelize-typescript.ModelType;sequelize-typescript.Sequelize;Member[model].Argument[0]", //
+        "sequelize-typescript.ModelType;sequelize-typescript/associations/foreign-key/foreign-key-service;Member[getForeignKeyOptions].Argument[0,1]", //
+        "sequelize-typescript.ModelType;sequelize-typescript/model/model/model.ModelType;", //
+        "sequelize-typescript.ScopeOptionsGetters;sequelize-typescript/scopes/scope-options.ScopeOptionsGetters;", //
+        "sequelize-typescript.ScopeOptionsGetters;sequelize-typescript/scopes/scope-service;Member[addScopeOptionsGetter,setScopeOptionsGetters].Argument[1]", //
+        "sequelize-typescript.ScopeOptionsGetters;sequelize-typescript/scopes/scope-service;Member[getScopeOptionsGetters].ReturnValue", //
+        "sequelize-typescript.ScopeOptionsGetters;sequelize-typescript;Member[addScopeOptionsGetter,setScopeOptionsGetters].Argument[1]", //
+        "sequelize-typescript.ScopeOptionsGetters;sequelize-typescript;Member[getScopeOptionsGetters].ReturnValue", //
+        "sequelize-typescript.ScopesOptions;sequelize-typescript.ScopesOptionsGetter;ReturnValue.AnyMember", //
+        "sequelize-typescript.ScopesOptions;sequelize-typescript/scopes/scope-options.ScopesOptions;", //
+        "sequelize-typescript.ScopesOptions;sequelize-typescript/scopes/scope-service;Member[resolveScope].Argument[2]", //
+        "sequelize-typescript.ScopesOptions;sequelize-typescript;Member[resolveScope].Argument[2]", //
+        "sequelize-typescript.ScopesOptionsGetter;sequelize-typescript.ScopeOptionsGetters;Member[getScopes]", //
+        "sequelize-typescript.ScopesOptionsGetter;sequelize-typescript/scopes/scope-options.ScopesOptionsGetter;", //
+        "sequelize-typescript.ScopesOptionsGetter;sequelize-typescript/scopes/scopes;Member[Scopes].Argument[0]", //
+        "sequelize-typescript.ScopesOptionsGetter;sequelize-typescript;Member[Scopes].Argument[0]", //
+        "sequelize-typescript.Sequelize;sequelize-typescript.BaseAssociation;Member[getSequelizeOptions].Argument[1]", //
+        "sequelize-typescript.Sequelize;sequelize-typescript.BelongsToManyAssociation;Member[getSequelizeOptions].Argument[1]", //
+        "sequelize-typescript.Sequelize;sequelize-typescript.SequelizeStatic;Instance", //
+        "sequelize-typescript.Sequelize;sequelize-typescript/sequelize/sequelize/sequelize.Sequelize;", //
+        "sequelize-typescript.SequelizeOptions;sequelize-typescript.Sequelize;Member[options]", //
+        "sequelize-typescript.SequelizeOptions;sequelize-typescript.SequelizeStatic;Argument[3]", //
+        "sequelize-typescript.SequelizeOptions;sequelize-typescript.SequelizeStatic;WithArity[0].Argument[0]", //
+        "sequelize-typescript.SequelizeOptions;sequelize-typescript.SequelizeStatic;WithArity[1].Argument[0,1]", //
+        "sequelize-typescript.SequelizeOptions;sequelize-typescript.SequelizeStatic;WithArity[2].Argument[1,2]", //
+        "sequelize-typescript.SequelizeOptions;sequelize-typescript.SequelizeStatic;WithArity[3].Argument[2]", //
+        "sequelize-typescript.SequelizeOptions;sequelize-typescript/sequelize/sequelize/sequelize-options.SequelizeOptions;", //
+        "sequelize-typescript.SequelizeOptions;sequelize-typescript/sequelize/sequelize/sequelize-service;Member[prepareArgs].ReturnValue.Member[options]", //
+        "sequelize-typescript.SequelizeOptions;sequelize-typescript/sequelize/sequelize/sequelize-service;Member[prepareOptions].Argument[0]", //
+        "sequelize-typescript.SequelizeOptions;sequelize-typescript/sequelize/sequelize/sequelize-service;Member[prepareOptions].ReturnValue", //
+        "sequelize-typescript.SequelizeOptions;sequelize-typescript;Member[prepareArgs].ReturnValue.Member[options]", //
+        "sequelize-typescript.SequelizeOptions;sequelize-typescript;Member[prepareOptions].Argument[0]", //
+        "sequelize-typescript.SequelizeOptions;sequelize-typescript;Member[prepareOptions].ReturnValue", //
+        "sequelize-typescript.SequelizeStatic;sequelize-typescript/sequelize/sequelize/sequelize.SequelizeStatic;", //
+        "sequelize-typescript.SequelizeStatic;sequelize-typescript/sequelize/sequelize/sequelize;Member[Sequelize]", //
+        "sequelize-typescript.SequelizeStatic;sequelize-typescript;Member[Sequelize]", //
+        "sequelize-typescript/associations/foreign-key/foreign-key-meta.ForeignKeyMeta;sequelize-typescript/associations/foreign-key/foreign-key-service;Member[getForeignKeys].ReturnValue.ArrayElement", //
+        "sequelize-typescript/model/model/association/association-create-options.AssociationCreateOptions;sequelize-typescript.Model;Member[$create].Argument[2]", //
+        "sequelize-typescript/model/shared/model-not-initialized-error.ModelNotInitializedErrorStatic;sequelize-typescript/model/shared/model-not-initialized-error;Member[ModelNotInitializedError]", //
+        "sequelize.AnyFindOptions;sequelize.BelongsToManyAddAssociationMixin;Argument[1]", //
+        "sequelize.AnyFindOptions;sequelize.BelongsToManyAddAssociationsMixin;Argument[1]", //
+        "sequelize.AnyFindOptions;sequelize.BelongsToManySetAssociationsMixin;Argument[1]", //
+        "sequelize.AnyFindOptions;sequelize.DefineOptions;Member[defaultScope]", //
+        "sequelize.AnyFindOptions;sequelize.DefineScopeOptions;AnyMember", //
+        "sequelize.AnyFindOptions;sequelize.HasManySetAssociationsMixin;Argument[1]", //
+        "sequelize.AnyFindOptions;sequelize.Instance;Member[reload].Argument[0]", //
+        "sequelize.AnyFindOptions;sequelize.Model;Member[addScope].Argument[1]", //
+        "sequelize.AssociationOptionsBelongsToMany;sequelize.Associations;Member[belongsToMany].Argument[1]", //
+        "sequelize.Associations;sequelize.Model;", //
+        "sequelize.Associations;sequelize.SequelizeStaticAndInstance.Model;", //
+        "sequelize.BuildOptions;sequelize-typescript.ModelStatic~;Argument[1]", //
+        "sequelize.BuildOptions;sequelize.CreateOptions;", //
+        "sequelize.BuildOptions;sequelize.Model;Member[build,bulkBuild].Argument[1]", //
+        "sequelize.CountOptions;sequelize.Model;Member[count].Argument[0]", //
+        "sequelize.CreateOptions;sequelize-typescript/model/model/association/association-create-options.AssociationCreateOptions;", //
+        "sequelize.CreateOptions;sequelize.BelongsToCreateAssociationMixin;Argument[1]", //
+        "sequelize.CreateOptions;sequelize.BelongsToManyCreateAssociationMixin;Argument[1]", //
+        "sequelize.CreateOptions;sequelize.HasManyCreateAssociationMixin;Argument[1]", //
+        "sequelize.CreateOptions;sequelize.HasOneCreateAssociationMixin;Argument[1]", //
+        "sequelize.CreateOptions;sequelize.Model;Member[create].Argument[1]", //
+        "sequelize.DefineAttributeColumnOptions;sequelize.DefineAttributes;AnyMember", //
+        "sequelize.DefineAttributeColumnOptions;sequelize.QueryInterface;Member[addColumn,changeColumn].Argument[2]", //
+        "sequelize.DefineAttributeColumnReferencesOptions;sequelize.DefineAttributeColumnOptions;Member[references]", //
+        "sequelize.DefineAttributes;sequelize.Hooks;Member[beforeDefine].Argument[1].Argument[0]", //
+        "sequelize.DefineAttributes;sequelize.Hooks;Member[beforeDefine].WithArity[1].Argument[0].Argument[0]", //
+        "sequelize.DefineAttributes;sequelize.QueryInterface;Member[createTable].Argument[1]", //
+        "sequelize.DefineOptions;sequelize.Options;Member[define]", //
+        "sequelize.DefineOptions;sequelize.Sequelize;Member[define].Argument[2]", //
+        "sequelize.DefineScopeOptions;sequelize.DefineOptions;Member[scopes]", //
+        "sequelize.FindCreateFindOptions;sequelize.Model;Member[findCreateFind].Argument[0]", //
+        "sequelize.FindOptions;sequelize-typescript.AssociationCountOptions;", //
+        "sequelize.FindOptions;sequelize-typescript.AssociationGetOptions;", //
+        "sequelize.FindOptions;sequelize-typescript.DefaultScopeGetter;ReturnValue", //
+        "sequelize.FindOptions;sequelize-typescript.Model;Member[reload].Argument[0]", //
+        "sequelize.FindOptions;sequelize-typescript.ScopesOptions;", //
+        "sequelize.FindOptions;sequelize-typescript.ScopesOptions;ReturnValue", //
+        "sequelize.FindOptions;sequelize.AnyFindOptions;", //
+        "sequelize.FindOptions;sequelize.FindCreateFindOptions;", //
+        "sequelize.FindOptions;sequelize.FindOrInitializeOptions;", //
+        "sequelize.FindOptions;sequelize.Model;Member[all,find,findAll,findAndCount,findAndCountAll,findOne].Argument[0]", //
+        "sequelize.FindOptionsOrderArray;sequelize.FindOptions;Member[order]", //
+        "sequelize.FindOptionsOrderArray;sequelize.FindOptions;Member[order].ArrayElement", //
+        "sequelize.FindOrInitializeOptions;sequelize.Model;Member[findOrBuild,findOrCreate,findOrInitialize].Argument[0]", //
+        "sequelize.HasManyGetAssociationsMixinOptions;sequelize.HasManyGetAssociationsMixin;Argument[0]", //
+        "sequelize.HasManyGetAssociationsMixinOptions;sequelize.HasManyHasAssociationMixin;Argument[1]", //
+        "sequelize.HasManyGetAssociationsMixinOptions;sequelize.HasManyHasAssociationsMixin;Argument[1]", //
+        "sequelize.Hooks;sequelize.Hooks;Member[addHook,hook,removeHook].ReturnValue", //
+        "sequelize.Hooks;sequelize.Model;", //
+        "sequelize.Hooks;sequelize.Sequelize;", //
+        "sequelize.Hooks;sequelize.SequelizeStaticAndInstance.Model;", //
+        "sequelize.IncludeAssociation;sequelize.Associations;Member[belongsTo,belongsToMany,hasMany,hasOne].ReturnValue", //
+        "sequelize.IncludeAssociation;sequelize.IncludeOptions;Member[association]", //
+        "sequelize.IncludeOptions;sequelize.BuildOptions;Member[include].ArrayElement", //
+        "sequelize.IncludeOptions;sequelize.CountOptions;Member[include]", //
+        "sequelize.IncludeOptions;sequelize.CountOptions;Member[include].ArrayElement", //
+        "sequelize.IncludeOptions;sequelize.FindOptions;Member[include]", //
+        "sequelize.IncludeOptions;sequelize.FindOptions;Member[include].ArrayElement", //
+        "sequelize.IncludeOptions;sequelize.HasManyGetAssociationsMixinOptions;Member[include]", //
+        "sequelize.IncludeOptions;sequelize.IncludeOptions;Member[include]", //
+        "sequelize.IncludeOptions;sequelize.IncludeOptions;Member[include].ArrayElement", //
+        "sequelize.Instance;sequelize.Instance;Member[decrement,increment,reload,save,update,updateAttributes].ReturnValue.Awaited", //
+        "sequelize.Instance;sequelize.Instance;Member[equalsOneOf].Argument[0].ArrayElement", //
+        "sequelize.Instance;sequelize.Instance;Member[equals].Argument[0]", //
+        "sequelize.Instance;sequelize.Instance;Member[set,setAttributes].ReturnValue", //
+        "sequelize.Instance;sequelize.Model;Member[Instance,build].ReturnValue", //
+        "sequelize.Instance;sequelize.Model;Member[all,bulkCreate,findAll].ReturnValue.Awaited.ArrayElement", //
+        "sequelize.Instance;sequelize.Model;Member[bulkBuild].ReturnValue.ArrayElement", //
+        "sequelize.Instance;sequelize.Model;Member[create,find,findById,findByPk,findByPrimary,findOne].ReturnValue.Awaited", //
+        "sequelize.Instance;sequelize.Model;Member[findAndCount,findAndCountAll].ReturnValue.Awaited.Member[rows].ArrayElement", //
+        "sequelize.Instance;sequelize.QueryInterface;Member[delete,increment,insert,update].Argument[0]", //
+        "sequelize.Instance;sequelize.QueryOptions;Member[instance]", //
+        "sequelize.Instance;sequelize.SequelizeStaticAndInstance;Member[Instance]", //
+        "sequelize.Model;sequelize.AssociationOptionsBelongsToMany;Member[through]", //
+        "sequelize.Model;sequelize.Associations;Member[belongsTo,belongsToMany,hasMany,hasOne].Argument[0]", //
+        "sequelize.Model;sequelize.BuildOptions;Member[include].ArrayElement", //
+        "sequelize.Model;sequelize.CountOptions;Member[include]", //
+        "sequelize.Model;sequelize.CountOptions;Member[include].ArrayElement", //
+        "sequelize.Model;sequelize.DefineAttributeColumnReferencesOptions;Member[model]", //
+        "sequelize.Model;sequelize.FindOptions;Member[include]", //
+        "sequelize.Model;sequelize.FindOptions;Member[include].ArrayElement", //
+        "sequelize.Model;sequelize.FindOptions;Member[lock].Member[of]", //
+        "sequelize.Model;sequelize.FindOptionsOrderArray;ArrayElement", //
+        "sequelize.Model;sequelize.FindOptionsOrderArray;ArrayElement.Member[model]", //
+        "sequelize.Model;sequelize.Hooks;Member[afterDefine].Argument[1].Argument[0]", //
+        "sequelize.Model;sequelize.Hooks;Member[afterDefine].WithArity[1].Argument[0].Argument[0]", //
+        "sequelize.Model;sequelize.IncludeAssociation;Member[source,target]", //
+        "sequelize.Model;sequelize.IncludeOptions;Member[include,model]", //
+        "sequelize.Model;sequelize.IncludeOptions;Member[include].ArrayElement", //
+        "sequelize.Model;sequelize.Instance;Member[Model]", //
+        "sequelize.Model;sequelize.Model;Member[schema,scope,unscoped].ReturnValue", //
+        "sequelize.Model;sequelize.Model;Member[sync].ReturnValue.Awaited", //
+        "sequelize.Model;sequelize.Models;AnyMember", //
+        "sequelize.Model;sequelize.ModelsHashInterface;AnyMember", //
+        "sequelize.Model;sequelize.QueryInterface;Member[bulkDelete,rawSelect,upsert].Argument[3]", //
+        "sequelize.Model;sequelize.QueryInterface;Member[select].Argument[0]", //
+        "sequelize.Model;sequelize.QueryOptions;Member[model]", //
+        "sequelize.Model;sequelize.Sequelize;Member[define,import,model].ReturnValue", //
+        "sequelize.Model;sequelize.Sequelize;Member[import].Argument[1].ReturnValue", //
+        "sequelize.Model;sequelize.SequelizeStaticAndInstance;Member[Model]", //
+        "sequelize.Model;sequelize.ThroughOptions;Member[model]", //
+        "sequelize.Model;sequelize.Utils;Member[mapOptionFieldNames].Argument[1]", //
+        "sequelize.Model;sequelize.Utils;Member[mapValueFieldNames].Argument[2]", //
+        "sequelize.Models;sequelize.Model;Member[associate].Argument[0]", //
+        "sequelize.ModelsHashInterface;sequelize.Sequelize;Member[models]", //
+        "sequelize.Options;sequelize-typescript.SequelizeOptions;", //
+        "sequelize.Options;sequelize.Sequelize;Member[options]", //
+        "sequelize.Options;sequelize.SequelizeStatic;Argument[3]", //
+        "sequelize.Options;sequelize.SequelizeStatic;WithArity[1].Argument[0,1]", //
+        "sequelize.Options;sequelize.SequelizeStatic;WithArity[2].Argument[1,2]", //
+        "sequelize.Options;sequelize.SequelizeStatic;WithArity[3].Argument[2]", //
+        "sequelize.QueryInterface;sequelize.Sequelize;Member[getQueryInterface].ReturnValue", //
+        "sequelize.QueryOptions;sequelize.Options;Member[query]", //
+        "sequelize.QueryOptions;sequelize.QueryInterface;Member[bulkDelete,bulkInsert,createTable,select,setAutocommit,setIsolationLevel].Argument[2]", //
+        "sequelize.QueryOptions;sequelize.QueryInterface;Member[bulkUpdate,delete,insert].Argument[3]", //
+        "sequelize.QueryOptions;sequelize.QueryInterface;Member[commitTransaction,deferConstraints,dropTable,rawSelect,rollbackTransaction,showIndex,startTransaction].Argument[1]", //
+        "sequelize.QueryOptions;sequelize.QueryInterface;Member[createFunction].Argument[5]", //
+        "sequelize.QueryOptions;sequelize.QueryInterface;Member[dropAllEnums,dropAllTables,showAllSchemas,showAllTables].Argument[0]", //
+        "sequelize.QueryOptions;sequelize.QueryInterface;Member[increment,update,upsert].Argument[4]", //
+        "sequelize.QueryOptions;sequelize.Sequelize;Member[authenticate,validate].Argument[0]", //
+        "sequelize.QueryOptions;sequelize.Sequelize;Member[query].Argument[1]", //
+        "sequelize.Sequelize;sequelize-typescript.Sequelize;", //
+        "sequelize.Sequelize;sequelize.Hooks;Member[afterInit].Argument[1].Argument[0]", //
+        "sequelize.Sequelize;sequelize.Hooks;Member[afterInit].WithArity[1].Argument[0].Argument[0]", //
+        "sequelize.Sequelize;sequelize.Instance;Member[sequelize]", //
+        "sequelize.Sequelize;sequelize.QueryInterface;Member[sequelize]", //
+        "sequelize.Sequelize;sequelize.Sequelize;Member[import].Argument[1].Argument[0]", //
+        "sequelize.Sequelize;sequelize.SequelizeStatic;Instance", //
+        "sequelize.Sequelize;sequelize.SequelizeStatic;Member[useCLS].ReturnValue", //
+        "sequelize.SequelizeStatic;sequelize-typescript.Sequelize;", //
+        "sequelize.SequelizeStatic;sequelize.Sequelize;Member[Sequelize]", //
+        "sequelize.SequelizeStatic;sequelize.SequelizeStatic;Member[Sequelize,default]", //
+        "sequelize.SequelizeStatic;sequelize;", //
+        "sequelize.SequelizeStaticAndInstance.Model;sequelize-typescript.Model;", //
+        "sequelize.SequelizeStaticAndInstance;sequelize.Sequelize;", //
+        "sequelize.SequelizeStaticAndInstance;sequelize.SequelizeStatic;", //
+        "sequelize.ThroughOptions;sequelize.AssociationOptionsBelongsToMany;Member[through]", //
+        "sequelize.Utils;sequelize.SequelizeStaticAndInstance;Member[Utils]", //
       ]
   }
 }
@@ -277,11 +277,11 @@ private class Summaries extends ModelInput::SummaryModelCsv {
   override predicate row(string row) {
     row =
       [
-        "sequelize-typescript;Model;;;Member[reload].ReturnValue.Awaited;type", //
-        "sequelize;Instance;;;Member[decrement,increment,reload,save,update,updateAttributes].ReturnValue.Awaited;type", //
-        "sequelize;Instance;;;Member[set,setAttributes].ReturnValue;type", //
-        "sequelize;Model;;;Member[schema,scope,unscoped].ReturnValue;type", //
-        "sequelize;Model;;;Member[sync].ReturnValue.Awaited;type", //
+        "sequelize-typescript.Model;;;Member[reload].ReturnValue.Awaited;type", //
+        "sequelize.Instance;;;Member[decrement,increment,reload,save,update,updateAttributes].ReturnValue.Awaited;type", //
+        "sequelize.Instance;;;Member[set,setAttributes].ReturnValue;type", //
+        "sequelize.Model;;;Member[schema,scope,unscoped].ReturnValue;type", //
+        "sequelize.Model;;;Member[sync].ReturnValue.Awaited;type", //
       ]
   }
 }
diff --git a/javascript/ql/lib/semmle/javascript/frameworks/sequelize/model.json b/javascript/ql/lib/semmle/javascript/frameworks/sequelize/model.json
index 8d6c473de29..88568283605 100644
--- a/javascript/ql/lib/semmle/javascript/frameworks/sequelize/model.json
+++ b/javascript/ql/lib/semmle/javascript/frameworks/sequelize/model.json
@@ -12,279 +12,279 @@
     },
     "language": "javascript",
     "replaceTypeParameters": [
-        "sequelize;Model;TInstance;sequelize;Instance"
+        "sequelize.Model;TInstance;sequelize.Instance"
     ],
     "model": {
         "sinks": [
-            "sequelize;;Argument[0..].Member[password];credentials[password]",
-            "sequelize;;Argument[0..].Member[username];credentials[username]",
-            "sequelize;;Argument[1];credentials[username]",
-            "sequelize;;Argument[2];credentials[password]",
-            "sequelize;Sequelize;Member[query].Argument[0].Member[query];sql-injection",
-            "sequelize;Sequelize;Member[query].Argument[0];sql-injection",
-            "sequelize;SequelizeStaticAndInstance;Member[asIs,literal].Argument[0];sql-injection"
+            "sequelize.Sequelize;Member[query].Argument[0].Member[query];sql-injection",
+            "sequelize.Sequelize;Member[query].Argument[0];sql-injection",
+            "sequelize.SequelizeStaticAndInstance;Member[asIs,literal].Argument[0];sql-injection",
+            "sequelize;Argument[0..].Member[password];credentials[password]",
+            "sequelize;Argument[0..].Member[username];credentials[username]",
+            "sequelize;Argument[1];credentials[username]",
+            "sequelize;Argument[2];credentials[password]"
         ],
         "typeDefinitions": [
-            "sequelize;Sequelize;sequelize-typescript;Sequelize;"
+            "sequelize.Sequelize;sequelize-typescript.Sequelize;"
         ]
     },
     "generatedModel": {
         "//": "Autogenerated section. Manual edits in here will be lost.",
         "typeDefinitions": [
-            "sequelize-typescript/associations/foreign-key/foreign-key-meta;ForeignKeyMeta;sequelize-typescript/associations/foreign-key/foreign-key-service;;Member[getForeignKeys].ReturnValue.ArrayElement",
-            "sequelize-typescript/model/model/association/association-create-options;AssociationCreateOptions;sequelize-typescript;Model;Member[$create].Argument[2]",
-            "sequelize-typescript/model/shared/model-not-initialized-error;ModelNotInitializedErrorStatic;sequelize-typescript/model/shared/model-not-initialized-error;;Member[ModelNotInitializedError]",
-            "sequelize-typescript;AssociationCountOptions;sequelize-typescript/model/model/association/association-count-options;AssociationCountOptions;",
-            "sequelize-typescript;AssociationCountOptions;sequelize-typescript;Model;Member[$count].Argument[1]",
-            "sequelize-typescript;AssociationGetOptions;sequelize-typescript/model/model/association/association-get-options;AssociationGetOptions;",
-            "sequelize-typescript;AssociationGetOptions;sequelize-typescript;Model;Member[$get].Argument[1]",
-            "sequelize-typescript;AssociationGetOptions;sequelize-typescript;Model;Member[$has].Argument[2]",
-            "sequelize-typescript;BaseAssociation;sequelize-typescript/associations/shared/association-service;;Member[addAssociation].Argument[1]",
-            "sequelize-typescript;BaseAssociation;sequelize-typescript/associations/shared/association-service;;Member[getAssociations,getAssociationsByRelation].ReturnValue.ArrayElement",
-            "sequelize-typescript;BaseAssociation;sequelize-typescript/associations/shared/association-service;;Member[setAssociations].Argument[1].ArrayElement",
-            "sequelize-typescript;BaseAssociation;sequelize-typescript/associations/shared/base-association;BaseAssociation;",
-            "sequelize-typescript;BaseAssociation;sequelize-typescript;;Member[addAssociation].Argument[1]",
-            "sequelize-typescript;BaseAssociation;sequelize-typescript;;Member[getAssociations,getAssociationsByRelation].ReturnValue.ArrayElement",
-            "sequelize-typescript;BaseAssociation;sequelize-typescript;;Member[setAssociations].Argument[1].ArrayElement",
-            "sequelize-typescript;BaseAssociation;sequelize-typescript;BaseAssociationStatic;Instance",
-            "sequelize-typescript;BaseAssociation;sequelize-typescript;BelongsToAssociation;",
-            "sequelize-typescript;BaseAssociation;sequelize-typescript;BelongsToManyAssociation;",
-            "sequelize-typescript;BaseAssociation;sequelize-typescript;HasAssociation;",
-            "sequelize-typescript;BaseAssociationStatic;sequelize-typescript/associations/shared/base-association;;Member[BaseAssociation]",
-            "sequelize-typescript;BaseAssociationStatic;sequelize-typescript/associations/shared/base-association;BaseAssociationStatic;",
-            "sequelize-typescript;BaseAssociationStatic;sequelize-typescript;;Member[BaseAssociation]",
-            "sequelize-typescript;BelongsToAssociation;sequelize-typescript/associations/belongs-to/belongs-to-association;BelongsToAssociation;",
-            "sequelize-typescript;BelongsToAssociation;sequelize-typescript;BelongsToAssociationStatic;Instance",
-            "sequelize-typescript;BelongsToAssociationStatic;sequelize-typescript/associations/belongs-to/belongs-to-association;;Member[BelongsToAssociation]",
-            "sequelize-typescript;BelongsToAssociationStatic;sequelize-typescript/associations/belongs-to/belongs-to-association;BelongsToAssociationStatic;",
-            "sequelize-typescript;BelongsToAssociationStatic;sequelize-typescript;;Member[BelongsToAssociation]",
-            "sequelize-typescript;BelongsToManyAssociation;sequelize-typescript/associations/belongs-to-many/belongs-to-many-association;BelongsToManyAssociation;",
-            "sequelize-typescript;BelongsToManyAssociation;sequelize-typescript;BelongsToManyAssociationStatic;Instance",
-            "sequelize-typescript;BelongsToManyAssociationStatic;sequelize-typescript/associations/belongs-to-many/belongs-to-many-association;;Member[BelongsToManyAssociation]",
-            "sequelize-typescript;BelongsToManyAssociationStatic;sequelize-typescript/associations/belongs-to-many/belongs-to-many-association;BelongsToManyAssociationStatic;",
-            "sequelize-typescript;BelongsToManyAssociationStatic;sequelize-typescript;;Member[BelongsToManyAssociation]",
-            "sequelize-typescript;DefaultScopeGetter;sequelize-typescript/scopes/default-scope;;Member[DefaultScope].Argument[0]",
-            "sequelize-typescript;DefaultScopeGetter;sequelize-typescript/scopes/scope-options;DefaultScopeGetter;",
-            "sequelize-typescript;DefaultScopeGetter;sequelize-typescript;;Member[DefaultScope].Argument[0]",
-            "sequelize-typescript;DefaultScopeGetter;sequelize-typescript;ScopeOptionsGetters;Member[getDefaultScope]",
-            "sequelize-typescript;HasAssociation;sequelize-typescript/associations/has/has-association;HasAssociation;",
-            "sequelize-typescript;HasAssociation;sequelize-typescript;HasAssociationStatic;Instance",
-            "sequelize-typescript;HasAssociationStatic;sequelize-typescript/associations/has/has-association;;Member[HasAssociation]",
-            "sequelize-typescript;HasAssociationStatic;sequelize-typescript/associations/has/has-association;HasAssociationStatic;",
-            "sequelize-typescript;HasAssociationStatic;sequelize-typescript;;Member[HasAssociation]",
-            "sequelize-typescript;Model;sequelize-typescript/model/model/model;Model;",
-            "sequelize-typescript;Model;sequelize-typescript;Model;Member[$add,$has,$remove,$set].Argument[1]",
-            "sequelize-typescript;Model;sequelize-typescript;Model;Member[$add,$has,$remove,$set].Argument[1].ArrayElement",
-            "sequelize-typescript;Model;sequelize-typescript;Model;Member[$create,reload].ReturnValue.Awaited",
-            "sequelize-typescript;Model;sequelize-typescript;ModelStatic~;Instance",
-            "sequelize-typescript;Model;sequelize-typescript;ModelStatic~;Member[initialize].ReturnValue.TypeVar[sequelize-typescript.ModelStatic.0]",
-            "sequelize-typescript;Model;sequelize-typescript;ModelType;Instance",
-            "sequelize-typescript;Model;sequelize-typescript;Sequelize;Member[getRepository].Argument[0].Instance",
-            "sequelize-typescript;Model;sequelize-typescript;Sequelize;Member[getRepository].ReturnValue.TypeVar[sequelize-typescript.Repository.0]",
-            "sequelize-typescript;ModelClassGetter;sequelize-typescript/associations/belongs-to-many/belongs-to-many;;Member[BelongsToMany].Argument[0,1]",
-            "sequelize-typescript;ModelClassGetter;sequelize-typescript/associations/belongs-to/belongs-to;;Member[BelongsTo].Argument[0]",
-            "sequelize-typescript;ModelClassGetter;sequelize-typescript/associations/foreign-key/foreign-key-meta;ForeignKeyMeta;Member[relatedClassGetter]",
-            "sequelize-typescript;ModelClassGetter;sequelize-typescript/associations/foreign-key/foreign-key-service;;Member[addForeignKey].Argument[1]",
-            "sequelize-typescript;ModelClassGetter;sequelize-typescript/associations/foreign-key/foreign-key;;Member[ForeignKey].Argument[0]",
-            "sequelize-typescript;ModelClassGetter;sequelize-typescript/associations/has/has-many;;Member[HasMany].Argument[0]",
-            "sequelize-typescript;ModelClassGetter;sequelize-typescript/associations/has/has-one;;Member[HasOne].Argument[0]",
-            "sequelize-typescript;ModelClassGetter;sequelize-typescript/model/shared/model-class-getter;ModelClassGetter;",
-            "sequelize-typescript;ModelClassGetter;sequelize-typescript;;Member[BelongsTo,ForeignKey,HasMany,HasOne].Argument[0]",
-            "sequelize-typescript;ModelClassGetter;sequelize-typescript;;Member[BelongsToMany].Argument[0,1]",
-            "sequelize-typescript;ModelClassGetter;sequelize-typescript;BaseAssociationStatic;Argument[0]",
-            "sequelize-typescript;ModelClassGetter;sequelize-typescript;BelongsToAssociationStatic;Argument[0]",
-            "sequelize-typescript;ModelClassGetter;sequelize-typescript;BelongsToManyAssociationStatic;Argument[0]",
-            "sequelize-typescript;ModelClassGetter;sequelize-typescript;HasAssociationStatic;Argument[0]",
-            "sequelize-typescript;ModelStatic~;sequelize-typescript/model/model/model;;Member[Model]",
-            "sequelize-typescript;ModelStatic~;sequelize-typescript/model/model/model;ModelStatic~;",
-            "sequelize-typescript;ModelStatic~;sequelize-typescript/model/shared/model-not-initialized-error;ModelNotInitializedErrorStatic;Argument[0]",
-            "sequelize-typescript;ModelStatic~;sequelize-typescript;;Member[Model]",
-            "sequelize-typescript;ModelType;sequelize-typescript/associations/foreign-key/foreign-key-service;;Member[getForeignKeyOptions].Argument[0,1]",
-            "sequelize-typescript;ModelType;sequelize-typescript/model/model/model;ModelType;",
-            "sequelize-typescript;ModelType;sequelize-typescript;BaseAssociation;Member[getAssociatedClass].ReturnValue",
-            "sequelize-typescript;ModelType;sequelize-typescript;BaseAssociation;Member[getSequelizeOptions].Argument[0]",
-            "sequelize-typescript;ModelType;sequelize-typescript;BelongsToAssociation;Member[getSequelizeOptions].Argument[0]",
-            "sequelize-typescript;ModelType;sequelize-typescript;BelongsToManyAssociation;Member[getSequelizeOptions].Argument[0]",
-            "sequelize-typescript;ModelType;sequelize-typescript;HasAssociation;Member[getSequelizeOptions].Argument[0]",
-            "sequelize-typescript;ModelType;sequelize-typescript;ModelClassGetter;ReturnValue",
-            "sequelize-typescript;ModelType;sequelize-typescript;Sequelize;Member[model].Argument[0]",
-            "sequelize-typescript;ScopeOptionsGetters;sequelize-typescript/scopes/scope-options;ScopeOptionsGetters;",
-            "sequelize-typescript;ScopeOptionsGetters;sequelize-typescript/scopes/scope-service;;Member[addScopeOptionsGetter,setScopeOptionsGetters].Argument[1]",
-            "sequelize-typescript;ScopeOptionsGetters;sequelize-typescript/scopes/scope-service;;Member[getScopeOptionsGetters].ReturnValue",
-            "sequelize-typescript;ScopeOptionsGetters;sequelize-typescript;;Member[addScopeOptionsGetter,setScopeOptionsGetters].Argument[1]",
-            "sequelize-typescript;ScopeOptionsGetters;sequelize-typescript;;Member[getScopeOptionsGetters].ReturnValue",
-            "sequelize-typescript;ScopesOptions;sequelize-typescript/scopes/scope-options;ScopesOptions;",
-            "sequelize-typescript;ScopesOptions;sequelize-typescript/scopes/scope-service;;Member[resolveScope].Argument[2]",
-            "sequelize-typescript;ScopesOptions;sequelize-typescript;;Member[resolveScope].Argument[2]",
-            "sequelize-typescript;ScopesOptions;sequelize-typescript;ScopesOptionsGetter;ReturnValue.AnyMember",
-            "sequelize-typescript;ScopesOptionsGetter;sequelize-typescript/scopes/scope-options;ScopesOptionsGetter;",
-            "sequelize-typescript;ScopesOptionsGetter;sequelize-typescript/scopes/scopes;;Member[Scopes].Argument[0]",
-            "sequelize-typescript;ScopesOptionsGetter;sequelize-typescript;;Member[Scopes].Argument[0]",
-            "sequelize-typescript;ScopesOptionsGetter;sequelize-typescript;ScopeOptionsGetters;Member[getScopes]",
-            "sequelize-typescript;Sequelize;sequelize-typescript/sequelize/sequelize/sequelize;Sequelize;",
-            "sequelize-typescript;Sequelize;sequelize-typescript;BaseAssociation;Member[getSequelizeOptions].Argument[1]",
-            "sequelize-typescript;Sequelize;sequelize-typescript;BelongsToManyAssociation;Member[getSequelizeOptions].Argument[1]",
-            "sequelize-typescript;Sequelize;sequelize-typescript;SequelizeStatic;Instance",
-            "sequelize-typescript;SequelizeOptions;sequelize-typescript/sequelize/sequelize/sequelize-options;SequelizeOptions;",
-            "sequelize-typescript;SequelizeOptions;sequelize-typescript/sequelize/sequelize/sequelize-service;;Member[prepareArgs].ReturnValue.Member[options]",
-            "sequelize-typescript;SequelizeOptions;sequelize-typescript/sequelize/sequelize/sequelize-service;;Member[prepareOptions].Argument[0]",
-            "sequelize-typescript;SequelizeOptions;sequelize-typescript/sequelize/sequelize/sequelize-service;;Member[prepareOptions].ReturnValue",
-            "sequelize-typescript;SequelizeOptions;sequelize-typescript;;Member[prepareArgs].ReturnValue.Member[options]",
-            "sequelize-typescript;SequelizeOptions;sequelize-typescript;;Member[prepareOptions].Argument[0]",
-            "sequelize-typescript;SequelizeOptions;sequelize-typescript;;Member[prepareOptions].ReturnValue",
-            "sequelize-typescript;SequelizeOptions;sequelize-typescript;Sequelize;Member[options]",
-            "sequelize-typescript;SequelizeOptions;sequelize-typescript;SequelizeStatic;Argument[3]",
-            "sequelize-typescript;SequelizeOptions;sequelize-typescript;SequelizeStatic;WithArity[0].Argument[0]",
-            "sequelize-typescript;SequelizeOptions;sequelize-typescript;SequelizeStatic;WithArity[1].Argument[0,1]",
-            "sequelize-typescript;SequelizeOptions;sequelize-typescript;SequelizeStatic;WithArity[2].Argument[1,2]",
-            "sequelize-typescript;SequelizeOptions;sequelize-typescript;SequelizeStatic;WithArity[3].Argument[2]",
-            "sequelize-typescript;SequelizeStatic;sequelize-typescript/sequelize/sequelize/sequelize;;Member[Sequelize]",
-            "sequelize-typescript;SequelizeStatic;sequelize-typescript/sequelize/sequelize/sequelize;SequelizeStatic;",
-            "sequelize-typescript;SequelizeStatic;sequelize-typescript;;Member[Sequelize]",
-            "sequelize;AnyFindOptions;sequelize;BelongsToManyAddAssociationMixin;Argument[1]",
-            "sequelize;AnyFindOptions;sequelize;BelongsToManyAddAssociationsMixin;Argument[1]",
-            "sequelize;AnyFindOptions;sequelize;BelongsToManySetAssociationsMixin;Argument[1]",
-            "sequelize;AnyFindOptions;sequelize;DefineOptions;Member[defaultScope]",
-            "sequelize;AnyFindOptions;sequelize;DefineScopeOptions;AnyMember",
-            "sequelize;AnyFindOptions;sequelize;HasManySetAssociationsMixin;Argument[1]",
-            "sequelize;AnyFindOptions;sequelize;Instance;Member[reload].Argument[0]",
-            "sequelize;AnyFindOptions;sequelize;Model;Member[addScope].Argument[1]",
-            "sequelize;AssociationOptionsBelongsToMany;sequelize;Associations;Member[belongsToMany].Argument[1]",
-            "sequelize;Associations;sequelize;Model;",
-            "sequelize;Associations;sequelize;SequelizeStaticAndInstance.Model;",
-            "sequelize;BuildOptions;sequelize-typescript;ModelStatic~;Argument[1]",
-            "sequelize;BuildOptions;sequelize;CreateOptions;",
-            "sequelize;BuildOptions;sequelize;Model;Member[build,bulkBuild].Argument[1]",
-            "sequelize;CountOptions;sequelize;Model;Member[count].Argument[0]",
-            "sequelize;CreateOptions;sequelize-typescript/model/model/association/association-create-options;AssociationCreateOptions;",
-            "sequelize;CreateOptions;sequelize;BelongsToCreateAssociationMixin;Argument[1]",
-            "sequelize;CreateOptions;sequelize;BelongsToManyCreateAssociationMixin;Argument[1]",
-            "sequelize;CreateOptions;sequelize;HasManyCreateAssociationMixin;Argument[1]",
-            "sequelize;CreateOptions;sequelize;HasOneCreateAssociationMixin;Argument[1]",
-            "sequelize;CreateOptions;sequelize;Model;Member[create].Argument[1]",
-            "sequelize;DefineAttributeColumnOptions;sequelize;DefineAttributes;AnyMember",
-            "sequelize;DefineAttributeColumnOptions;sequelize;QueryInterface;Member[addColumn,changeColumn].Argument[2]",
-            "sequelize;DefineAttributeColumnReferencesOptions;sequelize;DefineAttributeColumnOptions;Member[references]",
-            "sequelize;DefineAttributes;sequelize;Hooks;Member[beforeDefine].Argument[1].Argument[0]",
-            "sequelize;DefineAttributes;sequelize;Hooks;Member[beforeDefine].WithArity[1].Argument[0].Argument[0]",
-            "sequelize;DefineAttributes;sequelize;QueryInterface;Member[createTable].Argument[1]",
-            "sequelize;DefineOptions;sequelize;Options;Member[define]",
-            "sequelize;DefineOptions;sequelize;Sequelize;Member[define].Argument[2]",
-            "sequelize;DefineScopeOptions;sequelize;DefineOptions;Member[scopes]",
-            "sequelize;FindCreateFindOptions;sequelize;Model;Member[findCreateFind].Argument[0]",
-            "sequelize;FindOptions;sequelize-typescript;AssociationCountOptions;",
-            "sequelize;FindOptions;sequelize-typescript;AssociationGetOptions;",
-            "sequelize;FindOptions;sequelize-typescript;DefaultScopeGetter;ReturnValue",
-            "sequelize;FindOptions;sequelize-typescript;Model;Member[reload].Argument[0]",
-            "sequelize;FindOptions;sequelize-typescript;ScopesOptions;",
-            "sequelize;FindOptions;sequelize-typescript;ScopesOptions;ReturnValue",
-            "sequelize;FindOptions;sequelize;AnyFindOptions;",
-            "sequelize;FindOptions;sequelize;FindCreateFindOptions;",
-            "sequelize;FindOptions;sequelize;FindOrInitializeOptions;",
-            "sequelize;FindOptions;sequelize;Model;Member[all,find,findAll,findAndCount,findAndCountAll,findOne].Argument[0]",
-            "sequelize;FindOptionsOrderArray;sequelize;FindOptions;Member[order]",
-            "sequelize;FindOptionsOrderArray;sequelize;FindOptions;Member[order].ArrayElement",
-            "sequelize;FindOrInitializeOptions;sequelize;Model;Member[findOrBuild,findOrCreate,findOrInitialize].Argument[0]",
-            "sequelize;HasManyGetAssociationsMixinOptions;sequelize;HasManyGetAssociationsMixin;Argument[0]",
-            "sequelize;HasManyGetAssociationsMixinOptions;sequelize;HasManyHasAssociationMixin;Argument[1]",
-            "sequelize;HasManyGetAssociationsMixinOptions;sequelize;HasManyHasAssociationsMixin;Argument[1]",
-            "sequelize;Hooks;sequelize;Hooks;Member[addHook,hook,removeHook].ReturnValue",
-            "sequelize;Hooks;sequelize;Model;",
-            "sequelize;Hooks;sequelize;Sequelize;",
-            "sequelize;Hooks;sequelize;SequelizeStaticAndInstance.Model;",
-            "sequelize;IncludeAssociation;sequelize;Associations;Member[belongsTo,belongsToMany,hasMany,hasOne].ReturnValue",
-            "sequelize;IncludeAssociation;sequelize;IncludeOptions;Member[association]",
-            "sequelize;IncludeOptions;sequelize;BuildOptions;Member[include].ArrayElement",
-            "sequelize;IncludeOptions;sequelize;CountOptions;Member[include]",
-            "sequelize;IncludeOptions;sequelize;CountOptions;Member[include].ArrayElement",
-            "sequelize;IncludeOptions;sequelize;FindOptions;Member[include]",
-            "sequelize;IncludeOptions;sequelize;FindOptions;Member[include].ArrayElement",
-            "sequelize;IncludeOptions;sequelize;HasManyGetAssociationsMixinOptions;Member[include]",
-            "sequelize;IncludeOptions;sequelize;IncludeOptions;Member[include]",
-            "sequelize;IncludeOptions;sequelize;IncludeOptions;Member[include].ArrayElement",
-            "sequelize;Instance;sequelize;Instance;Member[decrement,increment,reload,save,update,updateAttributes].ReturnValue.Awaited",
-            "sequelize;Instance;sequelize;Instance;Member[equalsOneOf].Argument[0].ArrayElement",
-            "sequelize;Instance;sequelize;Instance;Member[equals].Argument[0]",
-            "sequelize;Instance;sequelize;Instance;Member[set,setAttributes].ReturnValue",
-            "sequelize;Instance;sequelize;Model;Member[Instance,build].ReturnValue",
-            "sequelize;Instance;sequelize;Model;Member[all,bulkCreate,findAll].ReturnValue.Awaited.ArrayElement",
-            "sequelize;Instance;sequelize;Model;Member[bulkBuild].ReturnValue.ArrayElement",
-            "sequelize;Instance;sequelize;Model;Member[create,find,findById,findByPk,findByPrimary,findOne].ReturnValue.Awaited",
-            "sequelize;Instance;sequelize;Model;Member[findAndCount,findAndCountAll].ReturnValue.Awaited.Member[rows].ArrayElement",
-            "sequelize;Instance;sequelize;QueryInterface;Member[delete,increment,insert,update].Argument[0]",
-            "sequelize;Instance;sequelize;QueryOptions;Member[instance]",
-            "sequelize;Instance;sequelize;SequelizeStaticAndInstance;Member[Instance]",
-            "sequelize;Model;sequelize;AssociationOptionsBelongsToMany;Member[through]",
-            "sequelize;Model;sequelize;Associations;Member[belongsTo,belongsToMany,hasMany,hasOne].Argument[0]",
-            "sequelize;Model;sequelize;BuildOptions;Member[include].ArrayElement",
-            "sequelize;Model;sequelize;CountOptions;Member[include]",
-            "sequelize;Model;sequelize;CountOptions;Member[include].ArrayElement",
-            "sequelize;Model;sequelize;DefineAttributeColumnReferencesOptions;Member[model]",
-            "sequelize;Model;sequelize;FindOptions;Member[include]",
-            "sequelize;Model;sequelize;FindOptions;Member[include].ArrayElement",
-            "sequelize;Model;sequelize;FindOptions;Member[lock].Member[of]",
-            "sequelize;Model;sequelize;FindOptionsOrderArray;ArrayElement",
-            "sequelize;Model;sequelize;FindOptionsOrderArray;ArrayElement.Member[model]",
-            "sequelize;Model;sequelize;Hooks;Member[afterDefine].Argument[1].Argument[0]",
-            "sequelize;Model;sequelize;Hooks;Member[afterDefine].WithArity[1].Argument[0].Argument[0]",
-            "sequelize;Model;sequelize;IncludeAssociation;Member[source,target]",
-            "sequelize;Model;sequelize;IncludeOptions;Member[include,model]",
-            "sequelize;Model;sequelize;IncludeOptions;Member[include].ArrayElement",
-            "sequelize;Model;sequelize;Instance;Member[Model]",
-            "sequelize;Model;sequelize;Model;Member[schema,scope,unscoped].ReturnValue",
-            "sequelize;Model;sequelize;Model;Member[sync].ReturnValue.Awaited",
-            "sequelize;Model;sequelize;Models;AnyMember",
-            "sequelize;Model;sequelize;ModelsHashInterface;AnyMember",
-            "sequelize;Model;sequelize;QueryInterface;Member[bulkDelete,rawSelect,upsert].Argument[3]",
-            "sequelize;Model;sequelize;QueryInterface;Member[select].Argument[0]",
-            "sequelize;Model;sequelize;QueryOptions;Member[model]",
-            "sequelize;Model;sequelize;Sequelize;Member[define,import,model].ReturnValue",
-            "sequelize;Model;sequelize;Sequelize;Member[import].Argument[1].ReturnValue",
-            "sequelize;Model;sequelize;SequelizeStaticAndInstance;Member[Model]",
-            "sequelize;Model;sequelize;ThroughOptions;Member[model]",
-            "sequelize;Model;sequelize;Utils;Member[mapOptionFieldNames].Argument[1]",
-            "sequelize;Model;sequelize;Utils;Member[mapValueFieldNames].Argument[2]",
-            "sequelize;Models;sequelize;Model;Member[associate].Argument[0]",
-            "sequelize;ModelsHashInterface;sequelize;Sequelize;Member[models]",
-            "sequelize;Options;sequelize-typescript;SequelizeOptions;",
-            "sequelize;Options;sequelize;Sequelize;Member[options]",
-            "sequelize;Options;sequelize;SequelizeStatic;Argument[3]",
-            "sequelize;Options;sequelize;SequelizeStatic;WithArity[1].Argument[0,1]",
-            "sequelize;Options;sequelize;SequelizeStatic;WithArity[2].Argument[1,2]",
-            "sequelize;Options;sequelize;SequelizeStatic;WithArity[3].Argument[2]",
-            "sequelize;QueryInterface;sequelize;Sequelize;Member[getQueryInterface].ReturnValue",
-            "sequelize;QueryOptions;sequelize;Options;Member[query]",
-            "sequelize;QueryOptions;sequelize;QueryInterface;Member[bulkDelete,bulkInsert,createTable,select,setAutocommit,setIsolationLevel].Argument[2]",
-            "sequelize;QueryOptions;sequelize;QueryInterface;Member[bulkUpdate,delete,insert].Argument[3]",
-            "sequelize;QueryOptions;sequelize;QueryInterface;Member[commitTransaction,deferConstraints,dropTable,rawSelect,rollbackTransaction,showIndex,startTransaction].Argument[1]",
-            "sequelize;QueryOptions;sequelize;QueryInterface;Member[createFunction].Argument[5]",
-            "sequelize;QueryOptions;sequelize;QueryInterface;Member[dropAllEnums,dropAllTables,showAllSchemas,showAllTables].Argument[0]",
-            "sequelize;QueryOptions;sequelize;QueryInterface;Member[increment,update,upsert].Argument[4]",
-            "sequelize;QueryOptions;sequelize;Sequelize;Member[authenticate,validate].Argument[0]",
-            "sequelize;QueryOptions;sequelize;Sequelize;Member[query].Argument[1]",
-            "sequelize;Sequelize;sequelize;Hooks;Member[afterInit].Argument[1].Argument[0]",
-            "sequelize;Sequelize;sequelize;Hooks;Member[afterInit].WithArity[1].Argument[0].Argument[0]",
-            "sequelize;Sequelize;sequelize;Instance;Member[sequelize]",
-            "sequelize;Sequelize;sequelize;QueryInterface;Member[sequelize]",
-            "sequelize;Sequelize;sequelize;Sequelize;Member[import].Argument[1].Argument[0]",
-            "sequelize;Sequelize;sequelize;SequelizeStatic;Instance",
-            "sequelize;Sequelize;sequelize;SequelizeStatic;Member[useCLS].ReturnValue",
-            "sequelize;SequelizeStatic;sequelize-typescript;Sequelize;",
-            "sequelize;SequelizeStatic;sequelize;;",
-            "sequelize;SequelizeStatic;sequelize;Sequelize;Member[Sequelize]",
-            "sequelize;SequelizeStatic;sequelize;SequelizeStatic;Member[Sequelize,default]",
-            "sequelize;SequelizeStaticAndInstance.Model;sequelize-typescript;Model;",
-            "sequelize;SequelizeStaticAndInstance;sequelize;Sequelize;",
-            "sequelize;SequelizeStaticAndInstance;sequelize;SequelizeStatic;",
-            "sequelize;ThroughOptions;sequelize;AssociationOptionsBelongsToMany;Member[through]",
-            "sequelize;Utils;sequelize;SequelizeStaticAndInstance;Member[Utils]"
+            "sequelize-typescript.AssociationCountOptions;sequelize-typescript.Model;Member[$count].Argument[1]",
+            "sequelize-typescript.AssociationCountOptions;sequelize-typescript/model/model/association/association-count-options.AssociationCountOptions;",
+            "sequelize-typescript.AssociationGetOptions;sequelize-typescript.Model;Member[$get].Argument[1]",
+            "sequelize-typescript.AssociationGetOptions;sequelize-typescript.Model;Member[$has].Argument[2]",
+            "sequelize-typescript.AssociationGetOptions;sequelize-typescript/model/model/association/association-get-options.AssociationGetOptions;",
+            "sequelize-typescript.BaseAssociation;sequelize-typescript.BaseAssociationStatic;Instance",
+            "sequelize-typescript.BaseAssociation;sequelize-typescript.BelongsToAssociation;",
+            "sequelize-typescript.BaseAssociation;sequelize-typescript.BelongsToManyAssociation;",
+            "sequelize-typescript.BaseAssociation;sequelize-typescript.HasAssociation;",
+            "sequelize-typescript.BaseAssociation;sequelize-typescript/associations/shared/association-service;Member[addAssociation].Argument[1]",
+            "sequelize-typescript.BaseAssociation;sequelize-typescript/associations/shared/association-service;Member[getAssociations,getAssociationsByRelation].ReturnValue.ArrayElement",
+            "sequelize-typescript.BaseAssociation;sequelize-typescript/associations/shared/association-service;Member[setAssociations].Argument[1].ArrayElement",
+            "sequelize-typescript.BaseAssociation;sequelize-typescript/associations/shared/base-association.BaseAssociation;",
+            "sequelize-typescript.BaseAssociation;sequelize-typescript;Member[addAssociation].Argument[1]",
+            "sequelize-typescript.BaseAssociation;sequelize-typescript;Member[getAssociations,getAssociationsByRelation].ReturnValue.ArrayElement",
+            "sequelize-typescript.BaseAssociation;sequelize-typescript;Member[setAssociations].Argument[1].ArrayElement",
+            "sequelize-typescript.BaseAssociationStatic;sequelize-typescript/associations/shared/base-association.BaseAssociationStatic;",
+            "sequelize-typescript.BaseAssociationStatic;sequelize-typescript/associations/shared/base-association;Member[BaseAssociation]",
+            "sequelize-typescript.BaseAssociationStatic;sequelize-typescript;Member[BaseAssociation]",
+            "sequelize-typescript.BelongsToAssociation;sequelize-typescript.BelongsToAssociationStatic;Instance",
+            "sequelize-typescript.BelongsToAssociation;sequelize-typescript/associations/belongs-to/belongs-to-association.BelongsToAssociation;",
+            "sequelize-typescript.BelongsToAssociationStatic;sequelize-typescript/associations/belongs-to/belongs-to-association.BelongsToAssociationStatic;",
+            "sequelize-typescript.BelongsToAssociationStatic;sequelize-typescript/associations/belongs-to/belongs-to-association;Member[BelongsToAssociation]",
+            "sequelize-typescript.BelongsToAssociationStatic;sequelize-typescript;Member[BelongsToAssociation]",
+            "sequelize-typescript.BelongsToManyAssociation;sequelize-typescript.BelongsToManyAssociationStatic;Instance",
+            "sequelize-typescript.BelongsToManyAssociation;sequelize-typescript/associations/belongs-to-many/belongs-to-many-association.BelongsToManyAssociation;",
+            "sequelize-typescript.BelongsToManyAssociationStatic;sequelize-typescript/associations/belongs-to-many/belongs-to-many-association.BelongsToManyAssociationStatic;",
+            "sequelize-typescript.BelongsToManyAssociationStatic;sequelize-typescript/associations/belongs-to-many/belongs-to-many-association;Member[BelongsToManyAssociation]",
+            "sequelize-typescript.BelongsToManyAssociationStatic;sequelize-typescript;Member[BelongsToManyAssociation]",
+            "sequelize-typescript.DefaultScopeGetter;sequelize-typescript.ScopeOptionsGetters;Member[getDefaultScope]",
+            "sequelize-typescript.DefaultScopeGetter;sequelize-typescript/scopes/default-scope;Member[DefaultScope].Argument[0]",
+            "sequelize-typescript.DefaultScopeGetter;sequelize-typescript/scopes/scope-options.DefaultScopeGetter;",
+            "sequelize-typescript.DefaultScopeGetter;sequelize-typescript;Member[DefaultScope].Argument[0]",
+            "sequelize-typescript.HasAssociation;sequelize-typescript.HasAssociationStatic;Instance",
+            "sequelize-typescript.HasAssociation;sequelize-typescript/associations/has/has-association.HasAssociation;",
+            "sequelize-typescript.HasAssociationStatic;sequelize-typescript/associations/has/has-association.HasAssociationStatic;",
+            "sequelize-typescript.HasAssociationStatic;sequelize-typescript/associations/has/has-association;Member[HasAssociation]",
+            "sequelize-typescript.HasAssociationStatic;sequelize-typescript;Member[HasAssociation]",
+            "sequelize-typescript.Model;sequelize-typescript.Model;Member[$add,$has,$remove,$set].Argument[1]",
+            "sequelize-typescript.Model;sequelize-typescript.Model;Member[$add,$has,$remove,$set].Argument[1].ArrayElement",
+            "sequelize-typescript.Model;sequelize-typescript.Model;Member[$create,reload].ReturnValue.Awaited",
+            "sequelize-typescript.Model;sequelize-typescript.ModelStatic~;Instance",
+            "sequelize-typescript.Model;sequelize-typescript.ModelStatic~;Member[initialize].ReturnValue.TypeVar[sequelize-typescript.ModelStatic.0]",
+            "sequelize-typescript.Model;sequelize-typescript.ModelType;Instance",
+            "sequelize-typescript.Model;sequelize-typescript.Sequelize;Member[getRepository].Argument[0].Instance",
+            "sequelize-typescript.Model;sequelize-typescript.Sequelize;Member[getRepository].ReturnValue.TypeVar[sequelize-typescript.Repository.0]",
+            "sequelize-typescript.Model;sequelize-typescript/model/model/model.Model;",
+            "sequelize-typescript.ModelClassGetter;sequelize-typescript.BaseAssociationStatic;Argument[0]",
+            "sequelize-typescript.ModelClassGetter;sequelize-typescript.BelongsToAssociationStatic;Argument[0]",
+            "sequelize-typescript.ModelClassGetter;sequelize-typescript.BelongsToManyAssociationStatic;Argument[0]",
+            "sequelize-typescript.ModelClassGetter;sequelize-typescript.HasAssociationStatic;Argument[0]",
+            "sequelize-typescript.ModelClassGetter;sequelize-typescript/associations/belongs-to-many/belongs-to-many;Member[BelongsToMany].Argument[0,1]",
+            "sequelize-typescript.ModelClassGetter;sequelize-typescript/associations/belongs-to/belongs-to;Member[BelongsTo].Argument[0]",
+            "sequelize-typescript.ModelClassGetter;sequelize-typescript/associations/foreign-key/foreign-key-meta.ForeignKeyMeta;Member[relatedClassGetter]",
+            "sequelize-typescript.ModelClassGetter;sequelize-typescript/associations/foreign-key/foreign-key-service;Member[addForeignKey].Argument[1]",
+            "sequelize-typescript.ModelClassGetter;sequelize-typescript/associations/foreign-key/foreign-key;Member[ForeignKey].Argument[0]",
+            "sequelize-typescript.ModelClassGetter;sequelize-typescript/associations/has/has-many;Member[HasMany].Argument[0]",
+            "sequelize-typescript.ModelClassGetter;sequelize-typescript/associations/has/has-one;Member[HasOne].Argument[0]",
+            "sequelize-typescript.ModelClassGetter;sequelize-typescript/model/shared/model-class-getter.ModelClassGetter;",
+            "sequelize-typescript.ModelClassGetter;sequelize-typescript;Member[BelongsTo,ForeignKey,HasMany,HasOne].Argument[0]",
+            "sequelize-typescript.ModelClassGetter;sequelize-typescript;Member[BelongsToMany].Argument[0,1]",
+            "sequelize-typescript.ModelStatic~;sequelize-typescript/model/model/model.ModelStatic~;",
+            "sequelize-typescript.ModelStatic~;sequelize-typescript/model/model/model;Member[Model]",
+            "sequelize-typescript.ModelStatic~;sequelize-typescript/model/shared/model-not-initialized-error.ModelNotInitializedErrorStatic;Argument[0]",
+            "sequelize-typescript.ModelStatic~;sequelize-typescript;Member[Model]",
+            "sequelize-typescript.ModelType;sequelize-typescript.BaseAssociation;Member[getAssociatedClass].ReturnValue",
+            "sequelize-typescript.ModelType;sequelize-typescript.BaseAssociation;Member[getSequelizeOptions].Argument[0]",
+            "sequelize-typescript.ModelType;sequelize-typescript.BelongsToAssociation;Member[getSequelizeOptions].Argument[0]",
+            "sequelize-typescript.ModelType;sequelize-typescript.BelongsToManyAssociation;Member[getSequelizeOptions].Argument[0]",
+            "sequelize-typescript.ModelType;sequelize-typescript.HasAssociation;Member[getSequelizeOptions].Argument[0]",
+            "sequelize-typescript.ModelType;sequelize-typescript.ModelClassGetter;ReturnValue",
+            "sequelize-typescript.ModelType;sequelize-typescript.Sequelize;Member[model].Argument[0]",
+            "sequelize-typescript.ModelType;sequelize-typescript/associations/foreign-key/foreign-key-service;Member[getForeignKeyOptions].Argument[0,1]",
+            "sequelize-typescript.ModelType;sequelize-typescript/model/model/model.ModelType;",
+            "sequelize-typescript.ScopeOptionsGetters;sequelize-typescript/scopes/scope-options.ScopeOptionsGetters;",
+            "sequelize-typescript.ScopeOptionsGetters;sequelize-typescript/scopes/scope-service;Member[addScopeOptionsGetter,setScopeOptionsGetters].Argument[1]",
+            "sequelize-typescript.ScopeOptionsGetters;sequelize-typescript/scopes/scope-service;Member[getScopeOptionsGetters].ReturnValue",
+            "sequelize-typescript.ScopeOptionsGetters;sequelize-typescript;Member[addScopeOptionsGetter,setScopeOptionsGetters].Argument[1]",
+            "sequelize-typescript.ScopeOptionsGetters;sequelize-typescript;Member[getScopeOptionsGetters].ReturnValue",
+            "sequelize-typescript.ScopesOptions;sequelize-typescript.ScopesOptionsGetter;ReturnValue.AnyMember",
+            "sequelize-typescript.ScopesOptions;sequelize-typescript/scopes/scope-options.ScopesOptions;",
+            "sequelize-typescript.ScopesOptions;sequelize-typescript/scopes/scope-service;Member[resolveScope].Argument[2]",
+            "sequelize-typescript.ScopesOptions;sequelize-typescript;Member[resolveScope].Argument[2]",
+            "sequelize-typescript.ScopesOptionsGetter;sequelize-typescript.ScopeOptionsGetters;Member[getScopes]",
+            "sequelize-typescript.ScopesOptionsGetter;sequelize-typescript/scopes/scope-options.ScopesOptionsGetter;",
+            "sequelize-typescript.ScopesOptionsGetter;sequelize-typescript/scopes/scopes;Member[Scopes].Argument[0]",
+            "sequelize-typescript.ScopesOptionsGetter;sequelize-typescript;Member[Scopes].Argument[0]",
+            "sequelize-typescript.Sequelize;sequelize-typescript.BaseAssociation;Member[getSequelizeOptions].Argument[1]",
+            "sequelize-typescript.Sequelize;sequelize-typescript.BelongsToManyAssociation;Member[getSequelizeOptions].Argument[1]",
+            "sequelize-typescript.Sequelize;sequelize-typescript.SequelizeStatic;Instance",
+            "sequelize-typescript.Sequelize;sequelize-typescript/sequelize/sequelize/sequelize.Sequelize;",
+            "sequelize-typescript.SequelizeOptions;sequelize-typescript.Sequelize;Member[options]",
+            "sequelize-typescript.SequelizeOptions;sequelize-typescript.SequelizeStatic;Argument[3]",
+            "sequelize-typescript.SequelizeOptions;sequelize-typescript.SequelizeStatic;WithArity[0].Argument[0]",
+            "sequelize-typescript.SequelizeOptions;sequelize-typescript.SequelizeStatic;WithArity[1].Argument[0,1]",
+            "sequelize-typescript.SequelizeOptions;sequelize-typescript.SequelizeStatic;WithArity[2].Argument[1,2]",
+            "sequelize-typescript.SequelizeOptions;sequelize-typescript.SequelizeStatic;WithArity[3].Argument[2]",
+            "sequelize-typescript.SequelizeOptions;sequelize-typescript/sequelize/sequelize/sequelize-options.SequelizeOptions;",
+            "sequelize-typescript.SequelizeOptions;sequelize-typescript/sequelize/sequelize/sequelize-service;Member[prepareArgs].ReturnValue.Member[options]",
+            "sequelize-typescript.SequelizeOptions;sequelize-typescript/sequelize/sequelize/sequelize-service;Member[prepareOptions].Argument[0]",
+            "sequelize-typescript.SequelizeOptions;sequelize-typescript/sequelize/sequelize/sequelize-service;Member[prepareOptions].ReturnValue",
+            "sequelize-typescript.SequelizeOptions;sequelize-typescript;Member[prepareArgs].ReturnValue.Member[options]",
+            "sequelize-typescript.SequelizeOptions;sequelize-typescript;Member[prepareOptions].Argument[0]",
+            "sequelize-typescript.SequelizeOptions;sequelize-typescript;Member[prepareOptions].ReturnValue",
+            "sequelize-typescript.SequelizeStatic;sequelize-typescript/sequelize/sequelize/sequelize.SequelizeStatic;",
+            "sequelize-typescript.SequelizeStatic;sequelize-typescript/sequelize/sequelize/sequelize;Member[Sequelize]",
+            "sequelize-typescript.SequelizeStatic;sequelize-typescript;Member[Sequelize]",
+            "sequelize-typescript/associations/foreign-key/foreign-key-meta.ForeignKeyMeta;sequelize-typescript/associations/foreign-key/foreign-key-service;Member[getForeignKeys].ReturnValue.ArrayElement",
+            "sequelize-typescript/model/model/association/association-create-options.AssociationCreateOptions;sequelize-typescript.Model;Member[$create].Argument[2]",
+            "sequelize-typescript/model/shared/model-not-initialized-error.ModelNotInitializedErrorStatic;sequelize-typescript/model/shared/model-not-initialized-error;Member[ModelNotInitializedError]",
+            "sequelize.AnyFindOptions;sequelize.BelongsToManyAddAssociationMixin;Argument[1]",
+            "sequelize.AnyFindOptions;sequelize.BelongsToManyAddAssociationsMixin;Argument[1]",
+            "sequelize.AnyFindOptions;sequelize.BelongsToManySetAssociationsMixin;Argument[1]",
+            "sequelize.AnyFindOptions;sequelize.DefineOptions;Member[defaultScope]",
+            "sequelize.AnyFindOptions;sequelize.DefineScopeOptions;AnyMember",
+            "sequelize.AnyFindOptions;sequelize.HasManySetAssociationsMixin;Argument[1]",
+            "sequelize.AnyFindOptions;sequelize.Instance;Member[reload].Argument[0]",
+            "sequelize.AnyFindOptions;sequelize.Model;Member[addScope].Argument[1]",
+            "sequelize.AssociationOptionsBelongsToMany;sequelize.Associations;Member[belongsToMany].Argument[1]",
+            "sequelize.Associations;sequelize.Model;",
+            "sequelize.Associations;sequelize.SequelizeStaticAndInstance.Model;",
+            "sequelize.BuildOptions;sequelize-typescript.ModelStatic~;Argument[1]",
+            "sequelize.BuildOptions;sequelize.CreateOptions;",
+            "sequelize.BuildOptions;sequelize.Model;Member[build,bulkBuild].Argument[1]",
+            "sequelize.CountOptions;sequelize.Model;Member[count].Argument[0]",
+            "sequelize.CreateOptions;sequelize-typescript/model/model/association/association-create-options.AssociationCreateOptions;",
+            "sequelize.CreateOptions;sequelize.BelongsToCreateAssociationMixin;Argument[1]",
+            "sequelize.CreateOptions;sequelize.BelongsToManyCreateAssociationMixin;Argument[1]",
+            "sequelize.CreateOptions;sequelize.HasManyCreateAssociationMixin;Argument[1]",
+            "sequelize.CreateOptions;sequelize.HasOneCreateAssociationMixin;Argument[1]",
+            "sequelize.CreateOptions;sequelize.Model;Member[create].Argument[1]",
+            "sequelize.DefineAttributeColumnOptions;sequelize.DefineAttributes;AnyMember",
+            "sequelize.DefineAttributeColumnOptions;sequelize.QueryInterface;Member[addColumn,changeColumn].Argument[2]",
+            "sequelize.DefineAttributeColumnReferencesOptions;sequelize.DefineAttributeColumnOptions;Member[references]",
+            "sequelize.DefineAttributes;sequelize.Hooks;Member[beforeDefine].Argument[1].Argument[0]",
+            "sequelize.DefineAttributes;sequelize.Hooks;Member[beforeDefine].WithArity[1].Argument[0].Argument[0]",
+            "sequelize.DefineAttributes;sequelize.QueryInterface;Member[createTable].Argument[1]",
+            "sequelize.DefineOptions;sequelize.Options;Member[define]",
+            "sequelize.DefineOptions;sequelize.Sequelize;Member[define].Argument[2]",
+            "sequelize.DefineScopeOptions;sequelize.DefineOptions;Member[scopes]",
+            "sequelize.FindCreateFindOptions;sequelize.Model;Member[findCreateFind].Argument[0]",
+            "sequelize.FindOptions;sequelize-typescript.AssociationCountOptions;",
+            "sequelize.FindOptions;sequelize-typescript.AssociationGetOptions;",
+            "sequelize.FindOptions;sequelize-typescript.DefaultScopeGetter;ReturnValue",
+            "sequelize.FindOptions;sequelize-typescript.Model;Member[reload].Argument[0]",
+            "sequelize.FindOptions;sequelize-typescript.ScopesOptions;",
+            "sequelize.FindOptions;sequelize-typescript.ScopesOptions;ReturnValue",
+            "sequelize.FindOptions;sequelize.AnyFindOptions;",
+            "sequelize.FindOptions;sequelize.FindCreateFindOptions;",
+            "sequelize.FindOptions;sequelize.FindOrInitializeOptions;",
+            "sequelize.FindOptions;sequelize.Model;Member[all,find,findAll,findAndCount,findAndCountAll,findOne].Argument[0]",
+            "sequelize.FindOptionsOrderArray;sequelize.FindOptions;Member[order]",
+            "sequelize.FindOptionsOrderArray;sequelize.FindOptions;Member[order].ArrayElement",
+            "sequelize.FindOrInitializeOptions;sequelize.Model;Member[findOrBuild,findOrCreate,findOrInitialize].Argument[0]",
+            "sequelize.HasManyGetAssociationsMixinOptions;sequelize.HasManyGetAssociationsMixin;Argument[0]",
+            "sequelize.HasManyGetAssociationsMixinOptions;sequelize.HasManyHasAssociationMixin;Argument[1]",
+            "sequelize.HasManyGetAssociationsMixinOptions;sequelize.HasManyHasAssociationsMixin;Argument[1]",
+            "sequelize.Hooks;sequelize.Hooks;Member[addHook,hook,removeHook].ReturnValue",
+            "sequelize.Hooks;sequelize.Model;",
+            "sequelize.Hooks;sequelize.Sequelize;",
+            "sequelize.Hooks;sequelize.SequelizeStaticAndInstance.Model;",
+            "sequelize.IncludeAssociation;sequelize.Associations;Member[belongsTo,belongsToMany,hasMany,hasOne].ReturnValue",
+            "sequelize.IncludeAssociation;sequelize.IncludeOptions;Member[association]",
+            "sequelize.IncludeOptions;sequelize.BuildOptions;Member[include].ArrayElement",
+            "sequelize.IncludeOptions;sequelize.CountOptions;Member[include]",
+            "sequelize.IncludeOptions;sequelize.CountOptions;Member[include].ArrayElement",
+            "sequelize.IncludeOptions;sequelize.FindOptions;Member[include]",
+            "sequelize.IncludeOptions;sequelize.FindOptions;Member[include].ArrayElement",
+            "sequelize.IncludeOptions;sequelize.HasManyGetAssociationsMixinOptions;Member[include]",
+            "sequelize.IncludeOptions;sequelize.IncludeOptions;Member[include]",
+            "sequelize.IncludeOptions;sequelize.IncludeOptions;Member[include].ArrayElement",
+            "sequelize.Instance;sequelize.Instance;Member[decrement,increment,reload,save,update,updateAttributes].ReturnValue.Awaited",
+            "sequelize.Instance;sequelize.Instance;Member[equalsOneOf].Argument[0].ArrayElement",
+            "sequelize.Instance;sequelize.Instance;Member[equals].Argument[0]",
+            "sequelize.Instance;sequelize.Instance;Member[set,setAttributes].ReturnValue",
+            "sequelize.Instance;sequelize.Model;Member[Instance,build].ReturnValue",
+            "sequelize.Instance;sequelize.Model;Member[all,bulkCreate,findAll].ReturnValue.Awaited.ArrayElement",
+            "sequelize.Instance;sequelize.Model;Member[bulkBuild].ReturnValue.ArrayElement",
+            "sequelize.Instance;sequelize.Model;Member[create,find,findById,findByPk,findByPrimary,findOne].ReturnValue.Awaited",
+            "sequelize.Instance;sequelize.Model;Member[findAndCount,findAndCountAll].ReturnValue.Awaited.Member[rows].ArrayElement",
+            "sequelize.Instance;sequelize.QueryInterface;Member[delete,increment,insert,update].Argument[0]",
+            "sequelize.Instance;sequelize.QueryOptions;Member[instance]",
+            "sequelize.Instance;sequelize.SequelizeStaticAndInstance;Member[Instance]",
+            "sequelize.Model;sequelize.AssociationOptionsBelongsToMany;Member[through]",
+            "sequelize.Model;sequelize.Associations;Member[belongsTo,belongsToMany,hasMany,hasOne].Argument[0]",
+            "sequelize.Model;sequelize.BuildOptions;Member[include].ArrayElement",
+            "sequelize.Model;sequelize.CountOptions;Member[include]",
+            "sequelize.Model;sequelize.CountOptions;Member[include].ArrayElement",
+            "sequelize.Model;sequelize.DefineAttributeColumnReferencesOptions;Member[model]",
+            "sequelize.Model;sequelize.FindOptions;Member[include]",
+            "sequelize.Model;sequelize.FindOptions;Member[include].ArrayElement",
+            "sequelize.Model;sequelize.FindOptions;Member[lock].Member[of]",
+            "sequelize.Model;sequelize.FindOptionsOrderArray;ArrayElement",
+            "sequelize.Model;sequelize.FindOptionsOrderArray;ArrayElement.Member[model]",
+            "sequelize.Model;sequelize.Hooks;Member[afterDefine].Argument[1].Argument[0]",
+            "sequelize.Model;sequelize.Hooks;Member[afterDefine].WithArity[1].Argument[0].Argument[0]",
+            "sequelize.Model;sequelize.IncludeAssociation;Member[source,target]",
+            "sequelize.Model;sequelize.IncludeOptions;Member[include,model]",
+            "sequelize.Model;sequelize.IncludeOptions;Member[include].ArrayElement",
+            "sequelize.Model;sequelize.Instance;Member[Model]",
+            "sequelize.Model;sequelize.Model;Member[schema,scope,unscoped].ReturnValue",
+            "sequelize.Model;sequelize.Model;Member[sync].ReturnValue.Awaited",
+            "sequelize.Model;sequelize.Models;AnyMember",
+            "sequelize.Model;sequelize.ModelsHashInterface;AnyMember",
+            "sequelize.Model;sequelize.QueryInterface;Member[bulkDelete,rawSelect,upsert].Argument[3]",
+            "sequelize.Model;sequelize.QueryInterface;Member[select].Argument[0]",
+            "sequelize.Model;sequelize.QueryOptions;Member[model]",
+            "sequelize.Model;sequelize.Sequelize;Member[define,import,model].ReturnValue",
+            "sequelize.Model;sequelize.Sequelize;Member[import].Argument[1].ReturnValue",
+            "sequelize.Model;sequelize.SequelizeStaticAndInstance;Member[Model]",
+            "sequelize.Model;sequelize.ThroughOptions;Member[model]",
+            "sequelize.Model;sequelize.Utils;Member[mapOptionFieldNames].Argument[1]",
+            "sequelize.Model;sequelize.Utils;Member[mapValueFieldNames].Argument[2]",
+            "sequelize.Models;sequelize.Model;Member[associate].Argument[0]",
+            "sequelize.ModelsHashInterface;sequelize.Sequelize;Member[models]",
+            "sequelize.Options;sequelize-typescript.SequelizeOptions;",
+            "sequelize.Options;sequelize.Sequelize;Member[options]",
+            "sequelize.Options;sequelize.SequelizeStatic;Argument[3]",
+            "sequelize.Options;sequelize.SequelizeStatic;WithArity[1].Argument[0,1]",
+            "sequelize.Options;sequelize.SequelizeStatic;WithArity[2].Argument[1,2]",
+            "sequelize.Options;sequelize.SequelizeStatic;WithArity[3].Argument[2]",
+            "sequelize.QueryInterface;sequelize.Sequelize;Member[getQueryInterface].ReturnValue",
+            "sequelize.QueryOptions;sequelize.Options;Member[query]",
+            "sequelize.QueryOptions;sequelize.QueryInterface;Member[bulkDelete,bulkInsert,createTable,select,setAutocommit,setIsolationLevel].Argument[2]",
+            "sequelize.QueryOptions;sequelize.QueryInterface;Member[bulkUpdate,delete,insert].Argument[3]",
+            "sequelize.QueryOptions;sequelize.QueryInterface;Member[commitTransaction,deferConstraints,dropTable,rawSelect,rollbackTransaction,showIndex,startTransaction].Argument[1]",
+            "sequelize.QueryOptions;sequelize.QueryInterface;Member[createFunction].Argument[5]",
+            "sequelize.QueryOptions;sequelize.QueryInterface;Member[dropAllEnums,dropAllTables,showAllSchemas,showAllTables].Argument[0]",
+            "sequelize.QueryOptions;sequelize.QueryInterface;Member[increment,update,upsert].Argument[4]",
+            "sequelize.QueryOptions;sequelize.Sequelize;Member[authenticate,validate].Argument[0]",
+            "sequelize.QueryOptions;sequelize.Sequelize;Member[query].Argument[1]",
+            "sequelize.Sequelize;sequelize.Hooks;Member[afterInit].Argument[1].Argument[0]",
+            "sequelize.Sequelize;sequelize.Hooks;Member[afterInit].WithArity[1].Argument[0].Argument[0]",
+            "sequelize.Sequelize;sequelize.Instance;Member[sequelize]",
+            "sequelize.Sequelize;sequelize.QueryInterface;Member[sequelize]",
+            "sequelize.Sequelize;sequelize.Sequelize;Member[import].Argument[1].Argument[0]",
+            "sequelize.Sequelize;sequelize.SequelizeStatic;Instance",
+            "sequelize.Sequelize;sequelize.SequelizeStatic;Member[useCLS].ReturnValue",
+            "sequelize.SequelizeStatic;sequelize-typescript.Sequelize;",
+            "sequelize.SequelizeStatic;sequelize.Sequelize;Member[Sequelize]",
+            "sequelize.SequelizeStatic;sequelize.SequelizeStatic;Member[Sequelize,default]",
+            "sequelize.SequelizeStatic;sequelize;",
+            "sequelize.SequelizeStaticAndInstance.Model;sequelize-typescript.Model;",
+            "sequelize.SequelizeStaticAndInstance;sequelize.Sequelize;",
+            "sequelize.SequelizeStaticAndInstance;sequelize.SequelizeStatic;",
+            "sequelize.ThroughOptions;sequelize.AssociationOptionsBelongsToMany;Member[through]",
+            "sequelize.Utils;sequelize.SequelizeStaticAndInstance;Member[Utils]"
         ],
         "summaries": [
-            "sequelize-typescript;Model;;;Member[reload].ReturnValue.Awaited;type",
-            "sequelize;Instance;;;Member[decrement,increment,reload,save,update,updateAttributes].ReturnValue.Awaited;type",
-            "sequelize;Instance;;;Member[set,setAttributes].ReturnValue;type",
-            "sequelize;Model;;;Member[schema,scope,unscoped].ReturnValue;type",
-            "sequelize;Model;;;Member[sync].ReturnValue.Awaited;type"
+            "sequelize-typescript.Model;;;Member[reload].ReturnValue.Awaited;type",
+            "sequelize.Instance;;;Member[decrement,increment,reload,save,update,updateAttributes].ReturnValue.Awaited;type",
+            "sequelize.Instance;;;Member[set,setAttributes].ReturnValue;type",
+            "sequelize.Model;;;Member[schema,scope,unscoped].ReturnValue;type",
+            "sequelize.Model;;;Member[sync].ReturnValue.Awaited;type"
         ],
         "typeVariables": [
             "sequelize-typescript.ModelStatic.0;Instance",
diff --git a/javascript/ql/lib/semmle/javascript/frameworks/spanner/Model.qll b/javascript/ql/lib/semmle/javascript/frameworks/spanner/Model.qll
index f99266b6e54..630fa5ea8c9 100644
--- a/javascript/ql/lib/semmle/javascript/frameworks/spanner/Model.qll
+++ b/javascript/ql/lib/semmle/javascript/frameworks/spanner/Model.qll
@@ -6,180 +6,180 @@ private class Types extends ModelInput::TypeModelCsv {
   override predicate row(string row) {
     row =
       [
-        "@google-cloud/spanner/batch-transaction;BatchTransaction;@google-cloud/spanner/batch-transaction;BatchTransactionStatic;Instance", //
-        "@google-cloud/spanner/batch-transaction;BatchTransaction;@google-cloud/spanner/database;CreateBatchTransactionCallback;TypeVar[@google-cloud/spanner/common.ResourceCallback.0]", //
-        "@google-cloud/spanner/batch-transaction;BatchTransaction;@google-cloud/spanner;Database;Member[batchTransaction].ReturnValue", //
-        "@google-cloud/spanner/batch-transaction;BatchTransactionStatic;@google-cloud/spanner/batch-transaction;;Member[BatchTransaction]", //
-        "@google-cloud/spanner/batch-transaction;TransactionIdentifier;@google-cloud/spanner/batch-transaction;BatchTransaction;Member[identifier].ReturnValue", //
-        "@google-cloud/spanner/batch-transaction;TransactionIdentifier;@google-cloud/spanner;Database;Member[batchTransaction].Argument[0]", //
-        "@google-cloud/spanner/database;BatchCreateSessionsCallback;@google-cloud/spanner;Database;Member[batchCreateSessions].Argument[1]", //
-        "@google-cloud/spanner/database;CreateBatchTransactionCallback;@google-cloud/spanner;Database;Member[createBatchTransaction].Argument[1]", //
-        "@google-cloud/spanner/database;CreateBatchTransactionCallback;@google-cloud/spanner;Database;Member[createBatchTransaction].WithArity[1].Argument[0]", //
-        "@google-cloud/spanner/database;CreateSessionCallback;@google-cloud/spanner;Database;Member[createSession].Argument[1]", //
-        "@google-cloud/spanner/database;CreateSessionCallback;@google-cloud/spanner;Database;Member[createSession].WithArity[1].Argument[0]", //
-        "@google-cloud/spanner/database;DatabaseCallback;@google-cloud/spanner;Database;Member[get].Argument[1]", //
-        "@google-cloud/spanner/database;DatabaseCallback;@google-cloud/spanner;Database;Member[get].WithArity[1].Argument[0]", //
-        "@google-cloud/spanner/database;GetSessionsCallback;@google-cloud/spanner;Database;Member[getSessions].Argument[1]", //
-        "@google-cloud/spanner/database;GetSessionsCallback;@google-cloud/spanner;Database;Member[getSessions].WithArity[1].Argument[0]", //
-        "@google-cloud/spanner/database;GetSnapshotCallback;@google-cloud/spanner;Database;Member[getSnapshot].Argument[1]", //
-        "@google-cloud/spanner/database;GetSnapshotCallback;@google-cloud/spanner;Database;Member[getSnapshot].WithArity[1].Argument[0]", //
-        "@google-cloud/spanner/database;GetTransactionCallback;@google-cloud/spanner;Database;Member[getTransaction].Argument[0]", //
-        "@google-cloud/spanner/database;PoolRequestCallback;@google-cloud/spanner;Database;Member[makePooledRequest_].Argument[1]", //
-        "@google-cloud/spanner/database;RestoreDatabaseCallback;@google-cloud/spanner;Database;Member[restore].Argument[1,2]", //
-        "@google-cloud/spanner/database;SessionPoolConstructor;@google-cloud/spanner;DatabaseStatic;Argument[2]", //
-        "@google-cloud/spanner/database;SessionPoolConstructor;@google-cloud/spanner;Instance;Member[database].Argument[1]", //
-        "@google-cloud/spanner/instance;CreateDatabaseCallback;@google-cloud/spanner;Instance;Member[createDatabase].Argument[2]", //
-        "@google-cloud/spanner/instance;CreateDatabaseCallback;@google-cloud/spanner;Instance;Member[createDatabase].WithArity[2].Argument[1]", //
-        "@google-cloud/spanner/instance;CreateDatabaseOptions;@google-cloud/spanner;Instance;Member[createDatabase].WithArity[1,2,3].Argument[1]", //
-        "@google-cloud/spanner/instance;CreateInstanceCallback;@google-cloud/spanner;Spanner;Member[createInstance].Argument[2]", //
-        "@google-cloud/spanner/instance;GetDatabasesCallback;@google-cloud/spanner;Instance;Member[getDatabases].Argument[1]", //
-        "@google-cloud/spanner/instance;GetDatabasesCallback;@google-cloud/spanner;Instance;Member[getDatabases].WithArity[1].Argument[0]", //
-        "@google-cloud/spanner/instance;GetInstanceCallback;@google-cloud/spanner;Instance;Member[get].Argument[1]", //
-        "@google-cloud/spanner/instance;GetInstanceCallback;@google-cloud/spanner;Instance;Member[get].WithArity[1].Argument[0]", //
-        "@google-cloud/spanner/session-pool;GetReadSessionCallback;@google-cloud/spanner/session-pool;SessionPoolInterface;Member[getReadSession].Argument[0]", //
-        "@google-cloud/spanner/session-pool;GetReadSessionCallback;@google-cloud/spanner;SessionPool;Member[getReadSession].Argument[0]", //
-        "@google-cloud/spanner/session-pool;GetWriteSessionCallback;@google-cloud/spanner/session-pool;SessionPoolInterface;Member[getWriteSession].Argument[0]", //
-        "@google-cloud/spanner/session-pool;GetWriteSessionCallback;@google-cloud/spanner;SessionPool;Member[getWriteSession].Argument[0]", //
-        "@google-cloud/spanner/session-pool;SessionPoolInterface;@google-cloud/spanner/database;SessionPoolConstructor;Instance", //
-        "@google-cloud/spanner/session-pool;SessionPoolInterface;@google-cloud/spanner;Database;Member[pool_]", //
-        "@google-cloud/spanner/session-pool;SessionPoolInterface;@google-cloud/spanner;SessionPool;", //
-        "@google-cloud/spanner/table;CreateTableCallback;@google-cloud/spanner;Database;Member[createTable].Argument[2]", //
-        "@google-cloud/spanner/table;CreateTableCallback;@google-cloud/spanner;Database;Member[createTable].WithArity[2].Argument[1]", //
-        "@google-cloud/spanner/table;CreateTableCallback;@google-cloud/spanner;Table;Member[create].Argument[2]", //
-        "@google-cloud/spanner/table;CreateTableCallback;@google-cloud/spanner;Table;Member[create].WithArity[2].Argument[1]", //
-        "@google-cloud/spanner/transaction-runner;AsyncRunTransactionCallback;@google-cloud/spanner/transaction-runner;AsyncTransactionRunnerStatic;Argument[2]", //
-        "@google-cloud/spanner/transaction-runner;AsyncRunTransactionCallback;@google-cloud/spanner;Database;Member[runTransactionAsync].Argument[1]", //
-        "@google-cloud/spanner/transaction-runner;AsyncRunTransactionCallback;@google-cloud/spanner;Database;Member[runTransactionAsync].WithArity[1].Argument[0]", //
-        "@google-cloud/spanner/transaction-runner;AsyncTransactionRunner;@google-cloud/spanner/transaction-runner;AsyncTransactionRunnerStatic;Instance", //
-        "@google-cloud/spanner/transaction-runner;AsyncTransactionRunnerStatic;@google-cloud/spanner/transaction-runner;;Member[AsyncTransactionRunner]", //
-        "@google-cloud/spanner/transaction-runner;RunTransactionCallback;@google-cloud/spanner/transaction-runner;TransactionRunnerStatic;Argument[2]", //
-        "@google-cloud/spanner/transaction-runner;RunTransactionCallback;@google-cloud/spanner;Database;Member[runTransaction].Argument[1]", //
-        "@google-cloud/spanner/transaction-runner;RunTransactionCallback;@google-cloud/spanner;Database;Member[runTransaction].WithArity[1].Argument[0]", //
-        "@google-cloud/spanner/transaction-runner;Runner;@google-cloud/spanner/transaction-runner;AsyncTransactionRunner;", //
-        "@google-cloud/spanner/transaction-runner;Runner;@google-cloud/spanner/transaction-runner;RunnerStatic;Instance", //
-        "@google-cloud/spanner/transaction-runner;Runner;@google-cloud/spanner/transaction-runner;TransactionRunner;", //
-        "@google-cloud/spanner/transaction-runner;RunnerStatic;@google-cloud/spanner/transaction-runner;;Member[Runner]", //
-        "@google-cloud/spanner/transaction-runner;TransactionRunner;@google-cloud/spanner/transaction-runner;TransactionRunnerStatic;Instance", //
-        "@google-cloud/spanner/transaction-runner;TransactionRunnerStatic;@google-cloud/spanner/transaction-runner;;Member[TransactionRunner]", //
-        "@google-cloud/spanner/transaction;Dml;@google-cloud/spanner/transaction;DmlStatic;Instance", //
-        "@google-cloud/spanner/transaction;Dml;@google-cloud/spanner;PartitionedDml;", //
-        "@google-cloud/spanner/transaction;Dml;@google-cloud/spanner;Transaction;", //
-        "@google-cloud/spanner/transaction;DmlStatic;@google-cloud/spanner/transaction;;Member[Dml]", //
-        "@google-cloud/spanner;BackupStatic;@google-cloud/spanner/backup;;Member[Backup]", //
-        "@google-cloud/spanner;BackupStatic;@google-cloud/spanner/backup;BackupStatic;", //
-        "@google-cloud/spanner;BackupStatic;@google-cloud/spanner;;Member[Backup]", //
-        "@google-cloud/spanner;BatchTransaction;@google-cloud/spanner/batch-transaction;BatchTransaction;", //
-        "@google-cloud/spanner;Database;@google-cloud/spanner/database;Database;", //
-        "@google-cloud/spanner;Database;@google-cloud/spanner/database;DatabaseCallback;TypeVar[@google-cloud/spanner/common.ResourceCallback.0]", //
-        "@google-cloud/spanner;Database;@google-cloud/spanner/database;RestoreDatabaseCallback;TypeVar[@google-cloud/spanner/common.LongRunningCallback.0]", //
-        "@google-cloud/spanner;Database;@google-cloud/spanner/database;SessionPoolConstructor;Argument[0]", //
-        "@google-cloud/spanner;Database;@google-cloud/spanner/instance;CreateDatabaseCallback;TypeVar[@google-cloud/spanner/common.LongRunningCallback.0]", //
-        "@google-cloud/spanner;Database;@google-cloud/spanner/instance;GetDatabasesCallback;TypeVar[@google-cloud/spanner/common.RequestCallback.0]", //
-        "@google-cloud/spanner;Database;@google-cloud/spanner;DatabaseStatic;Instance", //
-        "@google-cloud/spanner;Database;@google-cloud/spanner;Instance;Member[database].ReturnValue", //
-        "@google-cloud/spanner;Database;@google-cloud/spanner;SessionPool;Member[database]", //
-        "@google-cloud/spanner;Database;@google-cloud/spanner;SessionPoolStatic;Argument[0]", //
-        "@google-cloud/spanner;Database;@google-cloud/spanner;SessionStatic;Argument[0]", //
-        "@google-cloud/spanner;Database;@google-cloud/spanner;Table;Member[database]", //
-        "@google-cloud/spanner;Database;@google-cloud/spanner;TableStatic;Argument[0]", //
-        "@google-cloud/spanner;DatabaseStatic;@google-cloud/spanner/database;;Member[Database]", //
-        "@google-cloud/spanner;DatabaseStatic;@google-cloud/spanner/database;DatabaseStatic;", //
-        "@google-cloud/spanner;DatabaseStatic;@google-cloud/spanner;;Member[Database]", //
-        "@google-cloud/spanner;GetInstancesCallback;@google-cloud/spanner/build/src;GetInstancesCallback;", //
-        "@google-cloud/spanner;GetInstancesCallback;@google-cloud/spanner;Spanner;Member[getInstances].Argument[1]", //
-        "@google-cloud/spanner;GetInstancesCallback;@google-cloud/spanner;Spanner;Member[getInstances].WithArity[1].Argument[0]", //
-        "@google-cloud/spanner;Instance;@google-cloud/spanner/instance;CreateInstanceCallback;TypeVar[@google-cloud/spanner/common.LongRunningCallback.0]", //
-        "@google-cloud/spanner;Instance;@google-cloud/spanner/instance;GetInstanceCallback;TypeVar[@google-cloud/spanner/common.ResourceCallback.0]", //
-        "@google-cloud/spanner;Instance;@google-cloud/spanner/instance;Instance;", //
-        "@google-cloud/spanner;Instance;@google-cloud/spanner;BackupStatic;Argument[0]", //
-        "@google-cloud/spanner;Instance;@google-cloud/spanner;DatabaseStatic;Argument[0]", //
-        "@google-cloud/spanner;Instance;@google-cloud/spanner;GetInstancesCallback;TypeVar[@google-cloud/spanner/common.PagedCallback.0]", //
-        "@google-cloud/spanner;Instance;@google-cloud/spanner;InstanceStatic;Instance", //
-        "@google-cloud/spanner;Instance;@google-cloud/spanner;Spanner;Member[instance].ReturnValue", //
-        "@google-cloud/spanner;InstanceStatic;@google-cloud/spanner/instance;;Member[Instance]", //
-        "@google-cloud/spanner;InstanceStatic;@google-cloud/spanner/instance;InstanceStatic;", //
-        "@google-cloud/spanner;InstanceStatic;@google-cloud/spanner;;Member[Instance]", //
-        "@google-cloud/spanner;PartitionedDml;@google-cloud/spanner/transaction;PartitionedDml;", //
-        "@google-cloud/spanner;PartitionedDml;@google-cloud/spanner;PartitionedDmlStatic;Instance", //
-        "@google-cloud/spanner;PartitionedDml;@google-cloud/spanner;Session;Member[partitionedDml].ReturnValue", //
-        "@google-cloud/spanner;PartitionedDmlStatic;@google-cloud/spanner/transaction;;Member[PartitionedDml]", //
-        "@google-cloud/spanner;PartitionedDmlStatic;@google-cloud/spanner/transaction;PartitionedDmlStatic;", //
-        "@google-cloud/spanner;PartitionedDmlStatic;@google-cloud/spanner;;Member[PartitionedDml]", //
-        "@google-cloud/spanner;Session;@google-cloud/spanner/batch-transaction;TransactionIdentifier;Member[session]", //
-        "@google-cloud/spanner;Session;@google-cloud/spanner/database;BatchCreateSessionsCallback;TypeVar[@google-cloud/spanner/common.ResourceCallback.0].ArrayElement", //
-        "@google-cloud/spanner;Session;@google-cloud/spanner/database;CreateSessionCallback;TypeVar[@google-cloud/spanner/common.ResourceCallback.0]", //
-        "@google-cloud/spanner;Session;@google-cloud/spanner/database;GetSessionsCallback;TypeVar[@google-cloud/spanner/common.RequestCallback.0]", //
-        "@google-cloud/spanner;Session;@google-cloud/spanner/database;PoolRequestCallback;TypeVar[@google-cloud/spanner/common.RequestCallback.0]", //
-        "@google-cloud/spanner;Session;@google-cloud/spanner/session-pool;GetReadSessionCallback;TypeVar[@google-cloud/spanner/common.NormalCallback.0]", //
-        "@google-cloud/spanner;Session;@google-cloud/spanner/session-pool;GetWriteSessionCallback;Argument[1]", //
-        "@google-cloud/spanner;Session;@google-cloud/spanner/session-pool;SessionPoolInterface;Member[release].Argument[0]", //
-        "@google-cloud/spanner;Session;@google-cloud/spanner/session;Session;", //
-        "@google-cloud/spanner;Session;@google-cloud/spanner/transaction-runner;Runner;Member[session]", //
-        "@google-cloud/spanner;Session;@google-cloud/spanner;Database;Member[_runPartitionedUpdate].Argument[0]", //
-        "@google-cloud/spanner;Session;@google-cloud/spanner;Database;Member[makePooledRequest_].WithArity[1].ReturnValue.Awaited", //
-        "@google-cloud/spanner;Session;@google-cloud/spanner;Database;Member[session].ReturnValue", //
-        "@google-cloud/spanner;Session;@google-cloud/spanner;SessionPool;Member[_acquire,_getSession].ReturnValue.Awaited", //
-        "@google-cloud/spanner;Session;@google-cloud/spanner;SessionPool;Member[_borrow,_destroy,_isValidSession,_ping,_prepareTransaction,_release,release].Argument[0]", //
-        "@google-cloud/spanner;Session;@google-cloud/spanner;SessionPool;Member[_borrowFrom,_borrowNextAvailableSession].ReturnValue", //
-        "@google-cloud/spanner;Session;@google-cloud/spanner;SessionPool;Member[_getIdleSessions].ReturnValue.ArrayElement", //
-        "@google-cloud/spanner;Session;@google-cloud/spanner;SessionStatic;Instance", //
-        "@google-cloud/spanner;Session;@google-cloud/spanner;Snapshot;Member[session]", //
-        "@google-cloud/spanner;SessionPool;@google-cloud/spanner/instance;CreateDatabaseOptions;Member[poolCtor]", //
-        "@google-cloud/spanner;SessionPool;@google-cloud/spanner/session-pool;SessionPool;", //
-        "@google-cloud/spanner;SessionPool;@google-cloud/spanner;SessionPoolStatic;Instance", //
-        "@google-cloud/spanner;SessionPoolStatic;@google-cloud/spanner/session-pool;;Member[SessionPool]", //
-        "@google-cloud/spanner;SessionPoolStatic;@google-cloud/spanner/session-pool;SessionPoolStatic;", //
-        "@google-cloud/spanner;SessionPoolStatic;@google-cloud/spanner;;Member[SessionPool]", //
-        "@google-cloud/spanner;SessionStatic;@google-cloud/spanner/session;;Member[Session]", //
-        "@google-cloud/spanner;SessionStatic;@google-cloud/spanner/session;SessionStatic;", //
-        "@google-cloud/spanner;SessionStatic;@google-cloud/spanner;;Member[Session]", //
-        "@google-cloud/spanner;Snapshot;@google-cloud/spanner/batch-transaction;BatchTransaction;", //
-        "@google-cloud/spanner;Snapshot;@google-cloud/spanner/database;GetSnapshotCallback;TypeVar[@google-cloud/spanner/common.NormalCallback.0]", //
-        "@google-cloud/spanner;Snapshot;@google-cloud/spanner/transaction;Dml;", //
-        "@google-cloud/spanner;Snapshot;@google-cloud/spanner/transaction;Snapshot;", //
-        "@google-cloud/spanner;Snapshot;@google-cloud/spanner;Session;Member[snapshot].ReturnValue", //
-        "@google-cloud/spanner;Snapshot;@google-cloud/spanner;SnapshotStatic;Instance", //
-        "@google-cloud/spanner;SnapshotStatic;@google-cloud/spanner/transaction;;Member[Snapshot]", //
-        "@google-cloud/spanner;SnapshotStatic;@google-cloud/spanner/transaction;SnapshotStatic;", //
-        "@google-cloud/spanner;SnapshotStatic;@google-cloud/spanner;;Member[Snapshot]", //
-        "@google-cloud/spanner;Spanner;@google-cloud/spanner;InstanceStatic;Argument[0]", //
-        "@google-cloud/spanner;Spanner;@google-cloud/spanner;SpannerStatic;Instance", //
-        "@google-cloud/spanner;SpannerStatic;@google-cloud/spanner;;Member[Spanner]", //
-        "@google-cloud/spanner;Table;@google-cloud/spanner/table;CreateTableCallback;TypeVar[@google-cloud/spanner/common.LongRunningCallback.0]", //
-        "@google-cloud/spanner;Table;@google-cloud/spanner/table;Table;", //
-        "@google-cloud/spanner;Table;@google-cloud/spanner;Database;Member[table].ReturnValue", //
-        "@google-cloud/spanner;Table;@google-cloud/spanner;TableStatic;Instance", //
-        "@google-cloud/spanner;TableStatic;@google-cloud/spanner/table;;Member[Table]", //
-        "@google-cloud/spanner;TableStatic;@google-cloud/spanner/table;TableStatic;", //
-        "@google-cloud/spanner;TableStatic;@google-cloud/spanner;;Member[Table]", //
-        "@google-cloud/spanner;Transaction;@google-cloud/spanner/database;GetTransactionCallback;TypeVar[@google-cloud/spanner/common.NormalCallback.0]", //
-        "@google-cloud/spanner;Transaction;@google-cloud/spanner/session-pool;GetWriteSessionCallback;Argument[2]", //
-        "@google-cloud/spanner;Transaction;@google-cloud/spanner/transaction-runner;AsyncRunTransactionCallback;Argument[0]", //
-        "@google-cloud/spanner;Transaction;@google-cloud/spanner/transaction-runner;RunTransactionCallback;TypeVar[@google-cloud/spanner/common.NormalCallback.0]", //
-        "@google-cloud/spanner;Transaction;@google-cloud/spanner/transaction-runner;Runner;Member[getTransaction].ReturnValue.Awaited", //
-        "@google-cloud/spanner;Transaction;@google-cloud/spanner/transaction-runner;Runner;Member[transaction]", //
-        "@google-cloud/spanner;Transaction;@google-cloud/spanner/transaction;Transaction;", //
-        "@google-cloud/spanner;Transaction;@google-cloud/spanner;Session;Member[transaction].ReturnValue", //
-        "@google-cloud/spanner;Transaction;@google-cloud/spanner;Session;Member[txn]", //
-        "@google-cloud/spanner;Transaction;@google-cloud/spanner;TransactionStatic;Instance", //
-        "@google-cloud/spanner;TransactionStatic;@google-cloud/spanner/transaction;;Member[Transaction]", //
-        "@google-cloud/spanner;TransactionStatic;@google-cloud/spanner/transaction;TransactionStatic;", //
-        "@google-cloud/spanner;TransactionStatic;@google-cloud/spanner;;Member[Transaction]", //
-        "@google-cloud/spanner;v1.SpannerClient;@google-cloud/spanner/v1/spanner_client;SpannerClient;", //
-        "@google-cloud/spanner;v1.SpannerClient;@google-cloud/spanner;v1.SpannerClientStatic;Instance", //
-        "@google-cloud/spanner;v1.SpannerClientStatic;@google-cloud/spanner/v1/spanner_client;;Member[SpannerClient]", //
-        "@google-cloud/spanner;v1.SpannerClientStatic;@google-cloud/spanner/v1/spanner_client;SpannerClientStatic;", //
-        "@google-cloud/spanner;v1.SpannerClientStatic;@google-cloud/spanner;;Member[v1].Member[SpannerClient]", //
-        "@google-cloud/spanner;~SpannerObject;@google-cloud/spanner;Database;", //
-        "@google-cloud/spanner;~SpannerObject;@google-cloud/spanner;Snapshot;", //
-        "@google-cloud/spanner;~SpannerObject;@google-cloud/spanner;Transaction;", //
-        "@google-cloud/spanner;~SpannerObject;@google-cloud/spanner;v1.SpannerClient;", //
-        "@google-cloud/spanner;~SqlExecutorDirect;@google-cloud/spanner;BatchTransaction;Member[createQueryPartitions]", //
-        "@google-cloud/spanner;~SqlExecutorDirect;@google-cloud/spanner;Database;Member[run,runPartitionedUpdate,runStream]", //
-        "@google-cloud/spanner;~SqlExecutorDirect;@google-cloud/spanner;PartitionedDml;Member[runUpdate]", //
-        "@google-cloud/spanner;~SqlExecutorDirect;@google-cloud/spanner;Snapshot;Member[run,runStream]", //
-        "@google-cloud/spanner;~SqlExecutorDirect;@google-cloud/spanner;Transaction;Member[run,runStream,runUpdate]", //
-        "@google-cloud/spanner;~SqlExecutorDirect;@google-cloud/spanner;v1.SpannerClient;Member[executeSql,executeStreamingSql,partitionQuery]", //
+        "@google-cloud/spanner.BackupStatic;@google-cloud/spanner/backup.BackupStatic;", //
+        "@google-cloud/spanner.BackupStatic;@google-cloud/spanner/backup;Member[Backup]", //
+        "@google-cloud/spanner.BackupStatic;@google-cloud/spanner;Member[Backup]", //
+        "@google-cloud/spanner.BatchTransaction;@google-cloud/spanner/batch-transaction.BatchTransaction;", //
+        "@google-cloud/spanner.Database;@google-cloud/spanner.DatabaseStatic;Instance", //
+        "@google-cloud/spanner.Database;@google-cloud/spanner.Instance;Member[database].ReturnValue", //
+        "@google-cloud/spanner.Database;@google-cloud/spanner.SessionPool;Member[database]", //
+        "@google-cloud/spanner.Database;@google-cloud/spanner.SessionPoolStatic;Argument[0]", //
+        "@google-cloud/spanner.Database;@google-cloud/spanner.SessionStatic;Argument[0]", //
+        "@google-cloud/spanner.Database;@google-cloud/spanner.Table;Member[database]", //
+        "@google-cloud/spanner.Database;@google-cloud/spanner.TableStatic;Argument[0]", //
+        "@google-cloud/spanner.Database;@google-cloud/spanner/database.Database;", //
+        "@google-cloud/spanner.Database;@google-cloud/spanner/database.DatabaseCallback;TypeVar[@google-cloud/spanner/common.ResourceCallback.0]", //
+        "@google-cloud/spanner.Database;@google-cloud/spanner/database.RestoreDatabaseCallback;TypeVar[@google-cloud/spanner/common.LongRunningCallback.0]", //
+        "@google-cloud/spanner.Database;@google-cloud/spanner/database.SessionPoolConstructor;Argument[0]", //
+        "@google-cloud/spanner.Database;@google-cloud/spanner/instance.CreateDatabaseCallback;TypeVar[@google-cloud/spanner/common.LongRunningCallback.0]", //
+        "@google-cloud/spanner.Database;@google-cloud/spanner/instance.GetDatabasesCallback;TypeVar[@google-cloud/spanner/common.RequestCallback.0]", //
+        "@google-cloud/spanner.DatabaseStatic;@google-cloud/spanner/database.DatabaseStatic;", //
+        "@google-cloud/spanner.DatabaseStatic;@google-cloud/spanner/database;Member[Database]", //
+        "@google-cloud/spanner.DatabaseStatic;@google-cloud/spanner;Member[Database]", //
+        "@google-cloud/spanner.GetInstancesCallback;@google-cloud/spanner.Spanner;Member[getInstances].Argument[1]", //
+        "@google-cloud/spanner.GetInstancesCallback;@google-cloud/spanner.Spanner;Member[getInstances].WithArity[1].Argument[0]", //
+        "@google-cloud/spanner.GetInstancesCallback;@google-cloud/spanner/build/src.GetInstancesCallback;", //
+        "@google-cloud/spanner.Instance;@google-cloud/spanner.BackupStatic;Argument[0]", //
+        "@google-cloud/spanner.Instance;@google-cloud/spanner.DatabaseStatic;Argument[0]", //
+        "@google-cloud/spanner.Instance;@google-cloud/spanner.GetInstancesCallback;TypeVar[@google-cloud/spanner/common.PagedCallback.0]", //
+        "@google-cloud/spanner.Instance;@google-cloud/spanner.InstanceStatic;Instance", //
+        "@google-cloud/spanner.Instance;@google-cloud/spanner.Spanner;Member[instance].ReturnValue", //
+        "@google-cloud/spanner.Instance;@google-cloud/spanner/instance.CreateInstanceCallback;TypeVar[@google-cloud/spanner/common.LongRunningCallback.0]", //
+        "@google-cloud/spanner.Instance;@google-cloud/spanner/instance.GetInstanceCallback;TypeVar[@google-cloud/spanner/common.ResourceCallback.0]", //
+        "@google-cloud/spanner.Instance;@google-cloud/spanner/instance.Instance;", //
+        "@google-cloud/spanner.InstanceStatic;@google-cloud/spanner/instance.InstanceStatic;", //
+        "@google-cloud/spanner.InstanceStatic;@google-cloud/spanner/instance;Member[Instance]", //
+        "@google-cloud/spanner.InstanceStatic;@google-cloud/spanner;Member[Instance]", //
+        "@google-cloud/spanner.PartitionedDml;@google-cloud/spanner.PartitionedDmlStatic;Instance", //
+        "@google-cloud/spanner.PartitionedDml;@google-cloud/spanner.Session;Member[partitionedDml].ReturnValue", //
+        "@google-cloud/spanner.PartitionedDml;@google-cloud/spanner/transaction.PartitionedDml;", //
+        "@google-cloud/spanner.PartitionedDmlStatic;@google-cloud/spanner/transaction.PartitionedDmlStatic;", //
+        "@google-cloud/spanner.PartitionedDmlStatic;@google-cloud/spanner/transaction;Member[PartitionedDml]", //
+        "@google-cloud/spanner.PartitionedDmlStatic;@google-cloud/spanner;Member[PartitionedDml]", //
+        "@google-cloud/spanner.Session;@google-cloud/spanner.Database;Member[_runPartitionedUpdate].Argument[0]", //
+        "@google-cloud/spanner.Session;@google-cloud/spanner.Database;Member[makePooledRequest_].WithArity[1].ReturnValue.Awaited", //
+        "@google-cloud/spanner.Session;@google-cloud/spanner.Database;Member[session].ReturnValue", //
+        "@google-cloud/spanner.Session;@google-cloud/spanner.SessionPool;Member[_acquire,_getSession].ReturnValue.Awaited", //
+        "@google-cloud/spanner.Session;@google-cloud/spanner.SessionPool;Member[_borrow,_destroy,_isValidSession,_ping,_prepareTransaction,_release,release].Argument[0]", //
+        "@google-cloud/spanner.Session;@google-cloud/spanner.SessionPool;Member[_borrowFrom,_borrowNextAvailableSession].ReturnValue", //
+        "@google-cloud/spanner.Session;@google-cloud/spanner.SessionPool;Member[_getIdleSessions].ReturnValue.ArrayElement", //
+        "@google-cloud/spanner.Session;@google-cloud/spanner.SessionStatic;Instance", //
+        "@google-cloud/spanner.Session;@google-cloud/spanner.Snapshot;Member[session]", //
+        "@google-cloud/spanner.Session;@google-cloud/spanner/batch-transaction.TransactionIdentifier;Member[session]", //
+        "@google-cloud/spanner.Session;@google-cloud/spanner/database.BatchCreateSessionsCallback;TypeVar[@google-cloud/spanner/common.ResourceCallback.0].ArrayElement", //
+        "@google-cloud/spanner.Session;@google-cloud/spanner/database.CreateSessionCallback;TypeVar[@google-cloud/spanner/common.ResourceCallback.0]", //
+        "@google-cloud/spanner.Session;@google-cloud/spanner/database.GetSessionsCallback;TypeVar[@google-cloud/spanner/common.RequestCallback.0]", //
+        "@google-cloud/spanner.Session;@google-cloud/spanner/database.PoolRequestCallback;TypeVar[@google-cloud/spanner/common.RequestCallback.0]", //
+        "@google-cloud/spanner.Session;@google-cloud/spanner/session-pool.GetReadSessionCallback;TypeVar[@google-cloud/spanner/common.NormalCallback.0]", //
+        "@google-cloud/spanner.Session;@google-cloud/spanner/session-pool.GetWriteSessionCallback;Argument[1]", //
+        "@google-cloud/spanner.Session;@google-cloud/spanner/session-pool.SessionPoolInterface;Member[release].Argument[0]", //
+        "@google-cloud/spanner.Session;@google-cloud/spanner/session.Session;", //
+        "@google-cloud/spanner.Session;@google-cloud/spanner/transaction-runner.Runner;Member[session]", //
+        "@google-cloud/spanner.SessionPool;@google-cloud/spanner.SessionPoolStatic;Instance", //
+        "@google-cloud/spanner.SessionPool;@google-cloud/spanner/instance.CreateDatabaseOptions;Member[poolCtor]", //
+        "@google-cloud/spanner.SessionPool;@google-cloud/spanner/session-pool.SessionPool;", //
+        "@google-cloud/spanner.SessionPoolStatic;@google-cloud/spanner/session-pool.SessionPoolStatic;", //
+        "@google-cloud/spanner.SessionPoolStatic;@google-cloud/spanner/session-pool;Member[SessionPool]", //
+        "@google-cloud/spanner.SessionPoolStatic;@google-cloud/spanner;Member[SessionPool]", //
+        "@google-cloud/spanner.SessionStatic;@google-cloud/spanner/session.SessionStatic;", //
+        "@google-cloud/spanner.SessionStatic;@google-cloud/spanner/session;Member[Session]", //
+        "@google-cloud/spanner.SessionStatic;@google-cloud/spanner;Member[Session]", //
+        "@google-cloud/spanner.Snapshot;@google-cloud/spanner.Session;Member[snapshot].ReturnValue", //
+        "@google-cloud/spanner.Snapshot;@google-cloud/spanner.SnapshotStatic;Instance", //
+        "@google-cloud/spanner.Snapshot;@google-cloud/spanner/batch-transaction.BatchTransaction;", //
+        "@google-cloud/spanner.Snapshot;@google-cloud/spanner/database.GetSnapshotCallback;TypeVar[@google-cloud/spanner/common.NormalCallback.0]", //
+        "@google-cloud/spanner.Snapshot;@google-cloud/spanner/transaction.Dml;", //
+        "@google-cloud/spanner.Snapshot;@google-cloud/spanner/transaction.Snapshot;", //
+        "@google-cloud/spanner.SnapshotStatic;@google-cloud/spanner/transaction.SnapshotStatic;", //
+        "@google-cloud/spanner.SnapshotStatic;@google-cloud/spanner/transaction;Member[Snapshot]", //
+        "@google-cloud/spanner.SnapshotStatic;@google-cloud/spanner;Member[Snapshot]", //
+        "@google-cloud/spanner.Spanner;@google-cloud/spanner.InstanceStatic;Argument[0]", //
+        "@google-cloud/spanner.Spanner;@google-cloud/spanner.SpannerStatic;Instance", //
+        "@google-cloud/spanner.SpannerStatic;@google-cloud/spanner;Member[Spanner]", //
+        "@google-cloud/spanner.Table;@google-cloud/spanner.Database;Member[table].ReturnValue", //
+        "@google-cloud/spanner.Table;@google-cloud/spanner.TableStatic;Instance", //
+        "@google-cloud/spanner.Table;@google-cloud/spanner/table.CreateTableCallback;TypeVar[@google-cloud/spanner/common.LongRunningCallback.0]", //
+        "@google-cloud/spanner.Table;@google-cloud/spanner/table.Table;", //
+        "@google-cloud/spanner.TableStatic;@google-cloud/spanner/table.TableStatic;", //
+        "@google-cloud/spanner.TableStatic;@google-cloud/spanner/table;Member[Table]", //
+        "@google-cloud/spanner.TableStatic;@google-cloud/spanner;Member[Table]", //
+        "@google-cloud/spanner.Transaction;@google-cloud/spanner.Session;Member[transaction].ReturnValue", //
+        "@google-cloud/spanner.Transaction;@google-cloud/spanner.Session;Member[txn]", //
+        "@google-cloud/spanner.Transaction;@google-cloud/spanner.TransactionStatic;Instance", //
+        "@google-cloud/spanner.Transaction;@google-cloud/spanner/database.GetTransactionCallback;TypeVar[@google-cloud/spanner/common.NormalCallback.0]", //
+        "@google-cloud/spanner.Transaction;@google-cloud/spanner/session-pool.GetWriteSessionCallback;Argument[2]", //
+        "@google-cloud/spanner.Transaction;@google-cloud/spanner/transaction-runner.AsyncRunTransactionCallback;Argument[0]", //
+        "@google-cloud/spanner.Transaction;@google-cloud/spanner/transaction-runner.RunTransactionCallback;TypeVar[@google-cloud/spanner/common.NormalCallback.0]", //
+        "@google-cloud/spanner.Transaction;@google-cloud/spanner/transaction-runner.Runner;Member[getTransaction].ReturnValue.Awaited", //
+        "@google-cloud/spanner.Transaction;@google-cloud/spanner/transaction-runner.Runner;Member[transaction]", //
+        "@google-cloud/spanner.Transaction;@google-cloud/spanner/transaction.Transaction;", //
+        "@google-cloud/spanner.TransactionStatic;@google-cloud/spanner/transaction.TransactionStatic;", //
+        "@google-cloud/spanner.TransactionStatic;@google-cloud/spanner/transaction;Member[Transaction]", //
+        "@google-cloud/spanner.TransactionStatic;@google-cloud/spanner;Member[Transaction]", //
+        "@google-cloud/spanner.v1.SpannerClient;@google-cloud/spanner.v1.SpannerClientStatic;Instance", //
+        "@google-cloud/spanner.v1.SpannerClient;@google-cloud/spanner/v1/spanner_client.SpannerClient;", //
+        "@google-cloud/spanner.v1.SpannerClientStatic;@google-cloud/spanner/v1/spanner_client.SpannerClientStatic;", //
+        "@google-cloud/spanner.v1.SpannerClientStatic;@google-cloud/spanner/v1/spanner_client;Member[SpannerClient]", //
+        "@google-cloud/spanner.v1.SpannerClientStatic;@google-cloud/spanner;Member[v1].Member[SpannerClient]", //
+        "@google-cloud/spanner.~SpannerObject;@google-cloud/spanner.Database;", //
+        "@google-cloud/spanner.~SpannerObject;@google-cloud/spanner.Snapshot;", //
+        "@google-cloud/spanner.~SpannerObject;@google-cloud/spanner.Transaction;", //
+        "@google-cloud/spanner.~SpannerObject;@google-cloud/spanner.v1.SpannerClient;", //
+        "@google-cloud/spanner.~SqlExecutorDirect;@google-cloud/spanner.BatchTransaction;Member[createQueryPartitions]", //
+        "@google-cloud/spanner.~SqlExecutorDirect;@google-cloud/spanner.Database;Member[run,runPartitionedUpdate,runStream]", //
+        "@google-cloud/spanner.~SqlExecutorDirect;@google-cloud/spanner.PartitionedDml;Member[runUpdate]", //
+        "@google-cloud/spanner.~SqlExecutorDirect;@google-cloud/spanner.Snapshot;Member[run,runStream]", //
+        "@google-cloud/spanner.~SqlExecutorDirect;@google-cloud/spanner.Transaction;Member[run,runStream,runUpdate]", //
+        "@google-cloud/spanner.~SqlExecutorDirect;@google-cloud/spanner.v1.SpannerClient;Member[executeSql,executeStreamingSql,partitionQuery]", //
+        "@google-cloud/spanner/batch-transaction.BatchTransaction;@google-cloud/spanner.Database;Member[batchTransaction].ReturnValue", //
+        "@google-cloud/spanner/batch-transaction.BatchTransaction;@google-cloud/spanner/batch-transaction.BatchTransactionStatic;Instance", //
+        "@google-cloud/spanner/batch-transaction.BatchTransaction;@google-cloud/spanner/database.CreateBatchTransactionCallback;TypeVar[@google-cloud/spanner/common.ResourceCallback.0]", //
+        "@google-cloud/spanner/batch-transaction.BatchTransactionStatic;@google-cloud/spanner/batch-transaction;Member[BatchTransaction]", //
+        "@google-cloud/spanner/batch-transaction.TransactionIdentifier;@google-cloud/spanner.Database;Member[batchTransaction].Argument[0]", //
+        "@google-cloud/spanner/batch-transaction.TransactionIdentifier;@google-cloud/spanner/batch-transaction.BatchTransaction;Member[identifier].ReturnValue", //
+        "@google-cloud/spanner/database.BatchCreateSessionsCallback;@google-cloud/spanner.Database;Member[batchCreateSessions].Argument[1]", //
+        "@google-cloud/spanner/database.CreateBatchTransactionCallback;@google-cloud/spanner.Database;Member[createBatchTransaction].Argument[1]", //
+        "@google-cloud/spanner/database.CreateBatchTransactionCallback;@google-cloud/spanner.Database;Member[createBatchTransaction].WithArity[1].Argument[0]", //
+        "@google-cloud/spanner/database.CreateSessionCallback;@google-cloud/spanner.Database;Member[createSession].Argument[1]", //
+        "@google-cloud/spanner/database.CreateSessionCallback;@google-cloud/spanner.Database;Member[createSession].WithArity[1].Argument[0]", //
+        "@google-cloud/spanner/database.DatabaseCallback;@google-cloud/spanner.Database;Member[get].Argument[1]", //
+        "@google-cloud/spanner/database.DatabaseCallback;@google-cloud/spanner.Database;Member[get].WithArity[1].Argument[0]", //
+        "@google-cloud/spanner/database.GetSessionsCallback;@google-cloud/spanner.Database;Member[getSessions].Argument[1]", //
+        "@google-cloud/spanner/database.GetSessionsCallback;@google-cloud/spanner.Database;Member[getSessions].WithArity[1].Argument[0]", //
+        "@google-cloud/spanner/database.GetSnapshotCallback;@google-cloud/spanner.Database;Member[getSnapshot].Argument[1]", //
+        "@google-cloud/spanner/database.GetSnapshotCallback;@google-cloud/spanner.Database;Member[getSnapshot].WithArity[1].Argument[0]", //
+        "@google-cloud/spanner/database.GetTransactionCallback;@google-cloud/spanner.Database;Member[getTransaction].Argument[0]", //
+        "@google-cloud/spanner/database.PoolRequestCallback;@google-cloud/spanner.Database;Member[makePooledRequest_].Argument[1]", //
+        "@google-cloud/spanner/database.RestoreDatabaseCallback;@google-cloud/spanner.Database;Member[restore].Argument[1,2]", //
+        "@google-cloud/spanner/database.SessionPoolConstructor;@google-cloud/spanner.DatabaseStatic;Argument[2]", //
+        "@google-cloud/spanner/database.SessionPoolConstructor;@google-cloud/spanner.Instance;Member[database].Argument[1]", //
+        "@google-cloud/spanner/instance.CreateDatabaseCallback;@google-cloud/spanner.Instance;Member[createDatabase].Argument[2]", //
+        "@google-cloud/spanner/instance.CreateDatabaseCallback;@google-cloud/spanner.Instance;Member[createDatabase].WithArity[2].Argument[1]", //
+        "@google-cloud/spanner/instance.CreateDatabaseOptions;@google-cloud/spanner.Instance;Member[createDatabase].WithArity[1,2,3].Argument[1]", //
+        "@google-cloud/spanner/instance.CreateInstanceCallback;@google-cloud/spanner.Spanner;Member[createInstance].Argument[2]", //
+        "@google-cloud/spanner/instance.GetDatabasesCallback;@google-cloud/spanner.Instance;Member[getDatabases].Argument[1]", //
+        "@google-cloud/spanner/instance.GetDatabasesCallback;@google-cloud/spanner.Instance;Member[getDatabases].WithArity[1].Argument[0]", //
+        "@google-cloud/spanner/instance.GetInstanceCallback;@google-cloud/spanner.Instance;Member[get].Argument[1]", //
+        "@google-cloud/spanner/instance.GetInstanceCallback;@google-cloud/spanner.Instance;Member[get].WithArity[1].Argument[0]", //
+        "@google-cloud/spanner/session-pool.GetReadSessionCallback;@google-cloud/spanner.SessionPool;Member[getReadSession].Argument[0]", //
+        "@google-cloud/spanner/session-pool.GetReadSessionCallback;@google-cloud/spanner/session-pool.SessionPoolInterface;Member[getReadSession].Argument[0]", //
+        "@google-cloud/spanner/session-pool.GetWriteSessionCallback;@google-cloud/spanner.SessionPool;Member[getWriteSession].Argument[0]", //
+        "@google-cloud/spanner/session-pool.GetWriteSessionCallback;@google-cloud/spanner/session-pool.SessionPoolInterface;Member[getWriteSession].Argument[0]", //
+        "@google-cloud/spanner/session-pool.SessionPoolInterface;@google-cloud/spanner.Database;Member[pool_]", //
+        "@google-cloud/spanner/session-pool.SessionPoolInterface;@google-cloud/spanner.SessionPool;", //
+        "@google-cloud/spanner/session-pool.SessionPoolInterface;@google-cloud/spanner/database.SessionPoolConstructor;Instance", //
+        "@google-cloud/spanner/table.CreateTableCallback;@google-cloud/spanner.Database;Member[createTable].Argument[2]", //
+        "@google-cloud/spanner/table.CreateTableCallback;@google-cloud/spanner.Database;Member[createTable].WithArity[2].Argument[1]", //
+        "@google-cloud/spanner/table.CreateTableCallback;@google-cloud/spanner.Table;Member[create].Argument[2]", //
+        "@google-cloud/spanner/table.CreateTableCallback;@google-cloud/spanner.Table;Member[create].WithArity[2].Argument[1]", //
+        "@google-cloud/spanner/transaction-runner.AsyncRunTransactionCallback;@google-cloud/spanner.Database;Member[runTransactionAsync].Argument[1]", //
+        "@google-cloud/spanner/transaction-runner.AsyncRunTransactionCallback;@google-cloud/spanner.Database;Member[runTransactionAsync].WithArity[1].Argument[0]", //
+        "@google-cloud/spanner/transaction-runner.AsyncRunTransactionCallback;@google-cloud/spanner/transaction-runner.AsyncTransactionRunnerStatic;Argument[2]", //
+        "@google-cloud/spanner/transaction-runner.AsyncTransactionRunner;@google-cloud/spanner/transaction-runner.AsyncTransactionRunnerStatic;Instance", //
+        "@google-cloud/spanner/transaction-runner.AsyncTransactionRunnerStatic;@google-cloud/spanner/transaction-runner;Member[AsyncTransactionRunner]", //
+        "@google-cloud/spanner/transaction-runner.RunTransactionCallback;@google-cloud/spanner.Database;Member[runTransaction].Argument[1]", //
+        "@google-cloud/spanner/transaction-runner.RunTransactionCallback;@google-cloud/spanner.Database;Member[runTransaction].WithArity[1].Argument[0]", //
+        "@google-cloud/spanner/transaction-runner.RunTransactionCallback;@google-cloud/spanner/transaction-runner.TransactionRunnerStatic;Argument[2]", //
+        "@google-cloud/spanner/transaction-runner.Runner;@google-cloud/spanner/transaction-runner.AsyncTransactionRunner;", //
+        "@google-cloud/spanner/transaction-runner.Runner;@google-cloud/spanner/transaction-runner.RunnerStatic;Instance", //
+        "@google-cloud/spanner/transaction-runner.Runner;@google-cloud/spanner/transaction-runner.TransactionRunner;", //
+        "@google-cloud/spanner/transaction-runner.RunnerStatic;@google-cloud/spanner/transaction-runner;Member[Runner]", //
+        "@google-cloud/spanner/transaction-runner.TransactionRunner;@google-cloud/spanner/transaction-runner.TransactionRunnerStatic;Instance", //
+        "@google-cloud/spanner/transaction-runner.TransactionRunnerStatic;@google-cloud/spanner/transaction-runner;Member[TransactionRunner]", //
+        "@google-cloud/spanner/transaction.Dml;@google-cloud/spanner.PartitionedDml;", //
+        "@google-cloud/spanner/transaction.Dml;@google-cloud/spanner.Transaction;", //
+        "@google-cloud/spanner/transaction.Dml;@google-cloud/spanner/transaction.DmlStatic;Instance", //
+        "@google-cloud/spanner/transaction.DmlStatic;@google-cloud/spanner/transaction;Member[Dml]", //
       ]
   }
 }
diff --git a/javascript/ql/lib/semmle/javascript/frameworks/spanner/model.json b/javascript/ql/lib/semmle/javascript/frameworks/spanner/model.json
index d2fe140f4d8..c4f583df6e4 100644
--- a/javascript/ql/lib/semmle/javascript/frameworks/spanner/model.json
+++ b/javascript/ql/lib/semmle/javascript/frameworks/spanner/model.json
@@ -56,186 +56,186 @@
     "language": "javascript",
     "model": {
         "typeDefinitions": [
-            "@google-cloud/spanner;BatchTransaction;@google-cloud/spanner/batch-transaction;BatchTransaction;",
-            "@google-cloud/spanner;~SpannerObject;@google-cloud/spanner;Database;",
-            "@google-cloud/spanner;~SpannerObject;@google-cloud/spanner;Snapshot;",
-            "@google-cloud/spanner;~SpannerObject;@google-cloud/spanner;Transaction;",
-            "@google-cloud/spanner;~SpannerObject;@google-cloud/spanner;v1.SpannerClient;",
-            "@google-cloud/spanner;~SqlExecutorDirect;@google-cloud/spanner;BatchTransaction;Member[createQueryPartitions]",
-            "@google-cloud/spanner;~SqlExecutorDirect;@google-cloud/spanner;Database;Member[run,runPartitionedUpdate,runStream]",
-            "@google-cloud/spanner;~SqlExecutorDirect;@google-cloud/spanner;PartitionedDml;Member[runUpdate]",
-            "@google-cloud/spanner;~SqlExecutorDirect;@google-cloud/spanner;Snapshot;Member[run,runStream]",
-            "@google-cloud/spanner;~SqlExecutorDirect;@google-cloud/spanner;Transaction;Member[run,runStream,runUpdate]",
-            "@google-cloud/spanner;~SqlExecutorDirect;@google-cloud/spanner;v1.SpannerClient;Member[executeSql,executeStreamingSql,partitionQuery]"
+            "@google-cloud/spanner.BatchTransaction;@google-cloud/spanner/batch-transaction.BatchTransaction;",
+            "@google-cloud/spanner.~SpannerObject;@google-cloud/spanner.Database;",
+            "@google-cloud/spanner.~SpannerObject;@google-cloud/spanner.Snapshot;",
+            "@google-cloud/spanner.~SpannerObject;@google-cloud/spanner.Transaction;",
+            "@google-cloud/spanner.~SpannerObject;@google-cloud/spanner.v1.SpannerClient;",
+            "@google-cloud/spanner.~SqlExecutorDirect;@google-cloud/spanner.BatchTransaction;Member[createQueryPartitions]",
+            "@google-cloud/spanner.~SqlExecutorDirect;@google-cloud/spanner.Database;Member[run,runPartitionedUpdate,runStream]",
+            "@google-cloud/spanner.~SqlExecutorDirect;@google-cloud/spanner.PartitionedDml;Member[runUpdate]",
+            "@google-cloud/spanner.~SqlExecutorDirect;@google-cloud/spanner.Snapshot;Member[run,runStream]",
+            "@google-cloud/spanner.~SqlExecutorDirect;@google-cloud/spanner.Transaction;Member[run,runStream,runUpdate]",
+            "@google-cloud/spanner.~SqlExecutorDirect;@google-cloud/spanner.v1.SpannerClient;Member[executeSql,executeStreamingSql,partitionQuery]"
         ],
         "sinks": []
     },
     "generatedModel": {
         "//": "Autogenerated section. Manual edits in here will be lost.",
         "typeDefinitions": [
-            "@google-cloud/spanner/batch-transaction;BatchTransaction;@google-cloud/spanner/batch-transaction;BatchTransactionStatic;Instance",
-            "@google-cloud/spanner/batch-transaction;BatchTransaction;@google-cloud/spanner/database;CreateBatchTransactionCallback;TypeVar[@google-cloud/spanner/common.ResourceCallback.0]",
-            "@google-cloud/spanner/batch-transaction;BatchTransaction;@google-cloud/spanner;Database;Member[batchTransaction].ReturnValue",
-            "@google-cloud/spanner/batch-transaction;BatchTransactionStatic;@google-cloud/spanner/batch-transaction;;Member[BatchTransaction]",
-            "@google-cloud/spanner/batch-transaction;TransactionIdentifier;@google-cloud/spanner/batch-transaction;BatchTransaction;Member[identifier].ReturnValue",
-            "@google-cloud/spanner/batch-transaction;TransactionIdentifier;@google-cloud/spanner;Database;Member[batchTransaction].Argument[0]",
-            "@google-cloud/spanner/database;BatchCreateSessionsCallback;@google-cloud/spanner;Database;Member[batchCreateSessions].Argument[1]",
-            "@google-cloud/spanner/database;CreateBatchTransactionCallback;@google-cloud/spanner;Database;Member[createBatchTransaction].Argument[1]",
-            "@google-cloud/spanner/database;CreateBatchTransactionCallback;@google-cloud/spanner;Database;Member[createBatchTransaction].WithArity[1].Argument[0]",
-            "@google-cloud/spanner/database;CreateSessionCallback;@google-cloud/spanner;Database;Member[createSession].Argument[1]",
-            "@google-cloud/spanner/database;CreateSessionCallback;@google-cloud/spanner;Database;Member[createSession].WithArity[1].Argument[0]",
-            "@google-cloud/spanner/database;DatabaseCallback;@google-cloud/spanner;Database;Member[get].Argument[1]",
-            "@google-cloud/spanner/database;DatabaseCallback;@google-cloud/spanner;Database;Member[get].WithArity[1].Argument[0]",
-            "@google-cloud/spanner/database;GetSessionsCallback;@google-cloud/spanner;Database;Member[getSessions].Argument[1]",
-            "@google-cloud/spanner/database;GetSessionsCallback;@google-cloud/spanner;Database;Member[getSessions].WithArity[1].Argument[0]",
-            "@google-cloud/spanner/database;GetSnapshotCallback;@google-cloud/spanner;Database;Member[getSnapshot].Argument[1]",
-            "@google-cloud/spanner/database;GetSnapshotCallback;@google-cloud/spanner;Database;Member[getSnapshot].WithArity[1].Argument[0]",
-            "@google-cloud/spanner/database;GetTransactionCallback;@google-cloud/spanner;Database;Member[getTransaction].Argument[0]",
-            "@google-cloud/spanner/database;PoolRequestCallback;@google-cloud/spanner;Database;Member[makePooledRequest_].Argument[1]",
-            "@google-cloud/spanner/database;RestoreDatabaseCallback;@google-cloud/spanner;Database;Member[restore].Argument[1,2]",
-            "@google-cloud/spanner/database;SessionPoolConstructor;@google-cloud/spanner;DatabaseStatic;Argument[2]",
-            "@google-cloud/spanner/database;SessionPoolConstructor;@google-cloud/spanner;Instance;Member[database].Argument[1]",
-            "@google-cloud/spanner/instance;CreateDatabaseCallback;@google-cloud/spanner;Instance;Member[createDatabase].Argument[2]",
-            "@google-cloud/spanner/instance;CreateDatabaseCallback;@google-cloud/spanner;Instance;Member[createDatabase].WithArity[2].Argument[1]",
-            "@google-cloud/spanner/instance;CreateDatabaseOptions;@google-cloud/spanner;Instance;Member[createDatabase].WithArity[1,2,3].Argument[1]",
-            "@google-cloud/spanner/instance;CreateInstanceCallback;@google-cloud/spanner;Spanner;Member[createInstance].Argument[2]",
-            "@google-cloud/spanner/instance;GetDatabasesCallback;@google-cloud/spanner;Instance;Member[getDatabases].Argument[1]",
-            "@google-cloud/spanner/instance;GetDatabasesCallback;@google-cloud/spanner;Instance;Member[getDatabases].WithArity[1].Argument[0]",
-            "@google-cloud/spanner/instance;GetInstanceCallback;@google-cloud/spanner;Instance;Member[get].Argument[1]",
-            "@google-cloud/spanner/instance;GetInstanceCallback;@google-cloud/spanner;Instance;Member[get].WithArity[1].Argument[0]",
-            "@google-cloud/spanner/session-pool;GetReadSessionCallback;@google-cloud/spanner/session-pool;SessionPoolInterface;Member[getReadSession].Argument[0]",
-            "@google-cloud/spanner/session-pool;GetReadSessionCallback;@google-cloud/spanner;SessionPool;Member[getReadSession].Argument[0]",
-            "@google-cloud/spanner/session-pool;GetWriteSessionCallback;@google-cloud/spanner/session-pool;SessionPoolInterface;Member[getWriteSession].Argument[0]",
-            "@google-cloud/spanner/session-pool;GetWriteSessionCallback;@google-cloud/spanner;SessionPool;Member[getWriteSession].Argument[0]",
-            "@google-cloud/spanner/session-pool;SessionPoolInterface;@google-cloud/spanner/database;SessionPoolConstructor;Instance",
-            "@google-cloud/spanner/session-pool;SessionPoolInterface;@google-cloud/spanner;Database;Member[pool_]",
-            "@google-cloud/spanner/session-pool;SessionPoolInterface;@google-cloud/spanner;SessionPool;",
-            "@google-cloud/spanner/table;CreateTableCallback;@google-cloud/spanner;Database;Member[createTable].Argument[2]",
-            "@google-cloud/spanner/table;CreateTableCallback;@google-cloud/spanner;Database;Member[createTable].WithArity[2].Argument[1]",
-            "@google-cloud/spanner/table;CreateTableCallback;@google-cloud/spanner;Table;Member[create].Argument[2]",
-            "@google-cloud/spanner/table;CreateTableCallback;@google-cloud/spanner;Table;Member[create].WithArity[2].Argument[1]",
-            "@google-cloud/spanner/transaction-runner;AsyncRunTransactionCallback;@google-cloud/spanner/transaction-runner;AsyncTransactionRunnerStatic;Argument[2]",
-            "@google-cloud/spanner/transaction-runner;AsyncRunTransactionCallback;@google-cloud/spanner;Database;Member[runTransactionAsync].Argument[1]",
-            "@google-cloud/spanner/transaction-runner;AsyncRunTransactionCallback;@google-cloud/spanner;Database;Member[runTransactionAsync].WithArity[1].Argument[0]",
-            "@google-cloud/spanner/transaction-runner;AsyncTransactionRunner;@google-cloud/spanner/transaction-runner;AsyncTransactionRunnerStatic;Instance",
-            "@google-cloud/spanner/transaction-runner;AsyncTransactionRunnerStatic;@google-cloud/spanner/transaction-runner;;Member[AsyncTransactionRunner]",
-            "@google-cloud/spanner/transaction-runner;RunTransactionCallback;@google-cloud/spanner/transaction-runner;TransactionRunnerStatic;Argument[2]",
-            "@google-cloud/spanner/transaction-runner;RunTransactionCallback;@google-cloud/spanner;Database;Member[runTransaction].Argument[1]",
-            "@google-cloud/spanner/transaction-runner;RunTransactionCallback;@google-cloud/spanner;Database;Member[runTransaction].WithArity[1].Argument[0]",
-            "@google-cloud/spanner/transaction-runner;Runner;@google-cloud/spanner/transaction-runner;AsyncTransactionRunner;",
-            "@google-cloud/spanner/transaction-runner;Runner;@google-cloud/spanner/transaction-runner;RunnerStatic;Instance",
-            "@google-cloud/spanner/transaction-runner;Runner;@google-cloud/spanner/transaction-runner;TransactionRunner;",
-            "@google-cloud/spanner/transaction-runner;RunnerStatic;@google-cloud/spanner/transaction-runner;;Member[Runner]",
-            "@google-cloud/spanner/transaction-runner;TransactionRunner;@google-cloud/spanner/transaction-runner;TransactionRunnerStatic;Instance",
-            "@google-cloud/spanner/transaction-runner;TransactionRunnerStatic;@google-cloud/spanner/transaction-runner;;Member[TransactionRunner]",
-            "@google-cloud/spanner/transaction;Dml;@google-cloud/spanner/transaction;DmlStatic;Instance",
-            "@google-cloud/spanner/transaction;Dml;@google-cloud/spanner;PartitionedDml;",
-            "@google-cloud/spanner/transaction;Dml;@google-cloud/spanner;Transaction;",
-            "@google-cloud/spanner/transaction;DmlStatic;@google-cloud/spanner/transaction;;Member[Dml]",
-            "@google-cloud/spanner;BackupStatic;@google-cloud/spanner/backup;;Member[Backup]",
-            "@google-cloud/spanner;BackupStatic;@google-cloud/spanner/backup;BackupStatic;",
-            "@google-cloud/spanner;BackupStatic;@google-cloud/spanner;;Member[Backup]",
-            "@google-cloud/spanner;Database;@google-cloud/spanner/database;Database;",
-            "@google-cloud/spanner;Database;@google-cloud/spanner/database;DatabaseCallback;TypeVar[@google-cloud/spanner/common.ResourceCallback.0]",
-            "@google-cloud/spanner;Database;@google-cloud/spanner/database;RestoreDatabaseCallback;TypeVar[@google-cloud/spanner/common.LongRunningCallback.0]",
-            "@google-cloud/spanner;Database;@google-cloud/spanner/database;SessionPoolConstructor;Argument[0]",
-            "@google-cloud/spanner;Database;@google-cloud/spanner/instance;CreateDatabaseCallback;TypeVar[@google-cloud/spanner/common.LongRunningCallback.0]",
-            "@google-cloud/spanner;Database;@google-cloud/spanner/instance;GetDatabasesCallback;TypeVar[@google-cloud/spanner/common.RequestCallback.0]",
-            "@google-cloud/spanner;Database;@google-cloud/spanner;DatabaseStatic;Instance",
-            "@google-cloud/spanner;Database;@google-cloud/spanner;Instance;Member[database].ReturnValue",
-            "@google-cloud/spanner;Database;@google-cloud/spanner;SessionPool;Member[database]",
-            "@google-cloud/spanner;Database;@google-cloud/spanner;SessionPoolStatic;Argument[0]",
-            "@google-cloud/spanner;Database;@google-cloud/spanner;SessionStatic;Argument[0]",
-            "@google-cloud/spanner;Database;@google-cloud/spanner;Table;Member[database]",
-            "@google-cloud/spanner;Database;@google-cloud/spanner;TableStatic;Argument[0]",
-            "@google-cloud/spanner;DatabaseStatic;@google-cloud/spanner/database;;Member[Database]",
-            "@google-cloud/spanner;DatabaseStatic;@google-cloud/spanner/database;DatabaseStatic;",
-            "@google-cloud/spanner;DatabaseStatic;@google-cloud/spanner;;Member[Database]",
-            "@google-cloud/spanner;GetInstancesCallback;@google-cloud/spanner/build/src;GetInstancesCallback;",
-            "@google-cloud/spanner;GetInstancesCallback;@google-cloud/spanner;Spanner;Member[getInstances].Argument[1]",
-            "@google-cloud/spanner;GetInstancesCallback;@google-cloud/spanner;Spanner;Member[getInstances].WithArity[1].Argument[0]",
-            "@google-cloud/spanner;Instance;@google-cloud/spanner/instance;CreateInstanceCallback;TypeVar[@google-cloud/spanner/common.LongRunningCallback.0]",
-            "@google-cloud/spanner;Instance;@google-cloud/spanner/instance;GetInstanceCallback;TypeVar[@google-cloud/spanner/common.ResourceCallback.0]",
-            "@google-cloud/spanner;Instance;@google-cloud/spanner/instance;Instance;",
-            "@google-cloud/spanner;Instance;@google-cloud/spanner;BackupStatic;Argument[0]",
-            "@google-cloud/spanner;Instance;@google-cloud/spanner;DatabaseStatic;Argument[0]",
-            "@google-cloud/spanner;Instance;@google-cloud/spanner;GetInstancesCallback;TypeVar[@google-cloud/spanner/common.PagedCallback.0]",
-            "@google-cloud/spanner;Instance;@google-cloud/spanner;InstanceStatic;Instance",
-            "@google-cloud/spanner;Instance;@google-cloud/spanner;Spanner;Member[instance].ReturnValue",
-            "@google-cloud/spanner;InstanceStatic;@google-cloud/spanner/instance;;Member[Instance]",
-            "@google-cloud/spanner;InstanceStatic;@google-cloud/spanner/instance;InstanceStatic;",
-            "@google-cloud/spanner;InstanceStatic;@google-cloud/spanner;;Member[Instance]",
-            "@google-cloud/spanner;PartitionedDml;@google-cloud/spanner/transaction;PartitionedDml;",
-            "@google-cloud/spanner;PartitionedDml;@google-cloud/spanner;PartitionedDmlStatic;Instance",
-            "@google-cloud/spanner;PartitionedDml;@google-cloud/spanner;Session;Member[partitionedDml].ReturnValue",
-            "@google-cloud/spanner;PartitionedDmlStatic;@google-cloud/spanner/transaction;;Member[PartitionedDml]",
-            "@google-cloud/spanner;PartitionedDmlStatic;@google-cloud/spanner/transaction;PartitionedDmlStatic;",
-            "@google-cloud/spanner;PartitionedDmlStatic;@google-cloud/spanner;;Member[PartitionedDml]",
-            "@google-cloud/spanner;Session;@google-cloud/spanner/batch-transaction;TransactionIdentifier;Member[session]",
-            "@google-cloud/spanner;Session;@google-cloud/spanner/database;BatchCreateSessionsCallback;TypeVar[@google-cloud/spanner/common.ResourceCallback.0].ArrayElement",
-            "@google-cloud/spanner;Session;@google-cloud/spanner/database;CreateSessionCallback;TypeVar[@google-cloud/spanner/common.ResourceCallback.0]",
-            "@google-cloud/spanner;Session;@google-cloud/spanner/database;GetSessionsCallback;TypeVar[@google-cloud/spanner/common.RequestCallback.0]",
-            "@google-cloud/spanner;Session;@google-cloud/spanner/database;PoolRequestCallback;TypeVar[@google-cloud/spanner/common.RequestCallback.0]",
-            "@google-cloud/spanner;Session;@google-cloud/spanner/session-pool;GetReadSessionCallback;TypeVar[@google-cloud/spanner/common.NormalCallback.0]",
-            "@google-cloud/spanner;Session;@google-cloud/spanner/session-pool;GetWriteSessionCallback;Argument[1]",
-            "@google-cloud/spanner;Session;@google-cloud/spanner/session-pool;SessionPoolInterface;Member[release].Argument[0]",
-            "@google-cloud/spanner;Session;@google-cloud/spanner/session;Session;",
-            "@google-cloud/spanner;Session;@google-cloud/spanner/transaction-runner;Runner;Member[session]",
-            "@google-cloud/spanner;Session;@google-cloud/spanner;Database;Member[_runPartitionedUpdate].Argument[0]",
-            "@google-cloud/spanner;Session;@google-cloud/spanner;Database;Member[makePooledRequest_].WithArity[1].ReturnValue.Awaited",
-            "@google-cloud/spanner;Session;@google-cloud/spanner;Database;Member[session].ReturnValue",
-            "@google-cloud/spanner;Session;@google-cloud/spanner;SessionPool;Member[_acquire,_getSession].ReturnValue.Awaited",
-            "@google-cloud/spanner;Session;@google-cloud/spanner;SessionPool;Member[_borrow,_destroy,_isValidSession,_ping,_prepareTransaction,_release,release].Argument[0]",
-            "@google-cloud/spanner;Session;@google-cloud/spanner;SessionPool;Member[_borrowFrom,_borrowNextAvailableSession].ReturnValue",
-            "@google-cloud/spanner;Session;@google-cloud/spanner;SessionPool;Member[_getIdleSessions].ReturnValue.ArrayElement",
-            "@google-cloud/spanner;Session;@google-cloud/spanner;SessionStatic;Instance",
-            "@google-cloud/spanner;Session;@google-cloud/spanner;Snapshot;Member[session]",
-            "@google-cloud/spanner;SessionPool;@google-cloud/spanner/instance;CreateDatabaseOptions;Member[poolCtor]",
-            "@google-cloud/spanner;SessionPool;@google-cloud/spanner/session-pool;SessionPool;",
-            "@google-cloud/spanner;SessionPool;@google-cloud/spanner;SessionPoolStatic;Instance",
-            "@google-cloud/spanner;SessionPoolStatic;@google-cloud/spanner/session-pool;;Member[SessionPool]",
-            "@google-cloud/spanner;SessionPoolStatic;@google-cloud/spanner/session-pool;SessionPoolStatic;",
-            "@google-cloud/spanner;SessionPoolStatic;@google-cloud/spanner;;Member[SessionPool]",
-            "@google-cloud/spanner;SessionStatic;@google-cloud/spanner/session;;Member[Session]",
-            "@google-cloud/spanner;SessionStatic;@google-cloud/spanner/session;SessionStatic;",
-            "@google-cloud/spanner;SessionStatic;@google-cloud/spanner;;Member[Session]",
-            "@google-cloud/spanner;Snapshot;@google-cloud/spanner/batch-transaction;BatchTransaction;",
-            "@google-cloud/spanner;Snapshot;@google-cloud/spanner/database;GetSnapshotCallback;TypeVar[@google-cloud/spanner/common.NormalCallback.0]",
-            "@google-cloud/spanner;Snapshot;@google-cloud/spanner/transaction;Dml;",
-            "@google-cloud/spanner;Snapshot;@google-cloud/spanner/transaction;Snapshot;",
-            "@google-cloud/spanner;Snapshot;@google-cloud/spanner;Session;Member[snapshot].ReturnValue",
-            "@google-cloud/spanner;Snapshot;@google-cloud/spanner;SnapshotStatic;Instance",
-            "@google-cloud/spanner;SnapshotStatic;@google-cloud/spanner/transaction;;Member[Snapshot]",
-            "@google-cloud/spanner;SnapshotStatic;@google-cloud/spanner/transaction;SnapshotStatic;",
-            "@google-cloud/spanner;SnapshotStatic;@google-cloud/spanner;;Member[Snapshot]",
-            "@google-cloud/spanner;Spanner;@google-cloud/spanner;InstanceStatic;Argument[0]",
-            "@google-cloud/spanner;Spanner;@google-cloud/spanner;SpannerStatic;Instance",
-            "@google-cloud/spanner;SpannerStatic;@google-cloud/spanner;;Member[Spanner]",
-            "@google-cloud/spanner;Table;@google-cloud/spanner/table;CreateTableCallback;TypeVar[@google-cloud/spanner/common.LongRunningCallback.0]",
-            "@google-cloud/spanner;Table;@google-cloud/spanner/table;Table;",
-            "@google-cloud/spanner;Table;@google-cloud/spanner;Database;Member[table].ReturnValue",
-            "@google-cloud/spanner;Table;@google-cloud/spanner;TableStatic;Instance",
-            "@google-cloud/spanner;TableStatic;@google-cloud/spanner/table;;Member[Table]",
-            "@google-cloud/spanner;TableStatic;@google-cloud/spanner/table;TableStatic;",
-            "@google-cloud/spanner;TableStatic;@google-cloud/spanner;;Member[Table]",
-            "@google-cloud/spanner;Transaction;@google-cloud/spanner/database;GetTransactionCallback;TypeVar[@google-cloud/spanner/common.NormalCallback.0]",
-            "@google-cloud/spanner;Transaction;@google-cloud/spanner/session-pool;GetWriteSessionCallback;Argument[2]",
-            "@google-cloud/spanner;Transaction;@google-cloud/spanner/transaction-runner;AsyncRunTransactionCallback;Argument[0]",
-            "@google-cloud/spanner;Transaction;@google-cloud/spanner/transaction-runner;RunTransactionCallback;TypeVar[@google-cloud/spanner/common.NormalCallback.0]",
-            "@google-cloud/spanner;Transaction;@google-cloud/spanner/transaction-runner;Runner;Member[getTransaction].ReturnValue.Awaited",
-            "@google-cloud/spanner;Transaction;@google-cloud/spanner/transaction-runner;Runner;Member[transaction]",
-            "@google-cloud/spanner;Transaction;@google-cloud/spanner/transaction;Transaction;",
-            "@google-cloud/spanner;Transaction;@google-cloud/spanner;Session;Member[transaction].ReturnValue",
-            "@google-cloud/spanner;Transaction;@google-cloud/spanner;Session;Member[txn]",
-            "@google-cloud/spanner;Transaction;@google-cloud/spanner;TransactionStatic;Instance",
-            "@google-cloud/spanner;TransactionStatic;@google-cloud/spanner/transaction;;Member[Transaction]",
-            "@google-cloud/spanner;TransactionStatic;@google-cloud/spanner/transaction;TransactionStatic;",
-            "@google-cloud/spanner;TransactionStatic;@google-cloud/spanner;;Member[Transaction]",
-            "@google-cloud/spanner;v1.SpannerClient;@google-cloud/spanner/v1/spanner_client;SpannerClient;",
-            "@google-cloud/spanner;v1.SpannerClient;@google-cloud/spanner;v1.SpannerClientStatic;Instance",
-            "@google-cloud/spanner;v1.SpannerClientStatic;@google-cloud/spanner/v1/spanner_client;;Member[SpannerClient]",
-            "@google-cloud/spanner;v1.SpannerClientStatic;@google-cloud/spanner/v1/spanner_client;SpannerClientStatic;",
-            "@google-cloud/spanner;v1.SpannerClientStatic;@google-cloud/spanner;;Member[v1].Member[SpannerClient]"
+            "@google-cloud/spanner.BackupStatic;@google-cloud/spanner/backup.BackupStatic;",
+            "@google-cloud/spanner.BackupStatic;@google-cloud/spanner/backup;Member[Backup]",
+            "@google-cloud/spanner.BackupStatic;@google-cloud/spanner;Member[Backup]",
+            "@google-cloud/spanner.Database;@google-cloud/spanner.DatabaseStatic;Instance",
+            "@google-cloud/spanner.Database;@google-cloud/spanner.Instance;Member[database].ReturnValue",
+            "@google-cloud/spanner.Database;@google-cloud/spanner.SessionPool;Member[database]",
+            "@google-cloud/spanner.Database;@google-cloud/spanner.SessionPoolStatic;Argument[0]",
+            "@google-cloud/spanner.Database;@google-cloud/spanner.SessionStatic;Argument[0]",
+            "@google-cloud/spanner.Database;@google-cloud/spanner.Table;Member[database]",
+            "@google-cloud/spanner.Database;@google-cloud/spanner.TableStatic;Argument[0]",
+            "@google-cloud/spanner.Database;@google-cloud/spanner/database.Database;",
+            "@google-cloud/spanner.Database;@google-cloud/spanner/database.DatabaseCallback;TypeVar[@google-cloud/spanner/common.ResourceCallback.0]",
+            "@google-cloud/spanner.Database;@google-cloud/spanner/database.RestoreDatabaseCallback;TypeVar[@google-cloud/spanner/common.LongRunningCallback.0]",
+            "@google-cloud/spanner.Database;@google-cloud/spanner/database.SessionPoolConstructor;Argument[0]",
+            "@google-cloud/spanner.Database;@google-cloud/spanner/instance.CreateDatabaseCallback;TypeVar[@google-cloud/spanner/common.LongRunningCallback.0]",
+            "@google-cloud/spanner.Database;@google-cloud/spanner/instance.GetDatabasesCallback;TypeVar[@google-cloud/spanner/common.RequestCallback.0]",
+            "@google-cloud/spanner.DatabaseStatic;@google-cloud/spanner/database.DatabaseStatic;",
+            "@google-cloud/spanner.DatabaseStatic;@google-cloud/spanner/database;Member[Database]",
+            "@google-cloud/spanner.DatabaseStatic;@google-cloud/spanner;Member[Database]",
+            "@google-cloud/spanner.GetInstancesCallback;@google-cloud/spanner.Spanner;Member[getInstances].Argument[1]",
+            "@google-cloud/spanner.GetInstancesCallback;@google-cloud/spanner.Spanner;Member[getInstances].WithArity[1].Argument[0]",
+            "@google-cloud/spanner.GetInstancesCallback;@google-cloud/spanner/build/src.GetInstancesCallback;",
+            "@google-cloud/spanner.Instance;@google-cloud/spanner.BackupStatic;Argument[0]",
+            "@google-cloud/spanner.Instance;@google-cloud/spanner.DatabaseStatic;Argument[0]",
+            "@google-cloud/spanner.Instance;@google-cloud/spanner.GetInstancesCallback;TypeVar[@google-cloud/spanner/common.PagedCallback.0]",
+            "@google-cloud/spanner.Instance;@google-cloud/spanner.InstanceStatic;Instance",
+            "@google-cloud/spanner.Instance;@google-cloud/spanner.Spanner;Member[instance].ReturnValue",
+            "@google-cloud/spanner.Instance;@google-cloud/spanner/instance.CreateInstanceCallback;TypeVar[@google-cloud/spanner/common.LongRunningCallback.0]",
+            "@google-cloud/spanner.Instance;@google-cloud/spanner/instance.GetInstanceCallback;TypeVar[@google-cloud/spanner/common.ResourceCallback.0]",
+            "@google-cloud/spanner.Instance;@google-cloud/spanner/instance.Instance;",
+            "@google-cloud/spanner.InstanceStatic;@google-cloud/spanner/instance.InstanceStatic;",
+            "@google-cloud/spanner.InstanceStatic;@google-cloud/spanner/instance;Member[Instance]",
+            "@google-cloud/spanner.InstanceStatic;@google-cloud/spanner;Member[Instance]",
+            "@google-cloud/spanner.PartitionedDml;@google-cloud/spanner.PartitionedDmlStatic;Instance",
+            "@google-cloud/spanner.PartitionedDml;@google-cloud/spanner.Session;Member[partitionedDml].ReturnValue",
+            "@google-cloud/spanner.PartitionedDml;@google-cloud/spanner/transaction.PartitionedDml;",
+            "@google-cloud/spanner.PartitionedDmlStatic;@google-cloud/spanner/transaction.PartitionedDmlStatic;",
+            "@google-cloud/spanner.PartitionedDmlStatic;@google-cloud/spanner/transaction;Member[PartitionedDml]",
+            "@google-cloud/spanner.PartitionedDmlStatic;@google-cloud/spanner;Member[PartitionedDml]",
+            "@google-cloud/spanner.Session;@google-cloud/spanner.Database;Member[_runPartitionedUpdate].Argument[0]",
+            "@google-cloud/spanner.Session;@google-cloud/spanner.Database;Member[makePooledRequest_].WithArity[1].ReturnValue.Awaited",
+            "@google-cloud/spanner.Session;@google-cloud/spanner.Database;Member[session].ReturnValue",
+            "@google-cloud/spanner.Session;@google-cloud/spanner.SessionPool;Member[_acquire,_getSession].ReturnValue.Awaited",
+            "@google-cloud/spanner.Session;@google-cloud/spanner.SessionPool;Member[_borrow,_destroy,_isValidSession,_ping,_prepareTransaction,_release,release].Argument[0]",
+            "@google-cloud/spanner.Session;@google-cloud/spanner.SessionPool;Member[_borrowFrom,_borrowNextAvailableSession].ReturnValue",
+            "@google-cloud/spanner.Session;@google-cloud/spanner.SessionPool;Member[_getIdleSessions].ReturnValue.ArrayElement",
+            "@google-cloud/spanner.Session;@google-cloud/spanner.SessionStatic;Instance",
+            "@google-cloud/spanner.Session;@google-cloud/spanner.Snapshot;Member[session]",
+            "@google-cloud/spanner.Session;@google-cloud/spanner/batch-transaction.TransactionIdentifier;Member[session]",
+            "@google-cloud/spanner.Session;@google-cloud/spanner/database.BatchCreateSessionsCallback;TypeVar[@google-cloud/spanner/common.ResourceCallback.0].ArrayElement",
+            "@google-cloud/spanner.Session;@google-cloud/spanner/database.CreateSessionCallback;TypeVar[@google-cloud/spanner/common.ResourceCallback.0]",
+            "@google-cloud/spanner.Session;@google-cloud/spanner/database.GetSessionsCallback;TypeVar[@google-cloud/spanner/common.RequestCallback.0]",
+            "@google-cloud/spanner.Session;@google-cloud/spanner/database.PoolRequestCallback;TypeVar[@google-cloud/spanner/common.RequestCallback.0]",
+            "@google-cloud/spanner.Session;@google-cloud/spanner/session-pool.GetReadSessionCallback;TypeVar[@google-cloud/spanner/common.NormalCallback.0]",
+            "@google-cloud/spanner.Session;@google-cloud/spanner/session-pool.GetWriteSessionCallback;Argument[1]",
+            "@google-cloud/spanner.Session;@google-cloud/spanner/session-pool.SessionPoolInterface;Member[release].Argument[0]",
+            "@google-cloud/spanner.Session;@google-cloud/spanner/session.Session;",
+            "@google-cloud/spanner.Session;@google-cloud/spanner/transaction-runner.Runner;Member[session]",
+            "@google-cloud/spanner.SessionPool;@google-cloud/spanner.SessionPoolStatic;Instance",
+            "@google-cloud/spanner.SessionPool;@google-cloud/spanner/instance.CreateDatabaseOptions;Member[poolCtor]",
+            "@google-cloud/spanner.SessionPool;@google-cloud/spanner/session-pool.SessionPool;",
+            "@google-cloud/spanner.SessionPoolStatic;@google-cloud/spanner/session-pool.SessionPoolStatic;",
+            "@google-cloud/spanner.SessionPoolStatic;@google-cloud/spanner/session-pool;Member[SessionPool]",
+            "@google-cloud/spanner.SessionPoolStatic;@google-cloud/spanner;Member[SessionPool]",
+            "@google-cloud/spanner.SessionStatic;@google-cloud/spanner/session.SessionStatic;",
+            "@google-cloud/spanner.SessionStatic;@google-cloud/spanner/session;Member[Session]",
+            "@google-cloud/spanner.SessionStatic;@google-cloud/spanner;Member[Session]",
+            "@google-cloud/spanner.Snapshot;@google-cloud/spanner.Session;Member[snapshot].ReturnValue",
+            "@google-cloud/spanner.Snapshot;@google-cloud/spanner.SnapshotStatic;Instance",
+            "@google-cloud/spanner.Snapshot;@google-cloud/spanner/batch-transaction.BatchTransaction;",
+            "@google-cloud/spanner.Snapshot;@google-cloud/spanner/database.GetSnapshotCallback;TypeVar[@google-cloud/spanner/common.NormalCallback.0]",
+            "@google-cloud/spanner.Snapshot;@google-cloud/spanner/transaction.Dml;",
+            "@google-cloud/spanner.Snapshot;@google-cloud/spanner/transaction.Snapshot;",
+            "@google-cloud/spanner.SnapshotStatic;@google-cloud/spanner/transaction.SnapshotStatic;",
+            "@google-cloud/spanner.SnapshotStatic;@google-cloud/spanner/transaction;Member[Snapshot]",
+            "@google-cloud/spanner.SnapshotStatic;@google-cloud/spanner;Member[Snapshot]",
+            "@google-cloud/spanner.Spanner;@google-cloud/spanner.InstanceStatic;Argument[0]",
+            "@google-cloud/spanner.Spanner;@google-cloud/spanner.SpannerStatic;Instance",
+            "@google-cloud/spanner.SpannerStatic;@google-cloud/spanner;Member[Spanner]",
+            "@google-cloud/spanner.Table;@google-cloud/spanner.Database;Member[table].ReturnValue",
+            "@google-cloud/spanner.Table;@google-cloud/spanner.TableStatic;Instance",
+            "@google-cloud/spanner.Table;@google-cloud/spanner/table.CreateTableCallback;TypeVar[@google-cloud/spanner/common.LongRunningCallback.0]",
+            "@google-cloud/spanner.Table;@google-cloud/spanner/table.Table;",
+            "@google-cloud/spanner.TableStatic;@google-cloud/spanner/table.TableStatic;",
+            "@google-cloud/spanner.TableStatic;@google-cloud/spanner/table;Member[Table]",
+            "@google-cloud/spanner.TableStatic;@google-cloud/spanner;Member[Table]",
+            "@google-cloud/spanner.Transaction;@google-cloud/spanner.Session;Member[transaction].ReturnValue",
+            "@google-cloud/spanner.Transaction;@google-cloud/spanner.Session;Member[txn]",
+            "@google-cloud/spanner.Transaction;@google-cloud/spanner.TransactionStatic;Instance",
+            "@google-cloud/spanner.Transaction;@google-cloud/spanner/database.GetTransactionCallback;TypeVar[@google-cloud/spanner/common.NormalCallback.0]",
+            "@google-cloud/spanner.Transaction;@google-cloud/spanner/session-pool.GetWriteSessionCallback;Argument[2]",
+            "@google-cloud/spanner.Transaction;@google-cloud/spanner/transaction-runner.AsyncRunTransactionCallback;Argument[0]",
+            "@google-cloud/spanner.Transaction;@google-cloud/spanner/transaction-runner.RunTransactionCallback;TypeVar[@google-cloud/spanner/common.NormalCallback.0]",
+            "@google-cloud/spanner.Transaction;@google-cloud/spanner/transaction-runner.Runner;Member[getTransaction].ReturnValue.Awaited",
+            "@google-cloud/spanner.Transaction;@google-cloud/spanner/transaction-runner.Runner;Member[transaction]",
+            "@google-cloud/spanner.Transaction;@google-cloud/spanner/transaction.Transaction;",
+            "@google-cloud/spanner.TransactionStatic;@google-cloud/spanner/transaction.TransactionStatic;",
+            "@google-cloud/spanner.TransactionStatic;@google-cloud/spanner/transaction;Member[Transaction]",
+            "@google-cloud/spanner.TransactionStatic;@google-cloud/spanner;Member[Transaction]",
+            "@google-cloud/spanner.v1.SpannerClient;@google-cloud/spanner.v1.SpannerClientStatic;Instance",
+            "@google-cloud/spanner.v1.SpannerClient;@google-cloud/spanner/v1/spanner_client.SpannerClient;",
+            "@google-cloud/spanner.v1.SpannerClientStatic;@google-cloud/spanner/v1/spanner_client.SpannerClientStatic;",
+            "@google-cloud/spanner.v1.SpannerClientStatic;@google-cloud/spanner/v1/spanner_client;Member[SpannerClient]",
+            "@google-cloud/spanner.v1.SpannerClientStatic;@google-cloud/spanner;Member[v1].Member[SpannerClient]",
+            "@google-cloud/spanner/batch-transaction.BatchTransaction;@google-cloud/spanner.Database;Member[batchTransaction].ReturnValue",
+            "@google-cloud/spanner/batch-transaction.BatchTransaction;@google-cloud/spanner/batch-transaction.BatchTransactionStatic;Instance",
+            "@google-cloud/spanner/batch-transaction.BatchTransaction;@google-cloud/spanner/database.CreateBatchTransactionCallback;TypeVar[@google-cloud/spanner/common.ResourceCallback.0]",
+            "@google-cloud/spanner/batch-transaction.BatchTransactionStatic;@google-cloud/spanner/batch-transaction;Member[BatchTransaction]",
+            "@google-cloud/spanner/batch-transaction.TransactionIdentifier;@google-cloud/spanner.Database;Member[batchTransaction].Argument[0]",
+            "@google-cloud/spanner/batch-transaction.TransactionIdentifier;@google-cloud/spanner/batch-transaction.BatchTransaction;Member[identifier].ReturnValue",
+            "@google-cloud/spanner/database.BatchCreateSessionsCallback;@google-cloud/spanner.Database;Member[batchCreateSessions].Argument[1]",
+            "@google-cloud/spanner/database.CreateBatchTransactionCallback;@google-cloud/spanner.Database;Member[createBatchTransaction].Argument[1]",
+            "@google-cloud/spanner/database.CreateBatchTransactionCallback;@google-cloud/spanner.Database;Member[createBatchTransaction].WithArity[1].Argument[0]",
+            "@google-cloud/spanner/database.CreateSessionCallback;@google-cloud/spanner.Database;Member[createSession].Argument[1]",
+            "@google-cloud/spanner/database.CreateSessionCallback;@google-cloud/spanner.Database;Member[createSession].WithArity[1].Argument[0]",
+            "@google-cloud/spanner/database.DatabaseCallback;@google-cloud/spanner.Database;Member[get].Argument[1]",
+            "@google-cloud/spanner/database.DatabaseCallback;@google-cloud/spanner.Database;Member[get].WithArity[1].Argument[0]",
+            "@google-cloud/spanner/database.GetSessionsCallback;@google-cloud/spanner.Database;Member[getSessions].Argument[1]",
+            "@google-cloud/spanner/database.GetSessionsCallback;@google-cloud/spanner.Database;Member[getSessions].WithArity[1].Argument[0]",
+            "@google-cloud/spanner/database.GetSnapshotCallback;@google-cloud/spanner.Database;Member[getSnapshot].Argument[1]",
+            "@google-cloud/spanner/database.GetSnapshotCallback;@google-cloud/spanner.Database;Member[getSnapshot].WithArity[1].Argument[0]",
+            "@google-cloud/spanner/database.GetTransactionCallback;@google-cloud/spanner.Database;Member[getTransaction].Argument[0]",
+            "@google-cloud/spanner/database.PoolRequestCallback;@google-cloud/spanner.Database;Member[makePooledRequest_].Argument[1]",
+            "@google-cloud/spanner/database.RestoreDatabaseCallback;@google-cloud/spanner.Database;Member[restore].Argument[1,2]",
+            "@google-cloud/spanner/database.SessionPoolConstructor;@google-cloud/spanner.DatabaseStatic;Argument[2]",
+            "@google-cloud/spanner/database.SessionPoolConstructor;@google-cloud/spanner.Instance;Member[database].Argument[1]",
+            "@google-cloud/spanner/instance.CreateDatabaseCallback;@google-cloud/spanner.Instance;Member[createDatabase].Argument[2]",
+            "@google-cloud/spanner/instance.CreateDatabaseCallback;@google-cloud/spanner.Instance;Member[createDatabase].WithArity[2].Argument[1]",
+            "@google-cloud/spanner/instance.CreateDatabaseOptions;@google-cloud/spanner.Instance;Member[createDatabase].WithArity[1,2,3].Argument[1]",
+            "@google-cloud/spanner/instance.CreateInstanceCallback;@google-cloud/spanner.Spanner;Member[createInstance].Argument[2]",
+            "@google-cloud/spanner/instance.GetDatabasesCallback;@google-cloud/spanner.Instance;Member[getDatabases].Argument[1]",
+            "@google-cloud/spanner/instance.GetDatabasesCallback;@google-cloud/spanner.Instance;Member[getDatabases].WithArity[1].Argument[0]",
+            "@google-cloud/spanner/instance.GetInstanceCallback;@google-cloud/spanner.Instance;Member[get].Argument[1]",
+            "@google-cloud/spanner/instance.GetInstanceCallback;@google-cloud/spanner.Instance;Member[get].WithArity[1].Argument[0]",
+            "@google-cloud/spanner/session-pool.GetReadSessionCallback;@google-cloud/spanner.SessionPool;Member[getReadSession].Argument[0]",
+            "@google-cloud/spanner/session-pool.GetReadSessionCallback;@google-cloud/spanner/session-pool.SessionPoolInterface;Member[getReadSession].Argument[0]",
+            "@google-cloud/spanner/session-pool.GetWriteSessionCallback;@google-cloud/spanner.SessionPool;Member[getWriteSession].Argument[0]",
+            "@google-cloud/spanner/session-pool.GetWriteSessionCallback;@google-cloud/spanner/session-pool.SessionPoolInterface;Member[getWriteSession].Argument[0]",
+            "@google-cloud/spanner/session-pool.SessionPoolInterface;@google-cloud/spanner.Database;Member[pool_]",
+            "@google-cloud/spanner/session-pool.SessionPoolInterface;@google-cloud/spanner.SessionPool;",
+            "@google-cloud/spanner/session-pool.SessionPoolInterface;@google-cloud/spanner/database.SessionPoolConstructor;Instance",
+            "@google-cloud/spanner/table.CreateTableCallback;@google-cloud/spanner.Database;Member[createTable].Argument[2]",
+            "@google-cloud/spanner/table.CreateTableCallback;@google-cloud/spanner.Database;Member[createTable].WithArity[2].Argument[1]",
+            "@google-cloud/spanner/table.CreateTableCallback;@google-cloud/spanner.Table;Member[create].Argument[2]",
+            "@google-cloud/spanner/table.CreateTableCallback;@google-cloud/spanner.Table;Member[create].WithArity[2].Argument[1]",
+            "@google-cloud/spanner/transaction-runner.AsyncRunTransactionCallback;@google-cloud/spanner.Database;Member[runTransactionAsync].Argument[1]",
+            "@google-cloud/spanner/transaction-runner.AsyncRunTransactionCallback;@google-cloud/spanner.Database;Member[runTransactionAsync].WithArity[1].Argument[0]",
+            "@google-cloud/spanner/transaction-runner.AsyncRunTransactionCallback;@google-cloud/spanner/transaction-runner.AsyncTransactionRunnerStatic;Argument[2]",
+            "@google-cloud/spanner/transaction-runner.AsyncTransactionRunner;@google-cloud/spanner/transaction-runner.AsyncTransactionRunnerStatic;Instance",
+            "@google-cloud/spanner/transaction-runner.AsyncTransactionRunnerStatic;@google-cloud/spanner/transaction-runner;Member[AsyncTransactionRunner]",
+            "@google-cloud/spanner/transaction-runner.RunTransactionCallback;@google-cloud/spanner.Database;Member[runTransaction].Argument[1]",
+            "@google-cloud/spanner/transaction-runner.RunTransactionCallback;@google-cloud/spanner.Database;Member[runTransaction].WithArity[1].Argument[0]",
+            "@google-cloud/spanner/transaction-runner.RunTransactionCallback;@google-cloud/spanner/transaction-runner.TransactionRunnerStatic;Argument[2]",
+            "@google-cloud/spanner/transaction-runner.Runner;@google-cloud/spanner/transaction-runner.AsyncTransactionRunner;",
+            "@google-cloud/spanner/transaction-runner.Runner;@google-cloud/spanner/transaction-runner.RunnerStatic;Instance",
+            "@google-cloud/spanner/transaction-runner.Runner;@google-cloud/spanner/transaction-runner.TransactionRunner;",
+            "@google-cloud/spanner/transaction-runner.RunnerStatic;@google-cloud/spanner/transaction-runner;Member[Runner]",
+            "@google-cloud/spanner/transaction-runner.TransactionRunner;@google-cloud/spanner/transaction-runner.TransactionRunnerStatic;Instance",
+            "@google-cloud/spanner/transaction-runner.TransactionRunnerStatic;@google-cloud/spanner/transaction-runner;Member[TransactionRunner]",
+            "@google-cloud/spanner/transaction.Dml;@google-cloud/spanner.PartitionedDml;",
+            "@google-cloud/spanner/transaction.Dml;@google-cloud/spanner.Transaction;",
+            "@google-cloud/spanner/transaction.Dml;@google-cloud/spanner/transaction.DmlStatic;Instance",
+            "@google-cloud/spanner/transaction.DmlStatic;@google-cloud/spanner/transaction;Member[Dml]"
         ],
         "summaries": [],
         "typeVariables": [
diff --git a/javascript/ql/lib/semmle/javascript/frameworks/sqlite3/Model.qll b/javascript/ql/lib/semmle/javascript/frameworks/sqlite3/Model.qll
index 727408e7569..86bc0efd72b 100644
--- a/javascript/ql/lib/semmle/javascript/frameworks/sqlite3/Model.qll
+++ b/javascript/ql/lib/semmle/javascript/frameworks/sqlite3/Model.qll
@@ -6,21 +6,21 @@ private class Types extends ModelInput::TypeModelCsv {
   override predicate row(string row) {
     row =
       [
-        "sqlite3;Database;sqlite3;;Member[cached].Member[Database].ReturnValue", //
-        "sqlite3;Database;sqlite3;Database;Member[addListener,all,each,exec,get,on,once,prependListener,prependOnceListener,run].ReturnValue", //
-        "sqlite3;Database;sqlite3;DatabaseStatic;Instance", //
-        "sqlite3;Database;sqlite3;Statement;Member[finalize].ReturnValue", //
-        "sqlite3;DatabaseStatic;sqlite3;;Member[Database]", //
-        "sqlite3;DatabaseStatic;sqlite3;sqlite3;Member[Database]", //
-        "sqlite3;RunResult;sqlite3;sqlite3;Member[RunResult]", //
-        "sqlite3;Statement;sqlite3;Database;Member[prepare].ReturnValue", //
-        "sqlite3;Statement;sqlite3;RunResult;", //
-        "sqlite3;Statement;sqlite3;Statement;Member[all,bind,each,get,reset,run].ReturnValue", //
-        "sqlite3;Statement;sqlite3;StatementStatic;Instance", //
-        "sqlite3;StatementStatic;sqlite3;;Member[Statement]", //
-        "sqlite3;StatementStatic;sqlite3;sqlite3;Member[Statement]", //
-        "sqlite3;sqlite3;sqlite3;;Member[verbose].ReturnValue", //
-        "sqlite3;sqlite3;sqlite3;sqlite3;Member[verbose].ReturnValue", //
+        "sqlite3.Database;sqlite3.Database;Member[addListener,all,each,exec,get,on,once,prependListener,prependOnceListener,run].ReturnValue", //
+        "sqlite3.Database;sqlite3.DatabaseStatic;Instance", //
+        "sqlite3.Database;sqlite3.Statement;Member[finalize].ReturnValue", //
+        "sqlite3.Database;sqlite3;Member[cached].Member[Database].ReturnValue", //
+        "sqlite3.DatabaseStatic;sqlite3.sqlite3;Member[Database]", //
+        "sqlite3.DatabaseStatic;sqlite3;Member[Database]", //
+        "sqlite3.RunResult;sqlite3.sqlite3;Member[RunResult]", //
+        "sqlite3.Statement;sqlite3.Database;Member[prepare].ReturnValue", //
+        "sqlite3.Statement;sqlite3.RunResult;", //
+        "sqlite3.Statement;sqlite3.Statement;Member[all,bind,each,get,reset,run].ReturnValue", //
+        "sqlite3.Statement;sqlite3.StatementStatic;Instance", //
+        "sqlite3.StatementStatic;sqlite3.sqlite3;Member[Statement]", //
+        "sqlite3.StatementStatic;sqlite3;Member[Statement]", //
+        "sqlite3.sqlite3;sqlite3.sqlite3;Member[verbose].ReturnValue", //
+        "sqlite3.sqlite3;sqlite3;Member[verbose].ReturnValue", //
       ]
   }
 }
@@ -29,9 +29,9 @@ private class Summaries extends ModelInput::SummaryModelCsv {
   override predicate row(string row) {
     row =
       [
-        "sqlite3;Database;;;Member[addListener,all,each,exec,get,on,once,prependListener,prependOnceListener,run].ReturnValue;type", //
-        "sqlite3;Statement;;;Member[all,bind,each,get,reset,run].ReturnValue;type", //
-        "sqlite3;sqlite3;;;Member[verbose].ReturnValue;type", //
+        "sqlite3.Database;;;Member[addListener,all,each,exec,get,on,once,prependListener,prependOnceListener,run].ReturnValue;type", //
+        "sqlite3.Statement;;;Member[all,bind,each,get,reset,run].ReturnValue;type", //
+        "sqlite3.sqlite3;;;Member[verbose].ReturnValue;type", //
       ]
   }
 }
diff --git a/javascript/ql/lib/semmle/javascript/frameworks/sqlite3/model.json b/javascript/ql/lib/semmle/javascript/frameworks/sqlite3/model.json
index 2cc41498ead..2d9a919bd1f 100644
--- a/javascript/ql/lib/semmle/javascript/frameworks/sqlite3/model.json
+++ b/javascript/ql/lib/semmle/javascript/frameworks/sqlite3/model.json
@@ -8,7 +8,7 @@
     "language": "javascript",
     "usedTypes": {
         "sources": [
-            "sqlite3;Database"
+            "sqlite3.Database"
         ]
     },
     "model": {
@@ -17,26 +17,26 @@
     "generatedModel": {
         "//": "Autogenerated section. Manual edits in here will be lost.",
         "typeDefinitions": [
-            "sqlite3;Database;sqlite3;;Member[cached].Member[Database].ReturnValue",
-            "sqlite3;Database;sqlite3;Database;Member[addListener,all,each,exec,get,on,once,prependListener,prependOnceListener,run].ReturnValue",
-            "sqlite3;Database;sqlite3;DatabaseStatic;Instance",
-            "sqlite3;Database;sqlite3;Statement;Member[finalize].ReturnValue",
-            "sqlite3;DatabaseStatic;sqlite3;;Member[Database]",
-            "sqlite3;DatabaseStatic;sqlite3;sqlite3;Member[Database]",
-            "sqlite3;RunResult;sqlite3;sqlite3;Member[RunResult]",
-            "sqlite3;Statement;sqlite3;Database;Member[prepare].ReturnValue",
-            "sqlite3;Statement;sqlite3;RunResult;",
-            "sqlite3;Statement;sqlite3;Statement;Member[all,bind,each,get,reset,run].ReturnValue",
-            "sqlite3;Statement;sqlite3;StatementStatic;Instance",
-            "sqlite3;StatementStatic;sqlite3;;Member[Statement]",
-            "sqlite3;StatementStatic;sqlite3;sqlite3;Member[Statement]",
-            "sqlite3;sqlite3;sqlite3;;Member[verbose].ReturnValue",
-            "sqlite3;sqlite3;sqlite3;sqlite3;Member[verbose].ReturnValue"
+            "sqlite3.Database;sqlite3.Database;Member[addListener,all,each,exec,get,on,once,prependListener,prependOnceListener,run].ReturnValue",
+            "sqlite3.Database;sqlite3.DatabaseStatic;Instance",
+            "sqlite3.Database;sqlite3.Statement;Member[finalize].ReturnValue",
+            "sqlite3.Database;sqlite3;Member[cached].Member[Database].ReturnValue",
+            "sqlite3.DatabaseStatic;sqlite3.sqlite3;Member[Database]",
+            "sqlite3.DatabaseStatic;sqlite3;Member[Database]",
+            "sqlite3.RunResult;sqlite3.sqlite3;Member[RunResult]",
+            "sqlite3.Statement;sqlite3.Database;Member[prepare].ReturnValue",
+            "sqlite3.Statement;sqlite3.RunResult;",
+            "sqlite3.Statement;sqlite3.Statement;Member[all,bind,each,get,reset,run].ReturnValue",
+            "sqlite3.Statement;sqlite3.StatementStatic;Instance",
+            "sqlite3.StatementStatic;sqlite3.sqlite3;Member[Statement]",
+            "sqlite3.StatementStatic;sqlite3;Member[Statement]",
+            "sqlite3.sqlite3;sqlite3.sqlite3;Member[verbose].ReturnValue",
+            "sqlite3.sqlite3;sqlite3;Member[verbose].ReturnValue"
         ],
         "summaries": [
-            "sqlite3;Database;;;Member[addListener,all,each,exec,get,on,once,prependListener,prependOnceListener,run].ReturnValue;type",
-            "sqlite3;Statement;;;Member[all,bind,each,get,reset,run].ReturnValue;type",
-            "sqlite3;sqlite3;;;Member[verbose].ReturnValue;type"
+            "sqlite3.Database;;;Member[addListener,all,each,exec,get,on,once,prependListener,prependOnceListener,run].ReturnValue;type",
+            "sqlite3.Statement;;;Member[all,bind,each,get,reset,run].ReturnValue;type",
+            "sqlite3.sqlite3;;;Member[verbose].ReturnValue;type"
         ],
         "typeVariables": []
     }
diff --git a/javascript/ql/test/ApiGraphs/typed/NodeOfType.expected b/javascript/ql/test/ApiGraphs/typed/NodeOfType.expected
index 0f237bfe6f2..da535a9c14c 100644
--- a/javascript/ql/test/ApiGraphs/typed/NodeOfType.expected
+++ b/javascript/ql/test/ApiGraphs/typed/NodeOfType.expected
@@ -24,7 +24,12 @@ getANodeOfType
 | puppeteer |  | index.ts:26:8:26:21 | * as puppeteer |
 | puppeteer | Browser | index.ts:30:22:30:33 | this.browser |
 getANodeOfTypeRaw
+| body-parser |  | index.ts:4:20:4:41 | require ... arser") |
+| express |  | index.ts:3:17:3:34 | require("express") |
+| mongodb |  | index.ts:1:8:1:19 | * as mongodb |
 | mongodb | Collection | index.ts:14:3:14:17 | getCollection() |
+| mongoose |  | index.ts:17:8:17:20 | * as mongoose |
 | mongoose | Model | index.ts:22:3:22:20 | getMongooseModel() |
 | mongoose | Query | index.ts:23:3:23:20 | getMongooseQuery() |
+| puppeteer |  | index.ts:26:8:26:21 | * as puppeteer |
 | puppeteer | Browser | index.ts:30:22:30:33 | this.browser |
diff --git a/javascript/ql/test/library-tests/frameworks/data/test.expected b/javascript/ql/test/library-tests/frameworks/data/test.expected
index 138547cc7ff..39439f64629 100644
--- a/javascript/ql/test/library-tests/frameworks/data/test.expected
+++ b/javascript/ql/test/library-tests/frameworks/data/test.expected
@@ -147,3 +147,4 @@ syntaxErrors
 | Member[foo]Member[bar] |
 | Member[foo]] |
 | Member[foo]].Member[bar] |
+warning
diff --git a/javascript/ql/test/library-tests/frameworks/data/test.ql b/javascript/ql/test/library-tests/frameworks/data/test.ql
index 053e41e22ff..c5e3ce9ea8c 100644
--- a/javascript/ql/test/library-tests/frameworks/data/test.ql
+++ b/javascript/ql/test/library-tests/frameworks/data/test.ql
@@ -4,17 +4,17 @@ import semmle.javascript.frameworks.data.internal.AccessPathSyntax as AccessPath
 
 class Steps extends ModelInput::SummaryModelCsv {
   override predicate row(string row) {
-    // package;type;path;input;output;kind
+    // type;path;input;output;kind
     row =
       [
-        "testlib;;Member[preserveTaint];Argument[0];ReturnValue;taint",
-        "testlib;;Member[taintIntoCallback];Argument[0];Argument[1..2].Parameter[0];taint",
-        "testlib;;Member[taintIntoCallbackThis];Argument[0];Argument[1..2].Parameter[this];taint",
-        "testlib;;Member[preserveArgZeroAndTwo];Argument[0,2];ReturnValue;taint",
-        "testlib;;Member[preserveAllButFirstArgument];Argument[1..];ReturnValue;taint",
-        "testlib;;Member[preserveAllIfCall].Call;Argument[0..];ReturnValue;taint",
-        "testlib;;Member[getSource].ReturnValue.Member[continue];Argument[this];ReturnValue;taint",
-        "testlib;~HasThisFlow;;;Member[getThis].ReturnValue;type",
+        "testlib;Member[preserveTaint];Argument[0];ReturnValue;taint",
+        "testlib;Member[taintIntoCallback];Argument[0];Argument[1..2].Parameter[0];taint",
+        "testlib;Member[taintIntoCallbackThis];Argument[0];Argument[1..2].Parameter[this];taint",
+        "testlib;Member[preserveArgZeroAndTwo];Argument[0,2];ReturnValue;taint",
+        "testlib;Member[preserveAllButFirstArgument];Argument[1..];ReturnValue;taint",
+        "testlib;Member[preserveAllIfCall].Call;Argument[0..];ReturnValue;taint",
+        "testlib;Member[getSource].ReturnValue.Member[continue];Argument[this];ReturnValue;taint",
+        "testlib.~HasThisFlow;;;Member[getThis].ReturnValue;type",
       ]
   }
 }
@@ -23,37 +23,37 @@ class TypeDefs extends ModelInput::TypeModelCsv {
   override predicate row(string row) {
     row =
       [
-        "testlib;~HasThisFlow;testlib;;Member[typevar]",
-        "testlib;~HasThisFlow;testlib;~HasThisFlow;Member[left,right,x]",
+        "testlib.~HasThisFlow;testlib;Member[typevar]",
+        "testlib.~HasThisFlow;testlib.~HasThisFlow;Member[left,right,x]",
       ]
   }
 }
 
 class Sinks extends ModelInput::SinkModelCsv {
   override predicate row(string row) {
-    // package;type;path;kind
+    // type;path;kind
     row =
       [
-        "testlib;;Member[mySink].Argument[0];test-sink",
-        "testlib;;Member[mySinkIfCall].Call.Argument[0];test-sink",
-        "testlib;;Member[mySinkIfNew].NewCall.Argument[0];test-sink",
-        "testlib;;Member[mySinkLast].Argument[N-1];test-sink",
-        "testlib;;Member[mySinkSecondLast].Argument[N-2];test-sink",
-        "testlib;;Member[mySinkTwoLast].Argument[N-1,N-2];test-sink",
-        "testlib;;Member[mySinkTwoLastRange].Argument[N-2..N-1];test-sink",
-        "testlib;;Member[mySinkExceptLast].Argument[0..N-2];test-sink",
-        "testlib;;Member[mySinkIfArityTwo].WithArity[2].Argument[0];test-sink",
-        "testlib;;Member[sink1, sink2, sink3 ].Argument[0];test-sink",
-        "testlib;;Member[ClassDecorator].DecoratedClass.Instance.Member[returnValueIsSink].ReturnValue;test-sink",
-        "testlib;;Member[FieldDecoratorSink].DecoratedMember;test-sink",
-        "testlib;;Member[MethodDecorator].DecoratedMember.ReturnValue;test-sink",
-        "testlib;;Member[MethodDecoratorWithArgs].ReturnValue.DecoratedMember.ReturnValue;test-sink",
-        "testlib;;Member[ParamDecoratorSink].DecoratedParameter;test-sink",
-        "testlib;;AnyMember.Member[memberSink].Argument[0];test-sink",
-        "testlib;;Member[overloadedSink].WithStringArgument[0=danger].Argument[1];test-sink",
-        "testlib;;Member[typevar].TypeVar[ABC].Member[mySink].Argument[0];test-sink",
-        "testlib;;Member[typevar].TypeVar[ABC].TypeVar[ABC].Member[mySink].Argument[1];test-sink",
-        "testlib;;Member[typevar].TypeVar[LeftRight].Member[mySink].Argument[0];test-sink",
+        "testlib;Member[mySink].Argument[0];test-sink",
+        "testlib;Member[mySinkIfCall].Call.Argument[0];test-sink",
+        "testlib;Member[mySinkIfNew].NewCall.Argument[0];test-sink",
+        "testlib;Member[mySinkLast].Argument[N-1];test-sink",
+        "testlib;Member[mySinkSecondLast].Argument[N-2];test-sink",
+        "testlib;Member[mySinkTwoLast].Argument[N-1,N-2];test-sink",
+        "testlib;Member[mySinkTwoLastRange].Argument[N-2..N-1];test-sink",
+        "testlib;Member[mySinkExceptLast].Argument[0..N-2];test-sink",
+        "testlib;Member[mySinkIfArityTwo].WithArity[2].Argument[0];test-sink",
+        "testlib;Member[sink1, sink2, sink3 ].Argument[0];test-sink",
+        "testlib;Member[ClassDecorator].DecoratedClass.Instance.Member[returnValueIsSink].ReturnValue;test-sink",
+        "testlib;Member[FieldDecoratorSink].DecoratedMember;test-sink",
+        "testlib;Member[MethodDecorator].DecoratedMember.ReturnValue;test-sink",
+        "testlib;Member[MethodDecoratorWithArgs].ReturnValue.DecoratedMember.ReturnValue;test-sink",
+        "testlib;Member[ParamDecoratorSink].DecoratedParameter;test-sink",
+        "testlib;AnyMember.Member[memberSink].Argument[0];test-sink",
+        "testlib;Member[overloadedSink].WithStringArgument[0=danger].Argument[1];test-sink",
+        "testlib;Member[typevar].TypeVar[ABC].Member[mySink].Argument[0];test-sink",
+        "testlib;Member[typevar].TypeVar[ABC].TypeVar[ABC].Member[mySink].Argument[1];test-sink",
+        "testlib;Member[typevar].TypeVar[LeftRight].Member[mySink].Argument[0];test-sink",
       ]
   }
 }
@@ -73,12 +73,12 @@ class Sources extends ModelInput::SourceModelCsv {
   override predicate row(string row) {
     row =
       [
-        "testlib;;Member[getSource].ReturnValue;test-source",
-        "testlib;;Member[ClassDecorator].DecoratedClass.Instance.Member[inputIsSource].Parameter[0];test-source",
-        "testlib;;Member[FieldDecoratorSource].DecoratedMember;test-source",
-        "testlib;;Member[ParamDecoratorSource].DecoratedParameter;test-source",
-        "testlib;;Member[MethodDecorator].DecoratedMember.Parameter[0];test-source",
-        "testlib;;Member[MethodDecoratorWithArgs].ReturnValue.DecoratedMember.Parameter[0];test-source",
+        "testlib;Member[getSource].ReturnValue;test-source",
+        "testlib;Member[ClassDecorator].DecoratedClass.Instance.Member[inputIsSource].Parameter[0];test-source",
+        "testlib;Member[FieldDecoratorSource].DecoratedMember;test-source",
+        "testlib;Member[ParamDecoratorSource].DecoratedParameter;test-source",
+        "testlib;Member[MethodDecorator].DecoratedMember.Parameter[0];test-source",
+        "testlib;Member[MethodDecoratorWithArgs].ReturnValue.DecoratedMember.Parameter[0];test-source",
       ]
   }
 }
@@ -111,15 +111,20 @@ class SyntaxErrorTest extends ModelInput::SinkModelCsv {
   override predicate row(string row) {
     row =
       [
-        "testlib;;Member[foo],Member[bar];test-sink", "testlib;;Member[foo] Member[bar];test-sink",
-        "testlib;;Member[foo]. Member[bar];test-sink",
-        "testlib;;Member[foo], Member[bar];test-sink",
-        "testlib;;Member[foo]..Member[bar];test-sink",
-        "testlib;;Member[foo] .Member[bar];test-sink", "testlib;;Member[foo]Member[bar];test-sink",
-        "testlib;;Member[foo;test-sink", "testlib;;Member[foo]];test-sink",
-        "testlib;;Member[foo]].Member[bar];test-sink"
+        "testlib;Member[foo],Member[bar];test-sink", //
+        "testlib;Member[foo] Member[bar];test-sink", //
+        "testlib;Member[foo]. Member[bar];test-sink", //
+        "testlib;Member[foo], Member[bar];test-sink", //
+        "testlib;Member[foo]..Member[bar];test-sink", //
+        "testlib;Member[foo] .Member[bar];test-sink", //
+        "testlib;Member[foo]Member[bar];test-sink", //
+        "testlib;Member[foo;test-sink", //
+        "testlib;Member[foo]];test-sink", //
+        "testlib;Member[foo]].Member[bar];test-sink"
       ]
   }
 }
 
 query predicate syntaxErrors(AccessPathSyntax::AccessPath path) { path.hasSyntaxError() }
+
+query predicate warning = ModelOutput::getAWarning/0;
diff --git a/javascript/ql/test/library-tests/frameworks/data/warnings.expected b/javascript/ql/test/library-tests/frameworks/data/warnings.expected
index 7ba231c9627..cfb4265b2c8 100644
--- a/javascript/ql/test/library-tests/frameworks/data/warnings.expected
+++ b/javascript/ql/test/library-tests/frameworks/data/warnings.expected
@@ -1,5 +1,5 @@
-| CSV type row should have 5 columns but has 2: test;TooFewColumns |
-| CSV type row should have 5 columns but has 8: test;TooManyColumns;;;Member[Foo].Instance;too;many;columns |
+| CSV type row should have 3 columns but has 1: test.TooFewColumns |
+| CSV type row should have 3 columns but has 6: test.TooManyColumns;;Member[Foo].Instance;too;many;columns |
 | Invalid argument '0-1' in token 'Argument[0-1]' in access path: Method[foo].Argument[0-1] |
 | Invalid argument '*' in token 'Argument[*]' in access path: Method[foo].Argument[*] |
 | Invalid token 'Argument' is missing its arguments, in access path: Method[foo].Argument |
diff --git a/javascript/ql/test/library-tests/frameworks/data/warnings.ql b/javascript/ql/test/library-tests/frameworks/data/warnings.ql
index 9ae05b8dcc0..94e6f74aae7 100644
--- a/javascript/ql/test/library-tests/frameworks/data/warnings.ql
+++ b/javascript/ql/test/library-tests/frameworks/data/warnings.ql
@@ -6,13 +6,13 @@ private class InvalidTypeModel extends ModelInput::TypeModelCsv {
   override predicate row(string row) {
     row =
       [
-        "test;TooManyColumns;;;Member[Foo].Instance;too;many;columns", //
-        "test;TooFewColumns", //
-        "test;X;test;Y;Method[foo].Arg[0]", //
-        "test;X;test;Y;Method[foo].Argument[0-1]", //
-        "test;X;test;Y;Method[foo].Argument[*]", //
-        "test;X;test;Y;Method[foo].Argument", //
-        "test;X;test;Y;Method[foo].Member", //
+        "test.TooManyColumns;;Member[Foo].Instance;too;many;columns", //
+        "test.TooFewColumns", //
+        "test.X;test.Y;Method[foo].Arg[0]", //
+        "test.X;test.Y;Method[foo].Argument[0-1]", //
+        "test.X;test.Y;Method[foo].Argument[*]", //
+        "test.X;test.Y;Method[foo].Argument", //
+        "test.X;test.Y;Method[foo].Member", //
       ]
   }
 }

From 22316ee4fe0159413b6b99ccb7a8b5d799137efa Mon Sep 17 00:00:00 2001
From: Asger F <asgerf@github.com>
Date: Fri, 11 Nov 2022 16:42:51 +0100
Subject: [PATCH 0565/1420] Ruby: merge package/type columns

---
 .../dataflow/internal/DataFlowPrivate.qll     |   2 +-
 .../codeql/ruby/frameworks/ActionDispatch.qll |  19 +-
 .../codeql/ruby/frameworks/ActiveStorage.qll  |  18 +-
 .../codeql/ruby/frameworks/ActiveSupport.qll  |  14 +-
 .../codeql/ruby/frameworks/core/Regexp.qll    |   2 +-
 .../ruby/frameworks/data/ModelsAsData.qll     |  11 +-
 .../data/internal/ApiGraphModels.qll          | 312 ++++++++----------
 .../data/internal/ApiGraphModelsSpecific.qll  | 115 +++++--
 .../ruby/frameworks/stdlib/Pathname.qll       |  52 ++-
 .../dataflow/local/TaintStep.expected         |  22 --
 .../dataflow/summaries/Summaries.expected     |   4 +-
 .../dataflow/summaries/Summaries.ql           |  94 +++---
 .../frameworks/ActionDispatch.ql              |   4 +-
 .../frameworks/pathname/Pathname.expected     |  24 +-
 14 files changed, 341 insertions(+), 352 deletions(-)

diff --git a/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowPrivate.qll b/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowPrivate.qll
index 8c9c8242c71..205f75ab535 100644
--- a/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowPrivate.qll
+++ b/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowPrivate.qll
@@ -474,7 +474,7 @@ private module Cached {
       // external model data. This, unfortunately, does not included any field names used
       // in models defined in QL code.
       exists(string input, string output |
-        ModelOutput::relevantSummaryModel(_, _, _, input, output, _)
+        ModelOutput::relevantSummaryModel(_, _, input, output, _)
       |
         name = [input, output].regexpFind("(?<=(^|\\.)Field\\[)[^\\]]+(?=\\])", _, _).trim()
       )
diff --git a/ruby/ql/lib/codeql/ruby/frameworks/ActionDispatch.qll b/ruby/ql/lib/codeql/ruby/frameworks/ActionDispatch.qll
index e9ff9d5c86a..cc898abe034 100644
--- a/ruby/ql/lib/codeql/ruby/frameworks/ActionDispatch.qll
+++ b/ruby/ql/lib/codeql/ruby/frameworks/ActionDispatch.qll
@@ -21,23 +21,21 @@ module ActionDispatch {
    */
   private class MimeTypeTypeSummary extends ModelInput::TypeModelCsv {
     override predicate row(string row) {
-      // package1;type1;package2;type2;path
+      // type1;type2;path
       row =
         [
           // Mime[type] : Mime::Type (omitted)
           // Method names with brackets like [] cannot be represented in MaD.
           // Mime.fetch(type) : Mime::Type
-          "actiondispatch;Mime::Type;;;Member[Mime].Method[fetch].ReturnValue",
-          // Mime::Type.new(str) : Mime::Type
-          "actiondispatch;Mime::Type;;;Member[Mime].Member[Type].Instance",
+          "Mime::Type;Mime!;Method[fetch].ReturnValue",
           // Mime::Type.lookup(str) : Mime::Type
-          "actiondispatch;Mime::Type;;;Member[Mime].Member[Type].Method[lookup].ReturnValue",
+          "Mime::Type;Mime::Type!;Method[lookup].ReturnValue",
           // Mime::Type.lookup_by_extension(str) : Mime::Type
-          "actiondispatch;Mime::Type;;;Member[Mime].Member[Type].Method[lookup_by_extension].ReturnValue",
+          "Mime::Type;Mime::Type!;Method[lookup_by_extension].ReturnValue",
           // Mime::Type.register(str) : Mime::Type
-          "actiondispatch;Mime::Type;;;Member[Mime].Member[Type].Method[register].ReturnValue",
+          "Mime::Type;Mime::Type!;Method[register].ReturnValue",
           // Mime::Type.register_alias(str) : Mime::Type
-          "actiondispatch;Mime::Type;;;Member[Mime].Member[Type].Method[register_alias].ReturnValue",
+          "Mime::Type;Mime::Type!;Method[register_alias].ReturnValue",
         ]
     }
   }
@@ -48,10 +46,7 @@ module ActionDispatch {
    */
   class MimeTypeMatchRegExpInterpretation extends RE::RegExpInterpretation::Range {
     MimeTypeMatchRegExpInterpretation() {
-      this =
-        ModelOutput::getATypeNode("actiondispatch", "Mime::Type")
-            .getAMethodCall(["match?", "=~"])
-            .getArgument(0)
+      this = ModelOutput::getATypeNode("Mime::Type").getAMethodCall(["match?", "=~"]).getArgument(0)
     }
   }
 
diff --git a/ruby/ql/lib/codeql/ruby/frameworks/ActiveStorage.qll b/ruby/ql/lib/codeql/ruby/frameworks/ActiveStorage.qll
index 389ac9ee64d..9fe157842d7 100644
--- a/ruby/ql/lib/codeql/ruby/frameworks/ActiveStorage.qll
+++ b/ruby/ql/lib/codeql/ruby/frameworks/ActiveStorage.qll
@@ -31,8 +31,8 @@ module ActiveStorage {
     override predicate row(string row) {
       row =
         [
-          "activestorage;;Member[ActiveStorage].Member[Filename].Method[new];Argument[0];ReturnValue;taint",
-          "activestorage;;Member[ActiveStorage].Member[Filename].Instance.Method[sanitized];Argument[self];ReturnValue;taint",
+          "ActiveStorage::Filename!;Method[new];Argument[0];ReturnValue;taint",
+          "ActiveStorage::Filename;Method[sanitized];Argument[self];ReturnValue;taint",
         ]
     }
   }
@@ -45,25 +45,23 @@ module ActiveStorage {
       // package1;type1;package2;type2;path
       row =
         [
-          // ActiveStorage::Blob.new : Blob
-          "activestorage;Blob;activestorage;;Member[ActiveStorage].Member[Blob].Instance",
           // ActiveStorage::Blob.create_and_upload! : Blob
-          "activestorage;Blob;activestorage;;Member[ActiveStorage].Member[Blob].Method[create_and_upload!].ReturnValue",
+          "ActiveStorage::Blob;ActiveStorage::Blob!;Method[create_and_upload!].ReturnValue",
           // ActiveStorage::Blob.create_before_direct_upload! : Blob
-          "activestorage;Blob;activestorage;;Member[ActiveStorage].Member[Blob].Method[create_before_direct_upload!].ReturnValue",
+          "ActiveStorage::Blob;ActiveStorage::Blob!;Method[create_before_direct_upload!].ReturnValue",
           // ActiveStorage::Blob.compose(blobs : [Blob]) : Blob
-          "activestorage;Blob;activestorage;;Member[ActiveStorage].Member[Blob].Method[compose].ReturnValue",
+          "ActiveStorage::Blob;ActiveStorage::Blob!;Method[compose].ReturnValue",
           // gives error: Invalid name 'Element' in access path
-          // "activestorage;Blob;activestorage;;Member[ActiveStorage].Member[Blob].Method[compose].Argument[0].Element[any]",
+          // "ActiveStorage::Blob;ActiveStorage::Blob!;Method[compose].Argument[0].Element[any]",
           // ActiveStorage::Blob.find_signed(!) : Blob
-          "activestorage;Blob;activestorage;;Member[ActiveStorage].Member[Blob].Method[find_signed,find_signed!].ReturnValue",
+          "ActiveStorage::Blob;ActiveStorage::Blob!;Method[find_signed,find_signed!].ReturnValue",
         ]
     }
   }
 
   private class BlobInstance extends DataFlow::Node {
     BlobInstance() {
-      this = ModelOutput::getATypeNode("activestorage", "Blob").getAValueReachableFromSource()
+      this = ModelOutput::getATypeNode("ActiveStorage::Blob").getAValueReachableFromSource()
       or
       // ActiveStorage::Attachment#blob : Blob
       exists(DataFlow::CallNode call |
diff --git a/ruby/ql/lib/codeql/ruby/frameworks/ActiveSupport.qll b/ruby/ql/lib/codeql/ruby/frameworks/ActiveSupport.qll
index 7d3286a0a74..bb08594c227 100644
--- a/ruby/ql/lib/codeql/ruby/frameworks/ActiveSupport.qll
+++ b/ruby/ql/lib/codeql/ruby/frameworks/ActiveSupport.qll
@@ -317,9 +317,9 @@ module ActiveSupport {
    */
   private class PathnameTypeSummary extends ModelInput::TypeModelCsv {
     override predicate row(string row) {
-      // package1;type1;package2;type2;path
+      // type1;type2;path
       // Pathname#existence : Pathname
-      row = ";Pathname;;Pathname;Method[existence].ReturnValue"
+      row = "Pathname;Pathname;Method[existence].ReturnValue"
     }
   }
 
@@ -327,7 +327,7 @@ module ActiveSupport {
   private class PathnameTaintSummary extends ModelInput::SummaryModelCsv {
     override predicate row(string row) {
       // Pathname#existence
-      row = ";Pathname;Method[existence];Argument[self];ReturnValue;taint"
+      row = "Pathname;Method[existence];Argument[self];ReturnValue;taint"
     }
   }
 
@@ -345,12 +345,12 @@ module ActiveSupport {
       row =
         [
           // SafeBuffer.new(x) does not sanitize x
-          "activesupport;;Member[ActionView].Member[SafeBuffer].Method[new];Argument[0];ReturnValue;taint",
+          "ActionView::SafeBuffer!;Method[new];Argument[0];ReturnValue;taint",
           // SafeBuffer#safe_concat(x) does not sanitize x
-          "activesupport;;Member[ActionView].Member[SafeBuffer].Instance.Method[safe_concat];Argument[0];ReturnValue;taint",
-          "activesupport;;Member[ActionView].Member[SafeBuffer].Instance.Method[safe_concat];Argument[0];Argument[self];taint",
+          "ActionView::SafeBuffer;Method[safe_concat];Argument[0];ReturnValue;taint",
+          "ActionView::SafeBuffer;Method[safe_concat];Argument[0];Argument[self];taint",
           // These methods preserve taint in self
-          "activesupport;;Member[ActionView].Member[SafeBuffer].Instance.Method[concat,insert,prepend,to_s,to_param];Argument[self];ReturnValue;taint",
+          "ActionView::SafeBuffer;Method[concat,insert,prepend,to_s,to_param];Argument[self];ReturnValue;taint",
         ]
     }
   }
diff --git a/ruby/ql/lib/codeql/ruby/frameworks/core/Regexp.qll b/ruby/ql/lib/codeql/ruby/frameworks/core/Regexp.qll
index cea79f19cf1..581c0d581c9 100644
--- a/ruby/ql/lib/codeql/ruby/frameworks/core/Regexp.qll
+++ b/ruby/ql/lib/codeql/ruby/frameworks/core/Regexp.qll
@@ -13,7 +13,7 @@ module Regexp {
   /** A flow summary for `Regexp.escape` and its alias, `Regexp.quote`. */
   class RegexpEscapeSummary extends ModelInput::SummaryModelCsv {
     override predicate row(string row) {
-      row = ";;Member[Regexp].Method[escape,quote];Argument[0];ReturnValue;taint"
+      row = "Regexp!;Method[escape,quote];Argument[0];ReturnValue;taint"
     }
   }
 }
diff --git a/ruby/ql/lib/codeql/ruby/frameworks/data/ModelsAsData.qll b/ruby/ql/lib/codeql/ruby/frameworks/data/ModelsAsData.qll
index 8302a2c4300..2e3fa21a45b 100644
--- a/ruby/ql/lib/codeql/ruby/frameworks/data/ModelsAsData.qll
+++ b/ruby/ql/lib/codeql/ruby/frameworks/data/ModelsAsData.qll
@@ -33,26 +33,23 @@ private class RemoteFlowSourceFromCsv extends RemoteFlowSource::Range {
 }
 
 private class SummarizedCallableFromModel extends SummarizedCallable {
-  string package;
   string type;
   string path;
 
   SummarizedCallableFromModel() {
-    ModelOutput::relevantSummaryModel(package, type, path, _, _, _) and
-    this = package + ";" + type + ";" + path
+    ModelOutput::relevantSummaryModel(type, path, _, _, _) and
+    this = type + ";" + path
   }
 
   override Call getACall() {
     exists(API::MethodAccessNode base |
-      ModelOutput::resolvedSummaryBase(package, type, path, base) and
+      ModelOutput::resolvedSummaryBase(type, path, base) and
       result = base.getCallNode().asExpr().getExpr()
     )
   }
 
   override predicate propagatesFlowExt(string input, string output, boolean preservesValue) {
-    exists(string kind |
-      ModelOutput::relevantSummaryModel(package, type, path, input, output, kind)
-    |
+    exists(string kind | ModelOutput::relevantSummaryModel(type, path, input, output, kind) |
       kind = "value" and
       preservesValue = true
       or
diff --git a/ruby/ql/lib/codeql/ruby/frameworks/data/internal/ApiGraphModels.qll b/ruby/ql/lib/codeql/ruby/frameworks/data/internal/ApiGraphModels.qll
index 9b2428f3413..0e744ba801a 100644
--- a/ruby/ql/lib/codeql/ruby/frameworks/data/internal/ApiGraphModels.qll
+++ b/ruby/ql/lib/codeql/ruby/frameworks/data/internal/ApiGraphModels.qll
@@ -5,23 +5,20 @@
  *
  * The CSV specification has the following columns:
  * - Sources:
- *   `package; type; path; kind`
+ *   `type; path; kind`
  * - Sinks:
- *   `package; type; path; kind`
+ *   `type; path; kind`
  * - Summaries:
- *   `package; type; path; input; output; kind`
+ *   `type; path; input; output; kind`
  * - Types:
- *   `package1; type1; package2; type2; path`
+ *   `type1; type2; path`
  *
  * The interpretation of a row is similar to API-graphs with a left-to-right
  * reading.
- * 1. The `package` column selects a package name, as it would be referenced in the source code,
- *    such as an NPM package, PIP package, or Ruby gem. (See `ModelsAsData.qll` for language-specific details).
- *    It may also be a synthetic package used for a type definition (see type definitions below).
- * 2. The `type` column selects all instances of a named type originating from that package,
- *    or the empty string if referring to the package itself.
+ * 1. The `type` column selects all instances of a named type. The syntax of this column is language-specific.
+ *    The language defines some type names that the analysis knows how to identify without models.
  *    It can also be a synthetic type name defined by a type definition (see type definitions below).
- * 3. The `path` column is a `.`-separated list of "access path tokens" to resolve, starting at the node selected by `package` and `type`.
+ * 2. The `path` column is a `.`-separated list of "access path tokens" to resolve, starting at the node selected by `type`.
  *
  *    Every language supports the following tokens:
  *     - Argument[n]: the n-th argument to a call. May be a range of form `x..y` (inclusive) and/or a comma-separated list.
@@ -42,10 +39,10 @@
  *
  *    For the time being, please consult `ApiGraphModelsSpecific.qll` to see which language-specific tokens are currently supported.
  *
- * 4. The `input` and `output` columns specify how data enters and leaves the element selected by the
- *    first `(package, type, path)` tuple. Both strings are `.`-separated access paths
+ * 3. The `input` and `output` columns specify how data enters and leaves the element selected by the
+ *    first `(type, path)` tuple. Both strings are `.`-separated access paths
  *    of the same syntax as the `path` column.
- * 5. The `kind` column is a tag that can be referenced from QL to determine to
+ * 4. The `kind` column is a tag that can be referenced from QL to determine to
  *    which classes the interpreted elements should be added. For example, for
  *    sources `"remote"` indicates a default remote flow source, and for summaries
  *    `"taint"` indicates a default additional taint step and `"value"` indicates a
@@ -53,17 +50,17 @@
  *
  * ### Types
  *
- * A type row of form `package1; type1; package2; type2; path` indicates that `package2; type2; path`
- * should be seen as an instance of the type `package1; type1`.
+ * A type row of form `type1; type2; path` indicates that `type2; path`
+ * should be seen as an instance of the type `type1`.
  *
- * A `(package,type)` pair may refer to a static type or a synthetic type name used internally in the model.
+ * A type may refer to a static type or a synthetic type name used internally in the model.
  * Synthetic type names can be used to reuse intermediate sub-paths, when there are multiple ways to access the same
  * element.
- * See `ModelsAsData.qll` for the language-specific interpretation of packages and static type names.
+ * See `ModelsAsData.qll` for the language-specific interpretation of type names.
  *
- * By convention, if one wants to avoid clashes with static types from the package, the type name
- * should be prefixed with a tilde character (`~`). For example, `(foo, ~Bar)` can be used to indicate that
- * the type is related to the `foo` package but is not intended to match a static type.
+ * By convention, if one wants to avoid clashes with static types, the type name
+ * should be prefixed with a tilde character (`~`). For example, `~Bar` can be used to indicate that
+ * the type is not intended to match a static type.
  */
 
 private import ApiGraphModelsSpecific as Specific
@@ -89,9 +86,9 @@ module ModelInput {
      *
      * A row of form
      * ```
-     * package;type;path;kind
+     * type;path;kind
      * ```
-     * indicates that the value at `(package, type, path)` should be seen as a flow
+     * indicates that the value at `(type, path)` should be seen as a flow
      * source of the given `kind`.
      *
      * The kind `remote` represents a general remote flow source.
@@ -110,9 +107,9 @@ module ModelInput {
      *
      * A row of form
      * ```
-     * package;type;path;kind
+     * type;path;kind
      * ```
-     * indicates that the value at `(package, type, path)` should be seen as a sink
+     * indicates that the value at `(type, path)` should be seen as a sink
      * of the given `kind`.
      */
     abstract predicate row(string row);
@@ -129,9 +126,9 @@ module ModelInput {
      *
      * A row of form
      * ```
-     * package;type;path;input;output;kind
+     * type;path;input;output;kind
      * ```
-     * indicates that for each call to `(package, type, path)`, the value referred to by `input`
+     * indicates that for each call to `(type, path)`, the value referred to by `input`
      * can flow to the value referred to by `output`.
      *
      * `kind` should be either `value` or `taint`, for value-preserving or taint-preserving steps,
@@ -151,9 +148,9 @@ module ModelInput {
      *
      * A row of form,
      * ```
-     * package1;type1;package2;type2;path
+     * type1;type2;path
      * ```
-     * indicates that `(package2, type2, path)` should be seen as an instance of `(package1, type1)`.
+     * indicates that `(type2, path)` should be seen as an instance of `type1`.
      */
     abstract predicate row(string row);
   }
@@ -163,28 +160,28 @@ module ModelInput {
    */
   class TypeModel extends Unit {
     /**
-     * Gets a data-flow node that is a source of the type `package;type`.
+     * Gets a data-flow node that is a source of the given `type`.
      *
      * This must not depend on API graphs, but ensures that an API node is generated for
      * the source.
      */
-    DataFlow::Node getASource(string package, string type) { none() }
+    DataFlow::Node getASource(string type) { none() }
 
     /**
-     * Gets a data-flow node that is a sink of the type `package;type`,
+     * Gets a data-flow node that is a sink of the given `type`,
      * usually because it is an argument passed to a parameter of that type.
      *
      * This must not depend on API graphs, but ensures that an API node is generated for
      * the sink.
      */
-    DataFlow::Node getASink(string package, string type) { none() }
+    DataFlow::Node getASink(string type) { none() }
 
     /**
-     * Gets an API node that is a source or sink of the type `package;type`.
+     * Gets an API node that is a source or sink of the given `type`.
      *
      * Unlike `getASource` and `getASink`, this may depend on API graphs.
      */
-    API::Node getAnApiNode(string package, string type) { none() }
+    API::Node getAnApiNode(string type) { none() }
   }
 
   /**
@@ -209,7 +206,7 @@ private import ModelInput
 /**
  * An empty class, except in specific tests.
  *
- * If this is non-empty, all models are parsed even if the package is not
+ * If this is non-empty, all models are parsed even if the type name is not
  * considered relevant for the current database.
  */
 abstract class TestAllModels extends Unit { }
@@ -232,53 +229,44 @@ private predicate typeModel(string row) { any(TypeModelCsv s).row(inversePad(row
 private predicate typeVariableModel(string row) { any(TypeVariableModelCsv s).row(inversePad(row)) }
 
 /** Holds if a source model exists for the given parameters. */
-predicate sourceModel(string package, string type, string path, string kind) {
+predicate sourceModel(string type, string path, string kind) {
   exists(string row |
     sourceModel(row) and
-    row.splitAt(";", 0) = package and
-    row.splitAt(";", 1) = type and
-    row.splitAt(";", 2) = path and
-    row.splitAt(";", 3) = kind
+    row.splitAt(";", 0) = type and
+    row.splitAt(";", 1) = path and
+    row.splitAt(";", 2) = kind
   )
 }
 
 /** Holds if a sink model exists for the given parameters. */
-private predicate sinkModel(string package, string type, string path, string kind) {
+private predicate sinkModel(string type, string path, string kind) {
   exists(string row |
     sinkModel(row) and
-    row.splitAt(";", 0) = package and
-    row.splitAt(";", 1) = type and
-    row.splitAt(";", 2) = path and
-    row.splitAt(";", 3) = kind
+    row.splitAt(";", 0) = type and
+    row.splitAt(";", 1) = path and
+    row.splitAt(";", 2) = kind
   )
 }
 
 /** Holds if a summary model `row` exists for the given parameters. */
-private predicate summaryModel(
-  string package, string type, string path, string input, string output, string kind
-) {
+private predicate summaryModel(string type, string path, string input, string output, string kind) {
   exists(string row |
     summaryModel(row) and
-    row.splitAt(";", 0) = package and
-    row.splitAt(";", 1) = type and
-    row.splitAt(";", 2) = path and
-    row.splitAt(";", 3) = input and
-    row.splitAt(";", 4) = output and
-    row.splitAt(";", 5) = kind
+    row.splitAt(";", 0) = type and
+    row.splitAt(";", 1) = path and
+    row.splitAt(";", 2) = input and
+    row.splitAt(";", 3) = output and
+    row.splitAt(";", 4) = kind
   )
 }
 
 /** Holds if a type model exists for the given parameters. */
-private predicate typeModel(
-  string package1, string type1, string package2, string type2, string path
-) {
+private predicate typeModel(string type1, string type2, string path) {
   exists(string row |
     typeModel(row) and
-    row.splitAt(";", 0) = package1 and
-    row.splitAt(";", 1) = type1 and
-    row.splitAt(";", 2) = package2 and
-    row.splitAt(";", 3) = type2 and
-    row.splitAt(";", 4) = path
+    row.splitAt(";", 0) = type1 and
+    row.splitAt(";", 1) = type2 and
+    row.splitAt(";", 2) = path
   )
 }
 
@@ -292,61 +280,50 @@ private predicate typeVariableModel(string name, string path) {
 }
 
 /**
- * Gets a package that should be seen as an alias for the given other `package`,
- * or the `package` itself.
+ * Holds if CSV rows involving `type` might be relevant for the analysis of this database.
  */
-bindingset[package]
-bindingset[result]
-string getAPackageAlias(string package) {
-  typeModel(package, "", result, "", "")
-  or
-  result = package
-}
-
-/**
- * Holds if CSV rows involving `package` might be relevant for the analysis of this database.
- */
-private predicate isRelevantPackage(string package) {
+predicate isRelevantType(string type) {
   (
-    sourceModel(package, _, _, _) or
-    sinkModel(package, _, _, _) or
-    summaryModel(package, _, _, _, _, _) or
-    typeModel(_, _, package, _, _)
+    sourceModel(type, _, _) or
+    sinkModel(type, _, _) or
+    summaryModel(type, _, _, _, _) or
+    typeModel(_, type, _)
   ) and
   (
-    Specific::isPackageUsed(package)
+    Specific::isTypeUsed(type)
     or
     exists(TestAllModels t)
   )
   or
-  exists(string other |
-    isRelevantPackage(other) and
-    typeModel(package, _, other, _, _)
+  exists(string other | isRelevantType(other) |
+    typeModel(type, other, _)
+    or
+    Specific::hasImplicitTypeModel(type, other)
   )
 }
 
 /**
- * Holds if `package,type,path` is used in some CSV row.
+ * Holds if `type,path` is used in some CSV row.
  */
 pragma[nomagic]
-predicate isRelevantFullPath(string package, string type, string path) {
-  isRelevantPackage(package) and
+predicate isRelevantFullPath(string type, string path) {
+  isRelevantType(type) and
   (
-    sourceModel(package, type, path, _) or
-    sinkModel(package, type, path, _) or
-    summaryModel(package, type, path, _, _, _) or
-    typeModel(_, _, package, type, path)
+    sourceModel(type, path, _) or
+    sinkModel(type, path, _) or
+    summaryModel(type, path, _, _, _) or
+    typeModel(_, type, path)
   )
 }
 
 /** A string from a CSV row that should be parsed as an access path. */
 private class AccessPathRange extends AccessPath::Range {
   AccessPathRange() {
-    isRelevantFullPath(_, _, this)
+    isRelevantFullPath(_, this)
     or
-    exists(string package | isRelevantPackage(package) |
-      summaryModel(package, _, _, this, _, _) or
-      summaryModel(package, _, _, _, this, _)
+    exists(string type | isRelevantType(type) |
+      summaryModel(type, _, this, _, _) or
+      summaryModel(type, _, _, this, _)
     )
     or
     typeVariableModel(_, this)
@@ -400,83 +377,73 @@ private predicate invocationMatchesCallSiteFilter(Specific::InvokeNode invoke, A
 }
 
 private class TypeModelUseEntry extends API::EntryPoint {
-  private string package;
   private string type;
 
   TypeModelUseEntry() {
-    exists(any(TypeModel tm).getASource(package, type)) and
-    this = "TypeModelUseEntry;" + package + ";" + type
+    exists(any(TypeModel tm).getASource(type)) and
+    this = "TypeModelUseEntry;" + type
   }
 
-  override DataFlow::LocalSourceNode getASource() {
-    result = any(TypeModel tm).getASource(package, type)
-  }
+  override DataFlow::LocalSourceNode getASource() { result = any(TypeModel tm).getASource(type) }
 
-  API::Node getNodeForType(string package_, string type_) {
-    package = package_ and type = type_ and result = this.getANode()
-  }
+  API::Node getNodeForType(string type_) { type = type_ and result = this.getANode() }
 }
 
 private class TypeModelDefEntry extends API::EntryPoint {
-  private string package;
   private string type;
 
   TypeModelDefEntry() {
-    exists(any(TypeModel tm).getASink(package, type)) and
-    this = "TypeModelDefEntry;" + package + ";" + type
+    exists(any(TypeModel tm).getASink(type)) and
+    this = "TypeModelDefEntry;" + type
   }
 
-  override DataFlow::Node getASink() { result = any(TypeModel tm).getASink(package, type) }
+  override DataFlow::Node getASink() { result = any(TypeModel tm).getASink(type) }
 
-  API::Node getNodeForType(string package_, string type_) {
-    package = package_ and type = type_ and result = this.getANode()
-  }
+  API::Node getNodeForType(string type_) { type = type_ and result = this.getANode() }
 }
 
 /**
- * Gets an API node identified by the given `(package,type)` pair.
+ * Gets an API node identified by the given `type`.
  */
 pragma[nomagic]
-private API::Node getNodeFromType(string package, string type) {
-  exists(string package2, string type2, AccessPath path2 |
-    typeModel(package, type, package2, type2, path2) and
-    result = getNodeFromPath(package2, type2, path2)
+private API::Node getNodeFromType(string type) {
+  exists(string type2, AccessPath path2 |
+    typeModel(type, type2, path2) and
+    result = getNodeFromPath(type2, path2)
   )
   or
-  result = any(TypeModelUseEntry e).getNodeForType(package, type)
+  result = any(TypeModelUseEntry e).getNodeForType(type)
   or
-  result = any(TypeModelDefEntry e).getNodeForType(package, type)
+  result = any(TypeModelDefEntry e).getNodeForType(type)
   or
-  result = any(TypeModel t).getAnApiNode(package, type)
+  result = any(TypeModel t).getAnApiNode(type)
   or
-  result = Specific::getExtraNodeFromType(package, type)
+  result = Specific::getExtraNodeFromType(type)
 }
 
 /**
- * Gets the API node identified by the first `n` tokens of `path` in the given `(package, type, path)` tuple.
+ * Gets the API node identified by the first `n` tokens of `path` in the given `(type, path)` tuple.
  */
 pragma[nomagic]
-private API::Node getNodeFromPath(string package, string type, AccessPath path, int n) {
-  isRelevantFullPath(package, type, path) and
+private API::Node getNodeFromPath(string type, AccessPath path, int n) {
+  isRelevantFullPath(type, path) and
   (
     n = 0 and
-    result = getNodeFromType(package, type)
+    result = getNodeFromType(type)
     or
-    result = Specific::getExtraNodeFromPath(package, type, path, n)
+    result = Specific::getExtraNodeFromPath(type, path, n)
   )
   or
-  result = getSuccessorFromNode(getNodeFromPath(package, type, path, n - 1), path.getToken(n - 1))
+  result = getSuccessorFromNode(getNodeFromPath(type, path, n - 1), path.getToken(n - 1))
   or
   // Similar to the other recursive case, but where the path may have stepped through one or more call-site filters
-  result =
-    getSuccessorFromInvoke(getInvocationFromPath(package, type, path, n - 1), path.getToken(n - 1))
+  result = getSuccessorFromInvoke(getInvocationFromPath(type, path, n - 1), path.getToken(n - 1))
   or
   // Apply a subpath
-  result =
-    getNodeFromSubPath(getNodeFromPath(package, type, path, n - 1), getSubPathAt(path, n - 1))
+  result = getNodeFromSubPath(getNodeFromPath(type, path, n - 1), getSubPathAt(path, n - 1))
   or
   // Apply a type step
-  typeStep(getNodeFromPath(package, type, path, n), result)
+  typeStep(getNodeFromPath(type, path, n), result)
 }
 
 /**
@@ -496,15 +463,15 @@ private AccessPath getSubPathAt(AccessPath path, int n) {
 pragma[nomagic]
 private API::Node getNodeFromSubPath(API::Node base, AccessPath subPath, int n) {
   exists(AccessPath path, int k |
-    base = [getNodeFromPath(_, _, path, k), getNodeFromSubPath(_, path, k)] and
+    base = [getNodeFromPath(_, path, k), getNodeFromSubPath(_, path, k)] and
     subPath = getSubPathAt(path, k) and
     result = base and
     n = 0
   )
   or
-  exists(string package, string type, AccessPath basePath |
-    typeStepModel(package, type, basePath, subPath) and
-    base = getNodeFromPath(package, type, basePath) and
+  exists(string type, AccessPath basePath |
+    typeStepModel(type, basePath, subPath) and
+    base = getNodeFromPath(type, basePath) and
     result = base and
     n = 0
   )
@@ -543,42 +510,40 @@ private API::Node getNodeFromSubPath(API::Node base, AccessPath subPath) {
   result = getNodeFromSubPath(base, subPath, subPath.getNumToken())
 }
 
-/** Gets the node identified by the given `(package, type, path)` tuple. */
-private API::Node getNodeFromPath(string package, string type, AccessPath path) {
-  result = getNodeFromPath(package, type, path, path.getNumToken())
+/** Gets the node identified by the given `(type, path)` tuple. */
+private API::Node getNodeFromPath(string type, AccessPath path) {
+  result = getNodeFromPath(type, path, path.getNumToken())
 }
 
 pragma[nomagic]
-private predicate typeStepModel(string package, string type, AccessPath basePath, AccessPath output) {
-  summaryModel(package, type, basePath, "", output, "type")
+private predicate typeStepModel(string type, AccessPath basePath, AccessPath output) {
+  summaryModel(type, basePath, "", output, "type")
 }
 
 pragma[nomagic]
 private predicate typeStep(API::Node pred, API::Node succ) {
-  exists(string package, string type, AccessPath basePath, AccessPath output |
-    typeStepModel(package, type, basePath, output) and
-    pred = getNodeFromPath(package, type, basePath) and
+  exists(string type, AccessPath basePath, AccessPath output |
+    typeStepModel(type, basePath, output) and
+    pred = getNodeFromPath(type, basePath) and
     succ = getNodeFromSubPath(pred, output)
   )
 }
 
 /**
- * Gets an invocation identified by the given `(package, type, path)` tuple.
+ * Gets an invocation identified by the given `(type, path)` tuple.
  *
  * Unlike `getNodeFromPath`, the `path` may end with one or more call-site filters.
  */
-private Specific::InvokeNode getInvocationFromPath(
-  string package, string type, AccessPath path, int n
-) {
-  result = Specific::getAnInvocationOf(getNodeFromPath(package, type, path, n))
+private Specific::InvokeNode getInvocationFromPath(string type, AccessPath path, int n) {
+  result = Specific::getAnInvocationOf(getNodeFromPath(type, path, n))
   or
-  result = getInvocationFromPath(package, type, path, n - 1) and
+  result = getInvocationFromPath(type, path, n - 1) and
   invocationMatchesCallSiteFilter(result, path.getToken(n - 1))
 }
 
-/** Gets an invocation identified by the given `(package, type, path)` tuple. */
-private Specific::InvokeNode getInvocationFromPath(string package, string type, AccessPath path) {
-  result = getInvocationFromPath(package, type, path, path.getNumToken())
+/** Gets an invocation identified by the given `(type, path)` tuple. */
+private Specific::InvokeNode getInvocationFromPath(string type, AccessPath path) {
+  result = getInvocationFromPath(type, path, path.getNumToken())
 }
 
 /**
@@ -631,9 +596,9 @@ module ModelOutput {
      */
     cached
     API::Node getASourceNode(string kind) {
-      exists(string package, string type, string path |
-        sourceModel(package, type, path, kind) and
-        result = getNodeFromPath(package, type, path)
+      exists(string type, string path |
+        sourceModel(type, path, kind) and
+        result = getNodeFromPath(type, path)
       )
     }
 
@@ -642,9 +607,9 @@ module ModelOutput {
      */
     cached
     API::Node getASinkNode(string kind) {
-      exists(string package, string type, string path |
-        sinkModel(package, type, path, kind) and
-        result = getNodeFromPath(package, type, path)
+      exists(string type, string path |
+        sinkModel(type, path, kind) and
+        result = getNodeFromPath(type, path)
       )
     }
 
@@ -653,32 +618,31 @@ module ModelOutput {
      */
     cached
     predicate relevantSummaryModel(
-      string package, string type, string path, string input, string output, string kind
+      string type, string path, string input, string output, string kind
     ) {
-      isRelevantPackage(package) and
-      summaryModel(package, type, path, input, output, kind)
+      isRelevantType(type) and
+      summaryModel(type, path, input, output, kind)
     }
 
     /**
-     * Holds if a `baseNode` is an invocation identified by the `package,type,path` part of a summary row.
+     * Holds if a `baseNode` is an invocation identified by the `type,path` part of a summary row.
      */
     cached
-    predicate resolvedSummaryBase(
-      string package, string type, string path, Specific::InvokeNode baseNode
-    ) {
-      summaryModel(package, type, path, _, _, _) and
-      baseNode = getInvocationFromPath(package, type, path)
+    predicate resolvedSummaryBase(string type, string path, Specific::InvokeNode baseNode) {
+      summaryModel(type, path, _, _, _) and
+      baseNode = getInvocationFromPath(type, path)
     }
 
     /**
-     * Holds if `node` is seen as an instance of `(package,type)` due to a type definition
+     * Holds if `node` is seen as an instance of `type` due to a type definition
      * contributed by a CSV model.
      */
     cached
-    API::Node getATypeNode(string package, string type) { result = getNodeFromType(package, type) }
+    API::Node getATypeNode(string type) { result = getNodeFromType(type) }
   }
 
   import Cached
+  import Specific::ModelOutputSpecific
 
   /**
    * Gets an error message relating to an invalid CSV row in a model.
@@ -686,13 +650,13 @@ module ModelOutput {
   string getAWarning() {
     // Check number of columns
     exists(string row, string kind, int expectedArity, int actualArity |
-      any(SourceModelCsv csv).row(row) and kind = "source" and expectedArity = 4
+      any(SourceModelCsv csv).row(row) and kind = "source" and expectedArity = 3
       or
-      any(SinkModelCsv csv).row(row) and kind = "sink" and expectedArity = 4
+      any(SinkModelCsv csv).row(row) and kind = "sink" and expectedArity = 3
       or
-      any(SummaryModelCsv csv).row(row) and kind = "summary" and expectedArity = 6
+      any(SummaryModelCsv csv).row(row) and kind = "summary" and expectedArity = 5
       or
-      any(TypeModelCsv csv).row(row) and kind = "type" and expectedArity = 5
+      any(TypeModelCsv csv).row(row) and kind = "type" and expectedArity = 3
       or
       any(TypeVariableModelCsv csv).row(row) and kind = "type-variable" and expectedArity = 2
     |
@@ -705,7 +669,7 @@ module ModelOutput {
     or
     // Check names and arguments of access path tokens
     exists(AccessPath path, AccessPathToken token |
-      (isRelevantFullPath(_, _, path) or typeVariableModel(_, path)) and
+      (isRelevantFullPath(_, path) or typeVariableModel(_, path)) and
       token = path.getToken(_)
     |
       not isValidTokenNameInIdentifyingAccessPath(token.getName()) and
diff --git a/ruby/ql/lib/codeql/ruby/frameworks/data/internal/ApiGraphModelsSpecific.qll b/ruby/ql/lib/codeql/ruby/frameworks/data/internal/ApiGraphModelsSpecific.qll
index 03390a6c34e..500197f2f89 100644
--- a/ruby/ql/lib/codeql/ruby/frameworks/data/internal/ApiGraphModelsSpecific.qll
+++ b/ruby/ql/lib/codeql/ruby/frameworks/data/internal/ApiGraphModelsSpecific.qll
@@ -34,30 +34,73 @@ private import codeql.ruby.dataflow.internal.FlowSummaryImplSpecific as FlowSumm
 private import codeql.ruby.dataflow.internal.FlowSummaryImpl::Public
 private import codeql.ruby.dataflow.internal.DataFlowDispatch as DataFlowDispatch
 
-/**
- * Holds if models describing `package` may be relevant for the analysis of this database.
- *
- * In the context of Ruby, this is the name of a Ruby gem.
- */
-bindingset[package]
-predicate isPackageUsed(string package) {
-  // For now everything is modeled as an access path starting at any top-level, so the package name has no effect.
-  //
-  // We allow an arbitrary package name so that the model can record the name of the package in case it's needed in the future.
-  //
-  // In principle we should consider a package to be "used" if there is a transitive dependency on it, but we can only
-  // reliably see the direct dependencies.
-  //
-  // In practice, packages try to use unique top-level module names, which mitigates the precision loss of not checking
-  // the package name.
-  any()
+pragma[nomagic]
+private predicate isUsedTopLevelConstant(string name) {
+  exists(ConstantAccess access |
+    access.getName() = name and
+    not exists(access.getScopeExpr())
+  )
 }
 
-/** Gets a Ruby-specific interpretation of the `(package, type, path)` tuple after resolving the first `n` access path tokens. */
-bindingset[package, type, path]
-API::Node getExtraNodeFromPath(string package, string type, AccessPath path, int n) {
-  // A row of form `;any;Method[foo]` should match any method named `foo`.
-  exists(package) and
+bindingset[rawType]
+predicate isTypeUsed(string rawType) {
+  exists(string consts |
+    parseType(rawType, consts, _) and
+    isUsedTopLevelConstant(consts.splitAt("::", 0))
+  )
+  or
+  rawType = ["", "any"]
+}
+
+bindingset[rawType]
+private predicate parseType(string rawType, string consts, string suffix) {
+  exists(string regexp |
+    regexp = "([^!]+)(!|)" and
+    consts = rawType.regexpCapture(regexp, 1) and
+    suffix = rawType.regexpCapture(regexp, 2)
+  )
+}
+
+/**
+ * Holds if `type` can be obtained from an instance of `otherType` due to
+ * language semantics modeled by `getExtraNodeFromType`.
+ */
+bindingset[otherType]
+predicate hasImplicitTypeModel(string type, string otherType) {
+  // A::B! can be used to obtain A::B
+  parseType(otherType, type, _)
+}
+
+private predicate parseRelevantType(string rawType, string consts, string suffix) {
+  isRelevantType(rawType) and
+  parseType(rawType, consts, suffix)
+}
+
+pragma[nomagic]
+private string getConstComponent(string consts, int n) {
+  parseRelevantType(_, consts, _) and
+  result = consts.splitAt("::", n)
+}
+
+private int getNumConstComponents(string consts) {
+  result = strictcount(int n | exists(getConstComponent(consts, n)))
+}
+
+private DataFlow::ConstRef getConstantFromConstPath(string consts, int n) {
+  n = 1 and
+  result = DataFlow::getConstant(getConstComponent(consts, 0))
+  or
+  result = getConstantFromConstPath(consts, n - 1).getConstant(getConstComponent(consts, n - 1))
+}
+
+private DataFlow::ConstRef getConstantFromConstPath(string consts) {
+  result = getConstantFromConstPath(consts, getNumConstComponents(consts))
+}
+
+/** Gets a Ruby-specific interpretation of the `(type, path)` tuple after resolving the first `n` access path tokens. */
+bindingset[type, path]
+API::Node getExtraNodeFromPath(string type, AccessPath path, int n) {
+  // A row of form `any;Method[foo]` should match any method named `foo`.
   type = "any" and
   n = 1 and
   exists(EntryPointFromAnyType entry |
@@ -66,9 +109,27 @@ API::Node getExtraNodeFromPath(string package, string type, AccessPath path, int
   )
 }
 
-/** Gets a Ruby-specific interpretation of the `(package, type)` tuple. */
-API::Node getExtraNodeFromType(string package, string type) {
-  isRelevantFullPath(package, type, _) and // Allow any package name, see `isPackageUsed`.
+/** Gets a Ruby-specific interpretation of the given `type`. */
+API::Node getExtraNodeFromType(string type) {
+  exists(string consts, string suffix, DataFlow::ConstRef constRef |
+    parseRelevantType(type, consts, suffix) and
+    constRef = getConstantFromConstPath(consts)
+  |
+    suffix = "!" and
+    (
+      result.asSource() = constRef
+      or
+      result.asSource() = constRef.getADescendentModule().getAnOwnModuleSelf()
+    )
+    or
+    suffix = "" and
+    (
+      result.asSource() = constRef.getAMethodCall("new")
+      or
+      result.asSource() = constRef.getADescendentModule().getAnInstanceSelf()
+    )
+  )
+  or
   type = "" and
   result = API::root()
 }
@@ -78,7 +139,7 @@ API::Node getExtraNodeFromType(string package, string type) {
  * matching anywhere, and the path begins with `Method[methodName]`.
  */
 private predicate methodMatchedByName(AccessPath path, string methodName) {
-  isRelevantFullPath(_, "any", path) and
+  isRelevantFullPath("any", path) and
   exists(AccessPathToken token |
     token = path.getToken(0) and
     token.getName() = "Method" and
@@ -190,3 +251,5 @@ predicate isExtraValidTokenArgumentInIdentifyingAccessPath(string name, string a
     argument.regexpMatch("\\w+:") // keyword argument
   )
 }
+
+module ModelOutputSpecific { }
diff --git a/ruby/ql/lib/codeql/ruby/frameworks/stdlib/Pathname.qll b/ruby/ql/lib/codeql/ruby/frameworks/stdlib/Pathname.qll
index 85db78252c8..0ef535d3aa7 100644
--- a/ruby/ql/lib/codeql/ruby/frameworks/stdlib/Pathname.qll
+++ b/ruby/ql/lib/codeql/ruby/frameworks/stdlib/Pathname.qll
@@ -123,33 +123,31 @@ module Pathname {
    */
   private class PathnameTypeSummary extends ModelInput::TypeModelCsv {
     override predicate row(string row) {
-      // package1;type1;package2;type2;path
+      // type1;type2;path
       row =
         [
-          // Pathname.new : Pathname
-          ";Pathname;;;Member[Pathname].Instance",
           // Pathname#+(path) : Pathname
-          ";Pathname;;Pathname;Method[+].ReturnValue",
+          "Pathname;Pathname;Method[+].ReturnValue",
           // Pathname#/(path) : Pathname
-          ";Pathname;;Pathname;Method[/].ReturnValue",
+          "Pathname;Pathname;Method[/].ReturnValue",
           // Pathname#basename(path) : Pathname
-          ";Pathname;;Pathname;Method[basename].ReturnValue",
+          "Pathname;Pathname;Method[basename].ReturnValue",
           // Pathname#cleanpath(path) : Pathname
-          ";Pathname;;Pathname;Method[cleanpath].ReturnValue",
+          "Pathname;Pathname;Method[cleanpath].ReturnValue",
           // Pathname#expand_path(path) : Pathname
-          ";Pathname;;Pathname;Method[expand_path].ReturnValue",
+          "Pathname;Pathname;Method[expand_path].ReturnValue",
           // Pathname#join(path) : Pathname
-          ";Pathname;;Pathname;Method[join].ReturnValue",
+          "Pathname;Pathname;Method[join].ReturnValue",
           // Pathname#realpath(path) : Pathname
-          ";Pathname;;Pathname;Method[realpath].ReturnValue",
+          "Pathname;Pathname;Method[realpath].ReturnValue",
           // Pathname#relative_path_from(path) : Pathname
-          ";Pathname;;Pathname;Method[relative_path_from].ReturnValue",
+          "Pathname;Pathname;Method[relative_path_from].ReturnValue",
           // Pathname#sub(path) : Pathname
-          ";Pathname;;Pathname;Method[sub].ReturnValue",
+          "Pathname;Pathname;Method[sub].ReturnValue",
           // Pathname#sub_ext(path) : Pathname
-          ";Pathname;;Pathname;Method[sub_ext].ReturnValue",
+          "Pathname;Pathname;Method[sub_ext].ReturnValue",
           // Pathname#to_path(path) : Pathname
-          ";Pathname;;Pathname;Method[to_path].ReturnValue",
+          "Pathname;Pathname;Method[to_path].ReturnValue",
         ]
     }
   }
@@ -160,31 +158,31 @@ module Pathname {
       row =
         [
           // Pathname.new(path)
-          ";;Member[Pathname].Method[new];Argument[0];ReturnValue;taint",
+          "Pathname!;Method[new];Argument[0];ReturnValue;taint",
           // Pathname#dirname
-          ";Pathname;Method[dirname];Argument[self];ReturnValue;taint",
+          "Pathname;Method[dirname];Argument[self];ReturnValue;taint",
           // Pathname#each_filename
-          ";Pathname;Method[each_filename];Argument[self];Argument[block].Parameter[0];taint",
+          "Pathname;Method[each_filename];Argument[self];Argument[block].Parameter[0];taint",
           // Pathname#expand_path
-          ";Pathname;Method[expand_path];Argument[self];ReturnValue;taint",
+          "Pathname;Method[expand_path];Argument[self];ReturnValue;taint",
           // Pathname#join
-          ";Pathname;Method[join];Argument[self,any];ReturnValue;taint",
+          "Pathname;Method[join];Argument[self,any];ReturnValue;taint",
           // Pathname#parent
-          ";Pathname;Method[parent];Argument[self];ReturnValue;taint",
+          "Pathname;Method[parent];Argument[self];ReturnValue;taint",
           // Pathname#realpath
-          ";Pathname;Method[realpath];Argument[self];ReturnValue;taint",
+          "Pathname;Method[realpath];Argument[self];ReturnValue;taint",
           // Pathname#relative_path_from
-          ";Pathname;Method[relative_path_from];Argument[self];ReturnValue;taint",
+          "Pathname;Method[relative_path_from];Argument[self];ReturnValue;taint",
           // Pathname#to_path
-          ";Pathname;Method[to_path];Argument[self];ReturnValue;taint",
+          "Pathname;Method[to_path];Argument[self];ReturnValue;taint",
           // Pathname#basename
-          ";Pathname;Method[basename];Argument[self];ReturnValue;taint",
+          "Pathname;Method[basename];Argument[self];ReturnValue;taint",
           // Pathname#cleanpath
-          ";Pathname;Method[cleanpath];Argument[self];ReturnValue;taint",
+          "Pathname;Method[cleanpath];Argument[self];ReturnValue;taint",
           // Pathname#sub
-          ";Pathname;Method[sub];Argument[self];ReturnValue;taint",
+          "Pathname;Method[sub];Argument[self];ReturnValue;taint",
           // Pathname#sub_ext
-          ";Pathname;Method[sub_ext];Argument[self];ReturnValue;taint",
+          "Pathname;Method[sub_ext];Argument[self];ReturnValue;taint",
         ]
     }
   }
diff --git a/ruby/ql/test/library-tests/dataflow/local/TaintStep.expected b/ruby/ql/test/library-tests/dataflow/local/TaintStep.expected
index f1b8eb2da26..34947d0005d 100644
--- a/ruby/ql/test/library-tests/dataflow/local/TaintStep.expected
+++ b/ruby/ql/test/library-tests/dataflow/local/TaintStep.expected
@@ -1,9 +1,6 @@
 | file://:0:0:0:0 | [summary] read: argument position 0.any element in Hash[] | file://:0:0:0:0 | [summary] read: argument position 0.any element.element 1 or unknown in Hash[] |
-| file://:0:0:0:0 | parameter any of ;Pathname;Method[join] | file://:0:0:0:0 | [summary] to write: return (return) in ;Pathname;Method[join] |
 | file://:0:0:0:0 | parameter position 0 of & | file://:0:0:0:0 | [summary] read: argument position 0.any element in & |
 | file://:0:0:0:0 | parameter position 0 of + | file://:0:0:0:0 | [summary] read: argument position 0.any element in + |
-| file://:0:0:0:0 | parameter position 0 of ;;Member[Pathname].Method[new] | file://:0:0:0:0 | [summary] to write: return (return) in ;;Member[Pathname].Method[new] |
-| file://:0:0:0:0 | parameter position 0 of ;;Member[Regexp].Method[escape,quote] | file://:0:0:0:0 | [summary] to write: return (return) in ;;Member[Regexp].Method[escape,quote] |
 | file://:0:0:0:0 | parameter position 0 of ActionController::Parameters#merge | file://:0:0:0:0 | [summary] to write: return (return) in ActionController::Parameters#merge |
 | file://:0:0:0:0 | parameter position 0 of ActionController::Parameters#merge! | file://:0:0:0:0 | [summary] to write: argument self in ActionController::Parameters#merge! |
 | file://:0:0:0:0 | parameter position 0 of ActionController::Parameters#merge! | file://:0:0:0:0 | [summary] to write: return (return) in ActionController::Parameters#merge! |
@@ -17,27 +14,10 @@
 | file://:0:0:0:0 | parameter position 0 of Hash[] | file://:0:0:0:0 | [summary] read: argument position 0.any element in Hash[] |
 | file://:0:0:0:0 | parameter position 0 of String.try_convert | file://:0:0:0:0 | [summary] to write: return (return) in String.try_convert |
 | file://:0:0:0:0 | parameter position 0 of \| | file://:0:0:0:0 | [summary] read: argument position 0.any element in \| |
-| file://:0:0:0:0 | parameter position 0 of activestorage;;Member[ActiveStorage].Member[Filename].Method[new] | file://:0:0:0:0 | [summary] to write: return (return) in activestorage;;Member[ActiveStorage].Member[Filename].Method[new] |
-| file://:0:0:0:0 | parameter position 0 of activesupport;;Member[ActionView].Member[SafeBuffer].Instance.Method[safe_concat] | file://:0:0:0:0 | [summary] to write: argument self in activesupport;;Member[ActionView].Member[SafeBuffer].Instance.Method[safe_concat] |
-| file://:0:0:0:0 | parameter position 0 of activesupport;;Member[ActionView].Member[SafeBuffer].Instance.Method[safe_concat] | file://:0:0:0:0 | [summary] to write: return (return) in activesupport;;Member[ActionView].Member[SafeBuffer].Instance.Method[safe_concat] |
-| file://:0:0:0:0 | parameter position 0 of activesupport;;Member[ActionView].Member[SafeBuffer].Method[new] | file://:0:0:0:0 | [summary] to write: return (return) in activesupport;;Member[ActionView].Member[SafeBuffer].Method[new] |
 | file://:0:0:0:0 | parameter position 0.. of File.join | file://:0:0:0:0 | [summary] to write: return (return) in File.join |
 | file://:0:0:0:0 | parameter self of & | file://:0:0:0:0 | [summary] read: argument self.any element in & |
 | file://:0:0:0:0 | parameter self of * | file://:0:0:0:0 | [summary] read: argument self.any element in * |
 | file://:0:0:0:0 | parameter self of - | file://:0:0:0:0 | [summary] read: argument self.any element in - |
-| file://:0:0:0:0 | parameter self of ;Pathname;Method[basename] | file://:0:0:0:0 | [summary] to write: return (return) in ;Pathname;Method[basename] |
-| file://:0:0:0:0 | parameter self of ;Pathname;Method[cleanpath] | file://:0:0:0:0 | [summary] to write: return (return) in ;Pathname;Method[cleanpath] |
-| file://:0:0:0:0 | parameter self of ;Pathname;Method[dirname] | file://:0:0:0:0 | [summary] to write: return (return) in ;Pathname;Method[dirname] |
-| file://:0:0:0:0 | parameter self of ;Pathname;Method[each_filename] | file://:0:0:0:0 | [summary] to write: argument block.parameter position 0 in ;Pathname;Method[each_filename] |
-| file://:0:0:0:0 | parameter self of ;Pathname;Method[existence] | file://:0:0:0:0 | [summary] to write: return (return) in ;Pathname;Method[existence] |
-| file://:0:0:0:0 | parameter self of ;Pathname;Method[expand_path] | file://:0:0:0:0 | [summary] to write: return (return) in ;Pathname;Method[expand_path] |
-| file://:0:0:0:0 | parameter self of ;Pathname;Method[join] | file://:0:0:0:0 | [summary] to write: return (return) in ;Pathname;Method[join] |
-| file://:0:0:0:0 | parameter self of ;Pathname;Method[parent] | file://:0:0:0:0 | [summary] to write: return (return) in ;Pathname;Method[parent] |
-| file://:0:0:0:0 | parameter self of ;Pathname;Method[realpath] | file://:0:0:0:0 | [summary] to write: return (return) in ;Pathname;Method[realpath] |
-| file://:0:0:0:0 | parameter self of ;Pathname;Method[relative_path_from] | file://:0:0:0:0 | [summary] to write: return (return) in ;Pathname;Method[relative_path_from] |
-| file://:0:0:0:0 | parameter self of ;Pathname;Method[sub] | file://:0:0:0:0 | [summary] to write: return (return) in ;Pathname;Method[sub] |
-| file://:0:0:0:0 | parameter self of ;Pathname;Method[sub_ext] | file://:0:0:0:0 | [summary] to write: return (return) in ;Pathname;Method[sub_ext] |
-| file://:0:0:0:0 | parameter self of ;Pathname;Method[to_path] | file://:0:0:0:0 | [summary] to write: return (return) in ;Pathname;Method[to_path] |
 | file://:0:0:0:0 | parameter self of ActionController::Parameters#<various> | file://:0:0:0:0 | [summary] to write: return (return) in ActionController::Parameters#<various> |
 | file://:0:0:0:0 | parameter self of ActionController::Parameters#merge | file://:0:0:0:0 | [summary] to write: return (return) in ActionController::Parameters#merge |
 | file://:0:0:0:0 | parameter self of ActionController::Parameters#merge! | file://:0:0:0:0 | [summary] to write: argument self in ActionController::Parameters#merge! |
@@ -45,8 +25,6 @@
 | file://:0:0:0:0 | parameter self of ActiveSupportStringTransform | file://:0:0:0:0 | [summary] to write: return (return) in ActiveSupportStringTransform |
 | file://:0:0:0:0 | parameter self of [] | file://:0:0:0:0 | [summary] to write: return (return) in [] |
 | file://:0:0:0:0 | parameter self of \| | file://:0:0:0:0 | [summary] read: argument self.any element in \| |
-| file://:0:0:0:0 | parameter self of activestorage;;Member[ActiveStorage].Member[Filename].Instance.Method[sanitized] | file://:0:0:0:0 | [summary] to write: return (return) in activestorage;;Member[ActiveStorage].Member[Filename].Instance.Method[sanitized] |
-| file://:0:0:0:0 | parameter self of activesupport;;Member[ActionView].Member[SafeBuffer].Instance.Method[concat,insert,prepend,to_s,to_param] | file://:0:0:0:0 | [summary] to write: return (return) in activesupport;;Member[ActionView].Member[SafeBuffer].Instance.Method[concat,insert,prepend,to_s,to_param] |
 | file://:0:0:0:0 | parameter self of each(0) | file://:0:0:0:0 | [summary] read: argument self.any element in each(0) |
 | local_dataflow.rb:1:1:7:3 | self (foo) | local_dataflow.rb:3:8:3:10 | self |
 | local_dataflow.rb:1:1:7:3 | self in foo | local_dataflow.rb:1:1:7:3 | self (foo) |
diff --git a/ruby/ql/test/library-tests/dataflow/summaries/Summaries.expected b/ruby/ql/test/library-tests/dataflow/summaries/Summaries.expected
index 055faee45c6..f916520c8ce 100644
--- a/ruby/ql/test/library-tests/dataflow/summaries/Summaries.expected
+++ b/ruby/ql/test/library-tests/dataflow/summaries/Summaries.expected
@@ -534,8 +534,8 @@ invalidSpecComponent
 | summaries.rb:150:39:150:45 | tainted | summaries.rb:1:20:1:36 | call to source :  | summaries.rb:150:39:150:45 | tainted | $@ | summaries.rb:1:20:1:36 | call to source :  | call to source :  |
 | summaries.rb:150:39:150:45 | tainted | summaries.rb:1:20:1:36 | call to source :  | summaries.rb:150:39:150:45 | tainted | $@ | summaries.rb:1:20:1:36 | call to source :  | call to source :  |
 warning
-| CSV type row should have 5 columns but has 2: test;TooFewColumns |
-| CSV type row should have 5 columns but has 8: test;TooManyColumns;;;Member[Foo].Instance;too;many;columns |
+| CSV type row should have 3 columns but has 1: TooFewColumns |
+| CSV type row should have 3 columns but has 6: TooManyColumns;;Member[Foo].Instance;too;many;columns |
 | Invalid argument '0-1' in token 'Argument[0-1]' in access path: Method[foo].Argument[0-1] |
 | Invalid argument '*' in token 'Argument[*]' in access path: Method[foo].Argument[*] |
 | Invalid token 'Argument' is missing its arguments, in access path: Method[foo].Argument |
diff --git a/ruby/ql/test/library-tests/dataflow/summaries/Summaries.ql b/ruby/ql/test/library-tests/dataflow/summaries/Summaries.ql
index 416a8635deb..b59862d0e5a 100644
--- a/ruby/ql/test/library-tests/dataflow/summaries/Summaries.ql
+++ b/ruby/ql/test/library-tests/dataflow/summaries/Summaries.ql
@@ -67,32 +67,32 @@ private class StepsFromModel extends ModelInput::SummaryModelCsv {
   override predicate row(string row) {
     row =
       [
-        ";any;Method[set_value];Argument[0];Argument[self].Field[@value];value",
-        ";any;Method[get_value];Argument[self].Field[@value];ReturnValue;value",
-        ";;Member[Foo].Method[firstArg];Argument[0];ReturnValue;taint",
-        ";;Member[Foo].Method[secondArg];Argument[1];ReturnValue;taint",
-        ";;Member[Foo].Method[onlyWithoutBlock].WithoutBlock;Argument[0];ReturnValue;taint",
-        ";;Member[Foo].Method[onlyWithBlock].WithBlock;Argument[0];ReturnValue;taint",
-        ";;Member[Foo].Method[blockArg].Argument[block].Parameter[0].Method[preserveTaint];Argument[0];ReturnValue;taint",
-        ";;Member[Foo].Method[namedArg];Argument[foo:];ReturnValue;taint",
-        ";;Member[Foo].Method[anyArg];Argument[any];ReturnValue;taint",
-        ";;Member[Foo].Method[anyNamedArg];Argument[any-named];ReturnValue;taint",
-        ";;Member[Foo].Method[anyPositionFromOne];Argument[1..];ReturnValue;taint",
-        ";;Member[Foo].Method[intoNamedCallback];Argument[0];Argument[foo:].Parameter[0];taint",
-        ";;Member[Foo].Method[intoNamedParameter];Argument[0];Argument[0].Parameter[foo:];taint",
-        ";;Member[Foo].Method[startInNamedCallback].Argument[foo:].Parameter[0].Method[preserveTaint];Argument[0];ReturnValue;taint",
-        ";;Member[Foo].Method[startInNamedParameter].Argument[0].Parameter[foo:].Method[preserveTaint];Argument[0];ReturnValue;taint",
-        ";;Member[Foo].Instance.Method[flowToAnyArg];Argument[0];Argument[any];taint",
-        ";;Member[Foo].Instance.Method[flowToSelf];Argument[0];Argument[self];taint",
-        ";any;Method[matchedByName];Argument[0];ReturnValue;taint",
-        ";any;Method[matchedByNameRcv];Argument[self];ReturnValue;taint",
-        ";any;Method[withElementOne];Argument[self].WithElement[1];ReturnValue;value",
-        ";any;Method[withExactlyElementOne];Argument[self].WithElement[1!];ReturnValue;value",
-        ";any;Method[withoutElementOne];Argument[self].WithoutElement[1];Argument[self];value",
-        ";any;Method[withoutExactlyElementOne];Argument[self].WithoutElement[1!];Argument[self];value",
-        ";any;Method[readElementOne];Argument[self].Element[1];ReturnValue;value",
-        ";any;Method[readExactlyElementOne];Argument[self].Element[1!];ReturnValue;value",
-        ";any;Method[withoutElementOneAndTwo];Argument[self].WithoutElement[1].WithoutElement[2].WithElement[any];Argument[self];value",
+        "any;Method[set_value];Argument[0];Argument[self].Field[@value];value",
+        "any;Method[get_value];Argument[self].Field[@value];ReturnValue;value",
+        "Foo!;Method[firstArg];Argument[0];ReturnValue;taint",
+        "Foo!;Method[secondArg];Argument[1];ReturnValue;taint",
+        "Foo!;Method[onlyWithoutBlock].WithoutBlock;Argument[0];ReturnValue;taint",
+        "Foo!;Method[onlyWithBlock].WithBlock;Argument[0];ReturnValue;taint",
+        "Foo!;Method[blockArg].Argument[block].Parameter[0].Method[preserveTaint];Argument[0];ReturnValue;taint",
+        "Foo!;Method[namedArg];Argument[foo:];ReturnValue;taint",
+        "Foo!;Method[anyArg];Argument[any];ReturnValue;taint",
+        "Foo!;Method[anyNamedArg];Argument[any-named];ReturnValue;taint",
+        "Foo!;Method[anyPositionFromOne];Argument[1..];ReturnValue;taint",
+        "Foo!;Method[intoNamedCallback];Argument[0];Argument[foo:].Parameter[0];taint",
+        "Foo!;Method[intoNamedParameter];Argument[0];Argument[0].Parameter[foo:];taint",
+        "Foo!;Method[startInNamedCallback].Argument[foo:].Parameter[0].Method[preserveTaint];Argument[0];ReturnValue;taint",
+        "Foo!;Method[startInNamedParameter].Argument[0].Parameter[foo:].Method[preserveTaint];Argument[0];ReturnValue;taint",
+        "Foo;Method[flowToAnyArg];Argument[0];Argument[any];taint",
+        "Foo;Method[flowToSelf];Argument[0];Argument[self];taint",
+        "any;Method[matchedByName];Argument[0];ReturnValue;taint",
+        "any;Method[matchedByNameRcv];Argument[self];ReturnValue;taint",
+        "any;Method[withElementOne];Argument[self].WithElement[1];ReturnValue;value",
+        "any;Method[withExactlyElementOne];Argument[self].WithElement[1!];ReturnValue;value",
+        "any;Method[withoutElementOne];Argument[self].WithoutElement[1];Argument[self];value",
+        "any;Method[withoutExactlyElementOne];Argument[self].WithoutElement[1!];Argument[self];value",
+        "any;Method[readElementOne];Argument[self].Element[1];ReturnValue;value",
+        "any;Method[readExactlyElementOne];Argument[self].Element[1!];ReturnValue;value",
+        "any;Method[withoutElementOneAndTwo];Argument[self].WithoutElement[1].WithoutElement[2].WithElement[any];Argument[self];value",
       ]
   }
 }
@@ -101,23 +101,21 @@ private class TypeFromModel extends ModelInput::TypeModelCsv {
   override predicate row(string row) {
     row =
       [
-        "test;FooOrBar;;;Member[Foo].Instance", //
-        "test;FooOrBar;;;Member[Bar].Instance", //
-        "test;FooOrBar;test;FooOrBar;Method[next].ReturnValue",
+        "~FooOrBar;Foo;", //
+        "~FooOrBar;Bar;", //
+        "~FooOrBar;~FooOrBar;Method[next].ReturnValue",
       ]
   }
 }
 
 private class TypeFromCodeQL extends ModelInput::TypeModel {
-  override DataFlow::Node getASource(string package, string type) {
-    package = "test" and
-    type = "FooOrBar" and
+  override DataFlow::Node getASource(string type) {
+    type = "~FooOrBar" and
     result.getConstantValue().getString() = "magic_string"
   }
 
-  override API::Node getAnApiNode(string package, string type) {
-    package = "test" and
-    type = "FooOrBar" and
+  override API::Node getAnApiNode(string type) {
+    type = "~FooOrBar" and
     result = API::getTopLevelMember("Alias").getMember(["Foo", "Bar"])
   }
 }
@@ -126,13 +124,13 @@ private class InvalidTypeModel extends ModelInput::TypeModelCsv {
   override predicate row(string row) {
     row =
       [
-        "test;TooManyColumns;;;Member[Foo].Instance;too;many;columns", //
-        "test;TooFewColumns", //
-        "test;X;test;Y;Method[foo].Arg[0]", //
-        "test;X;test;Y;Method[foo].Argument[0-1]", //
-        "test;X;test;Y;Method[foo].Argument[*]", //
-        "test;X;test;Y;Method[foo].Argument", //
-        "test;X;test;Y;Method[foo].Member", //
+        "TooManyColumns;;Member[Foo].Instance;too;many;columns", //
+        "TooFewColumns", //
+        "Foo;Foo;Method[foo].Arg[0]", //
+        "Foo;Foo;Method[foo].Argument[0-1]", //
+        "Foo;Foo;Method[foo].Argument[*]", //
+        "Foo;Foo;Method[foo].Argument", //
+        "Foo;Foo;Method[foo].Member", //
       ]
   }
 }
@@ -141,12 +139,12 @@ private class SinkFromModel extends ModelInput::SinkModelCsv {
   override predicate row(string row) {
     row =
       [
-        "test;FooOrBar;Method[method].Argument[0];test-sink", //
-        ";;Member[Foo].Method[sinkAnyArg].Argument[any];test-sink", //
-        ";;Member[Foo].Method[sinkAnyNamedArg].Argument[any-named];test-sink", //
-        ";;Member[Foo].Method[getSinks].ReturnValue.Element[any].Method[mySink].Argument[0];test-sink", //
-        ";;Member[Foo].Method[arraySink].Argument[0].Element[any];test-sink", //
-        ";;Member[Foo].Method[secondArrayElementIsSink].Argument[0].Element[1];test-sink", //
+        "~FooOrBar;Method[method].Argument[0];test-sink", //
+        "Foo!;Method[sinkAnyArg].Argument[any];test-sink", //
+        "Foo!;Method[sinkAnyNamedArg].Argument[any-named];test-sink", //
+        "Foo!;Method[getSinks].ReturnValue.Element[any].Method[mySink].Argument[0];test-sink", //
+        "Foo!;Method[arraySink].Argument[0].Element[any];test-sink", //
+        "Foo!;Method[secondArrayElementIsSink].Argument[0].Element[1];test-sink", //
       ]
   }
 }
diff --git a/ruby/ql/test/library-tests/frameworks/ActionDispatch.ql b/ruby/ql/test/library-tests/frameworks/ActionDispatch.ql
index 5f25c62f32e..5b1275595ea 100644
--- a/ruby/ql/test/library-tests/frameworks/ActionDispatch.ql
+++ b/ruby/ql/test/library-tests/frameworks/ActionDispatch.ql
@@ -29,9 +29,7 @@ query predicate underscore(string input, string output) {
     ]
 }
 
-query predicate mimeTypeInstances(API::Node n) {
-  n = ModelOutput::getATypeNode("actiondispatch", "Mime::Type")
-}
+query predicate mimeTypeInstances(API::Node n) { n = ModelOutput::getATypeNode("Mime::Type") }
 
 query predicate mimeTypeMatchRegExpInterpretations(
   ActionDispatch::MimeTypeMatchRegExpInterpretation s
diff --git a/ruby/ql/test/library-tests/frameworks/pathname/Pathname.expected b/ruby/ql/test/library-tests/frameworks/pathname/Pathname.expected
index e56238cf023..c760575bf2e 100644
--- a/ruby/ql/test/library-tests/frameworks/pathname/Pathname.expected
+++ b/ruby/ql/test/library-tests/frameworks/pathname/Pathname.expected
@@ -59,12 +59,12 @@ pathnameInstances
 | Pathname.rb:42:1:42:3 | p01 |
 | file://:0:0:0:0 | parameter position 0 of + |
 | file://:0:0:0:0 | parameter self of + |
-| file://:0:0:0:0 | parameter self of ;Pathname;Method[cleanpath] |
-| file://:0:0:0:0 | parameter self of ;Pathname;Method[expand_path] |
-| file://:0:0:0:0 | parameter self of ;Pathname;Method[realpath] |
-| file://:0:0:0:0 | parameter self of ;Pathname;Method[relative_path_from] |
-| file://:0:0:0:0 | parameter self of ;Pathname;Method[sub_ext] |
-| file://:0:0:0:0 | parameter self of ;Pathname;Method[to_path] |
+| file://:0:0:0:0 | parameter self of Pathname;Method[cleanpath] |
+| file://:0:0:0:0 | parameter self of Pathname;Method[expand_path] |
+| file://:0:0:0:0 | parameter self of Pathname;Method[realpath] |
+| file://:0:0:0:0 | parameter self of Pathname;Method[relative_path_from] |
+| file://:0:0:0:0 | parameter self of Pathname;Method[sub_ext] |
+| file://:0:0:0:0 | parameter self of Pathname;Method[to_path] |
 | file://:0:0:0:0 | parameter self of sub |
 | file://:0:0:0:0 | parameter self of to_s |
 fileSystemAccesses
@@ -135,12 +135,12 @@ fileNameSources
 | Pathname.rb:42:1:42:3 | p01 |
 | file://:0:0:0:0 | parameter position 0 of + |
 | file://:0:0:0:0 | parameter self of + |
-| file://:0:0:0:0 | parameter self of ;Pathname;Method[cleanpath] |
-| file://:0:0:0:0 | parameter self of ;Pathname;Method[expand_path] |
-| file://:0:0:0:0 | parameter self of ;Pathname;Method[realpath] |
-| file://:0:0:0:0 | parameter self of ;Pathname;Method[relative_path_from] |
-| file://:0:0:0:0 | parameter self of ;Pathname;Method[sub_ext] |
-| file://:0:0:0:0 | parameter self of ;Pathname;Method[to_path] |
+| file://:0:0:0:0 | parameter self of Pathname;Method[cleanpath] |
+| file://:0:0:0:0 | parameter self of Pathname;Method[expand_path] |
+| file://:0:0:0:0 | parameter self of Pathname;Method[realpath] |
+| file://:0:0:0:0 | parameter self of Pathname;Method[relative_path_from] |
+| file://:0:0:0:0 | parameter self of Pathname;Method[sub_ext] |
+| file://:0:0:0:0 | parameter self of Pathname;Method[to_path] |
 | file://:0:0:0:0 | parameter self of sub |
 | file://:0:0:0:0 | parameter self of to_s |
 fileSystemReadAccesses

From 1c910550e6c3da3095796dfbf53c03b83a9288e4 Mon Sep 17 00:00:00 2001
From: Asger F <asgerf@github.com>
Date: Mon, 14 Nov 2022 14:23:39 +0100
Subject: [PATCH 0566/1420] Python: merge package/type columns

---
 .../lib/semmle/python/frameworks/Asyncpg.qll  |  23 +-
 .../data/internal/ApiGraphModels.qll          | 312 ++++++++----------
 .../data/internal/ApiGraphModelsSpecific.qll  |  40 +--
 .../library-tests/frameworks/data/test.ql     |  91 ++---
 .../frameworks/data/warnings.expected         |   4 +-
 .../library-tests/frameworks/data/warnings.ql |  14 +-
 6 files changed, 227 insertions(+), 257 deletions(-)

diff --git a/python/ql/lib/semmle/python/frameworks/Asyncpg.qll b/python/ql/lib/semmle/python/frameworks/Asyncpg.qll
index ca28dca550f..7ded3730788 100644
--- a/python/ql/lib/semmle/python/frameworks/Asyncpg.qll
+++ b/python/ql/lib/semmle/python/frameworks/Asyncpg.qll
@@ -17,14 +17,15 @@ private module Asyncpg {
       row =
         [
           // a `ConnectionPool` that is created when the result of `asyncpg.create_pool()` is awaited.
-          "asyncpg;ConnectionPool;asyncpg;;Member[create_pool].ReturnValue.Awaited",
+          "asyncpg.ConnectionPool;asyncpg;Member[create_pool].ReturnValue.Awaited",
           // a `Connection` that is created when
           // * - the result of `asyncpg.connect()` is awaited.
           // * - the result of calling `acquire` on a `ConnectionPool` is awaited.
-          "asyncpg;Connection;asyncpg;;Member[connect].ReturnValue.Awaited",
-          "asyncpg;Connection;asyncpg;ConnectionPool;Member[acquire].ReturnValue.Awaited",
+          "asyncpg.Connection;asyncpg;Member[connect].ReturnValue.Awaited",
+          "asyncpg.Connection;asyncpg.ConnectionPool;Member[acquire].ReturnValue.Awaited",
           // Creating an internal `~Connection` type that contains both `Connection` and `ConnectionPool`.
-          "asyncpg;~Connection;asyncpg;Connection;", "asyncpg;~Connection;asyncpg;ConnectionPool;"
+          "asyncpg.~Connection;asyncpg.Connection;", //
+          "asyncpg.~Connection;asyncpg.ConnectionPool;"
         ]
     }
   }
@@ -35,13 +36,13 @@ private module Asyncpg {
       row =
         [
           // `Connection`s and `ConnectionPool`s provide some methods that execute SQL.
-          "asyncpg;~Connection;Member[copy_from_query,execute,fetch,fetchrow,fetchval].Argument[0,query:];sql-injection",
-          "asyncpg;~Connection;Member[executemany].Argument[0,command:];sql-injection",
+          "asyncpg.~Connection;Member[copy_from_query,execute,fetch,fetchrow,fetchval].Argument[0,query:];sql-injection",
+          "asyncpg.~Connection;Member[executemany].Argument[0,command:];sql-injection",
           // A model of `Connection` and `ConnectionPool`, which provide some methods that access the file system.
-          "asyncpg;~Connection;Member[copy_from_query,copy_from_table].Argument[output:];path-injection",
-          "asyncpg;~Connection;Member[copy_to_table].Argument[source:];path-injection",
+          "asyncpg.~Connection;Member[copy_from_query,copy_from_table].Argument[output:];path-injection",
+          "asyncpg.~Connection;Member[copy_to_table].Argument[source:];path-injection",
           // the `PreparedStatement` class in `asyncpg`.
-          "asyncpg;Connection;Member[prepare].Argument[0,query:];sql-injection",
+          "asyncpg.Connection;Member[prepare].Argument[0,query:];sql-injection",
         ]
     }
   }
@@ -58,7 +59,7 @@ private module Asyncpg {
   module Cursor {
     class CursorConstruction extends SqlConstruction::Range, API::CallNode {
       CursorConstruction() {
-        this = ModelOutput::getATypeNode("asyncpg", "Connection").getMember("cursor").getACall()
+        this = ModelOutput::getATypeNode("asyncpg.Connection").getMember("cursor").getACall()
       }
 
       override DataFlow::Node getSql() { result = this.getParameter(0, "query").asSink() }
@@ -76,7 +77,7 @@ private module Asyncpg {
         or
         exists(API::CallNode prepareCall |
           prepareCall =
-            ModelOutput::getATypeNode("asyncpg", "Connection").getMember("prepare").getACall()
+            ModelOutput::getATypeNode("asyncpg.Connection").getMember("prepare").getACall()
         |
           sql = prepareCall.getParameter(0, "query").asSink() and
           this =
diff --git a/python/ql/lib/semmle/python/frameworks/data/internal/ApiGraphModels.qll b/python/ql/lib/semmle/python/frameworks/data/internal/ApiGraphModels.qll
index 9b2428f3413..0e744ba801a 100644
--- a/python/ql/lib/semmle/python/frameworks/data/internal/ApiGraphModels.qll
+++ b/python/ql/lib/semmle/python/frameworks/data/internal/ApiGraphModels.qll
@@ -5,23 +5,20 @@
  *
  * The CSV specification has the following columns:
  * - Sources:
- *   `package; type; path; kind`
+ *   `type; path; kind`
  * - Sinks:
- *   `package; type; path; kind`
+ *   `type; path; kind`
  * - Summaries:
- *   `package; type; path; input; output; kind`
+ *   `type; path; input; output; kind`
  * - Types:
- *   `package1; type1; package2; type2; path`
+ *   `type1; type2; path`
  *
  * The interpretation of a row is similar to API-graphs with a left-to-right
  * reading.
- * 1. The `package` column selects a package name, as it would be referenced in the source code,
- *    such as an NPM package, PIP package, or Ruby gem. (See `ModelsAsData.qll` for language-specific details).
- *    It may also be a synthetic package used for a type definition (see type definitions below).
- * 2. The `type` column selects all instances of a named type originating from that package,
- *    or the empty string if referring to the package itself.
+ * 1. The `type` column selects all instances of a named type. The syntax of this column is language-specific.
+ *    The language defines some type names that the analysis knows how to identify without models.
  *    It can also be a synthetic type name defined by a type definition (see type definitions below).
- * 3. The `path` column is a `.`-separated list of "access path tokens" to resolve, starting at the node selected by `package` and `type`.
+ * 2. The `path` column is a `.`-separated list of "access path tokens" to resolve, starting at the node selected by `type`.
  *
  *    Every language supports the following tokens:
  *     - Argument[n]: the n-th argument to a call. May be a range of form `x..y` (inclusive) and/or a comma-separated list.
@@ -42,10 +39,10 @@
  *
  *    For the time being, please consult `ApiGraphModelsSpecific.qll` to see which language-specific tokens are currently supported.
  *
- * 4. The `input` and `output` columns specify how data enters and leaves the element selected by the
- *    first `(package, type, path)` tuple. Both strings are `.`-separated access paths
+ * 3. The `input` and `output` columns specify how data enters and leaves the element selected by the
+ *    first `(type, path)` tuple. Both strings are `.`-separated access paths
  *    of the same syntax as the `path` column.
- * 5. The `kind` column is a tag that can be referenced from QL to determine to
+ * 4. The `kind` column is a tag that can be referenced from QL to determine to
  *    which classes the interpreted elements should be added. For example, for
  *    sources `"remote"` indicates a default remote flow source, and for summaries
  *    `"taint"` indicates a default additional taint step and `"value"` indicates a
@@ -53,17 +50,17 @@
  *
  * ### Types
  *
- * A type row of form `package1; type1; package2; type2; path` indicates that `package2; type2; path`
- * should be seen as an instance of the type `package1; type1`.
+ * A type row of form `type1; type2; path` indicates that `type2; path`
+ * should be seen as an instance of the type `type1`.
  *
- * A `(package,type)` pair may refer to a static type or a synthetic type name used internally in the model.
+ * A type may refer to a static type or a synthetic type name used internally in the model.
  * Synthetic type names can be used to reuse intermediate sub-paths, when there are multiple ways to access the same
  * element.
- * See `ModelsAsData.qll` for the language-specific interpretation of packages and static type names.
+ * See `ModelsAsData.qll` for the language-specific interpretation of type names.
  *
- * By convention, if one wants to avoid clashes with static types from the package, the type name
- * should be prefixed with a tilde character (`~`). For example, `(foo, ~Bar)` can be used to indicate that
- * the type is related to the `foo` package but is not intended to match a static type.
+ * By convention, if one wants to avoid clashes with static types, the type name
+ * should be prefixed with a tilde character (`~`). For example, `~Bar` can be used to indicate that
+ * the type is not intended to match a static type.
  */
 
 private import ApiGraphModelsSpecific as Specific
@@ -89,9 +86,9 @@ module ModelInput {
      *
      * A row of form
      * ```
-     * package;type;path;kind
+     * type;path;kind
      * ```
-     * indicates that the value at `(package, type, path)` should be seen as a flow
+     * indicates that the value at `(type, path)` should be seen as a flow
      * source of the given `kind`.
      *
      * The kind `remote` represents a general remote flow source.
@@ -110,9 +107,9 @@ module ModelInput {
      *
      * A row of form
      * ```
-     * package;type;path;kind
+     * type;path;kind
      * ```
-     * indicates that the value at `(package, type, path)` should be seen as a sink
+     * indicates that the value at `(type, path)` should be seen as a sink
      * of the given `kind`.
      */
     abstract predicate row(string row);
@@ -129,9 +126,9 @@ module ModelInput {
      *
      * A row of form
      * ```
-     * package;type;path;input;output;kind
+     * type;path;input;output;kind
      * ```
-     * indicates that for each call to `(package, type, path)`, the value referred to by `input`
+     * indicates that for each call to `(type, path)`, the value referred to by `input`
      * can flow to the value referred to by `output`.
      *
      * `kind` should be either `value` or `taint`, for value-preserving or taint-preserving steps,
@@ -151,9 +148,9 @@ module ModelInput {
      *
      * A row of form,
      * ```
-     * package1;type1;package2;type2;path
+     * type1;type2;path
      * ```
-     * indicates that `(package2, type2, path)` should be seen as an instance of `(package1, type1)`.
+     * indicates that `(type2, path)` should be seen as an instance of `type1`.
      */
     abstract predicate row(string row);
   }
@@ -163,28 +160,28 @@ module ModelInput {
    */
   class TypeModel extends Unit {
     /**
-     * Gets a data-flow node that is a source of the type `package;type`.
+     * Gets a data-flow node that is a source of the given `type`.
      *
      * This must not depend on API graphs, but ensures that an API node is generated for
      * the source.
      */
-    DataFlow::Node getASource(string package, string type) { none() }
+    DataFlow::Node getASource(string type) { none() }
 
     /**
-     * Gets a data-flow node that is a sink of the type `package;type`,
+     * Gets a data-flow node that is a sink of the given `type`,
      * usually because it is an argument passed to a parameter of that type.
      *
      * This must not depend on API graphs, but ensures that an API node is generated for
      * the sink.
      */
-    DataFlow::Node getASink(string package, string type) { none() }
+    DataFlow::Node getASink(string type) { none() }
 
     /**
-     * Gets an API node that is a source or sink of the type `package;type`.
+     * Gets an API node that is a source or sink of the given `type`.
      *
      * Unlike `getASource` and `getASink`, this may depend on API graphs.
      */
-    API::Node getAnApiNode(string package, string type) { none() }
+    API::Node getAnApiNode(string type) { none() }
   }
 
   /**
@@ -209,7 +206,7 @@ private import ModelInput
 /**
  * An empty class, except in specific tests.
  *
- * If this is non-empty, all models are parsed even if the package is not
+ * If this is non-empty, all models are parsed even if the type name is not
  * considered relevant for the current database.
  */
 abstract class TestAllModels extends Unit { }
@@ -232,53 +229,44 @@ private predicate typeModel(string row) { any(TypeModelCsv s).row(inversePad(row
 private predicate typeVariableModel(string row) { any(TypeVariableModelCsv s).row(inversePad(row)) }
 
 /** Holds if a source model exists for the given parameters. */
-predicate sourceModel(string package, string type, string path, string kind) {
+predicate sourceModel(string type, string path, string kind) {
   exists(string row |
     sourceModel(row) and
-    row.splitAt(";", 0) = package and
-    row.splitAt(";", 1) = type and
-    row.splitAt(";", 2) = path and
-    row.splitAt(";", 3) = kind
+    row.splitAt(";", 0) = type and
+    row.splitAt(";", 1) = path and
+    row.splitAt(";", 2) = kind
   )
 }
 
 /** Holds if a sink model exists for the given parameters. */
-private predicate sinkModel(string package, string type, string path, string kind) {
+private predicate sinkModel(string type, string path, string kind) {
   exists(string row |
     sinkModel(row) and
-    row.splitAt(";", 0) = package and
-    row.splitAt(";", 1) = type and
-    row.splitAt(";", 2) = path and
-    row.splitAt(";", 3) = kind
+    row.splitAt(";", 0) = type and
+    row.splitAt(";", 1) = path and
+    row.splitAt(";", 2) = kind
   )
 }
 
 /** Holds if a summary model `row` exists for the given parameters. */
-private predicate summaryModel(
-  string package, string type, string path, string input, string output, string kind
-) {
+private predicate summaryModel(string type, string path, string input, string output, string kind) {
   exists(string row |
     summaryModel(row) and
-    row.splitAt(";", 0) = package and
-    row.splitAt(";", 1) = type and
-    row.splitAt(";", 2) = path and
-    row.splitAt(";", 3) = input and
-    row.splitAt(";", 4) = output and
-    row.splitAt(";", 5) = kind
+    row.splitAt(";", 0) = type and
+    row.splitAt(";", 1) = path and
+    row.splitAt(";", 2) = input and
+    row.splitAt(";", 3) = output and
+    row.splitAt(";", 4) = kind
   )
 }
 
 /** Holds if a type model exists for the given parameters. */
-private predicate typeModel(
-  string package1, string type1, string package2, string type2, string path
-) {
+private predicate typeModel(string type1, string type2, string path) {
   exists(string row |
     typeModel(row) and
-    row.splitAt(";", 0) = package1 and
-    row.splitAt(";", 1) = type1 and
-    row.splitAt(";", 2) = package2 and
-    row.splitAt(";", 3) = type2 and
-    row.splitAt(";", 4) = path
+    row.splitAt(";", 0) = type1 and
+    row.splitAt(";", 1) = type2 and
+    row.splitAt(";", 2) = path
   )
 }
 
@@ -292,61 +280,50 @@ private predicate typeVariableModel(string name, string path) {
 }
 
 /**
- * Gets a package that should be seen as an alias for the given other `package`,
- * or the `package` itself.
+ * Holds if CSV rows involving `type` might be relevant for the analysis of this database.
  */
-bindingset[package]
-bindingset[result]
-string getAPackageAlias(string package) {
-  typeModel(package, "", result, "", "")
-  or
-  result = package
-}
-
-/**
- * Holds if CSV rows involving `package` might be relevant for the analysis of this database.
- */
-private predicate isRelevantPackage(string package) {
+predicate isRelevantType(string type) {
   (
-    sourceModel(package, _, _, _) or
-    sinkModel(package, _, _, _) or
-    summaryModel(package, _, _, _, _, _) or
-    typeModel(_, _, package, _, _)
+    sourceModel(type, _, _) or
+    sinkModel(type, _, _) or
+    summaryModel(type, _, _, _, _) or
+    typeModel(_, type, _)
   ) and
   (
-    Specific::isPackageUsed(package)
+    Specific::isTypeUsed(type)
     or
     exists(TestAllModels t)
   )
   or
-  exists(string other |
-    isRelevantPackage(other) and
-    typeModel(package, _, other, _, _)
+  exists(string other | isRelevantType(other) |
+    typeModel(type, other, _)
+    or
+    Specific::hasImplicitTypeModel(type, other)
   )
 }
 
 /**
- * Holds if `package,type,path` is used in some CSV row.
+ * Holds if `type,path` is used in some CSV row.
  */
 pragma[nomagic]
-predicate isRelevantFullPath(string package, string type, string path) {
-  isRelevantPackage(package) and
+predicate isRelevantFullPath(string type, string path) {
+  isRelevantType(type) and
   (
-    sourceModel(package, type, path, _) or
-    sinkModel(package, type, path, _) or
-    summaryModel(package, type, path, _, _, _) or
-    typeModel(_, _, package, type, path)
+    sourceModel(type, path, _) or
+    sinkModel(type, path, _) or
+    summaryModel(type, path, _, _, _) or
+    typeModel(_, type, path)
   )
 }
 
 /** A string from a CSV row that should be parsed as an access path. */
 private class AccessPathRange extends AccessPath::Range {
   AccessPathRange() {
-    isRelevantFullPath(_, _, this)
+    isRelevantFullPath(_, this)
     or
-    exists(string package | isRelevantPackage(package) |
-      summaryModel(package, _, _, this, _, _) or
-      summaryModel(package, _, _, _, this, _)
+    exists(string type | isRelevantType(type) |
+      summaryModel(type, _, this, _, _) or
+      summaryModel(type, _, _, this, _)
     )
     or
     typeVariableModel(_, this)
@@ -400,83 +377,73 @@ private predicate invocationMatchesCallSiteFilter(Specific::InvokeNode invoke, A
 }
 
 private class TypeModelUseEntry extends API::EntryPoint {
-  private string package;
   private string type;
 
   TypeModelUseEntry() {
-    exists(any(TypeModel tm).getASource(package, type)) and
-    this = "TypeModelUseEntry;" + package + ";" + type
+    exists(any(TypeModel tm).getASource(type)) and
+    this = "TypeModelUseEntry;" + type
   }
 
-  override DataFlow::LocalSourceNode getASource() {
-    result = any(TypeModel tm).getASource(package, type)
-  }
+  override DataFlow::LocalSourceNode getASource() { result = any(TypeModel tm).getASource(type) }
 
-  API::Node getNodeForType(string package_, string type_) {
-    package = package_ and type = type_ and result = this.getANode()
-  }
+  API::Node getNodeForType(string type_) { type = type_ and result = this.getANode() }
 }
 
 private class TypeModelDefEntry extends API::EntryPoint {
-  private string package;
   private string type;
 
   TypeModelDefEntry() {
-    exists(any(TypeModel tm).getASink(package, type)) and
-    this = "TypeModelDefEntry;" + package + ";" + type
+    exists(any(TypeModel tm).getASink(type)) and
+    this = "TypeModelDefEntry;" + type
   }
 
-  override DataFlow::Node getASink() { result = any(TypeModel tm).getASink(package, type) }
+  override DataFlow::Node getASink() { result = any(TypeModel tm).getASink(type) }
 
-  API::Node getNodeForType(string package_, string type_) {
-    package = package_ and type = type_ and result = this.getANode()
-  }
+  API::Node getNodeForType(string type_) { type = type_ and result = this.getANode() }
 }
 
 /**
- * Gets an API node identified by the given `(package,type)` pair.
+ * Gets an API node identified by the given `type`.
  */
 pragma[nomagic]
-private API::Node getNodeFromType(string package, string type) {
-  exists(string package2, string type2, AccessPath path2 |
-    typeModel(package, type, package2, type2, path2) and
-    result = getNodeFromPath(package2, type2, path2)
+private API::Node getNodeFromType(string type) {
+  exists(string type2, AccessPath path2 |
+    typeModel(type, type2, path2) and
+    result = getNodeFromPath(type2, path2)
   )
   or
-  result = any(TypeModelUseEntry e).getNodeForType(package, type)
+  result = any(TypeModelUseEntry e).getNodeForType(type)
   or
-  result = any(TypeModelDefEntry e).getNodeForType(package, type)
+  result = any(TypeModelDefEntry e).getNodeForType(type)
   or
-  result = any(TypeModel t).getAnApiNode(package, type)
+  result = any(TypeModel t).getAnApiNode(type)
   or
-  result = Specific::getExtraNodeFromType(package, type)
+  result = Specific::getExtraNodeFromType(type)
 }
 
 /**
- * Gets the API node identified by the first `n` tokens of `path` in the given `(package, type, path)` tuple.
+ * Gets the API node identified by the first `n` tokens of `path` in the given `(type, path)` tuple.
  */
 pragma[nomagic]
-private API::Node getNodeFromPath(string package, string type, AccessPath path, int n) {
-  isRelevantFullPath(package, type, path) and
+private API::Node getNodeFromPath(string type, AccessPath path, int n) {
+  isRelevantFullPath(type, path) and
   (
     n = 0 and
-    result = getNodeFromType(package, type)
+    result = getNodeFromType(type)
     or
-    result = Specific::getExtraNodeFromPath(package, type, path, n)
+    result = Specific::getExtraNodeFromPath(type, path, n)
   )
   or
-  result = getSuccessorFromNode(getNodeFromPath(package, type, path, n - 1), path.getToken(n - 1))
+  result = getSuccessorFromNode(getNodeFromPath(type, path, n - 1), path.getToken(n - 1))
   or
   // Similar to the other recursive case, but where the path may have stepped through one or more call-site filters
-  result =
-    getSuccessorFromInvoke(getInvocationFromPath(package, type, path, n - 1), path.getToken(n - 1))
+  result = getSuccessorFromInvoke(getInvocationFromPath(type, path, n - 1), path.getToken(n - 1))
   or
   // Apply a subpath
-  result =
-    getNodeFromSubPath(getNodeFromPath(package, type, path, n - 1), getSubPathAt(path, n - 1))
+  result = getNodeFromSubPath(getNodeFromPath(type, path, n - 1), getSubPathAt(path, n - 1))
   or
   // Apply a type step
-  typeStep(getNodeFromPath(package, type, path, n), result)
+  typeStep(getNodeFromPath(type, path, n), result)
 }
 
 /**
@@ -496,15 +463,15 @@ private AccessPath getSubPathAt(AccessPath path, int n) {
 pragma[nomagic]
 private API::Node getNodeFromSubPath(API::Node base, AccessPath subPath, int n) {
   exists(AccessPath path, int k |
-    base = [getNodeFromPath(_, _, path, k), getNodeFromSubPath(_, path, k)] and
+    base = [getNodeFromPath(_, path, k), getNodeFromSubPath(_, path, k)] and
     subPath = getSubPathAt(path, k) and
     result = base and
     n = 0
   )
   or
-  exists(string package, string type, AccessPath basePath |
-    typeStepModel(package, type, basePath, subPath) and
-    base = getNodeFromPath(package, type, basePath) and
+  exists(string type, AccessPath basePath |
+    typeStepModel(type, basePath, subPath) and
+    base = getNodeFromPath(type, basePath) and
     result = base and
     n = 0
   )
@@ -543,42 +510,40 @@ private API::Node getNodeFromSubPath(API::Node base, AccessPath subPath) {
   result = getNodeFromSubPath(base, subPath, subPath.getNumToken())
 }
 
-/** Gets the node identified by the given `(package, type, path)` tuple. */
-private API::Node getNodeFromPath(string package, string type, AccessPath path) {
-  result = getNodeFromPath(package, type, path, path.getNumToken())
+/** Gets the node identified by the given `(type, path)` tuple. */
+private API::Node getNodeFromPath(string type, AccessPath path) {
+  result = getNodeFromPath(type, path, path.getNumToken())
 }
 
 pragma[nomagic]
-private predicate typeStepModel(string package, string type, AccessPath basePath, AccessPath output) {
-  summaryModel(package, type, basePath, "", output, "type")
+private predicate typeStepModel(string type, AccessPath basePath, AccessPath output) {
+  summaryModel(type, basePath, "", output, "type")
 }
 
 pragma[nomagic]
 private predicate typeStep(API::Node pred, API::Node succ) {
-  exists(string package, string type, AccessPath basePath, AccessPath output |
-    typeStepModel(package, type, basePath, output) and
-    pred = getNodeFromPath(package, type, basePath) and
+  exists(string type, AccessPath basePath, AccessPath output |
+    typeStepModel(type, basePath, output) and
+    pred = getNodeFromPath(type, basePath) and
     succ = getNodeFromSubPath(pred, output)
   )
 }
 
 /**
- * Gets an invocation identified by the given `(package, type, path)` tuple.
+ * Gets an invocation identified by the given `(type, path)` tuple.
  *
  * Unlike `getNodeFromPath`, the `path` may end with one or more call-site filters.
  */
-private Specific::InvokeNode getInvocationFromPath(
-  string package, string type, AccessPath path, int n
-) {
-  result = Specific::getAnInvocationOf(getNodeFromPath(package, type, path, n))
+private Specific::InvokeNode getInvocationFromPath(string type, AccessPath path, int n) {
+  result = Specific::getAnInvocationOf(getNodeFromPath(type, path, n))
   or
-  result = getInvocationFromPath(package, type, path, n - 1) and
+  result = getInvocationFromPath(type, path, n - 1) and
   invocationMatchesCallSiteFilter(result, path.getToken(n - 1))
 }
 
-/** Gets an invocation identified by the given `(package, type, path)` tuple. */
-private Specific::InvokeNode getInvocationFromPath(string package, string type, AccessPath path) {
-  result = getInvocationFromPath(package, type, path, path.getNumToken())
+/** Gets an invocation identified by the given `(type, path)` tuple. */
+private Specific::InvokeNode getInvocationFromPath(string type, AccessPath path) {
+  result = getInvocationFromPath(type, path, path.getNumToken())
 }
 
 /**
@@ -631,9 +596,9 @@ module ModelOutput {
      */
     cached
     API::Node getASourceNode(string kind) {
-      exists(string package, string type, string path |
-        sourceModel(package, type, path, kind) and
-        result = getNodeFromPath(package, type, path)
+      exists(string type, string path |
+        sourceModel(type, path, kind) and
+        result = getNodeFromPath(type, path)
       )
     }
 
@@ -642,9 +607,9 @@ module ModelOutput {
      */
     cached
     API::Node getASinkNode(string kind) {
-      exists(string package, string type, string path |
-        sinkModel(package, type, path, kind) and
-        result = getNodeFromPath(package, type, path)
+      exists(string type, string path |
+        sinkModel(type, path, kind) and
+        result = getNodeFromPath(type, path)
       )
     }
 
@@ -653,32 +618,31 @@ module ModelOutput {
      */
     cached
     predicate relevantSummaryModel(
-      string package, string type, string path, string input, string output, string kind
+      string type, string path, string input, string output, string kind
     ) {
-      isRelevantPackage(package) and
-      summaryModel(package, type, path, input, output, kind)
+      isRelevantType(type) and
+      summaryModel(type, path, input, output, kind)
     }
 
     /**
-     * Holds if a `baseNode` is an invocation identified by the `package,type,path` part of a summary row.
+     * Holds if a `baseNode` is an invocation identified by the `type,path` part of a summary row.
      */
     cached
-    predicate resolvedSummaryBase(
-      string package, string type, string path, Specific::InvokeNode baseNode
-    ) {
-      summaryModel(package, type, path, _, _, _) and
-      baseNode = getInvocationFromPath(package, type, path)
+    predicate resolvedSummaryBase(string type, string path, Specific::InvokeNode baseNode) {
+      summaryModel(type, path, _, _, _) and
+      baseNode = getInvocationFromPath(type, path)
     }
 
     /**
-     * Holds if `node` is seen as an instance of `(package,type)` due to a type definition
+     * Holds if `node` is seen as an instance of `type` due to a type definition
      * contributed by a CSV model.
      */
     cached
-    API::Node getATypeNode(string package, string type) { result = getNodeFromType(package, type) }
+    API::Node getATypeNode(string type) { result = getNodeFromType(type) }
   }
 
   import Cached
+  import Specific::ModelOutputSpecific
 
   /**
    * Gets an error message relating to an invalid CSV row in a model.
@@ -686,13 +650,13 @@ module ModelOutput {
   string getAWarning() {
     // Check number of columns
     exists(string row, string kind, int expectedArity, int actualArity |
-      any(SourceModelCsv csv).row(row) and kind = "source" and expectedArity = 4
+      any(SourceModelCsv csv).row(row) and kind = "source" and expectedArity = 3
       or
-      any(SinkModelCsv csv).row(row) and kind = "sink" and expectedArity = 4
+      any(SinkModelCsv csv).row(row) and kind = "sink" and expectedArity = 3
       or
-      any(SummaryModelCsv csv).row(row) and kind = "summary" and expectedArity = 6
+      any(SummaryModelCsv csv).row(row) and kind = "summary" and expectedArity = 5
       or
-      any(TypeModelCsv csv).row(row) and kind = "type" and expectedArity = 5
+      any(TypeModelCsv csv).row(row) and kind = "type" and expectedArity = 3
       or
       any(TypeVariableModelCsv csv).row(row) and kind = "type-variable" and expectedArity = 2
     |
@@ -705,7 +669,7 @@ module ModelOutput {
     or
     // Check names and arguments of access path tokens
     exists(AccessPath path, AccessPathToken token |
-      (isRelevantFullPath(_, _, path) or typeVariableModel(_, path)) and
+      (isRelevantFullPath(_, path) or typeVariableModel(_, path)) and
       token = path.getToken(_)
     |
       not isValidTokenNameInIdentifyingAccessPath(token.getName()) and
diff --git a/python/ql/lib/semmle/python/frameworks/data/internal/ApiGraphModelsSpecific.qll b/python/ql/lib/semmle/python/frameworks/data/internal/ApiGraphModelsSpecific.qll
index 2f53c4fdeea..eb23efe4aff 100644
--- a/python/ql/lib/semmle/python/frameworks/data/internal/ApiGraphModelsSpecific.qll
+++ b/python/ql/lib/semmle/python/frameworks/data/internal/ApiGraphModelsSpecific.qll
@@ -31,19 +31,22 @@ import semmle.python.dataflow.new.DataFlow::DataFlow as DataFlow
 private import AccessPathSyntax
 
 /**
- * Holds if models describing `package` may be relevant for the analysis of this database.
+ * Holds if models describing `type` may be relevant for the analysis of this database.
  */
-predicate isPackageUsed(string package) { API::moduleImportExists(package) }
+predicate isTypeUsed(string type) { API::moduleImportExists(type) }
 
-/** Gets a Python-specific interpretation of the `(package, type, path)` tuple after resolving the first `n` access path tokens. */
-bindingset[package, type, path]
-API::Node getExtraNodeFromPath(string package, string type, AccessPath path, int n) { none() }
+/**
+ * Holds if `type` can be obtained from an instance of `otherType` due to
+ * language semantics modeled by `getExtraNodeFromType`.
+ */
+predicate hasImplicitTypeModel(string type, string otherType) { none() }
 
-/** Gets a Python-specific interpretation of the `(package, type)` tuple. */
-API::Node getExtraNodeFromType(string package, string type) {
-  type = "" and
-  result = API::moduleImport(package)
-}
+/** Gets a Python-specific interpretation of the `(type, path)` tuple after resolving the first `n` access path tokens. */
+bindingset[type, path]
+API::Node getExtraNodeFromPath(string type, AccessPath path, int n) { none() }
+
+/** Gets a Python-specific interpretation of the given `type`. */
+API::Node getExtraNodeFromType(string type) { result = API::moduleImport(type) }
 
 /**
  * Gets a Python-specific API graph successor of `node` reachable by resolving `token`.
@@ -121,9 +124,9 @@ predicate invocationMatchesExtraCallSiteFilter(API::CallNode invoke, AccessPathT
  */
 pragma[nomagic]
 private predicate relevantInputOutputPath(API::CallNode base, AccessPath inputOrOutput) {
-  exists(string package, string type, string input, string output, string path |
-    ModelOutput::relevantSummaryModel(package, type, path, input, output, _) and
-    ModelOutput::resolvedSummaryBase(package, type, path, base) and
+  exists(string type, string input, string output, string path |
+    ModelOutput::relevantSummaryModel(type, path, input, output, _) and
+    ModelOutput::resolvedSummaryBase(type, path, base) and
     inputOrOutput = [input, output]
   )
 }
@@ -153,12 +156,9 @@ private API::Node getNodeFromInputOutputPath(API::CallNode baseNode, AccessPath
  * Holds if a CSV summary contributed the step `pred -> succ` of the given `kind`.
  */
 predicate summaryStep(API::Node pred, API::Node succ, string kind) {
-  exists(
-    string package, string type, string path, API::CallNode base, AccessPath input,
-    AccessPath output
-  |
-    ModelOutput::relevantSummaryModel(package, type, path, input, output, kind) and
-    ModelOutput::resolvedSummaryBase(package, type, path, base) and
+  exists(string type, string path, API::CallNode base, AccessPath input, AccessPath output |
+    ModelOutput::relevantSummaryModel(type, path, input, output, kind) and
+    ModelOutput::resolvedSummaryBase(type, path, base) and
     pred = getNodeFromInputOutputPath(base, input) and
     succ = getNodeFromInputOutputPath(base, output)
   )
@@ -201,3 +201,5 @@ predicate isExtraValidTokenArgumentInIdentifyingAccessPath(string name, string a
     argument.regexpMatch("\\w+:") // keyword argument
   )
 }
+
+module ModelOutputSpecific { }
diff --git a/python/ql/test/library-tests/frameworks/data/test.ql b/python/ql/test/library-tests/frameworks/data/test.ql
index 00411a5f95f..6c7639dc0c3 100644
--- a/python/ql/test/library-tests/frameworks/data/test.ql
+++ b/python/ql/test/library-tests/frameworks/data/test.ql
@@ -7,78 +7,78 @@ private import semmle.python.ApiGraphs
 
 class Steps extends ModelInput::SummaryModelCsv {
   override predicate row(string row) {
-    // package;type;path;input;output;kind
+    // type;path;input;output;kind
     row =
       [
-        "testlib;;Member[Steps].Member[preserveTaint].Call;Argument[0];ReturnValue;taint",
-        "testlib;;Member[Steps].Member[taintIntoCallback];Argument[0];Argument[1..2].Parameter[0];taint",
-        "testlib;;Member[Steps].Member[preserveArgZeroAndTwo];Argument[0,2];ReturnValue;taint",
-        "testlib;;Member[Steps].Member[preserveAllButFirstArgument].Call;Argument[1..];ReturnValue;taint",
+        "testlib;Member[Steps].Member[preserveTaint].Call;Argument[0];ReturnValue;taint",
+        "testlib;Member[Steps].Member[taintIntoCallback];Argument[0];Argument[1..2].Parameter[0];taint",
+        "testlib;Member[Steps].Member[preserveArgZeroAndTwo];Argument[0,2];ReturnValue;taint",
+        "testlib;Member[Steps].Member[preserveAllButFirstArgument].Call;Argument[1..];ReturnValue;taint",
       ]
   }
 }
 
 class Types extends ModelInput::TypeModelCsv {
   override predicate row(string row) {
-    // package1;type1;package2;type2;path
+    // type1;type2;path
     row =
       [
-        "testlib;Alias;testlib;;Member[alias].ReturnValue",
-        "testlib;Alias;testlib;Alias;Member[chain].ReturnValue",
+        "testlib.Alias;testlib;Member[alias].ReturnValue",
+        "testlib.Alias;testlib.Alias;Member[chain].ReturnValue",
       ]
   }
 }
 
 class Sinks extends ModelInput::SinkModelCsv {
   override predicate row(string row) {
-    // package;type;path;kind
+    // type;path;kind
     row =
       [
-        "testlib;;Member[mySink].Argument[0,sinkName:];test-sink",
+        "testlib;Member[mySink].Argument[0,sinkName:];test-sink",
         // testing argument syntax
-        "testlib;;Member[Args].Member[arg0].Argument[0];test-sink", //
-        "testlib;;Member[Args].Member[arg1to3].Argument[1..3];test-sink", //
-        "testlib;;Member[Args].Member[lastarg].Argument[N-1];test-sink", //
-        "testlib;;Member[Args].Member[nonFist].Argument[1..];test-sink", //
+        "testlib;Member[Args].Member[arg0].Argument[0];test-sink", //
+        "testlib;Member[Args].Member[arg1to3].Argument[1..3];test-sink", //
+        "testlib;Member[Args].Member[lastarg].Argument[N-1];test-sink", //
+        "testlib;Member[Args].Member[nonFist].Argument[1..];test-sink", //
         // callsite filter.
-        "testlib;;Member[CallFilter].Member[arityOne].WithArity[1].Argument[any];test-sink", //
-        "testlib;;Member[CallFilter].Member[twoOrMore].WithArity[2..].Argument[0..];test-sink", //
+        "testlib;Member[CallFilter].Member[arityOne].WithArity[1].Argument[any];test-sink", //
+        "testlib;Member[CallFilter].Member[twoOrMore].WithArity[2..].Argument[0..];test-sink", //
         // testing non-positional arguments
-        "testlib;;Member[ArgPos].Instance.Member[self_thing].Argument[self];test-sink", //
+        "testlib;Member[ArgPos].Instance.Member[self_thing].Argument[self];test-sink", //
         // any argument
-        "testlib;;Member[ArgPos].Member[anyParam].Argument[any];test-sink", //
-        "testlib;;Member[ArgPos].Member[anyNamed].Argument[any-named];test-sink", //
+        "testlib;Member[ArgPos].Member[anyParam].Argument[any];test-sink", //
+        "testlib;Member[ArgPos].Member[anyNamed].Argument[any-named];test-sink", //
         // testing package syntax
-        "foo1.bar;;Member[baz1].Argument[any];test-sink", //
-        "foo2;;Member[bar].Member[baz2].Argument[any];test-sink", //
+        "foo1.bar;Member[baz1].Argument[any];test-sink", //
+        "foo2;Member[bar].Member[baz2].Argument[any];test-sink", //
       ]
   }
 }
 
 class Sources extends ModelInput::SourceModelCsv {
-  // package;type;path;kind
+  // type;path;kind
   override predicate row(string row) {
     row =
       [
-        "testlib;;Member[getSource].ReturnValue;test-source", //
-        "testlib;Alias;;test-source",
+        "testlib;Member[getSource].ReturnValue;test-source", //
+        "testlib.Alias;;test-source",
         // testing parameter syntax
-        "testlib;;Member[Callbacks].Member[first].Argument[0].Parameter[0];test-source", //
-        "testlib;;Member[Callbacks].Member[param1to3].Argument[0].Parameter[1..3];test-source", //
-        "testlib;;Member[Callbacks].Member[nonFirst].Argument[0].Parameter[1..];test-source", //
+        "testlib;Member[Callbacks].Member[first].Argument[0].Parameter[0];test-source", //
+        "testlib;Member[Callbacks].Member[param1to3].Argument[0].Parameter[1..3];test-source", //
+        "testlib;Member[Callbacks].Member[nonFirst].Argument[0].Parameter[1..];test-source", //
         // Common tokens.
-        "testlib;;Member[CommonTokens].Member[makePromise].ReturnValue.Awaited;test-source", //
-        "testlib;;Member[CommonTokens].Member[Class].Instance;test-source", //
-        "testlib;;Member[CommonTokens].Member[Super].Subclass.Instance;test-source", //
+        "testlib;Member[CommonTokens].Member[makePromise].ReturnValue.Awaited;test-source", //
+        "testlib;Member[CommonTokens].Member[Class].Instance;test-source", //
+        "testlib;Member[CommonTokens].Member[Super].Subclass.Instance;test-source", //
         // method
-        "testlib;;Member[CommonTokens].Member[Class].Instance.Method[foo];test-source", //
+        "testlib;Member[CommonTokens].Member[Class].Instance.Method[foo];test-source", //
         // testing non-positional arguments
-        "testlib;;Member[ArgPos].Member[MyClass].Subclass.Member[foo].Parameter[self];test-source", //
-        "testlib;;Member[ArgPos].Member[MyClass].Subclass.Member[foo].Parameter[named:];test-source", //
-        "testlib;;Member[ArgPos].Member[MyClass].Subclass.Member[secondAndAfter].Parameter[1..];test-source", //
-        "testlib;;Member[ArgPos].Member[MyClass].Subclass.Member[otherSelfTest].Parameter[0];test-source", //
-        "testlib;;Member[ArgPos].Member[MyClass].Subclass.Member[anyParam].Parameter[any];test-source", //
-        "testlib;;Member[ArgPos].Member[MyClass].Subclass.Member[anyNamed].Parameter[any-named];test-source", //
+        "testlib;Member[ArgPos].Member[MyClass].Subclass.Member[foo].Parameter[self];test-source", //
+        "testlib;Member[ArgPos].Member[MyClass].Subclass.Member[foo].Parameter[named:];test-source", //
+        "testlib;Member[ArgPos].Member[MyClass].Subclass.Member[secondAndAfter].Parameter[1..];test-source", //
+        "testlib;Member[ArgPos].Member[MyClass].Subclass.Member[otherSelfTest].Parameter[0];test-source", //
+        "testlib;Member[ArgPos].Member[MyClass].Subclass.Member[anyParam].Parameter[any];test-source", //
+        "testlib;Member[ArgPos].Member[MyClass].Subclass.Member[anyNamed].Parameter[any-named];test-source", //
       ]
   }
 }
@@ -111,13 +111,16 @@ class SyntaxErrorTest extends ModelInput::SinkModelCsv {
   override predicate row(string row) {
     row =
       [
-        "testlib;;Member[foo],Member[bar];test-sink", "testlib;;Member[foo] Member[bar];test-sink",
-        "testlib;;Member[foo]. Member[bar];test-sink",
-        "testlib;;Member[foo], Member[bar];test-sink",
-        "testlib;;Member[foo]..Member[bar];test-sink",
-        "testlib;;Member[foo] .Member[bar];test-sink", "testlib;;Member[foo]Member[bar];test-sink",
-        "testlib;;Member[foo;test-sink", "testlib;;Member[foo]];test-sink",
-        "testlib;;Member[foo]].Member[bar];test-sink"
+        "testlib;Member[foo],Member[bar];test-sink", //
+        "testlib;Member[foo] Member[bar];test-sink", //
+        "testlib;Member[foo]. Member[bar];test-sink", //
+        "testlib;Member[foo], Member[bar];test-sink", //
+        "testlib;Member[foo]..Member[bar];test-sink", //
+        "testlib;Member[foo] .Member[bar];test-sink", //
+        "testlib;Member[foo]Member[bar];test-sink", //
+        "testlib;Member[foo;test-sink", //
+        "testlib;Member[foo]];test-sink", //
+        "testlib;Member[foo]].Member[bar];test-sink", //
       ]
   }
 }
diff --git a/python/ql/test/library-tests/frameworks/data/warnings.expected b/python/ql/test/library-tests/frameworks/data/warnings.expected
index 5cebb548358..23ce426abb9 100644
--- a/python/ql/test/library-tests/frameworks/data/warnings.expected
+++ b/python/ql/test/library-tests/frameworks/data/warnings.expected
@@ -1,5 +1,5 @@
-| CSV type row should have 5 columns but has 2: test;TooFewColumns |
-| CSV type row should have 5 columns but has 8: test;TooManyColumns;;;Member[Foo].Instance;too;many;columns |
+| CSV type row should have 3 columns but has 1: test.TooFewColumns |
+| CSV type row should have 3 columns but has 6: test.TooManyColumns;;Member[Foo].Instance;too;many;columns |
 | Invalid argument '0-1' in token 'Argument[0-1]' in access path: Method[foo].Argument[0-1] |
 | Invalid argument '*' in token 'Argument[*]' in access path: Method[foo].Argument[*] |
 | Invalid token 'Argument' is missing its arguments, in access path: Method[foo].Argument |
diff --git a/python/ql/test/library-tests/frameworks/data/warnings.ql b/python/ql/test/library-tests/frameworks/data/warnings.ql
index 20b87211765..c6561797164 100644
--- a/python/ql/test/library-tests/frameworks/data/warnings.ql
+++ b/python/ql/test/library-tests/frameworks/data/warnings.ql
@@ -7,13 +7,13 @@ private class InvalidTypeModel extends ModelInput::TypeModelCsv {
   override predicate row(string row) {
     row =
       [
-        "test;TooManyColumns;;;Member[Foo].Instance;too;many;columns", //
-        "test;TooFewColumns", //
-        "test;X;test;Y;Method[foo].Arg[0]", //
-        "test;X;test;Y;Method[foo].Argument[0-1]", //
-        "test;X;test;Y;Method[foo].Argument[*]", //
-        "test;X;test;Y;Method[foo].Argument", //
-        "test;X;test;Y;Method[foo].Member", //
+        "test.TooManyColumns;;Member[Foo].Instance;too;many;columns", //
+        "test.TooFewColumns", //
+        "test.X;test.Y;Method[foo].Arg[0]", //
+        "test.X;test.Y;Method[foo].Argument[0-1]", //
+        "test.X;test.Y;Method[foo].Argument[*]", //
+        "test.X;test.Y;Method[foo].Argument", //
+        "test.X;test.Y;Method[foo].Member", //
       ]
   }
 }

From a55c56feed2019bec3fcc1f4fd0a00e7c1e479fa Mon Sep 17 00:00:00 2001
From: Tom Hvitved <hvitved@github.com>
Date: Wed, 23 Nov 2022 11:33:52 +0100
Subject: [PATCH 0567/1420] Fix typo in `codeql-workspace.yml`

---
 codeql-workspace.yml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/codeql-workspace.yml b/codeql-workspace.yml
index f93ed4ac5c8..3f3318d12c2 100644
--- a/codeql-workspace.yml
+++ b/codeql-workspace.yml
@@ -25,7 +25,7 @@ provide:
   - "misc/suite-helpers/qlpack.yml"
   - "ruby/extractor-pack/codeql-extractor.yml"
   - "swift/extractor-pack/codeql-extractor.yml"
-  - "ql/extractor-pack/codeql-extractor.ym"
+  - "ql/extractor-pack/codeql-extractor.yml"
 
 versionPolicies:
   default:

From 3b698216304bad5c22df4dfffce0f0def6a8e3e7 Mon Sep 17 00:00:00 2001
From: Henry Mercer <henrymercer@github.com>
Date: Wed, 23 Nov 2022 10:45:05 +0000
Subject: [PATCH 0568/1420] ATM: Add descriptions to ML-powered packs

---
 javascript/ql/experimental/adaptivethreatmodeling/lib/qlpack.yml | 1 +
 .../ql/experimental/adaptivethreatmodeling/model/qlpack.yml      | 1 +
 .../experimental/adaptivethreatmodeling/modelbuilding/qlpack.yml | 1 +
 javascript/ql/experimental/adaptivethreatmodeling/src/qlpack.yml | 1 +
 4 files changed, 4 insertions(+)

diff --git a/javascript/ql/experimental/adaptivethreatmodeling/lib/qlpack.yml b/javascript/ql/experimental/adaptivethreatmodeling/lib/qlpack.yml
index fb53f54ded7..e3f7c7064d3 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/lib/qlpack.yml
+++ b/javascript/ql/experimental/adaptivethreatmodeling/lib/qlpack.yml
@@ -1,4 +1,5 @@
 name: codeql/javascript-experimental-atm-lib
+description: CodeQL libraries for the experimental ML-powered queries
 version: 0.4.2
 extractor: javascript
 library: true
diff --git a/javascript/ql/experimental/adaptivethreatmodeling/model/qlpack.yml b/javascript/ql/experimental/adaptivethreatmodeling/model/qlpack.yml
index 40b611fc72a..e37547ed938 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/model/qlpack.yml
+++ b/javascript/ql/experimental/adaptivethreatmodeling/model/qlpack.yml
@@ -1,4 +1,5 @@
 name: codeql/javascript-experimental-atm-model
+description: Machine learning model supporting the experimental ML-powered queries
 version: 0.3.1
 groups:
     - javascript
diff --git a/javascript/ql/experimental/adaptivethreatmodeling/modelbuilding/qlpack.yml b/javascript/ql/experimental/adaptivethreatmodeling/modelbuilding/qlpack.yml
index e6657138f1c..ac65fc1bb5f 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/modelbuilding/qlpack.yml
+++ b/javascript/ql/experimental/adaptivethreatmodeling/modelbuilding/qlpack.yml
@@ -1,4 +1,5 @@
 name: codeql/javascript-experimental-atm-model-building
+description: CodeQL libraries for building machine learning models for the experimental ML-powered queries
 extractor: javascript
 library: false
 groups:
diff --git a/javascript/ql/experimental/adaptivethreatmodeling/src/qlpack.yml b/javascript/ql/experimental/adaptivethreatmodeling/src/qlpack.yml
index 725beadcb0e..1378bc67041 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/src/qlpack.yml
+++ b/javascript/ql/experimental/adaptivethreatmodeling/src/qlpack.yml
@@ -1,4 +1,5 @@
 name: codeql/javascript-experimental-atm-queries
+description: Experimental ML-powered queries for JavaScript
 language: javascript
 version: 0.4.2
 suites: codeql-suites

From a1bffff0b0c30aaae3bbea21b34eea8446354a9a Mon Sep 17 00:00:00 2001
From: Paolo Tranquilli <redsun82@github.com>
Date: Wed, 23 Nov 2022 12:15:29 +0100
Subject: [PATCH 0569/1420] Swift: add downgrades script to extractor pack

---
 swift/BUILD.bazel            |  1 +
 swift/downgrades/BUILD.bazel | 12 ++++++++++++
 2 files changed, 13 insertions(+)
 create mode 100644 swift/downgrades/BUILD.bazel

diff --git a/swift/BUILD.bazel b/swift/BUILD.bazel
index 446d021a6aa..4803d4b3153 100644
--- a/swift/BUILD.bazel
+++ b/swift/BUILD.bazel
@@ -33,6 +33,7 @@ pkg_filegroup(
     srcs = [
         ":dbscheme_files",
         ":manifest",
+        "//swift/downgrades",
         "//swift/tools",
     ],
     visibility = ["//visibility:public"],
diff --git a/swift/downgrades/BUILD.bazel b/swift/downgrades/BUILD.bazel
new file mode 100644
index 00000000000..d76e543a6e7
--- /dev/null
+++ b/swift/downgrades/BUILD.bazel
@@ -0,0 +1,12 @@
+load("@rules_pkg//:mappings.bzl", "pkg_files", "strip_prefix")
+
+pkg_files(
+    name = "downgrades",
+    srcs = glob(
+        ["**"],
+        exclude = ["BUILD.bazel"],
+    ),
+    prefix = "downgrades",
+    strip_prefix = strip_prefix.from_pkg(),
+    visibility = ["//swift:__pkg__"],
+)

From 807f87e01f0052d8e659c127621e62068e823b29 Mon Sep 17 00:00:00 2001
From: Anders Schack-Mulligen <aschackmull@github.com>
Date: Wed, 23 Nov 2022 12:56:32 +0100
Subject: [PATCH 0570/1420] Java: Adjust the prioritisation between MaD and
 source dispatch.

---
 java/ql/lib/semmle/code/java/dispatch/VirtualDispatch.qll | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

diff --git a/java/ql/lib/semmle/code/java/dispatch/VirtualDispatch.qll b/java/ql/lib/semmle/code/java/dispatch/VirtualDispatch.qll
index 56385e89877..eb1878bf7e4 100644
--- a/java/ql/lib/semmle/code/java/dispatch/VirtualDispatch.qll
+++ b/java/ql/lib/semmle/code/java/dispatch/VirtualDispatch.qll
@@ -99,10 +99,12 @@ private module Dispatch {
   private predicate lowConfidenceDispatchType(SrcRefType t) {
     t instanceof TypeObject
     or
-    t instanceof FunctionalInterface
+    t instanceof Interface and not t.fromSource()
     or
     t.hasQualifiedName("java.io", "Serializable")
     or
+    t.hasQualifiedName("java.lang", "Iterable")
+    or
     t.hasQualifiedName("java.lang", "Cloneable")
     or
     t.getPackage().hasName("java.util") and t instanceof Interface

From 8f3731fd42d7d0e0f1e062a34b3dc99ed4866fd7 Mon Sep 17 00:00:00 2001
From: Tom Hvitved <hvitved@github.com>
Date: Wed, 23 Nov 2022 10:57:21 +0100
Subject: [PATCH 0571/1420] C#: Split `AutobuildOptions` into C#/C++ specific
 classes

---
 .github/workflows/csharp-qltest.yml           |  1 +
 .../BuildScripts.cs                           |  6 +-
 .../Semmle.Autobuild.Cpp/CppAutobuilder.cs    | 21 ++++-
 .../Semmle.Autobuild.Cpp/Program.cs           |  4 +-
 .../BuildScripts.cs                           |  4 +-
 .../CSharpAutobuilder.cs                      | 27 +++++-
 .../Semmle.Autobuild.CSharp/DotNetRule.cs     | 16 ++--
 .../Semmle.Autobuild.CSharp/Program.cs        |  2 +-
 .../StandaloneBuildRule.cs                    |  4 +-
 .../AutobuildOptions.cs                       | 18 ++--
 .../Semmle.Autobuild.Shared/Autobuilder.cs    | 85 ++++++++++++++-----
 .../BuildCommandAutoRule.cs                   |  8 +-
 .../BuildCommandRule.cs                       |  8 +-
 .../Semmle.Autobuild.Shared/MsBuildRule.cs    | 12 +--
 .../Semmle.Autobuild.Shared/Project.cs        | 14 +--
 .../ProjectOrSolution.cs                      |  4 +-
 .../Semmle.Autobuild.Shared/Solution.cs       | 12 +--
 17 files changed, 163 insertions(+), 83 deletions(-)

diff --git a/.github/workflows/csharp-qltest.yml b/.github/workflows/csharp-qltest.yml
index 28b3fb7477d..531f4296a84 100644
--- a/.github/workflows/csharp-qltest.yml
+++ b/.github/workflows/csharp-qltest.yml
@@ -83,3 +83,4 @@ jobs:
           dotnet test -p:RuntimeFrameworkVersion=6.0.4 "${{ github.workspace }}/csharp/extractor/Semmle.Util.Tests"
           dotnet test -p:RuntimeFrameworkVersion=6.0.4 "${{ github.workspace }}/csharp/extractor/Semmle.Extraction.Tests"
           dotnet test -p:RuntimeFrameworkVersion=6.0.4 "${{ github.workspace }}/csharp/autobuilder/Semmle.Autobuild.CSharp.Tests"
+          dotnet test -p:RuntimeFrameworkVersion=6.0.4 "${{ github.workspace }}/cpp/autobuilder/Semmle.Autobuild.Cpp.Tests"
diff --git a/cpp/autobuilder/Semmle.Autobuild.Cpp.Tests/BuildScripts.cs b/cpp/autobuilder/Semmle.Autobuild.Cpp.Tests/BuildScripts.cs
index 76acba2eee4..def45890c9f 100644
--- a/cpp/autobuilder/Semmle.Autobuild.Cpp.Tests/BuildScripts.cs
+++ b/cpp/autobuilder/Semmle.Autobuild.Cpp.Tests/BuildScripts.cs
@@ -257,11 +257,11 @@ namespace Semmle.Autobuild.Cpp.Tests
             Actions.GetCurrentDirectory = cwd;
             Actions.IsWindows = isWindows;
 
-            var options = new AutobuildOptions(Actions, Language.Cpp);
+            var options = new CppAutobuildOptions(Actions);
             return new CppAutobuilder(Actions, options);
         }
 
-        void TestAutobuilderScript(Autobuilder autobuilder, int expectedOutput, int commandsRun)
+        void TestAutobuilderScript(CppAutobuilder autobuilder, int expectedOutput, int commandsRun)
         {
             Assert.Equal(expectedOutput, autobuilder.GetBuildScript().Run(Actions, StartCallback, EndCallback));
 
@@ -299,7 +299,7 @@ namespace Semmle.Autobuild.Cpp.Tests
         {
             Actions.RunProcess[@"cmd.exe /C nuget restore C:\Project\test.sln -DisableParallelProcessing"] = 1;
             Actions.RunProcess[@"cmd.exe /C C:\Project\.nuget\nuget.exe restore C:\Project\test.sln -DisableParallelProcessing"] = 0;
-            Actions.RunProcess[@"cmd.exe /C CALL ^""C:\Program Files ^(x86^)\Microsoft Visual Studio 14.0\VC\vcvarsall.bat^"" && set Platform=&& type NUL && C:\odasa\tools\odasa index --auto msbuild C:\Project\test.sln /t:rebuild /p:Platform=""x86"" /p:Configuration=""Release"" /p:MvcBuildViews=true"] = 0;
+            Actions.RunProcess[@"cmd.exe /C CALL ^""C:\Program Files ^(x86^)\Microsoft Visual Studio 14.0\VC\vcvarsall.bat^"" && set Platform=&& type NUL && msbuild C:\Project\test.sln /t:rebuild /p:Platform=""x86"" /p:Configuration=""Release"""] = 0;
             Actions.RunProcessOut[@"C:\Program Files (x86)\Microsoft Visual Studio\Installer\vswhere.exe -prerelease -legacy -property installationPath"] = "";
             Actions.RunProcess[@"C:\Program Files (x86)\Microsoft Visual Studio\Installer\vswhere.exe -prerelease -legacy -property installationPath"] = 1;
             Actions.RunProcess[@"C:\Program Files (x86)\Microsoft Visual Studio\Installer\vswhere.exe -prerelease -legacy -property installationVersion"] = 0;
diff --git a/cpp/autobuilder/Semmle.Autobuild.Cpp/CppAutobuilder.cs b/cpp/autobuilder/Semmle.Autobuild.Cpp/CppAutobuilder.cs
index 44c34656a2a..1503dedb376 100644
--- a/cpp/autobuilder/Semmle.Autobuild.Cpp/CppAutobuilder.cs
+++ b/cpp/autobuilder/Semmle.Autobuild.Cpp/CppAutobuilder.cs
@@ -2,9 +2,26 @@
 
 namespace Semmle.Autobuild.Cpp
 {
-    public class CppAutobuilder : Autobuilder
+    /// <summary>
+    /// Encapsulates C++ build options.
+    /// </summary>
+    public class CppAutobuildOptions : AutobuildOptionsShared
     {
-        public CppAutobuilder(IBuildActions actions, AutobuildOptions options) : base(actions, options) { }
+        public override Language Language => Language.Cpp;
+
+
+        /// <summary>
+        /// Reads options from environment variables.
+        /// Throws ArgumentOutOfRangeException for invalid arguments.
+        /// </summary>
+        public CppAutobuildOptions(IBuildActions actions) : base(actions)
+        {
+        }
+    }
+
+    public class CppAutobuilder : Autobuilder<CppAutobuildOptions>
+    {
+        public CppAutobuilder(IBuildActions actions, CppAutobuildOptions options) : base(actions, options) { }
 
         public override BuildScript GetBuildScript()
         {
diff --git a/cpp/autobuilder/Semmle.Autobuild.Cpp/Program.cs b/cpp/autobuilder/Semmle.Autobuild.Cpp/Program.cs
index 3f4627c53d5..a7556197bcd 100644
--- a/cpp/autobuilder/Semmle.Autobuild.Cpp/Program.cs
+++ b/cpp/autobuilder/Semmle.Autobuild.Cpp/Program.cs
@@ -11,14 +11,14 @@ namespace Semmle.Autobuild.Cpp
             try
             {
                 var actions = SystemBuildActions.Instance;
-                var options = new AutobuildOptions(actions, Language.Cpp);
+                var options = new CppAutobuildOptions(actions);
                 try
                 {
                     Console.WriteLine("CodeQL C++ autobuilder");
                     var builder = new CppAutobuilder(actions, options);
                     return builder.AttemptBuild();
                 }
-                catch(InvalidEnvironmentException ex)
+                catch (InvalidEnvironmentException ex)
                 {
                     Console.WriteLine("The environment is invalid: {0}", ex.Message);
                 }
diff --git a/csharp/autobuilder/Semmle.Autobuild.CSharp.Tests/BuildScripts.cs b/csharp/autobuilder/Semmle.Autobuild.CSharp.Tests/BuildScripts.cs
index 9afe24ed72f..df362c2a129 100644
--- a/csharp/autobuilder/Semmle.Autobuild.CSharp.Tests/BuildScripts.cs
+++ b/csharp/autobuilder/Semmle.Autobuild.CSharp.Tests/BuildScripts.cs
@@ -403,7 +403,7 @@ namespace Semmle.Autobuild.CSharp.Tests
             actions.GetCurrentDirectory = cwd;
             actions.IsWindows = isWindows;
 
-            var options = new AutobuildOptions(actions, Language.CSharp);
+            var options = new CSharpAutobuildOptions(actions);
             return new CSharpAutobuilder(actions, options);
         }
 
@@ -576,7 +576,7 @@ namespace Semmle.Autobuild.CSharp.Tests
             actions.FileExists[@"C:\Program Files (x86)\Microsoft Visual Studio 10.0\VC\vcvarsall.bat"] = false;
         }
 
-        private void TestAutobuilderScript(Autobuilder autobuilder, int expectedOutput, int commandsRun)
+        private void TestAutobuilderScript(CSharpAutobuilder autobuilder, int expectedOutput, int commandsRun)
         {
             Assert.Equal(expectedOutput, autobuilder.GetBuildScript().Run(actions, StartCallback, EndCallback));
 
diff --git a/csharp/autobuilder/Semmle.Autobuild.CSharp/CSharpAutobuilder.cs b/csharp/autobuilder/Semmle.Autobuild.CSharp/CSharpAutobuilder.cs
index ff6d2c804cc..71891fa4e8b 100644
--- a/csharp/autobuilder/Semmle.Autobuild.CSharp/CSharpAutobuilder.cs
+++ b/csharp/autobuilder/Semmle.Autobuild.CSharp/CSharpAutobuilder.cs
@@ -4,9 +4,32 @@ using Semmle.Autobuild.Shared;
 
 namespace Semmle.Autobuild.CSharp
 {
-    public class CSharpAutobuilder : Autobuilder
+    /// <summary>
+    /// Encapsulates C# build options.
+    /// </summary>
+    public class CSharpAutobuildOptions : AutobuildOptionsShared
     {
-        public CSharpAutobuilder(IBuildActions actions, AutobuildOptions options) : base(actions, options) { }
+        private const string extractorOptionPrefix = "CODEQL_EXTRACTOR_CSHARP_OPTION_";
+
+        public bool Buildless { get; }
+
+        public override Language Language => Language.CSharp;
+
+
+        /// <summary>
+        /// Reads options from environment variables.
+        /// Throws ArgumentOutOfRangeException for invalid arguments.
+        /// </summary>
+        public CSharpAutobuildOptions(IBuildActions actions) : base(actions)
+        {
+            Buildless = actions.GetEnvironmentVariable(lgtmPrefix + "BUILDLESS").AsBool("buildless", false) ||
+                actions.GetEnvironmentVariable(extractorOptionPrefix + "BUILDLESS").AsBool("buildless", false);
+        }
+    }
+
+    public class CSharpAutobuilder : Autobuilder<CSharpAutobuildOptions>
+    {
+        public CSharpAutobuilder(IBuildActions actions, CSharpAutobuildOptions options) : base(actions, options) { }
 
         public override BuildScript GetBuildScript()
         {
diff --git a/csharp/autobuilder/Semmle.Autobuild.CSharp/DotNetRule.cs b/csharp/autobuilder/Semmle.Autobuild.CSharp/DotNetRule.cs
index 163dbfa1464..394349e2a40 100644
--- a/csharp/autobuilder/Semmle.Autobuild.CSharp/DotNetRule.cs
+++ b/csharp/autobuilder/Semmle.Autobuild.CSharp/DotNetRule.cs
@@ -13,9 +13,9 @@ namespace Semmle.Autobuild.CSharp
     /// A build rule where the build command is of the form "dotnet build".
     /// Currently unused because the tracer does not work with dotnet.
     /// </summary>
-    internal class DotNetRule : IBuildRule
+    internal class DotNetRule : IBuildRule<CSharpAutobuildOptions>
     {
-        public BuildScript Analyse(Autobuilder builder, bool auto)
+        public BuildScript Analyse(IAutobuilder<CSharpAutobuildOptions> builder, bool auto)
         {
             if (!builder.ProjectsOrSolutionsToBuild.Any())
                 return BuildScript.Failure;
@@ -24,7 +24,7 @@ namespace Semmle.Autobuild.CSharp
             {
                 var notDotNetProject = builder.ProjectsOrSolutionsToBuild
                     .SelectMany(p => Enumerators.Singleton(p).Concat(p.IncludedProjects))
-                    .OfType<Project>()
+                    .OfType<Project<CSharpAutobuildOptions>>()
                     .FirstOrDefault(p => !p.DotNetProject);
                 if (notDotNetProject is not null)
                 {
@@ -56,7 +56,7 @@ namespace Semmle.Autobuild.CSharp
                 });
         }
 
-        private static BuildScript WithDotNet(Autobuilder builder, Func<string?, IDictionary<string, string>?, BuildScript> f)
+        private static BuildScript WithDotNet(IAutobuilder<AutobuildOptionsShared> builder, Func<string?, IDictionary<string, string>?, BuildScript> f)
         {
             var installDir = builder.Actions.PathCombine(builder.Options.RootDirectory, ".dotnet");
             var installScript = DownloadDotNet(builder, installDir);
@@ -92,7 +92,7 @@ namespace Semmle.Autobuild.CSharp
         /// variables needed by the installed .NET Core (<code>null</code> when no variables
         /// are needed).
         /// </summary>
-        public static BuildScript WithDotNet(Autobuilder builder, Func<IDictionary<string, string>?, BuildScript> f)
+        public static BuildScript WithDotNet(IAutobuilder<AutobuildOptionsShared> builder, Func<IDictionary<string, string>?, BuildScript> f)
             => WithDotNet(builder, (_1, env) => f(env));
 
         /// <summary>
@@ -100,7 +100,7 @@ namespace Semmle.Autobuild.CSharp
         /// .NET Core SDK. The SDK(s) will be installed at <code>installDir</code>
         /// (provided that the script succeeds).
         /// </summary>
-        private static BuildScript DownloadDotNet(Autobuilder builder, string installDir)
+        private static BuildScript DownloadDotNet(IAutobuilder<AutobuildOptionsShared> builder, string installDir)
         {
             if (!string.IsNullOrEmpty(builder.Options.DotNetVersion))
                 // Specific version supplied in configuration: always use that
@@ -137,7 +137,7 @@ namespace Semmle.Autobuild.CSharp
         ///
         /// See https://docs.microsoft.com/en-us/dotnet/core/tools/dotnet-install-script.
         /// </summary>
-        private static BuildScript DownloadDotNetVersion(Autobuilder builder, string path, string version)
+        private static BuildScript DownloadDotNetVersion(IAutobuilder<AutobuildOptionsShared> builder, string path, string version)
         {
             return BuildScript.Bind(GetInstalledSdksScript(builder.Actions), (sdks, sdksRet) =>
                 {
@@ -233,7 +233,7 @@ namespace Semmle.Autobuild.CSharp
         /// <summary>
         /// Gets the `dotnet build` script.
         /// </summary>
-        private static BuildScript GetBuildScript(Autobuilder builder, string? dotNetPath, IDictionary<string, string>? environment, string projOrSln)
+        private static BuildScript GetBuildScript(IAutobuilder<CSharpAutobuildOptions> builder, string? dotNetPath, IDictionary<string, string>? environment, string projOrSln)
         {
             var build = new CommandBuilder(builder.Actions, null, environment);
             var script = build.RunCommand(DotNetCommand(builder.Actions, dotNetPath)).
diff --git a/csharp/autobuilder/Semmle.Autobuild.CSharp/Program.cs b/csharp/autobuilder/Semmle.Autobuild.CSharp/Program.cs
index 2233557af16..479625c76e3 100644
--- a/csharp/autobuilder/Semmle.Autobuild.CSharp/Program.cs
+++ b/csharp/autobuilder/Semmle.Autobuild.CSharp/Program.cs
@@ -11,7 +11,7 @@ namespace Semmle.Autobuild.CSharp
             try
             {
                 var actions = SystemBuildActions.Instance;
-                var options = new AutobuildOptions(actions, Language.CSharp);
+                var options = new CSharpAutobuildOptions(actions);
                 try
                 {
                     Console.WriteLine("CodeQL C# autobuilder");
diff --git a/csharp/autobuilder/Semmle.Autobuild.CSharp/StandaloneBuildRule.cs b/csharp/autobuilder/Semmle.Autobuild.CSharp/StandaloneBuildRule.cs
index fa6523e37ae..207ecd70f0a 100644
--- a/csharp/autobuilder/Semmle.Autobuild.CSharp/StandaloneBuildRule.cs
+++ b/csharp/autobuilder/Semmle.Autobuild.CSharp/StandaloneBuildRule.cs
@@ -6,9 +6,9 @@ namespace Semmle.Autobuild.CSharp
     /// <summary>
     /// Build using standalone extraction.
     /// </summary>
-    internal class StandaloneBuildRule : IBuildRule
+    internal class StandaloneBuildRule : IBuildRule<CSharpAutobuildOptions>
     {
-        public BuildScript Analyse(Autobuilder builder, bool auto)
+        public BuildScript Analyse(IAutobuilder<CSharpAutobuildOptions> builder, bool auto)
         {
             BuildScript GetCommand(string? solution)
             {
diff --git a/csharp/autobuilder/Semmle.Autobuild.Shared/AutobuildOptions.cs b/csharp/autobuilder/Semmle.Autobuild.Shared/AutobuildOptions.cs
index ed20bb929ff..d51612272d0 100644
--- a/csharp/autobuilder/Semmle.Autobuild.Shared/AutobuildOptions.cs
+++ b/csharp/autobuilder/Semmle.Autobuild.Shared/AutobuildOptions.cs
@@ -6,12 +6,12 @@ using System.Text.RegularExpressions;
 namespace Semmle.Autobuild.Shared
 {
     /// <summary>
-    /// Encapsulates build options.
+    /// Encapsulates build options shared between C# and C++.
     /// </summary>
-    public class AutobuildOptions
+    public abstract class AutobuildOptionsShared
     {
-        private const string lgtmPrefix = "LGTM_INDEX_";
-        private const string extractorOptionPrefix = "CODEQL_EXTRACTOR_CSHARP_OPTION_";
+        protected const string lgtmPrefix = "LGTM_INDEX_";
+
 
         public int SearchDepth { get; } = 3;
         public string RootDirectory { get; }
@@ -25,16 +25,16 @@ namespace Semmle.Autobuild.Shared
         public string? BuildCommand { get; }
         public IEnumerable<string> Solution { get; }
         public bool IgnoreErrors { get; }
-        public bool Buildless { get; }
+
         public bool AllSolutions { get; }
         public bool NugetRestore { get; }
-        public Language Language { get; }
+        public abstract Language Language { get; }
 
         /// <summary>
         /// Reads options from environment variables.
         /// Throws ArgumentOutOfRangeException for invalid arguments.
         /// </summary>
-        public AutobuildOptions(IBuildActions actions, Language language)
+        public AutobuildOptionsShared(IBuildActions actions)
         {
             RootDirectory = actions.GetCurrentDirectory();
             VsToolsVersion = actions.GetEnvironmentVariable(lgtmPrefix + "VSTOOLS_VERSION");
@@ -48,12 +48,8 @@ namespace Semmle.Autobuild.Shared
             Solution = actions.GetEnvironmentVariable(lgtmPrefix + "SOLUTION").AsListWithExpandedEnvVars(actions, Array.Empty<string>());
 
             IgnoreErrors = actions.GetEnvironmentVariable(lgtmPrefix + "IGNORE_ERRORS").AsBool("ignore_errors", false);
-            Buildless = actions.GetEnvironmentVariable(lgtmPrefix + "BUILDLESS").AsBool("buildless", false) ||
-                actions.GetEnvironmentVariable(extractorOptionPrefix + "BUILDLESS").AsBool("buildless", false);
             AllSolutions = actions.GetEnvironmentVariable(lgtmPrefix + "ALL_SOLUTIONS").AsBool("all_solutions", false);
             NugetRestore = actions.GetEnvironmentVariable(lgtmPrefix + "NUGET_RESTORE").AsBool("nuget_restore", true);
-
-            Language = language;
         }
     }
 
diff --git a/csharp/autobuilder/Semmle.Autobuild.Shared/Autobuilder.cs b/csharp/autobuilder/Semmle.Autobuild.Shared/Autobuilder.cs
index d90175d245a..1ef5ebd815d 100644
--- a/csharp/autobuilder/Semmle.Autobuild.Shared/Autobuilder.cs
+++ b/csharp/autobuilder/Semmle.Autobuild.Shared/Autobuilder.cs
@@ -9,21 +9,21 @@ namespace Semmle.Autobuild.Shared
     /// <summary>
     /// A build rule analyses the files in "builder" and outputs a build script.
     /// </summary>
-    public interface IBuildRule
+    public interface IBuildRule<TAutobuildOptions> where TAutobuildOptions : AutobuildOptionsShared
     {
         /// <summary>
         /// Analyse the files and produce a build script.
         /// </summary>
         /// <param name="builder">The files and options relating to the build.</param>
         /// <param name="auto">Whether this build rule is being automatically applied.</param>
-        BuildScript Analyse(Autobuilder builder, bool auto);
+        BuildScript Analyse(IAutobuilder<TAutobuildOptions> builder, bool auto);
     }
 
     /// <summary>
     /// A delegate used to wrap a build script in an environment where an appropriate
     /// version of .NET Core is automatically installed.
     /// </summary>
-    public delegate BuildScript WithDotNet(Autobuilder builder, Func<IDictionary<string, string>?, BuildScript> f);
+    public delegate BuildScript WithDotNet<TAutobuildOptions>(IAutobuilder<TAutobuildOptions> builder, Func<IDictionary<string, string>?, BuildScript> f) where TAutobuildOptions : AutobuildOptionsShared;
 
     /// <summary>
     /// Exception indicating that environment variables are missing or invalid.
@@ -33,6 +33,59 @@ namespace Semmle.Autobuild.Shared
         public InvalidEnvironmentException(string m) : base(m) { }
     }
 
+    public interface IAutobuilder<out TAutobuildOptions> where TAutobuildOptions : AutobuildOptionsShared
+    {
+        /// <summary>
+        /// Full file paths of files found in the project directory, as well as
+        /// their distance from the project root folder. The list is sorted
+        /// by distance in ascending order.
+        /// </summary>
+        IEnumerable<(string, int)> Paths { get; }
+
+        /// <summary>
+        /// Gets all paths matching a particular filename, as well as
+        /// their distance from the project root folder. The list is sorted
+        /// by distance in ascending order.
+        /// </summary>
+        /// <param name="name">The filename to find.</param>
+        /// <returns>Possibly empty sequence of paths with the given filename.</returns>
+        IEnumerable<(string, int)> GetFilename(string name) =>
+           Paths.Where(p => Actions.GetFileName(p.Item1) == name);
+
+        /// <summary>
+        /// List of project/solution files to build.
+        /// </summary>
+        IList<IProjectOrSolution> ProjectsOrSolutionsToBuild { get; }
+
+        /// <summary>
+        /// Gets the supplied build configuration.
+        /// </summary>
+        TAutobuildOptions Options { get; }
+
+        /// <summary>
+        /// The set of build actions used during the autobuilder.
+        /// Could be real system operations, or a stub for testing.
+        /// </summary>
+        IBuildActions Actions { get; }
+
+        /// <summary>
+        /// Log a given build event to the console.
+        /// </summary>
+        /// <param name="format">The format string.</param>
+        /// <param name="args">Inserts to the format string.</param>
+        void Log(Severity severity, string format, params object[] args);
+
+        /// <summary>
+        /// Value of CODEQL_EXTRACTOR_<LANG>_ROOT environment variable.
+        /// </summary>
+        string? CodeQLExtractorLangRoot { get; }
+
+        /// <summary>
+        /// Value of CODEQL_PLATFORM environment variable.
+        /// </summary>
+        string? CodeQlPlatform { get; }
+    }
+
     /// <summary>
     /// Main application logic, containing all data
     /// gathered from the project and filesystem.
@@ -40,7 +93,7 @@ namespace Semmle.Autobuild.Shared
     /// The overall design is intended to be extensible so that in theory,
     /// it should be possible to add new build rules without touching this code.
     /// </summary>
-    public abstract class Autobuilder
+    public abstract class Autobuilder<TAutobuildOptions> : IAutobuilder<TAutobuildOptions> where TAutobuildOptions : AutobuildOptionsShared
     {
         /// <summary>
         /// Full file paths of files found in the project directory, as well as
@@ -60,16 +113,6 @@ namespace Semmle.Autobuild.Shared
         public IEnumerable<(string, int)> GetExtensions(params string[] extensions) =>
             Paths.Where(p => extensions.Contains(Path.GetExtension(p.Item1)));
 
-        /// <summary>
-        /// Gets all paths matching a particular filename, as well as
-        /// their distance from the project root folder. The list is sorted
-        /// by distance in ascending order.
-        /// </summary>
-        /// <param name="name">The filename to find.</param>
-        /// <returns>Possibly empty sequence of paths with the given filename.</returns>
-        public IEnumerable<(string, int)> GetFilename(string name) =>
-            Paths.Where(p => Actions.GetFileName(p.Item1) == name);
-
         /// <summary>
         /// Holds if a given path, relative to the root of the source directory
         /// was found.
@@ -115,7 +158,7 @@ namespace Semmle.Autobuild.Shared
         /// <summary>
         /// Gets the supplied build configuration.
         /// </summary>
-        public AutobuildOptions Options { get; }
+        public TAutobuildOptions Options { get; }
 
         /// <summary>
         /// The set of build actions used during the autobuilder.
@@ -123,7 +166,7 @@ namespace Semmle.Autobuild.Shared
         /// </summary>
         public IBuildActions Actions { get; }
 
-        private IEnumerable<IProjectOrSolution>? FindFiles(string extension, Func<string, ProjectOrSolution> create)
+        private IEnumerable<IProjectOrSolution>? FindFiles(string extension, Func<string, ProjectOrSolution<TAutobuildOptions>> create)
         {
             var matchingFiles = GetExtensions(extension)
                 .Select(p => (ProjectOrSolution: create(p.Item1), DistanceFromRoot: p.Item2))
@@ -146,7 +189,7 @@ namespace Semmle.Autobuild.Shared
         /// solution file and tools.
         /// </summary>
         /// <param name="options">The command line options.</param>
-        protected Autobuilder(IBuildActions actions, AutobuildOptions options)
+        protected Autobuilder(IBuildActions actions, TAutobuildOptions options)
         {
             Actions = actions;
             Options = options;
@@ -167,7 +210,7 @@ namespace Semmle.Autobuild.Shared
                     foreach (var solution in options.Solution)
                     {
                         if (actions.FileExists(solution))
-                            ret.Add(new Solution(this, solution, true));
+                            ret.Add(new Solution<TAutobuildOptions>(this, solution, true));
                         else
                             Log(Severity.Error, $"The specified project or solution file {solution} was not found");
                     }
@@ -175,17 +218,17 @@ namespace Semmle.Autobuild.Shared
                 }
 
                 // First look for `.proj` files
-                ret = FindFiles(".proj", f => new Project(this, f))?.ToList();
+                ret = FindFiles(".proj", f => new Project<TAutobuildOptions>(this, f))?.ToList();
                 if (ret is not null)
                     return ret;
 
                 // Then look for `.sln` files
-                ret = FindFiles(".sln", f => new Solution(this, f, false))?.ToList();
+                ret = FindFiles(".sln", f => new Solution<TAutobuildOptions>(this, f, false))?.ToList();
                 if (ret is not null)
                     return ret;
 
                 // Finally look for language specific project files, e.g. `.csproj` files
-                ret = FindFiles(this.Options.Language.ProjectExtension, f => new Project(this, f))?.ToList();
+                ret = FindFiles(this.Options.Language.ProjectExtension, f => new Project<TAutobuildOptions>(this, f))?.ToList();
                 return ret ?? new List<IProjectOrSolution>();
             });
 
diff --git a/csharp/autobuilder/Semmle.Autobuild.Shared/BuildCommandAutoRule.cs b/csharp/autobuilder/Semmle.Autobuild.Shared/BuildCommandAutoRule.cs
index b6cb0737630..0d44f0dad4d 100644
--- a/csharp/autobuilder/Semmle.Autobuild.Shared/BuildCommandAutoRule.cs
+++ b/csharp/autobuilder/Semmle.Autobuild.Shared/BuildCommandAutoRule.cs
@@ -7,11 +7,11 @@ namespace Semmle.Autobuild.Shared
     /// <summary>
     /// Auto-detection of build scripts.
     /// </summary>
-    public class BuildCommandAutoRule : IBuildRule
+    public class BuildCommandAutoRule : IBuildRule<AutobuildOptionsShared>
     {
-        private readonly WithDotNet withDotNet;
+        private readonly WithDotNet<AutobuildOptionsShared> withDotNet;
 
-        public BuildCommandAutoRule(WithDotNet withDotNet)
+        public BuildCommandAutoRule(WithDotNet<AutobuildOptionsShared> withDotNet)
         {
             this.withDotNet = withDotNet;
         }
@@ -31,7 +31,7 @@ namespace Semmle.Autobuild.Shared
             "build"
         };
 
-        public BuildScript Analyse(Autobuilder builder, bool auto)
+        public BuildScript Analyse(IAutobuilder<AutobuildOptionsShared> builder, bool auto)
         {
             builder.Log(Severity.Info, "Attempting to locate build script");
 
diff --git a/csharp/autobuilder/Semmle.Autobuild.Shared/BuildCommandRule.cs b/csharp/autobuilder/Semmle.Autobuild.Shared/BuildCommandRule.cs
index 6db4cfa139d..54d406c9dac 100644
--- a/csharp/autobuilder/Semmle.Autobuild.Shared/BuildCommandRule.cs
+++ b/csharp/autobuilder/Semmle.Autobuild.Shared/BuildCommandRule.cs
@@ -3,16 +3,16 @@
     /// <summary>
     /// Execute the build_command rule.
     /// </summary>
-    public class BuildCommandRule : IBuildRule
+    public class BuildCommandRule : IBuildRule<AutobuildOptionsShared>
     {
-        private readonly WithDotNet withDotNet;
+        private readonly WithDotNet<AutobuildOptionsShared> withDotNet;
 
-        public BuildCommandRule(WithDotNet withDotNet)
+        public BuildCommandRule(WithDotNet<AutobuildOptionsShared> withDotNet)
         {
             this.withDotNet = withDotNet;
         }
 
-        public BuildScript Analyse(Autobuilder builder, bool auto)
+        public BuildScript Analyse(IAutobuilder<AutobuildOptionsShared> builder, bool auto)
         {
             if (builder.Options.BuildCommand is null)
                 return BuildScript.Failure;
diff --git a/csharp/autobuilder/Semmle.Autobuild.Shared/MsBuildRule.cs b/csharp/autobuilder/Semmle.Autobuild.Shared/MsBuildRule.cs
index 0afc1da098c..77f2f70f718 100644
--- a/csharp/autobuilder/Semmle.Autobuild.Shared/MsBuildRule.cs
+++ b/csharp/autobuilder/Semmle.Autobuild.Shared/MsBuildRule.cs
@@ -6,14 +6,14 @@ namespace Semmle.Autobuild.Shared
     /// <summary>
     /// A build rule using msbuild.
     /// </summary>
-    public class MsBuildRule : IBuildRule
+    public class MsBuildRule : IBuildRule<AutobuildOptionsShared>
     {
         /// <summary>
         /// The name of the msbuild command.
         /// </summary>
         private const string msBuild = "msbuild";
 
-        public BuildScript Analyse(Autobuilder builder, bool auto)
+        public BuildScript Analyse(IAutobuilder<AutobuildOptionsShared> builder, bool auto)
         {
             if (!builder.ProjectsOrSolutionsToBuild.Any())
                 return BuildScript.Failure;
@@ -27,8 +27,8 @@ namespace Semmle.Autobuild.Shared
             {
                 var firstSolution = builder.ProjectsOrSolutionsToBuild.OfType<ISolution>().FirstOrDefault();
                 vsTools = firstSolution is not null
-                                ? BuildTools.FindCompatibleVcVars(builder.Actions, firstSolution)
-                                : BuildTools.VcVarsAllBatFiles(builder.Actions).OrderByDescending(b => b.ToolsVersion).FirstOrDefault();
+                                        ? BuildTools.FindCompatibleVcVars(builder.Actions, firstSolution)
+                                        : BuildTools.VcVarsAllBatFiles(builder.Actions).OrderByDescending(b => b.ToolsVersion).FirstOrDefault();
             }
 
             if (vsTools is null && builder.Actions.IsWindows())
@@ -123,7 +123,7 @@ namespace Semmle.Autobuild.Shared
         ///
         /// Returns <code>null</code> when no version is specified.
         /// </summary>
-        public static VcVarsBatFile? GetVcVarsBatFile(Autobuilder builder)
+        public static VcVarsBatFile? GetVcVarsBatFile<TAutobuildOptions>(IAutobuilder<TAutobuildOptions> builder) where TAutobuildOptions : AutobuildOptionsShared
         {
             VcVarsBatFile? vsTools = null;
 
@@ -154,7 +154,7 @@ namespace Semmle.Autobuild.Shared
         /// <summary>
         /// Returns a script for downloading `nuget.exe` from nuget.org.
         /// </summary>
-        private static BuildScript DownloadNugetExe(Autobuilder builder, string path) =>
+        private static BuildScript DownloadNugetExe<TAutobuildOptions>(IAutobuilder<TAutobuildOptions> builder, string path) where TAutobuildOptions : AutobuildOptionsShared =>
             BuildScript.Create(_ =>
             {
                 builder.Log(Severity.Info, "Attempting to download nuget.exe");
diff --git a/csharp/autobuilder/Semmle.Autobuild.Shared/Project.cs b/csharp/autobuilder/Semmle.Autobuild.Shared/Project.cs
index bdc712d6623..71522859871 100644
--- a/csharp/autobuilder/Semmle.Autobuild.Shared/Project.cs
+++ b/csharp/autobuilder/Semmle.Autobuild.Shared/Project.cs
@@ -12,7 +12,7 @@ namespace Semmle.Autobuild.Shared
     /// C# project files come in 2 flavours, .Net core and msbuild, but they
     /// have the same file extension.
     /// </summary>
-    public class Project : ProjectOrSolution
+    public class Project<TAutobuildOptions> : ProjectOrSolution<TAutobuildOptions> where TAutobuildOptions : AutobuildOptionsShared
     {
         /// <summary>
         /// Holds if this project is for .Net core.
@@ -23,13 +23,13 @@ namespace Semmle.Autobuild.Shared
 
         public Version ToolsVersion { get; private set; }
 
-        private readonly Lazy<List<Project>> includedProjectsLazy;
+        private readonly Lazy<List<Project<TAutobuildOptions>>> includedProjectsLazy;
         public override IEnumerable<IProjectOrSolution> IncludedProjects => includedProjectsLazy.Value;
 
-        public Project(Autobuilder builder, string path) : base(builder, path)
+        public Project(Autobuilder<TAutobuildOptions> builder, string path) : base(builder, path)
         {
             ToolsVersion = new Version();
-            includedProjectsLazy = new Lazy<List<Project>>(() => new List<Project>());
+            includedProjectsLazy = new Lazy<List<Project<TAutobuildOptions>>>(() => new List<Project<TAutobuildOptions>>());
 
             if (!builder.Actions.FileExists(FullPath))
                 return;
@@ -70,9 +70,9 @@ namespace Semmle.Autobuild.Shared
                     }
                 }
 
-                includedProjectsLazy = new Lazy<List<Project>>(() =>
+                includedProjectsLazy = new Lazy<List<Project<TAutobuildOptions>>>(() =>
                 {
-                    var ret = new List<Project>();
+                    var ret = new List<Project<TAutobuildOptions>>();
                     // The documentation on `.proj` files is very limited, but it appears that both
                     // `<ProjectFile Include="X"/>` and `<ProjectFiles Include="X"/>` is valid
                     var mgr = new XmlNamespaceManager(projFile.NameTable);
@@ -89,7 +89,7 @@ namespace Semmle.Autobuild.Shared
                         }
 
                         var includePath = builder.Actions.PathCombine(include.Value.Split('\\', StringSplitOptions.RemoveEmptyEntries));
-                        ret.Add(new Project(builder, builder.Actions.PathCombine(DirectoryName, includePath)));
+                        ret.Add(new Project<TAutobuildOptions>(builder, builder.Actions.PathCombine(DirectoryName, includePath)));
                     }
                     return ret;
                 });
diff --git a/csharp/autobuilder/Semmle.Autobuild.Shared/ProjectOrSolution.cs b/csharp/autobuilder/Semmle.Autobuild.Shared/ProjectOrSolution.cs
index 5e4d6c05248..d0c9eeb9669 100644
--- a/csharp/autobuilder/Semmle.Autobuild.Shared/ProjectOrSolution.cs
+++ b/csharp/autobuilder/Semmle.Autobuild.Shared/ProjectOrSolution.cs
@@ -20,13 +20,13 @@ namespace Semmle.Autobuild.Shared
         IEnumerable<IProjectOrSolution> IncludedProjects { get; }
     }
 
-    public abstract class ProjectOrSolution : IProjectOrSolution
+    public abstract class ProjectOrSolution<TAutobuildOptions> : IProjectOrSolution where TAutobuildOptions : AutobuildOptionsShared
     {
         public string FullPath { get; }
 
         public string DirectoryName { get; }
 
-        protected ProjectOrSolution(Autobuilder builder, string path)
+        protected ProjectOrSolution(Autobuilder<TAutobuildOptions> builder, string path)
         {
             FullPath = builder.Actions.GetFullPath(path);
             DirectoryName = builder.Actions.GetDirectoryName(path) ?? "";
diff --git a/csharp/autobuilder/Semmle.Autobuild.Shared/Solution.cs b/csharp/autobuilder/Semmle.Autobuild.Shared/Solution.cs
index 0ec54c1e02f..78929b3a93e 100644
--- a/csharp/autobuilder/Semmle.Autobuild.Shared/Solution.cs
+++ b/csharp/autobuilder/Semmle.Autobuild.Shared/Solution.cs
@@ -40,11 +40,11 @@ namespace Semmle.Autobuild.Shared
     /// <summary>
     /// A solution file on the filesystem, read using Microsoft.Build.
     /// </summary>
-    internal class Solution : ProjectOrSolution, ISolution
+    internal class Solution<TAutobuildOptions> : ProjectOrSolution<TAutobuildOptions>, ISolution where TAutobuildOptions : AutobuildOptionsShared
     {
         private readonly SolutionFile? solution;
 
-        private readonly IEnumerable<Project> includedProjects;
+        private readonly IEnumerable<Project<TAutobuildOptions>> includedProjects;
 
         public override IEnumerable<IProjectOrSolution> IncludedProjects => includedProjects;
 
@@ -57,7 +57,7 @@ namespace Semmle.Autobuild.Shared
         public string DefaultPlatformName =>
             solution is null ? "" : solution.GetDefaultPlatformName();
 
-        public Solution(Autobuilder builder, string path, bool allowProject) : base(builder, path)
+        public Solution(Autobuilder<TAutobuildOptions> builder, string path, bool allowProject) : base(builder, path)
         {
             try
             {
@@ -69,19 +69,19 @@ namespace Semmle.Autobuild.Shared
                 // that scenario as a solution with just that one project
                 if (allowProject)
                 {
-                    includedProjects = new[] { new Project(builder, path) };
+                    includedProjects = new[] { new Project<TAutobuildOptions>(builder, path) };
                     return;
                 }
 
                 builder.Log(Severity.Info, $"Unable to read solution file {path}.");
-                includedProjects = Array.Empty<Project>();
+                includedProjects = Array.Empty<Project<TAutobuildOptions>>();
                 return;
             }
 
             includedProjects = solution.ProjectsInOrder
                 .Where(p => p.ProjectType == SolutionProjectType.KnownToBeMSBuildFormat)
                 .Select(p => builder.Actions.PathCombine(DirectoryName, builder.Actions.PathCombine(p.RelativePath.Split('\\', StringSplitOptions.RemoveEmptyEntries))))
-                .Select(p => new Project(builder, p))
+                .Select(p => new Project<TAutobuildOptions>(builder, p))
                 .ToArray();
         }
 

From d401be18453679f98d03cdff77c50b9b4880ea07 Mon Sep 17 00:00:00 2001
From: Ian Lynagh <igfoo@github.com>
Date: Wed, 23 Nov 2022 12:11:55 +0000
Subject: [PATCH 0572/1420] Java: Fix typo: ceritificate

---
 .../Security/CWE/CWE-299/DisabledRevocationChecking.ql          | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/java/ql/src/experimental/Security/CWE/CWE-299/DisabledRevocationChecking.ql b/java/ql/src/experimental/Security/CWE/CWE-299/DisabledRevocationChecking.ql
index c3af26f8ff4..a6d2049bd16 100644
--- a/java/ql/src/experimental/Security/CWE/CWE-299/DisabledRevocationChecking.ql
+++ b/java/ql/src/experimental/Security/CWE/CWE-299/DisabledRevocationChecking.ql
@@ -1,5 +1,5 @@
 /**
- * @name Disabled ceritificate revocation checking
+ * @name Disabled certificate revocation checking
  * @description Using revoked certificates is dangerous.
  *              Therefore, revocation status of certificates in a chain should be checked.
  * @kind path-problem

From dcd082e955a225cf471f0aa90cf6de44453dbb05 Mon Sep 17 00:00:00 2001
From: Ben Ahmady <32935794+subatoi@users.noreply.github.com>
Date: Wed, 23 Nov 2022 12:48:47 +0000
Subject: [PATCH 0573/1420] Possible build fix, else needs new parameter

---
 docs/codeql/reusables/kotlin-java-differences.rst | 1 +
 1 file changed, 1 insertion(+)

diff --git a/docs/codeql/reusables/kotlin-java-differences.rst b/docs/codeql/reusables/kotlin-java-differences.rst
index 2cefb35a6ea..3ab5b73e044 100644
--- a/docs/codeql/reusables/kotlin-java-differences.rst
+++ b/docs/codeql/reusables/kotlin-java-differences.rst
@@ -8,6 +8,7 @@ There are however some important cases where writing queries for Kotlin can prod
 Be careful when you model code elements that don’t exist in Java, such as ``NotNullExpr (expr!!)``, because they could interact in unexpected ways with common predicates. For example, ``MethodAccess.getQualifier()`` returns a ``NotNullExpr`` instead of a ``VarAccess`` in the following Kotlin code:
 
 .. code-block:: kotlin
+   
    someVar!!.someMethodCall()
 
 In that specific case, you can use the predicate `Expr.getUnderlyingExpr()`. This goes directly to the underlying `VarAccess`` to produce a more similar behavior to that in Java.

From 876add521476ca15ee49768e144f73271f3a82c5 Mon Sep 17 00:00:00 2001
From: Paolo Tranquilli <redsun82@github.com>
Date: Wed, 23 Nov 2022 13:56:03 +0100
Subject: [PATCH 0574/1420] Swift: reject uppercase acronyms in schema

This was causing hardly debuggable errors because names are transformed
to underscored lowercase names in the dbscheme and back to camelcase
for trap emission classes, which is not a noop in case uppercase
acronyms (like SIL or ABI) are in the name.

This makes the error be surfaced early with a helpful message.
---
 swift/codegen/lib/schema/schema.py |  9 +++++++--
 swift/codegen/test/test_schema.py  | 11 +++++++++++
 2 files changed, 18 insertions(+), 2 deletions(-)

diff --git a/swift/codegen/lib/schema/schema.py b/swift/codegen/lib/schema/schema.py
index 94b4a2279ef..a2a1de0c05a 100644
--- a/swift/codegen/lib/schema/schema.py
+++ b/swift/codegen/lib/schema/schema.py
@@ -9,6 +9,7 @@ from enum import Enum, auto
 import functools
 import importlib.util
 from toposort import toposort_flatten
+import inflection
 
 
 class Error(Exception):
@@ -210,8 +211,12 @@ class _PropertyNamer(PropertyModifier):
 def _get_class(cls: type) -> Class:
     if not isinstance(cls, type):
         raise Error(f"Only class definitions allowed in schema, found {cls}")
-    if cls.__name__[0].islower():
-        raise Error(f"Class name must be capitalized, found {cls.__name__}")
+    # we must check that going to dbscheme names and back is preserved
+    # In particular this will not happen if uppercase acronyms are included in the name
+    to_underscore_and_back = inflection.camelize(inflection.underscore(cls.__name__), uppercase_first_letter=True)
+    if cls.__name__ != to_underscore_and_back:
+        raise Error(f"Class name must be upper camel-case, without capitalized acronyms, found {cls.__name__} "
+                    f"instead of {to_underscore_and_back}")
     if len({b._group for b in cls.__bases__ if hasattr(b, "_group")}) > 1:
         raise Error(f"Bases with mixed groups for {cls.__name__}")
     if any(getattr(b, "_null", False) for b in cls.__bases__):
diff --git a/swift/codegen/test/test_schema.py b/swift/codegen/test/test_schema.py
index 7ba84b4a292..0171087fafb 100644
--- a/swift/codegen/test/test_schema.py
+++ b/swift/codegen/test/test_schema.py
@@ -669,5 +669,16 @@ def test_null_class_cannot_be_defined_multiple_times():
                 pass
 
 
+def test_uppercase_acronyms_are_rejected():
+    with pytest.raises(schema.Error):
+        @schema.load
+        class data:
+            class Root:
+                pass
+
+            class ROTFLNode(Root):
+                pass
+
+
 if __name__ == '__main__':
     sys.exit(pytest.main([__file__] + sys.argv[1:]))

From 91198524cd9e0e43852477bf05bd78215c86490a Mon Sep 17 00:00:00 2001
From: Rasmus Lerchedahl Petersen <yoff@github.com>
Date: Wed, 23 Nov 2022 14:37:45 +0100
Subject: [PATCH 0575/1420] Python: port `py/super-not-enclosing-class`

---
 .../ql/src/Expressions/CallToSuperWrongClass.ql | 17 +++++++----------
 .../super/CallToSuperWrongClass.expected        |  2 +-
 2 files changed, 8 insertions(+), 11 deletions(-)

diff --git a/python/ql/src/Expressions/CallToSuperWrongClass.ql b/python/ql/src/Expressions/CallToSuperWrongClass.ql
index 4098653d7f8..1424fa8f434 100644
--- a/python/ql/src/Expressions/CallToSuperWrongClass.ql
+++ b/python/ql/src/Expressions/CallToSuperWrongClass.ql
@@ -13,17 +13,14 @@
  */
 
 import python
+import semmle.python.dataflow.new.DataFlow
 
-from CallNode call_to_super, string name
+from DataFlow::CallCfgNode call_to_super, string name
 where
-  exists(GlobalVariable gv, ControlFlowNode cn |
-    call_to_super = ClassValue::super_().getACall() and
-    gv.getId() = "super" and
-    cn = call_to_super.getArg(0) and
-    name = call_to_super.getScope().getScope().(Class).getName() and
-    exists(ClassValue other |
-      cn.pointsTo(other) and
-      not other.getScope().getName() = name
-    )
+  call_to_super.getFunction().getALocalSource().asExpr().(Name).getId() = "super" and
+  name = call_to_super.getScope().getScope().(Class).getName() and
+  exists(DataFlow::Node arg |
+    arg = call_to_super.getArg(0) and
+    not arg.getALocalSource().asExpr().(Name).getId() = name
   )
 select call_to_super.getNode(), "First argument to super() should be " + name + "."
diff --git a/python/ql/test/query-tests/Expressions/super/CallToSuperWrongClass.expected b/python/ql/test/query-tests/Expressions/super/CallToSuperWrongClass.expected
index 66508e08d70..859e4624a01 100644
--- a/python/ql/test/query-tests/Expressions/super/CallToSuperWrongClass.expected
+++ b/python/ql/test/query-tests/Expressions/super/CallToSuperWrongClass.expected
@@ -1 +1 @@
-| test.py:10:9:10:27 | super() | First argument to super() should be NotMyDict. |
+| test.py:10:9:10:27 | ControlFlowNode for super() | First argument to super() should be NotMyDict. |

From 2eb6b1adb34679be3dc4c0822ebf10460369624b Mon Sep 17 00:00:00 2001
From: erik-krogh <erik-krogh@github.com>
Date: Wed, 23 Nov 2022 14:38:12 +0100
Subject: [PATCH 0576/1420] JS: fix two typos

---
 .../security/dataflow/SecondOrderCommandInjectionQuery.qll      | 2 +-
 .../ql/src/experimental/Security/CWE-340/TokenBuiltFromUUID.ql  | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/javascript/ql/lib/semmle/javascript/security/dataflow/SecondOrderCommandInjectionQuery.qll b/javascript/ql/lib/semmle/javascript/security/dataflow/SecondOrderCommandInjectionQuery.qll
index eb3fac4e860..fc10cd30c71 100644
--- a/javascript/ql/lib/semmle/javascript/security/dataflow/SecondOrderCommandInjectionQuery.qll
+++ b/javascript/ql/lib/semmle/javascript/security/dataflow/SecondOrderCommandInjectionQuery.qll
@@ -12,7 +12,7 @@ import SecondOrderCommandInjectionCustomizations::SecondOrderCommandInjection
 private import semmle.javascript.security.TaintedObject
 
 /**
- * A taint-tracking configuration for reasoning about command-injection vulnerabilities.
+ * A taint-tracking configuration for reasoning about second order command-injection vulnerabilities.
  */
 class Configuration extends TaintTracking::Configuration {
   Configuration() { this = "SecondOrderCommandInjection" }
diff --git a/javascript/ql/src/experimental/Security/CWE-340/TokenBuiltFromUUID.ql b/javascript/ql/src/experimental/Security/CWE-340/TokenBuiltFromUUID.ql
index 4d4471e9a55..2c3b5a59eee 100644
--- a/javascript/ql/src/experimental/Security/CWE-340/TokenBuiltFromUUID.ql
+++ b/javascript/ql/src/experimental/Security/CWE-340/TokenBuiltFromUUID.ql
@@ -6,7 +6,7 @@
  * @precision medium
  * @problem.severity error
  * @security-severity 5
- * @id py/predictable-token
+ * @id js/predictable-token
  * @tags security
  *       external/cwe/cwe-340
  */

From 5a51d718c643044e037854ea9736861748340dd9 Mon Sep 17 00:00:00 2001
From: Asger F <asgerf@github.com>
Date: Wed, 23 Nov 2022 14:44:03 +0100
Subject: [PATCH 0577/1420] Update some comments referring to the package
 column

---
 javascript/ql/lib/semmle/javascript/frameworks/SQL.qll | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/javascript/ql/lib/semmle/javascript/frameworks/SQL.qll b/javascript/ql/lib/semmle/javascript/frameworks/SQL.qll
index 80694f0c723..2eace281e84 100644
--- a/javascript/ql/lib/semmle/javascript/frameworks/SQL.qll
+++ b/javascript/ql/lib/semmle/javascript/frameworks/SQL.qll
@@ -365,7 +365,7 @@ private module Sequelize {
 private module SpannerCsv {
   class SpannerSinks extends ModelInput::SinkModelCsv {
     override predicate row(string row) {
-      // package; type; path; kind
+      // type; path; kind
       row =
         [
           "@google-cloud/spanner.~SqlExecutorDirect;Argument[0];sql-injection",

From 19b5f64a11a8fc08f1152439ed33d76e96ebb59a Mon Sep 17 00:00:00 2001
From: erik-krogh <erik-krogh@github.com>
Date: Wed, 23 Nov 2022 14:58:17 +0100
Subject: [PATCH 0578/1420] use `instanceof` instead of `extends` on
 `DataFlow::CallNode` in some case

---
 .../codeql/ruby/frameworks/ActiveStorage.qll  |  4 +--
 .../lib/codeql/ruby/frameworks/PosixSpawn.qll |  8 +++---
 .../lib/codeql/ruby/frameworks/Railties.qll   |  8 +++---
 .../ql/lib/codeql/ruby/frameworks/core/IO.qll |  6 ++---
 .../codeql/ruby/frameworks/stdlib/Open3.qll   | 25 +++++++------------
 5 files changed, 22 insertions(+), 29 deletions(-)

diff --git a/ruby/ql/lib/codeql/ruby/frameworks/ActiveStorage.qll b/ruby/ql/lib/codeql/ruby/frameworks/ActiveStorage.qll
index 389ac9ee64d..4393f4c2bdb 100644
--- a/ruby/ql/lib/codeql/ruby/frameworks/ActiveStorage.qll
+++ b/ruby/ql/lib/codeql/ruby/frameworks/ActiveStorage.qll
@@ -168,7 +168,7 @@ module ActiveStorage {
    * A call on an ActiveStorage object that results in an image transformation.
    * Arguments to these calls may be executed as system commands.
    */
-  private class ImageProcessingCall extends DataFlow::CallNode, SystemCommandExecution::Range {
+  private class ImageProcessingCall extends SystemCommandExecution::Range instanceof DataFlow::CallNode {
     ImageProcessingCall() {
       this.getReceiver() instanceof BlobInstance and
       this.getMethodName() = ["variant", "preview", "representation"]
@@ -209,7 +209,7 @@ module ActiveStorage {
       this = API::getTopLevelMember("ActiveStorage").getAMethodCall("video_preview_arguments=")
     }
 
-    override DataFlow::Node getAnArgument() { result = this.getArgument(0) }
+    override DataFlow::Node getAnArgument() { result = super.getArgument(0) }
   }
 
   /**
diff --git a/ruby/ql/lib/codeql/ruby/frameworks/PosixSpawn.qll b/ruby/ql/lib/codeql/ruby/frameworks/PosixSpawn.qll
index 6c4d2ab1a47..92b6eb0fe71 100644
--- a/ruby/ql/lib/codeql/ruby/frameworks/PosixSpawn.qll
+++ b/ruby/ql/lib/codeql/ruby/frameworks/PosixSpawn.qll
@@ -20,7 +20,7 @@ module PosixSpawn {
   /**
    * A call to `POSIX::Spawn::Child.new` or `POSIX::Spawn::Child.build`.
    */
-  class ChildCall extends SystemCommandExecution::Range, DataFlow::CallNode {
+  class ChildCall extends SystemCommandExecution::Range instanceof DataFlow::CallNode {
     ChildCall() {
       this =
         [
@@ -30,7 +30,7 @@ module PosixSpawn {
     }
 
     override DataFlow::Node getAnArgument() {
-      result = this.getArgument(_) and not result.asExpr() instanceof ExprNodes::PairCfgNode
+      result = super.getArgument(_) and not result.asExpr() instanceof ExprNodes::PairCfgNode
     }
 
     override predicate isShellInterpreted(DataFlow::Node arg) { none() }
@@ -39,7 +39,7 @@ module PosixSpawn {
   /**
    * A call to `POSIX::Spawn.spawn` or a related method.
    */
-  class SystemCall extends SystemCommandExecution::Range, DataFlow::CallNode {
+  class SystemCall extends SystemCommandExecution::Range instanceof DataFlow::CallNode {
     SystemCall() {
       this =
         posixSpawnModule()
@@ -71,7 +71,7 @@ module PosixSpawn {
     }
 
     private predicate argument(DataFlow::Node arg) {
-      arg = this.getArgument(_) and
+      arg = super.getArgument(_) and
       not arg.asExpr() instanceof ExprNodes::HashLiteralCfgNode and
       not arg.asExpr() instanceof ExprNodes::ArrayLiteralCfgNode and
       not arg.asExpr() instanceof ExprNodes::PairCfgNode
diff --git a/ruby/ql/lib/codeql/ruby/frameworks/Railties.qll b/ruby/ql/lib/codeql/ruby/frameworks/Railties.qll
index fdcd3a0e1a8..509f72cafb9 100644
--- a/ruby/ql/lib/codeql/ruby/frameworks/Railties.qll
+++ b/ruby/ql/lib/codeql/ruby/frameworks/Railties.qll
@@ -27,12 +27,12 @@ module Railties {
    * A call to `Rails::Generators::Actions#execute_command`.
    * This method concatenates its first and second arguments and executes the result as a shell command.
    */
-  private class ExecuteCommandCall extends SystemCommandExecution::Range, DataFlow::CallNode {
+  private class ExecuteCommandCall extends SystemCommandExecution::Range instanceof DataFlow::CallNode {
     ExecuteCommandCall() {
       this = generatorsActionsClass().getAnInstanceSelf().getAMethodCall("execute_command")
     }
 
-    override DataFlow::Node getAnArgument() { result = this.getArgument([0, 1]) }
+    override DataFlow::Node getAnArgument() { result = super.getArgument([0, 1]) }
 
     override predicate isShellInterpreted(DataFlow::Node arg) { arg = this.getAnArgument() }
   }
@@ -40,7 +40,7 @@ module Railties {
   /**
    * A call to a method in `Rails::Generators::Actions` which delegates to `execute_command`.
    */
-  private class ExecuteCommandWrapperCall extends SystemCommandExecution::Range, DataFlow::CallNode {
+  private class ExecuteCommandWrapperCall extends SystemCommandExecution::Range instanceof DataFlow::CallNode {
     ExecuteCommandWrapperCall() {
       this =
         generatorsActionsClass()
@@ -48,7 +48,7 @@ module Railties {
             .getAMethodCall(["rake", "rails_command", "git"])
     }
 
-    override DataFlow::Node getAnArgument() { result = this.getArgument(0) }
+    override DataFlow::Node getAnArgument() { result = super.getArgument(0) }
 
     override predicate isShellInterpreted(DataFlow::Node arg) { arg = this.getAnArgument() }
   }
diff --git a/ruby/ql/lib/codeql/ruby/frameworks/core/IO.qll b/ruby/ql/lib/codeql/ruby/frameworks/core/IO.qll
index 0828a6dcea7..e751e882ddb 100644
--- a/ruby/ql/lib/codeql/ruby/frameworks/core/IO.qll
+++ b/ruby/ql/lib/codeql/ruby/frameworks/core/IO.qll
@@ -114,7 +114,7 @@ module IO {
    * ```
    * Ruby documentation: https://docs.ruby-lang.org/en/3.1/IO.html#method-c-popen
    */
-  class POpenCall extends SystemCommandExecution::Range, DataFlow::CallNode {
+  class POpenCall extends SystemCommandExecution::Range instanceof DataFlow::CallNode {
     POpenCall() { this = API::getTopLevelMember("IO").getAMethodCall("popen") }
 
     override DataFlow::Node getAnArgument() { this.argument(result, _) }
@@ -131,7 +131,7 @@ module IO {
         not n instanceof ExprNodes::ArrayLiteralCfgNode and
         (
           // IO.popen({var: "a"}, "cmd", {some: :opt})
-          arg = this.getArgument([0, 1]) and
+          arg = super.getArgument([0, 1]) and
           // We over-approximate by assuming a subshell if the argument isn't an array or "-".
           // This increases the sensitivity of the CommandInjection query at the risk of some FPs.
           if n.getConstantValue().getString() = "-" then shell = false else shell = true
@@ -139,7 +139,7 @@ module IO {
           // IO.popen([{var: "b"}, "cmd", "arg1", "arg2", {some: :opt}])
           // IO.popen({var: "a"}, ["cmd", "arg1", "arg2", {some: :opt}])
           shell = false and
-          exists(ExprNodes::ArrayLiteralCfgNode arr | this.getArgument([0, 1]).asExpr() = arr |
+          exists(ExprNodes::ArrayLiteralCfgNode arr | super.getArgument([0, 1]).asExpr() = arr |
             n = arr.getAnArgument()
             or
             // IO.popen([{var: "b"}, ["cmd", "argv0"], "arg1", "arg2", {some: :opt}])
diff --git a/ruby/ql/lib/codeql/ruby/frameworks/stdlib/Open3.qll b/ruby/ql/lib/codeql/ruby/frameworks/stdlib/Open3.qll
index 3272056b4f1..fb081d5113e 100644
--- a/ruby/ql/lib/codeql/ruby/frameworks/stdlib/Open3.qll
+++ b/ruby/ql/lib/codeql/ruby/frameworks/stdlib/Open3.qll
@@ -2,11 +2,13 @@
  * Provides modeling for the `Open3` library.
  */
 
+private import ruby
 private import codeql.ruby.AST
 private import codeql.ruby.DataFlow
 private import codeql.ruby.ApiGraphs
 private import codeql.ruby.frameworks.Stdlib
 private import codeql.ruby.Concepts
+private import codeql.ruby.frameworks.core.Kernel
 
 /**
  * Provides modeling for the `Open3` library.
@@ -17,23 +19,19 @@ module Open3 {
    * These methods take the same argument forms as `Kernel.system`.
    * See `KernelSystemCall` for details.
    */
-  class Open3Call extends SystemCommandExecution::Range {
-    MethodCall methodCall;
-
+  class Open3Call extends SystemCommandExecution::Range instanceof DataFlow::CallNode {
     Open3Call() {
-      this.asExpr().getExpr() = methodCall and
       this =
         API::getTopLevelMember("Open3")
             .getAMethodCall(["popen3", "popen2", "popen2e", "capture3", "capture2", "capture2e"])
     }
 
-    override DataFlow::Node getAnArgument() {
-      result.asExpr().getExpr() = methodCall.getAnArgument()
-    }
+    override DataFlow::Node getAnArgument() { result = super.getArgument(_) }
 
     override predicate isShellInterpreted(DataFlow::Node arg) {
       // These Open3 methods invoke a subshell if you provide a single string as argument
-      methodCall.getNumberOfArguments() = 1 and arg.asExpr().getExpr() = methodCall.getAnArgument()
+      super.getNumberOfArguments() = 1 and
+      arg = this.getAnArgument()
     }
   }
 
@@ -47,11 +45,8 @@ module Open3 {
    * Open3.pipeline([{}, "cat", "foo.txt"], "tail")
    * Open3.pipeline([["cat", "cat"], "foo.txt"], "tail")
    */
-  class Open3PipelineCall extends SystemCommandExecution::Range {
-    MethodCall methodCall;
-
+  class Open3PipelineCall extends SystemCommandExecution::Range instanceof DataFlow::CallNode {
     Open3PipelineCall() {
-      this.asExpr().getExpr() = methodCall and
       this =
         API::getTopLevelMember("Open3")
             .getAMethodCall([
@@ -59,14 +54,12 @@ module Open3 {
               ])
     }
 
-    override DataFlow::Node getAnArgument() {
-      result.asExpr().getExpr() = methodCall.getAnArgument()
-    }
+    override DataFlow::Node getAnArgument() { result = super.getArgument(_) }
 
     override predicate isShellInterpreted(DataFlow::Node arg) {
       // A command in the pipeline is executed in a subshell if it is given as a single string argument.
       arg.asExpr().getExpr() instanceof StringlikeLiteral and
-      arg.asExpr().getExpr() = methodCall.getAnArgument()
+      arg = this.getAnArgument()
     }
   }
 }

From abf0c0f296b7c62d171311738b246f457c8ba983 Mon Sep 17 00:00:00 2001
From: Asger F <asgerf@github.com>
Date: Wed, 23 Nov 2022 15:01:56 +0100
Subject: [PATCH 0579/1420] Python: update more comments referring to the
 package column

---
 python/ql/lib/semmle/python/frameworks/Asyncpg.qll | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/python/ql/lib/semmle/python/frameworks/Asyncpg.qll b/python/ql/lib/semmle/python/frameworks/Asyncpg.qll
index 7ded3730788..259699eeb0e 100644
--- a/python/ql/lib/semmle/python/frameworks/Asyncpg.qll
+++ b/python/ql/lib/semmle/python/frameworks/Asyncpg.qll
@@ -13,7 +13,7 @@ private import semmle.python.frameworks.data.ModelsAsData
 private module Asyncpg {
   class AsyncpgModel extends ModelInput::TypeModelCsv {
     override predicate row(string row) {
-      // package1;type1;package2;type2;path
+      // type1;type2;path
       row =
         [
           // a `ConnectionPool` that is created when the result of `asyncpg.create_pool()` is awaited.
@@ -31,7 +31,7 @@ private module Asyncpg {
   }
 
   class AsyncpgSink extends ModelInput::SinkModelCsv {
-    // package;type;path;kind
+    // type;path;kind
     override predicate row(string row) {
       row =
         [

From 311614c5e6c250efaa165eb84fb20be665a65227 Mon Sep 17 00:00:00 2001
From: Michael Nebel <michaelnebel@github.com>
Date: Wed, 23 Nov 2022 14:08:15 +0100
Subject: [PATCH 0580/1420] C#: Remove imports of ExternalFlow.qll.

---
 .../semmle/code/csharp/dataflow/internal/DataFlowDispatch.qll    | 1 -
 csharp/ql/lib/semmle/code/csharp/frameworks/EntityFramework.qll  | 1 -
 csharp/ql/lib/semmle/code/csharp/frameworks/JsonNET.qll          | 1 -
 csharp/ql/lib/semmle/code/csharp/frameworks/ServiceStack.qll     | 1 -
 csharp/ql/lib/semmle/code/csharp/frameworks/Sql.qll              | 1 -
 csharp/ql/lib/semmle/code/csharp/frameworks/System.qll           | 1 -
 csharp/ql/lib/semmle/code/csharp/frameworks/system/CodeDom.qll   | 1 -
 .../ql/lib/semmle/code/csharp/frameworks/system/Collections.qll  | 1 -
 csharp/ql/lib/semmle/code/csharp/frameworks/system/Data.qll      | 1 -
 .../ql/lib/semmle/code/csharp/frameworks/system/Diagnostics.qll  | 1 -
 csharp/ql/lib/semmle/code/csharp/frameworks/system/IO.qll        | 1 -
 csharp/ql/lib/semmle/code/csharp/frameworks/system/Linq.qll      | 1 -
 csharp/ql/lib/semmle/code/csharp/frameworks/system/Net.qll       | 1 -
 csharp/ql/lib/semmle/code/csharp/frameworks/system/Security.qll  | 1 -
 csharp/ql/lib/semmle/code/csharp/frameworks/system/Text.qll      | 1 -
 csharp/ql/lib/semmle/code/csharp/frameworks/system/Web.qll       | 1 -
 csharp/ql/lib/semmle/code/csharp/frameworks/system/Xml.qll       | 1 -
 .../semmle/code/csharp/frameworks/system/collections/Generic.qll | 1 -
 .../code/csharp/frameworks/system/collections/Specialized.qll    | 1 -
 .../ql/lib/semmle/code/csharp/frameworks/system/data/Common.qll  | 1 -
 .../lib/semmle/code/csharp/frameworks/system/io/Compression.qll  | 1 -
 csharp/ql/lib/semmle/code/csharp/frameworks/system/net/Mail.qll  | 1 -
 .../code/csharp/frameworks/system/runtime/CompilerServices.qll   | 1 -
 .../code/csharp/frameworks/system/security/Cryptography.qll      | 1 -
 .../frameworks/system/security/cryptography/X509Certificates.qll | 1 -
 .../code/csharp/frameworks/system/text/RegularExpressions.qll    | 1 -
 .../lib/semmle/code/csharp/frameworks/system/threading/Tasks.qll | 1 -
 .../semmle/code/csharp/frameworks/system/web/ui/WebControls.qll  | 1 -
 .../src/utils/model-generator/CaptureTypeBasedSummaryModels.ql   | 1 -
 29 files changed, 29 deletions(-)

diff --git a/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowDispatch.qll b/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowDispatch.qll
index 594cbe20865..a6142ce11ee 100644
--- a/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowDispatch.qll
+++ b/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowDispatch.qll
@@ -6,7 +6,6 @@ private import DataFlowPublic
 private import DataFlowPrivate
 private import FlowSummaryImpl as FlowSummaryImpl
 private import semmle.code.csharp.dataflow.FlowSummary as FlowSummary
-private import semmle.code.csharp.dataflow.ExternalFlow
 private import semmle.code.csharp.dispatch.Dispatch
 private import semmle.code.csharp.dispatch.RuntimeCallable
 private import semmle.code.csharp.frameworks.system.Collections
diff --git a/csharp/ql/lib/semmle/code/csharp/frameworks/EntityFramework.qll b/csharp/ql/lib/semmle/code/csharp/frameworks/EntityFramework.qll
index 4c4b4e7bd1d..946ba0b9e2d 100644
--- a/csharp/ql/lib/semmle/code/csharp/frameworks/EntityFramework.qll
+++ b/csharp/ql/lib/semmle/code/csharp/frameworks/EntityFramework.qll
@@ -9,7 +9,6 @@ private import semmle.code.csharp.frameworks.system.data.Entity
 private import semmle.code.csharp.frameworks.system.collections.Generic
 private import semmle.code.csharp.frameworks.Sql
 private import semmle.code.csharp.dataflow.FlowSummary
-private import semmle.code.csharp.dataflow.ExternalFlow
 private import semmle.code.csharp.dataflow.internal.DataFlowPrivate as DataFlowPrivate
 
 /**
diff --git a/csharp/ql/lib/semmle/code/csharp/frameworks/JsonNET.qll b/csharp/ql/lib/semmle/code/csharp/frameworks/JsonNET.qll
index 73a506bc555..bbadee3d5c9 100644
--- a/csharp/ql/lib/semmle/code/csharp/frameworks/JsonNET.qll
+++ b/csharp/ql/lib/semmle/code/csharp/frameworks/JsonNET.qll
@@ -3,7 +3,6 @@
  */
 
 import csharp
-private import semmle.code.csharp.dataflow.ExternalFlow
 
 /** Definitions relating to the `Json.NET` package. */
 module JsonNET {
diff --git a/csharp/ql/lib/semmle/code/csharp/frameworks/ServiceStack.qll b/csharp/ql/lib/semmle/code/csharp/frameworks/ServiceStack.qll
index ba3248fea95..27021573f38 100644
--- a/csharp/ql/lib/semmle/code/csharp/frameworks/ServiceStack.qll
+++ b/csharp/ql/lib/semmle/code/csharp/frameworks/ServiceStack.qll
@@ -6,7 +6,6 @@
  */
 
 import csharp
-private import semmle.code.csharp.dataflow.ExternalFlow
 
 /** A class representing a Service */
 private class ServiceClass extends Class {
diff --git a/csharp/ql/lib/semmle/code/csharp/frameworks/Sql.qll b/csharp/ql/lib/semmle/code/csharp/frameworks/Sql.qll
index 258b7b3f794..3d643934b5f 100644
--- a/csharp/ql/lib/semmle/code/csharp/frameworks/Sql.qll
+++ b/csharp/ql/lib/semmle/code/csharp/frameworks/Sql.qll
@@ -7,7 +7,6 @@ private import semmle.code.csharp.frameworks.EntityFramework
 private import semmle.code.csharp.frameworks.NHibernate
 private import semmle.code.csharp.frameworks.Dapper
 private import semmle.code.csharp.dataflow.DataFlow4
-private import semmle.code.csharp.dataflow.ExternalFlow
 
 /** An expression containing a SQL command. */
 abstract class SqlExpr extends Expr {
diff --git a/csharp/ql/lib/semmle/code/csharp/frameworks/System.qll b/csharp/ql/lib/semmle/code/csharp/frameworks/System.qll
index bf291f90879..479b78b0567 100644
--- a/csharp/ql/lib/semmle/code/csharp/frameworks/System.qll
+++ b/csharp/ql/lib/semmle/code/csharp/frameworks/System.qll
@@ -2,7 +2,6 @@
 
 import csharp
 private import system.Reflection
-private import semmle.code.csharp.dataflow.ExternalFlow
 
 /** The `System` namespace. */
 class SystemNamespace extends Namespace {
diff --git a/csharp/ql/lib/semmle/code/csharp/frameworks/system/CodeDom.qll b/csharp/ql/lib/semmle/code/csharp/frameworks/system/CodeDom.qll
index b7edb8e18dc..400e9954866 100644
--- a/csharp/ql/lib/semmle/code/csharp/frameworks/system/CodeDom.qll
+++ b/csharp/ql/lib/semmle/code/csharp/frameworks/system/CodeDom.qll
@@ -2,7 +2,6 @@
 
 import csharp
 private import semmle.code.csharp.frameworks.System
-private import semmle.code.csharp.dataflow.ExternalFlow
 
 /** The `System.CodeDome` namespace. */
 class SystemCodeDomNamespace extends Namespace {
diff --git a/csharp/ql/lib/semmle/code/csharp/frameworks/system/Collections.qll b/csharp/ql/lib/semmle/code/csharp/frameworks/system/Collections.qll
index 227fe34e3ca..1a35b7a807d 100644
--- a/csharp/ql/lib/semmle/code/csharp/frameworks/system/Collections.qll
+++ b/csharp/ql/lib/semmle/code/csharp/frameworks/system/Collections.qll
@@ -2,7 +2,6 @@
 
 import csharp
 private import semmle.code.csharp.frameworks.System
-private import semmle.code.csharp.dataflow.ExternalFlow
 private import semmle.code.csharp.dataflow.FlowSummary
 
 /** The `System.Collections` namespace. */
diff --git a/csharp/ql/lib/semmle/code/csharp/frameworks/system/Data.qll b/csharp/ql/lib/semmle/code/csharp/frameworks/system/Data.qll
index a95ae099295..f0e9fe29e96 100644
--- a/csharp/ql/lib/semmle/code/csharp/frameworks/system/Data.qll
+++ b/csharp/ql/lib/semmle/code/csharp/frameworks/system/Data.qll
@@ -2,7 +2,6 @@
 
 import csharp
 private import semmle.code.csharp.frameworks.System
-private import semmle.code.csharp.dataflow.ExternalFlow
 
 /** The `System.Data` namespace. */
 class SystemDataNamespace extends Namespace {
diff --git a/csharp/ql/lib/semmle/code/csharp/frameworks/system/Diagnostics.qll b/csharp/ql/lib/semmle/code/csharp/frameworks/system/Diagnostics.qll
index 0b85d2ac24a..81a620c9e7c 100644
--- a/csharp/ql/lib/semmle/code/csharp/frameworks/system/Diagnostics.qll
+++ b/csharp/ql/lib/semmle/code/csharp/frameworks/system/Diagnostics.qll
@@ -2,7 +2,6 @@
 
 import semmle.code.csharp.Type
 private import semmle.code.csharp.frameworks.System
-private import semmle.code.csharp.dataflow.ExternalFlow
 
 /** The `System.Diagnostics` namespace. */
 class SystemDiagnosticsNamespace extends Namespace {
diff --git a/csharp/ql/lib/semmle/code/csharp/frameworks/system/IO.qll b/csharp/ql/lib/semmle/code/csharp/frameworks/system/IO.qll
index 5ceb73d4b64..9756bf9c982 100644
--- a/csharp/ql/lib/semmle/code/csharp/frameworks/system/IO.qll
+++ b/csharp/ql/lib/semmle/code/csharp/frameworks/system/IO.qll
@@ -2,7 +2,6 @@
 
 import csharp
 private import semmle.code.csharp.frameworks.System
-private import semmle.code.csharp.dataflow.ExternalFlow
 
 /** The `System.IO` namespace. */
 class SystemIONamespace extends Namespace {
diff --git a/csharp/ql/lib/semmle/code/csharp/frameworks/system/Linq.qll b/csharp/ql/lib/semmle/code/csharp/frameworks/system/Linq.qll
index 31b23334eaf..49076215471 100644
--- a/csharp/ql/lib/semmle/code/csharp/frameworks/system/Linq.qll
+++ b/csharp/ql/lib/semmle/code/csharp/frameworks/system/Linq.qll
@@ -4,7 +4,6 @@
 
 private import csharp as CSharp
 private import semmle.code.csharp.frameworks.System as System
-private import semmle.code.csharp.dataflow.ExternalFlow as ExternalFlow
 
 /** Definitions relating to the `System.Linq` namespace. */
 module SystemLinq {
diff --git a/csharp/ql/lib/semmle/code/csharp/frameworks/system/Net.qll b/csharp/ql/lib/semmle/code/csharp/frameworks/system/Net.qll
index 1fbc46dbc9c..7c0aee741db 100644
--- a/csharp/ql/lib/semmle/code/csharp/frameworks/system/Net.qll
+++ b/csharp/ql/lib/semmle/code/csharp/frameworks/system/Net.qll
@@ -2,7 +2,6 @@
 
 import csharp
 private import semmle.code.csharp.frameworks.System
-private import semmle.code.csharp.dataflow.ExternalFlow
 
 /** The `System.Net` namespace. */
 class SystemNetNamespace extends Namespace {
diff --git a/csharp/ql/lib/semmle/code/csharp/frameworks/system/Security.qll b/csharp/ql/lib/semmle/code/csharp/frameworks/system/Security.qll
index f8501eb82e9..02325e19383 100644
--- a/csharp/ql/lib/semmle/code/csharp/frameworks/system/Security.qll
+++ b/csharp/ql/lib/semmle/code/csharp/frameworks/system/Security.qll
@@ -1,7 +1,6 @@
 /** Provides classes related to the namespace `System.Security`. */
 
 import csharp
-private import semmle.code.csharp.dataflow.ExternalFlow
 private import semmle.code.csharp.frameworks.System
 
 /** The `System.Security` namespace. */
diff --git a/csharp/ql/lib/semmle/code/csharp/frameworks/system/Text.qll b/csharp/ql/lib/semmle/code/csharp/frameworks/system/Text.qll
index c81b28e29fe..fb4c37489af 100644
--- a/csharp/ql/lib/semmle/code/csharp/frameworks/system/Text.qll
+++ b/csharp/ql/lib/semmle/code/csharp/frameworks/system/Text.qll
@@ -2,7 +2,6 @@
 
 import csharp
 private import semmle.code.csharp.frameworks.System
-private import semmle.code.csharp.dataflow.ExternalFlow
 private import semmle.code.csharp.dataflow.FlowSummary
 
 /** The `System.Text` namespace. */
diff --git a/csharp/ql/lib/semmle/code/csharp/frameworks/system/Web.qll b/csharp/ql/lib/semmle/code/csharp/frameworks/system/Web.qll
index 6680e22b796..8552c028c89 100644
--- a/csharp/ql/lib/semmle/code/csharp/frameworks/system/Web.qll
+++ b/csharp/ql/lib/semmle/code/csharp/frameworks/system/Web.qll
@@ -3,7 +3,6 @@
 import csharp
 private import semmle.code.csharp.frameworks.System
 private import semmle.code.csharp.frameworks.system.collections.Specialized
-private import semmle.code.csharp.dataflow.ExternalFlow
 
 /** The `System.Web` namespace. */
 class SystemWebNamespace extends Namespace {
diff --git a/csharp/ql/lib/semmle/code/csharp/frameworks/system/Xml.qll b/csharp/ql/lib/semmle/code/csharp/frameworks/system/Xml.qll
index d6fd132ee6b..df6827660a0 100644
--- a/csharp/ql/lib/semmle/code/csharp/frameworks/system/Xml.qll
+++ b/csharp/ql/lib/semmle/code/csharp/frameworks/system/Xml.qll
@@ -3,7 +3,6 @@
 import csharp
 private import semmle.code.csharp.frameworks.System
 private import semmle.code.csharp.dataflow.DataFlow3
-private import semmle.code.csharp.dataflow.ExternalFlow
 
 /** The `System.Xml` namespace. */
 class SystemXmlNamespace extends Namespace {
diff --git a/csharp/ql/lib/semmle/code/csharp/frameworks/system/collections/Generic.qll b/csharp/ql/lib/semmle/code/csharp/frameworks/system/collections/Generic.qll
index a7ab58da4f1..260fe6d0318 100644
--- a/csharp/ql/lib/semmle/code/csharp/frameworks/system/collections/Generic.qll
+++ b/csharp/ql/lib/semmle/code/csharp/frameworks/system/collections/Generic.qll
@@ -2,7 +2,6 @@
 
 import csharp
 private import semmle.code.csharp.frameworks.system.Collections
-private import semmle.code.csharp.dataflow.ExternalFlow
 
 /** The `System.Collections.Generic` namespace. */
 class SystemCollectionsGenericNamespace extends Namespace {
diff --git a/csharp/ql/lib/semmle/code/csharp/frameworks/system/collections/Specialized.qll b/csharp/ql/lib/semmle/code/csharp/frameworks/system/collections/Specialized.qll
index 4ffb7b5aa0c..2ddac761c4b 100644
--- a/csharp/ql/lib/semmle/code/csharp/frameworks/system/collections/Specialized.qll
+++ b/csharp/ql/lib/semmle/code/csharp/frameworks/system/collections/Specialized.qll
@@ -2,7 +2,6 @@
 
 import csharp
 private import semmle.code.csharp.frameworks.system.Collections
-private import semmle.code.csharp.dataflow.ExternalFlow
 
 /** The `System.Collections.Specialized` namespace. */
 class SystemCollectionsSpecializedNamespace extends Namespace {
diff --git a/csharp/ql/lib/semmle/code/csharp/frameworks/system/data/Common.qll b/csharp/ql/lib/semmle/code/csharp/frameworks/system/data/Common.qll
index 06a98d59f49..22c80fd4de6 100644
--- a/csharp/ql/lib/semmle/code/csharp/frameworks/system/data/Common.qll
+++ b/csharp/ql/lib/semmle/code/csharp/frameworks/system/data/Common.qll
@@ -4,7 +4,6 @@
 
 private import csharp as CSharp
 private import semmle.code.csharp.frameworks.system.Data as Data
-private import semmle.code.csharp.dataflow.ExternalFlow as ExternalFlow
 
 /** Definitions relating to the `System.Data.Common` namespace. */
 module SystemDataCommon {
diff --git a/csharp/ql/lib/semmle/code/csharp/frameworks/system/io/Compression.qll b/csharp/ql/lib/semmle/code/csharp/frameworks/system/io/Compression.qll
index d5c58f13128..b1b777b0f69 100644
--- a/csharp/ql/lib/semmle/code/csharp/frameworks/system/io/Compression.qll
+++ b/csharp/ql/lib/semmle/code/csharp/frameworks/system/io/Compression.qll
@@ -2,7 +2,6 @@
 
 import csharp
 private import semmle.code.csharp.frameworks.system.IO
-private import semmle.code.csharp.dataflow.ExternalFlow
 
 /** The `System.IO.Compression` namespace. */
 class SystemIOCompressionNamespace extends Namespace {
diff --git a/csharp/ql/lib/semmle/code/csharp/frameworks/system/net/Mail.qll b/csharp/ql/lib/semmle/code/csharp/frameworks/system/net/Mail.qll
index 104ea2424dd..631a09058a3 100644
--- a/csharp/ql/lib/semmle/code/csharp/frameworks/system/net/Mail.qll
+++ b/csharp/ql/lib/semmle/code/csharp/frameworks/system/net/Mail.qll
@@ -2,7 +2,6 @@
 
 import csharp
 private import semmle.code.csharp.frameworks.system.Net
-private import semmle.code.csharp.dataflow.ExternalFlow
 
 /** The `System.Net.Mail` namespace. */
 class SystemNetMailNamespace extends Namespace {
diff --git a/csharp/ql/lib/semmle/code/csharp/frameworks/system/runtime/CompilerServices.qll b/csharp/ql/lib/semmle/code/csharp/frameworks/system/runtime/CompilerServices.qll
index e4426a81d14..9ae5ec90b24 100644
--- a/csharp/ql/lib/semmle/code/csharp/frameworks/system/runtime/CompilerServices.qll
+++ b/csharp/ql/lib/semmle/code/csharp/frameworks/system/runtime/CompilerServices.qll
@@ -3,7 +3,6 @@
 import csharp
 private import semmle.code.csharp.frameworks.system.Runtime
 private import semmle.code.csharp.dataflow.internal.DataFlowPrivate
-private import semmle.code.csharp.dataflow.ExternalFlow
 
 /** The `System.Runtime.CompilerServices` namespace. */
 class SystemRuntimeCompilerServicesNamespace extends Namespace {
diff --git a/csharp/ql/lib/semmle/code/csharp/frameworks/system/security/Cryptography.qll b/csharp/ql/lib/semmle/code/csharp/frameworks/system/security/Cryptography.qll
index f922fb00669..40c07eef121 100644
--- a/csharp/ql/lib/semmle/code/csharp/frameworks/system/security/Cryptography.qll
+++ b/csharp/ql/lib/semmle/code/csharp/frameworks/system/security/Cryptography.qll
@@ -2,7 +2,6 @@
 
 import csharp
 private import semmle.code.csharp.frameworks.system.Security
-private import semmle.code.csharp.dataflow.ExternalFlow
 
 /** The `System.Security.Cryptography` namespace. */
 class SystemSecurityCryptographyNamespace extends Namespace {
diff --git a/csharp/ql/lib/semmle/code/csharp/frameworks/system/security/cryptography/X509Certificates.qll b/csharp/ql/lib/semmle/code/csharp/frameworks/system/security/cryptography/X509Certificates.qll
index 0bd6461a6cd..54cc8d11864 100644
--- a/csharp/ql/lib/semmle/code/csharp/frameworks/system/security/cryptography/X509Certificates.qll
+++ b/csharp/ql/lib/semmle/code/csharp/frameworks/system/security/cryptography/X509Certificates.qll
@@ -2,7 +2,6 @@
 
 import csharp
 private import semmle.code.csharp.frameworks.system.security.Cryptography
-private import semmle.code.csharp.dataflow.ExternalFlow
 
 /** The `System.Security.Cryptography.X509Certificates` namespace. */
 class SystemSecurityCryptographyX509CertificatesNamespace extends Namespace {
diff --git a/csharp/ql/lib/semmle/code/csharp/frameworks/system/text/RegularExpressions.qll b/csharp/ql/lib/semmle/code/csharp/frameworks/system/text/RegularExpressions.qll
index 6319ef6e894..531fa6ef721 100644
--- a/csharp/ql/lib/semmle/code/csharp/frameworks/system/text/RegularExpressions.qll
+++ b/csharp/ql/lib/semmle/code/csharp/frameworks/system/text/RegularExpressions.qll
@@ -4,7 +4,6 @@
 
 import default
 import semmle.code.csharp.frameworks.system.Text
-private import semmle.code.csharp.dataflow.ExternalFlow
 
 /** The `System.Text.RegularExpressions` namespace. */
 class SystemTextRegularExpressionsNamespace extends Namespace {
diff --git a/csharp/ql/lib/semmle/code/csharp/frameworks/system/threading/Tasks.qll b/csharp/ql/lib/semmle/code/csharp/frameworks/system/threading/Tasks.qll
index 7c0f1d2a885..acfc4edddd7 100644
--- a/csharp/ql/lib/semmle/code/csharp/frameworks/system/threading/Tasks.qll
+++ b/csharp/ql/lib/semmle/code/csharp/frameworks/system/threading/Tasks.qll
@@ -3,7 +3,6 @@
 import csharp
 private import semmle.code.csharp.frameworks.system.Threading
 private import semmle.code.csharp.dataflow.internal.DataFlowPrivate
-private import semmle.code.csharp.dataflow.ExternalFlow
 
 /** The `System.Threading.Tasks` namespace. */
 class SystemThreadingTasksNamespace extends Namespace {
diff --git a/csharp/ql/lib/semmle/code/csharp/frameworks/system/web/ui/WebControls.qll b/csharp/ql/lib/semmle/code/csharp/frameworks/system/web/ui/WebControls.qll
index 09d5e08d371..a059d5b3c7c 100644
--- a/csharp/ql/lib/semmle/code/csharp/frameworks/system/web/ui/WebControls.qll
+++ b/csharp/ql/lib/semmle/code/csharp/frameworks/system/web/ui/WebControls.qll
@@ -2,7 +2,6 @@
 
 import csharp
 private import semmle.code.csharp.frameworks.system.web.UI
-private import semmle.code.csharp.dataflow.ExternalFlow
 
 /** The `System.Web.UI.WebControls` namespace. */
 class SystemWebUIWebControlsNamespace extends Namespace {
diff --git a/csharp/ql/src/utils/model-generator/CaptureTypeBasedSummaryModels.ql b/csharp/ql/src/utils/model-generator/CaptureTypeBasedSummaryModels.ql
index 7cd23988321..f15a786f53f 100644
--- a/csharp/ql/src/utils/model-generator/CaptureTypeBasedSummaryModels.ql
+++ b/csharp/ql/src/utils/model-generator/CaptureTypeBasedSummaryModels.ql
@@ -6,7 +6,6 @@
  * @tags model-generator
  */
 
-import semmle.code.csharp.dataflow.ExternalFlow
 import utils.modelgenerator.internal.CaptureTypeBasedSummaryModels
 
 from TypeBasedFlowTargetApi api, string flow

From 33216f3867c74f0d7f444dfd7b30b60ed2ffb658 Mon Sep 17 00:00:00 2001
From: erik-krogh <erik-krogh@github.com>
Date: Wed, 23 Nov 2022 15:22:19 +0100
Subject: [PATCH 0581/1420] cleanup imports

---
 ruby/ql/lib/codeql/ruby/frameworks/stdlib/Open3.qll | 6 +-----
 1 file changed, 1 insertion(+), 5 deletions(-)

diff --git a/ruby/ql/lib/codeql/ruby/frameworks/stdlib/Open3.qll b/ruby/ql/lib/codeql/ruby/frameworks/stdlib/Open3.qll
index fb081d5113e..e65f3005503 100644
--- a/ruby/ql/lib/codeql/ruby/frameworks/stdlib/Open3.qll
+++ b/ruby/ql/lib/codeql/ruby/frameworks/stdlib/Open3.qll
@@ -3,12 +3,8 @@
  */
 
 private import ruby
-private import codeql.ruby.AST
-private import codeql.ruby.DataFlow
 private import codeql.ruby.ApiGraphs
-private import codeql.ruby.frameworks.Stdlib
 private import codeql.ruby.Concepts
-private import codeql.ruby.frameworks.core.Kernel
 
 /**
  * Provides modeling for the `Open3` library.
@@ -58,7 +54,7 @@ module Open3 {
 
     override predicate isShellInterpreted(DataFlow::Node arg) {
       // A command in the pipeline is executed in a subshell if it is given as a single string argument.
-      arg.asExpr().getExpr() instanceof StringlikeLiteral and
+      arg.asExpr().getExpr() instanceof Ast::StringlikeLiteral and
       arg = this.getAnArgument()
     }
   }

From ef837f72e47b0a13a643c19a76a9498c369df843 Mon Sep 17 00:00:00 2001
From: Geoffrey White <40627776+geoffw0@users.noreply.github.com>
Date: Wed, 23 Nov 2022 14:57:08 +0000
Subject: [PATCH 0582/1420] Swift: Test .expected changes resulting from merge.

---
 .../Security/CWE-094/UnsafeJsEval.expected            | 11 +++++++++++
 1 file changed, 11 insertions(+)

diff --git a/swift/ql/test/query-tests/Security/CWE-094/UnsafeJsEval.expected b/swift/ql/test/query-tests/Security/CWE-094/UnsafeJsEval.expected
index 4e04cad1468..6f146b41df8 100644
--- a/swift/ql/test/query-tests/Security/CWE-094/UnsafeJsEval.expected
+++ b/swift/ql/test/query-tests/Security/CWE-094/UnsafeJsEval.expected
@@ -1,9 +1,11 @@
 edges
 | UnsafeJsEval.swift:124:21:124:42 | string :  | UnsafeJsEval.swift:124:70:124:70 | string :  |
+| UnsafeJsEval.swift:144:5:144:29 | [summary param] 0 in init(_:) :  | file://:0:0:0:0 | [summary] to write: return (return) in init(_:) :  |
 | UnsafeJsEval.swift:165:10:165:37 | try ... :  | UnsafeJsEval.swift:201:21:201:35 | call to getRemoteData() :  |
 | UnsafeJsEval.swift:165:14:165:37 | call to init(contentsOf:) :  | UnsafeJsEval.swift:165:10:165:37 | try ... :  |
 | UnsafeJsEval.swift:201:21:201:35 | call to getRemoteData() :  | UnsafeJsEval.swift:205:7:205:7 | remoteString :  |
 | UnsafeJsEval.swift:201:21:201:35 | call to getRemoteData() :  | UnsafeJsEval.swift:208:7:208:39 | ... .+(_:_:) ... :  |
+| UnsafeJsEval.swift:201:21:201:35 | call to getRemoteData() :  | UnsafeJsEval.swift:211:24:211:37 | .utf8 :  |
 | UnsafeJsEval.swift:201:21:201:35 | call to getRemoteData() :  | UnsafeJsEval.swift:214:7:214:49 | call to init(decoding:as:) :  |
 | UnsafeJsEval.swift:204:7:204:66 | try! ... :  | UnsafeJsEval.swift:265:13:265:13 | string :  |
 | UnsafeJsEval.swift:204:7:204:66 | try! ... :  | UnsafeJsEval.swift:268:13:268:13 | string :  |
@@ -24,6 +26,10 @@ edges
 | UnsafeJsEval.swift:208:7:208:39 | ... .+(_:_:) ... :  | UnsafeJsEval.swift:279:13:279:13 | string :  |
 | UnsafeJsEval.swift:208:7:208:39 | ... .+(_:_:) ... :  | UnsafeJsEval.swift:285:13:285:13 | string :  |
 | UnsafeJsEval.swift:208:7:208:39 | ... .+(_:_:) ... :  | UnsafeJsEval.swift:299:13:299:13 | string :  |
+| UnsafeJsEval.swift:211:19:211:41 | call to init(_:) :  | UnsafeJsEval.swift:214:7:214:49 | call to init(decoding:as:) :  |
+| UnsafeJsEval.swift:211:24:211:37 | .utf8 :  | UnsafeJsEval.swift:144:5:144:29 | [summary param] 0 in init(_:) :  |
+| UnsafeJsEval.swift:211:24:211:37 | .utf8 :  | UnsafeJsEval.swift:211:19:211:41 | call to init(_:) :  |
+| UnsafeJsEval.swift:211:24:211:37 | .utf8 :  | UnsafeJsEval.swift:214:7:214:49 | call to init(decoding:as:) :  |
 | UnsafeJsEval.swift:214:7:214:49 | call to init(decoding:as:) :  | UnsafeJsEval.swift:265:13:265:13 | string :  |
 | UnsafeJsEval.swift:214:7:214:49 | call to init(decoding:as:) :  | UnsafeJsEval.swift:268:13:268:13 | string :  |
 | UnsafeJsEval.swift:214:7:214:49 | call to init(decoding:as:) :  | UnsafeJsEval.swift:276:13:276:13 | string :  |
@@ -53,6 +59,7 @@ edges
 nodes
 | UnsafeJsEval.swift:124:21:124:42 | string :  | semmle.label | string :  |
 | UnsafeJsEval.swift:124:70:124:70 | string :  | semmle.label | string :  |
+| UnsafeJsEval.swift:144:5:144:29 | [summary param] 0 in init(_:) :  | semmle.label | [summary param] 0 in init(_:) :  |
 | UnsafeJsEval.swift:165:10:165:37 | try ... :  | semmle.label | try ... :  |
 | UnsafeJsEval.swift:165:14:165:37 | call to init(contentsOf:) :  | semmle.label | call to init(contentsOf:) :  |
 | UnsafeJsEval.swift:201:21:201:35 | call to getRemoteData() :  | semmle.label | call to getRemoteData() :  |
@@ -60,6 +67,8 @@ nodes
 | UnsafeJsEval.swift:204:12:204:66 | call to init(contentsOf:) :  | semmle.label | call to init(contentsOf:) :  |
 | UnsafeJsEval.swift:205:7:205:7 | remoteString :  | semmle.label | remoteString :  |
 | UnsafeJsEval.swift:208:7:208:39 | ... .+(_:_:) ... :  | semmle.label | ... .+(_:_:) ... :  |
+| UnsafeJsEval.swift:211:19:211:41 | call to init(_:) :  | semmle.label | call to init(_:) :  |
+| UnsafeJsEval.swift:211:24:211:37 | .utf8 :  | semmle.label | .utf8 :  |
 | UnsafeJsEval.swift:214:7:214:49 | call to init(decoding:as:) :  | semmle.label | call to init(decoding:as:) :  |
 | UnsafeJsEval.swift:265:13:265:13 | string :  | semmle.label | string :  |
 | UnsafeJsEval.swift:266:22:266:107 | call to init(source:injectionTime:forMainFrameOnly:) | semmle.label | call to init(source:injectionTime:forMainFrameOnly:) |
@@ -81,7 +90,9 @@ nodes
 | UnsafeJsEval.swift:301:16:301:85 | call to JSStringRetain(_:) :  | semmle.label | call to JSStringRetain(_:) :  |
 | UnsafeJsEval.swift:301:31:301:84 | call to JSStringCreateWithUTF8CString(_:) :  | semmle.label | call to JSStringCreateWithUTF8CString(_:) :  |
 | UnsafeJsEval.swift:305:17:305:17 | jsstr | semmle.label | jsstr |
+| file://:0:0:0:0 | [summary] to write: return (return) in init(_:) :  | semmle.label | [summary] to write: return (return) in init(_:) :  |
 subpaths
+| UnsafeJsEval.swift:211:24:211:37 | .utf8 :  | UnsafeJsEval.swift:144:5:144:29 | [summary param] 0 in init(_:) :  | file://:0:0:0:0 | [summary] to write: return (return) in init(_:) :  | UnsafeJsEval.swift:211:19:211:41 | call to init(_:) :  |
 | UnsafeJsEval.swift:287:31:287:97 | call to JSStringCreateWithCharacters(_:_:) :  | UnsafeJsEval.swift:124:21:124:42 | string :  | UnsafeJsEval.swift:124:70:124:70 | string :  | UnsafeJsEval.swift:287:16:287:98 | call to JSStringRetain(_:) :  |
 | UnsafeJsEval.swift:301:31:301:84 | call to JSStringCreateWithUTF8CString(_:) :  | UnsafeJsEval.swift:124:21:124:42 | string :  | UnsafeJsEval.swift:124:70:124:70 | string :  | UnsafeJsEval.swift:301:16:301:85 | call to JSStringRetain(_:) :  |
 #select

From 3c3442d8f0327673024fd3c5c4449d23637f0310 Mon Sep 17 00:00:00 2001
From: Ben Ahmady <32935794+subatoi@users.noreply.github.com>
Date: Wed, 23 Nov 2022 15:09:58 +0000
Subject: [PATCH 0583/1420] Update
 docs/codeql/reusables/kotlin-java-differences.rst

Co-authored-by: Felicity Chapman <felicitymay@github.com>
---
 docs/codeql/reusables/kotlin-java-differences.rst | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/docs/codeql/reusables/kotlin-java-differences.rst b/docs/codeql/reusables/kotlin-java-differences.rst
index 3ab5b73e044..2523a7e8bda 100644
--- a/docs/codeql/reusables/kotlin-java-differences.rst
+++ b/docs/codeql/reusables/kotlin-java-differences.rst
@@ -1,7 +1,7 @@
 Writing CodeQL queries for Kotlin versus Java analysis
 ------------------------------------------------------
 
-Generally you use the same classes to write queries for Kotlin and for Java. You use the same libraries such as DataFlow, TaintTracking, or SSA, and the same classes such as `MethodAccess` or `Class` for both languages. When you want to access Kotlin-specific elements (such as a ``WhenExpr``) you’ll need to use Kotlin-specific CodeQL classes.
+Generally you use the same classes to write queries for Kotlin and for Java. You use the same libraries such as DataFlow, TaintTracking, or SSA, and the same classes such as ``MethodAccess`` or ``Class`` for both languages. When you want to access Kotlin-specific elements (such as a ``WhenExpr``) you’ll need to use Kotlin-specific CodeQL classes.
 
 There are however some important cases where writing queries for Kotlin can produce surprising results compared to writing queries for Java, as CodeQL works with the JVM bytecode representation of the Kotlin source code. 
 

From 72999c7af123a3df7c2aacba01b2ab566626e302 Mon Sep 17 00:00:00 2001
From: Ben Ahmady <32935794+subatoi@users.noreply.github.com>
Date: Wed, 23 Nov 2022 15:10:14 +0000
Subject: [PATCH 0584/1420] Update
 docs/codeql/reusables/kotlin-java-differences.rst

Co-authored-by: Felicity Chapman <felicitymay@github.com>
---
 docs/codeql/reusables/kotlin-java-differences.rst | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/docs/codeql/reusables/kotlin-java-differences.rst b/docs/codeql/reusables/kotlin-java-differences.rst
index 2523a7e8bda..16fdc129d75 100644
--- a/docs/codeql/reusables/kotlin-java-differences.rst
+++ b/docs/codeql/reusables/kotlin-java-differences.rst
@@ -11,7 +11,7 @@ Be careful when you model code elements that don’t exist in Java, such as ``No
    
    someVar!!.someMethodCall()
 
-In that specific case, you can use the predicate `Expr.getUnderlyingExpr()`. This goes directly to the underlying `VarAccess`` to produce a more similar behavior to that in Java.
+In that specific case, you can use the predicate ``Expr.getUnderlyingExpr()``. This goes directly to the underlying ``VarAccess`` to produce a more similar behavior to that in Java.
 
 Nullable elements (`?`) can also produce unexpected behavior. To avoid a `NullPointerException`, Kotlin may inline calls like `expr.toString()` to `String.valueOf(expr)` when `expr` is nullable. Make sure that you write CodeQL around the extracted code, and do not directly modify the source code in the codebase.
 

From f9215ec5ca4765d64df13ff56892825f0aff4db3 Mon Sep 17 00:00:00 2001
From: Ben Ahmady <32935794+subatoi@users.noreply.github.com>
Date: Wed, 23 Nov 2022 15:10:24 +0000
Subject: [PATCH 0585/1420] Update
 docs/codeql/reusables/kotlin-java-differences.rst

Co-authored-by: Felicity Chapman <felicitymay@github.com>
---
 docs/codeql/reusables/kotlin-java-differences.rst | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/docs/codeql/reusables/kotlin-java-differences.rst b/docs/codeql/reusables/kotlin-java-differences.rst
index 16fdc129d75..b2b74d2d41a 100644
--- a/docs/codeql/reusables/kotlin-java-differences.rst
+++ b/docs/codeql/reusables/kotlin-java-differences.rst
@@ -13,8 +13,8 @@ Be careful when you model code elements that don’t exist in Java, such as ``No
 
 In that specific case, you can use the predicate ``Expr.getUnderlyingExpr()``. This goes directly to the underlying ``VarAccess`` to produce a more similar behavior to that in Java.
 
-Nullable elements (`?`) can also produce unexpected behavior. To avoid a `NullPointerException`, Kotlin may inline calls like `expr.toString()` to `String.valueOf(expr)` when `expr` is nullable. Make sure that you write CodeQL around the extracted code, and do not directly modify the source code in the codebase.
+Nullable elements (``?``) can also produce unexpected behavior. To avoid a ``NullPointerException``, Kotlin may inline calls like ``expr.toString()`` to ``String.valueOf(expr)`` when ``expr`` is nullable. Make sure that you write CodeQL around the extracted code, and do not directly modify the source code in the codebase.
 
-Another example is that if-else expressions are translated into `WhenExprs` in CodeQL, instead of the more typical `IfStmt` in Java.
+Another example is that if-else expressions in Kotlin are translated into ``WhenExprs`` in CodeQL, instead of the more typical ``IfStmt`` seen in Java.
 
 In general, you can debug these issues with the AST (you can use the ``CodeQL: View AST`` command from Visual Studio Code’s CodeQL extension, or run the ``PrintAst.ql`` query) and see exactly what CodeQL is extracting from your code.
\ No newline at end of file

From ee0811df268254af508a1d152090f0dcfc3fd2ae Mon Sep 17 00:00:00 2001
From: Ben Ahmady <32935794+subatoi@users.noreply.github.com>
Date: Wed, 23 Nov 2022 15:13:40 +0000
Subject: [PATCH 0586/1420] Update
 docs/codeql/codeql-language-guides/codeql-for-java.rst

---
 docs/codeql/codeql-language-guides/codeql-for-java.rst | 1 -
 1 file changed, 1 deletion(-)

diff --git a/docs/codeql/codeql-language-guides/codeql-for-java.rst b/docs/codeql/codeql-language-guides/codeql-for-java.rst
index 536dfbc294e..a27328b052c 100644
--- a/docs/codeql/codeql-language-guides/codeql-for-java.rst
+++ b/docs/codeql/codeql-language-guides/codeql-for-java.rst
@@ -7,7 +7,6 @@ Experiment and learn how to write effective and efficient queries for CodeQL dat
 
 .. include:: ../reusables/kotlin-beta-note.rst
 
-.. include:: ../reusables/kotlin-java-differences.rst
 
 .. pull-quote:: Enabling Kotlin support
 

From 9ee36215bd95510d8c50064746788f164ed916e5 Mon Sep 17 00:00:00 2001
From: Ian Lynagh <igfoo@github.com>
Date: Wed, 23 Nov 2022 15:14:46 +0000
Subject: [PATCH 0587/1420] Java: Fix basic query in docs

---
 .../basic-query-for-java-code.rst                      | 10 +++++-----
 1 file changed, 5 insertions(+), 5 deletions(-)

diff --git a/docs/codeql/codeql-language-guides/basic-query-for-java-code.rst b/docs/codeql/codeql-language-guides/basic-query-for-java-code.rst
index bc721ce9371..0545efa738c 100644
--- a/docs/codeql/codeql-language-guides/basic-query-for-java-code.rst
+++ b/docs/codeql/codeql-language-guides/basic-query-for-java-code.rst
@@ -37,7 +37,7 @@ Running the query
 
       import java
 
-      from IfStmt ifstmt, Block block
+      from IfStmt ifstmt, BlockStmt block
       where ifstmt.getThen() = block and
         block.getNumStmt() = 0
       select ifstmt, "This 'if' statement is redundant." 
@@ -59,7 +59,7 @@ Running the query
 
    The query will take a few moments to return results. When the query completes, the results are displayed below the project name. The query results are listed in two columns, corresponding to the two expressions in the ``select`` clause of the query. The first column corresponds to the expression ``ifstmt`` and is linked to the location in the source code of the project where ``ifstmt`` occurs. The second column is the alert message.
 
-   ➤ `Example query results <https://lgtm.com/query/3235645104630320782/>`__
+   ➤ `Example query results <https://lgtm.com/query/8628882704378129297/>`__
 
    .. pull-quote::
 
@@ -81,10 +81,10 @@ After the initial ``import`` statement, this simple query comprises three parts
 +===============================================================+===================================================================================================================+========================================================================================================================+
 | ``import java``                                               | Imports the standard CodeQL libraries for Java.                                                                   | Every query begins with one or more ``import`` statements.                                                             |
 +---------------------------------------------------------------+-------------------------------------------------------------------------------------------------------------------+------------------------------------------------------------------------------------------------------------------------+
-| ``from IfStmt ifstmt, Block block``                           | Defines the variables for the query.                                                                              | We use:                                                                                                                |
+| ``from IfStmt ifstmt, BlockStmt block``                       | Defines the variables for the query.                                                                              | We use:                                                                                                                |
 |                                                               | Declarations are of the form:                                                                                     |                                                                                                                        |
 |                                                               | ``<type> <variable name>``                                                                                        | - an ``IfStmt`` variable for ``if`` statements                                                                         |
-|                                                               |                                                                                                                   | - a ``Block`` variable for the then block                                                                              |
+|                                                               |                                                                                                                   | - a ``BlockStmt`` variable for the ``then`` block                                                                      |
 +---------------------------------------------------------------+-------------------------------------------------------------------------------------------------------------------+------------------------------------------------------------------------------------------------------------------------+
 | ``where ifstmt.getThen() = block and block.getNumStmt() = 0`` | Defines a condition on the variables.                                                                             | ``ifstmt.getThen() = block`` relates the two variables. The block must be the ``then`` branch of the ``if`` statement. |
 |                                                               |                                                                                                                   |                                                                                                                        |
@@ -138,7 +138,7 @@ To exclude ``if`` statements that have an ``else`` branch:
 
    There are now fewer results because ``if`` statements with an ``else`` branch are no longer included.
 
-➤ `See this in the query console <https://lgtm.com/query/6382189874776576029/>`__
+➤ `See this in the query console <https://lgtm.com/query/2005778170075484819/>`__
 
 Further reading
 ---------------

From 950c4c811c4fac720d4716d4610a9506bd540f0d Mon Sep 17 00:00:00 2001
From: Ian Lynagh <igfoo@github.com>
Date: Wed, 23 Nov 2022 15:15:28 +0000
Subject: [PATCH 0588/1420] Java/Kotlin: Make the basic query in docs work for
 both languages

---
 .../basic-query-for-java-code.rst             | 110 ++++++++++--------
 1 file changed, 62 insertions(+), 48 deletions(-)

diff --git a/docs/codeql/codeql-language-guides/basic-query-for-java-code.rst b/docs/codeql/codeql-language-guides/basic-query-for-java-code.rst
index 0545efa738c..23d655b791b 100644
--- a/docs/codeql/codeql-language-guides/basic-query-for-java-code.rst
+++ b/docs/codeql/codeql-language-guides/basic-query-for-java-code.rst
@@ -1,18 +1,33 @@
 .. _basic-query-for-java-code:
 
-Basic query for Java code
-=========================
+Basic query for Java and Kotlin code
+====================================
 
 Learn to write and run a simple CodeQL query using LGTM.
 
 About the query
 ---------------
 
-The query we're going to run performs a basic search of the code for ``if`` statements that are redundant, in the sense that they have an empty then branch. For example, code such as:
+The query we're going to run searches for inefficient tests for empty strings. For example, Java code such as:
 
 .. code-block:: java
 
-   if (error) { }
+    public class TestJava {
+        void myJavaFun(String s) {
+            boolean b = s.equals("");
+        }
+    }
+
+or Kotlin code such as:
+
+.. code-block:: kotlin
+
+    void myKotlinFun(s: String) {
+        var b = s.equals("")
+    }
+
+In either case, replacing ``s.equals("")`` with ``s.isEmpty()``
+would be more efficient.
 
 Running the query
 -----------------
@@ -37,10 +52,13 @@ Running the query
 
       import java
 
-      from IfStmt ifstmt, BlockStmt block
-      where ifstmt.getThen() = block and
-        block.getNumStmt() = 0
-      select ifstmt, "This 'if' statement is redundant." 
+      from MethodAccess ma
+      where
+        ma.getMethod().hasName("equals") and
+        ma.getArgument(0).(StringLiteral).getValue() = ""
+      select ma, "This comparison to empty string is inefficient, use isEmpty() instead."
+
+   Note that CodeQL treats Java and Kotlin as part of the same language, so even though this query starts with ``import java``, it will work for both Java and Kotlin code.
 
    LGTM checks whether your query compiles and, if all is well, the **Run** button changes to green to indicate that you can go ahead and run the query.
 
@@ -57,9 +75,9 @@ Running the query
 
       Your query is always run against the most recently analyzed commit to the selected project.
 
-   The query will take a few moments to return results. When the query completes, the results are displayed below the project name. The query results are listed in two columns, corresponding to the two expressions in the ``select`` clause of the query. The first column corresponds to the expression ``ifstmt`` and is linked to the location in the source code of the project where ``ifstmt`` occurs. The second column is the alert message.
+   The query will take a few moments to return results. When the query completes, the results are displayed below the project name. The query results are listed in two columns, corresponding to the two expressions in the ``select`` clause of the query. The first column corresponds to the expression ``ma`` and is linked to the location in the source code of the project where ``ma`` occurs. The second column is the alert message.
 
-   ➤ `Example query results <https://lgtm.com/query/8628882704378129297/>`__
+   ➤ `Example query results <https://lgtm.com/query/6863787472564633674/>`__
 
    .. pull-quote::
 
@@ -67,34 +85,33 @@ Running the query
 
       An ellipsis (…) at the bottom of the table indicates that the entire list is not displayed—click it to show more results.
 
-#. If any matching code is found, click a link in the ``ifstmt`` column to view the ``if`` statement in the code viewer.
+#. If any matching code is found, click a link in the ``ma`` column to view the ``.equals`` expression in the code viewer.
 
-   The matching ``if`` statement is highlighted with a yellow background in the code viewer. If any code in the file also matches a query from the standard query library for that language, you will see a red alert message at the appropriate point within the code.
+   The matching ``.equals`` expression is highlighted with a yellow background in the code viewer. If any code in the file also matches a query from the standard query library for that language, you will see a red alert message at the appropriate point within the code.
 
 About the query structure
 ~~~~~~~~~~~~~~~~~~~~~~~~~
 
 After the initial ``import`` statement, this simple query comprises three parts that serve similar purposes to the FROM, WHERE, and SELECT parts of an SQL query.
 
-+---------------------------------------------------------------+-------------------------------------------------------------------------------------------------------------------+------------------------------------------------------------------------------------------------------------------------+
-| Query part                                                    | Purpose                                                                                                           | Details                                                                                                                |
-+===============================================================+===================================================================================================================+========================================================================================================================+
-| ``import java``                                               | Imports the standard CodeQL libraries for Java.                                                                   | Every query begins with one or more ``import`` statements.                                                             |
-+---------------------------------------------------------------+-------------------------------------------------------------------------------------------------------------------+------------------------------------------------------------------------------------------------------------------------+
-| ``from IfStmt ifstmt, BlockStmt block``                       | Defines the variables for the query.                                                                              | We use:                                                                                                                |
-|                                                               | Declarations are of the form:                                                                                     |                                                                                                                        |
-|                                                               | ``<type> <variable name>``                                                                                        | - an ``IfStmt`` variable for ``if`` statements                                                                         |
-|                                                               |                                                                                                                   | - a ``BlockStmt`` variable for the ``then`` block                                                                      |
-+---------------------------------------------------------------+-------------------------------------------------------------------------------------------------------------------+------------------------------------------------------------------------------------------------------------------------+
-| ``where ifstmt.getThen() = block and block.getNumStmt() = 0`` | Defines a condition on the variables.                                                                             | ``ifstmt.getThen() = block`` relates the two variables. The block must be the ``then`` branch of the ``if`` statement. |
-|                                                               |                                                                                                                   |                                                                                                                        |
-|                                                               |                                                                                                                   | ``block.getNumStmt() = 0`` states that the block must be empty (that is, it contains no statements).                   |
-+---------------------------------------------------------------+-------------------------------------------------------------------------------------------------------------------+------------------------------------------------------------------------------------------------------------------------+
-| ``select ifstmt, "This 'if' statement is redundant."``        | Defines what to report for each match.                                                                            | Reports the resulting ``if`` statement with a string that explains the problem.                                        |
-|                                                               |                                                                                                                   |                                                                                                                        |
-|                                                               | ``select`` statements for queries that are used to find instances of poor coding practice are always in the form: |                                                                                                                        |
-|                                                               | ``select <program element>, "<alert message>"``                                                                   |                                                                                                                        |
-+---------------------------------------------------------------+-------------------------------------------------------------------------------------------------------------------+------------------------------------------------------------------------------------------------------------------------+
++--------------------------------------------------------------------------------------------------+-------------------------------------------------------------------------------------------------------------------+---------------------------------------------------------------------------------------------------+
+| Query part                                                                                       | Purpose                                                                                                           | Details                                                                                           |
++==================================================================================================+===================================================================================================================+===================================================================================================+
+| ``import java``                                                                                  | Imports the standard CodeQL libraries for Java.                                                                   | Every query begins with one or more ``import`` statements.                                        |
++--------------------------------------------------------------------------------------------------+-------------------------------------------------------------------------------------------------------------------+---------------------------------------------------------------------------------------------------+
+| ``from MethodAccess ma``                                                                         | Defines the variables for the query.                                                                              | We use:                                                                                           |
+|                                                                                                  | Declarations are of the form:                                                                                     |                                                                                                   |
+|                                                                                                  | ``<type> <variable name>``                                                                                        | - a ``MethodAccess`` variable for call expressions                                                |
++--------------------------------------------------------------------------------------------------+-------------------------------------------------------------------------------------------------------------------+---------------------------------------------------------------------------------------------------+
+| ``where ma.getMethod().hasName("equals") and ma.getArgument(0).(StringLiteral).getValue() = ""`` | Defines a condition on the variables.                                                                             | ``ma.getMethod().hasName("equals")`` restricts ``ma`` to only calls to methods call ``equals``.   |
+|                                                                                                  |                                                                                                                   |                                                                                                   |
+|                                                                                                  |                                                                                                                   | ``ma.getArgument(0).(StringLiteral).getValue() = ""`` says the argument must be literal ``""``.   |
++--------------------------------------------------------------------------------------------------+-------------------------------------------------------------------------------------------------------------------+---------------------------------------------------------------------------------------------------+
+| ``select ma, "This comparison to empty string is inefficient, use isEmpty() instead."``          | Defines what to report for each match.                                                                            | Reports the resulting ``.equals`` expression with a string that explains the problem.             |
+|                                                                                                  |                                                                                                                   |                                                                                                   |
+|                                                                                                  | ``select`` statements for queries that are used to find instances of poor coding practice are always in the form: |                                                                                                   |
+|                                                                                                  | ``select <program element>, "<alert message>"``                                                                   |                                                                                                   |
++--------------------------------------------------------------------------------------------------+-------------------------------------------------------------------------------------------------------------------+---------------------------------------------------------------------------------------------------+
 
 Extend the query
 ----------------
@@ -104,41 +121,38 @@ Query writing is an inherently iterative process. You write a simple query and t
 Remove false positive results
 ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 
-Browsing the results of our basic query shows that it could be improved. Among the results you are likely to find examples of ``if`` statements with an ``else`` branch, where an empty ``then`` branch does serve a purpose. For example:
+Browsing the results of our basic query shows that it could be improved. For example, you may find results for code like:
 
 .. code-block:: java
 
-   if (...) {
-     ...
-   } else if ("-verbose".equals(option)) {
-     // nothing to do - handled earlier
-   } else {
-     error("unrecognized option");
-   }
+    public class TestJava {
+        void myJavaFun(Object o) {
+            boolean b = o.equals("");
+        }
+    }
 
-In this case, identifying the ``if`` statement with the empty ``then`` branch as redundant is a false positive. One solution to this is to modify the query to ignore empty ``then`` branches if the ``if`` statement has an ``else`` branch.
-
-To exclude ``if`` statements that have an ``else`` branch:
+In this case, it is not possible to simply use ``o.isEmpty()`` instead, as ``o`` has type ``Object`` rather than ``String``. One solution to this is to modify the query to only return results where the expression being tested has type ``String``:
 
 #. Extend the where clause to include the following extra condition:
 
    .. code-block:: ql
 
-      and not exists(ifstmt.getElse())
+    ma.getQualifier().getType() instanceof TypeString
 
    The ``where`` clause is now:
 
    .. code-block:: ql
 
-      where ifstmt.getThen() = block and
-        block.getNumStmt() = 0 and
-        not exists(ifstmt.getElse())
+      where
+        ma.getQualifier().getType() instanceof TypeString and
+        ma.getMethod().hasName("equals") and
+        ma.getArgument(0).(StringLiteral).getValue() = ""
 
 #. Click **Run**.
 
-   There are now fewer results because ``if`` statements with an ``else`` branch are no longer included.
+   There are now fewer results because ``.equals`` expressions with different types are no longer included.
 
-➤ `See this in the query console <https://lgtm.com/query/2005778170075484819/>`__
+➤ `See this in the query console <https://lgtm.com/query/3716567543394265485/>`__
 
 Further reading
 ---------------

From 582cfb93304783fa472e69cd56cf420ec1e50bc3 Mon Sep 17 00:00:00 2001
From: Michael Nebel <michaelnebel@github.com>
Date: Wed, 23 Nov 2022 16:20:36 +0100
Subject: [PATCH 0589/1420] C#: Remove the frameworks module in ExternalFlow as
 MaD models are no longer inlined in the code.

---
 .../code/csharp/dataflow/ExternalFlow.qll     | 37 -------------------
 1 file changed, 37 deletions(-)

diff --git a/csharp/ql/lib/semmle/code/csharp/dataflow/ExternalFlow.qll b/csharp/ql/lib/semmle/code/csharp/dataflow/ExternalFlow.qll
index 874bd51a9f3..f72fa288919 100644
--- a/csharp/ql/lib/semmle/code/csharp/dataflow/ExternalFlow.qll
+++ b/csharp/ql/lib/semmle/code/csharp/dataflow/ExternalFlow.qll
@@ -90,43 +90,6 @@ private import internal.FlowSummaryImpl::Public
 private import internal.FlowSummaryImpl::Private::External
 private import internal.FlowSummaryImplSpecific
 
-/**
- * A module importing the frameworks that provide external flow data,
- * ensuring that they are visible to the taint tracking / data flow library.
- */
-private module Frameworks {
-  private import semmle.code.csharp.frameworks.EntityFramework
-  private import semmle.code.csharp.frameworks.JsonNET
-  private import semmle.code.csharp.frameworks.ServiceStack
-  private import semmle.code.csharp.frameworks.Sql
-  private import semmle.code.csharp.frameworks.System
-  private import semmle.code.csharp.frameworks.system.CodeDom
-  private import semmle.code.csharp.frameworks.system.Collections
-  private import semmle.code.csharp.frameworks.system.collections.Generic
-  private import semmle.code.csharp.frameworks.system.collections.Specialized
-  private import semmle.code.csharp.frameworks.system.Data
-  private import semmle.code.csharp.frameworks.system.data.Common
-  private import semmle.code.csharp.frameworks.system.Diagnostics
-  private import semmle.code.csharp.frameworks.system.Linq
-  private import semmle.code.csharp.frameworks.system.Net
-  private import semmle.code.csharp.frameworks.system.net.Mail
-  private import semmle.code.csharp.frameworks.system.IO
-  private import semmle.code.csharp.frameworks.system.io.Compression
-  private import semmle.code.csharp.frameworks.system.runtime.CompilerServices
-  private import semmle.code.csharp.frameworks.system.Security
-  private import semmle.code.csharp.frameworks.system.security.Cryptography
-  private import semmle.code.csharp.frameworks.system.security.cryptography.X509Certificates
-  private import semmle.code.csharp.frameworks.system.Text
-  private import semmle.code.csharp.frameworks.system.text.RegularExpressions
-  private import semmle.code.csharp.frameworks.system.threading.Tasks
-  private import semmle.code.csharp.frameworks.system.Web
-  private import semmle.code.csharp.frameworks.system.web.ui.WebControls
-  private import semmle.code.csharp.frameworks.system.Xml
-  private import semmle.code.csharp.security.dataflow.flowsinks.Html
-  private import semmle.code.csharp.security.dataflow.flowsources.Local
-  private import semmle.code.csharp.security.dataflow.XSSSinks
-}
-
 /**
  * DEPRECATED: Define source models as data extensions instead.
  *

From 277b5b483d7fcea8bbfd0b49300745a265c872a8 Mon Sep 17 00:00:00 2001
From: Ian Lynagh <igfoo@github.com>
Date: Wed, 23 Nov 2022 15:51:40 +0000
Subject: [PATCH 0590/1420] Java/Kotlin docs: Tweak text

---
 .../codeql/codeql-language-guides/basic-query-for-java-code.rst | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/docs/codeql/codeql-language-guides/basic-query-for-java-code.rst b/docs/codeql/codeql-language-guides/basic-query-for-java-code.rst
index 23d655b791b..90954ad0e2c 100644
--- a/docs/codeql/codeql-language-guides/basic-query-for-java-code.rst
+++ b/docs/codeql/codeql-language-guides/basic-query-for-java-code.rst
@@ -97,7 +97,7 @@ After the initial ``import`` statement, this simple query comprises three parts
 +--------------------------------------------------------------------------------------------------+-------------------------------------------------------------------------------------------------------------------+---------------------------------------------------------------------------------------------------+
 | Query part                                                                                       | Purpose                                                                                                           | Details                                                                                           |
 +==================================================================================================+===================================================================================================================+===================================================================================================+
-| ``import java``                                                                                  | Imports the standard CodeQL libraries for Java.                                                                   | Every query begins with one or more ``import`` statements.                                        |
+| ``import java``                                                                                  | Imports the standard CodeQL libraries for Java and Kotlin.                                                        | Every query begins with one or more ``import`` statements.                                        |
 +--------------------------------------------------------------------------------------------------+-------------------------------------------------------------------------------------------------------------------+---------------------------------------------------------------------------------------------------+
 | ``from MethodAccess ma``                                                                         | Defines the variables for the query.                                                                              | We use:                                                                                           |
 |                                                                                                  | Declarations are of the form:                                                                                     |                                                                                                   |

From 2684b3f396ffd83859a69df955f7a02cb9656f7b Mon Sep 17 00:00:00 2001
From: Michael Nebel <michaelnebel@github.com>
Date: Wed, 23 Nov 2022 16:59:40 +0100
Subject: [PATCH 0591/1420] C#: Make bi-directional import of Servicestack
 remote flow source definitions.

---
 .../code/csharp/security/dataflow/flowsources/Remote.qll   | 7 +++++++
 1 file changed, 7 insertions(+)

diff --git a/csharp/ql/lib/semmle/code/csharp/security/dataflow/flowsources/Remote.qll b/csharp/ql/lib/semmle/code/csharp/security/dataflow/flowsources/Remote.qll
index 293d15b7461..a71edbc0681 100644
--- a/csharp/ql/lib/semmle/code/csharp/security/dataflow/flowsources/Remote.qll
+++ b/csharp/ql/lib/semmle/code/csharp/security/dataflow/flowsources/Remote.qll
@@ -19,6 +19,13 @@ abstract class RemoteFlowSource extends DataFlow::Node {
   abstract string getSourceType();
 }
 
+/**
+ * A module for importing frameworks that defines remote flow sources.
+ */
+private module RemoteFlowSources {
+  private import semmle.code.csharp.frameworks.ServiceStack
+}
+
 /** A data flow source of remote user input (ASP.NET). */
 abstract class AspNetRemoteFlowSource extends RemoteFlowSource { }
 

From 357c823b92b9f2dc7d2f16db1f523c1f269bdd53 Mon Sep 17 00:00:00 2001
From: Ben Ahmady <32935794+subatoi@users.noreply.github.com>
Date: Wed, 23 Nov 2022 16:59:52 +0000
Subject: [PATCH 0592/1420] Changes after feedback

---
 docs/codeql/codeql-language-guides/codeql-for-java.rst | 2 +-
 docs/codeql/reusables/kotlin-java-differences.rst      | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/docs/codeql/codeql-language-guides/codeql-for-java.rst b/docs/codeql/codeql-language-guides/codeql-for-java.rst
index a27328b052c..392ef19c8b2 100644
--- a/docs/codeql/codeql-language-guides/codeql-for-java.rst
+++ b/docs/codeql/codeql-language-guides/codeql-for-java.rst
@@ -10,7 +10,7 @@ Experiment and learn how to write effective and efficient queries for CodeQL dat
 
 .. pull-quote:: Enabling Kotlin support
 
-   To enable Kotlin support, you should enable ``java`` as a language.
+   CodeQL treats Java and Kotlin as parts of the same language, so to enable Kotlin support you should enable ``java`` as a language.
 
 .. toctree::
    :hidden:
diff --git a/docs/codeql/reusables/kotlin-java-differences.rst b/docs/codeql/reusables/kotlin-java-differences.rst
index b2b74d2d41a..07cb95203c2 100644
--- a/docs/codeql/reusables/kotlin-java-differences.rst
+++ b/docs/codeql/reusables/kotlin-java-differences.rst
@@ -13,7 +13,7 @@ Be careful when you model code elements that don’t exist in Java, such as ``No
 
 In that specific case, you can use the predicate ``Expr.getUnderlyingExpr()``. This goes directly to the underlying ``VarAccess`` to produce a more similar behavior to that in Java.
 
-Nullable elements (``?``) can also produce unexpected behavior. To avoid a ``NullPointerException``, Kotlin may inline calls like ``expr.toString()`` to ``String.valueOf(expr)`` when ``expr`` is nullable. Make sure that you write CodeQL around the extracted code, and do not directly modify the source code in the codebase.
+Nullable elements (`?`) can also produce unexpected behavior. To avoid a `NullPointerException`, Kotlin may inline calls like `expr.toString()` to `String.valueOf(expr)` when `expr` is nullable. Make sure that you write CodeQL around the extracted code, which may not exactly match the code as written in the codebase.
 
 Another example is that if-else expressions in Kotlin are translated into ``WhenExprs`` in CodeQL, instead of the more typical ``IfStmt`` seen in Java.
 

From 03b8e649f1528905ed1709ce4581e9368337cccf Mon Sep 17 00:00:00 2001
From: tiferet <tiferet@github.com>
Date: Wed, 23 Nov 2022 10:46:27 -0800
Subject: [PATCH 0593/1420] Filter endpoints by confidence

Select endpoints to score at inference time base purely on their confidence level, and not on whether they fit the historical definition of endpoint filters.
---
 .../adaptivethreatmodeling/ATMConfig.qll      | 21 +++++++++++--------
 .../EndpointCharacteristics.qll               |  2 +-
 2 files changed, 13 insertions(+), 10 deletions(-)

diff --git a/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/ATMConfig.qll b/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/ATMConfig.qll
index bce5a3172d6..8eceff9e362 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/ATMConfig.qll
+++ b/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/ATMConfig.qll
@@ -80,15 +80,18 @@ abstract class AtmConfig extends string {
     // characteristics that are specific to this sink type.
     // TODO: Experiment with excluding all endpoints that have a medium- or high-confidence characteristic that implies
     // they're not sinks for this sink type (or not sinks for any sink type), not just the EndpointFilterCharacteristics.
-    exists(EndpointCharacteristics::StandardEndpointFilterCharacteristic standardFilter |
-      standardFilter.getEndpoints(candidateSink) and
-      result = standardFilter
-    )
-    or
-    exists(EndpointCharacteristics::EndpointFilterCharacteristic specificFilter |
-      specificFilter.getEndpoints(candidateSink) and
-      specificFilter.getImplications(this.getASinkEndpointType(), false, _) and
-      result = specificFilter
+    exists(EndpointCharacteristics::EndpointCharacteristic filter, float confidence |
+      filter.getEndpoints(candidateSink) and
+      confidence >= filter.mediumConfidence() and
+      confidence < filter.highConfidence() and
+      (
+        // Exclude endpoints that have a characteristic that implies they're not sinks for _any_ sink type.
+        filter.getImplications(any(NegativeType negative), true, confidence)
+        or
+        // Exclude endpoints that have a characteristic that implies they're not sinks for _this particular_ sink type.
+        filter.getImplications(this.getASinkEndpointType(), false, confidence)
+      ) and
+      result = filter
     )
   }
 
diff --git a/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/EndpointCharacteristics.qll b/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/EndpointCharacteristics.qll
index 1b305fa0b11..7bd615df139 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/EndpointCharacteristics.qll
+++ b/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/EndpointCharacteristics.qll
@@ -462,7 +462,7 @@ abstract class EndpointFilterCharacteristic extends EndpointCharacteristic {
  * An EndpointFilterCharacteristic that indicates that an endpoint is unlikely to be a sink of any type.
  * Replaces https://github.com/github/codeql/blob/387e57546bf7352f7c1cfe781daa1a3799b7063e/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/StandardEndpointFilters.qll#LL15C24-L15C24
  */
-abstract class StandardEndpointFilterCharacteristic extends EndpointFilterCharacteristic {
+abstract private class StandardEndpointFilterCharacteristic extends EndpointFilterCharacteristic {
   bindingset[this]
   StandardEndpointFilterCharacteristic() { any() }
 

From 5b8b9044a527bd9f11eece8713aae15743a2d6b4 Mon Sep 17 00:00:00 2001
From: Ian Lynagh <igfoo@github.com>
Date: Wed, 23 Nov 2022 18:47:53 +0000
Subject: [PATCH 0594/1420] Kotlin: Remove an unused argument

---
 java/kotlin-extractor/src/main/kotlin/LinesOfCode.kt         | 2 +-
 .../src/main/kotlin/comments/CommentExtractor.kt             | 2 +-
 .../src/main/kotlin/utils/versions/v_1_4_32/Psi2Ir.kt        | 4 +---
 .../src/main/kotlin/utils/versions/v_1_5_20/Psi2Ir.kt        | 5 ++---
 4 files changed, 5 insertions(+), 8 deletions(-)

diff --git a/java/kotlin-extractor/src/main/kotlin/LinesOfCode.kt b/java/kotlin-extractor/src/main/kotlin/LinesOfCode.kt
index 45e23498e9d..27b62c86109 100644
--- a/java/kotlin-extractor/src/main/kotlin/LinesOfCode.kt
+++ b/java/kotlin-extractor/src/main/kotlin/LinesOfCode.kt
@@ -16,7 +16,7 @@ class LinesOfCode(
     val tw: FileTrapWriter,
     val file: IrFile
 ) {
-    val psi2Ir = getPsi2Ir(logger).also {
+    val psi2Ir = getPsi2Ir().also {
         if (it == null) {
             logger.warn("Lines of code will not be populated as Kotlin version is too old (${KotlinCompilerVersion.getVersion()})")
         }
diff --git a/java/kotlin-extractor/src/main/kotlin/comments/CommentExtractor.kt b/java/kotlin-extractor/src/main/kotlin/comments/CommentExtractor.kt
index 310eb3e18b0..ad4aaf60936 100644
--- a/java/kotlin-extractor/src/main/kotlin/comments/CommentExtractor.kt
+++ b/java/kotlin-extractor/src/main/kotlin/comments/CommentExtractor.kt
@@ -25,7 +25,7 @@ class CommentExtractor(private val fileExtractor: KotlinFileExtractor, private v
     private val logger = fileExtractor.logger
 
     fun extract() {
-        val psi2Ir = getPsi2Ir(logger)
+        val psi2Ir = getPsi2Ir()
         if (psi2Ir == null) {
             logger.warn("Comments will not be extracted as Kotlin version is too old (${KotlinCompilerVersion.getVersion()})")
             return
diff --git a/java/kotlin-extractor/src/main/kotlin/utils/versions/v_1_4_32/Psi2Ir.kt b/java/kotlin-extractor/src/main/kotlin/utils/versions/v_1_4_32/Psi2Ir.kt
index 2990acfc98f..80120107478 100644
--- a/java/kotlin-extractor/src/main/kotlin/utils/versions/v_1_4_32/Psi2Ir.kt
+++ b/java/kotlin-extractor/src/main/kotlin/utils/versions/v_1_4_32/Psi2Ir.kt
@@ -1,5 +1,3 @@
 package com.github.codeql.utils.versions
 
-import com.github.codeql.FileLogger
-
-fun getPsi2Ir(@Suppress("UNUSED_PARAMETER") logger: FileLogger): Psi2IrFacade? = null
+fun getPsi2Ir(): Psi2IrFacade? = null
diff --git a/java/kotlin-extractor/src/main/kotlin/utils/versions/v_1_5_20/Psi2Ir.kt b/java/kotlin-extractor/src/main/kotlin/utils/versions/v_1_5_20/Psi2Ir.kt
index 024710bc4b8..73987106c55 100644
--- a/java/kotlin-extractor/src/main/kotlin/utils/versions/v_1_5_20/Psi2Ir.kt
+++ b/java/kotlin-extractor/src/main/kotlin/utils/versions/v_1_5_20/Psi2Ir.kt
@@ -1,6 +1,5 @@
 package com.github.codeql.utils.versions
 
-import com.github.codeql.FileLogger
 import com.intellij.psi.PsiElement
 import org.jetbrains.kotlin.backend.common.psi.PsiSourceManager
 import org.jetbrains.kotlin.backend.jvm.ir.getKtFile
@@ -8,9 +7,9 @@ import org.jetbrains.kotlin.ir.IrElement
 import org.jetbrains.kotlin.ir.declarations.IrFile
 import org.jetbrains.kotlin.psi.KtFile
 
-fun getPsi2Ir(logger: FileLogger): Psi2IrFacade? = Psi2Ir(logger)
+fun getPsi2Ir(): Psi2IrFacade? = Psi2Ir()
 
-private class Psi2Ir(private val logger: FileLogger): Psi2IrFacade {
+private class Psi2Ir(): Psi2IrFacade {
     override fun getKtFile(irFile: IrFile): KtFile? {
         return irFile.getKtFile()
     }

From 95f35196e4d7c6f1e080edb40fa7f05cb58aebc9 Mon Sep 17 00:00:00 2001
From: erik-krogh <erik-krogh@github.com>
Date: Wed, 23 Nov 2022 20:45:51 +0100
Subject: [PATCH 0595/1420] add missing additional keywords

---
 .../semmle/code/java/regex/RegexTreeView.qll   | 16 ++++++++--------
 python/ql/lib/semmle/python/RegexTreeView.qll  | 12 ++++++------
 .../lib/codeql/ruby/regexp/RegExpTreeView.qll  | 18 +++++++++---------
 3 files changed, 23 insertions(+), 23 deletions(-)

diff --git a/java/ql/lib/semmle/code/java/regex/RegexTreeView.qll b/java/ql/lib/semmle/code/java/regex/RegexTreeView.qll
index 2eecff1e627..1b01be0377b 100644
--- a/java/ql/lib/semmle/code/java/regex/RegexTreeView.qll
+++ b/java/ql/lib/semmle/code/java/regex/RegexTreeView.qll
@@ -615,7 +615,7 @@ module Impl implements RegexTreeViewSig {
    * \p{Digit}
    * \p{IsLowerCase}
    */
-  class RegExpNamedProperty extends RegExpCharacterClassEscape {
+  additional class RegExpNamedProperty extends RegExpCharacterClassEscape {
     boolean inverted;
     string name;
 
@@ -745,7 +745,7 @@ module Impl implements RegexTreeViewSig {
    * \t
    * ```
    */
-  class RegExpNormalChar extends RegExpTerm, TRegExpNormalChar {
+  additional class RegExpNormalChar extends RegExpTerm, TRegExpNormalChar {
     RegExpNormalChar() { this = TRegExpNormalChar(re, start, end) }
 
     /**
@@ -770,7 +770,7 @@ module Impl implements RegexTreeViewSig {
    * \Qabc\E
    * ```
    */
-  class RegExpQuote extends RegExpTerm, TRegExpQuote {
+  additional class RegExpQuote extends RegExpTerm, TRegExpQuote {
     string value;
 
     RegExpQuote() {
@@ -880,7 +880,7 @@ module Impl implements RegexTreeViewSig {
    * .
    * ```
    */
-  class RegExpSpecialChar extends RegExpTerm, TRegExpSpecialChar {
+  additional class RegExpSpecialChar extends RegExpTerm, TRegExpSpecialChar {
     string char;
 
     RegExpSpecialChar() {
@@ -956,7 +956,7 @@ module Impl implements RegexTreeViewSig {
    * (?=\w)
    * ```
    */
-  class RegExpZeroWidthMatch extends RegExpGroup {
+  additional class RegExpZeroWidthMatch extends RegExpGroup {
     RegExpZeroWidthMatch() { re.zeroWidthMatch(start, end) }
 
     override RegExpTerm getChild(int i) { none() }
@@ -1023,7 +1023,7 @@ module Impl implements RegexTreeViewSig {
    * (?!\n)
    * ```
    */
-  class RegExpNegativeLookahead extends RegExpLookahead {
+  additional class RegExpNegativeLookahead extends RegExpLookahead {
     RegExpNegativeLookahead() { re.negativeLookaheadAssertionGroup(start, end) }
 
     override string getPrimaryQLClass() { result = "RegExpNegativeLookahead" }
@@ -1065,7 +1065,7 @@ module Impl implements RegexTreeViewSig {
    * (?<!\\)
    * ```
    */
-  class RegExpNegativeLookbehind extends RegExpLookbehind {
+  additional class RegExpNegativeLookbehind extends RegExpLookbehind {
     RegExpNegativeLookbehind() { re.negativeLookbehindAssertionGroup(start, end) }
 
     override string getPrimaryQLClass() { result = "RegExpNegativeLookbehind" }
@@ -1159,7 +1159,7 @@ module Impl implements RegexTreeViewSig {
   /**
    * Gets the flags for `root`, or the empty string if `root` has no flags.
    */
-  deprecated string getFlags(RegExpTerm root) {
+  additional deprecated string getFlags(RegExpTerm root) {
     root.isRootTerm() and
     result = root.getLiteral().getFlags()
   }
diff --git a/python/ql/lib/semmle/python/RegexTreeView.qll b/python/ql/lib/semmle/python/RegexTreeView.qll
index 9ef211d53b0..8a5d95cc7cf 100644
--- a/python/ql/lib/semmle/python/RegexTreeView.qll
+++ b/python/ql/lib/semmle/python/RegexTreeView.qll
@@ -454,7 +454,7 @@ module Impl implements RegexTreeViewSig {
     override string getPrimaryQLClass() { result = "RegExpAlt" }
   }
 
-  class RegExpCharEscape = RegExpEscape;
+  additional class RegExpCharEscape = RegExpEscape;
 
   /**
    * An escaped regular expression term, that is, a regular expression
@@ -684,7 +684,7 @@ module Impl implements RegexTreeViewSig {
    * \t
    * ```
    */
-  class RegExpNormalChar extends RegExpTerm, TRegExpNormalChar {
+  additional class RegExpNormalChar extends RegExpTerm, TRegExpNormalChar {
     RegExpNormalChar() { this = TRegExpNormalChar(re, start, end) }
 
     /**
@@ -792,7 +792,7 @@ module Impl implements RegexTreeViewSig {
    * .
    * ```
    */
-  class RegExpSpecialChar extends RegExpTerm, TRegExpSpecialChar {
+  additional class RegExpSpecialChar extends RegExpTerm, TRegExpSpecialChar {
     string char;
 
     RegExpSpecialChar() {
@@ -868,7 +868,7 @@ module Impl implements RegexTreeViewSig {
    * (?=\w)
    * ```
    */
-  class RegExpZeroWidthMatch extends RegExpGroup {
+  additional class RegExpZeroWidthMatch extends RegExpGroup {
     RegExpZeroWidthMatch() { re.zeroWidthMatch(start, end) }
 
     override RegExpTerm getChild(int i) { none() }
@@ -937,7 +937,7 @@ module Impl implements RegexTreeViewSig {
    * (?!\n)
    * ```
    */
-  class RegExpNegativeLookahead extends RegExpLookahead {
+  additional class RegExpNegativeLookahead extends RegExpLookahead {
     RegExpNegativeLookahead() { re.negativeLookaheadAssertionGroup(start, end) }
 
     override string getPrimaryQLClass() { result = "RegExpNegativeLookahead" }
@@ -979,7 +979,7 @@ module Impl implements RegexTreeViewSig {
    * (?<!\\)
    * ```
    */
-  class RegExpNegativeLookbehind extends RegExpLookbehind {
+  additional class RegExpNegativeLookbehind extends RegExpLookbehind {
     RegExpNegativeLookbehind() { re.negativeLookbehindAssertionGroup(start, end) }
 
     override string getPrimaryQLClass() { result = "RegExpNegativeLookbehind" }
diff --git a/ruby/ql/lib/codeql/ruby/regexp/RegExpTreeView.qll b/ruby/ql/lib/codeql/ruby/regexp/RegExpTreeView.qll
index ab21512c694..4a0b40ccfb2 100644
--- a/ruby/ql/lib/codeql/ruby/regexp/RegExpTreeView.qll
+++ b/ruby/ql/lib/codeql/ruby/regexp/RegExpTreeView.qll
@@ -539,7 +539,7 @@ private module Impl implements RegexTreeViewSig {
     override predicate isNullable() { this.getAChild().isNullable() }
   }
 
-  class RegExpCharEscape = RegExpEscape;
+  additional class RegExpCharEscape = RegExpEscape;
 
   /**
    * An escaped regular expression term, that is, a regular expression
@@ -620,7 +620,7 @@ private module Impl implements RegexTreeViewSig {
   /**
    * A non-word boundary, that is, a regular expression term of the form `\B`.
    */
-  class RegExpNonWordBoundary extends RegExpSpecialChar {
+  additional class RegExpNonWordBoundary extends RegExpSpecialChar {
     RegExpNonWordBoundary() { this.getChar() = "\\B" }
 
     override string getAPrimaryQlClass() { result = "RegExpNonWordBoundary" }
@@ -756,7 +756,7 @@ private module Impl implements RegexTreeViewSig {
    * \t
    * ```
    */
-  class RegExpNormalChar extends RegExpTerm, TRegExpNormalChar {
+  additional class RegExpNormalChar extends RegExpTerm, TRegExpNormalChar {
     RegExpNormalChar() { this = TRegExpNormalChar(re, start, end) }
 
     /**
@@ -878,7 +878,7 @@ private module Impl implements RegexTreeViewSig {
    * .
    * ```
    */
-  class RegExpSpecialChar extends RegExpTerm, TRegExpSpecialChar {
+  additional class RegExpSpecialChar extends RegExpTerm, TRegExpSpecialChar {
     string char;
 
     RegExpSpecialChar() {
@@ -926,7 +926,7 @@ private module Impl implements RegexTreeViewSig {
    * \A
    * ```
    */
-  class RegExpAnchor extends RegExpSpecialChar {
+  additional class RegExpAnchor extends RegExpSpecialChar {
     RegExpAnchor() { this.getChar() = ["^", "$", "\\A", "\\Z", "\\z"] }
 
     override string getAPrimaryQlClass() { result = "RegExpAnchor" }
@@ -975,7 +975,7 @@ private module Impl implements RegexTreeViewSig {
    * (?=\w)
    * ```
    */
-  class RegExpZeroWidthMatch extends RegExpGroup {
+  additional class RegExpZeroWidthMatch extends RegExpGroup {
     RegExpZeroWidthMatch() { re.zeroWidthMatch(start, end) }
 
     override RegExpTerm getChild(int i) { none() }
@@ -1050,7 +1050,7 @@ private module Impl implements RegexTreeViewSig {
    * (?!\n)
    * ```
    */
-  class RegExpNegativeLookahead extends RegExpLookahead {
+  additional class RegExpNegativeLookahead extends RegExpLookahead {
     RegExpNegativeLookahead() { re.negativeLookaheadAssertionGroup(start, end) }
 
     override string getAPrimaryQlClass() { result = "RegExpNegativeLookahead" }
@@ -1092,7 +1092,7 @@ private module Impl implements RegexTreeViewSig {
    * (?<!\\)
    * ```
    */
-  class RegExpNegativeLookbehind extends RegExpLookbehind {
+  additional class RegExpNegativeLookbehind extends RegExpLookbehind {
     RegExpNegativeLookbehind() { re.negativeLookbehindAssertionGroup(start, end) }
 
     override string getAPrimaryQlClass() { result = "RegExpNegativeLookbehind" }
@@ -1142,7 +1142,7 @@ private module Impl implements RegexTreeViewSig {
    * A named character property. For example, the POSIX bracket expression
    * `[[:digit:]]`.
    */
-  class RegExpNamedCharacterProperty extends RegExpTerm, TRegExpNamedCharacterProperty {
+  additional class RegExpNamedCharacterProperty extends RegExpTerm, TRegExpNamedCharacterProperty {
     RegExpNamedCharacterProperty() { this = TRegExpNamedCharacterProperty(re, start, end) }
 
     override RegExpTerm getChild(int i) { none() }

From 2d92cee26aa2e70c66a6c9378212c29501afa400 Mon Sep 17 00:00:00 2001
From: Ian Lynagh <igfoo@github.com>
Date: Mon, 21 Nov 2022 17:26:16 +0000
Subject: [PATCH 0596/1420] Kotlin build system: Refactor jar-finder

We were globbing with a * in the filename, but that is not necessary.
---
 java/kotlin-extractor/build.py | 21 ++++++++++-----------
 1 file changed, 10 insertions(+), 11 deletions(-)

diff --git a/java/kotlin-extractor/build.py b/java/kotlin-extractor/build.py
index 05cb1204d86..f31484bdec3 100755
--- a/java/kotlin-extractor/build.py
+++ b/java/kotlin-extractor/build.py
@@ -147,18 +147,17 @@ def get_gradle_lib_folder():
     return gradle_home + '/lib'
 
 
-def find_jar(path, pattern):
-    result = glob.glob(path + '/' + pattern + '*.jar')
-    if len(result) == 0:
-        raise Exception('Cannot find jar file %s under path %s' %
-                        (pattern, path))
-    return result
+def find_jar(path, base):
+    fn = path + '/' + base + '.jar'
+    if not os.path.isfile(fn):
+        raise Exception('Cannot find jar file at %s' % fn)
+    return fn
 
 
-def patterns_to_classpath(path, patterns):
+def bases_to_classpath(path, bases):
     result = []
-    for pattern in patterns:
-        result += find_jar(path, pattern)
+    for base in bases:
+        result.append(find_jar(path, base))
     return os.path.pathsep.join(result)
 
 
@@ -174,8 +173,8 @@ def transform_to_embeddable(srcs):
 
 
 def compile(jars, java_jars, dependency_folder, transform_to_embeddable, output, build_dir, current_version):
-    classpath = patterns_to_classpath(dependency_folder, jars)
-    java_classpath = patterns_to_classpath(dependency_folder, java_jars)
+    classpath = bases_to_classpath(dependency_folder, jars)
+    java_classpath = bases_to_classpath(dependency_folder, java_jars)
 
     tmp_src_dir = build_dir + '/temp_src'
 

From 57f689401efbda3ec02b9d9487467fe4b820d042 Mon Sep 17 00:00:00 2001
From: Harry Maclean <hmac@github.com>
Date: Thu, 24 Nov 2022 17:33:57 +1300
Subject: [PATCH 0597/1420] Ruby: SplatExprCfgNode extends
 UnaryOperationCfgNode

---
 ruby/ql/lib/codeql/ruby/controlflow/CfgNodes.qll | 7 ++-----
 1 file changed, 2 insertions(+), 5 deletions(-)

diff --git a/ruby/ql/lib/codeql/ruby/controlflow/CfgNodes.qll b/ruby/ql/lib/codeql/ruby/controlflow/CfgNodes.qll
index 5007acf4e31..c8ca8ff12e6 100644
--- a/ruby/ql/lib/codeql/ruby/controlflow/CfgNodes.qll
+++ b/ruby/ql/lib/codeql/ruby/controlflow/CfgNodes.qll
@@ -900,20 +900,17 @@ module ExprNodes {
     final override RelationalOperation getExpr() { result = super.getExpr() }
   }
 
-  private class SplatExprChildMapping extends ExprChildMapping, SplatExpr {
+  private class SplatExprChildMapping extends OperationExprChildMapping, SplatExpr {
     override predicate relevantChild(AstNode n) { n = this.getOperand() }
   }
 
   /** A control-flow node that wraps a `SplatExpr` AST expression. */
-  class SplatExprCfgNode extends ExprCfgNode {
+  class SplatExprCfgNode extends UnaryOperationCfgNode {
     override string getAPrimaryQlClass() { result = "SplatExprCfgNode" }
 
     override SplatExprChildMapping e;
 
     final override SplatExpr getExpr() { result = super.getExpr() }
-
-    /** Gets the operand of this splat expression. */
-    final ExprCfgNode getOperand() { e.hasCfgChild(e.getOperand(), this, result) }
   }
 
   /** A control-flow node that wraps an `ElementReference` AST expression. */

From 4e4ee32dbcfbf65cc298bdf2184e91cc56579f52 Mon Sep 17 00:00:00 2001
From: Tom Hvitved <hvitved@github.com>
Date: Thu, 24 Nov 2022 10:48:29 +0100
Subject: [PATCH 0598/1420] Data flow: Join on one more column in
 `flowThroughIntoCall`

---
 .../codeql/ruby/dataflow/internal/DataFlowImpl.qll    | 11 +++++++----
 1 file changed, 7 insertions(+), 4 deletions(-)

diff --git a/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImpl.qll b/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImpl.qll
index a52ad110662..bfdb6c9c9a3 100644
--- a/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImpl.qll
+++ b/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImpl.qll
@@ -1502,10 +1502,13 @@ private module MkStage<StageSig PrevStage> {
     private predicate flowThroughIntoCall(
       DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
     ) {
-      flowIntoCall(call, pragma[only_bind_into](arg), pragma[only_bind_into](p), allowsFieldFlow,
-        pragma[only_bind_into](config)) and
-      fwdFlow(arg, _, _, _, _, _, pragma[only_bind_into](config)) and
-      returnFlowsThrough(_, _, _, _, p.asNode(), _, _, pragma[only_bind_into](config))
+      exists(Ap argAp |
+        flowIntoCall(call, pragma[only_bind_into](arg), pragma[only_bind_into](p), allowsFieldFlow,
+          pragma[only_bind_into](config)) and
+        fwdFlow(arg, _, _, _, _, pragma[only_bind_into](argAp), pragma[only_bind_into](config)) and
+        returnFlowsThrough(_, _, _, _, p.asNode(), pragma[only_bind_into](argAp), _,
+          pragma[only_bind_into](config))
+      )
     }
 
     /**

From 2ac06b8db941f978e323bc1dafe48aecce43d2e4 Mon Sep 17 00:00:00 2001
From: Tony Torralba <atorralba@users.noreply.github.com>
Date: Thu, 24 Nov 2022 10:50:39 +0100
Subject: [PATCH 0599/1420] Turns out lambda flow is already supported

---
 .../swift/frameworks/StandardLibrary/NSData.qll      |  3 +--
 .../test/library-tests/dataflow/taint/Taint.expected | 12 ++++++++++++
 .../dataflow/taint/TaintInline.expected              |  1 +
 .../test/library-tests/dataflow/taint/nsdata.swift   |  2 +-
 4 files changed, 15 insertions(+), 3 deletions(-)

diff --git a/swift/ql/lib/codeql/swift/frameworks/StandardLibrary/NSData.qll b/swift/ql/lib/codeql/swift/frameworks/StandardLibrary/NSData.qll
index 4fd8cba33fc..bad20ece437 100644
--- a/swift/ql/lib/codeql/swift/frameworks/StandardLibrary/NSData.qll
+++ b/swift/ql/lib/codeql/swift/frameworks/StandardLibrary/NSData.qll
@@ -45,8 +45,7 @@ private class NsDataSummaries extends SummaryModelCsv {
         ";NSData;true;base64EncodedString(options:);;;Argument[-1];ReturnValue;taint",
         ";NSData;true;base64Encoding();;;Argument[-1];ReturnValue;taint",
         ";NSData;true;dataWithContentsOfMappedFile(_:);;;Argument[0];ReturnValue;taint",
-        // TODO: Needs block flow
-        // ";NSData;true;enumerateBytes(_:);;;Argument[-1];Argument[0].Parameter[0];taint"
+        ";NSData;true;enumerateBytes(_:);;;Argument[-1];Argument[0].Parameter[0];taint",
         ";NSData;true;getBytes(_:);;;Argument[-1];Argument[0];taint",
         ";NSData;true;getBytes(_:length:);;;Argument[-1];Argument[0];taint",
         ";NSData;true;getBytes(_:range:);;;Argument[-1];Argument[0];taint",
diff --git a/swift/ql/test/library-tests/dataflow/taint/Taint.expected b/swift/ql/test/library-tests/dataflow/taint/Taint.expected
index 16e2f0bec8d..38c3a209deb 100644
--- a/swift/ql/test/library-tests/dataflow/taint/Taint.expected
+++ b/swift/ql/test/library-tests/dataflow/taint/Taint.expected
@@ -1,4 +1,5 @@
 edges
+| file://:0:0:0:0 | [summary] to write: argument 0.parameter 0 in enumerateBytes(_:) :  | nsdata.swift:110:9:110:9 | bytes :  |
 | file://:0:0:0:0 | [summary] to write: argument 1.parameter 0 in dataTask(with:completionHandler:) :  | url.swift:120:61:120:61 | data :  |
 | nsdata.swift:22:9:22:9 | self :  | file://:0:0:0:0 | .bytes :  |
 | nsdata.swift:23:9:23:9 | self :  | file://:0:0:0:0 | .description :  |
@@ -19,6 +20,7 @@ edges
 | nsdata.swift:38:5:38:96 | [summary param] this in base64EncodedString(options:) :  | file://:0:0:0:0 | [summary] to write: return (return) in base64EncodedString(options:) :  |
 | nsdata.swift:39:5:39:49 | [summary param] this in base64Encoding() :  | file://:0:0:0:0 | [summary] to write: return (return) in base64Encoding() :  |
 | nsdata.swift:40:5:40:82 | [summary param] 0 in dataWithContentsOfMappedFile(_:) :  | file://:0:0:0:0 | [summary] to write: return (return) in dataWithContentsOfMappedFile(_:) :  |
+| nsdata.swift:41:5:41:104 | [summary param] this in enumerateBytes(_:) :  | file://:0:0:0:0 | [summary] to write: argument 0.parameter 0 in enumerateBytes(_:) :  |
 | nsdata.swift:42:5:42:55 | [summary param] this in getBytes(_:) :  | file://:0:0:0:0 | [summary] to write: argument 0 in getBytes(_:) :  |
 | nsdata.swift:43:5:43:68 | [summary param] this in getBytes(_:length:) :  | file://:0:0:0:0 | [summary] to write: argument 0 in getBytes(_:length:) :  |
 | nsdata.swift:44:5:44:71 | [summary param] this in getBytes(_:range:) :  | file://:0:0:0:0 | [summary] to write: argument 0 in getBytes(_:range:) :  |
@@ -82,6 +84,9 @@ edges
 | nsdata.swift:106:15:106:70 | call to dataWithContentsOfMappedFile(_:) :  | nsdata.swift:106:15:106:71 | ...! |
 | nsdata.swift:106:51:106:58 | call to source() :  | nsdata.swift:40:5:40:82 | [summary param] 0 in dataWithContentsOfMappedFile(_:) :  |
 | nsdata.swift:106:51:106:58 | call to source() :  | nsdata.swift:106:15:106:70 | call to dataWithContentsOfMappedFile(_:) :  |
+| nsdata.swift:108:27:108:34 | call to source() :  | nsdata.swift:109:5:109:5 | nsDataTainted17 :  |
+| nsdata.swift:109:5:109:5 | nsDataTainted17 :  | nsdata.swift:41:5:41:104 | [summary param] this in enumerateBytes(_:) :  |
+| nsdata.swift:110:9:110:9 | bytes :  | nsdata.swift:110:45:110:45 | bytes |
 | nsdata.swift:113:27:113:34 | call to source() :  | nsdata.swift:115:5:115:5 | nsDataTainted18 :  |
 | nsdata.swift:115:5:115:5 | nsDataTainted18 :  | nsdata.swift:42:5:42:55 | [summary param] this in getBytes(_:) :  |
 | nsdata.swift:115:5:115:5 | nsDataTainted18 :  | nsdata.swift:115:30:115:30 | [post] bufferTainted18 :  |
@@ -382,6 +387,7 @@ nodes
 | file://:0:0:0:0 | [summary] to write: argument 0 in getBytes(_:) :  | semmle.label | [summary] to write: argument 0 in getBytes(_:) :  |
 | file://:0:0:0:0 | [summary] to write: argument 0 in getBytes(_:length:) :  | semmle.label | [summary] to write: argument 0 in getBytes(_:length:) :  |
 | file://:0:0:0:0 | [summary] to write: argument 0 in getBytes(_:range:) :  | semmle.label | [summary] to write: argument 0 in getBytes(_:range:) :  |
+| file://:0:0:0:0 | [summary] to write: argument 0.parameter 0 in enumerateBytes(_:) :  | semmle.label | [summary] to write: argument 0.parameter 0 in enumerateBytes(_:) :  |
 | file://:0:0:0:0 | [summary] to write: argument 1.parameter 0 in dataTask(with:completionHandler:) :  | semmle.label | [summary] to write: argument 1.parameter 0 in dataTask(with:completionHandler:) :  |
 | file://:0:0:0:0 | [summary] to write: argument this in append(_:) :  | semmle.label | [summary] to write: argument this in append(_:) :  |
 | file://:0:0:0:0 | [summary] to write: argument this in append(_:length:) :  | semmle.label | [summary] to write: argument this in append(_:length:) :  |
@@ -459,6 +465,7 @@ nodes
 | nsdata.swift:38:5:38:96 | [summary param] this in base64EncodedString(options:) :  | semmle.label | [summary param] this in base64EncodedString(options:) :  |
 | nsdata.swift:39:5:39:49 | [summary param] this in base64Encoding() :  | semmle.label | [summary param] this in base64Encoding() :  |
 | nsdata.swift:40:5:40:82 | [summary param] 0 in dataWithContentsOfMappedFile(_:) :  | semmle.label | [summary param] 0 in dataWithContentsOfMappedFile(_:) :  |
+| nsdata.swift:41:5:41:104 | [summary param] this in enumerateBytes(_:) :  | semmle.label | [summary param] this in enumerateBytes(_:) :  |
 | nsdata.swift:42:5:42:55 | [summary param] this in getBytes(_:) :  | semmle.label | [summary param] this in getBytes(_:) :  |
 | nsdata.swift:43:5:43:68 | [summary param] this in getBytes(_:length:) :  | semmle.label | [summary param] this in getBytes(_:length:) :  |
 | nsdata.swift:44:5:44:71 | [summary param] this in getBytes(_:range:) :  | semmle.label | [summary param] this in getBytes(_:range:) :  |
@@ -520,6 +527,10 @@ nodes
 | nsdata.swift:106:15:106:70 | call to dataWithContentsOfMappedFile(_:) :  | semmle.label | call to dataWithContentsOfMappedFile(_:) :  |
 | nsdata.swift:106:15:106:71 | ...! | semmle.label | ...! |
 | nsdata.swift:106:51:106:58 | call to source() :  | semmle.label | call to source() :  |
+| nsdata.swift:108:27:108:34 | call to source() :  | semmle.label | call to source() :  |
+| nsdata.swift:109:5:109:5 | nsDataTainted17 :  | semmle.label | nsDataTainted17 :  |
+| nsdata.swift:110:9:110:9 | bytes :  | semmle.label | bytes :  |
+| nsdata.swift:110:45:110:45 | bytes | semmle.label | bytes |
 | nsdata.swift:113:27:113:34 | call to source() :  | semmle.label | call to source() :  |
 | nsdata.swift:115:5:115:5 | nsDataTainted18 :  | semmle.label | nsDataTainted18 :  |
 | nsdata.swift:115:30:115:30 | [post] bufferTainted18 :  | semmle.label | [post] bufferTainted18 :  |
@@ -873,6 +884,7 @@ subpaths
 | nsdata.swift:101:15:101:62 | call to base64EncodedString(options:) | nsdata.swift:99:27:99:34 | call to source() :  | nsdata.swift:101:15:101:62 | call to base64EncodedString(options:) | result |
 | nsdata.swift:104:15:104:46 | call to base64Encoding() | nsdata.swift:103:27:103:34 | call to source() :  | nsdata.swift:104:15:104:46 | call to base64Encoding() | result |
 | nsdata.swift:106:15:106:71 | ...! | nsdata.swift:106:51:106:58 | call to source() :  | nsdata.swift:106:15:106:71 | ...! | result |
+| nsdata.swift:110:45:110:45 | bytes | nsdata.swift:108:27:108:34 | call to source() :  | nsdata.swift:110:45:110:45 | bytes | result |
 | nsdata.swift:116:15:116:15 | bufferTainted18 | nsdata.swift:113:27:113:34 | call to source() :  | nsdata.swift:116:15:116:15 | bufferTainted18 | result |
 | nsdata.swift:121:15:121:15 | bufferTainted19 | nsdata.swift:118:27:118:34 | call to source() :  | nsdata.swift:121:15:121:15 | bufferTainted19 | result |
 | nsdata.swift:126:15:126:15 | bufferTainted20 | nsdata.swift:123:27:123:34 | call to source() :  | nsdata.swift:126:15:126:15 | bufferTainted20 | result |
diff --git a/swift/ql/test/library-tests/dataflow/taint/TaintInline.expected b/swift/ql/test/library-tests/dataflow/taint/TaintInline.expected
index e69de29bb2d..24bd1bc7451 100644
--- a/swift/ql/test/library-tests/dataflow/taint/TaintInline.expected
+++ b/swift/ql/test/library-tests/dataflow/taint/TaintInline.expected
@@ -0,0 +1 @@
+| nsdata.swift:110:45:110:45 | bytes | Unexpected result: tainted=108 |
diff --git a/swift/ql/test/library-tests/dataflow/taint/nsdata.swift b/swift/ql/test/library-tests/dataflow/taint/nsdata.swift
index f6d82ede499..e737bb108d9 100644
--- a/swift/ql/test/library-tests/dataflow/taint/nsdata.swift
+++ b/swift/ql/test/library-tests/dataflow/taint/nsdata.swift
@@ -107,7 +107,7 @@ func test() {
     // ";NSData;true;enumerateBytes(_:);;;Argument[-1];Argument[0].Parameter[0];taint"
     let nsDataTainted17 = source() as! NSData
     nsDataTainted17.enumerateBytes {
-        bytes, byteRange, stop in sink(arg: bytes) // $ MISSING: tainted=108
+        bytes, byteRange, stop in sink(arg: bytes) // tainted=108
     }
     // ";NSData;true;getBytes(_:);;;Argument[-1];Argument[0];taint",
     let nsDataTainted18 = source() as! NSData

From c9a600d4960ac561e8b976cab6d36be56f7c55a3 Mon Sep 17 00:00:00 2001
From: erik-krogh <erik-krogh@github.com>
Date: Thu, 24 Nov 2022 10:29:20 +0100
Subject: [PATCH 0600/1420] Ruby: cache the compiled extractor, because that's
 way smaller than the cargo cache

---
 .github/workflows/ruby-build.yml | 18 +++++++++++++++++-
 1 file changed, 17 insertions(+), 1 deletion(-)

diff --git a/.github/workflows/ruby-build.yml b/.github/workflows/ruby-build.yml
index cbe7f32fb17..f561af9c13b 100644
--- a/.github/workflows/ruby-build.yml
+++ b/.github/workflows/ruby-build.yml
@@ -48,7 +48,19 @@ jobs:
         run: |
           brew install gnu-tar
           echo "/usr/local/opt/gnu-tar/libexec/gnubin" >> $GITHUB_PATH
+      - name: Cache entire extractor
+        uses: actions/cache@v3
+        id: cache-extractor
+        with:
+          path: |
+            ruby/target/release/ruby-autobuilder
+            ruby/target/release/ruby-autobuilder.exe
+            ruby/target/release/ruby-extractor
+            ruby/target/release/ruby-extractor.exe
+            ruby/ql/lib/codeql/ruby/ast/internal/TreeSitter.qll
+          key: ${{ runner.os }}-ruby-extractor-${{ hashFiles('ruby/rust-toolchain.toml', 'ruby/**/Cargo.lock') }}--${{ hashFiles('ruby/**/*.rs') }}
       - uses: actions/cache@v3
+        if: steps.cache-extractor.outputs.cache-hit != 'true'
         with:
           path: |
             ~/.cargo/registry
@@ -56,15 +68,19 @@ jobs:
             ruby/target
           key: ${{ runner.os }}-ruby-rust-cargo-${{ hashFiles('ruby/rust-toolchain.toml', 'ruby/**/Cargo.lock') }}
       - name: Check formatting
+        if: steps.cache-extractor.outputs.cache-hit != 'true'
         run: cargo fmt --all -- --check
       - name: Build
+        if: steps.cache-extractor.outputs.cache-hit != 'true'
         run: cargo build --verbose
       - name: Run tests
+        if: steps.cache-extractor.outputs.cache-hit != 'true'
         run: cargo test --verbose
       - name: Release build
+        if: steps.cache-extractor.outputs.cache-hit != 'true'
         run: cargo build --release
       - name: Generate dbscheme
-        if: ${{ matrix.os == 'ubuntu-latest' }}
+        if: ${{ matrix.os == 'ubuntu-latest' && steps.cache-extractor.outputs.cache-hit != 'true'}}
         run: target/release/ruby-generator --dbscheme ql/lib/ruby.dbscheme --library ql/lib/codeql/ruby/ast/internal/TreeSitter.qll
       - uses: actions/upload-artifact@v3
         if: ${{ matrix.os == 'ubuntu-latest' }}

From 443d0f50c1354951c46ef5cfb1cba70150d3e682 Mon Sep 17 00:00:00 2001
From: Tony Torralba <atorralba@users.noreply.github.com>
Date: Thu, 24 Nov 2022 11:10:07 +0100
Subject: [PATCH 0601/1420] Apply suggestions from code review

---
 .../Security/CWE/CWE-089/MyBatisCommonLib.qll        |  2 +-
 .../CWE-089/src/main/MybatisSqlInjection.java        | 12 ++++++------
 .../CWE-089/src/main/MybatisSqlInjectionService.java |  8 ++++----
 .../CWE-089/src/main/SqlInjectionMapper.java         |  4 ++--
 4 files changed, 13 insertions(+), 13 deletions(-)

diff --git a/java/ql/src/experimental/Security/CWE/CWE-089/MyBatisCommonLib.qll b/java/ql/src/experimental/Security/CWE/CWE-089/MyBatisCommonLib.qll
index 8399efcc229..4d3d77d8b65 100644
--- a/java/ql/src/experimental/Security/CWE/CWE-089/MyBatisCommonLib.qll
+++ b/java/ql/src/experimental/Security/CWE/CWE-089/MyBatisCommonLib.qll
@@ -135,7 +135,7 @@ predicate isMybatisXmlOrAnnotationSqlInjection(
               "%}") and
       annotation.getType() instanceof TypeParam and
       ma.getAnArgument() = node.asExpr() and
-      annotation.getTarget() = ma.getMethod().getParameter(node.asExpr().getIndex())
+      annotation.getTarget() = ma.getMethod().getParameter(node.asExpr().(Argument).getParameterPos())
     )
     or
     // MyBatis default parameter sql injection vulnerabilities.the default parameter form of the method is arg[0...n] or param[1...n].
diff --git a/java/ql/test/experimental/query-tests/security/CWE-089/src/main/MybatisSqlInjection.java b/java/ql/test/experimental/query-tests/security/CWE-089/src/main/MybatisSqlInjection.java
index 5aa6876e00c..a751d2ebb1c 100644
--- a/java/ql/test/experimental/query-tests/security/CWE-089/src/main/MybatisSqlInjection.java
+++ b/java/ql/test/experimental/query-tests/security/CWE-089/src/main/MybatisSqlInjection.java
@@ -90,13 +90,13 @@ public class MybatisSqlInjection {
 		mybatisSqlInjectionService.badInsert(name);
 	}
 
-	@GetMapping(value = "kkbad1")
-	public void kkbad1(@RequestParam String name, @RequestParam Integer age) {
-		mybatisSqlInjectionService.kkbad1(name, age);
+	@GetMapping(value = "good2")
+	public void good2(@RequestParam String name, @RequestParam Integer age) {
+		mybatisSqlInjectionService.good2(name, age);
 	}
 
-	@GetMapping(value = "kkbad2")
-	public void kkbad2(@RequestParam String age) {
-		mybatisSqlInjectionService.kkbad2(age);
+	@GetMapping(value = "good3")
+	public void good3(@RequestParam String age) {
+		mybatisSqlInjectionService.good3(age);
 	}
 }
diff --git a/java/ql/test/experimental/query-tests/security/CWE-089/src/main/MybatisSqlInjectionService.java b/java/ql/test/experimental/query-tests/security/CWE-089/src/main/MybatisSqlInjectionService.java
index 28b9bebc1f4..c8e1ce9c3cb 100644
--- a/java/ql/test/experimental/query-tests/security/CWE-089/src/main/MybatisSqlInjectionService.java
+++ b/java/ql/test/experimental/query-tests/security/CWE-089/src/main/MybatisSqlInjectionService.java
@@ -73,11 +73,11 @@ public class MybatisSqlInjectionService {
 		sqlInjectionMapper.badInsert(input);
 	}
 
-	public void kkbad1(String name, Integer age){
-		sqlInjectionMapper.kkbad1(name, age);
+	public void good2(String name, Integer age){
+		sqlInjectionMapper.good2(name, age);
 	}
 
-	public void kkbad2(String age){
-		sqlInjectionMapper.kkbad2(age);
+	public void good3(String age){
+		sqlInjectionMapper.good3(age);
 	}
 }
diff --git a/java/ql/test/experimental/query-tests/security/CWE-089/src/main/SqlInjectionMapper.java b/java/ql/test/experimental/query-tests/security/CWE-089/src/main/SqlInjectionMapper.java
index 50801558eb8..a39b26a3aea 100644
--- a/java/ql/test/experimental/query-tests/security/CWE-089/src/main/SqlInjectionMapper.java
+++ b/java/ql/test/experimental/query-tests/security/CWE-089/src/main/SqlInjectionMapper.java
@@ -61,9 +61,9 @@ public interface SqlInjectionMapper {
 	void badInsert(String input);
 
 	@Select("select * from user_info where name = #{name} and age = ${age}")
-	String kkbad1(@Param("name") String name, Integer age);
+	String good2(@Param("name") String name, Integer age);
 
 	@Select("select * from user_info where age = #{age}")
-	String kkbad2(@Param("age") String age);
+	String good3(@Param("age") String age);
 
 }

From 42259ef8d1ad5f5e2ee663d65384f6430b96d24e Mon Sep 17 00:00:00 2001
From: Ben Ahmady <32935794+subatoi@users.noreply.github.com>
Date: Thu, 24 Nov 2022 10:10:42 +0000
Subject: [PATCH 0602/1420] Update
 docs/codeql/reusables/kotlin-java-differences.rst

---
 docs/codeql/reusables/kotlin-java-differences.rst | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/docs/codeql/reusables/kotlin-java-differences.rst b/docs/codeql/reusables/kotlin-java-differences.rst
index 07cb95203c2..40e18b60484 100644
--- a/docs/codeql/reusables/kotlin-java-differences.rst
+++ b/docs/codeql/reusables/kotlin-java-differences.rst
@@ -13,7 +13,7 @@ Be careful when you model code elements that don’t exist in Java, such as ``No
 
 In that specific case, you can use the predicate ``Expr.getUnderlyingExpr()``. This goes directly to the underlying ``VarAccess`` to produce a more similar behavior to that in Java.
 
-Nullable elements (`?`) can also produce unexpected behavior. To avoid a `NullPointerException`, Kotlin may inline calls like `expr.toString()` to `String.valueOf(expr)` when `expr` is nullable. Make sure that you write CodeQL around the extracted code, which may not exactly match the code as written in the codebase.
+Nullable elements (``?``) can also produce unexpected behavior. To avoid a ``NullPointerException``, Kotlin may inline calls like ``expr.toString()`` to ``String.valueOf(expr)`` when ``expr`` is nullable. Make sure that you write CodeQL around the extracted code, which may not exactly match the code as written in the codebase.
 
 Another example is that if-else expressions in Kotlin are translated into ``WhenExprs`` in CodeQL, instead of the more typical ``IfStmt`` seen in Java.
 

From 17218fa663373a2d327309204e765d2e10cd1f0a Mon Sep 17 00:00:00 2001
From: Tony Torralba <atorralba@users.noreply.github.com>
Date: Thu, 24 Nov 2022 11:14:16 +0100
Subject: [PATCH 0603/1420] Formatting

---
 .../src/experimental/Security/CWE/CWE-089/MyBatisCommonLib.qll | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/java/ql/src/experimental/Security/CWE/CWE-089/MyBatisCommonLib.qll b/java/ql/src/experimental/Security/CWE/CWE-089/MyBatisCommonLib.qll
index 4d3d77d8b65..0d13340b55d 100644
--- a/java/ql/src/experimental/Security/CWE/CWE-089/MyBatisCommonLib.qll
+++ b/java/ql/src/experimental/Security/CWE/CWE-089/MyBatisCommonLib.qll
@@ -135,7 +135,8 @@ predicate isMybatisXmlOrAnnotationSqlInjection(
               "%}") and
       annotation.getType() instanceof TypeParam and
       ma.getAnArgument() = node.asExpr() and
-      annotation.getTarget() = ma.getMethod().getParameter(node.asExpr().(Argument).getParameterPos())
+      annotation.getTarget() =
+        ma.getMethod().getParameter(node.asExpr().(Argument).getParameterPos())
     )
     or
     // MyBatis default parameter sql injection vulnerabilities.the default parameter form of the method is arg[0...n] or param[1...n].

From 4f8ef13cd8014a1203ec15b9a924f03977b89253 Mon Sep 17 00:00:00 2001
From: Tony Torralba <atorralba@users.noreply.github.com>
Date: Thu, 24 Nov 2022 12:13:46 +0100
Subject: [PATCH 0604/1420] Fix expectation in NSData tests

---
 swift/ql/test/library-tests/dataflow/taint/TaintInline.expected | 1 -
 swift/ql/test/library-tests/dataflow/taint/nsdata.swift         | 2 +-
 2 files changed, 1 insertion(+), 2 deletions(-)

diff --git a/swift/ql/test/library-tests/dataflow/taint/TaintInline.expected b/swift/ql/test/library-tests/dataflow/taint/TaintInline.expected
index 24bd1bc7451..e69de29bb2d 100644
--- a/swift/ql/test/library-tests/dataflow/taint/TaintInline.expected
+++ b/swift/ql/test/library-tests/dataflow/taint/TaintInline.expected
@@ -1 +0,0 @@
-| nsdata.swift:110:45:110:45 | bytes | Unexpected result: tainted=108 |
diff --git a/swift/ql/test/library-tests/dataflow/taint/nsdata.swift b/swift/ql/test/library-tests/dataflow/taint/nsdata.swift
index e737bb108d9..f49dce6679a 100644
--- a/swift/ql/test/library-tests/dataflow/taint/nsdata.swift
+++ b/swift/ql/test/library-tests/dataflow/taint/nsdata.swift
@@ -107,7 +107,7 @@ func test() {
     // ";NSData;true;enumerateBytes(_:);;;Argument[-1];Argument[0].Parameter[0];taint"
     let nsDataTainted17 = source() as! NSData
     nsDataTainted17.enumerateBytes {
-        bytes, byteRange, stop in sink(arg: bytes) // tainted=108
+        bytes, byteRange, stop in sink(arg: bytes) // $ tainted=108
     }
     // ";NSData;true;getBytes(_:);;;Argument[-1];Argument[0];taint",
     let nsDataTainted18 = source() as! NSData

From c6835cd2704cdaa0b4b30e2c6b3c44d28b720daf Mon Sep 17 00:00:00 2001
From: Geoffrey White <40627776+geoffw0@users.noreply.github.com>
Date: Thu, 24 Nov 2022 11:16:56 +0000
Subject: [PATCH 0605/1420] Swift: Update .generated.list.

---
 swift/ql/.generated.list | 1 -
 1 file changed, 1 deletion(-)

diff --git a/swift/ql/.generated.list b/swift/ql/.generated.list
index fd75bc1ade4..a62640aace8 100644
--- a/swift/ql/.generated.list
+++ b/swift/ql/.generated.list
@@ -184,7 +184,6 @@ ql/lib/codeql/swift/elements/expr/OverloadedDeclRefExprConstructor.qll 2cf79b483
 ql/lib/codeql/swift/elements/expr/ParenExprConstructor.qll 6baaa592db57870f5ecd9be632bd3f653c44d72581efd41e8a837916e1590f9e 6f28988d04b2cb69ddcb63fba9ae3166b527803a61c250f97e48ff39a28379f6
 ql/lib/codeql/swift/elements/expr/PointerToPointerExpr.qll 921645a373443d050dbc29b9f6bc4a734163c75aeffce453a4f8334b34077d30 54089de77845f6b0e623c537bc25a010ecf1b5c7630b1b4060d2b378abc07f4e
 ql/lib/codeql/swift/elements/expr/PointerToPointerExprConstructor.qll 95cc8003b9a3b2101afb8f110ec4cbd29e380fc048ee080f5047bcf0e14a06c7 114d487a1bb2cd33b27a9c3a47ad1d7254766e169512642f8b09b9c32cf3dc86
-ql/lib/codeql/swift/elements/expr/PostfixUnaryExpr.qll a67abdf379f04f1aeee0795cd3ebeb28ed8dfe0efad15b128d44cc9e30b32cbd cbb2b2d54c8e316dc71388ea4ff6bb5d0a6204b4e9d9ce2888e1877a54e85e8f
 ql/lib/codeql/swift/elements/expr/PostfixUnaryExprConstructor.qll c26326e2703b9a8b077ea9f132ae86a76b4010a108b8dcde29864f4206096231 70e45fbe365b63226d0132158cdd453e2e00d740a31c1fb0f7bfb3b2dedfd928
 ql/lib/codeql/swift/elements/expr/PrefixUnaryExprConstructor.qll 6d4c915baf460691cc22681154b1129852c26f1bd9fe3e27b4e162f819d934f5 7971698433bc03dbff2fec34426a96a969fab1a5a575aaf91f10044819e16f6d
 ql/lib/codeql/swift/elements/expr/PropertyWrapperValuePlaceholderExpr.qll 35a61a7f68e71165690127b445fff39780028cb6be5e7b5eadaafa8aeb6b2321 f9e32f65e6d453d3fa857a4d3ca19700be1f8ea2f3d13534656bc21a2fc5f0b0

From 4bbc1dc7346507147e77eee576f458c6e8ca29bd Mon Sep 17 00:00:00 2001
From: Tony Torralba <atorralba@users.noreply.github.com>
Date: Thu, 24 Nov 2022 12:34:48 +0100
Subject: [PATCH 0606/1420] Update test expectations

---
 .../MyBatisAnnotationSqlInjection.expected    | 28 +++++++++----------
 1 file changed, 14 insertions(+), 14 deletions(-)

diff --git a/java/ql/test/experimental/query-tests/security/CWE-089/src/main/MyBatisAnnotationSqlInjection.expected b/java/ql/test/experimental/query-tests/security/CWE-089/src/main/MyBatisAnnotationSqlInjection.expected
index 481c8307ac3..1aedc93eb9a 100644
--- a/java/ql/test/experimental/query-tests/security/CWE-089/src/main/MyBatisAnnotationSqlInjection.expected
+++ b/java/ql/test/experimental/query-tests/security/CWE-089/src/main/MyBatisAnnotationSqlInjection.expected
@@ -1,30 +1,30 @@
 edges
 | MybatisSqlInjection.java:62:19:62:43 | name : String | MybatisSqlInjection.java:63:35:63:38 | name : String |
 | MybatisSqlInjection.java:63:35:63:38 | name : String | MybatisSqlInjectionService.java:48:19:48:29 | name : String |
-| MybatisSqlInjection.java:94:21:94:45 | name : String | MybatisSqlInjection.java:95:37:95:40 | name : String |
-| MybatisSqlInjection.java:95:37:95:40 | name : String | MybatisSqlInjectionService.java:76:21:76:31 | name : String |
-| MybatisSqlInjection.java:99:21:99:44 | age : String | MybatisSqlInjection.java:100:37:100:39 | age : String |
-| MybatisSqlInjection.java:100:37:100:39 | age : String | MybatisSqlInjectionService.java:80:21:80:30 | age : String |
+| MybatisSqlInjection.java:94:20:94:44 | name : String | MybatisSqlInjection.java:95:36:95:39 | name : String |
+| MybatisSqlInjection.java:95:36:95:39 | name : String | MybatisSqlInjectionService.java:76:20:76:30 | name : String |
+| MybatisSqlInjection.java:99:20:99:43 | age : String | MybatisSqlInjection.java:100:36:100:38 | age : String |
+| MybatisSqlInjection.java:100:36:100:38 | age : String | MybatisSqlInjectionService.java:80:20:80:29 | age : String |
 | MybatisSqlInjectionService.java:48:19:48:29 | name : String | MybatisSqlInjectionService.java:50:23:50:26 | name : String |
 | MybatisSqlInjectionService.java:50:3:50:9 | hashMap [post update] [<map.value>] : String | MybatisSqlInjectionService.java:51:27:51:33 | hashMap |
 | MybatisSqlInjectionService.java:50:23:50:26 | name : String | MybatisSqlInjectionService.java:50:3:50:9 | hashMap [post update] [<map.value>] : String |
-| MybatisSqlInjectionService.java:76:21:76:31 | name : String | MybatisSqlInjectionService.java:77:29:77:32 | name |
-| MybatisSqlInjectionService.java:80:21:80:30 | age : String | MybatisSqlInjectionService.java:81:29:81:31 | age |
+| MybatisSqlInjectionService.java:76:20:76:30 | name : String | MybatisSqlInjectionService.java:77:28:77:31 | name |
+| MybatisSqlInjectionService.java:80:20:80:29 | age : String | MybatisSqlInjectionService.java:81:28:81:30 | age |
 nodes
 | MybatisSqlInjection.java:62:19:62:43 | name : String | semmle.label | name : String |
 | MybatisSqlInjection.java:63:35:63:38 | name : String | semmle.label | name : String |
-| MybatisSqlInjection.java:94:21:94:45 | name : String | semmle.label | name : String |
-| MybatisSqlInjection.java:95:37:95:40 | name : String | semmle.label | name : String |
-| MybatisSqlInjection.java:99:21:99:44 | age : String | semmle.label | age : String |
-| MybatisSqlInjection.java:100:37:100:39 | age : String | semmle.label | age : String |
+| MybatisSqlInjection.java:94:20:94:44 | name : String | semmle.label | name : String |
+| MybatisSqlInjection.java:95:36:95:39 | name : String | semmle.label | name : String |
+| MybatisSqlInjection.java:99:20:99:43 | age : String | semmle.label | age : String |
+| MybatisSqlInjection.java:100:36:100:38 | age : String | semmle.label | age : String |
 | MybatisSqlInjectionService.java:48:19:48:29 | name : String | semmle.label | name : String |
 | MybatisSqlInjectionService.java:50:3:50:9 | hashMap [post update] [<map.value>] : String | semmle.label | hashMap [post update] [<map.value>] : String |
 | MybatisSqlInjectionService.java:50:23:50:26 | name : String | semmle.label | name : String |
 | MybatisSqlInjectionService.java:51:27:51:33 | hashMap | semmle.label | hashMap |
-| MybatisSqlInjectionService.java:76:21:76:31 | name : String | semmle.label | name : String |
-| MybatisSqlInjectionService.java:77:29:77:32 | name | semmle.label | name |
-| MybatisSqlInjectionService.java:80:21:80:30 | age : String | semmle.label | age : String |
-| MybatisSqlInjectionService.java:81:29:81:31 | age | semmle.label | age |
+| MybatisSqlInjectionService.java:76:20:76:30 | name : String | semmle.label | name : String |
+| MybatisSqlInjectionService.java:77:28:77:31 | name | semmle.label | name |
+| MybatisSqlInjectionService.java:80:20:80:29 | age : String | semmle.label | age : String |
+| MybatisSqlInjectionService.java:81:28:81:30 | age | semmle.label | age |
 subpaths
 #select
 | MybatisSqlInjectionService.java:51:27:51:33 | hashMap | MybatisSqlInjection.java:62:19:62:43 | name : String | MybatisSqlInjectionService.java:51:27:51:33 | hashMap | MyBatis annotation SQL injection might include code from $@ to $@. | MybatisSqlInjection.java:62:19:62:43 | name | this user input | SqlInjectionMapper.java:33:2:33:54 | Select | this SQL operation |

From 22841276502dbe6bac77a618775153833f542d8e Mon Sep 17 00:00:00 2001
From: Tony Torralba <atorralba@users.noreply.github.com>
Date: Tue, 15 Nov 2022 13:18:40 +0100
Subject: [PATCH 0607/1420] Add MaD rows for the Data class

---
 .../swift/frameworks/StandardLibrary/Data.qll |  45 +++-
 .../library-tests/dataflow/taint/data.swift   | 240 ++++++++++++++++--
 .../library-tests/dataflow/taint/string.swift |  24 ++
 3 files changed, 291 insertions(+), 18 deletions(-)

diff --git a/swift/ql/lib/codeql/swift/frameworks/StandardLibrary/Data.qll b/swift/ql/lib/codeql/swift/frameworks/StandardLibrary/Data.qll
index 740fc8874b6..0e27c0824dc 100644
--- a/swift/ql/lib/codeql/swift/frameworks/StandardLibrary/Data.qll
+++ b/swift/ql/lib/codeql/swift/frameworks/StandardLibrary/Data.qll
@@ -1,6 +1,47 @@
 import swift
 private import codeql.swift.dataflow.ExternalFlow
 
-private class DataSummaries extends SummaryModelCsv {
-  override predicate row(string row) { row = ";Data;true;init(_:);;;Argument[0];ReturnValue;taint" }
+private class DataSources extends SourceModelCsv {
+  override predicate row(string row) {
+    row = ";Data;true;init(contentsOf:options:);;;ReturnValue;remote"
+  }
+}
+
+private class DataSummaries extends SummaryModelCsv {
+  override predicate row(string row) {
+    row =
+      [
+        ";Data;true;init(_:);;;Argument[0];ReturnValue;taint",
+        ";Data;true;init(base64Encoded:options:);;;Argument[0];ReturnValue;taint",
+        ";Data;true;init(buffer:);;;Argument[0];ReturnValue;taint",
+        ";Data;true;init(bytes:count:);;;Argument[0];ReturnValue;taint",
+        ";Data;true;init(contentsOf:options:);;;Argument[0];ReturnValue;taint",
+        ";Data;true;init(bytesNoCopy:count:deallocator:);;;Argument[0];ReturnValue;taint",
+        ";Data;true;init(referencing:);;;Argument[0];ReturnValue;taint",
+        ";Data;true;append(_:);;;Argument[0];Argument[-1];taint",
+        ";Data;true;append(_:count:);;;Argument[0];Argument[-1];taint",
+        ";Data;true;append(contentsOf:);;;Argument[0];Argument[-1];taint",
+        ";Data;true;base64EncodedData(options:);;;Argument[-1];ReturnValue;taint",
+        ";Data;true;base64EncodedString(options:);;;Argument[-1];ReturnValue;taint",
+        ";Data;true;compactMap(_:);;;Argument[-1];ReturnValue;taint",
+        ";Data;true;copyBytes(to:);;;Argument[-1];Argument[0];taint",
+        ";Data;true;copyBytes(to:count:);;;Argument[-1];Argument[0];taint",
+        ";Data;true;copyBytes(to:from:);;;Argument[-1];Argument[0];taint",
+        ";Data;true;flatMap(_:);;;Argument[-1];ReturnValue;taint",
+        ";Data;true;insert(_:at:);;;Argument[0];Argument[-1];taint",
+        ";Data;true;insert(contentsOf:at:);;;Argument[0];Argument[-1];taint",
+        ";Data;true;map(_:);;;Argument[-1];ReturnValue;taint",
+        ";Data;true;reduce(into:_:);;;Argument[-1];ReturnValue;taint",
+        ";Data;true;replace(_:with:maxReplacements:);;;Argument[1];Argument[-1];taint",
+        ";Data;true;replaceSubrange(_:with:);;;Argument[1];Argument[-1];taint",
+        ";Data;true;replaceSubrange(_:with:count:);;;Argument[1];Argument[-1];taint",
+        ";Data;true;replacing(_:with:maxReplacements:);;;Argument[1];Argument[-1];taint",
+        ";Data;true;replacing(_:with:subrange:maxReplacements:);;;Argument[1];Argument[-1];taint",
+        ";Data;true;shuffled();;;Argument[-1];ReturnValue;taint",
+        ";Data;true;shuffled(using:);;;Argument[-1];ReturnValue;taint",
+        ";Data;true;sorted(using:);;;Argument[-1];ReturnValue;taint",
+        ";Data;true;trimmingPrefix(_:);;;Argument[-1];ReturnValue;taint",
+        ";Data;true;trimmingPrefix(while:);;;Argument[-1];ReturnValue;taint"
+      ]
+  }
 }
diff --git a/swift/ql/test/library-tests/dataflow/taint/data.swift b/swift/ql/test/library-tests/dataflow/taint/data.swift
index d7ebe600f8a..ba53694cf98 100644
--- a/swift/ql/test/library-tests/dataflow/taint/data.swift
+++ b/swift/ql/test/library-tests/dataflow/taint/data.swift
@@ -1,33 +1,241 @@
+// --- stubs ---
+struct URL {}
 
-class Data
+class NSData {}
+
+protocol SortComparator {
+	associatedtype Compared
+}
+struct Data
 {
+	struct Base64EncodingOptions : OptionSet { let rawValue: Int }
+	struct Base64DecodingOptions : OptionSet { let rawValue: Int }
+	enum Deallocator { case none }
+	struct ReadingOptions : OptionSet { let rawValue: Int }
+	typealias Index = Int
     init<S>(_ elements: S) {}
+	init(base64Encoded: Data, options: Data.Base64DecodingOptions) {}
+	init<SourceType>(buffer: UnsafeBufferPointer<SourceType>) {}
+	init<SourceType>(buffer: UnsafeMutablePointer<SourceType>) {}
+	init(bytes: UnsafeRawPointer, count: Int) {}
+	init(bytesNoCopy: UnsafeRawPointer, count: Int, deallocator: Data.Deallocator) {}
+	init(contentsOf: URL, options: ReadingOptions) {}
+	init(referencing: NSData) {}
+	func append(_: Data) {}
+	func append(_: UInt8) {}
+	func append<SourceType>(_: UnsafeBufferPointer<SourceType>) {}
+	func append(_: UnsafePointer<UInt8>, count: Int) {}
+	func append(contentsOf: [UInt8]) {}
+	func append<S>(contentsOf: S) {}
+	func base64EncodedData(options: Data.Base64EncodingOptions) -> Data { return Data("") }
+	func base64EncodedString(options: Data.Base64EncodingOptions) -> String { return "" }
+	func compactMap<ElementOfResult>(_: (UInt8) -> ElementOfResult) -> [ElementOfResult] { return [] }
+	func copyBytes(to: UnsafeMutableRawBufferPointer) {}
+	func copyBytes(to: UnsafeMutablePointer<UInt8>, count: Int) {}
+	func copyBytes(to: UnsafeMutablePointer<UInt8>, from: Range<Data.Index>) {}
+	func flatMap<SegmentOfResult>(_: (UInt8) -> SegmentOfResult) -> [SegmentOfResult.Element] where SegmentOfResult : Sequence { return [] }
+	func flatMap<ElementOfResult>(_: (UInt8) -> ElementOfResult?) -> [ElementOfResult] { return [] }
+	func insert(_: UInt8, at: Int) {}
+	func insert<C>(contentsOf: C, at: Int) where C : Collection, UInt8 == C.Element {}
+	func map<T>(_: (UInt8) -> T) -> [T] { return [] }
+	func reduce<Result>(into initialResult: Result, _: (inout Result, UInt8) -> ()) -> Result { return initialResult }
+	func replace<C, Replacement>(_: C, with: Replacement, maxReplacements: Int) where C : Collection, Replacement : Collection, UInt8 == C.Element, C.Element == Replacement.Element {}
+	func replaceSubrange(_: Range<Data.Index>, with: Data) {}
+	func replaceSubrange<ByteCollection>(_: Range<Data.Index>, with: ByteCollection) where ByteCollection : Collection, ByteCollection.Element == UInt8 {}
+	func replaceSubrange<SourceType>(_: Range<Data.Index>, with: UnsafeBufferPointer<SourceType>) {}
+	func replaceSubrange(_: Range<Data.Index>, with: UnsafeRawPointer, count: Int) {}
+	func replaceSubrange<C, R>(_: R, with: C) where C : Collection, R : RangeExpression, UInt8 == C.Element, Int == R.Bound {}
+	func replacing<C, Replacement>(_: C, with: Replacement, maxReplacements: Int = .max) -> Data where C : Collection, Replacement : Collection, UInt8 == C.Element, C.Element == Replacement.Element { return Data("") }
+	func replacing<C, Replacement>(_: C, with: Replacement, subrange: Range<Int>, maxReplacements: Int = .max) -> Data where C : Collection, Replacement : Collection, UInt8 == C.Element, C.Element == Replacement.Element { return Data("") }
+	func shuffled() -> [UInt8] { return [] }
+	func shuffled<T>(using: inout T) -> [UInt8] { return [] }
+	func sorted<Comparator>(using: Comparator) -> [UInt8] where Comparator : SortComparator, UInt8 == Comparator.Compared { return [] }
+	func trimmingPrefix<Prefix>(_ prefix: Prefix) -> Data where Prefix : Sequence, UInt8 == Prefix.Element { return Data("") }
+	func trimmingPrefix(while: (UInt8) -> Bool) -> Data { return Data("") }
 }
 
-extension String {
-	struct Encoding {
-		static let utf8 = Encoding()
-	}
+// --- tests ---
 
-	init?(data: Data, encoding: Encoding) { self.init() }
+class UInt8SortCompartor : SortComparator {
+	typealias Compared = UInt8
 }
 
-func source() -> String { return "" }
-func sink(arg: Data) {}
-func sink2(arg: String) {}
+func source() -> Any { return "" }
+func sink(arg: Any) {}
+func rng() -> RandomNumberGenerator? { return nil }
+func cmp() -> UInt8SortCompartor? { return nil }
 
 func taintThroughData() {
+	// ";Data;true;init(_:);;;Argument[0];ReturnValue;taint",
 	let dataClean = Data("123456".utf8)
-	let dataTainted = Data(source().utf8)
+	let dataTainted = Data((source() as! String).utf8)
 	let dataTainted2 = Data(dataTainted)
 
 	sink(arg: dataClean)
-	sink(arg: dataTainted) // $ MISSING: tainted=13
-	sink(arg: dataTainted2) // $ MISSING: tainted=13
+	sink(arg: dataTainted) // $ MISSING: tainted=71
+	sink(arg: dataTainted2) // $ MISSING: tainted=71
 
-	let stringClean = String(data: dataClean, encoding: String.Encoding.utf8)
-	let stringTainted = String(data: dataTainted, encoding: String.Encoding.utf8)
+	// ";Data;true;init(base64Encoded:options:);;;Argument[0];ReturnValue;taint",
+	let dataTainted3 = Data(base64Encoded: source() as! Data, options: [])
+	sink(arg: dataTainted3) // $ tainted=79
+
+	// ";Data;true;init(buffer:);;;Argument[0];ReturnValue;taint",
+	let dataTainted4 = Data(buffer: source() as! UnsafeBufferPointer<UInt8>)
+	sink(arg: dataTainted4)  // $ tainted=83
+	let dataTainted5 = Data(buffer: source() as! UnsafeMutablePointer<UInt8>)
+	sink(arg: dataTainted5)  // $ tainted=85
+
+	// ";Data;true;init(bytes:count:);;;Argument[0];ReturnValue;taint",
+	let dataTainted6 = Data(bytes: source() as! UnsafeRawPointer, count: 0)
+	sink(arg: dataTainted6)  // $ tainted=89
+
+	// ";Data;true;init(bytesNoCopy:count:deallocator:);;;Argument[0];ReturnValue;taint",
+	let dataTainted7 = Data(bytesNoCopy: source() as! UnsafeRawPointer, count: 0, deallocator: Data.Deallocator.none)
+	sink(arg: dataTainted7)  // $ tainted=93
+
+	// ";Data;true;init(contentsOf:options:);;;Argument[0];ReturnValue;taint",
+	let dataTainted8 = Data(contentsOf: source() as! URL, options: [])
+	sink(arg: dataTainted8)  // $ tainted=97
+
+	// ";Data;true;init(referencing:);;;Argument[0];ReturnValue;taint",
+	let dataTainted9 = Data(referencing: source() as! NSData)
+	sink(arg: dataTainted9)  // $ tainted=101
+
+	// ";Data;true;append(_:);;;Argument[0];Argument[-1];taint",
+	let dataTainted10 = Data("")
+	dataTainted10.append(source() as! Data)
+	sink(arg: dataTainted10) // $ tainted=106
+
+	let dataTainted11 = Data("")
+	dataTainted11.append(source() as! UInt8)
+	sink(arg: dataTainted11) // $ tainted=110
+
+	let dataTainted12 = Data("")
+	dataTainted12.append(source() as! UnsafeBufferPointer<UInt8>)
+	sink(arg: dataTainted12) // $ tainted=114
+
+	// ";Data;true;append(_:count:);;;Argument[0];Argument[-1];taint",
+	let dataTainted13 = Data("")
+	dataTainted13.append(source() as! UnsafePointer<UInt8>, count: 0)
+	sink(arg: dataTainted13) // $ tainted=119
+
+	// ";Data;true;append(contentsOf:);;;Argument[0];Argument[-1];taint",
+	let dataTainted14 = Data("")
+	dataTainted14.append(contentsOf: source() as! [UInt8])
+	sink(arg: dataTainted14) // $ tainted=124
+
+	// ";Data;true;base64EncodedData(options:);;;Argument[-1];ReturnValue;taint",
+	let dataTainted15 = source() as! Data
+	sink(arg: dataTainted15.base64EncodedData(options: [])) // $ tainted=128
+
+	// ";Data;true;base64EncodedString(options:);;;Argument[-1];ReturnValue;taint",
+	let dataTainted16 = source() as! Data
+	sink(arg: dataTainted16.base64EncodedString(options: [])) // $ tainted=132
+
+	// ";Data;true;compactMap(_:);;;Argument[-1];ReturnValue;taint",
+	let dataTainted17 = source() as! Data
+	let compactMapped: [Int] = dataTainted17.compactMap { str in Int(str) }
+	sink(arg: compactMapped) // $ tainted=136
+
+	// ";Data;true;copyBytes(to:);;;Argument[-1];Argument[0];taint",
+	let dataTainted18 = source() as! Data
+	let pointerTainted18 = UnsafeMutableRawBufferPointer.allocate(byteCount: 0, alignment: 0)
+	dataTainted18.copyBytes(to: pointerTainted18)
+	sink(arg: pointerTainted18) // $ tainted=141
+
+	// ";Data;true;copyBytes(to:count:);;;Argument[-1];Argument[0];taint",
+	let dataTainted19 = source() as! Data
+	let pointerTainted19 = UnsafeMutablePointer<UInt8>.allocate(capacity: 0)
+	dataTainted19.copyBytes(to: pointerTainted19, count: 0)
+	sink(arg: pointerTainted19) // $ MISSING: tainted=147
+
+	// ";Data;true;copyBytes(to:from:);;;Argument[-1];Argument[0];taint",
+	let dataTainted20 = source() as! Data
+	let pointerTainted20 = UnsafeMutablePointer<UInt8>.allocate(capacity: 0)
+	dataTainted20.copyBytes(to: pointerTainted20, from: 0..<1)
+	sink(arg: pointerTainted20) // $ MISSING: tainted=153
+
+	// ";Data;true;flatMap(_:);;;Argument[-1];ReturnValue;taint",
+	let dataTainted21 = source() as! Data
+	let flatMapped = dataTainted21.flatMap { Array(repeating: $0, count: 0) }
+	sink(arg: flatMapped) // $ tainted=159
+
+	let dataTainted22 = source() as! Data
+	let flatMapped2 = dataTainted22.flatMap { str in Int(str) }
+	sink(arg: flatMapped2) // $ tainted=163
+
+	// ";Data;true;insert(_:at:);;;Argument[0];Argument[-1];taint",
+	let dataTainted23 = Data("")
+	dataTainted23.insert(source() as! UInt8, at: 0)
+	sink(arg: dataTainted23) // $ tainted=169
+
+	// ";Data;true;insert(contentsOf:at:);;;Argument[0];Argument[-1];taint",
+	let dataTainted24 = Data("")
+	dataTainted24.insert(contentsOf: source() as! [UInt8], at: 0)
+	sink(arg: dataTainted24) // $ tainted=174
+
+	// ";Data;true;map(_:);;;Argument[-1];ReturnValue;taint",
+	let dataTainted25 = source() as! Data
+	let mapped = dataTainted25.map { $0 }
+	sink(arg: mapped) // $ tainted=178
+
+	// ";Data;true;reduce(into:_:);;;Argument[-1];ReturnValue;taint",
+	let dataTainted26 = source() as! Data
+	let reduced = dataTainted26.reduce(into: [:]) { c, i in c[i, default: 0] += 1 }
+	sink(arg: reduced) // $ tainted=183
+
+	// ";Data;true;replace(_:with:maxReplacements:);;;Argument[1];Argument[-1];taint",
+	let dataTainted27 = Data("")
+	dataTainted27.replace([0], with: source() as! [UInt8], maxReplacements: .max)
+	sink(arg: dataTainted27) // $ tainted=189
+
+	// ";Data;true;replaceSubrange(_:with:);;;Argument[1];Argument[-1];taint",
+	let dataTainted28 = Data("")
+	dataTainted28.replaceSubrange(1..<3, with: source() as! Data)
+	sink(arg: dataTainted28) // $ tainted=194
+
+	let dataTainted29 = Data("")
+	dataTainted29.replaceSubrange(1..<3, with: source() as! [UInt8])
+	sink(arg: dataTainted29) // $ tainted=198
+
+	let dataTainted30 = Data("")
+	dataTainted30.replaceSubrange(1..<3, with: source() as! UnsafeBufferPointer<UInt8>)
+	sink(arg: dataTainted30) // $ tainted=202
+
+	// ";Data;true;replaceSubrange(_:with:count:);;;Argument[1];Argument[-1];taint",
+	let dataTainted31 = Data("")
+	dataTainted31.replaceSubrange(1..<3, with: source() as! UnsafeRawPointer, count: 0)
+	sink(arg: dataTainted31) // $ tainted=207
+
+	// ";Data;true;replacing(_:with:maxReplacements:);;;Argument[1];Argument[-1];taint",
+	let dataTainted32 = Data("")
+	dataTainted32.replacing([0], with: source() as! [UInt8], maxReplacements: 0)
+	sink(arg: dataTainted32) // $ tainted=212
+
+	// ";Data;true;replacing(_:with:subrange:maxReplacements:);;;Argument[1];Argument[-1];taint",
+	let dataTainted33 = Data("")
+	dataTainted33.replacing([0], with: source() as! [UInt8], subrange: 1..<3, maxReplacements: 0)
+	sink(arg: dataTainted33) // $ tainted=217
+
+	// ";Data;true;shuffled();;;Argument[-1];ReturnValue;taint",
+	let dataTainted34 = source() as! Data
+	sink(arg: dataTainted34.shuffled()) // $ tainted=221
+	
+	// ";Data;true;shuffled(using:);;;Argument[-1];ReturnValue;taint",
+	let dataTainted35 = source() as! Data
+	var rng = rng()!
+	sink(arg: dataTainted35.shuffled(using: &rng)) // $ tainted=225
+
+	// ";Data;true;sorted(using:);;;Argument[-1];ReturnValue;taint",
+	let dataTainted36 = source() as! Data
+	sink(arg: dataTainted36.sorted(using: cmp()!)) // $ tainted=230
+
+	// ";Data;true;trimmingPrefix(_:);;;Argument[-1];ReturnValue;taint",
+	let dataTainted37 = source() as! Data
+	sink(arg: dataTainted37.trimmingPrefix([0])) // $ tainted=234
+
+	// ";Data;true;trimmingPrefix(while:);;;Argument[-1];ReturnValue;taint"
+	let dataTainted38 = source() as! Data
+	sink(arg: dataTainted38.trimmingPrefix { _ in false }) // $ tainted=238
 
-	sink2(arg: stringClean!) // $ MISSING: tainted=13
-	sink2(arg: stringTainted!) // $ MISSING: tainted=13
 }
diff --git a/swift/ql/test/library-tests/dataflow/taint/string.swift b/swift/ql/test/library-tests/dataflow/taint/string.swift
index 6f5e5876a65..5b54a8dc444 100644
--- a/swift/ql/test/library-tests/dataflow/taint/string.swift
+++ b/swift/ql/test/library-tests/dataflow/taint/string.swift
@@ -87,3 +87,27 @@ func taintThroughStringOperations() {
   sink(arg: clean.debugDescription)
   sink(arg: tainted.debugDescription) // $ MISSING: tainted=74
 }
+
+class Data
+{
+    init<S>(_ elements: S) {}
+}
+
+extension String {
+	struct Encoding {
+		static let utf8 = Encoding()
+	}
+
+	init?(data: Data, encoding: Encoding) { self.init() }
+}
+
+
+func source3() -> Data { return Data("") }
+
+func taintThroughData() {
+  let stringClean = String(data: Data(""), encoding: String.Encoding.utf8)
+  let stringTainted = String(data: source3(), encoding: String.Encoding.utf8)
+
+	sink(arg: stringClean!)
+	sink(arg: stringTainted!) // $ MISSING: tainted=100
+}

From d6b14a13952337702f5c2c631fdf7699daa43d2c Mon Sep 17 00:00:00 2001
From: Tony Torralba <atorralba@users.noreply.github.com>
Date: Mon, 21 Nov 2022 15:45:31 +0100
Subject: [PATCH 0608/1420] Update test expectations

---
 .../dataflow/taint/LocalTaint.expected        |   1 +
 .../dataflow/taint/Taint.expected             | 403 ++++++++++++++++++
 2 files changed, 404 insertions(+)

diff --git a/swift/ql/test/library-tests/dataflow/taint/LocalTaint.expected b/swift/ql/test/library-tests/dataflow/taint/LocalTaint.expected
index e2c893738d3..9e3f081261c 100644
--- a/swift/ql/test/library-tests/dataflow/taint/LocalTaint.expected
+++ b/swift/ql/test/library-tests/dataflow/taint/LocalTaint.expected
@@ -1,6 +1,7 @@
 | nsdata.swift:139:15:139:15 | nsDataTainted24 | nsdata.swift:139:15:139:31 | .bytes |
 | nsdata.swift:140:15:140:15 | nsDataTainted24 | nsdata.swift:140:15:140:31 | .description |
 | nsmutabledata.swift:49:15:49:15 | nsMutableDataTainted6 | nsmutabledata.swift:49:15:49:37 | .mutableBytes |
+| data.swift:184:58:184:58 | &... | data.swift:184:58:184:73 | ...[...] |
 | string.swift:7:13:7:13 |  | string.swift:7:13:7:13 | [post]  |
 | string.swift:7:13:7:13 |  | string.swift:7:14:7:14 | [post] &... |
 | string.swift:7:13:7:13 | TapExpr | string.swift:7:13:7:13 | "..." |
diff --git a/swift/ql/test/library-tests/dataflow/taint/Taint.expected b/swift/ql/test/library-tests/dataflow/taint/Taint.expected
index 38c3a209deb..9430f377bef 100644
--- a/swift/ql/test/library-tests/dataflow/taint/Taint.expected
+++ b/swift/ql/test/library-tests/dataflow/taint/Taint.expected
@@ -1,5 +1,146 @@
 edges
 | file://:0:0:0:0 | [summary] to write: argument 0.parameter 0 in enumerateBytes(_:) :  | nsdata.swift:110:9:110:9 | bytes :  |
+| data.swift:17:2:17:66 | [summary param] 0 in init(base64Encoded:options:) :  | file://:0:0:0:0 | [summary] to write: return (return) in init(base64Encoded:options:) :  |
+| data.swift:18:2:18:61 | [summary param] 0 in init(buffer:) :  | file://:0:0:0:0 | [summary] to write: return (return) in init(buffer:) :  |
+| data.swift:19:2:19:62 | [summary param] 0 in init(buffer:) :  | file://:0:0:0:0 | [summary] to write: return (return) in init(buffer:) :  |
+| data.swift:20:2:20:45 | [summary param] 0 in init(bytes:count:) :  | file://:0:0:0:0 | [summary] to write: return (return) in init(bytes:count:) :  |
+| data.swift:21:2:21:82 | [summary param] 0 in init(bytesNoCopy:count:deallocator:) :  | file://:0:0:0:0 | [summary] to write: return (return) in init(bytesNoCopy:count:deallocator:) :  |
+| data.swift:22:2:22:50 | [summary param] 0 in init(contentsOf:options:) :  | file://:0:0:0:0 | [summary] to write: return (return) in init(contentsOf:options:) :  |
+| data.swift:23:2:23:29 | [summary param] 0 in init(referencing:) :  | file://:0:0:0:0 | [summary] to write: return (return) in init(referencing:) :  |
+| data.swift:24:2:24:24 | [summary param] 0 in append(_:) :  | file://:0:0:0:0 | [summary] to write: argument this in append(_:) :  |
+| data.swift:25:2:25:25 | [summary param] 0 in append(_:) :  | file://:0:0:0:0 | [summary] to write: argument this in append(_:) :  |
+| data.swift:26:2:26:63 | [summary param] 0 in append(_:) :  | file://:0:0:0:0 | [summary] to write: argument this in append(_:) :  |
+| data.swift:27:2:27:52 | [summary param] 0 in append(_:count:) :  | file://:0:0:0:0 | [summary] to write: argument this in append(_:count:) :  |
+| data.swift:28:2:28:36 | [summary param] 0 in append(contentsOf:) :  | file://:0:0:0:0 | [summary] to write: argument this in append(contentsOf:) :  |
+| data.swift:30:2:30:88 | [summary param] this in base64EncodedData(options:) :  | file://:0:0:0:0 | [summary] to write: return (return) in base64EncodedData(options:) :  |
+| data.swift:31:2:31:86 | [summary param] this in base64EncodedString(options:) :  | file://:0:0:0:0 | [summary] to write: return (return) in base64EncodedString(options:) :  |
+| data.swift:32:2:32:99 | [summary param] this in compactMap(_:) :  | file://:0:0:0:0 | [summary] to write: return (return) in compactMap(_:) :  |
+| data.swift:33:2:33:53 | [summary param] this in copyBytes(to:) :  | file://:0:0:0:0 | [summary] to write: argument 0 in copyBytes(to:) :  |
+| data.swift:36:2:36:137 | [summary param] this in flatMap(_:) :  | file://:0:0:0:0 | [summary] to write: return (return) in flatMap(_:) :  |
+| data.swift:37:2:37:97 | [summary param] this in flatMap(_:) :  | file://:0:0:0:0 | [summary] to write: return (return) in flatMap(_:) :  |
+| data.swift:38:2:38:34 | [summary param] 0 in insert(_:at:) :  | file://:0:0:0:0 | [summary] to write: argument this in insert(_:at:) :  |
+| data.swift:39:2:39:83 | [summary param] 0 in insert(contentsOf:at:) :  | file://:0:0:0:0 | [summary] to write: argument this in insert(contentsOf:at:) :  |
+| data.swift:40:2:40:50 | [summary param] this in map(_:) :  | file://:0:0:0:0 | [summary] to write: return (return) in map(_:) :  |
+| data.swift:41:2:41:115 | [summary param] this in reduce(into:_:) :  | file://:0:0:0:0 | [summary] to write: return (return) in reduce(into:_:) :  |
+| data.swift:42:2:42:180 | [summary param] 1 in replace(_:with:maxReplacements:) :  | file://:0:0:0:0 | [summary] to write: argument this in replace(_:with:maxReplacements:) :  |
+| data.swift:43:2:43:58 | [summary param] 1 in replaceSubrange(_:with:) :  | file://:0:0:0:0 | [summary] to write: argument this in replaceSubrange(_:with:) :  |
+| data.swift:44:2:44:151 | [summary param] 1 in replaceSubrange(_:with:) :  | file://:0:0:0:0 | [summary] to write: argument this in replaceSubrange(_:with:) :  |
+| data.swift:46:2:46:82 | [summary param] 1 in replaceSubrange(_:with:count:) :  | file://:0:0:0:0 | [summary] to write: argument this in replaceSubrange(_:with:count:) :  |
+| data.swift:48:2:48:214 | [summary param] 1 in replacing(_:with:maxReplacements:) :  | file://:0:0:0:0 | [summary] to write: argument this in replacing(_:with:maxReplacements:) :  |
+| data.swift:49:2:49:236 | [summary param] 1 in replacing(_:with:subrange:maxReplacements:) :  | file://:0:0:0:0 | [summary] to write: argument this in replacing(_:with:subrange:maxReplacements:) :  |
+| data.swift:50:2:50:41 | [summary param] this in shuffled() :  | file://:0:0:0:0 | [summary] to write: return (return) in shuffled() :  |
+| data.swift:51:2:51:58 | [summary param] this in shuffled(using:) :  | file://:0:0:0:0 | [summary] to write: return (return) in shuffled(using:) :  |
+| data.swift:52:2:52:132 | [summary param] this in sorted(using:) :  | file://:0:0:0:0 | [summary] to write: return (return) in sorted(using:) :  |
+| data.swift:53:2:53:123 | [summary param] this in trimmingPrefix(_:) :  | file://:0:0:0:0 | [summary] to write: return (return) in trimmingPrefix(_:) :  |
+| data.swift:54:2:54:72 | [summary param] this in trimmingPrefix(while:) :  | file://:0:0:0:0 | [summary] to write: return (return) in trimmingPrefix(while:) :  |
+| data.swift:79:21:79:71 | call to init(base64Encoded:options:) :  | data.swift:80:12:80:12 | dataTainted3 |
+| data.swift:79:41:79:48 | call to source() :  | data.swift:17:2:17:66 | [summary param] 0 in init(base64Encoded:options:) :  |
+| data.swift:79:41:79:48 | call to source() :  | data.swift:79:21:79:71 | call to init(base64Encoded:options:) :  |
+| data.swift:83:21:83:73 | call to init(buffer:) :  | data.swift:84:12:84:12 | dataTainted4 |
+| data.swift:83:34:83:41 | call to source() :  | data.swift:18:2:18:61 | [summary param] 0 in init(buffer:) :  |
+| data.swift:83:34:83:41 | call to source() :  | data.swift:83:21:83:73 | call to init(buffer:) :  |
+| data.swift:85:21:85:74 | call to init(buffer:) :  | data.swift:86:12:86:12 | dataTainted5 |
+| data.swift:85:34:85:41 | call to source() :  | data.swift:19:2:19:62 | [summary param] 0 in init(buffer:) :  |
+| data.swift:85:34:85:41 | call to source() :  | data.swift:85:21:85:74 | call to init(buffer:) :  |
+| data.swift:89:21:89:72 | call to init(bytes:count:) :  | data.swift:90:12:90:12 | dataTainted6 |
+| data.swift:89:33:89:40 | call to source() :  | data.swift:20:2:20:45 | [summary param] 0 in init(bytes:count:) :  |
+| data.swift:89:33:89:40 | call to source() :  | data.swift:89:21:89:72 | call to init(bytes:count:) :  |
+| data.swift:93:21:93:114 | call to init(bytesNoCopy:count:deallocator:) :  | data.swift:94:12:94:12 | dataTainted7 |
+| data.swift:93:39:93:46 | call to source() :  | data.swift:21:2:21:82 | [summary param] 0 in init(bytesNoCopy:count:deallocator:) :  |
+| data.swift:93:39:93:46 | call to source() :  | data.swift:93:21:93:114 | call to init(bytesNoCopy:count:deallocator:) :  |
+| data.swift:97:21:97:67 | call to init(contentsOf:options:) :  | data.swift:98:12:98:12 | dataTainted8 |
+| data.swift:97:38:97:45 | call to source() :  | data.swift:22:2:22:50 | [summary param] 0 in init(contentsOf:options:) :  |
+| data.swift:97:38:97:45 | call to source() :  | data.swift:97:21:97:67 | call to init(contentsOf:options:) :  |
+| data.swift:101:21:101:58 | call to init(referencing:) :  | data.swift:102:12:102:12 | dataTainted9 |
+| data.swift:101:39:101:46 | call to source() :  | data.swift:23:2:23:29 | [summary param] 0 in init(referencing:) :  |
+| data.swift:101:39:101:46 | call to source() :  | data.swift:101:21:101:58 | call to init(referencing:) :  |
+| data.swift:106:2:106:2 | [post] dataTainted10 :  | data.swift:107:12:107:12 | dataTainted10 |
+| data.swift:106:23:106:30 | call to source() :  | data.swift:24:2:24:24 | [summary param] 0 in append(_:) :  |
+| data.swift:106:23:106:30 | call to source() :  | data.swift:106:2:106:2 | [post] dataTainted10 :  |
+| data.swift:110:2:110:2 | [post] dataTainted11 :  | data.swift:111:12:111:12 | dataTainted11 |
+| data.swift:110:23:110:30 | call to source() :  | data.swift:25:2:25:25 | [summary param] 0 in append(_:) :  |
+| data.swift:110:23:110:30 | call to source() :  | data.swift:110:2:110:2 | [post] dataTainted11 :  |
+| data.swift:114:2:114:2 | [post] dataTainted12 :  | data.swift:115:12:115:12 | dataTainted12 |
+| data.swift:114:23:114:30 | call to source() :  | data.swift:26:2:26:63 | [summary param] 0 in append(_:) :  |
+| data.swift:114:23:114:30 | call to source() :  | data.swift:114:2:114:2 | [post] dataTainted12 :  |
+| data.swift:119:2:119:2 | [post] dataTainted13 :  | data.swift:120:12:120:12 | dataTainted13 |
+| data.swift:119:23:119:30 | call to source() :  | data.swift:27:2:27:52 | [summary param] 0 in append(_:count:) :  |
+| data.swift:119:23:119:30 | call to source() :  | data.swift:119:2:119:2 | [post] dataTainted13 :  |
+| data.swift:124:2:124:2 | [post] dataTainted14 :  | data.swift:125:12:125:12 | dataTainted14 |
+| data.swift:124:35:124:42 | call to source() :  | data.swift:28:2:28:36 | [summary param] 0 in append(contentsOf:) :  |
+| data.swift:124:35:124:42 | call to source() :  | data.swift:124:2:124:2 | [post] dataTainted14 :  |
+| data.swift:128:22:128:29 | call to source() :  | data.swift:129:12:129:12 | dataTainted15 :  |
+| data.swift:129:12:129:12 | dataTainted15 :  | data.swift:30:2:30:88 | [summary param] this in base64EncodedData(options:) :  |
+| data.swift:129:12:129:12 | dataTainted15 :  | data.swift:129:12:129:55 | call to base64EncodedData(options:) |
+| data.swift:132:22:132:29 | call to source() :  | data.swift:133:12:133:12 | dataTainted16 :  |
+| data.swift:133:12:133:12 | dataTainted16 :  | data.swift:31:2:31:86 | [summary param] this in base64EncodedString(options:) :  |
+| data.swift:133:12:133:12 | dataTainted16 :  | data.swift:133:12:133:57 | call to base64EncodedString(options:) |
+| data.swift:136:22:136:29 | call to source() :  | data.swift:137:29:137:29 | dataTainted17 :  |
+| data.swift:137:29:137:29 | dataTainted17 :  | data.swift:32:2:32:99 | [summary param] this in compactMap(_:) :  |
+| data.swift:137:29:137:29 | dataTainted17 :  | data.swift:137:29:137:72 | call to compactMap(_:) :  |
+| data.swift:137:29:137:72 | call to compactMap(_:) :  | data.swift:138:12:138:12 | compactMapped |
+| data.swift:141:22:141:29 | call to source() :  | data.swift:143:2:143:2 | dataTainted18 :  |
+| data.swift:143:2:143:2 | dataTainted18 :  | data.swift:33:2:33:53 | [summary param] this in copyBytes(to:) :  |
+| data.swift:143:2:143:2 | dataTainted18 :  | data.swift:143:30:143:30 | [post] pointerTainted18 :  |
+| data.swift:143:30:143:30 | [post] pointerTainted18 :  | data.swift:144:12:144:12 | pointerTainted18 |
+| data.swift:159:22:159:29 | call to source() :  | data.swift:160:19:160:19 | dataTainted21 :  |
+| data.swift:160:19:160:19 | dataTainted21 :  | data.swift:36:2:36:137 | [summary param] this in flatMap(_:) :  |
+| data.swift:160:19:160:19 | dataTainted21 :  | data.swift:160:19:160:74 | call to flatMap(_:) :  |
+| data.swift:160:19:160:74 | call to flatMap(_:) :  | data.swift:161:12:161:12 | flatMapped |
+| data.swift:163:22:163:29 | call to source() :  | data.swift:164:20:164:20 | dataTainted22 :  |
+| data.swift:164:20:164:20 | dataTainted22 :  | data.swift:37:2:37:97 | [summary param] this in flatMap(_:) :  |
+| data.swift:164:20:164:20 | dataTainted22 :  | data.swift:164:20:164:60 | call to flatMap(_:) :  |
+| data.swift:164:20:164:60 | call to flatMap(_:) :  | data.swift:165:12:165:12 | flatMapped2 |
+| data.swift:169:2:169:2 | [post] dataTainted23 :  | data.swift:170:12:170:12 | dataTainted23 |
+| data.swift:169:23:169:30 | call to source() :  | data.swift:38:2:38:34 | [summary param] 0 in insert(_:at:) :  |
+| data.swift:169:23:169:30 | call to source() :  | data.swift:169:2:169:2 | [post] dataTainted23 :  |
+| data.swift:174:2:174:2 | [post] dataTainted24 :  | data.swift:175:12:175:12 | dataTainted24 |
+| data.swift:174:35:174:42 | call to source() :  | data.swift:39:2:39:83 | [summary param] 0 in insert(contentsOf:at:) :  |
+| data.swift:174:35:174:42 | call to source() :  | data.swift:174:2:174:2 | [post] dataTainted24 :  |
+| data.swift:178:22:178:29 | call to source() :  | data.swift:179:15:179:15 | dataTainted25 :  |
+| data.swift:179:15:179:15 | dataTainted25 :  | data.swift:40:2:40:50 | [summary param] this in map(_:) :  |
+| data.swift:179:15:179:15 | dataTainted25 :  | data.swift:179:15:179:38 | call to map(_:) :  |
+| data.swift:179:15:179:38 | call to map(_:) :  | data.swift:180:12:180:12 | mapped |
+| data.swift:183:22:183:29 | call to source() :  | data.swift:184:16:184:16 | dataTainted26 :  |
+| data.swift:184:16:184:16 | dataTainted26 :  | data.swift:41:2:41:115 | [summary param] this in reduce(into:_:) :  |
+| data.swift:184:16:184:16 | dataTainted26 :  | data.swift:184:16:184:80 | call to reduce(into:_:) :  |
+| data.swift:184:16:184:80 | call to reduce(into:_:) :  | data.swift:185:12:185:12 | reduced |
+| data.swift:189:2:189:2 | [post] dataTainted27 :  | data.swift:190:12:190:12 | dataTainted27 |
+| data.swift:189:35:189:42 | call to source() :  | data.swift:42:2:42:180 | [summary param] 1 in replace(_:with:maxReplacements:) :  |
+| data.swift:189:35:189:42 | call to source() :  | data.swift:189:2:189:2 | [post] dataTainted27 :  |
+| data.swift:194:2:194:2 | [post] dataTainted28 :  | data.swift:195:12:195:12 | dataTainted28 |
+| data.swift:194:45:194:52 | call to source() :  | data.swift:43:2:43:58 | [summary param] 1 in replaceSubrange(_:with:) :  |
+| data.swift:194:45:194:52 | call to source() :  | data.swift:194:2:194:2 | [post] dataTainted28 :  |
+| data.swift:198:2:198:2 | [post] dataTainted29 :  | data.swift:199:12:199:12 | dataTainted29 |
+| data.swift:198:45:198:52 | call to source() :  | data.swift:44:2:44:151 | [summary param] 1 in replaceSubrange(_:with:) :  |
+| data.swift:198:45:198:52 | call to source() :  | data.swift:198:2:198:2 | [post] dataTainted29 :  |
+| data.swift:202:2:202:2 | [post] dataTainted30 :  | data.swift:203:12:203:12 | dataTainted30 |
+| data.swift:202:45:202:52 | call to source() :  | data.swift:44:2:44:151 | [summary param] 1 in replaceSubrange(_:with:) :  |
+| data.swift:202:45:202:52 | call to source() :  | data.swift:202:2:202:2 | [post] dataTainted30 :  |
+| data.swift:207:2:207:2 | [post] dataTainted31 :  | data.swift:208:12:208:12 | dataTainted31 |
+| data.swift:207:45:207:52 | call to source() :  | data.swift:46:2:46:82 | [summary param] 1 in replaceSubrange(_:with:count:) :  |
+| data.swift:207:45:207:52 | call to source() :  | data.swift:207:2:207:2 | [post] dataTainted31 :  |
+| data.swift:212:2:212:2 | [post] dataTainted32 :  | data.swift:213:12:213:12 | dataTainted32 |
+| data.swift:212:37:212:44 | call to source() :  | data.swift:48:2:48:214 | [summary param] 1 in replacing(_:with:maxReplacements:) :  |
+| data.swift:212:37:212:44 | call to source() :  | data.swift:212:2:212:2 | [post] dataTainted32 :  |
+| data.swift:217:2:217:2 | [post] dataTainted33 :  | data.swift:218:12:218:12 | dataTainted33 |
+| data.swift:217:37:217:44 | call to source() :  | data.swift:49:2:49:236 | [summary param] 1 in replacing(_:with:subrange:maxReplacements:) :  |
+| data.swift:217:37:217:44 | call to source() :  | data.swift:217:2:217:2 | [post] dataTainted33 :  |
+| data.swift:221:22:221:29 | call to source() :  | data.swift:222:12:222:12 | dataTainted34 :  |
+| data.swift:222:12:222:12 | dataTainted34 :  | data.swift:50:2:50:41 | [summary param] this in shuffled() :  |
+| data.swift:222:12:222:12 | dataTainted34 :  | data.swift:222:12:222:35 | call to shuffled() |
+| data.swift:225:22:225:29 | call to source() :  | data.swift:227:12:227:12 | dataTainted35 :  |
+| data.swift:227:12:227:12 | dataTainted35 :  | data.swift:51:2:51:58 | [summary param] this in shuffled(using:) :  |
+| data.swift:227:12:227:12 | dataTainted35 :  | data.swift:227:12:227:46 | call to shuffled(using:) |
+| data.swift:230:22:230:29 | call to source() :  | data.swift:231:12:231:12 | dataTainted36 :  |
+| data.swift:231:12:231:12 | dataTainted36 :  | data.swift:52:2:52:132 | [summary param] this in sorted(using:) :  |
+| data.swift:231:12:231:12 | dataTainted36 :  | data.swift:231:12:231:46 | call to sorted(using:) |
+| data.swift:234:22:234:29 | call to source() :  | data.swift:235:12:235:12 | dataTainted37 :  |
+| data.swift:235:12:235:12 | dataTainted37 :  | data.swift:53:2:53:123 | [summary param] this in trimmingPrefix(_:) :  |
+| data.swift:235:12:235:12 | dataTainted37 :  | data.swift:235:12:235:44 | call to trimmingPrefix(_:) |
+| data.swift:238:22:238:29 | call to source() :  | data.swift:239:12:239:12 | dataTainted38 :  |
+| data.swift:239:12:239:12 | dataTainted38 :  | data.swift:54:2:54:72 | [summary param] this in trimmingPrefix(while:) :  |
+| data.swift:239:12:239:12 | dataTainted38 :  | data.swift:239:12:239:54 | call to trimmingPrefix(while:) |
 | file://:0:0:0:0 | [summary] to write: argument 1.parameter 0 in dataTask(with:completionHandler:) :  | url.swift:120:61:120:61 | data :  |
 | nsdata.swift:22:9:22:9 | self :  | file://:0:0:0:0 | .bytes :  |
 | nsdata.swift:23:9:23:9 | self :  | file://:0:0:0:0 | .description :  |
@@ -381,6 +522,7 @@ edges
 | webview.swift:97:17:97:17 | s :  | webview.swift:44:5:44:48 | [summary param] 0 in setValue(_:forProperty:) :  |
 | webview.swift:97:17:97:17 | s :  | webview.swift:97:5:97:5 | [post] v3 :  |
 nodes
+<<<<<<< HEAD
 | file://:0:0:0:0 | .bytes :  | semmle.label | .bytes :  |
 | file://:0:0:0:0 | .description :  | semmle.label | .description :  |
 | file://:0:0:0:0 | .mutableBytes :  | semmle.label | .mutableBytes :  |
@@ -395,11 +537,171 @@ nodes
 | file://:0:0:0:0 | [summary] to write: argument this in replaceBytes(in:withBytes:) :  | semmle.label | [summary] to write: argument this in replaceBytes(in:withBytes:) :  |
 | file://:0:0:0:0 | [summary] to write: argument this in replaceBytes(in:withBytes:length:) :  | semmle.label | [summary] to write: argument this in replaceBytes(in:withBytes:length:) :  |
 | file://:0:0:0:0 | [summary] to write: argument this in setData(_:) :  | semmle.label | [summary] to write: argument this in setData(_:) :  |
+=======
+| data.swift:17:2:17:66 | [summary param] 0 in init(base64Encoded:options:) :  | semmle.label | [summary param] 0 in init(base64Encoded:options:) :  |
+| data.swift:18:2:18:61 | [summary param] 0 in init(buffer:) :  | semmle.label | [summary param] 0 in init(buffer:) :  |
+| data.swift:19:2:19:62 | [summary param] 0 in init(buffer:) :  | semmle.label | [summary param] 0 in init(buffer:) :  |
+| data.swift:20:2:20:45 | [summary param] 0 in init(bytes:count:) :  | semmle.label | [summary param] 0 in init(bytes:count:) :  |
+| data.swift:21:2:21:82 | [summary param] 0 in init(bytesNoCopy:count:deallocator:) :  | semmle.label | [summary param] 0 in init(bytesNoCopy:count:deallocator:) :  |
+| data.swift:22:2:22:50 | [summary param] 0 in init(contentsOf:options:) :  | semmle.label | [summary param] 0 in init(contentsOf:options:) :  |
+| data.swift:23:2:23:29 | [summary param] 0 in init(referencing:) :  | semmle.label | [summary param] 0 in init(referencing:) :  |
+| data.swift:24:2:24:24 | [summary param] 0 in append(_:) :  | semmle.label | [summary param] 0 in append(_:) :  |
+| data.swift:25:2:25:25 | [summary param] 0 in append(_:) :  | semmle.label | [summary param] 0 in append(_:) :  |
+| data.swift:26:2:26:63 | [summary param] 0 in append(_:) :  | semmle.label | [summary param] 0 in append(_:) :  |
+| data.swift:27:2:27:52 | [summary param] 0 in append(_:count:) :  | semmle.label | [summary param] 0 in append(_:count:) :  |
+| data.swift:28:2:28:36 | [summary param] 0 in append(contentsOf:) :  | semmle.label | [summary param] 0 in append(contentsOf:) :  |
+| data.swift:30:2:30:88 | [summary param] this in base64EncodedData(options:) :  | semmle.label | [summary param] this in base64EncodedData(options:) :  |
+| data.swift:31:2:31:86 | [summary param] this in base64EncodedString(options:) :  | semmle.label | [summary param] this in base64EncodedString(options:) :  |
+| data.swift:32:2:32:99 | [summary param] this in compactMap(_:) :  | semmle.label | [summary param] this in compactMap(_:) :  |
+| data.swift:33:2:33:53 | [summary param] this in copyBytes(to:) :  | semmle.label | [summary param] this in copyBytes(to:) :  |
+| data.swift:36:2:36:137 | [summary param] this in flatMap(_:) :  | semmle.label | [summary param] this in flatMap(_:) :  |
+| data.swift:37:2:37:97 | [summary param] this in flatMap(_:) :  | semmle.label | [summary param] this in flatMap(_:) :  |
+| data.swift:38:2:38:34 | [summary param] 0 in insert(_:at:) :  | semmle.label | [summary param] 0 in insert(_:at:) :  |
+| data.swift:39:2:39:83 | [summary param] 0 in insert(contentsOf:at:) :  | semmle.label | [summary param] 0 in insert(contentsOf:at:) :  |
+| data.swift:40:2:40:50 | [summary param] this in map(_:) :  | semmle.label | [summary param] this in map(_:) :  |
+| data.swift:41:2:41:115 | [summary param] this in reduce(into:_:) :  | semmle.label | [summary param] this in reduce(into:_:) :  |
+| data.swift:42:2:42:180 | [summary param] 1 in replace(_:with:maxReplacements:) :  | semmle.label | [summary param] 1 in replace(_:with:maxReplacements:) :  |
+| data.swift:43:2:43:58 | [summary param] 1 in replaceSubrange(_:with:) :  | semmle.label | [summary param] 1 in replaceSubrange(_:with:) :  |
+| data.swift:44:2:44:151 | [summary param] 1 in replaceSubrange(_:with:) :  | semmle.label | [summary param] 1 in replaceSubrange(_:with:) :  |
+| data.swift:46:2:46:82 | [summary param] 1 in replaceSubrange(_:with:count:) :  | semmle.label | [summary param] 1 in replaceSubrange(_:with:count:) :  |
+| data.swift:48:2:48:214 | [summary param] 1 in replacing(_:with:maxReplacements:) :  | semmle.label | [summary param] 1 in replacing(_:with:maxReplacements:) :  |
+| data.swift:49:2:49:236 | [summary param] 1 in replacing(_:with:subrange:maxReplacements:) :  | semmle.label | [summary param] 1 in replacing(_:with:subrange:maxReplacements:) :  |
+| data.swift:50:2:50:41 | [summary param] this in shuffled() :  | semmle.label | [summary param] this in shuffled() :  |
+| data.swift:51:2:51:58 | [summary param] this in shuffled(using:) :  | semmle.label | [summary param] this in shuffled(using:) :  |
+| data.swift:52:2:52:132 | [summary param] this in sorted(using:) :  | semmle.label | [summary param] this in sorted(using:) :  |
+| data.swift:53:2:53:123 | [summary param] this in trimmingPrefix(_:) :  | semmle.label | [summary param] this in trimmingPrefix(_:) :  |
+| data.swift:54:2:54:72 | [summary param] this in trimmingPrefix(while:) :  | semmle.label | [summary param] this in trimmingPrefix(while:) :  |
+| data.swift:79:21:79:71 | call to init(base64Encoded:options:) :  | semmle.label | call to init(base64Encoded:options:) :  |
+| data.swift:79:41:79:48 | call to source() :  | semmle.label | call to source() :  |
+| data.swift:80:12:80:12 | dataTainted3 | semmle.label | dataTainted3 |
+| data.swift:83:21:83:73 | call to init(buffer:) :  | semmle.label | call to init(buffer:) :  |
+| data.swift:83:34:83:41 | call to source() :  | semmle.label | call to source() :  |
+| data.swift:84:12:84:12 | dataTainted4 | semmle.label | dataTainted4 |
+| data.swift:85:21:85:74 | call to init(buffer:) :  | semmle.label | call to init(buffer:) :  |
+| data.swift:85:34:85:41 | call to source() :  | semmle.label | call to source() :  |
+| data.swift:86:12:86:12 | dataTainted5 | semmle.label | dataTainted5 |
+| data.swift:89:21:89:72 | call to init(bytes:count:) :  | semmle.label | call to init(bytes:count:) :  |
+| data.swift:89:33:89:40 | call to source() :  | semmle.label | call to source() :  |
+| data.swift:90:12:90:12 | dataTainted6 | semmle.label | dataTainted6 |
+| data.swift:93:21:93:114 | call to init(bytesNoCopy:count:deallocator:) :  | semmle.label | call to init(bytesNoCopy:count:deallocator:) :  |
+| data.swift:93:39:93:46 | call to source() :  | semmle.label | call to source() :  |
+| data.swift:94:12:94:12 | dataTainted7 | semmle.label | dataTainted7 |
+| data.swift:97:21:97:67 | call to init(contentsOf:options:) :  | semmle.label | call to init(contentsOf:options:) :  |
+| data.swift:97:38:97:45 | call to source() :  | semmle.label | call to source() :  |
+| data.swift:98:12:98:12 | dataTainted8 | semmle.label | dataTainted8 |
+| data.swift:101:21:101:58 | call to init(referencing:) :  | semmle.label | call to init(referencing:) :  |
+| data.swift:101:39:101:46 | call to source() :  | semmle.label | call to source() :  |
+| data.swift:102:12:102:12 | dataTainted9 | semmle.label | dataTainted9 |
+| data.swift:106:2:106:2 | [post] dataTainted10 :  | semmle.label | [post] dataTainted10 :  |
+| data.swift:106:23:106:30 | call to source() :  | semmle.label | call to source() :  |
+| data.swift:107:12:107:12 | dataTainted10 | semmle.label | dataTainted10 |
+| data.swift:110:2:110:2 | [post] dataTainted11 :  | semmle.label | [post] dataTainted11 :  |
+| data.swift:110:23:110:30 | call to source() :  | semmle.label | call to source() :  |
+| data.swift:111:12:111:12 | dataTainted11 | semmle.label | dataTainted11 |
+| data.swift:114:2:114:2 | [post] dataTainted12 :  | semmle.label | [post] dataTainted12 :  |
+| data.swift:114:23:114:30 | call to source() :  | semmle.label | call to source() :  |
+| data.swift:115:12:115:12 | dataTainted12 | semmle.label | dataTainted12 |
+| data.swift:119:2:119:2 | [post] dataTainted13 :  | semmle.label | [post] dataTainted13 :  |
+| data.swift:119:23:119:30 | call to source() :  | semmle.label | call to source() :  |
+| data.swift:120:12:120:12 | dataTainted13 | semmle.label | dataTainted13 |
+| data.swift:124:2:124:2 | [post] dataTainted14 :  | semmle.label | [post] dataTainted14 :  |
+| data.swift:124:35:124:42 | call to source() :  | semmle.label | call to source() :  |
+| data.swift:125:12:125:12 | dataTainted14 | semmle.label | dataTainted14 |
+| data.swift:128:22:128:29 | call to source() :  | semmle.label | call to source() :  |
+| data.swift:129:12:129:12 | dataTainted15 :  | semmle.label | dataTainted15 :  |
+| data.swift:129:12:129:55 | call to base64EncodedData(options:) | semmle.label | call to base64EncodedData(options:) |
+| data.swift:132:22:132:29 | call to source() :  | semmle.label | call to source() :  |
+| data.swift:133:12:133:12 | dataTainted16 :  | semmle.label | dataTainted16 :  |
+| data.swift:133:12:133:57 | call to base64EncodedString(options:) | semmle.label | call to base64EncodedString(options:) |
+| data.swift:136:22:136:29 | call to source() :  | semmle.label | call to source() :  |
+| data.swift:137:29:137:29 | dataTainted17 :  | semmle.label | dataTainted17 :  |
+| data.swift:137:29:137:72 | call to compactMap(_:) :  | semmle.label | call to compactMap(_:) :  |
+| data.swift:138:12:138:12 | compactMapped | semmle.label | compactMapped |
+| data.swift:141:22:141:29 | call to source() :  | semmle.label | call to source() :  |
+| data.swift:143:2:143:2 | dataTainted18 :  | semmle.label | dataTainted18 :  |
+| data.swift:143:30:143:30 | [post] pointerTainted18 :  | semmle.label | [post] pointerTainted18 :  |
+| data.swift:144:12:144:12 | pointerTainted18 | semmle.label | pointerTainted18 |
+| data.swift:159:22:159:29 | call to source() :  | semmle.label | call to source() :  |
+| data.swift:160:19:160:19 | dataTainted21 :  | semmle.label | dataTainted21 :  |
+| data.swift:160:19:160:74 | call to flatMap(_:) :  | semmle.label | call to flatMap(_:) :  |
+| data.swift:161:12:161:12 | flatMapped | semmle.label | flatMapped |
+| data.swift:163:22:163:29 | call to source() :  | semmle.label | call to source() :  |
+| data.swift:164:20:164:20 | dataTainted22 :  | semmle.label | dataTainted22 :  |
+| data.swift:164:20:164:60 | call to flatMap(_:) :  | semmle.label | call to flatMap(_:) :  |
+| data.swift:165:12:165:12 | flatMapped2 | semmle.label | flatMapped2 |
+| data.swift:169:2:169:2 | [post] dataTainted23 :  | semmle.label | [post] dataTainted23 :  |
+| data.swift:169:23:169:30 | call to source() :  | semmle.label | call to source() :  |
+| data.swift:170:12:170:12 | dataTainted23 | semmle.label | dataTainted23 |
+| data.swift:174:2:174:2 | [post] dataTainted24 :  | semmle.label | [post] dataTainted24 :  |
+| data.swift:174:35:174:42 | call to source() :  | semmle.label | call to source() :  |
+| data.swift:175:12:175:12 | dataTainted24 | semmle.label | dataTainted24 |
+| data.swift:178:22:178:29 | call to source() :  | semmle.label | call to source() :  |
+| data.swift:179:15:179:15 | dataTainted25 :  | semmle.label | dataTainted25 :  |
+| data.swift:179:15:179:38 | call to map(_:) :  | semmle.label | call to map(_:) :  |
+| data.swift:180:12:180:12 | mapped | semmle.label | mapped |
+| data.swift:183:22:183:29 | call to source() :  | semmle.label | call to source() :  |
+| data.swift:184:16:184:16 | dataTainted26 :  | semmle.label | dataTainted26 :  |
+| data.swift:184:16:184:80 | call to reduce(into:_:) :  | semmle.label | call to reduce(into:_:) :  |
+| data.swift:185:12:185:12 | reduced | semmle.label | reduced |
+| data.swift:189:2:189:2 | [post] dataTainted27 :  | semmle.label | [post] dataTainted27 :  |
+| data.swift:189:35:189:42 | call to source() :  | semmle.label | call to source() :  |
+| data.swift:190:12:190:12 | dataTainted27 | semmle.label | dataTainted27 |
+| data.swift:194:2:194:2 | [post] dataTainted28 :  | semmle.label | [post] dataTainted28 :  |
+| data.swift:194:45:194:52 | call to source() :  | semmle.label | call to source() :  |
+| data.swift:195:12:195:12 | dataTainted28 | semmle.label | dataTainted28 |
+| data.swift:198:2:198:2 | [post] dataTainted29 :  | semmle.label | [post] dataTainted29 :  |
+| data.swift:198:45:198:52 | call to source() :  | semmle.label | call to source() :  |
+| data.swift:199:12:199:12 | dataTainted29 | semmle.label | dataTainted29 |
+| data.swift:202:2:202:2 | [post] dataTainted30 :  | semmle.label | [post] dataTainted30 :  |
+| data.swift:202:45:202:52 | call to source() :  | semmle.label | call to source() :  |
+| data.swift:203:12:203:12 | dataTainted30 | semmle.label | dataTainted30 |
+| data.swift:207:2:207:2 | [post] dataTainted31 :  | semmle.label | [post] dataTainted31 :  |
+| data.swift:207:45:207:52 | call to source() :  | semmle.label | call to source() :  |
+| data.swift:208:12:208:12 | dataTainted31 | semmle.label | dataTainted31 |
+| data.swift:212:2:212:2 | [post] dataTainted32 :  | semmle.label | [post] dataTainted32 :  |
+| data.swift:212:37:212:44 | call to source() :  | semmle.label | call to source() :  |
+| data.swift:213:12:213:12 | dataTainted32 | semmle.label | dataTainted32 |
+| data.swift:217:2:217:2 | [post] dataTainted33 :  | semmle.label | [post] dataTainted33 :  |
+| data.swift:217:37:217:44 | call to source() :  | semmle.label | call to source() :  |
+| data.swift:218:12:218:12 | dataTainted33 | semmle.label | dataTainted33 |
+| data.swift:221:22:221:29 | call to source() :  | semmle.label | call to source() :  |
+| data.swift:222:12:222:12 | dataTainted34 :  | semmle.label | dataTainted34 :  |
+| data.swift:222:12:222:35 | call to shuffled() | semmle.label | call to shuffled() |
+| data.swift:225:22:225:29 | call to source() :  | semmle.label | call to source() :  |
+| data.swift:227:12:227:12 | dataTainted35 :  | semmle.label | dataTainted35 :  |
+| data.swift:227:12:227:46 | call to shuffled(using:) | semmle.label | call to shuffled(using:) |
+| data.swift:230:22:230:29 | call to source() :  | semmle.label | call to source() :  |
+| data.swift:231:12:231:12 | dataTainted36 :  | semmle.label | dataTainted36 :  |
+| data.swift:231:12:231:46 | call to sorted(using:) | semmle.label | call to sorted(using:) |
+| data.swift:234:22:234:29 | call to source() :  | semmle.label | call to source() :  |
+| data.swift:235:12:235:12 | dataTainted37 :  | semmle.label | dataTainted37 :  |
+| data.swift:235:12:235:44 | call to trimmingPrefix(_:) | semmle.label | call to trimmingPrefix(_:) |
+| data.swift:238:22:238:29 | call to source() :  | semmle.label | call to source() :  |
+| data.swift:239:12:239:12 | dataTainted38 :  | semmle.label | dataTainted38 :  |
+| data.swift:239:12:239:54 | call to trimmingPrefix(while:) | semmle.label | call to trimmingPrefix(while:) |
+| file://:0:0:0:0 | [summary] to write: argument 0 in copyBytes(to:) :  | semmle.label | [summary] to write: argument 0 in copyBytes(to:) :  |
+| file://:0:0:0:0 | [summary] to write: argument 1.parameter 0 in dataTask(with:completionHandler:) :  | semmle.label | [summary] to write: argument 1.parameter 0 in dataTask(with:completionHandler:) :  |
+| file://:0:0:0:0 | [summary] to write: argument this in append(_:) :  | semmle.label | [summary] to write: argument this in append(_:) :  |
+| file://:0:0:0:0 | [summary] to write: argument this in append(_:) :  | semmle.label | [summary] to write: argument this in append(_:) :  |
+| file://:0:0:0:0 | [summary] to write: argument this in append(_:) :  | semmle.label | [summary] to write: argument this in append(_:) :  |
+| file://:0:0:0:0 | [summary] to write: argument this in append(_:count:) :  | semmle.label | [summary] to write: argument this in append(_:count:) :  |
+| file://:0:0:0:0 | [summary] to write: argument this in append(contentsOf:) :  | semmle.label | [summary] to write: argument this in append(contentsOf:) :  |
+| file://:0:0:0:0 | [summary] to write: argument this in defineProperty(_:descriptor:) :  | semmle.label | [summary] to write: argument this in defineProperty(_:descriptor:) :  |
+| file://:0:0:0:0 | [summary] to write: argument this in insert(_:at:) :  | semmle.label | [summary] to write: argument this in insert(_:at:) :  |
+| file://:0:0:0:0 | [summary] to write: argument this in insert(contentsOf:at:) :  | semmle.label | [summary] to write: argument this in insert(contentsOf:at:) :  |
+| file://:0:0:0:0 | [summary] to write: argument this in replace(_:with:maxReplacements:) :  | semmle.label | [summary] to write: argument this in replace(_:with:maxReplacements:) :  |
+| file://:0:0:0:0 | [summary] to write: argument this in replaceSubrange(_:with:) :  | semmle.label | [summary] to write: argument this in replaceSubrange(_:with:) :  |
+| file://:0:0:0:0 | [summary] to write: argument this in replaceSubrange(_:with:) :  | semmle.label | [summary] to write: argument this in replaceSubrange(_:with:) :  |
+| file://:0:0:0:0 | [summary] to write: argument this in replaceSubrange(_:with:count:) :  | semmle.label | [summary] to write: argument this in replaceSubrange(_:with:count:) :  |
+| file://:0:0:0:0 | [summary] to write: argument this in replacing(_:with:maxReplacements:) :  | semmle.label | [summary] to write: argument this in replacing(_:with:maxReplacements:) :  |
+| file://:0:0:0:0 | [summary] to write: argument this in replacing(_:with:subrange:maxReplacements:) :  | semmle.label | [summary] to write: argument this in replacing(_:with:subrange:maxReplacements:) :  |
+>>>>>>> 7ef2618758 (Update test expectations)
 | file://:0:0:0:0 | [summary] to write: argument this in setValue(_:at:) :  | semmle.label | [summary] to write: argument this in setValue(_:at:) :  |
 | file://:0:0:0:0 | [summary] to write: argument this in setValue(_:forProperty:) :  | semmle.label | [summary] to write: argument this in setValue(_:forProperty:) :  |
 | file://:0:0:0:0 | [summary] to write: return (return) in atIndex(_:) :  | semmle.label | [summary] to write: return (return) in atIndex(_:) :  |
 | file://:0:0:0:0 | [summary] to write: return (return) in base64EncodedData(options:) :  | semmle.label | [summary] to write: return (return) in base64EncodedData(options:) :  |
 | file://:0:0:0:0 | [summary] to write: return (return) in base64EncodedString(options:) :  | semmle.label | [summary] to write: return (return) in base64EncodedString(options:) :  |
+<<<<<<< HEAD
 | file://:0:0:0:0 | [summary] to write: return (return) in base64Encoding() :  | semmle.label | [summary] to write: return (return) in base64Encoding() :  |
 | file://:0:0:0:0 | [summary] to write: return (return) in compressed(using:) :  | semmle.label | [summary] to write: return (return) in compressed(using:) :  |
 | file://:0:0:0:0 | [summary] to write: return (return) in dataWithContentsOfMappedFile(_:) :  | semmle.label | [summary] to write: return (return) in dataWithContentsOfMappedFile(_:) :  |
@@ -419,18 +721,40 @@ nodes
 | file://:0:0:0:0 | [summary] to write: return (return) in init(contentsOfFile:options:) :  | semmle.label | [summary] to write: return (return) in init(contentsOfFile:options:) :  |
 | file://:0:0:0:0 | [summary] to write: return (return) in init(contentsOfMappedFile:) :  | semmle.label | [summary] to write: return (return) in init(contentsOfMappedFile:) :  |
 | file://:0:0:0:0 | [summary] to write: return (return) in init(data:) :  | semmle.label | [summary] to write: return (return) in init(data:) :  |
+=======
+| file://:0:0:0:0 | [summary] to write: return (return) in compactMap(_:) :  | semmle.label | [summary] to write: return (return) in compactMap(_:) :  |
+| file://:0:0:0:0 | [summary] to write: return (return) in flatMap(_:) :  | semmle.label | [summary] to write: return (return) in flatMap(_:) :  |
+| file://:0:0:0:0 | [summary] to write: return (return) in flatMap(_:) :  | semmle.label | [summary] to write: return (return) in flatMap(_:) :  |
+| file://:0:0:0:0 | [summary] to write: return (return) in forProperty(_:) :  | semmle.label | [summary] to write: return (return) in forProperty(_:) :  |
+| file://:0:0:0:0 | [summary] to write: return (return) in init(base64Encoded:options:) :  | semmle.label | [summary] to write: return (return) in init(base64Encoded:options:) :  |
+| file://:0:0:0:0 | [summary] to write: return (return) in init(bool:in:) :  | semmle.label | [summary] to write: return (return) in init(bool:in:) :  |
+| file://:0:0:0:0 | [summary] to write: return (return) in init(buffer:) :  | semmle.label | [summary] to write: return (return) in init(buffer:) :  |
+| file://:0:0:0:0 | [summary] to write: return (return) in init(buffer:) :  | semmle.label | [summary] to write: return (return) in init(buffer:) :  |
+| file://:0:0:0:0 | [summary] to write: return (return) in init(bytes:count:) :  | semmle.label | [summary] to write: return (return) in init(bytes:count:) :  |
+| file://:0:0:0:0 | [summary] to write: return (return) in init(bytesNoCopy:count:deallocator:) :  | semmle.label | [summary] to write: return (return) in init(bytesNoCopy:count:deallocator:) :  |
+| file://:0:0:0:0 | [summary] to write: return (return) in init(contentsOf:options:) :  | semmle.label | [summary] to write: return (return) in init(contentsOf:options:) :  |
+>>>>>>> 7ef2618758 (Update test expectations)
 | file://:0:0:0:0 | [summary] to write: return (return) in init(double:in:) :  | semmle.label | [summary] to write: return (return) in init(double:in:) :  |
 | file://:0:0:0:0 | [summary] to write: return (return) in init(int32:in:) :  | semmle.label | [summary] to write: return (return) in init(int32:in:) :  |
 | file://:0:0:0:0 | [summary] to write: return (return) in init(object:in:) :  | semmle.label | [summary] to write: return (return) in init(object:in:) :  |
 | file://:0:0:0:0 | [summary] to write: return (return) in init(point:in:) :  | semmle.label | [summary] to write: return (return) in init(point:in:) :  |
 | file://:0:0:0:0 | [summary] to write: return (return) in init(range:in:) :  | semmle.label | [summary] to write: return (return) in init(range:in:) :  |
 | file://:0:0:0:0 | [summary] to write: return (return) in init(rect:in:) :  | semmle.label | [summary] to write: return (return) in init(rect:in:) :  |
+| file://:0:0:0:0 | [summary] to write: return (return) in init(referencing:) :  | semmle.label | [summary] to write: return (return) in init(referencing:) :  |
 | file://:0:0:0:0 | [summary] to write: return (return) in init(size:in:) :  | semmle.label | [summary] to write: return (return) in init(size:in:) :  |
 | file://:0:0:0:0 | [summary] to write: return (return) in init(string:) :  | semmle.label | [summary] to write: return (return) in init(string:) :  |
 | file://:0:0:0:0 | [summary] to write: return (return) in init(string:relativeTo:) :  | semmle.label | [summary] to write: return (return) in init(string:relativeTo:) :  |
 | file://:0:0:0:0 | [summary] to write: return (return) in init(string:relativeTo:) :  | semmle.label | [summary] to write: return (return) in init(string:relativeTo:) :  |
 | file://:0:0:0:0 | [summary] to write: return (return) in init(uInt32:in:) :  | semmle.label | [summary] to write: return (return) in init(uInt32:in:) :  |
+<<<<<<< HEAD
 | file://:0:0:0:0 | [summary] to write: return (return) in subdata(with:) :  | semmle.label | [summary] to write: return (return) in subdata(with:) :  |
+=======
+| file://:0:0:0:0 | [summary] to write: return (return) in map(_:) :  | semmle.label | [summary] to write: return (return) in map(_:) :  |
+| file://:0:0:0:0 | [summary] to write: return (return) in reduce(into:_:) :  | semmle.label | [summary] to write: return (return) in reduce(into:_:) :  |
+| file://:0:0:0:0 | [summary] to write: return (return) in shuffled() :  | semmle.label | [summary] to write: return (return) in shuffled() :  |
+| file://:0:0:0:0 | [summary] to write: return (return) in shuffled(using:) :  | semmle.label | [summary] to write: return (return) in shuffled(using:) :  |
+| file://:0:0:0:0 | [summary] to write: return (return) in sorted(using:) :  | semmle.label | [summary] to write: return (return) in sorted(using:) :  |
+>>>>>>> 7ef2618758 (Update test expectations)
 | file://:0:0:0:0 | [summary] to write: return (return) in toArray() :  | semmle.label | [summary] to write: return (return) in toArray() :  |
 | file://:0:0:0:0 | [summary] to write: return (return) in toBool() :  | semmle.label | [summary] to write: return (return) in toBool() :  |
 | file://:0:0:0:0 | [summary] to write: return (return) in toDate() :  | semmle.label | [summary] to write: return (return) in toDate() :  |
@@ -446,6 +770,7 @@ nodes
 | file://:0:0:0:0 | [summary] to write: return (return) in toSize() :  | semmle.label | [summary] to write: return (return) in toSize() :  |
 | file://:0:0:0:0 | [summary] to write: return (return) in toString() :  | semmle.label | [summary] to write: return (return) in toString() :  |
 | file://:0:0:0:0 | [summary] to write: return (return) in toUInt32() :  | semmle.label | [summary] to write: return (return) in toUInt32() :  |
+<<<<<<< HEAD
 | nsdata.swift:22:9:22:9 | self :  | semmle.label | self :  |
 | nsdata.swift:23:9:23:9 | self :  | semmle.label | self :  |
 | nsdata.swift:24:5:24:50 | [summary param] 0 in init(bytes:length:) :  | semmle.label | [summary param] 0 in init(bytes:length:) :  |
@@ -581,6 +906,10 @@ nodes
 | nsmutabledata.swift:48:33:48:40 | call to source() :  | semmle.label | call to source() :  |
 | nsmutabledata.swift:49:15:49:15 | nsMutableDataTainted6 :  | semmle.label | nsMutableDataTainted6 :  |
 | nsmutabledata.swift:49:15:49:37 | .mutableBytes | semmle.label | .mutableBytes |
+=======
+| file://:0:0:0:0 | [summary] to write: return (return) in trimmingPrefix(_:) :  | semmle.label | [summary] to write: return (return) in trimmingPrefix(_:) :  |
+| file://:0:0:0:0 | [summary] to write: return (return) in trimmingPrefix(while:) :  | semmle.label | [summary] to write: return (return) in trimmingPrefix(while:) :  |
+>>>>>>> 7ef2618758 (Update test expectations)
 | string.swift:5:11:5:18 | call to source() :  | semmle.label | call to source() :  |
 | string.swift:7:13:7:13 | "..." | semmle.label | "..." |
 | string.swift:9:13:9:13 | "..." | semmle.label | "..." |
@@ -782,6 +1111,7 @@ nodes
 | webview.swift:97:17:97:17 | s :  | semmle.label | s :  |
 | webview.swift:98:10:98:10 | v3 | semmle.label | v3 |
 subpaths
+<<<<<<< HEAD
 | nsdata.swift:57:40:57:47 | call to source() :  | nsdata.swift:24:5:24:50 | [summary param] 0 in init(bytes:length:) :  | file://:0:0:0:0 | [summary] to write: return (return) in init(bytes:length:) :  | nsdata.swift:57:26:57:80 | call to init(bytes:length:) :  |
 | nsdata.swift:60:46:60:53 | call to source() :  | nsdata.swift:25:5:25:68 | [summary param] 0 in init(bytesNoCopy:length:) :  | file://:0:0:0:0 | [summary] to write: return (return) in init(bytesNoCopy:length:) :  | nsdata.swift:60:26:60:93 | call to init(bytesNoCopy:length:) :  |
 | nsdata.swift:63:46:63:53 | call to source() :  | nsdata.swift:26:5:26:130 | [summary param] 0 in init(bytesNoCopy:length:deallocator:) :  | file://:0:0:0:0 | [summary] to write: return (return) in init(bytesNoCopy:length:deallocator:) :  | nsdata.swift:63:26:63:111 | call to init(bytesNoCopy:length:deallocator:) :  |
@@ -815,6 +1145,42 @@ subpaths
 | nsmutabledata.swift:40:66:40:73 | call to source() :  | nsmutabledata.swift:17:5:17:121 | [summary param] 1 in replaceBytes(in:withBytes:length:) :  | file://:0:0:0:0 | [summary] to write: argument this in replaceBytes(in:withBytes:length:) :  | nsmutabledata.swift:40:5:40:5 | [post] nsMutableDataTainted4 :  |
 | nsmutabledata.swift:44:35:44:42 | call to source() :  | nsmutabledata.swift:18:5:18:33 | [summary param] 0 in setData(_:) :  | file://:0:0:0:0 | [summary] to write: argument this in setData(_:) :  | nsmutabledata.swift:44:5:44:5 | [post] nsMutableDataTainted5 :  |
 | nsmutabledata.swift:49:15:49:15 | nsMutableDataTainted6 :  | nsmutabledata.swift:13:9:13:9 | self :  | file://:0:0:0:0 | .mutableBytes :  | nsmutabledata.swift:49:15:49:37 | .mutableBytes |
+=======
+| data.swift:79:41:79:48 | call to source() :  | data.swift:17:2:17:66 | [summary param] 0 in init(base64Encoded:options:) :  | file://:0:0:0:0 | [summary] to write: return (return) in init(base64Encoded:options:) :  | data.swift:79:21:79:71 | call to init(base64Encoded:options:) :  |
+| data.swift:83:34:83:41 | call to source() :  | data.swift:18:2:18:61 | [summary param] 0 in init(buffer:) :  | file://:0:0:0:0 | [summary] to write: return (return) in init(buffer:) :  | data.swift:83:21:83:73 | call to init(buffer:) :  |
+| data.swift:85:34:85:41 | call to source() :  | data.swift:19:2:19:62 | [summary param] 0 in init(buffer:) :  | file://:0:0:0:0 | [summary] to write: return (return) in init(buffer:) :  | data.swift:85:21:85:74 | call to init(buffer:) :  |
+| data.swift:89:33:89:40 | call to source() :  | data.swift:20:2:20:45 | [summary param] 0 in init(bytes:count:) :  | file://:0:0:0:0 | [summary] to write: return (return) in init(bytes:count:) :  | data.swift:89:21:89:72 | call to init(bytes:count:) :  |
+| data.swift:93:39:93:46 | call to source() :  | data.swift:21:2:21:82 | [summary param] 0 in init(bytesNoCopy:count:deallocator:) :  | file://:0:0:0:0 | [summary] to write: return (return) in init(bytesNoCopy:count:deallocator:) :  | data.swift:93:21:93:114 | call to init(bytesNoCopy:count:deallocator:) :  |
+| data.swift:97:38:97:45 | call to source() :  | data.swift:22:2:22:50 | [summary param] 0 in init(contentsOf:options:) :  | file://:0:0:0:0 | [summary] to write: return (return) in init(contentsOf:options:) :  | data.swift:97:21:97:67 | call to init(contentsOf:options:) :  |
+| data.swift:101:39:101:46 | call to source() :  | data.swift:23:2:23:29 | [summary param] 0 in init(referencing:) :  | file://:0:0:0:0 | [summary] to write: return (return) in init(referencing:) :  | data.swift:101:21:101:58 | call to init(referencing:) :  |
+| data.swift:106:23:106:30 | call to source() :  | data.swift:24:2:24:24 | [summary param] 0 in append(_:) :  | file://:0:0:0:0 | [summary] to write: argument this in append(_:) :  | data.swift:106:2:106:2 | [post] dataTainted10 :  |
+| data.swift:110:23:110:30 | call to source() :  | data.swift:25:2:25:25 | [summary param] 0 in append(_:) :  | file://:0:0:0:0 | [summary] to write: argument this in append(_:) :  | data.swift:110:2:110:2 | [post] dataTainted11 :  |
+| data.swift:114:23:114:30 | call to source() :  | data.swift:26:2:26:63 | [summary param] 0 in append(_:) :  | file://:0:0:0:0 | [summary] to write: argument this in append(_:) :  | data.swift:114:2:114:2 | [post] dataTainted12 :  |
+| data.swift:119:23:119:30 | call to source() :  | data.swift:27:2:27:52 | [summary param] 0 in append(_:count:) :  | file://:0:0:0:0 | [summary] to write: argument this in append(_:count:) :  | data.swift:119:2:119:2 | [post] dataTainted13 :  |
+| data.swift:124:35:124:42 | call to source() :  | data.swift:28:2:28:36 | [summary param] 0 in append(contentsOf:) :  | file://:0:0:0:0 | [summary] to write: argument this in append(contentsOf:) :  | data.swift:124:2:124:2 | [post] dataTainted14 :  |
+| data.swift:129:12:129:12 | dataTainted15 :  | data.swift:30:2:30:88 | [summary param] this in base64EncodedData(options:) :  | file://:0:0:0:0 | [summary] to write: return (return) in base64EncodedData(options:) :  | data.swift:129:12:129:55 | call to base64EncodedData(options:) |
+| data.swift:133:12:133:12 | dataTainted16 :  | data.swift:31:2:31:86 | [summary param] this in base64EncodedString(options:) :  | file://:0:0:0:0 | [summary] to write: return (return) in base64EncodedString(options:) :  | data.swift:133:12:133:57 | call to base64EncodedString(options:) |
+| data.swift:137:29:137:29 | dataTainted17 :  | data.swift:32:2:32:99 | [summary param] this in compactMap(_:) :  | file://:0:0:0:0 | [summary] to write: return (return) in compactMap(_:) :  | data.swift:137:29:137:72 | call to compactMap(_:) :  |
+| data.swift:143:2:143:2 | dataTainted18 :  | data.swift:33:2:33:53 | [summary param] this in copyBytes(to:) :  | file://:0:0:0:0 | [summary] to write: argument 0 in copyBytes(to:) :  | data.swift:143:30:143:30 | [post] pointerTainted18 :  |
+| data.swift:160:19:160:19 | dataTainted21 :  | data.swift:36:2:36:137 | [summary param] this in flatMap(_:) :  | file://:0:0:0:0 | [summary] to write: return (return) in flatMap(_:) :  | data.swift:160:19:160:74 | call to flatMap(_:) :  |
+| data.swift:164:20:164:20 | dataTainted22 :  | data.swift:37:2:37:97 | [summary param] this in flatMap(_:) :  | file://:0:0:0:0 | [summary] to write: return (return) in flatMap(_:) :  | data.swift:164:20:164:60 | call to flatMap(_:) :  |
+| data.swift:169:23:169:30 | call to source() :  | data.swift:38:2:38:34 | [summary param] 0 in insert(_:at:) :  | file://:0:0:0:0 | [summary] to write: argument this in insert(_:at:) :  | data.swift:169:2:169:2 | [post] dataTainted23 :  |
+| data.swift:174:35:174:42 | call to source() :  | data.swift:39:2:39:83 | [summary param] 0 in insert(contentsOf:at:) :  | file://:0:0:0:0 | [summary] to write: argument this in insert(contentsOf:at:) :  | data.swift:174:2:174:2 | [post] dataTainted24 :  |
+| data.swift:179:15:179:15 | dataTainted25 :  | data.swift:40:2:40:50 | [summary param] this in map(_:) :  | file://:0:0:0:0 | [summary] to write: return (return) in map(_:) :  | data.swift:179:15:179:38 | call to map(_:) :  |
+| data.swift:184:16:184:16 | dataTainted26 :  | data.swift:41:2:41:115 | [summary param] this in reduce(into:_:) :  | file://:0:0:0:0 | [summary] to write: return (return) in reduce(into:_:) :  | data.swift:184:16:184:80 | call to reduce(into:_:) :  |
+| data.swift:189:35:189:42 | call to source() :  | data.swift:42:2:42:180 | [summary param] 1 in replace(_:with:maxReplacements:) :  | file://:0:0:0:0 | [summary] to write: argument this in replace(_:with:maxReplacements:) :  | data.swift:189:2:189:2 | [post] dataTainted27 :  |
+| data.swift:194:45:194:52 | call to source() :  | data.swift:43:2:43:58 | [summary param] 1 in replaceSubrange(_:with:) :  | file://:0:0:0:0 | [summary] to write: argument this in replaceSubrange(_:with:) :  | data.swift:194:2:194:2 | [post] dataTainted28 :  |
+| data.swift:198:45:198:52 | call to source() :  | data.swift:44:2:44:151 | [summary param] 1 in replaceSubrange(_:with:) :  | file://:0:0:0:0 | [summary] to write: argument this in replaceSubrange(_:with:) :  | data.swift:198:2:198:2 | [post] dataTainted29 :  |
+| data.swift:202:45:202:52 | call to source() :  | data.swift:44:2:44:151 | [summary param] 1 in replaceSubrange(_:with:) :  | file://:0:0:0:0 | [summary] to write: argument this in replaceSubrange(_:with:) :  | data.swift:202:2:202:2 | [post] dataTainted30 :  |
+| data.swift:207:45:207:52 | call to source() :  | data.swift:46:2:46:82 | [summary param] 1 in replaceSubrange(_:with:count:) :  | file://:0:0:0:0 | [summary] to write: argument this in replaceSubrange(_:with:count:) :  | data.swift:207:2:207:2 | [post] dataTainted31 :  |
+| data.swift:212:37:212:44 | call to source() :  | data.swift:48:2:48:214 | [summary param] 1 in replacing(_:with:maxReplacements:) :  | file://:0:0:0:0 | [summary] to write: argument this in replacing(_:with:maxReplacements:) :  | data.swift:212:2:212:2 | [post] dataTainted32 :  |
+| data.swift:217:37:217:44 | call to source() :  | data.swift:49:2:49:236 | [summary param] 1 in replacing(_:with:subrange:maxReplacements:) :  | file://:0:0:0:0 | [summary] to write: argument this in replacing(_:with:subrange:maxReplacements:) :  | data.swift:217:2:217:2 | [post] dataTainted33 :  |
+| data.swift:222:12:222:12 | dataTainted34 :  | data.swift:50:2:50:41 | [summary param] this in shuffled() :  | file://:0:0:0:0 | [summary] to write: return (return) in shuffled() :  | data.swift:222:12:222:35 | call to shuffled() |
+| data.swift:227:12:227:12 | dataTainted35 :  | data.swift:51:2:51:58 | [summary param] this in shuffled(using:) :  | file://:0:0:0:0 | [summary] to write: return (return) in shuffled(using:) :  | data.swift:227:12:227:46 | call to shuffled(using:) |
+| data.swift:231:12:231:12 | dataTainted36 :  | data.swift:52:2:52:132 | [summary param] this in sorted(using:) :  | file://:0:0:0:0 | [summary] to write: return (return) in sorted(using:) :  | data.swift:231:12:231:46 | call to sorted(using:) |
+| data.swift:235:12:235:12 | dataTainted37 :  | data.swift:53:2:53:123 | [summary param] this in trimmingPrefix(_:) :  | file://:0:0:0:0 | [summary] to write: return (return) in trimmingPrefix(_:) :  | data.swift:235:12:235:44 | call to trimmingPrefix(_:) |
+| data.swift:239:12:239:12 | dataTainted38 :  | data.swift:54:2:54:72 | [summary param] this in trimmingPrefix(while:) :  | file://:0:0:0:0 | [summary] to write: return (return) in trimmingPrefix(while:) :  | data.swift:239:12:239:54 | call to trimmingPrefix(while:) |
+>>>>>>> 7ef2618758 (Update test expectations)
 | url.swift:59:31:59:31 | tainted :  | url.swift:8:2:8:25 | [summary param] 0 in init(string:) :  | file://:0:0:0:0 | [summary] to write: return (return) in init(string:) :  | url.swift:59:19:59:38 | call to init(string:) :  |
 | url.swift:83:24:83:24 | tainted :  | url.swift:9:2:9:43 | [summary param] 0 in init(string:relativeTo:) :  | file://:0:0:0:0 | [summary] to write: return (return) in init(string:relativeTo:) :  | url.swift:83:12:83:48 | call to init(string:relativeTo:) :  |
 | url.swift:86:43:86:43 | urlTainted :  | url.swift:9:2:9:43 | [summary param] 1 in init(string:relativeTo:) :  | file://:0:0:0:0 | [summary] to write: return (return) in init(string:relativeTo:) :  | url.swift:86:12:86:53 | call to init(string:relativeTo:) :  |
@@ -865,6 +1231,7 @@ subpaths
 | webview.swift:93:17:93:17 | s :  | webview.swift:43:5:43:38 | [summary param] 0 in setValue(_:at:) :  | file://:0:0:0:0 | [summary] to write: argument this in setValue(_:at:) :  | webview.swift:93:5:93:5 | [post] v2 :  |
 | webview.swift:97:17:97:17 | s :  | webview.swift:44:5:44:48 | [summary param] 0 in setValue(_:forProperty:) :  | file://:0:0:0:0 | [summary] to write: argument this in setValue(_:forProperty:) :  | webview.swift:97:5:97:5 | [post] v3 :  |
 #select
+<<<<<<< HEAD
 | nsdata.swift:58:15:58:15 | nsDataTainted1 | nsdata.swift:57:40:57:47 | call to source() :  | nsdata.swift:58:15:58:15 | nsDataTainted1 | result |
 | nsdata.swift:61:15:61:15 | nsDataTainted2 | nsdata.swift:60:46:60:53 | call to source() :  | nsdata.swift:61:15:61:15 | nsDataTainted2 | result |
 | nsdata.swift:64:15:64:15 | nsDataTainted3 | nsdata.swift:63:46:63:53 | call to source() :  | nsdata.swift:64:15:64:15 | nsDataTainted3 | result |
@@ -899,6 +1266,42 @@ subpaths
 | nsmutabledata.swift:41:15:41:15 | nsMutableDataTainted4 | nsmutabledata.swift:40:66:40:73 | call to source() :  | nsmutabledata.swift:41:15:41:15 | nsMutableDataTainted4 | result |
 | nsmutabledata.swift:45:15:45:15 | nsMutableDataTainted5 | nsmutabledata.swift:44:35:44:42 | call to source() :  | nsmutabledata.swift:45:15:45:15 | nsMutableDataTainted5 | result |
 | nsmutabledata.swift:49:15:49:37 | .mutableBytes | nsmutabledata.swift:48:33:48:40 | call to source() :  | nsmutabledata.swift:49:15:49:37 | .mutableBytes | result |
+=======
+| data.swift:80:12:80:12 | dataTainted3 | data.swift:79:41:79:48 | call to source() :  | data.swift:80:12:80:12 | dataTainted3 | result |
+| data.swift:84:12:84:12 | dataTainted4 | data.swift:83:34:83:41 | call to source() :  | data.swift:84:12:84:12 | dataTainted4 | result |
+| data.swift:86:12:86:12 | dataTainted5 | data.swift:85:34:85:41 | call to source() :  | data.swift:86:12:86:12 | dataTainted5 | result |
+| data.swift:90:12:90:12 | dataTainted6 | data.swift:89:33:89:40 | call to source() :  | data.swift:90:12:90:12 | dataTainted6 | result |
+| data.swift:94:12:94:12 | dataTainted7 | data.swift:93:39:93:46 | call to source() :  | data.swift:94:12:94:12 | dataTainted7 | result |
+| data.swift:98:12:98:12 | dataTainted8 | data.swift:97:38:97:45 | call to source() :  | data.swift:98:12:98:12 | dataTainted8 | result |
+| data.swift:102:12:102:12 | dataTainted9 | data.swift:101:39:101:46 | call to source() :  | data.swift:102:12:102:12 | dataTainted9 | result |
+| data.swift:107:12:107:12 | dataTainted10 | data.swift:106:23:106:30 | call to source() :  | data.swift:107:12:107:12 | dataTainted10 | result |
+| data.swift:111:12:111:12 | dataTainted11 | data.swift:110:23:110:30 | call to source() :  | data.swift:111:12:111:12 | dataTainted11 | result |
+| data.swift:115:12:115:12 | dataTainted12 | data.swift:114:23:114:30 | call to source() :  | data.swift:115:12:115:12 | dataTainted12 | result |
+| data.swift:120:12:120:12 | dataTainted13 | data.swift:119:23:119:30 | call to source() :  | data.swift:120:12:120:12 | dataTainted13 | result |
+| data.swift:125:12:125:12 | dataTainted14 | data.swift:124:35:124:42 | call to source() :  | data.swift:125:12:125:12 | dataTainted14 | result |
+| data.swift:129:12:129:55 | call to base64EncodedData(options:) | data.swift:128:22:128:29 | call to source() :  | data.swift:129:12:129:55 | call to base64EncodedData(options:) | result |
+| data.swift:133:12:133:57 | call to base64EncodedString(options:) | data.swift:132:22:132:29 | call to source() :  | data.swift:133:12:133:57 | call to base64EncodedString(options:) | result |
+| data.swift:138:12:138:12 | compactMapped | data.swift:136:22:136:29 | call to source() :  | data.swift:138:12:138:12 | compactMapped | result |
+| data.swift:144:12:144:12 | pointerTainted18 | data.swift:141:22:141:29 | call to source() :  | data.swift:144:12:144:12 | pointerTainted18 | result |
+| data.swift:161:12:161:12 | flatMapped | data.swift:159:22:159:29 | call to source() :  | data.swift:161:12:161:12 | flatMapped | result |
+| data.swift:165:12:165:12 | flatMapped2 | data.swift:163:22:163:29 | call to source() :  | data.swift:165:12:165:12 | flatMapped2 | result |
+| data.swift:170:12:170:12 | dataTainted23 | data.swift:169:23:169:30 | call to source() :  | data.swift:170:12:170:12 | dataTainted23 | result |
+| data.swift:175:12:175:12 | dataTainted24 | data.swift:174:35:174:42 | call to source() :  | data.swift:175:12:175:12 | dataTainted24 | result |
+| data.swift:180:12:180:12 | mapped | data.swift:178:22:178:29 | call to source() :  | data.swift:180:12:180:12 | mapped | result |
+| data.swift:185:12:185:12 | reduced | data.swift:183:22:183:29 | call to source() :  | data.swift:185:12:185:12 | reduced | result |
+| data.swift:190:12:190:12 | dataTainted27 | data.swift:189:35:189:42 | call to source() :  | data.swift:190:12:190:12 | dataTainted27 | result |
+| data.swift:195:12:195:12 | dataTainted28 | data.swift:194:45:194:52 | call to source() :  | data.swift:195:12:195:12 | dataTainted28 | result |
+| data.swift:199:12:199:12 | dataTainted29 | data.swift:198:45:198:52 | call to source() :  | data.swift:199:12:199:12 | dataTainted29 | result |
+| data.swift:203:12:203:12 | dataTainted30 | data.swift:202:45:202:52 | call to source() :  | data.swift:203:12:203:12 | dataTainted30 | result |
+| data.swift:208:12:208:12 | dataTainted31 | data.swift:207:45:207:52 | call to source() :  | data.swift:208:12:208:12 | dataTainted31 | result |
+| data.swift:213:12:213:12 | dataTainted32 | data.swift:212:37:212:44 | call to source() :  | data.swift:213:12:213:12 | dataTainted32 | result |
+| data.swift:218:12:218:12 | dataTainted33 | data.swift:217:37:217:44 | call to source() :  | data.swift:218:12:218:12 | dataTainted33 | result |
+| data.swift:222:12:222:35 | call to shuffled() | data.swift:221:22:221:29 | call to source() :  | data.swift:222:12:222:35 | call to shuffled() | result |
+| data.swift:227:12:227:46 | call to shuffled(using:) | data.swift:225:22:225:29 | call to source() :  | data.swift:227:12:227:46 | call to shuffled(using:) | result |
+| data.swift:231:12:231:46 | call to sorted(using:) | data.swift:230:22:230:29 | call to source() :  | data.swift:231:12:231:46 | call to sorted(using:) | result |
+| data.swift:235:12:235:44 | call to trimmingPrefix(_:) | data.swift:234:22:234:29 | call to source() :  | data.swift:235:12:235:44 | call to trimmingPrefix(_:) | result |
+| data.swift:239:12:239:54 | call to trimmingPrefix(while:) | data.swift:238:22:238:29 | call to source() :  | data.swift:239:12:239:54 | call to trimmingPrefix(while:) | result |
+>>>>>>> 7ef2618758 (Update test expectations)
 | string.swift:7:13:7:13 | "..." | string.swift:5:11:5:18 | call to source() :  | string.swift:7:13:7:13 | "..." | result |
 | string.swift:9:13:9:13 | "..." | string.swift:5:11:5:18 | call to source() :  | string.swift:9:13:9:13 | "..." | result |
 | string.swift:11:13:11:13 | "..." | string.swift:5:11:5:18 | call to source() :  | string.swift:11:13:11:13 | "..." | result |

From 6a8b9fde788225afe8c9f70adf919893dfbca231 Mon Sep 17 00:00:00 2001
From: Tony Torralba <atorralba@users.noreply.github.com>
Date: Mon, 21 Nov 2022 16:16:58 +0100
Subject: [PATCH 0609/1420] Add data flowsources test

---
 .../dataflow/flowsources/FlowSources.expected |  2 ++
 .../dataflow/flowsources/data.swift           | 19 +++++++++++++++++++
 2 files changed, 21 insertions(+)
 create mode 100644 swift/ql/test/library-tests/dataflow/flowsources/data.swift

diff --git a/swift/ql/test/library-tests/dataflow/flowsources/FlowSources.expected b/swift/ql/test/library-tests/dataflow/flowsources/FlowSources.expected
index 01c18633b5d..9aeb5661a9e 100644
--- a/swift/ql/test/library-tests/dataflow/flowsources/FlowSources.expected
+++ b/swift/ql/test/library-tests/dataflow/flowsources/FlowSources.expected
@@ -7,6 +7,8 @@
 | nsdata.swift:18:17:18:40 | call to init(contentsOf:) | external |
 | nsdata.swift:19:17:19:17 | call to init(contentsOf:options:) | external |
 | nsdata.swift:19:17:19:53 | call to init(contentsOf:options:) | external |
+| data.swift:18:20:18:20 | call to init(contentsOf:options:) | external |
+| data.swift:18:20:18:54 | call to init(contentsOf:options:) | external |
 | string.swift:56:21:56:21 | call to init(contentsOf:) | external |
 | string.swift:56:21:56:44 | call to init(contentsOf:) | external |
 | string.swift:57:21:57:21 | call to init(contentsOf:encoding:) | external |
diff --git a/swift/ql/test/library-tests/dataflow/flowsources/data.swift b/swift/ql/test/library-tests/dataflow/flowsources/data.swift
new file mode 100644
index 00000000000..eef374b62a9
--- /dev/null
+++ b/swift/ql/test/library-tests/dataflow/flowsources/data.swift
@@ -0,0 +1,19 @@
+// --- stubs ---
+
+struct URL
+{
+	init?(string: String) {}
+}
+
+
+struct Data {
+    struct ReadingOptions : OptionSet { let rawValue: Int }
+	init(contentsOf: URL, options: ReadingOptions) {}
+}
+
+// --- tests ---
+
+func testData() {
+    let url = URL(string: "http://example.com/")
+    let data = try Data(contentsOf: url!, options: []) // SOURCE
+}

From 25354d2dd888108c00c22b3b7a9ee2f9f548cacf Mon Sep 17 00:00:00 2001
From: Tony Torralba <atorralba@users.noreply.github.com>
Date: Wed, 23 Nov 2022 12:18:32 +0100
Subject: [PATCH 0610/1420] Apply code review suggestions

---
 .../swift/frameworks/StandardLibrary/Data.qll |   6 +-
 .../library-tests/dataflow/taint/data.swift   | 126 ++++++++++--------
 2 files changed, 79 insertions(+), 53 deletions(-)

diff --git a/swift/ql/lib/codeql/swift/frameworks/StandardLibrary/Data.qll b/swift/ql/lib/codeql/swift/frameworks/StandardLibrary/Data.qll
index 0e27c0824dc..420a5ebeb52 100644
--- a/swift/ql/lib/codeql/swift/frameworks/StandardLibrary/Data.qll
+++ b/swift/ql/lib/codeql/swift/frameworks/StandardLibrary/Data.qll
@@ -37,9 +37,13 @@ private class DataSummaries extends SummaryModelCsv {
         ";Data;true;replaceSubrange(_:with:count:);;;Argument[1];Argument[-1];taint",
         ";Data;true;replacing(_:with:maxReplacements:);;;Argument[1];Argument[-1];taint",
         ";Data;true;replacing(_:with:subrange:maxReplacements:);;;Argument[1];Argument[-1];taint",
+        // TODO: this should be implemented by a model of BidirectionalCollection
+        // ";Data;true;reversed();;;Argument[-1];ReturnValue;taint",
+        ";Data;true;sorted();;;Argument[-1];ReturnValue;taint",
+        ";Data;true;sorted(by:);;;Argument[-1];ReturnValue;taint",
+        ";Data;true;sorted(using:);;;Argument[-1];ReturnValue;taint",
         ";Data;true;shuffled();;;Argument[-1];ReturnValue;taint",
         ";Data;true;shuffled(using:);;;Argument[-1];ReturnValue;taint",
-        ";Data;true;sorted(using:);;;Argument[-1];ReturnValue;taint",
         ";Data;true;trimmingPrefix(_:);;;Argument[-1];ReturnValue;taint",
         ";Data;true;trimmingPrefix(while:);;;Argument[-1];ReturnValue;taint"
       ]
diff --git a/swift/ql/test/library-tests/dataflow/taint/data.swift b/swift/ql/test/library-tests/dataflow/taint/data.swift
index ba53694cf98..2fdc4e1c949 100644
--- a/swift/ql/test/library-tests/dataflow/taint/data.swift
+++ b/swift/ql/test/library-tests/dataflow/taint/data.swift
@@ -6,13 +6,21 @@ class NSData {}
 protocol SortComparator {
 	associatedtype Compared
 }
-struct Data
+
+struct Data : BidirectionalCollection
 {
 	struct Base64EncodingOptions : OptionSet { let rawValue: Int }
 	struct Base64DecodingOptions : OptionSet { let rawValue: Int }
-	enum Deallocator { case none }
 	struct ReadingOptions : OptionSet { let rawValue: Int }
+	enum Deallocator { case none }
 	typealias Index = Int
+	typealias Element = UInt8
+	var startIndex: Self.Index { get { return 0 } }
+	var endIndex: Self.Index { get { return 0 } }
+	func index(after: Self.Index) -> Self.Index { return 0 }
+	func index(before: Self.Index) -> Self.Index { return 0 }
+	subscript(position: Self.Index) -> Self.Element { get { return 0 } }
+
     init<S>(_ elements: S) {}
 	init(base64Encoded: Data, options: Data.Base64DecodingOptions) {}
 	init<SourceType>(buffer: UnsafeBufferPointer<SourceType>) {}
@@ -47,9 +55,11 @@ struct Data
 	func replaceSubrange<C, R>(_: R, with: C) where C : Collection, R : RangeExpression, UInt8 == C.Element, Int == R.Bound {}
 	func replacing<C, Replacement>(_: C, with: Replacement, maxReplacements: Int = .max) -> Data where C : Collection, Replacement : Collection, UInt8 == C.Element, C.Element == Replacement.Element { return Data("") }
 	func replacing<C, Replacement>(_: C, with: Replacement, subrange: Range<Int>, maxReplacements: Int = .max) -> Data where C : Collection, Replacement : Collection, UInt8 == C.Element, C.Element == Replacement.Element { return Data("") }
+	func sorted() -> [UInt8] { return [] }
+	func sorted(by: (UInt8, UInt8) throws -> Bool) rethrows -> [UInt8] { return [] }
+	func sorted<Comparator>(using: Comparator) -> [UInt8] where Comparator : SortComparator, UInt8 == Comparator.Compared { return [] }
 	func shuffled() -> [UInt8] { return [] }
 	func shuffled<T>(using: inout T) -> [UInt8] { return [] }
-	func sorted<Comparator>(using: Comparator) -> [UInt8] where Comparator : SortComparator, UInt8 == Comparator.Compared { return [] }
 	func trimmingPrefix<Prefix>(_ prefix: Prefix) -> Data where Prefix : Sequence, UInt8 == Prefix.Element { return Data("") }
 	func trimmingPrefix(while: (UInt8) -> Bool) -> Data { return Data("") }
 }
@@ -72,170 +82,182 @@ func taintThroughData() {
 	let dataTainted2 = Data(dataTainted)
 
 	sink(arg: dataClean)
-	sink(arg: dataTainted) // $ MISSING: tainted=71
-	sink(arg: dataTainted2) // $ MISSING: tainted=71
+	sink(arg: dataTainted) // $ MISSING: tainted=81
+	sink(arg: dataTainted2) // $ MISSING: tainted=81
 
 	// ";Data;true;init(base64Encoded:options:);;;Argument[0];ReturnValue;taint",
 	let dataTainted3 = Data(base64Encoded: source() as! Data, options: [])
-	sink(arg: dataTainted3) // $ tainted=79
+	sink(arg: dataTainted3) // $ tainted=89
 
 	// ";Data;true;init(buffer:);;;Argument[0];ReturnValue;taint",
 	let dataTainted4 = Data(buffer: source() as! UnsafeBufferPointer<UInt8>)
-	sink(arg: dataTainted4)  // $ tainted=83
+	sink(arg: dataTainted4)  // $ tainted=93
 	let dataTainted5 = Data(buffer: source() as! UnsafeMutablePointer<UInt8>)
-	sink(arg: dataTainted5)  // $ tainted=85
+	sink(arg: dataTainted5)  // $ tainted=95
 
 	// ";Data;true;init(bytes:count:);;;Argument[0];ReturnValue;taint",
 	let dataTainted6 = Data(bytes: source() as! UnsafeRawPointer, count: 0)
-	sink(arg: dataTainted6)  // $ tainted=89
+	sink(arg: dataTainted6)  // $ tainted=99
 
 	// ";Data;true;init(bytesNoCopy:count:deallocator:);;;Argument[0];ReturnValue;taint",
 	let dataTainted7 = Data(bytesNoCopy: source() as! UnsafeRawPointer, count: 0, deallocator: Data.Deallocator.none)
-	sink(arg: dataTainted7)  // $ tainted=93
+	sink(arg: dataTainted7)  // $ tainted=103
 
 	// ";Data;true;init(contentsOf:options:);;;Argument[0];ReturnValue;taint",
-	let dataTainted8 = Data(contentsOf: source() as! URL, options: [])
-	sink(arg: dataTainted8)  // $ tainted=97
+	let urlTainted8 = source() as! URL
+	let dataTainted8 = Data(contentsOf: urlTainted8, options: [])
+	sink(arg: dataTainted8)  // $ tainted=107
 
 	// ";Data;true;init(referencing:);;;Argument[0];ReturnValue;taint",
 	let dataTainted9 = Data(referencing: source() as! NSData)
-	sink(arg: dataTainted9)  // $ tainted=101
+	sink(arg: dataTainted9)  // $ tainted=112
 
 	// ";Data;true;append(_:);;;Argument[0];Argument[-1];taint",
 	let dataTainted10 = Data("")
 	dataTainted10.append(source() as! Data)
-	sink(arg: dataTainted10) // $ tainted=106
+	sink(arg: dataTainted10) // $ tainted=117
 
 	let dataTainted11 = Data("")
 	dataTainted11.append(source() as! UInt8)
-	sink(arg: dataTainted11) // $ tainted=110
+	sink(arg: dataTainted11) // $ tainted=121
 
 	let dataTainted12 = Data("")
 	dataTainted12.append(source() as! UnsafeBufferPointer<UInt8>)
-	sink(arg: dataTainted12) // $ tainted=114
+	sink(arg: dataTainted12) // $ tainted=125
 
 	// ";Data;true;append(_:count:);;;Argument[0];Argument[-1];taint",
 	let dataTainted13 = Data("")
 	dataTainted13.append(source() as! UnsafePointer<UInt8>, count: 0)
-	sink(arg: dataTainted13) // $ tainted=119
+	sink(arg: dataTainted13) // $ tainted=130
 
 	// ";Data;true;append(contentsOf:);;;Argument[0];Argument[-1];taint",
 	let dataTainted14 = Data("")
 	dataTainted14.append(contentsOf: source() as! [UInt8])
-	sink(arg: dataTainted14) // $ tainted=124
+	sink(arg: dataTainted14) // $ tainted=135
 
 	// ";Data;true;base64EncodedData(options:);;;Argument[-1];ReturnValue;taint",
 	let dataTainted15 = source() as! Data
-	sink(arg: dataTainted15.base64EncodedData(options: [])) // $ tainted=128
+	sink(arg: dataTainted15.base64EncodedData(options: [])) // $ tainted=139
 
 	// ";Data;true;base64EncodedString(options:);;;Argument[-1];ReturnValue;taint",
 	let dataTainted16 = source() as! Data
-	sink(arg: dataTainted16.base64EncodedString(options: [])) // $ tainted=132
+	sink(arg: dataTainted16.base64EncodedString(options: [])) // $ tainted=143
 
 	// ";Data;true;compactMap(_:);;;Argument[-1];ReturnValue;taint",
 	let dataTainted17 = source() as! Data
 	let compactMapped: [Int] = dataTainted17.compactMap { str in Int(str) }
-	sink(arg: compactMapped) // $ tainted=136
+	sink(arg: compactMapped) // $ tainted=147
 
 	// ";Data;true;copyBytes(to:);;;Argument[-1];Argument[0];taint",
 	let dataTainted18 = source() as! Data
 	let pointerTainted18 = UnsafeMutableRawBufferPointer.allocate(byteCount: 0, alignment: 0)
 	dataTainted18.copyBytes(to: pointerTainted18)
-	sink(arg: pointerTainted18) // $ tainted=141
+	sink(arg: pointerTainted18) // $ tainted=152
 
 	// ";Data;true;copyBytes(to:count:);;;Argument[-1];Argument[0];taint",
 	let dataTainted19 = source() as! Data
 	let pointerTainted19 = UnsafeMutablePointer<UInt8>.allocate(capacity: 0)
 	dataTainted19.copyBytes(to: pointerTainted19, count: 0)
-	sink(arg: pointerTainted19) // $ MISSING: tainted=147
+	sink(arg: pointerTainted19) // $ MISSING: tainted=158
 
 	// ";Data;true;copyBytes(to:from:);;;Argument[-1];Argument[0];taint",
 	let dataTainted20 = source() as! Data
 	let pointerTainted20 = UnsafeMutablePointer<UInt8>.allocate(capacity: 0)
 	dataTainted20.copyBytes(to: pointerTainted20, from: 0..<1)
-	sink(arg: pointerTainted20) // $ MISSING: tainted=153
+	sink(arg: pointerTainted20) // $ MISSING: tainted=164
 
 	// ";Data;true;flatMap(_:);;;Argument[-1];ReturnValue;taint",
 	let dataTainted21 = source() as! Data
 	let flatMapped = dataTainted21.flatMap { Array(repeating: $0, count: 0) }
-	sink(arg: flatMapped) // $ tainted=159
+	sink(arg: flatMapped) // $ tainted=170
 
 	let dataTainted22 = source() as! Data
 	let flatMapped2 = dataTainted22.flatMap { str in Int(str) }
-	sink(arg: flatMapped2) // $ tainted=163
+	sink(arg: flatMapped2) // $ tainted=174
 
 	// ";Data;true;insert(_:at:);;;Argument[0];Argument[-1];taint",
 	let dataTainted23 = Data("")
 	dataTainted23.insert(source() as! UInt8, at: 0)
-	sink(arg: dataTainted23) // $ tainted=169
+	sink(arg: dataTainted23) // $ tainted=180
 
 	// ";Data;true;insert(contentsOf:at:);;;Argument[0];Argument[-1];taint",
 	let dataTainted24 = Data("")
 	dataTainted24.insert(contentsOf: source() as! [UInt8], at: 0)
-	sink(arg: dataTainted24) // $ tainted=174
+	sink(arg: dataTainted24) // $ tainted=185
 
 	// ";Data;true;map(_:);;;Argument[-1];ReturnValue;taint",
 	let dataTainted25 = source() as! Data
 	let mapped = dataTainted25.map { $0 }
-	sink(arg: mapped) // $ tainted=178
+	sink(arg: mapped) // $ tainted=189
 
 	// ";Data;true;reduce(into:_:);;;Argument[-1];ReturnValue;taint",
 	let dataTainted26 = source() as! Data
 	let reduced = dataTainted26.reduce(into: [:]) { c, i in c[i, default: 0] += 1 }
-	sink(arg: reduced) // $ tainted=183
+	sink(arg: reduced) // $ tainted=194
 
 	// ";Data;true;replace(_:with:maxReplacements:);;;Argument[1];Argument[-1];taint",
 	let dataTainted27 = Data("")
 	dataTainted27.replace([0], with: source() as! [UInt8], maxReplacements: .max)
-	sink(arg: dataTainted27) // $ tainted=189
+	sink(arg: dataTainted27) // $ tainted=200
 
 	// ";Data;true;replaceSubrange(_:with:);;;Argument[1];Argument[-1];taint",
 	let dataTainted28 = Data("")
 	dataTainted28.replaceSubrange(1..<3, with: source() as! Data)
-	sink(arg: dataTainted28) // $ tainted=194
+	sink(arg: dataTainted28) // $ tainted=205
 
 	let dataTainted29 = Data("")
 	dataTainted29.replaceSubrange(1..<3, with: source() as! [UInt8])
-	sink(arg: dataTainted29) // $ tainted=198
+	sink(arg: dataTainted29) // $ tainted=209
 
 	let dataTainted30 = Data("")
 	dataTainted30.replaceSubrange(1..<3, with: source() as! UnsafeBufferPointer<UInt8>)
-	sink(arg: dataTainted30) // $ tainted=202
+	sink(arg: dataTainted30) // $ tainted=213
 
 	// ";Data;true;replaceSubrange(_:with:count:);;;Argument[1];Argument[-1];taint",
 	let dataTainted31 = Data("")
 	dataTainted31.replaceSubrange(1..<3, with: source() as! UnsafeRawPointer, count: 0)
-	sink(arg: dataTainted31) // $ tainted=207
+	sink(arg: dataTainted31) // $ tainted=218
 
 	// ";Data;true;replacing(_:with:maxReplacements:);;;Argument[1];Argument[-1];taint",
 	let dataTainted32 = Data("")
-	dataTainted32.replacing([0], with: source() as! [UInt8], maxReplacements: 0)
-	sink(arg: dataTainted32) // $ tainted=212
+	let _ = dataTainted32.replacing([0], with: source() as! [UInt8], maxReplacements: 0)
+	sink(arg: dataTainted32) // $ tainted=223
 
 	// ";Data;true;replacing(_:with:subrange:maxReplacements:);;;Argument[1];Argument[-1];taint",
 	let dataTainted33 = Data("")
-	dataTainted33.replacing([0], with: source() as! [UInt8], subrange: 1..<3, maxReplacements: 0)
-	sink(arg: dataTainted33) // $ tainted=217
+	let _ = dataTainted33.replacing([0], with: source() as! [UInt8], subrange: 1..<3, maxReplacements: 0)
+	sink(arg: dataTainted33) // $ tainted=228
 
-	// ";Data;true;shuffled();;;Argument[-1];ReturnValue;taint",
+	// ";Data;true;reversed();;;Argument[-1];ReturnValue;taint",
 	let dataTainted34 = source() as! Data
-	sink(arg: dataTainted34.shuffled()) // $ tainted=221
-	
-	// ";Data;true;shuffled(using:);;;Argument[-1];ReturnValue;taint",
+	sink(arg: dataTainted34.reversed()) // $ MISSING: tainted=232 // Needs models for BidirectionalCollection
+
+	// ";Data;true;sorted();;;Argument[-1];ReturnValue;taint",
 	let dataTainted35 = source() as! Data
-	var rng = rng()!
-	sink(arg: dataTainted35.shuffled(using: &rng)) // $ tainted=225
+	sink(arg: dataTainted35.sorted()) // $ tainted=236
+
+	// ";Data;true;sorted(by:);;;Argument[-1];ReturnValue;taint",
+	let dataTainted36 = source() as! Data
+	sink(arg: dataTainted36.sorted{ _,_ in return false }) // $ tainted=240
 
 	// ";Data;true;sorted(using:);;;Argument[-1];ReturnValue;taint",
-	let dataTainted36 = source() as! Data
-	sink(arg: dataTainted36.sorted(using: cmp()!)) // $ tainted=230
+	let dataTainted37 = source() as! Data
+	sink(arg: dataTainted37.sorted(using: cmp()!)) // $ tainted=244
+
+	// ";Data;true;shuffled();;;Argument[-1];ReturnValue;taint",
+	let dataTainted38 = source() as! Data
+	sink(arg: dataTainted38.shuffled()) // $ tainted=248
+
+	// ";Data;true;shuffled(using:);;;Argument[-1];ReturnValue;taint",
+	let dataTainted39 = source() as! Data
+	var rng = rng()!
+	sink(arg: dataTainted39.shuffled(using: &rng)) // $ tainted=252
 
 	// ";Data;true;trimmingPrefix(_:);;;Argument[-1];ReturnValue;taint",
-	let dataTainted37 = source() as! Data
-	sink(arg: dataTainted37.trimmingPrefix([0])) // $ tainted=234
+	let dataTainted40 = source() as! Data
+	sink(arg: dataTainted40.trimmingPrefix([0])) // $ tainted=257
 
 	// ";Data;true;trimmingPrefix(while:);;;Argument[-1];ReturnValue;taint"
-	let dataTainted38 = source() as! Data
-	sink(arg: dataTainted38.trimmingPrefix { _ in false }) // $ tainted=238
-
+	let dataTainted41 = source() as! Data
+	sink(arg: dataTainted41.trimmingPrefix { _ in false }) // $ tainted=261
 }

From e67b72d954b9eb05a57b1916319bef7a06073cbb Mon Sep 17 00:00:00 2001
From: Tony Torralba <atorralba@users.noreply.github.com>
Date: Wed, 23 Nov 2022 12:45:49 +0100
Subject: [PATCH 0611/1420] Update test expectations

---
 .../dataflow/taint/LocalTaint.expected        |   2 +-
 .../dataflow/taint/Taint.expected             | 782 +++++++++---------
 2 files changed, 394 insertions(+), 390 deletions(-)

diff --git a/swift/ql/test/library-tests/dataflow/taint/LocalTaint.expected b/swift/ql/test/library-tests/dataflow/taint/LocalTaint.expected
index 9e3f081261c..8ba56979b65 100644
--- a/swift/ql/test/library-tests/dataflow/taint/LocalTaint.expected
+++ b/swift/ql/test/library-tests/dataflow/taint/LocalTaint.expected
@@ -1,7 +1,7 @@
+| data.swift:195:58:195:58 | &... | data.swift:195:58:195:73 | ...[...] |
 | nsdata.swift:139:15:139:15 | nsDataTainted24 | nsdata.swift:139:15:139:31 | .bytes |
 | nsdata.swift:140:15:140:15 | nsDataTainted24 | nsdata.swift:140:15:140:31 | .description |
 | nsmutabledata.swift:49:15:49:15 | nsMutableDataTainted6 | nsmutabledata.swift:49:15:49:37 | .mutableBytes |
-| data.swift:184:58:184:58 | &... | data.swift:184:58:184:73 | ...[...] |
 | string.swift:7:13:7:13 |  | string.swift:7:13:7:13 | [post]  |
 | string.swift:7:13:7:13 |  | string.swift:7:14:7:14 | [post] &... |
 | string.swift:7:13:7:13 | TapExpr | string.swift:7:13:7:13 | "..." |
diff --git a/swift/ql/test/library-tests/dataflow/taint/Taint.expected b/swift/ql/test/library-tests/dataflow/taint/Taint.expected
index 9430f377bef..37d4e5dda85 100644
--- a/swift/ql/test/library-tests/dataflow/taint/Taint.expected
+++ b/swift/ql/test/library-tests/dataflow/taint/Taint.expected
@@ -1,146 +1,155 @@
 edges
+| data.swift:25:2:25:66 | [summary param] 0 in init(base64Encoded:options:) :  | file://:0:0:0:0 | [summary] to write: return (return) in init(base64Encoded:options:) :  |
+| data.swift:26:2:26:61 | [summary param] 0 in init(buffer:) :  | file://:0:0:0:0 | [summary] to write: return (return) in init(buffer:) :  |
+| data.swift:27:2:27:62 | [summary param] 0 in init(buffer:) :  | file://:0:0:0:0 | [summary] to write: return (return) in init(buffer:) :  |
+| data.swift:28:2:28:45 | [summary param] 0 in init(bytes:count:) :  | file://:0:0:0:0 | [summary] to write: return (return) in init(bytes:count:) :  |
+| data.swift:29:2:29:82 | [summary param] 0 in init(bytesNoCopy:count:deallocator:) :  | file://:0:0:0:0 | [summary] to write: return (return) in init(bytesNoCopy:count:deallocator:) :  |
+| data.swift:30:2:30:50 | [summary param] 0 in init(contentsOf:options:) :  | file://:0:0:0:0 | [summary] to write: return (return) in init(contentsOf:options:) :  |
+| data.swift:31:2:31:29 | [summary param] 0 in init(referencing:) :  | file://:0:0:0:0 | [summary] to write: return (return) in init(referencing:) :  |
+| data.swift:32:2:32:24 | [summary param] 0 in append(_:) :  | file://:0:0:0:0 | [summary] to write: argument this in append(_:) :  |
+| data.swift:33:2:33:25 | [summary param] 0 in append(_:) :  | file://:0:0:0:0 | [summary] to write: argument this in append(_:) :  |
+| data.swift:34:2:34:63 | [summary param] 0 in append(_:) :  | file://:0:0:0:0 | [summary] to write: argument this in append(_:) :  |
+| data.swift:35:2:35:52 | [summary param] 0 in append(_:count:) :  | file://:0:0:0:0 | [summary] to write: argument this in append(_:count:) :  |
+| data.swift:36:2:36:36 | [summary param] 0 in append(contentsOf:) :  | file://:0:0:0:0 | [summary] to write: argument this in append(contentsOf:) :  |
+| data.swift:38:2:38:88 | [summary param] this in base64EncodedData(options:) :  | file://:0:0:0:0 | [summary] to write: return (return) in base64EncodedData(options:) :  |
+| data.swift:39:2:39:86 | [summary param] this in base64EncodedString(options:) :  | file://:0:0:0:0 | [summary] to write: return (return) in base64EncodedString(options:) :  |
+| data.swift:40:2:40:99 | [summary param] this in compactMap(_:) :  | file://:0:0:0:0 | [summary] to write: return (return) in compactMap(_:) :  |
+| data.swift:41:2:41:53 | [summary param] this in copyBytes(to:) :  | file://:0:0:0:0 | [summary] to write: argument 0 in copyBytes(to:) :  |
+| data.swift:44:2:44:137 | [summary param] this in flatMap(_:) :  | file://:0:0:0:0 | [summary] to write: return (return) in flatMap(_:) :  |
+| data.swift:45:2:45:97 | [summary param] this in flatMap(_:) :  | file://:0:0:0:0 | [summary] to write: return (return) in flatMap(_:) :  |
+| data.swift:46:2:46:34 | [summary param] 0 in insert(_:at:) :  | file://:0:0:0:0 | [summary] to write: argument this in insert(_:at:) :  |
+| data.swift:47:2:47:83 | [summary param] 0 in insert(contentsOf:at:) :  | file://:0:0:0:0 | [summary] to write: argument this in insert(contentsOf:at:) :  |
+| data.swift:48:2:48:50 | [summary param] this in map(_:) :  | file://:0:0:0:0 | [summary] to write: return (return) in map(_:) :  |
+| data.swift:49:2:49:115 | [summary param] this in reduce(into:_:) :  | file://:0:0:0:0 | [summary] to write: return (return) in reduce(into:_:) :  |
+| data.swift:50:2:50:180 | [summary param] 1 in replace(_:with:maxReplacements:) :  | file://:0:0:0:0 | [summary] to write: argument this in replace(_:with:maxReplacements:) :  |
+| data.swift:51:2:51:58 | [summary param] 1 in replaceSubrange(_:with:) :  | file://:0:0:0:0 | [summary] to write: argument this in replaceSubrange(_:with:) :  |
+| data.swift:52:2:52:151 | [summary param] 1 in replaceSubrange(_:with:) :  | file://:0:0:0:0 | [summary] to write: argument this in replaceSubrange(_:with:) :  |
+| data.swift:54:2:54:82 | [summary param] 1 in replaceSubrange(_:with:count:) :  | file://:0:0:0:0 | [summary] to write: argument this in replaceSubrange(_:with:count:) :  |
+| data.swift:56:2:56:214 | [summary param] 1 in replacing(_:with:maxReplacements:) :  | file://:0:0:0:0 | [summary] to write: argument this in replacing(_:with:maxReplacements:) :  |
+| data.swift:57:2:57:236 | [summary param] 1 in replacing(_:with:subrange:maxReplacements:) :  | file://:0:0:0:0 | [summary] to write: argument this in replacing(_:with:subrange:maxReplacements:) :  |
+| data.swift:58:2:58:39 | [summary param] this in sorted() :  | file://:0:0:0:0 | [summary] to write: return (return) in sorted() :  |
+| data.swift:59:2:59:81 | [summary param] this in sorted(by:) :  | file://:0:0:0:0 | [summary] to write: return (return) in sorted(by:) :  |
+| data.swift:60:2:60:132 | [summary param] this in sorted(using:) :  | file://:0:0:0:0 | [summary] to write: return (return) in sorted(using:) :  |
+| data.swift:61:2:61:41 | [summary param] this in shuffled() :  | file://:0:0:0:0 | [summary] to write: return (return) in shuffled() :  |
+| data.swift:62:2:62:58 | [summary param] this in shuffled(using:) :  | file://:0:0:0:0 | [summary] to write: return (return) in shuffled(using:) :  |
+| data.swift:63:2:63:123 | [summary param] this in trimmingPrefix(_:) :  | file://:0:0:0:0 | [summary] to write: return (return) in trimmingPrefix(_:) :  |
+| data.swift:64:2:64:72 | [summary param] this in trimmingPrefix(while:) :  | file://:0:0:0:0 | [summary] to write: return (return) in trimmingPrefix(while:) :  |
+| data.swift:89:21:89:71 | call to init(base64Encoded:options:) :  | data.swift:90:12:90:12 | dataTainted3 |
+| data.swift:89:41:89:48 | call to source() :  | data.swift:25:2:25:66 | [summary param] 0 in init(base64Encoded:options:) :  |
+| data.swift:89:41:89:48 | call to source() :  | data.swift:89:21:89:71 | call to init(base64Encoded:options:) :  |
+| data.swift:93:21:93:73 | call to init(buffer:) :  | data.swift:94:12:94:12 | dataTainted4 |
+| data.swift:93:34:93:41 | call to source() :  | data.swift:26:2:26:61 | [summary param] 0 in init(buffer:) :  |
+| data.swift:93:34:93:41 | call to source() :  | data.swift:93:21:93:73 | call to init(buffer:) :  |
+| data.swift:95:21:95:74 | call to init(buffer:) :  | data.swift:96:12:96:12 | dataTainted5 |
+| data.swift:95:34:95:41 | call to source() :  | data.swift:27:2:27:62 | [summary param] 0 in init(buffer:) :  |
+| data.swift:95:34:95:41 | call to source() :  | data.swift:95:21:95:74 | call to init(buffer:) :  |
+| data.swift:99:21:99:72 | call to init(bytes:count:) :  | data.swift:100:12:100:12 | dataTainted6 |
+| data.swift:99:33:99:40 | call to source() :  | data.swift:28:2:28:45 | [summary param] 0 in init(bytes:count:) :  |
+| data.swift:99:33:99:40 | call to source() :  | data.swift:99:21:99:72 | call to init(bytes:count:) :  |
+| data.swift:103:21:103:114 | call to init(bytesNoCopy:count:deallocator:) :  | data.swift:104:12:104:12 | dataTainted7 |
+| data.swift:103:39:103:46 | call to source() :  | data.swift:29:2:29:82 | [summary param] 0 in init(bytesNoCopy:count:deallocator:) :  |
+| data.swift:103:39:103:46 | call to source() :  | data.swift:103:21:103:114 | call to init(bytesNoCopy:count:deallocator:) :  |
+| data.swift:107:20:107:27 | call to source() :  | data.swift:108:38:108:38 | urlTainted8 :  |
+| data.swift:108:21:108:62 | call to init(contentsOf:options:) :  | data.swift:109:12:109:12 | dataTainted8 |
+| data.swift:108:38:108:38 | urlTainted8 :  | data.swift:30:2:30:50 | [summary param] 0 in init(contentsOf:options:) :  |
+| data.swift:108:38:108:38 | urlTainted8 :  | data.swift:108:21:108:62 | call to init(contentsOf:options:) :  |
+| data.swift:112:21:112:58 | call to init(referencing:) :  | data.swift:113:12:113:12 | dataTainted9 |
+| data.swift:112:39:112:46 | call to source() :  | data.swift:31:2:31:29 | [summary param] 0 in init(referencing:) :  |
+| data.swift:112:39:112:46 | call to source() :  | data.swift:112:21:112:58 | call to init(referencing:) :  |
+| data.swift:117:2:117:2 | [post] dataTainted10 :  | data.swift:118:12:118:12 | dataTainted10 |
+| data.swift:117:23:117:30 | call to source() :  | data.swift:32:2:32:24 | [summary param] 0 in append(_:) :  |
+| data.swift:117:23:117:30 | call to source() :  | data.swift:117:2:117:2 | [post] dataTainted10 :  |
+| data.swift:121:2:121:2 | [post] dataTainted11 :  | data.swift:122:12:122:12 | dataTainted11 |
+| data.swift:121:23:121:30 | call to source() :  | data.swift:33:2:33:25 | [summary param] 0 in append(_:) :  |
+| data.swift:121:23:121:30 | call to source() :  | data.swift:121:2:121:2 | [post] dataTainted11 :  |
+| data.swift:125:2:125:2 | [post] dataTainted12 :  | data.swift:126:12:126:12 | dataTainted12 |
+| data.swift:125:23:125:30 | call to source() :  | data.swift:34:2:34:63 | [summary param] 0 in append(_:) :  |
+| data.swift:125:23:125:30 | call to source() :  | data.swift:125:2:125:2 | [post] dataTainted12 :  |
+| data.swift:130:2:130:2 | [post] dataTainted13 :  | data.swift:131:12:131:12 | dataTainted13 |
+| data.swift:130:23:130:30 | call to source() :  | data.swift:35:2:35:52 | [summary param] 0 in append(_:count:) :  |
+| data.swift:130:23:130:30 | call to source() :  | data.swift:130:2:130:2 | [post] dataTainted13 :  |
+| data.swift:135:2:135:2 | [post] dataTainted14 :  | data.swift:136:12:136:12 | dataTainted14 |
+| data.swift:135:35:135:42 | call to source() :  | data.swift:36:2:36:36 | [summary param] 0 in append(contentsOf:) :  |
+| data.swift:135:35:135:42 | call to source() :  | data.swift:135:2:135:2 | [post] dataTainted14 :  |
+| data.swift:139:22:139:29 | call to source() :  | data.swift:140:12:140:12 | dataTainted15 :  |
+| data.swift:140:12:140:12 | dataTainted15 :  | data.swift:38:2:38:88 | [summary param] this in base64EncodedData(options:) :  |
+| data.swift:140:12:140:12 | dataTainted15 :  | data.swift:140:12:140:55 | call to base64EncodedData(options:) |
+| data.swift:143:22:143:29 | call to source() :  | data.swift:144:12:144:12 | dataTainted16 :  |
+| data.swift:144:12:144:12 | dataTainted16 :  | data.swift:39:2:39:86 | [summary param] this in base64EncodedString(options:) :  |
+| data.swift:144:12:144:12 | dataTainted16 :  | data.swift:144:12:144:57 | call to base64EncodedString(options:) |
+| data.swift:147:22:147:29 | call to source() :  | data.swift:148:29:148:29 | dataTainted17 :  |
+| data.swift:148:29:148:29 | dataTainted17 :  | data.swift:40:2:40:99 | [summary param] this in compactMap(_:) :  |
+| data.swift:148:29:148:29 | dataTainted17 :  | data.swift:148:29:148:72 | call to compactMap(_:) :  |
+| data.swift:148:29:148:72 | call to compactMap(_:) :  | data.swift:149:12:149:12 | compactMapped |
+| data.swift:152:22:152:29 | call to source() :  | data.swift:154:2:154:2 | dataTainted18 :  |
+| data.swift:154:2:154:2 | dataTainted18 :  | data.swift:41:2:41:53 | [summary param] this in copyBytes(to:) :  |
+| data.swift:154:2:154:2 | dataTainted18 :  | data.swift:154:30:154:30 | [post] pointerTainted18 :  |
+| data.swift:154:30:154:30 | [post] pointerTainted18 :  | data.swift:155:12:155:12 | pointerTainted18 |
+| data.swift:170:22:170:29 | call to source() :  | data.swift:171:19:171:19 | dataTainted21 :  |
+| data.swift:171:19:171:19 | dataTainted21 :  | data.swift:44:2:44:137 | [summary param] this in flatMap(_:) :  |
+| data.swift:171:19:171:19 | dataTainted21 :  | data.swift:171:19:171:74 | call to flatMap(_:) :  |
+| data.swift:171:19:171:74 | call to flatMap(_:) :  | data.swift:172:12:172:12 | flatMapped |
+| data.swift:174:22:174:29 | call to source() :  | data.swift:175:20:175:20 | dataTainted22 :  |
+| data.swift:175:20:175:20 | dataTainted22 :  | data.swift:45:2:45:97 | [summary param] this in flatMap(_:) :  |
+| data.swift:175:20:175:20 | dataTainted22 :  | data.swift:175:20:175:60 | call to flatMap(_:) :  |
+| data.swift:175:20:175:60 | call to flatMap(_:) :  | data.swift:176:12:176:12 | flatMapped2 |
+| data.swift:180:2:180:2 | [post] dataTainted23 :  | data.swift:181:12:181:12 | dataTainted23 |
+| data.swift:180:23:180:30 | call to source() :  | data.swift:46:2:46:34 | [summary param] 0 in insert(_:at:) :  |
+| data.swift:180:23:180:30 | call to source() :  | data.swift:180:2:180:2 | [post] dataTainted23 :  |
+| data.swift:185:2:185:2 | [post] dataTainted24 :  | data.swift:186:12:186:12 | dataTainted24 |
+| data.swift:185:35:185:42 | call to source() :  | data.swift:47:2:47:83 | [summary param] 0 in insert(contentsOf:at:) :  |
+| data.swift:185:35:185:42 | call to source() :  | data.swift:185:2:185:2 | [post] dataTainted24 :  |
+| data.swift:189:22:189:29 | call to source() :  | data.swift:190:15:190:15 | dataTainted25 :  |
+| data.swift:190:15:190:15 | dataTainted25 :  | data.swift:48:2:48:50 | [summary param] this in map(_:) :  |
+| data.swift:190:15:190:15 | dataTainted25 :  | data.swift:190:15:190:38 | call to map(_:) :  |
+| data.swift:190:15:190:38 | call to map(_:) :  | data.swift:191:12:191:12 | mapped |
+| data.swift:194:22:194:29 | call to source() :  | data.swift:195:16:195:16 | dataTainted26 :  |
+| data.swift:195:16:195:16 | dataTainted26 :  | data.swift:49:2:49:115 | [summary param] this in reduce(into:_:) :  |
+| data.swift:195:16:195:16 | dataTainted26 :  | data.swift:195:16:195:80 | call to reduce(into:_:) :  |
+| data.swift:195:16:195:80 | call to reduce(into:_:) :  | data.swift:196:12:196:12 | reduced |
+| data.swift:200:2:200:2 | [post] dataTainted27 :  | data.swift:201:12:201:12 | dataTainted27 |
+| data.swift:200:35:200:42 | call to source() :  | data.swift:50:2:50:180 | [summary param] 1 in replace(_:with:maxReplacements:) :  |
+| data.swift:200:35:200:42 | call to source() :  | data.swift:200:2:200:2 | [post] dataTainted27 :  |
+| data.swift:205:2:205:2 | [post] dataTainted28 :  | data.swift:206:12:206:12 | dataTainted28 |
+| data.swift:205:45:205:52 | call to source() :  | data.swift:51:2:51:58 | [summary param] 1 in replaceSubrange(_:with:) :  |
+| data.swift:205:45:205:52 | call to source() :  | data.swift:205:2:205:2 | [post] dataTainted28 :  |
+| data.swift:209:2:209:2 | [post] dataTainted29 :  | data.swift:210:12:210:12 | dataTainted29 |
+| data.swift:209:45:209:52 | call to source() :  | data.swift:52:2:52:151 | [summary param] 1 in replaceSubrange(_:with:) :  |
+| data.swift:209:45:209:52 | call to source() :  | data.swift:209:2:209:2 | [post] dataTainted29 :  |
+| data.swift:213:2:213:2 | [post] dataTainted30 :  | data.swift:214:12:214:12 | dataTainted30 |
+| data.swift:213:45:213:52 | call to source() :  | data.swift:52:2:52:151 | [summary param] 1 in replaceSubrange(_:with:) :  |
+| data.swift:213:45:213:52 | call to source() :  | data.swift:213:2:213:2 | [post] dataTainted30 :  |
+| data.swift:218:2:218:2 | [post] dataTainted31 :  | data.swift:219:12:219:12 | dataTainted31 |
+| data.swift:218:45:218:52 | call to source() :  | data.swift:54:2:54:82 | [summary param] 1 in replaceSubrange(_:with:count:) :  |
+| data.swift:218:45:218:52 | call to source() :  | data.swift:218:2:218:2 | [post] dataTainted31 :  |
+| data.swift:223:10:223:10 | [post] dataTainted32 :  | data.swift:224:12:224:12 | dataTainted32 |
+| data.swift:223:45:223:52 | call to source() :  | data.swift:56:2:56:214 | [summary param] 1 in replacing(_:with:maxReplacements:) :  |
+| data.swift:223:45:223:52 | call to source() :  | data.swift:223:10:223:10 | [post] dataTainted32 :  |
+| data.swift:228:10:228:10 | [post] dataTainted33 :  | data.swift:229:12:229:12 | dataTainted33 |
+| data.swift:228:45:228:52 | call to source() :  | data.swift:57:2:57:236 | [summary param] 1 in replacing(_:with:subrange:maxReplacements:) :  |
+| data.swift:228:45:228:52 | call to source() :  | data.swift:228:10:228:10 | [post] dataTainted33 :  |
+| data.swift:236:22:236:29 | call to source() :  | data.swift:237:12:237:12 | dataTainted35 :  |
+| data.swift:237:12:237:12 | dataTainted35 :  | data.swift:58:2:58:39 | [summary param] this in sorted() :  |
+| data.swift:237:12:237:12 | dataTainted35 :  | data.swift:237:12:237:33 | call to sorted() |
+| data.swift:240:22:240:29 | call to source() :  | data.swift:241:12:241:12 | dataTainted36 :  |
+| data.swift:241:12:241:12 | dataTainted36 :  | data.swift:59:2:59:81 | [summary param] this in sorted(by:) :  |
+| data.swift:241:12:241:12 | dataTainted36 :  | data.swift:241:12:241:54 | call to sorted(by:) |
+| data.swift:244:22:244:29 | call to source() :  | data.swift:245:12:245:12 | dataTainted37 :  |
+| data.swift:245:12:245:12 | dataTainted37 :  | data.swift:60:2:60:132 | [summary param] this in sorted(using:) :  |
+| data.swift:245:12:245:12 | dataTainted37 :  | data.swift:245:12:245:46 | call to sorted(using:) |
+| data.swift:248:22:248:29 | call to source() :  | data.swift:249:12:249:12 | dataTainted38 :  |
+| data.swift:249:12:249:12 | dataTainted38 :  | data.swift:61:2:61:41 | [summary param] this in shuffled() :  |
+| data.swift:249:12:249:12 | dataTainted38 :  | data.swift:249:12:249:35 | call to shuffled() |
+| data.swift:252:22:252:29 | call to source() :  | data.swift:254:12:254:12 | dataTainted39 :  |
+| data.swift:254:12:254:12 | dataTainted39 :  | data.swift:62:2:62:58 | [summary param] this in shuffled(using:) :  |
+| data.swift:254:12:254:12 | dataTainted39 :  | data.swift:254:12:254:46 | call to shuffled(using:) |
+| data.swift:257:22:257:29 | call to source() :  | data.swift:258:12:258:12 | dataTainted40 :  |
+| data.swift:258:12:258:12 | dataTainted40 :  | data.swift:63:2:63:123 | [summary param] this in trimmingPrefix(_:) :  |
+| data.swift:258:12:258:12 | dataTainted40 :  | data.swift:258:12:258:44 | call to trimmingPrefix(_:) |
+| data.swift:261:22:261:29 | call to source() :  | data.swift:262:12:262:12 | dataTainted41 :  |
+| data.swift:262:12:262:12 | dataTainted41 :  | data.swift:64:2:64:72 | [summary param] this in trimmingPrefix(while:) :  |
+| data.swift:262:12:262:12 | dataTainted41 :  | data.swift:262:12:262:54 | call to trimmingPrefix(while:) |
 | file://:0:0:0:0 | [summary] to write: argument 0.parameter 0 in enumerateBytes(_:) :  | nsdata.swift:110:9:110:9 | bytes :  |
-| data.swift:17:2:17:66 | [summary param] 0 in init(base64Encoded:options:) :  | file://:0:0:0:0 | [summary] to write: return (return) in init(base64Encoded:options:) :  |
-| data.swift:18:2:18:61 | [summary param] 0 in init(buffer:) :  | file://:0:0:0:0 | [summary] to write: return (return) in init(buffer:) :  |
-| data.swift:19:2:19:62 | [summary param] 0 in init(buffer:) :  | file://:0:0:0:0 | [summary] to write: return (return) in init(buffer:) :  |
-| data.swift:20:2:20:45 | [summary param] 0 in init(bytes:count:) :  | file://:0:0:0:0 | [summary] to write: return (return) in init(bytes:count:) :  |
-| data.swift:21:2:21:82 | [summary param] 0 in init(bytesNoCopy:count:deallocator:) :  | file://:0:0:0:0 | [summary] to write: return (return) in init(bytesNoCopy:count:deallocator:) :  |
-| data.swift:22:2:22:50 | [summary param] 0 in init(contentsOf:options:) :  | file://:0:0:0:0 | [summary] to write: return (return) in init(contentsOf:options:) :  |
-| data.swift:23:2:23:29 | [summary param] 0 in init(referencing:) :  | file://:0:0:0:0 | [summary] to write: return (return) in init(referencing:) :  |
-| data.swift:24:2:24:24 | [summary param] 0 in append(_:) :  | file://:0:0:0:0 | [summary] to write: argument this in append(_:) :  |
-| data.swift:25:2:25:25 | [summary param] 0 in append(_:) :  | file://:0:0:0:0 | [summary] to write: argument this in append(_:) :  |
-| data.swift:26:2:26:63 | [summary param] 0 in append(_:) :  | file://:0:0:0:0 | [summary] to write: argument this in append(_:) :  |
-| data.swift:27:2:27:52 | [summary param] 0 in append(_:count:) :  | file://:0:0:0:0 | [summary] to write: argument this in append(_:count:) :  |
-| data.swift:28:2:28:36 | [summary param] 0 in append(contentsOf:) :  | file://:0:0:0:0 | [summary] to write: argument this in append(contentsOf:) :  |
-| data.swift:30:2:30:88 | [summary param] this in base64EncodedData(options:) :  | file://:0:0:0:0 | [summary] to write: return (return) in base64EncodedData(options:) :  |
-| data.swift:31:2:31:86 | [summary param] this in base64EncodedString(options:) :  | file://:0:0:0:0 | [summary] to write: return (return) in base64EncodedString(options:) :  |
-| data.swift:32:2:32:99 | [summary param] this in compactMap(_:) :  | file://:0:0:0:0 | [summary] to write: return (return) in compactMap(_:) :  |
-| data.swift:33:2:33:53 | [summary param] this in copyBytes(to:) :  | file://:0:0:0:0 | [summary] to write: argument 0 in copyBytes(to:) :  |
-| data.swift:36:2:36:137 | [summary param] this in flatMap(_:) :  | file://:0:0:0:0 | [summary] to write: return (return) in flatMap(_:) :  |
-| data.swift:37:2:37:97 | [summary param] this in flatMap(_:) :  | file://:0:0:0:0 | [summary] to write: return (return) in flatMap(_:) :  |
-| data.swift:38:2:38:34 | [summary param] 0 in insert(_:at:) :  | file://:0:0:0:0 | [summary] to write: argument this in insert(_:at:) :  |
-| data.swift:39:2:39:83 | [summary param] 0 in insert(contentsOf:at:) :  | file://:0:0:0:0 | [summary] to write: argument this in insert(contentsOf:at:) :  |
-| data.swift:40:2:40:50 | [summary param] this in map(_:) :  | file://:0:0:0:0 | [summary] to write: return (return) in map(_:) :  |
-| data.swift:41:2:41:115 | [summary param] this in reduce(into:_:) :  | file://:0:0:0:0 | [summary] to write: return (return) in reduce(into:_:) :  |
-| data.swift:42:2:42:180 | [summary param] 1 in replace(_:with:maxReplacements:) :  | file://:0:0:0:0 | [summary] to write: argument this in replace(_:with:maxReplacements:) :  |
-| data.swift:43:2:43:58 | [summary param] 1 in replaceSubrange(_:with:) :  | file://:0:0:0:0 | [summary] to write: argument this in replaceSubrange(_:with:) :  |
-| data.swift:44:2:44:151 | [summary param] 1 in replaceSubrange(_:with:) :  | file://:0:0:0:0 | [summary] to write: argument this in replaceSubrange(_:with:) :  |
-| data.swift:46:2:46:82 | [summary param] 1 in replaceSubrange(_:with:count:) :  | file://:0:0:0:0 | [summary] to write: argument this in replaceSubrange(_:with:count:) :  |
-| data.swift:48:2:48:214 | [summary param] 1 in replacing(_:with:maxReplacements:) :  | file://:0:0:0:0 | [summary] to write: argument this in replacing(_:with:maxReplacements:) :  |
-| data.swift:49:2:49:236 | [summary param] 1 in replacing(_:with:subrange:maxReplacements:) :  | file://:0:0:0:0 | [summary] to write: argument this in replacing(_:with:subrange:maxReplacements:) :  |
-| data.swift:50:2:50:41 | [summary param] this in shuffled() :  | file://:0:0:0:0 | [summary] to write: return (return) in shuffled() :  |
-| data.swift:51:2:51:58 | [summary param] this in shuffled(using:) :  | file://:0:0:0:0 | [summary] to write: return (return) in shuffled(using:) :  |
-| data.swift:52:2:52:132 | [summary param] this in sorted(using:) :  | file://:0:0:0:0 | [summary] to write: return (return) in sorted(using:) :  |
-| data.swift:53:2:53:123 | [summary param] this in trimmingPrefix(_:) :  | file://:0:0:0:0 | [summary] to write: return (return) in trimmingPrefix(_:) :  |
-| data.swift:54:2:54:72 | [summary param] this in trimmingPrefix(while:) :  | file://:0:0:0:0 | [summary] to write: return (return) in trimmingPrefix(while:) :  |
-| data.swift:79:21:79:71 | call to init(base64Encoded:options:) :  | data.swift:80:12:80:12 | dataTainted3 |
-| data.swift:79:41:79:48 | call to source() :  | data.swift:17:2:17:66 | [summary param] 0 in init(base64Encoded:options:) :  |
-| data.swift:79:41:79:48 | call to source() :  | data.swift:79:21:79:71 | call to init(base64Encoded:options:) :  |
-| data.swift:83:21:83:73 | call to init(buffer:) :  | data.swift:84:12:84:12 | dataTainted4 |
-| data.swift:83:34:83:41 | call to source() :  | data.swift:18:2:18:61 | [summary param] 0 in init(buffer:) :  |
-| data.swift:83:34:83:41 | call to source() :  | data.swift:83:21:83:73 | call to init(buffer:) :  |
-| data.swift:85:21:85:74 | call to init(buffer:) :  | data.swift:86:12:86:12 | dataTainted5 |
-| data.swift:85:34:85:41 | call to source() :  | data.swift:19:2:19:62 | [summary param] 0 in init(buffer:) :  |
-| data.swift:85:34:85:41 | call to source() :  | data.swift:85:21:85:74 | call to init(buffer:) :  |
-| data.swift:89:21:89:72 | call to init(bytes:count:) :  | data.swift:90:12:90:12 | dataTainted6 |
-| data.swift:89:33:89:40 | call to source() :  | data.swift:20:2:20:45 | [summary param] 0 in init(bytes:count:) :  |
-| data.swift:89:33:89:40 | call to source() :  | data.swift:89:21:89:72 | call to init(bytes:count:) :  |
-| data.swift:93:21:93:114 | call to init(bytesNoCopy:count:deallocator:) :  | data.swift:94:12:94:12 | dataTainted7 |
-| data.swift:93:39:93:46 | call to source() :  | data.swift:21:2:21:82 | [summary param] 0 in init(bytesNoCopy:count:deallocator:) :  |
-| data.swift:93:39:93:46 | call to source() :  | data.swift:93:21:93:114 | call to init(bytesNoCopy:count:deallocator:) :  |
-| data.swift:97:21:97:67 | call to init(contentsOf:options:) :  | data.swift:98:12:98:12 | dataTainted8 |
-| data.swift:97:38:97:45 | call to source() :  | data.swift:22:2:22:50 | [summary param] 0 in init(contentsOf:options:) :  |
-| data.swift:97:38:97:45 | call to source() :  | data.swift:97:21:97:67 | call to init(contentsOf:options:) :  |
-| data.swift:101:21:101:58 | call to init(referencing:) :  | data.swift:102:12:102:12 | dataTainted9 |
-| data.swift:101:39:101:46 | call to source() :  | data.swift:23:2:23:29 | [summary param] 0 in init(referencing:) :  |
-| data.swift:101:39:101:46 | call to source() :  | data.swift:101:21:101:58 | call to init(referencing:) :  |
-| data.swift:106:2:106:2 | [post] dataTainted10 :  | data.swift:107:12:107:12 | dataTainted10 |
-| data.swift:106:23:106:30 | call to source() :  | data.swift:24:2:24:24 | [summary param] 0 in append(_:) :  |
-| data.swift:106:23:106:30 | call to source() :  | data.swift:106:2:106:2 | [post] dataTainted10 :  |
-| data.swift:110:2:110:2 | [post] dataTainted11 :  | data.swift:111:12:111:12 | dataTainted11 |
-| data.swift:110:23:110:30 | call to source() :  | data.swift:25:2:25:25 | [summary param] 0 in append(_:) :  |
-| data.swift:110:23:110:30 | call to source() :  | data.swift:110:2:110:2 | [post] dataTainted11 :  |
-| data.swift:114:2:114:2 | [post] dataTainted12 :  | data.swift:115:12:115:12 | dataTainted12 |
-| data.swift:114:23:114:30 | call to source() :  | data.swift:26:2:26:63 | [summary param] 0 in append(_:) :  |
-| data.swift:114:23:114:30 | call to source() :  | data.swift:114:2:114:2 | [post] dataTainted12 :  |
-| data.swift:119:2:119:2 | [post] dataTainted13 :  | data.swift:120:12:120:12 | dataTainted13 |
-| data.swift:119:23:119:30 | call to source() :  | data.swift:27:2:27:52 | [summary param] 0 in append(_:count:) :  |
-| data.swift:119:23:119:30 | call to source() :  | data.swift:119:2:119:2 | [post] dataTainted13 :  |
-| data.swift:124:2:124:2 | [post] dataTainted14 :  | data.swift:125:12:125:12 | dataTainted14 |
-| data.swift:124:35:124:42 | call to source() :  | data.swift:28:2:28:36 | [summary param] 0 in append(contentsOf:) :  |
-| data.swift:124:35:124:42 | call to source() :  | data.swift:124:2:124:2 | [post] dataTainted14 :  |
-| data.swift:128:22:128:29 | call to source() :  | data.swift:129:12:129:12 | dataTainted15 :  |
-| data.swift:129:12:129:12 | dataTainted15 :  | data.swift:30:2:30:88 | [summary param] this in base64EncodedData(options:) :  |
-| data.swift:129:12:129:12 | dataTainted15 :  | data.swift:129:12:129:55 | call to base64EncodedData(options:) |
-| data.swift:132:22:132:29 | call to source() :  | data.swift:133:12:133:12 | dataTainted16 :  |
-| data.swift:133:12:133:12 | dataTainted16 :  | data.swift:31:2:31:86 | [summary param] this in base64EncodedString(options:) :  |
-| data.swift:133:12:133:12 | dataTainted16 :  | data.swift:133:12:133:57 | call to base64EncodedString(options:) |
-| data.swift:136:22:136:29 | call to source() :  | data.swift:137:29:137:29 | dataTainted17 :  |
-| data.swift:137:29:137:29 | dataTainted17 :  | data.swift:32:2:32:99 | [summary param] this in compactMap(_:) :  |
-| data.swift:137:29:137:29 | dataTainted17 :  | data.swift:137:29:137:72 | call to compactMap(_:) :  |
-| data.swift:137:29:137:72 | call to compactMap(_:) :  | data.swift:138:12:138:12 | compactMapped |
-| data.swift:141:22:141:29 | call to source() :  | data.swift:143:2:143:2 | dataTainted18 :  |
-| data.swift:143:2:143:2 | dataTainted18 :  | data.swift:33:2:33:53 | [summary param] this in copyBytes(to:) :  |
-| data.swift:143:2:143:2 | dataTainted18 :  | data.swift:143:30:143:30 | [post] pointerTainted18 :  |
-| data.swift:143:30:143:30 | [post] pointerTainted18 :  | data.swift:144:12:144:12 | pointerTainted18 |
-| data.swift:159:22:159:29 | call to source() :  | data.swift:160:19:160:19 | dataTainted21 :  |
-| data.swift:160:19:160:19 | dataTainted21 :  | data.swift:36:2:36:137 | [summary param] this in flatMap(_:) :  |
-| data.swift:160:19:160:19 | dataTainted21 :  | data.swift:160:19:160:74 | call to flatMap(_:) :  |
-| data.swift:160:19:160:74 | call to flatMap(_:) :  | data.swift:161:12:161:12 | flatMapped |
-| data.swift:163:22:163:29 | call to source() :  | data.swift:164:20:164:20 | dataTainted22 :  |
-| data.swift:164:20:164:20 | dataTainted22 :  | data.swift:37:2:37:97 | [summary param] this in flatMap(_:) :  |
-| data.swift:164:20:164:20 | dataTainted22 :  | data.swift:164:20:164:60 | call to flatMap(_:) :  |
-| data.swift:164:20:164:60 | call to flatMap(_:) :  | data.swift:165:12:165:12 | flatMapped2 |
-| data.swift:169:2:169:2 | [post] dataTainted23 :  | data.swift:170:12:170:12 | dataTainted23 |
-| data.swift:169:23:169:30 | call to source() :  | data.swift:38:2:38:34 | [summary param] 0 in insert(_:at:) :  |
-| data.swift:169:23:169:30 | call to source() :  | data.swift:169:2:169:2 | [post] dataTainted23 :  |
-| data.swift:174:2:174:2 | [post] dataTainted24 :  | data.swift:175:12:175:12 | dataTainted24 |
-| data.swift:174:35:174:42 | call to source() :  | data.swift:39:2:39:83 | [summary param] 0 in insert(contentsOf:at:) :  |
-| data.swift:174:35:174:42 | call to source() :  | data.swift:174:2:174:2 | [post] dataTainted24 :  |
-| data.swift:178:22:178:29 | call to source() :  | data.swift:179:15:179:15 | dataTainted25 :  |
-| data.swift:179:15:179:15 | dataTainted25 :  | data.swift:40:2:40:50 | [summary param] this in map(_:) :  |
-| data.swift:179:15:179:15 | dataTainted25 :  | data.swift:179:15:179:38 | call to map(_:) :  |
-| data.swift:179:15:179:38 | call to map(_:) :  | data.swift:180:12:180:12 | mapped |
-| data.swift:183:22:183:29 | call to source() :  | data.swift:184:16:184:16 | dataTainted26 :  |
-| data.swift:184:16:184:16 | dataTainted26 :  | data.swift:41:2:41:115 | [summary param] this in reduce(into:_:) :  |
-| data.swift:184:16:184:16 | dataTainted26 :  | data.swift:184:16:184:80 | call to reduce(into:_:) :  |
-| data.swift:184:16:184:80 | call to reduce(into:_:) :  | data.swift:185:12:185:12 | reduced |
-| data.swift:189:2:189:2 | [post] dataTainted27 :  | data.swift:190:12:190:12 | dataTainted27 |
-| data.swift:189:35:189:42 | call to source() :  | data.swift:42:2:42:180 | [summary param] 1 in replace(_:with:maxReplacements:) :  |
-| data.swift:189:35:189:42 | call to source() :  | data.swift:189:2:189:2 | [post] dataTainted27 :  |
-| data.swift:194:2:194:2 | [post] dataTainted28 :  | data.swift:195:12:195:12 | dataTainted28 |
-| data.swift:194:45:194:52 | call to source() :  | data.swift:43:2:43:58 | [summary param] 1 in replaceSubrange(_:with:) :  |
-| data.swift:194:45:194:52 | call to source() :  | data.swift:194:2:194:2 | [post] dataTainted28 :  |
-| data.swift:198:2:198:2 | [post] dataTainted29 :  | data.swift:199:12:199:12 | dataTainted29 |
-| data.swift:198:45:198:52 | call to source() :  | data.swift:44:2:44:151 | [summary param] 1 in replaceSubrange(_:with:) :  |
-| data.swift:198:45:198:52 | call to source() :  | data.swift:198:2:198:2 | [post] dataTainted29 :  |
-| data.swift:202:2:202:2 | [post] dataTainted30 :  | data.swift:203:12:203:12 | dataTainted30 |
-| data.swift:202:45:202:52 | call to source() :  | data.swift:44:2:44:151 | [summary param] 1 in replaceSubrange(_:with:) :  |
-| data.swift:202:45:202:52 | call to source() :  | data.swift:202:2:202:2 | [post] dataTainted30 :  |
-| data.swift:207:2:207:2 | [post] dataTainted31 :  | data.swift:208:12:208:12 | dataTainted31 |
-| data.swift:207:45:207:52 | call to source() :  | data.swift:46:2:46:82 | [summary param] 1 in replaceSubrange(_:with:count:) :  |
-| data.swift:207:45:207:52 | call to source() :  | data.swift:207:2:207:2 | [post] dataTainted31 :  |
-| data.swift:212:2:212:2 | [post] dataTainted32 :  | data.swift:213:12:213:12 | dataTainted32 |
-| data.swift:212:37:212:44 | call to source() :  | data.swift:48:2:48:214 | [summary param] 1 in replacing(_:with:maxReplacements:) :  |
-| data.swift:212:37:212:44 | call to source() :  | data.swift:212:2:212:2 | [post] dataTainted32 :  |
-| data.swift:217:2:217:2 | [post] dataTainted33 :  | data.swift:218:12:218:12 | dataTainted33 |
-| data.swift:217:37:217:44 | call to source() :  | data.swift:49:2:49:236 | [summary param] 1 in replacing(_:with:subrange:maxReplacements:) :  |
-| data.swift:217:37:217:44 | call to source() :  | data.swift:217:2:217:2 | [post] dataTainted33 :  |
-| data.swift:221:22:221:29 | call to source() :  | data.swift:222:12:222:12 | dataTainted34 :  |
-| data.swift:222:12:222:12 | dataTainted34 :  | data.swift:50:2:50:41 | [summary param] this in shuffled() :  |
-| data.swift:222:12:222:12 | dataTainted34 :  | data.swift:222:12:222:35 | call to shuffled() |
-| data.swift:225:22:225:29 | call to source() :  | data.swift:227:12:227:12 | dataTainted35 :  |
-| data.swift:227:12:227:12 | dataTainted35 :  | data.swift:51:2:51:58 | [summary param] this in shuffled(using:) :  |
-| data.swift:227:12:227:12 | dataTainted35 :  | data.swift:227:12:227:46 | call to shuffled(using:) |
-| data.swift:230:22:230:29 | call to source() :  | data.swift:231:12:231:12 | dataTainted36 :  |
-| data.swift:231:12:231:12 | dataTainted36 :  | data.swift:52:2:52:132 | [summary param] this in sorted(using:) :  |
-| data.swift:231:12:231:12 | dataTainted36 :  | data.swift:231:12:231:46 | call to sorted(using:) |
-| data.swift:234:22:234:29 | call to source() :  | data.swift:235:12:235:12 | dataTainted37 :  |
-| data.swift:235:12:235:12 | dataTainted37 :  | data.swift:53:2:53:123 | [summary param] this in trimmingPrefix(_:) :  |
-| data.swift:235:12:235:12 | dataTainted37 :  | data.swift:235:12:235:44 | call to trimmingPrefix(_:) |
-| data.swift:238:22:238:29 | call to source() :  | data.swift:239:12:239:12 | dataTainted38 :  |
-| data.swift:239:12:239:12 | dataTainted38 :  | data.swift:54:2:54:72 | [summary param] this in trimmingPrefix(while:) :  |
-| data.swift:239:12:239:12 | dataTainted38 :  | data.swift:239:12:239:54 | call to trimmingPrefix(while:) |
 | file://:0:0:0:0 | [summary] to write: argument 1.parameter 0 in dataTask(with:completionHandler:) :  | url.swift:120:61:120:61 | data :  |
 | nsdata.swift:22:9:22:9 | self :  | file://:0:0:0:0 | .bytes :  |
 | nsdata.swift:23:9:23:9 | self :  | file://:0:0:0:0 | .description :  |
@@ -522,218 +531,219 @@ edges
 | webview.swift:97:17:97:17 | s :  | webview.swift:44:5:44:48 | [summary param] 0 in setValue(_:forProperty:) :  |
 | webview.swift:97:17:97:17 | s :  | webview.swift:97:5:97:5 | [post] v3 :  |
 nodes
-<<<<<<< HEAD
+| data.swift:25:2:25:66 | [summary param] 0 in init(base64Encoded:options:) :  | semmle.label | [summary param] 0 in init(base64Encoded:options:) :  |
+| data.swift:26:2:26:61 | [summary param] 0 in init(buffer:) :  | semmle.label | [summary param] 0 in init(buffer:) :  |
+| data.swift:27:2:27:62 | [summary param] 0 in init(buffer:) :  | semmle.label | [summary param] 0 in init(buffer:) :  |
+| data.swift:28:2:28:45 | [summary param] 0 in init(bytes:count:) :  | semmle.label | [summary param] 0 in init(bytes:count:) :  |
+| data.swift:29:2:29:82 | [summary param] 0 in init(bytesNoCopy:count:deallocator:) :  | semmle.label | [summary param] 0 in init(bytesNoCopy:count:deallocator:) :  |
+| data.swift:30:2:30:50 | [summary param] 0 in init(contentsOf:options:) :  | semmle.label | [summary param] 0 in init(contentsOf:options:) :  |
+| data.swift:31:2:31:29 | [summary param] 0 in init(referencing:) :  | semmle.label | [summary param] 0 in init(referencing:) :  |
+| data.swift:32:2:32:24 | [summary param] 0 in append(_:) :  | semmle.label | [summary param] 0 in append(_:) :  |
+| data.swift:33:2:33:25 | [summary param] 0 in append(_:) :  | semmle.label | [summary param] 0 in append(_:) :  |
+| data.swift:34:2:34:63 | [summary param] 0 in append(_:) :  | semmle.label | [summary param] 0 in append(_:) :  |
+| data.swift:35:2:35:52 | [summary param] 0 in append(_:count:) :  | semmle.label | [summary param] 0 in append(_:count:) :  |
+| data.swift:36:2:36:36 | [summary param] 0 in append(contentsOf:) :  | semmle.label | [summary param] 0 in append(contentsOf:) :  |
+| data.swift:38:2:38:88 | [summary param] this in base64EncodedData(options:) :  | semmle.label | [summary param] this in base64EncodedData(options:) :  |
+| data.swift:39:2:39:86 | [summary param] this in base64EncodedString(options:) :  | semmle.label | [summary param] this in base64EncodedString(options:) :  |
+| data.swift:40:2:40:99 | [summary param] this in compactMap(_:) :  | semmle.label | [summary param] this in compactMap(_:) :  |
+| data.swift:41:2:41:53 | [summary param] this in copyBytes(to:) :  | semmle.label | [summary param] this in copyBytes(to:) :  |
+| data.swift:44:2:44:137 | [summary param] this in flatMap(_:) :  | semmle.label | [summary param] this in flatMap(_:) :  |
+| data.swift:45:2:45:97 | [summary param] this in flatMap(_:) :  | semmle.label | [summary param] this in flatMap(_:) :  |
+| data.swift:46:2:46:34 | [summary param] 0 in insert(_:at:) :  | semmle.label | [summary param] 0 in insert(_:at:) :  |
+| data.swift:47:2:47:83 | [summary param] 0 in insert(contentsOf:at:) :  | semmle.label | [summary param] 0 in insert(contentsOf:at:) :  |
+| data.swift:48:2:48:50 | [summary param] this in map(_:) :  | semmle.label | [summary param] this in map(_:) :  |
+| data.swift:49:2:49:115 | [summary param] this in reduce(into:_:) :  | semmle.label | [summary param] this in reduce(into:_:) :  |
+| data.swift:50:2:50:180 | [summary param] 1 in replace(_:with:maxReplacements:) :  | semmle.label | [summary param] 1 in replace(_:with:maxReplacements:) :  |
+| data.swift:51:2:51:58 | [summary param] 1 in replaceSubrange(_:with:) :  | semmle.label | [summary param] 1 in replaceSubrange(_:with:) :  |
+| data.swift:52:2:52:151 | [summary param] 1 in replaceSubrange(_:with:) :  | semmle.label | [summary param] 1 in replaceSubrange(_:with:) :  |
+| data.swift:54:2:54:82 | [summary param] 1 in replaceSubrange(_:with:count:) :  | semmle.label | [summary param] 1 in replaceSubrange(_:with:count:) :  |
+| data.swift:56:2:56:214 | [summary param] 1 in replacing(_:with:maxReplacements:) :  | semmle.label | [summary param] 1 in replacing(_:with:maxReplacements:) :  |
+| data.swift:57:2:57:236 | [summary param] 1 in replacing(_:with:subrange:maxReplacements:) :  | semmle.label | [summary param] 1 in replacing(_:with:subrange:maxReplacements:) :  |
+| data.swift:58:2:58:39 | [summary param] this in sorted() :  | semmle.label | [summary param] this in sorted() :  |
+| data.swift:59:2:59:81 | [summary param] this in sorted(by:) :  | semmle.label | [summary param] this in sorted(by:) :  |
+| data.swift:60:2:60:132 | [summary param] this in sorted(using:) :  | semmle.label | [summary param] this in sorted(using:) :  |
+| data.swift:61:2:61:41 | [summary param] this in shuffled() :  | semmle.label | [summary param] this in shuffled() :  |
+| data.swift:62:2:62:58 | [summary param] this in shuffled(using:) :  | semmle.label | [summary param] this in shuffled(using:) :  |
+| data.swift:63:2:63:123 | [summary param] this in trimmingPrefix(_:) :  | semmle.label | [summary param] this in trimmingPrefix(_:) :  |
+| data.swift:64:2:64:72 | [summary param] this in trimmingPrefix(while:) :  | semmle.label | [summary param] this in trimmingPrefix(while:) :  |
+| data.swift:89:21:89:71 | call to init(base64Encoded:options:) :  | semmle.label | call to init(base64Encoded:options:) :  |
+| data.swift:89:41:89:48 | call to source() :  | semmle.label | call to source() :  |
+| data.swift:90:12:90:12 | dataTainted3 | semmle.label | dataTainted3 |
+| data.swift:93:21:93:73 | call to init(buffer:) :  | semmle.label | call to init(buffer:) :  |
+| data.swift:93:34:93:41 | call to source() :  | semmle.label | call to source() :  |
+| data.swift:94:12:94:12 | dataTainted4 | semmle.label | dataTainted4 |
+| data.swift:95:21:95:74 | call to init(buffer:) :  | semmle.label | call to init(buffer:) :  |
+| data.swift:95:34:95:41 | call to source() :  | semmle.label | call to source() :  |
+| data.swift:96:12:96:12 | dataTainted5 | semmle.label | dataTainted5 |
+| data.swift:99:21:99:72 | call to init(bytes:count:) :  | semmle.label | call to init(bytes:count:) :  |
+| data.swift:99:33:99:40 | call to source() :  | semmle.label | call to source() :  |
+| data.swift:100:12:100:12 | dataTainted6 | semmle.label | dataTainted6 |
+| data.swift:103:21:103:114 | call to init(bytesNoCopy:count:deallocator:) :  | semmle.label | call to init(bytesNoCopy:count:deallocator:) :  |
+| data.swift:103:39:103:46 | call to source() :  | semmle.label | call to source() :  |
+| data.swift:104:12:104:12 | dataTainted7 | semmle.label | dataTainted7 |
+| data.swift:107:20:107:27 | call to source() :  | semmle.label | call to source() :  |
+| data.swift:108:21:108:62 | call to init(contentsOf:options:) :  | semmle.label | call to init(contentsOf:options:) :  |
+| data.swift:108:38:108:38 | urlTainted8 :  | semmle.label | urlTainted8 :  |
+| data.swift:109:12:109:12 | dataTainted8 | semmle.label | dataTainted8 |
+| data.swift:112:21:112:58 | call to init(referencing:) :  | semmle.label | call to init(referencing:) :  |
+| data.swift:112:39:112:46 | call to source() :  | semmle.label | call to source() :  |
+| data.swift:113:12:113:12 | dataTainted9 | semmle.label | dataTainted9 |
+| data.swift:117:2:117:2 | [post] dataTainted10 :  | semmle.label | [post] dataTainted10 :  |
+| data.swift:117:23:117:30 | call to source() :  | semmle.label | call to source() :  |
+| data.swift:118:12:118:12 | dataTainted10 | semmle.label | dataTainted10 |
+| data.swift:121:2:121:2 | [post] dataTainted11 :  | semmle.label | [post] dataTainted11 :  |
+| data.swift:121:23:121:30 | call to source() :  | semmle.label | call to source() :  |
+| data.swift:122:12:122:12 | dataTainted11 | semmle.label | dataTainted11 |
+| data.swift:125:2:125:2 | [post] dataTainted12 :  | semmle.label | [post] dataTainted12 :  |
+| data.swift:125:23:125:30 | call to source() :  | semmle.label | call to source() :  |
+| data.swift:126:12:126:12 | dataTainted12 | semmle.label | dataTainted12 |
+| data.swift:130:2:130:2 | [post] dataTainted13 :  | semmle.label | [post] dataTainted13 :  |
+| data.swift:130:23:130:30 | call to source() :  | semmle.label | call to source() :  |
+| data.swift:131:12:131:12 | dataTainted13 | semmle.label | dataTainted13 |
+| data.swift:135:2:135:2 | [post] dataTainted14 :  | semmle.label | [post] dataTainted14 :  |
+| data.swift:135:35:135:42 | call to source() :  | semmle.label | call to source() :  |
+| data.swift:136:12:136:12 | dataTainted14 | semmle.label | dataTainted14 |
+| data.swift:139:22:139:29 | call to source() :  | semmle.label | call to source() :  |
+| data.swift:140:12:140:12 | dataTainted15 :  | semmle.label | dataTainted15 :  |
+| data.swift:140:12:140:55 | call to base64EncodedData(options:) | semmle.label | call to base64EncodedData(options:) |
+| data.swift:143:22:143:29 | call to source() :  | semmle.label | call to source() :  |
+| data.swift:144:12:144:12 | dataTainted16 :  | semmle.label | dataTainted16 :  |
+| data.swift:144:12:144:57 | call to base64EncodedString(options:) | semmle.label | call to base64EncodedString(options:) |
+| data.swift:147:22:147:29 | call to source() :  | semmle.label | call to source() :  |
+| data.swift:148:29:148:29 | dataTainted17 :  | semmle.label | dataTainted17 :  |
+| data.swift:148:29:148:72 | call to compactMap(_:) :  | semmle.label | call to compactMap(_:) :  |
+| data.swift:149:12:149:12 | compactMapped | semmle.label | compactMapped |
+| data.swift:152:22:152:29 | call to source() :  | semmle.label | call to source() :  |
+| data.swift:154:2:154:2 | dataTainted18 :  | semmle.label | dataTainted18 :  |
+| data.swift:154:30:154:30 | [post] pointerTainted18 :  | semmle.label | [post] pointerTainted18 :  |
+| data.swift:155:12:155:12 | pointerTainted18 | semmle.label | pointerTainted18 |
+| data.swift:170:22:170:29 | call to source() :  | semmle.label | call to source() :  |
+| data.swift:171:19:171:19 | dataTainted21 :  | semmle.label | dataTainted21 :  |
+| data.swift:171:19:171:74 | call to flatMap(_:) :  | semmle.label | call to flatMap(_:) :  |
+| data.swift:172:12:172:12 | flatMapped | semmle.label | flatMapped |
+| data.swift:174:22:174:29 | call to source() :  | semmle.label | call to source() :  |
+| data.swift:175:20:175:20 | dataTainted22 :  | semmle.label | dataTainted22 :  |
+| data.swift:175:20:175:60 | call to flatMap(_:) :  | semmle.label | call to flatMap(_:) :  |
+| data.swift:176:12:176:12 | flatMapped2 | semmle.label | flatMapped2 |
+| data.swift:180:2:180:2 | [post] dataTainted23 :  | semmle.label | [post] dataTainted23 :  |
+| data.swift:180:23:180:30 | call to source() :  | semmle.label | call to source() :  |
+| data.swift:181:12:181:12 | dataTainted23 | semmle.label | dataTainted23 |
+| data.swift:185:2:185:2 | [post] dataTainted24 :  | semmle.label | [post] dataTainted24 :  |
+| data.swift:185:35:185:42 | call to source() :  | semmle.label | call to source() :  |
+| data.swift:186:12:186:12 | dataTainted24 | semmle.label | dataTainted24 |
+| data.swift:189:22:189:29 | call to source() :  | semmle.label | call to source() :  |
+| data.swift:190:15:190:15 | dataTainted25 :  | semmle.label | dataTainted25 :  |
+| data.swift:190:15:190:38 | call to map(_:) :  | semmle.label | call to map(_:) :  |
+| data.swift:191:12:191:12 | mapped | semmle.label | mapped |
+| data.swift:194:22:194:29 | call to source() :  | semmle.label | call to source() :  |
+| data.swift:195:16:195:16 | dataTainted26 :  | semmle.label | dataTainted26 :  |
+| data.swift:195:16:195:80 | call to reduce(into:_:) :  | semmle.label | call to reduce(into:_:) :  |
+| data.swift:196:12:196:12 | reduced | semmle.label | reduced |
+| data.swift:200:2:200:2 | [post] dataTainted27 :  | semmle.label | [post] dataTainted27 :  |
+| data.swift:200:35:200:42 | call to source() :  | semmle.label | call to source() :  |
+| data.swift:201:12:201:12 | dataTainted27 | semmle.label | dataTainted27 |
+| data.swift:205:2:205:2 | [post] dataTainted28 :  | semmle.label | [post] dataTainted28 :  |
+| data.swift:205:45:205:52 | call to source() :  | semmle.label | call to source() :  |
+| data.swift:206:12:206:12 | dataTainted28 | semmle.label | dataTainted28 |
+| data.swift:209:2:209:2 | [post] dataTainted29 :  | semmle.label | [post] dataTainted29 :  |
+| data.swift:209:45:209:52 | call to source() :  | semmle.label | call to source() :  |
+| data.swift:210:12:210:12 | dataTainted29 | semmle.label | dataTainted29 |
+| data.swift:213:2:213:2 | [post] dataTainted30 :  | semmle.label | [post] dataTainted30 :  |
+| data.swift:213:45:213:52 | call to source() :  | semmle.label | call to source() :  |
+| data.swift:214:12:214:12 | dataTainted30 | semmle.label | dataTainted30 |
+| data.swift:218:2:218:2 | [post] dataTainted31 :  | semmle.label | [post] dataTainted31 :  |
+| data.swift:218:45:218:52 | call to source() :  | semmle.label | call to source() :  |
+| data.swift:219:12:219:12 | dataTainted31 | semmle.label | dataTainted31 |
+| data.swift:223:10:223:10 | [post] dataTainted32 :  | semmle.label | [post] dataTainted32 :  |
+| data.swift:223:45:223:52 | call to source() :  | semmle.label | call to source() :  |
+| data.swift:224:12:224:12 | dataTainted32 | semmle.label | dataTainted32 |
+| data.swift:228:10:228:10 | [post] dataTainted33 :  | semmle.label | [post] dataTainted33 :  |
+| data.swift:228:45:228:52 | call to source() :  | semmle.label | call to source() :  |
+| data.swift:229:12:229:12 | dataTainted33 | semmle.label | dataTainted33 |
+| data.swift:236:22:236:29 | call to source() :  | semmle.label | call to source() :  |
+| data.swift:237:12:237:12 | dataTainted35 :  | semmle.label | dataTainted35 :  |
+| data.swift:237:12:237:33 | call to sorted() | semmle.label | call to sorted() |
+| data.swift:240:22:240:29 | call to source() :  | semmle.label | call to source() :  |
+| data.swift:241:12:241:12 | dataTainted36 :  | semmle.label | dataTainted36 :  |
+| data.swift:241:12:241:54 | call to sorted(by:) | semmle.label | call to sorted(by:) |
+| data.swift:244:22:244:29 | call to source() :  | semmle.label | call to source() :  |
+| data.swift:245:12:245:12 | dataTainted37 :  | semmle.label | dataTainted37 :  |
+| data.swift:245:12:245:46 | call to sorted(using:) | semmle.label | call to sorted(using:) |
+| data.swift:248:22:248:29 | call to source() :  | semmle.label | call to source() :  |
+| data.swift:249:12:249:12 | dataTainted38 :  | semmle.label | dataTainted38 :  |
+| data.swift:249:12:249:35 | call to shuffled() | semmle.label | call to shuffled() |
+| data.swift:252:22:252:29 | call to source() :  | semmle.label | call to source() :  |
+| data.swift:254:12:254:12 | dataTainted39 :  | semmle.label | dataTainted39 :  |
+| data.swift:254:12:254:46 | call to shuffled(using:) | semmle.label | call to shuffled(using:) |
+| data.swift:257:22:257:29 | call to source() :  | semmle.label | call to source() :  |
+| data.swift:258:12:258:12 | dataTainted40 :  | semmle.label | dataTainted40 :  |
+| data.swift:258:12:258:44 | call to trimmingPrefix(_:) | semmle.label | call to trimmingPrefix(_:) |
+| data.swift:261:22:261:29 | call to source() :  | semmle.label | call to source() :  |
+| data.swift:262:12:262:12 | dataTainted41 :  | semmle.label | dataTainted41 :  |
+| data.swift:262:12:262:54 | call to trimmingPrefix(while:) | semmle.label | call to trimmingPrefix(while:) |
 | file://:0:0:0:0 | .bytes :  | semmle.label | .bytes :  |
 | file://:0:0:0:0 | .description :  | semmle.label | .description :  |
 | file://:0:0:0:0 | .mutableBytes :  | semmle.label | .mutableBytes :  |
+| file://:0:0:0:0 | [summary] to write: argument 0 in copyBytes(to:) :  | semmle.label | [summary] to write: argument 0 in copyBytes(to:) :  |
 | file://:0:0:0:0 | [summary] to write: argument 0 in getBytes(_:) :  | semmle.label | [summary] to write: argument 0 in getBytes(_:) :  |
 | file://:0:0:0:0 | [summary] to write: argument 0 in getBytes(_:length:) :  | semmle.label | [summary] to write: argument 0 in getBytes(_:length:) :  |
 | file://:0:0:0:0 | [summary] to write: argument 0 in getBytes(_:range:) :  | semmle.label | [summary] to write: argument 0 in getBytes(_:range:) :  |
 | file://:0:0:0:0 | [summary] to write: argument 0.parameter 0 in enumerateBytes(_:) :  | semmle.label | [summary] to write: argument 0.parameter 0 in enumerateBytes(_:) :  |
 | file://:0:0:0:0 | [summary] to write: argument 1.parameter 0 in dataTask(with:completionHandler:) :  | semmle.label | [summary] to write: argument 1.parameter 0 in dataTask(with:completionHandler:) :  |
 | file://:0:0:0:0 | [summary] to write: argument this in append(_:) :  | semmle.label | [summary] to write: argument this in append(_:) :  |
-| file://:0:0:0:0 | [summary] to write: argument this in append(_:length:) :  | semmle.label | [summary] to write: argument this in append(_:length:) :  |
-| file://:0:0:0:0 | [summary] to write: argument this in defineProperty(_:descriptor:) :  | semmle.label | [summary] to write: argument this in defineProperty(_:descriptor:) :  |
-| file://:0:0:0:0 | [summary] to write: argument this in replaceBytes(in:withBytes:) :  | semmle.label | [summary] to write: argument this in replaceBytes(in:withBytes:) :  |
-| file://:0:0:0:0 | [summary] to write: argument this in replaceBytes(in:withBytes:length:) :  | semmle.label | [summary] to write: argument this in replaceBytes(in:withBytes:length:) :  |
-| file://:0:0:0:0 | [summary] to write: argument this in setData(_:) :  | semmle.label | [summary] to write: argument this in setData(_:) :  |
-=======
-| data.swift:17:2:17:66 | [summary param] 0 in init(base64Encoded:options:) :  | semmle.label | [summary param] 0 in init(base64Encoded:options:) :  |
-| data.swift:18:2:18:61 | [summary param] 0 in init(buffer:) :  | semmle.label | [summary param] 0 in init(buffer:) :  |
-| data.swift:19:2:19:62 | [summary param] 0 in init(buffer:) :  | semmle.label | [summary param] 0 in init(buffer:) :  |
-| data.swift:20:2:20:45 | [summary param] 0 in init(bytes:count:) :  | semmle.label | [summary param] 0 in init(bytes:count:) :  |
-| data.swift:21:2:21:82 | [summary param] 0 in init(bytesNoCopy:count:deallocator:) :  | semmle.label | [summary param] 0 in init(bytesNoCopy:count:deallocator:) :  |
-| data.swift:22:2:22:50 | [summary param] 0 in init(contentsOf:options:) :  | semmle.label | [summary param] 0 in init(contentsOf:options:) :  |
-| data.swift:23:2:23:29 | [summary param] 0 in init(referencing:) :  | semmle.label | [summary param] 0 in init(referencing:) :  |
-| data.swift:24:2:24:24 | [summary param] 0 in append(_:) :  | semmle.label | [summary param] 0 in append(_:) :  |
-| data.swift:25:2:25:25 | [summary param] 0 in append(_:) :  | semmle.label | [summary param] 0 in append(_:) :  |
-| data.swift:26:2:26:63 | [summary param] 0 in append(_:) :  | semmle.label | [summary param] 0 in append(_:) :  |
-| data.swift:27:2:27:52 | [summary param] 0 in append(_:count:) :  | semmle.label | [summary param] 0 in append(_:count:) :  |
-| data.swift:28:2:28:36 | [summary param] 0 in append(contentsOf:) :  | semmle.label | [summary param] 0 in append(contentsOf:) :  |
-| data.swift:30:2:30:88 | [summary param] this in base64EncodedData(options:) :  | semmle.label | [summary param] this in base64EncodedData(options:) :  |
-| data.swift:31:2:31:86 | [summary param] this in base64EncodedString(options:) :  | semmle.label | [summary param] this in base64EncodedString(options:) :  |
-| data.swift:32:2:32:99 | [summary param] this in compactMap(_:) :  | semmle.label | [summary param] this in compactMap(_:) :  |
-| data.swift:33:2:33:53 | [summary param] this in copyBytes(to:) :  | semmle.label | [summary param] this in copyBytes(to:) :  |
-| data.swift:36:2:36:137 | [summary param] this in flatMap(_:) :  | semmle.label | [summary param] this in flatMap(_:) :  |
-| data.swift:37:2:37:97 | [summary param] this in flatMap(_:) :  | semmle.label | [summary param] this in flatMap(_:) :  |
-| data.swift:38:2:38:34 | [summary param] 0 in insert(_:at:) :  | semmle.label | [summary param] 0 in insert(_:at:) :  |
-| data.swift:39:2:39:83 | [summary param] 0 in insert(contentsOf:at:) :  | semmle.label | [summary param] 0 in insert(contentsOf:at:) :  |
-| data.swift:40:2:40:50 | [summary param] this in map(_:) :  | semmle.label | [summary param] this in map(_:) :  |
-| data.swift:41:2:41:115 | [summary param] this in reduce(into:_:) :  | semmle.label | [summary param] this in reduce(into:_:) :  |
-| data.swift:42:2:42:180 | [summary param] 1 in replace(_:with:maxReplacements:) :  | semmle.label | [summary param] 1 in replace(_:with:maxReplacements:) :  |
-| data.swift:43:2:43:58 | [summary param] 1 in replaceSubrange(_:with:) :  | semmle.label | [summary param] 1 in replaceSubrange(_:with:) :  |
-| data.swift:44:2:44:151 | [summary param] 1 in replaceSubrange(_:with:) :  | semmle.label | [summary param] 1 in replaceSubrange(_:with:) :  |
-| data.swift:46:2:46:82 | [summary param] 1 in replaceSubrange(_:with:count:) :  | semmle.label | [summary param] 1 in replaceSubrange(_:with:count:) :  |
-| data.swift:48:2:48:214 | [summary param] 1 in replacing(_:with:maxReplacements:) :  | semmle.label | [summary param] 1 in replacing(_:with:maxReplacements:) :  |
-| data.swift:49:2:49:236 | [summary param] 1 in replacing(_:with:subrange:maxReplacements:) :  | semmle.label | [summary param] 1 in replacing(_:with:subrange:maxReplacements:) :  |
-| data.swift:50:2:50:41 | [summary param] this in shuffled() :  | semmle.label | [summary param] this in shuffled() :  |
-| data.swift:51:2:51:58 | [summary param] this in shuffled(using:) :  | semmle.label | [summary param] this in shuffled(using:) :  |
-| data.swift:52:2:52:132 | [summary param] this in sorted(using:) :  | semmle.label | [summary param] this in sorted(using:) :  |
-| data.swift:53:2:53:123 | [summary param] this in trimmingPrefix(_:) :  | semmle.label | [summary param] this in trimmingPrefix(_:) :  |
-| data.swift:54:2:54:72 | [summary param] this in trimmingPrefix(while:) :  | semmle.label | [summary param] this in trimmingPrefix(while:) :  |
-| data.swift:79:21:79:71 | call to init(base64Encoded:options:) :  | semmle.label | call to init(base64Encoded:options:) :  |
-| data.swift:79:41:79:48 | call to source() :  | semmle.label | call to source() :  |
-| data.swift:80:12:80:12 | dataTainted3 | semmle.label | dataTainted3 |
-| data.swift:83:21:83:73 | call to init(buffer:) :  | semmle.label | call to init(buffer:) :  |
-| data.swift:83:34:83:41 | call to source() :  | semmle.label | call to source() :  |
-| data.swift:84:12:84:12 | dataTainted4 | semmle.label | dataTainted4 |
-| data.swift:85:21:85:74 | call to init(buffer:) :  | semmle.label | call to init(buffer:) :  |
-| data.swift:85:34:85:41 | call to source() :  | semmle.label | call to source() :  |
-| data.swift:86:12:86:12 | dataTainted5 | semmle.label | dataTainted5 |
-| data.swift:89:21:89:72 | call to init(bytes:count:) :  | semmle.label | call to init(bytes:count:) :  |
-| data.swift:89:33:89:40 | call to source() :  | semmle.label | call to source() :  |
-| data.swift:90:12:90:12 | dataTainted6 | semmle.label | dataTainted6 |
-| data.swift:93:21:93:114 | call to init(bytesNoCopy:count:deallocator:) :  | semmle.label | call to init(bytesNoCopy:count:deallocator:) :  |
-| data.swift:93:39:93:46 | call to source() :  | semmle.label | call to source() :  |
-| data.swift:94:12:94:12 | dataTainted7 | semmle.label | dataTainted7 |
-| data.swift:97:21:97:67 | call to init(contentsOf:options:) :  | semmle.label | call to init(contentsOf:options:) :  |
-| data.swift:97:38:97:45 | call to source() :  | semmle.label | call to source() :  |
-| data.swift:98:12:98:12 | dataTainted8 | semmle.label | dataTainted8 |
-| data.swift:101:21:101:58 | call to init(referencing:) :  | semmle.label | call to init(referencing:) :  |
-| data.swift:101:39:101:46 | call to source() :  | semmle.label | call to source() :  |
-| data.swift:102:12:102:12 | dataTainted9 | semmle.label | dataTainted9 |
-| data.swift:106:2:106:2 | [post] dataTainted10 :  | semmle.label | [post] dataTainted10 :  |
-| data.swift:106:23:106:30 | call to source() :  | semmle.label | call to source() :  |
-| data.swift:107:12:107:12 | dataTainted10 | semmle.label | dataTainted10 |
-| data.swift:110:2:110:2 | [post] dataTainted11 :  | semmle.label | [post] dataTainted11 :  |
-| data.swift:110:23:110:30 | call to source() :  | semmle.label | call to source() :  |
-| data.swift:111:12:111:12 | dataTainted11 | semmle.label | dataTainted11 |
-| data.swift:114:2:114:2 | [post] dataTainted12 :  | semmle.label | [post] dataTainted12 :  |
-| data.swift:114:23:114:30 | call to source() :  | semmle.label | call to source() :  |
-| data.swift:115:12:115:12 | dataTainted12 | semmle.label | dataTainted12 |
-| data.swift:119:2:119:2 | [post] dataTainted13 :  | semmle.label | [post] dataTainted13 :  |
-| data.swift:119:23:119:30 | call to source() :  | semmle.label | call to source() :  |
-| data.swift:120:12:120:12 | dataTainted13 | semmle.label | dataTainted13 |
-| data.swift:124:2:124:2 | [post] dataTainted14 :  | semmle.label | [post] dataTainted14 :  |
-| data.swift:124:35:124:42 | call to source() :  | semmle.label | call to source() :  |
-| data.swift:125:12:125:12 | dataTainted14 | semmle.label | dataTainted14 |
-| data.swift:128:22:128:29 | call to source() :  | semmle.label | call to source() :  |
-| data.swift:129:12:129:12 | dataTainted15 :  | semmle.label | dataTainted15 :  |
-| data.swift:129:12:129:55 | call to base64EncodedData(options:) | semmle.label | call to base64EncodedData(options:) |
-| data.swift:132:22:132:29 | call to source() :  | semmle.label | call to source() :  |
-| data.swift:133:12:133:12 | dataTainted16 :  | semmle.label | dataTainted16 :  |
-| data.swift:133:12:133:57 | call to base64EncodedString(options:) | semmle.label | call to base64EncodedString(options:) |
-| data.swift:136:22:136:29 | call to source() :  | semmle.label | call to source() :  |
-| data.swift:137:29:137:29 | dataTainted17 :  | semmle.label | dataTainted17 :  |
-| data.swift:137:29:137:72 | call to compactMap(_:) :  | semmle.label | call to compactMap(_:) :  |
-| data.swift:138:12:138:12 | compactMapped | semmle.label | compactMapped |
-| data.swift:141:22:141:29 | call to source() :  | semmle.label | call to source() :  |
-| data.swift:143:2:143:2 | dataTainted18 :  | semmle.label | dataTainted18 :  |
-| data.swift:143:30:143:30 | [post] pointerTainted18 :  | semmle.label | [post] pointerTainted18 :  |
-| data.swift:144:12:144:12 | pointerTainted18 | semmle.label | pointerTainted18 |
-| data.swift:159:22:159:29 | call to source() :  | semmle.label | call to source() :  |
-| data.swift:160:19:160:19 | dataTainted21 :  | semmle.label | dataTainted21 :  |
-| data.swift:160:19:160:74 | call to flatMap(_:) :  | semmle.label | call to flatMap(_:) :  |
-| data.swift:161:12:161:12 | flatMapped | semmle.label | flatMapped |
-| data.swift:163:22:163:29 | call to source() :  | semmle.label | call to source() :  |
-| data.swift:164:20:164:20 | dataTainted22 :  | semmle.label | dataTainted22 :  |
-| data.swift:164:20:164:60 | call to flatMap(_:) :  | semmle.label | call to flatMap(_:) :  |
-| data.swift:165:12:165:12 | flatMapped2 | semmle.label | flatMapped2 |
-| data.swift:169:2:169:2 | [post] dataTainted23 :  | semmle.label | [post] dataTainted23 :  |
-| data.swift:169:23:169:30 | call to source() :  | semmle.label | call to source() :  |
-| data.swift:170:12:170:12 | dataTainted23 | semmle.label | dataTainted23 |
-| data.swift:174:2:174:2 | [post] dataTainted24 :  | semmle.label | [post] dataTainted24 :  |
-| data.swift:174:35:174:42 | call to source() :  | semmle.label | call to source() :  |
-| data.swift:175:12:175:12 | dataTainted24 | semmle.label | dataTainted24 |
-| data.swift:178:22:178:29 | call to source() :  | semmle.label | call to source() :  |
-| data.swift:179:15:179:15 | dataTainted25 :  | semmle.label | dataTainted25 :  |
-| data.swift:179:15:179:38 | call to map(_:) :  | semmle.label | call to map(_:) :  |
-| data.swift:180:12:180:12 | mapped | semmle.label | mapped |
-| data.swift:183:22:183:29 | call to source() :  | semmle.label | call to source() :  |
-| data.swift:184:16:184:16 | dataTainted26 :  | semmle.label | dataTainted26 :  |
-| data.swift:184:16:184:80 | call to reduce(into:_:) :  | semmle.label | call to reduce(into:_:) :  |
-| data.swift:185:12:185:12 | reduced | semmle.label | reduced |
-| data.swift:189:2:189:2 | [post] dataTainted27 :  | semmle.label | [post] dataTainted27 :  |
-| data.swift:189:35:189:42 | call to source() :  | semmle.label | call to source() :  |
-| data.swift:190:12:190:12 | dataTainted27 | semmle.label | dataTainted27 |
-| data.swift:194:2:194:2 | [post] dataTainted28 :  | semmle.label | [post] dataTainted28 :  |
-| data.swift:194:45:194:52 | call to source() :  | semmle.label | call to source() :  |
-| data.swift:195:12:195:12 | dataTainted28 | semmle.label | dataTainted28 |
-| data.swift:198:2:198:2 | [post] dataTainted29 :  | semmle.label | [post] dataTainted29 :  |
-| data.swift:198:45:198:52 | call to source() :  | semmle.label | call to source() :  |
-| data.swift:199:12:199:12 | dataTainted29 | semmle.label | dataTainted29 |
-| data.swift:202:2:202:2 | [post] dataTainted30 :  | semmle.label | [post] dataTainted30 :  |
-| data.swift:202:45:202:52 | call to source() :  | semmle.label | call to source() :  |
-| data.swift:203:12:203:12 | dataTainted30 | semmle.label | dataTainted30 |
-| data.swift:207:2:207:2 | [post] dataTainted31 :  | semmle.label | [post] dataTainted31 :  |
-| data.swift:207:45:207:52 | call to source() :  | semmle.label | call to source() :  |
-| data.swift:208:12:208:12 | dataTainted31 | semmle.label | dataTainted31 |
-| data.swift:212:2:212:2 | [post] dataTainted32 :  | semmle.label | [post] dataTainted32 :  |
-| data.swift:212:37:212:44 | call to source() :  | semmle.label | call to source() :  |
-| data.swift:213:12:213:12 | dataTainted32 | semmle.label | dataTainted32 |
-| data.swift:217:2:217:2 | [post] dataTainted33 :  | semmle.label | [post] dataTainted33 :  |
-| data.swift:217:37:217:44 | call to source() :  | semmle.label | call to source() :  |
-| data.swift:218:12:218:12 | dataTainted33 | semmle.label | dataTainted33 |
-| data.swift:221:22:221:29 | call to source() :  | semmle.label | call to source() :  |
-| data.swift:222:12:222:12 | dataTainted34 :  | semmle.label | dataTainted34 :  |
-| data.swift:222:12:222:35 | call to shuffled() | semmle.label | call to shuffled() |
-| data.swift:225:22:225:29 | call to source() :  | semmle.label | call to source() :  |
-| data.swift:227:12:227:12 | dataTainted35 :  | semmle.label | dataTainted35 :  |
-| data.swift:227:12:227:46 | call to shuffled(using:) | semmle.label | call to shuffled(using:) |
-| data.swift:230:22:230:29 | call to source() :  | semmle.label | call to source() :  |
-| data.swift:231:12:231:12 | dataTainted36 :  | semmle.label | dataTainted36 :  |
-| data.swift:231:12:231:46 | call to sorted(using:) | semmle.label | call to sorted(using:) |
-| data.swift:234:22:234:29 | call to source() :  | semmle.label | call to source() :  |
-| data.swift:235:12:235:12 | dataTainted37 :  | semmle.label | dataTainted37 :  |
-| data.swift:235:12:235:44 | call to trimmingPrefix(_:) | semmle.label | call to trimmingPrefix(_:) |
-| data.swift:238:22:238:29 | call to source() :  | semmle.label | call to source() :  |
-| data.swift:239:12:239:12 | dataTainted38 :  | semmle.label | dataTainted38 :  |
-| data.swift:239:12:239:54 | call to trimmingPrefix(while:) | semmle.label | call to trimmingPrefix(while:) |
-| file://:0:0:0:0 | [summary] to write: argument 0 in copyBytes(to:) :  | semmle.label | [summary] to write: argument 0 in copyBytes(to:) :  |
-| file://:0:0:0:0 | [summary] to write: argument 1.parameter 0 in dataTask(with:completionHandler:) :  | semmle.label | [summary] to write: argument 1.parameter 0 in dataTask(with:completionHandler:) :  |
 | file://:0:0:0:0 | [summary] to write: argument this in append(_:) :  | semmle.label | [summary] to write: argument this in append(_:) :  |
 | file://:0:0:0:0 | [summary] to write: argument this in append(_:) :  | semmle.label | [summary] to write: argument this in append(_:) :  |
 | file://:0:0:0:0 | [summary] to write: argument this in append(_:) :  | semmle.label | [summary] to write: argument this in append(_:) :  |
 | file://:0:0:0:0 | [summary] to write: argument this in append(_:count:) :  | semmle.label | [summary] to write: argument this in append(_:count:) :  |
+| file://:0:0:0:0 | [summary] to write: argument this in append(_:length:) :  | semmle.label | [summary] to write: argument this in append(_:length:) :  |
 | file://:0:0:0:0 | [summary] to write: argument this in append(contentsOf:) :  | semmle.label | [summary] to write: argument this in append(contentsOf:) :  |
 | file://:0:0:0:0 | [summary] to write: argument this in defineProperty(_:descriptor:) :  | semmle.label | [summary] to write: argument this in defineProperty(_:descriptor:) :  |
 | file://:0:0:0:0 | [summary] to write: argument this in insert(_:at:) :  | semmle.label | [summary] to write: argument this in insert(_:at:) :  |
 | file://:0:0:0:0 | [summary] to write: argument this in insert(contentsOf:at:) :  | semmle.label | [summary] to write: argument this in insert(contentsOf:at:) :  |
 | file://:0:0:0:0 | [summary] to write: argument this in replace(_:with:maxReplacements:) :  | semmle.label | [summary] to write: argument this in replace(_:with:maxReplacements:) :  |
+| file://:0:0:0:0 | [summary] to write: argument this in replaceBytes(in:withBytes:) :  | semmle.label | [summary] to write: argument this in replaceBytes(in:withBytes:) :  |
+| file://:0:0:0:0 | [summary] to write: argument this in replaceBytes(in:withBytes:length:) :  | semmle.label | [summary] to write: argument this in replaceBytes(in:withBytes:length:) :  |
 | file://:0:0:0:0 | [summary] to write: argument this in replaceSubrange(_:with:) :  | semmle.label | [summary] to write: argument this in replaceSubrange(_:with:) :  |
 | file://:0:0:0:0 | [summary] to write: argument this in replaceSubrange(_:with:) :  | semmle.label | [summary] to write: argument this in replaceSubrange(_:with:) :  |
 | file://:0:0:0:0 | [summary] to write: argument this in replaceSubrange(_:with:count:) :  | semmle.label | [summary] to write: argument this in replaceSubrange(_:with:count:) :  |
 | file://:0:0:0:0 | [summary] to write: argument this in replacing(_:with:maxReplacements:) :  | semmle.label | [summary] to write: argument this in replacing(_:with:maxReplacements:) :  |
 | file://:0:0:0:0 | [summary] to write: argument this in replacing(_:with:subrange:maxReplacements:) :  | semmle.label | [summary] to write: argument this in replacing(_:with:subrange:maxReplacements:) :  |
->>>>>>> 7ef2618758 (Update test expectations)
+| file://:0:0:0:0 | [summary] to write: argument this in setData(_:) :  | semmle.label | [summary] to write: argument this in setData(_:) :  |
 | file://:0:0:0:0 | [summary] to write: argument this in setValue(_:at:) :  | semmle.label | [summary] to write: argument this in setValue(_:at:) :  |
 | file://:0:0:0:0 | [summary] to write: argument this in setValue(_:forProperty:) :  | semmle.label | [summary] to write: argument this in setValue(_:forProperty:) :  |
 | file://:0:0:0:0 | [summary] to write: return (return) in atIndex(_:) :  | semmle.label | [summary] to write: return (return) in atIndex(_:) :  |
 | file://:0:0:0:0 | [summary] to write: return (return) in base64EncodedData(options:) :  | semmle.label | [summary] to write: return (return) in base64EncodedData(options:) :  |
+| file://:0:0:0:0 | [summary] to write: return (return) in base64EncodedData(options:) :  | semmle.label | [summary] to write: return (return) in base64EncodedData(options:) :  |
+| file://:0:0:0:0 | [summary] to write: return (return) in base64EncodedString(options:) :  | semmle.label | [summary] to write: return (return) in base64EncodedString(options:) :  |
 | file://:0:0:0:0 | [summary] to write: return (return) in base64EncodedString(options:) :  | semmle.label | [summary] to write: return (return) in base64EncodedString(options:) :  |
-<<<<<<< HEAD
 | file://:0:0:0:0 | [summary] to write: return (return) in base64Encoding() :  | semmle.label | [summary] to write: return (return) in base64Encoding() :  |
+| file://:0:0:0:0 | [summary] to write: return (return) in compactMap(_:) :  | semmle.label | [summary] to write: return (return) in compactMap(_:) :  |
 | file://:0:0:0:0 | [summary] to write: return (return) in compressed(using:) :  | semmle.label | [summary] to write: return (return) in compressed(using:) :  |
 | file://:0:0:0:0 | [summary] to write: return (return) in dataWithContentsOfMappedFile(_:) :  | semmle.label | [summary] to write: return (return) in dataWithContentsOfMappedFile(_:) :  |
 | file://:0:0:0:0 | [summary] to write: return (return) in decompressed(using:) :  | semmle.label | [summary] to write: return (return) in decompressed(using:) :  |
+| file://:0:0:0:0 | [summary] to write: return (return) in flatMap(_:) :  | semmle.label | [summary] to write: return (return) in flatMap(_:) :  |
+| file://:0:0:0:0 | [summary] to write: return (return) in flatMap(_:) :  | semmle.label | [summary] to write: return (return) in flatMap(_:) :  |
 | file://:0:0:0:0 | [summary] to write: return (return) in forProperty(_:) :  | semmle.label | [summary] to write: return (return) in forProperty(_:) :  |
 | file://:0:0:0:0 | [summary] to write: return (return) in init(base64Encoded:options:) :  | semmle.label | [summary] to write: return (return) in init(base64Encoded:options:) :  |
 | file://:0:0:0:0 | [summary] to write: return (return) in init(base64Encoded:options:) :  | semmle.label | [summary] to write: return (return) in init(base64Encoded:options:) :  |
+| file://:0:0:0:0 | [summary] to write: return (return) in init(base64Encoded:options:) :  | semmle.label | [summary] to write: return (return) in init(base64Encoded:options:) :  |
 | file://:0:0:0:0 | [summary] to write: return (return) in init(base64Encoding:) :  | semmle.label | [summary] to write: return (return) in init(base64Encoding:) :  |
 | file://:0:0:0:0 | [summary] to write: return (return) in init(bool:in:) :  | semmle.label | [summary] to write: return (return) in init(bool:in:) :  |
+| file://:0:0:0:0 | [summary] to write: return (return) in init(buffer:) :  | semmle.label | [summary] to write: return (return) in init(buffer:) :  |
+| file://:0:0:0:0 | [summary] to write: return (return) in init(buffer:) :  | semmle.label | [summary] to write: return (return) in init(buffer:) :  |
+| file://:0:0:0:0 | [summary] to write: return (return) in init(bytes:count:) :  | semmle.label | [summary] to write: return (return) in init(bytes:count:) :  |
 | file://:0:0:0:0 | [summary] to write: return (return) in init(bytes:length:) :  | semmle.label | [summary] to write: return (return) in init(bytes:length:) :  |
+| file://:0:0:0:0 | [summary] to write: return (return) in init(bytesNoCopy:count:deallocator:) :  | semmle.label | [summary] to write: return (return) in init(bytesNoCopy:count:deallocator:) :  |
 | file://:0:0:0:0 | [summary] to write: return (return) in init(bytesNoCopy:length:) :  | semmle.label | [summary] to write: return (return) in init(bytesNoCopy:length:) :  |
 | file://:0:0:0:0 | [summary] to write: return (return) in init(bytesNoCopy:length:deallocator:) :  | semmle.label | [summary] to write: return (return) in init(bytesNoCopy:length:deallocator:) :  |
 | file://:0:0:0:0 | [summary] to write: return (return) in init(bytesNoCopy:length:freeWhenDone:) :  | semmle.label | [summary] to write: return (return) in init(bytesNoCopy:length:freeWhenDone:) :  |
 | file://:0:0:0:0 | [summary] to write: return (return) in init(contentsOf:) :  | semmle.label | [summary] to write: return (return) in init(contentsOf:) :  |
 | file://:0:0:0:0 | [summary] to write: return (return) in init(contentsOf:options:) :  | semmle.label | [summary] to write: return (return) in init(contentsOf:options:) :  |
+| file://:0:0:0:0 | [summary] to write: return (return) in init(contentsOf:options:) :  | semmle.label | [summary] to write: return (return) in init(contentsOf:options:) :  |
 | file://:0:0:0:0 | [summary] to write: return (return) in init(contentsOfFile:) :  | semmle.label | [summary] to write: return (return) in init(contentsOfFile:) :  |
 | file://:0:0:0:0 | [summary] to write: return (return) in init(contentsOfFile:options:) :  | semmle.label | [summary] to write: return (return) in init(contentsOfFile:options:) :  |
 | file://:0:0:0:0 | [summary] to write: return (return) in init(contentsOfMappedFile:) :  | semmle.label | [summary] to write: return (return) in init(contentsOfMappedFile:) :  |
 | file://:0:0:0:0 | [summary] to write: return (return) in init(data:) :  | semmle.label | [summary] to write: return (return) in init(data:) :  |
-=======
-| file://:0:0:0:0 | [summary] to write: return (return) in compactMap(_:) :  | semmle.label | [summary] to write: return (return) in compactMap(_:) :  |
-| file://:0:0:0:0 | [summary] to write: return (return) in flatMap(_:) :  | semmle.label | [summary] to write: return (return) in flatMap(_:) :  |
-| file://:0:0:0:0 | [summary] to write: return (return) in flatMap(_:) :  | semmle.label | [summary] to write: return (return) in flatMap(_:) :  |
-| file://:0:0:0:0 | [summary] to write: return (return) in forProperty(_:) :  | semmle.label | [summary] to write: return (return) in forProperty(_:) :  |
-| file://:0:0:0:0 | [summary] to write: return (return) in init(base64Encoded:options:) :  | semmle.label | [summary] to write: return (return) in init(base64Encoded:options:) :  |
-| file://:0:0:0:0 | [summary] to write: return (return) in init(bool:in:) :  | semmle.label | [summary] to write: return (return) in init(bool:in:) :  |
-| file://:0:0:0:0 | [summary] to write: return (return) in init(buffer:) :  | semmle.label | [summary] to write: return (return) in init(buffer:) :  |
-| file://:0:0:0:0 | [summary] to write: return (return) in init(buffer:) :  | semmle.label | [summary] to write: return (return) in init(buffer:) :  |
-| file://:0:0:0:0 | [summary] to write: return (return) in init(bytes:count:) :  | semmle.label | [summary] to write: return (return) in init(bytes:count:) :  |
-| file://:0:0:0:0 | [summary] to write: return (return) in init(bytesNoCopy:count:deallocator:) :  | semmle.label | [summary] to write: return (return) in init(bytesNoCopy:count:deallocator:) :  |
-| file://:0:0:0:0 | [summary] to write: return (return) in init(contentsOf:options:) :  | semmle.label | [summary] to write: return (return) in init(contentsOf:options:) :  |
->>>>>>> 7ef2618758 (Update test expectations)
 | file://:0:0:0:0 | [summary] to write: return (return) in init(double:in:) :  | semmle.label | [summary] to write: return (return) in init(double:in:) :  |
 | file://:0:0:0:0 | [summary] to write: return (return) in init(int32:in:) :  | semmle.label | [summary] to write: return (return) in init(int32:in:) :  |
 | file://:0:0:0:0 | [summary] to write: return (return) in init(object:in:) :  | semmle.label | [summary] to write: return (return) in init(object:in:) :  |
@@ -746,15 +756,14 @@ nodes
 | file://:0:0:0:0 | [summary] to write: return (return) in init(string:relativeTo:) :  | semmle.label | [summary] to write: return (return) in init(string:relativeTo:) :  |
 | file://:0:0:0:0 | [summary] to write: return (return) in init(string:relativeTo:) :  | semmle.label | [summary] to write: return (return) in init(string:relativeTo:) :  |
 | file://:0:0:0:0 | [summary] to write: return (return) in init(uInt32:in:) :  | semmle.label | [summary] to write: return (return) in init(uInt32:in:) :  |
-<<<<<<< HEAD
-| file://:0:0:0:0 | [summary] to write: return (return) in subdata(with:) :  | semmle.label | [summary] to write: return (return) in subdata(with:) :  |
-=======
 | file://:0:0:0:0 | [summary] to write: return (return) in map(_:) :  | semmle.label | [summary] to write: return (return) in map(_:) :  |
 | file://:0:0:0:0 | [summary] to write: return (return) in reduce(into:_:) :  | semmle.label | [summary] to write: return (return) in reduce(into:_:) :  |
 | file://:0:0:0:0 | [summary] to write: return (return) in shuffled() :  | semmle.label | [summary] to write: return (return) in shuffled() :  |
 | file://:0:0:0:0 | [summary] to write: return (return) in shuffled(using:) :  | semmle.label | [summary] to write: return (return) in shuffled(using:) :  |
+| file://:0:0:0:0 | [summary] to write: return (return) in sorted() :  | semmle.label | [summary] to write: return (return) in sorted() :  |
+| file://:0:0:0:0 | [summary] to write: return (return) in sorted(by:) :  | semmle.label | [summary] to write: return (return) in sorted(by:) :  |
 | file://:0:0:0:0 | [summary] to write: return (return) in sorted(using:) :  | semmle.label | [summary] to write: return (return) in sorted(using:) :  |
->>>>>>> 7ef2618758 (Update test expectations)
+| file://:0:0:0:0 | [summary] to write: return (return) in subdata(with:) :  | semmle.label | [summary] to write: return (return) in subdata(with:) :  |
 | file://:0:0:0:0 | [summary] to write: return (return) in toArray() :  | semmle.label | [summary] to write: return (return) in toArray() :  |
 | file://:0:0:0:0 | [summary] to write: return (return) in toBool() :  | semmle.label | [summary] to write: return (return) in toBool() :  |
 | file://:0:0:0:0 | [summary] to write: return (return) in toDate() :  | semmle.label | [summary] to write: return (return) in toDate() :  |
@@ -770,7 +779,8 @@ nodes
 | file://:0:0:0:0 | [summary] to write: return (return) in toSize() :  | semmle.label | [summary] to write: return (return) in toSize() :  |
 | file://:0:0:0:0 | [summary] to write: return (return) in toString() :  | semmle.label | [summary] to write: return (return) in toString() :  |
 | file://:0:0:0:0 | [summary] to write: return (return) in toUInt32() :  | semmle.label | [summary] to write: return (return) in toUInt32() :  |
-<<<<<<< HEAD
+| file://:0:0:0:0 | [summary] to write: return (return) in trimmingPrefix(_:) :  | semmle.label | [summary] to write: return (return) in trimmingPrefix(_:) :  |
+| file://:0:0:0:0 | [summary] to write: return (return) in trimmingPrefix(while:) :  | semmle.label | [summary] to write: return (return) in trimmingPrefix(while:) :  |
 | nsdata.swift:22:9:22:9 | self :  | semmle.label | self :  |
 | nsdata.swift:23:9:23:9 | self :  | semmle.label | self :  |
 | nsdata.swift:24:5:24:50 | [summary param] 0 in init(bytes:length:) :  | semmle.label | [summary param] 0 in init(bytes:length:) :  |
@@ -906,10 +916,6 @@ nodes
 | nsmutabledata.swift:48:33:48:40 | call to source() :  | semmle.label | call to source() :  |
 | nsmutabledata.swift:49:15:49:15 | nsMutableDataTainted6 :  | semmle.label | nsMutableDataTainted6 :  |
 | nsmutabledata.swift:49:15:49:37 | .mutableBytes | semmle.label | .mutableBytes |
-=======
-| file://:0:0:0:0 | [summary] to write: return (return) in trimmingPrefix(_:) :  | semmle.label | [summary] to write: return (return) in trimmingPrefix(_:) :  |
-| file://:0:0:0:0 | [summary] to write: return (return) in trimmingPrefix(while:) :  | semmle.label | [summary] to write: return (return) in trimmingPrefix(while:) :  |
->>>>>>> 7ef2618758 (Update test expectations)
 | string.swift:5:11:5:18 | call to source() :  | semmle.label | call to source() :  |
 | string.swift:7:13:7:13 | "..." | semmle.label | "..." |
 | string.swift:9:13:9:13 | "..." | semmle.label | "..." |
@@ -1111,7 +1117,42 @@ nodes
 | webview.swift:97:17:97:17 | s :  | semmle.label | s :  |
 | webview.swift:98:10:98:10 | v3 | semmle.label | v3 |
 subpaths
-<<<<<<< HEAD
+| data.swift:89:41:89:48 | call to source() :  | data.swift:25:2:25:66 | [summary param] 0 in init(base64Encoded:options:) :  | file://:0:0:0:0 | [summary] to write: return (return) in init(base64Encoded:options:) :  | data.swift:89:21:89:71 | call to init(base64Encoded:options:) :  |
+| data.swift:93:34:93:41 | call to source() :  | data.swift:26:2:26:61 | [summary param] 0 in init(buffer:) :  | file://:0:0:0:0 | [summary] to write: return (return) in init(buffer:) :  | data.swift:93:21:93:73 | call to init(buffer:) :  |
+| data.swift:95:34:95:41 | call to source() :  | data.swift:27:2:27:62 | [summary param] 0 in init(buffer:) :  | file://:0:0:0:0 | [summary] to write: return (return) in init(buffer:) :  | data.swift:95:21:95:74 | call to init(buffer:) :  |
+| data.swift:99:33:99:40 | call to source() :  | data.swift:28:2:28:45 | [summary param] 0 in init(bytes:count:) :  | file://:0:0:0:0 | [summary] to write: return (return) in init(bytes:count:) :  | data.swift:99:21:99:72 | call to init(bytes:count:) :  |
+| data.swift:103:39:103:46 | call to source() :  | data.swift:29:2:29:82 | [summary param] 0 in init(bytesNoCopy:count:deallocator:) :  | file://:0:0:0:0 | [summary] to write: return (return) in init(bytesNoCopy:count:deallocator:) :  | data.swift:103:21:103:114 | call to init(bytesNoCopy:count:deallocator:) :  |
+| data.swift:108:38:108:38 | urlTainted8 :  | data.swift:30:2:30:50 | [summary param] 0 in init(contentsOf:options:) :  | file://:0:0:0:0 | [summary] to write: return (return) in init(contentsOf:options:) :  | data.swift:108:21:108:62 | call to init(contentsOf:options:) :  |
+| data.swift:112:39:112:46 | call to source() :  | data.swift:31:2:31:29 | [summary param] 0 in init(referencing:) :  | file://:0:0:0:0 | [summary] to write: return (return) in init(referencing:) :  | data.swift:112:21:112:58 | call to init(referencing:) :  |
+| data.swift:117:23:117:30 | call to source() :  | data.swift:32:2:32:24 | [summary param] 0 in append(_:) :  | file://:0:0:0:0 | [summary] to write: argument this in append(_:) :  | data.swift:117:2:117:2 | [post] dataTainted10 :  |
+| data.swift:121:23:121:30 | call to source() :  | data.swift:33:2:33:25 | [summary param] 0 in append(_:) :  | file://:0:0:0:0 | [summary] to write: argument this in append(_:) :  | data.swift:121:2:121:2 | [post] dataTainted11 :  |
+| data.swift:125:23:125:30 | call to source() :  | data.swift:34:2:34:63 | [summary param] 0 in append(_:) :  | file://:0:0:0:0 | [summary] to write: argument this in append(_:) :  | data.swift:125:2:125:2 | [post] dataTainted12 :  |
+| data.swift:130:23:130:30 | call to source() :  | data.swift:35:2:35:52 | [summary param] 0 in append(_:count:) :  | file://:0:0:0:0 | [summary] to write: argument this in append(_:count:) :  | data.swift:130:2:130:2 | [post] dataTainted13 :  |
+| data.swift:135:35:135:42 | call to source() :  | data.swift:36:2:36:36 | [summary param] 0 in append(contentsOf:) :  | file://:0:0:0:0 | [summary] to write: argument this in append(contentsOf:) :  | data.swift:135:2:135:2 | [post] dataTainted14 :  |
+| data.swift:140:12:140:12 | dataTainted15 :  | data.swift:38:2:38:88 | [summary param] this in base64EncodedData(options:) :  | file://:0:0:0:0 | [summary] to write: return (return) in base64EncodedData(options:) :  | data.swift:140:12:140:55 | call to base64EncodedData(options:) |
+| data.swift:144:12:144:12 | dataTainted16 :  | data.swift:39:2:39:86 | [summary param] this in base64EncodedString(options:) :  | file://:0:0:0:0 | [summary] to write: return (return) in base64EncodedString(options:) :  | data.swift:144:12:144:57 | call to base64EncodedString(options:) |
+| data.swift:148:29:148:29 | dataTainted17 :  | data.swift:40:2:40:99 | [summary param] this in compactMap(_:) :  | file://:0:0:0:0 | [summary] to write: return (return) in compactMap(_:) :  | data.swift:148:29:148:72 | call to compactMap(_:) :  |
+| data.swift:154:2:154:2 | dataTainted18 :  | data.swift:41:2:41:53 | [summary param] this in copyBytes(to:) :  | file://:0:0:0:0 | [summary] to write: argument 0 in copyBytes(to:) :  | data.swift:154:30:154:30 | [post] pointerTainted18 :  |
+| data.swift:171:19:171:19 | dataTainted21 :  | data.swift:44:2:44:137 | [summary param] this in flatMap(_:) :  | file://:0:0:0:0 | [summary] to write: return (return) in flatMap(_:) :  | data.swift:171:19:171:74 | call to flatMap(_:) :  |
+| data.swift:175:20:175:20 | dataTainted22 :  | data.swift:45:2:45:97 | [summary param] this in flatMap(_:) :  | file://:0:0:0:0 | [summary] to write: return (return) in flatMap(_:) :  | data.swift:175:20:175:60 | call to flatMap(_:) :  |
+| data.swift:180:23:180:30 | call to source() :  | data.swift:46:2:46:34 | [summary param] 0 in insert(_:at:) :  | file://:0:0:0:0 | [summary] to write: argument this in insert(_:at:) :  | data.swift:180:2:180:2 | [post] dataTainted23 :  |
+| data.swift:185:35:185:42 | call to source() :  | data.swift:47:2:47:83 | [summary param] 0 in insert(contentsOf:at:) :  | file://:0:0:0:0 | [summary] to write: argument this in insert(contentsOf:at:) :  | data.swift:185:2:185:2 | [post] dataTainted24 :  |
+| data.swift:190:15:190:15 | dataTainted25 :  | data.swift:48:2:48:50 | [summary param] this in map(_:) :  | file://:0:0:0:0 | [summary] to write: return (return) in map(_:) :  | data.swift:190:15:190:38 | call to map(_:) :  |
+| data.swift:195:16:195:16 | dataTainted26 :  | data.swift:49:2:49:115 | [summary param] this in reduce(into:_:) :  | file://:0:0:0:0 | [summary] to write: return (return) in reduce(into:_:) :  | data.swift:195:16:195:80 | call to reduce(into:_:) :  |
+| data.swift:200:35:200:42 | call to source() :  | data.swift:50:2:50:180 | [summary param] 1 in replace(_:with:maxReplacements:) :  | file://:0:0:0:0 | [summary] to write: argument this in replace(_:with:maxReplacements:) :  | data.swift:200:2:200:2 | [post] dataTainted27 :  |
+| data.swift:205:45:205:52 | call to source() :  | data.swift:51:2:51:58 | [summary param] 1 in replaceSubrange(_:with:) :  | file://:0:0:0:0 | [summary] to write: argument this in replaceSubrange(_:with:) :  | data.swift:205:2:205:2 | [post] dataTainted28 :  |
+| data.swift:209:45:209:52 | call to source() :  | data.swift:52:2:52:151 | [summary param] 1 in replaceSubrange(_:with:) :  | file://:0:0:0:0 | [summary] to write: argument this in replaceSubrange(_:with:) :  | data.swift:209:2:209:2 | [post] dataTainted29 :  |
+| data.swift:213:45:213:52 | call to source() :  | data.swift:52:2:52:151 | [summary param] 1 in replaceSubrange(_:with:) :  | file://:0:0:0:0 | [summary] to write: argument this in replaceSubrange(_:with:) :  | data.swift:213:2:213:2 | [post] dataTainted30 :  |
+| data.swift:218:45:218:52 | call to source() :  | data.swift:54:2:54:82 | [summary param] 1 in replaceSubrange(_:with:count:) :  | file://:0:0:0:0 | [summary] to write: argument this in replaceSubrange(_:with:count:) :  | data.swift:218:2:218:2 | [post] dataTainted31 :  |
+| data.swift:223:45:223:52 | call to source() :  | data.swift:56:2:56:214 | [summary param] 1 in replacing(_:with:maxReplacements:) :  | file://:0:0:0:0 | [summary] to write: argument this in replacing(_:with:maxReplacements:) :  | data.swift:223:10:223:10 | [post] dataTainted32 :  |
+| data.swift:228:45:228:52 | call to source() :  | data.swift:57:2:57:236 | [summary param] 1 in replacing(_:with:subrange:maxReplacements:) :  | file://:0:0:0:0 | [summary] to write: argument this in replacing(_:with:subrange:maxReplacements:) :  | data.swift:228:10:228:10 | [post] dataTainted33 :  |
+| data.swift:237:12:237:12 | dataTainted35 :  | data.swift:58:2:58:39 | [summary param] this in sorted() :  | file://:0:0:0:0 | [summary] to write: return (return) in sorted() :  | data.swift:237:12:237:33 | call to sorted() |
+| data.swift:241:12:241:12 | dataTainted36 :  | data.swift:59:2:59:81 | [summary param] this in sorted(by:) :  | file://:0:0:0:0 | [summary] to write: return (return) in sorted(by:) :  | data.swift:241:12:241:54 | call to sorted(by:) |
+| data.swift:245:12:245:12 | dataTainted37 :  | data.swift:60:2:60:132 | [summary param] this in sorted(using:) :  | file://:0:0:0:0 | [summary] to write: return (return) in sorted(using:) :  | data.swift:245:12:245:46 | call to sorted(using:) |
+| data.swift:249:12:249:12 | dataTainted38 :  | data.swift:61:2:61:41 | [summary param] this in shuffled() :  | file://:0:0:0:0 | [summary] to write: return (return) in shuffled() :  | data.swift:249:12:249:35 | call to shuffled() |
+| data.swift:254:12:254:12 | dataTainted39 :  | data.swift:62:2:62:58 | [summary param] this in shuffled(using:) :  | file://:0:0:0:0 | [summary] to write: return (return) in shuffled(using:) :  | data.swift:254:12:254:46 | call to shuffled(using:) |
+| data.swift:258:12:258:12 | dataTainted40 :  | data.swift:63:2:63:123 | [summary param] this in trimmingPrefix(_:) :  | file://:0:0:0:0 | [summary] to write: return (return) in trimmingPrefix(_:) :  | data.swift:258:12:258:44 | call to trimmingPrefix(_:) |
+| data.swift:262:12:262:12 | dataTainted41 :  | data.swift:64:2:64:72 | [summary param] this in trimmingPrefix(while:) :  | file://:0:0:0:0 | [summary] to write: return (return) in trimmingPrefix(while:) :  | data.swift:262:12:262:54 | call to trimmingPrefix(while:) |
 | nsdata.swift:57:40:57:47 | call to source() :  | nsdata.swift:24:5:24:50 | [summary param] 0 in init(bytes:length:) :  | file://:0:0:0:0 | [summary] to write: return (return) in init(bytes:length:) :  | nsdata.swift:57:26:57:80 | call to init(bytes:length:) :  |
 | nsdata.swift:60:46:60:53 | call to source() :  | nsdata.swift:25:5:25:68 | [summary param] 0 in init(bytesNoCopy:length:) :  | file://:0:0:0:0 | [summary] to write: return (return) in init(bytesNoCopy:length:) :  | nsdata.swift:60:26:60:93 | call to init(bytesNoCopy:length:) :  |
 | nsdata.swift:63:46:63:53 | call to source() :  | nsdata.swift:26:5:26:130 | [summary param] 0 in init(bytesNoCopy:length:deallocator:) :  | file://:0:0:0:0 | [summary] to write: return (return) in init(bytesNoCopy:length:deallocator:) :  | nsdata.swift:63:26:63:111 | call to init(bytesNoCopy:length:deallocator:) :  |
@@ -1145,42 +1186,6 @@ subpaths
 | nsmutabledata.swift:40:66:40:73 | call to source() :  | nsmutabledata.swift:17:5:17:121 | [summary param] 1 in replaceBytes(in:withBytes:length:) :  | file://:0:0:0:0 | [summary] to write: argument this in replaceBytes(in:withBytes:length:) :  | nsmutabledata.swift:40:5:40:5 | [post] nsMutableDataTainted4 :  |
 | nsmutabledata.swift:44:35:44:42 | call to source() :  | nsmutabledata.swift:18:5:18:33 | [summary param] 0 in setData(_:) :  | file://:0:0:0:0 | [summary] to write: argument this in setData(_:) :  | nsmutabledata.swift:44:5:44:5 | [post] nsMutableDataTainted5 :  |
 | nsmutabledata.swift:49:15:49:15 | nsMutableDataTainted6 :  | nsmutabledata.swift:13:9:13:9 | self :  | file://:0:0:0:0 | .mutableBytes :  | nsmutabledata.swift:49:15:49:37 | .mutableBytes |
-=======
-| data.swift:79:41:79:48 | call to source() :  | data.swift:17:2:17:66 | [summary param] 0 in init(base64Encoded:options:) :  | file://:0:0:0:0 | [summary] to write: return (return) in init(base64Encoded:options:) :  | data.swift:79:21:79:71 | call to init(base64Encoded:options:) :  |
-| data.swift:83:34:83:41 | call to source() :  | data.swift:18:2:18:61 | [summary param] 0 in init(buffer:) :  | file://:0:0:0:0 | [summary] to write: return (return) in init(buffer:) :  | data.swift:83:21:83:73 | call to init(buffer:) :  |
-| data.swift:85:34:85:41 | call to source() :  | data.swift:19:2:19:62 | [summary param] 0 in init(buffer:) :  | file://:0:0:0:0 | [summary] to write: return (return) in init(buffer:) :  | data.swift:85:21:85:74 | call to init(buffer:) :  |
-| data.swift:89:33:89:40 | call to source() :  | data.swift:20:2:20:45 | [summary param] 0 in init(bytes:count:) :  | file://:0:0:0:0 | [summary] to write: return (return) in init(bytes:count:) :  | data.swift:89:21:89:72 | call to init(bytes:count:) :  |
-| data.swift:93:39:93:46 | call to source() :  | data.swift:21:2:21:82 | [summary param] 0 in init(bytesNoCopy:count:deallocator:) :  | file://:0:0:0:0 | [summary] to write: return (return) in init(bytesNoCopy:count:deallocator:) :  | data.swift:93:21:93:114 | call to init(bytesNoCopy:count:deallocator:) :  |
-| data.swift:97:38:97:45 | call to source() :  | data.swift:22:2:22:50 | [summary param] 0 in init(contentsOf:options:) :  | file://:0:0:0:0 | [summary] to write: return (return) in init(contentsOf:options:) :  | data.swift:97:21:97:67 | call to init(contentsOf:options:) :  |
-| data.swift:101:39:101:46 | call to source() :  | data.swift:23:2:23:29 | [summary param] 0 in init(referencing:) :  | file://:0:0:0:0 | [summary] to write: return (return) in init(referencing:) :  | data.swift:101:21:101:58 | call to init(referencing:) :  |
-| data.swift:106:23:106:30 | call to source() :  | data.swift:24:2:24:24 | [summary param] 0 in append(_:) :  | file://:0:0:0:0 | [summary] to write: argument this in append(_:) :  | data.swift:106:2:106:2 | [post] dataTainted10 :  |
-| data.swift:110:23:110:30 | call to source() :  | data.swift:25:2:25:25 | [summary param] 0 in append(_:) :  | file://:0:0:0:0 | [summary] to write: argument this in append(_:) :  | data.swift:110:2:110:2 | [post] dataTainted11 :  |
-| data.swift:114:23:114:30 | call to source() :  | data.swift:26:2:26:63 | [summary param] 0 in append(_:) :  | file://:0:0:0:0 | [summary] to write: argument this in append(_:) :  | data.swift:114:2:114:2 | [post] dataTainted12 :  |
-| data.swift:119:23:119:30 | call to source() :  | data.swift:27:2:27:52 | [summary param] 0 in append(_:count:) :  | file://:0:0:0:0 | [summary] to write: argument this in append(_:count:) :  | data.swift:119:2:119:2 | [post] dataTainted13 :  |
-| data.swift:124:35:124:42 | call to source() :  | data.swift:28:2:28:36 | [summary param] 0 in append(contentsOf:) :  | file://:0:0:0:0 | [summary] to write: argument this in append(contentsOf:) :  | data.swift:124:2:124:2 | [post] dataTainted14 :  |
-| data.swift:129:12:129:12 | dataTainted15 :  | data.swift:30:2:30:88 | [summary param] this in base64EncodedData(options:) :  | file://:0:0:0:0 | [summary] to write: return (return) in base64EncodedData(options:) :  | data.swift:129:12:129:55 | call to base64EncodedData(options:) |
-| data.swift:133:12:133:12 | dataTainted16 :  | data.swift:31:2:31:86 | [summary param] this in base64EncodedString(options:) :  | file://:0:0:0:0 | [summary] to write: return (return) in base64EncodedString(options:) :  | data.swift:133:12:133:57 | call to base64EncodedString(options:) |
-| data.swift:137:29:137:29 | dataTainted17 :  | data.swift:32:2:32:99 | [summary param] this in compactMap(_:) :  | file://:0:0:0:0 | [summary] to write: return (return) in compactMap(_:) :  | data.swift:137:29:137:72 | call to compactMap(_:) :  |
-| data.swift:143:2:143:2 | dataTainted18 :  | data.swift:33:2:33:53 | [summary param] this in copyBytes(to:) :  | file://:0:0:0:0 | [summary] to write: argument 0 in copyBytes(to:) :  | data.swift:143:30:143:30 | [post] pointerTainted18 :  |
-| data.swift:160:19:160:19 | dataTainted21 :  | data.swift:36:2:36:137 | [summary param] this in flatMap(_:) :  | file://:0:0:0:0 | [summary] to write: return (return) in flatMap(_:) :  | data.swift:160:19:160:74 | call to flatMap(_:) :  |
-| data.swift:164:20:164:20 | dataTainted22 :  | data.swift:37:2:37:97 | [summary param] this in flatMap(_:) :  | file://:0:0:0:0 | [summary] to write: return (return) in flatMap(_:) :  | data.swift:164:20:164:60 | call to flatMap(_:) :  |
-| data.swift:169:23:169:30 | call to source() :  | data.swift:38:2:38:34 | [summary param] 0 in insert(_:at:) :  | file://:0:0:0:0 | [summary] to write: argument this in insert(_:at:) :  | data.swift:169:2:169:2 | [post] dataTainted23 :  |
-| data.swift:174:35:174:42 | call to source() :  | data.swift:39:2:39:83 | [summary param] 0 in insert(contentsOf:at:) :  | file://:0:0:0:0 | [summary] to write: argument this in insert(contentsOf:at:) :  | data.swift:174:2:174:2 | [post] dataTainted24 :  |
-| data.swift:179:15:179:15 | dataTainted25 :  | data.swift:40:2:40:50 | [summary param] this in map(_:) :  | file://:0:0:0:0 | [summary] to write: return (return) in map(_:) :  | data.swift:179:15:179:38 | call to map(_:) :  |
-| data.swift:184:16:184:16 | dataTainted26 :  | data.swift:41:2:41:115 | [summary param] this in reduce(into:_:) :  | file://:0:0:0:0 | [summary] to write: return (return) in reduce(into:_:) :  | data.swift:184:16:184:80 | call to reduce(into:_:) :  |
-| data.swift:189:35:189:42 | call to source() :  | data.swift:42:2:42:180 | [summary param] 1 in replace(_:with:maxReplacements:) :  | file://:0:0:0:0 | [summary] to write: argument this in replace(_:with:maxReplacements:) :  | data.swift:189:2:189:2 | [post] dataTainted27 :  |
-| data.swift:194:45:194:52 | call to source() :  | data.swift:43:2:43:58 | [summary param] 1 in replaceSubrange(_:with:) :  | file://:0:0:0:0 | [summary] to write: argument this in replaceSubrange(_:with:) :  | data.swift:194:2:194:2 | [post] dataTainted28 :  |
-| data.swift:198:45:198:52 | call to source() :  | data.swift:44:2:44:151 | [summary param] 1 in replaceSubrange(_:with:) :  | file://:0:0:0:0 | [summary] to write: argument this in replaceSubrange(_:with:) :  | data.swift:198:2:198:2 | [post] dataTainted29 :  |
-| data.swift:202:45:202:52 | call to source() :  | data.swift:44:2:44:151 | [summary param] 1 in replaceSubrange(_:with:) :  | file://:0:0:0:0 | [summary] to write: argument this in replaceSubrange(_:with:) :  | data.swift:202:2:202:2 | [post] dataTainted30 :  |
-| data.swift:207:45:207:52 | call to source() :  | data.swift:46:2:46:82 | [summary param] 1 in replaceSubrange(_:with:count:) :  | file://:0:0:0:0 | [summary] to write: argument this in replaceSubrange(_:with:count:) :  | data.swift:207:2:207:2 | [post] dataTainted31 :  |
-| data.swift:212:37:212:44 | call to source() :  | data.swift:48:2:48:214 | [summary param] 1 in replacing(_:with:maxReplacements:) :  | file://:0:0:0:0 | [summary] to write: argument this in replacing(_:with:maxReplacements:) :  | data.swift:212:2:212:2 | [post] dataTainted32 :  |
-| data.swift:217:37:217:44 | call to source() :  | data.swift:49:2:49:236 | [summary param] 1 in replacing(_:with:subrange:maxReplacements:) :  | file://:0:0:0:0 | [summary] to write: argument this in replacing(_:with:subrange:maxReplacements:) :  | data.swift:217:2:217:2 | [post] dataTainted33 :  |
-| data.swift:222:12:222:12 | dataTainted34 :  | data.swift:50:2:50:41 | [summary param] this in shuffled() :  | file://:0:0:0:0 | [summary] to write: return (return) in shuffled() :  | data.swift:222:12:222:35 | call to shuffled() |
-| data.swift:227:12:227:12 | dataTainted35 :  | data.swift:51:2:51:58 | [summary param] this in shuffled(using:) :  | file://:0:0:0:0 | [summary] to write: return (return) in shuffled(using:) :  | data.swift:227:12:227:46 | call to shuffled(using:) |
-| data.swift:231:12:231:12 | dataTainted36 :  | data.swift:52:2:52:132 | [summary param] this in sorted(using:) :  | file://:0:0:0:0 | [summary] to write: return (return) in sorted(using:) :  | data.swift:231:12:231:46 | call to sorted(using:) |
-| data.swift:235:12:235:12 | dataTainted37 :  | data.swift:53:2:53:123 | [summary param] this in trimmingPrefix(_:) :  | file://:0:0:0:0 | [summary] to write: return (return) in trimmingPrefix(_:) :  | data.swift:235:12:235:44 | call to trimmingPrefix(_:) |
-| data.swift:239:12:239:12 | dataTainted38 :  | data.swift:54:2:54:72 | [summary param] this in trimmingPrefix(while:) :  | file://:0:0:0:0 | [summary] to write: return (return) in trimmingPrefix(while:) :  | data.swift:239:12:239:54 | call to trimmingPrefix(while:) |
->>>>>>> 7ef2618758 (Update test expectations)
 | url.swift:59:31:59:31 | tainted :  | url.swift:8:2:8:25 | [summary param] 0 in init(string:) :  | file://:0:0:0:0 | [summary] to write: return (return) in init(string:) :  | url.swift:59:19:59:38 | call to init(string:) :  |
 | url.swift:83:24:83:24 | tainted :  | url.swift:9:2:9:43 | [summary param] 0 in init(string:relativeTo:) :  | file://:0:0:0:0 | [summary] to write: return (return) in init(string:relativeTo:) :  | url.swift:83:12:83:48 | call to init(string:relativeTo:) :  |
 | url.swift:86:43:86:43 | urlTainted :  | url.swift:9:2:9:43 | [summary param] 1 in init(string:relativeTo:) :  | file://:0:0:0:0 | [summary] to write: return (return) in init(string:relativeTo:) :  | url.swift:86:12:86:53 | call to init(string:relativeTo:) :  |
@@ -1231,7 +1236,42 @@ subpaths
 | webview.swift:93:17:93:17 | s :  | webview.swift:43:5:43:38 | [summary param] 0 in setValue(_:at:) :  | file://:0:0:0:0 | [summary] to write: argument this in setValue(_:at:) :  | webview.swift:93:5:93:5 | [post] v2 :  |
 | webview.swift:97:17:97:17 | s :  | webview.swift:44:5:44:48 | [summary param] 0 in setValue(_:forProperty:) :  | file://:0:0:0:0 | [summary] to write: argument this in setValue(_:forProperty:) :  | webview.swift:97:5:97:5 | [post] v3 :  |
 #select
-<<<<<<< HEAD
+| data.swift:90:12:90:12 | dataTainted3 | data.swift:89:41:89:48 | call to source() :  | data.swift:90:12:90:12 | dataTainted3 | result |
+| data.swift:94:12:94:12 | dataTainted4 | data.swift:93:34:93:41 | call to source() :  | data.swift:94:12:94:12 | dataTainted4 | result |
+| data.swift:96:12:96:12 | dataTainted5 | data.swift:95:34:95:41 | call to source() :  | data.swift:96:12:96:12 | dataTainted5 | result |
+| data.swift:100:12:100:12 | dataTainted6 | data.swift:99:33:99:40 | call to source() :  | data.swift:100:12:100:12 | dataTainted6 | result |
+| data.swift:104:12:104:12 | dataTainted7 | data.swift:103:39:103:46 | call to source() :  | data.swift:104:12:104:12 | dataTainted7 | result |
+| data.swift:109:12:109:12 | dataTainted8 | data.swift:107:20:107:27 | call to source() :  | data.swift:109:12:109:12 | dataTainted8 | result |
+| data.swift:113:12:113:12 | dataTainted9 | data.swift:112:39:112:46 | call to source() :  | data.swift:113:12:113:12 | dataTainted9 | result |
+| data.swift:118:12:118:12 | dataTainted10 | data.swift:117:23:117:30 | call to source() :  | data.swift:118:12:118:12 | dataTainted10 | result |
+| data.swift:122:12:122:12 | dataTainted11 | data.swift:121:23:121:30 | call to source() :  | data.swift:122:12:122:12 | dataTainted11 | result |
+| data.swift:126:12:126:12 | dataTainted12 | data.swift:125:23:125:30 | call to source() :  | data.swift:126:12:126:12 | dataTainted12 | result |
+| data.swift:131:12:131:12 | dataTainted13 | data.swift:130:23:130:30 | call to source() :  | data.swift:131:12:131:12 | dataTainted13 | result |
+| data.swift:136:12:136:12 | dataTainted14 | data.swift:135:35:135:42 | call to source() :  | data.swift:136:12:136:12 | dataTainted14 | result |
+| data.swift:140:12:140:55 | call to base64EncodedData(options:) | data.swift:139:22:139:29 | call to source() :  | data.swift:140:12:140:55 | call to base64EncodedData(options:) | result |
+| data.swift:144:12:144:57 | call to base64EncodedString(options:) | data.swift:143:22:143:29 | call to source() :  | data.swift:144:12:144:57 | call to base64EncodedString(options:) | result |
+| data.swift:149:12:149:12 | compactMapped | data.swift:147:22:147:29 | call to source() :  | data.swift:149:12:149:12 | compactMapped | result |
+| data.swift:155:12:155:12 | pointerTainted18 | data.swift:152:22:152:29 | call to source() :  | data.swift:155:12:155:12 | pointerTainted18 | result |
+| data.swift:172:12:172:12 | flatMapped | data.swift:170:22:170:29 | call to source() :  | data.swift:172:12:172:12 | flatMapped | result |
+| data.swift:176:12:176:12 | flatMapped2 | data.swift:174:22:174:29 | call to source() :  | data.swift:176:12:176:12 | flatMapped2 | result |
+| data.swift:181:12:181:12 | dataTainted23 | data.swift:180:23:180:30 | call to source() :  | data.swift:181:12:181:12 | dataTainted23 | result |
+| data.swift:186:12:186:12 | dataTainted24 | data.swift:185:35:185:42 | call to source() :  | data.swift:186:12:186:12 | dataTainted24 | result |
+| data.swift:191:12:191:12 | mapped | data.swift:189:22:189:29 | call to source() :  | data.swift:191:12:191:12 | mapped | result |
+| data.swift:196:12:196:12 | reduced | data.swift:194:22:194:29 | call to source() :  | data.swift:196:12:196:12 | reduced | result |
+| data.swift:201:12:201:12 | dataTainted27 | data.swift:200:35:200:42 | call to source() :  | data.swift:201:12:201:12 | dataTainted27 | result |
+| data.swift:206:12:206:12 | dataTainted28 | data.swift:205:45:205:52 | call to source() :  | data.swift:206:12:206:12 | dataTainted28 | result |
+| data.swift:210:12:210:12 | dataTainted29 | data.swift:209:45:209:52 | call to source() :  | data.swift:210:12:210:12 | dataTainted29 | result |
+| data.swift:214:12:214:12 | dataTainted30 | data.swift:213:45:213:52 | call to source() :  | data.swift:214:12:214:12 | dataTainted30 | result |
+| data.swift:219:12:219:12 | dataTainted31 | data.swift:218:45:218:52 | call to source() :  | data.swift:219:12:219:12 | dataTainted31 | result |
+| data.swift:224:12:224:12 | dataTainted32 | data.swift:223:45:223:52 | call to source() :  | data.swift:224:12:224:12 | dataTainted32 | result |
+| data.swift:229:12:229:12 | dataTainted33 | data.swift:228:45:228:52 | call to source() :  | data.swift:229:12:229:12 | dataTainted33 | result |
+| data.swift:237:12:237:33 | call to sorted() | data.swift:236:22:236:29 | call to source() :  | data.swift:237:12:237:33 | call to sorted() | result |
+| data.swift:241:12:241:54 | call to sorted(by:) | data.swift:240:22:240:29 | call to source() :  | data.swift:241:12:241:54 | call to sorted(by:) | result |
+| data.swift:245:12:245:46 | call to sorted(using:) | data.swift:244:22:244:29 | call to source() :  | data.swift:245:12:245:46 | call to sorted(using:) | result |
+| data.swift:249:12:249:35 | call to shuffled() | data.swift:248:22:248:29 | call to source() :  | data.swift:249:12:249:35 | call to shuffled() | result |
+| data.swift:254:12:254:46 | call to shuffled(using:) | data.swift:252:22:252:29 | call to source() :  | data.swift:254:12:254:46 | call to shuffled(using:) | result |
+| data.swift:258:12:258:44 | call to trimmingPrefix(_:) | data.swift:257:22:257:29 | call to source() :  | data.swift:258:12:258:44 | call to trimmingPrefix(_:) | result |
+| data.swift:262:12:262:54 | call to trimmingPrefix(while:) | data.swift:261:22:261:29 | call to source() :  | data.swift:262:12:262:54 | call to trimmingPrefix(while:) | result |
 | nsdata.swift:58:15:58:15 | nsDataTainted1 | nsdata.swift:57:40:57:47 | call to source() :  | nsdata.swift:58:15:58:15 | nsDataTainted1 | result |
 | nsdata.swift:61:15:61:15 | nsDataTainted2 | nsdata.swift:60:46:60:53 | call to source() :  | nsdata.swift:61:15:61:15 | nsDataTainted2 | result |
 | nsdata.swift:64:15:64:15 | nsDataTainted3 | nsdata.swift:63:46:63:53 | call to source() :  | nsdata.swift:64:15:64:15 | nsDataTainted3 | result |
@@ -1266,42 +1306,6 @@ subpaths
 | nsmutabledata.swift:41:15:41:15 | nsMutableDataTainted4 | nsmutabledata.swift:40:66:40:73 | call to source() :  | nsmutabledata.swift:41:15:41:15 | nsMutableDataTainted4 | result |
 | nsmutabledata.swift:45:15:45:15 | nsMutableDataTainted5 | nsmutabledata.swift:44:35:44:42 | call to source() :  | nsmutabledata.swift:45:15:45:15 | nsMutableDataTainted5 | result |
 | nsmutabledata.swift:49:15:49:37 | .mutableBytes | nsmutabledata.swift:48:33:48:40 | call to source() :  | nsmutabledata.swift:49:15:49:37 | .mutableBytes | result |
-=======
-| data.swift:80:12:80:12 | dataTainted3 | data.swift:79:41:79:48 | call to source() :  | data.swift:80:12:80:12 | dataTainted3 | result |
-| data.swift:84:12:84:12 | dataTainted4 | data.swift:83:34:83:41 | call to source() :  | data.swift:84:12:84:12 | dataTainted4 | result |
-| data.swift:86:12:86:12 | dataTainted5 | data.swift:85:34:85:41 | call to source() :  | data.swift:86:12:86:12 | dataTainted5 | result |
-| data.swift:90:12:90:12 | dataTainted6 | data.swift:89:33:89:40 | call to source() :  | data.swift:90:12:90:12 | dataTainted6 | result |
-| data.swift:94:12:94:12 | dataTainted7 | data.swift:93:39:93:46 | call to source() :  | data.swift:94:12:94:12 | dataTainted7 | result |
-| data.swift:98:12:98:12 | dataTainted8 | data.swift:97:38:97:45 | call to source() :  | data.swift:98:12:98:12 | dataTainted8 | result |
-| data.swift:102:12:102:12 | dataTainted9 | data.swift:101:39:101:46 | call to source() :  | data.swift:102:12:102:12 | dataTainted9 | result |
-| data.swift:107:12:107:12 | dataTainted10 | data.swift:106:23:106:30 | call to source() :  | data.swift:107:12:107:12 | dataTainted10 | result |
-| data.swift:111:12:111:12 | dataTainted11 | data.swift:110:23:110:30 | call to source() :  | data.swift:111:12:111:12 | dataTainted11 | result |
-| data.swift:115:12:115:12 | dataTainted12 | data.swift:114:23:114:30 | call to source() :  | data.swift:115:12:115:12 | dataTainted12 | result |
-| data.swift:120:12:120:12 | dataTainted13 | data.swift:119:23:119:30 | call to source() :  | data.swift:120:12:120:12 | dataTainted13 | result |
-| data.swift:125:12:125:12 | dataTainted14 | data.swift:124:35:124:42 | call to source() :  | data.swift:125:12:125:12 | dataTainted14 | result |
-| data.swift:129:12:129:55 | call to base64EncodedData(options:) | data.swift:128:22:128:29 | call to source() :  | data.swift:129:12:129:55 | call to base64EncodedData(options:) | result |
-| data.swift:133:12:133:57 | call to base64EncodedString(options:) | data.swift:132:22:132:29 | call to source() :  | data.swift:133:12:133:57 | call to base64EncodedString(options:) | result |
-| data.swift:138:12:138:12 | compactMapped | data.swift:136:22:136:29 | call to source() :  | data.swift:138:12:138:12 | compactMapped | result |
-| data.swift:144:12:144:12 | pointerTainted18 | data.swift:141:22:141:29 | call to source() :  | data.swift:144:12:144:12 | pointerTainted18 | result |
-| data.swift:161:12:161:12 | flatMapped | data.swift:159:22:159:29 | call to source() :  | data.swift:161:12:161:12 | flatMapped | result |
-| data.swift:165:12:165:12 | flatMapped2 | data.swift:163:22:163:29 | call to source() :  | data.swift:165:12:165:12 | flatMapped2 | result |
-| data.swift:170:12:170:12 | dataTainted23 | data.swift:169:23:169:30 | call to source() :  | data.swift:170:12:170:12 | dataTainted23 | result |
-| data.swift:175:12:175:12 | dataTainted24 | data.swift:174:35:174:42 | call to source() :  | data.swift:175:12:175:12 | dataTainted24 | result |
-| data.swift:180:12:180:12 | mapped | data.swift:178:22:178:29 | call to source() :  | data.swift:180:12:180:12 | mapped | result |
-| data.swift:185:12:185:12 | reduced | data.swift:183:22:183:29 | call to source() :  | data.swift:185:12:185:12 | reduced | result |
-| data.swift:190:12:190:12 | dataTainted27 | data.swift:189:35:189:42 | call to source() :  | data.swift:190:12:190:12 | dataTainted27 | result |
-| data.swift:195:12:195:12 | dataTainted28 | data.swift:194:45:194:52 | call to source() :  | data.swift:195:12:195:12 | dataTainted28 | result |
-| data.swift:199:12:199:12 | dataTainted29 | data.swift:198:45:198:52 | call to source() :  | data.swift:199:12:199:12 | dataTainted29 | result |
-| data.swift:203:12:203:12 | dataTainted30 | data.swift:202:45:202:52 | call to source() :  | data.swift:203:12:203:12 | dataTainted30 | result |
-| data.swift:208:12:208:12 | dataTainted31 | data.swift:207:45:207:52 | call to source() :  | data.swift:208:12:208:12 | dataTainted31 | result |
-| data.swift:213:12:213:12 | dataTainted32 | data.swift:212:37:212:44 | call to source() :  | data.swift:213:12:213:12 | dataTainted32 | result |
-| data.swift:218:12:218:12 | dataTainted33 | data.swift:217:37:217:44 | call to source() :  | data.swift:218:12:218:12 | dataTainted33 | result |
-| data.swift:222:12:222:35 | call to shuffled() | data.swift:221:22:221:29 | call to source() :  | data.swift:222:12:222:35 | call to shuffled() | result |
-| data.swift:227:12:227:46 | call to shuffled(using:) | data.swift:225:22:225:29 | call to source() :  | data.swift:227:12:227:46 | call to shuffled(using:) | result |
-| data.swift:231:12:231:46 | call to sorted(using:) | data.swift:230:22:230:29 | call to source() :  | data.swift:231:12:231:46 | call to sorted(using:) | result |
-| data.swift:235:12:235:44 | call to trimmingPrefix(_:) | data.swift:234:22:234:29 | call to source() :  | data.swift:235:12:235:44 | call to trimmingPrefix(_:) | result |
-| data.swift:239:12:239:54 | call to trimmingPrefix(while:) | data.swift:238:22:238:29 | call to source() :  | data.swift:239:12:239:54 | call to trimmingPrefix(while:) | result |
->>>>>>> 7ef2618758 (Update test expectations)
 | string.swift:7:13:7:13 | "..." | string.swift:5:11:5:18 | call to source() :  | string.swift:7:13:7:13 | "..." | result |
 | string.swift:9:13:9:13 | "..." | string.swift:5:11:5:18 | call to source() :  | string.swift:9:13:9:13 | "..." | result |
 | string.swift:11:13:11:13 | "..." | string.swift:5:11:5:18 | call to source() :  | string.swift:11:13:11:13 | "..." | result |

From fc7c66dab20bf4165cba5a279b61e39123dd46c1 Mon Sep 17 00:00:00 2001
From: Tony Torralba <atorralba@users.noreply.github.com>
Date: Thu, 24 Nov 2022 12:04:08 +0100
Subject: [PATCH 0612/1420] Remove now unnecessary additional taint step in
 UnsafeJsEval

---
 swift/ql/src/queries/Security/CWE-094/UnsafeJsEval.ql         | 4 ----
 .../test/query-tests/Security/CWE-094/UnsafeJsEval.expected   | 2 --
 2 files changed, 6 deletions(-)

diff --git a/swift/ql/src/queries/Security/CWE-094/UnsafeJsEval.ql b/swift/ql/src/queries/Security/CWE-094/UnsafeJsEval.ql
index cd96709b6f6..e5764416d27 100644
--- a/swift/ql/src/queries/Security/CWE-094/UnsafeJsEval.ql
+++ b/swift/ql/src/queries/Security/CWE-094/UnsafeJsEval.ql
@@ -108,10 +108,6 @@ class UnsafeJsEvalConfig extends TaintTracking::Configuration {
                 ])
         ).getArgument(0)
       or
-      arg =
-        any(CallExpr ce | ce.getStaticTarget().(MethodDecl).hasQualifiedName("Data", "init(_:)"))
-            .getArgument(0)
-      or
       arg =
         any(CallExpr ce |
           ce.getStaticTarget().(MethodDecl).hasQualifiedName("String", "init(decoding:as:)")
diff --git a/swift/ql/test/query-tests/Security/CWE-094/UnsafeJsEval.expected b/swift/ql/test/query-tests/Security/CWE-094/UnsafeJsEval.expected
index 6f146b41df8..e6b4fb45005 100644
--- a/swift/ql/test/query-tests/Security/CWE-094/UnsafeJsEval.expected
+++ b/swift/ql/test/query-tests/Security/CWE-094/UnsafeJsEval.expected
@@ -6,7 +6,6 @@ edges
 | UnsafeJsEval.swift:201:21:201:35 | call to getRemoteData() :  | UnsafeJsEval.swift:205:7:205:7 | remoteString :  |
 | UnsafeJsEval.swift:201:21:201:35 | call to getRemoteData() :  | UnsafeJsEval.swift:208:7:208:39 | ... .+(_:_:) ... :  |
 | UnsafeJsEval.swift:201:21:201:35 | call to getRemoteData() :  | UnsafeJsEval.swift:211:24:211:37 | .utf8 :  |
-| UnsafeJsEval.swift:201:21:201:35 | call to getRemoteData() :  | UnsafeJsEval.swift:214:7:214:49 | call to init(decoding:as:) :  |
 | UnsafeJsEval.swift:204:7:204:66 | try! ... :  | UnsafeJsEval.swift:265:13:265:13 | string :  |
 | UnsafeJsEval.swift:204:7:204:66 | try! ... :  | UnsafeJsEval.swift:268:13:268:13 | string :  |
 | UnsafeJsEval.swift:204:7:204:66 | try! ... :  | UnsafeJsEval.swift:276:13:276:13 | string :  |
@@ -29,7 +28,6 @@ edges
 | UnsafeJsEval.swift:211:19:211:41 | call to init(_:) :  | UnsafeJsEval.swift:214:7:214:49 | call to init(decoding:as:) :  |
 | UnsafeJsEval.swift:211:24:211:37 | .utf8 :  | UnsafeJsEval.swift:144:5:144:29 | [summary param] 0 in init(_:) :  |
 | UnsafeJsEval.swift:211:24:211:37 | .utf8 :  | UnsafeJsEval.swift:211:19:211:41 | call to init(_:) :  |
-| UnsafeJsEval.swift:211:24:211:37 | .utf8 :  | UnsafeJsEval.swift:214:7:214:49 | call to init(decoding:as:) :  |
 | UnsafeJsEval.swift:214:7:214:49 | call to init(decoding:as:) :  | UnsafeJsEval.swift:265:13:265:13 | string :  |
 | UnsafeJsEval.swift:214:7:214:49 | call to init(decoding:as:) :  | UnsafeJsEval.swift:268:13:268:13 | string :  |
 | UnsafeJsEval.swift:214:7:214:49 | call to init(decoding:as:) :  | UnsafeJsEval.swift:276:13:276:13 | string :  |

From e4e5291511fa7832b58dd051f432a6362d0236c9 Mon Sep 17 00:00:00 2001
From: Tony Torralba <atorralba@users.noreply.github.com>
Date: Thu, 24 Nov 2022 13:03:12 +0100
Subject: [PATCH 0613/1420] Fix more test expectations after rebase

---
 .../library-tests/dataflow/flowsources/FlowSources.expected   | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/swift/ql/test/library-tests/dataflow/flowsources/FlowSources.expected b/swift/ql/test/library-tests/dataflow/flowsources/FlowSources.expected
index 9aeb5661a9e..078385e1e00 100644
--- a/swift/ql/test/library-tests/dataflow/flowsources/FlowSources.expected
+++ b/swift/ql/test/library-tests/dataflow/flowsources/FlowSources.expected
@@ -3,12 +3,12 @@
 | customurlschemes.swift:38:52:38:62 | url | external |
 | customurlschemes.swift:43:9:43:28 | ...[...] | Remote URL in UIApplicationDelegate.application.launchOptions |
 | customurlschemes.swift:48:9:48:28 | ...[...] | Remote URL in UIApplicationDelegate.application.launchOptions |
+| data.swift:18:20:18:20 | call to init(contentsOf:options:) | external |
+| data.swift:18:20:18:54 | call to init(contentsOf:options:) | external |
 | nsdata.swift:18:17:18:17 | call to init(contentsOf:) | external |
 | nsdata.swift:18:17:18:40 | call to init(contentsOf:) | external |
 | nsdata.swift:19:17:19:17 | call to init(contentsOf:options:) | external |
 | nsdata.swift:19:17:19:53 | call to init(contentsOf:options:) | external |
-| data.swift:18:20:18:20 | call to init(contentsOf:options:) | external |
-| data.swift:18:20:18:54 | call to init(contentsOf:options:) | external |
 | string.swift:56:21:56:21 | call to init(contentsOf:) | external |
 | string.swift:56:21:56:44 | call to init(contentsOf:) | external |
 | string.swift:57:21:57:21 | call to init(contentsOf:encoding:) | external |

From 1c407a28cd427dbab1642707bfae3e08011462da Mon Sep 17 00:00:00 2001
From: Nick Rolfe <nickrolfe@github.com>
Date: Thu, 24 Nov 2022 14:00:05 +0000
Subject: [PATCH 0614/1420] Apply suggestions from code review

Co-authored-by: Harry Maclean <hmac@github.com>
---
 .../queries/security/cwe-209/StackTraceExposure.qhelp  |  2 +-
 .../security/cwe-209/examples/StackTraceExposure.rb    |  6 +++---
 .../security/cwe-209/StackTraceExposure.expected       | 10 +++++-----
 .../query-tests/security/cwe-209/StackTraceExposure.rb |  4 ++--
 4 files changed, 11 insertions(+), 11 deletions(-)

diff --git a/ruby/ql/src/queries/security/cwe-209/StackTraceExposure.qhelp b/ruby/ql/src/queries/security/cwe-209/StackTraceExposure.qhelp
index 916f6cfcbeb..793138256ff 100644
--- a/ruby/ql/src/queries/security/cwe-209/StackTraceExposure.qhelp
+++ b/ruby/ql/src/queries/security/cwe-209/StackTraceExposure.qhelp
@@ -33,7 +33,7 @@ Either suppress the stack trace entirely, or log it only on the server.
 <example>
 <p>
 In the following example, an exception is handled in two different ways. In the
-first version, labeled BAD, the exception is exposted to the remote user by
+first version, labeled BAD, the exception is exposed to the remote user by
 rendering it as an HTTP response. As such, the user is able to see a detailed
 stack trace, which may contain sensitive information. In the second version, the
 error message is logged only on the server, and a generic error message is
diff --git a/ruby/ql/src/queries/security/cwe-209/examples/StackTraceExposure.rb b/ruby/ql/src/queries/security/cwe-209/examples/StackTraceExposure.rb
index 591be56014f..86cd38f5c30 100644
--- a/ruby/ql/src/queries/security/cwe-209/examples/StackTraceExposure.rb
+++ b/ruby/ql/src/queries/security/cwe-209/examples/StackTraceExposure.rb
@@ -4,15 +4,15 @@ class UsersController < ApplicationController
     do_computation()
   rescue => e
     # BAD
-    render e.backtrace, content_type: "text/plain"
+    render body: e.backtrace, content_type: "text/plain"
   end
 
   def update_good(id)
     do_computation()
   rescue => e
     # GOOD
-    log e.backtrace
-    redner "Computation failed", content_type: "text/plain"
+    logger.error e.backtrace
+    render body: "Computation failed", content_type: "text/plain"
   end
 
 end
\ No newline at end of file
diff --git a/ruby/ql/test/query-tests/security/cwe-209/StackTraceExposure.expected b/ruby/ql/test/query-tests/security/cwe-209/StackTraceExposure.expected
index 7a0e35973be..da66e5e4dc1 100644
--- a/ruby/ql/test/query-tests/security/cwe-209/StackTraceExposure.expected
+++ b/ruby/ql/test/query-tests/security/cwe-209/StackTraceExposure.expected
@@ -1,10 +1,10 @@
 edges
-| StackTraceExposure.rb:11:10:11:17 | call to caller :  | StackTraceExposure.rb:12:12:12:13 | bt |
+| StackTraceExposure.rb:11:10:11:17 | call to caller :  | StackTraceExposure.rb:12:18:12:19 | bt |
 nodes
-| StackTraceExposure.rb:6:12:6:22 | call to backtrace | semmle.label | call to backtrace |
+| StackTraceExposure.rb:6:18:6:28 | call to backtrace | semmle.label | call to backtrace |
 | StackTraceExposure.rb:11:10:11:17 | call to caller :  | semmle.label | call to caller :  |
-| StackTraceExposure.rb:12:12:12:13 | bt | semmle.label | bt |
+| StackTraceExposure.rb:12:18:12:19 | bt | semmle.label | bt |
 subpaths
 #select
-| StackTraceExposure.rb:6:12:6:22 | call to backtrace | StackTraceExposure.rb:6:12:6:22 | call to backtrace | StackTraceExposure.rb:6:12:6:22 | call to backtrace | $@ can be exposed to an external user. | StackTraceExposure.rb:6:12:6:22 | call to backtrace | Error information |
-| StackTraceExposure.rb:12:12:12:13 | bt | StackTraceExposure.rb:11:10:11:17 | call to caller :  | StackTraceExposure.rb:12:12:12:13 | bt | $@ can be exposed to an external user. | StackTraceExposure.rb:11:10:11:17 | call to caller | Error information |
+| StackTraceExposure.rb:6:18:6:28 | call to backtrace | StackTraceExposure.rb:6:18:6:28 | call to backtrace | StackTraceExposure.rb:6:18:6:28 | call to backtrace | $@ can be exposed to an external user. | StackTraceExposure.rb:6:18:6:28 | call to backtrace | Error information |
+| StackTraceExposure.rb:12:18:12:19 | bt | StackTraceExposure.rb:11:10:11:17 | call to caller :  | StackTraceExposure.rb:12:18:12:19 | bt | $@ can be exposed to an external user. | StackTraceExposure.rb:11:10:11:17 | call to caller | Error information |
diff --git a/ruby/ql/test/query-tests/security/cwe-209/StackTraceExposure.rb b/ruby/ql/test/query-tests/security/cwe-209/StackTraceExposure.rb
index a9faa66af02..6091984df1a 100644
--- a/ruby/ql/test/query-tests/security/cwe-209/StackTraceExposure.rb
+++ b/ruby/ql/test/query-tests/security/cwe-209/StackTraceExposure.rb
@@ -3,13 +3,13 @@ class FooController < ApplicationController
   def show
     something_that_might_fail()
   rescue => e
-    render e.backtrace, content_type: "text/plain"
+    render body: e.backtrace, content_type: "text/plain"
   end
 
 
   def show2
     bt = caller()
-    render bt, content_type: "text/plain"
+    render body: bt, content_type: "text/plain"
   end
 
 end

From 50b10be2db43bdb5db827e64c271a8e3154af84d Mon Sep 17 00:00:00 2001
From: Nick Rolfe <nickrolfe@github.com>
Date: Thu, 24 Nov 2022 14:08:34 +0000
Subject: [PATCH 0615/1420] Ruby: StackTraceExposure: add test for a specific
 rescue type

---
 .../security/cwe-209/StackTraceExposure.expected            | 2 ++
 .../test/query-tests/security/cwe-209/StackTraceExposure.rb | 6 ++++++
 2 files changed, 8 insertions(+)

diff --git a/ruby/ql/test/query-tests/security/cwe-209/StackTraceExposure.expected b/ruby/ql/test/query-tests/security/cwe-209/StackTraceExposure.expected
index da66e5e4dc1..0dba484c65a 100644
--- a/ruby/ql/test/query-tests/security/cwe-209/StackTraceExposure.expected
+++ b/ruby/ql/test/query-tests/security/cwe-209/StackTraceExposure.expected
@@ -4,7 +4,9 @@ nodes
 | StackTraceExposure.rb:6:18:6:28 | call to backtrace | semmle.label | call to backtrace |
 | StackTraceExposure.rb:11:10:11:17 | call to caller :  | semmle.label | call to caller :  |
 | StackTraceExposure.rb:12:18:12:19 | bt | semmle.label | bt |
+| StackTraceExposure.rb:18:18:18:28 | call to backtrace | semmle.label | call to backtrace |
 subpaths
 #select
 | StackTraceExposure.rb:6:18:6:28 | call to backtrace | StackTraceExposure.rb:6:18:6:28 | call to backtrace | StackTraceExposure.rb:6:18:6:28 | call to backtrace | $@ can be exposed to an external user. | StackTraceExposure.rb:6:18:6:28 | call to backtrace | Error information |
 | StackTraceExposure.rb:12:18:12:19 | bt | StackTraceExposure.rb:11:10:11:17 | call to caller :  | StackTraceExposure.rb:12:18:12:19 | bt | $@ can be exposed to an external user. | StackTraceExposure.rb:11:10:11:17 | call to caller | Error information |
+| StackTraceExposure.rb:18:18:18:28 | call to backtrace | StackTraceExposure.rb:18:18:18:28 | call to backtrace | StackTraceExposure.rb:18:18:18:28 | call to backtrace | $@ can be exposed to an external user. | StackTraceExposure.rb:18:18:18:28 | call to backtrace | Error information |
diff --git a/ruby/ql/test/query-tests/security/cwe-209/StackTraceExposure.rb b/ruby/ql/test/query-tests/security/cwe-209/StackTraceExposure.rb
index 6091984df1a..dcdf5c1f22c 100644
--- a/ruby/ql/test/query-tests/security/cwe-209/StackTraceExposure.rb
+++ b/ruby/ql/test/query-tests/security/cwe-209/StackTraceExposure.rb
@@ -12,4 +12,10 @@ class FooController < ApplicationController
     render body: bt, content_type: "text/plain"
   end
 
+  def show3
+    not_a_method()
+  rescue NoMethodError => e
+    render body: e.backtrace, content_type: "text/plain"
+  end
+
 end

From 8d96bfe973e3d3387918e8799019cee96c440ba5 Mon Sep 17 00:00:00 2001
From: "github-actions[bot]"
 <41898282+github-actions[bot]@users.noreply.github.com>
Date: Thu, 24 Nov 2022 14:18:13 +0000
Subject: [PATCH 0616/1420] JS: Bump patch version of ML-powered library and
 query packs

---
 .../ql/experimental/adaptivethreatmodeling/lib/qlpack.yml       | 2 +-
 .../ql/experimental/adaptivethreatmodeling/src/qlpack.yml       | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/javascript/ql/experimental/adaptivethreatmodeling/lib/qlpack.yml b/javascript/ql/experimental/adaptivethreatmodeling/lib/qlpack.yml
index e0571f38255..fb53f54ded7 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/lib/qlpack.yml
+++ b/javascript/ql/experimental/adaptivethreatmodeling/lib/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/javascript-experimental-atm-lib
-version: 0.4.1
+version: 0.4.2
 extractor: javascript
 library: true
 groups:
diff --git a/javascript/ql/experimental/adaptivethreatmodeling/src/qlpack.yml b/javascript/ql/experimental/adaptivethreatmodeling/src/qlpack.yml
index cab87ce0e33..725beadcb0e 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/src/qlpack.yml
+++ b/javascript/ql/experimental/adaptivethreatmodeling/src/qlpack.yml
@@ -1,6 +1,6 @@
 name: codeql/javascript-experimental-atm-queries
 language: javascript
-version: 0.4.1
+version: 0.4.2
 suites: codeql-suites
 defaultSuiteFile: codeql-suites/javascript-atm-code-scanning.qls
 groups:

From 78d49e44b1292319713b3b10e3c9b706aab67e63 Mon Sep 17 00:00:00 2001
From: "github-actions[bot]"
 <41898282+github-actions[bot]@users.noreply.github.com>
Date: Thu, 24 Nov 2022 14:22:14 +0000
Subject: [PATCH 0617/1420] JS: Bump version of ML-powered library and query
 packs to 0.4.3

---
 .../ql/experimental/adaptivethreatmodeling/lib/qlpack.yml       | 2 +-
 .../ql/experimental/adaptivethreatmodeling/src/qlpack.yml       | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/javascript/ql/experimental/adaptivethreatmodeling/lib/qlpack.yml b/javascript/ql/experimental/adaptivethreatmodeling/lib/qlpack.yml
index fb53f54ded7..22249f4b960 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/lib/qlpack.yml
+++ b/javascript/ql/experimental/adaptivethreatmodeling/lib/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/javascript-experimental-atm-lib
-version: 0.4.2
+version: 0.4.3
 extractor: javascript
 library: true
 groups:
diff --git a/javascript/ql/experimental/adaptivethreatmodeling/src/qlpack.yml b/javascript/ql/experimental/adaptivethreatmodeling/src/qlpack.yml
index 725beadcb0e..875283e0b63 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/src/qlpack.yml
+++ b/javascript/ql/experimental/adaptivethreatmodeling/src/qlpack.yml
@@ -1,6 +1,6 @@
 name: codeql/javascript-experimental-atm-queries
 language: javascript
-version: 0.4.2
+version: 0.4.3
 suites: codeql-suites
 defaultSuiteFile: codeql-suites/javascript-atm-code-scanning.qls
 groups:

From 893c8763bb2076ba890eeffec694f63896a08bcf Mon Sep 17 00:00:00 2001
From: Alex Ford <alexrford@github.com>
Date: Thu, 24 Nov 2022 15:01:10 +0000
Subject: [PATCH 0618/1420] Ruby: model ActiveSupport json_escape flow

---
 .../lib/codeql/ruby/frameworks/ActiveSupport.qll   | 14 ++++++++++++++
 .../active_support/ActiveSupportDataFlow.expected  |  7 +++++++
 .../frameworks/active_support/active_support.rb    |  6 ++++++
 3 files changed, 27 insertions(+)

diff --git a/ruby/ql/lib/codeql/ruby/frameworks/ActiveSupport.qll b/ruby/ql/lib/codeql/ruby/frameworks/ActiveSupport.qll
index 7d3286a0a74..5cea6497c5f 100644
--- a/ruby/ql/lib/codeql/ruby/frameworks/ActiveSupport.qll
+++ b/ruby/ql/lib/codeql/ruby/frameworks/ActiveSupport.qll
@@ -312,6 +312,20 @@ module ActiveSupport {
     }
   }
 
+  module Erb {
+    module Util {
+      private class JsonEscapeSummary extends SimpleSummarizedCallable {
+        JsonEscapeSummary() { this = "json_escape" }
+
+        override predicate propagatesFlowExt(string input, string output, boolean preservesValue) {
+          input = "Argument[0]" and
+          output = "ReturnValue" and
+          preservesValue = false
+        }
+      }
+    }
+  }
+
   /**
    * Type summaries for extensions to the `Pathname` module.
    */
diff --git a/ruby/ql/test/library-tests/frameworks/active_support/ActiveSupportDataFlow.expected b/ruby/ql/test/library-tests/frameworks/active_support/ActiveSupportDataFlow.expected
index 11b6b46ee3e..2ea08b4c384 100644
--- a/ruby/ql/test/library-tests/frameworks/active_support/ActiveSupportDataFlow.expected
+++ b/ruby/ql/test/library-tests/frameworks/active_support/ActiveSupportDataFlow.expected
@@ -186,6 +186,9 @@ edges
 | active_support.rb:290:7:290:16 | call to source :  | active_support.rb:291:8:291:8 | x :  |
 | active_support.rb:291:8:291:8 | x :  | active_support.rb:291:8:291:17 | call to deep_dup |
 | active_support.rb:291:8:291:8 | x :  | active_support.rb:291:8:291:17 | call to deep_dup |
+| active_support.rb:303:7:303:16 | call to source :  | active_support.rb:304:19:304:19 | a :  |
+| active_support.rb:304:7:304:19 | call to json_escape :  | active_support.rb:305:8:305:8 | b |
+| active_support.rb:304:19:304:19 | a :  | active_support.rb:304:7:304:19 | call to json_escape :  |
 | hash_extensions.rb:2:14:2:24 | call to source :  | hash_extensions.rb:3:9:3:9 | h [element :a] :  |
 | hash_extensions.rb:2:14:2:24 | call to source :  | hash_extensions.rb:3:9:3:9 | h [element :a] :  |
 | hash_extensions.rb:3:9:3:9 | h [element :a] :  | hash_extensions.rb:3:9:3:24 | call to stringify_keys [element] :  |
@@ -532,6 +535,10 @@ nodes
 | active_support.rb:291:8:291:8 | x :  | semmle.label | x :  |
 | active_support.rb:291:8:291:17 | call to deep_dup | semmle.label | call to deep_dup |
 | active_support.rb:291:8:291:17 | call to deep_dup | semmle.label | call to deep_dup |
+| active_support.rb:303:7:303:16 | call to source :  | semmle.label | call to source :  |
+| active_support.rb:304:7:304:19 | call to json_escape :  | semmle.label | call to json_escape :  |
+| active_support.rb:304:19:304:19 | a :  | semmle.label | a :  |
+| active_support.rb:305:8:305:8 | b | semmle.label | b |
 | hash_extensions.rb:2:14:2:24 | call to source :  | semmle.label | call to source :  |
 | hash_extensions.rb:2:14:2:24 | call to source :  | semmle.label | call to source :  |
 | hash_extensions.rb:3:9:3:9 | h [element :a] :  | semmle.label | h [element :a] :  |
diff --git a/ruby/ql/test/library-tests/frameworks/active_support/active_support.rb b/ruby/ql/test/library-tests/frameworks/active_support/active_support.rb
index fe0256080d1..c2dfb8b421d 100644
--- a/ruby/ql/test/library-tests/frameworks/active_support/active_support.rb
+++ b/ruby/ql/test/library-tests/frameworks/active_support/active_support.rb
@@ -298,3 +298,9 @@ def m_try(method)
     x.try!(:upcase).try!(:downcase)
     x.try!(method)
 end
+
+def m_json_escape
+  a = source "a"
+  b = json_escape a
+  sink b # $hasTaintFlow=a
+end

From e6446e501c603e5a6c8abdcd6f596db809b517df Mon Sep 17 00:00:00 2001
From: Alex Ford <alexrford@github.com>
Date: Thu, 24 Nov 2022 15:37:03 +0000
Subject: [PATCH 0619/1420] Ruby: fix docs failure

---
 ruby/ql/lib/codeql/ruby/frameworks/ActiveSupport.qll | 6 ++++++
 1 file changed, 6 insertions(+)

diff --git a/ruby/ql/lib/codeql/ruby/frameworks/ActiveSupport.qll b/ruby/ql/lib/codeql/ruby/frameworks/ActiveSupport.qll
index 5cea6497c5f..3e90875206c 100644
--- a/ruby/ql/lib/codeql/ruby/frameworks/ActiveSupport.qll
+++ b/ruby/ql/lib/codeql/ruby/frameworks/ActiveSupport.qll
@@ -312,7 +312,13 @@ module ActiveSupport {
     }
   }
 
+  /**
+   * `ActiveSupport::ERB`
+   */
   module Erb {
+    /**
+     * `ActiveSupport::ERB::Util`
+     */
     module Util {
       private class JsonEscapeSummary extends SimpleSummarizedCallable {
         JsonEscapeSummary() { this = "json_escape" }

From e24e3bf13f002ad35c36262106e82cd229d18360 Mon Sep 17 00:00:00 2001
From: alexet <alexet@semmle.com>
Date: Thu, 24 Nov 2022 16:43:57 +0000
Subject: [PATCH 0620/1420] Java: Add new Mockito runner class location.

---
 java/ql/lib/semmle/code/java/frameworks/Mockito.qll | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

diff --git a/java/ql/lib/semmle/code/java/frameworks/Mockito.qll b/java/ql/lib/semmle/code/java/frameworks/Mockito.qll
index af161760063..9622d7e50ba 100644
--- a/java/ql/lib/semmle/code/java/frameworks/Mockito.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/Mockito.qll
@@ -53,9 +53,11 @@ class MockitoInitedTest extends Class {
   MockitoInitedTest() {
     // Tests run with the Mockito runner.
     exists(RunWithAnnotation a | a = this.getAnAncestor().getAnAnnotation() |
+      a.getRunner().(RefType).hasQualifiedName("org.mockito.junit", "MockitoJUnitRunner")
+      or
+      // Deprecated styles.
       a.getRunner().(RefType).hasQualifiedName("org.mockito.runners", "MockitoJUnitRunner")
       or
-      // Deprecated style.
       a.getRunner().(RefType).hasQualifiedName("org.mockito.runners", "MockitoJUnit44Runner")
     )
     or

From 6897fb46cb92c6e69b2f0a281c567e7d097df908 Mon Sep 17 00:00:00 2001
From: Harry Maclean <hmac@github.com>
Date: Thu, 24 Nov 2022 17:41:04 +1300
Subject: [PATCH 0621/1420] Ruby: Clean up WhenClause CFG

---
 .../ruby/controlflow/internal/ControlFlowGraphImpl.qll     | 7 ++++---
 1 file changed, 4 insertions(+), 3 deletions(-)

diff --git a/ruby/ql/lib/codeql/ruby/controlflow/internal/ControlFlowGraphImpl.qll b/ruby/ql/lib/codeql/ruby/controlflow/internal/ControlFlowGraphImpl.qll
index a8bd2e3feac..ba77d6beaba 100644
--- a/ruby/ql/lib/codeql/ruby/controlflow/internal/ControlFlowGraphImpl.qll
+++ b/ruby/ql/lib/codeql/ruby/controlflow/internal/ControlFlowGraphImpl.qll
@@ -1399,7 +1399,9 @@ module Trees {
   }
 
   private class WhenTree extends ControlFlowTree, WhenClause {
-    final override predicate propagatesAbnormal(AstNode child) { child = this.getAPattern() }
+    final override predicate propagatesAbnormal(AstNode child) {
+      child = [this.getAPattern(), this.getBody()]
+    }
 
     final Expr getLastPattern() {
       exists(int i |
@@ -1415,8 +1417,7 @@ module Trees {
       c.isValidFor(this) and
       c.(ConditionalCompletion).getValue() = false
       or
-      last(this.getBody(), last, c) and
-      c instanceof NormalCompletion
+      last(this.getBody(), last, c)
     }
 
     final override predicate succ(AstNode pred, AstNode succ, Completion c) {

From 2822c94aa795373371b51f3d900a9ac1cc5aa897 Mon Sep 17 00:00:00 2001
From: Harry Maclean <hmac@github.com>
Date: Thu, 24 Nov 2022 17:48:41 +1300
Subject: [PATCH 0622/1420] Ruby: Minor refactor of barrier guard code

---
 .../codeql/ruby/dataflow/BarrierGuards.qll    | 59 ++++++++++---------
 1 file changed, 30 insertions(+), 29 deletions(-)

diff --git a/ruby/ql/lib/codeql/ruby/dataflow/BarrierGuards.qll b/ruby/ql/lib/codeql/ruby/dataflow/BarrierGuards.qll
index f1f8d2c5b46..f586c7d74cc 100644
--- a/ruby/ql/lib/codeql/ruby/dataflow/BarrierGuards.qll
+++ b/ruby/ql/lib/codeql/ruby/dataflow/BarrierGuards.qll
@@ -31,15 +31,15 @@ private predicate stringConstCompare(CfgNodes::AstCfgNode guard, CfgNode testedN
   or
   stringConstCaseCompare(guard, testedNode, branch)
   or
-  exists(Ssa::Definition def, CfgNodes::ExprNodes::BinaryOperationCfgNode g |
+  exists(CfgNodes::ExprNodes::BinaryOperationCfgNode g |
     g = guard and
-    stringConstCompareOr(guard, def, branch) and
+    stringConstCompareOr(guard, branch) and
     stringConstCompare(g.getLeftOperand(), testedNode, _)
   )
 }
 
 /**
- * Holds if `guard` is an `or` expression whose operands are string comparison guards that test `def`.
+ * Holds if `guard` is an `or` expression whose operands are string comparison guards.
  * For example:
  *
  * ```rb
@@ -47,12 +47,12 @@ private predicate stringConstCompare(CfgNodes::AstCfgNode guard, CfgNode testedN
  * ```
  */
 private predicate stringConstCompareOr(
-  CfgNodes::ExprNodes::BinaryOperationCfgNode guard, Ssa::Definition def, boolean branch
+  CfgNodes::ExprNodes::BinaryOperationCfgNode guard, boolean branch
 ) {
   guard.getExpr() instanceof LogicalOrExpr and
   branch = true and
   forall(CfgNode innerGuard | innerGuard = guard.getAnOperand() |
-    stringConstCompare(innerGuard, def.getARead(), branch)
+    stringConstCompare(innerGuard, any(Ssa::Definition def).getARead(), branch)
   )
 }
 
@@ -190,34 +190,35 @@ private predicate stringConstCaseCompare(
   exists(CfgNodes::ExprNodes::CaseExprCfgNode case |
     case.getValue() = testedNode and
     (
-      exists(CfgNodes::ExprNodes::WhenClauseCfgNode branchNode |
-        guard = branchNode and
-        branchNode = case.getBranch(_) and
-        // For simplicity, consider patterns that contain only string literals or arrays of string literals
-        forall(ExprCfgNode pattern | pattern = branchNode.getPattern(_) |
-          // when "foo"
-          // when "foo", "bar"
-          pattern instanceof ExprNodes::StringLiteralCfgNode
-          or
-          exists(CfgNodes::ExprNodes::SplatExprCfgNode splat | splat = pattern |
-            // when *["foo", "bar"]
-            forex(ExprCfgNode elem |
-              elem = splat.getOperand().(ExprNodes::ArrayLiteralCfgNode).getAnArgument()
-            |
-              elem instanceof ExprNodes::StringLiteralCfgNode
-            )
+      guard =
+        any(CfgNodes::ExprNodes::WhenClauseCfgNode branchNode |
+          branchNode = case.getBranch(_) and
+          // For simplicity, consider patterns that contain only string literals or arrays of string literals
+          forall(ExprCfgNode pattern | pattern = branchNode.getPattern(_) |
+            // when "foo"
+            // when "foo", "bar"
+            pattern instanceof ExprNodes::StringLiteralCfgNode
             or
-            // when *some_var
-            // when *SOME_CONST
-            exists(ExprNodes::ArrayLiteralCfgNode arr |
-              isArrayConstant(splat.getOperand(), arr) and
-              forall(ExprCfgNode elem | elem = arr.getAnArgument() |
-                elem instanceof ExprNodes::StringLiteralCfgNode
+            pattern =
+              any(CfgNodes::ExprNodes::SplatExprCfgNode splat |
+                // when *["foo", "bar"]
+                forex(ExprCfgNode elem |
+                  elem = splat.getOperand().(ExprNodes::ArrayLiteralCfgNode).getAnArgument()
+                |
+                  elem instanceof ExprNodes::StringLiteralCfgNode
+                )
+                or
+                // when *some_var
+                // when *SOME_CONST
+                exists(ExprNodes::ArrayLiteralCfgNode arr |
+                  isArrayConstant(splat.getOperand(), arr) and
+                  forall(ExprCfgNode elem | elem = arr.getAnArgument() |
+                    elem instanceof ExprNodes::StringLiteralCfgNode
+                  )
+                )
               )
-            )
           )
         )
-      )
       or
       // in "foo"
       exists(

From afb5dc7da38500d64d49e777befcb223d3dc7d94 Mon Sep 17 00:00:00 2001
From: Geoffrey White <40627776+geoffw0@users.noreply.github.com>
Date: Thu, 10 Nov 2022 15:45:50 +0000
Subject: [PATCH 0623/1420] Swift: Add test for Alamofire sources.

---
 .../dataflow/flowsources/FlowSources.expected |   6 +
 .../dataflow/flowsources/alamofire.swift      | 551 ++++++++++++++++++
 2 files changed, 557 insertions(+)
 create mode 100644 swift/ql/test/library-tests/dataflow/flowsources/alamofire.swift

diff --git a/swift/ql/test/library-tests/dataflow/flowsources/FlowSources.expected b/swift/ql/test/library-tests/dataflow/flowsources/FlowSources.expected
index 078385e1e00..057b8418c77 100644
--- a/swift/ql/test/library-tests/dataflow/flowsources/FlowSources.expected
+++ b/swift/ql/test/library-tests/dataflow/flowsources/FlowSources.expected
@@ -1,3 +1,9 @@
+| alamofire.swift:387:28:387:28 | call to init(contentsOfFile:) | external |
+| alamofire.swift:387:28:387:55 | call to init(contentsOfFile:) | external |
+| alamofire.swift:402:28:402:28 | call to init(contentsOf:) | external |
+| alamofire.swift:402:28:402:50 | call to init(contentsOf:) | external |
+| alamofire.swift:446:20:446:20 | call to init(contentsOfFile:) | external |
+| alamofire.swift:446:20:446:49 | call to init(contentsOfFile:) | external |
 | customurlschemes.swift:30:44:30:54 | url | external |
 | customurlschemes.swift:34:52:34:68 | url | external |
 | customurlschemes.swift:38:52:38:62 | url | external |
diff --git a/swift/ql/test/library-tests/dataflow/flowsources/alamofire.swift b/swift/ql/test/library-tests/dataflow/flowsources/alamofire.swift
new file mode 100644
index 00000000000..745d5091a3d
--- /dev/null
+++ b/swift/ql/test/library-tests/dataflow/flowsources/alamofire.swift
@@ -0,0 +1,551 @@
+
+// --- Foundation stubs ---
+
+struct URL {
+    init(fileURLWithPath: String) {}
+
+    var path: String { get { return "" } }
+}
+
+class NSObject {
+}
+
+class URLResponse : NSObject {
+}
+
+class HTTPURLResponse : URLResponse {
+}
+
+struct Data {
+}
+
+extension String {
+    init(contentsOf url: URL) throws {
+        self.init("")
+    }
+    init(contentsOfFile path: String) throws {
+        self.init("")
+    }
+}
+
+enum Result<Success, Failure> where Failure: Error {
+    case success(Success)
+    case failure(Failure)
+}
+
+extension Result {
+    var success: Success? {
+        guard case let .success(value) = self else { return nil }
+        return value
+    }
+}
+
+// --- Alamofire stubs ---
+
+protocol URLConvertible {
+}
+
+extension String: URLConvertible {
+}
+
+class Request {
+}
+
+class DataRequest: Request {
+}
+
+class DownloadRequest: Request {
+    struct Options: OptionSet {
+        let rawValue: Int
+    }
+
+    typealias Destination =
+        (_ temporaryURL: URL, _ response: HTTPURLResponse) ->
+        (destinationURL: URL, options: Options)
+}
+
+final class DataStreamRequest: Request {
+    typealias Handler<Success, Failure: Error> = (Stream<Success, Failure>) throws -> Void
+
+    struct Stream<Success, Failure: Error> {
+        let event: Event<Success, Failure>
+    }
+
+    enum Event<Success, Failure: Error> {
+        case stream(Result<Success, Failure>)
+        case complete(Completion)
+    }
+
+    struct Completion {
+    }
+}
+
+enum AFError: Error {
+}
+
+struct DataResponse<Success, Failure: Error> {
+    let data: Data?
+
+    let result: Result<Success, Failure>
+
+    var value: Success? { result.success }
+}
+
+struct DownloadResponse<Success, Failure: Error> {
+    let fileURL: URL?
+
+    let result: Result<Success, Failure>
+
+    var value: Success? { result.success }
+}
+
+typealias AFDataResponse<Success> = DataResponse<Success, AFError>
+typealias AFDownloadResponse<Success> = DownloadResponse<Success, AFError>
+
+protocol DataResponseSerializerProtocol {
+    associatedtype SerializedObject
+
+    func serialize() -> SerializedObject // simplified
+}
+
+protocol DownloadResponseSerializerProtocol {
+    associatedtype SerializedObject
+
+    func serializeDownload() -> SerializedObject // simplified
+}
+
+protocol ResponseSerializer: DataResponseSerializerProtocol & DownloadResponseSerializerProtocol {
+}
+
+protocol DataStreamSerializer {
+    associatedtype SerializedObject
+
+    func serialize(_ data: Data) throws -> SerializedObject
+}
+
+extension DataRequest {
+    @discardableResult
+    func response(
+        a1 : Int = 0, // these parameters do not matter for our purposes
+        a2 : Int = 0,
+        completionHandler: @escaping (AFDataResponse<Data?>) -> Void) -> Self {
+            return self
+    }
+
+    @discardableResult
+    func response<Serializer: DataResponseSerializerProtocol>(
+        a1 : Int = 0, // these parameters do not matter for our purposes
+        a2 : Int = 0,
+        responseSerializer: Serializer,
+        completionHandler: @escaping (AFDataResponse<Serializer.SerializedObject>) -> Void) -> Self {
+            return self
+    }
+
+    @discardableResult
+    func response<Serializer: ResponseSerializer>(
+        a1 : Int = 0, // these parameters do not matter for our purposes
+        a2 : Int = 0,
+        responseSerializer: Serializer,
+        completionHandler: @escaping (AFDataResponse<Serializer.SerializedObject>) -> Void) -> Self {
+            return self
+    }
+
+    @discardableResult
+    func responseData(
+        a1 : Int = 0, // these parameters do not matter for our purposes
+        a2 : Int = 0,
+        completionHandler: @escaping (AFDataResponse<Data>) -> Void) -> Self {
+            return self
+    }
+
+    @discardableResult
+    func responseString(
+        a1 : Int = 0, // these parameters do not matter for our purposes
+        a2 : Int = 0,
+        completionHandler: @escaping (AFDataResponse<String>) -> Void) -> Self {
+            return self
+    }
+
+    @discardableResult
+    func responseJSON(
+        a1 : Int = 0, // these parameters do not matter for our purposes
+        a2 : Int = 0,
+        completionHandler: @escaping (AFDataResponse<Any>) -> Void) -> Self {
+            return self
+    }
+
+    @discardableResult
+    func responseDecodable<T: Decodable>(
+        of type: T.Type = T.self,
+        a1 : Int = 0, // these parameters do not matter for our purposes
+        a2 : Int = 0,
+        completionHandler: @escaping (AFDataResponse<T>) -> Void) -> Self {
+            return self
+    }
+}
+
+extension DownloadRequest {
+    @discardableResult
+    func response(
+        a1 : Int = 0, // these parameters do not matter for our purposes
+        a2 : Int = 0,
+        completionHandler: @escaping (AFDownloadResponse<URL?>) -> Void) -> Self {
+            return self
+    }
+
+    @discardableResult
+    func response<Serializer: DownloadResponseSerializerProtocol>(
+        a1 : Int = 0, // these parameters do not matter for our purposes
+        a2 : Int = 0,
+        responseSerializer: Serializer,
+        completionHandler: @escaping (AFDownloadResponse<Serializer.SerializedObject>) -> Void) -> Self {
+            return self
+    }
+
+    @discardableResult
+    func response<Serializer: ResponseSerializer>(
+        a1 : Int = 0, // these parameters do not matter for our purposes
+        a2 : Int = 0,
+        responseSerializer: Serializer,
+        completionHandler: @escaping (AFDownloadResponse<Serializer.SerializedObject>) -> Void) -> Self {
+            return self
+    }
+
+    @discardableResult
+    func responseURL(
+        a1 : Int = 0, // these parameters do not matter for our purposes
+        a2 : Int = 0,
+        completionHandler: @escaping (AFDownloadResponse<URL>) -> Void) -> Self {
+            return self
+    }
+
+    @discardableResult
+    func responseData(
+        a1 : Int = 0, // these parameters do not matter for our purposes
+        a2 : Int = 0,
+        completionHandler: @escaping (AFDownloadResponse<Data>) -> Void) -> Self {
+            return self
+    }
+
+    @discardableResult
+    func responseString(
+        a1 : Int = 0, // these parameters do not matter for our purposes
+        a2 : Int = 0,
+        completionHandler: @escaping (AFDownloadResponse<String>) -> Void) -> Self {
+            return self
+    }
+
+    @discardableResult
+    func responseJSON(
+        a1 : Int = 0, // these parameters do not matter for our purposes
+        a2 : Int = 0,
+        completionHandler: @escaping (AFDownloadResponse<Any>) -> Void) -> Self {
+            return self
+    }
+
+    @discardableResult
+    func responseDecodable<T: Decodable>(
+        of type: T.Type = T.self,
+        a1 : Int = 0, // these parameters do not matter for our purposes
+        a2 : Int = 0,
+        completionHandler: @escaping (AFDownloadResponse<T>) -> Void) -> Self {
+            return self
+    }
+}
+
+extension DataStreamRequest
+{
+    @discardableResult
+    func responseStream(
+        a1 : Int = 0, // these parameters do not matter for our purposes
+        a2 : Int = 0,
+        stream: @escaping Handler<Data, Never>) -> Self {
+            return self
+    }
+
+    @discardableResult
+    func responseStream<Serializer: DataStreamSerializer>(
+        using serializer: Serializer,
+        a1 : Int = 0, // these parameters do not matter for our purposes
+        a2 : Int = 0,
+        stream: @escaping Handler<Serializer.SerializedObject, AFError>) -> Self {
+            return self
+    }
+
+    @discardableResult
+    func responseStreamString(
+        a1 : Int = 0, // these parameters do not matter for our purposes
+        a2 : Int = 0,
+        stream: @escaping Handler<String, Never>) -> Self {
+            return self
+    }
+
+    @discardableResult
+    func responseStreamDecodable<T: Decodable>(
+        of type: T.Type = T.self,
+        a1 : Int = 0, // these parameters do not matter for our purposes
+        a2 : Int = 0,
+        stream: @escaping Handler<T, AFError>) -> Self {
+            return self
+    }
+}
+
+class Session {
+	static let `default` = Session()
+
+	func request(
+		_ convertible: URLConvertible,
+        a2 : Int = 0, // these parameters vary and do not matter for our purposes
+        a3 : Int = 0) -> DataRequest {
+			return DataRequest()
+	}
+
+	func download(
+		_ convertible: URLConvertible,
+        a2 : Int = 0, // these parameters vary and do not matter for our purposes
+        a3 : Int = 0,
+        to destination: DownloadRequest.Destination? = nil) -> DownloadRequest {
+			return DownloadRequest()
+	}
+
+	func streamRequest(
+		_ convertible: URLConvertible,
+        a2 : Int = 0, // these parameters vary and do not matter for our purposes
+        a3 : Int = 0) -> DataStreamRequest {
+			return DataStreamRequest()
+	}
+}
+
+let AF = Session.default
+
+// --- tests ---
+
+struct MySerializer: ResponseSerializer {
+    func serialize() -> String { return "" }
+    func serializeDownload() -> String { return "" }
+}
+
+struct MyStreamSerializer: DataStreamSerializer {
+    func serialize(_ data: Data) throws -> String { return "" }
+}
+
+struct MyDecodable: Decodable {
+}
+
+func doSomething(_ v: Any) {}
+
+func testAlamofire() {
+    // requests
+
+    AF.request("http://example.com/").response {
+        response in
+        if let data = response.data { // SOURCE [NOT DETECTED]
+            // ...
+        }
+    }
+
+    AF.request("http://example.com/").response(responseSerializer: MySerializer()) {
+        response in
+        if let obj = response.value { // SOURCE [NOT DETECTED]
+            // ...
+        }
+    }
+
+    AF.request("http://example.com/").responseData {
+        response in
+        if let data = response.value { // SOURCE [NOT DETECTED]
+            // ...
+        }
+    }
+
+    AF.request("http://example.com/").responseString {
+        response in
+        if let str = response.value { // SOURCE [NOT DETECTED]
+            // ...
+        }
+    }
+
+    AF.request("http://example.com/").responseJSON {
+        response in
+        if let json = response.value { // SOURCE [NOT DETECTED]
+            // ...
+        }
+    }
+
+    AF.request("http://example.com/").responseDecodable(of: MyDecodable.self) {
+        response in
+        if let decodable = response.value { // SOURCE [NOT DETECTED]
+            // ...
+        }
+    }
+
+    // downloads (to a file)
+
+    AF.download("http://example.com/").response {
+        response in
+        if let path = response.fileURL?.path {
+            let str = try? String(contentsOfFile: path) // SOURCE
+            // ...
+        }
+    }
+
+    AF.download("http://example.com/").response(responseSerializer: MySerializer()) {
+        response in
+        if let obj = response.value { // SOURCE [NOT DETECTED]
+            // ...
+        }
+    }
+
+    AF.download("http://example.com/").responseURL {
+        response in
+        if let url = response.value {
+            let str = try? String(contentsOf: url) // SOURCE
+            // ...
+        }
+    }
+
+    AF.download("http://example.com/").responseData {
+        response in
+        if let data = response.value { // SOURCE [NOT DETECTED]
+            // ...
+        }
+    }
+
+    AF.download("http://example.com/").responseString {
+        response in
+        if let str = response.value { // SOURCE [NOT DETECTED]
+            // ...
+        }
+    }
+
+    AF.download("http://example.com/").responseJSON {
+        response in
+        if let json = response.value { // SOURCE [NOT DETECTED]
+        }
+    }
+
+    AF.download("http://example.com/").responseDecodable(of: MyDecodable.self) {
+        response in
+        if let decodable = response.value { // SOURCE [NOT DETECTED]
+            // ...
+        }
+    }
+
+    // download (to a *given* file)
+
+    let myPath = "my/path"
+    let myDestination: DownloadRequest.Destination = {
+        _, _ in
+        return (URL(fileURLWithPath: myPath), [])
+    }
+    AF.download("http://example.com/", to: myDestination).response {
+        response in
+        // ...
+    }
+    // ...
+    let str = try? String(contentsOfFile: myPath) // SOURCE
+
+    // chaining
+    //  - in practice there are a wide range of calls that can be chained through.
+
+    AF.request("http://example.com/").response {
+        response in
+        if let data = response.data { // SOURCE [NOT DETECTED]
+            // ...
+        }
+    }
+    .response {
+        response in
+        if let data = response.data { // SOURCE [NOT DETECTED]
+            // ...
+        }
+    }
+
+    // streaming requests
+
+    AF.streamRequest("http://example.com/").responseStream {
+        stream in
+        switch stream.event {
+        case let .stream(result):
+            switch result {
+            case let .success(data): // SOURCE [NOT DETECTED]
+                doSomething(data)
+                // ...
+            }
+        case let .complete(completion):
+            doSomething(completion)
+            // ...
+        }
+    }
+
+    AF.streamRequest("http://example.com/").responseStream(using: MyStreamSerializer()) {
+        stream in
+        switch stream.event {
+        case let .stream(result):
+            switch result {
+            case let .success(value): // SOURCE [NOT DETECTED]
+                doSomething(value)
+                // ...
+            }
+        case let .complete(completion):
+            doSomething(completion)
+            // ...
+        }
+    }
+
+    AF.streamRequest("http://example.com/").responseStreamString {
+        stream in
+        switch stream.event {
+        case let .stream(result):
+            switch result {
+            case let .success(value): // SOURCE [NOT DETECTED]
+                doSomething(value)
+                // ...
+            }
+        case let .complete(completion):
+            doSomething(completion)
+            // ...
+        }
+    }
+
+    AF.streamRequest("http://example.com/").responseStreamDecodable(of: MyDecodable.self) {
+        stream in
+        switch stream.event {
+        case let .stream(result):
+            switch result {
+            case let .success(value): // SOURCE [NOT DETECTED]
+                doSomething(value)
+                // ...
+            }
+        case let .complete(completion):
+            doSomething(completion)
+            // ...
+        }
+    }
+
+    // streaming requests (alternative formulations)
+
+    AF.streamRequest("http://example.com/").responseStream {
+        stream in
+        if case let .stream(myResult) = stream.event {
+            if case let .success(myData) = myResult { // SOURCE [NOT DETECTED]
+                doSomething(myData)
+            }
+        }
+    }
+
+    AF.streamRequest("http://example.com/").responseStream {
+        stream in
+        if case let .stream(myResult) = stream.event {
+           doSomething(myResult.success!) // SOURCE [NOT DETECTED]
+        }
+    }
+
+    // access to a non-network `Result` (not a source)
+
+    let myResult = Result<String, Error>.success("data")
+
+    if case let .success(myString) = myResult {
+        doSomething(myString)
+    }
+}

From 37cdef7ab1fb50d3506945cb6a4427013ce50a26 Mon Sep 17 00:00:00 2001
From: Geoffrey White <40627776+geoffw0@users.noreply.github.com>
Date: Mon, 21 Nov 2022 13:30:40 +0000
Subject: [PATCH 0624/1420] Swift: add basic Alamofire taint source model.

---
 .../codeql/swift/dataflow/ExternalFlow.qll    |  1 +
 .../swift/frameworks/Alamofire/Alamofire.qll  | 39 +++++++++++++++++++
 .../dataflow/flowsources/FlowSources.expected | 19 +++++++++
 .../dataflow/flowsources/alamofire.swift      | 32 +++++++--------
 4 files changed, 75 insertions(+), 16 deletions(-)
 create mode 100644 swift/ql/lib/codeql/swift/frameworks/Alamofire/Alamofire.qll

diff --git a/swift/ql/lib/codeql/swift/dataflow/ExternalFlow.qll b/swift/ql/lib/codeql/swift/dataflow/ExternalFlow.qll
index 9e0433958ba..ac7043f3491 100644
--- a/swift/ql/lib/codeql/swift/dataflow/ExternalFlow.qll
+++ b/swift/ql/lib/codeql/swift/dataflow/ExternalFlow.qll
@@ -86,6 +86,7 @@ private module Frameworks {
   private import codeql.swift.frameworks.StandardLibrary.Url
   private import codeql.swift.frameworks.StandardLibrary.UrlSession
   private import codeql.swift.frameworks.StandardLibrary.WebView
+  private import codeql.swift.frameworks.Alamofire.Alamofire
 }
 
 /**
diff --git a/swift/ql/lib/codeql/swift/frameworks/Alamofire/Alamofire.qll b/swift/ql/lib/codeql/swift/frameworks/Alamofire/Alamofire.qll
new file mode 100644
index 00000000000..6c378b4df69
--- /dev/null
+++ b/swift/ql/lib/codeql/swift/frameworks/Alamofire/Alamofire.qll
@@ -0,0 +1,39 @@
+/**
+ * Models for the Alamofire networking library.
+ */
+
+import swift
+private import codeql.swift.dataflow.DataFlow
+private import codeql.swift.dataflow.ExternalFlow
+private import codeql.swift.dataflow.FlowSources
+
+/**
+ * An Alamofire response handler type.
+ */
+private class AlamofireResponseType extends NominalTypeDecl {
+  AlamofireResponseType() {
+    this.getFullName() = ["DataResponse", "DownloadResponse"] or
+    this.getABaseTypeDecl() instanceof AlamofireResponseType
+  }
+
+  /**
+   * A response handler field that contains remote data.
+   */
+  FieldDecl getADataField() {
+    result = this.getAMember() and
+    result.getName() = ["data", "value", "result"]
+  }
+}
+
+/**
+ * A remote flow source that is an access to a remote data from an Alamofire response handler.
+ */
+private class AlamofireResponseSource extends RemoteFlowSource {
+  AlamofireResponseSource() {
+    exists(AlamofireResponseType responseType |
+      this.asExpr().(MemberRefExpr).getMember() = responseType.getADataField()
+    )
+  }
+
+  override string getSourceType() { result = "Data from an Alamofire response" }
+}
diff --git a/swift/ql/test/library-tests/dataflow/flowsources/FlowSources.expected b/swift/ql/test/library-tests/dataflow/flowsources/FlowSources.expected
index 057b8418c77..6fb99daf5f2 100644
--- a/swift/ql/test/library-tests/dataflow/flowsources/FlowSources.expected
+++ b/swift/ql/test/library-tests/dataflow/flowsources/FlowSources.expected
@@ -1,9 +1,25 @@
+| alamofire.swift:91:27:91:27 | .result | Data from an Alamofire response |
+| alamofire.swift:99:27:99:27 | .result | Data from an Alamofire response |
+| alamofire.swift:342:23:342:32 | .data | Data from an Alamofire response |
+| alamofire.swift:349:22:349:31 | .value | Data from an Alamofire response |
+| alamofire.swift:356:23:356:32 | .value | Data from an Alamofire response |
+| alamofire.swift:363:22:363:31 | .value | Data from an Alamofire response |
+| alamofire.swift:370:23:370:32 | .value | Data from an Alamofire response |
+| alamofire.swift:377:28:377:37 | .value | Data from an Alamofire response |
 | alamofire.swift:387:28:387:28 | call to init(contentsOfFile:) | external |
 | alamofire.swift:387:28:387:55 | call to init(contentsOfFile:) | external |
+| alamofire.swift:394:22:394:31 | .value | Data from an Alamofire response |
+| alamofire.swift:401:22:401:31 | .value | Data from an Alamofire response |
 | alamofire.swift:402:28:402:28 | call to init(contentsOf:) | external |
 | alamofire.swift:402:28:402:50 | call to init(contentsOf:) | external |
+| alamofire.swift:409:23:409:32 | .value | Data from an Alamofire response |
+| alamofire.swift:416:22:416:31 | .value | Data from an Alamofire response |
+| alamofire.swift:423:23:423:32 | .value | Data from an Alamofire response |
+| alamofire.swift:429:28:429:37 | .value | Data from an Alamofire response |
 | alamofire.swift:446:20:446:20 | call to init(contentsOfFile:) | external |
 | alamofire.swift:446:20:446:49 | call to init(contentsOfFile:) | external |
+| alamofire.swift:453:23:453:32 | .data | Data from an Alamofire response |
+| alamofire.swift:459:23:459:32 | .data | Data from an Alamofire response |
 | customurlschemes.swift:30:44:30:54 | url | external |
 | customurlschemes.swift:34:52:34:68 | url | external |
 | customurlschemes.swift:38:52:38:62 | url | external |
@@ -11,6 +27,9 @@
 | customurlschemes.swift:48:9:48:28 | ...[...] | Remote URL in UIApplicationDelegate.application.launchOptions |
 | data.swift:18:20:18:20 | call to init(contentsOf:options:) | external |
 | data.swift:18:20:18:54 | call to init(contentsOf:options:) | external |
+| file://:0:0:0:0 | .data | Data from an Alamofire response |
+| file://:0:0:0:0 | .result | Data from an Alamofire response |
+| file://:0:0:0:0 | .result | Data from an Alamofire response |
 | nsdata.swift:18:17:18:17 | call to init(contentsOf:) | external |
 | nsdata.swift:18:17:18:40 | call to init(contentsOf:) | external |
 | nsdata.swift:19:17:19:17 | call to init(contentsOf:options:) | external |
diff --git a/swift/ql/test/library-tests/dataflow/flowsources/alamofire.swift b/swift/ql/test/library-tests/dataflow/flowsources/alamofire.swift
index 745d5091a3d..9c0b97be15f 100644
--- a/swift/ql/test/library-tests/dataflow/flowsources/alamofire.swift
+++ b/swift/ql/test/library-tests/dataflow/flowsources/alamofire.swift
@@ -88,7 +88,7 @@ struct DataResponse<Success, Failure: Error> {
 
     let result: Result<Success, Failure>
 
-    var value: Success? { result.success }
+    var value: Success? { result.success } // SOURCE
 }
 
 struct DownloadResponse<Success, Failure: Error> {
@@ -96,7 +96,7 @@ struct DownloadResponse<Success, Failure: Error> {
 
     let result: Result<Success, Failure>
 
-    var value: Success? { result.success }
+    var value: Success? { result.success } // SOURCE
 }
 
 typealias AFDataResponse<Success> = DataResponse<Success, AFError>
@@ -339,42 +339,42 @@ func testAlamofire() {
 
     AF.request("http://example.com/").response {
         response in
-        if let data = response.data { // SOURCE [NOT DETECTED]
+        if let data = response.data { // SOURCE
             // ...
         }
     }
 
     AF.request("http://example.com/").response(responseSerializer: MySerializer()) {
         response in
-        if let obj = response.value { // SOURCE [NOT DETECTED]
+        if let obj = response.value { // SOURCE
             // ...
         }
     }
 
     AF.request("http://example.com/").responseData {
         response in
-        if let data = response.value { // SOURCE [NOT DETECTED]
+        if let data = response.value { // SOURCE
             // ...
         }
     }
 
     AF.request("http://example.com/").responseString {
         response in
-        if let str = response.value { // SOURCE [NOT DETECTED]
+        if let str = response.value { // SOURCE
             // ...
         }
     }
 
     AF.request("http://example.com/").responseJSON {
         response in
-        if let json = response.value { // SOURCE [NOT DETECTED]
+        if let json = response.value { // SOURCE
             // ...
         }
     }
 
     AF.request("http://example.com/").responseDecodable(of: MyDecodable.self) {
         response in
-        if let decodable = response.value { // SOURCE [NOT DETECTED]
+        if let decodable = response.value { // SOURCE
             // ...
         }
     }
@@ -391,14 +391,14 @@ func testAlamofire() {
 
     AF.download("http://example.com/").response(responseSerializer: MySerializer()) {
         response in
-        if let obj = response.value { // SOURCE [NOT DETECTED]
+        if let obj = response.value { // SOURCE
             // ...
         }
     }
 
     AF.download("http://example.com/").responseURL {
         response in
-        if let url = response.value {
+        if let url = response.value { // just the URL [FALSE POSITIVE]
             let str = try? String(contentsOf: url) // SOURCE
             // ...
         }
@@ -406,27 +406,27 @@ func testAlamofire() {
 
     AF.download("http://example.com/").responseData {
         response in
-        if let data = response.value { // SOURCE [NOT DETECTED]
+        if let data = response.value { // SOURCE
             // ...
         }
     }
 
     AF.download("http://example.com/").responseString {
         response in
-        if let str = response.value { // SOURCE [NOT DETECTED]
+        if let str = response.value { // SOURCE
             // ...
         }
     }
 
     AF.download("http://example.com/").responseJSON {
         response in
-        if let json = response.value { // SOURCE [NOT DETECTED]
+        if let json = response.value { // SOURCE
         }
     }
 
     AF.download("http://example.com/").responseDecodable(of: MyDecodable.self) {
         response in
-        if let decodable = response.value { // SOURCE [NOT DETECTED]
+        if let decodable = response.value { // SOURCE
             // ...
         }
     }
@@ -450,13 +450,13 @@ func testAlamofire() {
 
     AF.request("http://example.com/").response {
         response in
-        if let data = response.data { // SOURCE [NOT DETECTED]
+        if let data = response.data { // SOURCE
             // ...
         }
     }
     .response {
         response in
-        if let data = response.data { // SOURCE [NOT DETECTED]
+        if let data = response.data { // SOURCE
             // ...
         }
     }

From 208a728d39256f6f585462dc3959e54c2ef5f6ed Mon Sep 17 00:00:00 2001
From: Geoffrey White <40627776+geoffw0@users.noreply.github.com>
Date: Fri, 25 Nov 2022 00:22:02 +0000
Subject: [PATCH 0625/1420] Swift: Fixes.

---
 swift/ql/lib/codeql/swift/frameworks/Alamofire/Alamofire.qll    | 2 +-
 .../ql/test/library-tests/dataflow/flowsources/alamofire.swift  | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/swift/ql/lib/codeql/swift/frameworks/Alamofire/Alamofire.qll b/swift/ql/lib/codeql/swift/frameworks/Alamofire/Alamofire.qll
index 6c378b4df69..f75273b50c0 100644
--- a/swift/ql/lib/codeql/swift/frameworks/Alamofire/Alamofire.qll
+++ b/swift/ql/lib/codeql/swift/frameworks/Alamofire/Alamofire.qll
@@ -26,7 +26,7 @@ private class AlamofireResponseType extends NominalTypeDecl {
 }
 
 /**
- * A remote flow source that is an access to a remote data from an Alamofire response handler.
+ * A remote flow source that is an access to remote data from an Alamofire response handler.
  */
 private class AlamofireResponseSource extends RemoteFlowSource {
   AlamofireResponseSource() {
diff --git a/swift/ql/test/library-tests/dataflow/flowsources/alamofire.swift b/swift/ql/test/library-tests/dataflow/flowsources/alamofire.swift
index 9c0b97be15f..22613a70387 100644
--- a/swift/ql/test/library-tests/dataflow/flowsources/alamofire.swift
+++ b/swift/ql/test/library-tests/dataflow/flowsources/alamofire.swift
@@ -332,7 +332,7 @@ struct MyStreamSerializer: DataStreamSerializer {
 struct MyDecodable: Decodable {
 }
 
-func doSomething(_ v: Any) {}
+func doSomething(_ p: Any) {}
 
 func testAlamofire() {
     // requests

From d804acdef7466d04832285c65afc2ef70fe7dcd6 Mon Sep 17 00:00:00 2001
From: yoff <lerchedahl@gmail.com>
Date: Fri, 25 Nov 2022 08:50:37 +0100
Subject: [PATCH 0626/1420] Apply suggestions from code review

Co-authored-by: Taus <tausbn@github.com>
---
 python/ql/src/Expressions/CallToSuperWrongClass.ql | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/python/ql/src/Expressions/CallToSuperWrongClass.ql b/python/ql/src/Expressions/CallToSuperWrongClass.ql
index 1424fa8f434..c54674602cc 100644
--- a/python/ql/src/Expressions/CallToSuperWrongClass.ql
+++ b/python/ql/src/Expressions/CallToSuperWrongClass.ql
@@ -17,10 +17,10 @@ import semmle.python.dataflow.new.DataFlow
 
 from DataFlow::CallCfgNode call_to_super, string name
 where
-  call_to_super.getFunction().getALocalSource().asExpr().(Name).getId() = "super" and
+  call_to_super = API::builtin("super").getACall() and
   name = call_to_super.getScope().getScope().(Class).getName() and
   exists(DataFlow::Node arg |
     arg = call_to_super.getArg(0) and
-    not arg.getALocalSource().asExpr().(Name).getId() = name
+    arg.getALocalSource().asExpr().(Name).getId() != name
   )
 select call_to_super.getNode(), "First argument to super() should be " + name + "."

From 77d98b217ea671e0b94aa973f9ed3672cf4718d4 Mon Sep 17 00:00:00 2001
From: Rasmus Lerchedahl Petersen <yoff@github.com>
Date: Fri, 25 Nov 2022 08:52:35 +0100
Subject: [PATCH 0627/1420] Python: add import

---
 python/ql/src/Expressions/CallToSuperWrongClass.ql | 1 +
 1 file changed, 1 insertion(+)

diff --git a/python/ql/src/Expressions/CallToSuperWrongClass.ql b/python/ql/src/Expressions/CallToSuperWrongClass.ql
index c54674602cc..af5c33ef13a 100644
--- a/python/ql/src/Expressions/CallToSuperWrongClass.ql
+++ b/python/ql/src/Expressions/CallToSuperWrongClass.ql
@@ -14,6 +14,7 @@
 
 import python
 import semmle.python.dataflow.new.DataFlow
+import semmle.python.ApiGraphs
 
 from DataFlow::CallCfgNode call_to_super, string name
 where

From 8df7d465cb772181df4562edff65a71464d710e7 Mon Sep 17 00:00:00 2001
From: Paolo Tranquilli <redsun82@github.com>
Date: Tue, 22 Nov 2022 10:51:02 +0100
Subject: [PATCH 0628/1420] Swift: cache more aggressively in CI

* the QL compilation cache action is used for ql and integration tests
* all caches (Bazel and QL) are populated on push
---
 .github/workflows/swift.yml                   | 62 +++++++------------
 .../actions/run-integration-tests/action.yml  |  6 +-
 swift/actions/run-ql-tests/action.yml         |  7 ++-
 swift/integration-tests/runner.py             |  3 +
 4 files changed, 37 insertions(+), 41 deletions(-)

diff --git a/.github/workflows/swift.yml b/.github/workflows/swift.yml
index 99579421adf..2baae15f270 100644
--- a/.github/workflows/swift.yml
+++ b/.github/workflows/swift.yml
@@ -8,42 +8,30 @@ on:
       - "*.bazel*"
       - .github/workflows/swift.yml
       - .github/actions/fetch-codeql/action.yml
+      - .github/actions/cache-query-compilation/action.yml
       - codeql-workspace.yml
       - .pre-commit-config.yaml
       - "!**/*.md"
       - "!**/*.qhelp"
     branches:
       - main
+      - rc/*
+  push:
+    paths:
+      - "swift/**"
+      - "misc/bazel/**"
+      - "*.bazel*"
+      - .github/workflows/swift.yml
+      - .github/actions/fetch-codeql/action.yml
+      - .github/actions/cache-query-compilation/action.yml
+      - codeql-workspace.yml
+      - "!**/*.md"
+      - "!**/*.qhelp"
+    branches:
+      - main
+      - rc/*
 
 jobs:
-  changes:
-    runs-on: ubuntu-latest
-    outputs:
-      codegen: ${{ steps.filter.outputs.codegen }}
-      ql: ${{ steps.filter.outputs.ql }}
-    steps:
-      - uses: dorny/paths-filter@4512585405083f25c027a35db413c2b3b9006d50
-        id: filter
-        with:
-          filters: |
-            codegen:
-              - '.github/workflows/swift.yml'
-              - "misc/bazel/**"
-              - "*.bazel*"
-              - 'swift/actions/setup-env/**'
-              - '.pre-commit-config.yaml'
-              - 'swift/codegen/**'
-              - 'swift/schema.py'
-              - 'swift/**/*.dbscheme'
-              - 'swift/ql/lib/codeql/swift/elements.qll'
-              - 'swift/ql/lib/codeql/swift/elements/**'
-              - 'swift/ql/lib/codeql/swift/generated/**'
-              - 'swift/ql/test/extractor-tests/generated/**'
-              - 'swift/ql/.generated.list'
-            ql:
-              - 'github/workflows/swift.yml'
-              - 'swift/**/*.ql'
-              - 'swift/**/*.qll'
   # not using a matrix as you cannot depend on a specific job in a matrix, and we want to start linux checks
   # without waiting for the macOS build
   build-and-test-macos:
@@ -54,7 +42,7 @@ jobs:
       - uses: ./swift/actions/run-quick-tests
       - uses: ./swift/actions/print-unextracted
   build-and-test-linux:
-    runs-on: ubuntu-20.04
+    runs-on: ubuntu-latest-xl
     steps:
       - uses: actions/checkout@v3
       - uses: ./swift/actions/create-extractor-pack
@@ -62,38 +50,33 @@ jobs:
       - uses: ./swift/actions/print-unextracted
   qltests-linux:
     needs: build-and-test-linux
-    runs-on: ubuntu-latest
+    runs-on: ubuntu-latest-xl
     steps:
       - uses: actions/checkout@v3
       - uses: ./swift/actions/run-ql-tests
   qltests-macos:
+    if : ${{ github.event_name == 'pull_request' }}
     needs: build-and-test-macos
     runs-on: macos-12-xl
-    strategy:
-      fail-fast: false
-      matrix:
-        slice: ["1/2", "2/2"]
     steps:
       - uses: actions/checkout@v3
       - uses: ./swift/actions/run-ql-tests
-        with:
-          flags: --slice ${{ matrix.slice }}
   integration-tests-linux:
     needs: build-and-test-linux
-    runs-on: ubuntu-latest
+    runs-on: ubuntu-latest-xl
     steps:
       - uses: actions/checkout@v3
       - uses: ./swift/actions/run-integration-tests
   integration-tests-macos:
+    if : ${{ github.event_name == 'pull_request' }}
     needs: build-and-test-macos
     runs-on: macos-12-xl
     steps:
       - uses: actions/checkout@v3
       - uses: ./swift/actions/run-integration-tests
   codegen:
+    if : ${{ github.event_name == 'pull_request' }}
     runs-on: ubuntu-latest
-    needs: changes
-    if: ${{ needs.changes.outputs.codegen == 'true' }}
     steps:
       - uses: actions/checkout@v3
       - uses: ./swift/actions/setup-env
@@ -114,6 +97,7 @@ jobs:
           name: swift-generated-cpp-files
           path: generated-cpp-files/**
   database-upgrade-scripts:
+    if : ${{ github.event_name == 'pull_request' }}
     runs-on: ubuntu-latest
     steps:
       - uses: actions/checkout@v3
diff --git a/swift/actions/run-integration-tests/action.yml b/swift/actions/run-integration-tests/action.yml
index 9325fb8b11d..6e190693a55 100644
--- a/swift/actions/run-integration-tests/action.yml
+++ b/swift/actions/run-integration-tests/action.yml
@@ -17,7 +17,11 @@ runs:
       with:
         swift-version: "${{steps.get_swift_version.outputs.version}}"
     - uses: ./.github/actions/fetch-codeql
+    - id: query-cache
+      uses: ./.github/actions/cache-query-compilation
+      with:
+        key: swift-qltest
     - name: Run integration tests
       shell: bash
       run: |
-        python swift/integration-tests/runner.py
+        python swift/integration-tests/runner.py --compilation-cache "${{ steps.query-cache.outputs.cache-dir }}"
diff --git a/swift/actions/run-ql-tests/action.yml b/swift/actions/run-ql-tests/action.yml
index 86af7ba12c3..3694459082b 100644
--- a/swift/actions/run-ql-tests/action.yml
+++ b/swift/actions/run-ql-tests/action.yml
@@ -10,18 +10,23 @@ runs:
   steps:
     - uses: ./swift/actions/share-extractor-pack
     - uses: ./.github/actions/fetch-codeql
+    - id: query-cache
+      uses: ./.github/actions/cache-query-compilation
+      with:
+        key: swift-qltest
     - name: Run QL tests
       shell: bash
       run: |
         codeql test run \
           --threads=0 \
-          --ram 5000 \
+          --ram 52000 \
           --search-path "${{ github.workspace }}/swift/extractor-pack" \
           --check-databases \
           --check-unused-labels \
           --check-repeated-labels \
           --check-redefined-labels \
           --check-use-before-definition \
+          --compilation-cache "${{ steps.query-cache.outputs.cache-dir }}" \
           ${{ inputs.flags }} \
           swift/ql/test
       env:
diff --git a/swift/integration-tests/runner.py b/swift/integration-tests/runner.py
index b0b2ecd92b0..ec6f9215709 100755
--- a/swift/integration-tests/runner.py
+++ b/swift/integration-tests/runner.py
@@ -25,6 +25,7 @@ def options():
     p.add_argument("--check-databases", action="store_true")
     p.add_argument("--learn", action="store_true")
     p.add_argument("--threads", "-j", type=int, default=0)
+    p.add_argument("--compilation-cache")
     return p.parse_args()
 
 
@@ -65,6 +66,8 @@ def main(opts):
             cmd.append("--no-check-databases")
         if opts.learn:
             cmd.append("--learn")
+        if opts.compilation_cache:
+            cmd.append(f'--compilation-cache="{opts.compilation_cache}"')
         cmd.extend(str(t.parent) for t in succesful_db_creation)
         ql_test_success = subprocess.run(cmd).returncode == 0
 

From 4607f5990e2df174f4bfb423c3f28dab613c2ee9 Mon Sep 17 00:00:00 2001
From: Jeroen Ketema <jketema@github.com>
Date: Fri, 25 Nov 2022 10:19:04 +0100
Subject: [PATCH 0629/1420] C++: Add more tests that exercise the default taint
 barrier implementation

---
 .../CWE/CWE-190/semmle/TaintedAllocationSize/test.cpp | 11 ++++++++++-
 .../Security/CWE/CWE-190/semmle/tainted/test.c        |  7 +++++++
 2 files changed, 17 insertions(+), 1 deletion(-)

diff --git a/cpp/ql/test/query-tests/Security/CWE/CWE-190/semmle/TaintedAllocationSize/test.cpp b/cpp/ql/test/query-tests/Security/CWE/CWE-190/semmle/TaintedAllocationSize/test.cpp
index b11a136ed24..b1245c6ae89 100644
--- a/cpp/ql/test/query-tests/Security/CWE/CWE-190/semmle/TaintedAllocationSize/test.cpp
+++ b/cpp/ql/test/query-tests/Security/CWE/CWE-190/semmle/TaintedAllocationSize/test.cpp
@@ -332,4 +332,13 @@ void ptr_diff_case() {
 	char* admin_begin_pos = strstr(user, "ADMIN");
 	int offset = admin_begin_pos ? user - admin_begin_pos : 0; 
 	malloc(offset); // GOOD
-}
\ No newline at end of file
+}
+
+void equality_barrier() {
+	int size1 = atoi(getenv("USER"));
+	int size2 = atoi(getenv("USER"));
+
+	if (size1 == size2) {
+		int* a = (int*)malloc(size1 * sizeof(int)); // GOOD
+	}
+}
diff --git a/cpp/ql/test/query-tests/Security/CWE/CWE-190/semmle/tainted/test.c b/cpp/ql/test/query-tests/Security/CWE/CWE-190/semmle/tainted/test.c
index 6999795b004..29ab7cc8f25 100644
--- a/cpp/ql/test/query-tests/Security/CWE/CWE-190/semmle/tainted/test.c
+++ b/cpp/ql/test/query-tests/Security/CWE/CWE-190/semmle/tainted/test.c
@@ -95,5 +95,12 @@ int main(int argc, char** argv) {
     }
   }
 
+  // GOOD: check the user input first
+  int maxConnections3 = atoi(argv[1]);
+  int maxConnections4 = atoi(argv[1]);
+  if (maxConnections3 == maxConnections4) {
+    startServer(maxConnections3 * 1000);
+  }
+
   return 0;
 }

From ebdea243b2c911311e82f7c429a2ed560d53af92 Mon Sep 17 00:00:00 2001
From: Owen Mansel-Chan <owen-mc@github.com>
Date: Fri, 25 Nov 2022 09:46:07 +0000
Subject: [PATCH 0630/1420] Make qldoc clearer about behaviour of override

---
 go/ql/lib/semmle/go/Scopes.qll | 7 ++++++-
 1 file changed, 6 insertions(+), 1 deletion(-)

diff --git a/go/ql/lib/semmle/go/Scopes.qll b/go/ql/lib/semmle/go/Scopes.qll
index b14d558fabb..385b52028d9 100644
--- a/go/ql/lib/semmle/go/Scopes.qll
+++ b/go/ql/lib/semmle/go/Scopes.qll
@@ -95,7 +95,12 @@ class Entity extends @object {
   /** Gets the package in which this entity is declared, if any. */
   Package getPackage() { result.getScope() = this.getScope() }
 
-  /** Holds if this entity is declared in a package with path `pkg` and has the given `name`. */
+  /**
+   * Holds if this entity is declared in a package with path `pkg` and has the given `name`.
+   *
+   * Note that for methods `pkg` is the package path followed by `.` followed
+   * by the name of the receiver type, for example `io.Writer`.
+   */
   predicate hasQualifiedName(string pkg, string name) {
     pkg = this.getPackage().getPath() and
     name = this.getName()

From 8ec681e61cb39c9085a06aa3b67c4815b450ebfb Mon Sep 17 00:00:00 2001
From: Chris Smowton <smowton@github.com>
Date: Mon, 21 Nov 2022 16:15:56 +0000
Subject: [PATCH 0631/1420] Kotlin: bump default CI version to 1.7.20

A bunch of test expectations change because https://github.com/JetBrains/kotlin/commit/7f531d842685fff42dbd66d7bcaa7bc58b7d8610 means that we now see (a) local variable declarations with source locations covering only their identifier, not the whole statement, and (b) more SYNTHETIC_OFFSET values for the parts of a destructuring assignment
or initialiser, which show up as file.kt:0:0:0:0 in DbLocation form.
---
 java/kotlin-extractor/gradle.properties       |   2 +-
 .../kotlin_plugin_versions.py                 |   4 +-
 .../allOverriddenIncludingSelf.kt             |   0
 ...rameterDeclarationWithWrappedDescriptor.kt |   0
 .../controlflow/basic/bbStmts.expected        |  32 +-
 .../basic/bbStrictDominance.expected          |   4 +-
 .../controlflow/basic/bbSuccessor.expected    |   8 +-
 .../controlflow/basic/getASuccessor.expected  |  54 +--
 .../basic/strictDominance.expected            | 312 +++++++-------
 .../basic/strictPostDominance.expected        |  72 ++--
 .../kotlin/library-tests/exprs/exprs.expected | 382 +++++++++---------
 .../library-tests/methods/exprs.expected      |   2 +-
 .../modifiers/modifiers.expected              |   2 +-
 .../reflection/reflection.expected            |  44 +-
 .../library-tests/stmts/PrintAst.expected     |   6 +-
 .../kotlin/library-tests/stmts/exprs.expected |  12 +-
 .../kotlin/library-tests/stmts/stmts.expected |  20 +-
 17 files changed, 478 insertions(+), 478 deletions(-)
 rename java/kotlin-extractor/src/main/kotlin/utils/versions/{v_1_7_20-Beta => v_1_7_20}/allOverriddenIncludingSelf.kt (100%)
 rename java/kotlin-extractor/src/main/kotlin/utils/versions/{v_1_7_20-Beta => v_1_7_20}/createImplicitParameterDeclarationWithWrappedDescriptor.kt (100%)

diff --git a/java/kotlin-extractor/gradle.properties b/java/kotlin-extractor/gradle.properties
index 16f621c2d74..f9cd575cdd3 100644
--- a/java/kotlin-extractor/gradle.properties
+++ b/java/kotlin-extractor/gradle.properties
@@ -1,5 +1,5 @@
 kotlin.code.style=official
-kotlinVersion=1.7.0
+kotlinVersion=1.7.21
 
 GROUP=com.github.codeql
 VERSION_NAME=0.0.1
diff --git a/java/kotlin-extractor/kotlin_plugin_versions.py b/java/kotlin-extractor/kotlin_plugin_versions.py
index 04107005f8d..99691b89fd2 100755
--- a/java/kotlin-extractor/kotlin_plugin_versions.py
+++ b/java/kotlin-extractor/kotlin_plugin_versions.py
@@ -22,10 +22,10 @@ def version_string_to_tuple(version):
     return tuple([int(m.group(i)) for i in range(1, 4)] + [m.group(4)])
 
 # Version number used by CI. It needs to be one of the versions in many_versions.
-ci_version = '1.7.0'
+ci_version = '1.7.20'
 
 # Version numbers in the list need to be in semantically increasing order
-many_versions = [ '1.4.32', '1.5.0', '1.5.10', '1.5.20', '1.5.30', '1.6.0', '1.6.20', '1.7.0', '1.7.20-Beta' ]
+many_versions = [ '1.4.32', '1.5.0', '1.5.10', '1.5.20', '1.5.30', '1.6.0', '1.6.20', '1.7.0', '1.7.20' ]
 
 many_versions_tuples = [version_string_to_tuple(v) for v in many_versions]
 
diff --git a/java/kotlin-extractor/src/main/kotlin/utils/versions/v_1_7_20-Beta/allOverriddenIncludingSelf.kt b/java/kotlin-extractor/src/main/kotlin/utils/versions/v_1_7_20/allOverriddenIncludingSelf.kt
similarity index 100%
rename from java/kotlin-extractor/src/main/kotlin/utils/versions/v_1_7_20-Beta/allOverriddenIncludingSelf.kt
rename to java/kotlin-extractor/src/main/kotlin/utils/versions/v_1_7_20/allOverriddenIncludingSelf.kt
diff --git a/java/kotlin-extractor/src/main/kotlin/utils/versions/v_1_7_20-Beta/createImplicitParameterDeclarationWithWrappedDescriptor.kt b/java/kotlin-extractor/src/main/kotlin/utils/versions/v_1_7_20/createImplicitParameterDeclarationWithWrappedDescriptor.kt
similarity index 100%
rename from java/kotlin-extractor/src/main/kotlin/utils/versions/v_1_7_20-Beta/createImplicitParameterDeclarationWithWrappedDescriptor.kt
rename to java/kotlin-extractor/src/main/kotlin/utils/versions/v_1_7_20/createImplicitParameterDeclarationWithWrappedDescriptor.kt
diff --git a/java/ql/test/kotlin/library-tests/controlflow/basic/bbStmts.expected b/java/ql/test/kotlin/library-tests/controlflow/basic/bbStmts.expected
index b3f3c19341f..767e68d2f75 100644
--- a/java/ql/test/kotlin/library-tests/controlflow/basic/bbStmts.expected
+++ b/java/ql/test/kotlin/library-tests/controlflow/basic/bbStmts.expected
@@ -4,18 +4,18 @@
 | Test.kt:3:1:80:1 | { ... } | 3 | Test.kt:3:8:80:1 | Test |
 | Test.kt:4:2:79:2 | test | 0 | Test.kt:4:2:79:2 | test |
 | Test.kt:4:13:79:2 | { ... } | 0 | Test.kt:4:13:79:2 | { ... } |
-| Test.kt:4:13:79:2 | { ... } | 1 | Test.kt:5:3:5:16 | var ...; |
+| Test.kt:4:13:79:2 | { ... } | 1 | Test.kt:5:7:5:7 | var ...; |
 | Test.kt:4:13:79:2 | { ... } | 2 | Test.kt:5:16:5:16 | 0 |
-| Test.kt:4:13:79:2 | { ... } | 3 | Test.kt:5:3:5:16 | x |
-| Test.kt:4:13:79:2 | { ... } | 4 | Test.kt:6:3:6:18 | var ...; |
+| Test.kt:4:13:79:2 | { ... } | 3 | Test.kt:5:7:5:7 | x |
+| Test.kt:4:13:79:2 | { ... } | 4 | Test.kt:6:7:6:7 | var ...; |
 | Test.kt:4:13:79:2 | { ... } | 5 | Test.kt:6:17:6:18 | 50 |
-| Test.kt:4:13:79:2 | { ... } | 6 | Test.kt:6:3:6:18 | y |
-| Test.kt:4:13:79:2 | { ... } | 7 | Test.kt:7:3:7:16 | var ...; |
+| Test.kt:4:13:79:2 | { ... } | 6 | Test.kt:6:7:6:7 | y |
+| Test.kt:4:13:79:2 | { ... } | 7 | Test.kt:7:7:7:7 | var ...; |
 | Test.kt:4:13:79:2 | { ... } | 8 | Test.kt:7:16:7:16 | 0 |
-| Test.kt:4:13:79:2 | { ... } | 9 | Test.kt:7:3:7:16 | z |
-| Test.kt:4:13:79:2 | { ... } | 10 | Test.kt:8:3:8:16 | var ...; |
+| Test.kt:4:13:79:2 | { ... } | 9 | Test.kt:7:7:7:7 | z |
+| Test.kt:4:13:79:2 | { ... } | 10 | Test.kt:8:7:8:7 | var ...; |
 | Test.kt:4:13:79:2 | { ... } | 11 | Test.kt:8:16:8:16 | 0 |
-| Test.kt:4:13:79:2 | { ... } | 12 | Test.kt:8:3:8:16 | w |
+| Test.kt:4:13:79:2 | { ... } | 12 | Test.kt:8:7:8:7 | w |
 | Test.kt:4:13:79:2 | { ... } | 13 | Test.kt:11:3:16:3 | <Expr>; |
 | Test.kt:4:13:79:2 | { ... } | 14 | Test.kt:11:3:16:3 | when ... |
 | Test.kt:4:13:79:2 | { ... } | 15 | Test.kt:11:3:16:3 | ... -> ... |
@@ -106,12 +106,12 @@
 | Test.kt:82:21:89:1 | { ... } | 0 | Test.kt:82:21:89:1 | { ... } |
 | Test.kt:82:21:89:1 | { ... } | 1 | Test.kt:83:2:88:2 | try ... |
 | Test.kt:82:21:89:1 | { ... } | 2 | Test.kt:83:6:86:2 | { ... } |
-| Test.kt:82:21:89:1 | { ... } | 3 | Test.kt:84:3:84:18 | var ...; |
+| Test.kt:82:21:89:1 | { ... } | 3 | Test.kt:84:7:84:7 | var ...; |
 | Test.kt:82:21:89:1 | { ... } | 4 | Test.kt:84:11:84:11 | o |
 | Test.kt:82:21:89:1 | { ... } | 5 | Test.kt:84:11:84:18 | (...)... |
-| Test.kt:84:3:84:18 | x | 0 | Test.kt:84:3:84:18 | x |
-| Test.kt:84:3:84:18 | x | 1 | Test.kt:85:10:85:10 | 1 |
-| Test.kt:84:3:84:18 | x | 2 | Test.kt:85:3:85:10 | return ... |
+| Test.kt:84:7:84:7 | x | 0 | Test.kt:84:7:84:7 | x |
+| Test.kt:84:7:84:7 | x | 1 | Test.kt:85:10:85:10 | 1 |
+| Test.kt:84:7:84:7 | x | 2 | Test.kt:85:3:85:10 | return ... |
 | Test.kt:86:4:88:2 | catch (...) | 0 | Test.kt:86:4:88:2 | catch (...) |
 | Test.kt:86:4:88:2 | catch (...) | 1 | Test.kt:86:11:86:31 | e |
 | Test.kt:86:4:88:2 | catch (...) | 2 | Test.kt:86:34:88:2 | { ... } |
@@ -121,12 +121,12 @@
 | Test.kt:91:22:98:1 | { ... } | 0 | Test.kt:91:22:98:1 | { ... } |
 | Test.kt:91:22:98:1 | { ... } | 1 | Test.kt:92:2:97:2 | try ... |
 | Test.kt:91:22:98:1 | { ... } | 2 | Test.kt:92:6:95:2 | { ... } |
-| Test.kt:91:22:98:1 | { ... } | 3 | Test.kt:93:3:93:13 | var ...; |
+| Test.kt:91:22:98:1 | { ... } | 3 | Test.kt:93:7:93:7 | var ...; |
 | Test.kt:91:22:98:1 | { ... } | 4 | Test.kt:93:11:93:11 | o |
 | Test.kt:91:22:98:1 | { ... } | 5 | Test.kt:93:12:93:13 | ...!! |
-| Test.kt:93:3:93:13 | x | 0 | Test.kt:93:3:93:13 | x |
-| Test.kt:93:3:93:13 | x | 1 | Test.kt:94:10:94:10 | 1 |
-| Test.kt:93:3:93:13 | x | 2 | Test.kt:94:3:94:10 | return ... |
+| Test.kt:93:7:93:7 | x | 0 | Test.kt:93:7:93:7 | x |
+| Test.kt:93:7:93:7 | x | 1 | Test.kt:94:10:94:10 | 1 |
+| Test.kt:93:7:93:7 | x | 2 | Test.kt:94:3:94:10 | return ... |
 | Test.kt:95:4:97:2 | catch (...) | 0 | Test.kt:95:4:97:2 | catch (...) |
 | Test.kt:95:4:97:2 | catch (...) | 1 | Test.kt:95:11:95:33 | e |
 | Test.kt:95:4:97:2 | catch (...) | 2 | Test.kt:95:36:97:2 | { ... } |
diff --git a/java/ql/test/kotlin/library-tests/controlflow/basic/bbStrictDominance.expected b/java/ql/test/kotlin/library-tests/controlflow/basic/bbStrictDominance.expected
index bea96c9445f..90c7d07b8c3 100644
--- a/java/ql/test/kotlin/library-tests/controlflow/basic/bbStrictDominance.expected
+++ b/java/ql/test/kotlin/library-tests/controlflow/basic/bbStrictDominance.expected
@@ -28,10 +28,10 @@
 | Test.kt:38:9:38:9 | x | Test.kt:38:16:41:3 | { ... } |
 | Test.kt:38:9:38:9 | x | Test.kt:43:3:43:3 | <Expr>; |
 | Test.kt:82:21:89:1 | { ... } | Test.kt:82:1:89:1 | t1 |
-| Test.kt:82:21:89:1 | { ... } | Test.kt:84:3:84:18 | x |
+| Test.kt:82:21:89:1 | { ... } | Test.kt:84:7:84:7 | x |
 | Test.kt:82:21:89:1 | { ... } | Test.kt:86:4:88:2 | catch (...) |
 | Test.kt:91:22:98:1 | { ... } | Test.kt:91:1:98:1 | t2 |
-| Test.kt:91:22:98:1 | { ... } | Test.kt:93:3:93:13 | x |
+| Test.kt:91:22:98:1 | { ... } | Test.kt:93:7:93:7 | x |
 | Test.kt:91:22:98:1 | { ... } | Test.kt:95:4:97:2 | catch (...) |
 | Test.kt:100:25:110:1 | { ... } | Test.kt:100:1:110:1 | fn |
 | Test.kt:100:25:110:1 | { ... } | Test.kt:101:22:101:22 | y |
diff --git a/java/ql/test/kotlin/library-tests/controlflow/basic/bbSuccessor.expected b/java/ql/test/kotlin/library-tests/controlflow/basic/bbSuccessor.expected
index 512a6907e2a..35c28b25b91 100644
--- a/java/ql/test/kotlin/library-tests/controlflow/basic/bbSuccessor.expected
+++ b/java/ql/test/kotlin/library-tests/controlflow/basic/bbSuccessor.expected
@@ -13,13 +13,13 @@
 | Test.kt:38:9:38:9 | x | Test.kt:43:3:43:3 | <Expr>; |
 | Test.kt:38:16:41:3 | { ... } | Test.kt:38:9:38:9 | x |
 | Test.kt:43:3:43:3 | <Expr>; | Test.kt:4:2:79:2 | test |
-| Test.kt:82:21:89:1 | { ... } | Test.kt:84:3:84:18 | x |
+| Test.kt:82:21:89:1 | { ... } | Test.kt:84:7:84:7 | x |
 | Test.kt:82:21:89:1 | { ... } | Test.kt:86:4:88:2 | catch (...) |
-| Test.kt:84:3:84:18 | x | Test.kt:82:1:89:1 | t1 |
+| Test.kt:84:7:84:7 | x | Test.kt:82:1:89:1 | t1 |
 | Test.kt:86:4:88:2 | catch (...) | Test.kt:82:1:89:1 | t1 |
-| Test.kt:91:22:98:1 | { ... } | Test.kt:93:3:93:13 | x |
+| Test.kt:91:22:98:1 | { ... } | Test.kt:93:7:93:7 | x |
 | Test.kt:91:22:98:1 | { ... } | Test.kt:95:4:97:2 | catch (...) |
-| Test.kt:93:3:93:13 | x | Test.kt:91:1:98:1 | t2 |
+| Test.kt:93:7:93:7 | x | Test.kt:91:1:98:1 | t2 |
 | Test.kt:95:4:97:2 | catch (...) | Test.kt:91:1:98:1 | t2 |
 | Test.kt:100:25:110:1 | { ... } | Test.kt:101:22:101:22 | y |
 | Test.kt:100:25:110:1 | { ... } | Test.kt:105:5:109:5 | <Expr>; |
diff --git a/java/ql/test/kotlin/library-tests/controlflow/basic/getASuccessor.expected b/java/ql/test/kotlin/library-tests/controlflow/basic/getASuccessor.expected
index ddd54d10b7b..36544bd2d93 100644
--- a/java/ql/test/kotlin/library-tests/controlflow/basic/getASuccessor.expected
+++ b/java/ql/test/kotlin/library-tests/controlflow/basic/getASuccessor.expected
@@ -8,23 +8,23 @@ missingSuccessor
 | Test.kt:3:8:80:1 | { ... } | BlockStmt | Test.kt:3:8:80:1 | Test | Constructor |
 | Test.kt:4:2:79:2 | Unit | TypeAccess | file://:0:0:0:0 | <none> | <none> |
 | Test.kt:4:2:79:2 | test | Method | file://:0:0:0:0 | <none> | <none> |
-| Test.kt:4:13:79:2 | { ... } | BlockStmt | Test.kt:5:3:5:16 | var ...; | LocalVariableDeclStmt |
-| Test.kt:5:3:5:16 | int x | LocalVariableDecl | file://:0:0:0:0 | <none> | <none> |
-| Test.kt:5:3:5:16 | var ...; | LocalVariableDeclStmt | Test.kt:5:16:5:16 | 0 | IntegerLiteral |
-| Test.kt:5:3:5:16 | x | LocalVariableDeclExpr | Test.kt:6:3:6:18 | var ...; | LocalVariableDeclStmt |
-| Test.kt:5:16:5:16 | 0 | IntegerLiteral | Test.kt:5:3:5:16 | x | LocalVariableDeclExpr |
-| Test.kt:6:3:6:18 | long y | LocalVariableDecl | file://:0:0:0:0 | <none> | <none> |
-| Test.kt:6:3:6:18 | var ...; | LocalVariableDeclStmt | Test.kt:6:17:6:18 | 50 | LongLiteral |
-| Test.kt:6:3:6:18 | y | LocalVariableDeclExpr | Test.kt:7:3:7:16 | var ...; | LocalVariableDeclStmt |
-| Test.kt:6:17:6:18 | 50 | LongLiteral | Test.kt:6:3:6:18 | y | LocalVariableDeclExpr |
-| Test.kt:7:3:7:16 | int z | LocalVariableDecl | file://:0:0:0:0 | <none> | <none> |
-| Test.kt:7:3:7:16 | var ...; | LocalVariableDeclStmt | Test.kt:7:16:7:16 | 0 | IntegerLiteral |
-| Test.kt:7:3:7:16 | z | LocalVariableDeclExpr | Test.kt:8:3:8:16 | var ...; | LocalVariableDeclStmt |
-| Test.kt:7:16:7:16 | 0 | IntegerLiteral | Test.kt:7:3:7:16 | z | LocalVariableDeclExpr |
-| Test.kt:8:3:8:16 | int w | LocalVariableDecl | file://:0:0:0:0 | <none> | <none> |
-| Test.kt:8:3:8:16 | var ...; | LocalVariableDeclStmt | Test.kt:8:16:8:16 | 0 | IntegerLiteral |
-| Test.kt:8:3:8:16 | w | LocalVariableDeclExpr | Test.kt:11:3:16:3 | <Expr>; | ExprStmt |
-| Test.kt:8:16:8:16 | 0 | IntegerLiteral | Test.kt:8:3:8:16 | w | LocalVariableDeclExpr |
+| Test.kt:4:13:79:2 | { ... } | BlockStmt | Test.kt:5:7:5:7 | var ...; | LocalVariableDeclStmt |
+| Test.kt:5:7:5:7 | int x | LocalVariableDecl | file://:0:0:0:0 | <none> | <none> |
+| Test.kt:5:7:5:7 | var ...; | LocalVariableDeclStmt | Test.kt:5:16:5:16 | 0 | IntegerLiteral |
+| Test.kt:5:7:5:7 | x | LocalVariableDeclExpr | Test.kt:6:7:6:7 | var ...; | LocalVariableDeclStmt |
+| Test.kt:5:16:5:16 | 0 | IntegerLiteral | Test.kt:5:7:5:7 | x | LocalVariableDeclExpr |
+| Test.kt:6:7:6:7 | long y | LocalVariableDecl | file://:0:0:0:0 | <none> | <none> |
+| Test.kt:6:7:6:7 | var ...; | LocalVariableDeclStmt | Test.kt:6:17:6:18 | 50 | LongLiteral |
+| Test.kt:6:7:6:7 | y | LocalVariableDeclExpr | Test.kt:7:7:7:7 | var ...; | LocalVariableDeclStmt |
+| Test.kt:6:17:6:18 | 50 | LongLiteral | Test.kt:6:7:6:7 | y | LocalVariableDeclExpr |
+| Test.kt:7:7:7:7 | int z | LocalVariableDecl | file://:0:0:0:0 | <none> | <none> |
+| Test.kt:7:7:7:7 | var ...; | LocalVariableDeclStmt | Test.kt:7:16:7:16 | 0 | IntegerLiteral |
+| Test.kt:7:7:7:7 | z | LocalVariableDeclExpr | Test.kt:8:7:8:7 | var ...; | LocalVariableDeclStmt |
+| Test.kt:7:16:7:16 | 0 | IntegerLiteral | Test.kt:7:7:7:7 | z | LocalVariableDeclExpr |
+| Test.kt:8:7:8:7 | int w | LocalVariableDecl | file://:0:0:0:0 | <none> | <none> |
+| Test.kt:8:7:8:7 | var ...; | LocalVariableDeclStmt | Test.kt:8:16:8:16 | 0 | IntegerLiteral |
+| Test.kt:8:7:8:7 | w | LocalVariableDeclExpr | Test.kt:11:3:16:3 | <Expr>; | ExprStmt |
+| Test.kt:8:16:8:16 | 0 | IntegerLiteral | Test.kt:8:7:8:7 | w | LocalVariableDeclExpr |
 | Test.kt:11:3:16:3 | ... -> ... | WhenBranch | Test.kt:11:3:16:3 | true | BooleanLiteral |
 | Test.kt:11:3:16:3 | ... -> ... | WhenBranch | Test.kt:11:7:11:7 | x | VarAccess |
 | Test.kt:11:3:16:3 | <Expr>; | ExprStmt | Test.kt:11:3:16:3 | when ... | WhenExpr |
@@ -137,12 +137,12 @@ missingSuccessor
 | Test.kt:82:8:82:13 | o | Parameter | file://:0:0:0:0 | <none> | <none> |
 | Test.kt:82:21:89:1 | { ... } | BlockStmt | Test.kt:83:2:88:2 | try ... | TryStmt |
 | Test.kt:83:2:88:2 | try ... | TryStmt | Test.kt:83:6:86:2 | { ... } | BlockStmt |
-| Test.kt:83:6:86:2 | { ... } | BlockStmt | Test.kt:84:3:84:18 | var ...; | LocalVariableDeclStmt |
-| Test.kt:84:3:84:18 | int x | LocalVariableDecl | file://:0:0:0:0 | <none> | <none> |
-| Test.kt:84:3:84:18 | var ...; | LocalVariableDeclStmt | Test.kt:84:11:84:11 | o | VarAccess |
-| Test.kt:84:3:84:18 | x | LocalVariableDeclExpr | Test.kt:85:10:85:10 | 1 | IntegerLiteral |
+| Test.kt:83:6:86:2 | { ... } | BlockStmt | Test.kt:84:7:84:7 | var ...; | LocalVariableDeclStmt |
+| Test.kt:84:7:84:7 | int x | LocalVariableDecl | file://:0:0:0:0 | <none> | <none> |
+| Test.kt:84:7:84:7 | var ...; | LocalVariableDeclStmt | Test.kt:84:11:84:11 | o | VarAccess |
+| Test.kt:84:7:84:7 | x | LocalVariableDeclExpr | Test.kt:85:10:85:10 | 1 | IntegerLiteral |
 | Test.kt:84:11:84:11 | o | VarAccess | Test.kt:84:11:84:18 | (...)... | CastExpr |
-| Test.kt:84:11:84:18 | (...)... | CastExpr | Test.kt:84:3:84:18 | x | LocalVariableDeclExpr |
+| Test.kt:84:11:84:18 | (...)... | CastExpr | Test.kt:84:7:84:7 | x | LocalVariableDeclExpr |
 | Test.kt:84:11:84:18 | (...)... | CastExpr | Test.kt:86:4:88:2 | catch (...) | CatchClause |
 | Test.kt:84:11:84:18 | int | TypeAccess | file://:0:0:0:0 | <none> | <none> |
 | Test.kt:85:3:85:10 | return ... | ReturnStmt | Test.kt:82:1:89:1 | t1 | Method |
@@ -160,12 +160,12 @@ missingSuccessor
 | Test.kt:91:8:91:14 | o | Parameter | file://:0:0:0:0 | <none> | <none> |
 | Test.kt:91:22:98:1 | { ... } | BlockStmt | Test.kt:92:2:97:2 | try ... | TryStmt |
 | Test.kt:92:2:97:2 | try ... | TryStmt | Test.kt:92:6:95:2 | { ... } | BlockStmt |
-| Test.kt:92:6:95:2 | { ... } | BlockStmt | Test.kt:93:3:93:13 | var ...; | LocalVariableDeclStmt |
-| Test.kt:93:3:93:13 | Object x | LocalVariableDecl | file://:0:0:0:0 | <none> | <none> |
-| Test.kt:93:3:93:13 | var ...; | LocalVariableDeclStmt | Test.kt:93:11:93:11 | o | VarAccess |
-| Test.kt:93:3:93:13 | x | LocalVariableDeclExpr | Test.kt:94:10:94:10 | 1 | IntegerLiteral |
+| Test.kt:92:6:95:2 | { ... } | BlockStmt | Test.kt:93:7:93:7 | var ...; | LocalVariableDeclStmt |
+| Test.kt:93:7:93:7 | Object x | LocalVariableDecl | file://:0:0:0:0 | <none> | <none> |
+| Test.kt:93:7:93:7 | var ...; | LocalVariableDeclStmt | Test.kt:93:11:93:11 | o | VarAccess |
+| Test.kt:93:7:93:7 | x | LocalVariableDeclExpr | Test.kt:94:10:94:10 | 1 | IntegerLiteral |
 | Test.kt:93:11:93:11 | o | VarAccess | Test.kt:93:12:93:13 | ...!! | NotNullExpr |
-| Test.kt:93:12:93:13 | ...!! | NotNullExpr | Test.kt:93:3:93:13 | x | LocalVariableDeclExpr |
+| Test.kt:93:12:93:13 | ...!! | NotNullExpr | Test.kt:93:7:93:7 | x | LocalVariableDeclExpr |
 | Test.kt:93:12:93:13 | ...!! | NotNullExpr | Test.kt:95:4:97:2 | catch (...) | CatchClause |
 | Test.kt:94:3:94:10 | return ... | ReturnStmt | Test.kt:91:1:98:1 | t2 | Method |
 | Test.kt:94:10:94:10 | 1 | IntegerLiteral | Test.kt:94:3:94:10 | return ... | ReturnStmt |
diff --git a/java/ql/test/kotlin/library-tests/controlflow/basic/strictDominance.expected b/java/ql/test/kotlin/library-tests/controlflow/basic/strictDominance.expected
index b48a2016130..e5e94d38421 100644
--- a/java/ql/test/kotlin/library-tests/controlflow/basic/strictDominance.expected
+++ b/java/ql/test/kotlin/library-tests/controlflow/basic/strictDominance.expected
@@ -1,10 +1,10 @@
 | Test.kt:3:1:80:1 | super(...) | Test.kt:3:8:80:1 | { ... } |
 | Test.kt:3:1:80:1 | { ... } | Test.kt:3:1:80:1 | super(...) |
 | Test.kt:3:1:80:1 | { ... } | Test.kt:3:8:80:1 | { ... } |
-| Test.kt:4:13:79:2 | { ... } | Test.kt:5:3:5:16 | var ...; |
-| Test.kt:4:13:79:2 | { ... } | Test.kt:6:3:6:18 | var ...; |
-| Test.kt:4:13:79:2 | { ... } | Test.kt:7:3:7:16 | var ...; |
-| Test.kt:4:13:79:2 | { ... } | Test.kt:8:3:8:16 | var ...; |
+| Test.kt:4:13:79:2 | { ... } | Test.kt:5:7:5:7 | var ...; |
+| Test.kt:4:13:79:2 | { ... } | Test.kt:6:7:6:7 | var ...; |
+| Test.kt:4:13:79:2 | { ... } | Test.kt:7:7:7:7 | var ...; |
+| Test.kt:4:13:79:2 | { ... } | Test.kt:8:7:8:7 | var ...; |
 | Test.kt:4:13:79:2 | { ... } | Test.kt:11:3:16:3 | ... -> ... |
 | Test.kt:4:13:79:2 | { ... } | Test.kt:11:3:16:3 | ... -> ... |
 | Test.kt:4:13:79:2 | { ... } | Test.kt:11:3:16:3 | <Expr>; |
@@ -38,144 +38,144 @@
 | Test.kt:4:13:79:2 | { ... } | Test.kt:73:3:73:3 | <Expr>; |
 | Test.kt:4:13:79:2 | { ... } | Test.kt:77:3:77:3 | <Expr>; |
 | Test.kt:4:13:79:2 | { ... } | Test.kt:78:3:78:8 | return ... |
-| Test.kt:5:3:5:16 | var ...; | Test.kt:6:3:6:18 | var ...; |
-| Test.kt:5:3:5:16 | var ...; | Test.kt:7:3:7:16 | var ...; |
-| Test.kt:5:3:5:16 | var ...; | Test.kt:8:3:8:16 | var ...; |
-| Test.kt:5:3:5:16 | var ...; | Test.kt:11:3:16:3 | ... -> ... |
-| Test.kt:5:3:5:16 | var ...; | Test.kt:11:3:16:3 | ... -> ... |
-| Test.kt:5:3:5:16 | var ...; | Test.kt:11:3:16:3 | <Expr>; |
-| Test.kt:5:3:5:16 | var ...; | Test.kt:11:14:14:3 | { ... } |
-| Test.kt:5:3:5:16 | var ...; | Test.kt:12:4:12:4 | <Expr>; |
-| Test.kt:5:3:5:16 | var ...; | Test.kt:13:4:13:4 | <Expr>; |
-| Test.kt:5:3:5:16 | var ...; | Test.kt:14:10:16:3 | { ... } |
-| Test.kt:5:3:5:16 | var ...; | Test.kt:15:4:15:4 | <Expr>; |
-| Test.kt:5:3:5:16 | var ...; | Test.kt:18:3:18:3 | <Expr>; |
-| Test.kt:5:3:5:16 | var ...; | Test.kt:21:3:24:9 | ... -> ... |
-| Test.kt:5:3:5:16 | var ...; | Test.kt:21:3:24:9 | ... -> ... |
-| Test.kt:5:3:5:16 | var ...; | Test.kt:21:3:24:9 | <Expr>; |
-| Test.kt:5:3:5:16 | var ...; | Test.kt:22:4:22:4 | <Expr>; |
-| Test.kt:5:3:5:16 | var ...; | Test.kt:24:4:24:9 | return ... |
-| Test.kt:5:3:5:16 | var ...; | Test.kt:27:3:27:3 | <Expr>; |
-| Test.kt:5:3:5:16 | var ...; | Test.kt:30:3:33:3 | ... -> ... |
-| Test.kt:5:3:5:16 | var ...; | Test.kt:30:3:33:3 | <Expr>; |
-| Test.kt:5:3:5:16 | var ...; | Test.kt:30:15:33:3 | { ... } |
-| Test.kt:5:3:5:16 | var ...; | Test.kt:31:4:31:4 | <Expr>; |
-| Test.kt:5:3:5:16 | var ...; | Test.kt:32:4:32:4 | <Expr>; |
-| Test.kt:5:3:5:16 | var ...; | Test.kt:35:3:35:3 | <Expr>; |
-| Test.kt:5:3:5:16 | var ...; | Test.kt:38:3:41:3 | while (...) |
-| Test.kt:5:3:5:16 | var ...; | Test.kt:38:16:41:3 | { ... } |
-| Test.kt:5:3:5:16 | var ...; | Test.kt:39:4:39:4 | <Expr>; |
-| Test.kt:5:3:5:16 | var ...; | Test.kt:40:4:40:4 | <Expr>; |
-| Test.kt:5:3:5:16 | var ...; | Test.kt:40:4:40:6 | <Expr>; |
-| Test.kt:5:3:5:16 | var ...; | Test.kt:40:4:40:6 | <Expr>; |
-| Test.kt:5:3:5:16 | var ...; | Test.kt:40:4:40:6 | var ...; |
-| Test.kt:5:3:5:16 | var ...; | Test.kt:40:4:40:6 | { ... } |
-| Test.kt:5:3:5:16 | var ...; | Test.kt:43:3:43:3 | <Expr>; |
-| Test.kt:5:3:5:16 | var ...; | Test.kt:73:3:73:3 | <Expr>; |
-| Test.kt:5:3:5:16 | var ...; | Test.kt:77:3:77:3 | <Expr>; |
-| Test.kt:5:3:5:16 | var ...; | Test.kt:78:3:78:8 | return ... |
-| Test.kt:6:3:6:18 | var ...; | Test.kt:7:3:7:16 | var ...; |
-| Test.kt:6:3:6:18 | var ...; | Test.kt:8:3:8:16 | var ...; |
-| Test.kt:6:3:6:18 | var ...; | Test.kt:11:3:16:3 | ... -> ... |
-| Test.kt:6:3:6:18 | var ...; | Test.kt:11:3:16:3 | ... -> ... |
-| Test.kt:6:3:6:18 | var ...; | Test.kt:11:3:16:3 | <Expr>; |
-| Test.kt:6:3:6:18 | var ...; | Test.kt:11:14:14:3 | { ... } |
-| Test.kt:6:3:6:18 | var ...; | Test.kt:12:4:12:4 | <Expr>; |
-| Test.kt:6:3:6:18 | var ...; | Test.kt:13:4:13:4 | <Expr>; |
-| Test.kt:6:3:6:18 | var ...; | Test.kt:14:10:16:3 | { ... } |
-| Test.kt:6:3:6:18 | var ...; | Test.kt:15:4:15:4 | <Expr>; |
-| Test.kt:6:3:6:18 | var ...; | Test.kt:18:3:18:3 | <Expr>; |
-| Test.kt:6:3:6:18 | var ...; | Test.kt:21:3:24:9 | ... -> ... |
-| Test.kt:6:3:6:18 | var ...; | Test.kt:21:3:24:9 | ... -> ... |
-| Test.kt:6:3:6:18 | var ...; | Test.kt:21:3:24:9 | <Expr>; |
-| Test.kt:6:3:6:18 | var ...; | Test.kt:22:4:22:4 | <Expr>; |
-| Test.kt:6:3:6:18 | var ...; | Test.kt:24:4:24:9 | return ... |
-| Test.kt:6:3:6:18 | var ...; | Test.kt:27:3:27:3 | <Expr>; |
-| Test.kt:6:3:6:18 | var ...; | Test.kt:30:3:33:3 | ... -> ... |
-| Test.kt:6:3:6:18 | var ...; | Test.kt:30:3:33:3 | <Expr>; |
-| Test.kt:6:3:6:18 | var ...; | Test.kt:30:15:33:3 | { ... } |
-| Test.kt:6:3:6:18 | var ...; | Test.kt:31:4:31:4 | <Expr>; |
-| Test.kt:6:3:6:18 | var ...; | Test.kt:32:4:32:4 | <Expr>; |
-| Test.kt:6:3:6:18 | var ...; | Test.kt:35:3:35:3 | <Expr>; |
-| Test.kt:6:3:6:18 | var ...; | Test.kt:38:3:41:3 | while (...) |
-| Test.kt:6:3:6:18 | var ...; | Test.kt:38:16:41:3 | { ... } |
-| Test.kt:6:3:6:18 | var ...; | Test.kt:39:4:39:4 | <Expr>; |
-| Test.kt:6:3:6:18 | var ...; | Test.kt:40:4:40:4 | <Expr>; |
-| Test.kt:6:3:6:18 | var ...; | Test.kt:40:4:40:6 | <Expr>; |
-| Test.kt:6:3:6:18 | var ...; | Test.kt:40:4:40:6 | <Expr>; |
-| Test.kt:6:3:6:18 | var ...; | Test.kt:40:4:40:6 | var ...; |
-| Test.kt:6:3:6:18 | var ...; | Test.kt:40:4:40:6 | { ... } |
-| Test.kt:6:3:6:18 | var ...; | Test.kt:43:3:43:3 | <Expr>; |
-| Test.kt:6:3:6:18 | var ...; | Test.kt:73:3:73:3 | <Expr>; |
-| Test.kt:6:3:6:18 | var ...; | Test.kt:77:3:77:3 | <Expr>; |
-| Test.kt:6:3:6:18 | var ...; | Test.kt:78:3:78:8 | return ... |
-| Test.kt:7:3:7:16 | var ...; | Test.kt:8:3:8:16 | var ...; |
-| Test.kt:7:3:7:16 | var ...; | Test.kt:11:3:16:3 | ... -> ... |
-| Test.kt:7:3:7:16 | var ...; | Test.kt:11:3:16:3 | ... -> ... |
-| Test.kt:7:3:7:16 | var ...; | Test.kt:11:3:16:3 | <Expr>; |
-| Test.kt:7:3:7:16 | var ...; | Test.kt:11:14:14:3 | { ... } |
-| Test.kt:7:3:7:16 | var ...; | Test.kt:12:4:12:4 | <Expr>; |
-| Test.kt:7:3:7:16 | var ...; | Test.kt:13:4:13:4 | <Expr>; |
-| Test.kt:7:3:7:16 | var ...; | Test.kt:14:10:16:3 | { ... } |
-| Test.kt:7:3:7:16 | var ...; | Test.kt:15:4:15:4 | <Expr>; |
-| Test.kt:7:3:7:16 | var ...; | Test.kt:18:3:18:3 | <Expr>; |
-| Test.kt:7:3:7:16 | var ...; | Test.kt:21:3:24:9 | ... -> ... |
-| Test.kt:7:3:7:16 | var ...; | Test.kt:21:3:24:9 | ... -> ... |
-| Test.kt:7:3:7:16 | var ...; | Test.kt:21:3:24:9 | <Expr>; |
-| Test.kt:7:3:7:16 | var ...; | Test.kt:22:4:22:4 | <Expr>; |
-| Test.kt:7:3:7:16 | var ...; | Test.kt:24:4:24:9 | return ... |
-| Test.kt:7:3:7:16 | var ...; | Test.kt:27:3:27:3 | <Expr>; |
-| Test.kt:7:3:7:16 | var ...; | Test.kt:30:3:33:3 | ... -> ... |
-| Test.kt:7:3:7:16 | var ...; | Test.kt:30:3:33:3 | <Expr>; |
-| Test.kt:7:3:7:16 | var ...; | Test.kt:30:15:33:3 | { ... } |
-| Test.kt:7:3:7:16 | var ...; | Test.kt:31:4:31:4 | <Expr>; |
-| Test.kt:7:3:7:16 | var ...; | Test.kt:32:4:32:4 | <Expr>; |
-| Test.kt:7:3:7:16 | var ...; | Test.kt:35:3:35:3 | <Expr>; |
-| Test.kt:7:3:7:16 | var ...; | Test.kt:38:3:41:3 | while (...) |
-| Test.kt:7:3:7:16 | var ...; | Test.kt:38:16:41:3 | { ... } |
-| Test.kt:7:3:7:16 | var ...; | Test.kt:39:4:39:4 | <Expr>; |
-| Test.kt:7:3:7:16 | var ...; | Test.kt:40:4:40:4 | <Expr>; |
-| Test.kt:7:3:7:16 | var ...; | Test.kt:40:4:40:6 | <Expr>; |
-| Test.kt:7:3:7:16 | var ...; | Test.kt:40:4:40:6 | <Expr>; |
-| Test.kt:7:3:7:16 | var ...; | Test.kt:40:4:40:6 | var ...; |
-| Test.kt:7:3:7:16 | var ...; | Test.kt:40:4:40:6 | { ... } |
-| Test.kt:7:3:7:16 | var ...; | Test.kt:43:3:43:3 | <Expr>; |
-| Test.kt:7:3:7:16 | var ...; | Test.kt:73:3:73:3 | <Expr>; |
-| Test.kt:7:3:7:16 | var ...; | Test.kt:77:3:77:3 | <Expr>; |
-| Test.kt:7:3:7:16 | var ...; | Test.kt:78:3:78:8 | return ... |
-| Test.kt:8:3:8:16 | var ...; | Test.kt:11:3:16:3 | ... -> ... |
-| Test.kt:8:3:8:16 | var ...; | Test.kt:11:3:16:3 | ... -> ... |
-| Test.kt:8:3:8:16 | var ...; | Test.kt:11:3:16:3 | <Expr>; |
-| Test.kt:8:3:8:16 | var ...; | Test.kt:11:14:14:3 | { ... } |
-| Test.kt:8:3:8:16 | var ...; | Test.kt:12:4:12:4 | <Expr>; |
-| Test.kt:8:3:8:16 | var ...; | Test.kt:13:4:13:4 | <Expr>; |
-| Test.kt:8:3:8:16 | var ...; | Test.kt:14:10:16:3 | { ... } |
-| Test.kt:8:3:8:16 | var ...; | Test.kt:15:4:15:4 | <Expr>; |
-| Test.kt:8:3:8:16 | var ...; | Test.kt:18:3:18:3 | <Expr>; |
-| Test.kt:8:3:8:16 | var ...; | Test.kt:21:3:24:9 | ... -> ... |
-| Test.kt:8:3:8:16 | var ...; | Test.kt:21:3:24:9 | ... -> ... |
-| Test.kt:8:3:8:16 | var ...; | Test.kt:21:3:24:9 | <Expr>; |
-| Test.kt:8:3:8:16 | var ...; | Test.kt:22:4:22:4 | <Expr>; |
-| Test.kt:8:3:8:16 | var ...; | Test.kt:24:4:24:9 | return ... |
-| Test.kt:8:3:8:16 | var ...; | Test.kt:27:3:27:3 | <Expr>; |
-| Test.kt:8:3:8:16 | var ...; | Test.kt:30:3:33:3 | ... -> ... |
-| Test.kt:8:3:8:16 | var ...; | Test.kt:30:3:33:3 | <Expr>; |
-| Test.kt:8:3:8:16 | var ...; | Test.kt:30:15:33:3 | { ... } |
-| Test.kt:8:3:8:16 | var ...; | Test.kt:31:4:31:4 | <Expr>; |
-| Test.kt:8:3:8:16 | var ...; | Test.kt:32:4:32:4 | <Expr>; |
-| Test.kt:8:3:8:16 | var ...; | Test.kt:35:3:35:3 | <Expr>; |
-| Test.kt:8:3:8:16 | var ...; | Test.kt:38:3:41:3 | while (...) |
-| Test.kt:8:3:8:16 | var ...; | Test.kt:38:16:41:3 | { ... } |
-| Test.kt:8:3:8:16 | var ...; | Test.kt:39:4:39:4 | <Expr>; |
-| Test.kt:8:3:8:16 | var ...; | Test.kt:40:4:40:4 | <Expr>; |
-| Test.kt:8:3:8:16 | var ...; | Test.kt:40:4:40:6 | <Expr>; |
-| Test.kt:8:3:8:16 | var ...; | Test.kt:40:4:40:6 | <Expr>; |
-| Test.kt:8:3:8:16 | var ...; | Test.kt:40:4:40:6 | var ...; |
-| Test.kt:8:3:8:16 | var ...; | Test.kt:40:4:40:6 | { ... } |
-| Test.kt:8:3:8:16 | var ...; | Test.kt:43:3:43:3 | <Expr>; |
-| Test.kt:8:3:8:16 | var ...; | Test.kt:73:3:73:3 | <Expr>; |
-| Test.kt:8:3:8:16 | var ...; | Test.kt:77:3:77:3 | <Expr>; |
-| Test.kt:8:3:8:16 | var ...; | Test.kt:78:3:78:8 | return ... |
+| Test.kt:5:7:5:7 | var ...; | Test.kt:6:7:6:7 | var ...; |
+| Test.kt:5:7:5:7 | var ...; | Test.kt:7:7:7:7 | var ...; |
+| Test.kt:5:7:5:7 | var ...; | Test.kt:8:7:8:7 | var ...; |
+| Test.kt:5:7:5:7 | var ...; | Test.kt:11:3:16:3 | ... -> ... |
+| Test.kt:5:7:5:7 | var ...; | Test.kt:11:3:16:3 | ... -> ... |
+| Test.kt:5:7:5:7 | var ...; | Test.kt:11:3:16:3 | <Expr>; |
+| Test.kt:5:7:5:7 | var ...; | Test.kt:11:14:14:3 | { ... } |
+| Test.kt:5:7:5:7 | var ...; | Test.kt:12:4:12:4 | <Expr>; |
+| Test.kt:5:7:5:7 | var ...; | Test.kt:13:4:13:4 | <Expr>; |
+| Test.kt:5:7:5:7 | var ...; | Test.kt:14:10:16:3 | { ... } |
+| Test.kt:5:7:5:7 | var ...; | Test.kt:15:4:15:4 | <Expr>; |
+| Test.kt:5:7:5:7 | var ...; | Test.kt:18:3:18:3 | <Expr>; |
+| Test.kt:5:7:5:7 | var ...; | Test.kt:21:3:24:9 | ... -> ... |
+| Test.kt:5:7:5:7 | var ...; | Test.kt:21:3:24:9 | ... -> ... |
+| Test.kt:5:7:5:7 | var ...; | Test.kt:21:3:24:9 | <Expr>; |
+| Test.kt:5:7:5:7 | var ...; | Test.kt:22:4:22:4 | <Expr>; |
+| Test.kt:5:7:5:7 | var ...; | Test.kt:24:4:24:9 | return ... |
+| Test.kt:5:7:5:7 | var ...; | Test.kt:27:3:27:3 | <Expr>; |
+| Test.kt:5:7:5:7 | var ...; | Test.kt:30:3:33:3 | ... -> ... |
+| Test.kt:5:7:5:7 | var ...; | Test.kt:30:3:33:3 | <Expr>; |
+| Test.kt:5:7:5:7 | var ...; | Test.kt:30:15:33:3 | { ... } |
+| Test.kt:5:7:5:7 | var ...; | Test.kt:31:4:31:4 | <Expr>; |
+| Test.kt:5:7:5:7 | var ...; | Test.kt:32:4:32:4 | <Expr>; |
+| Test.kt:5:7:5:7 | var ...; | Test.kt:35:3:35:3 | <Expr>; |
+| Test.kt:5:7:5:7 | var ...; | Test.kt:38:3:41:3 | while (...) |
+| Test.kt:5:7:5:7 | var ...; | Test.kt:38:16:41:3 | { ... } |
+| Test.kt:5:7:5:7 | var ...; | Test.kt:39:4:39:4 | <Expr>; |
+| Test.kt:5:7:5:7 | var ...; | Test.kt:40:4:40:4 | <Expr>; |
+| Test.kt:5:7:5:7 | var ...; | Test.kt:40:4:40:6 | <Expr>; |
+| Test.kt:5:7:5:7 | var ...; | Test.kt:40:4:40:6 | <Expr>; |
+| Test.kt:5:7:5:7 | var ...; | Test.kt:40:4:40:6 | var ...; |
+| Test.kt:5:7:5:7 | var ...; | Test.kt:40:4:40:6 | { ... } |
+| Test.kt:5:7:5:7 | var ...; | Test.kt:43:3:43:3 | <Expr>; |
+| Test.kt:5:7:5:7 | var ...; | Test.kt:73:3:73:3 | <Expr>; |
+| Test.kt:5:7:5:7 | var ...; | Test.kt:77:3:77:3 | <Expr>; |
+| Test.kt:5:7:5:7 | var ...; | Test.kt:78:3:78:8 | return ... |
+| Test.kt:6:7:6:7 | var ...; | Test.kt:7:7:7:7 | var ...; |
+| Test.kt:6:7:6:7 | var ...; | Test.kt:8:7:8:7 | var ...; |
+| Test.kt:6:7:6:7 | var ...; | Test.kt:11:3:16:3 | ... -> ... |
+| Test.kt:6:7:6:7 | var ...; | Test.kt:11:3:16:3 | ... -> ... |
+| Test.kt:6:7:6:7 | var ...; | Test.kt:11:3:16:3 | <Expr>; |
+| Test.kt:6:7:6:7 | var ...; | Test.kt:11:14:14:3 | { ... } |
+| Test.kt:6:7:6:7 | var ...; | Test.kt:12:4:12:4 | <Expr>; |
+| Test.kt:6:7:6:7 | var ...; | Test.kt:13:4:13:4 | <Expr>; |
+| Test.kt:6:7:6:7 | var ...; | Test.kt:14:10:16:3 | { ... } |
+| Test.kt:6:7:6:7 | var ...; | Test.kt:15:4:15:4 | <Expr>; |
+| Test.kt:6:7:6:7 | var ...; | Test.kt:18:3:18:3 | <Expr>; |
+| Test.kt:6:7:6:7 | var ...; | Test.kt:21:3:24:9 | ... -> ... |
+| Test.kt:6:7:6:7 | var ...; | Test.kt:21:3:24:9 | ... -> ... |
+| Test.kt:6:7:6:7 | var ...; | Test.kt:21:3:24:9 | <Expr>; |
+| Test.kt:6:7:6:7 | var ...; | Test.kt:22:4:22:4 | <Expr>; |
+| Test.kt:6:7:6:7 | var ...; | Test.kt:24:4:24:9 | return ... |
+| Test.kt:6:7:6:7 | var ...; | Test.kt:27:3:27:3 | <Expr>; |
+| Test.kt:6:7:6:7 | var ...; | Test.kt:30:3:33:3 | ... -> ... |
+| Test.kt:6:7:6:7 | var ...; | Test.kt:30:3:33:3 | <Expr>; |
+| Test.kt:6:7:6:7 | var ...; | Test.kt:30:15:33:3 | { ... } |
+| Test.kt:6:7:6:7 | var ...; | Test.kt:31:4:31:4 | <Expr>; |
+| Test.kt:6:7:6:7 | var ...; | Test.kt:32:4:32:4 | <Expr>; |
+| Test.kt:6:7:6:7 | var ...; | Test.kt:35:3:35:3 | <Expr>; |
+| Test.kt:6:7:6:7 | var ...; | Test.kt:38:3:41:3 | while (...) |
+| Test.kt:6:7:6:7 | var ...; | Test.kt:38:16:41:3 | { ... } |
+| Test.kt:6:7:6:7 | var ...; | Test.kt:39:4:39:4 | <Expr>; |
+| Test.kt:6:7:6:7 | var ...; | Test.kt:40:4:40:4 | <Expr>; |
+| Test.kt:6:7:6:7 | var ...; | Test.kt:40:4:40:6 | <Expr>; |
+| Test.kt:6:7:6:7 | var ...; | Test.kt:40:4:40:6 | <Expr>; |
+| Test.kt:6:7:6:7 | var ...; | Test.kt:40:4:40:6 | var ...; |
+| Test.kt:6:7:6:7 | var ...; | Test.kt:40:4:40:6 | { ... } |
+| Test.kt:6:7:6:7 | var ...; | Test.kt:43:3:43:3 | <Expr>; |
+| Test.kt:6:7:6:7 | var ...; | Test.kt:73:3:73:3 | <Expr>; |
+| Test.kt:6:7:6:7 | var ...; | Test.kt:77:3:77:3 | <Expr>; |
+| Test.kt:6:7:6:7 | var ...; | Test.kt:78:3:78:8 | return ... |
+| Test.kt:7:7:7:7 | var ...; | Test.kt:8:7:8:7 | var ...; |
+| Test.kt:7:7:7:7 | var ...; | Test.kt:11:3:16:3 | ... -> ... |
+| Test.kt:7:7:7:7 | var ...; | Test.kt:11:3:16:3 | ... -> ... |
+| Test.kt:7:7:7:7 | var ...; | Test.kt:11:3:16:3 | <Expr>; |
+| Test.kt:7:7:7:7 | var ...; | Test.kt:11:14:14:3 | { ... } |
+| Test.kt:7:7:7:7 | var ...; | Test.kt:12:4:12:4 | <Expr>; |
+| Test.kt:7:7:7:7 | var ...; | Test.kt:13:4:13:4 | <Expr>; |
+| Test.kt:7:7:7:7 | var ...; | Test.kt:14:10:16:3 | { ... } |
+| Test.kt:7:7:7:7 | var ...; | Test.kt:15:4:15:4 | <Expr>; |
+| Test.kt:7:7:7:7 | var ...; | Test.kt:18:3:18:3 | <Expr>; |
+| Test.kt:7:7:7:7 | var ...; | Test.kt:21:3:24:9 | ... -> ... |
+| Test.kt:7:7:7:7 | var ...; | Test.kt:21:3:24:9 | ... -> ... |
+| Test.kt:7:7:7:7 | var ...; | Test.kt:21:3:24:9 | <Expr>; |
+| Test.kt:7:7:7:7 | var ...; | Test.kt:22:4:22:4 | <Expr>; |
+| Test.kt:7:7:7:7 | var ...; | Test.kt:24:4:24:9 | return ... |
+| Test.kt:7:7:7:7 | var ...; | Test.kt:27:3:27:3 | <Expr>; |
+| Test.kt:7:7:7:7 | var ...; | Test.kt:30:3:33:3 | ... -> ... |
+| Test.kt:7:7:7:7 | var ...; | Test.kt:30:3:33:3 | <Expr>; |
+| Test.kt:7:7:7:7 | var ...; | Test.kt:30:15:33:3 | { ... } |
+| Test.kt:7:7:7:7 | var ...; | Test.kt:31:4:31:4 | <Expr>; |
+| Test.kt:7:7:7:7 | var ...; | Test.kt:32:4:32:4 | <Expr>; |
+| Test.kt:7:7:7:7 | var ...; | Test.kt:35:3:35:3 | <Expr>; |
+| Test.kt:7:7:7:7 | var ...; | Test.kt:38:3:41:3 | while (...) |
+| Test.kt:7:7:7:7 | var ...; | Test.kt:38:16:41:3 | { ... } |
+| Test.kt:7:7:7:7 | var ...; | Test.kt:39:4:39:4 | <Expr>; |
+| Test.kt:7:7:7:7 | var ...; | Test.kt:40:4:40:4 | <Expr>; |
+| Test.kt:7:7:7:7 | var ...; | Test.kt:40:4:40:6 | <Expr>; |
+| Test.kt:7:7:7:7 | var ...; | Test.kt:40:4:40:6 | <Expr>; |
+| Test.kt:7:7:7:7 | var ...; | Test.kt:40:4:40:6 | var ...; |
+| Test.kt:7:7:7:7 | var ...; | Test.kt:40:4:40:6 | { ... } |
+| Test.kt:7:7:7:7 | var ...; | Test.kt:43:3:43:3 | <Expr>; |
+| Test.kt:7:7:7:7 | var ...; | Test.kt:73:3:73:3 | <Expr>; |
+| Test.kt:7:7:7:7 | var ...; | Test.kt:77:3:77:3 | <Expr>; |
+| Test.kt:7:7:7:7 | var ...; | Test.kt:78:3:78:8 | return ... |
+| Test.kt:8:7:8:7 | var ...; | Test.kt:11:3:16:3 | ... -> ... |
+| Test.kt:8:7:8:7 | var ...; | Test.kt:11:3:16:3 | ... -> ... |
+| Test.kt:8:7:8:7 | var ...; | Test.kt:11:3:16:3 | <Expr>; |
+| Test.kt:8:7:8:7 | var ...; | Test.kt:11:14:14:3 | { ... } |
+| Test.kt:8:7:8:7 | var ...; | Test.kt:12:4:12:4 | <Expr>; |
+| Test.kt:8:7:8:7 | var ...; | Test.kt:13:4:13:4 | <Expr>; |
+| Test.kt:8:7:8:7 | var ...; | Test.kt:14:10:16:3 | { ... } |
+| Test.kt:8:7:8:7 | var ...; | Test.kt:15:4:15:4 | <Expr>; |
+| Test.kt:8:7:8:7 | var ...; | Test.kt:18:3:18:3 | <Expr>; |
+| Test.kt:8:7:8:7 | var ...; | Test.kt:21:3:24:9 | ... -> ... |
+| Test.kt:8:7:8:7 | var ...; | Test.kt:21:3:24:9 | ... -> ... |
+| Test.kt:8:7:8:7 | var ...; | Test.kt:21:3:24:9 | <Expr>; |
+| Test.kt:8:7:8:7 | var ...; | Test.kt:22:4:22:4 | <Expr>; |
+| Test.kt:8:7:8:7 | var ...; | Test.kt:24:4:24:9 | return ... |
+| Test.kt:8:7:8:7 | var ...; | Test.kt:27:3:27:3 | <Expr>; |
+| Test.kt:8:7:8:7 | var ...; | Test.kt:30:3:33:3 | ... -> ... |
+| Test.kt:8:7:8:7 | var ...; | Test.kt:30:3:33:3 | <Expr>; |
+| Test.kt:8:7:8:7 | var ...; | Test.kt:30:15:33:3 | { ... } |
+| Test.kt:8:7:8:7 | var ...; | Test.kt:31:4:31:4 | <Expr>; |
+| Test.kt:8:7:8:7 | var ...; | Test.kt:32:4:32:4 | <Expr>; |
+| Test.kt:8:7:8:7 | var ...; | Test.kt:35:3:35:3 | <Expr>; |
+| Test.kt:8:7:8:7 | var ...; | Test.kt:38:3:41:3 | while (...) |
+| Test.kt:8:7:8:7 | var ...; | Test.kt:38:16:41:3 | { ... } |
+| Test.kt:8:7:8:7 | var ...; | Test.kt:39:4:39:4 | <Expr>; |
+| Test.kt:8:7:8:7 | var ...; | Test.kt:40:4:40:4 | <Expr>; |
+| Test.kt:8:7:8:7 | var ...; | Test.kt:40:4:40:6 | <Expr>; |
+| Test.kt:8:7:8:7 | var ...; | Test.kt:40:4:40:6 | <Expr>; |
+| Test.kt:8:7:8:7 | var ...; | Test.kt:40:4:40:6 | var ...; |
+| Test.kt:8:7:8:7 | var ...; | Test.kt:40:4:40:6 | { ... } |
+| Test.kt:8:7:8:7 | var ...; | Test.kt:43:3:43:3 | <Expr>; |
+| Test.kt:8:7:8:7 | var ...; | Test.kt:73:3:73:3 | <Expr>; |
+| Test.kt:8:7:8:7 | var ...; | Test.kt:77:3:77:3 | <Expr>; |
+| Test.kt:8:7:8:7 | var ...; | Test.kt:78:3:78:8 | return ... |
 | Test.kt:11:3:16:3 | ... -> ... | Test.kt:11:3:16:3 | ... -> ... |
 | Test.kt:11:3:16:3 | ... -> ... | Test.kt:11:14:14:3 | { ... } |
 | Test.kt:11:3:16:3 | ... -> ... | Test.kt:12:4:12:4 | <Expr>; |
@@ -440,51 +440,51 @@
 | Test.kt:77:3:77:3 | <Expr>; | Test.kt:78:3:78:8 | return ... |
 | Test.kt:82:21:89:1 | { ... } | Test.kt:83:2:88:2 | try ... |
 | Test.kt:82:21:89:1 | { ... } | Test.kt:83:6:86:2 | { ... } |
-| Test.kt:82:21:89:1 | { ... } | Test.kt:84:3:84:18 | var ...; |
+| Test.kt:82:21:89:1 | { ... } | Test.kt:84:7:84:7 | var ...; |
 | Test.kt:82:21:89:1 | { ... } | Test.kt:85:3:85:10 | return ... |
 | Test.kt:82:21:89:1 | { ... } | Test.kt:86:4:88:2 | catch (...) |
 | Test.kt:82:21:89:1 | { ... } | Test.kt:86:34:88:2 | { ... } |
 | Test.kt:82:21:89:1 | { ... } | Test.kt:87:3:87:10 | return ... |
 | Test.kt:83:2:88:2 | try ... | Test.kt:83:6:86:2 | { ... } |
-| Test.kt:83:2:88:2 | try ... | Test.kt:84:3:84:18 | var ...; |
+| Test.kt:83:2:88:2 | try ... | Test.kt:84:7:84:7 | var ...; |
 | Test.kt:83:2:88:2 | try ... | Test.kt:85:3:85:10 | return ... |
 | Test.kt:83:2:88:2 | try ... | Test.kt:86:4:88:2 | catch (...) |
 | Test.kt:83:2:88:2 | try ... | Test.kt:86:34:88:2 | { ... } |
 | Test.kt:83:2:88:2 | try ... | Test.kt:87:3:87:10 | return ... |
-| Test.kt:83:6:86:2 | { ... } | Test.kt:84:3:84:18 | var ...; |
+| Test.kt:83:6:86:2 | { ... } | Test.kt:84:7:84:7 | var ...; |
 | Test.kt:83:6:86:2 | { ... } | Test.kt:85:3:85:10 | return ... |
 | Test.kt:83:6:86:2 | { ... } | Test.kt:86:4:88:2 | catch (...) |
 | Test.kt:83:6:86:2 | { ... } | Test.kt:86:34:88:2 | { ... } |
 | Test.kt:83:6:86:2 | { ... } | Test.kt:87:3:87:10 | return ... |
-| Test.kt:84:3:84:18 | var ...; | Test.kt:85:3:85:10 | return ... |
-| Test.kt:84:3:84:18 | var ...; | Test.kt:86:4:88:2 | catch (...) |
-| Test.kt:84:3:84:18 | var ...; | Test.kt:86:34:88:2 | { ... } |
-| Test.kt:84:3:84:18 | var ...; | Test.kt:87:3:87:10 | return ... |
+| Test.kt:84:7:84:7 | var ...; | Test.kt:85:3:85:10 | return ... |
+| Test.kt:84:7:84:7 | var ...; | Test.kt:86:4:88:2 | catch (...) |
+| Test.kt:84:7:84:7 | var ...; | Test.kt:86:34:88:2 | { ... } |
+| Test.kt:84:7:84:7 | var ...; | Test.kt:87:3:87:10 | return ... |
 | Test.kt:86:4:88:2 | catch (...) | Test.kt:86:34:88:2 | { ... } |
 | Test.kt:86:4:88:2 | catch (...) | Test.kt:87:3:87:10 | return ... |
 | Test.kt:86:34:88:2 | { ... } | Test.kt:87:3:87:10 | return ... |
 | Test.kt:91:22:98:1 | { ... } | Test.kt:92:2:97:2 | try ... |
 | Test.kt:91:22:98:1 | { ... } | Test.kt:92:6:95:2 | { ... } |
-| Test.kt:91:22:98:1 | { ... } | Test.kt:93:3:93:13 | var ...; |
+| Test.kt:91:22:98:1 | { ... } | Test.kt:93:7:93:7 | var ...; |
 | Test.kt:91:22:98:1 | { ... } | Test.kt:94:3:94:10 | return ... |
 | Test.kt:91:22:98:1 | { ... } | Test.kt:95:4:97:2 | catch (...) |
 | Test.kt:91:22:98:1 | { ... } | Test.kt:95:36:97:2 | { ... } |
 | Test.kt:91:22:98:1 | { ... } | Test.kt:96:3:96:10 | return ... |
 | Test.kt:92:2:97:2 | try ... | Test.kt:92:6:95:2 | { ... } |
-| Test.kt:92:2:97:2 | try ... | Test.kt:93:3:93:13 | var ...; |
+| Test.kt:92:2:97:2 | try ... | Test.kt:93:7:93:7 | var ...; |
 | Test.kt:92:2:97:2 | try ... | Test.kt:94:3:94:10 | return ... |
 | Test.kt:92:2:97:2 | try ... | Test.kt:95:4:97:2 | catch (...) |
 | Test.kt:92:2:97:2 | try ... | Test.kt:95:36:97:2 | { ... } |
 | Test.kt:92:2:97:2 | try ... | Test.kt:96:3:96:10 | return ... |
-| Test.kt:92:6:95:2 | { ... } | Test.kt:93:3:93:13 | var ...; |
+| Test.kt:92:6:95:2 | { ... } | Test.kt:93:7:93:7 | var ...; |
 | Test.kt:92:6:95:2 | { ... } | Test.kt:94:3:94:10 | return ... |
 | Test.kt:92:6:95:2 | { ... } | Test.kt:95:4:97:2 | catch (...) |
 | Test.kt:92:6:95:2 | { ... } | Test.kt:95:36:97:2 | { ... } |
 | Test.kt:92:6:95:2 | { ... } | Test.kt:96:3:96:10 | return ... |
-| Test.kt:93:3:93:13 | var ...; | Test.kt:94:3:94:10 | return ... |
-| Test.kt:93:3:93:13 | var ...; | Test.kt:95:4:97:2 | catch (...) |
-| Test.kt:93:3:93:13 | var ...; | Test.kt:95:36:97:2 | { ... } |
-| Test.kt:93:3:93:13 | var ...; | Test.kt:96:3:96:10 | return ... |
+| Test.kt:93:7:93:7 | var ...; | Test.kt:94:3:94:10 | return ... |
+| Test.kt:93:7:93:7 | var ...; | Test.kt:95:4:97:2 | catch (...) |
+| Test.kt:93:7:93:7 | var ...; | Test.kt:95:36:97:2 | { ... } |
+| Test.kt:93:7:93:7 | var ...; | Test.kt:96:3:96:10 | return ... |
 | Test.kt:95:4:97:2 | catch (...) | Test.kt:95:36:97:2 | { ... } |
 | Test.kt:95:4:97:2 | catch (...) | Test.kt:96:3:96:10 | return ... |
 | Test.kt:95:36:97:2 | { ... } | Test.kt:96:3:96:10 | return ... |
diff --git a/java/ql/test/kotlin/library-tests/controlflow/basic/strictPostDominance.expected b/java/ql/test/kotlin/library-tests/controlflow/basic/strictPostDominance.expected
index c7d67d9959b..6d47a44d581 100644
--- a/java/ql/test/kotlin/library-tests/controlflow/basic/strictPostDominance.expected
+++ b/java/ql/test/kotlin/library-tests/controlflow/basic/strictPostDominance.expected
@@ -1,27 +1,27 @@
 | Test.kt:3:1:80:1 | super(...) | Test.kt:3:1:80:1 | { ... } |
 | Test.kt:3:8:80:1 | { ... } | Test.kt:3:1:80:1 | super(...) |
 | Test.kt:3:8:80:1 | { ... } | Test.kt:3:1:80:1 | { ... } |
-| Test.kt:5:3:5:16 | var ...; | Test.kt:4:13:79:2 | { ... } |
-| Test.kt:6:3:6:18 | var ...; | Test.kt:4:13:79:2 | { ... } |
-| Test.kt:6:3:6:18 | var ...; | Test.kt:5:3:5:16 | var ...; |
-| Test.kt:7:3:7:16 | var ...; | Test.kt:4:13:79:2 | { ... } |
-| Test.kt:7:3:7:16 | var ...; | Test.kt:5:3:5:16 | var ...; |
-| Test.kt:7:3:7:16 | var ...; | Test.kt:6:3:6:18 | var ...; |
-| Test.kt:8:3:8:16 | var ...; | Test.kt:4:13:79:2 | { ... } |
-| Test.kt:8:3:8:16 | var ...; | Test.kt:5:3:5:16 | var ...; |
-| Test.kt:8:3:8:16 | var ...; | Test.kt:6:3:6:18 | var ...; |
-| Test.kt:8:3:8:16 | var ...; | Test.kt:7:3:7:16 | var ...; |
+| Test.kt:5:7:5:7 | var ...; | Test.kt:4:13:79:2 | { ... } |
+| Test.kt:6:7:6:7 | var ...; | Test.kt:4:13:79:2 | { ... } |
+| Test.kt:6:7:6:7 | var ...; | Test.kt:5:7:5:7 | var ...; |
+| Test.kt:7:7:7:7 | var ...; | Test.kt:4:13:79:2 | { ... } |
+| Test.kt:7:7:7:7 | var ...; | Test.kt:5:7:5:7 | var ...; |
+| Test.kt:7:7:7:7 | var ...; | Test.kt:6:7:6:7 | var ...; |
+| Test.kt:8:7:8:7 | var ...; | Test.kt:4:13:79:2 | { ... } |
+| Test.kt:8:7:8:7 | var ...; | Test.kt:5:7:5:7 | var ...; |
+| Test.kt:8:7:8:7 | var ...; | Test.kt:6:7:6:7 | var ...; |
+| Test.kt:8:7:8:7 | var ...; | Test.kt:7:7:7:7 | var ...; |
 | Test.kt:11:3:16:3 | ... -> ... | Test.kt:4:13:79:2 | { ... } |
-| Test.kt:11:3:16:3 | ... -> ... | Test.kt:5:3:5:16 | var ...; |
-| Test.kt:11:3:16:3 | ... -> ... | Test.kt:6:3:6:18 | var ...; |
-| Test.kt:11:3:16:3 | ... -> ... | Test.kt:7:3:7:16 | var ...; |
-| Test.kt:11:3:16:3 | ... -> ... | Test.kt:8:3:8:16 | var ...; |
+| Test.kt:11:3:16:3 | ... -> ... | Test.kt:5:7:5:7 | var ...; |
+| Test.kt:11:3:16:3 | ... -> ... | Test.kt:6:7:6:7 | var ...; |
+| Test.kt:11:3:16:3 | ... -> ... | Test.kt:7:7:7:7 | var ...; |
+| Test.kt:11:3:16:3 | ... -> ... | Test.kt:8:7:8:7 | var ...; |
 | Test.kt:11:3:16:3 | ... -> ... | Test.kt:11:3:16:3 | <Expr>; |
 | Test.kt:11:3:16:3 | <Expr>; | Test.kt:4:13:79:2 | { ... } |
-| Test.kt:11:3:16:3 | <Expr>; | Test.kt:5:3:5:16 | var ...; |
-| Test.kt:11:3:16:3 | <Expr>; | Test.kt:6:3:6:18 | var ...; |
-| Test.kt:11:3:16:3 | <Expr>; | Test.kt:7:3:7:16 | var ...; |
-| Test.kt:11:3:16:3 | <Expr>; | Test.kt:8:3:8:16 | var ...; |
+| Test.kt:11:3:16:3 | <Expr>; | Test.kt:5:7:5:7 | var ...; |
+| Test.kt:11:3:16:3 | <Expr>; | Test.kt:6:7:6:7 | var ...; |
+| Test.kt:11:3:16:3 | <Expr>; | Test.kt:7:7:7:7 | var ...; |
+| Test.kt:11:3:16:3 | <Expr>; | Test.kt:8:7:8:7 | var ...; |
 | Test.kt:12:4:12:4 | <Expr>; | Test.kt:11:14:14:3 | { ... } |
 | Test.kt:13:4:13:4 | <Expr>; | Test.kt:11:14:14:3 | { ... } |
 | Test.kt:13:4:13:4 | <Expr>; | Test.kt:12:4:12:4 | <Expr>; |
@@ -29,10 +29,10 @@
 | Test.kt:15:4:15:4 | <Expr>; | Test.kt:11:3:16:3 | ... -> ... |
 | Test.kt:15:4:15:4 | <Expr>; | Test.kt:14:10:16:3 | { ... } |
 | Test.kt:18:3:18:3 | <Expr>; | Test.kt:4:13:79:2 | { ... } |
-| Test.kt:18:3:18:3 | <Expr>; | Test.kt:5:3:5:16 | var ...; |
-| Test.kt:18:3:18:3 | <Expr>; | Test.kt:6:3:6:18 | var ...; |
-| Test.kt:18:3:18:3 | <Expr>; | Test.kt:7:3:7:16 | var ...; |
-| Test.kt:18:3:18:3 | <Expr>; | Test.kt:8:3:8:16 | var ...; |
+| Test.kt:18:3:18:3 | <Expr>; | Test.kt:5:7:5:7 | var ...; |
+| Test.kt:18:3:18:3 | <Expr>; | Test.kt:6:7:6:7 | var ...; |
+| Test.kt:18:3:18:3 | <Expr>; | Test.kt:7:7:7:7 | var ...; |
+| Test.kt:18:3:18:3 | <Expr>; | Test.kt:8:7:8:7 | var ...; |
 | Test.kt:18:3:18:3 | <Expr>; | Test.kt:11:3:16:3 | ... -> ... |
 | Test.kt:18:3:18:3 | <Expr>; | Test.kt:11:3:16:3 | ... -> ... |
 | Test.kt:18:3:18:3 | <Expr>; | Test.kt:11:3:16:3 | <Expr>; |
@@ -42,10 +42,10 @@
 | Test.kt:18:3:18:3 | <Expr>; | Test.kt:14:10:16:3 | { ... } |
 | Test.kt:18:3:18:3 | <Expr>; | Test.kt:15:4:15:4 | <Expr>; |
 | Test.kt:21:3:24:9 | ... -> ... | Test.kt:4:13:79:2 | { ... } |
-| Test.kt:21:3:24:9 | ... -> ... | Test.kt:5:3:5:16 | var ...; |
-| Test.kt:21:3:24:9 | ... -> ... | Test.kt:6:3:6:18 | var ...; |
-| Test.kt:21:3:24:9 | ... -> ... | Test.kt:7:3:7:16 | var ...; |
-| Test.kt:21:3:24:9 | ... -> ... | Test.kt:8:3:8:16 | var ...; |
+| Test.kt:21:3:24:9 | ... -> ... | Test.kt:5:7:5:7 | var ...; |
+| Test.kt:21:3:24:9 | ... -> ... | Test.kt:6:7:6:7 | var ...; |
+| Test.kt:21:3:24:9 | ... -> ... | Test.kt:7:7:7:7 | var ...; |
+| Test.kt:21:3:24:9 | ... -> ... | Test.kt:8:7:8:7 | var ...; |
 | Test.kt:21:3:24:9 | ... -> ... | Test.kt:11:3:16:3 | ... -> ... |
 | Test.kt:21:3:24:9 | ... -> ... | Test.kt:11:3:16:3 | ... -> ... |
 | Test.kt:21:3:24:9 | ... -> ... | Test.kt:11:3:16:3 | <Expr>; |
@@ -57,10 +57,10 @@
 | Test.kt:21:3:24:9 | ... -> ... | Test.kt:18:3:18:3 | <Expr>; |
 | Test.kt:21:3:24:9 | ... -> ... | Test.kt:21:3:24:9 | <Expr>; |
 | Test.kt:21:3:24:9 | <Expr>; | Test.kt:4:13:79:2 | { ... } |
-| Test.kt:21:3:24:9 | <Expr>; | Test.kt:5:3:5:16 | var ...; |
-| Test.kt:21:3:24:9 | <Expr>; | Test.kt:6:3:6:18 | var ...; |
-| Test.kt:21:3:24:9 | <Expr>; | Test.kt:7:3:7:16 | var ...; |
-| Test.kt:21:3:24:9 | <Expr>; | Test.kt:8:3:8:16 | var ...; |
+| Test.kt:21:3:24:9 | <Expr>; | Test.kt:5:7:5:7 | var ...; |
+| Test.kt:21:3:24:9 | <Expr>; | Test.kt:6:7:6:7 | var ...; |
+| Test.kt:21:3:24:9 | <Expr>; | Test.kt:7:7:7:7 | var ...; |
+| Test.kt:21:3:24:9 | <Expr>; | Test.kt:8:7:8:7 | var ...; |
 | Test.kt:21:3:24:9 | <Expr>; | Test.kt:11:3:16:3 | ... -> ... |
 | Test.kt:21:3:24:9 | <Expr>; | Test.kt:11:3:16:3 | ... -> ... |
 | Test.kt:21:3:24:9 | <Expr>; | Test.kt:11:3:16:3 | <Expr>; |
@@ -189,18 +189,18 @@
 | Test.kt:83:2:88:2 | try ... | Test.kt:82:21:89:1 | { ... } |
 | Test.kt:83:6:86:2 | { ... } | Test.kt:82:21:89:1 | { ... } |
 | Test.kt:83:6:86:2 | { ... } | Test.kt:83:2:88:2 | try ... |
-| Test.kt:84:3:84:18 | var ...; | Test.kt:82:21:89:1 | { ... } |
-| Test.kt:84:3:84:18 | var ...; | Test.kt:83:2:88:2 | try ... |
-| Test.kt:84:3:84:18 | var ...; | Test.kt:83:6:86:2 | { ... } |
+| Test.kt:84:7:84:7 | var ...; | Test.kt:82:21:89:1 | { ... } |
+| Test.kt:84:7:84:7 | var ...; | Test.kt:83:2:88:2 | try ... |
+| Test.kt:84:7:84:7 | var ...; | Test.kt:83:6:86:2 | { ... } |
 | Test.kt:86:34:88:2 | { ... } | Test.kt:86:4:88:2 | catch (...) |
 | Test.kt:87:3:87:10 | return ... | Test.kt:86:4:88:2 | catch (...) |
 | Test.kt:87:3:87:10 | return ... | Test.kt:86:34:88:2 | { ... } |
 | Test.kt:92:2:97:2 | try ... | Test.kt:91:22:98:1 | { ... } |
 | Test.kt:92:6:95:2 | { ... } | Test.kt:91:22:98:1 | { ... } |
 | Test.kt:92:6:95:2 | { ... } | Test.kt:92:2:97:2 | try ... |
-| Test.kt:93:3:93:13 | var ...; | Test.kt:91:22:98:1 | { ... } |
-| Test.kt:93:3:93:13 | var ...; | Test.kt:92:2:97:2 | try ... |
-| Test.kt:93:3:93:13 | var ...; | Test.kt:92:6:95:2 | { ... } |
+| Test.kt:93:7:93:7 | var ...; | Test.kt:91:22:98:1 | { ... } |
+| Test.kt:93:7:93:7 | var ...; | Test.kt:92:2:97:2 | try ... |
+| Test.kt:93:7:93:7 | var ...; | Test.kt:92:6:95:2 | { ... } |
 | Test.kt:95:36:97:2 | { ... } | Test.kt:95:4:97:2 | catch (...) |
 | Test.kt:96:3:96:10 | return ... | Test.kt:95:4:97:2 | catch (...) |
 | Test.kt:96:3:96:10 | return ... | Test.kt:95:36:97:2 | { ... } |
diff --git a/java/ql/test/kotlin/library-tests/exprs/exprs.expected b/java/ql/test/kotlin/library-tests/exprs/exprs.expected
index 4b8d200a1d7..5d35293eb22 100644
--- a/java/ql/test/kotlin/library-tests/exprs/exprs.expected
+++ b/java/ql/test/kotlin/library-tests/exprs/exprs.expected
@@ -904,468 +904,468 @@
 | exprs.kt:8:32:8:41 | double | file://:0:0:0:0 | <none> | TypeAccess |
 | exprs.kt:9:20:9:28 | float | file://:0:0:0:0 | <none> | TypeAccess |
 | exprs.kt:9:31:9:39 | float | file://:0:0:0:0 | <none> | TypeAccess |
-| exprs.kt:11:5:11:14 | i1 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
+| exprs.kt:11:9:11:10 | i1 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
 | exprs.kt:11:14:11:14 | 1 | exprs.kt:4:1:142:1 | topLevelMethod | IntegerLiteral |
-| exprs.kt:12:5:12:18 | i2 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
+| exprs.kt:12:9:12:10 | i2 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
 | exprs.kt:12:14:12:14 | x | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
 | exprs.kt:12:14:12:18 | ... + ... | exprs.kt:4:1:142:1 | topLevelMethod | AddExpr |
 | exprs.kt:12:18:12:18 | y | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
-| exprs.kt:13:5:13:18 | i3 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
+| exprs.kt:13:9:13:10 | i3 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
 | exprs.kt:13:14:13:14 | x | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
 | exprs.kt:13:14:13:18 | ... - ... | exprs.kt:4:1:142:1 | topLevelMethod | SubExpr |
 | exprs.kt:13:18:13:18 | y | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
-| exprs.kt:14:5:14:18 | i4 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
+| exprs.kt:14:9:14:10 | i4 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
 | exprs.kt:14:14:14:14 | x | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
 | exprs.kt:14:14:14:18 | ... / ... | exprs.kt:4:1:142:1 | topLevelMethod | DivExpr |
 | exprs.kt:14:18:14:18 | y | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
-| exprs.kt:15:5:15:18 | i5 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
+| exprs.kt:15:9:15:10 | i5 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
 | exprs.kt:15:14:15:14 | x | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
 | exprs.kt:15:14:15:18 | ... % ... | exprs.kt:4:1:142:1 | topLevelMethod | RemExpr |
 | exprs.kt:15:18:15:18 | y | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
-| exprs.kt:16:5:16:20 | i6 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
+| exprs.kt:16:9:16:10 | i6 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
 | exprs.kt:16:14:16:14 | x | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
 | exprs.kt:16:14:16:20 | ... << ... | exprs.kt:4:1:142:1 | topLevelMethod | LShiftExpr |
 | exprs.kt:16:20:16:20 | y | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
-| exprs.kt:17:5:17:20 | i7 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
+| exprs.kt:17:9:17:10 | i7 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
 | exprs.kt:17:14:17:14 | x | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
 | exprs.kt:17:14:17:20 | ... >> ... | exprs.kt:4:1:142:1 | topLevelMethod | RShiftExpr |
 | exprs.kt:17:20:17:20 | y | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
-| exprs.kt:18:5:18:21 | i8 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
+| exprs.kt:18:9:18:10 | i8 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
 | exprs.kt:18:14:18:14 | x | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
 | exprs.kt:18:14:18:21 | ... >>> ... | exprs.kt:4:1:142:1 | topLevelMethod | URShiftExpr |
 | exprs.kt:18:21:18:21 | y | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
-| exprs.kt:19:5:19:20 | i9 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
+| exprs.kt:19:9:19:10 | i9 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
 | exprs.kt:19:14:19:14 | x | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
 | exprs.kt:19:14:19:20 | ... & ... | exprs.kt:4:1:142:1 | topLevelMethod | AndBitwiseExpr |
 | exprs.kt:19:20:19:20 | y | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
-| exprs.kt:20:5:20:20 | i10 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
+| exprs.kt:20:9:20:11 | i10 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
 | exprs.kt:20:15:20:15 | x | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
 | exprs.kt:20:15:20:20 | ... \| ... | exprs.kt:4:1:142:1 | topLevelMethod | OrBitwiseExpr |
 | exprs.kt:20:20:20:20 | y | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
-| exprs.kt:21:5:21:21 | i11 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
+| exprs.kt:21:9:21:11 | i11 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
 | exprs.kt:21:15:21:15 | x | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
 | exprs.kt:21:15:21:21 | ... ^ ... | exprs.kt:4:1:142:1 | topLevelMethod | XorBitwiseExpr |
 | exprs.kt:21:21:21:21 | y | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
-| exprs.kt:22:5:22:21 | i12 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
+| exprs.kt:22:9:22:11 | i12 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
 | exprs.kt:22:15:22:15 | x | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
 | exprs.kt:22:15:22:21 | ~... | exprs.kt:4:1:142:1 | topLevelMethod | BitNotExpr |
-| exprs.kt:23:5:23:20 | i13 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
+| exprs.kt:23:9:23:11 | i13 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
 | exprs.kt:23:15:23:15 | x | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
 | exprs.kt:23:15:23:20 | ... (value equals) ... | exprs.kt:4:1:142:1 | topLevelMethod | ValueEQExpr |
 | exprs.kt:23:20:23:20 | y | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
-| exprs.kt:24:5:24:20 | i14 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
+| exprs.kt:24:9:24:11 | i14 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
 | exprs.kt:24:15:24:15 | x | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
 | exprs.kt:24:15:24:20 | ... (value not-equals) ... | exprs.kt:4:1:142:1 | topLevelMethod | ValueNEExpr |
 | exprs.kt:24:20:24:20 | y | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
-| exprs.kt:25:5:25:19 | i15 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
+| exprs.kt:25:9:25:11 | i15 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
 | exprs.kt:25:15:25:15 | x | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
 | exprs.kt:25:15:25:19 | ... < ... | exprs.kt:4:1:142:1 | topLevelMethod | LTExpr |
 | exprs.kt:25:19:25:19 | y | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
-| exprs.kt:26:5:26:20 | i16 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
+| exprs.kt:26:9:26:11 | i16 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
 | exprs.kt:26:15:26:15 | x | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
 | exprs.kt:26:15:26:20 | ... <= ... | exprs.kt:4:1:142:1 | topLevelMethod | LEExpr |
 | exprs.kt:26:20:26:20 | y | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
-| exprs.kt:27:5:27:19 | i17 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
+| exprs.kt:27:9:27:11 | i17 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
 | exprs.kt:27:15:27:15 | x | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
 | exprs.kt:27:15:27:19 | ... > ... | exprs.kt:4:1:142:1 | topLevelMethod | GTExpr |
 | exprs.kt:27:19:27:19 | y | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
-| exprs.kt:28:5:28:20 | i18 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
+| exprs.kt:28:9:28:11 | i18 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
 | exprs.kt:28:15:28:15 | x | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
 | exprs.kt:28:15:28:20 | ... >= ... | exprs.kt:4:1:142:1 | topLevelMethod | GEExpr |
 | exprs.kt:28:20:28:20 | y | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
-| exprs.kt:29:5:29:21 | i19 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
+| exprs.kt:29:9:29:11 | i19 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
 | exprs.kt:29:15:29:15 | x | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
 | exprs.kt:29:15:29:21 | ... == ... | exprs.kt:4:1:142:1 | topLevelMethod | EQExpr |
 | exprs.kt:29:21:29:21 | y | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
-| exprs.kt:30:5:30:21 | i20 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
+| exprs.kt:30:9:30:11 | i20 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
 | exprs.kt:30:15:30:15 | x | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
 | exprs.kt:30:15:30:21 | ... != ... | exprs.kt:4:1:142:1 | topLevelMethod | NEExpr |
 | exprs.kt:30:21:30:21 | y | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
-| exprs.kt:31:5:31:25 | i21 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
+| exprs.kt:31:9:31:11 | i21 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
 | exprs.kt:31:15:31:15 | x | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
 | exprs.kt:31:15:31:25 | contains(...) | exprs.kt:4:1:142:1 | topLevelMethod | MethodAccess |
 | exprs.kt:31:20:31:20 | x | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
 | exprs.kt:31:20:31:25 | rangeTo(...) | exprs.kt:4:1:142:1 | topLevelMethod | MethodAccess |
 | exprs.kt:31:25:31:25 | y | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
-| exprs.kt:32:5:32:26 | i22 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
+| exprs.kt:32:9:32:11 | i22 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
 | exprs.kt:32:15:32:15 | x | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
 | exprs.kt:32:15:32:26 | !... | exprs.kt:4:1:142:1 | topLevelMethod | LogNotExpr |
 | exprs.kt:32:15:32:26 | contains(...) | exprs.kt:4:1:142:1 | topLevelMethod | MethodAccess |
 | exprs.kt:32:21:32:21 | x | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
 | exprs.kt:32:21:32:26 | rangeTo(...) | exprs.kt:4:1:142:1 | topLevelMethod | MethodAccess |
 | exprs.kt:32:26:32:26 | y | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
-| exprs.kt:34:5:34:17 | by1 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
+| exprs.kt:34:9:34:11 | by1 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
 | exprs.kt:34:15:34:17 | 1.0 | exprs.kt:4:1:142:1 | topLevelMethod | DoubleLiteral |
-| exprs.kt:35:5:35:23 | by2 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
+| exprs.kt:35:9:35:11 | by2 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
 | exprs.kt:35:15:35:17 | byx | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
 | exprs.kt:35:15:35:23 | ... + ... | exprs.kt:4:1:142:1 | topLevelMethod | AddExpr |
 | exprs.kt:35:21:35:23 | byy | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
-| exprs.kt:36:5:36:23 | by3 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
+| exprs.kt:36:9:36:11 | by3 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
 | exprs.kt:36:15:36:17 | byx | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
 | exprs.kt:36:15:36:23 | ... - ... | exprs.kt:4:1:142:1 | topLevelMethod | SubExpr |
 | exprs.kt:36:21:36:23 | byy | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
-| exprs.kt:37:5:37:23 | by4 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
+| exprs.kt:37:9:37:11 | by4 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
 | exprs.kt:37:15:37:17 | byx | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
 | exprs.kt:37:15:37:23 | ... / ... | exprs.kt:4:1:142:1 | topLevelMethod | DivExpr |
 | exprs.kt:37:21:37:23 | byy | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
-| exprs.kt:38:5:38:23 | by5 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
+| exprs.kt:38:9:38:11 | by5 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
 | exprs.kt:38:15:38:17 | byx | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
 | exprs.kt:38:15:38:23 | ... % ... | exprs.kt:4:1:142:1 | topLevelMethod | RemExpr |
 | exprs.kt:38:21:38:23 | byy | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
-| exprs.kt:39:5:39:24 | by6 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
+| exprs.kt:39:9:39:11 | by6 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
 | exprs.kt:39:15:39:17 | byx | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
 | exprs.kt:39:15:39:17 | intValue(...) | exprs.kt:4:1:142:1 | topLevelMethod | MethodAccess |
 | exprs.kt:39:15:39:24 | ... (value equals) ... | exprs.kt:4:1:142:1 | topLevelMethod | ValueEQExpr |
 | exprs.kt:39:22:39:24 | byy | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
 | exprs.kt:39:22:39:24 | intValue(...) | exprs.kt:4:1:142:1 | topLevelMethod | MethodAccess |
-| exprs.kt:40:5:40:24 | by7 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
+| exprs.kt:40:9:40:11 | by7 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
 | exprs.kt:40:15:40:17 | byx | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
 | exprs.kt:40:15:40:17 | intValue(...) | exprs.kt:4:1:142:1 | topLevelMethod | MethodAccess |
 | exprs.kt:40:15:40:24 | ... (value not-equals) ... | exprs.kt:4:1:142:1 | topLevelMethod | ValueNEExpr |
 | exprs.kt:40:22:40:24 | byy | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
 | exprs.kt:40:22:40:24 | intValue(...) | exprs.kt:4:1:142:1 | topLevelMethod | MethodAccess |
-| exprs.kt:41:5:41:23 | by8 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
+| exprs.kt:41:9:41:11 | by8 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
 | exprs.kt:41:15:41:17 | byx | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
 | exprs.kt:41:15:41:17 | intValue(...) | exprs.kt:4:1:142:1 | topLevelMethod | MethodAccess |
 | exprs.kt:41:15:41:23 | ... < ... | exprs.kt:4:1:142:1 | topLevelMethod | LTExpr |
 | exprs.kt:41:21:41:23 | byy | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
 | exprs.kt:41:21:41:23 | intValue(...) | exprs.kt:4:1:142:1 | topLevelMethod | MethodAccess |
-| exprs.kt:42:5:42:24 | by9 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
+| exprs.kt:42:9:42:11 | by9 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
 | exprs.kt:42:15:42:17 | byx | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
 | exprs.kt:42:15:42:17 | intValue(...) | exprs.kt:4:1:142:1 | topLevelMethod | MethodAccess |
 | exprs.kt:42:15:42:24 | ... <= ... | exprs.kt:4:1:142:1 | topLevelMethod | LEExpr |
 | exprs.kt:42:22:42:24 | byy | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
 | exprs.kt:42:22:42:24 | intValue(...) | exprs.kt:4:1:142:1 | topLevelMethod | MethodAccess |
-| exprs.kt:43:5:43:24 | by10 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
+| exprs.kt:43:9:43:12 | by10 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
 | exprs.kt:43:16:43:18 | byx | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
 | exprs.kt:43:16:43:18 | intValue(...) | exprs.kt:4:1:142:1 | topLevelMethod | MethodAccess |
 | exprs.kt:43:16:43:24 | ... > ... | exprs.kt:4:1:142:1 | topLevelMethod | GTExpr |
 | exprs.kt:43:22:43:24 | byy | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
 | exprs.kt:43:22:43:24 | intValue(...) | exprs.kt:4:1:142:1 | topLevelMethod | MethodAccess |
-| exprs.kt:44:5:44:25 | by11 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
+| exprs.kt:44:9:44:12 | by11 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
 | exprs.kt:44:16:44:18 | byx | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
 | exprs.kt:44:16:44:18 | intValue(...) | exprs.kt:4:1:142:1 | topLevelMethod | MethodAccess |
 | exprs.kt:44:16:44:25 | ... >= ... | exprs.kt:4:1:142:1 | topLevelMethod | GEExpr |
 | exprs.kt:44:23:44:25 | byy | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
 | exprs.kt:44:23:44:25 | intValue(...) | exprs.kt:4:1:142:1 | topLevelMethod | MethodAccess |
-| exprs.kt:45:5:45:26 | by12 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
+| exprs.kt:45:9:45:12 | by12 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
 | exprs.kt:45:16:45:18 | byx | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
 | exprs.kt:45:16:45:26 | ... == ... | exprs.kt:4:1:142:1 | topLevelMethod | EQExpr |
 | exprs.kt:45:24:45:26 | byy | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
-| exprs.kt:46:5:46:26 | by13 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
+| exprs.kt:46:9:46:12 | by13 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
 | exprs.kt:46:16:46:18 | byx | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
 | exprs.kt:46:16:46:26 | ... != ... | exprs.kt:4:1:142:1 | topLevelMethod | NEExpr |
 | exprs.kt:46:24:46:26 | byy | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
-| exprs.kt:47:5:47:25 | by14 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
+| exprs.kt:47:9:47:12 | by14 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
 | exprs.kt:47:16:47:18 | byx | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
 | exprs.kt:47:16:47:25 | ... \| ... | exprs.kt:4:1:142:1 | topLevelMethod | OrBitwiseExpr |
 | exprs.kt:47:23:47:25 | byy | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
-| exprs.kt:48:5:48:26 | by15 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
+| exprs.kt:48:9:48:12 | by15 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
 | exprs.kt:48:16:48:18 | byx | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
 | exprs.kt:48:16:48:26 | ... & ... | exprs.kt:4:1:142:1 | topLevelMethod | AndBitwiseExpr |
 | exprs.kt:48:24:48:26 | byy | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
-| exprs.kt:49:5:49:26 | by16 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
+| exprs.kt:49:9:49:12 | by16 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
 | exprs.kt:49:16:49:18 | byx | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
 | exprs.kt:49:16:49:26 | ... ^ ... | exprs.kt:4:1:142:1 | topLevelMethod | XorBitwiseExpr |
 | exprs.kt:49:24:49:26 | byy | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
-| exprs.kt:51:5:51:16 | s1 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
+| exprs.kt:51:9:51:10 | s1 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
 | exprs.kt:51:14:51:16 | 1.0 | exprs.kt:4:1:142:1 | topLevelMethod | DoubleLiteral |
-| exprs.kt:52:5:52:20 | s2 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
+| exprs.kt:52:9:52:10 | s2 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
 | exprs.kt:52:14:52:15 | sx | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
 | exprs.kt:52:14:52:20 | ... + ... | exprs.kt:4:1:142:1 | topLevelMethod | AddExpr |
 | exprs.kt:52:19:52:20 | sy | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
-| exprs.kt:53:5:53:20 | s3 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
+| exprs.kt:53:9:53:10 | s3 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
 | exprs.kt:53:14:53:15 | sx | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
 | exprs.kt:53:14:53:20 | ... - ... | exprs.kt:4:1:142:1 | topLevelMethod | SubExpr |
 | exprs.kt:53:19:53:20 | sy | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
-| exprs.kt:54:5:54:20 | s4 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
+| exprs.kt:54:9:54:10 | s4 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
 | exprs.kt:54:14:54:15 | sx | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
 | exprs.kt:54:14:54:20 | ... / ... | exprs.kt:4:1:142:1 | topLevelMethod | DivExpr |
 | exprs.kt:54:19:54:20 | sy | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
-| exprs.kt:55:5:55:20 | s5 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
+| exprs.kt:55:9:55:10 | s5 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
 | exprs.kt:55:14:55:15 | sx | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
 | exprs.kt:55:14:55:20 | ... % ... | exprs.kt:4:1:142:1 | topLevelMethod | RemExpr |
 | exprs.kt:55:19:55:20 | sy | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
-| exprs.kt:56:5:56:21 | s6 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
+| exprs.kt:56:9:56:10 | s6 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
 | exprs.kt:56:14:56:15 | intValue(...) | exprs.kt:4:1:142:1 | topLevelMethod | MethodAccess |
 | exprs.kt:56:14:56:15 | sx | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
 | exprs.kt:56:14:56:21 | ... (value equals) ... | exprs.kt:4:1:142:1 | topLevelMethod | ValueEQExpr |
 | exprs.kt:56:20:56:21 | intValue(...) | exprs.kt:4:1:142:1 | topLevelMethod | MethodAccess |
 | exprs.kt:56:20:56:21 | sy | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
-| exprs.kt:57:5:57:21 | s7 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
+| exprs.kt:57:9:57:10 | s7 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
 | exprs.kt:57:14:57:15 | intValue(...) | exprs.kt:4:1:142:1 | topLevelMethod | MethodAccess |
 | exprs.kt:57:14:57:15 | sx | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
 | exprs.kt:57:14:57:21 | ... (value not-equals) ... | exprs.kt:4:1:142:1 | topLevelMethod | ValueNEExpr |
 | exprs.kt:57:20:57:21 | intValue(...) | exprs.kt:4:1:142:1 | topLevelMethod | MethodAccess |
 | exprs.kt:57:20:57:21 | sy | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
-| exprs.kt:58:5:58:20 | s8 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
+| exprs.kt:58:9:58:10 | s8 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
 | exprs.kt:58:14:58:15 | intValue(...) | exprs.kt:4:1:142:1 | topLevelMethod | MethodAccess |
 | exprs.kt:58:14:58:15 | sx | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
 | exprs.kt:58:14:58:20 | ... < ... | exprs.kt:4:1:142:1 | topLevelMethod | LTExpr |
 | exprs.kt:58:19:58:20 | intValue(...) | exprs.kt:4:1:142:1 | topLevelMethod | MethodAccess |
 | exprs.kt:58:19:58:20 | sy | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
-| exprs.kt:59:5:59:21 | s9 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
+| exprs.kt:59:9:59:10 | s9 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
 | exprs.kt:59:14:59:15 | intValue(...) | exprs.kt:4:1:142:1 | topLevelMethod | MethodAccess |
 | exprs.kt:59:14:59:15 | sx | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
 | exprs.kt:59:14:59:21 | ... <= ... | exprs.kt:4:1:142:1 | topLevelMethod | LEExpr |
 | exprs.kt:59:20:59:21 | intValue(...) | exprs.kt:4:1:142:1 | topLevelMethod | MethodAccess |
 | exprs.kt:59:20:59:21 | sy | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
-| exprs.kt:60:5:60:21 | s10 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
+| exprs.kt:60:9:60:11 | s10 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
 | exprs.kt:60:15:60:16 | intValue(...) | exprs.kt:4:1:142:1 | topLevelMethod | MethodAccess |
 | exprs.kt:60:15:60:16 | sx | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
 | exprs.kt:60:15:60:21 | ... > ... | exprs.kt:4:1:142:1 | topLevelMethod | GTExpr |
 | exprs.kt:60:20:60:21 | intValue(...) | exprs.kt:4:1:142:1 | topLevelMethod | MethodAccess |
 | exprs.kt:60:20:60:21 | sy | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
-| exprs.kt:61:5:61:22 | s11 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
+| exprs.kt:61:9:61:11 | s11 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
 | exprs.kt:61:15:61:16 | intValue(...) | exprs.kt:4:1:142:1 | topLevelMethod | MethodAccess |
 | exprs.kt:61:15:61:16 | sx | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
 | exprs.kt:61:15:61:22 | ... >= ... | exprs.kt:4:1:142:1 | topLevelMethod | GEExpr |
 | exprs.kt:61:21:61:22 | intValue(...) | exprs.kt:4:1:142:1 | topLevelMethod | MethodAccess |
 | exprs.kt:61:21:61:22 | sy | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
-| exprs.kt:62:5:62:23 | s12 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
+| exprs.kt:62:9:62:11 | s12 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
 | exprs.kt:62:15:62:16 | sx | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
 | exprs.kt:62:15:62:23 | ... == ... | exprs.kt:4:1:142:1 | topLevelMethod | EQExpr |
 | exprs.kt:62:22:62:23 | sy | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
-| exprs.kt:63:5:63:23 | s13 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
+| exprs.kt:63:9:63:11 | s13 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
 | exprs.kt:63:15:63:16 | sx | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
 | exprs.kt:63:15:63:23 | ... != ... | exprs.kt:4:1:142:1 | topLevelMethod | NEExpr |
 | exprs.kt:63:22:63:23 | sy | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
-| exprs.kt:64:5:64:22 | s14 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
+| exprs.kt:64:9:64:11 | s14 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
 | exprs.kt:64:15:64:16 | sx | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
 | exprs.kt:64:15:64:22 | ... \| ... | exprs.kt:4:1:142:1 | topLevelMethod | OrBitwiseExpr |
 | exprs.kt:64:21:64:22 | sy | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
-| exprs.kt:65:5:65:23 | s15 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
+| exprs.kt:65:9:65:11 | s15 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
 | exprs.kt:65:15:65:16 | sx | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
 | exprs.kt:65:15:65:23 | ... & ... | exprs.kt:4:1:142:1 | topLevelMethod | AndBitwiseExpr |
 | exprs.kt:65:22:65:23 | sy | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
-| exprs.kt:66:5:66:23 | s16 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
+| exprs.kt:66:9:66:11 | s16 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
 | exprs.kt:66:15:66:16 | sx | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
 | exprs.kt:66:15:66:23 | ... ^ ... | exprs.kt:4:1:142:1 | topLevelMethod | XorBitwiseExpr |
 | exprs.kt:66:22:66:23 | sy | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
-| exprs.kt:68:5:68:16 | l1 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
+| exprs.kt:68:9:68:10 | l1 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
 | exprs.kt:68:14:68:16 | 1.0 | exprs.kt:4:1:142:1 | topLevelMethod | DoubleLiteral |
-| exprs.kt:69:5:69:20 | l2 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
+| exprs.kt:69:9:69:10 | l2 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
 | exprs.kt:69:14:69:15 | lx | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
 | exprs.kt:69:14:69:20 | ... + ... | exprs.kt:4:1:142:1 | topLevelMethod | AddExpr |
 | exprs.kt:69:19:69:20 | ly | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
-| exprs.kt:70:5:70:20 | l3 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
+| exprs.kt:70:9:70:10 | l3 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
 | exprs.kt:70:14:70:15 | lx | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
 | exprs.kt:70:14:70:20 | ... - ... | exprs.kt:4:1:142:1 | topLevelMethod | SubExpr |
 | exprs.kt:70:19:70:20 | ly | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
-| exprs.kt:71:5:71:20 | l4 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
+| exprs.kt:71:9:71:10 | l4 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
 | exprs.kt:71:14:71:15 | lx | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
 | exprs.kt:71:14:71:20 | ... / ... | exprs.kt:4:1:142:1 | topLevelMethod | DivExpr |
 | exprs.kt:71:19:71:20 | ly | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
-| exprs.kt:72:5:72:20 | l5 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
+| exprs.kt:72:9:72:10 | l5 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
 | exprs.kt:72:14:72:15 | lx | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
 | exprs.kt:72:14:72:20 | ... % ... | exprs.kt:4:1:142:1 | topLevelMethod | RemExpr |
 | exprs.kt:72:19:72:20 | ly | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
-| exprs.kt:73:5:73:21 | l6 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
+| exprs.kt:73:9:73:10 | l6 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
 | exprs.kt:73:14:73:15 | lx | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
 | exprs.kt:73:14:73:21 | ... << ... | exprs.kt:4:1:142:1 | topLevelMethod | LShiftExpr |
 | exprs.kt:73:21:73:21 | y | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
-| exprs.kt:74:5:74:21 | l7 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
+| exprs.kt:74:9:74:10 | l7 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
 | exprs.kt:74:14:74:15 | lx | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
 | exprs.kt:74:14:74:21 | ... >> ... | exprs.kt:4:1:142:1 | topLevelMethod | RShiftExpr |
 | exprs.kt:74:21:74:21 | y | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
-| exprs.kt:75:5:75:22 | l8 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
+| exprs.kt:75:9:75:10 | l8 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
 | exprs.kt:75:14:75:15 | lx | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
 | exprs.kt:75:14:75:22 | ... >>> ... | exprs.kt:4:1:142:1 | topLevelMethod | URShiftExpr |
 | exprs.kt:75:22:75:22 | y | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
-| exprs.kt:76:5:76:22 | l9 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
+| exprs.kt:76:9:76:10 | l9 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
 | exprs.kt:76:14:76:15 | lx | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
 | exprs.kt:76:14:76:22 | ... & ... | exprs.kt:4:1:142:1 | topLevelMethod | AndBitwiseExpr |
 | exprs.kt:76:21:76:22 | ly | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
-| exprs.kt:77:5:77:22 | l10 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
+| exprs.kt:77:9:77:11 | l10 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
 | exprs.kt:77:15:77:16 | lx | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
 | exprs.kt:77:15:77:22 | ... \| ... | exprs.kt:4:1:142:1 | topLevelMethod | OrBitwiseExpr |
 | exprs.kt:77:21:77:22 | ly | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
-| exprs.kt:78:5:78:23 | l11 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
+| exprs.kt:78:9:78:11 | l11 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
 | exprs.kt:78:15:78:16 | lx | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
 | exprs.kt:78:15:78:23 | ... ^ ... | exprs.kt:4:1:142:1 | topLevelMethod | XorBitwiseExpr |
 | exprs.kt:78:22:78:23 | ly | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
-| exprs.kt:79:5:79:22 | l12 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
+| exprs.kt:79:9:79:11 | l12 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
 | exprs.kt:79:15:79:16 | lx | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
 | exprs.kt:79:15:79:22 | ~... | exprs.kt:4:1:142:1 | topLevelMethod | BitNotExpr |
-| exprs.kt:80:5:80:22 | l13 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
+| exprs.kt:80:9:80:11 | l13 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
 | exprs.kt:80:15:80:16 | lx | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
 | exprs.kt:80:15:80:22 | ... (value equals) ... | exprs.kt:4:1:142:1 | topLevelMethod | ValueEQExpr |
 | exprs.kt:80:21:80:22 | ly | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
-| exprs.kt:81:5:81:22 | l14 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
+| exprs.kt:81:9:81:11 | l14 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
 | exprs.kt:81:15:81:16 | lx | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
 | exprs.kt:81:15:81:22 | ... (value not-equals) ... | exprs.kt:4:1:142:1 | topLevelMethod | ValueNEExpr |
 | exprs.kt:81:21:81:22 | ly | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
-| exprs.kt:82:5:82:21 | l15 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
+| exprs.kt:82:9:82:11 | l15 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
 | exprs.kt:82:15:82:16 | lx | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
 | exprs.kt:82:15:82:21 | ... < ... | exprs.kt:4:1:142:1 | topLevelMethod | LTExpr |
 | exprs.kt:82:20:82:21 | ly | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
-| exprs.kt:83:5:83:22 | l16 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
+| exprs.kt:83:9:83:11 | l16 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
 | exprs.kt:83:15:83:16 | lx | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
 | exprs.kt:83:15:83:22 | ... <= ... | exprs.kt:4:1:142:1 | topLevelMethod | LEExpr |
 | exprs.kt:83:21:83:22 | ly | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
-| exprs.kt:84:5:84:21 | l17 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
+| exprs.kt:84:9:84:11 | l17 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
 | exprs.kt:84:15:84:16 | lx | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
 | exprs.kt:84:15:84:21 | ... > ... | exprs.kt:4:1:142:1 | topLevelMethod | GTExpr |
 | exprs.kt:84:20:84:21 | ly | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
-| exprs.kt:85:5:85:22 | l18 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
+| exprs.kt:85:9:85:11 | l18 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
 | exprs.kt:85:15:85:16 | lx | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
 | exprs.kt:85:15:85:22 | ... >= ... | exprs.kt:4:1:142:1 | topLevelMethod | GEExpr |
 | exprs.kt:85:21:85:22 | ly | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
-| exprs.kt:86:5:86:23 | l19 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
+| exprs.kt:86:9:86:11 | l19 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
 | exprs.kt:86:15:86:16 | lx | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
 | exprs.kt:86:15:86:23 | ... == ... | exprs.kt:4:1:142:1 | topLevelMethod | EQExpr |
 | exprs.kt:86:22:86:23 | ly | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
-| exprs.kt:87:5:87:23 | l20 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
+| exprs.kt:87:9:87:11 | l20 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
 | exprs.kt:87:15:87:16 | lx | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
 | exprs.kt:87:15:87:23 | ... != ... | exprs.kt:4:1:142:1 | topLevelMethod | NEExpr |
 | exprs.kt:87:22:87:23 | ly | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
-| exprs.kt:89:5:89:16 | d1 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
+| exprs.kt:89:9:89:10 | d1 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
 | exprs.kt:89:14:89:16 | 1.0 | exprs.kt:4:1:142:1 | topLevelMethod | DoubleLiteral |
-| exprs.kt:90:5:90:20 | d2 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
+| exprs.kt:90:9:90:10 | d2 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
 | exprs.kt:90:14:90:15 | dx | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
 | exprs.kt:90:14:90:20 | ... + ... | exprs.kt:4:1:142:1 | topLevelMethod | AddExpr |
 | exprs.kt:90:19:90:20 | dy | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
-| exprs.kt:91:5:91:20 | d3 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
+| exprs.kt:91:9:91:10 | d3 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
 | exprs.kt:91:14:91:15 | dx | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
 | exprs.kt:91:14:91:20 | ... - ... | exprs.kt:4:1:142:1 | topLevelMethod | SubExpr |
 | exprs.kt:91:19:91:20 | dy | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
-| exprs.kt:92:5:92:20 | d4 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
+| exprs.kt:92:9:92:10 | d4 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
 | exprs.kt:92:14:92:15 | dx | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
 | exprs.kt:92:14:92:20 | ... / ... | exprs.kt:4:1:142:1 | topLevelMethod | DivExpr |
 | exprs.kt:92:19:92:20 | dy | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
-| exprs.kt:93:5:93:20 | d5 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
+| exprs.kt:93:9:93:10 | d5 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
 | exprs.kt:93:14:93:15 | dx | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
 | exprs.kt:93:14:93:20 | ... % ... | exprs.kt:4:1:142:1 | topLevelMethod | RemExpr |
 | exprs.kt:93:19:93:20 | dy | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
-| exprs.kt:94:5:94:21 | d6 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
+| exprs.kt:94:9:94:10 | d6 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
 | exprs.kt:94:14:94:15 | dx | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
 | exprs.kt:94:14:94:21 | ... == ... | exprs.kt:4:1:142:1 | topLevelMethod | EQExpr |
 | exprs.kt:94:20:94:21 | dy | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
-| exprs.kt:95:5:95:21 | d7 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
+| exprs.kt:95:9:95:10 | d7 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
 | exprs.kt:95:14:95:15 | dx | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
 | exprs.kt:95:14:95:21 | ... != ... | exprs.kt:4:1:142:1 | topLevelMethod | NEExpr |
 | exprs.kt:95:20:95:21 | dy | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
-| exprs.kt:96:5:96:20 | d8 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
+| exprs.kt:96:9:96:10 | d8 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
 | exprs.kt:96:14:96:15 | dx | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
 | exprs.kt:96:14:96:20 | ... < ... | exprs.kt:4:1:142:1 | topLevelMethod | LTExpr |
 | exprs.kt:96:19:96:20 | dy | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
-| exprs.kt:97:5:97:21 | d9 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
+| exprs.kt:97:9:97:10 | d9 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
 | exprs.kt:97:14:97:15 | dx | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
 | exprs.kt:97:14:97:21 | ... <= ... | exprs.kt:4:1:142:1 | topLevelMethod | LEExpr |
 | exprs.kt:97:20:97:21 | dy | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
-| exprs.kt:98:5:98:21 | d10 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
+| exprs.kt:98:9:98:11 | d10 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
 | exprs.kt:98:15:98:16 | dx | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
 | exprs.kt:98:15:98:21 | ... > ... | exprs.kt:4:1:142:1 | topLevelMethod | GTExpr |
 | exprs.kt:98:20:98:21 | dy | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
-| exprs.kt:99:5:99:22 | d11 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
+| exprs.kt:99:9:99:11 | d11 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
 | exprs.kt:99:15:99:16 | dx | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
 | exprs.kt:99:15:99:22 | ... >= ... | exprs.kt:4:1:142:1 | topLevelMethod | GEExpr |
 | exprs.kt:99:21:99:22 | dy | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
-| exprs.kt:100:5:100:23 | d12 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
+| exprs.kt:100:9:100:11 | d12 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
 | exprs.kt:100:15:100:16 | dx | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
 | exprs.kt:100:15:100:23 | ... == ... | exprs.kt:4:1:142:1 | topLevelMethod | EQExpr |
 | exprs.kt:100:22:100:23 | dy | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
-| exprs.kt:101:5:101:23 | d13 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
+| exprs.kt:101:9:101:11 | d13 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
 | exprs.kt:101:15:101:16 | dx | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
 | exprs.kt:101:15:101:23 | ... != ... | exprs.kt:4:1:142:1 | topLevelMethod | NEExpr |
 | exprs.kt:101:22:101:23 | dy | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
-| exprs.kt:103:5:103:16 | f1 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
+| exprs.kt:103:9:103:10 | f1 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
 | exprs.kt:103:14:103:16 | 1.0 | exprs.kt:4:1:142:1 | topLevelMethod | DoubleLiteral |
-| exprs.kt:104:5:104:20 | f2 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
+| exprs.kt:104:9:104:10 | f2 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
 | exprs.kt:104:14:104:15 | fx | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
 | exprs.kt:104:14:104:20 | ... + ... | exprs.kt:4:1:142:1 | topLevelMethod | AddExpr |
 | exprs.kt:104:19:104:20 | fy | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
-| exprs.kt:105:5:105:20 | f3 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
+| exprs.kt:105:9:105:10 | f3 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
 | exprs.kt:105:14:105:15 | fx | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
 | exprs.kt:105:14:105:20 | ... - ... | exprs.kt:4:1:142:1 | topLevelMethod | SubExpr |
 | exprs.kt:105:19:105:20 | fy | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
-| exprs.kt:106:5:106:20 | f4 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
+| exprs.kt:106:9:106:10 | f4 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
 | exprs.kt:106:14:106:15 | fx | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
 | exprs.kt:106:14:106:20 | ... / ... | exprs.kt:4:1:142:1 | topLevelMethod | DivExpr |
 | exprs.kt:106:19:106:20 | fy | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
-| exprs.kt:107:5:107:20 | f5 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
+| exprs.kt:107:9:107:10 | f5 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
 | exprs.kt:107:14:107:15 | fx | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
 | exprs.kt:107:14:107:20 | ... % ... | exprs.kt:4:1:142:1 | topLevelMethod | RemExpr |
 | exprs.kt:107:19:107:20 | fy | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
-| exprs.kt:108:5:108:21 | f6 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
+| exprs.kt:108:9:108:10 | f6 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
 | exprs.kt:108:14:108:15 | fx | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
 | exprs.kt:108:14:108:21 | ... == ... | exprs.kt:4:1:142:1 | topLevelMethod | EQExpr |
 | exprs.kt:108:20:108:21 | fy | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
-| exprs.kt:109:5:109:21 | f7 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
+| exprs.kt:109:9:109:10 | f7 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
 | exprs.kt:109:14:109:15 | fx | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
 | exprs.kt:109:14:109:21 | ... != ... | exprs.kt:4:1:142:1 | topLevelMethod | NEExpr |
 | exprs.kt:109:20:109:21 | fy | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
-| exprs.kt:110:5:110:20 | f8 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
+| exprs.kt:110:9:110:10 | f8 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
 | exprs.kt:110:14:110:15 | fx | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
 | exprs.kt:110:14:110:20 | ... < ... | exprs.kt:4:1:142:1 | topLevelMethod | LTExpr |
 | exprs.kt:110:19:110:20 | fy | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
-| exprs.kt:111:5:111:21 | f9 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
+| exprs.kt:111:9:111:10 | f9 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
 | exprs.kt:111:14:111:15 | fx | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
 | exprs.kt:111:14:111:21 | ... <= ... | exprs.kt:4:1:142:1 | topLevelMethod | LEExpr |
 | exprs.kt:111:20:111:21 | fy | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
-| exprs.kt:112:5:112:21 | f10 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
+| exprs.kt:112:9:112:11 | f10 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
 | exprs.kt:112:15:112:16 | fx | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
 | exprs.kt:112:15:112:21 | ... > ... | exprs.kt:4:1:142:1 | topLevelMethod | GTExpr |
 | exprs.kt:112:20:112:21 | fy | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
-| exprs.kt:113:5:113:22 | f11 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
+| exprs.kt:113:9:113:11 | f11 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
 | exprs.kt:113:15:113:16 | fx | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
 | exprs.kt:113:15:113:22 | ... >= ... | exprs.kt:4:1:142:1 | topLevelMethod | GEExpr |
 | exprs.kt:113:21:113:22 | fy | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
-| exprs.kt:114:5:114:23 | f12 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
+| exprs.kt:114:9:114:11 | f12 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
 | exprs.kt:114:15:114:16 | fx | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
 | exprs.kt:114:15:114:23 | ... == ... | exprs.kt:4:1:142:1 | topLevelMethod | EQExpr |
 | exprs.kt:114:22:114:23 | fy | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
-| exprs.kt:115:5:115:23 | f13 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
+| exprs.kt:115:9:115:11 | f13 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
 | exprs.kt:115:15:115:16 | fx | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
 | exprs.kt:115:15:115:23 | ... != ... | exprs.kt:4:1:142:1 | topLevelMethod | NEExpr |
 | exprs.kt:115:22:115:23 | fy | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
-| exprs.kt:117:5:117:17 | b1 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
+| exprs.kt:117:9:117:10 | b1 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
 | exprs.kt:117:14:117:17 | true | exprs.kt:4:1:142:1 | topLevelMethod | BooleanLiteral |
-| exprs.kt:118:5:118:18 | b2 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
+| exprs.kt:118:9:118:10 | b2 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
 | exprs.kt:118:14:118:18 | false | exprs.kt:4:1:142:1 | topLevelMethod | BooleanLiteral |
-| exprs.kt:119:5:119:21 | b3 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
+| exprs.kt:119:9:119:10 | b3 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
 | exprs.kt:119:14:119:15 | b1 | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
 | exprs.kt:119:14:119:21 | ... && ... | exprs.kt:4:1:142:1 | topLevelMethod | AndLogicalExpr |
 | exprs.kt:119:20:119:21 | b2 | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
-| exprs.kt:120:5:120:21 | b4 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
+| exprs.kt:120:9:120:10 | b4 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
 | exprs.kt:120:14:120:15 | b1 | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
 | exprs.kt:120:14:120:21 | ... \|\| ... | exprs.kt:4:1:142:1 | topLevelMethod | OrLogicalExpr |
 | exprs.kt:120:20:120:21 | b2 | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
-| exprs.kt:121:5:121:16 | b5 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
+| exprs.kt:121:9:121:10 | b5 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
 | exprs.kt:121:14:121:16 | !... | exprs.kt:4:1:142:1 | topLevelMethod | LogNotExpr |
 | exprs.kt:121:15:121:16 | b1 | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
-| exprs.kt:123:5:123:15 | c | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
+| exprs.kt:123:9:123:9 | c | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
 | exprs.kt:123:13:123:15 | x | exprs.kt:4:1:142:1 | topLevelMethod | CharacterLiteral |
-| exprs.kt:124:5:124:26 | str | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
+| exprs.kt:124:9:124:11 | str | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
 | exprs.kt:124:16:124:25 | "string lit" | exprs.kt:4:1:142:1 | topLevelMethod | StringLiteral |
-| exprs.kt:125:5:125:38 | strWithQuote | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
+| exprs.kt:125:9:125:20 | strWithQuote | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
 | exprs.kt:125:25:125:37 | "string \\" lit" | exprs.kt:4:1:142:1 | topLevelMethod | StringLiteral |
-| exprs.kt:126:5:126:22 | b6 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
+| exprs.kt:126:9:126:10 | b6 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
 | exprs.kt:126:14:126:15 | i1 | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
 | exprs.kt:126:14:126:22 | ...instanceof... | exprs.kt:4:1:142:1 | topLevelMethod | InstanceOfExpr |
 | exprs.kt:126:14:126:22 | int | exprs.kt:4:1:142:1 | topLevelMethod | TypeAccess |
-| exprs.kt:127:5:127:23 | b7 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
+| exprs.kt:127:9:127:10 | b7 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
 | exprs.kt:127:14:127:15 | i1 | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
 | exprs.kt:127:14:127:23 | ... !is ... | exprs.kt:4:1:142:1 | topLevelMethod | NotInstanceOfExpr |
 | exprs.kt:127:14:127:23 | int | exprs.kt:4:1:142:1 | topLevelMethod | TypeAccess |
-| exprs.kt:128:5:128:26 | b8 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
+| exprs.kt:128:9:128:10 | b8 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
 | exprs.kt:128:14:128:15 | b7 | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
 | exprs.kt:128:14:128:26 | (...)... | exprs.kt:4:1:142:1 | topLevelMethod | CastExpr |
 | exprs.kt:128:14:128:26 | boolean | exprs.kt:4:1:142:1 | topLevelMethod | TypeAccess |
-| exprs.kt:129:5:129:35 | str1 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
+| exprs.kt:129:9:129:12 | str1 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
 | exprs.kt:129:25:129:34 | "string lit" | exprs.kt:4:1:142:1 | topLevelMethod | StringLiteral |
-| exprs.kt:130:5:130:36 | str2 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
+| exprs.kt:130:9:130:12 | str2 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
 | exprs.kt:130:26:130:35 | "string lit" | exprs.kt:4:1:142:1 | topLevelMethod | StringLiteral |
-| exprs.kt:131:5:131:28 | str3 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
+| exprs.kt:131:9:131:12 | str3 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
 | exprs.kt:131:25:131:28 | null | exprs.kt:4:1:142:1 | topLevelMethod | NullLiteral |
-| exprs.kt:132:5:132:48 | str4 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
+| exprs.kt:132:9:132:12 | str4 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
 | exprs.kt:132:24:132:48 | "..." | exprs.kt:4:1:142:1 | topLevelMethod | StringTemplateExpr |
 | exprs.kt:132:25:132:28 | "foo " | exprs.kt:4:1:142:1 | topLevelMethod | StringLiteral |
 | exprs.kt:132:30:132:33 | str1 | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
 | exprs.kt:132:34:132:38 | " bar " | exprs.kt:4:1:142:1 | topLevelMethod | StringLiteral |
 | exprs.kt:132:40:132:43 | str2 | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
 | exprs.kt:132:44:132:47 | " baz" | exprs.kt:4:1:142:1 | topLevelMethod | StringLiteral |
-| exprs.kt:133:5:133:66 | str5 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
+| exprs.kt:133:9:133:12 | str5 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
 | exprs.kt:133:24:133:66 | "..." | exprs.kt:4:1:142:1 | topLevelMethod | StringTemplateExpr |
 | exprs.kt:133:25:133:28 | "foo " | exprs.kt:4:1:142:1 | topLevelMethod | StringLiteral |
 | exprs.kt:133:31:133:34 | str1 | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
@@ -1377,11 +1377,11 @@
 | exprs.kt:133:50:133:60 | stringPlus(...) | exprs.kt:4:1:142:1 | topLevelMethod | MethodAccess |
 | exprs.kt:133:57:133:60 | str1 | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
 | exprs.kt:133:62:133:65 | " baz" | exprs.kt:4:1:142:1 | topLevelMethod | StringLiteral |
-| exprs.kt:134:5:134:26 | str6 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
+| exprs.kt:134:9:134:12 | str6 | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
 | exprs.kt:134:16:134:19 | str1 | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
 | exprs.kt:134:16:134:26 | ... + ... | exprs.kt:4:1:142:1 | topLevelMethod | AddExpr |
 | exprs.kt:134:23:134:26 | str2 | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
-| exprs.kt:136:5:136:21 | variable | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
+| exprs.kt:136:9:136:16 | variable | exprs.kt:4:1:142:1 | topLevelMethod | LocalVariableDeclExpr |
 | exprs.kt:136:20:136:21 | 10 | exprs.kt:4:1:142:1 | topLevelMethod | IntegerLiteral |
 | exprs.kt:137:12:137:19 | variable | exprs.kt:4:1:142:1 | topLevelMethod | VarAccess |
 | exprs.kt:137:12:137:23 | ... > ... | exprs.kt:4:1:142:1 | topLevelMethod | GTExpr |
@@ -1400,7 +1400,7 @@
 | exprs.kt:141:12:141:20 | ... + ... | exprs.kt:4:1:142:1 | topLevelMethod | AddExpr |
 | exprs.kt:141:18:141:20 | 456 | exprs.kt:4:1:142:1 | topLevelMethod | IntegerLiteral |
 | exprs.kt:144:1:146:1 | Unit | file://:0:0:0:0 | <none> | TypeAccess |
-| exprs.kt:145:5:145:23 | d | exprs.kt:144:1:146:1 | getClass | LocalVariableDeclExpr |
+| exprs.kt:145:9:145:9 | d | exprs.kt:144:1:146:1 | getClass | LocalVariableDeclExpr |
 | exprs.kt:145:13:145:16 | true | exprs.kt:144:1:146:1 | getClass | BooleanLiteral |
 | exprs.kt:145:13:145:23 | ::class | exprs.kt:144:1:146:1 | getClass | ClassExpr |
 | exprs.kt:148:9:148:18 | ...=... | exprs.kt:148:1:150:1 | C | KtInitializerAssignExpr |
@@ -1422,11 +1422,11 @@
 | exprs.kt:157:8:157:8 | x | exprs.kt:156:1:163:1 | typeTests | VarAccess |
 | exprs.kt:157:8:157:21 | ...instanceof... | exprs.kt:156:1:163:1 | typeTests | InstanceOfExpr |
 | exprs.kt:157:8:157:21 | Subclass1 | exprs.kt:156:1:163:1 | typeTests | TypeAccess |
-| exprs.kt:158:9:158:29 | x1 | exprs.kt:156:1:163:1 | typeTests | LocalVariableDeclExpr |
+| exprs.kt:158:13:158:14 | x1 | exprs.kt:156:1:163:1 | typeTests | LocalVariableDeclExpr |
 | exprs.kt:158:29:158:29 | <implicit cast> | exprs.kt:156:1:163:1 | typeTests | ImplicitCastExpr |
 | exprs.kt:158:29:158:29 | Subclass1 | exprs.kt:156:1:163:1 | typeTests | TypeAccess |
 | exprs.kt:158:29:158:29 | x | exprs.kt:156:1:163:1 | typeTests | VarAccess |
-| exprs.kt:160:5:160:60 | y1 | exprs.kt:156:1:163:1 | typeTests | LocalVariableDeclExpr |
+| exprs.kt:160:9:160:10 | y1 | exprs.kt:156:1:163:1 | typeTests | LocalVariableDeclExpr |
 | exprs.kt:160:25:160:60 | true | exprs.kt:156:1:163:1 | typeTests | BooleanLiteral |
 | exprs.kt:160:25:160:60 | when ... | exprs.kt:156:1:163:1 | typeTests | WhenExpr |
 | exprs.kt:160:29:160:29 | x | exprs.kt:156:1:163:1 | typeTests | VarAccess |
@@ -1437,7 +1437,7 @@
 | exprs.kt:160:45:160:49 | Subclass1 | exprs.kt:156:1:163:1 | typeTests | TypeAccess |
 | exprs.kt:160:47:160:47 | x | exprs.kt:156:1:163:1 | typeTests | VarAccess |
 | exprs.kt:160:58:160:58 | y | exprs.kt:156:1:163:1 | typeTests | VarAccess |
-| exprs.kt:161:5:161:13 | q | exprs.kt:156:1:163:1 | typeTests | LocalVariableDeclExpr |
+| exprs.kt:161:9:161:9 | q | exprs.kt:156:1:163:1 | typeTests | LocalVariableDeclExpr |
 | exprs.kt:161:13:161:13 | 1 | exprs.kt:156:1:163:1 | typeTests | IntegerLiteral |
 | exprs.kt:162:5:162:48 | true | exprs.kt:156:1:163:1 | typeTests | BooleanLiteral |
 | exprs.kt:162:5:162:48 | when ... | exprs.kt:156:1:163:1 | typeTests | WhenExpr |
@@ -1452,18 +1452,18 @@
 | exprs.kt:162:46:162:46 | 3 | exprs.kt:156:1:163:1 | typeTests | IntegerLiteral |
 | exprs.kt:165:1:172:1 | Unit | file://:0:0:0:0 | <none> | TypeAccess |
 | exprs.kt:165:9:165:18 | Polygon | file://:0:0:0:0 | <none> | TypeAccess |
-| exprs.kt:166:5:166:25 | r | exprs.kt:165:1:172:1 | foo | LocalVariableDeclExpr |
+| exprs.kt:166:9:166:9 | r | exprs.kt:165:1:172:1 | foo | LocalVariableDeclExpr |
 | exprs.kt:166:13:166:13 | p | exprs.kt:165:1:172:1 | foo | VarAccess |
 | exprs.kt:166:13:166:25 | getBounds(...) | exprs.kt:165:1:172:1 | foo | MethodAccess |
 | exprs.kt:167:5:171:5 | when ... | exprs.kt:165:1:172:1 | foo | WhenExpr |
 | exprs.kt:167:8:167:8 | r | exprs.kt:165:1:172:1 | foo | VarAccess |
 | exprs.kt:167:8:167:16 | ... (value not-equals) ... | exprs.kt:165:1:172:1 | foo | ValueNEExpr |
 | exprs.kt:167:13:167:16 | null | exprs.kt:165:1:172:1 | foo | NullLiteral |
-| exprs.kt:168:9:168:29 | r2 | exprs.kt:165:1:172:1 | foo | LocalVariableDeclExpr |
+| exprs.kt:168:13:168:14 | r2 | exprs.kt:165:1:172:1 | foo | LocalVariableDeclExpr |
 | exprs.kt:168:29:168:29 | <implicit not null> | exprs.kt:165:1:172:1 | foo | ImplicitNotNullExpr |
 | exprs.kt:168:29:168:29 | Rectangle | exprs.kt:165:1:172:1 | foo | TypeAccess |
 | exprs.kt:168:29:168:29 | r | exprs.kt:165:1:172:1 | foo | VarAccess |
-| exprs.kt:169:9:169:30 | height | exprs.kt:165:1:172:1 | foo | LocalVariableDeclExpr |
+| exprs.kt:169:13:169:18 | height | exprs.kt:165:1:172:1 | foo | LocalVariableDeclExpr |
 | exprs.kt:169:22:169:23 | r2 | exprs.kt:165:1:172:1 | foo | VarAccess |
 | exprs.kt:169:25:169:30 | r2.height | exprs.kt:165:1:172:1 | foo | VarAccess |
 | exprs.kt:170:9:170:10 | r2 | exprs.kt:165:1:172:1 | foo | VarAccess |
@@ -1534,10 +1534,10 @@
 | exprs.kt:181:5:181:18 | new Color(...) | exprs.kt:0:0:0:0 | <clinit> | ClassInstanceExpr |
 | exprs.kt:181:10:181:17 | 255 | exprs.kt:0:0:0:0 | <clinit> | IntegerLiteral |
 | exprs.kt:184:1:187:1 | Unit | file://:0:0:0:0 | <none> | TypeAccess |
-| exprs.kt:185:5:185:31 | south | exprs.kt:184:1:187:1 | enums | LocalVariableDeclExpr |
+| exprs.kt:185:9:185:13 | south | exprs.kt:184:1:187:1 | enums | LocalVariableDeclExpr |
 | exprs.kt:185:27:185:31 | Direction | exprs.kt:184:1:187:1 | enums | TypeAccess |
 | exprs.kt:185:27:185:31 | Direction.SOUTH | exprs.kt:184:1:187:1 | enums | VarAccess |
-| exprs.kt:186:5:186:27 | green | exprs.kt:184:1:187:1 | enums | LocalVariableDeclExpr |
+| exprs.kt:186:9:186:13 | green | exprs.kt:184:1:187:1 | enums | LocalVariableDeclExpr |
 | exprs.kt:186:23:186:27 | Color | exprs.kt:184:1:187:1 | enums | TypeAccess |
 | exprs.kt:186:23:186:27 | Color.GREEN | exprs.kt:184:1:187:1 | enums | VarAccess |
 | exprs.kt:192:5:192:14 | ...=... | exprs.kt:191:1:199:1 | Class1 | KtInitializerAssignExpr |
@@ -1548,7 +1548,7 @@
 | exprs.kt:192:5:192:14 | this.a1 | exprs.kt:192:5:192:14 | getA1 | VarAccess |
 | exprs.kt:192:14:192:14 | 1 | exprs.kt:191:1:199:1 | Class1 | IntegerLiteral |
 | exprs.kt:193:13:198:5 | Object | file://:0:0:0:0 | <none> | TypeAccess |
-| exprs.kt:194:9:194:18 | a2 | exprs.kt:193:13:198:5 | getObject | LocalVariableDeclExpr |
+| exprs.kt:194:13:194:14 | a2 | exprs.kt:193:13:198:5 | getObject | LocalVariableDeclExpr |
 | exprs.kt:194:18:194:18 | 2 | exprs.kt:193:13:198:5 | getObject | IntegerLiteral |
 | exprs.kt:195:16:197:9 | <Stmt> | exprs.kt:193:13:198:5 | getObject | StmtExpr |
 | exprs.kt:195:16:197:9 | Interface1 | exprs.kt:193:13:198:5 | getObject | TypeAccess |
@@ -1566,47 +1566,47 @@
 | exprs.kt:196:36:196:37 | a2 | exprs.kt:195:16:197:9 |  | VarAccess |
 | exprs.kt:201:1:203:1 | Unit | file://:0:0:0:0 | <none> | TypeAccess |
 | exprs.kt:201:22:201:28 | Object | file://:0:0:0:0 | <none> | TypeAccess |
-| exprs.kt:202:5:202:20 | y | exprs.kt:201:1:203:1 | notNullAssertion | LocalVariableDeclExpr |
+| exprs.kt:202:9:202:9 | y | exprs.kt:201:1:203:1 | notNullAssertion | LocalVariableDeclExpr |
 | exprs.kt:202:18:202:18 | x | exprs.kt:201:1:203:1 | notNullAssertion | VarAccess |
 | exprs.kt:202:19:202:20 | ...!! | exprs.kt:201:1:203:1 | notNullAssertion | NotNullExpr |
 | exprs.kt:206:5:217:5 | Unit | file://:0:0:0:0 | <none> | TypeAccess |
 | exprs.kt:206:11:206:18 | Object | file://:0:0:0:0 | <none> | TypeAccess |
 | exprs.kt:206:21:206:30 | String | file://:0:0:0:0 | <none> | TypeAccess |
-| exprs.kt:208:9:208:29 | a | exprs.kt:206:5:217:5 | x | LocalVariableDeclExpr |
+| exprs.kt:208:13:208:13 | a | exprs.kt:206:5:217:5 | x | LocalVariableDeclExpr |
 | exprs.kt:208:17:208:18 | aa | exprs.kt:206:5:217:5 | x | VarAccess |
 | exprs.kt:208:17:208:29 | String | exprs.kt:206:5:217:5 | x | TypeAccess |
 | exprs.kt:208:17:208:29 | valueOf(...) | exprs.kt:206:5:217:5 | x | MethodAccess |
-| exprs.kt:209:9:209:27 | b0 | exprs.kt:206:5:217:5 | x | LocalVariableDeclExpr |
+| exprs.kt:209:13:209:14 | b0 | exprs.kt:206:5:217:5 | x | LocalVariableDeclExpr |
 | exprs.kt:209:19:209:19 | s | exprs.kt:206:5:217:5 | x | VarAccess |
 | exprs.kt:209:19:209:27 | Intrinsics | exprs.kt:206:5:217:5 | x | TypeAccess |
 | exprs.kt:209:19:209:27 | stringPlus(...) | exprs.kt:206:5:217:5 | x | MethodAccess |
 | exprs.kt:209:26:209:26 | 5 | exprs.kt:206:5:217:5 | x | IntegerLiteral |
-| exprs.kt:210:9:210:23 | b1 | exprs.kt:206:5:217:5 | x | LocalVariableDeclExpr |
+| exprs.kt:210:13:210:14 | b1 | exprs.kt:206:5:217:5 | x | LocalVariableDeclExpr |
 | exprs.kt:210:19:210:19 | s | exprs.kt:206:5:217:5 | x | VarAccess |
 | exprs.kt:210:19:210:23 | Intrinsics | exprs.kt:206:5:217:5 | x | TypeAccess |
 | exprs.kt:210:19:210:23 | stringPlus(...) | exprs.kt:206:5:217:5 | x | MethodAccess |
 | exprs.kt:210:23:210:23 | 5 | exprs.kt:206:5:217:5 | x | IntegerLiteral |
-| exprs.kt:211:9:211:29 | b2 | exprs.kt:206:5:217:5 | x | LocalVariableDeclExpr |
+| exprs.kt:211:13:211:14 | b2 | exprs.kt:206:5:217:5 | x | LocalVariableDeclExpr |
 | exprs.kt:211:19:211:19 | s | exprs.kt:206:5:217:5 | x | VarAccess |
 | exprs.kt:211:20:211:21 | ...!! | exprs.kt:206:5:217:5 | x | NotNullExpr |
 | exprs.kt:211:20:211:29 | ... + ... | exprs.kt:206:5:217:5 | x | AddExpr |
 | exprs.kt:211:28:211:28 | 5 | exprs.kt:206:5:217:5 | x | IntegerLiteral |
-| exprs.kt:212:9:212:25 | b3 | exprs.kt:206:5:217:5 | x | LocalVariableDeclExpr |
+| exprs.kt:212:13:212:14 | b3 | exprs.kt:206:5:217:5 | x | LocalVariableDeclExpr |
 | exprs.kt:212:19:212:19 | s | exprs.kt:206:5:217:5 | x | VarAccess |
 | exprs.kt:212:19:212:25 | ... + ... | exprs.kt:206:5:217:5 | x | AddExpr |
 | exprs.kt:212:20:212:21 | ...!! | exprs.kt:206:5:217:5 | x | NotNullExpr |
 | exprs.kt:212:25:212:25 | 5 | exprs.kt:206:5:217:5 | x | IntegerLiteral |
-| exprs.kt:213:9:213:36 | c0 | exprs.kt:206:5:217:5 | x | LocalVariableDeclExpr |
+| exprs.kt:213:13:213:14 | c0 | exprs.kt:206:5:217:5 | x | LocalVariableDeclExpr |
 | exprs.kt:213:18:213:36 | Color | exprs.kt:206:5:217:5 | x | TypeAccess |
 | exprs.kt:213:18:213:36 | values(...) | exprs.kt:206:5:217:5 | x | MethodAccess |
-| exprs.kt:214:9:214:31 | c1 | exprs.kt:206:5:217:5 | x | LocalVariableDeclExpr |
+| exprs.kt:214:13:214:14 | c1 | exprs.kt:206:5:217:5 | x | LocalVariableDeclExpr |
 | exprs.kt:214:24:214:31 | Color | exprs.kt:206:5:217:5 | x | TypeAccess |
 | exprs.kt:214:24:214:31 | values(...) | exprs.kt:206:5:217:5 | x | MethodAccess |
-| exprs.kt:215:9:215:44 | d0 | exprs.kt:206:5:217:5 | x | LocalVariableDeclExpr |
+| exprs.kt:215:13:215:14 | d0 | exprs.kt:206:5:217:5 | x | LocalVariableDeclExpr |
 | exprs.kt:215:18:215:44 | Color | exprs.kt:206:5:217:5 | x | TypeAccess |
 | exprs.kt:215:18:215:44 | valueOf(...) | exprs.kt:206:5:217:5 | x | MethodAccess |
 | exprs.kt:215:38:215:42 | "GREEN" | exprs.kt:206:5:217:5 | x | StringLiteral |
-| exprs.kt:216:9:216:39 | d1 | exprs.kt:206:5:217:5 | x | LocalVariableDeclExpr |
+| exprs.kt:216:13:216:14 | d1 | exprs.kt:206:5:217:5 | x | LocalVariableDeclExpr |
 | exprs.kt:216:24:216:39 | Color | exprs.kt:206:5:217:5 | x | TypeAccess |
 | exprs.kt:216:24:216:39 | valueOf(...) | exprs.kt:206:5:217:5 | x | MethodAccess |
 | exprs.kt:216:33:216:37 | "GREEN" | exprs.kt:206:5:217:5 | x | StringLiteral |
@@ -1614,7 +1614,7 @@
 | exprs.kt:221:5:221:10 | StandardKt | exprs.kt:220:1:222:1 | todo | TypeAccess |
 | exprs.kt:221:5:221:10 | TODO(...) | exprs.kt:220:1:222:1 | todo | MethodAccess |
 | exprs.kt:225:1:227:1 | Unit | file://:0:0:0:0 | <none> | TypeAccess |
-| exprs.kt:226:5:226:29 | x | exprs.kt:225:1:227:1 | fnClassRef | LocalVariableDeclExpr |
+| exprs.kt:226:9:226:9 | x | exprs.kt:225:1:227:1 | fnClassRef | LocalVariableDeclExpr |
 | exprs.kt:226:13:226:29 | SomeClass1 | exprs.kt:225:1:227:1 | fnClassRef | TypeAccess |
 | exprs.kt:226:13:226:29 | SomeClass1.class | exprs.kt:225:1:227:1 | fnClassRef | TypeLiteral |
 | exprs.kt:229:1:250:1 | Unit | file://:0:0:0:0 | <none> | TypeAccess |
@@ -1622,83 +1622,83 @@
 | exprs.kt:229:42:229:64 | Integer | file://:0:0:0:0 | <none> | TypeAccess |
 | exprs.kt:229:67:229:88 | String | file://:0:0:0:0 | <none> | TypeAccess |
 | exprs.kt:229:91:229:114 | String | file://:0:0:0:0 | <none> | TypeAccess |
-| exprs.kt:230:3:230:47 | b1 | exprs.kt:229:1:250:1 | equalityTests | LocalVariableDeclExpr |
+| exprs.kt:230:7:230:8 | b1 | exprs.kt:229:1:250:1 | equalityTests | LocalVariableDeclExpr |
 | exprs.kt:230:12:230:27 | notNullPrimitive | exprs.kt:229:1:250:1 | equalityTests | VarAccess |
 | exprs.kt:230:12:230:47 | ... (value equals) ... | exprs.kt:229:1:250:1 | equalityTests | ValueEQExpr |
 | exprs.kt:230:32:230:47 | notNullPrimitive | exprs.kt:229:1:250:1 | equalityTests | VarAccess |
-| exprs.kt:231:3:231:48 | b2 | exprs.kt:229:1:250:1 | equalityTests | LocalVariableDeclExpr |
+| exprs.kt:231:7:231:8 | b2 | exprs.kt:229:1:250:1 | equalityTests | LocalVariableDeclExpr |
 | exprs.kt:231:12:231:27 | notNullPrimitive | exprs.kt:229:1:250:1 | equalityTests | VarAccess |
 | exprs.kt:231:12:231:48 | ... (value equals) ... | exprs.kt:229:1:250:1 | equalityTests | ValueEQExpr |
 | exprs.kt:231:32:231:48 | nullablePrimitive | exprs.kt:229:1:250:1 | equalityTests | VarAccess |
-| exprs.kt:232:3:232:49 | b3 | exprs.kt:229:1:250:1 | equalityTests | LocalVariableDeclExpr |
+| exprs.kt:232:7:232:8 | b3 | exprs.kt:229:1:250:1 | equalityTests | LocalVariableDeclExpr |
 | exprs.kt:232:12:232:28 | nullablePrimitive | exprs.kt:229:1:250:1 | equalityTests | VarAccess |
 | exprs.kt:232:12:232:49 | ... (value equals) ... | exprs.kt:229:1:250:1 | equalityTests | ValueEQExpr |
 | exprs.kt:232:33:232:49 | nullablePrimitive | exprs.kt:229:1:250:1 | equalityTests | VarAccess |
-| exprs.kt:233:3:233:43 | b4 | exprs.kt:229:1:250:1 | equalityTests | LocalVariableDeclExpr |
+| exprs.kt:233:7:233:8 | b4 | exprs.kt:229:1:250:1 | equalityTests | LocalVariableDeclExpr |
 | exprs.kt:233:12:233:25 | notNullReftype | exprs.kt:229:1:250:1 | equalityTests | VarAccess |
 | exprs.kt:233:12:233:43 | ... (value equals) ... | exprs.kt:229:1:250:1 | equalityTests | ValueEQExpr |
 | exprs.kt:233:30:233:43 | notNullReftype | exprs.kt:229:1:250:1 | equalityTests | VarAccess |
-| exprs.kt:234:3:234:44 | b5 | exprs.kt:229:1:250:1 | equalityTests | LocalVariableDeclExpr |
+| exprs.kt:234:7:234:8 | b5 | exprs.kt:229:1:250:1 | equalityTests | LocalVariableDeclExpr |
 | exprs.kt:234:12:234:25 | notNullReftype | exprs.kt:229:1:250:1 | equalityTests | VarAccess |
 | exprs.kt:234:12:234:44 | ... (value equals) ... | exprs.kt:229:1:250:1 | equalityTests | ValueEQExpr |
 | exprs.kt:234:30:234:44 | nullableReftype | exprs.kt:229:1:250:1 | equalityTests | VarAccess |
-| exprs.kt:235:3:235:45 | b6 | exprs.kt:229:1:250:1 | equalityTests | LocalVariableDeclExpr |
+| exprs.kt:235:7:235:8 | b6 | exprs.kt:229:1:250:1 | equalityTests | LocalVariableDeclExpr |
 | exprs.kt:235:12:235:26 | nullableReftype | exprs.kt:229:1:250:1 | equalityTests | VarAccess |
 | exprs.kt:235:12:235:45 | ... (value equals) ... | exprs.kt:229:1:250:1 | equalityTests | ValueEQExpr |
 | exprs.kt:235:31:235:45 | nullableReftype | exprs.kt:229:1:250:1 | equalityTests | VarAccess |
-| exprs.kt:236:3:236:47 | b7 | exprs.kt:229:1:250:1 | equalityTests | LocalVariableDeclExpr |
+| exprs.kt:236:7:236:8 | b7 | exprs.kt:229:1:250:1 | equalityTests | LocalVariableDeclExpr |
 | exprs.kt:236:12:236:27 | notNullPrimitive | exprs.kt:229:1:250:1 | equalityTests | VarAccess |
 | exprs.kt:236:12:236:47 | ... (value not-equals) ... | exprs.kt:229:1:250:1 | equalityTests | ValueNEExpr |
 | exprs.kt:236:32:236:47 | notNullPrimitive | exprs.kt:229:1:250:1 | equalityTests | VarAccess |
-| exprs.kt:237:3:237:48 | b8 | exprs.kt:229:1:250:1 | equalityTests | LocalVariableDeclExpr |
+| exprs.kt:237:7:237:8 | b8 | exprs.kt:229:1:250:1 | equalityTests | LocalVariableDeclExpr |
 | exprs.kt:237:12:237:27 | notNullPrimitive | exprs.kt:229:1:250:1 | equalityTests | VarAccess |
 | exprs.kt:237:12:237:48 | ... (value not-equals) ... | exprs.kt:229:1:250:1 | equalityTests | ValueNEExpr |
 | exprs.kt:237:32:237:48 | nullablePrimitive | exprs.kt:229:1:250:1 | equalityTests | VarAccess |
-| exprs.kt:238:3:238:49 | b9 | exprs.kt:229:1:250:1 | equalityTests | LocalVariableDeclExpr |
+| exprs.kt:238:7:238:8 | b9 | exprs.kt:229:1:250:1 | equalityTests | LocalVariableDeclExpr |
 | exprs.kt:238:12:238:28 | nullablePrimitive | exprs.kt:229:1:250:1 | equalityTests | VarAccess |
 | exprs.kt:238:12:238:49 | ... (value not-equals) ... | exprs.kt:229:1:250:1 | equalityTests | ValueNEExpr |
 | exprs.kt:238:33:238:49 | nullablePrimitive | exprs.kt:229:1:250:1 | equalityTests | VarAccess |
-| exprs.kt:239:3:239:44 | b10 | exprs.kt:229:1:250:1 | equalityTests | LocalVariableDeclExpr |
+| exprs.kt:239:7:239:9 | b10 | exprs.kt:229:1:250:1 | equalityTests | LocalVariableDeclExpr |
 | exprs.kt:239:13:239:26 | notNullReftype | exprs.kt:229:1:250:1 | equalityTests | VarAccess |
 | exprs.kt:239:13:239:44 | ... (value not-equals) ... | exprs.kt:229:1:250:1 | equalityTests | ValueNEExpr |
 | exprs.kt:239:31:239:44 | notNullReftype | exprs.kt:229:1:250:1 | equalityTests | VarAccess |
-| exprs.kt:240:3:240:45 | b11 | exprs.kt:229:1:250:1 | equalityTests | LocalVariableDeclExpr |
+| exprs.kt:240:7:240:9 | b11 | exprs.kt:229:1:250:1 | equalityTests | LocalVariableDeclExpr |
 | exprs.kt:240:13:240:26 | notNullReftype | exprs.kt:229:1:250:1 | equalityTests | VarAccess |
 | exprs.kt:240:13:240:45 | ... (value not-equals) ... | exprs.kt:229:1:250:1 | equalityTests | ValueNEExpr |
 | exprs.kt:240:31:240:45 | nullableReftype | exprs.kt:229:1:250:1 | equalityTests | VarAccess |
-| exprs.kt:241:3:241:46 | b12 | exprs.kt:229:1:250:1 | equalityTests | LocalVariableDeclExpr |
+| exprs.kt:241:7:241:9 | b12 | exprs.kt:229:1:250:1 | equalityTests | LocalVariableDeclExpr |
 | exprs.kt:241:13:241:27 | nullableReftype | exprs.kt:229:1:250:1 | equalityTests | VarAccess |
 | exprs.kt:241:13:241:46 | ... (value not-equals) ... | exprs.kt:229:1:250:1 | equalityTests | ValueNEExpr |
 | exprs.kt:241:32:241:46 | nullableReftype | exprs.kt:229:1:250:1 | equalityTests | VarAccess |
-| exprs.kt:242:3:242:36 | b13 | exprs.kt:229:1:250:1 | equalityTests | LocalVariableDeclExpr |
+| exprs.kt:242:7:242:9 | b13 | exprs.kt:229:1:250:1 | equalityTests | LocalVariableDeclExpr |
 | exprs.kt:242:13:242:28 | notNullPrimitive | exprs.kt:229:1:250:1 | equalityTests | VarAccess |
 | exprs.kt:242:13:242:36 | ... (value equals) ... | exprs.kt:229:1:250:1 | equalityTests | ValueEQExpr |
 | exprs.kt:242:33:242:36 | null | exprs.kt:229:1:250:1 | equalityTests | NullLiteral |
-| exprs.kt:243:3:243:37 | b14 | exprs.kt:229:1:250:1 | equalityTests | LocalVariableDeclExpr |
+| exprs.kt:243:7:243:9 | b14 | exprs.kt:229:1:250:1 | equalityTests | LocalVariableDeclExpr |
 | exprs.kt:243:13:243:29 | nullablePrimitive | exprs.kt:229:1:250:1 | equalityTests | VarAccess |
 | exprs.kt:243:13:243:37 | ... (value equals) ... | exprs.kt:229:1:250:1 | equalityTests | ValueEQExpr |
 | exprs.kt:243:34:243:37 | null | exprs.kt:229:1:250:1 | equalityTests | NullLiteral |
-| exprs.kt:244:3:244:34 | b15 | exprs.kt:229:1:250:1 | equalityTests | LocalVariableDeclExpr |
+| exprs.kt:244:7:244:9 | b15 | exprs.kt:229:1:250:1 | equalityTests | LocalVariableDeclExpr |
 | exprs.kt:244:13:244:26 | notNullReftype | exprs.kt:229:1:250:1 | equalityTests | VarAccess |
 | exprs.kt:244:13:244:34 | ... (value equals) ... | exprs.kt:229:1:250:1 | equalityTests | ValueEQExpr |
 | exprs.kt:244:31:244:34 | null | exprs.kt:229:1:250:1 | equalityTests | NullLiteral |
-| exprs.kt:245:3:245:35 | b16 | exprs.kt:229:1:250:1 | equalityTests | LocalVariableDeclExpr |
+| exprs.kt:245:7:245:9 | b16 | exprs.kt:229:1:250:1 | equalityTests | LocalVariableDeclExpr |
 | exprs.kt:245:13:245:27 | nullableReftype | exprs.kt:229:1:250:1 | equalityTests | VarAccess |
 | exprs.kt:245:13:245:35 | ... (value equals) ... | exprs.kt:229:1:250:1 | equalityTests | ValueEQExpr |
 | exprs.kt:245:32:245:35 | null | exprs.kt:229:1:250:1 | equalityTests | NullLiteral |
-| exprs.kt:246:3:246:36 | b17 | exprs.kt:229:1:250:1 | equalityTests | LocalVariableDeclExpr |
+| exprs.kt:246:7:246:9 | b17 | exprs.kt:229:1:250:1 | equalityTests | LocalVariableDeclExpr |
 | exprs.kt:246:13:246:28 | notNullPrimitive | exprs.kt:229:1:250:1 | equalityTests | VarAccess |
 | exprs.kt:246:13:246:36 | ... (value not-equals) ... | exprs.kt:229:1:250:1 | equalityTests | ValueNEExpr |
 | exprs.kt:246:33:246:36 | null | exprs.kt:229:1:250:1 | equalityTests | NullLiteral |
-| exprs.kt:247:3:247:37 | b18 | exprs.kt:229:1:250:1 | equalityTests | LocalVariableDeclExpr |
+| exprs.kt:247:7:247:9 | b18 | exprs.kt:229:1:250:1 | equalityTests | LocalVariableDeclExpr |
 | exprs.kt:247:13:247:29 | nullablePrimitive | exprs.kt:229:1:250:1 | equalityTests | VarAccess |
 | exprs.kt:247:13:247:37 | ... (value not-equals) ... | exprs.kt:229:1:250:1 | equalityTests | ValueNEExpr |
 | exprs.kt:247:34:247:37 | null | exprs.kt:229:1:250:1 | equalityTests | NullLiteral |
-| exprs.kt:248:3:248:34 | b19 | exprs.kt:229:1:250:1 | equalityTests | LocalVariableDeclExpr |
+| exprs.kt:248:7:248:9 | b19 | exprs.kt:229:1:250:1 | equalityTests | LocalVariableDeclExpr |
 | exprs.kt:248:13:248:26 | notNullReftype | exprs.kt:229:1:250:1 | equalityTests | VarAccess |
 | exprs.kt:248:13:248:34 | ... (value not-equals) ... | exprs.kt:229:1:250:1 | equalityTests | ValueNEExpr |
 | exprs.kt:248:31:248:34 | null | exprs.kt:229:1:250:1 | equalityTests | NullLiteral |
-| exprs.kt:249:3:249:35 | b20 | exprs.kt:229:1:250:1 | equalityTests | LocalVariableDeclExpr |
+| exprs.kt:249:7:249:9 | b20 | exprs.kt:229:1:250:1 | equalityTests | LocalVariableDeclExpr |
 | exprs.kt:249:13:249:27 | nullableReftype | exprs.kt:229:1:250:1 | equalityTests | VarAccess |
 | exprs.kt:249:13:249:35 | ... (value not-equals) ... | exprs.kt:229:1:250:1 | equalityTests | ValueNEExpr |
 | exprs.kt:249:32:249:35 | null | exprs.kt:229:1:250:1 | equalityTests | NullLiteral |
@@ -1715,28 +1715,28 @@
 | exprs.kt:256:30:256:39 | double | file://:0:0:0:0 | <none> | TypeAccess |
 | exprs.kt:257:18:257:26 | float | file://:0:0:0:0 | <none> | TypeAccess |
 | exprs.kt:257:29:257:37 | float | file://:0:0:0:0 | <none> | TypeAccess |
-| exprs.kt:259:3:259:15 | i | exprs.kt:252:1:265:1 | mulOperators | LocalVariableDeclExpr |
+| exprs.kt:259:7:259:7 | i | exprs.kt:252:1:265:1 | mulOperators | LocalVariableDeclExpr |
 | exprs.kt:259:11:259:11 | x | exprs.kt:252:1:265:1 | mulOperators | VarAccess |
 | exprs.kt:259:11:259:15 | ... * ... | exprs.kt:252:1:265:1 | mulOperators | MulExpr |
 | exprs.kt:259:15:259:15 | y | exprs.kt:252:1:265:1 | mulOperators | VarAccess |
-| exprs.kt:260:3:260:19 | b | exprs.kt:252:1:265:1 | mulOperators | LocalVariableDeclExpr |
+| exprs.kt:260:7:260:7 | b | exprs.kt:252:1:265:1 | mulOperators | LocalVariableDeclExpr |
 | exprs.kt:260:11:260:13 | byx | exprs.kt:252:1:265:1 | mulOperators | VarAccess |
 | exprs.kt:260:11:260:19 | ... * ... | exprs.kt:252:1:265:1 | mulOperators | MulExpr |
 | exprs.kt:260:17:260:19 | byy | exprs.kt:252:1:265:1 | mulOperators | VarAccess |
-| exprs.kt:261:3:261:17 | l | exprs.kt:252:1:265:1 | mulOperators | LocalVariableDeclExpr |
+| exprs.kt:261:7:261:7 | l | exprs.kt:252:1:265:1 | mulOperators | LocalVariableDeclExpr |
 | exprs.kt:261:11:261:12 | lx | exprs.kt:252:1:265:1 | mulOperators | VarAccess |
 | exprs.kt:261:11:261:17 | ... * ... | exprs.kt:252:1:265:1 | mulOperators | MulExpr |
 | exprs.kt:261:16:261:17 | ly | exprs.kt:252:1:265:1 | mulOperators | VarAccess |
-| exprs.kt:262:3:262:17 | d | exprs.kt:252:1:265:1 | mulOperators | LocalVariableDeclExpr |
+| exprs.kt:262:7:262:7 | d | exprs.kt:252:1:265:1 | mulOperators | LocalVariableDeclExpr |
 | exprs.kt:262:11:262:12 | dx | exprs.kt:252:1:265:1 | mulOperators | VarAccess |
 | exprs.kt:262:11:262:17 | ... * ... | exprs.kt:252:1:265:1 | mulOperators | MulExpr |
 | exprs.kt:262:16:262:17 | dy | exprs.kt:252:1:265:1 | mulOperators | VarAccess |
-| exprs.kt:263:3:263:17 | f | exprs.kt:252:1:265:1 | mulOperators | LocalVariableDeclExpr |
+| exprs.kt:263:7:263:7 | f | exprs.kt:252:1:265:1 | mulOperators | LocalVariableDeclExpr |
 | exprs.kt:263:11:263:12 | fx | exprs.kt:252:1:265:1 | mulOperators | VarAccess |
 | exprs.kt:263:11:263:17 | ... * ... | exprs.kt:252:1:265:1 | mulOperators | MulExpr |
 | exprs.kt:263:16:263:17 | fy | exprs.kt:252:1:265:1 | mulOperators | VarAccess |
 | exprs.kt:267:1:276:1 | Unit | file://:0:0:0:0 | <none> | TypeAccess |
-| exprs.kt:269:3:269:17 | updated | exprs.kt:267:1:276:1 | inPlaceOperators | LocalVariableDeclExpr |
+| exprs.kt:269:7:269:13 | updated | exprs.kt:267:1:276:1 | inPlaceOperators | LocalVariableDeclExpr |
 | exprs.kt:269:17:269:17 | 0 | exprs.kt:267:1:276:1 | inPlaceOperators | IntegerLiteral |
 | exprs.kt:270:3:270:9 | updated | exprs.kt:267:1:276:1 | inPlaceOperators | VarAccess |
 | exprs.kt:270:3:270:14 | ...+=... | exprs.kt:267:1:276:1 | inPlaceOperators | AssignAddExpr |
@@ -1789,9 +1789,9 @@
 | exprs.kt:289:5:289:6 | <implicit coercion to unit> | exprs.kt:285:1:346:1 | unaryExprs | ImplicitCoercionToUnitExpr |
 | exprs.kt:289:5:289:6 | Unit | exprs.kt:285:1:346:1 | unaryExprs | TypeAccess |
 | exprs.kt:289:6:289:6 | d | exprs.kt:285:1:346:1 | unaryExprs | VarAccess |
-| exprs.kt:290:5:290:14 | i0 | exprs.kt:285:1:346:1 | unaryExprs | LocalVariableDeclExpr |
+| exprs.kt:290:9:290:10 | i0 | exprs.kt:285:1:346:1 | unaryExprs | LocalVariableDeclExpr |
 | exprs.kt:290:14:290:14 | 1 | exprs.kt:285:1:346:1 | unaryExprs | IntegerLiteral |
-| exprs.kt:291:5:291:14 | i1 | exprs.kt:285:1:346:1 | unaryExprs | LocalVariableDeclExpr |
+| exprs.kt:291:9:291:10 | i1 | exprs.kt:285:1:346:1 | unaryExprs | LocalVariableDeclExpr |
 | exprs.kt:291:14:291:14 | 1 | exprs.kt:285:1:346:1 | unaryExprs | IntegerLiteral |
 | exprs.kt:292:5:292:6 | i0 | exprs.kt:285:1:346:1 | unaryExprs | VarAccess |
 | exprs.kt:292:5:292:6 | i0 | exprs.kt:285:1:346:1 | unaryExprs | VarAccess |
@@ -1857,9 +1857,9 @@
 | exprs.kt:303:5:303:6 | <implicit coercion to unit> | exprs.kt:285:1:346:1 | unaryExprs | ImplicitCoercionToUnitExpr |
 | exprs.kt:303:5:303:6 | Unit | exprs.kt:285:1:346:1 | unaryExprs | TypeAccess |
 | exprs.kt:303:6:303:6 | b | exprs.kt:285:1:346:1 | unaryExprs | VarAccess |
-| exprs.kt:304:5:304:20 | b0 | exprs.kt:285:1:346:1 | unaryExprs | LocalVariableDeclExpr |
+| exprs.kt:304:9:304:10 | b0 | exprs.kt:285:1:346:1 | unaryExprs | LocalVariableDeclExpr |
 | exprs.kt:304:20:304:20 | 1 | exprs.kt:285:1:346:1 | unaryExprs | IntegerLiteral |
-| exprs.kt:305:5:305:20 | b1 | exprs.kt:285:1:346:1 | unaryExprs | LocalVariableDeclExpr |
+| exprs.kt:305:9:305:10 | b1 | exprs.kt:285:1:346:1 | unaryExprs | LocalVariableDeclExpr |
 | exprs.kt:305:20:305:20 | 1 | exprs.kt:285:1:346:1 | unaryExprs | IntegerLiteral |
 | exprs.kt:306:5:306:6 | b0 | exprs.kt:285:1:346:1 | unaryExprs | VarAccess |
 | exprs.kt:306:5:306:6 | b0 | exprs.kt:285:1:346:1 | unaryExprs | VarAccess |
@@ -1925,9 +1925,9 @@
 | exprs.kt:317:5:317:6 | <implicit coercion to unit> | exprs.kt:285:1:346:1 | unaryExprs | ImplicitCoercionToUnitExpr |
 | exprs.kt:317:5:317:6 | Unit | exprs.kt:285:1:346:1 | unaryExprs | TypeAccess |
 | exprs.kt:317:6:317:6 | s | exprs.kt:285:1:346:1 | unaryExprs | VarAccess |
-| exprs.kt:318:5:318:21 | s0 | exprs.kt:285:1:346:1 | unaryExprs | LocalVariableDeclExpr |
+| exprs.kt:318:9:318:10 | s0 | exprs.kt:285:1:346:1 | unaryExprs | LocalVariableDeclExpr |
 | exprs.kt:318:21:318:21 | 1 | exprs.kt:285:1:346:1 | unaryExprs | IntegerLiteral |
-| exprs.kt:319:5:319:21 | s1 | exprs.kt:285:1:346:1 | unaryExprs | LocalVariableDeclExpr |
+| exprs.kt:319:9:319:10 | s1 | exprs.kt:285:1:346:1 | unaryExprs | LocalVariableDeclExpr |
 | exprs.kt:319:21:319:21 | 1 | exprs.kt:285:1:346:1 | unaryExprs | IntegerLiteral |
 | exprs.kt:320:5:320:6 | s0 | exprs.kt:285:1:346:1 | unaryExprs | VarAccess |
 | exprs.kt:320:5:320:6 | s0 | exprs.kt:285:1:346:1 | unaryExprs | VarAccess |
@@ -1993,9 +1993,9 @@
 | exprs.kt:331:5:331:6 | <implicit coercion to unit> | exprs.kt:285:1:346:1 | unaryExprs | ImplicitCoercionToUnitExpr |
 | exprs.kt:331:5:331:6 | Unit | exprs.kt:285:1:346:1 | unaryExprs | TypeAccess |
 | exprs.kt:331:6:331:6 | l | exprs.kt:285:1:346:1 | unaryExprs | VarAccess |
-| exprs.kt:332:5:332:20 | l0 | exprs.kt:285:1:346:1 | unaryExprs | LocalVariableDeclExpr |
+| exprs.kt:332:9:332:10 | l0 | exprs.kt:285:1:346:1 | unaryExprs | LocalVariableDeclExpr |
 | exprs.kt:332:20:332:20 | 1 | exprs.kt:285:1:346:1 | unaryExprs | LongLiteral |
-| exprs.kt:333:5:333:20 | l1 | exprs.kt:285:1:346:1 | unaryExprs | LocalVariableDeclExpr |
+| exprs.kt:333:9:333:10 | l1 | exprs.kt:285:1:346:1 | unaryExprs | LocalVariableDeclExpr |
 | exprs.kt:333:20:333:20 | 1 | exprs.kt:285:1:346:1 | unaryExprs | LongLiteral |
 | exprs.kt:334:5:334:6 | l0 | exprs.kt:285:1:346:1 | unaryExprs | VarAccess |
 | exprs.kt:334:5:334:6 | l0 | exprs.kt:285:1:346:1 | unaryExprs | VarAccess |
@@ -3254,7 +3254,7 @@
 | funcExprs.kt:77:20:77:55 | Integer | file://:0:0:0:0 | <none> | TypeAccess |
 | funcExprs.kt:77:20:77:55 | String | file://:0:0:0:0 | <none> | TypeAccess |
 | funcExprs.kt:82:9:96:1 | Unit | file://:0:0:0:0 | <none> | TypeAccess |
-| funcExprs.kt:83:5:83:51 | l1 | funcExprs.kt:82:9:96:1 | fn | LocalVariableDeclExpr |
+| funcExprs.kt:83:9:83:10 | l1 | funcExprs.kt:82:9:96:1 | fn | LocalVariableDeclExpr |
 | funcExprs.kt:83:31:83:51 | ...->... | funcExprs.kt:82:9:96:1 | fn | LambdaExpr |
 | funcExprs.kt:83:31:83:51 | Function1<Integer,String> | funcExprs.kt:82:9:96:1 | fn | TypeAccess |
 | funcExprs.kt:83:31:83:51 | Integer | funcExprs.kt:82:9:96:1 | fn | TypeAccess |
@@ -3268,7 +3268,7 @@
 | funcExprs.kt:84:8:84:16 | <implicit coercion to unit> | funcExprs.kt:82:9:96:1 | fn | ImplicitCoercionToUnitExpr |
 | funcExprs.kt:84:8:84:16 | Unit | funcExprs.kt:82:9:96:1 | fn | TypeAccess |
 | funcExprs.kt:84:15:84:15 | 5 | funcExprs.kt:82:9:96:1 | fn | IntegerLiteral |
-| funcExprs.kt:86:5:86:59 | l2 | funcExprs.kt:82:9:96:1 | fn | LocalVariableDeclExpr |
+| funcExprs.kt:86:9:86:10 | l2 | funcExprs.kt:82:9:96:1 | fn | LocalVariableDeclExpr |
 | funcExprs.kt:86:39:86:59 | ...->... | funcExprs.kt:82:9:96:1 | fn | LambdaExpr |
 | funcExprs.kt:86:39:86:59 | Function1<Integer,String> | funcExprs.kt:82:9:96:1 | fn | TypeAccess |
 | funcExprs.kt:86:39:86:59 | Integer | funcExprs.kt:82:9:96:1 | fn | TypeAccess |
@@ -3282,7 +3282,7 @@
 | funcExprs.kt:87:8:87:16 | <implicit coercion to unit> | funcExprs.kt:82:9:96:1 | fn | ImplicitCoercionToUnitExpr |
 | funcExprs.kt:87:8:87:16 | Unit | funcExprs.kt:82:9:96:1 | fn | TypeAccess |
 | funcExprs.kt:87:15:87:15 | 5 | funcExprs.kt:82:9:96:1 | fn | IntegerLiteral |
-| funcExprs.kt:89:5:90:69 | l3 | funcExprs.kt:82:9:96:1 | fn | LocalVariableDeclExpr |
+| funcExprs.kt:89:9:89:10 | l3 | funcExprs.kt:82:9:96:1 | fn | LocalVariableDeclExpr |
 | funcExprs.kt:90:15:90:69 | 0 | funcExprs.kt:90:15:90:69 | invoke | IntegerLiteral |
 | funcExprs.kt:90:15:90:69 | 1 | funcExprs.kt:90:15:90:69 | invoke | IntegerLiteral |
 | funcExprs.kt:90:15:90:69 | 2 | funcExprs.kt:90:15:90:69 | invoke | IntegerLiteral |
@@ -3459,7 +3459,7 @@
 | funcExprs.kt:91:55:91:55 | 1 | funcExprs.kt:82:9:96:1 | fn | IntegerLiteral |
 | funcExprs.kt:91:57:91:57 | 2 | funcExprs.kt:82:9:96:1 | fn | IntegerLiteral |
 | funcExprs.kt:91:59:91:59 | 3 | funcExprs.kt:82:9:96:1 | fn | IntegerLiteral |
-| funcExprs.kt:93:5:94:67 | l4 | funcExprs.kt:82:9:96:1 | fn | LocalVariableDeclExpr |
+| funcExprs.kt:93:9:93:10 | l4 | funcExprs.kt:82:9:96:1 | fn | LocalVariableDeclExpr |
 | funcExprs.kt:94:15:94:67 | ...->... | funcExprs.kt:82:9:96:1 | fn | LambdaExpr |
 | funcExprs.kt:94:15:94:67 | Function22<Integer,Integer,Integer,Integer,Integer,Integer,Integer,Integer,Integer,Integer,Integer,Integer,Integer,Integer,Integer,Integer,Integer,Integer,Integer,Integer,Integer,Integer,String> | funcExprs.kt:82:9:96:1 | fn | TypeAccess |
 | funcExprs.kt:94:15:94:67 | Integer | funcExprs.kt:82:9:96:1 | fn | TypeAccess |
@@ -3540,7 +3540,7 @@
 | kFunctionInvoke.kt:7:1:10:1 | Unit | file://:0:0:0:0 | <none> | TypeAccess |
 | kFunctionInvoke.kt:7:12:7:15 | A | file://:0:0:0:0 | <none> | TypeAccess |
 | kFunctionInvoke.kt:7:18:7:26 | String | file://:0:0:0:0 | <none> | TypeAccess |
-| kFunctionInvoke.kt:8:5:8:47 | toCall | kFunctionInvoke.kt:7:1:10:1 | useRef | LocalVariableDeclExpr |
+| kFunctionInvoke.kt:8:9:8:14 | toCall | kFunctionInvoke.kt:7:1:10:1 | useRef | LocalVariableDeclExpr |
 | kFunctionInvoke.kt:8:44:8:44 | a | kFunctionInvoke.kt:7:1:10:1 | useRef | VarAccess |
 | kFunctionInvoke.kt:8:44:8:47 | 1 | kFunctionInvoke.kt:8:44:8:47 |  | IntegerLiteral |
 | kFunctionInvoke.kt:8:44:8:47 | ...::... | kFunctionInvoke.kt:7:1:10:1 | useRef | MemberRefExpr |
@@ -3560,7 +3560,7 @@
 | kFunctionInvoke.kt:9:5:9:13 | invoke(...) | kFunctionInvoke.kt:7:1:10:1 | useRef | MethodAccess |
 | kFunctionInvoke.kt:9:12:9:12 | s | kFunctionInvoke.kt:7:1:10:1 | useRef | VarAccess |
 | localFunctionCalls.kt:3:1:12:1 | Unit | file://:0:0:0:0 | <none> | TypeAccess |
-| localFunctionCalls.kt:4:5:4:13 | x | localFunctionCalls.kt:3:1:12:1 | x | LocalVariableDeclExpr |
+| localFunctionCalls.kt:4:9:4:9 | x | localFunctionCalls.kt:3:1:12:1 | x | LocalVariableDeclExpr |
 | localFunctionCalls.kt:4:13:4:13 | 5 | localFunctionCalls.kt:3:1:12:1 | x | IntegerLiteral |
 | localFunctionCalls.kt:5:5:5:29 | int | file://:0:0:0:0 | <none> | TypeAccess |
 | localFunctionCalls.kt:5:15:5:20 | int | file://:0:0:0:0 | <none> | TypeAccess |
@@ -3607,7 +3607,7 @@
 | localFunctionCalls.kt:11:18:11:19 | 42 | localFunctionCalls.kt:3:1:12:1 | x | IntegerLiteral |
 | samConversion.kt:1:1:14:1 | Unit | file://:0:0:0:0 | <none> | TypeAccess |
 | samConversion.kt:1:10:1:19 | boolean | file://:0:0:0:0 | <none> | TypeAccess |
-| samConversion.kt:2:5:2:45 | isEven | samConversion.kt:1:1:14:1 | main | LocalVariableDeclExpr |
+| samConversion.kt:2:9:2:14 | isEven | samConversion.kt:1:1:14:1 | main | LocalVariableDeclExpr |
 | samConversion.kt:2:18:2:45 | (...)... | samConversion.kt:1:1:14:1 | main | CastExpr |
 | samConversion.kt:2:18:2:45 | ...=... | samConversion.kt:2:18:2:45 |  | AssignExpr |
 | samConversion.kt:2:18:2:45 | <fn> | samConversion.kt:2:18:2:45 |  | VarAccess |
@@ -3635,7 +3635,7 @@
 | samConversion.kt:2:33:2:43 | ... (value equals) ... | samConversion.kt:2:31:2:45 | invoke | ValueEQExpr |
 | samConversion.kt:2:38:2:38 | 2 | samConversion.kt:2:31:2:45 | invoke | IntegerLiteral |
 | samConversion.kt:2:43:2:43 | 0 | samConversion.kt:2:31:2:45 | invoke | IntegerLiteral |
-| samConversion.kt:4:5:4:42 | i0 | samConversion.kt:1:1:14:1 | main | LocalVariableDeclExpr |
+| samConversion.kt:4:9:4:10 | i0 | samConversion.kt:1:1:14:1 | main | LocalVariableDeclExpr |
 | samConversion.kt:4:14:4:42 | (...)... | samConversion.kt:1:1:14:1 | main | CastExpr |
 | samConversion.kt:4:14:4:42 | ...=... | samConversion.kt:4:14:4:42 |  | AssignExpr |
 | samConversion.kt:4:14:4:42 | <fn> | samConversion.kt:4:14:4:42 |  | VarAccess |
@@ -3664,7 +3664,7 @@
 | samConversion.kt:4:29:4:29 | int | file://:0:0:0:0 | <none> | TypeAccess |
 | samConversion.kt:4:32:4:32 | int | file://:0:0:0:0 | <none> | TypeAccess |
 | samConversion.kt:4:37:4:40 | INSTANCE | samConversion.kt:4:27:4:42 | invoke | VarAccess |
-| samConversion.kt:5:5:5:32 | i1 | samConversion.kt:1:1:14:1 | main | LocalVariableDeclExpr |
+| samConversion.kt:5:9:5:10 | i1 | samConversion.kt:1:1:14:1 | main | LocalVariableDeclExpr |
 | samConversion.kt:5:14:5:32 | (...)... | samConversion.kt:1:1:14:1 | main | CastExpr |
 | samConversion.kt:5:14:5:32 | ...=... | samConversion.kt:5:14:5:32 |  | AssignExpr |
 | samConversion.kt:5:14:5:32 | <fn> | samConversion.kt:5:14:5:32 |  | VarAccess |
@@ -3694,7 +3694,7 @@
 | samConversion.kt:5:27:5:31 | a0 | samConversion.kt:5:27:5:31 | invoke | VarAccess |
 | samConversion.kt:5:27:5:31 | a1 | samConversion.kt:5:27:5:31 | invoke | VarAccess |
 | samConversion.kt:5:27:5:31 | fn2(...) | samConversion.kt:5:27:5:31 | invoke | MethodAccess |
-| samConversion.kt:7:5:7:46 | i | samConversion.kt:1:1:14:1 | main | LocalVariableDeclExpr |
+| samConversion.kt:7:9:7:9 | i | samConversion.kt:1:1:14:1 | main | LocalVariableDeclExpr |
 | samConversion.kt:7:13:7:46 | (...)... | samConversion.kt:1:1:14:1 | main | CastExpr |
 | samConversion.kt:7:13:7:46 | ...=... | samConversion.kt:7:13:7:46 |  | AssignExpr |
 | samConversion.kt:7:13:7:46 | <fn> | samConversion.kt:7:13:7:46 |  | VarAccess |
@@ -3725,7 +3725,7 @@
 | samConversion.kt:7:36:7:39 | this | samConversion.kt:7:29:7:46 | invoke | ExtensionReceiverAccess |
 | samConversion.kt:7:36:7:45 | ... (value equals) ... | samConversion.kt:7:29:7:46 | invoke | ValueEQExpr |
 | samConversion.kt:7:44:7:45 | "" | samConversion.kt:7:29:7:46 | invoke | StringLiteral |
-| samConversion.kt:9:5:13:6 | x | samConversion.kt:1:1:14:1 | main | LocalVariableDeclExpr |
+| samConversion.kt:9:9:9:9 | x | samConversion.kt:1:1:14:1 | main | LocalVariableDeclExpr |
 | samConversion.kt:9:13:13:6 | (...)... | samConversion.kt:1:1:14:1 | main | CastExpr |
 | samConversion.kt:9:13:13:6 | ...=... | samConversion.kt:9:13:13:6 |  | AssignExpr |
 | samConversion.kt:9:13:13:6 | <fn> | samConversion.kt:9:13:13:6 |  | VarAccess |
@@ -3829,7 +3829,7 @@
 | samConversion.kt:38:49:38:52 | true | samConversion.kt:36:1:38:52 | ff | BooleanLiteral |
 | samConversion.kt:40:1:47:1 | Unit | file://:0:0:0:0 | <none> | TypeAccess |
 | samConversion.kt:40:8:40:19 | boolean | file://:0:0:0:0 | <none> | TypeAccess |
-| samConversion.kt:41:5:41:16 | a | samConversion.kt:40:1:47:1 | fn | LocalVariableDeclExpr |
+| samConversion.kt:41:9:41:9 | a | samConversion.kt:40:1:47:1 | fn | LocalVariableDeclExpr |
 | samConversion.kt:41:13:41:16 | 0 | samConversion.kt:41:13:41:16 | invoke | IntegerLiteral |
 | samConversion.kt:41:13:41:16 | 1 | samConversion.kt:41:13:41:16 | invoke | IntegerLiteral |
 | samConversion.kt:41:13:41:16 | 2 | samConversion.kt:41:13:41:16 | invoke | IntegerLiteral |
@@ -3951,7 +3951,7 @@
 | samConversion.kt:41:13:41:16 | int | samConversion.kt:41:13:41:16 | invoke | TypeAccess |
 | samConversion.kt:41:13:41:16 | int | samConversion.kt:41:13:41:16 | invoke | TypeAccess |
 | samConversion.kt:41:13:41:16 | int | samConversion.kt:41:13:41:16 | invoke | TypeAccess |
-| samConversion.kt:42:5:42:32 | b | samConversion.kt:40:1:47:1 | fn | LocalVariableDeclExpr |
+| samConversion.kt:42:9:42:9 | b | samConversion.kt:40:1:47:1 | fn | LocalVariableDeclExpr |
 | samConversion.kt:42:13:42:32 | 23 | samConversion.kt:42:13:42:32 | accept | IntegerLiteral |
 | samConversion.kt:42:13:42:32 | (...)... | samConversion.kt:40:1:47:1 | fn | CastExpr |
 | samConversion.kt:42:13:42:32 | ...=... | samConversion.kt:42:13:42:32 |  | AssignExpr |
@@ -4016,7 +4016,7 @@
 | samConversion.kt:42:13:42:32 | this.<fn> | samConversion.kt:42:13:42:32 |  | VarAccess |
 | samConversion.kt:42:13:42:32 | {...} | samConversion.kt:42:13:42:32 | accept | ArrayInit |
 | samConversion.kt:42:31:42:31 | a | samConversion.kt:40:1:47:1 | fn | VarAccess |
-| samConversion.kt:43:5:45:68 | c | samConversion.kt:40:1:47:1 | fn | LocalVariableDeclExpr |
+| samConversion.kt:43:9:43:9 | c | samConversion.kt:40:1:47:1 | fn | LocalVariableDeclExpr |
 | samConversion.kt:43:13:45:68 | 23 | samConversion.kt:43:13:45:68 | accept | IntegerLiteral |
 | samConversion.kt:43:13:45:68 | (...)... | samConversion.kt:40:1:47:1 | fn | CastExpr |
 | samConversion.kt:43:13:45:68 | ...=... | samConversion.kt:43:13:45:68 |  | AssignExpr |
@@ -4225,7 +4225,7 @@
 | samConversion.kt:45:42:45:49 | int | file://:0:0:0:0 | <none> | TypeAccess |
 | samConversion.kt:45:52:45:59 | int | file://:0:0:0:0 | <none> | TypeAccess |
 | samConversion.kt:45:64:45:67 | true | samConversion.kt:43:31:45:68 | invoke | BooleanLiteral |
-| samConversion.kt:46:5:46:44 | d | samConversion.kt:40:1:47:1 | fn | LocalVariableDeclExpr |
+| samConversion.kt:46:9:46:9 | d | samConversion.kt:40:1:47:1 | fn | LocalVariableDeclExpr |
 | samConversion.kt:46:13:46:44 | (...)... | samConversion.kt:40:1:47:1 | fn | CastExpr |
 | samConversion.kt:46:13:46:44 | ...=... | samConversion.kt:46:13:46:44 |  | AssignExpr |
 | samConversion.kt:46:13:46:44 | <fn> | samConversion.kt:46:13:46:44 |  | VarAccess |
@@ -4257,7 +4257,7 @@
 | samConversion.kt:54:21:54:26 | int | file://:0:0:0:0 | <none> | TypeAccess |
 | samConversion.kt:54:29:54:34 | int | file://:0:0:0:0 | <none> | TypeAccess |
 | samConversion.kt:57:9:60:1 | Unit | file://:0:0:0:0 | <none> | TypeAccess |
-| samConversion.kt:58:5:58:45 | i0 | samConversion.kt:57:9:60:1 | test | LocalVariableDeclExpr |
+| samConversion.kt:58:9:58:10 | i0 | samConversion.kt:57:9:60:1 | test | LocalVariableDeclExpr |
 | samConversion.kt:58:14:58:45 | (...)... | samConversion.kt:57:9:60:1 | test | CastExpr |
 | samConversion.kt:58:14:58:45 | ...=... | samConversion.kt:58:14:58:45 |  | AssignExpr |
 | samConversion.kt:58:14:58:45 | <fn> | samConversion.kt:58:14:58:45 |  | VarAccess |
@@ -4302,7 +4302,7 @@
 | samConversion.kt:71:5:71:16 | int | file://:0:0:0:0 | <none> | TypeAccess |
 | samConversion.kt:74:1:77:1 | Unit | file://:0:0:0:0 | <none> | TypeAccess |
 | samConversion.kt:74:22:74:42 | PropertyRefsTest | file://:0:0:0:0 | <none> | TypeAccess |
-| samConversion.kt:75:5:75:33 | test1 | samConversion.kt:74:1:77:1 | propertyRefsTest | LocalVariableDeclExpr |
+| samConversion.kt:75:9:75:13 | test1 | samConversion.kt:74:1:77:1 | propertyRefsTest | LocalVariableDeclExpr |
 | samConversion.kt:75:17:75:33 | (...)... | samConversion.kt:74:1:77:1 | propertyRefsTest | CastExpr |
 | samConversion.kt:75:17:75:33 | ...=... | samConversion.kt:75:17:75:33 |  | AssignExpr |
 | samConversion.kt:75:17:75:33 | <fn> | samConversion.kt:75:17:75:33 |  | VarAccess |
@@ -4330,7 +4330,7 @@
 | samConversion.kt:75:27:75:32 | this | samConversion.kt:75:27:75:32 | invoke | ThisAccess |
 | samConversion.kt:75:27:75:32 | this.<dispatchReceiver> | samConversion.kt:75:27:75:32 |  | VarAccess |
 | samConversion.kt:75:27:75:32 | this.<dispatchReceiver> | samConversion.kt:75:27:75:32 | get | VarAccess |
-| samConversion.kt:76:5:76:55 | test2 | samConversion.kt:74:1:77:1 | propertyRefsTest | LocalVariableDeclExpr |
+| samConversion.kt:76:9:76:13 | test2 | samConversion.kt:74:1:77:1 | propertyRefsTest | LocalVariableDeclExpr |
 | samConversion.kt:76:17:76:55 | (...)... | samConversion.kt:74:1:77:1 | propertyRefsTest | CastExpr |
 | samConversion.kt:76:17:76:55 | ...=... | samConversion.kt:76:17:76:55 |  | AssignExpr |
 | samConversion.kt:76:17:76:55 | <fn> | samConversion.kt:76:17:76:55 |  | VarAccess |
diff --git a/java/ql/test/kotlin/library-tests/methods/exprs.expected b/java/ql/test/kotlin/library-tests/methods/exprs.expected
index 6d2221b5bae..99315e33359 100644
--- a/java/ql/test/kotlin/library-tests/methods/exprs.expected
+++ b/java/ql/test/kotlin/library-tests/methods/exprs.expected
@@ -302,7 +302,7 @@
 | methods4.kt:7:5:7:34 | Unit | TypeAccess |
 | methods4.kt:7:11:7:29 | InsideNestedTest | TypeAccess |
 | methods5.kt:3:1:11:1 | Unit | TypeAccess |
-| methods5.kt:4:3:4:11 | x | LocalVariableDeclExpr |
+| methods5.kt:4:7:4:7 | x | LocalVariableDeclExpr |
 | methods5.kt:4:11:4:11 | 5 | IntegerLiteral |
 | methods5.kt:5:3:5:27 | int | TypeAccess |
 | methods5.kt:5:13:5:18 | int | TypeAccess |
diff --git a/java/ql/test/kotlin/library-tests/modifiers/modifiers.expected b/java/ql/test/kotlin/library-tests/modifiers/modifiers.expected
index cdde306d74f..1a8613b00cc 100644
--- a/java/ql/test/kotlin/library-tests/modifiers/modifiers.expected
+++ b/java/ql/test/kotlin/library-tests/modifiers/modifiers.expected
@@ -67,4 +67,4 @@
 | modifiers.kt:36:22:36:40 | getTest0$private | Method | private |
 | modifiers.kt:36:22:36:40 | setTest0$private | Method | private |
 | modifiers.kt:38:5:40:5 | fn | Method | public |
-| modifiers.kt:39:9:39:36 | LateInit test1 | LocalVariableDecl | lateinit |
+| modifiers.kt:39:22:39:26 | LateInit test1 | LocalVariableDecl | lateinit |
diff --git a/java/ql/test/kotlin/library-tests/reflection/reflection.expected b/java/ql/test/kotlin/library-tests/reflection/reflection.expected
index e6a864b11a4..873ffe0faef 100644
--- a/java/ql/test/kotlin/library-tests/reflection/reflection.expected
+++ b/java/ql/test/kotlin/library-tests/reflection/reflection.expected
@@ -1,26 +1,26 @@
 variableInitializerType
-| reflection.kt:7:9:7:54 | KFunction<Double> ref | file://<external>/KFunction.class:0:0:0:0 | KFunction<Double> | reflection.kt:7:49:7:54 | new Function2<Ccc,Integer,Double>(...) { ... } | file://<external>/Function2.class:0:0:0:0 | Function2<Ccc,Integer,Double> | true |
-| reflection.kt:7:9:7:54 | KFunction<Double> ref | file://<external>/KFunction.class:0:0:0:0 | KFunction<Double> | reflection.kt:7:49:7:54 | new Function2<Ccc,Integer,Double>(...) { ... } | file://<external>/FunctionReference.class:0:0:0:0 | FunctionReference | true |
-| reflection.kt:10:9:10:42 | KProperty1<C,Integer> x0 | file://<external>/KProperty1.class:0:0:0:0 | KProperty1<C,Integer> | reflection.kt:10:38:10:42 | new KProperty1<C,Integer>(...) { ... } | file://<external>/KProperty1.class:0:0:0:0 | KProperty1<C,Integer> | true |
-| reflection.kt:10:9:10:42 | KProperty1<C,Integer> x0 | file://<external>/KProperty1.class:0:0:0:0 | KProperty1<C,Integer> | reflection.kt:10:38:10:42 | new KProperty1<C,Integer>(...) { ... } | file://<external>/PropertyReference.class:0:0:0:0 | PropertyReference | true |
-| reflection.kt:13:9:13:53 | Getter<C,Integer> x3 | file://<external>/KProperty1$Getter.class:0:0:0:0 | Getter<C,Integer> | file://<external>/KProperty1$Getter.class:0:0:0:0 | Getter<C,Integer> | file://<external>/Function1.class:0:0:0:0 | Function1<C,Integer> | true |
-| reflection.kt:13:9:13:53 | Getter<C,Integer> x3 | file://<external>/KProperty1$Getter.class:0:0:0:0 | Getter<C,Integer> | file://<external>/KProperty1$Getter.class:0:0:0:0 | Getter<C,Integer> | file://<external>/KProperty$Getter.class:0:0:0:0 | Getter<Integer> | true |
-| reflection.kt:14:9:14:44 | KFunction<Integer> x4 | file://<external>/KFunction.class:0:0:0:0 | KFunction<Integer> | reflection.kt:14:38:14:44 | new Function1<C,Integer>(...) { ... } | file://<external>/Function1.class:0:0:0:0 | Function1<C,Integer> | true |
-| reflection.kt:14:9:14:44 | KFunction<Integer> x4 | file://<external>/KFunction.class:0:0:0:0 | KFunction<Integer> | reflection.kt:14:38:14:44 | new Function1<C,Integer>(...) { ... } | file://<external>/FunctionReference.class:0:0:0:0 | FunctionReference | true |
-| reflection.kt:15:9:15:41 | KProperty0<Integer> x5 | file://<external>/KProperty0.class:0:0:0:0 | KProperty0<Integer> | reflection.kt:15:35:15:41 | new KProperty0<Integer>(...) { ... } | file://<external>/KProperty0.class:0:0:0:0 | KProperty0<Integer> | true |
-| reflection.kt:15:9:15:41 | KProperty0<Integer> x5 | file://<external>/KProperty0.class:0:0:0:0 | KProperty0<Integer> | reflection.kt:15:35:15:41 | new KProperty0<Integer>(...) { ... } | file://<external>/PropertyReference.class:0:0:0:0 | PropertyReference | true |
-| reflection.kt:17:9:17:49 | KMutableProperty1<C,Integer> y0 | file://<external>/KMutableProperty1.class:0:0:0:0 | KMutableProperty1<C,Integer> | reflection.kt:17:45:17:49 | new KMutableProperty1<C,Integer>(...) { ... } | file://<external>/KMutableProperty1.class:0:0:0:0 | KMutableProperty1<C,Integer> | true |
-| reflection.kt:17:9:17:49 | KMutableProperty1<C,Integer> y0 | file://<external>/KMutableProperty1.class:0:0:0:0 | KMutableProperty1<C,Integer> | reflection.kt:17:45:17:49 | new KMutableProperty1<C,Integer>(...) { ... } | file://<external>/PropertyReference.class:0:0:0:0 | PropertyReference | true |
-| reflection.kt:20:9:20:60 | Setter<C,Integer> y3 | file://<external>/KMutableProperty1$Setter.class:0:0:0:0 | Setter<C,Integer> | file://<external>/KMutableProperty1$Setter.class:0:0:0:0 | Setter<C,Integer> | file://<external>/Function2.class:0:0:0:0 | Function2<C,Integer,Unit> | true |
-| reflection.kt:20:9:20:60 | Setter<C,Integer> y3 | file://<external>/KMutableProperty1$Setter.class:0:0:0:0 | Setter<C,Integer> | file://<external>/KMutableProperty1$Setter.class:0:0:0:0 | Setter<C,Integer> | file://<external>/KMutableProperty$Setter.class:0:0:0:0 | Setter<Integer> | true |
-| reflection.kt:21:9:21:50 | KFunction<Unit> y4 | file://<external>/KFunction.class:0:0:0:0 | KFunction<Unit> | reflection.kt:21:44:21:50 | new Function2<C,Integer,Unit>(...) { ... } | file://<external>/Function2.class:0:0:0:0 | Function2<C,Integer,Unit> | true |
-| reflection.kt:21:9:21:50 | KFunction<Unit> y4 | file://<external>/KFunction.class:0:0:0:0 | KFunction<Unit> | reflection.kt:21:44:21:50 | new Function2<C,Integer,Unit>(...) { ... } | file://<external>/FunctionReference.class:0:0:0:0 | FunctionReference | true |
-| reflection.kt:22:9:22:48 | KMutableProperty0<Integer> y5 | file://<external>/KMutableProperty0.class:0:0:0:0 | KMutableProperty0<Integer> | reflection.kt:22:42:22:48 | new KMutableProperty0<Integer>(...) { ... } | file://<external>/KMutableProperty0.class:0:0:0:0 | KMutableProperty0<Integer> | true |
-| reflection.kt:22:9:22:48 | KMutableProperty0<Integer> y5 | file://<external>/KMutableProperty0.class:0:0:0:0 | KMutableProperty0<Integer> | reflection.kt:22:42:22:48 | new KMutableProperty0<Integer>(...) { ... } | file://<external>/PropertyReference.class:0:0:0:0 | PropertyReference | true |
-| reflection.kt:24:9:24:91 | KProperty2<C,Integer,Integer> prop | file://<external>/KProperty2.class:0:0:0:0 | KProperty2<C,Integer,Integer> | file://<external>/KProperty2.class:0:0:0:0 | KProperty2<C,Integer,Integer> | file://<external>/Function2.class:0:0:0:0 | Function2<C,Integer,Integer> | true |
-| reflection.kt:24:9:24:91 | KProperty2<C,Integer,Integer> prop | file://<external>/KProperty2.class:0:0:0:0 | KProperty2<C,Integer,Integer> | file://<external>/KProperty2.class:0:0:0:0 | KProperty2<C,Integer,Integer> | file://<external>/KProperty.class:0:0:0:0 | KProperty<Integer> | true |
-| reflection.kt:116:9:116:44 | KFunction<Unit> x | file://<external>/KFunction.class:0:0:0:0 | KFunction<Unit> | reflection.kt:116:40:116:44 | new Function1<Integer,Unit>(...) { ... } | file://<external>/Function1.class:0:0:0:0 | Function1<Integer,Unit> | true |
-| reflection.kt:116:9:116:44 | KFunction<Unit> x | file://<external>/KFunction.class:0:0:0:0 | KFunction<Unit> | reflection.kt:116:40:116:44 | new Function1<Integer,Unit>(...) { ... } | file://<external>/FunctionReference.class:0:0:0:0 | FunctionReference | true |
+| reflection.kt:7:13:7:15 | KFunction<Double> ref | file://<external>/KFunction.class:0:0:0:0 | KFunction<Double> | reflection.kt:7:49:7:54 | new Function2<Ccc,Integer,Double>(...) { ... } | file://<external>/Function2.class:0:0:0:0 | Function2<Ccc,Integer,Double> | true |
+| reflection.kt:7:13:7:15 | KFunction<Double> ref | file://<external>/KFunction.class:0:0:0:0 | KFunction<Double> | reflection.kt:7:49:7:54 | new Function2<Ccc,Integer,Double>(...) { ... } | file://<external>/FunctionReference.class:0:0:0:0 | FunctionReference | true |
+| reflection.kt:10:13:10:14 | KProperty1<C,Integer> x0 | file://<external>/KProperty1.class:0:0:0:0 | KProperty1<C,Integer> | reflection.kt:10:38:10:42 | new KProperty1<C,Integer>(...) { ... } | file://<external>/KProperty1.class:0:0:0:0 | KProperty1<C,Integer> | true |
+| reflection.kt:10:13:10:14 | KProperty1<C,Integer> x0 | file://<external>/KProperty1.class:0:0:0:0 | KProperty1<C,Integer> | reflection.kt:10:38:10:42 | new KProperty1<C,Integer>(...) { ... } | file://<external>/PropertyReference.class:0:0:0:0 | PropertyReference | true |
+| reflection.kt:13:13:13:14 | Getter<C,Integer> x3 | file://<external>/KProperty1$Getter.class:0:0:0:0 | Getter<C,Integer> | file://<external>/KProperty1$Getter.class:0:0:0:0 | Getter<C,Integer> | file://<external>/Function1.class:0:0:0:0 | Function1<C,Integer> | true |
+| reflection.kt:13:13:13:14 | Getter<C,Integer> x3 | file://<external>/KProperty1$Getter.class:0:0:0:0 | Getter<C,Integer> | file://<external>/KProperty1$Getter.class:0:0:0:0 | Getter<C,Integer> | file://<external>/KProperty$Getter.class:0:0:0:0 | Getter<Integer> | true |
+| reflection.kt:14:13:14:14 | KFunction<Integer> x4 | file://<external>/KFunction.class:0:0:0:0 | KFunction<Integer> | reflection.kt:14:38:14:44 | new Function1<C,Integer>(...) { ... } | file://<external>/Function1.class:0:0:0:0 | Function1<C,Integer> | true |
+| reflection.kt:14:13:14:14 | KFunction<Integer> x4 | file://<external>/KFunction.class:0:0:0:0 | KFunction<Integer> | reflection.kt:14:38:14:44 | new Function1<C,Integer>(...) { ... } | file://<external>/FunctionReference.class:0:0:0:0 | FunctionReference | true |
+| reflection.kt:15:13:15:14 | KProperty0<Integer> x5 | file://<external>/KProperty0.class:0:0:0:0 | KProperty0<Integer> | reflection.kt:15:35:15:41 | new KProperty0<Integer>(...) { ... } | file://<external>/KProperty0.class:0:0:0:0 | KProperty0<Integer> | true |
+| reflection.kt:15:13:15:14 | KProperty0<Integer> x5 | file://<external>/KProperty0.class:0:0:0:0 | KProperty0<Integer> | reflection.kt:15:35:15:41 | new KProperty0<Integer>(...) { ... } | file://<external>/PropertyReference.class:0:0:0:0 | PropertyReference | true |
+| reflection.kt:17:13:17:14 | KMutableProperty1<C,Integer> y0 | file://<external>/KMutableProperty1.class:0:0:0:0 | KMutableProperty1<C,Integer> | reflection.kt:17:45:17:49 | new KMutableProperty1<C,Integer>(...) { ... } | file://<external>/KMutableProperty1.class:0:0:0:0 | KMutableProperty1<C,Integer> | true |
+| reflection.kt:17:13:17:14 | KMutableProperty1<C,Integer> y0 | file://<external>/KMutableProperty1.class:0:0:0:0 | KMutableProperty1<C,Integer> | reflection.kt:17:45:17:49 | new KMutableProperty1<C,Integer>(...) { ... } | file://<external>/PropertyReference.class:0:0:0:0 | PropertyReference | true |
+| reflection.kt:20:13:20:14 | Setter<C,Integer> y3 | file://<external>/KMutableProperty1$Setter.class:0:0:0:0 | Setter<C,Integer> | file://<external>/KMutableProperty1$Setter.class:0:0:0:0 | Setter<C,Integer> | file://<external>/Function2.class:0:0:0:0 | Function2<C,Integer,Unit> | true |
+| reflection.kt:20:13:20:14 | Setter<C,Integer> y3 | file://<external>/KMutableProperty1$Setter.class:0:0:0:0 | Setter<C,Integer> | file://<external>/KMutableProperty1$Setter.class:0:0:0:0 | Setter<C,Integer> | file://<external>/KMutableProperty$Setter.class:0:0:0:0 | Setter<Integer> | true |
+| reflection.kt:21:13:21:14 | KFunction<Unit> y4 | file://<external>/KFunction.class:0:0:0:0 | KFunction<Unit> | reflection.kt:21:44:21:50 | new Function2<C,Integer,Unit>(...) { ... } | file://<external>/Function2.class:0:0:0:0 | Function2<C,Integer,Unit> | true |
+| reflection.kt:21:13:21:14 | KFunction<Unit> y4 | file://<external>/KFunction.class:0:0:0:0 | KFunction<Unit> | reflection.kt:21:44:21:50 | new Function2<C,Integer,Unit>(...) { ... } | file://<external>/FunctionReference.class:0:0:0:0 | FunctionReference | true |
+| reflection.kt:22:13:22:14 | KMutableProperty0<Integer> y5 | file://<external>/KMutableProperty0.class:0:0:0:0 | KMutableProperty0<Integer> | reflection.kt:22:42:22:48 | new KMutableProperty0<Integer>(...) { ... } | file://<external>/KMutableProperty0.class:0:0:0:0 | KMutableProperty0<Integer> | true |
+| reflection.kt:22:13:22:14 | KMutableProperty0<Integer> y5 | file://<external>/KMutableProperty0.class:0:0:0:0 | KMutableProperty0<Integer> | reflection.kt:22:42:22:48 | new KMutableProperty0<Integer>(...) { ... } | file://<external>/PropertyReference.class:0:0:0:0 | PropertyReference | true |
+| reflection.kt:24:13:24:16 | KProperty2<C,Integer,Integer> prop | file://<external>/KProperty2.class:0:0:0:0 | KProperty2<C,Integer,Integer> | file://<external>/KProperty2.class:0:0:0:0 | KProperty2<C,Integer,Integer> | file://<external>/Function2.class:0:0:0:0 | Function2<C,Integer,Integer> | true |
+| reflection.kt:24:13:24:16 | KProperty2<C,Integer,Integer> prop | file://<external>/KProperty2.class:0:0:0:0 | KProperty2<C,Integer,Integer> | file://<external>/KProperty2.class:0:0:0:0 | KProperty2<C,Integer,Integer> | file://<external>/KProperty.class:0:0:0:0 | KProperty<Integer> | true |
+| reflection.kt:116:13:116:13 | KFunction<Unit> x | file://<external>/KFunction.class:0:0:0:0 | KFunction<Unit> | reflection.kt:116:40:116:44 | new Function1<Integer,Unit>(...) { ... } | file://<external>/Function1.class:0:0:0:0 | Function1<Integer,Unit> | true |
+| reflection.kt:116:13:116:13 | KFunction<Unit> x | file://<external>/KFunction.class:0:0:0:0 | KFunction<Unit> | reflection.kt:116:40:116:44 | new Function1<Integer,Unit>(...) { ... } | file://<external>/FunctionReference.class:0:0:0:0 | FunctionReference | true |
 invocation
 | reflection.kt:8:17:8:24 | getName(...) | file://<external>/KCallable.class:0:0:0:0 | getName |
 | reflection.kt:11:23:11:33 | get(...) | file://<external>/KProperty1.class:0:0:0:0 | get |
diff --git a/java/ql/test/kotlin/library-tests/stmts/PrintAst.expected b/java/ql/test/kotlin/library-tests/stmts/PrintAst.expected
index 7ab29615bd3..9cb7aac3c0f 100644
--- a/java/ql/test/kotlin/library-tests/stmts/PrintAst.expected
+++ b/java/ql/test/kotlin/library-tests/stmts/PrintAst.expected
@@ -163,12 +163,12 @@ stmts.kt:
 #   41|           2: [BlockStmt] { ... }
 #   41|             0: [LocalVariableDeclStmt] var ...;
 #   41|               1: [LocalVariableDeclExpr] v
-#   41|                 0: [MethodAccess] component1(...)
+#    0|                 0: [MethodAccess] component1(...)
 #   41|                   -1: [VarAccess] tmp3_loop_parameter
 #   41|             1: [LocalVariableDeclStmt] var ...;
 #   41|               1: [LocalVariableDeclExpr] i
-#   41|                 0: [MethodAccess] component2(...)
-#   41|                   -1: [VarAccess] tmp3_loop_parameter
+#    0|                 0: [MethodAccess] component2(...)
+#    0|                   -1: [VarAccess] tmp3_loop_parameter
 #   41|             2: [BlockStmt] { ... }
 #   42|               0: [ExprStmt] <Expr>;
 #   42|                 0: [WhenExpr] when ...
diff --git a/java/ql/test/kotlin/library-tests/stmts/exprs.expected b/java/ql/test/kotlin/library-tests/stmts/exprs.expected
index 9193248487f..5f652fdb17c 100644
--- a/java/ql/test/kotlin/library-tests/stmts/exprs.expected
+++ b/java/ql/test/kotlin/library-tests/stmts/exprs.expected
@@ -1,3 +1,6 @@
+| stmts.kt:0:0:0:0 | component1(...) | MethodAccess |
+| stmts.kt:0:0:0:0 | component2(...) | MethodAccess |
+| stmts.kt:0:0:0:0 | tmp3_loop_parameter | VarAccess |
 | stmts.kt:2:1:20:1 | int | TypeAccess |
 | stmts.kt:2:20:2:25 | int | TypeAccess |
 | stmts.kt:2:28:2:33 | int | TypeAccess |
@@ -21,9 +24,9 @@
 | stmts.kt:14:13:14:13 | x | VarAccess |
 | stmts.kt:14:13:14:17 | ... < ... | LTExpr |
 | stmts.kt:14:17:14:17 | y | VarAccess |
-| stmts.kt:15:5:15:13 | z | LocalVariableDeclExpr |
+| stmts.kt:15:9:15:9 | z | LocalVariableDeclExpr |
 | stmts.kt:15:13:15:13 | 3 | IntegerLiteral |
-| stmts.kt:17:5:17:58 | q2 | LocalVariableDeclExpr |
+| stmts.kt:17:9:17:10 | q2 | LocalVariableDeclExpr |
 | stmts.kt:17:26:17:58 | true | BooleanLiteral |
 | stmts.kt:17:26:17:58 | when ... | WhenExpr |
 | stmts.kt:17:29:17:32 | true | BooleanLiteral |
@@ -33,7 +36,7 @@
 | stmts.kt:17:52:17:52 | z | VarAccess |
 | stmts.kt:17:52:17:56 | ...=... | AssignExpr |
 | stmts.kt:17:56:17:56 | 5 | IntegerLiteral |
-| stmts.kt:18:5:18:56 | q3 | LocalVariableDeclExpr |
+| stmts.kt:18:9:18:10 | q3 | LocalVariableDeclExpr |
 | stmts.kt:18:26:18:56 | true | BooleanLiteral |
 | stmts.kt:18:26:18:56 | when ... | WhenExpr |
 | stmts.kt:18:29:18:32 | true | BooleanLiteral |
@@ -81,13 +84,10 @@
 | stmts.kt:38:18:38:18 | y | VarAccess |
 | stmts.kt:38:18:38:24 | ... > ... | GTExpr |
 | stmts.kt:38:22:38:24 | 100 | IntegerLiteral |
-| stmts.kt:41:11:41:11 | component1(...) | MethodAccess |
 | stmts.kt:41:11:41:11 | v | LocalVariableDeclExpr |
-| stmts.kt:41:13:41:13 | component2(...) | MethodAccess |
 | stmts.kt:41:13:41:13 | i | LocalVariableDeclExpr |
 | stmts.kt:41:19:41:36 | tmp3_loop_parameter | LocalVariableDeclExpr |
 | stmts.kt:41:19:41:36 | tmp3_loop_parameter | VarAccess |
-| stmts.kt:41:19:41:36 | tmp3_loop_parameter | VarAccess |
 | stmts.kt:41:20:41:20 | x | VarAccess |
 | stmts.kt:41:20:41:23 | rangeTo(...) | MethodAccess |
 | stmts.kt:41:20:41:36 | CollectionsKt | TypeAccess |
diff --git a/java/ql/test/kotlin/library-tests/stmts/stmts.expected b/java/ql/test/kotlin/library-tests/stmts/stmts.expected
index c1fae753f23..716bea1649a 100644
--- a/java/ql/test/kotlin/library-tests/stmts/stmts.expected
+++ b/java/ql/test/kotlin/library-tests/stmts/stmts.expected
@@ -15,17 +15,17 @@ enclosing
 | stmts.kt:12:5:14:18 | { ... } | stmts.kt:2:41:20:1 | { ... } |
 | stmts.kt:12:8:14:5 | { ... } | stmts.kt:12:5:14:18 | do ... while (...) |
 | stmts.kt:13:9:13:16 | return ... | stmts.kt:12:8:14:5 | { ... } |
-| stmts.kt:15:5:15:13 | var ...; | stmts.kt:2:41:20:1 | { ... } |
-| stmts.kt:17:5:17:58 | var ...; | stmts.kt:2:41:20:1 | { ... } |
-| stmts.kt:17:26:17:58 | ... -> ... | stmts.kt:17:5:17:58 | var ...; |
-| stmts.kt:17:26:17:58 | ... -> ... | stmts.kt:17:5:17:58 | var ...; |
+| stmts.kt:15:9:15:9 | var ...; | stmts.kt:2:41:20:1 | { ... } |
+| stmts.kt:17:9:17:10 | var ...; | stmts.kt:2:41:20:1 | { ... } |
+| stmts.kt:17:26:17:58 | ... -> ... | stmts.kt:17:9:17:10 | var ...; |
+| stmts.kt:17:26:17:58 | ... -> ... | stmts.kt:17:9:17:10 | var ...; |
 | stmts.kt:17:35:17:43 | { ... } | stmts.kt:17:26:17:58 | ... -> ... |
 | stmts.kt:17:37:17:37 | <Expr>; | stmts.kt:17:35:17:43 | { ... } |
 | stmts.kt:17:50:17:58 | { ... } | stmts.kt:17:26:17:58 | ... -> ... |
 | stmts.kt:17:52:17:52 | <Expr>; | stmts.kt:17:50:17:58 | { ... } |
-| stmts.kt:18:5:18:56 | var ...; | stmts.kt:2:41:20:1 | { ... } |
-| stmts.kt:18:26:18:56 | ... -> ... | stmts.kt:18:5:18:56 | var ...; |
-| stmts.kt:18:26:18:56 | ... -> ... | stmts.kt:18:5:18:56 | var ...; |
+| stmts.kt:18:9:18:10 | var ...; | stmts.kt:2:41:20:1 | { ... } |
+| stmts.kt:18:26:18:56 | ... -> ... | stmts.kt:18:9:18:10 | var ...; |
+| stmts.kt:18:26:18:56 | ... -> ... | stmts.kt:18:9:18:10 | var ...; |
 | stmts.kt:18:37:18:37 | <Expr>; | stmts.kt:18:26:18:56 | ... -> ... |
 | stmts.kt:18:52:18:52 | <Expr>; | stmts.kt:18:26:18:56 | ... -> ... |
 | stmts.kt:19:5:19:16 | return ... | stmts.kt:2:41:20:1 | { ... } |
@@ -88,15 +88,15 @@ enclosing
 | stmts.kt:12:5:14:18 | { ... } | BlockStmt |
 | stmts.kt:12:8:14:5 | { ... } | BlockStmt |
 | stmts.kt:13:9:13:16 | return ... | ReturnStmt |
-| stmts.kt:15:5:15:13 | var ...; | LocalVariableDeclStmt |
-| stmts.kt:17:5:17:58 | var ...; | LocalVariableDeclStmt |
+| stmts.kt:15:9:15:9 | var ...; | LocalVariableDeclStmt |
+| stmts.kt:17:9:17:10 | var ...; | LocalVariableDeclStmt |
 | stmts.kt:17:26:17:58 | ... -> ... | WhenBranch |
 | stmts.kt:17:26:17:58 | ... -> ... | WhenBranch |
 | stmts.kt:17:35:17:43 | { ... } | BlockStmt |
 | stmts.kt:17:37:17:37 | <Expr>; | ExprStmt |
 | stmts.kt:17:50:17:58 | { ... } | BlockStmt |
 | stmts.kt:17:52:17:52 | <Expr>; | ExprStmt |
-| stmts.kt:18:5:18:56 | var ...; | LocalVariableDeclStmt |
+| stmts.kt:18:9:18:10 | var ...; | LocalVariableDeclStmt |
 | stmts.kt:18:26:18:56 | ... -> ... | WhenBranch |
 | stmts.kt:18:26:18:56 | ... -> ... | WhenBranch |
 | stmts.kt:18:37:18:37 | <Expr>; | ExprStmt |

From 32847c125a99d829cec982b446345f186b063adf Mon Sep 17 00:00:00 2001
From: Chris Smowton <smowton@github.com>
Date: Fri, 25 Nov 2022 10:47:48 +0000
Subject: [PATCH 0632/1420] Accept more test changes due to variable locations
 changing

There is also one non-location change: kotlin.Byte (and likely other primitives) now have real equals and toString overrides, which matches their native source and documentation; before they appeared to have fake overrides.
---
 .../library-tests/comments/comments.expected  |  2 +-
 .../controlflow/dominance/dominator.expected  | 40 +++++++++----------
 .../test.expected                             |  2 +
 .../kotlin/library-tests/trap/diags.expected  | 16 ++++----
 .../variables/variables.expected              | 12 +++---
 .../UnderscoreIdentifier/test.expected        |  4 +-
 6 files changed, 39 insertions(+), 37 deletions(-)

diff --git a/java/ql/test/kotlin/library-tests/comments/comments.expected b/java/ql/test/kotlin/library-tests/comments/comments.expected
index f37e8322feb..7bd80ec0ed0 100644
--- a/java/ql/test/kotlin/library-tests/comments/comments.expected
+++ b/java/ql/test/kotlin/library-tests/comments/comments.expected
@@ -25,7 +25,6 @@ commentOwners
 | comments.kt:19:5:22:7 | /**\n     * Adds a [member] to this group.\n     * @return the new size of the group.\n     */ | comments.kt:23:5:26:5 | add |
 | comments.kt:35:5:35:34 | /** Medium is in the middle */ | comments.kt:36:5:36:14 | Medium |
 | comments.kt:37:5:37:23 | /** This is high */ | comments.kt:38:5:38:11 | High |
-| comments.kt:42:5:44:7 | /**\n     * A variable.\n     */ | comments.kt:45:5:45:13 | int a |
 | comments.kt:48:1:50:3 | /**\n * A type alias comment\n */ | comments.kt:51:1:51:24 | MyType |
 | comments.kt:54:5:56:7 | /**\n     * An init block comment\n     */ | comments.kt:53:1:58:1 | InitBlock |
 | comments.kt:61:5:63:7 | /**\n     * A prop comment\n     */ | comments.kt:64:5:68:17 | prop |
@@ -40,6 +39,7 @@ commentNoOwners
 | comments.kt:1:1:1:25 | /** Kdoc with no owner */ |
 | comments.kt:24:9:24:25 | // A line comment |
 | comments.kt:28:5:30:6 | /*\n    A block comment\n    */ |
+| comments.kt:42:5:44:7 | /**\n     * A variable.\n     */ |
 | comments.kt:95:1:95:163 | // Diagnostic Matches: % Couldn't get owner of KDoc. The comment is extracted without an owner.  ...while extracting a file (comments.kt) at %comments.kt:1:1:96:0% |
 commentSections
 | comments.kt:1:1:1:25 | /** Kdoc with no owner */ | Kdoc with no owner |
diff --git a/java/ql/test/kotlin/library-tests/controlflow/dominance/dominator.expected b/java/ql/test/kotlin/library-tests/controlflow/dominance/dominator.expected
index e08a5248672..b76a7777a0d 100644
--- a/java/ql/test/kotlin/library-tests/controlflow/dominance/dominator.expected
+++ b/java/ql/test/kotlin/library-tests/controlflow/dominance/dominator.expected
@@ -1,18 +1,18 @@
-| Test.kt:2:43:79:2 | { ... } | Test.kt:3:9:3:18 | var ...; |
-| Test.kt:3:9:3:18 | var ...; | Test.kt:3:17:3:18 | px |
-| Test.kt:3:9:3:18 | x | Test.kt:4:9:4:18 | var ...; |
-| Test.kt:3:17:3:18 | px | Test.kt:3:9:3:18 | x |
-| Test.kt:4:9:4:18 | var ...; | Test.kt:4:17:4:18 | pw |
-| Test.kt:4:9:4:18 | w | Test.kt:5:9:5:18 | var ...; |
-| Test.kt:4:17:4:18 | pw | Test.kt:4:9:4:18 | w |
-| Test.kt:5:9:5:18 | var ...; | Test.kt:5:17:5:18 | pz |
-| Test.kt:5:9:5:18 | z | Test.kt:7:3:7:12 | var ...; |
-| Test.kt:5:17:5:18 | pz | Test.kt:5:9:5:18 | z |
-| Test.kt:7:3:7:12 | j | Test.kt:8:3:8:18 | var ...; |
-| Test.kt:7:3:7:12 | var ...; | Test.kt:7:3:7:12 | j |
-| Test.kt:8:3:8:18 | var ...; | Test.kt:8:17:8:18 | 50 |
-| Test.kt:8:3:8:18 | y | Test.kt:11:3:16:3 | <Expr>; |
-| Test.kt:8:17:8:18 | 50 | Test.kt:8:3:8:18 | y |
+| Test.kt:2:43:79:2 | { ... } | Test.kt:3:13:3:13 | var ...; |
+| Test.kt:3:13:3:13 | var ...; | Test.kt:3:17:3:18 | px |
+| Test.kt:3:13:3:13 | x | Test.kt:4:13:4:13 | var ...; |
+| Test.kt:3:17:3:18 | px | Test.kt:3:13:3:13 | x |
+| Test.kt:4:13:4:13 | var ...; | Test.kt:4:17:4:18 | pw |
+| Test.kt:4:13:4:13 | w | Test.kt:5:13:5:13 | var ...; |
+| Test.kt:4:17:4:18 | pw | Test.kt:4:13:4:13 | w |
+| Test.kt:5:13:5:13 | var ...; | Test.kt:5:17:5:18 | pz |
+| Test.kt:5:13:5:13 | z | Test.kt:7:7:7:7 | var ...; |
+| Test.kt:5:17:5:18 | pz | Test.kt:5:13:5:13 | z |
+| Test.kt:7:7:7:7 | j | Test.kt:8:7:8:7 | var ...; |
+| Test.kt:7:7:7:7 | var ...; | Test.kt:7:7:7:7 | j |
+| Test.kt:8:7:8:7 | var ...; | Test.kt:8:17:8:18 | 50 |
+| Test.kt:8:7:8:7 | y | Test.kt:11:3:16:3 | <Expr>; |
+| Test.kt:8:17:8:18 | 50 | Test.kt:8:7:8:7 | y |
 | Test.kt:11:3:16:3 | ... -> ... | Test.kt:11:3:16:3 | true |
 | Test.kt:11:3:16:3 | ... -> ... | Test.kt:11:7:11:7 | x |
 | Test.kt:11:3:16:3 | <Expr>; | Test.kt:11:3:16:3 | when ... |
@@ -111,11 +111,11 @@
 | Test.kt:77:3:77:8 | ...=... | Test.kt:78:10:78:10 | w |
 | Test.kt:77:7:77:8 | 40 | Test.kt:77:3:77:8 | ...=... |
 | Test.kt:78:10:78:10 | w | Test.kt:78:3:78:10 | return ... |
-| Test.kt:81:25:98:2 | { ... } | Test.kt:83:3:83:12 | var ...; |
-| Test.kt:83:3:83:12 | b | Test.kt:84:3:84:12 | var ...; |
-| Test.kt:83:3:83:12 | var ...; | Test.kt:83:3:83:12 | b |
-| Test.kt:84:3:84:12 | c | Test.kt:85:3:85:3 | <Expr>; |
-| Test.kt:84:3:84:12 | var ...; | Test.kt:84:3:84:12 | c |
+| Test.kt:81:25:98:2 | { ... } | Test.kt:83:7:83:7 | var ...; |
+| Test.kt:83:7:83:7 | b | Test.kt:84:7:84:7 | var ...; |
+| Test.kt:83:7:83:7 | var ...; | Test.kt:83:7:83:7 | b |
+| Test.kt:84:7:84:7 | c | Test.kt:85:3:85:3 | <Expr>; |
+| Test.kt:84:7:84:7 | var ...; | Test.kt:84:7:84:7 | c |
 | Test.kt:85:3:85:3 | <Expr>; | Test.kt:85:7:85:7 | 0 |
 | Test.kt:85:3:85:7 | ...=... | Test.kt:86:3:96:3 | while (...) |
 | Test.kt:85:7:85:7 | 0 | Test.kt:85:3:85:7 | ...=... |
diff --git a/java/ql/test/kotlin/library-tests/java-lang-number-conversions/test.expected b/java/ql/test/kotlin/library-tests/java-lang-number-conversions/test.expected
index 2e674af64ee..52ed7b2ccfe 100644
--- a/java/ql/test/kotlin/library-tests/java-lang-number-conversions/test.expected
+++ b/java/ql/test/kotlin/library-tests/java-lang-number-conversions/test.expected
@@ -28,6 +28,7 @@
 | kotlin.Byte | describeConstable |
 | kotlin.Byte | div |
 | kotlin.Byte | doubleValue |
+| kotlin.Byte | equals |
 | kotlin.Byte | floatValue |
 | kotlin.Byte | inc |
 | kotlin.Byte | intValue |
@@ -39,6 +40,7 @@
 | kotlin.Byte | shortValue |
 | kotlin.Byte | times |
 | kotlin.Byte | toChar |
+| kotlin.Byte | toString |
 | kotlin.Byte | unaryMinus |
 | kotlin.Byte | unaryPlus |
 | kotlin.Number | byteValue |
diff --git a/java/ql/test/kotlin/library-tests/trap/diags.expected b/java/ql/test/kotlin/library-tests/trap/diags.expected
index 6e145a5e4e0..a4a774de5f9 100644
--- a/java/ql/test/kotlin/library-tests/trap/diags.expected
+++ b/java/ql/test/kotlin/library-tests/trap/diags.expected
@@ -1,11 +1,11 @@
-| file://:0:0:0:0 | Truncated string of length 1048577 | CodeQL Kotlin extractor | 2 |  | Truncated string of length 1048577 | DATE TIME Truncated string of length 1048577\nTruncated string of length 1048577, starting '"ABBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBB', ending 'BBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBC"'  ...while extracting a expression (<no name>) at long_string.kt:14:31:14:1048605\n  ...while extracting a variable expr (longStringLiteral1) at long_string.kt:14:5:14:1048606\n  ...while extracting a variable (longStringLiteral1) at long_string.kt:14:5:14:1048606\n  ...while extracting a statement (longStringLiteral1) at long_string.kt:14:5:14:1048606\n  ...while extracting a block body (<no name>) at long_string.kt:13:22:19:1\n  ...while extracting a body (<no name>) at long_string.kt:13:22:19:1\n  ...while extracting a function (longLiteralFun) at long_string.kt:13:1:19:1\n  ...while extracting a declaration (longLiteralFun) at long_string.kt:13:1:19:1\n  ...while extracting a file (long_string.kt) at long_string.kt:1:1:21:0\n |
+| file://:0:0:0:0 | Truncated string of length 1048577 | CodeQL Kotlin extractor | 2 |  | Truncated string of length 1048577 | DATE TIME Truncated string of length 1048577\nTruncated string of length 1048577, starting '"ABBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBB', ending 'BBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBC"'  ...while extracting a expression (<no name>) at long_string.kt:14:31:14:1048605\n  ...while extracting a variable expr (longStringLiteral1) at long_string.kt:14:9:14:26\n  ...while extracting a variable (longStringLiteral1) at long_string.kt:14:9:14:26\n  ...while extracting a statement (longStringLiteral1) at long_string.kt:14:9:14:26\n  ...while extracting a block body (<no name>) at long_string.kt:13:22:19:1\n  ...while extracting a body (<no name>) at long_string.kt:13:22:19:1\n  ...while extracting a function (longLiteralFun) at long_string.kt:13:1:19:1\n  ...while extracting a declaration (longLiteralFun) at long_string.kt:13:1:19:1\n  ...while extracting a file (long_string.kt) at long_string.kt:1:1:21:0\n |
 | file://:0:0:0:0 | Truncated string of length 1048577 | CodeQL Kotlin extractor | 2 |  | Truncated string of length 1048577 | DATE TIME Truncated string of length 1048577\nTruncated string of length 1048577, starting '//A03BBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBB', ending 'BBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBCDE'  ...while extracting a file (long_comments.kt) at long_comments.kt:1:1:24:0\n |
-| file://:0:0:0:0 | Truncated string of length 1048577 | CodeQL Kotlin extractor | 2 |  | Truncated string of length 1048577 | DATE TIME Truncated string of length 1048577\nTruncated string of length 1048577, starting 'ABBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBB', ending 'BBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBCDE'  ...while extracting a expression (<no name>) at long_string.kt:16:31:16:1048607\n  ...while extracting a variable expr (longStringLiteral3) at long_string.kt:16:5:16:1048608\n  ...while extracting a variable (longStringLiteral3) at long_string.kt:16:5:16:1048608\n  ...while extracting a statement (longStringLiteral3) at long_string.kt:16:5:16:1048608\n  ...while extracting a block body (<no name>) at long_string.kt:13:22:19:1\n  ...while extracting a body (<no name>) at long_string.kt:13:22:19:1\n  ...while extracting a function (longLiteralFun) at long_string.kt:13:1:19:1\n  ...while extracting a declaration (longLiteralFun) at long_string.kt:13:1:19:1\n  ...while extracting a file (long_string.kt) at long_string.kt:1:1:21:0\n |
-| file://:0:0:0:0 | Truncated string of length 1048578 | CodeQL Kotlin extractor | 2 |  | Truncated string of length 1048578 | DATE TIME Truncated string of length 1048578\nTruncated string of length 1048578, starting '"ABBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBB', ending 'BBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBCD"'  ...while extracting a expression (<no name>) at long_string.kt:15:31:15:1048606\n  ...while extracting a variable expr (longStringLiteral2) at long_string.kt:15:5:15:1048607\n  ...while extracting a variable (longStringLiteral2) at long_string.kt:15:5:15:1048607\n  ...while extracting a statement (longStringLiteral2) at long_string.kt:15:5:15:1048607\n  ...while extracting a block body (<no name>) at long_string.kt:13:22:19:1\n  ...while extracting a body (<no name>) at long_string.kt:13:22:19:1\n  ...while extracting a function (longLiteralFun) at long_string.kt:13:1:19:1\n  ...while extracting a declaration (longLiteralFun) at long_string.kt:13:1:19:1\n  ...while extracting a file (long_string.kt) at long_string.kt:1:1:21:0\n |
+| file://:0:0:0:0 | Truncated string of length 1048577 | CodeQL Kotlin extractor | 2 |  | Truncated string of length 1048577 | DATE TIME Truncated string of length 1048577\nTruncated string of length 1048577, starting 'ABBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBB', ending 'BBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBCDE'  ...while extracting a expression (<no name>) at long_string.kt:16:31:16:1048607\n  ...while extracting a variable expr (longStringLiteral3) at long_string.kt:16:9:16:26\n  ...while extracting a variable (longStringLiteral3) at long_string.kt:16:9:16:26\n  ...while extracting a statement (longStringLiteral3) at long_string.kt:16:9:16:26\n  ...while extracting a block body (<no name>) at long_string.kt:13:22:19:1\n  ...while extracting a body (<no name>) at long_string.kt:13:22:19:1\n  ...while extracting a function (longLiteralFun) at long_string.kt:13:1:19:1\n  ...while extracting a declaration (longLiteralFun) at long_string.kt:13:1:19:1\n  ...while extracting a file (long_string.kt) at long_string.kt:1:1:21:0\n |
+| file://:0:0:0:0 | Truncated string of length 1048578 | CodeQL Kotlin extractor | 2 |  | Truncated string of length 1048578 | DATE TIME Truncated string of length 1048578\nTruncated string of length 1048578, starting '"ABBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBB', ending 'BBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBCD"'  ...while extracting a expression (<no name>) at long_string.kt:15:31:15:1048606\n  ...while extracting a variable expr (longStringLiteral2) at long_string.kt:15:9:15:26\n  ...while extracting a variable (longStringLiteral2) at long_string.kt:15:9:15:26\n  ...while extracting a statement (longStringLiteral2) at long_string.kt:15:9:15:26\n  ...while extracting a block body (<no name>) at long_string.kt:13:22:19:1\n  ...while extracting a body (<no name>) at long_string.kt:13:22:19:1\n  ...while extracting a function (longLiteralFun) at long_string.kt:13:1:19:1\n  ...while extracting a declaration (longLiteralFun) at long_string.kt:13:1:19:1\n  ...while extracting a file (long_string.kt) at long_string.kt:1:1:21:0\n |
 | file://:0:0:0:0 | Truncated string of length 1048578 | CodeQL Kotlin extractor | 2 |  | Truncated string of length 1048578 | DATE TIME Truncated string of length 1048578\nTruncated string of length 1048578, starting '//A04BBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBB', ending 'BBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBCDEF'  ...while extracting a file (long_comments.kt) at long_comments.kt:1:1:24:0\n |
 | file://:0:0:0:0 | Truncated string of length 1048578 | CodeQL Kotlin extractor | 2 |  | Truncated string of length 1048578 | DATE TIME Truncated string of length 1048578\nTruncated string of length 1048578, starting '//A05"""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""', ending '""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""CDEF'  ...while extracting a file (long_comments.kt) at long_comments.kt:1:1:24:0\n |
-| file://:0:0:0:0 | Truncated string of length 1048578 | CodeQL Kotlin extractor | 2 |  | Truncated string of length 1048578 | DATE TIME Truncated string of length 1048578\nTruncated string of length 1048578, starting 'A"""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""', ending '""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""CDEF'  ...while extracting a expression (<no name>) at long_string.kt:18:31:18:2097181\n  ...while extracting a variable expr (longStringLiteral5) at long_string.kt:18:5:18:2097182\n  ...while extracting a variable (longStringLiteral5) at long_string.kt:18:5:18:2097182\n  ...while extracting a statement (longStringLiteral5) at long_string.kt:18:5:18:2097182\n  ...while extracting a block body (<no name>) at long_string.kt:13:22:19:1\n  ...while extracting a body (<no name>) at long_string.kt:13:22:19:1\n  ...while extracting a function (longLiteralFun) at long_string.kt:13:1:19:1\n  ...while extracting a declaration (longLiteralFun) at long_string.kt:13:1:19:1\n  ...while extracting a file (long_string.kt) at long_string.kt:1:1:21:0\n |
-| file://:0:0:0:0 | Truncated string of length 1048578 | CodeQL Kotlin extractor | 2 |  | Truncated string of length 1048578 | DATE TIME Truncated string of length 1048578\nTruncated string of length 1048578, starting 'ABBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBB', ending 'BBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBCDEF'  ...while extracting a expression (<no name>) at long_string.kt:17:31:17:1048608\n  ...while extracting a variable expr (longStringLiteral4) at long_string.kt:17:5:17:1048609\n  ...while extracting a variable (longStringLiteral4) at long_string.kt:17:5:17:1048609\n  ...while extracting a statement (longStringLiteral4) at long_string.kt:17:5:17:1048609\n  ...while extracting a block body (<no name>) at long_string.kt:13:22:19:1\n  ...while extracting a body (<no name>) at long_string.kt:13:22:19:1\n  ...while extracting a function (longLiteralFun) at long_string.kt:13:1:19:1\n  ...while extracting a declaration (longLiteralFun) at long_string.kt:13:1:19:1\n  ...while extracting a file (long_string.kt) at long_string.kt:1:1:21:0\n |
-| file://:0:0:0:0 | Truncated string of length 1048579 | CodeQL Kotlin extractor | 2 |  | Truncated string of length 1048579 | DATE TIME Truncated string of length 1048579\nTruncated string of length 1048579, starting '"ABBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBB', ending 'BBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBCDE"'  ...while extracting a expression (<no name>) at long_string.kt:16:31:16:1048607\n  ...while extracting a variable expr (longStringLiteral3) at long_string.kt:16:5:16:1048608\n  ...while extracting a variable (longStringLiteral3) at long_string.kt:16:5:16:1048608\n  ...while extracting a statement (longStringLiteral3) at long_string.kt:16:5:16:1048608\n  ...while extracting a block body (<no name>) at long_string.kt:13:22:19:1\n  ...while extracting a body (<no name>) at long_string.kt:13:22:19:1\n  ...while extracting a function (longLiteralFun) at long_string.kt:13:1:19:1\n  ...while extracting a declaration (longLiteralFun) at long_string.kt:13:1:19:1\n  ...while extracting a file (long_string.kt) at long_string.kt:1:1:21:0\n |
-| file://:0:0:0:0 | Truncated string of length 1048580 | CodeQL Kotlin extractor | 2 |  | Truncated string of length 1048580 | DATE TIME Truncated string of length 1048580\nTruncated string of length 1048580, starting '"ABBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBB', ending 'BBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBCDEF"'  ...while extracting a expression (<no name>) at long_string.kt:17:31:17:1048608\n  ...while extracting a variable expr (longStringLiteral4) at long_string.kt:17:5:17:1048609\n  ...while extracting a variable (longStringLiteral4) at long_string.kt:17:5:17:1048609\n  ...while extracting a statement (longStringLiteral4) at long_string.kt:17:5:17:1048609\n  ...while extracting a block body (<no name>) at long_string.kt:13:22:19:1\n  ...while extracting a body (<no name>) at long_string.kt:13:22:19:1\n  ...while extracting a function (longLiteralFun) at long_string.kt:13:1:19:1\n  ...while extracting a declaration (longLiteralFun) at long_string.kt:13:1:19:1\n  ...while extracting a file (long_string.kt) at long_string.kt:1:1:21:0\n |
-| file://:0:0:0:0 | Truncated string of length 2097153 | CodeQL Kotlin extractor | 2 |  | Truncated string of length 2097153 | DATE TIME Truncated string of length 2097153\nTruncated string of length 2097153, starting '"A\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"', ending '"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"CDEF"'  ...while extracting a expression (<no name>) at long_string.kt:18:31:18:2097181\n  ...while extracting a variable expr (longStringLiteral5) at long_string.kt:18:5:18:2097182\n  ...while extracting a variable (longStringLiteral5) at long_string.kt:18:5:18:2097182\n  ...while extracting a statement (longStringLiteral5) at long_string.kt:18:5:18:2097182\n  ...while extracting a block body (<no name>) at long_string.kt:13:22:19:1\n  ...while extracting a body (<no name>) at long_string.kt:13:22:19:1\n  ...while extracting a function (longLiteralFun) at long_string.kt:13:1:19:1\n  ...while extracting a declaration (longLiteralFun) at long_string.kt:13:1:19:1\n  ...while extracting a file (long_string.kt) at long_string.kt:1:1:21:0\n |
+| file://:0:0:0:0 | Truncated string of length 1048578 | CodeQL Kotlin extractor | 2 |  | Truncated string of length 1048578 | DATE TIME Truncated string of length 1048578\nTruncated string of length 1048578, starting 'A"""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""', ending '""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""""CDEF'  ...while extracting a expression (<no name>) at long_string.kt:18:31:18:2097181\n  ...while extracting a variable expr (longStringLiteral5) at long_string.kt:18:9:18:26\n  ...while extracting a variable (longStringLiteral5) at long_string.kt:18:9:18:26\n  ...while extracting a statement (longStringLiteral5) at long_string.kt:18:9:18:26\n  ...while extracting a block body (<no name>) at long_string.kt:13:22:19:1\n  ...while extracting a body (<no name>) at long_string.kt:13:22:19:1\n  ...while extracting a function (longLiteralFun) at long_string.kt:13:1:19:1\n  ...while extracting a declaration (longLiteralFun) at long_string.kt:13:1:19:1\n  ...while extracting a file (long_string.kt) at long_string.kt:1:1:21:0\n |
+| file://:0:0:0:0 | Truncated string of length 1048578 | CodeQL Kotlin extractor | 2 |  | Truncated string of length 1048578 | DATE TIME Truncated string of length 1048578\nTruncated string of length 1048578, starting 'ABBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBB', ending 'BBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBCDEF'  ...while extracting a expression (<no name>) at long_string.kt:17:31:17:1048608\n  ...while extracting a variable expr (longStringLiteral4) at long_string.kt:17:9:17:26\n  ...while extracting a variable (longStringLiteral4) at long_string.kt:17:9:17:26\n  ...while extracting a statement (longStringLiteral4) at long_string.kt:17:9:17:26\n  ...while extracting a block body (<no name>) at long_string.kt:13:22:19:1\n  ...while extracting a body (<no name>) at long_string.kt:13:22:19:1\n  ...while extracting a function (longLiteralFun) at long_string.kt:13:1:19:1\n  ...while extracting a declaration (longLiteralFun) at long_string.kt:13:1:19:1\n  ...while extracting a file (long_string.kt) at long_string.kt:1:1:21:0\n |
+| file://:0:0:0:0 | Truncated string of length 1048579 | CodeQL Kotlin extractor | 2 |  | Truncated string of length 1048579 | DATE TIME Truncated string of length 1048579\nTruncated string of length 1048579, starting '"ABBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBB', ending 'BBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBCDE"'  ...while extracting a expression (<no name>) at long_string.kt:16:31:16:1048607\n  ...while extracting a variable expr (longStringLiteral3) at long_string.kt:16:9:16:26\n  ...while extracting a variable (longStringLiteral3) at long_string.kt:16:9:16:26\n  ...while extracting a statement (longStringLiteral3) at long_string.kt:16:9:16:26\n  ...while extracting a block body (<no name>) at long_string.kt:13:22:19:1\n  ...while extracting a body (<no name>) at long_string.kt:13:22:19:1\n  ...while extracting a function (longLiteralFun) at long_string.kt:13:1:19:1\n  ...while extracting a declaration (longLiteralFun) at long_string.kt:13:1:19:1\n  ...while extracting a file (long_string.kt) at long_string.kt:1:1:21:0\n |
+| file://:0:0:0:0 | Truncated string of length 1048580 | CodeQL Kotlin extractor | 2 |  | Truncated string of length 1048580 | DATE TIME Truncated string of length 1048580\nTruncated string of length 1048580, starting '"ABBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBB', ending 'BBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBCDEF"'  ...while extracting a expression (<no name>) at long_string.kt:17:31:17:1048608\n  ...while extracting a variable expr (longStringLiteral4) at long_string.kt:17:9:17:26\n  ...while extracting a variable (longStringLiteral4) at long_string.kt:17:9:17:26\n  ...while extracting a statement (longStringLiteral4) at long_string.kt:17:9:17:26\n  ...while extracting a block body (<no name>) at long_string.kt:13:22:19:1\n  ...while extracting a body (<no name>) at long_string.kt:13:22:19:1\n  ...while extracting a function (longLiteralFun) at long_string.kt:13:1:19:1\n  ...while extracting a declaration (longLiteralFun) at long_string.kt:13:1:19:1\n  ...while extracting a file (long_string.kt) at long_string.kt:1:1:21:0\n |
+| file://:0:0:0:0 | Truncated string of length 2097153 | CodeQL Kotlin extractor | 2 |  | Truncated string of length 2097153 | DATE TIME Truncated string of length 2097153\nTruncated string of length 2097153, starting '"A\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"', ending '"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"\\"CDEF"'  ...while extracting a expression (<no name>) at long_string.kt:18:31:18:2097181\n  ...while extracting a variable expr (longStringLiteral5) at long_string.kt:18:9:18:26\n  ...while extracting a variable (longStringLiteral5) at long_string.kt:18:9:18:26\n  ...while extracting a statement (longStringLiteral5) at long_string.kt:18:9:18:26\n  ...while extracting a block body (<no name>) at long_string.kt:13:22:19:1\n  ...while extracting a body (<no name>) at long_string.kt:13:22:19:1\n  ...while extracting a function (longLiteralFun) at long_string.kt:13:1:19:1\n  ...while extracting a declaration (longLiteralFun) at long_string.kt:13:1:19:1\n  ...while extracting a file (long_string.kt) at long_string.kt:1:1:21:0\n |
diff --git a/java/ql/test/kotlin/library-tests/variables/variables.expected b/java/ql/test/kotlin/library-tests/variables/variables.expected
index c4aaa4a1620..9b7abda1536 100644
--- a/java/ql/test/kotlin/library-tests/variables/variables.expected
+++ b/java/ql/test/kotlin/library-tests/variables/variables.expected
@@ -1,7 +1,7 @@
 isFinal
-| variables.kt:6:9:6:26 | int local1 | final |
-| variables.kt:8:9:8:26 | int local2 | non-final |
-| variables.kt:10:9:10:26 | int local3 | final |
+| variables.kt:6:13:6:18 | int local1 | final |
+| variables.kt:8:13:8:18 | int local2 | non-final |
+| variables.kt:10:13:10:18 | int local3 | final |
 compileTimeConstant
 | variables.kt:3:5:3:21 | prop |
 | variables.kt:3:5:3:21 | this.prop |
@@ -11,9 +11,9 @@ compileTimeConstant
 #select
 | variables.kt:3:5:3:21 | prop | int | variables.kt:3:21:3:21 | 1 |
 | variables.kt:5:20:5:29 | param | int | file://:0:0:0:0 | <none> |
-| variables.kt:6:9:6:26 | int local1 | int | variables.kt:6:22:6:26 | ... + ... |
-| variables.kt:8:9:8:26 | int local2 | int | variables.kt:8:22:8:26 | ... + ... |
-| variables.kt:10:9:10:26 | int local3 | int | variables.kt:10:22:10:26 | param |
+| variables.kt:6:13:6:18 | int local1 | int | variables.kt:6:22:6:26 | ... + ... |
+| variables.kt:8:13:8:18 | int local2 | int | variables.kt:8:22:8:26 | ... + ... |
+| variables.kt:10:13:10:18 | int local3 | int | variables.kt:10:22:10:26 | param |
 | variables.kt:15:1:15:21 | topLevel | int | variables.kt:15:21:15:21 | 1 |
 | variables.kt:21:11:21:18 | o | C1 | file://:0:0:0:0 | <none> |
 | variables.kt:21:11:21:18 | o | C1 | variables.kt:21:11:21:18 | o |
diff --git a/java/ql/test/kotlin/query-tests/UnderscoreIdentifier/test.expected b/java/ql/test/kotlin/query-tests/UnderscoreIdentifier/test.expected
index dc118062b3d..48fa4a1e4ab 100644
--- a/java/ql/test/kotlin/query-tests/UnderscoreIdentifier/test.expected
+++ b/java/ql/test/kotlin/query-tests/UnderscoreIdentifier/test.expected
@@ -1,7 +1,7 @@
-| Test.kt:3:9:3:31 | List<Integer> l |
+| Test.kt:3:13:3:13 | List<Integer> l |
 | Test.kt:4:28:4:32 | index |
 | Test.kt:4:35:4:35 | p1 |
-| Test.kt:6:9:6:26 | Pair<Integer,Integer> p |
+| Test.kt:6:13:6:13 | Pair<Integer,Integer> p |
 | Test.kt:7:14:7:18 | int first |
 | Test.kt:7:26:7:26 | Pair<Integer,Integer> tmp0_container |
 | Test.kt:8:14:8:25 | Exception _ |

From 180c3cee44adf4b97392a5183a699ef5b6bb96a2 Mon Sep 17 00:00:00 2001
From: Chris Smowton <smowton@github.com>
Date: Fri, 25 Nov 2022 10:54:50 +0000
Subject: [PATCH 0633/1420] Accept integration test changes caused by variable
 location changes

---
 .../kotlin/enhanced-nullability/test.expected |  2 +-
 .../kotlin/nested_generic_types/test.expected | 44 +++++++++----------
 2 files changed, 23 insertions(+), 23 deletions(-)

diff --git a/java/ql/integration-tests/all-platforms/kotlin/enhanced-nullability/test.expected b/java/ql/integration-tests/all-platforms/kotlin/enhanced-nullability/test.expected
index 04702df7916..e78d827c621 100644
--- a/java/ql/integration-tests/all-platforms/kotlin/enhanced-nullability/test.expected
+++ b/java/ql/integration-tests/all-platforms/kotlin/enhanced-nullability/test.expected
@@ -2,7 +2,7 @@ exprs
 | Test.java:5:19:5:25 | Integer | Integer |
 | Test.java:5:38:5:44 | Integer | Integer |
 | Test.java:5:58:5:58 | p | Integer |
-| user.kt:2:3:2:16 | x | int |
+| user.kt:2:7:2:7 | x | int |
 | user.kt:2:11:2:11 | t | Test |
 | user.kt:2:11:2:16 | f(...) | Integer |
 | user.kt:2:13:2:16 | <implicit not null> | int |
diff --git a/java/ql/integration-tests/all-platforms/kotlin/nested_generic_types/test.expected b/java/ql/integration-tests/all-platforms/kotlin/nested_generic_types/test.expected
index 94ec21eca1a..0441e5afe70 100644
--- a/java/ql/integration-tests/all-platforms/kotlin/nested_generic_types/test.expected
+++ b/java/ql/integration-tests/all-platforms/kotlin/nested_generic_types/test.expected
@@ -319,28 +319,28 @@ javaKotlinConstructorAgreement
 | JavaUser.java:25:62:25:82 | new OuterNotGeneric(...) | KotlinUser.kt:26:28:26:44 | new OuterNotGeneric(...) | extlib.jar/extlib/OuterNotGeneric.class:0:0:0:0 | OuterNotGeneric |
 | JavaUser.java:27:39:27:71 | new TypeParamVisibility<String>(...) | KotlinUser.kt:28:15:28:43 | new TypeParamVisibility<String>(...) | extlib.jar/extlib/TypeParamVisibility.class:0:0:0:0 | TypeParamVisibility<String> |
 javaKotlinLocalTypeAgreement
-| JavaUser.java:7:5:7:111 | InnerGeneric<String> a | KotlinUser.kt:9:5:9:63 | InnerGeneric<String> a | extlib.jar/extlib/OuterGeneric$InnerGeneric.class:0:0:0:0 | InnerGeneric<String> |
-| JavaUser.java:7:5:7:111 | InnerGeneric<String> a | KotlinUser.kt:10:5:10:65 | InnerGeneric<String> a2 | extlib.jar/extlib/OuterGeneric$InnerGeneric.class:0:0:0:0 | InnerGeneric<String> |
-| JavaUser.java:8:5:8:124 | InnerGeneric<String> a2 | KotlinUser.kt:9:5:9:63 | InnerGeneric<String> a | extlib.jar/extlib/OuterGeneric$InnerGeneric.class:0:0:0:0 | InnerGeneric<String> |
-| JavaUser.java:8:5:8:124 | InnerGeneric<String> a2 | KotlinUser.kt:10:5:10:65 | InnerGeneric<String> a2 | extlib.jar/extlib/OuterGeneric$InnerGeneric.class:0:0:0:0 | InnerGeneric<String> |
-| JavaUser.java:9:5:9:139 | InnerGeneric<String> a3 | KotlinUser.kt:9:5:9:63 | InnerGeneric<String> a | extlib.jar/extlib/OuterGeneric$InnerGeneric.class:0:0:0:0 | InnerGeneric<String> |
-| JavaUser.java:9:5:9:139 | InnerGeneric<String> a3 | KotlinUser.kt:10:5:10:65 | InnerGeneric<String> a2 | extlib.jar/extlib/OuterGeneric$InnerGeneric.class:0:0:0:0 | InnerGeneric<String> |
-| JavaUser.java:10:5:10:98 | InnerNotGeneric<> b | KotlinUser.kt:11:5:11:49 | InnerNotGeneric<> b | extlib.jar/extlib/OuterGeneric$InnerNotGeneric.class:0:0:0:0 | InnerNotGeneric<> |
-| JavaUser.java:11:5:11:97 | InnerNotGeneric<> b2 | KotlinUser.kt:12:5:12:53 | InnerNotGeneric<> b2 | extlib.jar/extlib/OuterGeneric$InnerNotGeneric.class:0:0:0:0 | InnerNotGeneric<> |
-| JavaUser.java:11:5:11:97 | InnerNotGeneric<> b2 | KotlinUser.kt:25:5:25:69 | InnerNotGeneric<> innerGetterTest | extlib.jar/extlib/OuterGeneric$InnerNotGeneric.class:0:0:0:0 | InnerNotGeneric<> |
-| JavaUser.java:12:5:12:96 | InnerGeneric<String> c | KotlinUser.kt:13:5:13:52 | InnerGeneric<String> c | extlib.jar/extlib/OuterNotGeneric$InnerGeneric.class:0:0:0:0 | InnerGeneric<String> |
-| JavaUser.java:12:5:12:96 | InnerGeneric<String> c | KotlinUser.kt:26:5:26:62 | InnerGeneric<String> innerGetterTest2 | extlib.jar/extlib/OuterNotGeneric$InnerGeneric.class:0:0:0:0 | InnerGeneric<String> |
-| JavaUser.java:13:5:13:112 | InnerStaticGeneric<String> d | KotlinUser.kt:14:5:14:63 | InnerStaticGeneric<String> d | extlib.jar/extlib/OuterGeneric$InnerStaticGeneric.class:0:0:0:0 | InnerStaticGeneric<String> |
-| JavaUser.java:14:5:14:249 | InnerManyParams<Long,Short> e | KotlinUser.kt:15:5:15:100 | InnerManyParams<Long,Short> e | extlib.jar/extlib/OuterManyParams$MiddleManyParams$InnerManyParams.class:0:0:0:0 | InnerManyParams<Long,Short> |
-| JavaUser.java:24:5:24:109 | InnerNotGeneric<> innerGetterTest | KotlinUser.kt:12:5:12:53 | InnerNotGeneric<> b2 | extlib.jar/extlib/OuterGeneric$InnerNotGeneric.class:0:0:0:0 | InnerNotGeneric<> |
-| JavaUser.java:24:5:24:109 | InnerNotGeneric<> innerGetterTest | KotlinUser.kt:25:5:25:69 | InnerNotGeneric<> innerGetterTest | extlib.jar/extlib/OuterGeneric$InnerNotGeneric.class:0:0:0:0 | InnerNotGeneric<> |
-| JavaUser.java:25:5:25:102 | InnerGeneric<String> innerGetterTest2 | KotlinUser.kt:13:5:13:52 | InnerGeneric<String> c | extlib.jar/extlib/OuterNotGeneric$InnerGeneric.class:0:0:0:0 | InnerGeneric<String> |
-| JavaUser.java:25:5:25:102 | InnerGeneric<String> innerGetterTest2 | KotlinUser.kt:26:5:26:62 | InnerGeneric<String> innerGetterTest2 | extlib.jar/extlib/OuterNotGeneric$InnerGeneric.class:0:0:0:0 | InnerGeneric<String> |
-| JavaUser.java:27:5:27:72 | TypeParamVisibility<String> tpv | KotlinUser.kt:28:5:28:43 | TypeParamVisibility<String> tpv | extlib.jar/extlib/TypeParamVisibility.class:0:0:0:0 | TypeParamVisibility<String> |
-| JavaUser.java:28:5:28:111 | VisibleBecauseInner<String> visibleBecauseInner | KotlinUser.kt:29:5:29:58 | VisibleBecauseInner<String> visibleBecauseInner | extlib.jar/extlib/TypeParamVisibility$VisibleBecauseInner.class:0:0:0:0 | VisibleBecauseInner<String> |
-| JavaUser.java:29:5:29:172 | VisibleBecauseInnerIndirect<String> visibleBecauseInnerIndirect | KotlinUser.kt:30:5:30:74 | VisibleBecauseInnerIndirect<String> visibleBecauseInnerIndirect | extlib.jar/extlib/TypeParamVisibility$VisibleBecauseInnerIndirectContainer$VisibleBecauseInnerIndirect.class:0:0:0:0 | VisibleBecauseInnerIndirect<String> |
-| JavaUser.java:30:5:30:115 | NotVisibleBecauseStatic<String> notVisibleBecauseStatic | KotlinUser.kt:31:5:31:66 | NotVisibleBecauseStatic<String> notVisibleBecauseStatic | extlib.jar/extlib/TypeParamVisibility$NotVisibleBecauseStatic.class:0:0:0:0 | NotVisibleBecauseStatic<String> |
-| JavaUser.java:31:5:31:180 | NotVisibleBecauseStaticIndirect<String> notVisibleBecauseStaticIndirect | KotlinUser.kt:32:5:32:82 | NotVisibleBecauseStaticIndirect<String> notVisibleBecauseStaticIndirect | extlib.jar/extlib/TypeParamVisibility$NotVisibleBecauseStaticIndirectContainer$NotVisibleBecauseStaticIndirect.class:0:0:0:0 | NotVisibleBecauseStaticIndirect<String> |
+| JavaUser.java:7:5:7:111 | InnerGeneric<String> a | KotlinUser.kt:9:9:9:9 | InnerGeneric<String> a | extlib.jar/extlib/OuterGeneric$InnerGeneric.class:0:0:0:0 | InnerGeneric<String> |
+| JavaUser.java:7:5:7:111 | InnerGeneric<String> a | KotlinUser.kt:10:9:10:10 | InnerGeneric<String> a2 | extlib.jar/extlib/OuterGeneric$InnerGeneric.class:0:0:0:0 | InnerGeneric<String> |
+| JavaUser.java:8:5:8:124 | InnerGeneric<String> a2 | KotlinUser.kt:9:9:9:9 | InnerGeneric<String> a | extlib.jar/extlib/OuterGeneric$InnerGeneric.class:0:0:0:0 | InnerGeneric<String> |
+| JavaUser.java:8:5:8:124 | InnerGeneric<String> a2 | KotlinUser.kt:10:9:10:10 | InnerGeneric<String> a2 | extlib.jar/extlib/OuterGeneric$InnerGeneric.class:0:0:0:0 | InnerGeneric<String> |
+| JavaUser.java:9:5:9:139 | InnerGeneric<String> a3 | KotlinUser.kt:9:9:9:9 | InnerGeneric<String> a | extlib.jar/extlib/OuterGeneric$InnerGeneric.class:0:0:0:0 | InnerGeneric<String> |
+| JavaUser.java:9:5:9:139 | InnerGeneric<String> a3 | KotlinUser.kt:10:9:10:10 | InnerGeneric<String> a2 | extlib.jar/extlib/OuterGeneric$InnerGeneric.class:0:0:0:0 | InnerGeneric<String> |
+| JavaUser.java:10:5:10:98 | InnerNotGeneric<> b | KotlinUser.kt:11:9:11:9 | InnerNotGeneric<> b | extlib.jar/extlib/OuterGeneric$InnerNotGeneric.class:0:0:0:0 | InnerNotGeneric<> |
+| JavaUser.java:11:5:11:97 | InnerNotGeneric<> b2 | KotlinUser.kt:12:9:12:10 | InnerNotGeneric<> b2 | extlib.jar/extlib/OuterGeneric$InnerNotGeneric.class:0:0:0:0 | InnerNotGeneric<> |
+| JavaUser.java:11:5:11:97 | InnerNotGeneric<> b2 | KotlinUser.kt:25:9:25:23 | InnerNotGeneric<> innerGetterTest | extlib.jar/extlib/OuterGeneric$InnerNotGeneric.class:0:0:0:0 | InnerNotGeneric<> |
+| JavaUser.java:12:5:12:96 | InnerGeneric<String> c | KotlinUser.kt:13:9:13:9 | InnerGeneric<String> c | extlib.jar/extlib/OuterNotGeneric$InnerGeneric.class:0:0:0:0 | InnerGeneric<String> |
+| JavaUser.java:12:5:12:96 | InnerGeneric<String> c | KotlinUser.kt:26:9:26:24 | InnerGeneric<String> innerGetterTest2 | extlib.jar/extlib/OuterNotGeneric$InnerGeneric.class:0:0:0:0 | InnerGeneric<String> |
+| JavaUser.java:13:5:13:112 | InnerStaticGeneric<String> d | KotlinUser.kt:14:9:14:9 | InnerStaticGeneric<String> d | extlib.jar/extlib/OuterGeneric$InnerStaticGeneric.class:0:0:0:0 | InnerStaticGeneric<String> |
+| JavaUser.java:14:5:14:249 | InnerManyParams<Long,Short> e | KotlinUser.kt:15:9:15:9 | InnerManyParams<Long,Short> e | extlib.jar/extlib/OuterManyParams$MiddleManyParams$InnerManyParams.class:0:0:0:0 | InnerManyParams<Long,Short> |
+| JavaUser.java:24:5:24:109 | InnerNotGeneric<> innerGetterTest | KotlinUser.kt:12:9:12:10 | InnerNotGeneric<> b2 | extlib.jar/extlib/OuterGeneric$InnerNotGeneric.class:0:0:0:0 | InnerNotGeneric<> |
+| JavaUser.java:24:5:24:109 | InnerNotGeneric<> innerGetterTest | KotlinUser.kt:25:9:25:23 | InnerNotGeneric<> innerGetterTest | extlib.jar/extlib/OuterGeneric$InnerNotGeneric.class:0:0:0:0 | InnerNotGeneric<> |
+| JavaUser.java:25:5:25:102 | InnerGeneric<String> innerGetterTest2 | KotlinUser.kt:13:9:13:9 | InnerGeneric<String> c | extlib.jar/extlib/OuterNotGeneric$InnerGeneric.class:0:0:0:0 | InnerGeneric<String> |
+| JavaUser.java:25:5:25:102 | InnerGeneric<String> innerGetterTest2 | KotlinUser.kt:26:9:26:24 | InnerGeneric<String> innerGetterTest2 | extlib.jar/extlib/OuterNotGeneric$InnerGeneric.class:0:0:0:0 | InnerGeneric<String> |
+| JavaUser.java:27:5:27:72 | TypeParamVisibility<String> tpv | KotlinUser.kt:28:9:28:11 | TypeParamVisibility<String> tpv | extlib.jar/extlib/TypeParamVisibility.class:0:0:0:0 | TypeParamVisibility<String> |
+| JavaUser.java:28:5:28:111 | VisibleBecauseInner<String> visibleBecauseInner | KotlinUser.kt:29:9:29:27 | VisibleBecauseInner<String> visibleBecauseInner | extlib.jar/extlib/TypeParamVisibility$VisibleBecauseInner.class:0:0:0:0 | VisibleBecauseInner<String> |
+| JavaUser.java:29:5:29:172 | VisibleBecauseInnerIndirect<String> visibleBecauseInnerIndirect | KotlinUser.kt:30:9:30:35 | VisibleBecauseInnerIndirect<String> visibleBecauseInnerIndirect | extlib.jar/extlib/TypeParamVisibility$VisibleBecauseInnerIndirectContainer$VisibleBecauseInnerIndirect.class:0:0:0:0 | VisibleBecauseInnerIndirect<String> |
+| JavaUser.java:30:5:30:115 | NotVisibleBecauseStatic<String> notVisibleBecauseStatic | KotlinUser.kt:31:9:31:31 | NotVisibleBecauseStatic<String> notVisibleBecauseStatic | extlib.jar/extlib/TypeParamVisibility$NotVisibleBecauseStatic.class:0:0:0:0 | NotVisibleBecauseStatic<String> |
+| JavaUser.java:31:5:31:180 | NotVisibleBecauseStaticIndirect<String> notVisibleBecauseStaticIndirect | KotlinUser.kt:32:9:32:39 | NotVisibleBecauseStaticIndirect<String> notVisibleBecauseStaticIndirect | extlib.jar/extlib/TypeParamVisibility$NotVisibleBecauseStaticIndirectContainer$NotVisibleBecauseStaticIndirect.class:0:0:0:0 | NotVisibleBecauseStaticIndirect<String> |
 #select
 | JavaUser.java:7:52:7:110 | new InnerGeneric<String>(...) | extlib.jar/extlib/OuterGeneric$InnerGeneric.class:0:0:0:0 | InnerGeneric<String> | extlib.jar/extlib/OuterGeneric$InnerGeneric.class:0:0:0:0 | InnerGeneric<String> | JavaUser.java:7:99:7:104 | String |
 | JavaUser.java:7:53:7:79 | new OuterGeneric<Integer>(...) | extlib.jar/extlib/OuterGeneric.class:0:0:0:0 | OuterGeneric<Integer> | extlib.jar/extlib/OuterGeneric.class:0:0:0:0 | OuterGeneric<Integer> | JavaUser.java:7:70:7:76 | Integer |

From edddaaa838ed72483a7cf775b65adf4b2694bff7 Mon Sep 17 00:00:00 2001
From: Paolo Tranquilli <redsun82@github.com>
Date: Fri, 25 Nov 2022 13:10:33 +0100
Subject: [PATCH 0634/1420] Swift: make mapping from swift types to tags
 explicit

This should decouple schema names from swift names, allowing to
rename schema names regardless of internal swift compiler names.
---
 swift/extractor/infra/CheckTypeMapping.cpp   |  42 ++
 swift/extractor/infra/SwiftDispatcher.h      |   6 +-
 swift/extractor/infra/SwiftTagTraits.h       | 379 +++++++++++++++----
 swift/extractor/translators/DeclTranslator.h |   6 +-
 swift/extractor/translators/TranslatorBase.h |   2 +-
 swift/extractor/trap/TrapTagTraits.h         |  13 +-
 6 files changed, 357 insertions(+), 91 deletions(-)
 create mode 100644 swift/extractor/infra/CheckTypeMapping.cpp

diff --git a/swift/extractor/infra/CheckTypeMapping.cpp b/swift/extractor/infra/CheckTypeMapping.cpp
new file mode 100644
index 00000000000..6ed763ecdcb
--- /dev/null
+++ b/swift/extractor/infra/CheckTypeMapping.cpp
@@ -0,0 +1,42 @@
+// this is a sanity check that the hierarchy in swift is mapped by the mapping in
+// SwiftTypesToTagsMap.def to the hierarchy in schema.py
+// We rely on that so that the LabelStore will preserve correct typing.
+// For a class Derived: Base we could store the label for a Derived* pointer, and then fetch the
+// label for the same pointer as Base*. If the mapping did not preserve inheritance, we would end up
+// using a trap key of the DB type associated with Derived in a position expecting the incompatible
+// DB type associated with Base.
+
+#include "swift/extractor/infra/SwiftTagTraits.h"
+
+using namespace codeql;
+
+#define CHECK(KIND, TYPE, PARENT)                                                              \
+  static_assert(std::is_same_v<TrapTagOf<swift::TYPE##KIND>, void> ||                          \
+                    std::is_base_of_v<TrapTagOf<swift::PARENT>, TrapTagOf<swift::TYPE##KIND>>, \
+                "Tag of " #PARENT " must be a base of the tag of " #TYPE #KIND);
+#define CHECK_CONCRETE(KIND, TYPE, PARENT)                                                       \
+  CHECK(KIND, TYPE, PARENT)                                                                      \
+  static_assert(                                                                                 \
+      std::is_same_v<TrapTagOf<swift::TYPE##KIND>, void> ||                                      \
+          std::is_base_of_v<TrapTagOf<swift::TYPE##KIND>, ConcreteTrapTagOf<swift::TYPE##KIND>>, \
+      "Tag of " #TYPE #KIND " must be a base of its concrete tag");
+
+#define STMT(CLASS, PARENT) CHECK_CONCRETE(Stmt, CLASS, PARENT)
+#define ABSTRACT_STMT(CLASS, PARENT) CHECK(Stmt, CLASS, PARENT)
+#include <swift/AST/StmtNodes.def>
+
+#define EXPR(CLASS, PARENT) CHECK_CONCRETE(Expr, CLASS, PARENT)
+#define ABSTRACT_EXPR(CLASS, PARENT) CHECK(Expr, CLASS, PARENT)
+#include <swift/AST/ExprNodes.def>
+
+#define DECL(CLASS, PARENT) CHECK_CONCRETE(Decl, CLASS, PARENT)
+#define ABSTRACT_DECL(CLASS, PARENT) CHECK(Decl, CLASS, PARENT)
+#include <swift/AST/DeclNodes.def>
+
+#define PATTERN(CLASS, PARENT) CHECK_CONCRETE(Pattern, CLASS, PARENT)
+#define ABSTRACT_PATTERN(CLASS, PARENT) CHECK(Pattern, CLASS, PARENT)
+#include <swift/AST/PatternNodes.def>
+
+#define TYPE(CLASS, PARENT) CHECK_CONCRETE(Type, CLASS, PARENT)
+#define ABSTRACT_TYPE(CLASS, PARENT) CHECK(Type, CLASS, PARENT)
+#include <swift/AST/TypeNodes.def>
diff --git a/swift/extractor/infra/SwiftDispatcher.h b/swift/extractor/infra/SwiftDispatcher.h
index 991511e300c..304d5b183f4 100644
--- a/swift/extractor/infra/SwiftDispatcher.h
+++ b/swift/extractor/infra/SwiftDispatcher.h
@@ -179,16 +179,16 @@ class SwiftDispatcher {
   // it actually gets emitted to handle recursive cases such as recursive calls, or recursive type
   // declarations
   template <typename E, typename... Args, std::enable_if_t<IsStorable<E>>* = nullptr>
-  TrapLabelOf<E> assignNewLabel(const E& e, Args&&... args) {
+  TrapLabel<ConcreteTrapTagOf<E>> assignNewLabel(const E& e, Args&&... args) {
     assert(waitingForNewLabel == Store::Handle{e} && "assignNewLabel called on wrong entity");
-    auto label = trap.createLabel<TrapTagOf<E>>(std::forward<Args>(args)...);
+    auto label = trap.createLabel<ConcreteTrapTagOf<E>>(std::forward<Args>(args)...);
     store.insert(e, label);
     waitingForNewLabel = std::monostate{};
     return label;
   }
 
   template <typename E, typename... Args, std::enable_if_t<IsStorable<E*>>* = nullptr>
-  TrapLabelOf<E> assignNewLabel(const E& e, Args&&... args) {
+  TrapLabel<ConcreteTrapTagOf<E>> assignNewLabel(const E& e, Args&&... args) {
     return assignNewLabel(&e, std::forward<Args>(args)...);
   }
 
diff --git a/swift/extractor/infra/SwiftTagTraits.h b/swift/extractor/infra/SwiftTagTraits.h
index 78b7bcc530e..acfbd20410f 100644
--- a/swift/extractor/infra/SwiftTagTraits.h
+++ b/swift/extractor/infra/SwiftTagTraits.h
@@ -1,100 +1,319 @@
 #pragma once
 
 // This file implements the mapping needed by the API defined in the TrapTagTraits.h, so that
-// TrapTagOf/TrapLabelOf provide the tags/labels for specific swift entity types.
+// TrapTagOf/TrapLabelOf/TrapClassOf provide the tags/labels for specific swift entity types.
 #include <filesystem>
-#include <swift/AST/ASTVisitor.h>
 #include "swift/extractor/trap/TrapTagTraits.h"
 #include "swift/extractor/trap/generated/TrapTags.h"
+#include <swift/AST/ASTNode.h>
+#include <swift/AST/Decl.h>
+#include <swift/AST/Expr.h>
+#include <swift/AST/Stmt.h>
+#include <swift/AST/Pattern.h>
+#include <swift/AST/TypeRepr.h>
+#include <swift/AST/Type.h>
 
 namespace codeql {
 
-// OverloadSetRefExpr is collapsed with its only derived class OverloadedDeclRefExpr
-using OverloadSetRefExprTag = OverloadedDeclRefExprTag;
-
-// We don't really expect to see the following in extraction. Mapping these tags to void effectively
-// ignores all elements of that class (with a message).
-
-// only generated for code editing
-using CodeCompletionExprTag = void;
-using EditorPlaceholderExprTag = void;
-// not present after the Sema phase
-using ArrowExprTag = void;
-// experimental variadic generics, implemented only in the frontend for now, thus not compilable
-using PackExprTag = void;
-using PackTypeTag = void;
-using ReifyPackExprTag = void;
-using PackExpansionTypeTag = void;
-using SequenceArchetypeTypeTag = void;
-// Placeholder types appear in ambiguous types but are anyway transformed to UnresolvedType
-using PlaceholderTypeTag = void;
-// SIL types that cannot really appear in the frontend run
-using SILBlockStorageTypeTag = void;
-using SILBoxTypeTag = void;
-using SILFunctionTypeTag = void;
-using SILTokenTypeTag = void;
-// This is created during type checking and is only used for constraint checking
-using TypeVariableTypeTag = void;
-
-#define MAP_TYPE_TO_TAG(TYPE, TAG)    \
+#define MAP(TYPE, TAG)                \
   template <>                         \
   struct detail::ToTagFunctor<TYPE> { \
     using type = TAG;                 \
-  }
-#define MAP_TAG(TYPE) MAP_TYPE_TO_TAG(swift::TYPE, TYPE##Tag)
-#define MAP_SUBTAG(TYPE, PARENT)                                                              \
-  MAP_TAG(TYPE);                                                                              \
-  static_assert(std::is_same_v<TYPE##Tag, void> || std::is_base_of_v<PARENT##Tag, TYPE##Tag>, \
-                #PARENT "Tag must be a base of " #TYPE "Tag");
+  };
+#define MAP_CONCRETE(TYPE, TAG)                \
+  template <>                                  \
+  struct detail::ToTagConcreteOverride<TYPE> { \
+    using type = TAG;                          \
+  };
 
-#define OVERRIDE_TAG(TYPE, TAG)               \
-  template <>                                 \
-  struct detail::ToTagOverride<swift::TYPE> { \
-    using type = TAG;                         \
-  };                                          \
-  static_assert(std::is_base_of_v<TYPE##Tag, TAG>, "override is not a subtag");
+// clang-format off
+// use indentation to recreate all involved type hierarchies
+MAP(std::filesystem::path, DbFileTag)
+MAP(swift::StmtCondition, StmtConditionTag)
+MAP(swift::StmtConditionElement, ConditionElementTag)
+MAP(swift::CaseLabelItem, CaseLabelItemTag)
 
-MAP_TAG(Stmt);
-MAP_TAG(StmtCondition);
-MAP_TYPE_TO_TAG(swift::StmtConditionElement, ConditionElementTag);
-MAP_TAG(CaseLabelItem);
-#define ABSTRACT_STMT(CLASS, PARENT) MAP_SUBTAG(CLASS##Stmt, PARENT)
-#define STMT(CLASS, PARENT) ABSTRACT_STMT(CLASS, PARENT)
-#include <swift/AST/StmtNodes.def>
+MAP(swift::Stmt, StmtTag)
+  MAP(swift::BraceStmt, BraceStmtTag)
+  MAP(swift::ReturnStmt, ReturnStmtTag)
+  MAP(swift::YieldStmt, YieldStmtTag)
+  MAP(swift::DeferStmt, DeferStmtTag)
+  MAP(swift::LabeledStmt, LabeledStmtTag)
+    MAP(swift::LabeledConditionalStmt, LabeledConditionalStmtTag)
+      MAP(swift::IfStmt, IfStmtTag)
+      MAP(swift::GuardStmt, GuardStmtTag)
+      MAP(swift::WhileStmt, WhileStmtTag)
+    MAP(swift::DoStmt, DoStmtTag)
+    MAP(swift::DoCatchStmt, DoCatchStmtTag)
+    MAP(swift::RepeatWhileStmt, RepeatWhileStmtTag)
+    MAP(swift::ForEachStmt, ForEachStmtTag)
+    MAP(swift::SwitchStmt, SwitchStmtTag)
+  MAP(swift::CaseStmt, CaseStmtTag)
+  MAP(swift::BreakStmt, BreakStmtTag)
+  MAP(swift::ContinueStmt, ContinueStmtTag)
+  MAP(swift::FallthroughStmt, FallthroughStmtTag)
+  MAP(swift::FailStmt, FailStmtTag)
+  MAP(swift::ThrowStmt, ThrowStmtTag)
+  MAP(swift::PoundAssertStmt, PoundAssertStmtTag)
 
-MAP_TAG(Expr);
-MAP_TAG(Argument);
-#define ABSTRACT_EXPR(CLASS, PARENT) MAP_SUBTAG(CLASS##Expr, PARENT)
-#define EXPR(CLASS, PARENT) ABSTRACT_EXPR(CLASS, PARENT)
-#include <swift/AST/ExprNodes.def>
+MAP(swift::Argument, ArgumentTag)
+MAP(swift::Expr, ExprTag)
+  MAP(swift::ErrorExpr, ErrorExprTag)
+  MAP(swift::LiteralExpr, LiteralExprTag)
+    MAP(swift::NilLiteralExpr, NilLiteralExprTag)
+    MAP(swift::BuiltinLiteralExpr, BuiltinLiteralExprTag)
+      MAP(swift::BooleanLiteralExpr, BooleanLiteralExprTag)
+      MAP(swift::NumberLiteralExpr, NumberLiteralExprTag)
+        MAP(swift::IntegerLiteralExpr, IntegerLiteralExprTag)
+        MAP(swift::FloatLiteralExpr, FloatLiteralExprTag)
+      MAP(swift::StringLiteralExpr, StringLiteralExprTag)
+      MAP(swift::MagicIdentifierLiteralExpr, MagicIdentifierLiteralExprTag)
+    MAP(swift::InterpolatedStringLiteralExpr, InterpolatedStringLiteralExprTag)
+    MAP(swift::RegexLiteralExpr, RegexLiteralExprTag)
+    MAP(swift::ObjectLiteralExpr, ObjectLiteralExprTag)
+  MAP(swift::DiscardAssignmentExpr, DiscardAssignmentExprTag)
+  MAP(swift::DeclRefExpr, DeclRefExprTag)
+  MAP(swift::SuperRefExpr, SuperRefExprTag)
+  MAP(swift::TypeExpr, TypeExprTag)
+  MAP(swift::OtherConstructorDeclRefExpr, OtherConstructorDeclRefExprTag)
+  MAP(swift::DotSyntaxBaseIgnoredExpr, DotSyntaxBaseIgnoredExprTag)
+  MAP(swift::OverloadSetRefExpr, OverloadedDeclRefExprTag)  // collapsed with its only derived class OverloadedDeclRefExpr
+    MAP(swift::OverloadedDeclRefExpr, OverloadedDeclRefExprTag)
+  MAP(swift::UnresolvedDeclRefExpr, UnresolvedDeclRefExprTag)
+  MAP(swift::LookupExpr, LookupExprTag)
+    MAP(swift::MemberRefExpr, MemberRefExprTag)
+    MAP(swift::SubscriptExpr, SubscriptExprTag)
+    MAP(swift::DynamicLookupExpr, DynamicLookupExprTag)
+      MAP(swift::DynamicMemberRefExpr, DynamicMemberRefExprTag)
+      MAP(swift::DynamicSubscriptExpr, DynamicSubscriptExprTag)
+  MAP(swift::UnresolvedSpecializeExpr, UnresolvedSpecializeExprTag)
+  MAP(swift::UnresolvedMemberExpr, UnresolvedMemberExprTag)
+  MAP(swift::UnresolvedDotExpr, UnresolvedDotExprTag)
+  MAP(swift::SequenceExpr, SequenceExprTag)
+  MAP(swift::IdentityExpr, IdentityExprTag)
+    MAP(swift::ParenExpr, ParenExprTag)
+    MAP(swift::DotSelfExpr, DotSelfExprTag)
+    MAP(swift::AwaitExpr, AwaitExprTag)
+    MAP(swift::UnresolvedMemberChainResultExpr, UnresolvedMemberChainResultExprTag)
+  MAP(swift::AnyTryExpr, AnyTryExprTag)
+    MAP(swift::TryExpr, TryExprTag)
+    MAP(swift::ForceTryExpr, ForceTryExprTag)
+    MAP(swift::OptionalTryExpr, OptionalTryExprTag)
+  MAP(swift::TupleExpr, TupleExprTag)
+  MAP(swift::CollectionExpr, CollectionExprTag)
+    MAP(swift::ArrayExpr, ArrayExprTag)
+    MAP(swift::DictionaryExpr, DictionaryExprTag)
+  MAP(swift::KeyPathApplicationExpr, KeyPathApplicationExprTag)
+  MAP(swift::TupleElementExpr, TupleElementExprTag)
+  MAP(swift::CaptureListExpr, CaptureListExprTag)
+  MAP(swift::AbstractClosureExpr, AbstractClosureExprTag)
+    MAP(swift::ClosureExpr, ClosureExprTag)
+    MAP(swift::AutoClosureExpr, AutoClosureExprTag)
+  MAP(swift::InOutExpr, InOutExprTag)
+  MAP(swift::VarargExpansionExpr, VarargExpansionExprTag)
+  MAP(swift::DynamicTypeExpr, DynamicTypeExprTag)
+  MAP(swift::RebindSelfInConstructorExpr, RebindSelfInConstructorExprTag)
+  MAP(swift::OpaqueValueExpr, OpaqueValueExprTag)
+  MAP(swift::PropertyWrapperValuePlaceholderExpr, PropertyWrapperValuePlaceholderExprTag)
+  MAP(swift::AppliedPropertyWrapperExpr, AppliedPropertyWrapperExprTag)
+  MAP(swift::DefaultArgumentExpr, DefaultArgumentExprTag)
+  MAP(swift::BindOptionalExpr, BindOptionalExprTag)
+  MAP(swift::OptionalEvaluationExpr, OptionalEvaluationExprTag)
+  MAP(swift::ForceValueExpr, ForceValueExprTag)
+  MAP(swift::OpenExistentialExpr, OpenExistentialExprTag)
+  MAP(swift::MakeTemporarilyEscapableExpr, MakeTemporarilyEscapableExprTag)
+  MAP(swift::ApplyExpr, ApplyExprTag)
+    MAP(swift::CallExpr, CallExprTag)
+    MAP(swift::PrefixUnaryExpr, PrefixUnaryExprTag)
+    MAP(swift::PostfixUnaryExpr, PostfixUnaryExprTag)
+    MAP(swift::BinaryExpr, BinaryExprTag)
+    MAP(swift::SelfApplyExpr, SelfApplyExprTag)
+      MAP(swift::DotSyntaxCallExpr, DotSyntaxCallExprTag)
+      MAP(swift::ConstructorRefCallExpr, ConstructorRefCallExprTag)
+  MAP(swift::ImplicitConversionExpr, ImplicitConversionExprTag)
+    MAP(swift::LoadExpr, LoadExprTag)
+    MAP(swift::DestructureTupleExpr, DestructureTupleExprTag)
+    MAP(swift::UnresolvedTypeConversionExpr, UnresolvedTypeConversionExprTag)
+    MAP(swift::FunctionConversionExpr, FunctionConversionExprTag)
+    MAP(swift::CovariantFunctionConversionExpr, CovariantFunctionConversionExprTag)
+    MAP(swift::CovariantReturnConversionExpr, CovariantReturnConversionExprTag)
+    MAP(swift::MetatypeConversionExpr, MetatypeConversionExprTag)
+    MAP(swift::CollectionUpcastConversionExpr, CollectionUpcastConversionExprTag)
+    MAP(swift::ErasureExpr, ErasureExprTag)
+    MAP(swift::AnyHashableErasureExpr, AnyHashableErasureExprTag)
+    MAP(swift::BridgeToObjCExpr, BridgeToObjCExprTag)
+    MAP(swift::BridgeFromObjCExpr, BridgeFromObjCExprTag)
+    MAP(swift::ConditionalBridgeFromObjCExpr, ConditionalBridgeFromObjCExprTag)
+    MAP(swift::DerivedToBaseExpr, DerivedToBaseExprTag)
+    MAP(swift::ArchetypeToSuperExpr, ArchetypeToSuperExprTag)
+    MAP(swift::InjectIntoOptionalExpr, InjectIntoOptionalExprTag)
+    MAP(swift::ClassMetatypeToObjectExpr, ClassMetatypeToObjectExprTag)
+    MAP(swift::ExistentialMetatypeToObjectExpr, ExistentialMetatypeToObjectExprTag)
+    MAP(swift::ProtocolMetatypeToObjectExpr, ProtocolMetatypeToObjectExprTag)
+    MAP(swift::InOutToPointerExpr, InOutToPointerExprTag)
+    MAP(swift::ArrayToPointerExpr, ArrayToPointerExprTag)
+    MAP(swift::StringToPointerExpr, StringToPointerExprTag)
+    MAP(swift::PointerToPointerExpr, PointerToPointerExprTag)
+    MAP(swift::ForeignObjectConversionExpr, ForeignObjectConversionExprTag)
+    MAP(swift::UnevaluatedInstanceExpr, UnevaluatedInstanceExprTag)
+    MAP(swift::UnderlyingToOpaqueExpr, UnderlyingToOpaqueExprTag)
+    MAP(swift::DifferentiableFunctionExpr, DifferentiableFunctionExprTag)
+    MAP(swift::LinearFunctionExpr, LinearFunctionExprTag)
+    MAP(swift::DifferentiableFunctionExtractOriginalExpr, DifferentiableFunctionExtractOriginalExprTag)
+    MAP(swift::LinearFunctionExtractOriginalExpr, LinearFunctionExtractOriginalExprTag)
+    MAP(swift::LinearToDifferentiableFunctionExpr, LinearToDifferentiableFunctionExprTag)
+    MAP(swift::ReifyPackExpr, void)  // experimental variadic generics
+  MAP(swift::ExplicitCastExpr, ExplicitCastExprTag)
+    MAP(swift::CheckedCastExpr, CheckedCastExprTag)
+      MAP(swift::ForcedCheckedCastExpr, ForcedCheckedCastExprTag)
+      MAP(swift::ConditionalCheckedCastExpr, ConditionalCheckedCastExprTag)
+      MAP(swift::IsExpr, IsExprTag)
+    MAP(swift::CoerceExpr, CoerceExprTag)
+  MAP(swift::ArrowExpr, void)  // not present after the Sema phase
+  MAP(swift::IfExpr, IfExprTag)
+  MAP(swift::EnumIsCaseExpr, EnumIsCaseExprTag)
+  MAP(swift::AssignExpr, AssignExprTag)
+  MAP(swift::CodeCompletionExpr, void) // only generated for code editing
+  MAP(swift::UnresolvedPatternExpr, UnresolvedPatternExprTag)
+  MAP(swift::LazyInitializerExpr, LazyInitializerExprTag)
+  MAP(swift::EditorPlaceholderExpr, void)  // only generated for code editing
+  MAP(swift::ObjCSelectorExpr, ObjCSelectorExprTag)
+  MAP(swift::KeyPathExpr, KeyPathExprTag)
+  MAP(swift::KeyPathDotExpr, KeyPathDotExprTag)
+  MAP(swift::OneWayExpr, OneWayExprTag)
+  MAP(swift::TapExpr, TapExprTag)
+  MAP(swift::PackExpr, void)  // experimental variadic generics
 
-MAP_TAG(Decl);
-#define ABSTRACT_DECL(CLASS, PARENT) MAP_SUBTAG(CLASS##Decl, PARENT)
-#define DECL(CLASS, PARENT) ABSTRACT_DECL(CLASS, PARENT)
-#include <swift/AST/DeclNodes.def>
+MAP(swift::Decl, DeclTag)
+  MAP(swift::ValueDecl, ValueDeclTag)
+    MAP(swift::TypeDecl, TypeDeclTag)
+      MAP(swift::GenericTypeDecl, GenericTypeDeclTag)
+        MAP(swift::NominalTypeDecl, NominalTypeDeclTag)
+          MAP(swift::EnumDecl, EnumDeclTag)
+          MAP(swift::StructDecl, StructDeclTag)
+          MAP(swift::ClassDecl, ClassDeclTag)
+          MAP(swift::ProtocolDecl, ProtocolDeclTag)
+        MAP(swift::OpaqueTypeDecl, OpaqueTypeDeclTag)
+        MAP(swift::TypeAliasDecl, TypeAliasDeclTag)
+      MAP(swift::AbstractTypeParamDecl, AbstractTypeParamDeclTag)
+        MAP(swift::GenericTypeParamDecl, GenericTypeParamDeclTag)
+        MAP(swift::AssociatedTypeDecl, AssociatedTypeDeclTag)
+      MAP(swift::ModuleDecl, ModuleDeclTag)
+    MAP(swift::AbstractStorageDecl, AbstractStorageDeclTag)
+      MAP(swift::VarDecl, VarDeclTag)
+        MAP_CONCRETE(swift::VarDecl, ConcreteVarDeclTag)
+        MAP(swift::ParamDecl, ParamDeclTag)
+      MAP(swift::SubscriptDecl, SubscriptDeclTag)
+    MAP(swift::AbstractFunctionDecl, AbstractFunctionDeclTag)
+      MAP(swift::ConstructorDecl, ConstructorDeclTag)
+      MAP(swift::DestructorDecl, DestructorDeclTag)
+      MAP(swift::FuncDecl, FuncDeclTag)
+        MAP_CONCRETE(swift::FuncDecl, ConcreteFuncDeclTag)
+        MAP(swift::AccessorDecl, AccessorDeclTag)
+    MAP(swift::EnumElementDecl, EnumElementDeclTag)
+  MAP(swift::ExtensionDecl, ExtensionDeclTag)
+  MAP(swift::TopLevelCodeDecl, TopLevelCodeDeclTag)
+  MAP(swift::ImportDecl, ImportDeclTag)
+  MAP(swift::IfConfigDecl, IfConfigDeclTag)
+  MAP(swift::PoundDiagnosticDecl, PoundDiagnosticDeclTag)
+  MAP(swift::PrecedenceGroupDecl, PrecedenceGroupDeclTag)
+  MAP(swift::MissingMemberDecl, MissingMemberDeclTag)
+  MAP(swift::PatternBindingDecl, PatternBindingDeclTag)
+  MAP(swift::EnumCaseDecl, EnumCaseDeclTag)
+  MAP(swift::OperatorDecl, OperatorDeclTag)
+    MAP(swift::InfixOperatorDecl, InfixOperatorDeclTag)
+    MAP(swift::PrefixOperatorDecl, PrefixOperatorDeclTag)
+    MAP(swift::PostfixOperatorDecl, PostfixOperatorDeclTag)
 
-MAP_TAG(Pattern);
-#define ABSTRACT_PATTERN(CLASS, PARENT) MAP_SUBTAG(CLASS##Pattern, PARENT)
-#define PATTERN(CLASS, PARENT) ABSTRACT_PATTERN(CLASS, PARENT)
-#include <swift/AST/PatternNodes.def>
+MAP(swift::Pattern, PatternTag)
+  MAP(swift::ParenPattern, ParenPatternTag)
+  MAP(swift::TuplePattern, TuplePatternTag)
+  MAP(swift::NamedPattern, NamedPatternTag)
+  MAP(swift::AnyPattern, AnyPatternTag)
+  MAP(swift::TypedPattern, TypedPatternTag)
+  MAP(swift::BindingPattern, BindingPatternTag)
+  MAP(swift::IsPattern, IsPatternTag)
+  MAP(swift::EnumElementPattern, EnumElementPatternTag)
+  MAP(swift::OptionalSomePattern, OptionalSomePatternTag)
+  MAP(swift::BoolPattern, BoolPatternTag)
+  MAP(swift::ExprPattern, ExprPatternTag)
 
-MAP_TAG(TypeRepr);
-
-MAP_TYPE_TO_TAG(swift::TypeBase, TypeTag);
-#define ABSTRACT_TYPE(CLASS, PARENT) MAP_SUBTAG(CLASS##Type, PARENT)
-#define TYPE(CLASS, PARENT) ABSTRACT_TYPE(CLASS, PARENT)
-#include <swift/AST/TypeNodes.def>
-
-OVERRIDE_TAG(FuncDecl, ConcreteFuncDeclTag);
-OVERRIDE_TAG(VarDecl, ConcreteVarDeclTag);
-
-MAP_TYPE_TO_TAG(std::filesystem::path, DbFileTag);
-
-#undef MAP_TAG
-#undef MAP_SUBTAG
-#undef MAP_TYPE_TO_TAG
-#undef OVERRIDE_TAG
-
-// All the other macros defined here are undefined by the .def files
+MAP(swift::TypeRepr, TypeReprTag)
 
+MAP(swift::Type, TypeTag)
+MAP(swift::TypeBase, TypeTag)
+  MAP(swift::ErrorType, ErrorTypeTag)
+  MAP(swift::UnresolvedType, UnresolvedTypeTag)
+  MAP(swift::PlaceholderType, void)  // appears in ambiguous types but are then transformed to UnresolvedType
+  MAP(swift::BuiltinType, BuiltinTypeTag)
+    MAP(swift::AnyBuiltinIntegerType, AnyBuiltinIntegerTypeTag)
+      MAP(swift::BuiltinIntegerType, BuiltinIntegerTypeTag)
+      MAP(swift::BuiltinIntegerLiteralType, BuiltinIntegerLiteralTypeTag)
+    MAP(swift::BuiltinExecutorType, BuiltinExecutorTypeTag)
+    MAP(swift::BuiltinFloatType, BuiltinFloatTypeTag)
+    MAP(swift::BuiltinJobType, BuiltinJobTypeTag)
+    MAP(swift::BuiltinRawPointerType, BuiltinRawPointerTypeTag)
+    MAP(swift::BuiltinRawUnsafeContinuationType, BuiltinRawUnsafeContinuationTypeTag)
+    MAP(swift::BuiltinNativeObjectType, BuiltinNativeObjectTypeTag)
+    MAP(swift::BuiltinBridgeObjectType, BuiltinBridgeObjectTypeTag)
+    MAP(swift::BuiltinUnsafeValueBufferType, BuiltinUnsafeValueBufferTypeTag)
+    MAP(swift::BuiltinDefaultActorStorageType, BuiltinDefaultActorStorageTypeTag)
+    MAP(swift::BuiltinVectorType, BuiltinVectorTypeTag)
+  MAP(swift::TupleType, TupleTypeTag)
+  MAP(swift::ReferenceStorageType, ReferenceStorageTypeTag)
+  MAP(swift::WeakStorageType, WeakStorageTypeTag)
+  MAP(swift::UnownedStorageType, UnownedStorageTypeTag)
+  MAP(swift::UnmanagedStorageType, UnmanagedStorageTypeTag)
+  MAP(swift::AnyGenericType, AnyGenericTypeTag)
+    MAP(swift::NominalOrBoundGenericNominalType, NominalOrBoundGenericNominalTypeTag)
+      MAP(swift::NominalType, NominalTypeTag)
+        MAP(swift::EnumType, EnumTypeTag)
+        MAP(swift::StructType, StructTypeTag)
+        MAP(swift::ClassType, ClassTypeTag)
+        MAP(swift::ProtocolType, ProtocolTypeTag)
+      MAP(swift::BoundGenericType, BoundGenericTypeTag)
+        MAP(swift::BoundGenericClassType, BoundGenericClassTypeTag)
+        MAP(swift::BoundGenericEnumType, BoundGenericEnumTypeTag)
+        MAP(swift::BoundGenericStructType, BoundGenericStructTypeTag)
+    MAP(swift::UnboundGenericType, UnboundGenericTypeTag)
+  MAP(swift::AnyMetatypeType, AnyMetatypeTypeTag)
+    MAP(swift::MetatypeType, MetatypeTypeTag)
+    MAP(swift::ExistentialMetatypeType, ExistentialMetatypeTypeTag)
+  MAP(swift::ModuleType, ModuleTypeTag)
+  MAP(swift::DynamicSelfType, DynamicSelfTypeTag)
+  MAP(swift::SubstitutableType, SubstitutableTypeTag)
+    MAP(swift::ArchetypeType, ArchetypeTypeTag)
+      MAP(swift::PrimaryArchetypeType, PrimaryArchetypeTypeTag)
+      MAP(swift::OpaqueTypeArchetypeType, OpaqueTypeArchetypeTypeTag)
+      MAP(swift::OpenedArchetypeType, OpenedArchetypeTypeTag)
+      MAP(swift::SequenceArchetypeType, void)  // experimental variadic generics
+    MAP(swift::GenericTypeParamType, GenericTypeParamTypeTag)
+  MAP(swift::DependentMemberType, DependentMemberTypeTag)
+  MAP(swift::AnyFunctionType, AnyFunctionTypeTag)
+    MAP(swift::FunctionType, FunctionTypeTag)
+    MAP(swift::GenericFunctionType, GenericFunctionTypeTag)
+  MAP(swift::SILFunctionType, void)  // SIL types cannot really appear in the frontend run)
+  MAP(swift::SILBlockStorageType, void)  // SIL types cannot really appear in the frontend run)
+  MAP(swift::SILBoxType, void)  // SIL types cannot really appear in the frontend run)
+  MAP(swift::SILTokenType, void)  // SIL types cannot really appear in the frontend run)
+  MAP(swift::ProtocolCompositionType, ProtocolCompositionTypeTag)
+  MAP(swift::ParameterizedProtocolType, ParameterizedProtocolTypeTag)
+  MAP(swift::ExistentialType, ExistentialTypeTag)
+  MAP(swift::LValueType, LValueTypeTag)
+  MAP(swift::InOutType, InOutTypeTag)
+  MAP(swift::PackType, void)  // experimental variadic generics
+  MAP(swift::PackExpansionType, void)  // experimental variadic generics
+  MAP(swift::TypeVariableType, void)  // created during type checking and only used for constraint checking
+  MAP(swift::SugarType, SugarTypeTag)
+    MAP(swift::ParenType, ParenTypeTag)
+    MAP(swift::TypeAliasType, TypeAliasTypeTag)
+    MAP(swift::SyntaxSugarType, SyntaxSugarTypeTag)
+      MAP(swift::UnarySyntaxSugarType, UnarySyntaxSugarTypeTag)
+        MAP(swift::ArraySliceType, ArraySliceTypeTag)
+        MAP(swift::OptionalType, OptionalTypeTag)
+        MAP(swift::VariadicSequenceType, VariadicSequenceTypeTag)
+      MAP(swift::DictionaryType, DictionaryTypeTag)
+// clang-format on
+#undef MAP
+#undef MAP_CONCRETE
 }  // namespace codeql
diff --git a/swift/extractor/translators/DeclTranslator.h b/swift/extractor/translators/DeclTranslator.h
index f72a29437d5..12fe39465b3 100644
--- a/swift/extractor/translators/DeclTranslator.h
+++ b/swift/extractor/translators/DeclTranslator.h
@@ -65,9 +65,9 @@ class DeclTranslator : public AstTranslatorBase<DeclTranslator> {
                                codeql::AbstractStorageDecl& entry);
 
   template <typename D>
-  std::optional<TrapClassOf<D>> createNamedEntry(const D& decl) {
-    auto id = dispatcher.assignNewLabel(decl, mangledName(decl));
+  auto createNamedEntry(const D& decl) {
     std::optional<TrapClassOf<D>> entry;
+    auto id = dispatcher.assignNewLabel(decl, mangledName(decl));
     if (dispatcher.shouldEmitDeclBody(decl)) {
       entry.emplace(id);
       fillDecl(decl, *entry);
@@ -76,7 +76,7 @@ class DeclTranslator : public AstTranslatorBase<DeclTranslator> {
   }
 
   template <typename D>
-  TrapClassOf<D> createEntry(const D& decl) {
+  auto createEntry(const D& decl) {
     TrapClassOf<D> entry{dispatcher.template assignNewLabel(decl)};
     fillDecl(decl, entry);
     return entry;
diff --git a/swift/extractor/translators/TranslatorBase.h b/swift/extractor/translators/TranslatorBase.h
index 0f7d4cacd3d..5303ffd68a5 100644
--- a/swift/extractor/translators/TranslatorBase.h
+++ b/swift/extractor/translators/TranslatorBase.h
@@ -75,7 +75,7 @@ enum class TranslatorPolicy {
 #define DEFINE_VISIT(KIND, CLASS, PARENT)                                            \
  public:                                                                             \
   static constexpr TranslatorPolicy getPolicyFor##CLASS##KIND() {                    \
-    if constexpr (std::is_same_v<CLASS##KIND##Tag, void>) {                          \
+    if constexpr (std::is_same_v<TrapTagOf<swift::CLASS##KIND>, void>) {             \
       return TranslatorPolicy::ignore;                                               \
     } else if constexpr (detail::HasTranslate##CLASS##KIND<CrtpSubclass>::value) {   \
       return TranslatorPolicy::translate;                                            \
diff --git a/swift/extractor/trap/TrapTagTraits.h b/swift/extractor/trap/TrapTagTraits.h
index f0f8c41cc8d..b9c0830cd45 100644
--- a/swift/extractor/trap/TrapTagTraits.h
+++ b/swift/extractor/trap/TrapTagTraits.h
@@ -4,6 +4,7 @@
 // label tags
 
 #include <type_traits>
+#include "swift/extractor/trap/TrapLabel.h"
 
 namespace codeql {
 
@@ -14,7 +15,7 @@ struct ToTagFunctor;
 
 // can be instantiated to override the default mapping for special cases
 template <typename T>
-struct ToTagOverride : ToTagFunctor<T> {};
+struct ToTagConcreteOverride : ToTagFunctor<T> {};
 
 // must be instantiated to map trap labels to the corresponding generated binding trap entry
 template <typename Label>
@@ -27,15 +28,19 @@ struct ToTrapClassFunctor;
 
 template <typename T>
 using TrapTagOf =
-    typename detail::ToTagOverride<std::remove_const_t<std::remove_pointer_t<T>>>::type;
+    typename detail::ToTagFunctor<std::remove_const_t<std::remove_pointer_t<T>>>::type;
+
+template <typename T>
+using ConcreteTrapTagOf =
+    typename detail::ToTagConcreteOverride<std::remove_const_t<std::remove_pointer_t<T>>>::type;
 
 template <typename T>
 using TrapLabelOf = TrapLabel<TrapTagOf<T>>;
 
 template <typename T>
-using BindingTrapOf = typename detail::ToBindingTrapFunctor<TrapLabelOf<T>>::type;
+using BindingTrapOf = typename detail::ToBindingTrapFunctor<TrapLabel<ConcreteTrapTagOf<T>>>::type;
 
 template <typename T>
-using TrapClassOf = typename detail::ToTrapClassFunctor<TrapTagOf<T>>::type;
+using TrapClassOf = typename detail::ToTrapClassFunctor<ConcreteTrapTagOf<T>>::type;
 
 }  // namespace codeql

From a423f5f6951519121a229291299491bfd516047c Mon Sep 17 00:00:00 2001
From: Ian Lynagh <igfoo@github.com>
Date: Fri, 25 Nov 2022 16:27:45 +0000
Subject: [PATCH 0635/1420] Kotlin: Enable java/misnamed-type query

We used to get alerts for the class around a local function, a lambda,
or a function reference, which we give name "". Now those are marked as
compiler-generated, and the query ignores compiler-generated types.
---
 java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt  | 2 ++
 java/ql/lib/semmle/code/java/Element.qll                      | 2 ++
 java/ql/src/Advisory/Naming/NamingConventionsRefTypes.ql      | 3 ++-
 .../2022-11-25-NamingConventionsRefTypes-kotlin.md            | 4 ++++
 .../NamingConventionsRefTypes.expected                        | 1 +
 5 files changed, 11 insertions(+), 1 deletion(-)
 create mode 100644 java/ql/src/change-notes/2022-11-25-NamingConventionsRefTypes-kotlin.md

diff --git a/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt b/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt
index 489d1b85743..3d9b4ad37ce 100644
--- a/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt
+++ b/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt
@@ -5396,6 +5396,7 @@ open class KotlinFileExtractor(
         val id = ids.type.javaResult.id.cast<DbClass>()
         val pkgId = extractPackage("")
         tw.writeClasses(id, "", pkgId, id)
+        tw.writeCompiler_generated(id, CompilerGeneratedKinds.CALLABLE_CLASS.kind)
         tw.writeHasLocation(id, locId)
 
         // Extract constructor
@@ -5520,5 +5521,6 @@ open class KotlinFileExtractor(
         DEFAULT_ARGUMENTS_METHOD(10),
         INTERFACE_FORWARDER(11),
         ENUM_CONSTRUCTOR_ARGUMENT(12),
+        CALLABLE_CLASS(13),
     }
 }
diff --git a/java/ql/lib/semmle/code/java/Element.qll b/java/ql/lib/semmle/code/java/Element.qll
index 751fe1a1d64..08689f05f94 100644
--- a/java/ql/lib/semmle/code/java/Element.qll
+++ b/java/ql/lib/semmle/code/java/Element.qll
@@ -71,6 +71,8 @@ class Element extends @element, Top {
       i = 11 and result = "Forwarder for a Kotlin class inheriting an interface default method"
       or
       i = 12 and result = "Argument for enum constructor call"
+      or
+      i = 13 and result = "The class around a local function, a lambda, or a function reference"
     )
   }
 }
diff --git a/java/ql/src/Advisory/Naming/NamingConventionsRefTypes.ql b/java/ql/src/Advisory/Naming/NamingConventionsRefTypes.ql
index f0d6d20b1b2..6942eaab69a 100644
--- a/java/ql/src/Advisory/Naming/NamingConventionsRefTypes.ql
+++ b/java/ql/src/Advisory/Naming/NamingConventionsRefTypes.ql
@@ -12,7 +12,8 @@ import java
 
 from RefType t
 where
-  t.getFile().isJavaSourceFile() and
+  t.fromSource() and
   not t instanceof AnonymousClass and
+  not t.isCompilerGenerated() and
   not t.getName().substring(0, 1).toUpperCase() = t.getName().substring(0, 1)
 select t, "Class and interface names should start in uppercase."
diff --git a/java/ql/src/change-notes/2022-11-25-NamingConventionsRefTypes-kotlin.md b/java/ql/src/change-notes/2022-11-25-NamingConventionsRefTypes-kotlin.md
new file mode 100644
index 00000000000..c99d7168297
--- /dev/null
+++ b/java/ql/src/change-notes/2022-11-25-NamingConventionsRefTypes-kotlin.md
@@ -0,0 +1,4 @@
+---
+category: minorAnalysis
+---
+* The query `java/misnamed-type` is now enabled for Kotlin.
diff --git a/java/ql/test/kotlin/query-tests/NamingConventionsRefTypes/NamingConventionsRefTypes.expected b/java/ql/test/kotlin/query-tests/NamingConventionsRefTypes/NamingConventionsRefTypes.expected
index e69de29bb2d..ffcd13ccc56 100644
--- a/java/ql/test/kotlin/query-tests/NamingConventionsRefTypes/NamingConventionsRefTypes.expected
+++ b/java/ql/test/kotlin/query-tests/NamingConventionsRefTypes/NamingConventionsRefTypes.expected
@@ -0,0 +1 @@
+| Test.kt:12:1:12:13 | aaaa | Class and interface names should start in uppercase. |

From 0879f02db613858018cfef9c1f42e7efa0019388 Mon Sep 17 00:00:00 2001
From: Chris Smowton <smowton@github.com>
Date: Fri, 25 Nov 2022 17:54:53 +0000
Subject: [PATCH 0636/1420] Adapt custom_plugin test to Kotlin 1.7.20

---
 .../linux-only/kotlin/custom_plugin/plugin/Plugin.kt           | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/java/ql/integration-tests/linux-only/kotlin/custom_plugin/plugin/Plugin.kt b/java/ql/integration-tests/linux-only/kotlin/custom_plugin/plugin/Plugin.kt
index c88410ca9db..d80801974e2 100644
--- a/java/ql/integration-tests/linux-only/kotlin/custom_plugin/plugin/Plugin.kt
+++ b/java/ql/integration-tests/linux-only/kotlin/custom_plugin/plugin/Plugin.kt
@@ -4,7 +4,7 @@ import com.intellij.mock.MockProject
 import org.jetbrains.kotlin.backend.common.IrElementTransformerVoidWithContext
 import org.jetbrains.kotlin.backend.common.extensions.IrGenerationExtension
 import org.jetbrains.kotlin.backend.common.extensions.IrPluginContext
-import org.jetbrains.kotlin.backend.common.ir.createImplicitParameterDeclarationWithWrappedDescriptor
+import org.jetbrains.kotlin.backend.common.ir.addDispatchReceiver
 import org.jetbrains.kotlin.backend.common.lower.DeclarationIrBuilder
 import org.jetbrains.kotlin.compiler.plugin.ComponentRegistrar
 import org.jetbrains.kotlin.config.CompilerConfiguration
@@ -30,6 +30,7 @@ import org.jetbrains.kotlin.ir.symbols.IrSimpleFunctionSymbol
 import org.jetbrains.kotlin.ir.types.IrType
 import org.jetbrains.kotlin.ir.types.defaultType
 import org.jetbrains.kotlin.ir.types.typeWith
+import org.jetbrains.kotlin.ir.util.createImplicitParameterDeclarationWithWrappedDescriptor
 import org.jetbrains.kotlin.ir.util.defaultType
 import org.jetbrains.kotlin.name.FqName
 import org.jetbrains.kotlin.name.Name

From b6034b493570f894aee9f8a063c0e6d825defe93 Mon Sep 17 00:00:00 2001
From: erik-krogh <erik-krogh@github.com>
Date: Fri, 25 Nov 2022 16:22:46 +0100
Subject: [PATCH 0637/1420] delete language specific format check

---
 .github/workflows/go-tests.yml | 2 +-
 go/Makefile                    | 1 -
 2 files changed, 1 insertion(+), 2 deletions(-)

diff --git a/.github/workflows/go-tests.yml b/.github/workflows/go-tests.yml
index 3cc61eafa5c..dfbe3f70603 100644
--- a/.github/workflows/go-tests.yml
+++ b/.github/workflows/go-tests.yml
@@ -32,7 +32,7 @@ jobs:
           cd go
           make
 
-      - name: Check that all QL and Go code is autoformatted
+      - name: Check that all Go code is autoformatted
         run: |
           cd go
           make check-formatting
diff --git a/go/Makefile b/go/Makefile
index 419b1991775..fc05fb9300e 100644
--- a/go/Makefile
+++ b/go/Makefile
@@ -34,7 +34,6 @@ autoformat:
 	find . -path '**/vendor' -prune -or -type f -iname '*.go' ! -empty -print0 | xargs -0 grep -L "//\s*autoformat-ignore" | xargs gofmt -w
 
 check-formatting:
-	find ql -iregex '.*\.qll?' -print0 | xargs -0 codeql query format --check-only
 	test -z "$$(find . -path '**/vendor' -prune -or -type f -iname '*.go' ! -empty -print0 | xargs -0 grep -L "//\s*autoformat-ignore" | xargs gofmt -l)"
 
 install-deps:

From d7763f236f7a45f2b7d57cefb292723c496c1e54 Mon Sep 17 00:00:00 2001
From: erik-krogh <erik-krogh@github.com>
Date: Fri, 25 Nov 2022 16:23:23 +0100
Subject: [PATCH 0638/1420] use more threads for codeql test

---
 go/Makefile | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/go/Makefile b/go/Makefile
index fc05fb9300e..2016f6fb5c1 100644
--- a/go/Makefile
+++ b/go/Makefile
@@ -116,9 +116,9 @@ ql/lib/go.dbscheme.stats: ql/lib/go.dbscheme build/stats/src.stamp extractor
 	codeql dataset measure -o $@ build/stats/database/db-go
 
 test: all build/testdb/check-upgrade-path
-	codeql test run ql/test --search-path build/codeql-extractor-go --consistency-queries ql/test/consistency
+	codeql test run -j0 ql/test --search-path build/codeql-extractor-go --consistency-queries ql/test/consistency
   #	use GOOS=linux because GOOS=darwin GOARCH=386 is no longer supported
-	env GOOS=linux GOARCH=386 codeql$(EXE) test run ql/test/query-tests/Security/CWE-681 --search-path build/codeql-extractor-go --consistency-queries ql/test/consistency
+	env GOOS=linux GOARCH=386 codeql$(EXE) test run -j0 ql/test/query-tests/Security/CWE-681 --search-path build/codeql-extractor-go --consistency-queries ql/test/consistency
 	cd extractor; go test -mod=vendor ./... | grep -vF "[no test files]"
 	bash extractor-smoke-test/test.sh || (echo "Extractor smoke test FAILED"; exit 1)
 

From 1e732ad4d70c25471dd8c205aa54751cf37069df Mon Sep 17 00:00:00 2001
From: erik-krogh <erik-krogh@github.com>
Date: Fri, 25 Nov 2022 16:24:54 +0100
Subject: [PATCH 0639/1420] use XL workers, and update the windows runner

---
 .github/workflows/go-tests.yml | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/.github/workflows/go-tests.yml b/.github/workflows/go-tests.yml
index dfbe3f70603..f82497e171b 100644
--- a/.github/workflows/go-tests.yml
+++ b/.github/workflows/go-tests.yml
@@ -9,7 +9,7 @@ on:
 jobs:
   test-linux:
     name: Test Linux (Ubuntu)
-    runs-on: ubuntu-latest
+    runs-on: ubuntu-latest-xl
     steps:
       - name: Set up Go 1.19
         uses: actions/setup-go@v3
@@ -55,7 +55,7 @@ jobs:
 
   test-mac:
     name: Test MacOS
-    runs-on: macos-latest
+    runs-on: macos-latest-xl
     steps:
       - name: Set up Go 1.19
         uses: actions/setup-go@v3
@@ -85,7 +85,7 @@ jobs:
 
   test-win:
     name: Test Windows
-    runs-on: windows-2019
+    runs-on: windows-latest-xl
     steps:
       - name: Set up Go 1.19
         uses: actions/setup-go@v3

From 2b996f11cce7d7be7578e1267d35397550809947 Mon Sep 17 00:00:00 2001
From: erik-krogh <erik-krogh@github.com>
Date: Fri, 25 Nov 2022 16:26:31 +0100
Subject: [PATCH 0640/1420] use query compilation cache

---
 .github/workflows/go-tests.yml | 36 +++++++++++++++++++++++++++++++---
 go/Makefile                    |  4 ++--
 2 files changed, 35 insertions(+), 5 deletions(-)

diff --git a/.github/workflows/go-tests.yml b/.github/workflows/go-tests.yml
index f82497e171b..90638334498 100644
--- a/.github/workflows/go-tests.yml
+++ b/.github/workflows/go-tests.yml
@@ -1,10 +1,21 @@
 name: "Go: Run Tests"
 on:
+  push:
+    paths:
+      - "go/**"
+      - .github/workflows/go-tests.yml
+      - .github/actions/fetch-codeql/action.yml
+      - .github/actions/cache-query-compilation/action.yml
+      - codeql-workspace.yml
+    branches:
+      - main
+      - "rc/*"
   pull_request:
     paths:
       - "go/**"
       - .github/workflows/go-tests.yml
       - .github/actions/fetch-codeql/action.yml
+      - .github/actions/cache-query-compilation/action.yml
       - codeql-workspace.yml
 jobs:
   test-linux:
@@ -48,14 +59,21 @@ jobs:
           name: qhelp-markdown
           path: go/qhelp-out/**/*.md
 
+      - name: Cache compilation cache
+        id: query-cache
+        uses: ./.github/actions/cache-query-compilation
+        with:
+          key: go-qltest
+    
       - name: Test
         run: |
           cd go
-          make test
+          make test cache="${{ steps.query-cache.outputs.cache-dir }}"
 
   test-mac:
     name: Test MacOS
     runs-on: macos-latest-xl
+    if: ${{ github.event_name == 'pull_request' }}
     steps:
       - name: Set up Go 1.19
         uses: actions/setup-go@v3
@@ -78,14 +96,20 @@ jobs:
           cd go
           make
 
+      - name: Cache compilation cache
+        id: query-cache
+        uses: ./.github/actions/cache-query-compilation
+        with:
+          key: go-qltest
       - name: Test
         run: |
           cd go
-          make test
+          make test cache="${{ steps.query-cache.outputs.cache-dir }}"
 
   test-win:
     name: Test Windows
     runs-on: windows-latest-xl
+    if: ${{ github.event_name == 'pull_request' }}
     steps:
       - name: Set up Go 1.19
         uses: actions/setup-go@v3
@@ -108,7 +132,13 @@ jobs:
           cd go
           make
 
+      - name: Cache compilation cache
+        id: query-cache
+        uses: ./.github/actions/cache-query-compilation
+        with:
+          key: go-qltest
+
       - name: Test
         run: |
           cd go
-          make test
+          make test cache="${{ steps.query-cache.outputs.cache-dir }}"
diff --git a/go/Makefile b/go/Makefile
index 2016f6fb5c1..7e691d48803 100644
--- a/go/Makefile
+++ b/go/Makefile
@@ -116,9 +116,9 @@ ql/lib/go.dbscheme.stats: ql/lib/go.dbscheme build/stats/src.stamp extractor
 	codeql dataset measure -o $@ build/stats/database/db-go
 
 test: all build/testdb/check-upgrade-path
-	codeql test run -j0 ql/test --search-path build/codeql-extractor-go --consistency-queries ql/test/consistency
+	codeql test run -j0 ql/test --search-path build/codeql-extractor-go --consistency-queries ql/test/consistency --compilation-cache=$(cache)
   #	use GOOS=linux because GOOS=darwin GOARCH=386 is no longer supported
-	env GOOS=linux GOARCH=386 codeql$(EXE) test run -j0 ql/test/query-tests/Security/CWE-681 --search-path build/codeql-extractor-go --consistency-queries ql/test/consistency
+	env GOOS=linux GOARCH=386 codeql$(EXE) test run -j0 ql/test/query-tests/Security/CWE-681 --search-path build/codeql-extractor-go --consistency-queries ql/test/consistency --compilation-cache=$(cache)
 	cd extractor; go test -mod=vendor ./... | grep -vF "[no test files]"
 	bash extractor-smoke-test/test.sh || (echo "Extractor smoke test FAILED"; exit 1)
 

From dcfa0b38c1c0aea88a9fb39f0e7f0907f09cc628 Mon Sep 17 00:00:00 2001
From: erik-krogh <erik-krogh@github.com>
Date: Fri, 25 Nov 2022 16:47:20 +0100
Subject: [PATCH 0641/1420] use a non-xl mac runner because the XL runners keep
 queing

---
 .github/workflows/go-tests.yml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/go-tests.yml b/.github/workflows/go-tests.yml
index 90638334498..d1ec00bfb65 100644
--- a/.github/workflows/go-tests.yml
+++ b/.github/workflows/go-tests.yml
@@ -72,7 +72,7 @@ jobs:
 
   test-mac:
     name: Test MacOS
-    runs-on: macos-latest-xl
+    runs-on: macos-latest
     if: ${{ github.event_name == 'pull_request' }}
     steps:
       - name: Set up Go 1.19

From 2b0ecec0c83648ab023db090563b6719b6b52337 Mon Sep 17 00:00:00 2001
From: erik-krogh <erik-krogh@github.com>
Date: Sat, 26 Nov 2022 10:32:12 +0100
Subject: [PATCH 0642/1420] only run other-os on non-ql changes

---
 .github/workflows/go-tests-other-os.yml | 81 +++++++++++++++++++++++++
 .github/workflows/go-tests.yml          | 73 ----------------------
 2 files changed, 81 insertions(+), 73 deletions(-)
 create mode 100644 .github/workflows/go-tests-other-os.yml

diff --git a/.github/workflows/go-tests-other-os.yml b/.github/workflows/go-tests-other-os.yml
new file mode 100644
index 00000000000..5d99a170be3
--- /dev/null
+++ b/.github/workflows/go-tests-other-os.yml
@@ -0,0 +1,81 @@
+name: "Go: Run Tests - Other OS"
+on:
+  pull_request:
+    paths:
+      - "go/**"
+      - "!go/ql/**" # don't run other-os if only ql/ files changed
+      - .github/workflows/go-tests-other-os.yml
+      - .github/actions/fetch-codeql/action.yml
+      - .github/actions/cache-query-compilation/action.yml
+      - codeql-workspace.yml
+jobs:
+  test-mac:
+    name: Test MacOS
+    runs-on: macos-latest
+    steps:
+      - name: Set up Go 1.19
+        uses: actions/setup-go@v3
+        with:
+          go-version: 1.19
+        id: go
+
+      - name: Check out code
+        uses: actions/checkout@v2
+
+      - name: Set up CodeQL CLI
+        uses: ./.github/actions/fetch-codeql
+
+      - name: Enable problem matchers in repository
+        shell: bash
+        run: 'find .github/problem-matchers -name \*.json -exec echo "::add-matcher::{}" \;'
+
+      - name: Build
+        run: |
+          cd go
+          make
+
+      - name: Cache compilation cache
+        id: query-cache
+        uses: ./.github/actions/cache-query-compilation
+        with:
+          key: go-qltest
+      - name: Test
+        run: |
+          cd go
+          make test cache="${{ steps.query-cache.outputs.cache-dir }}"
+
+  test-win:
+    name: Test Windows
+    runs-on: windows-latest-xl
+    steps:
+      - name: Set up Go 1.19
+        uses: actions/setup-go@v3
+        with:
+          go-version: 1.19
+        id: go
+
+      - name: Check out code
+        uses: actions/checkout@v2
+
+      - name: Set up CodeQL CLI
+        uses: ./.github/actions/fetch-codeql
+
+      - name: Enable problem matchers in repository
+        shell: bash
+        run: 'find .github/problem-matchers -name \*.json -exec echo "::add-matcher::{}" \;'
+
+      - name: Build
+        run: |
+          cd go
+          make
+
+      - name: Cache compilation cache
+        id: query-cache
+        uses: ./.github/actions/cache-query-compilation
+        with:
+          key: go-qltest
+
+      - name: Test
+        run: |
+          cd go
+          make test cache="${{ steps.query-cache.outputs.cache-dir }}"
diff --git a/.github/workflows/go-tests.yml b/.github/workflows/go-tests.yml
index d1ec00bfb65..685c28cf3e0 100644
--- a/.github/workflows/go-tests.yml
+++ b/.github/workflows/go-tests.yml
@@ -69,76 +69,3 @@ jobs:
         run: |
           cd go
           make test cache="${{ steps.query-cache.outputs.cache-dir }}"
-
-  test-mac:
-    name: Test MacOS
-    runs-on: macos-latest
-    if: ${{ github.event_name == 'pull_request' }}
-    steps:
-      - name: Set up Go 1.19
-        uses: actions/setup-go@v3
-        with:
-          go-version: 1.19
-        id: go
-
-      - name: Check out code
-        uses: actions/checkout@v2
-
-      - name: Set up CodeQL CLI
-        uses: ./.github/actions/fetch-codeql
-
-      - name: Enable problem matchers in repository
-        shell: bash
-        run: 'find .github/problem-matchers -name \*.json -exec echo "::add-matcher::{}" \;'
-
-      - name: Build
-        run: |
-          cd go
-          make
-
-      - name: Cache compilation cache
-        id: query-cache
-        uses: ./.github/actions/cache-query-compilation
-        with:
-          key: go-qltest
-      - name: Test
-        run: |
-          cd go
-          make test cache="${{ steps.query-cache.outputs.cache-dir }}"
-
-  test-win:
-    name: Test Windows
-    runs-on: windows-latest-xl
-    if: ${{ github.event_name == 'pull_request' }}
-    steps:
-      - name: Set up Go 1.19
-        uses: actions/setup-go@v3
-        with:
-          go-version: 1.19
-        id: go
-
-      - name: Check out code
-        uses: actions/checkout@v2
-
-      - name: Set up CodeQL CLI
-        uses: ./.github/actions/fetch-codeql
-
-      - name: Enable problem matchers in repository
-        shell: bash
-        run: 'find .github/problem-matchers -name \*.json -exec echo "::add-matcher::{}" \;'
-
-      - name: Build
-        run: |
-          cd go
-          make
-
-      - name: Cache compilation cache
-        id: query-cache
-        uses: ./.github/actions/cache-query-compilation
-        with:
-          key: go-qltest
-
-      - name: Test
-        run: |
-          cd go
-          make test cache="${{ steps.query-cache.outputs.cache-dir }}"

From abe4d99e12aaceb8dd7c66a1c73cc95e6d9c5dd4 Mon Sep 17 00:00:00 2001
From: Michael Nebel <michaelnebel@github.com>
Date: Fri, 25 Nov 2022 13:41:41 +0100
Subject: [PATCH 0643/1420] Java: Make some rudimentary tooling for testing the
 flow test case generator script.

---
 .../test/utils/flowtestcasegenerator/options  |   1 +
 .../test/utils/flowtestcasegenerator/pom.xml  | 133 ++++++++++++++++++
 .../utils/flowtestcasegenerator/specs.csv     |  11 ++
 .../test/utils/flowtestcasegenerator/test.py  |  17 +++
 4 files changed, 162 insertions(+)
 create mode 100644 java/ql/test/utils/flowtestcasegenerator/options
 create mode 100644 java/ql/test/utils/flowtestcasegenerator/pom.xml
 create mode 100644 java/ql/test/utils/flowtestcasegenerator/specs.csv
 create mode 100644 java/ql/test/utils/flowtestcasegenerator/test.py

diff --git a/java/ql/test/utils/flowtestcasegenerator/options b/java/ql/test/utils/flowtestcasegenerator/options
new file mode 100644
index 00000000000..5ae5aad3008
--- /dev/null
+++ b/java/ql/test/utils/flowtestcasegenerator/options
@@ -0,0 +1 @@
+//semmle-extractor-options: --javac-args -cp ${testdir}/../../stubs/apache-commons-collections4-4.4:${testdir}/../../stubs/apache-log4j-2.14.1:${testdir}/../../stubs/slf4j-2.0.0
\ No newline at end of file
diff --git a/java/ql/test/utils/flowtestcasegenerator/pom.xml b/java/ql/test/utils/flowtestcasegenerator/pom.xml
new file mode 100644
index 00000000000..b4fe0c30974
--- /dev/null
+++ b/java/ql/test/utils/flowtestcasegenerator/pom.xml
@@ -0,0 +1,133 @@
+<project xmlns="http://maven.apache.org/POM/4.0.0" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:schemaLocation="http://maven.apache.org/POM/4.0.0
+                      http://maven.apache.org/xsd/maven-4.0.0.xsd">
+  <modelVersion>4.0.0</modelVersion>
+
+  <groupId>com.semmle</groupId>
+  <artifactId>parent</artifactId>
+  <version>1.0</version>
+  <repositories>
+    <repository>
+      <id>google</id>
+      <name>Google Maven</name>
+      <url>https://maven.google.com/</url>
+    </repository>
+  </repositories>
+  <properties>
+    <android.platform>31</android.platform>
+    <maven.compiler.source>1.8</maven.compiler.source>
+    <maven.compiler.target>1.8</maven.compiler.target>
+  </properties>
+  <dependencies>
+    <dependency>
+      <groupId>org.apache.logging.log4j</groupId>
+      <artifactId>log4j-api</artifactId>
+      <version>2.14.1</version>
+    </dependency>
+    <dependency>
+      <groupId>org.apache.logging.log4j</groupId>
+      <artifactId>log4j-core</artifactId>
+      <version>2.14.1</version>
+    </dependency>
+    <dependency>
+      <groupId>org.slf4j</groupId>
+      <artifactId>slf4j-api</artifactId>
+      <version>2.0.0-alpha5</version>
+    </dependency>
+    <dependency>
+      <groupId>org.jboss.logging</groupId>
+      <artifactId>jboss-logging</artifactId>
+      <version>3.4.2.Final</version>
+    </dependency>
+    <dependency>
+      <groupId>org.springframework.ldap</groupId>
+      <artifactId>spring-ldap</artifactId>
+      <version>1.3.1.RELEASE</version>
+      <type>pom</type>
+    </dependency>
+    <dependency>
+      <groupId>org.springframework.ldap</groupId>
+      <artifactId>spring-ldap-core</artifactId>
+      <version>2.3.5.RELEASE</version>
+    </dependency>
+    <dependency>
+      <groupId>org.springframework</groupId>
+      <artifactId>spring-web</artifactId>
+      <version>5.3.18</version>
+    </dependency>
+    <dependency>
+      <groupId>org.springframework</groupId>
+      <artifactId>spring-context</artifactId>
+      <version>5.3.18</version>
+    </dependency>
+    <dependency>
+      <groupId>org.springframework</groupId>
+      <artifactId>spring-webmvc</artifactId>
+      <version>5.3.18</version>
+    </dependency>
+    <dependency>
+      <groupId>org.springframework.data</groupId>
+      <artifactId>spring-data-commons</artifactId>
+      <version>2.6.3</version>
+    </dependency>    
+    <dependency>
+      <groupId>org.apache.shiro</groupId>
+      <artifactId>shiro-core</artifactId>
+      <version>1.8.0</version>
+    </dependency>
+    <dependency>
+      <groupId>org.apache.directory.api</groupId>
+      <artifactId>api-ldap-client-all</artifactId>
+      <version>2.1.0</version>
+    </dependency>
+    <dependency>
+      <groupId>org.owasp.esapi</groupId>
+      <artifactId>esapi</artifactId>
+      <version>2.2.3.1</version>
+    </dependency>
+    <dependency>
+      <groupId>com.unboundid</groupId>
+      <artifactId>unboundid-ldapsdk</artifactId>
+      <version>6.0.3</version>
+    </dependency>
+    <dependency>
+      <groupId>javax.servlet</groupId>
+      <artifactId>javax.servlet-api</artifactId>
+      <version>4.0.1</version>
+    </dependency>
+    <dependency>
+      <groupId>com.squareup.retrofit2</groupId>
+      <artifactId>retrofit</artifactId>
+      <version>2.9.0</version>
+    </dependency>
+    <dependency>
+      <groupId>com.squareup.okhttp3</groupId>
+      <artifactId>okhttp</artifactId>
+      <version>4.9.3</version>
+    </dependency>
+    <dependency>
+        <groupId>org.freemarker</groupId>
+        <artifactId>freemarker</artifactId>
+        <version>2.3.31</version>
+    </dependency>
+    <dependency>
+        <groupId>org.thymeleaf</groupId>
+        <artifactId>thymeleaf</artifactId>
+        <version>3.0.15.RELEASE</version>
+    </dependency>
+    <dependency>
+        <groupId>com.hubspot.jinjava</groupId>
+        <artifactId>jinjava</artifactId>
+        <version>2.6.0</version>
+    </dependency>
+    <dependency>
+        <groupId>io.pebbletemplates</groupId>
+        <artifactId>pebble</artifactId>
+        <version>3.1.5</version>
+    </dependency>
+    <dependency>
+        <groupId>org.apache.velocity</groupId>
+        <artifactId>velocity-engine-core</artifactId>
+        <version>2.3</version>
+    </dependency>
+  </dependencies>
+</project>
diff --git a/java/ql/test/utils/flowtestcasegenerator/specs.csv b/java/ql/test/utils/flowtestcasegenerator/specs.csv
new file mode 100644
index 00000000000..93f59d05916
--- /dev/null
+++ b/java/ql/test/utils/flowtestcasegenerator/specs.csv
@@ -0,0 +1,11 @@
+org.apache.logging.log4j;Logger;true;traceEntry;(Message);;Argument[0];ReturnValue;taint;manual
+org.apache.logging.log4j;Logger;true;traceEntry;(String,Object[]);;Argument[0..1];ReturnValue;taint;manual
+org.apache.logging.log4j;Logger;true;traceEntry;(String,Supplier[]);;Argument[0..1];ReturnValue;taint;manual
+org.apache.logging.log4j;Logger;true;traceEntry;(Supplier[]);;Argument[0];ReturnValue;taint;manual
+org.apache.logging.log4j;Logger;true;traceExit;(EntryMessage,Object);;Argument[1];ReturnValue;value;manual
+org.apache.logging.log4j;Logger;true;traceExit;(Message,Object);;Argument[1];ReturnValue;value;manual
+org.apache.logging.log4j;Logger;true;traceExit;(Object);;Argument[0];ReturnValue;value;manual
+org.apache.logging.log4j;Logger;true;traceExit;(String,Object);;Argument[1];ReturnValue;value;manual
+org.apache.commons.collections4;MapUtils;true;predicatedMap;;;Argument[0].MapValue;ReturnValue.MapValue;value;manual
+org.apache.commons.collections4;MapUtils;true;toMap;;;Argument[0].MapKey;ReturnValue.MapKey;value;manual
+org.apache.commons.collections4;MapUtils;true;toMap;;;Argument[0].MapValue;ReturnValue.MapValue;value;manual
\ No newline at end of file
diff --git a/java/ql/test/utils/flowtestcasegenerator/test.py b/java/ql/test/utils/flowtestcasegenerator/test.py
new file mode 100644
index 00000000000..47b7c3a61f2
--- /dev/null
+++ b/java/ql/test/utils/flowtestcasegenerator/test.py
@@ -0,0 +1,17 @@
+# This script is for debugging purposes for the flow test case generator.
+# Some dummy tests are created and executed.
+# It requites that `--search-path /path/to/semmle-code/ql` is added to `~/.config/codeql/config`
+
+# Usage: python3 test.py
+
+import subprocess
+
+# Generate test cases
+print('Generating test cases...')
+if subprocess.check_call(["../../../src/utils/flowtestcasegenerator/GenerateFlowTestCase.py", "specs.csv", "pom.xml", "--force", "."]):
+    print("Failed to generate test cases.")
+    exit(1)
+
+# Run test cases.
+print('Running test cases...')
+subprocess.call(["codeql", "test", "run", "test.ql"])
\ No newline at end of file

From 24e830f91dc342be042fe17bf4199bac32c20d5a Mon Sep 17 00:00:00 2001
From: Michael Nebel <michaelnebel@github.com>
Date: Fri, 25 Nov 2022 13:42:39 +0100
Subject: [PATCH 0644/1420] Java: Fix some minor bugs in the CSV printing of
 summaries for flow test generation.

---
 .../flowtestcasegenerator/FlowTestCaseSupportMethods.qll  | 8 ++++----
 .../utils/flowtestcasegenerator/testModelsHeader.qlfrag   | 2 +-
 2 files changed, 5 insertions(+), 5 deletions(-)

diff --git a/java/ql/src/utils/flowtestcasegenerator/FlowTestCaseSupportMethods.qll b/java/ql/src/utils/flowtestcasegenerator/FlowTestCaseSupportMethods.qll
index 713c484ff4b..c3a47b5adea 100644
--- a/java/ql/src/utils/flowtestcasegenerator/FlowTestCaseSupportMethods.qll
+++ b/java/ql/src/utils/flowtestcasegenerator/FlowTestCaseSupportMethods.qll
@@ -164,8 +164,8 @@ private class DefaultGetMethod extends GetMethod {
 
   override string getCsvModel() {
     result =
-      "generatedtest;Test;false;" + this.getName() + ";(Object);;" +
-        getComponentSpec(SummaryComponent::content(c)) + "Argument[0].;ReturnValue;value;manual"
+      "generatedtest;Test;false;" + this.getName() + ";(Object);;Argument[0]." +
+        getComponentSpec(SummaryComponent::content(c)) + ";ReturnValue;value;manual"
   }
 }
 
@@ -360,8 +360,8 @@ private class DefaultGenMethod extends GenMethod {
 
   override string getCsvModel() {
     result =
-      "generatedtest;Test;false;" + this.getName() + ";(Object);;Argument[0];" +
-        getComponentSpec(SummaryComponent::content(c)) + "ReturnValue.;value;manual"
+      "generatedtest;Test;false;" + this.getName() + ";(Object);;Argument[0];ReturnValue." +
+        getComponentSpec(SummaryComponent::content(c)) + ";value;manual"
   }
 }
 
diff --git a/java/ql/src/utils/flowtestcasegenerator/testModelsHeader.qlfrag b/java/ql/src/utils/flowtestcasegenerator/testModelsHeader.qlfrag
index a49dbbe5404..fb33b7eb5db 100644
--- a/java/ql/src/utils/flowtestcasegenerator/testModelsHeader.qlfrag
+++ b/java/ql/src/utils/flowtestcasegenerator/testModelsHeader.qlfrag
@@ -2,4 +2,4 @@ class SummaryModelTest extends SummaryModelCsv {
   override predicate row(string row) {
     row =
       [
-        //"package;type;overrides;name;signature;ext;inputspec;outputspec;kind",
+        //"package;type;overrides;name;signature;ext;inputspec;outputspec;kind;provenance"

From d5725255fe1a3c3493a09652778b9654548f4f48 Mon Sep 17 00:00:00 2001
From: erik-krogh <erik-krogh@github.com>
Date: Mon, 28 Nov 2022 09:53:03 +0100
Subject: [PATCH 0645/1420] add failing test for splat parameter flow

---
 ruby/ql/test/library-tests/dataflow/params/params_flow.rb | 8 +++++++-
 1 file changed, 7 insertions(+), 1 deletion(-)

diff --git a/ruby/ql/test/library-tests/dataflow/params/params_flow.rb b/ruby/ql/test/library-tests/dataflow/params/params_flow.rb
index 1dbbbec0734..415e0bf2a2b 100644
--- a/ruby/ql/test/library-tests/dataflow/params/params_flow.rb
+++ b/ruby/ql/test/library-tests/dataflow/params/params_flow.rb
@@ -57,4 +57,10 @@ args = [taint(22)]
 posargs(taint(23), *args)
 
 args = [taint(24), taint(25)]
-posargs(*args)
\ No newline at end of file
+posargs(*args)
+
+args = taint(26)
+def splatstuff(*x)
+    sink x[0] # $ MISSING: hasValueFlow=26
+end
+splatstuff(*args)
\ No newline at end of file

From 0c2ff98dc20c4d79a1e0085e70fbba7740d99947 Mon Sep 17 00:00:00 2001
From: erik-krogh <erik-krogh@github.com>
Date: Mon, 28 Nov 2022 09:54:05 +0100
Subject: [PATCH 0646/1420] add flow from the first splat argument to the first
 splat parameter

---
 .../ruby/dataflow/internal/DataFlowDispatch.qll      | 12 ++++++++++++
 .../ruby/dataflow/internal/DataFlowPrivate.qll       | 10 +++++++++-
 .../dataflow/params/params-flow.expected             | 12 ++++++++++++
 .../library-tests/dataflow/params/params_flow.rb     |  2 +-
 4 files changed, 34 insertions(+), 2 deletions(-)

diff --git a/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowDispatch.qll b/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowDispatch.qll
index 4b97772d2c9..5b39b6c407d 100644
--- a/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowDispatch.qll
+++ b/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowDispatch.qll
@@ -497,6 +497,7 @@ private module Cached {
       FlowSummaryImplSpecific::ParsePositions::isParsedKeywordParameterPosition(_, name)
     } or
     THashSplatArgumentPosition() or
+    TSplatAllArgumentPosition() or
     TAnyArgumentPosition() or
     TAnyKeywordArgumentPosition()
 
@@ -518,6 +519,7 @@ private module Cached {
       FlowSummaryImplSpecific::ParsePositions::isParsedKeywordArgumentPosition(_, name)
     } or
     THashSplatParameterPosition() or
+    TSplatAllParameterPosition() or
     TAnyParameterPosition() or
     TAnyKeywordParameterPosition()
 }
@@ -1149,6 +1151,8 @@ class ParameterPosition extends TParameterPosition {
   /** Holds if this position represents a hash-splat parameter. */
   predicate isHashSplat() { this = THashSplatParameterPosition() }
 
+  predicate isSplatAll() { this = TSplatAllParameterPosition() }
+
   /**
    * Holds if this position represents any parameter, except `self` parameters. This
    * includes both positional, named, and block parameters.
@@ -1172,6 +1176,8 @@ class ParameterPosition extends TParameterPosition {
     or
     this.isHashSplat() and result = "**"
     or
+    this.isSplatAll() and result = "*"
+    or
     this.isAny() and result = "any"
     or
     this.isAnyNamed() and result = "any-named"
@@ -1207,6 +1213,8 @@ class ArgumentPosition extends TArgumentPosition {
    */
   predicate isHashSplat() { this = THashSplatArgumentPosition() }
 
+  predicate isSplatAll() { this = TSplatAllArgumentPosition() }
+
   /** Gets a textual representation of this position. */
   string toString() {
     this.isSelf() and result = "self"
@@ -1222,6 +1230,8 @@ class ArgumentPosition extends TArgumentPosition {
     this.isAnyNamed() and result = "any-named"
     or
     this.isHashSplat() and result = "**"
+    or
+    this.isSplatAll() and result = "*"
   }
 }
 
@@ -1248,6 +1258,8 @@ predicate parameterMatch(ParameterPosition ppos, ArgumentPosition apos) {
   or
   ppos.isHashSplat() and apos.isHashSplat()
   or
+  ppos.isSplatAll() and apos.isSplatAll()
+  or
   ppos.isAny() and argumentPositionIsNotSelf(apos)
   or
   apos.isAny() and parameterPositionIsNotSelf(ppos)
diff --git a/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowPrivate.qll b/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowPrivate.qll
index 8c9c8242c71..8353fad1e50 100644
--- a/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowPrivate.qll
+++ b/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowPrivate.qll
@@ -241,6 +241,10 @@ private class Argument extends CfgNodes::ExprCfgNode {
     this = call.getAnArgument() and
     this.getExpr() instanceof HashSplatExpr and
     arg.isHashSplat()
+    or
+    this = call.getArgument(0) and
+    this.getExpr() instanceof SplatExpr and
+    arg.isSplatAll()
   }
 
   /** Holds if this expression is the `i`th argument of `c`. */
@@ -276,7 +280,8 @@ private module Cached {
       p instanceof SimpleParameter or
       p instanceof OptionalParameter or
       p instanceof KeywordParameter or
-      p instanceof HashSplatParameter
+      p instanceof HashSplatParameter or
+      p instanceof SplatParameter
     } or
     TSelfParameterNode(MethodBase m) or
     TBlockParameterNode(MethodBase m) or
@@ -616,6 +621,9 @@ private module ParameterNodes {
         or
         parameter = callable.getAParameter().(HashSplatParameter) and
         pos.isHashSplat()
+        or
+        parameter = callable.getParameter(0).(SplatParameter) and
+        pos.isSplatAll()
       )
     }
 
diff --git a/ruby/ql/test/library-tests/dataflow/params/params-flow.expected b/ruby/ql/test/library-tests/dataflow/params/params-flow.expected
index 52ad4bc3bea..12db100a968 100644
--- a/ruby/ql/test/library-tests/dataflow/params/params-flow.expected
+++ b/ruby/ql/test/library-tests/dataflow/params/params-flow.expected
@@ -40,6 +40,11 @@ edges
 | params_flow.rb:49:13:49:14 | p1 :  | params_flow.rb:50:10:50:11 | p1 |
 | params_flow.rb:54:9:54:17 | call to taint :  | params_flow.rb:49:13:49:14 | p1 :  |
 | params_flow.rb:57:9:57:17 | call to taint :  | params_flow.rb:49:13:49:14 | p1 :  |
+| params_flow.rb:62:8:62:16 | call to taint :  | params_flow.rb:66:13:66:16 | args :  |
+| params_flow.rb:63:16:63:17 | *x [element 0] :  | params_flow.rb:64:10:64:10 | x [element 0] :  |
+| params_flow.rb:64:10:64:10 | x [element 0] :  | params_flow.rb:64:10:64:13 | ...[...] |
+| params_flow.rb:66:12:66:16 | * ... [element 0] :  | params_flow.rb:63:16:63:17 | *x [element 0] :  |
+| params_flow.rb:66:13:66:16 | args :  | params_flow.rb:66:12:66:16 | * ... [element 0] :  |
 nodes
 | params_flow.rb:9:16:9:17 | p1 :  | semmle.label | p1 :  |
 | params_flow.rb:9:20:9:21 | p2 :  | semmle.label | p2 :  |
@@ -89,6 +94,12 @@ nodes
 | params_flow.rb:50:10:50:11 | p1 | semmle.label | p1 |
 | params_flow.rb:54:9:54:17 | call to taint :  | semmle.label | call to taint :  |
 | params_flow.rb:57:9:57:17 | call to taint :  | semmle.label | call to taint :  |
+| params_flow.rb:62:8:62:16 | call to taint :  | semmle.label | call to taint :  |
+| params_flow.rb:63:16:63:17 | *x [element 0] :  | semmle.label | *x [element 0] :  |
+| params_flow.rb:64:10:64:10 | x [element 0] :  | semmle.label | x [element 0] :  |
+| params_flow.rb:64:10:64:13 | ...[...] | semmle.label | ...[...] |
+| params_flow.rb:66:12:66:16 | * ... [element 0] :  | semmle.label | * ... [element 0] :  |
+| params_flow.rb:66:13:66:16 | args :  | semmle.label | args :  |
 subpaths
 #select
 | params_flow.rb:10:10:10:11 | p1 | params_flow.rb:14:12:14:19 | call to taint :  | params_flow.rb:10:10:10:11 | p1 | $@ | params_flow.rb:14:12:14:19 | call to taint :  | call to taint :  |
@@ -111,3 +122,4 @@ subpaths
 | params_flow.rb:29:10:29:22 | ( ... ) | params_flow.rb:34:14:34:22 | call to taint :  | params_flow.rb:29:10:29:22 | ( ... ) | $@ | params_flow.rb:34:14:34:22 | call to taint :  | call to taint :  |
 | params_flow.rb:50:10:50:11 | p1 | params_flow.rb:54:9:54:17 | call to taint :  | params_flow.rb:50:10:50:11 | p1 | $@ | params_flow.rb:54:9:54:17 | call to taint :  | call to taint :  |
 | params_flow.rb:50:10:50:11 | p1 | params_flow.rb:57:9:57:17 | call to taint :  | params_flow.rb:50:10:50:11 | p1 | $@ | params_flow.rb:57:9:57:17 | call to taint :  | call to taint :  |
+| params_flow.rb:64:10:64:13 | ...[...] | params_flow.rb:62:8:62:16 | call to taint :  | params_flow.rb:64:10:64:13 | ...[...] | $@ | params_flow.rb:62:8:62:16 | call to taint :  | call to taint :  |
diff --git a/ruby/ql/test/library-tests/dataflow/params/params_flow.rb b/ruby/ql/test/library-tests/dataflow/params/params_flow.rb
index 415e0bf2a2b..41ae58a58da 100644
--- a/ruby/ql/test/library-tests/dataflow/params/params_flow.rb
+++ b/ruby/ql/test/library-tests/dataflow/params/params_flow.rb
@@ -61,6 +61,6 @@ posargs(*args)
 
 args = taint(26)
 def splatstuff(*x)
-    sink x[0] # $ MISSING: hasValueFlow=26
+    sink x[0] # $ hasValueFlow=26
 end
 splatstuff(*args)
\ No newline at end of file

From a5a459fe0a6c52dfe3d84a82757d69717ffd83f3 Mon Sep 17 00:00:00 2001
From: Geoffrey White <40627776+geoffw0@users.noreply.github.com>
Date: Mon, 28 Nov 2022 09:39:38 +0000
Subject: [PATCH 0647/1420] Swift: Update swift/unsafe-js-eval to include local
 flow sources.

---
 swift/ql/src/queries/Security/CWE-094/UnsafeJsEval.ql | 3 +--
 1 file changed, 1 insertion(+), 2 deletions(-)

diff --git a/swift/ql/src/queries/Security/CWE-094/UnsafeJsEval.ql b/swift/ql/src/queries/Security/CWE-094/UnsafeJsEval.ql
index e5764416d27..286b06f0b1b 100644
--- a/swift/ql/src/queries/Security/CWE-094/UnsafeJsEval.ql
+++ b/swift/ql/src/queries/Security/CWE-094/UnsafeJsEval.ql
@@ -20,9 +20,8 @@ import DataFlow::PathGraph
 
 /**
  * A source of untrusted, user-controlled data.
- * TODO: Extend to more (non-remote) sources in the future.
  */
-class Source = RemoteFlowSource;
+class Source = FlowSource;
 
 /**
  * A sink that evaluates a string of JavaScript code.

From b3d2e759a6b68bc00411ef8d0a1f573da15ddadc Mon Sep 17 00:00:00 2001
From: Geoffrey White <40627776+geoffw0@users.noreply.github.com>
Date: Mon, 28 Nov 2022 10:06:22 +0000
Subject: [PATCH 0648/1420] Swift: Update swift/sql-injection to include local
 flow sources.

---
 swift/ql/src/queries/Security/CWE-089/SqlInjection.ql | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/swift/ql/src/queries/Security/CWE-089/SqlInjection.ql b/swift/ql/src/queries/Security/CWE-089/SqlInjection.ql
index 3fab9759c6f..fcd6618658d 100644
--- a/swift/ql/src/queries/Security/CWE-089/SqlInjection.ql
+++ b/swift/ql/src/queries/Security/CWE-089/SqlInjection.ql
@@ -69,7 +69,7 @@ class SQLiteSwiftSqlSink extends SqlSink {
 class SqlInjectionConfig extends TaintTracking::Configuration {
   SqlInjectionConfig() { this = "SqlInjectionConfig" }
 
-  override predicate isSource(DataFlow::Node node) { node instanceof RemoteFlowSource }
+  override predicate isSource(DataFlow::Node node) { node instanceof FlowSource }
 
   override predicate isSink(DataFlow::Node node) { node instanceof SqlSink }
 }

From dc02fa0386823453e2f3fb7e99689db3f88f5eeb Mon Sep 17 00:00:00 2001
From: Geoffrey White <40627776+geoffw0@users.noreply.github.com>
Date: Mon, 28 Nov 2022 10:17:11 +0000
Subject: [PATCH 0649/1420] Swift: Make ql-for-ql happy.

---
 swift/ql/lib/codeql/swift/frameworks/Alamofire/Alamofire.qll | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/swift/ql/lib/codeql/swift/frameworks/Alamofire/Alamofire.qll b/swift/ql/lib/codeql/swift/frameworks/Alamofire/Alamofire.qll
index f75273b50c0..92a76b52240 100644
--- a/swift/ql/lib/codeql/swift/frameworks/Alamofire/Alamofire.qll
+++ b/swift/ql/lib/codeql/swift/frameworks/Alamofire/Alamofire.qll
@@ -17,7 +17,7 @@ private class AlamofireResponseType extends NominalTypeDecl {
   }
 
   /**
-   * A response handler field that contains remote data.
+   * Gets a field that contains remote data.
    */
   FieldDecl getADataField() {
     result = this.getAMember() and

From e99571baaedf051df2209a5b386f02474106fc0c Mon Sep 17 00:00:00 2001
From: Asger F <asgerf@github.com>
Date: Mon, 28 Nov 2022 11:45:08 +0100
Subject: [PATCH 0650/1420] Update
 javascript/ql/lib/semmle/javascript/frameworks/data/internal/ApiGraphModelsSpecific.qll

Co-authored-by: Erik Krogh Kristensen <erik-krogh@github.com>
---
 .../frameworks/data/internal/ApiGraphModelsSpecific.qll    | 7 +++++++
 1 file changed, 7 insertions(+)

diff --git a/javascript/ql/lib/semmle/javascript/frameworks/data/internal/ApiGraphModelsSpecific.qll b/javascript/ql/lib/semmle/javascript/frameworks/data/internal/ApiGraphModelsSpecific.qll
index 73a2fd28d0c..df8710c37e2 100644
--- a/javascript/ql/lib/semmle/javascript/frameworks/data/internal/ApiGraphModelsSpecific.qll
+++ b/javascript/ql/lib/semmle/javascript/frameworks/data/internal/ApiGraphModelsSpecific.qll
@@ -31,6 +31,13 @@ import semmle.javascript.frameworks.data.internal.AccessPathSyntax as AccessPath
 import JS::DataFlow as DataFlow
 private import AccessPathSyntax
 
+/**
+ * Holds if `rawType` represents the JavaScript npm `package` with type `qualifiedName`.  
+ * The `qualifiedName` is everything after the first ".".   
+ * So e.g. `rawType = "foo.bar"` will parse to `package = "foo" and qualifiedName = "bar"`.  
+ * `package´ can be enclosed in single-quotes if the package name includes dots, 
+ * e.g. `'my.package'.type` parses to `package = "my.package" and qualifiedName = "type"`.  
+ */ 
 bindingset[rawType]
 predicate parseTypeString(string rawType, string package, string qualifiedName) {
   exists(string regexp |

From 70d2a0df8af532b0422c13c9d46d93085c147d84 Mon Sep 17 00:00:00 2001
From: Tom Hvitved <hvitved@github.com>
Date: Thu, 24 Nov 2022 14:46:59 +0100
Subject: [PATCH 0651/1420] Data flow: Track parameter position instead of
 parameter in pruning stages 2-4

---
 .../ruby/dataflow/internal/DataFlowImpl.qll   | 150 +++++++++++-------
 .../dataflow/internal/DataFlowImplCommon.qll  |  18 +--
 2 files changed, 105 insertions(+), 63 deletions(-)

diff --git a/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImpl.qll b/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImpl.qll
index bfdb6c9c9a3..13d7687c188 100644
--- a/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImpl.qll
+++ b/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImpl.qll
@@ -613,11 +613,28 @@ private predicate hasSinkCallCtx(Configuration config) {
  * explicitly allowed
  */
 bindingset[p, kind]
-private predicate parameterFlowThroughAllowed(ParamNode p, ReturnKindExt kind) {
+private predicate parameterFlowThroughAllowed(ParamNodeEx p, ReturnKindExt kind) {
   exists(ParameterPosition pos | p.isParameterOf(_, pos) |
     not kind.(ParamUpdateReturnKind).getPosition() = pos
     or
-    allowParameterReturnInSelfCached(p)
+    allowParameterReturnInSelfCached(p.asNode())
+  )
+}
+
+/**
+ * Holds if flow from a parameter at position `pos` inside `c` to a return node of
+ * kind `kind` is allowed.
+ *
+ * We don't expect a parameter to return stored in itself, unless
+ * explicitly allowed
+ */
+bindingset[c, pos, kind]
+private predicate parameterFlowThroughAllowed(
+  DataFlowCallable c, ParameterPosition pos, ReturnKindExt kind
+) {
+  exists(ParamNodeEx p |
+    p.isParameterOf(c, pos) and
+    parameterFlowThroughAllowed(p, kind)
   )
 }
 
@@ -1000,7 +1017,7 @@ private module Stage1 implements StageSig {
       returnFlowCallableNodeCand(c, kind, config) and
       p.getEnclosingCallable() = c and
       exists(ap) and
-      parameterFlowThroughAllowed(p.asNode(), kind)
+      parameterFlowThroughAllowed(p, kind)
     )
   }
 
@@ -1102,6 +1119,7 @@ private predicate flowIntoCallNodeCand1(
  * edge in the graph of paths between sources and sinks that ignores call
  * contexts.
  */
+pragma[nomagic]
 private int branch(NodeEx n1, Configuration conf) {
   result =
     strictcount(NodeEx n |
@@ -1114,6 +1132,7 @@ private int branch(NodeEx n1, Configuration conf) {
  * edge in the graph of paths between sources and sinks that ignores call
  * contexts.
  */
+pragma[nomagic]
 private int join(NodeEx n2, Configuration conf) {
   result =
     strictcount(NodeEx n |
@@ -1152,10 +1171,10 @@ pragma[nomagic]
 private predicate flowIntoCallNodeCand1(
   DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
 ) {
-  flowIntoCallNodeCand1(call, arg, p, config) and
+  flowIntoCallNodeCand1(call, arg, p, pragma[only_bind_into](config)) and
   exists(int b, int j |
-    b = branch(arg, config) and
-    j = join(p, config) and
+    b = branch(arg, pragma[only_bind_into](config)) and
+    j = join(p, pragma[only_bind_into](config)) and
     if b.minimum(j) <= config.fieldFlowBranchLimit()
     then allowsFieldFlow = true
     else allowsFieldFlow = false
@@ -1266,15 +1285,16 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate flowThroughOutOfCall(
-      DataFlowCall call, CcCall ccc, RetNodeEx ret, ReturnKindExt kind, NodeEx out,
-      boolean allowsFieldFlow, Configuration config
+      DataFlowCall call, DataFlowCallable c, CcCall ccc, RetNodeEx ret, ReturnKindExt kind,
+      NodeEx out, boolean allowsFieldFlow, Configuration config
     ) {
       exists(ReturnPosition pos |
         flowOutOfCall(call, ret, pos, out, allowsFieldFlow, pragma[only_bind_into](config)) and
         kind = pos.getKind() and
         PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
         PrevStage::returnMayFlowThrough(ret, pos, pragma[only_bind_into](config)) and
-        matchesCall(ccc, call)
+        matchesCall(ccc, call) and
+        c = ret.getEnclosingCallable()
       )
     }
 
@@ -1284,12 +1304,12 @@ private module MkStage<StageSig PrevStage> {
      *
      * The call context `cc` records whether the node is reached through an
      * argument in a call, and if so, `summaryCtx` and `argAp` record the
-     * corresponding parameter and access path of that argument, respectively.
+     * corresponding parameter position and access path of that argument, respectively.
      */
     pragma[nomagic]
     additional predicate fwdFlow(
-      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
-      Configuration config
+      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      Ap ap, Configuration config
     ) {
       fwdFlow0(node, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::revFlow(node, state, unbindApa(getApprox(ap)), config) and
@@ -1298,13 +1318,13 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlow0(
-      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
-      Configuration config
+      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      Ap ap, Configuration config
     ) {
       sourceNode(node, state, config) and
       (if hasSourceCallCtx(config) then cc = ccSomeCall() else cc = ccNone()) and
       argAp = apNone() and
-      summaryCtx = TParamNodeNone() and
+      summaryCtx = TParameterPositionNone() and
       ap = getApNil(node)
       or
       exists(NodeEx mid, FlowState state0, Ap ap0, LocalCc localCc |
@@ -1322,7 +1342,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, pragma[only_bind_into](config)) and
         jumpStep(mid, node, config) and
         cc = ccNone() and
-        summaryCtx = TParamNodeNone() and
+        summaryCtx = TParameterPositionNone() and
         argAp = apNone()
       )
       or
@@ -1330,7 +1350,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, state, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStep(mid, node, config) and
         cc = ccNone() and
-        summaryCtx = TParamNodeNone() and
+        summaryCtx = TParameterPositionNone() and
         argAp = apNone() and
         ap = getApNil(node)
       )
@@ -1339,7 +1359,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, state0, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStateStep(mid, state0, node, state, config) and
         cc = ccNone() and
-        summaryCtx = TParamNodeNone() and
+        summaryCtx = TParameterPositionNone() and
         argAp = apNone() and
         ap = getApNil(node)
       )
@@ -1362,9 +1382,10 @@ private module MkStage<StageSig PrevStage> {
         apa = getApprox(ap) and
         if PrevStage::parameterMayFlowThrough(node, apa, config)
         then (
-          summaryCtx = TParamNodeSome(node.asNode()) and argAp = apSome(ap)
+          summaryCtx = TParameterPositionSome(node.(ParamNodeEx).getPosition()) and
+          argAp = apSome(ap)
         ) else (
-          summaryCtx = TParamNodeNone() and argAp = apNone()
+          summaryCtx = TParameterPositionNone() and argAp = apNone()
         )
       )
       or
@@ -1372,7 +1393,7 @@ private module MkStage<StageSig PrevStage> {
       fwdFlowOutNotFromArg(node, state, cc, summaryCtx, argAp, ap, config)
       or
       // flow through a callable
-      exists(DataFlowCall call, ParamNode summaryCtx0, Ap argAp0 |
+      exists(DataFlowCall call, ParameterPosition summaryCtx0, Ap argAp0 |
         fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, config) and
         fwdFlowIsEntered(call, cc, summaryCtx, argAp, summaryCtx0, argAp0, config)
       )
@@ -1381,7 +1402,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowStore(
       NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc,
-      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
+      ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
     ) {
       exists(DataFlowType contentType |
         fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, config) and
@@ -1406,7 +1427,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowRead(
       Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc,
-      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
+      ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
     ) {
       fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, c, node2, config) and
@@ -1416,7 +1437,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowIn(
       DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, Cc innercc,
-      ParamNodeOption summaryCtx, ApOption argAp, Ap ap, Configuration config
+      ParameterPositionOption summaryCtx, ApOption argAp, Ap ap, Configuration config
     ) {
       exists(ArgNodeEx arg, boolean allowsFieldFlow |
         fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, config) and
@@ -1428,8 +1449,8 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowOutNotFromArg(
-      NodeEx out, FlowState state, Cc ccOut, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
-      Configuration config
+      NodeEx out, FlowState state, Cc ccOut, ParameterPositionOption summaryCtx, ApOption argAp,
+      Ap ap, Configuration config
     ) {
       exists(
         DataFlowCall call, RetNodeEx ret, boolean allowsFieldFlow, CcNoCall innercc,
@@ -1445,14 +1466,18 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowOutFromArg(
-      DataFlowCall call, NodeEx out, FlowState state, ParamNode summaryCtx, Ap argAp, Ap ap,
+      DataFlowCall call, NodeEx out, FlowState state, ParameterPosition summaryCtx, Ap argAp, Ap ap,
       Configuration config
     ) {
-      exists(RetNodeEx ret, ReturnKindExt kind, boolean allowsFieldFlow, CcCall ccc |
-        fwdFlow(ret, state, ccc, TParamNodeSome(summaryCtx), apSome(argAp), ap, config) and
-        flowThroughOutOfCall(call, ccc, ret, kind, out, allowsFieldFlow, config) and
+      exists(
+        DataFlowCallable c, RetNodeEx ret, ReturnKindExt kind, boolean allowsFieldFlow, CcCall ccc
+      |
+        fwdFlow(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc),
+          TParameterPositionSome(pragma[only_bind_into](summaryCtx)), apSome(argAp), ap, config) and
+        flowThroughOutOfCall(call, pragma[only_bind_into](c), ccc, ret, kind, out, allowsFieldFlow,
+          config) and
         (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
-        parameterFlowThroughAllowed(summaryCtx, kind)
+        parameterFlowThroughAllowed(c, pragma[only_bind_into](summaryCtx), kind)
       )
     }
 
@@ -1462,13 +1487,13 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate fwdFlowIsEntered(
-      DataFlowCall call, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, ParamNode p, Ap ap,
-      Configuration config
+      DataFlowCall call, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      ParameterPosition pos, Ap ap, Configuration config
     ) {
       exists(ParamNodeEx param |
         fwdFlowIn(call, param, _, cc, _, summaryCtx, argAp, ap, config) and
         PrevStage::parameterMayFlowThrough(param, unbindApa(getApprox(ap)), config) and
-        p = param.asNode()
+        pos = param.getPosition()
       )
     }
 
@@ -1489,13 +1514,29 @@ private module MkStage<StageSig PrevStage> {
     }
 
     pragma[nomagic]
-    private predicate returnFlowsThrough(
-      RetNodeEx ret, ReturnPosition pos, FlowState state, CcCall ccc, ParamNode p, Ap argAp, Ap ap,
-      Configuration config
+    private predicate returnFlowsThrough0(
+      RetNodeEx ret, FlowState state, CcCall ccc, DataFlowCallable c, ParameterPosition ppos,
+      Ap argAp, Ap ap, Configuration config
     ) {
-      fwdFlow(ret, state, ccc, TParamNodeSome(p), apSome(argAp), ap, config) and
-      pos = ret.getReturnPosition() and
-      parameterFlowThroughAllowed(p, pos.getKind())
+      exists(boolean allowsFieldFlow |
+        fwdFlow(ret, state, ccc, TParameterPositionSome(ppos), apSome(argAp), ap, config) and
+        flowThroughOutOfCall(_, c, _, pragma[only_bind_into](ret), _, _, allowsFieldFlow,
+          pragma[only_bind_into](config)) and
+        if allowsFieldFlow = false then ap instanceof ApNil else any()
+      )
+    }
+
+    pragma[nomagic]
+    private predicate returnFlowsThrough(
+      RetNodeEx ret, ReturnPosition pos, FlowState state, CcCall ccc, ParamNodeEx p, Ap argAp,
+      Ap ap, Configuration config
+    ) {
+      exists(DataFlowCallable c, ParameterPosition ppos |
+        returnFlowsThrough0(ret, state, ccc, c, ppos, argAp, ap, config) and
+        p.isParameterOf(c, ppos) and
+        pos = ret.getReturnPosition() and
+        parameterFlowThroughAllowed(p, pos.getKind())
+      )
     }
 
     pragma[nomagic]
@@ -1506,7 +1547,7 @@ private module MkStage<StageSig PrevStage> {
         flowIntoCall(call, pragma[only_bind_into](arg), pragma[only_bind_into](p), allowsFieldFlow,
           pragma[only_bind_into](config)) and
         fwdFlow(arg, _, _, _, _, pragma[only_bind_into](argAp), pragma[only_bind_into](config)) and
-        returnFlowsThrough(_, _, _, _, p.asNode(), pragma[only_bind_into](argAp), _,
+        returnFlowsThrough(_, _, _, _, p, pragma[only_bind_into](argAp), _,
           pragma[only_bind_into](config))
       )
     }
@@ -1671,7 +1712,7 @@ private module MkStage<StageSig PrevStage> {
         revFlow(p, state, TReturnCtxMaybeFlowThrough(returnPos), apSome(returnAp), ap, config) and
         flowThroughIntoCall(call, arg, p, allowsFieldFlow, config) and
         (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
-        parameterFlowThroughAllowed(p.asNode(), returnPos.getKind())
+        parameterFlowThroughAllowed(p, returnPos.getKind())
       )
     }
 
@@ -1763,13 +1804,13 @@ private module MkStage<StageSig PrevStage> {
       ParamNodeEx p, Ap ap, ReturnPosition returnPos, Configuration config
     ) {
       revFlow(p, _, TReturnCtxMaybeFlowThrough(returnPos), apSome(_), ap, config) and
-      parameterFlowThroughAllowed(p.asNode(), returnPos.getKind())
+      parameterFlowThroughAllowed(p, returnPos.getKind())
     }
 
     pragma[nomagic]
     predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
       exists(RetNodeEx ret, ReturnPosition pos |
-        returnFlowsThrough(ret, pos, _, _, p.asNode(), ap, _, config) and
+        returnFlowsThrough(ret, pos, _, _, p, ap, _, config) and
         parameterFlowsThroughRev(p, ap, pos, config)
       )
     }
@@ -1777,7 +1818,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config) {
       exists(ParamNodeEx p, Ap ap |
-        returnFlowsThrough(ret, pos, _, _, p.asNode(), ap, _, config) and
+        returnFlowsThrough(ret, pos, _, _, p, ap, _, config) and
         parameterFlowsThroughRev(p, ap, pos, config)
       )
     }
@@ -1803,9 +1844,8 @@ private module MkStage<StageSig PrevStage> {
       conscand = count(TypedContent f0, Ap ap | fwdConsCand(f0, ap, config)) and
       states = count(FlowState state | fwdFlow(_, state, _, _, _, _, config)) and
       tuples =
-        count(NodeEx n, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap |
-          fwdFlow(n, state, cc, summaryCtx, argAp, ap, config)
-        )
+        count(NodeEx n, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+          Ap ap | fwdFlow(n, state, cc, summaryCtx, argAp, ap, config))
       or
       fwd = false and
       nodes = count(NodeEx node | revFlow(node, _, _, _, _, config)) and
@@ -2555,12 +2595,13 @@ private Configuration unbindConf(Configuration conf) {
 
 pragma[nomagic]
 private predicate nodeMayUseSummary0(
-  NodeEx n, ParamNodeEx p, FlowState state, AccessPathApprox apa, Configuration config
+  NodeEx n, DataFlowCallable c, ParameterPosition pos, FlowState state, AccessPathApprox apa,
+  Configuration config
 ) {
   exists(AccessPathApprox apa0 |
-    Stage4::parameterMayFlowThrough(p, _, _) and
+    c = n.getEnclosingCallable() and
     Stage4::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
-    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TParamNodeSome(p.asNode()),
+    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TParameterPositionSome(pos),
       TAccessPathApproxSome(apa), apa0, config)
   )
 }
@@ -2569,9 +2610,10 @@ pragma[nomagic]
 private predicate nodeMayUseSummary(
   NodeEx n, FlowState state, AccessPathApprox apa, Configuration config
 ) {
-  exists(ParamNodeEx p |
+  exists(DataFlowCallable c, ParameterPosition pos, ParamNodeEx p |
     Stage4::parameterMayFlowThrough(p, apa, config) and
-    nodeMayUseSummary0(n, p, state, apa, config)
+    nodeMayUseSummary0(n, c, pos, state, apa, config) and
+    p.isParameterOf(c, pos)
   )
 }
 
@@ -3504,7 +3546,7 @@ private predicate paramFlowsThrough(
     pathNode(mid, ret, state, cc, sc, ap, config, _) and
     kind = ret.getKind() and
     apa = ap.getApprox() and
-    parameterFlowThroughAllowed(sc.getParamNode().asNode(), kind)
+    parameterFlowThroughAllowed(sc.getParamNode(), kind)
   )
 }
 
diff --git a/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImplCommon.qll b/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImplCommon.qll
index 621ed34f9d0..6a79e7eb6ce 100644
--- a/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImplCommon.qll
+++ b/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImplCommon.qll
@@ -916,9 +916,9 @@ private module Cached {
     TDataFlowCallSome(DataFlowCall call)
 
   cached
-  newtype TParamNodeOption =
-    TParamNodeNone() or
-    TParamNodeSome(ParamNode p)
+  newtype TParameterPositionOption =
+    TParameterPositionNone() or
+    TParameterPositionSome(ParameterPosition pos)
 
   cached
   newtype TReturnCtx =
@@ -1315,15 +1315,15 @@ class DataFlowCallOption extends TDataFlowCallOption {
   }
 }
 
-/** An optional `ParamNode`. */
-class ParamNodeOption extends TParamNodeOption {
+/** An optional `ParameterPosition`. */
+class ParameterPositionOption extends TParameterPositionOption {
   string toString() {
-    this = TParamNodeNone() and
+    this = TParameterPositionNone() and
     result = "(none)"
     or
-    exists(ParamNode p |
-      this = TParamNodeSome(p) and
-      result = p.toString()
+    exists(ParameterPosition pos |
+      this = TParameterPositionSome(pos) and
+      result = pos.toString()
     )
   }
 }

From 4346a7f426f9f8781a97e5509596ad454d8d74bb Mon Sep 17 00:00:00 2001
From: Tom Hvitved <hvitved@github.com>
Date: Thu, 24 Nov 2022 14:48:30 +0100
Subject: [PATCH 0652/1420] Data flow: Inline `fwdFlowOutNotFromArg`

---
 .../ruby/dataflow/internal/DataFlowImpl.qll   | 28 +++++++------------
 1 file changed, 10 insertions(+), 18 deletions(-)

diff --git a/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImpl.qll b/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImpl.qll
index 13d7687c188..911f2299bcc 100644
--- a/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImpl.qll
+++ b/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImpl.qll
@@ -1390,7 +1390,16 @@ private module MkStage<StageSig PrevStage> {
       )
       or
       // flow out of a callable
-      fwdFlowOutNotFromArg(node, state, cc, summaryCtx, argAp, ap, config)
+      exists(
+        DataFlowCall call, RetNodeEx ret, boolean allowsFieldFlow, CcNoCall innercc,
+        DataFlowCallable inner
+      |
+        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, config) and
+        flowOutOfCall(call, ret, _, node, allowsFieldFlow, config) and
+        inner = ret.getEnclosingCallable() and
+        cc = getCallContextReturn(inner, call, innercc) and
+        if allowsFieldFlow = false then ap instanceof ApNil else any()
+      )
       or
       // flow through a callable
       exists(DataFlowCall call, ParameterPosition summaryCtx0, Ap argAp0 |
@@ -1447,23 +1456,6 @@ private module MkStage<StageSig PrevStage> {
       )
     }
 
-    pragma[nomagic]
-    private predicate fwdFlowOutNotFromArg(
-      NodeEx out, FlowState state, Cc ccOut, ParameterPositionOption summaryCtx, ApOption argAp,
-      Ap ap, Configuration config
-    ) {
-      exists(
-        DataFlowCall call, RetNodeEx ret, boolean allowsFieldFlow, CcNoCall innercc,
-        DataFlowCallable inner
-      |
-        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, config) and
-        flowOutOfCall(call, ret, _, out, allowsFieldFlow, config) and
-        inner = ret.getEnclosingCallable() and
-        ccOut = getCallContextReturn(inner, call, innercc) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
-      )
-    }
-
     pragma[nomagic]
     private predicate fwdFlowOutFromArg(
       DataFlowCall call, NodeEx out, FlowState state, ParameterPosition summaryCtx, Ap argAp, Ap ap,

From bdb205a318618c4136cf0cfb116d98711c9250e9 Mon Sep 17 00:00:00 2001
From: Tom Hvitved <hvitved@github.com>
Date: Thu, 24 Nov 2022 15:03:38 +0100
Subject: [PATCH 0653/1420] Data flow: Track return kind instead of return
 position in pruning stages 2-4

---
 .../ruby/dataflow/internal/DataFlowImpl.qll   | 118 +++++++++---------
 .../dataflow/internal/DataFlowImplCommon.qll  |  10 +-
 2 files changed, 64 insertions(+), 64 deletions(-)

diff --git a/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImpl.qll b/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImpl.qll
index 911f2299bcc..89be164852f 100644
--- a/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImpl.qll
+++ b/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImpl.qll
@@ -1022,9 +1022,9 @@ private module Stage1 implements StageSig {
   }
 
   pragma[nomagic]
-  predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config) {
+  predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config) {
     throughFlowNodeCand(ret, config) and
-    pos = ret.getReturnPosition()
+    kind = ret.getKind()
   }
 
   pragma[nomagic]
@@ -1083,13 +1083,16 @@ private predicate viableReturnPosOutNodeCand1(
  */
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand1(
-  DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, Configuration config
+  DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, Configuration config
 ) {
-  viableReturnPosOutNodeCand1(call, pos, out, config) and
-  pos = ret.getReturnPosition() and
-  Stage1::revFlow(ret, config) and
-  not outBarrier(ret, config) and
-  not inBarrier(out, config)
+  exists(ReturnPosition pos |
+    viableReturnPosOutNodeCand1(call, pos, out, config) and
+    pos = ret.getReturnPosition() and
+    kind = pos.getKind() and
+    Stage1::revFlow(ret, config) and
+    not outBarrier(ret, config) and
+    not inBarrier(out, config)
+  )
 }
 
 pragma[nomagic]
@@ -1149,10 +1152,10 @@ private int join(NodeEx n2, Configuration conf) {
  */
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand1(
-  DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
+  DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
   Configuration config
 ) {
-  flowOutOfCallNodeCand1(call, ret, pos, out, pragma[only_bind_into](config)) and
+  flowOutOfCallNodeCand1(call, ret, kind, out, pragma[only_bind_into](config)) and
   exists(int b, int j |
     b = branch(ret, pragma[only_bind_into](config)) and
     j = join(out, pragma[only_bind_into](config)) and
@@ -1193,7 +1196,7 @@ private signature module StageSig {
 
   predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config);
 
-  predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config);
+  predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config);
 
   predicate storeStepCand(
     NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, DataFlowType contentType,
@@ -1259,7 +1262,7 @@ private module MkStage<StageSig PrevStage> {
     );
 
     predicate flowOutOfCall(
-      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
+      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
       Configuration config
     );
 
@@ -1288,14 +1291,11 @@ private module MkStage<StageSig PrevStage> {
       DataFlowCall call, DataFlowCallable c, CcCall ccc, RetNodeEx ret, ReturnKindExt kind,
       NodeEx out, boolean allowsFieldFlow, Configuration config
     ) {
-      exists(ReturnPosition pos |
-        flowOutOfCall(call, ret, pos, out, allowsFieldFlow, pragma[only_bind_into](config)) and
-        kind = pos.getKind() and
-        PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
-        PrevStage::returnMayFlowThrough(ret, pos, pragma[only_bind_into](config)) and
-        matchesCall(ccc, call) and
-        c = ret.getEnclosingCallable()
-      )
+      flowOutOfCall(call, ret, kind, out, allowsFieldFlow, pragma[only_bind_into](config)) and
+      PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
+      PrevStage::returnMayFlowThrough(ret, kind, pragma[only_bind_into](config)) and
+      matchesCall(ccc, call) and
+      c = ret.getEnclosingCallable()
     }
 
     /**
@@ -1507,12 +1507,12 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate returnFlowsThrough0(
-      RetNodeEx ret, FlowState state, CcCall ccc, DataFlowCallable c, ParameterPosition ppos,
-      Ap argAp, Ap ap, Configuration config
+      RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, DataFlowCallable c,
+      ParameterPosition ppos, Ap argAp, Ap ap, Configuration config
     ) {
       exists(boolean allowsFieldFlow |
         fwdFlow(ret, state, ccc, TParameterPositionSome(ppos), apSome(argAp), ap, config) and
-        flowThroughOutOfCall(_, c, _, pragma[only_bind_into](ret), _, _, allowsFieldFlow,
+        flowThroughOutOfCall(_, c, _, pragma[only_bind_into](ret), kind, _, allowsFieldFlow,
           pragma[only_bind_into](config)) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
@@ -1520,14 +1520,13 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate returnFlowsThrough(
-      RetNodeEx ret, ReturnPosition pos, FlowState state, CcCall ccc, ParamNodeEx p, Ap argAp,
+      RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, ParamNodeEx p, Ap argAp,
       Ap ap, Configuration config
     ) {
       exists(DataFlowCallable c, ParameterPosition ppos |
-        returnFlowsThrough0(ret, state, ccc, c, ppos, argAp, ap, config) and
+        returnFlowsThrough0(ret, kind, state, ccc, c, ppos, argAp, ap, config) and
         p.isParameterOf(c, ppos) and
-        pos = ret.getReturnPosition() and
-        parameterFlowThroughAllowed(p, pos.getKind())
+        parameterFlowThroughAllowed(p, kind)
       )
     }
 
@@ -1631,17 +1630,17 @@ private module MkStage<StageSig PrevStage> {
       returnCtx = TReturnCtxNone()
       or
       // flow through a callable
-      exists(DataFlowCall call, ReturnPosition returnPos0, Ap returnAp0 |
-        revFlowInToReturn(call, node, state, returnPos0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnPos0, returnAp0, config)
+      exists(DataFlowCall call, ReturnKindExt returnKind0, Ap returnAp0 |
+        revFlowInToReturn(call, node, state, returnKind0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
       )
       or
       // flow out of a callable
-      exists(ReturnPosition pos |
-        revFlowOut(_, node, pos, state, _, _, ap, config) and
-        if returnFlowsThrough(node, pos, state, _, _, _, ap, config)
+      exists(ReturnKindExt kind |
+        revFlowOut(_, node, kind, state, _, _, ap, config) and
+        if returnFlowsThrough(node, kind, state, _, _, _, ap, config)
         then (
-          returnCtx = TReturnCtxMaybeFlowThrough(pos) and
+          returnCtx = TReturnCtxMaybeFlowThrough(kind) and
           returnAp = apSome(ap)
         ) else (
           returnCtx = TReturnCtxNoFlowThrough() and returnAp = apNone()
@@ -1674,12 +1673,12 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate revFlowOut(
-      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, FlowState state, ReturnCtx returnCtx,
+      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, FlowState state, ReturnCtx returnCtx,
       ApOption returnAp, Ap ap, Configuration config
     ) {
       exists(NodeEx out, boolean allowsFieldFlow |
         revFlow(out, state, returnCtx, returnAp, ap, config) and
-        flowOutOfCall(call, ret, pos, out, allowsFieldFlow, config) and
+        flowOutOfCall(call, ret, kind, out, allowsFieldFlow, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
@@ -1697,14 +1696,15 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate revFlowInToReturn(
-      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnPosition returnPos, Ap returnAp,
-      Ap ap, Configuration config
+      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap,
+      Configuration config
     ) {
       exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(p, state, TReturnCtxMaybeFlowThrough(returnPos), apSome(returnAp), ap, config) and
+        revFlow(pragma[only_bind_into](p), state,
+          TReturnCtxMaybeFlowThrough(pragma[only_bind_into](kind)), apSome(returnAp), ap, config) and
         flowThroughIntoCall(call, arg, p, allowsFieldFlow, config) and
         (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
-        parameterFlowThroughAllowed(p, returnPos.getKind())
+        parameterFlowThroughAllowed(p, kind)
       )
     }
 
@@ -1715,12 +1715,12 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate revFlowIsReturned(
-      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnPosition pos, Ap ap,
+      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnKindExt kind, Ap ap,
       Configuration config
     ) {
       exists(RetNodeEx ret, FlowState state, CcCall ccc |
-        revFlowOut(call, ret, pos, state, returnCtx, returnAp, ap, config) and
-        returnFlowsThrough(ret, pos, state, ccc, _, _, ap, config) and
+        revFlowOut(call, ret, kind, state, returnCtx, returnAp, ap, config) and
+        returnFlowsThrough(ret, kind, state, ccc, _, _, ap, config) and
         matchesCall(ccc, call)
       )
     }
@@ -1793,37 +1793,37 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate parameterFlowsThroughRev(
-      ParamNodeEx p, Ap ap, ReturnPosition returnPos, Configuration config
+      ParamNodeEx p, Ap ap, ReturnKindExt kind, Configuration config
     ) {
-      revFlow(p, _, TReturnCtxMaybeFlowThrough(returnPos), apSome(_), ap, config) and
-      parameterFlowThroughAllowed(p, returnPos.getKind())
+      revFlow(p, _, TReturnCtxMaybeFlowThrough(kind), apSome(_), ap, config) and
+      parameterFlowThroughAllowed(p, kind)
     }
 
     pragma[nomagic]
     predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
-      exists(RetNodeEx ret, ReturnPosition pos |
-        returnFlowsThrough(ret, pos, _, _, p, ap, _, config) and
-        parameterFlowsThroughRev(p, ap, pos, config)
+      exists(RetNodeEx ret, ReturnKindExt kind |
+        returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
+        parameterFlowsThroughRev(p, ap, kind, config)
       )
     }
 
     pragma[nomagic]
-    predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config) {
+    predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config) {
       exists(ParamNodeEx p, Ap ap |
-        returnFlowsThrough(ret, pos, _, _, p, ap, _, config) and
-        parameterFlowsThroughRev(p, ap, pos, config)
+        returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
+        parameterFlowsThroughRev(p, ap, kind, config)
       )
     }
 
     pragma[nomagic]
     predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
       exists(
-        ReturnPosition returnPos0, Ap returnAp0, ArgNodeEx arg, FlowState state,
+        ReturnKindExt returnKind0, Ap returnAp0, ArgNodeEx arg, FlowState state,
         ReturnCtx returnCtx, ApOption returnAp, Ap ap
       |
         revFlow(arg, state, returnCtx, returnAp, ap, config) and
-        revFlowInToReturn(call, arg, state, returnPos0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnPos0, returnAp0, config)
+        revFlowInToReturn(call, arg, state, returnKind0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
       )
     }
 
@@ -2027,10 +2027,10 @@ private module Stage2 implements StageSig {
 
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand2(
-  DataFlowCall call, RetNodeEx node1, ReturnPosition pos, NodeEx node2, boolean allowsFieldFlow,
+  DataFlowCall call, RetNodeEx node1, ReturnKindExt kind, NodeEx node2, boolean allowsFieldFlow,
   Configuration config
 ) {
-  flowOutOfCallNodeCand1(call, node1, pos, node2, allowsFieldFlow, config) and
+  flowOutOfCallNodeCand1(call, node1, kind, node2, allowsFieldFlow, config) and
   Stage2::revFlow(node2, pragma[only_bind_into](config)) and
   Stage2::revFlowAlias(node1, pragma[only_bind_into](config))
 }
@@ -2546,11 +2546,11 @@ private module Stage4Param implements MkStage<Stage3>::StageParam {
 
   pragma[nomagic]
   predicate flowOutOfCall(
-    DataFlowCall call, RetNodeEx node1, ReturnPosition pos, NodeEx node2, boolean allowsFieldFlow,
+    DataFlowCall call, RetNodeEx node1, ReturnKindExt kind, NodeEx node2, boolean allowsFieldFlow,
     Configuration config
   ) {
     exists(FlowState state |
-      flowOutOfCallNodeCand2(call, node1, pos, node2, allowsFieldFlow, config) and
+      flowOutOfCallNodeCand2(call, node1, kind, node2, allowsFieldFlow, config) and
       PrevStage::revFlow(node2, pragma[only_bind_into](state), _, pragma[only_bind_into](config)) and
       PrevStage::revFlowAlias(node1, pragma[only_bind_into](state), _,
         pragma[only_bind_into](config))
diff --git a/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImplCommon.qll b/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImplCommon.qll
index 6a79e7eb6ce..f981834a6d4 100644
--- a/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImplCommon.qll
+++ b/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImplCommon.qll
@@ -924,7 +924,7 @@ private module Cached {
   newtype TReturnCtx =
     TReturnCtxNone() or
     TReturnCtxNoFlowThrough() or
-    TReturnCtxMaybeFlowThrough(ReturnPosition pos)
+    TReturnCtxMaybeFlowThrough(ReturnKindExt kind)
 
   cached
   newtype TTypedContent = MkTypedContent(Content c, DataFlowType t) { store(_, c, _, _, t) }
@@ -1335,7 +1335,7 @@ class ParameterPositionOption extends TParameterPositionOption {
  *
  * - `TReturnCtxNone()`: no return flow.
  * - `TReturnCtxNoFlowThrough()`: return flow, but flow through is not possible.
- * - `TReturnCtxMaybeFlowThrough(ReturnPosition pos)`: return flow, of kind `pos`, and
+ * - `TReturnCtxMaybeFlowThrough(ReturnKindExt kind)`: return flow, of kind `kind`, and
  *    flow through may be possible.
  */
 class ReturnCtx extends TReturnCtx {
@@ -1346,9 +1346,9 @@ class ReturnCtx extends TReturnCtx {
     this = TReturnCtxNoFlowThrough() and
     result = "(no flow through)"
     or
-    exists(ReturnPosition pos |
-      this = TReturnCtxMaybeFlowThrough(pos) and
-      result = pos.toString()
+    exists(ReturnKindExt kind |
+      this = TReturnCtxMaybeFlowThrough(kind) and
+      result = kind.toString()
     )
   }
 }

From c65780ee99cd015e496ee17aa3e9a3f732b7bb50 Mon Sep 17 00:00:00 2001
From: Tom Hvitved <hvitved@github.com>
Date: Thu, 24 Nov 2022 15:06:54 +0100
Subject: [PATCH 0654/1420] Data flow: Inline `revFlowInNotToReturn`

---
 .../ruby/dataflow/internal/DataFlowImpl.qll   | 19 ++++++-------------
 1 file changed, 6 insertions(+), 13 deletions(-)

diff --git a/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImpl.qll b/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImpl.qll
index 89be164852f..e4cfd5986be 100644
--- a/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImpl.qll
+++ b/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImpl.qll
@@ -1626,8 +1626,12 @@ private module MkStage<StageSig PrevStage> {
       )
       or
       // flow into a callable
-      revFlowInNotToReturn(node, state, returnAp, ap, config) and
-      returnCtx = TReturnCtxNone()
+      exists(ParamNodeEx p, boolean allowsFieldFlow |
+        revFlow(p, state, TReturnCtxNone(), returnAp, ap, config) and
+        flowIntoCall(_, node, p, allowsFieldFlow, config) and
+        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
+        returnCtx = TReturnCtxNone()
+      )
       or
       // flow through a callable
       exists(DataFlowCall call, ReturnKindExt returnKind0, Ap returnAp0 |
@@ -1683,17 +1687,6 @@ private module MkStage<StageSig PrevStage> {
       )
     }
 
-    pragma[nomagic]
-    private predicate revFlowInNotToReturn(
-      ArgNodeEx arg, FlowState state, ApOption returnAp, Ap ap, Configuration config
-    ) {
-      exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(p, state, TReturnCtxNone(), returnAp, ap, config) and
-        flowIntoCall(_, arg, p, allowsFieldFlow, config) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
-      )
-    }
-
     pragma[nomagic]
     private predicate revFlowInToReturn(
       DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap,

From cde05e11907827d753141da89d8f22cf7a267812 Mon Sep 17 00:00:00 2001
From: Tom Hvitved <hvitved@github.com>
Date: Thu, 24 Nov 2022 15:07:45 +0100
Subject: [PATCH 0655/1420] Data flow: Sync files

---
 .../cpp/ir/dataflow/internal/DataFlowImpl.qll | 292 ++++++++++--------
 .../ir/dataflow/internal/DataFlowImpl2.qll    | 292 ++++++++++--------
 .../ir/dataflow/internal/DataFlowImpl3.qll    | 292 ++++++++++--------
 .../ir/dataflow/internal/DataFlowImpl4.qll    | 292 ++++++++++--------
 .../dataflow/internal/DataFlowImplCommon.qll  |  28 +-
 .../cpp/dataflow/internal/DataFlowImpl.qll    | 292 ++++++++++--------
 .../cpp/dataflow/internal/DataFlowImpl2.qll   | 292 ++++++++++--------
 .../cpp/dataflow/internal/DataFlowImpl3.qll   | 292 ++++++++++--------
 .../cpp/dataflow/internal/DataFlowImpl4.qll   | 292 ++++++++++--------
 .../dataflow/internal/DataFlowImplCommon.qll  |  28 +-
 .../dataflow/internal/DataFlowImplLocal.qll   | 292 ++++++++++--------
 .../cpp/ir/dataflow/internal/DataFlowImpl.qll | 292 ++++++++++--------
 .../ir/dataflow/internal/DataFlowImpl2.qll    | 292 ++++++++++--------
 .../ir/dataflow/internal/DataFlowImpl3.qll    | 292 ++++++++++--------
 .../ir/dataflow/internal/DataFlowImpl4.qll    | 292 ++++++++++--------
 .../dataflow/internal/DataFlowImplCommon.qll  |  28 +-
 .../csharp/dataflow/internal/DataFlowImpl.qll | 292 ++++++++++--------
 .../dataflow/internal/DataFlowImpl2.qll       | 292 ++++++++++--------
 .../dataflow/internal/DataFlowImpl3.qll       | 292 ++++++++++--------
 .../dataflow/internal/DataFlowImpl4.qll       | 292 ++++++++++--------
 .../dataflow/internal/DataFlowImpl5.qll       | 292 ++++++++++--------
 .../dataflow/internal/DataFlowImplCommon.qll  |  28 +-
 .../DataFlowImplForContentDataFlow.qll        | 292 ++++++++++--------
 .../java/dataflow/internal/DataFlowImpl.qll   | 292 ++++++++++--------
 .../java/dataflow/internal/DataFlowImpl2.qll  | 292 ++++++++++--------
 .../java/dataflow/internal/DataFlowImpl3.qll  | 292 ++++++++++--------
 .../java/dataflow/internal/DataFlowImpl4.qll  | 292 ++++++++++--------
 .../java/dataflow/internal/DataFlowImpl5.qll  | 292 ++++++++++--------
 .../java/dataflow/internal/DataFlowImpl6.qll  | 292 ++++++++++--------
 .../dataflow/internal/DataFlowImplCommon.qll  |  28 +-
 .../DataFlowImplForOnActivityResult.qll       | 292 ++++++++++--------
 .../DataFlowImplForSerializability.qll        | 292 ++++++++++--------
 .../dataflow/new/internal/DataFlowImpl.qll    | 292 ++++++++++--------
 .../dataflow/new/internal/DataFlowImpl2.qll   | 292 ++++++++++--------
 .../dataflow/new/internal/DataFlowImpl3.qll   | 292 ++++++++++--------
 .../dataflow/new/internal/DataFlowImpl4.qll   | 292 ++++++++++--------
 .../new/internal/DataFlowImplCommon.qll       |  28 +-
 .../ruby/dataflow/internal/DataFlowImpl2.qll  | 292 ++++++++++--------
 .../DataFlowImplForHttpClientLibraries.qll    | 292 ++++++++++--------
 .../internal/DataFlowImplForPathname.qll      | 292 ++++++++++--------
 .../internal/DataFlowImplForRegExp.qll        | 292 ++++++++++--------
 .../swift/dataflow/internal/DataFlowImpl.qll  | 292 ++++++++++--------
 .../dataflow/internal/DataFlowImplCommon.qll  |  28 +-
 43 files changed, 5894 insertions(+), 4814 deletions(-)

diff --git a/cpp/ql/lib/experimental/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl.qll b/cpp/ql/lib/experimental/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl.qll
index a52ad110662..e4cfd5986be 100644
--- a/cpp/ql/lib/experimental/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl.qll
+++ b/cpp/ql/lib/experimental/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl.qll
@@ -613,11 +613,28 @@ private predicate hasSinkCallCtx(Configuration config) {
  * explicitly allowed
  */
 bindingset[p, kind]
-private predicate parameterFlowThroughAllowed(ParamNode p, ReturnKindExt kind) {
+private predicate parameterFlowThroughAllowed(ParamNodeEx p, ReturnKindExt kind) {
   exists(ParameterPosition pos | p.isParameterOf(_, pos) |
     not kind.(ParamUpdateReturnKind).getPosition() = pos
     or
-    allowParameterReturnInSelfCached(p)
+    allowParameterReturnInSelfCached(p.asNode())
+  )
+}
+
+/**
+ * Holds if flow from a parameter at position `pos` inside `c` to a return node of
+ * kind `kind` is allowed.
+ *
+ * We don't expect a parameter to return stored in itself, unless
+ * explicitly allowed
+ */
+bindingset[c, pos, kind]
+private predicate parameterFlowThroughAllowed(
+  DataFlowCallable c, ParameterPosition pos, ReturnKindExt kind
+) {
+  exists(ParamNodeEx p |
+    p.isParameterOf(c, pos) and
+    parameterFlowThroughAllowed(p, kind)
   )
 }
 
@@ -1000,14 +1017,14 @@ private module Stage1 implements StageSig {
       returnFlowCallableNodeCand(c, kind, config) and
       p.getEnclosingCallable() = c and
       exists(ap) and
-      parameterFlowThroughAllowed(p.asNode(), kind)
+      parameterFlowThroughAllowed(p, kind)
     )
   }
 
   pragma[nomagic]
-  predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config) {
+  predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config) {
     throughFlowNodeCand(ret, config) and
-    pos = ret.getReturnPosition()
+    kind = ret.getKind()
   }
 
   pragma[nomagic]
@@ -1066,13 +1083,16 @@ private predicate viableReturnPosOutNodeCand1(
  */
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand1(
-  DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, Configuration config
+  DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, Configuration config
 ) {
-  viableReturnPosOutNodeCand1(call, pos, out, config) and
-  pos = ret.getReturnPosition() and
-  Stage1::revFlow(ret, config) and
-  not outBarrier(ret, config) and
-  not inBarrier(out, config)
+  exists(ReturnPosition pos |
+    viableReturnPosOutNodeCand1(call, pos, out, config) and
+    pos = ret.getReturnPosition() and
+    kind = pos.getKind() and
+    Stage1::revFlow(ret, config) and
+    not outBarrier(ret, config) and
+    not inBarrier(out, config)
+  )
 }
 
 pragma[nomagic]
@@ -1102,6 +1122,7 @@ private predicate flowIntoCallNodeCand1(
  * edge in the graph of paths between sources and sinks that ignores call
  * contexts.
  */
+pragma[nomagic]
 private int branch(NodeEx n1, Configuration conf) {
   result =
     strictcount(NodeEx n |
@@ -1114,6 +1135,7 @@ private int branch(NodeEx n1, Configuration conf) {
  * edge in the graph of paths between sources and sinks that ignores call
  * contexts.
  */
+pragma[nomagic]
 private int join(NodeEx n2, Configuration conf) {
   result =
     strictcount(NodeEx n |
@@ -1130,10 +1152,10 @@ private int join(NodeEx n2, Configuration conf) {
  */
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand1(
-  DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
+  DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
   Configuration config
 ) {
-  flowOutOfCallNodeCand1(call, ret, pos, out, pragma[only_bind_into](config)) and
+  flowOutOfCallNodeCand1(call, ret, kind, out, pragma[only_bind_into](config)) and
   exists(int b, int j |
     b = branch(ret, pragma[only_bind_into](config)) and
     j = join(out, pragma[only_bind_into](config)) and
@@ -1152,10 +1174,10 @@ pragma[nomagic]
 private predicate flowIntoCallNodeCand1(
   DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
 ) {
-  flowIntoCallNodeCand1(call, arg, p, config) and
+  flowIntoCallNodeCand1(call, arg, p, pragma[only_bind_into](config)) and
   exists(int b, int j |
-    b = branch(arg, config) and
-    j = join(p, config) and
+    b = branch(arg, pragma[only_bind_into](config)) and
+    j = join(p, pragma[only_bind_into](config)) and
     if b.minimum(j) <= config.fieldFlowBranchLimit()
     then allowsFieldFlow = true
     else allowsFieldFlow = false
@@ -1174,7 +1196,7 @@ private signature module StageSig {
 
   predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config);
 
-  predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config);
+  predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config);
 
   predicate storeStepCand(
     NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, DataFlowType contentType,
@@ -1240,7 +1262,7 @@ private module MkStage<StageSig PrevStage> {
     );
 
     predicate flowOutOfCall(
-      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
+      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
       Configuration config
     );
 
@@ -1266,16 +1288,14 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate flowThroughOutOfCall(
-      DataFlowCall call, CcCall ccc, RetNodeEx ret, ReturnKindExt kind, NodeEx out,
-      boolean allowsFieldFlow, Configuration config
+      DataFlowCall call, DataFlowCallable c, CcCall ccc, RetNodeEx ret, ReturnKindExt kind,
+      NodeEx out, boolean allowsFieldFlow, Configuration config
     ) {
-      exists(ReturnPosition pos |
-        flowOutOfCall(call, ret, pos, out, allowsFieldFlow, pragma[only_bind_into](config)) and
-        kind = pos.getKind() and
-        PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
-        PrevStage::returnMayFlowThrough(ret, pos, pragma[only_bind_into](config)) and
-        matchesCall(ccc, call)
-      )
+      flowOutOfCall(call, ret, kind, out, allowsFieldFlow, pragma[only_bind_into](config)) and
+      PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
+      PrevStage::returnMayFlowThrough(ret, kind, pragma[only_bind_into](config)) and
+      matchesCall(ccc, call) and
+      c = ret.getEnclosingCallable()
     }
 
     /**
@@ -1284,12 +1304,12 @@ private module MkStage<StageSig PrevStage> {
      *
      * The call context `cc` records whether the node is reached through an
      * argument in a call, and if so, `summaryCtx` and `argAp` record the
-     * corresponding parameter and access path of that argument, respectively.
+     * corresponding parameter position and access path of that argument, respectively.
      */
     pragma[nomagic]
     additional predicate fwdFlow(
-      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
-      Configuration config
+      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      Ap ap, Configuration config
     ) {
       fwdFlow0(node, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::revFlow(node, state, unbindApa(getApprox(ap)), config) and
@@ -1298,13 +1318,13 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlow0(
-      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
-      Configuration config
+      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      Ap ap, Configuration config
     ) {
       sourceNode(node, state, config) and
       (if hasSourceCallCtx(config) then cc = ccSomeCall() else cc = ccNone()) and
       argAp = apNone() and
-      summaryCtx = TParamNodeNone() and
+      summaryCtx = TParameterPositionNone() and
       ap = getApNil(node)
       or
       exists(NodeEx mid, FlowState state0, Ap ap0, LocalCc localCc |
@@ -1322,7 +1342,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, pragma[only_bind_into](config)) and
         jumpStep(mid, node, config) and
         cc = ccNone() and
-        summaryCtx = TParamNodeNone() and
+        summaryCtx = TParameterPositionNone() and
         argAp = apNone()
       )
       or
@@ -1330,7 +1350,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, state, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStep(mid, node, config) and
         cc = ccNone() and
-        summaryCtx = TParamNodeNone() and
+        summaryCtx = TParameterPositionNone() and
         argAp = apNone() and
         ap = getApNil(node)
       )
@@ -1339,7 +1359,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, state0, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStateStep(mid, state0, node, state, config) and
         cc = ccNone() and
-        summaryCtx = TParamNodeNone() and
+        summaryCtx = TParameterPositionNone() and
         argAp = apNone() and
         ap = getApNil(node)
       )
@@ -1362,17 +1382,27 @@ private module MkStage<StageSig PrevStage> {
         apa = getApprox(ap) and
         if PrevStage::parameterMayFlowThrough(node, apa, config)
         then (
-          summaryCtx = TParamNodeSome(node.asNode()) and argAp = apSome(ap)
+          summaryCtx = TParameterPositionSome(node.(ParamNodeEx).getPosition()) and
+          argAp = apSome(ap)
         ) else (
-          summaryCtx = TParamNodeNone() and argAp = apNone()
+          summaryCtx = TParameterPositionNone() and argAp = apNone()
         )
       )
       or
       // flow out of a callable
-      fwdFlowOutNotFromArg(node, state, cc, summaryCtx, argAp, ap, config)
+      exists(
+        DataFlowCall call, RetNodeEx ret, boolean allowsFieldFlow, CcNoCall innercc,
+        DataFlowCallable inner
+      |
+        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, config) and
+        flowOutOfCall(call, ret, _, node, allowsFieldFlow, config) and
+        inner = ret.getEnclosingCallable() and
+        cc = getCallContextReturn(inner, call, innercc) and
+        if allowsFieldFlow = false then ap instanceof ApNil else any()
+      )
       or
       // flow through a callable
-      exists(DataFlowCall call, ParamNode summaryCtx0, Ap argAp0 |
+      exists(DataFlowCall call, ParameterPosition summaryCtx0, Ap argAp0 |
         fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, config) and
         fwdFlowIsEntered(call, cc, summaryCtx, argAp, summaryCtx0, argAp0, config)
       )
@@ -1381,7 +1411,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowStore(
       NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc,
-      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
+      ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
     ) {
       exists(DataFlowType contentType |
         fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, config) and
@@ -1406,7 +1436,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowRead(
       Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc,
-      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
+      ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
     ) {
       fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, c, node2, config) and
@@ -1416,7 +1446,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowIn(
       DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, Cc innercc,
-      ParamNodeOption summaryCtx, ApOption argAp, Ap ap, Configuration config
+      ParameterPositionOption summaryCtx, ApOption argAp, Ap ap, Configuration config
     ) {
       exists(ArgNodeEx arg, boolean allowsFieldFlow |
         fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, config) and
@@ -1427,32 +1457,19 @@ private module MkStage<StageSig PrevStage> {
     }
 
     pragma[nomagic]
-    private predicate fwdFlowOutNotFromArg(
-      NodeEx out, FlowState state, Cc ccOut, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+    private predicate fwdFlowOutFromArg(
+      DataFlowCall call, NodeEx out, FlowState state, ParameterPosition summaryCtx, Ap argAp, Ap ap,
       Configuration config
     ) {
       exists(
-        DataFlowCall call, RetNodeEx ret, boolean allowsFieldFlow, CcNoCall innercc,
-        DataFlowCallable inner
+        DataFlowCallable c, RetNodeEx ret, ReturnKindExt kind, boolean allowsFieldFlow, CcCall ccc
       |
-        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, config) and
-        flowOutOfCall(call, ret, _, out, allowsFieldFlow, config) and
-        inner = ret.getEnclosingCallable() and
-        ccOut = getCallContextReturn(inner, call, innercc) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
-      )
-    }
-
-    pragma[nomagic]
-    private predicate fwdFlowOutFromArg(
-      DataFlowCall call, NodeEx out, FlowState state, ParamNode summaryCtx, Ap argAp, Ap ap,
-      Configuration config
-    ) {
-      exists(RetNodeEx ret, ReturnKindExt kind, boolean allowsFieldFlow, CcCall ccc |
-        fwdFlow(ret, state, ccc, TParamNodeSome(summaryCtx), apSome(argAp), ap, config) and
-        flowThroughOutOfCall(call, ccc, ret, kind, out, allowsFieldFlow, config) and
+        fwdFlow(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc),
+          TParameterPositionSome(pragma[only_bind_into](summaryCtx)), apSome(argAp), ap, config) and
+        flowThroughOutOfCall(call, pragma[only_bind_into](c), ccc, ret, kind, out, allowsFieldFlow,
+          config) and
         (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
-        parameterFlowThroughAllowed(summaryCtx, kind)
+        parameterFlowThroughAllowed(c, pragma[only_bind_into](summaryCtx), kind)
       )
     }
 
@@ -1462,13 +1479,13 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate fwdFlowIsEntered(
-      DataFlowCall call, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, ParamNode p, Ap ap,
-      Configuration config
+      DataFlowCall call, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      ParameterPosition pos, Ap ap, Configuration config
     ) {
       exists(ParamNodeEx param |
         fwdFlowIn(call, param, _, cc, _, summaryCtx, argAp, ap, config) and
         PrevStage::parameterMayFlowThrough(param, unbindApa(getApprox(ap)), config) and
-        p = param.asNode()
+        pos = param.getPosition()
       )
     }
 
@@ -1489,23 +1506,41 @@ private module MkStage<StageSig PrevStage> {
     }
 
     pragma[nomagic]
-    private predicate returnFlowsThrough(
-      RetNodeEx ret, ReturnPosition pos, FlowState state, CcCall ccc, ParamNode p, Ap argAp, Ap ap,
-      Configuration config
+    private predicate returnFlowsThrough0(
+      RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, DataFlowCallable c,
+      ParameterPosition ppos, Ap argAp, Ap ap, Configuration config
     ) {
-      fwdFlow(ret, state, ccc, TParamNodeSome(p), apSome(argAp), ap, config) and
-      pos = ret.getReturnPosition() and
-      parameterFlowThroughAllowed(p, pos.getKind())
+      exists(boolean allowsFieldFlow |
+        fwdFlow(ret, state, ccc, TParameterPositionSome(ppos), apSome(argAp), ap, config) and
+        flowThroughOutOfCall(_, c, _, pragma[only_bind_into](ret), kind, _, allowsFieldFlow,
+          pragma[only_bind_into](config)) and
+        if allowsFieldFlow = false then ap instanceof ApNil else any()
+      )
+    }
+
+    pragma[nomagic]
+    private predicate returnFlowsThrough(
+      RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, ParamNodeEx p, Ap argAp,
+      Ap ap, Configuration config
+    ) {
+      exists(DataFlowCallable c, ParameterPosition ppos |
+        returnFlowsThrough0(ret, kind, state, ccc, c, ppos, argAp, ap, config) and
+        p.isParameterOf(c, ppos) and
+        parameterFlowThroughAllowed(p, kind)
+      )
     }
 
     pragma[nomagic]
     private predicate flowThroughIntoCall(
       DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
     ) {
-      flowIntoCall(call, pragma[only_bind_into](arg), pragma[only_bind_into](p), allowsFieldFlow,
-        pragma[only_bind_into](config)) and
-      fwdFlow(arg, _, _, _, _, _, pragma[only_bind_into](config)) and
-      returnFlowsThrough(_, _, _, _, p.asNode(), _, _, pragma[only_bind_into](config))
+      exists(Ap argAp |
+        flowIntoCall(call, pragma[only_bind_into](arg), pragma[only_bind_into](p), allowsFieldFlow,
+          pragma[only_bind_into](config)) and
+        fwdFlow(arg, _, _, _, _, pragma[only_bind_into](argAp), pragma[only_bind_into](config)) and
+        returnFlowsThrough(_, _, _, _, p, pragma[only_bind_into](argAp), _,
+          pragma[only_bind_into](config))
+      )
     }
 
     /**
@@ -1591,21 +1626,25 @@ private module MkStage<StageSig PrevStage> {
       )
       or
       // flow into a callable
-      revFlowInNotToReturn(node, state, returnAp, ap, config) and
-      returnCtx = TReturnCtxNone()
+      exists(ParamNodeEx p, boolean allowsFieldFlow |
+        revFlow(p, state, TReturnCtxNone(), returnAp, ap, config) and
+        flowIntoCall(_, node, p, allowsFieldFlow, config) and
+        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
+        returnCtx = TReturnCtxNone()
+      )
       or
       // flow through a callable
-      exists(DataFlowCall call, ReturnPosition returnPos0, Ap returnAp0 |
-        revFlowInToReturn(call, node, state, returnPos0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnPos0, returnAp0, config)
+      exists(DataFlowCall call, ReturnKindExt returnKind0, Ap returnAp0 |
+        revFlowInToReturn(call, node, state, returnKind0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
       )
       or
       // flow out of a callable
-      exists(ReturnPosition pos |
-        revFlowOut(_, node, pos, state, _, _, ap, config) and
-        if returnFlowsThrough(node, pos, state, _, _, _, ap, config)
+      exists(ReturnKindExt kind |
+        revFlowOut(_, node, kind, state, _, _, ap, config) and
+        if returnFlowsThrough(node, kind, state, _, _, _, ap, config)
         then (
-          returnCtx = TReturnCtxMaybeFlowThrough(pos) and
+          returnCtx = TReturnCtxMaybeFlowThrough(kind) and
           returnAp = apSome(ap)
         ) else (
           returnCtx = TReturnCtxNoFlowThrough() and returnAp = apNone()
@@ -1638,37 +1677,27 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate revFlowOut(
-      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, FlowState state, ReturnCtx returnCtx,
+      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, FlowState state, ReturnCtx returnCtx,
       ApOption returnAp, Ap ap, Configuration config
     ) {
       exists(NodeEx out, boolean allowsFieldFlow |
         revFlow(out, state, returnCtx, returnAp, ap, config) and
-        flowOutOfCall(call, ret, pos, out, allowsFieldFlow, config) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
-      )
-    }
-
-    pragma[nomagic]
-    private predicate revFlowInNotToReturn(
-      ArgNodeEx arg, FlowState state, ApOption returnAp, Ap ap, Configuration config
-    ) {
-      exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(p, state, TReturnCtxNone(), returnAp, ap, config) and
-        flowIntoCall(_, arg, p, allowsFieldFlow, config) and
+        flowOutOfCall(call, ret, kind, out, allowsFieldFlow, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
     pragma[nomagic]
     private predicate revFlowInToReturn(
-      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnPosition returnPos, Ap returnAp,
-      Ap ap, Configuration config
+      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap,
+      Configuration config
     ) {
       exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(p, state, TReturnCtxMaybeFlowThrough(returnPos), apSome(returnAp), ap, config) and
+        revFlow(pragma[only_bind_into](p), state,
+          TReturnCtxMaybeFlowThrough(pragma[only_bind_into](kind)), apSome(returnAp), ap, config) and
         flowThroughIntoCall(call, arg, p, allowsFieldFlow, config) and
         (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
-        parameterFlowThroughAllowed(p.asNode(), returnPos.getKind())
+        parameterFlowThroughAllowed(p, kind)
       )
     }
 
@@ -1679,12 +1708,12 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate revFlowIsReturned(
-      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnPosition pos, Ap ap,
+      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnKindExt kind, Ap ap,
       Configuration config
     ) {
       exists(RetNodeEx ret, FlowState state, CcCall ccc |
-        revFlowOut(call, ret, pos, state, returnCtx, returnAp, ap, config) and
-        returnFlowsThrough(ret, pos, state, ccc, _, _, ap, config) and
+        revFlowOut(call, ret, kind, state, returnCtx, returnAp, ap, config) and
+        returnFlowsThrough(ret, kind, state, ccc, _, _, ap, config) and
         matchesCall(ccc, call)
       )
     }
@@ -1757,37 +1786,37 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate parameterFlowsThroughRev(
-      ParamNodeEx p, Ap ap, ReturnPosition returnPos, Configuration config
+      ParamNodeEx p, Ap ap, ReturnKindExt kind, Configuration config
     ) {
-      revFlow(p, _, TReturnCtxMaybeFlowThrough(returnPos), apSome(_), ap, config) and
-      parameterFlowThroughAllowed(p.asNode(), returnPos.getKind())
+      revFlow(p, _, TReturnCtxMaybeFlowThrough(kind), apSome(_), ap, config) and
+      parameterFlowThroughAllowed(p, kind)
     }
 
     pragma[nomagic]
     predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
-      exists(RetNodeEx ret, ReturnPosition pos |
-        returnFlowsThrough(ret, pos, _, _, p.asNode(), ap, _, config) and
-        parameterFlowsThroughRev(p, ap, pos, config)
+      exists(RetNodeEx ret, ReturnKindExt kind |
+        returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
+        parameterFlowsThroughRev(p, ap, kind, config)
       )
     }
 
     pragma[nomagic]
-    predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config) {
+    predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config) {
       exists(ParamNodeEx p, Ap ap |
-        returnFlowsThrough(ret, pos, _, _, p.asNode(), ap, _, config) and
-        parameterFlowsThroughRev(p, ap, pos, config)
+        returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
+        parameterFlowsThroughRev(p, ap, kind, config)
       )
     }
 
     pragma[nomagic]
     predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
       exists(
-        ReturnPosition returnPos0, Ap returnAp0, ArgNodeEx arg, FlowState state,
+        ReturnKindExt returnKind0, Ap returnAp0, ArgNodeEx arg, FlowState state,
         ReturnCtx returnCtx, ApOption returnAp, Ap ap
       |
         revFlow(arg, state, returnCtx, returnAp, ap, config) and
-        revFlowInToReturn(call, arg, state, returnPos0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnPos0, returnAp0, config)
+        revFlowInToReturn(call, arg, state, returnKind0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
       )
     }
 
@@ -1800,9 +1829,8 @@ private module MkStage<StageSig PrevStage> {
       conscand = count(TypedContent f0, Ap ap | fwdConsCand(f0, ap, config)) and
       states = count(FlowState state | fwdFlow(_, state, _, _, _, _, config)) and
       tuples =
-        count(NodeEx n, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap |
-          fwdFlow(n, state, cc, summaryCtx, argAp, ap, config)
-        )
+        count(NodeEx n, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+          Ap ap | fwdFlow(n, state, cc, summaryCtx, argAp, ap, config))
       or
       fwd = false and
       nodes = count(NodeEx node | revFlow(node, _, _, _, _, config)) and
@@ -1992,10 +2020,10 @@ private module Stage2 implements StageSig {
 
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand2(
-  DataFlowCall call, RetNodeEx node1, ReturnPosition pos, NodeEx node2, boolean allowsFieldFlow,
+  DataFlowCall call, RetNodeEx node1, ReturnKindExt kind, NodeEx node2, boolean allowsFieldFlow,
   Configuration config
 ) {
-  flowOutOfCallNodeCand1(call, node1, pos, node2, allowsFieldFlow, config) and
+  flowOutOfCallNodeCand1(call, node1, kind, node2, allowsFieldFlow, config) and
   Stage2::revFlow(node2, pragma[only_bind_into](config)) and
   Stage2::revFlowAlias(node1, pragma[only_bind_into](config))
 }
@@ -2511,11 +2539,11 @@ private module Stage4Param implements MkStage<Stage3>::StageParam {
 
   pragma[nomagic]
   predicate flowOutOfCall(
-    DataFlowCall call, RetNodeEx node1, ReturnPosition pos, NodeEx node2, boolean allowsFieldFlow,
+    DataFlowCall call, RetNodeEx node1, ReturnKindExt kind, NodeEx node2, boolean allowsFieldFlow,
     Configuration config
   ) {
     exists(FlowState state |
-      flowOutOfCallNodeCand2(call, node1, pos, node2, allowsFieldFlow, config) and
+      flowOutOfCallNodeCand2(call, node1, kind, node2, allowsFieldFlow, config) and
       PrevStage::revFlow(node2, pragma[only_bind_into](state), _, pragma[only_bind_into](config)) and
       PrevStage::revFlowAlias(node1, pragma[only_bind_into](state), _,
         pragma[only_bind_into](config))
@@ -2552,12 +2580,13 @@ private Configuration unbindConf(Configuration conf) {
 
 pragma[nomagic]
 private predicate nodeMayUseSummary0(
-  NodeEx n, ParamNodeEx p, FlowState state, AccessPathApprox apa, Configuration config
+  NodeEx n, DataFlowCallable c, ParameterPosition pos, FlowState state, AccessPathApprox apa,
+  Configuration config
 ) {
   exists(AccessPathApprox apa0 |
-    Stage4::parameterMayFlowThrough(p, _, _) and
+    c = n.getEnclosingCallable() and
     Stage4::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
-    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TParamNodeSome(p.asNode()),
+    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TParameterPositionSome(pos),
       TAccessPathApproxSome(apa), apa0, config)
   )
 }
@@ -2566,9 +2595,10 @@ pragma[nomagic]
 private predicate nodeMayUseSummary(
   NodeEx n, FlowState state, AccessPathApprox apa, Configuration config
 ) {
-  exists(ParamNodeEx p |
+  exists(DataFlowCallable c, ParameterPosition pos, ParamNodeEx p |
     Stage4::parameterMayFlowThrough(p, apa, config) and
-    nodeMayUseSummary0(n, p, state, apa, config)
+    nodeMayUseSummary0(n, c, pos, state, apa, config) and
+    p.isParameterOf(c, pos)
   )
 }
 
@@ -3501,7 +3531,7 @@ private predicate paramFlowsThrough(
     pathNode(mid, ret, state, cc, sc, ap, config, _) and
     kind = ret.getKind() and
     apa = ap.getApprox() and
-    parameterFlowThroughAllowed(sc.getParamNode().asNode(), kind)
+    parameterFlowThroughAllowed(sc.getParamNode(), kind)
   )
 }
 
diff --git a/cpp/ql/lib/experimental/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl2.qll b/cpp/ql/lib/experimental/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl2.qll
index a52ad110662..e4cfd5986be 100644
--- a/cpp/ql/lib/experimental/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl2.qll
+++ b/cpp/ql/lib/experimental/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl2.qll
@@ -613,11 +613,28 @@ private predicate hasSinkCallCtx(Configuration config) {
  * explicitly allowed
  */
 bindingset[p, kind]
-private predicate parameterFlowThroughAllowed(ParamNode p, ReturnKindExt kind) {
+private predicate parameterFlowThroughAllowed(ParamNodeEx p, ReturnKindExt kind) {
   exists(ParameterPosition pos | p.isParameterOf(_, pos) |
     not kind.(ParamUpdateReturnKind).getPosition() = pos
     or
-    allowParameterReturnInSelfCached(p)
+    allowParameterReturnInSelfCached(p.asNode())
+  )
+}
+
+/**
+ * Holds if flow from a parameter at position `pos` inside `c` to a return node of
+ * kind `kind` is allowed.
+ *
+ * We don't expect a parameter to return stored in itself, unless
+ * explicitly allowed
+ */
+bindingset[c, pos, kind]
+private predicate parameterFlowThroughAllowed(
+  DataFlowCallable c, ParameterPosition pos, ReturnKindExt kind
+) {
+  exists(ParamNodeEx p |
+    p.isParameterOf(c, pos) and
+    parameterFlowThroughAllowed(p, kind)
   )
 }
 
@@ -1000,14 +1017,14 @@ private module Stage1 implements StageSig {
       returnFlowCallableNodeCand(c, kind, config) and
       p.getEnclosingCallable() = c and
       exists(ap) and
-      parameterFlowThroughAllowed(p.asNode(), kind)
+      parameterFlowThroughAllowed(p, kind)
     )
   }
 
   pragma[nomagic]
-  predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config) {
+  predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config) {
     throughFlowNodeCand(ret, config) and
-    pos = ret.getReturnPosition()
+    kind = ret.getKind()
   }
 
   pragma[nomagic]
@@ -1066,13 +1083,16 @@ private predicate viableReturnPosOutNodeCand1(
  */
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand1(
-  DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, Configuration config
+  DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, Configuration config
 ) {
-  viableReturnPosOutNodeCand1(call, pos, out, config) and
-  pos = ret.getReturnPosition() and
-  Stage1::revFlow(ret, config) and
-  not outBarrier(ret, config) and
-  not inBarrier(out, config)
+  exists(ReturnPosition pos |
+    viableReturnPosOutNodeCand1(call, pos, out, config) and
+    pos = ret.getReturnPosition() and
+    kind = pos.getKind() and
+    Stage1::revFlow(ret, config) and
+    not outBarrier(ret, config) and
+    not inBarrier(out, config)
+  )
 }
 
 pragma[nomagic]
@@ -1102,6 +1122,7 @@ private predicate flowIntoCallNodeCand1(
  * edge in the graph of paths between sources and sinks that ignores call
  * contexts.
  */
+pragma[nomagic]
 private int branch(NodeEx n1, Configuration conf) {
   result =
     strictcount(NodeEx n |
@@ -1114,6 +1135,7 @@ private int branch(NodeEx n1, Configuration conf) {
  * edge in the graph of paths between sources and sinks that ignores call
  * contexts.
  */
+pragma[nomagic]
 private int join(NodeEx n2, Configuration conf) {
   result =
     strictcount(NodeEx n |
@@ -1130,10 +1152,10 @@ private int join(NodeEx n2, Configuration conf) {
  */
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand1(
-  DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
+  DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
   Configuration config
 ) {
-  flowOutOfCallNodeCand1(call, ret, pos, out, pragma[only_bind_into](config)) and
+  flowOutOfCallNodeCand1(call, ret, kind, out, pragma[only_bind_into](config)) and
   exists(int b, int j |
     b = branch(ret, pragma[only_bind_into](config)) and
     j = join(out, pragma[only_bind_into](config)) and
@@ -1152,10 +1174,10 @@ pragma[nomagic]
 private predicate flowIntoCallNodeCand1(
   DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
 ) {
-  flowIntoCallNodeCand1(call, arg, p, config) and
+  flowIntoCallNodeCand1(call, arg, p, pragma[only_bind_into](config)) and
   exists(int b, int j |
-    b = branch(arg, config) and
-    j = join(p, config) and
+    b = branch(arg, pragma[only_bind_into](config)) and
+    j = join(p, pragma[only_bind_into](config)) and
     if b.minimum(j) <= config.fieldFlowBranchLimit()
     then allowsFieldFlow = true
     else allowsFieldFlow = false
@@ -1174,7 +1196,7 @@ private signature module StageSig {
 
   predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config);
 
-  predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config);
+  predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config);
 
   predicate storeStepCand(
     NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, DataFlowType contentType,
@@ -1240,7 +1262,7 @@ private module MkStage<StageSig PrevStage> {
     );
 
     predicate flowOutOfCall(
-      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
+      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
       Configuration config
     );
 
@@ -1266,16 +1288,14 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate flowThroughOutOfCall(
-      DataFlowCall call, CcCall ccc, RetNodeEx ret, ReturnKindExt kind, NodeEx out,
-      boolean allowsFieldFlow, Configuration config
+      DataFlowCall call, DataFlowCallable c, CcCall ccc, RetNodeEx ret, ReturnKindExt kind,
+      NodeEx out, boolean allowsFieldFlow, Configuration config
     ) {
-      exists(ReturnPosition pos |
-        flowOutOfCall(call, ret, pos, out, allowsFieldFlow, pragma[only_bind_into](config)) and
-        kind = pos.getKind() and
-        PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
-        PrevStage::returnMayFlowThrough(ret, pos, pragma[only_bind_into](config)) and
-        matchesCall(ccc, call)
-      )
+      flowOutOfCall(call, ret, kind, out, allowsFieldFlow, pragma[only_bind_into](config)) and
+      PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
+      PrevStage::returnMayFlowThrough(ret, kind, pragma[only_bind_into](config)) and
+      matchesCall(ccc, call) and
+      c = ret.getEnclosingCallable()
     }
 
     /**
@@ -1284,12 +1304,12 @@ private module MkStage<StageSig PrevStage> {
      *
      * The call context `cc` records whether the node is reached through an
      * argument in a call, and if so, `summaryCtx` and `argAp` record the
-     * corresponding parameter and access path of that argument, respectively.
+     * corresponding parameter position and access path of that argument, respectively.
      */
     pragma[nomagic]
     additional predicate fwdFlow(
-      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
-      Configuration config
+      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      Ap ap, Configuration config
     ) {
       fwdFlow0(node, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::revFlow(node, state, unbindApa(getApprox(ap)), config) and
@@ -1298,13 +1318,13 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlow0(
-      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
-      Configuration config
+      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      Ap ap, Configuration config
     ) {
       sourceNode(node, state, config) and
       (if hasSourceCallCtx(config) then cc = ccSomeCall() else cc = ccNone()) and
       argAp = apNone() and
-      summaryCtx = TParamNodeNone() and
+      summaryCtx = TParameterPositionNone() and
       ap = getApNil(node)
       or
       exists(NodeEx mid, FlowState state0, Ap ap0, LocalCc localCc |
@@ -1322,7 +1342,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, pragma[only_bind_into](config)) and
         jumpStep(mid, node, config) and
         cc = ccNone() and
-        summaryCtx = TParamNodeNone() and
+        summaryCtx = TParameterPositionNone() and
         argAp = apNone()
       )
       or
@@ -1330,7 +1350,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, state, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStep(mid, node, config) and
         cc = ccNone() and
-        summaryCtx = TParamNodeNone() and
+        summaryCtx = TParameterPositionNone() and
         argAp = apNone() and
         ap = getApNil(node)
       )
@@ -1339,7 +1359,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, state0, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStateStep(mid, state0, node, state, config) and
         cc = ccNone() and
-        summaryCtx = TParamNodeNone() and
+        summaryCtx = TParameterPositionNone() and
         argAp = apNone() and
         ap = getApNil(node)
       )
@@ -1362,17 +1382,27 @@ private module MkStage<StageSig PrevStage> {
         apa = getApprox(ap) and
         if PrevStage::parameterMayFlowThrough(node, apa, config)
         then (
-          summaryCtx = TParamNodeSome(node.asNode()) and argAp = apSome(ap)
+          summaryCtx = TParameterPositionSome(node.(ParamNodeEx).getPosition()) and
+          argAp = apSome(ap)
         ) else (
-          summaryCtx = TParamNodeNone() and argAp = apNone()
+          summaryCtx = TParameterPositionNone() and argAp = apNone()
         )
       )
       or
       // flow out of a callable
-      fwdFlowOutNotFromArg(node, state, cc, summaryCtx, argAp, ap, config)
+      exists(
+        DataFlowCall call, RetNodeEx ret, boolean allowsFieldFlow, CcNoCall innercc,
+        DataFlowCallable inner
+      |
+        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, config) and
+        flowOutOfCall(call, ret, _, node, allowsFieldFlow, config) and
+        inner = ret.getEnclosingCallable() and
+        cc = getCallContextReturn(inner, call, innercc) and
+        if allowsFieldFlow = false then ap instanceof ApNil else any()
+      )
       or
       // flow through a callable
-      exists(DataFlowCall call, ParamNode summaryCtx0, Ap argAp0 |
+      exists(DataFlowCall call, ParameterPosition summaryCtx0, Ap argAp0 |
         fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, config) and
         fwdFlowIsEntered(call, cc, summaryCtx, argAp, summaryCtx0, argAp0, config)
       )
@@ -1381,7 +1411,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowStore(
       NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc,
-      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
+      ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
     ) {
       exists(DataFlowType contentType |
         fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, config) and
@@ -1406,7 +1436,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowRead(
       Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc,
-      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
+      ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
     ) {
       fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, c, node2, config) and
@@ -1416,7 +1446,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowIn(
       DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, Cc innercc,
-      ParamNodeOption summaryCtx, ApOption argAp, Ap ap, Configuration config
+      ParameterPositionOption summaryCtx, ApOption argAp, Ap ap, Configuration config
     ) {
       exists(ArgNodeEx arg, boolean allowsFieldFlow |
         fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, config) and
@@ -1427,32 +1457,19 @@ private module MkStage<StageSig PrevStage> {
     }
 
     pragma[nomagic]
-    private predicate fwdFlowOutNotFromArg(
-      NodeEx out, FlowState state, Cc ccOut, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+    private predicate fwdFlowOutFromArg(
+      DataFlowCall call, NodeEx out, FlowState state, ParameterPosition summaryCtx, Ap argAp, Ap ap,
       Configuration config
     ) {
       exists(
-        DataFlowCall call, RetNodeEx ret, boolean allowsFieldFlow, CcNoCall innercc,
-        DataFlowCallable inner
+        DataFlowCallable c, RetNodeEx ret, ReturnKindExt kind, boolean allowsFieldFlow, CcCall ccc
       |
-        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, config) and
-        flowOutOfCall(call, ret, _, out, allowsFieldFlow, config) and
-        inner = ret.getEnclosingCallable() and
-        ccOut = getCallContextReturn(inner, call, innercc) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
-      )
-    }
-
-    pragma[nomagic]
-    private predicate fwdFlowOutFromArg(
-      DataFlowCall call, NodeEx out, FlowState state, ParamNode summaryCtx, Ap argAp, Ap ap,
-      Configuration config
-    ) {
-      exists(RetNodeEx ret, ReturnKindExt kind, boolean allowsFieldFlow, CcCall ccc |
-        fwdFlow(ret, state, ccc, TParamNodeSome(summaryCtx), apSome(argAp), ap, config) and
-        flowThroughOutOfCall(call, ccc, ret, kind, out, allowsFieldFlow, config) and
+        fwdFlow(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc),
+          TParameterPositionSome(pragma[only_bind_into](summaryCtx)), apSome(argAp), ap, config) and
+        flowThroughOutOfCall(call, pragma[only_bind_into](c), ccc, ret, kind, out, allowsFieldFlow,
+          config) and
         (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
-        parameterFlowThroughAllowed(summaryCtx, kind)
+        parameterFlowThroughAllowed(c, pragma[only_bind_into](summaryCtx), kind)
       )
     }
 
@@ -1462,13 +1479,13 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate fwdFlowIsEntered(
-      DataFlowCall call, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, ParamNode p, Ap ap,
-      Configuration config
+      DataFlowCall call, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      ParameterPosition pos, Ap ap, Configuration config
     ) {
       exists(ParamNodeEx param |
         fwdFlowIn(call, param, _, cc, _, summaryCtx, argAp, ap, config) and
         PrevStage::parameterMayFlowThrough(param, unbindApa(getApprox(ap)), config) and
-        p = param.asNode()
+        pos = param.getPosition()
       )
     }
 
@@ -1489,23 +1506,41 @@ private module MkStage<StageSig PrevStage> {
     }
 
     pragma[nomagic]
-    private predicate returnFlowsThrough(
-      RetNodeEx ret, ReturnPosition pos, FlowState state, CcCall ccc, ParamNode p, Ap argAp, Ap ap,
-      Configuration config
+    private predicate returnFlowsThrough0(
+      RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, DataFlowCallable c,
+      ParameterPosition ppos, Ap argAp, Ap ap, Configuration config
     ) {
-      fwdFlow(ret, state, ccc, TParamNodeSome(p), apSome(argAp), ap, config) and
-      pos = ret.getReturnPosition() and
-      parameterFlowThroughAllowed(p, pos.getKind())
+      exists(boolean allowsFieldFlow |
+        fwdFlow(ret, state, ccc, TParameterPositionSome(ppos), apSome(argAp), ap, config) and
+        flowThroughOutOfCall(_, c, _, pragma[only_bind_into](ret), kind, _, allowsFieldFlow,
+          pragma[only_bind_into](config)) and
+        if allowsFieldFlow = false then ap instanceof ApNil else any()
+      )
+    }
+
+    pragma[nomagic]
+    private predicate returnFlowsThrough(
+      RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, ParamNodeEx p, Ap argAp,
+      Ap ap, Configuration config
+    ) {
+      exists(DataFlowCallable c, ParameterPosition ppos |
+        returnFlowsThrough0(ret, kind, state, ccc, c, ppos, argAp, ap, config) and
+        p.isParameterOf(c, ppos) and
+        parameterFlowThroughAllowed(p, kind)
+      )
     }
 
     pragma[nomagic]
     private predicate flowThroughIntoCall(
       DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
     ) {
-      flowIntoCall(call, pragma[only_bind_into](arg), pragma[only_bind_into](p), allowsFieldFlow,
-        pragma[only_bind_into](config)) and
-      fwdFlow(arg, _, _, _, _, _, pragma[only_bind_into](config)) and
-      returnFlowsThrough(_, _, _, _, p.asNode(), _, _, pragma[only_bind_into](config))
+      exists(Ap argAp |
+        flowIntoCall(call, pragma[only_bind_into](arg), pragma[only_bind_into](p), allowsFieldFlow,
+          pragma[only_bind_into](config)) and
+        fwdFlow(arg, _, _, _, _, pragma[only_bind_into](argAp), pragma[only_bind_into](config)) and
+        returnFlowsThrough(_, _, _, _, p, pragma[only_bind_into](argAp), _,
+          pragma[only_bind_into](config))
+      )
     }
 
     /**
@@ -1591,21 +1626,25 @@ private module MkStage<StageSig PrevStage> {
       )
       or
       // flow into a callable
-      revFlowInNotToReturn(node, state, returnAp, ap, config) and
-      returnCtx = TReturnCtxNone()
+      exists(ParamNodeEx p, boolean allowsFieldFlow |
+        revFlow(p, state, TReturnCtxNone(), returnAp, ap, config) and
+        flowIntoCall(_, node, p, allowsFieldFlow, config) and
+        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
+        returnCtx = TReturnCtxNone()
+      )
       or
       // flow through a callable
-      exists(DataFlowCall call, ReturnPosition returnPos0, Ap returnAp0 |
-        revFlowInToReturn(call, node, state, returnPos0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnPos0, returnAp0, config)
+      exists(DataFlowCall call, ReturnKindExt returnKind0, Ap returnAp0 |
+        revFlowInToReturn(call, node, state, returnKind0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
       )
       or
       // flow out of a callable
-      exists(ReturnPosition pos |
-        revFlowOut(_, node, pos, state, _, _, ap, config) and
-        if returnFlowsThrough(node, pos, state, _, _, _, ap, config)
+      exists(ReturnKindExt kind |
+        revFlowOut(_, node, kind, state, _, _, ap, config) and
+        if returnFlowsThrough(node, kind, state, _, _, _, ap, config)
         then (
-          returnCtx = TReturnCtxMaybeFlowThrough(pos) and
+          returnCtx = TReturnCtxMaybeFlowThrough(kind) and
           returnAp = apSome(ap)
         ) else (
           returnCtx = TReturnCtxNoFlowThrough() and returnAp = apNone()
@@ -1638,37 +1677,27 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate revFlowOut(
-      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, FlowState state, ReturnCtx returnCtx,
+      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, FlowState state, ReturnCtx returnCtx,
       ApOption returnAp, Ap ap, Configuration config
     ) {
       exists(NodeEx out, boolean allowsFieldFlow |
         revFlow(out, state, returnCtx, returnAp, ap, config) and
-        flowOutOfCall(call, ret, pos, out, allowsFieldFlow, config) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
-      )
-    }
-
-    pragma[nomagic]
-    private predicate revFlowInNotToReturn(
-      ArgNodeEx arg, FlowState state, ApOption returnAp, Ap ap, Configuration config
-    ) {
-      exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(p, state, TReturnCtxNone(), returnAp, ap, config) and
-        flowIntoCall(_, arg, p, allowsFieldFlow, config) and
+        flowOutOfCall(call, ret, kind, out, allowsFieldFlow, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
     pragma[nomagic]
     private predicate revFlowInToReturn(
-      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnPosition returnPos, Ap returnAp,
-      Ap ap, Configuration config
+      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap,
+      Configuration config
     ) {
       exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(p, state, TReturnCtxMaybeFlowThrough(returnPos), apSome(returnAp), ap, config) and
+        revFlow(pragma[only_bind_into](p), state,
+          TReturnCtxMaybeFlowThrough(pragma[only_bind_into](kind)), apSome(returnAp), ap, config) and
         flowThroughIntoCall(call, arg, p, allowsFieldFlow, config) and
         (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
-        parameterFlowThroughAllowed(p.asNode(), returnPos.getKind())
+        parameterFlowThroughAllowed(p, kind)
       )
     }
 
@@ -1679,12 +1708,12 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate revFlowIsReturned(
-      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnPosition pos, Ap ap,
+      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnKindExt kind, Ap ap,
       Configuration config
     ) {
       exists(RetNodeEx ret, FlowState state, CcCall ccc |
-        revFlowOut(call, ret, pos, state, returnCtx, returnAp, ap, config) and
-        returnFlowsThrough(ret, pos, state, ccc, _, _, ap, config) and
+        revFlowOut(call, ret, kind, state, returnCtx, returnAp, ap, config) and
+        returnFlowsThrough(ret, kind, state, ccc, _, _, ap, config) and
         matchesCall(ccc, call)
       )
     }
@@ -1757,37 +1786,37 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate parameterFlowsThroughRev(
-      ParamNodeEx p, Ap ap, ReturnPosition returnPos, Configuration config
+      ParamNodeEx p, Ap ap, ReturnKindExt kind, Configuration config
     ) {
-      revFlow(p, _, TReturnCtxMaybeFlowThrough(returnPos), apSome(_), ap, config) and
-      parameterFlowThroughAllowed(p.asNode(), returnPos.getKind())
+      revFlow(p, _, TReturnCtxMaybeFlowThrough(kind), apSome(_), ap, config) and
+      parameterFlowThroughAllowed(p, kind)
     }
 
     pragma[nomagic]
     predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
-      exists(RetNodeEx ret, ReturnPosition pos |
-        returnFlowsThrough(ret, pos, _, _, p.asNode(), ap, _, config) and
-        parameterFlowsThroughRev(p, ap, pos, config)
+      exists(RetNodeEx ret, ReturnKindExt kind |
+        returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
+        parameterFlowsThroughRev(p, ap, kind, config)
       )
     }
 
     pragma[nomagic]
-    predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config) {
+    predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config) {
       exists(ParamNodeEx p, Ap ap |
-        returnFlowsThrough(ret, pos, _, _, p.asNode(), ap, _, config) and
-        parameterFlowsThroughRev(p, ap, pos, config)
+        returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
+        parameterFlowsThroughRev(p, ap, kind, config)
       )
     }
 
     pragma[nomagic]
     predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
       exists(
-        ReturnPosition returnPos0, Ap returnAp0, ArgNodeEx arg, FlowState state,
+        ReturnKindExt returnKind0, Ap returnAp0, ArgNodeEx arg, FlowState state,
         ReturnCtx returnCtx, ApOption returnAp, Ap ap
       |
         revFlow(arg, state, returnCtx, returnAp, ap, config) and
-        revFlowInToReturn(call, arg, state, returnPos0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnPos0, returnAp0, config)
+        revFlowInToReturn(call, arg, state, returnKind0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
       )
     }
 
@@ -1800,9 +1829,8 @@ private module MkStage<StageSig PrevStage> {
       conscand = count(TypedContent f0, Ap ap | fwdConsCand(f0, ap, config)) and
       states = count(FlowState state | fwdFlow(_, state, _, _, _, _, config)) and
       tuples =
-        count(NodeEx n, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap |
-          fwdFlow(n, state, cc, summaryCtx, argAp, ap, config)
-        )
+        count(NodeEx n, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+          Ap ap | fwdFlow(n, state, cc, summaryCtx, argAp, ap, config))
       or
       fwd = false and
       nodes = count(NodeEx node | revFlow(node, _, _, _, _, config)) and
@@ -1992,10 +2020,10 @@ private module Stage2 implements StageSig {
 
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand2(
-  DataFlowCall call, RetNodeEx node1, ReturnPosition pos, NodeEx node2, boolean allowsFieldFlow,
+  DataFlowCall call, RetNodeEx node1, ReturnKindExt kind, NodeEx node2, boolean allowsFieldFlow,
   Configuration config
 ) {
-  flowOutOfCallNodeCand1(call, node1, pos, node2, allowsFieldFlow, config) and
+  flowOutOfCallNodeCand1(call, node1, kind, node2, allowsFieldFlow, config) and
   Stage2::revFlow(node2, pragma[only_bind_into](config)) and
   Stage2::revFlowAlias(node1, pragma[only_bind_into](config))
 }
@@ -2511,11 +2539,11 @@ private module Stage4Param implements MkStage<Stage3>::StageParam {
 
   pragma[nomagic]
   predicate flowOutOfCall(
-    DataFlowCall call, RetNodeEx node1, ReturnPosition pos, NodeEx node2, boolean allowsFieldFlow,
+    DataFlowCall call, RetNodeEx node1, ReturnKindExt kind, NodeEx node2, boolean allowsFieldFlow,
     Configuration config
   ) {
     exists(FlowState state |
-      flowOutOfCallNodeCand2(call, node1, pos, node2, allowsFieldFlow, config) and
+      flowOutOfCallNodeCand2(call, node1, kind, node2, allowsFieldFlow, config) and
       PrevStage::revFlow(node2, pragma[only_bind_into](state), _, pragma[only_bind_into](config)) and
       PrevStage::revFlowAlias(node1, pragma[only_bind_into](state), _,
         pragma[only_bind_into](config))
@@ -2552,12 +2580,13 @@ private Configuration unbindConf(Configuration conf) {
 
 pragma[nomagic]
 private predicate nodeMayUseSummary0(
-  NodeEx n, ParamNodeEx p, FlowState state, AccessPathApprox apa, Configuration config
+  NodeEx n, DataFlowCallable c, ParameterPosition pos, FlowState state, AccessPathApprox apa,
+  Configuration config
 ) {
   exists(AccessPathApprox apa0 |
-    Stage4::parameterMayFlowThrough(p, _, _) and
+    c = n.getEnclosingCallable() and
     Stage4::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
-    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TParamNodeSome(p.asNode()),
+    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TParameterPositionSome(pos),
       TAccessPathApproxSome(apa), apa0, config)
   )
 }
@@ -2566,9 +2595,10 @@ pragma[nomagic]
 private predicate nodeMayUseSummary(
   NodeEx n, FlowState state, AccessPathApprox apa, Configuration config
 ) {
-  exists(ParamNodeEx p |
+  exists(DataFlowCallable c, ParameterPosition pos, ParamNodeEx p |
     Stage4::parameterMayFlowThrough(p, apa, config) and
-    nodeMayUseSummary0(n, p, state, apa, config)
+    nodeMayUseSummary0(n, c, pos, state, apa, config) and
+    p.isParameterOf(c, pos)
   )
 }
 
@@ -3501,7 +3531,7 @@ private predicate paramFlowsThrough(
     pathNode(mid, ret, state, cc, sc, ap, config, _) and
     kind = ret.getKind() and
     apa = ap.getApprox() and
-    parameterFlowThroughAllowed(sc.getParamNode().asNode(), kind)
+    parameterFlowThroughAllowed(sc.getParamNode(), kind)
   )
 }
 
diff --git a/cpp/ql/lib/experimental/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl3.qll b/cpp/ql/lib/experimental/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl3.qll
index a52ad110662..e4cfd5986be 100644
--- a/cpp/ql/lib/experimental/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl3.qll
+++ b/cpp/ql/lib/experimental/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl3.qll
@@ -613,11 +613,28 @@ private predicate hasSinkCallCtx(Configuration config) {
  * explicitly allowed
  */
 bindingset[p, kind]
-private predicate parameterFlowThroughAllowed(ParamNode p, ReturnKindExt kind) {
+private predicate parameterFlowThroughAllowed(ParamNodeEx p, ReturnKindExt kind) {
   exists(ParameterPosition pos | p.isParameterOf(_, pos) |
     not kind.(ParamUpdateReturnKind).getPosition() = pos
     or
-    allowParameterReturnInSelfCached(p)
+    allowParameterReturnInSelfCached(p.asNode())
+  )
+}
+
+/**
+ * Holds if flow from a parameter at position `pos` inside `c` to a return node of
+ * kind `kind` is allowed.
+ *
+ * We don't expect a parameter to return stored in itself, unless
+ * explicitly allowed
+ */
+bindingset[c, pos, kind]
+private predicate parameterFlowThroughAllowed(
+  DataFlowCallable c, ParameterPosition pos, ReturnKindExt kind
+) {
+  exists(ParamNodeEx p |
+    p.isParameterOf(c, pos) and
+    parameterFlowThroughAllowed(p, kind)
   )
 }
 
@@ -1000,14 +1017,14 @@ private module Stage1 implements StageSig {
       returnFlowCallableNodeCand(c, kind, config) and
       p.getEnclosingCallable() = c and
       exists(ap) and
-      parameterFlowThroughAllowed(p.asNode(), kind)
+      parameterFlowThroughAllowed(p, kind)
     )
   }
 
   pragma[nomagic]
-  predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config) {
+  predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config) {
     throughFlowNodeCand(ret, config) and
-    pos = ret.getReturnPosition()
+    kind = ret.getKind()
   }
 
   pragma[nomagic]
@@ -1066,13 +1083,16 @@ private predicate viableReturnPosOutNodeCand1(
  */
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand1(
-  DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, Configuration config
+  DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, Configuration config
 ) {
-  viableReturnPosOutNodeCand1(call, pos, out, config) and
-  pos = ret.getReturnPosition() and
-  Stage1::revFlow(ret, config) and
-  not outBarrier(ret, config) and
-  not inBarrier(out, config)
+  exists(ReturnPosition pos |
+    viableReturnPosOutNodeCand1(call, pos, out, config) and
+    pos = ret.getReturnPosition() and
+    kind = pos.getKind() and
+    Stage1::revFlow(ret, config) and
+    not outBarrier(ret, config) and
+    not inBarrier(out, config)
+  )
 }
 
 pragma[nomagic]
@@ -1102,6 +1122,7 @@ private predicate flowIntoCallNodeCand1(
  * edge in the graph of paths between sources and sinks that ignores call
  * contexts.
  */
+pragma[nomagic]
 private int branch(NodeEx n1, Configuration conf) {
   result =
     strictcount(NodeEx n |
@@ -1114,6 +1135,7 @@ private int branch(NodeEx n1, Configuration conf) {
  * edge in the graph of paths between sources and sinks that ignores call
  * contexts.
  */
+pragma[nomagic]
 private int join(NodeEx n2, Configuration conf) {
   result =
     strictcount(NodeEx n |
@@ -1130,10 +1152,10 @@ private int join(NodeEx n2, Configuration conf) {
  */
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand1(
-  DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
+  DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
   Configuration config
 ) {
-  flowOutOfCallNodeCand1(call, ret, pos, out, pragma[only_bind_into](config)) and
+  flowOutOfCallNodeCand1(call, ret, kind, out, pragma[only_bind_into](config)) and
   exists(int b, int j |
     b = branch(ret, pragma[only_bind_into](config)) and
     j = join(out, pragma[only_bind_into](config)) and
@@ -1152,10 +1174,10 @@ pragma[nomagic]
 private predicate flowIntoCallNodeCand1(
   DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
 ) {
-  flowIntoCallNodeCand1(call, arg, p, config) and
+  flowIntoCallNodeCand1(call, arg, p, pragma[only_bind_into](config)) and
   exists(int b, int j |
-    b = branch(arg, config) and
-    j = join(p, config) and
+    b = branch(arg, pragma[only_bind_into](config)) and
+    j = join(p, pragma[only_bind_into](config)) and
     if b.minimum(j) <= config.fieldFlowBranchLimit()
     then allowsFieldFlow = true
     else allowsFieldFlow = false
@@ -1174,7 +1196,7 @@ private signature module StageSig {
 
   predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config);
 
-  predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config);
+  predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config);
 
   predicate storeStepCand(
     NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, DataFlowType contentType,
@@ -1240,7 +1262,7 @@ private module MkStage<StageSig PrevStage> {
     );
 
     predicate flowOutOfCall(
-      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
+      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
       Configuration config
     );
 
@@ -1266,16 +1288,14 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate flowThroughOutOfCall(
-      DataFlowCall call, CcCall ccc, RetNodeEx ret, ReturnKindExt kind, NodeEx out,
-      boolean allowsFieldFlow, Configuration config
+      DataFlowCall call, DataFlowCallable c, CcCall ccc, RetNodeEx ret, ReturnKindExt kind,
+      NodeEx out, boolean allowsFieldFlow, Configuration config
     ) {
-      exists(ReturnPosition pos |
-        flowOutOfCall(call, ret, pos, out, allowsFieldFlow, pragma[only_bind_into](config)) and
-        kind = pos.getKind() and
-        PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
-        PrevStage::returnMayFlowThrough(ret, pos, pragma[only_bind_into](config)) and
-        matchesCall(ccc, call)
-      )
+      flowOutOfCall(call, ret, kind, out, allowsFieldFlow, pragma[only_bind_into](config)) and
+      PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
+      PrevStage::returnMayFlowThrough(ret, kind, pragma[only_bind_into](config)) and
+      matchesCall(ccc, call) and
+      c = ret.getEnclosingCallable()
     }
 
     /**
@@ -1284,12 +1304,12 @@ private module MkStage<StageSig PrevStage> {
      *
      * The call context `cc` records whether the node is reached through an
      * argument in a call, and if so, `summaryCtx` and `argAp` record the
-     * corresponding parameter and access path of that argument, respectively.
+     * corresponding parameter position and access path of that argument, respectively.
      */
     pragma[nomagic]
     additional predicate fwdFlow(
-      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
-      Configuration config
+      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      Ap ap, Configuration config
     ) {
       fwdFlow0(node, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::revFlow(node, state, unbindApa(getApprox(ap)), config) and
@@ -1298,13 +1318,13 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlow0(
-      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
-      Configuration config
+      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      Ap ap, Configuration config
     ) {
       sourceNode(node, state, config) and
       (if hasSourceCallCtx(config) then cc = ccSomeCall() else cc = ccNone()) and
       argAp = apNone() and
-      summaryCtx = TParamNodeNone() and
+      summaryCtx = TParameterPositionNone() and
       ap = getApNil(node)
       or
       exists(NodeEx mid, FlowState state0, Ap ap0, LocalCc localCc |
@@ -1322,7 +1342,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, pragma[only_bind_into](config)) and
         jumpStep(mid, node, config) and
         cc = ccNone() and
-        summaryCtx = TParamNodeNone() and
+        summaryCtx = TParameterPositionNone() and
         argAp = apNone()
       )
       or
@@ -1330,7 +1350,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, state, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStep(mid, node, config) and
         cc = ccNone() and
-        summaryCtx = TParamNodeNone() and
+        summaryCtx = TParameterPositionNone() and
         argAp = apNone() and
         ap = getApNil(node)
       )
@@ -1339,7 +1359,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, state0, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStateStep(mid, state0, node, state, config) and
         cc = ccNone() and
-        summaryCtx = TParamNodeNone() and
+        summaryCtx = TParameterPositionNone() and
         argAp = apNone() and
         ap = getApNil(node)
       )
@@ -1362,17 +1382,27 @@ private module MkStage<StageSig PrevStage> {
         apa = getApprox(ap) and
         if PrevStage::parameterMayFlowThrough(node, apa, config)
         then (
-          summaryCtx = TParamNodeSome(node.asNode()) and argAp = apSome(ap)
+          summaryCtx = TParameterPositionSome(node.(ParamNodeEx).getPosition()) and
+          argAp = apSome(ap)
         ) else (
-          summaryCtx = TParamNodeNone() and argAp = apNone()
+          summaryCtx = TParameterPositionNone() and argAp = apNone()
         )
       )
       or
       // flow out of a callable
-      fwdFlowOutNotFromArg(node, state, cc, summaryCtx, argAp, ap, config)
+      exists(
+        DataFlowCall call, RetNodeEx ret, boolean allowsFieldFlow, CcNoCall innercc,
+        DataFlowCallable inner
+      |
+        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, config) and
+        flowOutOfCall(call, ret, _, node, allowsFieldFlow, config) and
+        inner = ret.getEnclosingCallable() and
+        cc = getCallContextReturn(inner, call, innercc) and
+        if allowsFieldFlow = false then ap instanceof ApNil else any()
+      )
       or
       // flow through a callable
-      exists(DataFlowCall call, ParamNode summaryCtx0, Ap argAp0 |
+      exists(DataFlowCall call, ParameterPosition summaryCtx0, Ap argAp0 |
         fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, config) and
         fwdFlowIsEntered(call, cc, summaryCtx, argAp, summaryCtx0, argAp0, config)
       )
@@ -1381,7 +1411,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowStore(
       NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc,
-      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
+      ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
     ) {
       exists(DataFlowType contentType |
         fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, config) and
@@ -1406,7 +1436,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowRead(
       Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc,
-      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
+      ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
     ) {
       fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, c, node2, config) and
@@ -1416,7 +1446,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowIn(
       DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, Cc innercc,
-      ParamNodeOption summaryCtx, ApOption argAp, Ap ap, Configuration config
+      ParameterPositionOption summaryCtx, ApOption argAp, Ap ap, Configuration config
     ) {
       exists(ArgNodeEx arg, boolean allowsFieldFlow |
         fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, config) and
@@ -1427,32 +1457,19 @@ private module MkStage<StageSig PrevStage> {
     }
 
     pragma[nomagic]
-    private predicate fwdFlowOutNotFromArg(
-      NodeEx out, FlowState state, Cc ccOut, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+    private predicate fwdFlowOutFromArg(
+      DataFlowCall call, NodeEx out, FlowState state, ParameterPosition summaryCtx, Ap argAp, Ap ap,
       Configuration config
     ) {
       exists(
-        DataFlowCall call, RetNodeEx ret, boolean allowsFieldFlow, CcNoCall innercc,
-        DataFlowCallable inner
+        DataFlowCallable c, RetNodeEx ret, ReturnKindExt kind, boolean allowsFieldFlow, CcCall ccc
       |
-        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, config) and
-        flowOutOfCall(call, ret, _, out, allowsFieldFlow, config) and
-        inner = ret.getEnclosingCallable() and
-        ccOut = getCallContextReturn(inner, call, innercc) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
-      )
-    }
-
-    pragma[nomagic]
-    private predicate fwdFlowOutFromArg(
-      DataFlowCall call, NodeEx out, FlowState state, ParamNode summaryCtx, Ap argAp, Ap ap,
-      Configuration config
-    ) {
-      exists(RetNodeEx ret, ReturnKindExt kind, boolean allowsFieldFlow, CcCall ccc |
-        fwdFlow(ret, state, ccc, TParamNodeSome(summaryCtx), apSome(argAp), ap, config) and
-        flowThroughOutOfCall(call, ccc, ret, kind, out, allowsFieldFlow, config) and
+        fwdFlow(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc),
+          TParameterPositionSome(pragma[only_bind_into](summaryCtx)), apSome(argAp), ap, config) and
+        flowThroughOutOfCall(call, pragma[only_bind_into](c), ccc, ret, kind, out, allowsFieldFlow,
+          config) and
         (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
-        parameterFlowThroughAllowed(summaryCtx, kind)
+        parameterFlowThroughAllowed(c, pragma[only_bind_into](summaryCtx), kind)
       )
     }
 
@@ -1462,13 +1479,13 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate fwdFlowIsEntered(
-      DataFlowCall call, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, ParamNode p, Ap ap,
-      Configuration config
+      DataFlowCall call, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      ParameterPosition pos, Ap ap, Configuration config
     ) {
       exists(ParamNodeEx param |
         fwdFlowIn(call, param, _, cc, _, summaryCtx, argAp, ap, config) and
         PrevStage::parameterMayFlowThrough(param, unbindApa(getApprox(ap)), config) and
-        p = param.asNode()
+        pos = param.getPosition()
       )
     }
 
@@ -1489,23 +1506,41 @@ private module MkStage<StageSig PrevStage> {
     }
 
     pragma[nomagic]
-    private predicate returnFlowsThrough(
-      RetNodeEx ret, ReturnPosition pos, FlowState state, CcCall ccc, ParamNode p, Ap argAp, Ap ap,
-      Configuration config
+    private predicate returnFlowsThrough0(
+      RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, DataFlowCallable c,
+      ParameterPosition ppos, Ap argAp, Ap ap, Configuration config
     ) {
-      fwdFlow(ret, state, ccc, TParamNodeSome(p), apSome(argAp), ap, config) and
-      pos = ret.getReturnPosition() and
-      parameterFlowThroughAllowed(p, pos.getKind())
+      exists(boolean allowsFieldFlow |
+        fwdFlow(ret, state, ccc, TParameterPositionSome(ppos), apSome(argAp), ap, config) and
+        flowThroughOutOfCall(_, c, _, pragma[only_bind_into](ret), kind, _, allowsFieldFlow,
+          pragma[only_bind_into](config)) and
+        if allowsFieldFlow = false then ap instanceof ApNil else any()
+      )
+    }
+
+    pragma[nomagic]
+    private predicate returnFlowsThrough(
+      RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, ParamNodeEx p, Ap argAp,
+      Ap ap, Configuration config
+    ) {
+      exists(DataFlowCallable c, ParameterPosition ppos |
+        returnFlowsThrough0(ret, kind, state, ccc, c, ppos, argAp, ap, config) and
+        p.isParameterOf(c, ppos) and
+        parameterFlowThroughAllowed(p, kind)
+      )
     }
 
     pragma[nomagic]
     private predicate flowThroughIntoCall(
       DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
     ) {
-      flowIntoCall(call, pragma[only_bind_into](arg), pragma[only_bind_into](p), allowsFieldFlow,
-        pragma[only_bind_into](config)) and
-      fwdFlow(arg, _, _, _, _, _, pragma[only_bind_into](config)) and
-      returnFlowsThrough(_, _, _, _, p.asNode(), _, _, pragma[only_bind_into](config))
+      exists(Ap argAp |
+        flowIntoCall(call, pragma[only_bind_into](arg), pragma[only_bind_into](p), allowsFieldFlow,
+          pragma[only_bind_into](config)) and
+        fwdFlow(arg, _, _, _, _, pragma[only_bind_into](argAp), pragma[only_bind_into](config)) and
+        returnFlowsThrough(_, _, _, _, p, pragma[only_bind_into](argAp), _,
+          pragma[only_bind_into](config))
+      )
     }
 
     /**
@@ -1591,21 +1626,25 @@ private module MkStage<StageSig PrevStage> {
       )
       or
       // flow into a callable
-      revFlowInNotToReturn(node, state, returnAp, ap, config) and
-      returnCtx = TReturnCtxNone()
+      exists(ParamNodeEx p, boolean allowsFieldFlow |
+        revFlow(p, state, TReturnCtxNone(), returnAp, ap, config) and
+        flowIntoCall(_, node, p, allowsFieldFlow, config) and
+        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
+        returnCtx = TReturnCtxNone()
+      )
       or
       // flow through a callable
-      exists(DataFlowCall call, ReturnPosition returnPos0, Ap returnAp0 |
-        revFlowInToReturn(call, node, state, returnPos0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnPos0, returnAp0, config)
+      exists(DataFlowCall call, ReturnKindExt returnKind0, Ap returnAp0 |
+        revFlowInToReturn(call, node, state, returnKind0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
       )
       or
       // flow out of a callable
-      exists(ReturnPosition pos |
-        revFlowOut(_, node, pos, state, _, _, ap, config) and
-        if returnFlowsThrough(node, pos, state, _, _, _, ap, config)
+      exists(ReturnKindExt kind |
+        revFlowOut(_, node, kind, state, _, _, ap, config) and
+        if returnFlowsThrough(node, kind, state, _, _, _, ap, config)
         then (
-          returnCtx = TReturnCtxMaybeFlowThrough(pos) and
+          returnCtx = TReturnCtxMaybeFlowThrough(kind) and
           returnAp = apSome(ap)
         ) else (
           returnCtx = TReturnCtxNoFlowThrough() and returnAp = apNone()
@@ -1638,37 +1677,27 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate revFlowOut(
-      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, FlowState state, ReturnCtx returnCtx,
+      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, FlowState state, ReturnCtx returnCtx,
       ApOption returnAp, Ap ap, Configuration config
     ) {
       exists(NodeEx out, boolean allowsFieldFlow |
         revFlow(out, state, returnCtx, returnAp, ap, config) and
-        flowOutOfCall(call, ret, pos, out, allowsFieldFlow, config) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
-      )
-    }
-
-    pragma[nomagic]
-    private predicate revFlowInNotToReturn(
-      ArgNodeEx arg, FlowState state, ApOption returnAp, Ap ap, Configuration config
-    ) {
-      exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(p, state, TReturnCtxNone(), returnAp, ap, config) and
-        flowIntoCall(_, arg, p, allowsFieldFlow, config) and
+        flowOutOfCall(call, ret, kind, out, allowsFieldFlow, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
     pragma[nomagic]
     private predicate revFlowInToReturn(
-      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnPosition returnPos, Ap returnAp,
-      Ap ap, Configuration config
+      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap,
+      Configuration config
     ) {
       exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(p, state, TReturnCtxMaybeFlowThrough(returnPos), apSome(returnAp), ap, config) and
+        revFlow(pragma[only_bind_into](p), state,
+          TReturnCtxMaybeFlowThrough(pragma[only_bind_into](kind)), apSome(returnAp), ap, config) and
         flowThroughIntoCall(call, arg, p, allowsFieldFlow, config) and
         (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
-        parameterFlowThroughAllowed(p.asNode(), returnPos.getKind())
+        parameterFlowThroughAllowed(p, kind)
       )
     }
 
@@ -1679,12 +1708,12 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate revFlowIsReturned(
-      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnPosition pos, Ap ap,
+      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnKindExt kind, Ap ap,
       Configuration config
     ) {
       exists(RetNodeEx ret, FlowState state, CcCall ccc |
-        revFlowOut(call, ret, pos, state, returnCtx, returnAp, ap, config) and
-        returnFlowsThrough(ret, pos, state, ccc, _, _, ap, config) and
+        revFlowOut(call, ret, kind, state, returnCtx, returnAp, ap, config) and
+        returnFlowsThrough(ret, kind, state, ccc, _, _, ap, config) and
         matchesCall(ccc, call)
       )
     }
@@ -1757,37 +1786,37 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate parameterFlowsThroughRev(
-      ParamNodeEx p, Ap ap, ReturnPosition returnPos, Configuration config
+      ParamNodeEx p, Ap ap, ReturnKindExt kind, Configuration config
     ) {
-      revFlow(p, _, TReturnCtxMaybeFlowThrough(returnPos), apSome(_), ap, config) and
-      parameterFlowThroughAllowed(p.asNode(), returnPos.getKind())
+      revFlow(p, _, TReturnCtxMaybeFlowThrough(kind), apSome(_), ap, config) and
+      parameterFlowThroughAllowed(p, kind)
     }
 
     pragma[nomagic]
     predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
-      exists(RetNodeEx ret, ReturnPosition pos |
-        returnFlowsThrough(ret, pos, _, _, p.asNode(), ap, _, config) and
-        parameterFlowsThroughRev(p, ap, pos, config)
+      exists(RetNodeEx ret, ReturnKindExt kind |
+        returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
+        parameterFlowsThroughRev(p, ap, kind, config)
       )
     }
 
     pragma[nomagic]
-    predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config) {
+    predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config) {
       exists(ParamNodeEx p, Ap ap |
-        returnFlowsThrough(ret, pos, _, _, p.asNode(), ap, _, config) and
-        parameterFlowsThroughRev(p, ap, pos, config)
+        returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
+        parameterFlowsThroughRev(p, ap, kind, config)
       )
     }
 
     pragma[nomagic]
     predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
       exists(
-        ReturnPosition returnPos0, Ap returnAp0, ArgNodeEx arg, FlowState state,
+        ReturnKindExt returnKind0, Ap returnAp0, ArgNodeEx arg, FlowState state,
         ReturnCtx returnCtx, ApOption returnAp, Ap ap
       |
         revFlow(arg, state, returnCtx, returnAp, ap, config) and
-        revFlowInToReturn(call, arg, state, returnPos0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnPos0, returnAp0, config)
+        revFlowInToReturn(call, arg, state, returnKind0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
       )
     }
 
@@ -1800,9 +1829,8 @@ private module MkStage<StageSig PrevStage> {
       conscand = count(TypedContent f0, Ap ap | fwdConsCand(f0, ap, config)) and
       states = count(FlowState state | fwdFlow(_, state, _, _, _, _, config)) and
       tuples =
-        count(NodeEx n, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap |
-          fwdFlow(n, state, cc, summaryCtx, argAp, ap, config)
-        )
+        count(NodeEx n, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+          Ap ap | fwdFlow(n, state, cc, summaryCtx, argAp, ap, config))
       or
       fwd = false and
       nodes = count(NodeEx node | revFlow(node, _, _, _, _, config)) and
@@ -1992,10 +2020,10 @@ private module Stage2 implements StageSig {
 
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand2(
-  DataFlowCall call, RetNodeEx node1, ReturnPosition pos, NodeEx node2, boolean allowsFieldFlow,
+  DataFlowCall call, RetNodeEx node1, ReturnKindExt kind, NodeEx node2, boolean allowsFieldFlow,
   Configuration config
 ) {
-  flowOutOfCallNodeCand1(call, node1, pos, node2, allowsFieldFlow, config) and
+  flowOutOfCallNodeCand1(call, node1, kind, node2, allowsFieldFlow, config) and
   Stage2::revFlow(node2, pragma[only_bind_into](config)) and
   Stage2::revFlowAlias(node1, pragma[only_bind_into](config))
 }
@@ -2511,11 +2539,11 @@ private module Stage4Param implements MkStage<Stage3>::StageParam {
 
   pragma[nomagic]
   predicate flowOutOfCall(
-    DataFlowCall call, RetNodeEx node1, ReturnPosition pos, NodeEx node2, boolean allowsFieldFlow,
+    DataFlowCall call, RetNodeEx node1, ReturnKindExt kind, NodeEx node2, boolean allowsFieldFlow,
     Configuration config
   ) {
     exists(FlowState state |
-      flowOutOfCallNodeCand2(call, node1, pos, node2, allowsFieldFlow, config) and
+      flowOutOfCallNodeCand2(call, node1, kind, node2, allowsFieldFlow, config) and
       PrevStage::revFlow(node2, pragma[only_bind_into](state), _, pragma[only_bind_into](config)) and
       PrevStage::revFlowAlias(node1, pragma[only_bind_into](state), _,
         pragma[only_bind_into](config))
@@ -2552,12 +2580,13 @@ private Configuration unbindConf(Configuration conf) {
 
 pragma[nomagic]
 private predicate nodeMayUseSummary0(
-  NodeEx n, ParamNodeEx p, FlowState state, AccessPathApprox apa, Configuration config
+  NodeEx n, DataFlowCallable c, ParameterPosition pos, FlowState state, AccessPathApprox apa,
+  Configuration config
 ) {
   exists(AccessPathApprox apa0 |
-    Stage4::parameterMayFlowThrough(p, _, _) and
+    c = n.getEnclosingCallable() and
     Stage4::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
-    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TParamNodeSome(p.asNode()),
+    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TParameterPositionSome(pos),
       TAccessPathApproxSome(apa), apa0, config)
   )
 }
@@ -2566,9 +2595,10 @@ pragma[nomagic]
 private predicate nodeMayUseSummary(
   NodeEx n, FlowState state, AccessPathApprox apa, Configuration config
 ) {
-  exists(ParamNodeEx p |
+  exists(DataFlowCallable c, ParameterPosition pos, ParamNodeEx p |
     Stage4::parameterMayFlowThrough(p, apa, config) and
-    nodeMayUseSummary0(n, p, state, apa, config)
+    nodeMayUseSummary0(n, c, pos, state, apa, config) and
+    p.isParameterOf(c, pos)
   )
 }
 
@@ -3501,7 +3531,7 @@ private predicate paramFlowsThrough(
     pathNode(mid, ret, state, cc, sc, ap, config, _) and
     kind = ret.getKind() and
     apa = ap.getApprox() and
-    parameterFlowThroughAllowed(sc.getParamNode().asNode(), kind)
+    parameterFlowThroughAllowed(sc.getParamNode(), kind)
   )
 }
 
diff --git a/cpp/ql/lib/experimental/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl4.qll b/cpp/ql/lib/experimental/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl4.qll
index a52ad110662..e4cfd5986be 100644
--- a/cpp/ql/lib/experimental/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl4.qll
+++ b/cpp/ql/lib/experimental/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl4.qll
@@ -613,11 +613,28 @@ private predicate hasSinkCallCtx(Configuration config) {
  * explicitly allowed
  */
 bindingset[p, kind]
-private predicate parameterFlowThroughAllowed(ParamNode p, ReturnKindExt kind) {
+private predicate parameterFlowThroughAllowed(ParamNodeEx p, ReturnKindExt kind) {
   exists(ParameterPosition pos | p.isParameterOf(_, pos) |
     not kind.(ParamUpdateReturnKind).getPosition() = pos
     or
-    allowParameterReturnInSelfCached(p)
+    allowParameterReturnInSelfCached(p.asNode())
+  )
+}
+
+/**
+ * Holds if flow from a parameter at position `pos` inside `c` to a return node of
+ * kind `kind` is allowed.
+ *
+ * We don't expect a parameter to return stored in itself, unless
+ * explicitly allowed
+ */
+bindingset[c, pos, kind]
+private predicate parameterFlowThroughAllowed(
+  DataFlowCallable c, ParameterPosition pos, ReturnKindExt kind
+) {
+  exists(ParamNodeEx p |
+    p.isParameterOf(c, pos) and
+    parameterFlowThroughAllowed(p, kind)
   )
 }
 
@@ -1000,14 +1017,14 @@ private module Stage1 implements StageSig {
       returnFlowCallableNodeCand(c, kind, config) and
       p.getEnclosingCallable() = c and
       exists(ap) and
-      parameterFlowThroughAllowed(p.asNode(), kind)
+      parameterFlowThroughAllowed(p, kind)
     )
   }
 
   pragma[nomagic]
-  predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config) {
+  predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config) {
     throughFlowNodeCand(ret, config) and
-    pos = ret.getReturnPosition()
+    kind = ret.getKind()
   }
 
   pragma[nomagic]
@@ -1066,13 +1083,16 @@ private predicate viableReturnPosOutNodeCand1(
  */
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand1(
-  DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, Configuration config
+  DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, Configuration config
 ) {
-  viableReturnPosOutNodeCand1(call, pos, out, config) and
-  pos = ret.getReturnPosition() and
-  Stage1::revFlow(ret, config) and
-  not outBarrier(ret, config) and
-  not inBarrier(out, config)
+  exists(ReturnPosition pos |
+    viableReturnPosOutNodeCand1(call, pos, out, config) and
+    pos = ret.getReturnPosition() and
+    kind = pos.getKind() and
+    Stage1::revFlow(ret, config) and
+    not outBarrier(ret, config) and
+    not inBarrier(out, config)
+  )
 }
 
 pragma[nomagic]
@@ -1102,6 +1122,7 @@ private predicate flowIntoCallNodeCand1(
  * edge in the graph of paths between sources and sinks that ignores call
  * contexts.
  */
+pragma[nomagic]
 private int branch(NodeEx n1, Configuration conf) {
   result =
     strictcount(NodeEx n |
@@ -1114,6 +1135,7 @@ private int branch(NodeEx n1, Configuration conf) {
  * edge in the graph of paths between sources and sinks that ignores call
  * contexts.
  */
+pragma[nomagic]
 private int join(NodeEx n2, Configuration conf) {
   result =
     strictcount(NodeEx n |
@@ -1130,10 +1152,10 @@ private int join(NodeEx n2, Configuration conf) {
  */
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand1(
-  DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
+  DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
   Configuration config
 ) {
-  flowOutOfCallNodeCand1(call, ret, pos, out, pragma[only_bind_into](config)) and
+  flowOutOfCallNodeCand1(call, ret, kind, out, pragma[only_bind_into](config)) and
   exists(int b, int j |
     b = branch(ret, pragma[only_bind_into](config)) and
     j = join(out, pragma[only_bind_into](config)) and
@@ -1152,10 +1174,10 @@ pragma[nomagic]
 private predicate flowIntoCallNodeCand1(
   DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
 ) {
-  flowIntoCallNodeCand1(call, arg, p, config) and
+  flowIntoCallNodeCand1(call, arg, p, pragma[only_bind_into](config)) and
   exists(int b, int j |
-    b = branch(arg, config) and
-    j = join(p, config) and
+    b = branch(arg, pragma[only_bind_into](config)) and
+    j = join(p, pragma[only_bind_into](config)) and
     if b.minimum(j) <= config.fieldFlowBranchLimit()
     then allowsFieldFlow = true
     else allowsFieldFlow = false
@@ -1174,7 +1196,7 @@ private signature module StageSig {
 
   predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config);
 
-  predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config);
+  predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config);
 
   predicate storeStepCand(
     NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, DataFlowType contentType,
@@ -1240,7 +1262,7 @@ private module MkStage<StageSig PrevStage> {
     );
 
     predicate flowOutOfCall(
-      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
+      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
       Configuration config
     );
 
@@ -1266,16 +1288,14 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate flowThroughOutOfCall(
-      DataFlowCall call, CcCall ccc, RetNodeEx ret, ReturnKindExt kind, NodeEx out,
-      boolean allowsFieldFlow, Configuration config
+      DataFlowCall call, DataFlowCallable c, CcCall ccc, RetNodeEx ret, ReturnKindExt kind,
+      NodeEx out, boolean allowsFieldFlow, Configuration config
     ) {
-      exists(ReturnPosition pos |
-        flowOutOfCall(call, ret, pos, out, allowsFieldFlow, pragma[only_bind_into](config)) and
-        kind = pos.getKind() and
-        PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
-        PrevStage::returnMayFlowThrough(ret, pos, pragma[only_bind_into](config)) and
-        matchesCall(ccc, call)
-      )
+      flowOutOfCall(call, ret, kind, out, allowsFieldFlow, pragma[only_bind_into](config)) and
+      PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
+      PrevStage::returnMayFlowThrough(ret, kind, pragma[only_bind_into](config)) and
+      matchesCall(ccc, call) and
+      c = ret.getEnclosingCallable()
     }
 
     /**
@@ -1284,12 +1304,12 @@ private module MkStage<StageSig PrevStage> {
      *
      * The call context `cc` records whether the node is reached through an
      * argument in a call, and if so, `summaryCtx` and `argAp` record the
-     * corresponding parameter and access path of that argument, respectively.
+     * corresponding parameter position and access path of that argument, respectively.
      */
     pragma[nomagic]
     additional predicate fwdFlow(
-      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
-      Configuration config
+      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      Ap ap, Configuration config
     ) {
       fwdFlow0(node, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::revFlow(node, state, unbindApa(getApprox(ap)), config) and
@@ -1298,13 +1318,13 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlow0(
-      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
-      Configuration config
+      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      Ap ap, Configuration config
     ) {
       sourceNode(node, state, config) and
       (if hasSourceCallCtx(config) then cc = ccSomeCall() else cc = ccNone()) and
       argAp = apNone() and
-      summaryCtx = TParamNodeNone() and
+      summaryCtx = TParameterPositionNone() and
       ap = getApNil(node)
       or
       exists(NodeEx mid, FlowState state0, Ap ap0, LocalCc localCc |
@@ -1322,7 +1342,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, pragma[only_bind_into](config)) and
         jumpStep(mid, node, config) and
         cc = ccNone() and
-        summaryCtx = TParamNodeNone() and
+        summaryCtx = TParameterPositionNone() and
         argAp = apNone()
       )
       or
@@ -1330,7 +1350,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, state, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStep(mid, node, config) and
         cc = ccNone() and
-        summaryCtx = TParamNodeNone() and
+        summaryCtx = TParameterPositionNone() and
         argAp = apNone() and
         ap = getApNil(node)
       )
@@ -1339,7 +1359,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, state0, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStateStep(mid, state0, node, state, config) and
         cc = ccNone() and
-        summaryCtx = TParamNodeNone() and
+        summaryCtx = TParameterPositionNone() and
         argAp = apNone() and
         ap = getApNil(node)
       )
@@ -1362,17 +1382,27 @@ private module MkStage<StageSig PrevStage> {
         apa = getApprox(ap) and
         if PrevStage::parameterMayFlowThrough(node, apa, config)
         then (
-          summaryCtx = TParamNodeSome(node.asNode()) and argAp = apSome(ap)
+          summaryCtx = TParameterPositionSome(node.(ParamNodeEx).getPosition()) and
+          argAp = apSome(ap)
         ) else (
-          summaryCtx = TParamNodeNone() and argAp = apNone()
+          summaryCtx = TParameterPositionNone() and argAp = apNone()
         )
       )
       or
       // flow out of a callable
-      fwdFlowOutNotFromArg(node, state, cc, summaryCtx, argAp, ap, config)
+      exists(
+        DataFlowCall call, RetNodeEx ret, boolean allowsFieldFlow, CcNoCall innercc,
+        DataFlowCallable inner
+      |
+        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, config) and
+        flowOutOfCall(call, ret, _, node, allowsFieldFlow, config) and
+        inner = ret.getEnclosingCallable() and
+        cc = getCallContextReturn(inner, call, innercc) and
+        if allowsFieldFlow = false then ap instanceof ApNil else any()
+      )
       or
       // flow through a callable
-      exists(DataFlowCall call, ParamNode summaryCtx0, Ap argAp0 |
+      exists(DataFlowCall call, ParameterPosition summaryCtx0, Ap argAp0 |
         fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, config) and
         fwdFlowIsEntered(call, cc, summaryCtx, argAp, summaryCtx0, argAp0, config)
       )
@@ -1381,7 +1411,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowStore(
       NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc,
-      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
+      ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
     ) {
       exists(DataFlowType contentType |
         fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, config) and
@@ -1406,7 +1436,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowRead(
       Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc,
-      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
+      ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
     ) {
       fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, c, node2, config) and
@@ -1416,7 +1446,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowIn(
       DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, Cc innercc,
-      ParamNodeOption summaryCtx, ApOption argAp, Ap ap, Configuration config
+      ParameterPositionOption summaryCtx, ApOption argAp, Ap ap, Configuration config
     ) {
       exists(ArgNodeEx arg, boolean allowsFieldFlow |
         fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, config) and
@@ -1427,32 +1457,19 @@ private module MkStage<StageSig PrevStage> {
     }
 
     pragma[nomagic]
-    private predicate fwdFlowOutNotFromArg(
-      NodeEx out, FlowState state, Cc ccOut, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+    private predicate fwdFlowOutFromArg(
+      DataFlowCall call, NodeEx out, FlowState state, ParameterPosition summaryCtx, Ap argAp, Ap ap,
       Configuration config
     ) {
       exists(
-        DataFlowCall call, RetNodeEx ret, boolean allowsFieldFlow, CcNoCall innercc,
-        DataFlowCallable inner
+        DataFlowCallable c, RetNodeEx ret, ReturnKindExt kind, boolean allowsFieldFlow, CcCall ccc
       |
-        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, config) and
-        flowOutOfCall(call, ret, _, out, allowsFieldFlow, config) and
-        inner = ret.getEnclosingCallable() and
-        ccOut = getCallContextReturn(inner, call, innercc) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
-      )
-    }
-
-    pragma[nomagic]
-    private predicate fwdFlowOutFromArg(
-      DataFlowCall call, NodeEx out, FlowState state, ParamNode summaryCtx, Ap argAp, Ap ap,
-      Configuration config
-    ) {
-      exists(RetNodeEx ret, ReturnKindExt kind, boolean allowsFieldFlow, CcCall ccc |
-        fwdFlow(ret, state, ccc, TParamNodeSome(summaryCtx), apSome(argAp), ap, config) and
-        flowThroughOutOfCall(call, ccc, ret, kind, out, allowsFieldFlow, config) and
+        fwdFlow(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc),
+          TParameterPositionSome(pragma[only_bind_into](summaryCtx)), apSome(argAp), ap, config) and
+        flowThroughOutOfCall(call, pragma[only_bind_into](c), ccc, ret, kind, out, allowsFieldFlow,
+          config) and
         (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
-        parameterFlowThroughAllowed(summaryCtx, kind)
+        parameterFlowThroughAllowed(c, pragma[only_bind_into](summaryCtx), kind)
       )
     }
 
@@ -1462,13 +1479,13 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate fwdFlowIsEntered(
-      DataFlowCall call, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, ParamNode p, Ap ap,
-      Configuration config
+      DataFlowCall call, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      ParameterPosition pos, Ap ap, Configuration config
     ) {
       exists(ParamNodeEx param |
         fwdFlowIn(call, param, _, cc, _, summaryCtx, argAp, ap, config) and
         PrevStage::parameterMayFlowThrough(param, unbindApa(getApprox(ap)), config) and
-        p = param.asNode()
+        pos = param.getPosition()
       )
     }
 
@@ -1489,23 +1506,41 @@ private module MkStage<StageSig PrevStage> {
     }
 
     pragma[nomagic]
-    private predicate returnFlowsThrough(
-      RetNodeEx ret, ReturnPosition pos, FlowState state, CcCall ccc, ParamNode p, Ap argAp, Ap ap,
-      Configuration config
+    private predicate returnFlowsThrough0(
+      RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, DataFlowCallable c,
+      ParameterPosition ppos, Ap argAp, Ap ap, Configuration config
     ) {
-      fwdFlow(ret, state, ccc, TParamNodeSome(p), apSome(argAp), ap, config) and
-      pos = ret.getReturnPosition() and
-      parameterFlowThroughAllowed(p, pos.getKind())
+      exists(boolean allowsFieldFlow |
+        fwdFlow(ret, state, ccc, TParameterPositionSome(ppos), apSome(argAp), ap, config) and
+        flowThroughOutOfCall(_, c, _, pragma[only_bind_into](ret), kind, _, allowsFieldFlow,
+          pragma[only_bind_into](config)) and
+        if allowsFieldFlow = false then ap instanceof ApNil else any()
+      )
+    }
+
+    pragma[nomagic]
+    private predicate returnFlowsThrough(
+      RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, ParamNodeEx p, Ap argAp,
+      Ap ap, Configuration config
+    ) {
+      exists(DataFlowCallable c, ParameterPosition ppos |
+        returnFlowsThrough0(ret, kind, state, ccc, c, ppos, argAp, ap, config) and
+        p.isParameterOf(c, ppos) and
+        parameterFlowThroughAllowed(p, kind)
+      )
     }
 
     pragma[nomagic]
     private predicate flowThroughIntoCall(
       DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
     ) {
-      flowIntoCall(call, pragma[only_bind_into](arg), pragma[only_bind_into](p), allowsFieldFlow,
-        pragma[only_bind_into](config)) and
-      fwdFlow(arg, _, _, _, _, _, pragma[only_bind_into](config)) and
-      returnFlowsThrough(_, _, _, _, p.asNode(), _, _, pragma[only_bind_into](config))
+      exists(Ap argAp |
+        flowIntoCall(call, pragma[only_bind_into](arg), pragma[only_bind_into](p), allowsFieldFlow,
+          pragma[only_bind_into](config)) and
+        fwdFlow(arg, _, _, _, _, pragma[only_bind_into](argAp), pragma[only_bind_into](config)) and
+        returnFlowsThrough(_, _, _, _, p, pragma[only_bind_into](argAp), _,
+          pragma[only_bind_into](config))
+      )
     }
 
     /**
@@ -1591,21 +1626,25 @@ private module MkStage<StageSig PrevStage> {
       )
       or
       // flow into a callable
-      revFlowInNotToReturn(node, state, returnAp, ap, config) and
-      returnCtx = TReturnCtxNone()
+      exists(ParamNodeEx p, boolean allowsFieldFlow |
+        revFlow(p, state, TReturnCtxNone(), returnAp, ap, config) and
+        flowIntoCall(_, node, p, allowsFieldFlow, config) and
+        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
+        returnCtx = TReturnCtxNone()
+      )
       or
       // flow through a callable
-      exists(DataFlowCall call, ReturnPosition returnPos0, Ap returnAp0 |
-        revFlowInToReturn(call, node, state, returnPos0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnPos0, returnAp0, config)
+      exists(DataFlowCall call, ReturnKindExt returnKind0, Ap returnAp0 |
+        revFlowInToReturn(call, node, state, returnKind0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
       )
       or
       // flow out of a callable
-      exists(ReturnPosition pos |
-        revFlowOut(_, node, pos, state, _, _, ap, config) and
-        if returnFlowsThrough(node, pos, state, _, _, _, ap, config)
+      exists(ReturnKindExt kind |
+        revFlowOut(_, node, kind, state, _, _, ap, config) and
+        if returnFlowsThrough(node, kind, state, _, _, _, ap, config)
         then (
-          returnCtx = TReturnCtxMaybeFlowThrough(pos) and
+          returnCtx = TReturnCtxMaybeFlowThrough(kind) and
           returnAp = apSome(ap)
         ) else (
           returnCtx = TReturnCtxNoFlowThrough() and returnAp = apNone()
@@ -1638,37 +1677,27 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate revFlowOut(
-      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, FlowState state, ReturnCtx returnCtx,
+      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, FlowState state, ReturnCtx returnCtx,
       ApOption returnAp, Ap ap, Configuration config
     ) {
       exists(NodeEx out, boolean allowsFieldFlow |
         revFlow(out, state, returnCtx, returnAp, ap, config) and
-        flowOutOfCall(call, ret, pos, out, allowsFieldFlow, config) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
-      )
-    }
-
-    pragma[nomagic]
-    private predicate revFlowInNotToReturn(
-      ArgNodeEx arg, FlowState state, ApOption returnAp, Ap ap, Configuration config
-    ) {
-      exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(p, state, TReturnCtxNone(), returnAp, ap, config) and
-        flowIntoCall(_, arg, p, allowsFieldFlow, config) and
+        flowOutOfCall(call, ret, kind, out, allowsFieldFlow, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
     pragma[nomagic]
     private predicate revFlowInToReturn(
-      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnPosition returnPos, Ap returnAp,
-      Ap ap, Configuration config
+      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap,
+      Configuration config
     ) {
       exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(p, state, TReturnCtxMaybeFlowThrough(returnPos), apSome(returnAp), ap, config) and
+        revFlow(pragma[only_bind_into](p), state,
+          TReturnCtxMaybeFlowThrough(pragma[only_bind_into](kind)), apSome(returnAp), ap, config) and
         flowThroughIntoCall(call, arg, p, allowsFieldFlow, config) and
         (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
-        parameterFlowThroughAllowed(p.asNode(), returnPos.getKind())
+        parameterFlowThroughAllowed(p, kind)
       )
     }
 
@@ -1679,12 +1708,12 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate revFlowIsReturned(
-      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnPosition pos, Ap ap,
+      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnKindExt kind, Ap ap,
       Configuration config
     ) {
       exists(RetNodeEx ret, FlowState state, CcCall ccc |
-        revFlowOut(call, ret, pos, state, returnCtx, returnAp, ap, config) and
-        returnFlowsThrough(ret, pos, state, ccc, _, _, ap, config) and
+        revFlowOut(call, ret, kind, state, returnCtx, returnAp, ap, config) and
+        returnFlowsThrough(ret, kind, state, ccc, _, _, ap, config) and
         matchesCall(ccc, call)
       )
     }
@@ -1757,37 +1786,37 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate parameterFlowsThroughRev(
-      ParamNodeEx p, Ap ap, ReturnPosition returnPos, Configuration config
+      ParamNodeEx p, Ap ap, ReturnKindExt kind, Configuration config
     ) {
-      revFlow(p, _, TReturnCtxMaybeFlowThrough(returnPos), apSome(_), ap, config) and
-      parameterFlowThroughAllowed(p.asNode(), returnPos.getKind())
+      revFlow(p, _, TReturnCtxMaybeFlowThrough(kind), apSome(_), ap, config) and
+      parameterFlowThroughAllowed(p, kind)
     }
 
     pragma[nomagic]
     predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
-      exists(RetNodeEx ret, ReturnPosition pos |
-        returnFlowsThrough(ret, pos, _, _, p.asNode(), ap, _, config) and
-        parameterFlowsThroughRev(p, ap, pos, config)
+      exists(RetNodeEx ret, ReturnKindExt kind |
+        returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
+        parameterFlowsThroughRev(p, ap, kind, config)
       )
     }
 
     pragma[nomagic]
-    predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config) {
+    predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config) {
       exists(ParamNodeEx p, Ap ap |
-        returnFlowsThrough(ret, pos, _, _, p.asNode(), ap, _, config) and
-        parameterFlowsThroughRev(p, ap, pos, config)
+        returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
+        parameterFlowsThroughRev(p, ap, kind, config)
       )
     }
 
     pragma[nomagic]
     predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
       exists(
-        ReturnPosition returnPos0, Ap returnAp0, ArgNodeEx arg, FlowState state,
+        ReturnKindExt returnKind0, Ap returnAp0, ArgNodeEx arg, FlowState state,
         ReturnCtx returnCtx, ApOption returnAp, Ap ap
       |
         revFlow(arg, state, returnCtx, returnAp, ap, config) and
-        revFlowInToReturn(call, arg, state, returnPos0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnPos0, returnAp0, config)
+        revFlowInToReturn(call, arg, state, returnKind0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
       )
     }
 
@@ -1800,9 +1829,8 @@ private module MkStage<StageSig PrevStage> {
       conscand = count(TypedContent f0, Ap ap | fwdConsCand(f0, ap, config)) and
       states = count(FlowState state | fwdFlow(_, state, _, _, _, _, config)) and
       tuples =
-        count(NodeEx n, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap |
-          fwdFlow(n, state, cc, summaryCtx, argAp, ap, config)
-        )
+        count(NodeEx n, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+          Ap ap | fwdFlow(n, state, cc, summaryCtx, argAp, ap, config))
       or
       fwd = false and
       nodes = count(NodeEx node | revFlow(node, _, _, _, _, config)) and
@@ -1992,10 +2020,10 @@ private module Stage2 implements StageSig {
 
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand2(
-  DataFlowCall call, RetNodeEx node1, ReturnPosition pos, NodeEx node2, boolean allowsFieldFlow,
+  DataFlowCall call, RetNodeEx node1, ReturnKindExt kind, NodeEx node2, boolean allowsFieldFlow,
   Configuration config
 ) {
-  flowOutOfCallNodeCand1(call, node1, pos, node2, allowsFieldFlow, config) and
+  flowOutOfCallNodeCand1(call, node1, kind, node2, allowsFieldFlow, config) and
   Stage2::revFlow(node2, pragma[only_bind_into](config)) and
   Stage2::revFlowAlias(node1, pragma[only_bind_into](config))
 }
@@ -2511,11 +2539,11 @@ private module Stage4Param implements MkStage<Stage3>::StageParam {
 
   pragma[nomagic]
   predicate flowOutOfCall(
-    DataFlowCall call, RetNodeEx node1, ReturnPosition pos, NodeEx node2, boolean allowsFieldFlow,
+    DataFlowCall call, RetNodeEx node1, ReturnKindExt kind, NodeEx node2, boolean allowsFieldFlow,
     Configuration config
   ) {
     exists(FlowState state |
-      flowOutOfCallNodeCand2(call, node1, pos, node2, allowsFieldFlow, config) and
+      flowOutOfCallNodeCand2(call, node1, kind, node2, allowsFieldFlow, config) and
       PrevStage::revFlow(node2, pragma[only_bind_into](state), _, pragma[only_bind_into](config)) and
       PrevStage::revFlowAlias(node1, pragma[only_bind_into](state), _,
         pragma[only_bind_into](config))
@@ -2552,12 +2580,13 @@ private Configuration unbindConf(Configuration conf) {
 
 pragma[nomagic]
 private predicate nodeMayUseSummary0(
-  NodeEx n, ParamNodeEx p, FlowState state, AccessPathApprox apa, Configuration config
+  NodeEx n, DataFlowCallable c, ParameterPosition pos, FlowState state, AccessPathApprox apa,
+  Configuration config
 ) {
   exists(AccessPathApprox apa0 |
-    Stage4::parameterMayFlowThrough(p, _, _) and
+    c = n.getEnclosingCallable() and
     Stage4::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
-    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TParamNodeSome(p.asNode()),
+    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TParameterPositionSome(pos),
       TAccessPathApproxSome(apa), apa0, config)
   )
 }
@@ -2566,9 +2595,10 @@ pragma[nomagic]
 private predicate nodeMayUseSummary(
   NodeEx n, FlowState state, AccessPathApprox apa, Configuration config
 ) {
-  exists(ParamNodeEx p |
+  exists(DataFlowCallable c, ParameterPosition pos, ParamNodeEx p |
     Stage4::parameterMayFlowThrough(p, apa, config) and
-    nodeMayUseSummary0(n, p, state, apa, config)
+    nodeMayUseSummary0(n, c, pos, state, apa, config) and
+    p.isParameterOf(c, pos)
   )
 }
 
@@ -3501,7 +3531,7 @@ private predicate paramFlowsThrough(
     pathNode(mid, ret, state, cc, sc, ap, config, _) and
     kind = ret.getKind() and
     apa = ap.getApprox() and
-    parameterFlowThroughAllowed(sc.getParamNode().asNode(), kind)
+    parameterFlowThroughAllowed(sc.getParamNode(), kind)
   )
 }
 
diff --git a/cpp/ql/lib/experimental/semmle/code/cpp/ir/dataflow/internal/DataFlowImplCommon.qll b/cpp/ql/lib/experimental/semmle/code/cpp/ir/dataflow/internal/DataFlowImplCommon.qll
index 621ed34f9d0..f981834a6d4 100644
--- a/cpp/ql/lib/experimental/semmle/code/cpp/ir/dataflow/internal/DataFlowImplCommon.qll
+++ b/cpp/ql/lib/experimental/semmle/code/cpp/ir/dataflow/internal/DataFlowImplCommon.qll
@@ -916,15 +916,15 @@ private module Cached {
     TDataFlowCallSome(DataFlowCall call)
 
   cached
-  newtype TParamNodeOption =
-    TParamNodeNone() or
-    TParamNodeSome(ParamNode p)
+  newtype TParameterPositionOption =
+    TParameterPositionNone() or
+    TParameterPositionSome(ParameterPosition pos)
 
   cached
   newtype TReturnCtx =
     TReturnCtxNone() or
     TReturnCtxNoFlowThrough() or
-    TReturnCtxMaybeFlowThrough(ReturnPosition pos)
+    TReturnCtxMaybeFlowThrough(ReturnKindExt kind)
 
   cached
   newtype TTypedContent = MkTypedContent(Content c, DataFlowType t) { store(_, c, _, _, t) }
@@ -1315,15 +1315,15 @@ class DataFlowCallOption extends TDataFlowCallOption {
   }
 }
 
-/** An optional `ParamNode`. */
-class ParamNodeOption extends TParamNodeOption {
+/** An optional `ParameterPosition`. */
+class ParameterPositionOption extends TParameterPositionOption {
   string toString() {
-    this = TParamNodeNone() and
+    this = TParameterPositionNone() and
     result = "(none)"
     or
-    exists(ParamNode p |
-      this = TParamNodeSome(p) and
-      result = p.toString()
+    exists(ParameterPosition pos |
+      this = TParameterPositionSome(pos) and
+      result = pos.toString()
     )
   }
 }
@@ -1335,7 +1335,7 @@ class ParamNodeOption extends TParamNodeOption {
  *
  * - `TReturnCtxNone()`: no return flow.
  * - `TReturnCtxNoFlowThrough()`: return flow, but flow through is not possible.
- * - `TReturnCtxMaybeFlowThrough(ReturnPosition pos)`: return flow, of kind `pos`, and
+ * - `TReturnCtxMaybeFlowThrough(ReturnKindExt kind)`: return flow, of kind `kind`, and
  *    flow through may be possible.
  */
 class ReturnCtx extends TReturnCtx {
@@ -1346,9 +1346,9 @@ class ReturnCtx extends TReturnCtx {
     this = TReturnCtxNoFlowThrough() and
     result = "(no flow through)"
     or
-    exists(ReturnPosition pos |
-      this = TReturnCtxMaybeFlowThrough(pos) and
-      result = pos.toString()
+    exists(ReturnKindExt kind |
+      this = TReturnCtxMaybeFlowThrough(kind) and
+      result = kind.toString()
     )
   }
 }
diff --git a/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImpl.qll b/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImpl.qll
index a52ad110662..e4cfd5986be 100644
--- a/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImpl.qll
+++ b/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImpl.qll
@@ -613,11 +613,28 @@ private predicate hasSinkCallCtx(Configuration config) {
  * explicitly allowed
  */
 bindingset[p, kind]
-private predicate parameterFlowThroughAllowed(ParamNode p, ReturnKindExt kind) {
+private predicate parameterFlowThroughAllowed(ParamNodeEx p, ReturnKindExt kind) {
   exists(ParameterPosition pos | p.isParameterOf(_, pos) |
     not kind.(ParamUpdateReturnKind).getPosition() = pos
     or
-    allowParameterReturnInSelfCached(p)
+    allowParameterReturnInSelfCached(p.asNode())
+  )
+}
+
+/**
+ * Holds if flow from a parameter at position `pos` inside `c` to a return node of
+ * kind `kind` is allowed.
+ *
+ * We don't expect a parameter to return stored in itself, unless
+ * explicitly allowed
+ */
+bindingset[c, pos, kind]
+private predicate parameterFlowThroughAllowed(
+  DataFlowCallable c, ParameterPosition pos, ReturnKindExt kind
+) {
+  exists(ParamNodeEx p |
+    p.isParameterOf(c, pos) and
+    parameterFlowThroughAllowed(p, kind)
   )
 }
 
@@ -1000,14 +1017,14 @@ private module Stage1 implements StageSig {
       returnFlowCallableNodeCand(c, kind, config) and
       p.getEnclosingCallable() = c and
       exists(ap) and
-      parameterFlowThroughAllowed(p.asNode(), kind)
+      parameterFlowThroughAllowed(p, kind)
     )
   }
 
   pragma[nomagic]
-  predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config) {
+  predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config) {
     throughFlowNodeCand(ret, config) and
-    pos = ret.getReturnPosition()
+    kind = ret.getKind()
   }
 
   pragma[nomagic]
@@ -1066,13 +1083,16 @@ private predicate viableReturnPosOutNodeCand1(
  */
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand1(
-  DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, Configuration config
+  DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, Configuration config
 ) {
-  viableReturnPosOutNodeCand1(call, pos, out, config) and
-  pos = ret.getReturnPosition() and
-  Stage1::revFlow(ret, config) and
-  not outBarrier(ret, config) and
-  not inBarrier(out, config)
+  exists(ReturnPosition pos |
+    viableReturnPosOutNodeCand1(call, pos, out, config) and
+    pos = ret.getReturnPosition() and
+    kind = pos.getKind() and
+    Stage1::revFlow(ret, config) and
+    not outBarrier(ret, config) and
+    not inBarrier(out, config)
+  )
 }
 
 pragma[nomagic]
@@ -1102,6 +1122,7 @@ private predicate flowIntoCallNodeCand1(
  * edge in the graph of paths between sources and sinks that ignores call
  * contexts.
  */
+pragma[nomagic]
 private int branch(NodeEx n1, Configuration conf) {
   result =
     strictcount(NodeEx n |
@@ -1114,6 +1135,7 @@ private int branch(NodeEx n1, Configuration conf) {
  * edge in the graph of paths between sources and sinks that ignores call
  * contexts.
  */
+pragma[nomagic]
 private int join(NodeEx n2, Configuration conf) {
   result =
     strictcount(NodeEx n |
@@ -1130,10 +1152,10 @@ private int join(NodeEx n2, Configuration conf) {
  */
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand1(
-  DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
+  DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
   Configuration config
 ) {
-  flowOutOfCallNodeCand1(call, ret, pos, out, pragma[only_bind_into](config)) and
+  flowOutOfCallNodeCand1(call, ret, kind, out, pragma[only_bind_into](config)) and
   exists(int b, int j |
     b = branch(ret, pragma[only_bind_into](config)) and
     j = join(out, pragma[only_bind_into](config)) and
@@ -1152,10 +1174,10 @@ pragma[nomagic]
 private predicate flowIntoCallNodeCand1(
   DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
 ) {
-  flowIntoCallNodeCand1(call, arg, p, config) and
+  flowIntoCallNodeCand1(call, arg, p, pragma[only_bind_into](config)) and
   exists(int b, int j |
-    b = branch(arg, config) and
-    j = join(p, config) and
+    b = branch(arg, pragma[only_bind_into](config)) and
+    j = join(p, pragma[only_bind_into](config)) and
     if b.minimum(j) <= config.fieldFlowBranchLimit()
     then allowsFieldFlow = true
     else allowsFieldFlow = false
@@ -1174,7 +1196,7 @@ private signature module StageSig {
 
   predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config);
 
-  predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config);
+  predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config);
 
   predicate storeStepCand(
     NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, DataFlowType contentType,
@@ -1240,7 +1262,7 @@ private module MkStage<StageSig PrevStage> {
     );
 
     predicate flowOutOfCall(
-      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
+      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
       Configuration config
     );
 
@@ -1266,16 +1288,14 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate flowThroughOutOfCall(
-      DataFlowCall call, CcCall ccc, RetNodeEx ret, ReturnKindExt kind, NodeEx out,
-      boolean allowsFieldFlow, Configuration config
+      DataFlowCall call, DataFlowCallable c, CcCall ccc, RetNodeEx ret, ReturnKindExt kind,
+      NodeEx out, boolean allowsFieldFlow, Configuration config
     ) {
-      exists(ReturnPosition pos |
-        flowOutOfCall(call, ret, pos, out, allowsFieldFlow, pragma[only_bind_into](config)) and
-        kind = pos.getKind() and
-        PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
-        PrevStage::returnMayFlowThrough(ret, pos, pragma[only_bind_into](config)) and
-        matchesCall(ccc, call)
-      )
+      flowOutOfCall(call, ret, kind, out, allowsFieldFlow, pragma[only_bind_into](config)) and
+      PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
+      PrevStage::returnMayFlowThrough(ret, kind, pragma[only_bind_into](config)) and
+      matchesCall(ccc, call) and
+      c = ret.getEnclosingCallable()
     }
 
     /**
@@ -1284,12 +1304,12 @@ private module MkStage<StageSig PrevStage> {
      *
      * The call context `cc` records whether the node is reached through an
      * argument in a call, and if so, `summaryCtx` and `argAp` record the
-     * corresponding parameter and access path of that argument, respectively.
+     * corresponding parameter position and access path of that argument, respectively.
      */
     pragma[nomagic]
     additional predicate fwdFlow(
-      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
-      Configuration config
+      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      Ap ap, Configuration config
     ) {
       fwdFlow0(node, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::revFlow(node, state, unbindApa(getApprox(ap)), config) and
@@ -1298,13 +1318,13 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlow0(
-      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
-      Configuration config
+      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      Ap ap, Configuration config
     ) {
       sourceNode(node, state, config) and
       (if hasSourceCallCtx(config) then cc = ccSomeCall() else cc = ccNone()) and
       argAp = apNone() and
-      summaryCtx = TParamNodeNone() and
+      summaryCtx = TParameterPositionNone() and
       ap = getApNil(node)
       or
       exists(NodeEx mid, FlowState state0, Ap ap0, LocalCc localCc |
@@ -1322,7 +1342,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, pragma[only_bind_into](config)) and
         jumpStep(mid, node, config) and
         cc = ccNone() and
-        summaryCtx = TParamNodeNone() and
+        summaryCtx = TParameterPositionNone() and
         argAp = apNone()
       )
       or
@@ -1330,7 +1350,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, state, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStep(mid, node, config) and
         cc = ccNone() and
-        summaryCtx = TParamNodeNone() and
+        summaryCtx = TParameterPositionNone() and
         argAp = apNone() and
         ap = getApNil(node)
       )
@@ -1339,7 +1359,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, state0, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStateStep(mid, state0, node, state, config) and
         cc = ccNone() and
-        summaryCtx = TParamNodeNone() and
+        summaryCtx = TParameterPositionNone() and
         argAp = apNone() and
         ap = getApNil(node)
       )
@@ -1362,17 +1382,27 @@ private module MkStage<StageSig PrevStage> {
         apa = getApprox(ap) and
         if PrevStage::parameterMayFlowThrough(node, apa, config)
         then (
-          summaryCtx = TParamNodeSome(node.asNode()) and argAp = apSome(ap)
+          summaryCtx = TParameterPositionSome(node.(ParamNodeEx).getPosition()) and
+          argAp = apSome(ap)
         ) else (
-          summaryCtx = TParamNodeNone() and argAp = apNone()
+          summaryCtx = TParameterPositionNone() and argAp = apNone()
         )
       )
       or
       // flow out of a callable
-      fwdFlowOutNotFromArg(node, state, cc, summaryCtx, argAp, ap, config)
+      exists(
+        DataFlowCall call, RetNodeEx ret, boolean allowsFieldFlow, CcNoCall innercc,
+        DataFlowCallable inner
+      |
+        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, config) and
+        flowOutOfCall(call, ret, _, node, allowsFieldFlow, config) and
+        inner = ret.getEnclosingCallable() and
+        cc = getCallContextReturn(inner, call, innercc) and
+        if allowsFieldFlow = false then ap instanceof ApNil else any()
+      )
       or
       // flow through a callable
-      exists(DataFlowCall call, ParamNode summaryCtx0, Ap argAp0 |
+      exists(DataFlowCall call, ParameterPosition summaryCtx0, Ap argAp0 |
         fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, config) and
         fwdFlowIsEntered(call, cc, summaryCtx, argAp, summaryCtx0, argAp0, config)
       )
@@ -1381,7 +1411,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowStore(
       NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc,
-      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
+      ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
     ) {
       exists(DataFlowType contentType |
         fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, config) and
@@ -1406,7 +1436,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowRead(
       Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc,
-      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
+      ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
     ) {
       fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, c, node2, config) and
@@ -1416,7 +1446,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowIn(
       DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, Cc innercc,
-      ParamNodeOption summaryCtx, ApOption argAp, Ap ap, Configuration config
+      ParameterPositionOption summaryCtx, ApOption argAp, Ap ap, Configuration config
     ) {
       exists(ArgNodeEx arg, boolean allowsFieldFlow |
         fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, config) and
@@ -1427,32 +1457,19 @@ private module MkStage<StageSig PrevStage> {
     }
 
     pragma[nomagic]
-    private predicate fwdFlowOutNotFromArg(
-      NodeEx out, FlowState state, Cc ccOut, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+    private predicate fwdFlowOutFromArg(
+      DataFlowCall call, NodeEx out, FlowState state, ParameterPosition summaryCtx, Ap argAp, Ap ap,
       Configuration config
     ) {
       exists(
-        DataFlowCall call, RetNodeEx ret, boolean allowsFieldFlow, CcNoCall innercc,
-        DataFlowCallable inner
+        DataFlowCallable c, RetNodeEx ret, ReturnKindExt kind, boolean allowsFieldFlow, CcCall ccc
       |
-        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, config) and
-        flowOutOfCall(call, ret, _, out, allowsFieldFlow, config) and
-        inner = ret.getEnclosingCallable() and
-        ccOut = getCallContextReturn(inner, call, innercc) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
-      )
-    }
-
-    pragma[nomagic]
-    private predicate fwdFlowOutFromArg(
-      DataFlowCall call, NodeEx out, FlowState state, ParamNode summaryCtx, Ap argAp, Ap ap,
-      Configuration config
-    ) {
-      exists(RetNodeEx ret, ReturnKindExt kind, boolean allowsFieldFlow, CcCall ccc |
-        fwdFlow(ret, state, ccc, TParamNodeSome(summaryCtx), apSome(argAp), ap, config) and
-        flowThroughOutOfCall(call, ccc, ret, kind, out, allowsFieldFlow, config) and
+        fwdFlow(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc),
+          TParameterPositionSome(pragma[only_bind_into](summaryCtx)), apSome(argAp), ap, config) and
+        flowThroughOutOfCall(call, pragma[only_bind_into](c), ccc, ret, kind, out, allowsFieldFlow,
+          config) and
         (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
-        parameterFlowThroughAllowed(summaryCtx, kind)
+        parameterFlowThroughAllowed(c, pragma[only_bind_into](summaryCtx), kind)
       )
     }
 
@@ -1462,13 +1479,13 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate fwdFlowIsEntered(
-      DataFlowCall call, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, ParamNode p, Ap ap,
-      Configuration config
+      DataFlowCall call, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      ParameterPosition pos, Ap ap, Configuration config
     ) {
       exists(ParamNodeEx param |
         fwdFlowIn(call, param, _, cc, _, summaryCtx, argAp, ap, config) and
         PrevStage::parameterMayFlowThrough(param, unbindApa(getApprox(ap)), config) and
-        p = param.asNode()
+        pos = param.getPosition()
       )
     }
 
@@ -1489,23 +1506,41 @@ private module MkStage<StageSig PrevStage> {
     }
 
     pragma[nomagic]
-    private predicate returnFlowsThrough(
-      RetNodeEx ret, ReturnPosition pos, FlowState state, CcCall ccc, ParamNode p, Ap argAp, Ap ap,
-      Configuration config
+    private predicate returnFlowsThrough0(
+      RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, DataFlowCallable c,
+      ParameterPosition ppos, Ap argAp, Ap ap, Configuration config
     ) {
-      fwdFlow(ret, state, ccc, TParamNodeSome(p), apSome(argAp), ap, config) and
-      pos = ret.getReturnPosition() and
-      parameterFlowThroughAllowed(p, pos.getKind())
+      exists(boolean allowsFieldFlow |
+        fwdFlow(ret, state, ccc, TParameterPositionSome(ppos), apSome(argAp), ap, config) and
+        flowThroughOutOfCall(_, c, _, pragma[only_bind_into](ret), kind, _, allowsFieldFlow,
+          pragma[only_bind_into](config)) and
+        if allowsFieldFlow = false then ap instanceof ApNil else any()
+      )
+    }
+
+    pragma[nomagic]
+    private predicate returnFlowsThrough(
+      RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, ParamNodeEx p, Ap argAp,
+      Ap ap, Configuration config
+    ) {
+      exists(DataFlowCallable c, ParameterPosition ppos |
+        returnFlowsThrough0(ret, kind, state, ccc, c, ppos, argAp, ap, config) and
+        p.isParameterOf(c, ppos) and
+        parameterFlowThroughAllowed(p, kind)
+      )
     }
 
     pragma[nomagic]
     private predicate flowThroughIntoCall(
       DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
     ) {
-      flowIntoCall(call, pragma[only_bind_into](arg), pragma[only_bind_into](p), allowsFieldFlow,
-        pragma[only_bind_into](config)) and
-      fwdFlow(arg, _, _, _, _, _, pragma[only_bind_into](config)) and
-      returnFlowsThrough(_, _, _, _, p.asNode(), _, _, pragma[only_bind_into](config))
+      exists(Ap argAp |
+        flowIntoCall(call, pragma[only_bind_into](arg), pragma[only_bind_into](p), allowsFieldFlow,
+          pragma[only_bind_into](config)) and
+        fwdFlow(arg, _, _, _, _, pragma[only_bind_into](argAp), pragma[only_bind_into](config)) and
+        returnFlowsThrough(_, _, _, _, p, pragma[only_bind_into](argAp), _,
+          pragma[only_bind_into](config))
+      )
     }
 
     /**
@@ -1591,21 +1626,25 @@ private module MkStage<StageSig PrevStage> {
       )
       or
       // flow into a callable
-      revFlowInNotToReturn(node, state, returnAp, ap, config) and
-      returnCtx = TReturnCtxNone()
+      exists(ParamNodeEx p, boolean allowsFieldFlow |
+        revFlow(p, state, TReturnCtxNone(), returnAp, ap, config) and
+        flowIntoCall(_, node, p, allowsFieldFlow, config) and
+        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
+        returnCtx = TReturnCtxNone()
+      )
       or
       // flow through a callable
-      exists(DataFlowCall call, ReturnPosition returnPos0, Ap returnAp0 |
-        revFlowInToReturn(call, node, state, returnPos0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnPos0, returnAp0, config)
+      exists(DataFlowCall call, ReturnKindExt returnKind0, Ap returnAp0 |
+        revFlowInToReturn(call, node, state, returnKind0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
       )
       or
       // flow out of a callable
-      exists(ReturnPosition pos |
-        revFlowOut(_, node, pos, state, _, _, ap, config) and
-        if returnFlowsThrough(node, pos, state, _, _, _, ap, config)
+      exists(ReturnKindExt kind |
+        revFlowOut(_, node, kind, state, _, _, ap, config) and
+        if returnFlowsThrough(node, kind, state, _, _, _, ap, config)
         then (
-          returnCtx = TReturnCtxMaybeFlowThrough(pos) and
+          returnCtx = TReturnCtxMaybeFlowThrough(kind) and
           returnAp = apSome(ap)
         ) else (
           returnCtx = TReturnCtxNoFlowThrough() and returnAp = apNone()
@@ -1638,37 +1677,27 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate revFlowOut(
-      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, FlowState state, ReturnCtx returnCtx,
+      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, FlowState state, ReturnCtx returnCtx,
       ApOption returnAp, Ap ap, Configuration config
     ) {
       exists(NodeEx out, boolean allowsFieldFlow |
         revFlow(out, state, returnCtx, returnAp, ap, config) and
-        flowOutOfCall(call, ret, pos, out, allowsFieldFlow, config) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
-      )
-    }
-
-    pragma[nomagic]
-    private predicate revFlowInNotToReturn(
-      ArgNodeEx arg, FlowState state, ApOption returnAp, Ap ap, Configuration config
-    ) {
-      exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(p, state, TReturnCtxNone(), returnAp, ap, config) and
-        flowIntoCall(_, arg, p, allowsFieldFlow, config) and
+        flowOutOfCall(call, ret, kind, out, allowsFieldFlow, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
     pragma[nomagic]
     private predicate revFlowInToReturn(
-      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnPosition returnPos, Ap returnAp,
-      Ap ap, Configuration config
+      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap,
+      Configuration config
     ) {
       exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(p, state, TReturnCtxMaybeFlowThrough(returnPos), apSome(returnAp), ap, config) and
+        revFlow(pragma[only_bind_into](p), state,
+          TReturnCtxMaybeFlowThrough(pragma[only_bind_into](kind)), apSome(returnAp), ap, config) and
         flowThroughIntoCall(call, arg, p, allowsFieldFlow, config) and
         (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
-        parameterFlowThroughAllowed(p.asNode(), returnPos.getKind())
+        parameterFlowThroughAllowed(p, kind)
       )
     }
 
@@ -1679,12 +1708,12 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate revFlowIsReturned(
-      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnPosition pos, Ap ap,
+      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnKindExt kind, Ap ap,
       Configuration config
     ) {
       exists(RetNodeEx ret, FlowState state, CcCall ccc |
-        revFlowOut(call, ret, pos, state, returnCtx, returnAp, ap, config) and
-        returnFlowsThrough(ret, pos, state, ccc, _, _, ap, config) and
+        revFlowOut(call, ret, kind, state, returnCtx, returnAp, ap, config) and
+        returnFlowsThrough(ret, kind, state, ccc, _, _, ap, config) and
         matchesCall(ccc, call)
       )
     }
@@ -1757,37 +1786,37 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate parameterFlowsThroughRev(
-      ParamNodeEx p, Ap ap, ReturnPosition returnPos, Configuration config
+      ParamNodeEx p, Ap ap, ReturnKindExt kind, Configuration config
     ) {
-      revFlow(p, _, TReturnCtxMaybeFlowThrough(returnPos), apSome(_), ap, config) and
-      parameterFlowThroughAllowed(p.asNode(), returnPos.getKind())
+      revFlow(p, _, TReturnCtxMaybeFlowThrough(kind), apSome(_), ap, config) and
+      parameterFlowThroughAllowed(p, kind)
     }
 
     pragma[nomagic]
     predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
-      exists(RetNodeEx ret, ReturnPosition pos |
-        returnFlowsThrough(ret, pos, _, _, p.asNode(), ap, _, config) and
-        parameterFlowsThroughRev(p, ap, pos, config)
+      exists(RetNodeEx ret, ReturnKindExt kind |
+        returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
+        parameterFlowsThroughRev(p, ap, kind, config)
       )
     }
 
     pragma[nomagic]
-    predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config) {
+    predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config) {
       exists(ParamNodeEx p, Ap ap |
-        returnFlowsThrough(ret, pos, _, _, p.asNode(), ap, _, config) and
-        parameterFlowsThroughRev(p, ap, pos, config)
+        returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
+        parameterFlowsThroughRev(p, ap, kind, config)
       )
     }
 
     pragma[nomagic]
     predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
       exists(
-        ReturnPosition returnPos0, Ap returnAp0, ArgNodeEx arg, FlowState state,
+        ReturnKindExt returnKind0, Ap returnAp0, ArgNodeEx arg, FlowState state,
         ReturnCtx returnCtx, ApOption returnAp, Ap ap
       |
         revFlow(arg, state, returnCtx, returnAp, ap, config) and
-        revFlowInToReturn(call, arg, state, returnPos0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnPos0, returnAp0, config)
+        revFlowInToReturn(call, arg, state, returnKind0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
       )
     }
 
@@ -1800,9 +1829,8 @@ private module MkStage<StageSig PrevStage> {
       conscand = count(TypedContent f0, Ap ap | fwdConsCand(f0, ap, config)) and
       states = count(FlowState state | fwdFlow(_, state, _, _, _, _, config)) and
       tuples =
-        count(NodeEx n, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap |
-          fwdFlow(n, state, cc, summaryCtx, argAp, ap, config)
-        )
+        count(NodeEx n, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+          Ap ap | fwdFlow(n, state, cc, summaryCtx, argAp, ap, config))
       or
       fwd = false and
       nodes = count(NodeEx node | revFlow(node, _, _, _, _, config)) and
@@ -1992,10 +2020,10 @@ private module Stage2 implements StageSig {
 
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand2(
-  DataFlowCall call, RetNodeEx node1, ReturnPosition pos, NodeEx node2, boolean allowsFieldFlow,
+  DataFlowCall call, RetNodeEx node1, ReturnKindExt kind, NodeEx node2, boolean allowsFieldFlow,
   Configuration config
 ) {
-  flowOutOfCallNodeCand1(call, node1, pos, node2, allowsFieldFlow, config) and
+  flowOutOfCallNodeCand1(call, node1, kind, node2, allowsFieldFlow, config) and
   Stage2::revFlow(node2, pragma[only_bind_into](config)) and
   Stage2::revFlowAlias(node1, pragma[only_bind_into](config))
 }
@@ -2511,11 +2539,11 @@ private module Stage4Param implements MkStage<Stage3>::StageParam {
 
   pragma[nomagic]
   predicate flowOutOfCall(
-    DataFlowCall call, RetNodeEx node1, ReturnPosition pos, NodeEx node2, boolean allowsFieldFlow,
+    DataFlowCall call, RetNodeEx node1, ReturnKindExt kind, NodeEx node2, boolean allowsFieldFlow,
     Configuration config
   ) {
     exists(FlowState state |
-      flowOutOfCallNodeCand2(call, node1, pos, node2, allowsFieldFlow, config) and
+      flowOutOfCallNodeCand2(call, node1, kind, node2, allowsFieldFlow, config) and
       PrevStage::revFlow(node2, pragma[only_bind_into](state), _, pragma[only_bind_into](config)) and
       PrevStage::revFlowAlias(node1, pragma[only_bind_into](state), _,
         pragma[only_bind_into](config))
@@ -2552,12 +2580,13 @@ private Configuration unbindConf(Configuration conf) {
 
 pragma[nomagic]
 private predicate nodeMayUseSummary0(
-  NodeEx n, ParamNodeEx p, FlowState state, AccessPathApprox apa, Configuration config
+  NodeEx n, DataFlowCallable c, ParameterPosition pos, FlowState state, AccessPathApprox apa,
+  Configuration config
 ) {
   exists(AccessPathApprox apa0 |
-    Stage4::parameterMayFlowThrough(p, _, _) and
+    c = n.getEnclosingCallable() and
     Stage4::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
-    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TParamNodeSome(p.asNode()),
+    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TParameterPositionSome(pos),
       TAccessPathApproxSome(apa), apa0, config)
   )
 }
@@ -2566,9 +2595,10 @@ pragma[nomagic]
 private predicate nodeMayUseSummary(
   NodeEx n, FlowState state, AccessPathApprox apa, Configuration config
 ) {
-  exists(ParamNodeEx p |
+  exists(DataFlowCallable c, ParameterPosition pos, ParamNodeEx p |
     Stage4::parameterMayFlowThrough(p, apa, config) and
-    nodeMayUseSummary0(n, p, state, apa, config)
+    nodeMayUseSummary0(n, c, pos, state, apa, config) and
+    p.isParameterOf(c, pos)
   )
 }
 
@@ -3501,7 +3531,7 @@ private predicate paramFlowsThrough(
     pathNode(mid, ret, state, cc, sc, ap, config, _) and
     kind = ret.getKind() and
     apa = ap.getApprox() and
-    parameterFlowThroughAllowed(sc.getParamNode().asNode(), kind)
+    parameterFlowThroughAllowed(sc.getParamNode(), kind)
   )
 }
 
diff --git a/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImpl2.qll b/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImpl2.qll
index a52ad110662..e4cfd5986be 100644
--- a/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImpl2.qll
+++ b/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImpl2.qll
@@ -613,11 +613,28 @@ private predicate hasSinkCallCtx(Configuration config) {
  * explicitly allowed
  */
 bindingset[p, kind]
-private predicate parameterFlowThroughAllowed(ParamNode p, ReturnKindExt kind) {
+private predicate parameterFlowThroughAllowed(ParamNodeEx p, ReturnKindExt kind) {
   exists(ParameterPosition pos | p.isParameterOf(_, pos) |
     not kind.(ParamUpdateReturnKind).getPosition() = pos
     or
-    allowParameterReturnInSelfCached(p)
+    allowParameterReturnInSelfCached(p.asNode())
+  )
+}
+
+/**
+ * Holds if flow from a parameter at position `pos` inside `c` to a return node of
+ * kind `kind` is allowed.
+ *
+ * We don't expect a parameter to return stored in itself, unless
+ * explicitly allowed
+ */
+bindingset[c, pos, kind]
+private predicate parameterFlowThroughAllowed(
+  DataFlowCallable c, ParameterPosition pos, ReturnKindExt kind
+) {
+  exists(ParamNodeEx p |
+    p.isParameterOf(c, pos) and
+    parameterFlowThroughAllowed(p, kind)
   )
 }
 
@@ -1000,14 +1017,14 @@ private module Stage1 implements StageSig {
       returnFlowCallableNodeCand(c, kind, config) and
       p.getEnclosingCallable() = c and
       exists(ap) and
-      parameterFlowThroughAllowed(p.asNode(), kind)
+      parameterFlowThroughAllowed(p, kind)
     )
   }
 
   pragma[nomagic]
-  predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config) {
+  predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config) {
     throughFlowNodeCand(ret, config) and
-    pos = ret.getReturnPosition()
+    kind = ret.getKind()
   }
 
   pragma[nomagic]
@@ -1066,13 +1083,16 @@ private predicate viableReturnPosOutNodeCand1(
  */
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand1(
-  DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, Configuration config
+  DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, Configuration config
 ) {
-  viableReturnPosOutNodeCand1(call, pos, out, config) and
-  pos = ret.getReturnPosition() and
-  Stage1::revFlow(ret, config) and
-  not outBarrier(ret, config) and
-  not inBarrier(out, config)
+  exists(ReturnPosition pos |
+    viableReturnPosOutNodeCand1(call, pos, out, config) and
+    pos = ret.getReturnPosition() and
+    kind = pos.getKind() and
+    Stage1::revFlow(ret, config) and
+    not outBarrier(ret, config) and
+    not inBarrier(out, config)
+  )
 }
 
 pragma[nomagic]
@@ -1102,6 +1122,7 @@ private predicate flowIntoCallNodeCand1(
  * edge in the graph of paths between sources and sinks that ignores call
  * contexts.
  */
+pragma[nomagic]
 private int branch(NodeEx n1, Configuration conf) {
   result =
     strictcount(NodeEx n |
@@ -1114,6 +1135,7 @@ private int branch(NodeEx n1, Configuration conf) {
  * edge in the graph of paths between sources and sinks that ignores call
  * contexts.
  */
+pragma[nomagic]
 private int join(NodeEx n2, Configuration conf) {
   result =
     strictcount(NodeEx n |
@@ -1130,10 +1152,10 @@ private int join(NodeEx n2, Configuration conf) {
  */
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand1(
-  DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
+  DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
   Configuration config
 ) {
-  flowOutOfCallNodeCand1(call, ret, pos, out, pragma[only_bind_into](config)) and
+  flowOutOfCallNodeCand1(call, ret, kind, out, pragma[only_bind_into](config)) and
   exists(int b, int j |
     b = branch(ret, pragma[only_bind_into](config)) and
     j = join(out, pragma[only_bind_into](config)) and
@@ -1152,10 +1174,10 @@ pragma[nomagic]
 private predicate flowIntoCallNodeCand1(
   DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
 ) {
-  flowIntoCallNodeCand1(call, arg, p, config) and
+  flowIntoCallNodeCand1(call, arg, p, pragma[only_bind_into](config)) and
   exists(int b, int j |
-    b = branch(arg, config) and
-    j = join(p, config) and
+    b = branch(arg, pragma[only_bind_into](config)) and
+    j = join(p, pragma[only_bind_into](config)) and
     if b.minimum(j) <= config.fieldFlowBranchLimit()
     then allowsFieldFlow = true
     else allowsFieldFlow = false
@@ -1174,7 +1196,7 @@ private signature module StageSig {
 
   predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config);
 
-  predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config);
+  predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config);
 
   predicate storeStepCand(
     NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, DataFlowType contentType,
@@ -1240,7 +1262,7 @@ private module MkStage<StageSig PrevStage> {
     );
 
     predicate flowOutOfCall(
-      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
+      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
       Configuration config
     );
 
@@ -1266,16 +1288,14 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate flowThroughOutOfCall(
-      DataFlowCall call, CcCall ccc, RetNodeEx ret, ReturnKindExt kind, NodeEx out,
-      boolean allowsFieldFlow, Configuration config
+      DataFlowCall call, DataFlowCallable c, CcCall ccc, RetNodeEx ret, ReturnKindExt kind,
+      NodeEx out, boolean allowsFieldFlow, Configuration config
     ) {
-      exists(ReturnPosition pos |
-        flowOutOfCall(call, ret, pos, out, allowsFieldFlow, pragma[only_bind_into](config)) and
-        kind = pos.getKind() and
-        PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
-        PrevStage::returnMayFlowThrough(ret, pos, pragma[only_bind_into](config)) and
-        matchesCall(ccc, call)
-      )
+      flowOutOfCall(call, ret, kind, out, allowsFieldFlow, pragma[only_bind_into](config)) and
+      PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
+      PrevStage::returnMayFlowThrough(ret, kind, pragma[only_bind_into](config)) and
+      matchesCall(ccc, call) and
+      c = ret.getEnclosingCallable()
     }
 
     /**
@@ -1284,12 +1304,12 @@ private module MkStage<StageSig PrevStage> {
      *
      * The call context `cc` records whether the node is reached through an
      * argument in a call, and if so, `summaryCtx` and `argAp` record the
-     * corresponding parameter and access path of that argument, respectively.
+     * corresponding parameter position and access path of that argument, respectively.
      */
     pragma[nomagic]
     additional predicate fwdFlow(
-      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
-      Configuration config
+      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      Ap ap, Configuration config
     ) {
       fwdFlow0(node, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::revFlow(node, state, unbindApa(getApprox(ap)), config) and
@@ -1298,13 +1318,13 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlow0(
-      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
-      Configuration config
+      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      Ap ap, Configuration config
     ) {
       sourceNode(node, state, config) and
       (if hasSourceCallCtx(config) then cc = ccSomeCall() else cc = ccNone()) and
       argAp = apNone() and
-      summaryCtx = TParamNodeNone() and
+      summaryCtx = TParameterPositionNone() and
       ap = getApNil(node)
       or
       exists(NodeEx mid, FlowState state0, Ap ap0, LocalCc localCc |
@@ -1322,7 +1342,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, pragma[only_bind_into](config)) and
         jumpStep(mid, node, config) and
         cc = ccNone() and
-        summaryCtx = TParamNodeNone() and
+        summaryCtx = TParameterPositionNone() and
         argAp = apNone()
       )
       or
@@ -1330,7 +1350,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, state, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStep(mid, node, config) and
         cc = ccNone() and
-        summaryCtx = TParamNodeNone() and
+        summaryCtx = TParameterPositionNone() and
         argAp = apNone() and
         ap = getApNil(node)
       )
@@ -1339,7 +1359,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, state0, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStateStep(mid, state0, node, state, config) and
         cc = ccNone() and
-        summaryCtx = TParamNodeNone() and
+        summaryCtx = TParameterPositionNone() and
         argAp = apNone() and
         ap = getApNil(node)
       )
@@ -1362,17 +1382,27 @@ private module MkStage<StageSig PrevStage> {
         apa = getApprox(ap) and
         if PrevStage::parameterMayFlowThrough(node, apa, config)
         then (
-          summaryCtx = TParamNodeSome(node.asNode()) and argAp = apSome(ap)
+          summaryCtx = TParameterPositionSome(node.(ParamNodeEx).getPosition()) and
+          argAp = apSome(ap)
         ) else (
-          summaryCtx = TParamNodeNone() and argAp = apNone()
+          summaryCtx = TParameterPositionNone() and argAp = apNone()
         )
       )
       or
       // flow out of a callable
-      fwdFlowOutNotFromArg(node, state, cc, summaryCtx, argAp, ap, config)
+      exists(
+        DataFlowCall call, RetNodeEx ret, boolean allowsFieldFlow, CcNoCall innercc,
+        DataFlowCallable inner
+      |
+        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, config) and
+        flowOutOfCall(call, ret, _, node, allowsFieldFlow, config) and
+        inner = ret.getEnclosingCallable() and
+        cc = getCallContextReturn(inner, call, innercc) and
+        if allowsFieldFlow = false then ap instanceof ApNil else any()
+      )
       or
       // flow through a callable
-      exists(DataFlowCall call, ParamNode summaryCtx0, Ap argAp0 |
+      exists(DataFlowCall call, ParameterPosition summaryCtx0, Ap argAp0 |
         fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, config) and
         fwdFlowIsEntered(call, cc, summaryCtx, argAp, summaryCtx0, argAp0, config)
       )
@@ -1381,7 +1411,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowStore(
       NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc,
-      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
+      ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
     ) {
       exists(DataFlowType contentType |
         fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, config) and
@@ -1406,7 +1436,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowRead(
       Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc,
-      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
+      ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
     ) {
       fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, c, node2, config) and
@@ -1416,7 +1446,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowIn(
       DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, Cc innercc,
-      ParamNodeOption summaryCtx, ApOption argAp, Ap ap, Configuration config
+      ParameterPositionOption summaryCtx, ApOption argAp, Ap ap, Configuration config
     ) {
       exists(ArgNodeEx arg, boolean allowsFieldFlow |
         fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, config) and
@@ -1427,32 +1457,19 @@ private module MkStage<StageSig PrevStage> {
     }
 
     pragma[nomagic]
-    private predicate fwdFlowOutNotFromArg(
-      NodeEx out, FlowState state, Cc ccOut, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+    private predicate fwdFlowOutFromArg(
+      DataFlowCall call, NodeEx out, FlowState state, ParameterPosition summaryCtx, Ap argAp, Ap ap,
       Configuration config
     ) {
       exists(
-        DataFlowCall call, RetNodeEx ret, boolean allowsFieldFlow, CcNoCall innercc,
-        DataFlowCallable inner
+        DataFlowCallable c, RetNodeEx ret, ReturnKindExt kind, boolean allowsFieldFlow, CcCall ccc
       |
-        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, config) and
-        flowOutOfCall(call, ret, _, out, allowsFieldFlow, config) and
-        inner = ret.getEnclosingCallable() and
-        ccOut = getCallContextReturn(inner, call, innercc) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
-      )
-    }
-
-    pragma[nomagic]
-    private predicate fwdFlowOutFromArg(
-      DataFlowCall call, NodeEx out, FlowState state, ParamNode summaryCtx, Ap argAp, Ap ap,
-      Configuration config
-    ) {
-      exists(RetNodeEx ret, ReturnKindExt kind, boolean allowsFieldFlow, CcCall ccc |
-        fwdFlow(ret, state, ccc, TParamNodeSome(summaryCtx), apSome(argAp), ap, config) and
-        flowThroughOutOfCall(call, ccc, ret, kind, out, allowsFieldFlow, config) and
+        fwdFlow(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc),
+          TParameterPositionSome(pragma[only_bind_into](summaryCtx)), apSome(argAp), ap, config) and
+        flowThroughOutOfCall(call, pragma[only_bind_into](c), ccc, ret, kind, out, allowsFieldFlow,
+          config) and
         (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
-        parameterFlowThroughAllowed(summaryCtx, kind)
+        parameterFlowThroughAllowed(c, pragma[only_bind_into](summaryCtx), kind)
       )
     }
 
@@ -1462,13 +1479,13 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate fwdFlowIsEntered(
-      DataFlowCall call, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, ParamNode p, Ap ap,
-      Configuration config
+      DataFlowCall call, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      ParameterPosition pos, Ap ap, Configuration config
     ) {
       exists(ParamNodeEx param |
         fwdFlowIn(call, param, _, cc, _, summaryCtx, argAp, ap, config) and
         PrevStage::parameterMayFlowThrough(param, unbindApa(getApprox(ap)), config) and
-        p = param.asNode()
+        pos = param.getPosition()
       )
     }
 
@@ -1489,23 +1506,41 @@ private module MkStage<StageSig PrevStage> {
     }
 
     pragma[nomagic]
-    private predicate returnFlowsThrough(
-      RetNodeEx ret, ReturnPosition pos, FlowState state, CcCall ccc, ParamNode p, Ap argAp, Ap ap,
-      Configuration config
+    private predicate returnFlowsThrough0(
+      RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, DataFlowCallable c,
+      ParameterPosition ppos, Ap argAp, Ap ap, Configuration config
     ) {
-      fwdFlow(ret, state, ccc, TParamNodeSome(p), apSome(argAp), ap, config) and
-      pos = ret.getReturnPosition() and
-      parameterFlowThroughAllowed(p, pos.getKind())
+      exists(boolean allowsFieldFlow |
+        fwdFlow(ret, state, ccc, TParameterPositionSome(ppos), apSome(argAp), ap, config) and
+        flowThroughOutOfCall(_, c, _, pragma[only_bind_into](ret), kind, _, allowsFieldFlow,
+          pragma[only_bind_into](config)) and
+        if allowsFieldFlow = false then ap instanceof ApNil else any()
+      )
+    }
+
+    pragma[nomagic]
+    private predicate returnFlowsThrough(
+      RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, ParamNodeEx p, Ap argAp,
+      Ap ap, Configuration config
+    ) {
+      exists(DataFlowCallable c, ParameterPosition ppos |
+        returnFlowsThrough0(ret, kind, state, ccc, c, ppos, argAp, ap, config) and
+        p.isParameterOf(c, ppos) and
+        parameterFlowThroughAllowed(p, kind)
+      )
     }
 
     pragma[nomagic]
     private predicate flowThroughIntoCall(
       DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
     ) {
-      flowIntoCall(call, pragma[only_bind_into](arg), pragma[only_bind_into](p), allowsFieldFlow,
-        pragma[only_bind_into](config)) and
-      fwdFlow(arg, _, _, _, _, _, pragma[only_bind_into](config)) and
-      returnFlowsThrough(_, _, _, _, p.asNode(), _, _, pragma[only_bind_into](config))
+      exists(Ap argAp |
+        flowIntoCall(call, pragma[only_bind_into](arg), pragma[only_bind_into](p), allowsFieldFlow,
+          pragma[only_bind_into](config)) and
+        fwdFlow(arg, _, _, _, _, pragma[only_bind_into](argAp), pragma[only_bind_into](config)) and
+        returnFlowsThrough(_, _, _, _, p, pragma[only_bind_into](argAp), _,
+          pragma[only_bind_into](config))
+      )
     }
 
     /**
@@ -1591,21 +1626,25 @@ private module MkStage<StageSig PrevStage> {
       )
       or
       // flow into a callable
-      revFlowInNotToReturn(node, state, returnAp, ap, config) and
-      returnCtx = TReturnCtxNone()
+      exists(ParamNodeEx p, boolean allowsFieldFlow |
+        revFlow(p, state, TReturnCtxNone(), returnAp, ap, config) and
+        flowIntoCall(_, node, p, allowsFieldFlow, config) and
+        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
+        returnCtx = TReturnCtxNone()
+      )
       or
       // flow through a callable
-      exists(DataFlowCall call, ReturnPosition returnPos0, Ap returnAp0 |
-        revFlowInToReturn(call, node, state, returnPos0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnPos0, returnAp0, config)
+      exists(DataFlowCall call, ReturnKindExt returnKind0, Ap returnAp0 |
+        revFlowInToReturn(call, node, state, returnKind0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
       )
       or
       // flow out of a callable
-      exists(ReturnPosition pos |
-        revFlowOut(_, node, pos, state, _, _, ap, config) and
-        if returnFlowsThrough(node, pos, state, _, _, _, ap, config)
+      exists(ReturnKindExt kind |
+        revFlowOut(_, node, kind, state, _, _, ap, config) and
+        if returnFlowsThrough(node, kind, state, _, _, _, ap, config)
         then (
-          returnCtx = TReturnCtxMaybeFlowThrough(pos) and
+          returnCtx = TReturnCtxMaybeFlowThrough(kind) and
           returnAp = apSome(ap)
         ) else (
           returnCtx = TReturnCtxNoFlowThrough() and returnAp = apNone()
@@ -1638,37 +1677,27 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate revFlowOut(
-      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, FlowState state, ReturnCtx returnCtx,
+      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, FlowState state, ReturnCtx returnCtx,
       ApOption returnAp, Ap ap, Configuration config
     ) {
       exists(NodeEx out, boolean allowsFieldFlow |
         revFlow(out, state, returnCtx, returnAp, ap, config) and
-        flowOutOfCall(call, ret, pos, out, allowsFieldFlow, config) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
-      )
-    }
-
-    pragma[nomagic]
-    private predicate revFlowInNotToReturn(
-      ArgNodeEx arg, FlowState state, ApOption returnAp, Ap ap, Configuration config
-    ) {
-      exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(p, state, TReturnCtxNone(), returnAp, ap, config) and
-        flowIntoCall(_, arg, p, allowsFieldFlow, config) and
+        flowOutOfCall(call, ret, kind, out, allowsFieldFlow, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
     pragma[nomagic]
     private predicate revFlowInToReturn(
-      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnPosition returnPos, Ap returnAp,
-      Ap ap, Configuration config
+      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap,
+      Configuration config
     ) {
       exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(p, state, TReturnCtxMaybeFlowThrough(returnPos), apSome(returnAp), ap, config) and
+        revFlow(pragma[only_bind_into](p), state,
+          TReturnCtxMaybeFlowThrough(pragma[only_bind_into](kind)), apSome(returnAp), ap, config) and
         flowThroughIntoCall(call, arg, p, allowsFieldFlow, config) and
         (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
-        parameterFlowThroughAllowed(p.asNode(), returnPos.getKind())
+        parameterFlowThroughAllowed(p, kind)
       )
     }
 
@@ -1679,12 +1708,12 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate revFlowIsReturned(
-      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnPosition pos, Ap ap,
+      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnKindExt kind, Ap ap,
       Configuration config
     ) {
       exists(RetNodeEx ret, FlowState state, CcCall ccc |
-        revFlowOut(call, ret, pos, state, returnCtx, returnAp, ap, config) and
-        returnFlowsThrough(ret, pos, state, ccc, _, _, ap, config) and
+        revFlowOut(call, ret, kind, state, returnCtx, returnAp, ap, config) and
+        returnFlowsThrough(ret, kind, state, ccc, _, _, ap, config) and
         matchesCall(ccc, call)
       )
     }
@@ -1757,37 +1786,37 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate parameterFlowsThroughRev(
-      ParamNodeEx p, Ap ap, ReturnPosition returnPos, Configuration config
+      ParamNodeEx p, Ap ap, ReturnKindExt kind, Configuration config
     ) {
-      revFlow(p, _, TReturnCtxMaybeFlowThrough(returnPos), apSome(_), ap, config) and
-      parameterFlowThroughAllowed(p.asNode(), returnPos.getKind())
+      revFlow(p, _, TReturnCtxMaybeFlowThrough(kind), apSome(_), ap, config) and
+      parameterFlowThroughAllowed(p, kind)
     }
 
     pragma[nomagic]
     predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
-      exists(RetNodeEx ret, ReturnPosition pos |
-        returnFlowsThrough(ret, pos, _, _, p.asNode(), ap, _, config) and
-        parameterFlowsThroughRev(p, ap, pos, config)
+      exists(RetNodeEx ret, ReturnKindExt kind |
+        returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
+        parameterFlowsThroughRev(p, ap, kind, config)
       )
     }
 
     pragma[nomagic]
-    predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config) {
+    predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config) {
       exists(ParamNodeEx p, Ap ap |
-        returnFlowsThrough(ret, pos, _, _, p.asNode(), ap, _, config) and
-        parameterFlowsThroughRev(p, ap, pos, config)
+        returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
+        parameterFlowsThroughRev(p, ap, kind, config)
       )
     }
 
     pragma[nomagic]
     predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
       exists(
-        ReturnPosition returnPos0, Ap returnAp0, ArgNodeEx arg, FlowState state,
+        ReturnKindExt returnKind0, Ap returnAp0, ArgNodeEx arg, FlowState state,
         ReturnCtx returnCtx, ApOption returnAp, Ap ap
       |
         revFlow(arg, state, returnCtx, returnAp, ap, config) and
-        revFlowInToReturn(call, arg, state, returnPos0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnPos0, returnAp0, config)
+        revFlowInToReturn(call, arg, state, returnKind0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
       )
     }
 
@@ -1800,9 +1829,8 @@ private module MkStage<StageSig PrevStage> {
       conscand = count(TypedContent f0, Ap ap | fwdConsCand(f0, ap, config)) and
       states = count(FlowState state | fwdFlow(_, state, _, _, _, _, config)) and
       tuples =
-        count(NodeEx n, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap |
-          fwdFlow(n, state, cc, summaryCtx, argAp, ap, config)
-        )
+        count(NodeEx n, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+          Ap ap | fwdFlow(n, state, cc, summaryCtx, argAp, ap, config))
       or
       fwd = false and
       nodes = count(NodeEx node | revFlow(node, _, _, _, _, config)) and
@@ -1992,10 +2020,10 @@ private module Stage2 implements StageSig {
 
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand2(
-  DataFlowCall call, RetNodeEx node1, ReturnPosition pos, NodeEx node2, boolean allowsFieldFlow,
+  DataFlowCall call, RetNodeEx node1, ReturnKindExt kind, NodeEx node2, boolean allowsFieldFlow,
   Configuration config
 ) {
-  flowOutOfCallNodeCand1(call, node1, pos, node2, allowsFieldFlow, config) and
+  flowOutOfCallNodeCand1(call, node1, kind, node2, allowsFieldFlow, config) and
   Stage2::revFlow(node2, pragma[only_bind_into](config)) and
   Stage2::revFlowAlias(node1, pragma[only_bind_into](config))
 }
@@ -2511,11 +2539,11 @@ private module Stage4Param implements MkStage<Stage3>::StageParam {
 
   pragma[nomagic]
   predicate flowOutOfCall(
-    DataFlowCall call, RetNodeEx node1, ReturnPosition pos, NodeEx node2, boolean allowsFieldFlow,
+    DataFlowCall call, RetNodeEx node1, ReturnKindExt kind, NodeEx node2, boolean allowsFieldFlow,
     Configuration config
   ) {
     exists(FlowState state |
-      flowOutOfCallNodeCand2(call, node1, pos, node2, allowsFieldFlow, config) and
+      flowOutOfCallNodeCand2(call, node1, kind, node2, allowsFieldFlow, config) and
       PrevStage::revFlow(node2, pragma[only_bind_into](state), _, pragma[only_bind_into](config)) and
       PrevStage::revFlowAlias(node1, pragma[only_bind_into](state), _,
         pragma[only_bind_into](config))
@@ -2552,12 +2580,13 @@ private Configuration unbindConf(Configuration conf) {
 
 pragma[nomagic]
 private predicate nodeMayUseSummary0(
-  NodeEx n, ParamNodeEx p, FlowState state, AccessPathApprox apa, Configuration config
+  NodeEx n, DataFlowCallable c, ParameterPosition pos, FlowState state, AccessPathApprox apa,
+  Configuration config
 ) {
   exists(AccessPathApprox apa0 |
-    Stage4::parameterMayFlowThrough(p, _, _) and
+    c = n.getEnclosingCallable() and
     Stage4::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
-    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TParamNodeSome(p.asNode()),
+    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TParameterPositionSome(pos),
       TAccessPathApproxSome(apa), apa0, config)
   )
 }
@@ -2566,9 +2595,10 @@ pragma[nomagic]
 private predicate nodeMayUseSummary(
   NodeEx n, FlowState state, AccessPathApprox apa, Configuration config
 ) {
-  exists(ParamNodeEx p |
+  exists(DataFlowCallable c, ParameterPosition pos, ParamNodeEx p |
     Stage4::parameterMayFlowThrough(p, apa, config) and
-    nodeMayUseSummary0(n, p, state, apa, config)
+    nodeMayUseSummary0(n, c, pos, state, apa, config) and
+    p.isParameterOf(c, pos)
   )
 }
 
@@ -3501,7 +3531,7 @@ private predicate paramFlowsThrough(
     pathNode(mid, ret, state, cc, sc, ap, config, _) and
     kind = ret.getKind() and
     apa = ap.getApprox() and
-    parameterFlowThroughAllowed(sc.getParamNode().asNode(), kind)
+    parameterFlowThroughAllowed(sc.getParamNode(), kind)
   )
 }
 
diff --git a/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImpl3.qll b/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImpl3.qll
index a52ad110662..e4cfd5986be 100644
--- a/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImpl3.qll
+++ b/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImpl3.qll
@@ -613,11 +613,28 @@ private predicate hasSinkCallCtx(Configuration config) {
  * explicitly allowed
  */
 bindingset[p, kind]
-private predicate parameterFlowThroughAllowed(ParamNode p, ReturnKindExt kind) {
+private predicate parameterFlowThroughAllowed(ParamNodeEx p, ReturnKindExt kind) {
   exists(ParameterPosition pos | p.isParameterOf(_, pos) |
     not kind.(ParamUpdateReturnKind).getPosition() = pos
     or
-    allowParameterReturnInSelfCached(p)
+    allowParameterReturnInSelfCached(p.asNode())
+  )
+}
+
+/**
+ * Holds if flow from a parameter at position `pos` inside `c` to a return node of
+ * kind `kind` is allowed.
+ *
+ * We don't expect a parameter to return stored in itself, unless
+ * explicitly allowed
+ */
+bindingset[c, pos, kind]
+private predicate parameterFlowThroughAllowed(
+  DataFlowCallable c, ParameterPosition pos, ReturnKindExt kind
+) {
+  exists(ParamNodeEx p |
+    p.isParameterOf(c, pos) and
+    parameterFlowThroughAllowed(p, kind)
   )
 }
 
@@ -1000,14 +1017,14 @@ private module Stage1 implements StageSig {
       returnFlowCallableNodeCand(c, kind, config) and
       p.getEnclosingCallable() = c and
       exists(ap) and
-      parameterFlowThroughAllowed(p.asNode(), kind)
+      parameterFlowThroughAllowed(p, kind)
     )
   }
 
   pragma[nomagic]
-  predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config) {
+  predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config) {
     throughFlowNodeCand(ret, config) and
-    pos = ret.getReturnPosition()
+    kind = ret.getKind()
   }
 
   pragma[nomagic]
@@ -1066,13 +1083,16 @@ private predicate viableReturnPosOutNodeCand1(
  */
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand1(
-  DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, Configuration config
+  DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, Configuration config
 ) {
-  viableReturnPosOutNodeCand1(call, pos, out, config) and
-  pos = ret.getReturnPosition() and
-  Stage1::revFlow(ret, config) and
-  not outBarrier(ret, config) and
-  not inBarrier(out, config)
+  exists(ReturnPosition pos |
+    viableReturnPosOutNodeCand1(call, pos, out, config) and
+    pos = ret.getReturnPosition() and
+    kind = pos.getKind() and
+    Stage1::revFlow(ret, config) and
+    not outBarrier(ret, config) and
+    not inBarrier(out, config)
+  )
 }
 
 pragma[nomagic]
@@ -1102,6 +1122,7 @@ private predicate flowIntoCallNodeCand1(
  * edge in the graph of paths between sources and sinks that ignores call
  * contexts.
  */
+pragma[nomagic]
 private int branch(NodeEx n1, Configuration conf) {
   result =
     strictcount(NodeEx n |
@@ -1114,6 +1135,7 @@ private int branch(NodeEx n1, Configuration conf) {
  * edge in the graph of paths between sources and sinks that ignores call
  * contexts.
  */
+pragma[nomagic]
 private int join(NodeEx n2, Configuration conf) {
   result =
     strictcount(NodeEx n |
@@ -1130,10 +1152,10 @@ private int join(NodeEx n2, Configuration conf) {
  */
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand1(
-  DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
+  DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
   Configuration config
 ) {
-  flowOutOfCallNodeCand1(call, ret, pos, out, pragma[only_bind_into](config)) and
+  flowOutOfCallNodeCand1(call, ret, kind, out, pragma[only_bind_into](config)) and
   exists(int b, int j |
     b = branch(ret, pragma[only_bind_into](config)) and
     j = join(out, pragma[only_bind_into](config)) and
@@ -1152,10 +1174,10 @@ pragma[nomagic]
 private predicate flowIntoCallNodeCand1(
   DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
 ) {
-  flowIntoCallNodeCand1(call, arg, p, config) and
+  flowIntoCallNodeCand1(call, arg, p, pragma[only_bind_into](config)) and
   exists(int b, int j |
-    b = branch(arg, config) and
-    j = join(p, config) and
+    b = branch(arg, pragma[only_bind_into](config)) and
+    j = join(p, pragma[only_bind_into](config)) and
     if b.minimum(j) <= config.fieldFlowBranchLimit()
     then allowsFieldFlow = true
     else allowsFieldFlow = false
@@ -1174,7 +1196,7 @@ private signature module StageSig {
 
   predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config);
 
-  predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config);
+  predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config);
 
   predicate storeStepCand(
     NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, DataFlowType contentType,
@@ -1240,7 +1262,7 @@ private module MkStage<StageSig PrevStage> {
     );
 
     predicate flowOutOfCall(
-      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
+      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
       Configuration config
     );
 
@@ -1266,16 +1288,14 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate flowThroughOutOfCall(
-      DataFlowCall call, CcCall ccc, RetNodeEx ret, ReturnKindExt kind, NodeEx out,
-      boolean allowsFieldFlow, Configuration config
+      DataFlowCall call, DataFlowCallable c, CcCall ccc, RetNodeEx ret, ReturnKindExt kind,
+      NodeEx out, boolean allowsFieldFlow, Configuration config
     ) {
-      exists(ReturnPosition pos |
-        flowOutOfCall(call, ret, pos, out, allowsFieldFlow, pragma[only_bind_into](config)) and
-        kind = pos.getKind() and
-        PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
-        PrevStage::returnMayFlowThrough(ret, pos, pragma[only_bind_into](config)) and
-        matchesCall(ccc, call)
-      )
+      flowOutOfCall(call, ret, kind, out, allowsFieldFlow, pragma[only_bind_into](config)) and
+      PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
+      PrevStage::returnMayFlowThrough(ret, kind, pragma[only_bind_into](config)) and
+      matchesCall(ccc, call) and
+      c = ret.getEnclosingCallable()
     }
 
     /**
@@ -1284,12 +1304,12 @@ private module MkStage<StageSig PrevStage> {
      *
      * The call context `cc` records whether the node is reached through an
      * argument in a call, and if so, `summaryCtx` and `argAp` record the
-     * corresponding parameter and access path of that argument, respectively.
+     * corresponding parameter position and access path of that argument, respectively.
      */
     pragma[nomagic]
     additional predicate fwdFlow(
-      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
-      Configuration config
+      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      Ap ap, Configuration config
     ) {
       fwdFlow0(node, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::revFlow(node, state, unbindApa(getApprox(ap)), config) and
@@ -1298,13 +1318,13 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlow0(
-      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
-      Configuration config
+      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      Ap ap, Configuration config
     ) {
       sourceNode(node, state, config) and
       (if hasSourceCallCtx(config) then cc = ccSomeCall() else cc = ccNone()) and
       argAp = apNone() and
-      summaryCtx = TParamNodeNone() and
+      summaryCtx = TParameterPositionNone() and
       ap = getApNil(node)
       or
       exists(NodeEx mid, FlowState state0, Ap ap0, LocalCc localCc |
@@ -1322,7 +1342,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, pragma[only_bind_into](config)) and
         jumpStep(mid, node, config) and
         cc = ccNone() and
-        summaryCtx = TParamNodeNone() and
+        summaryCtx = TParameterPositionNone() and
         argAp = apNone()
       )
       or
@@ -1330,7 +1350,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, state, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStep(mid, node, config) and
         cc = ccNone() and
-        summaryCtx = TParamNodeNone() and
+        summaryCtx = TParameterPositionNone() and
         argAp = apNone() and
         ap = getApNil(node)
       )
@@ -1339,7 +1359,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, state0, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStateStep(mid, state0, node, state, config) and
         cc = ccNone() and
-        summaryCtx = TParamNodeNone() and
+        summaryCtx = TParameterPositionNone() and
         argAp = apNone() and
         ap = getApNil(node)
       )
@@ -1362,17 +1382,27 @@ private module MkStage<StageSig PrevStage> {
         apa = getApprox(ap) and
         if PrevStage::parameterMayFlowThrough(node, apa, config)
         then (
-          summaryCtx = TParamNodeSome(node.asNode()) and argAp = apSome(ap)
+          summaryCtx = TParameterPositionSome(node.(ParamNodeEx).getPosition()) and
+          argAp = apSome(ap)
         ) else (
-          summaryCtx = TParamNodeNone() and argAp = apNone()
+          summaryCtx = TParameterPositionNone() and argAp = apNone()
         )
       )
       or
       // flow out of a callable
-      fwdFlowOutNotFromArg(node, state, cc, summaryCtx, argAp, ap, config)
+      exists(
+        DataFlowCall call, RetNodeEx ret, boolean allowsFieldFlow, CcNoCall innercc,
+        DataFlowCallable inner
+      |
+        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, config) and
+        flowOutOfCall(call, ret, _, node, allowsFieldFlow, config) and
+        inner = ret.getEnclosingCallable() and
+        cc = getCallContextReturn(inner, call, innercc) and
+        if allowsFieldFlow = false then ap instanceof ApNil else any()
+      )
       or
       // flow through a callable
-      exists(DataFlowCall call, ParamNode summaryCtx0, Ap argAp0 |
+      exists(DataFlowCall call, ParameterPosition summaryCtx0, Ap argAp0 |
         fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, config) and
         fwdFlowIsEntered(call, cc, summaryCtx, argAp, summaryCtx0, argAp0, config)
       )
@@ -1381,7 +1411,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowStore(
       NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc,
-      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
+      ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
     ) {
       exists(DataFlowType contentType |
         fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, config) and
@@ -1406,7 +1436,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowRead(
       Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc,
-      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
+      ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
     ) {
       fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, c, node2, config) and
@@ -1416,7 +1446,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowIn(
       DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, Cc innercc,
-      ParamNodeOption summaryCtx, ApOption argAp, Ap ap, Configuration config
+      ParameterPositionOption summaryCtx, ApOption argAp, Ap ap, Configuration config
     ) {
       exists(ArgNodeEx arg, boolean allowsFieldFlow |
         fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, config) and
@@ -1427,32 +1457,19 @@ private module MkStage<StageSig PrevStage> {
     }
 
     pragma[nomagic]
-    private predicate fwdFlowOutNotFromArg(
-      NodeEx out, FlowState state, Cc ccOut, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+    private predicate fwdFlowOutFromArg(
+      DataFlowCall call, NodeEx out, FlowState state, ParameterPosition summaryCtx, Ap argAp, Ap ap,
       Configuration config
     ) {
       exists(
-        DataFlowCall call, RetNodeEx ret, boolean allowsFieldFlow, CcNoCall innercc,
-        DataFlowCallable inner
+        DataFlowCallable c, RetNodeEx ret, ReturnKindExt kind, boolean allowsFieldFlow, CcCall ccc
       |
-        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, config) and
-        flowOutOfCall(call, ret, _, out, allowsFieldFlow, config) and
-        inner = ret.getEnclosingCallable() and
-        ccOut = getCallContextReturn(inner, call, innercc) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
-      )
-    }
-
-    pragma[nomagic]
-    private predicate fwdFlowOutFromArg(
-      DataFlowCall call, NodeEx out, FlowState state, ParamNode summaryCtx, Ap argAp, Ap ap,
-      Configuration config
-    ) {
-      exists(RetNodeEx ret, ReturnKindExt kind, boolean allowsFieldFlow, CcCall ccc |
-        fwdFlow(ret, state, ccc, TParamNodeSome(summaryCtx), apSome(argAp), ap, config) and
-        flowThroughOutOfCall(call, ccc, ret, kind, out, allowsFieldFlow, config) and
+        fwdFlow(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc),
+          TParameterPositionSome(pragma[only_bind_into](summaryCtx)), apSome(argAp), ap, config) and
+        flowThroughOutOfCall(call, pragma[only_bind_into](c), ccc, ret, kind, out, allowsFieldFlow,
+          config) and
         (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
-        parameterFlowThroughAllowed(summaryCtx, kind)
+        parameterFlowThroughAllowed(c, pragma[only_bind_into](summaryCtx), kind)
       )
     }
 
@@ -1462,13 +1479,13 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate fwdFlowIsEntered(
-      DataFlowCall call, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, ParamNode p, Ap ap,
-      Configuration config
+      DataFlowCall call, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      ParameterPosition pos, Ap ap, Configuration config
     ) {
       exists(ParamNodeEx param |
         fwdFlowIn(call, param, _, cc, _, summaryCtx, argAp, ap, config) and
         PrevStage::parameterMayFlowThrough(param, unbindApa(getApprox(ap)), config) and
-        p = param.asNode()
+        pos = param.getPosition()
       )
     }
 
@@ -1489,23 +1506,41 @@ private module MkStage<StageSig PrevStage> {
     }
 
     pragma[nomagic]
-    private predicate returnFlowsThrough(
-      RetNodeEx ret, ReturnPosition pos, FlowState state, CcCall ccc, ParamNode p, Ap argAp, Ap ap,
-      Configuration config
+    private predicate returnFlowsThrough0(
+      RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, DataFlowCallable c,
+      ParameterPosition ppos, Ap argAp, Ap ap, Configuration config
     ) {
-      fwdFlow(ret, state, ccc, TParamNodeSome(p), apSome(argAp), ap, config) and
-      pos = ret.getReturnPosition() and
-      parameterFlowThroughAllowed(p, pos.getKind())
+      exists(boolean allowsFieldFlow |
+        fwdFlow(ret, state, ccc, TParameterPositionSome(ppos), apSome(argAp), ap, config) and
+        flowThroughOutOfCall(_, c, _, pragma[only_bind_into](ret), kind, _, allowsFieldFlow,
+          pragma[only_bind_into](config)) and
+        if allowsFieldFlow = false then ap instanceof ApNil else any()
+      )
+    }
+
+    pragma[nomagic]
+    private predicate returnFlowsThrough(
+      RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, ParamNodeEx p, Ap argAp,
+      Ap ap, Configuration config
+    ) {
+      exists(DataFlowCallable c, ParameterPosition ppos |
+        returnFlowsThrough0(ret, kind, state, ccc, c, ppos, argAp, ap, config) and
+        p.isParameterOf(c, ppos) and
+        parameterFlowThroughAllowed(p, kind)
+      )
     }
 
     pragma[nomagic]
     private predicate flowThroughIntoCall(
       DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
     ) {
-      flowIntoCall(call, pragma[only_bind_into](arg), pragma[only_bind_into](p), allowsFieldFlow,
-        pragma[only_bind_into](config)) and
-      fwdFlow(arg, _, _, _, _, _, pragma[only_bind_into](config)) and
-      returnFlowsThrough(_, _, _, _, p.asNode(), _, _, pragma[only_bind_into](config))
+      exists(Ap argAp |
+        flowIntoCall(call, pragma[only_bind_into](arg), pragma[only_bind_into](p), allowsFieldFlow,
+          pragma[only_bind_into](config)) and
+        fwdFlow(arg, _, _, _, _, pragma[only_bind_into](argAp), pragma[only_bind_into](config)) and
+        returnFlowsThrough(_, _, _, _, p, pragma[only_bind_into](argAp), _,
+          pragma[only_bind_into](config))
+      )
     }
 
     /**
@@ -1591,21 +1626,25 @@ private module MkStage<StageSig PrevStage> {
       )
       or
       // flow into a callable
-      revFlowInNotToReturn(node, state, returnAp, ap, config) and
-      returnCtx = TReturnCtxNone()
+      exists(ParamNodeEx p, boolean allowsFieldFlow |
+        revFlow(p, state, TReturnCtxNone(), returnAp, ap, config) and
+        flowIntoCall(_, node, p, allowsFieldFlow, config) and
+        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
+        returnCtx = TReturnCtxNone()
+      )
       or
       // flow through a callable
-      exists(DataFlowCall call, ReturnPosition returnPos0, Ap returnAp0 |
-        revFlowInToReturn(call, node, state, returnPos0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnPos0, returnAp0, config)
+      exists(DataFlowCall call, ReturnKindExt returnKind0, Ap returnAp0 |
+        revFlowInToReturn(call, node, state, returnKind0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
       )
       or
       // flow out of a callable
-      exists(ReturnPosition pos |
-        revFlowOut(_, node, pos, state, _, _, ap, config) and
-        if returnFlowsThrough(node, pos, state, _, _, _, ap, config)
+      exists(ReturnKindExt kind |
+        revFlowOut(_, node, kind, state, _, _, ap, config) and
+        if returnFlowsThrough(node, kind, state, _, _, _, ap, config)
         then (
-          returnCtx = TReturnCtxMaybeFlowThrough(pos) and
+          returnCtx = TReturnCtxMaybeFlowThrough(kind) and
           returnAp = apSome(ap)
         ) else (
           returnCtx = TReturnCtxNoFlowThrough() and returnAp = apNone()
@@ -1638,37 +1677,27 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate revFlowOut(
-      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, FlowState state, ReturnCtx returnCtx,
+      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, FlowState state, ReturnCtx returnCtx,
       ApOption returnAp, Ap ap, Configuration config
     ) {
       exists(NodeEx out, boolean allowsFieldFlow |
         revFlow(out, state, returnCtx, returnAp, ap, config) and
-        flowOutOfCall(call, ret, pos, out, allowsFieldFlow, config) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
-      )
-    }
-
-    pragma[nomagic]
-    private predicate revFlowInNotToReturn(
-      ArgNodeEx arg, FlowState state, ApOption returnAp, Ap ap, Configuration config
-    ) {
-      exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(p, state, TReturnCtxNone(), returnAp, ap, config) and
-        flowIntoCall(_, arg, p, allowsFieldFlow, config) and
+        flowOutOfCall(call, ret, kind, out, allowsFieldFlow, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
     pragma[nomagic]
     private predicate revFlowInToReturn(
-      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnPosition returnPos, Ap returnAp,
-      Ap ap, Configuration config
+      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap,
+      Configuration config
     ) {
       exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(p, state, TReturnCtxMaybeFlowThrough(returnPos), apSome(returnAp), ap, config) and
+        revFlow(pragma[only_bind_into](p), state,
+          TReturnCtxMaybeFlowThrough(pragma[only_bind_into](kind)), apSome(returnAp), ap, config) and
         flowThroughIntoCall(call, arg, p, allowsFieldFlow, config) and
         (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
-        parameterFlowThroughAllowed(p.asNode(), returnPos.getKind())
+        parameterFlowThroughAllowed(p, kind)
       )
     }
 
@@ -1679,12 +1708,12 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate revFlowIsReturned(
-      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnPosition pos, Ap ap,
+      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnKindExt kind, Ap ap,
       Configuration config
     ) {
       exists(RetNodeEx ret, FlowState state, CcCall ccc |
-        revFlowOut(call, ret, pos, state, returnCtx, returnAp, ap, config) and
-        returnFlowsThrough(ret, pos, state, ccc, _, _, ap, config) and
+        revFlowOut(call, ret, kind, state, returnCtx, returnAp, ap, config) and
+        returnFlowsThrough(ret, kind, state, ccc, _, _, ap, config) and
         matchesCall(ccc, call)
       )
     }
@@ -1757,37 +1786,37 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate parameterFlowsThroughRev(
-      ParamNodeEx p, Ap ap, ReturnPosition returnPos, Configuration config
+      ParamNodeEx p, Ap ap, ReturnKindExt kind, Configuration config
     ) {
-      revFlow(p, _, TReturnCtxMaybeFlowThrough(returnPos), apSome(_), ap, config) and
-      parameterFlowThroughAllowed(p.asNode(), returnPos.getKind())
+      revFlow(p, _, TReturnCtxMaybeFlowThrough(kind), apSome(_), ap, config) and
+      parameterFlowThroughAllowed(p, kind)
     }
 
     pragma[nomagic]
     predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
-      exists(RetNodeEx ret, ReturnPosition pos |
-        returnFlowsThrough(ret, pos, _, _, p.asNode(), ap, _, config) and
-        parameterFlowsThroughRev(p, ap, pos, config)
+      exists(RetNodeEx ret, ReturnKindExt kind |
+        returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
+        parameterFlowsThroughRev(p, ap, kind, config)
       )
     }
 
     pragma[nomagic]
-    predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config) {
+    predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config) {
       exists(ParamNodeEx p, Ap ap |
-        returnFlowsThrough(ret, pos, _, _, p.asNode(), ap, _, config) and
-        parameterFlowsThroughRev(p, ap, pos, config)
+        returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
+        parameterFlowsThroughRev(p, ap, kind, config)
       )
     }
 
     pragma[nomagic]
     predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
       exists(
-        ReturnPosition returnPos0, Ap returnAp0, ArgNodeEx arg, FlowState state,
+        ReturnKindExt returnKind0, Ap returnAp0, ArgNodeEx arg, FlowState state,
         ReturnCtx returnCtx, ApOption returnAp, Ap ap
       |
         revFlow(arg, state, returnCtx, returnAp, ap, config) and
-        revFlowInToReturn(call, arg, state, returnPos0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnPos0, returnAp0, config)
+        revFlowInToReturn(call, arg, state, returnKind0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
       )
     }
 
@@ -1800,9 +1829,8 @@ private module MkStage<StageSig PrevStage> {
       conscand = count(TypedContent f0, Ap ap | fwdConsCand(f0, ap, config)) and
       states = count(FlowState state | fwdFlow(_, state, _, _, _, _, config)) and
       tuples =
-        count(NodeEx n, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap |
-          fwdFlow(n, state, cc, summaryCtx, argAp, ap, config)
-        )
+        count(NodeEx n, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+          Ap ap | fwdFlow(n, state, cc, summaryCtx, argAp, ap, config))
       or
       fwd = false and
       nodes = count(NodeEx node | revFlow(node, _, _, _, _, config)) and
@@ -1992,10 +2020,10 @@ private module Stage2 implements StageSig {
 
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand2(
-  DataFlowCall call, RetNodeEx node1, ReturnPosition pos, NodeEx node2, boolean allowsFieldFlow,
+  DataFlowCall call, RetNodeEx node1, ReturnKindExt kind, NodeEx node2, boolean allowsFieldFlow,
   Configuration config
 ) {
-  flowOutOfCallNodeCand1(call, node1, pos, node2, allowsFieldFlow, config) and
+  flowOutOfCallNodeCand1(call, node1, kind, node2, allowsFieldFlow, config) and
   Stage2::revFlow(node2, pragma[only_bind_into](config)) and
   Stage2::revFlowAlias(node1, pragma[only_bind_into](config))
 }
@@ -2511,11 +2539,11 @@ private module Stage4Param implements MkStage<Stage3>::StageParam {
 
   pragma[nomagic]
   predicate flowOutOfCall(
-    DataFlowCall call, RetNodeEx node1, ReturnPosition pos, NodeEx node2, boolean allowsFieldFlow,
+    DataFlowCall call, RetNodeEx node1, ReturnKindExt kind, NodeEx node2, boolean allowsFieldFlow,
     Configuration config
   ) {
     exists(FlowState state |
-      flowOutOfCallNodeCand2(call, node1, pos, node2, allowsFieldFlow, config) and
+      flowOutOfCallNodeCand2(call, node1, kind, node2, allowsFieldFlow, config) and
       PrevStage::revFlow(node2, pragma[only_bind_into](state), _, pragma[only_bind_into](config)) and
       PrevStage::revFlowAlias(node1, pragma[only_bind_into](state), _,
         pragma[only_bind_into](config))
@@ -2552,12 +2580,13 @@ private Configuration unbindConf(Configuration conf) {
 
 pragma[nomagic]
 private predicate nodeMayUseSummary0(
-  NodeEx n, ParamNodeEx p, FlowState state, AccessPathApprox apa, Configuration config
+  NodeEx n, DataFlowCallable c, ParameterPosition pos, FlowState state, AccessPathApprox apa,
+  Configuration config
 ) {
   exists(AccessPathApprox apa0 |
-    Stage4::parameterMayFlowThrough(p, _, _) and
+    c = n.getEnclosingCallable() and
     Stage4::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
-    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TParamNodeSome(p.asNode()),
+    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TParameterPositionSome(pos),
       TAccessPathApproxSome(apa), apa0, config)
   )
 }
@@ -2566,9 +2595,10 @@ pragma[nomagic]
 private predicate nodeMayUseSummary(
   NodeEx n, FlowState state, AccessPathApprox apa, Configuration config
 ) {
-  exists(ParamNodeEx p |
+  exists(DataFlowCallable c, ParameterPosition pos, ParamNodeEx p |
     Stage4::parameterMayFlowThrough(p, apa, config) and
-    nodeMayUseSummary0(n, p, state, apa, config)
+    nodeMayUseSummary0(n, c, pos, state, apa, config) and
+    p.isParameterOf(c, pos)
   )
 }
 
@@ -3501,7 +3531,7 @@ private predicate paramFlowsThrough(
     pathNode(mid, ret, state, cc, sc, ap, config, _) and
     kind = ret.getKind() and
     apa = ap.getApprox() and
-    parameterFlowThroughAllowed(sc.getParamNode().asNode(), kind)
+    parameterFlowThroughAllowed(sc.getParamNode(), kind)
   )
 }
 
diff --git a/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImpl4.qll b/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImpl4.qll
index a52ad110662..e4cfd5986be 100644
--- a/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImpl4.qll
+++ b/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImpl4.qll
@@ -613,11 +613,28 @@ private predicate hasSinkCallCtx(Configuration config) {
  * explicitly allowed
  */
 bindingset[p, kind]
-private predicate parameterFlowThroughAllowed(ParamNode p, ReturnKindExt kind) {
+private predicate parameterFlowThroughAllowed(ParamNodeEx p, ReturnKindExt kind) {
   exists(ParameterPosition pos | p.isParameterOf(_, pos) |
     not kind.(ParamUpdateReturnKind).getPosition() = pos
     or
-    allowParameterReturnInSelfCached(p)
+    allowParameterReturnInSelfCached(p.asNode())
+  )
+}
+
+/**
+ * Holds if flow from a parameter at position `pos` inside `c` to a return node of
+ * kind `kind` is allowed.
+ *
+ * We don't expect a parameter to return stored in itself, unless
+ * explicitly allowed
+ */
+bindingset[c, pos, kind]
+private predicate parameterFlowThroughAllowed(
+  DataFlowCallable c, ParameterPosition pos, ReturnKindExt kind
+) {
+  exists(ParamNodeEx p |
+    p.isParameterOf(c, pos) and
+    parameterFlowThroughAllowed(p, kind)
   )
 }
 
@@ -1000,14 +1017,14 @@ private module Stage1 implements StageSig {
       returnFlowCallableNodeCand(c, kind, config) and
       p.getEnclosingCallable() = c and
       exists(ap) and
-      parameterFlowThroughAllowed(p.asNode(), kind)
+      parameterFlowThroughAllowed(p, kind)
     )
   }
 
   pragma[nomagic]
-  predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config) {
+  predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config) {
     throughFlowNodeCand(ret, config) and
-    pos = ret.getReturnPosition()
+    kind = ret.getKind()
   }
 
   pragma[nomagic]
@@ -1066,13 +1083,16 @@ private predicate viableReturnPosOutNodeCand1(
  */
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand1(
-  DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, Configuration config
+  DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, Configuration config
 ) {
-  viableReturnPosOutNodeCand1(call, pos, out, config) and
-  pos = ret.getReturnPosition() and
-  Stage1::revFlow(ret, config) and
-  not outBarrier(ret, config) and
-  not inBarrier(out, config)
+  exists(ReturnPosition pos |
+    viableReturnPosOutNodeCand1(call, pos, out, config) and
+    pos = ret.getReturnPosition() and
+    kind = pos.getKind() and
+    Stage1::revFlow(ret, config) and
+    not outBarrier(ret, config) and
+    not inBarrier(out, config)
+  )
 }
 
 pragma[nomagic]
@@ -1102,6 +1122,7 @@ private predicate flowIntoCallNodeCand1(
  * edge in the graph of paths between sources and sinks that ignores call
  * contexts.
  */
+pragma[nomagic]
 private int branch(NodeEx n1, Configuration conf) {
   result =
     strictcount(NodeEx n |
@@ -1114,6 +1135,7 @@ private int branch(NodeEx n1, Configuration conf) {
  * edge in the graph of paths between sources and sinks that ignores call
  * contexts.
  */
+pragma[nomagic]
 private int join(NodeEx n2, Configuration conf) {
   result =
     strictcount(NodeEx n |
@@ -1130,10 +1152,10 @@ private int join(NodeEx n2, Configuration conf) {
  */
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand1(
-  DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
+  DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
   Configuration config
 ) {
-  flowOutOfCallNodeCand1(call, ret, pos, out, pragma[only_bind_into](config)) and
+  flowOutOfCallNodeCand1(call, ret, kind, out, pragma[only_bind_into](config)) and
   exists(int b, int j |
     b = branch(ret, pragma[only_bind_into](config)) and
     j = join(out, pragma[only_bind_into](config)) and
@@ -1152,10 +1174,10 @@ pragma[nomagic]
 private predicate flowIntoCallNodeCand1(
   DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
 ) {
-  flowIntoCallNodeCand1(call, arg, p, config) and
+  flowIntoCallNodeCand1(call, arg, p, pragma[only_bind_into](config)) and
   exists(int b, int j |
-    b = branch(arg, config) and
-    j = join(p, config) and
+    b = branch(arg, pragma[only_bind_into](config)) and
+    j = join(p, pragma[only_bind_into](config)) and
     if b.minimum(j) <= config.fieldFlowBranchLimit()
     then allowsFieldFlow = true
     else allowsFieldFlow = false
@@ -1174,7 +1196,7 @@ private signature module StageSig {
 
   predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config);
 
-  predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config);
+  predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config);
 
   predicate storeStepCand(
     NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, DataFlowType contentType,
@@ -1240,7 +1262,7 @@ private module MkStage<StageSig PrevStage> {
     );
 
     predicate flowOutOfCall(
-      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
+      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
       Configuration config
     );
 
@@ -1266,16 +1288,14 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate flowThroughOutOfCall(
-      DataFlowCall call, CcCall ccc, RetNodeEx ret, ReturnKindExt kind, NodeEx out,
-      boolean allowsFieldFlow, Configuration config
+      DataFlowCall call, DataFlowCallable c, CcCall ccc, RetNodeEx ret, ReturnKindExt kind,
+      NodeEx out, boolean allowsFieldFlow, Configuration config
     ) {
-      exists(ReturnPosition pos |
-        flowOutOfCall(call, ret, pos, out, allowsFieldFlow, pragma[only_bind_into](config)) and
-        kind = pos.getKind() and
-        PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
-        PrevStage::returnMayFlowThrough(ret, pos, pragma[only_bind_into](config)) and
-        matchesCall(ccc, call)
-      )
+      flowOutOfCall(call, ret, kind, out, allowsFieldFlow, pragma[only_bind_into](config)) and
+      PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
+      PrevStage::returnMayFlowThrough(ret, kind, pragma[only_bind_into](config)) and
+      matchesCall(ccc, call) and
+      c = ret.getEnclosingCallable()
     }
 
     /**
@@ -1284,12 +1304,12 @@ private module MkStage<StageSig PrevStage> {
      *
      * The call context `cc` records whether the node is reached through an
      * argument in a call, and if so, `summaryCtx` and `argAp` record the
-     * corresponding parameter and access path of that argument, respectively.
+     * corresponding parameter position and access path of that argument, respectively.
      */
     pragma[nomagic]
     additional predicate fwdFlow(
-      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
-      Configuration config
+      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      Ap ap, Configuration config
     ) {
       fwdFlow0(node, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::revFlow(node, state, unbindApa(getApprox(ap)), config) and
@@ -1298,13 +1318,13 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlow0(
-      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
-      Configuration config
+      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      Ap ap, Configuration config
     ) {
       sourceNode(node, state, config) and
       (if hasSourceCallCtx(config) then cc = ccSomeCall() else cc = ccNone()) and
       argAp = apNone() and
-      summaryCtx = TParamNodeNone() and
+      summaryCtx = TParameterPositionNone() and
       ap = getApNil(node)
       or
       exists(NodeEx mid, FlowState state0, Ap ap0, LocalCc localCc |
@@ -1322,7 +1342,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, pragma[only_bind_into](config)) and
         jumpStep(mid, node, config) and
         cc = ccNone() and
-        summaryCtx = TParamNodeNone() and
+        summaryCtx = TParameterPositionNone() and
         argAp = apNone()
       )
       or
@@ -1330,7 +1350,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, state, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStep(mid, node, config) and
         cc = ccNone() and
-        summaryCtx = TParamNodeNone() and
+        summaryCtx = TParameterPositionNone() and
         argAp = apNone() and
         ap = getApNil(node)
       )
@@ -1339,7 +1359,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, state0, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStateStep(mid, state0, node, state, config) and
         cc = ccNone() and
-        summaryCtx = TParamNodeNone() and
+        summaryCtx = TParameterPositionNone() and
         argAp = apNone() and
         ap = getApNil(node)
       )
@@ -1362,17 +1382,27 @@ private module MkStage<StageSig PrevStage> {
         apa = getApprox(ap) and
         if PrevStage::parameterMayFlowThrough(node, apa, config)
         then (
-          summaryCtx = TParamNodeSome(node.asNode()) and argAp = apSome(ap)
+          summaryCtx = TParameterPositionSome(node.(ParamNodeEx).getPosition()) and
+          argAp = apSome(ap)
         ) else (
-          summaryCtx = TParamNodeNone() and argAp = apNone()
+          summaryCtx = TParameterPositionNone() and argAp = apNone()
         )
       )
       or
       // flow out of a callable
-      fwdFlowOutNotFromArg(node, state, cc, summaryCtx, argAp, ap, config)
+      exists(
+        DataFlowCall call, RetNodeEx ret, boolean allowsFieldFlow, CcNoCall innercc,
+        DataFlowCallable inner
+      |
+        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, config) and
+        flowOutOfCall(call, ret, _, node, allowsFieldFlow, config) and
+        inner = ret.getEnclosingCallable() and
+        cc = getCallContextReturn(inner, call, innercc) and
+        if allowsFieldFlow = false then ap instanceof ApNil else any()
+      )
       or
       // flow through a callable
-      exists(DataFlowCall call, ParamNode summaryCtx0, Ap argAp0 |
+      exists(DataFlowCall call, ParameterPosition summaryCtx0, Ap argAp0 |
         fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, config) and
         fwdFlowIsEntered(call, cc, summaryCtx, argAp, summaryCtx0, argAp0, config)
       )
@@ -1381,7 +1411,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowStore(
       NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc,
-      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
+      ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
     ) {
       exists(DataFlowType contentType |
         fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, config) and
@@ -1406,7 +1436,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowRead(
       Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc,
-      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
+      ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
     ) {
       fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, c, node2, config) and
@@ -1416,7 +1446,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowIn(
       DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, Cc innercc,
-      ParamNodeOption summaryCtx, ApOption argAp, Ap ap, Configuration config
+      ParameterPositionOption summaryCtx, ApOption argAp, Ap ap, Configuration config
     ) {
       exists(ArgNodeEx arg, boolean allowsFieldFlow |
         fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, config) and
@@ -1427,32 +1457,19 @@ private module MkStage<StageSig PrevStage> {
     }
 
     pragma[nomagic]
-    private predicate fwdFlowOutNotFromArg(
-      NodeEx out, FlowState state, Cc ccOut, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+    private predicate fwdFlowOutFromArg(
+      DataFlowCall call, NodeEx out, FlowState state, ParameterPosition summaryCtx, Ap argAp, Ap ap,
       Configuration config
     ) {
       exists(
-        DataFlowCall call, RetNodeEx ret, boolean allowsFieldFlow, CcNoCall innercc,
-        DataFlowCallable inner
+        DataFlowCallable c, RetNodeEx ret, ReturnKindExt kind, boolean allowsFieldFlow, CcCall ccc
       |
-        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, config) and
-        flowOutOfCall(call, ret, _, out, allowsFieldFlow, config) and
-        inner = ret.getEnclosingCallable() and
-        ccOut = getCallContextReturn(inner, call, innercc) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
-      )
-    }
-
-    pragma[nomagic]
-    private predicate fwdFlowOutFromArg(
-      DataFlowCall call, NodeEx out, FlowState state, ParamNode summaryCtx, Ap argAp, Ap ap,
-      Configuration config
-    ) {
-      exists(RetNodeEx ret, ReturnKindExt kind, boolean allowsFieldFlow, CcCall ccc |
-        fwdFlow(ret, state, ccc, TParamNodeSome(summaryCtx), apSome(argAp), ap, config) and
-        flowThroughOutOfCall(call, ccc, ret, kind, out, allowsFieldFlow, config) and
+        fwdFlow(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc),
+          TParameterPositionSome(pragma[only_bind_into](summaryCtx)), apSome(argAp), ap, config) and
+        flowThroughOutOfCall(call, pragma[only_bind_into](c), ccc, ret, kind, out, allowsFieldFlow,
+          config) and
         (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
-        parameterFlowThroughAllowed(summaryCtx, kind)
+        parameterFlowThroughAllowed(c, pragma[only_bind_into](summaryCtx), kind)
       )
     }
 
@@ -1462,13 +1479,13 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate fwdFlowIsEntered(
-      DataFlowCall call, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, ParamNode p, Ap ap,
-      Configuration config
+      DataFlowCall call, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      ParameterPosition pos, Ap ap, Configuration config
     ) {
       exists(ParamNodeEx param |
         fwdFlowIn(call, param, _, cc, _, summaryCtx, argAp, ap, config) and
         PrevStage::parameterMayFlowThrough(param, unbindApa(getApprox(ap)), config) and
-        p = param.asNode()
+        pos = param.getPosition()
       )
     }
 
@@ -1489,23 +1506,41 @@ private module MkStage<StageSig PrevStage> {
     }
 
     pragma[nomagic]
-    private predicate returnFlowsThrough(
-      RetNodeEx ret, ReturnPosition pos, FlowState state, CcCall ccc, ParamNode p, Ap argAp, Ap ap,
-      Configuration config
+    private predicate returnFlowsThrough0(
+      RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, DataFlowCallable c,
+      ParameterPosition ppos, Ap argAp, Ap ap, Configuration config
     ) {
-      fwdFlow(ret, state, ccc, TParamNodeSome(p), apSome(argAp), ap, config) and
-      pos = ret.getReturnPosition() and
-      parameterFlowThroughAllowed(p, pos.getKind())
+      exists(boolean allowsFieldFlow |
+        fwdFlow(ret, state, ccc, TParameterPositionSome(ppos), apSome(argAp), ap, config) and
+        flowThroughOutOfCall(_, c, _, pragma[only_bind_into](ret), kind, _, allowsFieldFlow,
+          pragma[only_bind_into](config)) and
+        if allowsFieldFlow = false then ap instanceof ApNil else any()
+      )
+    }
+
+    pragma[nomagic]
+    private predicate returnFlowsThrough(
+      RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, ParamNodeEx p, Ap argAp,
+      Ap ap, Configuration config
+    ) {
+      exists(DataFlowCallable c, ParameterPosition ppos |
+        returnFlowsThrough0(ret, kind, state, ccc, c, ppos, argAp, ap, config) and
+        p.isParameterOf(c, ppos) and
+        parameterFlowThroughAllowed(p, kind)
+      )
     }
 
     pragma[nomagic]
     private predicate flowThroughIntoCall(
       DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
     ) {
-      flowIntoCall(call, pragma[only_bind_into](arg), pragma[only_bind_into](p), allowsFieldFlow,
-        pragma[only_bind_into](config)) and
-      fwdFlow(arg, _, _, _, _, _, pragma[only_bind_into](config)) and
-      returnFlowsThrough(_, _, _, _, p.asNode(), _, _, pragma[only_bind_into](config))
+      exists(Ap argAp |
+        flowIntoCall(call, pragma[only_bind_into](arg), pragma[only_bind_into](p), allowsFieldFlow,
+          pragma[only_bind_into](config)) and
+        fwdFlow(arg, _, _, _, _, pragma[only_bind_into](argAp), pragma[only_bind_into](config)) and
+        returnFlowsThrough(_, _, _, _, p, pragma[only_bind_into](argAp), _,
+          pragma[only_bind_into](config))
+      )
     }
 
     /**
@@ -1591,21 +1626,25 @@ private module MkStage<StageSig PrevStage> {
       )
       or
       // flow into a callable
-      revFlowInNotToReturn(node, state, returnAp, ap, config) and
-      returnCtx = TReturnCtxNone()
+      exists(ParamNodeEx p, boolean allowsFieldFlow |
+        revFlow(p, state, TReturnCtxNone(), returnAp, ap, config) and
+        flowIntoCall(_, node, p, allowsFieldFlow, config) and
+        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
+        returnCtx = TReturnCtxNone()
+      )
       or
       // flow through a callable
-      exists(DataFlowCall call, ReturnPosition returnPos0, Ap returnAp0 |
-        revFlowInToReturn(call, node, state, returnPos0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnPos0, returnAp0, config)
+      exists(DataFlowCall call, ReturnKindExt returnKind0, Ap returnAp0 |
+        revFlowInToReturn(call, node, state, returnKind0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
       )
       or
       // flow out of a callable
-      exists(ReturnPosition pos |
-        revFlowOut(_, node, pos, state, _, _, ap, config) and
-        if returnFlowsThrough(node, pos, state, _, _, _, ap, config)
+      exists(ReturnKindExt kind |
+        revFlowOut(_, node, kind, state, _, _, ap, config) and
+        if returnFlowsThrough(node, kind, state, _, _, _, ap, config)
         then (
-          returnCtx = TReturnCtxMaybeFlowThrough(pos) and
+          returnCtx = TReturnCtxMaybeFlowThrough(kind) and
           returnAp = apSome(ap)
         ) else (
           returnCtx = TReturnCtxNoFlowThrough() and returnAp = apNone()
@@ -1638,37 +1677,27 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate revFlowOut(
-      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, FlowState state, ReturnCtx returnCtx,
+      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, FlowState state, ReturnCtx returnCtx,
       ApOption returnAp, Ap ap, Configuration config
     ) {
       exists(NodeEx out, boolean allowsFieldFlow |
         revFlow(out, state, returnCtx, returnAp, ap, config) and
-        flowOutOfCall(call, ret, pos, out, allowsFieldFlow, config) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
-      )
-    }
-
-    pragma[nomagic]
-    private predicate revFlowInNotToReturn(
-      ArgNodeEx arg, FlowState state, ApOption returnAp, Ap ap, Configuration config
-    ) {
-      exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(p, state, TReturnCtxNone(), returnAp, ap, config) and
-        flowIntoCall(_, arg, p, allowsFieldFlow, config) and
+        flowOutOfCall(call, ret, kind, out, allowsFieldFlow, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
     pragma[nomagic]
     private predicate revFlowInToReturn(
-      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnPosition returnPos, Ap returnAp,
-      Ap ap, Configuration config
+      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap,
+      Configuration config
     ) {
       exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(p, state, TReturnCtxMaybeFlowThrough(returnPos), apSome(returnAp), ap, config) and
+        revFlow(pragma[only_bind_into](p), state,
+          TReturnCtxMaybeFlowThrough(pragma[only_bind_into](kind)), apSome(returnAp), ap, config) and
         flowThroughIntoCall(call, arg, p, allowsFieldFlow, config) and
         (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
-        parameterFlowThroughAllowed(p.asNode(), returnPos.getKind())
+        parameterFlowThroughAllowed(p, kind)
       )
     }
 
@@ -1679,12 +1708,12 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate revFlowIsReturned(
-      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnPosition pos, Ap ap,
+      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnKindExt kind, Ap ap,
       Configuration config
     ) {
       exists(RetNodeEx ret, FlowState state, CcCall ccc |
-        revFlowOut(call, ret, pos, state, returnCtx, returnAp, ap, config) and
-        returnFlowsThrough(ret, pos, state, ccc, _, _, ap, config) and
+        revFlowOut(call, ret, kind, state, returnCtx, returnAp, ap, config) and
+        returnFlowsThrough(ret, kind, state, ccc, _, _, ap, config) and
         matchesCall(ccc, call)
       )
     }
@@ -1757,37 +1786,37 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate parameterFlowsThroughRev(
-      ParamNodeEx p, Ap ap, ReturnPosition returnPos, Configuration config
+      ParamNodeEx p, Ap ap, ReturnKindExt kind, Configuration config
     ) {
-      revFlow(p, _, TReturnCtxMaybeFlowThrough(returnPos), apSome(_), ap, config) and
-      parameterFlowThroughAllowed(p.asNode(), returnPos.getKind())
+      revFlow(p, _, TReturnCtxMaybeFlowThrough(kind), apSome(_), ap, config) and
+      parameterFlowThroughAllowed(p, kind)
     }
 
     pragma[nomagic]
     predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
-      exists(RetNodeEx ret, ReturnPosition pos |
-        returnFlowsThrough(ret, pos, _, _, p.asNode(), ap, _, config) and
-        parameterFlowsThroughRev(p, ap, pos, config)
+      exists(RetNodeEx ret, ReturnKindExt kind |
+        returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
+        parameterFlowsThroughRev(p, ap, kind, config)
       )
     }
 
     pragma[nomagic]
-    predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config) {
+    predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config) {
       exists(ParamNodeEx p, Ap ap |
-        returnFlowsThrough(ret, pos, _, _, p.asNode(), ap, _, config) and
-        parameterFlowsThroughRev(p, ap, pos, config)
+        returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
+        parameterFlowsThroughRev(p, ap, kind, config)
       )
     }
 
     pragma[nomagic]
     predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
       exists(
-        ReturnPosition returnPos0, Ap returnAp0, ArgNodeEx arg, FlowState state,
+        ReturnKindExt returnKind0, Ap returnAp0, ArgNodeEx arg, FlowState state,
         ReturnCtx returnCtx, ApOption returnAp, Ap ap
       |
         revFlow(arg, state, returnCtx, returnAp, ap, config) and
-        revFlowInToReturn(call, arg, state, returnPos0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnPos0, returnAp0, config)
+        revFlowInToReturn(call, arg, state, returnKind0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
       )
     }
 
@@ -1800,9 +1829,8 @@ private module MkStage<StageSig PrevStage> {
       conscand = count(TypedContent f0, Ap ap | fwdConsCand(f0, ap, config)) and
       states = count(FlowState state | fwdFlow(_, state, _, _, _, _, config)) and
       tuples =
-        count(NodeEx n, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap |
-          fwdFlow(n, state, cc, summaryCtx, argAp, ap, config)
-        )
+        count(NodeEx n, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+          Ap ap | fwdFlow(n, state, cc, summaryCtx, argAp, ap, config))
       or
       fwd = false and
       nodes = count(NodeEx node | revFlow(node, _, _, _, _, config)) and
@@ -1992,10 +2020,10 @@ private module Stage2 implements StageSig {
 
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand2(
-  DataFlowCall call, RetNodeEx node1, ReturnPosition pos, NodeEx node2, boolean allowsFieldFlow,
+  DataFlowCall call, RetNodeEx node1, ReturnKindExt kind, NodeEx node2, boolean allowsFieldFlow,
   Configuration config
 ) {
-  flowOutOfCallNodeCand1(call, node1, pos, node2, allowsFieldFlow, config) and
+  flowOutOfCallNodeCand1(call, node1, kind, node2, allowsFieldFlow, config) and
   Stage2::revFlow(node2, pragma[only_bind_into](config)) and
   Stage2::revFlowAlias(node1, pragma[only_bind_into](config))
 }
@@ -2511,11 +2539,11 @@ private module Stage4Param implements MkStage<Stage3>::StageParam {
 
   pragma[nomagic]
   predicate flowOutOfCall(
-    DataFlowCall call, RetNodeEx node1, ReturnPosition pos, NodeEx node2, boolean allowsFieldFlow,
+    DataFlowCall call, RetNodeEx node1, ReturnKindExt kind, NodeEx node2, boolean allowsFieldFlow,
     Configuration config
   ) {
     exists(FlowState state |
-      flowOutOfCallNodeCand2(call, node1, pos, node2, allowsFieldFlow, config) and
+      flowOutOfCallNodeCand2(call, node1, kind, node2, allowsFieldFlow, config) and
       PrevStage::revFlow(node2, pragma[only_bind_into](state), _, pragma[only_bind_into](config)) and
       PrevStage::revFlowAlias(node1, pragma[only_bind_into](state), _,
         pragma[only_bind_into](config))
@@ -2552,12 +2580,13 @@ private Configuration unbindConf(Configuration conf) {
 
 pragma[nomagic]
 private predicate nodeMayUseSummary0(
-  NodeEx n, ParamNodeEx p, FlowState state, AccessPathApprox apa, Configuration config
+  NodeEx n, DataFlowCallable c, ParameterPosition pos, FlowState state, AccessPathApprox apa,
+  Configuration config
 ) {
   exists(AccessPathApprox apa0 |
-    Stage4::parameterMayFlowThrough(p, _, _) and
+    c = n.getEnclosingCallable() and
     Stage4::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
-    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TParamNodeSome(p.asNode()),
+    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TParameterPositionSome(pos),
       TAccessPathApproxSome(apa), apa0, config)
   )
 }
@@ -2566,9 +2595,10 @@ pragma[nomagic]
 private predicate nodeMayUseSummary(
   NodeEx n, FlowState state, AccessPathApprox apa, Configuration config
 ) {
-  exists(ParamNodeEx p |
+  exists(DataFlowCallable c, ParameterPosition pos, ParamNodeEx p |
     Stage4::parameterMayFlowThrough(p, apa, config) and
-    nodeMayUseSummary0(n, p, state, apa, config)
+    nodeMayUseSummary0(n, c, pos, state, apa, config) and
+    p.isParameterOf(c, pos)
   )
 }
 
@@ -3501,7 +3531,7 @@ private predicate paramFlowsThrough(
     pathNode(mid, ret, state, cc, sc, ap, config, _) and
     kind = ret.getKind() and
     apa = ap.getApprox() and
-    parameterFlowThroughAllowed(sc.getParamNode().asNode(), kind)
+    parameterFlowThroughAllowed(sc.getParamNode(), kind)
   )
 }
 
diff --git a/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImplCommon.qll b/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImplCommon.qll
index 621ed34f9d0..f981834a6d4 100644
--- a/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImplCommon.qll
+++ b/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImplCommon.qll
@@ -916,15 +916,15 @@ private module Cached {
     TDataFlowCallSome(DataFlowCall call)
 
   cached
-  newtype TParamNodeOption =
-    TParamNodeNone() or
-    TParamNodeSome(ParamNode p)
+  newtype TParameterPositionOption =
+    TParameterPositionNone() or
+    TParameterPositionSome(ParameterPosition pos)
 
   cached
   newtype TReturnCtx =
     TReturnCtxNone() or
     TReturnCtxNoFlowThrough() or
-    TReturnCtxMaybeFlowThrough(ReturnPosition pos)
+    TReturnCtxMaybeFlowThrough(ReturnKindExt kind)
 
   cached
   newtype TTypedContent = MkTypedContent(Content c, DataFlowType t) { store(_, c, _, _, t) }
@@ -1315,15 +1315,15 @@ class DataFlowCallOption extends TDataFlowCallOption {
   }
 }
 
-/** An optional `ParamNode`. */
-class ParamNodeOption extends TParamNodeOption {
+/** An optional `ParameterPosition`. */
+class ParameterPositionOption extends TParameterPositionOption {
   string toString() {
-    this = TParamNodeNone() and
+    this = TParameterPositionNone() and
     result = "(none)"
     or
-    exists(ParamNode p |
-      this = TParamNodeSome(p) and
-      result = p.toString()
+    exists(ParameterPosition pos |
+      this = TParameterPositionSome(pos) and
+      result = pos.toString()
     )
   }
 }
@@ -1335,7 +1335,7 @@ class ParamNodeOption extends TParamNodeOption {
  *
  * - `TReturnCtxNone()`: no return flow.
  * - `TReturnCtxNoFlowThrough()`: return flow, but flow through is not possible.
- * - `TReturnCtxMaybeFlowThrough(ReturnPosition pos)`: return flow, of kind `pos`, and
+ * - `TReturnCtxMaybeFlowThrough(ReturnKindExt kind)`: return flow, of kind `kind`, and
  *    flow through may be possible.
  */
 class ReturnCtx extends TReturnCtx {
@@ -1346,9 +1346,9 @@ class ReturnCtx extends TReturnCtx {
     this = TReturnCtxNoFlowThrough() and
     result = "(no flow through)"
     or
-    exists(ReturnPosition pos |
-      this = TReturnCtxMaybeFlowThrough(pos) and
-      result = pos.toString()
+    exists(ReturnKindExt kind |
+      this = TReturnCtxMaybeFlowThrough(kind) and
+      result = kind.toString()
     )
   }
 }
diff --git a/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImplLocal.qll b/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImplLocal.qll
index a52ad110662..e4cfd5986be 100644
--- a/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImplLocal.qll
+++ b/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImplLocal.qll
@@ -613,11 +613,28 @@ private predicate hasSinkCallCtx(Configuration config) {
  * explicitly allowed
  */
 bindingset[p, kind]
-private predicate parameterFlowThroughAllowed(ParamNode p, ReturnKindExt kind) {
+private predicate parameterFlowThroughAllowed(ParamNodeEx p, ReturnKindExt kind) {
   exists(ParameterPosition pos | p.isParameterOf(_, pos) |
     not kind.(ParamUpdateReturnKind).getPosition() = pos
     or
-    allowParameterReturnInSelfCached(p)
+    allowParameterReturnInSelfCached(p.asNode())
+  )
+}
+
+/**
+ * Holds if flow from a parameter at position `pos` inside `c` to a return node of
+ * kind `kind` is allowed.
+ *
+ * We don't expect a parameter to return stored in itself, unless
+ * explicitly allowed
+ */
+bindingset[c, pos, kind]
+private predicate parameterFlowThroughAllowed(
+  DataFlowCallable c, ParameterPosition pos, ReturnKindExt kind
+) {
+  exists(ParamNodeEx p |
+    p.isParameterOf(c, pos) and
+    parameterFlowThroughAllowed(p, kind)
   )
 }
 
@@ -1000,14 +1017,14 @@ private module Stage1 implements StageSig {
       returnFlowCallableNodeCand(c, kind, config) and
       p.getEnclosingCallable() = c and
       exists(ap) and
-      parameterFlowThroughAllowed(p.asNode(), kind)
+      parameterFlowThroughAllowed(p, kind)
     )
   }
 
   pragma[nomagic]
-  predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config) {
+  predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config) {
     throughFlowNodeCand(ret, config) and
-    pos = ret.getReturnPosition()
+    kind = ret.getKind()
   }
 
   pragma[nomagic]
@@ -1066,13 +1083,16 @@ private predicate viableReturnPosOutNodeCand1(
  */
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand1(
-  DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, Configuration config
+  DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, Configuration config
 ) {
-  viableReturnPosOutNodeCand1(call, pos, out, config) and
-  pos = ret.getReturnPosition() and
-  Stage1::revFlow(ret, config) and
-  not outBarrier(ret, config) and
-  not inBarrier(out, config)
+  exists(ReturnPosition pos |
+    viableReturnPosOutNodeCand1(call, pos, out, config) and
+    pos = ret.getReturnPosition() and
+    kind = pos.getKind() and
+    Stage1::revFlow(ret, config) and
+    not outBarrier(ret, config) and
+    not inBarrier(out, config)
+  )
 }
 
 pragma[nomagic]
@@ -1102,6 +1122,7 @@ private predicate flowIntoCallNodeCand1(
  * edge in the graph of paths between sources and sinks that ignores call
  * contexts.
  */
+pragma[nomagic]
 private int branch(NodeEx n1, Configuration conf) {
   result =
     strictcount(NodeEx n |
@@ -1114,6 +1135,7 @@ private int branch(NodeEx n1, Configuration conf) {
  * edge in the graph of paths between sources and sinks that ignores call
  * contexts.
  */
+pragma[nomagic]
 private int join(NodeEx n2, Configuration conf) {
   result =
     strictcount(NodeEx n |
@@ -1130,10 +1152,10 @@ private int join(NodeEx n2, Configuration conf) {
  */
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand1(
-  DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
+  DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
   Configuration config
 ) {
-  flowOutOfCallNodeCand1(call, ret, pos, out, pragma[only_bind_into](config)) and
+  flowOutOfCallNodeCand1(call, ret, kind, out, pragma[only_bind_into](config)) and
   exists(int b, int j |
     b = branch(ret, pragma[only_bind_into](config)) and
     j = join(out, pragma[only_bind_into](config)) and
@@ -1152,10 +1174,10 @@ pragma[nomagic]
 private predicate flowIntoCallNodeCand1(
   DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
 ) {
-  flowIntoCallNodeCand1(call, arg, p, config) and
+  flowIntoCallNodeCand1(call, arg, p, pragma[only_bind_into](config)) and
   exists(int b, int j |
-    b = branch(arg, config) and
-    j = join(p, config) and
+    b = branch(arg, pragma[only_bind_into](config)) and
+    j = join(p, pragma[only_bind_into](config)) and
     if b.minimum(j) <= config.fieldFlowBranchLimit()
     then allowsFieldFlow = true
     else allowsFieldFlow = false
@@ -1174,7 +1196,7 @@ private signature module StageSig {
 
   predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config);
 
-  predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config);
+  predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config);
 
   predicate storeStepCand(
     NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, DataFlowType contentType,
@@ -1240,7 +1262,7 @@ private module MkStage<StageSig PrevStage> {
     );
 
     predicate flowOutOfCall(
-      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
+      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
       Configuration config
     );
 
@@ -1266,16 +1288,14 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate flowThroughOutOfCall(
-      DataFlowCall call, CcCall ccc, RetNodeEx ret, ReturnKindExt kind, NodeEx out,
-      boolean allowsFieldFlow, Configuration config
+      DataFlowCall call, DataFlowCallable c, CcCall ccc, RetNodeEx ret, ReturnKindExt kind,
+      NodeEx out, boolean allowsFieldFlow, Configuration config
     ) {
-      exists(ReturnPosition pos |
-        flowOutOfCall(call, ret, pos, out, allowsFieldFlow, pragma[only_bind_into](config)) and
-        kind = pos.getKind() and
-        PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
-        PrevStage::returnMayFlowThrough(ret, pos, pragma[only_bind_into](config)) and
-        matchesCall(ccc, call)
-      )
+      flowOutOfCall(call, ret, kind, out, allowsFieldFlow, pragma[only_bind_into](config)) and
+      PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
+      PrevStage::returnMayFlowThrough(ret, kind, pragma[only_bind_into](config)) and
+      matchesCall(ccc, call) and
+      c = ret.getEnclosingCallable()
     }
 
     /**
@@ -1284,12 +1304,12 @@ private module MkStage<StageSig PrevStage> {
      *
      * The call context `cc` records whether the node is reached through an
      * argument in a call, and if so, `summaryCtx` and `argAp` record the
-     * corresponding parameter and access path of that argument, respectively.
+     * corresponding parameter position and access path of that argument, respectively.
      */
     pragma[nomagic]
     additional predicate fwdFlow(
-      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
-      Configuration config
+      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      Ap ap, Configuration config
     ) {
       fwdFlow0(node, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::revFlow(node, state, unbindApa(getApprox(ap)), config) and
@@ -1298,13 +1318,13 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlow0(
-      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
-      Configuration config
+      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      Ap ap, Configuration config
     ) {
       sourceNode(node, state, config) and
       (if hasSourceCallCtx(config) then cc = ccSomeCall() else cc = ccNone()) and
       argAp = apNone() and
-      summaryCtx = TParamNodeNone() and
+      summaryCtx = TParameterPositionNone() and
       ap = getApNil(node)
       or
       exists(NodeEx mid, FlowState state0, Ap ap0, LocalCc localCc |
@@ -1322,7 +1342,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, pragma[only_bind_into](config)) and
         jumpStep(mid, node, config) and
         cc = ccNone() and
-        summaryCtx = TParamNodeNone() and
+        summaryCtx = TParameterPositionNone() and
         argAp = apNone()
       )
       or
@@ -1330,7 +1350,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, state, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStep(mid, node, config) and
         cc = ccNone() and
-        summaryCtx = TParamNodeNone() and
+        summaryCtx = TParameterPositionNone() and
         argAp = apNone() and
         ap = getApNil(node)
       )
@@ -1339,7 +1359,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, state0, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStateStep(mid, state0, node, state, config) and
         cc = ccNone() and
-        summaryCtx = TParamNodeNone() and
+        summaryCtx = TParameterPositionNone() and
         argAp = apNone() and
         ap = getApNil(node)
       )
@@ -1362,17 +1382,27 @@ private module MkStage<StageSig PrevStage> {
         apa = getApprox(ap) and
         if PrevStage::parameterMayFlowThrough(node, apa, config)
         then (
-          summaryCtx = TParamNodeSome(node.asNode()) and argAp = apSome(ap)
+          summaryCtx = TParameterPositionSome(node.(ParamNodeEx).getPosition()) and
+          argAp = apSome(ap)
         ) else (
-          summaryCtx = TParamNodeNone() and argAp = apNone()
+          summaryCtx = TParameterPositionNone() and argAp = apNone()
         )
       )
       or
       // flow out of a callable
-      fwdFlowOutNotFromArg(node, state, cc, summaryCtx, argAp, ap, config)
+      exists(
+        DataFlowCall call, RetNodeEx ret, boolean allowsFieldFlow, CcNoCall innercc,
+        DataFlowCallable inner
+      |
+        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, config) and
+        flowOutOfCall(call, ret, _, node, allowsFieldFlow, config) and
+        inner = ret.getEnclosingCallable() and
+        cc = getCallContextReturn(inner, call, innercc) and
+        if allowsFieldFlow = false then ap instanceof ApNil else any()
+      )
       or
       // flow through a callable
-      exists(DataFlowCall call, ParamNode summaryCtx0, Ap argAp0 |
+      exists(DataFlowCall call, ParameterPosition summaryCtx0, Ap argAp0 |
         fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, config) and
         fwdFlowIsEntered(call, cc, summaryCtx, argAp, summaryCtx0, argAp0, config)
       )
@@ -1381,7 +1411,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowStore(
       NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc,
-      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
+      ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
     ) {
       exists(DataFlowType contentType |
         fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, config) and
@@ -1406,7 +1436,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowRead(
       Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc,
-      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
+      ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
     ) {
       fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, c, node2, config) and
@@ -1416,7 +1446,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowIn(
       DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, Cc innercc,
-      ParamNodeOption summaryCtx, ApOption argAp, Ap ap, Configuration config
+      ParameterPositionOption summaryCtx, ApOption argAp, Ap ap, Configuration config
     ) {
       exists(ArgNodeEx arg, boolean allowsFieldFlow |
         fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, config) and
@@ -1427,32 +1457,19 @@ private module MkStage<StageSig PrevStage> {
     }
 
     pragma[nomagic]
-    private predicate fwdFlowOutNotFromArg(
-      NodeEx out, FlowState state, Cc ccOut, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+    private predicate fwdFlowOutFromArg(
+      DataFlowCall call, NodeEx out, FlowState state, ParameterPosition summaryCtx, Ap argAp, Ap ap,
       Configuration config
     ) {
       exists(
-        DataFlowCall call, RetNodeEx ret, boolean allowsFieldFlow, CcNoCall innercc,
-        DataFlowCallable inner
+        DataFlowCallable c, RetNodeEx ret, ReturnKindExt kind, boolean allowsFieldFlow, CcCall ccc
       |
-        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, config) and
-        flowOutOfCall(call, ret, _, out, allowsFieldFlow, config) and
-        inner = ret.getEnclosingCallable() and
-        ccOut = getCallContextReturn(inner, call, innercc) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
-      )
-    }
-
-    pragma[nomagic]
-    private predicate fwdFlowOutFromArg(
-      DataFlowCall call, NodeEx out, FlowState state, ParamNode summaryCtx, Ap argAp, Ap ap,
-      Configuration config
-    ) {
-      exists(RetNodeEx ret, ReturnKindExt kind, boolean allowsFieldFlow, CcCall ccc |
-        fwdFlow(ret, state, ccc, TParamNodeSome(summaryCtx), apSome(argAp), ap, config) and
-        flowThroughOutOfCall(call, ccc, ret, kind, out, allowsFieldFlow, config) and
+        fwdFlow(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc),
+          TParameterPositionSome(pragma[only_bind_into](summaryCtx)), apSome(argAp), ap, config) and
+        flowThroughOutOfCall(call, pragma[only_bind_into](c), ccc, ret, kind, out, allowsFieldFlow,
+          config) and
         (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
-        parameterFlowThroughAllowed(summaryCtx, kind)
+        parameterFlowThroughAllowed(c, pragma[only_bind_into](summaryCtx), kind)
       )
     }
 
@@ -1462,13 +1479,13 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate fwdFlowIsEntered(
-      DataFlowCall call, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, ParamNode p, Ap ap,
-      Configuration config
+      DataFlowCall call, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      ParameterPosition pos, Ap ap, Configuration config
     ) {
       exists(ParamNodeEx param |
         fwdFlowIn(call, param, _, cc, _, summaryCtx, argAp, ap, config) and
         PrevStage::parameterMayFlowThrough(param, unbindApa(getApprox(ap)), config) and
-        p = param.asNode()
+        pos = param.getPosition()
       )
     }
 
@@ -1489,23 +1506,41 @@ private module MkStage<StageSig PrevStage> {
     }
 
     pragma[nomagic]
-    private predicate returnFlowsThrough(
-      RetNodeEx ret, ReturnPosition pos, FlowState state, CcCall ccc, ParamNode p, Ap argAp, Ap ap,
-      Configuration config
+    private predicate returnFlowsThrough0(
+      RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, DataFlowCallable c,
+      ParameterPosition ppos, Ap argAp, Ap ap, Configuration config
     ) {
-      fwdFlow(ret, state, ccc, TParamNodeSome(p), apSome(argAp), ap, config) and
-      pos = ret.getReturnPosition() and
-      parameterFlowThroughAllowed(p, pos.getKind())
+      exists(boolean allowsFieldFlow |
+        fwdFlow(ret, state, ccc, TParameterPositionSome(ppos), apSome(argAp), ap, config) and
+        flowThroughOutOfCall(_, c, _, pragma[only_bind_into](ret), kind, _, allowsFieldFlow,
+          pragma[only_bind_into](config)) and
+        if allowsFieldFlow = false then ap instanceof ApNil else any()
+      )
+    }
+
+    pragma[nomagic]
+    private predicate returnFlowsThrough(
+      RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, ParamNodeEx p, Ap argAp,
+      Ap ap, Configuration config
+    ) {
+      exists(DataFlowCallable c, ParameterPosition ppos |
+        returnFlowsThrough0(ret, kind, state, ccc, c, ppos, argAp, ap, config) and
+        p.isParameterOf(c, ppos) and
+        parameterFlowThroughAllowed(p, kind)
+      )
     }
 
     pragma[nomagic]
     private predicate flowThroughIntoCall(
       DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
     ) {
-      flowIntoCall(call, pragma[only_bind_into](arg), pragma[only_bind_into](p), allowsFieldFlow,
-        pragma[only_bind_into](config)) and
-      fwdFlow(arg, _, _, _, _, _, pragma[only_bind_into](config)) and
-      returnFlowsThrough(_, _, _, _, p.asNode(), _, _, pragma[only_bind_into](config))
+      exists(Ap argAp |
+        flowIntoCall(call, pragma[only_bind_into](arg), pragma[only_bind_into](p), allowsFieldFlow,
+          pragma[only_bind_into](config)) and
+        fwdFlow(arg, _, _, _, _, pragma[only_bind_into](argAp), pragma[only_bind_into](config)) and
+        returnFlowsThrough(_, _, _, _, p, pragma[only_bind_into](argAp), _,
+          pragma[only_bind_into](config))
+      )
     }
 
     /**
@@ -1591,21 +1626,25 @@ private module MkStage<StageSig PrevStage> {
       )
       or
       // flow into a callable
-      revFlowInNotToReturn(node, state, returnAp, ap, config) and
-      returnCtx = TReturnCtxNone()
+      exists(ParamNodeEx p, boolean allowsFieldFlow |
+        revFlow(p, state, TReturnCtxNone(), returnAp, ap, config) and
+        flowIntoCall(_, node, p, allowsFieldFlow, config) and
+        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
+        returnCtx = TReturnCtxNone()
+      )
       or
       // flow through a callable
-      exists(DataFlowCall call, ReturnPosition returnPos0, Ap returnAp0 |
-        revFlowInToReturn(call, node, state, returnPos0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnPos0, returnAp0, config)
+      exists(DataFlowCall call, ReturnKindExt returnKind0, Ap returnAp0 |
+        revFlowInToReturn(call, node, state, returnKind0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
       )
       or
       // flow out of a callable
-      exists(ReturnPosition pos |
-        revFlowOut(_, node, pos, state, _, _, ap, config) and
-        if returnFlowsThrough(node, pos, state, _, _, _, ap, config)
+      exists(ReturnKindExt kind |
+        revFlowOut(_, node, kind, state, _, _, ap, config) and
+        if returnFlowsThrough(node, kind, state, _, _, _, ap, config)
         then (
-          returnCtx = TReturnCtxMaybeFlowThrough(pos) and
+          returnCtx = TReturnCtxMaybeFlowThrough(kind) and
           returnAp = apSome(ap)
         ) else (
           returnCtx = TReturnCtxNoFlowThrough() and returnAp = apNone()
@@ -1638,37 +1677,27 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate revFlowOut(
-      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, FlowState state, ReturnCtx returnCtx,
+      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, FlowState state, ReturnCtx returnCtx,
       ApOption returnAp, Ap ap, Configuration config
     ) {
       exists(NodeEx out, boolean allowsFieldFlow |
         revFlow(out, state, returnCtx, returnAp, ap, config) and
-        flowOutOfCall(call, ret, pos, out, allowsFieldFlow, config) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
-      )
-    }
-
-    pragma[nomagic]
-    private predicate revFlowInNotToReturn(
-      ArgNodeEx arg, FlowState state, ApOption returnAp, Ap ap, Configuration config
-    ) {
-      exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(p, state, TReturnCtxNone(), returnAp, ap, config) and
-        flowIntoCall(_, arg, p, allowsFieldFlow, config) and
+        flowOutOfCall(call, ret, kind, out, allowsFieldFlow, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
     pragma[nomagic]
     private predicate revFlowInToReturn(
-      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnPosition returnPos, Ap returnAp,
-      Ap ap, Configuration config
+      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap,
+      Configuration config
     ) {
       exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(p, state, TReturnCtxMaybeFlowThrough(returnPos), apSome(returnAp), ap, config) and
+        revFlow(pragma[only_bind_into](p), state,
+          TReturnCtxMaybeFlowThrough(pragma[only_bind_into](kind)), apSome(returnAp), ap, config) and
         flowThroughIntoCall(call, arg, p, allowsFieldFlow, config) and
         (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
-        parameterFlowThroughAllowed(p.asNode(), returnPos.getKind())
+        parameterFlowThroughAllowed(p, kind)
       )
     }
 
@@ -1679,12 +1708,12 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate revFlowIsReturned(
-      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnPosition pos, Ap ap,
+      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnKindExt kind, Ap ap,
       Configuration config
     ) {
       exists(RetNodeEx ret, FlowState state, CcCall ccc |
-        revFlowOut(call, ret, pos, state, returnCtx, returnAp, ap, config) and
-        returnFlowsThrough(ret, pos, state, ccc, _, _, ap, config) and
+        revFlowOut(call, ret, kind, state, returnCtx, returnAp, ap, config) and
+        returnFlowsThrough(ret, kind, state, ccc, _, _, ap, config) and
         matchesCall(ccc, call)
       )
     }
@@ -1757,37 +1786,37 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate parameterFlowsThroughRev(
-      ParamNodeEx p, Ap ap, ReturnPosition returnPos, Configuration config
+      ParamNodeEx p, Ap ap, ReturnKindExt kind, Configuration config
     ) {
-      revFlow(p, _, TReturnCtxMaybeFlowThrough(returnPos), apSome(_), ap, config) and
-      parameterFlowThroughAllowed(p.asNode(), returnPos.getKind())
+      revFlow(p, _, TReturnCtxMaybeFlowThrough(kind), apSome(_), ap, config) and
+      parameterFlowThroughAllowed(p, kind)
     }
 
     pragma[nomagic]
     predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
-      exists(RetNodeEx ret, ReturnPosition pos |
-        returnFlowsThrough(ret, pos, _, _, p.asNode(), ap, _, config) and
-        parameterFlowsThroughRev(p, ap, pos, config)
+      exists(RetNodeEx ret, ReturnKindExt kind |
+        returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
+        parameterFlowsThroughRev(p, ap, kind, config)
       )
     }
 
     pragma[nomagic]
-    predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config) {
+    predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config) {
       exists(ParamNodeEx p, Ap ap |
-        returnFlowsThrough(ret, pos, _, _, p.asNode(), ap, _, config) and
-        parameterFlowsThroughRev(p, ap, pos, config)
+        returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
+        parameterFlowsThroughRev(p, ap, kind, config)
       )
     }
 
     pragma[nomagic]
     predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
       exists(
-        ReturnPosition returnPos0, Ap returnAp0, ArgNodeEx arg, FlowState state,
+        ReturnKindExt returnKind0, Ap returnAp0, ArgNodeEx arg, FlowState state,
         ReturnCtx returnCtx, ApOption returnAp, Ap ap
       |
         revFlow(arg, state, returnCtx, returnAp, ap, config) and
-        revFlowInToReturn(call, arg, state, returnPos0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnPos0, returnAp0, config)
+        revFlowInToReturn(call, arg, state, returnKind0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
       )
     }
 
@@ -1800,9 +1829,8 @@ private module MkStage<StageSig PrevStage> {
       conscand = count(TypedContent f0, Ap ap | fwdConsCand(f0, ap, config)) and
       states = count(FlowState state | fwdFlow(_, state, _, _, _, _, config)) and
       tuples =
-        count(NodeEx n, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap |
-          fwdFlow(n, state, cc, summaryCtx, argAp, ap, config)
-        )
+        count(NodeEx n, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+          Ap ap | fwdFlow(n, state, cc, summaryCtx, argAp, ap, config))
       or
       fwd = false and
       nodes = count(NodeEx node | revFlow(node, _, _, _, _, config)) and
@@ -1992,10 +2020,10 @@ private module Stage2 implements StageSig {
 
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand2(
-  DataFlowCall call, RetNodeEx node1, ReturnPosition pos, NodeEx node2, boolean allowsFieldFlow,
+  DataFlowCall call, RetNodeEx node1, ReturnKindExt kind, NodeEx node2, boolean allowsFieldFlow,
   Configuration config
 ) {
-  flowOutOfCallNodeCand1(call, node1, pos, node2, allowsFieldFlow, config) and
+  flowOutOfCallNodeCand1(call, node1, kind, node2, allowsFieldFlow, config) and
   Stage2::revFlow(node2, pragma[only_bind_into](config)) and
   Stage2::revFlowAlias(node1, pragma[only_bind_into](config))
 }
@@ -2511,11 +2539,11 @@ private module Stage4Param implements MkStage<Stage3>::StageParam {
 
   pragma[nomagic]
   predicate flowOutOfCall(
-    DataFlowCall call, RetNodeEx node1, ReturnPosition pos, NodeEx node2, boolean allowsFieldFlow,
+    DataFlowCall call, RetNodeEx node1, ReturnKindExt kind, NodeEx node2, boolean allowsFieldFlow,
     Configuration config
   ) {
     exists(FlowState state |
-      flowOutOfCallNodeCand2(call, node1, pos, node2, allowsFieldFlow, config) and
+      flowOutOfCallNodeCand2(call, node1, kind, node2, allowsFieldFlow, config) and
       PrevStage::revFlow(node2, pragma[only_bind_into](state), _, pragma[only_bind_into](config)) and
       PrevStage::revFlowAlias(node1, pragma[only_bind_into](state), _,
         pragma[only_bind_into](config))
@@ -2552,12 +2580,13 @@ private Configuration unbindConf(Configuration conf) {
 
 pragma[nomagic]
 private predicate nodeMayUseSummary0(
-  NodeEx n, ParamNodeEx p, FlowState state, AccessPathApprox apa, Configuration config
+  NodeEx n, DataFlowCallable c, ParameterPosition pos, FlowState state, AccessPathApprox apa,
+  Configuration config
 ) {
   exists(AccessPathApprox apa0 |
-    Stage4::parameterMayFlowThrough(p, _, _) and
+    c = n.getEnclosingCallable() and
     Stage4::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
-    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TParamNodeSome(p.asNode()),
+    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TParameterPositionSome(pos),
       TAccessPathApproxSome(apa), apa0, config)
   )
 }
@@ -2566,9 +2595,10 @@ pragma[nomagic]
 private predicate nodeMayUseSummary(
   NodeEx n, FlowState state, AccessPathApprox apa, Configuration config
 ) {
-  exists(ParamNodeEx p |
+  exists(DataFlowCallable c, ParameterPosition pos, ParamNodeEx p |
     Stage4::parameterMayFlowThrough(p, apa, config) and
-    nodeMayUseSummary0(n, p, state, apa, config)
+    nodeMayUseSummary0(n, c, pos, state, apa, config) and
+    p.isParameterOf(c, pos)
   )
 }
 
@@ -3501,7 +3531,7 @@ private predicate paramFlowsThrough(
     pathNode(mid, ret, state, cc, sc, ap, config, _) and
     kind = ret.getKind() and
     apa = ap.getApprox() and
-    parameterFlowThroughAllowed(sc.getParamNode().asNode(), kind)
+    parameterFlowThroughAllowed(sc.getParamNode(), kind)
   )
 }
 
diff --git a/cpp/ql/lib/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl.qll b/cpp/ql/lib/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl.qll
index a52ad110662..e4cfd5986be 100644
--- a/cpp/ql/lib/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl.qll
+++ b/cpp/ql/lib/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl.qll
@@ -613,11 +613,28 @@ private predicate hasSinkCallCtx(Configuration config) {
  * explicitly allowed
  */
 bindingset[p, kind]
-private predicate parameterFlowThroughAllowed(ParamNode p, ReturnKindExt kind) {
+private predicate parameterFlowThroughAllowed(ParamNodeEx p, ReturnKindExt kind) {
   exists(ParameterPosition pos | p.isParameterOf(_, pos) |
     not kind.(ParamUpdateReturnKind).getPosition() = pos
     or
-    allowParameterReturnInSelfCached(p)
+    allowParameterReturnInSelfCached(p.asNode())
+  )
+}
+
+/**
+ * Holds if flow from a parameter at position `pos` inside `c` to a return node of
+ * kind `kind` is allowed.
+ *
+ * We don't expect a parameter to return stored in itself, unless
+ * explicitly allowed
+ */
+bindingset[c, pos, kind]
+private predicate parameterFlowThroughAllowed(
+  DataFlowCallable c, ParameterPosition pos, ReturnKindExt kind
+) {
+  exists(ParamNodeEx p |
+    p.isParameterOf(c, pos) and
+    parameterFlowThroughAllowed(p, kind)
   )
 }
 
@@ -1000,14 +1017,14 @@ private module Stage1 implements StageSig {
       returnFlowCallableNodeCand(c, kind, config) and
       p.getEnclosingCallable() = c and
       exists(ap) and
-      parameterFlowThroughAllowed(p.asNode(), kind)
+      parameterFlowThroughAllowed(p, kind)
     )
   }
 
   pragma[nomagic]
-  predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config) {
+  predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config) {
     throughFlowNodeCand(ret, config) and
-    pos = ret.getReturnPosition()
+    kind = ret.getKind()
   }
 
   pragma[nomagic]
@@ -1066,13 +1083,16 @@ private predicate viableReturnPosOutNodeCand1(
  */
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand1(
-  DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, Configuration config
+  DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, Configuration config
 ) {
-  viableReturnPosOutNodeCand1(call, pos, out, config) and
-  pos = ret.getReturnPosition() and
-  Stage1::revFlow(ret, config) and
-  not outBarrier(ret, config) and
-  not inBarrier(out, config)
+  exists(ReturnPosition pos |
+    viableReturnPosOutNodeCand1(call, pos, out, config) and
+    pos = ret.getReturnPosition() and
+    kind = pos.getKind() and
+    Stage1::revFlow(ret, config) and
+    not outBarrier(ret, config) and
+    not inBarrier(out, config)
+  )
 }
 
 pragma[nomagic]
@@ -1102,6 +1122,7 @@ private predicate flowIntoCallNodeCand1(
  * edge in the graph of paths between sources and sinks that ignores call
  * contexts.
  */
+pragma[nomagic]
 private int branch(NodeEx n1, Configuration conf) {
   result =
     strictcount(NodeEx n |
@@ -1114,6 +1135,7 @@ private int branch(NodeEx n1, Configuration conf) {
  * edge in the graph of paths between sources and sinks that ignores call
  * contexts.
  */
+pragma[nomagic]
 private int join(NodeEx n2, Configuration conf) {
   result =
     strictcount(NodeEx n |
@@ -1130,10 +1152,10 @@ private int join(NodeEx n2, Configuration conf) {
  */
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand1(
-  DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
+  DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
   Configuration config
 ) {
-  flowOutOfCallNodeCand1(call, ret, pos, out, pragma[only_bind_into](config)) and
+  flowOutOfCallNodeCand1(call, ret, kind, out, pragma[only_bind_into](config)) and
   exists(int b, int j |
     b = branch(ret, pragma[only_bind_into](config)) and
     j = join(out, pragma[only_bind_into](config)) and
@@ -1152,10 +1174,10 @@ pragma[nomagic]
 private predicate flowIntoCallNodeCand1(
   DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
 ) {
-  flowIntoCallNodeCand1(call, arg, p, config) and
+  flowIntoCallNodeCand1(call, arg, p, pragma[only_bind_into](config)) and
   exists(int b, int j |
-    b = branch(arg, config) and
-    j = join(p, config) and
+    b = branch(arg, pragma[only_bind_into](config)) and
+    j = join(p, pragma[only_bind_into](config)) and
     if b.minimum(j) <= config.fieldFlowBranchLimit()
     then allowsFieldFlow = true
     else allowsFieldFlow = false
@@ -1174,7 +1196,7 @@ private signature module StageSig {
 
   predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config);
 
-  predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config);
+  predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config);
 
   predicate storeStepCand(
     NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, DataFlowType contentType,
@@ -1240,7 +1262,7 @@ private module MkStage<StageSig PrevStage> {
     );
 
     predicate flowOutOfCall(
-      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
+      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
       Configuration config
     );
 
@@ -1266,16 +1288,14 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate flowThroughOutOfCall(
-      DataFlowCall call, CcCall ccc, RetNodeEx ret, ReturnKindExt kind, NodeEx out,
-      boolean allowsFieldFlow, Configuration config
+      DataFlowCall call, DataFlowCallable c, CcCall ccc, RetNodeEx ret, ReturnKindExt kind,
+      NodeEx out, boolean allowsFieldFlow, Configuration config
     ) {
-      exists(ReturnPosition pos |
-        flowOutOfCall(call, ret, pos, out, allowsFieldFlow, pragma[only_bind_into](config)) and
-        kind = pos.getKind() and
-        PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
-        PrevStage::returnMayFlowThrough(ret, pos, pragma[only_bind_into](config)) and
-        matchesCall(ccc, call)
-      )
+      flowOutOfCall(call, ret, kind, out, allowsFieldFlow, pragma[only_bind_into](config)) and
+      PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
+      PrevStage::returnMayFlowThrough(ret, kind, pragma[only_bind_into](config)) and
+      matchesCall(ccc, call) and
+      c = ret.getEnclosingCallable()
     }
 
     /**
@@ -1284,12 +1304,12 @@ private module MkStage<StageSig PrevStage> {
      *
      * The call context `cc` records whether the node is reached through an
      * argument in a call, and if so, `summaryCtx` and `argAp` record the
-     * corresponding parameter and access path of that argument, respectively.
+     * corresponding parameter position and access path of that argument, respectively.
      */
     pragma[nomagic]
     additional predicate fwdFlow(
-      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
-      Configuration config
+      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      Ap ap, Configuration config
     ) {
       fwdFlow0(node, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::revFlow(node, state, unbindApa(getApprox(ap)), config) and
@@ -1298,13 +1318,13 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlow0(
-      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
-      Configuration config
+      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      Ap ap, Configuration config
     ) {
       sourceNode(node, state, config) and
       (if hasSourceCallCtx(config) then cc = ccSomeCall() else cc = ccNone()) and
       argAp = apNone() and
-      summaryCtx = TParamNodeNone() and
+      summaryCtx = TParameterPositionNone() and
       ap = getApNil(node)
       or
       exists(NodeEx mid, FlowState state0, Ap ap0, LocalCc localCc |
@@ -1322,7 +1342,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, pragma[only_bind_into](config)) and
         jumpStep(mid, node, config) and
         cc = ccNone() and
-        summaryCtx = TParamNodeNone() and
+        summaryCtx = TParameterPositionNone() and
         argAp = apNone()
       )
       or
@@ -1330,7 +1350,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, state, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStep(mid, node, config) and
         cc = ccNone() and
-        summaryCtx = TParamNodeNone() and
+        summaryCtx = TParameterPositionNone() and
         argAp = apNone() and
         ap = getApNil(node)
       )
@@ -1339,7 +1359,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, state0, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStateStep(mid, state0, node, state, config) and
         cc = ccNone() and
-        summaryCtx = TParamNodeNone() and
+        summaryCtx = TParameterPositionNone() and
         argAp = apNone() and
         ap = getApNil(node)
       )
@@ -1362,17 +1382,27 @@ private module MkStage<StageSig PrevStage> {
         apa = getApprox(ap) and
         if PrevStage::parameterMayFlowThrough(node, apa, config)
         then (
-          summaryCtx = TParamNodeSome(node.asNode()) and argAp = apSome(ap)
+          summaryCtx = TParameterPositionSome(node.(ParamNodeEx).getPosition()) and
+          argAp = apSome(ap)
         ) else (
-          summaryCtx = TParamNodeNone() and argAp = apNone()
+          summaryCtx = TParameterPositionNone() and argAp = apNone()
         )
       )
       or
       // flow out of a callable
-      fwdFlowOutNotFromArg(node, state, cc, summaryCtx, argAp, ap, config)
+      exists(
+        DataFlowCall call, RetNodeEx ret, boolean allowsFieldFlow, CcNoCall innercc,
+        DataFlowCallable inner
+      |
+        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, config) and
+        flowOutOfCall(call, ret, _, node, allowsFieldFlow, config) and
+        inner = ret.getEnclosingCallable() and
+        cc = getCallContextReturn(inner, call, innercc) and
+        if allowsFieldFlow = false then ap instanceof ApNil else any()
+      )
       or
       // flow through a callable
-      exists(DataFlowCall call, ParamNode summaryCtx0, Ap argAp0 |
+      exists(DataFlowCall call, ParameterPosition summaryCtx0, Ap argAp0 |
         fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, config) and
         fwdFlowIsEntered(call, cc, summaryCtx, argAp, summaryCtx0, argAp0, config)
       )
@@ -1381,7 +1411,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowStore(
       NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc,
-      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
+      ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
     ) {
       exists(DataFlowType contentType |
         fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, config) and
@@ -1406,7 +1436,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowRead(
       Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc,
-      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
+      ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
     ) {
       fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, c, node2, config) and
@@ -1416,7 +1446,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowIn(
       DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, Cc innercc,
-      ParamNodeOption summaryCtx, ApOption argAp, Ap ap, Configuration config
+      ParameterPositionOption summaryCtx, ApOption argAp, Ap ap, Configuration config
     ) {
       exists(ArgNodeEx arg, boolean allowsFieldFlow |
         fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, config) and
@@ -1427,32 +1457,19 @@ private module MkStage<StageSig PrevStage> {
     }
 
     pragma[nomagic]
-    private predicate fwdFlowOutNotFromArg(
-      NodeEx out, FlowState state, Cc ccOut, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+    private predicate fwdFlowOutFromArg(
+      DataFlowCall call, NodeEx out, FlowState state, ParameterPosition summaryCtx, Ap argAp, Ap ap,
       Configuration config
     ) {
       exists(
-        DataFlowCall call, RetNodeEx ret, boolean allowsFieldFlow, CcNoCall innercc,
-        DataFlowCallable inner
+        DataFlowCallable c, RetNodeEx ret, ReturnKindExt kind, boolean allowsFieldFlow, CcCall ccc
       |
-        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, config) and
-        flowOutOfCall(call, ret, _, out, allowsFieldFlow, config) and
-        inner = ret.getEnclosingCallable() and
-        ccOut = getCallContextReturn(inner, call, innercc) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
-      )
-    }
-
-    pragma[nomagic]
-    private predicate fwdFlowOutFromArg(
-      DataFlowCall call, NodeEx out, FlowState state, ParamNode summaryCtx, Ap argAp, Ap ap,
-      Configuration config
-    ) {
-      exists(RetNodeEx ret, ReturnKindExt kind, boolean allowsFieldFlow, CcCall ccc |
-        fwdFlow(ret, state, ccc, TParamNodeSome(summaryCtx), apSome(argAp), ap, config) and
-        flowThroughOutOfCall(call, ccc, ret, kind, out, allowsFieldFlow, config) and
+        fwdFlow(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc),
+          TParameterPositionSome(pragma[only_bind_into](summaryCtx)), apSome(argAp), ap, config) and
+        flowThroughOutOfCall(call, pragma[only_bind_into](c), ccc, ret, kind, out, allowsFieldFlow,
+          config) and
         (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
-        parameterFlowThroughAllowed(summaryCtx, kind)
+        parameterFlowThroughAllowed(c, pragma[only_bind_into](summaryCtx), kind)
       )
     }
 
@@ -1462,13 +1479,13 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate fwdFlowIsEntered(
-      DataFlowCall call, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, ParamNode p, Ap ap,
-      Configuration config
+      DataFlowCall call, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      ParameterPosition pos, Ap ap, Configuration config
     ) {
       exists(ParamNodeEx param |
         fwdFlowIn(call, param, _, cc, _, summaryCtx, argAp, ap, config) and
         PrevStage::parameterMayFlowThrough(param, unbindApa(getApprox(ap)), config) and
-        p = param.asNode()
+        pos = param.getPosition()
       )
     }
 
@@ -1489,23 +1506,41 @@ private module MkStage<StageSig PrevStage> {
     }
 
     pragma[nomagic]
-    private predicate returnFlowsThrough(
-      RetNodeEx ret, ReturnPosition pos, FlowState state, CcCall ccc, ParamNode p, Ap argAp, Ap ap,
-      Configuration config
+    private predicate returnFlowsThrough0(
+      RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, DataFlowCallable c,
+      ParameterPosition ppos, Ap argAp, Ap ap, Configuration config
     ) {
-      fwdFlow(ret, state, ccc, TParamNodeSome(p), apSome(argAp), ap, config) and
-      pos = ret.getReturnPosition() and
-      parameterFlowThroughAllowed(p, pos.getKind())
+      exists(boolean allowsFieldFlow |
+        fwdFlow(ret, state, ccc, TParameterPositionSome(ppos), apSome(argAp), ap, config) and
+        flowThroughOutOfCall(_, c, _, pragma[only_bind_into](ret), kind, _, allowsFieldFlow,
+          pragma[only_bind_into](config)) and
+        if allowsFieldFlow = false then ap instanceof ApNil else any()
+      )
+    }
+
+    pragma[nomagic]
+    private predicate returnFlowsThrough(
+      RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, ParamNodeEx p, Ap argAp,
+      Ap ap, Configuration config
+    ) {
+      exists(DataFlowCallable c, ParameterPosition ppos |
+        returnFlowsThrough0(ret, kind, state, ccc, c, ppos, argAp, ap, config) and
+        p.isParameterOf(c, ppos) and
+        parameterFlowThroughAllowed(p, kind)
+      )
     }
 
     pragma[nomagic]
     private predicate flowThroughIntoCall(
       DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
     ) {
-      flowIntoCall(call, pragma[only_bind_into](arg), pragma[only_bind_into](p), allowsFieldFlow,
-        pragma[only_bind_into](config)) and
-      fwdFlow(arg, _, _, _, _, _, pragma[only_bind_into](config)) and
-      returnFlowsThrough(_, _, _, _, p.asNode(), _, _, pragma[only_bind_into](config))
+      exists(Ap argAp |
+        flowIntoCall(call, pragma[only_bind_into](arg), pragma[only_bind_into](p), allowsFieldFlow,
+          pragma[only_bind_into](config)) and
+        fwdFlow(arg, _, _, _, _, pragma[only_bind_into](argAp), pragma[only_bind_into](config)) and
+        returnFlowsThrough(_, _, _, _, p, pragma[only_bind_into](argAp), _,
+          pragma[only_bind_into](config))
+      )
     }
 
     /**
@@ -1591,21 +1626,25 @@ private module MkStage<StageSig PrevStage> {
       )
       or
       // flow into a callable
-      revFlowInNotToReturn(node, state, returnAp, ap, config) and
-      returnCtx = TReturnCtxNone()
+      exists(ParamNodeEx p, boolean allowsFieldFlow |
+        revFlow(p, state, TReturnCtxNone(), returnAp, ap, config) and
+        flowIntoCall(_, node, p, allowsFieldFlow, config) and
+        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
+        returnCtx = TReturnCtxNone()
+      )
       or
       // flow through a callable
-      exists(DataFlowCall call, ReturnPosition returnPos0, Ap returnAp0 |
-        revFlowInToReturn(call, node, state, returnPos0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnPos0, returnAp0, config)
+      exists(DataFlowCall call, ReturnKindExt returnKind0, Ap returnAp0 |
+        revFlowInToReturn(call, node, state, returnKind0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
       )
       or
       // flow out of a callable
-      exists(ReturnPosition pos |
-        revFlowOut(_, node, pos, state, _, _, ap, config) and
-        if returnFlowsThrough(node, pos, state, _, _, _, ap, config)
+      exists(ReturnKindExt kind |
+        revFlowOut(_, node, kind, state, _, _, ap, config) and
+        if returnFlowsThrough(node, kind, state, _, _, _, ap, config)
         then (
-          returnCtx = TReturnCtxMaybeFlowThrough(pos) and
+          returnCtx = TReturnCtxMaybeFlowThrough(kind) and
           returnAp = apSome(ap)
         ) else (
           returnCtx = TReturnCtxNoFlowThrough() and returnAp = apNone()
@@ -1638,37 +1677,27 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate revFlowOut(
-      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, FlowState state, ReturnCtx returnCtx,
+      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, FlowState state, ReturnCtx returnCtx,
       ApOption returnAp, Ap ap, Configuration config
     ) {
       exists(NodeEx out, boolean allowsFieldFlow |
         revFlow(out, state, returnCtx, returnAp, ap, config) and
-        flowOutOfCall(call, ret, pos, out, allowsFieldFlow, config) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
-      )
-    }
-
-    pragma[nomagic]
-    private predicate revFlowInNotToReturn(
-      ArgNodeEx arg, FlowState state, ApOption returnAp, Ap ap, Configuration config
-    ) {
-      exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(p, state, TReturnCtxNone(), returnAp, ap, config) and
-        flowIntoCall(_, arg, p, allowsFieldFlow, config) and
+        flowOutOfCall(call, ret, kind, out, allowsFieldFlow, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
     pragma[nomagic]
     private predicate revFlowInToReturn(
-      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnPosition returnPos, Ap returnAp,
-      Ap ap, Configuration config
+      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap,
+      Configuration config
     ) {
       exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(p, state, TReturnCtxMaybeFlowThrough(returnPos), apSome(returnAp), ap, config) and
+        revFlow(pragma[only_bind_into](p), state,
+          TReturnCtxMaybeFlowThrough(pragma[only_bind_into](kind)), apSome(returnAp), ap, config) and
         flowThroughIntoCall(call, arg, p, allowsFieldFlow, config) and
         (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
-        parameterFlowThroughAllowed(p.asNode(), returnPos.getKind())
+        parameterFlowThroughAllowed(p, kind)
       )
     }
 
@@ -1679,12 +1708,12 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate revFlowIsReturned(
-      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnPosition pos, Ap ap,
+      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnKindExt kind, Ap ap,
       Configuration config
     ) {
       exists(RetNodeEx ret, FlowState state, CcCall ccc |
-        revFlowOut(call, ret, pos, state, returnCtx, returnAp, ap, config) and
-        returnFlowsThrough(ret, pos, state, ccc, _, _, ap, config) and
+        revFlowOut(call, ret, kind, state, returnCtx, returnAp, ap, config) and
+        returnFlowsThrough(ret, kind, state, ccc, _, _, ap, config) and
         matchesCall(ccc, call)
       )
     }
@@ -1757,37 +1786,37 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate parameterFlowsThroughRev(
-      ParamNodeEx p, Ap ap, ReturnPosition returnPos, Configuration config
+      ParamNodeEx p, Ap ap, ReturnKindExt kind, Configuration config
     ) {
-      revFlow(p, _, TReturnCtxMaybeFlowThrough(returnPos), apSome(_), ap, config) and
-      parameterFlowThroughAllowed(p.asNode(), returnPos.getKind())
+      revFlow(p, _, TReturnCtxMaybeFlowThrough(kind), apSome(_), ap, config) and
+      parameterFlowThroughAllowed(p, kind)
     }
 
     pragma[nomagic]
     predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
-      exists(RetNodeEx ret, ReturnPosition pos |
-        returnFlowsThrough(ret, pos, _, _, p.asNode(), ap, _, config) and
-        parameterFlowsThroughRev(p, ap, pos, config)
+      exists(RetNodeEx ret, ReturnKindExt kind |
+        returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
+        parameterFlowsThroughRev(p, ap, kind, config)
       )
     }
 
     pragma[nomagic]
-    predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config) {
+    predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config) {
       exists(ParamNodeEx p, Ap ap |
-        returnFlowsThrough(ret, pos, _, _, p.asNode(), ap, _, config) and
-        parameterFlowsThroughRev(p, ap, pos, config)
+        returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
+        parameterFlowsThroughRev(p, ap, kind, config)
       )
     }
 
     pragma[nomagic]
     predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
       exists(
-        ReturnPosition returnPos0, Ap returnAp0, ArgNodeEx arg, FlowState state,
+        ReturnKindExt returnKind0, Ap returnAp0, ArgNodeEx arg, FlowState state,
         ReturnCtx returnCtx, ApOption returnAp, Ap ap
       |
         revFlow(arg, state, returnCtx, returnAp, ap, config) and
-        revFlowInToReturn(call, arg, state, returnPos0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnPos0, returnAp0, config)
+        revFlowInToReturn(call, arg, state, returnKind0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
       )
     }
 
@@ -1800,9 +1829,8 @@ private module MkStage<StageSig PrevStage> {
       conscand = count(TypedContent f0, Ap ap | fwdConsCand(f0, ap, config)) and
       states = count(FlowState state | fwdFlow(_, state, _, _, _, _, config)) and
       tuples =
-        count(NodeEx n, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap |
-          fwdFlow(n, state, cc, summaryCtx, argAp, ap, config)
-        )
+        count(NodeEx n, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+          Ap ap | fwdFlow(n, state, cc, summaryCtx, argAp, ap, config))
       or
       fwd = false and
       nodes = count(NodeEx node | revFlow(node, _, _, _, _, config)) and
@@ -1992,10 +2020,10 @@ private module Stage2 implements StageSig {
 
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand2(
-  DataFlowCall call, RetNodeEx node1, ReturnPosition pos, NodeEx node2, boolean allowsFieldFlow,
+  DataFlowCall call, RetNodeEx node1, ReturnKindExt kind, NodeEx node2, boolean allowsFieldFlow,
   Configuration config
 ) {
-  flowOutOfCallNodeCand1(call, node1, pos, node2, allowsFieldFlow, config) and
+  flowOutOfCallNodeCand1(call, node1, kind, node2, allowsFieldFlow, config) and
   Stage2::revFlow(node2, pragma[only_bind_into](config)) and
   Stage2::revFlowAlias(node1, pragma[only_bind_into](config))
 }
@@ -2511,11 +2539,11 @@ private module Stage4Param implements MkStage<Stage3>::StageParam {
 
   pragma[nomagic]
   predicate flowOutOfCall(
-    DataFlowCall call, RetNodeEx node1, ReturnPosition pos, NodeEx node2, boolean allowsFieldFlow,
+    DataFlowCall call, RetNodeEx node1, ReturnKindExt kind, NodeEx node2, boolean allowsFieldFlow,
     Configuration config
   ) {
     exists(FlowState state |
-      flowOutOfCallNodeCand2(call, node1, pos, node2, allowsFieldFlow, config) and
+      flowOutOfCallNodeCand2(call, node1, kind, node2, allowsFieldFlow, config) and
       PrevStage::revFlow(node2, pragma[only_bind_into](state), _, pragma[only_bind_into](config)) and
       PrevStage::revFlowAlias(node1, pragma[only_bind_into](state), _,
         pragma[only_bind_into](config))
@@ -2552,12 +2580,13 @@ private Configuration unbindConf(Configuration conf) {
 
 pragma[nomagic]
 private predicate nodeMayUseSummary0(
-  NodeEx n, ParamNodeEx p, FlowState state, AccessPathApprox apa, Configuration config
+  NodeEx n, DataFlowCallable c, ParameterPosition pos, FlowState state, AccessPathApprox apa,
+  Configuration config
 ) {
   exists(AccessPathApprox apa0 |
-    Stage4::parameterMayFlowThrough(p, _, _) and
+    c = n.getEnclosingCallable() and
     Stage4::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
-    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TParamNodeSome(p.asNode()),
+    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TParameterPositionSome(pos),
       TAccessPathApproxSome(apa), apa0, config)
   )
 }
@@ -2566,9 +2595,10 @@ pragma[nomagic]
 private predicate nodeMayUseSummary(
   NodeEx n, FlowState state, AccessPathApprox apa, Configuration config
 ) {
-  exists(ParamNodeEx p |
+  exists(DataFlowCallable c, ParameterPosition pos, ParamNodeEx p |
     Stage4::parameterMayFlowThrough(p, apa, config) and
-    nodeMayUseSummary0(n, p, state, apa, config)
+    nodeMayUseSummary0(n, c, pos, state, apa, config) and
+    p.isParameterOf(c, pos)
   )
 }
 
@@ -3501,7 +3531,7 @@ private predicate paramFlowsThrough(
     pathNode(mid, ret, state, cc, sc, ap, config, _) and
     kind = ret.getKind() and
     apa = ap.getApprox() and
-    parameterFlowThroughAllowed(sc.getParamNode().asNode(), kind)
+    parameterFlowThroughAllowed(sc.getParamNode(), kind)
   )
 }
 
diff --git a/cpp/ql/lib/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl2.qll b/cpp/ql/lib/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl2.qll
index a52ad110662..e4cfd5986be 100644
--- a/cpp/ql/lib/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl2.qll
+++ b/cpp/ql/lib/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl2.qll
@@ -613,11 +613,28 @@ private predicate hasSinkCallCtx(Configuration config) {
  * explicitly allowed
  */
 bindingset[p, kind]
-private predicate parameterFlowThroughAllowed(ParamNode p, ReturnKindExt kind) {
+private predicate parameterFlowThroughAllowed(ParamNodeEx p, ReturnKindExt kind) {
   exists(ParameterPosition pos | p.isParameterOf(_, pos) |
     not kind.(ParamUpdateReturnKind).getPosition() = pos
     or
-    allowParameterReturnInSelfCached(p)
+    allowParameterReturnInSelfCached(p.asNode())
+  )
+}
+
+/**
+ * Holds if flow from a parameter at position `pos` inside `c` to a return node of
+ * kind `kind` is allowed.
+ *
+ * We don't expect a parameter to return stored in itself, unless
+ * explicitly allowed
+ */
+bindingset[c, pos, kind]
+private predicate parameterFlowThroughAllowed(
+  DataFlowCallable c, ParameterPosition pos, ReturnKindExt kind
+) {
+  exists(ParamNodeEx p |
+    p.isParameterOf(c, pos) and
+    parameterFlowThroughAllowed(p, kind)
   )
 }
 
@@ -1000,14 +1017,14 @@ private module Stage1 implements StageSig {
       returnFlowCallableNodeCand(c, kind, config) and
       p.getEnclosingCallable() = c and
       exists(ap) and
-      parameterFlowThroughAllowed(p.asNode(), kind)
+      parameterFlowThroughAllowed(p, kind)
     )
   }
 
   pragma[nomagic]
-  predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config) {
+  predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config) {
     throughFlowNodeCand(ret, config) and
-    pos = ret.getReturnPosition()
+    kind = ret.getKind()
   }
 
   pragma[nomagic]
@@ -1066,13 +1083,16 @@ private predicate viableReturnPosOutNodeCand1(
  */
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand1(
-  DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, Configuration config
+  DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, Configuration config
 ) {
-  viableReturnPosOutNodeCand1(call, pos, out, config) and
-  pos = ret.getReturnPosition() and
-  Stage1::revFlow(ret, config) and
-  not outBarrier(ret, config) and
-  not inBarrier(out, config)
+  exists(ReturnPosition pos |
+    viableReturnPosOutNodeCand1(call, pos, out, config) and
+    pos = ret.getReturnPosition() and
+    kind = pos.getKind() and
+    Stage1::revFlow(ret, config) and
+    not outBarrier(ret, config) and
+    not inBarrier(out, config)
+  )
 }
 
 pragma[nomagic]
@@ -1102,6 +1122,7 @@ private predicate flowIntoCallNodeCand1(
  * edge in the graph of paths between sources and sinks that ignores call
  * contexts.
  */
+pragma[nomagic]
 private int branch(NodeEx n1, Configuration conf) {
   result =
     strictcount(NodeEx n |
@@ -1114,6 +1135,7 @@ private int branch(NodeEx n1, Configuration conf) {
  * edge in the graph of paths between sources and sinks that ignores call
  * contexts.
  */
+pragma[nomagic]
 private int join(NodeEx n2, Configuration conf) {
   result =
     strictcount(NodeEx n |
@@ -1130,10 +1152,10 @@ private int join(NodeEx n2, Configuration conf) {
  */
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand1(
-  DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
+  DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
   Configuration config
 ) {
-  flowOutOfCallNodeCand1(call, ret, pos, out, pragma[only_bind_into](config)) and
+  flowOutOfCallNodeCand1(call, ret, kind, out, pragma[only_bind_into](config)) and
   exists(int b, int j |
     b = branch(ret, pragma[only_bind_into](config)) and
     j = join(out, pragma[only_bind_into](config)) and
@@ -1152,10 +1174,10 @@ pragma[nomagic]
 private predicate flowIntoCallNodeCand1(
   DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
 ) {
-  flowIntoCallNodeCand1(call, arg, p, config) and
+  flowIntoCallNodeCand1(call, arg, p, pragma[only_bind_into](config)) and
   exists(int b, int j |
-    b = branch(arg, config) and
-    j = join(p, config) and
+    b = branch(arg, pragma[only_bind_into](config)) and
+    j = join(p, pragma[only_bind_into](config)) and
     if b.minimum(j) <= config.fieldFlowBranchLimit()
     then allowsFieldFlow = true
     else allowsFieldFlow = false
@@ -1174,7 +1196,7 @@ private signature module StageSig {
 
   predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config);
 
-  predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config);
+  predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config);
 
   predicate storeStepCand(
     NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, DataFlowType contentType,
@@ -1240,7 +1262,7 @@ private module MkStage<StageSig PrevStage> {
     );
 
     predicate flowOutOfCall(
-      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
+      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
       Configuration config
     );
 
@@ -1266,16 +1288,14 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate flowThroughOutOfCall(
-      DataFlowCall call, CcCall ccc, RetNodeEx ret, ReturnKindExt kind, NodeEx out,
-      boolean allowsFieldFlow, Configuration config
+      DataFlowCall call, DataFlowCallable c, CcCall ccc, RetNodeEx ret, ReturnKindExt kind,
+      NodeEx out, boolean allowsFieldFlow, Configuration config
     ) {
-      exists(ReturnPosition pos |
-        flowOutOfCall(call, ret, pos, out, allowsFieldFlow, pragma[only_bind_into](config)) and
-        kind = pos.getKind() and
-        PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
-        PrevStage::returnMayFlowThrough(ret, pos, pragma[only_bind_into](config)) and
-        matchesCall(ccc, call)
-      )
+      flowOutOfCall(call, ret, kind, out, allowsFieldFlow, pragma[only_bind_into](config)) and
+      PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
+      PrevStage::returnMayFlowThrough(ret, kind, pragma[only_bind_into](config)) and
+      matchesCall(ccc, call) and
+      c = ret.getEnclosingCallable()
     }
 
     /**
@@ -1284,12 +1304,12 @@ private module MkStage<StageSig PrevStage> {
      *
      * The call context `cc` records whether the node is reached through an
      * argument in a call, and if so, `summaryCtx` and `argAp` record the
-     * corresponding parameter and access path of that argument, respectively.
+     * corresponding parameter position and access path of that argument, respectively.
      */
     pragma[nomagic]
     additional predicate fwdFlow(
-      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
-      Configuration config
+      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      Ap ap, Configuration config
     ) {
       fwdFlow0(node, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::revFlow(node, state, unbindApa(getApprox(ap)), config) and
@@ -1298,13 +1318,13 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlow0(
-      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
-      Configuration config
+      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      Ap ap, Configuration config
     ) {
       sourceNode(node, state, config) and
       (if hasSourceCallCtx(config) then cc = ccSomeCall() else cc = ccNone()) and
       argAp = apNone() and
-      summaryCtx = TParamNodeNone() and
+      summaryCtx = TParameterPositionNone() and
       ap = getApNil(node)
       or
       exists(NodeEx mid, FlowState state0, Ap ap0, LocalCc localCc |
@@ -1322,7 +1342,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, pragma[only_bind_into](config)) and
         jumpStep(mid, node, config) and
         cc = ccNone() and
-        summaryCtx = TParamNodeNone() and
+        summaryCtx = TParameterPositionNone() and
         argAp = apNone()
       )
       or
@@ -1330,7 +1350,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, state, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStep(mid, node, config) and
         cc = ccNone() and
-        summaryCtx = TParamNodeNone() and
+        summaryCtx = TParameterPositionNone() and
         argAp = apNone() and
         ap = getApNil(node)
       )
@@ -1339,7 +1359,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, state0, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStateStep(mid, state0, node, state, config) and
         cc = ccNone() and
-        summaryCtx = TParamNodeNone() and
+        summaryCtx = TParameterPositionNone() and
         argAp = apNone() and
         ap = getApNil(node)
       )
@@ -1362,17 +1382,27 @@ private module MkStage<StageSig PrevStage> {
         apa = getApprox(ap) and
         if PrevStage::parameterMayFlowThrough(node, apa, config)
         then (
-          summaryCtx = TParamNodeSome(node.asNode()) and argAp = apSome(ap)
+          summaryCtx = TParameterPositionSome(node.(ParamNodeEx).getPosition()) and
+          argAp = apSome(ap)
         ) else (
-          summaryCtx = TParamNodeNone() and argAp = apNone()
+          summaryCtx = TParameterPositionNone() and argAp = apNone()
         )
       )
       or
       // flow out of a callable
-      fwdFlowOutNotFromArg(node, state, cc, summaryCtx, argAp, ap, config)
+      exists(
+        DataFlowCall call, RetNodeEx ret, boolean allowsFieldFlow, CcNoCall innercc,
+        DataFlowCallable inner
+      |
+        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, config) and
+        flowOutOfCall(call, ret, _, node, allowsFieldFlow, config) and
+        inner = ret.getEnclosingCallable() and
+        cc = getCallContextReturn(inner, call, innercc) and
+        if allowsFieldFlow = false then ap instanceof ApNil else any()
+      )
       or
       // flow through a callable
-      exists(DataFlowCall call, ParamNode summaryCtx0, Ap argAp0 |
+      exists(DataFlowCall call, ParameterPosition summaryCtx0, Ap argAp0 |
         fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, config) and
         fwdFlowIsEntered(call, cc, summaryCtx, argAp, summaryCtx0, argAp0, config)
       )
@@ -1381,7 +1411,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowStore(
       NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc,
-      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
+      ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
     ) {
       exists(DataFlowType contentType |
         fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, config) and
@@ -1406,7 +1436,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowRead(
       Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc,
-      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
+      ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
     ) {
       fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, c, node2, config) and
@@ -1416,7 +1446,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowIn(
       DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, Cc innercc,
-      ParamNodeOption summaryCtx, ApOption argAp, Ap ap, Configuration config
+      ParameterPositionOption summaryCtx, ApOption argAp, Ap ap, Configuration config
     ) {
       exists(ArgNodeEx arg, boolean allowsFieldFlow |
         fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, config) and
@@ -1427,32 +1457,19 @@ private module MkStage<StageSig PrevStage> {
     }
 
     pragma[nomagic]
-    private predicate fwdFlowOutNotFromArg(
-      NodeEx out, FlowState state, Cc ccOut, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+    private predicate fwdFlowOutFromArg(
+      DataFlowCall call, NodeEx out, FlowState state, ParameterPosition summaryCtx, Ap argAp, Ap ap,
       Configuration config
     ) {
       exists(
-        DataFlowCall call, RetNodeEx ret, boolean allowsFieldFlow, CcNoCall innercc,
-        DataFlowCallable inner
+        DataFlowCallable c, RetNodeEx ret, ReturnKindExt kind, boolean allowsFieldFlow, CcCall ccc
       |
-        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, config) and
-        flowOutOfCall(call, ret, _, out, allowsFieldFlow, config) and
-        inner = ret.getEnclosingCallable() and
-        ccOut = getCallContextReturn(inner, call, innercc) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
-      )
-    }
-
-    pragma[nomagic]
-    private predicate fwdFlowOutFromArg(
-      DataFlowCall call, NodeEx out, FlowState state, ParamNode summaryCtx, Ap argAp, Ap ap,
-      Configuration config
-    ) {
-      exists(RetNodeEx ret, ReturnKindExt kind, boolean allowsFieldFlow, CcCall ccc |
-        fwdFlow(ret, state, ccc, TParamNodeSome(summaryCtx), apSome(argAp), ap, config) and
-        flowThroughOutOfCall(call, ccc, ret, kind, out, allowsFieldFlow, config) and
+        fwdFlow(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc),
+          TParameterPositionSome(pragma[only_bind_into](summaryCtx)), apSome(argAp), ap, config) and
+        flowThroughOutOfCall(call, pragma[only_bind_into](c), ccc, ret, kind, out, allowsFieldFlow,
+          config) and
         (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
-        parameterFlowThroughAllowed(summaryCtx, kind)
+        parameterFlowThroughAllowed(c, pragma[only_bind_into](summaryCtx), kind)
       )
     }
 
@@ -1462,13 +1479,13 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate fwdFlowIsEntered(
-      DataFlowCall call, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, ParamNode p, Ap ap,
-      Configuration config
+      DataFlowCall call, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      ParameterPosition pos, Ap ap, Configuration config
     ) {
       exists(ParamNodeEx param |
         fwdFlowIn(call, param, _, cc, _, summaryCtx, argAp, ap, config) and
         PrevStage::parameterMayFlowThrough(param, unbindApa(getApprox(ap)), config) and
-        p = param.asNode()
+        pos = param.getPosition()
       )
     }
 
@@ -1489,23 +1506,41 @@ private module MkStage<StageSig PrevStage> {
     }
 
     pragma[nomagic]
-    private predicate returnFlowsThrough(
-      RetNodeEx ret, ReturnPosition pos, FlowState state, CcCall ccc, ParamNode p, Ap argAp, Ap ap,
-      Configuration config
+    private predicate returnFlowsThrough0(
+      RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, DataFlowCallable c,
+      ParameterPosition ppos, Ap argAp, Ap ap, Configuration config
     ) {
-      fwdFlow(ret, state, ccc, TParamNodeSome(p), apSome(argAp), ap, config) and
-      pos = ret.getReturnPosition() and
-      parameterFlowThroughAllowed(p, pos.getKind())
+      exists(boolean allowsFieldFlow |
+        fwdFlow(ret, state, ccc, TParameterPositionSome(ppos), apSome(argAp), ap, config) and
+        flowThroughOutOfCall(_, c, _, pragma[only_bind_into](ret), kind, _, allowsFieldFlow,
+          pragma[only_bind_into](config)) and
+        if allowsFieldFlow = false then ap instanceof ApNil else any()
+      )
+    }
+
+    pragma[nomagic]
+    private predicate returnFlowsThrough(
+      RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, ParamNodeEx p, Ap argAp,
+      Ap ap, Configuration config
+    ) {
+      exists(DataFlowCallable c, ParameterPosition ppos |
+        returnFlowsThrough0(ret, kind, state, ccc, c, ppos, argAp, ap, config) and
+        p.isParameterOf(c, ppos) and
+        parameterFlowThroughAllowed(p, kind)
+      )
     }
 
     pragma[nomagic]
     private predicate flowThroughIntoCall(
       DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
     ) {
-      flowIntoCall(call, pragma[only_bind_into](arg), pragma[only_bind_into](p), allowsFieldFlow,
-        pragma[only_bind_into](config)) and
-      fwdFlow(arg, _, _, _, _, _, pragma[only_bind_into](config)) and
-      returnFlowsThrough(_, _, _, _, p.asNode(), _, _, pragma[only_bind_into](config))
+      exists(Ap argAp |
+        flowIntoCall(call, pragma[only_bind_into](arg), pragma[only_bind_into](p), allowsFieldFlow,
+          pragma[only_bind_into](config)) and
+        fwdFlow(arg, _, _, _, _, pragma[only_bind_into](argAp), pragma[only_bind_into](config)) and
+        returnFlowsThrough(_, _, _, _, p, pragma[only_bind_into](argAp), _,
+          pragma[only_bind_into](config))
+      )
     }
 
     /**
@@ -1591,21 +1626,25 @@ private module MkStage<StageSig PrevStage> {
       )
       or
       // flow into a callable
-      revFlowInNotToReturn(node, state, returnAp, ap, config) and
-      returnCtx = TReturnCtxNone()
+      exists(ParamNodeEx p, boolean allowsFieldFlow |
+        revFlow(p, state, TReturnCtxNone(), returnAp, ap, config) and
+        flowIntoCall(_, node, p, allowsFieldFlow, config) and
+        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
+        returnCtx = TReturnCtxNone()
+      )
       or
       // flow through a callable
-      exists(DataFlowCall call, ReturnPosition returnPos0, Ap returnAp0 |
-        revFlowInToReturn(call, node, state, returnPos0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnPos0, returnAp0, config)
+      exists(DataFlowCall call, ReturnKindExt returnKind0, Ap returnAp0 |
+        revFlowInToReturn(call, node, state, returnKind0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
       )
       or
       // flow out of a callable
-      exists(ReturnPosition pos |
-        revFlowOut(_, node, pos, state, _, _, ap, config) and
-        if returnFlowsThrough(node, pos, state, _, _, _, ap, config)
+      exists(ReturnKindExt kind |
+        revFlowOut(_, node, kind, state, _, _, ap, config) and
+        if returnFlowsThrough(node, kind, state, _, _, _, ap, config)
         then (
-          returnCtx = TReturnCtxMaybeFlowThrough(pos) and
+          returnCtx = TReturnCtxMaybeFlowThrough(kind) and
           returnAp = apSome(ap)
         ) else (
           returnCtx = TReturnCtxNoFlowThrough() and returnAp = apNone()
@@ -1638,37 +1677,27 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate revFlowOut(
-      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, FlowState state, ReturnCtx returnCtx,
+      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, FlowState state, ReturnCtx returnCtx,
       ApOption returnAp, Ap ap, Configuration config
     ) {
       exists(NodeEx out, boolean allowsFieldFlow |
         revFlow(out, state, returnCtx, returnAp, ap, config) and
-        flowOutOfCall(call, ret, pos, out, allowsFieldFlow, config) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
-      )
-    }
-
-    pragma[nomagic]
-    private predicate revFlowInNotToReturn(
-      ArgNodeEx arg, FlowState state, ApOption returnAp, Ap ap, Configuration config
-    ) {
-      exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(p, state, TReturnCtxNone(), returnAp, ap, config) and
-        flowIntoCall(_, arg, p, allowsFieldFlow, config) and
+        flowOutOfCall(call, ret, kind, out, allowsFieldFlow, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
     pragma[nomagic]
     private predicate revFlowInToReturn(
-      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnPosition returnPos, Ap returnAp,
-      Ap ap, Configuration config
+      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap,
+      Configuration config
     ) {
       exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(p, state, TReturnCtxMaybeFlowThrough(returnPos), apSome(returnAp), ap, config) and
+        revFlow(pragma[only_bind_into](p), state,
+          TReturnCtxMaybeFlowThrough(pragma[only_bind_into](kind)), apSome(returnAp), ap, config) and
         flowThroughIntoCall(call, arg, p, allowsFieldFlow, config) and
         (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
-        parameterFlowThroughAllowed(p.asNode(), returnPos.getKind())
+        parameterFlowThroughAllowed(p, kind)
       )
     }
 
@@ -1679,12 +1708,12 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate revFlowIsReturned(
-      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnPosition pos, Ap ap,
+      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnKindExt kind, Ap ap,
       Configuration config
     ) {
       exists(RetNodeEx ret, FlowState state, CcCall ccc |
-        revFlowOut(call, ret, pos, state, returnCtx, returnAp, ap, config) and
-        returnFlowsThrough(ret, pos, state, ccc, _, _, ap, config) and
+        revFlowOut(call, ret, kind, state, returnCtx, returnAp, ap, config) and
+        returnFlowsThrough(ret, kind, state, ccc, _, _, ap, config) and
         matchesCall(ccc, call)
       )
     }
@@ -1757,37 +1786,37 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate parameterFlowsThroughRev(
-      ParamNodeEx p, Ap ap, ReturnPosition returnPos, Configuration config
+      ParamNodeEx p, Ap ap, ReturnKindExt kind, Configuration config
     ) {
-      revFlow(p, _, TReturnCtxMaybeFlowThrough(returnPos), apSome(_), ap, config) and
-      parameterFlowThroughAllowed(p.asNode(), returnPos.getKind())
+      revFlow(p, _, TReturnCtxMaybeFlowThrough(kind), apSome(_), ap, config) and
+      parameterFlowThroughAllowed(p, kind)
     }
 
     pragma[nomagic]
     predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
-      exists(RetNodeEx ret, ReturnPosition pos |
-        returnFlowsThrough(ret, pos, _, _, p.asNode(), ap, _, config) and
-        parameterFlowsThroughRev(p, ap, pos, config)
+      exists(RetNodeEx ret, ReturnKindExt kind |
+        returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
+        parameterFlowsThroughRev(p, ap, kind, config)
       )
     }
 
     pragma[nomagic]
-    predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config) {
+    predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config) {
       exists(ParamNodeEx p, Ap ap |
-        returnFlowsThrough(ret, pos, _, _, p.asNode(), ap, _, config) and
-        parameterFlowsThroughRev(p, ap, pos, config)
+        returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
+        parameterFlowsThroughRev(p, ap, kind, config)
       )
     }
 
     pragma[nomagic]
     predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
       exists(
-        ReturnPosition returnPos0, Ap returnAp0, ArgNodeEx arg, FlowState state,
+        ReturnKindExt returnKind0, Ap returnAp0, ArgNodeEx arg, FlowState state,
         ReturnCtx returnCtx, ApOption returnAp, Ap ap
       |
         revFlow(arg, state, returnCtx, returnAp, ap, config) and
-        revFlowInToReturn(call, arg, state, returnPos0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnPos0, returnAp0, config)
+        revFlowInToReturn(call, arg, state, returnKind0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
       )
     }
 
@@ -1800,9 +1829,8 @@ private module MkStage<StageSig PrevStage> {
       conscand = count(TypedContent f0, Ap ap | fwdConsCand(f0, ap, config)) and
       states = count(FlowState state | fwdFlow(_, state, _, _, _, _, config)) and
       tuples =
-        count(NodeEx n, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap |
-          fwdFlow(n, state, cc, summaryCtx, argAp, ap, config)
-        )
+        count(NodeEx n, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+          Ap ap | fwdFlow(n, state, cc, summaryCtx, argAp, ap, config))
       or
       fwd = false and
       nodes = count(NodeEx node | revFlow(node, _, _, _, _, config)) and
@@ -1992,10 +2020,10 @@ private module Stage2 implements StageSig {
 
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand2(
-  DataFlowCall call, RetNodeEx node1, ReturnPosition pos, NodeEx node2, boolean allowsFieldFlow,
+  DataFlowCall call, RetNodeEx node1, ReturnKindExt kind, NodeEx node2, boolean allowsFieldFlow,
   Configuration config
 ) {
-  flowOutOfCallNodeCand1(call, node1, pos, node2, allowsFieldFlow, config) and
+  flowOutOfCallNodeCand1(call, node1, kind, node2, allowsFieldFlow, config) and
   Stage2::revFlow(node2, pragma[only_bind_into](config)) and
   Stage2::revFlowAlias(node1, pragma[only_bind_into](config))
 }
@@ -2511,11 +2539,11 @@ private module Stage4Param implements MkStage<Stage3>::StageParam {
 
   pragma[nomagic]
   predicate flowOutOfCall(
-    DataFlowCall call, RetNodeEx node1, ReturnPosition pos, NodeEx node2, boolean allowsFieldFlow,
+    DataFlowCall call, RetNodeEx node1, ReturnKindExt kind, NodeEx node2, boolean allowsFieldFlow,
     Configuration config
   ) {
     exists(FlowState state |
-      flowOutOfCallNodeCand2(call, node1, pos, node2, allowsFieldFlow, config) and
+      flowOutOfCallNodeCand2(call, node1, kind, node2, allowsFieldFlow, config) and
       PrevStage::revFlow(node2, pragma[only_bind_into](state), _, pragma[only_bind_into](config)) and
       PrevStage::revFlowAlias(node1, pragma[only_bind_into](state), _,
         pragma[only_bind_into](config))
@@ -2552,12 +2580,13 @@ private Configuration unbindConf(Configuration conf) {
 
 pragma[nomagic]
 private predicate nodeMayUseSummary0(
-  NodeEx n, ParamNodeEx p, FlowState state, AccessPathApprox apa, Configuration config
+  NodeEx n, DataFlowCallable c, ParameterPosition pos, FlowState state, AccessPathApprox apa,
+  Configuration config
 ) {
   exists(AccessPathApprox apa0 |
-    Stage4::parameterMayFlowThrough(p, _, _) and
+    c = n.getEnclosingCallable() and
     Stage4::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
-    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TParamNodeSome(p.asNode()),
+    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TParameterPositionSome(pos),
       TAccessPathApproxSome(apa), apa0, config)
   )
 }
@@ -2566,9 +2595,10 @@ pragma[nomagic]
 private predicate nodeMayUseSummary(
   NodeEx n, FlowState state, AccessPathApprox apa, Configuration config
 ) {
-  exists(ParamNodeEx p |
+  exists(DataFlowCallable c, ParameterPosition pos, ParamNodeEx p |
     Stage4::parameterMayFlowThrough(p, apa, config) and
-    nodeMayUseSummary0(n, p, state, apa, config)
+    nodeMayUseSummary0(n, c, pos, state, apa, config) and
+    p.isParameterOf(c, pos)
   )
 }
 
@@ -3501,7 +3531,7 @@ private predicate paramFlowsThrough(
     pathNode(mid, ret, state, cc, sc, ap, config, _) and
     kind = ret.getKind() and
     apa = ap.getApprox() and
-    parameterFlowThroughAllowed(sc.getParamNode().asNode(), kind)
+    parameterFlowThroughAllowed(sc.getParamNode(), kind)
   )
 }
 
diff --git a/cpp/ql/lib/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl3.qll b/cpp/ql/lib/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl3.qll
index a52ad110662..e4cfd5986be 100644
--- a/cpp/ql/lib/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl3.qll
+++ b/cpp/ql/lib/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl3.qll
@@ -613,11 +613,28 @@ private predicate hasSinkCallCtx(Configuration config) {
  * explicitly allowed
  */
 bindingset[p, kind]
-private predicate parameterFlowThroughAllowed(ParamNode p, ReturnKindExt kind) {
+private predicate parameterFlowThroughAllowed(ParamNodeEx p, ReturnKindExt kind) {
   exists(ParameterPosition pos | p.isParameterOf(_, pos) |
     not kind.(ParamUpdateReturnKind).getPosition() = pos
     or
-    allowParameterReturnInSelfCached(p)
+    allowParameterReturnInSelfCached(p.asNode())
+  )
+}
+
+/**
+ * Holds if flow from a parameter at position `pos` inside `c` to a return node of
+ * kind `kind` is allowed.
+ *
+ * We don't expect a parameter to return stored in itself, unless
+ * explicitly allowed
+ */
+bindingset[c, pos, kind]
+private predicate parameterFlowThroughAllowed(
+  DataFlowCallable c, ParameterPosition pos, ReturnKindExt kind
+) {
+  exists(ParamNodeEx p |
+    p.isParameterOf(c, pos) and
+    parameterFlowThroughAllowed(p, kind)
   )
 }
 
@@ -1000,14 +1017,14 @@ private module Stage1 implements StageSig {
       returnFlowCallableNodeCand(c, kind, config) and
       p.getEnclosingCallable() = c and
       exists(ap) and
-      parameterFlowThroughAllowed(p.asNode(), kind)
+      parameterFlowThroughAllowed(p, kind)
     )
   }
 
   pragma[nomagic]
-  predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config) {
+  predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config) {
     throughFlowNodeCand(ret, config) and
-    pos = ret.getReturnPosition()
+    kind = ret.getKind()
   }
 
   pragma[nomagic]
@@ -1066,13 +1083,16 @@ private predicate viableReturnPosOutNodeCand1(
  */
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand1(
-  DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, Configuration config
+  DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, Configuration config
 ) {
-  viableReturnPosOutNodeCand1(call, pos, out, config) and
-  pos = ret.getReturnPosition() and
-  Stage1::revFlow(ret, config) and
-  not outBarrier(ret, config) and
-  not inBarrier(out, config)
+  exists(ReturnPosition pos |
+    viableReturnPosOutNodeCand1(call, pos, out, config) and
+    pos = ret.getReturnPosition() and
+    kind = pos.getKind() and
+    Stage1::revFlow(ret, config) and
+    not outBarrier(ret, config) and
+    not inBarrier(out, config)
+  )
 }
 
 pragma[nomagic]
@@ -1102,6 +1122,7 @@ private predicate flowIntoCallNodeCand1(
  * edge in the graph of paths between sources and sinks that ignores call
  * contexts.
  */
+pragma[nomagic]
 private int branch(NodeEx n1, Configuration conf) {
   result =
     strictcount(NodeEx n |
@@ -1114,6 +1135,7 @@ private int branch(NodeEx n1, Configuration conf) {
  * edge in the graph of paths between sources and sinks that ignores call
  * contexts.
  */
+pragma[nomagic]
 private int join(NodeEx n2, Configuration conf) {
   result =
     strictcount(NodeEx n |
@@ -1130,10 +1152,10 @@ private int join(NodeEx n2, Configuration conf) {
  */
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand1(
-  DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
+  DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
   Configuration config
 ) {
-  flowOutOfCallNodeCand1(call, ret, pos, out, pragma[only_bind_into](config)) and
+  flowOutOfCallNodeCand1(call, ret, kind, out, pragma[only_bind_into](config)) and
   exists(int b, int j |
     b = branch(ret, pragma[only_bind_into](config)) and
     j = join(out, pragma[only_bind_into](config)) and
@@ -1152,10 +1174,10 @@ pragma[nomagic]
 private predicate flowIntoCallNodeCand1(
   DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
 ) {
-  flowIntoCallNodeCand1(call, arg, p, config) and
+  flowIntoCallNodeCand1(call, arg, p, pragma[only_bind_into](config)) and
   exists(int b, int j |
-    b = branch(arg, config) and
-    j = join(p, config) and
+    b = branch(arg, pragma[only_bind_into](config)) and
+    j = join(p, pragma[only_bind_into](config)) and
     if b.minimum(j) <= config.fieldFlowBranchLimit()
     then allowsFieldFlow = true
     else allowsFieldFlow = false
@@ -1174,7 +1196,7 @@ private signature module StageSig {
 
   predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config);
 
-  predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config);
+  predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config);
 
   predicate storeStepCand(
     NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, DataFlowType contentType,
@@ -1240,7 +1262,7 @@ private module MkStage<StageSig PrevStage> {
     );
 
     predicate flowOutOfCall(
-      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
+      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
       Configuration config
     );
 
@@ -1266,16 +1288,14 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate flowThroughOutOfCall(
-      DataFlowCall call, CcCall ccc, RetNodeEx ret, ReturnKindExt kind, NodeEx out,
-      boolean allowsFieldFlow, Configuration config
+      DataFlowCall call, DataFlowCallable c, CcCall ccc, RetNodeEx ret, ReturnKindExt kind,
+      NodeEx out, boolean allowsFieldFlow, Configuration config
     ) {
-      exists(ReturnPosition pos |
-        flowOutOfCall(call, ret, pos, out, allowsFieldFlow, pragma[only_bind_into](config)) and
-        kind = pos.getKind() and
-        PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
-        PrevStage::returnMayFlowThrough(ret, pos, pragma[only_bind_into](config)) and
-        matchesCall(ccc, call)
-      )
+      flowOutOfCall(call, ret, kind, out, allowsFieldFlow, pragma[only_bind_into](config)) and
+      PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
+      PrevStage::returnMayFlowThrough(ret, kind, pragma[only_bind_into](config)) and
+      matchesCall(ccc, call) and
+      c = ret.getEnclosingCallable()
     }
 
     /**
@@ -1284,12 +1304,12 @@ private module MkStage<StageSig PrevStage> {
      *
      * The call context `cc` records whether the node is reached through an
      * argument in a call, and if so, `summaryCtx` and `argAp` record the
-     * corresponding parameter and access path of that argument, respectively.
+     * corresponding parameter position and access path of that argument, respectively.
      */
     pragma[nomagic]
     additional predicate fwdFlow(
-      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
-      Configuration config
+      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      Ap ap, Configuration config
     ) {
       fwdFlow0(node, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::revFlow(node, state, unbindApa(getApprox(ap)), config) and
@@ -1298,13 +1318,13 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlow0(
-      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
-      Configuration config
+      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      Ap ap, Configuration config
     ) {
       sourceNode(node, state, config) and
       (if hasSourceCallCtx(config) then cc = ccSomeCall() else cc = ccNone()) and
       argAp = apNone() and
-      summaryCtx = TParamNodeNone() and
+      summaryCtx = TParameterPositionNone() and
       ap = getApNil(node)
       or
       exists(NodeEx mid, FlowState state0, Ap ap0, LocalCc localCc |
@@ -1322,7 +1342,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, pragma[only_bind_into](config)) and
         jumpStep(mid, node, config) and
         cc = ccNone() and
-        summaryCtx = TParamNodeNone() and
+        summaryCtx = TParameterPositionNone() and
         argAp = apNone()
       )
       or
@@ -1330,7 +1350,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, state, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStep(mid, node, config) and
         cc = ccNone() and
-        summaryCtx = TParamNodeNone() and
+        summaryCtx = TParameterPositionNone() and
         argAp = apNone() and
         ap = getApNil(node)
       )
@@ -1339,7 +1359,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, state0, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStateStep(mid, state0, node, state, config) and
         cc = ccNone() and
-        summaryCtx = TParamNodeNone() and
+        summaryCtx = TParameterPositionNone() and
         argAp = apNone() and
         ap = getApNil(node)
       )
@@ -1362,17 +1382,27 @@ private module MkStage<StageSig PrevStage> {
         apa = getApprox(ap) and
         if PrevStage::parameterMayFlowThrough(node, apa, config)
         then (
-          summaryCtx = TParamNodeSome(node.asNode()) and argAp = apSome(ap)
+          summaryCtx = TParameterPositionSome(node.(ParamNodeEx).getPosition()) and
+          argAp = apSome(ap)
         ) else (
-          summaryCtx = TParamNodeNone() and argAp = apNone()
+          summaryCtx = TParameterPositionNone() and argAp = apNone()
         )
       )
       or
       // flow out of a callable
-      fwdFlowOutNotFromArg(node, state, cc, summaryCtx, argAp, ap, config)
+      exists(
+        DataFlowCall call, RetNodeEx ret, boolean allowsFieldFlow, CcNoCall innercc,
+        DataFlowCallable inner
+      |
+        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, config) and
+        flowOutOfCall(call, ret, _, node, allowsFieldFlow, config) and
+        inner = ret.getEnclosingCallable() and
+        cc = getCallContextReturn(inner, call, innercc) and
+        if allowsFieldFlow = false then ap instanceof ApNil else any()
+      )
       or
       // flow through a callable
-      exists(DataFlowCall call, ParamNode summaryCtx0, Ap argAp0 |
+      exists(DataFlowCall call, ParameterPosition summaryCtx0, Ap argAp0 |
         fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, config) and
         fwdFlowIsEntered(call, cc, summaryCtx, argAp, summaryCtx0, argAp0, config)
       )
@@ -1381,7 +1411,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowStore(
       NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc,
-      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
+      ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
     ) {
       exists(DataFlowType contentType |
         fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, config) and
@@ -1406,7 +1436,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowRead(
       Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc,
-      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
+      ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
     ) {
       fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, c, node2, config) and
@@ -1416,7 +1446,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowIn(
       DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, Cc innercc,
-      ParamNodeOption summaryCtx, ApOption argAp, Ap ap, Configuration config
+      ParameterPositionOption summaryCtx, ApOption argAp, Ap ap, Configuration config
     ) {
       exists(ArgNodeEx arg, boolean allowsFieldFlow |
         fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, config) and
@@ -1427,32 +1457,19 @@ private module MkStage<StageSig PrevStage> {
     }
 
     pragma[nomagic]
-    private predicate fwdFlowOutNotFromArg(
-      NodeEx out, FlowState state, Cc ccOut, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+    private predicate fwdFlowOutFromArg(
+      DataFlowCall call, NodeEx out, FlowState state, ParameterPosition summaryCtx, Ap argAp, Ap ap,
       Configuration config
     ) {
       exists(
-        DataFlowCall call, RetNodeEx ret, boolean allowsFieldFlow, CcNoCall innercc,
-        DataFlowCallable inner
+        DataFlowCallable c, RetNodeEx ret, ReturnKindExt kind, boolean allowsFieldFlow, CcCall ccc
       |
-        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, config) and
-        flowOutOfCall(call, ret, _, out, allowsFieldFlow, config) and
-        inner = ret.getEnclosingCallable() and
-        ccOut = getCallContextReturn(inner, call, innercc) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
-      )
-    }
-
-    pragma[nomagic]
-    private predicate fwdFlowOutFromArg(
-      DataFlowCall call, NodeEx out, FlowState state, ParamNode summaryCtx, Ap argAp, Ap ap,
-      Configuration config
-    ) {
-      exists(RetNodeEx ret, ReturnKindExt kind, boolean allowsFieldFlow, CcCall ccc |
-        fwdFlow(ret, state, ccc, TParamNodeSome(summaryCtx), apSome(argAp), ap, config) and
-        flowThroughOutOfCall(call, ccc, ret, kind, out, allowsFieldFlow, config) and
+        fwdFlow(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc),
+          TParameterPositionSome(pragma[only_bind_into](summaryCtx)), apSome(argAp), ap, config) and
+        flowThroughOutOfCall(call, pragma[only_bind_into](c), ccc, ret, kind, out, allowsFieldFlow,
+          config) and
         (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
-        parameterFlowThroughAllowed(summaryCtx, kind)
+        parameterFlowThroughAllowed(c, pragma[only_bind_into](summaryCtx), kind)
       )
     }
 
@@ -1462,13 +1479,13 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate fwdFlowIsEntered(
-      DataFlowCall call, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, ParamNode p, Ap ap,
-      Configuration config
+      DataFlowCall call, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      ParameterPosition pos, Ap ap, Configuration config
     ) {
       exists(ParamNodeEx param |
         fwdFlowIn(call, param, _, cc, _, summaryCtx, argAp, ap, config) and
         PrevStage::parameterMayFlowThrough(param, unbindApa(getApprox(ap)), config) and
-        p = param.asNode()
+        pos = param.getPosition()
       )
     }
 
@@ -1489,23 +1506,41 @@ private module MkStage<StageSig PrevStage> {
     }
 
     pragma[nomagic]
-    private predicate returnFlowsThrough(
-      RetNodeEx ret, ReturnPosition pos, FlowState state, CcCall ccc, ParamNode p, Ap argAp, Ap ap,
-      Configuration config
+    private predicate returnFlowsThrough0(
+      RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, DataFlowCallable c,
+      ParameterPosition ppos, Ap argAp, Ap ap, Configuration config
     ) {
-      fwdFlow(ret, state, ccc, TParamNodeSome(p), apSome(argAp), ap, config) and
-      pos = ret.getReturnPosition() and
-      parameterFlowThroughAllowed(p, pos.getKind())
+      exists(boolean allowsFieldFlow |
+        fwdFlow(ret, state, ccc, TParameterPositionSome(ppos), apSome(argAp), ap, config) and
+        flowThroughOutOfCall(_, c, _, pragma[only_bind_into](ret), kind, _, allowsFieldFlow,
+          pragma[only_bind_into](config)) and
+        if allowsFieldFlow = false then ap instanceof ApNil else any()
+      )
+    }
+
+    pragma[nomagic]
+    private predicate returnFlowsThrough(
+      RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, ParamNodeEx p, Ap argAp,
+      Ap ap, Configuration config
+    ) {
+      exists(DataFlowCallable c, ParameterPosition ppos |
+        returnFlowsThrough0(ret, kind, state, ccc, c, ppos, argAp, ap, config) and
+        p.isParameterOf(c, ppos) and
+        parameterFlowThroughAllowed(p, kind)
+      )
     }
 
     pragma[nomagic]
     private predicate flowThroughIntoCall(
       DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
     ) {
-      flowIntoCall(call, pragma[only_bind_into](arg), pragma[only_bind_into](p), allowsFieldFlow,
-        pragma[only_bind_into](config)) and
-      fwdFlow(arg, _, _, _, _, _, pragma[only_bind_into](config)) and
-      returnFlowsThrough(_, _, _, _, p.asNode(), _, _, pragma[only_bind_into](config))
+      exists(Ap argAp |
+        flowIntoCall(call, pragma[only_bind_into](arg), pragma[only_bind_into](p), allowsFieldFlow,
+          pragma[only_bind_into](config)) and
+        fwdFlow(arg, _, _, _, _, pragma[only_bind_into](argAp), pragma[only_bind_into](config)) and
+        returnFlowsThrough(_, _, _, _, p, pragma[only_bind_into](argAp), _,
+          pragma[only_bind_into](config))
+      )
     }
 
     /**
@@ -1591,21 +1626,25 @@ private module MkStage<StageSig PrevStage> {
       )
       or
       // flow into a callable
-      revFlowInNotToReturn(node, state, returnAp, ap, config) and
-      returnCtx = TReturnCtxNone()
+      exists(ParamNodeEx p, boolean allowsFieldFlow |
+        revFlow(p, state, TReturnCtxNone(), returnAp, ap, config) and
+        flowIntoCall(_, node, p, allowsFieldFlow, config) and
+        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
+        returnCtx = TReturnCtxNone()
+      )
       or
       // flow through a callable
-      exists(DataFlowCall call, ReturnPosition returnPos0, Ap returnAp0 |
-        revFlowInToReturn(call, node, state, returnPos0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnPos0, returnAp0, config)
+      exists(DataFlowCall call, ReturnKindExt returnKind0, Ap returnAp0 |
+        revFlowInToReturn(call, node, state, returnKind0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
       )
       or
       // flow out of a callable
-      exists(ReturnPosition pos |
-        revFlowOut(_, node, pos, state, _, _, ap, config) and
-        if returnFlowsThrough(node, pos, state, _, _, _, ap, config)
+      exists(ReturnKindExt kind |
+        revFlowOut(_, node, kind, state, _, _, ap, config) and
+        if returnFlowsThrough(node, kind, state, _, _, _, ap, config)
         then (
-          returnCtx = TReturnCtxMaybeFlowThrough(pos) and
+          returnCtx = TReturnCtxMaybeFlowThrough(kind) and
           returnAp = apSome(ap)
         ) else (
           returnCtx = TReturnCtxNoFlowThrough() and returnAp = apNone()
@@ -1638,37 +1677,27 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate revFlowOut(
-      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, FlowState state, ReturnCtx returnCtx,
+      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, FlowState state, ReturnCtx returnCtx,
       ApOption returnAp, Ap ap, Configuration config
     ) {
       exists(NodeEx out, boolean allowsFieldFlow |
         revFlow(out, state, returnCtx, returnAp, ap, config) and
-        flowOutOfCall(call, ret, pos, out, allowsFieldFlow, config) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
-      )
-    }
-
-    pragma[nomagic]
-    private predicate revFlowInNotToReturn(
-      ArgNodeEx arg, FlowState state, ApOption returnAp, Ap ap, Configuration config
-    ) {
-      exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(p, state, TReturnCtxNone(), returnAp, ap, config) and
-        flowIntoCall(_, arg, p, allowsFieldFlow, config) and
+        flowOutOfCall(call, ret, kind, out, allowsFieldFlow, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
     pragma[nomagic]
     private predicate revFlowInToReturn(
-      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnPosition returnPos, Ap returnAp,
-      Ap ap, Configuration config
+      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap,
+      Configuration config
     ) {
       exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(p, state, TReturnCtxMaybeFlowThrough(returnPos), apSome(returnAp), ap, config) and
+        revFlow(pragma[only_bind_into](p), state,
+          TReturnCtxMaybeFlowThrough(pragma[only_bind_into](kind)), apSome(returnAp), ap, config) and
         flowThroughIntoCall(call, arg, p, allowsFieldFlow, config) and
         (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
-        parameterFlowThroughAllowed(p.asNode(), returnPos.getKind())
+        parameterFlowThroughAllowed(p, kind)
       )
     }
 
@@ -1679,12 +1708,12 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate revFlowIsReturned(
-      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnPosition pos, Ap ap,
+      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnKindExt kind, Ap ap,
       Configuration config
     ) {
       exists(RetNodeEx ret, FlowState state, CcCall ccc |
-        revFlowOut(call, ret, pos, state, returnCtx, returnAp, ap, config) and
-        returnFlowsThrough(ret, pos, state, ccc, _, _, ap, config) and
+        revFlowOut(call, ret, kind, state, returnCtx, returnAp, ap, config) and
+        returnFlowsThrough(ret, kind, state, ccc, _, _, ap, config) and
         matchesCall(ccc, call)
       )
     }
@@ -1757,37 +1786,37 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate parameterFlowsThroughRev(
-      ParamNodeEx p, Ap ap, ReturnPosition returnPos, Configuration config
+      ParamNodeEx p, Ap ap, ReturnKindExt kind, Configuration config
     ) {
-      revFlow(p, _, TReturnCtxMaybeFlowThrough(returnPos), apSome(_), ap, config) and
-      parameterFlowThroughAllowed(p.asNode(), returnPos.getKind())
+      revFlow(p, _, TReturnCtxMaybeFlowThrough(kind), apSome(_), ap, config) and
+      parameterFlowThroughAllowed(p, kind)
     }
 
     pragma[nomagic]
     predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
-      exists(RetNodeEx ret, ReturnPosition pos |
-        returnFlowsThrough(ret, pos, _, _, p.asNode(), ap, _, config) and
-        parameterFlowsThroughRev(p, ap, pos, config)
+      exists(RetNodeEx ret, ReturnKindExt kind |
+        returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
+        parameterFlowsThroughRev(p, ap, kind, config)
       )
     }
 
     pragma[nomagic]
-    predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config) {
+    predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config) {
       exists(ParamNodeEx p, Ap ap |
-        returnFlowsThrough(ret, pos, _, _, p.asNode(), ap, _, config) and
-        parameterFlowsThroughRev(p, ap, pos, config)
+        returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
+        parameterFlowsThroughRev(p, ap, kind, config)
       )
     }
 
     pragma[nomagic]
     predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
       exists(
-        ReturnPosition returnPos0, Ap returnAp0, ArgNodeEx arg, FlowState state,
+        ReturnKindExt returnKind0, Ap returnAp0, ArgNodeEx arg, FlowState state,
         ReturnCtx returnCtx, ApOption returnAp, Ap ap
       |
         revFlow(arg, state, returnCtx, returnAp, ap, config) and
-        revFlowInToReturn(call, arg, state, returnPos0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnPos0, returnAp0, config)
+        revFlowInToReturn(call, arg, state, returnKind0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
       )
     }
 
@@ -1800,9 +1829,8 @@ private module MkStage<StageSig PrevStage> {
       conscand = count(TypedContent f0, Ap ap | fwdConsCand(f0, ap, config)) and
       states = count(FlowState state | fwdFlow(_, state, _, _, _, _, config)) and
       tuples =
-        count(NodeEx n, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap |
-          fwdFlow(n, state, cc, summaryCtx, argAp, ap, config)
-        )
+        count(NodeEx n, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+          Ap ap | fwdFlow(n, state, cc, summaryCtx, argAp, ap, config))
       or
       fwd = false and
       nodes = count(NodeEx node | revFlow(node, _, _, _, _, config)) and
@@ -1992,10 +2020,10 @@ private module Stage2 implements StageSig {
 
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand2(
-  DataFlowCall call, RetNodeEx node1, ReturnPosition pos, NodeEx node2, boolean allowsFieldFlow,
+  DataFlowCall call, RetNodeEx node1, ReturnKindExt kind, NodeEx node2, boolean allowsFieldFlow,
   Configuration config
 ) {
-  flowOutOfCallNodeCand1(call, node1, pos, node2, allowsFieldFlow, config) and
+  flowOutOfCallNodeCand1(call, node1, kind, node2, allowsFieldFlow, config) and
   Stage2::revFlow(node2, pragma[only_bind_into](config)) and
   Stage2::revFlowAlias(node1, pragma[only_bind_into](config))
 }
@@ -2511,11 +2539,11 @@ private module Stage4Param implements MkStage<Stage3>::StageParam {
 
   pragma[nomagic]
   predicate flowOutOfCall(
-    DataFlowCall call, RetNodeEx node1, ReturnPosition pos, NodeEx node2, boolean allowsFieldFlow,
+    DataFlowCall call, RetNodeEx node1, ReturnKindExt kind, NodeEx node2, boolean allowsFieldFlow,
     Configuration config
   ) {
     exists(FlowState state |
-      flowOutOfCallNodeCand2(call, node1, pos, node2, allowsFieldFlow, config) and
+      flowOutOfCallNodeCand2(call, node1, kind, node2, allowsFieldFlow, config) and
       PrevStage::revFlow(node2, pragma[only_bind_into](state), _, pragma[only_bind_into](config)) and
       PrevStage::revFlowAlias(node1, pragma[only_bind_into](state), _,
         pragma[only_bind_into](config))
@@ -2552,12 +2580,13 @@ private Configuration unbindConf(Configuration conf) {
 
 pragma[nomagic]
 private predicate nodeMayUseSummary0(
-  NodeEx n, ParamNodeEx p, FlowState state, AccessPathApprox apa, Configuration config
+  NodeEx n, DataFlowCallable c, ParameterPosition pos, FlowState state, AccessPathApprox apa,
+  Configuration config
 ) {
   exists(AccessPathApprox apa0 |
-    Stage4::parameterMayFlowThrough(p, _, _) and
+    c = n.getEnclosingCallable() and
     Stage4::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
-    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TParamNodeSome(p.asNode()),
+    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TParameterPositionSome(pos),
       TAccessPathApproxSome(apa), apa0, config)
   )
 }
@@ -2566,9 +2595,10 @@ pragma[nomagic]
 private predicate nodeMayUseSummary(
   NodeEx n, FlowState state, AccessPathApprox apa, Configuration config
 ) {
-  exists(ParamNodeEx p |
+  exists(DataFlowCallable c, ParameterPosition pos, ParamNodeEx p |
     Stage4::parameterMayFlowThrough(p, apa, config) and
-    nodeMayUseSummary0(n, p, state, apa, config)
+    nodeMayUseSummary0(n, c, pos, state, apa, config) and
+    p.isParameterOf(c, pos)
   )
 }
 
@@ -3501,7 +3531,7 @@ private predicate paramFlowsThrough(
     pathNode(mid, ret, state, cc, sc, ap, config, _) and
     kind = ret.getKind() and
     apa = ap.getApprox() and
-    parameterFlowThroughAllowed(sc.getParamNode().asNode(), kind)
+    parameterFlowThroughAllowed(sc.getParamNode(), kind)
   )
 }
 
diff --git a/cpp/ql/lib/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl4.qll b/cpp/ql/lib/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl4.qll
index a52ad110662..e4cfd5986be 100644
--- a/cpp/ql/lib/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl4.qll
+++ b/cpp/ql/lib/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl4.qll
@@ -613,11 +613,28 @@ private predicate hasSinkCallCtx(Configuration config) {
  * explicitly allowed
  */
 bindingset[p, kind]
-private predicate parameterFlowThroughAllowed(ParamNode p, ReturnKindExt kind) {
+private predicate parameterFlowThroughAllowed(ParamNodeEx p, ReturnKindExt kind) {
   exists(ParameterPosition pos | p.isParameterOf(_, pos) |
     not kind.(ParamUpdateReturnKind).getPosition() = pos
     or
-    allowParameterReturnInSelfCached(p)
+    allowParameterReturnInSelfCached(p.asNode())
+  )
+}
+
+/**
+ * Holds if flow from a parameter at position `pos` inside `c` to a return node of
+ * kind `kind` is allowed.
+ *
+ * We don't expect a parameter to return stored in itself, unless
+ * explicitly allowed
+ */
+bindingset[c, pos, kind]
+private predicate parameterFlowThroughAllowed(
+  DataFlowCallable c, ParameterPosition pos, ReturnKindExt kind
+) {
+  exists(ParamNodeEx p |
+    p.isParameterOf(c, pos) and
+    parameterFlowThroughAllowed(p, kind)
   )
 }
 
@@ -1000,14 +1017,14 @@ private module Stage1 implements StageSig {
       returnFlowCallableNodeCand(c, kind, config) and
       p.getEnclosingCallable() = c and
       exists(ap) and
-      parameterFlowThroughAllowed(p.asNode(), kind)
+      parameterFlowThroughAllowed(p, kind)
     )
   }
 
   pragma[nomagic]
-  predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config) {
+  predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config) {
     throughFlowNodeCand(ret, config) and
-    pos = ret.getReturnPosition()
+    kind = ret.getKind()
   }
 
   pragma[nomagic]
@@ -1066,13 +1083,16 @@ private predicate viableReturnPosOutNodeCand1(
  */
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand1(
-  DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, Configuration config
+  DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, Configuration config
 ) {
-  viableReturnPosOutNodeCand1(call, pos, out, config) and
-  pos = ret.getReturnPosition() and
-  Stage1::revFlow(ret, config) and
-  not outBarrier(ret, config) and
-  not inBarrier(out, config)
+  exists(ReturnPosition pos |
+    viableReturnPosOutNodeCand1(call, pos, out, config) and
+    pos = ret.getReturnPosition() and
+    kind = pos.getKind() and
+    Stage1::revFlow(ret, config) and
+    not outBarrier(ret, config) and
+    not inBarrier(out, config)
+  )
 }
 
 pragma[nomagic]
@@ -1102,6 +1122,7 @@ private predicate flowIntoCallNodeCand1(
  * edge in the graph of paths between sources and sinks that ignores call
  * contexts.
  */
+pragma[nomagic]
 private int branch(NodeEx n1, Configuration conf) {
   result =
     strictcount(NodeEx n |
@@ -1114,6 +1135,7 @@ private int branch(NodeEx n1, Configuration conf) {
  * edge in the graph of paths between sources and sinks that ignores call
  * contexts.
  */
+pragma[nomagic]
 private int join(NodeEx n2, Configuration conf) {
   result =
     strictcount(NodeEx n |
@@ -1130,10 +1152,10 @@ private int join(NodeEx n2, Configuration conf) {
  */
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand1(
-  DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
+  DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
   Configuration config
 ) {
-  flowOutOfCallNodeCand1(call, ret, pos, out, pragma[only_bind_into](config)) and
+  flowOutOfCallNodeCand1(call, ret, kind, out, pragma[only_bind_into](config)) and
   exists(int b, int j |
     b = branch(ret, pragma[only_bind_into](config)) and
     j = join(out, pragma[only_bind_into](config)) and
@@ -1152,10 +1174,10 @@ pragma[nomagic]
 private predicate flowIntoCallNodeCand1(
   DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
 ) {
-  flowIntoCallNodeCand1(call, arg, p, config) and
+  flowIntoCallNodeCand1(call, arg, p, pragma[only_bind_into](config)) and
   exists(int b, int j |
-    b = branch(arg, config) and
-    j = join(p, config) and
+    b = branch(arg, pragma[only_bind_into](config)) and
+    j = join(p, pragma[only_bind_into](config)) and
     if b.minimum(j) <= config.fieldFlowBranchLimit()
     then allowsFieldFlow = true
     else allowsFieldFlow = false
@@ -1174,7 +1196,7 @@ private signature module StageSig {
 
   predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config);
 
-  predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config);
+  predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config);
 
   predicate storeStepCand(
     NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, DataFlowType contentType,
@@ -1240,7 +1262,7 @@ private module MkStage<StageSig PrevStage> {
     );
 
     predicate flowOutOfCall(
-      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
+      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
       Configuration config
     );
 
@@ -1266,16 +1288,14 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate flowThroughOutOfCall(
-      DataFlowCall call, CcCall ccc, RetNodeEx ret, ReturnKindExt kind, NodeEx out,
-      boolean allowsFieldFlow, Configuration config
+      DataFlowCall call, DataFlowCallable c, CcCall ccc, RetNodeEx ret, ReturnKindExt kind,
+      NodeEx out, boolean allowsFieldFlow, Configuration config
     ) {
-      exists(ReturnPosition pos |
-        flowOutOfCall(call, ret, pos, out, allowsFieldFlow, pragma[only_bind_into](config)) and
-        kind = pos.getKind() and
-        PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
-        PrevStage::returnMayFlowThrough(ret, pos, pragma[only_bind_into](config)) and
-        matchesCall(ccc, call)
-      )
+      flowOutOfCall(call, ret, kind, out, allowsFieldFlow, pragma[only_bind_into](config)) and
+      PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
+      PrevStage::returnMayFlowThrough(ret, kind, pragma[only_bind_into](config)) and
+      matchesCall(ccc, call) and
+      c = ret.getEnclosingCallable()
     }
 
     /**
@@ -1284,12 +1304,12 @@ private module MkStage<StageSig PrevStage> {
      *
      * The call context `cc` records whether the node is reached through an
      * argument in a call, and if so, `summaryCtx` and `argAp` record the
-     * corresponding parameter and access path of that argument, respectively.
+     * corresponding parameter position and access path of that argument, respectively.
      */
     pragma[nomagic]
     additional predicate fwdFlow(
-      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
-      Configuration config
+      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      Ap ap, Configuration config
     ) {
       fwdFlow0(node, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::revFlow(node, state, unbindApa(getApprox(ap)), config) and
@@ -1298,13 +1318,13 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlow0(
-      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
-      Configuration config
+      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      Ap ap, Configuration config
     ) {
       sourceNode(node, state, config) and
       (if hasSourceCallCtx(config) then cc = ccSomeCall() else cc = ccNone()) and
       argAp = apNone() and
-      summaryCtx = TParamNodeNone() and
+      summaryCtx = TParameterPositionNone() and
       ap = getApNil(node)
       or
       exists(NodeEx mid, FlowState state0, Ap ap0, LocalCc localCc |
@@ -1322,7 +1342,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, pragma[only_bind_into](config)) and
         jumpStep(mid, node, config) and
         cc = ccNone() and
-        summaryCtx = TParamNodeNone() and
+        summaryCtx = TParameterPositionNone() and
         argAp = apNone()
       )
       or
@@ -1330,7 +1350,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, state, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStep(mid, node, config) and
         cc = ccNone() and
-        summaryCtx = TParamNodeNone() and
+        summaryCtx = TParameterPositionNone() and
         argAp = apNone() and
         ap = getApNil(node)
       )
@@ -1339,7 +1359,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, state0, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStateStep(mid, state0, node, state, config) and
         cc = ccNone() and
-        summaryCtx = TParamNodeNone() and
+        summaryCtx = TParameterPositionNone() and
         argAp = apNone() and
         ap = getApNil(node)
       )
@@ -1362,17 +1382,27 @@ private module MkStage<StageSig PrevStage> {
         apa = getApprox(ap) and
         if PrevStage::parameterMayFlowThrough(node, apa, config)
         then (
-          summaryCtx = TParamNodeSome(node.asNode()) and argAp = apSome(ap)
+          summaryCtx = TParameterPositionSome(node.(ParamNodeEx).getPosition()) and
+          argAp = apSome(ap)
         ) else (
-          summaryCtx = TParamNodeNone() and argAp = apNone()
+          summaryCtx = TParameterPositionNone() and argAp = apNone()
         )
       )
       or
       // flow out of a callable
-      fwdFlowOutNotFromArg(node, state, cc, summaryCtx, argAp, ap, config)
+      exists(
+        DataFlowCall call, RetNodeEx ret, boolean allowsFieldFlow, CcNoCall innercc,
+        DataFlowCallable inner
+      |
+        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, config) and
+        flowOutOfCall(call, ret, _, node, allowsFieldFlow, config) and
+        inner = ret.getEnclosingCallable() and
+        cc = getCallContextReturn(inner, call, innercc) and
+        if allowsFieldFlow = false then ap instanceof ApNil else any()
+      )
       or
       // flow through a callable
-      exists(DataFlowCall call, ParamNode summaryCtx0, Ap argAp0 |
+      exists(DataFlowCall call, ParameterPosition summaryCtx0, Ap argAp0 |
         fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, config) and
         fwdFlowIsEntered(call, cc, summaryCtx, argAp, summaryCtx0, argAp0, config)
       )
@@ -1381,7 +1411,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowStore(
       NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc,
-      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
+      ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
     ) {
       exists(DataFlowType contentType |
         fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, config) and
@@ -1406,7 +1436,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowRead(
       Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc,
-      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
+      ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
     ) {
       fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, c, node2, config) and
@@ -1416,7 +1446,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowIn(
       DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, Cc innercc,
-      ParamNodeOption summaryCtx, ApOption argAp, Ap ap, Configuration config
+      ParameterPositionOption summaryCtx, ApOption argAp, Ap ap, Configuration config
     ) {
       exists(ArgNodeEx arg, boolean allowsFieldFlow |
         fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, config) and
@@ -1427,32 +1457,19 @@ private module MkStage<StageSig PrevStage> {
     }
 
     pragma[nomagic]
-    private predicate fwdFlowOutNotFromArg(
-      NodeEx out, FlowState state, Cc ccOut, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+    private predicate fwdFlowOutFromArg(
+      DataFlowCall call, NodeEx out, FlowState state, ParameterPosition summaryCtx, Ap argAp, Ap ap,
       Configuration config
     ) {
       exists(
-        DataFlowCall call, RetNodeEx ret, boolean allowsFieldFlow, CcNoCall innercc,
-        DataFlowCallable inner
+        DataFlowCallable c, RetNodeEx ret, ReturnKindExt kind, boolean allowsFieldFlow, CcCall ccc
       |
-        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, config) and
-        flowOutOfCall(call, ret, _, out, allowsFieldFlow, config) and
-        inner = ret.getEnclosingCallable() and
-        ccOut = getCallContextReturn(inner, call, innercc) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
-      )
-    }
-
-    pragma[nomagic]
-    private predicate fwdFlowOutFromArg(
-      DataFlowCall call, NodeEx out, FlowState state, ParamNode summaryCtx, Ap argAp, Ap ap,
-      Configuration config
-    ) {
-      exists(RetNodeEx ret, ReturnKindExt kind, boolean allowsFieldFlow, CcCall ccc |
-        fwdFlow(ret, state, ccc, TParamNodeSome(summaryCtx), apSome(argAp), ap, config) and
-        flowThroughOutOfCall(call, ccc, ret, kind, out, allowsFieldFlow, config) and
+        fwdFlow(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc),
+          TParameterPositionSome(pragma[only_bind_into](summaryCtx)), apSome(argAp), ap, config) and
+        flowThroughOutOfCall(call, pragma[only_bind_into](c), ccc, ret, kind, out, allowsFieldFlow,
+          config) and
         (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
-        parameterFlowThroughAllowed(summaryCtx, kind)
+        parameterFlowThroughAllowed(c, pragma[only_bind_into](summaryCtx), kind)
       )
     }
 
@@ -1462,13 +1479,13 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate fwdFlowIsEntered(
-      DataFlowCall call, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, ParamNode p, Ap ap,
-      Configuration config
+      DataFlowCall call, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      ParameterPosition pos, Ap ap, Configuration config
     ) {
       exists(ParamNodeEx param |
         fwdFlowIn(call, param, _, cc, _, summaryCtx, argAp, ap, config) and
         PrevStage::parameterMayFlowThrough(param, unbindApa(getApprox(ap)), config) and
-        p = param.asNode()
+        pos = param.getPosition()
       )
     }
 
@@ -1489,23 +1506,41 @@ private module MkStage<StageSig PrevStage> {
     }
 
     pragma[nomagic]
-    private predicate returnFlowsThrough(
-      RetNodeEx ret, ReturnPosition pos, FlowState state, CcCall ccc, ParamNode p, Ap argAp, Ap ap,
-      Configuration config
+    private predicate returnFlowsThrough0(
+      RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, DataFlowCallable c,
+      ParameterPosition ppos, Ap argAp, Ap ap, Configuration config
     ) {
-      fwdFlow(ret, state, ccc, TParamNodeSome(p), apSome(argAp), ap, config) and
-      pos = ret.getReturnPosition() and
-      parameterFlowThroughAllowed(p, pos.getKind())
+      exists(boolean allowsFieldFlow |
+        fwdFlow(ret, state, ccc, TParameterPositionSome(ppos), apSome(argAp), ap, config) and
+        flowThroughOutOfCall(_, c, _, pragma[only_bind_into](ret), kind, _, allowsFieldFlow,
+          pragma[only_bind_into](config)) and
+        if allowsFieldFlow = false then ap instanceof ApNil else any()
+      )
+    }
+
+    pragma[nomagic]
+    private predicate returnFlowsThrough(
+      RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, ParamNodeEx p, Ap argAp,
+      Ap ap, Configuration config
+    ) {
+      exists(DataFlowCallable c, ParameterPosition ppos |
+        returnFlowsThrough0(ret, kind, state, ccc, c, ppos, argAp, ap, config) and
+        p.isParameterOf(c, ppos) and
+        parameterFlowThroughAllowed(p, kind)
+      )
     }
 
     pragma[nomagic]
     private predicate flowThroughIntoCall(
       DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
     ) {
-      flowIntoCall(call, pragma[only_bind_into](arg), pragma[only_bind_into](p), allowsFieldFlow,
-        pragma[only_bind_into](config)) and
-      fwdFlow(arg, _, _, _, _, _, pragma[only_bind_into](config)) and
-      returnFlowsThrough(_, _, _, _, p.asNode(), _, _, pragma[only_bind_into](config))
+      exists(Ap argAp |
+        flowIntoCall(call, pragma[only_bind_into](arg), pragma[only_bind_into](p), allowsFieldFlow,
+          pragma[only_bind_into](config)) and
+        fwdFlow(arg, _, _, _, _, pragma[only_bind_into](argAp), pragma[only_bind_into](config)) and
+        returnFlowsThrough(_, _, _, _, p, pragma[only_bind_into](argAp), _,
+          pragma[only_bind_into](config))
+      )
     }
 
     /**
@@ -1591,21 +1626,25 @@ private module MkStage<StageSig PrevStage> {
       )
       or
       // flow into a callable
-      revFlowInNotToReturn(node, state, returnAp, ap, config) and
-      returnCtx = TReturnCtxNone()
+      exists(ParamNodeEx p, boolean allowsFieldFlow |
+        revFlow(p, state, TReturnCtxNone(), returnAp, ap, config) and
+        flowIntoCall(_, node, p, allowsFieldFlow, config) and
+        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
+        returnCtx = TReturnCtxNone()
+      )
       or
       // flow through a callable
-      exists(DataFlowCall call, ReturnPosition returnPos0, Ap returnAp0 |
-        revFlowInToReturn(call, node, state, returnPos0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnPos0, returnAp0, config)
+      exists(DataFlowCall call, ReturnKindExt returnKind0, Ap returnAp0 |
+        revFlowInToReturn(call, node, state, returnKind0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
       )
       or
       // flow out of a callable
-      exists(ReturnPosition pos |
-        revFlowOut(_, node, pos, state, _, _, ap, config) and
-        if returnFlowsThrough(node, pos, state, _, _, _, ap, config)
+      exists(ReturnKindExt kind |
+        revFlowOut(_, node, kind, state, _, _, ap, config) and
+        if returnFlowsThrough(node, kind, state, _, _, _, ap, config)
         then (
-          returnCtx = TReturnCtxMaybeFlowThrough(pos) and
+          returnCtx = TReturnCtxMaybeFlowThrough(kind) and
           returnAp = apSome(ap)
         ) else (
           returnCtx = TReturnCtxNoFlowThrough() and returnAp = apNone()
@@ -1638,37 +1677,27 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate revFlowOut(
-      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, FlowState state, ReturnCtx returnCtx,
+      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, FlowState state, ReturnCtx returnCtx,
       ApOption returnAp, Ap ap, Configuration config
     ) {
       exists(NodeEx out, boolean allowsFieldFlow |
         revFlow(out, state, returnCtx, returnAp, ap, config) and
-        flowOutOfCall(call, ret, pos, out, allowsFieldFlow, config) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
-      )
-    }
-
-    pragma[nomagic]
-    private predicate revFlowInNotToReturn(
-      ArgNodeEx arg, FlowState state, ApOption returnAp, Ap ap, Configuration config
-    ) {
-      exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(p, state, TReturnCtxNone(), returnAp, ap, config) and
-        flowIntoCall(_, arg, p, allowsFieldFlow, config) and
+        flowOutOfCall(call, ret, kind, out, allowsFieldFlow, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
     pragma[nomagic]
     private predicate revFlowInToReturn(
-      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnPosition returnPos, Ap returnAp,
-      Ap ap, Configuration config
+      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap,
+      Configuration config
     ) {
       exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(p, state, TReturnCtxMaybeFlowThrough(returnPos), apSome(returnAp), ap, config) and
+        revFlow(pragma[only_bind_into](p), state,
+          TReturnCtxMaybeFlowThrough(pragma[only_bind_into](kind)), apSome(returnAp), ap, config) and
         flowThroughIntoCall(call, arg, p, allowsFieldFlow, config) and
         (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
-        parameterFlowThroughAllowed(p.asNode(), returnPos.getKind())
+        parameterFlowThroughAllowed(p, kind)
       )
     }
 
@@ -1679,12 +1708,12 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate revFlowIsReturned(
-      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnPosition pos, Ap ap,
+      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnKindExt kind, Ap ap,
       Configuration config
     ) {
       exists(RetNodeEx ret, FlowState state, CcCall ccc |
-        revFlowOut(call, ret, pos, state, returnCtx, returnAp, ap, config) and
-        returnFlowsThrough(ret, pos, state, ccc, _, _, ap, config) and
+        revFlowOut(call, ret, kind, state, returnCtx, returnAp, ap, config) and
+        returnFlowsThrough(ret, kind, state, ccc, _, _, ap, config) and
         matchesCall(ccc, call)
       )
     }
@@ -1757,37 +1786,37 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate parameterFlowsThroughRev(
-      ParamNodeEx p, Ap ap, ReturnPosition returnPos, Configuration config
+      ParamNodeEx p, Ap ap, ReturnKindExt kind, Configuration config
     ) {
-      revFlow(p, _, TReturnCtxMaybeFlowThrough(returnPos), apSome(_), ap, config) and
-      parameterFlowThroughAllowed(p.asNode(), returnPos.getKind())
+      revFlow(p, _, TReturnCtxMaybeFlowThrough(kind), apSome(_), ap, config) and
+      parameterFlowThroughAllowed(p, kind)
     }
 
     pragma[nomagic]
     predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
-      exists(RetNodeEx ret, ReturnPosition pos |
-        returnFlowsThrough(ret, pos, _, _, p.asNode(), ap, _, config) and
-        parameterFlowsThroughRev(p, ap, pos, config)
+      exists(RetNodeEx ret, ReturnKindExt kind |
+        returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
+        parameterFlowsThroughRev(p, ap, kind, config)
       )
     }
 
     pragma[nomagic]
-    predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config) {
+    predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config) {
       exists(ParamNodeEx p, Ap ap |
-        returnFlowsThrough(ret, pos, _, _, p.asNode(), ap, _, config) and
-        parameterFlowsThroughRev(p, ap, pos, config)
+        returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
+        parameterFlowsThroughRev(p, ap, kind, config)
       )
     }
 
     pragma[nomagic]
     predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
       exists(
-        ReturnPosition returnPos0, Ap returnAp0, ArgNodeEx arg, FlowState state,
+        ReturnKindExt returnKind0, Ap returnAp0, ArgNodeEx arg, FlowState state,
         ReturnCtx returnCtx, ApOption returnAp, Ap ap
       |
         revFlow(arg, state, returnCtx, returnAp, ap, config) and
-        revFlowInToReturn(call, arg, state, returnPos0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnPos0, returnAp0, config)
+        revFlowInToReturn(call, arg, state, returnKind0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
       )
     }
 
@@ -1800,9 +1829,8 @@ private module MkStage<StageSig PrevStage> {
       conscand = count(TypedContent f0, Ap ap | fwdConsCand(f0, ap, config)) and
       states = count(FlowState state | fwdFlow(_, state, _, _, _, _, config)) and
       tuples =
-        count(NodeEx n, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap |
-          fwdFlow(n, state, cc, summaryCtx, argAp, ap, config)
-        )
+        count(NodeEx n, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+          Ap ap | fwdFlow(n, state, cc, summaryCtx, argAp, ap, config))
       or
       fwd = false and
       nodes = count(NodeEx node | revFlow(node, _, _, _, _, config)) and
@@ -1992,10 +2020,10 @@ private module Stage2 implements StageSig {
 
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand2(
-  DataFlowCall call, RetNodeEx node1, ReturnPosition pos, NodeEx node2, boolean allowsFieldFlow,
+  DataFlowCall call, RetNodeEx node1, ReturnKindExt kind, NodeEx node2, boolean allowsFieldFlow,
   Configuration config
 ) {
-  flowOutOfCallNodeCand1(call, node1, pos, node2, allowsFieldFlow, config) and
+  flowOutOfCallNodeCand1(call, node1, kind, node2, allowsFieldFlow, config) and
   Stage2::revFlow(node2, pragma[only_bind_into](config)) and
   Stage2::revFlowAlias(node1, pragma[only_bind_into](config))
 }
@@ -2511,11 +2539,11 @@ private module Stage4Param implements MkStage<Stage3>::StageParam {
 
   pragma[nomagic]
   predicate flowOutOfCall(
-    DataFlowCall call, RetNodeEx node1, ReturnPosition pos, NodeEx node2, boolean allowsFieldFlow,
+    DataFlowCall call, RetNodeEx node1, ReturnKindExt kind, NodeEx node2, boolean allowsFieldFlow,
     Configuration config
   ) {
     exists(FlowState state |
-      flowOutOfCallNodeCand2(call, node1, pos, node2, allowsFieldFlow, config) and
+      flowOutOfCallNodeCand2(call, node1, kind, node2, allowsFieldFlow, config) and
       PrevStage::revFlow(node2, pragma[only_bind_into](state), _, pragma[only_bind_into](config)) and
       PrevStage::revFlowAlias(node1, pragma[only_bind_into](state), _,
         pragma[only_bind_into](config))
@@ -2552,12 +2580,13 @@ private Configuration unbindConf(Configuration conf) {
 
 pragma[nomagic]
 private predicate nodeMayUseSummary0(
-  NodeEx n, ParamNodeEx p, FlowState state, AccessPathApprox apa, Configuration config
+  NodeEx n, DataFlowCallable c, ParameterPosition pos, FlowState state, AccessPathApprox apa,
+  Configuration config
 ) {
   exists(AccessPathApprox apa0 |
-    Stage4::parameterMayFlowThrough(p, _, _) and
+    c = n.getEnclosingCallable() and
     Stage4::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
-    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TParamNodeSome(p.asNode()),
+    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TParameterPositionSome(pos),
       TAccessPathApproxSome(apa), apa0, config)
   )
 }
@@ -2566,9 +2595,10 @@ pragma[nomagic]
 private predicate nodeMayUseSummary(
   NodeEx n, FlowState state, AccessPathApprox apa, Configuration config
 ) {
-  exists(ParamNodeEx p |
+  exists(DataFlowCallable c, ParameterPosition pos, ParamNodeEx p |
     Stage4::parameterMayFlowThrough(p, apa, config) and
-    nodeMayUseSummary0(n, p, state, apa, config)
+    nodeMayUseSummary0(n, c, pos, state, apa, config) and
+    p.isParameterOf(c, pos)
   )
 }
 
@@ -3501,7 +3531,7 @@ private predicate paramFlowsThrough(
     pathNode(mid, ret, state, cc, sc, ap, config, _) and
     kind = ret.getKind() and
     apa = ap.getApprox() and
-    parameterFlowThroughAllowed(sc.getParamNode().asNode(), kind)
+    parameterFlowThroughAllowed(sc.getParamNode(), kind)
   )
 }
 
diff --git a/cpp/ql/lib/semmle/code/cpp/ir/dataflow/internal/DataFlowImplCommon.qll b/cpp/ql/lib/semmle/code/cpp/ir/dataflow/internal/DataFlowImplCommon.qll
index 621ed34f9d0..f981834a6d4 100644
--- a/cpp/ql/lib/semmle/code/cpp/ir/dataflow/internal/DataFlowImplCommon.qll
+++ b/cpp/ql/lib/semmle/code/cpp/ir/dataflow/internal/DataFlowImplCommon.qll
@@ -916,15 +916,15 @@ private module Cached {
     TDataFlowCallSome(DataFlowCall call)
 
   cached
-  newtype TParamNodeOption =
-    TParamNodeNone() or
-    TParamNodeSome(ParamNode p)
+  newtype TParameterPositionOption =
+    TParameterPositionNone() or
+    TParameterPositionSome(ParameterPosition pos)
 
   cached
   newtype TReturnCtx =
     TReturnCtxNone() or
     TReturnCtxNoFlowThrough() or
-    TReturnCtxMaybeFlowThrough(ReturnPosition pos)
+    TReturnCtxMaybeFlowThrough(ReturnKindExt kind)
 
   cached
   newtype TTypedContent = MkTypedContent(Content c, DataFlowType t) { store(_, c, _, _, t) }
@@ -1315,15 +1315,15 @@ class DataFlowCallOption extends TDataFlowCallOption {
   }
 }
 
-/** An optional `ParamNode`. */
-class ParamNodeOption extends TParamNodeOption {
+/** An optional `ParameterPosition`. */
+class ParameterPositionOption extends TParameterPositionOption {
   string toString() {
-    this = TParamNodeNone() and
+    this = TParameterPositionNone() and
     result = "(none)"
     or
-    exists(ParamNode p |
-      this = TParamNodeSome(p) and
-      result = p.toString()
+    exists(ParameterPosition pos |
+      this = TParameterPositionSome(pos) and
+      result = pos.toString()
     )
   }
 }
@@ -1335,7 +1335,7 @@ class ParamNodeOption extends TParamNodeOption {
  *
  * - `TReturnCtxNone()`: no return flow.
  * - `TReturnCtxNoFlowThrough()`: return flow, but flow through is not possible.
- * - `TReturnCtxMaybeFlowThrough(ReturnPosition pos)`: return flow, of kind `pos`, and
+ * - `TReturnCtxMaybeFlowThrough(ReturnKindExt kind)`: return flow, of kind `kind`, and
  *    flow through may be possible.
  */
 class ReturnCtx extends TReturnCtx {
@@ -1346,9 +1346,9 @@ class ReturnCtx extends TReturnCtx {
     this = TReturnCtxNoFlowThrough() and
     result = "(no flow through)"
     or
-    exists(ReturnPosition pos |
-      this = TReturnCtxMaybeFlowThrough(pos) and
-      result = pos.toString()
+    exists(ReturnKindExt kind |
+      this = TReturnCtxMaybeFlowThrough(kind) and
+      result = kind.toString()
     )
   }
 }
diff --git a/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImpl.qll b/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImpl.qll
index a52ad110662..e4cfd5986be 100644
--- a/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImpl.qll
+++ b/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImpl.qll
@@ -613,11 +613,28 @@ private predicate hasSinkCallCtx(Configuration config) {
  * explicitly allowed
  */
 bindingset[p, kind]
-private predicate parameterFlowThroughAllowed(ParamNode p, ReturnKindExt kind) {
+private predicate parameterFlowThroughAllowed(ParamNodeEx p, ReturnKindExt kind) {
   exists(ParameterPosition pos | p.isParameterOf(_, pos) |
     not kind.(ParamUpdateReturnKind).getPosition() = pos
     or
-    allowParameterReturnInSelfCached(p)
+    allowParameterReturnInSelfCached(p.asNode())
+  )
+}
+
+/**
+ * Holds if flow from a parameter at position `pos` inside `c` to a return node of
+ * kind `kind` is allowed.
+ *
+ * We don't expect a parameter to return stored in itself, unless
+ * explicitly allowed
+ */
+bindingset[c, pos, kind]
+private predicate parameterFlowThroughAllowed(
+  DataFlowCallable c, ParameterPosition pos, ReturnKindExt kind
+) {
+  exists(ParamNodeEx p |
+    p.isParameterOf(c, pos) and
+    parameterFlowThroughAllowed(p, kind)
   )
 }
 
@@ -1000,14 +1017,14 @@ private module Stage1 implements StageSig {
       returnFlowCallableNodeCand(c, kind, config) and
       p.getEnclosingCallable() = c and
       exists(ap) and
-      parameterFlowThroughAllowed(p.asNode(), kind)
+      parameterFlowThroughAllowed(p, kind)
     )
   }
 
   pragma[nomagic]
-  predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config) {
+  predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config) {
     throughFlowNodeCand(ret, config) and
-    pos = ret.getReturnPosition()
+    kind = ret.getKind()
   }
 
   pragma[nomagic]
@@ -1066,13 +1083,16 @@ private predicate viableReturnPosOutNodeCand1(
  */
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand1(
-  DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, Configuration config
+  DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, Configuration config
 ) {
-  viableReturnPosOutNodeCand1(call, pos, out, config) and
-  pos = ret.getReturnPosition() and
-  Stage1::revFlow(ret, config) and
-  not outBarrier(ret, config) and
-  not inBarrier(out, config)
+  exists(ReturnPosition pos |
+    viableReturnPosOutNodeCand1(call, pos, out, config) and
+    pos = ret.getReturnPosition() and
+    kind = pos.getKind() and
+    Stage1::revFlow(ret, config) and
+    not outBarrier(ret, config) and
+    not inBarrier(out, config)
+  )
 }
 
 pragma[nomagic]
@@ -1102,6 +1122,7 @@ private predicate flowIntoCallNodeCand1(
  * edge in the graph of paths between sources and sinks that ignores call
  * contexts.
  */
+pragma[nomagic]
 private int branch(NodeEx n1, Configuration conf) {
   result =
     strictcount(NodeEx n |
@@ -1114,6 +1135,7 @@ private int branch(NodeEx n1, Configuration conf) {
  * edge in the graph of paths between sources and sinks that ignores call
  * contexts.
  */
+pragma[nomagic]
 private int join(NodeEx n2, Configuration conf) {
   result =
     strictcount(NodeEx n |
@@ -1130,10 +1152,10 @@ private int join(NodeEx n2, Configuration conf) {
  */
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand1(
-  DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
+  DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
   Configuration config
 ) {
-  flowOutOfCallNodeCand1(call, ret, pos, out, pragma[only_bind_into](config)) and
+  flowOutOfCallNodeCand1(call, ret, kind, out, pragma[only_bind_into](config)) and
   exists(int b, int j |
     b = branch(ret, pragma[only_bind_into](config)) and
     j = join(out, pragma[only_bind_into](config)) and
@@ -1152,10 +1174,10 @@ pragma[nomagic]
 private predicate flowIntoCallNodeCand1(
   DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
 ) {
-  flowIntoCallNodeCand1(call, arg, p, config) and
+  flowIntoCallNodeCand1(call, arg, p, pragma[only_bind_into](config)) and
   exists(int b, int j |
-    b = branch(arg, config) and
-    j = join(p, config) and
+    b = branch(arg, pragma[only_bind_into](config)) and
+    j = join(p, pragma[only_bind_into](config)) and
     if b.minimum(j) <= config.fieldFlowBranchLimit()
     then allowsFieldFlow = true
     else allowsFieldFlow = false
@@ -1174,7 +1196,7 @@ private signature module StageSig {
 
   predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config);
 
-  predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config);
+  predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config);
 
   predicate storeStepCand(
     NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, DataFlowType contentType,
@@ -1240,7 +1262,7 @@ private module MkStage<StageSig PrevStage> {
     );
 
     predicate flowOutOfCall(
-      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
+      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
       Configuration config
     );
 
@@ -1266,16 +1288,14 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate flowThroughOutOfCall(
-      DataFlowCall call, CcCall ccc, RetNodeEx ret, ReturnKindExt kind, NodeEx out,
-      boolean allowsFieldFlow, Configuration config
+      DataFlowCall call, DataFlowCallable c, CcCall ccc, RetNodeEx ret, ReturnKindExt kind,
+      NodeEx out, boolean allowsFieldFlow, Configuration config
     ) {
-      exists(ReturnPosition pos |
-        flowOutOfCall(call, ret, pos, out, allowsFieldFlow, pragma[only_bind_into](config)) and
-        kind = pos.getKind() and
-        PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
-        PrevStage::returnMayFlowThrough(ret, pos, pragma[only_bind_into](config)) and
-        matchesCall(ccc, call)
-      )
+      flowOutOfCall(call, ret, kind, out, allowsFieldFlow, pragma[only_bind_into](config)) and
+      PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
+      PrevStage::returnMayFlowThrough(ret, kind, pragma[only_bind_into](config)) and
+      matchesCall(ccc, call) and
+      c = ret.getEnclosingCallable()
     }
 
     /**
@@ -1284,12 +1304,12 @@ private module MkStage<StageSig PrevStage> {
      *
      * The call context `cc` records whether the node is reached through an
      * argument in a call, and if so, `summaryCtx` and `argAp` record the
-     * corresponding parameter and access path of that argument, respectively.
+     * corresponding parameter position and access path of that argument, respectively.
      */
     pragma[nomagic]
     additional predicate fwdFlow(
-      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
-      Configuration config
+      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      Ap ap, Configuration config
     ) {
       fwdFlow0(node, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::revFlow(node, state, unbindApa(getApprox(ap)), config) and
@@ -1298,13 +1318,13 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlow0(
-      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
-      Configuration config
+      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      Ap ap, Configuration config
     ) {
       sourceNode(node, state, config) and
       (if hasSourceCallCtx(config) then cc = ccSomeCall() else cc = ccNone()) and
       argAp = apNone() and
-      summaryCtx = TParamNodeNone() and
+      summaryCtx = TParameterPositionNone() and
       ap = getApNil(node)
       or
       exists(NodeEx mid, FlowState state0, Ap ap0, LocalCc localCc |
@@ -1322,7 +1342,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, pragma[only_bind_into](config)) and
         jumpStep(mid, node, config) and
         cc = ccNone() and
-        summaryCtx = TParamNodeNone() and
+        summaryCtx = TParameterPositionNone() and
         argAp = apNone()
       )
       or
@@ -1330,7 +1350,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, state, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStep(mid, node, config) and
         cc = ccNone() and
-        summaryCtx = TParamNodeNone() and
+        summaryCtx = TParameterPositionNone() and
         argAp = apNone() and
         ap = getApNil(node)
       )
@@ -1339,7 +1359,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, state0, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStateStep(mid, state0, node, state, config) and
         cc = ccNone() and
-        summaryCtx = TParamNodeNone() and
+        summaryCtx = TParameterPositionNone() and
         argAp = apNone() and
         ap = getApNil(node)
       )
@@ -1362,17 +1382,27 @@ private module MkStage<StageSig PrevStage> {
         apa = getApprox(ap) and
         if PrevStage::parameterMayFlowThrough(node, apa, config)
         then (
-          summaryCtx = TParamNodeSome(node.asNode()) and argAp = apSome(ap)
+          summaryCtx = TParameterPositionSome(node.(ParamNodeEx).getPosition()) and
+          argAp = apSome(ap)
         ) else (
-          summaryCtx = TParamNodeNone() and argAp = apNone()
+          summaryCtx = TParameterPositionNone() and argAp = apNone()
         )
       )
       or
       // flow out of a callable
-      fwdFlowOutNotFromArg(node, state, cc, summaryCtx, argAp, ap, config)
+      exists(
+        DataFlowCall call, RetNodeEx ret, boolean allowsFieldFlow, CcNoCall innercc,
+        DataFlowCallable inner
+      |
+        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, config) and
+        flowOutOfCall(call, ret, _, node, allowsFieldFlow, config) and
+        inner = ret.getEnclosingCallable() and
+        cc = getCallContextReturn(inner, call, innercc) and
+        if allowsFieldFlow = false then ap instanceof ApNil else any()
+      )
       or
       // flow through a callable
-      exists(DataFlowCall call, ParamNode summaryCtx0, Ap argAp0 |
+      exists(DataFlowCall call, ParameterPosition summaryCtx0, Ap argAp0 |
         fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, config) and
         fwdFlowIsEntered(call, cc, summaryCtx, argAp, summaryCtx0, argAp0, config)
       )
@@ -1381,7 +1411,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowStore(
       NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc,
-      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
+      ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
     ) {
       exists(DataFlowType contentType |
         fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, config) and
@@ -1406,7 +1436,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowRead(
       Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc,
-      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
+      ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
     ) {
       fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, c, node2, config) and
@@ -1416,7 +1446,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowIn(
       DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, Cc innercc,
-      ParamNodeOption summaryCtx, ApOption argAp, Ap ap, Configuration config
+      ParameterPositionOption summaryCtx, ApOption argAp, Ap ap, Configuration config
     ) {
       exists(ArgNodeEx arg, boolean allowsFieldFlow |
         fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, config) and
@@ -1427,32 +1457,19 @@ private module MkStage<StageSig PrevStage> {
     }
 
     pragma[nomagic]
-    private predicate fwdFlowOutNotFromArg(
-      NodeEx out, FlowState state, Cc ccOut, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+    private predicate fwdFlowOutFromArg(
+      DataFlowCall call, NodeEx out, FlowState state, ParameterPosition summaryCtx, Ap argAp, Ap ap,
       Configuration config
     ) {
       exists(
-        DataFlowCall call, RetNodeEx ret, boolean allowsFieldFlow, CcNoCall innercc,
-        DataFlowCallable inner
+        DataFlowCallable c, RetNodeEx ret, ReturnKindExt kind, boolean allowsFieldFlow, CcCall ccc
       |
-        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, config) and
-        flowOutOfCall(call, ret, _, out, allowsFieldFlow, config) and
-        inner = ret.getEnclosingCallable() and
-        ccOut = getCallContextReturn(inner, call, innercc) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
-      )
-    }
-
-    pragma[nomagic]
-    private predicate fwdFlowOutFromArg(
-      DataFlowCall call, NodeEx out, FlowState state, ParamNode summaryCtx, Ap argAp, Ap ap,
-      Configuration config
-    ) {
-      exists(RetNodeEx ret, ReturnKindExt kind, boolean allowsFieldFlow, CcCall ccc |
-        fwdFlow(ret, state, ccc, TParamNodeSome(summaryCtx), apSome(argAp), ap, config) and
-        flowThroughOutOfCall(call, ccc, ret, kind, out, allowsFieldFlow, config) and
+        fwdFlow(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc),
+          TParameterPositionSome(pragma[only_bind_into](summaryCtx)), apSome(argAp), ap, config) and
+        flowThroughOutOfCall(call, pragma[only_bind_into](c), ccc, ret, kind, out, allowsFieldFlow,
+          config) and
         (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
-        parameterFlowThroughAllowed(summaryCtx, kind)
+        parameterFlowThroughAllowed(c, pragma[only_bind_into](summaryCtx), kind)
       )
     }
 
@@ -1462,13 +1479,13 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate fwdFlowIsEntered(
-      DataFlowCall call, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, ParamNode p, Ap ap,
-      Configuration config
+      DataFlowCall call, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      ParameterPosition pos, Ap ap, Configuration config
     ) {
       exists(ParamNodeEx param |
         fwdFlowIn(call, param, _, cc, _, summaryCtx, argAp, ap, config) and
         PrevStage::parameterMayFlowThrough(param, unbindApa(getApprox(ap)), config) and
-        p = param.asNode()
+        pos = param.getPosition()
       )
     }
 
@@ -1489,23 +1506,41 @@ private module MkStage<StageSig PrevStage> {
     }
 
     pragma[nomagic]
-    private predicate returnFlowsThrough(
-      RetNodeEx ret, ReturnPosition pos, FlowState state, CcCall ccc, ParamNode p, Ap argAp, Ap ap,
-      Configuration config
+    private predicate returnFlowsThrough0(
+      RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, DataFlowCallable c,
+      ParameterPosition ppos, Ap argAp, Ap ap, Configuration config
     ) {
-      fwdFlow(ret, state, ccc, TParamNodeSome(p), apSome(argAp), ap, config) and
-      pos = ret.getReturnPosition() and
-      parameterFlowThroughAllowed(p, pos.getKind())
+      exists(boolean allowsFieldFlow |
+        fwdFlow(ret, state, ccc, TParameterPositionSome(ppos), apSome(argAp), ap, config) and
+        flowThroughOutOfCall(_, c, _, pragma[only_bind_into](ret), kind, _, allowsFieldFlow,
+          pragma[only_bind_into](config)) and
+        if allowsFieldFlow = false then ap instanceof ApNil else any()
+      )
+    }
+
+    pragma[nomagic]
+    private predicate returnFlowsThrough(
+      RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, ParamNodeEx p, Ap argAp,
+      Ap ap, Configuration config
+    ) {
+      exists(DataFlowCallable c, ParameterPosition ppos |
+        returnFlowsThrough0(ret, kind, state, ccc, c, ppos, argAp, ap, config) and
+        p.isParameterOf(c, ppos) and
+        parameterFlowThroughAllowed(p, kind)
+      )
     }
 
     pragma[nomagic]
     private predicate flowThroughIntoCall(
       DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
     ) {
-      flowIntoCall(call, pragma[only_bind_into](arg), pragma[only_bind_into](p), allowsFieldFlow,
-        pragma[only_bind_into](config)) and
-      fwdFlow(arg, _, _, _, _, _, pragma[only_bind_into](config)) and
-      returnFlowsThrough(_, _, _, _, p.asNode(), _, _, pragma[only_bind_into](config))
+      exists(Ap argAp |
+        flowIntoCall(call, pragma[only_bind_into](arg), pragma[only_bind_into](p), allowsFieldFlow,
+          pragma[only_bind_into](config)) and
+        fwdFlow(arg, _, _, _, _, pragma[only_bind_into](argAp), pragma[only_bind_into](config)) and
+        returnFlowsThrough(_, _, _, _, p, pragma[only_bind_into](argAp), _,
+          pragma[only_bind_into](config))
+      )
     }
 
     /**
@@ -1591,21 +1626,25 @@ private module MkStage<StageSig PrevStage> {
       )
       or
       // flow into a callable
-      revFlowInNotToReturn(node, state, returnAp, ap, config) and
-      returnCtx = TReturnCtxNone()
+      exists(ParamNodeEx p, boolean allowsFieldFlow |
+        revFlow(p, state, TReturnCtxNone(), returnAp, ap, config) and
+        flowIntoCall(_, node, p, allowsFieldFlow, config) and
+        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
+        returnCtx = TReturnCtxNone()
+      )
       or
       // flow through a callable
-      exists(DataFlowCall call, ReturnPosition returnPos0, Ap returnAp0 |
-        revFlowInToReturn(call, node, state, returnPos0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnPos0, returnAp0, config)
+      exists(DataFlowCall call, ReturnKindExt returnKind0, Ap returnAp0 |
+        revFlowInToReturn(call, node, state, returnKind0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
       )
       or
       // flow out of a callable
-      exists(ReturnPosition pos |
-        revFlowOut(_, node, pos, state, _, _, ap, config) and
-        if returnFlowsThrough(node, pos, state, _, _, _, ap, config)
+      exists(ReturnKindExt kind |
+        revFlowOut(_, node, kind, state, _, _, ap, config) and
+        if returnFlowsThrough(node, kind, state, _, _, _, ap, config)
         then (
-          returnCtx = TReturnCtxMaybeFlowThrough(pos) and
+          returnCtx = TReturnCtxMaybeFlowThrough(kind) and
           returnAp = apSome(ap)
         ) else (
           returnCtx = TReturnCtxNoFlowThrough() and returnAp = apNone()
@@ -1638,37 +1677,27 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate revFlowOut(
-      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, FlowState state, ReturnCtx returnCtx,
+      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, FlowState state, ReturnCtx returnCtx,
       ApOption returnAp, Ap ap, Configuration config
     ) {
       exists(NodeEx out, boolean allowsFieldFlow |
         revFlow(out, state, returnCtx, returnAp, ap, config) and
-        flowOutOfCall(call, ret, pos, out, allowsFieldFlow, config) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
-      )
-    }
-
-    pragma[nomagic]
-    private predicate revFlowInNotToReturn(
-      ArgNodeEx arg, FlowState state, ApOption returnAp, Ap ap, Configuration config
-    ) {
-      exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(p, state, TReturnCtxNone(), returnAp, ap, config) and
-        flowIntoCall(_, arg, p, allowsFieldFlow, config) and
+        flowOutOfCall(call, ret, kind, out, allowsFieldFlow, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
     pragma[nomagic]
     private predicate revFlowInToReturn(
-      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnPosition returnPos, Ap returnAp,
-      Ap ap, Configuration config
+      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap,
+      Configuration config
     ) {
       exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(p, state, TReturnCtxMaybeFlowThrough(returnPos), apSome(returnAp), ap, config) and
+        revFlow(pragma[only_bind_into](p), state,
+          TReturnCtxMaybeFlowThrough(pragma[only_bind_into](kind)), apSome(returnAp), ap, config) and
         flowThroughIntoCall(call, arg, p, allowsFieldFlow, config) and
         (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
-        parameterFlowThroughAllowed(p.asNode(), returnPos.getKind())
+        parameterFlowThroughAllowed(p, kind)
       )
     }
 
@@ -1679,12 +1708,12 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate revFlowIsReturned(
-      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnPosition pos, Ap ap,
+      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnKindExt kind, Ap ap,
       Configuration config
     ) {
       exists(RetNodeEx ret, FlowState state, CcCall ccc |
-        revFlowOut(call, ret, pos, state, returnCtx, returnAp, ap, config) and
-        returnFlowsThrough(ret, pos, state, ccc, _, _, ap, config) and
+        revFlowOut(call, ret, kind, state, returnCtx, returnAp, ap, config) and
+        returnFlowsThrough(ret, kind, state, ccc, _, _, ap, config) and
         matchesCall(ccc, call)
       )
     }
@@ -1757,37 +1786,37 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate parameterFlowsThroughRev(
-      ParamNodeEx p, Ap ap, ReturnPosition returnPos, Configuration config
+      ParamNodeEx p, Ap ap, ReturnKindExt kind, Configuration config
     ) {
-      revFlow(p, _, TReturnCtxMaybeFlowThrough(returnPos), apSome(_), ap, config) and
-      parameterFlowThroughAllowed(p.asNode(), returnPos.getKind())
+      revFlow(p, _, TReturnCtxMaybeFlowThrough(kind), apSome(_), ap, config) and
+      parameterFlowThroughAllowed(p, kind)
     }
 
     pragma[nomagic]
     predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
-      exists(RetNodeEx ret, ReturnPosition pos |
-        returnFlowsThrough(ret, pos, _, _, p.asNode(), ap, _, config) and
-        parameterFlowsThroughRev(p, ap, pos, config)
+      exists(RetNodeEx ret, ReturnKindExt kind |
+        returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
+        parameterFlowsThroughRev(p, ap, kind, config)
       )
     }
 
     pragma[nomagic]
-    predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config) {
+    predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config) {
       exists(ParamNodeEx p, Ap ap |
-        returnFlowsThrough(ret, pos, _, _, p.asNode(), ap, _, config) and
-        parameterFlowsThroughRev(p, ap, pos, config)
+        returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
+        parameterFlowsThroughRev(p, ap, kind, config)
       )
     }
 
     pragma[nomagic]
     predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
       exists(
-        ReturnPosition returnPos0, Ap returnAp0, ArgNodeEx arg, FlowState state,
+        ReturnKindExt returnKind0, Ap returnAp0, ArgNodeEx arg, FlowState state,
         ReturnCtx returnCtx, ApOption returnAp, Ap ap
       |
         revFlow(arg, state, returnCtx, returnAp, ap, config) and
-        revFlowInToReturn(call, arg, state, returnPos0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnPos0, returnAp0, config)
+        revFlowInToReturn(call, arg, state, returnKind0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
       )
     }
 
@@ -1800,9 +1829,8 @@ private module MkStage<StageSig PrevStage> {
       conscand = count(TypedContent f0, Ap ap | fwdConsCand(f0, ap, config)) and
       states = count(FlowState state | fwdFlow(_, state, _, _, _, _, config)) and
       tuples =
-        count(NodeEx n, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap |
-          fwdFlow(n, state, cc, summaryCtx, argAp, ap, config)
-        )
+        count(NodeEx n, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+          Ap ap | fwdFlow(n, state, cc, summaryCtx, argAp, ap, config))
       or
       fwd = false and
       nodes = count(NodeEx node | revFlow(node, _, _, _, _, config)) and
@@ -1992,10 +2020,10 @@ private module Stage2 implements StageSig {
 
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand2(
-  DataFlowCall call, RetNodeEx node1, ReturnPosition pos, NodeEx node2, boolean allowsFieldFlow,
+  DataFlowCall call, RetNodeEx node1, ReturnKindExt kind, NodeEx node2, boolean allowsFieldFlow,
   Configuration config
 ) {
-  flowOutOfCallNodeCand1(call, node1, pos, node2, allowsFieldFlow, config) and
+  flowOutOfCallNodeCand1(call, node1, kind, node2, allowsFieldFlow, config) and
   Stage2::revFlow(node2, pragma[only_bind_into](config)) and
   Stage2::revFlowAlias(node1, pragma[only_bind_into](config))
 }
@@ -2511,11 +2539,11 @@ private module Stage4Param implements MkStage<Stage3>::StageParam {
 
   pragma[nomagic]
   predicate flowOutOfCall(
-    DataFlowCall call, RetNodeEx node1, ReturnPosition pos, NodeEx node2, boolean allowsFieldFlow,
+    DataFlowCall call, RetNodeEx node1, ReturnKindExt kind, NodeEx node2, boolean allowsFieldFlow,
     Configuration config
   ) {
     exists(FlowState state |
-      flowOutOfCallNodeCand2(call, node1, pos, node2, allowsFieldFlow, config) and
+      flowOutOfCallNodeCand2(call, node1, kind, node2, allowsFieldFlow, config) and
       PrevStage::revFlow(node2, pragma[only_bind_into](state), _, pragma[only_bind_into](config)) and
       PrevStage::revFlowAlias(node1, pragma[only_bind_into](state), _,
         pragma[only_bind_into](config))
@@ -2552,12 +2580,13 @@ private Configuration unbindConf(Configuration conf) {
 
 pragma[nomagic]
 private predicate nodeMayUseSummary0(
-  NodeEx n, ParamNodeEx p, FlowState state, AccessPathApprox apa, Configuration config
+  NodeEx n, DataFlowCallable c, ParameterPosition pos, FlowState state, AccessPathApprox apa,
+  Configuration config
 ) {
   exists(AccessPathApprox apa0 |
-    Stage4::parameterMayFlowThrough(p, _, _) and
+    c = n.getEnclosingCallable() and
     Stage4::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
-    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TParamNodeSome(p.asNode()),
+    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TParameterPositionSome(pos),
       TAccessPathApproxSome(apa), apa0, config)
   )
 }
@@ -2566,9 +2595,10 @@ pragma[nomagic]
 private predicate nodeMayUseSummary(
   NodeEx n, FlowState state, AccessPathApprox apa, Configuration config
 ) {
-  exists(ParamNodeEx p |
+  exists(DataFlowCallable c, ParameterPosition pos, ParamNodeEx p |
     Stage4::parameterMayFlowThrough(p, apa, config) and
-    nodeMayUseSummary0(n, p, state, apa, config)
+    nodeMayUseSummary0(n, c, pos, state, apa, config) and
+    p.isParameterOf(c, pos)
   )
 }
 
@@ -3501,7 +3531,7 @@ private predicate paramFlowsThrough(
     pathNode(mid, ret, state, cc, sc, ap, config, _) and
     kind = ret.getKind() and
     apa = ap.getApprox() and
-    parameterFlowThroughAllowed(sc.getParamNode().asNode(), kind)
+    parameterFlowThroughAllowed(sc.getParamNode(), kind)
   )
 }
 
diff --git a/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImpl2.qll b/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImpl2.qll
index a52ad110662..e4cfd5986be 100644
--- a/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImpl2.qll
+++ b/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImpl2.qll
@@ -613,11 +613,28 @@ private predicate hasSinkCallCtx(Configuration config) {
  * explicitly allowed
  */
 bindingset[p, kind]
-private predicate parameterFlowThroughAllowed(ParamNode p, ReturnKindExt kind) {
+private predicate parameterFlowThroughAllowed(ParamNodeEx p, ReturnKindExt kind) {
   exists(ParameterPosition pos | p.isParameterOf(_, pos) |
     not kind.(ParamUpdateReturnKind).getPosition() = pos
     or
-    allowParameterReturnInSelfCached(p)
+    allowParameterReturnInSelfCached(p.asNode())
+  )
+}
+
+/**
+ * Holds if flow from a parameter at position `pos` inside `c` to a return node of
+ * kind `kind` is allowed.
+ *
+ * We don't expect a parameter to return stored in itself, unless
+ * explicitly allowed
+ */
+bindingset[c, pos, kind]
+private predicate parameterFlowThroughAllowed(
+  DataFlowCallable c, ParameterPosition pos, ReturnKindExt kind
+) {
+  exists(ParamNodeEx p |
+    p.isParameterOf(c, pos) and
+    parameterFlowThroughAllowed(p, kind)
   )
 }
 
@@ -1000,14 +1017,14 @@ private module Stage1 implements StageSig {
       returnFlowCallableNodeCand(c, kind, config) and
       p.getEnclosingCallable() = c and
       exists(ap) and
-      parameterFlowThroughAllowed(p.asNode(), kind)
+      parameterFlowThroughAllowed(p, kind)
     )
   }
 
   pragma[nomagic]
-  predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config) {
+  predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config) {
     throughFlowNodeCand(ret, config) and
-    pos = ret.getReturnPosition()
+    kind = ret.getKind()
   }
 
   pragma[nomagic]
@@ -1066,13 +1083,16 @@ private predicate viableReturnPosOutNodeCand1(
  */
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand1(
-  DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, Configuration config
+  DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, Configuration config
 ) {
-  viableReturnPosOutNodeCand1(call, pos, out, config) and
-  pos = ret.getReturnPosition() and
-  Stage1::revFlow(ret, config) and
-  not outBarrier(ret, config) and
-  not inBarrier(out, config)
+  exists(ReturnPosition pos |
+    viableReturnPosOutNodeCand1(call, pos, out, config) and
+    pos = ret.getReturnPosition() and
+    kind = pos.getKind() and
+    Stage1::revFlow(ret, config) and
+    not outBarrier(ret, config) and
+    not inBarrier(out, config)
+  )
 }
 
 pragma[nomagic]
@@ -1102,6 +1122,7 @@ private predicate flowIntoCallNodeCand1(
  * edge in the graph of paths between sources and sinks that ignores call
  * contexts.
  */
+pragma[nomagic]
 private int branch(NodeEx n1, Configuration conf) {
   result =
     strictcount(NodeEx n |
@@ -1114,6 +1135,7 @@ private int branch(NodeEx n1, Configuration conf) {
  * edge in the graph of paths between sources and sinks that ignores call
  * contexts.
  */
+pragma[nomagic]
 private int join(NodeEx n2, Configuration conf) {
   result =
     strictcount(NodeEx n |
@@ -1130,10 +1152,10 @@ private int join(NodeEx n2, Configuration conf) {
  */
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand1(
-  DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
+  DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
   Configuration config
 ) {
-  flowOutOfCallNodeCand1(call, ret, pos, out, pragma[only_bind_into](config)) and
+  flowOutOfCallNodeCand1(call, ret, kind, out, pragma[only_bind_into](config)) and
   exists(int b, int j |
     b = branch(ret, pragma[only_bind_into](config)) and
     j = join(out, pragma[only_bind_into](config)) and
@@ -1152,10 +1174,10 @@ pragma[nomagic]
 private predicate flowIntoCallNodeCand1(
   DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
 ) {
-  flowIntoCallNodeCand1(call, arg, p, config) and
+  flowIntoCallNodeCand1(call, arg, p, pragma[only_bind_into](config)) and
   exists(int b, int j |
-    b = branch(arg, config) and
-    j = join(p, config) and
+    b = branch(arg, pragma[only_bind_into](config)) and
+    j = join(p, pragma[only_bind_into](config)) and
     if b.minimum(j) <= config.fieldFlowBranchLimit()
     then allowsFieldFlow = true
     else allowsFieldFlow = false
@@ -1174,7 +1196,7 @@ private signature module StageSig {
 
   predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config);
 
-  predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config);
+  predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config);
 
   predicate storeStepCand(
     NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, DataFlowType contentType,
@@ -1240,7 +1262,7 @@ private module MkStage<StageSig PrevStage> {
     );
 
     predicate flowOutOfCall(
-      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
+      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
       Configuration config
     );
 
@@ -1266,16 +1288,14 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate flowThroughOutOfCall(
-      DataFlowCall call, CcCall ccc, RetNodeEx ret, ReturnKindExt kind, NodeEx out,
-      boolean allowsFieldFlow, Configuration config
+      DataFlowCall call, DataFlowCallable c, CcCall ccc, RetNodeEx ret, ReturnKindExt kind,
+      NodeEx out, boolean allowsFieldFlow, Configuration config
     ) {
-      exists(ReturnPosition pos |
-        flowOutOfCall(call, ret, pos, out, allowsFieldFlow, pragma[only_bind_into](config)) and
-        kind = pos.getKind() and
-        PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
-        PrevStage::returnMayFlowThrough(ret, pos, pragma[only_bind_into](config)) and
-        matchesCall(ccc, call)
-      )
+      flowOutOfCall(call, ret, kind, out, allowsFieldFlow, pragma[only_bind_into](config)) and
+      PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
+      PrevStage::returnMayFlowThrough(ret, kind, pragma[only_bind_into](config)) and
+      matchesCall(ccc, call) and
+      c = ret.getEnclosingCallable()
     }
 
     /**
@@ -1284,12 +1304,12 @@ private module MkStage<StageSig PrevStage> {
      *
      * The call context `cc` records whether the node is reached through an
      * argument in a call, and if so, `summaryCtx` and `argAp` record the
-     * corresponding parameter and access path of that argument, respectively.
+     * corresponding parameter position and access path of that argument, respectively.
      */
     pragma[nomagic]
     additional predicate fwdFlow(
-      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
-      Configuration config
+      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      Ap ap, Configuration config
     ) {
       fwdFlow0(node, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::revFlow(node, state, unbindApa(getApprox(ap)), config) and
@@ -1298,13 +1318,13 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlow0(
-      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
-      Configuration config
+      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      Ap ap, Configuration config
     ) {
       sourceNode(node, state, config) and
       (if hasSourceCallCtx(config) then cc = ccSomeCall() else cc = ccNone()) and
       argAp = apNone() and
-      summaryCtx = TParamNodeNone() and
+      summaryCtx = TParameterPositionNone() and
       ap = getApNil(node)
       or
       exists(NodeEx mid, FlowState state0, Ap ap0, LocalCc localCc |
@@ -1322,7 +1342,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, pragma[only_bind_into](config)) and
         jumpStep(mid, node, config) and
         cc = ccNone() and
-        summaryCtx = TParamNodeNone() and
+        summaryCtx = TParameterPositionNone() and
         argAp = apNone()
       )
       or
@@ -1330,7 +1350,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, state, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStep(mid, node, config) and
         cc = ccNone() and
-        summaryCtx = TParamNodeNone() and
+        summaryCtx = TParameterPositionNone() and
         argAp = apNone() and
         ap = getApNil(node)
       )
@@ -1339,7 +1359,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, state0, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStateStep(mid, state0, node, state, config) and
         cc = ccNone() and
-        summaryCtx = TParamNodeNone() and
+        summaryCtx = TParameterPositionNone() and
         argAp = apNone() and
         ap = getApNil(node)
       )
@@ -1362,17 +1382,27 @@ private module MkStage<StageSig PrevStage> {
         apa = getApprox(ap) and
         if PrevStage::parameterMayFlowThrough(node, apa, config)
         then (
-          summaryCtx = TParamNodeSome(node.asNode()) and argAp = apSome(ap)
+          summaryCtx = TParameterPositionSome(node.(ParamNodeEx).getPosition()) and
+          argAp = apSome(ap)
         ) else (
-          summaryCtx = TParamNodeNone() and argAp = apNone()
+          summaryCtx = TParameterPositionNone() and argAp = apNone()
         )
       )
       or
       // flow out of a callable
-      fwdFlowOutNotFromArg(node, state, cc, summaryCtx, argAp, ap, config)
+      exists(
+        DataFlowCall call, RetNodeEx ret, boolean allowsFieldFlow, CcNoCall innercc,
+        DataFlowCallable inner
+      |
+        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, config) and
+        flowOutOfCall(call, ret, _, node, allowsFieldFlow, config) and
+        inner = ret.getEnclosingCallable() and
+        cc = getCallContextReturn(inner, call, innercc) and
+        if allowsFieldFlow = false then ap instanceof ApNil else any()
+      )
       or
       // flow through a callable
-      exists(DataFlowCall call, ParamNode summaryCtx0, Ap argAp0 |
+      exists(DataFlowCall call, ParameterPosition summaryCtx0, Ap argAp0 |
         fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, config) and
         fwdFlowIsEntered(call, cc, summaryCtx, argAp, summaryCtx0, argAp0, config)
       )
@@ -1381,7 +1411,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowStore(
       NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc,
-      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
+      ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
     ) {
       exists(DataFlowType contentType |
         fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, config) and
@@ -1406,7 +1436,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowRead(
       Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc,
-      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
+      ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
     ) {
       fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, c, node2, config) and
@@ -1416,7 +1446,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowIn(
       DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, Cc innercc,
-      ParamNodeOption summaryCtx, ApOption argAp, Ap ap, Configuration config
+      ParameterPositionOption summaryCtx, ApOption argAp, Ap ap, Configuration config
     ) {
       exists(ArgNodeEx arg, boolean allowsFieldFlow |
         fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, config) and
@@ -1427,32 +1457,19 @@ private module MkStage<StageSig PrevStage> {
     }
 
     pragma[nomagic]
-    private predicate fwdFlowOutNotFromArg(
-      NodeEx out, FlowState state, Cc ccOut, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+    private predicate fwdFlowOutFromArg(
+      DataFlowCall call, NodeEx out, FlowState state, ParameterPosition summaryCtx, Ap argAp, Ap ap,
       Configuration config
     ) {
       exists(
-        DataFlowCall call, RetNodeEx ret, boolean allowsFieldFlow, CcNoCall innercc,
-        DataFlowCallable inner
+        DataFlowCallable c, RetNodeEx ret, ReturnKindExt kind, boolean allowsFieldFlow, CcCall ccc
       |
-        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, config) and
-        flowOutOfCall(call, ret, _, out, allowsFieldFlow, config) and
-        inner = ret.getEnclosingCallable() and
-        ccOut = getCallContextReturn(inner, call, innercc) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
-      )
-    }
-
-    pragma[nomagic]
-    private predicate fwdFlowOutFromArg(
-      DataFlowCall call, NodeEx out, FlowState state, ParamNode summaryCtx, Ap argAp, Ap ap,
-      Configuration config
-    ) {
-      exists(RetNodeEx ret, ReturnKindExt kind, boolean allowsFieldFlow, CcCall ccc |
-        fwdFlow(ret, state, ccc, TParamNodeSome(summaryCtx), apSome(argAp), ap, config) and
-        flowThroughOutOfCall(call, ccc, ret, kind, out, allowsFieldFlow, config) and
+        fwdFlow(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc),
+          TParameterPositionSome(pragma[only_bind_into](summaryCtx)), apSome(argAp), ap, config) and
+        flowThroughOutOfCall(call, pragma[only_bind_into](c), ccc, ret, kind, out, allowsFieldFlow,
+          config) and
         (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
-        parameterFlowThroughAllowed(summaryCtx, kind)
+        parameterFlowThroughAllowed(c, pragma[only_bind_into](summaryCtx), kind)
       )
     }
 
@@ -1462,13 +1479,13 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate fwdFlowIsEntered(
-      DataFlowCall call, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, ParamNode p, Ap ap,
-      Configuration config
+      DataFlowCall call, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      ParameterPosition pos, Ap ap, Configuration config
     ) {
       exists(ParamNodeEx param |
         fwdFlowIn(call, param, _, cc, _, summaryCtx, argAp, ap, config) and
         PrevStage::parameterMayFlowThrough(param, unbindApa(getApprox(ap)), config) and
-        p = param.asNode()
+        pos = param.getPosition()
       )
     }
 
@@ -1489,23 +1506,41 @@ private module MkStage<StageSig PrevStage> {
     }
 
     pragma[nomagic]
-    private predicate returnFlowsThrough(
-      RetNodeEx ret, ReturnPosition pos, FlowState state, CcCall ccc, ParamNode p, Ap argAp, Ap ap,
-      Configuration config
+    private predicate returnFlowsThrough0(
+      RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, DataFlowCallable c,
+      ParameterPosition ppos, Ap argAp, Ap ap, Configuration config
     ) {
-      fwdFlow(ret, state, ccc, TParamNodeSome(p), apSome(argAp), ap, config) and
-      pos = ret.getReturnPosition() and
-      parameterFlowThroughAllowed(p, pos.getKind())
+      exists(boolean allowsFieldFlow |
+        fwdFlow(ret, state, ccc, TParameterPositionSome(ppos), apSome(argAp), ap, config) and
+        flowThroughOutOfCall(_, c, _, pragma[only_bind_into](ret), kind, _, allowsFieldFlow,
+          pragma[only_bind_into](config)) and
+        if allowsFieldFlow = false then ap instanceof ApNil else any()
+      )
+    }
+
+    pragma[nomagic]
+    private predicate returnFlowsThrough(
+      RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, ParamNodeEx p, Ap argAp,
+      Ap ap, Configuration config
+    ) {
+      exists(DataFlowCallable c, ParameterPosition ppos |
+        returnFlowsThrough0(ret, kind, state, ccc, c, ppos, argAp, ap, config) and
+        p.isParameterOf(c, ppos) and
+        parameterFlowThroughAllowed(p, kind)
+      )
     }
 
     pragma[nomagic]
     private predicate flowThroughIntoCall(
       DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
     ) {
-      flowIntoCall(call, pragma[only_bind_into](arg), pragma[only_bind_into](p), allowsFieldFlow,
-        pragma[only_bind_into](config)) and
-      fwdFlow(arg, _, _, _, _, _, pragma[only_bind_into](config)) and
-      returnFlowsThrough(_, _, _, _, p.asNode(), _, _, pragma[only_bind_into](config))
+      exists(Ap argAp |
+        flowIntoCall(call, pragma[only_bind_into](arg), pragma[only_bind_into](p), allowsFieldFlow,
+          pragma[only_bind_into](config)) and
+        fwdFlow(arg, _, _, _, _, pragma[only_bind_into](argAp), pragma[only_bind_into](config)) and
+        returnFlowsThrough(_, _, _, _, p, pragma[only_bind_into](argAp), _,
+          pragma[only_bind_into](config))
+      )
     }
 
     /**
@@ -1591,21 +1626,25 @@ private module MkStage<StageSig PrevStage> {
       )
       or
       // flow into a callable
-      revFlowInNotToReturn(node, state, returnAp, ap, config) and
-      returnCtx = TReturnCtxNone()
+      exists(ParamNodeEx p, boolean allowsFieldFlow |
+        revFlow(p, state, TReturnCtxNone(), returnAp, ap, config) and
+        flowIntoCall(_, node, p, allowsFieldFlow, config) and
+        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
+        returnCtx = TReturnCtxNone()
+      )
       or
       // flow through a callable
-      exists(DataFlowCall call, ReturnPosition returnPos0, Ap returnAp0 |
-        revFlowInToReturn(call, node, state, returnPos0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnPos0, returnAp0, config)
+      exists(DataFlowCall call, ReturnKindExt returnKind0, Ap returnAp0 |
+        revFlowInToReturn(call, node, state, returnKind0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
       )
       or
       // flow out of a callable
-      exists(ReturnPosition pos |
-        revFlowOut(_, node, pos, state, _, _, ap, config) and
-        if returnFlowsThrough(node, pos, state, _, _, _, ap, config)
+      exists(ReturnKindExt kind |
+        revFlowOut(_, node, kind, state, _, _, ap, config) and
+        if returnFlowsThrough(node, kind, state, _, _, _, ap, config)
         then (
-          returnCtx = TReturnCtxMaybeFlowThrough(pos) and
+          returnCtx = TReturnCtxMaybeFlowThrough(kind) and
           returnAp = apSome(ap)
         ) else (
           returnCtx = TReturnCtxNoFlowThrough() and returnAp = apNone()
@@ -1638,37 +1677,27 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate revFlowOut(
-      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, FlowState state, ReturnCtx returnCtx,
+      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, FlowState state, ReturnCtx returnCtx,
       ApOption returnAp, Ap ap, Configuration config
     ) {
       exists(NodeEx out, boolean allowsFieldFlow |
         revFlow(out, state, returnCtx, returnAp, ap, config) and
-        flowOutOfCall(call, ret, pos, out, allowsFieldFlow, config) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
-      )
-    }
-
-    pragma[nomagic]
-    private predicate revFlowInNotToReturn(
-      ArgNodeEx arg, FlowState state, ApOption returnAp, Ap ap, Configuration config
-    ) {
-      exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(p, state, TReturnCtxNone(), returnAp, ap, config) and
-        flowIntoCall(_, arg, p, allowsFieldFlow, config) and
+        flowOutOfCall(call, ret, kind, out, allowsFieldFlow, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
     pragma[nomagic]
     private predicate revFlowInToReturn(
-      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnPosition returnPos, Ap returnAp,
-      Ap ap, Configuration config
+      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap,
+      Configuration config
     ) {
       exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(p, state, TReturnCtxMaybeFlowThrough(returnPos), apSome(returnAp), ap, config) and
+        revFlow(pragma[only_bind_into](p), state,
+          TReturnCtxMaybeFlowThrough(pragma[only_bind_into](kind)), apSome(returnAp), ap, config) and
         flowThroughIntoCall(call, arg, p, allowsFieldFlow, config) and
         (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
-        parameterFlowThroughAllowed(p.asNode(), returnPos.getKind())
+        parameterFlowThroughAllowed(p, kind)
       )
     }
 
@@ -1679,12 +1708,12 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate revFlowIsReturned(
-      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnPosition pos, Ap ap,
+      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnKindExt kind, Ap ap,
       Configuration config
     ) {
       exists(RetNodeEx ret, FlowState state, CcCall ccc |
-        revFlowOut(call, ret, pos, state, returnCtx, returnAp, ap, config) and
-        returnFlowsThrough(ret, pos, state, ccc, _, _, ap, config) and
+        revFlowOut(call, ret, kind, state, returnCtx, returnAp, ap, config) and
+        returnFlowsThrough(ret, kind, state, ccc, _, _, ap, config) and
         matchesCall(ccc, call)
       )
     }
@@ -1757,37 +1786,37 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate parameterFlowsThroughRev(
-      ParamNodeEx p, Ap ap, ReturnPosition returnPos, Configuration config
+      ParamNodeEx p, Ap ap, ReturnKindExt kind, Configuration config
     ) {
-      revFlow(p, _, TReturnCtxMaybeFlowThrough(returnPos), apSome(_), ap, config) and
-      parameterFlowThroughAllowed(p.asNode(), returnPos.getKind())
+      revFlow(p, _, TReturnCtxMaybeFlowThrough(kind), apSome(_), ap, config) and
+      parameterFlowThroughAllowed(p, kind)
     }
 
     pragma[nomagic]
     predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
-      exists(RetNodeEx ret, ReturnPosition pos |
-        returnFlowsThrough(ret, pos, _, _, p.asNode(), ap, _, config) and
-        parameterFlowsThroughRev(p, ap, pos, config)
+      exists(RetNodeEx ret, ReturnKindExt kind |
+        returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
+        parameterFlowsThroughRev(p, ap, kind, config)
       )
     }
 
     pragma[nomagic]
-    predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config) {
+    predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config) {
       exists(ParamNodeEx p, Ap ap |
-        returnFlowsThrough(ret, pos, _, _, p.asNode(), ap, _, config) and
-        parameterFlowsThroughRev(p, ap, pos, config)
+        returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
+        parameterFlowsThroughRev(p, ap, kind, config)
       )
     }
 
     pragma[nomagic]
     predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
       exists(
-        ReturnPosition returnPos0, Ap returnAp0, ArgNodeEx arg, FlowState state,
+        ReturnKindExt returnKind0, Ap returnAp0, ArgNodeEx arg, FlowState state,
         ReturnCtx returnCtx, ApOption returnAp, Ap ap
       |
         revFlow(arg, state, returnCtx, returnAp, ap, config) and
-        revFlowInToReturn(call, arg, state, returnPos0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnPos0, returnAp0, config)
+        revFlowInToReturn(call, arg, state, returnKind0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
       )
     }
 
@@ -1800,9 +1829,8 @@ private module MkStage<StageSig PrevStage> {
       conscand = count(TypedContent f0, Ap ap | fwdConsCand(f0, ap, config)) and
       states = count(FlowState state | fwdFlow(_, state, _, _, _, _, config)) and
       tuples =
-        count(NodeEx n, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap |
-          fwdFlow(n, state, cc, summaryCtx, argAp, ap, config)
-        )
+        count(NodeEx n, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+          Ap ap | fwdFlow(n, state, cc, summaryCtx, argAp, ap, config))
       or
       fwd = false and
       nodes = count(NodeEx node | revFlow(node, _, _, _, _, config)) and
@@ -1992,10 +2020,10 @@ private module Stage2 implements StageSig {
 
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand2(
-  DataFlowCall call, RetNodeEx node1, ReturnPosition pos, NodeEx node2, boolean allowsFieldFlow,
+  DataFlowCall call, RetNodeEx node1, ReturnKindExt kind, NodeEx node2, boolean allowsFieldFlow,
   Configuration config
 ) {
-  flowOutOfCallNodeCand1(call, node1, pos, node2, allowsFieldFlow, config) and
+  flowOutOfCallNodeCand1(call, node1, kind, node2, allowsFieldFlow, config) and
   Stage2::revFlow(node2, pragma[only_bind_into](config)) and
   Stage2::revFlowAlias(node1, pragma[only_bind_into](config))
 }
@@ -2511,11 +2539,11 @@ private module Stage4Param implements MkStage<Stage3>::StageParam {
 
   pragma[nomagic]
   predicate flowOutOfCall(
-    DataFlowCall call, RetNodeEx node1, ReturnPosition pos, NodeEx node2, boolean allowsFieldFlow,
+    DataFlowCall call, RetNodeEx node1, ReturnKindExt kind, NodeEx node2, boolean allowsFieldFlow,
     Configuration config
   ) {
     exists(FlowState state |
-      flowOutOfCallNodeCand2(call, node1, pos, node2, allowsFieldFlow, config) and
+      flowOutOfCallNodeCand2(call, node1, kind, node2, allowsFieldFlow, config) and
       PrevStage::revFlow(node2, pragma[only_bind_into](state), _, pragma[only_bind_into](config)) and
       PrevStage::revFlowAlias(node1, pragma[only_bind_into](state), _,
         pragma[only_bind_into](config))
@@ -2552,12 +2580,13 @@ private Configuration unbindConf(Configuration conf) {
 
 pragma[nomagic]
 private predicate nodeMayUseSummary0(
-  NodeEx n, ParamNodeEx p, FlowState state, AccessPathApprox apa, Configuration config
+  NodeEx n, DataFlowCallable c, ParameterPosition pos, FlowState state, AccessPathApprox apa,
+  Configuration config
 ) {
   exists(AccessPathApprox apa0 |
-    Stage4::parameterMayFlowThrough(p, _, _) and
+    c = n.getEnclosingCallable() and
     Stage4::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
-    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TParamNodeSome(p.asNode()),
+    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TParameterPositionSome(pos),
       TAccessPathApproxSome(apa), apa0, config)
   )
 }
@@ -2566,9 +2595,10 @@ pragma[nomagic]
 private predicate nodeMayUseSummary(
   NodeEx n, FlowState state, AccessPathApprox apa, Configuration config
 ) {
-  exists(ParamNodeEx p |
+  exists(DataFlowCallable c, ParameterPosition pos, ParamNodeEx p |
     Stage4::parameterMayFlowThrough(p, apa, config) and
-    nodeMayUseSummary0(n, p, state, apa, config)
+    nodeMayUseSummary0(n, c, pos, state, apa, config) and
+    p.isParameterOf(c, pos)
   )
 }
 
@@ -3501,7 +3531,7 @@ private predicate paramFlowsThrough(
     pathNode(mid, ret, state, cc, sc, ap, config, _) and
     kind = ret.getKind() and
     apa = ap.getApprox() and
-    parameterFlowThroughAllowed(sc.getParamNode().asNode(), kind)
+    parameterFlowThroughAllowed(sc.getParamNode(), kind)
   )
 }
 
diff --git a/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImpl3.qll b/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImpl3.qll
index a52ad110662..e4cfd5986be 100644
--- a/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImpl3.qll
+++ b/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImpl3.qll
@@ -613,11 +613,28 @@ private predicate hasSinkCallCtx(Configuration config) {
  * explicitly allowed
  */
 bindingset[p, kind]
-private predicate parameterFlowThroughAllowed(ParamNode p, ReturnKindExt kind) {
+private predicate parameterFlowThroughAllowed(ParamNodeEx p, ReturnKindExt kind) {
   exists(ParameterPosition pos | p.isParameterOf(_, pos) |
     not kind.(ParamUpdateReturnKind).getPosition() = pos
     or
-    allowParameterReturnInSelfCached(p)
+    allowParameterReturnInSelfCached(p.asNode())
+  )
+}
+
+/**
+ * Holds if flow from a parameter at position `pos` inside `c` to a return node of
+ * kind `kind` is allowed.
+ *
+ * We don't expect a parameter to return stored in itself, unless
+ * explicitly allowed
+ */
+bindingset[c, pos, kind]
+private predicate parameterFlowThroughAllowed(
+  DataFlowCallable c, ParameterPosition pos, ReturnKindExt kind
+) {
+  exists(ParamNodeEx p |
+    p.isParameterOf(c, pos) and
+    parameterFlowThroughAllowed(p, kind)
   )
 }
 
@@ -1000,14 +1017,14 @@ private module Stage1 implements StageSig {
       returnFlowCallableNodeCand(c, kind, config) and
       p.getEnclosingCallable() = c and
       exists(ap) and
-      parameterFlowThroughAllowed(p.asNode(), kind)
+      parameterFlowThroughAllowed(p, kind)
     )
   }
 
   pragma[nomagic]
-  predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config) {
+  predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config) {
     throughFlowNodeCand(ret, config) and
-    pos = ret.getReturnPosition()
+    kind = ret.getKind()
   }
 
   pragma[nomagic]
@@ -1066,13 +1083,16 @@ private predicate viableReturnPosOutNodeCand1(
  */
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand1(
-  DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, Configuration config
+  DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, Configuration config
 ) {
-  viableReturnPosOutNodeCand1(call, pos, out, config) and
-  pos = ret.getReturnPosition() and
-  Stage1::revFlow(ret, config) and
-  not outBarrier(ret, config) and
-  not inBarrier(out, config)
+  exists(ReturnPosition pos |
+    viableReturnPosOutNodeCand1(call, pos, out, config) and
+    pos = ret.getReturnPosition() and
+    kind = pos.getKind() and
+    Stage1::revFlow(ret, config) and
+    not outBarrier(ret, config) and
+    not inBarrier(out, config)
+  )
 }
 
 pragma[nomagic]
@@ -1102,6 +1122,7 @@ private predicate flowIntoCallNodeCand1(
  * edge in the graph of paths between sources and sinks that ignores call
  * contexts.
  */
+pragma[nomagic]
 private int branch(NodeEx n1, Configuration conf) {
   result =
     strictcount(NodeEx n |
@@ -1114,6 +1135,7 @@ private int branch(NodeEx n1, Configuration conf) {
  * edge in the graph of paths between sources and sinks that ignores call
  * contexts.
  */
+pragma[nomagic]
 private int join(NodeEx n2, Configuration conf) {
   result =
     strictcount(NodeEx n |
@@ -1130,10 +1152,10 @@ private int join(NodeEx n2, Configuration conf) {
  */
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand1(
-  DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
+  DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
   Configuration config
 ) {
-  flowOutOfCallNodeCand1(call, ret, pos, out, pragma[only_bind_into](config)) and
+  flowOutOfCallNodeCand1(call, ret, kind, out, pragma[only_bind_into](config)) and
   exists(int b, int j |
     b = branch(ret, pragma[only_bind_into](config)) and
     j = join(out, pragma[only_bind_into](config)) and
@@ -1152,10 +1174,10 @@ pragma[nomagic]
 private predicate flowIntoCallNodeCand1(
   DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
 ) {
-  flowIntoCallNodeCand1(call, arg, p, config) and
+  flowIntoCallNodeCand1(call, arg, p, pragma[only_bind_into](config)) and
   exists(int b, int j |
-    b = branch(arg, config) and
-    j = join(p, config) and
+    b = branch(arg, pragma[only_bind_into](config)) and
+    j = join(p, pragma[only_bind_into](config)) and
     if b.minimum(j) <= config.fieldFlowBranchLimit()
     then allowsFieldFlow = true
     else allowsFieldFlow = false
@@ -1174,7 +1196,7 @@ private signature module StageSig {
 
   predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config);
 
-  predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config);
+  predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config);
 
   predicate storeStepCand(
     NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, DataFlowType contentType,
@@ -1240,7 +1262,7 @@ private module MkStage<StageSig PrevStage> {
     );
 
     predicate flowOutOfCall(
-      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
+      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
       Configuration config
     );
 
@@ -1266,16 +1288,14 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate flowThroughOutOfCall(
-      DataFlowCall call, CcCall ccc, RetNodeEx ret, ReturnKindExt kind, NodeEx out,
-      boolean allowsFieldFlow, Configuration config
+      DataFlowCall call, DataFlowCallable c, CcCall ccc, RetNodeEx ret, ReturnKindExt kind,
+      NodeEx out, boolean allowsFieldFlow, Configuration config
     ) {
-      exists(ReturnPosition pos |
-        flowOutOfCall(call, ret, pos, out, allowsFieldFlow, pragma[only_bind_into](config)) and
-        kind = pos.getKind() and
-        PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
-        PrevStage::returnMayFlowThrough(ret, pos, pragma[only_bind_into](config)) and
-        matchesCall(ccc, call)
-      )
+      flowOutOfCall(call, ret, kind, out, allowsFieldFlow, pragma[only_bind_into](config)) and
+      PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
+      PrevStage::returnMayFlowThrough(ret, kind, pragma[only_bind_into](config)) and
+      matchesCall(ccc, call) and
+      c = ret.getEnclosingCallable()
     }
 
     /**
@@ -1284,12 +1304,12 @@ private module MkStage<StageSig PrevStage> {
      *
      * The call context `cc` records whether the node is reached through an
      * argument in a call, and if so, `summaryCtx` and `argAp` record the
-     * corresponding parameter and access path of that argument, respectively.
+     * corresponding parameter position and access path of that argument, respectively.
      */
     pragma[nomagic]
     additional predicate fwdFlow(
-      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
-      Configuration config
+      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      Ap ap, Configuration config
     ) {
       fwdFlow0(node, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::revFlow(node, state, unbindApa(getApprox(ap)), config) and
@@ -1298,13 +1318,13 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlow0(
-      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
-      Configuration config
+      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      Ap ap, Configuration config
     ) {
       sourceNode(node, state, config) and
       (if hasSourceCallCtx(config) then cc = ccSomeCall() else cc = ccNone()) and
       argAp = apNone() and
-      summaryCtx = TParamNodeNone() and
+      summaryCtx = TParameterPositionNone() and
       ap = getApNil(node)
       or
       exists(NodeEx mid, FlowState state0, Ap ap0, LocalCc localCc |
@@ -1322,7 +1342,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, pragma[only_bind_into](config)) and
         jumpStep(mid, node, config) and
         cc = ccNone() and
-        summaryCtx = TParamNodeNone() and
+        summaryCtx = TParameterPositionNone() and
         argAp = apNone()
       )
       or
@@ -1330,7 +1350,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, state, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStep(mid, node, config) and
         cc = ccNone() and
-        summaryCtx = TParamNodeNone() and
+        summaryCtx = TParameterPositionNone() and
         argAp = apNone() and
         ap = getApNil(node)
       )
@@ -1339,7 +1359,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, state0, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStateStep(mid, state0, node, state, config) and
         cc = ccNone() and
-        summaryCtx = TParamNodeNone() and
+        summaryCtx = TParameterPositionNone() and
         argAp = apNone() and
         ap = getApNil(node)
       )
@@ -1362,17 +1382,27 @@ private module MkStage<StageSig PrevStage> {
         apa = getApprox(ap) and
         if PrevStage::parameterMayFlowThrough(node, apa, config)
         then (
-          summaryCtx = TParamNodeSome(node.asNode()) and argAp = apSome(ap)
+          summaryCtx = TParameterPositionSome(node.(ParamNodeEx).getPosition()) and
+          argAp = apSome(ap)
         ) else (
-          summaryCtx = TParamNodeNone() and argAp = apNone()
+          summaryCtx = TParameterPositionNone() and argAp = apNone()
         )
       )
       or
       // flow out of a callable
-      fwdFlowOutNotFromArg(node, state, cc, summaryCtx, argAp, ap, config)
+      exists(
+        DataFlowCall call, RetNodeEx ret, boolean allowsFieldFlow, CcNoCall innercc,
+        DataFlowCallable inner
+      |
+        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, config) and
+        flowOutOfCall(call, ret, _, node, allowsFieldFlow, config) and
+        inner = ret.getEnclosingCallable() and
+        cc = getCallContextReturn(inner, call, innercc) and
+        if allowsFieldFlow = false then ap instanceof ApNil else any()
+      )
       or
       // flow through a callable
-      exists(DataFlowCall call, ParamNode summaryCtx0, Ap argAp0 |
+      exists(DataFlowCall call, ParameterPosition summaryCtx0, Ap argAp0 |
         fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, config) and
         fwdFlowIsEntered(call, cc, summaryCtx, argAp, summaryCtx0, argAp0, config)
       )
@@ -1381,7 +1411,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowStore(
       NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc,
-      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
+      ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
     ) {
       exists(DataFlowType contentType |
         fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, config) and
@@ -1406,7 +1436,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowRead(
       Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc,
-      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
+      ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
     ) {
       fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, c, node2, config) and
@@ -1416,7 +1446,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowIn(
       DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, Cc innercc,
-      ParamNodeOption summaryCtx, ApOption argAp, Ap ap, Configuration config
+      ParameterPositionOption summaryCtx, ApOption argAp, Ap ap, Configuration config
     ) {
       exists(ArgNodeEx arg, boolean allowsFieldFlow |
         fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, config) and
@@ -1427,32 +1457,19 @@ private module MkStage<StageSig PrevStage> {
     }
 
     pragma[nomagic]
-    private predicate fwdFlowOutNotFromArg(
-      NodeEx out, FlowState state, Cc ccOut, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+    private predicate fwdFlowOutFromArg(
+      DataFlowCall call, NodeEx out, FlowState state, ParameterPosition summaryCtx, Ap argAp, Ap ap,
       Configuration config
     ) {
       exists(
-        DataFlowCall call, RetNodeEx ret, boolean allowsFieldFlow, CcNoCall innercc,
-        DataFlowCallable inner
+        DataFlowCallable c, RetNodeEx ret, ReturnKindExt kind, boolean allowsFieldFlow, CcCall ccc
       |
-        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, config) and
-        flowOutOfCall(call, ret, _, out, allowsFieldFlow, config) and
-        inner = ret.getEnclosingCallable() and
-        ccOut = getCallContextReturn(inner, call, innercc) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
-      )
-    }
-
-    pragma[nomagic]
-    private predicate fwdFlowOutFromArg(
-      DataFlowCall call, NodeEx out, FlowState state, ParamNode summaryCtx, Ap argAp, Ap ap,
-      Configuration config
-    ) {
-      exists(RetNodeEx ret, ReturnKindExt kind, boolean allowsFieldFlow, CcCall ccc |
-        fwdFlow(ret, state, ccc, TParamNodeSome(summaryCtx), apSome(argAp), ap, config) and
-        flowThroughOutOfCall(call, ccc, ret, kind, out, allowsFieldFlow, config) and
+        fwdFlow(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc),
+          TParameterPositionSome(pragma[only_bind_into](summaryCtx)), apSome(argAp), ap, config) and
+        flowThroughOutOfCall(call, pragma[only_bind_into](c), ccc, ret, kind, out, allowsFieldFlow,
+          config) and
         (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
-        parameterFlowThroughAllowed(summaryCtx, kind)
+        parameterFlowThroughAllowed(c, pragma[only_bind_into](summaryCtx), kind)
       )
     }
 
@@ -1462,13 +1479,13 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate fwdFlowIsEntered(
-      DataFlowCall call, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, ParamNode p, Ap ap,
-      Configuration config
+      DataFlowCall call, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      ParameterPosition pos, Ap ap, Configuration config
     ) {
       exists(ParamNodeEx param |
         fwdFlowIn(call, param, _, cc, _, summaryCtx, argAp, ap, config) and
         PrevStage::parameterMayFlowThrough(param, unbindApa(getApprox(ap)), config) and
-        p = param.asNode()
+        pos = param.getPosition()
       )
     }
 
@@ -1489,23 +1506,41 @@ private module MkStage<StageSig PrevStage> {
     }
 
     pragma[nomagic]
-    private predicate returnFlowsThrough(
-      RetNodeEx ret, ReturnPosition pos, FlowState state, CcCall ccc, ParamNode p, Ap argAp, Ap ap,
-      Configuration config
+    private predicate returnFlowsThrough0(
+      RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, DataFlowCallable c,
+      ParameterPosition ppos, Ap argAp, Ap ap, Configuration config
     ) {
-      fwdFlow(ret, state, ccc, TParamNodeSome(p), apSome(argAp), ap, config) and
-      pos = ret.getReturnPosition() and
-      parameterFlowThroughAllowed(p, pos.getKind())
+      exists(boolean allowsFieldFlow |
+        fwdFlow(ret, state, ccc, TParameterPositionSome(ppos), apSome(argAp), ap, config) and
+        flowThroughOutOfCall(_, c, _, pragma[only_bind_into](ret), kind, _, allowsFieldFlow,
+          pragma[only_bind_into](config)) and
+        if allowsFieldFlow = false then ap instanceof ApNil else any()
+      )
+    }
+
+    pragma[nomagic]
+    private predicate returnFlowsThrough(
+      RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, ParamNodeEx p, Ap argAp,
+      Ap ap, Configuration config
+    ) {
+      exists(DataFlowCallable c, ParameterPosition ppos |
+        returnFlowsThrough0(ret, kind, state, ccc, c, ppos, argAp, ap, config) and
+        p.isParameterOf(c, ppos) and
+        parameterFlowThroughAllowed(p, kind)
+      )
     }
 
     pragma[nomagic]
     private predicate flowThroughIntoCall(
       DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
     ) {
-      flowIntoCall(call, pragma[only_bind_into](arg), pragma[only_bind_into](p), allowsFieldFlow,
-        pragma[only_bind_into](config)) and
-      fwdFlow(arg, _, _, _, _, _, pragma[only_bind_into](config)) and
-      returnFlowsThrough(_, _, _, _, p.asNode(), _, _, pragma[only_bind_into](config))
+      exists(Ap argAp |
+        flowIntoCall(call, pragma[only_bind_into](arg), pragma[only_bind_into](p), allowsFieldFlow,
+          pragma[only_bind_into](config)) and
+        fwdFlow(arg, _, _, _, _, pragma[only_bind_into](argAp), pragma[only_bind_into](config)) and
+        returnFlowsThrough(_, _, _, _, p, pragma[only_bind_into](argAp), _,
+          pragma[only_bind_into](config))
+      )
     }
 
     /**
@@ -1591,21 +1626,25 @@ private module MkStage<StageSig PrevStage> {
       )
       or
       // flow into a callable
-      revFlowInNotToReturn(node, state, returnAp, ap, config) and
-      returnCtx = TReturnCtxNone()
+      exists(ParamNodeEx p, boolean allowsFieldFlow |
+        revFlow(p, state, TReturnCtxNone(), returnAp, ap, config) and
+        flowIntoCall(_, node, p, allowsFieldFlow, config) and
+        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
+        returnCtx = TReturnCtxNone()
+      )
       or
       // flow through a callable
-      exists(DataFlowCall call, ReturnPosition returnPos0, Ap returnAp0 |
-        revFlowInToReturn(call, node, state, returnPos0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnPos0, returnAp0, config)
+      exists(DataFlowCall call, ReturnKindExt returnKind0, Ap returnAp0 |
+        revFlowInToReturn(call, node, state, returnKind0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
       )
       or
       // flow out of a callable
-      exists(ReturnPosition pos |
-        revFlowOut(_, node, pos, state, _, _, ap, config) and
-        if returnFlowsThrough(node, pos, state, _, _, _, ap, config)
+      exists(ReturnKindExt kind |
+        revFlowOut(_, node, kind, state, _, _, ap, config) and
+        if returnFlowsThrough(node, kind, state, _, _, _, ap, config)
         then (
-          returnCtx = TReturnCtxMaybeFlowThrough(pos) and
+          returnCtx = TReturnCtxMaybeFlowThrough(kind) and
           returnAp = apSome(ap)
         ) else (
           returnCtx = TReturnCtxNoFlowThrough() and returnAp = apNone()
@@ -1638,37 +1677,27 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate revFlowOut(
-      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, FlowState state, ReturnCtx returnCtx,
+      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, FlowState state, ReturnCtx returnCtx,
       ApOption returnAp, Ap ap, Configuration config
     ) {
       exists(NodeEx out, boolean allowsFieldFlow |
         revFlow(out, state, returnCtx, returnAp, ap, config) and
-        flowOutOfCall(call, ret, pos, out, allowsFieldFlow, config) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
-      )
-    }
-
-    pragma[nomagic]
-    private predicate revFlowInNotToReturn(
-      ArgNodeEx arg, FlowState state, ApOption returnAp, Ap ap, Configuration config
-    ) {
-      exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(p, state, TReturnCtxNone(), returnAp, ap, config) and
-        flowIntoCall(_, arg, p, allowsFieldFlow, config) and
+        flowOutOfCall(call, ret, kind, out, allowsFieldFlow, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
     pragma[nomagic]
     private predicate revFlowInToReturn(
-      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnPosition returnPos, Ap returnAp,
-      Ap ap, Configuration config
+      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap,
+      Configuration config
     ) {
       exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(p, state, TReturnCtxMaybeFlowThrough(returnPos), apSome(returnAp), ap, config) and
+        revFlow(pragma[only_bind_into](p), state,
+          TReturnCtxMaybeFlowThrough(pragma[only_bind_into](kind)), apSome(returnAp), ap, config) and
         flowThroughIntoCall(call, arg, p, allowsFieldFlow, config) and
         (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
-        parameterFlowThroughAllowed(p.asNode(), returnPos.getKind())
+        parameterFlowThroughAllowed(p, kind)
       )
     }
 
@@ -1679,12 +1708,12 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate revFlowIsReturned(
-      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnPosition pos, Ap ap,
+      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnKindExt kind, Ap ap,
       Configuration config
     ) {
       exists(RetNodeEx ret, FlowState state, CcCall ccc |
-        revFlowOut(call, ret, pos, state, returnCtx, returnAp, ap, config) and
-        returnFlowsThrough(ret, pos, state, ccc, _, _, ap, config) and
+        revFlowOut(call, ret, kind, state, returnCtx, returnAp, ap, config) and
+        returnFlowsThrough(ret, kind, state, ccc, _, _, ap, config) and
         matchesCall(ccc, call)
       )
     }
@@ -1757,37 +1786,37 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate parameterFlowsThroughRev(
-      ParamNodeEx p, Ap ap, ReturnPosition returnPos, Configuration config
+      ParamNodeEx p, Ap ap, ReturnKindExt kind, Configuration config
     ) {
-      revFlow(p, _, TReturnCtxMaybeFlowThrough(returnPos), apSome(_), ap, config) and
-      parameterFlowThroughAllowed(p.asNode(), returnPos.getKind())
+      revFlow(p, _, TReturnCtxMaybeFlowThrough(kind), apSome(_), ap, config) and
+      parameterFlowThroughAllowed(p, kind)
     }
 
     pragma[nomagic]
     predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
-      exists(RetNodeEx ret, ReturnPosition pos |
-        returnFlowsThrough(ret, pos, _, _, p.asNode(), ap, _, config) and
-        parameterFlowsThroughRev(p, ap, pos, config)
+      exists(RetNodeEx ret, ReturnKindExt kind |
+        returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
+        parameterFlowsThroughRev(p, ap, kind, config)
       )
     }
 
     pragma[nomagic]
-    predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config) {
+    predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config) {
       exists(ParamNodeEx p, Ap ap |
-        returnFlowsThrough(ret, pos, _, _, p.asNode(), ap, _, config) and
-        parameterFlowsThroughRev(p, ap, pos, config)
+        returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
+        parameterFlowsThroughRev(p, ap, kind, config)
       )
     }
 
     pragma[nomagic]
     predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
       exists(
-        ReturnPosition returnPos0, Ap returnAp0, ArgNodeEx arg, FlowState state,
+        ReturnKindExt returnKind0, Ap returnAp0, ArgNodeEx arg, FlowState state,
         ReturnCtx returnCtx, ApOption returnAp, Ap ap
       |
         revFlow(arg, state, returnCtx, returnAp, ap, config) and
-        revFlowInToReturn(call, arg, state, returnPos0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnPos0, returnAp0, config)
+        revFlowInToReturn(call, arg, state, returnKind0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
       )
     }
 
@@ -1800,9 +1829,8 @@ private module MkStage<StageSig PrevStage> {
       conscand = count(TypedContent f0, Ap ap | fwdConsCand(f0, ap, config)) and
       states = count(FlowState state | fwdFlow(_, state, _, _, _, _, config)) and
       tuples =
-        count(NodeEx n, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap |
-          fwdFlow(n, state, cc, summaryCtx, argAp, ap, config)
-        )
+        count(NodeEx n, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+          Ap ap | fwdFlow(n, state, cc, summaryCtx, argAp, ap, config))
       or
       fwd = false and
       nodes = count(NodeEx node | revFlow(node, _, _, _, _, config)) and
@@ -1992,10 +2020,10 @@ private module Stage2 implements StageSig {
 
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand2(
-  DataFlowCall call, RetNodeEx node1, ReturnPosition pos, NodeEx node2, boolean allowsFieldFlow,
+  DataFlowCall call, RetNodeEx node1, ReturnKindExt kind, NodeEx node2, boolean allowsFieldFlow,
   Configuration config
 ) {
-  flowOutOfCallNodeCand1(call, node1, pos, node2, allowsFieldFlow, config) and
+  flowOutOfCallNodeCand1(call, node1, kind, node2, allowsFieldFlow, config) and
   Stage2::revFlow(node2, pragma[only_bind_into](config)) and
   Stage2::revFlowAlias(node1, pragma[only_bind_into](config))
 }
@@ -2511,11 +2539,11 @@ private module Stage4Param implements MkStage<Stage3>::StageParam {
 
   pragma[nomagic]
   predicate flowOutOfCall(
-    DataFlowCall call, RetNodeEx node1, ReturnPosition pos, NodeEx node2, boolean allowsFieldFlow,
+    DataFlowCall call, RetNodeEx node1, ReturnKindExt kind, NodeEx node2, boolean allowsFieldFlow,
     Configuration config
   ) {
     exists(FlowState state |
-      flowOutOfCallNodeCand2(call, node1, pos, node2, allowsFieldFlow, config) and
+      flowOutOfCallNodeCand2(call, node1, kind, node2, allowsFieldFlow, config) and
       PrevStage::revFlow(node2, pragma[only_bind_into](state), _, pragma[only_bind_into](config)) and
       PrevStage::revFlowAlias(node1, pragma[only_bind_into](state), _,
         pragma[only_bind_into](config))
@@ -2552,12 +2580,13 @@ private Configuration unbindConf(Configuration conf) {
 
 pragma[nomagic]
 private predicate nodeMayUseSummary0(
-  NodeEx n, ParamNodeEx p, FlowState state, AccessPathApprox apa, Configuration config
+  NodeEx n, DataFlowCallable c, ParameterPosition pos, FlowState state, AccessPathApprox apa,
+  Configuration config
 ) {
   exists(AccessPathApprox apa0 |
-    Stage4::parameterMayFlowThrough(p, _, _) and
+    c = n.getEnclosingCallable() and
     Stage4::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
-    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TParamNodeSome(p.asNode()),
+    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TParameterPositionSome(pos),
       TAccessPathApproxSome(apa), apa0, config)
   )
 }
@@ -2566,9 +2595,10 @@ pragma[nomagic]
 private predicate nodeMayUseSummary(
   NodeEx n, FlowState state, AccessPathApprox apa, Configuration config
 ) {
-  exists(ParamNodeEx p |
+  exists(DataFlowCallable c, ParameterPosition pos, ParamNodeEx p |
     Stage4::parameterMayFlowThrough(p, apa, config) and
-    nodeMayUseSummary0(n, p, state, apa, config)
+    nodeMayUseSummary0(n, c, pos, state, apa, config) and
+    p.isParameterOf(c, pos)
   )
 }
 
@@ -3501,7 +3531,7 @@ private predicate paramFlowsThrough(
     pathNode(mid, ret, state, cc, sc, ap, config, _) and
     kind = ret.getKind() and
     apa = ap.getApprox() and
-    parameterFlowThroughAllowed(sc.getParamNode().asNode(), kind)
+    parameterFlowThroughAllowed(sc.getParamNode(), kind)
   )
 }
 
diff --git a/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImpl4.qll b/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImpl4.qll
index a52ad110662..e4cfd5986be 100644
--- a/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImpl4.qll
+++ b/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImpl4.qll
@@ -613,11 +613,28 @@ private predicate hasSinkCallCtx(Configuration config) {
  * explicitly allowed
  */
 bindingset[p, kind]
-private predicate parameterFlowThroughAllowed(ParamNode p, ReturnKindExt kind) {
+private predicate parameterFlowThroughAllowed(ParamNodeEx p, ReturnKindExt kind) {
   exists(ParameterPosition pos | p.isParameterOf(_, pos) |
     not kind.(ParamUpdateReturnKind).getPosition() = pos
     or
-    allowParameterReturnInSelfCached(p)
+    allowParameterReturnInSelfCached(p.asNode())
+  )
+}
+
+/**
+ * Holds if flow from a parameter at position `pos` inside `c` to a return node of
+ * kind `kind` is allowed.
+ *
+ * We don't expect a parameter to return stored in itself, unless
+ * explicitly allowed
+ */
+bindingset[c, pos, kind]
+private predicate parameterFlowThroughAllowed(
+  DataFlowCallable c, ParameterPosition pos, ReturnKindExt kind
+) {
+  exists(ParamNodeEx p |
+    p.isParameterOf(c, pos) and
+    parameterFlowThroughAllowed(p, kind)
   )
 }
 
@@ -1000,14 +1017,14 @@ private module Stage1 implements StageSig {
       returnFlowCallableNodeCand(c, kind, config) and
       p.getEnclosingCallable() = c and
       exists(ap) and
-      parameterFlowThroughAllowed(p.asNode(), kind)
+      parameterFlowThroughAllowed(p, kind)
     )
   }
 
   pragma[nomagic]
-  predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config) {
+  predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config) {
     throughFlowNodeCand(ret, config) and
-    pos = ret.getReturnPosition()
+    kind = ret.getKind()
   }
 
   pragma[nomagic]
@@ -1066,13 +1083,16 @@ private predicate viableReturnPosOutNodeCand1(
  */
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand1(
-  DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, Configuration config
+  DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, Configuration config
 ) {
-  viableReturnPosOutNodeCand1(call, pos, out, config) and
-  pos = ret.getReturnPosition() and
-  Stage1::revFlow(ret, config) and
-  not outBarrier(ret, config) and
-  not inBarrier(out, config)
+  exists(ReturnPosition pos |
+    viableReturnPosOutNodeCand1(call, pos, out, config) and
+    pos = ret.getReturnPosition() and
+    kind = pos.getKind() and
+    Stage1::revFlow(ret, config) and
+    not outBarrier(ret, config) and
+    not inBarrier(out, config)
+  )
 }
 
 pragma[nomagic]
@@ -1102,6 +1122,7 @@ private predicate flowIntoCallNodeCand1(
  * edge in the graph of paths between sources and sinks that ignores call
  * contexts.
  */
+pragma[nomagic]
 private int branch(NodeEx n1, Configuration conf) {
   result =
     strictcount(NodeEx n |
@@ -1114,6 +1135,7 @@ private int branch(NodeEx n1, Configuration conf) {
  * edge in the graph of paths between sources and sinks that ignores call
  * contexts.
  */
+pragma[nomagic]
 private int join(NodeEx n2, Configuration conf) {
   result =
     strictcount(NodeEx n |
@@ -1130,10 +1152,10 @@ private int join(NodeEx n2, Configuration conf) {
  */
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand1(
-  DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
+  DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
   Configuration config
 ) {
-  flowOutOfCallNodeCand1(call, ret, pos, out, pragma[only_bind_into](config)) and
+  flowOutOfCallNodeCand1(call, ret, kind, out, pragma[only_bind_into](config)) and
   exists(int b, int j |
     b = branch(ret, pragma[only_bind_into](config)) and
     j = join(out, pragma[only_bind_into](config)) and
@@ -1152,10 +1174,10 @@ pragma[nomagic]
 private predicate flowIntoCallNodeCand1(
   DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
 ) {
-  flowIntoCallNodeCand1(call, arg, p, config) and
+  flowIntoCallNodeCand1(call, arg, p, pragma[only_bind_into](config)) and
   exists(int b, int j |
-    b = branch(arg, config) and
-    j = join(p, config) and
+    b = branch(arg, pragma[only_bind_into](config)) and
+    j = join(p, pragma[only_bind_into](config)) and
     if b.minimum(j) <= config.fieldFlowBranchLimit()
     then allowsFieldFlow = true
     else allowsFieldFlow = false
@@ -1174,7 +1196,7 @@ private signature module StageSig {
 
   predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config);
 
-  predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config);
+  predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config);
 
   predicate storeStepCand(
     NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, DataFlowType contentType,
@@ -1240,7 +1262,7 @@ private module MkStage<StageSig PrevStage> {
     );
 
     predicate flowOutOfCall(
-      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
+      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
       Configuration config
     );
 
@@ -1266,16 +1288,14 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate flowThroughOutOfCall(
-      DataFlowCall call, CcCall ccc, RetNodeEx ret, ReturnKindExt kind, NodeEx out,
-      boolean allowsFieldFlow, Configuration config
+      DataFlowCall call, DataFlowCallable c, CcCall ccc, RetNodeEx ret, ReturnKindExt kind,
+      NodeEx out, boolean allowsFieldFlow, Configuration config
     ) {
-      exists(ReturnPosition pos |
-        flowOutOfCall(call, ret, pos, out, allowsFieldFlow, pragma[only_bind_into](config)) and
-        kind = pos.getKind() and
-        PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
-        PrevStage::returnMayFlowThrough(ret, pos, pragma[only_bind_into](config)) and
-        matchesCall(ccc, call)
-      )
+      flowOutOfCall(call, ret, kind, out, allowsFieldFlow, pragma[only_bind_into](config)) and
+      PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
+      PrevStage::returnMayFlowThrough(ret, kind, pragma[only_bind_into](config)) and
+      matchesCall(ccc, call) and
+      c = ret.getEnclosingCallable()
     }
 
     /**
@@ -1284,12 +1304,12 @@ private module MkStage<StageSig PrevStage> {
      *
      * The call context `cc` records whether the node is reached through an
      * argument in a call, and if so, `summaryCtx` and `argAp` record the
-     * corresponding parameter and access path of that argument, respectively.
+     * corresponding parameter position and access path of that argument, respectively.
      */
     pragma[nomagic]
     additional predicate fwdFlow(
-      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
-      Configuration config
+      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      Ap ap, Configuration config
     ) {
       fwdFlow0(node, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::revFlow(node, state, unbindApa(getApprox(ap)), config) and
@@ -1298,13 +1318,13 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlow0(
-      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
-      Configuration config
+      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      Ap ap, Configuration config
     ) {
       sourceNode(node, state, config) and
       (if hasSourceCallCtx(config) then cc = ccSomeCall() else cc = ccNone()) and
       argAp = apNone() and
-      summaryCtx = TParamNodeNone() and
+      summaryCtx = TParameterPositionNone() and
       ap = getApNil(node)
       or
       exists(NodeEx mid, FlowState state0, Ap ap0, LocalCc localCc |
@@ -1322,7 +1342,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, pragma[only_bind_into](config)) and
         jumpStep(mid, node, config) and
         cc = ccNone() and
-        summaryCtx = TParamNodeNone() and
+        summaryCtx = TParameterPositionNone() and
         argAp = apNone()
       )
       or
@@ -1330,7 +1350,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, state, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStep(mid, node, config) and
         cc = ccNone() and
-        summaryCtx = TParamNodeNone() and
+        summaryCtx = TParameterPositionNone() and
         argAp = apNone() and
         ap = getApNil(node)
       )
@@ -1339,7 +1359,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, state0, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStateStep(mid, state0, node, state, config) and
         cc = ccNone() and
-        summaryCtx = TParamNodeNone() and
+        summaryCtx = TParameterPositionNone() and
         argAp = apNone() and
         ap = getApNil(node)
       )
@@ -1362,17 +1382,27 @@ private module MkStage<StageSig PrevStage> {
         apa = getApprox(ap) and
         if PrevStage::parameterMayFlowThrough(node, apa, config)
         then (
-          summaryCtx = TParamNodeSome(node.asNode()) and argAp = apSome(ap)
+          summaryCtx = TParameterPositionSome(node.(ParamNodeEx).getPosition()) and
+          argAp = apSome(ap)
         ) else (
-          summaryCtx = TParamNodeNone() and argAp = apNone()
+          summaryCtx = TParameterPositionNone() and argAp = apNone()
         )
       )
       or
       // flow out of a callable
-      fwdFlowOutNotFromArg(node, state, cc, summaryCtx, argAp, ap, config)
+      exists(
+        DataFlowCall call, RetNodeEx ret, boolean allowsFieldFlow, CcNoCall innercc,
+        DataFlowCallable inner
+      |
+        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, config) and
+        flowOutOfCall(call, ret, _, node, allowsFieldFlow, config) and
+        inner = ret.getEnclosingCallable() and
+        cc = getCallContextReturn(inner, call, innercc) and
+        if allowsFieldFlow = false then ap instanceof ApNil else any()
+      )
       or
       // flow through a callable
-      exists(DataFlowCall call, ParamNode summaryCtx0, Ap argAp0 |
+      exists(DataFlowCall call, ParameterPosition summaryCtx0, Ap argAp0 |
         fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, config) and
         fwdFlowIsEntered(call, cc, summaryCtx, argAp, summaryCtx0, argAp0, config)
       )
@@ -1381,7 +1411,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowStore(
       NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc,
-      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
+      ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
     ) {
       exists(DataFlowType contentType |
         fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, config) and
@@ -1406,7 +1436,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowRead(
       Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc,
-      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
+      ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
     ) {
       fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, c, node2, config) and
@@ -1416,7 +1446,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowIn(
       DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, Cc innercc,
-      ParamNodeOption summaryCtx, ApOption argAp, Ap ap, Configuration config
+      ParameterPositionOption summaryCtx, ApOption argAp, Ap ap, Configuration config
     ) {
       exists(ArgNodeEx arg, boolean allowsFieldFlow |
         fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, config) and
@@ -1427,32 +1457,19 @@ private module MkStage<StageSig PrevStage> {
     }
 
     pragma[nomagic]
-    private predicate fwdFlowOutNotFromArg(
-      NodeEx out, FlowState state, Cc ccOut, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+    private predicate fwdFlowOutFromArg(
+      DataFlowCall call, NodeEx out, FlowState state, ParameterPosition summaryCtx, Ap argAp, Ap ap,
       Configuration config
     ) {
       exists(
-        DataFlowCall call, RetNodeEx ret, boolean allowsFieldFlow, CcNoCall innercc,
-        DataFlowCallable inner
+        DataFlowCallable c, RetNodeEx ret, ReturnKindExt kind, boolean allowsFieldFlow, CcCall ccc
       |
-        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, config) and
-        flowOutOfCall(call, ret, _, out, allowsFieldFlow, config) and
-        inner = ret.getEnclosingCallable() and
-        ccOut = getCallContextReturn(inner, call, innercc) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
-      )
-    }
-
-    pragma[nomagic]
-    private predicate fwdFlowOutFromArg(
-      DataFlowCall call, NodeEx out, FlowState state, ParamNode summaryCtx, Ap argAp, Ap ap,
-      Configuration config
-    ) {
-      exists(RetNodeEx ret, ReturnKindExt kind, boolean allowsFieldFlow, CcCall ccc |
-        fwdFlow(ret, state, ccc, TParamNodeSome(summaryCtx), apSome(argAp), ap, config) and
-        flowThroughOutOfCall(call, ccc, ret, kind, out, allowsFieldFlow, config) and
+        fwdFlow(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc),
+          TParameterPositionSome(pragma[only_bind_into](summaryCtx)), apSome(argAp), ap, config) and
+        flowThroughOutOfCall(call, pragma[only_bind_into](c), ccc, ret, kind, out, allowsFieldFlow,
+          config) and
         (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
-        parameterFlowThroughAllowed(summaryCtx, kind)
+        parameterFlowThroughAllowed(c, pragma[only_bind_into](summaryCtx), kind)
       )
     }
 
@@ -1462,13 +1479,13 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate fwdFlowIsEntered(
-      DataFlowCall call, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, ParamNode p, Ap ap,
-      Configuration config
+      DataFlowCall call, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      ParameterPosition pos, Ap ap, Configuration config
     ) {
       exists(ParamNodeEx param |
         fwdFlowIn(call, param, _, cc, _, summaryCtx, argAp, ap, config) and
         PrevStage::parameterMayFlowThrough(param, unbindApa(getApprox(ap)), config) and
-        p = param.asNode()
+        pos = param.getPosition()
       )
     }
 
@@ -1489,23 +1506,41 @@ private module MkStage<StageSig PrevStage> {
     }
 
     pragma[nomagic]
-    private predicate returnFlowsThrough(
-      RetNodeEx ret, ReturnPosition pos, FlowState state, CcCall ccc, ParamNode p, Ap argAp, Ap ap,
-      Configuration config
+    private predicate returnFlowsThrough0(
+      RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, DataFlowCallable c,
+      ParameterPosition ppos, Ap argAp, Ap ap, Configuration config
     ) {
-      fwdFlow(ret, state, ccc, TParamNodeSome(p), apSome(argAp), ap, config) and
-      pos = ret.getReturnPosition() and
-      parameterFlowThroughAllowed(p, pos.getKind())
+      exists(boolean allowsFieldFlow |
+        fwdFlow(ret, state, ccc, TParameterPositionSome(ppos), apSome(argAp), ap, config) and
+        flowThroughOutOfCall(_, c, _, pragma[only_bind_into](ret), kind, _, allowsFieldFlow,
+          pragma[only_bind_into](config)) and
+        if allowsFieldFlow = false then ap instanceof ApNil else any()
+      )
+    }
+
+    pragma[nomagic]
+    private predicate returnFlowsThrough(
+      RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, ParamNodeEx p, Ap argAp,
+      Ap ap, Configuration config
+    ) {
+      exists(DataFlowCallable c, ParameterPosition ppos |
+        returnFlowsThrough0(ret, kind, state, ccc, c, ppos, argAp, ap, config) and
+        p.isParameterOf(c, ppos) and
+        parameterFlowThroughAllowed(p, kind)
+      )
     }
 
     pragma[nomagic]
     private predicate flowThroughIntoCall(
       DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
     ) {
-      flowIntoCall(call, pragma[only_bind_into](arg), pragma[only_bind_into](p), allowsFieldFlow,
-        pragma[only_bind_into](config)) and
-      fwdFlow(arg, _, _, _, _, _, pragma[only_bind_into](config)) and
-      returnFlowsThrough(_, _, _, _, p.asNode(), _, _, pragma[only_bind_into](config))
+      exists(Ap argAp |
+        flowIntoCall(call, pragma[only_bind_into](arg), pragma[only_bind_into](p), allowsFieldFlow,
+          pragma[only_bind_into](config)) and
+        fwdFlow(arg, _, _, _, _, pragma[only_bind_into](argAp), pragma[only_bind_into](config)) and
+        returnFlowsThrough(_, _, _, _, p, pragma[only_bind_into](argAp), _,
+          pragma[only_bind_into](config))
+      )
     }
 
     /**
@@ -1591,21 +1626,25 @@ private module MkStage<StageSig PrevStage> {
       )
       or
       // flow into a callable
-      revFlowInNotToReturn(node, state, returnAp, ap, config) and
-      returnCtx = TReturnCtxNone()
+      exists(ParamNodeEx p, boolean allowsFieldFlow |
+        revFlow(p, state, TReturnCtxNone(), returnAp, ap, config) and
+        flowIntoCall(_, node, p, allowsFieldFlow, config) and
+        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
+        returnCtx = TReturnCtxNone()
+      )
       or
       // flow through a callable
-      exists(DataFlowCall call, ReturnPosition returnPos0, Ap returnAp0 |
-        revFlowInToReturn(call, node, state, returnPos0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnPos0, returnAp0, config)
+      exists(DataFlowCall call, ReturnKindExt returnKind0, Ap returnAp0 |
+        revFlowInToReturn(call, node, state, returnKind0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
       )
       or
       // flow out of a callable
-      exists(ReturnPosition pos |
-        revFlowOut(_, node, pos, state, _, _, ap, config) and
-        if returnFlowsThrough(node, pos, state, _, _, _, ap, config)
+      exists(ReturnKindExt kind |
+        revFlowOut(_, node, kind, state, _, _, ap, config) and
+        if returnFlowsThrough(node, kind, state, _, _, _, ap, config)
         then (
-          returnCtx = TReturnCtxMaybeFlowThrough(pos) and
+          returnCtx = TReturnCtxMaybeFlowThrough(kind) and
           returnAp = apSome(ap)
         ) else (
           returnCtx = TReturnCtxNoFlowThrough() and returnAp = apNone()
@@ -1638,37 +1677,27 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate revFlowOut(
-      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, FlowState state, ReturnCtx returnCtx,
+      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, FlowState state, ReturnCtx returnCtx,
       ApOption returnAp, Ap ap, Configuration config
     ) {
       exists(NodeEx out, boolean allowsFieldFlow |
         revFlow(out, state, returnCtx, returnAp, ap, config) and
-        flowOutOfCall(call, ret, pos, out, allowsFieldFlow, config) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
-      )
-    }
-
-    pragma[nomagic]
-    private predicate revFlowInNotToReturn(
-      ArgNodeEx arg, FlowState state, ApOption returnAp, Ap ap, Configuration config
-    ) {
-      exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(p, state, TReturnCtxNone(), returnAp, ap, config) and
-        flowIntoCall(_, arg, p, allowsFieldFlow, config) and
+        flowOutOfCall(call, ret, kind, out, allowsFieldFlow, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
     pragma[nomagic]
     private predicate revFlowInToReturn(
-      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnPosition returnPos, Ap returnAp,
-      Ap ap, Configuration config
+      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap,
+      Configuration config
     ) {
       exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(p, state, TReturnCtxMaybeFlowThrough(returnPos), apSome(returnAp), ap, config) and
+        revFlow(pragma[only_bind_into](p), state,
+          TReturnCtxMaybeFlowThrough(pragma[only_bind_into](kind)), apSome(returnAp), ap, config) and
         flowThroughIntoCall(call, arg, p, allowsFieldFlow, config) and
         (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
-        parameterFlowThroughAllowed(p.asNode(), returnPos.getKind())
+        parameterFlowThroughAllowed(p, kind)
       )
     }
 
@@ -1679,12 +1708,12 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate revFlowIsReturned(
-      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnPosition pos, Ap ap,
+      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnKindExt kind, Ap ap,
       Configuration config
     ) {
       exists(RetNodeEx ret, FlowState state, CcCall ccc |
-        revFlowOut(call, ret, pos, state, returnCtx, returnAp, ap, config) and
-        returnFlowsThrough(ret, pos, state, ccc, _, _, ap, config) and
+        revFlowOut(call, ret, kind, state, returnCtx, returnAp, ap, config) and
+        returnFlowsThrough(ret, kind, state, ccc, _, _, ap, config) and
         matchesCall(ccc, call)
       )
     }
@@ -1757,37 +1786,37 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate parameterFlowsThroughRev(
-      ParamNodeEx p, Ap ap, ReturnPosition returnPos, Configuration config
+      ParamNodeEx p, Ap ap, ReturnKindExt kind, Configuration config
     ) {
-      revFlow(p, _, TReturnCtxMaybeFlowThrough(returnPos), apSome(_), ap, config) and
-      parameterFlowThroughAllowed(p.asNode(), returnPos.getKind())
+      revFlow(p, _, TReturnCtxMaybeFlowThrough(kind), apSome(_), ap, config) and
+      parameterFlowThroughAllowed(p, kind)
     }
 
     pragma[nomagic]
     predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
-      exists(RetNodeEx ret, ReturnPosition pos |
-        returnFlowsThrough(ret, pos, _, _, p.asNode(), ap, _, config) and
-        parameterFlowsThroughRev(p, ap, pos, config)
+      exists(RetNodeEx ret, ReturnKindExt kind |
+        returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
+        parameterFlowsThroughRev(p, ap, kind, config)
       )
     }
 
     pragma[nomagic]
-    predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config) {
+    predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config) {
       exists(ParamNodeEx p, Ap ap |
-        returnFlowsThrough(ret, pos, _, _, p.asNode(), ap, _, config) and
-        parameterFlowsThroughRev(p, ap, pos, config)
+        returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
+        parameterFlowsThroughRev(p, ap, kind, config)
       )
     }
 
     pragma[nomagic]
     predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
       exists(
-        ReturnPosition returnPos0, Ap returnAp0, ArgNodeEx arg, FlowState state,
+        ReturnKindExt returnKind0, Ap returnAp0, ArgNodeEx arg, FlowState state,
         ReturnCtx returnCtx, ApOption returnAp, Ap ap
       |
         revFlow(arg, state, returnCtx, returnAp, ap, config) and
-        revFlowInToReturn(call, arg, state, returnPos0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnPos0, returnAp0, config)
+        revFlowInToReturn(call, arg, state, returnKind0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
       )
     }
 
@@ -1800,9 +1829,8 @@ private module MkStage<StageSig PrevStage> {
       conscand = count(TypedContent f0, Ap ap | fwdConsCand(f0, ap, config)) and
       states = count(FlowState state | fwdFlow(_, state, _, _, _, _, config)) and
       tuples =
-        count(NodeEx n, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap |
-          fwdFlow(n, state, cc, summaryCtx, argAp, ap, config)
-        )
+        count(NodeEx n, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+          Ap ap | fwdFlow(n, state, cc, summaryCtx, argAp, ap, config))
       or
       fwd = false and
       nodes = count(NodeEx node | revFlow(node, _, _, _, _, config)) and
@@ -1992,10 +2020,10 @@ private module Stage2 implements StageSig {
 
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand2(
-  DataFlowCall call, RetNodeEx node1, ReturnPosition pos, NodeEx node2, boolean allowsFieldFlow,
+  DataFlowCall call, RetNodeEx node1, ReturnKindExt kind, NodeEx node2, boolean allowsFieldFlow,
   Configuration config
 ) {
-  flowOutOfCallNodeCand1(call, node1, pos, node2, allowsFieldFlow, config) and
+  flowOutOfCallNodeCand1(call, node1, kind, node2, allowsFieldFlow, config) and
   Stage2::revFlow(node2, pragma[only_bind_into](config)) and
   Stage2::revFlowAlias(node1, pragma[only_bind_into](config))
 }
@@ -2511,11 +2539,11 @@ private module Stage4Param implements MkStage<Stage3>::StageParam {
 
   pragma[nomagic]
   predicate flowOutOfCall(
-    DataFlowCall call, RetNodeEx node1, ReturnPosition pos, NodeEx node2, boolean allowsFieldFlow,
+    DataFlowCall call, RetNodeEx node1, ReturnKindExt kind, NodeEx node2, boolean allowsFieldFlow,
     Configuration config
   ) {
     exists(FlowState state |
-      flowOutOfCallNodeCand2(call, node1, pos, node2, allowsFieldFlow, config) and
+      flowOutOfCallNodeCand2(call, node1, kind, node2, allowsFieldFlow, config) and
       PrevStage::revFlow(node2, pragma[only_bind_into](state), _, pragma[only_bind_into](config)) and
       PrevStage::revFlowAlias(node1, pragma[only_bind_into](state), _,
         pragma[only_bind_into](config))
@@ -2552,12 +2580,13 @@ private Configuration unbindConf(Configuration conf) {
 
 pragma[nomagic]
 private predicate nodeMayUseSummary0(
-  NodeEx n, ParamNodeEx p, FlowState state, AccessPathApprox apa, Configuration config
+  NodeEx n, DataFlowCallable c, ParameterPosition pos, FlowState state, AccessPathApprox apa,
+  Configuration config
 ) {
   exists(AccessPathApprox apa0 |
-    Stage4::parameterMayFlowThrough(p, _, _) and
+    c = n.getEnclosingCallable() and
     Stage4::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
-    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TParamNodeSome(p.asNode()),
+    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TParameterPositionSome(pos),
       TAccessPathApproxSome(apa), apa0, config)
   )
 }
@@ -2566,9 +2595,10 @@ pragma[nomagic]
 private predicate nodeMayUseSummary(
   NodeEx n, FlowState state, AccessPathApprox apa, Configuration config
 ) {
-  exists(ParamNodeEx p |
+  exists(DataFlowCallable c, ParameterPosition pos, ParamNodeEx p |
     Stage4::parameterMayFlowThrough(p, apa, config) and
-    nodeMayUseSummary0(n, p, state, apa, config)
+    nodeMayUseSummary0(n, c, pos, state, apa, config) and
+    p.isParameterOf(c, pos)
   )
 }
 
@@ -3501,7 +3531,7 @@ private predicate paramFlowsThrough(
     pathNode(mid, ret, state, cc, sc, ap, config, _) and
     kind = ret.getKind() and
     apa = ap.getApprox() and
-    parameterFlowThroughAllowed(sc.getParamNode().asNode(), kind)
+    parameterFlowThroughAllowed(sc.getParamNode(), kind)
   )
 }
 
diff --git a/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImpl5.qll b/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImpl5.qll
index a52ad110662..e4cfd5986be 100644
--- a/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImpl5.qll
+++ b/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImpl5.qll
@@ -613,11 +613,28 @@ private predicate hasSinkCallCtx(Configuration config) {
  * explicitly allowed
  */
 bindingset[p, kind]
-private predicate parameterFlowThroughAllowed(ParamNode p, ReturnKindExt kind) {
+private predicate parameterFlowThroughAllowed(ParamNodeEx p, ReturnKindExt kind) {
   exists(ParameterPosition pos | p.isParameterOf(_, pos) |
     not kind.(ParamUpdateReturnKind).getPosition() = pos
     or
-    allowParameterReturnInSelfCached(p)
+    allowParameterReturnInSelfCached(p.asNode())
+  )
+}
+
+/**
+ * Holds if flow from a parameter at position `pos` inside `c` to a return node of
+ * kind `kind` is allowed.
+ *
+ * We don't expect a parameter to return stored in itself, unless
+ * explicitly allowed
+ */
+bindingset[c, pos, kind]
+private predicate parameterFlowThroughAllowed(
+  DataFlowCallable c, ParameterPosition pos, ReturnKindExt kind
+) {
+  exists(ParamNodeEx p |
+    p.isParameterOf(c, pos) and
+    parameterFlowThroughAllowed(p, kind)
   )
 }
 
@@ -1000,14 +1017,14 @@ private module Stage1 implements StageSig {
       returnFlowCallableNodeCand(c, kind, config) and
       p.getEnclosingCallable() = c and
       exists(ap) and
-      parameterFlowThroughAllowed(p.asNode(), kind)
+      parameterFlowThroughAllowed(p, kind)
     )
   }
 
   pragma[nomagic]
-  predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config) {
+  predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config) {
     throughFlowNodeCand(ret, config) and
-    pos = ret.getReturnPosition()
+    kind = ret.getKind()
   }
 
   pragma[nomagic]
@@ -1066,13 +1083,16 @@ private predicate viableReturnPosOutNodeCand1(
  */
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand1(
-  DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, Configuration config
+  DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, Configuration config
 ) {
-  viableReturnPosOutNodeCand1(call, pos, out, config) and
-  pos = ret.getReturnPosition() and
-  Stage1::revFlow(ret, config) and
-  not outBarrier(ret, config) and
-  not inBarrier(out, config)
+  exists(ReturnPosition pos |
+    viableReturnPosOutNodeCand1(call, pos, out, config) and
+    pos = ret.getReturnPosition() and
+    kind = pos.getKind() and
+    Stage1::revFlow(ret, config) and
+    not outBarrier(ret, config) and
+    not inBarrier(out, config)
+  )
 }
 
 pragma[nomagic]
@@ -1102,6 +1122,7 @@ private predicate flowIntoCallNodeCand1(
  * edge in the graph of paths between sources and sinks that ignores call
  * contexts.
  */
+pragma[nomagic]
 private int branch(NodeEx n1, Configuration conf) {
   result =
     strictcount(NodeEx n |
@@ -1114,6 +1135,7 @@ private int branch(NodeEx n1, Configuration conf) {
  * edge in the graph of paths between sources and sinks that ignores call
  * contexts.
  */
+pragma[nomagic]
 private int join(NodeEx n2, Configuration conf) {
   result =
     strictcount(NodeEx n |
@@ -1130,10 +1152,10 @@ private int join(NodeEx n2, Configuration conf) {
  */
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand1(
-  DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
+  DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
   Configuration config
 ) {
-  flowOutOfCallNodeCand1(call, ret, pos, out, pragma[only_bind_into](config)) and
+  flowOutOfCallNodeCand1(call, ret, kind, out, pragma[only_bind_into](config)) and
   exists(int b, int j |
     b = branch(ret, pragma[only_bind_into](config)) and
     j = join(out, pragma[only_bind_into](config)) and
@@ -1152,10 +1174,10 @@ pragma[nomagic]
 private predicate flowIntoCallNodeCand1(
   DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
 ) {
-  flowIntoCallNodeCand1(call, arg, p, config) and
+  flowIntoCallNodeCand1(call, arg, p, pragma[only_bind_into](config)) and
   exists(int b, int j |
-    b = branch(arg, config) and
-    j = join(p, config) and
+    b = branch(arg, pragma[only_bind_into](config)) and
+    j = join(p, pragma[only_bind_into](config)) and
     if b.minimum(j) <= config.fieldFlowBranchLimit()
     then allowsFieldFlow = true
     else allowsFieldFlow = false
@@ -1174,7 +1196,7 @@ private signature module StageSig {
 
   predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config);
 
-  predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config);
+  predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config);
 
   predicate storeStepCand(
     NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, DataFlowType contentType,
@@ -1240,7 +1262,7 @@ private module MkStage<StageSig PrevStage> {
     );
 
     predicate flowOutOfCall(
-      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
+      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
       Configuration config
     );
 
@@ -1266,16 +1288,14 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate flowThroughOutOfCall(
-      DataFlowCall call, CcCall ccc, RetNodeEx ret, ReturnKindExt kind, NodeEx out,
-      boolean allowsFieldFlow, Configuration config
+      DataFlowCall call, DataFlowCallable c, CcCall ccc, RetNodeEx ret, ReturnKindExt kind,
+      NodeEx out, boolean allowsFieldFlow, Configuration config
     ) {
-      exists(ReturnPosition pos |
-        flowOutOfCall(call, ret, pos, out, allowsFieldFlow, pragma[only_bind_into](config)) and
-        kind = pos.getKind() and
-        PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
-        PrevStage::returnMayFlowThrough(ret, pos, pragma[only_bind_into](config)) and
-        matchesCall(ccc, call)
-      )
+      flowOutOfCall(call, ret, kind, out, allowsFieldFlow, pragma[only_bind_into](config)) and
+      PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
+      PrevStage::returnMayFlowThrough(ret, kind, pragma[only_bind_into](config)) and
+      matchesCall(ccc, call) and
+      c = ret.getEnclosingCallable()
     }
 
     /**
@@ -1284,12 +1304,12 @@ private module MkStage<StageSig PrevStage> {
      *
      * The call context `cc` records whether the node is reached through an
      * argument in a call, and if so, `summaryCtx` and `argAp` record the
-     * corresponding parameter and access path of that argument, respectively.
+     * corresponding parameter position and access path of that argument, respectively.
      */
     pragma[nomagic]
     additional predicate fwdFlow(
-      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
-      Configuration config
+      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      Ap ap, Configuration config
     ) {
       fwdFlow0(node, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::revFlow(node, state, unbindApa(getApprox(ap)), config) and
@@ -1298,13 +1318,13 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlow0(
-      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
-      Configuration config
+      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      Ap ap, Configuration config
     ) {
       sourceNode(node, state, config) and
       (if hasSourceCallCtx(config) then cc = ccSomeCall() else cc = ccNone()) and
       argAp = apNone() and
-      summaryCtx = TParamNodeNone() and
+      summaryCtx = TParameterPositionNone() and
       ap = getApNil(node)
       or
       exists(NodeEx mid, FlowState state0, Ap ap0, LocalCc localCc |
@@ -1322,7 +1342,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, pragma[only_bind_into](config)) and
         jumpStep(mid, node, config) and
         cc = ccNone() and
-        summaryCtx = TParamNodeNone() and
+        summaryCtx = TParameterPositionNone() and
         argAp = apNone()
       )
       or
@@ -1330,7 +1350,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, state, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStep(mid, node, config) and
         cc = ccNone() and
-        summaryCtx = TParamNodeNone() and
+        summaryCtx = TParameterPositionNone() and
         argAp = apNone() and
         ap = getApNil(node)
       )
@@ -1339,7 +1359,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, state0, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStateStep(mid, state0, node, state, config) and
         cc = ccNone() and
-        summaryCtx = TParamNodeNone() and
+        summaryCtx = TParameterPositionNone() and
         argAp = apNone() and
         ap = getApNil(node)
       )
@@ -1362,17 +1382,27 @@ private module MkStage<StageSig PrevStage> {
         apa = getApprox(ap) and
         if PrevStage::parameterMayFlowThrough(node, apa, config)
         then (
-          summaryCtx = TParamNodeSome(node.asNode()) and argAp = apSome(ap)
+          summaryCtx = TParameterPositionSome(node.(ParamNodeEx).getPosition()) and
+          argAp = apSome(ap)
         ) else (
-          summaryCtx = TParamNodeNone() and argAp = apNone()
+          summaryCtx = TParameterPositionNone() and argAp = apNone()
         )
       )
       or
       // flow out of a callable
-      fwdFlowOutNotFromArg(node, state, cc, summaryCtx, argAp, ap, config)
+      exists(
+        DataFlowCall call, RetNodeEx ret, boolean allowsFieldFlow, CcNoCall innercc,
+        DataFlowCallable inner
+      |
+        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, config) and
+        flowOutOfCall(call, ret, _, node, allowsFieldFlow, config) and
+        inner = ret.getEnclosingCallable() and
+        cc = getCallContextReturn(inner, call, innercc) and
+        if allowsFieldFlow = false then ap instanceof ApNil else any()
+      )
       or
       // flow through a callable
-      exists(DataFlowCall call, ParamNode summaryCtx0, Ap argAp0 |
+      exists(DataFlowCall call, ParameterPosition summaryCtx0, Ap argAp0 |
         fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, config) and
         fwdFlowIsEntered(call, cc, summaryCtx, argAp, summaryCtx0, argAp0, config)
       )
@@ -1381,7 +1411,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowStore(
       NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc,
-      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
+      ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
     ) {
       exists(DataFlowType contentType |
         fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, config) and
@@ -1406,7 +1436,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowRead(
       Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc,
-      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
+      ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
     ) {
       fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, c, node2, config) and
@@ -1416,7 +1446,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowIn(
       DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, Cc innercc,
-      ParamNodeOption summaryCtx, ApOption argAp, Ap ap, Configuration config
+      ParameterPositionOption summaryCtx, ApOption argAp, Ap ap, Configuration config
     ) {
       exists(ArgNodeEx arg, boolean allowsFieldFlow |
         fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, config) and
@@ -1427,32 +1457,19 @@ private module MkStage<StageSig PrevStage> {
     }
 
     pragma[nomagic]
-    private predicate fwdFlowOutNotFromArg(
-      NodeEx out, FlowState state, Cc ccOut, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+    private predicate fwdFlowOutFromArg(
+      DataFlowCall call, NodeEx out, FlowState state, ParameterPosition summaryCtx, Ap argAp, Ap ap,
       Configuration config
     ) {
       exists(
-        DataFlowCall call, RetNodeEx ret, boolean allowsFieldFlow, CcNoCall innercc,
-        DataFlowCallable inner
+        DataFlowCallable c, RetNodeEx ret, ReturnKindExt kind, boolean allowsFieldFlow, CcCall ccc
       |
-        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, config) and
-        flowOutOfCall(call, ret, _, out, allowsFieldFlow, config) and
-        inner = ret.getEnclosingCallable() and
-        ccOut = getCallContextReturn(inner, call, innercc) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
-      )
-    }
-
-    pragma[nomagic]
-    private predicate fwdFlowOutFromArg(
-      DataFlowCall call, NodeEx out, FlowState state, ParamNode summaryCtx, Ap argAp, Ap ap,
-      Configuration config
-    ) {
-      exists(RetNodeEx ret, ReturnKindExt kind, boolean allowsFieldFlow, CcCall ccc |
-        fwdFlow(ret, state, ccc, TParamNodeSome(summaryCtx), apSome(argAp), ap, config) and
-        flowThroughOutOfCall(call, ccc, ret, kind, out, allowsFieldFlow, config) and
+        fwdFlow(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc),
+          TParameterPositionSome(pragma[only_bind_into](summaryCtx)), apSome(argAp), ap, config) and
+        flowThroughOutOfCall(call, pragma[only_bind_into](c), ccc, ret, kind, out, allowsFieldFlow,
+          config) and
         (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
-        parameterFlowThroughAllowed(summaryCtx, kind)
+        parameterFlowThroughAllowed(c, pragma[only_bind_into](summaryCtx), kind)
       )
     }
 
@@ -1462,13 +1479,13 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate fwdFlowIsEntered(
-      DataFlowCall call, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, ParamNode p, Ap ap,
-      Configuration config
+      DataFlowCall call, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      ParameterPosition pos, Ap ap, Configuration config
     ) {
       exists(ParamNodeEx param |
         fwdFlowIn(call, param, _, cc, _, summaryCtx, argAp, ap, config) and
         PrevStage::parameterMayFlowThrough(param, unbindApa(getApprox(ap)), config) and
-        p = param.asNode()
+        pos = param.getPosition()
       )
     }
 
@@ -1489,23 +1506,41 @@ private module MkStage<StageSig PrevStage> {
     }
 
     pragma[nomagic]
-    private predicate returnFlowsThrough(
-      RetNodeEx ret, ReturnPosition pos, FlowState state, CcCall ccc, ParamNode p, Ap argAp, Ap ap,
-      Configuration config
+    private predicate returnFlowsThrough0(
+      RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, DataFlowCallable c,
+      ParameterPosition ppos, Ap argAp, Ap ap, Configuration config
     ) {
-      fwdFlow(ret, state, ccc, TParamNodeSome(p), apSome(argAp), ap, config) and
-      pos = ret.getReturnPosition() and
-      parameterFlowThroughAllowed(p, pos.getKind())
+      exists(boolean allowsFieldFlow |
+        fwdFlow(ret, state, ccc, TParameterPositionSome(ppos), apSome(argAp), ap, config) and
+        flowThroughOutOfCall(_, c, _, pragma[only_bind_into](ret), kind, _, allowsFieldFlow,
+          pragma[only_bind_into](config)) and
+        if allowsFieldFlow = false then ap instanceof ApNil else any()
+      )
+    }
+
+    pragma[nomagic]
+    private predicate returnFlowsThrough(
+      RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, ParamNodeEx p, Ap argAp,
+      Ap ap, Configuration config
+    ) {
+      exists(DataFlowCallable c, ParameterPosition ppos |
+        returnFlowsThrough0(ret, kind, state, ccc, c, ppos, argAp, ap, config) and
+        p.isParameterOf(c, ppos) and
+        parameterFlowThroughAllowed(p, kind)
+      )
     }
 
     pragma[nomagic]
     private predicate flowThroughIntoCall(
       DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
     ) {
-      flowIntoCall(call, pragma[only_bind_into](arg), pragma[only_bind_into](p), allowsFieldFlow,
-        pragma[only_bind_into](config)) and
-      fwdFlow(arg, _, _, _, _, _, pragma[only_bind_into](config)) and
-      returnFlowsThrough(_, _, _, _, p.asNode(), _, _, pragma[only_bind_into](config))
+      exists(Ap argAp |
+        flowIntoCall(call, pragma[only_bind_into](arg), pragma[only_bind_into](p), allowsFieldFlow,
+          pragma[only_bind_into](config)) and
+        fwdFlow(arg, _, _, _, _, pragma[only_bind_into](argAp), pragma[only_bind_into](config)) and
+        returnFlowsThrough(_, _, _, _, p, pragma[only_bind_into](argAp), _,
+          pragma[only_bind_into](config))
+      )
     }
 
     /**
@@ -1591,21 +1626,25 @@ private module MkStage<StageSig PrevStage> {
       )
       or
       // flow into a callable
-      revFlowInNotToReturn(node, state, returnAp, ap, config) and
-      returnCtx = TReturnCtxNone()
+      exists(ParamNodeEx p, boolean allowsFieldFlow |
+        revFlow(p, state, TReturnCtxNone(), returnAp, ap, config) and
+        flowIntoCall(_, node, p, allowsFieldFlow, config) and
+        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
+        returnCtx = TReturnCtxNone()
+      )
       or
       // flow through a callable
-      exists(DataFlowCall call, ReturnPosition returnPos0, Ap returnAp0 |
-        revFlowInToReturn(call, node, state, returnPos0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnPos0, returnAp0, config)
+      exists(DataFlowCall call, ReturnKindExt returnKind0, Ap returnAp0 |
+        revFlowInToReturn(call, node, state, returnKind0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
       )
       or
       // flow out of a callable
-      exists(ReturnPosition pos |
-        revFlowOut(_, node, pos, state, _, _, ap, config) and
-        if returnFlowsThrough(node, pos, state, _, _, _, ap, config)
+      exists(ReturnKindExt kind |
+        revFlowOut(_, node, kind, state, _, _, ap, config) and
+        if returnFlowsThrough(node, kind, state, _, _, _, ap, config)
         then (
-          returnCtx = TReturnCtxMaybeFlowThrough(pos) and
+          returnCtx = TReturnCtxMaybeFlowThrough(kind) and
           returnAp = apSome(ap)
         ) else (
           returnCtx = TReturnCtxNoFlowThrough() and returnAp = apNone()
@@ -1638,37 +1677,27 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate revFlowOut(
-      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, FlowState state, ReturnCtx returnCtx,
+      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, FlowState state, ReturnCtx returnCtx,
       ApOption returnAp, Ap ap, Configuration config
     ) {
       exists(NodeEx out, boolean allowsFieldFlow |
         revFlow(out, state, returnCtx, returnAp, ap, config) and
-        flowOutOfCall(call, ret, pos, out, allowsFieldFlow, config) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
-      )
-    }
-
-    pragma[nomagic]
-    private predicate revFlowInNotToReturn(
-      ArgNodeEx arg, FlowState state, ApOption returnAp, Ap ap, Configuration config
-    ) {
-      exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(p, state, TReturnCtxNone(), returnAp, ap, config) and
-        flowIntoCall(_, arg, p, allowsFieldFlow, config) and
+        flowOutOfCall(call, ret, kind, out, allowsFieldFlow, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
     pragma[nomagic]
     private predicate revFlowInToReturn(
-      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnPosition returnPos, Ap returnAp,
-      Ap ap, Configuration config
+      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap,
+      Configuration config
     ) {
       exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(p, state, TReturnCtxMaybeFlowThrough(returnPos), apSome(returnAp), ap, config) and
+        revFlow(pragma[only_bind_into](p), state,
+          TReturnCtxMaybeFlowThrough(pragma[only_bind_into](kind)), apSome(returnAp), ap, config) and
         flowThroughIntoCall(call, arg, p, allowsFieldFlow, config) and
         (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
-        parameterFlowThroughAllowed(p.asNode(), returnPos.getKind())
+        parameterFlowThroughAllowed(p, kind)
       )
     }
 
@@ -1679,12 +1708,12 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate revFlowIsReturned(
-      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnPosition pos, Ap ap,
+      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnKindExt kind, Ap ap,
       Configuration config
     ) {
       exists(RetNodeEx ret, FlowState state, CcCall ccc |
-        revFlowOut(call, ret, pos, state, returnCtx, returnAp, ap, config) and
-        returnFlowsThrough(ret, pos, state, ccc, _, _, ap, config) and
+        revFlowOut(call, ret, kind, state, returnCtx, returnAp, ap, config) and
+        returnFlowsThrough(ret, kind, state, ccc, _, _, ap, config) and
         matchesCall(ccc, call)
       )
     }
@@ -1757,37 +1786,37 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate parameterFlowsThroughRev(
-      ParamNodeEx p, Ap ap, ReturnPosition returnPos, Configuration config
+      ParamNodeEx p, Ap ap, ReturnKindExt kind, Configuration config
     ) {
-      revFlow(p, _, TReturnCtxMaybeFlowThrough(returnPos), apSome(_), ap, config) and
-      parameterFlowThroughAllowed(p.asNode(), returnPos.getKind())
+      revFlow(p, _, TReturnCtxMaybeFlowThrough(kind), apSome(_), ap, config) and
+      parameterFlowThroughAllowed(p, kind)
     }
 
     pragma[nomagic]
     predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
-      exists(RetNodeEx ret, ReturnPosition pos |
-        returnFlowsThrough(ret, pos, _, _, p.asNode(), ap, _, config) and
-        parameterFlowsThroughRev(p, ap, pos, config)
+      exists(RetNodeEx ret, ReturnKindExt kind |
+        returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
+        parameterFlowsThroughRev(p, ap, kind, config)
       )
     }
 
     pragma[nomagic]
-    predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config) {
+    predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config) {
       exists(ParamNodeEx p, Ap ap |
-        returnFlowsThrough(ret, pos, _, _, p.asNode(), ap, _, config) and
-        parameterFlowsThroughRev(p, ap, pos, config)
+        returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
+        parameterFlowsThroughRev(p, ap, kind, config)
       )
     }
 
     pragma[nomagic]
     predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
       exists(
-        ReturnPosition returnPos0, Ap returnAp0, ArgNodeEx arg, FlowState state,
+        ReturnKindExt returnKind0, Ap returnAp0, ArgNodeEx arg, FlowState state,
         ReturnCtx returnCtx, ApOption returnAp, Ap ap
       |
         revFlow(arg, state, returnCtx, returnAp, ap, config) and
-        revFlowInToReturn(call, arg, state, returnPos0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnPos0, returnAp0, config)
+        revFlowInToReturn(call, arg, state, returnKind0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
       )
     }
 
@@ -1800,9 +1829,8 @@ private module MkStage<StageSig PrevStage> {
       conscand = count(TypedContent f0, Ap ap | fwdConsCand(f0, ap, config)) and
       states = count(FlowState state | fwdFlow(_, state, _, _, _, _, config)) and
       tuples =
-        count(NodeEx n, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap |
-          fwdFlow(n, state, cc, summaryCtx, argAp, ap, config)
-        )
+        count(NodeEx n, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+          Ap ap | fwdFlow(n, state, cc, summaryCtx, argAp, ap, config))
       or
       fwd = false and
       nodes = count(NodeEx node | revFlow(node, _, _, _, _, config)) and
@@ -1992,10 +2020,10 @@ private module Stage2 implements StageSig {
 
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand2(
-  DataFlowCall call, RetNodeEx node1, ReturnPosition pos, NodeEx node2, boolean allowsFieldFlow,
+  DataFlowCall call, RetNodeEx node1, ReturnKindExt kind, NodeEx node2, boolean allowsFieldFlow,
   Configuration config
 ) {
-  flowOutOfCallNodeCand1(call, node1, pos, node2, allowsFieldFlow, config) and
+  flowOutOfCallNodeCand1(call, node1, kind, node2, allowsFieldFlow, config) and
   Stage2::revFlow(node2, pragma[only_bind_into](config)) and
   Stage2::revFlowAlias(node1, pragma[only_bind_into](config))
 }
@@ -2511,11 +2539,11 @@ private module Stage4Param implements MkStage<Stage3>::StageParam {
 
   pragma[nomagic]
   predicate flowOutOfCall(
-    DataFlowCall call, RetNodeEx node1, ReturnPosition pos, NodeEx node2, boolean allowsFieldFlow,
+    DataFlowCall call, RetNodeEx node1, ReturnKindExt kind, NodeEx node2, boolean allowsFieldFlow,
     Configuration config
   ) {
     exists(FlowState state |
-      flowOutOfCallNodeCand2(call, node1, pos, node2, allowsFieldFlow, config) and
+      flowOutOfCallNodeCand2(call, node1, kind, node2, allowsFieldFlow, config) and
       PrevStage::revFlow(node2, pragma[only_bind_into](state), _, pragma[only_bind_into](config)) and
       PrevStage::revFlowAlias(node1, pragma[only_bind_into](state), _,
         pragma[only_bind_into](config))
@@ -2552,12 +2580,13 @@ private Configuration unbindConf(Configuration conf) {
 
 pragma[nomagic]
 private predicate nodeMayUseSummary0(
-  NodeEx n, ParamNodeEx p, FlowState state, AccessPathApprox apa, Configuration config
+  NodeEx n, DataFlowCallable c, ParameterPosition pos, FlowState state, AccessPathApprox apa,
+  Configuration config
 ) {
   exists(AccessPathApprox apa0 |
-    Stage4::parameterMayFlowThrough(p, _, _) and
+    c = n.getEnclosingCallable() and
     Stage4::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
-    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TParamNodeSome(p.asNode()),
+    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TParameterPositionSome(pos),
       TAccessPathApproxSome(apa), apa0, config)
   )
 }
@@ -2566,9 +2595,10 @@ pragma[nomagic]
 private predicate nodeMayUseSummary(
   NodeEx n, FlowState state, AccessPathApprox apa, Configuration config
 ) {
-  exists(ParamNodeEx p |
+  exists(DataFlowCallable c, ParameterPosition pos, ParamNodeEx p |
     Stage4::parameterMayFlowThrough(p, apa, config) and
-    nodeMayUseSummary0(n, p, state, apa, config)
+    nodeMayUseSummary0(n, c, pos, state, apa, config) and
+    p.isParameterOf(c, pos)
   )
 }
 
@@ -3501,7 +3531,7 @@ private predicate paramFlowsThrough(
     pathNode(mid, ret, state, cc, sc, ap, config, _) and
     kind = ret.getKind() and
     apa = ap.getApprox() and
-    parameterFlowThroughAllowed(sc.getParamNode().asNode(), kind)
+    parameterFlowThroughAllowed(sc.getParamNode(), kind)
   )
 }
 
diff --git a/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImplCommon.qll b/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImplCommon.qll
index 621ed34f9d0..f981834a6d4 100644
--- a/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImplCommon.qll
+++ b/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImplCommon.qll
@@ -916,15 +916,15 @@ private module Cached {
     TDataFlowCallSome(DataFlowCall call)
 
   cached
-  newtype TParamNodeOption =
-    TParamNodeNone() or
-    TParamNodeSome(ParamNode p)
+  newtype TParameterPositionOption =
+    TParameterPositionNone() or
+    TParameterPositionSome(ParameterPosition pos)
 
   cached
   newtype TReturnCtx =
     TReturnCtxNone() or
     TReturnCtxNoFlowThrough() or
-    TReturnCtxMaybeFlowThrough(ReturnPosition pos)
+    TReturnCtxMaybeFlowThrough(ReturnKindExt kind)
 
   cached
   newtype TTypedContent = MkTypedContent(Content c, DataFlowType t) { store(_, c, _, _, t) }
@@ -1315,15 +1315,15 @@ class DataFlowCallOption extends TDataFlowCallOption {
   }
 }
 
-/** An optional `ParamNode`. */
-class ParamNodeOption extends TParamNodeOption {
+/** An optional `ParameterPosition`. */
+class ParameterPositionOption extends TParameterPositionOption {
   string toString() {
-    this = TParamNodeNone() and
+    this = TParameterPositionNone() and
     result = "(none)"
     or
-    exists(ParamNode p |
-      this = TParamNodeSome(p) and
-      result = p.toString()
+    exists(ParameterPosition pos |
+      this = TParameterPositionSome(pos) and
+      result = pos.toString()
     )
   }
 }
@@ -1335,7 +1335,7 @@ class ParamNodeOption extends TParamNodeOption {
  *
  * - `TReturnCtxNone()`: no return flow.
  * - `TReturnCtxNoFlowThrough()`: return flow, but flow through is not possible.
- * - `TReturnCtxMaybeFlowThrough(ReturnPosition pos)`: return flow, of kind `pos`, and
+ * - `TReturnCtxMaybeFlowThrough(ReturnKindExt kind)`: return flow, of kind `kind`, and
  *    flow through may be possible.
  */
 class ReturnCtx extends TReturnCtx {
@@ -1346,9 +1346,9 @@ class ReturnCtx extends TReturnCtx {
     this = TReturnCtxNoFlowThrough() and
     result = "(no flow through)"
     or
-    exists(ReturnPosition pos |
-      this = TReturnCtxMaybeFlowThrough(pos) and
-      result = pos.toString()
+    exists(ReturnKindExt kind |
+      this = TReturnCtxMaybeFlowThrough(kind) and
+      result = kind.toString()
     )
   }
 }
diff --git a/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImplForContentDataFlow.qll b/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImplForContentDataFlow.qll
index a52ad110662..e4cfd5986be 100644
--- a/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImplForContentDataFlow.qll
+++ b/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImplForContentDataFlow.qll
@@ -613,11 +613,28 @@ private predicate hasSinkCallCtx(Configuration config) {
  * explicitly allowed
  */
 bindingset[p, kind]
-private predicate parameterFlowThroughAllowed(ParamNode p, ReturnKindExt kind) {
+private predicate parameterFlowThroughAllowed(ParamNodeEx p, ReturnKindExt kind) {
   exists(ParameterPosition pos | p.isParameterOf(_, pos) |
     not kind.(ParamUpdateReturnKind).getPosition() = pos
     or
-    allowParameterReturnInSelfCached(p)
+    allowParameterReturnInSelfCached(p.asNode())
+  )
+}
+
+/**
+ * Holds if flow from a parameter at position `pos` inside `c` to a return node of
+ * kind `kind` is allowed.
+ *
+ * We don't expect a parameter to return stored in itself, unless
+ * explicitly allowed
+ */
+bindingset[c, pos, kind]
+private predicate parameterFlowThroughAllowed(
+  DataFlowCallable c, ParameterPosition pos, ReturnKindExt kind
+) {
+  exists(ParamNodeEx p |
+    p.isParameterOf(c, pos) and
+    parameterFlowThroughAllowed(p, kind)
   )
 }
 
@@ -1000,14 +1017,14 @@ private module Stage1 implements StageSig {
       returnFlowCallableNodeCand(c, kind, config) and
       p.getEnclosingCallable() = c and
       exists(ap) and
-      parameterFlowThroughAllowed(p.asNode(), kind)
+      parameterFlowThroughAllowed(p, kind)
     )
   }
 
   pragma[nomagic]
-  predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config) {
+  predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config) {
     throughFlowNodeCand(ret, config) and
-    pos = ret.getReturnPosition()
+    kind = ret.getKind()
   }
 
   pragma[nomagic]
@@ -1066,13 +1083,16 @@ private predicate viableReturnPosOutNodeCand1(
  */
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand1(
-  DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, Configuration config
+  DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, Configuration config
 ) {
-  viableReturnPosOutNodeCand1(call, pos, out, config) and
-  pos = ret.getReturnPosition() and
-  Stage1::revFlow(ret, config) and
-  not outBarrier(ret, config) and
-  not inBarrier(out, config)
+  exists(ReturnPosition pos |
+    viableReturnPosOutNodeCand1(call, pos, out, config) and
+    pos = ret.getReturnPosition() and
+    kind = pos.getKind() and
+    Stage1::revFlow(ret, config) and
+    not outBarrier(ret, config) and
+    not inBarrier(out, config)
+  )
 }
 
 pragma[nomagic]
@@ -1102,6 +1122,7 @@ private predicate flowIntoCallNodeCand1(
  * edge in the graph of paths between sources and sinks that ignores call
  * contexts.
  */
+pragma[nomagic]
 private int branch(NodeEx n1, Configuration conf) {
   result =
     strictcount(NodeEx n |
@@ -1114,6 +1135,7 @@ private int branch(NodeEx n1, Configuration conf) {
  * edge in the graph of paths between sources and sinks that ignores call
  * contexts.
  */
+pragma[nomagic]
 private int join(NodeEx n2, Configuration conf) {
   result =
     strictcount(NodeEx n |
@@ -1130,10 +1152,10 @@ private int join(NodeEx n2, Configuration conf) {
  */
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand1(
-  DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
+  DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
   Configuration config
 ) {
-  flowOutOfCallNodeCand1(call, ret, pos, out, pragma[only_bind_into](config)) and
+  flowOutOfCallNodeCand1(call, ret, kind, out, pragma[only_bind_into](config)) and
   exists(int b, int j |
     b = branch(ret, pragma[only_bind_into](config)) and
     j = join(out, pragma[only_bind_into](config)) and
@@ -1152,10 +1174,10 @@ pragma[nomagic]
 private predicate flowIntoCallNodeCand1(
   DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
 ) {
-  flowIntoCallNodeCand1(call, arg, p, config) and
+  flowIntoCallNodeCand1(call, arg, p, pragma[only_bind_into](config)) and
   exists(int b, int j |
-    b = branch(arg, config) and
-    j = join(p, config) and
+    b = branch(arg, pragma[only_bind_into](config)) and
+    j = join(p, pragma[only_bind_into](config)) and
     if b.minimum(j) <= config.fieldFlowBranchLimit()
     then allowsFieldFlow = true
     else allowsFieldFlow = false
@@ -1174,7 +1196,7 @@ private signature module StageSig {
 
   predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config);
 
-  predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config);
+  predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config);
 
   predicate storeStepCand(
     NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, DataFlowType contentType,
@@ -1240,7 +1262,7 @@ private module MkStage<StageSig PrevStage> {
     );
 
     predicate flowOutOfCall(
-      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
+      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
       Configuration config
     );
 
@@ -1266,16 +1288,14 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate flowThroughOutOfCall(
-      DataFlowCall call, CcCall ccc, RetNodeEx ret, ReturnKindExt kind, NodeEx out,
-      boolean allowsFieldFlow, Configuration config
+      DataFlowCall call, DataFlowCallable c, CcCall ccc, RetNodeEx ret, ReturnKindExt kind,
+      NodeEx out, boolean allowsFieldFlow, Configuration config
     ) {
-      exists(ReturnPosition pos |
-        flowOutOfCall(call, ret, pos, out, allowsFieldFlow, pragma[only_bind_into](config)) and
-        kind = pos.getKind() and
-        PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
-        PrevStage::returnMayFlowThrough(ret, pos, pragma[only_bind_into](config)) and
-        matchesCall(ccc, call)
-      )
+      flowOutOfCall(call, ret, kind, out, allowsFieldFlow, pragma[only_bind_into](config)) and
+      PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
+      PrevStage::returnMayFlowThrough(ret, kind, pragma[only_bind_into](config)) and
+      matchesCall(ccc, call) and
+      c = ret.getEnclosingCallable()
     }
 
     /**
@@ -1284,12 +1304,12 @@ private module MkStage<StageSig PrevStage> {
      *
      * The call context `cc` records whether the node is reached through an
      * argument in a call, and if so, `summaryCtx` and `argAp` record the
-     * corresponding parameter and access path of that argument, respectively.
+     * corresponding parameter position and access path of that argument, respectively.
      */
     pragma[nomagic]
     additional predicate fwdFlow(
-      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
-      Configuration config
+      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      Ap ap, Configuration config
     ) {
       fwdFlow0(node, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::revFlow(node, state, unbindApa(getApprox(ap)), config) and
@@ -1298,13 +1318,13 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlow0(
-      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
-      Configuration config
+      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      Ap ap, Configuration config
     ) {
       sourceNode(node, state, config) and
       (if hasSourceCallCtx(config) then cc = ccSomeCall() else cc = ccNone()) and
       argAp = apNone() and
-      summaryCtx = TParamNodeNone() and
+      summaryCtx = TParameterPositionNone() and
       ap = getApNil(node)
       or
       exists(NodeEx mid, FlowState state0, Ap ap0, LocalCc localCc |
@@ -1322,7 +1342,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, pragma[only_bind_into](config)) and
         jumpStep(mid, node, config) and
         cc = ccNone() and
-        summaryCtx = TParamNodeNone() and
+        summaryCtx = TParameterPositionNone() and
         argAp = apNone()
       )
       or
@@ -1330,7 +1350,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, state, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStep(mid, node, config) and
         cc = ccNone() and
-        summaryCtx = TParamNodeNone() and
+        summaryCtx = TParameterPositionNone() and
         argAp = apNone() and
         ap = getApNil(node)
       )
@@ -1339,7 +1359,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, state0, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStateStep(mid, state0, node, state, config) and
         cc = ccNone() and
-        summaryCtx = TParamNodeNone() and
+        summaryCtx = TParameterPositionNone() and
         argAp = apNone() and
         ap = getApNil(node)
       )
@@ -1362,17 +1382,27 @@ private module MkStage<StageSig PrevStage> {
         apa = getApprox(ap) and
         if PrevStage::parameterMayFlowThrough(node, apa, config)
         then (
-          summaryCtx = TParamNodeSome(node.asNode()) and argAp = apSome(ap)
+          summaryCtx = TParameterPositionSome(node.(ParamNodeEx).getPosition()) and
+          argAp = apSome(ap)
         ) else (
-          summaryCtx = TParamNodeNone() and argAp = apNone()
+          summaryCtx = TParameterPositionNone() and argAp = apNone()
         )
       )
       or
       // flow out of a callable
-      fwdFlowOutNotFromArg(node, state, cc, summaryCtx, argAp, ap, config)
+      exists(
+        DataFlowCall call, RetNodeEx ret, boolean allowsFieldFlow, CcNoCall innercc,
+        DataFlowCallable inner
+      |
+        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, config) and
+        flowOutOfCall(call, ret, _, node, allowsFieldFlow, config) and
+        inner = ret.getEnclosingCallable() and
+        cc = getCallContextReturn(inner, call, innercc) and
+        if allowsFieldFlow = false then ap instanceof ApNil else any()
+      )
       or
       // flow through a callable
-      exists(DataFlowCall call, ParamNode summaryCtx0, Ap argAp0 |
+      exists(DataFlowCall call, ParameterPosition summaryCtx0, Ap argAp0 |
         fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, config) and
         fwdFlowIsEntered(call, cc, summaryCtx, argAp, summaryCtx0, argAp0, config)
       )
@@ -1381,7 +1411,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowStore(
       NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc,
-      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
+      ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
     ) {
       exists(DataFlowType contentType |
         fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, config) and
@@ -1406,7 +1436,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowRead(
       Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc,
-      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
+      ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
     ) {
       fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, c, node2, config) and
@@ -1416,7 +1446,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowIn(
       DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, Cc innercc,
-      ParamNodeOption summaryCtx, ApOption argAp, Ap ap, Configuration config
+      ParameterPositionOption summaryCtx, ApOption argAp, Ap ap, Configuration config
     ) {
       exists(ArgNodeEx arg, boolean allowsFieldFlow |
         fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, config) and
@@ -1427,32 +1457,19 @@ private module MkStage<StageSig PrevStage> {
     }
 
     pragma[nomagic]
-    private predicate fwdFlowOutNotFromArg(
-      NodeEx out, FlowState state, Cc ccOut, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+    private predicate fwdFlowOutFromArg(
+      DataFlowCall call, NodeEx out, FlowState state, ParameterPosition summaryCtx, Ap argAp, Ap ap,
       Configuration config
     ) {
       exists(
-        DataFlowCall call, RetNodeEx ret, boolean allowsFieldFlow, CcNoCall innercc,
-        DataFlowCallable inner
+        DataFlowCallable c, RetNodeEx ret, ReturnKindExt kind, boolean allowsFieldFlow, CcCall ccc
       |
-        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, config) and
-        flowOutOfCall(call, ret, _, out, allowsFieldFlow, config) and
-        inner = ret.getEnclosingCallable() and
-        ccOut = getCallContextReturn(inner, call, innercc) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
-      )
-    }
-
-    pragma[nomagic]
-    private predicate fwdFlowOutFromArg(
-      DataFlowCall call, NodeEx out, FlowState state, ParamNode summaryCtx, Ap argAp, Ap ap,
-      Configuration config
-    ) {
-      exists(RetNodeEx ret, ReturnKindExt kind, boolean allowsFieldFlow, CcCall ccc |
-        fwdFlow(ret, state, ccc, TParamNodeSome(summaryCtx), apSome(argAp), ap, config) and
-        flowThroughOutOfCall(call, ccc, ret, kind, out, allowsFieldFlow, config) and
+        fwdFlow(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc),
+          TParameterPositionSome(pragma[only_bind_into](summaryCtx)), apSome(argAp), ap, config) and
+        flowThroughOutOfCall(call, pragma[only_bind_into](c), ccc, ret, kind, out, allowsFieldFlow,
+          config) and
         (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
-        parameterFlowThroughAllowed(summaryCtx, kind)
+        parameterFlowThroughAllowed(c, pragma[only_bind_into](summaryCtx), kind)
       )
     }
 
@@ -1462,13 +1479,13 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate fwdFlowIsEntered(
-      DataFlowCall call, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, ParamNode p, Ap ap,
-      Configuration config
+      DataFlowCall call, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      ParameterPosition pos, Ap ap, Configuration config
     ) {
       exists(ParamNodeEx param |
         fwdFlowIn(call, param, _, cc, _, summaryCtx, argAp, ap, config) and
         PrevStage::parameterMayFlowThrough(param, unbindApa(getApprox(ap)), config) and
-        p = param.asNode()
+        pos = param.getPosition()
       )
     }
 
@@ -1489,23 +1506,41 @@ private module MkStage<StageSig PrevStage> {
     }
 
     pragma[nomagic]
-    private predicate returnFlowsThrough(
-      RetNodeEx ret, ReturnPosition pos, FlowState state, CcCall ccc, ParamNode p, Ap argAp, Ap ap,
-      Configuration config
+    private predicate returnFlowsThrough0(
+      RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, DataFlowCallable c,
+      ParameterPosition ppos, Ap argAp, Ap ap, Configuration config
     ) {
-      fwdFlow(ret, state, ccc, TParamNodeSome(p), apSome(argAp), ap, config) and
-      pos = ret.getReturnPosition() and
-      parameterFlowThroughAllowed(p, pos.getKind())
+      exists(boolean allowsFieldFlow |
+        fwdFlow(ret, state, ccc, TParameterPositionSome(ppos), apSome(argAp), ap, config) and
+        flowThroughOutOfCall(_, c, _, pragma[only_bind_into](ret), kind, _, allowsFieldFlow,
+          pragma[only_bind_into](config)) and
+        if allowsFieldFlow = false then ap instanceof ApNil else any()
+      )
+    }
+
+    pragma[nomagic]
+    private predicate returnFlowsThrough(
+      RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, ParamNodeEx p, Ap argAp,
+      Ap ap, Configuration config
+    ) {
+      exists(DataFlowCallable c, ParameterPosition ppos |
+        returnFlowsThrough0(ret, kind, state, ccc, c, ppos, argAp, ap, config) and
+        p.isParameterOf(c, ppos) and
+        parameterFlowThroughAllowed(p, kind)
+      )
     }
 
     pragma[nomagic]
     private predicate flowThroughIntoCall(
       DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
     ) {
-      flowIntoCall(call, pragma[only_bind_into](arg), pragma[only_bind_into](p), allowsFieldFlow,
-        pragma[only_bind_into](config)) and
-      fwdFlow(arg, _, _, _, _, _, pragma[only_bind_into](config)) and
-      returnFlowsThrough(_, _, _, _, p.asNode(), _, _, pragma[only_bind_into](config))
+      exists(Ap argAp |
+        flowIntoCall(call, pragma[only_bind_into](arg), pragma[only_bind_into](p), allowsFieldFlow,
+          pragma[only_bind_into](config)) and
+        fwdFlow(arg, _, _, _, _, pragma[only_bind_into](argAp), pragma[only_bind_into](config)) and
+        returnFlowsThrough(_, _, _, _, p, pragma[only_bind_into](argAp), _,
+          pragma[only_bind_into](config))
+      )
     }
 
     /**
@@ -1591,21 +1626,25 @@ private module MkStage<StageSig PrevStage> {
       )
       or
       // flow into a callable
-      revFlowInNotToReturn(node, state, returnAp, ap, config) and
-      returnCtx = TReturnCtxNone()
+      exists(ParamNodeEx p, boolean allowsFieldFlow |
+        revFlow(p, state, TReturnCtxNone(), returnAp, ap, config) and
+        flowIntoCall(_, node, p, allowsFieldFlow, config) and
+        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
+        returnCtx = TReturnCtxNone()
+      )
       or
       // flow through a callable
-      exists(DataFlowCall call, ReturnPosition returnPos0, Ap returnAp0 |
-        revFlowInToReturn(call, node, state, returnPos0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnPos0, returnAp0, config)
+      exists(DataFlowCall call, ReturnKindExt returnKind0, Ap returnAp0 |
+        revFlowInToReturn(call, node, state, returnKind0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
       )
       or
       // flow out of a callable
-      exists(ReturnPosition pos |
-        revFlowOut(_, node, pos, state, _, _, ap, config) and
-        if returnFlowsThrough(node, pos, state, _, _, _, ap, config)
+      exists(ReturnKindExt kind |
+        revFlowOut(_, node, kind, state, _, _, ap, config) and
+        if returnFlowsThrough(node, kind, state, _, _, _, ap, config)
         then (
-          returnCtx = TReturnCtxMaybeFlowThrough(pos) and
+          returnCtx = TReturnCtxMaybeFlowThrough(kind) and
           returnAp = apSome(ap)
         ) else (
           returnCtx = TReturnCtxNoFlowThrough() and returnAp = apNone()
@@ -1638,37 +1677,27 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate revFlowOut(
-      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, FlowState state, ReturnCtx returnCtx,
+      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, FlowState state, ReturnCtx returnCtx,
       ApOption returnAp, Ap ap, Configuration config
     ) {
       exists(NodeEx out, boolean allowsFieldFlow |
         revFlow(out, state, returnCtx, returnAp, ap, config) and
-        flowOutOfCall(call, ret, pos, out, allowsFieldFlow, config) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
-      )
-    }
-
-    pragma[nomagic]
-    private predicate revFlowInNotToReturn(
-      ArgNodeEx arg, FlowState state, ApOption returnAp, Ap ap, Configuration config
-    ) {
-      exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(p, state, TReturnCtxNone(), returnAp, ap, config) and
-        flowIntoCall(_, arg, p, allowsFieldFlow, config) and
+        flowOutOfCall(call, ret, kind, out, allowsFieldFlow, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
     pragma[nomagic]
     private predicate revFlowInToReturn(
-      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnPosition returnPos, Ap returnAp,
-      Ap ap, Configuration config
+      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap,
+      Configuration config
     ) {
       exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(p, state, TReturnCtxMaybeFlowThrough(returnPos), apSome(returnAp), ap, config) and
+        revFlow(pragma[only_bind_into](p), state,
+          TReturnCtxMaybeFlowThrough(pragma[only_bind_into](kind)), apSome(returnAp), ap, config) and
         flowThroughIntoCall(call, arg, p, allowsFieldFlow, config) and
         (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
-        parameterFlowThroughAllowed(p.asNode(), returnPos.getKind())
+        parameterFlowThroughAllowed(p, kind)
       )
     }
 
@@ -1679,12 +1708,12 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate revFlowIsReturned(
-      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnPosition pos, Ap ap,
+      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnKindExt kind, Ap ap,
       Configuration config
     ) {
       exists(RetNodeEx ret, FlowState state, CcCall ccc |
-        revFlowOut(call, ret, pos, state, returnCtx, returnAp, ap, config) and
-        returnFlowsThrough(ret, pos, state, ccc, _, _, ap, config) and
+        revFlowOut(call, ret, kind, state, returnCtx, returnAp, ap, config) and
+        returnFlowsThrough(ret, kind, state, ccc, _, _, ap, config) and
         matchesCall(ccc, call)
       )
     }
@@ -1757,37 +1786,37 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate parameterFlowsThroughRev(
-      ParamNodeEx p, Ap ap, ReturnPosition returnPos, Configuration config
+      ParamNodeEx p, Ap ap, ReturnKindExt kind, Configuration config
     ) {
-      revFlow(p, _, TReturnCtxMaybeFlowThrough(returnPos), apSome(_), ap, config) and
-      parameterFlowThroughAllowed(p.asNode(), returnPos.getKind())
+      revFlow(p, _, TReturnCtxMaybeFlowThrough(kind), apSome(_), ap, config) and
+      parameterFlowThroughAllowed(p, kind)
     }
 
     pragma[nomagic]
     predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
-      exists(RetNodeEx ret, ReturnPosition pos |
-        returnFlowsThrough(ret, pos, _, _, p.asNode(), ap, _, config) and
-        parameterFlowsThroughRev(p, ap, pos, config)
+      exists(RetNodeEx ret, ReturnKindExt kind |
+        returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
+        parameterFlowsThroughRev(p, ap, kind, config)
       )
     }
 
     pragma[nomagic]
-    predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config) {
+    predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config) {
       exists(ParamNodeEx p, Ap ap |
-        returnFlowsThrough(ret, pos, _, _, p.asNode(), ap, _, config) and
-        parameterFlowsThroughRev(p, ap, pos, config)
+        returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
+        parameterFlowsThroughRev(p, ap, kind, config)
       )
     }
 
     pragma[nomagic]
     predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
       exists(
-        ReturnPosition returnPos0, Ap returnAp0, ArgNodeEx arg, FlowState state,
+        ReturnKindExt returnKind0, Ap returnAp0, ArgNodeEx arg, FlowState state,
         ReturnCtx returnCtx, ApOption returnAp, Ap ap
       |
         revFlow(arg, state, returnCtx, returnAp, ap, config) and
-        revFlowInToReturn(call, arg, state, returnPos0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnPos0, returnAp0, config)
+        revFlowInToReturn(call, arg, state, returnKind0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
       )
     }
 
@@ -1800,9 +1829,8 @@ private module MkStage<StageSig PrevStage> {
       conscand = count(TypedContent f0, Ap ap | fwdConsCand(f0, ap, config)) and
       states = count(FlowState state | fwdFlow(_, state, _, _, _, _, config)) and
       tuples =
-        count(NodeEx n, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap |
-          fwdFlow(n, state, cc, summaryCtx, argAp, ap, config)
-        )
+        count(NodeEx n, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+          Ap ap | fwdFlow(n, state, cc, summaryCtx, argAp, ap, config))
       or
       fwd = false and
       nodes = count(NodeEx node | revFlow(node, _, _, _, _, config)) and
@@ -1992,10 +2020,10 @@ private module Stage2 implements StageSig {
 
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand2(
-  DataFlowCall call, RetNodeEx node1, ReturnPosition pos, NodeEx node2, boolean allowsFieldFlow,
+  DataFlowCall call, RetNodeEx node1, ReturnKindExt kind, NodeEx node2, boolean allowsFieldFlow,
   Configuration config
 ) {
-  flowOutOfCallNodeCand1(call, node1, pos, node2, allowsFieldFlow, config) and
+  flowOutOfCallNodeCand1(call, node1, kind, node2, allowsFieldFlow, config) and
   Stage2::revFlow(node2, pragma[only_bind_into](config)) and
   Stage2::revFlowAlias(node1, pragma[only_bind_into](config))
 }
@@ -2511,11 +2539,11 @@ private module Stage4Param implements MkStage<Stage3>::StageParam {
 
   pragma[nomagic]
   predicate flowOutOfCall(
-    DataFlowCall call, RetNodeEx node1, ReturnPosition pos, NodeEx node2, boolean allowsFieldFlow,
+    DataFlowCall call, RetNodeEx node1, ReturnKindExt kind, NodeEx node2, boolean allowsFieldFlow,
     Configuration config
   ) {
     exists(FlowState state |
-      flowOutOfCallNodeCand2(call, node1, pos, node2, allowsFieldFlow, config) and
+      flowOutOfCallNodeCand2(call, node1, kind, node2, allowsFieldFlow, config) and
       PrevStage::revFlow(node2, pragma[only_bind_into](state), _, pragma[only_bind_into](config)) and
       PrevStage::revFlowAlias(node1, pragma[only_bind_into](state), _,
         pragma[only_bind_into](config))
@@ -2552,12 +2580,13 @@ private Configuration unbindConf(Configuration conf) {
 
 pragma[nomagic]
 private predicate nodeMayUseSummary0(
-  NodeEx n, ParamNodeEx p, FlowState state, AccessPathApprox apa, Configuration config
+  NodeEx n, DataFlowCallable c, ParameterPosition pos, FlowState state, AccessPathApprox apa,
+  Configuration config
 ) {
   exists(AccessPathApprox apa0 |
-    Stage4::parameterMayFlowThrough(p, _, _) and
+    c = n.getEnclosingCallable() and
     Stage4::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
-    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TParamNodeSome(p.asNode()),
+    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TParameterPositionSome(pos),
       TAccessPathApproxSome(apa), apa0, config)
   )
 }
@@ -2566,9 +2595,10 @@ pragma[nomagic]
 private predicate nodeMayUseSummary(
   NodeEx n, FlowState state, AccessPathApprox apa, Configuration config
 ) {
-  exists(ParamNodeEx p |
+  exists(DataFlowCallable c, ParameterPosition pos, ParamNodeEx p |
     Stage4::parameterMayFlowThrough(p, apa, config) and
-    nodeMayUseSummary0(n, p, state, apa, config)
+    nodeMayUseSummary0(n, c, pos, state, apa, config) and
+    p.isParameterOf(c, pos)
   )
 }
 
@@ -3501,7 +3531,7 @@ private predicate paramFlowsThrough(
     pathNode(mid, ret, state, cc, sc, ap, config, _) and
     kind = ret.getKind() and
     apa = ap.getApprox() and
-    parameterFlowThroughAllowed(sc.getParamNode().asNode(), kind)
+    parameterFlowThroughAllowed(sc.getParamNode(), kind)
   )
 }
 
diff --git a/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl.qll b/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl.qll
index a52ad110662..e4cfd5986be 100644
--- a/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl.qll
+++ b/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl.qll
@@ -613,11 +613,28 @@ private predicate hasSinkCallCtx(Configuration config) {
  * explicitly allowed
  */
 bindingset[p, kind]
-private predicate parameterFlowThroughAllowed(ParamNode p, ReturnKindExt kind) {
+private predicate parameterFlowThroughAllowed(ParamNodeEx p, ReturnKindExt kind) {
   exists(ParameterPosition pos | p.isParameterOf(_, pos) |
     not kind.(ParamUpdateReturnKind).getPosition() = pos
     or
-    allowParameterReturnInSelfCached(p)
+    allowParameterReturnInSelfCached(p.asNode())
+  )
+}
+
+/**
+ * Holds if flow from a parameter at position `pos` inside `c` to a return node of
+ * kind `kind` is allowed.
+ *
+ * We don't expect a parameter to return stored in itself, unless
+ * explicitly allowed
+ */
+bindingset[c, pos, kind]
+private predicate parameterFlowThroughAllowed(
+  DataFlowCallable c, ParameterPosition pos, ReturnKindExt kind
+) {
+  exists(ParamNodeEx p |
+    p.isParameterOf(c, pos) and
+    parameterFlowThroughAllowed(p, kind)
   )
 }
 
@@ -1000,14 +1017,14 @@ private module Stage1 implements StageSig {
       returnFlowCallableNodeCand(c, kind, config) and
       p.getEnclosingCallable() = c and
       exists(ap) and
-      parameterFlowThroughAllowed(p.asNode(), kind)
+      parameterFlowThroughAllowed(p, kind)
     )
   }
 
   pragma[nomagic]
-  predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config) {
+  predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config) {
     throughFlowNodeCand(ret, config) and
-    pos = ret.getReturnPosition()
+    kind = ret.getKind()
   }
 
   pragma[nomagic]
@@ -1066,13 +1083,16 @@ private predicate viableReturnPosOutNodeCand1(
  */
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand1(
-  DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, Configuration config
+  DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, Configuration config
 ) {
-  viableReturnPosOutNodeCand1(call, pos, out, config) and
-  pos = ret.getReturnPosition() and
-  Stage1::revFlow(ret, config) and
-  not outBarrier(ret, config) and
-  not inBarrier(out, config)
+  exists(ReturnPosition pos |
+    viableReturnPosOutNodeCand1(call, pos, out, config) and
+    pos = ret.getReturnPosition() and
+    kind = pos.getKind() and
+    Stage1::revFlow(ret, config) and
+    not outBarrier(ret, config) and
+    not inBarrier(out, config)
+  )
 }
 
 pragma[nomagic]
@@ -1102,6 +1122,7 @@ private predicate flowIntoCallNodeCand1(
  * edge in the graph of paths between sources and sinks that ignores call
  * contexts.
  */
+pragma[nomagic]
 private int branch(NodeEx n1, Configuration conf) {
   result =
     strictcount(NodeEx n |
@@ -1114,6 +1135,7 @@ private int branch(NodeEx n1, Configuration conf) {
  * edge in the graph of paths between sources and sinks that ignores call
  * contexts.
  */
+pragma[nomagic]
 private int join(NodeEx n2, Configuration conf) {
   result =
     strictcount(NodeEx n |
@@ -1130,10 +1152,10 @@ private int join(NodeEx n2, Configuration conf) {
  */
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand1(
-  DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
+  DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
   Configuration config
 ) {
-  flowOutOfCallNodeCand1(call, ret, pos, out, pragma[only_bind_into](config)) and
+  flowOutOfCallNodeCand1(call, ret, kind, out, pragma[only_bind_into](config)) and
   exists(int b, int j |
     b = branch(ret, pragma[only_bind_into](config)) and
     j = join(out, pragma[only_bind_into](config)) and
@@ -1152,10 +1174,10 @@ pragma[nomagic]
 private predicate flowIntoCallNodeCand1(
   DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
 ) {
-  flowIntoCallNodeCand1(call, arg, p, config) and
+  flowIntoCallNodeCand1(call, arg, p, pragma[only_bind_into](config)) and
   exists(int b, int j |
-    b = branch(arg, config) and
-    j = join(p, config) and
+    b = branch(arg, pragma[only_bind_into](config)) and
+    j = join(p, pragma[only_bind_into](config)) and
     if b.minimum(j) <= config.fieldFlowBranchLimit()
     then allowsFieldFlow = true
     else allowsFieldFlow = false
@@ -1174,7 +1196,7 @@ private signature module StageSig {
 
   predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config);
 
-  predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config);
+  predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config);
 
   predicate storeStepCand(
     NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, DataFlowType contentType,
@@ -1240,7 +1262,7 @@ private module MkStage<StageSig PrevStage> {
     );
 
     predicate flowOutOfCall(
-      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
+      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
       Configuration config
     );
 
@@ -1266,16 +1288,14 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate flowThroughOutOfCall(
-      DataFlowCall call, CcCall ccc, RetNodeEx ret, ReturnKindExt kind, NodeEx out,
-      boolean allowsFieldFlow, Configuration config
+      DataFlowCall call, DataFlowCallable c, CcCall ccc, RetNodeEx ret, ReturnKindExt kind,
+      NodeEx out, boolean allowsFieldFlow, Configuration config
     ) {
-      exists(ReturnPosition pos |
-        flowOutOfCall(call, ret, pos, out, allowsFieldFlow, pragma[only_bind_into](config)) and
-        kind = pos.getKind() and
-        PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
-        PrevStage::returnMayFlowThrough(ret, pos, pragma[only_bind_into](config)) and
-        matchesCall(ccc, call)
-      )
+      flowOutOfCall(call, ret, kind, out, allowsFieldFlow, pragma[only_bind_into](config)) and
+      PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
+      PrevStage::returnMayFlowThrough(ret, kind, pragma[only_bind_into](config)) and
+      matchesCall(ccc, call) and
+      c = ret.getEnclosingCallable()
     }
 
     /**
@@ -1284,12 +1304,12 @@ private module MkStage<StageSig PrevStage> {
      *
      * The call context `cc` records whether the node is reached through an
      * argument in a call, and if so, `summaryCtx` and `argAp` record the
-     * corresponding parameter and access path of that argument, respectively.
+     * corresponding parameter position and access path of that argument, respectively.
      */
     pragma[nomagic]
     additional predicate fwdFlow(
-      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
-      Configuration config
+      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      Ap ap, Configuration config
     ) {
       fwdFlow0(node, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::revFlow(node, state, unbindApa(getApprox(ap)), config) and
@@ -1298,13 +1318,13 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlow0(
-      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
-      Configuration config
+      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      Ap ap, Configuration config
     ) {
       sourceNode(node, state, config) and
       (if hasSourceCallCtx(config) then cc = ccSomeCall() else cc = ccNone()) and
       argAp = apNone() and
-      summaryCtx = TParamNodeNone() and
+      summaryCtx = TParameterPositionNone() and
       ap = getApNil(node)
       or
       exists(NodeEx mid, FlowState state0, Ap ap0, LocalCc localCc |
@@ -1322,7 +1342,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, pragma[only_bind_into](config)) and
         jumpStep(mid, node, config) and
         cc = ccNone() and
-        summaryCtx = TParamNodeNone() and
+        summaryCtx = TParameterPositionNone() and
         argAp = apNone()
       )
       or
@@ -1330,7 +1350,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, state, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStep(mid, node, config) and
         cc = ccNone() and
-        summaryCtx = TParamNodeNone() and
+        summaryCtx = TParameterPositionNone() and
         argAp = apNone() and
         ap = getApNil(node)
       )
@@ -1339,7 +1359,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, state0, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStateStep(mid, state0, node, state, config) and
         cc = ccNone() and
-        summaryCtx = TParamNodeNone() and
+        summaryCtx = TParameterPositionNone() and
         argAp = apNone() and
         ap = getApNil(node)
       )
@@ -1362,17 +1382,27 @@ private module MkStage<StageSig PrevStage> {
         apa = getApprox(ap) and
         if PrevStage::parameterMayFlowThrough(node, apa, config)
         then (
-          summaryCtx = TParamNodeSome(node.asNode()) and argAp = apSome(ap)
+          summaryCtx = TParameterPositionSome(node.(ParamNodeEx).getPosition()) and
+          argAp = apSome(ap)
         ) else (
-          summaryCtx = TParamNodeNone() and argAp = apNone()
+          summaryCtx = TParameterPositionNone() and argAp = apNone()
         )
       )
       or
       // flow out of a callable
-      fwdFlowOutNotFromArg(node, state, cc, summaryCtx, argAp, ap, config)
+      exists(
+        DataFlowCall call, RetNodeEx ret, boolean allowsFieldFlow, CcNoCall innercc,
+        DataFlowCallable inner
+      |
+        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, config) and
+        flowOutOfCall(call, ret, _, node, allowsFieldFlow, config) and
+        inner = ret.getEnclosingCallable() and
+        cc = getCallContextReturn(inner, call, innercc) and
+        if allowsFieldFlow = false then ap instanceof ApNil else any()
+      )
       or
       // flow through a callable
-      exists(DataFlowCall call, ParamNode summaryCtx0, Ap argAp0 |
+      exists(DataFlowCall call, ParameterPosition summaryCtx0, Ap argAp0 |
         fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, config) and
         fwdFlowIsEntered(call, cc, summaryCtx, argAp, summaryCtx0, argAp0, config)
       )
@@ -1381,7 +1411,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowStore(
       NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc,
-      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
+      ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
     ) {
       exists(DataFlowType contentType |
         fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, config) and
@@ -1406,7 +1436,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowRead(
       Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc,
-      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
+      ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
     ) {
       fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, c, node2, config) and
@@ -1416,7 +1446,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowIn(
       DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, Cc innercc,
-      ParamNodeOption summaryCtx, ApOption argAp, Ap ap, Configuration config
+      ParameterPositionOption summaryCtx, ApOption argAp, Ap ap, Configuration config
     ) {
       exists(ArgNodeEx arg, boolean allowsFieldFlow |
         fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, config) and
@@ -1427,32 +1457,19 @@ private module MkStage<StageSig PrevStage> {
     }
 
     pragma[nomagic]
-    private predicate fwdFlowOutNotFromArg(
-      NodeEx out, FlowState state, Cc ccOut, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+    private predicate fwdFlowOutFromArg(
+      DataFlowCall call, NodeEx out, FlowState state, ParameterPosition summaryCtx, Ap argAp, Ap ap,
       Configuration config
     ) {
       exists(
-        DataFlowCall call, RetNodeEx ret, boolean allowsFieldFlow, CcNoCall innercc,
-        DataFlowCallable inner
+        DataFlowCallable c, RetNodeEx ret, ReturnKindExt kind, boolean allowsFieldFlow, CcCall ccc
       |
-        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, config) and
-        flowOutOfCall(call, ret, _, out, allowsFieldFlow, config) and
-        inner = ret.getEnclosingCallable() and
-        ccOut = getCallContextReturn(inner, call, innercc) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
-      )
-    }
-
-    pragma[nomagic]
-    private predicate fwdFlowOutFromArg(
-      DataFlowCall call, NodeEx out, FlowState state, ParamNode summaryCtx, Ap argAp, Ap ap,
-      Configuration config
-    ) {
-      exists(RetNodeEx ret, ReturnKindExt kind, boolean allowsFieldFlow, CcCall ccc |
-        fwdFlow(ret, state, ccc, TParamNodeSome(summaryCtx), apSome(argAp), ap, config) and
-        flowThroughOutOfCall(call, ccc, ret, kind, out, allowsFieldFlow, config) and
+        fwdFlow(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc),
+          TParameterPositionSome(pragma[only_bind_into](summaryCtx)), apSome(argAp), ap, config) and
+        flowThroughOutOfCall(call, pragma[only_bind_into](c), ccc, ret, kind, out, allowsFieldFlow,
+          config) and
         (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
-        parameterFlowThroughAllowed(summaryCtx, kind)
+        parameterFlowThroughAllowed(c, pragma[only_bind_into](summaryCtx), kind)
       )
     }
 
@@ -1462,13 +1479,13 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate fwdFlowIsEntered(
-      DataFlowCall call, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, ParamNode p, Ap ap,
-      Configuration config
+      DataFlowCall call, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      ParameterPosition pos, Ap ap, Configuration config
     ) {
       exists(ParamNodeEx param |
         fwdFlowIn(call, param, _, cc, _, summaryCtx, argAp, ap, config) and
         PrevStage::parameterMayFlowThrough(param, unbindApa(getApprox(ap)), config) and
-        p = param.asNode()
+        pos = param.getPosition()
       )
     }
 
@@ -1489,23 +1506,41 @@ private module MkStage<StageSig PrevStage> {
     }
 
     pragma[nomagic]
-    private predicate returnFlowsThrough(
-      RetNodeEx ret, ReturnPosition pos, FlowState state, CcCall ccc, ParamNode p, Ap argAp, Ap ap,
-      Configuration config
+    private predicate returnFlowsThrough0(
+      RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, DataFlowCallable c,
+      ParameterPosition ppos, Ap argAp, Ap ap, Configuration config
     ) {
-      fwdFlow(ret, state, ccc, TParamNodeSome(p), apSome(argAp), ap, config) and
-      pos = ret.getReturnPosition() and
-      parameterFlowThroughAllowed(p, pos.getKind())
+      exists(boolean allowsFieldFlow |
+        fwdFlow(ret, state, ccc, TParameterPositionSome(ppos), apSome(argAp), ap, config) and
+        flowThroughOutOfCall(_, c, _, pragma[only_bind_into](ret), kind, _, allowsFieldFlow,
+          pragma[only_bind_into](config)) and
+        if allowsFieldFlow = false then ap instanceof ApNil else any()
+      )
+    }
+
+    pragma[nomagic]
+    private predicate returnFlowsThrough(
+      RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, ParamNodeEx p, Ap argAp,
+      Ap ap, Configuration config
+    ) {
+      exists(DataFlowCallable c, ParameterPosition ppos |
+        returnFlowsThrough0(ret, kind, state, ccc, c, ppos, argAp, ap, config) and
+        p.isParameterOf(c, ppos) and
+        parameterFlowThroughAllowed(p, kind)
+      )
     }
 
     pragma[nomagic]
     private predicate flowThroughIntoCall(
       DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
     ) {
-      flowIntoCall(call, pragma[only_bind_into](arg), pragma[only_bind_into](p), allowsFieldFlow,
-        pragma[only_bind_into](config)) and
-      fwdFlow(arg, _, _, _, _, _, pragma[only_bind_into](config)) and
-      returnFlowsThrough(_, _, _, _, p.asNode(), _, _, pragma[only_bind_into](config))
+      exists(Ap argAp |
+        flowIntoCall(call, pragma[only_bind_into](arg), pragma[only_bind_into](p), allowsFieldFlow,
+          pragma[only_bind_into](config)) and
+        fwdFlow(arg, _, _, _, _, pragma[only_bind_into](argAp), pragma[only_bind_into](config)) and
+        returnFlowsThrough(_, _, _, _, p, pragma[only_bind_into](argAp), _,
+          pragma[only_bind_into](config))
+      )
     }
 
     /**
@@ -1591,21 +1626,25 @@ private module MkStage<StageSig PrevStage> {
       )
       or
       // flow into a callable
-      revFlowInNotToReturn(node, state, returnAp, ap, config) and
-      returnCtx = TReturnCtxNone()
+      exists(ParamNodeEx p, boolean allowsFieldFlow |
+        revFlow(p, state, TReturnCtxNone(), returnAp, ap, config) and
+        flowIntoCall(_, node, p, allowsFieldFlow, config) and
+        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
+        returnCtx = TReturnCtxNone()
+      )
       or
       // flow through a callable
-      exists(DataFlowCall call, ReturnPosition returnPos0, Ap returnAp0 |
-        revFlowInToReturn(call, node, state, returnPos0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnPos0, returnAp0, config)
+      exists(DataFlowCall call, ReturnKindExt returnKind0, Ap returnAp0 |
+        revFlowInToReturn(call, node, state, returnKind0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
       )
       or
       // flow out of a callable
-      exists(ReturnPosition pos |
-        revFlowOut(_, node, pos, state, _, _, ap, config) and
-        if returnFlowsThrough(node, pos, state, _, _, _, ap, config)
+      exists(ReturnKindExt kind |
+        revFlowOut(_, node, kind, state, _, _, ap, config) and
+        if returnFlowsThrough(node, kind, state, _, _, _, ap, config)
         then (
-          returnCtx = TReturnCtxMaybeFlowThrough(pos) and
+          returnCtx = TReturnCtxMaybeFlowThrough(kind) and
           returnAp = apSome(ap)
         ) else (
           returnCtx = TReturnCtxNoFlowThrough() and returnAp = apNone()
@@ -1638,37 +1677,27 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate revFlowOut(
-      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, FlowState state, ReturnCtx returnCtx,
+      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, FlowState state, ReturnCtx returnCtx,
       ApOption returnAp, Ap ap, Configuration config
     ) {
       exists(NodeEx out, boolean allowsFieldFlow |
         revFlow(out, state, returnCtx, returnAp, ap, config) and
-        flowOutOfCall(call, ret, pos, out, allowsFieldFlow, config) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
-      )
-    }
-
-    pragma[nomagic]
-    private predicate revFlowInNotToReturn(
-      ArgNodeEx arg, FlowState state, ApOption returnAp, Ap ap, Configuration config
-    ) {
-      exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(p, state, TReturnCtxNone(), returnAp, ap, config) and
-        flowIntoCall(_, arg, p, allowsFieldFlow, config) and
+        flowOutOfCall(call, ret, kind, out, allowsFieldFlow, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
     pragma[nomagic]
     private predicate revFlowInToReturn(
-      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnPosition returnPos, Ap returnAp,
-      Ap ap, Configuration config
+      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap,
+      Configuration config
     ) {
       exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(p, state, TReturnCtxMaybeFlowThrough(returnPos), apSome(returnAp), ap, config) and
+        revFlow(pragma[only_bind_into](p), state,
+          TReturnCtxMaybeFlowThrough(pragma[only_bind_into](kind)), apSome(returnAp), ap, config) and
         flowThroughIntoCall(call, arg, p, allowsFieldFlow, config) and
         (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
-        parameterFlowThroughAllowed(p.asNode(), returnPos.getKind())
+        parameterFlowThroughAllowed(p, kind)
       )
     }
 
@@ -1679,12 +1708,12 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate revFlowIsReturned(
-      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnPosition pos, Ap ap,
+      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnKindExt kind, Ap ap,
       Configuration config
     ) {
       exists(RetNodeEx ret, FlowState state, CcCall ccc |
-        revFlowOut(call, ret, pos, state, returnCtx, returnAp, ap, config) and
-        returnFlowsThrough(ret, pos, state, ccc, _, _, ap, config) and
+        revFlowOut(call, ret, kind, state, returnCtx, returnAp, ap, config) and
+        returnFlowsThrough(ret, kind, state, ccc, _, _, ap, config) and
         matchesCall(ccc, call)
       )
     }
@@ -1757,37 +1786,37 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate parameterFlowsThroughRev(
-      ParamNodeEx p, Ap ap, ReturnPosition returnPos, Configuration config
+      ParamNodeEx p, Ap ap, ReturnKindExt kind, Configuration config
     ) {
-      revFlow(p, _, TReturnCtxMaybeFlowThrough(returnPos), apSome(_), ap, config) and
-      parameterFlowThroughAllowed(p.asNode(), returnPos.getKind())
+      revFlow(p, _, TReturnCtxMaybeFlowThrough(kind), apSome(_), ap, config) and
+      parameterFlowThroughAllowed(p, kind)
     }
 
     pragma[nomagic]
     predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
-      exists(RetNodeEx ret, ReturnPosition pos |
-        returnFlowsThrough(ret, pos, _, _, p.asNode(), ap, _, config) and
-        parameterFlowsThroughRev(p, ap, pos, config)
+      exists(RetNodeEx ret, ReturnKindExt kind |
+        returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
+        parameterFlowsThroughRev(p, ap, kind, config)
       )
     }
 
     pragma[nomagic]
-    predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config) {
+    predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config) {
       exists(ParamNodeEx p, Ap ap |
-        returnFlowsThrough(ret, pos, _, _, p.asNode(), ap, _, config) and
-        parameterFlowsThroughRev(p, ap, pos, config)
+        returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
+        parameterFlowsThroughRev(p, ap, kind, config)
       )
     }
 
     pragma[nomagic]
     predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
       exists(
-        ReturnPosition returnPos0, Ap returnAp0, ArgNodeEx arg, FlowState state,
+        ReturnKindExt returnKind0, Ap returnAp0, ArgNodeEx arg, FlowState state,
         ReturnCtx returnCtx, ApOption returnAp, Ap ap
       |
         revFlow(arg, state, returnCtx, returnAp, ap, config) and
-        revFlowInToReturn(call, arg, state, returnPos0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnPos0, returnAp0, config)
+        revFlowInToReturn(call, arg, state, returnKind0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
       )
     }
 
@@ -1800,9 +1829,8 @@ private module MkStage<StageSig PrevStage> {
       conscand = count(TypedContent f0, Ap ap | fwdConsCand(f0, ap, config)) and
       states = count(FlowState state | fwdFlow(_, state, _, _, _, _, config)) and
       tuples =
-        count(NodeEx n, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap |
-          fwdFlow(n, state, cc, summaryCtx, argAp, ap, config)
-        )
+        count(NodeEx n, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+          Ap ap | fwdFlow(n, state, cc, summaryCtx, argAp, ap, config))
       or
       fwd = false and
       nodes = count(NodeEx node | revFlow(node, _, _, _, _, config)) and
@@ -1992,10 +2020,10 @@ private module Stage2 implements StageSig {
 
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand2(
-  DataFlowCall call, RetNodeEx node1, ReturnPosition pos, NodeEx node2, boolean allowsFieldFlow,
+  DataFlowCall call, RetNodeEx node1, ReturnKindExt kind, NodeEx node2, boolean allowsFieldFlow,
   Configuration config
 ) {
-  flowOutOfCallNodeCand1(call, node1, pos, node2, allowsFieldFlow, config) and
+  flowOutOfCallNodeCand1(call, node1, kind, node2, allowsFieldFlow, config) and
   Stage2::revFlow(node2, pragma[only_bind_into](config)) and
   Stage2::revFlowAlias(node1, pragma[only_bind_into](config))
 }
@@ -2511,11 +2539,11 @@ private module Stage4Param implements MkStage<Stage3>::StageParam {
 
   pragma[nomagic]
   predicate flowOutOfCall(
-    DataFlowCall call, RetNodeEx node1, ReturnPosition pos, NodeEx node2, boolean allowsFieldFlow,
+    DataFlowCall call, RetNodeEx node1, ReturnKindExt kind, NodeEx node2, boolean allowsFieldFlow,
     Configuration config
   ) {
     exists(FlowState state |
-      flowOutOfCallNodeCand2(call, node1, pos, node2, allowsFieldFlow, config) and
+      flowOutOfCallNodeCand2(call, node1, kind, node2, allowsFieldFlow, config) and
       PrevStage::revFlow(node2, pragma[only_bind_into](state), _, pragma[only_bind_into](config)) and
       PrevStage::revFlowAlias(node1, pragma[only_bind_into](state), _,
         pragma[only_bind_into](config))
@@ -2552,12 +2580,13 @@ private Configuration unbindConf(Configuration conf) {
 
 pragma[nomagic]
 private predicate nodeMayUseSummary0(
-  NodeEx n, ParamNodeEx p, FlowState state, AccessPathApprox apa, Configuration config
+  NodeEx n, DataFlowCallable c, ParameterPosition pos, FlowState state, AccessPathApprox apa,
+  Configuration config
 ) {
   exists(AccessPathApprox apa0 |
-    Stage4::parameterMayFlowThrough(p, _, _) and
+    c = n.getEnclosingCallable() and
     Stage4::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
-    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TParamNodeSome(p.asNode()),
+    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TParameterPositionSome(pos),
       TAccessPathApproxSome(apa), apa0, config)
   )
 }
@@ -2566,9 +2595,10 @@ pragma[nomagic]
 private predicate nodeMayUseSummary(
   NodeEx n, FlowState state, AccessPathApprox apa, Configuration config
 ) {
-  exists(ParamNodeEx p |
+  exists(DataFlowCallable c, ParameterPosition pos, ParamNodeEx p |
     Stage4::parameterMayFlowThrough(p, apa, config) and
-    nodeMayUseSummary0(n, p, state, apa, config)
+    nodeMayUseSummary0(n, c, pos, state, apa, config) and
+    p.isParameterOf(c, pos)
   )
 }
 
@@ -3501,7 +3531,7 @@ private predicate paramFlowsThrough(
     pathNode(mid, ret, state, cc, sc, ap, config, _) and
     kind = ret.getKind() and
     apa = ap.getApprox() and
-    parameterFlowThroughAllowed(sc.getParamNode().asNode(), kind)
+    parameterFlowThroughAllowed(sc.getParamNode(), kind)
   )
 }
 
diff --git a/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl2.qll b/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl2.qll
index a52ad110662..e4cfd5986be 100644
--- a/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl2.qll
+++ b/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl2.qll
@@ -613,11 +613,28 @@ private predicate hasSinkCallCtx(Configuration config) {
  * explicitly allowed
  */
 bindingset[p, kind]
-private predicate parameterFlowThroughAllowed(ParamNode p, ReturnKindExt kind) {
+private predicate parameterFlowThroughAllowed(ParamNodeEx p, ReturnKindExt kind) {
   exists(ParameterPosition pos | p.isParameterOf(_, pos) |
     not kind.(ParamUpdateReturnKind).getPosition() = pos
     or
-    allowParameterReturnInSelfCached(p)
+    allowParameterReturnInSelfCached(p.asNode())
+  )
+}
+
+/**
+ * Holds if flow from a parameter at position `pos` inside `c` to a return node of
+ * kind `kind` is allowed.
+ *
+ * We don't expect a parameter to return stored in itself, unless
+ * explicitly allowed
+ */
+bindingset[c, pos, kind]
+private predicate parameterFlowThroughAllowed(
+  DataFlowCallable c, ParameterPosition pos, ReturnKindExt kind
+) {
+  exists(ParamNodeEx p |
+    p.isParameterOf(c, pos) and
+    parameterFlowThroughAllowed(p, kind)
   )
 }
 
@@ -1000,14 +1017,14 @@ private module Stage1 implements StageSig {
       returnFlowCallableNodeCand(c, kind, config) and
       p.getEnclosingCallable() = c and
       exists(ap) and
-      parameterFlowThroughAllowed(p.asNode(), kind)
+      parameterFlowThroughAllowed(p, kind)
     )
   }
 
   pragma[nomagic]
-  predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config) {
+  predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config) {
     throughFlowNodeCand(ret, config) and
-    pos = ret.getReturnPosition()
+    kind = ret.getKind()
   }
 
   pragma[nomagic]
@@ -1066,13 +1083,16 @@ private predicate viableReturnPosOutNodeCand1(
  */
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand1(
-  DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, Configuration config
+  DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, Configuration config
 ) {
-  viableReturnPosOutNodeCand1(call, pos, out, config) and
-  pos = ret.getReturnPosition() and
-  Stage1::revFlow(ret, config) and
-  not outBarrier(ret, config) and
-  not inBarrier(out, config)
+  exists(ReturnPosition pos |
+    viableReturnPosOutNodeCand1(call, pos, out, config) and
+    pos = ret.getReturnPosition() and
+    kind = pos.getKind() and
+    Stage1::revFlow(ret, config) and
+    not outBarrier(ret, config) and
+    not inBarrier(out, config)
+  )
 }
 
 pragma[nomagic]
@@ -1102,6 +1122,7 @@ private predicate flowIntoCallNodeCand1(
  * edge in the graph of paths between sources and sinks that ignores call
  * contexts.
  */
+pragma[nomagic]
 private int branch(NodeEx n1, Configuration conf) {
   result =
     strictcount(NodeEx n |
@@ -1114,6 +1135,7 @@ private int branch(NodeEx n1, Configuration conf) {
  * edge in the graph of paths between sources and sinks that ignores call
  * contexts.
  */
+pragma[nomagic]
 private int join(NodeEx n2, Configuration conf) {
   result =
     strictcount(NodeEx n |
@@ -1130,10 +1152,10 @@ private int join(NodeEx n2, Configuration conf) {
  */
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand1(
-  DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
+  DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
   Configuration config
 ) {
-  flowOutOfCallNodeCand1(call, ret, pos, out, pragma[only_bind_into](config)) and
+  flowOutOfCallNodeCand1(call, ret, kind, out, pragma[only_bind_into](config)) and
   exists(int b, int j |
     b = branch(ret, pragma[only_bind_into](config)) and
     j = join(out, pragma[only_bind_into](config)) and
@@ -1152,10 +1174,10 @@ pragma[nomagic]
 private predicate flowIntoCallNodeCand1(
   DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
 ) {
-  flowIntoCallNodeCand1(call, arg, p, config) and
+  flowIntoCallNodeCand1(call, arg, p, pragma[only_bind_into](config)) and
   exists(int b, int j |
-    b = branch(arg, config) and
-    j = join(p, config) and
+    b = branch(arg, pragma[only_bind_into](config)) and
+    j = join(p, pragma[only_bind_into](config)) and
     if b.minimum(j) <= config.fieldFlowBranchLimit()
     then allowsFieldFlow = true
     else allowsFieldFlow = false
@@ -1174,7 +1196,7 @@ private signature module StageSig {
 
   predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config);
 
-  predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config);
+  predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config);
 
   predicate storeStepCand(
     NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, DataFlowType contentType,
@@ -1240,7 +1262,7 @@ private module MkStage<StageSig PrevStage> {
     );
 
     predicate flowOutOfCall(
-      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
+      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
       Configuration config
     );
 
@@ -1266,16 +1288,14 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate flowThroughOutOfCall(
-      DataFlowCall call, CcCall ccc, RetNodeEx ret, ReturnKindExt kind, NodeEx out,
-      boolean allowsFieldFlow, Configuration config
+      DataFlowCall call, DataFlowCallable c, CcCall ccc, RetNodeEx ret, ReturnKindExt kind,
+      NodeEx out, boolean allowsFieldFlow, Configuration config
     ) {
-      exists(ReturnPosition pos |
-        flowOutOfCall(call, ret, pos, out, allowsFieldFlow, pragma[only_bind_into](config)) and
-        kind = pos.getKind() and
-        PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
-        PrevStage::returnMayFlowThrough(ret, pos, pragma[only_bind_into](config)) and
-        matchesCall(ccc, call)
-      )
+      flowOutOfCall(call, ret, kind, out, allowsFieldFlow, pragma[only_bind_into](config)) and
+      PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
+      PrevStage::returnMayFlowThrough(ret, kind, pragma[only_bind_into](config)) and
+      matchesCall(ccc, call) and
+      c = ret.getEnclosingCallable()
     }
 
     /**
@@ -1284,12 +1304,12 @@ private module MkStage<StageSig PrevStage> {
      *
      * The call context `cc` records whether the node is reached through an
      * argument in a call, and if so, `summaryCtx` and `argAp` record the
-     * corresponding parameter and access path of that argument, respectively.
+     * corresponding parameter position and access path of that argument, respectively.
      */
     pragma[nomagic]
     additional predicate fwdFlow(
-      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
-      Configuration config
+      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      Ap ap, Configuration config
     ) {
       fwdFlow0(node, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::revFlow(node, state, unbindApa(getApprox(ap)), config) and
@@ -1298,13 +1318,13 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlow0(
-      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
-      Configuration config
+      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      Ap ap, Configuration config
     ) {
       sourceNode(node, state, config) and
       (if hasSourceCallCtx(config) then cc = ccSomeCall() else cc = ccNone()) and
       argAp = apNone() and
-      summaryCtx = TParamNodeNone() and
+      summaryCtx = TParameterPositionNone() and
       ap = getApNil(node)
       or
       exists(NodeEx mid, FlowState state0, Ap ap0, LocalCc localCc |
@@ -1322,7 +1342,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, pragma[only_bind_into](config)) and
         jumpStep(mid, node, config) and
         cc = ccNone() and
-        summaryCtx = TParamNodeNone() and
+        summaryCtx = TParameterPositionNone() and
         argAp = apNone()
       )
       or
@@ -1330,7 +1350,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, state, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStep(mid, node, config) and
         cc = ccNone() and
-        summaryCtx = TParamNodeNone() and
+        summaryCtx = TParameterPositionNone() and
         argAp = apNone() and
         ap = getApNil(node)
       )
@@ -1339,7 +1359,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, state0, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStateStep(mid, state0, node, state, config) and
         cc = ccNone() and
-        summaryCtx = TParamNodeNone() and
+        summaryCtx = TParameterPositionNone() and
         argAp = apNone() and
         ap = getApNil(node)
       )
@@ -1362,17 +1382,27 @@ private module MkStage<StageSig PrevStage> {
         apa = getApprox(ap) and
         if PrevStage::parameterMayFlowThrough(node, apa, config)
         then (
-          summaryCtx = TParamNodeSome(node.asNode()) and argAp = apSome(ap)
+          summaryCtx = TParameterPositionSome(node.(ParamNodeEx).getPosition()) and
+          argAp = apSome(ap)
         ) else (
-          summaryCtx = TParamNodeNone() and argAp = apNone()
+          summaryCtx = TParameterPositionNone() and argAp = apNone()
         )
       )
       or
       // flow out of a callable
-      fwdFlowOutNotFromArg(node, state, cc, summaryCtx, argAp, ap, config)
+      exists(
+        DataFlowCall call, RetNodeEx ret, boolean allowsFieldFlow, CcNoCall innercc,
+        DataFlowCallable inner
+      |
+        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, config) and
+        flowOutOfCall(call, ret, _, node, allowsFieldFlow, config) and
+        inner = ret.getEnclosingCallable() and
+        cc = getCallContextReturn(inner, call, innercc) and
+        if allowsFieldFlow = false then ap instanceof ApNil else any()
+      )
       or
       // flow through a callable
-      exists(DataFlowCall call, ParamNode summaryCtx0, Ap argAp0 |
+      exists(DataFlowCall call, ParameterPosition summaryCtx0, Ap argAp0 |
         fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, config) and
         fwdFlowIsEntered(call, cc, summaryCtx, argAp, summaryCtx0, argAp0, config)
       )
@@ -1381,7 +1411,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowStore(
       NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc,
-      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
+      ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
     ) {
       exists(DataFlowType contentType |
         fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, config) and
@@ -1406,7 +1436,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowRead(
       Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc,
-      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
+      ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
     ) {
       fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, c, node2, config) and
@@ -1416,7 +1446,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowIn(
       DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, Cc innercc,
-      ParamNodeOption summaryCtx, ApOption argAp, Ap ap, Configuration config
+      ParameterPositionOption summaryCtx, ApOption argAp, Ap ap, Configuration config
     ) {
       exists(ArgNodeEx arg, boolean allowsFieldFlow |
         fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, config) and
@@ -1427,32 +1457,19 @@ private module MkStage<StageSig PrevStage> {
     }
 
     pragma[nomagic]
-    private predicate fwdFlowOutNotFromArg(
-      NodeEx out, FlowState state, Cc ccOut, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+    private predicate fwdFlowOutFromArg(
+      DataFlowCall call, NodeEx out, FlowState state, ParameterPosition summaryCtx, Ap argAp, Ap ap,
       Configuration config
     ) {
       exists(
-        DataFlowCall call, RetNodeEx ret, boolean allowsFieldFlow, CcNoCall innercc,
-        DataFlowCallable inner
+        DataFlowCallable c, RetNodeEx ret, ReturnKindExt kind, boolean allowsFieldFlow, CcCall ccc
       |
-        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, config) and
-        flowOutOfCall(call, ret, _, out, allowsFieldFlow, config) and
-        inner = ret.getEnclosingCallable() and
-        ccOut = getCallContextReturn(inner, call, innercc) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
-      )
-    }
-
-    pragma[nomagic]
-    private predicate fwdFlowOutFromArg(
-      DataFlowCall call, NodeEx out, FlowState state, ParamNode summaryCtx, Ap argAp, Ap ap,
-      Configuration config
-    ) {
-      exists(RetNodeEx ret, ReturnKindExt kind, boolean allowsFieldFlow, CcCall ccc |
-        fwdFlow(ret, state, ccc, TParamNodeSome(summaryCtx), apSome(argAp), ap, config) and
-        flowThroughOutOfCall(call, ccc, ret, kind, out, allowsFieldFlow, config) and
+        fwdFlow(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc),
+          TParameterPositionSome(pragma[only_bind_into](summaryCtx)), apSome(argAp), ap, config) and
+        flowThroughOutOfCall(call, pragma[only_bind_into](c), ccc, ret, kind, out, allowsFieldFlow,
+          config) and
         (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
-        parameterFlowThroughAllowed(summaryCtx, kind)
+        parameterFlowThroughAllowed(c, pragma[only_bind_into](summaryCtx), kind)
       )
     }
 
@@ -1462,13 +1479,13 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate fwdFlowIsEntered(
-      DataFlowCall call, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, ParamNode p, Ap ap,
-      Configuration config
+      DataFlowCall call, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      ParameterPosition pos, Ap ap, Configuration config
     ) {
       exists(ParamNodeEx param |
         fwdFlowIn(call, param, _, cc, _, summaryCtx, argAp, ap, config) and
         PrevStage::parameterMayFlowThrough(param, unbindApa(getApprox(ap)), config) and
-        p = param.asNode()
+        pos = param.getPosition()
       )
     }
 
@@ -1489,23 +1506,41 @@ private module MkStage<StageSig PrevStage> {
     }
 
     pragma[nomagic]
-    private predicate returnFlowsThrough(
-      RetNodeEx ret, ReturnPosition pos, FlowState state, CcCall ccc, ParamNode p, Ap argAp, Ap ap,
-      Configuration config
+    private predicate returnFlowsThrough0(
+      RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, DataFlowCallable c,
+      ParameterPosition ppos, Ap argAp, Ap ap, Configuration config
     ) {
-      fwdFlow(ret, state, ccc, TParamNodeSome(p), apSome(argAp), ap, config) and
-      pos = ret.getReturnPosition() and
-      parameterFlowThroughAllowed(p, pos.getKind())
+      exists(boolean allowsFieldFlow |
+        fwdFlow(ret, state, ccc, TParameterPositionSome(ppos), apSome(argAp), ap, config) and
+        flowThroughOutOfCall(_, c, _, pragma[only_bind_into](ret), kind, _, allowsFieldFlow,
+          pragma[only_bind_into](config)) and
+        if allowsFieldFlow = false then ap instanceof ApNil else any()
+      )
+    }
+
+    pragma[nomagic]
+    private predicate returnFlowsThrough(
+      RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, ParamNodeEx p, Ap argAp,
+      Ap ap, Configuration config
+    ) {
+      exists(DataFlowCallable c, ParameterPosition ppos |
+        returnFlowsThrough0(ret, kind, state, ccc, c, ppos, argAp, ap, config) and
+        p.isParameterOf(c, ppos) and
+        parameterFlowThroughAllowed(p, kind)
+      )
     }
 
     pragma[nomagic]
     private predicate flowThroughIntoCall(
       DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
     ) {
-      flowIntoCall(call, pragma[only_bind_into](arg), pragma[only_bind_into](p), allowsFieldFlow,
-        pragma[only_bind_into](config)) and
-      fwdFlow(arg, _, _, _, _, _, pragma[only_bind_into](config)) and
-      returnFlowsThrough(_, _, _, _, p.asNode(), _, _, pragma[only_bind_into](config))
+      exists(Ap argAp |
+        flowIntoCall(call, pragma[only_bind_into](arg), pragma[only_bind_into](p), allowsFieldFlow,
+          pragma[only_bind_into](config)) and
+        fwdFlow(arg, _, _, _, _, pragma[only_bind_into](argAp), pragma[only_bind_into](config)) and
+        returnFlowsThrough(_, _, _, _, p, pragma[only_bind_into](argAp), _,
+          pragma[only_bind_into](config))
+      )
     }
 
     /**
@@ -1591,21 +1626,25 @@ private module MkStage<StageSig PrevStage> {
       )
       or
       // flow into a callable
-      revFlowInNotToReturn(node, state, returnAp, ap, config) and
-      returnCtx = TReturnCtxNone()
+      exists(ParamNodeEx p, boolean allowsFieldFlow |
+        revFlow(p, state, TReturnCtxNone(), returnAp, ap, config) and
+        flowIntoCall(_, node, p, allowsFieldFlow, config) and
+        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
+        returnCtx = TReturnCtxNone()
+      )
       or
       // flow through a callable
-      exists(DataFlowCall call, ReturnPosition returnPos0, Ap returnAp0 |
-        revFlowInToReturn(call, node, state, returnPos0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnPos0, returnAp0, config)
+      exists(DataFlowCall call, ReturnKindExt returnKind0, Ap returnAp0 |
+        revFlowInToReturn(call, node, state, returnKind0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
       )
       or
       // flow out of a callable
-      exists(ReturnPosition pos |
-        revFlowOut(_, node, pos, state, _, _, ap, config) and
-        if returnFlowsThrough(node, pos, state, _, _, _, ap, config)
+      exists(ReturnKindExt kind |
+        revFlowOut(_, node, kind, state, _, _, ap, config) and
+        if returnFlowsThrough(node, kind, state, _, _, _, ap, config)
         then (
-          returnCtx = TReturnCtxMaybeFlowThrough(pos) and
+          returnCtx = TReturnCtxMaybeFlowThrough(kind) and
           returnAp = apSome(ap)
         ) else (
           returnCtx = TReturnCtxNoFlowThrough() and returnAp = apNone()
@@ -1638,37 +1677,27 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate revFlowOut(
-      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, FlowState state, ReturnCtx returnCtx,
+      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, FlowState state, ReturnCtx returnCtx,
       ApOption returnAp, Ap ap, Configuration config
     ) {
       exists(NodeEx out, boolean allowsFieldFlow |
         revFlow(out, state, returnCtx, returnAp, ap, config) and
-        flowOutOfCall(call, ret, pos, out, allowsFieldFlow, config) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
-      )
-    }
-
-    pragma[nomagic]
-    private predicate revFlowInNotToReturn(
-      ArgNodeEx arg, FlowState state, ApOption returnAp, Ap ap, Configuration config
-    ) {
-      exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(p, state, TReturnCtxNone(), returnAp, ap, config) and
-        flowIntoCall(_, arg, p, allowsFieldFlow, config) and
+        flowOutOfCall(call, ret, kind, out, allowsFieldFlow, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
     pragma[nomagic]
     private predicate revFlowInToReturn(
-      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnPosition returnPos, Ap returnAp,
-      Ap ap, Configuration config
+      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap,
+      Configuration config
     ) {
       exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(p, state, TReturnCtxMaybeFlowThrough(returnPos), apSome(returnAp), ap, config) and
+        revFlow(pragma[only_bind_into](p), state,
+          TReturnCtxMaybeFlowThrough(pragma[only_bind_into](kind)), apSome(returnAp), ap, config) and
         flowThroughIntoCall(call, arg, p, allowsFieldFlow, config) and
         (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
-        parameterFlowThroughAllowed(p.asNode(), returnPos.getKind())
+        parameterFlowThroughAllowed(p, kind)
       )
     }
 
@@ -1679,12 +1708,12 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate revFlowIsReturned(
-      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnPosition pos, Ap ap,
+      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnKindExt kind, Ap ap,
       Configuration config
     ) {
       exists(RetNodeEx ret, FlowState state, CcCall ccc |
-        revFlowOut(call, ret, pos, state, returnCtx, returnAp, ap, config) and
-        returnFlowsThrough(ret, pos, state, ccc, _, _, ap, config) and
+        revFlowOut(call, ret, kind, state, returnCtx, returnAp, ap, config) and
+        returnFlowsThrough(ret, kind, state, ccc, _, _, ap, config) and
         matchesCall(ccc, call)
       )
     }
@@ -1757,37 +1786,37 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate parameterFlowsThroughRev(
-      ParamNodeEx p, Ap ap, ReturnPosition returnPos, Configuration config
+      ParamNodeEx p, Ap ap, ReturnKindExt kind, Configuration config
     ) {
-      revFlow(p, _, TReturnCtxMaybeFlowThrough(returnPos), apSome(_), ap, config) and
-      parameterFlowThroughAllowed(p.asNode(), returnPos.getKind())
+      revFlow(p, _, TReturnCtxMaybeFlowThrough(kind), apSome(_), ap, config) and
+      parameterFlowThroughAllowed(p, kind)
     }
 
     pragma[nomagic]
     predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
-      exists(RetNodeEx ret, ReturnPosition pos |
-        returnFlowsThrough(ret, pos, _, _, p.asNode(), ap, _, config) and
-        parameterFlowsThroughRev(p, ap, pos, config)
+      exists(RetNodeEx ret, ReturnKindExt kind |
+        returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
+        parameterFlowsThroughRev(p, ap, kind, config)
       )
     }
 
     pragma[nomagic]
-    predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config) {
+    predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config) {
       exists(ParamNodeEx p, Ap ap |
-        returnFlowsThrough(ret, pos, _, _, p.asNode(), ap, _, config) and
-        parameterFlowsThroughRev(p, ap, pos, config)
+        returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
+        parameterFlowsThroughRev(p, ap, kind, config)
       )
     }
 
     pragma[nomagic]
     predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
       exists(
-        ReturnPosition returnPos0, Ap returnAp0, ArgNodeEx arg, FlowState state,
+        ReturnKindExt returnKind0, Ap returnAp0, ArgNodeEx arg, FlowState state,
         ReturnCtx returnCtx, ApOption returnAp, Ap ap
       |
         revFlow(arg, state, returnCtx, returnAp, ap, config) and
-        revFlowInToReturn(call, arg, state, returnPos0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnPos0, returnAp0, config)
+        revFlowInToReturn(call, arg, state, returnKind0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
       )
     }
 
@@ -1800,9 +1829,8 @@ private module MkStage<StageSig PrevStage> {
       conscand = count(TypedContent f0, Ap ap | fwdConsCand(f0, ap, config)) and
       states = count(FlowState state | fwdFlow(_, state, _, _, _, _, config)) and
       tuples =
-        count(NodeEx n, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap |
-          fwdFlow(n, state, cc, summaryCtx, argAp, ap, config)
-        )
+        count(NodeEx n, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+          Ap ap | fwdFlow(n, state, cc, summaryCtx, argAp, ap, config))
       or
       fwd = false and
       nodes = count(NodeEx node | revFlow(node, _, _, _, _, config)) and
@@ -1992,10 +2020,10 @@ private module Stage2 implements StageSig {
 
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand2(
-  DataFlowCall call, RetNodeEx node1, ReturnPosition pos, NodeEx node2, boolean allowsFieldFlow,
+  DataFlowCall call, RetNodeEx node1, ReturnKindExt kind, NodeEx node2, boolean allowsFieldFlow,
   Configuration config
 ) {
-  flowOutOfCallNodeCand1(call, node1, pos, node2, allowsFieldFlow, config) and
+  flowOutOfCallNodeCand1(call, node1, kind, node2, allowsFieldFlow, config) and
   Stage2::revFlow(node2, pragma[only_bind_into](config)) and
   Stage2::revFlowAlias(node1, pragma[only_bind_into](config))
 }
@@ -2511,11 +2539,11 @@ private module Stage4Param implements MkStage<Stage3>::StageParam {
 
   pragma[nomagic]
   predicate flowOutOfCall(
-    DataFlowCall call, RetNodeEx node1, ReturnPosition pos, NodeEx node2, boolean allowsFieldFlow,
+    DataFlowCall call, RetNodeEx node1, ReturnKindExt kind, NodeEx node2, boolean allowsFieldFlow,
     Configuration config
   ) {
     exists(FlowState state |
-      flowOutOfCallNodeCand2(call, node1, pos, node2, allowsFieldFlow, config) and
+      flowOutOfCallNodeCand2(call, node1, kind, node2, allowsFieldFlow, config) and
       PrevStage::revFlow(node2, pragma[only_bind_into](state), _, pragma[only_bind_into](config)) and
       PrevStage::revFlowAlias(node1, pragma[only_bind_into](state), _,
         pragma[only_bind_into](config))
@@ -2552,12 +2580,13 @@ private Configuration unbindConf(Configuration conf) {
 
 pragma[nomagic]
 private predicate nodeMayUseSummary0(
-  NodeEx n, ParamNodeEx p, FlowState state, AccessPathApprox apa, Configuration config
+  NodeEx n, DataFlowCallable c, ParameterPosition pos, FlowState state, AccessPathApprox apa,
+  Configuration config
 ) {
   exists(AccessPathApprox apa0 |
-    Stage4::parameterMayFlowThrough(p, _, _) and
+    c = n.getEnclosingCallable() and
     Stage4::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
-    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TParamNodeSome(p.asNode()),
+    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TParameterPositionSome(pos),
       TAccessPathApproxSome(apa), apa0, config)
   )
 }
@@ -2566,9 +2595,10 @@ pragma[nomagic]
 private predicate nodeMayUseSummary(
   NodeEx n, FlowState state, AccessPathApprox apa, Configuration config
 ) {
-  exists(ParamNodeEx p |
+  exists(DataFlowCallable c, ParameterPosition pos, ParamNodeEx p |
     Stage4::parameterMayFlowThrough(p, apa, config) and
-    nodeMayUseSummary0(n, p, state, apa, config)
+    nodeMayUseSummary0(n, c, pos, state, apa, config) and
+    p.isParameterOf(c, pos)
   )
 }
 
@@ -3501,7 +3531,7 @@ private predicate paramFlowsThrough(
     pathNode(mid, ret, state, cc, sc, ap, config, _) and
     kind = ret.getKind() and
     apa = ap.getApprox() and
-    parameterFlowThroughAllowed(sc.getParamNode().asNode(), kind)
+    parameterFlowThroughAllowed(sc.getParamNode(), kind)
   )
 }
 
diff --git a/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl3.qll b/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl3.qll
index a52ad110662..e4cfd5986be 100644
--- a/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl3.qll
+++ b/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl3.qll
@@ -613,11 +613,28 @@ private predicate hasSinkCallCtx(Configuration config) {
  * explicitly allowed
  */
 bindingset[p, kind]
-private predicate parameterFlowThroughAllowed(ParamNode p, ReturnKindExt kind) {
+private predicate parameterFlowThroughAllowed(ParamNodeEx p, ReturnKindExt kind) {
   exists(ParameterPosition pos | p.isParameterOf(_, pos) |
     not kind.(ParamUpdateReturnKind).getPosition() = pos
     or
-    allowParameterReturnInSelfCached(p)
+    allowParameterReturnInSelfCached(p.asNode())
+  )
+}
+
+/**
+ * Holds if flow from a parameter at position `pos` inside `c` to a return node of
+ * kind `kind` is allowed.
+ *
+ * We don't expect a parameter to return stored in itself, unless
+ * explicitly allowed
+ */
+bindingset[c, pos, kind]
+private predicate parameterFlowThroughAllowed(
+  DataFlowCallable c, ParameterPosition pos, ReturnKindExt kind
+) {
+  exists(ParamNodeEx p |
+    p.isParameterOf(c, pos) and
+    parameterFlowThroughAllowed(p, kind)
   )
 }
 
@@ -1000,14 +1017,14 @@ private module Stage1 implements StageSig {
       returnFlowCallableNodeCand(c, kind, config) and
       p.getEnclosingCallable() = c and
       exists(ap) and
-      parameterFlowThroughAllowed(p.asNode(), kind)
+      parameterFlowThroughAllowed(p, kind)
     )
   }
 
   pragma[nomagic]
-  predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config) {
+  predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config) {
     throughFlowNodeCand(ret, config) and
-    pos = ret.getReturnPosition()
+    kind = ret.getKind()
   }
 
   pragma[nomagic]
@@ -1066,13 +1083,16 @@ private predicate viableReturnPosOutNodeCand1(
  */
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand1(
-  DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, Configuration config
+  DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, Configuration config
 ) {
-  viableReturnPosOutNodeCand1(call, pos, out, config) and
-  pos = ret.getReturnPosition() and
-  Stage1::revFlow(ret, config) and
-  not outBarrier(ret, config) and
-  not inBarrier(out, config)
+  exists(ReturnPosition pos |
+    viableReturnPosOutNodeCand1(call, pos, out, config) and
+    pos = ret.getReturnPosition() and
+    kind = pos.getKind() and
+    Stage1::revFlow(ret, config) and
+    not outBarrier(ret, config) and
+    not inBarrier(out, config)
+  )
 }
 
 pragma[nomagic]
@@ -1102,6 +1122,7 @@ private predicate flowIntoCallNodeCand1(
  * edge in the graph of paths between sources and sinks that ignores call
  * contexts.
  */
+pragma[nomagic]
 private int branch(NodeEx n1, Configuration conf) {
   result =
     strictcount(NodeEx n |
@@ -1114,6 +1135,7 @@ private int branch(NodeEx n1, Configuration conf) {
  * edge in the graph of paths between sources and sinks that ignores call
  * contexts.
  */
+pragma[nomagic]
 private int join(NodeEx n2, Configuration conf) {
   result =
     strictcount(NodeEx n |
@@ -1130,10 +1152,10 @@ private int join(NodeEx n2, Configuration conf) {
  */
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand1(
-  DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
+  DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
   Configuration config
 ) {
-  flowOutOfCallNodeCand1(call, ret, pos, out, pragma[only_bind_into](config)) and
+  flowOutOfCallNodeCand1(call, ret, kind, out, pragma[only_bind_into](config)) and
   exists(int b, int j |
     b = branch(ret, pragma[only_bind_into](config)) and
     j = join(out, pragma[only_bind_into](config)) and
@@ -1152,10 +1174,10 @@ pragma[nomagic]
 private predicate flowIntoCallNodeCand1(
   DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
 ) {
-  flowIntoCallNodeCand1(call, arg, p, config) and
+  flowIntoCallNodeCand1(call, arg, p, pragma[only_bind_into](config)) and
   exists(int b, int j |
-    b = branch(arg, config) and
-    j = join(p, config) and
+    b = branch(arg, pragma[only_bind_into](config)) and
+    j = join(p, pragma[only_bind_into](config)) and
     if b.minimum(j) <= config.fieldFlowBranchLimit()
     then allowsFieldFlow = true
     else allowsFieldFlow = false
@@ -1174,7 +1196,7 @@ private signature module StageSig {
 
   predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config);
 
-  predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config);
+  predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config);
 
   predicate storeStepCand(
     NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, DataFlowType contentType,
@@ -1240,7 +1262,7 @@ private module MkStage<StageSig PrevStage> {
     );
 
     predicate flowOutOfCall(
-      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
+      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
       Configuration config
     );
 
@@ -1266,16 +1288,14 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate flowThroughOutOfCall(
-      DataFlowCall call, CcCall ccc, RetNodeEx ret, ReturnKindExt kind, NodeEx out,
-      boolean allowsFieldFlow, Configuration config
+      DataFlowCall call, DataFlowCallable c, CcCall ccc, RetNodeEx ret, ReturnKindExt kind,
+      NodeEx out, boolean allowsFieldFlow, Configuration config
     ) {
-      exists(ReturnPosition pos |
-        flowOutOfCall(call, ret, pos, out, allowsFieldFlow, pragma[only_bind_into](config)) and
-        kind = pos.getKind() and
-        PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
-        PrevStage::returnMayFlowThrough(ret, pos, pragma[only_bind_into](config)) and
-        matchesCall(ccc, call)
-      )
+      flowOutOfCall(call, ret, kind, out, allowsFieldFlow, pragma[only_bind_into](config)) and
+      PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
+      PrevStage::returnMayFlowThrough(ret, kind, pragma[only_bind_into](config)) and
+      matchesCall(ccc, call) and
+      c = ret.getEnclosingCallable()
     }
 
     /**
@@ -1284,12 +1304,12 @@ private module MkStage<StageSig PrevStage> {
      *
      * The call context `cc` records whether the node is reached through an
      * argument in a call, and if so, `summaryCtx` and `argAp` record the
-     * corresponding parameter and access path of that argument, respectively.
+     * corresponding parameter position and access path of that argument, respectively.
      */
     pragma[nomagic]
     additional predicate fwdFlow(
-      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
-      Configuration config
+      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      Ap ap, Configuration config
     ) {
       fwdFlow0(node, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::revFlow(node, state, unbindApa(getApprox(ap)), config) and
@@ -1298,13 +1318,13 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlow0(
-      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
-      Configuration config
+      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      Ap ap, Configuration config
     ) {
       sourceNode(node, state, config) and
       (if hasSourceCallCtx(config) then cc = ccSomeCall() else cc = ccNone()) and
       argAp = apNone() and
-      summaryCtx = TParamNodeNone() and
+      summaryCtx = TParameterPositionNone() and
       ap = getApNil(node)
       or
       exists(NodeEx mid, FlowState state0, Ap ap0, LocalCc localCc |
@@ -1322,7 +1342,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, pragma[only_bind_into](config)) and
         jumpStep(mid, node, config) and
         cc = ccNone() and
-        summaryCtx = TParamNodeNone() and
+        summaryCtx = TParameterPositionNone() and
         argAp = apNone()
       )
       or
@@ -1330,7 +1350,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, state, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStep(mid, node, config) and
         cc = ccNone() and
-        summaryCtx = TParamNodeNone() and
+        summaryCtx = TParameterPositionNone() and
         argAp = apNone() and
         ap = getApNil(node)
       )
@@ -1339,7 +1359,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, state0, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStateStep(mid, state0, node, state, config) and
         cc = ccNone() and
-        summaryCtx = TParamNodeNone() and
+        summaryCtx = TParameterPositionNone() and
         argAp = apNone() and
         ap = getApNil(node)
       )
@@ -1362,17 +1382,27 @@ private module MkStage<StageSig PrevStage> {
         apa = getApprox(ap) and
         if PrevStage::parameterMayFlowThrough(node, apa, config)
         then (
-          summaryCtx = TParamNodeSome(node.asNode()) and argAp = apSome(ap)
+          summaryCtx = TParameterPositionSome(node.(ParamNodeEx).getPosition()) and
+          argAp = apSome(ap)
         ) else (
-          summaryCtx = TParamNodeNone() and argAp = apNone()
+          summaryCtx = TParameterPositionNone() and argAp = apNone()
         )
       )
       or
       // flow out of a callable
-      fwdFlowOutNotFromArg(node, state, cc, summaryCtx, argAp, ap, config)
+      exists(
+        DataFlowCall call, RetNodeEx ret, boolean allowsFieldFlow, CcNoCall innercc,
+        DataFlowCallable inner
+      |
+        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, config) and
+        flowOutOfCall(call, ret, _, node, allowsFieldFlow, config) and
+        inner = ret.getEnclosingCallable() and
+        cc = getCallContextReturn(inner, call, innercc) and
+        if allowsFieldFlow = false then ap instanceof ApNil else any()
+      )
       or
       // flow through a callable
-      exists(DataFlowCall call, ParamNode summaryCtx0, Ap argAp0 |
+      exists(DataFlowCall call, ParameterPosition summaryCtx0, Ap argAp0 |
         fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, config) and
         fwdFlowIsEntered(call, cc, summaryCtx, argAp, summaryCtx0, argAp0, config)
       )
@@ -1381,7 +1411,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowStore(
       NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc,
-      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
+      ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
     ) {
       exists(DataFlowType contentType |
         fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, config) and
@@ -1406,7 +1436,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowRead(
       Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc,
-      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
+      ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
     ) {
       fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, c, node2, config) and
@@ -1416,7 +1446,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowIn(
       DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, Cc innercc,
-      ParamNodeOption summaryCtx, ApOption argAp, Ap ap, Configuration config
+      ParameterPositionOption summaryCtx, ApOption argAp, Ap ap, Configuration config
     ) {
       exists(ArgNodeEx arg, boolean allowsFieldFlow |
         fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, config) and
@@ -1427,32 +1457,19 @@ private module MkStage<StageSig PrevStage> {
     }
 
     pragma[nomagic]
-    private predicate fwdFlowOutNotFromArg(
-      NodeEx out, FlowState state, Cc ccOut, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+    private predicate fwdFlowOutFromArg(
+      DataFlowCall call, NodeEx out, FlowState state, ParameterPosition summaryCtx, Ap argAp, Ap ap,
       Configuration config
     ) {
       exists(
-        DataFlowCall call, RetNodeEx ret, boolean allowsFieldFlow, CcNoCall innercc,
-        DataFlowCallable inner
+        DataFlowCallable c, RetNodeEx ret, ReturnKindExt kind, boolean allowsFieldFlow, CcCall ccc
       |
-        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, config) and
-        flowOutOfCall(call, ret, _, out, allowsFieldFlow, config) and
-        inner = ret.getEnclosingCallable() and
-        ccOut = getCallContextReturn(inner, call, innercc) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
-      )
-    }
-
-    pragma[nomagic]
-    private predicate fwdFlowOutFromArg(
-      DataFlowCall call, NodeEx out, FlowState state, ParamNode summaryCtx, Ap argAp, Ap ap,
-      Configuration config
-    ) {
-      exists(RetNodeEx ret, ReturnKindExt kind, boolean allowsFieldFlow, CcCall ccc |
-        fwdFlow(ret, state, ccc, TParamNodeSome(summaryCtx), apSome(argAp), ap, config) and
-        flowThroughOutOfCall(call, ccc, ret, kind, out, allowsFieldFlow, config) and
+        fwdFlow(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc),
+          TParameterPositionSome(pragma[only_bind_into](summaryCtx)), apSome(argAp), ap, config) and
+        flowThroughOutOfCall(call, pragma[only_bind_into](c), ccc, ret, kind, out, allowsFieldFlow,
+          config) and
         (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
-        parameterFlowThroughAllowed(summaryCtx, kind)
+        parameterFlowThroughAllowed(c, pragma[only_bind_into](summaryCtx), kind)
       )
     }
 
@@ -1462,13 +1479,13 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate fwdFlowIsEntered(
-      DataFlowCall call, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, ParamNode p, Ap ap,
-      Configuration config
+      DataFlowCall call, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      ParameterPosition pos, Ap ap, Configuration config
     ) {
       exists(ParamNodeEx param |
         fwdFlowIn(call, param, _, cc, _, summaryCtx, argAp, ap, config) and
         PrevStage::parameterMayFlowThrough(param, unbindApa(getApprox(ap)), config) and
-        p = param.asNode()
+        pos = param.getPosition()
       )
     }
 
@@ -1489,23 +1506,41 @@ private module MkStage<StageSig PrevStage> {
     }
 
     pragma[nomagic]
-    private predicate returnFlowsThrough(
-      RetNodeEx ret, ReturnPosition pos, FlowState state, CcCall ccc, ParamNode p, Ap argAp, Ap ap,
-      Configuration config
+    private predicate returnFlowsThrough0(
+      RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, DataFlowCallable c,
+      ParameterPosition ppos, Ap argAp, Ap ap, Configuration config
     ) {
-      fwdFlow(ret, state, ccc, TParamNodeSome(p), apSome(argAp), ap, config) and
-      pos = ret.getReturnPosition() and
-      parameterFlowThroughAllowed(p, pos.getKind())
+      exists(boolean allowsFieldFlow |
+        fwdFlow(ret, state, ccc, TParameterPositionSome(ppos), apSome(argAp), ap, config) and
+        flowThroughOutOfCall(_, c, _, pragma[only_bind_into](ret), kind, _, allowsFieldFlow,
+          pragma[only_bind_into](config)) and
+        if allowsFieldFlow = false then ap instanceof ApNil else any()
+      )
+    }
+
+    pragma[nomagic]
+    private predicate returnFlowsThrough(
+      RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, ParamNodeEx p, Ap argAp,
+      Ap ap, Configuration config
+    ) {
+      exists(DataFlowCallable c, ParameterPosition ppos |
+        returnFlowsThrough0(ret, kind, state, ccc, c, ppos, argAp, ap, config) and
+        p.isParameterOf(c, ppos) and
+        parameterFlowThroughAllowed(p, kind)
+      )
     }
 
     pragma[nomagic]
     private predicate flowThroughIntoCall(
       DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
     ) {
-      flowIntoCall(call, pragma[only_bind_into](arg), pragma[only_bind_into](p), allowsFieldFlow,
-        pragma[only_bind_into](config)) and
-      fwdFlow(arg, _, _, _, _, _, pragma[only_bind_into](config)) and
-      returnFlowsThrough(_, _, _, _, p.asNode(), _, _, pragma[only_bind_into](config))
+      exists(Ap argAp |
+        flowIntoCall(call, pragma[only_bind_into](arg), pragma[only_bind_into](p), allowsFieldFlow,
+          pragma[only_bind_into](config)) and
+        fwdFlow(arg, _, _, _, _, pragma[only_bind_into](argAp), pragma[only_bind_into](config)) and
+        returnFlowsThrough(_, _, _, _, p, pragma[only_bind_into](argAp), _,
+          pragma[only_bind_into](config))
+      )
     }
 
     /**
@@ -1591,21 +1626,25 @@ private module MkStage<StageSig PrevStage> {
       )
       or
       // flow into a callable
-      revFlowInNotToReturn(node, state, returnAp, ap, config) and
-      returnCtx = TReturnCtxNone()
+      exists(ParamNodeEx p, boolean allowsFieldFlow |
+        revFlow(p, state, TReturnCtxNone(), returnAp, ap, config) and
+        flowIntoCall(_, node, p, allowsFieldFlow, config) and
+        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
+        returnCtx = TReturnCtxNone()
+      )
       or
       // flow through a callable
-      exists(DataFlowCall call, ReturnPosition returnPos0, Ap returnAp0 |
-        revFlowInToReturn(call, node, state, returnPos0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnPos0, returnAp0, config)
+      exists(DataFlowCall call, ReturnKindExt returnKind0, Ap returnAp0 |
+        revFlowInToReturn(call, node, state, returnKind0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
       )
       or
       // flow out of a callable
-      exists(ReturnPosition pos |
-        revFlowOut(_, node, pos, state, _, _, ap, config) and
-        if returnFlowsThrough(node, pos, state, _, _, _, ap, config)
+      exists(ReturnKindExt kind |
+        revFlowOut(_, node, kind, state, _, _, ap, config) and
+        if returnFlowsThrough(node, kind, state, _, _, _, ap, config)
         then (
-          returnCtx = TReturnCtxMaybeFlowThrough(pos) and
+          returnCtx = TReturnCtxMaybeFlowThrough(kind) and
           returnAp = apSome(ap)
         ) else (
           returnCtx = TReturnCtxNoFlowThrough() and returnAp = apNone()
@@ -1638,37 +1677,27 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate revFlowOut(
-      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, FlowState state, ReturnCtx returnCtx,
+      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, FlowState state, ReturnCtx returnCtx,
       ApOption returnAp, Ap ap, Configuration config
     ) {
       exists(NodeEx out, boolean allowsFieldFlow |
         revFlow(out, state, returnCtx, returnAp, ap, config) and
-        flowOutOfCall(call, ret, pos, out, allowsFieldFlow, config) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
-      )
-    }
-
-    pragma[nomagic]
-    private predicate revFlowInNotToReturn(
-      ArgNodeEx arg, FlowState state, ApOption returnAp, Ap ap, Configuration config
-    ) {
-      exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(p, state, TReturnCtxNone(), returnAp, ap, config) and
-        flowIntoCall(_, arg, p, allowsFieldFlow, config) and
+        flowOutOfCall(call, ret, kind, out, allowsFieldFlow, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
     pragma[nomagic]
     private predicate revFlowInToReturn(
-      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnPosition returnPos, Ap returnAp,
-      Ap ap, Configuration config
+      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap,
+      Configuration config
     ) {
       exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(p, state, TReturnCtxMaybeFlowThrough(returnPos), apSome(returnAp), ap, config) and
+        revFlow(pragma[only_bind_into](p), state,
+          TReturnCtxMaybeFlowThrough(pragma[only_bind_into](kind)), apSome(returnAp), ap, config) and
         flowThroughIntoCall(call, arg, p, allowsFieldFlow, config) and
         (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
-        parameterFlowThroughAllowed(p.asNode(), returnPos.getKind())
+        parameterFlowThroughAllowed(p, kind)
       )
     }
 
@@ -1679,12 +1708,12 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate revFlowIsReturned(
-      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnPosition pos, Ap ap,
+      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnKindExt kind, Ap ap,
       Configuration config
     ) {
       exists(RetNodeEx ret, FlowState state, CcCall ccc |
-        revFlowOut(call, ret, pos, state, returnCtx, returnAp, ap, config) and
-        returnFlowsThrough(ret, pos, state, ccc, _, _, ap, config) and
+        revFlowOut(call, ret, kind, state, returnCtx, returnAp, ap, config) and
+        returnFlowsThrough(ret, kind, state, ccc, _, _, ap, config) and
         matchesCall(ccc, call)
       )
     }
@@ -1757,37 +1786,37 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate parameterFlowsThroughRev(
-      ParamNodeEx p, Ap ap, ReturnPosition returnPos, Configuration config
+      ParamNodeEx p, Ap ap, ReturnKindExt kind, Configuration config
     ) {
-      revFlow(p, _, TReturnCtxMaybeFlowThrough(returnPos), apSome(_), ap, config) and
-      parameterFlowThroughAllowed(p.asNode(), returnPos.getKind())
+      revFlow(p, _, TReturnCtxMaybeFlowThrough(kind), apSome(_), ap, config) and
+      parameterFlowThroughAllowed(p, kind)
     }
 
     pragma[nomagic]
     predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
-      exists(RetNodeEx ret, ReturnPosition pos |
-        returnFlowsThrough(ret, pos, _, _, p.asNode(), ap, _, config) and
-        parameterFlowsThroughRev(p, ap, pos, config)
+      exists(RetNodeEx ret, ReturnKindExt kind |
+        returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
+        parameterFlowsThroughRev(p, ap, kind, config)
       )
     }
 
     pragma[nomagic]
-    predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config) {
+    predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config) {
       exists(ParamNodeEx p, Ap ap |
-        returnFlowsThrough(ret, pos, _, _, p.asNode(), ap, _, config) and
-        parameterFlowsThroughRev(p, ap, pos, config)
+        returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
+        parameterFlowsThroughRev(p, ap, kind, config)
       )
     }
 
     pragma[nomagic]
     predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
       exists(
-        ReturnPosition returnPos0, Ap returnAp0, ArgNodeEx arg, FlowState state,
+        ReturnKindExt returnKind0, Ap returnAp0, ArgNodeEx arg, FlowState state,
         ReturnCtx returnCtx, ApOption returnAp, Ap ap
       |
         revFlow(arg, state, returnCtx, returnAp, ap, config) and
-        revFlowInToReturn(call, arg, state, returnPos0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnPos0, returnAp0, config)
+        revFlowInToReturn(call, arg, state, returnKind0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
       )
     }
 
@@ -1800,9 +1829,8 @@ private module MkStage<StageSig PrevStage> {
       conscand = count(TypedContent f0, Ap ap | fwdConsCand(f0, ap, config)) and
       states = count(FlowState state | fwdFlow(_, state, _, _, _, _, config)) and
       tuples =
-        count(NodeEx n, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap |
-          fwdFlow(n, state, cc, summaryCtx, argAp, ap, config)
-        )
+        count(NodeEx n, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+          Ap ap | fwdFlow(n, state, cc, summaryCtx, argAp, ap, config))
       or
       fwd = false and
       nodes = count(NodeEx node | revFlow(node, _, _, _, _, config)) and
@@ -1992,10 +2020,10 @@ private module Stage2 implements StageSig {
 
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand2(
-  DataFlowCall call, RetNodeEx node1, ReturnPosition pos, NodeEx node2, boolean allowsFieldFlow,
+  DataFlowCall call, RetNodeEx node1, ReturnKindExt kind, NodeEx node2, boolean allowsFieldFlow,
   Configuration config
 ) {
-  flowOutOfCallNodeCand1(call, node1, pos, node2, allowsFieldFlow, config) and
+  flowOutOfCallNodeCand1(call, node1, kind, node2, allowsFieldFlow, config) and
   Stage2::revFlow(node2, pragma[only_bind_into](config)) and
   Stage2::revFlowAlias(node1, pragma[only_bind_into](config))
 }
@@ -2511,11 +2539,11 @@ private module Stage4Param implements MkStage<Stage3>::StageParam {
 
   pragma[nomagic]
   predicate flowOutOfCall(
-    DataFlowCall call, RetNodeEx node1, ReturnPosition pos, NodeEx node2, boolean allowsFieldFlow,
+    DataFlowCall call, RetNodeEx node1, ReturnKindExt kind, NodeEx node2, boolean allowsFieldFlow,
     Configuration config
   ) {
     exists(FlowState state |
-      flowOutOfCallNodeCand2(call, node1, pos, node2, allowsFieldFlow, config) and
+      flowOutOfCallNodeCand2(call, node1, kind, node2, allowsFieldFlow, config) and
       PrevStage::revFlow(node2, pragma[only_bind_into](state), _, pragma[only_bind_into](config)) and
       PrevStage::revFlowAlias(node1, pragma[only_bind_into](state), _,
         pragma[only_bind_into](config))
@@ -2552,12 +2580,13 @@ private Configuration unbindConf(Configuration conf) {
 
 pragma[nomagic]
 private predicate nodeMayUseSummary0(
-  NodeEx n, ParamNodeEx p, FlowState state, AccessPathApprox apa, Configuration config
+  NodeEx n, DataFlowCallable c, ParameterPosition pos, FlowState state, AccessPathApprox apa,
+  Configuration config
 ) {
   exists(AccessPathApprox apa0 |
-    Stage4::parameterMayFlowThrough(p, _, _) and
+    c = n.getEnclosingCallable() and
     Stage4::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
-    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TParamNodeSome(p.asNode()),
+    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TParameterPositionSome(pos),
       TAccessPathApproxSome(apa), apa0, config)
   )
 }
@@ -2566,9 +2595,10 @@ pragma[nomagic]
 private predicate nodeMayUseSummary(
   NodeEx n, FlowState state, AccessPathApprox apa, Configuration config
 ) {
-  exists(ParamNodeEx p |
+  exists(DataFlowCallable c, ParameterPosition pos, ParamNodeEx p |
     Stage4::parameterMayFlowThrough(p, apa, config) and
-    nodeMayUseSummary0(n, p, state, apa, config)
+    nodeMayUseSummary0(n, c, pos, state, apa, config) and
+    p.isParameterOf(c, pos)
   )
 }
 
@@ -3501,7 +3531,7 @@ private predicate paramFlowsThrough(
     pathNode(mid, ret, state, cc, sc, ap, config, _) and
     kind = ret.getKind() and
     apa = ap.getApprox() and
-    parameterFlowThroughAllowed(sc.getParamNode().asNode(), kind)
+    parameterFlowThroughAllowed(sc.getParamNode(), kind)
   )
 }
 
diff --git a/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl4.qll b/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl4.qll
index a52ad110662..e4cfd5986be 100644
--- a/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl4.qll
+++ b/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl4.qll
@@ -613,11 +613,28 @@ private predicate hasSinkCallCtx(Configuration config) {
  * explicitly allowed
  */
 bindingset[p, kind]
-private predicate parameterFlowThroughAllowed(ParamNode p, ReturnKindExt kind) {
+private predicate parameterFlowThroughAllowed(ParamNodeEx p, ReturnKindExt kind) {
   exists(ParameterPosition pos | p.isParameterOf(_, pos) |
     not kind.(ParamUpdateReturnKind).getPosition() = pos
     or
-    allowParameterReturnInSelfCached(p)
+    allowParameterReturnInSelfCached(p.asNode())
+  )
+}
+
+/**
+ * Holds if flow from a parameter at position `pos` inside `c` to a return node of
+ * kind `kind` is allowed.
+ *
+ * We don't expect a parameter to return stored in itself, unless
+ * explicitly allowed
+ */
+bindingset[c, pos, kind]
+private predicate parameterFlowThroughAllowed(
+  DataFlowCallable c, ParameterPosition pos, ReturnKindExt kind
+) {
+  exists(ParamNodeEx p |
+    p.isParameterOf(c, pos) and
+    parameterFlowThroughAllowed(p, kind)
   )
 }
 
@@ -1000,14 +1017,14 @@ private module Stage1 implements StageSig {
       returnFlowCallableNodeCand(c, kind, config) and
       p.getEnclosingCallable() = c and
       exists(ap) and
-      parameterFlowThroughAllowed(p.asNode(), kind)
+      parameterFlowThroughAllowed(p, kind)
     )
   }
 
   pragma[nomagic]
-  predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config) {
+  predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config) {
     throughFlowNodeCand(ret, config) and
-    pos = ret.getReturnPosition()
+    kind = ret.getKind()
   }
 
   pragma[nomagic]
@@ -1066,13 +1083,16 @@ private predicate viableReturnPosOutNodeCand1(
  */
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand1(
-  DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, Configuration config
+  DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, Configuration config
 ) {
-  viableReturnPosOutNodeCand1(call, pos, out, config) and
-  pos = ret.getReturnPosition() and
-  Stage1::revFlow(ret, config) and
-  not outBarrier(ret, config) and
-  not inBarrier(out, config)
+  exists(ReturnPosition pos |
+    viableReturnPosOutNodeCand1(call, pos, out, config) and
+    pos = ret.getReturnPosition() and
+    kind = pos.getKind() and
+    Stage1::revFlow(ret, config) and
+    not outBarrier(ret, config) and
+    not inBarrier(out, config)
+  )
 }
 
 pragma[nomagic]
@@ -1102,6 +1122,7 @@ private predicate flowIntoCallNodeCand1(
  * edge in the graph of paths between sources and sinks that ignores call
  * contexts.
  */
+pragma[nomagic]
 private int branch(NodeEx n1, Configuration conf) {
   result =
     strictcount(NodeEx n |
@@ -1114,6 +1135,7 @@ private int branch(NodeEx n1, Configuration conf) {
  * edge in the graph of paths between sources and sinks that ignores call
  * contexts.
  */
+pragma[nomagic]
 private int join(NodeEx n2, Configuration conf) {
   result =
     strictcount(NodeEx n |
@@ -1130,10 +1152,10 @@ private int join(NodeEx n2, Configuration conf) {
  */
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand1(
-  DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
+  DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
   Configuration config
 ) {
-  flowOutOfCallNodeCand1(call, ret, pos, out, pragma[only_bind_into](config)) and
+  flowOutOfCallNodeCand1(call, ret, kind, out, pragma[only_bind_into](config)) and
   exists(int b, int j |
     b = branch(ret, pragma[only_bind_into](config)) and
     j = join(out, pragma[only_bind_into](config)) and
@@ -1152,10 +1174,10 @@ pragma[nomagic]
 private predicate flowIntoCallNodeCand1(
   DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
 ) {
-  flowIntoCallNodeCand1(call, arg, p, config) and
+  flowIntoCallNodeCand1(call, arg, p, pragma[only_bind_into](config)) and
   exists(int b, int j |
-    b = branch(arg, config) and
-    j = join(p, config) and
+    b = branch(arg, pragma[only_bind_into](config)) and
+    j = join(p, pragma[only_bind_into](config)) and
     if b.minimum(j) <= config.fieldFlowBranchLimit()
     then allowsFieldFlow = true
     else allowsFieldFlow = false
@@ -1174,7 +1196,7 @@ private signature module StageSig {
 
   predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config);
 
-  predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config);
+  predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config);
 
   predicate storeStepCand(
     NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, DataFlowType contentType,
@@ -1240,7 +1262,7 @@ private module MkStage<StageSig PrevStage> {
     );
 
     predicate flowOutOfCall(
-      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
+      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
       Configuration config
     );
 
@@ -1266,16 +1288,14 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate flowThroughOutOfCall(
-      DataFlowCall call, CcCall ccc, RetNodeEx ret, ReturnKindExt kind, NodeEx out,
-      boolean allowsFieldFlow, Configuration config
+      DataFlowCall call, DataFlowCallable c, CcCall ccc, RetNodeEx ret, ReturnKindExt kind,
+      NodeEx out, boolean allowsFieldFlow, Configuration config
     ) {
-      exists(ReturnPosition pos |
-        flowOutOfCall(call, ret, pos, out, allowsFieldFlow, pragma[only_bind_into](config)) and
-        kind = pos.getKind() and
-        PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
-        PrevStage::returnMayFlowThrough(ret, pos, pragma[only_bind_into](config)) and
-        matchesCall(ccc, call)
-      )
+      flowOutOfCall(call, ret, kind, out, allowsFieldFlow, pragma[only_bind_into](config)) and
+      PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
+      PrevStage::returnMayFlowThrough(ret, kind, pragma[only_bind_into](config)) and
+      matchesCall(ccc, call) and
+      c = ret.getEnclosingCallable()
     }
 
     /**
@@ -1284,12 +1304,12 @@ private module MkStage<StageSig PrevStage> {
      *
      * The call context `cc` records whether the node is reached through an
      * argument in a call, and if so, `summaryCtx` and `argAp` record the
-     * corresponding parameter and access path of that argument, respectively.
+     * corresponding parameter position and access path of that argument, respectively.
      */
     pragma[nomagic]
     additional predicate fwdFlow(
-      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
-      Configuration config
+      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      Ap ap, Configuration config
     ) {
       fwdFlow0(node, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::revFlow(node, state, unbindApa(getApprox(ap)), config) and
@@ -1298,13 +1318,13 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlow0(
-      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
-      Configuration config
+      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      Ap ap, Configuration config
     ) {
       sourceNode(node, state, config) and
       (if hasSourceCallCtx(config) then cc = ccSomeCall() else cc = ccNone()) and
       argAp = apNone() and
-      summaryCtx = TParamNodeNone() and
+      summaryCtx = TParameterPositionNone() and
       ap = getApNil(node)
       or
       exists(NodeEx mid, FlowState state0, Ap ap0, LocalCc localCc |
@@ -1322,7 +1342,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, pragma[only_bind_into](config)) and
         jumpStep(mid, node, config) and
         cc = ccNone() and
-        summaryCtx = TParamNodeNone() and
+        summaryCtx = TParameterPositionNone() and
         argAp = apNone()
       )
       or
@@ -1330,7 +1350,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, state, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStep(mid, node, config) and
         cc = ccNone() and
-        summaryCtx = TParamNodeNone() and
+        summaryCtx = TParameterPositionNone() and
         argAp = apNone() and
         ap = getApNil(node)
       )
@@ -1339,7 +1359,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, state0, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStateStep(mid, state0, node, state, config) and
         cc = ccNone() and
-        summaryCtx = TParamNodeNone() and
+        summaryCtx = TParameterPositionNone() and
         argAp = apNone() and
         ap = getApNil(node)
       )
@@ -1362,17 +1382,27 @@ private module MkStage<StageSig PrevStage> {
         apa = getApprox(ap) and
         if PrevStage::parameterMayFlowThrough(node, apa, config)
         then (
-          summaryCtx = TParamNodeSome(node.asNode()) and argAp = apSome(ap)
+          summaryCtx = TParameterPositionSome(node.(ParamNodeEx).getPosition()) and
+          argAp = apSome(ap)
         ) else (
-          summaryCtx = TParamNodeNone() and argAp = apNone()
+          summaryCtx = TParameterPositionNone() and argAp = apNone()
         )
       )
       or
       // flow out of a callable
-      fwdFlowOutNotFromArg(node, state, cc, summaryCtx, argAp, ap, config)
+      exists(
+        DataFlowCall call, RetNodeEx ret, boolean allowsFieldFlow, CcNoCall innercc,
+        DataFlowCallable inner
+      |
+        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, config) and
+        flowOutOfCall(call, ret, _, node, allowsFieldFlow, config) and
+        inner = ret.getEnclosingCallable() and
+        cc = getCallContextReturn(inner, call, innercc) and
+        if allowsFieldFlow = false then ap instanceof ApNil else any()
+      )
       or
       // flow through a callable
-      exists(DataFlowCall call, ParamNode summaryCtx0, Ap argAp0 |
+      exists(DataFlowCall call, ParameterPosition summaryCtx0, Ap argAp0 |
         fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, config) and
         fwdFlowIsEntered(call, cc, summaryCtx, argAp, summaryCtx0, argAp0, config)
       )
@@ -1381,7 +1411,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowStore(
       NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc,
-      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
+      ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
     ) {
       exists(DataFlowType contentType |
         fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, config) and
@@ -1406,7 +1436,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowRead(
       Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc,
-      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
+      ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
     ) {
       fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, c, node2, config) and
@@ -1416,7 +1446,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowIn(
       DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, Cc innercc,
-      ParamNodeOption summaryCtx, ApOption argAp, Ap ap, Configuration config
+      ParameterPositionOption summaryCtx, ApOption argAp, Ap ap, Configuration config
     ) {
       exists(ArgNodeEx arg, boolean allowsFieldFlow |
         fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, config) and
@@ -1427,32 +1457,19 @@ private module MkStage<StageSig PrevStage> {
     }
 
     pragma[nomagic]
-    private predicate fwdFlowOutNotFromArg(
-      NodeEx out, FlowState state, Cc ccOut, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+    private predicate fwdFlowOutFromArg(
+      DataFlowCall call, NodeEx out, FlowState state, ParameterPosition summaryCtx, Ap argAp, Ap ap,
       Configuration config
     ) {
       exists(
-        DataFlowCall call, RetNodeEx ret, boolean allowsFieldFlow, CcNoCall innercc,
-        DataFlowCallable inner
+        DataFlowCallable c, RetNodeEx ret, ReturnKindExt kind, boolean allowsFieldFlow, CcCall ccc
       |
-        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, config) and
-        flowOutOfCall(call, ret, _, out, allowsFieldFlow, config) and
-        inner = ret.getEnclosingCallable() and
-        ccOut = getCallContextReturn(inner, call, innercc) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
-      )
-    }
-
-    pragma[nomagic]
-    private predicate fwdFlowOutFromArg(
-      DataFlowCall call, NodeEx out, FlowState state, ParamNode summaryCtx, Ap argAp, Ap ap,
-      Configuration config
-    ) {
-      exists(RetNodeEx ret, ReturnKindExt kind, boolean allowsFieldFlow, CcCall ccc |
-        fwdFlow(ret, state, ccc, TParamNodeSome(summaryCtx), apSome(argAp), ap, config) and
-        flowThroughOutOfCall(call, ccc, ret, kind, out, allowsFieldFlow, config) and
+        fwdFlow(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc),
+          TParameterPositionSome(pragma[only_bind_into](summaryCtx)), apSome(argAp), ap, config) and
+        flowThroughOutOfCall(call, pragma[only_bind_into](c), ccc, ret, kind, out, allowsFieldFlow,
+          config) and
         (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
-        parameterFlowThroughAllowed(summaryCtx, kind)
+        parameterFlowThroughAllowed(c, pragma[only_bind_into](summaryCtx), kind)
       )
     }
 
@@ -1462,13 +1479,13 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate fwdFlowIsEntered(
-      DataFlowCall call, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, ParamNode p, Ap ap,
-      Configuration config
+      DataFlowCall call, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      ParameterPosition pos, Ap ap, Configuration config
     ) {
       exists(ParamNodeEx param |
         fwdFlowIn(call, param, _, cc, _, summaryCtx, argAp, ap, config) and
         PrevStage::parameterMayFlowThrough(param, unbindApa(getApprox(ap)), config) and
-        p = param.asNode()
+        pos = param.getPosition()
       )
     }
 
@@ -1489,23 +1506,41 @@ private module MkStage<StageSig PrevStage> {
     }
 
     pragma[nomagic]
-    private predicate returnFlowsThrough(
-      RetNodeEx ret, ReturnPosition pos, FlowState state, CcCall ccc, ParamNode p, Ap argAp, Ap ap,
-      Configuration config
+    private predicate returnFlowsThrough0(
+      RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, DataFlowCallable c,
+      ParameterPosition ppos, Ap argAp, Ap ap, Configuration config
     ) {
-      fwdFlow(ret, state, ccc, TParamNodeSome(p), apSome(argAp), ap, config) and
-      pos = ret.getReturnPosition() and
-      parameterFlowThroughAllowed(p, pos.getKind())
+      exists(boolean allowsFieldFlow |
+        fwdFlow(ret, state, ccc, TParameterPositionSome(ppos), apSome(argAp), ap, config) and
+        flowThroughOutOfCall(_, c, _, pragma[only_bind_into](ret), kind, _, allowsFieldFlow,
+          pragma[only_bind_into](config)) and
+        if allowsFieldFlow = false then ap instanceof ApNil else any()
+      )
+    }
+
+    pragma[nomagic]
+    private predicate returnFlowsThrough(
+      RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, ParamNodeEx p, Ap argAp,
+      Ap ap, Configuration config
+    ) {
+      exists(DataFlowCallable c, ParameterPosition ppos |
+        returnFlowsThrough0(ret, kind, state, ccc, c, ppos, argAp, ap, config) and
+        p.isParameterOf(c, ppos) and
+        parameterFlowThroughAllowed(p, kind)
+      )
     }
 
     pragma[nomagic]
     private predicate flowThroughIntoCall(
       DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
     ) {
-      flowIntoCall(call, pragma[only_bind_into](arg), pragma[only_bind_into](p), allowsFieldFlow,
-        pragma[only_bind_into](config)) and
-      fwdFlow(arg, _, _, _, _, _, pragma[only_bind_into](config)) and
-      returnFlowsThrough(_, _, _, _, p.asNode(), _, _, pragma[only_bind_into](config))
+      exists(Ap argAp |
+        flowIntoCall(call, pragma[only_bind_into](arg), pragma[only_bind_into](p), allowsFieldFlow,
+          pragma[only_bind_into](config)) and
+        fwdFlow(arg, _, _, _, _, pragma[only_bind_into](argAp), pragma[only_bind_into](config)) and
+        returnFlowsThrough(_, _, _, _, p, pragma[only_bind_into](argAp), _,
+          pragma[only_bind_into](config))
+      )
     }
 
     /**
@@ -1591,21 +1626,25 @@ private module MkStage<StageSig PrevStage> {
       )
       or
       // flow into a callable
-      revFlowInNotToReturn(node, state, returnAp, ap, config) and
-      returnCtx = TReturnCtxNone()
+      exists(ParamNodeEx p, boolean allowsFieldFlow |
+        revFlow(p, state, TReturnCtxNone(), returnAp, ap, config) and
+        flowIntoCall(_, node, p, allowsFieldFlow, config) and
+        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
+        returnCtx = TReturnCtxNone()
+      )
       or
       // flow through a callable
-      exists(DataFlowCall call, ReturnPosition returnPos0, Ap returnAp0 |
-        revFlowInToReturn(call, node, state, returnPos0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnPos0, returnAp0, config)
+      exists(DataFlowCall call, ReturnKindExt returnKind0, Ap returnAp0 |
+        revFlowInToReturn(call, node, state, returnKind0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
       )
       or
       // flow out of a callable
-      exists(ReturnPosition pos |
-        revFlowOut(_, node, pos, state, _, _, ap, config) and
-        if returnFlowsThrough(node, pos, state, _, _, _, ap, config)
+      exists(ReturnKindExt kind |
+        revFlowOut(_, node, kind, state, _, _, ap, config) and
+        if returnFlowsThrough(node, kind, state, _, _, _, ap, config)
         then (
-          returnCtx = TReturnCtxMaybeFlowThrough(pos) and
+          returnCtx = TReturnCtxMaybeFlowThrough(kind) and
           returnAp = apSome(ap)
         ) else (
           returnCtx = TReturnCtxNoFlowThrough() and returnAp = apNone()
@@ -1638,37 +1677,27 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate revFlowOut(
-      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, FlowState state, ReturnCtx returnCtx,
+      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, FlowState state, ReturnCtx returnCtx,
       ApOption returnAp, Ap ap, Configuration config
     ) {
       exists(NodeEx out, boolean allowsFieldFlow |
         revFlow(out, state, returnCtx, returnAp, ap, config) and
-        flowOutOfCall(call, ret, pos, out, allowsFieldFlow, config) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
-      )
-    }
-
-    pragma[nomagic]
-    private predicate revFlowInNotToReturn(
-      ArgNodeEx arg, FlowState state, ApOption returnAp, Ap ap, Configuration config
-    ) {
-      exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(p, state, TReturnCtxNone(), returnAp, ap, config) and
-        flowIntoCall(_, arg, p, allowsFieldFlow, config) and
+        flowOutOfCall(call, ret, kind, out, allowsFieldFlow, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
     pragma[nomagic]
     private predicate revFlowInToReturn(
-      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnPosition returnPos, Ap returnAp,
-      Ap ap, Configuration config
+      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap,
+      Configuration config
     ) {
       exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(p, state, TReturnCtxMaybeFlowThrough(returnPos), apSome(returnAp), ap, config) and
+        revFlow(pragma[only_bind_into](p), state,
+          TReturnCtxMaybeFlowThrough(pragma[only_bind_into](kind)), apSome(returnAp), ap, config) and
         flowThroughIntoCall(call, arg, p, allowsFieldFlow, config) and
         (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
-        parameterFlowThroughAllowed(p.asNode(), returnPos.getKind())
+        parameterFlowThroughAllowed(p, kind)
       )
     }
 
@@ -1679,12 +1708,12 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate revFlowIsReturned(
-      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnPosition pos, Ap ap,
+      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnKindExt kind, Ap ap,
       Configuration config
     ) {
       exists(RetNodeEx ret, FlowState state, CcCall ccc |
-        revFlowOut(call, ret, pos, state, returnCtx, returnAp, ap, config) and
-        returnFlowsThrough(ret, pos, state, ccc, _, _, ap, config) and
+        revFlowOut(call, ret, kind, state, returnCtx, returnAp, ap, config) and
+        returnFlowsThrough(ret, kind, state, ccc, _, _, ap, config) and
         matchesCall(ccc, call)
       )
     }
@@ -1757,37 +1786,37 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate parameterFlowsThroughRev(
-      ParamNodeEx p, Ap ap, ReturnPosition returnPos, Configuration config
+      ParamNodeEx p, Ap ap, ReturnKindExt kind, Configuration config
     ) {
-      revFlow(p, _, TReturnCtxMaybeFlowThrough(returnPos), apSome(_), ap, config) and
-      parameterFlowThroughAllowed(p.asNode(), returnPos.getKind())
+      revFlow(p, _, TReturnCtxMaybeFlowThrough(kind), apSome(_), ap, config) and
+      parameterFlowThroughAllowed(p, kind)
     }
 
     pragma[nomagic]
     predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
-      exists(RetNodeEx ret, ReturnPosition pos |
-        returnFlowsThrough(ret, pos, _, _, p.asNode(), ap, _, config) and
-        parameterFlowsThroughRev(p, ap, pos, config)
+      exists(RetNodeEx ret, ReturnKindExt kind |
+        returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
+        parameterFlowsThroughRev(p, ap, kind, config)
       )
     }
 
     pragma[nomagic]
-    predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config) {
+    predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config) {
       exists(ParamNodeEx p, Ap ap |
-        returnFlowsThrough(ret, pos, _, _, p.asNode(), ap, _, config) and
-        parameterFlowsThroughRev(p, ap, pos, config)
+        returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
+        parameterFlowsThroughRev(p, ap, kind, config)
       )
     }
 
     pragma[nomagic]
     predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
       exists(
-        ReturnPosition returnPos0, Ap returnAp0, ArgNodeEx arg, FlowState state,
+        ReturnKindExt returnKind0, Ap returnAp0, ArgNodeEx arg, FlowState state,
         ReturnCtx returnCtx, ApOption returnAp, Ap ap
       |
         revFlow(arg, state, returnCtx, returnAp, ap, config) and
-        revFlowInToReturn(call, arg, state, returnPos0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnPos0, returnAp0, config)
+        revFlowInToReturn(call, arg, state, returnKind0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
       )
     }
 
@@ -1800,9 +1829,8 @@ private module MkStage<StageSig PrevStage> {
       conscand = count(TypedContent f0, Ap ap | fwdConsCand(f0, ap, config)) and
       states = count(FlowState state | fwdFlow(_, state, _, _, _, _, config)) and
       tuples =
-        count(NodeEx n, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap |
-          fwdFlow(n, state, cc, summaryCtx, argAp, ap, config)
-        )
+        count(NodeEx n, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+          Ap ap | fwdFlow(n, state, cc, summaryCtx, argAp, ap, config))
       or
       fwd = false and
       nodes = count(NodeEx node | revFlow(node, _, _, _, _, config)) and
@@ -1992,10 +2020,10 @@ private module Stage2 implements StageSig {
 
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand2(
-  DataFlowCall call, RetNodeEx node1, ReturnPosition pos, NodeEx node2, boolean allowsFieldFlow,
+  DataFlowCall call, RetNodeEx node1, ReturnKindExt kind, NodeEx node2, boolean allowsFieldFlow,
   Configuration config
 ) {
-  flowOutOfCallNodeCand1(call, node1, pos, node2, allowsFieldFlow, config) and
+  flowOutOfCallNodeCand1(call, node1, kind, node2, allowsFieldFlow, config) and
   Stage2::revFlow(node2, pragma[only_bind_into](config)) and
   Stage2::revFlowAlias(node1, pragma[only_bind_into](config))
 }
@@ -2511,11 +2539,11 @@ private module Stage4Param implements MkStage<Stage3>::StageParam {
 
   pragma[nomagic]
   predicate flowOutOfCall(
-    DataFlowCall call, RetNodeEx node1, ReturnPosition pos, NodeEx node2, boolean allowsFieldFlow,
+    DataFlowCall call, RetNodeEx node1, ReturnKindExt kind, NodeEx node2, boolean allowsFieldFlow,
     Configuration config
   ) {
     exists(FlowState state |
-      flowOutOfCallNodeCand2(call, node1, pos, node2, allowsFieldFlow, config) and
+      flowOutOfCallNodeCand2(call, node1, kind, node2, allowsFieldFlow, config) and
       PrevStage::revFlow(node2, pragma[only_bind_into](state), _, pragma[only_bind_into](config)) and
       PrevStage::revFlowAlias(node1, pragma[only_bind_into](state), _,
         pragma[only_bind_into](config))
@@ -2552,12 +2580,13 @@ private Configuration unbindConf(Configuration conf) {
 
 pragma[nomagic]
 private predicate nodeMayUseSummary0(
-  NodeEx n, ParamNodeEx p, FlowState state, AccessPathApprox apa, Configuration config
+  NodeEx n, DataFlowCallable c, ParameterPosition pos, FlowState state, AccessPathApprox apa,
+  Configuration config
 ) {
   exists(AccessPathApprox apa0 |
-    Stage4::parameterMayFlowThrough(p, _, _) and
+    c = n.getEnclosingCallable() and
     Stage4::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
-    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TParamNodeSome(p.asNode()),
+    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TParameterPositionSome(pos),
       TAccessPathApproxSome(apa), apa0, config)
   )
 }
@@ -2566,9 +2595,10 @@ pragma[nomagic]
 private predicate nodeMayUseSummary(
   NodeEx n, FlowState state, AccessPathApprox apa, Configuration config
 ) {
-  exists(ParamNodeEx p |
+  exists(DataFlowCallable c, ParameterPosition pos, ParamNodeEx p |
     Stage4::parameterMayFlowThrough(p, apa, config) and
-    nodeMayUseSummary0(n, p, state, apa, config)
+    nodeMayUseSummary0(n, c, pos, state, apa, config) and
+    p.isParameterOf(c, pos)
   )
 }
 
@@ -3501,7 +3531,7 @@ private predicate paramFlowsThrough(
     pathNode(mid, ret, state, cc, sc, ap, config, _) and
     kind = ret.getKind() and
     apa = ap.getApprox() and
-    parameterFlowThroughAllowed(sc.getParamNode().asNode(), kind)
+    parameterFlowThroughAllowed(sc.getParamNode(), kind)
   )
 }
 
diff --git a/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl5.qll b/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl5.qll
index a52ad110662..e4cfd5986be 100644
--- a/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl5.qll
+++ b/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl5.qll
@@ -613,11 +613,28 @@ private predicate hasSinkCallCtx(Configuration config) {
  * explicitly allowed
  */
 bindingset[p, kind]
-private predicate parameterFlowThroughAllowed(ParamNode p, ReturnKindExt kind) {
+private predicate parameterFlowThroughAllowed(ParamNodeEx p, ReturnKindExt kind) {
   exists(ParameterPosition pos | p.isParameterOf(_, pos) |
     not kind.(ParamUpdateReturnKind).getPosition() = pos
     or
-    allowParameterReturnInSelfCached(p)
+    allowParameterReturnInSelfCached(p.asNode())
+  )
+}
+
+/**
+ * Holds if flow from a parameter at position `pos` inside `c` to a return node of
+ * kind `kind` is allowed.
+ *
+ * We don't expect a parameter to return stored in itself, unless
+ * explicitly allowed
+ */
+bindingset[c, pos, kind]
+private predicate parameterFlowThroughAllowed(
+  DataFlowCallable c, ParameterPosition pos, ReturnKindExt kind
+) {
+  exists(ParamNodeEx p |
+    p.isParameterOf(c, pos) and
+    parameterFlowThroughAllowed(p, kind)
   )
 }
 
@@ -1000,14 +1017,14 @@ private module Stage1 implements StageSig {
       returnFlowCallableNodeCand(c, kind, config) and
       p.getEnclosingCallable() = c and
       exists(ap) and
-      parameterFlowThroughAllowed(p.asNode(), kind)
+      parameterFlowThroughAllowed(p, kind)
     )
   }
 
   pragma[nomagic]
-  predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config) {
+  predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config) {
     throughFlowNodeCand(ret, config) and
-    pos = ret.getReturnPosition()
+    kind = ret.getKind()
   }
 
   pragma[nomagic]
@@ -1066,13 +1083,16 @@ private predicate viableReturnPosOutNodeCand1(
  */
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand1(
-  DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, Configuration config
+  DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, Configuration config
 ) {
-  viableReturnPosOutNodeCand1(call, pos, out, config) and
-  pos = ret.getReturnPosition() and
-  Stage1::revFlow(ret, config) and
-  not outBarrier(ret, config) and
-  not inBarrier(out, config)
+  exists(ReturnPosition pos |
+    viableReturnPosOutNodeCand1(call, pos, out, config) and
+    pos = ret.getReturnPosition() and
+    kind = pos.getKind() and
+    Stage1::revFlow(ret, config) and
+    not outBarrier(ret, config) and
+    not inBarrier(out, config)
+  )
 }
 
 pragma[nomagic]
@@ -1102,6 +1122,7 @@ private predicate flowIntoCallNodeCand1(
  * edge in the graph of paths between sources and sinks that ignores call
  * contexts.
  */
+pragma[nomagic]
 private int branch(NodeEx n1, Configuration conf) {
   result =
     strictcount(NodeEx n |
@@ -1114,6 +1135,7 @@ private int branch(NodeEx n1, Configuration conf) {
  * edge in the graph of paths between sources and sinks that ignores call
  * contexts.
  */
+pragma[nomagic]
 private int join(NodeEx n2, Configuration conf) {
   result =
     strictcount(NodeEx n |
@@ -1130,10 +1152,10 @@ private int join(NodeEx n2, Configuration conf) {
  */
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand1(
-  DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
+  DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
   Configuration config
 ) {
-  flowOutOfCallNodeCand1(call, ret, pos, out, pragma[only_bind_into](config)) and
+  flowOutOfCallNodeCand1(call, ret, kind, out, pragma[only_bind_into](config)) and
   exists(int b, int j |
     b = branch(ret, pragma[only_bind_into](config)) and
     j = join(out, pragma[only_bind_into](config)) and
@@ -1152,10 +1174,10 @@ pragma[nomagic]
 private predicate flowIntoCallNodeCand1(
   DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
 ) {
-  flowIntoCallNodeCand1(call, arg, p, config) and
+  flowIntoCallNodeCand1(call, arg, p, pragma[only_bind_into](config)) and
   exists(int b, int j |
-    b = branch(arg, config) and
-    j = join(p, config) and
+    b = branch(arg, pragma[only_bind_into](config)) and
+    j = join(p, pragma[only_bind_into](config)) and
     if b.minimum(j) <= config.fieldFlowBranchLimit()
     then allowsFieldFlow = true
     else allowsFieldFlow = false
@@ -1174,7 +1196,7 @@ private signature module StageSig {
 
   predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config);
 
-  predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config);
+  predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config);
 
   predicate storeStepCand(
     NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, DataFlowType contentType,
@@ -1240,7 +1262,7 @@ private module MkStage<StageSig PrevStage> {
     );
 
     predicate flowOutOfCall(
-      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
+      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
       Configuration config
     );
 
@@ -1266,16 +1288,14 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate flowThroughOutOfCall(
-      DataFlowCall call, CcCall ccc, RetNodeEx ret, ReturnKindExt kind, NodeEx out,
-      boolean allowsFieldFlow, Configuration config
+      DataFlowCall call, DataFlowCallable c, CcCall ccc, RetNodeEx ret, ReturnKindExt kind,
+      NodeEx out, boolean allowsFieldFlow, Configuration config
     ) {
-      exists(ReturnPosition pos |
-        flowOutOfCall(call, ret, pos, out, allowsFieldFlow, pragma[only_bind_into](config)) and
-        kind = pos.getKind() and
-        PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
-        PrevStage::returnMayFlowThrough(ret, pos, pragma[only_bind_into](config)) and
-        matchesCall(ccc, call)
-      )
+      flowOutOfCall(call, ret, kind, out, allowsFieldFlow, pragma[only_bind_into](config)) and
+      PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
+      PrevStage::returnMayFlowThrough(ret, kind, pragma[only_bind_into](config)) and
+      matchesCall(ccc, call) and
+      c = ret.getEnclosingCallable()
     }
 
     /**
@@ -1284,12 +1304,12 @@ private module MkStage<StageSig PrevStage> {
      *
      * The call context `cc` records whether the node is reached through an
      * argument in a call, and if so, `summaryCtx` and `argAp` record the
-     * corresponding parameter and access path of that argument, respectively.
+     * corresponding parameter position and access path of that argument, respectively.
      */
     pragma[nomagic]
     additional predicate fwdFlow(
-      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
-      Configuration config
+      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      Ap ap, Configuration config
     ) {
       fwdFlow0(node, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::revFlow(node, state, unbindApa(getApprox(ap)), config) and
@@ -1298,13 +1318,13 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlow0(
-      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
-      Configuration config
+      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      Ap ap, Configuration config
     ) {
       sourceNode(node, state, config) and
       (if hasSourceCallCtx(config) then cc = ccSomeCall() else cc = ccNone()) and
       argAp = apNone() and
-      summaryCtx = TParamNodeNone() and
+      summaryCtx = TParameterPositionNone() and
       ap = getApNil(node)
       or
       exists(NodeEx mid, FlowState state0, Ap ap0, LocalCc localCc |
@@ -1322,7 +1342,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, pragma[only_bind_into](config)) and
         jumpStep(mid, node, config) and
         cc = ccNone() and
-        summaryCtx = TParamNodeNone() and
+        summaryCtx = TParameterPositionNone() and
         argAp = apNone()
       )
       or
@@ -1330,7 +1350,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, state, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStep(mid, node, config) and
         cc = ccNone() and
-        summaryCtx = TParamNodeNone() and
+        summaryCtx = TParameterPositionNone() and
         argAp = apNone() and
         ap = getApNil(node)
       )
@@ -1339,7 +1359,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, state0, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStateStep(mid, state0, node, state, config) and
         cc = ccNone() and
-        summaryCtx = TParamNodeNone() and
+        summaryCtx = TParameterPositionNone() and
         argAp = apNone() and
         ap = getApNil(node)
       )
@@ -1362,17 +1382,27 @@ private module MkStage<StageSig PrevStage> {
         apa = getApprox(ap) and
         if PrevStage::parameterMayFlowThrough(node, apa, config)
         then (
-          summaryCtx = TParamNodeSome(node.asNode()) and argAp = apSome(ap)
+          summaryCtx = TParameterPositionSome(node.(ParamNodeEx).getPosition()) and
+          argAp = apSome(ap)
         ) else (
-          summaryCtx = TParamNodeNone() and argAp = apNone()
+          summaryCtx = TParameterPositionNone() and argAp = apNone()
         )
       )
       or
       // flow out of a callable
-      fwdFlowOutNotFromArg(node, state, cc, summaryCtx, argAp, ap, config)
+      exists(
+        DataFlowCall call, RetNodeEx ret, boolean allowsFieldFlow, CcNoCall innercc,
+        DataFlowCallable inner
+      |
+        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, config) and
+        flowOutOfCall(call, ret, _, node, allowsFieldFlow, config) and
+        inner = ret.getEnclosingCallable() and
+        cc = getCallContextReturn(inner, call, innercc) and
+        if allowsFieldFlow = false then ap instanceof ApNil else any()
+      )
       or
       // flow through a callable
-      exists(DataFlowCall call, ParamNode summaryCtx0, Ap argAp0 |
+      exists(DataFlowCall call, ParameterPosition summaryCtx0, Ap argAp0 |
         fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, config) and
         fwdFlowIsEntered(call, cc, summaryCtx, argAp, summaryCtx0, argAp0, config)
       )
@@ -1381,7 +1411,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowStore(
       NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc,
-      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
+      ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
     ) {
       exists(DataFlowType contentType |
         fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, config) and
@@ -1406,7 +1436,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowRead(
       Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc,
-      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
+      ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
     ) {
       fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, c, node2, config) and
@@ -1416,7 +1446,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowIn(
       DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, Cc innercc,
-      ParamNodeOption summaryCtx, ApOption argAp, Ap ap, Configuration config
+      ParameterPositionOption summaryCtx, ApOption argAp, Ap ap, Configuration config
     ) {
       exists(ArgNodeEx arg, boolean allowsFieldFlow |
         fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, config) and
@@ -1427,32 +1457,19 @@ private module MkStage<StageSig PrevStage> {
     }
 
     pragma[nomagic]
-    private predicate fwdFlowOutNotFromArg(
-      NodeEx out, FlowState state, Cc ccOut, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+    private predicate fwdFlowOutFromArg(
+      DataFlowCall call, NodeEx out, FlowState state, ParameterPosition summaryCtx, Ap argAp, Ap ap,
       Configuration config
     ) {
       exists(
-        DataFlowCall call, RetNodeEx ret, boolean allowsFieldFlow, CcNoCall innercc,
-        DataFlowCallable inner
+        DataFlowCallable c, RetNodeEx ret, ReturnKindExt kind, boolean allowsFieldFlow, CcCall ccc
       |
-        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, config) and
-        flowOutOfCall(call, ret, _, out, allowsFieldFlow, config) and
-        inner = ret.getEnclosingCallable() and
-        ccOut = getCallContextReturn(inner, call, innercc) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
-      )
-    }
-
-    pragma[nomagic]
-    private predicate fwdFlowOutFromArg(
-      DataFlowCall call, NodeEx out, FlowState state, ParamNode summaryCtx, Ap argAp, Ap ap,
-      Configuration config
-    ) {
-      exists(RetNodeEx ret, ReturnKindExt kind, boolean allowsFieldFlow, CcCall ccc |
-        fwdFlow(ret, state, ccc, TParamNodeSome(summaryCtx), apSome(argAp), ap, config) and
-        flowThroughOutOfCall(call, ccc, ret, kind, out, allowsFieldFlow, config) and
+        fwdFlow(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc),
+          TParameterPositionSome(pragma[only_bind_into](summaryCtx)), apSome(argAp), ap, config) and
+        flowThroughOutOfCall(call, pragma[only_bind_into](c), ccc, ret, kind, out, allowsFieldFlow,
+          config) and
         (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
-        parameterFlowThroughAllowed(summaryCtx, kind)
+        parameterFlowThroughAllowed(c, pragma[only_bind_into](summaryCtx), kind)
       )
     }
 
@@ -1462,13 +1479,13 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate fwdFlowIsEntered(
-      DataFlowCall call, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, ParamNode p, Ap ap,
-      Configuration config
+      DataFlowCall call, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      ParameterPosition pos, Ap ap, Configuration config
     ) {
       exists(ParamNodeEx param |
         fwdFlowIn(call, param, _, cc, _, summaryCtx, argAp, ap, config) and
         PrevStage::parameterMayFlowThrough(param, unbindApa(getApprox(ap)), config) and
-        p = param.asNode()
+        pos = param.getPosition()
       )
     }
 
@@ -1489,23 +1506,41 @@ private module MkStage<StageSig PrevStage> {
     }
 
     pragma[nomagic]
-    private predicate returnFlowsThrough(
-      RetNodeEx ret, ReturnPosition pos, FlowState state, CcCall ccc, ParamNode p, Ap argAp, Ap ap,
-      Configuration config
+    private predicate returnFlowsThrough0(
+      RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, DataFlowCallable c,
+      ParameterPosition ppos, Ap argAp, Ap ap, Configuration config
     ) {
-      fwdFlow(ret, state, ccc, TParamNodeSome(p), apSome(argAp), ap, config) and
-      pos = ret.getReturnPosition() and
-      parameterFlowThroughAllowed(p, pos.getKind())
+      exists(boolean allowsFieldFlow |
+        fwdFlow(ret, state, ccc, TParameterPositionSome(ppos), apSome(argAp), ap, config) and
+        flowThroughOutOfCall(_, c, _, pragma[only_bind_into](ret), kind, _, allowsFieldFlow,
+          pragma[only_bind_into](config)) and
+        if allowsFieldFlow = false then ap instanceof ApNil else any()
+      )
+    }
+
+    pragma[nomagic]
+    private predicate returnFlowsThrough(
+      RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, ParamNodeEx p, Ap argAp,
+      Ap ap, Configuration config
+    ) {
+      exists(DataFlowCallable c, ParameterPosition ppos |
+        returnFlowsThrough0(ret, kind, state, ccc, c, ppos, argAp, ap, config) and
+        p.isParameterOf(c, ppos) and
+        parameterFlowThroughAllowed(p, kind)
+      )
     }
 
     pragma[nomagic]
     private predicate flowThroughIntoCall(
       DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
     ) {
-      flowIntoCall(call, pragma[only_bind_into](arg), pragma[only_bind_into](p), allowsFieldFlow,
-        pragma[only_bind_into](config)) and
-      fwdFlow(arg, _, _, _, _, _, pragma[only_bind_into](config)) and
-      returnFlowsThrough(_, _, _, _, p.asNode(), _, _, pragma[only_bind_into](config))
+      exists(Ap argAp |
+        flowIntoCall(call, pragma[only_bind_into](arg), pragma[only_bind_into](p), allowsFieldFlow,
+          pragma[only_bind_into](config)) and
+        fwdFlow(arg, _, _, _, _, pragma[only_bind_into](argAp), pragma[only_bind_into](config)) and
+        returnFlowsThrough(_, _, _, _, p, pragma[only_bind_into](argAp), _,
+          pragma[only_bind_into](config))
+      )
     }
 
     /**
@@ -1591,21 +1626,25 @@ private module MkStage<StageSig PrevStage> {
       )
       or
       // flow into a callable
-      revFlowInNotToReturn(node, state, returnAp, ap, config) and
-      returnCtx = TReturnCtxNone()
+      exists(ParamNodeEx p, boolean allowsFieldFlow |
+        revFlow(p, state, TReturnCtxNone(), returnAp, ap, config) and
+        flowIntoCall(_, node, p, allowsFieldFlow, config) and
+        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
+        returnCtx = TReturnCtxNone()
+      )
       or
       // flow through a callable
-      exists(DataFlowCall call, ReturnPosition returnPos0, Ap returnAp0 |
-        revFlowInToReturn(call, node, state, returnPos0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnPos0, returnAp0, config)
+      exists(DataFlowCall call, ReturnKindExt returnKind0, Ap returnAp0 |
+        revFlowInToReturn(call, node, state, returnKind0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
       )
       or
       // flow out of a callable
-      exists(ReturnPosition pos |
-        revFlowOut(_, node, pos, state, _, _, ap, config) and
-        if returnFlowsThrough(node, pos, state, _, _, _, ap, config)
+      exists(ReturnKindExt kind |
+        revFlowOut(_, node, kind, state, _, _, ap, config) and
+        if returnFlowsThrough(node, kind, state, _, _, _, ap, config)
         then (
-          returnCtx = TReturnCtxMaybeFlowThrough(pos) and
+          returnCtx = TReturnCtxMaybeFlowThrough(kind) and
           returnAp = apSome(ap)
         ) else (
           returnCtx = TReturnCtxNoFlowThrough() and returnAp = apNone()
@@ -1638,37 +1677,27 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate revFlowOut(
-      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, FlowState state, ReturnCtx returnCtx,
+      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, FlowState state, ReturnCtx returnCtx,
       ApOption returnAp, Ap ap, Configuration config
     ) {
       exists(NodeEx out, boolean allowsFieldFlow |
         revFlow(out, state, returnCtx, returnAp, ap, config) and
-        flowOutOfCall(call, ret, pos, out, allowsFieldFlow, config) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
-      )
-    }
-
-    pragma[nomagic]
-    private predicate revFlowInNotToReturn(
-      ArgNodeEx arg, FlowState state, ApOption returnAp, Ap ap, Configuration config
-    ) {
-      exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(p, state, TReturnCtxNone(), returnAp, ap, config) and
-        flowIntoCall(_, arg, p, allowsFieldFlow, config) and
+        flowOutOfCall(call, ret, kind, out, allowsFieldFlow, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
     pragma[nomagic]
     private predicate revFlowInToReturn(
-      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnPosition returnPos, Ap returnAp,
-      Ap ap, Configuration config
+      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap,
+      Configuration config
     ) {
       exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(p, state, TReturnCtxMaybeFlowThrough(returnPos), apSome(returnAp), ap, config) and
+        revFlow(pragma[only_bind_into](p), state,
+          TReturnCtxMaybeFlowThrough(pragma[only_bind_into](kind)), apSome(returnAp), ap, config) and
         flowThroughIntoCall(call, arg, p, allowsFieldFlow, config) and
         (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
-        parameterFlowThroughAllowed(p.asNode(), returnPos.getKind())
+        parameterFlowThroughAllowed(p, kind)
       )
     }
 
@@ -1679,12 +1708,12 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate revFlowIsReturned(
-      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnPosition pos, Ap ap,
+      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnKindExt kind, Ap ap,
       Configuration config
     ) {
       exists(RetNodeEx ret, FlowState state, CcCall ccc |
-        revFlowOut(call, ret, pos, state, returnCtx, returnAp, ap, config) and
-        returnFlowsThrough(ret, pos, state, ccc, _, _, ap, config) and
+        revFlowOut(call, ret, kind, state, returnCtx, returnAp, ap, config) and
+        returnFlowsThrough(ret, kind, state, ccc, _, _, ap, config) and
         matchesCall(ccc, call)
       )
     }
@@ -1757,37 +1786,37 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate parameterFlowsThroughRev(
-      ParamNodeEx p, Ap ap, ReturnPosition returnPos, Configuration config
+      ParamNodeEx p, Ap ap, ReturnKindExt kind, Configuration config
     ) {
-      revFlow(p, _, TReturnCtxMaybeFlowThrough(returnPos), apSome(_), ap, config) and
-      parameterFlowThroughAllowed(p.asNode(), returnPos.getKind())
+      revFlow(p, _, TReturnCtxMaybeFlowThrough(kind), apSome(_), ap, config) and
+      parameterFlowThroughAllowed(p, kind)
     }
 
     pragma[nomagic]
     predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
-      exists(RetNodeEx ret, ReturnPosition pos |
-        returnFlowsThrough(ret, pos, _, _, p.asNode(), ap, _, config) and
-        parameterFlowsThroughRev(p, ap, pos, config)
+      exists(RetNodeEx ret, ReturnKindExt kind |
+        returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
+        parameterFlowsThroughRev(p, ap, kind, config)
       )
     }
 
     pragma[nomagic]
-    predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config) {
+    predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config) {
       exists(ParamNodeEx p, Ap ap |
-        returnFlowsThrough(ret, pos, _, _, p.asNode(), ap, _, config) and
-        parameterFlowsThroughRev(p, ap, pos, config)
+        returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
+        parameterFlowsThroughRev(p, ap, kind, config)
       )
     }
 
     pragma[nomagic]
     predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
       exists(
-        ReturnPosition returnPos0, Ap returnAp0, ArgNodeEx arg, FlowState state,
+        ReturnKindExt returnKind0, Ap returnAp0, ArgNodeEx arg, FlowState state,
         ReturnCtx returnCtx, ApOption returnAp, Ap ap
       |
         revFlow(arg, state, returnCtx, returnAp, ap, config) and
-        revFlowInToReturn(call, arg, state, returnPos0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnPos0, returnAp0, config)
+        revFlowInToReturn(call, arg, state, returnKind0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
       )
     }
 
@@ -1800,9 +1829,8 @@ private module MkStage<StageSig PrevStage> {
       conscand = count(TypedContent f0, Ap ap | fwdConsCand(f0, ap, config)) and
       states = count(FlowState state | fwdFlow(_, state, _, _, _, _, config)) and
       tuples =
-        count(NodeEx n, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap |
-          fwdFlow(n, state, cc, summaryCtx, argAp, ap, config)
-        )
+        count(NodeEx n, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+          Ap ap | fwdFlow(n, state, cc, summaryCtx, argAp, ap, config))
       or
       fwd = false and
       nodes = count(NodeEx node | revFlow(node, _, _, _, _, config)) and
@@ -1992,10 +2020,10 @@ private module Stage2 implements StageSig {
 
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand2(
-  DataFlowCall call, RetNodeEx node1, ReturnPosition pos, NodeEx node2, boolean allowsFieldFlow,
+  DataFlowCall call, RetNodeEx node1, ReturnKindExt kind, NodeEx node2, boolean allowsFieldFlow,
   Configuration config
 ) {
-  flowOutOfCallNodeCand1(call, node1, pos, node2, allowsFieldFlow, config) and
+  flowOutOfCallNodeCand1(call, node1, kind, node2, allowsFieldFlow, config) and
   Stage2::revFlow(node2, pragma[only_bind_into](config)) and
   Stage2::revFlowAlias(node1, pragma[only_bind_into](config))
 }
@@ -2511,11 +2539,11 @@ private module Stage4Param implements MkStage<Stage3>::StageParam {
 
   pragma[nomagic]
   predicate flowOutOfCall(
-    DataFlowCall call, RetNodeEx node1, ReturnPosition pos, NodeEx node2, boolean allowsFieldFlow,
+    DataFlowCall call, RetNodeEx node1, ReturnKindExt kind, NodeEx node2, boolean allowsFieldFlow,
     Configuration config
   ) {
     exists(FlowState state |
-      flowOutOfCallNodeCand2(call, node1, pos, node2, allowsFieldFlow, config) and
+      flowOutOfCallNodeCand2(call, node1, kind, node2, allowsFieldFlow, config) and
       PrevStage::revFlow(node2, pragma[only_bind_into](state), _, pragma[only_bind_into](config)) and
       PrevStage::revFlowAlias(node1, pragma[only_bind_into](state), _,
         pragma[only_bind_into](config))
@@ -2552,12 +2580,13 @@ private Configuration unbindConf(Configuration conf) {
 
 pragma[nomagic]
 private predicate nodeMayUseSummary0(
-  NodeEx n, ParamNodeEx p, FlowState state, AccessPathApprox apa, Configuration config
+  NodeEx n, DataFlowCallable c, ParameterPosition pos, FlowState state, AccessPathApprox apa,
+  Configuration config
 ) {
   exists(AccessPathApprox apa0 |
-    Stage4::parameterMayFlowThrough(p, _, _) and
+    c = n.getEnclosingCallable() and
     Stage4::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
-    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TParamNodeSome(p.asNode()),
+    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TParameterPositionSome(pos),
       TAccessPathApproxSome(apa), apa0, config)
   )
 }
@@ -2566,9 +2595,10 @@ pragma[nomagic]
 private predicate nodeMayUseSummary(
   NodeEx n, FlowState state, AccessPathApprox apa, Configuration config
 ) {
-  exists(ParamNodeEx p |
+  exists(DataFlowCallable c, ParameterPosition pos, ParamNodeEx p |
     Stage4::parameterMayFlowThrough(p, apa, config) and
-    nodeMayUseSummary0(n, p, state, apa, config)
+    nodeMayUseSummary0(n, c, pos, state, apa, config) and
+    p.isParameterOf(c, pos)
   )
 }
 
@@ -3501,7 +3531,7 @@ private predicate paramFlowsThrough(
     pathNode(mid, ret, state, cc, sc, ap, config, _) and
     kind = ret.getKind() and
     apa = ap.getApprox() and
-    parameterFlowThroughAllowed(sc.getParamNode().asNode(), kind)
+    parameterFlowThroughAllowed(sc.getParamNode(), kind)
   )
 }
 
diff --git a/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl6.qll b/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl6.qll
index a52ad110662..e4cfd5986be 100644
--- a/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl6.qll
+++ b/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl6.qll
@@ -613,11 +613,28 @@ private predicate hasSinkCallCtx(Configuration config) {
  * explicitly allowed
  */
 bindingset[p, kind]
-private predicate parameterFlowThroughAllowed(ParamNode p, ReturnKindExt kind) {
+private predicate parameterFlowThroughAllowed(ParamNodeEx p, ReturnKindExt kind) {
   exists(ParameterPosition pos | p.isParameterOf(_, pos) |
     not kind.(ParamUpdateReturnKind).getPosition() = pos
     or
-    allowParameterReturnInSelfCached(p)
+    allowParameterReturnInSelfCached(p.asNode())
+  )
+}
+
+/**
+ * Holds if flow from a parameter at position `pos` inside `c` to a return node of
+ * kind `kind` is allowed.
+ *
+ * We don't expect a parameter to return stored in itself, unless
+ * explicitly allowed
+ */
+bindingset[c, pos, kind]
+private predicate parameterFlowThroughAllowed(
+  DataFlowCallable c, ParameterPosition pos, ReturnKindExt kind
+) {
+  exists(ParamNodeEx p |
+    p.isParameterOf(c, pos) and
+    parameterFlowThroughAllowed(p, kind)
   )
 }
 
@@ -1000,14 +1017,14 @@ private module Stage1 implements StageSig {
       returnFlowCallableNodeCand(c, kind, config) and
       p.getEnclosingCallable() = c and
       exists(ap) and
-      parameterFlowThroughAllowed(p.asNode(), kind)
+      parameterFlowThroughAllowed(p, kind)
     )
   }
 
   pragma[nomagic]
-  predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config) {
+  predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config) {
     throughFlowNodeCand(ret, config) and
-    pos = ret.getReturnPosition()
+    kind = ret.getKind()
   }
 
   pragma[nomagic]
@@ -1066,13 +1083,16 @@ private predicate viableReturnPosOutNodeCand1(
  */
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand1(
-  DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, Configuration config
+  DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, Configuration config
 ) {
-  viableReturnPosOutNodeCand1(call, pos, out, config) and
-  pos = ret.getReturnPosition() and
-  Stage1::revFlow(ret, config) and
-  not outBarrier(ret, config) and
-  not inBarrier(out, config)
+  exists(ReturnPosition pos |
+    viableReturnPosOutNodeCand1(call, pos, out, config) and
+    pos = ret.getReturnPosition() and
+    kind = pos.getKind() and
+    Stage1::revFlow(ret, config) and
+    not outBarrier(ret, config) and
+    not inBarrier(out, config)
+  )
 }
 
 pragma[nomagic]
@@ -1102,6 +1122,7 @@ private predicate flowIntoCallNodeCand1(
  * edge in the graph of paths between sources and sinks that ignores call
  * contexts.
  */
+pragma[nomagic]
 private int branch(NodeEx n1, Configuration conf) {
   result =
     strictcount(NodeEx n |
@@ -1114,6 +1135,7 @@ private int branch(NodeEx n1, Configuration conf) {
  * edge in the graph of paths between sources and sinks that ignores call
  * contexts.
  */
+pragma[nomagic]
 private int join(NodeEx n2, Configuration conf) {
   result =
     strictcount(NodeEx n |
@@ -1130,10 +1152,10 @@ private int join(NodeEx n2, Configuration conf) {
  */
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand1(
-  DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
+  DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
   Configuration config
 ) {
-  flowOutOfCallNodeCand1(call, ret, pos, out, pragma[only_bind_into](config)) and
+  flowOutOfCallNodeCand1(call, ret, kind, out, pragma[only_bind_into](config)) and
   exists(int b, int j |
     b = branch(ret, pragma[only_bind_into](config)) and
     j = join(out, pragma[only_bind_into](config)) and
@@ -1152,10 +1174,10 @@ pragma[nomagic]
 private predicate flowIntoCallNodeCand1(
   DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
 ) {
-  flowIntoCallNodeCand1(call, arg, p, config) and
+  flowIntoCallNodeCand1(call, arg, p, pragma[only_bind_into](config)) and
   exists(int b, int j |
-    b = branch(arg, config) and
-    j = join(p, config) and
+    b = branch(arg, pragma[only_bind_into](config)) and
+    j = join(p, pragma[only_bind_into](config)) and
     if b.minimum(j) <= config.fieldFlowBranchLimit()
     then allowsFieldFlow = true
     else allowsFieldFlow = false
@@ -1174,7 +1196,7 @@ private signature module StageSig {
 
   predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config);
 
-  predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config);
+  predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config);
 
   predicate storeStepCand(
     NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, DataFlowType contentType,
@@ -1240,7 +1262,7 @@ private module MkStage<StageSig PrevStage> {
     );
 
     predicate flowOutOfCall(
-      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
+      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
       Configuration config
     );
 
@@ -1266,16 +1288,14 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate flowThroughOutOfCall(
-      DataFlowCall call, CcCall ccc, RetNodeEx ret, ReturnKindExt kind, NodeEx out,
-      boolean allowsFieldFlow, Configuration config
+      DataFlowCall call, DataFlowCallable c, CcCall ccc, RetNodeEx ret, ReturnKindExt kind,
+      NodeEx out, boolean allowsFieldFlow, Configuration config
     ) {
-      exists(ReturnPosition pos |
-        flowOutOfCall(call, ret, pos, out, allowsFieldFlow, pragma[only_bind_into](config)) and
-        kind = pos.getKind() and
-        PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
-        PrevStage::returnMayFlowThrough(ret, pos, pragma[only_bind_into](config)) and
-        matchesCall(ccc, call)
-      )
+      flowOutOfCall(call, ret, kind, out, allowsFieldFlow, pragma[only_bind_into](config)) and
+      PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
+      PrevStage::returnMayFlowThrough(ret, kind, pragma[only_bind_into](config)) and
+      matchesCall(ccc, call) and
+      c = ret.getEnclosingCallable()
     }
 
     /**
@@ -1284,12 +1304,12 @@ private module MkStage<StageSig PrevStage> {
      *
      * The call context `cc` records whether the node is reached through an
      * argument in a call, and if so, `summaryCtx` and `argAp` record the
-     * corresponding parameter and access path of that argument, respectively.
+     * corresponding parameter position and access path of that argument, respectively.
      */
     pragma[nomagic]
     additional predicate fwdFlow(
-      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
-      Configuration config
+      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      Ap ap, Configuration config
     ) {
       fwdFlow0(node, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::revFlow(node, state, unbindApa(getApprox(ap)), config) and
@@ -1298,13 +1318,13 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlow0(
-      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
-      Configuration config
+      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      Ap ap, Configuration config
     ) {
       sourceNode(node, state, config) and
       (if hasSourceCallCtx(config) then cc = ccSomeCall() else cc = ccNone()) and
       argAp = apNone() and
-      summaryCtx = TParamNodeNone() and
+      summaryCtx = TParameterPositionNone() and
       ap = getApNil(node)
       or
       exists(NodeEx mid, FlowState state0, Ap ap0, LocalCc localCc |
@@ -1322,7 +1342,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, pragma[only_bind_into](config)) and
         jumpStep(mid, node, config) and
         cc = ccNone() and
-        summaryCtx = TParamNodeNone() and
+        summaryCtx = TParameterPositionNone() and
         argAp = apNone()
       )
       or
@@ -1330,7 +1350,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, state, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStep(mid, node, config) and
         cc = ccNone() and
-        summaryCtx = TParamNodeNone() and
+        summaryCtx = TParameterPositionNone() and
         argAp = apNone() and
         ap = getApNil(node)
       )
@@ -1339,7 +1359,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, state0, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStateStep(mid, state0, node, state, config) and
         cc = ccNone() and
-        summaryCtx = TParamNodeNone() and
+        summaryCtx = TParameterPositionNone() and
         argAp = apNone() and
         ap = getApNil(node)
       )
@@ -1362,17 +1382,27 @@ private module MkStage<StageSig PrevStage> {
         apa = getApprox(ap) and
         if PrevStage::parameterMayFlowThrough(node, apa, config)
         then (
-          summaryCtx = TParamNodeSome(node.asNode()) and argAp = apSome(ap)
+          summaryCtx = TParameterPositionSome(node.(ParamNodeEx).getPosition()) and
+          argAp = apSome(ap)
         ) else (
-          summaryCtx = TParamNodeNone() and argAp = apNone()
+          summaryCtx = TParameterPositionNone() and argAp = apNone()
         )
       )
       or
       // flow out of a callable
-      fwdFlowOutNotFromArg(node, state, cc, summaryCtx, argAp, ap, config)
+      exists(
+        DataFlowCall call, RetNodeEx ret, boolean allowsFieldFlow, CcNoCall innercc,
+        DataFlowCallable inner
+      |
+        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, config) and
+        flowOutOfCall(call, ret, _, node, allowsFieldFlow, config) and
+        inner = ret.getEnclosingCallable() and
+        cc = getCallContextReturn(inner, call, innercc) and
+        if allowsFieldFlow = false then ap instanceof ApNil else any()
+      )
       or
       // flow through a callable
-      exists(DataFlowCall call, ParamNode summaryCtx0, Ap argAp0 |
+      exists(DataFlowCall call, ParameterPosition summaryCtx0, Ap argAp0 |
         fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, config) and
         fwdFlowIsEntered(call, cc, summaryCtx, argAp, summaryCtx0, argAp0, config)
       )
@@ -1381,7 +1411,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowStore(
       NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc,
-      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
+      ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
     ) {
       exists(DataFlowType contentType |
         fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, config) and
@@ -1406,7 +1436,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowRead(
       Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc,
-      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
+      ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
     ) {
       fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, c, node2, config) and
@@ -1416,7 +1446,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowIn(
       DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, Cc innercc,
-      ParamNodeOption summaryCtx, ApOption argAp, Ap ap, Configuration config
+      ParameterPositionOption summaryCtx, ApOption argAp, Ap ap, Configuration config
     ) {
       exists(ArgNodeEx arg, boolean allowsFieldFlow |
         fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, config) and
@@ -1427,32 +1457,19 @@ private module MkStage<StageSig PrevStage> {
     }
 
     pragma[nomagic]
-    private predicate fwdFlowOutNotFromArg(
-      NodeEx out, FlowState state, Cc ccOut, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+    private predicate fwdFlowOutFromArg(
+      DataFlowCall call, NodeEx out, FlowState state, ParameterPosition summaryCtx, Ap argAp, Ap ap,
       Configuration config
     ) {
       exists(
-        DataFlowCall call, RetNodeEx ret, boolean allowsFieldFlow, CcNoCall innercc,
-        DataFlowCallable inner
+        DataFlowCallable c, RetNodeEx ret, ReturnKindExt kind, boolean allowsFieldFlow, CcCall ccc
       |
-        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, config) and
-        flowOutOfCall(call, ret, _, out, allowsFieldFlow, config) and
-        inner = ret.getEnclosingCallable() and
-        ccOut = getCallContextReturn(inner, call, innercc) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
-      )
-    }
-
-    pragma[nomagic]
-    private predicate fwdFlowOutFromArg(
-      DataFlowCall call, NodeEx out, FlowState state, ParamNode summaryCtx, Ap argAp, Ap ap,
-      Configuration config
-    ) {
-      exists(RetNodeEx ret, ReturnKindExt kind, boolean allowsFieldFlow, CcCall ccc |
-        fwdFlow(ret, state, ccc, TParamNodeSome(summaryCtx), apSome(argAp), ap, config) and
-        flowThroughOutOfCall(call, ccc, ret, kind, out, allowsFieldFlow, config) and
+        fwdFlow(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc),
+          TParameterPositionSome(pragma[only_bind_into](summaryCtx)), apSome(argAp), ap, config) and
+        flowThroughOutOfCall(call, pragma[only_bind_into](c), ccc, ret, kind, out, allowsFieldFlow,
+          config) and
         (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
-        parameterFlowThroughAllowed(summaryCtx, kind)
+        parameterFlowThroughAllowed(c, pragma[only_bind_into](summaryCtx), kind)
       )
     }
 
@@ -1462,13 +1479,13 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate fwdFlowIsEntered(
-      DataFlowCall call, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, ParamNode p, Ap ap,
-      Configuration config
+      DataFlowCall call, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      ParameterPosition pos, Ap ap, Configuration config
     ) {
       exists(ParamNodeEx param |
         fwdFlowIn(call, param, _, cc, _, summaryCtx, argAp, ap, config) and
         PrevStage::parameterMayFlowThrough(param, unbindApa(getApprox(ap)), config) and
-        p = param.asNode()
+        pos = param.getPosition()
       )
     }
 
@@ -1489,23 +1506,41 @@ private module MkStage<StageSig PrevStage> {
     }
 
     pragma[nomagic]
-    private predicate returnFlowsThrough(
-      RetNodeEx ret, ReturnPosition pos, FlowState state, CcCall ccc, ParamNode p, Ap argAp, Ap ap,
-      Configuration config
+    private predicate returnFlowsThrough0(
+      RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, DataFlowCallable c,
+      ParameterPosition ppos, Ap argAp, Ap ap, Configuration config
     ) {
-      fwdFlow(ret, state, ccc, TParamNodeSome(p), apSome(argAp), ap, config) and
-      pos = ret.getReturnPosition() and
-      parameterFlowThroughAllowed(p, pos.getKind())
+      exists(boolean allowsFieldFlow |
+        fwdFlow(ret, state, ccc, TParameterPositionSome(ppos), apSome(argAp), ap, config) and
+        flowThroughOutOfCall(_, c, _, pragma[only_bind_into](ret), kind, _, allowsFieldFlow,
+          pragma[only_bind_into](config)) and
+        if allowsFieldFlow = false then ap instanceof ApNil else any()
+      )
+    }
+
+    pragma[nomagic]
+    private predicate returnFlowsThrough(
+      RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, ParamNodeEx p, Ap argAp,
+      Ap ap, Configuration config
+    ) {
+      exists(DataFlowCallable c, ParameterPosition ppos |
+        returnFlowsThrough0(ret, kind, state, ccc, c, ppos, argAp, ap, config) and
+        p.isParameterOf(c, ppos) and
+        parameterFlowThroughAllowed(p, kind)
+      )
     }
 
     pragma[nomagic]
     private predicate flowThroughIntoCall(
       DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
     ) {
-      flowIntoCall(call, pragma[only_bind_into](arg), pragma[only_bind_into](p), allowsFieldFlow,
-        pragma[only_bind_into](config)) and
-      fwdFlow(arg, _, _, _, _, _, pragma[only_bind_into](config)) and
-      returnFlowsThrough(_, _, _, _, p.asNode(), _, _, pragma[only_bind_into](config))
+      exists(Ap argAp |
+        flowIntoCall(call, pragma[only_bind_into](arg), pragma[only_bind_into](p), allowsFieldFlow,
+          pragma[only_bind_into](config)) and
+        fwdFlow(arg, _, _, _, _, pragma[only_bind_into](argAp), pragma[only_bind_into](config)) and
+        returnFlowsThrough(_, _, _, _, p, pragma[only_bind_into](argAp), _,
+          pragma[only_bind_into](config))
+      )
     }
 
     /**
@@ -1591,21 +1626,25 @@ private module MkStage<StageSig PrevStage> {
       )
       or
       // flow into a callable
-      revFlowInNotToReturn(node, state, returnAp, ap, config) and
-      returnCtx = TReturnCtxNone()
+      exists(ParamNodeEx p, boolean allowsFieldFlow |
+        revFlow(p, state, TReturnCtxNone(), returnAp, ap, config) and
+        flowIntoCall(_, node, p, allowsFieldFlow, config) and
+        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
+        returnCtx = TReturnCtxNone()
+      )
       or
       // flow through a callable
-      exists(DataFlowCall call, ReturnPosition returnPos0, Ap returnAp0 |
-        revFlowInToReturn(call, node, state, returnPos0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnPos0, returnAp0, config)
+      exists(DataFlowCall call, ReturnKindExt returnKind0, Ap returnAp0 |
+        revFlowInToReturn(call, node, state, returnKind0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
       )
       or
       // flow out of a callable
-      exists(ReturnPosition pos |
-        revFlowOut(_, node, pos, state, _, _, ap, config) and
-        if returnFlowsThrough(node, pos, state, _, _, _, ap, config)
+      exists(ReturnKindExt kind |
+        revFlowOut(_, node, kind, state, _, _, ap, config) and
+        if returnFlowsThrough(node, kind, state, _, _, _, ap, config)
         then (
-          returnCtx = TReturnCtxMaybeFlowThrough(pos) and
+          returnCtx = TReturnCtxMaybeFlowThrough(kind) and
           returnAp = apSome(ap)
         ) else (
           returnCtx = TReturnCtxNoFlowThrough() and returnAp = apNone()
@@ -1638,37 +1677,27 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate revFlowOut(
-      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, FlowState state, ReturnCtx returnCtx,
+      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, FlowState state, ReturnCtx returnCtx,
       ApOption returnAp, Ap ap, Configuration config
     ) {
       exists(NodeEx out, boolean allowsFieldFlow |
         revFlow(out, state, returnCtx, returnAp, ap, config) and
-        flowOutOfCall(call, ret, pos, out, allowsFieldFlow, config) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
-      )
-    }
-
-    pragma[nomagic]
-    private predicate revFlowInNotToReturn(
-      ArgNodeEx arg, FlowState state, ApOption returnAp, Ap ap, Configuration config
-    ) {
-      exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(p, state, TReturnCtxNone(), returnAp, ap, config) and
-        flowIntoCall(_, arg, p, allowsFieldFlow, config) and
+        flowOutOfCall(call, ret, kind, out, allowsFieldFlow, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
     pragma[nomagic]
     private predicate revFlowInToReturn(
-      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnPosition returnPos, Ap returnAp,
-      Ap ap, Configuration config
+      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap,
+      Configuration config
     ) {
       exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(p, state, TReturnCtxMaybeFlowThrough(returnPos), apSome(returnAp), ap, config) and
+        revFlow(pragma[only_bind_into](p), state,
+          TReturnCtxMaybeFlowThrough(pragma[only_bind_into](kind)), apSome(returnAp), ap, config) and
         flowThroughIntoCall(call, arg, p, allowsFieldFlow, config) and
         (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
-        parameterFlowThroughAllowed(p.asNode(), returnPos.getKind())
+        parameterFlowThroughAllowed(p, kind)
       )
     }
 
@@ -1679,12 +1708,12 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate revFlowIsReturned(
-      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnPosition pos, Ap ap,
+      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnKindExt kind, Ap ap,
       Configuration config
     ) {
       exists(RetNodeEx ret, FlowState state, CcCall ccc |
-        revFlowOut(call, ret, pos, state, returnCtx, returnAp, ap, config) and
-        returnFlowsThrough(ret, pos, state, ccc, _, _, ap, config) and
+        revFlowOut(call, ret, kind, state, returnCtx, returnAp, ap, config) and
+        returnFlowsThrough(ret, kind, state, ccc, _, _, ap, config) and
         matchesCall(ccc, call)
       )
     }
@@ -1757,37 +1786,37 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate parameterFlowsThroughRev(
-      ParamNodeEx p, Ap ap, ReturnPosition returnPos, Configuration config
+      ParamNodeEx p, Ap ap, ReturnKindExt kind, Configuration config
     ) {
-      revFlow(p, _, TReturnCtxMaybeFlowThrough(returnPos), apSome(_), ap, config) and
-      parameterFlowThroughAllowed(p.asNode(), returnPos.getKind())
+      revFlow(p, _, TReturnCtxMaybeFlowThrough(kind), apSome(_), ap, config) and
+      parameterFlowThroughAllowed(p, kind)
     }
 
     pragma[nomagic]
     predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
-      exists(RetNodeEx ret, ReturnPosition pos |
-        returnFlowsThrough(ret, pos, _, _, p.asNode(), ap, _, config) and
-        parameterFlowsThroughRev(p, ap, pos, config)
+      exists(RetNodeEx ret, ReturnKindExt kind |
+        returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
+        parameterFlowsThroughRev(p, ap, kind, config)
       )
     }
 
     pragma[nomagic]
-    predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config) {
+    predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config) {
       exists(ParamNodeEx p, Ap ap |
-        returnFlowsThrough(ret, pos, _, _, p.asNode(), ap, _, config) and
-        parameterFlowsThroughRev(p, ap, pos, config)
+        returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
+        parameterFlowsThroughRev(p, ap, kind, config)
       )
     }
 
     pragma[nomagic]
     predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
       exists(
-        ReturnPosition returnPos0, Ap returnAp0, ArgNodeEx arg, FlowState state,
+        ReturnKindExt returnKind0, Ap returnAp0, ArgNodeEx arg, FlowState state,
         ReturnCtx returnCtx, ApOption returnAp, Ap ap
       |
         revFlow(arg, state, returnCtx, returnAp, ap, config) and
-        revFlowInToReturn(call, arg, state, returnPos0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnPos0, returnAp0, config)
+        revFlowInToReturn(call, arg, state, returnKind0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
       )
     }
 
@@ -1800,9 +1829,8 @@ private module MkStage<StageSig PrevStage> {
       conscand = count(TypedContent f0, Ap ap | fwdConsCand(f0, ap, config)) and
       states = count(FlowState state | fwdFlow(_, state, _, _, _, _, config)) and
       tuples =
-        count(NodeEx n, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap |
-          fwdFlow(n, state, cc, summaryCtx, argAp, ap, config)
-        )
+        count(NodeEx n, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+          Ap ap | fwdFlow(n, state, cc, summaryCtx, argAp, ap, config))
       or
       fwd = false and
       nodes = count(NodeEx node | revFlow(node, _, _, _, _, config)) and
@@ -1992,10 +2020,10 @@ private module Stage2 implements StageSig {
 
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand2(
-  DataFlowCall call, RetNodeEx node1, ReturnPosition pos, NodeEx node2, boolean allowsFieldFlow,
+  DataFlowCall call, RetNodeEx node1, ReturnKindExt kind, NodeEx node2, boolean allowsFieldFlow,
   Configuration config
 ) {
-  flowOutOfCallNodeCand1(call, node1, pos, node2, allowsFieldFlow, config) and
+  flowOutOfCallNodeCand1(call, node1, kind, node2, allowsFieldFlow, config) and
   Stage2::revFlow(node2, pragma[only_bind_into](config)) and
   Stage2::revFlowAlias(node1, pragma[only_bind_into](config))
 }
@@ -2511,11 +2539,11 @@ private module Stage4Param implements MkStage<Stage3>::StageParam {
 
   pragma[nomagic]
   predicate flowOutOfCall(
-    DataFlowCall call, RetNodeEx node1, ReturnPosition pos, NodeEx node2, boolean allowsFieldFlow,
+    DataFlowCall call, RetNodeEx node1, ReturnKindExt kind, NodeEx node2, boolean allowsFieldFlow,
     Configuration config
   ) {
     exists(FlowState state |
-      flowOutOfCallNodeCand2(call, node1, pos, node2, allowsFieldFlow, config) and
+      flowOutOfCallNodeCand2(call, node1, kind, node2, allowsFieldFlow, config) and
       PrevStage::revFlow(node2, pragma[only_bind_into](state), _, pragma[only_bind_into](config)) and
       PrevStage::revFlowAlias(node1, pragma[only_bind_into](state), _,
         pragma[only_bind_into](config))
@@ -2552,12 +2580,13 @@ private Configuration unbindConf(Configuration conf) {
 
 pragma[nomagic]
 private predicate nodeMayUseSummary0(
-  NodeEx n, ParamNodeEx p, FlowState state, AccessPathApprox apa, Configuration config
+  NodeEx n, DataFlowCallable c, ParameterPosition pos, FlowState state, AccessPathApprox apa,
+  Configuration config
 ) {
   exists(AccessPathApprox apa0 |
-    Stage4::parameterMayFlowThrough(p, _, _) and
+    c = n.getEnclosingCallable() and
     Stage4::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
-    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TParamNodeSome(p.asNode()),
+    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TParameterPositionSome(pos),
       TAccessPathApproxSome(apa), apa0, config)
   )
 }
@@ -2566,9 +2595,10 @@ pragma[nomagic]
 private predicate nodeMayUseSummary(
   NodeEx n, FlowState state, AccessPathApprox apa, Configuration config
 ) {
-  exists(ParamNodeEx p |
+  exists(DataFlowCallable c, ParameterPosition pos, ParamNodeEx p |
     Stage4::parameterMayFlowThrough(p, apa, config) and
-    nodeMayUseSummary0(n, p, state, apa, config)
+    nodeMayUseSummary0(n, c, pos, state, apa, config) and
+    p.isParameterOf(c, pos)
   )
 }
 
@@ -3501,7 +3531,7 @@ private predicate paramFlowsThrough(
     pathNode(mid, ret, state, cc, sc, ap, config, _) and
     kind = ret.getKind() and
     apa = ap.getApprox() and
-    parameterFlowThroughAllowed(sc.getParamNode().asNode(), kind)
+    parameterFlowThroughAllowed(sc.getParamNode(), kind)
   )
 }
 
diff --git a/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImplCommon.qll b/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImplCommon.qll
index 621ed34f9d0..f981834a6d4 100644
--- a/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImplCommon.qll
+++ b/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImplCommon.qll
@@ -916,15 +916,15 @@ private module Cached {
     TDataFlowCallSome(DataFlowCall call)
 
   cached
-  newtype TParamNodeOption =
-    TParamNodeNone() or
-    TParamNodeSome(ParamNode p)
+  newtype TParameterPositionOption =
+    TParameterPositionNone() or
+    TParameterPositionSome(ParameterPosition pos)
 
   cached
   newtype TReturnCtx =
     TReturnCtxNone() or
     TReturnCtxNoFlowThrough() or
-    TReturnCtxMaybeFlowThrough(ReturnPosition pos)
+    TReturnCtxMaybeFlowThrough(ReturnKindExt kind)
 
   cached
   newtype TTypedContent = MkTypedContent(Content c, DataFlowType t) { store(_, c, _, _, t) }
@@ -1315,15 +1315,15 @@ class DataFlowCallOption extends TDataFlowCallOption {
   }
 }
 
-/** An optional `ParamNode`. */
-class ParamNodeOption extends TParamNodeOption {
+/** An optional `ParameterPosition`. */
+class ParameterPositionOption extends TParameterPositionOption {
   string toString() {
-    this = TParamNodeNone() and
+    this = TParameterPositionNone() and
     result = "(none)"
     or
-    exists(ParamNode p |
-      this = TParamNodeSome(p) and
-      result = p.toString()
+    exists(ParameterPosition pos |
+      this = TParameterPositionSome(pos) and
+      result = pos.toString()
     )
   }
 }
@@ -1335,7 +1335,7 @@ class ParamNodeOption extends TParamNodeOption {
  *
  * - `TReturnCtxNone()`: no return flow.
  * - `TReturnCtxNoFlowThrough()`: return flow, but flow through is not possible.
- * - `TReturnCtxMaybeFlowThrough(ReturnPosition pos)`: return flow, of kind `pos`, and
+ * - `TReturnCtxMaybeFlowThrough(ReturnKindExt kind)`: return flow, of kind `kind`, and
  *    flow through may be possible.
  */
 class ReturnCtx extends TReturnCtx {
@@ -1346,9 +1346,9 @@ class ReturnCtx extends TReturnCtx {
     this = TReturnCtxNoFlowThrough() and
     result = "(no flow through)"
     or
-    exists(ReturnPosition pos |
-      this = TReturnCtxMaybeFlowThrough(pos) and
-      result = pos.toString()
+    exists(ReturnKindExt kind |
+      this = TReturnCtxMaybeFlowThrough(kind) and
+      result = kind.toString()
     )
   }
 }
diff --git a/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImplForOnActivityResult.qll b/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImplForOnActivityResult.qll
index a52ad110662..e4cfd5986be 100644
--- a/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImplForOnActivityResult.qll
+++ b/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImplForOnActivityResult.qll
@@ -613,11 +613,28 @@ private predicate hasSinkCallCtx(Configuration config) {
  * explicitly allowed
  */
 bindingset[p, kind]
-private predicate parameterFlowThroughAllowed(ParamNode p, ReturnKindExt kind) {
+private predicate parameterFlowThroughAllowed(ParamNodeEx p, ReturnKindExt kind) {
   exists(ParameterPosition pos | p.isParameterOf(_, pos) |
     not kind.(ParamUpdateReturnKind).getPosition() = pos
     or
-    allowParameterReturnInSelfCached(p)
+    allowParameterReturnInSelfCached(p.asNode())
+  )
+}
+
+/**
+ * Holds if flow from a parameter at position `pos` inside `c` to a return node of
+ * kind `kind` is allowed.
+ *
+ * We don't expect a parameter to return stored in itself, unless
+ * explicitly allowed
+ */
+bindingset[c, pos, kind]
+private predicate parameterFlowThroughAllowed(
+  DataFlowCallable c, ParameterPosition pos, ReturnKindExt kind
+) {
+  exists(ParamNodeEx p |
+    p.isParameterOf(c, pos) and
+    parameterFlowThroughAllowed(p, kind)
   )
 }
 
@@ -1000,14 +1017,14 @@ private module Stage1 implements StageSig {
       returnFlowCallableNodeCand(c, kind, config) and
       p.getEnclosingCallable() = c and
       exists(ap) and
-      parameterFlowThroughAllowed(p.asNode(), kind)
+      parameterFlowThroughAllowed(p, kind)
     )
   }
 
   pragma[nomagic]
-  predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config) {
+  predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config) {
     throughFlowNodeCand(ret, config) and
-    pos = ret.getReturnPosition()
+    kind = ret.getKind()
   }
 
   pragma[nomagic]
@@ -1066,13 +1083,16 @@ private predicate viableReturnPosOutNodeCand1(
  */
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand1(
-  DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, Configuration config
+  DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, Configuration config
 ) {
-  viableReturnPosOutNodeCand1(call, pos, out, config) and
-  pos = ret.getReturnPosition() and
-  Stage1::revFlow(ret, config) and
-  not outBarrier(ret, config) and
-  not inBarrier(out, config)
+  exists(ReturnPosition pos |
+    viableReturnPosOutNodeCand1(call, pos, out, config) and
+    pos = ret.getReturnPosition() and
+    kind = pos.getKind() and
+    Stage1::revFlow(ret, config) and
+    not outBarrier(ret, config) and
+    not inBarrier(out, config)
+  )
 }
 
 pragma[nomagic]
@@ -1102,6 +1122,7 @@ private predicate flowIntoCallNodeCand1(
  * edge in the graph of paths between sources and sinks that ignores call
  * contexts.
  */
+pragma[nomagic]
 private int branch(NodeEx n1, Configuration conf) {
   result =
     strictcount(NodeEx n |
@@ -1114,6 +1135,7 @@ private int branch(NodeEx n1, Configuration conf) {
  * edge in the graph of paths between sources and sinks that ignores call
  * contexts.
  */
+pragma[nomagic]
 private int join(NodeEx n2, Configuration conf) {
   result =
     strictcount(NodeEx n |
@@ -1130,10 +1152,10 @@ private int join(NodeEx n2, Configuration conf) {
  */
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand1(
-  DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
+  DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
   Configuration config
 ) {
-  flowOutOfCallNodeCand1(call, ret, pos, out, pragma[only_bind_into](config)) and
+  flowOutOfCallNodeCand1(call, ret, kind, out, pragma[only_bind_into](config)) and
   exists(int b, int j |
     b = branch(ret, pragma[only_bind_into](config)) and
     j = join(out, pragma[only_bind_into](config)) and
@@ -1152,10 +1174,10 @@ pragma[nomagic]
 private predicate flowIntoCallNodeCand1(
   DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
 ) {
-  flowIntoCallNodeCand1(call, arg, p, config) and
+  flowIntoCallNodeCand1(call, arg, p, pragma[only_bind_into](config)) and
   exists(int b, int j |
-    b = branch(arg, config) and
-    j = join(p, config) and
+    b = branch(arg, pragma[only_bind_into](config)) and
+    j = join(p, pragma[only_bind_into](config)) and
     if b.minimum(j) <= config.fieldFlowBranchLimit()
     then allowsFieldFlow = true
     else allowsFieldFlow = false
@@ -1174,7 +1196,7 @@ private signature module StageSig {
 
   predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config);
 
-  predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config);
+  predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config);
 
   predicate storeStepCand(
     NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, DataFlowType contentType,
@@ -1240,7 +1262,7 @@ private module MkStage<StageSig PrevStage> {
     );
 
     predicate flowOutOfCall(
-      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
+      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
       Configuration config
     );
 
@@ -1266,16 +1288,14 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate flowThroughOutOfCall(
-      DataFlowCall call, CcCall ccc, RetNodeEx ret, ReturnKindExt kind, NodeEx out,
-      boolean allowsFieldFlow, Configuration config
+      DataFlowCall call, DataFlowCallable c, CcCall ccc, RetNodeEx ret, ReturnKindExt kind,
+      NodeEx out, boolean allowsFieldFlow, Configuration config
     ) {
-      exists(ReturnPosition pos |
-        flowOutOfCall(call, ret, pos, out, allowsFieldFlow, pragma[only_bind_into](config)) and
-        kind = pos.getKind() and
-        PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
-        PrevStage::returnMayFlowThrough(ret, pos, pragma[only_bind_into](config)) and
-        matchesCall(ccc, call)
-      )
+      flowOutOfCall(call, ret, kind, out, allowsFieldFlow, pragma[only_bind_into](config)) and
+      PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
+      PrevStage::returnMayFlowThrough(ret, kind, pragma[only_bind_into](config)) and
+      matchesCall(ccc, call) and
+      c = ret.getEnclosingCallable()
     }
 
     /**
@@ -1284,12 +1304,12 @@ private module MkStage<StageSig PrevStage> {
      *
      * The call context `cc` records whether the node is reached through an
      * argument in a call, and if so, `summaryCtx` and `argAp` record the
-     * corresponding parameter and access path of that argument, respectively.
+     * corresponding parameter position and access path of that argument, respectively.
      */
     pragma[nomagic]
     additional predicate fwdFlow(
-      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
-      Configuration config
+      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      Ap ap, Configuration config
     ) {
       fwdFlow0(node, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::revFlow(node, state, unbindApa(getApprox(ap)), config) and
@@ -1298,13 +1318,13 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlow0(
-      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
-      Configuration config
+      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      Ap ap, Configuration config
     ) {
       sourceNode(node, state, config) and
       (if hasSourceCallCtx(config) then cc = ccSomeCall() else cc = ccNone()) and
       argAp = apNone() and
-      summaryCtx = TParamNodeNone() and
+      summaryCtx = TParameterPositionNone() and
       ap = getApNil(node)
       or
       exists(NodeEx mid, FlowState state0, Ap ap0, LocalCc localCc |
@@ -1322,7 +1342,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, pragma[only_bind_into](config)) and
         jumpStep(mid, node, config) and
         cc = ccNone() and
-        summaryCtx = TParamNodeNone() and
+        summaryCtx = TParameterPositionNone() and
         argAp = apNone()
       )
       or
@@ -1330,7 +1350,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, state, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStep(mid, node, config) and
         cc = ccNone() and
-        summaryCtx = TParamNodeNone() and
+        summaryCtx = TParameterPositionNone() and
         argAp = apNone() and
         ap = getApNil(node)
       )
@@ -1339,7 +1359,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, state0, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStateStep(mid, state0, node, state, config) and
         cc = ccNone() and
-        summaryCtx = TParamNodeNone() and
+        summaryCtx = TParameterPositionNone() and
         argAp = apNone() and
         ap = getApNil(node)
       )
@@ -1362,17 +1382,27 @@ private module MkStage<StageSig PrevStage> {
         apa = getApprox(ap) and
         if PrevStage::parameterMayFlowThrough(node, apa, config)
         then (
-          summaryCtx = TParamNodeSome(node.asNode()) and argAp = apSome(ap)
+          summaryCtx = TParameterPositionSome(node.(ParamNodeEx).getPosition()) and
+          argAp = apSome(ap)
         ) else (
-          summaryCtx = TParamNodeNone() and argAp = apNone()
+          summaryCtx = TParameterPositionNone() and argAp = apNone()
         )
       )
       or
       // flow out of a callable
-      fwdFlowOutNotFromArg(node, state, cc, summaryCtx, argAp, ap, config)
+      exists(
+        DataFlowCall call, RetNodeEx ret, boolean allowsFieldFlow, CcNoCall innercc,
+        DataFlowCallable inner
+      |
+        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, config) and
+        flowOutOfCall(call, ret, _, node, allowsFieldFlow, config) and
+        inner = ret.getEnclosingCallable() and
+        cc = getCallContextReturn(inner, call, innercc) and
+        if allowsFieldFlow = false then ap instanceof ApNil else any()
+      )
       or
       // flow through a callable
-      exists(DataFlowCall call, ParamNode summaryCtx0, Ap argAp0 |
+      exists(DataFlowCall call, ParameterPosition summaryCtx0, Ap argAp0 |
         fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, config) and
         fwdFlowIsEntered(call, cc, summaryCtx, argAp, summaryCtx0, argAp0, config)
       )
@@ -1381,7 +1411,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowStore(
       NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc,
-      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
+      ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
     ) {
       exists(DataFlowType contentType |
         fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, config) and
@@ -1406,7 +1436,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowRead(
       Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc,
-      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
+      ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
     ) {
       fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, c, node2, config) and
@@ -1416,7 +1446,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowIn(
       DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, Cc innercc,
-      ParamNodeOption summaryCtx, ApOption argAp, Ap ap, Configuration config
+      ParameterPositionOption summaryCtx, ApOption argAp, Ap ap, Configuration config
     ) {
       exists(ArgNodeEx arg, boolean allowsFieldFlow |
         fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, config) and
@@ -1427,32 +1457,19 @@ private module MkStage<StageSig PrevStage> {
     }
 
     pragma[nomagic]
-    private predicate fwdFlowOutNotFromArg(
-      NodeEx out, FlowState state, Cc ccOut, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+    private predicate fwdFlowOutFromArg(
+      DataFlowCall call, NodeEx out, FlowState state, ParameterPosition summaryCtx, Ap argAp, Ap ap,
       Configuration config
     ) {
       exists(
-        DataFlowCall call, RetNodeEx ret, boolean allowsFieldFlow, CcNoCall innercc,
-        DataFlowCallable inner
+        DataFlowCallable c, RetNodeEx ret, ReturnKindExt kind, boolean allowsFieldFlow, CcCall ccc
       |
-        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, config) and
-        flowOutOfCall(call, ret, _, out, allowsFieldFlow, config) and
-        inner = ret.getEnclosingCallable() and
-        ccOut = getCallContextReturn(inner, call, innercc) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
-      )
-    }
-
-    pragma[nomagic]
-    private predicate fwdFlowOutFromArg(
-      DataFlowCall call, NodeEx out, FlowState state, ParamNode summaryCtx, Ap argAp, Ap ap,
-      Configuration config
-    ) {
-      exists(RetNodeEx ret, ReturnKindExt kind, boolean allowsFieldFlow, CcCall ccc |
-        fwdFlow(ret, state, ccc, TParamNodeSome(summaryCtx), apSome(argAp), ap, config) and
-        flowThroughOutOfCall(call, ccc, ret, kind, out, allowsFieldFlow, config) and
+        fwdFlow(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc),
+          TParameterPositionSome(pragma[only_bind_into](summaryCtx)), apSome(argAp), ap, config) and
+        flowThroughOutOfCall(call, pragma[only_bind_into](c), ccc, ret, kind, out, allowsFieldFlow,
+          config) and
         (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
-        parameterFlowThroughAllowed(summaryCtx, kind)
+        parameterFlowThroughAllowed(c, pragma[only_bind_into](summaryCtx), kind)
       )
     }
 
@@ -1462,13 +1479,13 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate fwdFlowIsEntered(
-      DataFlowCall call, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, ParamNode p, Ap ap,
-      Configuration config
+      DataFlowCall call, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      ParameterPosition pos, Ap ap, Configuration config
     ) {
       exists(ParamNodeEx param |
         fwdFlowIn(call, param, _, cc, _, summaryCtx, argAp, ap, config) and
         PrevStage::parameterMayFlowThrough(param, unbindApa(getApprox(ap)), config) and
-        p = param.asNode()
+        pos = param.getPosition()
       )
     }
 
@@ -1489,23 +1506,41 @@ private module MkStage<StageSig PrevStage> {
     }
 
     pragma[nomagic]
-    private predicate returnFlowsThrough(
-      RetNodeEx ret, ReturnPosition pos, FlowState state, CcCall ccc, ParamNode p, Ap argAp, Ap ap,
-      Configuration config
+    private predicate returnFlowsThrough0(
+      RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, DataFlowCallable c,
+      ParameterPosition ppos, Ap argAp, Ap ap, Configuration config
     ) {
-      fwdFlow(ret, state, ccc, TParamNodeSome(p), apSome(argAp), ap, config) and
-      pos = ret.getReturnPosition() and
-      parameterFlowThroughAllowed(p, pos.getKind())
+      exists(boolean allowsFieldFlow |
+        fwdFlow(ret, state, ccc, TParameterPositionSome(ppos), apSome(argAp), ap, config) and
+        flowThroughOutOfCall(_, c, _, pragma[only_bind_into](ret), kind, _, allowsFieldFlow,
+          pragma[only_bind_into](config)) and
+        if allowsFieldFlow = false then ap instanceof ApNil else any()
+      )
+    }
+
+    pragma[nomagic]
+    private predicate returnFlowsThrough(
+      RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, ParamNodeEx p, Ap argAp,
+      Ap ap, Configuration config
+    ) {
+      exists(DataFlowCallable c, ParameterPosition ppos |
+        returnFlowsThrough0(ret, kind, state, ccc, c, ppos, argAp, ap, config) and
+        p.isParameterOf(c, ppos) and
+        parameterFlowThroughAllowed(p, kind)
+      )
     }
 
     pragma[nomagic]
     private predicate flowThroughIntoCall(
       DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
     ) {
-      flowIntoCall(call, pragma[only_bind_into](arg), pragma[only_bind_into](p), allowsFieldFlow,
-        pragma[only_bind_into](config)) and
-      fwdFlow(arg, _, _, _, _, _, pragma[only_bind_into](config)) and
-      returnFlowsThrough(_, _, _, _, p.asNode(), _, _, pragma[only_bind_into](config))
+      exists(Ap argAp |
+        flowIntoCall(call, pragma[only_bind_into](arg), pragma[only_bind_into](p), allowsFieldFlow,
+          pragma[only_bind_into](config)) and
+        fwdFlow(arg, _, _, _, _, pragma[only_bind_into](argAp), pragma[only_bind_into](config)) and
+        returnFlowsThrough(_, _, _, _, p, pragma[only_bind_into](argAp), _,
+          pragma[only_bind_into](config))
+      )
     }
 
     /**
@@ -1591,21 +1626,25 @@ private module MkStage<StageSig PrevStage> {
       )
       or
       // flow into a callable
-      revFlowInNotToReturn(node, state, returnAp, ap, config) and
-      returnCtx = TReturnCtxNone()
+      exists(ParamNodeEx p, boolean allowsFieldFlow |
+        revFlow(p, state, TReturnCtxNone(), returnAp, ap, config) and
+        flowIntoCall(_, node, p, allowsFieldFlow, config) and
+        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
+        returnCtx = TReturnCtxNone()
+      )
       or
       // flow through a callable
-      exists(DataFlowCall call, ReturnPosition returnPos0, Ap returnAp0 |
-        revFlowInToReturn(call, node, state, returnPos0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnPos0, returnAp0, config)
+      exists(DataFlowCall call, ReturnKindExt returnKind0, Ap returnAp0 |
+        revFlowInToReturn(call, node, state, returnKind0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
       )
       or
       // flow out of a callable
-      exists(ReturnPosition pos |
-        revFlowOut(_, node, pos, state, _, _, ap, config) and
-        if returnFlowsThrough(node, pos, state, _, _, _, ap, config)
+      exists(ReturnKindExt kind |
+        revFlowOut(_, node, kind, state, _, _, ap, config) and
+        if returnFlowsThrough(node, kind, state, _, _, _, ap, config)
         then (
-          returnCtx = TReturnCtxMaybeFlowThrough(pos) and
+          returnCtx = TReturnCtxMaybeFlowThrough(kind) and
           returnAp = apSome(ap)
         ) else (
           returnCtx = TReturnCtxNoFlowThrough() and returnAp = apNone()
@@ -1638,37 +1677,27 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate revFlowOut(
-      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, FlowState state, ReturnCtx returnCtx,
+      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, FlowState state, ReturnCtx returnCtx,
       ApOption returnAp, Ap ap, Configuration config
     ) {
       exists(NodeEx out, boolean allowsFieldFlow |
         revFlow(out, state, returnCtx, returnAp, ap, config) and
-        flowOutOfCall(call, ret, pos, out, allowsFieldFlow, config) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
-      )
-    }
-
-    pragma[nomagic]
-    private predicate revFlowInNotToReturn(
-      ArgNodeEx arg, FlowState state, ApOption returnAp, Ap ap, Configuration config
-    ) {
-      exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(p, state, TReturnCtxNone(), returnAp, ap, config) and
-        flowIntoCall(_, arg, p, allowsFieldFlow, config) and
+        flowOutOfCall(call, ret, kind, out, allowsFieldFlow, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
     pragma[nomagic]
     private predicate revFlowInToReturn(
-      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnPosition returnPos, Ap returnAp,
-      Ap ap, Configuration config
+      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap,
+      Configuration config
     ) {
       exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(p, state, TReturnCtxMaybeFlowThrough(returnPos), apSome(returnAp), ap, config) and
+        revFlow(pragma[only_bind_into](p), state,
+          TReturnCtxMaybeFlowThrough(pragma[only_bind_into](kind)), apSome(returnAp), ap, config) and
         flowThroughIntoCall(call, arg, p, allowsFieldFlow, config) and
         (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
-        parameterFlowThroughAllowed(p.asNode(), returnPos.getKind())
+        parameterFlowThroughAllowed(p, kind)
       )
     }
 
@@ -1679,12 +1708,12 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate revFlowIsReturned(
-      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnPosition pos, Ap ap,
+      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnKindExt kind, Ap ap,
       Configuration config
     ) {
       exists(RetNodeEx ret, FlowState state, CcCall ccc |
-        revFlowOut(call, ret, pos, state, returnCtx, returnAp, ap, config) and
-        returnFlowsThrough(ret, pos, state, ccc, _, _, ap, config) and
+        revFlowOut(call, ret, kind, state, returnCtx, returnAp, ap, config) and
+        returnFlowsThrough(ret, kind, state, ccc, _, _, ap, config) and
         matchesCall(ccc, call)
       )
     }
@@ -1757,37 +1786,37 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate parameterFlowsThroughRev(
-      ParamNodeEx p, Ap ap, ReturnPosition returnPos, Configuration config
+      ParamNodeEx p, Ap ap, ReturnKindExt kind, Configuration config
     ) {
-      revFlow(p, _, TReturnCtxMaybeFlowThrough(returnPos), apSome(_), ap, config) and
-      parameterFlowThroughAllowed(p.asNode(), returnPos.getKind())
+      revFlow(p, _, TReturnCtxMaybeFlowThrough(kind), apSome(_), ap, config) and
+      parameterFlowThroughAllowed(p, kind)
     }
 
     pragma[nomagic]
     predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
-      exists(RetNodeEx ret, ReturnPosition pos |
-        returnFlowsThrough(ret, pos, _, _, p.asNode(), ap, _, config) and
-        parameterFlowsThroughRev(p, ap, pos, config)
+      exists(RetNodeEx ret, ReturnKindExt kind |
+        returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
+        parameterFlowsThroughRev(p, ap, kind, config)
       )
     }
 
     pragma[nomagic]
-    predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config) {
+    predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config) {
       exists(ParamNodeEx p, Ap ap |
-        returnFlowsThrough(ret, pos, _, _, p.asNode(), ap, _, config) and
-        parameterFlowsThroughRev(p, ap, pos, config)
+        returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
+        parameterFlowsThroughRev(p, ap, kind, config)
       )
     }
 
     pragma[nomagic]
     predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
       exists(
-        ReturnPosition returnPos0, Ap returnAp0, ArgNodeEx arg, FlowState state,
+        ReturnKindExt returnKind0, Ap returnAp0, ArgNodeEx arg, FlowState state,
         ReturnCtx returnCtx, ApOption returnAp, Ap ap
       |
         revFlow(arg, state, returnCtx, returnAp, ap, config) and
-        revFlowInToReturn(call, arg, state, returnPos0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnPos0, returnAp0, config)
+        revFlowInToReturn(call, arg, state, returnKind0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
       )
     }
 
@@ -1800,9 +1829,8 @@ private module MkStage<StageSig PrevStage> {
       conscand = count(TypedContent f0, Ap ap | fwdConsCand(f0, ap, config)) and
       states = count(FlowState state | fwdFlow(_, state, _, _, _, _, config)) and
       tuples =
-        count(NodeEx n, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap |
-          fwdFlow(n, state, cc, summaryCtx, argAp, ap, config)
-        )
+        count(NodeEx n, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+          Ap ap | fwdFlow(n, state, cc, summaryCtx, argAp, ap, config))
       or
       fwd = false and
       nodes = count(NodeEx node | revFlow(node, _, _, _, _, config)) and
@@ -1992,10 +2020,10 @@ private module Stage2 implements StageSig {
 
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand2(
-  DataFlowCall call, RetNodeEx node1, ReturnPosition pos, NodeEx node2, boolean allowsFieldFlow,
+  DataFlowCall call, RetNodeEx node1, ReturnKindExt kind, NodeEx node2, boolean allowsFieldFlow,
   Configuration config
 ) {
-  flowOutOfCallNodeCand1(call, node1, pos, node2, allowsFieldFlow, config) and
+  flowOutOfCallNodeCand1(call, node1, kind, node2, allowsFieldFlow, config) and
   Stage2::revFlow(node2, pragma[only_bind_into](config)) and
   Stage2::revFlowAlias(node1, pragma[only_bind_into](config))
 }
@@ -2511,11 +2539,11 @@ private module Stage4Param implements MkStage<Stage3>::StageParam {
 
   pragma[nomagic]
   predicate flowOutOfCall(
-    DataFlowCall call, RetNodeEx node1, ReturnPosition pos, NodeEx node2, boolean allowsFieldFlow,
+    DataFlowCall call, RetNodeEx node1, ReturnKindExt kind, NodeEx node2, boolean allowsFieldFlow,
     Configuration config
   ) {
     exists(FlowState state |
-      flowOutOfCallNodeCand2(call, node1, pos, node2, allowsFieldFlow, config) and
+      flowOutOfCallNodeCand2(call, node1, kind, node2, allowsFieldFlow, config) and
       PrevStage::revFlow(node2, pragma[only_bind_into](state), _, pragma[only_bind_into](config)) and
       PrevStage::revFlowAlias(node1, pragma[only_bind_into](state), _,
         pragma[only_bind_into](config))
@@ -2552,12 +2580,13 @@ private Configuration unbindConf(Configuration conf) {
 
 pragma[nomagic]
 private predicate nodeMayUseSummary0(
-  NodeEx n, ParamNodeEx p, FlowState state, AccessPathApprox apa, Configuration config
+  NodeEx n, DataFlowCallable c, ParameterPosition pos, FlowState state, AccessPathApprox apa,
+  Configuration config
 ) {
   exists(AccessPathApprox apa0 |
-    Stage4::parameterMayFlowThrough(p, _, _) and
+    c = n.getEnclosingCallable() and
     Stage4::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
-    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TParamNodeSome(p.asNode()),
+    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TParameterPositionSome(pos),
       TAccessPathApproxSome(apa), apa0, config)
   )
 }
@@ -2566,9 +2595,10 @@ pragma[nomagic]
 private predicate nodeMayUseSummary(
   NodeEx n, FlowState state, AccessPathApprox apa, Configuration config
 ) {
-  exists(ParamNodeEx p |
+  exists(DataFlowCallable c, ParameterPosition pos, ParamNodeEx p |
     Stage4::parameterMayFlowThrough(p, apa, config) and
-    nodeMayUseSummary0(n, p, state, apa, config)
+    nodeMayUseSummary0(n, c, pos, state, apa, config) and
+    p.isParameterOf(c, pos)
   )
 }
 
@@ -3501,7 +3531,7 @@ private predicate paramFlowsThrough(
     pathNode(mid, ret, state, cc, sc, ap, config, _) and
     kind = ret.getKind() and
     apa = ap.getApprox() and
-    parameterFlowThroughAllowed(sc.getParamNode().asNode(), kind)
+    parameterFlowThroughAllowed(sc.getParamNode(), kind)
   )
 }
 
diff --git a/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImplForSerializability.qll b/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImplForSerializability.qll
index a52ad110662..e4cfd5986be 100644
--- a/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImplForSerializability.qll
+++ b/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImplForSerializability.qll
@@ -613,11 +613,28 @@ private predicate hasSinkCallCtx(Configuration config) {
  * explicitly allowed
  */
 bindingset[p, kind]
-private predicate parameterFlowThroughAllowed(ParamNode p, ReturnKindExt kind) {
+private predicate parameterFlowThroughAllowed(ParamNodeEx p, ReturnKindExt kind) {
   exists(ParameterPosition pos | p.isParameterOf(_, pos) |
     not kind.(ParamUpdateReturnKind).getPosition() = pos
     or
-    allowParameterReturnInSelfCached(p)
+    allowParameterReturnInSelfCached(p.asNode())
+  )
+}
+
+/**
+ * Holds if flow from a parameter at position `pos` inside `c` to a return node of
+ * kind `kind` is allowed.
+ *
+ * We don't expect a parameter to return stored in itself, unless
+ * explicitly allowed
+ */
+bindingset[c, pos, kind]
+private predicate parameterFlowThroughAllowed(
+  DataFlowCallable c, ParameterPosition pos, ReturnKindExt kind
+) {
+  exists(ParamNodeEx p |
+    p.isParameterOf(c, pos) and
+    parameterFlowThroughAllowed(p, kind)
   )
 }
 
@@ -1000,14 +1017,14 @@ private module Stage1 implements StageSig {
       returnFlowCallableNodeCand(c, kind, config) and
       p.getEnclosingCallable() = c and
       exists(ap) and
-      parameterFlowThroughAllowed(p.asNode(), kind)
+      parameterFlowThroughAllowed(p, kind)
     )
   }
 
   pragma[nomagic]
-  predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config) {
+  predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config) {
     throughFlowNodeCand(ret, config) and
-    pos = ret.getReturnPosition()
+    kind = ret.getKind()
   }
 
   pragma[nomagic]
@@ -1066,13 +1083,16 @@ private predicate viableReturnPosOutNodeCand1(
  */
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand1(
-  DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, Configuration config
+  DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, Configuration config
 ) {
-  viableReturnPosOutNodeCand1(call, pos, out, config) and
-  pos = ret.getReturnPosition() and
-  Stage1::revFlow(ret, config) and
-  not outBarrier(ret, config) and
-  not inBarrier(out, config)
+  exists(ReturnPosition pos |
+    viableReturnPosOutNodeCand1(call, pos, out, config) and
+    pos = ret.getReturnPosition() and
+    kind = pos.getKind() and
+    Stage1::revFlow(ret, config) and
+    not outBarrier(ret, config) and
+    not inBarrier(out, config)
+  )
 }
 
 pragma[nomagic]
@@ -1102,6 +1122,7 @@ private predicate flowIntoCallNodeCand1(
  * edge in the graph of paths between sources and sinks that ignores call
  * contexts.
  */
+pragma[nomagic]
 private int branch(NodeEx n1, Configuration conf) {
   result =
     strictcount(NodeEx n |
@@ -1114,6 +1135,7 @@ private int branch(NodeEx n1, Configuration conf) {
  * edge in the graph of paths between sources and sinks that ignores call
  * contexts.
  */
+pragma[nomagic]
 private int join(NodeEx n2, Configuration conf) {
   result =
     strictcount(NodeEx n |
@@ -1130,10 +1152,10 @@ private int join(NodeEx n2, Configuration conf) {
  */
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand1(
-  DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
+  DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
   Configuration config
 ) {
-  flowOutOfCallNodeCand1(call, ret, pos, out, pragma[only_bind_into](config)) and
+  flowOutOfCallNodeCand1(call, ret, kind, out, pragma[only_bind_into](config)) and
   exists(int b, int j |
     b = branch(ret, pragma[only_bind_into](config)) and
     j = join(out, pragma[only_bind_into](config)) and
@@ -1152,10 +1174,10 @@ pragma[nomagic]
 private predicate flowIntoCallNodeCand1(
   DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
 ) {
-  flowIntoCallNodeCand1(call, arg, p, config) and
+  flowIntoCallNodeCand1(call, arg, p, pragma[only_bind_into](config)) and
   exists(int b, int j |
-    b = branch(arg, config) and
-    j = join(p, config) and
+    b = branch(arg, pragma[only_bind_into](config)) and
+    j = join(p, pragma[only_bind_into](config)) and
     if b.minimum(j) <= config.fieldFlowBranchLimit()
     then allowsFieldFlow = true
     else allowsFieldFlow = false
@@ -1174,7 +1196,7 @@ private signature module StageSig {
 
   predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config);
 
-  predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config);
+  predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config);
 
   predicate storeStepCand(
     NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, DataFlowType contentType,
@@ -1240,7 +1262,7 @@ private module MkStage<StageSig PrevStage> {
     );
 
     predicate flowOutOfCall(
-      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
+      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
       Configuration config
     );
 
@@ -1266,16 +1288,14 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate flowThroughOutOfCall(
-      DataFlowCall call, CcCall ccc, RetNodeEx ret, ReturnKindExt kind, NodeEx out,
-      boolean allowsFieldFlow, Configuration config
+      DataFlowCall call, DataFlowCallable c, CcCall ccc, RetNodeEx ret, ReturnKindExt kind,
+      NodeEx out, boolean allowsFieldFlow, Configuration config
     ) {
-      exists(ReturnPosition pos |
-        flowOutOfCall(call, ret, pos, out, allowsFieldFlow, pragma[only_bind_into](config)) and
-        kind = pos.getKind() and
-        PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
-        PrevStage::returnMayFlowThrough(ret, pos, pragma[only_bind_into](config)) and
-        matchesCall(ccc, call)
-      )
+      flowOutOfCall(call, ret, kind, out, allowsFieldFlow, pragma[only_bind_into](config)) and
+      PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
+      PrevStage::returnMayFlowThrough(ret, kind, pragma[only_bind_into](config)) and
+      matchesCall(ccc, call) and
+      c = ret.getEnclosingCallable()
     }
 
     /**
@@ -1284,12 +1304,12 @@ private module MkStage<StageSig PrevStage> {
      *
      * The call context `cc` records whether the node is reached through an
      * argument in a call, and if so, `summaryCtx` and `argAp` record the
-     * corresponding parameter and access path of that argument, respectively.
+     * corresponding parameter position and access path of that argument, respectively.
      */
     pragma[nomagic]
     additional predicate fwdFlow(
-      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
-      Configuration config
+      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      Ap ap, Configuration config
     ) {
       fwdFlow0(node, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::revFlow(node, state, unbindApa(getApprox(ap)), config) and
@@ -1298,13 +1318,13 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlow0(
-      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
-      Configuration config
+      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      Ap ap, Configuration config
     ) {
       sourceNode(node, state, config) and
       (if hasSourceCallCtx(config) then cc = ccSomeCall() else cc = ccNone()) and
       argAp = apNone() and
-      summaryCtx = TParamNodeNone() and
+      summaryCtx = TParameterPositionNone() and
       ap = getApNil(node)
       or
       exists(NodeEx mid, FlowState state0, Ap ap0, LocalCc localCc |
@@ -1322,7 +1342,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, pragma[only_bind_into](config)) and
         jumpStep(mid, node, config) and
         cc = ccNone() and
-        summaryCtx = TParamNodeNone() and
+        summaryCtx = TParameterPositionNone() and
         argAp = apNone()
       )
       or
@@ -1330,7 +1350,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, state, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStep(mid, node, config) and
         cc = ccNone() and
-        summaryCtx = TParamNodeNone() and
+        summaryCtx = TParameterPositionNone() and
         argAp = apNone() and
         ap = getApNil(node)
       )
@@ -1339,7 +1359,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, state0, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStateStep(mid, state0, node, state, config) and
         cc = ccNone() and
-        summaryCtx = TParamNodeNone() and
+        summaryCtx = TParameterPositionNone() and
         argAp = apNone() and
         ap = getApNil(node)
       )
@@ -1362,17 +1382,27 @@ private module MkStage<StageSig PrevStage> {
         apa = getApprox(ap) and
         if PrevStage::parameterMayFlowThrough(node, apa, config)
         then (
-          summaryCtx = TParamNodeSome(node.asNode()) and argAp = apSome(ap)
+          summaryCtx = TParameterPositionSome(node.(ParamNodeEx).getPosition()) and
+          argAp = apSome(ap)
         ) else (
-          summaryCtx = TParamNodeNone() and argAp = apNone()
+          summaryCtx = TParameterPositionNone() and argAp = apNone()
         )
       )
       or
       // flow out of a callable
-      fwdFlowOutNotFromArg(node, state, cc, summaryCtx, argAp, ap, config)
+      exists(
+        DataFlowCall call, RetNodeEx ret, boolean allowsFieldFlow, CcNoCall innercc,
+        DataFlowCallable inner
+      |
+        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, config) and
+        flowOutOfCall(call, ret, _, node, allowsFieldFlow, config) and
+        inner = ret.getEnclosingCallable() and
+        cc = getCallContextReturn(inner, call, innercc) and
+        if allowsFieldFlow = false then ap instanceof ApNil else any()
+      )
       or
       // flow through a callable
-      exists(DataFlowCall call, ParamNode summaryCtx0, Ap argAp0 |
+      exists(DataFlowCall call, ParameterPosition summaryCtx0, Ap argAp0 |
         fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, config) and
         fwdFlowIsEntered(call, cc, summaryCtx, argAp, summaryCtx0, argAp0, config)
       )
@@ -1381,7 +1411,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowStore(
       NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc,
-      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
+      ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
     ) {
       exists(DataFlowType contentType |
         fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, config) and
@@ -1406,7 +1436,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowRead(
       Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc,
-      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
+      ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
     ) {
       fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, c, node2, config) and
@@ -1416,7 +1446,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowIn(
       DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, Cc innercc,
-      ParamNodeOption summaryCtx, ApOption argAp, Ap ap, Configuration config
+      ParameterPositionOption summaryCtx, ApOption argAp, Ap ap, Configuration config
     ) {
       exists(ArgNodeEx arg, boolean allowsFieldFlow |
         fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, config) and
@@ -1427,32 +1457,19 @@ private module MkStage<StageSig PrevStage> {
     }
 
     pragma[nomagic]
-    private predicate fwdFlowOutNotFromArg(
-      NodeEx out, FlowState state, Cc ccOut, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+    private predicate fwdFlowOutFromArg(
+      DataFlowCall call, NodeEx out, FlowState state, ParameterPosition summaryCtx, Ap argAp, Ap ap,
       Configuration config
     ) {
       exists(
-        DataFlowCall call, RetNodeEx ret, boolean allowsFieldFlow, CcNoCall innercc,
-        DataFlowCallable inner
+        DataFlowCallable c, RetNodeEx ret, ReturnKindExt kind, boolean allowsFieldFlow, CcCall ccc
       |
-        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, config) and
-        flowOutOfCall(call, ret, _, out, allowsFieldFlow, config) and
-        inner = ret.getEnclosingCallable() and
-        ccOut = getCallContextReturn(inner, call, innercc) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
-      )
-    }
-
-    pragma[nomagic]
-    private predicate fwdFlowOutFromArg(
-      DataFlowCall call, NodeEx out, FlowState state, ParamNode summaryCtx, Ap argAp, Ap ap,
-      Configuration config
-    ) {
-      exists(RetNodeEx ret, ReturnKindExt kind, boolean allowsFieldFlow, CcCall ccc |
-        fwdFlow(ret, state, ccc, TParamNodeSome(summaryCtx), apSome(argAp), ap, config) and
-        flowThroughOutOfCall(call, ccc, ret, kind, out, allowsFieldFlow, config) and
+        fwdFlow(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc),
+          TParameterPositionSome(pragma[only_bind_into](summaryCtx)), apSome(argAp), ap, config) and
+        flowThroughOutOfCall(call, pragma[only_bind_into](c), ccc, ret, kind, out, allowsFieldFlow,
+          config) and
         (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
-        parameterFlowThroughAllowed(summaryCtx, kind)
+        parameterFlowThroughAllowed(c, pragma[only_bind_into](summaryCtx), kind)
       )
     }
 
@@ -1462,13 +1479,13 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate fwdFlowIsEntered(
-      DataFlowCall call, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, ParamNode p, Ap ap,
-      Configuration config
+      DataFlowCall call, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      ParameterPosition pos, Ap ap, Configuration config
     ) {
       exists(ParamNodeEx param |
         fwdFlowIn(call, param, _, cc, _, summaryCtx, argAp, ap, config) and
         PrevStage::parameterMayFlowThrough(param, unbindApa(getApprox(ap)), config) and
-        p = param.asNode()
+        pos = param.getPosition()
       )
     }
 
@@ -1489,23 +1506,41 @@ private module MkStage<StageSig PrevStage> {
     }
 
     pragma[nomagic]
-    private predicate returnFlowsThrough(
-      RetNodeEx ret, ReturnPosition pos, FlowState state, CcCall ccc, ParamNode p, Ap argAp, Ap ap,
-      Configuration config
+    private predicate returnFlowsThrough0(
+      RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, DataFlowCallable c,
+      ParameterPosition ppos, Ap argAp, Ap ap, Configuration config
     ) {
-      fwdFlow(ret, state, ccc, TParamNodeSome(p), apSome(argAp), ap, config) and
-      pos = ret.getReturnPosition() and
-      parameterFlowThroughAllowed(p, pos.getKind())
+      exists(boolean allowsFieldFlow |
+        fwdFlow(ret, state, ccc, TParameterPositionSome(ppos), apSome(argAp), ap, config) and
+        flowThroughOutOfCall(_, c, _, pragma[only_bind_into](ret), kind, _, allowsFieldFlow,
+          pragma[only_bind_into](config)) and
+        if allowsFieldFlow = false then ap instanceof ApNil else any()
+      )
+    }
+
+    pragma[nomagic]
+    private predicate returnFlowsThrough(
+      RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, ParamNodeEx p, Ap argAp,
+      Ap ap, Configuration config
+    ) {
+      exists(DataFlowCallable c, ParameterPosition ppos |
+        returnFlowsThrough0(ret, kind, state, ccc, c, ppos, argAp, ap, config) and
+        p.isParameterOf(c, ppos) and
+        parameterFlowThroughAllowed(p, kind)
+      )
     }
 
     pragma[nomagic]
     private predicate flowThroughIntoCall(
       DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
     ) {
-      flowIntoCall(call, pragma[only_bind_into](arg), pragma[only_bind_into](p), allowsFieldFlow,
-        pragma[only_bind_into](config)) and
-      fwdFlow(arg, _, _, _, _, _, pragma[only_bind_into](config)) and
-      returnFlowsThrough(_, _, _, _, p.asNode(), _, _, pragma[only_bind_into](config))
+      exists(Ap argAp |
+        flowIntoCall(call, pragma[only_bind_into](arg), pragma[only_bind_into](p), allowsFieldFlow,
+          pragma[only_bind_into](config)) and
+        fwdFlow(arg, _, _, _, _, pragma[only_bind_into](argAp), pragma[only_bind_into](config)) and
+        returnFlowsThrough(_, _, _, _, p, pragma[only_bind_into](argAp), _,
+          pragma[only_bind_into](config))
+      )
     }
 
     /**
@@ -1591,21 +1626,25 @@ private module MkStage<StageSig PrevStage> {
       )
       or
       // flow into a callable
-      revFlowInNotToReturn(node, state, returnAp, ap, config) and
-      returnCtx = TReturnCtxNone()
+      exists(ParamNodeEx p, boolean allowsFieldFlow |
+        revFlow(p, state, TReturnCtxNone(), returnAp, ap, config) and
+        flowIntoCall(_, node, p, allowsFieldFlow, config) and
+        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
+        returnCtx = TReturnCtxNone()
+      )
       or
       // flow through a callable
-      exists(DataFlowCall call, ReturnPosition returnPos0, Ap returnAp0 |
-        revFlowInToReturn(call, node, state, returnPos0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnPos0, returnAp0, config)
+      exists(DataFlowCall call, ReturnKindExt returnKind0, Ap returnAp0 |
+        revFlowInToReturn(call, node, state, returnKind0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
       )
       or
       // flow out of a callable
-      exists(ReturnPosition pos |
-        revFlowOut(_, node, pos, state, _, _, ap, config) and
-        if returnFlowsThrough(node, pos, state, _, _, _, ap, config)
+      exists(ReturnKindExt kind |
+        revFlowOut(_, node, kind, state, _, _, ap, config) and
+        if returnFlowsThrough(node, kind, state, _, _, _, ap, config)
         then (
-          returnCtx = TReturnCtxMaybeFlowThrough(pos) and
+          returnCtx = TReturnCtxMaybeFlowThrough(kind) and
           returnAp = apSome(ap)
         ) else (
           returnCtx = TReturnCtxNoFlowThrough() and returnAp = apNone()
@@ -1638,37 +1677,27 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate revFlowOut(
-      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, FlowState state, ReturnCtx returnCtx,
+      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, FlowState state, ReturnCtx returnCtx,
       ApOption returnAp, Ap ap, Configuration config
     ) {
       exists(NodeEx out, boolean allowsFieldFlow |
         revFlow(out, state, returnCtx, returnAp, ap, config) and
-        flowOutOfCall(call, ret, pos, out, allowsFieldFlow, config) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
-      )
-    }
-
-    pragma[nomagic]
-    private predicate revFlowInNotToReturn(
-      ArgNodeEx arg, FlowState state, ApOption returnAp, Ap ap, Configuration config
-    ) {
-      exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(p, state, TReturnCtxNone(), returnAp, ap, config) and
-        flowIntoCall(_, arg, p, allowsFieldFlow, config) and
+        flowOutOfCall(call, ret, kind, out, allowsFieldFlow, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
     pragma[nomagic]
     private predicate revFlowInToReturn(
-      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnPosition returnPos, Ap returnAp,
-      Ap ap, Configuration config
+      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap,
+      Configuration config
     ) {
       exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(p, state, TReturnCtxMaybeFlowThrough(returnPos), apSome(returnAp), ap, config) and
+        revFlow(pragma[only_bind_into](p), state,
+          TReturnCtxMaybeFlowThrough(pragma[only_bind_into](kind)), apSome(returnAp), ap, config) and
         flowThroughIntoCall(call, arg, p, allowsFieldFlow, config) and
         (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
-        parameterFlowThroughAllowed(p.asNode(), returnPos.getKind())
+        parameterFlowThroughAllowed(p, kind)
       )
     }
 
@@ -1679,12 +1708,12 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate revFlowIsReturned(
-      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnPosition pos, Ap ap,
+      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnKindExt kind, Ap ap,
       Configuration config
     ) {
       exists(RetNodeEx ret, FlowState state, CcCall ccc |
-        revFlowOut(call, ret, pos, state, returnCtx, returnAp, ap, config) and
-        returnFlowsThrough(ret, pos, state, ccc, _, _, ap, config) and
+        revFlowOut(call, ret, kind, state, returnCtx, returnAp, ap, config) and
+        returnFlowsThrough(ret, kind, state, ccc, _, _, ap, config) and
         matchesCall(ccc, call)
       )
     }
@@ -1757,37 +1786,37 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate parameterFlowsThroughRev(
-      ParamNodeEx p, Ap ap, ReturnPosition returnPos, Configuration config
+      ParamNodeEx p, Ap ap, ReturnKindExt kind, Configuration config
     ) {
-      revFlow(p, _, TReturnCtxMaybeFlowThrough(returnPos), apSome(_), ap, config) and
-      parameterFlowThroughAllowed(p.asNode(), returnPos.getKind())
+      revFlow(p, _, TReturnCtxMaybeFlowThrough(kind), apSome(_), ap, config) and
+      parameterFlowThroughAllowed(p, kind)
     }
 
     pragma[nomagic]
     predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
-      exists(RetNodeEx ret, ReturnPosition pos |
-        returnFlowsThrough(ret, pos, _, _, p.asNode(), ap, _, config) and
-        parameterFlowsThroughRev(p, ap, pos, config)
+      exists(RetNodeEx ret, ReturnKindExt kind |
+        returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
+        parameterFlowsThroughRev(p, ap, kind, config)
       )
     }
 
     pragma[nomagic]
-    predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config) {
+    predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config) {
       exists(ParamNodeEx p, Ap ap |
-        returnFlowsThrough(ret, pos, _, _, p.asNode(), ap, _, config) and
-        parameterFlowsThroughRev(p, ap, pos, config)
+        returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
+        parameterFlowsThroughRev(p, ap, kind, config)
       )
     }
 
     pragma[nomagic]
     predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
       exists(
-        ReturnPosition returnPos0, Ap returnAp0, ArgNodeEx arg, FlowState state,
+        ReturnKindExt returnKind0, Ap returnAp0, ArgNodeEx arg, FlowState state,
         ReturnCtx returnCtx, ApOption returnAp, Ap ap
       |
         revFlow(arg, state, returnCtx, returnAp, ap, config) and
-        revFlowInToReturn(call, arg, state, returnPos0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnPos0, returnAp0, config)
+        revFlowInToReturn(call, arg, state, returnKind0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
       )
     }
 
@@ -1800,9 +1829,8 @@ private module MkStage<StageSig PrevStage> {
       conscand = count(TypedContent f0, Ap ap | fwdConsCand(f0, ap, config)) and
       states = count(FlowState state | fwdFlow(_, state, _, _, _, _, config)) and
       tuples =
-        count(NodeEx n, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap |
-          fwdFlow(n, state, cc, summaryCtx, argAp, ap, config)
-        )
+        count(NodeEx n, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+          Ap ap | fwdFlow(n, state, cc, summaryCtx, argAp, ap, config))
       or
       fwd = false and
       nodes = count(NodeEx node | revFlow(node, _, _, _, _, config)) and
@@ -1992,10 +2020,10 @@ private module Stage2 implements StageSig {
 
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand2(
-  DataFlowCall call, RetNodeEx node1, ReturnPosition pos, NodeEx node2, boolean allowsFieldFlow,
+  DataFlowCall call, RetNodeEx node1, ReturnKindExt kind, NodeEx node2, boolean allowsFieldFlow,
   Configuration config
 ) {
-  flowOutOfCallNodeCand1(call, node1, pos, node2, allowsFieldFlow, config) and
+  flowOutOfCallNodeCand1(call, node1, kind, node2, allowsFieldFlow, config) and
   Stage2::revFlow(node2, pragma[only_bind_into](config)) and
   Stage2::revFlowAlias(node1, pragma[only_bind_into](config))
 }
@@ -2511,11 +2539,11 @@ private module Stage4Param implements MkStage<Stage3>::StageParam {
 
   pragma[nomagic]
   predicate flowOutOfCall(
-    DataFlowCall call, RetNodeEx node1, ReturnPosition pos, NodeEx node2, boolean allowsFieldFlow,
+    DataFlowCall call, RetNodeEx node1, ReturnKindExt kind, NodeEx node2, boolean allowsFieldFlow,
     Configuration config
   ) {
     exists(FlowState state |
-      flowOutOfCallNodeCand2(call, node1, pos, node2, allowsFieldFlow, config) and
+      flowOutOfCallNodeCand2(call, node1, kind, node2, allowsFieldFlow, config) and
       PrevStage::revFlow(node2, pragma[only_bind_into](state), _, pragma[only_bind_into](config)) and
       PrevStage::revFlowAlias(node1, pragma[only_bind_into](state), _,
         pragma[only_bind_into](config))
@@ -2552,12 +2580,13 @@ private Configuration unbindConf(Configuration conf) {
 
 pragma[nomagic]
 private predicate nodeMayUseSummary0(
-  NodeEx n, ParamNodeEx p, FlowState state, AccessPathApprox apa, Configuration config
+  NodeEx n, DataFlowCallable c, ParameterPosition pos, FlowState state, AccessPathApprox apa,
+  Configuration config
 ) {
   exists(AccessPathApprox apa0 |
-    Stage4::parameterMayFlowThrough(p, _, _) and
+    c = n.getEnclosingCallable() and
     Stage4::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
-    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TParamNodeSome(p.asNode()),
+    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TParameterPositionSome(pos),
       TAccessPathApproxSome(apa), apa0, config)
   )
 }
@@ -2566,9 +2595,10 @@ pragma[nomagic]
 private predicate nodeMayUseSummary(
   NodeEx n, FlowState state, AccessPathApprox apa, Configuration config
 ) {
-  exists(ParamNodeEx p |
+  exists(DataFlowCallable c, ParameterPosition pos, ParamNodeEx p |
     Stage4::parameterMayFlowThrough(p, apa, config) and
-    nodeMayUseSummary0(n, p, state, apa, config)
+    nodeMayUseSummary0(n, c, pos, state, apa, config) and
+    p.isParameterOf(c, pos)
   )
 }
 
@@ -3501,7 +3531,7 @@ private predicate paramFlowsThrough(
     pathNode(mid, ret, state, cc, sc, ap, config, _) and
     kind = ret.getKind() and
     apa = ap.getApprox() and
-    parameterFlowThroughAllowed(sc.getParamNode().asNode(), kind)
+    parameterFlowThroughAllowed(sc.getParamNode(), kind)
   )
 }
 
diff --git a/python/ql/lib/semmle/python/dataflow/new/internal/DataFlowImpl.qll b/python/ql/lib/semmle/python/dataflow/new/internal/DataFlowImpl.qll
index a52ad110662..e4cfd5986be 100644
--- a/python/ql/lib/semmle/python/dataflow/new/internal/DataFlowImpl.qll
+++ b/python/ql/lib/semmle/python/dataflow/new/internal/DataFlowImpl.qll
@@ -613,11 +613,28 @@ private predicate hasSinkCallCtx(Configuration config) {
  * explicitly allowed
  */
 bindingset[p, kind]
-private predicate parameterFlowThroughAllowed(ParamNode p, ReturnKindExt kind) {
+private predicate parameterFlowThroughAllowed(ParamNodeEx p, ReturnKindExt kind) {
   exists(ParameterPosition pos | p.isParameterOf(_, pos) |
     not kind.(ParamUpdateReturnKind).getPosition() = pos
     or
-    allowParameterReturnInSelfCached(p)
+    allowParameterReturnInSelfCached(p.asNode())
+  )
+}
+
+/**
+ * Holds if flow from a parameter at position `pos` inside `c` to a return node of
+ * kind `kind` is allowed.
+ *
+ * We don't expect a parameter to return stored in itself, unless
+ * explicitly allowed
+ */
+bindingset[c, pos, kind]
+private predicate parameterFlowThroughAllowed(
+  DataFlowCallable c, ParameterPosition pos, ReturnKindExt kind
+) {
+  exists(ParamNodeEx p |
+    p.isParameterOf(c, pos) and
+    parameterFlowThroughAllowed(p, kind)
   )
 }
 
@@ -1000,14 +1017,14 @@ private module Stage1 implements StageSig {
       returnFlowCallableNodeCand(c, kind, config) and
       p.getEnclosingCallable() = c and
       exists(ap) and
-      parameterFlowThroughAllowed(p.asNode(), kind)
+      parameterFlowThroughAllowed(p, kind)
     )
   }
 
   pragma[nomagic]
-  predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config) {
+  predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config) {
     throughFlowNodeCand(ret, config) and
-    pos = ret.getReturnPosition()
+    kind = ret.getKind()
   }
 
   pragma[nomagic]
@@ -1066,13 +1083,16 @@ private predicate viableReturnPosOutNodeCand1(
  */
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand1(
-  DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, Configuration config
+  DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, Configuration config
 ) {
-  viableReturnPosOutNodeCand1(call, pos, out, config) and
-  pos = ret.getReturnPosition() and
-  Stage1::revFlow(ret, config) and
-  not outBarrier(ret, config) and
-  not inBarrier(out, config)
+  exists(ReturnPosition pos |
+    viableReturnPosOutNodeCand1(call, pos, out, config) and
+    pos = ret.getReturnPosition() and
+    kind = pos.getKind() and
+    Stage1::revFlow(ret, config) and
+    not outBarrier(ret, config) and
+    not inBarrier(out, config)
+  )
 }
 
 pragma[nomagic]
@@ -1102,6 +1122,7 @@ private predicate flowIntoCallNodeCand1(
  * edge in the graph of paths between sources and sinks that ignores call
  * contexts.
  */
+pragma[nomagic]
 private int branch(NodeEx n1, Configuration conf) {
   result =
     strictcount(NodeEx n |
@@ -1114,6 +1135,7 @@ private int branch(NodeEx n1, Configuration conf) {
  * edge in the graph of paths between sources and sinks that ignores call
  * contexts.
  */
+pragma[nomagic]
 private int join(NodeEx n2, Configuration conf) {
   result =
     strictcount(NodeEx n |
@@ -1130,10 +1152,10 @@ private int join(NodeEx n2, Configuration conf) {
  */
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand1(
-  DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
+  DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
   Configuration config
 ) {
-  flowOutOfCallNodeCand1(call, ret, pos, out, pragma[only_bind_into](config)) and
+  flowOutOfCallNodeCand1(call, ret, kind, out, pragma[only_bind_into](config)) and
   exists(int b, int j |
     b = branch(ret, pragma[only_bind_into](config)) and
     j = join(out, pragma[only_bind_into](config)) and
@@ -1152,10 +1174,10 @@ pragma[nomagic]
 private predicate flowIntoCallNodeCand1(
   DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
 ) {
-  flowIntoCallNodeCand1(call, arg, p, config) and
+  flowIntoCallNodeCand1(call, arg, p, pragma[only_bind_into](config)) and
   exists(int b, int j |
-    b = branch(arg, config) and
-    j = join(p, config) and
+    b = branch(arg, pragma[only_bind_into](config)) and
+    j = join(p, pragma[only_bind_into](config)) and
     if b.minimum(j) <= config.fieldFlowBranchLimit()
     then allowsFieldFlow = true
     else allowsFieldFlow = false
@@ -1174,7 +1196,7 @@ private signature module StageSig {
 
   predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config);
 
-  predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config);
+  predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config);
 
   predicate storeStepCand(
     NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, DataFlowType contentType,
@@ -1240,7 +1262,7 @@ private module MkStage<StageSig PrevStage> {
     );
 
     predicate flowOutOfCall(
-      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
+      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
       Configuration config
     );
 
@@ -1266,16 +1288,14 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate flowThroughOutOfCall(
-      DataFlowCall call, CcCall ccc, RetNodeEx ret, ReturnKindExt kind, NodeEx out,
-      boolean allowsFieldFlow, Configuration config
+      DataFlowCall call, DataFlowCallable c, CcCall ccc, RetNodeEx ret, ReturnKindExt kind,
+      NodeEx out, boolean allowsFieldFlow, Configuration config
     ) {
-      exists(ReturnPosition pos |
-        flowOutOfCall(call, ret, pos, out, allowsFieldFlow, pragma[only_bind_into](config)) and
-        kind = pos.getKind() and
-        PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
-        PrevStage::returnMayFlowThrough(ret, pos, pragma[only_bind_into](config)) and
-        matchesCall(ccc, call)
-      )
+      flowOutOfCall(call, ret, kind, out, allowsFieldFlow, pragma[only_bind_into](config)) and
+      PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
+      PrevStage::returnMayFlowThrough(ret, kind, pragma[only_bind_into](config)) and
+      matchesCall(ccc, call) and
+      c = ret.getEnclosingCallable()
     }
 
     /**
@@ -1284,12 +1304,12 @@ private module MkStage<StageSig PrevStage> {
      *
      * The call context `cc` records whether the node is reached through an
      * argument in a call, and if so, `summaryCtx` and `argAp` record the
-     * corresponding parameter and access path of that argument, respectively.
+     * corresponding parameter position and access path of that argument, respectively.
      */
     pragma[nomagic]
     additional predicate fwdFlow(
-      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
-      Configuration config
+      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      Ap ap, Configuration config
     ) {
       fwdFlow0(node, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::revFlow(node, state, unbindApa(getApprox(ap)), config) and
@@ -1298,13 +1318,13 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlow0(
-      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
-      Configuration config
+      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      Ap ap, Configuration config
     ) {
       sourceNode(node, state, config) and
       (if hasSourceCallCtx(config) then cc = ccSomeCall() else cc = ccNone()) and
       argAp = apNone() and
-      summaryCtx = TParamNodeNone() and
+      summaryCtx = TParameterPositionNone() and
       ap = getApNil(node)
       or
       exists(NodeEx mid, FlowState state0, Ap ap0, LocalCc localCc |
@@ -1322,7 +1342,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, pragma[only_bind_into](config)) and
         jumpStep(mid, node, config) and
         cc = ccNone() and
-        summaryCtx = TParamNodeNone() and
+        summaryCtx = TParameterPositionNone() and
         argAp = apNone()
       )
       or
@@ -1330,7 +1350,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, state, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStep(mid, node, config) and
         cc = ccNone() and
-        summaryCtx = TParamNodeNone() and
+        summaryCtx = TParameterPositionNone() and
         argAp = apNone() and
         ap = getApNil(node)
       )
@@ -1339,7 +1359,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, state0, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStateStep(mid, state0, node, state, config) and
         cc = ccNone() and
-        summaryCtx = TParamNodeNone() and
+        summaryCtx = TParameterPositionNone() and
         argAp = apNone() and
         ap = getApNil(node)
       )
@@ -1362,17 +1382,27 @@ private module MkStage<StageSig PrevStage> {
         apa = getApprox(ap) and
         if PrevStage::parameterMayFlowThrough(node, apa, config)
         then (
-          summaryCtx = TParamNodeSome(node.asNode()) and argAp = apSome(ap)
+          summaryCtx = TParameterPositionSome(node.(ParamNodeEx).getPosition()) and
+          argAp = apSome(ap)
         ) else (
-          summaryCtx = TParamNodeNone() and argAp = apNone()
+          summaryCtx = TParameterPositionNone() and argAp = apNone()
         )
       )
       or
       // flow out of a callable
-      fwdFlowOutNotFromArg(node, state, cc, summaryCtx, argAp, ap, config)
+      exists(
+        DataFlowCall call, RetNodeEx ret, boolean allowsFieldFlow, CcNoCall innercc,
+        DataFlowCallable inner
+      |
+        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, config) and
+        flowOutOfCall(call, ret, _, node, allowsFieldFlow, config) and
+        inner = ret.getEnclosingCallable() and
+        cc = getCallContextReturn(inner, call, innercc) and
+        if allowsFieldFlow = false then ap instanceof ApNil else any()
+      )
       or
       // flow through a callable
-      exists(DataFlowCall call, ParamNode summaryCtx0, Ap argAp0 |
+      exists(DataFlowCall call, ParameterPosition summaryCtx0, Ap argAp0 |
         fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, config) and
         fwdFlowIsEntered(call, cc, summaryCtx, argAp, summaryCtx0, argAp0, config)
       )
@@ -1381,7 +1411,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowStore(
       NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc,
-      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
+      ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
     ) {
       exists(DataFlowType contentType |
         fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, config) and
@@ -1406,7 +1436,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowRead(
       Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc,
-      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
+      ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
     ) {
       fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, c, node2, config) and
@@ -1416,7 +1446,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowIn(
       DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, Cc innercc,
-      ParamNodeOption summaryCtx, ApOption argAp, Ap ap, Configuration config
+      ParameterPositionOption summaryCtx, ApOption argAp, Ap ap, Configuration config
     ) {
       exists(ArgNodeEx arg, boolean allowsFieldFlow |
         fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, config) and
@@ -1427,32 +1457,19 @@ private module MkStage<StageSig PrevStage> {
     }
 
     pragma[nomagic]
-    private predicate fwdFlowOutNotFromArg(
-      NodeEx out, FlowState state, Cc ccOut, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+    private predicate fwdFlowOutFromArg(
+      DataFlowCall call, NodeEx out, FlowState state, ParameterPosition summaryCtx, Ap argAp, Ap ap,
       Configuration config
     ) {
       exists(
-        DataFlowCall call, RetNodeEx ret, boolean allowsFieldFlow, CcNoCall innercc,
-        DataFlowCallable inner
+        DataFlowCallable c, RetNodeEx ret, ReturnKindExt kind, boolean allowsFieldFlow, CcCall ccc
       |
-        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, config) and
-        flowOutOfCall(call, ret, _, out, allowsFieldFlow, config) and
-        inner = ret.getEnclosingCallable() and
-        ccOut = getCallContextReturn(inner, call, innercc) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
-      )
-    }
-
-    pragma[nomagic]
-    private predicate fwdFlowOutFromArg(
-      DataFlowCall call, NodeEx out, FlowState state, ParamNode summaryCtx, Ap argAp, Ap ap,
-      Configuration config
-    ) {
-      exists(RetNodeEx ret, ReturnKindExt kind, boolean allowsFieldFlow, CcCall ccc |
-        fwdFlow(ret, state, ccc, TParamNodeSome(summaryCtx), apSome(argAp), ap, config) and
-        flowThroughOutOfCall(call, ccc, ret, kind, out, allowsFieldFlow, config) and
+        fwdFlow(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc),
+          TParameterPositionSome(pragma[only_bind_into](summaryCtx)), apSome(argAp), ap, config) and
+        flowThroughOutOfCall(call, pragma[only_bind_into](c), ccc, ret, kind, out, allowsFieldFlow,
+          config) and
         (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
-        parameterFlowThroughAllowed(summaryCtx, kind)
+        parameterFlowThroughAllowed(c, pragma[only_bind_into](summaryCtx), kind)
       )
     }
 
@@ -1462,13 +1479,13 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate fwdFlowIsEntered(
-      DataFlowCall call, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, ParamNode p, Ap ap,
-      Configuration config
+      DataFlowCall call, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      ParameterPosition pos, Ap ap, Configuration config
     ) {
       exists(ParamNodeEx param |
         fwdFlowIn(call, param, _, cc, _, summaryCtx, argAp, ap, config) and
         PrevStage::parameterMayFlowThrough(param, unbindApa(getApprox(ap)), config) and
-        p = param.asNode()
+        pos = param.getPosition()
       )
     }
 
@@ -1489,23 +1506,41 @@ private module MkStage<StageSig PrevStage> {
     }
 
     pragma[nomagic]
-    private predicate returnFlowsThrough(
-      RetNodeEx ret, ReturnPosition pos, FlowState state, CcCall ccc, ParamNode p, Ap argAp, Ap ap,
-      Configuration config
+    private predicate returnFlowsThrough0(
+      RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, DataFlowCallable c,
+      ParameterPosition ppos, Ap argAp, Ap ap, Configuration config
     ) {
-      fwdFlow(ret, state, ccc, TParamNodeSome(p), apSome(argAp), ap, config) and
-      pos = ret.getReturnPosition() and
-      parameterFlowThroughAllowed(p, pos.getKind())
+      exists(boolean allowsFieldFlow |
+        fwdFlow(ret, state, ccc, TParameterPositionSome(ppos), apSome(argAp), ap, config) and
+        flowThroughOutOfCall(_, c, _, pragma[only_bind_into](ret), kind, _, allowsFieldFlow,
+          pragma[only_bind_into](config)) and
+        if allowsFieldFlow = false then ap instanceof ApNil else any()
+      )
+    }
+
+    pragma[nomagic]
+    private predicate returnFlowsThrough(
+      RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, ParamNodeEx p, Ap argAp,
+      Ap ap, Configuration config
+    ) {
+      exists(DataFlowCallable c, ParameterPosition ppos |
+        returnFlowsThrough0(ret, kind, state, ccc, c, ppos, argAp, ap, config) and
+        p.isParameterOf(c, ppos) and
+        parameterFlowThroughAllowed(p, kind)
+      )
     }
 
     pragma[nomagic]
     private predicate flowThroughIntoCall(
       DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
     ) {
-      flowIntoCall(call, pragma[only_bind_into](arg), pragma[only_bind_into](p), allowsFieldFlow,
-        pragma[only_bind_into](config)) and
-      fwdFlow(arg, _, _, _, _, _, pragma[only_bind_into](config)) and
-      returnFlowsThrough(_, _, _, _, p.asNode(), _, _, pragma[only_bind_into](config))
+      exists(Ap argAp |
+        flowIntoCall(call, pragma[only_bind_into](arg), pragma[only_bind_into](p), allowsFieldFlow,
+          pragma[only_bind_into](config)) and
+        fwdFlow(arg, _, _, _, _, pragma[only_bind_into](argAp), pragma[only_bind_into](config)) and
+        returnFlowsThrough(_, _, _, _, p, pragma[only_bind_into](argAp), _,
+          pragma[only_bind_into](config))
+      )
     }
 
     /**
@@ -1591,21 +1626,25 @@ private module MkStage<StageSig PrevStage> {
       )
       or
       // flow into a callable
-      revFlowInNotToReturn(node, state, returnAp, ap, config) and
-      returnCtx = TReturnCtxNone()
+      exists(ParamNodeEx p, boolean allowsFieldFlow |
+        revFlow(p, state, TReturnCtxNone(), returnAp, ap, config) and
+        flowIntoCall(_, node, p, allowsFieldFlow, config) and
+        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
+        returnCtx = TReturnCtxNone()
+      )
       or
       // flow through a callable
-      exists(DataFlowCall call, ReturnPosition returnPos0, Ap returnAp0 |
-        revFlowInToReturn(call, node, state, returnPos0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnPos0, returnAp0, config)
+      exists(DataFlowCall call, ReturnKindExt returnKind0, Ap returnAp0 |
+        revFlowInToReturn(call, node, state, returnKind0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
       )
       or
       // flow out of a callable
-      exists(ReturnPosition pos |
-        revFlowOut(_, node, pos, state, _, _, ap, config) and
-        if returnFlowsThrough(node, pos, state, _, _, _, ap, config)
+      exists(ReturnKindExt kind |
+        revFlowOut(_, node, kind, state, _, _, ap, config) and
+        if returnFlowsThrough(node, kind, state, _, _, _, ap, config)
         then (
-          returnCtx = TReturnCtxMaybeFlowThrough(pos) and
+          returnCtx = TReturnCtxMaybeFlowThrough(kind) and
           returnAp = apSome(ap)
         ) else (
           returnCtx = TReturnCtxNoFlowThrough() and returnAp = apNone()
@@ -1638,37 +1677,27 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate revFlowOut(
-      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, FlowState state, ReturnCtx returnCtx,
+      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, FlowState state, ReturnCtx returnCtx,
       ApOption returnAp, Ap ap, Configuration config
     ) {
       exists(NodeEx out, boolean allowsFieldFlow |
         revFlow(out, state, returnCtx, returnAp, ap, config) and
-        flowOutOfCall(call, ret, pos, out, allowsFieldFlow, config) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
-      )
-    }
-
-    pragma[nomagic]
-    private predicate revFlowInNotToReturn(
-      ArgNodeEx arg, FlowState state, ApOption returnAp, Ap ap, Configuration config
-    ) {
-      exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(p, state, TReturnCtxNone(), returnAp, ap, config) and
-        flowIntoCall(_, arg, p, allowsFieldFlow, config) and
+        flowOutOfCall(call, ret, kind, out, allowsFieldFlow, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
     pragma[nomagic]
     private predicate revFlowInToReturn(
-      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnPosition returnPos, Ap returnAp,
-      Ap ap, Configuration config
+      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap,
+      Configuration config
     ) {
       exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(p, state, TReturnCtxMaybeFlowThrough(returnPos), apSome(returnAp), ap, config) and
+        revFlow(pragma[only_bind_into](p), state,
+          TReturnCtxMaybeFlowThrough(pragma[only_bind_into](kind)), apSome(returnAp), ap, config) and
         flowThroughIntoCall(call, arg, p, allowsFieldFlow, config) and
         (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
-        parameterFlowThroughAllowed(p.asNode(), returnPos.getKind())
+        parameterFlowThroughAllowed(p, kind)
       )
     }
 
@@ -1679,12 +1708,12 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate revFlowIsReturned(
-      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnPosition pos, Ap ap,
+      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnKindExt kind, Ap ap,
       Configuration config
     ) {
       exists(RetNodeEx ret, FlowState state, CcCall ccc |
-        revFlowOut(call, ret, pos, state, returnCtx, returnAp, ap, config) and
-        returnFlowsThrough(ret, pos, state, ccc, _, _, ap, config) and
+        revFlowOut(call, ret, kind, state, returnCtx, returnAp, ap, config) and
+        returnFlowsThrough(ret, kind, state, ccc, _, _, ap, config) and
         matchesCall(ccc, call)
       )
     }
@@ -1757,37 +1786,37 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate parameterFlowsThroughRev(
-      ParamNodeEx p, Ap ap, ReturnPosition returnPos, Configuration config
+      ParamNodeEx p, Ap ap, ReturnKindExt kind, Configuration config
     ) {
-      revFlow(p, _, TReturnCtxMaybeFlowThrough(returnPos), apSome(_), ap, config) and
-      parameterFlowThroughAllowed(p.asNode(), returnPos.getKind())
+      revFlow(p, _, TReturnCtxMaybeFlowThrough(kind), apSome(_), ap, config) and
+      parameterFlowThroughAllowed(p, kind)
     }
 
     pragma[nomagic]
     predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
-      exists(RetNodeEx ret, ReturnPosition pos |
-        returnFlowsThrough(ret, pos, _, _, p.asNode(), ap, _, config) and
-        parameterFlowsThroughRev(p, ap, pos, config)
+      exists(RetNodeEx ret, ReturnKindExt kind |
+        returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
+        parameterFlowsThroughRev(p, ap, kind, config)
       )
     }
 
     pragma[nomagic]
-    predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config) {
+    predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config) {
       exists(ParamNodeEx p, Ap ap |
-        returnFlowsThrough(ret, pos, _, _, p.asNode(), ap, _, config) and
-        parameterFlowsThroughRev(p, ap, pos, config)
+        returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
+        parameterFlowsThroughRev(p, ap, kind, config)
       )
     }
 
     pragma[nomagic]
     predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
       exists(
-        ReturnPosition returnPos0, Ap returnAp0, ArgNodeEx arg, FlowState state,
+        ReturnKindExt returnKind0, Ap returnAp0, ArgNodeEx arg, FlowState state,
         ReturnCtx returnCtx, ApOption returnAp, Ap ap
       |
         revFlow(arg, state, returnCtx, returnAp, ap, config) and
-        revFlowInToReturn(call, arg, state, returnPos0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnPos0, returnAp0, config)
+        revFlowInToReturn(call, arg, state, returnKind0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
       )
     }
 
@@ -1800,9 +1829,8 @@ private module MkStage<StageSig PrevStage> {
       conscand = count(TypedContent f0, Ap ap | fwdConsCand(f0, ap, config)) and
       states = count(FlowState state | fwdFlow(_, state, _, _, _, _, config)) and
       tuples =
-        count(NodeEx n, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap |
-          fwdFlow(n, state, cc, summaryCtx, argAp, ap, config)
-        )
+        count(NodeEx n, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+          Ap ap | fwdFlow(n, state, cc, summaryCtx, argAp, ap, config))
       or
       fwd = false and
       nodes = count(NodeEx node | revFlow(node, _, _, _, _, config)) and
@@ -1992,10 +2020,10 @@ private module Stage2 implements StageSig {
 
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand2(
-  DataFlowCall call, RetNodeEx node1, ReturnPosition pos, NodeEx node2, boolean allowsFieldFlow,
+  DataFlowCall call, RetNodeEx node1, ReturnKindExt kind, NodeEx node2, boolean allowsFieldFlow,
   Configuration config
 ) {
-  flowOutOfCallNodeCand1(call, node1, pos, node2, allowsFieldFlow, config) and
+  flowOutOfCallNodeCand1(call, node1, kind, node2, allowsFieldFlow, config) and
   Stage2::revFlow(node2, pragma[only_bind_into](config)) and
   Stage2::revFlowAlias(node1, pragma[only_bind_into](config))
 }
@@ -2511,11 +2539,11 @@ private module Stage4Param implements MkStage<Stage3>::StageParam {
 
   pragma[nomagic]
   predicate flowOutOfCall(
-    DataFlowCall call, RetNodeEx node1, ReturnPosition pos, NodeEx node2, boolean allowsFieldFlow,
+    DataFlowCall call, RetNodeEx node1, ReturnKindExt kind, NodeEx node2, boolean allowsFieldFlow,
     Configuration config
   ) {
     exists(FlowState state |
-      flowOutOfCallNodeCand2(call, node1, pos, node2, allowsFieldFlow, config) and
+      flowOutOfCallNodeCand2(call, node1, kind, node2, allowsFieldFlow, config) and
       PrevStage::revFlow(node2, pragma[only_bind_into](state), _, pragma[only_bind_into](config)) and
       PrevStage::revFlowAlias(node1, pragma[only_bind_into](state), _,
         pragma[only_bind_into](config))
@@ -2552,12 +2580,13 @@ private Configuration unbindConf(Configuration conf) {
 
 pragma[nomagic]
 private predicate nodeMayUseSummary0(
-  NodeEx n, ParamNodeEx p, FlowState state, AccessPathApprox apa, Configuration config
+  NodeEx n, DataFlowCallable c, ParameterPosition pos, FlowState state, AccessPathApprox apa,
+  Configuration config
 ) {
   exists(AccessPathApprox apa0 |
-    Stage4::parameterMayFlowThrough(p, _, _) and
+    c = n.getEnclosingCallable() and
     Stage4::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
-    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TParamNodeSome(p.asNode()),
+    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TParameterPositionSome(pos),
       TAccessPathApproxSome(apa), apa0, config)
   )
 }
@@ -2566,9 +2595,10 @@ pragma[nomagic]
 private predicate nodeMayUseSummary(
   NodeEx n, FlowState state, AccessPathApprox apa, Configuration config
 ) {
-  exists(ParamNodeEx p |
+  exists(DataFlowCallable c, ParameterPosition pos, ParamNodeEx p |
     Stage4::parameterMayFlowThrough(p, apa, config) and
-    nodeMayUseSummary0(n, p, state, apa, config)
+    nodeMayUseSummary0(n, c, pos, state, apa, config) and
+    p.isParameterOf(c, pos)
   )
 }
 
@@ -3501,7 +3531,7 @@ private predicate paramFlowsThrough(
     pathNode(mid, ret, state, cc, sc, ap, config, _) and
     kind = ret.getKind() and
     apa = ap.getApprox() and
-    parameterFlowThroughAllowed(sc.getParamNode().asNode(), kind)
+    parameterFlowThroughAllowed(sc.getParamNode(), kind)
   )
 }
 
diff --git a/python/ql/lib/semmle/python/dataflow/new/internal/DataFlowImpl2.qll b/python/ql/lib/semmle/python/dataflow/new/internal/DataFlowImpl2.qll
index a52ad110662..e4cfd5986be 100644
--- a/python/ql/lib/semmle/python/dataflow/new/internal/DataFlowImpl2.qll
+++ b/python/ql/lib/semmle/python/dataflow/new/internal/DataFlowImpl2.qll
@@ -613,11 +613,28 @@ private predicate hasSinkCallCtx(Configuration config) {
  * explicitly allowed
  */
 bindingset[p, kind]
-private predicate parameterFlowThroughAllowed(ParamNode p, ReturnKindExt kind) {
+private predicate parameterFlowThroughAllowed(ParamNodeEx p, ReturnKindExt kind) {
   exists(ParameterPosition pos | p.isParameterOf(_, pos) |
     not kind.(ParamUpdateReturnKind).getPosition() = pos
     or
-    allowParameterReturnInSelfCached(p)
+    allowParameterReturnInSelfCached(p.asNode())
+  )
+}
+
+/**
+ * Holds if flow from a parameter at position `pos` inside `c` to a return node of
+ * kind `kind` is allowed.
+ *
+ * We don't expect a parameter to return stored in itself, unless
+ * explicitly allowed
+ */
+bindingset[c, pos, kind]
+private predicate parameterFlowThroughAllowed(
+  DataFlowCallable c, ParameterPosition pos, ReturnKindExt kind
+) {
+  exists(ParamNodeEx p |
+    p.isParameterOf(c, pos) and
+    parameterFlowThroughAllowed(p, kind)
   )
 }
 
@@ -1000,14 +1017,14 @@ private module Stage1 implements StageSig {
       returnFlowCallableNodeCand(c, kind, config) and
       p.getEnclosingCallable() = c and
       exists(ap) and
-      parameterFlowThroughAllowed(p.asNode(), kind)
+      parameterFlowThroughAllowed(p, kind)
     )
   }
 
   pragma[nomagic]
-  predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config) {
+  predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config) {
     throughFlowNodeCand(ret, config) and
-    pos = ret.getReturnPosition()
+    kind = ret.getKind()
   }
 
   pragma[nomagic]
@@ -1066,13 +1083,16 @@ private predicate viableReturnPosOutNodeCand1(
  */
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand1(
-  DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, Configuration config
+  DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, Configuration config
 ) {
-  viableReturnPosOutNodeCand1(call, pos, out, config) and
-  pos = ret.getReturnPosition() and
-  Stage1::revFlow(ret, config) and
-  not outBarrier(ret, config) and
-  not inBarrier(out, config)
+  exists(ReturnPosition pos |
+    viableReturnPosOutNodeCand1(call, pos, out, config) and
+    pos = ret.getReturnPosition() and
+    kind = pos.getKind() and
+    Stage1::revFlow(ret, config) and
+    not outBarrier(ret, config) and
+    not inBarrier(out, config)
+  )
 }
 
 pragma[nomagic]
@@ -1102,6 +1122,7 @@ private predicate flowIntoCallNodeCand1(
  * edge in the graph of paths between sources and sinks that ignores call
  * contexts.
  */
+pragma[nomagic]
 private int branch(NodeEx n1, Configuration conf) {
   result =
     strictcount(NodeEx n |
@@ -1114,6 +1135,7 @@ private int branch(NodeEx n1, Configuration conf) {
  * edge in the graph of paths between sources and sinks that ignores call
  * contexts.
  */
+pragma[nomagic]
 private int join(NodeEx n2, Configuration conf) {
   result =
     strictcount(NodeEx n |
@@ -1130,10 +1152,10 @@ private int join(NodeEx n2, Configuration conf) {
  */
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand1(
-  DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
+  DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
   Configuration config
 ) {
-  flowOutOfCallNodeCand1(call, ret, pos, out, pragma[only_bind_into](config)) and
+  flowOutOfCallNodeCand1(call, ret, kind, out, pragma[only_bind_into](config)) and
   exists(int b, int j |
     b = branch(ret, pragma[only_bind_into](config)) and
     j = join(out, pragma[only_bind_into](config)) and
@@ -1152,10 +1174,10 @@ pragma[nomagic]
 private predicate flowIntoCallNodeCand1(
   DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
 ) {
-  flowIntoCallNodeCand1(call, arg, p, config) and
+  flowIntoCallNodeCand1(call, arg, p, pragma[only_bind_into](config)) and
   exists(int b, int j |
-    b = branch(arg, config) and
-    j = join(p, config) and
+    b = branch(arg, pragma[only_bind_into](config)) and
+    j = join(p, pragma[only_bind_into](config)) and
     if b.minimum(j) <= config.fieldFlowBranchLimit()
     then allowsFieldFlow = true
     else allowsFieldFlow = false
@@ -1174,7 +1196,7 @@ private signature module StageSig {
 
   predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config);
 
-  predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config);
+  predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config);
 
   predicate storeStepCand(
     NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, DataFlowType contentType,
@@ -1240,7 +1262,7 @@ private module MkStage<StageSig PrevStage> {
     );
 
     predicate flowOutOfCall(
-      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
+      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
       Configuration config
     );
 
@@ -1266,16 +1288,14 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate flowThroughOutOfCall(
-      DataFlowCall call, CcCall ccc, RetNodeEx ret, ReturnKindExt kind, NodeEx out,
-      boolean allowsFieldFlow, Configuration config
+      DataFlowCall call, DataFlowCallable c, CcCall ccc, RetNodeEx ret, ReturnKindExt kind,
+      NodeEx out, boolean allowsFieldFlow, Configuration config
     ) {
-      exists(ReturnPosition pos |
-        flowOutOfCall(call, ret, pos, out, allowsFieldFlow, pragma[only_bind_into](config)) and
-        kind = pos.getKind() and
-        PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
-        PrevStage::returnMayFlowThrough(ret, pos, pragma[only_bind_into](config)) and
-        matchesCall(ccc, call)
-      )
+      flowOutOfCall(call, ret, kind, out, allowsFieldFlow, pragma[only_bind_into](config)) and
+      PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
+      PrevStage::returnMayFlowThrough(ret, kind, pragma[only_bind_into](config)) and
+      matchesCall(ccc, call) and
+      c = ret.getEnclosingCallable()
     }
 
     /**
@@ -1284,12 +1304,12 @@ private module MkStage<StageSig PrevStage> {
      *
      * The call context `cc` records whether the node is reached through an
      * argument in a call, and if so, `summaryCtx` and `argAp` record the
-     * corresponding parameter and access path of that argument, respectively.
+     * corresponding parameter position and access path of that argument, respectively.
      */
     pragma[nomagic]
     additional predicate fwdFlow(
-      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
-      Configuration config
+      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      Ap ap, Configuration config
     ) {
       fwdFlow0(node, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::revFlow(node, state, unbindApa(getApprox(ap)), config) and
@@ -1298,13 +1318,13 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlow0(
-      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
-      Configuration config
+      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      Ap ap, Configuration config
     ) {
       sourceNode(node, state, config) and
       (if hasSourceCallCtx(config) then cc = ccSomeCall() else cc = ccNone()) and
       argAp = apNone() and
-      summaryCtx = TParamNodeNone() and
+      summaryCtx = TParameterPositionNone() and
       ap = getApNil(node)
       or
       exists(NodeEx mid, FlowState state0, Ap ap0, LocalCc localCc |
@@ -1322,7 +1342,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, pragma[only_bind_into](config)) and
         jumpStep(mid, node, config) and
         cc = ccNone() and
-        summaryCtx = TParamNodeNone() and
+        summaryCtx = TParameterPositionNone() and
         argAp = apNone()
       )
       or
@@ -1330,7 +1350,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, state, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStep(mid, node, config) and
         cc = ccNone() and
-        summaryCtx = TParamNodeNone() and
+        summaryCtx = TParameterPositionNone() and
         argAp = apNone() and
         ap = getApNil(node)
       )
@@ -1339,7 +1359,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, state0, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStateStep(mid, state0, node, state, config) and
         cc = ccNone() and
-        summaryCtx = TParamNodeNone() and
+        summaryCtx = TParameterPositionNone() and
         argAp = apNone() and
         ap = getApNil(node)
       )
@@ -1362,17 +1382,27 @@ private module MkStage<StageSig PrevStage> {
         apa = getApprox(ap) and
         if PrevStage::parameterMayFlowThrough(node, apa, config)
         then (
-          summaryCtx = TParamNodeSome(node.asNode()) and argAp = apSome(ap)
+          summaryCtx = TParameterPositionSome(node.(ParamNodeEx).getPosition()) and
+          argAp = apSome(ap)
         ) else (
-          summaryCtx = TParamNodeNone() and argAp = apNone()
+          summaryCtx = TParameterPositionNone() and argAp = apNone()
         )
       )
       or
       // flow out of a callable
-      fwdFlowOutNotFromArg(node, state, cc, summaryCtx, argAp, ap, config)
+      exists(
+        DataFlowCall call, RetNodeEx ret, boolean allowsFieldFlow, CcNoCall innercc,
+        DataFlowCallable inner
+      |
+        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, config) and
+        flowOutOfCall(call, ret, _, node, allowsFieldFlow, config) and
+        inner = ret.getEnclosingCallable() and
+        cc = getCallContextReturn(inner, call, innercc) and
+        if allowsFieldFlow = false then ap instanceof ApNil else any()
+      )
       or
       // flow through a callable
-      exists(DataFlowCall call, ParamNode summaryCtx0, Ap argAp0 |
+      exists(DataFlowCall call, ParameterPosition summaryCtx0, Ap argAp0 |
         fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, config) and
         fwdFlowIsEntered(call, cc, summaryCtx, argAp, summaryCtx0, argAp0, config)
       )
@@ -1381,7 +1411,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowStore(
       NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc,
-      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
+      ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
     ) {
       exists(DataFlowType contentType |
         fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, config) and
@@ -1406,7 +1436,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowRead(
       Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc,
-      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
+      ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
     ) {
       fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, c, node2, config) and
@@ -1416,7 +1446,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowIn(
       DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, Cc innercc,
-      ParamNodeOption summaryCtx, ApOption argAp, Ap ap, Configuration config
+      ParameterPositionOption summaryCtx, ApOption argAp, Ap ap, Configuration config
     ) {
       exists(ArgNodeEx arg, boolean allowsFieldFlow |
         fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, config) and
@@ -1427,32 +1457,19 @@ private module MkStage<StageSig PrevStage> {
     }
 
     pragma[nomagic]
-    private predicate fwdFlowOutNotFromArg(
-      NodeEx out, FlowState state, Cc ccOut, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+    private predicate fwdFlowOutFromArg(
+      DataFlowCall call, NodeEx out, FlowState state, ParameterPosition summaryCtx, Ap argAp, Ap ap,
       Configuration config
     ) {
       exists(
-        DataFlowCall call, RetNodeEx ret, boolean allowsFieldFlow, CcNoCall innercc,
-        DataFlowCallable inner
+        DataFlowCallable c, RetNodeEx ret, ReturnKindExt kind, boolean allowsFieldFlow, CcCall ccc
       |
-        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, config) and
-        flowOutOfCall(call, ret, _, out, allowsFieldFlow, config) and
-        inner = ret.getEnclosingCallable() and
-        ccOut = getCallContextReturn(inner, call, innercc) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
-      )
-    }
-
-    pragma[nomagic]
-    private predicate fwdFlowOutFromArg(
-      DataFlowCall call, NodeEx out, FlowState state, ParamNode summaryCtx, Ap argAp, Ap ap,
-      Configuration config
-    ) {
-      exists(RetNodeEx ret, ReturnKindExt kind, boolean allowsFieldFlow, CcCall ccc |
-        fwdFlow(ret, state, ccc, TParamNodeSome(summaryCtx), apSome(argAp), ap, config) and
-        flowThroughOutOfCall(call, ccc, ret, kind, out, allowsFieldFlow, config) and
+        fwdFlow(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc),
+          TParameterPositionSome(pragma[only_bind_into](summaryCtx)), apSome(argAp), ap, config) and
+        flowThroughOutOfCall(call, pragma[only_bind_into](c), ccc, ret, kind, out, allowsFieldFlow,
+          config) and
         (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
-        parameterFlowThroughAllowed(summaryCtx, kind)
+        parameterFlowThroughAllowed(c, pragma[only_bind_into](summaryCtx), kind)
       )
     }
 
@@ -1462,13 +1479,13 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate fwdFlowIsEntered(
-      DataFlowCall call, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, ParamNode p, Ap ap,
-      Configuration config
+      DataFlowCall call, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      ParameterPosition pos, Ap ap, Configuration config
     ) {
       exists(ParamNodeEx param |
         fwdFlowIn(call, param, _, cc, _, summaryCtx, argAp, ap, config) and
         PrevStage::parameterMayFlowThrough(param, unbindApa(getApprox(ap)), config) and
-        p = param.asNode()
+        pos = param.getPosition()
       )
     }
 
@@ -1489,23 +1506,41 @@ private module MkStage<StageSig PrevStage> {
     }
 
     pragma[nomagic]
-    private predicate returnFlowsThrough(
-      RetNodeEx ret, ReturnPosition pos, FlowState state, CcCall ccc, ParamNode p, Ap argAp, Ap ap,
-      Configuration config
+    private predicate returnFlowsThrough0(
+      RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, DataFlowCallable c,
+      ParameterPosition ppos, Ap argAp, Ap ap, Configuration config
     ) {
-      fwdFlow(ret, state, ccc, TParamNodeSome(p), apSome(argAp), ap, config) and
-      pos = ret.getReturnPosition() and
-      parameterFlowThroughAllowed(p, pos.getKind())
+      exists(boolean allowsFieldFlow |
+        fwdFlow(ret, state, ccc, TParameterPositionSome(ppos), apSome(argAp), ap, config) and
+        flowThroughOutOfCall(_, c, _, pragma[only_bind_into](ret), kind, _, allowsFieldFlow,
+          pragma[only_bind_into](config)) and
+        if allowsFieldFlow = false then ap instanceof ApNil else any()
+      )
+    }
+
+    pragma[nomagic]
+    private predicate returnFlowsThrough(
+      RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, ParamNodeEx p, Ap argAp,
+      Ap ap, Configuration config
+    ) {
+      exists(DataFlowCallable c, ParameterPosition ppos |
+        returnFlowsThrough0(ret, kind, state, ccc, c, ppos, argAp, ap, config) and
+        p.isParameterOf(c, ppos) and
+        parameterFlowThroughAllowed(p, kind)
+      )
     }
 
     pragma[nomagic]
     private predicate flowThroughIntoCall(
       DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
     ) {
-      flowIntoCall(call, pragma[only_bind_into](arg), pragma[only_bind_into](p), allowsFieldFlow,
-        pragma[only_bind_into](config)) and
-      fwdFlow(arg, _, _, _, _, _, pragma[only_bind_into](config)) and
-      returnFlowsThrough(_, _, _, _, p.asNode(), _, _, pragma[only_bind_into](config))
+      exists(Ap argAp |
+        flowIntoCall(call, pragma[only_bind_into](arg), pragma[only_bind_into](p), allowsFieldFlow,
+          pragma[only_bind_into](config)) and
+        fwdFlow(arg, _, _, _, _, pragma[only_bind_into](argAp), pragma[only_bind_into](config)) and
+        returnFlowsThrough(_, _, _, _, p, pragma[only_bind_into](argAp), _,
+          pragma[only_bind_into](config))
+      )
     }
 
     /**
@@ -1591,21 +1626,25 @@ private module MkStage<StageSig PrevStage> {
       )
       or
       // flow into a callable
-      revFlowInNotToReturn(node, state, returnAp, ap, config) and
-      returnCtx = TReturnCtxNone()
+      exists(ParamNodeEx p, boolean allowsFieldFlow |
+        revFlow(p, state, TReturnCtxNone(), returnAp, ap, config) and
+        flowIntoCall(_, node, p, allowsFieldFlow, config) and
+        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
+        returnCtx = TReturnCtxNone()
+      )
       or
       // flow through a callable
-      exists(DataFlowCall call, ReturnPosition returnPos0, Ap returnAp0 |
-        revFlowInToReturn(call, node, state, returnPos0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnPos0, returnAp0, config)
+      exists(DataFlowCall call, ReturnKindExt returnKind0, Ap returnAp0 |
+        revFlowInToReturn(call, node, state, returnKind0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
       )
       or
       // flow out of a callable
-      exists(ReturnPosition pos |
-        revFlowOut(_, node, pos, state, _, _, ap, config) and
-        if returnFlowsThrough(node, pos, state, _, _, _, ap, config)
+      exists(ReturnKindExt kind |
+        revFlowOut(_, node, kind, state, _, _, ap, config) and
+        if returnFlowsThrough(node, kind, state, _, _, _, ap, config)
         then (
-          returnCtx = TReturnCtxMaybeFlowThrough(pos) and
+          returnCtx = TReturnCtxMaybeFlowThrough(kind) and
           returnAp = apSome(ap)
         ) else (
           returnCtx = TReturnCtxNoFlowThrough() and returnAp = apNone()
@@ -1638,37 +1677,27 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate revFlowOut(
-      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, FlowState state, ReturnCtx returnCtx,
+      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, FlowState state, ReturnCtx returnCtx,
       ApOption returnAp, Ap ap, Configuration config
     ) {
       exists(NodeEx out, boolean allowsFieldFlow |
         revFlow(out, state, returnCtx, returnAp, ap, config) and
-        flowOutOfCall(call, ret, pos, out, allowsFieldFlow, config) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
-      )
-    }
-
-    pragma[nomagic]
-    private predicate revFlowInNotToReturn(
-      ArgNodeEx arg, FlowState state, ApOption returnAp, Ap ap, Configuration config
-    ) {
-      exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(p, state, TReturnCtxNone(), returnAp, ap, config) and
-        flowIntoCall(_, arg, p, allowsFieldFlow, config) and
+        flowOutOfCall(call, ret, kind, out, allowsFieldFlow, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
     pragma[nomagic]
     private predicate revFlowInToReturn(
-      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnPosition returnPos, Ap returnAp,
-      Ap ap, Configuration config
+      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap,
+      Configuration config
     ) {
       exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(p, state, TReturnCtxMaybeFlowThrough(returnPos), apSome(returnAp), ap, config) and
+        revFlow(pragma[only_bind_into](p), state,
+          TReturnCtxMaybeFlowThrough(pragma[only_bind_into](kind)), apSome(returnAp), ap, config) and
         flowThroughIntoCall(call, arg, p, allowsFieldFlow, config) and
         (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
-        parameterFlowThroughAllowed(p.asNode(), returnPos.getKind())
+        parameterFlowThroughAllowed(p, kind)
       )
     }
 
@@ -1679,12 +1708,12 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate revFlowIsReturned(
-      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnPosition pos, Ap ap,
+      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnKindExt kind, Ap ap,
       Configuration config
     ) {
       exists(RetNodeEx ret, FlowState state, CcCall ccc |
-        revFlowOut(call, ret, pos, state, returnCtx, returnAp, ap, config) and
-        returnFlowsThrough(ret, pos, state, ccc, _, _, ap, config) and
+        revFlowOut(call, ret, kind, state, returnCtx, returnAp, ap, config) and
+        returnFlowsThrough(ret, kind, state, ccc, _, _, ap, config) and
         matchesCall(ccc, call)
       )
     }
@@ -1757,37 +1786,37 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate parameterFlowsThroughRev(
-      ParamNodeEx p, Ap ap, ReturnPosition returnPos, Configuration config
+      ParamNodeEx p, Ap ap, ReturnKindExt kind, Configuration config
     ) {
-      revFlow(p, _, TReturnCtxMaybeFlowThrough(returnPos), apSome(_), ap, config) and
-      parameterFlowThroughAllowed(p.asNode(), returnPos.getKind())
+      revFlow(p, _, TReturnCtxMaybeFlowThrough(kind), apSome(_), ap, config) and
+      parameterFlowThroughAllowed(p, kind)
     }
 
     pragma[nomagic]
     predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
-      exists(RetNodeEx ret, ReturnPosition pos |
-        returnFlowsThrough(ret, pos, _, _, p.asNode(), ap, _, config) and
-        parameterFlowsThroughRev(p, ap, pos, config)
+      exists(RetNodeEx ret, ReturnKindExt kind |
+        returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
+        parameterFlowsThroughRev(p, ap, kind, config)
       )
     }
 
     pragma[nomagic]
-    predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config) {
+    predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config) {
       exists(ParamNodeEx p, Ap ap |
-        returnFlowsThrough(ret, pos, _, _, p.asNode(), ap, _, config) and
-        parameterFlowsThroughRev(p, ap, pos, config)
+        returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
+        parameterFlowsThroughRev(p, ap, kind, config)
       )
     }
 
     pragma[nomagic]
     predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
       exists(
-        ReturnPosition returnPos0, Ap returnAp0, ArgNodeEx arg, FlowState state,
+        ReturnKindExt returnKind0, Ap returnAp0, ArgNodeEx arg, FlowState state,
         ReturnCtx returnCtx, ApOption returnAp, Ap ap
       |
         revFlow(arg, state, returnCtx, returnAp, ap, config) and
-        revFlowInToReturn(call, arg, state, returnPos0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnPos0, returnAp0, config)
+        revFlowInToReturn(call, arg, state, returnKind0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
       )
     }
 
@@ -1800,9 +1829,8 @@ private module MkStage<StageSig PrevStage> {
       conscand = count(TypedContent f0, Ap ap | fwdConsCand(f0, ap, config)) and
       states = count(FlowState state | fwdFlow(_, state, _, _, _, _, config)) and
       tuples =
-        count(NodeEx n, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap |
-          fwdFlow(n, state, cc, summaryCtx, argAp, ap, config)
-        )
+        count(NodeEx n, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+          Ap ap | fwdFlow(n, state, cc, summaryCtx, argAp, ap, config))
       or
       fwd = false and
       nodes = count(NodeEx node | revFlow(node, _, _, _, _, config)) and
@@ -1992,10 +2020,10 @@ private module Stage2 implements StageSig {
 
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand2(
-  DataFlowCall call, RetNodeEx node1, ReturnPosition pos, NodeEx node2, boolean allowsFieldFlow,
+  DataFlowCall call, RetNodeEx node1, ReturnKindExt kind, NodeEx node2, boolean allowsFieldFlow,
   Configuration config
 ) {
-  flowOutOfCallNodeCand1(call, node1, pos, node2, allowsFieldFlow, config) and
+  flowOutOfCallNodeCand1(call, node1, kind, node2, allowsFieldFlow, config) and
   Stage2::revFlow(node2, pragma[only_bind_into](config)) and
   Stage2::revFlowAlias(node1, pragma[only_bind_into](config))
 }
@@ -2511,11 +2539,11 @@ private module Stage4Param implements MkStage<Stage3>::StageParam {
 
   pragma[nomagic]
   predicate flowOutOfCall(
-    DataFlowCall call, RetNodeEx node1, ReturnPosition pos, NodeEx node2, boolean allowsFieldFlow,
+    DataFlowCall call, RetNodeEx node1, ReturnKindExt kind, NodeEx node2, boolean allowsFieldFlow,
     Configuration config
   ) {
     exists(FlowState state |
-      flowOutOfCallNodeCand2(call, node1, pos, node2, allowsFieldFlow, config) and
+      flowOutOfCallNodeCand2(call, node1, kind, node2, allowsFieldFlow, config) and
       PrevStage::revFlow(node2, pragma[only_bind_into](state), _, pragma[only_bind_into](config)) and
       PrevStage::revFlowAlias(node1, pragma[only_bind_into](state), _,
         pragma[only_bind_into](config))
@@ -2552,12 +2580,13 @@ private Configuration unbindConf(Configuration conf) {
 
 pragma[nomagic]
 private predicate nodeMayUseSummary0(
-  NodeEx n, ParamNodeEx p, FlowState state, AccessPathApprox apa, Configuration config
+  NodeEx n, DataFlowCallable c, ParameterPosition pos, FlowState state, AccessPathApprox apa,
+  Configuration config
 ) {
   exists(AccessPathApprox apa0 |
-    Stage4::parameterMayFlowThrough(p, _, _) and
+    c = n.getEnclosingCallable() and
     Stage4::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
-    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TParamNodeSome(p.asNode()),
+    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TParameterPositionSome(pos),
       TAccessPathApproxSome(apa), apa0, config)
   )
 }
@@ -2566,9 +2595,10 @@ pragma[nomagic]
 private predicate nodeMayUseSummary(
   NodeEx n, FlowState state, AccessPathApprox apa, Configuration config
 ) {
-  exists(ParamNodeEx p |
+  exists(DataFlowCallable c, ParameterPosition pos, ParamNodeEx p |
     Stage4::parameterMayFlowThrough(p, apa, config) and
-    nodeMayUseSummary0(n, p, state, apa, config)
+    nodeMayUseSummary0(n, c, pos, state, apa, config) and
+    p.isParameterOf(c, pos)
   )
 }
 
@@ -3501,7 +3531,7 @@ private predicate paramFlowsThrough(
     pathNode(mid, ret, state, cc, sc, ap, config, _) and
     kind = ret.getKind() and
     apa = ap.getApprox() and
-    parameterFlowThroughAllowed(sc.getParamNode().asNode(), kind)
+    parameterFlowThroughAllowed(sc.getParamNode(), kind)
   )
 }
 
diff --git a/python/ql/lib/semmle/python/dataflow/new/internal/DataFlowImpl3.qll b/python/ql/lib/semmle/python/dataflow/new/internal/DataFlowImpl3.qll
index a52ad110662..e4cfd5986be 100644
--- a/python/ql/lib/semmle/python/dataflow/new/internal/DataFlowImpl3.qll
+++ b/python/ql/lib/semmle/python/dataflow/new/internal/DataFlowImpl3.qll
@@ -613,11 +613,28 @@ private predicate hasSinkCallCtx(Configuration config) {
  * explicitly allowed
  */
 bindingset[p, kind]
-private predicate parameterFlowThroughAllowed(ParamNode p, ReturnKindExt kind) {
+private predicate parameterFlowThroughAllowed(ParamNodeEx p, ReturnKindExt kind) {
   exists(ParameterPosition pos | p.isParameterOf(_, pos) |
     not kind.(ParamUpdateReturnKind).getPosition() = pos
     or
-    allowParameterReturnInSelfCached(p)
+    allowParameterReturnInSelfCached(p.asNode())
+  )
+}
+
+/**
+ * Holds if flow from a parameter at position `pos` inside `c` to a return node of
+ * kind `kind` is allowed.
+ *
+ * We don't expect a parameter to return stored in itself, unless
+ * explicitly allowed
+ */
+bindingset[c, pos, kind]
+private predicate parameterFlowThroughAllowed(
+  DataFlowCallable c, ParameterPosition pos, ReturnKindExt kind
+) {
+  exists(ParamNodeEx p |
+    p.isParameterOf(c, pos) and
+    parameterFlowThroughAllowed(p, kind)
   )
 }
 
@@ -1000,14 +1017,14 @@ private module Stage1 implements StageSig {
       returnFlowCallableNodeCand(c, kind, config) and
       p.getEnclosingCallable() = c and
       exists(ap) and
-      parameterFlowThroughAllowed(p.asNode(), kind)
+      parameterFlowThroughAllowed(p, kind)
     )
   }
 
   pragma[nomagic]
-  predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config) {
+  predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config) {
     throughFlowNodeCand(ret, config) and
-    pos = ret.getReturnPosition()
+    kind = ret.getKind()
   }
 
   pragma[nomagic]
@@ -1066,13 +1083,16 @@ private predicate viableReturnPosOutNodeCand1(
  */
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand1(
-  DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, Configuration config
+  DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, Configuration config
 ) {
-  viableReturnPosOutNodeCand1(call, pos, out, config) and
-  pos = ret.getReturnPosition() and
-  Stage1::revFlow(ret, config) and
-  not outBarrier(ret, config) and
-  not inBarrier(out, config)
+  exists(ReturnPosition pos |
+    viableReturnPosOutNodeCand1(call, pos, out, config) and
+    pos = ret.getReturnPosition() and
+    kind = pos.getKind() and
+    Stage1::revFlow(ret, config) and
+    not outBarrier(ret, config) and
+    not inBarrier(out, config)
+  )
 }
 
 pragma[nomagic]
@@ -1102,6 +1122,7 @@ private predicate flowIntoCallNodeCand1(
  * edge in the graph of paths between sources and sinks that ignores call
  * contexts.
  */
+pragma[nomagic]
 private int branch(NodeEx n1, Configuration conf) {
   result =
     strictcount(NodeEx n |
@@ -1114,6 +1135,7 @@ private int branch(NodeEx n1, Configuration conf) {
  * edge in the graph of paths between sources and sinks that ignores call
  * contexts.
  */
+pragma[nomagic]
 private int join(NodeEx n2, Configuration conf) {
   result =
     strictcount(NodeEx n |
@@ -1130,10 +1152,10 @@ private int join(NodeEx n2, Configuration conf) {
  */
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand1(
-  DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
+  DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
   Configuration config
 ) {
-  flowOutOfCallNodeCand1(call, ret, pos, out, pragma[only_bind_into](config)) and
+  flowOutOfCallNodeCand1(call, ret, kind, out, pragma[only_bind_into](config)) and
   exists(int b, int j |
     b = branch(ret, pragma[only_bind_into](config)) and
     j = join(out, pragma[only_bind_into](config)) and
@@ -1152,10 +1174,10 @@ pragma[nomagic]
 private predicate flowIntoCallNodeCand1(
   DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
 ) {
-  flowIntoCallNodeCand1(call, arg, p, config) and
+  flowIntoCallNodeCand1(call, arg, p, pragma[only_bind_into](config)) and
   exists(int b, int j |
-    b = branch(arg, config) and
-    j = join(p, config) and
+    b = branch(arg, pragma[only_bind_into](config)) and
+    j = join(p, pragma[only_bind_into](config)) and
     if b.minimum(j) <= config.fieldFlowBranchLimit()
     then allowsFieldFlow = true
     else allowsFieldFlow = false
@@ -1174,7 +1196,7 @@ private signature module StageSig {
 
   predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config);
 
-  predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config);
+  predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config);
 
   predicate storeStepCand(
     NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, DataFlowType contentType,
@@ -1240,7 +1262,7 @@ private module MkStage<StageSig PrevStage> {
     );
 
     predicate flowOutOfCall(
-      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
+      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
       Configuration config
     );
 
@@ -1266,16 +1288,14 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate flowThroughOutOfCall(
-      DataFlowCall call, CcCall ccc, RetNodeEx ret, ReturnKindExt kind, NodeEx out,
-      boolean allowsFieldFlow, Configuration config
+      DataFlowCall call, DataFlowCallable c, CcCall ccc, RetNodeEx ret, ReturnKindExt kind,
+      NodeEx out, boolean allowsFieldFlow, Configuration config
     ) {
-      exists(ReturnPosition pos |
-        flowOutOfCall(call, ret, pos, out, allowsFieldFlow, pragma[only_bind_into](config)) and
-        kind = pos.getKind() and
-        PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
-        PrevStage::returnMayFlowThrough(ret, pos, pragma[only_bind_into](config)) and
-        matchesCall(ccc, call)
-      )
+      flowOutOfCall(call, ret, kind, out, allowsFieldFlow, pragma[only_bind_into](config)) and
+      PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
+      PrevStage::returnMayFlowThrough(ret, kind, pragma[only_bind_into](config)) and
+      matchesCall(ccc, call) and
+      c = ret.getEnclosingCallable()
     }
 
     /**
@@ -1284,12 +1304,12 @@ private module MkStage<StageSig PrevStage> {
      *
      * The call context `cc` records whether the node is reached through an
      * argument in a call, and if so, `summaryCtx` and `argAp` record the
-     * corresponding parameter and access path of that argument, respectively.
+     * corresponding parameter position and access path of that argument, respectively.
      */
     pragma[nomagic]
     additional predicate fwdFlow(
-      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
-      Configuration config
+      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      Ap ap, Configuration config
     ) {
       fwdFlow0(node, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::revFlow(node, state, unbindApa(getApprox(ap)), config) and
@@ -1298,13 +1318,13 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlow0(
-      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
-      Configuration config
+      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      Ap ap, Configuration config
     ) {
       sourceNode(node, state, config) and
       (if hasSourceCallCtx(config) then cc = ccSomeCall() else cc = ccNone()) and
       argAp = apNone() and
-      summaryCtx = TParamNodeNone() and
+      summaryCtx = TParameterPositionNone() and
       ap = getApNil(node)
       or
       exists(NodeEx mid, FlowState state0, Ap ap0, LocalCc localCc |
@@ -1322,7 +1342,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, pragma[only_bind_into](config)) and
         jumpStep(mid, node, config) and
         cc = ccNone() and
-        summaryCtx = TParamNodeNone() and
+        summaryCtx = TParameterPositionNone() and
         argAp = apNone()
       )
       or
@@ -1330,7 +1350,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, state, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStep(mid, node, config) and
         cc = ccNone() and
-        summaryCtx = TParamNodeNone() and
+        summaryCtx = TParameterPositionNone() and
         argAp = apNone() and
         ap = getApNil(node)
       )
@@ -1339,7 +1359,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, state0, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStateStep(mid, state0, node, state, config) and
         cc = ccNone() and
-        summaryCtx = TParamNodeNone() and
+        summaryCtx = TParameterPositionNone() and
         argAp = apNone() and
         ap = getApNil(node)
       )
@@ -1362,17 +1382,27 @@ private module MkStage<StageSig PrevStage> {
         apa = getApprox(ap) and
         if PrevStage::parameterMayFlowThrough(node, apa, config)
         then (
-          summaryCtx = TParamNodeSome(node.asNode()) and argAp = apSome(ap)
+          summaryCtx = TParameterPositionSome(node.(ParamNodeEx).getPosition()) and
+          argAp = apSome(ap)
         ) else (
-          summaryCtx = TParamNodeNone() and argAp = apNone()
+          summaryCtx = TParameterPositionNone() and argAp = apNone()
         )
       )
       or
       // flow out of a callable
-      fwdFlowOutNotFromArg(node, state, cc, summaryCtx, argAp, ap, config)
+      exists(
+        DataFlowCall call, RetNodeEx ret, boolean allowsFieldFlow, CcNoCall innercc,
+        DataFlowCallable inner
+      |
+        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, config) and
+        flowOutOfCall(call, ret, _, node, allowsFieldFlow, config) and
+        inner = ret.getEnclosingCallable() and
+        cc = getCallContextReturn(inner, call, innercc) and
+        if allowsFieldFlow = false then ap instanceof ApNil else any()
+      )
       or
       // flow through a callable
-      exists(DataFlowCall call, ParamNode summaryCtx0, Ap argAp0 |
+      exists(DataFlowCall call, ParameterPosition summaryCtx0, Ap argAp0 |
         fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, config) and
         fwdFlowIsEntered(call, cc, summaryCtx, argAp, summaryCtx0, argAp0, config)
       )
@@ -1381,7 +1411,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowStore(
       NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc,
-      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
+      ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
     ) {
       exists(DataFlowType contentType |
         fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, config) and
@@ -1406,7 +1436,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowRead(
       Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc,
-      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
+      ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
     ) {
       fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, c, node2, config) and
@@ -1416,7 +1446,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowIn(
       DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, Cc innercc,
-      ParamNodeOption summaryCtx, ApOption argAp, Ap ap, Configuration config
+      ParameterPositionOption summaryCtx, ApOption argAp, Ap ap, Configuration config
     ) {
       exists(ArgNodeEx arg, boolean allowsFieldFlow |
         fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, config) and
@@ -1427,32 +1457,19 @@ private module MkStage<StageSig PrevStage> {
     }
 
     pragma[nomagic]
-    private predicate fwdFlowOutNotFromArg(
-      NodeEx out, FlowState state, Cc ccOut, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+    private predicate fwdFlowOutFromArg(
+      DataFlowCall call, NodeEx out, FlowState state, ParameterPosition summaryCtx, Ap argAp, Ap ap,
       Configuration config
     ) {
       exists(
-        DataFlowCall call, RetNodeEx ret, boolean allowsFieldFlow, CcNoCall innercc,
-        DataFlowCallable inner
+        DataFlowCallable c, RetNodeEx ret, ReturnKindExt kind, boolean allowsFieldFlow, CcCall ccc
       |
-        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, config) and
-        flowOutOfCall(call, ret, _, out, allowsFieldFlow, config) and
-        inner = ret.getEnclosingCallable() and
-        ccOut = getCallContextReturn(inner, call, innercc) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
-      )
-    }
-
-    pragma[nomagic]
-    private predicate fwdFlowOutFromArg(
-      DataFlowCall call, NodeEx out, FlowState state, ParamNode summaryCtx, Ap argAp, Ap ap,
-      Configuration config
-    ) {
-      exists(RetNodeEx ret, ReturnKindExt kind, boolean allowsFieldFlow, CcCall ccc |
-        fwdFlow(ret, state, ccc, TParamNodeSome(summaryCtx), apSome(argAp), ap, config) and
-        flowThroughOutOfCall(call, ccc, ret, kind, out, allowsFieldFlow, config) and
+        fwdFlow(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc),
+          TParameterPositionSome(pragma[only_bind_into](summaryCtx)), apSome(argAp), ap, config) and
+        flowThroughOutOfCall(call, pragma[only_bind_into](c), ccc, ret, kind, out, allowsFieldFlow,
+          config) and
         (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
-        parameterFlowThroughAllowed(summaryCtx, kind)
+        parameterFlowThroughAllowed(c, pragma[only_bind_into](summaryCtx), kind)
       )
     }
 
@@ -1462,13 +1479,13 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate fwdFlowIsEntered(
-      DataFlowCall call, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, ParamNode p, Ap ap,
-      Configuration config
+      DataFlowCall call, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      ParameterPosition pos, Ap ap, Configuration config
     ) {
       exists(ParamNodeEx param |
         fwdFlowIn(call, param, _, cc, _, summaryCtx, argAp, ap, config) and
         PrevStage::parameterMayFlowThrough(param, unbindApa(getApprox(ap)), config) and
-        p = param.asNode()
+        pos = param.getPosition()
       )
     }
 
@@ -1489,23 +1506,41 @@ private module MkStage<StageSig PrevStage> {
     }
 
     pragma[nomagic]
-    private predicate returnFlowsThrough(
-      RetNodeEx ret, ReturnPosition pos, FlowState state, CcCall ccc, ParamNode p, Ap argAp, Ap ap,
-      Configuration config
+    private predicate returnFlowsThrough0(
+      RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, DataFlowCallable c,
+      ParameterPosition ppos, Ap argAp, Ap ap, Configuration config
     ) {
-      fwdFlow(ret, state, ccc, TParamNodeSome(p), apSome(argAp), ap, config) and
-      pos = ret.getReturnPosition() and
-      parameterFlowThroughAllowed(p, pos.getKind())
+      exists(boolean allowsFieldFlow |
+        fwdFlow(ret, state, ccc, TParameterPositionSome(ppos), apSome(argAp), ap, config) and
+        flowThroughOutOfCall(_, c, _, pragma[only_bind_into](ret), kind, _, allowsFieldFlow,
+          pragma[only_bind_into](config)) and
+        if allowsFieldFlow = false then ap instanceof ApNil else any()
+      )
+    }
+
+    pragma[nomagic]
+    private predicate returnFlowsThrough(
+      RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, ParamNodeEx p, Ap argAp,
+      Ap ap, Configuration config
+    ) {
+      exists(DataFlowCallable c, ParameterPosition ppos |
+        returnFlowsThrough0(ret, kind, state, ccc, c, ppos, argAp, ap, config) and
+        p.isParameterOf(c, ppos) and
+        parameterFlowThroughAllowed(p, kind)
+      )
     }
 
     pragma[nomagic]
     private predicate flowThroughIntoCall(
       DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
     ) {
-      flowIntoCall(call, pragma[only_bind_into](arg), pragma[only_bind_into](p), allowsFieldFlow,
-        pragma[only_bind_into](config)) and
-      fwdFlow(arg, _, _, _, _, _, pragma[only_bind_into](config)) and
-      returnFlowsThrough(_, _, _, _, p.asNode(), _, _, pragma[only_bind_into](config))
+      exists(Ap argAp |
+        flowIntoCall(call, pragma[only_bind_into](arg), pragma[only_bind_into](p), allowsFieldFlow,
+          pragma[only_bind_into](config)) and
+        fwdFlow(arg, _, _, _, _, pragma[only_bind_into](argAp), pragma[only_bind_into](config)) and
+        returnFlowsThrough(_, _, _, _, p, pragma[only_bind_into](argAp), _,
+          pragma[only_bind_into](config))
+      )
     }
 
     /**
@@ -1591,21 +1626,25 @@ private module MkStage<StageSig PrevStage> {
       )
       or
       // flow into a callable
-      revFlowInNotToReturn(node, state, returnAp, ap, config) and
-      returnCtx = TReturnCtxNone()
+      exists(ParamNodeEx p, boolean allowsFieldFlow |
+        revFlow(p, state, TReturnCtxNone(), returnAp, ap, config) and
+        flowIntoCall(_, node, p, allowsFieldFlow, config) and
+        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
+        returnCtx = TReturnCtxNone()
+      )
       or
       // flow through a callable
-      exists(DataFlowCall call, ReturnPosition returnPos0, Ap returnAp0 |
-        revFlowInToReturn(call, node, state, returnPos0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnPos0, returnAp0, config)
+      exists(DataFlowCall call, ReturnKindExt returnKind0, Ap returnAp0 |
+        revFlowInToReturn(call, node, state, returnKind0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
       )
       or
       // flow out of a callable
-      exists(ReturnPosition pos |
-        revFlowOut(_, node, pos, state, _, _, ap, config) and
-        if returnFlowsThrough(node, pos, state, _, _, _, ap, config)
+      exists(ReturnKindExt kind |
+        revFlowOut(_, node, kind, state, _, _, ap, config) and
+        if returnFlowsThrough(node, kind, state, _, _, _, ap, config)
         then (
-          returnCtx = TReturnCtxMaybeFlowThrough(pos) and
+          returnCtx = TReturnCtxMaybeFlowThrough(kind) and
           returnAp = apSome(ap)
         ) else (
           returnCtx = TReturnCtxNoFlowThrough() and returnAp = apNone()
@@ -1638,37 +1677,27 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate revFlowOut(
-      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, FlowState state, ReturnCtx returnCtx,
+      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, FlowState state, ReturnCtx returnCtx,
       ApOption returnAp, Ap ap, Configuration config
     ) {
       exists(NodeEx out, boolean allowsFieldFlow |
         revFlow(out, state, returnCtx, returnAp, ap, config) and
-        flowOutOfCall(call, ret, pos, out, allowsFieldFlow, config) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
-      )
-    }
-
-    pragma[nomagic]
-    private predicate revFlowInNotToReturn(
-      ArgNodeEx arg, FlowState state, ApOption returnAp, Ap ap, Configuration config
-    ) {
-      exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(p, state, TReturnCtxNone(), returnAp, ap, config) and
-        flowIntoCall(_, arg, p, allowsFieldFlow, config) and
+        flowOutOfCall(call, ret, kind, out, allowsFieldFlow, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
     pragma[nomagic]
     private predicate revFlowInToReturn(
-      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnPosition returnPos, Ap returnAp,
-      Ap ap, Configuration config
+      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap,
+      Configuration config
     ) {
       exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(p, state, TReturnCtxMaybeFlowThrough(returnPos), apSome(returnAp), ap, config) and
+        revFlow(pragma[only_bind_into](p), state,
+          TReturnCtxMaybeFlowThrough(pragma[only_bind_into](kind)), apSome(returnAp), ap, config) and
         flowThroughIntoCall(call, arg, p, allowsFieldFlow, config) and
         (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
-        parameterFlowThroughAllowed(p.asNode(), returnPos.getKind())
+        parameterFlowThroughAllowed(p, kind)
       )
     }
 
@@ -1679,12 +1708,12 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate revFlowIsReturned(
-      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnPosition pos, Ap ap,
+      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnKindExt kind, Ap ap,
       Configuration config
     ) {
       exists(RetNodeEx ret, FlowState state, CcCall ccc |
-        revFlowOut(call, ret, pos, state, returnCtx, returnAp, ap, config) and
-        returnFlowsThrough(ret, pos, state, ccc, _, _, ap, config) and
+        revFlowOut(call, ret, kind, state, returnCtx, returnAp, ap, config) and
+        returnFlowsThrough(ret, kind, state, ccc, _, _, ap, config) and
         matchesCall(ccc, call)
       )
     }
@@ -1757,37 +1786,37 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate parameterFlowsThroughRev(
-      ParamNodeEx p, Ap ap, ReturnPosition returnPos, Configuration config
+      ParamNodeEx p, Ap ap, ReturnKindExt kind, Configuration config
     ) {
-      revFlow(p, _, TReturnCtxMaybeFlowThrough(returnPos), apSome(_), ap, config) and
-      parameterFlowThroughAllowed(p.asNode(), returnPos.getKind())
+      revFlow(p, _, TReturnCtxMaybeFlowThrough(kind), apSome(_), ap, config) and
+      parameterFlowThroughAllowed(p, kind)
     }
 
     pragma[nomagic]
     predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
-      exists(RetNodeEx ret, ReturnPosition pos |
-        returnFlowsThrough(ret, pos, _, _, p.asNode(), ap, _, config) and
-        parameterFlowsThroughRev(p, ap, pos, config)
+      exists(RetNodeEx ret, ReturnKindExt kind |
+        returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
+        parameterFlowsThroughRev(p, ap, kind, config)
       )
     }
 
     pragma[nomagic]
-    predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config) {
+    predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config) {
       exists(ParamNodeEx p, Ap ap |
-        returnFlowsThrough(ret, pos, _, _, p.asNode(), ap, _, config) and
-        parameterFlowsThroughRev(p, ap, pos, config)
+        returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
+        parameterFlowsThroughRev(p, ap, kind, config)
       )
     }
 
     pragma[nomagic]
     predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
       exists(
-        ReturnPosition returnPos0, Ap returnAp0, ArgNodeEx arg, FlowState state,
+        ReturnKindExt returnKind0, Ap returnAp0, ArgNodeEx arg, FlowState state,
         ReturnCtx returnCtx, ApOption returnAp, Ap ap
       |
         revFlow(arg, state, returnCtx, returnAp, ap, config) and
-        revFlowInToReturn(call, arg, state, returnPos0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnPos0, returnAp0, config)
+        revFlowInToReturn(call, arg, state, returnKind0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
       )
     }
 
@@ -1800,9 +1829,8 @@ private module MkStage<StageSig PrevStage> {
       conscand = count(TypedContent f0, Ap ap | fwdConsCand(f0, ap, config)) and
       states = count(FlowState state | fwdFlow(_, state, _, _, _, _, config)) and
       tuples =
-        count(NodeEx n, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap |
-          fwdFlow(n, state, cc, summaryCtx, argAp, ap, config)
-        )
+        count(NodeEx n, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+          Ap ap | fwdFlow(n, state, cc, summaryCtx, argAp, ap, config))
       or
       fwd = false and
       nodes = count(NodeEx node | revFlow(node, _, _, _, _, config)) and
@@ -1992,10 +2020,10 @@ private module Stage2 implements StageSig {
 
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand2(
-  DataFlowCall call, RetNodeEx node1, ReturnPosition pos, NodeEx node2, boolean allowsFieldFlow,
+  DataFlowCall call, RetNodeEx node1, ReturnKindExt kind, NodeEx node2, boolean allowsFieldFlow,
   Configuration config
 ) {
-  flowOutOfCallNodeCand1(call, node1, pos, node2, allowsFieldFlow, config) and
+  flowOutOfCallNodeCand1(call, node1, kind, node2, allowsFieldFlow, config) and
   Stage2::revFlow(node2, pragma[only_bind_into](config)) and
   Stage2::revFlowAlias(node1, pragma[only_bind_into](config))
 }
@@ -2511,11 +2539,11 @@ private module Stage4Param implements MkStage<Stage3>::StageParam {
 
   pragma[nomagic]
   predicate flowOutOfCall(
-    DataFlowCall call, RetNodeEx node1, ReturnPosition pos, NodeEx node2, boolean allowsFieldFlow,
+    DataFlowCall call, RetNodeEx node1, ReturnKindExt kind, NodeEx node2, boolean allowsFieldFlow,
     Configuration config
   ) {
     exists(FlowState state |
-      flowOutOfCallNodeCand2(call, node1, pos, node2, allowsFieldFlow, config) and
+      flowOutOfCallNodeCand2(call, node1, kind, node2, allowsFieldFlow, config) and
       PrevStage::revFlow(node2, pragma[only_bind_into](state), _, pragma[only_bind_into](config)) and
       PrevStage::revFlowAlias(node1, pragma[only_bind_into](state), _,
         pragma[only_bind_into](config))
@@ -2552,12 +2580,13 @@ private Configuration unbindConf(Configuration conf) {
 
 pragma[nomagic]
 private predicate nodeMayUseSummary0(
-  NodeEx n, ParamNodeEx p, FlowState state, AccessPathApprox apa, Configuration config
+  NodeEx n, DataFlowCallable c, ParameterPosition pos, FlowState state, AccessPathApprox apa,
+  Configuration config
 ) {
   exists(AccessPathApprox apa0 |
-    Stage4::parameterMayFlowThrough(p, _, _) and
+    c = n.getEnclosingCallable() and
     Stage4::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
-    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TParamNodeSome(p.asNode()),
+    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TParameterPositionSome(pos),
       TAccessPathApproxSome(apa), apa0, config)
   )
 }
@@ -2566,9 +2595,10 @@ pragma[nomagic]
 private predicate nodeMayUseSummary(
   NodeEx n, FlowState state, AccessPathApprox apa, Configuration config
 ) {
-  exists(ParamNodeEx p |
+  exists(DataFlowCallable c, ParameterPosition pos, ParamNodeEx p |
     Stage4::parameterMayFlowThrough(p, apa, config) and
-    nodeMayUseSummary0(n, p, state, apa, config)
+    nodeMayUseSummary0(n, c, pos, state, apa, config) and
+    p.isParameterOf(c, pos)
   )
 }
 
@@ -3501,7 +3531,7 @@ private predicate paramFlowsThrough(
     pathNode(mid, ret, state, cc, sc, ap, config, _) and
     kind = ret.getKind() and
     apa = ap.getApprox() and
-    parameterFlowThroughAllowed(sc.getParamNode().asNode(), kind)
+    parameterFlowThroughAllowed(sc.getParamNode(), kind)
   )
 }
 
diff --git a/python/ql/lib/semmle/python/dataflow/new/internal/DataFlowImpl4.qll b/python/ql/lib/semmle/python/dataflow/new/internal/DataFlowImpl4.qll
index a52ad110662..e4cfd5986be 100644
--- a/python/ql/lib/semmle/python/dataflow/new/internal/DataFlowImpl4.qll
+++ b/python/ql/lib/semmle/python/dataflow/new/internal/DataFlowImpl4.qll
@@ -613,11 +613,28 @@ private predicate hasSinkCallCtx(Configuration config) {
  * explicitly allowed
  */
 bindingset[p, kind]
-private predicate parameterFlowThroughAllowed(ParamNode p, ReturnKindExt kind) {
+private predicate parameterFlowThroughAllowed(ParamNodeEx p, ReturnKindExt kind) {
   exists(ParameterPosition pos | p.isParameterOf(_, pos) |
     not kind.(ParamUpdateReturnKind).getPosition() = pos
     or
-    allowParameterReturnInSelfCached(p)
+    allowParameterReturnInSelfCached(p.asNode())
+  )
+}
+
+/**
+ * Holds if flow from a parameter at position `pos` inside `c` to a return node of
+ * kind `kind` is allowed.
+ *
+ * We don't expect a parameter to return stored in itself, unless
+ * explicitly allowed
+ */
+bindingset[c, pos, kind]
+private predicate parameterFlowThroughAllowed(
+  DataFlowCallable c, ParameterPosition pos, ReturnKindExt kind
+) {
+  exists(ParamNodeEx p |
+    p.isParameterOf(c, pos) and
+    parameterFlowThroughAllowed(p, kind)
   )
 }
 
@@ -1000,14 +1017,14 @@ private module Stage1 implements StageSig {
       returnFlowCallableNodeCand(c, kind, config) and
       p.getEnclosingCallable() = c and
       exists(ap) and
-      parameterFlowThroughAllowed(p.asNode(), kind)
+      parameterFlowThroughAllowed(p, kind)
     )
   }
 
   pragma[nomagic]
-  predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config) {
+  predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config) {
     throughFlowNodeCand(ret, config) and
-    pos = ret.getReturnPosition()
+    kind = ret.getKind()
   }
 
   pragma[nomagic]
@@ -1066,13 +1083,16 @@ private predicate viableReturnPosOutNodeCand1(
  */
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand1(
-  DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, Configuration config
+  DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, Configuration config
 ) {
-  viableReturnPosOutNodeCand1(call, pos, out, config) and
-  pos = ret.getReturnPosition() and
-  Stage1::revFlow(ret, config) and
-  not outBarrier(ret, config) and
-  not inBarrier(out, config)
+  exists(ReturnPosition pos |
+    viableReturnPosOutNodeCand1(call, pos, out, config) and
+    pos = ret.getReturnPosition() and
+    kind = pos.getKind() and
+    Stage1::revFlow(ret, config) and
+    not outBarrier(ret, config) and
+    not inBarrier(out, config)
+  )
 }
 
 pragma[nomagic]
@@ -1102,6 +1122,7 @@ private predicate flowIntoCallNodeCand1(
  * edge in the graph of paths between sources and sinks that ignores call
  * contexts.
  */
+pragma[nomagic]
 private int branch(NodeEx n1, Configuration conf) {
   result =
     strictcount(NodeEx n |
@@ -1114,6 +1135,7 @@ private int branch(NodeEx n1, Configuration conf) {
  * edge in the graph of paths between sources and sinks that ignores call
  * contexts.
  */
+pragma[nomagic]
 private int join(NodeEx n2, Configuration conf) {
   result =
     strictcount(NodeEx n |
@@ -1130,10 +1152,10 @@ private int join(NodeEx n2, Configuration conf) {
  */
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand1(
-  DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
+  DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
   Configuration config
 ) {
-  flowOutOfCallNodeCand1(call, ret, pos, out, pragma[only_bind_into](config)) and
+  flowOutOfCallNodeCand1(call, ret, kind, out, pragma[only_bind_into](config)) and
   exists(int b, int j |
     b = branch(ret, pragma[only_bind_into](config)) and
     j = join(out, pragma[only_bind_into](config)) and
@@ -1152,10 +1174,10 @@ pragma[nomagic]
 private predicate flowIntoCallNodeCand1(
   DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
 ) {
-  flowIntoCallNodeCand1(call, arg, p, config) and
+  flowIntoCallNodeCand1(call, arg, p, pragma[only_bind_into](config)) and
   exists(int b, int j |
-    b = branch(arg, config) and
-    j = join(p, config) and
+    b = branch(arg, pragma[only_bind_into](config)) and
+    j = join(p, pragma[only_bind_into](config)) and
     if b.minimum(j) <= config.fieldFlowBranchLimit()
     then allowsFieldFlow = true
     else allowsFieldFlow = false
@@ -1174,7 +1196,7 @@ private signature module StageSig {
 
   predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config);
 
-  predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config);
+  predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config);
 
   predicate storeStepCand(
     NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, DataFlowType contentType,
@@ -1240,7 +1262,7 @@ private module MkStage<StageSig PrevStage> {
     );
 
     predicate flowOutOfCall(
-      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
+      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
       Configuration config
     );
 
@@ -1266,16 +1288,14 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate flowThroughOutOfCall(
-      DataFlowCall call, CcCall ccc, RetNodeEx ret, ReturnKindExt kind, NodeEx out,
-      boolean allowsFieldFlow, Configuration config
+      DataFlowCall call, DataFlowCallable c, CcCall ccc, RetNodeEx ret, ReturnKindExt kind,
+      NodeEx out, boolean allowsFieldFlow, Configuration config
     ) {
-      exists(ReturnPosition pos |
-        flowOutOfCall(call, ret, pos, out, allowsFieldFlow, pragma[only_bind_into](config)) and
-        kind = pos.getKind() and
-        PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
-        PrevStage::returnMayFlowThrough(ret, pos, pragma[only_bind_into](config)) and
-        matchesCall(ccc, call)
-      )
+      flowOutOfCall(call, ret, kind, out, allowsFieldFlow, pragma[only_bind_into](config)) and
+      PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
+      PrevStage::returnMayFlowThrough(ret, kind, pragma[only_bind_into](config)) and
+      matchesCall(ccc, call) and
+      c = ret.getEnclosingCallable()
     }
 
     /**
@@ -1284,12 +1304,12 @@ private module MkStage<StageSig PrevStage> {
      *
      * The call context `cc` records whether the node is reached through an
      * argument in a call, and if so, `summaryCtx` and `argAp` record the
-     * corresponding parameter and access path of that argument, respectively.
+     * corresponding parameter position and access path of that argument, respectively.
      */
     pragma[nomagic]
     additional predicate fwdFlow(
-      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
-      Configuration config
+      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      Ap ap, Configuration config
     ) {
       fwdFlow0(node, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::revFlow(node, state, unbindApa(getApprox(ap)), config) and
@@ -1298,13 +1318,13 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlow0(
-      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
-      Configuration config
+      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      Ap ap, Configuration config
     ) {
       sourceNode(node, state, config) and
       (if hasSourceCallCtx(config) then cc = ccSomeCall() else cc = ccNone()) and
       argAp = apNone() and
-      summaryCtx = TParamNodeNone() and
+      summaryCtx = TParameterPositionNone() and
       ap = getApNil(node)
       or
       exists(NodeEx mid, FlowState state0, Ap ap0, LocalCc localCc |
@@ -1322,7 +1342,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, pragma[only_bind_into](config)) and
         jumpStep(mid, node, config) and
         cc = ccNone() and
-        summaryCtx = TParamNodeNone() and
+        summaryCtx = TParameterPositionNone() and
         argAp = apNone()
       )
       or
@@ -1330,7 +1350,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, state, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStep(mid, node, config) and
         cc = ccNone() and
-        summaryCtx = TParamNodeNone() and
+        summaryCtx = TParameterPositionNone() and
         argAp = apNone() and
         ap = getApNil(node)
       )
@@ -1339,7 +1359,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, state0, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStateStep(mid, state0, node, state, config) and
         cc = ccNone() and
-        summaryCtx = TParamNodeNone() and
+        summaryCtx = TParameterPositionNone() and
         argAp = apNone() and
         ap = getApNil(node)
       )
@@ -1362,17 +1382,27 @@ private module MkStage<StageSig PrevStage> {
         apa = getApprox(ap) and
         if PrevStage::parameterMayFlowThrough(node, apa, config)
         then (
-          summaryCtx = TParamNodeSome(node.asNode()) and argAp = apSome(ap)
+          summaryCtx = TParameterPositionSome(node.(ParamNodeEx).getPosition()) and
+          argAp = apSome(ap)
         ) else (
-          summaryCtx = TParamNodeNone() and argAp = apNone()
+          summaryCtx = TParameterPositionNone() and argAp = apNone()
         )
       )
       or
       // flow out of a callable
-      fwdFlowOutNotFromArg(node, state, cc, summaryCtx, argAp, ap, config)
+      exists(
+        DataFlowCall call, RetNodeEx ret, boolean allowsFieldFlow, CcNoCall innercc,
+        DataFlowCallable inner
+      |
+        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, config) and
+        flowOutOfCall(call, ret, _, node, allowsFieldFlow, config) and
+        inner = ret.getEnclosingCallable() and
+        cc = getCallContextReturn(inner, call, innercc) and
+        if allowsFieldFlow = false then ap instanceof ApNil else any()
+      )
       or
       // flow through a callable
-      exists(DataFlowCall call, ParamNode summaryCtx0, Ap argAp0 |
+      exists(DataFlowCall call, ParameterPosition summaryCtx0, Ap argAp0 |
         fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, config) and
         fwdFlowIsEntered(call, cc, summaryCtx, argAp, summaryCtx0, argAp0, config)
       )
@@ -1381,7 +1411,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowStore(
       NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc,
-      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
+      ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
     ) {
       exists(DataFlowType contentType |
         fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, config) and
@@ -1406,7 +1436,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowRead(
       Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc,
-      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
+      ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
     ) {
       fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, c, node2, config) and
@@ -1416,7 +1446,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowIn(
       DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, Cc innercc,
-      ParamNodeOption summaryCtx, ApOption argAp, Ap ap, Configuration config
+      ParameterPositionOption summaryCtx, ApOption argAp, Ap ap, Configuration config
     ) {
       exists(ArgNodeEx arg, boolean allowsFieldFlow |
         fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, config) and
@@ -1427,32 +1457,19 @@ private module MkStage<StageSig PrevStage> {
     }
 
     pragma[nomagic]
-    private predicate fwdFlowOutNotFromArg(
-      NodeEx out, FlowState state, Cc ccOut, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+    private predicate fwdFlowOutFromArg(
+      DataFlowCall call, NodeEx out, FlowState state, ParameterPosition summaryCtx, Ap argAp, Ap ap,
       Configuration config
     ) {
       exists(
-        DataFlowCall call, RetNodeEx ret, boolean allowsFieldFlow, CcNoCall innercc,
-        DataFlowCallable inner
+        DataFlowCallable c, RetNodeEx ret, ReturnKindExt kind, boolean allowsFieldFlow, CcCall ccc
       |
-        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, config) and
-        flowOutOfCall(call, ret, _, out, allowsFieldFlow, config) and
-        inner = ret.getEnclosingCallable() and
-        ccOut = getCallContextReturn(inner, call, innercc) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
-      )
-    }
-
-    pragma[nomagic]
-    private predicate fwdFlowOutFromArg(
-      DataFlowCall call, NodeEx out, FlowState state, ParamNode summaryCtx, Ap argAp, Ap ap,
-      Configuration config
-    ) {
-      exists(RetNodeEx ret, ReturnKindExt kind, boolean allowsFieldFlow, CcCall ccc |
-        fwdFlow(ret, state, ccc, TParamNodeSome(summaryCtx), apSome(argAp), ap, config) and
-        flowThroughOutOfCall(call, ccc, ret, kind, out, allowsFieldFlow, config) and
+        fwdFlow(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc),
+          TParameterPositionSome(pragma[only_bind_into](summaryCtx)), apSome(argAp), ap, config) and
+        flowThroughOutOfCall(call, pragma[only_bind_into](c), ccc, ret, kind, out, allowsFieldFlow,
+          config) and
         (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
-        parameterFlowThroughAllowed(summaryCtx, kind)
+        parameterFlowThroughAllowed(c, pragma[only_bind_into](summaryCtx), kind)
       )
     }
 
@@ -1462,13 +1479,13 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate fwdFlowIsEntered(
-      DataFlowCall call, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, ParamNode p, Ap ap,
-      Configuration config
+      DataFlowCall call, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      ParameterPosition pos, Ap ap, Configuration config
     ) {
       exists(ParamNodeEx param |
         fwdFlowIn(call, param, _, cc, _, summaryCtx, argAp, ap, config) and
         PrevStage::parameterMayFlowThrough(param, unbindApa(getApprox(ap)), config) and
-        p = param.asNode()
+        pos = param.getPosition()
       )
     }
 
@@ -1489,23 +1506,41 @@ private module MkStage<StageSig PrevStage> {
     }
 
     pragma[nomagic]
-    private predicate returnFlowsThrough(
-      RetNodeEx ret, ReturnPosition pos, FlowState state, CcCall ccc, ParamNode p, Ap argAp, Ap ap,
-      Configuration config
+    private predicate returnFlowsThrough0(
+      RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, DataFlowCallable c,
+      ParameterPosition ppos, Ap argAp, Ap ap, Configuration config
     ) {
-      fwdFlow(ret, state, ccc, TParamNodeSome(p), apSome(argAp), ap, config) and
-      pos = ret.getReturnPosition() and
-      parameterFlowThroughAllowed(p, pos.getKind())
+      exists(boolean allowsFieldFlow |
+        fwdFlow(ret, state, ccc, TParameterPositionSome(ppos), apSome(argAp), ap, config) and
+        flowThroughOutOfCall(_, c, _, pragma[only_bind_into](ret), kind, _, allowsFieldFlow,
+          pragma[only_bind_into](config)) and
+        if allowsFieldFlow = false then ap instanceof ApNil else any()
+      )
+    }
+
+    pragma[nomagic]
+    private predicate returnFlowsThrough(
+      RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, ParamNodeEx p, Ap argAp,
+      Ap ap, Configuration config
+    ) {
+      exists(DataFlowCallable c, ParameterPosition ppos |
+        returnFlowsThrough0(ret, kind, state, ccc, c, ppos, argAp, ap, config) and
+        p.isParameterOf(c, ppos) and
+        parameterFlowThroughAllowed(p, kind)
+      )
     }
 
     pragma[nomagic]
     private predicate flowThroughIntoCall(
       DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
     ) {
-      flowIntoCall(call, pragma[only_bind_into](arg), pragma[only_bind_into](p), allowsFieldFlow,
-        pragma[only_bind_into](config)) and
-      fwdFlow(arg, _, _, _, _, _, pragma[only_bind_into](config)) and
-      returnFlowsThrough(_, _, _, _, p.asNode(), _, _, pragma[only_bind_into](config))
+      exists(Ap argAp |
+        flowIntoCall(call, pragma[only_bind_into](arg), pragma[only_bind_into](p), allowsFieldFlow,
+          pragma[only_bind_into](config)) and
+        fwdFlow(arg, _, _, _, _, pragma[only_bind_into](argAp), pragma[only_bind_into](config)) and
+        returnFlowsThrough(_, _, _, _, p, pragma[only_bind_into](argAp), _,
+          pragma[only_bind_into](config))
+      )
     }
 
     /**
@@ -1591,21 +1626,25 @@ private module MkStage<StageSig PrevStage> {
       )
       or
       // flow into a callable
-      revFlowInNotToReturn(node, state, returnAp, ap, config) and
-      returnCtx = TReturnCtxNone()
+      exists(ParamNodeEx p, boolean allowsFieldFlow |
+        revFlow(p, state, TReturnCtxNone(), returnAp, ap, config) and
+        flowIntoCall(_, node, p, allowsFieldFlow, config) and
+        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
+        returnCtx = TReturnCtxNone()
+      )
       or
       // flow through a callable
-      exists(DataFlowCall call, ReturnPosition returnPos0, Ap returnAp0 |
-        revFlowInToReturn(call, node, state, returnPos0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnPos0, returnAp0, config)
+      exists(DataFlowCall call, ReturnKindExt returnKind0, Ap returnAp0 |
+        revFlowInToReturn(call, node, state, returnKind0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
       )
       or
       // flow out of a callable
-      exists(ReturnPosition pos |
-        revFlowOut(_, node, pos, state, _, _, ap, config) and
-        if returnFlowsThrough(node, pos, state, _, _, _, ap, config)
+      exists(ReturnKindExt kind |
+        revFlowOut(_, node, kind, state, _, _, ap, config) and
+        if returnFlowsThrough(node, kind, state, _, _, _, ap, config)
         then (
-          returnCtx = TReturnCtxMaybeFlowThrough(pos) and
+          returnCtx = TReturnCtxMaybeFlowThrough(kind) and
           returnAp = apSome(ap)
         ) else (
           returnCtx = TReturnCtxNoFlowThrough() and returnAp = apNone()
@@ -1638,37 +1677,27 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate revFlowOut(
-      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, FlowState state, ReturnCtx returnCtx,
+      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, FlowState state, ReturnCtx returnCtx,
       ApOption returnAp, Ap ap, Configuration config
     ) {
       exists(NodeEx out, boolean allowsFieldFlow |
         revFlow(out, state, returnCtx, returnAp, ap, config) and
-        flowOutOfCall(call, ret, pos, out, allowsFieldFlow, config) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
-      )
-    }
-
-    pragma[nomagic]
-    private predicate revFlowInNotToReturn(
-      ArgNodeEx arg, FlowState state, ApOption returnAp, Ap ap, Configuration config
-    ) {
-      exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(p, state, TReturnCtxNone(), returnAp, ap, config) and
-        flowIntoCall(_, arg, p, allowsFieldFlow, config) and
+        flowOutOfCall(call, ret, kind, out, allowsFieldFlow, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
     pragma[nomagic]
     private predicate revFlowInToReturn(
-      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnPosition returnPos, Ap returnAp,
-      Ap ap, Configuration config
+      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap,
+      Configuration config
     ) {
       exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(p, state, TReturnCtxMaybeFlowThrough(returnPos), apSome(returnAp), ap, config) and
+        revFlow(pragma[only_bind_into](p), state,
+          TReturnCtxMaybeFlowThrough(pragma[only_bind_into](kind)), apSome(returnAp), ap, config) and
         flowThroughIntoCall(call, arg, p, allowsFieldFlow, config) and
         (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
-        parameterFlowThroughAllowed(p.asNode(), returnPos.getKind())
+        parameterFlowThroughAllowed(p, kind)
       )
     }
 
@@ -1679,12 +1708,12 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate revFlowIsReturned(
-      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnPosition pos, Ap ap,
+      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnKindExt kind, Ap ap,
       Configuration config
     ) {
       exists(RetNodeEx ret, FlowState state, CcCall ccc |
-        revFlowOut(call, ret, pos, state, returnCtx, returnAp, ap, config) and
-        returnFlowsThrough(ret, pos, state, ccc, _, _, ap, config) and
+        revFlowOut(call, ret, kind, state, returnCtx, returnAp, ap, config) and
+        returnFlowsThrough(ret, kind, state, ccc, _, _, ap, config) and
         matchesCall(ccc, call)
       )
     }
@@ -1757,37 +1786,37 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate parameterFlowsThroughRev(
-      ParamNodeEx p, Ap ap, ReturnPosition returnPos, Configuration config
+      ParamNodeEx p, Ap ap, ReturnKindExt kind, Configuration config
     ) {
-      revFlow(p, _, TReturnCtxMaybeFlowThrough(returnPos), apSome(_), ap, config) and
-      parameterFlowThroughAllowed(p.asNode(), returnPos.getKind())
+      revFlow(p, _, TReturnCtxMaybeFlowThrough(kind), apSome(_), ap, config) and
+      parameterFlowThroughAllowed(p, kind)
     }
 
     pragma[nomagic]
     predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
-      exists(RetNodeEx ret, ReturnPosition pos |
-        returnFlowsThrough(ret, pos, _, _, p.asNode(), ap, _, config) and
-        parameterFlowsThroughRev(p, ap, pos, config)
+      exists(RetNodeEx ret, ReturnKindExt kind |
+        returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
+        parameterFlowsThroughRev(p, ap, kind, config)
       )
     }
 
     pragma[nomagic]
-    predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config) {
+    predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config) {
       exists(ParamNodeEx p, Ap ap |
-        returnFlowsThrough(ret, pos, _, _, p.asNode(), ap, _, config) and
-        parameterFlowsThroughRev(p, ap, pos, config)
+        returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
+        parameterFlowsThroughRev(p, ap, kind, config)
       )
     }
 
     pragma[nomagic]
     predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
       exists(
-        ReturnPosition returnPos0, Ap returnAp0, ArgNodeEx arg, FlowState state,
+        ReturnKindExt returnKind0, Ap returnAp0, ArgNodeEx arg, FlowState state,
         ReturnCtx returnCtx, ApOption returnAp, Ap ap
       |
         revFlow(arg, state, returnCtx, returnAp, ap, config) and
-        revFlowInToReturn(call, arg, state, returnPos0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnPos0, returnAp0, config)
+        revFlowInToReturn(call, arg, state, returnKind0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
       )
     }
 
@@ -1800,9 +1829,8 @@ private module MkStage<StageSig PrevStage> {
       conscand = count(TypedContent f0, Ap ap | fwdConsCand(f0, ap, config)) and
       states = count(FlowState state | fwdFlow(_, state, _, _, _, _, config)) and
       tuples =
-        count(NodeEx n, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap |
-          fwdFlow(n, state, cc, summaryCtx, argAp, ap, config)
-        )
+        count(NodeEx n, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+          Ap ap | fwdFlow(n, state, cc, summaryCtx, argAp, ap, config))
       or
       fwd = false and
       nodes = count(NodeEx node | revFlow(node, _, _, _, _, config)) and
@@ -1992,10 +2020,10 @@ private module Stage2 implements StageSig {
 
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand2(
-  DataFlowCall call, RetNodeEx node1, ReturnPosition pos, NodeEx node2, boolean allowsFieldFlow,
+  DataFlowCall call, RetNodeEx node1, ReturnKindExt kind, NodeEx node2, boolean allowsFieldFlow,
   Configuration config
 ) {
-  flowOutOfCallNodeCand1(call, node1, pos, node2, allowsFieldFlow, config) and
+  flowOutOfCallNodeCand1(call, node1, kind, node2, allowsFieldFlow, config) and
   Stage2::revFlow(node2, pragma[only_bind_into](config)) and
   Stage2::revFlowAlias(node1, pragma[only_bind_into](config))
 }
@@ -2511,11 +2539,11 @@ private module Stage4Param implements MkStage<Stage3>::StageParam {
 
   pragma[nomagic]
   predicate flowOutOfCall(
-    DataFlowCall call, RetNodeEx node1, ReturnPosition pos, NodeEx node2, boolean allowsFieldFlow,
+    DataFlowCall call, RetNodeEx node1, ReturnKindExt kind, NodeEx node2, boolean allowsFieldFlow,
     Configuration config
   ) {
     exists(FlowState state |
-      flowOutOfCallNodeCand2(call, node1, pos, node2, allowsFieldFlow, config) and
+      flowOutOfCallNodeCand2(call, node1, kind, node2, allowsFieldFlow, config) and
       PrevStage::revFlow(node2, pragma[only_bind_into](state), _, pragma[only_bind_into](config)) and
       PrevStage::revFlowAlias(node1, pragma[only_bind_into](state), _,
         pragma[only_bind_into](config))
@@ -2552,12 +2580,13 @@ private Configuration unbindConf(Configuration conf) {
 
 pragma[nomagic]
 private predicate nodeMayUseSummary0(
-  NodeEx n, ParamNodeEx p, FlowState state, AccessPathApprox apa, Configuration config
+  NodeEx n, DataFlowCallable c, ParameterPosition pos, FlowState state, AccessPathApprox apa,
+  Configuration config
 ) {
   exists(AccessPathApprox apa0 |
-    Stage4::parameterMayFlowThrough(p, _, _) and
+    c = n.getEnclosingCallable() and
     Stage4::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
-    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TParamNodeSome(p.asNode()),
+    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TParameterPositionSome(pos),
       TAccessPathApproxSome(apa), apa0, config)
   )
 }
@@ -2566,9 +2595,10 @@ pragma[nomagic]
 private predicate nodeMayUseSummary(
   NodeEx n, FlowState state, AccessPathApprox apa, Configuration config
 ) {
-  exists(ParamNodeEx p |
+  exists(DataFlowCallable c, ParameterPosition pos, ParamNodeEx p |
     Stage4::parameterMayFlowThrough(p, apa, config) and
-    nodeMayUseSummary0(n, p, state, apa, config)
+    nodeMayUseSummary0(n, c, pos, state, apa, config) and
+    p.isParameterOf(c, pos)
   )
 }
 
@@ -3501,7 +3531,7 @@ private predicate paramFlowsThrough(
     pathNode(mid, ret, state, cc, sc, ap, config, _) and
     kind = ret.getKind() and
     apa = ap.getApprox() and
-    parameterFlowThroughAllowed(sc.getParamNode().asNode(), kind)
+    parameterFlowThroughAllowed(sc.getParamNode(), kind)
   )
 }
 
diff --git a/python/ql/lib/semmle/python/dataflow/new/internal/DataFlowImplCommon.qll b/python/ql/lib/semmle/python/dataflow/new/internal/DataFlowImplCommon.qll
index 621ed34f9d0..f981834a6d4 100644
--- a/python/ql/lib/semmle/python/dataflow/new/internal/DataFlowImplCommon.qll
+++ b/python/ql/lib/semmle/python/dataflow/new/internal/DataFlowImplCommon.qll
@@ -916,15 +916,15 @@ private module Cached {
     TDataFlowCallSome(DataFlowCall call)
 
   cached
-  newtype TParamNodeOption =
-    TParamNodeNone() or
-    TParamNodeSome(ParamNode p)
+  newtype TParameterPositionOption =
+    TParameterPositionNone() or
+    TParameterPositionSome(ParameterPosition pos)
 
   cached
   newtype TReturnCtx =
     TReturnCtxNone() or
     TReturnCtxNoFlowThrough() or
-    TReturnCtxMaybeFlowThrough(ReturnPosition pos)
+    TReturnCtxMaybeFlowThrough(ReturnKindExt kind)
 
   cached
   newtype TTypedContent = MkTypedContent(Content c, DataFlowType t) { store(_, c, _, _, t) }
@@ -1315,15 +1315,15 @@ class DataFlowCallOption extends TDataFlowCallOption {
   }
 }
 
-/** An optional `ParamNode`. */
-class ParamNodeOption extends TParamNodeOption {
+/** An optional `ParameterPosition`. */
+class ParameterPositionOption extends TParameterPositionOption {
   string toString() {
-    this = TParamNodeNone() and
+    this = TParameterPositionNone() and
     result = "(none)"
     or
-    exists(ParamNode p |
-      this = TParamNodeSome(p) and
-      result = p.toString()
+    exists(ParameterPosition pos |
+      this = TParameterPositionSome(pos) and
+      result = pos.toString()
     )
   }
 }
@@ -1335,7 +1335,7 @@ class ParamNodeOption extends TParamNodeOption {
  *
  * - `TReturnCtxNone()`: no return flow.
  * - `TReturnCtxNoFlowThrough()`: return flow, but flow through is not possible.
- * - `TReturnCtxMaybeFlowThrough(ReturnPosition pos)`: return flow, of kind `pos`, and
+ * - `TReturnCtxMaybeFlowThrough(ReturnKindExt kind)`: return flow, of kind `kind`, and
  *    flow through may be possible.
  */
 class ReturnCtx extends TReturnCtx {
@@ -1346,9 +1346,9 @@ class ReturnCtx extends TReturnCtx {
     this = TReturnCtxNoFlowThrough() and
     result = "(no flow through)"
     or
-    exists(ReturnPosition pos |
-      this = TReturnCtxMaybeFlowThrough(pos) and
-      result = pos.toString()
+    exists(ReturnKindExt kind |
+      this = TReturnCtxMaybeFlowThrough(kind) and
+      result = kind.toString()
     )
   }
 }
diff --git a/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImpl2.qll b/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImpl2.qll
index a52ad110662..e4cfd5986be 100644
--- a/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImpl2.qll
+++ b/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImpl2.qll
@@ -613,11 +613,28 @@ private predicate hasSinkCallCtx(Configuration config) {
  * explicitly allowed
  */
 bindingset[p, kind]
-private predicate parameterFlowThroughAllowed(ParamNode p, ReturnKindExt kind) {
+private predicate parameterFlowThroughAllowed(ParamNodeEx p, ReturnKindExt kind) {
   exists(ParameterPosition pos | p.isParameterOf(_, pos) |
     not kind.(ParamUpdateReturnKind).getPosition() = pos
     or
-    allowParameterReturnInSelfCached(p)
+    allowParameterReturnInSelfCached(p.asNode())
+  )
+}
+
+/**
+ * Holds if flow from a parameter at position `pos` inside `c` to a return node of
+ * kind `kind` is allowed.
+ *
+ * We don't expect a parameter to return stored in itself, unless
+ * explicitly allowed
+ */
+bindingset[c, pos, kind]
+private predicate parameterFlowThroughAllowed(
+  DataFlowCallable c, ParameterPosition pos, ReturnKindExt kind
+) {
+  exists(ParamNodeEx p |
+    p.isParameterOf(c, pos) and
+    parameterFlowThroughAllowed(p, kind)
   )
 }
 
@@ -1000,14 +1017,14 @@ private module Stage1 implements StageSig {
       returnFlowCallableNodeCand(c, kind, config) and
       p.getEnclosingCallable() = c and
       exists(ap) and
-      parameterFlowThroughAllowed(p.asNode(), kind)
+      parameterFlowThroughAllowed(p, kind)
     )
   }
 
   pragma[nomagic]
-  predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config) {
+  predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config) {
     throughFlowNodeCand(ret, config) and
-    pos = ret.getReturnPosition()
+    kind = ret.getKind()
   }
 
   pragma[nomagic]
@@ -1066,13 +1083,16 @@ private predicate viableReturnPosOutNodeCand1(
  */
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand1(
-  DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, Configuration config
+  DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, Configuration config
 ) {
-  viableReturnPosOutNodeCand1(call, pos, out, config) and
-  pos = ret.getReturnPosition() and
-  Stage1::revFlow(ret, config) and
-  not outBarrier(ret, config) and
-  not inBarrier(out, config)
+  exists(ReturnPosition pos |
+    viableReturnPosOutNodeCand1(call, pos, out, config) and
+    pos = ret.getReturnPosition() and
+    kind = pos.getKind() and
+    Stage1::revFlow(ret, config) and
+    not outBarrier(ret, config) and
+    not inBarrier(out, config)
+  )
 }
 
 pragma[nomagic]
@@ -1102,6 +1122,7 @@ private predicate flowIntoCallNodeCand1(
  * edge in the graph of paths between sources and sinks that ignores call
  * contexts.
  */
+pragma[nomagic]
 private int branch(NodeEx n1, Configuration conf) {
   result =
     strictcount(NodeEx n |
@@ -1114,6 +1135,7 @@ private int branch(NodeEx n1, Configuration conf) {
  * edge in the graph of paths between sources and sinks that ignores call
  * contexts.
  */
+pragma[nomagic]
 private int join(NodeEx n2, Configuration conf) {
   result =
     strictcount(NodeEx n |
@@ -1130,10 +1152,10 @@ private int join(NodeEx n2, Configuration conf) {
  */
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand1(
-  DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
+  DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
   Configuration config
 ) {
-  flowOutOfCallNodeCand1(call, ret, pos, out, pragma[only_bind_into](config)) and
+  flowOutOfCallNodeCand1(call, ret, kind, out, pragma[only_bind_into](config)) and
   exists(int b, int j |
     b = branch(ret, pragma[only_bind_into](config)) and
     j = join(out, pragma[only_bind_into](config)) and
@@ -1152,10 +1174,10 @@ pragma[nomagic]
 private predicate flowIntoCallNodeCand1(
   DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
 ) {
-  flowIntoCallNodeCand1(call, arg, p, config) and
+  flowIntoCallNodeCand1(call, arg, p, pragma[only_bind_into](config)) and
   exists(int b, int j |
-    b = branch(arg, config) and
-    j = join(p, config) and
+    b = branch(arg, pragma[only_bind_into](config)) and
+    j = join(p, pragma[only_bind_into](config)) and
     if b.minimum(j) <= config.fieldFlowBranchLimit()
     then allowsFieldFlow = true
     else allowsFieldFlow = false
@@ -1174,7 +1196,7 @@ private signature module StageSig {
 
   predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config);
 
-  predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config);
+  predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config);
 
   predicate storeStepCand(
     NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, DataFlowType contentType,
@@ -1240,7 +1262,7 @@ private module MkStage<StageSig PrevStage> {
     );
 
     predicate flowOutOfCall(
-      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
+      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
       Configuration config
     );
 
@@ -1266,16 +1288,14 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate flowThroughOutOfCall(
-      DataFlowCall call, CcCall ccc, RetNodeEx ret, ReturnKindExt kind, NodeEx out,
-      boolean allowsFieldFlow, Configuration config
+      DataFlowCall call, DataFlowCallable c, CcCall ccc, RetNodeEx ret, ReturnKindExt kind,
+      NodeEx out, boolean allowsFieldFlow, Configuration config
     ) {
-      exists(ReturnPosition pos |
-        flowOutOfCall(call, ret, pos, out, allowsFieldFlow, pragma[only_bind_into](config)) and
-        kind = pos.getKind() and
-        PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
-        PrevStage::returnMayFlowThrough(ret, pos, pragma[only_bind_into](config)) and
-        matchesCall(ccc, call)
-      )
+      flowOutOfCall(call, ret, kind, out, allowsFieldFlow, pragma[only_bind_into](config)) and
+      PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
+      PrevStage::returnMayFlowThrough(ret, kind, pragma[only_bind_into](config)) and
+      matchesCall(ccc, call) and
+      c = ret.getEnclosingCallable()
     }
 
     /**
@@ -1284,12 +1304,12 @@ private module MkStage<StageSig PrevStage> {
      *
      * The call context `cc` records whether the node is reached through an
      * argument in a call, and if so, `summaryCtx` and `argAp` record the
-     * corresponding parameter and access path of that argument, respectively.
+     * corresponding parameter position and access path of that argument, respectively.
      */
     pragma[nomagic]
     additional predicate fwdFlow(
-      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
-      Configuration config
+      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      Ap ap, Configuration config
     ) {
       fwdFlow0(node, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::revFlow(node, state, unbindApa(getApprox(ap)), config) and
@@ -1298,13 +1318,13 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlow0(
-      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
-      Configuration config
+      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      Ap ap, Configuration config
     ) {
       sourceNode(node, state, config) and
       (if hasSourceCallCtx(config) then cc = ccSomeCall() else cc = ccNone()) and
       argAp = apNone() and
-      summaryCtx = TParamNodeNone() and
+      summaryCtx = TParameterPositionNone() and
       ap = getApNil(node)
       or
       exists(NodeEx mid, FlowState state0, Ap ap0, LocalCc localCc |
@@ -1322,7 +1342,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, pragma[only_bind_into](config)) and
         jumpStep(mid, node, config) and
         cc = ccNone() and
-        summaryCtx = TParamNodeNone() and
+        summaryCtx = TParameterPositionNone() and
         argAp = apNone()
       )
       or
@@ -1330,7 +1350,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, state, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStep(mid, node, config) and
         cc = ccNone() and
-        summaryCtx = TParamNodeNone() and
+        summaryCtx = TParameterPositionNone() and
         argAp = apNone() and
         ap = getApNil(node)
       )
@@ -1339,7 +1359,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, state0, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStateStep(mid, state0, node, state, config) and
         cc = ccNone() and
-        summaryCtx = TParamNodeNone() and
+        summaryCtx = TParameterPositionNone() and
         argAp = apNone() and
         ap = getApNil(node)
       )
@@ -1362,17 +1382,27 @@ private module MkStage<StageSig PrevStage> {
         apa = getApprox(ap) and
         if PrevStage::parameterMayFlowThrough(node, apa, config)
         then (
-          summaryCtx = TParamNodeSome(node.asNode()) and argAp = apSome(ap)
+          summaryCtx = TParameterPositionSome(node.(ParamNodeEx).getPosition()) and
+          argAp = apSome(ap)
         ) else (
-          summaryCtx = TParamNodeNone() and argAp = apNone()
+          summaryCtx = TParameterPositionNone() and argAp = apNone()
         )
       )
       or
       // flow out of a callable
-      fwdFlowOutNotFromArg(node, state, cc, summaryCtx, argAp, ap, config)
+      exists(
+        DataFlowCall call, RetNodeEx ret, boolean allowsFieldFlow, CcNoCall innercc,
+        DataFlowCallable inner
+      |
+        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, config) and
+        flowOutOfCall(call, ret, _, node, allowsFieldFlow, config) and
+        inner = ret.getEnclosingCallable() and
+        cc = getCallContextReturn(inner, call, innercc) and
+        if allowsFieldFlow = false then ap instanceof ApNil else any()
+      )
       or
       // flow through a callable
-      exists(DataFlowCall call, ParamNode summaryCtx0, Ap argAp0 |
+      exists(DataFlowCall call, ParameterPosition summaryCtx0, Ap argAp0 |
         fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, config) and
         fwdFlowIsEntered(call, cc, summaryCtx, argAp, summaryCtx0, argAp0, config)
       )
@@ -1381,7 +1411,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowStore(
       NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc,
-      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
+      ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
     ) {
       exists(DataFlowType contentType |
         fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, config) and
@@ -1406,7 +1436,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowRead(
       Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc,
-      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
+      ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
     ) {
       fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, c, node2, config) and
@@ -1416,7 +1446,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowIn(
       DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, Cc innercc,
-      ParamNodeOption summaryCtx, ApOption argAp, Ap ap, Configuration config
+      ParameterPositionOption summaryCtx, ApOption argAp, Ap ap, Configuration config
     ) {
       exists(ArgNodeEx arg, boolean allowsFieldFlow |
         fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, config) and
@@ -1427,32 +1457,19 @@ private module MkStage<StageSig PrevStage> {
     }
 
     pragma[nomagic]
-    private predicate fwdFlowOutNotFromArg(
-      NodeEx out, FlowState state, Cc ccOut, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+    private predicate fwdFlowOutFromArg(
+      DataFlowCall call, NodeEx out, FlowState state, ParameterPosition summaryCtx, Ap argAp, Ap ap,
       Configuration config
     ) {
       exists(
-        DataFlowCall call, RetNodeEx ret, boolean allowsFieldFlow, CcNoCall innercc,
-        DataFlowCallable inner
+        DataFlowCallable c, RetNodeEx ret, ReturnKindExt kind, boolean allowsFieldFlow, CcCall ccc
       |
-        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, config) and
-        flowOutOfCall(call, ret, _, out, allowsFieldFlow, config) and
-        inner = ret.getEnclosingCallable() and
-        ccOut = getCallContextReturn(inner, call, innercc) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
-      )
-    }
-
-    pragma[nomagic]
-    private predicate fwdFlowOutFromArg(
-      DataFlowCall call, NodeEx out, FlowState state, ParamNode summaryCtx, Ap argAp, Ap ap,
-      Configuration config
-    ) {
-      exists(RetNodeEx ret, ReturnKindExt kind, boolean allowsFieldFlow, CcCall ccc |
-        fwdFlow(ret, state, ccc, TParamNodeSome(summaryCtx), apSome(argAp), ap, config) and
-        flowThroughOutOfCall(call, ccc, ret, kind, out, allowsFieldFlow, config) and
+        fwdFlow(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc),
+          TParameterPositionSome(pragma[only_bind_into](summaryCtx)), apSome(argAp), ap, config) and
+        flowThroughOutOfCall(call, pragma[only_bind_into](c), ccc, ret, kind, out, allowsFieldFlow,
+          config) and
         (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
-        parameterFlowThroughAllowed(summaryCtx, kind)
+        parameterFlowThroughAllowed(c, pragma[only_bind_into](summaryCtx), kind)
       )
     }
 
@@ -1462,13 +1479,13 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate fwdFlowIsEntered(
-      DataFlowCall call, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, ParamNode p, Ap ap,
-      Configuration config
+      DataFlowCall call, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      ParameterPosition pos, Ap ap, Configuration config
     ) {
       exists(ParamNodeEx param |
         fwdFlowIn(call, param, _, cc, _, summaryCtx, argAp, ap, config) and
         PrevStage::parameterMayFlowThrough(param, unbindApa(getApprox(ap)), config) and
-        p = param.asNode()
+        pos = param.getPosition()
       )
     }
 
@@ -1489,23 +1506,41 @@ private module MkStage<StageSig PrevStage> {
     }
 
     pragma[nomagic]
-    private predicate returnFlowsThrough(
-      RetNodeEx ret, ReturnPosition pos, FlowState state, CcCall ccc, ParamNode p, Ap argAp, Ap ap,
-      Configuration config
+    private predicate returnFlowsThrough0(
+      RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, DataFlowCallable c,
+      ParameterPosition ppos, Ap argAp, Ap ap, Configuration config
     ) {
-      fwdFlow(ret, state, ccc, TParamNodeSome(p), apSome(argAp), ap, config) and
-      pos = ret.getReturnPosition() and
-      parameterFlowThroughAllowed(p, pos.getKind())
+      exists(boolean allowsFieldFlow |
+        fwdFlow(ret, state, ccc, TParameterPositionSome(ppos), apSome(argAp), ap, config) and
+        flowThroughOutOfCall(_, c, _, pragma[only_bind_into](ret), kind, _, allowsFieldFlow,
+          pragma[only_bind_into](config)) and
+        if allowsFieldFlow = false then ap instanceof ApNil else any()
+      )
+    }
+
+    pragma[nomagic]
+    private predicate returnFlowsThrough(
+      RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, ParamNodeEx p, Ap argAp,
+      Ap ap, Configuration config
+    ) {
+      exists(DataFlowCallable c, ParameterPosition ppos |
+        returnFlowsThrough0(ret, kind, state, ccc, c, ppos, argAp, ap, config) and
+        p.isParameterOf(c, ppos) and
+        parameterFlowThroughAllowed(p, kind)
+      )
     }
 
     pragma[nomagic]
     private predicate flowThroughIntoCall(
       DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
     ) {
-      flowIntoCall(call, pragma[only_bind_into](arg), pragma[only_bind_into](p), allowsFieldFlow,
-        pragma[only_bind_into](config)) and
-      fwdFlow(arg, _, _, _, _, _, pragma[only_bind_into](config)) and
-      returnFlowsThrough(_, _, _, _, p.asNode(), _, _, pragma[only_bind_into](config))
+      exists(Ap argAp |
+        flowIntoCall(call, pragma[only_bind_into](arg), pragma[only_bind_into](p), allowsFieldFlow,
+          pragma[only_bind_into](config)) and
+        fwdFlow(arg, _, _, _, _, pragma[only_bind_into](argAp), pragma[only_bind_into](config)) and
+        returnFlowsThrough(_, _, _, _, p, pragma[only_bind_into](argAp), _,
+          pragma[only_bind_into](config))
+      )
     }
 
     /**
@@ -1591,21 +1626,25 @@ private module MkStage<StageSig PrevStage> {
       )
       or
       // flow into a callable
-      revFlowInNotToReturn(node, state, returnAp, ap, config) and
-      returnCtx = TReturnCtxNone()
+      exists(ParamNodeEx p, boolean allowsFieldFlow |
+        revFlow(p, state, TReturnCtxNone(), returnAp, ap, config) and
+        flowIntoCall(_, node, p, allowsFieldFlow, config) and
+        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
+        returnCtx = TReturnCtxNone()
+      )
       or
       // flow through a callable
-      exists(DataFlowCall call, ReturnPosition returnPos0, Ap returnAp0 |
-        revFlowInToReturn(call, node, state, returnPos0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnPos0, returnAp0, config)
+      exists(DataFlowCall call, ReturnKindExt returnKind0, Ap returnAp0 |
+        revFlowInToReturn(call, node, state, returnKind0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
       )
       or
       // flow out of a callable
-      exists(ReturnPosition pos |
-        revFlowOut(_, node, pos, state, _, _, ap, config) and
-        if returnFlowsThrough(node, pos, state, _, _, _, ap, config)
+      exists(ReturnKindExt kind |
+        revFlowOut(_, node, kind, state, _, _, ap, config) and
+        if returnFlowsThrough(node, kind, state, _, _, _, ap, config)
         then (
-          returnCtx = TReturnCtxMaybeFlowThrough(pos) and
+          returnCtx = TReturnCtxMaybeFlowThrough(kind) and
           returnAp = apSome(ap)
         ) else (
           returnCtx = TReturnCtxNoFlowThrough() and returnAp = apNone()
@@ -1638,37 +1677,27 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate revFlowOut(
-      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, FlowState state, ReturnCtx returnCtx,
+      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, FlowState state, ReturnCtx returnCtx,
       ApOption returnAp, Ap ap, Configuration config
     ) {
       exists(NodeEx out, boolean allowsFieldFlow |
         revFlow(out, state, returnCtx, returnAp, ap, config) and
-        flowOutOfCall(call, ret, pos, out, allowsFieldFlow, config) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
-      )
-    }
-
-    pragma[nomagic]
-    private predicate revFlowInNotToReturn(
-      ArgNodeEx arg, FlowState state, ApOption returnAp, Ap ap, Configuration config
-    ) {
-      exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(p, state, TReturnCtxNone(), returnAp, ap, config) and
-        flowIntoCall(_, arg, p, allowsFieldFlow, config) and
+        flowOutOfCall(call, ret, kind, out, allowsFieldFlow, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
     pragma[nomagic]
     private predicate revFlowInToReturn(
-      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnPosition returnPos, Ap returnAp,
-      Ap ap, Configuration config
+      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap,
+      Configuration config
     ) {
       exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(p, state, TReturnCtxMaybeFlowThrough(returnPos), apSome(returnAp), ap, config) and
+        revFlow(pragma[only_bind_into](p), state,
+          TReturnCtxMaybeFlowThrough(pragma[only_bind_into](kind)), apSome(returnAp), ap, config) and
         flowThroughIntoCall(call, arg, p, allowsFieldFlow, config) and
         (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
-        parameterFlowThroughAllowed(p.asNode(), returnPos.getKind())
+        parameterFlowThroughAllowed(p, kind)
       )
     }
 
@@ -1679,12 +1708,12 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate revFlowIsReturned(
-      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnPosition pos, Ap ap,
+      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnKindExt kind, Ap ap,
       Configuration config
     ) {
       exists(RetNodeEx ret, FlowState state, CcCall ccc |
-        revFlowOut(call, ret, pos, state, returnCtx, returnAp, ap, config) and
-        returnFlowsThrough(ret, pos, state, ccc, _, _, ap, config) and
+        revFlowOut(call, ret, kind, state, returnCtx, returnAp, ap, config) and
+        returnFlowsThrough(ret, kind, state, ccc, _, _, ap, config) and
         matchesCall(ccc, call)
       )
     }
@@ -1757,37 +1786,37 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate parameterFlowsThroughRev(
-      ParamNodeEx p, Ap ap, ReturnPosition returnPos, Configuration config
+      ParamNodeEx p, Ap ap, ReturnKindExt kind, Configuration config
     ) {
-      revFlow(p, _, TReturnCtxMaybeFlowThrough(returnPos), apSome(_), ap, config) and
-      parameterFlowThroughAllowed(p.asNode(), returnPos.getKind())
+      revFlow(p, _, TReturnCtxMaybeFlowThrough(kind), apSome(_), ap, config) and
+      parameterFlowThroughAllowed(p, kind)
     }
 
     pragma[nomagic]
     predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
-      exists(RetNodeEx ret, ReturnPosition pos |
-        returnFlowsThrough(ret, pos, _, _, p.asNode(), ap, _, config) and
-        parameterFlowsThroughRev(p, ap, pos, config)
+      exists(RetNodeEx ret, ReturnKindExt kind |
+        returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
+        parameterFlowsThroughRev(p, ap, kind, config)
       )
     }
 
     pragma[nomagic]
-    predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config) {
+    predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config) {
       exists(ParamNodeEx p, Ap ap |
-        returnFlowsThrough(ret, pos, _, _, p.asNode(), ap, _, config) and
-        parameterFlowsThroughRev(p, ap, pos, config)
+        returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
+        parameterFlowsThroughRev(p, ap, kind, config)
       )
     }
 
     pragma[nomagic]
     predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
       exists(
-        ReturnPosition returnPos0, Ap returnAp0, ArgNodeEx arg, FlowState state,
+        ReturnKindExt returnKind0, Ap returnAp0, ArgNodeEx arg, FlowState state,
         ReturnCtx returnCtx, ApOption returnAp, Ap ap
       |
         revFlow(arg, state, returnCtx, returnAp, ap, config) and
-        revFlowInToReturn(call, arg, state, returnPos0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnPos0, returnAp0, config)
+        revFlowInToReturn(call, arg, state, returnKind0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
       )
     }
 
@@ -1800,9 +1829,8 @@ private module MkStage<StageSig PrevStage> {
       conscand = count(TypedContent f0, Ap ap | fwdConsCand(f0, ap, config)) and
       states = count(FlowState state | fwdFlow(_, state, _, _, _, _, config)) and
       tuples =
-        count(NodeEx n, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap |
-          fwdFlow(n, state, cc, summaryCtx, argAp, ap, config)
-        )
+        count(NodeEx n, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+          Ap ap | fwdFlow(n, state, cc, summaryCtx, argAp, ap, config))
       or
       fwd = false and
       nodes = count(NodeEx node | revFlow(node, _, _, _, _, config)) and
@@ -1992,10 +2020,10 @@ private module Stage2 implements StageSig {
 
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand2(
-  DataFlowCall call, RetNodeEx node1, ReturnPosition pos, NodeEx node2, boolean allowsFieldFlow,
+  DataFlowCall call, RetNodeEx node1, ReturnKindExt kind, NodeEx node2, boolean allowsFieldFlow,
   Configuration config
 ) {
-  flowOutOfCallNodeCand1(call, node1, pos, node2, allowsFieldFlow, config) and
+  flowOutOfCallNodeCand1(call, node1, kind, node2, allowsFieldFlow, config) and
   Stage2::revFlow(node2, pragma[only_bind_into](config)) and
   Stage2::revFlowAlias(node1, pragma[only_bind_into](config))
 }
@@ -2511,11 +2539,11 @@ private module Stage4Param implements MkStage<Stage3>::StageParam {
 
   pragma[nomagic]
   predicate flowOutOfCall(
-    DataFlowCall call, RetNodeEx node1, ReturnPosition pos, NodeEx node2, boolean allowsFieldFlow,
+    DataFlowCall call, RetNodeEx node1, ReturnKindExt kind, NodeEx node2, boolean allowsFieldFlow,
     Configuration config
   ) {
     exists(FlowState state |
-      flowOutOfCallNodeCand2(call, node1, pos, node2, allowsFieldFlow, config) and
+      flowOutOfCallNodeCand2(call, node1, kind, node2, allowsFieldFlow, config) and
       PrevStage::revFlow(node2, pragma[only_bind_into](state), _, pragma[only_bind_into](config)) and
       PrevStage::revFlowAlias(node1, pragma[only_bind_into](state), _,
         pragma[only_bind_into](config))
@@ -2552,12 +2580,13 @@ private Configuration unbindConf(Configuration conf) {
 
 pragma[nomagic]
 private predicate nodeMayUseSummary0(
-  NodeEx n, ParamNodeEx p, FlowState state, AccessPathApprox apa, Configuration config
+  NodeEx n, DataFlowCallable c, ParameterPosition pos, FlowState state, AccessPathApprox apa,
+  Configuration config
 ) {
   exists(AccessPathApprox apa0 |
-    Stage4::parameterMayFlowThrough(p, _, _) and
+    c = n.getEnclosingCallable() and
     Stage4::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
-    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TParamNodeSome(p.asNode()),
+    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TParameterPositionSome(pos),
       TAccessPathApproxSome(apa), apa0, config)
   )
 }
@@ -2566,9 +2595,10 @@ pragma[nomagic]
 private predicate nodeMayUseSummary(
   NodeEx n, FlowState state, AccessPathApprox apa, Configuration config
 ) {
-  exists(ParamNodeEx p |
+  exists(DataFlowCallable c, ParameterPosition pos, ParamNodeEx p |
     Stage4::parameterMayFlowThrough(p, apa, config) and
-    nodeMayUseSummary0(n, p, state, apa, config)
+    nodeMayUseSummary0(n, c, pos, state, apa, config) and
+    p.isParameterOf(c, pos)
   )
 }
 
@@ -3501,7 +3531,7 @@ private predicate paramFlowsThrough(
     pathNode(mid, ret, state, cc, sc, ap, config, _) and
     kind = ret.getKind() and
     apa = ap.getApprox() and
-    parameterFlowThroughAllowed(sc.getParamNode().asNode(), kind)
+    parameterFlowThroughAllowed(sc.getParamNode(), kind)
   )
 }
 
diff --git a/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImplForHttpClientLibraries.qll b/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImplForHttpClientLibraries.qll
index a52ad110662..e4cfd5986be 100644
--- a/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImplForHttpClientLibraries.qll
+++ b/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImplForHttpClientLibraries.qll
@@ -613,11 +613,28 @@ private predicate hasSinkCallCtx(Configuration config) {
  * explicitly allowed
  */
 bindingset[p, kind]
-private predicate parameterFlowThroughAllowed(ParamNode p, ReturnKindExt kind) {
+private predicate parameterFlowThroughAllowed(ParamNodeEx p, ReturnKindExt kind) {
   exists(ParameterPosition pos | p.isParameterOf(_, pos) |
     not kind.(ParamUpdateReturnKind).getPosition() = pos
     or
-    allowParameterReturnInSelfCached(p)
+    allowParameterReturnInSelfCached(p.asNode())
+  )
+}
+
+/**
+ * Holds if flow from a parameter at position `pos` inside `c` to a return node of
+ * kind `kind` is allowed.
+ *
+ * We don't expect a parameter to return stored in itself, unless
+ * explicitly allowed
+ */
+bindingset[c, pos, kind]
+private predicate parameterFlowThroughAllowed(
+  DataFlowCallable c, ParameterPosition pos, ReturnKindExt kind
+) {
+  exists(ParamNodeEx p |
+    p.isParameterOf(c, pos) and
+    parameterFlowThroughAllowed(p, kind)
   )
 }
 
@@ -1000,14 +1017,14 @@ private module Stage1 implements StageSig {
       returnFlowCallableNodeCand(c, kind, config) and
       p.getEnclosingCallable() = c and
       exists(ap) and
-      parameterFlowThroughAllowed(p.asNode(), kind)
+      parameterFlowThroughAllowed(p, kind)
     )
   }
 
   pragma[nomagic]
-  predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config) {
+  predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config) {
     throughFlowNodeCand(ret, config) and
-    pos = ret.getReturnPosition()
+    kind = ret.getKind()
   }
 
   pragma[nomagic]
@@ -1066,13 +1083,16 @@ private predicate viableReturnPosOutNodeCand1(
  */
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand1(
-  DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, Configuration config
+  DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, Configuration config
 ) {
-  viableReturnPosOutNodeCand1(call, pos, out, config) and
-  pos = ret.getReturnPosition() and
-  Stage1::revFlow(ret, config) and
-  not outBarrier(ret, config) and
-  not inBarrier(out, config)
+  exists(ReturnPosition pos |
+    viableReturnPosOutNodeCand1(call, pos, out, config) and
+    pos = ret.getReturnPosition() and
+    kind = pos.getKind() and
+    Stage1::revFlow(ret, config) and
+    not outBarrier(ret, config) and
+    not inBarrier(out, config)
+  )
 }
 
 pragma[nomagic]
@@ -1102,6 +1122,7 @@ private predicate flowIntoCallNodeCand1(
  * edge in the graph of paths between sources and sinks that ignores call
  * contexts.
  */
+pragma[nomagic]
 private int branch(NodeEx n1, Configuration conf) {
   result =
     strictcount(NodeEx n |
@@ -1114,6 +1135,7 @@ private int branch(NodeEx n1, Configuration conf) {
  * edge in the graph of paths between sources and sinks that ignores call
  * contexts.
  */
+pragma[nomagic]
 private int join(NodeEx n2, Configuration conf) {
   result =
     strictcount(NodeEx n |
@@ -1130,10 +1152,10 @@ private int join(NodeEx n2, Configuration conf) {
  */
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand1(
-  DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
+  DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
   Configuration config
 ) {
-  flowOutOfCallNodeCand1(call, ret, pos, out, pragma[only_bind_into](config)) and
+  flowOutOfCallNodeCand1(call, ret, kind, out, pragma[only_bind_into](config)) and
   exists(int b, int j |
     b = branch(ret, pragma[only_bind_into](config)) and
     j = join(out, pragma[only_bind_into](config)) and
@@ -1152,10 +1174,10 @@ pragma[nomagic]
 private predicate flowIntoCallNodeCand1(
   DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
 ) {
-  flowIntoCallNodeCand1(call, arg, p, config) and
+  flowIntoCallNodeCand1(call, arg, p, pragma[only_bind_into](config)) and
   exists(int b, int j |
-    b = branch(arg, config) and
-    j = join(p, config) and
+    b = branch(arg, pragma[only_bind_into](config)) and
+    j = join(p, pragma[only_bind_into](config)) and
     if b.minimum(j) <= config.fieldFlowBranchLimit()
     then allowsFieldFlow = true
     else allowsFieldFlow = false
@@ -1174,7 +1196,7 @@ private signature module StageSig {
 
   predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config);
 
-  predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config);
+  predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config);
 
   predicate storeStepCand(
     NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, DataFlowType contentType,
@@ -1240,7 +1262,7 @@ private module MkStage<StageSig PrevStage> {
     );
 
     predicate flowOutOfCall(
-      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
+      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
       Configuration config
     );
 
@@ -1266,16 +1288,14 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate flowThroughOutOfCall(
-      DataFlowCall call, CcCall ccc, RetNodeEx ret, ReturnKindExt kind, NodeEx out,
-      boolean allowsFieldFlow, Configuration config
+      DataFlowCall call, DataFlowCallable c, CcCall ccc, RetNodeEx ret, ReturnKindExt kind,
+      NodeEx out, boolean allowsFieldFlow, Configuration config
     ) {
-      exists(ReturnPosition pos |
-        flowOutOfCall(call, ret, pos, out, allowsFieldFlow, pragma[only_bind_into](config)) and
-        kind = pos.getKind() and
-        PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
-        PrevStage::returnMayFlowThrough(ret, pos, pragma[only_bind_into](config)) and
-        matchesCall(ccc, call)
-      )
+      flowOutOfCall(call, ret, kind, out, allowsFieldFlow, pragma[only_bind_into](config)) and
+      PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
+      PrevStage::returnMayFlowThrough(ret, kind, pragma[only_bind_into](config)) and
+      matchesCall(ccc, call) and
+      c = ret.getEnclosingCallable()
     }
 
     /**
@@ -1284,12 +1304,12 @@ private module MkStage<StageSig PrevStage> {
      *
      * The call context `cc` records whether the node is reached through an
      * argument in a call, and if so, `summaryCtx` and `argAp` record the
-     * corresponding parameter and access path of that argument, respectively.
+     * corresponding parameter position and access path of that argument, respectively.
      */
     pragma[nomagic]
     additional predicate fwdFlow(
-      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
-      Configuration config
+      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      Ap ap, Configuration config
     ) {
       fwdFlow0(node, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::revFlow(node, state, unbindApa(getApprox(ap)), config) and
@@ -1298,13 +1318,13 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlow0(
-      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
-      Configuration config
+      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      Ap ap, Configuration config
     ) {
       sourceNode(node, state, config) and
       (if hasSourceCallCtx(config) then cc = ccSomeCall() else cc = ccNone()) and
       argAp = apNone() and
-      summaryCtx = TParamNodeNone() and
+      summaryCtx = TParameterPositionNone() and
       ap = getApNil(node)
       or
       exists(NodeEx mid, FlowState state0, Ap ap0, LocalCc localCc |
@@ -1322,7 +1342,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, pragma[only_bind_into](config)) and
         jumpStep(mid, node, config) and
         cc = ccNone() and
-        summaryCtx = TParamNodeNone() and
+        summaryCtx = TParameterPositionNone() and
         argAp = apNone()
       )
       or
@@ -1330,7 +1350,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, state, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStep(mid, node, config) and
         cc = ccNone() and
-        summaryCtx = TParamNodeNone() and
+        summaryCtx = TParameterPositionNone() and
         argAp = apNone() and
         ap = getApNil(node)
       )
@@ -1339,7 +1359,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, state0, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStateStep(mid, state0, node, state, config) and
         cc = ccNone() and
-        summaryCtx = TParamNodeNone() and
+        summaryCtx = TParameterPositionNone() and
         argAp = apNone() and
         ap = getApNil(node)
       )
@@ -1362,17 +1382,27 @@ private module MkStage<StageSig PrevStage> {
         apa = getApprox(ap) and
         if PrevStage::parameterMayFlowThrough(node, apa, config)
         then (
-          summaryCtx = TParamNodeSome(node.asNode()) and argAp = apSome(ap)
+          summaryCtx = TParameterPositionSome(node.(ParamNodeEx).getPosition()) and
+          argAp = apSome(ap)
         ) else (
-          summaryCtx = TParamNodeNone() and argAp = apNone()
+          summaryCtx = TParameterPositionNone() and argAp = apNone()
         )
       )
       or
       // flow out of a callable
-      fwdFlowOutNotFromArg(node, state, cc, summaryCtx, argAp, ap, config)
+      exists(
+        DataFlowCall call, RetNodeEx ret, boolean allowsFieldFlow, CcNoCall innercc,
+        DataFlowCallable inner
+      |
+        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, config) and
+        flowOutOfCall(call, ret, _, node, allowsFieldFlow, config) and
+        inner = ret.getEnclosingCallable() and
+        cc = getCallContextReturn(inner, call, innercc) and
+        if allowsFieldFlow = false then ap instanceof ApNil else any()
+      )
       or
       // flow through a callable
-      exists(DataFlowCall call, ParamNode summaryCtx0, Ap argAp0 |
+      exists(DataFlowCall call, ParameterPosition summaryCtx0, Ap argAp0 |
         fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, config) and
         fwdFlowIsEntered(call, cc, summaryCtx, argAp, summaryCtx0, argAp0, config)
       )
@@ -1381,7 +1411,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowStore(
       NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc,
-      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
+      ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
     ) {
       exists(DataFlowType contentType |
         fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, config) and
@@ -1406,7 +1436,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowRead(
       Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc,
-      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
+      ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
     ) {
       fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, c, node2, config) and
@@ -1416,7 +1446,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowIn(
       DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, Cc innercc,
-      ParamNodeOption summaryCtx, ApOption argAp, Ap ap, Configuration config
+      ParameterPositionOption summaryCtx, ApOption argAp, Ap ap, Configuration config
     ) {
       exists(ArgNodeEx arg, boolean allowsFieldFlow |
         fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, config) and
@@ -1427,32 +1457,19 @@ private module MkStage<StageSig PrevStage> {
     }
 
     pragma[nomagic]
-    private predicate fwdFlowOutNotFromArg(
-      NodeEx out, FlowState state, Cc ccOut, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+    private predicate fwdFlowOutFromArg(
+      DataFlowCall call, NodeEx out, FlowState state, ParameterPosition summaryCtx, Ap argAp, Ap ap,
       Configuration config
     ) {
       exists(
-        DataFlowCall call, RetNodeEx ret, boolean allowsFieldFlow, CcNoCall innercc,
-        DataFlowCallable inner
+        DataFlowCallable c, RetNodeEx ret, ReturnKindExt kind, boolean allowsFieldFlow, CcCall ccc
       |
-        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, config) and
-        flowOutOfCall(call, ret, _, out, allowsFieldFlow, config) and
-        inner = ret.getEnclosingCallable() and
-        ccOut = getCallContextReturn(inner, call, innercc) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
-      )
-    }
-
-    pragma[nomagic]
-    private predicate fwdFlowOutFromArg(
-      DataFlowCall call, NodeEx out, FlowState state, ParamNode summaryCtx, Ap argAp, Ap ap,
-      Configuration config
-    ) {
-      exists(RetNodeEx ret, ReturnKindExt kind, boolean allowsFieldFlow, CcCall ccc |
-        fwdFlow(ret, state, ccc, TParamNodeSome(summaryCtx), apSome(argAp), ap, config) and
-        flowThroughOutOfCall(call, ccc, ret, kind, out, allowsFieldFlow, config) and
+        fwdFlow(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc),
+          TParameterPositionSome(pragma[only_bind_into](summaryCtx)), apSome(argAp), ap, config) and
+        flowThroughOutOfCall(call, pragma[only_bind_into](c), ccc, ret, kind, out, allowsFieldFlow,
+          config) and
         (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
-        parameterFlowThroughAllowed(summaryCtx, kind)
+        parameterFlowThroughAllowed(c, pragma[only_bind_into](summaryCtx), kind)
       )
     }
 
@@ -1462,13 +1479,13 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate fwdFlowIsEntered(
-      DataFlowCall call, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, ParamNode p, Ap ap,
-      Configuration config
+      DataFlowCall call, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      ParameterPosition pos, Ap ap, Configuration config
     ) {
       exists(ParamNodeEx param |
         fwdFlowIn(call, param, _, cc, _, summaryCtx, argAp, ap, config) and
         PrevStage::parameterMayFlowThrough(param, unbindApa(getApprox(ap)), config) and
-        p = param.asNode()
+        pos = param.getPosition()
       )
     }
 
@@ -1489,23 +1506,41 @@ private module MkStage<StageSig PrevStage> {
     }
 
     pragma[nomagic]
-    private predicate returnFlowsThrough(
-      RetNodeEx ret, ReturnPosition pos, FlowState state, CcCall ccc, ParamNode p, Ap argAp, Ap ap,
-      Configuration config
+    private predicate returnFlowsThrough0(
+      RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, DataFlowCallable c,
+      ParameterPosition ppos, Ap argAp, Ap ap, Configuration config
     ) {
-      fwdFlow(ret, state, ccc, TParamNodeSome(p), apSome(argAp), ap, config) and
-      pos = ret.getReturnPosition() and
-      parameterFlowThroughAllowed(p, pos.getKind())
+      exists(boolean allowsFieldFlow |
+        fwdFlow(ret, state, ccc, TParameterPositionSome(ppos), apSome(argAp), ap, config) and
+        flowThroughOutOfCall(_, c, _, pragma[only_bind_into](ret), kind, _, allowsFieldFlow,
+          pragma[only_bind_into](config)) and
+        if allowsFieldFlow = false then ap instanceof ApNil else any()
+      )
+    }
+
+    pragma[nomagic]
+    private predicate returnFlowsThrough(
+      RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, ParamNodeEx p, Ap argAp,
+      Ap ap, Configuration config
+    ) {
+      exists(DataFlowCallable c, ParameterPosition ppos |
+        returnFlowsThrough0(ret, kind, state, ccc, c, ppos, argAp, ap, config) and
+        p.isParameterOf(c, ppos) and
+        parameterFlowThroughAllowed(p, kind)
+      )
     }
 
     pragma[nomagic]
     private predicate flowThroughIntoCall(
       DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
     ) {
-      flowIntoCall(call, pragma[only_bind_into](arg), pragma[only_bind_into](p), allowsFieldFlow,
-        pragma[only_bind_into](config)) and
-      fwdFlow(arg, _, _, _, _, _, pragma[only_bind_into](config)) and
-      returnFlowsThrough(_, _, _, _, p.asNode(), _, _, pragma[only_bind_into](config))
+      exists(Ap argAp |
+        flowIntoCall(call, pragma[only_bind_into](arg), pragma[only_bind_into](p), allowsFieldFlow,
+          pragma[only_bind_into](config)) and
+        fwdFlow(arg, _, _, _, _, pragma[only_bind_into](argAp), pragma[only_bind_into](config)) and
+        returnFlowsThrough(_, _, _, _, p, pragma[only_bind_into](argAp), _,
+          pragma[only_bind_into](config))
+      )
     }
 
     /**
@@ -1591,21 +1626,25 @@ private module MkStage<StageSig PrevStage> {
       )
       or
       // flow into a callable
-      revFlowInNotToReturn(node, state, returnAp, ap, config) and
-      returnCtx = TReturnCtxNone()
+      exists(ParamNodeEx p, boolean allowsFieldFlow |
+        revFlow(p, state, TReturnCtxNone(), returnAp, ap, config) and
+        flowIntoCall(_, node, p, allowsFieldFlow, config) and
+        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
+        returnCtx = TReturnCtxNone()
+      )
       or
       // flow through a callable
-      exists(DataFlowCall call, ReturnPosition returnPos0, Ap returnAp0 |
-        revFlowInToReturn(call, node, state, returnPos0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnPos0, returnAp0, config)
+      exists(DataFlowCall call, ReturnKindExt returnKind0, Ap returnAp0 |
+        revFlowInToReturn(call, node, state, returnKind0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
       )
       or
       // flow out of a callable
-      exists(ReturnPosition pos |
-        revFlowOut(_, node, pos, state, _, _, ap, config) and
-        if returnFlowsThrough(node, pos, state, _, _, _, ap, config)
+      exists(ReturnKindExt kind |
+        revFlowOut(_, node, kind, state, _, _, ap, config) and
+        if returnFlowsThrough(node, kind, state, _, _, _, ap, config)
         then (
-          returnCtx = TReturnCtxMaybeFlowThrough(pos) and
+          returnCtx = TReturnCtxMaybeFlowThrough(kind) and
           returnAp = apSome(ap)
         ) else (
           returnCtx = TReturnCtxNoFlowThrough() and returnAp = apNone()
@@ -1638,37 +1677,27 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate revFlowOut(
-      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, FlowState state, ReturnCtx returnCtx,
+      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, FlowState state, ReturnCtx returnCtx,
       ApOption returnAp, Ap ap, Configuration config
     ) {
       exists(NodeEx out, boolean allowsFieldFlow |
         revFlow(out, state, returnCtx, returnAp, ap, config) and
-        flowOutOfCall(call, ret, pos, out, allowsFieldFlow, config) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
-      )
-    }
-
-    pragma[nomagic]
-    private predicate revFlowInNotToReturn(
-      ArgNodeEx arg, FlowState state, ApOption returnAp, Ap ap, Configuration config
-    ) {
-      exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(p, state, TReturnCtxNone(), returnAp, ap, config) and
-        flowIntoCall(_, arg, p, allowsFieldFlow, config) and
+        flowOutOfCall(call, ret, kind, out, allowsFieldFlow, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
     pragma[nomagic]
     private predicate revFlowInToReturn(
-      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnPosition returnPos, Ap returnAp,
-      Ap ap, Configuration config
+      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap,
+      Configuration config
     ) {
       exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(p, state, TReturnCtxMaybeFlowThrough(returnPos), apSome(returnAp), ap, config) and
+        revFlow(pragma[only_bind_into](p), state,
+          TReturnCtxMaybeFlowThrough(pragma[only_bind_into](kind)), apSome(returnAp), ap, config) and
         flowThroughIntoCall(call, arg, p, allowsFieldFlow, config) and
         (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
-        parameterFlowThroughAllowed(p.asNode(), returnPos.getKind())
+        parameterFlowThroughAllowed(p, kind)
       )
     }
 
@@ -1679,12 +1708,12 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate revFlowIsReturned(
-      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnPosition pos, Ap ap,
+      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnKindExt kind, Ap ap,
       Configuration config
     ) {
       exists(RetNodeEx ret, FlowState state, CcCall ccc |
-        revFlowOut(call, ret, pos, state, returnCtx, returnAp, ap, config) and
-        returnFlowsThrough(ret, pos, state, ccc, _, _, ap, config) and
+        revFlowOut(call, ret, kind, state, returnCtx, returnAp, ap, config) and
+        returnFlowsThrough(ret, kind, state, ccc, _, _, ap, config) and
         matchesCall(ccc, call)
       )
     }
@@ -1757,37 +1786,37 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate parameterFlowsThroughRev(
-      ParamNodeEx p, Ap ap, ReturnPosition returnPos, Configuration config
+      ParamNodeEx p, Ap ap, ReturnKindExt kind, Configuration config
     ) {
-      revFlow(p, _, TReturnCtxMaybeFlowThrough(returnPos), apSome(_), ap, config) and
-      parameterFlowThroughAllowed(p.asNode(), returnPos.getKind())
+      revFlow(p, _, TReturnCtxMaybeFlowThrough(kind), apSome(_), ap, config) and
+      parameterFlowThroughAllowed(p, kind)
     }
 
     pragma[nomagic]
     predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
-      exists(RetNodeEx ret, ReturnPosition pos |
-        returnFlowsThrough(ret, pos, _, _, p.asNode(), ap, _, config) and
-        parameterFlowsThroughRev(p, ap, pos, config)
+      exists(RetNodeEx ret, ReturnKindExt kind |
+        returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
+        parameterFlowsThroughRev(p, ap, kind, config)
       )
     }
 
     pragma[nomagic]
-    predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config) {
+    predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config) {
       exists(ParamNodeEx p, Ap ap |
-        returnFlowsThrough(ret, pos, _, _, p.asNode(), ap, _, config) and
-        parameterFlowsThroughRev(p, ap, pos, config)
+        returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
+        parameterFlowsThroughRev(p, ap, kind, config)
       )
     }
 
     pragma[nomagic]
     predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
       exists(
-        ReturnPosition returnPos0, Ap returnAp0, ArgNodeEx arg, FlowState state,
+        ReturnKindExt returnKind0, Ap returnAp0, ArgNodeEx arg, FlowState state,
         ReturnCtx returnCtx, ApOption returnAp, Ap ap
       |
         revFlow(arg, state, returnCtx, returnAp, ap, config) and
-        revFlowInToReturn(call, arg, state, returnPos0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnPos0, returnAp0, config)
+        revFlowInToReturn(call, arg, state, returnKind0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
       )
     }
 
@@ -1800,9 +1829,8 @@ private module MkStage<StageSig PrevStage> {
       conscand = count(TypedContent f0, Ap ap | fwdConsCand(f0, ap, config)) and
       states = count(FlowState state | fwdFlow(_, state, _, _, _, _, config)) and
       tuples =
-        count(NodeEx n, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap |
-          fwdFlow(n, state, cc, summaryCtx, argAp, ap, config)
-        )
+        count(NodeEx n, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+          Ap ap | fwdFlow(n, state, cc, summaryCtx, argAp, ap, config))
       or
       fwd = false and
       nodes = count(NodeEx node | revFlow(node, _, _, _, _, config)) and
@@ -1992,10 +2020,10 @@ private module Stage2 implements StageSig {
 
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand2(
-  DataFlowCall call, RetNodeEx node1, ReturnPosition pos, NodeEx node2, boolean allowsFieldFlow,
+  DataFlowCall call, RetNodeEx node1, ReturnKindExt kind, NodeEx node2, boolean allowsFieldFlow,
   Configuration config
 ) {
-  flowOutOfCallNodeCand1(call, node1, pos, node2, allowsFieldFlow, config) and
+  flowOutOfCallNodeCand1(call, node1, kind, node2, allowsFieldFlow, config) and
   Stage2::revFlow(node2, pragma[only_bind_into](config)) and
   Stage2::revFlowAlias(node1, pragma[only_bind_into](config))
 }
@@ -2511,11 +2539,11 @@ private module Stage4Param implements MkStage<Stage3>::StageParam {
 
   pragma[nomagic]
   predicate flowOutOfCall(
-    DataFlowCall call, RetNodeEx node1, ReturnPosition pos, NodeEx node2, boolean allowsFieldFlow,
+    DataFlowCall call, RetNodeEx node1, ReturnKindExt kind, NodeEx node2, boolean allowsFieldFlow,
     Configuration config
   ) {
     exists(FlowState state |
-      flowOutOfCallNodeCand2(call, node1, pos, node2, allowsFieldFlow, config) and
+      flowOutOfCallNodeCand2(call, node1, kind, node2, allowsFieldFlow, config) and
       PrevStage::revFlow(node2, pragma[only_bind_into](state), _, pragma[only_bind_into](config)) and
       PrevStage::revFlowAlias(node1, pragma[only_bind_into](state), _,
         pragma[only_bind_into](config))
@@ -2552,12 +2580,13 @@ private Configuration unbindConf(Configuration conf) {
 
 pragma[nomagic]
 private predicate nodeMayUseSummary0(
-  NodeEx n, ParamNodeEx p, FlowState state, AccessPathApprox apa, Configuration config
+  NodeEx n, DataFlowCallable c, ParameterPosition pos, FlowState state, AccessPathApprox apa,
+  Configuration config
 ) {
   exists(AccessPathApprox apa0 |
-    Stage4::parameterMayFlowThrough(p, _, _) and
+    c = n.getEnclosingCallable() and
     Stage4::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
-    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TParamNodeSome(p.asNode()),
+    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TParameterPositionSome(pos),
       TAccessPathApproxSome(apa), apa0, config)
   )
 }
@@ -2566,9 +2595,10 @@ pragma[nomagic]
 private predicate nodeMayUseSummary(
   NodeEx n, FlowState state, AccessPathApprox apa, Configuration config
 ) {
-  exists(ParamNodeEx p |
+  exists(DataFlowCallable c, ParameterPosition pos, ParamNodeEx p |
     Stage4::parameterMayFlowThrough(p, apa, config) and
-    nodeMayUseSummary0(n, p, state, apa, config)
+    nodeMayUseSummary0(n, c, pos, state, apa, config) and
+    p.isParameterOf(c, pos)
   )
 }
 
@@ -3501,7 +3531,7 @@ private predicate paramFlowsThrough(
     pathNode(mid, ret, state, cc, sc, ap, config, _) and
     kind = ret.getKind() and
     apa = ap.getApprox() and
-    parameterFlowThroughAllowed(sc.getParamNode().asNode(), kind)
+    parameterFlowThroughAllowed(sc.getParamNode(), kind)
   )
 }
 
diff --git a/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImplForPathname.qll b/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImplForPathname.qll
index a52ad110662..e4cfd5986be 100644
--- a/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImplForPathname.qll
+++ b/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImplForPathname.qll
@@ -613,11 +613,28 @@ private predicate hasSinkCallCtx(Configuration config) {
  * explicitly allowed
  */
 bindingset[p, kind]
-private predicate parameterFlowThroughAllowed(ParamNode p, ReturnKindExt kind) {
+private predicate parameterFlowThroughAllowed(ParamNodeEx p, ReturnKindExt kind) {
   exists(ParameterPosition pos | p.isParameterOf(_, pos) |
     not kind.(ParamUpdateReturnKind).getPosition() = pos
     or
-    allowParameterReturnInSelfCached(p)
+    allowParameterReturnInSelfCached(p.asNode())
+  )
+}
+
+/**
+ * Holds if flow from a parameter at position `pos` inside `c` to a return node of
+ * kind `kind` is allowed.
+ *
+ * We don't expect a parameter to return stored in itself, unless
+ * explicitly allowed
+ */
+bindingset[c, pos, kind]
+private predicate parameterFlowThroughAllowed(
+  DataFlowCallable c, ParameterPosition pos, ReturnKindExt kind
+) {
+  exists(ParamNodeEx p |
+    p.isParameterOf(c, pos) and
+    parameterFlowThroughAllowed(p, kind)
   )
 }
 
@@ -1000,14 +1017,14 @@ private module Stage1 implements StageSig {
       returnFlowCallableNodeCand(c, kind, config) and
       p.getEnclosingCallable() = c and
       exists(ap) and
-      parameterFlowThroughAllowed(p.asNode(), kind)
+      parameterFlowThroughAllowed(p, kind)
     )
   }
 
   pragma[nomagic]
-  predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config) {
+  predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config) {
     throughFlowNodeCand(ret, config) and
-    pos = ret.getReturnPosition()
+    kind = ret.getKind()
   }
 
   pragma[nomagic]
@@ -1066,13 +1083,16 @@ private predicate viableReturnPosOutNodeCand1(
  */
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand1(
-  DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, Configuration config
+  DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, Configuration config
 ) {
-  viableReturnPosOutNodeCand1(call, pos, out, config) and
-  pos = ret.getReturnPosition() and
-  Stage1::revFlow(ret, config) and
-  not outBarrier(ret, config) and
-  not inBarrier(out, config)
+  exists(ReturnPosition pos |
+    viableReturnPosOutNodeCand1(call, pos, out, config) and
+    pos = ret.getReturnPosition() and
+    kind = pos.getKind() and
+    Stage1::revFlow(ret, config) and
+    not outBarrier(ret, config) and
+    not inBarrier(out, config)
+  )
 }
 
 pragma[nomagic]
@@ -1102,6 +1122,7 @@ private predicate flowIntoCallNodeCand1(
  * edge in the graph of paths between sources and sinks that ignores call
  * contexts.
  */
+pragma[nomagic]
 private int branch(NodeEx n1, Configuration conf) {
   result =
     strictcount(NodeEx n |
@@ -1114,6 +1135,7 @@ private int branch(NodeEx n1, Configuration conf) {
  * edge in the graph of paths between sources and sinks that ignores call
  * contexts.
  */
+pragma[nomagic]
 private int join(NodeEx n2, Configuration conf) {
   result =
     strictcount(NodeEx n |
@@ -1130,10 +1152,10 @@ private int join(NodeEx n2, Configuration conf) {
  */
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand1(
-  DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
+  DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
   Configuration config
 ) {
-  flowOutOfCallNodeCand1(call, ret, pos, out, pragma[only_bind_into](config)) and
+  flowOutOfCallNodeCand1(call, ret, kind, out, pragma[only_bind_into](config)) and
   exists(int b, int j |
     b = branch(ret, pragma[only_bind_into](config)) and
     j = join(out, pragma[only_bind_into](config)) and
@@ -1152,10 +1174,10 @@ pragma[nomagic]
 private predicate flowIntoCallNodeCand1(
   DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
 ) {
-  flowIntoCallNodeCand1(call, arg, p, config) and
+  flowIntoCallNodeCand1(call, arg, p, pragma[only_bind_into](config)) and
   exists(int b, int j |
-    b = branch(arg, config) and
-    j = join(p, config) and
+    b = branch(arg, pragma[only_bind_into](config)) and
+    j = join(p, pragma[only_bind_into](config)) and
     if b.minimum(j) <= config.fieldFlowBranchLimit()
     then allowsFieldFlow = true
     else allowsFieldFlow = false
@@ -1174,7 +1196,7 @@ private signature module StageSig {
 
   predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config);
 
-  predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config);
+  predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config);
 
   predicate storeStepCand(
     NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, DataFlowType contentType,
@@ -1240,7 +1262,7 @@ private module MkStage<StageSig PrevStage> {
     );
 
     predicate flowOutOfCall(
-      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
+      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
       Configuration config
     );
 
@@ -1266,16 +1288,14 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate flowThroughOutOfCall(
-      DataFlowCall call, CcCall ccc, RetNodeEx ret, ReturnKindExt kind, NodeEx out,
-      boolean allowsFieldFlow, Configuration config
+      DataFlowCall call, DataFlowCallable c, CcCall ccc, RetNodeEx ret, ReturnKindExt kind,
+      NodeEx out, boolean allowsFieldFlow, Configuration config
     ) {
-      exists(ReturnPosition pos |
-        flowOutOfCall(call, ret, pos, out, allowsFieldFlow, pragma[only_bind_into](config)) and
-        kind = pos.getKind() and
-        PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
-        PrevStage::returnMayFlowThrough(ret, pos, pragma[only_bind_into](config)) and
-        matchesCall(ccc, call)
-      )
+      flowOutOfCall(call, ret, kind, out, allowsFieldFlow, pragma[only_bind_into](config)) and
+      PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
+      PrevStage::returnMayFlowThrough(ret, kind, pragma[only_bind_into](config)) and
+      matchesCall(ccc, call) and
+      c = ret.getEnclosingCallable()
     }
 
     /**
@@ -1284,12 +1304,12 @@ private module MkStage<StageSig PrevStage> {
      *
      * The call context `cc` records whether the node is reached through an
      * argument in a call, and if so, `summaryCtx` and `argAp` record the
-     * corresponding parameter and access path of that argument, respectively.
+     * corresponding parameter position and access path of that argument, respectively.
      */
     pragma[nomagic]
     additional predicate fwdFlow(
-      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
-      Configuration config
+      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      Ap ap, Configuration config
     ) {
       fwdFlow0(node, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::revFlow(node, state, unbindApa(getApprox(ap)), config) and
@@ -1298,13 +1318,13 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlow0(
-      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
-      Configuration config
+      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      Ap ap, Configuration config
     ) {
       sourceNode(node, state, config) and
       (if hasSourceCallCtx(config) then cc = ccSomeCall() else cc = ccNone()) and
       argAp = apNone() and
-      summaryCtx = TParamNodeNone() and
+      summaryCtx = TParameterPositionNone() and
       ap = getApNil(node)
       or
       exists(NodeEx mid, FlowState state0, Ap ap0, LocalCc localCc |
@@ -1322,7 +1342,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, pragma[only_bind_into](config)) and
         jumpStep(mid, node, config) and
         cc = ccNone() and
-        summaryCtx = TParamNodeNone() and
+        summaryCtx = TParameterPositionNone() and
         argAp = apNone()
       )
       or
@@ -1330,7 +1350,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, state, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStep(mid, node, config) and
         cc = ccNone() and
-        summaryCtx = TParamNodeNone() and
+        summaryCtx = TParameterPositionNone() and
         argAp = apNone() and
         ap = getApNil(node)
       )
@@ -1339,7 +1359,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, state0, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStateStep(mid, state0, node, state, config) and
         cc = ccNone() and
-        summaryCtx = TParamNodeNone() and
+        summaryCtx = TParameterPositionNone() and
         argAp = apNone() and
         ap = getApNil(node)
       )
@@ -1362,17 +1382,27 @@ private module MkStage<StageSig PrevStage> {
         apa = getApprox(ap) and
         if PrevStage::parameterMayFlowThrough(node, apa, config)
         then (
-          summaryCtx = TParamNodeSome(node.asNode()) and argAp = apSome(ap)
+          summaryCtx = TParameterPositionSome(node.(ParamNodeEx).getPosition()) and
+          argAp = apSome(ap)
         ) else (
-          summaryCtx = TParamNodeNone() and argAp = apNone()
+          summaryCtx = TParameterPositionNone() and argAp = apNone()
         )
       )
       or
       // flow out of a callable
-      fwdFlowOutNotFromArg(node, state, cc, summaryCtx, argAp, ap, config)
+      exists(
+        DataFlowCall call, RetNodeEx ret, boolean allowsFieldFlow, CcNoCall innercc,
+        DataFlowCallable inner
+      |
+        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, config) and
+        flowOutOfCall(call, ret, _, node, allowsFieldFlow, config) and
+        inner = ret.getEnclosingCallable() and
+        cc = getCallContextReturn(inner, call, innercc) and
+        if allowsFieldFlow = false then ap instanceof ApNil else any()
+      )
       or
       // flow through a callable
-      exists(DataFlowCall call, ParamNode summaryCtx0, Ap argAp0 |
+      exists(DataFlowCall call, ParameterPosition summaryCtx0, Ap argAp0 |
         fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, config) and
         fwdFlowIsEntered(call, cc, summaryCtx, argAp, summaryCtx0, argAp0, config)
       )
@@ -1381,7 +1411,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowStore(
       NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc,
-      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
+      ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
     ) {
       exists(DataFlowType contentType |
         fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, config) and
@@ -1406,7 +1436,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowRead(
       Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc,
-      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
+      ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
     ) {
       fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, c, node2, config) and
@@ -1416,7 +1446,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowIn(
       DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, Cc innercc,
-      ParamNodeOption summaryCtx, ApOption argAp, Ap ap, Configuration config
+      ParameterPositionOption summaryCtx, ApOption argAp, Ap ap, Configuration config
     ) {
       exists(ArgNodeEx arg, boolean allowsFieldFlow |
         fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, config) and
@@ -1427,32 +1457,19 @@ private module MkStage<StageSig PrevStage> {
     }
 
     pragma[nomagic]
-    private predicate fwdFlowOutNotFromArg(
-      NodeEx out, FlowState state, Cc ccOut, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+    private predicate fwdFlowOutFromArg(
+      DataFlowCall call, NodeEx out, FlowState state, ParameterPosition summaryCtx, Ap argAp, Ap ap,
       Configuration config
     ) {
       exists(
-        DataFlowCall call, RetNodeEx ret, boolean allowsFieldFlow, CcNoCall innercc,
-        DataFlowCallable inner
+        DataFlowCallable c, RetNodeEx ret, ReturnKindExt kind, boolean allowsFieldFlow, CcCall ccc
       |
-        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, config) and
-        flowOutOfCall(call, ret, _, out, allowsFieldFlow, config) and
-        inner = ret.getEnclosingCallable() and
-        ccOut = getCallContextReturn(inner, call, innercc) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
-      )
-    }
-
-    pragma[nomagic]
-    private predicate fwdFlowOutFromArg(
-      DataFlowCall call, NodeEx out, FlowState state, ParamNode summaryCtx, Ap argAp, Ap ap,
-      Configuration config
-    ) {
-      exists(RetNodeEx ret, ReturnKindExt kind, boolean allowsFieldFlow, CcCall ccc |
-        fwdFlow(ret, state, ccc, TParamNodeSome(summaryCtx), apSome(argAp), ap, config) and
-        flowThroughOutOfCall(call, ccc, ret, kind, out, allowsFieldFlow, config) and
+        fwdFlow(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc),
+          TParameterPositionSome(pragma[only_bind_into](summaryCtx)), apSome(argAp), ap, config) and
+        flowThroughOutOfCall(call, pragma[only_bind_into](c), ccc, ret, kind, out, allowsFieldFlow,
+          config) and
         (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
-        parameterFlowThroughAllowed(summaryCtx, kind)
+        parameterFlowThroughAllowed(c, pragma[only_bind_into](summaryCtx), kind)
       )
     }
 
@@ -1462,13 +1479,13 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate fwdFlowIsEntered(
-      DataFlowCall call, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, ParamNode p, Ap ap,
-      Configuration config
+      DataFlowCall call, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      ParameterPosition pos, Ap ap, Configuration config
     ) {
       exists(ParamNodeEx param |
         fwdFlowIn(call, param, _, cc, _, summaryCtx, argAp, ap, config) and
         PrevStage::parameterMayFlowThrough(param, unbindApa(getApprox(ap)), config) and
-        p = param.asNode()
+        pos = param.getPosition()
       )
     }
 
@@ -1489,23 +1506,41 @@ private module MkStage<StageSig PrevStage> {
     }
 
     pragma[nomagic]
-    private predicate returnFlowsThrough(
-      RetNodeEx ret, ReturnPosition pos, FlowState state, CcCall ccc, ParamNode p, Ap argAp, Ap ap,
-      Configuration config
+    private predicate returnFlowsThrough0(
+      RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, DataFlowCallable c,
+      ParameterPosition ppos, Ap argAp, Ap ap, Configuration config
     ) {
-      fwdFlow(ret, state, ccc, TParamNodeSome(p), apSome(argAp), ap, config) and
-      pos = ret.getReturnPosition() and
-      parameterFlowThroughAllowed(p, pos.getKind())
+      exists(boolean allowsFieldFlow |
+        fwdFlow(ret, state, ccc, TParameterPositionSome(ppos), apSome(argAp), ap, config) and
+        flowThroughOutOfCall(_, c, _, pragma[only_bind_into](ret), kind, _, allowsFieldFlow,
+          pragma[only_bind_into](config)) and
+        if allowsFieldFlow = false then ap instanceof ApNil else any()
+      )
+    }
+
+    pragma[nomagic]
+    private predicate returnFlowsThrough(
+      RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, ParamNodeEx p, Ap argAp,
+      Ap ap, Configuration config
+    ) {
+      exists(DataFlowCallable c, ParameterPosition ppos |
+        returnFlowsThrough0(ret, kind, state, ccc, c, ppos, argAp, ap, config) and
+        p.isParameterOf(c, ppos) and
+        parameterFlowThroughAllowed(p, kind)
+      )
     }
 
     pragma[nomagic]
     private predicate flowThroughIntoCall(
       DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
     ) {
-      flowIntoCall(call, pragma[only_bind_into](arg), pragma[only_bind_into](p), allowsFieldFlow,
-        pragma[only_bind_into](config)) and
-      fwdFlow(arg, _, _, _, _, _, pragma[only_bind_into](config)) and
-      returnFlowsThrough(_, _, _, _, p.asNode(), _, _, pragma[only_bind_into](config))
+      exists(Ap argAp |
+        flowIntoCall(call, pragma[only_bind_into](arg), pragma[only_bind_into](p), allowsFieldFlow,
+          pragma[only_bind_into](config)) and
+        fwdFlow(arg, _, _, _, _, pragma[only_bind_into](argAp), pragma[only_bind_into](config)) and
+        returnFlowsThrough(_, _, _, _, p, pragma[only_bind_into](argAp), _,
+          pragma[only_bind_into](config))
+      )
     }
 
     /**
@@ -1591,21 +1626,25 @@ private module MkStage<StageSig PrevStage> {
       )
       or
       // flow into a callable
-      revFlowInNotToReturn(node, state, returnAp, ap, config) and
-      returnCtx = TReturnCtxNone()
+      exists(ParamNodeEx p, boolean allowsFieldFlow |
+        revFlow(p, state, TReturnCtxNone(), returnAp, ap, config) and
+        flowIntoCall(_, node, p, allowsFieldFlow, config) and
+        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
+        returnCtx = TReturnCtxNone()
+      )
       or
       // flow through a callable
-      exists(DataFlowCall call, ReturnPosition returnPos0, Ap returnAp0 |
-        revFlowInToReturn(call, node, state, returnPos0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnPos0, returnAp0, config)
+      exists(DataFlowCall call, ReturnKindExt returnKind0, Ap returnAp0 |
+        revFlowInToReturn(call, node, state, returnKind0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
       )
       or
       // flow out of a callable
-      exists(ReturnPosition pos |
-        revFlowOut(_, node, pos, state, _, _, ap, config) and
-        if returnFlowsThrough(node, pos, state, _, _, _, ap, config)
+      exists(ReturnKindExt kind |
+        revFlowOut(_, node, kind, state, _, _, ap, config) and
+        if returnFlowsThrough(node, kind, state, _, _, _, ap, config)
         then (
-          returnCtx = TReturnCtxMaybeFlowThrough(pos) and
+          returnCtx = TReturnCtxMaybeFlowThrough(kind) and
           returnAp = apSome(ap)
         ) else (
           returnCtx = TReturnCtxNoFlowThrough() and returnAp = apNone()
@@ -1638,37 +1677,27 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate revFlowOut(
-      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, FlowState state, ReturnCtx returnCtx,
+      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, FlowState state, ReturnCtx returnCtx,
       ApOption returnAp, Ap ap, Configuration config
     ) {
       exists(NodeEx out, boolean allowsFieldFlow |
         revFlow(out, state, returnCtx, returnAp, ap, config) and
-        flowOutOfCall(call, ret, pos, out, allowsFieldFlow, config) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
-      )
-    }
-
-    pragma[nomagic]
-    private predicate revFlowInNotToReturn(
-      ArgNodeEx arg, FlowState state, ApOption returnAp, Ap ap, Configuration config
-    ) {
-      exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(p, state, TReturnCtxNone(), returnAp, ap, config) and
-        flowIntoCall(_, arg, p, allowsFieldFlow, config) and
+        flowOutOfCall(call, ret, kind, out, allowsFieldFlow, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
     pragma[nomagic]
     private predicate revFlowInToReturn(
-      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnPosition returnPos, Ap returnAp,
-      Ap ap, Configuration config
+      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap,
+      Configuration config
     ) {
       exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(p, state, TReturnCtxMaybeFlowThrough(returnPos), apSome(returnAp), ap, config) and
+        revFlow(pragma[only_bind_into](p), state,
+          TReturnCtxMaybeFlowThrough(pragma[only_bind_into](kind)), apSome(returnAp), ap, config) and
         flowThroughIntoCall(call, arg, p, allowsFieldFlow, config) and
         (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
-        parameterFlowThroughAllowed(p.asNode(), returnPos.getKind())
+        parameterFlowThroughAllowed(p, kind)
       )
     }
 
@@ -1679,12 +1708,12 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate revFlowIsReturned(
-      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnPosition pos, Ap ap,
+      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnKindExt kind, Ap ap,
       Configuration config
     ) {
       exists(RetNodeEx ret, FlowState state, CcCall ccc |
-        revFlowOut(call, ret, pos, state, returnCtx, returnAp, ap, config) and
-        returnFlowsThrough(ret, pos, state, ccc, _, _, ap, config) and
+        revFlowOut(call, ret, kind, state, returnCtx, returnAp, ap, config) and
+        returnFlowsThrough(ret, kind, state, ccc, _, _, ap, config) and
         matchesCall(ccc, call)
       )
     }
@@ -1757,37 +1786,37 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate parameterFlowsThroughRev(
-      ParamNodeEx p, Ap ap, ReturnPosition returnPos, Configuration config
+      ParamNodeEx p, Ap ap, ReturnKindExt kind, Configuration config
     ) {
-      revFlow(p, _, TReturnCtxMaybeFlowThrough(returnPos), apSome(_), ap, config) and
-      parameterFlowThroughAllowed(p.asNode(), returnPos.getKind())
+      revFlow(p, _, TReturnCtxMaybeFlowThrough(kind), apSome(_), ap, config) and
+      parameterFlowThroughAllowed(p, kind)
     }
 
     pragma[nomagic]
     predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
-      exists(RetNodeEx ret, ReturnPosition pos |
-        returnFlowsThrough(ret, pos, _, _, p.asNode(), ap, _, config) and
-        parameterFlowsThroughRev(p, ap, pos, config)
+      exists(RetNodeEx ret, ReturnKindExt kind |
+        returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
+        parameterFlowsThroughRev(p, ap, kind, config)
       )
     }
 
     pragma[nomagic]
-    predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config) {
+    predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config) {
       exists(ParamNodeEx p, Ap ap |
-        returnFlowsThrough(ret, pos, _, _, p.asNode(), ap, _, config) and
-        parameterFlowsThroughRev(p, ap, pos, config)
+        returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
+        parameterFlowsThroughRev(p, ap, kind, config)
       )
     }
 
     pragma[nomagic]
     predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
       exists(
-        ReturnPosition returnPos0, Ap returnAp0, ArgNodeEx arg, FlowState state,
+        ReturnKindExt returnKind0, Ap returnAp0, ArgNodeEx arg, FlowState state,
         ReturnCtx returnCtx, ApOption returnAp, Ap ap
       |
         revFlow(arg, state, returnCtx, returnAp, ap, config) and
-        revFlowInToReturn(call, arg, state, returnPos0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnPos0, returnAp0, config)
+        revFlowInToReturn(call, arg, state, returnKind0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
       )
     }
 
@@ -1800,9 +1829,8 @@ private module MkStage<StageSig PrevStage> {
       conscand = count(TypedContent f0, Ap ap | fwdConsCand(f0, ap, config)) and
       states = count(FlowState state | fwdFlow(_, state, _, _, _, _, config)) and
       tuples =
-        count(NodeEx n, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap |
-          fwdFlow(n, state, cc, summaryCtx, argAp, ap, config)
-        )
+        count(NodeEx n, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+          Ap ap | fwdFlow(n, state, cc, summaryCtx, argAp, ap, config))
       or
       fwd = false and
       nodes = count(NodeEx node | revFlow(node, _, _, _, _, config)) and
@@ -1992,10 +2020,10 @@ private module Stage2 implements StageSig {
 
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand2(
-  DataFlowCall call, RetNodeEx node1, ReturnPosition pos, NodeEx node2, boolean allowsFieldFlow,
+  DataFlowCall call, RetNodeEx node1, ReturnKindExt kind, NodeEx node2, boolean allowsFieldFlow,
   Configuration config
 ) {
-  flowOutOfCallNodeCand1(call, node1, pos, node2, allowsFieldFlow, config) and
+  flowOutOfCallNodeCand1(call, node1, kind, node2, allowsFieldFlow, config) and
   Stage2::revFlow(node2, pragma[only_bind_into](config)) and
   Stage2::revFlowAlias(node1, pragma[only_bind_into](config))
 }
@@ -2511,11 +2539,11 @@ private module Stage4Param implements MkStage<Stage3>::StageParam {
 
   pragma[nomagic]
   predicate flowOutOfCall(
-    DataFlowCall call, RetNodeEx node1, ReturnPosition pos, NodeEx node2, boolean allowsFieldFlow,
+    DataFlowCall call, RetNodeEx node1, ReturnKindExt kind, NodeEx node2, boolean allowsFieldFlow,
     Configuration config
   ) {
     exists(FlowState state |
-      flowOutOfCallNodeCand2(call, node1, pos, node2, allowsFieldFlow, config) and
+      flowOutOfCallNodeCand2(call, node1, kind, node2, allowsFieldFlow, config) and
       PrevStage::revFlow(node2, pragma[only_bind_into](state), _, pragma[only_bind_into](config)) and
       PrevStage::revFlowAlias(node1, pragma[only_bind_into](state), _,
         pragma[only_bind_into](config))
@@ -2552,12 +2580,13 @@ private Configuration unbindConf(Configuration conf) {
 
 pragma[nomagic]
 private predicate nodeMayUseSummary0(
-  NodeEx n, ParamNodeEx p, FlowState state, AccessPathApprox apa, Configuration config
+  NodeEx n, DataFlowCallable c, ParameterPosition pos, FlowState state, AccessPathApprox apa,
+  Configuration config
 ) {
   exists(AccessPathApprox apa0 |
-    Stage4::parameterMayFlowThrough(p, _, _) and
+    c = n.getEnclosingCallable() and
     Stage4::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
-    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TParamNodeSome(p.asNode()),
+    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TParameterPositionSome(pos),
       TAccessPathApproxSome(apa), apa0, config)
   )
 }
@@ -2566,9 +2595,10 @@ pragma[nomagic]
 private predicate nodeMayUseSummary(
   NodeEx n, FlowState state, AccessPathApprox apa, Configuration config
 ) {
-  exists(ParamNodeEx p |
+  exists(DataFlowCallable c, ParameterPosition pos, ParamNodeEx p |
     Stage4::parameterMayFlowThrough(p, apa, config) and
-    nodeMayUseSummary0(n, p, state, apa, config)
+    nodeMayUseSummary0(n, c, pos, state, apa, config) and
+    p.isParameterOf(c, pos)
   )
 }
 
@@ -3501,7 +3531,7 @@ private predicate paramFlowsThrough(
     pathNode(mid, ret, state, cc, sc, ap, config, _) and
     kind = ret.getKind() and
     apa = ap.getApprox() and
-    parameterFlowThroughAllowed(sc.getParamNode().asNode(), kind)
+    parameterFlowThroughAllowed(sc.getParamNode(), kind)
   )
 }
 
diff --git a/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImplForRegExp.qll b/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImplForRegExp.qll
index a52ad110662..e4cfd5986be 100644
--- a/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImplForRegExp.qll
+++ b/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImplForRegExp.qll
@@ -613,11 +613,28 @@ private predicate hasSinkCallCtx(Configuration config) {
  * explicitly allowed
  */
 bindingset[p, kind]
-private predicate parameterFlowThroughAllowed(ParamNode p, ReturnKindExt kind) {
+private predicate parameterFlowThroughAllowed(ParamNodeEx p, ReturnKindExt kind) {
   exists(ParameterPosition pos | p.isParameterOf(_, pos) |
     not kind.(ParamUpdateReturnKind).getPosition() = pos
     or
-    allowParameterReturnInSelfCached(p)
+    allowParameterReturnInSelfCached(p.asNode())
+  )
+}
+
+/**
+ * Holds if flow from a parameter at position `pos` inside `c` to a return node of
+ * kind `kind` is allowed.
+ *
+ * We don't expect a parameter to return stored in itself, unless
+ * explicitly allowed
+ */
+bindingset[c, pos, kind]
+private predicate parameterFlowThroughAllowed(
+  DataFlowCallable c, ParameterPosition pos, ReturnKindExt kind
+) {
+  exists(ParamNodeEx p |
+    p.isParameterOf(c, pos) and
+    parameterFlowThroughAllowed(p, kind)
   )
 }
 
@@ -1000,14 +1017,14 @@ private module Stage1 implements StageSig {
       returnFlowCallableNodeCand(c, kind, config) and
       p.getEnclosingCallable() = c and
       exists(ap) and
-      parameterFlowThroughAllowed(p.asNode(), kind)
+      parameterFlowThroughAllowed(p, kind)
     )
   }
 
   pragma[nomagic]
-  predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config) {
+  predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config) {
     throughFlowNodeCand(ret, config) and
-    pos = ret.getReturnPosition()
+    kind = ret.getKind()
   }
 
   pragma[nomagic]
@@ -1066,13 +1083,16 @@ private predicate viableReturnPosOutNodeCand1(
  */
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand1(
-  DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, Configuration config
+  DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, Configuration config
 ) {
-  viableReturnPosOutNodeCand1(call, pos, out, config) and
-  pos = ret.getReturnPosition() and
-  Stage1::revFlow(ret, config) and
-  not outBarrier(ret, config) and
-  not inBarrier(out, config)
+  exists(ReturnPosition pos |
+    viableReturnPosOutNodeCand1(call, pos, out, config) and
+    pos = ret.getReturnPosition() and
+    kind = pos.getKind() and
+    Stage1::revFlow(ret, config) and
+    not outBarrier(ret, config) and
+    not inBarrier(out, config)
+  )
 }
 
 pragma[nomagic]
@@ -1102,6 +1122,7 @@ private predicate flowIntoCallNodeCand1(
  * edge in the graph of paths between sources and sinks that ignores call
  * contexts.
  */
+pragma[nomagic]
 private int branch(NodeEx n1, Configuration conf) {
   result =
     strictcount(NodeEx n |
@@ -1114,6 +1135,7 @@ private int branch(NodeEx n1, Configuration conf) {
  * edge in the graph of paths between sources and sinks that ignores call
  * contexts.
  */
+pragma[nomagic]
 private int join(NodeEx n2, Configuration conf) {
   result =
     strictcount(NodeEx n |
@@ -1130,10 +1152,10 @@ private int join(NodeEx n2, Configuration conf) {
  */
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand1(
-  DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
+  DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
   Configuration config
 ) {
-  flowOutOfCallNodeCand1(call, ret, pos, out, pragma[only_bind_into](config)) and
+  flowOutOfCallNodeCand1(call, ret, kind, out, pragma[only_bind_into](config)) and
   exists(int b, int j |
     b = branch(ret, pragma[only_bind_into](config)) and
     j = join(out, pragma[only_bind_into](config)) and
@@ -1152,10 +1174,10 @@ pragma[nomagic]
 private predicate flowIntoCallNodeCand1(
   DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
 ) {
-  flowIntoCallNodeCand1(call, arg, p, config) and
+  flowIntoCallNodeCand1(call, arg, p, pragma[only_bind_into](config)) and
   exists(int b, int j |
-    b = branch(arg, config) and
-    j = join(p, config) and
+    b = branch(arg, pragma[only_bind_into](config)) and
+    j = join(p, pragma[only_bind_into](config)) and
     if b.minimum(j) <= config.fieldFlowBranchLimit()
     then allowsFieldFlow = true
     else allowsFieldFlow = false
@@ -1174,7 +1196,7 @@ private signature module StageSig {
 
   predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config);
 
-  predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config);
+  predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config);
 
   predicate storeStepCand(
     NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, DataFlowType contentType,
@@ -1240,7 +1262,7 @@ private module MkStage<StageSig PrevStage> {
     );
 
     predicate flowOutOfCall(
-      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
+      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
       Configuration config
     );
 
@@ -1266,16 +1288,14 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate flowThroughOutOfCall(
-      DataFlowCall call, CcCall ccc, RetNodeEx ret, ReturnKindExt kind, NodeEx out,
-      boolean allowsFieldFlow, Configuration config
+      DataFlowCall call, DataFlowCallable c, CcCall ccc, RetNodeEx ret, ReturnKindExt kind,
+      NodeEx out, boolean allowsFieldFlow, Configuration config
     ) {
-      exists(ReturnPosition pos |
-        flowOutOfCall(call, ret, pos, out, allowsFieldFlow, pragma[only_bind_into](config)) and
-        kind = pos.getKind() and
-        PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
-        PrevStage::returnMayFlowThrough(ret, pos, pragma[only_bind_into](config)) and
-        matchesCall(ccc, call)
-      )
+      flowOutOfCall(call, ret, kind, out, allowsFieldFlow, pragma[only_bind_into](config)) and
+      PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
+      PrevStage::returnMayFlowThrough(ret, kind, pragma[only_bind_into](config)) and
+      matchesCall(ccc, call) and
+      c = ret.getEnclosingCallable()
     }
 
     /**
@@ -1284,12 +1304,12 @@ private module MkStage<StageSig PrevStage> {
      *
      * The call context `cc` records whether the node is reached through an
      * argument in a call, and if so, `summaryCtx` and `argAp` record the
-     * corresponding parameter and access path of that argument, respectively.
+     * corresponding parameter position and access path of that argument, respectively.
      */
     pragma[nomagic]
     additional predicate fwdFlow(
-      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
-      Configuration config
+      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      Ap ap, Configuration config
     ) {
       fwdFlow0(node, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::revFlow(node, state, unbindApa(getApprox(ap)), config) and
@@ -1298,13 +1318,13 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlow0(
-      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
-      Configuration config
+      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      Ap ap, Configuration config
     ) {
       sourceNode(node, state, config) and
       (if hasSourceCallCtx(config) then cc = ccSomeCall() else cc = ccNone()) and
       argAp = apNone() and
-      summaryCtx = TParamNodeNone() and
+      summaryCtx = TParameterPositionNone() and
       ap = getApNil(node)
       or
       exists(NodeEx mid, FlowState state0, Ap ap0, LocalCc localCc |
@@ -1322,7 +1342,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, pragma[only_bind_into](config)) and
         jumpStep(mid, node, config) and
         cc = ccNone() and
-        summaryCtx = TParamNodeNone() and
+        summaryCtx = TParameterPositionNone() and
         argAp = apNone()
       )
       or
@@ -1330,7 +1350,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, state, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStep(mid, node, config) and
         cc = ccNone() and
-        summaryCtx = TParamNodeNone() and
+        summaryCtx = TParameterPositionNone() and
         argAp = apNone() and
         ap = getApNil(node)
       )
@@ -1339,7 +1359,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, state0, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStateStep(mid, state0, node, state, config) and
         cc = ccNone() and
-        summaryCtx = TParamNodeNone() and
+        summaryCtx = TParameterPositionNone() and
         argAp = apNone() and
         ap = getApNil(node)
       )
@@ -1362,17 +1382,27 @@ private module MkStage<StageSig PrevStage> {
         apa = getApprox(ap) and
         if PrevStage::parameterMayFlowThrough(node, apa, config)
         then (
-          summaryCtx = TParamNodeSome(node.asNode()) and argAp = apSome(ap)
+          summaryCtx = TParameterPositionSome(node.(ParamNodeEx).getPosition()) and
+          argAp = apSome(ap)
         ) else (
-          summaryCtx = TParamNodeNone() and argAp = apNone()
+          summaryCtx = TParameterPositionNone() and argAp = apNone()
         )
       )
       or
       // flow out of a callable
-      fwdFlowOutNotFromArg(node, state, cc, summaryCtx, argAp, ap, config)
+      exists(
+        DataFlowCall call, RetNodeEx ret, boolean allowsFieldFlow, CcNoCall innercc,
+        DataFlowCallable inner
+      |
+        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, config) and
+        flowOutOfCall(call, ret, _, node, allowsFieldFlow, config) and
+        inner = ret.getEnclosingCallable() and
+        cc = getCallContextReturn(inner, call, innercc) and
+        if allowsFieldFlow = false then ap instanceof ApNil else any()
+      )
       or
       // flow through a callable
-      exists(DataFlowCall call, ParamNode summaryCtx0, Ap argAp0 |
+      exists(DataFlowCall call, ParameterPosition summaryCtx0, Ap argAp0 |
         fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, config) and
         fwdFlowIsEntered(call, cc, summaryCtx, argAp, summaryCtx0, argAp0, config)
       )
@@ -1381,7 +1411,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowStore(
       NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc,
-      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
+      ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
     ) {
       exists(DataFlowType contentType |
         fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, config) and
@@ -1406,7 +1436,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowRead(
       Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc,
-      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
+      ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
     ) {
       fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, c, node2, config) and
@@ -1416,7 +1446,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowIn(
       DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, Cc innercc,
-      ParamNodeOption summaryCtx, ApOption argAp, Ap ap, Configuration config
+      ParameterPositionOption summaryCtx, ApOption argAp, Ap ap, Configuration config
     ) {
       exists(ArgNodeEx arg, boolean allowsFieldFlow |
         fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, config) and
@@ -1427,32 +1457,19 @@ private module MkStage<StageSig PrevStage> {
     }
 
     pragma[nomagic]
-    private predicate fwdFlowOutNotFromArg(
-      NodeEx out, FlowState state, Cc ccOut, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+    private predicate fwdFlowOutFromArg(
+      DataFlowCall call, NodeEx out, FlowState state, ParameterPosition summaryCtx, Ap argAp, Ap ap,
       Configuration config
     ) {
       exists(
-        DataFlowCall call, RetNodeEx ret, boolean allowsFieldFlow, CcNoCall innercc,
-        DataFlowCallable inner
+        DataFlowCallable c, RetNodeEx ret, ReturnKindExt kind, boolean allowsFieldFlow, CcCall ccc
       |
-        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, config) and
-        flowOutOfCall(call, ret, _, out, allowsFieldFlow, config) and
-        inner = ret.getEnclosingCallable() and
-        ccOut = getCallContextReturn(inner, call, innercc) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
-      )
-    }
-
-    pragma[nomagic]
-    private predicate fwdFlowOutFromArg(
-      DataFlowCall call, NodeEx out, FlowState state, ParamNode summaryCtx, Ap argAp, Ap ap,
-      Configuration config
-    ) {
-      exists(RetNodeEx ret, ReturnKindExt kind, boolean allowsFieldFlow, CcCall ccc |
-        fwdFlow(ret, state, ccc, TParamNodeSome(summaryCtx), apSome(argAp), ap, config) and
-        flowThroughOutOfCall(call, ccc, ret, kind, out, allowsFieldFlow, config) and
+        fwdFlow(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc),
+          TParameterPositionSome(pragma[only_bind_into](summaryCtx)), apSome(argAp), ap, config) and
+        flowThroughOutOfCall(call, pragma[only_bind_into](c), ccc, ret, kind, out, allowsFieldFlow,
+          config) and
         (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
-        parameterFlowThroughAllowed(summaryCtx, kind)
+        parameterFlowThroughAllowed(c, pragma[only_bind_into](summaryCtx), kind)
       )
     }
 
@@ -1462,13 +1479,13 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate fwdFlowIsEntered(
-      DataFlowCall call, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, ParamNode p, Ap ap,
-      Configuration config
+      DataFlowCall call, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      ParameterPosition pos, Ap ap, Configuration config
     ) {
       exists(ParamNodeEx param |
         fwdFlowIn(call, param, _, cc, _, summaryCtx, argAp, ap, config) and
         PrevStage::parameterMayFlowThrough(param, unbindApa(getApprox(ap)), config) and
-        p = param.asNode()
+        pos = param.getPosition()
       )
     }
 
@@ -1489,23 +1506,41 @@ private module MkStage<StageSig PrevStage> {
     }
 
     pragma[nomagic]
-    private predicate returnFlowsThrough(
-      RetNodeEx ret, ReturnPosition pos, FlowState state, CcCall ccc, ParamNode p, Ap argAp, Ap ap,
-      Configuration config
+    private predicate returnFlowsThrough0(
+      RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, DataFlowCallable c,
+      ParameterPosition ppos, Ap argAp, Ap ap, Configuration config
     ) {
-      fwdFlow(ret, state, ccc, TParamNodeSome(p), apSome(argAp), ap, config) and
-      pos = ret.getReturnPosition() and
-      parameterFlowThroughAllowed(p, pos.getKind())
+      exists(boolean allowsFieldFlow |
+        fwdFlow(ret, state, ccc, TParameterPositionSome(ppos), apSome(argAp), ap, config) and
+        flowThroughOutOfCall(_, c, _, pragma[only_bind_into](ret), kind, _, allowsFieldFlow,
+          pragma[only_bind_into](config)) and
+        if allowsFieldFlow = false then ap instanceof ApNil else any()
+      )
+    }
+
+    pragma[nomagic]
+    private predicate returnFlowsThrough(
+      RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, ParamNodeEx p, Ap argAp,
+      Ap ap, Configuration config
+    ) {
+      exists(DataFlowCallable c, ParameterPosition ppos |
+        returnFlowsThrough0(ret, kind, state, ccc, c, ppos, argAp, ap, config) and
+        p.isParameterOf(c, ppos) and
+        parameterFlowThroughAllowed(p, kind)
+      )
     }
 
     pragma[nomagic]
     private predicate flowThroughIntoCall(
       DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
     ) {
-      flowIntoCall(call, pragma[only_bind_into](arg), pragma[only_bind_into](p), allowsFieldFlow,
-        pragma[only_bind_into](config)) and
-      fwdFlow(arg, _, _, _, _, _, pragma[only_bind_into](config)) and
-      returnFlowsThrough(_, _, _, _, p.asNode(), _, _, pragma[only_bind_into](config))
+      exists(Ap argAp |
+        flowIntoCall(call, pragma[only_bind_into](arg), pragma[only_bind_into](p), allowsFieldFlow,
+          pragma[only_bind_into](config)) and
+        fwdFlow(arg, _, _, _, _, pragma[only_bind_into](argAp), pragma[only_bind_into](config)) and
+        returnFlowsThrough(_, _, _, _, p, pragma[only_bind_into](argAp), _,
+          pragma[only_bind_into](config))
+      )
     }
 
     /**
@@ -1591,21 +1626,25 @@ private module MkStage<StageSig PrevStage> {
       )
       or
       // flow into a callable
-      revFlowInNotToReturn(node, state, returnAp, ap, config) and
-      returnCtx = TReturnCtxNone()
+      exists(ParamNodeEx p, boolean allowsFieldFlow |
+        revFlow(p, state, TReturnCtxNone(), returnAp, ap, config) and
+        flowIntoCall(_, node, p, allowsFieldFlow, config) and
+        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
+        returnCtx = TReturnCtxNone()
+      )
       or
       // flow through a callable
-      exists(DataFlowCall call, ReturnPosition returnPos0, Ap returnAp0 |
-        revFlowInToReturn(call, node, state, returnPos0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnPos0, returnAp0, config)
+      exists(DataFlowCall call, ReturnKindExt returnKind0, Ap returnAp0 |
+        revFlowInToReturn(call, node, state, returnKind0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
       )
       or
       // flow out of a callable
-      exists(ReturnPosition pos |
-        revFlowOut(_, node, pos, state, _, _, ap, config) and
-        if returnFlowsThrough(node, pos, state, _, _, _, ap, config)
+      exists(ReturnKindExt kind |
+        revFlowOut(_, node, kind, state, _, _, ap, config) and
+        if returnFlowsThrough(node, kind, state, _, _, _, ap, config)
         then (
-          returnCtx = TReturnCtxMaybeFlowThrough(pos) and
+          returnCtx = TReturnCtxMaybeFlowThrough(kind) and
           returnAp = apSome(ap)
         ) else (
           returnCtx = TReturnCtxNoFlowThrough() and returnAp = apNone()
@@ -1638,37 +1677,27 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate revFlowOut(
-      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, FlowState state, ReturnCtx returnCtx,
+      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, FlowState state, ReturnCtx returnCtx,
       ApOption returnAp, Ap ap, Configuration config
     ) {
       exists(NodeEx out, boolean allowsFieldFlow |
         revFlow(out, state, returnCtx, returnAp, ap, config) and
-        flowOutOfCall(call, ret, pos, out, allowsFieldFlow, config) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
-      )
-    }
-
-    pragma[nomagic]
-    private predicate revFlowInNotToReturn(
-      ArgNodeEx arg, FlowState state, ApOption returnAp, Ap ap, Configuration config
-    ) {
-      exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(p, state, TReturnCtxNone(), returnAp, ap, config) and
-        flowIntoCall(_, arg, p, allowsFieldFlow, config) and
+        flowOutOfCall(call, ret, kind, out, allowsFieldFlow, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
     pragma[nomagic]
     private predicate revFlowInToReturn(
-      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnPosition returnPos, Ap returnAp,
-      Ap ap, Configuration config
+      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap,
+      Configuration config
     ) {
       exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(p, state, TReturnCtxMaybeFlowThrough(returnPos), apSome(returnAp), ap, config) and
+        revFlow(pragma[only_bind_into](p), state,
+          TReturnCtxMaybeFlowThrough(pragma[only_bind_into](kind)), apSome(returnAp), ap, config) and
         flowThroughIntoCall(call, arg, p, allowsFieldFlow, config) and
         (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
-        parameterFlowThroughAllowed(p.asNode(), returnPos.getKind())
+        parameterFlowThroughAllowed(p, kind)
       )
     }
 
@@ -1679,12 +1708,12 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate revFlowIsReturned(
-      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnPosition pos, Ap ap,
+      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnKindExt kind, Ap ap,
       Configuration config
     ) {
       exists(RetNodeEx ret, FlowState state, CcCall ccc |
-        revFlowOut(call, ret, pos, state, returnCtx, returnAp, ap, config) and
-        returnFlowsThrough(ret, pos, state, ccc, _, _, ap, config) and
+        revFlowOut(call, ret, kind, state, returnCtx, returnAp, ap, config) and
+        returnFlowsThrough(ret, kind, state, ccc, _, _, ap, config) and
         matchesCall(ccc, call)
       )
     }
@@ -1757,37 +1786,37 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate parameterFlowsThroughRev(
-      ParamNodeEx p, Ap ap, ReturnPosition returnPos, Configuration config
+      ParamNodeEx p, Ap ap, ReturnKindExt kind, Configuration config
     ) {
-      revFlow(p, _, TReturnCtxMaybeFlowThrough(returnPos), apSome(_), ap, config) and
-      parameterFlowThroughAllowed(p.asNode(), returnPos.getKind())
+      revFlow(p, _, TReturnCtxMaybeFlowThrough(kind), apSome(_), ap, config) and
+      parameterFlowThroughAllowed(p, kind)
     }
 
     pragma[nomagic]
     predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
-      exists(RetNodeEx ret, ReturnPosition pos |
-        returnFlowsThrough(ret, pos, _, _, p.asNode(), ap, _, config) and
-        parameterFlowsThroughRev(p, ap, pos, config)
+      exists(RetNodeEx ret, ReturnKindExt kind |
+        returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
+        parameterFlowsThroughRev(p, ap, kind, config)
       )
     }
 
     pragma[nomagic]
-    predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config) {
+    predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config) {
       exists(ParamNodeEx p, Ap ap |
-        returnFlowsThrough(ret, pos, _, _, p.asNode(), ap, _, config) and
-        parameterFlowsThroughRev(p, ap, pos, config)
+        returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
+        parameterFlowsThroughRev(p, ap, kind, config)
       )
     }
 
     pragma[nomagic]
     predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
       exists(
-        ReturnPosition returnPos0, Ap returnAp0, ArgNodeEx arg, FlowState state,
+        ReturnKindExt returnKind0, Ap returnAp0, ArgNodeEx arg, FlowState state,
         ReturnCtx returnCtx, ApOption returnAp, Ap ap
       |
         revFlow(arg, state, returnCtx, returnAp, ap, config) and
-        revFlowInToReturn(call, arg, state, returnPos0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnPos0, returnAp0, config)
+        revFlowInToReturn(call, arg, state, returnKind0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
       )
     }
 
@@ -1800,9 +1829,8 @@ private module MkStage<StageSig PrevStage> {
       conscand = count(TypedContent f0, Ap ap | fwdConsCand(f0, ap, config)) and
       states = count(FlowState state | fwdFlow(_, state, _, _, _, _, config)) and
       tuples =
-        count(NodeEx n, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap |
-          fwdFlow(n, state, cc, summaryCtx, argAp, ap, config)
-        )
+        count(NodeEx n, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+          Ap ap | fwdFlow(n, state, cc, summaryCtx, argAp, ap, config))
       or
       fwd = false and
       nodes = count(NodeEx node | revFlow(node, _, _, _, _, config)) and
@@ -1992,10 +2020,10 @@ private module Stage2 implements StageSig {
 
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand2(
-  DataFlowCall call, RetNodeEx node1, ReturnPosition pos, NodeEx node2, boolean allowsFieldFlow,
+  DataFlowCall call, RetNodeEx node1, ReturnKindExt kind, NodeEx node2, boolean allowsFieldFlow,
   Configuration config
 ) {
-  flowOutOfCallNodeCand1(call, node1, pos, node2, allowsFieldFlow, config) and
+  flowOutOfCallNodeCand1(call, node1, kind, node2, allowsFieldFlow, config) and
   Stage2::revFlow(node2, pragma[only_bind_into](config)) and
   Stage2::revFlowAlias(node1, pragma[only_bind_into](config))
 }
@@ -2511,11 +2539,11 @@ private module Stage4Param implements MkStage<Stage3>::StageParam {
 
   pragma[nomagic]
   predicate flowOutOfCall(
-    DataFlowCall call, RetNodeEx node1, ReturnPosition pos, NodeEx node2, boolean allowsFieldFlow,
+    DataFlowCall call, RetNodeEx node1, ReturnKindExt kind, NodeEx node2, boolean allowsFieldFlow,
     Configuration config
   ) {
     exists(FlowState state |
-      flowOutOfCallNodeCand2(call, node1, pos, node2, allowsFieldFlow, config) and
+      flowOutOfCallNodeCand2(call, node1, kind, node2, allowsFieldFlow, config) and
       PrevStage::revFlow(node2, pragma[only_bind_into](state), _, pragma[only_bind_into](config)) and
       PrevStage::revFlowAlias(node1, pragma[only_bind_into](state), _,
         pragma[only_bind_into](config))
@@ -2552,12 +2580,13 @@ private Configuration unbindConf(Configuration conf) {
 
 pragma[nomagic]
 private predicate nodeMayUseSummary0(
-  NodeEx n, ParamNodeEx p, FlowState state, AccessPathApprox apa, Configuration config
+  NodeEx n, DataFlowCallable c, ParameterPosition pos, FlowState state, AccessPathApprox apa,
+  Configuration config
 ) {
   exists(AccessPathApprox apa0 |
-    Stage4::parameterMayFlowThrough(p, _, _) and
+    c = n.getEnclosingCallable() and
     Stage4::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
-    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TParamNodeSome(p.asNode()),
+    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TParameterPositionSome(pos),
       TAccessPathApproxSome(apa), apa0, config)
   )
 }
@@ -2566,9 +2595,10 @@ pragma[nomagic]
 private predicate nodeMayUseSummary(
   NodeEx n, FlowState state, AccessPathApprox apa, Configuration config
 ) {
-  exists(ParamNodeEx p |
+  exists(DataFlowCallable c, ParameterPosition pos, ParamNodeEx p |
     Stage4::parameterMayFlowThrough(p, apa, config) and
-    nodeMayUseSummary0(n, p, state, apa, config)
+    nodeMayUseSummary0(n, c, pos, state, apa, config) and
+    p.isParameterOf(c, pos)
   )
 }
 
@@ -3501,7 +3531,7 @@ private predicate paramFlowsThrough(
     pathNode(mid, ret, state, cc, sc, ap, config, _) and
     kind = ret.getKind() and
     apa = ap.getApprox() and
-    parameterFlowThroughAllowed(sc.getParamNode().asNode(), kind)
+    parameterFlowThroughAllowed(sc.getParamNode(), kind)
   )
 }
 
diff --git a/swift/ql/lib/codeql/swift/dataflow/internal/DataFlowImpl.qll b/swift/ql/lib/codeql/swift/dataflow/internal/DataFlowImpl.qll
index a52ad110662..e4cfd5986be 100644
--- a/swift/ql/lib/codeql/swift/dataflow/internal/DataFlowImpl.qll
+++ b/swift/ql/lib/codeql/swift/dataflow/internal/DataFlowImpl.qll
@@ -613,11 +613,28 @@ private predicate hasSinkCallCtx(Configuration config) {
  * explicitly allowed
  */
 bindingset[p, kind]
-private predicate parameterFlowThroughAllowed(ParamNode p, ReturnKindExt kind) {
+private predicate parameterFlowThroughAllowed(ParamNodeEx p, ReturnKindExt kind) {
   exists(ParameterPosition pos | p.isParameterOf(_, pos) |
     not kind.(ParamUpdateReturnKind).getPosition() = pos
     or
-    allowParameterReturnInSelfCached(p)
+    allowParameterReturnInSelfCached(p.asNode())
+  )
+}
+
+/**
+ * Holds if flow from a parameter at position `pos` inside `c` to a return node of
+ * kind `kind` is allowed.
+ *
+ * We don't expect a parameter to return stored in itself, unless
+ * explicitly allowed
+ */
+bindingset[c, pos, kind]
+private predicate parameterFlowThroughAllowed(
+  DataFlowCallable c, ParameterPosition pos, ReturnKindExt kind
+) {
+  exists(ParamNodeEx p |
+    p.isParameterOf(c, pos) and
+    parameterFlowThroughAllowed(p, kind)
   )
 }
 
@@ -1000,14 +1017,14 @@ private module Stage1 implements StageSig {
       returnFlowCallableNodeCand(c, kind, config) and
       p.getEnclosingCallable() = c and
       exists(ap) and
-      parameterFlowThroughAllowed(p.asNode(), kind)
+      parameterFlowThroughAllowed(p, kind)
     )
   }
 
   pragma[nomagic]
-  predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config) {
+  predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config) {
     throughFlowNodeCand(ret, config) and
-    pos = ret.getReturnPosition()
+    kind = ret.getKind()
   }
 
   pragma[nomagic]
@@ -1066,13 +1083,16 @@ private predicate viableReturnPosOutNodeCand1(
  */
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand1(
-  DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, Configuration config
+  DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, Configuration config
 ) {
-  viableReturnPosOutNodeCand1(call, pos, out, config) and
-  pos = ret.getReturnPosition() and
-  Stage1::revFlow(ret, config) and
-  not outBarrier(ret, config) and
-  not inBarrier(out, config)
+  exists(ReturnPosition pos |
+    viableReturnPosOutNodeCand1(call, pos, out, config) and
+    pos = ret.getReturnPosition() and
+    kind = pos.getKind() and
+    Stage1::revFlow(ret, config) and
+    not outBarrier(ret, config) and
+    not inBarrier(out, config)
+  )
 }
 
 pragma[nomagic]
@@ -1102,6 +1122,7 @@ private predicate flowIntoCallNodeCand1(
  * edge in the graph of paths between sources and sinks that ignores call
  * contexts.
  */
+pragma[nomagic]
 private int branch(NodeEx n1, Configuration conf) {
   result =
     strictcount(NodeEx n |
@@ -1114,6 +1135,7 @@ private int branch(NodeEx n1, Configuration conf) {
  * edge in the graph of paths between sources and sinks that ignores call
  * contexts.
  */
+pragma[nomagic]
 private int join(NodeEx n2, Configuration conf) {
   result =
     strictcount(NodeEx n |
@@ -1130,10 +1152,10 @@ private int join(NodeEx n2, Configuration conf) {
  */
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand1(
-  DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
+  DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
   Configuration config
 ) {
-  flowOutOfCallNodeCand1(call, ret, pos, out, pragma[only_bind_into](config)) and
+  flowOutOfCallNodeCand1(call, ret, kind, out, pragma[only_bind_into](config)) and
   exists(int b, int j |
     b = branch(ret, pragma[only_bind_into](config)) and
     j = join(out, pragma[only_bind_into](config)) and
@@ -1152,10 +1174,10 @@ pragma[nomagic]
 private predicate flowIntoCallNodeCand1(
   DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
 ) {
-  flowIntoCallNodeCand1(call, arg, p, config) and
+  flowIntoCallNodeCand1(call, arg, p, pragma[only_bind_into](config)) and
   exists(int b, int j |
-    b = branch(arg, config) and
-    j = join(p, config) and
+    b = branch(arg, pragma[only_bind_into](config)) and
+    j = join(p, pragma[only_bind_into](config)) and
     if b.minimum(j) <= config.fieldFlowBranchLimit()
     then allowsFieldFlow = true
     else allowsFieldFlow = false
@@ -1174,7 +1196,7 @@ private signature module StageSig {
 
   predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config);
 
-  predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config);
+  predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config);
 
   predicate storeStepCand(
     NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, DataFlowType contentType,
@@ -1240,7 +1262,7 @@ private module MkStage<StageSig PrevStage> {
     );
 
     predicate flowOutOfCall(
-      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
+      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
       Configuration config
     );
 
@@ -1266,16 +1288,14 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate flowThroughOutOfCall(
-      DataFlowCall call, CcCall ccc, RetNodeEx ret, ReturnKindExt kind, NodeEx out,
-      boolean allowsFieldFlow, Configuration config
+      DataFlowCall call, DataFlowCallable c, CcCall ccc, RetNodeEx ret, ReturnKindExt kind,
+      NodeEx out, boolean allowsFieldFlow, Configuration config
     ) {
-      exists(ReturnPosition pos |
-        flowOutOfCall(call, ret, pos, out, allowsFieldFlow, pragma[only_bind_into](config)) and
-        kind = pos.getKind() and
-        PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
-        PrevStage::returnMayFlowThrough(ret, pos, pragma[only_bind_into](config)) and
-        matchesCall(ccc, call)
-      )
+      flowOutOfCall(call, ret, kind, out, allowsFieldFlow, pragma[only_bind_into](config)) and
+      PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
+      PrevStage::returnMayFlowThrough(ret, kind, pragma[only_bind_into](config)) and
+      matchesCall(ccc, call) and
+      c = ret.getEnclosingCallable()
     }
 
     /**
@@ -1284,12 +1304,12 @@ private module MkStage<StageSig PrevStage> {
      *
      * The call context `cc` records whether the node is reached through an
      * argument in a call, and if so, `summaryCtx` and `argAp` record the
-     * corresponding parameter and access path of that argument, respectively.
+     * corresponding parameter position and access path of that argument, respectively.
      */
     pragma[nomagic]
     additional predicate fwdFlow(
-      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
-      Configuration config
+      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      Ap ap, Configuration config
     ) {
       fwdFlow0(node, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::revFlow(node, state, unbindApa(getApprox(ap)), config) and
@@ -1298,13 +1318,13 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlow0(
-      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
-      Configuration config
+      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      Ap ap, Configuration config
     ) {
       sourceNode(node, state, config) and
       (if hasSourceCallCtx(config) then cc = ccSomeCall() else cc = ccNone()) and
       argAp = apNone() and
-      summaryCtx = TParamNodeNone() and
+      summaryCtx = TParameterPositionNone() and
       ap = getApNil(node)
       or
       exists(NodeEx mid, FlowState state0, Ap ap0, LocalCc localCc |
@@ -1322,7 +1342,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, pragma[only_bind_into](config)) and
         jumpStep(mid, node, config) and
         cc = ccNone() and
-        summaryCtx = TParamNodeNone() and
+        summaryCtx = TParameterPositionNone() and
         argAp = apNone()
       )
       or
@@ -1330,7 +1350,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, state, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStep(mid, node, config) and
         cc = ccNone() and
-        summaryCtx = TParamNodeNone() and
+        summaryCtx = TParameterPositionNone() and
         argAp = apNone() and
         ap = getApNil(node)
       )
@@ -1339,7 +1359,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, state0, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStateStep(mid, state0, node, state, config) and
         cc = ccNone() and
-        summaryCtx = TParamNodeNone() and
+        summaryCtx = TParameterPositionNone() and
         argAp = apNone() and
         ap = getApNil(node)
       )
@@ -1362,17 +1382,27 @@ private module MkStage<StageSig PrevStage> {
         apa = getApprox(ap) and
         if PrevStage::parameterMayFlowThrough(node, apa, config)
         then (
-          summaryCtx = TParamNodeSome(node.asNode()) and argAp = apSome(ap)
+          summaryCtx = TParameterPositionSome(node.(ParamNodeEx).getPosition()) and
+          argAp = apSome(ap)
         ) else (
-          summaryCtx = TParamNodeNone() and argAp = apNone()
+          summaryCtx = TParameterPositionNone() and argAp = apNone()
         )
       )
       or
       // flow out of a callable
-      fwdFlowOutNotFromArg(node, state, cc, summaryCtx, argAp, ap, config)
+      exists(
+        DataFlowCall call, RetNodeEx ret, boolean allowsFieldFlow, CcNoCall innercc,
+        DataFlowCallable inner
+      |
+        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, config) and
+        flowOutOfCall(call, ret, _, node, allowsFieldFlow, config) and
+        inner = ret.getEnclosingCallable() and
+        cc = getCallContextReturn(inner, call, innercc) and
+        if allowsFieldFlow = false then ap instanceof ApNil else any()
+      )
       or
       // flow through a callable
-      exists(DataFlowCall call, ParamNode summaryCtx0, Ap argAp0 |
+      exists(DataFlowCall call, ParameterPosition summaryCtx0, Ap argAp0 |
         fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, config) and
         fwdFlowIsEntered(call, cc, summaryCtx, argAp, summaryCtx0, argAp0, config)
       )
@@ -1381,7 +1411,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowStore(
       NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc,
-      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
+      ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
     ) {
       exists(DataFlowType contentType |
         fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, config) and
@@ -1406,7 +1436,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowRead(
       Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc,
-      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
+      ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
     ) {
       fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, c, node2, config) and
@@ -1416,7 +1446,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowIn(
       DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, Cc innercc,
-      ParamNodeOption summaryCtx, ApOption argAp, Ap ap, Configuration config
+      ParameterPositionOption summaryCtx, ApOption argAp, Ap ap, Configuration config
     ) {
       exists(ArgNodeEx arg, boolean allowsFieldFlow |
         fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, config) and
@@ -1427,32 +1457,19 @@ private module MkStage<StageSig PrevStage> {
     }
 
     pragma[nomagic]
-    private predicate fwdFlowOutNotFromArg(
-      NodeEx out, FlowState state, Cc ccOut, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+    private predicate fwdFlowOutFromArg(
+      DataFlowCall call, NodeEx out, FlowState state, ParameterPosition summaryCtx, Ap argAp, Ap ap,
       Configuration config
     ) {
       exists(
-        DataFlowCall call, RetNodeEx ret, boolean allowsFieldFlow, CcNoCall innercc,
-        DataFlowCallable inner
+        DataFlowCallable c, RetNodeEx ret, ReturnKindExt kind, boolean allowsFieldFlow, CcCall ccc
       |
-        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, config) and
-        flowOutOfCall(call, ret, _, out, allowsFieldFlow, config) and
-        inner = ret.getEnclosingCallable() and
-        ccOut = getCallContextReturn(inner, call, innercc) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
-      )
-    }
-
-    pragma[nomagic]
-    private predicate fwdFlowOutFromArg(
-      DataFlowCall call, NodeEx out, FlowState state, ParamNode summaryCtx, Ap argAp, Ap ap,
-      Configuration config
-    ) {
-      exists(RetNodeEx ret, ReturnKindExt kind, boolean allowsFieldFlow, CcCall ccc |
-        fwdFlow(ret, state, ccc, TParamNodeSome(summaryCtx), apSome(argAp), ap, config) and
-        flowThroughOutOfCall(call, ccc, ret, kind, out, allowsFieldFlow, config) and
+        fwdFlow(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc),
+          TParameterPositionSome(pragma[only_bind_into](summaryCtx)), apSome(argAp), ap, config) and
+        flowThroughOutOfCall(call, pragma[only_bind_into](c), ccc, ret, kind, out, allowsFieldFlow,
+          config) and
         (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
-        parameterFlowThroughAllowed(summaryCtx, kind)
+        parameterFlowThroughAllowed(c, pragma[only_bind_into](summaryCtx), kind)
       )
     }
 
@@ -1462,13 +1479,13 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate fwdFlowIsEntered(
-      DataFlowCall call, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, ParamNode p, Ap ap,
-      Configuration config
+      DataFlowCall call, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      ParameterPosition pos, Ap ap, Configuration config
     ) {
       exists(ParamNodeEx param |
         fwdFlowIn(call, param, _, cc, _, summaryCtx, argAp, ap, config) and
         PrevStage::parameterMayFlowThrough(param, unbindApa(getApprox(ap)), config) and
-        p = param.asNode()
+        pos = param.getPosition()
       )
     }
 
@@ -1489,23 +1506,41 @@ private module MkStage<StageSig PrevStage> {
     }
 
     pragma[nomagic]
-    private predicate returnFlowsThrough(
-      RetNodeEx ret, ReturnPosition pos, FlowState state, CcCall ccc, ParamNode p, Ap argAp, Ap ap,
-      Configuration config
+    private predicate returnFlowsThrough0(
+      RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, DataFlowCallable c,
+      ParameterPosition ppos, Ap argAp, Ap ap, Configuration config
     ) {
-      fwdFlow(ret, state, ccc, TParamNodeSome(p), apSome(argAp), ap, config) and
-      pos = ret.getReturnPosition() and
-      parameterFlowThroughAllowed(p, pos.getKind())
+      exists(boolean allowsFieldFlow |
+        fwdFlow(ret, state, ccc, TParameterPositionSome(ppos), apSome(argAp), ap, config) and
+        flowThroughOutOfCall(_, c, _, pragma[only_bind_into](ret), kind, _, allowsFieldFlow,
+          pragma[only_bind_into](config)) and
+        if allowsFieldFlow = false then ap instanceof ApNil else any()
+      )
+    }
+
+    pragma[nomagic]
+    private predicate returnFlowsThrough(
+      RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, ParamNodeEx p, Ap argAp,
+      Ap ap, Configuration config
+    ) {
+      exists(DataFlowCallable c, ParameterPosition ppos |
+        returnFlowsThrough0(ret, kind, state, ccc, c, ppos, argAp, ap, config) and
+        p.isParameterOf(c, ppos) and
+        parameterFlowThroughAllowed(p, kind)
+      )
     }
 
     pragma[nomagic]
     private predicate flowThroughIntoCall(
       DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
     ) {
-      flowIntoCall(call, pragma[only_bind_into](arg), pragma[only_bind_into](p), allowsFieldFlow,
-        pragma[only_bind_into](config)) and
-      fwdFlow(arg, _, _, _, _, _, pragma[only_bind_into](config)) and
-      returnFlowsThrough(_, _, _, _, p.asNode(), _, _, pragma[only_bind_into](config))
+      exists(Ap argAp |
+        flowIntoCall(call, pragma[only_bind_into](arg), pragma[only_bind_into](p), allowsFieldFlow,
+          pragma[only_bind_into](config)) and
+        fwdFlow(arg, _, _, _, _, pragma[only_bind_into](argAp), pragma[only_bind_into](config)) and
+        returnFlowsThrough(_, _, _, _, p, pragma[only_bind_into](argAp), _,
+          pragma[only_bind_into](config))
+      )
     }
 
     /**
@@ -1591,21 +1626,25 @@ private module MkStage<StageSig PrevStage> {
       )
       or
       // flow into a callable
-      revFlowInNotToReturn(node, state, returnAp, ap, config) and
-      returnCtx = TReturnCtxNone()
+      exists(ParamNodeEx p, boolean allowsFieldFlow |
+        revFlow(p, state, TReturnCtxNone(), returnAp, ap, config) and
+        flowIntoCall(_, node, p, allowsFieldFlow, config) and
+        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
+        returnCtx = TReturnCtxNone()
+      )
       or
       // flow through a callable
-      exists(DataFlowCall call, ReturnPosition returnPos0, Ap returnAp0 |
-        revFlowInToReturn(call, node, state, returnPos0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnPos0, returnAp0, config)
+      exists(DataFlowCall call, ReturnKindExt returnKind0, Ap returnAp0 |
+        revFlowInToReturn(call, node, state, returnKind0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
       )
       or
       // flow out of a callable
-      exists(ReturnPosition pos |
-        revFlowOut(_, node, pos, state, _, _, ap, config) and
-        if returnFlowsThrough(node, pos, state, _, _, _, ap, config)
+      exists(ReturnKindExt kind |
+        revFlowOut(_, node, kind, state, _, _, ap, config) and
+        if returnFlowsThrough(node, kind, state, _, _, _, ap, config)
         then (
-          returnCtx = TReturnCtxMaybeFlowThrough(pos) and
+          returnCtx = TReturnCtxMaybeFlowThrough(kind) and
           returnAp = apSome(ap)
         ) else (
           returnCtx = TReturnCtxNoFlowThrough() and returnAp = apNone()
@@ -1638,37 +1677,27 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate revFlowOut(
-      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, FlowState state, ReturnCtx returnCtx,
+      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, FlowState state, ReturnCtx returnCtx,
       ApOption returnAp, Ap ap, Configuration config
     ) {
       exists(NodeEx out, boolean allowsFieldFlow |
         revFlow(out, state, returnCtx, returnAp, ap, config) and
-        flowOutOfCall(call, ret, pos, out, allowsFieldFlow, config) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
-      )
-    }
-
-    pragma[nomagic]
-    private predicate revFlowInNotToReturn(
-      ArgNodeEx arg, FlowState state, ApOption returnAp, Ap ap, Configuration config
-    ) {
-      exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(p, state, TReturnCtxNone(), returnAp, ap, config) and
-        flowIntoCall(_, arg, p, allowsFieldFlow, config) and
+        flowOutOfCall(call, ret, kind, out, allowsFieldFlow, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
     pragma[nomagic]
     private predicate revFlowInToReturn(
-      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnPosition returnPos, Ap returnAp,
-      Ap ap, Configuration config
+      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap,
+      Configuration config
     ) {
       exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(p, state, TReturnCtxMaybeFlowThrough(returnPos), apSome(returnAp), ap, config) and
+        revFlow(pragma[only_bind_into](p), state,
+          TReturnCtxMaybeFlowThrough(pragma[only_bind_into](kind)), apSome(returnAp), ap, config) and
         flowThroughIntoCall(call, arg, p, allowsFieldFlow, config) and
         (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
-        parameterFlowThroughAllowed(p.asNode(), returnPos.getKind())
+        parameterFlowThroughAllowed(p, kind)
       )
     }
 
@@ -1679,12 +1708,12 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate revFlowIsReturned(
-      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnPosition pos, Ap ap,
+      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnKindExt kind, Ap ap,
       Configuration config
     ) {
       exists(RetNodeEx ret, FlowState state, CcCall ccc |
-        revFlowOut(call, ret, pos, state, returnCtx, returnAp, ap, config) and
-        returnFlowsThrough(ret, pos, state, ccc, _, _, ap, config) and
+        revFlowOut(call, ret, kind, state, returnCtx, returnAp, ap, config) and
+        returnFlowsThrough(ret, kind, state, ccc, _, _, ap, config) and
         matchesCall(ccc, call)
       )
     }
@@ -1757,37 +1786,37 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate parameterFlowsThroughRev(
-      ParamNodeEx p, Ap ap, ReturnPosition returnPos, Configuration config
+      ParamNodeEx p, Ap ap, ReturnKindExt kind, Configuration config
     ) {
-      revFlow(p, _, TReturnCtxMaybeFlowThrough(returnPos), apSome(_), ap, config) and
-      parameterFlowThroughAllowed(p.asNode(), returnPos.getKind())
+      revFlow(p, _, TReturnCtxMaybeFlowThrough(kind), apSome(_), ap, config) and
+      parameterFlowThroughAllowed(p, kind)
     }
 
     pragma[nomagic]
     predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
-      exists(RetNodeEx ret, ReturnPosition pos |
-        returnFlowsThrough(ret, pos, _, _, p.asNode(), ap, _, config) and
-        parameterFlowsThroughRev(p, ap, pos, config)
+      exists(RetNodeEx ret, ReturnKindExt kind |
+        returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
+        parameterFlowsThroughRev(p, ap, kind, config)
       )
     }
 
     pragma[nomagic]
-    predicate returnMayFlowThrough(RetNodeEx ret, ReturnPosition pos, Configuration config) {
+    predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config) {
       exists(ParamNodeEx p, Ap ap |
-        returnFlowsThrough(ret, pos, _, _, p.asNode(), ap, _, config) and
-        parameterFlowsThroughRev(p, ap, pos, config)
+        returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
+        parameterFlowsThroughRev(p, ap, kind, config)
       )
     }
 
     pragma[nomagic]
     predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
       exists(
-        ReturnPosition returnPos0, Ap returnAp0, ArgNodeEx arg, FlowState state,
+        ReturnKindExt returnKind0, Ap returnAp0, ArgNodeEx arg, FlowState state,
         ReturnCtx returnCtx, ApOption returnAp, Ap ap
       |
         revFlow(arg, state, returnCtx, returnAp, ap, config) and
-        revFlowInToReturn(call, arg, state, returnPos0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnPos0, returnAp0, config)
+        revFlowInToReturn(call, arg, state, returnKind0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
       )
     }
 
@@ -1800,9 +1829,8 @@ private module MkStage<StageSig PrevStage> {
       conscand = count(TypedContent f0, Ap ap | fwdConsCand(f0, ap, config)) and
       states = count(FlowState state | fwdFlow(_, state, _, _, _, _, config)) and
       tuples =
-        count(NodeEx n, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap |
-          fwdFlow(n, state, cc, summaryCtx, argAp, ap, config)
-        )
+        count(NodeEx n, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+          Ap ap | fwdFlow(n, state, cc, summaryCtx, argAp, ap, config))
       or
       fwd = false and
       nodes = count(NodeEx node | revFlow(node, _, _, _, _, config)) and
@@ -1992,10 +2020,10 @@ private module Stage2 implements StageSig {
 
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand2(
-  DataFlowCall call, RetNodeEx node1, ReturnPosition pos, NodeEx node2, boolean allowsFieldFlow,
+  DataFlowCall call, RetNodeEx node1, ReturnKindExt kind, NodeEx node2, boolean allowsFieldFlow,
   Configuration config
 ) {
-  flowOutOfCallNodeCand1(call, node1, pos, node2, allowsFieldFlow, config) and
+  flowOutOfCallNodeCand1(call, node1, kind, node2, allowsFieldFlow, config) and
   Stage2::revFlow(node2, pragma[only_bind_into](config)) and
   Stage2::revFlowAlias(node1, pragma[only_bind_into](config))
 }
@@ -2511,11 +2539,11 @@ private module Stage4Param implements MkStage<Stage3>::StageParam {
 
   pragma[nomagic]
   predicate flowOutOfCall(
-    DataFlowCall call, RetNodeEx node1, ReturnPosition pos, NodeEx node2, boolean allowsFieldFlow,
+    DataFlowCall call, RetNodeEx node1, ReturnKindExt kind, NodeEx node2, boolean allowsFieldFlow,
     Configuration config
   ) {
     exists(FlowState state |
-      flowOutOfCallNodeCand2(call, node1, pos, node2, allowsFieldFlow, config) and
+      flowOutOfCallNodeCand2(call, node1, kind, node2, allowsFieldFlow, config) and
       PrevStage::revFlow(node2, pragma[only_bind_into](state), _, pragma[only_bind_into](config)) and
       PrevStage::revFlowAlias(node1, pragma[only_bind_into](state), _,
         pragma[only_bind_into](config))
@@ -2552,12 +2580,13 @@ private Configuration unbindConf(Configuration conf) {
 
 pragma[nomagic]
 private predicate nodeMayUseSummary0(
-  NodeEx n, ParamNodeEx p, FlowState state, AccessPathApprox apa, Configuration config
+  NodeEx n, DataFlowCallable c, ParameterPosition pos, FlowState state, AccessPathApprox apa,
+  Configuration config
 ) {
   exists(AccessPathApprox apa0 |
-    Stage4::parameterMayFlowThrough(p, _, _) and
+    c = n.getEnclosingCallable() and
     Stage4::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
-    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TParamNodeSome(p.asNode()),
+    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TParameterPositionSome(pos),
       TAccessPathApproxSome(apa), apa0, config)
   )
 }
@@ -2566,9 +2595,10 @@ pragma[nomagic]
 private predicate nodeMayUseSummary(
   NodeEx n, FlowState state, AccessPathApprox apa, Configuration config
 ) {
-  exists(ParamNodeEx p |
+  exists(DataFlowCallable c, ParameterPosition pos, ParamNodeEx p |
     Stage4::parameterMayFlowThrough(p, apa, config) and
-    nodeMayUseSummary0(n, p, state, apa, config)
+    nodeMayUseSummary0(n, c, pos, state, apa, config) and
+    p.isParameterOf(c, pos)
   )
 }
 
@@ -3501,7 +3531,7 @@ private predicate paramFlowsThrough(
     pathNode(mid, ret, state, cc, sc, ap, config, _) and
     kind = ret.getKind() and
     apa = ap.getApprox() and
-    parameterFlowThroughAllowed(sc.getParamNode().asNode(), kind)
+    parameterFlowThroughAllowed(sc.getParamNode(), kind)
   )
 }
 
diff --git a/swift/ql/lib/codeql/swift/dataflow/internal/DataFlowImplCommon.qll b/swift/ql/lib/codeql/swift/dataflow/internal/DataFlowImplCommon.qll
index 621ed34f9d0..f981834a6d4 100644
--- a/swift/ql/lib/codeql/swift/dataflow/internal/DataFlowImplCommon.qll
+++ b/swift/ql/lib/codeql/swift/dataflow/internal/DataFlowImplCommon.qll
@@ -916,15 +916,15 @@ private module Cached {
     TDataFlowCallSome(DataFlowCall call)
 
   cached
-  newtype TParamNodeOption =
-    TParamNodeNone() or
-    TParamNodeSome(ParamNode p)
+  newtype TParameterPositionOption =
+    TParameterPositionNone() or
+    TParameterPositionSome(ParameterPosition pos)
 
   cached
   newtype TReturnCtx =
     TReturnCtxNone() or
     TReturnCtxNoFlowThrough() or
-    TReturnCtxMaybeFlowThrough(ReturnPosition pos)
+    TReturnCtxMaybeFlowThrough(ReturnKindExt kind)
 
   cached
   newtype TTypedContent = MkTypedContent(Content c, DataFlowType t) { store(_, c, _, _, t) }
@@ -1315,15 +1315,15 @@ class DataFlowCallOption extends TDataFlowCallOption {
   }
 }
 
-/** An optional `ParamNode`. */
-class ParamNodeOption extends TParamNodeOption {
+/** An optional `ParameterPosition`. */
+class ParameterPositionOption extends TParameterPositionOption {
   string toString() {
-    this = TParamNodeNone() and
+    this = TParameterPositionNone() and
     result = "(none)"
     or
-    exists(ParamNode p |
-      this = TParamNodeSome(p) and
-      result = p.toString()
+    exists(ParameterPosition pos |
+      this = TParameterPositionSome(pos) and
+      result = pos.toString()
     )
   }
 }
@@ -1335,7 +1335,7 @@ class ParamNodeOption extends TParamNodeOption {
  *
  * - `TReturnCtxNone()`: no return flow.
  * - `TReturnCtxNoFlowThrough()`: return flow, but flow through is not possible.
- * - `TReturnCtxMaybeFlowThrough(ReturnPosition pos)`: return flow, of kind `pos`, and
+ * - `TReturnCtxMaybeFlowThrough(ReturnKindExt kind)`: return flow, of kind `kind`, and
  *    flow through may be possible.
  */
 class ReturnCtx extends TReturnCtx {
@@ -1346,9 +1346,9 @@ class ReturnCtx extends TReturnCtx {
     this = TReturnCtxNoFlowThrough() and
     result = "(no flow through)"
     or
-    exists(ReturnPosition pos |
-      this = TReturnCtxMaybeFlowThrough(pos) and
-      result = pos.toString()
+    exists(ReturnKindExt kind |
+      this = TReturnCtxMaybeFlowThrough(kind) and
+      result = kind.toString()
     )
   }
 }

From 7a3898168f54e9c4c161c9d83ea81a000ac6bd64 Mon Sep 17 00:00:00 2001
From: Erik Krogh Kristensen <erik-krogh@github.com>
Date: Mon, 28 Nov 2022 12:12:36 +0100
Subject: [PATCH 0656/1420] Update README.md

---
 javascript/extractor/README.md | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/javascript/extractor/README.md b/javascript/extractor/README.md
index e9495dd21ec..cf26d9db784 100644
--- a/javascript/extractor/README.md
+++ b/javascript/extractor/README.md
@@ -2,8 +2,8 @@
 
 This directory contains the source code of the JavaScript extractor. The extractor depends on various libraries that are not currently bundled with the source code, so at present it cannot be built in isolation.
 
-The extractor consists of a parser for the latest version of ECMAScript, including a few proposed and historic extensions (see `src/com/semmle/jcorn`), classes for representing JavaScript and TypeScript ASTs (`src/com/semmle/js/ast` and `src/com/semmle/ts/ast`), and various other bits of functionality. Historically, the main entry point of the JavaScript extractor has been `com.semmle.js.extractor.Main`. However, this class is slowly being phased out in favour of `com.semmle.js.extractor.AutoBuild`, which is the entry point used by LGTM.
+The extractor consists of a parser for the latest version of ECMAScript, including a few proposed and historic extensions (see `src/com/semmle/jcorn`), classes for representing JavaScript and TypeScript ASTs (`src/com/semmle/js/ast` and `src/com/semmle/ts/ast`), and various other bits of functionality. Historically, the main entry point of the JavaScript extractor has been `com.semmle.js.extractor.Main`. However, this class is slowly being phased out in favour of `com.semmle.js.extractor.AutoBuild`, which is the entry point used by CodeQL.
 
 ## License
 
-Like the LGTM queries, the JavaScript extractor is licensed under [Apache License 2.0](LICENSE) by [GitHub](https://github.com). Some code is derived from other projects, whose licenses are noted in other `LICENSE-*.md` files in this folder.
+Like the CodeQL queries, the JavaScript extractor is licensed under [Apache License 2.0](LICENSE) by [GitHub](https://github.com). Some code is derived from other projects, whose licenses are noted in other `LICENSE-*.md` files in this folder.

From 663112576a517aa8bf73d5a3cee7299086baaa6d Mon Sep 17 00:00:00 2001
From: Michael Nebel <michaelnebel@github.com>
Date: Mon, 14 Nov 2022 09:57:30 +0100
Subject: [PATCH 0657/1420] Java: Update commons-io models.

---
 .../ql/lib/semmle/code/java/frameworks/apache/IOGenerated.qll | 4 ++++
 .../code/java/frameworks/apache/NegativeIOGenerated.qll       | 4 ----
 2 files changed, 4 insertions(+), 4 deletions(-)

diff --git a/java/ql/lib/semmle/code/java/frameworks/apache/IOGenerated.qll b/java/ql/lib/semmle/code/java/frameworks/apache/IOGenerated.qll
index 931764d56d8..db1ed1bea58 100644
--- a/java/ql/lib/semmle/code/java/frameworks/apache/IOGenerated.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/apache/IOGenerated.qll
@@ -540,6 +540,7 @@ private class IOGeneratedSummaryCsv extends SummaryModelCsv {
         "org.apache.commons.io;DirectoryWalker$CancelException;true;getFile;();;Argument[-1];ReturnValue;taint;generated",
         "org.apache.commons.io;FileCleaningTracker;true;getDeleteFailures;();;Argument[-1];ReturnValue;taint;generated",
         "org.apache.commons.io;FileDeleteStrategy;true;toString;();;Argument[-1];ReturnValue;taint;generated",
+        "org.apache.commons.io;FileSystem;false;normalizeSeparators;(String);;Argument[0];ReturnValue;taint;generated",
         "org.apache.commons.io;FileSystem;false;toLegalFileName;(String,char);;Argument[0];ReturnValue;taint;generated",
         "org.apache.commons.io;FileUtils;true;checksum;(File,Checksum);;Argument[1];ReturnValue;taint;generated",
         "org.apache.commons.io;FileUtils;true;convertFileCollectionToFileArray;(Collection);;Argument[0].Element;ReturnValue;taint;generated",
@@ -563,6 +564,9 @@ private class IOGeneratedSummaryCsv extends SummaryModelCsv {
         "org.apache.commons.io;FilenameUtils;true;normalizeNoEndSeparator;(String);;Argument[0];ReturnValue;taint;generated",
         "org.apache.commons.io;FilenameUtils;true;normalizeNoEndSeparator;(String,boolean);;Argument[0];ReturnValue;taint;generated",
         "org.apache.commons.io;FilenameUtils;true;removeExtension;(String);;Argument[0];ReturnValue;taint;generated",
+        "org.apache.commons.io;FilenameUtils;true;separatorsToSystem;(String);;Argument[0];ReturnValue;taint;generated",
+        "org.apache.commons.io;FilenameUtils;true;separatorsToUnix;(String);;Argument[0];ReturnValue;taint;generated",
+        "org.apache.commons.io;FilenameUtils;true;separatorsToWindows;(String);;Argument[0];ReturnValue;taint;generated",
         "org.apache.commons.io;IOExceptionList;true;IOExceptionList;(List);;Argument[0].Element;Argument[-1];taint;generated",
         "org.apache.commons.io;IOExceptionList;true;IOExceptionList;(String,List);;Argument[1].Element;Argument[-1];taint;generated",
         "org.apache.commons.io;IOExceptionList;true;getCause;(int);;Argument[-1];ReturnValue;taint;generated",
diff --git a/java/ql/lib/semmle/code/java/frameworks/apache/NegativeIOGenerated.qll b/java/ql/lib/semmle/code/java/frameworks/apache/NegativeIOGenerated.qll
index 4a9a6394aaf..8c2e0684942 100644
--- a/java/ql/lib/semmle/code/java/frameworks/apache/NegativeIOGenerated.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/apache/NegativeIOGenerated.qll
@@ -506,7 +506,6 @@ private class IOGeneratedNegativesummaryCsv extends NegativeSummaryModelCsv {
         "org.apache.commons.io;FileSystem;isCaseSensitive;();generated",
         "org.apache.commons.io;FileSystem;isLegalFileName;(CharSequence);generated",
         "org.apache.commons.io;FileSystem;isReservedFileName;(CharSequence);generated",
-        "org.apache.commons.io;FileSystem;normalizeSeparators;(String);generated",
         "org.apache.commons.io;FileSystem;supportsDriveLetter;();generated",
         "org.apache.commons.io;FileSystemUtils;FileSystemUtils;();generated",
         "org.apache.commons.io;FileSystemUtils;freeSpace;(String);generated",
@@ -652,9 +651,6 @@ private class IOGeneratedNegativesummaryCsv extends NegativeSummaryModelCsv {
         "org.apache.commons.io;FilenameUtils;isExtension;(String,Collection);generated",
         "org.apache.commons.io;FilenameUtils;isExtension;(String,String);generated",
         "org.apache.commons.io;FilenameUtils;isExtension;(String,String[]);generated",
-        "org.apache.commons.io;FilenameUtils;separatorsToSystem;(String);generated",
-        "org.apache.commons.io;FilenameUtils;separatorsToUnix;(String);generated",
-        "org.apache.commons.io;FilenameUtils;separatorsToWindows;(String);generated",
         "org.apache.commons.io;FilenameUtils;wildcardMatch;(String,String);generated",
         "org.apache.commons.io;FilenameUtils;wildcardMatch;(String,String,IOCase);generated",
         "org.apache.commons.io;FilenameUtils;wildcardMatchOnSystem;(String,String);generated",

From a8ee8783561588681862bb40f3a6ea4e3e513941 Mon Sep 17 00:00:00 2001
From: Michael Nebel <michaelnebel@github.com>
Date: Mon, 14 Nov 2022 10:52:55 +0100
Subject: [PATCH 0658/1420] Java: Add bi-directional import of
 FragmentInjection.

---
 java/ql/lib/semmle/code/java/dataflow/ExternalFlow.qll | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

diff --git a/java/ql/lib/semmle/code/java/dataflow/ExternalFlow.qll b/java/ql/lib/semmle/code/java/dataflow/ExternalFlow.qll
index 8460c662d5c..a6f9e2b17c7 100644
--- a/java/ql/lib/semmle/code/java/dataflow/ExternalFlow.qll
+++ b/java/ql/lib/semmle/code/java/dataflow/ExternalFlow.qll
@@ -135,6 +135,7 @@ private module Frameworks {
   private import semmle.code.java.security.ResponseSplitting
   private import semmle.code.java.security.InformationLeak
   private import semmle.code.java.security.Files
+  private import semmle.code.java.security.FragmentInjection
   private import semmle.code.java.security.GroovyInjection
   private import semmle.code.java.security.ImplicitPendingIntents
   private import semmle.code.java.security.JexlInjectionSinkModels
@@ -613,7 +614,8 @@ module CsvValidation {
           "open-url", "jndi-injection", "ldap", "sql", "jdbc-url", "logging", "mvel", "xpath",
           "groovy", "xss", "ognl-injection", "intent-start", "pending-intent-sent",
           "url-open-stream", "url-redirect", "create-file", "write-file", "set-hostname-verifier",
-          "header-splitting", "information-leak", "xslt", "jexl", "bean-validation", "ssti"
+          "header-splitting", "information-leak", "xslt", "jexl", "bean-validation", "ssti",
+          "fragment-injection"
         ] and
       not kind.matches("regex-use%") and
       not kind.matches("qltest%") and

From 9f7103c4fb583279a1538c7ca486e81d2e3f2c61 Mon Sep 17 00:00:00 2001
From: Michael Nebel <michaelnebel@github.com>
Date: Mon, 14 Nov 2022 11:08:09 +0100
Subject: [PATCH 0659/1420] Java: Add queries for extracting sources, sinks and
 summaries.

---
 .../ql/src/utils/modelconverter/ExtractSinks.ql | 17 +++++++++++++++++
 .../src/utils/modelconverter/ExtractSources.ql  | 17 +++++++++++++++++
 .../utils/modelconverter/ExtractSummaries.ql    | 17 +++++++++++++++++
 3 files changed, 51 insertions(+)
 create mode 100644 java/ql/src/utils/modelconverter/ExtractSinks.ql
 create mode 100644 java/ql/src/utils/modelconverter/ExtractSources.ql
 create mode 100644 java/ql/src/utils/modelconverter/ExtractSummaries.ql

diff --git a/java/ql/src/utils/modelconverter/ExtractSinks.ql b/java/ql/src/utils/modelconverter/ExtractSinks.ql
new file mode 100644
index 00000000000..cbfd4f7cebb
--- /dev/null
+++ b/java/ql/src/utils/modelconverter/ExtractSinks.ql
@@ -0,0 +1,17 @@
+/**
+ * @name Extract MaD sink model rows.
+ * @description This extracts the Models as data sink model rows.
+ * @id java/utils/modelconverter/generate-data-extensions-sink
+ */
+
+import java
+import semmle.code.java.dataflow.ExternalFlow
+
+from
+  string package, string type, boolean subtypes, string name, string signature, string ext,
+  string input, string kind, string provenance
+where
+  sinkModel(package, type, subtypes, name, signature, ext, input, kind, provenance) and
+  provenance != "generated"
+select package, type, subtypes, name, signature, ext, input, kind, provenance order by
+    package, type, name, signature, input, kind
diff --git a/java/ql/src/utils/modelconverter/ExtractSources.ql b/java/ql/src/utils/modelconverter/ExtractSources.ql
new file mode 100644
index 00000000000..b74a97e3728
--- /dev/null
+++ b/java/ql/src/utils/modelconverter/ExtractSources.ql
@@ -0,0 +1,17 @@
+/**
+ * @name Extract MaD source model rows.
+ * @description This extracts the Models as data source model rows.
+ * @id java/utils/modelconverter/generate-data-extensions-source
+ */
+
+import java
+import semmle.code.java.dataflow.ExternalFlow
+
+from
+  string package, string type, boolean subtypes, string name, string signature, string ext,
+  string output, string kind, string provenance
+where
+  sourceModel(package, type, subtypes, name, signature, ext, output, kind, provenance) and
+  provenance != "generated"
+select package, type, subtypes, name, signature, ext, output, kind, provenance order by
+    package, type, name, signature, output, kind
diff --git a/java/ql/src/utils/modelconverter/ExtractSummaries.ql b/java/ql/src/utils/modelconverter/ExtractSummaries.ql
new file mode 100644
index 00000000000..65af62b3259
--- /dev/null
+++ b/java/ql/src/utils/modelconverter/ExtractSummaries.ql
@@ -0,0 +1,17 @@
+/**
+ * @name Extract MaD summary model rows.
+ * @description This extracts the Models as data summary model rows.
+ * @id java/utils/modelconverter/generate-data-extensions-summary
+ */
+
+import java
+import semmle.code.java.dataflow.ExternalFlow
+
+from
+  string package, string type, boolean subtypes, string name, string signature, string ext,
+  string input, string output, string kind, string provenance
+where
+  summaryModel(package, type, subtypes, name, signature, ext, input, output, kind, provenance) and
+  provenance != "generated"
+select package, type, subtypes, name, signature, ext, input, output, kind, provenance order by
+    package, type, name, signature, input, output, kind

From fc4b9827b9b7754139f51a9c8e2c2039f5a8a90a Mon Sep 17 00:00:00 2001
From: Michael Nebel <michaelnebel@github.com>
Date: Mon, 14 Nov 2022 11:38:40 +0100
Subject: [PATCH 0660/1420] Java: Add script for converting extensions.

---
 .../utils/modelconverter/ConvertExtensions.py | 41 +++++++++++++++++++
 1 file changed, 41 insertions(+)
 create mode 100644 java/ql/src/utils/modelconverter/ConvertExtensions.py

diff --git a/java/ql/src/utils/modelconverter/ConvertExtensions.py b/java/ql/src/utils/modelconverter/ConvertExtensions.py
new file mode 100644
index 00000000000..c2d2e7b2e09
--- /dev/null
+++ b/java/ql/src/utils/modelconverter/ConvertExtensions.py
@@ -0,0 +1,41 @@
+# Tool to generate data extensions files based on the existing models.
+# Usage:
+# python3 ConvertExtensions.py
+# (1) A folder named `java/ql/lib/ext` will be created, if it doesn't already exist.
+# (2) The converted models will be written to `java/ql/lib/ext`. One file for each namespace.
+
+import os
+import subprocess
+import sys
+import tempfile
+
+# Add Models as Data script directory to sys.path.
+gitroot = subprocess.check_output(["git", "rev-parse", "--show-toplevel"]).decode("utf-8").strip()
+madpath = os.path.join(gitroot, "misc/scripts/models-as-data/")
+sys.path.append(madpath)
+
+import helpers
+import convert_extensions as extensions
+
+print('Running script to generate data extensions files from the existing MaD models.')
+print('Making a dummy database.')
+
+# Configuration
+language = "java"
+workDir = tempfile.mkdtemp()
+projectDir = os.path.join(workDir, "project")
+emptyFile = os.path.join(workDir, "Empty.java") 
+dbDir = os.path.join(workDir, "db")
+
+# Make dummy project
+with open(emptyFile, "w") as f:
+    f.write("class Empty {}")
+helpers.run_cmd(['codeql', 'database', 'create', f'--language={language}', '-c', f'javac {emptyFile}', dbDir], "Failed to create dummy database.")
+
+print('Converting data extensions for Java.')
+extensions.Converter(language, dbDir).run()
+
+print('Cleanup.')
+# Cleanup - delete database.
+helpers.remove_dir(dbDir)
+print('Done.')
\ No newline at end of file

From 63e2206d16bed2e4951562fdd4af32a2d03e9332 Mon Sep 17 00:00:00 2001
From: Michael Nebel <michaelnebel@github.com>
Date: Mon, 14 Nov 2022 12:20:49 +0100
Subject: [PATCH 0661/1420] Java: Prepare QL pack for data extensions.

---
 java/ql/lib/qlpack.yml | 5 ++++-
 1 file changed, 4 insertions(+), 1 deletion(-)

diff --git a/java/ql/lib/qlpack.yml b/java/ql/lib/qlpack.yml
index dfab979e9bd..ed5323ebe4a 100644
--- a/java/ql/lib/qlpack.yml
+++ b/java/ql/lib/qlpack.yml
@@ -6,4 +6,7 @@ extractor: java
 library: true
 upgrades: upgrades
 dependencies:
-  codeql/regex: ${workspace}
\ No newline at end of file
+  codeql/regex: ${workspace}
+dataExtensions:
+  - ext/*.model.yml
+  - ext/generated/*.model.yml

From 7b6f202f23d3507f42d8375bb151958b6db43989 Mon Sep 17 00:00:00 2001
From: Michael Nebel <michaelnebel@github.com>
Date: Mon, 14 Nov 2022 12:51:27 +0100
Subject: [PATCH 0662/1420] Java: Renaming.

---
 .../code/java/dataflow/ExternalFlow.qll       | 81 ++++++++++---------
 .../external-models/negativesummaries.ql      |  2 +-
 .../dataflow/external-models/sinks.ql         |  2 +-
 .../dataflow/external-models/srcs.ql          |  2 +-
 .../dataflow/external-models/steps.ql         |  2 +-
 .../dataflow/synth-global/test.ql             |  2 +-
 6 files changed, 46 insertions(+), 45 deletions(-)

diff --git a/java/ql/lib/semmle/code/java/dataflow/ExternalFlow.qll b/java/ql/lib/semmle/code/java/dataflow/ExternalFlow.qll
index a6f9e2b17c7..4d1d93c062c 100644
--- a/java/ql/lib/semmle/code/java/dataflow/ExternalFlow.qll
+++ b/java/ql/lib/semmle/code/java/dataflow/ExternalFlow.qll
@@ -1,22 +1,23 @@
 /**
  * INTERNAL use only. This is an experimental API subject to change without notice.
  *
- * Provides classes and predicates for dealing with flow models specified in CSV format.
+ * Provides classes and predicates for dealing with flow models specified
+ * in data extensions and CSV format.
  *
  * The CSV specification has the following columns:
  * - Sources:
- *   `namespace; type; subtypes; name; signature; ext; output; kind; provenance`
+ *   `package; type; subtypes; name; signature; ext; output; kind; provenance`
  * - Sinks:
- *   `namespace; type; subtypes; name; signature; ext; input; kind; provenance`
+ *   `package; type; subtypes; name; signature; ext; input; kind; provenance`
  * - Summaries:
- *   `namespace; type; subtypes; name; signature; ext; input; output; kind; provenance`
+ *   `package; type; subtypes; name; signature; ext; input; output; kind; provenance`
  * - Negative Summaries:
- *   `namespace; type; name; signature; provenance`
+ *   `package; type; name; signature; provenance`
  *   A negative summary is used to indicate that there is no flow via a callable.
  *
  * The interpretation of a row is similar to API-graphs with a left-to-right
  * reading.
- * 1. The `namespace` column selects a package.
+ * 1. The `package` column selects a package.
  * 2. The `type` column selects a type within that package.
  * 3. The `subtypes` is a boolean that indicates whether to jump to an
  *    arbitrary subtype of that type.
@@ -433,12 +434,12 @@ predicate negativeSummaryModel(string row) { any(NegativeSummaryModelCsv s).row(
 
 /** Holds if a source model exists for the given parameters. */
 predicate sourceModel(
-  string namespace, string type, boolean subtypes, string name, string signature, string ext,
+  string package, string type, boolean subtypes, string name, string signature, string ext,
   string output, string kind, string provenance
 ) {
   exists(string row |
     sourceModel(row) and
-    row.splitAt(";", 0) = namespace and
+    row.splitAt(";", 0) = package and
     row.splitAt(";", 1) = type and
     row.splitAt(";", 2) = subtypes.toString() and
     subtypes = [true, false] and
@@ -453,12 +454,12 @@ predicate sourceModel(
 
 /** Holds if a sink model exists for the given parameters. */
 predicate sinkModel(
-  string namespace, string type, boolean subtypes, string name, string signature, string ext,
+  string package, string type, boolean subtypes, string name, string signature, string ext,
   string input, string kind, string provenance
 ) {
   exists(string row |
     sinkModel(row) and
-    row.splitAt(";", 0) = namespace and
+    row.splitAt(";", 0) = package and
     row.splitAt(";", 1) = type and
     row.splitAt(";", 2) = subtypes.toString() and
     subtypes = [true, false] and
@@ -473,19 +474,19 @@ predicate sinkModel(
 
 /** Holds if a summary model exists for the given parameters. */
 predicate summaryModel(
-  string namespace, string type, boolean subtypes, string name, string signature, string ext,
+  string package, string type, boolean subtypes, string name, string signature, string ext,
   string input, string output, string kind, string provenance
 ) {
-  summaryModel(namespace, type, subtypes, name, signature, ext, input, output, kind, provenance, _)
+  summaryModel(package, type, subtypes, name, signature, ext, input, output, kind, provenance, _)
 }
 
 /** Holds if a summary model `row` exists for the given parameters. */
 predicate summaryModel(
-  string namespace, string type, boolean subtypes, string name, string signature, string ext,
+  string package, string type, boolean subtypes, string name, string signature, string ext,
   string input, string output, string kind, string provenance, string row
 ) {
   summaryModel(row) and
-  row.splitAt(";", 0) = namespace and
+  row.splitAt(";", 0) = package and
   row.splitAt(";", 1) = type and
   row.splitAt(";", 2) = subtypes.toString() and
   subtypes = [true, false] and
@@ -500,11 +501,11 @@ predicate summaryModel(
 
 /** Holds if a summary model exists indicating there is no flow for the given parameters. */
 predicate negativeSummaryModel(
-  string namespace, string type, string name, string signature, string provenance
+  string package, string type, string name, string signature, string provenance
 ) {
   exists(string row |
     negativeSummaryModel(row) and
-    row.splitAt(";", 0) = namespace and
+    row.splitAt(";", 0) = package and
     row.splitAt(";", 1) = type and
     row.splitAt(";", 2) = name and
     row.splitAt(";", 3) = signature and
@@ -534,7 +535,7 @@ private predicate canonicalPkgLink(string package, string subpkg) {
 }
 
 /**
- * Holds if CSV framework coverage of `package` is `n` api endpoints of the
+ * Holds if MaD framework coverage of `package` is `n` api endpoints of the
  * kind `(kind, part)`.
  */
 predicate modelCoverage(string package, int pkgs, string kind, string part, int n) {
@@ -566,8 +567,8 @@ predicate modelCoverage(string package, int pkgs, string kind, string part, int
   )
 }
 
-/** Provides a query predicate to check the CSV data for validation errors. */
-module CsvValidation {
+/** Provides a query predicate to check the MaD models for validation errors. */
+module ModelValidation {
   private string getInvalidModelInput() {
     exists(string pred, string input, string part |
       sinkModel(_, _, _, _, _, _, input, _, _) and pred = "sink"
@@ -668,22 +669,22 @@ module CsvValidation {
 
   private string getInvalidModelSignature() {
     exists(
-      string pred, string namespace, string type, string name, string signature, string ext,
+      string pred, string package, string type, string name, string signature, string ext,
       string provenance
     |
-      sourceModel(namespace, type, _, name, signature, ext, _, _, provenance) and pred = "source"
+      sourceModel(package, type, _, name, signature, ext, _, _, provenance) and pred = "source"
       or
-      sinkModel(namespace, type, _, name, signature, ext, _, _, provenance) and pred = "sink"
+      sinkModel(package, type, _, name, signature, ext, _, _, provenance) and pred = "sink"
       or
-      summaryModel(namespace, type, _, name, signature, ext, _, _, _, provenance) and
+      summaryModel(package, type, _, name, signature, ext, _, _, _, provenance) and
       pred = "summary"
       or
-      negativeSummaryModel(namespace, type, name, signature, provenance) and
+      negativeSummaryModel(package, type, name, signature, provenance) and
       ext = "" and
       pred = "negative summary"
     |
-      not namespace.regexpMatch("[a-zA-Z0-9_\\.]+") and
-      result = "Dubious namespace \"" + namespace + "\" in " + pred + " model."
+      not package.regexpMatch("[a-zA-Z0-9_\\.]+") and
+      result = "Dubious package \"" + package + "\" in " + pred + " model."
       or
       not type.regexpMatch("[a-zA-Z0-9_\\$<>]+") and
       result = "Dubious type \"" + type + "\" in " + pred + " model."
@@ -702,7 +703,7 @@ module CsvValidation {
     )
   }
 
-  /** Holds if some row in a CSV-based flow model appears to contain typos. */
+  /** Holds if some row in a MaD flow model appears to contain typos. */
   query predicate invalidModelRow(string msg) {
     msg =
       [
@@ -714,15 +715,15 @@ module CsvValidation {
 
 pragma[nomagic]
 private predicate elementSpec(
-  string namespace, string type, boolean subtypes, string name, string signature, string ext
+  string package, string type, boolean subtypes, string name, string signature, string ext
 ) {
-  sourceModel(namespace, type, subtypes, name, signature, ext, _, _, _)
+  sourceModel(package, type, subtypes, name, signature, ext, _, _, _)
   or
-  sinkModel(namespace, type, subtypes, name, signature, ext, _, _, _)
+  sinkModel(package, type, subtypes, name, signature, ext, _, _, _)
   or
-  summaryModel(namespace, type, subtypes, name, signature, ext, _, _, _, _)
+  summaryModel(package, type, subtypes, name, signature, ext, _, _, _, _)
   or
-  negativeSummaryModel(namespace, type, name, signature, _) and ext = "" and subtypes = false
+  negativeSummaryModel(package, type, name, signature, _) and ext = "" and subtypes = false
 }
 
 private string paramsStringPart(Callable c, int i) {
@@ -747,10 +748,10 @@ cached
 string paramsString(Callable c) { result = concat(int i | | paramsStringPart(c, i) order by i) }
 
 private Element interpretElement0(
-  string namespace, string type, boolean subtypes, string name, string signature
+  string package, string type, boolean subtypes, string name, string signature
 ) {
-  elementSpec(namespace, type, subtypes, name, signature, _) and
-  exists(RefType t | t.hasQualifiedName(namespace, type) |
+  elementSpec(package, type, subtypes, name, signature, _) and
+  exists(RefType t | t.hasQualifiedName(package, type) |
     exists(Member m |
       (
         result = m
@@ -773,10 +774,10 @@ private Element interpretElement0(
 
 /** Gets the source/sink/summary/negativesummary element corresponding to the supplied parameters. */
 Element interpretElement(
-  string namespace, string type, boolean subtypes, string name, string signature, string ext
+  string package, string type, boolean subtypes, string name, string signature, string ext
 ) {
-  elementSpec(namespace, type, subtypes, name, signature, ext) and
-  exists(Element e | e = interpretElement0(namespace, type, subtypes, name, signature) |
+  elementSpec(package, type, subtypes, name, signature, ext) and
+  exists(Element e | e = interpretElement0(package, type, subtypes, name, signature) |
     ext = "" and result = e
     or
     ext = "Annotated" and result.(Annotatable).getAnAnnotation().getType() = e
@@ -831,7 +832,7 @@ predicate parseContent(AccessPathToken component, Content content) {
 cached
 private module Cached {
   /**
-   * Holds if `node` is specified as a source with the given kind in a CSV flow
+   * Holds if `node` is specified as a source with the given kind in a MaD flow
    * model.
    */
   cached
@@ -840,7 +841,7 @@ private module Cached {
   }
 
   /**
-   * Holds if `node` is specified as a sink with the given kind in a CSV flow
+   * Holds if `node` is specified as a sink with the given kind in a MaD flow
    * model.
    */
   cached
diff --git a/java/ql/test/library-tests/dataflow/external-models/negativesummaries.ql b/java/ql/test/library-tests/dataflow/external-models/negativesummaries.ql
index 8425cf880b0..b1e104a0fcd 100644
--- a/java/ql/test/library-tests/dataflow/external-models/negativesummaries.ql
+++ b/java/ql/test/library-tests/dataflow/external-models/negativesummaries.ql
@@ -4,5 +4,5 @@
 
 import java
 import semmle.code.java.dataflow.ExternalFlow
-import CsvValidation
+import ModelValidation
 import semmle.code.java.dataflow.internal.NegativeSummary
diff --git a/java/ql/test/library-tests/dataflow/external-models/sinks.ql b/java/ql/test/library-tests/dataflow/external-models/sinks.ql
index b44a9eefd88..aa1b3a549f3 100644
--- a/java/ql/test/library-tests/dataflow/external-models/sinks.ql
+++ b/java/ql/test/library-tests/dataflow/external-models/sinks.ql
@@ -1,7 +1,7 @@
 import java
 import semmle.code.java.dataflow.DataFlow
 import semmle.code.java.dataflow.ExternalFlow
-import CsvValidation
+import ModelValidation
 
 class SinkModelTest extends SinkModelCsv {
   override predicate row(string row) {
diff --git a/java/ql/test/library-tests/dataflow/external-models/srcs.ql b/java/ql/test/library-tests/dataflow/external-models/srcs.ql
index 5e428c412ea..08b13328fa4 100644
--- a/java/ql/test/library-tests/dataflow/external-models/srcs.ql
+++ b/java/ql/test/library-tests/dataflow/external-models/srcs.ql
@@ -1,7 +1,7 @@
 import java
 import semmle.code.java.dataflow.DataFlow
 import semmle.code.java.dataflow.ExternalFlow
-import CsvValidation
+import ModelValidation
 
 class SourceModelTest extends SourceModelCsv {
   override predicate row(string row) {
diff --git a/java/ql/test/library-tests/dataflow/external-models/steps.ql b/java/ql/test/library-tests/dataflow/external-models/steps.ql
index eec52c383cd..7875763f5e8 100644
--- a/java/ql/test/library-tests/dataflow/external-models/steps.ql
+++ b/java/ql/test/library-tests/dataflow/external-models/steps.ql
@@ -1,7 +1,7 @@
 import java
 import semmle.code.java.dataflow.DataFlow
 import semmle.code.java.dataflow.ExternalFlow
-import CsvValidation
+import ModelValidation
 import semmle.code.java.dataflow.internal.FlowSummaryImpl as FlowSummaryImpl
 
 class SummaryModelTest extends SummaryModelCsv {
diff --git a/java/ql/test/library-tests/dataflow/synth-global/test.ql b/java/ql/test/library-tests/dataflow/synth-global/test.ql
index 47a1573865c..de3866636c0 100644
--- a/java/ql/test/library-tests/dataflow/synth-global/test.ql
+++ b/java/ql/test/library-tests/dataflow/synth-global/test.ql
@@ -1,6 +1,6 @@
 import java
 import TestUtilities.InlineFlowTest
-import CsvValidation
+import ModelValidation
 
 class SummaryModelTest extends SummaryModelCsv {
   override predicate row(string row) {

From 8e25cac6535b4ee23d8fcdabe8a7465f0d454027 Mon Sep 17 00:00:00 2001
From: Michael Nebel <michaelnebel@github.com>
Date: Mon, 14 Nov 2022 13:00:29 +0100
Subject: [PATCH 0663/1420] Java: Add extensible predicates.

---
 .../code/java/dataflow/ExternalFlow.qll       | 25 +++++++++++++++++++
 1 file changed, 25 insertions(+)

diff --git a/java/ql/lib/semmle/code/java/dataflow/ExternalFlow.qll b/java/ql/lib/semmle/code/java/dataflow/ExternalFlow.qll
index 4d1d93c062c..6bd13135c1b 100644
--- a/java/ql/lib/semmle/code/java/dataflow/ExternalFlow.qll
+++ b/java/ql/lib/semmle/code/java/dataflow/ExternalFlow.qll
@@ -432,6 +432,14 @@ predicate summaryModel(string row) { any(SummaryModelCsv s).row(row) }
 /** Holds if `row` is negative summary model. */
 predicate negativeSummaryModel(string row) { any(NegativeSummaryModelCsv s).row(row) }
 
+/**
+ * Holds if a source model exists for the given parameters.
+ */
+extensible predicate extSourceModel(
+  string package, string type, boolean subtypes, string name, string signature, string ext,
+  string output, string kind, string provenance
+);
+
 /** Holds if a source model exists for the given parameters. */
 predicate sourceModel(
   string package, string type, boolean subtypes, string name, string signature, string ext,
@@ -452,6 +460,12 @@ predicate sourceModel(
   )
 }
 
+/** Holds if a sink model exists for the given parameters. */
+extensible predicate extSinkModel(
+  string package, string type, boolean subtypes, string name, string signature, string ext,
+  string input, string kind, string provenance
+);
+
 /** Holds if a sink model exists for the given parameters. */
 predicate sinkModel(
   string package, string type, boolean subtypes, string name, string signature, string ext,
@@ -472,6 +486,12 @@ predicate sinkModel(
   )
 }
 
+/** Holds if a summary model exists for the given parameters. */
+extensible predicate extSummaryModel(
+  string package, string type, boolean subtypes, string name, string signature, string ext,
+  string input, string output, string kind, string provenance
+);
+
 /** Holds if a summary model exists for the given parameters. */
 predicate summaryModel(
   string package, string type, boolean subtypes, string name, string signature, string ext,
@@ -499,6 +519,11 @@ predicate summaryModel(
   row.splitAt(";", 9) = provenance
 }
 
+/** Holds if a summary model exists indicating there is no flow for the given parameters. */
+extensible predicate extNegativeSummaryModel(
+  string package, string type, string name, string signature, string provenance
+);
+
 /** Holds if a summary model exists indicating there is no flow for the given parameters. */
 predicate negativeSummaryModel(
   string package, string type, string name, string signature, string provenance

From 9cb5ff1cdcb687eb5ae30fac95dc42ee6ad307e9 Mon Sep 17 00:00:00 2001
From: Michael Nebel <michaelnebel@github.com>
Date: Mon, 14 Nov 2022 13:01:07 +0100
Subject: [PATCH 0664/1420] Java: Add data extensions for all manual models.

---
 java/ql/lib/ext/android.app.model.yml         | 147 +++++
 java/ql/lib/ext/android.content.model.yml     | 222 +++++++
 java/ql/lib/ext/android.database.model.yml    |  27 +
 .../lib/ext/android.database.sqlite.model.yml |  89 +++
 java/ql/lib/ext/android.net.model.yml         |  65 ++
 java/ql/lib/ext/android.os.model.yml          | 133 +++++
 .../lib/ext/android.support.v4.app.model.yml  |  16 +
 java/ql/lib/ext/android.util.model.yml        |  31 +
 java/ql/lib/ext/android.webkit.model.yml      |  14 +
 java/ql/lib/ext/android.widget.model.yml      |  11 +
 java/ql/lib/ext/androidx.core.app.model.yml   | 110 ++++
 .../lib/ext/androidx.fragment.app.model.yml   |  16 +
 .../lib/ext/androidx.slice.builders.model.yml |  93 +++
 java/ql/lib/ext/androidx.slice.model.yml      |  16 +
 .../ql/lib/ext/cn.hutool.core.codec.model.yml |   6 +
 .../com.esotericsoftware.kryo.io.model.yml    |   6 +
 .../com.esotericsoftware.kryo5.io.model.yml   |   6 +
 .../ext/com.fasterxml.jackson.core.model.yml  |   6 +
 .../com.fasterxml.jackson.databind.model.yml  |  11 +
 .../lib/ext/com.google.common.base.model.yml  |  98 +++
 .../lib/ext/com.google.common.cache.model.yml |  22 +
 .../ext/com.google.common.collect.model.yml   | 558 ++++++++++++++++++
 .../ext/com.google.common.flogger.model.yml   |  34 ++
 .../ql/lib/ext/com.google.common.io.model.yml |  88 +++
 java/ql/lib/ext/com.hubspot.jinjava.model.yml |   7 +
 .../ext/com.mitchellbosecke.pebble.model.yml  |   7 +
 .../com.opensymphony.xwork2.ognl.model.yml    |   8 +
 .../ext/com.rabbitmq.client.impl.model.yml    |  15 +
 java/ql/lib/ext/com.rabbitmq.client.model.yml |  31 +
 .../lib/ext/com.unboundid.ldap.sdk.model.yml  |  22 +
 java/ql/lib/ext/com.zaxxer.hikari.model.yml   |   7 +
 java/ql/lib/ext/flexjson.model.yml            |   6 +
 java/ql/lib/ext/freemarker.cache.model.yml    |   6 +
 java/ql/lib/ext/freemarker.template.model.yml |  12 +
 java/ql/lib/ext/groovy.lang.model.yml         |  31 +
 java/ql/lib/ext/groovy.util.model.yml         |  10 +
 .../lib/ext/jakarta.faces.context.model.yml   |  18 +
 java/ql/lib/ext/jakarta.json.model.yml        | 127 ++++
 java/ql/lib/ext/jakarta.json.stream.model.yml |   6 +
 .../ql/lib/ext/jakarta.ws.rs.client.model.yml |   6 +
 .../lib/ext/jakarta.ws.rs.container.model.yml |  14 +
 java/ql/lib/ext/jakarta.ws.rs.core.model.yml  | 160 +++++
 java/ql/lib/ext/java.beans.model.yml          |   6 +
 java/ql/lib/ext/java.io.model.yml             |  86 +++
 java/ql/lib/ext/java.lang.model.yml           |  88 +++
 java/ql/lib/ext/java.net.http.model.yml       |  12 +
 java/ql/lib/ext/java.net.model.yml            |  30 +
 java/ql/lib/ext/java.nio.channels.model.yml   |   7 +
 java/ql/lib/ext/java.nio.file.model.yml       |  33 ++
 java/ql/lib/ext/java.nio.model.yml            |   8 +
 java/ql/lib/ext/java.sql.model.yml            |  16 +
 .../ql/lib/ext/java.util.concurrent.model.yml |  23 +
 java/ql/lib/ext/java.util.function.model.yml  |   6 +
 java/ql/lib/ext/java.util.logging.model.yml   |  44 ++
 java/ql/lib/ext/java.util.model.yml           | 357 +++++++++++
 java/ql/lib/ext/java.util.regex.model.yml     |  26 +
 java/ql/lib/ext/java.util.stream.model.yml    |  85 +++
 java/ql/lib/ext/java.util.zip.model.yml       |   7 +
 java/ql/lib/ext/javax.faces.context.model.yml |  18 +
 java/ql/lib/ext/javax.jms.model.yml           |  75 +++
 java/ql/lib/ext/javax.json.model.yml          | 127 ++++
 java/ql/lib/ext/javax.json.stream.model.yml   |   6 +
 .../lib/ext/javax.management.remote.model.yml |   7 +
 .../lib/ext/javax.naming.directory.model.yml  |   6 +
 java/ql/lib/ext/javax.naming.model.yml        |  11 +
 java/ql/lib/ext/javax.net.ssl.model.yml       |   7 +
 java/ql/lib/ext/javax.script.model.yml        |   6 +
 java/ql/lib/ext/javax.servlet.http.model.yml  |  34 ++
 java/ql/lib/ext/javax.servlet.model.yml       |  11 +
 java/ql/lib/ext/javax.validation.model.yml    |  11 +
 java/ql/lib/ext/javax.ws.rs.client.model.yml  |   6 +
 .../lib/ext/javax.ws.rs.container.model.yml   |  14 +
 java/ql/lib/ext/javax.ws.rs.core.model.yml    | 161 +++++
 java/ql/lib/ext/javax.xml.transform.model.yml |   6 +
 .../lib/ext/javax.xml.transform.sax.model.yml |   9 +
 .../ext/javax.xml.transform.stream.model.yml  |   7 +
 java/ql/lib/ext/javax.xml.xpath.model.yml     |   8 +
 java/ql/lib/ext/jodd.json.model.yml           |  15 +
 java/ql/lib/ext/kotlin.collections.model.yml  |   6 +
 java/ql/lib/ext/kotlin.jvm.internal.model.yml |   6 +
 java/ql/lib/ext/net.sf.saxon.s9api.model.yml  |  10 +
 java/ql/lib/ext/ognl.enhance.model.yml        |   7 +
 java/ql/lib/ext/ognl.model.yml                |   9 +
 java/ql/lib/ext/okhttp3.model.yml             |  58 ++
 .../ext/org.apache.commons.codec.model.yml    |  11 +
 ...g.apache.commons.collections.bag.model.yml |  23 +
 ...ache.commons.collections.bidimap.model.yml |  37 ++
 ...e.commons.collections.collection.model.yml |  45 ++
 ...he.commons.collections.iterators.model.yml |  80 +++
 ...che.commons.collections.keyvalue.model.yml |  57 ++
 ....apache.commons.collections.list.model.yml |  27 +
 ...g.apache.commons.collections.map.model.yml | 133 +++++
 .../org.apache.commons.collections.model.yml  | 365 ++++++++++++
 ...che.commons.collections.multimap.model.yml |  17 +
 ...che.commons.collections.multiset.model.yml |   9 +
 ...e.commons.collections.properties.model.yml |  13 +
 ...apache.commons.collections.queue.model.yml |  11 +
 ...g.apache.commons.collections.set.model.yml |  36 ++
 ...che.commons.collections.splitmap.model.yml |   9 +
 ....apache.commons.collections.trie.model.yml |  13 +
 ....apache.commons.collections4.bag.model.yml |  23 +
 ...che.commons.collections4.bidimap.model.yml |  37 ++
 ....commons.collections4.collection.model.yml |  45 ++
 ...e.commons.collections4.iterators.model.yml |  80 +++
 ...he.commons.collections4.keyvalue.model.yml |  57 ++
 ...apache.commons.collections4.list.model.yml |  27 +
 ....apache.commons.collections4.map.model.yml | 133 +++++
 .../org.apache.commons.collections4.model.yml | 365 ++++++++++++
 ...he.commons.collections4.multimap.model.yml |  17 +
 ...he.commons.collections4.multiset.model.yml |   9 +
 ....commons.collections4.properties.model.yml |  13 +
 ...pache.commons.collections4.queue.model.yml |  11 +
 ....apache.commons.collections4.set.model.yml |  36 ++
 ...he.commons.collections4.splitmap.model.yml |   9 +
 ...apache.commons.collections4.trie.model.yml |  13 +
 .../lib/ext/org.apache.commons.io.model.yml   |  10 +
 .../ext/org.apache.commons.jexl2.model.yml    |  20 +
 .../ext/org.apache.commons.jexl3.model.yml    |  20 +
 ...org.apache.commons.lang3.builder.model.yml |  22 +
 .../ext/org.apache.commons.lang3.model.yml    | 207 +++++++
 ...org.apache.commons.lang3.mutable.model.yml |   8 +
 .../org.apache.commons.lang3.text.model.yml   | 160 +++++
 .../org.apache.commons.lang3.tuple.model.yml  |  52 ++
 .../ext/org.apache.commons.logging.model.yml  |  11 +
 .../org.apache.commons.ognl.enhance.model.yml |   7 +
 .../lib/ext/org.apache.commons.ognl.model.yml |   9 +
 .../org.apache.commons.text.lookup.model.yml  |   7 +
 .../lib/ext/org.apache.commons.text.model.yml | 275 +++++++++
 ...apache.directory.ldap.client.api.model.yml |   6 +
 .../org.apache.hc.core5.function.model.yml    |   6 +
 ...g.apache.hc.core5.http.io.entity.model.yml |  19 +
 .../ext/org.apache.hc.core5.http.io.model.yml |   7 +
 ...org.apache.hc.core5.http.message.model.yml |  10 +
 .../ext/org.apache.hc.core5.http.model.yml    |  30 +
 .../lib/ext/org.apache.hc.core5.net.model.yml |   7 +
 .../ext/org.apache.hc.core5.util.model.yml    |  29 +
 .../org.apache.http.client.methods.model.yml  |  23 +
 .../lib/ext/org.apache.http.entity.model.yml  |  11 +
 .../lib/ext/org.apache.http.message.model.yml |  16 +
 java/ql/lib/ext/org.apache.http.model.yml     |  42 ++
 .../lib/ext/org.apache.http.params.model.yml  |  12 +
 .../ext/org.apache.http.protocol.model.yml    |   6 +
 .../ql/lib/ext/org.apache.http.util.model.yml |  41 ++
 .../lib/ext/org.apache.ibatis.jdbc.model.yml  |  72 +++
 java/ql/lib/ext/org.apache.log4j.model.yml    |  16 +
 .../ext/org.apache.logging.log4j.model.yml    | 376 ++++++++++++
 .../lib/ext/org.apache.shiro.codec.model.yml  |   6 +
 .../lib/ext/org.apache.shiro.jndi.model.yml   |   6 +
 .../lib/ext/org.apache.velocity.app.model.yml |   9 +
 .../ext/org.apache.velocity.runtime.model.yml |   8 +
 ...e.velocity.runtime.resource.util.model.yml |   6 +
 .../ext/org.codehaus.groovy.control.model.yml |   6 +
 java/ql/lib/ext/org.dom4j.model.yml           |  20 +
 java/ql/lib/ext/org.dom4j.tree.model.yml      |   7 +
 java/ql/lib/ext/org.dom4j.util.model.yml      |   8 +
 java/ql/lib/ext/org.hibernate.model.yml       |  12 +
 java/ql/lib/ext/org.jboss.logging.model.yml   | 329 +++++++++++
 java/ql/lib/ext/org.jdbi.v3.core.model.yml    |  11 +
 java/ql/lib/ext/org.jooq.model.yml            |   6 +
 java/ql/lib/ext/org.json.model.yml            | 241 ++++++++
 java/ql/lib/ext/org.mvel2.compiler.model.yml  |   9 +
 java/ql/lib/ext/org.mvel2.jsr223.model.yml    |   8 +
 java/ql/lib/ext/org.mvel2.model.yml           |  12 +
 java/ql/lib/ext/org.mvel2.templates.model.yml |   7 +
 java/ql/lib/ext/org.scijava.log.model.yml     |  18 +
 java/ql/lib/ext/org.slf4j.model.yml           |  55 ++
 java/ql/lib/ext/org.slf4j.spi.model.yml       |  20 +
 .../ext/org.springframework.beans.model.yml   |  35 ++
 .../org.springframework.boot.jdbc.model.yml   |   6 +
 .../ext/org.springframework.cache.model.yml   |  18 +
 .../ext/org.springframework.context.model.yml |   8 +
 ....springframework.data.repository.model.yml |   6 +
 .../ext/org.springframework.http.model.yml    |  93 +++
 .../org.springframework.jdbc.core.model.yml   |  15 +
 ....springframework.jdbc.datasource.model.yml |   9 +
 .../org.springframework.jdbc.object.model.yml |  14 +
 .../ext/org.springframework.jndi.model.yml    |   6 +
 .../org.springframework.ldap.core.model.yml   |  38 ++
 .../ext/org.springframework.ldap.model.yml    |  19 +
 ...mework.security.web.savedrequest.model.yml |  11 +
 .../lib/ext/org.springframework.ui.model.yml  |  37 ++
 .../ext/org.springframework.util.model.yml    | 144 +++++
 .../org.springframework.validation.model.yml  |  18 +
 .../org.springframework.web.client.model.yml  |  25 +
 ...ingframework.web.context.request.model.yml |  13 +
 ...rg.springframework.web.multipart.model.yml |  34 ++
 ...ork.web.reactive.function.client.model.yml |   7 +
 .../org.springframework.web.util.model.yml    | 168 ++++++
 java/ql/lib/ext/org.thymeleaf.model.yml       |  13 +
 java/ql/lib/ext/org.xml.sax.model.yml         |   6 +
 java/ql/lib/ext/org.xmlpull.v1.model.yml      |   8 +
 java/ql/lib/ext/play.mvc.model.yml            |   9 +
 java/ql/lib/ext/ratpack.core.form.model.yml   |   8 +
 .../lib/ext/ratpack.core.handling.model.yml   |  19 +
 java/ql/lib/ext/ratpack.core.http.model.yml   |  29 +
 java/ql/lib/ext/ratpack.exec.model.yml        |  53 ++
 java/ql/lib/ext/ratpack.form.model.yml        |   8 +
 java/ql/lib/ext/ratpack.func.model.yml        |  40 ++
 java/ql/lib/ext/ratpack.handling.model.yml    |  19 +
 java/ql/lib/ext/ratpack.http.model.yml        |  29 +
 java/ql/lib/ext/ratpack.util.model.yml        |  40 ++
 java/ql/lib/ext/retrofit2.model.yml           |   6 +
 202 files changed, 8906 insertions(+)
 create mode 100644 java/ql/lib/ext/android.app.model.yml
 create mode 100644 java/ql/lib/ext/android.content.model.yml
 create mode 100644 java/ql/lib/ext/android.database.model.yml
 create mode 100644 java/ql/lib/ext/android.database.sqlite.model.yml
 create mode 100644 java/ql/lib/ext/android.net.model.yml
 create mode 100644 java/ql/lib/ext/android.os.model.yml
 create mode 100644 java/ql/lib/ext/android.support.v4.app.model.yml
 create mode 100644 java/ql/lib/ext/android.util.model.yml
 create mode 100644 java/ql/lib/ext/android.webkit.model.yml
 create mode 100644 java/ql/lib/ext/android.widget.model.yml
 create mode 100644 java/ql/lib/ext/androidx.core.app.model.yml
 create mode 100644 java/ql/lib/ext/androidx.fragment.app.model.yml
 create mode 100644 java/ql/lib/ext/androidx.slice.builders.model.yml
 create mode 100644 java/ql/lib/ext/androidx.slice.model.yml
 create mode 100644 java/ql/lib/ext/cn.hutool.core.codec.model.yml
 create mode 100644 java/ql/lib/ext/com.esotericsoftware.kryo.io.model.yml
 create mode 100644 java/ql/lib/ext/com.esotericsoftware.kryo5.io.model.yml
 create mode 100644 java/ql/lib/ext/com.fasterxml.jackson.core.model.yml
 create mode 100644 java/ql/lib/ext/com.fasterxml.jackson.databind.model.yml
 create mode 100644 java/ql/lib/ext/com.google.common.base.model.yml
 create mode 100644 java/ql/lib/ext/com.google.common.cache.model.yml
 create mode 100644 java/ql/lib/ext/com.google.common.collect.model.yml
 create mode 100644 java/ql/lib/ext/com.google.common.flogger.model.yml
 create mode 100644 java/ql/lib/ext/com.google.common.io.model.yml
 create mode 100644 java/ql/lib/ext/com.hubspot.jinjava.model.yml
 create mode 100644 java/ql/lib/ext/com.mitchellbosecke.pebble.model.yml
 create mode 100644 java/ql/lib/ext/com.opensymphony.xwork2.ognl.model.yml
 create mode 100644 java/ql/lib/ext/com.rabbitmq.client.impl.model.yml
 create mode 100644 java/ql/lib/ext/com.rabbitmq.client.model.yml
 create mode 100644 java/ql/lib/ext/com.unboundid.ldap.sdk.model.yml
 create mode 100644 java/ql/lib/ext/com.zaxxer.hikari.model.yml
 create mode 100644 java/ql/lib/ext/flexjson.model.yml
 create mode 100644 java/ql/lib/ext/freemarker.cache.model.yml
 create mode 100644 java/ql/lib/ext/freemarker.template.model.yml
 create mode 100644 java/ql/lib/ext/groovy.lang.model.yml
 create mode 100644 java/ql/lib/ext/groovy.util.model.yml
 create mode 100644 java/ql/lib/ext/jakarta.faces.context.model.yml
 create mode 100644 java/ql/lib/ext/jakarta.json.model.yml
 create mode 100644 java/ql/lib/ext/jakarta.json.stream.model.yml
 create mode 100644 java/ql/lib/ext/jakarta.ws.rs.client.model.yml
 create mode 100644 java/ql/lib/ext/jakarta.ws.rs.container.model.yml
 create mode 100644 java/ql/lib/ext/jakarta.ws.rs.core.model.yml
 create mode 100644 java/ql/lib/ext/java.beans.model.yml
 create mode 100644 java/ql/lib/ext/java.io.model.yml
 create mode 100644 java/ql/lib/ext/java.lang.model.yml
 create mode 100644 java/ql/lib/ext/java.net.http.model.yml
 create mode 100644 java/ql/lib/ext/java.net.model.yml
 create mode 100644 java/ql/lib/ext/java.nio.channels.model.yml
 create mode 100644 java/ql/lib/ext/java.nio.file.model.yml
 create mode 100644 java/ql/lib/ext/java.nio.model.yml
 create mode 100644 java/ql/lib/ext/java.sql.model.yml
 create mode 100644 java/ql/lib/ext/java.util.concurrent.model.yml
 create mode 100644 java/ql/lib/ext/java.util.function.model.yml
 create mode 100644 java/ql/lib/ext/java.util.logging.model.yml
 create mode 100644 java/ql/lib/ext/java.util.model.yml
 create mode 100644 java/ql/lib/ext/java.util.regex.model.yml
 create mode 100644 java/ql/lib/ext/java.util.stream.model.yml
 create mode 100644 java/ql/lib/ext/java.util.zip.model.yml
 create mode 100644 java/ql/lib/ext/javax.faces.context.model.yml
 create mode 100644 java/ql/lib/ext/javax.jms.model.yml
 create mode 100644 java/ql/lib/ext/javax.json.model.yml
 create mode 100644 java/ql/lib/ext/javax.json.stream.model.yml
 create mode 100644 java/ql/lib/ext/javax.management.remote.model.yml
 create mode 100644 java/ql/lib/ext/javax.naming.directory.model.yml
 create mode 100644 java/ql/lib/ext/javax.naming.model.yml
 create mode 100644 java/ql/lib/ext/javax.net.ssl.model.yml
 create mode 100644 java/ql/lib/ext/javax.script.model.yml
 create mode 100644 java/ql/lib/ext/javax.servlet.http.model.yml
 create mode 100644 java/ql/lib/ext/javax.servlet.model.yml
 create mode 100644 java/ql/lib/ext/javax.validation.model.yml
 create mode 100644 java/ql/lib/ext/javax.ws.rs.client.model.yml
 create mode 100644 java/ql/lib/ext/javax.ws.rs.container.model.yml
 create mode 100644 java/ql/lib/ext/javax.ws.rs.core.model.yml
 create mode 100644 java/ql/lib/ext/javax.xml.transform.model.yml
 create mode 100644 java/ql/lib/ext/javax.xml.transform.sax.model.yml
 create mode 100644 java/ql/lib/ext/javax.xml.transform.stream.model.yml
 create mode 100644 java/ql/lib/ext/javax.xml.xpath.model.yml
 create mode 100644 java/ql/lib/ext/jodd.json.model.yml
 create mode 100644 java/ql/lib/ext/kotlin.collections.model.yml
 create mode 100644 java/ql/lib/ext/kotlin.jvm.internal.model.yml
 create mode 100644 java/ql/lib/ext/net.sf.saxon.s9api.model.yml
 create mode 100644 java/ql/lib/ext/ognl.enhance.model.yml
 create mode 100644 java/ql/lib/ext/ognl.model.yml
 create mode 100644 java/ql/lib/ext/okhttp3.model.yml
 create mode 100644 java/ql/lib/ext/org.apache.commons.codec.model.yml
 create mode 100644 java/ql/lib/ext/org.apache.commons.collections.bag.model.yml
 create mode 100644 java/ql/lib/ext/org.apache.commons.collections.bidimap.model.yml
 create mode 100644 java/ql/lib/ext/org.apache.commons.collections.collection.model.yml
 create mode 100644 java/ql/lib/ext/org.apache.commons.collections.iterators.model.yml
 create mode 100644 java/ql/lib/ext/org.apache.commons.collections.keyvalue.model.yml
 create mode 100644 java/ql/lib/ext/org.apache.commons.collections.list.model.yml
 create mode 100644 java/ql/lib/ext/org.apache.commons.collections.map.model.yml
 create mode 100644 java/ql/lib/ext/org.apache.commons.collections.model.yml
 create mode 100644 java/ql/lib/ext/org.apache.commons.collections.multimap.model.yml
 create mode 100644 java/ql/lib/ext/org.apache.commons.collections.multiset.model.yml
 create mode 100644 java/ql/lib/ext/org.apache.commons.collections.properties.model.yml
 create mode 100644 java/ql/lib/ext/org.apache.commons.collections.queue.model.yml
 create mode 100644 java/ql/lib/ext/org.apache.commons.collections.set.model.yml
 create mode 100644 java/ql/lib/ext/org.apache.commons.collections.splitmap.model.yml
 create mode 100644 java/ql/lib/ext/org.apache.commons.collections.trie.model.yml
 create mode 100644 java/ql/lib/ext/org.apache.commons.collections4.bag.model.yml
 create mode 100644 java/ql/lib/ext/org.apache.commons.collections4.bidimap.model.yml
 create mode 100644 java/ql/lib/ext/org.apache.commons.collections4.collection.model.yml
 create mode 100644 java/ql/lib/ext/org.apache.commons.collections4.iterators.model.yml
 create mode 100644 java/ql/lib/ext/org.apache.commons.collections4.keyvalue.model.yml
 create mode 100644 java/ql/lib/ext/org.apache.commons.collections4.list.model.yml
 create mode 100644 java/ql/lib/ext/org.apache.commons.collections4.map.model.yml
 create mode 100644 java/ql/lib/ext/org.apache.commons.collections4.model.yml
 create mode 100644 java/ql/lib/ext/org.apache.commons.collections4.multimap.model.yml
 create mode 100644 java/ql/lib/ext/org.apache.commons.collections4.multiset.model.yml
 create mode 100644 java/ql/lib/ext/org.apache.commons.collections4.properties.model.yml
 create mode 100644 java/ql/lib/ext/org.apache.commons.collections4.queue.model.yml
 create mode 100644 java/ql/lib/ext/org.apache.commons.collections4.set.model.yml
 create mode 100644 java/ql/lib/ext/org.apache.commons.collections4.splitmap.model.yml
 create mode 100644 java/ql/lib/ext/org.apache.commons.collections4.trie.model.yml
 create mode 100644 java/ql/lib/ext/org.apache.commons.io.model.yml
 create mode 100644 java/ql/lib/ext/org.apache.commons.jexl2.model.yml
 create mode 100644 java/ql/lib/ext/org.apache.commons.jexl3.model.yml
 create mode 100644 java/ql/lib/ext/org.apache.commons.lang3.builder.model.yml
 create mode 100644 java/ql/lib/ext/org.apache.commons.lang3.model.yml
 create mode 100644 java/ql/lib/ext/org.apache.commons.lang3.mutable.model.yml
 create mode 100644 java/ql/lib/ext/org.apache.commons.lang3.text.model.yml
 create mode 100644 java/ql/lib/ext/org.apache.commons.lang3.tuple.model.yml
 create mode 100644 java/ql/lib/ext/org.apache.commons.logging.model.yml
 create mode 100644 java/ql/lib/ext/org.apache.commons.ognl.enhance.model.yml
 create mode 100644 java/ql/lib/ext/org.apache.commons.ognl.model.yml
 create mode 100644 java/ql/lib/ext/org.apache.commons.text.lookup.model.yml
 create mode 100644 java/ql/lib/ext/org.apache.commons.text.model.yml
 create mode 100644 java/ql/lib/ext/org.apache.directory.ldap.client.api.model.yml
 create mode 100644 java/ql/lib/ext/org.apache.hc.core5.function.model.yml
 create mode 100644 java/ql/lib/ext/org.apache.hc.core5.http.io.entity.model.yml
 create mode 100644 java/ql/lib/ext/org.apache.hc.core5.http.io.model.yml
 create mode 100644 java/ql/lib/ext/org.apache.hc.core5.http.message.model.yml
 create mode 100644 java/ql/lib/ext/org.apache.hc.core5.http.model.yml
 create mode 100644 java/ql/lib/ext/org.apache.hc.core5.net.model.yml
 create mode 100644 java/ql/lib/ext/org.apache.hc.core5.util.model.yml
 create mode 100644 java/ql/lib/ext/org.apache.http.client.methods.model.yml
 create mode 100644 java/ql/lib/ext/org.apache.http.entity.model.yml
 create mode 100644 java/ql/lib/ext/org.apache.http.message.model.yml
 create mode 100644 java/ql/lib/ext/org.apache.http.model.yml
 create mode 100644 java/ql/lib/ext/org.apache.http.params.model.yml
 create mode 100644 java/ql/lib/ext/org.apache.http.protocol.model.yml
 create mode 100644 java/ql/lib/ext/org.apache.http.util.model.yml
 create mode 100644 java/ql/lib/ext/org.apache.ibatis.jdbc.model.yml
 create mode 100644 java/ql/lib/ext/org.apache.log4j.model.yml
 create mode 100644 java/ql/lib/ext/org.apache.logging.log4j.model.yml
 create mode 100644 java/ql/lib/ext/org.apache.shiro.codec.model.yml
 create mode 100644 java/ql/lib/ext/org.apache.shiro.jndi.model.yml
 create mode 100644 java/ql/lib/ext/org.apache.velocity.app.model.yml
 create mode 100644 java/ql/lib/ext/org.apache.velocity.runtime.model.yml
 create mode 100644 java/ql/lib/ext/org.apache.velocity.runtime.resource.util.model.yml
 create mode 100644 java/ql/lib/ext/org.codehaus.groovy.control.model.yml
 create mode 100644 java/ql/lib/ext/org.dom4j.model.yml
 create mode 100644 java/ql/lib/ext/org.dom4j.tree.model.yml
 create mode 100644 java/ql/lib/ext/org.dom4j.util.model.yml
 create mode 100644 java/ql/lib/ext/org.hibernate.model.yml
 create mode 100644 java/ql/lib/ext/org.jboss.logging.model.yml
 create mode 100644 java/ql/lib/ext/org.jdbi.v3.core.model.yml
 create mode 100644 java/ql/lib/ext/org.jooq.model.yml
 create mode 100644 java/ql/lib/ext/org.json.model.yml
 create mode 100644 java/ql/lib/ext/org.mvel2.compiler.model.yml
 create mode 100644 java/ql/lib/ext/org.mvel2.jsr223.model.yml
 create mode 100644 java/ql/lib/ext/org.mvel2.model.yml
 create mode 100644 java/ql/lib/ext/org.mvel2.templates.model.yml
 create mode 100644 java/ql/lib/ext/org.scijava.log.model.yml
 create mode 100644 java/ql/lib/ext/org.slf4j.model.yml
 create mode 100644 java/ql/lib/ext/org.slf4j.spi.model.yml
 create mode 100644 java/ql/lib/ext/org.springframework.beans.model.yml
 create mode 100644 java/ql/lib/ext/org.springframework.boot.jdbc.model.yml
 create mode 100644 java/ql/lib/ext/org.springframework.cache.model.yml
 create mode 100644 java/ql/lib/ext/org.springframework.context.model.yml
 create mode 100644 java/ql/lib/ext/org.springframework.data.repository.model.yml
 create mode 100644 java/ql/lib/ext/org.springframework.http.model.yml
 create mode 100644 java/ql/lib/ext/org.springframework.jdbc.core.model.yml
 create mode 100644 java/ql/lib/ext/org.springframework.jdbc.datasource.model.yml
 create mode 100644 java/ql/lib/ext/org.springframework.jdbc.object.model.yml
 create mode 100644 java/ql/lib/ext/org.springframework.jndi.model.yml
 create mode 100644 java/ql/lib/ext/org.springframework.ldap.core.model.yml
 create mode 100644 java/ql/lib/ext/org.springframework.ldap.model.yml
 create mode 100644 java/ql/lib/ext/org.springframework.security.web.savedrequest.model.yml
 create mode 100644 java/ql/lib/ext/org.springframework.ui.model.yml
 create mode 100644 java/ql/lib/ext/org.springframework.util.model.yml
 create mode 100644 java/ql/lib/ext/org.springframework.validation.model.yml
 create mode 100644 java/ql/lib/ext/org.springframework.web.client.model.yml
 create mode 100644 java/ql/lib/ext/org.springframework.web.context.request.model.yml
 create mode 100644 java/ql/lib/ext/org.springframework.web.multipart.model.yml
 create mode 100644 java/ql/lib/ext/org.springframework.web.reactive.function.client.model.yml
 create mode 100644 java/ql/lib/ext/org.springframework.web.util.model.yml
 create mode 100644 java/ql/lib/ext/org.thymeleaf.model.yml
 create mode 100644 java/ql/lib/ext/org.xml.sax.model.yml
 create mode 100644 java/ql/lib/ext/org.xmlpull.v1.model.yml
 create mode 100644 java/ql/lib/ext/play.mvc.model.yml
 create mode 100644 java/ql/lib/ext/ratpack.core.form.model.yml
 create mode 100644 java/ql/lib/ext/ratpack.core.handling.model.yml
 create mode 100644 java/ql/lib/ext/ratpack.core.http.model.yml
 create mode 100644 java/ql/lib/ext/ratpack.exec.model.yml
 create mode 100644 java/ql/lib/ext/ratpack.form.model.yml
 create mode 100644 java/ql/lib/ext/ratpack.func.model.yml
 create mode 100644 java/ql/lib/ext/ratpack.handling.model.yml
 create mode 100644 java/ql/lib/ext/ratpack.http.model.yml
 create mode 100644 java/ql/lib/ext/ratpack.util.model.yml
 create mode 100644 java/ql/lib/ext/retrofit2.model.yml

diff --git a/java/ql/lib/ext/android.app.model.yml b/java/ql/lib/ext/android.app.model.yml
new file mode 100644
index 00000000000..c96fee8b282
--- /dev/null
+++ b/java/ql/lib/ext/android.app.model.yml
@@ -0,0 +1,147 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSinkModel
+    data:
+      - ["android.app", "Activity", True, "bindService", "", "", "Argument[0]", "intent-start", "manual"]
+      - ["android.app", "Activity", True, "bindServiceAsUser", "", "", "Argument[0]", "intent-start", "manual"]
+      - ["android.app", "Activity", True, "setResult", "(int,Intent)", "", "Argument[1]", "pending-intent-sent", "manual"]
+      - ["android.app", "Activity", True, "startActivityAsCaller", "", "", "Argument[0]", "intent-start", "manual"]
+      - ["android.app", "Activity", True, "startActivityForResult", "(Intent,int)", "", "Argument[0]", "intent-start", "manual"]
+      - ["android.app", "Activity", True, "startActivityForResult", "(Intent,int,Bundle)", "", "Argument[0]", "intent-start", "manual"]
+      - ["android.app", "Activity", True, "startActivityForResult", "(String,Intent,int,Bundle)", "", "Argument[1]", "intent-start", "manual"]
+      - ["android.app", "Activity", True, "startActivityForResultAsUser", "", "", "Argument[0]", "intent-start", "manual"]
+      - ["android.app", "AlarmManager", True, "set", "(int,long,PendingIntent)", "", "Argument[2]", "pending-intent-sent", "manual"]
+      - ["android.app", "AlarmManager", True, "setAlarmClock", "", "", "Argument[1]", "pending-intent-sent", "manual"]
+      - ["android.app", "AlarmManager", True, "setAndAllowWhileIdle", "", "", "Argument[2]", "pending-intent-sent", "manual"]
+      - ["android.app", "AlarmManager", True, "setExact", "(int,long,PendingIntent)", "", "Argument[2]", "pending-intent-sent", "manual"]
+      - ["android.app", "AlarmManager", True, "setExactAndAllowWhileIdle", "", "", "Argument[2]", "pending-intent-sent", "manual"]
+      - ["android.app", "AlarmManager", True, "setInexactRepeating", "", "", "Argument[3]", "pending-intent-sent", "manual"]
+      - ["android.app", "AlarmManager", True, "setRepeating", "", "", "Argument[3]", "pending-intent-sent", "manual"]
+      - ["android.app", "AlarmManager", True, "setWindow", "(int,long,long,PendingIntent)", "", "Argument[3]", "pending-intent-sent", "manual"]
+      - ["android.app", "FragmentTransaction", True, "add", "(Class,Bundle,String)", "", "Argument[0]", "fragment-injection", "manual"]
+      - ["android.app", "FragmentTransaction", True, "add", "(Fragment,String)", "", "Argument[0]", "fragment-injection", "manual"]
+      - ["android.app", "FragmentTransaction", True, "add", "(int,Class,Bundle)", "", "Argument[1]", "fragment-injection", "manual"]
+      - ["android.app", "FragmentTransaction", True, "add", "(int,Class,Bundle,String)", "", "Argument[1]", "fragment-injection", "manual"]
+      - ["android.app", "FragmentTransaction", True, "add", "(int,Fragment)", "", "Argument[1]", "fragment-injection", "manual"]
+      - ["android.app", "FragmentTransaction", True, "add", "(int,Fragment,String)", "", "Argument[1]", "fragment-injection", "manual"]
+      - ["android.app", "FragmentTransaction", True, "attach", "(Fragment)", "", "Argument[0]", "fragment-injection", "manual"]
+      - ["android.app", "FragmentTransaction", True, "replace", "(int,Class,Bundle)", "", "Argument[1]", "fragment-injection", "manual"]
+      - ["android.app", "FragmentTransaction", True, "replace", "(int,Class,Bundle,String)", "", "Argument[1]", "fragment-injection", "manual"]
+      - ["android.app", "FragmentTransaction", True, "replace", "(int,Fragment)", "", "Argument[1]", "fragment-injection", "manual"]
+      - ["android.app", "FragmentTransaction", True, "replace", "(int,Fragment,String)", "", "Argument[1]", "fragment-injection", "manual"]
+      - ["android.app", "NotificationManager", True, "notify", "(String,int,Notification)", "", "Argument[2]", "pending-intent-sent", "manual"]
+      - ["android.app", "NotificationManager", True, "notify", "(int,Notification)", "", "Argument[1]", "pending-intent-sent", "manual"]
+      - ["android.app", "NotificationManager", True, "notifyAsPackage", "(String,String,int,Notification)", "", "Argument[3]", "pending-intent-sent", "manual"]
+      - ["android.app", "NotificationManager", True, "notifyAsUser", "(String,int,Notification,UserHandle)", "", "Argument[2]", "pending-intent-sent", "manual"]
+      - ["android.app", "PendingIntent", False, "send", "(Context,int,Intent)", "", "Argument[2]", "pending-intent-sent", "manual"]
+      - ["android.app", "PendingIntent", False, "send", "(Context,int,Intent,OnFinished,Handler)", "", "Argument[2]", "pending-intent-sent", "manual"]
+      - ["android.app", "PendingIntent", False, "send", "(Context,int,Intent,OnFinished,Handler,String)", "", "Argument[2]", "pending-intent-sent", "manual"]
+      - ["android.app", "PendingIntent", False, "send", "(Context,int,Intent,OnFinished,Handler,String,Bundle)", "", "Argument[2]", "pending-intent-sent", "manual"]
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSummaryModel
+    data:
+      - ["android.app", "Notification$Action", True, "Action", "(int,CharSequence,PendingIntent)", "", "Argument[2]", "Argument[-1]", "taint", "manual"]
+      - ["android.app", "Notification$Action", True, "getExtras", "", "", "Argument[-1].SyntheticField[android.content.Intent.extras]", "ReturnValue", "value", "manual"]
+      - ["android.app", "Notification$Action$Builder", True, "Builder", "(Action)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["android.app", "Notification$Action$Builder", True, "Builder", "(Icon,CharSequence,PendingIntent)", "", "Argument[2]", "Argument[-1]", "taint", "manual"]
+      - ["android.app", "Notification$Action$Builder", True, "Builder", "(int,CharSequence,PendingIntent)", "", "Argument[2]", "Argument[-1]", "taint", "manual"]
+      - ["android.app", "Notification$Action$Builder", True, "addExtras", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["android.app", "Notification$Action$Builder", True, "addExtras", "", "", "Argument[0].MapKey", "Argument[-1].SyntheticField[android.content.Intent.extras].MapKey", "value", "manual"]
+      - ["android.app", "Notification$Action$Builder", True, "addExtras", "", "", "Argument[0].MapValue", "Argument[-1].SyntheticField[android.content.Intent.extras].MapValue", "value", "manual"]
+      - ["android.app", "Notification$Action$Builder", True, "addRemoteInput", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["android.app", "Notification$Action$Builder", True, "build", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["android.app", "Notification$Action$Builder", True, "build", "", "", "Argument[-1].SyntheticField[android.content.Intent.extras]", "ReturnValue.SyntheticField[android.content.Intent.extras]", "value", "manual"]
+      - ["android.app", "Notification$Action$Builder", True, "extend", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["android.app", "Notification$Action$Builder", True, "getExtras", "", "", "Argument[-1].SyntheticField[android.content.Intent.extras]", "ReturnValue", "value", "manual"]
+      - ["android.app", "Notification$Action$Builder", True, "setAllowGeneratedReplies", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["android.app", "Notification$Action$Builder", True, "setAuthenticationRequired", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["android.app", "Notification$Action$Builder", True, "setContextual", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["android.app", "Notification$Action$Builder", True, "setSemanticAction", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["android.app", "Notification$BigPictureStyle", True, "BigPictureStyle", "(Builder)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["android.app", "Notification$BigPictureStyle", True, "bigLargeIcon", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["android.app", "Notification$BigPictureStyle", True, "bigPicture", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["android.app", "Notification$BigPictureStyle", True, "setBigContentTitle", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["android.app", "Notification$BigPictureStyle", True, "setContentDescription", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["android.app", "Notification$BigPictureStyle", True, "setSummaryText", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["android.app", "Notification$BigPictureStyle", True, "showBigPictureWhenCollapsed", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["android.app", "Notification$BigTextStyle", True, "BigTextStyle", "(Builder)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["android.app", "Notification$BigTextStyle", True, "bigText", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["android.app", "Notification$BigTextStyle", True, "setBigContentTitle", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["android.app", "Notification$BigTextStyle", True, "setSummaryText", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["android.app", "Notification$Builder", True, "addAction", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["android.app", "Notification$Builder", True, "addAction", "(Action)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["android.app", "Notification$Builder", True, "addAction", "(int,CharSequence,PendingIntent)", "", "Argument[2]", "Argument[-1]", "taint", "manual"]
+      - ["android.app", "Notification$Builder", True, "addExtras", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["android.app", "Notification$Builder", True, "addExtras", "", "", "Argument[0].MapKey", "Argument[-1].SyntheticField[android.content.Intent.extras].MapKey", "value", "manual"]
+      - ["android.app", "Notification$Builder", True, "addExtras", "", "", "Argument[0].MapValue", "Argument[-1].SyntheticField[android.content.Intent.extras].MapValue", "value", "manual"]
+      - ["android.app", "Notification$Builder", True, "addPerson", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["android.app", "Notification$Builder", True, "build", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["android.app", "Notification$Builder", True, "build", "", "", "Argument[-1].SyntheticField[android.content.Intent.extras]", "ReturnValue.Field[android.app.Notification.extras]", "value", "manual"]
+      - ["android.app", "Notification$Builder", True, "extend", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["android.app", "Notification$Builder", True, "getExtras", "", "", "Argument[-1].SyntheticField[android.content.Intent.extras]", "ReturnValue", "value", "manual"]
+      - ["android.app", "Notification$Builder", True, "recoverBuilder", "", "", "Argument[1]", "ReturnValue", "taint", "manual"]
+      - ["android.app", "Notification$Builder", True, "setActions", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["android.app", "Notification$Builder", True, "setActions", "", "", "Argument[0].ArrayElement", "Argument[-1]", "taint", "manual"]
+      - ["android.app", "Notification$Builder", True, "setAutoCancel", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["android.app", "Notification$Builder", True, "setBadgeIconType", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["android.app", "Notification$Builder", True, "setBubbleMetadata", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["android.app", "Notification$Builder", True, "setCategory", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["android.app", "Notification$Builder", True, "setChannelId", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["android.app", "Notification$Builder", True, "setChronometerCountDown", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["android.app", "Notification$Builder", True, "setColor", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["android.app", "Notification$Builder", True, "setColorized", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["android.app", "Notification$Builder", True, "setContent", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["android.app", "Notification$Builder", True, "setContentInfo", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["android.app", "Notification$Builder", True, "setContentIntent", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["android.app", "Notification$Builder", True, "setContentIntent", "", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["android.app", "Notification$Builder", True, "setContentText", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["android.app", "Notification$Builder", True, "setContentTitle", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["android.app", "Notification$Builder", True, "setCustomBigContentView", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["android.app", "Notification$Builder", True, "setCustomHeadsUpContentView", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["android.app", "Notification$Builder", True, "setDefaults", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["android.app", "Notification$Builder", True, "setDeleteIntent", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["android.app", "Notification$Builder", True, "setDeleteIntent", "", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["android.app", "Notification$Builder", True, "setExtras", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["android.app", "Notification$Builder", True, "setExtras", "", "", "Argument[0]", "Argument[-1].SyntheticField[android.content.Intent.extras]", "value", "manual"]
+      - ["android.app", "Notification$Builder", True, "setFlag", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["android.app", "Notification$Builder", True, "setForegroundServiceBehavior", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["android.app", "Notification$Builder", True, "setFullScreenIntent", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["android.app", "Notification$Builder", True, "setGroup", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["android.app", "Notification$Builder", True, "setGroupAlertBehavior", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["android.app", "Notification$Builder", True, "setGroupSummary", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["android.app", "Notification$Builder", True, "setLargeIcon", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["android.app", "Notification$Builder", True, "setLights", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["android.app", "Notification$Builder", True, "setLocalOnly", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["android.app", "Notification$Builder", True, "setLocusId", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["android.app", "Notification$Builder", True, "setNumber", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["android.app", "Notification$Builder", True, "setOngoing", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["android.app", "Notification$Builder", True, "setOnlyAlertOnce", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["android.app", "Notification$Builder", True, "setPriority", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["android.app", "Notification$Builder", True, "setProgress", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["android.app", "Notification$Builder", True, "setPublicVersion", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["android.app", "Notification$Builder", True, "setPublicVersion", "", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["android.app", "Notification$Builder", True, "setRemoteInputHistory", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["android.app", "Notification$Builder", True, "setSettingsText", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["android.app", "Notification$Builder", True, "setShortcutId", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["android.app", "Notification$Builder", True, "setShowWhen", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["android.app", "Notification$Builder", True, "setSmallIcon", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["android.app", "Notification$Builder", True, "setSortKey", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["android.app", "Notification$Builder", True, "setSound", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["android.app", "Notification$Builder", True, "setStyle", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["android.app", "Notification$Builder", True, "setSubText", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["android.app", "Notification$Builder", True, "setTicker", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["android.app", "Notification$Builder", True, "setTimeoutAfter", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["android.app", "Notification$Builder", True, "setUsesChronometer", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["android.app", "Notification$Builder", True, "setVibrate", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["android.app", "Notification$Builder", True, "setVisibility", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["android.app", "Notification$Builder", True, "setWhen", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["android.app", "Notification$InboxStyle", True, "InboxStyle", "(Builder)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["android.app", "Notification$InboxStyle", True, "addLine", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["android.app", "Notification$InboxStyle", True, "setBigContentTitle", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["android.app", "Notification$InboxStyle", True, "setSummaryText", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["android.app", "Notification$MediaStyle", True, "MediaStyle", "(Builder)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["android.app", "Notification$MediaStyle", True, "setMediaSession", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["android.app", "Notification$MediaStyle", True, "setShowActionsInCompactView", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["android.app", "Notification$Style", True, "build", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
diff --git a/java/ql/lib/ext/android.content.model.yml b/java/ql/lib/ext/android.content.model.yml
new file mode 100644
index 00000000000..23e3e376c12
--- /dev/null
+++ b/java/ql/lib/ext/android.content.model.yml
@@ -0,0 +1,222 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSourceModel
+    data:
+      - ["android.content", "ContentInterface", True, "call", "(String,String,String,Bundle)", "", "Parameter[0..3]", "contentprovider", "manual"]
+      - ["android.content", "ContentInterface", True, "delete", "(Uri,Bundle)", "", "Parameter[0..1]", "contentprovider", "manual"]
+      - ["android.content", "ContentInterface", True, "getType", "(Uri)", "", "Parameter[0]", "contentprovider", "manual"]
+      - ["android.content", "ContentInterface", True, "insert", "(Uri,ContentValues,Bundle)", "", "Parameter[0]", "contentprovider", "manual"]
+      - ["android.content", "ContentInterface", True, "openAssetFile", "(Uri,String,CancellationSignal)", "", "Parameter[0]", "contentprovider", "manual"]
+      - ["android.content", "ContentInterface", True, "openFile", "(Uri,String,CancellationSignal)", "", "Parameter[0]", "contentprovider", "manual"]
+      - ["android.content", "ContentInterface", True, "openTypedAssetFile", "(Uri,String,Bundle,CancellationSignal)", "", "Parameter[0..2]", "contentprovider", "manual"]
+      - ["android.content", "ContentInterface", True, "query", "(Uri,String[],Bundle,CancellationSignal)", "", "Parameter[0..2]", "contentprovider", "manual"]
+      - ["android.content", "ContentInterface", True, "update", "(Uri,ContentValues,Bundle)", "", "Parameter[0..2]", "contentprovider", "manual"]
+      - ["android.content", "ContentProvider", True, "call", "(String,String,Bundle)", "", "Parameter[0..2]", "contentprovider", "manual"]
+      - ["android.content", "ContentProvider", True, "call", "(String,String,String,Bundle)", "", "Parameter[0..3]", "contentprovider", "manual"]
+      - ["android.content", "ContentProvider", True, "delete", "(Uri,Bundle)", "", "Parameter[0..1]", "contentprovider", "manual"]
+      - ["android.content", "ContentProvider", True, "delete", "(Uri,String,String[])", "", "Parameter[0..2]", "contentprovider", "manual"]
+      - ["android.content", "ContentProvider", True, "getType", "(Uri)", "", "Parameter[0]", "contentprovider", "manual"]
+      - ["android.content", "ContentProvider", True, "insert", "(Uri,ContentValues)", "", "Parameter[0..1]", "contentprovider", "manual"]
+      - ["android.content", "ContentProvider", True, "insert", "(Uri,ContentValues,Bundle)", "", "Parameter[0..2]", "contentprovider", "manual"]
+      - ["android.content", "ContentProvider", True, "openAssetFile", "(Uri,String)", "", "Parameter[0]", "contentprovider", "manual"]
+      - ["android.content", "ContentProvider", True, "openAssetFile", "(Uri,String,CancellationSignal)", "", "Parameter[0]", "contentprovider", "manual"]
+      - ["android.content", "ContentProvider", True, "openFile", "(Uri,String)", "", "Parameter[0]", "contentprovider", "manual"]
+      - ["android.content", "ContentProvider", True, "openFile", "(Uri,String,CancellationSignal)", "", "Parameter[0]", "contentprovider", "manual"]
+      - ["android.content", "ContentProvider", True, "openTypedAssetFile", "(Uri,String,Bundle)", "", "Parameter[0..2]", "contentprovider", "manual"]
+      - ["android.content", "ContentProvider", True, "openTypedAssetFile", "(Uri,String,Bundle,CancellationSignal)", "", "Parameter[0..2]", "contentprovider", "manual"]
+      - ["android.content", "ContentProvider", True, "query", "(Uri,String[],Bundle,CancellationSignal)", "", "Parameter[0..2]", "contentprovider", "manual"]
+      - ["android.content", "ContentProvider", True, "query", "(Uri,String[],String,String[],String)", "", "Parameter[0..4]", "contentprovider", "manual"]
+      - ["android.content", "ContentProvider", True, "query", "(Uri,String[],String,String[],String,CancellationSignal)", "", "Parameter[0..4]", "contentprovider", "manual"]
+      - ["android.content", "ContentProvider", True, "update", "(Uri,ContentValues,Bundle)", "", "Parameter[0..2]", "contentprovider", "manual"]
+      - ["android.content", "ContentProvider", True, "update", "(Uri,ContentValues,String,String[])", "", "Parameter[0..3]", "contentprovider", "manual"]
+      - ["android.content", "Context", True, "getExternalCacheDir", "()", "", "ReturnValue", "android-external-storage-dir", "manual"]
+      - ["android.content", "Context", True, "getExternalCacheDirs", "()", "", "ReturnValue", "android-external-storage-dir", "manual"]
+      - ["android.content", "Context", True, "getExternalFilesDir", "(String)", "", "ReturnValue", "android-external-storage-dir", "manual"]
+      - ["android.content", "Context", True, "getExternalFilesDirs", "(String)", "", "ReturnValue", "android-external-storage-dir", "manual"]
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSinkModel
+    data:
+      - ["android.content", "ContentProvider", True, "delete", "(Uri,String,String[])", "", "Argument[1]", "sql", "manual"]
+      - ["android.content", "ContentProvider", True, "query", "(Uri,String[],String,String[],String)", "", "Argument[2]", "sql", "manual"]
+      - ["android.content", "ContentProvider", True, "query", "(Uri,String[],String,String[],String,CancellationSignal)", "", "Argument[2]", "sql", "manual"]
+      - ["android.content", "ContentProvider", True, "update", "(Uri,ContentValues,String,String[])", "", "Argument[2]", "sql", "manual"]
+      - ["android.content", "ContentResolver", True, "delete", "(Uri,String,String[])", "", "Argument[1]", "sql", "manual"]
+      - ["android.content", "ContentResolver", True, "query", "(Uri,String[],String,String[],String)", "", "Argument[2]", "sql", "manual"]
+      - ["android.content", "ContentResolver", True, "query", "(Uri,String[],String,String[],String,CancellationSignal)", "", "Argument[2]", "sql", "manual"]
+      - ["android.content", "ContentResolver", True, "update", "(Uri,ContentValues,String,String[])", "", "Argument[2]", "sql", "manual"]
+      - ["android.content", "Context", True, "sendBroadcast", "", "", "Argument[0]", "intent-start", "manual"]
+      - ["android.content", "Context", True, "sendBroadcastAsUser", "", "", "Argument[0]", "intent-start", "manual"]
+      - ["android.content", "Context", True, "sendBroadcastWithMultiplePermissions", "", "", "Argument[0]", "intent-start", "manual"]
+      - ["android.content", "Context", True, "sendStickyBroadcast", "", "", "Argument[0]", "intent-start", "manual"]
+      - ["android.content", "Context", True, "sendStickyBroadcastAsUser", "", "", "Argument[0]", "intent-start", "manual"]
+      - ["android.content", "Context", True, "sendStickyOrderedBroadcast", "", "", "Argument[0]", "intent-start", "manual"]
+      - ["android.content", "Context", True, "sendStickyOrderedBroadcastAsUser", "", "", "Argument[0]", "intent-start", "manual"]
+      - ["android.content", "Context", True, "startActivities", "", "", "Argument[0]", "intent-start", "manual"]
+      - ["android.content", "Context", True, "startActivity", "", "", "Argument[0]", "intent-start", "manual"]
+      - ["android.content", "Context", True, "startActivityAsUser", "", "", "Argument[0]", "intent-start", "manual"]
+      - ["android.content", "Context", True, "startActivityFromChild", "", "", "Argument[1]", "intent-start", "manual"]
+      - ["android.content", "Context", True, "startActivityFromFragment", "", "", "Argument[1]", "intent-start", "manual"]
+      - ["android.content", "Context", True, "startActivityIfNeeded", "", "", "Argument[0]", "intent-start", "manual"]
+      - ["android.content", "Context", True, "startForegroundService", "", "", "Argument[0]", "intent-start", "manual"]
+      - ["android.content", "Context", True, "startService", "", "", "Argument[0]", "intent-start", "manual"]
+      - ["android.content", "Context", True, "startServiceAsUser", "", "", "Argument[0]", "intent-start", "manual"]
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSummaryModel
+    data:
+      - ["android.content", "ComponentName", False, "ComponentName", "(Context,Class)", "", "Argument[1]", "Argument[-1]", "taint", "manual"]
+      - ["android.content", "ComponentName", False, "ComponentName", "(Context,String)", "", "Argument[1]", "Argument[-1]", "taint", "manual"]
+      - ["android.content", "ComponentName", False, "ComponentName", "(Parcel)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["android.content", "ComponentName", False, "ComponentName", "(String,String)", "", "Argument[0..1]", "Argument[-1]", "taint", "manual"]
+      - ["android.content", "ComponentName", False, "createRelative", "(Context,String)", "", "Argument[1]", "ReturnValue", "taint", "manual"]
+      - ["android.content", "ComponentName", False, "createRelative", "(String,String)", "", "Argument[0..1]", "ReturnValue", "taint", "manual"]
+      - ["android.content", "ComponentName", False, "flattenToShortString", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["android.content", "ComponentName", False, "flattenToString", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["android.content", "ComponentName", False, "getClassName", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["android.content", "ComponentName", False, "getPackageName", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["android.content", "ComponentName", False, "getShortClassName", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["android.content", "ComponentName", False, "unflattenFromString", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["android.content", "ContentProvider", True, "query", "(Uri,String[],String,String[],String)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["android.content", "ContentProvider", True, "query", "(Uri,String[],String,String[],String,CancellationSignal)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["android.content", "ContentProviderClient", True, "applyBatch", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["android.content", "ContentProviderClient", True, "call", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["android.content", "ContentProviderClient", True, "canonicalize", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["android.content", "ContentProviderClient", True, "getLocalContentProvider", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["android.content", "ContentProviderClient", True, "getStreamTypes", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["android.content", "ContentProviderClient", True, "insert", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["android.content", "ContentProviderClient", True, "query", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["android.content", "ContentProviderClient", True, "uncanonicalize", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["android.content", "ContentProviderOperation", False, "apply", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["android.content", "ContentProviderOperation", False, "apply", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["android.content", "ContentProviderOperation", False, "getUri", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["android.content", "ContentProviderOperation", False, "newAssertQuery", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["android.content", "ContentProviderOperation", False, "newCall", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["android.content", "ContentProviderOperation", False, "newDelete", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["android.content", "ContentProviderOperation", False, "newInsert", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["android.content", "ContentProviderOperation", False, "newUpdate", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["android.content", "ContentProviderOperation", False, "resolveExtrasBackReferences", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["android.content", "ContentProviderOperation", False, "resolveSelectionArgsBackReferences", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["android.content", "ContentProviderOperation", False, "resolveValueBackReferences", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["android.content", "ContentProviderOperation$Builder", False, "build", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["android.content", "ContentProviderOperation$Builder", False, "withExceptionAllowed", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["android.content", "ContentProviderOperation$Builder", False, "withExpectedCount", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["android.content", "ContentProviderOperation$Builder", False, "withExtra", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["android.content", "ContentProviderOperation$Builder", False, "withExtraBackReference", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["android.content", "ContentProviderOperation$Builder", False, "withExtras", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["android.content", "ContentProviderOperation$Builder", False, "withSelection", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["android.content", "ContentProviderOperation$Builder", False, "withSelectionBackReference", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["android.content", "ContentProviderOperation$Builder", False, "withValue", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["android.content", "ContentProviderOperation$Builder", False, "withValueBackReference", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["android.content", "ContentProviderOperation$Builder", False, "withValues", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["android.content", "ContentProviderOperation$Builder", False, "withYieldAllowed", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["android.content", "ContentProviderResult", False, "ContentProviderResult", "(Bundle)", "", "Argument[0]", "Argument[-1].Field[android.content.ContentProviderResult.extras]", "value", "manual"]
+      - ["android.content", "ContentProviderResult", False, "ContentProviderResult", "(Parcel)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["android.content", "ContentProviderResult", False, "ContentProviderResult", "(Throwable)", "", "Argument[0]", "Argument[-1].Field[android.content.ContentProviderResult.exception]", "value", "manual"]
+      - ["android.content", "ContentProviderResult", False, "ContentProviderResult", "(Uri)", "", "Argument[0]", "Argument[-1].Field[android.content.ContentProviderResult.uri]", "value", "manual"]
+      - ["android.content", "ContentResolver", True, "acquireContentProviderClient", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["android.content", "ContentResolver", True, "acquireUnstableContentProviderClient", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["android.content", "ContentResolver", True, "applyBatch", "", "", "Argument[1]", "ReturnValue", "taint", "manual"]
+      - ["android.content", "ContentResolver", True, "call", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["android.content", "ContentResolver", True, "canonicalize", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["android.content", "ContentResolver", True, "getStreamTypes", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["android.content", "ContentResolver", True, "getType", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["android.content", "ContentResolver", True, "insert", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["android.content", "ContentResolver", True, "query", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["android.content", "ContentResolver", True, "query", "(Uri,String[],String,String[],String)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["android.content", "ContentResolver", True, "query", "(Uri,String[],String,String[],String,CancellationSignal)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["android.content", "ContentResolver", True, "uncanonicalize", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["android.content", "ContentResolver", True, "wrap", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["android.content", "ContentValues", False, "put", "", "", "Argument[0]", "Argument[-1].MapKey", "value", "manual"]
+      - ["android.content", "ContentValues", False, "put", "", "", "Argument[1]", "Argument[-1].MapValue", "value", "manual"]
+      - ["android.content", "ContentValues", False, "putAll", "", "", "Argument[0].MapKey", "Argument[-1].MapKey", "value", "manual"]
+      - ["android.content", "ContentValues", False, "putAll", "", "", "Argument[0].MapValue", "Argument[-1].MapValue", "value", "manual"]
+      - ["android.content", "Intent", True, "Intent", "(Context,Class)", "", "Argument[1]", "Argument[-1]", "taint", "manual"]
+      - ["android.content", "Intent", True, "Intent", "(Intent)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["android.content", "Intent", False, "Intent", "(Intent)", "", "Argument[0].SyntheticField[android.content.Intent.extras].MapKey", "Argument[-1].SyntheticField[android.content.Intent.extras].MapKey", "value", "manual"]
+      - ["android.content", "Intent", False, "Intent", "(Intent)", "", "Argument[0].SyntheticField[android.content.Intent.extras].MapValue", "Argument[-1].SyntheticField[android.content.Intent.extras].MapValue", "value", "manual"]
+      - ["android.content", "Intent", False, "Intent", "(String,Uri)", "", "Argument[1]", "Argument[-1].SyntheticField[android.content.Intent.data]", "value", "manual"]
+      - ["android.content", "Intent", False, "Intent", "(String,Uri,Context,Class)", "", "Argument[1]", "Argument[-1].SyntheticField[android.content.Intent.data]", "value", "manual"]
+      - ["android.content", "Intent", True, "Intent", "(String,Uri,Context,Class)", "", "Argument[3]", "Argument[-1]", "taint", "manual"]
+      - ["android.content", "Intent", True, "addCategory", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["android.content", "Intent", True, "addFlags", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["android.content", "Intent", False, "createChooser", "", "", "Argument[0..2]", "ReturnValue.SyntheticField[android.content.Intent.extras].MapValue", "value", "manual"]
+      - ["android.content", "Intent", True, "getBundleExtra", "(String)", "", "Argument[-1].SyntheticField[android.content.Intent.extras].MapValue", "ReturnValue", "value", "manual"]
+      - ["android.content", "Intent", True, "getByteArrayExtra", "(String)", "", "Argument[-1].SyntheticField[android.content.Intent.extras].MapValue", "ReturnValue", "value", "manual"]
+      - ["android.content", "Intent", True, "getCharArrayExtra", "(String)", "", "Argument[-1].SyntheticField[android.content.Intent.extras].MapValue", "ReturnValue", "value", "manual"]
+      - ["android.content", "Intent", True, "getCharSequenceArrayExtra", "(String)", "", "Argument[-1].SyntheticField[android.content.Intent.extras].MapValue", "ReturnValue", "value", "manual"]
+      - ["android.content", "Intent", True, "getCharSequenceArrayListExtra", "(String)", "", "Argument[-1].SyntheticField[android.content.Intent.extras].MapValue", "ReturnValue", "value", "manual"]
+      - ["android.content", "Intent", True, "getCharSequenceExtra", "(String)", "", "Argument[-1].SyntheticField[android.content.Intent.extras].MapValue", "ReturnValue", "value", "manual"]
+      - ["android.content", "Intent", True, "getData", "", "", "Argument[-1].SyntheticField[android.content.Intent.data]", "ReturnValue", "value", "manual"]
+      - ["android.content", "Intent", True, "getDataString", "", "", "Argument[-1].SyntheticField[android.content.Intent.data]", "ReturnValue", "taint", "manual"]
+      - ["android.content", "Intent", True, "getExtras", "()", "", "Argument[-1].SyntheticField[android.content.Intent.extras]", "ReturnValue", "value", "manual"]
+      - ["android.content", "Intent", False, "getIntent", "", "", "Argument[0]", "ReturnValue.SyntheticField[android.content.Intent.data]", "taint", "manual"]
+      - ["android.content", "Intent", True, "getIntent", "(String)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["android.content", "Intent", False, "getIntentOld", "", "", "Argument[0]", "ReturnValue.SyntheticField[android.content.Intent.data]", "taint", "manual"]
+      - ["android.content", "Intent", True, "getIntentOld", "(String)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["android.content", "Intent", True, "getParcelableArrayExtra", "(String)", "", "Argument[-1].SyntheticField[android.content.Intent.extras].MapValue", "ReturnValue", "value", "manual"]
+      - ["android.content", "Intent", True, "getParcelableArrayListExtra", "(String)", "", "Argument[-1].SyntheticField[android.content.Intent.extras].MapValue", "ReturnValue", "value", "manual"]
+      - ["android.content", "Intent", True, "getParcelableExtra", "(String)", "", "Argument[-1].SyntheticField[android.content.Intent.extras].MapValue", "ReturnValue", "value", "manual"]
+      - ["android.content", "Intent", True, "getSerializableExtra", "(String)", "", "Argument[-1].SyntheticField[android.content.Intent.extras].MapValue", "ReturnValue", "value", "manual"]
+      - ["android.content", "Intent", True, "getStringArrayExtra", "(String)", "", "Argument[-1].SyntheticField[android.content.Intent.extras].MapValue", "ReturnValue", "value", "manual"]
+      - ["android.content", "Intent", True, "getStringArrayListExtra", "(String)", "", "Argument[-1].SyntheticField[android.content.Intent.extras].MapValue", "ReturnValue", "value", "manual"]
+      - ["android.content", "Intent", True, "getStringExtra", "(String)", "", "Argument[-1].SyntheticField[android.content.Intent.extras].MapValue", "ReturnValue", "value", "manual"]
+      - ["android.content", "Intent", False, "parseUri", "", "", "Argument[0]", "ReturnValue.SyntheticField[android.content.Intent.data]", "taint", "manual"]
+      - ["android.content", "Intent", True, "parseUri", "(String,int)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["android.content", "Intent", True, "putCharSequenceArrayListExtra", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["android.content", "Intent", True, "putCharSequenceArrayListExtra", "", "", "Argument[0]", "Argument[-1].SyntheticField[android.content.Intent.extras].MapKey", "value", "manual"]
+      - ["android.content", "Intent", True, "putCharSequenceArrayListExtra", "", "", "Argument[1]", "Argument[-1].SyntheticField[android.content.Intent.extras].MapValue", "value", "manual"]
+      - ["android.content", "Intent", True, "putExtra", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["android.content", "Intent", True, "putExtra", "", "", "Argument[0]", "Argument[-1].SyntheticField[android.content.Intent.extras].MapKey", "value", "manual"]
+      - ["android.content", "Intent", True, "putExtra", "", "", "Argument[1]", "Argument[-1].SyntheticField[android.content.Intent.extras].MapValue", "value", "manual"]
+      - ["android.content", "Intent", True, "putExtras", "(Bundle)", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["android.content", "Intent", True, "putExtras", "(Bundle)", "", "Argument[0].MapKey", "Argument[-1].SyntheticField[android.content.Intent.extras].MapKey", "value", "manual"]
+      - ["android.content", "Intent", True, "putExtras", "(Bundle)", "", "Argument[0].MapValue", "Argument[-1].SyntheticField[android.content.Intent.extras].MapValue", "value", "manual"]
+      - ["android.content", "Intent", True, "putExtras", "(Intent)", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["android.content", "Intent", True, "putExtras", "(Intent)", "", "Argument[0].SyntheticField[android.content.Intent.extras].MapKey", "Argument[-1].SyntheticField[android.content.Intent.extras].MapKey", "value", "manual"]
+      - ["android.content", "Intent", True, "putExtras", "(Intent)", "", "Argument[0].SyntheticField[android.content.Intent.extras].MapValue", "Argument[-1].SyntheticField[android.content.Intent.extras].MapValue", "value", "manual"]
+      - ["android.content", "Intent", True, "putIntegerArrayListExtra", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["android.content", "Intent", True, "putIntegerArrayListExtra", "", "", "Argument[0]", "Argument[-1].SyntheticField[android.content.Intent.extras].MapKey", "value", "manual"]
+      - ["android.content", "Intent", True, "putParcelableArrayListExtra", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["android.content", "Intent", True, "putParcelableArrayListExtra", "", "", "Argument[0]", "Argument[-1].SyntheticField[android.content.Intent.extras].MapKey", "value", "manual"]
+      - ["android.content", "Intent", True, "putParcelableArrayListExtra", "", "", "Argument[1]", "Argument[-1].SyntheticField[android.content.Intent.extras].MapValue", "value", "manual"]
+      - ["android.content", "Intent", True, "putStringArrayListExtra", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["android.content", "Intent", True, "putStringArrayListExtra", "", "", "Argument[0]", "Argument[-1].SyntheticField[android.content.Intent.extras].MapKey", "value", "manual"]
+      - ["android.content", "Intent", True, "putStringArrayListExtra", "", "", "Argument[1]", "Argument[-1].SyntheticField[android.content.Intent.extras].MapValue", "value", "manual"]
+      - ["android.content", "Intent", True, "replaceExtras", "(Bundle)", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["android.content", "Intent", True, "replaceExtras", "(Bundle)", "", "Argument[0].MapKey", "Argument[-1].SyntheticField[android.content.Intent.extras].MapKey", "value", "manual"]
+      - ["android.content", "Intent", True, "replaceExtras", "(Bundle)", "", "Argument[0].MapValue", "Argument[-1].SyntheticField[android.content.Intent.extras].MapValue", "value", "manual"]
+      - ["android.content", "Intent", True, "replaceExtras", "(Intent)", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["android.content", "Intent", True, "replaceExtras", "(Intent)", "", "Argument[0].SyntheticField[android.content.Intent.extras].MapKey", "Argument[-1].SyntheticField[android.content.Intent.extras].MapKey", "value", "manual"]
+      - ["android.content", "Intent", True, "replaceExtras", "(Intent)", "", "Argument[0].SyntheticField[android.content.Intent.extras].MapValue", "Argument[-1].SyntheticField[android.content.Intent.extras].MapValue", "value", "manual"]
+      - ["android.content", "Intent", True, "setAction", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["android.content", "Intent", True, "setClass", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["android.content", "Intent", True, "setClass", "", "", "Argument[1]", "Argument[-1]", "taint", "manual"]
+      - ["android.content", "Intent", True, "setClassName", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["android.content", "Intent", True, "setClassName", "(Context,String)", "", "Argument[1]", "Argument[-1]", "taint", "manual"]
+      - ["android.content", "Intent", True, "setClassName", "(String,String)", "", "Argument[0..1]", "Argument[-1]", "taint", "manual"]
+      - ["android.content", "Intent", True, "setComponent", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["android.content", "Intent", True, "setComponent", "", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["android.content", "Intent", True, "setData", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["android.content", "Intent", True, "setData", "", "", "Argument[0]", "Argument[-1].SyntheticField[android.content.Intent.data]", "value", "manual"]
+      - ["android.content", "Intent", True, "setDataAndNormalize", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["android.content", "Intent", True, "setDataAndNormalize", "", "", "Argument[0]", "Argument[-1].SyntheticField[android.content.Intent.data]", "value", "manual"]
+      - ["android.content", "Intent", True, "setDataAndType", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["android.content", "Intent", True, "setDataAndType", "", "", "Argument[0]", "Argument[-1].SyntheticField[android.content.Intent.data]", "value", "manual"]
+      - ["android.content", "Intent", True, "setDataAndTypeAndNormalize", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["android.content", "Intent", True, "setDataAndTypeAndNormalize", "", "", "Argument[0]", "Argument[-1].SyntheticField[android.content.Intent.data]", "value", "manual"]
+      - ["android.content", "Intent", True, "setFlags", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["android.content", "Intent", True, "setIdentifier", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["android.content", "Intent", True, "setPackage", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["android.content", "Intent", True, "setPackage", "", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["android.content", "Intent", True, "setType", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["android.content", "Intent", True, "setTypeAndNormalize", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["android.content", "SharedPreferences$Editor", True, "clear", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["android.content", "SharedPreferences$Editor", True, "putBoolean", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["android.content", "SharedPreferences$Editor", True, "putFloat", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["android.content", "SharedPreferences$Editor", True, "putInt", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["android.content", "SharedPreferences$Editor", True, "putLong", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["android.content", "SharedPreferences$Editor", True, "putString", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["android.content", "SharedPreferences$Editor", True, "putStringSet", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["android.content", "SharedPreferences$Editor", True, "remove", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
diff --git a/java/ql/lib/ext/android.database.model.yml b/java/ql/lib/ext/android.database.model.yml
new file mode 100644
index 00000000000..11aa4a46f74
--- /dev/null
+++ b/java/ql/lib/ext/android.database.model.yml
@@ -0,0 +1,27 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSinkModel
+    data:
+      - ["android.database", "DatabaseUtils", False, "blobFileDescriptorForQuery", "(SQLiteDatabase,String,String[])", "", "Argument[1]", "sql", "manual"]
+      - ["android.database", "DatabaseUtils", False, "createDbFromSqlStatements", "(Context,String,int,String)", "", "Argument[3]", "sql", "manual"]
+      - ["android.database", "DatabaseUtils", False, "longForQuery", "(SQLiteDatabase,String,String[])", "", "Argument[1]", "sql", "manual"]
+      - ["android.database", "DatabaseUtils", False, "queryNumEntries", "(SQLiteDatabase,String)", "", "Argument[1]", "sql", "manual"]
+      - ["android.database", "DatabaseUtils", False, "queryNumEntries", "(SQLiteDatabase,String,String)", "", "Argument[1..2]", "sql", "manual"]
+      - ["android.database", "DatabaseUtils", False, "queryNumEntries", "(SQLiteDatabase,String,String,String[])", "", "Argument[1..2]", "sql", "manual"]
+      - ["android.database", "DatabaseUtils", False, "stringForQuery", "(SQLiteDatabase,String,String[])", "", "Argument[1]", "sql", "manual"]
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSummaryModel
+    data:
+      - ["android.database", "Cursor", True, "copyStringToBuffer", "", "", "Argument[-1]", "Argument[1]", "taint", "manual"]
+      - ["android.database", "Cursor", True, "getBlob", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["android.database", "Cursor", True, "getColumnName", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["android.database", "Cursor", True, "getColumnNames", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["android.database", "Cursor", True, "getExtras", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["android.database", "Cursor", True, "getNotificationUri", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["android.database", "Cursor", True, "getNotificationUris", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["android.database", "Cursor", True, "getString", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["android.database", "Cursor", True, "respond", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["android.database", "DatabaseUtils", False, "appendSelectionArgs", "(String[],String[])", "", "Argument[0..1].ArrayElement", "ReturnValue.ArrayElement", "taint", "manual"]
+      - ["android.database", "DatabaseUtils", False, "concatenateWhere", "(String,String)", "", "Argument[0..1]", "ReturnValue", "taint", "manual"]
diff --git a/java/ql/lib/ext/android.database.sqlite.model.yml b/java/ql/lib/ext/android.database.sqlite.model.yml
new file mode 100644
index 00000000000..09f5b803661
--- /dev/null
+++ b/java/ql/lib/ext/android.database.sqlite.model.yml
@@ -0,0 +1,89 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSinkModel
+    data:
+      - ["android.database.sqlite", "SQLiteDatabase", False, "compileStatement", "(String)", "", "Argument[0]", "sql", "manual"]
+      - ["android.database.sqlite", "SQLiteDatabase", False, "delete", "(String,String,String[])", "", "Argument[0..1]", "sql", "manual"]
+      - ["android.database.sqlite", "SQLiteDatabase", False, "execPerConnectionSQL", "(String,Object[])", "", "Argument[0]", "sql", "manual"]
+      - ["android.database.sqlite", "SQLiteDatabase", False, "execSQL", "(String)", "", "Argument[0]", "sql", "manual"]
+      - ["android.database.sqlite", "SQLiteDatabase", False, "execSQL", "(String,Object[])", "", "Argument[0]", "sql", "manual"]
+      - ["android.database.sqlite", "SQLiteDatabase", False, "query", "(String,String[],String,String[],String,String,String)", "", "Argument[0..2]", "sql", "manual"]
+      - ["android.database.sqlite", "SQLiteDatabase", False, "query", "(String,String[],String,String[],String,String,String)", "", "Argument[4..6]", "sql", "manual"]
+      - ["android.database.sqlite", "SQLiteDatabase", False, "query", "(String,String[],String,String[],String,String,String,String)", "", "Argument[0]", "sql", "manual"]
+      - ["android.database.sqlite", "SQLiteDatabase", False, "query", "(String,String[],String,String[],String,String,String,String)", "", "Argument[1]", "sql", "manual"]
+      - ["android.database.sqlite", "SQLiteDatabase", False, "query", "(String,String[],String,String[],String,String,String,String)", "", "Argument[2]", "sql", "manual"]
+      - ["android.database.sqlite", "SQLiteDatabase", False, "query", "(String,String[],String,String[],String,String,String,String)", "", "Argument[4..7]", "sql", "manual"]
+      - ["android.database.sqlite", "SQLiteDatabase", False, "query", "(boolean,String,String[],String,String[],String,String,String,String)", "", "Argument[1]", "sql", "manual"]
+      - ["android.database.sqlite", "SQLiteDatabase", False, "query", "(boolean,String,String[],String,String[],String,String,String,String)", "", "Argument[2]", "sql", "manual"]
+      - ["android.database.sqlite", "SQLiteDatabase", False, "query", "(boolean,String,String[],String,String[],String,String,String,String)", "", "Argument[3]", "sql", "manual"]
+      - ["android.database.sqlite", "SQLiteDatabase", False, "query", "(boolean,String,String[],String,String[],String,String,String,String)", "", "Argument[5..8]", "sql", "manual"]
+      - ["android.database.sqlite", "SQLiteDatabase", False, "query", "(boolean,String,String[],String,String[],String,String,String,String,CancellationSignal)", "", "Argument[1]", "sql", "manual"]
+      - ["android.database.sqlite", "SQLiteDatabase", False, "query", "(boolean,String,String[],String,String[],String,String,String,String,CancellationSignal)", "", "Argument[2]", "sql", "manual"]
+      - ["android.database.sqlite", "SQLiteDatabase", False, "query", "(boolean,String,String[],String,String[],String,String,String,String,CancellationSignal)", "", "Argument[3]", "sql", "manual"]
+      - ["android.database.sqlite", "SQLiteDatabase", False, "query", "(boolean,String,String[],String,String[],String,String,String,String,CancellationSignal)", "", "Argument[5..8]", "sql", "manual"]
+      - ["android.database.sqlite", "SQLiteDatabase", False, "queryWithFactory", "(CursorFactory,boolean,String,String[],String,String[],String,String,String,String)", "", "Argument[2]", "sql", "manual"]
+      - ["android.database.sqlite", "SQLiteDatabase", False, "queryWithFactory", "(CursorFactory,boolean,String,String[],String,String[],String,String,String,String)", "", "Argument[3]", "sql", "manual"]
+      - ["android.database.sqlite", "SQLiteDatabase", False, "queryWithFactory", "(CursorFactory,boolean,String,String[],String,String[],String,String,String,String)", "", "Argument[4]", "sql", "manual"]
+      - ["android.database.sqlite", "SQLiteDatabase", False, "queryWithFactory", "(CursorFactory,boolean,String,String[],String,String[],String,String,String,String)", "", "Argument[6..9]", "sql", "manual"]
+      - ["android.database.sqlite", "SQLiteDatabase", False, "queryWithFactory", "(CursorFactory,boolean,String,String[],String,String[],String,String,String,String,CancellationSignal)", "", "Argument[2]", "sql", "manual"]
+      - ["android.database.sqlite", "SQLiteDatabase", False, "queryWithFactory", "(CursorFactory,boolean,String,String[],String,String[],String,String,String,String,CancellationSignal)", "", "Argument[3]", "sql", "manual"]
+      - ["android.database.sqlite", "SQLiteDatabase", False, "queryWithFactory", "(CursorFactory,boolean,String,String[],String,String[],String,String,String,String,CancellationSignal)", "", "Argument[4]", "sql", "manual"]
+      - ["android.database.sqlite", "SQLiteDatabase", False, "queryWithFactory", "(CursorFactory,boolean,String,String[],String,String[],String,String,String,String,CancellationSignal)", "", "Argument[6..9]", "sql", "manual"]
+      - ["android.database.sqlite", "SQLiteDatabase", False, "rawQuery", "(String,String[])", "", "Argument[0]", "sql", "manual"]
+      - ["android.database.sqlite", "SQLiteDatabase", False, "rawQuery", "(String,String[],CancellationSignal)", "", "Argument[0]", "sql", "manual"]
+      - ["android.database.sqlite", "SQLiteDatabase", False, "rawQueryWithFactory", "(CursorFactory,String,String[],String)", "", "Argument[1]", "sql", "manual"]
+      - ["android.database.sqlite", "SQLiteDatabase", False, "rawQueryWithFactory", "(CursorFactory,String,String[],String,CancellationSignal)", "", "Argument[1]", "sql", "manual"]
+      - ["android.database.sqlite", "SQLiteDatabase", False, "update", "(String,ContentValues,String,String[])", "", "Argument[0]", "sql", "manual"]
+      - ["android.database.sqlite", "SQLiteDatabase", False, "update", "(String,ContentValues,String,String[])", "", "Argument[2]", "sql", "manual"]
+      - ["android.database.sqlite", "SQLiteDatabase", False, "updateWithOnConflict", "(String,ContentValues,String,String[],int)", "", "Argument[0]", "sql", "manual"]
+      - ["android.database.sqlite", "SQLiteDatabase", False, "updateWithOnConflict", "(String,ContentValues,String,String[],int)", "", "Argument[2]", "sql", "manual"]
+      - ["android.database.sqlite", "SQLiteQueryBuilder", True, "delete", "(SQLiteDatabase,String,String[])", "", "Argument[-1]", "sql", "manual"]
+      - ["android.database.sqlite", "SQLiteQueryBuilder", True, "delete", "(SQLiteDatabase,String,String[])", "", "Argument[1]", "sql", "manual"]
+      - ["android.database.sqlite", "SQLiteQueryBuilder", True, "insert", "(SQLiteDatabase,ContentValues)", "", "Argument[-1]", "sql", "manual"]
+      - ["android.database.sqlite", "SQLiteQueryBuilder", True, "query", "(SQLiteDatabase,String[],String,String[],String,String,String)", "", "Argument[-1]", "sql", "manual"]
+      - ["android.database.sqlite", "SQLiteQueryBuilder", True, "query", "(SQLiteDatabase,String[],String,String[],String,String,String)", "", "Argument[1]", "sql", "manual"]
+      - ["android.database.sqlite", "SQLiteQueryBuilder", True, "query", "(SQLiteDatabase,String[],String,String[],String,String,String)", "", "Argument[2]", "sql", "manual"]
+      - ["android.database.sqlite", "SQLiteQueryBuilder", True, "query", "(SQLiteDatabase,String[],String,String[],String,String,String)", "", "Argument[4..6]", "sql", "manual"]
+      - ["android.database.sqlite", "SQLiteQueryBuilder", True, "query", "(SQLiteDatabase,String[],String,String[],String,String,String,String)", "", "Argument[-1]", "sql", "manual"]
+      - ["android.database.sqlite", "SQLiteQueryBuilder", True, "query", "(SQLiteDatabase,String[],String,String[],String,String,String,String)", "", "Argument[1]", "sql", "manual"]
+      - ["android.database.sqlite", "SQLiteQueryBuilder", True, "query", "(SQLiteDatabase,String[],String,String[],String,String,String,String)", "", "Argument[2]", "sql", "manual"]
+      - ["android.database.sqlite", "SQLiteQueryBuilder", True, "query", "(SQLiteDatabase,String[],String,String[],String,String,String,String)", "", "Argument[4..7]", "sql", "manual"]
+      - ["android.database.sqlite", "SQLiteQueryBuilder", True, "query", "(SQLiteDatabase,String[],String,String[],String,String,String,String,CancellationSignal)", "", "Argument[-1]", "sql", "manual"]
+      - ["android.database.sqlite", "SQLiteQueryBuilder", True, "query", "(SQLiteDatabase,String[],String,String[],String,String,String,String,CancellationSignal)", "", "Argument[1]", "sql", "manual"]
+      - ["android.database.sqlite", "SQLiteQueryBuilder", True, "query", "(SQLiteDatabase,String[],String,String[],String,String,String,String,CancellationSignal)", "", "Argument[2]", "sql", "manual"]
+      - ["android.database.sqlite", "SQLiteQueryBuilder", True, "query", "(SQLiteDatabase,String[],String,String[],String,String,String,String,CancellationSignal)", "", "Argument[4..7]", "sql", "manual"]
+      - ["android.database.sqlite", "SQLiteQueryBuilder", True, "update", "(SQLiteDatabase,ContentValues,String,String[])", "", "Argument[-1]", "sql", "manual"]
+      - ["android.database.sqlite", "SQLiteQueryBuilder", True, "update", "(SQLiteDatabase,ContentValues,String,String[])", "", "Argument[2]", "sql", "manual"]
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSummaryModel
+    data:
+      - ["android.database.sqlite", "SQLiteQueryBuilder", True, "appendColumns", "(StringBuilder,String[])", "", "Argument[1].ArrayElement", "Argument[0]", "taint", "manual"]
+      - ["android.database.sqlite", "SQLiteQueryBuilder", True, "appendWhere", "(CharSequence)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["android.database.sqlite", "SQLiteQueryBuilder", True, "appendWhereStandalone", "(CharSequence)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["android.database.sqlite", "SQLiteQueryBuilder", True, "buildQuery", "(String[],String,String,String,String,String)", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["android.database.sqlite", "SQLiteQueryBuilder", True, "buildQuery", "(String[],String,String,String,String,String)", "", "Argument[0].ArrayElement", "ReturnValue", "taint", "manual"]
+      - ["android.database.sqlite", "SQLiteQueryBuilder", True, "buildQuery", "(String[],String,String,String,String,String)", "", "Argument[1..5]", "ReturnValue", "taint", "manual"]
+      - ["android.database.sqlite", "SQLiteQueryBuilder", True, "buildQuery", "(String[],String,String[],String,String,String,String)", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["android.database.sqlite", "SQLiteQueryBuilder", True, "buildQuery", "(String[],String,String[],String,String,String,String)", "", "Argument[0].ArrayElement", "ReturnValue", "taint", "manual"]
+      - ["android.database.sqlite", "SQLiteQueryBuilder", True, "buildQuery", "(String[],String,String[],String,String,String,String)", "", "Argument[1]", "ReturnValue", "taint", "manual"]
+      - ["android.database.sqlite", "SQLiteQueryBuilder", True, "buildQuery", "(String[],String,String[],String,String,String,String)", "", "Argument[3..6]", "ReturnValue", "taint", "manual"]
+      - ["android.database.sqlite", "SQLiteQueryBuilder", True, "buildQueryString", "(boolean,String,String[],String,String,String,String,String)", "", "Argument[1]", "ReturnValue", "taint", "manual"]
+      - ["android.database.sqlite", "SQLiteQueryBuilder", True, "buildQueryString", "(boolean,String,String[],String,String,String,String,String)", "", "Argument[2].ArrayElement", "ReturnValue", "taint", "manual"]
+      - ["android.database.sqlite", "SQLiteQueryBuilder", True, "buildQueryString", "(boolean,String,String[],String,String,String,String,String)", "", "Argument[3..7]", "ReturnValue", "taint", "manual"]
+      - ["android.database.sqlite", "SQLiteQueryBuilder", True, "buildUnionQuery", "(String[],String,String)", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["android.database.sqlite", "SQLiteQueryBuilder", True, "buildUnionQuery", "(String[],String,String)", "", "Argument[0].ArrayElement", "ReturnValue", "taint", "manual"]
+      - ["android.database.sqlite", "SQLiteQueryBuilder", True, "buildUnionQuery", "(String[],String,String)", "", "Argument[1..2]", "ReturnValue", "taint", "manual"]
+      - ["android.database.sqlite", "SQLiteQueryBuilder", True, "buildUnionSubQuery", "(String,String[],Set,int,String,String,String,String)", "", "Argument[-1..0]", "ReturnValue", "taint", "manual"]
+      - ["android.database.sqlite", "SQLiteQueryBuilder", True, "buildUnionSubQuery", "(String,String[],Set,int,String,String,String,String)", "", "Argument[1].ArrayElement", "ReturnValue", "taint", "manual"]
+      - ["android.database.sqlite", "SQLiteQueryBuilder", True, "buildUnionSubQuery", "(String,String[],Set,int,String,String,String,String)", "", "Argument[2].Element", "ReturnValue", "taint", "manual"]
+      - ["android.database.sqlite", "SQLiteQueryBuilder", True, "buildUnionSubQuery", "(String,String[],Set,int,String,String,String,String)", "", "Argument[4..7]", "ReturnValue", "taint", "manual"]
+      - ["android.database.sqlite", "SQLiteQueryBuilder", True, "buildUnionSubQuery", "(String,String[],Set,int,String,String,String[],String,String)", "", "Argument[-1..0]", "ReturnValue", "taint", "manual"]
+      - ["android.database.sqlite", "SQLiteQueryBuilder", True, "buildUnionSubQuery", "(String,String[],Set,int,String,String,String[],String,String)", "", "Argument[1].ArrayElement", "ReturnValue", "taint", "manual"]
+      - ["android.database.sqlite", "SQLiteQueryBuilder", True, "buildUnionSubQuery", "(String,String[],Set,int,String,String,String[],String,String)", "", "Argument[2].Element", "ReturnValue", "taint", "manual"]
+      - ["android.database.sqlite", "SQLiteQueryBuilder", True, "buildUnionSubQuery", "(String,String[],Set,int,String,String,String[],String,String)", "", "Argument[4..5]", "ReturnValue", "taint", "manual"]
+      - ["android.database.sqlite", "SQLiteQueryBuilder", True, "buildUnionSubQuery", "(String,String[],Set,int,String,String,String[],String,String)", "", "Argument[7..8]", "ReturnValue", "taint", "manual"]
+      - ["android.database.sqlite", "SQLiteQueryBuilder", True, "setProjectionMap", "(Map)", "", "Argument[0].MapKey", "Argument[-1]", "taint", "manual"]
+      - ["android.database.sqlite", "SQLiteQueryBuilder", True, "setProjectionMap", "(Map)", "", "Argument[0].MapValue", "Argument[-1]", "taint", "manual"]
+      - ["android.database.sqlite", "SQLiteQueryBuilder", True, "setTables", "(String)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
diff --git a/java/ql/lib/ext/android.net.model.yml b/java/ql/lib/ext/android.net.model.yml
new file mode 100644
index 00000000000..222ef1e0a2e
--- /dev/null
+++ b/java/ql/lib/ext/android.net.model.yml
@@ -0,0 +1,65 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSummaryModel
+    data:
+      - ["android.net", "Uri", True, "buildUpon", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["android.net", "Uri", False, "decode", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["android.net", "Uri", False, "encode", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["android.net", "Uri", False, "fromFile", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["android.net", "Uri", False, "fromParts", "", "", "Argument[0..2]", "ReturnValue", "taint", "manual"]
+      - ["android.net", "Uri", True, "getAuthority", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["android.net", "Uri", True, "getEncodedAuthority", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["android.net", "Uri", True, "getEncodedFragment", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["android.net", "Uri", True, "getEncodedPath", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["android.net", "Uri", True, "getEncodedQuery", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["android.net", "Uri", True, "getEncodedSchemeSpecificPart", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["android.net", "Uri", True, "getEncodedUserInfo", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["android.net", "Uri", True, "getFragment", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["android.net", "Uri", True, "getHost", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["android.net", "Uri", True, "getLastPathSegment", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["android.net", "Uri", True, "getPath", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["android.net", "Uri", True, "getPathSegments", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["android.net", "Uri", True, "getQuery", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["android.net", "Uri", True, "getQueryParameter", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["android.net", "Uri", True, "getQueryParameterNames", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["android.net", "Uri", True, "getQueryParameters", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["android.net", "Uri", True, "getScheme", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["android.net", "Uri", True, "getSchemeSpecificPart", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["android.net", "Uri", True, "getUserInfo", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["android.net", "Uri", True, "normalizeScheme", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["android.net", "Uri", False, "parse", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["android.net", "Uri", True, "toString", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["android.net", "Uri", False, "withAppendedPath", "", "", "Argument[0..1]", "ReturnValue", "taint", "manual"]
+      - ["android.net", "Uri", False, "writeToParcel", "", "", "Argument[1]", "Argument[0]", "taint", "manual"]
+      - ["android.net", "Uri$Builder", False, "appendEncodedPath", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["android.net", "Uri$Builder", False, "appendEncodedPath", "", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["android.net", "Uri$Builder", False, "appendPath", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["android.net", "Uri$Builder", False, "appendPath", "", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["android.net", "Uri$Builder", False, "appendQueryParameter", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["android.net", "Uri$Builder", False, "appendQueryParameter", "", "", "Argument[0..1]", "Argument[-1]", "taint", "manual"]
+      - ["android.net", "Uri$Builder", False, "authority", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["android.net", "Uri$Builder", False, "authority", "", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["android.net", "Uri$Builder", False, "build", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["android.net", "Uri$Builder", False, "clearQuery", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["android.net", "Uri$Builder", False, "encodedAuthority", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["android.net", "Uri$Builder", False, "encodedAuthority", "", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["android.net", "Uri$Builder", False, "encodedFragment", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["android.net", "Uri$Builder", False, "encodedFragment", "", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["android.net", "Uri$Builder", False, "encodedOpaquePart", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["android.net", "Uri$Builder", False, "encodedOpaquePart", "", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["android.net", "Uri$Builder", False, "encodedPath", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["android.net", "Uri$Builder", False, "encodedPath", "", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["android.net", "Uri$Builder", False, "encodedQuery", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["android.net", "Uri$Builder", False, "encodedQuery", "", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["android.net", "Uri$Builder", False, "fragment", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["android.net", "Uri$Builder", False, "fragment", "", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["android.net", "Uri$Builder", False, "opaquePart", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["android.net", "Uri$Builder", False, "opaquePart", "", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["android.net", "Uri$Builder", False, "path", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["android.net", "Uri$Builder", False, "path", "", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["android.net", "Uri$Builder", False, "query", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["android.net", "Uri$Builder", False, "query", "", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["android.net", "Uri$Builder", False, "scheme", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["android.net", "Uri$Builder", False, "scheme", "", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["android.net", "Uri$Builder", False, "toString", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
diff --git a/java/ql/lib/ext/android.os.model.yml b/java/ql/lib/ext/android.os.model.yml
new file mode 100644
index 00000000000..8581a3f47ae
--- /dev/null
+++ b/java/ql/lib/ext/android.os.model.yml
@@ -0,0 +1,133 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSourceModel
+    data:
+      - ["android.os", "Environment", False, "getExternalStorageDirectory", "()", "", "ReturnValue", "android-external-storage-dir", "manual"]
+      - ["android.os", "Environment", False, "getExternalStoragePublicDirectory", "(String)", "", "ReturnValue", "android-external-storage-dir", "manual"]
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSummaryModel
+    data:
+      - ["android.os", "BaseBundle", True, "get", "(String)", "", "Argument[-1].MapValue", "ReturnValue", "value", "manual"]
+      - ["android.os", "BaseBundle", True, "getString", "(String)", "", "Argument[-1].MapValue", "ReturnValue", "value", "manual"]
+      - ["android.os", "BaseBundle", True, "getString", "(String,String)", "", "Argument[-1].MapValue", "ReturnValue", "value", "manual"]
+      - ["android.os", "BaseBundle", True, "getString", "(String,String)", "", "Argument[1]", "ReturnValue", "value", "manual"]
+      - ["android.os", "BaseBundle", True, "getStringArray", "(String)", "", "Argument[-1].MapValue", "ReturnValue", "value", "manual"]
+      - ["android.os", "BaseBundle", True, "keySet", "()", "", "Argument[-1].MapKey", "ReturnValue.Element", "value", "manual"]
+      - ["android.os", "BaseBundle", True, "putAll", "(PersistableBundle)", "", "Argument[0].MapKey", "Argument[-1].MapKey", "value", "manual"]
+      - ["android.os", "BaseBundle", True, "putAll", "(PersistableBundle)", "", "Argument[0].MapValue", "Argument[-1].MapValue", "value", "manual"]
+      - ["android.os", "BaseBundle", True, "putBoolean", "", "", "Argument[0]", "Argument[-1].MapKey", "value", "manual"]
+      - ["android.os", "BaseBundle", True, "putBooleanArray", "", "", "Argument[0]", "Argument[-1].MapKey", "value", "manual"]
+      - ["android.os", "BaseBundle", True, "putDouble", "", "", "Argument[0]", "Argument[-1].MapKey", "value", "manual"]
+      - ["android.os", "BaseBundle", True, "putDoubleArray", "", "", "Argument[0]", "Argument[-1].MapKey", "value", "manual"]
+      - ["android.os", "BaseBundle", True, "putInt", "", "", "Argument[0]", "Argument[-1].MapKey", "value", "manual"]
+      - ["android.os", "BaseBundle", True, "putIntArray", "", "", "Argument[0]", "Argument[-1].MapKey", "value", "manual"]
+      - ["android.os", "BaseBundle", True, "putLong", "", "", "Argument[0]", "Argument[-1].MapKey", "value", "manual"]
+      - ["android.os", "BaseBundle", True, "putLongArray", "", "", "Argument[0]", "Argument[-1].MapKey", "value", "manual"]
+      - ["android.os", "BaseBundle", True, "putString", "", "", "Argument[0]", "Argument[-1].MapKey", "value", "manual"]
+      - ["android.os", "BaseBundle", True, "putString", "", "", "Argument[1]", "Argument[-1].MapValue", "value", "manual"]
+      - ["android.os", "BaseBundle", True, "putStringArray", "", "", "Argument[0]", "Argument[-1].MapKey", "value", "manual"]
+      - ["android.os", "BaseBundle", True, "putStringArray", "", "", "Argument[1]", "Argument[-1].MapValue", "value", "manual"]
+      - ["android.os", "Bundle", False, "Bundle", "(Bundle)", "", "Argument[0].MapKey", "Argument[-1].MapKey", "value", "manual"]
+      - ["android.os", "Bundle", False, "Bundle", "(Bundle)", "", "Argument[0].MapValue", "Argument[-1].MapValue", "value", "manual"]
+      - ["android.os", "Bundle", False, "Bundle", "(PersistableBundle)", "", "Argument[0].MapKey", "Argument[-1].MapKey", "value", "manual"]
+      - ["android.os", "Bundle", False, "Bundle", "(PersistableBundle)", "", "Argument[0].MapValue", "Argument[-1].MapValue", "value", "manual"]
+      - ["android.os", "Bundle", True, "clone", "()", "", "Argument[-1].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["android.os", "Bundle", True, "clone", "()", "", "Argument[-1].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["android.os", "Bundle", True, "deepCopy", "()", "", "Argument[-1].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["android.os", "Bundle", True, "deepCopy", "()", "", "Argument[-1].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["android.os", "Bundle", True, "getBinder", "(String)", "", "Argument[-1].MapValue", "ReturnValue", "value", "manual"]
+      - ["android.os", "Bundle", True, "getBundle", "(String)", "", "Argument[-1].MapValue", "ReturnValue", "value", "manual"]
+      - ["android.os", "Bundle", True, "getByteArray", "(String)", "", "Argument[-1].MapValue", "ReturnValue", "value", "manual"]
+      - ["android.os", "Bundle", True, "getCharArray", "(String)", "", "Argument[-1].MapValue", "ReturnValue", "value", "manual"]
+      - ["android.os", "Bundle", True, "getCharSequence", "(String)", "", "Argument[-1].MapValue", "ReturnValue", "value", "manual"]
+      - ["android.os", "Bundle", True, "getCharSequence", "(String,CharSequence)", "", "Argument[-1].MapValue", "ReturnValue", "value", "manual"]
+      - ["android.os", "Bundle", True, "getCharSequence", "(String,CharSequence)", "", "Argument[1]", "ReturnValue", "value", "manual"]
+      - ["android.os", "Bundle", True, "getCharSequenceArray", "(String)", "", "Argument[-1].MapValue", "ReturnValue", "value", "manual"]
+      - ["android.os", "Bundle", True, "getCharSequenceArrayList", "(String)", "", "Argument[-1].MapValue", "ReturnValue", "value", "manual"]
+      - ["android.os", "Bundle", True, "getParcelable", "(String)", "", "Argument[-1].MapValue", "ReturnValue", "value", "manual"]
+      - ["android.os", "Bundle", True, "getParcelableArray", "(String)", "", "Argument[-1].MapValue", "ReturnValue", "value", "manual"]
+      - ["android.os", "Bundle", True, "getParcelableArrayList", "(String)", "", "Argument[-1].MapValue", "ReturnValue", "value", "manual"]
+      - ["android.os", "Bundle", True, "getSerializable", "(String)", "", "Argument[-1].MapValue", "ReturnValue", "value", "manual"]
+      - ["android.os", "Bundle", True, "getSparseParcelableArray", "(String)", "", "Argument[-1].MapValue", "ReturnValue", "value", "manual"]
+      - ["android.os", "Bundle", True, "getStringArrayList", "(String)", "", "Argument[-1].MapValue", "ReturnValue", "value", "manual"]
+      - ["android.os", "Bundle", True, "putAll", "(Bundle)", "", "Argument[0].MapKey", "Argument[-1].MapKey", "value", "manual"]
+      - ["android.os", "Bundle", True, "putAll", "(Bundle)", "", "Argument[0].MapValue", "Argument[-1].MapValue", "value", "manual"]
+      - ["android.os", "Bundle", True, "putBinder", "", "", "Argument[0]", "Argument[-1].MapKey", "value", "manual"]
+      - ["android.os", "Bundle", True, "putBinder", "", "", "Argument[1]", "Argument[-1].MapValue", "value", "manual"]
+      - ["android.os", "Bundle", True, "putBundle", "", "", "Argument[0]", "Argument[-1].MapKey", "value", "manual"]
+      - ["android.os", "Bundle", True, "putBundle", "", "", "Argument[1]", "Argument[-1].MapValue", "value", "manual"]
+      - ["android.os", "Bundle", True, "putByte", "", "", "Argument[0]", "Argument[-1].MapKey", "value", "manual"]
+      - ["android.os", "Bundle", True, "putByteArray", "", "", "Argument[0]", "Argument[-1].MapKey", "value", "manual"]
+      - ["android.os", "Bundle", True, "putByteArray", "", "", "Argument[1]", "Argument[-1].MapValue", "value", "manual"]
+      - ["android.os", "Bundle", True, "putChar", "", "", "Argument[0]", "Argument[-1].MapKey", "value", "manual"]
+      - ["android.os", "Bundle", True, "putCharArray", "", "", "Argument[0]", "Argument[-1].MapKey", "value", "manual"]
+      - ["android.os", "Bundle", True, "putCharArray", "", "", "Argument[1]", "Argument[-1].MapValue", "value", "manual"]
+      - ["android.os", "Bundle", True, "putCharSequence", "", "", "Argument[0]", "Argument[-1].MapKey", "value", "manual"]
+      - ["android.os", "Bundle", True, "putCharSequence", "", "", "Argument[1]", "Argument[-1].MapValue", "value", "manual"]
+      - ["android.os", "Bundle", True, "putCharSequenceArray", "", "", "Argument[0]", "Argument[-1].MapKey", "value", "manual"]
+      - ["android.os", "Bundle", True, "putCharSequenceArray", "", "", "Argument[1]", "Argument[-1].MapValue", "value", "manual"]
+      - ["android.os", "Bundle", True, "putCharSequenceArrayList", "", "", "Argument[0]", "Argument[-1].MapKey", "value", "manual"]
+      - ["android.os", "Bundle", True, "putCharSequenceArrayList", "", "", "Argument[1]", "Argument[-1].MapValue", "value", "manual"]
+      - ["android.os", "Bundle", True, "putFloat", "", "", "Argument[0]", "Argument[-1].MapKey", "value", "manual"]
+      - ["android.os", "Bundle", True, "putFloatArray", "", "", "Argument[0]", "Argument[-1].MapKey", "value", "manual"]
+      - ["android.os", "Bundle", True, "putIntegerArrayList", "", "", "Argument[0]", "Argument[-1].MapKey", "value", "manual"]
+      - ["android.os", "Bundle", True, "putParcelable", "", "", "Argument[0]", "Argument[-1].MapKey", "value", "manual"]
+      - ["android.os", "Bundle", True, "putParcelable", "", "", "Argument[1]", "Argument[-1].MapValue", "value", "manual"]
+      - ["android.os", "Bundle", True, "putParcelableArray", "", "", "Argument[0]", "Argument[-1].MapKey", "value", "manual"]
+      - ["android.os", "Bundle", True, "putParcelableArray", "", "", "Argument[1]", "Argument[-1].MapValue", "value", "manual"]
+      - ["android.os", "Bundle", True, "putParcelableArrayList", "", "", "Argument[0]", "Argument[-1].MapKey", "value", "manual"]
+      - ["android.os", "Bundle", True, "putParcelableArrayList", "", "", "Argument[1]", "Argument[-1].MapValue", "value", "manual"]
+      - ["android.os", "Bundle", True, "putSerializable", "", "", "Argument[0]", "Argument[-1].MapKey", "value", "manual"]
+      - ["android.os", "Bundle", True, "putSerializable", "", "", "Argument[1]", "Argument[-1].MapValue", "value", "manual"]
+      - ["android.os", "Bundle", True, "putShort", "", "", "Argument[0]", "Argument[-1].MapKey", "value", "manual"]
+      - ["android.os", "Bundle", True, "putShortArray", "", "", "Argument[0]", "Argument[-1].MapKey", "value", "manual"]
+      - ["android.os", "Bundle", True, "putSize", "", "", "Argument[0]", "Argument[-1].MapKey", "value", "manual"]
+      - ["android.os", "Bundle", True, "putSizeF", "", "", "Argument[0]", "Argument[-1].MapKey", "value", "manual"]
+      - ["android.os", "Bundle", True, "putSparseParcelableArray", "", "", "Argument[0]", "Argument[-1].MapKey", "value", "manual"]
+      - ["android.os", "Bundle", True, "putSparseParcelableArray", "", "", "Argument[1]", "Argument[-1].MapValue", "value", "manual"]
+      - ["android.os", "Bundle", True, "putStringArrayList", "", "", "Argument[0]", "Argument[-1].MapKey", "value", "manual"]
+      - ["android.os", "Bundle", True, "putStringArrayList", "", "", "Argument[1]", "Argument[-1].MapValue", "value", "manual"]
+      - ["android.os", "Bundle", True, "readFromParcel", "", "", "Argument[0]", "Argument[-1].MapKey", "taint", "manual"]
+      - ["android.os", "Bundle", True, "readFromParcel", "", "", "Argument[0]", "Argument[-1].MapValue", "taint", "manual"]
+      - ["android.os", "Parcel", False, "readArray", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["android.os", "Parcel", False, "readArrayList", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["android.os", "Parcel", False, "readBinderArray", "", "", "Argument[-1]", "Argument[0]", "taint", "manual"]
+      - ["android.os", "Parcel", False, "readBinderList", "", "", "Argument[-1]", "Argument[0]", "taint", "manual"]
+      - ["android.os", "Parcel", False, "readBoolean", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["android.os", "Parcel", False, "readBooleanArray", "", "", "Argument[-1]", "Argument[0]", "taint", "manual"]
+      - ["android.os", "Parcel", False, "readBundle", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["android.os", "Parcel", False, "readByte", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["android.os", "Parcel", False, "readByteArray", "", "", "Argument[-1]", "Argument[0]", "taint", "manual"]
+      - ["android.os", "Parcel", False, "readCharArray", "", "", "Argument[-1]", "Argument[0]", "taint", "manual"]
+      - ["android.os", "Parcel", False, "readDouble", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["android.os", "Parcel", False, "readDoubleArray", "", "", "Argument[-1]", "Argument[0]", "taint", "manual"]
+      - ["android.os", "Parcel", False, "readFileDescriptor", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["android.os", "Parcel", False, "readFloat", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["android.os", "Parcel", False, "readFloatArray", "", "", "Argument[-1]", "Argument[0]", "taint", "manual"]
+      - ["android.os", "Parcel", False, "readHashMap", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["android.os", "Parcel", False, "readInt", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["android.os", "Parcel", False, "readIntArray", "", "", "Argument[-1]", "Argument[0]", "taint", "manual"]
+      - ["android.os", "Parcel", False, "readList", "", "", "Argument[-1]", "Argument[0]", "taint", "manual"]
+      - ["android.os", "Parcel", False, "readLong", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["android.os", "Parcel", False, "readLongArray", "", "", "Argument[-1]", "Argument[0]", "taint", "manual"]
+      - ["android.os", "Parcel", False, "readMap", "", "", "Argument[-1]", "Argument[0]", "taint", "manual"]
+      - ["android.os", "Parcel", False, "readParcelable", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["android.os", "Parcel", False, "readParcelableArray", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["android.os", "Parcel", False, "readParcelableList", "", "", "Argument[-1]", "Argument[0]", "taint", "manual"]
+      - ["android.os", "Parcel", False, "readParcelableList", "", "", "Argument[0]", "ReturnValue", "value", "manual"]
+      - ["android.os", "Parcel", False, "readPersistableBundle", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["android.os", "Parcel", False, "readSerializable", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["android.os", "Parcel", False, "readSize", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["android.os", "Parcel", False, "readSizeF", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["android.os", "Parcel", False, "readSparseArray", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["android.os", "Parcel", False, "readSparseBooleanArray", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["android.os", "Parcel", False, "readString", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["android.os", "Parcel", False, "readStringArray", "", "", "Argument[-1]", "Argument[0]", "taint", "manual"]
+      - ["android.os", "Parcel", False, "readStringList", "", "", "Argument[-1]", "Argument[0]", "taint", "manual"]
+      - ["android.os", "Parcel", False, "readStrongBinder", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["android.os", "Parcel", False, "readTypedArray", "", "", "Argument[-1]", "Argument[0]", "taint", "manual"]
+      - ["android.os", "Parcel", False, "readTypedList", "", "", "Argument[-1]", "Argument[0]", "taint", "manual"]
+      - ["android.os", "Parcel", False, "readTypedObject", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["android.os", "Parcel", False, "readValue", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
diff --git a/java/ql/lib/ext/android.support.v4.app.model.yml b/java/ql/lib/ext/android.support.v4.app.model.yml
new file mode 100644
index 00000000000..42df9f0a87a
--- /dev/null
+++ b/java/ql/lib/ext/android.support.v4.app.model.yml
@@ -0,0 +1,16 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSinkModel
+    data:
+      - ["android.support.v4.app", "FragmentTransaction", True, "add", "(Class,Bundle,String)", "", "Argument[0]", "fragment-injection", "manual"]
+      - ["android.support.v4.app", "FragmentTransaction", True, "add", "(Fragment,String)", "", "Argument[0]", "fragment-injection", "manual"]
+      - ["android.support.v4.app", "FragmentTransaction", True, "add", "(int,Class,Bundle)", "", "Argument[1]", "fragment-injection", "manual"]
+      - ["android.support.v4.app", "FragmentTransaction", True, "add", "(int,Class,Bundle,String)", "", "Argument[1]", "fragment-injection", "manual"]
+      - ["android.support.v4.app", "FragmentTransaction", True, "add", "(int,Fragment)", "", "Argument[1]", "fragment-injection", "manual"]
+      - ["android.support.v4.app", "FragmentTransaction", True, "add", "(int,Fragment,String)", "", "Argument[1]", "fragment-injection", "manual"]
+      - ["android.support.v4.app", "FragmentTransaction", True, "attach", "(Fragment)", "", "Argument[0]", "fragment-injection", "manual"]
+      - ["android.support.v4.app", "FragmentTransaction", True, "replace", "(int,Class,Bundle)", "", "Argument[1]", "fragment-injection", "manual"]
+      - ["android.support.v4.app", "FragmentTransaction", True, "replace", "(int,Class,Bundle,String)", "", "Argument[1]", "fragment-injection", "manual"]
+      - ["android.support.v4.app", "FragmentTransaction", True, "replace", "(int,Fragment)", "", "Argument[1]", "fragment-injection", "manual"]
+      - ["android.support.v4.app", "FragmentTransaction", True, "replace", "(int,Fragment,String)", "", "Argument[1]", "fragment-injection", "manual"]
diff --git a/java/ql/lib/ext/android.util.model.yml b/java/ql/lib/ext/android.util.model.yml
new file mode 100644
index 00000000000..63d0612ea41
--- /dev/null
+++ b/java/ql/lib/ext/android.util.model.yml
@@ -0,0 +1,31 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSourceModel
+    data:
+      - ["android.util", "AttributeSet", False, "getAttributeBooleanValue", "", "", "ReturnValue", "remote", "manual"]
+      - ["android.util", "AttributeSet", False, "getAttributeCount", "", "", "ReturnValue", "remote", "manual"]
+      - ["android.util", "AttributeSet", False, "getAttributeFloatValue", "", "", "ReturnValue", "remote", "manual"]
+      - ["android.util", "AttributeSet", False, "getAttributeIntValue", "", "", "ReturnValue", "remote", "manual"]
+      - ["android.util", "AttributeSet", False, "getAttributeListValue", "", "", "ReturnValue", "remote", "manual"]
+      - ["android.util", "AttributeSet", False, "getAttributeName", "", "", "ReturnValue", "remote", "manual"]
+      - ["android.util", "AttributeSet", False, "getAttributeNameResource", "", "", "ReturnValue", "remote", "manual"]
+      - ["android.util", "AttributeSet", False, "getAttributeNamespace", "", "", "ReturnValue", "remote", "manual"]
+      - ["android.util", "AttributeSet", False, "getAttributeResourceValue", "", "", "ReturnValue", "remote", "manual"]
+      - ["android.util", "AttributeSet", False, "getAttributeUnsignedIntValue", "", "", "ReturnValue", "remote", "manual"]
+      - ["android.util", "AttributeSet", False, "getAttributeValue", "", "", "ReturnValue", "remote", "manual"]
+      - ["android.util", "AttributeSet", False, "getClassAttribute", "", "", "ReturnValue", "remote", "manual"]
+      - ["android.util", "AttributeSet", False, "getIdAttribute", "", "", "ReturnValue", "remote", "manual"]
+      - ["android.util", "AttributeSet", False, "getIdAttributeResourceValue", "", "", "ReturnValue", "remote", "manual"]
+      - ["android.util", "AttributeSet", False, "getPositionDescription", "", "", "ReturnValue", "remote", "manual"]
+      - ["android.util", "AttributeSet", False, "getStyleAttribute", "", "", "ReturnValue", "remote", "manual"]
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSinkModel
+    data:
+      - ["android.util", "Log", True, "d", "", "", "Argument[1]", "logging", "manual"]
+      - ["android.util", "Log", True, "e", "", "", "Argument[1]", "logging", "manual"]
+      - ["android.util", "Log", True, "i", "", "", "Argument[1]", "logging", "manual"]
+      - ["android.util", "Log", True, "v", "", "", "Argument[1]", "logging", "manual"]
+      - ["android.util", "Log", True, "w", "", "", "Argument[1]", "logging", "manual"]
+      - ["android.util", "Log", True, "wtf", "", "", "Argument[1]", "logging", "manual"]
diff --git a/java/ql/lib/ext/android.webkit.model.yml b/java/ql/lib/ext/android.webkit.model.yml
new file mode 100644
index 00000000000..a12ffdd44dd
--- /dev/null
+++ b/java/ql/lib/ext/android.webkit.model.yml
@@ -0,0 +1,14 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSourceModel
+    data:
+      - ["android.webkit", "WebView", False, "getOriginalUrl", "()", "", "ReturnValue", "remote", "manual"]
+      - ["android.webkit", "WebView", False, "getUrl", "()", "", "ReturnValue", "remote", "manual"]
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSinkModel
+    data:
+      - ["android.webkit", "WebView", False, "evaluateJavascript", "", "", "Argument[0]", "xss", "manual"]
+      - ["android.webkit", "WebView", False, "loadData", "", "", "Argument[0]", "xss", "manual"]
+      - ["android.webkit", "WebView", False, "loadDataWithBaseURL", "", "", "Argument[1]", "xss", "manual"]
diff --git a/java/ql/lib/ext/android.widget.model.yml b/java/ql/lib/ext/android.widget.model.yml
new file mode 100644
index 00000000000..917167d6156
--- /dev/null
+++ b/java/ql/lib/ext/android.widget.model.yml
@@ -0,0 +1,11 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSourceModel
+    data:
+      - ["android.widget", "EditText", True, "getText", "", "", "ReturnValue", "android-widget", "manual"]
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSummaryModel
+    data:
+      - ["android.widget", "EditText", True, "getText", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
diff --git a/java/ql/lib/ext/androidx.core.app.model.yml b/java/ql/lib/ext/androidx.core.app.model.yml
new file mode 100644
index 00000000000..48a97fbba57
--- /dev/null
+++ b/java/ql/lib/ext/androidx.core.app.model.yml
@@ -0,0 +1,110 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSinkModel
+    data:
+      - ["androidx.core.app", "AlarmManagerCompat", True, "setAlarmClock", "", "", "Argument[2..3]", "pending-intent-sent", "manual"]
+      - ["androidx.core.app", "AlarmManagerCompat", True, "setAndAllowWhileIdle", "", "", "Argument[3]", "pending-intent-sent", "manual"]
+      - ["androidx.core.app", "AlarmManagerCompat", True, "setExact", "", "", "Argument[3]", "pending-intent-sent", "manual"]
+      - ["androidx.core.app", "AlarmManagerCompat", True, "setExactAndAllowWhileIdle", "", "", "Argument[3]", "pending-intent-sent", "manual"]
+      - ["androidx.core.app", "NotificationManagerCompat", True, "notify", "(String,int,Notification)", "", "Argument[2]", "pending-intent-sent", "manual"]
+      - ["androidx.core.app", "NotificationManagerCompat", True, "notify", "(int,Notification)", "", "Argument[1]", "pending-intent-sent", "manual"]
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSummaryModel
+    data:
+      - ["androidx.core.app", "NotificationCompat$Action", True, "Action", "(IconCompat,CharSequence,PendingIntent)", "", "Argument[2]", "Argument[-1]", "taint", "manual"]
+      - ["androidx.core.app", "NotificationCompat$Action", True, "Action", "(int,CharSequence,PendingIntent)", "", "Argument[2]", "Argument[-1]", "taint", "manual"]
+      - ["androidx.core.app", "NotificationCompat$Action", True, "getExtras", "", "", "Argument[-1].SyntheticField[android.content.Intent.extras]", "ReturnValue", "value", "manual"]
+      - ["androidx.core.app", "NotificationCompat$Action$Builder", True, "Builder", "(Action)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["androidx.core.app", "NotificationCompat$Action$Builder", True, "Builder", "(IconCompat,CharSequence,PendingIntent)", "", "Argument[2]", "Argument[-1]", "taint", "manual"]
+      - ["androidx.core.app", "NotificationCompat$Action$Builder", True, "Builder", "(int,CharSequence,PendingIntent)", "", "Argument[2]", "Argument[-1]", "taint", "manual"]
+      - ["androidx.core.app", "NotificationCompat$Action$Builder", True, "addExtras", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["androidx.core.app", "NotificationCompat$Action$Builder", True, "addExtras", "", "", "Argument[0].MapKey", "Argument[-1].SyntheticField[android.content.Intent.extras].MapKey", "value", "manual"]
+      - ["androidx.core.app", "NotificationCompat$Action$Builder", True, "addExtras", "", "", "Argument[0].MapValue", "Argument[-1].SyntheticField[android.content.Intent.extras].MapValue", "value", "manual"]
+      - ["androidx.core.app", "NotificationCompat$Action$Builder", True, "addRemoteInput", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["androidx.core.app", "NotificationCompat$Action$Builder", True, "build", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["androidx.core.app", "NotificationCompat$Action$Builder", True, "build", "", "", "Argument[-1].SyntheticField[android.content.Intent.extras]", "ReturnValue.SyntheticField[android.content.Intent.extras]", "value", "manual"]
+      - ["androidx.core.app", "NotificationCompat$Action$Builder", True, "extend", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["androidx.core.app", "NotificationCompat$Action$Builder", True, "getExtras", "", "", "Argument[-1].SyntheticField[android.content.Intent.extras]", "ReturnValue", "value", "manual"]
+      - ["androidx.core.app", "NotificationCompat$Action$Builder", True, "setAllowGeneratedReplies", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["androidx.core.app", "NotificationCompat$Action$Builder", True, "setAuthenticationRequired", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["androidx.core.app", "NotificationCompat$Action$Builder", True, "setContextual", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["androidx.core.app", "NotificationCompat$Action$Builder", True, "setSemanticAction", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["androidx.core.app", "NotificationCompat$BigPictureStyle", True, "bigLargeIcon", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["androidx.core.app", "NotificationCompat$BigPictureStyle", True, "bigPicture", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["androidx.core.app", "NotificationCompat$BigPictureStyle", True, "setBigContentTitle", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["androidx.core.app", "NotificationCompat$BigPictureStyle", True, "setContentDescription", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["androidx.core.app", "NotificationCompat$BigPictureStyle", True, "setSummaryText", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["androidx.core.app", "NotificationCompat$BigPictureStyle", True, "showBigPictureWhenCollapsed", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["androidx.core.app", "NotificationCompat$BigTextStyle", True, "bigText", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["androidx.core.app", "NotificationCompat$BigTextStyle", True, "setBigContentTitle", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["androidx.core.app", "NotificationCompat$BigTextStyle", True, "setSummaryText", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["androidx.core.app", "NotificationCompat$Builder", True, "addAction", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["androidx.core.app", "NotificationCompat$Builder", True, "addAction", "(Action)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["androidx.core.app", "NotificationCompat$Builder", True, "addAction", "(int,CharSequence,PendingIntent)", "", "Argument[2]", "Argument[-1]", "taint", "manual"]
+      - ["androidx.core.app", "NotificationCompat$Builder", True, "addExtras", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["androidx.core.app", "NotificationCompat$Builder", True, "addExtras", "", "", "Argument[0].MapKey", "Argument[-1].SyntheticField[android.content.Intent.extras].MapKey", "value", "manual"]
+      - ["androidx.core.app", "NotificationCompat$Builder", True, "addExtras", "", "", "Argument[0].MapValue", "Argument[-1].SyntheticField[android.content.Intent.extras].MapValue", "value", "manual"]
+      - ["androidx.core.app", "NotificationCompat$Builder", True, "addPerson", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["androidx.core.app", "NotificationCompat$Builder", True, "build", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["androidx.core.app", "NotificationCompat$Builder", True, "build", "", "", "Argument[-1].SyntheticField[android.content.Intent.extras]", "ReturnValue.Field[android.app.Notification.extras]", "value", "manual"]
+      - ["androidx.core.app", "NotificationCompat$Builder", True, "extend", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["androidx.core.app", "NotificationCompat$Builder", True, "getExtras", "", "", "Argument[-1].SyntheticField[android.content.Intent.extras]", "ReturnValue", "value", "manual"]
+      - ["androidx.core.app", "NotificationCompat$Builder", True, "setActions", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["androidx.core.app", "NotificationCompat$Builder", True, "setAutoCancel", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["androidx.core.app", "NotificationCompat$Builder", True, "setBadgeIconType", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["androidx.core.app", "NotificationCompat$Builder", True, "setBubbleMetadata", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["androidx.core.app", "NotificationCompat$Builder", True, "setCategory", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["androidx.core.app", "NotificationCompat$Builder", True, "setChannelId", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["androidx.core.app", "NotificationCompat$Builder", True, "setChronometerCountDown", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["androidx.core.app", "NotificationCompat$Builder", True, "setColor", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["androidx.core.app", "NotificationCompat$Builder", True, "setColorized", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["androidx.core.app", "NotificationCompat$Builder", True, "setContent", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["androidx.core.app", "NotificationCompat$Builder", True, "setContentInfo", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["androidx.core.app", "NotificationCompat$Builder", True, "setContentIntent", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["androidx.core.app", "NotificationCompat$Builder", True, "setContentIntent", "", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["androidx.core.app", "NotificationCompat$Builder", True, "setContentText", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["androidx.core.app", "NotificationCompat$Builder", True, "setContentTitle", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["androidx.core.app", "NotificationCompat$Builder", True, "setCustomBigContentView", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["androidx.core.app", "NotificationCompat$Builder", True, "setCustomHeadsUpContentView", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["androidx.core.app", "NotificationCompat$Builder", True, "setDefaults", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["androidx.core.app", "NotificationCompat$Builder", True, "setDeleteIntent", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["androidx.core.app", "NotificationCompat$Builder", True, "setDeleteIntent", "", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["androidx.core.app", "NotificationCompat$Builder", True, "setExtras", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["androidx.core.app", "NotificationCompat$Builder", True, "setExtras", "", "", "Argument[0]", "Argument[-1].SyntheticField[android.content.Intent.extras]", "value", "manual"]
+      - ["androidx.core.app", "NotificationCompat$Builder", True, "setFlag", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["androidx.core.app", "NotificationCompat$Builder", True, "setForegroundServiceBehavior", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["androidx.core.app", "NotificationCompat$Builder", True, "setFullScreenIntent", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["androidx.core.app", "NotificationCompat$Builder", True, "setGroup", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["androidx.core.app", "NotificationCompat$Builder", True, "setGroupAlertBehavior", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["androidx.core.app", "NotificationCompat$Builder", True, "setGroupSummary", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["androidx.core.app", "NotificationCompat$Builder", True, "setLargeIcon", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["androidx.core.app", "NotificationCompat$Builder", True, "setLights", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["androidx.core.app", "NotificationCompat$Builder", True, "setLocalOnly", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["androidx.core.app", "NotificationCompat$Builder", True, "setLocusId", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["androidx.core.app", "NotificationCompat$Builder", True, "setNumber", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["androidx.core.app", "NotificationCompat$Builder", True, "setOngoing", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["androidx.core.app", "NotificationCompat$Builder", True, "setOnlyAlertOnce", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["androidx.core.app", "NotificationCompat$Builder", True, "setPriority", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["androidx.core.app", "NotificationCompat$Builder", True, "setProgress", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["androidx.core.app", "NotificationCompat$Builder", True, "setPublicVersion", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["androidx.core.app", "NotificationCompat$Builder", True, "setPublicVersion", "", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["androidx.core.app", "NotificationCompat$Builder", True, "setRemoteInputHistory", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["androidx.core.app", "NotificationCompat$Builder", True, "setSettingsText", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["androidx.core.app", "NotificationCompat$Builder", True, "setShortcutId", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["androidx.core.app", "NotificationCompat$Builder", True, "setShowWhen", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["androidx.core.app", "NotificationCompat$Builder", True, "setSmallIcon", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["androidx.core.app", "NotificationCompat$Builder", True, "setSortKey", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["androidx.core.app", "NotificationCompat$Builder", True, "setSound", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["androidx.core.app", "NotificationCompat$Builder", True, "setStyle", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["androidx.core.app", "NotificationCompat$Builder", True, "setSubText", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["androidx.core.app", "NotificationCompat$Builder", True, "setTicker", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["androidx.core.app", "NotificationCompat$Builder", True, "setTimeoutAfter", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["androidx.core.app", "NotificationCompat$Builder", True, "setUsesChronometer", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["androidx.core.app", "NotificationCompat$Builder", True, "setVibrate", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["androidx.core.app", "NotificationCompat$Builder", True, "setVisibility", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["androidx.core.app", "NotificationCompat$Builder", True, "setWhen", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["androidx.core.app", "NotificationCompat$InboxStyle", True, "addLine", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["androidx.core.app", "NotificationCompat$InboxStyle", True, "setBigContentTitle", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["androidx.core.app", "NotificationCompat$InboxStyle", True, "setSummaryText", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
diff --git a/java/ql/lib/ext/androidx.fragment.app.model.yml b/java/ql/lib/ext/androidx.fragment.app.model.yml
new file mode 100644
index 00000000000..8e219640c7d
--- /dev/null
+++ b/java/ql/lib/ext/androidx.fragment.app.model.yml
@@ -0,0 +1,16 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSinkModel
+    data:
+      - ["androidx.fragment.app", "FragmentTransaction", True, "add", "(Class,Bundle,String)", "", "Argument[0]", "fragment-injection", "manual"]
+      - ["androidx.fragment.app", "FragmentTransaction", True, "add", "(Fragment,String)", "", "Argument[0]", "fragment-injection", "manual"]
+      - ["androidx.fragment.app", "FragmentTransaction", True, "add", "(int,Class,Bundle)", "", "Argument[1]", "fragment-injection", "manual"]
+      - ["androidx.fragment.app", "FragmentTransaction", True, "add", "(int,Class,Bundle,String)", "", "Argument[1]", "fragment-injection", "manual"]
+      - ["androidx.fragment.app", "FragmentTransaction", True, "add", "(int,Fragment)", "", "Argument[1]", "fragment-injection", "manual"]
+      - ["androidx.fragment.app", "FragmentTransaction", True, "add", "(int,Fragment,String)", "", "Argument[1]", "fragment-injection", "manual"]
+      - ["androidx.fragment.app", "FragmentTransaction", True, "attach", "(Fragment)", "", "Argument[0]", "fragment-injection", "manual"]
+      - ["androidx.fragment.app", "FragmentTransaction", True, "replace", "(int,Class,Bundle)", "", "Argument[1]", "fragment-injection", "manual"]
+      - ["androidx.fragment.app", "FragmentTransaction", True, "replace", "(int,Class,Bundle,String)", "", "Argument[1]", "fragment-injection", "manual"]
+      - ["androidx.fragment.app", "FragmentTransaction", True, "replace", "(int,Fragment)", "", "Argument[1]", "fragment-injection", "manual"]
+      - ["androidx.fragment.app", "FragmentTransaction", True, "replace", "(int,Fragment,String)", "", "Argument[1]", "fragment-injection", "manual"]
diff --git a/java/ql/lib/ext/androidx.slice.builders.model.yml b/java/ql/lib/ext/androidx.slice.builders.model.yml
new file mode 100644
index 00000000000..066fae518b2
--- /dev/null
+++ b/java/ql/lib/ext/androidx.slice.builders.model.yml
@@ -0,0 +1,93 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSummaryModel
+    data:
+      - ["androidx.slice.builders", "ListBuilder", True, "addAction", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["androidx.slice.builders", "ListBuilder", True, "addAction", "", "", "Argument[0].SyntheticField[androidx.slice.Slice.action]", "Argument[-1].SyntheticField[androidx.slice.Slice.action]", "taint", "manual"]
+      - ["androidx.slice.builders", "ListBuilder", True, "addGridRow", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["androidx.slice.builders", "ListBuilder", True, "addGridRow", "", "", "Argument[0].SyntheticField[androidx.slice.Slice.action]", "Argument[-1].SyntheticField[androidx.slice.Slice.action]", "taint", "manual"]
+      - ["androidx.slice.builders", "ListBuilder", True, "addInputRange", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["androidx.slice.builders", "ListBuilder", True, "addInputRange", "", "", "Argument[0].SyntheticField[androidx.slice.Slice.action]", "Argument[-1].SyntheticField[androidx.slice.Slice.action]", "taint", "manual"]
+      - ["androidx.slice.builders", "ListBuilder", True, "addRange", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["androidx.slice.builders", "ListBuilder", True, "addRange", "", "", "Argument[0].SyntheticField[androidx.slice.Slice.action]", "Argument[-1].SyntheticField[androidx.slice.Slice.action]", "taint", "manual"]
+      - ["androidx.slice.builders", "ListBuilder", True, "addRating", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["androidx.slice.builders", "ListBuilder", True, "addRating", "", "", "Argument[0].SyntheticField[androidx.slice.Slice.action]", "Argument[-1].SyntheticField[androidx.slice.Slice.action]", "taint", "manual"]
+      - ["androidx.slice.builders", "ListBuilder", True, "addRow", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["androidx.slice.builders", "ListBuilder", True, "addRow", "", "", "Argument[0].SyntheticField[androidx.slice.Slice.action]", "Argument[-1].SyntheticField[androidx.slice.Slice.action]", "taint", "manual"]
+      - ["androidx.slice.builders", "ListBuilder", True, "addSelection", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["androidx.slice.builders", "ListBuilder", True, "addSelection", "", "", "Argument[0].SyntheticField[androidx.slice.Slice.action]", "Argument[-1].SyntheticField[androidx.slice.Slice.action]", "taint", "manual"]
+      - ["androidx.slice.builders", "ListBuilder", True, "build", "", "", "Argument[-1].SyntheticField[androidx.slice.Slice.action]", "ReturnValue", "taint", "manual"]
+      - ["androidx.slice.builders", "ListBuilder", True, "setAccentColor", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["androidx.slice.builders", "ListBuilder", True, "setHeader", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["androidx.slice.builders", "ListBuilder", True, "setHeader", "", "", "Argument[0].SyntheticField[androidx.slice.Slice.action]", "Argument[-1].SyntheticField[androidx.slice.Slice.action]", "taint", "manual"]
+      - ["androidx.slice.builders", "ListBuilder", True, "setHostExtras", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["androidx.slice.builders", "ListBuilder", True, "setIsError", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["androidx.slice.builders", "ListBuilder", True, "setKeywords", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["androidx.slice.builders", "ListBuilder", True, "setLayoutDirection", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["androidx.slice.builders", "ListBuilder", True, "setSeeMoreAction", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["androidx.slice.builders", "ListBuilder", True, "setSeeMoreAction", "(PendingIntent)", "", "Argument[0]", "Argument[-1].SyntheticField[androidx.slice.Slice.action]", "taint", "manual"]
+      - ["androidx.slice.builders", "ListBuilder", True, "setSeeMoreRow", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["androidx.slice.builders", "ListBuilder", True, "setSeeMoreRow", "", "", "Argument[0].SyntheticField[androidx.slice.Slice.action]", "Argument[-1].SyntheticField[androidx.slice.Slice.action]", "taint", "manual"]
+      - ["androidx.slice.builders", "ListBuilder$HeaderBuilder", True, "setContentDescription", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["androidx.slice.builders", "ListBuilder$HeaderBuilder", True, "setLayoutDirection", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["androidx.slice.builders", "ListBuilder$HeaderBuilder", True, "setPrimaryAction", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["androidx.slice.builders", "ListBuilder$HeaderBuilder", True, "setPrimaryAction", "", "", "Argument[0].SyntheticField[androidx.slice.Slice.action]", "Argument[-1].SyntheticField[androidx.slice.Slice.action]", "taint", "manual"]
+      - ["androidx.slice.builders", "ListBuilder$HeaderBuilder", True, "setSubtitle", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["androidx.slice.builders", "ListBuilder$HeaderBuilder", True, "setSummary", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["androidx.slice.builders", "ListBuilder$HeaderBuilder", True, "setTitle", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["androidx.slice.builders", "ListBuilder$InputRangeBuilder", True, "addEndItem", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["androidx.slice.builders", "ListBuilder$InputRangeBuilder", True, "addEndItem", "", "", "Argument[0].SyntheticField[androidx.slice.Slice.action]", "Argument[-1].SyntheticField[androidx.slice.Slice.action]", "taint", "manual"]
+      - ["androidx.slice.builders", "ListBuilder$InputRangeBuilder", True, "setContentDescription", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["androidx.slice.builders", "ListBuilder$InputRangeBuilder", True, "setInputAction", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["androidx.slice.builders", "ListBuilder$InputRangeBuilder", True, "setInputAction", "(PendingIntent)", "", "Argument[0]", "Argument[-1].SyntheticField[androidx.slice.Slice.action]", "taint", "manual"]
+      - ["androidx.slice.builders", "ListBuilder$InputRangeBuilder", True, "setLayoutDirection", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["androidx.slice.builders", "ListBuilder$InputRangeBuilder", True, "setMax", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["androidx.slice.builders", "ListBuilder$InputRangeBuilder", True, "setMin", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["androidx.slice.builders", "ListBuilder$InputRangeBuilder", True, "setPrimaryAction", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["androidx.slice.builders", "ListBuilder$InputRangeBuilder", True, "setPrimaryAction", "", "", "Argument[0].SyntheticField[androidx.slice.Slice.action]", "Argument[-1].SyntheticField[androidx.slice.Slice.action]", "taint", "manual"]
+      - ["androidx.slice.builders", "ListBuilder$InputRangeBuilder", True, "setSubtitle", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["androidx.slice.builders", "ListBuilder$InputRangeBuilder", True, "setThumb", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["androidx.slice.builders", "ListBuilder$InputRangeBuilder", True, "setTitle", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["androidx.slice.builders", "ListBuilder$InputRangeBuilder", True, "setTitleItem", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["androidx.slice.builders", "ListBuilder$InputRangeBuilder", True, "setValue", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["androidx.slice.builders", "ListBuilder$RangeBuilder", True, "setContentDescription", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["androidx.slice.builders", "ListBuilder$RangeBuilder", True, "setMax", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["androidx.slice.builders", "ListBuilder$RangeBuilder", True, "setMode", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["androidx.slice.builders", "ListBuilder$RangeBuilder", True, "setPrimaryAction", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["androidx.slice.builders", "ListBuilder$RangeBuilder", True, "setPrimaryAction", "", "", "Argument[0].SyntheticField[androidx.slice.Slice.action]", "Argument[-1].SyntheticField[androidx.slice.Slice.action]", "taint", "manual"]
+      - ["androidx.slice.builders", "ListBuilder$RangeBuilder", True, "setSubtitle", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["androidx.slice.builders", "ListBuilder$RangeBuilder", True, "setTitle", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["androidx.slice.builders", "ListBuilder$RangeBuilder", True, "setTitleItem", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["androidx.slice.builders", "ListBuilder$RangeBuilder", True, "setValue", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["androidx.slice.builders", "ListBuilder$RatingBuilder", True, "setContentDescription", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["androidx.slice.builders", "ListBuilder$RatingBuilder", True, "setInputAction", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["androidx.slice.builders", "ListBuilder$RatingBuilder", True, "setInputAction", "(PendingIntent)", "", "Argument[0]", "Argument[-1].SyntheticField[androidx.slice.Slice.action]", "taint", "manual"]
+      - ["androidx.slice.builders", "ListBuilder$RatingBuilder", True, "setMax", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["androidx.slice.builders", "ListBuilder$RatingBuilder", True, "setMin", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["androidx.slice.builders", "ListBuilder$RatingBuilder", True, "setPrimaryAction", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["androidx.slice.builders", "ListBuilder$RatingBuilder", True, "setPrimaryAction", "", "", "Argument[0].SyntheticField[androidx.slice.Slice.action]", "Argument[-1].SyntheticField[androidx.slice.Slice.action]", "taint", "manual"]
+      - ["androidx.slice.builders", "ListBuilder$RatingBuilder", True, "setSubtitle", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["androidx.slice.builders", "ListBuilder$RatingBuilder", True, "setTitle", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["androidx.slice.builders", "ListBuilder$RatingBuilder", True, "setTitleItem", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["androidx.slice.builders", "ListBuilder$RatingBuilder", True, "setValue", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["androidx.slice.builders", "ListBuilder$RowBuilder", True, "addEndItem", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["androidx.slice.builders", "ListBuilder$RowBuilder", True, "addEndItem", "(SliceAction)", "", "Argument[0].SyntheticField[androidx.slice.Slice.action]", "Argument[-1].SyntheticField[androidx.slice.Slice.action]", "taint", "manual"]
+      - ["androidx.slice.builders", "ListBuilder$RowBuilder", True, "addEndItem", "(SliceAction,boolean)", "", "Argument[0].SyntheticField[androidx.slice.Slice.action]", "Argument[-1].SyntheticField[androidx.slice.Slice.action]", "taint", "manual"]
+      - ["androidx.slice.builders", "ListBuilder$RowBuilder", True, "setContentDescription", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["androidx.slice.builders", "ListBuilder$RowBuilder", True, "setEndOfSection", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["androidx.slice.builders", "ListBuilder$RowBuilder", True, "setLayoutDirection", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["androidx.slice.builders", "ListBuilder$RowBuilder", True, "setPrimaryAction", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["androidx.slice.builders", "ListBuilder$RowBuilder", True, "setPrimaryAction", "", "", "Argument[0].SyntheticField[androidx.slice.Slice.action]", "Argument[-1].SyntheticField[androidx.slice.Slice.action]", "taint", "manual"]
+      - ["androidx.slice.builders", "ListBuilder$RowBuilder", True, "setSubtitle", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["androidx.slice.builders", "ListBuilder$RowBuilder", True, "setTitle", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["androidx.slice.builders", "ListBuilder$RowBuilder", True, "setTitleItem", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["androidx.slice.builders", "ListBuilder$RowBuilder", True, "setTitleItem", "(SliceAction)", "", "Argument[0].SyntheticField[androidx.slice.Slice.action]", "Argument[-1].SyntheticField[androidx.slice.Slice.action]", "taint", "manual"]
+      - ["androidx.slice.builders", "ListBuilder$RowBuilder", True, "setTitleItem", "(SliceAction,boolean)", "", "Argument[0].SyntheticField[androidx.slice.Slice.action]", "Argument[-1].SyntheticField[androidx.slice.Slice.action]", "taint", "manual"]
+      - ["androidx.slice.builders", "SliceAction", True, "create", "(PendingIntent,IconCompat,int,CharSequence)", "", "Argument[0]", "ReturnValue.SyntheticField[androidx.slice.Slice.action]", "taint", "manual"]
+      - ["androidx.slice.builders", "SliceAction", True, "createDeeplink", "(PendingIntent,IconCompat,int,CharSequence)", "", "Argument[0]", "ReturnValue.SyntheticField[androidx.slice.Slice.action]", "taint", "manual"]
+      - ["androidx.slice.builders", "SliceAction", True, "createToggle", "(PendingIntent,CharSequence,boolean)", "", "Argument[0]", "ReturnValue.SyntheticField[androidx.slice.Slice.action]", "taint", "manual"]
+      - ["androidx.slice.builders", "SliceAction", True, "getAction", "", "", "Argument[-1].SyntheticField[androidx.slice.Slice.action]", "ReturnValue", "taint", "manual"]
+      - ["androidx.slice.builders", "SliceAction", True, "setChecked", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["androidx.slice.builders", "SliceAction", True, "setContentDescription", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["androidx.slice.builders", "SliceAction", True, "setPriority", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
diff --git a/java/ql/lib/ext/androidx.slice.model.yml b/java/ql/lib/ext/androidx.slice.model.yml
new file mode 100644
index 00000000000..770b1797538
--- /dev/null
+++ b/java/ql/lib/ext/androidx.slice.model.yml
@@ -0,0 +1,16 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSourceModel
+    data:
+      - ["androidx.slice", "SliceProvider", True, "onBindSlice", "", "", "Parameter[0]", "contentprovider", "manual"]
+      - ["androidx.slice", "SliceProvider", True, "onCreatePermissionRequest", "", "", "Parameter[0]", "contentprovider", "manual"]
+      - ["androidx.slice", "SliceProvider", True, "onMapIntentToUri", "", "", "Parameter[0]", "contentprovider", "manual"]
+      - ["androidx.slice", "SliceProvider", True, "onSlicePinned", "", "", "Parameter[0]", "contentprovider", "manual"]
+      - ["androidx.slice", "SliceProvider", True, "onSliceUnpinned", "", "", "Parameter[0]", "contentprovider", "manual"]
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSinkModel
+    data:
+      - ["androidx.slice", "SliceProvider", True, "onBindSlice", "", "", "ReturnValue", "pending-intent-sent", "manual"]
+      - ["androidx.slice", "SliceProvider", True, "onCreatePermissionRequest", "", "", "ReturnValue", "pending-intent-sent", "manual"]
diff --git a/java/ql/lib/ext/cn.hutool.core.codec.model.yml b/java/ql/lib/ext/cn.hutool.core.codec.model.yml
new file mode 100644
index 00000000000..fdd0766ffe4
--- /dev/null
+++ b/java/ql/lib/ext/cn.hutool.core.codec.model.yml
@@ -0,0 +1,6 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSummaryModel
+    data:
+      - ["cn.hutool.core.codec", "Base64", True, "decode", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
diff --git a/java/ql/lib/ext/com.esotericsoftware.kryo.io.model.yml b/java/ql/lib/ext/com.esotericsoftware.kryo.io.model.yml
new file mode 100644
index 00000000000..0acf40fe015
--- /dev/null
+++ b/java/ql/lib/ext/com.esotericsoftware.kryo.io.model.yml
@@ -0,0 +1,6 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSummaryModel
+    data:
+      - ["com.esotericsoftware.kryo.io", "Input", False, "Input", "", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
diff --git a/java/ql/lib/ext/com.esotericsoftware.kryo5.io.model.yml b/java/ql/lib/ext/com.esotericsoftware.kryo5.io.model.yml
new file mode 100644
index 00000000000..e71107e7a63
--- /dev/null
+++ b/java/ql/lib/ext/com.esotericsoftware.kryo5.io.model.yml
@@ -0,0 +1,6 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSummaryModel
+    data:
+      - ["com.esotericsoftware.kryo5.io", "Input", False, "Input", "", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
diff --git a/java/ql/lib/ext/com.fasterxml.jackson.core.model.yml b/java/ql/lib/ext/com.fasterxml.jackson.core.model.yml
new file mode 100644
index 00000000000..7510d7ed936
--- /dev/null
+++ b/java/ql/lib/ext/com.fasterxml.jackson.core.model.yml
@@ -0,0 +1,6 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSummaryModel
+    data:
+      - ["com.fasterxml.jackson.core", "JsonFactory", False, "createParser", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
diff --git a/java/ql/lib/ext/com.fasterxml.jackson.databind.model.yml b/java/ql/lib/ext/com.fasterxml.jackson.databind.model.yml
new file mode 100644
index 00000000000..880b6bee044
--- /dev/null
+++ b/java/ql/lib/ext/com.fasterxml.jackson.databind.model.yml
@@ -0,0 +1,11 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSummaryModel
+    data:
+      - ["com.fasterxml.jackson.databind", "ObjectMapper", True, "convertValue", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["com.fasterxml.jackson.databind", "ObjectMapper", False, "createParser", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["com.fasterxml.jackson.databind", "ObjectMapper", True, "valueToTree", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["com.fasterxml.jackson.databind", "ObjectMapper", True, "valueToTree", "", "", "Argument[0].MapValue", "ReturnValue", "taint", "manual"]
+      - ["com.fasterxml.jackson.databind", "ObjectMapper", True, "valueToTree", "", "", "Argument[0].MapValue.Element", "ReturnValue", "taint", "manual"]
+      - ["com.fasterxml.jackson.databind", "ObjectReader", False, "createParser", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
diff --git a/java/ql/lib/ext/com.google.common.base.model.yml b/java/ql/lib/ext/com.google.common.base.model.yml
new file mode 100644
index 00000000000..aaff117fbed
--- /dev/null
+++ b/java/ql/lib/ext/com.google.common.base.model.yml
@@ -0,0 +1,98 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSinkModel
+    data:
+      - ["com.google.common.base", "Splitter", False, "onPattern", "(String)", "", "Argument[0]", "regex-use[]", "manual"]
+      - ["com.google.common.base", "Splitter", False, "split", "(CharSequence)", "", "Argument[-1]", "regex-use[0]", "manual"]
+      - ["com.google.common.base", "Splitter", False, "splitToList", "(CharSequence)", "", "Argument[-1]", "regex-use[0]", "manual"]
+      - ["com.google.common.base", "Splitter$MapSplitter", False, "split", "(CharSequence)", "", "Argument[-1]", "regex-use[0]", "manual"]
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSummaryModel
+    data:
+      - ["com.google.common.base", "Ascii", False, "toLowerCase", "(CharSequence)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["com.google.common.base", "Ascii", False, "toLowerCase", "(String)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["com.google.common.base", "Ascii", False, "toUpperCase", "(CharSequence)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["com.google.common.base", "Ascii", False, "toUpperCase", "(String)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["com.google.common.base", "Ascii", False, "truncate", "(CharSequence,int,String)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["com.google.common.base", "Ascii", False, "truncate", "(CharSequence,int,String)", "", "Argument[2]", "ReturnValue", "taint", "manual"]
+      - ["com.google.common.base", "CaseFormat", True, "to", "(CaseFormat,String)", "", "Argument[1]", "ReturnValue", "taint", "manual"]
+      - ["com.google.common.base", "Converter", True, "apply", "(Object)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["com.google.common.base", "Converter", True, "convert", "(Object)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["com.google.common.base", "Converter", True, "convertAll", "(Iterable)", "", "Argument[0].Element", "ReturnValue.Element", "taint", "manual"]
+      - ["com.google.common.base", "Joiner", False, "appendTo", "", "", "Argument[-1]", "Argument[0]", "taint", "manual"]
+      - ["com.google.common.base", "Joiner", False, "appendTo", "", "", "Argument[0]", "ReturnValue", "value", "manual"]
+      - ["com.google.common.base", "Joiner", False, "appendTo", "(Appendable,Iterable)", "", "Argument[1].Element", "Argument[-1]", "taint", "manual"]
+      - ["com.google.common.base", "Joiner", False, "appendTo", "(Appendable,Iterator)", "", "Argument[1].Element", "Argument[-1]", "taint", "manual"]
+      - ["com.google.common.base", "Joiner", False, "appendTo", "(Appendable,Object,Object,Object[])", "", "Argument[1..2]", "Argument[0]", "taint", "manual"]
+      - ["com.google.common.base", "Joiner", False, "appendTo", "(Appendable,Object,Object,Object[])", "", "Argument[3].ArrayElement", "Argument[0]", "taint", "manual"]
+      - ["com.google.common.base", "Joiner", False, "appendTo", "(Appendable,Object[])", "", "Argument[1].ArrayElement", "Argument[-1]", "taint", "manual"]
+      - ["com.google.common.base", "Joiner", False, "appendTo", "(StringBuilder,Iterable)", "", "Argument[1].Element", "Argument[-1]", "taint", "manual"]
+      - ["com.google.common.base", "Joiner", False, "appendTo", "(StringBuilder,Iterator)", "", "Argument[1].Element", "Argument[-1]", "taint", "manual"]
+      - ["com.google.common.base", "Joiner", False, "appendTo", "(StringBuilder,Object,Object,Object[])", "", "Argument[1..2]", "Argument[0]", "taint", "manual"]
+      - ["com.google.common.base", "Joiner", False, "appendTo", "(StringBuilder,Object,Object,Object[])", "", "Argument[3].ArrayElement", "Argument[0]", "taint", "manual"]
+      - ["com.google.common.base", "Joiner", False, "appendTo", "(StringBuilder,Object[])", "", "Argument[1].ArrayElement", "Argument[-1]", "taint", "manual"]
+      - ["com.google.common.base", "Joiner", False, "join", "", "", "Argument[-1..2]", "ReturnValue", "taint", "manual"]
+      - ["com.google.common.base", "Joiner", False, "on", "(String)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["com.google.common.base", "Joiner", False, "skipNulls", "()", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["com.google.common.base", "Joiner", False, "useForNull", "(String)", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["com.google.common.base", "Joiner", False, "useForNull", "(String)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["com.google.common.base", "Joiner", False, "withKeyValueSeparator", "(String)", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["com.google.common.base", "Joiner", False, "withKeyValueSeparator", "(String)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["com.google.common.base", "Joiner", False, "withKeyValueSeparator", "(char)", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["com.google.common.base", "Joiner$MapJoiner", False, "appendTo", "", "", "Argument[0]", "ReturnValue", "value", "manual"]
+      - ["com.google.common.base", "Joiner$MapJoiner", False, "appendTo", "", "", "Argument[1]", "Argument[0]", "taint", "manual"]
+      - ["com.google.common.base", "Joiner$MapJoiner", False, "join", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["com.google.common.base", "Joiner$MapJoiner", False, "join", "(Iterable)", "", "Argument[0].Element.MapKey", "ReturnValue", "taint", "manual"]
+      - ["com.google.common.base", "Joiner$MapJoiner", False, "join", "(Iterable)", "", "Argument[0].Element.MapValue", "ReturnValue", "taint", "manual"]
+      - ["com.google.common.base", "Joiner$MapJoiner", False, "join", "(Iterator)", "", "Argument[0].Element.MapKey", "ReturnValue", "taint", "manual"]
+      - ["com.google.common.base", "Joiner$MapJoiner", False, "join", "(Iterator)", "", "Argument[0].Element.MapValue", "ReturnValue", "taint", "manual"]
+      - ["com.google.common.base", "Joiner$MapJoiner", False, "join", "(Map)", "", "Argument[0].MapKey", "ReturnValue", "taint", "manual"]
+      - ["com.google.common.base", "Joiner$MapJoiner", False, "join", "(Map)", "", "Argument[0].MapValue", "ReturnValue", "taint", "manual"]
+      - ["com.google.common.base", "Joiner$MapJoiner", False, "useForNull", "(String)", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["com.google.common.base", "Joiner$MapJoiner", False, "useForNull", "(String)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["com.google.common.base", "MoreObjects", False, "firstNonNull", "(Object,Object)", "", "Argument[0..1]", "ReturnValue", "value", "manual"]
+      - ["com.google.common.base", "MoreObjects", False, "toStringHelper", "(String)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["com.google.common.base", "MoreObjects$ToStringHelper", False, "add", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["com.google.common.base", "MoreObjects$ToStringHelper", False, "add", "", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["com.google.common.base", "MoreObjects$ToStringHelper", False, "add", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["com.google.common.base", "MoreObjects$ToStringHelper", False, "add", "(String,Object)", "", "Argument[1]", "Argument[-1]", "taint", "manual"]
+      - ["com.google.common.base", "MoreObjects$ToStringHelper", False, "add", "(String,Object)", "", "Argument[1]", "ReturnValue", "taint", "manual"]
+      - ["com.google.common.base", "MoreObjects$ToStringHelper", False, "addValue", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["com.google.common.base", "MoreObjects$ToStringHelper", False, "addValue", "(Object)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["com.google.common.base", "MoreObjects$ToStringHelper", False, "addValue", "(Object)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["com.google.common.base", "MoreObjects$ToStringHelper", False, "omitNullValues", "()", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["com.google.common.base", "MoreObjects$ToStringHelper", False, "toString", "()", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["com.google.common.base", "Optional", True, "asSet", "()", "", "Argument[-1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["com.google.common.base", "Optional", True, "fromJavaUtil", "(Optional)", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["com.google.common.base", "Optional", True, "fromNullable", "(Object)", "", "Argument[0]", "ReturnValue.Element", "value", "manual"]
+      - ["com.google.common.base", "Optional", True, "get", "()", "", "Argument[-1].Element", "ReturnValue", "value", "manual"]
+      - ["com.google.common.base", "Optional", True, "of", "(Object)", "", "Argument[0]", "ReturnValue.Element", "value", "manual"]
+      - ["com.google.common.base", "Optional", True, "or", "(Object)", "", "Argument[-1].Element", "ReturnValue", "value", "manual"]
+      - ["com.google.common.base", "Optional", True, "or", "(Object)", "", "Argument[0]", "ReturnValue", "value", "manual"]
+      - ["com.google.common.base", "Optional", True, "or", "(Optional)", "", "Argument[-1..0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["com.google.common.base", "Optional", True, "or", "(Supplier)", "", "Argument[-1].Element", "ReturnValue", "value", "manual"]
+      - ["com.google.common.base", "Optional", True, "or", "(Supplier)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["com.google.common.base", "Optional", True, "orNull", "()", "", "Argument[-1].Element", "ReturnValue", "value", "manual"]
+      - ["com.google.common.base", "Optional", True, "presentInstances", "(Iterable)", "", "Argument[0].Element.Element", "ReturnValue.Element", "value", "manual"]
+      - ["com.google.common.base", "Optional", True, "toJavaUtil", "()", "", "Argument[-1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["com.google.common.base", "Optional", True, "toJavaUtil", "(Optional)", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["com.google.common.base", "Preconditions", False, "checkNotNull", "", "", "Argument[0]", "ReturnValue", "value", "manual"]
+      - ["com.google.common.base", "Splitter", False, "split", "(CharSequence)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["com.google.common.base", "Splitter", False, "splitToList", "(CharSequence)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["com.google.common.base", "Splitter", False, "splitToStream", "(CharSequence)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["com.google.common.base", "Splitter$MapSplitter", False, "split", "(CharSequence)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["com.google.common.base", "Strings", False, "emptyToNull", "(String)", "", "Argument[0]", "ReturnValue", "value", "manual"]
+      - ["com.google.common.base", "Strings", False, "lenientFormat", "(String,Object[])", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["com.google.common.base", "Strings", False, "lenientFormat", "(String,Object[])", "", "Argument[1].ArrayElement", "ReturnValue", "taint", "manual"]
+      - ["com.google.common.base", "Strings", False, "nullToEmpty", "(String)", "", "Argument[0]", "ReturnValue", "value", "manual"]
+      - ["com.google.common.base", "Strings", False, "padEnd", "(String,int,char)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["com.google.common.base", "Strings", False, "padStart", "(String,int,char)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["com.google.common.base", "Strings", False, "repeat", "(String,int)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["com.google.common.base", "Supplier", True, "get", "()", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["com.google.common.base", "Suppliers", False, "memoize", "(Supplier)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["com.google.common.base", "Suppliers", False, "memoizeWithExpiration", "(Supplier,long,TimeUnit)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["com.google.common.base", "Suppliers", False, "ofInstance", "(Object)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["com.google.common.base", "Suppliers", False, "synchronizedSupplier", "(Supplier)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["com.google.common.base", "Verify", False, "verifyNotNull", "", "", "Argument[0]", "ReturnValue", "value", "manual"]
diff --git a/java/ql/lib/ext/com.google.common.cache.model.yml b/java/ql/lib/ext/com.google.common.cache.model.yml
new file mode 100644
index 00000000000..673ee594992
--- /dev/null
+++ b/java/ql/lib/ext/com.google.common.cache.model.yml
@@ -0,0 +1,22 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSummaryModel
+    data:
+      - ["com.google.common.cache", "Cache", True, "asMap", "()", "", "Argument[-1].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["com.google.common.cache", "Cache", True, "asMap", "()", "", "Argument[-1].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["com.google.common.cache", "Cache", True, "get", "(Object,Callable)", "", "Argument[-1].MapValue", "ReturnValue", "value", "manual"]
+      - ["com.google.common.cache", "Cache", True, "getAllPresent", "(Iterable)", "", "Argument[-1].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["com.google.common.cache", "Cache", True, "getAllPresent", "(Iterable)", "", "Argument[-1].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["com.google.common.cache", "Cache", True, "getAllPresent", "(Iterable)", "", "Argument[0].Element", "ReturnValue.MapKey", "value", "manual"]
+      - ["com.google.common.cache", "Cache", True, "getIfPresent", "(Object)", "", "Argument[-1].MapValue", "ReturnValue", "value", "manual"]
+      - ["com.google.common.cache", "Cache", True, "put", "(Object,Object)", "", "Argument[0]", "Argument[-1].MapKey", "value", "manual"]
+      - ["com.google.common.cache", "Cache", True, "put", "(Object,Object)", "", "Argument[1]", "Argument[-1].MapValue", "value", "manual"]
+      - ["com.google.common.cache", "Cache", True, "putAll", "(Map)", "", "Argument[0].MapKey", "Argument[-1].MapKey", "value", "manual"]
+      - ["com.google.common.cache", "Cache", True, "putAll", "(Map)", "", "Argument[0].MapValue", "Argument[-1].MapValue", "value", "manual"]
+      - ["com.google.common.cache", "LoadingCache", True, "apply", "(Object)", "", "Argument[-1].MapValue", "ReturnValue", "value", "manual"]
+      - ["com.google.common.cache", "LoadingCache", True, "get", "(Object)", "", "Argument[-1].MapValue", "ReturnValue", "value", "manual"]
+      - ["com.google.common.cache", "LoadingCache", True, "getAll", "(Iterable)", "", "Argument[-1].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["com.google.common.cache", "LoadingCache", True, "getAll", "(Iterable)", "", "Argument[0].Element", "Argument[-1].MapKey", "value", "manual"]
+      - ["com.google.common.cache", "LoadingCache", True, "getAll", "(Iterable)", "", "Argument[0].Element", "ReturnValue.MapKey", "value", "manual"]
+      - ["com.google.common.cache", "LoadingCache", True, "getUnchecked", "(Object)", "", "Argument[-1].MapValue", "ReturnValue", "value", "manual"]
diff --git a/java/ql/lib/ext/com.google.common.collect.model.yml b/java/ql/lib/ext/com.google.common.collect.model.yml
new file mode 100644
index 00000000000..434fb34d728
--- /dev/null
+++ b/java/ql/lib/ext/com.google.common.collect.model.yml
@@ -0,0 +1,558 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSummaryModel
+    data:
+      - ["com.google.common.collect", "ArrayListMultimap", True, "create", "(Multimap)", "", "Argument[0].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["com.google.common.collect", "ArrayListMultimap", True, "create", "(Multimap)", "", "Argument[0].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["com.google.common.collect", "ArrayTable", True, "create", "(Iterable,Iterable)", "", "Argument[0].Element", "ReturnValue.SyntheticField[com.google.common.collect.Table.rowKey]", "value", "manual"]
+      - ["com.google.common.collect", "ArrayTable", True, "create", "(Iterable,Iterable)", "", "Argument[1].Element", "ReturnValue.SyntheticField[com.google.common.collect.Table.columnKey]", "value", "manual"]
+      - ["com.google.common.collect", "ArrayTable", True, "create", "(Table)", "", "Argument[0].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["com.google.common.collect", "ArrayTable", True, "create", "(Table)", "", "Argument[0].SyntheticField[com.google.common.collect.Table.columnKey]", "ReturnValue.SyntheticField[com.google.common.collect.Table.columnKey]", "value", "manual"]
+      - ["com.google.common.collect", "ArrayTable", True, "create", "(Table)", "", "Argument[0].SyntheticField[com.google.common.collect.Table.rowKey]", "ReturnValue.SyntheticField[com.google.common.collect.Table.rowKey]", "value", "manual"]
+      - ["com.google.common.collect", "BiMap", True, "forcePut", "(Object,Object)", "", "Argument[0]", "Argument[-1].MapKey", "value", "manual"]
+      - ["com.google.common.collect", "BiMap", True, "forcePut", "(Object,Object)", "", "Argument[1]", "Argument[-1].MapValue", "value", "manual"]
+      - ["com.google.common.collect", "BiMap", True, "inverse", "()", "", "Argument[-1].MapKey", "ReturnValue.MapValue", "value", "manual"]
+      - ["com.google.common.collect", "BiMap", True, "inverse", "()", "", "Argument[-1].MapValue", "ReturnValue.MapKey", "value", "manual"]
+      - ["com.google.common.collect", "ClassToInstanceMap", True, "getInstance", "(Class)", "", "Argument[-1].MapValue", "ReturnValue", "value", "manual"]
+      - ["com.google.common.collect", "ClassToInstanceMap", True, "putInstance", "(Class,Object)", "", "Argument[-1].MapValue", "ReturnValue", "value", "manual"]
+      - ["com.google.common.collect", "ClassToInstanceMap", True, "putInstance", "(Class,Object)", "", "Argument[1]", "Argument[-1].MapValue", "value", "manual"]
+      - ["com.google.common.collect", "Collections2", False, "filter", "(Collection,Predicate)", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["com.google.common.collect", "Collections2", False, "orderedPermutations", "(Iterable)", "", "Argument[0].Element", "ReturnValue.Element.Element", "value", "manual"]
+      - ["com.google.common.collect", "Collections2", False, "orderedPermutations", "(Iterable,Comparator)", "", "Argument[0].Element", "ReturnValue.Element.Element", "value", "manual"]
+      - ["com.google.common.collect", "Collections2", False, "permutations", "(Collection)", "", "Argument[0].Element", "ReturnValue.Element.Element", "value", "manual"]
+      - ["com.google.common.collect", "ConcurrentHashMultiset", True, "create", "(Iterable)", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["com.google.common.collect", "HashBasedTable", True, "create", "(Table)", "", "Argument[0].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["com.google.common.collect", "HashBasedTable", True, "create", "(Table)", "", "Argument[0].SyntheticField[com.google.common.collect.Table.columnKey]", "ReturnValue.SyntheticField[com.google.common.collect.Table.columnKey]", "value", "manual"]
+      - ["com.google.common.collect", "HashBasedTable", True, "create", "(Table)", "", "Argument[0].SyntheticField[com.google.common.collect.Table.rowKey]", "ReturnValue.SyntheticField[com.google.common.collect.Table.rowKey]", "value", "manual"]
+      - ["com.google.common.collect", "HashBiMap", True, "create", "(Map)", "", "Argument[0].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["com.google.common.collect", "HashBiMap", True, "create", "(Map)", "", "Argument[0].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["com.google.common.collect", "HashMultimap", True, "create", "(Multimap)", "", "Argument[0].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["com.google.common.collect", "HashMultimap", True, "create", "(Multimap)", "", "Argument[0].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["com.google.common.collect", "HashMultiset", True, "create", "(Iterable)", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableBiMap", True, "of", "", "", "Argument[0]", "ReturnValue.MapKey", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableBiMap", True, "of", "", "", "Argument[1]", "ReturnValue.MapValue", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableBiMap", True, "of", "", "", "Argument[2]", "ReturnValue.MapKey", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableBiMap", True, "of", "", "", "Argument[3]", "ReturnValue.MapValue", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableBiMap", True, "of", "", "", "Argument[4]", "ReturnValue.MapKey", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableBiMap", True, "of", "", "", "Argument[5]", "ReturnValue.MapValue", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableBiMap", True, "of", "", "", "Argument[6]", "ReturnValue.MapKey", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableBiMap", True, "of", "", "", "Argument[7]", "ReturnValue.MapValue", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableBiMap", True, "of", "", "", "Argument[8]", "ReturnValue.MapKey", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableBiMap", True, "of", "", "", "Argument[9]", "ReturnValue.MapValue", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableClassToInstanceMap", True, "copyOf", "(Map)", "", "Argument[0].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableClassToInstanceMap", True, "copyOf", "(Map)", "", "Argument[0].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableClassToInstanceMap", True, "of", "(Class,Object)", "", "Argument[0]", "ReturnValue.MapKey", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableClassToInstanceMap", True, "of", "(Class,Object)", "", "Argument[1]", "ReturnValue.MapValue", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableCollection", True, "asList", "()", "", "Argument[-1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableCollection$Builder", True, "add", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableCollection$Builder", True, "add", "(Object)", "", "Argument[0]", "Argument[-1].Element", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableCollection$Builder", True, "add", "(Object[])", "", "Argument[0].ArrayElement", "Argument[-1].Element", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableCollection$Builder", True, "addAll", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableCollection$Builder", True, "addAll", "(Iterable)", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableCollection$Builder", True, "addAll", "(Iterator)", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableCollection$Builder", True, "build", "()", "", "Argument[-1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableList", True, "copyOf", "(Collection)", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableList", True, "copyOf", "(Iterable)", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableList", True, "copyOf", "(Iterator)", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableList", True, "copyOf", "(Object[])", "", "Argument[0].ArrayElement", "ReturnValue.Element", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableList", True, "of", "", "", "Argument[0..11]", "ReturnValue.Element", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableList", True, "of", "", "", "Argument[12].ArrayElement", "ReturnValue.Element", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableList", True, "reverse", "()", "", "Argument[-1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableList", True, "sortedCopyOf", "(Comparator,Iterable)", "", "Argument[1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableList", True, "sortedCopyOf", "(Iterable)", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableListMultimap", True, "of", "", "", "Argument[0]", "ReturnValue.MapKey", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableListMultimap", True, "of", "", "", "Argument[1]", "ReturnValue.MapValue", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableListMultimap", True, "of", "", "", "Argument[2]", "ReturnValue.MapKey", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableListMultimap", True, "of", "", "", "Argument[3]", "ReturnValue.MapValue", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableListMultimap", True, "of", "", "", "Argument[4]", "ReturnValue.MapKey", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableListMultimap", True, "of", "", "", "Argument[5]", "ReturnValue.MapValue", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableListMultimap", True, "of", "", "", "Argument[6]", "ReturnValue.MapKey", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableListMultimap", True, "of", "", "", "Argument[7]", "ReturnValue.MapValue", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableListMultimap", True, "of", "", "", "Argument[8]", "ReturnValue.MapKey", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableListMultimap", True, "of", "", "", "Argument[9]", "ReturnValue.MapValue", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableMap", True, "copyOf", "(Iterable)", "", "Argument[0].Element.MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableMap", True, "copyOf", "(Iterable)", "", "Argument[0].Element.MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableMap", True, "copyOf", "(Map)", "", "Argument[0].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableMap", True, "copyOf", "(Map)", "", "Argument[0].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableMap", True, "of", "", "", "Argument[0]", "ReturnValue.MapKey", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableMap", True, "of", "", "", "Argument[1]", "ReturnValue.MapValue", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableMap", True, "of", "", "", "Argument[2]", "ReturnValue.MapKey", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableMap", True, "of", "", "", "Argument[3]", "ReturnValue.MapValue", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableMap", True, "of", "", "", "Argument[4]", "ReturnValue.MapKey", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableMap", True, "of", "", "", "Argument[5]", "ReturnValue.MapValue", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableMap", True, "of", "", "", "Argument[6]", "ReturnValue.MapKey", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableMap", True, "of", "", "", "Argument[7]", "ReturnValue.MapValue", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableMap", True, "of", "", "", "Argument[8]", "ReturnValue.MapKey", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableMap", True, "of", "", "", "Argument[9]", "ReturnValue.MapValue", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableMap$Builder", True, "build", "()", "", "Argument[-1].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableMap$Builder", True, "build", "()", "", "Argument[-1].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableMap$Builder", True, "orderEntriesByValue", "(Comparator)", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableMap$Builder", True, "put", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableMap$Builder", True, "put", "(Entry)", "", "Argument[0].MapKey", "Argument[-1].MapKey", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableMap$Builder", True, "put", "(Entry)", "", "Argument[0].MapValue", "Argument[-1].MapValue", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableMap$Builder", True, "put", "(Object,Object)", "", "Argument[0]", "Argument[-1].MapKey", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableMap$Builder", True, "put", "(Object,Object)", "", "Argument[1]", "Argument[-1].MapValue", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableMap$Builder", True, "putAll", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableMap$Builder", True, "putAll", "(Iterable)", "", "Argument[0].Element.MapKey", "Argument[-1].MapKey", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableMap$Builder", True, "putAll", "(Iterable)", "", "Argument[0].Element.MapValue", "Argument[-1].MapValue", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableMap$Builder", True, "putAll", "(Map)", "", "Argument[0].MapKey", "Argument[-1].MapKey", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableMap$Builder", True, "putAll", "(Map)", "", "Argument[0].MapValue", "Argument[-1].MapValue", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableMultimap", True, "copyOf", "(Iterable)", "", "Argument[0].Element.MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableMultimap", True, "copyOf", "(Iterable)", "", "Argument[0].Element.MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableMultimap", True, "copyOf", "(Multimap)", "", "Argument[0].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableMultimap", True, "copyOf", "(Multimap)", "", "Argument[0].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableMultimap", True, "inverse", "()", "", "Argument[-1].MapKey", "ReturnValue.MapValue", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableMultimap", True, "inverse", "()", "", "Argument[-1].MapValue", "ReturnValue.MapKey", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableMultimap", True, "of", "", "", "Argument[0]", "ReturnValue.MapKey", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableMultimap", True, "of", "", "", "Argument[1]", "ReturnValue.MapValue", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableMultimap", True, "of", "", "", "Argument[2]", "ReturnValue.MapKey", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableMultimap", True, "of", "", "", "Argument[3]", "ReturnValue.MapValue", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableMultimap", True, "of", "", "", "Argument[4]", "ReturnValue.MapKey", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableMultimap", True, "of", "", "", "Argument[5]", "ReturnValue.MapValue", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableMultimap", True, "of", "", "", "Argument[6]", "ReturnValue.MapKey", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableMultimap", True, "of", "", "", "Argument[7]", "ReturnValue.MapValue", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableMultimap", True, "of", "", "", "Argument[8]", "ReturnValue.MapKey", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableMultimap", True, "of", "", "", "Argument[9]", "ReturnValue.MapValue", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableMultimap$Builder", True, "build", "()", "", "Argument[-1].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableMultimap$Builder", True, "build", "()", "", "Argument[-1].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableMultimap$Builder", True, "orderKeysBy", "(Comparator)", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableMultimap$Builder", True, "orderValuesBy", "(Comparator)", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableMultimap$Builder", True, "put", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableMultimap$Builder", True, "put", "(Entry)", "", "Argument[0].MapKey", "Argument[-1].MapKey", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableMultimap$Builder", True, "put", "(Entry)", "", "Argument[0].MapValue", "Argument[-1].MapValue", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableMultimap$Builder", True, "put", "(Object,Object)", "", "Argument[0]", "Argument[-1].MapKey", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableMultimap$Builder", True, "put", "(Object,Object)", "", "Argument[1]", "Argument[-1].MapValue", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableMultimap$Builder", True, "putAll", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableMultimap$Builder", True, "putAll", "(Iterable)", "", "Argument[0].Element.MapKey", "Argument[-1].MapKey", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableMultimap$Builder", True, "putAll", "(Iterable)", "", "Argument[0].Element.MapValue", "Argument[-1].MapValue", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableMultimap$Builder", True, "putAll", "(Multimap)", "", "Argument[0].MapKey", "Argument[-1].MapKey", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableMultimap$Builder", True, "putAll", "(Multimap)", "", "Argument[0].MapValue", "Argument[-1].MapValue", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableMultimap$Builder", True, "putAll", "(Object,Iterable)", "", "Argument[0]", "Argument[-1].MapKey", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableMultimap$Builder", True, "putAll", "(Object,Iterable)", "", "Argument[1].Element", "Argument[-1].MapValue", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableMultimap$Builder", True, "putAll", "(Object,Object[])", "", "Argument[0]", "Argument[-1].MapKey", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableMultimap$Builder", True, "putAll", "(Object,Object[])", "", "Argument[1].ArrayElement", "Argument[-1].MapValue", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableMultiset", True, "copyOf", "(Iterable)", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableMultiset", True, "copyOf", "(Iterator)", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableMultiset", True, "copyOf", "(Object[])", "", "Argument[0].ArrayElement", "ReturnValue.Element", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableMultiset", True, "of", "", "", "Argument[0..5]", "ReturnValue.Element", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableMultiset", True, "of", "", "", "Argument[6].ArrayElement", "ReturnValue.Element", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableMultiset$Builder", True, "addCopies", "(Object,int)", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableMultiset$Builder", True, "addCopies", "(Object,int)", "", "Argument[0]", "Argument[-1].Element", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableMultiset$Builder", True, "setCount", "(Object,int)", "", "Argument[0]", "Argument[-1].Element", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableSet", True, "copyOf", "(Collection)", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableSet", True, "copyOf", "(Iterable)", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableSet", True, "copyOf", "(Iterator)", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableSet", True, "copyOf", "(Object[])", "", "Argument[0].ArrayElement", "ReturnValue.Element", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableSet", True, "of", "", "", "Argument[0..5]", "ReturnValue.Element", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableSet", True, "of", "", "", "Argument[6].ArrayElement", "ReturnValue.Element", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableSetMultimap", True, "of", "", "", "Argument[0]", "ReturnValue.MapKey", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableSetMultimap", True, "of", "", "", "Argument[1]", "ReturnValue.MapValue", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableSetMultimap", True, "of", "", "", "Argument[2]", "ReturnValue.MapKey", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableSetMultimap", True, "of", "", "", "Argument[3]", "ReturnValue.MapValue", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableSetMultimap", True, "of", "", "", "Argument[4]", "ReturnValue.MapKey", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableSetMultimap", True, "of", "", "", "Argument[5]", "ReturnValue.MapValue", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableSetMultimap", True, "of", "", "", "Argument[6]", "ReturnValue.MapKey", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableSetMultimap", True, "of", "", "", "Argument[7]", "ReturnValue.MapValue", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableSetMultimap", True, "of", "", "", "Argument[8]", "ReturnValue.MapKey", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableSetMultimap", True, "of", "", "", "Argument[9]", "ReturnValue.MapValue", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableSortedMap", True, "copyOf", "(Iterable)", "", "Argument[0].Element.MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableSortedMap", True, "copyOf", "(Iterable)", "", "Argument[0].Element.MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableSortedMap", True, "copyOf", "(Iterable,Comparator)", "", "Argument[0].Element.MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableSortedMap", True, "copyOf", "(Iterable,Comparator)", "", "Argument[0].Element.MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableSortedMap", True, "copyOf", "(Map)", "", "Argument[0].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableSortedMap", True, "copyOf", "(Map)", "", "Argument[0].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableSortedMap", True, "copyOf", "(Map,Comparator)", "", "Argument[0].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableSortedMap", True, "copyOf", "(Map,Comparator)", "", "Argument[0].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableSortedMap", True, "copyOfSorted", "(SortedMap)", "", "Argument[0].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableSortedMap", True, "copyOfSorted", "(SortedMap)", "", "Argument[0].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableSortedMap", True, "of", "", "", "Argument[0]", "ReturnValue.MapKey", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableSortedMap", True, "of", "", "", "Argument[1]", "ReturnValue.MapValue", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableSortedMap", True, "of", "", "", "Argument[2]", "ReturnValue.MapKey", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableSortedMap", True, "of", "", "", "Argument[3]", "ReturnValue.MapValue", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableSortedMap", True, "of", "", "", "Argument[4]", "ReturnValue.MapKey", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableSortedMap", True, "of", "", "", "Argument[5]", "ReturnValue.MapValue", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableSortedMap", True, "of", "", "", "Argument[6]", "ReturnValue.MapKey", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableSortedMap", True, "of", "", "", "Argument[7]", "ReturnValue.MapValue", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableSortedMap", True, "of", "", "", "Argument[8]", "ReturnValue.MapKey", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableSortedMap", True, "of", "", "", "Argument[9]", "ReturnValue.MapValue", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableSortedMultiset", True, "copyOf", "(Comparable[])", "", "Argument[0].ArrayElement", "ReturnValue.Element", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableSortedMultiset", True, "copyOf", "(Comparator,Iterable)", "", "Argument[1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableSortedMultiset", True, "copyOf", "(Comparator,Iterator)", "", "Argument[1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableSortedMultiset", True, "copyOf", "(Iterable)", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableSortedMultiset", True, "copyOf", "(Iterator)", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableSortedMultiset", True, "copyOfSorted", "(SortedMultiset)", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableSortedMultiset", True, "of", "", "", "Argument[0..5]", "ReturnValue.Element", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableSortedMultiset", True, "of", "", "", "Argument[6].ArrayElement", "ReturnValue.Element", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableSortedSet", True, "copyOf", "(Collection)", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableSortedSet", True, "copyOf", "(Comparable[])", "", "Argument[0].ArrayElement", "ReturnValue.Element", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableSortedSet", True, "copyOf", "(Comparator,Collection)", "", "Argument[1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableSortedSet", True, "copyOf", "(Comparator,Iterable)", "", "Argument[1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableSortedSet", True, "copyOf", "(Comparator,Iterator)", "", "Argument[1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableSortedSet", True, "copyOf", "(Iterable)", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableSortedSet", True, "copyOf", "(Iterator)", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableSortedSet", True, "copyOfSorted", "(SortedSet)", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableSortedSet", True, "of", "", "", "Argument[0..5]", "ReturnValue.Element", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableSortedSet", True, "of", "", "", "Argument[6].ArrayElement", "ReturnValue.Element", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableTable", True, "copyOf", "(Table)", "", "Argument[0].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableTable", True, "copyOf", "(Table)", "", "Argument[0].SyntheticField[com.google.common.collect.Table.columnKey]", "ReturnValue.SyntheticField[com.google.common.collect.Table.columnKey]", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableTable", True, "copyOf", "(Table)", "", "Argument[0].SyntheticField[com.google.common.collect.Table.rowKey]", "ReturnValue.SyntheticField[com.google.common.collect.Table.rowKey]", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableTable", True, "of", "(Object,Object,Object)", "", "Argument[0]", "ReturnValue.SyntheticField[com.google.common.collect.Table.rowKey]", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableTable", True, "of", "(Object,Object,Object)", "", "Argument[1]", "ReturnValue.SyntheticField[com.google.common.collect.Table.columnKey]", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableTable", True, "of", "(Object,Object,Object)", "", "Argument[2]", "ReturnValue.MapValue", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableTable$Builder", True, "build", "()", "", "Argument[-1].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableTable$Builder", True, "build", "()", "", "Argument[-1].SyntheticField[com.google.common.collect.Table.columnKey]", "ReturnValue.SyntheticField[com.google.common.collect.Table.columnKey]", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableTable$Builder", True, "build", "()", "", "Argument[-1].SyntheticField[com.google.common.collect.Table.rowKey]", "ReturnValue.SyntheticField[com.google.common.collect.Table.rowKey]", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableTable$Builder", True, "orderColumnsBy", "(Comparator)", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableTable$Builder", True, "orderRowsBy", "(Comparator)", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableTable$Builder", True, "put", "(Cell)", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableTable$Builder", True, "put", "(Cell)", "", "Argument[0].MapValue", "Argument[-1].MapValue", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableTable$Builder", True, "put", "(Cell)", "", "Argument[0].SyntheticField[com.google.common.collect.Table.columnKey]", "Argument[-1].SyntheticField[com.google.common.collect.Table.columnKey]", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableTable$Builder", True, "put", "(Cell)", "", "Argument[0].SyntheticField[com.google.common.collect.Table.rowKey]", "Argument[-1].SyntheticField[com.google.common.collect.Table.rowKey]", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableTable$Builder", True, "put", "(Object,Object,Object)", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableTable$Builder", True, "put", "(Object,Object,Object)", "", "Argument[0]", "Argument[-1].SyntheticField[com.google.common.collect.Table.rowKey]", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableTable$Builder", True, "put", "(Object,Object,Object)", "", "Argument[1]", "Argument[-1].SyntheticField[com.google.common.collect.Table.columnKey]", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableTable$Builder", True, "put", "(Object,Object,Object)", "", "Argument[2]", "Argument[-1].MapValue", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableTable$Builder", True, "putAll", "(Table)", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableTable$Builder", True, "putAll", "(Table)", "", "Argument[0].MapValue", "Argument[-1].MapValue", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableTable$Builder", True, "putAll", "(Table)", "", "Argument[0].SyntheticField[com.google.common.collect.Table.columnKey]", "Argument[-1].SyntheticField[com.google.common.collect.Table.columnKey]", "value", "manual"]
+      - ["com.google.common.collect", "ImmutableTable$Builder", True, "putAll", "(Table)", "", "Argument[0].SyntheticField[com.google.common.collect.Table.rowKey]", "Argument[-1].SyntheticField[com.google.common.collect.Table.rowKey]", "value", "manual"]
+      - ["com.google.common.collect", "Iterables", False, "addAll", "(Collection,Iterable)", "", "Argument[1].Element", "Argument[0].Element", "value", "manual"]
+      - ["com.google.common.collect", "Iterables", False, "concat", "(Iterable)", "", "Argument[0].Element.Element", "ReturnValue.Element", "value", "manual"]
+      - ["com.google.common.collect", "Iterables", False, "concat", "(Iterable,Iterable)", "", "Argument[0..1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["com.google.common.collect", "Iterables", False, "concat", "(Iterable,Iterable,Iterable)", "", "Argument[0..2].Element", "ReturnValue.Element", "value", "manual"]
+      - ["com.google.common.collect", "Iterables", False, "concat", "(Iterable,Iterable,Iterable,Iterable)", "", "Argument[0..3].Element", "ReturnValue.Element", "value", "manual"]
+      - ["com.google.common.collect", "Iterables", False, "concat", "(Iterable[])", "", "Argument[0].ArrayElement.Element", "ReturnValue.Element", "value", "manual"]
+      - ["com.google.common.collect", "Iterables", False, "consumingIterable", "(Iterable)", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["com.google.common.collect", "Iterables", False, "cycle", "(Iterable)", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["com.google.common.collect", "Iterables", False, "cycle", "(Object[])", "", "Argument[0].ArrayElement", "ReturnValue.Element", "value", "manual"]
+      - ["com.google.common.collect", "Iterables", False, "filter", "(Iterable,Class)", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["com.google.common.collect", "Iterables", False, "filter", "(Iterable,Predicate)", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["com.google.common.collect", "Iterables", False, "find", "(Iterable,Predicate)", "", "Argument[0].Element", "ReturnValue", "value", "manual"]
+      - ["com.google.common.collect", "Iterables", False, "find", "(Iterable,Predicate,Object)", "", "Argument[0].Element", "ReturnValue", "value", "manual"]
+      - ["com.google.common.collect", "Iterables", False, "find", "(Iterable,Predicate,Object)", "", "Argument[2]", "ReturnValue", "value", "manual"]
+      - ["com.google.common.collect", "Iterables", False, "get", "(Iterable,int)", "", "Argument[0].Element", "ReturnValue", "value", "manual"]
+      - ["com.google.common.collect", "Iterables", False, "get", "(Iterable,int,Object)", "", "Argument[0].Element", "ReturnValue", "value", "manual"]
+      - ["com.google.common.collect", "Iterables", False, "get", "(Iterable,int,Object)", "", "Argument[2]", "ReturnValue", "value", "manual"]
+      - ["com.google.common.collect", "Iterables", False, "getLast", "(Iterable)", "", "Argument[0].Element", "ReturnValue", "value", "manual"]
+      - ["com.google.common.collect", "Iterables", False, "getLast", "(Iterable,Object)", "", "Argument[0].Element", "ReturnValue", "value", "manual"]
+      - ["com.google.common.collect", "Iterables", False, "getLast", "(Iterable,Object)", "", "Argument[1]", "ReturnValue", "value", "manual"]
+      - ["com.google.common.collect", "Iterables", False, "getOnlyElement", "(Iterable)", "", "Argument[0].Element", "ReturnValue", "value", "manual"]
+      - ["com.google.common.collect", "Iterables", False, "getOnlyElement", "(Iterable,Object)", "", "Argument[0].Element", "ReturnValue", "value", "manual"]
+      - ["com.google.common.collect", "Iterables", False, "getOnlyElement", "(Iterable,Object)", "", "Argument[1]", "ReturnValue", "value", "manual"]
+      - ["com.google.common.collect", "Iterables", False, "limit", "(Iterable,int)", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["com.google.common.collect", "Iterables", False, "mergeSorted", "(Iterable,Comparator)", "", "Argument[0].Element.Element", "ReturnValue.Element", "value", "manual"]
+      - ["com.google.common.collect", "Iterables", False, "paddedPartition", "(Iterable,int)", "", "Argument[0].Element", "ReturnValue.Element.Element", "value", "manual"]
+      - ["com.google.common.collect", "Iterables", False, "partition", "(Iterable,int)", "", "Argument[0].Element", "ReturnValue.Element.Element", "value", "manual"]
+      - ["com.google.common.collect", "Iterables", False, "skip", "(Iterable,int)", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["com.google.common.collect", "Iterables", False, "toArray", "(Iterable,Class)", "", "Argument[0].Element", "ReturnValue.ArrayElement", "value", "manual"]
+      - ["com.google.common.collect", "Iterables", False, "tryFind", "(Iterable,Predicate)", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["com.google.common.collect", "Iterables", False, "unmodifiableIterable", "(ImmutableCollection)", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["com.google.common.collect", "Iterables", False, "unmodifiableIterable", "(Iterable)", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["com.google.common.collect", "Iterators", False, "addAll", "(Collection,Iterator)", "", "Argument[1].Element", "Argument[0].Element", "value", "manual"]
+      - ["com.google.common.collect", "Iterators", False, "asEnumeration", "(Iterator)", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["com.google.common.collect", "Iterators", False, "concat", "(Iterator)", "", "Argument[0].Element.Element", "ReturnValue.Element", "value", "manual"]
+      - ["com.google.common.collect", "Iterators", False, "concat", "(Iterator,Iterator)", "", "Argument[0..1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["com.google.common.collect", "Iterators", False, "concat", "(Iterator,Iterator,Iterator)", "", "Argument[0..2].Element", "ReturnValue.Element", "value", "manual"]
+      - ["com.google.common.collect", "Iterators", False, "concat", "(Iterator,Iterator,Iterator,Iterator)", "", "Argument[0..3].Element", "ReturnValue.Element", "value", "manual"]
+      - ["com.google.common.collect", "Iterators", False, "concat", "(Iterator[])", "", "Argument[0].ArrayElement.Element", "ReturnValue.Element", "value", "manual"]
+      - ["com.google.common.collect", "Iterators", False, "consumingIterator", "(Iterator)", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["com.google.common.collect", "Iterators", False, "cycle", "(Iterable)", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["com.google.common.collect", "Iterators", False, "cycle", "(Object[])", "", "Argument[0].ArrayElement", "ReturnValue.Element", "value", "manual"]
+      - ["com.google.common.collect", "Iterators", False, "filter", "(Iterator,Class)", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["com.google.common.collect", "Iterators", False, "filter", "(Iterator,Predicate)", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["com.google.common.collect", "Iterators", False, "find", "(Iterator,Predicate)", "", "Argument[0].Element", "ReturnValue", "value", "manual"]
+      - ["com.google.common.collect", "Iterators", False, "find", "(Iterator,Predicate,Object)", "", "Argument[0].Element", "ReturnValue", "value", "manual"]
+      - ["com.google.common.collect", "Iterators", False, "find", "(Iterator,Predicate,Object)", "", "Argument[2]", "ReturnValue", "value", "manual"]
+      - ["com.google.common.collect", "Iterators", False, "forArray", "(Object[])", "", "Argument[0].ArrayElement", "ReturnValue.Element", "value", "manual"]
+      - ["com.google.common.collect", "Iterators", False, "forEnumeration", "(Enumeration)", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["com.google.common.collect", "Iterators", False, "get", "(Iterator,int)", "", "Argument[0].Element", "ReturnValue", "value", "manual"]
+      - ["com.google.common.collect", "Iterators", False, "get", "(Iterator,int,Object)", "", "Argument[0].Element", "ReturnValue", "value", "manual"]
+      - ["com.google.common.collect", "Iterators", False, "get", "(Iterator,int,Object)", "", "Argument[2]", "ReturnValue", "value", "manual"]
+      - ["com.google.common.collect", "Iterators", False, "getLast", "(Iterator)", "", "Argument[0].Element", "ReturnValue", "value", "manual"]
+      - ["com.google.common.collect", "Iterators", False, "getLast", "(Iterator,Object)", "", "Argument[0].Element", "ReturnValue", "value", "manual"]
+      - ["com.google.common.collect", "Iterators", False, "getLast", "(Iterator,Object)", "", "Argument[1]", "ReturnValue", "value", "manual"]
+      - ["com.google.common.collect", "Iterators", False, "getNext", "(Iterator,Object)", "", "Argument[0].Element", "ReturnValue", "value", "manual"]
+      - ["com.google.common.collect", "Iterators", False, "getNext", "(Iterator,Object)", "", "Argument[1]", "ReturnValue", "value", "manual"]
+      - ["com.google.common.collect", "Iterators", False, "getOnlyElement", "(Iterator)", "", "Argument[0].Element", "ReturnValue", "value", "manual"]
+      - ["com.google.common.collect", "Iterators", False, "getOnlyElement", "(Iterator,Object)", "", "Argument[0].Element", "ReturnValue", "value", "manual"]
+      - ["com.google.common.collect", "Iterators", False, "getOnlyElement", "(Iterator,Object)", "", "Argument[1]", "ReturnValue", "value", "manual"]
+      - ["com.google.common.collect", "Iterators", False, "limit", "(Iterator,int)", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["com.google.common.collect", "Iterators", False, "mergeSorted", "(Iterable,Comparator)", "", "Argument[0].Element.Element", "ReturnValue.Element", "value", "manual"]
+      - ["com.google.common.collect", "Iterators", False, "paddedPartition", "(Iterator,int)", "", "Argument[0].Element", "ReturnValue.Element.Element", "value", "manual"]
+      - ["com.google.common.collect", "Iterators", False, "partition", "(Iterator,int)", "", "Argument[0].Element", "ReturnValue.Element.Element", "value", "manual"]
+      - ["com.google.common.collect", "Iterators", False, "peekingIterator", "(Iterator)", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["com.google.common.collect", "Iterators", False, "peekingIterator", "(PeekingIterator)", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["com.google.common.collect", "Iterators", False, "singletonIterator", "(Object)", "", "Argument[0]", "ReturnValue.Element", "value", "manual"]
+      - ["com.google.common.collect", "Iterators", False, "toArray", "(Iterator,Class)", "", "Argument[0].Element", "ReturnValue.ArrayElement", "value", "manual"]
+      - ["com.google.common.collect", "Iterators", False, "tryFind", "(Iterator,Predicate)", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["com.google.common.collect", "Iterators", False, "unmodifiableIterator", "(Iterator)", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["com.google.common.collect", "Iterators", False, "unmodifiableIterator", "(UnmodifiableIterator)", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["com.google.common.collect", "LinkedHashMultimap", True, "create", "(Multimap)", "", "Argument[0].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["com.google.common.collect", "LinkedHashMultimap", True, "create", "(Multimap)", "", "Argument[0].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["com.google.common.collect", "LinkedHashMultiset", True, "create", "(Iterable)", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["com.google.common.collect", "LinkedListMultimap", True, "create", "(Multimap)", "", "Argument[0].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["com.google.common.collect", "LinkedListMultimap", True, "create", "(Multimap)", "", "Argument[0].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["com.google.common.collect", "Lists", False, "asList", "(Object,Object,Object[])", "", "Argument[0..1]", "ReturnValue.Element", "value", "manual"]
+      - ["com.google.common.collect", "Lists", False, "asList", "(Object,Object,Object[])", "", "Argument[2].ArrayElement", "ReturnValue.Element", "value", "manual"]
+      - ["com.google.common.collect", "Lists", False, "asList", "(Object,Object[])", "", "Argument[0]", "ReturnValue.Element", "value", "manual"]
+      - ["com.google.common.collect", "Lists", False, "asList", "(Object,Object[])", "", "Argument[1].ArrayElement", "ReturnValue.Element", "value", "manual"]
+      - ["com.google.common.collect", "Lists", False, "cartesianProduct", "(List)", "", "Argument[0].Element.Element", "ReturnValue.Element.Element", "value", "manual"]
+      - ["com.google.common.collect", "Lists", False, "cartesianProduct", "(List[])", "", "Argument[0].ArrayElement.Element", "ReturnValue.Element.Element", "value", "manual"]
+      - ["com.google.common.collect", "Lists", False, "charactersOf", "(CharSequence)", "", "Argument[0]", "ReturnValue.Element", "taint", "manual"]
+      - ["com.google.common.collect", "Lists", False, "charactersOf", "(String)", "", "Argument[0]", "ReturnValue.Element", "taint", "manual"]
+      - ["com.google.common.collect", "Lists", False, "newArrayList", "(Iterable)", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["com.google.common.collect", "Lists", False, "newArrayList", "(Iterator)", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["com.google.common.collect", "Lists", False, "newArrayList", "(Object[])", "", "Argument[0].ArrayElement", "ReturnValue.Element", "value", "manual"]
+      - ["com.google.common.collect", "Lists", False, "newCopyOnWriteArrayList", "(Iterable)", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["com.google.common.collect", "Lists", False, "newLinkedList", "(Iterable)", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["com.google.common.collect", "Lists", False, "partition", "(List,int)", "", "Argument[0].Element", "ReturnValue.Element.Element", "value", "manual"]
+      - ["com.google.common.collect", "Lists", False, "reverse", "(List)", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["com.google.common.collect", "MapDifference", True, "entriesDiffering", "()", "", "Argument[-1].SyntheticField[com.google.common.collect.MapDifference.left].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["com.google.common.collect", "MapDifference", True, "entriesDiffering", "()", "", "Argument[-1].SyntheticField[com.google.common.collect.MapDifference.left].MapValue", "ReturnValue.MapValue.SyntheticField[com.google.common.collect.MapDifference.left]", "value", "manual"]
+      - ["com.google.common.collect", "MapDifference", True, "entriesDiffering", "()", "", "Argument[-1].SyntheticField[com.google.common.collect.MapDifference.right].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["com.google.common.collect", "MapDifference", True, "entriesDiffering", "()", "", "Argument[-1].SyntheticField[com.google.common.collect.MapDifference.right].MapValue", "ReturnValue.MapValue.SyntheticField[com.google.common.collect.MapDifference.right]", "value", "manual"]
+      - ["com.google.common.collect", "MapDifference", True, "entriesInCommon", "()", "", "Argument[-1].SyntheticField[com.google.common.collect.MapDifference.left].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["com.google.common.collect", "MapDifference", True, "entriesInCommon", "()", "", "Argument[-1].SyntheticField[com.google.common.collect.MapDifference.left].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["com.google.common.collect", "MapDifference", True, "entriesInCommon", "()", "", "Argument[-1].SyntheticField[com.google.common.collect.MapDifference.right].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["com.google.common.collect", "MapDifference", True, "entriesInCommon", "()", "", "Argument[-1].SyntheticField[com.google.common.collect.MapDifference.right].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["com.google.common.collect", "MapDifference", True, "entriesOnlyOnLeft", "()", "", "Argument[-1].SyntheticField[com.google.common.collect.MapDifference.left].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["com.google.common.collect", "MapDifference", True, "entriesOnlyOnLeft", "()", "", "Argument[-1].SyntheticField[com.google.common.collect.MapDifference.left].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["com.google.common.collect", "MapDifference", True, "entriesOnlyOnRight", "()", "", "Argument[-1].SyntheticField[com.google.common.collect.MapDifference.right].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["com.google.common.collect", "MapDifference", True, "entriesOnlyOnRight", "()", "", "Argument[-1].SyntheticField[com.google.common.collect.MapDifference.right].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["com.google.common.collect", "MapDifference$ValueDifference", True, "leftValue", "()", "", "Argument[-1].SyntheticField[com.google.common.collect.MapDifference.left]", "ReturnValue", "value", "manual"]
+      - ["com.google.common.collect", "MapDifference$ValueDifference", True, "rightValue", "()", "", "Argument[-1].SyntheticField[com.google.common.collect.MapDifference.right]", "ReturnValue", "value", "manual"]
+      - ["com.google.common.collect", "Maps", False, "asMap", "(NavigableSet,Function)", "", "Argument[0].Element", "ReturnValue.MapKey", "value", "manual"]
+      - ["com.google.common.collect", "Maps", False, "asMap", "(Set,Function)", "", "Argument[0].Element", "ReturnValue.MapKey", "value", "manual"]
+      - ["com.google.common.collect", "Maps", False, "asMap", "(SortedSet,Function)", "", "Argument[0].Element", "ReturnValue.MapKey", "value", "manual"]
+      - ["com.google.common.collect", "Maps", False, "difference", "(Map,Map)", "", "Argument[0].MapKey", "ReturnValue.SyntheticField[com.google.common.collect.MapDifference.left].MapKey", "value", "manual"]
+      - ["com.google.common.collect", "Maps", False, "difference", "(Map,Map)", "", "Argument[0].MapValue", "ReturnValue.SyntheticField[com.google.common.collect.MapDifference.left].MapValue", "value", "manual"]
+      - ["com.google.common.collect", "Maps", False, "difference", "(Map,Map)", "", "Argument[1].MapKey", "ReturnValue.SyntheticField[com.google.common.collect.MapDifference.right].MapKey", "value", "manual"]
+      - ["com.google.common.collect", "Maps", False, "difference", "(Map,Map)", "", "Argument[1].MapValue", "ReturnValue.SyntheticField[com.google.common.collect.MapDifference.right].MapValue", "value", "manual"]
+      - ["com.google.common.collect", "Maps", False, "difference", "(Map,Map,Equivalence)", "", "Argument[0].MapKey", "ReturnValue.SyntheticField[com.google.common.collect.MapDifference.left].MapKey", "value", "manual"]
+      - ["com.google.common.collect", "Maps", False, "difference", "(Map,Map,Equivalence)", "", "Argument[0].MapValue", "ReturnValue.SyntheticField[com.google.common.collect.MapDifference.left].MapValue", "value", "manual"]
+      - ["com.google.common.collect", "Maps", False, "difference", "(Map,Map,Equivalence)", "", "Argument[1].MapKey", "ReturnValue.SyntheticField[com.google.common.collect.MapDifference.right].MapKey", "value", "manual"]
+      - ["com.google.common.collect", "Maps", False, "difference", "(Map,Map,Equivalence)", "", "Argument[1].MapValue", "ReturnValue.SyntheticField[com.google.common.collect.MapDifference.right].MapValue", "value", "manual"]
+      - ["com.google.common.collect", "Maps", False, "difference", "(SortedMap,Map)", "", "Argument[0].MapKey", "ReturnValue.SyntheticField[com.google.common.collect.MapDifference.left].MapKey", "value", "manual"]
+      - ["com.google.common.collect", "Maps", False, "difference", "(SortedMap,Map)", "", "Argument[0].MapValue", "ReturnValue.SyntheticField[com.google.common.collect.MapDifference.left].MapValue", "value", "manual"]
+      - ["com.google.common.collect", "Maps", False, "difference", "(SortedMap,Map)", "", "Argument[1].MapKey", "ReturnValue.SyntheticField[com.google.common.collect.MapDifference.right].MapKey", "value", "manual"]
+      - ["com.google.common.collect", "Maps", False, "difference", "(SortedMap,Map)", "", "Argument[1].MapValue", "ReturnValue.SyntheticField[com.google.common.collect.MapDifference.right].MapValue", "value", "manual"]
+      - ["com.google.common.collect", "Maps", False, "filterEntries", "", "", "Argument[0].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["com.google.common.collect", "Maps", False, "filterKeys", "", "", "Argument[0].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["com.google.common.collect", "Maps", False, "filterValues", "", "", "Argument[0].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["com.google.common.collect", "Maps", False, "fromProperties", "(Properties)", "", "Argument[0].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["com.google.common.collect", "Maps", False, "fromProperties", "(Properties)", "", "Argument[0].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["com.google.common.collect", "Maps", False, "immutableEntry", "(Object,Object)", "", "Argument[0]", "ReturnValue.MapKey", "value", "manual"]
+      - ["com.google.common.collect", "Maps", False, "immutableEntry", "(Object,Object)", "", "Argument[1]", "ReturnValue.MapValue", "value", "manual"]
+      - ["com.google.common.collect", "Maps", False, "immutableEnumMap", "(Map)", "", "Argument[0].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["com.google.common.collect", "Maps", False, "newEnumMap", "(Map)", "", "Argument[0].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["com.google.common.collect", "Maps", False, "newHashMap", "(Map)", "", "Argument[0].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["com.google.common.collect", "Maps", False, "newHashMap", "(Map)", "", "Argument[0].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["com.google.common.collect", "Maps", False, "newLinkedHashMap", "(Map)", "", "Argument[0].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["com.google.common.collect", "Maps", False, "newLinkedHashMap", "(Map)", "", "Argument[0].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["com.google.common.collect", "Maps", False, "newTreeMap", "(SortedMap)", "", "Argument[0].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["com.google.common.collect", "Maps", False, "newTreeMap", "(SortedMap)", "", "Argument[0].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["com.google.common.collect", "Maps", False, "subMap", "(NavigableMap,Range)", "", "Argument[0].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["com.google.common.collect", "Maps", False, "subMap", "(NavigableMap,Range)", "", "Argument[0].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["com.google.common.collect", "Maps", False, "synchronizedBiMap", "(BiMap)", "", "Argument[0].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["com.google.common.collect", "Maps", False, "synchronizedBiMap", "(BiMap)", "", "Argument[0].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["com.google.common.collect", "Maps", False, "synchronizedNavigableMap", "(NavigableMap)", "", "Argument[0].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["com.google.common.collect", "Maps", False, "synchronizedNavigableMap", "(NavigableMap)", "", "Argument[0].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["com.google.common.collect", "Maps", False, "toMap", "(Iterable,Function)", "", "Argument[0].Element", "ReturnValue.MapKey", "value", "manual"]
+      - ["com.google.common.collect", "Maps", False, "toMap", "(Iterator,Function)", "", "Argument[0].Element", "ReturnValue.MapKey", "value", "manual"]
+      - ["com.google.common.collect", "Maps", False, "transformValues", "(Map,Function)", "", "Argument[0].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["com.google.common.collect", "Maps", False, "transformValues", "(NavigableMap,Function)", "", "Argument[0].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["com.google.common.collect", "Maps", False, "transformValues", "(SortedMap,Function)", "", "Argument[0].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["com.google.common.collect", "Maps", False, "uniqueIndex", "(Iterable,Function)", "", "Argument[0].Element", "ReturnValue.MapValue", "value", "manual"]
+      - ["com.google.common.collect", "Maps", False, "uniqueIndex", "(Iterator,Function)", "", "Argument[0].Element", "ReturnValue.MapValue", "value", "manual"]
+      - ["com.google.common.collect", "Maps", False, "unmodifiableBiMap", "(BiMap)", "", "Argument[0].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["com.google.common.collect", "Maps", False, "unmodifiableBiMap", "(BiMap)", "", "Argument[0].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["com.google.common.collect", "Maps", False, "unmodifiableNavigableMap", "(NavigableMap)", "", "Argument[0].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["com.google.common.collect", "Maps", False, "unmodifiableNavigableMap", "(NavigableMap)", "", "Argument[0].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["com.google.common.collect", "Multimap", True, "asMap", "()", "", "Argument[-1].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["com.google.common.collect", "Multimap", True, "asMap", "()", "", "Argument[-1].MapValue", "ReturnValue.MapValue.Element", "value", "manual"]
+      - ["com.google.common.collect", "Multimap", True, "entries", "()", "", "Argument[-1].MapKey", "ReturnValue.Element.MapKey", "value", "manual"]
+      - ["com.google.common.collect", "Multimap", True, "entries", "()", "", "Argument[-1].MapValue", "ReturnValue.Element.MapValue", "value", "manual"]
+      - ["com.google.common.collect", "Multimap", True, "get", "(Object)", "", "Argument[-1].MapValue", "ReturnValue.Element", "value", "manual"]
+      - ["com.google.common.collect", "Multimap", True, "keySet", "()", "", "Argument[-1].MapKey", "ReturnValue.Element", "value", "manual"]
+      - ["com.google.common.collect", "Multimap", True, "keys", "()", "", "Argument[-1].MapKey", "ReturnValue.Element", "value", "manual"]
+      - ["com.google.common.collect", "Multimap", True, "put", "(Object,Object)", "", "Argument[0]", "Argument[-1].MapKey", "value", "manual"]
+      - ["com.google.common.collect", "Multimap", True, "put", "(Object,Object)", "", "Argument[1]", "Argument[-1].MapValue", "value", "manual"]
+      - ["com.google.common.collect", "Multimap", True, "putAll", "(Multimap)", "", "Argument[0].MapKey", "Argument[-1].MapKey", "value", "manual"]
+      - ["com.google.common.collect", "Multimap", True, "putAll", "(Multimap)", "", "Argument[0].MapValue", "Argument[-1].MapValue", "value", "manual"]
+      - ["com.google.common.collect", "Multimap", True, "putAll", "(Object,Iterable)", "", "Argument[0]", "Argument[-1].MapKey", "value", "manual"]
+      - ["com.google.common.collect", "Multimap", True, "putAll", "(Object,Iterable)", "", "Argument[1].Element", "Argument[-1].MapValue", "value", "manual"]
+      - ["com.google.common.collect", "Multimap", True, "removeAll", "(Object)", "", "Argument[-1].MapValue", "ReturnValue.Element", "value", "manual"]
+      - ["com.google.common.collect", "Multimap", True, "replaceValues", "(Object,Iterable)", "", "Argument[-1].MapValue", "ReturnValue.Element", "value", "manual"]
+      - ["com.google.common.collect", "Multimap", True, "replaceValues", "(Object,Iterable)", "", "Argument[0]", "Argument[-1].MapKey", "value", "manual"]
+      - ["com.google.common.collect", "Multimap", True, "replaceValues", "(Object,Iterable)", "", "Argument[1].Element", "Argument[-1].MapValue", "value", "manual"]
+      - ["com.google.common.collect", "Multimap", True, "values", "()", "", "Argument[-1].MapValue", "ReturnValue.Element", "value", "manual"]
+      - ["com.google.common.collect", "Multimaps", False, "asMap", "(ListMultimap)", "", "Argument[0].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["com.google.common.collect", "Multimaps", False, "asMap", "(ListMultimap)", "", "Argument[0].MapValue", "ReturnValue.MapValue.Element", "value", "manual"]
+      - ["com.google.common.collect", "Multimaps", False, "asMap", "(Multimap)", "", "Argument[0].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["com.google.common.collect", "Multimaps", False, "asMap", "(Multimap)", "", "Argument[0].MapValue", "ReturnValue.MapValue.Element", "value", "manual"]
+      - ["com.google.common.collect", "Multimaps", False, "asMap", "(SetMultimap)", "", "Argument[0].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["com.google.common.collect", "Multimaps", False, "asMap", "(SetMultimap)", "", "Argument[0].MapValue", "ReturnValue.MapValue.Element", "value", "manual"]
+      - ["com.google.common.collect", "Multimaps", False, "asMap", "(SortedSetMultimap)", "", "Argument[0].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["com.google.common.collect", "Multimaps", False, "asMap", "(SortedSetMultimap)", "", "Argument[0].MapValue", "ReturnValue.MapValue.Element", "value", "manual"]
+      - ["com.google.common.collect", "Multimaps", False, "filterEntries", "(Multimap,Predicate)", "", "Argument[0].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["com.google.common.collect", "Multimaps", False, "filterEntries", "(Multimap,Predicate)", "", "Argument[0].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["com.google.common.collect", "Multimaps", False, "filterEntries", "(SetMultimap,Predicate)", "", "Argument[0].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["com.google.common.collect", "Multimaps", False, "filterEntries", "(SetMultimap,Predicate)", "", "Argument[0].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["com.google.common.collect", "Multimaps", False, "filterKeys", "(Multimap,Predicate)", "", "Argument[0].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["com.google.common.collect", "Multimaps", False, "filterKeys", "(Multimap,Predicate)", "", "Argument[0].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["com.google.common.collect", "Multimaps", False, "filterKeys", "(SetMultimap,Predicate)", "", "Argument[0].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["com.google.common.collect", "Multimaps", False, "filterKeys", "(SetMultimap,Predicate)", "", "Argument[0].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["com.google.common.collect", "Multimaps", False, "filterValues", "(Multimap,Predicate)", "", "Argument[0].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["com.google.common.collect", "Multimaps", False, "filterValues", "(Multimap,Predicate)", "", "Argument[0].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["com.google.common.collect", "Multimaps", False, "filterValues", "(SetMultimap,Predicate)", "", "Argument[0].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["com.google.common.collect", "Multimaps", False, "filterValues", "(SetMultimap,Predicate)", "", "Argument[0].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["com.google.common.collect", "Multimaps", False, "forMap", "(Map)", "", "Argument[0].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["com.google.common.collect", "Multimaps", False, "forMap", "(Map)", "", "Argument[0].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["com.google.common.collect", "Multimaps", False, "index", "(Iterable,Function)", "", "Argument[0].Element", "ReturnValue.MapValue", "value", "manual"]
+      - ["com.google.common.collect", "Multimaps", False, "index", "(Iterator,Function)", "", "Argument[0].Element", "ReturnValue.MapValue", "value", "manual"]
+      - ["com.google.common.collect", "Multimaps", False, "invertFrom", "(Multimap,Multimap)", "", "Argument[0].MapKey", "Argument[1].MapValue", "value", "manual"]
+      - ["com.google.common.collect", "Multimaps", False, "invertFrom", "(Multimap,Multimap)", "", "Argument[0].MapValue", "Argument[1].MapKey", "value", "manual"]
+      - ["com.google.common.collect", "Multimaps", False, "invertFrom", "(Multimap,Multimap)", "", "Argument[1]", "ReturnValue", "value", "manual"]
+      - ["com.google.common.collect", "Multimaps", False, "newListMultimap", "(Map,Supplier)", "", "Argument[0].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["com.google.common.collect", "Multimaps", False, "newListMultimap", "(Map,Supplier)", "", "Argument[0].MapValue.Element", "ReturnValue.MapValue", "value", "manual"]
+      - ["com.google.common.collect", "Multimaps", False, "newMultimap", "(Map,Supplier)", "", "Argument[0].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["com.google.common.collect", "Multimaps", False, "newMultimap", "(Map,Supplier)", "", "Argument[0].MapValue.Element", "ReturnValue.MapValue", "value", "manual"]
+      - ["com.google.common.collect", "Multimaps", False, "newSetMultimap", "(Map,Supplier)", "", "Argument[0].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["com.google.common.collect", "Multimaps", False, "newSetMultimap", "(Map,Supplier)", "", "Argument[0].MapValue.Element", "ReturnValue.MapValue", "value", "manual"]
+      - ["com.google.common.collect", "Multimaps", False, "newSortedSetMultimap", "(Map,Supplier)", "", "Argument[0].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["com.google.common.collect", "Multimaps", False, "newSortedSetMultimap", "(Map,Supplier)", "", "Argument[0].MapValue.Element", "ReturnValue.MapValue", "value", "manual"]
+      - ["com.google.common.collect", "Multimaps", False, "synchronizedListMultimap", "(ListMultimap)", "", "Argument[0].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["com.google.common.collect", "Multimaps", False, "synchronizedListMultimap", "(ListMultimap)", "", "Argument[0].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["com.google.common.collect", "Multimaps", False, "synchronizedMultimap", "(Multimap)", "", "Argument[0].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["com.google.common.collect", "Multimaps", False, "synchronizedMultimap", "(Multimap)", "", "Argument[0].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["com.google.common.collect", "Multimaps", False, "synchronizedSetMultimap", "(SetMultimap)", "", "Argument[0].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["com.google.common.collect", "Multimaps", False, "synchronizedSetMultimap", "(SetMultimap)", "", "Argument[0].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["com.google.common.collect", "Multimaps", False, "synchronizedSortedSetMultimap", "(SortedSetMultimap)", "", "Argument[0].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["com.google.common.collect", "Multimaps", False, "synchronizedSortedSetMultimap", "(SortedSetMultimap)", "", "Argument[0].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["com.google.common.collect", "Multimaps", False, "transformValues", "(ListMultimap,Function)", "", "Argument[0].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["com.google.common.collect", "Multimaps", False, "transformValues", "(Multimap,Function)", "", "Argument[0].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["com.google.common.collect", "Multimaps", False, "unmodifiableListMultimap", "(ImmutableListMultimap)", "", "Argument[0].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["com.google.common.collect", "Multimaps", False, "unmodifiableListMultimap", "(ImmutableListMultimap)", "", "Argument[0].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["com.google.common.collect", "Multimaps", False, "unmodifiableListMultimap", "(ListMultimap)", "", "Argument[0].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["com.google.common.collect", "Multimaps", False, "unmodifiableListMultimap", "(ListMultimap)", "", "Argument[0].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["com.google.common.collect", "Multimaps", False, "unmodifiableMultimap", "(ImmutableMultimap)", "", "Argument[0].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["com.google.common.collect", "Multimaps", False, "unmodifiableMultimap", "(ImmutableMultimap)", "", "Argument[0].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["com.google.common.collect", "Multimaps", False, "unmodifiableMultimap", "(Multimap)", "", "Argument[0].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["com.google.common.collect", "Multimaps", False, "unmodifiableMultimap", "(Multimap)", "", "Argument[0].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["com.google.common.collect", "Multimaps", False, "unmodifiableSetMultimap", "(ImmutableSetMultimap)", "", "Argument[0].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["com.google.common.collect", "Multimaps", False, "unmodifiableSetMultimap", "(ImmutableSetMultimap)", "", "Argument[0].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["com.google.common.collect", "Multimaps", False, "unmodifiableSetMultimap", "(SetMultimap)", "", "Argument[0].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["com.google.common.collect", "Multimaps", False, "unmodifiableSetMultimap", "(SetMultimap)", "", "Argument[0].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["com.google.common.collect", "Multimaps", False, "unmodifiableSortedSetMultimap", "(SortedSetMultimap)", "", "Argument[0].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["com.google.common.collect", "Multimaps", False, "unmodifiableSortedSetMultimap", "(SortedSetMultimap)", "", "Argument[0].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["com.google.common.collect", "Multiset", True, "add", "(Object,int)", "", "Argument[0]", "Argument[-1].Element", "value", "manual"]
+      - ["com.google.common.collect", "Multiset", True, "elementSet", "()", "", "Argument[-1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["com.google.common.collect", "Multiset", True, "entrySet", "()", "", "Argument[-1].Element", "ReturnValue.Element.Element", "value", "manual"]
+      - ["com.google.common.collect", "Multiset", True, "setCount", "(Object,int)", "", "Argument[0]", "Argument[-1].Element", "value", "manual"]
+      - ["com.google.common.collect", "Multiset", True, "setCount", "(Object,int,int)", "", "Argument[0]", "Argument[-1].Element", "value", "manual"]
+      - ["com.google.common.collect", "Multiset$Entry", True, "getElement", "()", "", "Argument[-1].Element", "ReturnValue", "value", "manual"]
+      - ["com.google.common.collect", "Multisets", False, "copyHighestCountFirst", "(Multiset)", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["com.google.common.collect", "Multisets", False, "difference", "(Multiset,Multiset)", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["com.google.common.collect", "Multisets", False, "filter", "(Multiset,Predicate)", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["com.google.common.collect", "Multisets", False, "immutableEntry", "(Object,int)", "", "Argument[0]", "ReturnValue.Element", "value", "manual"]
+      - ["com.google.common.collect", "Multisets", False, "intersection", "(Multiset,Multiset)", "", "Argument[0..1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["com.google.common.collect", "Multisets", False, "sum", "(Multiset,Multiset)", "", "Argument[0..1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["com.google.common.collect", "Multisets", False, "union", "(Multiset,Multiset)", "", "Argument[0..1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["com.google.common.collect", "Multisets", False, "unmodifiableMultiset", "(ImmutableMultiset)", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["com.google.common.collect", "Multisets", False, "unmodifiableMultiset", "(Multiset)", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["com.google.common.collect", "Multisets", False, "unmodifiableSortedMultiset", "(SortedMultiset)", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["com.google.common.collect", "MutableClassToInstanceMap", True, "create", "(Map)", "", "Argument[0].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["com.google.common.collect", "MutableClassToInstanceMap", True, "create", "(Map)", "", "Argument[0].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["com.google.common.collect", "ObjectArrays", False, "concat", "(Object,Object[])", "", "Argument[0]", "ReturnValue.ArrayElement", "value", "manual"]
+      - ["com.google.common.collect", "ObjectArrays", False, "concat", "(Object,Object[])", "", "Argument[1].ArrayElement", "ReturnValue.ArrayElement", "value", "manual"]
+      - ["com.google.common.collect", "ObjectArrays", False, "concat", "(Object[],Object)", "", "Argument[0].ArrayElement", "ReturnValue.ArrayElement", "value", "manual"]
+      - ["com.google.common.collect", "ObjectArrays", False, "concat", "(Object[],Object)", "", "Argument[1]", "ReturnValue.ArrayElement", "value", "manual"]
+      - ["com.google.common.collect", "ObjectArrays", False, "concat", "(Object[],Object[],Class)", "", "Argument[0..1].ArrayElement", "ReturnValue.ArrayElement", "value", "manual"]
+      - ["com.google.common.collect", "Queues", False, "drain", "(BlockingQueue,Collection,int,Duration)", "", "Argument[0].Element", "Argument[1].Element", "value", "manual"]
+      - ["com.google.common.collect", "Queues", False, "drain", "(BlockingQueue,Collection,int,long,TimeUnit)", "", "Argument[0].Element", "Argument[1].Element", "value", "manual"]
+      - ["com.google.common.collect", "Queues", False, "newArrayDeque", "(Iterable)", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["com.google.common.collect", "Queues", False, "newConcurrentLinkedQueue", "(Iterable)", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["com.google.common.collect", "Queues", False, "newLinkedBlockingDeque", "(Iterable)", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["com.google.common.collect", "Queues", False, "newLinkedBlockingQueue", "(Iterable)", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["com.google.common.collect", "Queues", False, "newPriorityBlockingQueue", "(Iterable)", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["com.google.common.collect", "Queues", False, "newPriorityQueue", "(Iterable)", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["com.google.common.collect", "Queues", False, "synchronizedDeque", "(Deque)", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["com.google.common.collect", "Queues", False, "synchronizedQueue", "(Queue)", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["com.google.common.collect", "Sets", False, "cartesianProduct", "(List)", "", "Argument[0].Element.Element", "ReturnValue.Element.Element", "value", "manual"]
+      - ["com.google.common.collect", "Sets", False, "cartesianProduct", "(Set[])", "", "Argument[0].ArrayElement.Element", "ReturnValue.Element.Element", "value", "manual"]
+      - ["com.google.common.collect", "Sets", False, "combinations", "(Set,int)", "", "Argument[0].Element", "ReturnValue.Element.Element", "value", "manual"]
+      - ["com.google.common.collect", "Sets", False, "difference", "(Set,Set)", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["com.google.common.collect", "Sets", False, "filter", "(NavigableSet,Predicate)", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["com.google.common.collect", "Sets", False, "filter", "(Set,Predicate)", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["com.google.common.collect", "Sets", False, "filter", "(SortedSet,Predicate)", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["com.google.common.collect", "Sets", False, "intersection", "(Set,Set)", "", "Argument[0..1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["com.google.common.collect", "Sets", False, "newConcurrentHashSet", "(Iterable)", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["com.google.common.collect", "Sets", False, "newCopyOnWriteArraySet", "(Iterable)", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["com.google.common.collect", "Sets", False, "newHashSet", "(Iterable)", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["com.google.common.collect", "Sets", False, "newHashSet", "(Iterator)", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["com.google.common.collect", "Sets", False, "newHashSet", "(Object[])", "", "Argument[0].ArrayElement", "ReturnValue.Element", "value", "manual"]
+      - ["com.google.common.collect", "Sets", False, "newLinkedHashSet", "(Iterable)", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["com.google.common.collect", "Sets", False, "newSetFromMap", "(Map)", "", "Argument[0].MapKey", "ReturnValue.Element", "value", "manual"]
+      - ["com.google.common.collect", "Sets", False, "newTreeSet", "(Iterable)", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["com.google.common.collect", "Sets", False, "powerSet", "(Set)", "", "Argument[0].Element", "ReturnValue.Element.Element", "value", "manual"]
+      - ["com.google.common.collect", "Sets", False, "subSet", "(NavigableSet,Range)", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["com.google.common.collect", "Sets", False, "symmetricDifference", "(Set,Set)", "", "Argument[0..1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["com.google.common.collect", "Sets", False, "synchronizedNavigableSet", "(NavigableSet)", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["com.google.common.collect", "Sets", False, "union", "(Set,Set)", "", "Argument[0..1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["com.google.common.collect", "Sets", False, "unmodifiableNavigableSet", "(NavigableSet)", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["com.google.common.collect", "Sets$SetView", True, "copyInto", "(Set)", "", "Argument[-1].Element", "Argument[0].Element", "value", "manual"]
+      - ["com.google.common.collect", "Sets$SetView", True, "immutableCopy", "()", "", "Argument[-1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["com.google.common.collect", "Table", True, "cellSet", "()", "", "Argument[-1].MapValue", "ReturnValue.Element.MapValue", "value", "manual"]
+      - ["com.google.common.collect", "Table", True, "cellSet", "()", "", "Argument[-1].SyntheticField[com.google.common.collect.Table.columnKey]", "ReturnValue.Element.SyntheticField[com.google.common.collect.Table.columnKey]", "value", "manual"]
+      - ["com.google.common.collect", "Table", True, "cellSet", "()", "", "Argument[-1].SyntheticField[com.google.common.collect.Table.rowKey]", "ReturnValue.Element.SyntheticField[com.google.common.collect.Table.rowKey]", "value", "manual"]
+      - ["com.google.common.collect", "Table", True, "column", "(Object)", "", "Argument[-1].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["com.google.common.collect", "Table", True, "column", "(Object)", "", "Argument[-1].SyntheticField[com.google.common.collect.Table.rowKey]", "ReturnValue.MapKey", "value", "manual"]
+      - ["com.google.common.collect", "Table", True, "columnKeySet", "()", "", "Argument[-1].SyntheticField[com.google.common.collect.Table.columnKey]", "ReturnValue.Element", "value", "manual"]
+      - ["com.google.common.collect", "Table", True, "columnMap", "()", "", "Argument[-1].MapValue", "ReturnValue.MapValue.MapValue", "value", "manual"]
+      - ["com.google.common.collect", "Table", True, "columnMap", "()", "", "Argument[-1].SyntheticField[com.google.common.collect.Table.columnKey]", "ReturnValue.MapKey", "value", "manual"]
+      - ["com.google.common.collect", "Table", True, "columnMap", "()", "", "Argument[-1].SyntheticField[com.google.common.collect.Table.rowKey]", "ReturnValue.MapValue.MapKey", "value", "manual"]
+      - ["com.google.common.collect", "Table", True, "get", "(Object,Object)", "", "Argument[-1].MapValue", "ReturnValue", "value", "manual"]
+      - ["com.google.common.collect", "Table", True, "put", "(Object,Object,Object)", "", "Argument[0]", "Argument[-1].SyntheticField[com.google.common.collect.Table.rowKey]", "value", "manual"]
+      - ["com.google.common.collect", "Table", True, "put", "(Object,Object,Object)", "", "Argument[1]", "Argument[-1].SyntheticField[com.google.common.collect.Table.columnKey]", "value", "manual"]
+      - ["com.google.common.collect", "Table", True, "put", "(Object,Object,Object)", "", "Argument[2]", "Argument[-1].MapValue", "value", "manual"]
+      - ["com.google.common.collect", "Table", True, "putAll", "(Table)", "", "Argument[0].MapValue", "Argument[-1].MapValue", "value", "manual"]
+      - ["com.google.common.collect", "Table", True, "putAll", "(Table)", "", "Argument[0].SyntheticField[com.google.common.collect.Table.columnKey]", "Argument[-1].SyntheticField[com.google.common.collect.Table.columnKey]", "value", "manual"]
+      - ["com.google.common.collect", "Table", True, "putAll", "(Table)", "", "Argument[0].SyntheticField[com.google.common.collect.Table.rowKey]", "Argument[-1].SyntheticField[com.google.common.collect.Table.rowKey]", "value", "manual"]
+      - ["com.google.common.collect", "Table", True, "remove", "(Object,Object)", "", "Argument[-1].MapValue", "ReturnValue", "value", "manual"]
+      - ["com.google.common.collect", "Table", True, "row", "(Object)", "", "Argument[-1].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["com.google.common.collect", "Table", True, "row", "(Object)", "", "Argument[-1].SyntheticField[com.google.common.collect.Table.columnKey]", "ReturnValue.MapKey", "value", "manual"]
+      - ["com.google.common.collect", "Table", True, "rowKeySet", "()", "", "Argument[-1].SyntheticField[com.google.common.collect.Table.rowKey]", "ReturnValue.Element", "value", "manual"]
+      - ["com.google.common.collect", "Table", True, "rowMap", "()", "", "Argument[-1].MapValue", "ReturnValue.MapValue.MapValue", "value", "manual"]
+      - ["com.google.common.collect", "Table", True, "rowMap", "()", "", "Argument[-1].SyntheticField[com.google.common.collect.Table.columnKey]", "ReturnValue.MapValue.MapKey", "value", "manual"]
+      - ["com.google.common.collect", "Table", True, "rowMap", "()", "", "Argument[-1].SyntheticField[com.google.common.collect.Table.rowKey]", "ReturnValue.MapKey", "value", "manual"]
+      - ["com.google.common.collect", "Table", True, "values", "()", "", "Argument[-1].MapValue", "ReturnValue.Element", "value", "manual"]
+      - ["com.google.common.collect", "Table$Cell", True, "getColumnKey", "()", "", "Argument[-1].SyntheticField[com.google.common.collect.Table.columnKey]", "ReturnValue", "value", "manual"]
+      - ["com.google.common.collect", "Table$Cell", True, "getRowKey", "()", "", "Argument[-1].SyntheticField[com.google.common.collect.Table.rowKey]", "ReturnValue", "value", "manual"]
+      - ["com.google.common.collect", "Table$Cell", True, "getValue", "()", "", "Argument[-1].MapValue", "ReturnValue", "value", "manual"]
+      - ["com.google.common.collect", "Tables", False, "immutableCell", "(Object,Object,Object)", "", "Argument[0]", "ReturnValue.SyntheticField[com.google.common.collect.Table.rowKey]", "value", "manual"]
+      - ["com.google.common.collect", "Tables", False, "immutableCell", "(Object,Object,Object)", "", "Argument[1]", "ReturnValue.SyntheticField[com.google.common.collect.Table.columnKey]", "value", "manual"]
+      - ["com.google.common.collect", "Tables", False, "immutableCell", "(Object,Object,Object)", "", "Argument[2]", "ReturnValue.MapValue", "value", "manual"]
+      - ["com.google.common.collect", "Tables", False, "newCustomTable", "(Map,Supplier)", "", "Argument[0].MapKey", "ReturnValue.SyntheticField[com.google.common.collect.Table.rowKey]", "value", "manual"]
+      - ["com.google.common.collect", "Tables", False, "newCustomTable", "(Map,Supplier)", "", "Argument[0].MapValue.MapKey", "ReturnValue.SyntheticField[com.google.common.collect.Table.columnKey]", "value", "manual"]
+      - ["com.google.common.collect", "Tables", False, "newCustomTable", "(Map,Supplier)", "", "Argument[0].MapValue.MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["com.google.common.collect", "Tables", False, "synchronizedTable", "(Table)", "", "Argument[0].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["com.google.common.collect", "Tables", False, "synchronizedTable", "(Table)", "", "Argument[0].SyntheticField[com.google.common.collect.Table.columnKey]", "ReturnValue.SyntheticField[com.google.common.collect.Table.columnKey]", "value", "manual"]
+      - ["com.google.common.collect", "Tables", False, "synchronizedTable", "(Table)", "", "Argument[0].SyntheticField[com.google.common.collect.Table.rowKey]", "ReturnValue.SyntheticField[com.google.common.collect.Table.rowKey]", "value", "manual"]
+      - ["com.google.common.collect", "Tables", False, "transformValues", "(Table,Function)", "", "Argument[0].SyntheticField[com.google.common.collect.Table.columnKey]", "ReturnValue.SyntheticField[com.google.common.collect.Table.columnKey]", "value", "manual"]
+      - ["com.google.common.collect", "Tables", False, "transformValues", "(Table,Function)", "", "Argument[0].SyntheticField[com.google.common.collect.Table.rowKey]", "ReturnValue.SyntheticField[com.google.common.collect.Table.rowKey]", "value", "manual"]
+      - ["com.google.common.collect", "Tables", False, "transpose", "(Table)", "", "Argument[0].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["com.google.common.collect", "Tables", False, "transpose", "(Table)", "", "Argument[0].SyntheticField[com.google.common.collect.Table.columnKey]", "ReturnValue.SyntheticField[com.google.common.collect.Table.rowKey]", "value", "manual"]
+      - ["com.google.common.collect", "Tables", False, "transpose", "(Table)", "", "Argument[0].SyntheticField[com.google.common.collect.Table.rowKey]", "ReturnValue.SyntheticField[com.google.common.collect.Table.columnKey]", "value", "manual"]
+      - ["com.google.common.collect", "Tables", False, "unmodifiableRowSortedTable", "(RowSortedTable)", "", "Argument[0].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["com.google.common.collect", "Tables", False, "unmodifiableRowSortedTable", "(RowSortedTable)", "", "Argument[0].SyntheticField[com.google.common.collect.Table.columnKey]", "ReturnValue.SyntheticField[com.google.common.collect.Table.columnKey]", "value", "manual"]
+      - ["com.google.common.collect", "Tables", False, "unmodifiableRowSortedTable", "(RowSortedTable)", "", "Argument[0].SyntheticField[com.google.common.collect.Table.rowKey]", "ReturnValue.SyntheticField[com.google.common.collect.Table.rowKey]", "value", "manual"]
+      - ["com.google.common.collect", "Tables", False, "unmodifiableTable", "(Table)", "", "Argument[0].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["com.google.common.collect", "Tables", False, "unmodifiableTable", "(Table)", "", "Argument[0].SyntheticField[com.google.common.collect.Table.columnKey]", "ReturnValue.SyntheticField[com.google.common.collect.Table.columnKey]", "value", "manual"]
+      - ["com.google.common.collect", "Tables", False, "unmodifiableTable", "(Table)", "", "Argument[0].SyntheticField[com.google.common.collect.Table.rowKey]", "ReturnValue.SyntheticField[com.google.common.collect.Table.rowKey]", "value", "manual"]
+      - ["com.google.common.collect", "TreeBasedTable", True, "create", "(TreeBasedTable)", "", "Argument[0].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["com.google.common.collect", "TreeBasedTable", True, "create", "(TreeBasedTable)", "", "Argument[0].SyntheticField[com.google.common.collect.Table.columnKey]", "ReturnValue.SyntheticField[com.google.common.collect.Table.columnKey]", "value", "manual"]
+      - ["com.google.common.collect", "TreeBasedTable", True, "create", "(TreeBasedTable)", "", "Argument[0].SyntheticField[com.google.common.collect.Table.rowKey]", "ReturnValue.SyntheticField[com.google.common.collect.Table.rowKey]", "value", "manual"]
+      - ["com.google.common.collect", "TreeMultimap", True, "create", "(Multimap)", "", "Argument[0].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["com.google.common.collect", "TreeMultimap", True, "create", "(Multimap)", "", "Argument[0].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["com.google.common.collect", "TreeMultiset", True, "create", "(Iterable)", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
diff --git a/java/ql/lib/ext/com.google.common.flogger.model.yml b/java/ql/lib/ext/com.google.common.flogger.model.yml
new file mode 100644
index 00000000000..21c8b0e9fcb
--- /dev/null
+++ b/java/ql/lib/ext/com.google.common.flogger.model.yml
@@ -0,0 +1,34 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSinkModel
+    data:
+      - ["com.google.common.flogger", "LoggingApi", True, "log", "", "", "Argument[0]", "logging", "manual"]
+      - ["com.google.common.flogger", "LoggingApi", True, "log", "(String,Object)", "", "Argument[1]", "logging", "manual"]
+      - ["com.google.common.flogger", "LoggingApi", True, "log", "(String,Object,Object)", "", "Argument[1..2]", "logging", "manual"]
+      - ["com.google.common.flogger", "LoggingApi", True, "log", "(String,Object,Object,Object)", "", "Argument[1..3]", "logging", "manual"]
+      - ["com.google.common.flogger", "LoggingApi", True, "log", "(String,Object,Object,Object,Object)", "", "Argument[1..4]", "logging", "manual"]
+      - ["com.google.common.flogger", "LoggingApi", True, "log", "(String,Object,Object,Object,Object,Object)", "", "Argument[1..5]", "logging", "manual"]
+      - ["com.google.common.flogger", "LoggingApi", True, "log", "(String,Object,Object,Object,Object,Object,Object)", "", "Argument[1..6]", "logging", "manual"]
+      - ["com.google.common.flogger", "LoggingApi", True, "log", "(String,Object,Object,Object,Object,Object,Object,Object)", "", "Argument[1..7]", "logging", "manual"]
+      - ["com.google.common.flogger", "LoggingApi", True, "log", "(String,Object,Object,Object,Object,Object,Object,Object,Object)", "", "Argument[1..8]", "logging", "manual"]
+      - ["com.google.common.flogger", "LoggingApi", True, "log", "(String,Object,Object,Object,Object,Object,Object,Object,Object,Object)", "", "Argument[1..9]", "logging", "manual"]
+      - ["com.google.common.flogger", "LoggingApi", True, "log", "(String,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object)", "", "Argument[1..10]", "logging", "manual"]
+      - ["com.google.common.flogger", "LoggingApi", True, "log", "(String,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object[])", "", "Argument[1..11]", "logging", "manual"]
+      - ["com.google.common.flogger", "LoggingApi", True, "log", "(String,Object,boolean)", "", "Argument[1]", "logging", "manual"]
+      - ["com.google.common.flogger", "LoggingApi", True, "log", "(String,Object,byte)", "", "Argument[1]", "logging", "manual"]
+      - ["com.google.common.flogger", "LoggingApi", True, "log", "(String,Object,char)", "", "Argument[1]", "logging", "manual"]
+      - ["com.google.common.flogger", "LoggingApi", True, "log", "(String,Object,double)", "", "Argument[1]", "logging", "manual"]
+      - ["com.google.common.flogger", "LoggingApi", True, "log", "(String,Object,float)", "", "Argument[1]", "logging", "manual"]
+      - ["com.google.common.flogger", "LoggingApi", True, "log", "(String,Object,int)", "", "Argument[1]", "logging", "manual"]
+      - ["com.google.common.flogger", "LoggingApi", True, "log", "(String,Object,long)", "", "Argument[1]", "logging", "manual"]
+      - ["com.google.common.flogger", "LoggingApi", True, "log", "(String,Object,short)", "", "Argument[1]", "logging", "manual"]
+      - ["com.google.common.flogger", "LoggingApi", True, "log", "(String,boolean,Object)", "", "Argument[2]", "logging", "manual"]
+      - ["com.google.common.flogger", "LoggingApi", True, "log", "(String,byte,Object)", "", "Argument[2]", "logging", "manual"]
+      - ["com.google.common.flogger", "LoggingApi", True, "log", "(String,char,Object)", "", "Argument[2]", "logging", "manual"]
+      - ["com.google.common.flogger", "LoggingApi", True, "log", "(String,double,Object)", "", "Argument[2]", "logging", "manual"]
+      - ["com.google.common.flogger", "LoggingApi", True, "log", "(String,float,Object)", "", "Argument[2]", "logging", "manual"]
+      - ["com.google.common.flogger", "LoggingApi", True, "log", "(String,int,Object)", "", "Argument[2]", "logging", "manual"]
+      - ["com.google.common.flogger", "LoggingApi", True, "log", "(String,long,Object)", "", "Argument[2]", "logging", "manual"]
+      - ["com.google.common.flogger", "LoggingApi", True, "log", "(String,short,Object)", "", "Argument[2]", "logging", "manual"]
+      - ["com.google.common.flogger", "LoggingApi", True, "logVarargs", "", "", "Argument[0..1]", "logging", "manual"]
diff --git a/java/ql/lib/ext/com.google.common.io.model.yml b/java/ql/lib/ext/com.google.common.io.model.yml
new file mode 100644
index 00000000000..5cba3d58e12
--- /dev/null
+++ b/java/ql/lib/ext/com.google.common.io.model.yml
@@ -0,0 +1,88 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSinkModel
+    data:
+      - ["com.google.common.io", "Resources", False, "asByteSource", "(URL)", "", "Argument[0]", "url-open-stream", "manual"]
+      - ["com.google.common.io", "Resources", False, "asCharSource", "(URL,Charset)", "", "Argument[0]", "url-open-stream", "manual"]
+      - ["com.google.common.io", "Resources", False, "copy", "(URL,OutputStream)", "", "Argument[0]", "url-open-stream", "manual"]
+      - ["com.google.common.io", "Resources", False, "readLines", "", "", "Argument[0]", "url-open-stream", "manual"]
+      - ["com.google.common.io", "Resources", False, "toByteArray", "(URL)", "", "Argument[0]", "url-open-stream", "manual"]
+      - ["com.google.common.io", "Resources", False, "toString", "(URL,Charset)", "", "Argument[0]", "url-open-stream", "manual"]
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSummaryModel
+    data:
+      - ["com.google.common.io", "BaseEncoding", True, "decode", "(CharSequence)", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["com.google.common.io", "BaseEncoding", True, "decode", "(CharSequence)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["com.google.common.io", "BaseEncoding", True, "decodingSource", "(CharSource)", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["com.google.common.io", "BaseEncoding", True, "decodingSource", "(CharSource)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["com.google.common.io", "BaseEncoding", True, "decodingStream", "(Reader)", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["com.google.common.io", "BaseEncoding", True, "decodingStream", "(Reader)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["com.google.common.io", "BaseEncoding", True, "encode", "(byte[])", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["com.google.common.io", "BaseEncoding", True, "encode", "(byte[])", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["com.google.common.io", "BaseEncoding", True, "encode", "(byte[],int,int)", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["com.google.common.io", "BaseEncoding", True, "encode", "(byte[],int,int)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["com.google.common.io", "BaseEncoding", True, "lowerCase", "()", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["com.google.common.io", "BaseEncoding", True, "omitPadding", "()", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["com.google.common.io", "BaseEncoding", True, "upperCase", "()", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["com.google.common.io", "BaseEncoding", True, "withPadChar", "(char)", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["com.google.common.io", "BaseEncoding", True, "withSeparator", "(String,int)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["com.google.common.io", "ByteArrayDataOutput", True, "toByteArray", "()", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["com.google.common.io", "ByteArrayDataOutput", True, "write", "(byte[])", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["com.google.common.io", "ByteArrayDataOutput", True, "write", "(byte[],int,int)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["com.google.common.io", "ByteArrayDataOutput", True, "write", "(int)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["com.google.common.io", "ByteArrayDataOutput", True, "writeByte", "(int)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["com.google.common.io", "ByteArrayDataOutput", True, "writeBytes", "(String)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["com.google.common.io", "ByteArrayDataOutput", True, "writeChar", "(int)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["com.google.common.io", "ByteArrayDataOutput", True, "writeChars", "(String)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["com.google.common.io", "ByteArrayDataOutput", True, "writeDouble", "(double)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["com.google.common.io", "ByteArrayDataOutput", True, "writeFloat", "(float)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["com.google.common.io", "ByteArrayDataOutput", True, "writeInt", "(int)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["com.google.common.io", "ByteArrayDataOutput", True, "writeLong", "(long)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["com.google.common.io", "ByteArrayDataOutput", True, "writeShort", "(int)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["com.google.common.io", "ByteArrayDataOutput", True, "writeUTF", "(String)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["com.google.common.io", "ByteSource", True, "asCharSource", "(Charset)", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["com.google.common.io", "ByteSource", True, "concat", "(ByteSource[])", "", "Argument[0].ArrayElement", "ReturnValue", "taint", "manual"]
+      - ["com.google.common.io", "ByteSource", True, "concat", "(Iterable)", "", "Argument[0].Element", "ReturnValue", "taint", "manual"]
+      - ["com.google.common.io", "ByteSource", True, "concat", "(Iterator)", "", "Argument[0].Element", "ReturnValue", "taint", "manual"]
+      - ["com.google.common.io", "ByteSource", True, "copyTo", "(OutputStream)", "", "Argument[-1]", "Argument[0]", "taint", "manual"]
+      - ["com.google.common.io", "ByteSource", True, "openBufferedStream", "()", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["com.google.common.io", "ByteSource", True, "openStream", "()", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["com.google.common.io", "ByteSource", True, "read", "()", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["com.google.common.io", "ByteSource", True, "slice", "(long,long)", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["com.google.common.io", "ByteSource", True, "wrap", "(byte[])", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["com.google.common.io", "ByteStreams", False, "copy", "(InputStream,OutputStream)", "", "Argument[0]", "Argument[1]", "taint", "manual"]
+      - ["com.google.common.io", "ByteStreams", False, "copy", "(ReadableByteChannel,WritableByteChannel)", "", "Argument[0]", "Argument[1]", "taint", "manual"]
+      - ["com.google.common.io", "ByteStreams", False, "limit", "(InputStream,long)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["com.google.common.io", "ByteStreams", False, "newDataInput", "(ByteArrayInputStream)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["com.google.common.io", "ByteStreams", False, "newDataInput", "(byte[])", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["com.google.common.io", "ByteStreams", False, "newDataInput", "(byte[],int)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["com.google.common.io", "ByteStreams", False, "newDataOutput", "(ByteArrayOutputStream)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["com.google.common.io", "ByteStreams", False, "read", "(InputStream,byte[],int,int)", "", "Argument[0]", "Argument[1]", "taint", "manual"]
+      - ["com.google.common.io", "ByteStreams", False, "readFully", "(InputStream,byte[])", "", "Argument[0]", "Argument[1]", "taint", "manual"]
+      - ["com.google.common.io", "ByteStreams", False, "readFully", "(InputStream,byte[],int,int)", "", "Argument[0]", "Argument[1]", "taint", "manual"]
+      - ["com.google.common.io", "ByteStreams", False, "toByteArray", "(InputStream)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["com.google.common.io", "CharSource", True, "asByteSource", "(Charset)", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["com.google.common.io", "CharSource", True, "concat", "(CharSource[])", "", "Argument[0].ArrayElement", "ReturnValue", "taint", "manual"]
+      - ["com.google.common.io", "CharSource", True, "concat", "(Iterable)", "", "Argument[0].Element", "ReturnValue", "taint", "manual"]
+      - ["com.google.common.io", "CharSource", True, "concat", "(Iterator)", "", "Argument[0].Element", "ReturnValue", "taint", "manual"]
+      - ["com.google.common.io", "CharSource", True, "copyTo", "(Appendable)", "", "Argument[-1]", "Argument[0]", "taint", "manual"]
+      - ["com.google.common.io", "CharSource", True, "lines", "()", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["com.google.common.io", "CharSource", True, "openBufferedStream", "()", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["com.google.common.io", "CharSource", True, "openStream", "()", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["com.google.common.io", "CharSource", True, "read", "()", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["com.google.common.io", "CharSource", True, "readFirstLine", "()", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["com.google.common.io", "CharSource", True, "readLines", "()", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["com.google.common.io", "CharSource", True, "wrap", "(CharSequence)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["com.google.common.io", "CharStreams", False, "copy", "(Readable,Appendable)", "", "Argument[0]", "Argument[1]", "taint", "manual"]
+      - ["com.google.common.io", "CharStreams", False, "readLines", "(Readable)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["com.google.common.io", "CharStreams", False, "toString", "(Readable)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["com.google.common.io", "Closer", True, "register", "", "", "Argument[0]", "ReturnValue", "value", "manual"]
+      - ["com.google.common.io", "Files", False, "getFileExtension", "(String)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["com.google.common.io", "Files", False, "getNameWithoutExtension", "(String)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["com.google.common.io", "Files", False, "simplifyPath", "(String)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["com.google.common.io", "LineReader", False, "LineReader", "(Readable)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["com.google.common.io", "LineReader", True, "readLine", "()", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["com.google.common.io", "MoreFiles", False, "getFileExtension", "(Path)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["com.google.common.io", "MoreFiles", False, "getNameWithoutExtension", "(Path)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
diff --git a/java/ql/lib/ext/com.hubspot.jinjava.model.yml b/java/ql/lib/ext/com.hubspot.jinjava.model.yml
new file mode 100644
index 00000000000..c1a30915e33
--- /dev/null
+++ b/java/ql/lib/ext/com.hubspot.jinjava.model.yml
@@ -0,0 +1,7 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSinkModel
+    data:
+      - ["com.hubspot.jinjava", "Jinjava", True, "render", "", "", "Argument[0]", "ssti", "manual"]
+      - ["com.hubspot.jinjava", "Jinjava", True, "renderForResult", "", "", "Argument[0]", "ssti", "manual"]
diff --git a/java/ql/lib/ext/com.mitchellbosecke.pebble.model.yml b/java/ql/lib/ext/com.mitchellbosecke.pebble.model.yml
new file mode 100644
index 00000000000..a8ae018da3c
--- /dev/null
+++ b/java/ql/lib/ext/com.mitchellbosecke.pebble.model.yml
@@ -0,0 +1,7 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSinkModel
+    data:
+      - ["com.mitchellbosecke.pebble", "PebbleEngine", True, "getLiteralTemplate", "", "", "Argument[0]", "ssti", "manual"]
+      - ["com.mitchellbosecke.pebble", "PebbleEngine", True, "getTemplate", "", "", "Argument[0]", "ssti", "manual"]
diff --git a/java/ql/lib/ext/com.opensymphony.xwork2.ognl.model.yml b/java/ql/lib/ext/com.opensymphony.xwork2.ognl.model.yml
new file mode 100644
index 00000000000..60cd1b114d6
--- /dev/null
+++ b/java/ql/lib/ext/com.opensymphony.xwork2.ognl.model.yml
@@ -0,0 +1,8 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSinkModel
+    data:
+      - ["com.opensymphony.xwork2.ognl", "OgnlUtil", False, "callMethod", "", "", "Argument[0]", "ognl-injection", "manual"]
+      - ["com.opensymphony.xwork2.ognl", "OgnlUtil", False, "getValue", "", "", "Argument[0]", "ognl-injection", "manual"]
+      - ["com.opensymphony.xwork2.ognl", "OgnlUtil", False, "setValue", "", "", "Argument[0]", "ognl-injection", "manual"]
diff --git a/java/ql/lib/ext/com.rabbitmq.client.impl.model.yml b/java/ql/lib/ext/com.rabbitmq.client.impl.model.yml
new file mode 100644
index 00000000000..cd2a74a741d
--- /dev/null
+++ b/java/ql/lib/ext/com.rabbitmq.client.impl.model.yml
@@ -0,0 +1,15 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSourceModel
+    data:
+      - ["com.rabbitmq.client.impl", "Frame", True, "getInputStream", "()", "", "ReturnValue", "remote", "manual"]
+      - ["com.rabbitmq.client.impl", "Frame", True, "getPayload", "()", "", "ReturnValue", "remote", "manual"]
+      - ["com.rabbitmq.client.impl", "FrameHandler", True, "readFrame", "()", "", "ReturnValue", "remote", "manual"]
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSummaryModel
+    data:
+      - ["com.rabbitmq.client.impl", "Frame", False, "fromBodyFragment", "(int,byte[],int,int)", "", "Argument[1]", "ReturnValue", "taint", "manual"]
+      - ["com.rabbitmq.client.impl", "Frame", False, "readFrom", "(DataInputStream)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["com.rabbitmq.client.impl", "Frame", True, "writeTo", "(DataOutputStream)", "", "Argument[-1]", "Argument[0]", "taint", "manual"]
diff --git a/java/ql/lib/ext/com.rabbitmq.client.model.yml b/java/ql/lib/ext/com.rabbitmq.client.model.yml
new file mode 100644
index 00000000000..ef452bf7005
--- /dev/null
+++ b/java/ql/lib/ext/com.rabbitmq.client.model.yml
@@ -0,0 +1,31 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSourceModel
+    data:
+      - ["com.rabbitmq.client", "Command", True, "getContentBody", "()", "", "ReturnValue", "remote", "manual"]
+      - ["com.rabbitmq.client", "Command", True, "getContentHeader", "()", "", "ReturnValue", "remote", "manual"]
+      - ["com.rabbitmq.client", "Consumer", True, "handleDelivery", "(String,Envelope,BasicProperties,byte[])", "", "Parameter[3]", "remote", "manual"]
+      - ["com.rabbitmq.client", "QueueingConsumer", True, "nextDelivery", "", "", "ReturnValue", "remote", "manual"]
+      - ["com.rabbitmq.client", "RpcClient", True, "doCall", "", "", "ReturnValue", "remote", "manual"]
+      - ["com.rabbitmq.client", "RpcClient", True, "mapCall", "", "", "ReturnValue", "remote", "manual"]
+      - ["com.rabbitmq.client", "RpcClient", True, "primitiveCall", "", "", "ReturnValue", "remote", "manual"]
+      - ["com.rabbitmq.client", "RpcClient", True, "responseCall", "", "", "ReturnValue", "remote", "manual"]
+      - ["com.rabbitmq.client", "RpcClient", True, "stringCall", "(String)", "", "ReturnValue", "remote", "manual"]
+      - ["com.rabbitmq.client", "RpcServer", True, "handleCall", "(BasicProperties,byte[],BasicProperties)", "", "Parameter[1]", "remote", "manual"]
+      - ["com.rabbitmq.client", "RpcServer", True, "handleCall", "(Delivery,BasicProperties)", "", "Parameter[0]", "remote", "manual"]
+      - ["com.rabbitmq.client", "RpcServer", True, "handleCall", "(byte[],BasicProperties)", "", "Parameter[0]", "remote", "manual"]
+      - ["com.rabbitmq.client", "RpcServer", True, "handleCast", "(BasicProperties,byte[])", "", "Parameter[1]", "remote", "manual"]
+      - ["com.rabbitmq.client", "RpcServer", True, "handleCast", "(Delivery)", "", "Parameter[0]", "remote", "manual"]
+      - ["com.rabbitmq.client", "RpcServer", True, "handleCast", "(byte[])", "", "Parameter[0]", "remote", "manual"]
+      - ["com.rabbitmq.client", "RpcServer", True, "postprocessReplyProperties", "(Delivery,Builder)", "", "Parameter[0]", "remote", "manual"]
+      - ["com.rabbitmq.client", "RpcServer", True, "preprocessReplyProperties", "(Delivery,Builder)", "", "Parameter[0]", "remote", "manual"]
+      - ["com.rabbitmq.client", "StringRpcServer", True, "handleStringCall", "", "", "Parameter[0]", "remote", "manual"]
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSummaryModel
+    data:
+      - ["com.rabbitmq.client", "GetResponse", True, "GetResponse", "", "", "Argument[2]", "Argument[-1]", "taint", "manual"]
+      - ["com.rabbitmq.client", "GetResponse", True, "getBody", "()", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["com.rabbitmq.client", "QueueingConsumer$Delivery", True, "getBody", "()", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["com.rabbitmq.client", "RpcClient$Response", True, "getBody", "()", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
diff --git a/java/ql/lib/ext/com.unboundid.ldap.sdk.model.yml b/java/ql/lib/ext/com.unboundid.ldap.sdk.model.yml
new file mode 100644
index 00000000000..f9d1d872f28
--- /dev/null
+++ b/java/ql/lib/ext/com.unboundid.ldap.sdk.model.yml
@@ -0,0 +1,22 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSinkModel
+    data:
+      - ["com.unboundid.ldap.sdk", "LDAPConnection", False, "asyncSearch", "", "", "Argument[0]", "ldap", "manual"]
+      - ["com.unboundid.ldap.sdk", "LDAPConnection", False, "search", "(ReadOnlySearchRequest)", "", "Argument[0]", "ldap", "manual"]
+      - ["com.unboundid.ldap.sdk", "LDAPConnection", False, "search", "(SearchRequest)", "", "Argument[0]", "ldap", "manual"]
+      - ["com.unboundid.ldap.sdk", "LDAPConnection", False, "search", "(SearchResultListener,String,SearchScope,DereferencePolicy,int,int,boolean,Filter,String[])", "", "Argument[0..7]", "ldap", "manual"]
+      - ["com.unboundid.ldap.sdk", "LDAPConnection", False, "search", "(SearchResultListener,String,SearchScope,DereferencePolicy,int,int,boolean,String,String[])", "", "Argument[0..7]", "ldap", "manual"]
+      - ["com.unboundid.ldap.sdk", "LDAPConnection", False, "search", "(SearchResultListener,String,SearchScope,Filter,String[])", "", "Argument[0..3]", "ldap", "manual"]
+      - ["com.unboundid.ldap.sdk", "LDAPConnection", False, "search", "(SearchResultListener,String,SearchScope,String,String[])", "", "Argument[0..3]", "ldap", "manual"]
+      - ["com.unboundid.ldap.sdk", "LDAPConnection", False, "search", "(String,SearchScope,DereferencePolicy,int,int,boolean,Filter,String[])", "", "Argument[0..6]", "ldap", "manual"]
+      - ["com.unboundid.ldap.sdk", "LDAPConnection", False, "search", "(String,SearchScope,DereferencePolicy,int,int,boolean,String,String[])", "", "Argument[0..6]", "ldap", "manual"]
+      - ["com.unboundid.ldap.sdk", "LDAPConnection", False, "search", "(String,SearchScope,Filter,String[])", "", "Argument[0..2]", "ldap", "manual"]
+      - ["com.unboundid.ldap.sdk", "LDAPConnection", False, "search", "(String,SearchScope,String,String[])", "", "Argument[0..2]", "ldap", "manual"]
+      - ["com.unboundid.ldap.sdk", "LDAPConnection", False, "searchForEntry", "(ReadOnlySearchRequest)", "", "Argument[0]", "ldap", "manual"]
+      - ["com.unboundid.ldap.sdk", "LDAPConnection", False, "searchForEntry", "(SearchRequest)", "", "Argument[0]", "ldap", "manual"]
+      - ["com.unboundid.ldap.sdk", "LDAPConnection", False, "searchForEntry", "(String,SearchScope,DereferencePolicy,int,boolean,Filter,String[])", "", "Argument[0..5]", "ldap", "manual"]
+      - ["com.unboundid.ldap.sdk", "LDAPConnection", False, "searchForEntry", "(String,SearchScope,DereferencePolicy,int,boolean,String,String[])", "", "Argument[0..5]", "ldap", "manual"]
+      - ["com.unboundid.ldap.sdk", "LDAPConnection", False, "searchForEntry", "(String,SearchScope,Filter,String[])", "", "Argument[0..2]", "ldap", "manual"]
+      - ["com.unboundid.ldap.sdk", "LDAPConnection", False, "searchForEntry", "(String,SearchScope,String,String[])", "", "Argument[0..2]", "ldap", "manual"]
diff --git a/java/ql/lib/ext/com.zaxxer.hikari.model.yml b/java/ql/lib/ext/com.zaxxer.hikari.model.yml
new file mode 100644
index 00000000000..fb9f8f3cb80
--- /dev/null
+++ b/java/ql/lib/ext/com.zaxxer.hikari.model.yml
@@ -0,0 +1,7 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSinkModel
+    data:
+      - ["com.zaxxer.hikari", "HikariConfig", False, "HikariConfig", "(Properties)", "", "Argument[0]", "jdbc-url", "manual"]
+      - ["com.zaxxer.hikari", "HikariConfig", False, "setJdbcUrl", "(String)", "", "Argument[0]", "jdbc-url", "manual"]
diff --git a/java/ql/lib/ext/flexjson.model.yml b/java/ql/lib/ext/flexjson.model.yml
new file mode 100644
index 00000000000..af35c167d81
--- /dev/null
+++ b/java/ql/lib/ext/flexjson.model.yml
@@ -0,0 +1,6 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSummaryModel
+    data:
+      - ["flexjson", "JSONDeserializer", True, "use", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
diff --git a/java/ql/lib/ext/freemarker.cache.model.yml b/java/ql/lib/ext/freemarker.cache.model.yml
new file mode 100644
index 00000000000..031ad7244dd
--- /dev/null
+++ b/java/ql/lib/ext/freemarker.cache.model.yml
@@ -0,0 +1,6 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSinkModel
+    data:
+      - ["freemarker.cache", "StringTemplateLoader", True, "putTemplate", "", "", "Argument[1]", "ssti", "manual"]
diff --git a/java/ql/lib/ext/freemarker.template.model.yml b/java/ql/lib/ext/freemarker.template.model.yml
new file mode 100644
index 00000000000..10f90c6ea87
--- /dev/null
+++ b/java/ql/lib/ext/freemarker.template.model.yml
@@ -0,0 +1,12 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSinkModel
+    data:
+      - ["freemarker.template", "Template", True, "Template", "(String,Reader)", "", "Argument[1]", "ssti", "manual"]
+      - ["freemarker.template", "Template", True, "Template", "(String,Reader,Configuration)", "", "Argument[1]", "ssti", "manual"]
+      - ["freemarker.template", "Template", True, "Template", "(String,Reader,Configuration,String)", "", "Argument[1]", "ssti", "manual"]
+      - ["freemarker.template", "Template", True, "Template", "(String,String,Configuration)", "", "Argument[1]", "ssti", "manual"]
+      - ["freemarker.template", "Template", True, "Template", "(String,String,Reader,Configuration)", "", "Argument[2]", "ssti", "manual"]
+      - ["freemarker.template", "Template", True, "Template", "(String,String,Reader,Configuration,ParserConfiguration,String)", "", "Argument[2]", "ssti", "manual"]
+      - ["freemarker.template", "Template", True, "Template", "(String,String,Reader,Configuration,String)", "", "Argument[2]", "ssti", "manual"]
diff --git a/java/ql/lib/ext/groovy.lang.model.yml b/java/ql/lib/ext/groovy.lang.model.yml
new file mode 100644
index 00000000000..5299bf55afa
--- /dev/null
+++ b/java/ql/lib/ext/groovy.lang.model.yml
@@ -0,0 +1,31 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSinkModel
+    data:
+      - ["groovy.lang", "GroovyClassLoader", False, "parseClass", "(GroovyCodeSource)", "", "Argument[0]", "groovy", "manual"]
+      - ["groovy.lang", "GroovyClassLoader", False, "parseClass", "(GroovyCodeSource,boolean)", "", "Argument[0]", "groovy", "manual"]
+      - ["groovy.lang", "GroovyClassLoader", False, "parseClass", "(InputStream,String)", "", "Argument[0]", "groovy", "manual"]
+      - ["groovy.lang", "GroovyClassLoader", False, "parseClass", "(Reader,String)", "", "Argument[0]", "groovy", "manual"]
+      - ["groovy.lang", "GroovyClassLoader", False, "parseClass", "(String)", "", "Argument[0]", "groovy", "manual"]
+      - ["groovy.lang", "GroovyClassLoader", False, "parseClass", "(String,String)", "", "Argument[0]", "groovy", "manual"]
+      - ["groovy.lang", "GroovyShell", False, "evaluate", "(GroovyCodeSource)", "", "Argument[0]", "groovy", "manual"]
+      - ["groovy.lang", "GroovyShell", False, "evaluate", "(Reader)", "", "Argument[0]", "groovy", "manual"]
+      - ["groovy.lang", "GroovyShell", False, "evaluate", "(Reader,String)", "", "Argument[0]", "groovy", "manual"]
+      - ["groovy.lang", "GroovyShell", False, "evaluate", "(String)", "", "Argument[0]", "groovy", "manual"]
+      - ["groovy.lang", "GroovyShell", False, "evaluate", "(String,String)", "", "Argument[0]", "groovy", "manual"]
+      - ["groovy.lang", "GroovyShell", False, "evaluate", "(String,String,String)", "", "Argument[0]", "groovy", "manual"]
+      - ["groovy.lang", "GroovyShell", False, "evaluate", "(URI)", "", "Argument[0]", "groovy", "manual"]
+      - ["groovy.lang", "GroovyShell", False, "parse", "(Reader)", "", "Argument[0]", "groovy", "manual"]
+      - ["groovy.lang", "GroovyShell", False, "parse", "(Reader,String)", "", "Argument[0]", "groovy", "manual"]
+      - ["groovy.lang", "GroovyShell", False, "parse", "(String)", "", "Argument[0]", "groovy", "manual"]
+      - ["groovy.lang", "GroovyShell", False, "parse", "(String,String)", "", "Argument[0]", "groovy", "manual"]
+      - ["groovy.lang", "GroovyShell", False, "parse", "(URI)", "", "Argument[0]", "groovy", "manual"]
+      - ["groovy.lang", "GroovyShell", False, "run", "(GroovyCodeSource,List)", "", "Argument[0]", "groovy", "manual"]
+      - ["groovy.lang", "GroovyShell", False, "run", "(GroovyCodeSource,String[])", "", "Argument[0]", "groovy", "manual"]
+      - ["groovy.lang", "GroovyShell", False, "run", "(Reader,String,List)", "", "Argument[0]", "groovy", "manual"]
+      - ["groovy.lang", "GroovyShell", False, "run", "(Reader,String,String[])", "", "Argument[0]", "groovy", "manual"]
+      - ["groovy.lang", "GroovyShell", False, "run", "(String,String,List)", "", "Argument[0]", "groovy", "manual"]
+      - ["groovy.lang", "GroovyShell", False, "run", "(String,String,String[])", "", "Argument[0]", "groovy", "manual"]
+      - ["groovy.lang", "GroovyShell", False, "run", "(URI,List)", "", "Argument[0]", "groovy", "manual"]
+      - ["groovy.lang", "GroovyShell", False, "run", "(URI,String[])", "", "Argument[0]", "groovy", "manual"]
diff --git a/java/ql/lib/ext/groovy.util.model.yml b/java/ql/lib/ext/groovy.util.model.yml
new file mode 100644
index 00000000000..17b3d10ffae
--- /dev/null
+++ b/java/ql/lib/ext/groovy.util.model.yml
@@ -0,0 +1,10 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSinkModel
+    data:
+      - ["groovy.util", "Eval", False, "me", "(String)", "", "Argument[0]", "groovy", "manual"]
+      - ["groovy.util", "Eval", False, "me", "(String,Object,String)", "", "Argument[2]", "groovy", "manual"]
+      - ["groovy.util", "Eval", False, "x", "(Object,String)", "", "Argument[1]", "groovy", "manual"]
+      - ["groovy.util", "Eval", False, "xy", "(Object,Object,String)", "", "Argument[2]", "groovy", "manual"]
+      - ["groovy.util", "Eval", False, "xyz", "(Object,Object,Object,String)", "", "Argument[3]", "groovy", "manual"]
diff --git a/java/ql/lib/ext/jakarta.faces.context.model.yml b/java/ql/lib/ext/jakarta.faces.context.model.yml
new file mode 100644
index 00000000000..968a15369c9
--- /dev/null
+++ b/java/ql/lib/ext/jakarta.faces.context.model.yml
@@ -0,0 +1,18 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSourceModel
+    data:
+      - ["jakarta.faces.context", "ExternalContext", True, "getRequestCookieMap", "()", "", "ReturnValue", "remote", "manual"]
+      - ["jakarta.faces.context", "ExternalContext", True, "getRequestHeaderMap", "()", "", "ReturnValue", "remote", "manual"]
+      - ["jakarta.faces.context", "ExternalContext", True, "getRequestHeaderValuesMap", "()", "", "ReturnValue", "remote", "manual"]
+      - ["jakarta.faces.context", "ExternalContext", True, "getRequestParameterMap", "()", "", "ReturnValue", "remote", "manual"]
+      - ["jakarta.faces.context", "ExternalContext", True, "getRequestParameterNames", "()", "", "ReturnValue", "remote", "manual"]
+      - ["jakarta.faces.context", "ExternalContext", True, "getRequestParameterValuesMap", "()", "", "ReturnValue", "remote", "manual"]
+      - ["jakarta.faces.context", "ExternalContext", True, "getRequestPathInfo", "()", "", "ReturnValue", "remote", "manual"]
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSinkModel
+    data:
+      - ["jakarta.faces.context", "ResponseStream", True, "write", "", "", "Argument[0]", "xss", "manual"]
+      - ["jakarta.faces.context", "ResponseWriter", True, "write", "", "", "Argument[0]", "xss", "manual"]
diff --git a/java/ql/lib/ext/jakarta.json.model.yml b/java/ql/lib/ext/jakarta.json.model.yml
new file mode 100644
index 00000000000..40c2a465fa6
--- /dev/null
+++ b/java/ql/lib/ext/jakarta.json.model.yml
@@ -0,0 +1,127 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSummaryModel
+    data:
+      - ["jakarta.json", "Json", False, "createArrayBuilder", "(Collection)", "", "Argument[0].Element", "ReturnValue", "taint", "manual"]
+      - ["jakarta.json", "Json", False, "createArrayBuilder", "(JsonArray)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["jakarta.json", "Json", False, "createDiff", "", "", "Argument[0..1]", "ReturnValue", "taint", "manual"]
+      - ["jakarta.json", "Json", False, "createMergeDiff", "", "", "Argument[0..1]", "ReturnValue", "taint", "manual"]
+      - ["jakarta.json", "Json", False, "createMergePatch", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["jakarta.json", "Json", False, "createObjectBuilder", "(JsonObject)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["jakarta.json", "Json", False, "createObjectBuilder", "(Map)", "", "Argument[0].MapKey", "ReturnValue", "taint", "manual"]
+      - ["jakarta.json", "Json", False, "createObjectBuilder", "(Map)", "", "Argument[0].MapValue", "ReturnValue", "taint", "manual"]
+      - ["jakarta.json", "Json", False, "createPatch", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["jakarta.json", "Json", False, "createPatchBuilder", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["jakarta.json", "Json", False, "createPointer", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["jakarta.json", "Json", False, "createReader", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["jakarta.json", "Json", False, "createValue", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["jakarta.json", "Json", False, "createWriter", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["jakarta.json", "Json", False, "decodePointer", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["jakarta.json", "Json", False, "encodePointer", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["jakarta.json", "JsonArray", False, "getBoolean", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["jakarta.json", "JsonArray", False, "getBoolean", "", "", "Argument[1]", "ReturnValue", "value", "manual"]
+      - ["jakarta.json", "JsonArray", False, "getInt", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["jakarta.json", "JsonArray", False, "getInt", "", "", "Argument[1]", "ReturnValue", "value", "manual"]
+      - ["jakarta.json", "JsonArray", False, "getJsonArray", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["jakarta.json", "JsonArray", False, "getJsonNumber", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["jakarta.json", "JsonArray", False, "getJsonObject", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["jakarta.json", "JsonArray", False, "getJsonString", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["jakarta.json", "JsonArray", False, "getString", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["jakarta.json", "JsonArray", False, "getString", "", "", "Argument[1]", "ReturnValue", "value", "manual"]
+      - ["jakarta.json", "JsonArray", False, "getValuesAs", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["jakarta.json", "JsonArrayBuilder", False, "add", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["jakarta.json", "JsonArrayBuilder", False, "add", "(BigDecimal)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["jakarta.json", "JsonArrayBuilder", False, "add", "(BigInteger)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["jakarta.json", "JsonArrayBuilder", False, "add", "(JsonArrayBuilder)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["jakarta.json", "JsonArrayBuilder", False, "add", "(JsonObjectBuilder)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["jakarta.json", "JsonArrayBuilder", False, "add", "(JsonValue)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["jakarta.json", "JsonArrayBuilder", False, "add", "(String)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["jakarta.json", "JsonArrayBuilder", False, "add", "(boolean)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["jakarta.json", "JsonArrayBuilder", False, "add", "(double)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["jakarta.json", "JsonArrayBuilder", False, "add", "(int)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["jakarta.json", "JsonArrayBuilder", False, "add", "(int,BigDecimal)", "", "Argument[1]", "Argument[-1]", "taint", "manual"]
+      - ["jakarta.json", "JsonArrayBuilder", False, "add", "(int,BigInteger)", "", "Argument[1]", "Argument[-1]", "taint", "manual"]
+      - ["jakarta.json", "JsonArrayBuilder", False, "add", "(int,JsonArrayBuilder)", "", "Argument[1]", "Argument[-1]", "taint", "manual"]
+      - ["jakarta.json", "JsonArrayBuilder", False, "add", "(int,JsonObjectBuilder)", "", "Argument[1]", "Argument[-1]", "taint", "manual"]
+      - ["jakarta.json", "JsonArrayBuilder", False, "add", "(int,JsonValue)", "", "Argument[1]", "Argument[-1]", "taint", "manual"]
+      - ["jakarta.json", "JsonArrayBuilder", False, "add", "(int,String)", "", "Argument[1]", "Argument[-1]", "taint", "manual"]
+      - ["jakarta.json", "JsonArrayBuilder", False, "add", "(int,boolean)", "", "Argument[1]", "Argument[-1]", "taint", "manual"]
+      - ["jakarta.json", "JsonArrayBuilder", False, "add", "(int,double)", "", "Argument[1]", "Argument[-1]", "taint", "manual"]
+      - ["jakarta.json", "JsonArrayBuilder", False, "add", "(int,int)", "", "Argument[1]", "Argument[-1]", "taint", "manual"]
+      - ["jakarta.json", "JsonArrayBuilder", False, "add", "(int,long)", "", "Argument[1]", "Argument[-1]", "taint", "manual"]
+      - ["jakarta.json", "JsonArrayBuilder", False, "add", "(long)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["jakarta.json", "JsonArrayBuilder", False, "addAll", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["jakarta.json", "JsonArrayBuilder", False, "addAll", "", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["jakarta.json", "JsonArrayBuilder", False, "addNull", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["jakarta.json", "JsonArrayBuilder", False, "build", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["jakarta.json", "JsonArrayBuilder", False, "remove", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["jakarta.json", "JsonArrayBuilder", False, "set", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["jakarta.json", "JsonArrayBuilder", False, "set", "", "", "Argument[1]", "Argument[-1]", "taint", "manual"]
+      - ["jakarta.json", "JsonArrayBuilder", False, "setNull", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["jakarta.json", "JsonMergePatch", False, "apply", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["jakarta.json", "JsonMergePatch", False, "apply", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["jakarta.json", "JsonMergePatch", False, "toJsonValue", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["jakarta.json", "JsonNumber", False, "bigDecimalValue", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["jakarta.json", "JsonNumber", False, "bigIntegerValue", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["jakarta.json", "JsonNumber", False, "bigIntegerValueExact", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["jakarta.json", "JsonNumber", False, "doubleValue", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["jakarta.json", "JsonNumber", False, "intValue", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["jakarta.json", "JsonNumber", False, "intValueExact", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["jakarta.json", "JsonNumber", False, "longValue", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["jakarta.json", "JsonNumber", False, "longValueExact", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["jakarta.json", "JsonNumber", False, "numberValue", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["jakarta.json", "JsonObject", False, "getBoolean", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["jakarta.json", "JsonObject", False, "getBoolean", "", "", "Argument[1]", "ReturnValue", "value", "manual"]
+      - ["jakarta.json", "JsonObject", False, "getInt", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["jakarta.json", "JsonObject", False, "getInt", "", "", "Argument[1]", "ReturnValue", "value", "manual"]
+      - ["jakarta.json", "JsonObject", False, "getJsonArray", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["jakarta.json", "JsonObject", False, "getJsonNumber", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["jakarta.json", "JsonObject", False, "getJsonObject", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["jakarta.json", "JsonObject", False, "getJsonString", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["jakarta.json", "JsonObject", False, "getString", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["jakarta.json", "JsonObject", False, "getString", "", "", "Argument[1]", "ReturnValue", "value", "manual"]
+      - ["jakarta.json", "JsonObjectBuilder", False, "add", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["jakarta.json", "JsonObjectBuilder", False, "add", "", "", "Argument[1]", "Argument[-1]", "taint", "manual"]
+      - ["jakarta.json", "JsonObjectBuilder", False, "addAll", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["jakarta.json", "JsonObjectBuilder", False, "addAll", "", "", "Argument[0]", "ReturnValue", "value", "manual"]
+      - ["jakarta.json", "JsonObjectBuilder", False, "addNull", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["jakarta.json", "JsonObjectBuilder", False, "build", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["jakarta.json", "JsonObjectBuilder", False, "remove", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["jakarta.json", "JsonPatch", False, "apply", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["jakarta.json", "JsonPatch", False, "apply", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["jakarta.json", "JsonPatch", False, "toJsonArray", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["jakarta.json", "JsonPatchBuilder", False, "add", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["jakarta.json", "JsonPatchBuilder", False, "add", "", "", "Argument[0..1]", "ReturnValue", "taint", "manual"]
+      - ["jakarta.json", "JsonPatchBuilder", False, "build", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["jakarta.json", "JsonPatchBuilder", False, "copy", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["jakarta.json", "JsonPatchBuilder", False, "copy", "", "", "Argument[0..1]", "ReturnValue", "taint", "manual"]
+      - ["jakarta.json", "JsonPatchBuilder", False, "move", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["jakarta.json", "JsonPatchBuilder", False, "move", "", "", "Argument[0..1]", "ReturnValue", "taint", "manual"]
+      - ["jakarta.json", "JsonPatchBuilder", False, "remove", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["jakarta.json", "JsonPatchBuilder", False, "remove", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["jakarta.json", "JsonPatchBuilder", False, "replace", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["jakarta.json", "JsonPatchBuilder", False, "replace", "", "", "Argument[0..1]", "ReturnValue", "taint", "manual"]
+      - ["jakarta.json", "JsonPatchBuilder", False, "test", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["jakarta.json", "JsonPatchBuilder", False, "test", "", "", "Argument[0..1]", "ReturnValue", "taint", "manual"]
+      - ["jakarta.json", "JsonPointer", False, "add", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["jakarta.json", "JsonPointer", False, "add", "", "", "Argument[0..1]", "ReturnValue", "taint", "manual"]
+      - ["jakarta.json", "JsonPointer", False, "getValue", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["jakarta.json", "JsonPointer", False, "remove", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["jakarta.json", "JsonPointer", False, "replace", "", "", "Argument[0..1]", "ReturnValue", "taint", "manual"]
+      - ["jakarta.json", "JsonPointer", False, "toString", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["jakarta.json", "JsonReader", False, "read", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["jakarta.json", "JsonReader", False, "readArray", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["jakarta.json", "JsonReader", False, "readObject", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["jakarta.json", "JsonReader", False, "readValue", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["jakarta.json", "JsonReaderFactory", False, "createReader", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["jakarta.json", "JsonString", False, "getChars", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["jakarta.json", "JsonString", False, "getString", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["jakarta.json", "JsonStructure", True, "getValue", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["jakarta.json", "JsonValue", True, "asJsonArray", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["jakarta.json", "JsonValue", True, "asJsonObject", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["jakarta.json", "JsonValue", True, "toString", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["jakarta.json", "JsonWriter", False, "write", "", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["jakarta.json", "JsonWriter", False, "writeArray", "", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["jakarta.json", "JsonWriter", False, "writeObject", "", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["jakarta.json", "JsonWriterFactory", False, "createWriter", "", "", "Argument[-1]", "Argument[0]", "taint", "manual"]
diff --git a/java/ql/lib/ext/jakarta.json.stream.model.yml b/java/ql/lib/ext/jakarta.json.stream.model.yml
new file mode 100644
index 00000000000..1d8a0f2532a
--- /dev/null
+++ b/java/ql/lib/ext/jakarta.json.stream.model.yml
@@ -0,0 +1,6 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSummaryModel
+    data:
+      - ["jakarta.json.stream", "JsonParserFactory", False, "createParser", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
diff --git a/java/ql/lib/ext/jakarta.ws.rs.client.model.yml b/java/ql/lib/ext/jakarta.ws.rs.client.model.yml
new file mode 100644
index 00000000000..37ec5916e86
--- /dev/null
+++ b/java/ql/lib/ext/jakarta.ws.rs.client.model.yml
@@ -0,0 +1,6 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSinkModel
+    data:
+      - ["jakarta.ws.rs.client", "Client", True, "target", "", "", "Argument[0]", "open-url", "manual"]
diff --git a/java/ql/lib/ext/jakarta.ws.rs.container.model.yml b/java/ql/lib/ext/jakarta.ws.rs.container.model.yml
new file mode 100644
index 00000000000..ac3be002e11
--- /dev/null
+++ b/java/ql/lib/ext/jakarta.ws.rs.container.model.yml
@@ -0,0 +1,14 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSourceModel
+    data:
+      - ["jakarta.ws.rs.container", "ContainerRequestContext", True, "getAcceptableLanguages", "", "", "ReturnValue", "remote", "manual"]
+      - ["jakarta.ws.rs.container", "ContainerRequestContext", True, "getAcceptableMediaTypes", "", "", "ReturnValue", "remote", "manual"]
+      - ["jakarta.ws.rs.container", "ContainerRequestContext", True, "getCookies", "", "", "ReturnValue", "remote", "manual"]
+      - ["jakarta.ws.rs.container", "ContainerRequestContext", True, "getEntityStream", "", "", "ReturnValue", "remote", "manual"]
+      - ["jakarta.ws.rs.container", "ContainerRequestContext", True, "getHeaderString", "", "", "ReturnValue", "remote", "manual"]
+      - ["jakarta.ws.rs.container", "ContainerRequestContext", True, "getHeaders", "", "", "ReturnValue", "remote", "manual"]
+      - ["jakarta.ws.rs.container", "ContainerRequestContext", True, "getLanguage", "", "", "ReturnValue", "remote", "manual"]
+      - ["jakarta.ws.rs.container", "ContainerRequestContext", True, "getMediaType", "", "", "ReturnValue", "remote", "manual"]
+      - ["jakarta.ws.rs.container", "ContainerRequestContext", True, "getUriInfo", "", "", "ReturnValue", "remote", "manual"]
diff --git a/java/ql/lib/ext/jakarta.ws.rs.core.model.yml b/java/ql/lib/ext/jakarta.ws.rs.core.model.yml
new file mode 100644
index 00000000000..1f1cc59d161
--- /dev/null
+++ b/java/ql/lib/ext/jakarta.ws.rs.core.model.yml
@@ -0,0 +1,160 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSinkModel
+    data:
+      - ["jakarta.ws.rs.core", "Response", True, "seeOther", "", "", "Argument[0]", "url-redirect", "manual"]
+      - ["jakarta.ws.rs.core", "Response", True, "temporaryRedirect", "", "", "Argument[0]", "url-redirect", "manual"]
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSummaryModel
+    data:
+      - ["jakarta.ws.rs.core", "AbstractMultivaluedMap", False, "AbstractMultivaluedMap", "", "", "Argument[0].MapKey", "Argument[-1].MapKey", "value", "manual"]
+      - ["jakarta.ws.rs.core", "AbstractMultivaluedMap", False, "AbstractMultivaluedMap", "", "", "Argument[0].MapValue", "Argument[-1].MapValue", "value", "manual"]
+      - ["jakarta.ws.rs.core", "Cookie", False, "Cookie", "", "", "Argument[0..4]", "Argument[-1]", "taint", "manual"]
+      - ["jakarta.ws.rs.core", "Cookie", True, "getDomain", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["jakarta.ws.rs.core", "Cookie", True, "getName", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["jakarta.ws.rs.core", "Cookie", True, "getPath", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["jakarta.ws.rs.core", "Cookie", True, "getValue", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["jakarta.ws.rs.core", "Cookie", True, "getVersion", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["jakarta.ws.rs.core", "Cookie", True, "toString", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["jakarta.ws.rs.core", "Cookie", False, "valueOf", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["jakarta.ws.rs.core", "Form", False, "Form", "", "", "Argument[0..1]", "Argument[-1]", "taint", "manual"]
+      - ["jakarta.ws.rs.core", "Form", False, "Form", "", "", "Argument[0].MapKey", "Argument[-1]", "taint", "manual"]
+      - ["jakarta.ws.rs.core", "Form", False, "Form", "", "", "Argument[0].MapValue.Element", "Argument[-1]", "taint", "manual"]
+      - ["jakarta.ws.rs.core", "Form", True, "asMap", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["jakarta.ws.rs.core", "Form", True, "param", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["jakarta.ws.rs.core", "Form", True, "param", "", "", "Argument[0..1]", "Argument[-1]", "taint", "manual"]
+      - ["jakarta.ws.rs.core", "GenericEntity", False, "GenericEntity", "", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["jakarta.ws.rs.core", "GenericEntity", True, "getEntity", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["jakarta.ws.rs.core", "HttpHeaders", True, "getAcceptableLanguages", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["jakarta.ws.rs.core", "HttpHeaders", True, "getAcceptableMediaTypes", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["jakarta.ws.rs.core", "HttpHeaders", True, "getCookies", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["jakarta.ws.rs.core", "HttpHeaders", True, "getHeaderString", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["jakarta.ws.rs.core", "HttpHeaders", True, "getLanguage", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["jakarta.ws.rs.core", "HttpHeaders", True, "getMediaType", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["jakarta.ws.rs.core", "HttpHeaders", True, "getRequestHeader", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["jakarta.ws.rs.core", "HttpHeaders", True, "getRequestHeaders", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["jakarta.ws.rs.core", "MediaType", False, "MediaType", "", "", "Argument[0..2]", "Argument[-1]", "taint", "manual"]
+      - ["jakarta.ws.rs.core", "MediaType", True, "getParameters", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["jakarta.ws.rs.core", "MediaType", True, "getSubtype", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["jakarta.ws.rs.core", "MediaType", True, "getType", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["jakarta.ws.rs.core", "MediaType", False, "valueOf", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["jakarta.ws.rs.core", "MediaType", True, "withCharset", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["jakarta.ws.rs.core", "MultivaluedHashMap", False, "MultivaluedHashMap", "(Map)", "", "Argument[0].MapKey", "Argument[-1].MapKey", "value", "manual"]
+      - ["jakarta.ws.rs.core", "MultivaluedHashMap", False, "MultivaluedHashMap", "(Map)", "", "Argument[0].MapValue", "Argument[-1].MapValue.Element", "value", "manual"]
+      - ["jakarta.ws.rs.core", "MultivaluedHashMap", False, "MultivaluedHashMap", "(MultivaluedMap)", "", "Argument[0].MapKey", "Argument[-1].MapKey", "value", "manual"]
+      - ["jakarta.ws.rs.core", "MultivaluedHashMap", False, "MultivaluedHashMap", "(MultivaluedMap)", "", "Argument[0].MapValue", "Argument[-1].MapValue", "value", "manual"]
+      - ["jakarta.ws.rs.core", "MultivaluedMap", True, "add", "", "", "Argument[0]", "Argument[-1].MapKey", "value", "manual"]
+      - ["jakarta.ws.rs.core", "MultivaluedMap", True, "add", "", "", "Argument[1]", "Argument[-1].MapValue.Element", "value", "manual"]
+      - ["jakarta.ws.rs.core", "MultivaluedMap", True, "addAll", "", "", "Argument[0]", "Argument[-1].MapKey", "value", "manual"]
+      - ["jakarta.ws.rs.core", "MultivaluedMap", True, "addAll", "(Object,List)", "", "Argument[1].Element", "Argument[-1].MapValue.Element", "value", "manual"]
+      - ["jakarta.ws.rs.core", "MultivaluedMap", True, "addAll", "(Object,Object[])", "", "Argument[1].ArrayElement", "Argument[-1].MapValue.Element", "value", "manual"]
+      - ["jakarta.ws.rs.core", "MultivaluedMap", True, "addFirst", "", "", "Argument[0]", "Argument[-1].MapKey", "value", "manual"]
+      - ["jakarta.ws.rs.core", "MultivaluedMap", True, "addFirst", "", "", "Argument[1]", "Argument[-1].MapValue.Element", "value", "manual"]
+      - ["jakarta.ws.rs.core", "MultivaluedMap", True, "getFirst", "", "", "Argument[-1].MapValue.Element", "ReturnValue", "value", "manual"]
+      - ["jakarta.ws.rs.core", "MultivaluedMap", True, "putSingle", "", "", "Argument[0]", "Argument[-1].MapKey", "value", "manual"]
+      - ["jakarta.ws.rs.core", "MultivaluedMap", True, "putSingle", "", "", "Argument[1]", "Argument[-1].MapValue.Element", "value", "manual"]
+      - ["jakarta.ws.rs.core", "NewCookie", False, "NewCookie", "", "", "Argument[0..9]", "Argument[-1]", "taint", "manual"]
+      - ["jakarta.ws.rs.core", "NewCookie", True, "getComment", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["jakarta.ws.rs.core", "NewCookie", True, "getExpiry", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["jakarta.ws.rs.core", "NewCookie", True, "getMaxAge", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["jakarta.ws.rs.core", "NewCookie", True, "toCookie", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["jakarta.ws.rs.core", "NewCookie", False, "valueOf", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["jakarta.ws.rs.core", "PathSegment", True, "getMatrixParameters", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["jakarta.ws.rs.core", "PathSegment", True, "getPath", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["jakarta.ws.rs.core", "Response", False, "accepted", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["jakarta.ws.rs.core", "Response", False, "fromResponse", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["jakarta.ws.rs.core", "Response", False, "ok", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["jakarta.ws.rs.core", "Response$ResponseBuilder", True, "allow", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["jakarta.ws.rs.core", "Response$ResponseBuilder", True, "build", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["jakarta.ws.rs.core", "Response$ResponseBuilder", True, "cacheControl", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["jakarta.ws.rs.core", "Response$ResponseBuilder", True, "clone", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["jakarta.ws.rs.core", "Response$ResponseBuilder", True, "contentLocation", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["jakarta.ws.rs.core", "Response$ResponseBuilder", True, "cookie", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["jakarta.ws.rs.core", "Response$ResponseBuilder", True, "encoding", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["jakarta.ws.rs.core", "Response$ResponseBuilder", True, "entity", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["jakarta.ws.rs.core", "Response$ResponseBuilder", True, "entity", "", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["jakarta.ws.rs.core", "Response$ResponseBuilder", True, "expires", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["jakarta.ws.rs.core", "Response$ResponseBuilder", True, "header", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["jakarta.ws.rs.core", "Response$ResponseBuilder", True, "language", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["jakarta.ws.rs.core", "Response$ResponseBuilder", True, "lastModified", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["jakarta.ws.rs.core", "Response$ResponseBuilder", True, "link", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["jakarta.ws.rs.core", "Response$ResponseBuilder", True, "links", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["jakarta.ws.rs.core", "Response$ResponseBuilder", True, "location", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["jakarta.ws.rs.core", "Response$ResponseBuilder", True, "replaceAll", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["jakarta.ws.rs.core", "Response$ResponseBuilder", True, "status", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["jakarta.ws.rs.core", "Response$ResponseBuilder", True, "tag", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["jakarta.ws.rs.core", "Response$ResponseBuilder", True, "type", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["jakarta.ws.rs.core", "Response$ResponseBuilder", True, "variant", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["jakarta.ws.rs.core", "Response$ResponseBuilder", True, "variants", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["jakarta.ws.rs.core", "UriBuilder", True, "build", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["jakarta.ws.rs.core", "UriBuilder", True, "build", "", "", "Argument[0].ArrayElement", "ReturnValue", "taint", "manual"]
+      - ["jakarta.ws.rs.core", "UriBuilder", True, "buildFromEncoded", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["jakarta.ws.rs.core", "UriBuilder", True, "buildFromEncoded", "", "", "Argument[0].ArrayElement", "ReturnValue", "taint", "manual"]
+      - ["jakarta.ws.rs.core", "UriBuilder", True, "buildFromEncodedMap", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["jakarta.ws.rs.core", "UriBuilder", True, "buildFromEncodedMap", "", "", "Argument[0].MapKey", "ReturnValue", "taint", "manual"]
+      - ["jakarta.ws.rs.core", "UriBuilder", True, "buildFromEncodedMap", "", "", "Argument[0].MapValue", "ReturnValue", "taint", "manual"]
+      - ["jakarta.ws.rs.core", "UriBuilder", True, "buildFromMap", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["jakarta.ws.rs.core", "UriBuilder", True, "buildFromMap", "", "", "Argument[0].MapKey", "ReturnValue", "taint", "manual"]
+      - ["jakarta.ws.rs.core", "UriBuilder", True, "buildFromMap", "", "", "Argument[0].MapValue", "ReturnValue", "taint", "manual"]
+      - ["jakarta.ws.rs.core", "UriBuilder", True, "clone", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["jakarta.ws.rs.core", "UriBuilder", True, "fragment", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["jakarta.ws.rs.core", "UriBuilder", True, "fragment", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["jakarta.ws.rs.core", "UriBuilder", False, "fromLink", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["jakarta.ws.rs.core", "UriBuilder", False, "fromPath", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["jakarta.ws.rs.core", "UriBuilder", False, "fromUri", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["jakarta.ws.rs.core", "UriBuilder", True, "host", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["jakarta.ws.rs.core", "UriBuilder", True, "host", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["jakarta.ws.rs.core", "UriBuilder", True, "matrixParam", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["jakarta.ws.rs.core", "UriBuilder", True, "matrixParam", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["jakarta.ws.rs.core", "UriBuilder", True, "matrixParam", "", "", "Argument[1].ArrayElement", "ReturnValue", "taint", "manual"]
+      - ["jakarta.ws.rs.core", "UriBuilder", True, "path", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["jakarta.ws.rs.core", "UriBuilder", True, "path", "", "", "Argument[0..1]", "ReturnValue", "taint", "manual"]
+      - ["jakarta.ws.rs.core", "UriBuilder", True, "queryParam", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["jakarta.ws.rs.core", "UriBuilder", True, "queryParam", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["jakarta.ws.rs.core", "UriBuilder", True, "queryParam", "", "", "Argument[1].ArrayElement", "ReturnValue", "taint", "manual"]
+      - ["jakarta.ws.rs.core", "UriBuilder", True, "replaceMatrix", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["jakarta.ws.rs.core", "UriBuilder", True, "replaceMatrix", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["jakarta.ws.rs.core", "UriBuilder", True, "replaceMatrixParam", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["jakarta.ws.rs.core", "UriBuilder", True, "replaceMatrixParam", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["jakarta.ws.rs.core", "UriBuilder", True, "replaceMatrixParam", "", "", "Argument[1].ArrayElement", "ReturnValue", "taint", "manual"]
+      - ["jakarta.ws.rs.core", "UriBuilder", True, "replacePath", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["jakarta.ws.rs.core", "UriBuilder", True, "replacePath", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["jakarta.ws.rs.core", "UriBuilder", True, "replaceQuery", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["jakarta.ws.rs.core", "UriBuilder", True, "replaceQuery", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["jakarta.ws.rs.core", "UriBuilder", True, "replaceQueryParam", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["jakarta.ws.rs.core", "UriBuilder", True, "replaceQueryParam", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["jakarta.ws.rs.core", "UriBuilder", True, "replaceQueryParam", "", "", "Argument[1].ArrayElement", "ReturnValue", "taint", "manual"]
+      - ["jakarta.ws.rs.core", "UriBuilder", True, "resolveTemplate", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["jakarta.ws.rs.core", "UriBuilder", True, "resolveTemplate", "", "", "Argument[0..2]", "ReturnValue", "taint", "manual"]
+      - ["jakarta.ws.rs.core", "UriBuilder", True, "resolveTemplateFromEncoded", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["jakarta.ws.rs.core", "UriBuilder", True, "resolveTemplateFromEncoded", "", "", "Argument[0..1]", "ReturnValue", "taint", "manual"]
+      - ["jakarta.ws.rs.core", "UriBuilder", True, "resolveTemplates", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["jakarta.ws.rs.core", "UriBuilder", True, "resolveTemplates", "", "", "Argument[0].MapKey", "ReturnValue", "taint", "manual"]
+      - ["jakarta.ws.rs.core", "UriBuilder", True, "resolveTemplates", "", "", "Argument[0].MapValue", "ReturnValue", "taint", "manual"]
+      - ["jakarta.ws.rs.core", "UriBuilder", True, "resolveTemplatesFromEncoded", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["jakarta.ws.rs.core", "UriBuilder", True, "resolveTemplatesFromEncoded", "", "", "Argument[0].MapKey", "ReturnValue", "taint", "manual"]
+      - ["jakarta.ws.rs.core", "UriBuilder", True, "resolveTemplatesFromEncoded", "", "", "Argument[0].MapValue", "ReturnValue", "taint", "manual"]
+      - ["jakarta.ws.rs.core", "UriBuilder", True, "scheme", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["jakarta.ws.rs.core", "UriBuilder", True, "scheme", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["jakarta.ws.rs.core", "UriBuilder", True, "schemeSpecificPart", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["jakarta.ws.rs.core", "UriBuilder", True, "schemeSpecificPart", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["jakarta.ws.rs.core", "UriBuilder", True, "segment", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["jakarta.ws.rs.core", "UriBuilder", True, "segment", "", "", "Argument[0].ArrayElement", "ReturnValue", "taint", "manual"]
+      - ["jakarta.ws.rs.core", "UriBuilder", True, "toTemplate", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["jakarta.ws.rs.core", "UriBuilder", True, "uri", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["jakarta.ws.rs.core", "UriBuilder", True, "uri", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["jakarta.ws.rs.core", "UriBuilder", True, "userInfo", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["jakarta.ws.rs.core", "UriBuilder", True, "userInfo", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["jakarta.ws.rs.core", "UriInfo", True, "getAbsolutePath", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["jakarta.ws.rs.core", "UriInfo", True, "getAbsolutePathBuilder", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["jakarta.ws.rs.core", "UriInfo", True, "getPath", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["jakarta.ws.rs.core", "UriInfo", True, "getPathParameters", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["jakarta.ws.rs.core", "UriInfo", True, "getPathSegments", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["jakarta.ws.rs.core", "UriInfo", True, "getQueryParameters", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["jakarta.ws.rs.core", "UriInfo", True, "getRequestUri", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["jakarta.ws.rs.core", "UriInfo", True, "getRequestUriBuilder", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["jakarta.ws.rs.core", "UriInfo", True, "relativize", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["jakarta.ws.rs.core", "UriInfo", True, "resolve", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["jakarta.ws.rs.core", "UriInfo", True, "resolve", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
diff --git a/java/ql/lib/ext/java.beans.model.yml b/java/ql/lib/ext/java.beans.model.yml
new file mode 100644
index 00000000000..155d1348c35
--- /dev/null
+++ b/java/ql/lib/ext/java.beans.model.yml
@@ -0,0 +1,6 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSummaryModel
+    data:
+      - ["java.beans", "XMLDecoder", False, "XMLDecoder", "", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
diff --git a/java/ql/lib/ext/java.io.model.yml b/java/ql/lib/ext/java.io.model.yml
new file mode 100644
index 00000000000..33a4e04628d
--- /dev/null
+++ b/java/ql/lib/ext/java.io.model.yml
@@ -0,0 +1,86 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSinkModel
+    data:
+      - ["java.io", "FileOutputStream", False, "FileOutputStream", "", "", "Argument[0]", "create-file", "manual"]
+      - ["java.io", "FileOutputStream", False, "write", "", "", "Argument[0]", "write-file", "manual"]
+      - ["java.io", "FileWriter", False, "FileWriter", "", "", "Argument[0]", "create-file", "manual"]
+      - ["java.io", "PrintStream", False, "PrintStream", "(File)", "", "Argument[0]", "create-file", "manual"]
+      - ["java.io", "PrintStream", False, "PrintStream", "(File,Charset)", "", "Argument[0]", "create-file", "manual"]
+      - ["java.io", "PrintStream", False, "PrintStream", "(File,String)", "", "Argument[0]", "create-file", "manual"]
+      - ["java.io", "PrintStream", False, "PrintStream", "(String)", "", "Argument[0]", "create-file", "manual"]
+      - ["java.io", "PrintStream", False, "PrintStream", "(String,Charset)", "", "Argument[0]", "create-file", "manual"]
+      - ["java.io", "PrintStream", False, "PrintStream", "(String,String)", "", "Argument[0]", "create-file", "manual"]
+      - ["java.io", "PrintStream", True, "append", "", "", "Argument[0]", "write-file", "manual"]
+      - ["java.io", "PrintStream", True, "format", "(Locale,String,Object[])", "", "Argument[1..2]", "write-file", "manual"]
+      - ["java.io", "PrintStream", True, "format", "(String,Object[])", "", "Argument[0..1]", "write-file", "manual"]
+      - ["java.io", "PrintStream", True, "print", "", "", "Argument[0]", "write-file", "manual"]
+      - ["java.io", "PrintStream", True, "printf", "(Locale,String,Object[])", "", "Argument[1..2]", "write-file", "manual"]
+      - ["java.io", "PrintStream", True, "printf", "(String,Object[])", "", "Argument[0..1]", "write-file", "manual"]
+      - ["java.io", "PrintStream", True, "println", "", "", "Argument[0]", "write-file", "manual"]
+      - ["java.io", "PrintStream", True, "write", "", "", "Argument[0]", "write-file", "manual"]
+      - ["java.io", "PrintStream", True, "writeBytes", "", "", "Argument[0]", "write-file", "manual"]
+      - ["java.io", "PrintWriter", False, "PrintWriter", "(File)", "", "Argument[0]", "create-file", "manual"]
+      - ["java.io", "PrintWriter", False, "PrintWriter", "(File,Charset)", "", "Argument[0]", "create-file", "manual"]
+      - ["java.io", "PrintWriter", False, "PrintWriter", "(File,String)", "", "Argument[0]", "create-file", "manual"]
+      - ["java.io", "PrintWriter", False, "PrintWriter", "(String)", "", "Argument[0]", "create-file", "manual"]
+      - ["java.io", "PrintWriter", False, "PrintWriter", "(String,Charset)", "", "Argument[0]", "create-file", "manual"]
+      - ["java.io", "PrintWriter", False, "PrintWriter", "(String,String)", "", "Argument[0]", "create-file", "manual"]
+      - ["java.io", "PrintWriter", False, "format", "(Locale,String,Object[])", "", "Argument[1..2]", "write-file", "manual"]
+      - ["java.io", "PrintWriter", False, "format", "(String,Object[])", "", "Argument[0..1]", "write-file", "manual"]
+      - ["java.io", "PrintWriter", False, "print", "", "", "Argument[0]", "write-file", "manual"]
+      - ["java.io", "PrintWriter", False, "printf", "(Locale,String,Object[])", "", "Argument[1..2]", "write-file", "manual"]
+      - ["java.io", "PrintWriter", False, "printf", "(String,Object[])", "", "Argument[0..1]", "write-file", "manual"]
+      - ["java.io", "PrintWriter", False, "println", "", "", "Argument[0]", "write-file", "manual"]
+      - ["java.io", "RandomAccessFile", False, "RandomAccessFile", "", "", "Argument[0]", "create-file", "manual"]
+      - ["java.io", "RandomAccessFile", False, "write", "", "", "Argument[0]", "write-file", "manual"]
+      - ["java.io", "RandomAccessFile", False, "writeBytes", "", "", "Argument[0]", "write-file", "manual"]
+      - ["java.io", "RandomAccessFile", False, "writeChars", "", "", "Argument[0]", "write-file", "manual"]
+      - ["java.io", "RandomAccessFile", False, "writeUTF", "", "", "Argument[0]", "write-file", "manual"]
+      - ["java.io", "Writer", True, "append", "", "", "Argument[0]", "write-file", "manual"]
+      - ["java.io", "Writer", True, "write", "", "", "Argument[0]", "write-file", "manual"]
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSummaryModel
+    data:
+      - ["java.io", "BufferedInputStream", False, "BufferedInputStream", "", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["java.io", "BufferedReader", False, "BufferedReader", "", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["java.io", "BufferedReader", True, "readLine", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["java.io", "ByteArrayInputStream", False, "ByteArrayInputStream", "", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["java.io", "ByteArrayOutputStream", False, "toByteArray", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["java.io", "ByteArrayOutputStream", False, "toString", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["java.io", "ByteArrayOutputStream", False, "writeTo", "", "", "Argument[-1]", "Argument[0]", "taint", "manual"]
+      - ["java.io", "CharArrayReader", False, "CharArrayReader", "", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["java.io", "CharArrayWriter", True, "toCharArray", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["java.io", "DataInput", True, "readFully", "", "", "Argument[-1]", "Argument[0]", "taint", "manual"]
+      - ["java.io", "DataInput", True, "readLine", "()", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["java.io", "DataInput", True, "readUTF", "()", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["java.io", "DataInputStream", False, "DataInputStream", "", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["java.io", "File", False, "File", "", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["java.io", "File", False, "File", "", "", "Argument[1]", "Argument[-1]", "taint", "manual"]
+      - ["java.io", "File", True, "getAbsoluteFile", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["java.io", "File", True, "getAbsolutePath", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["java.io", "File", True, "getCanonicalFile", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["java.io", "File", True, "getCanonicalPath", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["java.io", "File", True, "toPath", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["java.io", "File", True, "toString", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["java.io", "File", True, "toURI", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["java.io", "FilterOutputStream", True, "FilterOutputStream", "(OutputStream)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["java.io", "InputStream", True, "read", "(byte[])", "", "Argument[-1]", "Argument[0]", "taint", "manual"]
+      - ["java.io", "InputStream", True, "read", "(byte[],int,int)", "", "Argument[-1]", "Argument[0]", "taint", "manual"]
+      - ["java.io", "InputStream", True, "readAllBytes", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["java.io", "InputStream", True, "readNBytes", "(byte[],int,int)", "", "Argument[-1]", "Argument[0]", "taint", "manual"]
+      - ["java.io", "InputStream", True, "readNBytes", "(int)", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["java.io", "InputStream", True, "transferTo", "(OutputStream)", "", "Argument[-1]", "Argument[0]", "taint", "manual"]
+      - ["java.io", "InputStreamReader", False, "InputStreamReader", "", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["java.io", "ObjectInput", True, "read", "", "", "Argument[-1]", "Argument[0]", "taint", "manual"]
+      - ["java.io", "ObjectInputStream", False, "ObjectInputStream", "", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["java.io", "OutputStream", True, "write", "(byte[])", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["java.io", "OutputStream", True, "write", "(byte[],int,int)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["java.io", "OutputStream", True, "write", "(int)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["java.io", "Reader", True, "read", "", "", "Argument[-1]", "Argument[0]", "taint", "manual"]
+      - ["java.io", "Reader", True, "read", "()", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["java.io", "StringReader", False, "StringReader", "", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["java.io", "Writer", True, "toString", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["java.io", "Writer", True, "write", "", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
diff --git a/java/ql/lib/ext/java.lang.model.yml b/java/ql/lib/ext/java.lang.model.yml
new file mode 100644
index 00000000000..679a99b3e3d
--- /dev/null
+++ b/java/ql/lib/ext/java.lang.model.yml
@@ -0,0 +1,88 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSinkModel
+    data:
+      - ["java.lang", "String", False, "matches", "(String)", "", "Argument[0]", "regex-use[f-1]", "manual"]
+      - ["java.lang", "String", False, "replaceAll", "(String,String)", "", "Argument[0]", "regex-use[-1]", "manual"]
+      - ["java.lang", "String", False, "replaceFirst", "(String,String)", "", "Argument[0]", "regex-use[-1]", "manual"]
+      - ["java.lang", "String", False, "split", "(String)", "", "Argument[0]", "regex-use[-1]", "manual"]
+      - ["java.lang", "String", False, "split", "(String,int)", "", "Argument[0]", "regex-use[-1]", "manual"]
+      - ["java.lang", "System$Logger", True, "log", "(Level,Object)", "", "Argument[1]", "logging", "manual"]
+      - ["java.lang", "System$Logger", True, "log", "(Level,ResourceBundle,String,Object[])", "", "Argument[2..3]", "logging", "manual"]
+      - ["java.lang", "System$Logger", True, "log", "(Level,ResourceBundle,String,Throwable)", "", "Argument[2]", "logging", "manual"]
+      - ["java.lang", "System$Logger", True, "log", "(Level,String)", "", "Argument[1]", "logging", "manual"]
+      - ["java.lang", "System$Logger", True, "log", "(Level,String,Object[])", "", "Argument[1..2]", "logging", "manual"]
+      - ["java.lang", "System$Logger", True, "log", "(Level,String,Supplier)", "", "Argument[1..2]", "logging", "manual"]
+      - ["java.lang", "System$Logger", True, "log", "(Level,String,Supplier,Throwable)", "", "Argument[1..2]", "logging", "manual"]
+      - ["java.lang", "System$Logger", True, "log", "(Level,String,Throwable)", "", "Argument[1]", "logging", "manual"]
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSummaryModel
+    data:
+      - ["java.lang", "AbstractStringBuilder", True, "AbstractStringBuilder", "(String)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["java.lang", "AbstractStringBuilder", True, "append", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["java.lang", "AbstractStringBuilder", True, "append", "", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["java.lang", "AbstractStringBuilder", True, "getChars", "", "", "Argument[-1]", "Argument[2]", "taint", "manual"]
+      - ["java.lang", "AbstractStringBuilder", True, "insert", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["java.lang", "AbstractStringBuilder", True, "insert", "", "", "Argument[1]", "Argument[-1]", "taint", "manual"]
+      - ["java.lang", "AbstractStringBuilder", True, "replace", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["java.lang", "AbstractStringBuilder", True, "replace", "", "", "Argument[2]", "Argument[-1]", "taint", "manual"]
+      - ["java.lang", "AbstractStringBuilder", True, "reverse", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["java.lang", "AbstractStringBuilder", True, "subSequence", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["java.lang", "AbstractStringBuilder", True, "substring", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["java.lang", "AbstractStringBuilder", True, "toString", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["java.lang", "Appendable", True, "append", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["java.lang", "Appendable", True, "append", "", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["java.lang", "CharSequence", True, "charAt", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["java.lang", "CharSequence", True, "subSequence", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["java.lang", "CharSequence", True, "toString", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["java.lang", "Iterable", True, "forEach", "(Consumer)", "", "Argument[-1].Element", "Argument[0].Parameter[0]", "value", "manual"]
+      - ["java.lang", "Iterable", True, "iterator", "()", "", "Argument[-1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["java.lang", "Iterable", True, "spliterator", "()", "", "Argument[-1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["java.lang", "Object", True, "clone", "", "", "Argument[-1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["java.lang", "Object", True, "clone", "", "", "Argument[-1].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["java.lang", "Object", True, "clone", "", "", "Argument[-1].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["java.lang", "String", False, "String", "", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["java.lang", "String", False, "concat", "(String)", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["java.lang", "String", False, "concat", "(String)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["java.lang", "String", False, "copyValueOf", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["java.lang", "String", False, "endsWith", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["java.lang", "String", False, "format", "(Locale,String,Object[])", "", "Argument[1]", "ReturnValue", "taint", "manual"]
+      - ["java.lang", "String", False, "format", "(Locale,String,Object[])", "", "Argument[2].ArrayElement", "ReturnValue", "taint", "manual"]
+      - ["java.lang", "String", False, "format", "(String,Object[])", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["java.lang", "String", False, "format", "(String,Object[])", "", "Argument[1].ArrayElement", "ReturnValue", "taint", "manual"]
+      - ["java.lang", "String", False, "formatted", "(Object[])", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["java.lang", "String", False, "formatted", "(Object[])", "", "Argument[0].ArrayElement", "ReturnValue", "taint", "manual"]
+      - ["java.lang", "String", False, "getBytes", "", "", "Argument[-1]", "Argument[2]", "taint", "manual"]
+      - ["java.lang", "String", False, "getBytes", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["java.lang", "String", False, "getChars", "", "", "Argument[-1]", "Argument[2]", "taint", "manual"]
+      - ["java.lang", "String", False, "indent", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["java.lang", "String", False, "intern", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["java.lang", "String", False, "join", "", "", "Argument[0..1]", "ReturnValue", "taint", "manual"]
+      - ["java.lang", "String", False, "repeat", "(int)", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["java.lang", "String", False, "replace", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["java.lang", "String", False, "replace", "", "", "Argument[1]", "ReturnValue", "taint", "manual"]
+      - ["java.lang", "String", False, "replaceAll", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["java.lang", "String", False, "replaceAll", "", "", "Argument[1]", "ReturnValue", "taint", "manual"]
+      - ["java.lang", "String", False, "replaceFirst", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["java.lang", "String", False, "replaceFirst", "", "", "Argument[1]", "ReturnValue", "taint", "manual"]
+      - ["java.lang", "String", False, "split", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["java.lang", "String", False, "strip", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["java.lang", "String", False, "stripIndent", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["java.lang", "String", False, "stripLeading", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["java.lang", "String", False, "stripTrailing", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["java.lang", "String", False, "substring", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["java.lang", "String", False, "toCharArray", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["java.lang", "String", False, "toLowerCase", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["java.lang", "String", False, "toString", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["java.lang", "String", False, "toUpperCase", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["java.lang", "String", False, "translateEscapes", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["java.lang", "String", False, "trim", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["java.lang", "String", False, "valueOf", "(char)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["java.lang", "String", False, "valueOf", "(char[])", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["java.lang", "String", False, "valueOf", "(char[],int,int)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["java.lang", "StringBuffer", True, "StringBuffer", "(CharSequence)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["java.lang", "StringBuffer", True, "StringBuffer", "(String)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["java.lang", "StringBuilder", True, "StringBuilder", "", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["java.lang", "System", False, "arraycopy", "", "", "Argument[0]", "Argument[2]", "taint", "manual"]
diff --git a/java/ql/lib/ext/java.net.http.model.yml b/java/ql/lib/ext/java.net.http.model.yml
new file mode 100644
index 00000000000..fa1222d2e28
--- /dev/null
+++ b/java/ql/lib/ext/java.net.http.model.yml
@@ -0,0 +1,12 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSourceModel
+    data:
+      - ["java.net.http", "WebSocket$Listener", True, "onText", "(WebSocket,CharSequence,boolean)", "", "Parameter[1]", "remote", "manual"]
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSinkModel
+    data:
+      - ["java.net.http", "HttpRequest", False, "newBuilder", "", "", "Argument[0]", "open-url", "manual"]
+      - ["java.net.http", "HttpRequest$Builder", False, "uri", "", "", "Argument[0]", "open-url", "manual"]
diff --git a/java/ql/lib/ext/java.net.model.yml b/java/ql/lib/ext/java.net.model.yml
new file mode 100644
index 00000000000..7042a3e280f
--- /dev/null
+++ b/java/ql/lib/ext/java.net.model.yml
@@ -0,0 +1,30 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSourceModel
+    data:
+      - ["java.net", "Socket", False, "getInputStream", "()", "", "ReturnValue", "remote", "manual"]
+      - ["java.net", "URLConnection", False, "getInputStream", "()", "", "ReturnValue", "remote", "manual"]
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSinkModel
+    data:
+      - ["java.net", "URL", False, "openConnection", "", "", "Argument[-1]", "open-url", "manual"]
+      - ["java.net", "URL", False, "openStream", "", "", "Argument[-1]", "open-url", "manual"]
+      - ["java.net", "URLClassLoader", False, "URLClassLoader", "(String,URL[],ClassLoader)", "", "Argument[1]", "open-url", "manual"]
+      - ["java.net", "URLClassLoader", False, "URLClassLoader", "(String,URL[],ClassLoader,URLStreamHandlerFactory)", "", "Argument[1]", "open-url", "manual"]
+      - ["java.net", "URLClassLoader", False, "URLClassLoader", "(URL[])", "", "Argument[0]", "open-url", "manual"]
+      - ["java.net", "URLClassLoader", False, "URLClassLoader", "(URL[],ClassLoader)", "", "Argument[0]", "open-url", "manual"]
+      - ["java.net", "URLClassLoader", False, "URLClassLoader", "(URL[],ClassLoader,URLStreamHandlerFactory)", "", "Argument[0]", "open-url", "manual"]
+      - ["java.net", "URLClassLoader", False, "newInstance", "", "", "Argument[0]", "open-url", "manual"]
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSummaryModel
+    data:
+      - ["java.net", "URI", False, "URI", "(String)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["java.net", "URI", False, "create", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["java.net", "URI", False, "toAsciiString", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["java.net", "URI", False, "toString", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["java.net", "URI", False, "toURL", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["java.net", "URL", False, "URL", "(String)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["java.net", "URLDecoder", False, "decode", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
diff --git a/java/ql/lib/ext/java.nio.channels.model.yml b/java/ql/lib/ext/java.nio.channels.model.yml
new file mode 100644
index 00000000000..0e7081567a6
--- /dev/null
+++ b/java/ql/lib/ext/java.nio.channels.model.yml
@@ -0,0 +1,7 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSummaryModel
+    data:
+      - ["java.nio.channels", "Channels", False, "newChannel", "(InputStream)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["java.nio.channels", "ReadableByteChannel", True, "read", "(ByteBuffer)", "", "Argument[-1]", "Argument[0]", "taint", "manual"]
diff --git a/java/ql/lib/ext/java.nio.file.model.yml b/java/ql/lib/ext/java.nio.file.model.yml
new file mode 100644
index 00000000000..a593f0e7bf7
--- /dev/null
+++ b/java/ql/lib/ext/java.nio.file.model.yml
@@ -0,0 +1,33 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSinkModel
+    data:
+      - ["java.nio.file", "Files", False, "copy", "", "", "Argument[1]", "create-file", "manual"]
+      - ["java.nio.file", "Files", False, "createDirectories", "", "", "Argument[0]", "create-file", "manual"]
+      - ["java.nio.file", "Files", False, "createDirectory", "", "", "Argument[0]", "create-file", "manual"]
+      - ["java.nio.file", "Files", False, "createFile", "", "", "Argument[0]", "create-file", "manual"]
+      - ["java.nio.file", "Files", False, "createLink", "", "", "Argument[0]", "create-file", "manual"]
+      - ["java.nio.file", "Files", False, "createSymbolicLink", "", "", "Argument[0]", "create-file", "manual"]
+      - ["java.nio.file", "Files", False, "createTempDirectory", "", "", "Argument[0]", "create-file", "manual"]
+      - ["java.nio.file", "Files", False, "createTempFile", "(Path,String,String,FileAttribute[])", "", "Argument[0]", "create-file", "manual"]
+      - ["java.nio.file", "Files", False, "move", "", "", "Argument[1]", "create-file", "manual"]
+      - ["java.nio.file", "Files", False, "newBufferedWriter", "", "", "Argument[0]", "create-file", "manual"]
+      - ["java.nio.file", "Files", False, "newOutputStream", "", "", "Argument[0]", "create-file", "manual"]
+      - ["java.nio.file", "Files", False, "write", "", "", "Argument[0]", "create-file", "manual"]
+      - ["java.nio.file", "Files", False, "write", "", "", "Argument[1]", "write-file", "manual"]
+      - ["java.nio.file", "Files", False, "writeString", "", "", "Argument[0]", "create-file", "manual"]
+      - ["java.nio.file", "Files", False, "writeString", "", "", "Argument[1]", "write-file", "manual"]
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSummaryModel
+    data:
+      - ["java.nio.file", "FileSystem", True, "getPath", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["java.nio.file", "FileSystem", True, "getRootDirectories", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["java.nio.file", "Path", True, "normalize", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["java.nio.file", "Path", True, "resolve", "", "", "Argument[-1..0]", "ReturnValue", "taint", "manual"]
+      - ["java.nio.file", "Path", True, "toAbsolutePath", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["java.nio.file", "Path", False, "toFile", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["java.nio.file", "Path", True, "toString", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["java.nio.file", "Path", True, "toUri", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["java.nio.file", "Paths", True, "get", "", "", "Argument[0..1]", "ReturnValue", "taint", "manual"]
diff --git a/java/ql/lib/ext/java.nio.model.yml b/java/ql/lib/ext/java.nio.model.yml
new file mode 100644
index 00000000000..7864355b4c5
--- /dev/null
+++ b/java/ql/lib/ext/java.nio.model.yml
@@ -0,0 +1,8 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSummaryModel
+    data:
+      - ["java.nio", "ByteBuffer", False, "array", "()", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["java.nio", "ByteBuffer", False, "get", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["java.nio", "ByteBuffer", False, "wrap", "(byte[])", "", "Argument[0]", "ReturnValue", "taint", "manual"]
diff --git a/java/ql/lib/ext/java.sql.model.yml b/java/ql/lib/ext/java.sql.model.yml
new file mode 100644
index 00000000000..944981e2094
--- /dev/null
+++ b/java/ql/lib/ext/java.sql.model.yml
@@ -0,0 +1,16 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSinkModel
+    data:
+      - ["java.sql", "Connection", True, "prepareCall", "", "", "Argument[0]", "sql", "manual"]
+      - ["java.sql", "Connection", True, "prepareStatement", "", "", "Argument[0]", "sql", "manual"]
+      - ["java.sql", "Driver", False, "connect", "(String,Properties)", "", "Argument[0]", "jdbc-url", "manual"]
+      - ["java.sql", "DriverManager", False, "getConnection", "(String)", "", "Argument[0]", "jdbc-url", "manual"]
+      - ["java.sql", "DriverManager", False, "getConnection", "(String,Properties)", "", "Argument[0]", "jdbc-url", "manual"]
+      - ["java.sql", "DriverManager", False, "getConnection", "(String,String,String)", "", "Argument[0]", "jdbc-url", "manual"]
+      - ["java.sql", "Statement", True, "addBatch", "", "", "Argument[0]", "sql", "manual"]
+      - ["java.sql", "Statement", True, "execute", "", "", "Argument[0]", "sql", "manual"]
+      - ["java.sql", "Statement", True, "executeLargeUpdate", "", "", "Argument[0]", "sql", "manual"]
+      - ["java.sql", "Statement", True, "executeQuery", "", "", "Argument[0]", "sql", "manual"]
+      - ["java.sql", "Statement", True, "executeUpdate", "", "", "Argument[0]", "sql", "manual"]
diff --git a/java/ql/lib/ext/java.util.concurrent.model.yml b/java/ql/lib/ext/java.util.concurrent.model.yml
new file mode 100644
index 00000000000..ba34d7e8fea
--- /dev/null
+++ b/java/ql/lib/ext/java.util.concurrent.model.yml
@@ -0,0 +1,23 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSummaryModel
+    data:
+      - ["java.util.concurrent", "BlockingDeque", True, "offerFirst", "(Object,long,TimeUnit)", "", "Argument[0]", "Argument[-1].Element", "value", "manual"]
+      - ["java.util.concurrent", "BlockingDeque", True, "offerLast", "(Object,long,TimeUnit)", "", "Argument[0]", "Argument[-1].Element", "value", "manual"]
+      - ["java.util.concurrent", "BlockingDeque", True, "pollFirst", "(long,TimeUnit)", "", "Argument[-1].Element", "ReturnValue", "value", "manual"]
+      - ["java.util.concurrent", "BlockingDeque", True, "pollLast", "(long,TimeUnit)", "", "Argument[-1].Element", "ReturnValue", "value", "manual"]
+      - ["java.util.concurrent", "BlockingDeque", True, "putFirst", "(Object)", "", "Argument[0]", "Argument[-1].Element", "value", "manual"]
+      - ["java.util.concurrent", "BlockingDeque", True, "putLast", "(Object)", "", "Argument[0]", "Argument[-1].Element", "value", "manual"]
+      - ["java.util.concurrent", "BlockingDeque", True, "takeFirst", "()", "", "Argument[-1].Element", "ReturnValue", "value", "manual"]
+      - ["java.util.concurrent", "BlockingDeque", True, "takeLast", "()", "", "Argument[-1].Element", "ReturnValue", "value", "manual"]
+      - ["java.util.concurrent", "BlockingQueue", True, "drainTo", "(Collection)", "", "Argument[-1].Element", "Argument[0].Element", "value", "manual"]
+      - ["java.util.concurrent", "BlockingQueue", True, "drainTo", "(Collection,int)", "", "Argument[-1].Element", "Argument[0].Element", "value", "manual"]
+      - ["java.util.concurrent", "BlockingQueue", True, "offer", "(Object,long,TimeUnit)", "", "Argument[0]", "Argument[-1].Element", "value", "manual"]
+      - ["java.util.concurrent", "BlockingQueue", True, "poll", "(long,TimeUnit)", "", "Argument[-1].Element", "ReturnValue", "value", "manual"]
+      - ["java.util.concurrent", "BlockingQueue", True, "put", "(Object)", "", "Argument[0]", "Argument[-1].Element", "value", "manual"]
+      - ["java.util.concurrent", "BlockingQueue", True, "take", "()", "", "Argument[-1].Element", "ReturnValue", "value", "manual"]
+      - ["java.util.concurrent", "ConcurrentHashMap", True, "elements", "()", "", "Argument[-1].MapValue", "ReturnValue.Element", "value", "manual"]
+      - ["java.util.concurrent", "TransferQueue", True, "transfer", "(Object)", "", "Argument[0]", "Argument[-1].Element", "value", "manual"]
+      - ["java.util.concurrent", "TransferQueue", True, "tryTransfer", "(Object)", "", "Argument[0]", "Argument[-1].Element", "value", "manual"]
+      - ["java.util.concurrent", "TransferQueue", True, "tryTransfer", "(Object,long,TimeUnit)", "", "Argument[0]", "Argument[-1].Element", "value", "manual"]
diff --git a/java/ql/lib/ext/java.util.function.model.yml b/java/ql/lib/ext/java.util.function.model.yml
new file mode 100644
index 00000000000..b95a50d5119
--- /dev/null
+++ b/java/ql/lib/ext/java.util.function.model.yml
@@ -0,0 +1,6 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSinkModel
+    data:
+      - ["java.util.function", "Predicate", False, "test", "(Object)", "", "Argument[-1]", "regex-use[0]", "manual"]
diff --git a/java/ql/lib/ext/java.util.logging.model.yml b/java/ql/lib/ext/java.util.logging.model.yml
new file mode 100644
index 00000000000..6e90734ae07
--- /dev/null
+++ b/java/ql/lib/ext/java.util.logging.model.yml
@@ -0,0 +1,44 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSinkModel
+    data:
+      - ["java.util.logging", "Logger", True, "config", "", "", "Argument[0]", "logging", "manual"]
+      - ["java.util.logging", "Logger", True, "entering", "(String,String)", "", "Argument[0..1]", "logging", "manual"]
+      - ["java.util.logging", "Logger", True, "entering", "(String,String,Object)", "", "Argument[0..2]", "logging", "manual"]
+      - ["java.util.logging", "Logger", True, "entering", "(String,String,Object[])", "", "Argument[0..2]", "logging", "manual"]
+      - ["java.util.logging", "Logger", True, "exiting", "(String,String)", "", "Argument[0..1]", "logging", "manual"]
+      - ["java.util.logging", "Logger", True, "exiting", "(String,String,Object)", "", "Argument[0..2]", "logging", "manual"]
+      - ["java.util.logging", "Logger", True, "fine", "", "", "Argument[0]", "logging", "manual"]
+      - ["java.util.logging", "Logger", True, "finer", "", "", "Argument[0]", "logging", "manual"]
+      - ["java.util.logging", "Logger", True, "finest", "", "", "Argument[0]", "logging", "manual"]
+      - ["java.util.logging", "Logger", True, "info", "", "", "Argument[0]", "logging", "manual"]
+      - ["java.util.logging", "Logger", True, "log", "(Level,String)", "", "Argument[1]", "logging", "manual"]
+      - ["java.util.logging", "Logger", True, "log", "(Level,String,Object)", "", "Argument[1..2]", "logging", "manual"]
+      - ["java.util.logging", "Logger", True, "log", "(Level,String,Object[])", "", "Argument[1..2]", "logging", "manual"]
+      - ["java.util.logging", "Logger", True, "log", "(Level,String,Throwable)", "", "Argument[1]", "logging", "manual"]
+      - ["java.util.logging", "Logger", True, "log", "(Level,Supplier)", "", "Argument[1]", "logging", "manual"]
+      - ["java.util.logging", "Logger", True, "log", "(Level,Throwable,Supplier)", "", "Argument[2]", "logging", "manual"]
+      - ["java.util.logging", "Logger", True, "log", "(LogRecord)", "", "Argument[0]", "logging", "manual"]
+      - ["java.util.logging", "Logger", True, "logp", "(Level,String,String,String)", "", "Argument[1..3]", "logging", "manual"]
+      - ["java.util.logging", "Logger", True, "logp", "(Level,String,String,String,Object)", "", "Argument[1..4]", "logging", "manual"]
+      - ["java.util.logging", "Logger", True, "logp", "(Level,String,String,String,Object[])", "", "Argument[1..4]", "logging", "manual"]
+      - ["java.util.logging", "Logger", True, "logp", "(Level,String,String,String,Throwable)", "", "Argument[1..3]", "logging", "manual"]
+      - ["java.util.logging", "Logger", True, "logp", "(Level,String,String,Supplier)", "", "Argument[1..3]", "logging", "manual"]
+      - ["java.util.logging", "Logger", True, "logp", "(Level,String,String,Throwable,Supplier)", "", "Argument[1..2]", "logging", "manual"]
+      - ["java.util.logging", "Logger", True, "logp", "(Level,String,String,Throwable,Supplier)", "", "Argument[4]", "logging", "manual"]
+      - ["java.util.logging", "Logger", True, "logrb", "(Level,String,String,ResourceBundle,String,Object[])", "", "Argument[1..2]", "logging", "manual"]
+      - ["java.util.logging", "Logger", True, "logrb", "(Level,String,String,ResourceBundle,String,Object[])", "", "Argument[4..5]", "logging", "manual"]
+      - ["java.util.logging", "Logger", True, "logrb", "(Level,String,String,ResourceBundle,String,Throwable)", "", "Argument[1..2]", "logging", "manual"]
+      - ["java.util.logging", "Logger", True, "logrb", "(Level,String,String,ResourceBundle,String,Throwable)", "", "Argument[4]", "logging", "manual"]
+      - ["java.util.logging", "Logger", True, "logrb", "(Level,String,String,String,String)", "", "Argument[1..4]", "logging", "manual"]
+      - ["java.util.logging", "Logger", True, "logrb", "(Level,String,String,String,String,Object)", "", "Argument[1..5]", "logging", "manual"]
+      - ["java.util.logging", "Logger", True, "logrb", "(Level,String,String,String,String,Object[])", "", "Argument[1..5]", "logging", "manual"]
+      - ["java.util.logging", "Logger", True, "logrb", "(Level,String,String,String,String,Throwable)", "", "Argument[1..4]", "logging", "manual"]
+      - ["java.util.logging", "Logger", True, "severe", "", "", "Argument[0]", "logging", "manual"]
+      - ["java.util.logging", "Logger", True, "warning", "", "", "Argument[0]", "logging", "manual"]
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSummaryModel
+    data:
+      - ["java.util.logging", "LogRecord", False, "LogRecord", "", "", "Argument[1]", "Argument[-1]", "taint", "manual"]
diff --git a/java/ql/lib/ext/java.util.model.yml b/java/ql/lib/ext/java.util.model.yml
new file mode 100644
index 00000000000..787f0d355be
--- /dev/null
+++ b/java/ql/lib/ext/java.util.model.yml
@@ -0,0 +1,357 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSummaryModel
+    data:
+      - ["java.util", "AbstractMap$SimpleEntry", False, "SimpleEntry", "(Entry)", "", "Argument[0].MapKey", "Argument[-1].MapKey", "value", "manual"]
+      - ["java.util", "AbstractMap$SimpleEntry", False, "SimpleEntry", "(Entry)", "", "Argument[0].MapValue", "Argument[-1].MapValue", "value", "manual"]
+      - ["java.util", "AbstractMap$SimpleEntry", False, "SimpleEntry", "(Object,Object)", "", "Argument[0]", "Argument[-1].MapKey", "value", "manual"]
+      - ["java.util", "AbstractMap$SimpleEntry", False, "SimpleEntry", "(Object,Object)", "", "Argument[1]", "Argument[-1].MapValue", "value", "manual"]
+      - ["java.util", "AbstractMap$SimpleImmutableEntry", False, "SimpleImmutableEntry", "(Entry)", "", "Argument[0].MapKey", "Argument[-1].MapKey", "value", "manual"]
+      - ["java.util", "AbstractMap$SimpleImmutableEntry", False, "SimpleImmutableEntry", "(Entry)", "", "Argument[0].MapValue", "Argument[-1].MapValue", "value", "manual"]
+      - ["java.util", "AbstractMap$SimpleImmutableEntry", False, "SimpleImmutableEntry", "(Object,Object)", "", "Argument[0]", "Argument[-1].MapKey", "value", "manual"]
+      - ["java.util", "AbstractMap$SimpleImmutableEntry", False, "SimpleImmutableEntry", "(Object,Object)", "", "Argument[1]", "Argument[-1].MapValue", "value", "manual"]
+      - ["java.util", "ArrayDeque", False, "ArrayDeque", "(Collection)", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
+      - ["java.util", "ArrayList", False, "ArrayList", "(Collection)", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
+      - ["java.util", "Arrays", False, "asList", "", "", "Argument[0].ArrayElement", "ReturnValue.Element", "value", "manual"]
+      - ["java.util", "Arrays", False, "copyOf", "", "", "Argument[0].ArrayElement", "ReturnValue.ArrayElement", "value", "manual"]
+      - ["java.util", "Arrays", False, "copyOfRange", "", "", "Argument[0].ArrayElement", "ReturnValue.ArrayElement", "value", "manual"]
+      - ["java.util", "Arrays", False, "fill", "(Object[],Object)", "", "Argument[1]", "Argument[0].ArrayElement", "value", "manual"]
+      - ["java.util", "Arrays", False, "fill", "(Object[],int,int,Object)", "", "Argument[3]", "Argument[0].ArrayElement", "value", "manual"]
+      - ["java.util", "Arrays", False, "fill", "(boolean[],boolean)", "", "Argument[1]", "Argument[0].ArrayElement", "value", "manual"]
+      - ["java.util", "Arrays", False, "fill", "(boolean[],int,int,boolean)", "", "Argument[3]", "Argument[0].ArrayElement", "value", "manual"]
+      - ["java.util", "Arrays", False, "fill", "(byte[],byte)", "", "Argument[1]", "Argument[0].ArrayElement", "value", "manual"]
+      - ["java.util", "Arrays", False, "fill", "(byte[],int,int,byte)", "", "Argument[3]", "Argument[0].ArrayElement", "value", "manual"]
+      - ["java.util", "Arrays", False, "fill", "(char[],char)", "", "Argument[1]", "Argument[0].ArrayElement", "value", "manual"]
+      - ["java.util", "Arrays", False, "fill", "(char[],int,int,char)", "", "Argument[3]", "Argument[0].ArrayElement", "value", "manual"]
+      - ["java.util", "Arrays", False, "fill", "(double[],double)", "", "Argument[1]", "Argument[0].ArrayElement", "value", "manual"]
+      - ["java.util", "Arrays", False, "fill", "(double[],int,int,double)", "", "Argument[3]", "Argument[0].ArrayElement", "value", "manual"]
+      - ["java.util", "Arrays", False, "fill", "(float[],float)", "", "Argument[1]", "Argument[0].ArrayElement", "value", "manual"]
+      - ["java.util", "Arrays", False, "fill", "(float[],int,int,float)", "", "Argument[3]", "Argument[0].ArrayElement", "value", "manual"]
+      - ["java.util", "Arrays", False, "fill", "(int[],int)", "", "Argument[1]", "Argument[0].ArrayElement", "value", "manual"]
+      - ["java.util", "Arrays", False, "fill", "(int[],int,int,int)", "", "Argument[3]", "Argument[0].ArrayElement", "value", "manual"]
+      - ["java.util", "Arrays", False, "fill", "(long[],int,int,long)", "", "Argument[3]", "Argument[0].ArrayElement", "value", "manual"]
+      - ["java.util", "Arrays", False, "fill", "(long[],long)", "", "Argument[1]", "Argument[0].ArrayElement", "value", "manual"]
+      - ["java.util", "Arrays", False, "fill", "(short[],int,int,short)", "", "Argument[3]", "Argument[0].ArrayElement", "value", "manual"]
+      - ["java.util", "Arrays", False, "fill", "(short[],short)", "", "Argument[1]", "Argument[0].ArrayElement", "value", "manual"]
+      - ["java.util", "Arrays", False, "spliterator", "", "", "Argument[0].ArrayElement", "ReturnValue.Element", "value", "manual"]
+      - ["java.util", "Arrays", False, "stream", "", "", "Argument[0].ArrayElement", "ReturnValue.Element", "value", "manual"]
+      - ["java.util", "Base64$Decoder", False, "decode", "(ByteBuffer)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["java.util", "Base64$Decoder", False, "decode", "(String)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["java.util", "Base64$Decoder", False, "decode", "(byte[])", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["java.util", "Base64$Decoder", False, "wrap", "(InputStream)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["java.util", "Base64$Encoder", False, "encode", "(ByteBuffer)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["java.util", "Base64$Encoder", False, "encode", "(byte[])", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["java.util", "Base64$Encoder", False, "encodeToString", "(byte[])", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["java.util", "Base64$Encoder", False, "wrap", "(OutputStream)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["java.util", "Collection", True, "add", "", "", "Argument[0]", "Argument[-1].Element", "value", "manual"]
+      - ["java.util", "Collection", True, "addAll", "", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
+      - ["java.util", "Collection", True, "parallelStream", "()", "", "Argument[-1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["java.util", "Collection", True, "stream", "()", "", "Argument[-1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["java.util", "Collection", True, "toArray", "", "", "Argument[-1].Element", "Argument[0].ArrayElement", "value", "manual"]
+      - ["java.util", "Collection", True, "toArray", "", "", "Argument[-1].Element", "ReturnValue.ArrayElement", "value", "manual"]
+      - ["java.util", "Collections", False, "addAll", "(Collection,Object[])", "", "Argument[1].ArrayElement", "Argument[0].Element", "value", "manual"]
+      - ["java.util", "Collections", False, "checkedCollection", "(Collection,Class)", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["java.util", "Collections", False, "checkedList", "(List,Class)", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["java.util", "Collections", False, "checkedMap", "(Map,Class,Class)", "", "Argument[0].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["java.util", "Collections", False, "checkedMap", "(Map,Class,Class)", "", "Argument[0].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["java.util", "Collections", False, "checkedNavigableMap", "(NavigableMap,Class,Class)", "", "Argument[0].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["java.util", "Collections", False, "checkedNavigableMap", "(NavigableMap,Class,Class)", "", "Argument[0].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["java.util", "Collections", False, "checkedNavigableSet", "(NavigableSet,Class)", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["java.util", "Collections", False, "checkedSet", "(Set,Class)", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["java.util", "Collections", False, "checkedSortedMap", "(SortedMap,Class,Class)", "", "Argument[0].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["java.util", "Collections", False, "checkedSortedMap", "(SortedMap,Class,Class)", "", "Argument[0].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["java.util", "Collections", False, "checkedSortedSet", "(SortedSet,Class)", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["java.util", "Collections", False, "copy", "(List,List)", "", "Argument[1].Element", "Argument[0].Element", "value", "manual"]
+      - ["java.util", "Collections", False, "enumeration", "(Collection)", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["java.util", "Collections", False, "fill", "(List,Object)", "", "Argument[1]", "Argument[0].Element", "value", "manual"]
+      - ["java.util", "Collections", False, "list", "(Enumeration)", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["java.util", "Collections", False, "max", "", "", "Argument[0].Element", "ReturnValue", "value", "manual"]
+      - ["java.util", "Collections", False, "min", "", "", "Argument[0].Element", "ReturnValue", "value", "manual"]
+      - ["java.util", "Collections", False, "nCopies", "(int,Object)", "", "Argument[1]", "ReturnValue.Element", "value", "manual"]
+      - ["java.util", "Collections", False, "replaceAll", "(List,Object,Object)", "", "Argument[2]", "Argument[0].Element", "value", "manual"]
+      - ["java.util", "Collections", False, "singleton", "(Object)", "", "Argument[0]", "ReturnValue.Element", "value", "manual"]
+      - ["java.util", "Collections", False, "singletonList", "(Object)", "", "Argument[0]", "ReturnValue.Element", "value", "manual"]
+      - ["java.util", "Collections", False, "singletonMap", "(Object,Object)", "", "Argument[0]", "ReturnValue.MapKey", "value", "manual"]
+      - ["java.util", "Collections", False, "singletonMap", "(Object,Object)", "", "Argument[1]", "ReturnValue.MapValue", "value", "manual"]
+      - ["java.util", "Collections", False, "synchronizedCollection", "(Collection)", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["java.util", "Collections", False, "synchronizedList", "(List)", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["java.util", "Collections", False, "synchronizedMap", "(Map)", "", "Argument[0].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["java.util", "Collections", False, "synchronizedMap", "(Map)", "", "Argument[0].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["java.util", "Collections", False, "synchronizedNavigableMap", "(NavigableMap)", "", "Argument[0].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["java.util", "Collections", False, "synchronizedNavigableMap", "(NavigableMap)", "", "Argument[0].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["java.util", "Collections", False, "synchronizedNavigableSet", "(NavigableSet)", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["java.util", "Collections", False, "synchronizedSet", "(Set)", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["java.util", "Collections", False, "synchronizedSortedMap", "(SortedMap)", "", "Argument[0].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["java.util", "Collections", False, "synchronizedSortedMap", "(SortedMap)", "", "Argument[0].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["java.util", "Collections", False, "synchronizedSortedSet", "(SortedSet)", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["java.util", "Collections", False, "unmodifiableCollection", "(Collection)", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["java.util", "Collections", False, "unmodifiableList", "(List)", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["java.util", "Collections", False, "unmodifiableMap", "(Map)", "", "Argument[0].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["java.util", "Collections", False, "unmodifiableMap", "(Map)", "", "Argument[0].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["java.util", "Collections", False, "unmodifiableNavigableMap", "(NavigableMap)", "", "Argument[0].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["java.util", "Collections", False, "unmodifiableNavigableMap", "(NavigableMap)", "", "Argument[0].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["java.util", "Collections", False, "unmodifiableNavigableSet", "(NavigableSet)", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["java.util", "Collections", False, "unmodifiableSet", "(Set)", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["java.util", "Collections", False, "unmodifiableSortedMap", "(SortedMap)", "", "Argument[0].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["java.util", "Collections", False, "unmodifiableSortedMap", "(SortedMap)", "", "Argument[0].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["java.util", "Collections", False, "unmodifiableSortedSet", "(SortedSet)", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["java.util", "Deque", True, "addFirst", "(Object)", "", "Argument[0]", "Argument[-1].Element", "value", "manual"]
+      - ["java.util", "Deque", True, "addLast", "(Object)", "", "Argument[0]", "Argument[-1].Element", "value", "manual"]
+      - ["java.util", "Deque", True, "descendingIterator", "()", "", "Argument[-1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["java.util", "Deque", True, "getFirst", "()", "", "Argument[-1].Element", "ReturnValue", "value", "manual"]
+      - ["java.util", "Deque", True, "getLast", "()", "", "Argument[-1].Element", "ReturnValue", "value", "manual"]
+      - ["java.util", "Deque", True, "offerFirst", "(Object)", "", "Argument[0]", "Argument[-1].Element", "value", "manual"]
+      - ["java.util", "Deque", True, "offerLast", "(Object)", "", "Argument[0]", "Argument[-1].Element", "value", "manual"]
+      - ["java.util", "Deque", True, "peekFirst", "()", "", "Argument[-1].Element", "ReturnValue", "value", "manual"]
+      - ["java.util", "Deque", True, "peekLast", "()", "", "Argument[-1].Element", "ReturnValue", "value", "manual"]
+      - ["java.util", "Deque", True, "pollFirst", "()", "", "Argument[-1].Element", "ReturnValue", "value", "manual"]
+      - ["java.util", "Deque", True, "pollLast", "()", "", "Argument[-1].Element", "ReturnValue", "value", "manual"]
+      - ["java.util", "Deque", True, "pop", "()", "", "Argument[-1].Element", "ReturnValue", "value", "manual"]
+      - ["java.util", "Deque", True, "push", "(Object)", "", "Argument[0]", "Argument[-1].Element", "value", "manual"]
+      - ["java.util", "Deque", True, "removeFirst", "()", "", "Argument[-1].Element", "ReturnValue", "value", "manual"]
+      - ["java.util", "Deque", True, "removeLast", "()", "", "Argument[-1].Element", "ReturnValue", "value", "manual"]
+      - ["java.util", "Dictionary", True, "elements", "()", "", "Argument[-1].MapValue", "ReturnValue.Element", "value", "manual"]
+      - ["java.util", "Dictionary", True, "get", "(Object)", "", "Argument[-1].MapValue", "ReturnValue", "value", "manual"]
+      - ["java.util", "Dictionary", True, "keys", "()", "", "Argument[-1].MapKey", "ReturnValue.Element", "value", "manual"]
+      - ["java.util", "Dictionary", True, "put", "(Object,Object)", "", "Argument[-1].MapValue", "ReturnValue", "value", "manual"]
+      - ["java.util", "Dictionary", True, "put", "(Object,Object)", "", "Argument[0]", "Argument[-1].MapKey", "value", "manual"]
+      - ["java.util", "Dictionary", True, "put", "(Object,Object)", "", "Argument[1]", "Argument[-1].MapValue", "value", "manual"]
+      - ["java.util", "Dictionary", True, "remove", "(Object)", "", "Argument[-1].MapValue", "ReturnValue", "value", "manual"]
+      - ["java.util", "EnumMap", False, "EnumMap", "(EnumMap)", "", "Argument[0].MapKey", "Argument[-1].MapKey", "value", "manual"]
+      - ["java.util", "EnumMap", False, "EnumMap", "(EnumMap)", "", "Argument[0].MapValue", "Argument[-1].MapValue", "value", "manual"]
+      - ["java.util", "EnumMap", False, "EnumMap", "(Map)", "", "Argument[0].MapKey", "Argument[-1].MapKey", "value", "manual"]
+      - ["java.util", "EnumMap", False, "EnumMap", "(Map)", "", "Argument[0].MapValue", "Argument[-1].MapValue", "value", "manual"]
+      - ["java.util", "Enumeration", True, "asIterator", "", "", "Argument[-1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["java.util", "Enumeration", True, "nextElement", "", "", "Argument[-1].Element", "ReturnValue", "value", "manual"]
+      - ["java.util", "HashMap", False, "HashMap", "(Map)", "", "Argument[0].MapKey", "Argument[-1].MapKey", "value", "manual"]
+      - ["java.util", "HashMap", False, "HashMap", "(Map)", "", "Argument[0].MapValue", "Argument[-1].MapValue", "value", "manual"]
+      - ["java.util", "HashSet", False, "HashSet", "(Collection)", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
+      - ["java.util", "Hashtable", False, "Hashtable", "(Map)", "", "Argument[0].MapKey", "Argument[-1].MapKey", "value", "manual"]
+      - ["java.util", "Hashtable", False, "Hashtable", "(Map)", "", "Argument[0].MapValue", "Argument[-1].MapValue", "value", "manual"]
+      - ["java.util", "IdentityHashMap", False, "IdentityHashMap", "(Map)", "", "Argument[0].MapKey", "Argument[-1].MapKey", "value", "manual"]
+      - ["java.util", "IdentityHashMap", False, "IdentityHashMap", "(Map)", "", "Argument[0].MapValue", "Argument[-1].MapValue", "value", "manual"]
+      - ["java.util", "Iterator", True, "forEachRemaining", "(Consumer)", "", "Argument[-1].Element", "Argument[0].Parameter[0]", "value", "manual"]
+      - ["java.util", "Iterator", True, "next", "", "", "Argument[-1].Element", "ReturnValue", "value", "manual"]
+      - ["java.util", "LinkedHashMap", False, "LinkedHashMap", "(Map)", "", "Argument[0].MapKey", "Argument[-1].MapKey", "value", "manual"]
+      - ["java.util", "LinkedHashMap", False, "LinkedHashMap", "(Map)", "", "Argument[0].MapValue", "Argument[-1].MapValue", "value", "manual"]
+      - ["java.util", "LinkedHashSet", False, "LinkedHashSet", "(Collection)", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
+      - ["java.util", "LinkedList", False, "LinkedList", "(Collection)", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
+      - ["java.util", "List", True, "add", "(int,Object)", "", "Argument[1]", "Argument[-1].Element", "value", "manual"]
+      - ["java.util", "List", True, "addAll", "(int,Collection)", "", "Argument[1].Element", "Argument[-1].Element", "value", "manual"]
+      - ["java.util", "List", False, "copyOf", "(Collection)", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["java.util", "List", True, "get", "(int)", "", "Argument[-1].Element", "ReturnValue", "value", "manual"]
+      - ["java.util", "List", True, "listIterator", "", "", "Argument[-1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["java.util", "List", False, "of", "(Object)", "", "Argument[0]", "ReturnValue.Element", "value", "manual"]
+      - ["java.util", "List", False, "of", "(Object,Object)", "", "Argument[0..1]", "ReturnValue.Element", "value", "manual"]
+      - ["java.util", "List", False, "of", "(Object,Object,Object)", "", "Argument[0..2]", "ReturnValue.Element", "value", "manual"]
+      - ["java.util", "List", False, "of", "(Object,Object,Object,Object)", "", "Argument[0..3]", "ReturnValue.Element", "value", "manual"]
+      - ["java.util", "List", False, "of", "(Object,Object,Object,Object,Object)", "", "Argument[0..4]", "ReturnValue.Element", "value", "manual"]
+      - ["java.util", "List", False, "of", "(Object,Object,Object,Object,Object,Object)", "", "Argument[0..5]", "ReturnValue.Element", "value", "manual"]
+      - ["java.util", "List", False, "of", "(Object,Object,Object,Object,Object,Object,Object)", "", "Argument[0..6]", "ReturnValue.Element", "value", "manual"]
+      - ["java.util", "List", False, "of", "(Object,Object,Object,Object,Object,Object,Object,Object)", "", "Argument[0..7]", "ReturnValue.Element", "value", "manual"]
+      - ["java.util", "List", False, "of", "(Object,Object,Object,Object,Object,Object,Object,Object,Object)", "", "Argument[0..8]", "ReturnValue.Element", "value", "manual"]
+      - ["java.util", "List", False, "of", "(Object,Object,Object,Object,Object,Object,Object,Object,Object,Object)", "", "Argument[0..9]", "ReturnValue.Element", "value", "manual"]
+      - ["java.util", "List", False, "of", "(Object[])", "", "Argument[0].ArrayElement", "ReturnValue.Element", "value", "manual"]
+      - ["java.util", "List", True, "remove", "(int)", "", "Argument[-1].Element", "ReturnValue", "value", "manual"]
+      - ["java.util", "List", True, "set", "(int,Object)", "", "Argument[-1].Element", "ReturnValue", "value", "manual"]
+      - ["java.util", "List", True, "set", "(int,Object)", "", "Argument[1]", "Argument[-1].Element", "value", "manual"]
+      - ["java.util", "List", True, "subList", "", "", "Argument[-1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["java.util", "ListIterator", True, "add", "(Object)", "", "Argument[0]", "Argument[-1].Element", "value", "manual"]
+      - ["java.util", "ListIterator", True, "previous", "", "", "Argument[-1].Element", "ReturnValue", "value", "manual"]
+      - ["java.util", "ListIterator", True, "set", "(Object)", "", "Argument[0]", "Argument[-1].Element", "value", "manual"]
+      - ["java.util", "Map", True, "computeIfAbsent", "", "", "Argument[-1].MapValue", "ReturnValue", "value", "manual"]
+      - ["java.util", "Map", True, "computeIfAbsent", "", "", "Argument[1].ReturnValue", "Argument[-1].MapValue", "value", "manual"]
+      - ["java.util", "Map", True, "computeIfAbsent", "", "", "Argument[1].ReturnValue", "ReturnValue", "value", "manual"]
+      - ["java.util", "Map", False, "copyOf", "(Map)", "", "Argument[0].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["java.util", "Map", False, "copyOf", "(Map)", "", "Argument[0].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["java.util", "Map", False, "entry", "(Object,Object)", "", "Argument[0]", "ReturnValue.MapKey", "value", "manual"]
+      - ["java.util", "Map", False, "entry", "(Object,Object)", "", "Argument[1]", "ReturnValue.MapValue", "value", "manual"]
+      - ["java.util", "Map", True, "entrySet", "", "", "Argument[-1].MapKey", "ReturnValue.Element.MapKey", "value", "manual"]
+      - ["java.util", "Map", True, "entrySet", "", "", "Argument[-1].MapValue", "ReturnValue.Element.MapValue", "value", "manual"]
+      - ["java.util", "Map", True, "forEach", "(BiConsumer)", "", "Argument[-1].MapKey", "Argument[0].Parameter[0]", "value", "manual"]
+      - ["java.util", "Map", True, "forEach", "(BiConsumer)", "", "Argument[-1].MapValue", "Argument[0].Parameter[1]", "value", "manual"]
+      - ["java.util", "Map", True, "get", "", "", "Argument[-1].MapValue", "ReturnValue", "value", "manual"]
+      - ["java.util", "Map", True, "getOrDefault", "", "", "Argument[-1].MapValue", "ReturnValue", "value", "manual"]
+      - ["java.util", "Map", True, "getOrDefault", "", "", "Argument[1]", "ReturnValue", "value", "manual"]
+      - ["java.util", "Map", True, "keySet", "()", "", "Argument[-1].MapKey", "ReturnValue.Element", "value", "manual"]
+      - ["java.util", "Map", True, "merge", "(Object,Object,BiFunction)", "", "Argument[1]", "Argument[-1].MapValue", "value", "manual"]
+      - ["java.util", "Map", False, "of", "", "", "Argument[0]", "ReturnValue.MapKey", "value", "manual"]
+      - ["java.util", "Map", False, "of", "", "", "Argument[10]", "ReturnValue.MapKey", "value", "manual"]
+      - ["java.util", "Map", False, "of", "", "", "Argument[11]", "ReturnValue.MapValue", "value", "manual"]
+      - ["java.util", "Map", False, "of", "", "", "Argument[12]", "ReturnValue.MapKey", "value", "manual"]
+      - ["java.util", "Map", False, "of", "", "", "Argument[13]", "ReturnValue.MapValue", "value", "manual"]
+      - ["java.util", "Map", False, "of", "", "", "Argument[14]", "ReturnValue.MapKey", "value", "manual"]
+      - ["java.util", "Map", False, "of", "", "", "Argument[15]", "ReturnValue.MapValue", "value", "manual"]
+      - ["java.util", "Map", False, "of", "", "", "Argument[16]", "ReturnValue.MapKey", "value", "manual"]
+      - ["java.util", "Map", False, "of", "", "", "Argument[17]", "ReturnValue.MapValue", "value", "manual"]
+      - ["java.util", "Map", False, "of", "", "", "Argument[18]", "ReturnValue.MapKey", "value", "manual"]
+      - ["java.util", "Map", False, "of", "", "", "Argument[19]", "ReturnValue.MapValue", "value", "manual"]
+      - ["java.util", "Map", False, "of", "", "", "Argument[1]", "ReturnValue.MapValue", "value", "manual"]
+      - ["java.util", "Map", False, "of", "", "", "Argument[2]", "ReturnValue.MapKey", "value", "manual"]
+      - ["java.util", "Map", False, "of", "", "", "Argument[3]", "ReturnValue.MapValue", "value", "manual"]
+      - ["java.util", "Map", False, "of", "", "", "Argument[4]", "ReturnValue.MapKey", "value", "manual"]
+      - ["java.util", "Map", False, "of", "", "", "Argument[5]", "ReturnValue.MapValue", "value", "manual"]
+      - ["java.util", "Map", False, "of", "", "", "Argument[6]", "ReturnValue.MapKey", "value", "manual"]
+      - ["java.util", "Map", False, "of", "", "", "Argument[7]", "ReturnValue.MapValue", "value", "manual"]
+      - ["java.util", "Map", False, "of", "", "", "Argument[8]", "ReturnValue.MapKey", "value", "manual"]
+      - ["java.util", "Map", False, "of", "", "", "Argument[9]", "ReturnValue.MapValue", "value", "manual"]
+      - ["java.util", "Map", False, "ofEntries", "", "", "Argument[0].ArrayElement.MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["java.util", "Map", False, "ofEntries", "", "", "Argument[0].ArrayElement.MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["java.util", "Map", True, "put", "(Object,Object)", "", "Argument[-1].MapValue", "ReturnValue", "value", "manual"]
+      - ["java.util", "Map", True, "put", "(Object,Object)", "", "Argument[0]", "Argument[-1].MapKey", "value", "manual"]
+      - ["java.util", "Map", True, "put", "(Object,Object)", "", "Argument[1]", "Argument[-1].MapValue", "value", "manual"]
+      - ["java.util", "Map", True, "putAll", "(Map)", "", "Argument[0].MapKey", "Argument[-1].MapKey", "value", "manual"]
+      - ["java.util", "Map", True, "putAll", "(Map)", "", "Argument[0].MapValue", "Argument[-1].MapValue", "value", "manual"]
+      - ["java.util", "Map", True, "putIfAbsent", "", "", "Argument[-1].MapValue", "ReturnValue", "value", "manual"]
+      - ["java.util", "Map", True, "putIfAbsent", "", "", "Argument[0]", "Argument[-1].MapKey", "value", "manual"]
+      - ["java.util", "Map", True, "putIfAbsent", "", "", "Argument[1]", "Argument[-1].MapValue", "value", "manual"]
+      - ["java.util", "Map", True, "remove", "(Object)", "", "Argument[-1].MapValue", "ReturnValue", "value", "manual"]
+      - ["java.util", "Map", True, "replace", "(Object,Object)", "", "Argument[-1].MapValue", "ReturnValue", "value", "manual"]
+      - ["java.util", "Map", True, "replace", "(Object,Object)", "", "Argument[0]", "Argument[-1].MapKey", "value", "manual"]
+      - ["java.util", "Map", True, "replace", "(Object,Object)", "", "Argument[1]", "Argument[-1].MapValue", "value", "manual"]
+      - ["java.util", "Map", True, "replace", "(Object,Object,Object)", "", "Argument[0]", "Argument[-1].MapKey", "value", "manual"]
+      - ["java.util", "Map", True, "replace", "(Object,Object,Object)", "", "Argument[2]", "Argument[-1].MapValue", "value", "manual"]
+      - ["java.util", "Map", True, "values", "()", "", "Argument[-1].MapValue", "ReturnValue.Element", "value", "manual"]
+      - ["java.util", "Map$Entry", True, "getKey", "", "", "Argument[-1].MapKey", "ReturnValue", "value", "manual"]
+      - ["java.util", "Map$Entry", True, "getValue", "", "", "Argument[-1].MapValue", "ReturnValue", "value", "manual"]
+      - ["java.util", "Map$Entry", True, "setValue", "", "", "Argument[-1].MapValue", "ReturnValue", "value", "manual"]
+      - ["java.util", "Map$Entry", True, "setValue", "", "", "Argument[0]", "Argument[-1].MapValue", "value", "manual"]
+      - ["java.util", "NavigableMap", True, "ceilingEntry", "(Object)", "", "Argument[-1].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["java.util", "NavigableMap", True, "ceilingEntry", "(Object)", "", "Argument[-1].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["java.util", "NavigableMap", True, "descendingMap", "()", "", "Argument[-1].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["java.util", "NavigableMap", True, "descendingMap", "()", "", "Argument[-1].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["java.util", "NavigableMap", True, "firstEntry", "()", "", "Argument[-1].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["java.util", "NavigableMap", True, "firstEntry", "()", "", "Argument[-1].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["java.util", "NavigableMap", True, "floorEntry", "(Object)", "", "Argument[-1].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["java.util", "NavigableMap", True, "floorEntry", "(Object)", "", "Argument[-1].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["java.util", "NavigableMap", True, "headMap", "(Object,boolean)", "", "Argument[-1].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["java.util", "NavigableMap", True, "headMap", "(Object,boolean)", "", "Argument[-1].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["java.util", "NavigableMap", True, "higherEntry", "(Object)", "", "Argument[-1].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["java.util", "NavigableMap", True, "higherEntry", "(Object)", "", "Argument[-1].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["java.util", "NavigableMap", True, "lastEntry", "()", "", "Argument[-1].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["java.util", "NavigableMap", True, "lastEntry", "()", "", "Argument[-1].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["java.util", "NavigableMap", True, "lowerEntry", "(Object)", "", "Argument[-1].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["java.util", "NavigableMap", True, "lowerEntry", "(Object)", "", "Argument[-1].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["java.util", "NavigableMap", True, "pollFirstEntry", "()", "", "Argument[-1].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["java.util", "NavigableMap", True, "pollFirstEntry", "()", "", "Argument[-1].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["java.util", "NavigableMap", True, "pollLastEntry", "()", "", "Argument[-1].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["java.util", "NavigableMap", True, "pollLastEntry", "()", "", "Argument[-1].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["java.util", "NavigableMap", True, "subMap", "(Object,boolean,Object,boolean)", "", "Argument[-1].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["java.util", "NavigableMap", True, "subMap", "(Object,boolean,Object,boolean)", "", "Argument[-1].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["java.util", "NavigableMap", True, "tailMap", "(Object,boolean)", "", "Argument[-1].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["java.util", "NavigableMap", True, "tailMap", "(Object,boolean)", "", "Argument[-1].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["java.util", "NavigableSet", True, "ceiling", "(Object)", "", "Argument[-1].Element", "ReturnValue", "value", "manual"]
+      - ["java.util", "NavigableSet", True, "descendingIterator", "()", "", "Argument[-1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["java.util", "NavigableSet", True, "descendingSet", "()", "", "Argument[-1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["java.util", "NavigableSet", True, "floor", "(Object)", "", "Argument[-1].Element", "ReturnValue", "value", "manual"]
+      - ["java.util", "NavigableSet", True, "headSet", "(Object,boolean)", "", "Argument[-1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["java.util", "NavigableSet", True, "higher", "(Object)", "", "Argument[-1].Element", "ReturnValue", "value", "manual"]
+      - ["java.util", "NavigableSet", True, "lower", "(Object)", "", "Argument[-1].Element", "ReturnValue", "value", "manual"]
+      - ["java.util", "NavigableSet", True, "pollFirst", "()", "", "Argument[-1].Element", "ReturnValue", "value", "manual"]
+      - ["java.util", "NavigableSet", True, "pollLast", "()", "", "Argument[-1].Element", "ReturnValue", "value", "manual"]
+      - ["java.util", "NavigableSet", True, "subSet", "(Object,boolean,Object,boolean)", "", "Argument[-1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["java.util", "NavigableSet", True, "tailSet", "(Object,boolean)", "", "Argument[-1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["java.util", "Objects", False, "requireNonNull", "", "", "Argument[0]", "ReturnValue", "value", "manual"]
+      - ["java.util", "Objects", False, "requireNonNullElse", "", "", "Argument[0]", "ReturnValue", "value", "manual"]
+      - ["java.util", "Objects", False, "requireNonNullElse", "", "", "Argument[1]", "ReturnValue", "value", "manual"]
+      - ["java.util", "Objects", False, "requireNonNullElseGet", "", "", "Argument[0]", "ReturnValue", "value", "manual"]
+      - ["java.util", "Objects", False, "toString", "", "", "Argument[1]", "ReturnValue", "value", "manual"]
+      - ["java.util", "Optional", False, "filter", "", "", "Argument[-1].Element", "Argument[0].Parameter[0]", "value", "manual"]
+      - ["java.util", "Optional", False, "filter", "", "", "Argument[-1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["java.util", "Optional", False, "flatMap", "", "", "Argument[-1].Element", "Argument[0].Parameter[0]", "value", "manual"]
+      - ["java.util", "Optional", False, "flatMap", "", "", "Argument[0].ReturnValue", "ReturnValue", "value", "manual"]
+      - ["java.util", "Optional", False, "get", "", "", "Argument[-1].Element", "ReturnValue", "value", "manual"]
+      - ["java.util", "Optional", False, "ifPresent", "", "", "Argument[-1].Element", "Argument[0].Parameter[0]", "value", "manual"]
+      - ["java.util", "Optional", False, "ifPresentOrElse", "", "", "Argument[-1].Element", "Argument[0].Parameter[0]", "value", "manual"]
+      - ["java.util", "Optional", False, "map", "", "", "Argument[-1].Element", "Argument[0].Parameter[0]", "value", "manual"]
+      - ["java.util", "Optional", False, "map", "", "", "Argument[0].ReturnValue", "ReturnValue.Element", "value", "manual"]
+      - ["java.util", "Optional", False, "of", "", "", "Argument[0]", "ReturnValue.Element", "value", "manual"]
+      - ["java.util", "Optional", False, "ofNullable", "", "", "Argument[0]", "ReturnValue.Element", "value", "manual"]
+      - ["java.util", "Optional", False, "or", "", "", "Argument[-1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["java.util", "Optional", False, "or", "", "", "Argument[0].ReturnValue", "ReturnValue", "value", "manual"]
+      - ["java.util", "Optional", False, "orElse", "", "", "Argument[-1].Element", "ReturnValue", "value", "manual"]
+      - ["java.util", "Optional", False, "orElse", "", "", "Argument[0]", "ReturnValue", "value", "manual"]
+      - ["java.util", "Optional", False, "orElseGet", "", "", "Argument[-1].Element", "ReturnValue", "value", "manual"]
+      - ["java.util", "Optional", False, "orElseGet", "", "", "Argument[0].ReturnValue", "ReturnValue", "value", "manual"]
+      - ["java.util", "Optional", False, "orElseThrow", "", "", "Argument[-1].Element", "ReturnValue", "value", "manual"]
+      - ["java.util", "Optional", False, "stream", "", "", "Argument[-1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["java.util", "PriorityQueue", False, "PriorityQueue", "(Collection)", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
+      - ["java.util", "PriorityQueue", False, "PriorityQueue", "(PriorityQueue)", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
+      - ["java.util", "PriorityQueue", False, "PriorityQueue", "(SortedSet)", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
+      - ["java.util", "Properties", True, "getProperty", "(String)", "", "Argument[-1].MapValue", "ReturnValue", "value", "manual"]
+      - ["java.util", "Properties", True, "getProperty", "(String,String)", "", "Argument[-1].MapValue", "ReturnValue", "value", "manual"]
+      - ["java.util", "Properties", True, "getProperty", "(String,String)", "", "Argument[1]", "ReturnValue", "value", "manual"]
+      - ["java.util", "Properties", True, "setProperty", "(String,String)", "", "Argument[-1].MapValue", "ReturnValue", "value", "manual"]
+      - ["java.util", "Properties", True, "setProperty", "(String,String)", "", "Argument[0]", "Argument[-1].MapKey", "value", "manual"]
+      - ["java.util", "Properties", True, "setProperty", "(String,String)", "", "Argument[1]", "Argument[-1].MapValue", "value", "manual"]
+      - ["java.util", "Queue", True, "element", "()", "", "Argument[-1].Element", "ReturnValue", "value", "manual"]
+      - ["java.util", "Queue", True, "offer", "(Object)", "", "Argument[0]", "Argument[-1].Element", "value", "manual"]
+      - ["java.util", "Queue", True, "peek", "()", "", "Argument[-1].Element", "ReturnValue", "value", "manual"]
+      - ["java.util", "Queue", True, "poll", "()", "", "Argument[-1].Element", "ReturnValue", "value", "manual"]
+      - ["java.util", "Queue", True, "remove", "()", "", "Argument[-1].Element", "ReturnValue", "value", "manual"]
+      - ["java.util", "Scanner", True, "Scanner", "", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["java.util", "Scanner", True, "findInLine", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["java.util", "Scanner", True, "findWithinHorizon", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["java.util", "Scanner", True, "next", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["java.util", "Scanner", True, "nextBigDecimal", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["java.util", "Scanner", True, "nextBigInteger", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["java.util", "Scanner", True, "nextBoolean", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["java.util", "Scanner", True, "nextByte", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["java.util", "Scanner", True, "nextDouble", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["java.util", "Scanner", True, "nextFloat", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["java.util", "Scanner", True, "nextInt", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["java.util", "Scanner", True, "nextLine", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["java.util", "Scanner", True, "nextLong", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["java.util", "Scanner", True, "nextShort", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["java.util", "Scanner", True, "reset", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["java.util", "Scanner", True, "skip", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["java.util", "Scanner", True, "useDelimiter", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["java.util", "Scanner", True, "useLocale", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["java.util", "Scanner", True, "useRadix", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["java.util", "Set", False, "copyOf", "(Collection)", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["java.util", "Set", False, "of", "(Object)", "", "Argument[0]", "ReturnValue.Element", "value", "manual"]
+      - ["java.util", "Set", False, "of", "(Object,Object)", "", "Argument[0..1]", "ReturnValue.Element", "value", "manual"]
+      - ["java.util", "Set", False, "of", "(Object,Object,Object)", "", "Argument[0..2]", "ReturnValue.Element", "value", "manual"]
+      - ["java.util", "Set", False, "of", "(Object,Object,Object,Object)", "", "Argument[0..3]", "ReturnValue.Element", "value", "manual"]
+      - ["java.util", "Set", False, "of", "(Object,Object,Object,Object,Object)", "", "Argument[0..4]", "ReturnValue.Element", "value", "manual"]
+      - ["java.util", "Set", False, "of", "(Object,Object,Object,Object,Object,Object)", "", "Argument[0..5]", "ReturnValue.Element", "value", "manual"]
+      - ["java.util", "Set", False, "of", "(Object,Object,Object,Object,Object,Object,Object)", "", "Argument[0..6]", "ReturnValue.Element", "value", "manual"]
+      - ["java.util", "Set", False, "of", "(Object,Object,Object,Object,Object,Object,Object,Object)", "", "Argument[0..7]", "ReturnValue.Element", "value", "manual"]
+      - ["java.util", "Set", False, "of", "(Object,Object,Object,Object,Object,Object,Object,Object,Object)", "", "Argument[0..8]", "ReturnValue.Element", "value", "manual"]
+      - ["java.util", "Set", False, "of", "(Object,Object,Object,Object,Object,Object,Object,Object,Object,Object)", "", "Argument[0..9]", "ReturnValue.Element", "value", "manual"]
+      - ["java.util", "Set", False, "of", "(Object[])", "", "Argument[0].ArrayElement", "ReturnValue.Element", "value", "manual"]
+      - ["java.util", "SortedMap", True, "headMap", "(Object)", "", "Argument[-1].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["java.util", "SortedMap", True, "headMap", "(Object)", "", "Argument[-1].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["java.util", "SortedMap", True, "subMap", "(Object,Object)", "", "Argument[-1].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["java.util", "SortedMap", True, "subMap", "(Object,Object)", "", "Argument[-1].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["java.util", "SortedMap", True, "tailMap", "(Object)", "", "Argument[-1].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["java.util", "SortedMap", True, "tailMap", "(Object)", "", "Argument[-1].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["java.util", "SortedSet", True, "first", "()", "", "Argument[-1].Element", "ReturnValue", "value", "manual"]
+      - ["java.util", "SortedSet", True, "headSet", "(Object)", "", "Argument[-1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["java.util", "SortedSet", True, "last", "()", "", "Argument[-1].Element", "ReturnValue", "value", "manual"]
+      - ["java.util", "SortedSet", True, "subSet", "(Object,Object)", "", "Argument[-1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["java.util", "SortedSet", True, "tailSet", "(Object)", "", "Argument[-1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["java.util", "Stack", True, "peek", "()", "", "Argument[-1].Element", "ReturnValue", "value", "manual"]
+      - ["java.util", "Stack", True, "pop", "()", "", "Argument[-1].Element", "ReturnValue", "value", "manual"]
+      - ["java.util", "Stack", True, "push", "(Object)", "", "Argument[0]", "Argument[-1].Element", "value", "manual"]
+      - ["java.util", "StringTokenizer", False, "StringTokenizer", "", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["java.util", "StringTokenizer", False, "nextElement", "()", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["java.util", "StringTokenizer", False, "nextToken", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["java.util", "TreeMap", False, "TreeMap", "(Map)", "", "Argument[0].MapKey", "Argument[-1].MapKey", "value", "manual"]
+      - ["java.util", "TreeMap", False, "TreeMap", "(Map)", "", "Argument[0].MapValue", "Argument[-1].MapValue", "value", "manual"]
+      - ["java.util", "TreeMap", False, "TreeMap", "(SortedMap)", "", "Argument[0].MapKey", "Argument[-1].MapKey", "value", "manual"]
+      - ["java.util", "TreeMap", False, "TreeMap", "(SortedMap)", "", "Argument[0].MapValue", "Argument[-1].MapValue", "value", "manual"]
+      - ["java.util", "TreeSet", False, "TreeSet", "(Collection)", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
+      - ["java.util", "TreeSet", False, "TreeSet", "(SortedSet)", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
+      - ["java.util", "Vector", False, "Vector", "(Collection)", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
+      - ["java.util", "Vector", True, "addElement", "(Object)", "", "Argument[0]", "Argument[-1].Element", "value", "manual"]
+      - ["java.util", "Vector", True, "copyInto", "(Object[])", "", "Argument[-1].Element", "Argument[0].ArrayElement", "value", "manual"]
+      - ["java.util", "Vector", True, "elementAt", "(int)", "", "Argument[-1].Element", "ReturnValue", "value", "manual"]
+      - ["java.util", "Vector", True, "elements", "()", "", "Argument[-1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["java.util", "Vector", True, "firstElement", "()", "", "Argument[-1].Element", "ReturnValue", "value", "manual"]
+      - ["java.util", "Vector", True, "insertElementAt", "(Object,int)", "", "Argument[0]", "Argument[-1].Element", "value", "manual"]
+      - ["java.util", "Vector", True, "lastElement", "()", "", "Argument[-1].Element", "ReturnValue", "value", "manual"]
+      - ["java.util", "Vector", True, "setElementAt", "(Object,int)", "", "Argument[0]", "Argument[-1].Element", "value", "manual"]
+      - ["java.util", "WeakHashMap", False, "WeakHashMap", "(Map)", "", "Argument[0].MapKey", "Argument[-1].MapKey", "value", "manual"]
+      - ["java.util", "WeakHashMap", False, "WeakHashMap", "(Map)", "", "Argument[0].MapValue", "Argument[-1].MapValue", "value", "manual"]
diff --git a/java/ql/lib/ext/java.util.regex.model.yml b/java/ql/lib/ext/java.util.regex.model.yml
new file mode 100644
index 00000000000..b5c329e7a60
--- /dev/null
+++ b/java/ql/lib/ext/java.util.regex.model.yml
@@ -0,0 +1,26 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSinkModel
+    data:
+      - ["java.util.regex", "Matcher", False, "matches", "()", "", "Argument[-1]", "regex-use[f]", "manual"]
+      - ["java.util.regex", "Pattern", False, "asMatchPredicate", "()", "", "Argument[-1]", "regex-use[f]", "manual"]
+      - ["java.util.regex", "Pattern", False, "compile", "(String)", "", "Argument[0]", "regex-use[]", "manual"]
+      - ["java.util.regex", "Pattern", False, "compile", "(String,int)", "", "Argument[0]", "regex-use[]", "manual"]
+      - ["java.util.regex", "Pattern", False, "matcher", "(CharSequence)", "", "Argument[-1]", "regex-use[0]", "manual"]
+      - ["java.util.regex", "Pattern", False, "matches", "(String,CharSequence)", "", "Argument[0]", "regex-use[f1]", "manual"]
+      - ["java.util.regex", "Pattern", False, "split", "(CharSequence)", "", "Argument[-1]", "regex-use[0]", "manual"]
+      - ["java.util.regex", "Pattern", False, "split", "(CharSequence,int)", "", "Argument[-1]", "regex-use[0]", "manual"]
+      - ["java.util.regex", "Pattern", False, "splitAsStream", "(CharSequence)", "", "Argument[-1]", "regex-use[0]", "manual"]
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSummaryModel
+    data:
+      - ["java.util.regex", "Matcher", False, "group", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["java.util.regex", "Matcher", False, "replaceAll", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["java.util.regex", "Matcher", False, "replaceAll", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["java.util.regex", "Matcher", False, "replaceFirst", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["java.util.regex", "Matcher", False, "replaceFirst", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["java.util.regex", "Pattern", False, "matcher", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["java.util.regex", "Pattern", False, "quote", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["java.util.regex", "Pattern", False, "split", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
diff --git a/java/ql/lib/ext/java.util.stream.model.yml b/java/ql/lib/ext/java.util.stream.model.yml
new file mode 100644
index 00000000000..431829ec322
--- /dev/null
+++ b/java/ql/lib/ext/java.util.stream.model.yml
@@ -0,0 +1,85 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSummaryModel
+    data:
+      - ["java.util.stream", "BaseStream", True, "iterator", "()", "", "Argument[-1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["java.util.stream", "BaseStream", True, "onClose", "(Runnable)", "", "Argument[-1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["java.util.stream", "BaseStream", True, "parallel", "()", "", "Argument[-1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["java.util.stream", "BaseStream", True, "sequential", "()", "", "Argument[-1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["java.util.stream", "BaseStream", True, "spliterator", "()", "", "Argument[-1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["java.util.stream", "BaseStream", True, "unordered", "()", "", "Argument[-1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["java.util.stream", "Stream", True, "allMatch", "(Predicate)", "", "Argument[-1].Element", "Argument[0].Parameter[0]", "value", "manual"]
+      - ["java.util.stream", "Stream", True, "anyMatch", "(Predicate)", "", "Argument[-1].Element", "Argument[0].Parameter[0]", "value", "manual"]
+      - ["java.util.stream", "Stream", True, "collect", "(Supplier,BiConsumer,BiConsumer)", "", "Argument[-1].Element", "Argument[1].Parameter[1]", "value", "manual"]
+      - ["java.util.stream", "Stream", True, "collect", "(Supplier,BiConsumer,BiConsumer)", "", "Argument[0].ReturnValue", "Argument[1].Parameter[0]", "value", "manual"]
+      - ["java.util.stream", "Stream", True, "collect", "(Supplier,BiConsumer,BiConsumer)", "", "Argument[1].Parameter[0]", "Argument[2].Parameter[0..1]", "value", "manual"]
+      - ["java.util.stream", "Stream", True, "collect", "(Supplier,BiConsumer,BiConsumer)", "", "Argument[1].Parameter[0]", "ReturnValue", "value", "manual"]
+      - ["java.util.stream", "Stream", True, "collect", "(Supplier,BiConsumer,BiConsumer)", "", "Argument[2].Parameter[0..1]", "Argument[1].Parameter[0]", "value", "manual"]
+      - ["java.util.stream", "Stream", True, "concat", "(Stream,Stream)", "", "Argument[0..1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["java.util.stream", "Stream", True, "distinct", "()", "", "Argument[-1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["java.util.stream", "Stream", True, "dropWhile", "(Predicate)", "", "Argument[-1].Element", "Argument[0].Parameter[0]", "value", "manual"]
+      - ["java.util.stream", "Stream", True, "dropWhile", "(Predicate)", "", "Argument[-1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["java.util.stream", "Stream", True, "filter", "(Predicate)", "", "Argument[-1].Element", "Argument[0].Parameter[0]", "value", "manual"]
+      - ["java.util.stream", "Stream", True, "filter", "(Predicate)", "", "Argument[-1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["java.util.stream", "Stream", True, "findAny", "()", "", "Argument[-1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["java.util.stream", "Stream", True, "findFirst", "()", "", "Argument[-1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["java.util.stream", "Stream", True, "flatMap", "(Function)", "", "Argument[-1].Element", "Argument[0].Parameter[0]", "value", "manual"]
+      - ["java.util.stream", "Stream", True, "flatMap", "(Function)", "", "Argument[0].ReturnValue.Element", "ReturnValue.Element", "value", "manual"]
+      - ["java.util.stream", "Stream", True, "flatMapToDouble", "(Function)", "", "Argument[-1].Element", "Argument[0].Parameter[0]", "value", "manual"]
+      - ["java.util.stream", "Stream", True, "flatMapToInt", "(Function)", "", "Argument[-1].Element", "Argument[0].Parameter[0]", "value", "manual"]
+      - ["java.util.stream", "Stream", True, "flatMapToLong", "(Function)", "", "Argument[-1].Element", "Argument[0].Parameter[0]", "value", "manual"]
+      - ["java.util.stream", "Stream", True, "forEach", "(Consumer)", "", "Argument[-1].Element", "Argument[0].Parameter[0]", "value", "manual"]
+      - ["java.util.stream", "Stream", True, "forEachOrdered", "(Consumer)", "", "Argument[-1].Element", "Argument[0].Parameter[0]", "value", "manual"]
+      - ["java.util.stream", "Stream", True, "generate", "(Supplier)", "", "Argument[0].ReturnValue", "ReturnValue.Element", "value", "manual"]
+      - ["java.util.stream", "Stream", True, "iterate", "(Object,Predicate,UnaryOperator)", "", "Argument[0]", "Argument[1..2].Parameter[0]", "value", "manual"]
+      - ["java.util.stream", "Stream", True, "iterate", "(Object,Predicate,UnaryOperator)", "", "Argument[0]", "ReturnValue.Element", "value", "manual"]
+      - ["java.util.stream", "Stream", True, "iterate", "(Object,Predicate,UnaryOperator)", "", "Argument[2].ReturnValue", "Argument[1..2].Parameter[0]", "value", "manual"]
+      - ["java.util.stream", "Stream", True, "iterate", "(Object,Predicate,UnaryOperator)", "", "Argument[2].ReturnValue", "ReturnValue.Element", "value", "manual"]
+      - ["java.util.stream", "Stream", True, "iterate", "(Object,UnaryOperator)", "", "Argument[0]", "Argument[1].Parameter[0]", "value", "manual"]
+      - ["java.util.stream", "Stream", True, "iterate", "(Object,UnaryOperator)", "", "Argument[0]", "ReturnValue.Element", "value", "manual"]
+      - ["java.util.stream", "Stream", True, "iterate", "(Object,UnaryOperator)", "", "Argument[1].ReturnValue", "Argument[1].Parameter[0]", "value", "manual"]
+      - ["java.util.stream", "Stream", True, "iterate", "(Object,UnaryOperator)", "", "Argument[1].ReturnValue", "ReturnValue.Element", "value", "manual"]
+      - ["java.util.stream", "Stream", True, "limit", "(long)", "", "Argument[-1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["java.util.stream", "Stream", True, "map", "(Function)", "", "Argument[-1].Element", "Argument[0].Parameter[0]", "value", "manual"]
+      - ["java.util.stream", "Stream", True, "map", "(Function)", "", "Argument[0].ReturnValue", "ReturnValue.Element", "value", "manual"]
+      - ["java.util.stream", "Stream", True, "mapMulti", "(BiConsumer)", "", "Argument[-1].Element", "Argument[0].Parameter[0]", "value", "manual"]
+      - ["java.util.stream", "Stream", True, "mapMultiToDouble", "(BiConsumer)", "", "Argument[-1].Element", "Argument[0].Parameter[0]", "value", "manual"]
+      - ["java.util.stream", "Stream", True, "mapMultiToInt", "(BiConsumer)", "", "Argument[-1].Element", "Argument[0].Parameter[0]", "value", "manual"]
+      - ["java.util.stream", "Stream", True, "mapMultiToLong", "(BiConsumer)", "", "Argument[-1].Element", "Argument[0].Parameter[0]", "value", "manual"]
+      - ["java.util.stream", "Stream", True, "mapToDouble", "(ToDoubleFunction)", "", "Argument[-1].Element", "Argument[0].Parameter[0]", "value", "manual"]
+      - ["java.util.stream", "Stream", True, "mapToInt", "(ToIntFunction)", "", "Argument[-1].Element", "Argument[0].Parameter[0]", "value", "manual"]
+      - ["java.util.stream", "Stream", True, "mapToLong", "(ToLongFunction)", "", "Argument[-1].Element", "Argument[0].Parameter[0]", "value", "manual"]
+      - ["java.util.stream", "Stream", True, "max", "(Comparator)", "", "Argument[-1].Element", "Argument[0].Parameter[0..1]", "value", "manual"]
+      - ["java.util.stream", "Stream", True, "max", "(Comparator)", "", "Argument[-1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["java.util.stream", "Stream", True, "min", "(Comparator)", "", "Argument[-1].Element", "Argument[0].Parameter[0..1]", "value", "manual"]
+      - ["java.util.stream", "Stream", True, "min", "(Comparator)", "", "Argument[-1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["java.util.stream", "Stream", True, "noneMatch", "(Predicate)", "", "Argument[-1].Element", "Argument[0].Parameter[0]", "value", "manual"]
+      - ["java.util.stream", "Stream", True, "of", "(Object)", "", "Argument[0]", "ReturnValue.Element", "value", "manual"]
+      - ["java.util.stream", "Stream", True, "of", "(Object[])", "", "Argument[0].ArrayElement", "ReturnValue.Element", "value", "manual"]
+      - ["java.util.stream", "Stream", True, "ofNullable", "(Object)", "", "Argument[0]", "ReturnValue.Element", "value", "manual"]
+      - ["java.util.stream", "Stream", True, "peek", "(Consumer)", "", "Argument[-1].Element", "Argument[0].Parameter[0]", "value", "manual"]
+      - ["java.util.stream", "Stream", True, "peek", "(Consumer)", "", "Argument[-1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["java.util.stream", "Stream", True, "reduce", "(BinaryOperator)", "", "Argument[-1].Element", "Argument[0].Parameter[0..1]", "value", "manual"]
+      - ["java.util.stream", "Stream", True, "reduce", "(BinaryOperator)", "", "Argument[-1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["java.util.stream", "Stream", True, "reduce", "(BinaryOperator)", "", "Argument[0].ReturnValue", "Argument[0].Parameter[0..1]", "value", "manual"]
+      - ["java.util.stream", "Stream", True, "reduce", "(BinaryOperator)", "", "Argument[0].ReturnValue", "ReturnValue.Element", "value", "manual"]
+      - ["java.util.stream", "Stream", True, "reduce", "(Object,BiFunction,BinaryOperator)", "", "Argument[-1].Element", "Argument[1].Parameter[1]", "value", "manual"]
+      - ["java.util.stream", "Stream", True, "reduce", "(Object,BiFunction,BinaryOperator)", "", "Argument[0]", "Argument[1].Parameter[0]", "value", "manual"]
+      - ["java.util.stream", "Stream", True, "reduce", "(Object,BiFunction,BinaryOperator)", "", "Argument[0]", "Argument[2].Parameter[0..1]", "value", "manual"]
+      - ["java.util.stream", "Stream", True, "reduce", "(Object,BiFunction,BinaryOperator)", "", "Argument[0]", "ReturnValue", "value", "manual"]
+      - ["java.util.stream", "Stream", True, "reduce", "(Object,BiFunction,BinaryOperator)", "", "Argument[1..2].ReturnValue", "Argument[1].Parameter[0]", "value", "manual"]
+      - ["java.util.stream", "Stream", True, "reduce", "(Object,BiFunction,BinaryOperator)", "", "Argument[1..2].ReturnValue", "Argument[2].Parameter[0..1]", "value", "manual"]
+      - ["java.util.stream", "Stream", True, "reduce", "(Object,BiFunction,BinaryOperator)", "", "Argument[1..2].ReturnValue", "ReturnValue", "value", "manual"]
+      - ["java.util.stream", "Stream", True, "reduce", "(Object,BinaryOperator)", "", "Argument[-1].Element", "Argument[1].Parameter[0..1]", "value", "manual"]
+      - ["java.util.stream", "Stream", True, "reduce", "(Object,BinaryOperator)", "", "Argument[0]", "Argument[1].Parameter[0..1]", "value", "manual"]
+      - ["java.util.stream", "Stream", True, "reduce", "(Object,BinaryOperator)", "", "Argument[0]", "ReturnValue", "value", "manual"]
+      - ["java.util.stream", "Stream", True, "reduce", "(Object,BinaryOperator)", "", "Argument[1].ReturnValue", "Argument[1].Parameter[0..1]", "value", "manual"]
+      - ["java.util.stream", "Stream", True, "reduce", "(Object,BinaryOperator)", "", "Argument[1].ReturnValue", "ReturnValue", "value", "manual"]
+      - ["java.util.stream", "Stream", True, "skip", "(long)", "", "Argument[-1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["java.util.stream", "Stream", True, "sorted", "", "", "Argument[-1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["java.util.stream", "Stream", True, "sorted", "(Comparator)", "", "Argument[-1].Element", "Argument[0].Parameter[0..1]", "value", "manual"]
+      - ["java.util.stream", "Stream", True, "takeWhile", "(Predicate)", "", "Argument[-1].Element", "Argument[0].Parameter[0]", "value", "manual"]
+      - ["java.util.stream", "Stream", True, "takeWhile", "(Predicate)", "", "Argument[-1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["java.util.stream", "Stream", True, "toArray", "", "", "Argument[-1].Element", "ReturnValue.ArrayElement", "value", "manual"]
+      - ["java.util.stream", "Stream", True, "toList", "()", "", "Argument[-1].Element", "ReturnValue.Element", "value", "manual"]
diff --git a/java/ql/lib/ext/java.util.zip.model.yml b/java/ql/lib/ext/java.util.zip.model.yml
new file mode 100644
index 00000000000..a65be51a58c
--- /dev/null
+++ b/java/ql/lib/ext/java.util.zip.model.yml
@@ -0,0 +1,7 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSummaryModel
+    data:
+      - ["java.util.zip", "GZIPInputStream", False, "GZIPInputStream", "", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["java.util.zip", "ZipInputStream", False, "ZipInputStream", "", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
diff --git a/java/ql/lib/ext/javax.faces.context.model.yml b/java/ql/lib/ext/javax.faces.context.model.yml
new file mode 100644
index 00000000000..b3d9af75ef6
--- /dev/null
+++ b/java/ql/lib/ext/javax.faces.context.model.yml
@@ -0,0 +1,18 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSourceModel
+    data:
+      - ["javax.faces.context", "ExternalContext", True, "getRequestCookieMap", "()", "", "ReturnValue", "remote", "manual"]
+      - ["javax.faces.context", "ExternalContext", True, "getRequestHeaderMap", "()", "", "ReturnValue", "remote", "manual"]
+      - ["javax.faces.context", "ExternalContext", True, "getRequestHeaderValuesMap", "()", "", "ReturnValue", "remote", "manual"]
+      - ["javax.faces.context", "ExternalContext", True, "getRequestParameterMap", "()", "", "ReturnValue", "remote", "manual"]
+      - ["javax.faces.context", "ExternalContext", True, "getRequestParameterNames", "()", "", "ReturnValue", "remote", "manual"]
+      - ["javax.faces.context", "ExternalContext", True, "getRequestParameterValuesMap", "()", "", "ReturnValue", "remote", "manual"]
+      - ["javax.faces.context", "ExternalContext", True, "getRequestPathInfo", "()", "", "ReturnValue", "remote", "manual"]
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSinkModel
+    data:
+      - ["javax.faces.context", "ResponseStream", True, "write", "", "", "Argument[0]", "xss", "manual"]
+      - ["javax.faces.context", "ResponseWriter", True, "write", "", "", "Argument[0]", "xss", "manual"]
diff --git a/java/ql/lib/ext/javax.jms.model.yml b/java/ql/lib/ext/javax.jms.model.yml
new file mode 100644
index 00000000000..9f153e35370
--- /dev/null
+++ b/java/ql/lib/ext/javax.jms.model.yml
@@ -0,0 +1,75 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSourceModel
+    data:
+      - ["javax.jms", "JMSConsumer", True, "receive", "", "", "ReturnValue", "remote", "manual"]
+      - ["javax.jms", "JMSConsumer", True, "receiveBody", "", "", "ReturnValue", "remote", "manual"]
+      - ["javax.jms", "JMSConsumer", True, "receiveBodyNoWait", "()", "", "ReturnValue", "remote", "manual"]
+      - ["javax.jms", "JMSConsumer", True, "receiveNoWait", "()", "", "ReturnValue", "remote", "manual"]
+      - ["javax.jms", "MessageConsumer", True, "receive", "", "", "ReturnValue", "remote", "manual"]
+      - ["javax.jms", "MessageConsumer", True, "receiveNoWait", "()", "", "ReturnValue", "remote", "manual"]
+      - ["javax.jms", "MessageListener", True, "onMessage", "(Message)", "", "Parameter[0]", "remote", "manual"]
+      - ["javax.jms", "QueueRequestor", True, "request", "(Message)", "", "ReturnValue", "remote", "manual"]
+      - ["javax.jms", "TopicRequestor", True, "request", "(Message)", "", "ReturnValue", "remote", "manual"]
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSummaryModel
+    data:
+      - ["javax.jms", "BytesMessage", True, "readBoolean", "()", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["javax.jms", "BytesMessage", True, "readByte", "()", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["javax.jms", "BytesMessage", True, "readBytes", "", "", "Argument[-1]", "Argument[0]", "taint", "manual"]
+      - ["javax.jms", "BytesMessage", True, "readChar", "()", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["javax.jms", "BytesMessage", True, "readDouble", "()", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["javax.jms", "BytesMessage", True, "readFloat", "()", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["javax.jms", "BytesMessage", True, "readInt", "()", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["javax.jms", "BytesMessage", True, "readLong", "()", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["javax.jms", "BytesMessage", True, "readShort", "()", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["javax.jms", "BytesMessage", True, "readUTF", "()", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["javax.jms", "BytesMessage", True, "readUnsignedByte", "()", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["javax.jms", "BytesMessage", True, "readUnsignedShort", "()", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["javax.jms", "MapMessage", True, "getBoolean", "(String)", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["javax.jms", "MapMessage", True, "getByte", "(String)", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["javax.jms", "MapMessage", True, "getBytes", "(String)", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["javax.jms", "MapMessage", True, "getChar", "(String)", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["javax.jms", "MapMessage", True, "getDouble", "(String)", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["javax.jms", "MapMessage", True, "getFloat", "(String)", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["javax.jms", "MapMessage", True, "getInt", "(String)", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["javax.jms", "MapMessage", True, "getLong", "(String)", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["javax.jms", "MapMessage", True, "getMapNames", "()", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["javax.jms", "MapMessage", True, "getObject", "(String)", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["javax.jms", "MapMessage", True, "getShort", "(String)", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["javax.jms", "MapMessage", True, "getString", "(String)", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["javax.jms", "Message", True, "getBody", "()", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["javax.jms", "Message", True, "getBooleanProperty", "()", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["javax.jms", "Message", True, "getByteProperty", "()", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["javax.jms", "Message", True, "getDoubleProperty", "()", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["javax.jms", "Message", True, "getFloatProperty", "()", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["javax.jms", "Message", True, "getIntProperty", "()", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["javax.jms", "Message", True, "getJMSCorrelationID", "()", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["javax.jms", "Message", True, "getJMSCorrelationIDAsBytes", "()", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["javax.jms", "Message", True, "getJMSDestination", "()", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["javax.jms", "Message", True, "getJMSReplyTo", "()", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["javax.jms", "Message", True, "getJMSType", "()", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["javax.jms", "Message", True, "getLongProperty", "()", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["javax.jms", "Message", True, "getObjectProperty", "()", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["javax.jms", "Message", True, "getPropertyNames", "()", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["javax.jms", "Message", True, "getShortProperty", "()", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["javax.jms", "Message", True, "getStringProperty", "()", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["javax.jms", "ObjectMessage", True, "getObject", "()", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["javax.jms", "Queue", True, "getQueueName", "()", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["javax.jms", "Queue", True, "toString", "()", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["javax.jms", "StreamMessage", True, "readBoolean", "()", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["javax.jms", "StreamMessage", True, "readByte", "()", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["javax.jms", "StreamMessage", True, "readBytes", "(byte[])", "", "Argument[-1]", "Argument[0]", "taint", "manual"]
+      - ["javax.jms", "StreamMessage", True, "readChar", "()", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["javax.jms", "StreamMessage", True, "readDouble", "()", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["javax.jms", "StreamMessage", True, "readFloat", "()", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["javax.jms", "StreamMessage", True, "readInt", "()", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["javax.jms", "StreamMessage", True, "readLong", "()", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["javax.jms", "StreamMessage", True, "readObject", "()", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["javax.jms", "StreamMessage", True, "readShort", "()", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["javax.jms", "StreamMessage", True, "readString", "()", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["javax.jms", "TextMessage", True, "getText", "()", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["javax.jms", "Topic", True, "getTopicName", "()", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["javax.jms", "Topic", True, "toString", "()", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
diff --git a/java/ql/lib/ext/javax.json.model.yml b/java/ql/lib/ext/javax.json.model.yml
new file mode 100644
index 00000000000..2771ce69f6b
--- /dev/null
+++ b/java/ql/lib/ext/javax.json.model.yml
@@ -0,0 +1,127 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSummaryModel
+    data:
+      - ["javax.json", "Json", False, "createArrayBuilder", "(Collection)", "", "Argument[0].Element", "ReturnValue", "taint", "manual"]
+      - ["javax.json", "Json", False, "createArrayBuilder", "(JsonArray)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["javax.json", "Json", False, "createDiff", "", "", "Argument[0..1]", "ReturnValue", "taint", "manual"]
+      - ["javax.json", "Json", False, "createMergeDiff", "", "", "Argument[0..1]", "ReturnValue", "taint", "manual"]
+      - ["javax.json", "Json", False, "createMergePatch", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["javax.json", "Json", False, "createObjectBuilder", "(JsonObject)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["javax.json", "Json", False, "createObjectBuilder", "(Map)", "", "Argument[0].MapKey", "ReturnValue", "taint", "manual"]
+      - ["javax.json", "Json", False, "createObjectBuilder", "(Map)", "", "Argument[0].MapValue", "ReturnValue", "taint", "manual"]
+      - ["javax.json", "Json", False, "createPatch", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["javax.json", "Json", False, "createPatchBuilder", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["javax.json", "Json", False, "createPointer", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["javax.json", "Json", False, "createReader", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["javax.json", "Json", False, "createValue", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["javax.json", "Json", False, "createWriter", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["javax.json", "Json", False, "decodePointer", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["javax.json", "Json", False, "encodePointer", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["javax.json", "JsonArray", False, "getBoolean", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["javax.json", "JsonArray", False, "getBoolean", "", "", "Argument[1]", "ReturnValue", "value", "manual"]
+      - ["javax.json", "JsonArray", False, "getInt", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["javax.json", "JsonArray", False, "getInt", "", "", "Argument[1]", "ReturnValue", "value", "manual"]
+      - ["javax.json", "JsonArray", False, "getJsonArray", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["javax.json", "JsonArray", False, "getJsonNumber", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["javax.json", "JsonArray", False, "getJsonObject", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["javax.json", "JsonArray", False, "getJsonString", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["javax.json", "JsonArray", False, "getString", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["javax.json", "JsonArray", False, "getString", "", "", "Argument[1]", "ReturnValue", "value", "manual"]
+      - ["javax.json", "JsonArray", False, "getValuesAs", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["javax.json", "JsonArrayBuilder", False, "add", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["javax.json", "JsonArrayBuilder", False, "add", "(BigDecimal)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["javax.json", "JsonArrayBuilder", False, "add", "(BigInteger)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["javax.json", "JsonArrayBuilder", False, "add", "(JsonArrayBuilder)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["javax.json", "JsonArrayBuilder", False, "add", "(JsonObjectBuilder)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["javax.json", "JsonArrayBuilder", False, "add", "(JsonValue)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["javax.json", "JsonArrayBuilder", False, "add", "(String)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["javax.json", "JsonArrayBuilder", False, "add", "(boolean)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["javax.json", "JsonArrayBuilder", False, "add", "(double)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["javax.json", "JsonArrayBuilder", False, "add", "(int)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["javax.json", "JsonArrayBuilder", False, "add", "(int,BigDecimal)", "", "Argument[1]", "Argument[-1]", "taint", "manual"]
+      - ["javax.json", "JsonArrayBuilder", False, "add", "(int,BigInteger)", "", "Argument[1]", "Argument[-1]", "taint", "manual"]
+      - ["javax.json", "JsonArrayBuilder", False, "add", "(int,JsonArrayBuilder)", "", "Argument[1]", "Argument[-1]", "taint", "manual"]
+      - ["javax.json", "JsonArrayBuilder", False, "add", "(int,JsonObjectBuilder)", "", "Argument[1]", "Argument[-1]", "taint", "manual"]
+      - ["javax.json", "JsonArrayBuilder", False, "add", "(int,JsonValue)", "", "Argument[1]", "Argument[-1]", "taint", "manual"]
+      - ["javax.json", "JsonArrayBuilder", False, "add", "(int,String)", "", "Argument[1]", "Argument[-1]", "taint", "manual"]
+      - ["javax.json", "JsonArrayBuilder", False, "add", "(int,boolean)", "", "Argument[1]", "Argument[-1]", "taint", "manual"]
+      - ["javax.json", "JsonArrayBuilder", False, "add", "(int,double)", "", "Argument[1]", "Argument[-1]", "taint", "manual"]
+      - ["javax.json", "JsonArrayBuilder", False, "add", "(int,int)", "", "Argument[1]", "Argument[-1]", "taint", "manual"]
+      - ["javax.json", "JsonArrayBuilder", False, "add", "(int,long)", "", "Argument[1]", "Argument[-1]", "taint", "manual"]
+      - ["javax.json", "JsonArrayBuilder", False, "add", "(long)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["javax.json", "JsonArrayBuilder", False, "addAll", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["javax.json", "JsonArrayBuilder", False, "addAll", "", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["javax.json", "JsonArrayBuilder", False, "addNull", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["javax.json", "JsonArrayBuilder", False, "build", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["javax.json", "JsonArrayBuilder", False, "remove", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["javax.json", "JsonArrayBuilder", False, "set", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["javax.json", "JsonArrayBuilder", False, "set", "", "", "Argument[1]", "Argument[-1]", "taint", "manual"]
+      - ["javax.json", "JsonArrayBuilder", False, "setNull", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["javax.json", "JsonMergePatch", False, "apply", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["javax.json", "JsonMergePatch", False, "apply", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["javax.json", "JsonMergePatch", False, "toJsonValue", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["javax.json", "JsonNumber", False, "bigDecimalValue", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["javax.json", "JsonNumber", False, "bigIntegerValue", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["javax.json", "JsonNumber", False, "bigIntegerValueExact", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["javax.json", "JsonNumber", False, "doubleValue", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["javax.json", "JsonNumber", False, "intValue", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["javax.json", "JsonNumber", False, "intValueExact", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["javax.json", "JsonNumber", False, "longValue", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["javax.json", "JsonNumber", False, "longValueExact", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["javax.json", "JsonNumber", False, "numberValue", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["javax.json", "JsonObject", False, "getBoolean", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["javax.json", "JsonObject", False, "getBoolean", "", "", "Argument[1]", "ReturnValue", "value", "manual"]
+      - ["javax.json", "JsonObject", False, "getInt", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["javax.json", "JsonObject", False, "getInt", "", "", "Argument[1]", "ReturnValue", "value", "manual"]
+      - ["javax.json", "JsonObject", False, "getJsonArray", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["javax.json", "JsonObject", False, "getJsonNumber", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["javax.json", "JsonObject", False, "getJsonObject", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["javax.json", "JsonObject", False, "getJsonString", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["javax.json", "JsonObject", False, "getString", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["javax.json", "JsonObject", False, "getString", "", "", "Argument[1]", "ReturnValue", "value", "manual"]
+      - ["javax.json", "JsonObjectBuilder", False, "add", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["javax.json", "JsonObjectBuilder", False, "add", "", "", "Argument[1]", "Argument[-1]", "taint", "manual"]
+      - ["javax.json", "JsonObjectBuilder", False, "addAll", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["javax.json", "JsonObjectBuilder", False, "addAll", "", "", "Argument[0]", "ReturnValue", "value", "manual"]
+      - ["javax.json", "JsonObjectBuilder", False, "addNull", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["javax.json", "JsonObjectBuilder", False, "build", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["javax.json", "JsonObjectBuilder", False, "remove", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["javax.json", "JsonPatch", False, "apply", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["javax.json", "JsonPatch", False, "apply", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["javax.json", "JsonPatch", False, "toJsonArray", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["javax.json", "JsonPatchBuilder", False, "add", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["javax.json", "JsonPatchBuilder", False, "add", "", "", "Argument[0..1]", "ReturnValue", "taint", "manual"]
+      - ["javax.json", "JsonPatchBuilder", False, "build", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["javax.json", "JsonPatchBuilder", False, "copy", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["javax.json", "JsonPatchBuilder", False, "copy", "", "", "Argument[0..1]", "ReturnValue", "taint", "manual"]
+      - ["javax.json", "JsonPatchBuilder", False, "move", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["javax.json", "JsonPatchBuilder", False, "move", "", "", "Argument[0..1]", "ReturnValue", "taint", "manual"]
+      - ["javax.json", "JsonPatchBuilder", False, "remove", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["javax.json", "JsonPatchBuilder", False, "remove", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["javax.json", "JsonPatchBuilder", False, "replace", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["javax.json", "JsonPatchBuilder", False, "replace", "", "", "Argument[0..1]", "ReturnValue", "taint", "manual"]
+      - ["javax.json", "JsonPatchBuilder", False, "test", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["javax.json", "JsonPatchBuilder", False, "test", "", "", "Argument[0..1]", "ReturnValue", "taint", "manual"]
+      - ["javax.json", "JsonPointer", False, "add", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["javax.json", "JsonPointer", False, "add", "", "", "Argument[0..1]", "ReturnValue", "taint", "manual"]
+      - ["javax.json", "JsonPointer", False, "getValue", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["javax.json", "JsonPointer", False, "remove", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["javax.json", "JsonPointer", False, "replace", "", "", "Argument[0..1]", "ReturnValue", "taint", "manual"]
+      - ["javax.json", "JsonPointer", False, "toString", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["javax.json", "JsonReader", False, "read", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["javax.json", "JsonReader", False, "readArray", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["javax.json", "JsonReader", False, "readObject", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["javax.json", "JsonReader", False, "readValue", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["javax.json", "JsonReaderFactory", False, "createReader", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["javax.json", "JsonString", False, "getChars", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["javax.json", "JsonString", False, "getString", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["javax.json", "JsonStructure", True, "getValue", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["javax.json", "JsonValue", True, "asJsonArray", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["javax.json", "JsonValue", True, "asJsonObject", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["javax.json", "JsonValue", True, "toString", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["javax.json", "JsonWriter", False, "write", "", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["javax.json", "JsonWriter", False, "writeArray", "", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["javax.json", "JsonWriter", False, "writeObject", "", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["javax.json", "JsonWriterFactory", False, "createWriter", "", "", "Argument[-1]", "Argument[0]", "taint", "manual"]
diff --git a/java/ql/lib/ext/javax.json.stream.model.yml b/java/ql/lib/ext/javax.json.stream.model.yml
new file mode 100644
index 00000000000..f354b3bed5b
--- /dev/null
+++ b/java/ql/lib/ext/javax.json.stream.model.yml
@@ -0,0 +1,6 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSummaryModel
+    data:
+      - ["javax.json.stream", "JsonParserFactory", False, "createParser", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
diff --git a/java/ql/lib/ext/javax.management.remote.model.yml b/java/ql/lib/ext/javax.management.remote.model.yml
new file mode 100644
index 00000000000..da3ab68968c
--- /dev/null
+++ b/java/ql/lib/ext/javax.management.remote.model.yml
@@ -0,0 +1,7 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSinkModel
+    data:
+      - ["javax.management.remote", "JMXConnector", True, "connect", "", "", "Argument[-1]", "jndi-injection", "manual"]
+      - ["javax.management.remote", "JMXConnectorFactory", False, "connect", "", "", "Argument[0]", "jndi-injection", "manual"]
diff --git a/java/ql/lib/ext/javax.naming.directory.model.yml b/java/ql/lib/ext/javax.naming.directory.model.yml
new file mode 100644
index 00000000000..d4ff18a773c
--- /dev/null
+++ b/java/ql/lib/ext/javax.naming.directory.model.yml
@@ -0,0 +1,6 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSinkModel
+    data:
+      - ["javax.naming.directory", "DirContext", True, "search", "", "", "Argument[0..1]", "ldap", "manual"]
diff --git a/java/ql/lib/ext/javax.naming.model.yml b/java/ql/lib/ext/javax.naming.model.yml
new file mode 100644
index 00000000000..7a29b0640a6
--- /dev/null
+++ b/java/ql/lib/ext/javax.naming.model.yml
@@ -0,0 +1,11 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSinkModel
+    data:
+      - ["javax.naming", "Context", True, "list", "", "", "Argument[0]", "jndi-injection", "manual"]
+      - ["javax.naming", "Context", True, "listBindings", "", "", "Argument[0]", "jndi-injection", "manual"]
+      - ["javax.naming", "Context", True, "lookup", "", "", "Argument[0]", "jndi-injection", "manual"]
+      - ["javax.naming", "Context", True, "lookupLink", "", "", "Argument[0]", "jndi-injection", "manual"]
+      - ["javax.naming", "Context", True, "rename", "", "", "Argument[0]", "jndi-injection", "manual"]
+      - ["javax.naming", "InitialContext", True, "doLookup", "", "", "Argument[0]", "jndi-injection", "manual"]
diff --git a/java/ql/lib/ext/javax.net.ssl.model.yml b/java/ql/lib/ext/javax.net.ssl.model.yml
new file mode 100644
index 00000000000..f0b7b516595
--- /dev/null
+++ b/java/ql/lib/ext/javax.net.ssl.model.yml
@@ -0,0 +1,7 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSinkModel
+    data:
+      - ["javax.net.ssl", "HttpsURLConnection", True, "setDefaultHostnameVerifier", "", "", "Argument[0]", "set-hostname-verifier", "manual"]
+      - ["javax.net.ssl", "HttpsURLConnection", True, "setHostnameVerifier", "", "", "Argument[0]", "set-hostname-verifier", "manual"]
diff --git a/java/ql/lib/ext/javax.script.model.yml b/java/ql/lib/ext/javax.script.model.yml
new file mode 100644
index 00000000000..675055758e1
--- /dev/null
+++ b/java/ql/lib/ext/javax.script.model.yml
@@ -0,0 +1,6 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSinkModel
+    data:
+      - ["javax.script", "CompiledScript", False, "eval", "", "", "Argument[-1]", "mvel", "manual"]
diff --git a/java/ql/lib/ext/javax.servlet.http.model.yml b/java/ql/lib/ext/javax.servlet.http.model.yml
new file mode 100644
index 00000000000..469424e4021
--- /dev/null
+++ b/java/ql/lib/ext/javax.servlet.http.model.yml
@@ -0,0 +1,34 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSourceModel
+    data:
+      - ["javax.servlet.http", "Cookie", False, "getComment", "()", "", "ReturnValue", "remote", "manual"]
+      - ["javax.servlet.http", "Cookie", False, "getName", "()", "", "ReturnValue", "remote", "manual"]
+      - ["javax.servlet.http", "Cookie", False, "getValue", "()", "", "ReturnValue", "remote", "manual"]
+      - ["javax.servlet.http", "HttpServletRequest", False, "getHeader", "(String)", "", "ReturnValue", "remote", "manual"]
+      - ["javax.servlet.http", "HttpServletRequest", False, "getHeaderNames", "()", "", "ReturnValue", "remote", "manual"]
+      - ["javax.servlet.http", "HttpServletRequest", False, "getHeaders", "(String)", "", "ReturnValue", "remote", "manual"]
+      - ["javax.servlet.http", "HttpServletRequest", False, "getParameter", "(String)", "", "ReturnValue", "remote", "manual"]
+      - ["javax.servlet.http", "HttpServletRequest", False, "getParameterMap", "()", "", "ReturnValue", "remote", "manual"]
+      - ["javax.servlet.http", "HttpServletRequest", False, "getParameterNames", "()", "", "ReturnValue", "remote", "manual"]
+      - ["javax.servlet.http", "HttpServletRequest", False, "getParameterValues", "(String)", "", "ReturnValue", "remote", "manual"]
+      - ["javax.servlet.http", "HttpServletRequest", False, "getPathInfo", "()", "", "ReturnValue", "remote", "manual"]
+      - ["javax.servlet.http", "HttpServletRequest", False, "getQueryString", "()", "", "ReturnValue", "remote", "manual"]
+      - ["javax.servlet.http", "HttpServletRequest", False, "getRemoteUser", "()", "", "ReturnValue", "remote", "manual"]
+      - ["javax.servlet.http", "HttpServletRequest", False, "getRequestURI", "()", "", "ReturnValue", "remote", "manual"]
+      - ["javax.servlet.http", "HttpServletRequest", False, "getRequestURL", "()", "", "ReturnValue", "remote", "manual"]
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSinkModel
+    data:
+      - ["javax.servlet.http", "HttpServletResponse", False, "addCookie", "", "", "Argument[0]", "header-splitting", "manual"]
+      - ["javax.servlet.http", "HttpServletResponse", False, "addHeader", "", "", "Argument[0..1]", "header-splitting", "manual"]
+      - ["javax.servlet.http", "HttpServletResponse", False, "sendError", "(int,String)", "", "Argument[1]", "information-leak", "manual"]
+      - ["javax.servlet.http", "HttpServletResponse", False, "setHeader", "", "", "Argument[0..1]", "header-splitting", "manual"]
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSummaryModel
+    data:
+      - ["javax.servlet.http", "Cookie", False, "Cookie", "", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["javax.servlet.http", "Cookie", False, "Cookie", "", "", "Argument[1]", "Argument[-1]", "taint", "manual"]
diff --git a/java/ql/lib/ext/javax.servlet.model.yml b/java/ql/lib/ext/javax.servlet.model.yml
new file mode 100644
index 00000000000..accfa736f82
--- /dev/null
+++ b/java/ql/lib/ext/javax.servlet.model.yml
@@ -0,0 +1,11 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSourceModel
+    data:
+      - ["javax.servlet", "ServletRequest", False, "getInputStream", "()", "", "ReturnValue", "remote", "manual"]
+      - ["javax.servlet", "ServletRequest", False, "getParameter", "(String)", "", "ReturnValue", "remote", "manual"]
+      - ["javax.servlet", "ServletRequest", False, "getParameterMap", "()", "", "ReturnValue", "remote", "manual"]
+      - ["javax.servlet", "ServletRequest", False, "getParameterNames", "()", "", "ReturnValue", "remote", "manual"]
+      - ["javax.servlet", "ServletRequest", False, "getParameterValues", "(String)", "", "ReturnValue", "remote", "manual"]
+      - ["javax.servlet", "ServletRequest", False, "getReader", "()", "", "ReturnValue", "remote", "manual"]
diff --git a/java/ql/lib/ext/javax.validation.model.yml b/java/ql/lib/ext/javax.validation.model.yml
new file mode 100644
index 00000000000..464b95dfb11
--- /dev/null
+++ b/java/ql/lib/ext/javax.validation.model.yml
@@ -0,0 +1,11 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSourceModel
+    data:
+      - ["javax.validation", "ConstraintValidator", True, "isValid", "", "", "Parameter[0]", "remote", "manual"]
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSinkModel
+    data:
+      - ["javax.validation", "ConstraintValidatorContext", True, "buildConstraintViolationWithTemplate", "", "", "Argument[0]", "bean-validation", "manual"]
diff --git a/java/ql/lib/ext/javax.ws.rs.client.model.yml b/java/ql/lib/ext/javax.ws.rs.client.model.yml
new file mode 100644
index 00000000000..b2fb8b75ad0
--- /dev/null
+++ b/java/ql/lib/ext/javax.ws.rs.client.model.yml
@@ -0,0 +1,6 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSinkModel
+    data:
+      - ["javax.ws.rs.client", "Client", True, "target", "", "", "Argument[0]", "open-url", "manual"]
diff --git a/java/ql/lib/ext/javax.ws.rs.container.model.yml b/java/ql/lib/ext/javax.ws.rs.container.model.yml
new file mode 100644
index 00000000000..1277c14a663
--- /dev/null
+++ b/java/ql/lib/ext/javax.ws.rs.container.model.yml
@@ -0,0 +1,14 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSourceModel
+    data:
+      - ["javax.ws.rs.container", "ContainerRequestContext", True, "getAcceptableLanguages", "", "", "ReturnValue", "remote", "manual"]
+      - ["javax.ws.rs.container", "ContainerRequestContext", True, "getAcceptableMediaTypes", "", "", "ReturnValue", "remote", "manual"]
+      - ["javax.ws.rs.container", "ContainerRequestContext", True, "getCookies", "", "", "ReturnValue", "remote", "manual"]
+      - ["javax.ws.rs.container", "ContainerRequestContext", True, "getEntityStream", "", "", "ReturnValue", "remote", "manual"]
+      - ["javax.ws.rs.container", "ContainerRequestContext", True, "getHeaderString", "", "", "ReturnValue", "remote", "manual"]
+      - ["javax.ws.rs.container", "ContainerRequestContext", True, "getHeaders", "", "", "ReturnValue", "remote", "manual"]
+      - ["javax.ws.rs.container", "ContainerRequestContext", True, "getLanguage", "", "", "ReturnValue", "remote", "manual"]
+      - ["javax.ws.rs.container", "ContainerRequestContext", True, "getMediaType", "", "", "ReturnValue", "remote", "manual"]
+      - ["javax.ws.rs.container", "ContainerRequestContext", True, "getUriInfo", "", "", "ReturnValue", "remote", "manual"]
diff --git a/java/ql/lib/ext/javax.ws.rs.core.model.yml b/java/ql/lib/ext/javax.ws.rs.core.model.yml
new file mode 100644
index 00000000000..079f1afa9d2
--- /dev/null
+++ b/java/ql/lib/ext/javax.ws.rs.core.model.yml
@@ -0,0 +1,161 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSinkModel
+    data:
+      - ["javax.ws.rs.core", "Response", True, "seeOther", "", "", "Argument[0]", "url-redirect", "manual"]
+      - ["javax.ws.rs.core", "Response", True, "temporaryRedirect", "", "", "Argument[0]", "url-redirect", "manual"]
+      - ["javax.ws.rs.core", "ResponseBuilder", False, "header", "", "", "Argument[1]", "header-splitting", "manual"]
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSummaryModel
+    data:
+      - ["javax.ws.rs.core", "AbstractMultivaluedMap", False, "AbstractMultivaluedMap", "", "", "Argument[0].MapKey", "Argument[-1].MapKey", "value", "manual"]
+      - ["javax.ws.rs.core", "AbstractMultivaluedMap", False, "AbstractMultivaluedMap", "", "", "Argument[0].MapValue", "Argument[-1].MapValue", "value", "manual"]
+      - ["javax.ws.rs.core", "Cookie", False, "Cookie", "", "", "Argument[0..4]", "Argument[-1]", "taint", "manual"]
+      - ["javax.ws.rs.core", "Cookie", True, "getDomain", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["javax.ws.rs.core", "Cookie", True, "getName", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["javax.ws.rs.core", "Cookie", True, "getPath", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["javax.ws.rs.core", "Cookie", True, "getValue", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["javax.ws.rs.core", "Cookie", True, "getVersion", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["javax.ws.rs.core", "Cookie", True, "toString", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["javax.ws.rs.core", "Cookie", False, "valueOf", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["javax.ws.rs.core", "Form", False, "Form", "", "", "Argument[0..1]", "Argument[-1]", "taint", "manual"]
+      - ["javax.ws.rs.core", "Form", False, "Form", "", "", "Argument[0].MapKey", "Argument[-1]", "taint", "manual"]
+      - ["javax.ws.rs.core", "Form", False, "Form", "", "", "Argument[0].MapValue.Element", "Argument[-1]", "taint", "manual"]
+      - ["javax.ws.rs.core", "Form", True, "asMap", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["javax.ws.rs.core", "Form", True, "param", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["javax.ws.rs.core", "Form", True, "param", "", "", "Argument[0..1]", "Argument[-1]", "taint", "manual"]
+      - ["javax.ws.rs.core", "GenericEntity", False, "GenericEntity", "", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["javax.ws.rs.core", "GenericEntity", True, "getEntity", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["javax.ws.rs.core", "HttpHeaders", True, "getAcceptableLanguages", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["javax.ws.rs.core", "HttpHeaders", True, "getAcceptableMediaTypes", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["javax.ws.rs.core", "HttpHeaders", True, "getCookies", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["javax.ws.rs.core", "HttpHeaders", True, "getHeaderString", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["javax.ws.rs.core", "HttpHeaders", True, "getLanguage", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["javax.ws.rs.core", "HttpHeaders", True, "getMediaType", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["javax.ws.rs.core", "HttpHeaders", True, "getRequestHeader", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["javax.ws.rs.core", "HttpHeaders", True, "getRequestHeaders", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["javax.ws.rs.core", "MediaType", False, "MediaType", "", "", "Argument[0..2]", "Argument[-1]", "taint", "manual"]
+      - ["javax.ws.rs.core", "MediaType", True, "getParameters", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["javax.ws.rs.core", "MediaType", True, "getSubtype", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["javax.ws.rs.core", "MediaType", True, "getType", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["javax.ws.rs.core", "MediaType", False, "valueOf", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["javax.ws.rs.core", "MediaType", True, "withCharset", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["javax.ws.rs.core", "MultivaluedHashMap", False, "MultivaluedHashMap", "(Map)", "", "Argument[0].MapKey", "Argument[-1].MapKey", "value", "manual"]
+      - ["javax.ws.rs.core", "MultivaluedHashMap", False, "MultivaluedHashMap", "(Map)", "", "Argument[0].MapValue", "Argument[-1].MapValue.Element", "value", "manual"]
+      - ["javax.ws.rs.core", "MultivaluedHashMap", False, "MultivaluedHashMap", "(MultivaluedMap)", "", "Argument[0].MapKey", "Argument[-1].MapKey", "value", "manual"]
+      - ["javax.ws.rs.core", "MultivaluedHashMap", False, "MultivaluedHashMap", "(MultivaluedMap)", "", "Argument[0].MapValue", "Argument[-1].MapValue", "value", "manual"]
+      - ["javax.ws.rs.core", "MultivaluedMap", True, "add", "", "", "Argument[0]", "Argument[-1].MapKey", "value", "manual"]
+      - ["javax.ws.rs.core", "MultivaluedMap", True, "add", "", "", "Argument[1]", "Argument[-1].MapValue.Element", "value", "manual"]
+      - ["javax.ws.rs.core", "MultivaluedMap", True, "addAll", "", "", "Argument[0]", "Argument[-1].MapKey", "value", "manual"]
+      - ["javax.ws.rs.core", "MultivaluedMap", True, "addAll", "(Object,List)", "", "Argument[1].Element", "Argument[-1].MapValue.Element", "value", "manual"]
+      - ["javax.ws.rs.core", "MultivaluedMap", True, "addAll", "(Object,Object[])", "", "Argument[1].ArrayElement", "Argument[-1].MapValue.Element", "value", "manual"]
+      - ["javax.ws.rs.core", "MultivaluedMap", True, "addFirst", "", "", "Argument[0]", "Argument[-1].MapKey", "value", "manual"]
+      - ["javax.ws.rs.core", "MultivaluedMap", True, "addFirst", "", "", "Argument[1]", "Argument[-1].MapValue.Element", "value", "manual"]
+      - ["javax.ws.rs.core", "MultivaluedMap", True, "getFirst", "", "", "Argument[-1].MapValue.Element", "ReturnValue", "value", "manual"]
+      - ["javax.ws.rs.core", "MultivaluedMap", True, "putSingle", "", "", "Argument[0]", "Argument[-1].MapKey", "value", "manual"]
+      - ["javax.ws.rs.core", "MultivaluedMap", True, "putSingle", "", "", "Argument[1]", "Argument[-1].MapValue.Element", "value", "manual"]
+      - ["javax.ws.rs.core", "NewCookie", False, "NewCookie", "", "", "Argument[0..9]", "Argument[-1]", "taint", "manual"]
+      - ["javax.ws.rs.core", "NewCookie", True, "getComment", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["javax.ws.rs.core", "NewCookie", True, "getExpiry", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["javax.ws.rs.core", "NewCookie", True, "getMaxAge", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["javax.ws.rs.core", "NewCookie", True, "toCookie", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["javax.ws.rs.core", "NewCookie", False, "valueOf", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["javax.ws.rs.core", "PathSegment", True, "getMatrixParameters", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["javax.ws.rs.core", "PathSegment", True, "getPath", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["javax.ws.rs.core", "Response", False, "accepted", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["javax.ws.rs.core", "Response", False, "fromResponse", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["javax.ws.rs.core", "Response", False, "ok", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["javax.ws.rs.core", "Response$ResponseBuilder", True, "allow", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["javax.ws.rs.core", "Response$ResponseBuilder", True, "build", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["javax.ws.rs.core", "Response$ResponseBuilder", True, "cacheControl", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["javax.ws.rs.core", "Response$ResponseBuilder", True, "clone", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["javax.ws.rs.core", "Response$ResponseBuilder", True, "contentLocation", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["javax.ws.rs.core", "Response$ResponseBuilder", True, "cookie", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["javax.ws.rs.core", "Response$ResponseBuilder", True, "encoding", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["javax.ws.rs.core", "Response$ResponseBuilder", True, "entity", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["javax.ws.rs.core", "Response$ResponseBuilder", True, "entity", "", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["javax.ws.rs.core", "Response$ResponseBuilder", True, "expires", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["javax.ws.rs.core", "Response$ResponseBuilder", True, "header", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["javax.ws.rs.core", "Response$ResponseBuilder", True, "language", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["javax.ws.rs.core", "Response$ResponseBuilder", True, "lastModified", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["javax.ws.rs.core", "Response$ResponseBuilder", True, "link", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["javax.ws.rs.core", "Response$ResponseBuilder", True, "links", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["javax.ws.rs.core", "Response$ResponseBuilder", True, "location", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["javax.ws.rs.core", "Response$ResponseBuilder", True, "replaceAll", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["javax.ws.rs.core", "Response$ResponseBuilder", True, "status", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["javax.ws.rs.core", "Response$ResponseBuilder", True, "tag", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["javax.ws.rs.core", "Response$ResponseBuilder", True, "type", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["javax.ws.rs.core", "Response$ResponseBuilder", True, "variant", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["javax.ws.rs.core", "Response$ResponseBuilder", True, "variants", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["javax.ws.rs.core", "UriBuilder", True, "build", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["javax.ws.rs.core", "UriBuilder", True, "build", "", "", "Argument[0].ArrayElement", "ReturnValue", "taint", "manual"]
+      - ["javax.ws.rs.core", "UriBuilder", True, "buildFromEncoded", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["javax.ws.rs.core", "UriBuilder", True, "buildFromEncoded", "", "", "Argument[0].ArrayElement", "ReturnValue", "taint", "manual"]
+      - ["javax.ws.rs.core", "UriBuilder", True, "buildFromEncodedMap", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["javax.ws.rs.core", "UriBuilder", True, "buildFromEncodedMap", "", "", "Argument[0].MapKey", "ReturnValue", "taint", "manual"]
+      - ["javax.ws.rs.core", "UriBuilder", True, "buildFromEncodedMap", "", "", "Argument[0].MapValue", "ReturnValue", "taint", "manual"]
+      - ["javax.ws.rs.core", "UriBuilder", True, "buildFromMap", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["javax.ws.rs.core", "UriBuilder", True, "buildFromMap", "", "", "Argument[0].MapKey", "ReturnValue", "taint", "manual"]
+      - ["javax.ws.rs.core", "UriBuilder", True, "buildFromMap", "", "", "Argument[0].MapValue", "ReturnValue", "taint", "manual"]
+      - ["javax.ws.rs.core", "UriBuilder", True, "clone", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["javax.ws.rs.core", "UriBuilder", True, "fragment", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["javax.ws.rs.core", "UriBuilder", True, "fragment", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["javax.ws.rs.core", "UriBuilder", False, "fromLink", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["javax.ws.rs.core", "UriBuilder", False, "fromPath", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["javax.ws.rs.core", "UriBuilder", False, "fromUri", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["javax.ws.rs.core", "UriBuilder", True, "host", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["javax.ws.rs.core", "UriBuilder", True, "host", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["javax.ws.rs.core", "UriBuilder", True, "matrixParam", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["javax.ws.rs.core", "UriBuilder", True, "matrixParam", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["javax.ws.rs.core", "UriBuilder", True, "matrixParam", "", "", "Argument[1].ArrayElement", "ReturnValue", "taint", "manual"]
+      - ["javax.ws.rs.core", "UriBuilder", True, "path", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["javax.ws.rs.core", "UriBuilder", True, "path", "", "", "Argument[0..1]", "ReturnValue", "taint", "manual"]
+      - ["javax.ws.rs.core", "UriBuilder", True, "queryParam", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["javax.ws.rs.core", "UriBuilder", True, "queryParam", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["javax.ws.rs.core", "UriBuilder", True, "queryParam", "", "", "Argument[1].ArrayElement", "ReturnValue", "taint", "manual"]
+      - ["javax.ws.rs.core", "UriBuilder", True, "replaceMatrix", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["javax.ws.rs.core", "UriBuilder", True, "replaceMatrix", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["javax.ws.rs.core", "UriBuilder", True, "replaceMatrixParam", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["javax.ws.rs.core", "UriBuilder", True, "replaceMatrixParam", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["javax.ws.rs.core", "UriBuilder", True, "replaceMatrixParam", "", "", "Argument[1].ArrayElement", "ReturnValue", "taint", "manual"]
+      - ["javax.ws.rs.core", "UriBuilder", True, "replacePath", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["javax.ws.rs.core", "UriBuilder", True, "replacePath", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["javax.ws.rs.core", "UriBuilder", True, "replaceQuery", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["javax.ws.rs.core", "UriBuilder", True, "replaceQuery", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["javax.ws.rs.core", "UriBuilder", True, "replaceQueryParam", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["javax.ws.rs.core", "UriBuilder", True, "replaceQueryParam", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["javax.ws.rs.core", "UriBuilder", True, "replaceQueryParam", "", "", "Argument[1].ArrayElement", "ReturnValue", "taint", "manual"]
+      - ["javax.ws.rs.core", "UriBuilder", True, "resolveTemplate", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["javax.ws.rs.core", "UriBuilder", True, "resolveTemplate", "", "", "Argument[0..2]", "ReturnValue", "taint", "manual"]
+      - ["javax.ws.rs.core", "UriBuilder", True, "resolveTemplateFromEncoded", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["javax.ws.rs.core", "UriBuilder", True, "resolveTemplateFromEncoded", "", "", "Argument[0..1]", "ReturnValue", "taint", "manual"]
+      - ["javax.ws.rs.core", "UriBuilder", True, "resolveTemplates", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["javax.ws.rs.core", "UriBuilder", True, "resolveTemplates", "", "", "Argument[0].MapKey", "ReturnValue", "taint", "manual"]
+      - ["javax.ws.rs.core", "UriBuilder", True, "resolveTemplates", "", "", "Argument[0].MapValue", "ReturnValue", "taint", "manual"]
+      - ["javax.ws.rs.core", "UriBuilder", True, "resolveTemplatesFromEncoded", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["javax.ws.rs.core", "UriBuilder", True, "resolveTemplatesFromEncoded", "", "", "Argument[0].MapKey", "ReturnValue", "taint", "manual"]
+      - ["javax.ws.rs.core", "UriBuilder", True, "resolveTemplatesFromEncoded", "", "", "Argument[0].MapValue", "ReturnValue", "taint", "manual"]
+      - ["javax.ws.rs.core", "UriBuilder", True, "scheme", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["javax.ws.rs.core", "UriBuilder", True, "scheme", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["javax.ws.rs.core", "UriBuilder", True, "schemeSpecificPart", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["javax.ws.rs.core", "UriBuilder", True, "schemeSpecificPart", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["javax.ws.rs.core", "UriBuilder", True, "segment", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["javax.ws.rs.core", "UriBuilder", True, "segment", "", "", "Argument[0].ArrayElement", "ReturnValue", "taint", "manual"]
+      - ["javax.ws.rs.core", "UriBuilder", True, "toTemplate", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["javax.ws.rs.core", "UriBuilder", True, "uri", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["javax.ws.rs.core", "UriBuilder", True, "uri", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["javax.ws.rs.core", "UriBuilder", True, "userInfo", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["javax.ws.rs.core", "UriBuilder", True, "userInfo", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["javax.ws.rs.core", "UriInfo", True, "getAbsolutePath", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["javax.ws.rs.core", "UriInfo", True, "getAbsolutePathBuilder", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["javax.ws.rs.core", "UriInfo", True, "getPath", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["javax.ws.rs.core", "UriInfo", True, "getPathParameters", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["javax.ws.rs.core", "UriInfo", True, "getPathSegments", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["javax.ws.rs.core", "UriInfo", True, "getQueryParameters", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["javax.ws.rs.core", "UriInfo", True, "getRequestUri", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["javax.ws.rs.core", "UriInfo", True, "getRequestUriBuilder", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["javax.ws.rs.core", "UriInfo", True, "relativize", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["javax.ws.rs.core", "UriInfo", True, "resolve", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["javax.ws.rs.core", "UriInfo", True, "resolve", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
diff --git a/java/ql/lib/ext/javax.xml.transform.model.yml b/java/ql/lib/ext/javax.xml.transform.model.yml
new file mode 100644
index 00000000000..2032ecac6d6
--- /dev/null
+++ b/java/ql/lib/ext/javax.xml.transform.model.yml
@@ -0,0 +1,6 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSinkModel
+    data:
+      - ["javax.xml.transform", "Transformer", False, "transform", "", "", "Argument[-1]", "xslt", "manual"]
diff --git a/java/ql/lib/ext/javax.xml.transform.sax.model.yml b/java/ql/lib/ext/javax.xml.transform.sax.model.yml
new file mode 100644
index 00000000000..33765c1678f
--- /dev/null
+++ b/java/ql/lib/ext/javax.xml.transform.sax.model.yml
@@ -0,0 +1,9 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSummaryModel
+    data:
+      - ["javax.xml.transform.sax", "SAXSource", False, "SAXSource", "(InputSource)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["javax.xml.transform.sax", "SAXSource", False, "SAXSource", "(XMLReader,InputSource)", "", "Argument[1]", "Argument[-1]", "taint", "manual"]
+      - ["javax.xml.transform.sax", "SAXSource", False, "getInputSource", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["javax.xml.transform.sax", "SAXSource", False, "sourceToInputSource", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
diff --git a/java/ql/lib/ext/javax.xml.transform.stream.model.yml b/java/ql/lib/ext/javax.xml.transform.stream.model.yml
new file mode 100644
index 00000000000..858fbb0ab5a
--- /dev/null
+++ b/java/ql/lib/ext/javax.xml.transform.stream.model.yml
@@ -0,0 +1,7 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSummaryModel
+    data:
+      - ["javax.xml.transform.stream", "StreamSource", False, "StreamSource", "", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["javax.xml.transform.stream", "StreamSource", False, "getInputStream", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
diff --git a/java/ql/lib/ext/javax.xml.xpath.model.yml b/java/ql/lib/ext/javax.xml.xpath.model.yml
new file mode 100644
index 00000000000..24be66eb8e9
--- /dev/null
+++ b/java/ql/lib/ext/javax.xml.xpath.model.yml
@@ -0,0 +1,8 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSinkModel
+    data:
+      - ["javax.xml.xpath", "XPath", True, "compile", "", "", "Argument[0]", "xpath", "manual"]
+      - ["javax.xml.xpath", "XPath", True, "evaluate", "", "", "Argument[0]", "xpath", "manual"]
+      - ["javax.xml.xpath", "XPath", True, "evaluateExpression", "", "", "Argument[0]", "xpath", "manual"]
diff --git a/java/ql/lib/ext/jodd.json.model.yml b/java/ql/lib/ext/jodd.json.model.yml
new file mode 100644
index 00000000000..6335ce520c0
--- /dev/null
+++ b/java/ql/lib/ext/jodd.json.model.yml
@@ -0,0 +1,15 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSummaryModel
+    data:
+      - ["jodd.json", "JsonParser", False, "allowAllClasses", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["jodd.json", "JsonParser", False, "allowClass", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["jodd.json", "JsonParser", False, "lazy", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["jodd.json", "JsonParser", False, "looseMode", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["jodd.json", "JsonParser", False, "map", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["jodd.json", "JsonParser", False, "setClassMetadataName", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["jodd.json", "JsonParser", False, "strictTypes", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["jodd.json", "JsonParser", False, "useAltPaths", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["jodd.json", "JsonParser", False, "withClassMetadata", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["jodd.json", "JsonParser", False, "withValueConverter", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
diff --git a/java/ql/lib/ext/kotlin.collections.model.yml b/java/ql/lib/ext/kotlin.collections.model.yml
new file mode 100644
index 00000000000..8336bff3b0a
--- /dev/null
+++ b/java/ql/lib/ext/kotlin.collections.model.yml
@@ -0,0 +1,6 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSummaryModel
+    data:
+      - ["kotlin.collections", "ArraysKt", False, "withIndex", "(Object[])", "", "Argument[0].ArrayElement", "ReturnValue", "taint", "manual"]
diff --git a/java/ql/lib/ext/kotlin.jvm.internal.model.yml b/java/ql/lib/ext/kotlin.jvm.internal.model.yml
new file mode 100644
index 00000000000..40a6b605a53
--- /dev/null
+++ b/java/ql/lib/ext/kotlin.jvm.internal.model.yml
@@ -0,0 +1,6 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSummaryModel
+    data:
+      - ["kotlin.jvm.internal", "ArrayIteratorKt", False, "iterator", "(Object[])", "", "Argument[0].ArrayElement", "ReturnValue.Element", "value", "manual"]
diff --git a/java/ql/lib/ext/net.sf.saxon.s9api.model.yml b/java/ql/lib/ext/net.sf.saxon.s9api.model.yml
new file mode 100644
index 00000000000..7b64bdade8c
--- /dev/null
+++ b/java/ql/lib/ext/net.sf.saxon.s9api.model.yml
@@ -0,0 +1,10 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSinkModel
+    data:
+      - ["net.sf.saxon.s9api", "Xslt30Transformer", False, "applyTemplates", "", "", "Argument[-1]", "xslt", "manual"]
+      - ["net.sf.saxon.s9api", "Xslt30Transformer", False, "callFunction", "", "", "Argument[-1]", "xslt", "manual"]
+      - ["net.sf.saxon.s9api", "Xslt30Transformer", False, "callTemplate", "", "", "Argument[-1]", "xslt", "manual"]
+      - ["net.sf.saxon.s9api", "Xslt30Transformer", False, "transform", "", "", "Argument[-1]", "xslt", "manual"]
+      - ["net.sf.saxon.s9api", "XsltTransformer", False, "transform", "", "", "Argument[-1]", "xslt", "manual"]
diff --git a/java/ql/lib/ext/ognl.enhance.model.yml b/java/ql/lib/ext/ognl.enhance.model.yml
new file mode 100644
index 00000000000..c3f49d72897
--- /dev/null
+++ b/java/ql/lib/ext/ognl.enhance.model.yml
@@ -0,0 +1,7 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSinkModel
+    data:
+      - ["ognl.enhance", "ExpressionAccessor", True, "get", "", "", "Argument[-1]", "ognl-injection", "manual"]
+      - ["ognl.enhance", "ExpressionAccessor", True, "set", "", "", "Argument[-1]", "ognl-injection", "manual"]
diff --git a/java/ql/lib/ext/ognl.model.yml b/java/ql/lib/ext/ognl.model.yml
new file mode 100644
index 00000000000..133fc36b410
--- /dev/null
+++ b/java/ql/lib/ext/ognl.model.yml
@@ -0,0 +1,9 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSinkModel
+    data:
+      - ["ognl", "Node", False, "getValue", "", "", "Argument[-1]", "ognl-injection", "manual"]
+      - ["ognl", "Node", False, "setValue", "", "", "Argument[-1]", "ognl-injection", "manual"]
+      - ["ognl", "Ognl", False, "getValue", "", "", "Argument[0]", "ognl-injection", "manual"]
+      - ["ognl", "Ognl", False, "setValue", "", "", "Argument[0]", "ognl-injection", "manual"]
diff --git a/java/ql/lib/ext/okhttp3.model.yml b/java/ql/lib/ext/okhttp3.model.yml
new file mode 100644
index 00000000000..1c9032c9211
--- /dev/null
+++ b/java/ql/lib/ext/okhttp3.model.yml
@@ -0,0 +1,58 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSinkModel
+    data:
+      - ["okhttp3", "Request", True, "Request", "", "", "Argument[0]", "open-url", "manual"]
+      - ["okhttp3", "Request$Builder", True, "url", "", "", "Argument[0]", "open-url", "manual"]
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSummaryModel
+    data:
+      - ["okhttp3", "HttpUrl", False, "parse", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["okhttp3", "HttpUrl", False, "uri", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["okhttp3", "HttpUrl", False, "url", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["okhttp3", "HttpUrl$Builder", False, "addEncodedPathSegment", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["okhttp3", "HttpUrl$Builder", False, "addEncodedPathSegment", "", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["okhttp3", "HttpUrl$Builder", False, "addEncodedPathSegments", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["okhttp3", "HttpUrl$Builder", False, "addEncodedPathSegments", "", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["okhttp3", "HttpUrl$Builder", False, "addEncodedQueryParameter", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["okhttp3", "HttpUrl$Builder", False, "addEncodedQueryParameter", "", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["okhttp3", "HttpUrl$Builder", False, "addPathSegment", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["okhttp3", "HttpUrl$Builder", False, "addPathSegment", "", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["okhttp3", "HttpUrl$Builder", False, "addPathSegments", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["okhttp3", "HttpUrl$Builder", False, "addPathSegments", "", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["okhttp3", "HttpUrl$Builder", False, "addQueryParameter", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["okhttp3", "HttpUrl$Builder", False, "addQueryParameter", "", "", "Argument[0..1]", "Argument[-1]", "taint", "manual"]
+      - ["okhttp3", "HttpUrl$Builder", False, "build", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["okhttp3", "HttpUrl$Builder", False, "encodedFragment", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["okhttp3", "HttpUrl$Builder", False, "encodedFragment", "", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["okhttp3", "HttpUrl$Builder", False, "encodedPassword", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["okhttp3", "HttpUrl$Builder", False, "encodedPath", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["okhttp3", "HttpUrl$Builder", False, "encodedPath", "", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["okhttp3", "HttpUrl$Builder", False, "encodedQuery", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["okhttp3", "HttpUrl$Builder", False, "encodedQuery", "", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["okhttp3", "HttpUrl$Builder", False, "encodedUsername", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["okhttp3", "HttpUrl$Builder", False, "fragment", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["okhttp3", "HttpUrl$Builder", False, "fragment", "", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["okhttp3", "HttpUrl$Builder", False, "host", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["okhttp3", "HttpUrl$Builder", False, "host", "", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["okhttp3", "HttpUrl$Builder", False, "password", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["okhttp3", "HttpUrl$Builder", False, "port", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["okhttp3", "HttpUrl$Builder", False, "port", "", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["okhttp3", "HttpUrl$Builder", False, "query", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["okhttp3", "HttpUrl$Builder", False, "query", "", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["okhttp3", "HttpUrl$Builder", False, "removeAllEncodedQueryParameters", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["okhttp3", "HttpUrl$Builder", False, "removeAllQueryParameters", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["okhttp3", "HttpUrl$Builder", False, "removePathSegment", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["okhttp3", "HttpUrl$Builder", False, "scheme", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["okhttp3", "HttpUrl$Builder", False, "scheme", "", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["okhttp3", "HttpUrl$Builder", False, "setEncodedPathSegment", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["okhttp3", "HttpUrl$Builder", False, "setEncodedPathSegment", "", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["okhttp3", "HttpUrl$Builder", False, "setEncodedQueryParameter", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["okhttp3", "HttpUrl$Builder", False, "setEncodedQueryParameter", "", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["okhttp3", "HttpUrl$Builder", False, "setPathSegment", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["okhttp3", "HttpUrl$Builder", False, "setPathSegment", "", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["okhttp3", "HttpUrl$Builder", False, "setQueryParameter", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["okhttp3", "HttpUrl$Builder", False, "setQueryParameter", "", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["okhttp3", "HttpUrl$Builder", False, "username", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
diff --git a/java/ql/lib/ext/org.apache.commons.codec.model.yml b/java/ql/lib/ext/org.apache.commons.codec.model.yml
new file mode 100644
index 00000000000..963aa6ce843
--- /dev/null
+++ b/java/ql/lib/ext/org.apache.commons.codec.model.yml
@@ -0,0 +1,11 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSummaryModel
+    data:
+      - ["org.apache.commons.codec", "BinaryDecoder", True, "decode", "(byte[])", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.codec", "BinaryEncoder", True, "encode", "(byte[])", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.codec", "Decoder", True, "decode", "(Object)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.codec", "Encoder", True, "encode", "(Object)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.codec", "StringDecoder", True, "decode", "(String)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.codec", "StringEncoder", True, "encode", "(String)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
diff --git a/java/ql/lib/ext/org.apache.commons.collections.bag.model.yml b/java/ql/lib/ext/org.apache.commons.collections.bag.model.yml
new file mode 100644
index 00000000000..ae77069bdee
--- /dev/null
+++ b/java/ql/lib/ext/org.apache.commons.collections.bag.model.yml
@@ -0,0 +1,23 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSummaryModel
+    data:
+      - ["org.apache.commons.collections.bag", "AbstractBagDecorator", True, "AbstractBagDecorator", "", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections.bag", "AbstractMapBag", True, "AbstractMapBag", "", "", "Argument[0].MapKey", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections.bag", "AbstractMapBag", True, "getMap", "", "", "Argument[-1].Element", "ReturnValue.MapKey", "value", "manual"]
+      - ["org.apache.commons.collections.bag", "AbstractSortedBagDecorator", True, "AbstractSortedBagDecorator", "", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections.bag", "CollectionBag", True, "CollectionBag", "", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections.bag", "CollectionBag", True, "collectionBag", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections.bag", "CollectionSortedBag", True, "CollectionSortedBag", "", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections.bag", "CollectionSortedBag", True, "collectionSortedBag", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections.bag", "HashBag", True, "HashBag", "", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections.bag", "PredicatedBag", True, "predicatedBag", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections.bag", "PredicatedSortedBag", True, "predicatedSortedBag", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections.bag", "SynchronizedBag", True, "synchronizedBag", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections.bag", "SynchronizedSortedBag", True, "synchronizedSortedBag", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections.bag", "TransformedBag", True, "transformedBag", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections.bag", "TransformedSortedBag", True, "transformedSortedBag", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections.bag", "TreeBag", True, "TreeBag", "(Collection)", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections.bag", "UnmodifiableBag", True, "unmodifiableBag", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections.bag", "UnmodifiableSortedBag", True, "unmodifiableSortedBag", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
diff --git a/java/ql/lib/ext/org.apache.commons.collections.bidimap.model.yml b/java/ql/lib/ext/org.apache.commons.collections.bidimap.model.yml
new file mode 100644
index 00000000000..c47f56654b9
--- /dev/null
+++ b/java/ql/lib/ext/org.apache.commons.collections.bidimap.model.yml
@@ -0,0 +1,37 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSummaryModel
+    data:
+      - ["org.apache.commons.collections.bidimap", "AbstractBidiMapDecorator", True, "AbstractBidiMapDecorator", "", "", "Argument[0].MapKey", "Argument[-1].MapKey", "value", "manual"]
+      - ["org.apache.commons.collections.bidimap", "AbstractBidiMapDecorator", True, "AbstractBidiMapDecorator", "", "", "Argument[0].MapValue", "Argument[-1].MapValue", "value", "manual"]
+      - ["org.apache.commons.collections.bidimap", "AbstractDualBidiMap", True, "AbstractDualBidiMap", "", "", "Argument[0].MapKey", "Argument[-1].MapKey", "value", "manual"]
+      - ["org.apache.commons.collections.bidimap", "AbstractDualBidiMap", True, "AbstractDualBidiMap", "", "", "Argument[0].MapValue", "Argument[-1].MapValue", "value", "manual"]
+      - ["org.apache.commons.collections.bidimap", "AbstractDualBidiMap", True, "AbstractDualBidiMap", "", "", "Argument[1].MapKey", "Argument[-1].MapValue", "value", "manual"]
+      - ["org.apache.commons.collections.bidimap", "AbstractDualBidiMap", True, "AbstractDualBidiMap", "", "", "Argument[1].MapValue", "Argument[-1].MapKey", "value", "manual"]
+      - ["org.apache.commons.collections.bidimap", "AbstractDualBidiMap", True, "AbstractDualBidiMap", "", "", "Argument[2].MapKey", "Argument[-1].MapValue", "value", "manual"]
+      - ["org.apache.commons.collections.bidimap", "AbstractDualBidiMap", True, "AbstractDualBidiMap", "", "", "Argument[2].MapValue", "Argument[-1].MapKey", "value", "manual"]
+      - ["org.apache.commons.collections.bidimap", "AbstractOrderedBidiMapDecorator", True, "AbstractOrderedBidiMapDecorator", "", "", "Argument[0].MapKey", "Argument[-1].MapKey", "value", "manual"]
+      - ["org.apache.commons.collections.bidimap", "AbstractOrderedBidiMapDecorator", True, "AbstractOrderedBidiMapDecorator", "", "", "Argument[0].MapValue", "Argument[-1].MapValue", "value", "manual"]
+      - ["org.apache.commons.collections.bidimap", "AbstractSortedBidiMapDecorator", True, "AbstractSortedBidiMapDecorator", "", "", "Argument[0].MapKey", "Argument[-1].MapKey", "value", "manual"]
+      - ["org.apache.commons.collections.bidimap", "AbstractSortedBidiMapDecorator", True, "AbstractSortedBidiMapDecorator", "", "", "Argument[0].MapValue", "Argument[-1].MapValue", "value", "manual"]
+      - ["org.apache.commons.collections.bidimap", "DualHashBidiMap", True, "DualHashBidiMap", "(Map)", "", "Argument[0].MapKey", "Argument[-1].MapKey", "value", "manual"]
+      - ["org.apache.commons.collections.bidimap", "DualHashBidiMap", True, "DualHashBidiMap", "(Map)", "", "Argument[0].MapValue", "Argument[-1].MapValue", "value", "manual"]
+      - ["org.apache.commons.collections.bidimap", "DualLinkedHashBidiMap", True, "DualLinkedHashBidiMap", "(Map)", "", "Argument[0].MapKey", "Argument[-1].MapKey", "value", "manual"]
+      - ["org.apache.commons.collections.bidimap", "DualLinkedHashBidiMap", True, "DualLinkedHashBidiMap", "(Map)", "", "Argument[0].MapValue", "Argument[-1].MapValue", "value", "manual"]
+      - ["org.apache.commons.collections.bidimap", "DualTreeBidiMap", True, "DualTreeBidiMap", "(Map)", "", "Argument[0].MapKey", "Argument[-1].MapKey", "value", "manual"]
+      - ["org.apache.commons.collections.bidimap", "DualTreeBidiMap", True, "DualTreeBidiMap", "(Map)", "", "Argument[0].MapValue", "Argument[-1].MapValue", "value", "manual"]
+      - ["org.apache.commons.collections.bidimap", "DualTreeBidiMap", True, "inverseOrderedBidiMap", "", "", "Argument[-1].MapKey", "ReturnValue.MapValue", "value", "manual"]
+      - ["org.apache.commons.collections.bidimap", "DualTreeBidiMap", True, "inverseOrderedBidiMap", "", "", "Argument[-1].MapValue", "ReturnValue.MapKey", "value", "manual"]
+      - ["org.apache.commons.collections.bidimap", "DualTreeBidiMap", True, "inverseSortedBidiMap", "", "", "Argument[-1].MapKey", "ReturnValue.MapValue", "value", "manual"]
+      - ["org.apache.commons.collections.bidimap", "DualTreeBidiMap", True, "inverseSortedBidiMap", "", "", "Argument[-1].MapValue", "ReturnValue.MapKey", "value", "manual"]
+      - ["org.apache.commons.collections.bidimap", "TreeBidiMap", True, "TreeBidiMap", "", "", "Argument[0].MapKey", "Argument[-1].MapKey", "value", "manual"]
+      - ["org.apache.commons.collections.bidimap", "TreeBidiMap", True, "TreeBidiMap", "", "", "Argument[0].MapValue", "Argument[-1].MapValue", "value", "manual"]
+      - ["org.apache.commons.collections.bidimap", "UnmodifiableBidiMap", True, "unmodifiableBidiMap", "", "", "Argument[0].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["org.apache.commons.collections.bidimap", "UnmodifiableBidiMap", True, "unmodifiableBidiMap", "", "", "Argument[0].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["org.apache.commons.collections.bidimap", "UnmodifiableOrderedBidiMap", True, "inverseOrderedBidiMap", "", "", "Argument[-1].MapKey", "ReturnValue.MapValue", "value", "manual"]
+      - ["org.apache.commons.collections.bidimap", "UnmodifiableOrderedBidiMap", True, "inverseOrderedBidiMap", "", "", "Argument[-1].MapValue", "ReturnValue.MapKey", "value", "manual"]
+      - ["org.apache.commons.collections.bidimap", "UnmodifiableOrderedBidiMap", True, "unmodifiableOrderedBidiMap", "", "", "Argument[0].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["org.apache.commons.collections.bidimap", "UnmodifiableOrderedBidiMap", True, "unmodifiableOrderedBidiMap", "", "", "Argument[0].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["org.apache.commons.collections.bidimap", "UnmodifiableSortedBidiMap", True, "unmodifiableSortedBidiMap", "", "", "Argument[0].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["org.apache.commons.collections.bidimap", "UnmodifiableSortedBidiMap", True, "unmodifiableSortedBidiMap", "", "", "Argument[0].MapValue", "ReturnValue.MapValue", "value", "manual"]
diff --git a/java/ql/lib/ext/org.apache.commons.collections.collection.model.yml b/java/ql/lib/ext/org.apache.commons.collections.collection.model.yml
new file mode 100644
index 00000000000..53e523e74ed
--- /dev/null
+++ b/java/ql/lib/ext/org.apache.commons.collections.collection.model.yml
@@ -0,0 +1,45 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSummaryModel
+    data:
+      - ["org.apache.commons.collections.collection", "AbstractCollectionDecorator", True, "AbstractCollectionDecorator", "", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections.collection", "AbstractCollectionDecorator", True, "decorated", "", "", "Argument[-1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections.collection", "AbstractCollectionDecorator", True, "setCollection", "", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections.collection", "CompositeCollection", True, "CompositeCollection", "(Collection)", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections.collection", "CompositeCollection", True, "CompositeCollection", "(Collection,Collection)", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections.collection", "CompositeCollection", True, "CompositeCollection", "(Collection,Collection)", "", "Argument[1].Element", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections.collection", "CompositeCollection", True, "CompositeCollection", "(Collection[])", "", "Argument[0].ArrayElement.Element", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections.collection", "CompositeCollection", True, "addComposited", "(Collection)", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections.collection", "CompositeCollection", True, "addComposited", "(Collection,Collection)", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections.collection", "CompositeCollection", True, "addComposited", "(Collection,Collection)", "", "Argument[1].Element", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections.collection", "CompositeCollection", True, "addComposited", "(Collection[])", "", "Argument[0].ArrayElement.Element", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections.collection", "CompositeCollection", True, "getCollections", "", "", "Argument[-1].Element", "ReturnValue.Element.Element", "value", "manual"]
+      - ["org.apache.commons.collections.collection", "CompositeCollection", True, "toCollection", "", "", "Argument[-1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections.collection", "CompositeCollection$CollectionMutator", True, "add", "", "", "Argument[2]", "Argument[0].Element", "value", "manual"]
+      - ["org.apache.commons.collections.collection", "CompositeCollection$CollectionMutator", True, "add", "", "", "Argument[2]", "Argument[1].Element.Element", "value", "manual"]
+      - ["org.apache.commons.collections.collection", "CompositeCollection$CollectionMutator", True, "addAll", "", "", "Argument[2].Element", "Argument[0].Element", "value", "manual"]
+      - ["org.apache.commons.collections.collection", "CompositeCollection$CollectionMutator", True, "addAll", "", "", "Argument[2].Element", "Argument[1].Element.Element", "value", "manual"]
+      - ["org.apache.commons.collections.collection", "IndexedCollection", True, "IndexedCollection", "", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections.collection", "IndexedCollection", True, "get", "", "", "Argument[-1].Element", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.collections.collection", "IndexedCollection", True, "nonUniqueIndexedCollection", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections.collection", "IndexedCollection", True, "uniqueIndexedCollection", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections.collection", "IndexedCollection", True, "values", "", "", "Argument[-1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections.collection", "PredicatedCollection", True, "predicatedCollection", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections.collection", "PredicatedCollection$Builder", True, "add", "", "", "Argument[0]", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections.collection", "PredicatedCollection$Builder", True, "addAll", "", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections.collection", "PredicatedCollection$Builder", True, "createPredicatedBag", "", "", "Argument[-1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections.collection", "PredicatedCollection$Builder", True, "createPredicatedBag", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections.collection", "PredicatedCollection$Builder", True, "createPredicatedList", "", "", "Argument[-1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections.collection", "PredicatedCollection$Builder", True, "createPredicatedList", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections.collection", "PredicatedCollection$Builder", True, "createPredicatedMultiSet", "", "", "Argument[-1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections.collection", "PredicatedCollection$Builder", True, "createPredicatedMultiSet", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections.collection", "PredicatedCollection$Builder", True, "createPredicatedQueue", "", "", "Argument[-1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections.collection", "PredicatedCollection$Builder", True, "createPredicatedQueue", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections.collection", "PredicatedCollection$Builder", True, "createPredicatedSet", "", "", "Argument[-1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections.collection", "PredicatedCollection$Builder", True, "createPredicatedSet", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections.collection", "PredicatedCollection$Builder", True, "rejectedElements", "", "", "Argument[-1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections.collection", "SynchronizedCollection", True, "synchronizedCollection", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections.collection", "TransformedCollection", True, "transformingCollection", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections.collection", "UnmodifiableBoundedCollection", True, "unmodifiableBoundedCollection", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections.collection", "UnmodifiableCollection", True, "unmodifiableCollection", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
diff --git a/java/ql/lib/ext/org.apache.commons.collections.iterators.model.yml b/java/ql/lib/ext/org.apache.commons.collections.iterators.model.yml
new file mode 100644
index 00000000000..d5cf30ca7cc
--- /dev/null
+++ b/java/ql/lib/ext/org.apache.commons.collections.iterators.model.yml
@@ -0,0 +1,80 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSummaryModel
+    data:
+      - ["org.apache.commons.collections.iterators", "AbstractIteratorDecorator", True, "AbstractIteratorDecorator", "", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections.iterators", "AbstractListIteratorDecorator", True, "AbstractListIteratorDecorator", "", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections.iterators", "AbstractListIteratorDecorator", True, "getListIterator", "", "", "Argument[-1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections.iterators", "AbstractMapIteratorDecorator", True, "AbstractMapIteratorDecorator", "", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections.iterators", "AbstractMapIteratorDecorator", True, "AbstractMapIteratorDecorator", "", "", "Argument[0].MapValue", "Argument[-1].MapValue", "value", "manual"]
+      - ["org.apache.commons.collections.iterators", "AbstractMapIteratorDecorator", True, "getMapIterator", "", "", "Argument[-1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections.iterators", "AbstractMapIteratorDecorator", True, "getMapIterator", "", "", "Argument[-1].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["org.apache.commons.collections.iterators", "AbstractOrderedMapIteratorDecorator", True, "AbstractOrderedMapIteratorDecorator", "", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections.iterators", "AbstractOrderedMapIteratorDecorator", True, "AbstractOrderedMapIteratorDecorator", "", "", "Argument[0].MapValue", "Argument[-1].MapValue", "value", "manual"]
+      - ["org.apache.commons.collections.iterators", "AbstractOrderedMapIteratorDecorator", True, "getOrderedMapIterator", "", "", "Argument[-1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections.iterators", "AbstractOrderedMapIteratorDecorator", True, "getOrderedMapIterator", "", "", "Argument[-1].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["org.apache.commons.collections.iterators", "AbstractUntypedIteratorDecorator", True, "AbstractUntypedIteratorDecorator", "", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections.iterators", "AbstractUntypedIteratorDecorator", True, "getIterator", "", "", "Argument[-1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections.iterators", "ArrayIterator", True, "ArrayIterator", "", "", "Argument[0].ArrayElement", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections.iterators", "ArrayIterator", True, "getArray", "", "", "Argument[-1].Element", "ReturnValue.ArrayElement", "value", "manual"]
+      - ["org.apache.commons.collections.iterators", "ArrayListIterator", True, "ArrayListIterator", "", "", "Argument[0].ArrayElement", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections.iterators", "BoundedIterator", True, "BoundedIterator", "", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections.iterators", "CollatingIterator", True, "CollatingIterator", "(Comparator,Collection)", "", "Argument[1].Element.Element", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections.iterators", "CollatingIterator", True, "CollatingIterator", "(Comparator,Iterator,Iterator)", "", "Argument[1].Element", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections.iterators", "CollatingIterator", True, "CollatingIterator", "(Comparator,Iterator,Iterator)", "", "Argument[2].Element", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections.iterators", "CollatingIterator", True, "CollatingIterator", "(Comparator,Iterator[])", "", "Argument[1].ArrayElement.Element", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections.iterators", "CollatingIterator", True, "addIterator", "", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections.iterators", "CollatingIterator", True, "getIterators", "", "", "Argument[-1].Element", "ReturnValue.Element.Element", "value", "manual"]
+      - ["org.apache.commons.collections.iterators", "CollatingIterator", True, "setIterator", "", "", "Argument[1].Element", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections.iterators", "EnumerationIterator", True, "EnumerationIterator", "", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections.iterators", "EnumerationIterator", True, "getEnumeration", "", "", "Argument[-1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections.iterators", "EnumerationIterator", True, "setEnumeration", "", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections.iterators", "FilterIterator", True, "FilterIterator", "", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections.iterators", "FilterIterator", True, "getIterator", "", "", "Argument[-1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections.iterators", "FilterIterator", True, "setIterator", "", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections.iterators", "FilterListIterator", True, "FilterListIterator", "(ListIterator)", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections.iterators", "FilterListIterator", True, "FilterListIterator", "(ListIterator,Predicate)", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections.iterators", "FilterListIterator", True, "getListIterator", "", "", "Argument[-1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections.iterators", "FilterListIterator", True, "setListIterator", "", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections.iterators", "IteratorChain", True, "IteratorChain", "(Collection)", "", "Argument[0].Element.Element", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections.iterators", "IteratorChain", True, "IteratorChain", "(Iterator)", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections.iterators", "IteratorChain", True, "IteratorChain", "(Iterator,Iterator)", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections.iterators", "IteratorChain", True, "IteratorChain", "(Iterator,Iterator)", "", "Argument[1].Element", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections.iterators", "IteratorChain", True, "IteratorChain", "(Iterator[])", "", "Argument[0].ArrayElement.Element", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections.iterators", "IteratorChain", True, "addIterator", "", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections.iterators", "IteratorEnumeration", True, "IteratorEnumeration", "", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections.iterators", "IteratorEnumeration", True, "getIterator", "", "", "Argument[-1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections.iterators", "IteratorEnumeration", True, "setIterator", "", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections.iterators", "IteratorIterable", True, "IteratorIterable", "", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections.iterators", "ListIteratorWrapper", True, "ListIteratorWrapper", "", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections.iterators", "LoopingIterator", True, "LoopingIterator", "", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections.iterators", "LoopingListIterator", True, "LoopingListIterator", "", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections.iterators", "ObjectArrayIterator", True, "ObjectArrayIterator", "", "", "Argument[0].ArrayElement", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections.iterators", "ObjectArrayIterator", True, "getArray", "", "", "Argument[-1].Element", "ReturnValue.ArrayElement", "value", "manual"]
+      - ["org.apache.commons.collections.iterators", "ObjectArrayListIterator", True, "ObjectArrayListIterator", "", "", "Argument[0].ArrayElement", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections.iterators", "PeekingIterator", True, "PeekingIterator", "", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections.iterators", "PeekingIterator", True, "element", "", "", "Argument[-1].Element", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.collections.iterators", "PeekingIterator", True, "peek", "", "", "Argument[-1].Element", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.collections.iterators", "PeekingIterator", True, "peekingIterator", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections.iterators", "PermutationIterator", True, "PermutationIterator", "", "", "Argument[0].Element", "Argument[-1].Element.Element", "value", "manual"]
+      - ["org.apache.commons.collections.iterators", "PushbackIterator", True, "PushbackIterator", "", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections.iterators", "PushbackIterator", True, "pushback", "", "", "Argument[0]", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections.iterators", "PushbackIterator", True, "pushbackIterator", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections.iterators", "ReverseListIterator", True, "ReverseListIterator", "", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections.iterators", "SingletonIterator", True, "SingletonIterator", "", "", "Argument[0]", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections.iterators", "SingletonListIterator", True, "SingletonListIterator", "", "", "Argument[0]", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections.iterators", "SkippingIterator", True, "SkippingIterator", "", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections.iterators", "UniqueFilterIterator", True, "UniqueFilterIterator", "", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections.iterators", "UnmodifiableIterator", True, "unmodifiableIterator", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections.iterators", "UnmodifiableListIterator", True, "umodifiableListIterator", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections.iterators", "UnmodifiableMapIterator", True, "unmodifiableMapIterator", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections.iterators", "UnmodifiableMapIterator", True, "unmodifiableMapIterator", "", "", "Argument[0].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["org.apache.commons.collections.iterators", "UnmodifiableOrderedMapIterator", True, "unmodifiableOrderedMapIterator", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections.iterators", "UnmodifiableOrderedMapIterator", True, "unmodifiableOrderedMapIterator", "", "", "Argument[0].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["org.apache.commons.collections.iterators", "ZippingIterator", True, "ZippingIterator", "(Iterator,Iterator)", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections.iterators", "ZippingIterator", True, "ZippingIterator", "(Iterator,Iterator)", "", "Argument[1].Element", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections.iterators", "ZippingIterator", True, "ZippingIterator", "(Iterator,Iterator,Iterator)", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections.iterators", "ZippingIterator", True, "ZippingIterator", "(Iterator,Iterator,Iterator)", "", "Argument[1].Element", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections.iterators", "ZippingIterator", True, "ZippingIterator", "(Iterator,Iterator,Iterator)", "", "Argument[2].Element", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections.iterators", "ZippingIterator", True, "ZippingIterator", "(Iterator[])", "", "Argument[0].ArrayElement.Element", "Argument[-1].Element", "value", "manual"]
diff --git a/java/ql/lib/ext/org.apache.commons.collections.keyvalue.model.yml b/java/ql/lib/ext/org.apache.commons.collections.keyvalue.model.yml
new file mode 100644
index 00000000000..679da24a74c
--- /dev/null
+++ b/java/ql/lib/ext/org.apache.commons.collections.keyvalue.model.yml
@@ -0,0 +1,57 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSummaryModel
+    data:
+      - ["org.apache.commons.collections.keyvalue", "AbstractKeyValue", True, "AbstractKeyValue", "", "", "Argument[0]", "Argument[-1].MapKey", "value", "manual"]
+      - ["org.apache.commons.collections.keyvalue", "AbstractKeyValue", True, "AbstractKeyValue", "", "", "Argument[1]", "Argument[-1].MapValue", "value", "manual"]
+      - ["org.apache.commons.collections.keyvalue", "AbstractKeyValue", True, "setKey", "", "", "Argument[-1].MapKey", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.collections.keyvalue", "AbstractKeyValue", True, "setKey", "", "", "Argument[0]", "Argument[-1].MapKey", "value", "manual"]
+      - ["org.apache.commons.collections.keyvalue", "AbstractKeyValue", True, "setValue", "", "", "Argument[-1].MapValue", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.collections.keyvalue", "AbstractKeyValue", True, "setValue", "", "", "Argument[0]", "Argument[-1].MapValue", "value", "manual"]
+      - ["org.apache.commons.collections.keyvalue", "AbstractMapEntry", True, "AbstractMapEntry", "", "", "Argument[0]", "Argument[-1].MapKey", "value", "manual"]
+      - ["org.apache.commons.collections.keyvalue", "AbstractMapEntry", True, "AbstractMapEntry", "", "", "Argument[1]", "Argument[-1].MapValue", "value", "manual"]
+      - ["org.apache.commons.collections.keyvalue", "AbstractMapEntryDecorator", True, "AbstractMapEntryDecorator", "", "", "Argument[0].MapKey", "Argument[-1].MapKey", "value", "manual"]
+      - ["org.apache.commons.collections.keyvalue", "AbstractMapEntryDecorator", True, "AbstractMapEntryDecorator", "", "", "Argument[0].MapValue", "Argument[-1].MapValue", "value", "manual"]
+      - ["org.apache.commons.collections.keyvalue", "AbstractMapEntryDecorator", True, "getMapEntry", "", "", "Argument[-1].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["org.apache.commons.collections.keyvalue", "AbstractMapEntryDecorator", True, "getMapEntry", "", "", "Argument[-1].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["org.apache.commons.collections.keyvalue", "DefaultKeyValue", True, "DefaultKeyValue", "(Entry)", "", "Argument[0].MapKey", "Argument[-1].MapKey", "value", "manual"]
+      - ["org.apache.commons.collections.keyvalue", "DefaultKeyValue", True, "DefaultKeyValue", "(Entry)", "", "Argument[0].MapValue", "Argument[-1].MapValue", "value", "manual"]
+      - ["org.apache.commons.collections.keyvalue", "DefaultKeyValue", True, "DefaultKeyValue", "(KeyValue)", "", "Argument[0].MapKey", "Argument[-1].MapKey", "value", "manual"]
+      - ["org.apache.commons.collections.keyvalue", "DefaultKeyValue", True, "DefaultKeyValue", "(KeyValue)", "", "Argument[0].MapValue", "Argument[-1].MapValue", "value", "manual"]
+      - ["org.apache.commons.collections.keyvalue", "DefaultKeyValue", True, "DefaultKeyValue", "(Object,Object)", "", "Argument[0]", "Argument[-1].MapKey", "value", "manual"]
+      - ["org.apache.commons.collections.keyvalue", "DefaultKeyValue", True, "DefaultKeyValue", "(Object,Object)", "", "Argument[1]", "Argument[-1].MapValue", "value", "manual"]
+      - ["org.apache.commons.collections.keyvalue", "DefaultKeyValue", True, "toMapEntry", "", "", "Argument[-1].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["org.apache.commons.collections.keyvalue", "DefaultKeyValue", True, "toMapEntry", "", "", "Argument[-1].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["org.apache.commons.collections.keyvalue", "DefaultMapEntry", True, "DefaultMapEntry", "(Entry)", "", "Argument[0].MapKey", "Argument[-1].MapKey", "value", "manual"]
+      - ["org.apache.commons.collections.keyvalue", "DefaultMapEntry", True, "DefaultMapEntry", "(Entry)", "", "Argument[0].MapValue", "Argument[-1].MapValue", "value", "manual"]
+      - ["org.apache.commons.collections.keyvalue", "DefaultMapEntry", True, "DefaultMapEntry", "(KeyValue)", "", "Argument[0].MapKey", "Argument[-1].MapKey", "value", "manual"]
+      - ["org.apache.commons.collections.keyvalue", "DefaultMapEntry", True, "DefaultMapEntry", "(KeyValue)", "", "Argument[0].MapValue", "Argument[-1].MapValue", "value", "manual"]
+      - ["org.apache.commons.collections.keyvalue", "DefaultMapEntry", True, "DefaultMapEntry", "(Object,Object)", "", "Argument[0]", "Argument[-1].MapKey", "value", "manual"]
+      - ["org.apache.commons.collections.keyvalue", "DefaultMapEntry", True, "DefaultMapEntry", "(Object,Object)", "", "Argument[1]", "Argument[-1].MapValue", "value", "manual"]
+      - ["org.apache.commons.collections.keyvalue", "MultiKey", True, "MultiKey", "(Object,Object)", "", "Argument[0]", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections.keyvalue", "MultiKey", True, "MultiKey", "(Object,Object)", "", "Argument[1]", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections.keyvalue", "MultiKey", True, "MultiKey", "(Object,Object,Object)", "", "Argument[0]", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections.keyvalue", "MultiKey", True, "MultiKey", "(Object,Object,Object)", "", "Argument[1]", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections.keyvalue", "MultiKey", True, "MultiKey", "(Object,Object,Object)", "", "Argument[2]", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections.keyvalue", "MultiKey", True, "MultiKey", "(Object,Object,Object,Object)", "", "Argument[0]", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections.keyvalue", "MultiKey", True, "MultiKey", "(Object,Object,Object,Object)", "", "Argument[1]", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections.keyvalue", "MultiKey", True, "MultiKey", "(Object,Object,Object,Object)", "", "Argument[2]", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections.keyvalue", "MultiKey", True, "MultiKey", "(Object,Object,Object,Object)", "", "Argument[3]", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections.keyvalue", "MultiKey", True, "MultiKey", "(Object,Object,Object,Object,Object)", "", "Argument[0]", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections.keyvalue", "MultiKey", True, "MultiKey", "(Object,Object,Object,Object,Object)", "", "Argument[1]", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections.keyvalue", "MultiKey", True, "MultiKey", "(Object,Object,Object,Object,Object)", "", "Argument[2]", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections.keyvalue", "MultiKey", True, "MultiKey", "(Object,Object,Object,Object,Object)", "", "Argument[3]", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections.keyvalue", "MultiKey", True, "MultiKey", "(Object,Object,Object,Object,Object)", "", "Argument[4]", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections.keyvalue", "MultiKey", True, "MultiKey", "(Object[])", "", "Argument[0].ArrayElement", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections.keyvalue", "MultiKey", True, "MultiKey", "(Object[],boolean)", "", "Argument[0].ArrayElement", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections.keyvalue", "MultiKey", True, "getKey", "", "", "Argument[-1].Element", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.collections.keyvalue", "MultiKey", True, "getKeys", "", "", "Argument[-1].Element", "ReturnValue.ArrayElement", "value", "manual"]
+      - ["org.apache.commons.collections.keyvalue", "TiedMapEntry", True, "TiedMapEntry", "", "", "Argument[0].MapValue", "Argument[-1].MapValue", "value", "manual"]
+      - ["org.apache.commons.collections.keyvalue", "TiedMapEntry", True, "TiedMapEntry", "", "", "Argument[1]", "Argument[-1].MapKey", "value", "manual"]
+      - ["org.apache.commons.collections.keyvalue", "UnmodifiableMapEntry", True, "UnmodifiableMapEntry", "(Entry)", "", "Argument[0].MapKey", "Argument[-1].MapKey", "value", "manual"]
+      - ["org.apache.commons.collections.keyvalue", "UnmodifiableMapEntry", True, "UnmodifiableMapEntry", "(Entry)", "", "Argument[0].MapValue", "Argument[-1].MapValue", "value", "manual"]
+      - ["org.apache.commons.collections.keyvalue", "UnmodifiableMapEntry", True, "UnmodifiableMapEntry", "(KeyValue)", "", "Argument[0].MapKey", "Argument[-1].MapKey", "value", "manual"]
+      - ["org.apache.commons.collections.keyvalue", "UnmodifiableMapEntry", True, "UnmodifiableMapEntry", "(KeyValue)", "", "Argument[0].MapValue", "Argument[-1].MapValue", "value", "manual"]
+      - ["org.apache.commons.collections.keyvalue", "UnmodifiableMapEntry", True, "UnmodifiableMapEntry", "(Object,Object)", "", "Argument[0]", "Argument[-1].MapKey", "value", "manual"]
+      - ["org.apache.commons.collections.keyvalue", "UnmodifiableMapEntry", True, "UnmodifiableMapEntry", "(Object,Object)", "", "Argument[1]", "Argument[-1].MapValue", "value", "manual"]
diff --git a/java/ql/lib/ext/org.apache.commons.collections.list.model.yml b/java/ql/lib/ext/org.apache.commons.collections.list.model.yml
new file mode 100644
index 00000000000..d97d893a2c0
--- /dev/null
+++ b/java/ql/lib/ext/org.apache.commons.collections.list.model.yml
@@ -0,0 +1,27 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSummaryModel
+    data:
+      - ["org.apache.commons.collections.list", "AbstractLinkedList", True, "AbstractLinkedList", "", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections.list", "AbstractLinkedList", True, "addFirst", "", "", "Argument[0]", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections.list", "AbstractLinkedList", True, "addLast", "", "", "Argument[0]", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections.list", "AbstractLinkedList", True, "getFirst", "", "", "Argument[-1].Element", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.collections.list", "AbstractLinkedList", True, "getLast", "", "", "Argument[-1].Element", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.collections.list", "AbstractLinkedList", True, "removeFirst", "", "", "Argument[-1].Element", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.collections.list", "AbstractLinkedList", True, "removeLast", "", "", "Argument[-1].Element", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.collections.list", "AbstractListDecorator", True, "AbstractListDecorator", "", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections.list", "AbstractSerializableListDecorator", True, "AbstractSerializableListDecorator", "", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections.list", "CursorableLinkedList", True, "CursorableLinkedList", "", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections.list", "CursorableLinkedList", True, "cursor", "", "", "Argument[-1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections.list", "FixedSizeList", True, "fixedSizeList", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections.list", "GrowthList", True, "growthList", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections.list", "LazyList", True, "lazyList", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections.list", "NodeCachingLinkedList", True, "NodeCachingLinkedList", "(Collection)", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections.list", "PredicatedList", True, "predicatedList", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections.list", "SetUniqueList", True, "asSet", "", "", "Argument[-1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections.list", "SetUniqueList", True, "setUniqueList", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections.list", "TransformedList", True, "transformingList", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections.list", "TreeList", True, "TreeList", "", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections.list", "UnmodifiableList", True, "UnmodifiableList", "", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections.list", "UnmodifiableList", True, "unmodifiableList", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
diff --git a/java/ql/lib/ext/org.apache.commons.collections.map.model.yml b/java/ql/lib/ext/org.apache.commons.collections.map.model.yml
new file mode 100644
index 00000000000..85b368c7fcd
--- /dev/null
+++ b/java/ql/lib/ext/org.apache.commons.collections.map.model.yml
@@ -0,0 +1,133 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSummaryModel
+    data:
+      - ["org.apache.commons.collections.map", "AbstractHashedMap", True, "AbstractHashedMap", "(Map)", "", "Argument[0].MapKey", "Argument[-1].MapKey", "value", "manual"]
+      - ["org.apache.commons.collections.map", "AbstractHashedMap", True, "AbstractHashedMap", "(Map)", "", "Argument[0].MapValue", "Argument[-1].MapValue", "value", "manual"]
+      - ["org.apache.commons.collections.map", "AbstractLinkedMap", True, "AbstractLinkedMap", "(Map)", "", "Argument[0].MapKey", "Argument[-1].MapKey", "value", "manual"]
+      - ["org.apache.commons.collections.map", "AbstractLinkedMap", True, "AbstractLinkedMap", "(Map)", "", "Argument[0].MapValue", "Argument[-1].MapValue", "value", "manual"]
+      - ["org.apache.commons.collections.map", "AbstractMapDecorator", True, "AbstractMapDecorator", "(Map)", "", "Argument[0].MapKey", "Argument[-1].MapKey", "value", "manual"]
+      - ["org.apache.commons.collections.map", "AbstractMapDecorator", True, "AbstractMapDecorator", "(Map)", "", "Argument[0].MapValue", "Argument[-1].MapValue", "value", "manual"]
+      - ["org.apache.commons.collections.map", "AbstractMapDecorator", True, "decorated", "", "", "Argument[-1].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["org.apache.commons.collections.map", "AbstractMapDecorator", True, "decorated", "", "", "Argument[-1].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["org.apache.commons.collections.map", "AbstractOrderedMapDecorator", True, "AbstractOrderedMapDecorator", "(OrderedMap)", "", "Argument[0].MapKey", "Argument[-1].MapKey", "value", "manual"]
+      - ["org.apache.commons.collections.map", "AbstractOrderedMapDecorator", True, "AbstractOrderedMapDecorator", "(OrderedMap)", "", "Argument[0].MapValue", "Argument[-1].MapValue", "value", "manual"]
+      - ["org.apache.commons.collections.map", "AbstractSortedMapDecorator", True, "AbstractSortedMapDecorator", "(SortedMap)", "", "Argument[0].MapKey", "Argument[-1].MapKey", "value", "manual"]
+      - ["org.apache.commons.collections.map", "AbstractSortedMapDecorator", True, "AbstractSortedMapDecorator", "(SortedMap)", "", "Argument[0].MapValue", "Argument[-1].MapValue", "value", "manual"]
+      - ["org.apache.commons.collections.map", "CaseInsensitiveMap", True, "CaseInsensitiveMap", "(Map)", "", "Argument[0].MapKey", "Argument[-1].MapKey", "value", "manual"]
+      - ["org.apache.commons.collections.map", "CaseInsensitiveMap", True, "CaseInsensitiveMap", "(Map)", "", "Argument[0].MapValue", "Argument[-1].MapValue", "value", "manual"]
+      - ["org.apache.commons.collections.map", "CompositeMap", True, "CompositeMap", "(Map,Map)", "", "Argument[0].MapKey", "Argument[-1].MapKey", "value", "manual"]
+      - ["org.apache.commons.collections.map", "CompositeMap", True, "CompositeMap", "(Map,Map)", "", "Argument[0].MapValue", "Argument[-1].MapValue", "value", "manual"]
+      - ["org.apache.commons.collections.map", "CompositeMap", True, "CompositeMap", "(Map,Map)", "", "Argument[1].MapKey", "Argument[-1].MapKey", "value", "manual"]
+      - ["org.apache.commons.collections.map", "CompositeMap", True, "CompositeMap", "(Map,Map)", "", "Argument[1].MapValue", "Argument[-1].MapValue", "value", "manual"]
+      - ["org.apache.commons.collections.map", "CompositeMap", True, "CompositeMap", "(Map,Map,MapMutator)", "", "Argument[0].MapKey", "Argument[-1].MapKey", "value", "manual"]
+      - ["org.apache.commons.collections.map", "CompositeMap", True, "CompositeMap", "(Map,Map,MapMutator)", "", "Argument[0].MapValue", "Argument[-1].MapValue", "value", "manual"]
+      - ["org.apache.commons.collections.map", "CompositeMap", True, "CompositeMap", "(Map,Map,MapMutator)", "", "Argument[1].MapKey", "Argument[-1].MapKey", "value", "manual"]
+      - ["org.apache.commons.collections.map", "CompositeMap", True, "CompositeMap", "(Map,Map,MapMutator)", "", "Argument[1].MapValue", "Argument[-1].MapValue", "value", "manual"]
+      - ["org.apache.commons.collections.map", "CompositeMap", True, "CompositeMap", "(Map[])", "", "Argument[0].ArrayElement.MapKey", "Argument[-1].MapKey", "value", "manual"]
+      - ["org.apache.commons.collections.map", "CompositeMap", True, "CompositeMap", "(Map[])", "", "Argument[0].ArrayElement.MapValue", "Argument[-1].MapValue", "value", "manual"]
+      - ["org.apache.commons.collections.map", "CompositeMap", True, "CompositeMap", "(Map[],MapMutator)", "", "Argument[0].ArrayElement.MapKey", "Argument[-1].MapKey", "value", "manual"]
+      - ["org.apache.commons.collections.map", "CompositeMap", True, "CompositeMap", "(Map[],MapMutator)", "", "Argument[0].ArrayElement.MapValue", "Argument[-1].MapValue", "value", "manual"]
+      - ["org.apache.commons.collections.map", "CompositeMap", True, "addComposited", "", "", "Argument[0].MapKey", "Argument[-1].MapKey", "value", "manual"]
+      - ["org.apache.commons.collections.map", "CompositeMap", True, "addComposited", "", "", "Argument[0].MapValue", "Argument[-1].MapValue", "value", "manual"]
+      - ["org.apache.commons.collections.map", "CompositeMap", True, "removeComposited", "", "", "Argument[-1].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["org.apache.commons.collections.map", "CompositeMap", True, "removeComposited", "", "", "Argument[-1].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["org.apache.commons.collections.map", "CompositeMap", True, "removeComposited", "", "", "Argument[0]", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.collections.map", "DefaultedMap", True, "DefaultedMap", "(Object)", "", "Argument[0]", "Argument[-1].MapValue", "value", "manual"]
+      - ["org.apache.commons.collections.map", "DefaultedMap", True, "defaultedMap", "", "", "Argument[0].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["org.apache.commons.collections.map", "DefaultedMap", True, "defaultedMap", "", "", "Argument[0].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["org.apache.commons.collections.map", "DefaultedMap", True, "defaultedMap", "(Map,Object)", "", "Argument[1]", "ReturnValue.MapValue", "value", "manual"]
+      - ["org.apache.commons.collections.map", "EntrySetToMapIteratorAdapter", True, "EntrySetToMapIteratorAdapter", "", "", "Argument[0].Element.MapKey", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections.map", "EntrySetToMapIteratorAdapter", True, "EntrySetToMapIteratorAdapter", "", "", "Argument[0].Element.MapValue", "Argument[-1].MapValue", "value", "manual"]
+      - ["org.apache.commons.collections.map", "FixedSizeMap", True, "fixedSizeMap", "", "", "Argument[0].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["org.apache.commons.collections.map", "FixedSizeMap", True, "fixedSizeMap", "", "", "Argument[0].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["org.apache.commons.collections.map", "FixedSizeSortedMap", True, "fixedSizeSortedMap", "", "", "Argument[0].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["org.apache.commons.collections.map", "FixedSizeSortedMap", True, "fixedSizeSortedMap", "", "", "Argument[0].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["org.apache.commons.collections.map", "Flat3Map", True, "Flat3Map", "", "", "Argument[0].MapKey", "Argument[-1].MapKey", "value", "manual"]
+      - ["org.apache.commons.collections.map", "Flat3Map", True, "Flat3Map", "", "", "Argument[0].MapValue", "Argument[-1].MapValue", "value", "manual"]
+      - ["org.apache.commons.collections.map", "HashedMap", True, "HashedMap", "(Map)", "", "Argument[0].MapKey", "Argument[-1].MapKey", "value", "manual"]
+      - ["org.apache.commons.collections.map", "HashedMap", True, "HashedMap", "(Map)", "", "Argument[0].MapValue", "Argument[-1].MapValue", "value", "manual"]
+      - ["org.apache.commons.collections.map", "LRUMap", True, "LRUMap", "(Map)", "", "Argument[0].MapKey", "Argument[-1].MapKey", "value", "manual"]
+      - ["org.apache.commons.collections.map", "LRUMap", True, "LRUMap", "(Map)", "", "Argument[0].MapValue", "Argument[-1].MapValue", "value", "manual"]
+      - ["org.apache.commons.collections.map", "LRUMap", True, "LRUMap", "(Map,boolean)", "", "Argument[0].MapKey", "Argument[-1].MapKey", "value", "manual"]
+      - ["org.apache.commons.collections.map", "LRUMap", True, "LRUMap", "(Map,boolean)", "", "Argument[0].MapValue", "Argument[-1].MapValue", "value", "manual"]
+      - ["org.apache.commons.collections.map", "LRUMap", True, "get", "(Object,boolean)", "", "Argument[0].MapValue", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.collections.map", "LazyMap", True, "lazyMap", "", "", "Argument[0].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["org.apache.commons.collections.map", "LazyMap", True, "lazyMap", "", "", "Argument[0].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["org.apache.commons.collections.map", "LazySortedMap", True, "lazySortedMap", "", "", "Argument[0].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["org.apache.commons.collections.map", "LazySortedMap", True, "lazySortedMap", "", "", "Argument[0].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["org.apache.commons.collections.map", "LinkedMap", True, "LinkedMap", "(Map)", "", "Argument[0].MapKey", "Argument[-1].MapKey", "value", "manual"]
+      - ["org.apache.commons.collections.map", "LinkedMap", True, "LinkedMap", "(Map)", "", "Argument[0].MapValue", "Argument[-1].MapValue", "value", "manual"]
+      - ["org.apache.commons.collections.map", "LinkedMap", True, "asList", "", "", "Argument[-1].MapKey", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections.map", "LinkedMap", True, "get", "(int)", "", "Argument[-1].MapKey", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.collections.map", "LinkedMap", True, "getValue", "(int)", "", "Argument[-1].MapValue", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.collections.map", "LinkedMap", True, "remove", "(int)", "", "Argument[-1].MapValue", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.collections.map", "ListOrderedMap", True, "asList", "", "", "Argument[-1].MapKey", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections.map", "ListOrderedMap", True, "get", "(int)", "", "Argument[-1].MapKey", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.collections.map", "ListOrderedMap", True, "getValue", "(int)", "", "Argument[-1].MapValue", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.collections.map", "ListOrderedMap", True, "keyList", "", "", "Argument[-1].MapKey", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections.map", "ListOrderedMap", True, "listOrderedMap", "", "", "Argument[0].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["org.apache.commons.collections.map", "ListOrderedMap", True, "listOrderedMap", "", "", "Argument[0].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["org.apache.commons.collections.map", "ListOrderedMap", True, "put", "", "", "Argument[1]", "Argument[-1].MapKey", "value", "manual"]
+      - ["org.apache.commons.collections.map", "ListOrderedMap", True, "put", "", "", "Argument[2]", "Argument[-1].MapValue", "value", "manual"]
+      - ["org.apache.commons.collections.map", "ListOrderedMap", True, "putAll", "", "", "Argument[1].MapKey", "Argument[-1].MapKey", "value", "manual"]
+      - ["org.apache.commons.collections.map", "ListOrderedMap", True, "putAll", "", "", "Argument[1].MapValue", "Argument[-1].MapValue", "value", "manual"]
+      - ["org.apache.commons.collections.map", "ListOrderedMap", True, "remove", "(int)", "", "Argument[-1].MapValue", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.collections.map", "ListOrderedMap", True, "setValue", "", "", "Argument[1]", "Argument[-1].MapValue", "value", "manual"]
+      - ["org.apache.commons.collections.map", "ListOrderedMap", True, "valueList", "", "", "Argument[-1].MapValue", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections.map", "MultiKeyMap", True, "get", "", "", "Argument[-1].MapValue", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.collections.map", "MultiKeyMap", True, "put", "", "", "Argument[-1].MapValue", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.collections.map", "MultiKeyMap", True, "put", "(Object,Object,Object)", "", "Argument[0..1]", "Argument[-1].MapKey.Element", "value", "manual"]
+      - ["org.apache.commons.collections.map", "MultiKeyMap", True, "put", "(Object,Object,Object)", "", "Argument[2]", "Argument[-1].MapValue", "value", "manual"]
+      - ["org.apache.commons.collections.map", "MultiKeyMap", True, "put", "(Object,Object,Object,Object)", "", "Argument[0..2]", "Argument[-1].MapKey.Element", "value", "manual"]
+      - ["org.apache.commons.collections.map", "MultiKeyMap", True, "put", "(Object,Object,Object,Object)", "", "Argument[3]", "Argument[-1].MapValue", "value", "manual"]
+      - ["org.apache.commons.collections.map", "MultiKeyMap", True, "put", "(Object,Object,Object,Object,Object)", "", "Argument[0..3]", "Argument[-1].MapKey.Element", "value", "manual"]
+      - ["org.apache.commons.collections.map", "MultiKeyMap", True, "put", "(Object,Object,Object,Object,Object)", "", "Argument[4]", "Argument[-1].MapValue", "value", "manual"]
+      - ["org.apache.commons.collections.map", "MultiKeyMap", True, "put", "(Object,Object,Object,Object,Object,Object)", "", "Argument[0..4]", "Argument[-1].MapKey.Element", "value", "manual"]
+      - ["org.apache.commons.collections.map", "MultiKeyMap", True, "put", "(Object,Object,Object,Object,Object,Object)", "", "Argument[5]", "Argument[-1].MapValue", "value", "manual"]
+      - ["org.apache.commons.collections.map", "MultiKeyMap", True, "removeMultiKey", "", "", "Argument[-1].MapValue", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.collections.map", "MultiValueMap", True, "getCollection", "", "", "Argument[-1].MapValue.Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections.map", "MultiValueMap", True, "iterator", "()", "", "Argument[-1].MapKey", "ReturnValue.Element.MapKey", "value", "manual"]
+      - ["org.apache.commons.collections.map", "MultiValueMap", True, "iterator", "()", "", "Argument[-1].MapValue.Element", "ReturnValue.Element.MapValue", "value", "manual"]
+      - ["org.apache.commons.collections.map", "MultiValueMap", True, "iterator", "(Object)", "", "Argument[-1].MapValue.Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections.map", "MultiValueMap", True, "multiValueMap", "", "", "Argument[0].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["org.apache.commons.collections.map", "MultiValueMap", True, "multiValueMap", "", "", "Argument[0].MapValue.Element", "ReturnValue.MapValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections.map", "MultiValueMap", True, "putAll", "(Map)", "", "Argument[0].MapValue", "Argument[-1].MapValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections.map", "MultiValueMap", True, "putAll", "(Map)", "", "Argument[0].MapValue.Element", "Argument[-1].MapValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections.map", "MultiValueMap", True, "putAll", "(Object,Collection)", "", "Argument[0]", "Argument[-1].MapKey", "value", "manual"]
+      - ["org.apache.commons.collections.map", "MultiValueMap", True, "putAll", "(Object,Collection)", "", "Argument[1].Element", "Argument[-1].MapValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections.map", "MultiValueMap", True, "values", "", "", "Argument[-1].MapValue.Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections.map", "PassiveExpiringMap", True, "PassiveExpiringMap", "(ExpirationPolicy,Map)", "", "Argument[1].MapKey", "Argument[-1].MapKey", "value", "manual"]
+      - ["org.apache.commons.collections.map", "PassiveExpiringMap", True, "PassiveExpiringMap", "(ExpirationPolicy,Map)", "", "Argument[1].MapValue", "Argument[-1].MapValue", "value", "manual"]
+      - ["org.apache.commons.collections.map", "PassiveExpiringMap", True, "PassiveExpiringMap", "(Map)", "", "Argument[0].MapKey", "Argument[-1].MapKey", "value", "manual"]
+      - ["org.apache.commons.collections.map", "PassiveExpiringMap", True, "PassiveExpiringMap", "(Map)", "", "Argument[0].MapValue", "Argument[-1].MapValue", "value", "manual"]
+      - ["org.apache.commons.collections.map", "PassiveExpiringMap", True, "PassiveExpiringMap", "(long,Map)", "", "Argument[1].MapKey", "Argument[-1].MapKey", "value", "manual"]
+      - ["org.apache.commons.collections.map", "PassiveExpiringMap", True, "PassiveExpiringMap", "(long,Map)", "", "Argument[1].MapValue", "Argument[-1].MapValue", "value", "manual"]
+      - ["org.apache.commons.collections.map", "PassiveExpiringMap", True, "PassiveExpiringMap", "(long,TimeUnit,Map)", "", "Argument[2].MapKey", "Argument[-1].MapKey", "value", "manual"]
+      - ["org.apache.commons.collections.map", "PassiveExpiringMap", True, "PassiveExpiringMap", "(long,TimeUnit,Map)", "", "Argument[2].MapValue", "Argument[-1].MapValue", "value", "manual"]
+      - ["org.apache.commons.collections.map", "PredicatedMap", True, "predicatedMap", "", "", "Argument[0].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["org.apache.commons.collections.map", "PredicatedMap", True, "predicatedMap", "", "", "Argument[0].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["org.apache.commons.collections.map", "PredicatedSortedMap", True, "predicatedSortedMap", "", "", "Argument[0].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["org.apache.commons.collections.map", "PredicatedSortedMap", True, "predicatedSortedMap", "", "", "Argument[0].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["org.apache.commons.collections.map", "SingletonMap", True, "SingletonMap", "(Entry)", "", "Argument[0].MapKey", "Argument[-1].MapKey", "value", "manual"]
+      - ["org.apache.commons.collections.map", "SingletonMap", True, "SingletonMap", "(Entry)", "", "Argument[0].MapValue", "Argument[-1].MapValue", "value", "manual"]
+      - ["org.apache.commons.collections.map", "SingletonMap", True, "SingletonMap", "(KeyValue)", "", "Argument[0].MapKey", "Argument[-1].MapKey", "value", "manual"]
+      - ["org.apache.commons.collections.map", "SingletonMap", True, "SingletonMap", "(KeyValue)", "", "Argument[0].MapValue", "Argument[-1].MapValue", "value", "manual"]
+      - ["org.apache.commons.collections.map", "SingletonMap", True, "SingletonMap", "(Map)", "", "Argument[0].MapKey", "Argument[-1].MapKey", "value", "manual"]
+      - ["org.apache.commons.collections.map", "SingletonMap", True, "SingletonMap", "(Map)", "", "Argument[0].MapValue", "Argument[-1].MapValue", "value", "manual"]
+      - ["org.apache.commons.collections.map", "SingletonMap", True, "SingletonMap", "(Object,Object)", "", "Argument[0]", "Argument[-1].MapKey", "value", "manual"]
+      - ["org.apache.commons.collections.map", "SingletonMap", True, "SingletonMap", "(Object,Object)", "", "Argument[1]", "Argument[-1].MapValue", "value", "manual"]
+      - ["org.apache.commons.collections.map", "SingletonMap", True, "setValue", "", "", "Argument[0]", "Argument[-1].MapValue", "value", "manual"]
+      - ["org.apache.commons.collections.map", "TransformedMap", True, "transformingMap", "", "", "Argument[0].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["org.apache.commons.collections.map", "TransformedMap", True, "transformingMap", "", "", "Argument[0].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["org.apache.commons.collections.map", "TransformedSortedMap", True, "transformingSortedMap", "", "", "Argument[0].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["org.apache.commons.collections.map", "TransformedSortedMap", True, "transformingSortedMap", "", "", "Argument[0].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["org.apache.commons.collections.map", "UnmodifiableEntrySet", True, "unmodifiableEntrySet", "", "", "Argument[0].Element.MapKey", "ReturnValue.Element.MapKey", "value", "manual"]
+      - ["org.apache.commons.collections.map", "UnmodifiableEntrySet", True, "unmodifiableEntrySet", "", "", "Argument[0].Element.MapValue", "ReturnValue.Element.MapValue", "value", "manual"]
+      - ["org.apache.commons.collections.map", "UnmodifiableMap", True, "unmodifiableMap", "", "", "Argument[0].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["org.apache.commons.collections.map", "UnmodifiableMap", True, "unmodifiableMap", "", "", "Argument[0].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["org.apache.commons.collections.map", "UnmodifiableOrderedMap", True, "unmodifiableOrderedMap", "", "", "Argument[0].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["org.apache.commons.collections.map", "UnmodifiableOrderedMap", True, "unmodifiableOrderedMap", "", "", "Argument[0].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["org.apache.commons.collections.map", "UnmodifiableSortedMap", True, "unmodifiableSortedMap", "", "", "Argument[0].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["org.apache.commons.collections.map", "UnmodifiableSortedMap", True, "unmodifiableSortedMap", "", "", "Argument[0].MapValue", "ReturnValue.MapValue", "value", "manual"]
diff --git a/java/ql/lib/ext/org.apache.commons.collections.model.yml b/java/ql/lib/ext/org.apache.commons.collections.model.yml
new file mode 100644
index 00000000000..13192b5a709
--- /dev/null
+++ b/java/ql/lib/ext/org.apache.commons.collections.model.yml
@@ -0,0 +1,365 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSummaryModel
+    data:
+      - ["org.apache.commons.collections", "ArrayStack", True, "peek", "", "", "Argument[-1].Element", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.collections", "ArrayStack", True, "pop", "", "", "Argument[-1].Element", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.collections", "ArrayStack", True, "push", "", "", "Argument[0]", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections", "ArrayStack", True, "push", "", "", "Argument[0]", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.collections", "Bag", True, "add", "", "", "Argument[0]", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections", "Bag", True, "uniqueSet", "", "", "Argument[-1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "BagUtils", True, "collectionBag", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "BagUtils", True, "predicatedBag", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "BagUtils", True, "predicatedSortedBag", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "BagUtils", True, "synchronizedBag", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "BagUtils", True, "synchronizedSortedBag", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "BagUtils", True, "transformingBag", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "BagUtils", True, "transformingSortedBag", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "BagUtils", True, "unmodifiableBag", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "BagUtils", True, "unmodifiableSortedBag", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "BidiMap", True, "getKey", "", "", "Argument[-1].MapKey", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.collections", "BidiMap", True, "inverseBidiMap", "", "", "Argument[-1].MapKey", "ReturnValue.MapValue", "value", "manual"]
+      - ["org.apache.commons.collections", "BidiMap", True, "inverseBidiMap", "", "", "Argument[-1].MapValue", "ReturnValue.MapKey", "value", "manual"]
+      - ["org.apache.commons.collections", "BidiMap", True, "removeValue", "", "", "Argument[-1].MapKey", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.collections", "CollectionUtils", True, "addAll", "(Collection,Enumeration)", "", "Argument[1].Element", "Argument[0].Element", "value", "manual"]
+      - ["org.apache.commons.collections", "CollectionUtils", True, "addAll", "(Collection,Iterable)", "", "Argument[1].Element", "Argument[0].Element", "value", "manual"]
+      - ["org.apache.commons.collections", "CollectionUtils", True, "addAll", "(Collection,Iterator)", "", "Argument[1].Element", "Argument[0].Element", "value", "manual"]
+      - ["org.apache.commons.collections", "CollectionUtils", True, "addAll", "(Collection,Object[])", "", "Argument[1].ArrayElement", "Argument[0].Element", "value", "manual"]
+      - ["org.apache.commons.collections", "CollectionUtils", True, "addIgnoreNull", "", "", "Argument[1]", "Argument[0].Element", "value", "manual"]
+      - ["org.apache.commons.collections", "CollectionUtils", True, "collate", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "CollectionUtils", True, "collate", "", "", "Argument[1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "CollectionUtils", True, "disjunction", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "CollectionUtils", True, "disjunction", "", "", "Argument[1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "CollectionUtils", True, "emptyIfNull", "", "", "Argument[0]", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.collections", "CollectionUtils", True, "extractSingleton", "", "", "Argument[0].Element", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.collections", "CollectionUtils", True, "find", "", "", "Argument[0].Element", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.collections", "CollectionUtils", True, "get", "(Iterable,int)", "", "Argument[0].Element", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.collections", "CollectionUtils", True, "get", "(Iterator,int)", "", "Argument[0].Element", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.collections", "CollectionUtils", True, "get", "(Map,int)", "", "Argument[0].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["org.apache.commons.collections", "CollectionUtils", True, "get", "(Map,int)", "", "Argument[0].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["org.apache.commons.collections", "CollectionUtils", True, "get", "(Object,int)", "", "Argument[0].ArrayElement", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.collections", "CollectionUtils", True, "get", "(Object,int)", "", "Argument[0].Element", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.collections", "CollectionUtils", True, "get", "(Object,int)", "", "Argument[0].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["org.apache.commons.collections", "CollectionUtils", True, "get", "(Object,int)", "", "Argument[0].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["org.apache.commons.collections", "CollectionUtils", True, "getCardinalityMap", "", "", "Argument[0].Element", "ReturnValue.MapKey", "value", "manual"]
+      - ["org.apache.commons.collections", "CollectionUtils", True, "intersection", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "CollectionUtils", True, "intersection", "", "", "Argument[1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "CollectionUtils", True, "permutations", "", "", "Argument[0].Element", "ReturnValue.Element.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "CollectionUtils", True, "predicatedCollection", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "CollectionUtils", True, "removeAll", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "CollectionUtils", True, "retainAll", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "CollectionUtils", True, "select", "(Iterable,Predicate)", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "CollectionUtils", True, "select", "(Iterable,Predicate,Collection)", "", "Argument[0].Element", "Argument[2].Element", "value", "manual"]
+      - ["org.apache.commons.collections", "CollectionUtils", True, "select", "(Iterable,Predicate,Collection)", "", "Argument[2]", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.collections", "CollectionUtils", True, "select", "(Iterable,Predicate,Collection,Collection)", "", "Argument[0].Element", "Argument[2].Element", "value", "manual"]
+      - ["org.apache.commons.collections", "CollectionUtils", True, "select", "(Iterable,Predicate,Collection,Collection)", "", "Argument[0].Element", "Argument[3].Element", "value", "manual"]
+      - ["org.apache.commons.collections", "CollectionUtils", True, "select", "(Iterable,Predicate,Collection,Collection)", "", "Argument[2]", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.collections", "CollectionUtils", True, "selectRejected", "(Iterable,Predicate)", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "CollectionUtils", True, "selectRejected", "(Iterable,Predicate,Collection)", "", "Argument[0].Element", "Argument[2].Element", "value", "manual"]
+      - ["org.apache.commons.collections", "CollectionUtils", True, "selectRejected", "(Iterable,Predicate,Collection)", "", "Argument[2]", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.collections", "CollectionUtils", True, "subtract", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "CollectionUtils", True, "synchronizedCollection", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "CollectionUtils", True, "transformingCollection", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "CollectionUtils", True, "union", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "CollectionUtils", True, "union", "", "", "Argument[1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "CollectionUtils", True, "unmodifiableCollection", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "EnumerationUtils", True, "get", "", "", "Argument[0].Element", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.collections", "EnumerationUtils", True, "toList", "(Enumeration)", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "EnumerationUtils", True, "toList", "(StringTokenizer)", "", "Argument[0]", "ReturnValue.Element", "taint", "manual"]
+      - ["org.apache.commons.collections", "FluentIterable", True, "append", "(Iterable)", "", "Argument[-1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "FluentIterable", True, "append", "(Iterable)", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "FluentIterable", True, "append", "(Object[])", "", "Argument[-1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "FluentIterable", True, "append", "(Object[])", "", "Argument[0].ArrayElement", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "FluentIterable", True, "asEnumeration", "", "", "Argument[-1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "FluentIterable", True, "collate", "", "", "Argument[-1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "FluentIterable", True, "collate", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "FluentIterable", True, "copyInto", "", "", "Argument[-1].Element", "Argument[0].Element", "value", "manual"]
+      - ["org.apache.commons.collections", "FluentIterable", True, "eval", "", "", "Argument[-1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "FluentIterable", True, "filter", "", "", "Argument[-1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "FluentIterable", True, "get", "", "", "Argument[-1].Element", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.collections", "FluentIterable", True, "limit", "", "", "Argument[-1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "FluentIterable", True, "loop", "", "", "Argument[-1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "FluentIterable", True, "of", "(Iterable)", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "FluentIterable", True, "of", "(Object)", "", "Argument[0]", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "FluentIterable", True, "of", "(Object[])", "", "Argument[0].ArrayElement", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "FluentIterable", True, "reverse", "", "", "Argument[-1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "FluentIterable", True, "skip", "", "", "Argument[-1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "FluentIterable", True, "toArray", "", "", "Argument[-1].Element", "ReturnValue.ArrayElement", "value", "manual"]
+      - ["org.apache.commons.collections", "FluentIterable", True, "toList", "", "", "Argument[-1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "FluentIterable", True, "unique", "", "", "Argument[-1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "FluentIterable", True, "unmodifiable", "", "", "Argument[-1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "FluentIterable", True, "zip", "(Iterable)", "", "Argument[-1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "FluentIterable", True, "zip", "(Iterable)", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "FluentIterable", True, "zip", "(Iterable[])", "", "Argument[-1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "FluentIterable", True, "zip", "(Iterable[])", "", "Argument[0].ArrayElement.Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "Get", True, "entrySet", "", "", "Argument[-1].MapKey", "ReturnValue.Element.MapKey", "value", "manual"]
+      - ["org.apache.commons.collections", "Get", True, "entrySet", "", "", "Argument[-1].MapValue", "ReturnValue.Element.MapValue", "value", "manual"]
+      - ["org.apache.commons.collections", "Get", True, "get", "", "", "Argument[-1].MapValue", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.collections", "Get", True, "keySet", "()", "", "Argument[-1].MapKey", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "Get", True, "remove", "(Object)", "", "Argument[-1].MapValue", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.collections", "Get", True, "values", "()", "", "Argument[-1].MapValue", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "IterableGet", True, "mapIterator", "", "", "Argument[-1].MapKey", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "IterableGet", True, "mapIterator", "", "", "Argument[-1].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["org.apache.commons.collections", "IterableUtils", True, "boundedIterable", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "IterableUtils", True, "chainedIterable", "(Iterable,Iterable)", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "IterableUtils", True, "chainedIterable", "(Iterable,Iterable)", "", "Argument[1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "IterableUtils", True, "chainedIterable", "(Iterable,Iterable,Iterable)", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "IterableUtils", True, "chainedIterable", "(Iterable,Iterable,Iterable)", "", "Argument[1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "IterableUtils", True, "chainedIterable", "(Iterable,Iterable,Iterable)", "", "Argument[2].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "IterableUtils", True, "chainedIterable", "(Iterable,Iterable,Iterable,Iterable)", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "IterableUtils", True, "chainedIterable", "(Iterable,Iterable,Iterable,Iterable)", "", "Argument[1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "IterableUtils", True, "chainedIterable", "(Iterable,Iterable,Iterable,Iterable)", "", "Argument[2].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "IterableUtils", True, "chainedIterable", "(Iterable,Iterable,Iterable,Iterable)", "", "Argument[3].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "IterableUtils", True, "chainedIterable", "(Iterable[])", "", "Argument[0].ArrayElement.Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "IterableUtils", True, "collatedIterable", "(Comparator,Iterable,Iterable)", "", "Argument[1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "IterableUtils", True, "collatedIterable", "(Comparator,Iterable,Iterable)", "", "Argument[2].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "IterableUtils", True, "collatedIterable", "(Iterable,Iterable)", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "IterableUtils", True, "collatedIterable", "(Iterable,Iterable)", "", "Argument[1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "IterableUtils", True, "emptyIfNull", "", "", "Argument[0]", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.collections", "IterableUtils", True, "filteredIterable", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "IterableUtils", True, "find", "", "", "Argument[0].Element", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.collections", "IterableUtils", True, "first", "", "", "Argument[0].Element", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.collections", "IterableUtils", True, "forEachButLast", "", "", "Argument[0].Element", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.collections", "IterableUtils", True, "get", "", "", "Argument[0].Element", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.collections", "IterableUtils", True, "loopingIterable", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "IterableUtils", True, "partition", "", "", "Argument[0].Element", "ReturnValue.Element.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "IterableUtils", True, "reversedIterable", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "IterableUtils", True, "skippingIterable", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "IterableUtils", True, "toList", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "IterableUtils", True, "toString", "", "", "Argument[2]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.collections", "IterableUtils", True, "toString", "", "", "Argument[3]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.collections", "IterableUtils", True, "toString", "", "", "Argument[4]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.collections", "IterableUtils", True, "uniqueIterable", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "IterableUtils", True, "unmodifiableIterable", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "IterableUtils", True, "zippingIterable", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "IterableUtils", True, "zippingIterable", "(Iterable,Iterable)", "", "Argument[1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "IterableUtils", True, "zippingIterable", "(Iterable,Iterable[])", "", "Argument[1].ArrayElement.Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "IteratorUtils", True, "arrayIterator", "", "", "Argument[0].ArrayElement", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "IteratorUtils", True, "arrayListIterator", "", "", "Argument[0].ArrayElement", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "IteratorUtils", True, "asEnumeration", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "IteratorUtils", True, "asIterable", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "IteratorUtils", True, "asIterator", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "IteratorUtils", True, "asMultipleUseIterable", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "IteratorUtils", True, "boundedIterator", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "IteratorUtils", True, "chainedIterator", "(Collection)", "", "Argument[0].Element.Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "IteratorUtils", True, "chainedIterator", "(Iterator,Iterator)", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "IteratorUtils", True, "chainedIterator", "(Iterator,Iterator)", "", "Argument[1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "IteratorUtils", True, "chainedIterator", "(Iterator[])", "", "Argument[0].ArrayElement.Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "IteratorUtils", True, "collatedIterator", "(Comparator,Collection)", "", "Argument[1].Element.Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "IteratorUtils", True, "collatedIterator", "(Comparator,Iterator,Iterator)", "", "Argument[1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "IteratorUtils", True, "collatedIterator", "(Comparator,Iterator,Iterator)", "", "Argument[2].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "IteratorUtils", True, "collatedIterator", "(Comparator,Iterator[])", "", "Argument[1].ArrayElement.Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "IteratorUtils", True, "filteredIterator", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "IteratorUtils", True, "filteredListIterator", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "IteratorUtils", True, "find", "", "", "Argument[0].Element", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.collections", "IteratorUtils", True, "first", "", "", "Argument[0].Element", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.collections", "IteratorUtils", True, "forEachButLast", "", "", "Argument[0].Element", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.collections", "IteratorUtils", True, "get", "", "", "Argument[0].Element", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.collections", "IteratorUtils", True, "getIterator", "", "", "Argument[0]", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "IteratorUtils", True, "getIterator", "", "", "Argument[0].ArrayElement", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "IteratorUtils", True, "getIterator", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "IteratorUtils", True, "getIterator", "", "", "Argument[0].MapValue", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "IteratorUtils", True, "loopingIterator", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "IteratorUtils", True, "loopingListIterator", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "IteratorUtils", True, "peekingIterator", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "IteratorUtils", True, "pushbackIterator", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "IteratorUtils", True, "singletonIterator", "", "", "Argument[0]", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "IteratorUtils", True, "singletonListIterator", "", "", "Argument[0]", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "IteratorUtils", True, "skippingIterator", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "IteratorUtils", True, "toArray", "", "", "Argument[0].Element", "ReturnValue.ArrayElement", "value", "manual"]
+      - ["org.apache.commons.collections", "IteratorUtils", True, "toList", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "IteratorUtils", True, "toListIterator", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "IteratorUtils", True, "toString", "", "", "Argument[2]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.collections", "IteratorUtils", True, "toString", "", "", "Argument[3]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.collections", "IteratorUtils", True, "toString", "", "", "Argument[4]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.collections", "IteratorUtils", True, "unmodifiableIterator", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "IteratorUtils", True, "unmodifiableListIterator", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "IteratorUtils", True, "unmodifiableMapIterator", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "IteratorUtils", True, "unmodifiableMapIterator", "", "", "Argument[0].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["org.apache.commons.collections", "IteratorUtils", True, "zippingIterator", "(Iterator,Iterator)", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "IteratorUtils", True, "zippingIterator", "(Iterator,Iterator)", "", "Argument[1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "IteratorUtils", True, "zippingIterator", "(Iterator,Iterator,Iterator)", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "IteratorUtils", True, "zippingIterator", "(Iterator,Iterator,Iterator)", "", "Argument[1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "IteratorUtils", True, "zippingIterator", "(Iterator,Iterator,Iterator)", "", "Argument[2].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "IteratorUtils", True, "zippingIterator", "(Iterator[])", "", "Argument[0].ArrayElement.Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "KeyValue", True, "getKey", "", "", "Argument[-1].MapKey", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.collections", "KeyValue", True, "getValue", "", "", "Argument[-1].MapValue", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.collections", "ListUtils", True, "defaultIfNull", "", "", "Argument[0]", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.collections", "ListUtils", True, "defaultIfNull", "", "", "Argument[1]", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.collections", "ListUtils", True, "emptyIfNull", "", "", "Argument[0]", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.collections", "ListUtils", True, "fixedSizeList", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "ListUtils", True, "intersection", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "ListUtils", True, "intersection", "", "", "Argument[1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "ListUtils", True, "lazyList", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "ListUtils", True, "longestCommonSubsequence", "(CharSequence,CharSequence)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.collections", "ListUtils", True, "longestCommonSubsequence", "(CharSequence,CharSequence)", "", "Argument[1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.collections", "ListUtils", True, "longestCommonSubsequence", "(List,List)", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "ListUtils", True, "longestCommonSubsequence", "(List,List)", "", "Argument[1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "ListUtils", True, "longestCommonSubsequence", "(List,List,Equator)", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "ListUtils", True, "longestCommonSubsequence", "(List,List,Equator)", "", "Argument[1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "ListUtils", True, "partition", "", "", "Argument[0].Element", "ReturnValue.Element.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "ListUtils", True, "predicatedList", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "ListUtils", True, "removeAll", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "ListUtils", True, "retainAll", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "ListUtils", True, "select", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "ListUtils", True, "selectRejected", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "ListUtils", True, "subtract", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "ListUtils", True, "sum", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "ListUtils", True, "sum", "", "", "Argument[1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "ListUtils", True, "synchronizedList", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "ListUtils", True, "transformedList", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "ListUtils", True, "union", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "ListUtils", True, "union", "", "", "Argument[1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "ListUtils", True, "unmodifiableList", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "MapIterator", True, "getKey", "", "", "Argument[-1].Element", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.collections", "MapIterator", True, "getValue", "", "", "Argument[-1].MapValue", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.collections", "MapIterator", True, "setValue", "", "", "Argument[-1].MapValue", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.collections", "MapIterator", True, "setValue", "", "", "Argument[0]", "Argument[-1].MapValue", "value", "manual"]
+      - ["org.apache.commons.collections", "MapUtils", True, "emptyIfNull", "", "", "Argument[0]", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.collections", "MapUtils", True, "fixedSizeMap", "", "", "Argument[0].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["org.apache.commons.collections", "MapUtils", True, "fixedSizeMap", "", "", "Argument[0].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["org.apache.commons.collections", "MapUtils", True, "fixedSizeSortedMap", "", "", "Argument[0].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["org.apache.commons.collections", "MapUtils", True, "fixedSizeSortedMap", "", "", "Argument[0].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["org.apache.commons.collections", "MapUtils", True, "getMap", "", "", "Argument[0].MapValue", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.collections", "MapUtils", True, "getMap", "", "", "Argument[2]", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.collections", "MapUtils", True, "getObject", "", "", "Argument[0].MapValue", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.collections", "MapUtils", True, "getObject", "", "", "Argument[2]", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.collections", "MapUtils", True, "getString", "", "", "Argument[0].MapValue", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.collections", "MapUtils", True, "getString", "", "", "Argument[2]", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.collections", "MapUtils", True, "invertMap", "", "", "Argument[0].MapKey", "ReturnValue.MapValue", "value", "manual"]
+      - ["org.apache.commons.collections", "MapUtils", True, "invertMap", "", "", "Argument[0].MapValue", "ReturnValue.MapKey", "value", "manual"]
+      - ["org.apache.commons.collections", "MapUtils", True, "iterableMap", "", "", "Argument[0].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["org.apache.commons.collections", "MapUtils", True, "iterableMap", "", "", "Argument[0].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["org.apache.commons.collections", "MapUtils", True, "iterableSortedMap", "", "", "Argument[0].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["org.apache.commons.collections", "MapUtils", True, "iterableSortedMap", "", "", "Argument[0].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["org.apache.commons.collections", "MapUtils", True, "lazyMap", "", "", "Argument[0].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["org.apache.commons.collections", "MapUtils", True, "lazyMap", "", "", "Argument[0].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["org.apache.commons.collections", "MapUtils", True, "lazySortedMap", "", "", "Argument[0].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["org.apache.commons.collections", "MapUtils", True, "lazySortedMap", "", "", "Argument[0].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["org.apache.commons.collections", "MapUtils", True, "multiValueMap", "", "", "Argument[0].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["org.apache.commons.collections", "MapUtils", True, "multiValueMap", "", "", "Argument[0].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["org.apache.commons.collections", "MapUtils", True, "orderedMap", "", "", "Argument[0].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["org.apache.commons.collections", "MapUtils", True, "orderedMap", "", "", "Argument[0].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["org.apache.commons.collections", "MapUtils", True, "populateMap", "(Map,Iterable,Transformer)", "", "Argument[1].Element", "Argument[0].MapValue", "value", "manual"]
+      - ["org.apache.commons.collections", "MapUtils", True, "populateMap", "(MultiMap,Iterable,Transformer)", "", "Argument[1].Element", "Argument[0].MapValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "MapUtils", True, "predicatedMap", "", "", "Argument[0].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["org.apache.commons.collections", "MapUtils", True, "predicatedMap", "", "", "Argument[0].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["org.apache.commons.collections", "MapUtils", True, "predicatedSortedMap", "", "", "Argument[0].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["org.apache.commons.collections", "MapUtils", True, "predicatedSortedMap", "", "", "Argument[0].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["org.apache.commons.collections", "MapUtils", True, "putAll", "", "", "Argument[1].ArrayElement", "Argument[0].MapKey", "value", "manual"]
+      - ["org.apache.commons.collections", "MapUtils", True, "putAll", "", "", "Argument[1].ArrayElement", "Argument[0].MapValue", "value", "manual"]
+      - ["org.apache.commons.collections", "MapUtils", True, "putAll", "", "", "Argument[1].ArrayElement", "ReturnValue.MapKey", "value", "manual"]
+      - ["org.apache.commons.collections", "MapUtils", True, "putAll", "", "", "Argument[1].ArrayElement", "ReturnValue.MapValue", "value", "manual"]
+      - ["org.apache.commons.collections", "MapUtils", True, "putAll", "", "", "Argument[1].ArrayElement.ArrayElement", "Argument[0].MapKey", "value", "manual"]
+      - ["org.apache.commons.collections", "MapUtils", True, "putAll", "", "", "Argument[1].ArrayElement.ArrayElement", "Argument[0].MapValue", "value", "manual"]
+      - ["org.apache.commons.collections", "MapUtils", True, "putAll", "", "", "Argument[1].ArrayElement.ArrayElement", "ReturnValue.MapKey", "value", "manual"]
+      - ["org.apache.commons.collections", "MapUtils", True, "putAll", "", "", "Argument[1].ArrayElement.ArrayElement", "ReturnValue.MapValue", "value", "manual"]
+      - ["org.apache.commons.collections", "MapUtils", True, "putAll", "", "", "Argument[1].ArrayElement.MapKey", "Argument[0].MapKey", "value", "manual"]
+      - ["org.apache.commons.collections", "MapUtils", True, "putAll", "", "", "Argument[1].ArrayElement.MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["org.apache.commons.collections", "MapUtils", True, "putAll", "", "", "Argument[1].ArrayElement.MapValue", "Argument[0].MapValue", "value", "manual"]
+      - ["org.apache.commons.collections", "MapUtils", True, "putAll", "", "", "Argument[1].ArrayElement.MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["org.apache.commons.collections", "MapUtils", True, "safeAddToMap", "", "", "Argument[1]", "Argument[0].MapKey", "value", "manual"]
+      - ["org.apache.commons.collections", "MapUtils", True, "safeAddToMap", "", "", "Argument[2]", "Argument[0].MapValue", "value", "manual"]
+      - ["org.apache.commons.collections", "MapUtils", True, "synchronizedMap", "", "", "Argument[0].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["org.apache.commons.collections", "MapUtils", True, "synchronizedMap", "", "", "Argument[0].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["org.apache.commons.collections", "MapUtils", True, "synchronizedSortedMap", "", "", "Argument[0].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["org.apache.commons.collections", "MapUtils", True, "synchronizedSortedMap", "", "", "Argument[0].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["org.apache.commons.collections", "MapUtils", True, "toMap", "", "", "Argument[0].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["org.apache.commons.collections", "MapUtils", True, "toMap", "", "", "Argument[0].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["org.apache.commons.collections", "MapUtils", True, "transformedMap", "", "", "Argument[0].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["org.apache.commons.collections", "MapUtils", True, "transformedMap", "", "", "Argument[0].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["org.apache.commons.collections", "MapUtils", True, "transformedSortedMap", "", "", "Argument[0].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["org.apache.commons.collections", "MapUtils", True, "transformedSortedMap", "", "", "Argument[0].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["org.apache.commons.collections", "MapUtils", True, "unmodifiableMap", "", "", "Argument[0].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["org.apache.commons.collections", "MapUtils", True, "unmodifiableMap", "", "", "Argument[0].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["org.apache.commons.collections", "MapUtils", True, "unmodifiableSortedMap", "", "", "Argument[0].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["org.apache.commons.collections", "MapUtils", True, "unmodifiableSortedMap", "", "", "Argument[0].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["org.apache.commons.collections", "MultiMap", True, "get", "", "", "Argument[-1].MapValue.Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "MultiMap", True, "put", "", "", "Argument[0]", "Argument[-1].MapKey", "value", "manual"]
+      - ["org.apache.commons.collections", "MultiMap", True, "put", "", "", "Argument[1]", "Argument[-1].MapValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "MultiMap", True, "values", "", "", "Argument[-1].MapValue.Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "MultiMapUtils", True, "emptyIfNull", "", "", "Argument[0]", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.collections", "MultiMapUtils", True, "getCollection", "", "", "Argument[0].MapValue", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.collections", "MultiMapUtils", True, "getValuesAsBag", "", "", "Argument[0].MapValue.Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "MultiMapUtils", True, "getValuesAsList", "", "", "Argument[0].MapValue.Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "MultiMapUtils", True, "getValuesAsSet", "", "", "Argument[0].MapValue.Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "MultiMapUtils", True, "transformedMultiValuedMap", "", "", "Argument[0].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["org.apache.commons.collections", "MultiMapUtils", True, "transformedMultiValuedMap", "", "", "Argument[0].MapValue.Element", "ReturnValue.MapValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "MultiMapUtils", True, "unmodifiableMultiValuedMap", "", "", "Argument[0].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["org.apache.commons.collections", "MultiMapUtils", True, "unmodifiableMultiValuedMap", "", "", "Argument[0].MapValue.Element", "ReturnValue.MapValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "MultiSet", True, "add", "", "", "Argument[0]", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections", "MultiSet", True, "entrySet", "", "", "Argument[-1].Element", "ReturnValue.Element.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "MultiSet", True, "uniqueSet", "", "", "Argument[-1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "MultiSet$Entry", True, "getElement", "", "", "Argument[-1].Element", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.collections", "MultiSetUtils", True, "predicatedMultiSet", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "MultiSetUtils", True, "synchronizedMultiSet", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "MultiSetUtils", True, "unmodifiableMultiSet", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "MultiValuedMap", True, "asMap", "", "", "Argument[-1].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["org.apache.commons.collections", "MultiValuedMap", True, "asMap", "", "", "Argument[-1].MapValue.Element", "ReturnValue.MapValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "MultiValuedMap", True, "entries", "", "", "Argument[-1].MapKey", "ReturnValue.Element.MapKey", "value", "manual"]
+      - ["org.apache.commons.collections", "MultiValuedMap", True, "entries", "", "", "Argument[-1].MapValue.Element", "ReturnValue.Element.MapValue", "value", "manual"]
+      - ["org.apache.commons.collections", "MultiValuedMap", True, "get", "", "", "Argument[-1].MapValue.Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "MultiValuedMap", True, "keySet", "", "", "Argument[-1].MapKey", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "MultiValuedMap", True, "keys", "", "", "Argument[-1].MapKey", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "MultiValuedMap", True, "mapIterator", "", "", "Argument[-1].MapKey", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "MultiValuedMap", True, "mapIterator", "", "", "Argument[-1].MapValue.Element", "ReturnValue.MapValue", "value", "manual"]
+      - ["org.apache.commons.collections", "MultiValuedMap", True, "put", "", "", "Argument[0]", "Argument[-1].MapKey", "value", "manual"]
+      - ["org.apache.commons.collections", "MultiValuedMap", True, "put", "", "", "Argument[1]", "Argument[-1].MapValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "MultiValuedMap", True, "putAll", "(Map)", "", "Argument[0].MapKey", "Argument[-1].MapKey", "value", "manual"]
+      - ["org.apache.commons.collections", "MultiValuedMap", True, "putAll", "(Map)", "", "Argument[0].MapValue", "Argument[-1].MapValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "MultiValuedMap", True, "putAll", "(MultiValuedMap)", "", "Argument[0].MapKey", "Argument[-1].MapKey", "value", "manual"]
+      - ["org.apache.commons.collections", "MultiValuedMap", True, "putAll", "(MultiValuedMap)", "", "Argument[0].MapValue.Element", "Argument[-1].MapValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "MultiValuedMap", True, "putAll", "(Object,Iterable)", "", "Argument[0]", "Argument[-1].MapKey", "value", "manual"]
+      - ["org.apache.commons.collections", "MultiValuedMap", True, "putAll", "(Object,Iterable)", "", "Argument[1].Element", "Argument[-1].MapValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "MultiValuedMap", True, "remove", "", "", "Argument[-1].MapValue.Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "MultiValuedMap", True, "values", "", "", "Argument[-1].MapValue.Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "OrderedIterator", True, "previous", "", "", "Argument[-1].Element", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.collections", "OrderedMap", True, "firstKey", "", "", "Argument[-1].MapKey", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.collections", "OrderedMap", True, "lastKey", "", "", "Argument[-1].MapKey", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.collections", "OrderedMap", True, "nextKey", "", "", "Argument[-1].MapKey", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.collections", "OrderedMap", True, "previousKey", "", "", "Argument[-1].MapKey", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.collections", "Put", True, "put", "", "", "Argument[-1].MapValue", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.collections", "Put", True, "put", "", "", "Argument[0]", "Argument[-1].MapKey", "value", "manual"]
+      - ["org.apache.commons.collections", "Put", True, "put", "", "", "Argument[1]", "Argument[-1].MapValue", "value", "manual"]
+      - ["org.apache.commons.collections", "Put", True, "putAll", "(Map)", "", "Argument[0].MapKey", "Argument[-1].MapKey", "value", "manual"]
+      - ["org.apache.commons.collections", "Put", True, "putAll", "(Map)", "", "Argument[0].MapValue", "Argument[-1].MapValue", "value", "manual"]
+      - ["org.apache.commons.collections", "QueueUtils", True, "predicatedQueue", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "QueueUtils", True, "synchronizedQueue", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "QueueUtils", True, "transformingQueue", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "QueueUtils", True, "unmodifiableQueue", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "SetUtils", True, "difference", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "SetUtils", True, "disjunction", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "SetUtils", True, "disjunction", "", "", "Argument[1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "SetUtils", True, "emptyIfNull", "", "", "Argument[0]", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.collections", "SetUtils", True, "hashSet", "", "", "Argument[0].ArrayElement", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "SetUtils", True, "intersection", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "SetUtils", True, "intersection", "", "", "Argument[1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "SetUtils", True, "orderedSet", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "SetUtils", True, "predicatedNavigableSet", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "SetUtils", True, "predicatedSet", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "SetUtils", True, "predicatedSortedSet", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "SetUtils", True, "synchronizedSet", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "SetUtils", True, "synchronizedSortedSet", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "SetUtils", True, "transformedNavigableSet", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "SetUtils", True, "transformedSet", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "SetUtils", True, "transformedSortedSet", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "SetUtils", True, "union", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "SetUtils", True, "union", "", "", "Argument[1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "SetUtils", True, "unmodifiableNavigableSet", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "SetUtils", True, "unmodifiableSet", "(Object[])", "", "Argument[0].ArrayElement", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "SetUtils", True, "unmodifiableSet", "(Set)", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "SetUtils", True, "unmodifiableSortedSet", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "SetUtils$SetView", True, "copyInto", "", "", "Argument[-1].Element", "Argument[0].Element", "value", "manual"]
+      - ["org.apache.commons.collections", "SetUtils$SetView", True, "createIterator", "", "", "Argument[-1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "SetUtils$SetView", True, "toSet", "", "", "Argument[-1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections", "SortedBag", True, "first", "", "", "Argument[-1].Element", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.collections", "SortedBag", True, "last", "", "", "Argument[-1].Element", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.collections", "SplitMapUtils", True, "readableMap", "", "", "Argument[0].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["org.apache.commons.collections", "SplitMapUtils", True, "readableMap", "", "", "Argument[0].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["org.apache.commons.collections", "SplitMapUtils", True, "writableMap", "", "", "Argument[0].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["org.apache.commons.collections", "SplitMapUtils", True, "writableMap", "", "", "Argument[0].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["org.apache.commons.collections", "Trie", True, "prefixMap", "", "", "Argument[-1].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["org.apache.commons.collections", "Trie", True, "prefixMap", "", "", "Argument[-1].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["org.apache.commons.collections", "TrieUtils", True, "unmodifiableTrie", "", "", "Argument[0].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["org.apache.commons.collections", "TrieUtils", True, "unmodifiableTrie", "", "", "Argument[0].MapValue", "ReturnValue.MapValue", "value", "manual"]
diff --git a/java/ql/lib/ext/org.apache.commons.collections.multimap.model.yml b/java/ql/lib/ext/org.apache.commons.collections.multimap.model.yml
new file mode 100644
index 00000000000..be759e9ccbb
--- /dev/null
+++ b/java/ql/lib/ext/org.apache.commons.collections.multimap.model.yml
@@ -0,0 +1,17 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSummaryModel
+    data:
+      - ["org.apache.commons.collections.multimap", "ArrayListValuedHashMap", True, "ArrayListValuedHashMap", "(Map)", "", "Argument[0].MapKey", "Argument[-1].MapKey", "value", "manual"]
+      - ["org.apache.commons.collections.multimap", "ArrayListValuedHashMap", True, "ArrayListValuedHashMap", "(Map)", "", "Argument[0].MapValue", "Argument[-1].MapValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections.multimap", "ArrayListValuedHashMap", True, "ArrayListValuedHashMap", "(MultiValuedMap)", "", "Argument[0].MapKey", "Argument[-1].MapKey", "value", "manual"]
+      - ["org.apache.commons.collections.multimap", "ArrayListValuedHashMap", True, "ArrayListValuedHashMap", "(MultiValuedMap)", "", "Argument[0].MapValue.Element", "Argument[-1].MapValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections.multimap", "HashSetValuedHashMap", True, "HashSetValuedHashMap", "(Map)", "", "Argument[0].MapKey", "Argument[-1].MapKey", "value", "manual"]
+      - ["org.apache.commons.collections.multimap", "HashSetValuedHashMap", True, "HashSetValuedHashMap", "(Map)", "", "Argument[0].MapValue", "Argument[-1].MapValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections.multimap", "HashSetValuedHashMap", True, "HashSetValuedHashMap", "(MultiValuedMap)", "", "Argument[0].MapKey", "Argument[-1].MapKey", "value", "manual"]
+      - ["org.apache.commons.collections.multimap", "HashSetValuedHashMap", True, "HashSetValuedHashMap", "(MultiValuedMap)", "", "Argument[0].MapValue.Element", "Argument[-1].MapValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections.multimap", "TransformedMultiValuedMap", True, "transformingMap", "", "", "Argument[0].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["org.apache.commons.collections.multimap", "TransformedMultiValuedMap", True, "transformingMap", "", "", "Argument[0].MapValue.Element", "ReturnValue.MapValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections.multimap", "UnmodifiableMultiValuedMap", True, "unmodifiableMultiValuedMap", "(MultiValuedMap)", "", "Argument[0].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["org.apache.commons.collections.multimap", "UnmodifiableMultiValuedMap", True, "unmodifiableMultiValuedMap", "(MultiValuedMap)", "", "Argument[0].MapValue.Element", "ReturnValue.MapValue.Element", "value", "manual"]
diff --git a/java/ql/lib/ext/org.apache.commons.collections.multiset.model.yml b/java/ql/lib/ext/org.apache.commons.collections.multiset.model.yml
new file mode 100644
index 00000000000..af9e42fb88a
--- /dev/null
+++ b/java/ql/lib/ext/org.apache.commons.collections.multiset.model.yml
@@ -0,0 +1,9 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSummaryModel
+    data:
+      - ["org.apache.commons.collections.multiset", "HashMultiSet", True, "HashMultiSet", "", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections.multiset", "PredicatedMultiSet", True, "predicatedMultiSet", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections.multiset", "SynchronizedMultiSet", True, "synchronizedMultiSet", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections.multiset", "UnmodifiableMultiSet", True, "unmodifiableMultiSet", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
diff --git a/java/ql/lib/ext/org.apache.commons.collections.properties.model.yml b/java/ql/lib/ext/org.apache.commons.collections.properties.model.yml
new file mode 100644
index 00000000000..0552bb105bb
--- /dev/null
+++ b/java/ql/lib/ext/org.apache.commons.collections.properties.model.yml
@@ -0,0 +1,13 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSummaryModel
+    data:
+      - ["org.apache.commons.collections.properties", "AbstractPropertiesFactory", True, "load", "(ClassLoader,String)", "", "Argument[1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.collections.properties", "AbstractPropertiesFactory", True, "load", "(File)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.collections.properties", "AbstractPropertiesFactory", True, "load", "(InputStream)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.collections.properties", "AbstractPropertiesFactory", True, "load", "(Path)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.collections.properties", "AbstractPropertiesFactory", True, "load", "(Reader)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.collections.properties", "AbstractPropertiesFactory", True, "load", "(String)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.collections.properties", "AbstractPropertiesFactory", True, "load", "(URI)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.collections.properties", "AbstractPropertiesFactory", True, "load", "(URL)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
diff --git a/java/ql/lib/ext/org.apache.commons.collections.queue.model.yml b/java/ql/lib/ext/org.apache.commons.collections.queue.model.yml
new file mode 100644
index 00000000000..41c40f6fb4c
--- /dev/null
+++ b/java/ql/lib/ext/org.apache.commons.collections.queue.model.yml
@@ -0,0 +1,11 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSummaryModel
+    data:
+      - ["org.apache.commons.collections.queue", "CircularFifoQueue", True, "CircularFifoQueue", "(Collection)", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections.queue", "CircularFifoQueue", True, "get", "", "", "Argument[-1].Element", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.collections.queue", "PredicatedQueue", True, "predicatedQueue", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections.queue", "SynchronizedQueue", True, "synchronizedQueue", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections.queue", "TransformedQueue", True, "transformingQueue", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections.queue", "UnmodifiableQueue", True, "unmodifiableQueue", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
diff --git a/java/ql/lib/ext/org.apache.commons.collections.set.model.yml b/java/ql/lib/ext/org.apache.commons.collections.set.model.yml
new file mode 100644
index 00000000000..56f97fd9b2e
--- /dev/null
+++ b/java/ql/lib/ext/org.apache.commons.collections.set.model.yml
@@ -0,0 +1,36 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSummaryModel
+    data:
+      - ["org.apache.commons.collections.set", "AbstractNavigableSetDecorator", True, "AbstractNavigableSetDecorator", "", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections.set", "AbstractSetDecorator", True, "AbstractSetDecorator", "", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections.set", "AbstractSortedSetDecorator", True, "AbstractSortedSetDecorator", "", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections.set", "CompositeSet", True, "CompositeSet", "(Set)", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections.set", "CompositeSet", True, "CompositeSet", "(Set[])", "", "Argument[0].ArrayElement.Element", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections.set", "CompositeSet", True, "addComposited", "(Set)", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections.set", "CompositeSet", True, "addComposited", "(Set,Set)", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections.set", "CompositeSet", True, "addComposited", "(Set,Set)", "", "Argument[1].Element", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections.set", "CompositeSet", True, "addComposited", "(Set[])", "", "Argument[0].ArrayElement.Element", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections.set", "CompositeSet", True, "getSets", "", "", "Argument[-1].Element", "ReturnValue.Element.Element", "value", "manual"]
+      - ["org.apache.commons.collections.set", "CompositeSet", True, "toSet", "", "", "Argument[-1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections.set", "CompositeSet$SetMutator", True, "add", "", "", "Argument[2]", "Argument[0].Element", "value", "manual"]
+      - ["org.apache.commons.collections.set", "CompositeSet$SetMutator", True, "add", "", "", "Argument[2]", "Argument[1].Element.Element", "value", "manual"]
+      - ["org.apache.commons.collections.set", "CompositeSet$SetMutator", True, "addAll", "", "", "Argument[2].Element", "Argument[0].Element", "value", "manual"]
+      - ["org.apache.commons.collections.set", "CompositeSet$SetMutator", True, "addAll", "", "", "Argument[2].Element", "Argument[1].Element.Element", "value", "manual"]
+      - ["org.apache.commons.collections.set", "ListOrderedSet", True, "add", "", "", "Argument[1]", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections.set", "ListOrderedSet", True, "addAll", "", "", "Argument[1].Element", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections.set", "ListOrderedSet", True, "asList", "", "", "Argument[-1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections.set", "ListOrderedSet", True, "get", "", "", "Argument[-1].Element", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.collections.set", "ListOrderedSet", True, "listOrderedSet", "(List)", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections.set", "ListOrderedSet", True, "listOrderedSet", "(Set)", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections.set", "MapBackedSet", True, "mapBackedSet", "", "", "Argument[0].MapKey", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections.set", "PredicatedNavigableSet", True, "predicatedNavigableSet", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections.set", "PredicatedSet", True, "predicatedSet", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections.set", "PredicatedSortedSet", True, "predicatedSortedSet", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections.set", "TransformedNavigableSet", True, "transformingNavigableSet", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections.set", "TransformedSet", True, "transformingSet", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections.set", "TransformedSortedSet", True, "transformingSortedSet", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections.set", "UnmodifiableNavigableSet", True, "unmodifiableNavigableSet", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections.set", "UnmodifiableSet", True, "unmodifiableSet", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections.set", "UnmodifiableSortedSet", True, "unmodifiableSortedSet", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
diff --git a/java/ql/lib/ext/org.apache.commons.collections.splitmap.model.yml b/java/ql/lib/ext/org.apache.commons.collections.splitmap.model.yml
new file mode 100644
index 00000000000..307081c6171
--- /dev/null
+++ b/java/ql/lib/ext/org.apache.commons.collections.splitmap.model.yml
@@ -0,0 +1,9 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSummaryModel
+    data:
+      - ["org.apache.commons.collections.splitmap", "AbstractIterableGetMapDecorator", True, "AbstractIterableGetMapDecorator", "", "", "Argument[0].MapKey", "Argument[-1].MapKey", "value", "manual"]
+      - ["org.apache.commons.collections.splitmap", "AbstractIterableGetMapDecorator", True, "AbstractIterableGetMapDecorator", "", "", "Argument[0].MapValue", "Argument[-1].MapValue", "value", "manual"]
+      - ["org.apache.commons.collections.splitmap", "TransformedSplitMap", True, "transformingMap", "", "", "Argument[0].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["org.apache.commons.collections.splitmap", "TransformedSplitMap", True, "transformingMap", "", "", "Argument[0].MapValue", "ReturnValue.MapValue", "value", "manual"]
diff --git a/java/ql/lib/ext/org.apache.commons.collections.trie.model.yml b/java/ql/lib/ext/org.apache.commons.collections.trie.model.yml
new file mode 100644
index 00000000000..1312bd074b8
--- /dev/null
+++ b/java/ql/lib/ext/org.apache.commons.collections.trie.model.yml
@@ -0,0 +1,13 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSummaryModel
+    data:
+      - ["org.apache.commons.collections.trie", "AbstractPatriciaTrie", True, "select", "", "", "Argument[-1].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["org.apache.commons.collections.trie", "AbstractPatriciaTrie", True, "select", "", "", "Argument[-1].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["org.apache.commons.collections.trie", "AbstractPatriciaTrie", True, "selectKey", "", "", "Argument[-1].MapKey", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.collections.trie", "AbstractPatriciaTrie", True, "selectValue", "", "", "Argument[-1].MapValue", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.collections.trie", "PatriciaTrie", True, "PatriciaTrie", "", "", "Argument[0].MapKey", "Argument[-1].MapKey", "value", "manual"]
+      - ["org.apache.commons.collections.trie", "PatriciaTrie", True, "PatriciaTrie", "", "", "Argument[0].MapValue", "Argument[-1].MapValue", "value", "manual"]
+      - ["org.apache.commons.collections.trie", "UnmodifiableTrie", True, "unmodifiableTrie", "", "", "Argument[0].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["org.apache.commons.collections.trie", "UnmodifiableTrie", True, "unmodifiableTrie", "", "", "Argument[0].MapValue", "ReturnValue.MapValue", "value", "manual"]
diff --git a/java/ql/lib/ext/org.apache.commons.collections4.bag.model.yml b/java/ql/lib/ext/org.apache.commons.collections4.bag.model.yml
new file mode 100644
index 00000000000..5261491c1c7
--- /dev/null
+++ b/java/ql/lib/ext/org.apache.commons.collections4.bag.model.yml
@@ -0,0 +1,23 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSummaryModel
+    data:
+      - ["org.apache.commons.collections4.bag", "AbstractBagDecorator", True, "AbstractBagDecorator", "", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections4.bag", "AbstractMapBag", True, "AbstractMapBag", "", "", "Argument[0].MapKey", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections4.bag", "AbstractMapBag", True, "getMap", "", "", "Argument[-1].Element", "ReturnValue.MapKey", "value", "manual"]
+      - ["org.apache.commons.collections4.bag", "AbstractSortedBagDecorator", True, "AbstractSortedBagDecorator", "", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections4.bag", "CollectionBag", True, "CollectionBag", "", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections4.bag", "CollectionBag", True, "collectionBag", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4.bag", "CollectionSortedBag", True, "CollectionSortedBag", "", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections4.bag", "CollectionSortedBag", True, "collectionSortedBag", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4.bag", "HashBag", True, "HashBag", "", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections4.bag", "PredicatedBag", True, "predicatedBag", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4.bag", "PredicatedSortedBag", True, "predicatedSortedBag", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4.bag", "SynchronizedBag", True, "synchronizedBag", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4.bag", "SynchronizedSortedBag", True, "synchronizedSortedBag", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4.bag", "TransformedBag", True, "transformedBag", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4.bag", "TransformedSortedBag", True, "transformedSortedBag", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4.bag", "TreeBag", True, "TreeBag", "(Collection)", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections4.bag", "UnmodifiableBag", True, "unmodifiableBag", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4.bag", "UnmodifiableSortedBag", True, "unmodifiableSortedBag", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
diff --git a/java/ql/lib/ext/org.apache.commons.collections4.bidimap.model.yml b/java/ql/lib/ext/org.apache.commons.collections4.bidimap.model.yml
new file mode 100644
index 00000000000..3be0532ec4d
--- /dev/null
+++ b/java/ql/lib/ext/org.apache.commons.collections4.bidimap.model.yml
@@ -0,0 +1,37 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSummaryModel
+    data:
+      - ["org.apache.commons.collections4.bidimap", "AbstractBidiMapDecorator", True, "AbstractBidiMapDecorator", "", "", "Argument[0].MapKey", "Argument[-1].MapKey", "value", "manual"]
+      - ["org.apache.commons.collections4.bidimap", "AbstractBidiMapDecorator", True, "AbstractBidiMapDecorator", "", "", "Argument[0].MapValue", "Argument[-1].MapValue", "value", "manual"]
+      - ["org.apache.commons.collections4.bidimap", "AbstractDualBidiMap", True, "AbstractDualBidiMap", "", "", "Argument[0].MapKey", "Argument[-1].MapKey", "value", "manual"]
+      - ["org.apache.commons.collections4.bidimap", "AbstractDualBidiMap", True, "AbstractDualBidiMap", "", "", "Argument[0].MapValue", "Argument[-1].MapValue", "value", "manual"]
+      - ["org.apache.commons.collections4.bidimap", "AbstractDualBidiMap", True, "AbstractDualBidiMap", "", "", "Argument[1].MapKey", "Argument[-1].MapValue", "value", "manual"]
+      - ["org.apache.commons.collections4.bidimap", "AbstractDualBidiMap", True, "AbstractDualBidiMap", "", "", "Argument[1].MapValue", "Argument[-1].MapKey", "value", "manual"]
+      - ["org.apache.commons.collections4.bidimap", "AbstractDualBidiMap", True, "AbstractDualBidiMap", "", "", "Argument[2].MapKey", "Argument[-1].MapValue", "value", "manual"]
+      - ["org.apache.commons.collections4.bidimap", "AbstractDualBidiMap", True, "AbstractDualBidiMap", "", "", "Argument[2].MapValue", "Argument[-1].MapKey", "value", "manual"]
+      - ["org.apache.commons.collections4.bidimap", "AbstractOrderedBidiMapDecorator", True, "AbstractOrderedBidiMapDecorator", "", "", "Argument[0].MapKey", "Argument[-1].MapKey", "value", "manual"]
+      - ["org.apache.commons.collections4.bidimap", "AbstractOrderedBidiMapDecorator", True, "AbstractOrderedBidiMapDecorator", "", "", "Argument[0].MapValue", "Argument[-1].MapValue", "value", "manual"]
+      - ["org.apache.commons.collections4.bidimap", "AbstractSortedBidiMapDecorator", True, "AbstractSortedBidiMapDecorator", "", "", "Argument[0].MapKey", "Argument[-1].MapKey", "value", "manual"]
+      - ["org.apache.commons.collections4.bidimap", "AbstractSortedBidiMapDecorator", True, "AbstractSortedBidiMapDecorator", "", "", "Argument[0].MapValue", "Argument[-1].MapValue", "value", "manual"]
+      - ["org.apache.commons.collections4.bidimap", "DualHashBidiMap", True, "DualHashBidiMap", "(Map)", "", "Argument[0].MapKey", "Argument[-1].MapKey", "value", "manual"]
+      - ["org.apache.commons.collections4.bidimap", "DualHashBidiMap", True, "DualHashBidiMap", "(Map)", "", "Argument[0].MapValue", "Argument[-1].MapValue", "value", "manual"]
+      - ["org.apache.commons.collections4.bidimap", "DualLinkedHashBidiMap", True, "DualLinkedHashBidiMap", "(Map)", "", "Argument[0].MapKey", "Argument[-1].MapKey", "value", "manual"]
+      - ["org.apache.commons.collections4.bidimap", "DualLinkedHashBidiMap", True, "DualLinkedHashBidiMap", "(Map)", "", "Argument[0].MapValue", "Argument[-1].MapValue", "value", "manual"]
+      - ["org.apache.commons.collections4.bidimap", "DualTreeBidiMap", True, "DualTreeBidiMap", "(Map)", "", "Argument[0].MapKey", "Argument[-1].MapKey", "value", "manual"]
+      - ["org.apache.commons.collections4.bidimap", "DualTreeBidiMap", True, "DualTreeBidiMap", "(Map)", "", "Argument[0].MapValue", "Argument[-1].MapValue", "value", "manual"]
+      - ["org.apache.commons.collections4.bidimap", "DualTreeBidiMap", True, "inverseOrderedBidiMap", "", "", "Argument[-1].MapKey", "ReturnValue.MapValue", "value", "manual"]
+      - ["org.apache.commons.collections4.bidimap", "DualTreeBidiMap", True, "inverseOrderedBidiMap", "", "", "Argument[-1].MapValue", "ReturnValue.MapKey", "value", "manual"]
+      - ["org.apache.commons.collections4.bidimap", "DualTreeBidiMap", True, "inverseSortedBidiMap", "", "", "Argument[-1].MapKey", "ReturnValue.MapValue", "value", "manual"]
+      - ["org.apache.commons.collections4.bidimap", "DualTreeBidiMap", True, "inverseSortedBidiMap", "", "", "Argument[-1].MapValue", "ReturnValue.MapKey", "value", "manual"]
+      - ["org.apache.commons.collections4.bidimap", "TreeBidiMap", True, "TreeBidiMap", "", "", "Argument[0].MapKey", "Argument[-1].MapKey", "value", "manual"]
+      - ["org.apache.commons.collections4.bidimap", "TreeBidiMap", True, "TreeBidiMap", "", "", "Argument[0].MapValue", "Argument[-1].MapValue", "value", "manual"]
+      - ["org.apache.commons.collections4.bidimap", "UnmodifiableBidiMap", True, "unmodifiableBidiMap", "", "", "Argument[0].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["org.apache.commons.collections4.bidimap", "UnmodifiableBidiMap", True, "unmodifiableBidiMap", "", "", "Argument[0].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["org.apache.commons.collections4.bidimap", "UnmodifiableOrderedBidiMap", True, "inverseOrderedBidiMap", "", "", "Argument[-1].MapKey", "ReturnValue.MapValue", "value", "manual"]
+      - ["org.apache.commons.collections4.bidimap", "UnmodifiableOrderedBidiMap", True, "inverseOrderedBidiMap", "", "", "Argument[-1].MapValue", "ReturnValue.MapKey", "value", "manual"]
+      - ["org.apache.commons.collections4.bidimap", "UnmodifiableOrderedBidiMap", True, "unmodifiableOrderedBidiMap", "", "", "Argument[0].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["org.apache.commons.collections4.bidimap", "UnmodifiableOrderedBidiMap", True, "unmodifiableOrderedBidiMap", "", "", "Argument[0].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["org.apache.commons.collections4.bidimap", "UnmodifiableSortedBidiMap", True, "unmodifiableSortedBidiMap", "", "", "Argument[0].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["org.apache.commons.collections4.bidimap", "UnmodifiableSortedBidiMap", True, "unmodifiableSortedBidiMap", "", "", "Argument[0].MapValue", "ReturnValue.MapValue", "value", "manual"]
diff --git a/java/ql/lib/ext/org.apache.commons.collections4.collection.model.yml b/java/ql/lib/ext/org.apache.commons.collections4.collection.model.yml
new file mode 100644
index 00000000000..1c53d650fd3
--- /dev/null
+++ b/java/ql/lib/ext/org.apache.commons.collections4.collection.model.yml
@@ -0,0 +1,45 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSummaryModel
+    data:
+      - ["org.apache.commons.collections4.collection", "AbstractCollectionDecorator", True, "AbstractCollectionDecorator", "", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections4.collection", "AbstractCollectionDecorator", True, "decorated", "", "", "Argument[-1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4.collection", "AbstractCollectionDecorator", True, "setCollection", "", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections4.collection", "CompositeCollection", True, "CompositeCollection", "(Collection)", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections4.collection", "CompositeCollection", True, "CompositeCollection", "(Collection,Collection)", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections4.collection", "CompositeCollection", True, "CompositeCollection", "(Collection,Collection)", "", "Argument[1].Element", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections4.collection", "CompositeCollection", True, "CompositeCollection", "(Collection[])", "", "Argument[0].ArrayElement.Element", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections4.collection", "CompositeCollection", True, "addComposited", "(Collection)", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections4.collection", "CompositeCollection", True, "addComposited", "(Collection,Collection)", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections4.collection", "CompositeCollection", True, "addComposited", "(Collection,Collection)", "", "Argument[1].Element", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections4.collection", "CompositeCollection", True, "addComposited", "(Collection[])", "", "Argument[0].ArrayElement.Element", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections4.collection", "CompositeCollection", True, "getCollections", "", "", "Argument[-1].Element", "ReturnValue.Element.Element", "value", "manual"]
+      - ["org.apache.commons.collections4.collection", "CompositeCollection", True, "toCollection", "", "", "Argument[-1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4.collection", "CompositeCollection$CollectionMutator", True, "add", "", "", "Argument[2]", "Argument[0].Element", "value", "manual"]
+      - ["org.apache.commons.collections4.collection", "CompositeCollection$CollectionMutator", True, "add", "", "", "Argument[2]", "Argument[1].Element.Element", "value", "manual"]
+      - ["org.apache.commons.collections4.collection", "CompositeCollection$CollectionMutator", True, "addAll", "", "", "Argument[2].Element", "Argument[0].Element", "value", "manual"]
+      - ["org.apache.commons.collections4.collection", "CompositeCollection$CollectionMutator", True, "addAll", "", "", "Argument[2].Element", "Argument[1].Element.Element", "value", "manual"]
+      - ["org.apache.commons.collections4.collection", "IndexedCollection", True, "IndexedCollection", "", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections4.collection", "IndexedCollection", True, "get", "", "", "Argument[-1].Element", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.collections4.collection", "IndexedCollection", True, "nonUniqueIndexedCollection", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4.collection", "IndexedCollection", True, "uniqueIndexedCollection", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4.collection", "IndexedCollection", True, "values", "", "", "Argument[-1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4.collection", "PredicatedCollection", True, "predicatedCollection", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4.collection", "PredicatedCollection$Builder", True, "add", "", "", "Argument[0]", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections4.collection", "PredicatedCollection$Builder", True, "addAll", "", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections4.collection", "PredicatedCollection$Builder", True, "createPredicatedBag", "", "", "Argument[-1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4.collection", "PredicatedCollection$Builder", True, "createPredicatedBag", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4.collection", "PredicatedCollection$Builder", True, "createPredicatedList", "", "", "Argument[-1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4.collection", "PredicatedCollection$Builder", True, "createPredicatedList", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4.collection", "PredicatedCollection$Builder", True, "createPredicatedMultiSet", "", "", "Argument[-1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4.collection", "PredicatedCollection$Builder", True, "createPredicatedMultiSet", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4.collection", "PredicatedCollection$Builder", True, "createPredicatedQueue", "", "", "Argument[-1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4.collection", "PredicatedCollection$Builder", True, "createPredicatedQueue", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4.collection", "PredicatedCollection$Builder", True, "createPredicatedSet", "", "", "Argument[-1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4.collection", "PredicatedCollection$Builder", True, "createPredicatedSet", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4.collection", "PredicatedCollection$Builder", True, "rejectedElements", "", "", "Argument[-1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4.collection", "SynchronizedCollection", True, "synchronizedCollection", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4.collection", "TransformedCollection", True, "transformingCollection", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4.collection", "UnmodifiableBoundedCollection", True, "unmodifiableBoundedCollection", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4.collection", "UnmodifiableCollection", True, "unmodifiableCollection", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
diff --git a/java/ql/lib/ext/org.apache.commons.collections4.iterators.model.yml b/java/ql/lib/ext/org.apache.commons.collections4.iterators.model.yml
new file mode 100644
index 00000000000..ca86086d08b
--- /dev/null
+++ b/java/ql/lib/ext/org.apache.commons.collections4.iterators.model.yml
@@ -0,0 +1,80 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSummaryModel
+    data:
+      - ["org.apache.commons.collections4.iterators", "AbstractIteratorDecorator", True, "AbstractIteratorDecorator", "", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections4.iterators", "AbstractListIteratorDecorator", True, "AbstractListIteratorDecorator", "", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections4.iterators", "AbstractListIteratorDecorator", True, "getListIterator", "", "", "Argument[-1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4.iterators", "AbstractMapIteratorDecorator", True, "AbstractMapIteratorDecorator", "", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections4.iterators", "AbstractMapIteratorDecorator", True, "AbstractMapIteratorDecorator", "", "", "Argument[0].MapValue", "Argument[-1].MapValue", "value", "manual"]
+      - ["org.apache.commons.collections4.iterators", "AbstractMapIteratorDecorator", True, "getMapIterator", "", "", "Argument[-1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4.iterators", "AbstractMapIteratorDecorator", True, "getMapIterator", "", "", "Argument[-1].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["org.apache.commons.collections4.iterators", "AbstractOrderedMapIteratorDecorator", True, "AbstractOrderedMapIteratorDecorator", "", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections4.iterators", "AbstractOrderedMapIteratorDecorator", True, "AbstractOrderedMapIteratorDecorator", "", "", "Argument[0].MapValue", "Argument[-1].MapValue", "value", "manual"]
+      - ["org.apache.commons.collections4.iterators", "AbstractOrderedMapIteratorDecorator", True, "getOrderedMapIterator", "", "", "Argument[-1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4.iterators", "AbstractOrderedMapIteratorDecorator", True, "getOrderedMapIterator", "", "", "Argument[-1].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["org.apache.commons.collections4.iterators", "AbstractUntypedIteratorDecorator", True, "AbstractUntypedIteratorDecorator", "", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections4.iterators", "AbstractUntypedIteratorDecorator", True, "getIterator", "", "", "Argument[-1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4.iterators", "ArrayIterator", True, "ArrayIterator", "", "", "Argument[0].ArrayElement", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections4.iterators", "ArrayIterator", True, "getArray", "", "", "Argument[-1].Element", "ReturnValue.ArrayElement", "value", "manual"]
+      - ["org.apache.commons.collections4.iterators", "ArrayListIterator", True, "ArrayListIterator", "", "", "Argument[0].ArrayElement", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections4.iterators", "BoundedIterator", True, "BoundedIterator", "", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections4.iterators", "CollatingIterator", True, "CollatingIterator", "(Comparator,Collection)", "", "Argument[1].Element.Element", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections4.iterators", "CollatingIterator", True, "CollatingIterator", "(Comparator,Iterator,Iterator)", "", "Argument[1].Element", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections4.iterators", "CollatingIterator", True, "CollatingIterator", "(Comparator,Iterator,Iterator)", "", "Argument[2].Element", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections4.iterators", "CollatingIterator", True, "CollatingIterator", "(Comparator,Iterator[])", "", "Argument[1].ArrayElement.Element", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections4.iterators", "CollatingIterator", True, "addIterator", "", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections4.iterators", "CollatingIterator", True, "getIterators", "", "", "Argument[-1].Element", "ReturnValue.Element.Element", "value", "manual"]
+      - ["org.apache.commons.collections4.iterators", "CollatingIterator", True, "setIterator", "", "", "Argument[1].Element", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections4.iterators", "EnumerationIterator", True, "EnumerationIterator", "", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections4.iterators", "EnumerationIterator", True, "getEnumeration", "", "", "Argument[-1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4.iterators", "EnumerationIterator", True, "setEnumeration", "", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections4.iterators", "FilterIterator", True, "FilterIterator", "", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections4.iterators", "FilterIterator", True, "getIterator", "", "", "Argument[-1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4.iterators", "FilterIterator", True, "setIterator", "", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections4.iterators", "FilterListIterator", True, "FilterListIterator", "(ListIterator)", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections4.iterators", "FilterListIterator", True, "FilterListIterator", "(ListIterator,Predicate)", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections4.iterators", "FilterListIterator", True, "getListIterator", "", "", "Argument[-1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4.iterators", "FilterListIterator", True, "setListIterator", "", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections4.iterators", "IteratorChain", True, "IteratorChain", "(Collection)", "", "Argument[0].Element.Element", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections4.iterators", "IteratorChain", True, "IteratorChain", "(Iterator)", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections4.iterators", "IteratorChain", True, "IteratorChain", "(Iterator,Iterator)", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections4.iterators", "IteratorChain", True, "IteratorChain", "(Iterator,Iterator)", "", "Argument[1].Element", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections4.iterators", "IteratorChain", True, "IteratorChain", "(Iterator[])", "", "Argument[0].ArrayElement.Element", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections4.iterators", "IteratorChain", True, "addIterator", "", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections4.iterators", "IteratorEnumeration", True, "IteratorEnumeration", "", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections4.iterators", "IteratorEnumeration", True, "getIterator", "", "", "Argument[-1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4.iterators", "IteratorEnumeration", True, "setIterator", "", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections4.iterators", "IteratorIterable", True, "IteratorIterable", "", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections4.iterators", "ListIteratorWrapper", True, "ListIteratorWrapper", "", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections4.iterators", "LoopingIterator", True, "LoopingIterator", "", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections4.iterators", "LoopingListIterator", True, "LoopingListIterator", "", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections4.iterators", "ObjectArrayIterator", True, "ObjectArrayIterator", "", "", "Argument[0].ArrayElement", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections4.iterators", "ObjectArrayIterator", True, "getArray", "", "", "Argument[-1].Element", "ReturnValue.ArrayElement", "value", "manual"]
+      - ["org.apache.commons.collections4.iterators", "ObjectArrayListIterator", True, "ObjectArrayListIterator", "", "", "Argument[0].ArrayElement", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections4.iterators", "PeekingIterator", True, "PeekingIterator", "", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections4.iterators", "PeekingIterator", True, "element", "", "", "Argument[-1].Element", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.collections4.iterators", "PeekingIterator", True, "peek", "", "", "Argument[-1].Element", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.collections4.iterators", "PeekingIterator", True, "peekingIterator", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4.iterators", "PermutationIterator", True, "PermutationIterator", "", "", "Argument[0].Element", "Argument[-1].Element.Element", "value", "manual"]
+      - ["org.apache.commons.collections4.iterators", "PushbackIterator", True, "PushbackIterator", "", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections4.iterators", "PushbackIterator", True, "pushback", "", "", "Argument[0]", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections4.iterators", "PushbackIterator", True, "pushbackIterator", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4.iterators", "ReverseListIterator", True, "ReverseListIterator", "", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections4.iterators", "SingletonIterator", True, "SingletonIterator", "", "", "Argument[0]", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections4.iterators", "SingletonListIterator", True, "SingletonListIterator", "", "", "Argument[0]", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections4.iterators", "SkippingIterator", True, "SkippingIterator", "", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections4.iterators", "UniqueFilterIterator", True, "UniqueFilterIterator", "", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections4.iterators", "UnmodifiableIterator", True, "unmodifiableIterator", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4.iterators", "UnmodifiableListIterator", True, "umodifiableListIterator", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4.iterators", "UnmodifiableMapIterator", True, "unmodifiableMapIterator", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4.iterators", "UnmodifiableMapIterator", True, "unmodifiableMapIterator", "", "", "Argument[0].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["org.apache.commons.collections4.iterators", "UnmodifiableOrderedMapIterator", True, "unmodifiableOrderedMapIterator", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4.iterators", "UnmodifiableOrderedMapIterator", True, "unmodifiableOrderedMapIterator", "", "", "Argument[0].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["org.apache.commons.collections4.iterators", "ZippingIterator", True, "ZippingIterator", "(Iterator,Iterator)", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections4.iterators", "ZippingIterator", True, "ZippingIterator", "(Iterator,Iterator)", "", "Argument[1].Element", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections4.iterators", "ZippingIterator", True, "ZippingIterator", "(Iterator,Iterator,Iterator)", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections4.iterators", "ZippingIterator", True, "ZippingIterator", "(Iterator,Iterator,Iterator)", "", "Argument[1].Element", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections4.iterators", "ZippingIterator", True, "ZippingIterator", "(Iterator,Iterator,Iterator)", "", "Argument[2].Element", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections4.iterators", "ZippingIterator", True, "ZippingIterator", "(Iterator[])", "", "Argument[0].ArrayElement.Element", "Argument[-1].Element", "value", "manual"]
diff --git a/java/ql/lib/ext/org.apache.commons.collections4.keyvalue.model.yml b/java/ql/lib/ext/org.apache.commons.collections4.keyvalue.model.yml
new file mode 100644
index 00000000000..b62873ed707
--- /dev/null
+++ b/java/ql/lib/ext/org.apache.commons.collections4.keyvalue.model.yml
@@ -0,0 +1,57 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSummaryModel
+    data:
+      - ["org.apache.commons.collections4.keyvalue", "AbstractKeyValue", True, "AbstractKeyValue", "", "", "Argument[0]", "Argument[-1].MapKey", "value", "manual"]
+      - ["org.apache.commons.collections4.keyvalue", "AbstractKeyValue", True, "AbstractKeyValue", "", "", "Argument[1]", "Argument[-1].MapValue", "value", "manual"]
+      - ["org.apache.commons.collections4.keyvalue", "AbstractKeyValue", True, "setKey", "", "", "Argument[-1].MapKey", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.collections4.keyvalue", "AbstractKeyValue", True, "setKey", "", "", "Argument[0]", "Argument[-1].MapKey", "value", "manual"]
+      - ["org.apache.commons.collections4.keyvalue", "AbstractKeyValue", True, "setValue", "", "", "Argument[-1].MapValue", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.collections4.keyvalue", "AbstractKeyValue", True, "setValue", "", "", "Argument[0]", "Argument[-1].MapValue", "value", "manual"]
+      - ["org.apache.commons.collections4.keyvalue", "AbstractMapEntry", True, "AbstractMapEntry", "", "", "Argument[0]", "Argument[-1].MapKey", "value", "manual"]
+      - ["org.apache.commons.collections4.keyvalue", "AbstractMapEntry", True, "AbstractMapEntry", "", "", "Argument[1]", "Argument[-1].MapValue", "value", "manual"]
+      - ["org.apache.commons.collections4.keyvalue", "AbstractMapEntryDecorator", True, "AbstractMapEntryDecorator", "", "", "Argument[0].MapKey", "Argument[-1].MapKey", "value", "manual"]
+      - ["org.apache.commons.collections4.keyvalue", "AbstractMapEntryDecorator", True, "AbstractMapEntryDecorator", "", "", "Argument[0].MapValue", "Argument[-1].MapValue", "value", "manual"]
+      - ["org.apache.commons.collections4.keyvalue", "AbstractMapEntryDecorator", True, "getMapEntry", "", "", "Argument[-1].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["org.apache.commons.collections4.keyvalue", "AbstractMapEntryDecorator", True, "getMapEntry", "", "", "Argument[-1].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["org.apache.commons.collections4.keyvalue", "DefaultKeyValue", True, "DefaultKeyValue", "(Entry)", "", "Argument[0].MapKey", "Argument[-1].MapKey", "value", "manual"]
+      - ["org.apache.commons.collections4.keyvalue", "DefaultKeyValue", True, "DefaultKeyValue", "(Entry)", "", "Argument[0].MapValue", "Argument[-1].MapValue", "value", "manual"]
+      - ["org.apache.commons.collections4.keyvalue", "DefaultKeyValue", True, "DefaultKeyValue", "(KeyValue)", "", "Argument[0].MapKey", "Argument[-1].MapKey", "value", "manual"]
+      - ["org.apache.commons.collections4.keyvalue", "DefaultKeyValue", True, "DefaultKeyValue", "(KeyValue)", "", "Argument[0].MapValue", "Argument[-1].MapValue", "value", "manual"]
+      - ["org.apache.commons.collections4.keyvalue", "DefaultKeyValue", True, "DefaultKeyValue", "(Object,Object)", "", "Argument[0]", "Argument[-1].MapKey", "value", "manual"]
+      - ["org.apache.commons.collections4.keyvalue", "DefaultKeyValue", True, "DefaultKeyValue", "(Object,Object)", "", "Argument[1]", "Argument[-1].MapValue", "value", "manual"]
+      - ["org.apache.commons.collections4.keyvalue", "DefaultKeyValue", True, "toMapEntry", "", "", "Argument[-1].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["org.apache.commons.collections4.keyvalue", "DefaultKeyValue", True, "toMapEntry", "", "", "Argument[-1].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["org.apache.commons.collections4.keyvalue", "DefaultMapEntry", True, "DefaultMapEntry", "(Entry)", "", "Argument[0].MapKey", "Argument[-1].MapKey", "value", "manual"]
+      - ["org.apache.commons.collections4.keyvalue", "DefaultMapEntry", True, "DefaultMapEntry", "(Entry)", "", "Argument[0].MapValue", "Argument[-1].MapValue", "value", "manual"]
+      - ["org.apache.commons.collections4.keyvalue", "DefaultMapEntry", True, "DefaultMapEntry", "(KeyValue)", "", "Argument[0].MapKey", "Argument[-1].MapKey", "value", "manual"]
+      - ["org.apache.commons.collections4.keyvalue", "DefaultMapEntry", True, "DefaultMapEntry", "(KeyValue)", "", "Argument[0].MapValue", "Argument[-1].MapValue", "value", "manual"]
+      - ["org.apache.commons.collections4.keyvalue", "DefaultMapEntry", True, "DefaultMapEntry", "(Object,Object)", "", "Argument[0]", "Argument[-1].MapKey", "value", "manual"]
+      - ["org.apache.commons.collections4.keyvalue", "DefaultMapEntry", True, "DefaultMapEntry", "(Object,Object)", "", "Argument[1]", "Argument[-1].MapValue", "value", "manual"]
+      - ["org.apache.commons.collections4.keyvalue", "MultiKey", True, "MultiKey", "(Object,Object)", "", "Argument[0]", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections4.keyvalue", "MultiKey", True, "MultiKey", "(Object,Object)", "", "Argument[1]", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections4.keyvalue", "MultiKey", True, "MultiKey", "(Object,Object,Object)", "", "Argument[0]", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections4.keyvalue", "MultiKey", True, "MultiKey", "(Object,Object,Object)", "", "Argument[1]", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections4.keyvalue", "MultiKey", True, "MultiKey", "(Object,Object,Object)", "", "Argument[2]", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections4.keyvalue", "MultiKey", True, "MultiKey", "(Object,Object,Object,Object)", "", "Argument[0]", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections4.keyvalue", "MultiKey", True, "MultiKey", "(Object,Object,Object,Object)", "", "Argument[1]", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections4.keyvalue", "MultiKey", True, "MultiKey", "(Object,Object,Object,Object)", "", "Argument[2]", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections4.keyvalue", "MultiKey", True, "MultiKey", "(Object,Object,Object,Object)", "", "Argument[3]", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections4.keyvalue", "MultiKey", True, "MultiKey", "(Object,Object,Object,Object,Object)", "", "Argument[0]", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections4.keyvalue", "MultiKey", True, "MultiKey", "(Object,Object,Object,Object,Object)", "", "Argument[1]", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections4.keyvalue", "MultiKey", True, "MultiKey", "(Object,Object,Object,Object,Object)", "", "Argument[2]", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections4.keyvalue", "MultiKey", True, "MultiKey", "(Object,Object,Object,Object,Object)", "", "Argument[3]", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections4.keyvalue", "MultiKey", True, "MultiKey", "(Object,Object,Object,Object,Object)", "", "Argument[4]", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections4.keyvalue", "MultiKey", True, "MultiKey", "(Object[])", "", "Argument[0].ArrayElement", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections4.keyvalue", "MultiKey", True, "MultiKey", "(Object[],boolean)", "", "Argument[0].ArrayElement", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections4.keyvalue", "MultiKey", True, "getKey", "", "", "Argument[-1].Element", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.collections4.keyvalue", "MultiKey", True, "getKeys", "", "", "Argument[-1].Element", "ReturnValue.ArrayElement", "value", "manual"]
+      - ["org.apache.commons.collections4.keyvalue", "TiedMapEntry", True, "TiedMapEntry", "", "", "Argument[0].MapValue", "Argument[-1].MapValue", "value", "manual"]
+      - ["org.apache.commons.collections4.keyvalue", "TiedMapEntry", True, "TiedMapEntry", "", "", "Argument[1]", "Argument[-1].MapKey", "value", "manual"]
+      - ["org.apache.commons.collections4.keyvalue", "UnmodifiableMapEntry", True, "UnmodifiableMapEntry", "(Entry)", "", "Argument[0].MapKey", "Argument[-1].MapKey", "value", "manual"]
+      - ["org.apache.commons.collections4.keyvalue", "UnmodifiableMapEntry", True, "UnmodifiableMapEntry", "(Entry)", "", "Argument[0].MapValue", "Argument[-1].MapValue", "value", "manual"]
+      - ["org.apache.commons.collections4.keyvalue", "UnmodifiableMapEntry", True, "UnmodifiableMapEntry", "(KeyValue)", "", "Argument[0].MapKey", "Argument[-1].MapKey", "value", "manual"]
+      - ["org.apache.commons.collections4.keyvalue", "UnmodifiableMapEntry", True, "UnmodifiableMapEntry", "(KeyValue)", "", "Argument[0].MapValue", "Argument[-1].MapValue", "value", "manual"]
+      - ["org.apache.commons.collections4.keyvalue", "UnmodifiableMapEntry", True, "UnmodifiableMapEntry", "(Object,Object)", "", "Argument[0]", "Argument[-1].MapKey", "value", "manual"]
+      - ["org.apache.commons.collections4.keyvalue", "UnmodifiableMapEntry", True, "UnmodifiableMapEntry", "(Object,Object)", "", "Argument[1]", "Argument[-1].MapValue", "value", "manual"]
diff --git a/java/ql/lib/ext/org.apache.commons.collections4.list.model.yml b/java/ql/lib/ext/org.apache.commons.collections4.list.model.yml
new file mode 100644
index 00000000000..4307d7f1a92
--- /dev/null
+++ b/java/ql/lib/ext/org.apache.commons.collections4.list.model.yml
@@ -0,0 +1,27 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSummaryModel
+    data:
+      - ["org.apache.commons.collections4.list", "AbstractLinkedList", True, "AbstractLinkedList", "", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections4.list", "AbstractLinkedList", True, "addFirst", "", "", "Argument[0]", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections4.list", "AbstractLinkedList", True, "addLast", "", "", "Argument[0]", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections4.list", "AbstractLinkedList", True, "getFirst", "", "", "Argument[-1].Element", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.collections4.list", "AbstractLinkedList", True, "getLast", "", "", "Argument[-1].Element", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.collections4.list", "AbstractLinkedList", True, "removeFirst", "", "", "Argument[-1].Element", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.collections4.list", "AbstractLinkedList", True, "removeLast", "", "", "Argument[-1].Element", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.collections4.list", "AbstractListDecorator", True, "AbstractListDecorator", "", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections4.list", "AbstractSerializableListDecorator", True, "AbstractSerializableListDecorator", "", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections4.list", "CursorableLinkedList", True, "CursorableLinkedList", "", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections4.list", "CursorableLinkedList", True, "cursor", "", "", "Argument[-1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4.list", "FixedSizeList", True, "fixedSizeList", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4.list", "GrowthList", True, "growthList", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4.list", "LazyList", True, "lazyList", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4.list", "NodeCachingLinkedList", True, "NodeCachingLinkedList", "(Collection)", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections4.list", "PredicatedList", True, "predicatedList", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4.list", "SetUniqueList", True, "asSet", "", "", "Argument[-1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4.list", "SetUniqueList", True, "setUniqueList", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4.list", "TransformedList", True, "transformingList", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4.list", "TreeList", True, "TreeList", "", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections4.list", "UnmodifiableList", True, "UnmodifiableList", "", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections4.list", "UnmodifiableList", True, "unmodifiableList", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
diff --git a/java/ql/lib/ext/org.apache.commons.collections4.map.model.yml b/java/ql/lib/ext/org.apache.commons.collections4.map.model.yml
new file mode 100644
index 00000000000..77b0d66f081
--- /dev/null
+++ b/java/ql/lib/ext/org.apache.commons.collections4.map.model.yml
@@ -0,0 +1,133 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSummaryModel
+    data:
+      - ["org.apache.commons.collections4.map", "AbstractHashedMap", True, "AbstractHashedMap", "(Map)", "", "Argument[0].MapKey", "Argument[-1].MapKey", "value", "manual"]
+      - ["org.apache.commons.collections4.map", "AbstractHashedMap", True, "AbstractHashedMap", "(Map)", "", "Argument[0].MapValue", "Argument[-1].MapValue", "value", "manual"]
+      - ["org.apache.commons.collections4.map", "AbstractLinkedMap", True, "AbstractLinkedMap", "(Map)", "", "Argument[0].MapKey", "Argument[-1].MapKey", "value", "manual"]
+      - ["org.apache.commons.collections4.map", "AbstractLinkedMap", True, "AbstractLinkedMap", "(Map)", "", "Argument[0].MapValue", "Argument[-1].MapValue", "value", "manual"]
+      - ["org.apache.commons.collections4.map", "AbstractMapDecorator", True, "AbstractMapDecorator", "(Map)", "", "Argument[0].MapKey", "Argument[-1].MapKey", "value", "manual"]
+      - ["org.apache.commons.collections4.map", "AbstractMapDecorator", True, "AbstractMapDecorator", "(Map)", "", "Argument[0].MapValue", "Argument[-1].MapValue", "value", "manual"]
+      - ["org.apache.commons.collections4.map", "AbstractMapDecorator", True, "decorated", "", "", "Argument[-1].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["org.apache.commons.collections4.map", "AbstractMapDecorator", True, "decorated", "", "", "Argument[-1].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["org.apache.commons.collections4.map", "AbstractOrderedMapDecorator", True, "AbstractOrderedMapDecorator", "(OrderedMap)", "", "Argument[0].MapKey", "Argument[-1].MapKey", "value", "manual"]
+      - ["org.apache.commons.collections4.map", "AbstractOrderedMapDecorator", True, "AbstractOrderedMapDecorator", "(OrderedMap)", "", "Argument[0].MapValue", "Argument[-1].MapValue", "value", "manual"]
+      - ["org.apache.commons.collections4.map", "AbstractSortedMapDecorator", True, "AbstractSortedMapDecorator", "(SortedMap)", "", "Argument[0].MapKey", "Argument[-1].MapKey", "value", "manual"]
+      - ["org.apache.commons.collections4.map", "AbstractSortedMapDecorator", True, "AbstractSortedMapDecorator", "(SortedMap)", "", "Argument[0].MapValue", "Argument[-1].MapValue", "value", "manual"]
+      - ["org.apache.commons.collections4.map", "CaseInsensitiveMap", True, "CaseInsensitiveMap", "(Map)", "", "Argument[0].MapKey", "Argument[-1].MapKey", "value", "manual"]
+      - ["org.apache.commons.collections4.map", "CaseInsensitiveMap", True, "CaseInsensitiveMap", "(Map)", "", "Argument[0].MapValue", "Argument[-1].MapValue", "value", "manual"]
+      - ["org.apache.commons.collections4.map", "CompositeMap", True, "CompositeMap", "(Map,Map)", "", "Argument[0].MapKey", "Argument[-1].MapKey", "value", "manual"]
+      - ["org.apache.commons.collections4.map", "CompositeMap", True, "CompositeMap", "(Map,Map)", "", "Argument[0].MapValue", "Argument[-1].MapValue", "value", "manual"]
+      - ["org.apache.commons.collections4.map", "CompositeMap", True, "CompositeMap", "(Map,Map)", "", "Argument[1].MapKey", "Argument[-1].MapKey", "value", "manual"]
+      - ["org.apache.commons.collections4.map", "CompositeMap", True, "CompositeMap", "(Map,Map)", "", "Argument[1].MapValue", "Argument[-1].MapValue", "value", "manual"]
+      - ["org.apache.commons.collections4.map", "CompositeMap", True, "CompositeMap", "(Map,Map,MapMutator)", "", "Argument[0].MapKey", "Argument[-1].MapKey", "value", "manual"]
+      - ["org.apache.commons.collections4.map", "CompositeMap", True, "CompositeMap", "(Map,Map,MapMutator)", "", "Argument[0].MapValue", "Argument[-1].MapValue", "value", "manual"]
+      - ["org.apache.commons.collections4.map", "CompositeMap", True, "CompositeMap", "(Map,Map,MapMutator)", "", "Argument[1].MapKey", "Argument[-1].MapKey", "value", "manual"]
+      - ["org.apache.commons.collections4.map", "CompositeMap", True, "CompositeMap", "(Map,Map,MapMutator)", "", "Argument[1].MapValue", "Argument[-1].MapValue", "value", "manual"]
+      - ["org.apache.commons.collections4.map", "CompositeMap", True, "CompositeMap", "(Map[])", "", "Argument[0].ArrayElement.MapKey", "Argument[-1].MapKey", "value", "manual"]
+      - ["org.apache.commons.collections4.map", "CompositeMap", True, "CompositeMap", "(Map[])", "", "Argument[0].ArrayElement.MapValue", "Argument[-1].MapValue", "value", "manual"]
+      - ["org.apache.commons.collections4.map", "CompositeMap", True, "CompositeMap", "(Map[],MapMutator)", "", "Argument[0].ArrayElement.MapKey", "Argument[-1].MapKey", "value", "manual"]
+      - ["org.apache.commons.collections4.map", "CompositeMap", True, "CompositeMap", "(Map[],MapMutator)", "", "Argument[0].ArrayElement.MapValue", "Argument[-1].MapValue", "value", "manual"]
+      - ["org.apache.commons.collections4.map", "CompositeMap", True, "addComposited", "", "", "Argument[0].MapKey", "Argument[-1].MapKey", "value", "manual"]
+      - ["org.apache.commons.collections4.map", "CompositeMap", True, "addComposited", "", "", "Argument[0].MapValue", "Argument[-1].MapValue", "value", "manual"]
+      - ["org.apache.commons.collections4.map", "CompositeMap", True, "removeComposited", "", "", "Argument[-1].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["org.apache.commons.collections4.map", "CompositeMap", True, "removeComposited", "", "", "Argument[-1].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["org.apache.commons.collections4.map", "CompositeMap", True, "removeComposited", "", "", "Argument[0]", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.collections4.map", "DefaultedMap", True, "DefaultedMap", "(Object)", "", "Argument[0]", "Argument[-1].MapValue", "value", "manual"]
+      - ["org.apache.commons.collections4.map", "DefaultedMap", True, "defaultedMap", "", "", "Argument[0].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["org.apache.commons.collections4.map", "DefaultedMap", True, "defaultedMap", "", "", "Argument[0].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["org.apache.commons.collections4.map", "DefaultedMap", True, "defaultedMap", "(Map,Object)", "", "Argument[1]", "ReturnValue.MapValue", "value", "manual"]
+      - ["org.apache.commons.collections4.map", "EntrySetToMapIteratorAdapter", True, "EntrySetToMapIteratorAdapter", "", "", "Argument[0].Element.MapKey", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections4.map", "EntrySetToMapIteratorAdapter", True, "EntrySetToMapIteratorAdapter", "", "", "Argument[0].Element.MapValue", "Argument[-1].MapValue", "value", "manual"]
+      - ["org.apache.commons.collections4.map", "FixedSizeMap", True, "fixedSizeMap", "", "", "Argument[0].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["org.apache.commons.collections4.map", "FixedSizeMap", True, "fixedSizeMap", "", "", "Argument[0].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["org.apache.commons.collections4.map", "FixedSizeSortedMap", True, "fixedSizeSortedMap", "", "", "Argument[0].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["org.apache.commons.collections4.map", "FixedSizeSortedMap", True, "fixedSizeSortedMap", "", "", "Argument[0].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["org.apache.commons.collections4.map", "Flat3Map", True, "Flat3Map", "", "", "Argument[0].MapKey", "Argument[-1].MapKey", "value", "manual"]
+      - ["org.apache.commons.collections4.map", "Flat3Map", True, "Flat3Map", "", "", "Argument[0].MapValue", "Argument[-1].MapValue", "value", "manual"]
+      - ["org.apache.commons.collections4.map", "HashedMap", True, "HashedMap", "(Map)", "", "Argument[0].MapKey", "Argument[-1].MapKey", "value", "manual"]
+      - ["org.apache.commons.collections4.map", "HashedMap", True, "HashedMap", "(Map)", "", "Argument[0].MapValue", "Argument[-1].MapValue", "value", "manual"]
+      - ["org.apache.commons.collections4.map", "LRUMap", True, "LRUMap", "(Map)", "", "Argument[0].MapKey", "Argument[-1].MapKey", "value", "manual"]
+      - ["org.apache.commons.collections4.map", "LRUMap", True, "LRUMap", "(Map)", "", "Argument[0].MapValue", "Argument[-1].MapValue", "value", "manual"]
+      - ["org.apache.commons.collections4.map", "LRUMap", True, "LRUMap", "(Map,boolean)", "", "Argument[0].MapKey", "Argument[-1].MapKey", "value", "manual"]
+      - ["org.apache.commons.collections4.map", "LRUMap", True, "LRUMap", "(Map,boolean)", "", "Argument[0].MapValue", "Argument[-1].MapValue", "value", "manual"]
+      - ["org.apache.commons.collections4.map", "LRUMap", True, "get", "(Object,boolean)", "", "Argument[0].MapValue", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.collections4.map", "LazyMap", True, "lazyMap", "", "", "Argument[0].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["org.apache.commons.collections4.map", "LazyMap", True, "lazyMap", "", "", "Argument[0].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["org.apache.commons.collections4.map", "LazySortedMap", True, "lazySortedMap", "", "", "Argument[0].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["org.apache.commons.collections4.map", "LazySortedMap", True, "lazySortedMap", "", "", "Argument[0].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["org.apache.commons.collections4.map", "LinkedMap", True, "LinkedMap", "(Map)", "", "Argument[0].MapKey", "Argument[-1].MapKey", "value", "manual"]
+      - ["org.apache.commons.collections4.map", "LinkedMap", True, "LinkedMap", "(Map)", "", "Argument[0].MapValue", "Argument[-1].MapValue", "value", "manual"]
+      - ["org.apache.commons.collections4.map", "LinkedMap", True, "asList", "", "", "Argument[-1].MapKey", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4.map", "LinkedMap", True, "get", "(int)", "", "Argument[-1].MapKey", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.collections4.map", "LinkedMap", True, "getValue", "(int)", "", "Argument[-1].MapValue", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.collections4.map", "LinkedMap", True, "remove", "(int)", "", "Argument[-1].MapValue", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.collections4.map", "ListOrderedMap", True, "asList", "", "", "Argument[-1].MapKey", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4.map", "ListOrderedMap", True, "get", "(int)", "", "Argument[-1].MapKey", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.collections4.map", "ListOrderedMap", True, "getValue", "(int)", "", "Argument[-1].MapValue", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.collections4.map", "ListOrderedMap", True, "keyList", "", "", "Argument[-1].MapKey", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4.map", "ListOrderedMap", True, "listOrderedMap", "", "", "Argument[0].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["org.apache.commons.collections4.map", "ListOrderedMap", True, "listOrderedMap", "", "", "Argument[0].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["org.apache.commons.collections4.map", "ListOrderedMap", True, "put", "", "", "Argument[1]", "Argument[-1].MapKey", "value", "manual"]
+      - ["org.apache.commons.collections4.map", "ListOrderedMap", True, "put", "", "", "Argument[2]", "Argument[-1].MapValue", "value", "manual"]
+      - ["org.apache.commons.collections4.map", "ListOrderedMap", True, "putAll", "", "", "Argument[1].MapKey", "Argument[-1].MapKey", "value", "manual"]
+      - ["org.apache.commons.collections4.map", "ListOrderedMap", True, "putAll", "", "", "Argument[1].MapValue", "Argument[-1].MapValue", "value", "manual"]
+      - ["org.apache.commons.collections4.map", "ListOrderedMap", True, "remove", "(int)", "", "Argument[-1].MapValue", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.collections4.map", "ListOrderedMap", True, "setValue", "", "", "Argument[1]", "Argument[-1].MapValue", "value", "manual"]
+      - ["org.apache.commons.collections4.map", "ListOrderedMap", True, "valueList", "", "", "Argument[-1].MapValue", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4.map", "MultiKeyMap", True, "get", "", "", "Argument[-1].MapValue", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.collections4.map", "MultiKeyMap", True, "put", "", "", "Argument[-1].MapValue", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.collections4.map", "MultiKeyMap", True, "put", "(Object,Object,Object)", "", "Argument[0..1]", "Argument[-1].MapKey.Element", "value", "manual"]
+      - ["org.apache.commons.collections4.map", "MultiKeyMap", True, "put", "(Object,Object,Object)", "", "Argument[2]", "Argument[-1].MapValue", "value", "manual"]
+      - ["org.apache.commons.collections4.map", "MultiKeyMap", True, "put", "(Object,Object,Object,Object)", "", "Argument[0..2]", "Argument[-1].MapKey.Element", "value", "manual"]
+      - ["org.apache.commons.collections4.map", "MultiKeyMap", True, "put", "(Object,Object,Object,Object)", "", "Argument[3]", "Argument[-1].MapValue", "value", "manual"]
+      - ["org.apache.commons.collections4.map", "MultiKeyMap", True, "put", "(Object,Object,Object,Object,Object)", "", "Argument[0..3]", "Argument[-1].MapKey.Element", "value", "manual"]
+      - ["org.apache.commons.collections4.map", "MultiKeyMap", True, "put", "(Object,Object,Object,Object,Object)", "", "Argument[4]", "Argument[-1].MapValue", "value", "manual"]
+      - ["org.apache.commons.collections4.map", "MultiKeyMap", True, "put", "(Object,Object,Object,Object,Object,Object)", "", "Argument[0..4]", "Argument[-1].MapKey.Element", "value", "manual"]
+      - ["org.apache.commons.collections4.map", "MultiKeyMap", True, "put", "(Object,Object,Object,Object,Object,Object)", "", "Argument[5]", "Argument[-1].MapValue", "value", "manual"]
+      - ["org.apache.commons.collections4.map", "MultiKeyMap", True, "removeMultiKey", "", "", "Argument[-1].MapValue", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.collections4.map", "MultiValueMap", True, "getCollection", "", "", "Argument[-1].MapValue.Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4.map", "MultiValueMap", True, "iterator", "()", "", "Argument[-1].MapKey", "ReturnValue.Element.MapKey", "value", "manual"]
+      - ["org.apache.commons.collections4.map", "MultiValueMap", True, "iterator", "()", "", "Argument[-1].MapValue.Element", "ReturnValue.Element.MapValue", "value", "manual"]
+      - ["org.apache.commons.collections4.map", "MultiValueMap", True, "iterator", "(Object)", "", "Argument[-1].MapValue.Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4.map", "MultiValueMap", True, "multiValueMap", "", "", "Argument[0].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["org.apache.commons.collections4.map", "MultiValueMap", True, "multiValueMap", "", "", "Argument[0].MapValue.Element", "ReturnValue.MapValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4.map", "MultiValueMap", True, "putAll", "(Map)", "", "Argument[0].MapValue", "Argument[-1].MapValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4.map", "MultiValueMap", True, "putAll", "(Map)", "", "Argument[0].MapValue.Element", "Argument[-1].MapValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4.map", "MultiValueMap", True, "putAll", "(Object,Collection)", "", "Argument[0]", "Argument[-1].MapKey", "value", "manual"]
+      - ["org.apache.commons.collections4.map", "MultiValueMap", True, "putAll", "(Object,Collection)", "", "Argument[1].Element", "Argument[-1].MapValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4.map", "MultiValueMap", True, "values", "", "", "Argument[-1].MapValue.Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4.map", "PassiveExpiringMap", True, "PassiveExpiringMap", "(ExpirationPolicy,Map)", "", "Argument[1].MapKey", "Argument[-1].MapKey", "value", "manual"]
+      - ["org.apache.commons.collections4.map", "PassiveExpiringMap", True, "PassiveExpiringMap", "(ExpirationPolicy,Map)", "", "Argument[1].MapValue", "Argument[-1].MapValue", "value", "manual"]
+      - ["org.apache.commons.collections4.map", "PassiveExpiringMap", True, "PassiveExpiringMap", "(Map)", "", "Argument[0].MapKey", "Argument[-1].MapKey", "value", "manual"]
+      - ["org.apache.commons.collections4.map", "PassiveExpiringMap", True, "PassiveExpiringMap", "(Map)", "", "Argument[0].MapValue", "Argument[-1].MapValue", "value", "manual"]
+      - ["org.apache.commons.collections4.map", "PassiveExpiringMap", True, "PassiveExpiringMap", "(long,Map)", "", "Argument[1].MapKey", "Argument[-1].MapKey", "value", "manual"]
+      - ["org.apache.commons.collections4.map", "PassiveExpiringMap", True, "PassiveExpiringMap", "(long,Map)", "", "Argument[1].MapValue", "Argument[-1].MapValue", "value", "manual"]
+      - ["org.apache.commons.collections4.map", "PassiveExpiringMap", True, "PassiveExpiringMap", "(long,TimeUnit,Map)", "", "Argument[2].MapKey", "Argument[-1].MapKey", "value", "manual"]
+      - ["org.apache.commons.collections4.map", "PassiveExpiringMap", True, "PassiveExpiringMap", "(long,TimeUnit,Map)", "", "Argument[2].MapValue", "Argument[-1].MapValue", "value", "manual"]
+      - ["org.apache.commons.collections4.map", "PredicatedMap", True, "predicatedMap", "", "", "Argument[0].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["org.apache.commons.collections4.map", "PredicatedMap", True, "predicatedMap", "", "", "Argument[0].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["org.apache.commons.collections4.map", "PredicatedSortedMap", True, "predicatedSortedMap", "", "", "Argument[0].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["org.apache.commons.collections4.map", "PredicatedSortedMap", True, "predicatedSortedMap", "", "", "Argument[0].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["org.apache.commons.collections4.map", "SingletonMap", True, "SingletonMap", "(Entry)", "", "Argument[0].MapKey", "Argument[-1].MapKey", "value", "manual"]
+      - ["org.apache.commons.collections4.map", "SingletonMap", True, "SingletonMap", "(Entry)", "", "Argument[0].MapValue", "Argument[-1].MapValue", "value", "manual"]
+      - ["org.apache.commons.collections4.map", "SingletonMap", True, "SingletonMap", "(KeyValue)", "", "Argument[0].MapKey", "Argument[-1].MapKey", "value", "manual"]
+      - ["org.apache.commons.collections4.map", "SingletonMap", True, "SingletonMap", "(KeyValue)", "", "Argument[0].MapValue", "Argument[-1].MapValue", "value", "manual"]
+      - ["org.apache.commons.collections4.map", "SingletonMap", True, "SingletonMap", "(Map)", "", "Argument[0].MapKey", "Argument[-1].MapKey", "value", "manual"]
+      - ["org.apache.commons.collections4.map", "SingletonMap", True, "SingletonMap", "(Map)", "", "Argument[0].MapValue", "Argument[-1].MapValue", "value", "manual"]
+      - ["org.apache.commons.collections4.map", "SingletonMap", True, "SingletonMap", "(Object,Object)", "", "Argument[0]", "Argument[-1].MapKey", "value", "manual"]
+      - ["org.apache.commons.collections4.map", "SingletonMap", True, "SingletonMap", "(Object,Object)", "", "Argument[1]", "Argument[-1].MapValue", "value", "manual"]
+      - ["org.apache.commons.collections4.map", "SingletonMap", True, "setValue", "", "", "Argument[0]", "Argument[-1].MapValue", "value", "manual"]
+      - ["org.apache.commons.collections4.map", "TransformedMap", True, "transformingMap", "", "", "Argument[0].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["org.apache.commons.collections4.map", "TransformedMap", True, "transformingMap", "", "", "Argument[0].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["org.apache.commons.collections4.map", "TransformedSortedMap", True, "transformingSortedMap", "", "", "Argument[0].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["org.apache.commons.collections4.map", "TransformedSortedMap", True, "transformingSortedMap", "", "", "Argument[0].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["org.apache.commons.collections4.map", "UnmodifiableEntrySet", True, "unmodifiableEntrySet", "", "", "Argument[0].Element.MapKey", "ReturnValue.Element.MapKey", "value", "manual"]
+      - ["org.apache.commons.collections4.map", "UnmodifiableEntrySet", True, "unmodifiableEntrySet", "", "", "Argument[0].Element.MapValue", "ReturnValue.Element.MapValue", "value", "manual"]
+      - ["org.apache.commons.collections4.map", "UnmodifiableMap", True, "unmodifiableMap", "", "", "Argument[0].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["org.apache.commons.collections4.map", "UnmodifiableMap", True, "unmodifiableMap", "", "", "Argument[0].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["org.apache.commons.collections4.map", "UnmodifiableOrderedMap", True, "unmodifiableOrderedMap", "", "", "Argument[0].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["org.apache.commons.collections4.map", "UnmodifiableOrderedMap", True, "unmodifiableOrderedMap", "", "", "Argument[0].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["org.apache.commons.collections4.map", "UnmodifiableSortedMap", True, "unmodifiableSortedMap", "", "", "Argument[0].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["org.apache.commons.collections4.map", "UnmodifiableSortedMap", True, "unmodifiableSortedMap", "", "", "Argument[0].MapValue", "ReturnValue.MapValue", "value", "manual"]
diff --git a/java/ql/lib/ext/org.apache.commons.collections4.model.yml b/java/ql/lib/ext/org.apache.commons.collections4.model.yml
new file mode 100644
index 00000000000..c3e91e9939b
--- /dev/null
+++ b/java/ql/lib/ext/org.apache.commons.collections4.model.yml
@@ -0,0 +1,365 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSummaryModel
+    data:
+      - ["org.apache.commons.collections4", "ArrayStack", True, "peek", "", "", "Argument[-1].Element", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.collections4", "ArrayStack", True, "pop", "", "", "Argument[-1].Element", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.collections4", "ArrayStack", True, "push", "", "", "Argument[0]", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "ArrayStack", True, "push", "", "", "Argument[0]", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.collections4", "Bag", True, "add", "", "", "Argument[0]", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "Bag", True, "uniqueSet", "", "", "Argument[-1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "BagUtils", True, "collectionBag", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "BagUtils", True, "predicatedBag", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "BagUtils", True, "predicatedSortedBag", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "BagUtils", True, "synchronizedBag", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "BagUtils", True, "synchronizedSortedBag", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "BagUtils", True, "transformingBag", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "BagUtils", True, "transformingSortedBag", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "BagUtils", True, "unmodifiableBag", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "BagUtils", True, "unmodifiableSortedBag", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "BidiMap", True, "getKey", "", "", "Argument[-1].MapKey", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.collections4", "BidiMap", True, "inverseBidiMap", "", "", "Argument[-1].MapKey", "ReturnValue.MapValue", "value", "manual"]
+      - ["org.apache.commons.collections4", "BidiMap", True, "inverseBidiMap", "", "", "Argument[-1].MapValue", "ReturnValue.MapKey", "value", "manual"]
+      - ["org.apache.commons.collections4", "BidiMap", True, "removeValue", "", "", "Argument[-1].MapKey", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.collections4", "CollectionUtils", True, "addAll", "(Collection,Enumeration)", "", "Argument[1].Element", "Argument[0].Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "CollectionUtils", True, "addAll", "(Collection,Iterable)", "", "Argument[1].Element", "Argument[0].Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "CollectionUtils", True, "addAll", "(Collection,Iterator)", "", "Argument[1].Element", "Argument[0].Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "CollectionUtils", True, "addAll", "(Collection,Object[])", "", "Argument[1].ArrayElement", "Argument[0].Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "CollectionUtils", True, "addIgnoreNull", "", "", "Argument[1]", "Argument[0].Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "CollectionUtils", True, "collate", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "CollectionUtils", True, "collate", "", "", "Argument[1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "CollectionUtils", True, "disjunction", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "CollectionUtils", True, "disjunction", "", "", "Argument[1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "CollectionUtils", True, "emptyIfNull", "", "", "Argument[0]", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.collections4", "CollectionUtils", True, "extractSingleton", "", "", "Argument[0].Element", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.collections4", "CollectionUtils", True, "find", "", "", "Argument[0].Element", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.collections4", "CollectionUtils", True, "get", "(Iterable,int)", "", "Argument[0].Element", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.collections4", "CollectionUtils", True, "get", "(Iterator,int)", "", "Argument[0].Element", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.collections4", "CollectionUtils", True, "get", "(Map,int)", "", "Argument[0].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["org.apache.commons.collections4", "CollectionUtils", True, "get", "(Map,int)", "", "Argument[0].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["org.apache.commons.collections4", "CollectionUtils", True, "get", "(Object,int)", "", "Argument[0].ArrayElement", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.collections4", "CollectionUtils", True, "get", "(Object,int)", "", "Argument[0].Element", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.collections4", "CollectionUtils", True, "get", "(Object,int)", "", "Argument[0].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["org.apache.commons.collections4", "CollectionUtils", True, "get", "(Object,int)", "", "Argument[0].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["org.apache.commons.collections4", "CollectionUtils", True, "getCardinalityMap", "", "", "Argument[0].Element", "ReturnValue.MapKey", "value", "manual"]
+      - ["org.apache.commons.collections4", "CollectionUtils", True, "intersection", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "CollectionUtils", True, "intersection", "", "", "Argument[1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "CollectionUtils", True, "permutations", "", "", "Argument[0].Element", "ReturnValue.Element.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "CollectionUtils", True, "predicatedCollection", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "CollectionUtils", True, "removeAll", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "CollectionUtils", True, "retainAll", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "CollectionUtils", True, "select", "(Iterable,Predicate)", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "CollectionUtils", True, "select", "(Iterable,Predicate,Collection)", "", "Argument[0].Element", "Argument[2].Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "CollectionUtils", True, "select", "(Iterable,Predicate,Collection)", "", "Argument[2]", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.collections4", "CollectionUtils", True, "select", "(Iterable,Predicate,Collection,Collection)", "", "Argument[0].Element", "Argument[2].Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "CollectionUtils", True, "select", "(Iterable,Predicate,Collection,Collection)", "", "Argument[0].Element", "Argument[3].Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "CollectionUtils", True, "select", "(Iterable,Predicate,Collection,Collection)", "", "Argument[2]", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.collections4", "CollectionUtils", True, "selectRejected", "(Iterable,Predicate)", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "CollectionUtils", True, "selectRejected", "(Iterable,Predicate,Collection)", "", "Argument[0].Element", "Argument[2].Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "CollectionUtils", True, "selectRejected", "(Iterable,Predicate,Collection)", "", "Argument[2]", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.collections4", "CollectionUtils", True, "subtract", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "CollectionUtils", True, "synchronizedCollection", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "CollectionUtils", True, "transformingCollection", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "CollectionUtils", True, "union", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "CollectionUtils", True, "union", "", "", "Argument[1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "CollectionUtils", True, "unmodifiableCollection", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "EnumerationUtils", True, "get", "", "", "Argument[0].Element", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.collections4", "EnumerationUtils", True, "toList", "(Enumeration)", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "EnumerationUtils", True, "toList", "(StringTokenizer)", "", "Argument[0]", "ReturnValue.Element", "taint", "manual"]
+      - ["org.apache.commons.collections4", "FluentIterable", True, "append", "(Iterable)", "", "Argument[-1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "FluentIterable", True, "append", "(Iterable)", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "FluentIterable", True, "append", "(Object[])", "", "Argument[-1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "FluentIterable", True, "append", "(Object[])", "", "Argument[0].ArrayElement", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "FluentIterable", True, "asEnumeration", "", "", "Argument[-1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "FluentIterable", True, "collate", "", "", "Argument[-1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "FluentIterable", True, "collate", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "FluentIterable", True, "copyInto", "", "", "Argument[-1].Element", "Argument[0].Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "FluentIterable", True, "eval", "", "", "Argument[-1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "FluentIterable", True, "filter", "", "", "Argument[-1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "FluentIterable", True, "get", "", "", "Argument[-1].Element", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.collections4", "FluentIterable", True, "limit", "", "", "Argument[-1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "FluentIterable", True, "loop", "", "", "Argument[-1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "FluentIterable", True, "of", "(Iterable)", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "FluentIterable", True, "of", "(Object)", "", "Argument[0]", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "FluentIterable", True, "of", "(Object[])", "", "Argument[0].ArrayElement", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "FluentIterable", True, "reverse", "", "", "Argument[-1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "FluentIterable", True, "skip", "", "", "Argument[-1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "FluentIterable", True, "toArray", "", "", "Argument[-1].Element", "ReturnValue.ArrayElement", "value", "manual"]
+      - ["org.apache.commons.collections4", "FluentIterable", True, "toList", "", "", "Argument[-1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "FluentIterable", True, "unique", "", "", "Argument[-1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "FluentIterable", True, "unmodifiable", "", "", "Argument[-1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "FluentIterable", True, "zip", "(Iterable)", "", "Argument[-1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "FluentIterable", True, "zip", "(Iterable)", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "FluentIterable", True, "zip", "(Iterable[])", "", "Argument[-1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "FluentIterable", True, "zip", "(Iterable[])", "", "Argument[0].ArrayElement.Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "Get", True, "entrySet", "", "", "Argument[-1].MapKey", "ReturnValue.Element.MapKey", "value", "manual"]
+      - ["org.apache.commons.collections4", "Get", True, "entrySet", "", "", "Argument[-1].MapValue", "ReturnValue.Element.MapValue", "value", "manual"]
+      - ["org.apache.commons.collections4", "Get", True, "get", "", "", "Argument[-1].MapValue", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.collections4", "Get", True, "keySet", "()", "", "Argument[-1].MapKey", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "Get", True, "remove", "(Object)", "", "Argument[-1].MapValue", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.collections4", "Get", True, "values", "()", "", "Argument[-1].MapValue", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "IterableGet", True, "mapIterator", "", "", "Argument[-1].MapKey", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "IterableGet", True, "mapIterator", "", "", "Argument[-1].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["org.apache.commons.collections4", "IterableUtils", True, "boundedIterable", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "IterableUtils", True, "chainedIterable", "(Iterable,Iterable)", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "IterableUtils", True, "chainedIterable", "(Iterable,Iterable)", "", "Argument[1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "IterableUtils", True, "chainedIterable", "(Iterable,Iterable,Iterable)", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "IterableUtils", True, "chainedIterable", "(Iterable,Iterable,Iterable)", "", "Argument[1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "IterableUtils", True, "chainedIterable", "(Iterable,Iterable,Iterable)", "", "Argument[2].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "IterableUtils", True, "chainedIterable", "(Iterable,Iterable,Iterable,Iterable)", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "IterableUtils", True, "chainedIterable", "(Iterable,Iterable,Iterable,Iterable)", "", "Argument[1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "IterableUtils", True, "chainedIterable", "(Iterable,Iterable,Iterable,Iterable)", "", "Argument[2].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "IterableUtils", True, "chainedIterable", "(Iterable,Iterable,Iterable,Iterable)", "", "Argument[3].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "IterableUtils", True, "chainedIterable", "(Iterable[])", "", "Argument[0].ArrayElement.Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "IterableUtils", True, "collatedIterable", "(Comparator,Iterable,Iterable)", "", "Argument[1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "IterableUtils", True, "collatedIterable", "(Comparator,Iterable,Iterable)", "", "Argument[2].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "IterableUtils", True, "collatedIterable", "(Iterable,Iterable)", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "IterableUtils", True, "collatedIterable", "(Iterable,Iterable)", "", "Argument[1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "IterableUtils", True, "emptyIfNull", "", "", "Argument[0]", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.collections4", "IterableUtils", True, "filteredIterable", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "IterableUtils", True, "find", "", "", "Argument[0].Element", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.collections4", "IterableUtils", True, "first", "", "", "Argument[0].Element", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.collections4", "IterableUtils", True, "forEachButLast", "", "", "Argument[0].Element", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.collections4", "IterableUtils", True, "get", "", "", "Argument[0].Element", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.collections4", "IterableUtils", True, "loopingIterable", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "IterableUtils", True, "partition", "", "", "Argument[0].Element", "ReturnValue.Element.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "IterableUtils", True, "reversedIterable", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "IterableUtils", True, "skippingIterable", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "IterableUtils", True, "toList", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "IterableUtils", True, "toString", "", "", "Argument[2]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.collections4", "IterableUtils", True, "toString", "", "", "Argument[3]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.collections4", "IterableUtils", True, "toString", "", "", "Argument[4]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.collections4", "IterableUtils", True, "uniqueIterable", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "IterableUtils", True, "unmodifiableIterable", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "IterableUtils", True, "zippingIterable", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "IterableUtils", True, "zippingIterable", "(Iterable,Iterable)", "", "Argument[1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "IterableUtils", True, "zippingIterable", "(Iterable,Iterable[])", "", "Argument[1].ArrayElement.Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "IteratorUtils", True, "arrayIterator", "", "", "Argument[0].ArrayElement", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "IteratorUtils", True, "arrayListIterator", "", "", "Argument[0].ArrayElement", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "IteratorUtils", True, "asEnumeration", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "IteratorUtils", True, "asIterable", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "IteratorUtils", True, "asIterator", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "IteratorUtils", True, "asMultipleUseIterable", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "IteratorUtils", True, "boundedIterator", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "IteratorUtils", True, "chainedIterator", "(Collection)", "", "Argument[0].Element.Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "IteratorUtils", True, "chainedIterator", "(Iterator,Iterator)", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "IteratorUtils", True, "chainedIterator", "(Iterator,Iterator)", "", "Argument[1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "IteratorUtils", True, "chainedIterator", "(Iterator[])", "", "Argument[0].ArrayElement.Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "IteratorUtils", True, "collatedIterator", "(Comparator,Collection)", "", "Argument[1].Element.Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "IteratorUtils", True, "collatedIterator", "(Comparator,Iterator,Iterator)", "", "Argument[1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "IteratorUtils", True, "collatedIterator", "(Comparator,Iterator,Iterator)", "", "Argument[2].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "IteratorUtils", True, "collatedIterator", "(Comparator,Iterator[])", "", "Argument[1].ArrayElement.Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "IteratorUtils", True, "filteredIterator", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "IteratorUtils", True, "filteredListIterator", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "IteratorUtils", True, "find", "", "", "Argument[0].Element", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.collections4", "IteratorUtils", True, "first", "", "", "Argument[0].Element", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.collections4", "IteratorUtils", True, "forEachButLast", "", "", "Argument[0].Element", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.collections4", "IteratorUtils", True, "get", "", "", "Argument[0].Element", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.collections4", "IteratorUtils", True, "getIterator", "", "", "Argument[0]", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "IteratorUtils", True, "getIterator", "", "", "Argument[0].ArrayElement", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "IteratorUtils", True, "getIterator", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "IteratorUtils", True, "getIterator", "", "", "Argument[0].MapValue", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "IteratorUtils", True, "loopingIterator", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "IteratorUtils", True, "loopingListIterator", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "IteratorUtils", True, "peekingIterator", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "IteratorUtils", True, "pushbackIterator", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "IteratorUtils", True, "singletonIterator", "", "", "Argument[0]", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "IteratorUtils", True, "singletonListIterator", "", "", "Argument[0]", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "IteratorUtils", True, "skippingIterator", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "IteratorUtils", True, "toArray", "", "", "Argument[0].Element", "ReturnValue.ArrayElement", "value", "manual"]
+      - ["org.apache.commons.collections4", "IteratorUtils", True, "toList", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "IteratorUtils", True, "toListIterator", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "IteratorUtils", True, "toString", "", "", "Argument[2]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.collections4", "IteratorUtils", True, "toString", "", "", "Argument[3]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.collections4", "IteratorUtils", True, "toString", "", "", "Argument[4]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.collections4", "IteratorUtils", True, "unmodifiableIterator", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "IteratorUtils", True, "unmodifiableListIterator", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "IteratorUtils", True, "unmodifiableMapIterator", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "IteratorUtils", True, "unmodifiableMapIterator", "", "", "Argument[0].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["org.apache.commons.collections4", "IteratorUtils", True, "zippingIterator", "(Iterator,Iterator)", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "IteratorUtils", True, "zippingIterator", "(Iterator,Iterator)", "", "Argument[1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "IteratorUtils", True, "zippingIterator", "(Iterator,Iterator,Iterator)", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "IteratorUtils", True, "zippingIterator", "(Iterator,Iterator,Iterator)", "", "Argument[1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "IteratorUtils", True, "zippingIterator", "(Iterator,Iterator,Iterator)", "", "Argument[2].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "IteratorUtils", True, "zippingIterator", "(Iterator[])", "", "Argument[0].ArrayElement.Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "KeyValue", True, "getKey", "", "", "Argument[-1].MapKey", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.collections4", "KeyValue", True, "getValue", "", "", "Argument[-1].MapValue", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.collections4", "ListUtils", True, "defaultIfNull", "", "", "Argument[0]", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.collections4", "ListUtils", True, "defaultIfNull", "", "", "Argument[1]", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.collections4", "ListUtils", True, "emptyIfNull", "", "", "Argument[0]", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.collections4", "ListUtils", True, "fixedSizeList", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "ListUtils", True, "intersection", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "ListUtils", True, "intersection", "", "", "Argument[1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "ListUtils", True, "lazyList", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "ListUtils", True, "longestCommonSubsequence", "(CharSequence,CharSequence)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.collections4", "ListUtils", True, "longestCommonSubsequence", "(CharSequence,CharSequence)", "", "Argument[1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.collections4", "ListUtils", True, "longestCommonSubsequence", "(List,List)", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "ListUtils", True, "longestCommonSubsequence", "(List,List)", "", "Argument[1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "ListUtils", True, "longestCommonSubsequence", "(List,List,Equator)", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "ListUtils", True, "longestCommonSubsequence", "(List,List,Equator)", "", "Argument[1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "ListUtils", True, "partition", "", "", "Argument[0].Element", "ReturnValue.Element.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "ListUtils", True, "predicatedList", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "ListUtils", True, "removeAll", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "ListUtils", True, "retainAll", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "ListUtils", True, "select", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "ListUtils", True, "selectRejected", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "ListUtils", True, "subtract", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "ListUtils", True, "sum", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "ListUtils", True, "sum", "", "", "Argument[1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "ListUtils", True, "synchronizedList", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "ListUtils", True, "transformedList", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "ListUtils", True, "union", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "ListUtils", True, "union", "", "", "Argument[1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "ListUtils", True, "unmodifiableList", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "MapIterator", True, "getKey", "", "", "Argument[-1].Element", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.collections4", "MapIterator", True, "getValue", "", "", "Argument[-1].MapValue", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.collections4", "MapIterator", True, "setValue", "", "", "Argument[-1].MapValue", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.collections4", "MapIterator", True, "setValue", "", "", "Argument[0]", "Argument[-1].MapValue", "value", "manual"]
+      - ["org.apache.commons.collections4", "MapUtils", True, "emptyIfNull", "", "", "Argument[0]", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.collections4", "MapUtils", True, "fixedSizeMap", "", "", "Argument[0].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["org.apache.commons.collections4", "MapUtils", True, "fixedSizeMap", "", "", "Argument[0].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["org.apache.commons.collections4", "MapUtils", True, "fixedSizeSortedMap", "", "", "Argument[0].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["org.apache.commons.collections4", "MapUtils", True, "fixedSizeSortedMap", "", "", "Argument[0].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["org.apache.commons.collections4", "MapUtils", True, "getMap", "", "", "Argument[0].MapValue", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.collections4", "MapUtils", True, "getMap", "", "", "Argument[2]", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.collections4", "MapUtils", True, "getObject", "", "", "Argument[0].MapValue", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.collections4", "MapUtils", True, "getObject", "", "", "Argument[2]", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.collections4", "MapUtils", True, "getString", "", "", "Argument[0].MapValue", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.collections4", "MapUtils", True, "getString", "", "", "Argument[2]", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.collections4", "MapUtils", True, "invertMap", "", "", "Argument[0].MapKey", "ReturnValue.MapValue", "value", "manual"]
+      - ["org.apache.commons.collections4", "MapUtils", True, "invertMap", "", "", "Argument[0].MapValue", "ReturnValue.MapKey", "value", "manual"]
+      - ["org.apache.commons.collections4", "MapUtils", True, "iterableMap", "", "", "Argument[0].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["org.apache.commons.collections4", "MapUtils", True, "iterableMap", "", "", "Argument[0].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["org.apache.commons.collections4", "MapUtils", True, "iterableSortedMap", "", "", "Argument[0].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["org.apache.commons.collections4", "MapUtils", True, "iterableSortedMap", "", "", "Argument[0].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["org.apache.commons.collections4", "MapUtils", True, "lazyMap", "", "", "Argument[0].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["org.apache.commons.collections4", "MapUtils", True, "lazyMap", "", "", "Argument[0].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["org.apache.commons.collections4", "MapUtils", True, "lazySortedMap", "", "", "Argument[0].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["org.apache.commons.collections4", "MapUtils", True, "lazySortedMap", "", "", "Argument[0].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["org.apache.commons.collections4", "MapUtils", True, "multiValueMap", "", "", "Argument[0].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["org.apache.commons.collections4", "MapUtils", True, "multiValueMap", "", "", "Argument[0].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["org.apache.commons.collections4", "MapUtils", True, "orderedMap", "", "", "Argument[0].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["org.apache.commons.collections4", "MapUtils", True, "orderedMap", "", "", "Argument[0].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["org.apache.commons.collections4", "MapUtils", True, "populateMap", "(Map,Iterable,Transformer)", "", "Argument[1].Element", "Argument[0].MapValue", "value", "manual"]
+      - ["org.apache.commons.collections4", "MapUtils", True, "populateMap", "(MultiMap,Iterable,Transformer)", "", "Argument[1].Element", "Argument[0].MapValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "MapUtils", True, "predicatedMap", "", "", "Argument[0].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["org.apache.commons.collections4", "MapUtils", True, "predicatedMap", "", "", "Argument[0].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["org.apache.commons.collections4", "MapUtils", True, "predicatedSortedMap", "", "", "Argument[0].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["org.apache.commons.collections4", "MapUtils", True, "predicatedSortedMap", "", "", "Argument[0].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["org.apache.commons.collections4", "MapUtils", True, "putAll", "", "", "Argument[1].ArrayElement", "Argument[0].MapKey", "value", "manual"]
+      - ["org.apache.commons.collections4", "MapUtils", True, "putAll", "", "", "Argument[1].ArrayElement", "Argument[0].MapValue", "value", "manual"]
+      - ["org.apache.commons.collections4", "MapUtils", True, "putAll", "", "", "Argument[1].ArrayElement", "ReturnValue.MapKey", "value", "manual"]
+      - ["org.apache.commons.collections4", "MapUtils", True, "putAll", "", "", "Argument[1].ArrayElement", "ReturnValue.MapValue", "value", "manual"]
+      - ["org.apache.commons.collections4", "MapUtils", True, "putAll", "", "", "Argument[1].ArrayElement.ArrayElement", "Argument[0].MapKey", "value", "manual"]
+      - ["org.apache.commons.collections4", "MapUtils", True, "putAll", "", "", "Argument[1].ArrayElement.ArrayElement", "Argument[0].MapValue", "value", "manual"]
+      - ["org.apache.commons.collections4", "MapUtils", True, "putAll", "", "", "Argument[1].ArrayElement.ArrayElement", "ReturnValue.MapKey", "value", "manual"]
+      - ["org.apache.commons.collections4", "MapUtils", True, "putAll", "", "", "Argument[1].ArrayElement.ArrayElement", "ReturnValue.MapValue", "value", "manual"]
+      - ["org.apache.commons.collections4", "MapUtils", True, "putAll", "", "", "Argument[1].ArrayElement.MapKey", "Argument[0].MapKey", "value", "manual"]
+      - ["org.apache.commons.collections4", "MapUtils", True, "putAll", "", "", "Argument[1].ArrayElement.MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["org.apache.commons.collections4", "MapUtils", True, "putAll", "", "", "Argument[1].ArrayElement.MapValue", "Argument[0].MapValue", "value", "manual"]
+      - ["org.apache.commons.collections4", "MapUtils", True, "putAll", "", "", "Argument[1].ArrayElement.MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["org.apache.commons.collections4", "MapUtils", True, "safeAddToMap", "", "", "Argument[1]", "Argument[0].MapKey", "value", "manual"]
+      - ["org.apache.commons.collections4", "MapUtils", True, "safeAddToMap", "", "", "Argument[2]", "Argument[0].MapValue", "value", "manual"]
+      - ["org.apache.commons.collections4", "MapUtils", True, "synchronizedMap", "", "", "Argument[0].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["org.apache.commons.collections4", "MapUtils", True, "synchronizedMap", "", "", "Argument[0].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["org.apache.commons.collections4", "MapUtils", True, "synchronizedSortedMap", "", "", "Argument[0].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["org.apache.commons.collections4", "MapUtils", True, "synchronizedSortedMap", "", "", "Argument[0].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["org.apache.commons.collections4", "MapUtils", True, "toMap", "", "", "Argument[0].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["org.apache.commons.collections4", "MapUtils", True, "toMap", "", "", "Argument[0].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["org.apache.commons.collections4", "MapUtils", True, "transformedMap", "", "", "Argument[0].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["org.apache.commons.collections4", "MapUtils", True, "transformedMap", "", "", "Argument[0].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["org.apache.commons.collections4", "MapUtils", True, "transformedSortedMap", "", "", "Argument[0].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["org.apache.commons.collections4", "MapUtils", True, "transformedSortedMap", "", "", "Argument[0].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["org.apache.commons.collections4", "MapUtils", True, "unmodifiableMap", "", "", "Argument[0].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["org.apache.commons.collections4", "MapUtils", True, "unmodifiableMap", "", "", "Argument[0].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["org.apache.commons.collections4", "MapUtils", True, "unmodifiableSortedMap", "", "", "Argument[0].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["org.apache.commons.collections4", "MapUtils", True, "unmodifiableSortedMap", "", "", "Argument[0].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["org.apache.commons.collections4", "MultiMap", True, "get", "", "", "Argument[-1].MapValue.Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "MultiMap", True, "put", "", "", "Argument[0]", "Argument[-1].MapKey", "value", "manual"]
+      - ["org.apache.commons.collections4", "MultiMap", True, "put", "", "", "Argument[1]", "Argument[-1].MapValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "MultiMap", True, "values", "", "", "Argument[-1].MapValue.Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "MultiMapUtils", True, "emptyIfNull", "", "", "Argument[0]", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.collections4", "MultiMapUtils", True, "getCollection", "", "", "Argument[0].MapValue", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.collections4", "MultiMapUtils", True, "getValuesAsBag", "", "", "Argument[0].MapValue.Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "MultiMapUtils", True, "getValuesAsList", "", "", "Argument[0].MapValue.Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "MultiMapUtils", True, "getValuesAsSet", "", "", "Argument[0].MapValue.Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "MultiMapUtils", True, "transformedMultiValuedMap", "", "", "Argument[0].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["org.apache.commons.collections4", "MultiMapUtils", True, "transformedMultiValuedMap", "", "", "Argument[0].MapValue.Element", "ReturnValue.MapValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "MultiMapUtils", True, "unmodifiableMultiValuedMap", "", "", "Argument[0].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["org.apache.commons.collections4", "MultiMapUtils", True, "unmodifiableMultiValuedMap", "", "", "Argument[0].MapValue.Element", "ReturnValue.MapValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "MultiSet", True, "add", "", "", "Argument[0]", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "MultiSet", True, "entrySet", "", "", "Argument[-1].Element", "ReturnValue.Element.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "MultiSet", True, "uniqueSet", "", "", "Argument[-1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "MultiSet$Entry", True, "getElement", "", "", "Argument[-1].Element", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.collections4", "MultiSetUtils", True, "predicatedMultiSet", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "MultiSetUtils", True, "synchronizedMultiSet", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "MultiSetUtils", True, "unmodifiableMultiSet", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "MultiValuedMap", True, "asMap", "", "", "Argument[-1].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["org.apache.commons.collections4", "MultiValuedMap", True, "asMap", "", "", "Argument[-1].MapValue.Element", "ReturnValue.MapValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "MultiValuedMap", True, "entries", "", "", "Argument[-1].MapKey", "ReturnValue.Element.MapKey", "value", "manual"]
+      - ["org.apache.commons.collections4", "MultiValuedMap", True, "entries", "", "", "Argument[-1].MapValue.Element", "ReturnValue.Element.MapValue", "value", "manual"]
+      - ["org.apache.commons.collections4", "MultiValuedMap", True, "get", "", "", "Argument[-1].MapValue.Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "MultiValuedMap", True, "keySet", "", "", "Argument[-1].MapKey", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "MultiValuedMap", True, "keys", "", "", "Argument[-1].MapKey", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "MultiValuedMap", True, "mapIterator", "", "", "Argument[-1].MapKey", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "MultiValuedMap", True, "mapIterator", "", "", "Argument[-1].MapValue.Element", "ReturnValue.MapValue", "value", "manual"]
+      - ["org.apache.commons.collections4", "MultiValuedMap", True, "put", "", "", "Argument[0]", "Argument[-1].MapKey", "value", "manual"]
+      - ["org.apache.commons.collections4", "MultiValuedMap", True, "put", "", "", "Argument[1]", "Argument[-1].MapValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "MultiValuedMap", True, "putAll", "(Map)", "", "Argument[0].MapKey", "Argument[-1].MapKey", "value", "manual"]
+      - ["org.apache.commons.collections4", "MultiValuedMap", True, "putAll", "(Map)", "", "Argument[0].MapValue", "Argument[-1].MapValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "MultiValuedMap", True, "putAll", "(MultiValuedMap)", "", "Argument[0].MapKey", "Argument[-1].MapKey", "value", "manual"]
+      - ["org.apache.commons.collections4", "MultiValuedMap", True, "putAll", "(MultiValuedMap)", "", "Argument[0].MapValue.Element", "Argument[-1].MapValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "MultiValuedMap", True, "putAll", "(Object,Iterable)", "", "Argument[0]", "Argument[-1].MapKey", "value", "manual"]
+      - ["org.apache.commons.collections4", "MultiValuedMap", True, "putAll", "(Object,Iterable)", "", "Argument[1].Element", "Argument[-1].MapValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "MultiValuedMap", True, "remove", "", "", "Argument[-1].MapValue.Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "MultiValuedMap", True, "values", "", "", "Argument[-1].MapValue.Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "OrderedIterator", True, "previous", "", "", "Argument[-1].Element", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.collections4", "OrderedMap", True, "firstKey", "", "", "Argument[-1].MapKey", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.collections4", "OrderedMap", True, "lastKey", "", "", "Argument[-1].MapKey", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.collections4", "OrderedMap", True, "nextKey", "", "", "Argument[-1].MapKey", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.collections4", "OrderedMap", True, "previousKey", "", "", "Argument[-1].MapKey", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.collections4", "Put", True, "put", "", "", "Argument[-1].MapValue", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.collections4", "Put", True, "put", "", "", "Argument[0]", "Argument[-1].MapKey", "value", "manual"]
+      - ["org.apache.commons.collections4", "Put", True, "put", "", "", "Argument[1]", "Argument[-1].MapValue", "value", "manual"]
+      - ["org.apache.commons.collections4", "Put", True, "putAll", "(Map)", "", "Argument[0].MapKey", "Argument[-1].MapKey", "value", "manual"]
+      - ["org.apache.commons.collections4", "Put", True, "putAll", "(Map)", "", "Argument[0].MapValue", "Argument[-1].MapValue", "value", "manual"]
+      - ["org.apache.commons.collections4", "QueueUtils", True, "predicatedQueue", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "QueueUtils", True, "synchronizedQueue", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "QueueUtils", True, "transformingQueue", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "QueueUtils", True, "unmodifiableQueue", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "SetUtils", True, "difference", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "SetUtils", True, "disjunction", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "SetUtils", True, "disjunction", "", "", "Argument[1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "SetUtils", True, "emptyIfNull", "", "", "Argument[0]", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.collections4", "SetUtils", True, "hashSet", "", "", "Argument[0].ArrayElement", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "SetUtils", True, "intersection", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "SetUtils", True, "intersection", "", "", "Argument[1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "SetUtils", True, "orderedSet", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "SetUtils", True, "predicatedNavigableSet", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "SetUtils", True, "predicatedSet", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "SetUtils", True, "predicatedSortedSet", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "SetUtils", True, "synchronizedSet", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "SetUtils", True, "synchronizedSortedSet", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "SetUtils", True, "transformedNavigableSet", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "SetUtils", True, "transformedSet", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "SetUtils", True, "transformedSortedSet", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "SetUtils", True, "union", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "SetUtils", True, "union", "", "", "Argument[1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "SetUtils", True, "unmodifiableNavigableSet", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "SetUtils", True, "unmodifiableSet", "(Object[])", "", "Argument[0].ArrayElement", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "SetUtils", True, "unmodifiableSet", "(Set)", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "SetUtils", True, "unmodifiableSortedSet", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "SetUtils$SetView", True, "copyInto", "", "", "Argument[-1].Element", "Argument[0].Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "SetUtils$SetView", True, "createIterator", "", "", "Argument[-1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "SetUtils$SetView", True, "toSet", "", "", "Argument[-1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4", "SortedBag", True, "first", "", "", "Argument[-1].Element", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.collections4", "SortedBag", True, "last", "", "", "Argument[-1].Element", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.collections4", "SplitMapUtils", True, "readableMap", "", "", "Argument[0].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["org.apache.commons.collections4", "SplitMapUtils", True, "readableMap", "", "", "Argument[0].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["org.apache.commons.collections4", "SplitMapUtils", True, "writableMap", "", "", "Argument[0].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["org.apache.commons.collections4", "SplitMapUtils", True, "writableMap", "", "", "Argument[0].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["org.apache.commons.collections4", "Trie", True, "prefixMap", "", "", "Argument[-1].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["org.apache.commons.collections4", "Trie", True, "prefixMap", "", "", "Argument[-1].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["org.apache.commons.collections4", "TrieUtils", True, "unmodifiableTrie", "", "", "Argument[0].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["org.apache.commons.collections4", "TrieUtils", True, "unmodifiableTrie", "", "", "Argument[0].MapValue", "ReturnValue.MapValue", "value", "manual"]
diff --git a/java/ql/lib/ext/org.apache.commons.collections4.multimap.model.yml b/java/ql/lib/ext/org.apache.commons.collections4.multimap.model.yml
new file mode 100644
index 00000000000..0611ffb8e90
--- /dev/null
+++ b/java/ql/lib/ext/org.apache.commons.collections4.multimap.model.yml
@@ -0,0 +1,17 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSummaryModel
+    data:
+      - ["org.apache.commons.collections4.multimap", "ArrayListValuedHashMap", True, "ArrayListValuedHashMap", "(Map)", "", "Argument[0].MapKey", "Argument[-1].MapKey", "value", "manual"]
+      - ["org.apache.commons.collections4.multimap", "ArrayListValuedHashMap", True, "ArrayListValuedHashMap", "(Map)", "", "Argument[0].MapValue", "Argument[-1].MapValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4.multimap", "ArrayListValuedHashMap", True, "ArrayListValuedHashMap", "(MultiValuedMap)", "", "Argument[0].MapKey", "Argument[-1].MapKey", "value", "manual"]
+      - ["org.apache.commons.collections4.multimap", "ArrayListValuedHashMap", True, "ArrayListValuedHashMap", "(MultiValuedMap)", "", "Argument[0].MapValue.Element", "Argument[-1].MapValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4.multimap", "HashSetValuedHashMap", True, "HashSetValuedHashMap", "(Map)", "", "Argument[0].MapKey", "Argument[-1].MapKey", "value", "manual"]
+      - ["org.apache.commons.collections4.multimap", "HashSetValuedHashMap", True, "HashSetValuedHashMap", "(Map)", "", "Argument[0].MapValue", "Argument[-1].MapValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4.multimap", "HashSetValuedHashMap", True, "HashSetValuedHashMap", "(MultiValuedMap)", "", "Argument[0].MapKey", "Argument[-1].MapKey", "value", "manual"]
+      - ["org.apache.commons.collections4.multimap", "HashSetValuedHashMap", True, "HashSetValuedHashMap", "(MultiValuedMap)", "", "Argument[0].MapValue.Element", "Argument[-1].MapValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4.multimap", "TransformedMultiValuedMap", True, "transformingMap", "", "", "Argument[0].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["org.apache.commons.collections4.multimap", "TransformedMultiValuedMap", True, "transformingMap", "", "", "Argument[0].MapValue.Element", "ReturnValue.MapValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4.multimap", "UnmodifiableMultiValuedMap", True, "unmodifiableMultiValuedMap", "(MultiValuedMap)", "", "Argument[0].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["org.apache.commons.collections4.multimap", "UnmodifiableMultiValuedMap", True, "unmodifiableMultiValuedMap", "(MultiValuedMap)", "", "Argument[0].MapValue.Element", "ReturnValue.MapValue.Element", "value", "manual"]
diff --git a/java/ql/lib/ext/org.apache.commons.collections4.multiset.model.yml b/java/ql/lib/ext/org.apache.commons.collections4.multiset.model.yml
new file mode 100644
index 00000000000..b73862089c0
--- /dev/null
+++ b/java/ql/lib/ext/org.apache.commons.collections4.multiset.model.yml
@@ -0,0 +1,9 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSummaryModel
+    data:
+      - ["org.apache.commons.collections4.multiset", "HashMultiSet", True, "HashMultiSet", "", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections4.multiset", "PredicatedMultiSet", True, "predicatedMultiSet", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4.multiset", "SynchronizedMultiSet", True, "synchronizedMultiSet", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4.multiset", "UnmodifiableMultiSet", True, "unmodifiableMultiSet", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
diff --git a/java/ql/lib/ext/org.apache.commons.collections4.properties.model.yml b/java/ql/lib/ext/org.apache.commons.collections4.properties.model.yml
new file mode 100644
index 00000000000..548b50959e1
--- /dev/null
+++ b/java/ql/lib/ext/org.apache.commons.collections4.properties.model.yml
@@ -0,0 +1,13 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSummaryModel
+    data:
+      - ["org.apache.commons.collections4.properties", "AbstractPropertiesFactory", True, "load", "(ClassLoader,String)", "", "Argument[1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.collections4.properties", "AbstractPropertiesFactory", True, "load", "(File)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.collections4.properties", "AbstractPropertiesFactory", True, "load", "(InputStream)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.collections4.properties", "AbstractPropertiesFactory", True, "load", "(Path)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.collections4.properties", "AbstractPropertiesFactory", True, "load", "(Reader)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.collections4.properties", "AbstractPropertiesFactory", True, "load", "(String)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.collections4.properties", "AbstractPropertiesFactory", True, "load", "(URI)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.collections4.properties", "AbstractPropertiesFactory", True, "load", "(URL)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
diff --git a/java/ql/lib/ext/org.apache.commons.collections4.queue.model.yml b/java/ql/lib/ext/org.apache.commons.collections4.queue.model.yml
new file mode 100644
index 00000000000..e4385072bc6
--- /dev/null
+++ b/java/ql/lib/ext/org.apache.commons.collections4.queue.model.yml
@@ -0,0 +1,11 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSummaryModel
+    data:
+      - ["org.apache.commons.collections4.queue", "CircularFifoQueue", True, "CircularFifoQueue", "(Collection)", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections4.queue", "CircularFifoQueue", True, "get", "", "", "Argument[-1].Element", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.collections4.queue", "PredicatedQueue", True, "predicatedQueue", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4.queue", "SynchronizedQueue", True, "synchronizedQueue", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4.queue", "TransformedQueue", True, "transformingQueue", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4.queue", "UnmodifiableQueue", True, "unmodifiableQueue", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
diff --git a/java/ql/lib/ext/org.apache.commons.collections4.set.model.yml b/java/ql/lib/ext/org.apache.commons.collections4.set.model.yml
new file mode 100644
index 00000000000..e6df878695e
--- /dev/null
+++ b/java/ql/lib/ext/org.apache.commons.collections4.set.model.yml
@@ -0,0 +1,36 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSummaryModel
+    data:
+      - ["org.apache.commons.collections4.set", "AbstractNavigableSetDecorator", True, "AbstractNavigableSetDecorator", "", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections4.set", "AbstractSetDecorator", True, "AbstractSetDecorator", "", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections4.set", "AbstractSortedSetDecorator", True, "AbstractSortedSetDecorator", "", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections4.set", "CompositeSet", True, "CompositeSet", "(Set)", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections4.set", "CompositeSet", True, "CompositeSet", "(Set[])", "", "Argument[0].ArrayElement.Element", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections4.set", "CompositeSet", True, "addComposited", "(Set)", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections4.set", "CompositeSet", True, "addComposited", "(Set,Set)", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections4.set", "CompositeSet", True, "addComposited", "(Set,Set)", "", "Argument[1].Element", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections4.set", "CompositeSet", True, "addComposited", "(Set[])", "", "Argument[0].ArrayElement.Element", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections4.set", "CompositeSet", True, "getSets", "", "", "Argument[-1].Element", "ReturnValue.Element.Element", "value", "manual"]
+      - ["org.apache.commons.collections4.set", "CompositeSet", True, "toSet", "", "", "Argument[-1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4.set", "CompositeSet$SetMutator", True, "add", "", "", "Argument[2]", "Argument[0].Element", "value", "manual"]
+      - ["org.apache.commons.collections4.set", "CompositeSet$SetMutator", True, "add", "", "", "Argument[2]", "Argument[1].Element.Element", "value", "manual"]
+      - ["org.apache.commons.collections4.set", "CompositeSet$SetMutator", True, "addAll", "", "", "Argument[2].Element", "Argument[0].Element", "value", "manual"]
+      - ["org.apache.commons.collections4.set", "CompositeSet$SetMutator", True, "addAll", "", "", "Argument[2].Element", "Argument[1].Element.Element", "value", "manual"]
+      - ["org.apache.commons.collections4.set", "ListOrderedSet", True, "add", "", "", "Argument[1]", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections4.set", "ListOrderedSet", True, "addAll", "", "", "Argument[1].Element", "Argument[-1].Element", "value", "manual"]
+      - ["org.apache.commons.collections4.set", "ListOrderedSet", True, "asList", "", "", "Argument[-1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4.set", "ListOrderedSet", True, "get", "", "", "Argument[-1].Element", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.collections4.set", "ListOrderedSet", True, "listOrderedSet", "(List)", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4.set", "ListOrderedSet", True, "listOrderedSet", "(Set)", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4.set", "MapBackedSet", True, "mapBackedSet", "", "", "Argument[0].MapKey", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4.set", "PredicatedNavigableSet", True, "predicatedNavigableSet", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4.set", "PredicatedSet", True, "predicatedSet", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4.set", "PredicatedSortedSet", True, "predicatedSortedSet", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4.set", "TransformedNavigableSet", True, "transformingNavigableSet", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4.set", "TransformedSet", True, "transformingSet", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4.set", "TransformedSortedSet", True, "transformingSortedSet", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4.set", "UnmodifiableNavigableSet", True, "unmodifiableNavigableSet", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4.set", "UnmodifiableSet", True, "unmodifiableSet", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.apache.commons.collections4.set", "UnmodifiableSortedSet", True, "unmodifiableSortedSet", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
diff --git a/java/ql/lib/ext/org.apache.commons.collections4.splitmap.model.yml b/java/ql/lib/ext/org.apache.commons.collections4.splitmap.model.yml
new file mode 100644
index 00000000000..4be99cb8ec9
--- /dev/null
+++ b/java/ql/lib/ext/org.apache.commons.collections4.splitmap.model.yml
@@ -0,0 +1,9 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSummaryModel
+    data:
+      - ["org.apache.commons.collections4.splitmap", "AbstractIterableGetMapDecorator", True, "AbstractIterableGetMapDecorator", "", "", "Argument[0].MapKey", "Argument[-1].MapKey", "value", "manual"]
+      - ["org.apache.commons.collections4.splitmap", "AbstractIterableGetMapDecorator", True, "AbstractIterableGetMapDecorator", "", "", "Argument[0].MapValue", "Argument[-1].MapValue", "value", "manual"]
+      - ["org.apache.commons.collections4.splitmap", "TransformedSplitMap", True, "transformingMap", "", "", "Argument[0].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["org.apache.commons.collections4.splitmap", "TransformedSplitMap", True, "transformingMap", "", "", "Argument[0].MapValue", "ReturnValue.MapValue", "value", "manual"]
diff --git a/java/ql/lib/ext/org.apache.commons.collections4.trie.model.yml b/java/ql/lib/ext/org.apache.commons.collections4.trie.model.yml
new file mode 100644
index 00000000000..44d64dda75d
--- /dev/null
+++ b/java/ql/lib/ext/org.apache.commons.collections4.trie.model.yml
@@ -0,0 +1,13 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSummaryModel
+    data:
+      - ["org.apache.commons.collections4.trie", "AbstractPatriciaTrie", True, "select", "", "", "Argument[-1].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["org.apache.commons.collections4.trie", "AbstractPatriciaTrie", True, "select", "", "", "Argument[-1].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["org.apache.commons.collections4.trie", "AbstractPatriciaTrie", True, "selectKey", "", "", "Argument[-1].MapKey", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.collections4.trie", "AbstractPatriciaTrie", True, "selectValue", "", "", "Argument[-1].MapValue", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.collections4.trie", "PatriciaTrie", True, "PatriciaTrie", "", "", "Argument[0].MapKey", "Argument[-1].MapKey", "value", "manual"]
+      - ["org.apache.commons.collections4.trie", "PatriciaTrie", True, "PatriciaTrie", "", "", "Argument[0].MapValue", "Argument[-1].MapValue", "value", "manual"]
+      - ["org.apache.commons.collections4.trie", "UnmodifiableTrie", True, "unmodifiableTrie", "", "", "Argument[0].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["org.apache.commons.collections4.trie", "UnmodifiableTrie", True, "unmodifiableTrie", "", "", "Argument[0].MapValue", "ReturnValue.MapValue", "value", "manual"]
diff --git a/java/ql/lib/ext/org.apache.commons.io.model.yml b/java/ql/lib/ext/org.apache.commons.io.model.yml
new file mode 100644
index 00000000000..c135623eff6
--- /dev/null
+++ b/java/ql/lib/ext/org.apache.commons.io.model.yml
@@ -0,0 +1,10 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSummaryModel
+    data:
+      - ["org.apache.commons.io", "IOUtils", False, "toBufferedInputStream", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.io", "IOUtils", True, "toByteArray", "(Reader)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.io", "IOUtils", True, "toByteArray", "(Reader,String)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.io", "IOUtils", True, "writeLines", "(Collection,String,Writer)", "", "Argument[0].Element", "Argument[2]", "taint", "manual"]
+      - ["org.apache.commons.io", "IOUtils", True, "writeLines", "(Collection,String,Writer)", "", "Argument[1]", "Argument[2]", "taint", "manual"]
diff --git a/java/ql/lib/ext/org.apache.commons.jexl2.model.yml b/java/ql/lib/ext/org.apache.commons.jexl2.model.yml
new file mode 100644
index 00000000000..7d6e5d070d2
--- /dev/null
+++ b/java/ql/lib/ext/org.apache.commons.jexl2.model.yml
@@ -0,0 +1,20 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSinkModel
+    data:
+      - ["org.apache.commons.jexl2", "Expression", False, "callable", "", "", "Argument[-1]", "jexl", "manual"]
+      - ["org.apache.commons.jexl2", "Expression", False, "evaluate", "", "", "Argument[-1]", "jexl", "manual"]
+      - ["org.apache.commons.jexl2", "JexlEngine", False, "getProperty", "(JexlContext,Object,String)", "", "Argument[2]", "jexl", "manual"]
+      - ["org.apache.commons.jexl2", "JexlEngine", False, "getProperty", "(Object,String)", "", "Argument[1]", "jexl", "manual"]
+      - ["org.apache.commons.jexl2", "JexlEngine", False, "setProperty", "(JexlContext,Object,String,Object)", "", "Argument[2]", "jexl", "manual"]
+      - ["org.apache.commons.jexl2", "JexlEngine", False, "setProperty", "(Object,String,Object)", "", "Argument[1]", "jexl", "manual"]
+      - ["org.apache.commons.jexl2", "JexlExpression", False, "callable", "", "", "Argument[-1]", "jexl", "manual"]
+      - ["org.apache.commons.jexl2", "JexlExpression", False, "evaluate", "", "", "Argument[-1]", "jexl", "manual"]
+      - ["org.apache.commons.jexl2", "JexlScript", False, "callable", "", "", "Argument[-1]", "jexl", "manual"]
+      - ["org.apache.commons.jexl2", "JexlScript", False, "execute", "", "", "Argument[-1]", "jexl", "manual"]
+      - ["org.apache.commons.jexl2", "Script", False, "callable", "", "", "Argument[-1]", "jexl", "manual"]
+      - ["org.apache.commons.jexl2", "Script", False, "execute", "", "", "Argument[-1]", "jexl", "manual"]
+      - ["org.apache.commons.jexl2", "UnifiedJEXL$Expression", False, "evaluate", "", "", "Argument[-1]", "jexl", "manual"]
+      - ["org.apache.commons.jexl2", "UnifiedJEXL$Expression", False, "prepare", "", "", "Argument[-1]", "jexl", "manual"]
+      - ["org.apache.commons.jexl2", "UnifiedJEXL$Template", False, "evaluate", "", "", "Argument[-1]", "jexl", "manual"]
diff --git a/java/ql/lib/ext/org.apache.commons.jexl3.model.yml b/java/ql/lib/ext/org.apache.commons.jexl3.model.yml
new file mode 100644
index 00000000000..a911fe7f22c
--- /dev/null
+++ b/java/ql/lib/ext/org.apache.commons.jexl3.model.yml
@@ -0,0 +1,20 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSinkModel
+    data:
+      - ["org.apache.commons.jexl3", "Expression", False, "callable", "", "", "Argument[-1]", "jexl", "manual"]
+      - ["org.apache.commons.jexl3", "Expression", False, "evaluate", "", "", "Argument[-1]", "jexl", "manual"]
+      - ["org.apache.commons.jexl3", "JexlEngine", False, "getProperty", "(JexlContext,Object,String)", "", "Argument[2]", "jexl", "manual"]
+      - ["org.apache.commons.jexl3", "JexlEngine", False, "getProperty", "(Object,String)", "", "Argument[1]", "jexl", "manual"]
+      - ["org.apache.commons.jexl3", "JexlEngine", False, "setProperty", "(JexlContext,Object,String)", "", "Argument[2]", "jexl", "manual"]
+      - ["org.apache.commons.jexl3", "JexlEngine", False, "setProperty", "(Object,String,Object)", "", "Argument[1]", "jexl", "manual"]
+      - ["org.apache.commons.jexl3", "JexlExpression", False, "callable", "", "", "Argument[-1]", "jexl", "manual"]
+      - ["org.apache.commons.jexl3", "JexlExpression", False, "evaluate", "", "", "Argument[-1]", "jexl", "manual"]
+      - ["org.apache.commons.jexl3", "JexlScript", False, "callable", "", "", "Argument[-1]", "jexl", "manual"]
+      - ["org.apache.commons.jexl3", "JexlScript", False, "execute", "", "", "Argument[-1]", "jexl", "manual"]
+      - ["org.apache.commons.jexl3", "JxltEngine$Expression", False, "evaluate", "", "", "Argument[-1]", "jexl", "manual"]
+      - ["org.apache.commons.jexl3", "JxltEngine$Expression", False, "prepare", "", "", "Argument[-1]", "jexl", "manual"]
+      - ["org.apache.commons.jexl3", "JxltEngine$Template", False, "evaluate", "", "", "Argument[-1]", "jexl", "manual"]
+      - ["org.apache.commons.jexl3", "Script", False, "callable", "", "", "Argument[-1]", "jexl", "manual"]
+      - ["org.apache.commons.jexl3", "Script", False, "execute", "", "", "Argument[-1]", "jexl", "manual"]
diff --git a/java/ql/lib/ext/org.apache.commons.lang3.builder.model.yml b/java/ql/lib/ext/org.apache.commons.lang3.builder.model.yml
new file mode 100644
index 00000000000..cf4967b0cb5
--- /dev/null
+++ b/java/ql/lib/ext/org.apache.commons.lang3.builder.model.yml
@@ -0,0 +1,22 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSummaryModel
+    data:
+      - ["org.apache.commons.lang3.builder", "ToStringBuilder", False, "append", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.lang3.builder", "ToStringBuilder", False, "append", "(java.lang.Object)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.commons.lang3.builder", "ToStringBuilder", False, "append", "(java.lang.Object[])", "", "Argument[0].ArrayElement", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.commons.lang3.builder", "ToStringBuilder", False, "append", "(java.lang.String,boolean)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.commons.lang3.builder", "ToStringBuilder", False, "append", "(java.lang.String,java.lang.Object)", "", "Argument[0..1]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.commons.lang3.builder", "ToStringBuilder", False, "append", "(java.lang.String,java.lang.Object[])", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.commons.lang3.builder", "ToStringBuilder", False, "append", "(java.lang.String,java.lang.Object[])", "", "Argument[1].ArrayElement", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.commons.lang3.builder", "ToStringBuilder", False, "append", "(java.lang.String,java.lang.Object[],boolean)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.commons.lang3.builder", "ToStringBuilder", False, "append", "(java.lang.String,java.lang.Object[],boolean)", "", "Argument[1].ArrayElement", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.commons.lang3.builder", "ToStringBuilder", False, "appendAsObjectToString", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.lang3.builder", "ToStringBuilder", False, "appendSuper", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.lang3.builder", "ToStringBuilder", False, "appendSuper", "", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.commons.lang3.builder", "ToStringBuilder", False, "appendToString", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.lang3.builder", "ToStringBuilder", False, "appendToString", "", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.commons.lang3.builder", "ToStringBuilder", False, "build", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3.builder", "ToStringBuilder", False, "getStringBuffer", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3.builder", "ToStringBuilder", False, "toString", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
diff --git a/java/ql/lib/ext/org.apache.commons.lang3.model.yml b/java/ql/lib/ext/org.apache.commons.lang3.model.yml
new file mode 100644
index 00000000000..4b0c89d2731
--- /dev/null
+++ b/java/ql/lib/ext/org.apache.commons.lang3.model.yml
@@ -0,0 +1,207 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSummaryModel
+    data:
+      - ["org.apache.commons.lang3", "ArrayUtils", False, "add", "", "", "Argument[0].ArrayElement", "ReturnValue.ArrayElement", "value", "manual"]
+      - ["org.apache.commons.lang3", "ArrayUtils", False, "add", "", "", "Argument[2]", "ReturnValue.ArrayElement", "value", "manual"]
+      - ["org.apache.commons.lang3", "ArrayUtils", False, "add", "(boolean[],boolean)", "", "Argument[1]", "ReturnValue.ArrayElement", "value", "manual"]
+      - ["org.apache.commons.lang3", "ArrayUtils", False, "add", "(byte[],byte)", "", "Argument[1]", "ReturnValue.ArrayElement", "value", "manual"]
+      - ["org.apache.commons.lang3", "ArrayUtils", False, "add", "(char[],char)", "", "Argument[1]", "ReturnValue.ArrayElement", "value", "manual"]
+      - ["org.apache.commons.lang3", "ArrayUtils", False, "add", "(double[],double)", "", "Argument[1]", "ReturnValue.ArrayElement", "value", "manual"]
+      - ["org.apache.commons.lang3", "ArrayUtils", False, "add", "(float[],float)", "", "Argument[1]", "ReturnValue.ArrayElement", "value", "manual"]
+      - ["org.apache.commons.lang3", "ArrayUtils", False, "add", "(int[],int)", "", "Argument[1]", "ReturnValue.ArrayElement", "value", "manual"]
+      - ["org.apache.commons.lang3", "ArrayUtils", False, "add", "(java.lang.Object[],java.lang.Object)", "", "Argument[1]", "ReturnValue.ArrayElement", "value", "manual"]
+      - ["org.apache.commons.lang3", "ArrayUtils", False, "add", "(long[],long)", "", "Argument[1]", "ReturnValue.ArrayElement", "value", "manual"]
+      - ["org.apache.commons.lang3", "ArrayUtils", False, "add", "(short[],short)", "", "Argument[1]", "ReturnValue.ArrayElement", "value", "manual"]
+      - ["org.apache.commons.lang3", "ArrayUtils", False, "addAll", "", "", "Argument[0..1].ArrayElement", "ReturnValue.ArrayElement", "value", "manual"]
+      - ["org.apache.commons.lang3", "ArrayUtils", False, "addFirst", "", "", "Argument[0].ArrayElement", "ReturnValue.ArrayElement", "value", "manual"]
+      - ["org.apache.commons.lang3", "ArrayUtils", False, "addFirst", "", "", "Argument[1]", "ReturnValue.ArrayElement", "value", "manual"]
+      - ["org.apache.commons.lang3", "ArrayUtils", False, "clone", "", "", "Argument[0].ArrayElement", "ReturnValue.ArrayElement", "value", "manual"]
+      - ["org.apache.commons.lang3", "ArrayUtils", False, "get", "", "", "Argument[0].ArrayElement", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.lang3", "ArrayUtils", False, "get", "(java.lang.Object[],int,java.lang.Object)", "", "Argument[2]", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.lang3", "ArrayUtils", False, "insert", "", "", "Argument[1..2].ArrayElement", "ReturnValue.ArrayElement", "value", "manual"]
+      - ["org.apache.commons.lang3", "ArrayUtils", False, "nullToEmpty", "(java.lang.Object[],java.lang.Class)", "", "Argument[0]", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.lang3", "ArrayUtils", False, "nullToEmpty", "(java.lang.String[])", "", "Argument[0]", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.lang3", "ArrayUtils", False, "remove", "", "", "Argument[0].ArrayElement", "ReturnValue.ArrayElement", "value", "manual"]
+      - ["org.apache.commons.lang3", "ArrayUtils", False, "removeAll", "", "", "Argument[0].ArrayElement", "ReturnValue.ArrayElement", "value", "manual"]
+      - ["org.apache.commons.lang3", "ArrayUtils", False, "removeAllOccurences", "", "", "Argument[0].ArrayElement", "ReturnValue.ArrayElement", "value", "manual"]
+      - ["org.apache.commons.lang3", "ArrayUtils", False, "removeAllOccurrences", "", "", "Argument[0].ArrayElement", "ReturnValue.ArrayElement", "value", "manual"]
+      - ["org.apache.commons.lang3", "ArrayUtils", False, "removeElement", "", "", "Argument[0].ArrayElement", "ReturnValue.ArrayElement", "value", "manual"]
+      - ["org.apache.commons.lang3", "ArrayUtils", False, "removeElements", "", "", "Argument[0].ArrayElement", "ReturnValue.ArrayElement", "value", "manual"]
+      - ["org.apache.commons.lang3", "ArrayUtils", False, "subarray", "", "", "Argument[0].ArrayElement", "ReturnValue.ArrayElement", "value", "manual"]
+      - ["org.apache.commons.lang3", "ArrayUtils", False, "toArray", "", "", "Argument[0].ArrayElement", "ReturnValue.ArrayElement", "value", "manual"]
+      - ["org.apache.commons.lang3", "ArrayUtils", False, "toMap", "", "", "Argument[0].ArrayElement.ArrayElement", "ReturnValue.MapKey", "value", "manual"]
+      - ["org.apache.commons.lang3", "ArrayUtils", False, "toMap", "", "", "Argument[0].ArrayElement.ArrayElement", "ReturnValue.MapValue", "value", "manual"]
+      - ["org.apache.commons.lang3", "ArrayUtils", False, "toMap", "", "", "Argument[0].ArrayElement.MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["org.apache.commons.lang3", "ArrayUtils", False, "toMap", "", "", "Argument[0].ArrayElement.MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["org.apache.commons.lang3", "ArrayUtils", False, "toObject", "", "", "Argument[0].ArrayElement", "ReturnValue.ArrayElement", "value", "manual"]
+      - ["org.apache.commons.lang3", "ArrayUtils", False, "toPrimitive", "", "", "Argument[0].ArrayElement", "ReturnValue.ArrayElement", "value", "manual"]
+      - ["org.apache.commons.lang3", "ArrayUtils", False, "toPrimitive", "", "", "Argument[1]", "ReturnValue.ArrayElement", "value", "manual"]
+      - ["org.apache.commons.lang3", "ObjectUtils", False, "CONST", "", "", "Argument[0]", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.lang3", "ObjectUtils", False, "CONST_BYTE", "", "", "Argument[0]", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.lang3", "ObjectUtils", False, "CONST_SHORT", "", "", "Argument[0]", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.lang3", "ObjectUtils", False, "clone", "", "", "Argument[0]", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.lang3", "ObjectUtils", False, "cloneIfPossible", "", "", "Argument[0]", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.lang3", "ObjectUtils", False, "defaultIfNull", "", "", "Argument[0..1]", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.lang3", "ObjectUtils", False, "firstNonNull", "", "", "Argument[0].ArrayElement", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.lang3", "ObjectUtils", False, "getIfNull", "", "", "Argument[0]", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.lang3", "ObjectUtils", False, "max", "", "", "Argument[0].ArrayElement", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.lang3", "ObjectUtils", False, "median", "", "", "Argument[0].ArrayElement", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.lang3", "ObjectUtils", False, "min", "", "", "Argument[0].ArrayElement", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.lang3", "ObjectUtils", False, "mode", "", "", "Argument[0].ArrayElement", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.lang3", "ObjectUtils", False, "requireNonEmpty", "", "", "Argument[0]", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.lang3", "ObjectUtils", False, "toString", "(Object,String)", "", "Argument[1]", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.lang3", "RegExUtils", False, "removeAll", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3", "RegExUtils", False, "removeFirst", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3", "RegExUtils", False, "removePattern", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3", "RegExUtils", False, "replaceAll", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3", "RegExUtils", False, "replaceAll", "", "", "Argument[2]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3", "RegExUtils", False, "replaceFirst", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3", "RegExUtils", False, "replaceFirst", "", "", "Argument[2]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3", "RegExUtils", False, "replacePattern", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3", "RegExUtils", False, "replacePattern", "", "", "Argument[2]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3", "StringEscapeUtils", False, "escapeJson", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3", "StringUtils", False, "abbreviate", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3", "StringUtils", False, "abbreviate", "(java.lang.String,java.lang.String,int)", "", "Argument[1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3", "StringUtils", False, "abbreviate", "(java.lang.String,java.lang.String,int,int)", "", "Argument[1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3", "StringUtils", False, "abbreviateMiddle", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3", "StringUtils", False, "abbreviateMiddle", "", "", "Argument[1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3", "StringUtils", False, "appendIfMissing", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3", "StringUtils", False, "appendIfMissing", "", "", "Argument[1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3", "StringUtils", False, "appendIfMissingIgnoreCase", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3", "StringUtils", False, "appendIfMissingIgnoreCase", "", "", "Argument[1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3", "StringUtils", False, "capitalize", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3", "StringUtils", False, "center", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3", "StringUtils", False, "center", "(java.lang.String,int,java.lang.String)", "", "Argument[2]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3", "StringUtils", False, "chomp", "(java.lang.String)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3", "StringUtils", False, "chomp", "(java.lang.String,java.lang.String)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3", "StringUtils", False, "chop", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3", "StringUtils", False, "defaultIfBlank", "", "", "Argument[0..1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3", "StringUtils", False, "defaultIfEmpty", "", "", "Argument[0..1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3", "StringUtils", False, "defaultString", "", "", "Argument[0..1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3", "StringUtils", False, "deleteWhitespace", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3", "StringUtils", False, "difference", "", "", "Argument[0..1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3", "StringUtils", False, "firstNonBlank", "", "", "Argument[0].ArrayElement", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.lang3", "StringUtils", False, "firstNonEmpty", "", "", "Argument[0].ArrayElement", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.lang3", "StringUtils", False, "getBytes", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3", "StringUtils", False, "getCommonPrefix", "", "", "Argument[0].ArrayElement", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3", "StringUtils", False, "getDigits", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3", "StringUtils", False, "getIfBlank", "", "", "Argument[0..1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3", "StringUtils", False, "getIfEmpty", "", "", "Argument[0..1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3", "StringUtils", False, "join", "(char[],char)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3", "StringUtils", False, "join", "(char[],char,int,int)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3", "StringUtils", False, "join", "(java.lang.Iterable,char)", "", "Argument[0].Element", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3", "StringUtils", False, "join", "(java.lang.Iterable,java.lang.String)", "", "Argument[0].Element", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3", "StringUtils", False, "join", "(java.lang.Iterable,java.lang.String)", "", "Argument[1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3", "StringUtils", False, "join", "(java.lang.Object[])", "", "Argument[0].ArrayElement", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3", "StringUtils", False, "join", "(java.lang.Object[],char)", "", "Argument[0].ArrayElement", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3", "StringUtils", False, "join", "(java.lang.Object[],char,int,int)", "", "Argument[0].ArrayElement", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3", "StringUtils", False, "join", "(java.lang.Object[],java.lang.String)", "", "Argument[0].ArrayElement", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3", "StringUtils", False, "join", "(java.lang.Object[],java.lang.String)", "", "Argument[1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3", "StringUtils", False, "join", "(java.lang.Object[],java.lang.String,int,int)", "", "Argument[0].ArrayElement", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3", "StringUtils", False, "join", "(java.lang.Object[],java.lang.String,int,int)", "", "Argument[1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3", "StringUtils", False, "join", "(java.util.Iterator,char)", "", "Argument[0].Element", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3", "StringUtils", False, "join", "(java.util.Iterator,java.lang.String)", "", "Argument[0].Element", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3", "StringUtils", False, "join", "(java.util.Iterator,java.lang.String)", "", "Argument[1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3", "StringUtils", False, "join", "(java.util.List,char,int,int)", "", "Argument[0].Element", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3", "StringUtils", False, "join", "(java.util.List,java.lang.String,int,int)", "", "Argument[0].Element", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3", "StringUtils", False, "join", "(java.util.List,java.lang.String,int,int)", "", "Argument[1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3", "StringUtils", False, "joinWith", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3", "StringUtils", False, "joinWith", "", "", "Argument[1].ArrayElement", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3", "StringUtils", False, "left", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3", "StringUtils", False, "leftPad", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3", "StringUtils", False, "leftPad", "(java.lang.String,int,java.lang.String)", "", "Argument[2]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3", "StringUtils", False, "lowerCase", "(java.lang.String)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3", "StringUtils", False, "lowerCase", "(java.lang.String,java.util.Locale)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3", "StringUtils", False, "mid", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3", "StringUtils", False, "normalizeSpace", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3", "StringUtils", False, "overlay", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3", "StringUtils", False, "overlay", "", "", "Argument[1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3", "StringUtils", False, "prependIfMissing", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3", "StringUtils", False, "prependIfMissing", "", "", "Argument[1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3", "StringUtils", False, "prependIfMissingIgnoreCase", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3", "StringUtils", False, "prependIfMissingIgnoreCase", "", "", "Argument[1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3", "StringUtils", False, "remove", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3", "StringUtils", False, "removeAll", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3", "StringUtils", False, "removeEnd", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3", "StringUtils", False, "removeEndIgnoreCase", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3", "StringUtils", False, "removeFirst", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3", "StringUtils", False, "removeIgnoreCase", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3", "StringUtils", False, "removePattern", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3", "StringUtils", False, "removeStart", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3", "StringUtils", False, "removeStartIgnoreCase", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3", "StringUtils", False, "repeat", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3", "StringUtils", False, "repeat", "(java.lang.String,java.lang.String,int)", "", "Argument[1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3", "StringUtils", False, "replace", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3", "StringUtils", False, "replace", "", "", "Argument[2]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3", "StringUtils", False, "replaceAll", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3", "StringUtils", False, "replaceAll", "", "", "Argument[2]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3", "StringUtils", False, "replaceChars", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3", "StringUtils", False, "replaceChars", "(java.lang.String,java.lang.String,java.lang.String)", "", "Argument[2]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3", "StringUtils", False, "replaceEach", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3", "StringUtils", False, "replaceEach", "", "", "Argument[2].ArrayElement", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3", "StringUtils", False, "replaceEachRepeatedly", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3", "StringUtils", False, "replaceEachRepeatedly", "", "", "Argument[2].ArrayElement", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3", "StringUtils", False, "replaceFirst", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3", "StringUtils", False, "replaceFirst", "", "", "Argument[2]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3", "StringUtils", False, "replaceIgnoreCase", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3", "StringUtils", False, "replaceIgnoreCase", "", "", "Argument[2]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3", "StringUtils", False, "replaceOnce", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3", "StringUtils", False, "replaceOnce", "", "", "Argument[2]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3", "StringUtils", False, "replaceOnceIgnoreCase", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3", "StringUtils", False, "replaceOnceIgnoreCase", "", "", "Argument[2]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3", "StringUtils", False, "replacePattern", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3", "StringUtils", False, "replacePattern", "", "", "Argument[2]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3", "StringUtils", False, "reverse", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3", "StringUtils", False, "reverseDelimited", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3", "StringUtils", False, "right", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3", "StringUtils", False, "rightPad", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3", "StringUtils", False, "rightPad", "(java.lang.String,int,java.lang.String)", "", "Argument[2]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3", "StringUtils", False, "rotate", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3", "StringUtils", False, "split", "(java.lang.String)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3", "StringUtils", False, "split", "(java.lang.String,char)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3", "StringUtils", False, "split", "(java.lang.String,java.lang.String)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3", "StringUtils", False, "split", "(java.lang.String,java.lang.String,int)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3", "StringUtils", False, "splitByCharacterType", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3", "StringUtils", False, "splitByCharacterTypeCamelCase", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3", "StringUtils", False, "splitByWholeSeparator", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3", "StringUtils", False, "splitByWholeSeparatorPreserveAllTokens", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3", "StringUtils", False, "splitPreserveAllTokens", "(java.lang.String)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3", "StringUtils", False, "splitPreserveAllTokens", "(java.lang.String,char)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3", "StringUtils", False, "splitPreserveAllTokens", "(java.lang.String,java.lang.String)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3", "StringUtils", False, "splitPreserveAllTokens", "(java.lang.String,java.lang.String,int)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3", "StringUtils", False, "strip", "(java.lang.String)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3", "StringUtils", False, "strip", "(java.lang.String,java.lang.String)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3", "StringUtils", False, "stripAccents", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3", "StringUtils", False, "stripAll", "", "", "Argument[0].ArrayElement", "ReturnValue.ArrayElement", "taint", "manual"]
+      - ["org.apache.commons.lang3", "StringUtils", False, "stripEnd", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3", "StringUtils", False, "stripStart", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3", "StringUtils", False, "stripToEmpty", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3", "StringUtils", False, "stripToNull", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3", "StringUtils", False, "substring", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3", "StringUtils", False, "substringAfter", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3", "StringUtils", False, "substringAfterLast", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3", "StringUtils", False, "substringBefore", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3", "StringUtils", False, "substringBeforeLast", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3", "StringUtils", False, "substringBetween", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3", "StringUtils", False, "substringsBetween", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3", "StringUtils", False, "swapCase", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3", "StringUtils", False, "toCodePoints", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3", "StringUtils", False, "toEncodedString", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3", "StringUtils", False, "toRootLowerCase", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3", "StringUtils", False, "toRootUpperCase", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3", "StringUtils", False, "toString", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3", "StringUtils", False, "trim", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3", "StringUtils", False, "trimToEmpty", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3", "StringUtils", False, "trimToNull", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3", "StringUtils", False, "truncate", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3", "StringUtils", False, "uncapitalize", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3", "StringUtils", False, "unwrap", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3", "StringUtils", False, "upperCase", "(java.lang.String)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3", "StringUtils", False, "upperCase", "(java.lang.String,java.util.Locale)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3", "StringUtils", False, "valueOf", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3", "StringUtils", False, "wrap", "(java.lang.String,char)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3", "StringUtils", False, "wrap", "(java.lang.String,java.lang.String)", "", "Argument[0..1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3", "StringUtils", False, "wrapIfMissing", "(java.lang.String,char)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3", "StringUtils", False, "wrapIfMissing", "(java.lang.String,java.lang.String)", "", "Argument[0..1]", "ReturnValue", "taint", "manual"]
diff --git a/java/ql/lib/ext/org.apache.commons.lang3.mutable.model.yml b/java/ql/lib/ext/org.apache.commons.lang3.mutable.model.yml
new file mode 100644
index 00000000000..0a576393e10
--- /dev/null
+++ b/java/ql/lib/ext/org.apache.commons.lang3.mutable.model.yml
@@ -0,0 +1,8 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSummaryModel
+    data:
+      - ["org.apache.commons.lang3.mutable", "Mutable", True, "getValue", "", "", "Argument[-1].SyntheticField[org.apache.commons.lang3.mutable.MutableObject.value]", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.lang3.mutable", "Mutable", True, "setValue", "", "", "Argument[0]", "Argument[-1].SyntheticField[org.apache.commons.lang3.mutable.MutableObject.value]", "value", "manual"]
+      - ["org.apache.commons.lang3.mutable", "MutableObject", False, "MutableObject", "", "", "Argument[0]", "Argument[-1].SyntheticField[org.apache.commons.lang3.mutable.MutableObject.value]", "value", "manual"]
diff --git a/java/ql/lib/ext/org.apache.commons.lang3.text.model.yml b/java/ql/lib/ext/org.apache.commons.lang3.text.model.yml
new file mode 100644
index 00000000000..c31cffeb62c
--- /dev/null
+++ b/java/ql/lib/ext/org.apache.commons.lang3.text.model.yml
@@ -0,0 +1,160 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSummaryModel
+    data:
+      - ["org.apache.commons.lang3.text", "StrBuilder", False, "StrBuilder", "(java.lang.String)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.commons.lang3.text", "StrBuilder", False, "append", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3.text", "StrBuilder", False, "append", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.lang3.text", "StrBuilder", False, "append", "(char[])", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.commons.lang3.text", "StrBuilder", False, "append", "(char[],int,int)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.commons.lang3.text", "StrBuilder", False, "append", "(java.lang.CharSequence)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.commons.lang3.text", "StrBuilder", False, "append", "(java.lang.CharSequence,int,int)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.commons.lang3.text", "StrBuilder", False, "append", "(java.lang.Object)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.commons.lang3.text", "StrBuilder", False, "append", "(java.lang.String)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.commons.lang3.text", "StrBuilder", False, "append", "(java.lang.String,int,int)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.commons.lang3.text", "StrBuilder", False, "append", "(java.lang.String,java.lang.Object[])", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.commons.lang3.text", "StrBuilder", False, "append", "(java.lang.String,java.lang.Object[])", "", "Argument[1].ArrayElement", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.commons.lang3.text", "StrBuilder", False, "append", "(java.lang.StringBuffer)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.commons.lang3.text", "StrBuilder", False, "append", "(java.lang.StringBuffer,int,int)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.commons.lang3.text", "StrBuilder", False, "append", "(java.lang.StringBuilder)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.commons.lang3.text", "StrBuilder", False, "append", "(java.lang.StringBuilder,int,int)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.commons.lang3.text", "StrBuilder", False, "append", "(java.nio.CharBuffer)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.commons.lang3.text", "StrBuilder", False, "append", "(java.nio.CharBuffer,int,int)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.commons.lang3.text", "StrBuilder", False, "append", "(org.apache.commons.lang3.text.StrBuilder)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.commons.lang3.text", "StrBuilder", False, "appendAll", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3.text", "StrBuilder", False, "appendAll", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.lang3.text", "StrBuilder", False, "appendAll", "(Iterable)", "", "Argument[0].Element", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.commons.lang3.text", "StrBuilder", False, "appendAll", "(Iterator)", "", "Argument[0].Element", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.commons.lang3.text", "StrBuilder", False, "appendAll", "(Object[])", "", "Argument[0].ArrayElement", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.commons.lang3.text", "StrBuilder", False, "appendFixedWidthPadLeft", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3.text", "StrBuilder", False, "appendFixedWidthPadLeft", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.lang3.text", "StrBuilder", False, "appendFixedWidthPadLeft", "", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.commons.lang3.text", "StrBuilder", False, "appendFixedWidthPadRight", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3.text", "StrBuilder", False, "appendFixedWidthPadRight", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.lang3.text", "StrBuilder", False, "appendFixedWidthPadRight", "", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.commons.lang3.text", "StrBuilder", False, "appendNewLine", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.lang3.text", "StrBuilder", False, "appendNull", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.lang3.text", "StrBuilder", False, "appendPadding", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.lang3.text", "StrBuilder", False, "appendSeparator", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3.text", "StrBuilder", False, "appendSeparator", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.lang3.text", "StrBuilder", False, "appendSeparator", "(java.lang.String)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.commons.lang3.text", "StrBuilder", False, "appendSeparator", "(java.lang.String,int)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.commons.lang3.text", "StrBuilder", False, "appendSeparator", "(java.lang.String,java.lang.String)", "", "Argument[0..1]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.commons.lang3.text", "StrBuilder", False, "appendTo", "", "", "Argument[-1]", "Argument[0]", "taint", "manual"]
+      - ["org.apache.commons.lang3.text", "StrBuilder", False, "appendWithSeparators", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3.text", "StrBuilder", False, "appendWithSeparators", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.lang3.text", "StrBuilder", False, "appendWithSeparators", "", "", "Argument[1]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.commons.lang3.text", "StrBuilder", False, "appendWithSeparators", "(Iterable,String)", "", "Argument[0].Element", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.commons.lang3.text", "StrBuilder", False, "appendWithSeparators", "(Iterator,String)", "", "Argument[0].Element", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.commons.lang3.text", "StrBuilder", False, "appendWithSeparators", "(Object[],String)", "", "Argument[0].ArrayElement", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.commons.lang3.text", "StrBuilder", False, "appendln", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3.text", "StrBuilder", False, "appendln", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.lang3.text", "StrBuilder", False, "appendln", "(char[])", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.commons.lang3.text", "StrBuilder", False, "appendln", "(char[],int,int)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.commons.lang3.text", "StrBuilder", False, "appendln", "(java.lang.Object)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.commons.lang3.text", "StrBuilder", False, "appendln", "(java.lang.String)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.commons.lang3.text", "StrBuilder", False, "appendln", "(java.lang.String,int,int)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.commons.lang3.text", "StrBuilder", False, "appendln", "(java.lang.String,java.lang.Object[])", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.commons.lang3.text", "StrBuilder", False, "appendln", "(java.lang.String,java.lang.Object[])", "", "Argument[1].ArrayElement", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.commons.lang3.text", "StrBuilder", False, "appendln", "(java.lang.StringBuffer)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.commons.lang3.text", "StrBuilder", False, "appendln", "(java.lang.StringBuffer,int,int)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.commons.lang3.text", "StrBuilder", False, "appendln", "(java.lang.StringBuilder)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.commons.lang3.text", "StrBuilder", False, "appendln", "(java.lang.StringBuilder,int,int)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.commons.lang3.text", "StrBuilder", False, "appendln", "(org.apache.commons.lang3.text.StrBuilder)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.commons.lang3.text", "StrBuilder", False, "asReader", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3.text", "StrBuilder", False, "asTokenizer", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3.text", "StrBuilder", False, "build", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3.text", "StrBuilder", False, "delete", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.lang3.text", "StrBuilder", False, "deleteAll", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.lang3.text", "StrBuilder", False, "deleteCharAt", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.lang3.text", "StrBuilder", False, "deleteFirst", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.lang3.text", "StrBuilder", False, "ensureCapacity", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.lang3.text", "StrBuilder", False, "getChars", "(char[])", "", "Argument[-1]", "Argument[0]", "taint", "manual"]
+      - ["org.apache.commons.lang3.text", "StrBuilder", False, "getChars", "(char[])", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3.text", "StrBuilder", False, "getChars", "(int,int,char[],int)", "", "Argument[-1]", "Argument[2]", "taint", "manual"]
+      - ["org.apache.commons.lang3.text", "StrBuilder", False, "insert", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3.text", "StrBuilder", False, "insert", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.lang3.text", "StrBuilder", False, "insert", "", "", "Argument[1]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.commons.lang3.text", "StrBuilder", False, "leftString", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3.text", "StrBuilder", False, "midString", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3.text", "StrBuilder", False, "minimizeCapacity", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.lang3.text", "StrBuilder", False, "readFrom", "", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.commons.lang3.text", "StrBuilder", False, "replace", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3.text", "StrBuilder", False, "replace", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.lang3.text", "StrBuilder", False, "replace", "(int,int,java.lang.String)", "", "Argument[2]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.commons.lang3.text", "StrBuilder", False, "replace", "(org.apache.commons.lang3.text.StrMatcher,java.lang.String,int,int,int)", "", "Argument[1]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.commons.lang3.text", "StrBuilder", False, "replaceAll", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3.text", "StrBuilder", False, "replaceAll", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.lang3.text", "StrBuilder", False, "replaceAll", "", "", "Argument[1]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.commons.lang3.text", "StrBuilder", False, "replaceFirst", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3.text", "StrBuilder", False, "replaceFirst", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.lang3.text", "StrBuilder", False, "replaceFirst", "", "", "Argument[1]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.commons.lang3.text", "StrBuilder", False, "reverse", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.lang3.text", "StrBuilder", False, "rightString", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3.text", "StrBuilder", False, "setCharAt", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.lang3.text", "StrBuilder", False, "setLength", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.lang3.text", "StrBuilder", False, "setNewLineText", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.lang3.text", "StrBuilder", False, "setNullText", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.lang3.text", "StrBuilder", False, "subSequence", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3.text", "StrBuilder", False, "substring", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3.text", "StrBuilder", False, "toCharArray", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3.text", "StrBuilder", False, "toString", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3.text", "StrBuilder", False, "toStringBuffer", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3.text", "StrBuilder", False, "toStringBuilder", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3.text", "StrBuilder", False, "trim", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.lang3.text", "StrLookup", False, "lookup", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3.text", "StrLookup", False, "mapLookup", "", "", "Argument[0].MapValue", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3.text", "StrSubstitutor", False, "StrSubstitutor", "", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.commons.lang3.text", "StrSubstitutor", False, "StrSubstitutor", "", "", "Argument[0].MapValue", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.commons.lang3.text", "StrSubstitutor", False, "replace", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3.text", "StrSubstitutor", False, "replace", "(char[])", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3.text", "StrSubstitutor", False, "replace", "(char[],int,int)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3.text", "StrSubstitutor", False, "replace", "(java.lang.CharSequence)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3.text", "StrSubstitutor", False, "replace", "(java.lang.CharSequence,int,int)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3.text", "StrSubstitutor", False, "replace", "(java.lang.Object)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3.text", "StrSubstitutor", False, "replace", "(java.lang.Object,java.util.Map)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3.text", "StrSubstitutor", False, "replace", "(java.lang.Object,java.util.Map)", "", "Argument[1].MapValue", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3.text", "StrSubstitutor", False, "replace", "(java.lang.Object,java.util.Map,java.lang.String,java.lang.String)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3.text", "StrSubstitutor", False, "replace", "(java.lang.Object,java.util.Map,java.lang.String,java.lang.String)", "", "Argument[1].MapValue", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3.text", "StrSubstitutor", False, "replace", "(java.lang.Object,java.util.Properties)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3.text", "StrSubstitutor", False, "replace", "(java.lang.Object,java.util.Properties)", "", "Argument[1].MapValue", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3.text", "StrSubstitutor", False, "replace", "(java.lang.String)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3.text", "StrSubstitutor", False, "replace", "(java.lang.String,int,int)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3.text", "StrSubstitutor", False, "replace", "(java.lang.StringBuffer)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3.text", "StrSubstitutor", False, "replace", "(java.lang.StringBuffer,int,int)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3.text", "StrSubstitutor", False, "replace", "(org.apache.commons.lang3.text.StrBuilder)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3.text", "StrSubstitutor", False, "replace", "(org.apache.commons.lang3.text.StrBuilder,int,int)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3.text", "StrSubstitutor", False, "replaceIn", "(java.lang.StringBuffer)", "", "Argument[-1]", "Argument[0]", "taint", "manual"]
+      - ["org.apache.commons.lang3.text", "StrSubstitutor", False, "replaceIn", "(java.lang.StringBuffer,int,int)", "", "Argument[-1]", "Argument[0]", "taint", "manual"]
+      - ["org.apache.commons.lang3.text", "StrSubstitutor", False, "replaceIn", "(java.lang.StringBuilder)", "", "Argument[-1]", "Argument[0]", "taint", "manual"]
+      - ["org.apache.commons.lang3.text", "StrSubstitutor", False, "replaceIn", "(java.lang.StringBuilder,int,int)", "", "Argument[-1]", "Argument[0]", "taint", "manual"]
+      - ["org.apache.commons.lang3.text", "StrSubstitutor", False, "replaceIn", "(org.apache.commons.lang3.text.StrBuilder)", "", "Argument[-1]", "Argument[0]", "taint", "manual"]
+      - ["org.apache.commons.lang3.text", "StrSubstitutor", False, "replaceIn", "(org.apache.commons.lang3.text.StrBuilder,int,int)", "", "Argument[-1]", "Argument[0]", "taint", "manual"]
+      - ["org.apache.commons.lang3.text", "StrSubstitutor", False, "setVariableResolver", "", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.commons.lang3.text", "StrTokenizer", False, "StrTokenizer", "", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.commons.lang3.text", "StrTokenizer", False, "clone", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3.text", "StrTokenizer", False, "getCSVInstance", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3.text", "StrTokenizer", False, "getContent", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3.text", "StrTokenizer", False, "getTSVInstance", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3.text", "StrTokenizer", False, "getTokenArray", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3.text", "StrTokenizer", False, "getTokenList", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3.text", "StrTokenizer", False, "next", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3.text", "StrTokenizer", False, "nextToken", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3.text", "StrTokenizer", False, "previous", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3.text", "StrTokenizer", False, "previousToken", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3.text", "StrTokenizer", False, "reset", "", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.commons.lang3.text", "StrTokenizer", False, "reset", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3.text", "StrTokenizer", False, "toString", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3.text", "WordUtils", False, "capitalize", "(java.lang.String)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3.text", "WordUtils", False, "capitalize", "(java.lang.String,char[])", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3.text", "WordUtils", False, "capitalizeFully", "(java.lang.String)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3.text", "WordUtils", False, "capitalizeFully", "(java.lang.String,char[])", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3.text", "WordUtils", False, "initials", "(java.lang.String)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3.text", "WordUtils", False, "initials", "(java.lang.String,char[])", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3.text", "WordUtils", False, "swapCase", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3.text", "WordUtils", False, "uncapitalize", "(java.lang.String)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3.text", "WordUtils", False, "uncapitalize", "(java.lang.String,char[])", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3.text", "WordUtils", False, "wrap", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3.text", "WordUtils", False, "wrap", "(java.lang.String,int,java.lang.String,boolean)", "", "Argument[2]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.lang3.text", "WordUtils", False, "wrap", "(java.lang.String,int,java.lang.String,boolean,java.lang.String)", "", "Argument[2]", "ReturnValue", "taint", "manual"]
diff --git a/java/ql/lib/ext/org.apache.commons.lang3.tuple.model.yml b/java/ql/lib/ext/org.apache.commons.lang3.tuple.model.yml
new file mode 100644
index 00000000000..204c890dd5e
--- /dev/null
+++ b/java/ql/lib/ext/org.apache.commons.lang3.tuple.model.yml
@@ -0,0 +1,52 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSummaryModel
+    data:
+      - ["org.apache.commons.lang3.tuple", "ImmutablePair", False, "ImmutablePair", "(java.lang.Object,java.lang.Object)", "", "Argument[0]", "Argument[-1].Field[org.apache.commons.lang3.tuple.ImmutablePair.left]", "value", "manual"]
+      - ["org.apache.commons.lang3.tuple", "ImmutablePair", False, "ImmutablePair", "(java.lang.Object,java.lang.Object)", "", "Argument[1]", "Argument[-1].Field[org.apache.commons.lang3.tuple.ImmutablePair.right]", "value", "manual"]
+      - ["org.apache.commons.lang3.tuple", "ImmutablePair", False, "left", "", "", "Argument[0]", "ReturnValue.Field[org.apache.commons.lang3.tuple.ImmutablePair.left]", "value", "manual"]
+      - ["org.apache.commons.lang3.tuple", "ImmutablePair", False, "of", "(java.lang.Object,java.lang.Object)", "", "Argument[0]", "ReturnValue.Field[org.apache.commons.lang3.tuple.ImmutablePair.left]", "value", "manual"]
+      - ["org.apache.commons.lang3.tuple", "ImmutablePair", False, "of", "(java.lang.Object,java.lang.Object)", "", "Argument[1]", "ReturnValue.Field[org.apache.commons.lang3.tuple.ImmutablePair.right]", "value", "manual"]
+      - ["org.apache.commons.lang3.tuple", "ImmutablePair", False, "right", "", "", "Argument[0]", "ReturnValue.Field[org.apache.commons.lang3.tuple.ImmutablePair.right]", "value", "manual"]
+      - ["org.apache.commons.lang3.tuple", "ImmutableTriple", False, "ImmutableTriple", "(java.lang.Object,java.lang.Object,java.lang.Object)", "", "Argument[0]", "Argument[-1].Field[org.apache.commons.lang3.tuple.ImmutableTriple.left]", "value", "manual"]
+      - ["org.apache.commons.lang3.tuple", "ImmutableTriple", False, "ImmutableTriple", "(java.lang.Object,java.lang.Object,java.lang.Object)", "", "Argument[1]", "Argument[-1].Field[org.apache.commons.lang3.tuple.ImmutableTriple.middle]", "value", "manual"]
+      - ["org.apache.commons.lang3.tuple", "ImmutableTriple", False, "ImmutableTriple", "(java.lang.Object,java.lang.Object,java.lang.Object)", "", "Argument[2]", "Argument[-1].Field[org.apache.commons.lang3.tuple.ImmutableTriple.right]", "value", "manual"]
+      - ["org.apache.commons.lang3.tuple", "ImmutableTriple", False, "of", "(java.lang.Object,java.lang.Object,java.lang.Object)", "", "Argument[0]", "ReturnValue.Field[org.apache.commons.lang3.tuple.ImmutableTriple.left]", "value", "manual"]
+      - ["org.apache.commons.lang3.tuple", "ImmutableTriple", False, "of", "(java.lang.Object,java.lang.Object,java.lang.Object)", "", "Argument[1]", "ReturnValue.Field[org.apache.commons.lang3.tuple.ImmutableTriple.middle]", "value", "manual"]
+      - ["org.apache.commons.lang3.tuple", "ImmutableTriple", False, "of", "(java.lang.Object,java.lang.Object,java.lang.Object)", "", "Argument[2]", "ReturnValue.Field[org.apache.commons.lang3.tuple.ImmutableTriple.right]", "value", "manual"]
+      - ["org.apache.commons.lang3.tuple", "MutablePair", False, "MutablePair", "(java.lang.Object,java.lang.Object)", "", "Argument[0]", "Argument[-1].Field[org.apache.commons.lang3.tuple.MutablePair.left]", "value", "manual"]
+      - ["org.apache.commons.lang3.tuple", "MutablePair", False, "MutablePair", "(java.lang.Object,java.lang.Object)", "", "Argument[1]", "Argument[-1].Field[org.apache.commons.lang3.tuple.MutablePair.right]", "value", "manual"]
+      - ["org.apache.commons.lang3.tuple", "MutablePair", False, "of", "(java.lang.Object,java.lang.Object)", "", "Argument[0]", "ReturnValue.Field[org.apache.commons.lang3.tuple.MutablePair.left]", "value", "manual"]
+      - ["org.apache.commons.lang3.tuple", "MutablePair", False, "of", "(java.lang.Object,java.lang.Object)", "", "Argument[1]", "ReturnValue.Field[org.apache.commons.lang3.tuple.MutablePair.right]", "value", "manual"]
+      - ["org.apache.commons.lang3.tuple", "MutablePair", False, "setLeft", "", "", "Argument[0]", "Argument[-1].Field[org.apache.commons.lang3.tuple.MutablePair.left]", "value", "manual"]
+      - ["org.apache.commons.lang3.tuple", "MutablePair", False, "setRight", "", "", "Argument[0]", "Argument[-1].Field[org.apache.commons.lang3.tuple.MutablePair.right]", "value", "manual"]
+      - ["org.apache.commons.lang3.tuple", "MutablePair", False, "setValue", "", "", "Argument[0]", "Argument[-1].Field[org.apache.commons.lang3.tuple.MutablePair.right]", "value", "manual"]
+      - ["org.apache.commons.lang3.tuple", "MutableTriple", False, "MutableTriple", "(java.lang.Object,java.lang.Object,java.lang.Object)", "", "Argument[0]", "Argument[-1].Field[org.apache.commons.lang3.tuple.MutableTriple.left]", "value", "manual"]
+      - ["org.apache.commons.lang3.tuple", "MutableTriple", False, "MutableTriple", "(java.lang.Object,java.lang.Object,java.lang.Object)", "", "Argument[1]", "Argument[-1].Field[org.apache.commons.lang3.tuple.MutableTriple.middle]", "value", "manual"]
+      - ["org.apache.commons.lang3.tuple", "MutableTriple", False, "MutableTriple", "(java.lang.Object,java.lang.Object,java.lang.Object)", "", "Argument[2]", "Argument[-1].Field[org.apache.commons.lang3.tuple.MutableTriple.right]", "value", "manual"]
+      - ["org.apache.commons.lang3.tuple", "MutableTriple", False, "of", "(java.lang.Object,java.lang.Object,java.lang.Object)", "", "Argument[0]", "ReturnValue.Field[org.apache.commons.lang3.tuple.MutableTriple.left]", "value", "manual"]
+      - ["org.apache.commons.lang3.tuple", "MutableTriple", False, "of", "(java.lang.Object,java.lang.Object,java.lang.Object)", "", "Argument[1]", "ReturnValue.Field[org.apache.commons.lang3.tuple.MutableTriple.middle]", "value", "manual"]
+      - ["org.apache.commons.lang3.tuple", "MutableTriple", False, "of", "(java.lang.Object,java.lang.Object,java.lang.Object)", "", "Argument[2]", "ReturnValue.Field[org.apache.commons.lang3.tuple.MutableTriple.right]", "value", "manual"]
+      - ["org.apache.commons.lang3.tuple", "MutableTriple", False, "setLeft", "", "", "Argument[0]", "Argument[-1].Field[org.apache.commons.lang3.tuple.MutableTriple.left]", "value", "manual"]
+      - ["org.apache.commons.lang3.tuple", "MutableTriple", False, "setMiddle", "", "", "Argument[0]", "Argument[-1].Field[org.apache.commons.lang3.tuple.MutableTriple.middle]", "value", "manual"]
+      - ["org.apache.commons.lang3.tuple", "MutableTriple", False, "setRight", "", "", "Argument[0]", "Argument[-1].Field[org.apache.commons.lang3.tuple.MutableTriple.right]", "value", "manual"]
+      - ["org.apache.commons.lang3.tuple", "Pair", True, "getKey", "", "", "Argument[-1].Field[org.apache.commons.lang3.tuple.ImmutablePair.left]", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.lang3.tuple", "Pair", True, "getKey", "", "", "Argument[-1].Field[org.apache.commons.lang3.tuple.MutablePair.left]", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.lang3.tuple", "Pair", True, "getLeft", "", "", "Argument[-1].Field[org.apache.commons.lang3.tuple.ImmutablePair.left]", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.lang3.tuple", "Pair", True, "getLeft", "", "", "Argument[-1].Field[org.apache.commons.lang3.tuple.MutablePair.left]", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.lang3.tuple", "Pair", True, "getRight", "", "", "Argument[-1].Field[org.apache.commons.lang3.tuple.ImmutablePair.right]", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.lang3.tuple", "Pair", True, "getRight", "", "", "Argument[-1].Field[org.apache.commons.lang3.tuple.MutablePair.right]", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.lang3.tuple", "Pair", True, "getValue", "", "", "Argument[-1].Field[org.apache.commons.lang3.tuple.ImmutablePair.right]", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.lang3.tuple", "Pair", True, "getValue", "", "", "Argument[-1].Field[org.apache.commons.lang3.tuple.MutablePair.right]", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.lang3.tuple", "Pair", False, "of", "(java.lang.Object,java.lang.Object)", "", "Argument[0]", "ReturnValue.Field[org.apache.commons.lang3.tuple.ImmutablePair.left]", "value", "manual"]
+      - ["org.apache.commons.lang3.tuple", "Pair", False, "of", "(java.lang.Object,java.lang.Object)", "", "Argument[1]", "ReturnValue.Field[org.apache.commons.lang3.tuple.ImmutablePair.right]", "value", "manual"]
+      - ["org.apache.commons.lang3.tuple", "Triple", True, "getLeft", "", "", "Argument[-1].Field[org.apache.commons.lang3.tuple.ImmutableTriple.left]", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.lang3.tuple", "Triple", True, "getLeft", "", "", "Argument[-1].Field[org.apache.commons.lang3.tuple.MutableTriple.left]", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.lang3.tuple", "Triple", True, "getMiddle", "", "", "Argument[-1].Field[org.apache.commons.lang3.tuple.ImmutableTriple.middle]", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.lang3.tuple", "Triple", True, "getMiddle", "", "", "Argument[-1].Field[org.apache.commons.lang3.tuple.MutableTriple.middle]", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.lang3.tuple", "Triple", True, "getRight", "", "", "Argument[-1].Field[org.apache.commons.lang3.tuple.ImmutableTriple.right]", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.lang3.tuple", "Triple", True, "getRight", "", "", "Argument[-1].Field[org.apache.commons.lang3.tuple.MutableTriple.right]", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.lang3.tuple", "Triple", False, "of", "(java.lang.Object,java.lang.Object,java.lang.Object)", "", "Argument[0]", "ReturnValue.Field[org.apache.commons.lang3.tuple.ImmutableTriple.left]", "value", "manual"]
+      - ["org.apache.commons.lang3.tuple", "Triple", False, "of", "(java.lang.Object,java.lang.Object,java.lang.Object)", "", "Argument[1]", "ReturnValue.Field[org.apache.commons.lang3.tuple.ImmutableTriple.middle]", "value", "manual"]
+      - ["org.apache.commons.lang3.tuple", "Triple", False, "of", "(java.lang.Object,java.lang.Object,java.lang.Object)", "", "Argument[2]", "ReturnValue.Field[org.apache.commons.lang3.tuple.ImmutableTriple.right]", "value", "manual"]
diff --git a/java/ql/lib/ext/org.apache.commons.logging.model.yml b/java/ql/lib/ext/org.apache.commons.logging.model.yml
new file mode 100644
index 00000000000..252ebf9634a
--- /dev/null
+++ b/java/ql/lib/ext/org.apache.commons.logging.model.yml
@@ -0,0 +1,11 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSinkModel
+    data:
+      - ["org.apache.commons.logging", "Log", True, "debug", "", "", "Argument[0]", "logging", "manual"]
+      - ["org.apache.commons.logging", "Log", True, "error", "", "", "Argument[0]", "logging", "manual"]
+      - ["org.apache.commons.logging", "Log", True, "fatal", "", "", "Argument[0]", "logging", "manual"]
+      - ["org.apache.commons.logging", "Log", True, "info", "", "", "Argument[0]", "logging", "manual"]
+      - ["org.apache.commons.logging", "Log", True, "trace", "", "", "Argument[0]", "logging", "manual"]
+      - ["org.apache.commons.logging", "Log", True, "warn", "", "", "Argument[0]", "logging", "manual"]
diff --git a/java/ql/lib/ext/org.apache.commons.ognl.enhance.model.yml b/java/ql/lib/ext/org.apache.commons.ognl.enhance.model.yml
new file mode 100644
index 00000000000..8f3e1a5a966
--- /dev/null
+++ b/java/ql/lib/ext/org.apache.commons.ognl.enhance.model.yml
@@ -0,0 +1,7 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSinkModel
+    data:
+      - ["org.apache.commons.ognl.enhance", "ExpressionAccessor", True, "get", "", "", "Argument[-1]", "ognl-injection", "manual"]
+      - ["org.apache.commons.ognl.enhance", "ExpressionAccessor", True, "set", "", "", "Argument[-1]", "ognl-injection", "manual"]
diff --git a/java/ql/lib/ext/org.apache.commons.ognl.model.yml b/java/ql/lib/ext/org.apache.commons.ognl.model.yml
new file mode 100644
index 00000000000..4f7190d5342
--- /dev/null
+++ b/java/ql/lib/ext/org.apache.commons.ognl.model.yml
@@ -0,0 +1,9 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSinkModel
+    data:
+      - ["org.apache.commons.ognl", "Node", True, "getValue", "", "", "Argument[-1]", "ognl-injection", "manual"]
+      - ["org.apache.commons.ognl", "Node", True, "setValue", "", "", "Argument[-1]", "ognl-injection", "manual"]
+      - ["org.apache.commons.ognl", "Ognl", False, "getValue", "", "", "Argument[0]", "ognl-injection", "manual"]
+      - ["org.apache.commons.ognl", "Ognl", False, "setValue", "", "", "Argument[0]", "ognl-injection", "manual"]
diff --git a/java/ql/lib/ext/org.apache.commons.text.lookup.model.yml b/java/ql/lib/ext/org.apache.commons.text.lookup.model.yml
new file mode 100644
index 00000000000..9bea394d619
--- /dev/null
+++ b/java/ql/lib/ext/org.apache.commons.text.lookup.model.yml
@@ -0,0 +1,7 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSummaryModel
+    data:
+      - ["org.apache.commons.text.lookup", "StringLookup", True, "lookup", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.text.lookup", "StringLookupFactory", False, "mapStringLookup", "", "", "Argument[0].MapValue", "ReturnValue", "taint", "manual"]
diff --git a/java/ql/lib/ext/org.apache.commons.text.model.yml b/java/ql/lib/ext/org.apache.commons.text.model.yml
new file mode 100644
index 00000000000..8fd87c79147
--- /dev/null
+++ b/java/ql/lib/ext/org.apache.commons.text.model.yml
@@ -0,0 +1,275 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSummaryModel
+    data:
+      - ["org.apache.commons.text", "StrBuilder", False, "StrBuilder", "(java.lang.String)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.commons.text", "StrBuilder", False, "append", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.text", "StrBuilder", False, "append", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.text", "StrBuilder", False, "append", "(char[])", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.commons.text", "StrBuilder", False, "append", "(char[],int,int)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.commons.text", "StrBuilder", False, "append", "(java.lang.CharSequence)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.commons.text", "StrBuilder", False, "append", "(java.lang.CharSequence,int,int)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.commons.text", "StrBuilder", False, "append", "(java.lang.Object)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.commons.text", "StrBuilder", False, "append", "(java.lang.String)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.commons.text", "StrBuilder", False, "append", "(java.lang.String,int,int)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.commons.text", "StrBuilder", False, "append", "(java.lang.String,java.lang.Object[])", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.commons.text", "StrBuilder", False, "append", "(java.lang.String,java.lang.Object[])", "", "Argument[1].ArrayElement", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.commons.text", "StrBuilder", False, "append", "(java.lang.StringBuffer)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.commons.text", "StrBuilder", False, "append", "(java.lang.StringBuffer,int,int)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.commons.text", "StrBuilder", False, "append", "(java.lang.StringBuilder)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.commons.text", "StrBuilder", False, "append", "(java.lang.StringBuilder,int,int)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.commons.text", "StrBuilder", False, "append", "(java.nio.CharBuffer)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.commons.text", "StrBuilder", False, "append", "(java.nio.CharBuffer,int,int)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.commons.text", "StrBuilder", False, "append", "(org.apache.commons.text.StrBuilder)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.commons.text", "StrBuilder", False, "appendAll", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.text", "StrBuilder", False, "appendAll", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.text", "StrBuilder", False, "appendAll", "(Iterable)", "", "Argument[0].Element", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.commons.text", "StrBuilder", False, "appendAll", "(Iterator)", "", "Argument[0].Element", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.commons.text", "StrBuilder", False, "appendAll", "(Object[])", "", "Argument[0].ArrayElement", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.commons.text", "StrBuilder", False, "appendFixedWidthPadLeft", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.text", "StrBuilder", False, "appendFixedWidthPadLeft", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.text", "StrBuilder", False, "appendFixedWidthPadLeft", "", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.commons.text", "StrBuilder", False, "appendFixedWidthPadRight", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.text", "StrBuilder", False, "appendFixedWidthPadRight", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.text", "StrBuilder", False, "appendFixedWidthPadRight", "", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.commons.text", "StrBuilder", False, "appendNewLine", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.text", "StrBuilder", False, "appendNull", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.text", "StrBuilder", False, "appendPadding", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.text", "StrBuilder", False, "appendSeparator", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.text", "StrBuilder", False, "appendSeparator", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.text", "StrBuilder", False, "appendSeparator", "(java.lang.String)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.commons.text", "StrBuilder", False, "appendSeparator", "(java.lang.String,int)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.commons.text", "StrBuilder", False, "appendSeparator", "(java.lang.String,java.lang.String)", "", "Argument[0..1]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.commons.text", "StrBuilder", False, "appendTo", "", "", "Argument[-1]", "Argument[0]", "taint", "manual"]
+      - ["org.apache.commons.text", "StrBuilder", False, "appendWithSeparators", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.text", "StrBuilder", False, "appendWithSeparators", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.text", "StrBuilder", False, "appendWithSeparators", "", "", "Argument[1]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.commons.text", "StrBuilder", False, "appendWithSeparators", "(Iterable,String)", "", "Argument[0].Element", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.commons.text", "StrBuilder", False, "appendWithSeparators", "(Iterator,String)", "", "Argument[0].Element", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.commons.text", "StrBuilder", False, "appendWithSeparators", "(Object[],String)", "", "Argument[0].ArrayElement", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.commons.text", "StrBuilder", False, "appendln", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.text", "StrBuilder", False, "appendln", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.text", "StrBuilder", False, "appendln", "(char[])", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.commons.text", "StrBuilder", False, "appendln", "(char[],int,int)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.commons.text", "StrBuilder", False, "appendln", "(java.lang.Object)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.commons.text", "StrBuilder", False, "appendln", "(java.lang.String)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.commons.text", "StrBuilder", False, "appendln", "(java.lang.String,int,int)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.commons.text", "StrBuilder", False, "appendln", "(java.lang.String,java.lang.Object[])", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.commons.text", "StrBuilder", False, "appendln", "(java.lang.String,java.lang.Object[])", "", "Argument[1].ArrayElement", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.commons.text", "StrBuilder", False, "appendln", "(java.lang.StringBuffer)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.commons.text", "StrBuilder", False, "appendln", "(java.lang.StringBuffer,int,int)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.commons.text", "StrBuilder", False, "appendln", "(java.lang.StringBuilder)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.commons.text", "StrBuilder", False, "appendln", "(java.lang.StringBuilder,int,int)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.commons.text", "StrBuilder", False, "appendln", "(org.apache.commons.text.StrBuilder)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.commons.text", "StrBuilder", False, "asReader", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.text", "StrBuilder", False, "asTokenizer", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.text", "StrBuilder", False, "build", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.text", "StrBuilder", False, "delete", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.text", "StrBuilder", False, "deleteAll", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.text", "StrBuilder", False, "deleteCharAt", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.text", "StrBuilder", False, "deleteFirst", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.text", "StrBuilder", False, "ensureCapacity", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.text", "StrBuilder", False, "getChars", "(char[])", "", "Argument[-1]", "Argument[0]", "taint", "manual"]
+      - ["org.apache.commons.text", "StrBuilder", False, "getChars", "(char[])", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.text", "StrBuilder", False, "getChars", "(int,int,char[],int)", "", "Argument[-1]", "Argument[2]", "taint", "manual"]
+      - ["org.apache.commons.text", "StrBuilder", False, "insert", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.text", "StrBuilder", False, "insert", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.text", "StrBuilder", False, "insert", "", "", "Argument[1]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.commons.text", "StrBuilder", False, "leftString", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.text", "StrBuilder", False, "midString", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.text", "StrBuilder", False, "minimizeCapacity", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.text", "StrBuilder", False, "readFrom", "", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.commons.text", "StrBuilder", False, "replace", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.text", "StrBuilder", False, "replace", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.text", "StrBuilder", False, "replace", "(int,int,java.lang.String)", "", "Argument[2]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.commons.text", "StrBuilder", False, "replace", "(org.apache.commons.text.StrMatcher,java.lang.String,int,int,int)", "", "Argument[1]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.commons.text", "StrBuilder", False, "replaceAll", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.text", "StrBuilder", False, "replaceAll", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.text", "StrBuilder", False, "replaceAll", "", "", "Argument[1]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.commons.text", "StrBuilder", False, "replaceFirst", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.text", "StrBuilder", False, "replaceFirst", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.text", "StrBuilder", False, "replaceFirst", "", "", "Argument[1]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.commons.text", "StrBuilder", False, "reverse", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.text", "StrBuilder", False, "rightString", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.text", "StrBuilder", False, "setCharAt", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.text", "StrBuilder", False, "setLength", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.text", "StrBuilder", False, "setNewLineText", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.text", "StrBuilder", False, "setNullText", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.text", "StrBuilder", False, "subSequence", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.text", "StrBuilder", False, "substring", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.text", "StrBuilder", False, "toCharArray", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.text", "StrBuilder", False, "toString", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.text", "StrBuilder", False, "toStringBuffer", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.text", "StrBuilder", False, "toStringBuilder", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.text", "StrBuilder", False, "trim", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.text", "StrTokenizer", False, "StrTokenizer", "", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.commons.text", "StrTokenizer", False, "clone", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.text", "StrTokenizer", False, "getCSVInstance", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.text", "StrTokenizer", False, "getContent", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.text", "StrTokenizer", False, "getTSVInstance", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.text", "StrTokenizer", False, "getTokenArray", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.text", "StrTokenizer", False, "getTokenList", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.text", "StrTokenizer", False, "next", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.text", "StrTokenizer", False, "nextToken", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.text", "StrTokenizer", False, "previous", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.text", "StrTokenizer", False, "previousToken", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.text", "StrTokenizer", False, "reset", "", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.commons.text", "StrTokenizer", False, "reset", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.text", "StrTokenizer", False, "toString", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.text", "StringSubstitutor", False, "StringSubstitutor", "", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.commons.text", "StringSubstitutor", False, "StringSubstitutor", "", "", "Argument[0].MapValue", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.commons.text", "StringSubstitutor", False, "replace", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.text", "StringSubstitutor", False, "replace", "(char[])", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.text", "StringSubstitutor", False, "replace", "(char[],int,int)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.text", "StringSubstitutor", False, "replace", "(java.lang.CharSequence)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.text", "StringSubstitutor", False, "replace", "(java.lang.CharSequence,int,int)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.text", "StringSubstitutor", False, "replace", "(java.lang.Object)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.text", "StringSubstitutor", False, "replace", "(java.lang.Object,java.util.Map)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.text", "StringSubstitutor", False, "replace", "(java.lang.Object,java.util.Map)", "", "Argument[1].MapValue", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.text", "StringSubstitutor", False, "replace", "(java.lang.Object,java.util.Map,java.lang.String,java.lang.String)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.text", "StringSubstitutor", False, "replace", "(java.lang.Object,java.util.Map,java.lang.String,java.lang.String)", "", "Argument[1].MapValue", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.text", "StringSubstitutor", False, "replace", "(java.lang.Object,java.util.Properties)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.text", "StringSubstitutor", False, "replace", "(java.lang.Object,java.util.Properties)", "", "Argument[1].MapValue", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.text", "StringSubstitutor", False, "replace", "(java.lang.String)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.text", "StringSubstitutor", False, "replace", "(java.lang.String,int,int)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.text", "StringSubstitutor", False, "replace", "(java.lang.StringBuffer)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.text", "StringSubstitutor", False, "replace", "(java.lang.StringBuffer,int,int)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.text", "StringSubstitutor", False, "replace", "(org.apache.commons.text.TextStringBuilder)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.text", "StringSubstitutor", False, "replace", "(org.apache.commons.text.TextStringBuilder,int,int)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.text", "StringSubstitutor", False, "replaceIn", "(java.lang.StringBuffer)", "", "Argument[-1]", "Argument[0]", "taint", "manual"]
+      - ["org.apache.commons.text", "StringSubstitutor", False, "replaceIn", "(java.lang.StringBuffer,int,int)", "", "Argument[-1]", "Argument[0]", "taint", "manual"]
+      - ["org.apache.commons.text", "StringSubstitutor", False, "replaceIn", "(java.lang.StringBuilder)", "", "Argument[-1]", "Argument[0]", "taint", "manual"]
+      - ["org.apache.commons.text", "StringSubstitutor", False, "replaceIn", "(java.lang.StringBuilder,int,int)", "", "Argument[-1]", "Argument[0]", "taint", "manual"]
+      - ["org.apache.commons.text", "StringSubstitutor", False, "replaceIn", "(org.apache.commons.text.TextStringBuilder)", "", "Argument[-1]", "Argument[0]", "taint", "manual"]
+      - ["org.apache.commons.text", "StringSubstitutor", False, "replaceIn", "(org.apache.commons.text.TextStringBuilder,int,int)", "", "Argument[-1]", "Argument[0]", "taint", "manual"]
+      - ["org.apache.commons.text", "StringSubstitutor", False, "setVariableResolver", "", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.commons.text", "StringTokenizer", False, "StringTokenizer", "", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.commons.text", "StringTokenizer", False, "clone", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.text", "StringTokenizer", False, "getCSVInstance", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.text", "StringTokenizer", False, "getContent", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.text", "StringTokenizer", False, "getTSVInstance", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.text", "StringTokenizer", False, "getTokenArray", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.text", "StringTokenizer", False, "getTokenList", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.text", "StringTokenizer", False, "next", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.text", "StringTokenizer", False, "nextToken", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.text", "StringTokenizer", False, "previous", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.text", "StringTokenizer", False, "previousToken", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.text", "StringTokenizer", False, "reset", "", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.commons.text", "StringTokenizer", False, "reset", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.text", "StringTokenizer", False, "toString", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.text", "TextStringBuilder", False, "TextStringBuilder", "(java.lang.CharSequence)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.commons.text", "TextStringBuilder", False, "TextStringBuilder", "(java.lang.String)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.commons.text", "TextStringBuilder", False, "append", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.text", "TextStringBuilder", False, "append", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.text", "TextStringBuilder", False, "append", "(char[])", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.commons.text", "TextStringBuilder", False, "append", "(char[],int,int)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.commons.text", "TextStringBuilder", False, "append", "(java.lang.CharSequence)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.commons.text", "TextStringBuilder", False, "append", "(java.lang.CharSequence,int,int)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.commons.text", "TextStringBuilder", False, "append", "(java.lang.Object)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.commons.text", "TextStringBuilder", False, "append", "(java.lang.String)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.commons.text", "TextStringBuilder", False, "append", "(java.lang.String,int,int)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.commons.text", "TextStringBuilder", False, "append", "(java.lang.String,java.lang.Object[])", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.commons.text", "TextStringBuilder", False, "append", "(java.lang.String,java.lang.Object[])", "", "Argument[1].ArrayElement", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.commons.text", "TextStringBuilder", False, "append", "(java.lang.StringBuffer)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.commons.text", "TextStringBuilder", False, "append", "(java.lang.StringBuffer,int,int)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.commons.text", "TextStringBuilder", False, "append", "(java.lang.StringBuilder)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.commons.text", "TextStringBuilder", False, "append", "(java.lang.StringBuilder,int,int)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.commons.text", "TextStringBuilder", False, "append", "(java.nio.CharBuffer)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.commons.text", "TextStringBuilder", False, "append", "(java.nio.CharBuffer,int,int)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.commons.text", "TextStringBuilder", False, "append", "(org.apache.commons.text.TextStringBuilder)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.commons.text", "TextStringBuilder", False, "appendAll", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.text", "TextStringBuilder", False, "appendAll", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.text", "TextStringBuilder", False, "appendAll", "(Iterable)", "", "Argument[0].Element", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.commons.text", "TextStringBuilder", False, "appendAll", "(Iterator)", "", "Argument[0].Element", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.commons.text", "TextStringBuilder", False, "appendAll", "(Object[])", "", "Argument[0].ArrayElement", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.commons.text", "TextStringBuilder", False, "appendFixedWidthPadLeft", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.text", "TextStringBuilder", False, "appendFixedWidthPadLeft", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.text", "TextStringBuilder", False, "appendFixedWidthPadLeft", "", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.commons.text", "TextStringBuilder", False, "appendFixedWidthPadRight", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.text", "TextStringBuilder", False, "appendFixedWidthPadRight", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.text", "TextStringBuilder", False, "appendFixedWidthPadRight", "", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.commons.text", "TextStringBuilder", False, "appendNewLine", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.text", "TextStringBuilder", False, "appendNull", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.text", "TextStringBuilder", False, "appendPadding", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.text", "TextStringBuilder", False, "appendSeparator", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.text", "TextStringBuilder", False, "appendSeparator", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.text", "TextStringBuilder", False, "appendSeparator", "(java.lang.String)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.commons.text", "TextStringBuilder", False, "appendSeparator", "(java.lang.String,int)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.commons.text", "TextStringBuilder", False, "appendSeparator", "(java.lang.String,java.lang.String)", "", "Argument[0..1]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.commons.text", "TextStringBuilder", False, "appendTo", "", "", "Argument[-1]", "Argument[0]", "taint", "manual"]
+      - ["org.apache.commons.text", "TextStringBuilder", False, "appendWithSeparators", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.text", "TextStringBuilder", False, "appendWithSeparators", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.text", "TextStringBuilder", False, "appendWithSeparators", "", "", "Argument[1]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.commons.text", "TextStringBuilder", False, "appendWithSeparators", "(Iterable,String)", "", "Argument[0].Element", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.commons.text", "TextStringBuilder", False, "appendWithSeparators", "(Iterator,String)", "", "Argument[0].Element", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.commons.text", "TextStringBuilder", False, "appendWithSeparators", "(Object[],String)", "", "Argument[0].ArrayElement", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.commons.text", "TextStringBuilder", False, "appendln", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.text", "TextStringBuilder", False, "appendln", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.text", "TextStringBuilder", False, "appendln", "(char[])", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.commons.text", "TextStringBuilder", False, "appendln", "(char[],int,int)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.commons.text", "TextStringBuilder", False, "appendln", "(java.lang.Object)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.commons.text", "TextStringBuilder", False, "appendln", "(java.lang.String)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.commons.text", "TextStringBuilder", False, "appendln", "(java.lang.String,int,int)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.commons.text", "TextStringBuilder", False, "appendln", "(java.lang.String,java.lang.Object[])", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.commons.text", "TextStringBuilder", False, "appendln", "(java.lang.String,java.lang.Object[])", "", "Argument[1].ArrayElement", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.commons.text", "TextStringBuilder", False, "appendln", "(java.lang.StringBuffer)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.commons.text", "TextStringBuilder", False, "appendln", "(java.lang.StringBuffer,int,int)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.commons.text", "TextStringBuilder", False, "appendln", "(java.lang.StringBuilder)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.commons.text", "TextStringBuilder", False, "appendln", "(java.lang.StringBuilder,int,int)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.commons.text", "TextStringBuilder", False, "appendln", "(org.apache.commons.text.TextStringBuilder)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.commons.text", "TextStringBuilder", False, "asReader", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.text", "TextStringBuilder", False, "asTokenizer", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.text", "TextStringBuilder", False, "build", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.text", "TextStringBuilder", False, "delete", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.text", "TextStringBuilder", False, "deleteAll", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.text", "TextStringBuilder", False, "deleteCharAt", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.text", "TextStringBuilder", False, "deleteFirst", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.text", "TextStringBuilder", False, "ensureCapacity", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.text", "TextStringBuilder", False, "getChars", "(char[])", "", "Argument[-1]", "Argument[0]", "taint", "manual"]
+      - ["org.apache.commons.text", "TextStringBuilder", False, "getChars", "(char[])", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.text", "TextStringBuilder", False, "getChars", "(int,int,char[],int)", "", "Argument[-1]", "Argument[2]", "taint", "manual"]
+      - ["org.apache.commons.text", "TextStringBuilder", False, "insert", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.text", "TextStringBuilder", False, "insert", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.text", "TextStringBuilder", False, "insert", "", "", "Argument[1]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.commons.text", "TextStringBuilder", False, "leftString", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.text", "TextStringBuilder", False, "midString", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.text", "TextStringBuilder", False, "minimizeCapacity", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.text", "TextStringBuilder", False, "readFrom", "", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.commons.text", "TextStringBuilder", False, "replace", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.text", "TextStringBuilder", False, "replace", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.text", "TextStringBuilder", False, "replace", "(int,int,java.lang.String)", "", "Argument[2]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.commons.text", "TextStringBuilder", False, "replace", "(org.apache.commons.text.matcher.StringMatcher,java.lang.String,int,int,int)", "", "Argument[1]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.commons.text", "TextStringBuilder", False, "replaceAll", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.text", "TextStringBuilder", False, "replaceAll", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.text", "TextStringBuilder", False, "replaceAll", "", "", "Argument[1]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.commons.text", "TextStringBuilder", False, "replaceFirst", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.text", "TextStringBuilder", False, "replaceFirst", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.text", "TextStringBuilder", False, "replaceFirst", "", "", "Argument[1]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.commons.text", "TextStringBuilder", False, "reverse", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.text", "TextStringBuilder", False, "rightString", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.text", "TextStringBuilder", False, "setCharAt", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.text", "TextStringBuilder", False, "setLength", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.text", "TextStringBuilder", False, "setNewLineText", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.text", "TextStringBuilder", False, "setNullText", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.text", "TextStringBuilder", False, "subSequence", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.text", "TextStringBuilder", False, "substring", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.text", "TextStringBuilder", False, "toCharArray", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.text", "TextStringBuilder", False, "toString", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.text", "TextStringBuilder", False, "toStringBuffer", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.text", "TextStringBuilder", False, "toStringBuilder", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.text", "TextStringBuilder", False, "trim", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["org.apache.commons.text", "WordUtils", False, "abbreviate", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.text", "WordUtils", False, "abbreviate", "", "", "Argument[3]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.text", "WordUtils", False, "capitalize", "(java.lang.String)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.text", "WordUtils", False, "capitalize", "(java.lang.String,char[])", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.text", "WordUtils", False, "capitalizeFully", "(java.lang.String)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.text", "WordUtils", False, "capitalizeFully", "(java.lang.String,char[])", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.text", "WordUtils", False, "initials", "(java.lang.String)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.text", "WordUtils", False, "initials", "(java.lang.String,char[])", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.text", "WordUtils", False, "swapCase", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.text", "WordUtils", False, "uncapitalize", "(java.lang.String)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.text", "WordUtils", False, "uncapitalize", "(java.lang.String,char[])", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.text", "WordUtils", False, "wrap", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.text", "WordUtils", False, "wrap", "(java.lang.String,int,java.lang.String,boolean)", "", "Argument[2]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.commons.text", "WordUtils", False, "wrap", "(java.lang.String,int,java.lang.String,boolean,java.lang.String)", "", "Argument[2]", "ReturnValue", "taint", "manual"]
diff --git a/java/ql/lib/ext/org.apache.directory.ldap.client.api.model.yml b/java/ql/lib/ext/org.apache.directory.ldap.client.api.model.yml
new file mode 100644
index 00000000000..5eb28c7c073
--- /dev/null
+++ b/java/ql/lib/ext/org.apache.directory.ldap.client.api.model.yml
@@ -0,0 +1,6 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSinkModel
+    data:
+      - ["org.apache.directory.ldap.client.api", "LdapConnection", True, "search", "", "", "Argument[0..2]", "ldap", "manual"]
diff --git a/java/ql/lib/ext/org.apache.hc.core5.function.model.yml b/java/ql/lib/ext/org.apache.hc.core5.function.model.yml
new file mode 100644
index 00000000000..f001872f720
--- /dev/null
+++ b/java/ql/lib/ext/org.apache.hc.core5.function.model.yml
@@ -0,0 +1,6 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSummaryModel
+    data:
+      - ["org.apache.hc.core5.function", "Supplier", True, "get", "()", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
diff --git a/java/ql/lib/ext/org.apache.hc.core5.http.io.entity.model.yml b/java/ql/lib/ext/org.apache.hc.core5.http.io.entity.model.yml
new file mode 100644
index 00000000000..14ce196044f
--- /dev/null
+++ b/java/ql/lib/ext/org.apache.hc.core5.http.io.entity.model.yml
@@ -0,0 +1,19 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSummaryModel
+    data:
+      - ["org.apache.hc.core5.http.io.entity", "BasicHttpEntity", True, "BasicHttpEntity", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.hc.core5.http.io.entity", "BufferedHttpEntity", True, "BufferedHttpEntity", "(HttpEntity)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.hc.core5.http.io.entity", "ByteArrayEntity", True, "ByteArrayEntity", "", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.hc.core5.http.io.entity", "EntityUtils", True, "parse", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.hc.core5.http.io.entity", "EntityUtils", True, "toByteArray", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.hc.core5.http.io.entity", "EntityUtils", True, "toString", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.hc.core5.http.io.entity", "HttpEntities", True, "create", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.hc.core5.http.io.entity", "HttpEntities", True, "createGzipped", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.hc.core5.http.io.entity", "HttpEntities", True, "createUrlEncoded", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.hc.core5.http.io.entity", "HttpEntities", True, "gzip", "(HttpEntity)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.hc.core5.http.io.entity", "HttpEntities", True, "withTrailers", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.hc.core5.http.io.entity", "HttpEntityWrapper", True, "HttpEntityWrapper", "(HttpEntity)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.hc.core5.http.io.entity", "InputStreamEntity", True, "InputStreamEntity", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.hc.core5.http.io.entity", "StringEntity", True, "StringEntity", "", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
diff --git a/java/ql/lib/ext/org.apache.hc.core5.http.io.model.yml b/java/ql/lib/ext/org.apache.hc.core5.http.io.model.yml
new file mode 100644
index 00000000000..9fdf2b1fd2e
--- /dev/null
+++ b/java/ql/lib/ext/org.apache.hc.core5.http.io.model.yml
@@ -0,0 +1,7 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSourceModel
+    data:
+      - ["org.apache.hc.core5.http.io", "HttpRequestHandler", True, "handle", "(ClassicHttpRequest,ClassicHttpResponse,HttpContext)", "", "Parameter[0]", "remote", "manual"]
+      - ["org.apache.hc.core5.http.io", "HttpServerRequestHandler", True, "handle", "(ClassicHttpRequest,ResponseTrigger,HttpContext)", "", "Parameter[0]", "remote", "manual"]
diff --git a/java/ql/lib/ext/org.apache.hc.core5.http.message.model.yml b/java/ql/lib/ext/org.apache.hc.core5.http.message.model.yml
new file mode 100644
index 00000000000..9d982e54178
--- /dev/null
+++ b/java/ql/lib/ext/org.apache.hc.core5.http.message.model.yml
@@ -0,0 +1,10 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSummaryModel
+    data:
+      - ["org.apache.hc.core5.http.message", "RequestLine", True, "RequestLine", "(HttpRequest)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.hc.core5.http.message", "RequestLine", True, "RequestLine", "(String,String,ProtocolVersion)", "", "Argument[1]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.hc.core5.http.message", "RequestLine", True, "getMethod", "()", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.hc.core5.http.message", "RequestLine", True, "getUri", "()", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.hc.core5.http.message", "RequestLine", True, "toString", "()", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
diff --git a/java/ql/lib/ext/org.apache.hc.core5.http.model.yml b/java/ql/lib/ext/org.apache.hc.core5.http.model.yml
new file mode 100644
index 00000000000..220728fadca
--- /dev/null
+++ b/java/ql/lib/ext/org.apache.hc.core5.http.model.yml
@@ -0,0 +1,30 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSinkModel
+    data:
+      - ["org.apache.hc.core5.http", "HttpEntityContainer", True, "setEntity", "(HttpEntity)", "", "Argument[0]", "xss", "manual"]
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSummaryModel
+    data:
+      - ["org.apache.hc.core5.http", "EntityDetails", True, "getContentEncoding", "()", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.hc.core5.http", "EntityDetails", True, "getContentType", "()", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.hc.core5.http", "EntityDetails", True, "getTrailerNames", "()", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.hc.core5.http", "HttpEntity", True, "getContent", "()", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.hc.core5.http", "HttpEntity", True, "getTrailers", "()", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.hc.core5.http", "HttpEntityContainer", True, "getEntity", "()", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.hc.core5.http", "HttpRequest", True, "getAuthority", "()", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.hc.core5.http", "HttpRequest", True, "getMethod", "()", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.hc.core5.http", "HttpRequest", True, "getPath", "()", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.hc.core5.http", "HttpRequest", True, "getRequestUri", "()", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.hc.core5.http", "HttpRequest", True, "getUri", "()", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.hc.core5.http", "MessageHeaders", True, "getFirstHeader", "(String)", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.hc.core5.http", "MessageHeaders", True, "getHeader", "(String)", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.hc.core5.http", "MessageHeaders", True, "getHeaders", "()", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.hc.core5.http", "MessageHeaders", True, "getHeaders", "(String)", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.hc.core5.http", "MessageHeaders", True, "getLastHeader", "(String)", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.hc.core5.http", "MessageHeaders", True, "headerIterator", "()", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.hc.core5.http", "MessageHeaders", True, "headerIterator", "(String)", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.hc.core5.http", "NameValuePair", True, "getName", "()", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.hc.core5.http", "NameValuePair", True, "getValue", "()", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
diff --git a/java/ql/lib/ext/org.apache.hc.core5.net.model.yml b/java/ql/lib/ext/org.apache.hc.core5.net.model.yml
new file mode 100644
index 00000000000..19213c0764f
--- /dev/null
+++ b/java/ql/lib/ext/org.apache.hc.core5.net.model.yml
@@ -0,0 +1,7 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSummaryModel
+    data:
+      - ["org.apache.hc.core5.net", "URIAuthority", True, "getHostName", "()", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.hc.core5.net", "URIAuthority", True, "toString", "()", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
diff --git a/java/ql/lib/ext/org.apache.hc.core5.util.model.yml b/java/ql/lib/ext/org.apache.hc.core5.util.model.yml
new file mode 100644
index 00000000000..ae9af22ac77
--- /dev/null
+++ b/java/ql/lib/ext/org.apache.hc.core5.util.model.yml
@@ -0,0 +1,29 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSummaryModel
+    data:
+      - ["org.apache.hc.core5.util", "Args", True, "containsNoBlanks", "(CharSequence,String)", "", "Argument[0]", "ReturnValue", "value", "manual"]
+      - ["org.apache.hc.core5.util", "Args", True, "notBlank", "(CharSequence,String)", "", "Argument[0]", "ReturnValue", "value", "manual"]
+      - ["org.apache.hc.core5.util", "Args", True, "notEmpty", "(CharSequence,String)", "", "Argument[0]", "ReturnValue", "value", "manual"]
+      - ["org.apache.hc.core5.util", "Args", True, "notEmpty", "(Collection,String)", "", "Argument[0]", "ReturnValue", "value", "manual"]
+      - ["org.apache.hc.core5.util", "Args", True, "notEmpty", "(Object,String)", "", "Argument[0]", "ReturnValue", "value", "manual"]
+      - ["org.apache.hc.core5.util", "Args", True, "notNull", "(Object,String)", "", "Argument[0]", "ReturnValue", "value", "manual"]
+      - ["org.apache.hc.core5.util", "ByteArrayBuffer", True, "append", "(CharArrayBuffer,int,int)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.hc.core5.util", "ByteArrayBuffer", True, "append", "(byte[],int,int)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.hc.core5.util", "ByteArrayBuffer", True, "append", "(char[],int,int)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.hc.core5.util", "ByteArrayBuffer", True, "array", "()", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.hc.core5.util", "ByteArrayBuffer", True, "toByteArray", "()", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.hc.core5.util", "CharArrayBuffer", True, "append", "(ByteArrayBuffer,int,int)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.hc.core5.util", "CharArrayBuffer", True, "append", "(CharArrayBuffer)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.hc.core5.util", "CharArrayBuffer", True, "append", "(CharArrayBuffer,int,int)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.hc.core5.util", "CharArrayBuffer", True, "append", "(Object)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.hc.core5.util", "CharArrayBuffer", True, "append", "(String)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.hc.core5.util", "CharArrayBuffer", True, "append", "(byte[],int,int)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.hc.core5.util", "CharArrayBuffer", True, "append", "(char[],int,int)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.hc.core5.util", "CharArrayBuffer", True, "array", "()", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.hc.core5.util", "CharArrayBuffer", True, "subSequence", "(int,int)", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.hc.core5.util", "CharArrayBuffer", True, "substring", "(int,int)", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.hc.core5.util", "CharArrayBuffer", True, "substringTrimmed", "(int,int)", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.hc.core5.util", "CharArrayBuffer", True, "toCharArray", "()", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.hc.core5.util", "CharArrayBuffer", True, "toString", "()", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
diff --git a/java/ql/lib/ext/org.apache.http.client.methods.model.yml b/java/ql/lib/ext/org.apache.http.client.methods.model.yml
new file mode 100644
index 00000000000..99b0a4968cf
--- /dev/null
+++ b/java/ql/lib/ext/org.apache.http.client.methods.model.yml
@@ -0,0 +1,23 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSinkModel
+    data:
+      - ["org.apache.http.client.methods", "HttpDelete", False, "HttpDelete", "", "", "Argument[0]", "open-url", "manual"]
+      - ["org.apache.http.client.methods", "HttpGet", False, "HttpGet", "", "", "Argument[0]", "open-url", "manual"]
+      - ["org.apache.http.client.methods", "HttpHead", False, "HttpHead", "", "", "Argument[0]", "open-url", "manual"]
+      - ["org.apache.http.client.methods", "HttpOptions", False, "HttpOptions", "", "", "Argument[0]", "open-url", "manual"]
+      - ["org.apache.http.client.methods", "HttpPatch", False, "HttpPatch", "", "", "Argument[0]", "open-url", "manual"]
+      - ["org.apache.http.client.methods", "HttpPost", False, "HttpPost", "", "", "Argument[0]", "open-url", "manual"]
+      - ["org.apache.http.client.methods", "HttpPut", False, "HttpPut", "", "", "Argument[0]", "open-url", "manual"]
+      - ["org.apache.http.client.methods", "HttpRequestBase", True, "setURI", "", "", "Argument[0]", "open-url", "manual"]
+      - ["org.apache.http.client.methods", "HttpTrace", False, "HttpTrace", "", "", "Argument[0]", "open-url", "manual"]
+      - ["org.apache.http.client.methods", "RequestBuilder", False, "delete", "", "", "Argument[0]", "open-url", "manual"]
+      - ["org.apache.http.client.methods", "RequestBuilder", False, "get", "", "", "Argument[0]", "open-url", "manual"]
+      - ["org.apache.http.client.methods", "RequestBuilder", False, "head", "", "", "Argument[0]", "open-url", "manual"]
+      - ["org.apache.http.client.methods", "RequestBuilder", False, "options", "", "", "Argument[0]", "open-url", "manual"]
+      - ["org.apache.http.client.methods", "RequestBuilder", False, "patch", "", "", "Argument[0]", "open-url", "manual"]
+      - ["org.apache.http.client.methods", "RequestBuilder", False, "post", "", "", "Argument[0]", "open-url", "manual"]
+      - ["org.apache.http.client.methods", "RequestBuilder", False, "put", "", "", "Argument[0]", "open-url", "manual"]
+      - ["org.apache.http.client.methods", "RequestBuilder", False, "setUri", "", "", "Argument[0]", "open-url", "manual"]
+      - ["org.apache.http.client.methods", "RequestBuilder", False, "trace", "", "", "Argument[0]", "open-url", "manual"]
diff --git a/java/ql/lib/ext/org.apache.http.entity.model.yml b/java/ql/lib/ext/org.apache.http.entity.model.yml
new file mode 100644
index 00000000000..2e299bff5d4
--- /dev/null
+++ b/java/ql/lib/ext/org.apache.http.entity.model.yml
@@ -0,0 +1,11 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSummaryModel
+    data:
+      - ["org.apache.http.entity", "BasicHttpEntity", True, "setContent", "(InputStream)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.http.entity", "BufferedHttpEntity", True, "BufferedHttpEntity", "(HttpEntity)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.http.entity", "ByteArrayEntity", True, "ByteArrayEntity", "", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.http.entity", "HttpEntityWrapper", True, "HttpEntityWrapper", "(HttpEntity)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.http.entity", "InputStreamEntity", True, "InputStreamEntity", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.http.entity", "StringEntity", True, "StringEntity", "", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
diff --git a/java/ql/lib/ext/org.apache.http.message.model.yml b/java/ql/lib/ext/org.apache.http.message.model.yml
new file mode 100644
index 00000000000..b1caf80721b
--- /dev/null
+++ b/java/ql/lib/ext/org.apache.http.message.model.yml
@@ -0,0 +1,16 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSinkModel
+    data:
+      - ["org.apache.http.message", "BasicHttpEntityEnclosingRequest", False, "BasicHttpEntityEnclosingRequest", "(RequestLine)", "", "Argument[0]", "open-url", "manual"]
+      - ["org.apache.http.message", "BasicHttpEntityEnclosingRequest", False, "BasicHttpEntityEnclosingRequest", "(String,String)", "", "Argument[1]", "open-url", "manual"]
+      - ["org.apache.http.message", "BasicHttpEntityEnclosingRequest", False, "BasicHttpEntityEnclosingRequest", "(String,String,ProtocolVersion)", "", "Argument[1]", "open-url", "manual"]
+      - ["org.apache.http.message", "BasicHttpRequest", False, "BasicHttpRequest", "(RequestLine)", "", "Argument[0]", "open-url", "manual"]
+      - ["org.apache.http.message", "BasicHttpRequest", False, "BasicHttpRequest", "(String,String)", "", "Argument[1]", "open-url", "manual"]
+      - ["org.apache.http.message", "BasicHttpRequest", False, "BasicHttpRequest", "(String,String,ProtocolVersion)", "", "Argument[1]", "open-url", "manual"]
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSummaryModel
+    data:
+      - ["org.apache.http.message", "BasicRequestLine", False, "BasicRequestLine", "", "", "Argument[1]", "Argument[-1]", "taint", "manual"]
diff --git a/java/ql/lib/ext/org.apache.http.model.yml b/java/ql/lib/ext/org.apache.http.model.yml
new file mode 100644
index 00000000000..76de35242b7
--- /dev/null
+++ b/java/ql/lib/ext/org.apache.http.model.yml
@@ -0,0 +1,42 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSourceModel
+    data:
+      - ["org.apache.http", "HttpEntity", False, "getContent", "()", "", "ReturnValue", "remote", "manual"]
+      - ["org.apache.http", "HttpMessage", False, "getParams", "()", "", "ReturnValue", "remote", "manual"]
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSinkModel
+    data:
+      - ["org.apache.http", "HttpRequest", True, "setURI", "", "", "Argument[0]", "open-url", "manual"]
+      - ["org.apache.http", "HttpResponse", True, "setEntity", "(HttpEntity)", "", "Argument[0]", "xss", "manual"]
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSummaryModel
+    data:
+      - ["org.apache.http", "Header", True, "getElements", "()", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.http", "HeaderElement", True, "getName", "()", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.http", "HeaderElement", True, "getParameter", "(int)", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.http", "HeaderElement", True, "getParameterByName", "(String)", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.http", "HeaderElement", True, "getParameters", "()", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.http", "HeaderElement", True, "getValue", "()", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.http", "HeaderIterator", True, "nextHeader", "()", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.http", "HttpEntity", True, "getContent", "()", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.http", "HttpEntity", True, "getContentEncoding", "()", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.http", "HttpEntity", True, "getContentType", "()", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.http", "HttpEntityEnclosingRequest", True, "getEntity", "()", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.http", "HttpMessage", True, "getAllHeaders", "()", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.http", "HttpMessage", True, "getFirstHeader", "(String)", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.http", "HttpMessage", True, "getHeaders", "(String)", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.http", "HttpMessage", True, "getLastHeader", "(String)", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.http", "HttpMessage", True, "getParams", "()", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.http", "HttpMessage", True, "headerIterator", "()", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.http", "HttpMessage", True, "headerIterator", "(String)", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.http", "HttpRequest", True, "getRequestLine", "()", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.http", "NameValuePair", True, "getName", "()", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.http", "NameValuePair", True, "getValue", "()", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.http", "RequestLine", True, "getMethod", "()", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.http", "RequestLine", True, "getUri", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.http", "RequestLine", True, "getUri", "()", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.http", "RequestLine", True, "toString", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
diff --git a/java/ql/lib/ext/org.apache.http.params.model.yml b/java/ql/lib/ext/org.apache.http.params.model.yml
new file mode 100644
index 00000000000..0f9facaede8
--- /dev/null
+++ b/java/ql/lib/ext/org.apache.http.params.model.yml
@@ -0,0 +1,12 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSummaryModel
+    data:
+      - ["org.apache.http.params", "HttpParams", True, "getDoubleParameter", "(String,double)", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.http.params", "HttpParams", True, "getDoubleParameter", "(String,double)", "", "Argument[1]", "ReturnValue", "value", "manual"]
+      - ["org.apache.http.params", "HttpParams", True, "getIntParameter", "(String,int)", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.http.params", "HttpParams", True, "getIntParameter", "(String,int)", "", "Argument[1]", "ReturnValue", "value", "manual"]
+      - ["org.apache.http.params", "HttpParams", True, "getLongParameter", "(String,long)", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.http.params", "HttpParams", True, "getLongParameter", "(String,long)", "", "Argument[1]", "ReturnValue", "value", "manual"]
+      - ["org.apache.http.params", "HttpParams", True, "getParameter", "(String)", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
diff --git a/java/ql/lib/ext/org.apache.http.protocol.model.yml b/java/ql/lib/ext/org.apache.http.protocol.model.yml
new file mode 100644
index 00000000000..fb99d7f6aa1
--- /dev/null
+++ b/java/ql/lib/ext/org.apache.http.protocol.model.yml
@@ -0,0 +1,6 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSourceModel
+    data:
+      - ["org.apache.http.protocol", "HttpRequestHandler", True, "handle", "(HttpRequest,HttpResponse,HttpContext)", "", "Parameter[0]", "remote", "manual"]
diff --git a/java/ql/lib/ext/org.apache.http.util.model.yml b/java/ql/lib/ext/org.apache.http.util.model.yml
new file mode 100644
index 00000000000..e95178e8281
--- /dev/null
+++ b/java/ql/lib/ext/org.apache.http.util.model.yml
@@ -0,0 +1,41 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSinkModel
+    data:
+      - ["org.apache.http.util", "EntityUtils", True, "updateEntity", "(HttpResponse,HttpEntity)", "", "Argument[1]", "xss", "manual"]
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSummaryModel
+    data:
+      - ["org.apache.http.util", "Args", True, "containsNoBlanks", "(CharSequence,String)", "", "Argument[0]", "ReturnValue", "value", "manual"]
+      - ["org.apache.http.util", "Args", True, "notBlank", "(CharSequence,String)", "", "Argument[0]", "ReturnValue", "value", "manual"]
+      - ["org.apache.http.util", "Args", True, "notEmpty", "(CharSequence,String)", "", "Argument[0]", "ReturnValue", "value", "manual"]
+      - ["org.apache.http.util", "Args", True, "notEmpty", "(Collection,String)", "", "Argument[0]", "ReturnValue", "value", "manual"]
+      - ["org.apache.http.util", "Args", True, "notNull", "(Object,String)", "", "Argument[0]", "ReturnValue", "value", "manual"]
+      - ["org.apache.http.util", "ByteArrayBuffer", True, "append", "(CharArrayBuffer,int,int)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.http.util", "ByteArrayBuffer", True, "append", "(byte[],int,int)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.http.util", "ByteArrayBuffer", True, "append", "(char[],int,int)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.http.util", "ByteArrayBuffer", True, "buffer", "()", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.http.util", "ByteArrayBuffer", True, "toByteArray", "()", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.http.util", "CharArrayBuffer", True, "append", "(ByteArrayBuffer,int,int)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.http.util", "CharArrayBuffer", True, "append", "(CharArrayBuffer)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.http.util", "CharArrayBuffer", True, "append", "(CharArrayBuffer,int,int)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.http.util", "CharArrayBuffer", True, "append", "(Object)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.http.util", "CharArrayBuffer", True, "append", "(String)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.http.util", "CharArrayBuffer", True, "append", "(byte[],int,int)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.http.util", "CharArrayBuffer", True, "append", "(char[],int,int)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.http.util", "CharArrayBuffer", True, "buffer", "()", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.http.util", "CharArrayBuffer", True, "subSequence", "(int,int)", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.http.util", "CharArrayBuffer", True, "substring", "(int,int)", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.http.util", "CharArrayBuffer", True, "substringTrimmed", "(int,int)", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.http.util", "CharArrayBuffer", True, "toCharArray", "()", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.http.util", "CharArrayBuffer", True, "toString", "()", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.http.util", "EncodingUtils", True, "getAsciiBytes", "(String)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.http.util", "EncodingUtils", True, "getAsciiString", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.http.util", "EncodingUtils", True, "getBytes", "(String,String)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.http.util", "EncodingUtils", True, "getString", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.http.util", "EntityUtils", True, "getContentCharSet", "(HttpEntity)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.http.util", "EntityUtils", True, "getContentMimeType", "(HttpEntity)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.http.util", "EntityUtils", True, "toByteArray", "(HttpEntity)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.http.util", "EntityUtils", True, "toString", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
diff --git a/java/ql/lib/ext/org.apache.ibatis.jdbc.model.yml b/java/ql/lib/ext/org.apache.ibatis.jdbc.model.yml
new file mode 100644
index 00000000000..16cfe1404da
--- /dev/null
+++ b/java/ql/lib/ext/org.apache.ibatis.jdbc.model.yml
@@ -0,0 +1,72 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSinkModel
+    data:
+      - ["org.apache.ibatis.jdbc", "SqlRunner", False, "delete", "(String,Object[])", "", "Argument[0]", "sql", "manual"]
+      - ["org.apache.ibatis.jdbc", "SqlRunner", False, "insert", "(String,Object[])", "", "Argument[0]", "sql", "manual"]
+      - ["org.apache.ibatis.jdbc", "SqlRunner", False, "run", "(String)", "", "Argument[0]", "sql", "manual"]
+      - ["org.apache.ibatis.jdbc", "SqlRunner", False, "selectAll", "(String,Object[])", "", "Argument[0]", "sql", "manual"]
+      - ["org.apache.ibatis.jdbc", "SqlRunner", False, "selectOne", "(String,Object[])", "", "Argument[0]", "sql", "manual"]
+      - ["org.apache.ibatis.jdbc", "SqlRunner", False, "update", "(String,Object[])", "", "Argument[0]", "sql", "manual"]
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSummaryModel
+    data:
+      - ["org.apache.ibatis.jdbc", "AbstractSQL", True, "DELETE_FROM", "(String)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.ibatis.jdbc", "AbstractSQL", True, "FETCH_FIRST_ROWS_ONLY", "(String)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.ibatis.jdbc", "AbstractSQL", True, "FROM", "(String)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.ibatis.jdbc", "AbstractSQL", True, "FROM", "(String)", "", "Argument[0].ArrayElement", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.ibatis.jdbc", "AbstractSQL", True, "FROM", "(String[])", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.ibatis.jdbc", "AbstractSQL", True, "FROM", "(String[])", "", "Argument[0].ArrayElement", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.ibatis.jdbc", "AbstractSQL", True, "GROUP_BY", "(String)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.ibatis.jdbc", "AbstractSQL", True, "GROUP_BY", "(String)", "", "Argument[0].ArrayElement", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.ibatis.jdbc", "AbstractSQL", True, "GROUP_BY", "(String[])", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.ibatis.jdbc", "AbstractSQL", True, "GROUP_BY", "(String[])", "", "Argument[0].ArrayElement", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.ibatis.jdbc", "AbstractSQL", True, "HAVING", "(String)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.ibatis.jdbc", "AbstractSQL", True, "HAVING", "(String)", "", "Argument[0].ArrayElement", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.ibatis.jdbc", "AbstractSQL", True, "HAVING", "(String[])", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.ibatis.jdbc", "AbstractSQL", True, "HAVING", "(String[])", "", "Argument[0].ArrayElement", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.ibatis.jdbc", "AbstractSQL", True, "INNER_JOIN", "(String)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.ibatis.jdbc", "AbstractSQL", True, "INNER_JOIN", "(String)", "", "Argument[0].ArrayElement", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.ibatis.jdbc", "AbstractSQL", True, "INNER_JOIN", "(String[])", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.ibatis.jdbc", "AbstractSQL", True, "INNER_JOIN", "(String[])", "", "Argument[0].ArrayElement", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.ibatis.jdbc", "AbstractSQL", True, "INSERT_INTO", "(String)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.ibatis.jdbc", "AbstractSQL", True, "INTO_COLUMNS", "(String[])", "", "Argument[0].ArrayElement", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.ibatis.jdbc", "AbstractSQL", True, "INTO_VALUES", "(String[])", "", "Argument[0].ArrayElement", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.ibatis.jdbc", "AbstractSQL", True, "JOIN", "(String[])", "", "Argument[0].ArrayElement", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.ibatis.jdbc", "AbstractSQL", True, "LEFT_OUTER_JOIN", "(String)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.ibatis.jdbc", "AbstractSQL", True, "LEFT_OUTER_JOIN", "(String)", "", "Argument[0].ArrayElement", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.ibatis.jdbc", "AbstractSQL", True, "LEFT_OUTER_JOIN", "(String[])", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.ibatis.jdbc", "AbstractSQL", True, "LEFT_OUTER_JOIN", "(String[])", "", "Argument[0].ArrayElement", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.ibatis.jdbc", "AbstractSQL", True, "LIMIT", "(String)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.ibatis.jdbc", "AbstractSQL", True, "OFFSET", "(String)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.ibatis.jdbc", "AbstractSQL", True, "OFFSET_ROWS", "(String)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.ibatis.jdbc", "AbstractSQL", True, "ORDER_BY", "(String)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.ibatis.jdbc", "AbstractSQL", True, "ORDER_BY", "(String)", "", "Argument[0].ArrayElement", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.ibatis.jdbc", "AbstractSQL", True, "ORDER_BY", "(String[])", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.ibatis.jdbc", "AbstractSQL", True, "ORDER_BY", "(String[])", "", "Argument[0].ArrayElement", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.ibatis.jdbc", "AbstractSQL", True, "OUTER_JOIN", "(String)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.ibatis.jdbc", "AbstractSQL", True, "OUTER_JOIN", "(String)", "", "Argument[0].ArrayElement", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.ibatis.jdbc", "AbstractSQL", True, "OUTER_JOIN", "(String[])", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.ibatis.jdbc", "AbstractSQL", True, "OUTER_JOIN", "(String[])", "", "Argument[0].ArrayElement", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.ibatis.jdbc", "AbstractSQL", True, "RIGHT_OUTER_JOIN", "(String)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.ibatis.jdbc", "AbstractSQL", True, "RIGHT_OUTER_JOIN", "(String)", "", "Argument[0].ArrayElement", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.ibatis.jdbc", "AbstractSQL", True, "RIGHT_OUTER_JOIN", "(String[])", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.ibatis.jdbc", "AbstractSQL", True, "RIGHT_OUTER_JOIN", "(String[])", "", "Argument[0].ArrayElement", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.ibatis.jdbc", "AbstractSQL", True, "SELECT", "(String)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.ibatis.jdbc", "AbstractSQL", True, "SELECT_DISTINCT", "(String)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.ibatis.jdbc", "AbstractSQL", True, "SELECT_DISTINCT", "(String)", "", "Argument[0].ArrayElement", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.ibatis.jdbc", "AbstractSQL", True, "SELECT_DISTINCT", "(String[])", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.ibatis.jdbc", "AbstractSQL", True, "SELECT_DISTINCT", "(String[])", "", "Argument[0].ArrayElement", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.ibatis.jdbc", "AbstractSQL", True, "SET", "(String)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.ibatis.jdbc", "AbstractSQL", True, "SET", "(String)", "", "Argument[0].ArrayElement", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.ibatis.jdbc", "AbstractSQL", True, "SET", "(String[])", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.ibatis.jdbc", "AbstractSQL", True, "SET", "(String[])", "", "Argument[0].ArrayElement", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.ibatis.jdbc", "AbstractSQL", True, "UPDATE", "(String)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.ibatis.jdbc", "AbstractSQL", True, "VALUES", "(String,String)", "", "Argument[0..1]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.ibatis.jdbc", "AbstractSQL", True, "WHERE", "(String)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.ibatis.jdbc", "AbstractSQL", True, "WHERE", "(String)", "", "Argument[0].ArrayElement", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.ibatis.jdbc", "AbstractSQL", True, "WHERE", "(String[])", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.ibatis.jdbc", "AbstractSQL", True, "WHERE", "(String[])", "", "Argument[0].ArrayElement", "Argument[-1]", "taint", "manual"]
+      - ["org.apache.ibatis.jdbc", "AbstractSQL", True, "toString", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
diff --git a/java/ql/lib/ext/org.apache.log4j.model.yml b/java/ql/lib/ext/org.apache.log4j.model.yml
new file mode 100644
index 00000000000..6c10a824dce
--- /dev/null
+++ b/java/ql/lib/ext/org.apache.log4j.model.yml
@@ -0,0 +1,16 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSinkModel
+    data:
+      - ["org.apache.log4j", "Category", True, "assertLog", "", "", "Argument[1]", "logging", "manual"]
+      - ["org.apache.log4j", "Category", True, "debug", "", "", "Argument[0]", "logging", "manual"]
+      - ["org.apache.log4j", "Category", True, "error", "", "", "Argument[0]", "logging", "manual"]
+      - ["org.apache.log4j", "Category", True, "fatal", "", "", "Argument[0]", "logging", "manual"]
+      - ["org.apache.log4j", "Category", True, "forcedLog", "", "", "Argument[2]", "logging", "manual"]
+      - ["org.apache.log4j", "Category", True, "info", "", "", "Argument[0]", "logging", "manual"]
+      - ["org.apache.log4j", "Category", True, "l7dlog", "(Priority,String,Object[],Throwable)", "", "Argument[2]", "logging", "manual"]
+      - ["org.apache.log4j", "Category", True, "log", "(Priority,Object)", "", "Argument[1]", "logging", "manual"]
+      - ["org.apache.log4j", "Category", True, "log", "(Priority,Object,Throwable)", "", "Argument[1]", "logging", "manual"]
+      - ["org.apache.log4j", "Category", True, "log", "(String,Priority,Object,Throwable)", "", "Argument[2]", "logging", "manual"]
+      - ["org.apache.log4j", "Category", True, "warn", "", "", "Argument[0]", "logging", "manual"]
diff --git a/java/ql/lib/ext/org.apache.logging.log4j.model.yml b/java/ql/lib/ext/org.apache.logging.log4j.model.yml
new file mode 100644
index 00000000000..c26023c5fdd
--- /dev/null
+++ b/java/ql/lib/ext/org.apache.logging.log4j.model.yml
@@ -0,0 +1,376 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSinkModel
+    data:
+      - ["org.apache.logging.log4j", "LogBuilder", True, "log", "(CharSequence)", "", "Argument[0]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "LogBuilder", True, "log", "(Message)", "", "Argument[0]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "LogBuilder", True, "log", "(Object)", "", "Argument[0]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "LogBuilder", True, "log", "(String)", "", "Argument[0]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "LogBuilder", True, "log", "(String,Object)", "", "Argument[0..1]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "LogBuilder", True, "log", "(String,Object,Object)", "", "Argument[0..2]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "LogBuilder", True, "log", "(String,Object,Object,Object)", "", "Argument[0..3]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "LogBuilder", True, "log", "(String,Object,Object,Object,Object)", "", "Argument[0..4]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "LogBuilder", True, "log", "(String,Object,Object,Object,Object,Object)", "", "Argument[0..5]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "LogBuilder", True, "log", "(String,Object,Object,Object,Object,Object,Object)", "", "Argument[0..6]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "LogBuilder", True, "log", "(String,Object,Object,Object,Object,Object,Object,Object)", "", "Argument[0..7]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "LogBuilder", True, "log", "(String,Object,Object,Object,Object,Object,Object,Object,Object)", "", "Argument[0..8]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "LogBuilder", True, "log", "(String,Object,Object,Object,Object,Object,Object,Object,Object,Object)", "", "Argument[0..9]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "LogBuilder", True, "log", "(String,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object)", "", "Argument[0..10]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "LogBuilder", True, "log", "(String,Object[])", "", "Argument[0..1]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "LogBuilder", True, "log", "(String,Supplier)", "", "Argument[0..1]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "LogBuilder", True, "log", "(Supplier)", "", "Argument[0]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "debug", "(CharSequence)", "", "Argument[0]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "debug", "(CharSequence,Throwable)", "", "Argument[0]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "debug", "(Marker,CharSequence)", "", "Argument[1]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "debug", "(Marker,CharSequence,Throwable)", "", "Argument[1]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "debug", "(Marker,Message)", "", "Argument[1]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "debug", "(Marker,MessageSupplier)", "", "Argument[1]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "debug", "(Marker,MessageSupplier,Throwable)", "", "Argument[1]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "debug", "(Marker,Object)", "", "Argument[1]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "debug", "(Marker,Object,Throwable)", "", "Argument[1]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "debug", "(Marker,String)", "", "Argument[1]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "debug", "(Marker,String,Object)", "", "Argument[1..2]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "debug", "(Marker,String,Object,Object)", "", "Argument[1..3]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "debug", "(Marker,String,Object,Object,Object)", "", "Argument[1..4]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "debug", "(Marker,String,Object,Object,Object,Object)", "", "Argument[1..5]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "debug", "(Marker,String,Object,Object,Object,Object,Object)", "", "Argument[1..6]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "debug", "(Marker,String,Object,Object,Object,Object,Object,Object)", "", "Argument[1..7]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "debug", "(Marker,String,Object,Object,Object,Object,Object,Object,Object)", "", "Argument[1..8]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "debug", "(Marker,String,Object,Object,Object,Object,Object,Object,Object,Object)", "", "Argument[1..9]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "debug", "(Marker,String,Object,Object,Object,Object,Object,Object,Object,Object,Object)", "", "Argument[1..10]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "debug", "(Marker,String,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object)", "", "Argument[1..11]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "debug", "(Marker,String,Object[])", "", "Argument[1..2]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "debug", "(Marker,String,Supplier)", "", "Argument[1..2]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "debug", "(Marker,String,Throwable)", "", "Argument[1]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "debug", "(Marker,Supplier)", "", "Argument[1]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "debug", "(Marker,Supplier,Throwable)", "", "Argument[1]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "debug", "(Message)", "", "Argument[0]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "debug", "(Message,Throwable)", "", "Argument[0]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "debug", "(MessageSupplier)", "", "Argument[0]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "debug", "(MessageSupplier,Throwable)", "", "Argument[0]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "debug", "(Object)", "", "Argument[0]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "debug", "(Object,Throwable)", "", "Argument[0]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "debug", "(String)", "", "Argument[0]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "debug", "(String,Object)", "", "Argument[0..1]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "debug", "(String,Object,Object)", "", "Argument[0..2]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "debug", "(String,Object,Object,Object)", "", "Argument[0..3]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "debug", "(String,Object,Object,Object,Object)", "", "Argument[0..4]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "debug", "(String,Object,Object,Object,Object,Object)", "", "Argument[0..5]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "debug", "(String,Object,Object,Object,Object,Object,Object)", "", "Argument[0..6]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "debug", "(String,Object,Object,Object,Object,Object,Object,Object)", "", "Argument[0..7]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "debug", "(String,Object,Object,Object,Object,Object,Object,Object,Object)", "", "Argument[0..8]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "debug", "(String,Object,Object,Object,Object,Object,Object,Object,Object,Object)", "", "Argument[0..9]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "debug", "(String,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object)", "", "Argument[0..10]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "debug", "(String,Object[])", "", "Argument[0..1]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "debug", "(String,Supplier)", "", "Argument[0..1]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "debug", "(String,Throwable)", "", "Argument[0]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "debug", "(Supplier)", "", "Argument[0]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "debug", "(Supplier,Throwable)", "", "Argument[0]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "entry", "(Object[])", "", "Argument[0]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "error", "(CharSequence)", "", "Argument[0]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "error", "(CharSequence,Throwable)", "", "Argument[0]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "error", "(Marker,CharSequence)", "", "Argument[1]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "error", "(Marker,CharSequence,Throwable)", "", "Argument[1]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "error", "(Marker,Message)", "", "Argument[1]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "error", "(Marker,MessageSupplier)", "", "Argument[1]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "error", "(Marker,MessageSupplier,Throwable)", "", "Argument[1]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "error", "(Marker,Object)", "", "Argument[1]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "error", "(Marker,Object,Throwable)", "", "Argument[1]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "error", "(Marker,String)", "", "Argument[1]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "error", "(Marker,String,Object)", "", "Argument[1..2]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "error", "(Marker,String,Object,Object)", "", "Argument[1..3]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "error", "(Marker,String,Object,Object,Object)", "", "Argument[1..4]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "error", "(Marker,String,Object,Object,Object,Object)", "", "Argument[1..5]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "error", "(Marker,String,Object,Object,Object,Object,Object)", "", "Argument[1..6]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "error", "(Marker,String,Object,Object,Object,Object,Object,Object)", "", "Argument[1..7]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "error", "(Marker,String,Object,Object,Object,Object,Object,Object,Object)", "", "Argument[1..8]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "error", "(Marker,String,Object,Object,Object,Object,Object,Object,Object,Object)", "", "Argument[1..9]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "error", "(Marker,String,Object,Object,Object,Object,Object,Object,Object,Object,Object)", "", "Argument[1..10]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "error", "(Marker,String,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object)", "", "Argument[1..11]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "error", "(Marker,String,Object[])", "", "Argument[1..2]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "error", "(Marker,String,Supplier)", "", "Argument[1..2]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "error", "(Marker,String,Throwable)", "", "Argument[1]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "error", "(Marker,Supplier)", "", "Argument[1]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "error", "(Marker,Supplier,Throwable)", "", "Argument[1]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "error", "(Message)", "", "Argument[0]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "error", "(Message,Throwable)", "", "Argument[0]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "error", "(MessageSupplier)", "", "Argument[0]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "error", "(MessageSupplier,Throwable)", "", "Argument[0]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "error", "(Object)", "", "Argument[0]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "error", "(Object,Throwable)", "", "Argument[0]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "error", "(String)", "", "Argument[0]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "error", "(String,Object)", "", "Argument[0..1]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "error", "(String,Object,Object)", "", "Argument[0..2]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "error", "(String,Object,Object,Object)", "", "Argument[0..3]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "error", "(String,Object,Object,Object,Object)", "", "Argument[0..4]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "error", "(String,Object,Object,Object,Object,Object)", "", "Argument[0..5]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "error", "(String,Object,Object,Object,Object,Object,Object)", "", "Argument[0..6]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "error", "(String,Object,Object,Object,Object,Object,Object,Object)", "", "Argument[0..7]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "error", "(String,Object,Object,Object,Object,Object,Object,Object,Object)", "", "Argument[0..8]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "error", "(String,Object,Object,Object,Object,Object,Object,Object,Object,Object)", "", "Argument[0..9]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "error", "(String,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object)", "", "Argument[0..10]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "error", "(String,Object[])", "", "Argument[0..1]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "error", "(String,Supplier)", "", "Argument[0..1]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "error", "(String,Throwable)", "", "Argument[0]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "error", "(Supplier)", "", "Argument[0]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "error", "(Supplier,Throwable)", "", "Argument[0]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "fatal", "(CharSequence)", "", "Argument[0]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "fatal", "(CharSequence,Throwable)", "", "Argument[0]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "fatal", "(Marker,CharSequence)", "", "Argument[1]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "fatal", "(Marker,CharSequence,Throwable)", "", "Argument[1]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "fatal", "(Marker,Message)", "", "Argument[1]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "fatal", "(Marker,MessageSupplier)", "", "Argument[1]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "fatal", "(Marker,MessageSupplier,Throwable)", "", "Argument[1]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "fatal", "(Marker,Object)", "", "Argument[1]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "fatal", "(Marker,Object,Throwable)", "", "Argument[1]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "fatal", "(Marker,String)", "", "Argument[1]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "fatal", "(Marker,String,Object)", "", "Argument[1..2]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "fatal", "(Marker,String,Object,Object)", "", "Argument[1..3]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "fatal", "(Marker,String,Object,Object,Object)", "", "Argument[1..4]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "fatal", "(Marker,String,Object,Object,Object,Object)", "", "Argument[1..5]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "fatal", "(Marker,String,Object,Object,Object,Object,Object)", "", "Argument[1..6]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "fatal", "(Marker,String,Object,Object,Object,Object,Object,Object)", "", "Argument[1..7]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "fatal", "(Marker,String,Object,Object,Object,Object,Object,Object,Object)", "", "Argument[1..8]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "fatal", "(Marker,String,Object,Object,Object,Object,Object,Object,Object,Object)", "", "Argument[1..9]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "fatal", "(Marker,String,Object,Object,Object,Object,Object,Object,Object,Object,Object)", "", "Argument[1..10]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "fatal", "(Marker,String,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object)", "", "Argument[1..11]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "fatal", "(Marker,String,Object[])", "", "Argument[1..2]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "fatal", "(Marker,String,Supplier)", "", "Argument[1..2]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "fatal", "(Marker,String,Throwable)", "", "Argument[1]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "fatal", "(Marker,Supplier)", "", "Argument[1]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "fatal", "(Marker,Supplier,Throwable)", "", "Argument[1]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "fatal", "(Message)", "", "Argument[0]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "fatal", "(Message,Throwable)", "", "Argument[0]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "fatal", "(MessageSupplier)", "", "Argument[0]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "fatal", "(MessageSupplier,Throwable)", "", "Argument[0]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "fatal", "(Object)", "", "Argument[0]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "fatal", "(Object,Throwable)", "", "Argument[0]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "fatal", "(String)", "", "Argument[0]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "fatal", "(String,Object)", "", "Argument[0..1]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "fatal", "(String,Object,Object)", "", "Argument[0..2]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "fatal", "(String,Object,Object,Object)", "", "Argument[0..3]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "fatal", "(String,Object,Object,Object,Object)", "", "Argument[0..4]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "fatal", "(String,Object,Object,Object,Object,Object)", "", "Argument[0..5]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "fatal", "(String,Object,Object,Object,Object,Object,Object)", "", "Argument[0..6]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "fatal", "(String,Object,Object,Object,Object,Object,Object,Object)", "", "Argument[0..7]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "fatal", "(String,Object,Object,Object,Object,Object,Object,Object,Object)", "", "Argument[0..8]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "fatal", "(String,Object,Object,Object,Object,Object,Object,Object,Object,Object)", "", "Argument[0..9]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "fatal", "(String,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object)", "", "Argument[0..10]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "fatal", "(String,Object[])", "", "Argument[0..1]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "fatal", "(String,Supplier)", "", "Argument[0..1]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "fatal", "(String,Throwable)", "", "Argument[0]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "fatal", "(Supplier)", "", "Argument[0]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "fatal", "(Supplier,Throwable)", "", "Argument[0]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "info", "(CharSequence)", "", "Argument[0]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "info", "(CharSequence,Throwable)", "", "Argument[0]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "info", "(Marker,CharSequence)", "", "Argument[1]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "info", "(Marker,CharSequence,Throwable)", "", "Argument[1]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "info", "(Marker,Message)", "", "Argument[1]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "info", "(Marker,MessageSupplier)", "", "Argument[1]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "info", "(Marker,MessageSupplier,Throwable)", "", "Argument[1]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "info", "(Marker,Object)", "", "Argument[1]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "info", "(Marker,Object,Throwable)", "", "Argument[1]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "info", "(Marker,String)", "", "Argument[1]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "info", "(Marker,String,Object)", "", "Argument[1..2]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "info", "(Marker,String,Object,Object)", "", "Argument[1..3]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "info", "(Marker,String,Object,Object,Object)", "", "Argument[1..4]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "info", "(Marker,String,Object,Object,Object,Object)", "", "Argument[1..5]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "info", "(Marker,String,Object,Object,Object,Object,Object)", "", "Argument[1..6]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "info", "(Marker,String,Object,Object,Object,Object,Object,Object)", "", "Argument[1..7]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "info", "(Marker,String,Object,Object,Object,Object,Object,Object,Object)", "", "Argument[1..8]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "info", "(Marker,String,Object,Object,Object,Object,Object,Object,Object,Object)", "", "Argument[1..9]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "info", "(Marker,String,Object,Object,Object,Object,Object,Object,Object,Object,Object)", "", "Argument[1..10]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "info", "(Marker,String,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object)", "", "Argument[1..11]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "info", "(Marker,String,Object[])", "", "Argument[1..2]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "info", "(Marker,String,Supplier)", "", "Argument[1..2]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "info", "(Marker,String,Throwable)", "", "Argument[1]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "info", "(Marker,Supplier)", "", "Argument[1]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "info", "(Marker,Supplier,Throwable)", "", "Argument[1]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "info", "(Message)", "", "Argument[0]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "info", "(Message,Throwable)", "", "Argument[0]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "info", "(MessageSupplier)", "", "Argument[0]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "info", "(MessageSupplier,Throwable)", "", "Argument[0]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "info", "(Object)", "", "Argument[0]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "info", "(Object,Throwable)", "", "Argument[0]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "info", "(String)", "", "Argument[0]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "info", "(String,Object)", "", "Argument[0..1]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "info", "(String,Object,Object)", "", "Argument[0..2]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "info", "(String,Object,Object,Object)", "", "Argument[0..3]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "info", "(String,Object,Object,Object,Object)", "", "Argument[0..4]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "info", "(String,Object,Object,Object,Object,Object)", "", "Argument[0..5]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "info", "(String,Object,Object,Object,Object,Object,Object)", "", "Argument[0..6]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "info", "(String,Object,Object,Object,Object,Object,Object,Object)", "", "Argument[0..7]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "info", "(String,Object,Object,Object,Object,Object,Object,Object,Object)", "", "Argument[0..8]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "info", "(String,Object,Object,Object,Object,Object,Object,Object,Object,Object)", "", "Argument[0..9]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "info", "(String,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object)", "", "Argument[0..10]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "info", "(String,Object[])", "", "Argument[0..1]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "info", "(String,Supplier)", "", "Argument[0..1]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "info", "(String,Throwable)", "", "Argument[0]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "info", "(Supplier)", "", "Argument[0]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "info", "(Supplier,Throwable)", "", "Argument[0]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "log", "(Level,CharSequence)", "", "Argument[1]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "log", "(Level,CharSequence,Throwable)", "", "Argument[1]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "log", "(Level,Marker,CharSequence)", "", "Argument[2]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "log", "(Level,Marker,CharSequence,Throwable)", "", "Argument[2]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "log", "(Level,Marker,Message)", "", "Argument[2]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "log", "(Level,Marker,MessageSupplier)", "", "Argument[2]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "log", "(Level,Marker,MessageSupplier,Throwable)", "", "Argument[2]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "log", "(Level,Marker,Object)", "", "Argument[2]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "log", "(Level,Marker,Object,Throwable)", "", "Argument[2]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "log", "(Level,Marker,String)", "", "Argument[2]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "log", "(Level,Marker,String,Object)", "", "Argument[2..3]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "log", "(Level,Marker,String,Object,Object)", "", "Argument[2..4]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "log", "(Level,Marker,String,Object,Object,Object)", "", "Argument[2..5]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "log", "(Level,Marker,String,Object,Object,Object,Object)", "", "Argument[2..6]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "log", "(Level,Marker,String,Object,Object,Object,Object,Object)", "", "Argument[2..7]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "log", "(Level,Marker,String,Object,Object,Object,Object,Object,Object)", "", "Argument[2..8]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "log", "(Level,Marker,String,Object,Object,Object,Object,Object,Object,Object)", "", "Argument[2..9]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "log", "(Level,Marker,String,Object,Object,Object,Object,Object,Object,Object,Object)", "", "Argument[2..10]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "log", "(Level,Marker,String,Object,Object,Object,Object,Object,Object,Object,Object,Object)", "", "Argument[2..11]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "log", "(Level,Marker,String,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object)", "", "Argument[2..12]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "log", "(Level,Marker,String,Object[])", "", "Argument[2..3]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "log", "(Level,Marker,String,Supplier)", "", "Argument[2..3]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "log", "(Level,Marker,String,Throwable)", "", "Argument[2]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "log", "(Level,Marker,Supplier)", "", "Argument[2]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "log", "(Level,Marker,Supplier,Throwable)", "", "Argument[2]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "log", "(Level,Message)", "", "Argument[1]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "log", "(Level,Message,Throwable)", "", "Argument[1]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "log", "(Level,MessageSupplier)", "", "Argument[1]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "log", "(Level,MessageSupplier,Throwable)", "", "Argument[1]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "log", "(Level,Object)", "", "Argument[1]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "log", "(Level,Object,Throwable)", "", "Argument[1]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "log", "(Level,String)", "", "Argument[1]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "log", "(Level,String,Object)", "", "Argument[1..2]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "log", "(Level,String,Object,Object)", "", "Argument[1..3]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "log", "(Level,String,Object,Object,Object)", "", "Argument[1..4]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "log", "(Level,String,Object,Object,Object,Object)", "", "Argument[1..5]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "log", "(Level,String,Object,Object,Object,Object,Object)", "", "Argument[1..6]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "log", "(Level,String,Object,Object,Object,Object,Object,Object)", "", "Argument[1..7]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "log", "(Level,String,Object,Object,Object,Object,Object,Object,Object)", "", "Argument[1..8]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "log", "(Level,String,Object,Object,Object,Object,Object,Object,Object,Object)", "", "Argument[1..9]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "log", "(Level,String,Object,Object,Object,Object,Object,Object,Object,Object,Object)", "", "Argument[1..10]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "log", "(Level,String,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object)", "", "Argument[1..11]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "log", "(Level,String,Object[])", "", "Argument[1..2]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "log", "(Level,String,Supplier)", "", "Argument[1..2]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "log", "(Level,String,Throwable)", "", "Argument[1]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "log", "(Level,Supplier)", "", "Argument[1]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "log", "(Level,Supplier,Throwable)", "", "Argument[1]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "logMessage", "(Level,Marker,String,StackTraceElement,Message,Throwable)", "", "Argument[4]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "printf", "(Level,Marker,String,Object[])", "", "Argument[2..3]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "printf", "(Level,String,Object[])", "", "Argument[1..2]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "trace", "(CharSequence)", "", "Argument[0]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "trace", "(CharSequence,Throwable)", "", "Argument[0]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "trace", "(Marker,CharSequence)", "", "Argument[1]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "trace", "(Marker,CharSequence,Throwable)", "", "Argument[1]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "trace", "(Marker,Message)", "", "Argument[1]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "trace", "(Marker,MessageSupplier)", "", "Argument[1]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "trace", "(Marker,MessageSupplier,Throwable)", "", "Argument[1]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "trace", "(Marker,Object)", "", "Argument[1]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "trace", "(Marker,Object,Throwable)", "", "Argument[1]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "trace", "(Marker,String)", "", "Argument[1]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "trace", "(Marker,String,Object)", "", "Argument[1..2]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "trace", "(Marker,String,Object,Object)", "", "Argument[1..3]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "trace", "(Marker,String,Object,Object,Object)", "", "Argument[1..4]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "trace", "(Marker,String,Object,Object,Object,Object)", "", "Argument[1..5]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "trace", "(Marker,String,Object,Object,Object,Object,Object)", "", "Argument[1..6]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "trace", "(Marker,String,Object,Object,Object,Object,Object,Object)", "", "Argument[1..7]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "trace", "(Marker,String,Object,Object,Object,Object,Object,Object,Object)", "", "Argument[1..8]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "trace", "(Marker,String,Object,Object,Object,Object,Object,Object,Object,Object)", "", "Argument[1..9]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "trace", "(Marker,String,Object,Object,Object,Object,Object,Object,Object,Object,Object)", "", "Argument[1..10]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "trace", "(Marker,String,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object)", "", "Argument[1..11]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "trace", "(Marker,String,Object[])", "", "Argument[1..2]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "trace", "(Marker,String,Supplier)", "", "Argument[1..2]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "trace", "(Marker,String,Throwable)", "", "Argument[1]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "trace", "(Marker,Supplier)", "", "Argument[1]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "trace", "(Marker,Supplier,Throwable)", "", "Argument[1]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "trace", "(Message)", "", "Argument[0]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "trace", "(Message,Throwable)", "", "Argument[0]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "trace", "(MessageSupplier)", "", "Argument[0]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "trace", "(MessageSupplier,Throwable)", "", "Argument[0]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "trace", "(Object)", "", "Argument[0]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "trace", "(Object,Throwable)", "", "Argument[0]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "trace", "(String)", "", "Argument[0]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "trace", "(String,Object)", "", "Argument[0..1]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "trace", "(String,Object,Object)", "", "Argument[0..2]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "trace", "(String,Object,Object,Object)", "", "Argument[0..3]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "trace", "(String,Object,Object,Object,Object)", "", "Argument[0..4]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "trace", "(String,Object,Object,Object,Object,Object)", "", "Argument[0..5]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "trace", "(String,Object,Object,Object,Object,Object,Object)", "", "Argument[0..6]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "trace", "(String,Object,Object,Object,Object,Object,Object,Object)", "", "Argument[0..7]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "trace", "(String,Object,Object,Object,Object,Object,Object,Object,Object)", "", "Argument[0..8]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "trace", "(String,Object,Object,Object,Object,Object,Object,Object,Object,Object)", "", "Argument[0..9]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "trace", "(String,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object)", "", "Argument[0..10]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "trace", "(String,Object[])", "", "Argument[0..1]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "trace", "(String,Supplier)", "", "Argument[0..1]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "trace", "(String,Throwable)", "", "Argument[0]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "trace", "(Supplier)", "", "Argument[0]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "trace", "(Supplier,Throwable)", "", "Argument[0]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "traceEntry", "(Message)", "", "Argument[0]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "traceEntry", "(String,Object[])", "", "Argument[0..1]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "traceEntry", "(String,Supplier[])", "", "Argument[0..1]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "traceEntry", "(Supplier[])", "", "Argument[0]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "traceExit", "(EntryMessage)", "", "Argument[0]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "traceExit", "(EntryMessage,Object)", "", "Argument[0..1]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "traceExit", "(Message,Object)", "", "Argument[0..1]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "traceExit", "(Object)", "", "Argument[0]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "traceExit", "(String,Object)", "", "Argument[0..1]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "warn", "(CharSequence)", "", "Argument[0]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "warn", "(CharSequence,Throwable)", "", "Argument[0]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "warn", "(Marker,CharSequence)", "", "Argument[1]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "warn", "(Marker,CharSequence,Throwable)", "", "Argument[1]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "warn", "(Marker,Message)", "", "Argument[1]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "warn", "(Marker,MessageSupplier)", "", "Argument[1]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "warn", "(Marker,MessageSupplier,Throwable)", "", "Argument[1]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "warn", "(Marker,Object)", "", "Argument[1]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "warn", "(Marker,Object,Throwable)", "", "Argument[1]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "warn", "(Marker,String)", "", "Argument[1]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "warn", "(Marker,String,Object)", "", "Argument[1..2]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "warn", "(Marker,String,Object,Object)", "", "Argument[1..3]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "warn", "(Marker,String,Object,Object,Object)", "", "Argument[1..4]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "warn", "(Marker,String,Object,Object,Object,Object)", "", "Argument[1..5]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "warn", "(Marker,String,Object,Object,Object,Object,Object)", "", "Argument[1..6]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "warn", "(Marker,String,Object,Object,Object,Object,Object,Object)", "", "Argument[1..7]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "warn", "(Marker,String,Object,Object,Object,Object,Object,Object,Object)", "", "Argument[1..8]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "warn", "(Marker,String,Object,Object,Object,Object,Object,Object,Object,Object)", "", "Argument[1..9]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "warn", "(Marker,String,Object,Object,Object,Object,Object,Object,Object,Object,Object)", "", "Argument[1..10]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "warn", "(Marker,String,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object)", "", "Argument[1..11]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "warn", "(Marker,String,Object[])", "", "Argument[1..2]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "warn", "(Marker,String,Supplier)", "", "Argument[1..2]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "warn", "(Marker,String,Throwable)", "", "Argument[1]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "warn", "(Marker,Supplier)", "", "Argument[1]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "warn", "(Marker,Supplier,Throwable)", "", "Argument[1]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "warn", "(Message)", "", "Argument[0]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "warn", "(Message,Throwable)", "", "Argument[0]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "warn", "(MessageSupplier)", "", "Argument[0]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "warn", "(MessageSupplier,Throwable)", "", "Argument[0]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "warn", "(Object)", "", "Argument[0]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "warn", "(Object,Throwable)", "", "Argument[0]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "warn", "(String)", "", "Argument[0]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "warn", "(String,Object)", "", "Argument[0..1]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "warn", "(String,Object,Object)", "", "Argument[0..2]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "warn", "(String,Object,Object,Object)", "", "Argument[0..3]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "warn", "(String,Object,Object,Object,Object)", "", "Argument[0..4]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "warn", "(String,Object,Object,Object,Object,Object)", "", "Argument[0..5]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "warn", "(String,Object,Object,Object,Object,Object,Object)", "", "Argument[0..6]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "warn", "(String,Object,Object,Object,Object,Object,Object,Object)", "", "Argument[0..7]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "warn", "(String,Object,Object,Object,Object,Object,Object,Object,Object)", "", "Argument[0..8]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "warn", "(String,Object,Object,Object,Object,Object,Object,Object,Object,Object)", "", "Argument[0..9]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "warn", "(String,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object)", "", "Argument[0..10]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "warn", "(String,Object[])", "", "Argument[0..1]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "warn", "(String,Supplier)", "", "Argument[0..1]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "warn", "(String,Throwable)", "", "Argument[0]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "warn", "(Supplier)", "", "Argument[0]", "logging", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "warn", "(Supplier,Throwable)", "", "Argument[0]", "logging", "manual"]
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSummaryModel
+    data:
+      - ["org.apache.logging.log4j", "Logger", True, "traceEntry", "(Message)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "traceEntry", "(String,Object[])", "", "Argument[0..1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "traceEntry", "(String,Supplier[])", "", "Argument[0..1]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "traceEntry", "(Supplier[])", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "traceExit", "(EntryMessage,Object)", "", "Argument[1]", "ReturnValue", "value", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "traceExit", "(Message,Object)", "", "Argument[1]", "ReturnValue", "value", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "traceExit", "(Object)", "", "Argument[0]", "ReturnValue", "value", "manual"]
+      - ["org.apache.logging.log4j", "Logger", True, "traceExit", "(String,Object)", "", "Argument[1]", "ReturnValue", "value", "manual"]
diff --git a/java/ql/lib/ext/org.apache.shiro.codec.model.yml b/java/ql/lib/ext/org.apache.shiro.codec.model.yml
new file mode 100644
index 00000000000..ce779246090
--- /dev/null
+++ b/java/ql/lib/ext/org.apache.shiro.codec.model.yml
@@ -0,0 +1,6 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSummaryModel
+    data:
+      - ["org.apache.shiro.codec", "Base64", False, "decode", "(String)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
diff --git a/java/ql/lib/ext/org.apache.shiro.jndi.model.yml b/java/ql/lib/ext/org.apache.shiro.jndi.model.yml
new file mode 100644
index 00000000000..335e4d880ea
--- /dev/null
+++ b/java/ql/lib/ext/org.apache.shiro.jndi.model.yml
@@ -0,0 +1,6 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSinkModel
+    data:
+      - ["org.apache.shiro.jndi", "JndiTemplate", False, "lookup", "", "", "Argument[0]", "jndi-injection", "manual"]
diff --git a/java/ql/lib/ext/org.apache.velocity.app.model.yml b/java/ql/lib/ext/org.apache.velocity.app.model.yml
new file mode 100644
index 00000000000..d29cdea2720
--- /dev/null
+++ b/java/ql/lib/ext/org.apache.velocity.app.model.yml
@@ -0,0 +1,9 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSinkModel
+    data:
+      - ["org.apache.velocity.app", "Velocity", True, "evaluate", "", "", "Argument[3]", "ssti", "manual"]
+      - ["org.apache.velocity.app", "Velocity", True, "mergeTemplate", "", "", "Argument[2]", "ssti", "manual"]
+      - ["org.apache.velocity.app", "VelocityEngine", True, "evaluate", "", "", "Argument[3]", "ssti", "manual"]
+      - ["org.apache.velocity.app", "VelocityEngine", True, "mergeTemplate", "", "", "Argument[2]", "ssti", "manual"]
diff --git a/java/ql/lib/ext/org.apache.velocity.runtime.model.yml b/java/ql/lib/ext/org.apache.velocity.runtime.model.yml
new file mode 100644
index 00000000000..732bc9036c8
--- /dev/null
+++ b/java/ql/lib/ext/org.apache.velocity.runtime.model.yml
@@ -0,0 +1,8 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSinkModel
+    data:
+      - ["org.apache.velocity.runtime", "RuntimeServices", True, "evaluate", "", "", "Argument[3]", "ssti", "manual"]
+      - ["org.apache.velocity.runtime", "RuntimeServices", True, "parse", "", "", "Argument[0]", "ssti", "manual"]
+      - ["org.apache.velocity.runtime", "RuntimeSingleton", True, "parse", "", "", "Argument[0]", "ssti", "manual"]
diff --git a/java/ql/lib/ext/org.apache.velocity.runtime.resource.util.model.yml b/java/ql/lib/ext/org.apache.velocity.runtime.resource.util.model.yml
new file mode 100644
index 00000000000..cfeadc54e91
--- /dev/null
+++ b/java/ql/lib/ext/org.apache.velocity.runtime.resource.util.model.yml
@@ -0,0 +1,6 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSinkModel
+    data:
+      - ["org.apache.velocity.runtime.resource.util", "StringResourceRepository", True, "putStringResource", "", "", "Argument[1]", "ssti", "manual"]
diff --git a/java/ql/lib/ext/org.codehaus.groovy.control.model.yml b/java/ql/lib/ext/org.codehaus.groovy.control.model.yml
new file mode 100644
index 00000000000..4727e21f82b
--- /dev/null
+++ b/java/ql/lib/ext/org.codehaus.groovy.control.model.yml
@@ -0,0 +1,6 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSinkModel
+    data:
+      - ["org.codehaus.groovy.control", "CompilationUnit", False, "compile", "", "", "Argument[-1]", "groovy", "manual"]
diff --git a/java/ql/lib/ext/org.dom4j.model.yml b/java/ql/lib/ext/org.dom4j.model.yml
new file mode 100644
index 00000000000..4e40f64dc1b
--- /dev/null
+++ b/java/ql/lib/ext/org.dom4j.model.yml
@@ -0,0 +1,20 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSinkModel
+    data:
+      - ["org.dom4j", "DocumentFactory", True, "createPattern", "", "", "Argument[0]", "xpath", "manual"]
+      - ["org.dom4j", "DocumentFactory", True, "createXPath", "", "", "Argument[0]", "xpath", "manual"]
+      - ["org.dom4j", "DocumentFactory", True, "createXPathFilter", "", "", "Argument[0]", "xpath", "manual"]
+      - ["org.dom4j", "DocumentHelper", False, "createPattern", "", "", "Argument[0]", "xpath", "manual"]
+      - ["org.dom4j", "DocumentHelper", False, "createXPath", "", "", "Argument[0]", "xpath", "manual"]
+      - ["org.dom4j", "DocumentHelper", False, "createXPathFilter", "", "", "Argument[0]", "xpath", "manual"]
+      - ["org.dom4j", "DocumentHelper", False, "selectNodes", "", "", "Argument[0]", "xpath", "manual"]
+      - ["org.dom4j", "DocumentHelper", False, "sort", "", "", "Argument[1]", "xpath", "manual"]
+      - ["org.dom4j", "Node", True, "createXPath", "", "", "Argument[0]", "xpath", "manual"]
+      - ["org.dom4j", "Node", True, "matches", "", "", "Argument[0]", "xpath", "manual"]
+      - ["org.dom4j", "Node", True, "numberValueOf", "", "", "Argument[0]", "xpath", "manual"]
+      - ["org.dom4j", "Node", True, "selectNodes", "", "", "Argument[0..1]", "xpath", "manual"]
+      - ["org.dom4j", "Node", True, "selectObject", "", "", "Argument[0]", "xpath", "manual"]
+      - ["org.dom4j", "Node", True, "selectSingleNode", "", "", "Argument[0]", "xpath", "manual"]
+      - ["org.dom4j", "Node", True, "valueOf", "", "", "Argument[0]", "xpath", "manual"]
diff --git a/java/ql/lib/ext/org.dom4j.tree.model.yml b/java/ql/lib/ext/org.dom4j.tree.model.yml
new file mode 100644
index 00000000000..dbad39e0f4c
--- /dev/null
+++ b/java/ql/lib/ext/org.dom4j.tree.model.yml
@@ -0,0 +1,7 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSinkModel
+    data:
+      - ["org.dom4j.tree", "AbstractNode", True, "createPattern", "", "", "Argument[0]", "xpath", "manual"]
+      - ["org.dom4j.tree", "AbstractNode", True, "createXPathFilter", "", "", "Argument[0]", "xpath", "manual"]
diff --git a/java/ql/lib/ext/org.dom4j.util.model.yml b/java/ql/lib/ext/org.dom4j.util.model.yml
new file mode 100644
index 00000000000..587a1b68d32
--- /dev/null
+++ b/java/ql/lib/ext/org.dom4j.util.model.yml
@@ -0,0 +1,8 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSinkModel
+    data:
+      - ["org.dom4j.util", "ProxyDocumentFactory", True, "createPattern", "", "", "Argument[0]", "xpath", "manual"]
+      - ["org.dom4j.util", "ProxyDocumentFactory", True, "createXPath", "", "", "Argument[0]", "xpath", "manual"]
+      - ["org.dom4j.util", "ProxyDocumentFactory", True, "createXPathFilter", "", "", "Argument[0]", "xpath", "manual"]
diff --git a/java/ql/lib/ext/org.hibernate.model.yml b/java/ql/lib/ext/org.hibernate.model.yml
new file mode 100644
index 00000000000..aa550a510e4
--- /dev/null
+++ b/java/ql/lib/ext/org.hibernate.model.yml
@@ -0,0 +1,12 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSinkModel
+    data:
+      - ["org.hibernate", "QueryProducer", True, "createNativeQuery", "", "", "Argument[0]", "sql", "manual"]
+      - ["org.hibernate", "QueryProducer", True, "createQuery", "", "", "Argument[0]", "sql", "manual"]
+      - ["org.hibernate", "QueryProducer", True, "createSQLQuery", "", "", "Argument[0]", "sql", "manual"]
+      - ["org.hibernate", "Session", True, "createQuery", "", "", "Argument[0]", "sql", "manual"]
+      - ["org.hibernate", "Session", True, "createSQLQuery", "", "", "Argument[0]", "sql", "manual"]
+      - ["org.hibernate", "SharedSessionContract", True, "createQuery", "", "", "Argument[0]", "sql", "manual"]
+      - ["org.hibernate", "SharedSessionContract", True, "createSQLQuery", "", "", "Argument[0]", "sql", "manual"]
diff --git a/java/ql/lib/ext/org.jboss.logging.model.yml b/java/ql/lib/ext/org.jboss.logging.model.yml
new file mode 100644
index 00000000000..e0eb0cd3afe
--- /dev/null
+++ b/java/ql/lib/ext/org.jboss.logging.model.yml
@@ -0,0 +1,329 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSinkModel
+    data:
+      - ["org.jboss.logging", "BasicLogger", True, "debug", "(Object)", "", "Argument[0]", "logging", "manual"]
+      - ["org.jboss.logging", "BasicLogger", True, "debug", "(Object,Object[])", "", "Argument[0..1]", "logging", "manual"]
+      - ["org.jboss.logging", "BasicLogger", True, "debug", "(Object,Object[],Throwable)", "", "Argument[0..1]", "logging", "manual"]
+      - ["org.jboss.logging", "BasicLogger", True, "debug", "(Object,Throwable)", "", "Argument[0]", "logging", "manual"]
+      - ["org.jboss.logging", "BasicLogger", True, "debug", "(String,Object,Object[],Throwable)", "", "Argument[1..2]", "logging", "manual"]
+      - ["org.jboss.logging", "BasicLogger", True, "debug", "(String,Object,Throwable)", "", "Argument[1]", "logging", "manual"]
+      - ["org.jboss.logging", "BasicLogger", True, "debugf", "(String,Object)", "", "Argument[0..1]", "logging", "manual"]
+      - ["org.jboss.logging", "BasicLogger", True, "debugf", "(String,Object,Object)", "", "Argument[0..2]", "logging", "manual"]
+      - ["org.jboss.logging", "BasicLogger", True, "debugf", "(String,Object,Object,Object)", "", "Argument[0..3]", "logging", "manual"]
+      - ["org.jboss.logging", "BasicLogger", True, "debugf", "(String,Object,Object,Object,Object)", "", "Argument[0..4]", "logging", "manual"]
+      - ["org.jboss.logging", "BasicLogger", True, "debugf", "(String,Object[])", "", "Argument[0..1]", "logging", "manual"]
+      - ["org.jboss.logging", "BasicLogger", True, "debugf", "(Throwable,String,Object)", "", "Argument[1..2]", "logging", "manual"]
+      - ["org.jboss.logging", "BasicLogger", True, "debugf", "(Throwable,String,Object,Object)", "", "Argument[1..3]", "logging", "manual"]
+      - ["org.jboss.logging", "BasicLogger", True, "debugf", "(Throwable,String,Object,Object,Object)", "", "Argument[0..4]", "logging", "manual"]
+      - ["org.jboss.logging", "BasicLogger", True, "debugv", "(String,Object)", "", "Argument[0..1]", "logging", "manual"]
+      - ["org.jboss.logging", "BasicLogger", True, "debugv", "(String,Object,Object)", "", "Argument[0..2]", "logging", "manual"]
+      - ["org.jboss.logging", "BasicLogger", True, "debugv", "(String,Object,Object,Object)", "", "Argument[0..3]", "logging", "manual"]
+      - ["org.jboss.logging", "BasicLogger", True, "debugv", "(String,Object,Object,Object,Object)", "", "Argument[0..4]", "logging", "manual"]
+      - ["org.jboss.logging", "BasicLogger", True, "debugv", "(String,Object[])", "", "Argument[0..1]", "logging", "manual"]
+      - ["org.jboss.logging", "BasicLogger", True, "debugv", "(Throwable,String,Object)", "", "Argument[1..2]", "logging", "manual"]
+      - ["org.jboss.logging", "BasicLogger", True, "debugv", "(Throwable,String,Object,Object)", "", "Argument[1..3]", "logging", "manual"]
+      - ["org.jboss.logging", "BasicLogger", True, "debugv", "(Throwable,String,Object,Object,Object)", "", "Argument[0..4]", "logging", "manual"]
+      - ["org.jboss.logging", "BasicLogger", True, "error", "(Object)", "", "Argument[0]", "logging", "manual"]
+      - ["org.jboss.logging", "BasicLogger", True, "error", "(Object,Object[])", "", "Argument[0..1]", "logging", "manual"]
+      - ["org.jboss.logging", "BasicLogger", True, "error", "(Object,Object[],Throwable)", "", "Argument[0..1]", "logging", "manual"]
+      - ["org.jboss.logging", "BasicLogger", True, "error", "(Object,Throwable)", "", "Argument[0]", "logging", "manual"]
+      - ["org.jboss.logging", "BasicLogger", True, "error", "(String,Object,Object[],Throwable)", "", "Argument[1..2]", "logging", "manual"]
+      - ["org.jboss.logging", "BasicLogger", True, "error", "(String,Object,Throwable)", "", "Argument[1]", "logging", "manual"]
+      - ["org.jboss.logging", "BasicLogger", True, "errorf", "(String,Object)", "", "Argument[0..1]", "logging", "manual"]
+      - ["org.jboss.logging", "BasicLogger", True, "errorf", "(String,Object,Object)", "", "Argument[0..2]", "logging", "manual"]
+      - ["org.jboss.logging", "BasicLogger", True, "errorf", "(String,Object,Object,Object)", "", "Argument[0..3]", "logging", "manual"]
+      - ["org.jboss.logging", "BasicLogger", True, "errorf", "(String,Object,Object,Object,Object)", "", "Argument[0..4]", "logging", "manual"]
+      - ["org.jboss.logging", "BasicLogger", True, "errorf", "(String,Object[])", "", "Argument[0..1]", "logging", "manual"]
+      - ["org.jboss.logging", "BasicLogger", True, "errorf", "(Throwable,String,Object)", "", "Argument[1..2]", "logging", "manual"]
+      - ["org.jboss.logging", "BasicLogger", True, "errorf", "(Throwable,String,Object,Object)", "", "Argument[1..3]", "logging", "manual"]
+      - ["org.jboss.logging", "BasicLogger", True, "errorf", "(Throwable,String,Object,Object,Object)", "", "Argument[0..4]", "logging", "manual"]
+      - ["org.jboss.logging", "BasicLogger", True, "errorv", "(String,Object)", "", "Argument[0..1]", "logging", "manual"]
+      - ["org.jboss.logging", "BasicLogger", True, "errorv", "(String,Object,Object)", "", "Argument[0..2]", "logging", "manual"]
+      - ["org.jboss.logging", "BasicLogger", True, "errorv", "(String,Object,Object,Object)", "", "Argument[0..3]", "logging", "manual"]
+      - ["org.jboss.logging", "BasicLogger", True, "errorv", "(String,Object,Object,Object,Object)", "", "Argument[0..4]", "logging", "manual"]
+      - ["org.jboss.logging", "BasicLogger", True, "errorv", "(String,Object[])", "", "Argument[0..1]", "logging", "manual"]
+      - ["org.jboss.logging", "BasicLogger", True, "errorv", "(Throwable,String,Object)", "", "Argument[1..2]", "logging", "manual"]
+      - ["org.jboss.logging", "BasicLogger", True, "errorv", "(Throwable,String,Object,Object)", "", "Argument[1..3]", "logging", "manual"]
+      - ["org.jboss.logging", "BasicLogger", True, "errorv", "(Throwable,String,Object,Object,Object)", "", "Argument[0..4]", "logging", "manual"]
+      - ["org.jboss.logging", "BasicLogger", True, "fatal", "(Object)", "", "Argument[0]", "logging", "manual"]
+      - ["org.jboss.logging", "BasicLogger", True, "fatal", "(Object,Object[])", "", "Argument[0..1]", "logging", "manual"]
+      - ["org.jboss.logging", "BasicLogger", True, "fatal", "(Object,Object[],Throwable)", "", "Argument[0..1]", "logging", "manual"]
+      - ["org.jboss.logging", "BasicLogger", True, "fatal", "(Object,Throwable)", "", "Argument[0]", "logging", "manual"]
+      - ["org.jboss.logging", "BasicLogger", True, "fatal", "(String,Object,Object[],Throwable)", "", "Argument[1..2]", "logging", "manual"]
+      - ["org.jboss.logging", "BasicLogger", True, "fatal", "(String,Object,Throwable)", "", "Argument[1]", "logging", "manual"]
+      - ["org.jboss.logging", "BasicLogger", True, "fatalf", "(String,Object)", "", "Argument[0..1]", "logging", "manual"]
+      - ["org.jboss.logging", "BasicLogger", True, "fatalf", "(String,Object,Object)", "", "Argument[0..2]", "logging", "manual"]
+      - ["org.jboss.logging", "BasicLogger", True, "fatalf", "(String,Object,Object,Object)", "", "Argument[0..3]", "logging", "manual"]
+      - ["org.jboss.logging", "BasicLogger", True, "fatalf", "(String,Object,Object,Object,Object)", "", "Argument[0..4]", "logging", "manual"]
+      - ["org.jboss.logging", "BasicLogger", True, "fatalf", "(String,Object[])", "", "Argument[0..1]", "logging", "manual"]
+      - ["org.jboss.logging", "BasicLogger", True, "fatalf", "(Throwable,String,Object)", "", "Argument[1..2]", "logging", "manual"]
+      - ["org.jboss.logging", "BasicLogger", True, "fatalf", "(Throwable,String,Object,Object)", "", "Argument[1..3]", "logging", "manual"]
+      - ["org.jboss.logging", "BasicLogger", True, "fatalf", "(Throwable,String,Object,Object,Object)", "", "Argument[0..4]", "logging", "manual"]
+      - ["org.jboss.logging", "BasicLogger", True, "fatalv", "(String,Object)", "", "Argument[0..1]", "logging", "manual"]
+      - ["org.jboss.logging", "BasicLogger", True, "fatalv", "(String,Object,Object)", "", "Argument[0..2]", "logging", "manual"]
+      - ["org.jboss.logging", "BasicLogger", True, "fatalv", "(String,Object,Object,Object)", "", "Argument[0..3]", "logging", "manual"]
+      - ["org.jboss.logging", "BasicLogger", True, "fatalv", "(String,Object,Object,Object,Object)", "", "Argument[0..4]", "logging", "manual"]
+      - ["org.jboss.logging", "BasicLogger", True, "fatalv", "(String,Object[])", "", "Argument[0..1]", "logging", "manual"]
+      - ["org.jboss.logging", "BasicLogger", True, "fatalv", "(Throwable,String,Object)", "", "Argument[1..2]", "logging", "manual"]
+      - ["org.jboss.logging", "BasicLogger", True, "fatalv", "(Throwable,String,Object,Object)", "", "Argument[1..3]", "logging", "manual"]
+      - ["org.jboss.logging", "BasicLogger", True, "fatalv", "(Throwable,String,Object,Object,Object)", "", "Argument[0..4]", "logging", "manual"]
+      - ["org.jboss.logging", "BasicLogger", True, "info", "(Object)", "", "Argument[0]", "logging", "manual"]
+      - ["org.jboss.logging", "BasicLogger", True, "info", "(Object,Object[])", "", "Argument[0..1]", "logging", "manual"]
+      - ["org.jboss.logging", "BasicLogger", True, "info", "(Object,Object[],Throwable)", "", "Argument[0..1]", "logging", "manual"]
+      - ["org.jboss.logging", "BasicLogger", True, "info", "(Object,Throwable)", "", "Argument[0]", "logging", "manual"]
+      - ["org.jboss.logging", "BasicLogger", True, "info", "(String,Object,Object[],Throwable)", "", "Argument[1..2]", "logging", "manual"]
+      - ["org.jboss.logging", "BasicLogger", True, "info", "(String,Object,Throwable)", "", "Argument[1]", "logging", "manual"]
+      - ["org.jboss.logging", "BasicLogger", True, "infof", "(String,Object)", "", "Argument[0..1]", "logging", "manual"]
+      - ["org.jboss.logging", "BasicLogger", True, "infof", "(String,Object,Object)", "", "Argument[0..2]", "logging", "manual"]
+      - ["org.jboss.logging", "BasicLogger", True, "infof", "(String,Object,Object,Object)", "", "Argument[0..3]", "logging", "manual"]
+      - ["org.jboss.logging", "BasicLogger", True, "infof", "(String,Object,Object,Object,Object)", "", "Argument[0..4]", "logging", "manual"]
+      - ["org.jboss.logging", "BasicLogger", True, "infof", "(String,Object[])", "", "Argument[0..1]", "logging", "manual"]
+      - ["org.jboss.logging", "BasicLogger", True, "infof", "(Throwable,String,Object)", "", "Argument[1..2]", "logging", "manual"]
+      - ["org.jboss.logging", "BasicLogger", True, "infof", "(Throwable,String,Object,Object)", "", "Argument[1..3]", "logging", "manual"]
+      - ["org.jboss.logging", "BasicLogger", True, "infof", "(Throwable,String,Object,Object,Object)", "", "Argument[0..4]", "logging", "manual"]
+      - ["org.jboss.logging", "BasicLogger", True, "infov", "(String,Object)", "", "Argument[0..1]", "logging", "manual"]
+      - ["org.jboss.logging", "BasicLogger", True, "infov", "(String,Object,Object)", "", "Argument[0..2]", "logging", "manual"]
+      - ["org.jboss.logging", "BasicLogger", True, "infov", "(String,Object,Object,Object)", "", "Argument[0..3]", "logging", "manual"]
+      - ["org.jboss.logging", "BasicLogger", True, "infov", "(String,Object,Object,Object,Object)", "", "Argument[0..4]", "logging", "manual"]
+      - ["org.jboss.logging", "BasicLogger", True, "infov", "(String,Object[])", "", "Argument[0..1]", "logging", "manual"]
+      - ["org.jboss.logging", "BasicLogger", True, "infov", "(Throwable,String,Object)", "", "Argument[1..2]", "logging", "manual"]
+      - ["org.jboss.logging", "BasicLogger", True, "infov", "(Throwable,String,Object,Object)", "", "Argument[1..3]", "logging", "manual"]
+      - ["org.jboss.logging", "BasicLogger", True, "infov", "(Throwable,String,Object,Object,Object)", "", "Argument[0..4]", "logging", "manual"]
+      - ["org.jboss.logging", "BasicLogger", True, "log", "(Level,Object)", "", "Argument[1]", "logging", "manual"]
+      - ["org.jboss.logging", "BasicLogger", True, "log", "(Level,Object,Object[])", "", "Argument[1..2]", "logging", "manual"]
+      - ["org.jboss.logging", "BasicLogger", True, "log", "(Level,Object,Object[],Throwable)", "", "Argument[1..2]", "logging", "manual"]
+      - ["org.jboss.logging", "BasicLogger", True, "log", "(Level,Object,Throwable)", "", "Argument[1]", "logging", "manual"]
+      - ["org.jboss.logging", "BasicLogger", True, "log", "(Level,String,Object,Throwable)", "", "Argument[2]", "logging", "manual"]
+      - ["org.jboss.logging", "BasicLogger", True, "log", "(String,Level,Object,Object[],Throwable)", "", "Argument[2..3]", "logging", "manual"]
+      - ["org.jboss.logging", "BasicLogger", True, "logf", "(Level,String,Object)", "", "Argument[1..2]", "logging", "manual"]
+      - ["org.jboss.logging", "BasicLogger", True, "logf", "(Level,String,Object,Object)", "", "Argument[1..3]", "logging", "manual"]
+      - ["org.jboss.logging", "BasicLogger", True, "logf", "(Level,String,Object,Object,Object)", "", "Argument[1..4]", "logging", "manual"]
+      - ["org.jboss.logging", "BasicLogger", True, "logf", "(Level,String,Object,Object,Object,Object)", "", "Argument[1..5]", "logging", "manual"]
+      - ["org.jboss.logging", "BasicLogger", True, "logf", "(Level,String,Object[])", "", "Argument[1..2]", "logging", "manual"]
+      - ["org.jboss.logging", "BasicLogger", True, "logf", "(Level,Throwable,String,Object)", "", "Argument[2..3]", "logging", "manual"]
+      - ["org.jboss.logging", "BasicLogger", True, "logf", "(Level,Throwable,String,Object,Object)", "", "Argument[2..4]", "logging", "manual"]
+      - ["org.jboss.logging", "BasicLogger", True, "logf", "(Level,Throwable,String,Object,Object,Object)", "", "Argument[1..5]", "logging", "manual"]
+      - ["org.jboss.logging", "BasicLogger", True, "logf", "(String,Level,Throwable,String,Object)", "", "Argument[3..4]", "logging", "manual"]
+      - ["org.jboss.logging", "BasicLogger", True, "logf", "(String,Level,Throwable,String,Object,Object)", "", "Argument[3..5]", "logging", "manual"]
+      - ["org.jboss.logging", "BasicLogger", True, "logf", "(String,Level,Throwable,String,Object,Object,Object)", "", "Argument[3..6]", "logging", "manual"]
+      - ["org.jboss.logging", "BasicLogger", True, "logf", "(String,Level,Throwable,String,Object[])", "", "Argument[3..4]", "logging", "manual"]
+      - ["org.jboss.logging", "BasicLogger", True, "logv", "(Level,String,Object)", "", "Argument[1..2]", "logging", "manual"]
+      - ["org.jboss.logging", "BasicLogger", True, "logv", "(Level,String,Object,Object)", "", "Argument[1..3]", "logging", "manual"]
+      - ["org.jboss.logging", "BasicLogger", True, "logv", "(Level,String,Object,Object,Object)", "", "Argument[1..4]", "logging", "manual"]
+      - ["org.jboss.logging", "BasicLogger", True, "logv", "(Level,String,Object,Object,Object,Object)", "", "Argument[1..5]", "logging", "manual"]
+      - ["org.jboss.logging", "BasicLogger", True, "logv", "(Level,String,Object[])", "", "Argument[1..2]", "logging", "manual"]
+      - ["org.jboss.logging", "BasicLogger", True, "logv", "(Level,Throwable,String,Object)", "", "Argument[2..3]", "logging", "manual"]
+      - ["org.jboss.logging", "BasicLogger", True, "logv", "(Level,Throwable,String,Object,Object)", "", "Argument[2..4]", "logging", "manual"]
+      - ["org.jboss.logging", "BasicLogger", True, "logv", "(Level,Throwable,String,Object,Object,Object)", "", "Argument[1..5]", "logging", "manual"]
+      - ["org.jboss.logging", "BasicLogger", True, "logv", "(String,Level,Throwable,String,Object)", "", "Argument[3..4]", "logging", "manual"]
+      - ["org.jboss.logging", "BasicLogger", True, "logv", "(String,Level,Throwable,String,Object,Object)", "", "Argument[3..5]", "logging", "manual"]
+      - ["org.jboss.logging", "BasicLogger", True, "logv", "(String,Level,Throwable,String,Object,Object,Object)", "", "Argument[3..6]", "logging", "manual"]
+      - ["org.jboss.logging", "BasicLogger", True, "logv", "(String,Level,Throwable,String,Object[])", "", "Argument[3..4]", "logging", "manual"]
+      - ["org.jboss.logging", "BasicLogger", True, "trace", "(Object)", "", "Argument[0]", "logging", "manual"]
+      - ["org.jboss.logging", "BasicLogger", True, "trace", "(Object,Object[])", "", "Argument[0..1]", "logging", "manual"]
+      - ["org.jboss.logging", "BasicLogger", True, "trace", "(Object,Object[],Throwable)", "", "Argument[0..1]", "logging", "manual"]
+      - ["org.jboss.logging", "BasicLogger", True, "trace", "(Object,Throwable)", "", "Argument[0]", "logging", "manual"]
+      - ["org.jboss.logging", "BasicLogger", True, "trace", "(String,Object,Object[],Throwable)", "", "Argument[1..2]", "logging", "manual"]
+      - ["org.jboss.logging", "BasicLogger", True, "trace", "(String,Object,Throwable)", "", "Argument[1]", "logging", "manual"]
+      - ["org.jboss.logging", "BasicLogger", True, "tracef", "(String,Object)", "", "Argument[0..1]", "logging", "manual"]
+      - ["org.jboss.logging", "BasicLogger", True, "tracef", "(String,Object,Object)", "", "Argument[0..2]", "logging", "manual"]
+      - ["org.jboss.logging", "BasicLogger", True, "tracef", "(String,Object,Object,Object)", "", "Argument[0..3]", "logging", "manual"]
+      - ["org.jboss.logging", "BasicLogger", True, "tracef", "(String,Object,Object,Object,Object)", "", "Argument[0..4]", "logging", "manual"]
+      - ["org.jboss.logging", "BasicLogger", True, "tracef", "(String,Object[])", "", "Argument[0..1]", "logging", "manual"]
+      - ["org.jboss.logging", "BasicLogger", True, "tracef", "(Throwable,String,Object)", "", "Argument[1..2]", "logging", "manual"]
+      - ["org.jboss.logging", "BasicLogger", True, "tracef", "(Throwable,String,Object,Object)", "", "Argument[1..3]", "logging", "manual"]
+      - ["org.jboss.logging", "BasicLogger", True, "tracef", "(Throwable,String,Object,Object,Object)", "", "Argument[0..4]", "logging", "manual"]
+      - ["org.jboss.logging", "BasicLogger", True, "tracev", "(String,Object)", "", "Argument[0..1]", "logging", "manual"]
+      - ["org.jboss.logging", "BasicLogger", True, "tracev", "(String,Object,Object)", "", "Argument[0..2]", "logging", "manual"]
+      - ["org.jboss.logging", "BasicLogger", True, "tracev", "(String,Object,Object,Object)", "", "Argument[0..3]", "logging", "manual"]
+      - ["org.jboss.logging", "BasicLogger", True, "tracev", "(String,Object,Object,Object,Object)", "", "Argument[0..4]", "logging", "manual"]
+      - ["org.jboss.logging", "BasicLogger", True, "tracev", "(String,Object[])", "", "Argument[0..1]", "logging", "manual"]
+      - ["org.jboss.logging", "BasicLogger", True, "tracev", "(Throwable,String,Object)", "", "Argument[1..2]", "logging", "manual"]
+      - ["org.jboss.logging", "BasicLogger", True, "tracev", "(Throwable,String,Object,Object)", "", "Argument[1..3]", "logging", "manual"]
+      - ["org.jboss.logging", "BasicLogger", True, "tracev", "(Throwable,String,Object,Object,Object)", "", "Argument[0..4]", "logging", "manual"]
+      - ["org.jboss.logging", "BasicLogger", True, "warn", "(Object)", "", "Argument[0]", "logging", "manual"]
+      - ["org.jboss.logging", "BasicLogger", True, "warn", "(Object,Object[])", "", "Argument[0..1]", "logging", "manual"]
+      - ["org.jboss.logging", "BasicLogger", True, "warn", "(Object,Object[],Throwable)", "", "Argument[0..1]", "logging", "manual"]
+      - ["org.jboss.logging", "BasicLogger", True, "warn", "(Object,Throwable)", "", "Argument[0]", "logging", "manual"]
+      - ["org.jboss.logging", "BasicLogger", True, "warn", "(String,Object,Object[],Throwable)", "", "Argument[1..2]", "logging", "manual"]
+      - ["org.jboss.logging", "BasicLogger", True, "warn", "(String,Object,Throwable)", "", "Argument[1]", "logging", "manual"]
+      - ["org.jboss.logging", "BasicLogger", True, "warnf", "(String,Object)", "", "Argument[0..1]", "logging", "manual"]
+      - ["org.jboss.logging", "BasicLogger", True, "warnf", "(String,Object,Object)", "", "Argument[0..2]", "logging", "manual"]
+      - ["org.jboss.logging", "BasicLogger", True, "warnf", "(String,Object,Object,Object)", "", "Argument[0..3]", "logging", "manual"]
+      - ["org.jboss.logging", "BasicLogger", True, "warnf", "(String,Object,Object,Object,Object)", "", "Argument[0..4]", "logging", "manual"]
+      - ["org.jboss.logging", "BasicLogger", True, "warnf", "(String,Object[])", "", "Argument[0..1]", "logging", "manual"]
+      - ["org.jboss.logging", "BasicLogger", True, "warnf", "(Throwable,String,Object)", "", "Argument[1..2]", "logging", "manual"]
+      - ["org.jboss.logging", "BasicLogger", True, "warnf", "(Throwable,String,Object,Object)", "", "Argument[1..3]", "logging", "manual"]
+      - ["org.jboss.logging", "BasicLogger", True, "warnf", "(Throwable,String,Object,Object,Object)", "", "Argument[0..4]", "logging", "manual"]
+      - ["org.jboss.logging", "BasicLogger", True, "warnv", "(String,Object)", "", "Argument[0..1]", "logging", "manual"]
+      - ["org.jboss.logging", "BasicLogger", True, "warnv", "(String,Object,Object)", "", "Argument[0..2]", "logging", "manual"]
+      - ["org.jboss.logging", "BasicLogger", True, "warnv", "(String,Object,Object,Object)", "", "Argument[0..3]", "logging", "manual"]
+      - ["org.jboss.logging", "BasicLogger", True, "warnv", "(String,Object,Object,Object,Object)", "", "Argument[0..4]", "logging", "manual"]
+      - ["org.jboss.logging", "BasicLogger", True, "warnv", "(String,Object[])", "", "Argument[0..1]", "logging", "manual"]
+      - ["org.jboss.logging", "BasicLogger", True, "warnv", "(Throwable,String,Object)", "", "Argument[1..2]", "logging", "manual"]
+      - ["org.jboss.logging", "BasicLogger", True, "warnv", "(Throwable,String,Object,Object)", "", "Argument[1..3]", "logging", "manual"]
+      - ["org.jboss.logging", "BasicLogger", True, "warnv", "(Throwable,String,Object,Object,Object)", "", "Argument[0..4]", "logging", "manual"]
+      - ["org.jboss.logging", "Logger", True, "debug", "(Object)", "", "Argument[0]", "logging", "manual"]
+      - ["org.jboss.logging", "Logger", True, "debug", "(Object,Object[])", "", "Argument[0..1]", "logging", "manual"]
+      - ["org.jboss.logging", "Logger", True, "debug", "(Object,Object[],Throwable)", "", "Argument[0..1]", "logging", "manual"]
+      - ["org.jboss.logging", "Logger", True, "debug", "(Object,Throwable)", "", "Argument[0]", "logging", "manual"]
+      - ["org.jboss.logging", "Logger", True, "debug", "(String,Object,Object[],Throwable)", "", "Argument[1..2]", "logging", "manual"]
+      - ["org.jboss.logging", "Logger", True, "debug", "(String,Object,Throwable)", "", "Argument[1]", "logging", "manual"]
+      - ["org.jboss.logging", "Logger", True, "debugf", "(String,Object)", "", "Argument[0..1]", "logging", "manual"]
+      - ["org.jboss.logging", "Logger", True, "debugf", "(String,Object,Object)", "", "Argument[0..2]", "logging", "manual"]
+      - ["org.jboss.logging", "Logger", True, "debugf", "(String,Object,Object,Object)", "", "Argument[0..3]", "logging", "manual"]
+      - ["org.jboss.logging", "Logger", True, "debugf", "(String,Object,Object,Object,Object)", "", "Argument[0..4]", "logging", "manual"]
+      - ["org.jboss.logging", "Logger", True, "debugf", "(String,Object[])", "", "Argument[0..1]", "logging", "manual"]
+      - ["org.jboss.logging", "Logger", True, "debugf", "(Throwable,String,Object)", "", "Argument[1..2]", "logging", "manual"]
+      - ["org.jboss.logging", "Logger", True, "debugf", "(Throwable,String,Object,Object)", "", "Argument[1..3]", "logging", "manual"]
+      - ["org.jboss.logging", "Logger", True, "debugf", "(Throwable,String,Object,Object,Object)", "", "Argument[0..4]", "logging", "manual"]
+      - ["org.jboss.logging", "Logger", True, "debugv", "(String,Object)", "", "Argument[0..1]", "logging", "manual"]
+      - ["org.jboss.logging", "Logger", True, "debugv", "(String,Object,Object)", "", "Argument[0..2]", "logging", "manual"]
+      - ["org.jboss.logging", "Logger", True, "debugv", "(String,Object,Object,Object)", "", "Argument[0..3]", "logging", "manual"]
+      - ["org.jboss.logging", "Logger", True, "debugv", "(String,Object,Object,Object,Object)", "", "Argument[0..4]", "logging", "manual"]
+      - ["org.jboss.logging", "Logger", True, "debugv", "(String,Object[])", "", "Argument[0..1]", "logging", "manual"]
+      - ["org.jboss.logging", "Logger", True, "debugv", "(Throwable,String,Object)", "", "Argument[1..2]", "logging", "manual"]
+      - ["org.jboss.logging", "Logger", True, "debugv", "(Throwable,String,Object,Object)", "", "Argument[1..3]", "logging", "manual"]
+      - ["org.jboss.logging", "Logger", True, "debugv", "(Throwable,String,Object,Object,Object)", "", "Argument[0..4]", "logging", "manual"]
+      - ["org.jboss.logging", "Logger", True, "error", "(Object)", "", "Argument[0]", "logging", "manual"]
+      - ["org.jboss.logging", "Logger", True, "error", "(Object,Object[])", "", "Argument[0..1]", "logging", "manual"]
+      - ["org.jboss.logging", "Logger", True, "error", "(Object,Object[],Throwable)", "", "Argument[0..1]", "logging", "manual"]
+      - ["org.jboss.logging", "Logger", True, "error", "(Object,Throwable)", "", "Argument[0]", "logging", "manual"]
+      - ["org.jboss.logging", "Logger", True, "error", "(String,Object,Object[],Throwable)", "", "Argument[1..2]", "logging", "manual"]
+      - ["org.jboss.logging", "Logger", True, "error", "(String,Object,Throwable)", "", "Argument[1]", "logging", "manual"]
+      - ["org.jboss.logging", "Logger", True, "errorf", "(String,Object)", "", "Argument[0..1]", "logging", "manual"]
+      - ["org.jboss.logging", "Logger", True, "errorf", "(String,Object,Object)", "", "Argument[0..2]", "logging", "manual"]
+      - ["org.jboss.logging", "Logger", True, "errorf", "(String,Object,Object,Object)", "", "Argument[0..3]", "logging", "manual"]
+      - ["org.jboss.logging", "Logger", True, "errorf", "(String,Object,Object,Object,Object)", "", "Argument[0..4]", "logging", "manual"]
+      - ["org.jboss.logging", "Logger", True, "errorf", "(String,Object[])", "", "Argument[0..1]", "logging", "manual"]
+      - ["org.jboss.logging", "Logger", True, "errorf", "(Throwable,String,Object)", "", "Argument[1..2]", "logging", "manual"]
+      - ["org.jboss.logging", "Logger", True, "errorf", "(Throwable,String,Object,Object)", "", "Argument[1..3]", "logging", "manual"]
+      - ["org.jboss.logging", "Logger", True, "errorf", "(Throwable,String,Object,Object,Object)", "", "Argument[0..4]", "logging", "manual"]
+      - ["org.jboss.logging", "Logger", True, "errorv", "(String,Object)", "", "Argument[0..1]", "logging", "manual"]
+      - ["org.jboss.logging", "Logger", True, "errorv", "(String,Object,Object)", "", "Argument[0..2]", "logging", "manual"]
+      - ["org.jboss.logging", "Logger", True, "errorv", "(String,Object,Object,Object)", "", "Argument[0..3]", "logging", "manual"]
+      - ["org.jboss.logging", "Logger", True, "errorv", "(String,Object,Object,Object,Object)", "", "Argument[0..4]", "logging", "manual"]
+      - ["org.jboss.logging", "Logger", True, "errorv", "(String,Object[])", "", "Argument[0..1]", "logging", "manual"]
+      - ["org.jboss.logging", "Logger", True, "errorv", "(Throwable,String,Object)", "", "Argument[1..2]", "logging", "manual"]
+      - ["org.jboss.logging", "Logger", True, "errorv", "(Throwable,String,Object,Object)", "", "Argument[1..3]", "logging", "manual"]
+      - ["org.jboss.logging", "Logger", True, "errorv", "(Throwable,String,Object,Object,Object)", "", "Argument[0..4]", "logging", "manual"]
+      - ["org.jboss.logging", "Logger", True, "fatal", "(Object)", "", "Argument[0]", "logging", "manual"]
+      - ["org.jboss.logging", "Logger", True, "fatal", "(Object,Object[])", "", "Argument[0..1]", "logging", "manual"]
+      - ["org.jboss.logging", "Logger", True, "fatal", "(Object,Object[],Throwable)", "", "Argument[0..1]", "logging", "manual"]
+      - ["org.jboss.logging", "Logger", True, "fatal", "(Object,Throwable)", "", "Argument[0]", "logging", "manual"]
+      - ["org.jboss.logging", "Logger", True, "fatal", "(String,Object,Object[],Throwable)", "", "Argument[1..2]", "logging", "manual"]
+      - ["org.jboss.logging", "Logger", True, "fatal", "(String,Object,Throwable)", "", "Argument[1]", "logging", "manual"]
+      - ["org.jboss.logging", "Logger", True, "fatalf", "(String,Object)", "", "Argument[0..1]", "logging", "manual"]
+      - ["org.jboss.logging", "Logger", True, "fatalf", "(String,Object,Object)", "", "Argument[0..2]", "logging", "manual"]
+      - ["org.jboss.logging", "Logger", True, "fatalf", "(String,Object,Object,Object)", "", "Argument[0..3]", "logging", "manual"]
+      - ["org.jboss.logging", "Logger", True, "fatalf", "(String,Object,Object,Object,Object)", "", "Argument[0..4]", "logging", "manual"]
+      - ["org.jboss.logging", "Logger", True, "fatalf", "(String,Object[])", "", "Argument[0..1]", "logging", "manual"]
+      - ["org.jboss.logging", "Logger", True, "fatalf", "(Throwable,String,Object)", "", "Argument[1..2]", "logging", "manual"]
+      - ["org.jboss.logging", "Logger", True, "fatalf", "(Throwable,String,Object,Object)", "", "Argument[1..3]", "logging", "manual"]
+      - ["org.jboss.logging", "Logger", True, "fatalf", "(Throwable,String,Object,Object,Object)", "", "Argument[0..4]", "logging", "manual"]
+      - ["org.jboss.logging", "Logger", True, "fatalv", "(String,Object)", "", "Argument[0..1]", "logging", "manual"]
+      - ["org.jboss.logging", "Logger", True, "fatalv", "(String,Object,Object)", "", "Argument[0..2]", "logging", "manual"]
+      - ["org.jboss.logging", "Logger", True, "fatalv", "(String,Object,Object,Object)", "", "Argument[0..3]", "logging", "manual"]
+      - ["org.jboss.logging", "Logger", True, "fatalv", "(String,Object,Object,Object,Object)", "", "Argument[0..4]", "logging", "manual"]
+      - ["org.jboss.logging", "Logger", True, "fatalv", "(String,Object[])", "", "Argument[0..1]", "logging", "manual"]
+      - ["org.jboss.logging", "Logger", True, "fatalv", "(Throwable,String,Object)", "", "Argument[1..2]", "logging", "manual"]
+      - ["org.jboss.logging", "Logger", True, "fatalv", "(Throwable,String,Object,Object)", "", "Argument[1..3]", "logging", "manual"]
+      - ["org.jboss.logging", "Logger", True, "fatalv", "(Throwable,String,Object,Object,Object)", "", "Argument[0..4]", "logging", "manual"]
+      - ["org.jboss.logging", "Logger", True, "info", "(Object)", "", "Argument[0]", "logging", "manual"]
+      - ["org.jboss.logging", "Logger", True, "info", "(Object,Object[])", "", "Argument[0..1]", "logging", "manual"]
+      - ["org.jboss.logging", "Logger", True, "info", "(Object,Object[],Throwable)", "", "Argument[0..1]", "logging", "manual"]
+      - ["org.jboss.logging", "Logger", True, "info", "(Object,Throwable)", "", "Argument[0]", "logging", "manual"]
+      - ["org.jboss.logging", "Logger", True, "info", "(String,Object,Object[],Throwable)", "", "Argument[1..2]", "logging", "manual"]
+      - ["org.jboss.logging", "Logger", True, "info", "(String,Object,Throwable)", "", "Argument[1]", "logging", "manual"]
+      - ["org.jboss.logging", "Logger", True, "infof", "(String,Object)", "", "Argument[0..1]", "logging", "manual"]
+      - ["org.jboss.logging", "Logger", True, "infof", "(String,Object,Object)", "", "Argument[0..2]", "logging", "manual"]
+      - ["org.jboss.logging", "Logger", True, "infof", "(String,Object,Object,Object)", "", "Argument[0..3]", "logging", "manual"]
+      - ["org.jboss.logging", "Logger", True, "infof", "(String,Object,Object,Object,Object)", "", "Argument[0..4]", "logging", "manual"]
+      - ["org.jboss.logging", "Logger", True, "infof", "(String,Object[])", "", "Argument[0..1]", "logging", "manual"]
+      - ["org.jboss.logging", "Logger", True, "infof", "(Throwable,String,Object)", "", "Argument[1..2]", "logging", "manual"]
+      - ["org.jboss.logging", "Logger", True, "infof", "(Throwable,String,Object,Object)", "", "Argument[1..3]", "logging", "manual"]
+      - ["org.jboss.logging", "Logger", True, "infof", "(Throwable,String,Object,Object,Object)", "", "Argument[0..4]", "logging", "manual"]
+      - ["org.jboss.logging", "Logger", True, "infov", "(String,Object)", "", "Argument[0..1]", "logging", "manual"]
+      - ["org.jboss.logging", "Logger", True, "infov", "(String,Object,Object)", "", "Argument[0..2]", "logging", "manual"]
+      - ["org.jboss.logging", "Logger", True, "infov", "(String,Object,Object,Object)", "", "Argument[0..3]", "logging", "manual"]
+      - ["org.jboss.logging", "Logger", True, "infov", "(String,Object,Object,Object,Object)", "", "Argument[0..4]", "logging", "manual"]
+      - ["org.jboss.logging", "Logger", True, "infov", "(String,Object[])", "", "Argument[0..1]", "logging", "manual"]
+      - ["org.jboss.logging", "Logger", True, "infov", "(Throwable,String,Object)", "", "Argument[1..2]", "logging", "manual"]
+      - ["org.jboss.logging", "Logger", True, "infov", "(Throwable,String,Object,Object)", "", "Argument[1..3]", "logging", "manual"]
+      - ["org.jboss.logging", "Logger", True, "infov", "(Throwable,String,Object,Object,Object)", "", "Argument[0..4]", "logging", "manual"]
+      - ["org.jboss.logging", "Logger", True, "log", "(Level,Object)", "", "Argument[1]", "logging", "manual"]
+      - ["org.jboss.logging", "Logger", True, "log", "(Level,Object,Object[])", "", "Argument[1..2]", "logging", "manual"]
+      - ["org.jboss.logging", "Logger", True, "log", "(Level,Object,Object[],Throwable)", "", "Argument[1..2]", "logging", "manual"]
+      - ["org.jboss.logging", "Logger", True, "log", "(Level,Object,Throwable)", "", "Argument[1]", "logging", "manual"]
+      - ["org.jboss.logging", "Logger", True, "log", "(Level,String,Object,Throwable)", "", "Argument[2]", "logging", "manual"]
+      - ["org.jboss.logging", "Logger", True, "log", "(String,Level,Object,Object[],Throwable)", "", "Argument[2..3]", "logging", "manual"]
+      - ["org.jboss.logging", "Logger", True, "logf", "(Level,String,Object)", "", "Argument[1..2]", "logging", "manual"]
+      - ["org.jboss.logging", "Logger", True, "logf", "(Level,String,Object,Object)", "", "Argument[1..3]", "logging", "manual"]
+      - ["org.jboss.logging", "Logger", True, "logf", "(Level,String,Object,Object,Object)", "", "Argument[1..4]", "logging", "manual"]
+      - ["org.jboss.logging", "Logger", True, "logf", "(Level,String,Object,Object,Object,Object)", "", "Argument[1..5]", "logging", "manual"]
+      - ["org.jboss.logging", "Logger", True, "logf", "(Level,String,Object[])", "", "Argument[1..2]", "logging", "manual"]
+      - ["org.jboss.logging", "Logger", True, "logf", "(Level,Throwable,String,Object)", "", "Argument[2..3]", "logging", "manual"]
+      - ["org.jboss.logging", "Logger", True, "logf", "(Level,Throwable,String,Object,Object)", "", "Argument[2..4]", "logging", "manual"]
+      - ["org.jboss.logging", "Logger", True, "logf", "(Level,Throwable,String,Object,Object,Object)", "", "Argument[1..5]", "logging", "manual"]
+      - ["org.jboss.logging", "Logger", True, "logf", "(String,Level,Throwable,String,Object)", "", "Argument[3..4]", "logging", "manual"]
+      - ["org.jboss.logging", "Logger", True, "logf", "(String,Level,Throwable,String,Object,Object)", "", "Argument[3..5]", "logging", "manual"]
+      - ["org.jboss.logging", "Logger", True, "logf", "(String,Level,Throwable,String,Object,Object,Object)", "", "Argument[3..6]", "logging", "manual"]
+      - ["org.jboss.logging", "Logger", True, "logf", "(String,Level,Throwable,String,Object[])", "", "Argument[3..4]", "logging", "manual"]
+      - ["org.jboss.logging", "Logger", True, "logv", "(Level,String,Object)", "", "Argument[1..2]", "logging", "manual"]
+      - ["org.jboss.logging", "Logger", True, "logv", "(Level,String,Object,Object)", "", "Argument[1..3]", "logging", "manual"]
+      - ["org.jboss.logging", "Logger", True, "logv", "(Level,String,Object,Object,Object)", "", "Argument[1..4]", "logging", "manual"]
+      - ["org.jboss.logging", "Logger", True, "logv", "(Level,String,Object,Object,Object,Object)", "", "Argument[1..5]", "logging", "manual"]
+      - ["org.jboss.logging", "Logger", True, "logv", "(Level,String,Object[])", "", "Argument[1..2]", "logging", "manual"]
+      - ["org.jboss.logging", "Logger", True, "logv", "(Level,Throwable,String,Object)", "", "Argument[2..3]", "logging", "manual"]
+      - ["org.jboss.logging", "Logger", True, "logv", "(Level,Throwable,String,Object,Object)", "", "Argument[2..4]", "logging", "manual"]
+      - ["org.jboss.logging", "Logger", True, "logv", "(Level,Throwable,String,Object,Object,Object)", "", "Argument[1..5]", "logging", "manual"]
+      - ["org.jboss.logging", "Logger", True, "logv", "(String,Level,Throwable,String,Object)", "", "Argument[3..4]", "logging", "manual"]
+      - ["org.jboss.logging", "Logger", True, "logv", "(String,Level,Throwable,String,Object,Object)", "", "Argument[3..5]", "logging", "manual"]
+      - ["org.jboss.logging", "Logger", True, "logv", "(String,Level,Throwable,String,Object,Object,Object)", "", "Argument[3..6]", "logging", "manual"]
+      - ["org.jboss.logging", "Logger", True, "logv", "(String,Level,Throwable,String,Object[])", "", "Argument[3..4]", "logging", "manual"]
+      - ["org.jboss.logging", "Logger", True, "trace", "(Object)", "", "Argument[0]", "logging", "manual"]
+      - ["org.jboss.logging", "Logger", True, "trace", "(Object,Object[])", "", "Argument[0..1]", "logging", "manual"]
+      - ["org.jboss.logging", "Logger", True, "trace", "(Object,Object[],Throwable)", "", "Argument[0..1]", "logging", "manual"]
+      - ["org.jboss.logging", "Logger", True, "trace", "(Object,Throwable)", "", "Argument[0]", "logging", "manual"]
+      - ["org.jboss.logging", "Logger", True, "trace", "(String,Object,Object[],Throwable)", "", "Argument[1..2]", "logging", "manual"]
+      - ["org.jboss.logging", "Logger", True, "trace", "(String,Object,Throwable)", "", "Argument[1]", "logging", "manual"]
+      - ["org.jboss.logging", "Logger", True, "tracef", "(String,Object)", "", "Argument[0..1]", "logging", "manual"]
+      - ["org.jboss.logging", "Logger", True, "tracef", "(String,Object,Object)", "", "Argument[0..2]", "logging", "manual"]
+      - ["org.jboss.logging", "Logger", True, "tracef", "(String,Object,Object,Object)", "", "Argument[0..3]", "logging", "manual"]
+      - ["org.jboss.logging", "Logger", True, "tracef", "(String,Object,Object,Object,Object)", "", "Argument[0..4]", "logging", "manual"]
+      - ["org.jboss.logging", "Logger", True, "tracef", "(String,Object[])", "", "Argument[0..1]", "logging", "manual"]
+      - ["org.jboss.logging", "Logger", True, "tracef", "(Throwable,String,Object)", "", "Argument[1..2]", "logging", "manual"]
+      - ["org.jboss.logging", "Logger", True, "tracef", "(Throwable,String,Object,Object)", "", "Argument[1..3]", "logging", "manual"]
+      - ["org.jboss.logging", "Logger", True, "tracef", "(Throwable,String,Object,Object,Object)", "", "Argument[0..4]", "logging", "manual"]
+      - ["org.jboss.logging", "Logger", True, "tracev", "(String,Object)", "", "Argument[0..1]", "logging", "manual"]
+      - ["org.jboss.logging", "Logger", True, "tracev", "(String,Object,Object)", "", "Argument[0..2]", "logging", "manual"]
+      - ["org.jboss.logging", "Logger", True, "tracev", "(String,Object,Object,Object)", "", "Argument[0..3]", "logging", "manual"]
+      - ["org.jboss.logging", "Logger", True, "tracev", "(String,Object,Object,Object,Object)", "", "Argument[0..4]", "logging", "manual"]
+      - ["org.jboss.logging", "Logger", True, "tracev", "(String,Object[])", "", "Argument[0..1]", "logging", "manual"]
+      - ["org.jboss.logging", "Logger", True, "tracev", "(Throwable,String,Object)", "", "Argument[1..2]", "logging", "manual"]
+      - ["org.jboss.logging", "Logger", True, "tracev", "(Throwable,String,Object,Object)", "", "Argument[1..3]", "logging", "manual"]
+      - ["org.jboss.logging", "Logger", True, "tracev", "(Throwable,String,Object,Object,Object)", "", "Argument[0..4]", "logging", "manual"]
+      - ["org.jboss.logging", "Logger", True, "warn", "(Object)", "", "Argument[0]", "logging", "manual"]
+      - ["org.jboss.logging", "Logger", True, "warn", "(Object,Object[])", "", "Argument[0..1]", "logging", "manual"]
+      - ["org.jboss.logging", "Logger", True, "warn", "(Object,Object[],Throwable)", "", "Argument[0..1]", "logging", "manual"]
+      - ["org.jboss.logging", "Logger", True, "warn", "(Object,Throwable)", "", "Argument[0]", "logging", "manual"]
+      - ["org.jboss.logging", "Logger", True, "warn", "(String,Object,Object[],Throwable)", "", "Argument[1..2]", "logging", "manual"]
+      - ["org.jboss.logging", "Logger", True, "warn", "(String,Object,Throwable)", "", "Argument[1]", "logging", "manual"]
+      - ["org.jboss.logging", "Logger", True, "warnf", "(String,Object)", "", "Argument[0..1]", "logging", "manual"]
+      - ["org.jboss.logging", "Logger", True, "warnf", "(String,Object,Object)", "", "Argument[0..2]", "logging", "manual"]
+      - ["org.jboss.logging", "Logger", True, "warnf", "(String,Object,Object,Object)", "", "Argument[0..3]", "logging", "manual"]
+      - ["org.jboss.logging", "Logger", True, "warnf", "(String,Object,Object,Object,Object)", "", "Argument[0..4]", "logging", "manual"]
+      - ["org.jboss.logging", "Logger", True, "warnf", "(String,Object[])", "", "Argument[0..1]", "logging", "manual"]
+      - ["org.jboss.logging", "Logger", True, "warnf", "(Throwable,String,Object)", "", "Argument[1..2]", "logging", "manual"]
+      - ["org.jboss.logging", "Logger", True, "warnf", "(Throwable,String,Object,Object)", "", "Argument[1..3]", "logging", "manual"]
+      - ["org.jboss.logging", "Logger", True, "warnf", "(Throwable,String,Object,Object,Object)", "", "Argument[0..4]", "logging", "manual"]
+      - ["org.jboss.logging", "Logger", True, "warnv", "(String,Object)", "", "Argument[0..1]", "logging", "manual"]
+      - ["org.jboss.logging", "Logger", True, "warnv", "(String,Object,Object)", "", "Argument[0..2]", "logging", "manual"]
+      - ["org.jboss.logging", "Logger", True, "warnv", "(String,Object,Object,Object)", "", "Argument[0..3]", "logging", "manual"]
+      - ["org.jboss.logging", "Logger", True, "warnv", "(String,Object,Object,Object,Object)", "", "Argument[0..4]", "logging", "manual"]
+      - ["org.jboss.logging", "Logger", True, "warnv", "(String,Object[])", "", "Argument[0..1]", "logging", "manual"]
+      - ["org.jboss.logging", "Logger", True, "warnv", "(Throwable,String,Object)", "", "Argument[1..2]", "logging", "manual"]
+      - ["org.jboss.logging", "Logger", True, "warnv", "(Throwable,String,Object,Object)", "", "Argument[1..3]", "logging", "manual"]
+      - ["org.jboss.logging", "Logger", True, "warnv", "(Throwable,String,Object,Object,Object)", "", "Argument[0..4]", "logging", "manual"]
diff --git a/java/ql/lib/ext/org.jdbi.v3.core.model.yml b/java/ql/lib/ext/org.jdbi.v3.core.model.yml
new file mode 100644
index 00000000000..ae662d16dfd
--- /dev/null
+++ b/java/ql/lib/ext/org.jdbi.v3.core.model.yml
@@ -0,0 +1,11 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSinkModel
+    data:
+      - ["org.jdbi.v3.core", "Jdbi", False, "create", "(String)", "", "Argument[0]", "jdbc-url", "manual"]
+      - ["org.jdbi.v3.core", "Jdbi", False, "create", "(String,Properties)", "", "Argument[0]", "jdbc-url", "manual"]
+      - ["org.jdbi.v3.core", "Jdbi", False, "create", "(String,String,String)", "", "Argument[0]", "jdbc-url", "manual"]
+      - ["org.jdbi.v3.core", "Jdbi", False, "open", "(String)", "", "Argument[0]", "jdbc-url", "manual"]
+      - ["org.jdbi.v3.core", "Jdbi", False, "open", "(String,Properties)", "", "Argument[0]", "jdbc-url", "manual"]
+      - ["org.jdbi.v3.core", "Jdbi", False, "open", "(String,String,String)", "", "Argument[0]", "jdbc-url", "manual"]
diff --git a/java/ql/lib/ext/org.jooq.model.yml b/java/ql/lib/ext/org.jooq.model.yml
new file mode 100644
index 00000000000..7de7bdfa6e6
--- /dev/null
+++ b/java/ql/lib/ext/org.jooq.model.yml
@@ -0,0 +1,6 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSinkModel
+    data:
+      - ["org.jooq", "PlainSQL", False, "", "", "Annotated", "Argument[0]", "sql", "manual"]
diff --git a/java/ql/lib/ext/org.json.model.yml b/java/ql/lib/ext/org.json.model.yml
new file mode 100644
index 00000000000..98a5bb795de
--- /dev/null
+++ b/java/ql/lib/ext/org.json.model.yml
@@ -0,0 +1,241 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSummaryModel
+    data:
+      - ["org.json", "CDL", False, "rowToJSONArray", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.json", "CDL", False, "rowToJSONObject", "", "", "Argument[0..1]", "ReturnValue", "taint", "manual"]
+      - ["org.json", "CDL", False, "rowToString", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.json", "CDL", False, "toJSONArray", "", "", "Argument[0..1]", "ReturnValue", "taint", "manual"]
+      - ["org.json", "CDL", False, "toString", "", "", "Argument[0..1]", "ReturnValue", "taint", "manual"]
+      - ["org.json", "Cookie", False, "escape", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.json", "Cookie", False, "toJSONObject", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.json", "Cookie", False, "toString", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.json", "Cookie", False, "unescape", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.json", "CookieList", False, "toJSONObject", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.json", "CookieList", False, "toString", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.json", "HTTP", False, "toJSONObject", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.json", "HTTP", False, "toString", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.json", "HTTPTokener", False, "HTTPTokener", "", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.json", "HTTPTokener", False, "nextToken", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.json", "JSONArray", False, "JSONArray", "(Collection)", "", "Argument[0].Element", "Argument[-1]", "taint", "manual"]
+      - ["org.json", "JSONArray", False, "JSONArray", "(Iterable)", "", "Argument[0].Element", "Argument[-1]", "taint", "manual"]
+      - ["org.json", "JSONArray", False, "JSONArray", "(JSONArray)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.json", "JSONArray", False, "JSONArray", "(JSONTokener)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.json", "JSONArray", False, "JSONArray", "(Object)", "", "Argument[0].ArrayElement", "Argument[-1]", "taint", "manual"]
+      - ["org.json", "JSONArray", False, "JSONArray", "(String)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.json", "JSONArray", False, "get", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.json", "JSONArray", False, "getBigDecimal", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.json", "JSONArray", False, "getBigInteger", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.json", "JSONArray", False, "getBoolean", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.json", "JSONArray", False, "getDouble", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.json", "JSONArray", False, "getEnum", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.json", "JSONArray", False, "getFloat", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.json", "JSONArray", False, "getInt", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.json", "JSONArray", False, "getJSONArray", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.json", "JSONArray", False, "getJSONObject", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.json", "JSONArray", False, "getLong", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.json", "JSONArray", False, "getNumber", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.json", "JSONArray", False, "getString", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.json", "JSONArray", False, "iterator", "", "", "Argument[-1]", "ReturnValue.Element", "taint", "manual"]
+      - ["org.json", "JSONArray", False, "join", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.json", "JSONArray", False, "join", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.json", "JSONArray", False, "opt", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.json", "JSONArray", False, "optBigDecimal", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.json", "JSONArray", False, "optBigDecimal", "", "", "Argument[1]", "ReturnValue", "value", "manual"]
+      - ["org.json", "JSONArray", False, "optBigInteger", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.json", "JSONArray", False, "optBigInteger", "", "", "Argument[1]", "ReturnValue", "value", "manual"]
+      - ["org.json", "JSONArray", False, "optBoolean", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.json", "JSONArray", False, "optBoolean", "", "", "Argument[1]", "ReturnValue", "value", "manual"]
+      - ["org.json", "JSONArray", False, "optDouble", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.json", "JSONArray", False, "optDouble", "", "", "Argument[1]", "ReturnValue", "value", "manual"]
+      - ["org.json", "JSONArray", False, "optEnum", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.json", "JSONArray", False, "optEnum", "", "", "Argument[2]", "ReturnValue", "value", "manual"]
+      - ["org.json", "JSONArray", False, "optFloat", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.json", "JSONArray", False, "optFloat", "", "", "Argument[1]", "ReturnValue", "value", "manual"]
+      - ["org.json", "JSONArray", False, "optInt", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.json", "JSONArray", False, "optInt", "", "", "Argument[1]", "ReturnValue", "value", "manual"]
+      - ["org.json", "JSONArray", False, "optJSONArray", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.json", "JSONArray", False, "optJSONObject", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.json", "JSONArray", False, "optLong", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.json", "JSONArray", False, "optLong", "", "", "Argument[1]", "ReturnValue", "value", "manual"]
+      - ["org.json", "JSONArray", False, "optNumber", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.json", "JSONArray", False, "optNumber", "", "", "Argument[1]", "ReturnValue", "value", "manual"]
+      - ["org.json", "JSONArray", False, "optQuery", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.json", "JSONArray", False, "optString", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.json", "JSONArray", False, "optString", "", "", "Argument[1]", "ReturnValue", "value", "manual"]
+      - ["org.json", "JSONArray", False, "put", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["org.json", "JSONArray", False, "put", "(Collection)", "", "Argument[0].Element", "Argument[-1]", "taint", "manual"]
+      - ["org.json", "JSONArray", False, "put", "(Map)", "", "Argument[0].MapKey", "Argument[-1]", "taint", "manual"]
+      - ["org.json", "JSONArray", False, "put", "(Map)", "", "Argument[0].MapValue", "Argument[-1]", "taint", "manual"]
+      - ["org.json", "JSONArray", False, "put", "(Object)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.json", "JSONArray", False, "put", "(boolean)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.json", "JSONArray", False, "put", "(double)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.json", "JSONArray", False, "put", "(float)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.json", "JSONArray", False, "put", "(int)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.json", "JSONArray", False, "put", "(int,Collection)", "", "Argument[1].Element", "Argument[-1]", "taint", "manual"]
+      - ["org.json", "JSONArray", False, "put", "(int,Map)", "", "Argument[1].MapKey", "Argument[-1]", "taint", "manual"]
+      - ["org.json", "JSONArray", False, "put", "(int,Map)", "", "Argument[1].MapValue", "Argument[-1]", "taint", "manual"]
+      - ["org.json", "JSONArray", False, "put", "(int,Object)", "", "Argument[1]", "Argument[-1]", "taint", "manual"]
+      - ["org.json", "JSONArray", False, "put", "(int,boolean)", "", "Argument[1]", "Argument[-1]", "taint", "manual"]
+      - ["org.json", "JSONArray", False, "put", "(int,double)", "", "Argument[1]", "Argument[-1]", "taint", "manual"]
+      - ["org.json", "JSONArray", False, "put", "(int,float)", "", "Argument[1]", "Argument[-1]", "taint", "manual"]
+      - ["org.json", "JSONArray", False, "put", "(int,int)", "", "Argument[1]", "Argument[-1]", "taint", "manual"]
+      - ["org.json", "JSONArray", False, "put", "(int,long)", "", "Argument[1]", "Argument[-1]", "taint", "manual"]
+      - ["org.json", "JSONArray", False, "put", "(long)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.json", "JSONArray", False, "putAll", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["org.json", "JSONArray", False, "putAll", "(Collection)", "", "Argument[0].Element", "Argument[-1]", "taint", "manual"]
+      - ["org.json", "JSONArray", False, "putAll", "(Iterable)", "", "Argument[0].Element", "Argument[-1]", "taint", "manual"]
+      - ["org.json", "JSONArray", False, "putAll", "(JSONArray)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.json", "JSONArray", False, "putAll", "(Object)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.json", "JSONArray", False, "query", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.json", "JSONArray", False, "remove", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.json", "JSONArray", False, "toJSONObject", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.json", "JSONArray", False, "toJSONObject", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.json", "JSONArray", False, "toList", "", "", "Argument[0]", "ReturnValue.Element", "taint", "manual"]
+      - ["org.json", "JSONArray", False, "toString", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.json", "JSONArray", False, "write", "", "", "Argument[-1]", "Argument[0]", "taint", "manual"]
+      - ["org.json", "JSONArray", False, "write", "", "", "Argument[0]", "ReturnValue", "value", "manual"]
+      - ["org.json", "JSONML", False, "toJSONArray", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.json", "JSONML", False, "toJSONObject", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.json", "JSONML", False, "toString", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.json", "JSONObject", False, "JSONObject", "(JSONObject,String[])", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.json", "JSONObject", False, "JSONObject", "(JSONObject,String[])", "", "Argument[1].ArrayElement", "Argument[-1]", "taint", "manual"]
+      - ["org.json", "JSONObject", False, "JSONObject", "(JSONTokener)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.json", "JSONObject", False, "JSONObject", "(Map)", "", "Argument[0].MapKey", "Argument[-1]", "taint", "manual"]
+      - ["org.json", "JSONObject", False, "JSONObject", "(Map)", "", "Argument[0].MapValue", "Argument[-1]", "taint", "manual"]
+      - ["org.json", "JSONObject", False, "JSONObject", "(Object)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.json", "JSONObject", False, "JSONObject", "(Object,String[])", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.json", "JSONObject", False, "JSONObject", "(Object,String[])", "", "Argument[1].ArrayElement", "Argument[-1]", "taint", "manual"]
+      - ["org.json", "JSONObject", False, "JSONObject", "(String)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.json", "JSONObject", False, "JSONObject", "(String,Locale)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.json", "JSONObject", False, "accumulate", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["org.json", "JSONObject", False, "accumulate", "", "", "Argument[0..1]", "Argument[-1]", "taint", "manual"]
+      - ["org.json", "JSONObject", False, "append", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["org.json", "JSONObject", False, "append", "", "", "Argument[0..1]", "Argument[-1]", "taint", "manual"]
+      - ["org.json", "JSONObject", False, "doubleToString", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.json", "JSONObject", True, "entrySet", "", "", "Argument[-1]", "ReturnValue.Element", "taint", "manual"]
+      - ["org.json", "JSONObject", False, "get", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.json", "JSONObject", False, "getBigDecimal", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.json", "JSONObject", False, "getBigInteger", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.json", "JSONObject", False, "getBoolean", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.json", "JSONObject", False, "getDouble", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.json", "JSONObject", False, "getEnum", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.json", "JSONObject", False, "getFloat", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.json", "JSONObject", False, "getInt", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.json", "JSONObject", False, "getJSONArray", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.json", "JSONObject", False, "getJSONObject", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.json", "JSONObject", False, "getLong", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.json", "JSONObject", False, "getNames", "", "", "Argument[0]", "ReturnValue.ArrayElement", "taint", "manual"]
+      - ["org.json", "JSONObject", False, "getNumber", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.json", "JSONObject", False, "getString", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.json", "JSONObject", False, "increment", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["org.json", "JSONObject", False, "increment", "", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.json", "JSONObject", False, "keySet", "", "", "Argument[-1]", "ReturnValue.Element", "taint", "manual"]
+      - ["org.json", "JSONObject", False, "keys", "", "", "Argument[-1]", "ReturnValue.Element", "taint", "manual"]
+      - ["org.json", "JSONObject", False, "names", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.json", "JSONObject", False, "numberToString", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.json", "JSONObject", False, "opt", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.json", "JSONObject", False, "optBigDecimal", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.json", "JSONObject", False, "optBigDecimal", "", "", "Argument[1]", "ReturnValue", "value", "manual"]
+      - ["org.json", "JSONObject", False, "optBigInteger", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.json", "JSONObject", False, "optBigInteger", "", "", "Argument[1]", "ReturnValue", "value", "manual"]
+      - ["org.json", "JSONObject", False, "optBoolean", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.json", "JSONObject", False, "optBoolean", "", "", "Argument[1]", "ReturnValue", "value", "manual"]
+      - ["org.json", "JSONObject", False, "optDouble", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.json", "JSONObject", False, "optDouble", "", "", "Argument[1]", "ReturnValue", "value", "manual"]
+      - ["org.json", "JSONObject", False, "optEnum", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.json", "JSONObject", False, "optEnum", "", "", "Argument[2]", "ReturnValue", "value", "manual"]
+      - ["org.json", "JSONObject", False, "optFloat", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.json", "JSONObject", False, "optFloat", "", "", "Argument[1]", "ReturnValue", "value", "manual"]
+      - ["org.json", "JSONObject", False, "optInt", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.json", "JSONObject", False, "optInt", "", "", "Argument[1]", "ReturnValue", "value", "manual"]
+      - ["org.json", "JSONObject", False, "optJSONArray", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.json", "JSONObject", False, "optJSONObject", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.json", "JSONObject", False, "optLong", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.json", "JSONObject", False, "optLong", "", "", "Argument[1]", "ReturnValue", "value", "manual"]
+      - ["org.json", "JSONObject", False, "optNumber", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.json", "JSONObject", False, "optNumber", "", "", "Argument[1]", "ReturnValue", "value", "manual"]
+      - ["org.json", "JSONObject", False, "optQuery", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.json", "JSONObject", False, "optString", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.json", "JSONObject", False, "optString", "", "", "Argument[1]", "ReturnValue", "value", "manual"]
+      - ["org.json", "JSONObject", False, "put", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["org.json", "JSONObject", False, "put", "(String,Collection)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.json", "JSONObject", False, "put", "(String,Collection)", "", "Argument[1].Element", "Argument[-1]", "taint", "manual"]
+      - ["org.json", "JSONObject", False, "put", "(String,Map)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.json", "JSONObject", False, "put", "(String,Map)", "", "Argument[1].MapKey", "Argument[-1]", "taint", "manual"]
+      - ["org.json", "JSONObject", False, "put", "(String,Map)", "", "Argument[1].MapValue", "Argument[-1]", "taint", "manual"]
+      - ["org.json", "JSONObject", False, "put", "(String,Object)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.json", "JSONObject", False, "put", "(String,Object)", "", "Argument[1]", "Argument[-1]", "taint", "manual"]
+      - ["org.json", "JSONObject", False, "put", "(String,boolean)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.json", "JSONObject", False, "put", "(String,boolean)", "", "Argument[1]", "Argument[-1]", "taint", "manual"]
+      - ["org.json", "JSONObject", False, "put", "(String,double)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.json", "JSONObject", False, "put", "(String,double)", "", "Argument[1]", "Argument[-1]", "taint", "manual"]
+      - ["org.json", "JSONObject", False, "put", "(String,float)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.json", "JSONObject", False, "put", "(String,float)", "", "Argument[1]", "Argument[-1]", "taint", "manual"]
+      - ["org.json", "JSONObject", False, "put", "(String,int)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.json", "JSONObject", False, "put", "(String,int)", "", "Argument[1]", "Argument[-1]", "taint", "manual"]
+      - ["org.json", "JSONObject", False, "put", "(String,long)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.json", "JSONObject", False, "put", "(String,long)", "", "Argument[1]", "Argument[-1]", "taint", "manual"]
+      - ["org.json", "JSONObject", False, "putOnce", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["org.json", "JSONObject", False, "putOnce", "", "", "Argument[0..1]", "Argument[-1]", "taint", "manual"]
+      - ["org.json", "JSONObject", False, "putOpt", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["org.json", "JSONObject", False, "putOpt", "", "", "Argument[0..1]", "Argument[-1]", "taint", "manual"]
+      - ["org.json", "JSONObject", False, "query", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.json", "JSONObject", False, "quote", "(String)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.json", "JSONObject", False, "quote", "(String,Writer)", "", "Argument[0]", "Argument[1]", "taint", "manual"]
+      - ["org.json", "JSONObject", False, "quote", "(String,Writer)", "", "Argument[1]", "ReturnValue", "value", "manual"]
+      - ["org.json", "JSONObject", False, "remove", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.json", "JSONObject", False, "stringToValue", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.json", "JSONObject", False, "toJSONArray", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.json", "JSONObject", False, "toMap", "", "", "Argument[-1]", "ReturnValue.MapKey", "taint", "manual"]
+      - ["org.json", "JSONObject", False, "toMap", "", "", "Argument[-1]", "ReturnValue.MapValue", "taint", "manual"]
+      - ["org.json", "JSONObject", False, "toString", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.json", "JSONObject", False, "valueToString", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.json", "JSONObject", False, "wrap", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.json", "JSONObject", False, "write", "", "", "Argument[-1]", "Argument[0]", "taint", "manual"]
+      - ["org.json", "JSONObject", False, "write", "", "", "Argument[0]", "ReturnValue", "value", "manual"]
+      - ["org.json", "JSONPointer", False, "JSONPointer", "(List)", "", "Argument[0].Element", "Argument[-1]", "taint", "manual"]
+      - ["org.json", "JSONPointer", False, "JSONPointer", "(String)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.json", "JSONPointer", False, "queryFrom", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.json", "JSONPointer", False, "toString", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.json", "JSONPointer", False, "toURIFragment", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.json", "JSONPointer$Builder", False, "append", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["org.json", "JSONPointer$Builder", False, "append", "", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.json", "JSONPointer$Builder", False, "build", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.json", "JSONString", True, "toJSONString", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.json", "JSONStringer", False, "toString", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.json", "JSONTokener", True, "JSONTokener", "", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.json", "JSONTokener", True, "next", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.json", "JSONTokener", True, "nextClean", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.json", "JSONTokener", True, "nextString", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.json", "JSONTokener", True, "nextTo", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.json", "JSONTokener", True, "nextValue", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.json", "JSONTokener", True, "syntaxError", "", "", "Argument[0..1]", "ReturnValue", "taint", "manual"]
+      - ["org.json", "JSONTokener", True, "toString", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.json", "JSONWriter", True, "JSONWriter", "", "", "Argument[-1]", "Argument[0]", "taint", "manual"]
+      - ["org.json", "JSONWriter", True, "array", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["org.json", "JSONWriter", True, "endArray", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["org.json", "JSONWriter", True, "endObject", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["org.json", "JSONWriter", True, "key", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["org.json", "JSONWriter", True, "key", "", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.json", "JSONWriter", True, "object", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["org.json", "JSONWriter", True, "value", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["org.json", "JSONWriter", True, "value", "", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.json", "JSONWriter", True, "valueToString", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.json", "Property", False, "toJSONObject", "", "", "Argument[0].MapKey", "ReturnValue", "taint", "manual"]
+      - ["org.json", "Property", False, "toJSONObject", "", "", "Argument[0].MapValue", "ReturnValue", "taint", "manual"]
+      - ["org.json", "Property", False, "toProperties", "", "", "Argument[0]", "ReturnValue.MapKey", "taint", "manual"]
+      - ["org.json", "Property", False, "toProperties", "", "", "Argument[0]", "ReturnValue.MapValue", "taint", "manual"]
+      - ["org.json", "XML", False, "escape", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.json", "XML", False, "stringToValue", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.json", "XML", False, "toJSONObject", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.json", "XML", False, "toString", "", "", "Argument[0..1]", "ReturnValue", "taint", "manual"]
+      - ["org.json", "XML", False, "unescape", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.json", "XMLTokener", False, "XMLTokener", "", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.json", "XMLTokener", False, "nextCDATA", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.json", "XMLTokener", False, "nextContent", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.json", "XMLTokener", False, "nextEntity", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.json", "XMLTokener", False, "nextMeta", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.json", "XMLTokener", False, "nextToken", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.json", "XMLXsiTypeConverter", True, "convert", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
diff --git a/java/ql/lib/ext/org.mvel2.compiler.model.yml b/java/ql/lib/ext/org.mvel2.compiler.model.yml
new file mode 100644
index 00000000000..de360871229
--- /dev/null
+++ b/java/ql/lib/ext/org.mvel2.compiler.model.yml
@@ -0,0 +1,9 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSinkModel
+    data:
+      - ["org.mvel2.compiler", "Accessor", False, "getValue", "", "", "Argument[-1]", "mvel", "manual"]
+      - ["org.mvel2.compiler", "CompiledAccExpression", False, "getValue", "", "", "Argument[-1]", "mvel", "manual"]
+      - ["org.mvel2.compiler", "CompiledExpression", False, "getDirectValue", "", "", "Argument[-1]", "mvel", "manual"]
+      - ["org.mvel2.compiler", "ExecutableStatement", False, "getValue", "", "", "Argument[-1]", "mvel", "manual"]
diff --git a/java/ql/lib/ext/org.mvel2.jsr223.model.yml b/java/ql/lib/ext/org.mvel2.jsr223.model.yml
new file mode 100644
index 00000000000..a7761277e6c
--- /dev/null
+++ b/java/ql/lib/ext/org.mvel2.jsr223.model.yml
@@ -0,0 +1,8 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSinkModel
+    data:
+      - ["org.mvel2.jsr223", "MvelCompiledScript", False, "eval", "", "", "Argument[-1]", "mvel", "manual"]
+      - ["org.mvel2.jsr223", "MvelScriptEngine", False, "eval", "", "", "Argument[0]", "mvel", "manual"]
+      - ["org.mvel2.jsr223", "MvelScriptEngine", False, "evaluate", "", "", "Argument[0]", "mvel", "manual"]
diff --git a/java/ql/lib/ext/org.mvel2.model.yml b/java/ql/lib/ext/org.mvel2.model.yml
new file mode 100644
index 00000000000..895d3a15c8c
--- /dev/null
+++ b/java/ql/lib/ext/org.mvel2.model.yml
@@ -0,0 +1,12 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSinkModel
+    data:
+      - ["org.mvel2", "MVEL", False, "eval", "", "", "Argument[0]", "mvel", "manual"]
+      - ["org.mvel2", "MVEL", False, "evalToBoolean", "", "", "Argument[0]", "mvel", "manual"]
+      - ["org.mvel2", "MVEL", False, "evalToString", "", "", "Argument[0]", "mvel", "manual"]
+      - ["org.mvel2", "MVEL", False, "executeAllExpression", "", "", "Argument[0]", "mvel", "manual"]
+      - ["org.mvel2", "MVEL", False, "executeExpression", "", "", "Argument[0]", "mvel", "manual"]
+      - ["org.mvel2", "MVEL", False, "executeSetExpression", "", "", "Argument[0]", "mvel", "manual"]
+      - ["org.mvel2", "MVELRuntime", False, "execute", "", "", "Argument[1]", "mvel", "manual"]
diff --git a/java/ql/lib/ext/org.mvel2.templates.model.yml b/java/ql/lib/ext/org.mvel2.templates.model.yml
new file mode 100644
index 00000000000..fac30dca38a
--- /dev/null
+++ b/java/ql/lib/ext/org.mvel2.templates.model.yml
@@ -0,0 +1,7 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSinkModel
+    data:
+      - ["org.mvel2.templates", "TemplateRuntime", False, "eval", "", "", "Argument[0]", "mvel", "manual"]
+      - ["org.mvel2.templates", "TemplateRuntime", False, "execute", "", "", "Argument[0]", "mvel", "manual"]
diff --git a/java/ql/lib/ext/org.scijava.log.model.yml b/java/ql/lib/ext/org.scijava.log.model.yml
new file mode 100644
index 00000000000..561de4980f4
--- /dev/null
+++ b/java/ql/lib/ext/org.scijava.log.model.yml
@@ -0,0 +1,18 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSinkModel
+    data:
+      - ["org.scijava.log", "Logger", True, "alwaysLog", "(int,Object,Throwable)", "", "Argument[1]", "logging", "manual"]
+      - ["org.scijava.log", "Logger", True, "debug", "(Object)", "", "Argument[0]", "logging", "manual"]
+      - ["org.scijava.log", "Logger", True, "debug", "(Object,Throwable)", "", "Argument[0]", "logging", "manual"]
+      - ["org.scijava.log", "Logger", True, "error", "(Object)", "", "Argument[0]", "logging", "manual"]
+      - ["org.scijava.log", "Logger", True, "error", "(Object,Throwable)", "", "Argument[0]", "logging", "manual"]
+      - ["org.scijava.log", "Logger", True, "info", "(Object)", "", "Argument[0]", "logging", "manual"]
+      - ["org.scijava.log", "Logger", True, "info", "(Object,Throwable)", "", "Argument[0]", "logging", "manual"]
+      - ["org.scijava.log", "Logger", True, "log", "(int,Object)", "", "Argument[1]", "logging", "manual"]
+      - ["org.scijava.log", "Logger", True, "log", "(int,Object,Throwable)", "", "Argument[1]", "logging", "manual"]
+      - ["org.scijava.log", "Logger", True, "trace", "(Object)", "", "Argument[0]", "logging", "manual"]
+      - ["org.scijava.log", "Logger", True, "trace", "(Object,Throwable)", "", "Argument[0]", "logging", "manual"]
+      - ["org.scijava.log", "Logger", True, "warn", "(Object)", "", "Argument[0]", "logging", "manual"]
+      - ["org.scijava.log", "Logger", True, "warn", "(Object,Throwable)", "", "Argument[0]", "logging", "manual"]
diff --git a/java/ql/lib/ext/org.slf4j.model.yml b/java/ql/lib/ext/org.slf4j.model.yml
new file mode 100644
index 00000000000..f321c13d1e0
--- /dev/null
+++ b/java/ql/lib/ext/org.slf4j.model.yml
@@ -0,0 +1,55 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSinkModel
+    data:
+      - ["org.slf4j", "Logger", True, "debug", "(Marker,String)", "", "Argument[1]", "logging", "manual"]
+      - ["org.slf4j", "Logger", True, "debug", "(Marker,String,Object)", "", "Argument[1..2]", "logging", "manual"]
+      - ["org.slf4j", "Logger", True, "debug", "(Marker,String,Object,Object)", "", "Argument[1..3]", "logging", "manual"]
+      - ["org.slf4j", "Logger", True, "debug", "(Marker,String,Object,Object,Object)", "", "Argument[1..4]", "logging", "manual"]
+      - ["org.slf4j", "Logger", True, "debug", "(Marker,String,Object[])", "", "Argument[1..2]", "logging", "manual"]
+      - ["org.slf4j", "Logger", True, "debug", "(String)", "", "Argument[0]", "logging", "manual"]
+      - ["org.slf4j", "Logger", True, "debug", "(String,Object)", "", "Argument[0..1]", "logging", "manual"]
+      - ["org.slf4j", "Logger", True, "debug", "(String,Object,Object)", "", "Argument[0..2]", "logging", "manual"]
+      - ["org.slf4j", "Logger", True, "debug", "(String,Object[])", "", "Argument[0..1]", "logging", "manual"]
+      - ["org.slf4j", "Logger", True, "debug", "(String,Throwable)", "", "Argument[0]", "logging", "manual"]
+      - ["org.slf4j", "Logger", True, "error", "(Marker,String)", "", "Argument[1]", "logging", "manual"]
+      - ["org.slf4j", "Logger", True, "error", "(Marker,String,Object)", "", "Argument[1..2]", "logging", "manual"]
+      - ["org.slf4j", "Logger", True, "error", "(Marker,String,Object,Object)", "", "Argument[1..3]", "logging", "manual"]
+      - ["org.slf4j", "Logger", True, "error", "(Marker,String,Object,Object,Object)", "", "Argument[1..4]", "logging", "manual"]
+      - ["org.slf4j", "Logger", True, "error", "(Marker,String,Object[])", "", "Argument[1..2]", "logging", "manual"]
+      - ["org.slf4j", "Logger", True, "error", "(String)", "", "Argument[0]", "logging", "manual"]
+      - ["org.slf4j", "Logger", True, "error", "(String,Object)", "", "Argument[0..1]", "logging", "manual"]
+      - ["org.slf4j", "Logger", True, "error", "(String,Object,Object)", "", "Argument[0..2]", "logging", "manual"]
+      - ["org.slf4j", "Logger", True, "error", "(String,Object[])", "", "Argument[0..1]", "logging", "manual"]
+      - ["org.slf4j", "Logger", True, "error", "(String,Throwable)", "", "Argument[0]", "logging", "manual"]
+      - ["org.slf4j", "Logger", True, "info", "(Marker,String)", "", "Argument[1]", "logging", "manual"]
+      - ["org.slf4j", "Logger", True, "info", "(Marker,String,Object)", "", "Argument[1..2]", "logging", "manual"]
+      - ["org.slf4j", "Logger", True, "info", "(Marker,String,Object,Object)", "", "Argument[1..3]", "logging", "manual"]
+      - ["org.slf4j", "Logger", True, "info", "(Marker,String,Object,Object,Object)", "", "Argument[1..4]", "logging", "manual"]
+      - ["org.slf4j", "Logger", True, "info", "(Marker,String,Object[])", "", "Argument[1..2]", "logging", "manual"]
+      - ["org.slf4j", "Logger", True, "info", "(String)", "", "Argument[0]", "logging", "manual"]
+      - ["org.slf4j", "Logger", True, "info", "(String,Object)", "", "Argument[0..1]", "logging", "manual"]
+      - ["org.slf4j", "Logger", True, "info", "(String,Object,Object)", "", "Argument[0..2]", "logging", "manual"]
+      - ["org.slf4j", "Logger", True, "info", "(String,Object[])", "", "Argument[0..1]", "logging", "manual"]
+      - ["org.slf4j", "Logger", True, "info", "(String,Throwable)", "", "Argument[0]", "logging", "manual"]
+      - ["org.slf4j", "Logger", True, "trace", "(Marker,String)", "", "Argument[1]", "logging", "manual"]
+      - ["org.slf4j", "Logger", True, "trace", "(Marker,String,Object)", "", "Argument[1..2]", "logging", "manual"]
+      - ["org.slf4j", "Logger", True, "trace", "(Marker,String,Object,Object)", "", "Argument[1..3]", "logging", "manual"]
+      - ["org.slf4j", "Logger", True, "trace", "(Marker,String,Object,Object,Object)", "", "Argument[1..4]", "logging", "manual"]
+      - ["org.slf4j", "Logger", True, "trace", "(Marker,String,Object[])", "", "Argument[1..2]", "logging", "manual"]
+      - ["org.slf4j", "Logger", True, "trace", "(String)", "", "Argument[0]", "logging", "manual"]
+      - ["org.slf4j", "Logger", True, "trace", "(String,Object)", "", "Argument[0..1]", "logging", "manual"]
+      - ["org.slf4j", "Logger", True, "trace", "(String,Object,Object)", "", "Argument[0..2]", "logging", "manual"]
+      - ["org.slf4j", "Logger", True, "trace", "(String,Object[])", "", "Argument[0..1]", "logging", "manual"]
+      - ["org.slf4j", "Logger", True, "trace", "(String,Throwable)", "", "Argument[0]", "logging", "manual"]
+      - ["org.slf4j", "Logger", True, "warn", "(Marker,String)", "", "Argument[1]", "logging", "manual"]
+      - ["org.slf4j", "Logger", True, "warn", "(Marker,String,Object)", "", "Argument[1..2]", "logging", "manual"]
+      - ["org.slf4j", "Logger", True, "warn", "(Marker,String,Object,Object)", "", "Argument[1..3]", "logging", "manual"]
+      - ["org.slf4j", "Logger", True, "warn", "(Marker,String,Object,Object,Object)", "", "Argument[1..4]", "logging", "manual"]
+      - ["org.slf4j", "Logger", True, "warn", "(Marker,String,Object[])", "", "Argument[1..2]", "logging", "manual"]
+      - ["org.slf4j", "Logger", True, "warn", "(String)", "", "Argument[0]", "logging", "manual"]
+      - ["org.slf4j", "Logger", True, "warn", "(String,Object)", "", "Argument[0..1]", "logging", "manual"]
+      - ["org.slf4j", "Logger", True, "warn", "(String,Object,Object)", "", "Argument[0..2]", "logging", "manual"]
+      - ["org.slf4j", "Logger", True, "warn", "(String,Object[])", "", "Argument[0..1]", "logging", "manual"]
+      - ["org.slf4j", "Logger", True, "warn", "(String,Throwable)", "", "Argument[0]", "logging", "manual"]
diff --git a/java/ql/lib/ext/org.slf4j.spi.model.yml b/java/ql/lib/ext/org.slf4j.spi.model.yml
new file mode 100644
index 00000000000..2c6c44f0908
--- /dev/null
+++ b/java/ql/lib/ext/org.slf4j.spi.model.yml
@@ -0,0 +1,20 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSinkModel
+    data:
+      - ["org.slf4j.spi", "LoggingEventBuilder", True, "log", "", "", "Argument[0]", "logging", "manual"]
+      - ["org.slf4j.spi", "LoggingEventBuilder", True, "log", "(String,Object)", "", "Argument[0..1]", "logging", "manual"]
+      - ["org.slf4j.spi", "LoggingEventBuilder", True, "log", "(String,Object,Object)", "", "Argument[0..2]", "logging", "manual"]
+      - ["org.slf4j.spi", "LoggingEventBuilder", True, "log", "(String,Object[])", "", "Argument[0..1]", "logging", "manual"]
+      - ["org.slf4j.spi", "LoggingEventBuilder", True, "log", "(Supplier)", "", "Argument[0]", "logging", "manual"]
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSummaryModel
+    data:
+      - ["org.slf4j.spi", "LoggingEventBuilder", True, "addArgument", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["org.slf4j.spi", "LoggingEventBuilder", True, "addArgument", "", "", "Argument[1]", "Argument[-1]", "taint", "manual"]
+      - ["org.slf4j.spi", "LoggingEventBuilder", True, "addKeyValue", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["org.slf4j.spi", "LoggingEventBuilder", True, "addKeyValue", "", "", "Argument[1]", "Argument[-1]", "taint", "manual"]
+      - ["org.slf4j.spi", "LoggingEventBuilder", True, "addMarker", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["org.slf4j.spi", "LoggingEventBuilder", True, "setCause", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
diff --git a/java/ql/lib/ext/org.springframework.beans.model.yml b/java/ql/lib/ext/org.springframework.beans.model.yml
new file mode 100644
index 00000000000..44f6b24ee06
--- /dev/null
+++ b/java/ql/lib/ext/org.springframework.beans.model.yml
@@ -0,0 +1,35 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSummaryModel
+    data:
+      - ["org.springframework.beans", "MutablePropertyValues", True, "MutablePropertyValues", "(List)", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
+      - ["org.springframework.beans", "MutablePropertyValues", True, "MutablePropertyValues", "(Map)", "", "Argument[0].MapKey", "Argument[-1].Element.MapKey", "value", "manual"]
+      - ["org.springframework.beans", "MutablePropertyValues", True, "MutablePropertyValues", "(Map)", "", "Argument[0].MapValue", "Argument[-1].Element.MapValue", "value", "manual"]
+      - ["org.springframework.beans", "MutablePropertyValues", True, "MutablePropertyValues", "(PropertyValues)", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
+      - ["org.springframework.beans", "MutablePropertyValues", True, "add", "(String,Object)", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["org.springframework.beans", "MutablePropertyValues", True, "add", "(String,Object)", "", "Argument[0]", "Argument[-1].Element.MapKey", "value", "manual"]
+      - ["org.springframework.beans", "MutablePropertyValues", True, "add", "(String,Object)", "", "Argument[1]", "Argument[-1].Element.MapValue", "value", "manual"]
+      - ["org.springframework.beans", "MutablePropertyValues", True, "addPropertyValue", "(PropertyValue)", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["org.springframework.beans", "MutablePropertyValues", True, "addPropertyValue", "(PropertyValue)", "", "Argument[0]", "Argument[-1].Element", "value", "manual"]
+      - ["org.springframework.beans", "MutablePropertyValues", True, "addPropertyValue", "(String,Object)", "", "Argument[0]", "Argument[-1].Element.MapKey", "value", "manual"]
+      - ["org.springframework.beans", "MutablePropertyValues", True, "addPropertyValue", "(String,Object)", "", "Argument[1]", "Argument[-1].Element.MapValue", "value", "manual"]
+      - ["org.springframework.beans", "MutablePropertyValues", True, "addPropertyValues", "(Map)", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["org.springframework.beans", "MutablePropertyValues", True, "addPropertyValues", "(Map)", "", "Argument[0].MapKey", "Argument[-1].Element.MapKey", "value", "manual"]
+      - ["org.springframework.beans", "MutablePropertyValues", True, "addPropertyValues", "(Map)", "", "Argument[0].MapValue", "Argument[-1].Element.MapValue", "value", "manual"]
+      - ["org.springframework.beans", "MutablePropertyValues", True, "addPropertyValues", "(PropertyValues)", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["org.springframework.beans", "MutablePropertyValues", True, "addPropertyValues", "(PropertyValues)", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
+      - ["org.springframework.beans", "MutablePropertyValues", True, "get", "", "", "Argument[-1].Element.MapValue", "ReturnValue", "value", "manual"]
+      - ["org.springframework.beans", "MutablePropertyValues", True, "getPropertyValue", "", "", "Argument[-1].Element", "ReturnValue", "value", "manual"]
+      - ["org.springframework.beans", "MutablePropertyValues", True, "getPropertyValueList", "", "", "Argument[-1].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.springframework.beans", "MutablePropertyValues", True, "getPropertyValues", "", "", "Argument[-1].Element", "ReturnValue.ArrayElement", "value", "manual"]
+      - ["org.springframework.beans", "MutablePropertyValues", True, "setPropertyValueAt", "", "", "Argument[0]", "Argument[-1].Element", "value", "manual"]
+      - ["org.springframework.beans", "PropertyValue", False, "PropertyValue", "(PropertyValue)", "", "Argument[0]", "Argument[-1]", "value", "manual"]
+      - ["org.springframework.beans", "PropertyValue", False, "PropertyValue", "(PropertyValue,Object)", "", "Argument[0].MapKey", "Argument[-1].MapKey", "value", "manual"]
+      - ["org.springframework.beans", "PropertyValue", False, "PropertyValue", "(PropertyValue,Object)", "", "Argument[1]", "Argument[-1].MapValue", "value", "manual"]
+      - ["org.springframework.beans", "PropertyValue", False, "PropertyValue", "(String,Object)", "", "Argument[0]", "Argument[-1].MapKey", "value", "manual"]
+      - ["org.springframework.beans", "PropertyValue", False, "PropertyValue", "(String,Object)", "", "Argument[1]", "Argument[-1].MapValue", "value", "manual"]
+      - ["org.springframework.beans", "PropertyValue", False, "getName", "", "", "Argument[-1].MapKey", "ReturnValue", "value", "manual"]
+      - ["org.springframework.beans", "PropertyValue", False, "getValue", "", "", "Argument[-1].MapValue", "ReturnValue", "value", "manual"]
+      - ["org.springframework.beans", "PropertyValues", True, "getPropertyValue", "", "", "Argument[-1].Element", "ReturnValue", "value", "manual"]
+      - ["org.springframework.beans", "PropertyValues", True, "getPropertyValues", "", "", "Argument[-1].Element", "ReturnValue.ArrayElement", "value", "manual"]
diff --git a/java/ql/lib/ext/org.springframework.boot.jdbc.model.yml b/java/ql/lib/ext/org.springframework.boot.jdbc.model.yml
new file mode 100644
index 00000000000..79556f4a285
--- /dev/null
+++ b/java/ql/lib/ext/org.springframework.boot.jdbc.model.yml
@@ -0,0 +1,6 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSinkModel
+    data:
+      - ["org.springframework.boot.jdbc", "DataSourceBuilder", False, "url", "(String)", "", "Argument[0]", "jdbc-url", "manual"]
diff --git a/java/ql/lib/ext/org.springframework.cache.model.yml b/java/ql/lib/ext/org.springframework.cache.model.yml
new file mode 100644
index 00000000000..450997df83c
--- /dev/null
+++ b/java/ql/lib/ext/org.springframework.cache.model.yml
@@ -0,0 +1,18 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSummaryModel
+    data:
+      - ["org.springframework.cache", "Cache", True, "get", "(Object)", "", "Argument[-1].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["org.springframework.cache", "Cache", True, "get", "(Object,Callable)", "", "Argument[-1].MapValue", "ReturnValue", "value", "manual"]
+      - ["org.springframework.cache", "Cache", True, "get", "(Object,Class)", "", "Argument[-1].MapValue", "ReturnValue", "value", "manual"]
+      - ["org.springframework.cache", "Cache", True, "getNativeCache", "", "", "Argument[-1].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["org.springframework.cache", "Cache", True, "getNativeCache", "", "", "Argument[-1].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["org.springframework.cache", "Cache", True, "put", "", "", "Argument[0]", "Argument[-1].MapKey", "value", "manual"]
+      - ["org.springframework.cache", "Cache", True, "put", "", "", "Argument[1]", "Argument[-1].MapValue", "value", "manual"]
+      - ["org.springframework.cache", "Cache", True, "putIfAbsent", "", "", "Argument[-1].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["org.springframework.cache", "Cache", True, "putIfAbsent", "", "", "Argument[0]", "Argument[-1].MapKey", "value", "manual"]
+      - ["org.springframework.cache", "Cache", True, "putIfAbsent", "", "", "Argument[1]", "Argument[-1].MapValue", "value", "manual"]
+      - ["org.springframework.cache", "Cache$ValueRetrievalException", False, "ValueRetrievalException", "", "", "Argument[0]", "Argument[-1].MapKey", "value", "manual"]
+      - ["org.springframework.cache", "Cache$ValueRetrievalException", False, "getKey", "", "", "Argument[-1].MapKey", "ReturnValue", "value", "manual"]
+      - ["org.springframework.cache", "Cache$ValueWrapper", True, "get", "", "", "Argument[-1].MapValue", "ReturnValue", "value", "manual"]
diff --git a/java/ql/lib/ext/org.springframework.context.model.yml b/java/ql/lib/ext/org.springframework.context.model.yml
new file mode 100644
index 00000000000..adb3431c27c
--- /dev/null
+++ b/java/ql/lib/ext/org.springframework.context.model.yml
@@ -0,0 +1,8 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSummaryModel
+    data:
+      - ["org.springframework.context", "MessageSource", True, "getMessage", "(String,Object[],Locale)", "", "Argument[1].ArrayElement", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.context", "MessageSource", True, "getMessage", "(String,Object[],String,Locale)", "", "Argument[1].ArrayElement", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.context", "MessageSource", True, "getMessage", "(String,Object[],String,Locale)", "", "Argument[2]", "ReturnValue", "taint", "manual"]
diff --git a/java/ql/lib/ext/org.springframework.data.repository.model.yml b/java/ql/lib/ext/org.springframework.data.repository.model.yml
new file mode 100644
index 00000000000..ff4f0808118
--- /dev/null
+++ b/java/ql/lib/ext/org.springframework.data.repository.model.yml
@@ -0,0 +1,6 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSummaryModel
+    data:
+      - ["org.springframework.data.repository", "CrudRepository", True, "save", "", "", "Argument[0]", "ReturnValue", "value", "manual"]
diff --git a/java/ql/lib/ext/org.springframework.http.model.yml b/java/ql/lib/ext/org.springframework.http.model.yml
new file mode 100644
index 00000000000..b8ca57fa10d
--- /dev/null
+++ b/java/ql/lib/ext/org.springframework.http.model.yml
@@ -0,0 +1,93 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSinkModel
+    data:
+      - ["org.springframework.http", "RequestEntity", False, "RequestEntity", "(HttpMethod,URI)", "", "Argument[1]", "open-url", "manual"]
+      - ["org.springframework.http", "RequestEntity", False, "RequestEntity", "(MultiValueMap,HttpMethod,URI)", "", "Argument[2]", "open-url", "manual"]
+      - ["org.springframework.http", "RequestEntity", False, "RequestEntity", "(Object,HttpMethod,URI)", "", "Argument[2]", "open-url", "manual"]
+      - ["org.springframework.http", "RequestEntity", False, "RequestEntity", "(Object,HttpMethod,URI,Type)", "", "Argument[2]", "open-url", "manual"]
+      - ["org.springframework.http", "RequestEntity", False, "RequestEntity", "(Object,MultiValueMap,HttpMethod,URI)", "", "Argument[3]", "open-url", "manual"]
+      - ["org.springframework.http", "RequestEntity", False, "RequestEntity", "(Object,MultiValueMap,HttpMethod,URI,Type)", "", "Argument[3]", "open-url", "manual"]
+      - ["org.springframework.http", "RequestEntity", False, "delete", "", "", "Argument[0]", "open-url", "manual"]
+      - ["org.springframework.http", "RequestEntity", False, "get", "", "", "Argument[0]", "open-url", "manual"]
+      - ["org.springframework.http", "RequestEntity", False, "head", "", "", "Argument[0]", "open-url", "manual"]
+      - ["org.springframework.http", "RequestEntity", False, "method", "", "", "Argument[1]", "open-url", "manual"]
+      - ["org.springframework.http", "RequestEntity", False, "options", "", "", "Argument[0]", "open-url", "manual"]
+      - ["org.springframework.http", "RequestEntity", False, "patch", "", "", "Argument[0]", "open-url", "manual"]
+      - ["org.springframework.http", "RequestEntity", False, "post", "", "", "Argument[0]", "open-url", "manual"]
+      - ["org.springframework.http", "RequestEntity", False, "put", "", "", "Argument[0]", "open-url", "manual"]
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSummaryModel
+    data:
+      - ["org.springframework.http", "HttpEntity", True, "HttpEntity", "(MultiValueMap)", "", "Argument[0].MapKey", "Argument[-1]", "taint", "manual"]
+      - ["org.springframework.http", "HttpEntity", True, "HttpEntity", "(MultiValueMap)", "", "Argument[0].MapValue.Element", "Argument[-1]", "taint", "manual"]
+      - ["org.springframework.http", "HttpEntity", True, "HttpEntity", "(Object)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.springframework.http", "HttpEntity", True, "HttpEntity", "(Object,MultiValueMap)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.springframework.http", "HttpEntity", True, "HttpEntity", "(Object,MultiValueMap)", "", "Argument[1].MapKey", "Argument[-1]", "taint", "manual"]
+      - ["org.springframework.http", "HttpEntity", True, "HttpEntity", "(Object,MultiValueMap)", "", "Argument[1].MapValue.Element", "Argument[-1]", "taint", "manual"]
+      - ["org.springframework.http", "HttpEntity", True, "getBody", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.http", "HttpEntity", True, "getHeaders", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.http", "HttpHeaders", True, "HttpHeaders", "(MultiValueMap)", "", "Argument[0].MapKey", "Argument[-1]", "taint", "manual"]
+      - ["org.springframework.http", "HttpHeaders", True, "HttpHeaders", "(MultiValueMap)", "", "Argument[0].MapValue.Element", "Argument[-1]", "taint", "manual"]
+      - ["org.springframework.http", "HttpHeaders", True, "add", "(String,String)", "", "Argument[0..1]", "Argument[-1]", "taint", "manual"]
+      - ["org.springframework.http", "HttpHeaders", True, "addAll", "(MultiValueMap)", "", "Argument[0].MapKey", "Argument[-1]", "taint", "manual"]
+      - ["org.springframework.http", "HttpHeaders", True, "addAll", "(MultiValueMap)", "", "Argument[0].MapValue.Element", "Argument[-1]", "taint", "manual"]
+      - ["org.springframework.http", "HttpHeaders", True, "addAll", "(String,List)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.springframework.http", "HttpHeaders", True, "addAll", "(String,List)", "", "Argument[1].Element", "Argument[-1]", "taint", "manual"]
+      - ["org.springframework.http", "HttpHeaders", True, "encodeBasicAuth", "(String,String,Charset)", "", "Argument[0..1]", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.http", "HttpHeaders", True, "formatHeaders", "(MultiValueMap)", "", "Argument[0].MapKey", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.http", "HttpHeaders", True, "formatHeaders", "(MultiValueMap)", "", "Argument[0].MapValue.Element", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.http", "HttpHeaders", True, "get", "(Object)", "", "Argument[-1]", "ReturnValue.Element", "taint", "manual"]
+      - ["org.springframework.http", "HttpHeaders", True, "getAccessControlAllowHeaders", "()", "", "Argument[-1]", "ReturnValue.Element", "taint", "manual"]
+      - ["org.springframework.http", "HttpHeaders", True, "getAccessControlAllowOrigin", "()", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.http", "HttpHeaders", True, "getAccessControlExposeHeaders", "()", "", "Argument[-1]", "ReturnValue.Element", "taint", "manual"]
+      - ["org.springframework.http", "HttpHeaders", True, "getAccessControlRequestHeaders", "()", "", "Argument[-1]", "ReturnValue.Element", "taint", "manual"]
+      - ["org.springframework.http", "HttpHeaders", True, "getCacheControl", "()", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.http", "HttpHeaders", True, "getConnection", "()", "", "Argument[-1]", "ReturnValue.Element", "taint", "manual"]
+      - ["org.springframework.http", "HttpHeaders", True, "getETag", "()", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.http", "HttpHeaders", True, "getETagValuesAsList", "(String)", "", "Argument[-1]", "ReturnValue.Element", "taint", "manual"]
+      - ["org.springframework.http", "HttpHeaders", True, "getFieldValues", "(String)", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.http", "HttpHeaders", True, "getFirst", "(String)", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.http", "HttpHeaders", True, "getHost", "()", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.http", "HttpHeaders", True, "getIfMatch", "()", "", "Argument[-1]", "ReturnValue.Element", "taint", "manual"]
+      - ["org.springframework.http", "HttpHeaders", True, "getIfNoneMatch", "()", "", "Argument[-1]", "ReturnValue.Element", "taint", "manual"]
+      - ["org.springframework.http", "HttpHeaders", True, "getLocation", "()", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.http", "HttpHeaders", True, "getOrEmpty", "(Object)", "", "Argument[-1]", "ReturnValue.Element", "taint", "manual"]
+      - ["org.springframework.http", "HttpHeaders", True, "getOrigin", "()", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.http", "HttpHeaders", True, "getPragma", "()", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.http", "HttpHeaders", True, "getUpgrade", "()", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.http", "HttpHeaders", True, "getValuesAsList", "(String)", "", "Argument[-1]", "ReturnValue.Element", "taint", "manual"]
+      - ["org.springframework.http", "HttpHeaders", True, "getVary", "()", "", "Argument[-1]", "ReturnValue.Element", "taint", "manual"]
+      - ["org.springframework.http", "HttpHeaders", True, "set", "(String,String)", "", "Argument[0..1]", "Argument[-1]", "taint", "manual"]
+      - ["org.springframework.http", "RequestEntity", True, "getUrl", "()", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.http", "ResponseEntity", True, "ResponseEntity", "(MultiValueMap,HttpStatus)", "", "Argument[0].MapKey", "Argument[-1]", "taint", "manual"]
+      - ["org.springframework.http", "ResponseEntity", True, "ResponseEntity", "(MultiValueMap,HttpStatus)", "", "Argument[0].MapValue.Element", "Argument[-1]", "taint", "manual"]
+      - ["org.springframework.http", "ResponseEntity", True, "ResponseEntity", "(Object,HttpStatus)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.springframework.http", "ResponseEntity", True, "ResponseEntity", "(Object,MultiValueMap,HttpStatus)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.springframework.http", "ResponseEntity", True, "ResponseEntity", "(Object,MultiValueMap,HttpStatus)", "", "Argument[1].MapKey", "Argument[-1]", "taint", "manual"]
+      - ["org.springframework.http", "ResponseEntity", True, "ResponseEntity", "(Object,MultiValueMap,HttpStatus)", "", "Argument[1].MapValue.Element", "Argument[-1]", "taint", "manual"]
+      - ["org.springframework.http", "ResponseEntity", True, "ResponseEntity", "(Object,MultiValueMap,int)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.springframework.http", "ResponseEntity", True, "ResponseEntity", "(Object,MultiValueMap,int)", "", "Argument[1].MapKey", "Argument[-1]", "taint", "manual"]
+      - ["org.springframework.http", "ResponseEntity", True, "ResponseEntity", "(Object,MultiValueMap,int)", "", "Argument[1].MapValue.Element", "Argument[-1]", "taint", "manual"]
+      - ["org.springframework.http", "ResponseEntity", True, "created", "(URI)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.http", "ResponseEntity", True, "of", "(Optional)", "", "Argument[0].Element", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.http", "ResponseEntity", True, "ok", "(Object)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.http", "ResponseEntity$BodyBuilder", True, "body", "(Object)", "", "Argument[-1..0]", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.http", "ResponseEntity$BodyBuilder", True, "contentLength", "(long)", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["org.springframework.http", "ResponseEntity$BodyBuilder", True, "contentType", "(MediaType)", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["org.springframework.http", "ResponseEntity$HeadersBuilder", True, "allow", "(HttpMethod[])", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["org.springframework.http", "ResponseEntity$HeadersBuilder", True, "build", "()", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.http", "ResponseEntity$HeadersBuilder", True, "eTag", "(String)", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["org.springframework.http", "ResponseEntity$HeadersBuilder", True, "eTag", "(String)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.springframework.http", "ResponseEntity$HeadersBuilder", True, "header", "(String,String[])", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["org.springframework.http", "ResponseEntity$HeadersBuilder", True, "header", "(String,String[])", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.springframework.http", "ResponseEntity$HeadersBuilder", True, "header", "(String,String[])", "", "Argument[1].ArrayElement", "Argument[-1]", "taint", "manual"]
+      - ["org.springframework.http", "ResponseEntity$HeadersBuilder", True, "headers", "(Consumer)", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["org.springframework.http", "ResponseEntity$HeadersBuilder", True, "headers", "(HttpHeaders)", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["org.springframework.http", "ResponseEntity$HeadersBuilder", True, "headers", "(HttpHeaders)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.springframework.http", "ResponseEntity$HeadersBuilder", True, "lastModified", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["org.springframework.http", "ResponseEntity$HeadersBuilder", True, "location", "(URI)", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["org.springframework.http", "ResponseEntity$HeadersBuilder", True, "location", "(URI)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.springframework.http", "ResponseEntity$HeadersBuilder", True, "varyBy", "(String[])", "", "Argument[-1]", "ReturnValue", "value", "manual"]
diff --git a/java/ql/lib/ext/org.springframework.jdbc.core.model.yml b/java/ql/lib/ext/org.springframework.jdbc.core.model.yml
new file mode 100644
index 00000000000..36bf98f9ebc
--- /dev/null
+++ b/java/ql/lib/ext/org.springframework.jdbc.core.model.yml
@@ -0,0 +1,15 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSinkModel
+    data:
+      - ["org.springframework.jdbc.core", "JdbcTemplate", False, "batchUpdate", "", "", "Argument[0]", "sql", "manual"]
+      - ["org.springframework.jdbc.core", "JdbcTemplate", False, "batchUpdate", "(String[])", "", "Argument[0]", "sql", "manual"]
+      - ["org.springframework.jdbc.core", "JdbcTemplate", False, "execute", "", "", "Argument[0]", "sql", "manual"]
+      - ["org.springframework.jdbc.core", "JdbcTemplate", False, "query", "", "", "Argument[0]", "sql", "manual"]
+      - ["org.springframework.jdbc.core", "JdbcTemplate", False, "queryForList", "", "", "Argument[0]", "sql", "manual"]
+      - ["org.springframework.jdbc.core", "JdbcTemplate", False, "queryForMap", "", "", "Argument[0]", "sql", "manual"]
+      - ["org.springframework.jdbc.core", "JdbcTemplate", False, "queryForObject", "", "", "Argument[0]", "sql", "manual"]
+      - ["org.springframework.jdbc.core", "JdbcTemplate", False, "queryForRowSet", "", "", "Argument[0]", "sql", "manual"]
+      - ["org.springframework.jdbc.core", "JdbcTemplate", False, "queryForStream", "", "", "Argument[0]", "sql", "manual"]
+      - ["org.springframework.jdbc.core", "JdbcTemplate", False, "update", "", "", "Argument[0]", "sql", "manual"]
diff --git a/java/ql/lib/ext/org.springframework.jdbc.datasource.model.yml b/java/ql/lib/ext/org.springframework.jdbc.datasource.model.yml
new file mode 100644
index 00000000000..54d607485f9
--- /dev/null
+++ b/java/ql/lib/ext/org.springframework.jdbc.datasource.model.yml
@@ -0,0 +1,9 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSinkModel
+    data:
+      - ["org.springframework.jdbc.datasource", "AbstractDriverBasedDataSource", False, "setUrl", "(String)", "", "Argument[0]", "jdbc-url", "manual"]
+      - ["org.springframework.jdbc.datasource", "DriverManagerDataSource", False, "DriverManagerDataSource", "(String)", "", "Argument[0]", "jdbc-url", "manual"]
+      - ["org.springframework.jdbc.datasource", "DriverManagerDataSource", False, "DriverManagerDataSource", "(String,Properties)", "", "Argument[0]", "jdbc-url", "manual"]
+      - ["org.springframework.jdbc.datasource", "DriverManagerDataSource", False, "DriverManagerDataSource", "(String,String,String)", "", "Argument[0]", "jdbc-url", "manual"]
diff --git a/java/ql/lib/ext/org.springframework.jdbc.object.model.yml b/java/ql/lib/ext/org.springframework.jdbc.object.model.yml
new file mode 100644
index 00000000000..fc15867d36d
--- /dev/null
+++ b/java/ql/lib/ext/org.springframework.jdbc.object.model.yml
@@ -0,0 +1,14 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSinkModel
+    data:
+      - ["org.springframework.jdbc.object", "BatchSqlUpdate", False, "BatchSqlUpdate", "", "", "Argument[1]", "sql", "manual"]
+      - ["org.springframework.jdbc.object", "MappingSqlQuery", False, "BatchSqlUpdate", "", "", "Argument[1]", "sql", "manual"]
+      - ["org.springframework.jdbc.object", "MappingSqlQueryWithParameters", False, "BatchSqlUpdate", "", "", "Argument[1]", "sql", "manual"]
+      - ["org.springframework.jdbc.object", "RdbmsOperation", True, "setSql", "", "", "Argument[0]", "sql", "manual"]
+      - ["org.springframework.jdbc.object", "SqlCall", False, "SqlCall", "", "", "Argument[1]", "sql", "manual"]
+      - ["org.springframework.jdbc.object", "SqlFunction", False, "SqlFunction", "", "", "Argument[1]", "sql", "manual"]
+      - ["org.springframework.jdbc.object", "SqlQuery", False, "SqlQuery", "", "", "Argument[1]", "sql", "manual"]
+      - ["org.springframework.jdbc.object", "SqlUpdate", False, "SqlUpdate", "", "", "Argument[1]", "sql", "manual"]
+      - ["org.springframework.jdbc.object", "UpdatableSqlQuery", False, "UpdatableSqlQuery", "", "", "Argument[1]", "sql", "manual"]
diff --git a/java/ql/lib/ext/org.springframework.jndi.model.yml b/java/ql/lib/ext/org.springframework.jndi.model.yml
new file mode 100644
index 00000000000..0df0234a379
--- /dev/null
+++ b/java/ql/lib/ext/org.springframework.jndi.model.yml
@@ -0,0 +1,6 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSinkModel
+    data:
+      - ["org.springframework.jndi", "JndiTemplate", False, "lookup", "", "", "Argument[0]", "jndi-injection", "manual"]
diff --git a/java/ql/lib/ext/org.springframework.ldap.core.model.yml b/java/ql/lib/ext/org.springframework.ldap.core.model.yml
new file mode 100644
index 00000000000..bebe96fc14a
--- /dev/null
+++ b/java/ql/lib/ext/org.springframework.ldap.core.model.yml
@@ -0,0 +1,38 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSinkModel
+    data:
+      - ["org.springframework.ldap.core", "LdapOperations", True, "findByDn", "", "", "Argument[0]", "jndi-injection", "manual"]
+      - ["org.springframework.ldap.core", "LdapOperations", True, "list", "", "", "Argument[0]", "jndi-injection", "manual"]
+      - ["org.springframework.ldap.core", "LdapOperations", True, "listBindings", "", "", "Argument[0]", "jndi-injection", "manual"]
+      - ["org.springframework.ldap.core", "LdapOperations", True, "lookup", "(Name)", "", "Argument[0]", "jndi-injection", "manual"]
+      - ["org.springframework.ldap.core", "LdapOperations", True, "lookup", "(Name,ContextMapper)", "", "Argument[0]", "jndi-injection", "manual"]
+      - ["org.springframework.ldap.core", "LdapOperations", True, "lookup", "(Name,String[],ContextMapper)", "", "Argument[0]", "jndi-injection", "manual"]
+      - ["org.springframework.ldap.core", "LdapOperations", True, "lookup", "(String)", "", "Argument[0]", "jndi-injection", "manual"]
+      - ["org.springframework.ldap.core", "LdapOperations", True, "lookup", "(String,ContextMapper)", "", "Argument[0]", "jndi-injection", "manual"]
+      - ["org.springframework.ldap.core", "LdapOperations", True, "lookup", "(String,String[],ContextMapper)", "", "Argument[0]", "jndi-injection", "manual"]
+      - ["org.springframework.ldap.core", "LdapOperations", True, "lookupContext", "", "", "Argument[0]", "jndi-injection", "manual"]
+      - ["org.springframework.ldap.core", "LdapOperations", True, "rename", "", "", "Argument[0]", "jndi-injection", "manual"]
+      - ["org.springframework.ldap.core", "LdapOperations", True, "search", "(Name,String,ContextMapper)", "", "Argument[0]", "jndi-injection", "manual"]
+      - ["org.springframework.ldap.core", "LdapOperations", True, "search", "(Name,String,int,ContextMapper)", "", "Argument[0]", "jndi-injection", "manual"]
+      - ["org.springframework.ldap.core", "LdapOperations", True, "search", "(Name,String,int,String[],ContextMapper)", "", "Argument[0]", "jndi-injection", "manual"]
+      - ["org.springframework.ldap.core", "LdapOperations", True, "search", "(String,String,ContextMapper)", "", "Argument[0]", "jndi-injection", "manual"]
+      - ["org.springframework.ldap.core", "LdapOperations", True, "search", "(String,String,int,ContextMapper)", "", "Argument[0]", "jndi-injection", "manual"]
+      - ["org.springframework.ldap.core", "LdapOperations", True, "search", "(String,String,int,String[],ContextMapper)", "", "Argument[0]", "jndi-injection", "manual"]
+      - ["org.springframework.ldap.core", "LdapOperations", True, "searchForObject", "(Name,String,ContextMapper)", "", "Argument[0]", "jndi-injection", "manual"]
+      - ["org.springframework.ldap.core", "LdapOperations", True, "searchForObject", "(String,String,ContextMapper)", "", "Argument[0]", "jndi-injection", "manual"]
+      - ["org.springframework.ldap.core", "LdapTemplate", False, "authenticate", "(LdapQuery,String)", "", "Argument[0]", "ldap", "manual"]
+      - ["org.springframework.ldap.core", "LdapTemplate", False, "authenticate", "(Name,String,String)", "", "Argument[0..1]", "ldap", "manual"]
+      - ["org.springframework.ldap.core", "LdapTemplate", False, "authenticate", "(Name,String,String,AuthenticatedLdapEntryContextCallback)", "", "Argument[0..1]", "ldap", "manual"]
+      - ["org.springframework.ldap.core", "LdapTemplate", False, "authenticate", "(Name,String,String,AuthenticatedLdapEntryContextCallback,AuthenticationErrorCallback)", "", "Argument[0..1]", "ldap", "manual"]
+      - ["org.springframework.ldap.core", "LdapTemplate", False, "authenticate", "(Name,String,String,AuthenticationErrorCallback)", "", "Argument[0..1]", "ldap", "manual"]
+      - ["org.springframework.ldap.core", "LdapTemplate", False, "authenticate", "(String,String,String)", "", "Argument[0..1]", "ldap", "manual"]
+      - ["org.springframework.ldap.core", "LdapTemplate", False, "authenticate", "(String,String,String,AuthenticatedLdapEntryContextCallback)", "", "Argument[0..1]", "ldap", "manual"]
+      - ["org.springframework.ldap.core", "LdapTemplate", False, "authenticate", "(String,String,String,AuthenticatedLdapEntryContextCallback,AuthenticationErrorCallback)", "", "Argument[0..1]", "ldap", "manual"]
+      - ["org.springframework.ldap.core", "LdapTemplate", False, "authenticate", "(String,String,String,AuthenticationErrorCallback)", "", "Argument[0..1]", "ldap", "manual"]
+      - ["org.springframework.ldap.core", "LdapTemplate", False, "find", "", "", "Argument[0..1]", "ldap", "manual"]
+      - ["org.springframework.ldap.core", "LdapTemplate", False, "findOne", "", "", "Argument[0..1]", "ldap", "manual"]
+      - ["org.springframework.ldap.core", "LdapTemplate", False, "search", "", "", "Argument[0..1]", "ldap", "manual"]
+      - ["org.springframework.ldap.core", "LdapTemplate", False, "searchForContext", "", "", "Argument[0..1]", "ldap", "manual"]
+      - ["org.springframework.ldap.core", "LdapTemplate", False, "searchForObject", "", "", "Argument[0..1]", "ldap", "manual"]
diff --git a/java/ql/lib/ext/org.springframework.ldap.model.yml b/java/ql/lib/ext/org.springframework.ldap.model.yml
new file mode 100644
index 00000000000..3ce0ad5d6b5
--- /dev/null
+++ b/java/ql/lib/ext/org.springframework.ldap.model.yml
@@ -0,0 +1,19 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSinkModel
+    data:
+      - ["org.springframework.ldap", "LdapOperations", True, "findByDn", "", "", "Argument[0]", "jndi-injection", "manual"]
+      - ["org.springframework.ldap", "LdapOperations", True, "list", "", "", "Argument[0]", "jndi-injection", "manual"]
+      - ["org.springframework.ldap", "LdapOperations", True, "listBindings", "", "", "Argument[0]", "jndi-injection", "manual"]
+      - ["org.springframework.ldap", "LdapOperations", True, "lookup", "", "", "Argument[0]", "jndi-injection", "manual"]
+      - ["org.springframework.ldap", "LdapOperations", True, "lookupContext", "", "", "Argument[0]", "jndi-injection", "manual"]
+      - ["org.springframework.ldap", "LdapOperations", True, "rename", "", "", "Argument[0]", "jndi-injection", "manual"]
+      - ["org.springframework.ldap", "LdapOperations", True, "search", "(Name,String,ContextMapper)", "", "Argument[0]", "jndi-injection", "manual"]
+      - ["org.springframework.ldap", "LdapOperations", True, "search", "(Name,String,int,ContextMapper)", "", "Argument[0]", "jndi-injection", "manual"]
+      - ["org.springframework.ldap", "LdapOperations", True, "search", "(Name,String,int,String[],ContextMapper)", "", "Argument[0]", "jndi-injection", "manual"]
+      - ["org.springframework.ldap", "LdapOperations", True, "search", "(String,String,ContextMapper)", "", "Argument[0]", "jndi-injection", "manual"]
+      - ["org.springframework.ldap", "LdapOperations", True, "search", "(String,String,int,ContextMapper)", "", "Argument[0]", "jndi-injection", "manual"]
+      - ["org.springframework.ldap", "LdapOperations", True, "search", "(String,String,int,String[],ContextMapper)", "", "Argument[0]", "jndi-injection", "manual"]
+      - ["org.springframework.ldap", "LdapOperations", True, "searchForObject", "(Name,String,ContextMapper)", "", "Argument[0]", "jndi-injection", "manual"]
+      - ["org.springframework.ldap", "LdapOperations", True, "searchForObject", "(String,String,ContextMapper)", "", "Argument[0]", "jndi-injection", "manual"]
diff --git a/java/ql/lib/ext/org.springframework.security.web.savedrequest.model.yml b/java/ql/lib/ext/org.springframework.security.web.savedrequest.model.yml
new file mode 100644
index 00000000000..0dd6df9116e
--- /dev/null
+++ b/java/ql/lib/ext/org.springframework.security.web.savedrequest.model.yml
@@ -0,0 +1,11 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSourceModel
+    data:
+      - ["org.springframework.security.web.savedrequest", "SavedRequest", True, "getCookies", "", "", "ReturnValue", "remote", "manual"]
+      - ["org.springframework.security.web.savedrequest", "SavedRequest", True, "getHeaderNames", "", "", "ReturnValue", "remote", "manual"]
+      - ["org.springframework.security.web.savedrequest", "SavedRequest", True, "getHeaderValues", "", "", "ReturnValue", "remote", "manual"]
+      - ["org.springframework.security.web.savedrequest", "SavedRequest", True, "getParameterMap", "", "", "ReturnValue", "remote", "manual"]
+      - ["org.springframework.security.web.savedrequest", "SavedRequest", True, "getParameterValues", "", "", "ReturnValue", "remote", "manual"]
+      - ["org.springframework.security.web.savedrequest", "SavedRequest", True, "getRedirectUrl", "", "", "ReturnValue", "remote", "manual"]
diff --git a/java/ql/lib/ext/org.springframework.ui.model.yml b/java/ql/lib/ext/org.springframework.ui.model.yml
new file mode 100644
index 00000000000..0ff23939bed
--- /dev/null
+++ b/java/ql/lib/ext/org.springframework.ui.model.yml
@@ -0,0 +1,37 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSummaryModel
+    data:
+      - ["org.springframework.ui", "ConcurrentModel", False, "ConcurrentModel", "(Object)", "", "Argument[0]", "Argument[-1].MapValue", "value", "manual"]
+      - ["org.springframework.ui", "ConcurrentModel", False, "ConcurrentModel", "(String,Object)", "", "Argument[0]", "Argument[-1].MapKey", "value", "manual"]
+      - ["org.springframework.ui", "ConcurrentModel", False, "ConcurrentModel", "(String,Object)", "", "Argument[1]", "Argument[-1].MapValue", "value", "manual"]
+      - ["org.springframework.ui", "Model", True, "addAllAttributes", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["org.springframework.ui", "Model", True, "addAllAttributes", "(Collection)", "", "Argument[0].Element", "Argument[-1].MapValue", "value", "manual"]
+      - ["org.springframework.ui", "Model", True, "addAllAttributes", "(Map)", "", "Argument[0].MapKey", "Argument[-1].MapKey", "value", "manual"]
+      - ["org.springframework.ui", "Model", True, "addAllAttributes", "(Map)", "", "Argument[0].MapValue", "Argument[-1].MapValue", "value", "manual"]
+      - ["org.springframework.ui", "Model", True, "addAttribute", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["org.springframework.ui", "Model", True, "addAttribute", "(Object)", "", "Argument[0]", "Argument[-1].MapValue", "value", "manual"]
+      - ["org.springframework.ui", "Model", True, "addAttribute", "(String,Object)", "", "Argument[0]", "Argument[-1].MapKey", "value", "manual"]
+      - ["org.springframework.ui", "Model", True, "addAttribute", "(String,Object)", "", "Argument[1]", "Argument[-1].MapValue", "value", "manual"]
+      - ["org.springframework.ui", "Model", True, "asMap", "", "", "Argument[-1].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["org.springframework.ui", "Model", True, "asMap", "", "", "Argument[-1].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["org.springframework.ui", "Model", True, "getAttribute", "", "", "Argument[-1].MapValue", "ReturnValue", "value", "manual"]
+      - ["org.springframework.ui", "Model", True, "mergeAttributes", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["org.springframework.ui", "Model", True, "mergeAttributes", "", "", "Argument[0].MapKey", "Argument[-1].MapKey", "value", "manual"]
+      - ["org.springframework.ui", "Model", True, "mergeAttributes", "", "", "Argument[0].MapValue", "Argument[-1].MapValue", "value", "manual"]
+      - ["org.springframework.ui", "ModelMap", False, "ModelMap", "(Object)", "", "Argument[0]", "Argument[-1].MapValue", "value", "manual"]
+      - ["org.springframework.ui", "ModelMap", False, "ModelMap", "(String,Object)", "", "Argument[0]", "Argument[-1].MapKey", "value", "manual"]
+      - ["org.springframework.ui", "ModelMap", False, "ModelMap", "(String,Object)", "", "Argument[1]", "Argument[-1].MapValue", "value", "manual"]
+      - ["org.springframework.ui", "ModelMap", False, "addAllAttributes", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["org.springframework.ui", "ModelMap", False, "addAllAttributes", "(Collection)", "", "Argument[0].Element", "Argument[-1].MapValue", "value", "manual"]
+      - ["org.springframework.ui", "ModelMap", False, "addAllAttributes", "(Map)", "", "Argument[0].MapKey", "Argument[-1].MapKey", "value", "manual"]
+      - ["org.springframework.ui", "ModelMap", False, "addAllAttributes", "(Map)", "", "Argument[0].MapValue", "Argument[-1].MapValue", "value", "manual"]
+      - ["org.springframework.ui", "ModelMap", False, "addAttribute", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["org.springframework.ui", "ModelMap", False, "addAttribute", "(Object)", "", "Argument[0]", "Argument[-1].MapValue", "value", "manual"]
+      - ["org.springframework.ui", "ModelMap", False, "addAttribute", "(String,Object)", "", "Argument[0]", "Argument[-1].MapKey", "value", "manual"]
+      - ["org.springframework.ui", "ModelMap", False, "addAttribute", "(String,Object)", "", "Argument[1]", "Argument[-1].MapValue", "value", "manual"]
+      - ["org.springframework.ui", "ModelMap", False, "getAttribute", "", "", "Argument[-1].MapValue", "ReturnValue", "value", "manual"]
+      - ["org.springframework.ui", "ModelMap", False, "mergeAttributes", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["org.springframework.ui", "ModelMap", False, "mergeAttributes", "", "", "Argument[0].MapKey", "Argument[-1].MapKey", "value", "manual"]
+      - ["org.springframework.ui", "ModelMap", False, "mergeAttributes", "", "", "Argument[0].MapValue", "Argument[-1].MapValue", "value", "manual"]
diff --git a/java/ql/lib/ext/org.springframework.util.model.yml b/java/ql/lib/ext/org.springframework.util.model.yml
new file mode 100644
index 00000000000..62eb0af5bd1
--- /dev/null
+++ b/java/ql/lib/ext/org.springframework.util.model.yml
@@ -0,0 +1,144 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSummaryModel
+    data:
+      - ["org.springframework.util", "AntPathMatcher", False, "combine", "", "", "Argument[0..1]", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.util", "AntPathMatcher", False, "doMatch", "", "", "Argument[1]", "Argument[3].MapValue", "taint", "manual"]
+      - ["org.springframework.util", "AntPathMatcher", False, "extractPathWithinPattern", "", "", "Argument[1]", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.util", "AntPathMatcher", False, "extractUriTemplateVariables", "", "", "Argument[1]", "ReturnValue.MapValue", "taint", "manual"]
+      - ["org.springframework.util", "AntPathMatcher", False, "tokenizePath", "", "", "Argument[0]", "ReturnValue.ArrayElement", "taint", "manual"]
+      - ["org.springframework.util", "AntPathMatcher", False, "tokenizePattern", "", "", "Argument[0]", "ReturnValue.ArrayElement", "taint", "manual"]
+      - ["org.springframework.util", "AutoPopulatingList", False, "AutoPopulatingList", "(java.util.List,java.lang.Class)", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
+      - ["org.springframework.util", "AutoPopulatingList", False, "AutoPopulatingList", "(java.util.List,org.springframework.util.AutoPopulatingList.ElementFactory)", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
+      - ["org.springframework.util", "Base64Utils", False, "decode", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.util", "Base64Utils", False, "decodeFromString", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.util", "Base64Utils", False, "decodeFromUrlSafeString", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.util", "Base64Utils", False, "decodeUrlSafe", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.util", "Base64Utils", False, "encode", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.util", "Base64Utils", False, "encodeToString", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.util", "Base64Utils", False, "encodeToUrlSafeString", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.util", "Base64Utils", False, "encodeUrlSafe", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.util", "CollectionUtils", False, "arrayToList", "", "", "Argument[0].ArrayElement", "ReturnValue.Element", "value", "manual"]
+      - ["org.springframework.util", "CollectionUtils", False, "findFirstMatch", "", "", "Argument[0].Element", "ReturnValue", "value", "manual"]
+      - ["org.springframework.util", "CollectionUtils", False, "findValueOfType", "", "", "Argument[0].Element", "ReturnValue", "value", "manual"]
+      - ["org.springframework.util", "CollectionUtils", False, "firstElement", "", "", "Argument[0].Element", "ReturnValue", "value", "manual"]
+      - ["org.springframework.util", "CollectionUtils", False, "lastElement", "", "", "Argument[0].Element", "ReturnValue", "value", "manual"]
+      - ["org.springframework.util", "CollectionUtils", False, "mergeArrayIntoCollection", "", "", "Argument[0].ArrayElement", "Argument[1].Element", "value", "manual"]
+      - ["org.springframework.util", "CollectionUtils", False, "mergePropertiesIntoMap", "", "", "Argument[0].MapKey", "Argument[1].MapKey", "value", "manual"]
+      - ["org.springframework.util", "CollectionUtils", False, "mergePropertiesIntoMap", "", "", "Argument[0].MapValue", "Argument[1].MapValue", "value", "manual"]
+      - ["org.springframework.util", "CollectionUtils", False, "toArray", "", "", "Argument[0].Element", "ReturnValue.ArrayElement", "value", "manual"]
+      - ["org.springframework.util", "CollectionUtils", False, "toIterator", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["org.springframework.util", "CollectionUtils", False, "toMultiValueMap", "", "", "Argument[0].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["org.springframework.util", "CollectionUtils", False, "toMultiValueMap", "", "", "Argument[0].MapValue.Element", "ReturnValue.MapValue.Element", "value", "manual"]
+      - ["org.springframework.util", "CollectionUtils", False, "unmodifiableMultiValueMap", "", "", "Argument[0].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["org.springframework.util", "CollectionUtils", False, "unmodifiableMultiValueMap", "", "", "Argument[0].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["org.springframework.util", "CompositeIterator", False, "add", "", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
+      - ["org.springframework.util", "ConcurrentReferenceHashMap", False, "getReference", "", "", "Argument[-1].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["org.springframework.util", "ConcurrentReferenceHashMap", False, "getReference", "", "", "Argument[-1].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["org.springframework.util", "ConcurrentReferenceHashMap", False, "getSegment", "", "", "Argument[-1].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["org.springframework.util", "ConcurrentReferenceHashMap", False, "getSegment", "", "", "Argument[-1].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["org.springframework.util", "FastByteArrayOutputStream", False, "getInputStream", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.util", "FastByteArrayOutputStream", False, "toByteArray", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.util", "FastByteArrayOutputStream", False, "write", "", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.springframework.util", "FastByteArrayOutputStream", False, "writeTo", "", "", "Argument[-1]", "Argument[0]", "taint", "manual"]
+      - ["org.springframework.util", "FileCopyUtils", False, "copy", "", "", "Argument[0]", "Argument[1]", "taint", "manual"]
+      - ["org.springframework.util", "FileCopyUtils", False, "copyToByteArray", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.util", "FileCopyUtils", False, "copyToString", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.util", "FileSystemUtils", False, "copyRecursively", "(java.io.File,java.io.File)", "", "Argument[0]", "Argument[1]", "taint", "manual"]
+      - ["org.springframework.util", "LinkedMultiValueMap", False, "LinkedMultiValueMap", "(java.util.Map)", "", "Argument[0].MapKey", "Argument[-1].MapKey", "value", "manual"]
+      - ["org.springframework.util", "LinkedMultiValueMap", False, "LinkedMultiValueMap", "(java.util.Map)", "", "Argument[0].MapValue.Element", "Argument[-1].MapValue.Element", "value", "manual"]
+      - ["org.springframework.util", "LinkedMultiValueMap", False, "deepCopy", "", "", "Argument[-1].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["org.springframework.util", "LinkedMultiValueMap", False, "deepCopy", "", "", "Argument[-1].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["org.springframework.util", "MultiValueMap", True, "add", "", "", "Argument[0]", "Argument[-1].MapKey", "value", "manual"]
+      - ["org.springframework.util", "MultiValueMap", True, "add", "", "", "Argument[1]", "Argument[-1].MapValue.Element", "value", "manual"]
+      - ["org.springframework.util", "MultiValueMap", True, "addAll", "(java.lang.Object,java.util.List)", "", "Argument[0]", "Argument[-1].MapKey", "value", "manual"]
+      - ["org.springframework.util", "MultiValueMap", True, "addAll", "(java.lang.Object,java.util.List)", "", "Argument[1].Element", "Argument[-1].MapValue.Element", "value", "manual"]
+      - ["org.springframework.util", "MultiValueMap", True, "addAll", "(org.springframework.util.MultiValueMap)", "", "Argument[0].MapKey", "Argument[-1].MapKey", "value", "manual"]
+      - ["org.springframework.util", "MultiValueMap", True, "addAll", "(org.springframework.util.MultiValueMap)", "", "Argument[0].MapValue.Element", "Argument[-1].MapValue.Element", "value", "manual"]
+      - ["org.springframework.util", "MultiValueMap", True, "addIfAbsent", "", "", "Argument[0]", "Argument[-1].MapKey", "value", "manual"]
+      - ["org.springframework.util", "MultiValueMap", True, "addIfAbsent", "", "", "Argument[1]", "Argument[-1].MapValue.Element", "value", "manual"]
+      - ["org.springframework.util", "MultiValueMap", True, "getFirst", "", "", "Argument[-1].MapValue.Element", "ReturnValue", "value", "manual"]
+      - ["org.springframework.util", "MultiValueMap", True, "set", "", "", "Argument[0]", "Argument[-1].MapKey", "value", "manual"]
+      - ["org.springframework.util", "MultiValueMap", True, "set", "", "", "Argument[1]", "Argument[-1].MapValue.Element", "value", "manual"]
+      - ["org.springframework.util", "MultiValueMap", True, "setAll", "", "", "Argument[0].MapKey", "Argument[-1].MapKey", "value", "manual"]
+      - ["org.springframework.util", "MultiValueMap", True, "setAll", "", "", "Argument[0].MapValue", "Argument[-1].MapValue.Element", "value", "manual"]
+      - ["org.springframework.util", "MultiValueMap", True, "toSingleValueMap", "", "", "Argument[-1].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["org.springframework.util", "MultiValueMap", True, "toSingleValueMap", "", "", "Argument[-1].MapValue.Element", "ReturnValue.MapValue", "value", "manual"]
+      - ["org.springframework.util", "MultiValueMapAdapter", False, "MultiValueMapAdapter", "", "", "Argument[0].MapKey", "Argument[-1].MapKey", "value", "manual"]
+      - ["org.springframework.util", "MultiValueMapAdapter", False, "MultiValueMapAdapter", "", "", "Argument[0].MapValue.Element", "Argument[-1].MapValue.Element", "value", "manual"]
+      - ["org.springframework.util", "ObjectUtils", False, "addObjectToArray", "", "", "Argument[0].ArrayElement", "ReturnValue.ArrayElement", "value", "manual"]
+      - ["org.springframework.util", "ObjectUtils", False, "addObjectToArray", "", "", "Argument[1]", "ReturnValue.ArrayElement", "value", "manual"]
+      - ["org.springframework.util", "ObjectUtils", False, "toObjectArray", "", "", "Argument[0].ArrayElement", "ReturnValue.ArrayElement", "value", "manual"]
+      - ["org.springframework.util", "ObjectUtils", False, "unwrapOptional", "", "", "Argument[0].Element", "ReturnValue", "value", "manual"]
+      - ["org.springframework.util", "PropertiesPersister", True, "load", "", "", "Argument[1]", "Argument[0]", "taint", "manual"]
+      - ["org.springframework.util", "PropertiesPersister", True, "loadFromXml", "", "", "Argument[1]", "Argument[0]", "taint", "manual"]
+      - ["org.springframework.util", "PropertiesPersister", True, "store", "", "", "Argument[0]", "Argument[1]", "taint", "manual"]
+      - ["org.springframework.util", "PropertiesPersister", True, "store", "", "", "Argument[2]", "Argument[1]", "taint", "manual"]
+      - ["org.springframework.util", "PropertiesPersister", True, "storeToXml", "", "", "Argument[0]", "Argument[1]", "taint", "manual"]
+      - ["org.springframework.util", "PropertiesPersister", True, "storeToXml", "", "", "Argument[2]", "Argument[1]", "taint", "manual"]
+      - ["org.springframework.util", "PropertyPlaceholderHelper", False, "PropertyPlaceholderHelper", "", "", "Argument[0..1]", "Argument[-1]", "taint", "manual"]
+      - ["org.springframework.util", "PropertyPlaceholderHelper", False, "parseStringValue", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.util", "PropertyPlaceholderHelper", False, "replacePlaceholders", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.util", "PropertyPlaceholderHelper", False, "replacePlaceholders", "(java.lang.String,java.util.Properties)", "", "Argument[1].MapValue", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.util", "ResourceUtils", False, "extractArchiveURL", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.util", "ResourceUtils", False, "extractJarFileURL", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.util", "ResourceUtils", False, "getFile", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.util", "ResourceUtils", False, "getURL", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.util", "ResourceUtils", False, "toURI", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.util", "RouteMatcher", True, "combine", "", "", "Argument[0..1]", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.util", "RouteMatcher", True, "matchAndExtract", "", "", "Argument[0]", "ReturnValue.MapKey", "taint", "manual"]
+      - ["org.springframework.util", "RouteMatcher", True, "matchAndExtract", "", "", "Argument[1]", "ReturnValue.MapValue", "taint", "manual"]
+      - ["org.springframework.util", "RouteMatcher", True, "parseRoute", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.util", "SerializationUtils", False, "deserialize", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.util", "SerializationUtils", False, "serialize", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.util", "StreamUtils", False, "copy", "(byte[],java.io.OutputStream)", "", "Argument[0]", "Argument[1]", "taint", "manual"]
+      - ["org.springframework.util", "StreamUtils", False, "copy", "(java.io.InputStream,java.io.OutputStream)", "", "Argument[0]", "Argument[1]", "taint", "manual"]
+      - ["org.springframework.util", "StreamUtils", False, "copy", "(java.lang.String,java.nio.charset.Charset,java.io.OutputStream)", "", "Argument[0]", "Argument[2]", "taint", "manual"]
+      - ["org.springframework.util", "StreamUtils", False, "copyRange", "", "", "Argument[0]", "Argument[1]", "taint", "manual"]
+      - ["org.springframework.util", "StreamUtils", False, "copyToByteArray", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.util", "StreamUtils", False, "copyToString", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.util", "StringUtils", False, "addStringToArray", "", "", "Argument[0].ArrayElement", "ReturnValue.ArrayElement", "value", "manual"]
+      - ["org.springframework.util", "StringUtils", False, "addStringToArray", "", "", "Argument[1]", "ReturnValue.ArrayElement", "value", "manual"]
+      - ["org.springframework.util", "StringUtils", False, "applyRelativePath", "", "", "Argument[0..1]", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.util", "StringUtils", False, "arrayToCommaDelimitedString", "", "", "Argument[0].ArrayElement", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.util", "StringUtils", False, "arrayToDelimitedString", "", "", "Argument[0].ArrayElement", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.util", "StringUtils", False, "arrayToDelimitedString", "", "", "Argument[1]", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.util", "StringUtils", False, "capitalize", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.util", "StringUtils", False, "cleanPath", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.util", "StringUtils", False, "collectionToCommaDelimitedString", "", "", "Argument[0].Element", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.util", "StringUtils", False, "collectionToDelimitedString", "", "", "Argument[0].Element", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.util", "StringUtils", False, "collectionToDelimitedString", "", "", "Argument[1..3]", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.util", "StringUtils", False, "commaDelimitedListToSet", "", "", "Argument[0]", "ReturnValue.Element", "taint", "manual"]
+      - ["org.springframework.util", "StringUtils", False, "commaDelimitedListToStringArray", "", "", "Argument[0]", "ReturnValue.ArrayElement", "taint", "manual"]
+      - ["org.springframework.util", "StringUtils", False, "concatenateStringArrays", "", "", "Argument[0..1].ArrayElement", "ReturnValue.ArrayElement", "taint", "manual"]
+      - ["org.springframework.util", "StringUtils", False, "delete", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.util", "StringUtils", False, "deleteAny", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.util", "StringUtils", False, "delimitedListToStringArray", "", "", "Argument[0]", "ReturnValue.ArrayElement", "taint", "manual"]
+      - ["org.springframework.util", "StringUtils", False, "getFilename", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.util", "StringUtils", False, "getFilenameExtension", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.util", "StringUtils", False, "mergeStringArrays", "", "", "Argument[0..1].ArrayElement", "ReturnValue.ArrayElement", "value", "manual"]
+      - ["org.springframework.util", "StringUtils", False, "quote", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.util", "StringUtils", False, "quoteIfString", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.util", "StringUtils", False, "removeDuplicateStrings", "", "", "Argument[0].ArrayElement", "ReturnValue.ArrayElement", "value", "manual"]
+      - ["org.springframework.util", "StringUtils", False, "replace", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.util", "StringUtils", False, "replace", "", "", "Argument[2]", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.util", "StringUtils", False, "sortStringArray", "", "", "Argument[0].ArrayElement", "ReturnValue.ArrayElement", "value", "manual"]
+      - ["org.springframework.util", "StringUtils", False, "split", "", "", "Argument[0]", "ReturnValue.ArrayElement", "taint", "manual"]
+      - ["org.springframework.util", "StringUtils", False, "splitArrayElementsIntoProperties", "", "", "Argument[0].ArrayElement", "ReturnValue.MapKey", "taint", "manual"]
+      - ["org.springframework.util", "StringUtils", False, "splitArrayElementsIntoProperties", "", "", "Argument[0].ArrayElement", "ReturnValue.MapValue", "taint", "manual"]
+      - ["org.springframework.util", "StringUtils", False, "stripFilenameExtension", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.util", "StringUtils", False, "toStringArray", "", "", "Argument[0].Element", "ReturnValue.ArrayElement", "value", "manual"]
+      - ["org.springframework.util", "StringUtils", False, "tokenizeToStringArray", "", "", "Argument[0]", "ReturnValue.ArrayElement", "taint", "manual"]
+      - ["org.springframework.util", "StringUtils", False, "trimAllWhitespace", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.util", "StringUtils", False, "trimArrayElements", "", "", "Argument[0].ArrayElement", "ReturnValue.ArrayElement", "taint", "manual"]
+      - ["org.springframework.util", "StringUtils", False, "trimLeadingCharacter", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.util", "StringUtils", False, "trimLeadingWhitespace", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.util", "StringUtils", False, "trimTrailingCharacter", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.util", "StringUtils", False, "trimTrailingWhitespace", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.util", "StringUtils", False, "trimWhitespace", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.util", "StringUtils", False, "uncapitalize", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.util", "StringUtils", False, "unqualify", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.util", "StringUtils", False, "uriDecode", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.util", "StringValueResolver", False, "resolveStringValue", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.util", "SystemPropertyUtils", False, "resolvePlaceholders", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
diff --git a/java/ql/lib/ext/org.springframework.validation.model.yml b/java/ql/lib/ext/org.springframework.validation.model.yml
new file mode 100644
index 00000000000..46b3c3d016f
--- /dev/null
+++ b/java/ql/lib/ext/org.springframework.validation.model.yml
@@ -0,0 +1,18 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSummaryModel
+    data:
+      - ["org.springframework.validation", "Errors", True, "addAllErrors", "", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.springframework.validation", "Errors", True, "getAllErrors", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.validation", "Errors", True, "getFieldError", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.validation", "Errors", True, "getFieldErrors", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.validation", "Errors", True, "getGlobalError", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.validation", "Errors", True, "getGlobalErrors", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.validation", "Errors", True, "reject", "", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.springframework.validation", "Errors", True, "reject", "", "", "Argument[1].ArrayElement", "Argument[-1]", "taint", "manual"]
+      - ["org.springframework.validation", "Errors", True, "reject", "", "", "Argument[2]", "Argument[-1]", "taint", "manual"]
+      - ["org.springframework.validation", "Errors", True, "rejectValue", "", "", "Argument[1]", "Argument[-1]", "taint", "manual"]
+      - ["org.springframework.validation", "Errors", True, "rejectValue", "", "", "Argument[3]", "Argument[-1]", "taint", "manual"]
+      - ["org.springframework.validation", "Errors", True, "rejectValue", "(java.lang.String,java.lang.String,java.lang.Object[],java.lang.String)", "", "Argument[2].ArrayElement", "Argument[-1]", "taint", "manual"]
+      - ["org.springframework.validation", "Errors", True, "rejectValue", "(java.lang.String,java.lang.String,java.lang.String)", "", "Argument[2]", "Argument[-1]", "taint", "manual"]
diff --git a/java/ql/lib/ext/org.springframework.web.client.model.yml b/java/ql/lib/ext/org.springframework.web.client.model.yml
new file mode 100644
index 00000000000..92f9a558245
--- /dev/null
+++ b/java/ql/lib/ext/org.springframework.web.client.model.yml
@@ -0,0 +1,25 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSourceModel
+    data:
+      - ["org.springframework.web.client", "RestTemplate", False, "exchange", "", "", "ReturnValue", "remote", "manual"]
+      - ["org.springframework.web.client", "RestTemplate", False, "getForEntity", "", "", "ReturnValue", "remote", "manual"]
+      - ["org.springframework.web.client", "RestTemplate", False, "postForEntity", "", "", "ReturnValue", "remote", "manual"]
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSinkModel
+    data:
+      - ["org.springframework.web.client", "RestTemplate", False, "delete", "", "", "Argument[0]", "open-url", "manual"]
+      - ["org.springframework.web.client", "RestTemplate", False, "doExecute", "", "", "Argument[0]", "open-url", "manual"]
+      - ["org.springframework.web.client", "RestTemplate", False, "exchange", "", "", "Argument[0]", "open-url", "manual"]
+      - ["org.springframework.web.client", "RestTemplate", False, "execute", "", "", "Argument[0]", "open-url", "manual"]
+      - ["org.springframework.web.client", "RestTemplate", False, "getForEntity", "", "", "Argument[0]", "open-url", "manual"]
+      - ["org.springframework.web.client", "RestTemplate", False, "getForObject", "", "", "Argument[0]", "open-url", "manual"]
+      - ["org.springframework.web.client", "RestTemplate", False, "headForHeaders", "", "", "Argument[0]", "open-url", "manual"]
+      - ["org.springframework.web.client", "RestTemplate", False, "optionsForAllow", "", "", "Argument[0]", "open-url", "manual"]
+      - ["org.springframework.web.client", "RestTemplate", False, "patchForObject", "", "", "Argument[0]", "open-url", "manual"]
+      - ["org.springframework.web.client", "RestTemplate", False, "postForEntity", "", "", "Argument[0]", "open-url", "manual"]
+      - ["org.springframework.web.client", "RestTemplate", False, "postForLocation", "", "", "Argument[0]", "open-url", "manual"]
+      - ["org.springframework.web.client", "RestTemplate", False, "postForObject", "", "", "Argument[0]", "open-url", "manual"]
+      - ["org.springframework.web.client", "RestTemplate", False, "put", "", "", "Argument[0]", "open-url", "manual"]
diff --git a/java/ql/lib/ext/org.springframework.web.context.request.model.yml b/java/ql/lib/ext/org.springframework.web.context.request.model.yml
new file mode 100644
index 00000000000..56e276e4cc0
--- /dev/null
+++ b/java/ql/lib/ext/org.springframework.web.context.request.model.yml
@@ -0,0 +1,13 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSourceModel
+    data:
+      - ["org.springframework.web.context.request", "WebRequest", False, "getDescription", "", "", "ReturnValue", "remote", "manual"]
+      - ["org.springframework.web.context.request", "WebRequest", False, "getHeader", "", "", "ReturnValue", "remote", "manual"]
+      - ["org.springframework.web.context.request", "WebRequest", False, "getHeaderNames", "", "", "ReturnValue", "remote", "manual"]
+      - ["org.springframework.web.context.request", "WebRequest", False, "getHeaderValues", "", "", "ReturnValue", "remote", "manual"]
+      - ["org.springframework.web.context.request", "WebRequest", False, "getParameter", "", "", "ReturnValue", "remote", "manual"]
+      - ["org.springframework.web.context.request", "WebRequest", False, "getParameterMap", "", "", "ReturnValue", "remote", "manual"]
+      - ["org.springframework.web.context.request", "WebRequest", False, "getParameterNames", "", "", "ReturnValue", "remote", "manual"]
+      - ["org.springframework.web.context.request", "WebRequest", False, "getParameterValues", "", "", "ReturnValue", "remote", "manual"]
diff --git a/java/ql/lib/ext/org.springframework.web.multipart.model.yml b/java/ql/lib/ext/org.springframework.web.multipart.model.yml
new file mode 100644
index 00000000000..d57d44f8a48
--- /dev/null
+++ b/java/ql/lib/ext/org.springframework.web.multipart.model.yml
@@ -0,0 +1,34 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSourceModel
+    data:
+      - ["org.springframework.web.multipart", "MultipartFile", True, "getBytes", "()", "", "ReturnValue", "remote", "manual"]
+      - ["org.springframework.web.multipart", "MultipartFile", True, "getContentType", "()", "", "ReturnValue", "remote", "manual"]
+      - ["org.springframework.web.multipart", "MultipartFile", True, "getInputStream", "()", "", "ReturnValue", "remote", "manual"]
+      - ["org.springframework.web.multipart", "MultipartFile", True, "getName", "()", "", "ReturnValue", "remote", "manual"]
+      - ["org.springframework.web.multipart", "MultipartFile", True, "getOriginalFilename", "()", "", "ReturnValue", "remote", "manual"]
+      - ["org.springframework.web.multipart", "MultipartFile", True, "getResource", "()", "", "ReturnValue", "remote", "manual"]
+      - ["org.springframework.web.multipart", "MultipartRequest", True, "getFile", "(String)", "", "ReturnValue", "remote", "manual"]
+      - ["org.springframework.web.multipart", "MultipartRequest", True, "getFileMap", "()", "", "ReturnValue", "remote", "manual"]
+      - ["org.springframework.web.multipart", "MultipartRequest", True, "getFileNames", "()", "", "ReturnValue", "remote", "manual"]
+      - ["org.springframework.web.multipart", "MultipartRequest", True, "getFiles", "(String)", "", "ReturnValue", "remote", "manual"]
+      - ["org.springframework.web.multipart", "MultipartRequest", True, "getMultiFileMap", "()", "", "ReturnValue", "remote", "manual"]
+      - ["org.springframework.web.multipart", "MultipartRequest", True, "getMultipartContentType", "(String)", "", "ReturnValue", "remote", "manual"]
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSummaryModel
+    data:
+      - ["org.springframework.web.multipart", "MultipartFile", True, "getBytes", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.web.multipart", "MultipartFile", True, "getInputStream", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.web.multipart", "MultipartFile", True, "getName", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.web.multipart", "MultipartFile", True, "getOriginalFilename", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.web.multipart", "MultipartFile", True, "getResource", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.web.multipart", "MultipartHttpServletRequest", True, "getMultipartHeaders", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.web.multipart", "MultipartHttpServletRequest", True, "getRequestHeaders", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.web.multipart", "MultipartRequest", True, "getFile", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.web.multipart", "MultipartRequest", True, "getFileMap", "", "", "Argument[-1]", "ReturnValue.MapValue", "taint", "manual"]
+      - ["org.springframework.web.multipart", "MultipartRequest", True, "getFileNames", "", "", "Argument[-1]", "ReturnValue.Element", "taint", "manual"]
+      - ["org.springframework.web.multipart", "MultipartRequest", True, "getFiles", "", "", "Argument[-1]", "ReturnValue.Element", "taint", "manual"]
+      - ["org.springframework.web.multipart", "MultipartRequest", True, "getMultiFileMap", "", "", "Argument[-1]", "ReturnValue.MapValue", "taint", "manual"]
+      - ["org.springframework.web.multipart", "MultipartResolver", True, "resolveMultipart", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
diff --git a/java/ql/lib/ext/org.springframework.web.reactive.function.client.model.yml b/java/ql/lib/ext/org.springframework.web.reactive.function.client.model.yml
new file mode 100644
index 00000000000..e3ffd17cd7e
--- /dev/null
+++ b/java/ql/lib/ext/org.springframework.web.reactive.function.client.model.yml
@@ -0,0 +1,7 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSinkModel
+    data:
+      - ["org.springframework.web.reactive.function.client", "WebClient", False, "create", "", "", "Argument[0]", "open-url", "manual"]
+      - ["org.springframework.web.reactive.function.client", "WebClient$Builder", False, "baseUrl", "", "", "Argument[0]", "open-url", "manual"]
diff --git a/java/ql/lib/ext/org.springframework.web.util.model.yml b/java/ql/lib/ext/org.springframework.web.util.model.yml
new file mode 100644
index 00000000000..c3f70b66cf8
--- /dev/null
+++ b/java/ql/lib/ext/org.springframework.web.util.model.yml
@@ -0,0 +1,168 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSummaryModel
+    data:
+      - ["org.springframework.web.util", "AbstractUriTemplateHandler", True, "getBaseUrl", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.web.util", "AbstractUriTemplateHandler", True, "setBaseUrl", "", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.springframework.web.util", "AbstractUriTemplateHandler", True, "setDefaultUriVariables", "", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.springframework.web.util", "ContentCachingRequestWrapper", False, "ContentCachingRequestWrapper", "", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.springframework.web.util", "ContentCachingRequestWrapper", False, "getContentAsByteArray", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.web.util", "ContentCachingResponseWrapper", False, "ContentCachingResponseWrapper", "", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.springframework.web.util", "ContentCachingResponseWrapper", False, "getContentAsByteArray", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.web.util", "ContentCachingResponseWrapper", False, "getContentInputStream", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.web.util", "DefaultUriBuilderFactory", False, "DefaultUriBuilderFactory", "", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.springframework.web.util", "DefaultUriBuilderFactory", False, "builder", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.web.util", "DefaultUriBuilderFactory", False, "getDefaultUriVariables", "", "", "Argument[-1]", "ReturnValue.MapValue", "taint", "manual"]
+      - ["org.springframework.web.util", "DefaultUriBuilderFactory", False, "setDefaultUriVariables", "", "", "Argument[0].MapValue", "Argument[-1]", "taint", "manual"]
+      - ["org.springframework.web.util", "DefaultUriBuilderFactory", False, "uriString", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.web.util", "HtmlUtils", False, "htmlEscape", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.web.util", "HtmlUtils", False, "htmlEscapeDecimal", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.web.util", "HtmlUtils", False, "htmlEscapeHex", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.web.util", "HtmlUtils", False, "htmlUnescape", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.web.util", "ServletContextPropertyUtils", False, "resolvePlaceholders", "", "", "Argument[0..1]", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.web.util", "ServletRequestPathUtils", False, "getCachedPath", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.web.util", "ServletRequestPathUtils", False, "getCachedPathValue", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.web.util", "ServletRequestPathUtils", False, "getParsedRequestPath", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.web.util", "ServletRequestPathUtils", False, "parseAndCache", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.web.util", "ServletRequestPathUtils", False, "setParsedRequestPath", "", "", "Argument[0]", "Argument[1]", "taint", "manual"]
+      - ["org.springframework.web.util", "UriBuilder", True, "build", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.web.util", "UriBuilder", True, "build", "(Map)", "", "Argument[0].MapValue", "Argument[-1]", "taint", "manual"]
+      - ["org.springframework.web.util", "UriBuilder", True, "build", "(Map)", "", "Argument[0].MapValue", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.web.util", "UriBuilder", True, "build", "(Object[])", "", "Argument[0].ArrayElement", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.web.util", "UriBuilder", True, "fragment", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["org.springframework.web.util", "UriBuilder", True, "fragment", "", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.springframework.web.util", "UriBuilder", True, "host", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["org.springframework.web.util", "UriBuilder", True, "host", "", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.springframework.web.util", "UriBuilder", True, "path", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["org.springframework.web.util", "UriBuilder", True, "path", "", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.springframework.web.util", "UriBuilder", True, "pathSegment", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["org.springframework.web.util", "UriBuilder", True, "pathSegment", "", "", "Argument[0].ArrayElement", "Argument[-1]", "taint", "manual"]
+      - ["org.springframework.web.util", "UriBuilder", True, "port", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["org.springframework.web.util", "UriBuilder", True, "port", "(java.lang.String)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.springframework.web.util", "UriBuilder", True, "query", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["org.springframework.web.util", "UriBuilder", True, "query", "", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.springframework.web.util", "UriBuilder", True, "queryParam", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["org.springframework.web.util", "UriBuilder", True, "queryParam", "", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.springframework.web.util", "UriBuilder", True, "queryParam", "(String,Collection)", "", "Argument[1].Element", "Argument[-1]", "taint", "manual"]
+      - ["org.springframework.web.util", "UriBuilder", True, "queryParam", "(String,Object[])", "", "Argument[1].ArrayElement", "Argument[-1]", "taint", "manual"]
+      - ["org.springframework.web.util", "UriBuilder", True, "queryParamIfPresent", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["org.springframework.web.util", "UriBuilder", True, "queryParamIfPresent", "", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.springframework.web.util", "UriBuilder", True, "queryParamIfPresent", "", "", "Argument[1].Element", "Argument[-1]", "taint", "manual"]
+      - ["org.springframework.web.util", "UriBuilder", True, "queryParams", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["org.springframework.web.util", "UriBuilder", True, "queryParams", "", "", "Argument[0].MapKey", "Argument[-1]", "taint", "manual"]
+      - ["org.springframework.web.util", "UriBuilder", True, "queryParams", "", "", "Argument[0].MapValue.Element", "Argument[-1]", "taint", "manual"]
+      - ["org.springframework.web.util", "UriBuilder", True, "replacePath", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["org.springframework.web.util", "UriBuilder", True, "replacePath", "", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.springframework.web.util", "UriBuilder", True, "replaceQuery", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["org.springframework.web.util", "UriBuilder", True, "replaceQuery", "", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.springframework.web.util", "UriBuilder", True, "replaceQueryParam", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["org.springframework.web.util", "UriBuilder", True, "replaceQueryParam", "", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.springframework.web.util", "UriBuilder", True, "replaceQueryParam", "(String,Collection)", "", "Argument[1].Element", "Argument[-1]", "taint", "manual"]
+      - ["org.springframework.web.util", "UriBuilder", True, "replaceQueryParam", "(String,Object[])", "", "Argument[1].ArrayElement", "Argument[-1]", "taint", "manual"]
+      - ["org.springframework.web.util", "UriBuilder", True, "replaceQueryParams", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["org.springframework.web.util", "UriBuilder", True, "replaceQueryParams", "", "", "Argument[0].MapKey", "Argument[-1]", "taint", "manual"]
+      - ["org.springframework.web.util", "UriBuilder", True, "replaceQueryParams", "", "", "Argument[0].MapValue.Element", "Argument[-1]", "taint", "manual"]
+      - ["org.springframework.web.util", "UriBuilder", True, "scheme", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["org.springframework.web.util", "UriBuilder", True, "scheme", "", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.springframework.web.util", "UriBuilder", True, "userInfo", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["org.springframework.web.util", "UriBuilder", True, "userInfo", "", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.springframework.web.util", "UriBuilderFactory", True, "builder", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.web.util", "UriBuilderFactory", True, "uriString", "", "", "Argument[-1..0]", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.web.util", "UriComponents", False, "UriComponents", "", "", "Argument[0..1]", "Argument[-1]", "taint", "manual"]
+      - ["org.springframework.web.util", "UriComponents", False, "copyToUriComponentsBuilder", "", "", "Argument[-1]", "Argument[0]", "taint", "manual"]
+      - ["org.springframework.web.util", "UriComponents", False, "encode", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.web.util", "UriComponents", False, "expand", "(Map)", "", "Argument[0].MapValue", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.web.util", "UriComponents", False, "expand", "(Object[])", "", "Argument[0].ArrayElement", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.web.util", "UriComponents", False, "expand", "(UriTemplateVariables)", "", "Argument[0].MapValue", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.web.util", "UriComponents", False, "getFragment", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.web.util", "UriComponents", False, "getHost", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.web.util", "UriComponents", False, "getPath", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.web.util", "UriComponents", False, "getPathSegments", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.web.util", "UriComponents", False, "getQuery", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.web.util", "UriComponents", False, "getQueryParams", "", "", "Argument[-1]", "ReturnValue.MapKey", "taint", "manual"]
+      - ["org.springframework.web.util", "UriComponents", False, "getQueryParams", "", "", "Argument[-1]", "ReturnValue.MapValue.Element", "taint", "manual"]
+      - ["org.springframework.web.util", "UriComponents", False, "getScheme", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.web.util", "UriComponents", False, "getSchemeSpecificPart", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.web.util", "UriComponents", False, "getUserInfo", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.web.util", "UriComponents", False, "normalize", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.web.util", "UriComponents", False, "toString", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.web.util", "UriComponents", False, "toUri", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.web.util", "UriComponents", False, "toUriString", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.web.util", "UriComponents$UriTemplateVariables", True, "getValue", "", "", "Argument[-1].MapValue", "ReturnValue", "value", "manual"]
+      - ["org.springframework.web.util", "UriComponentsBuilder", False, "build", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.web.util", "UriComponentsBuilder", False, "buildAndExpand", "(Map)", "", "Argument[0].MapValue", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.web.util", "UriComponentsBuilder", False, "buildAndExpand", "(Object[])", "", "Argument[0].ArrayElement", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.web.util", "UriComponentsBuilder", False, "cloneBuilder", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["org.springframework.web.util", "UriComponentsBuilder", False, "encode", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["org.springframework.web.util", "UriComponentsBuilder", False, "fromHttpRequest", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.web.util", "UriComponentsBuilder", False, "fromHttpUrl", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.web.util", "UriComponentsBuilder", False, "fromOriginHeader", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.web.util", "UriComponentsBuilder", False, "fromPath", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.web.util", "UriComponentsBuilder", False, "fromUri", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.web.util", "UriComponentsBuilder", False, "fromUriString", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.web.util", "UriComponentsBuilder", False, "parseForwardedFor", "", "", "Argument[0..1]", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.web.util", "UriComponentsBuilder", False, "schemeSpecificPart", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["org.springframework.web.util", "UriComponentsBuilder", False, "schemeSpecificPart", "", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.springframework.web.util", "UriComponentsBuilder", False, "toUriString", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.web.util", "UriComponentsBuilder", False, "uri", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["org.springframework.web.util", "UriComponentsBuilder", False, "uri", "", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.springframework.web.util", "UriComponentsBuilder", False, "uriComponents", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["org.springframework.web.util", "UriComponentsBuilder", False, "uriComponents", "", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.springframework.web.util", "UriComponentsBuilder", False, "uriVariables", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["org.springframework.web.util", "UriComponentsBuilder", False, "uriVariables", "", "", "Argument[0].MapValue", "Argument[-1]", "taint", "manual"]
+      - ["org.springframework.web.util", "UriTemplate", False, "expand", "(Map)", "", "Argument[0].MapValue", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.web.util", "UriTemplate", False, "expand", "(Object[])", "", "Argument[0].ArrayElement", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.web.util", "UriTemplate", False, "getVariableNames", "", "", "Argument[-1]", "ReturnValue.Element", "taint", "manual"]
+      - ["org.springframework.web.util", "UriTemplate", False, "match", "", "", "Argument[0]", "ReturnValue.MapValue", "taint", "manual"]
+      - ["org.springframework.web.util", "UriTemplate", False, "toString", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.web.util", "UriTemplateHandler", True, "expand", "", "", "Argument[-1..0]", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.web.util", "UriTemplateHandler", True, "expand", "(String,Map)", "", "Argument[1].MapValue", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.web.util", "UriTemplateHandler", True, "expand", "(String,Object[])", "", "Argument[1].ArrayElement", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.web.util", "UriUtils", False, "decode", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.web.util", "UriUtils", False, "encode", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.web.util", "UriUtils", False, "encodeAuthority", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.web.util", "UriUtils", False, "encodeFragment", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.web.util", "UriUtils", False, "encodeHost", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.web.util", "UriUtils", False, "encodePath", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.web.util", "UriUtils", False, "encodePathSegment", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.web.util", "UriUtils", False, "encodePort", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.web.util", "UriUtils", False, "encodeQuery", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.web.util", "UriUtils", False, "encodeQueryParam", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.web.util", "UriUtils", False, "encodeQueryParams", "", "", "Argument[0].MapKey", "ReturnValue.MapKey", "taint", "manual"]
+      - ["org.springframework.web.util", "UriUtils", False, "encodeQueryParams", "", "", "Argument[0].MapValue", "ReturnValue.MapValue", "taint", "manual"]
+      - ["org.springframework.web.util", "UriUtils", False, "encodeScheme", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.web.util", "UriUtils", False, "encodeUriVariables", "(Map)", "", "Argument[0].MapKey", "ReturnValue.MapKey", "taint", "manual"]
+      - ["org.springframework.web.util", "UriUtils", False, "encodeUriVariables", "(Map)", "", "Argument[0].MapValue", "ReturnValue.MapValue", "taint", "manual"]
+      - ["org.springframework.web.util", "UriUtils", False, "encodeUriVariables", "(Object[])", "", "Argument[0].ArrayElement", "ReturnValue.ArrayElement", "taint", "manual"]
+      - ["org.springframework.web.util", "UriUtils", False, "encodeUserInfo", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.web.util", "UriUtils", False, "extractFileExtension", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.web.util", "UrlPathHelper", False, "decodeMatrixVariables", "", "", "Argument[1].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["org.springframework.web.util", "UrlPathHelper", False, "decodeMatrixVariables", "", "", "Argument[1].MapValue", "ReturnValue.MapValue", "taint", "manual"]
+      - ["org.springframework.web.util", "UrlPathHelper", False, "decodePathVariables", "", "", "Argument[1].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["org.springframework.web.util", "UrlPathHelper", False, "decodePathVariables", "", "", "Argument[1].MapValue", "ReturnValue.MapValue", "taint", "manual"]
+      - ["org.springframework.web.util", "UrlPathHelper", False, "decodeRequestString", "", "", "Argument[1]", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.web.util", "UrlPathHelper", False, "getContextPath", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.web.util", "UrlPathHelper", False, "getOriginatingContextPath", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.web.util", "UrlPathHelper", False, "getOriginatingQueryString", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.web.util", "UrlPathHelper", False, "getOriginatingRequestUri", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.web.util", "UrlPathHelper", False, "getPathWithinApplication", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.web.util", "UrlPathHelper", False, "getPathWithinServletMapping", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.web.util", "UrlPathHelper", False, "getRequestUri", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.web.util", "UrlPathHelper", False, "getResolvedLookupPath", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.web.util", "UrlPathHelper", False, "getServletPath", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.web.util", "UrlPathHelper", False, "removeSemicolonContent", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.web.util", "UrlPathHelper", False, "resolveAndCacheLookupPath", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.web.util", "WebUtils", False, "findParameterValue", "(Map,String)", "", "Argument[0].MapValue", "ReturnValue", "value", "manual"]
+      - ["org.springframework.web.util", "WebUtils", False, "findParameterValue", "(ServletRequest,String)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.web.util", "WebUtils", False, "getCookie", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.web.util", "WebUtils", False, "getNativeRequest", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.web.util", "WebUtils", False, "getNativeResponse", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.web.util", "WebUtils", False, "getParametersStartingWith", "", "", "Argument[0]", "ReturnValue.MapKey", "taint", "manual"]
+      - ["org.springframework.web.util", "WebUtils", False, "getParametersStartingWith", "", "", "Argument[0]", "ReturnValue.MapValue", "taint", "manual"]
+      - ["org.springframework.web.util", "WebUtils", False, "getRealPath", "", "", "Argument[0..1]", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.web.util", "WebUtils", False, "getRequiredSessionAttribute", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.web.util", "WebUtils", False, "getSessionAttribute", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["org.springframework.web.util", "WebUtils", False, "parseMatrixVariables", "", "", "Argument[0]", "ReturnValue.MapKey", "taint", "manual"]
+      - ["org.springframework.web.util", "WebUtils", False, "parseMatrixVariables", "", "", "Argument[0]", "ReturnValue.MapValue", "taint", "manual"]
+      - ["org.springframework.web.util", "WebUtils", False, "setSessionAttribute", "", "", "Argument[2]", "Argument[0]", "taint", "manual"]
diff --git a/java/ql/lib/ext/org.thymeleaf.model.yml b/java/ql/lib/ext/org.thymeleaf.model.yml
new file mode 100644
index 00000000000..a7413343ce4
--- /dev/null
+++ b/java/ql/lib/ext/org.thymeleaf.model.yml
@@ -0,0 +1,13 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSinkModel
+    data:
+      - ["org.thymeleaf", "ITemplateEngine", True, "process", "", "", "Argument[0]", "ssti", "manual"]
+      - ["org.thymeleaf", "ITemplateEngine", True, "processThrottled", "", "", "Argument[0]", "ssti", "manual"]
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSummaryModel
+    data:
+      - ["org.thymeleaf", "TemplateSpec", False, "TemplateSpec", "", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["org.thymeleaf", "TemplateSpec", False, "getTemplate", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
diff --git a/java/ql/lib/ext/org.xml.sax.model.yml b/java/ql/lib/ext/org.xml.sax.model.yml
new file mode 100644
index 00000000000..ecd2ba3c544
--- /dev/null
+++ b/java/ql/lib/ext/org.xml.sax.model.yml
@@ -0,0 +1,6 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSummaryModel
+    data:
+      - ["org.xml.sax", "InputSource", False, "InputSource", "", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
diff --git a/java/ql/lib/ext/org.xmlpull.v1.model.yml b/java/ql/lib/ext/org.xmlpull.v1.model.yml
new file mode 100644
index 00000000000..01af9ba332b
--- /dev/null
+++ b/java/ql/lib/ext/org.xmlpull.v1.model.yml
@@ -0,0 +1,8 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSourceModel
+    data:
+      - ["org.xmlpull.v1", "XmlPullParser", False, "getName", "()", "", "ReturnValue", "remote", "manual"]
+      - ["org.xmlpull.v1", "XmlPullParser", False, "getNamespace", "()", "", "ReturnValue", "remote", "manual"]
+      - ["org.xmlpull.v1", "XmlPullParser", False, "getText", "()", "", "ReturnValue", "remote", "manual"]
diff --git a/java/ql/lib/ext/play.mvc.model.yml b/java/ql/lib/ext/play.mvc.model.yml
new file mode 100644
index 00000000000..98e665062a3
--- /dev/null
+++ b/java/ql/lib/ext/play.mvc.model.yml
@@ -0,0 +1,9 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSourceModel
+    data:
+      - ["play.mvc", "Http$RequestHeader", False, "getHeader", "", "", "ReturnValue", "remote", "manual"]
+      - ["play.mvc", "Http$RequestHeader", False, "getQueryString", "", "", "ReturnValue", "remote", "manual"]
+      - ["play.mvc", "Http$RequestHeader", False, "header", "", "", "ReturnValue", "remote", "manual"]
+      - ["play.mvc", "Http$RequestHeader", False, "queryString", "", "", "ReturnValue", "remote", "manual"]
diff --git a/java/ql/lib/ext/ratpack.core.form.model.yml b/java/ql/lib/ext/ratpack.core.form.model.yml
new file mode 100644
index 00000000000..20d34162ac0
--- /dev/null
+++ b/java/ql/lib/ext/ratpack.core.form.model.yml
@@ -0,0 +1,8 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSummaryModel
+    data:
+      - ["ratpack.core.form", "Form", True, "file", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["ratpack.core.form", "Form", True, "files", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["ratpack.core.form", "UploadedFile", True, "getFileName", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
diff --git a/java/ql/lib/ext/ratpack.core.handling.model.yml b/java/ql/lib/ext/ratpack.core.handling.model.yml
new file mode 100644
index 00000000000..edb02aaeced
--- /dev/null
+++ b/java/ql/lib/ext/ratpack.core.handling.model.yml
@@ -0,0 +1,19 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSourceModel
+    data:
+      - ["ratpack.core.handling", "Context", True, "parse", "(com.google.common.reflect.TypeToken)", "", "ReturnValue", "remote", "manual"]
+      - ["ratpack.core.handling", "Context", True, "parse", "(com.google.common.reflect.TypeToken,java.lang.Object)", "", "ReturnValue", "remote", "manual"]
+      - ["ratpack.core.handling", "Context", True, "parse", "(java.lang.Class)", "", "ReturnValue", "remote", "manual"]
+      - ["ratpack.core.handling", "Context", True, "parse", "(java.lang.Class,java.lang.Object)", "", "ReturnValue", "remote", "manual"]
+      - ["ratpack.core.handling", "Context", True, "parse", "(ratpack.core.parse.Parse)", "", "ReturnValue", "remote", "manual"]
+      - ["ratpack.core.handling", "Context", True, "parse", "(ratpack.parse.Parse)", "", "ReturnValue", "remote", "manual"]
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSummaryModel
+    data:
+      - ["ratpack.core.handling", "Context", True, "parse", "(ratpack.core.http.TypedData,ratpack.core.parse.Parse)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["ratpack.core.handling", "Context", True, "parse", "(ratpack.core.http.TypedData,ratpack.core.parse.Parse)", "", "Argument[0]", "ReturnValue.MapKey", "taint", "manual"]
+      - ["ratpack.core.handling", "Context", True, "parse", "(ratpack.core.http.TypedData,ratpack.core.parse.Parse)", "", "Argument[0]", "ReturnValue.MapValue", "taint", "manual"]
+      - ["ratpack.core.handling", "Context", True, "parse", "(ratpack.http.TypedData,ratpack.parse.Parse)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
diff --git a/java/ql/lib/ext/ratpack.core.http.model.yml b/java/ql/lib/ext/ratpack.core.http.model.yml
new file mode 100644
index 00000000000..094c90be1bd
--- /dev/null
+++ b/java/ql/lib/ext/ratpack.core.http.model.yml
@@ -0,0 +1,29 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSourceModel
+    data:
+      - ["ratpack.core.http", "Request", True, "getBody", "", "", "ReturnValue", "remote", "manual"]
+      - ["ratpack.core.http", "Request", True, "getContentLength", "", "", "ReturnValue", "remote", "manual"]
+      - ["ratpack.core.http", "Request", True, "getCookies", "", "", "ReturnValue", "remote", "manual"]
+      - ["ratpack.core.http", "Request", True, "getHeaders", "", "", "ReturnValue", "remote", "manual"]
+      - ["ratpack.core.http", "Request", True, "getPath", "", "", "ReturnValue", "remote", "manual"]
+      - ["ratpack.core.http", "Request", True, "getQuery", "", "", "ReturnValue", "remote", "manual"]
+      - ["ratpack.core.http", "Request", True, "getQueryParams", "", "", "ReturnValue", "remote", "manual"]
+      - ["ratpack.core.http", "Request", True, "getRawUri", "", "", "ReturnValue", "remote", "manual"]
+      - ["ratpack.core.http", "Request", True, "getUri", "", "", "ReturnValue", "remote", "manual"]
+      - ["ratpack.core.http", "Request", True, "oneCookie", "", "", "ReturnValue", "remote", "manual"]
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSummaryModel
+    data:
+      - ["ratpack.core.http", "Headers", True, "asMultiValueMap", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["ratpack.core.http", "Headers", True, "get", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["ratpack.core.http", "Headers", True, "getAll", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["ratpack.core.http", "Headers", True, "getNames", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["ratpack.core.http", "TypedData", True, "getBuffer", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["ratpack.core.http", "TypedData", True, "getBytes", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["ratpack.core.http", "TypedData", True, "getContentType", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["ratpack.core.http", "TypedData", True, "getInputStream", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["ratpack.core.http", "TypedData", True, "getText", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["ratpack.core.http", "TypedData", True, "writeTo", "", "", "Argument[-1]", "Argument[0]", "taint", "manual"]
diff --git a/java/ql/lib/ext/ratpack.exec.model.yml b/java/ql/lib/ext/ratpack.exec.model.yml
new file mode 100644
index 00000000000..0303f5cfd26
--- /dev/null
+++ b/java/ql/lib/ext/ratpack.exec.model.yml
@@ -0,0 +1,53 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSummaryModel
+    data:
+      - ["ratpack.exec", "Promise", True, "apply", "", "", "Argument[-1].Element", "Argument[0].Parameter[0].Element", "value", "manual"]
+      - ["ratpack.exec", "Promise", True, "apply", "", "", "Argument[0].ReturnValue.Element", "ReturnValue.Element", "value", "manual"]
+      - ["ratpack.exec", "Promise", True, "blockingMap", "", "", "Argument[-1].Element", "Argument[0].Parameter[0]", "value", "manual"]
+      - ["ratpack.exec", "Promise", True, "blockingMap", "", "", "Argument[0].ReturnValue", "ReturnValue.Element", "value", "manual"]
+      - ["ratpack.exec", "Promise", True, "blockingOp", "", "", "Argument[-1].Element", "Argument[0].Parameter[0]", "value", "manual"]
+      - ["ratpack.exec", "Promise", True, "cacheIf", "", "", "Argument[-1].Element", "Argument[0].Parameter[0]", "value", "manual"]
+      - ["ratpack.exec", "Promise", True, "flatLeft", "", "", "Argument[-1].Element", "ReturnValue.Element.Field[ratpack.func.Pair.right]", "value", "manual"]
+      - ["ratpack.exec", "Promise", True, "flatLeft", "(Function)", "", "Argument[-1].Element", "Argument[0].Parameter[0]", "value", "manual"]
+      - ["ratpack.exec", "Promise", True, "flatLeft", "(Function)", "", "Argument[0].ReturnValue.Element", "ReturnValue.Element.Field[ratpack.func.Pair.left]", "value", "manual"]
+      - ["ratpack.exec", "Promise", True, "flatMap", "", "", "Argument[-1].Element", "Argument[0].Parameter[0]", "value", "manual"]
+      - ["ratpack.exec", "Promise", True, "flatMap", "", "", "Argument[0].ReturnValue.Element", "ReturnValue.Element", "value", "manual"]
+      - ["ratpack.exec", "Promise", True, "flatMapError", "", "", "Argument[1].ReturnValue.Element", "ReturnValue.Element", "value", "manual"]
+      - ["ratpack.exec", "Promise", True, "flatOp", "", "", "Argument[-1].Element", "Argument[0].Parameter[0]", "value", "manual"]
+      - ["ratpack.exec", "Promise", True, "flatRight", "", "", "Argument[-1].Element", "ReturnValue.Element.Field[ratpack.func.Pair.left]", "value", "manual"]
+      - ["ratpack.exec", "Promise", True, "flatRight", "(Function)", "", "Argument[-1].Element", "Argument[0].Parameter[0]", "value", "manual"]
+      - ["ratpack.exec", "Promise", True, "flatRight", "(Function)", "", "Argument[0].ReturnValue.Element", "ReturnValue.Element.Field[ratpack.func.Pair.right]", "value", "manual"]
+      - ["ratpack.exec", "Promise", True, "flatten", "", "", "Argument[0].ReturnValue.Element", "ReturnValue.Element", "value", "manual"]
+      - ["ratpack.exec", "Promise", True, "left", "", "", "Argument[-1].Element", "ReturnValue.Element.Field[ratpack.func.Pair.right]", "value", "manual"]
+      - ["ratpack.exec", "Promise", True, "left", "(Function)", "", "Argument[-1].Element", "Argument[0].Parameter[0]", "value", "manual"]
+      - ["ratpack.exec", "Promise", True, "left", "(Function)", "", "Argument[0].ReturnValue", "ReturnValue.Element.Field[ratpack.func.Pair.left]", "value", "manual"]
+      - ["ratpack.exec", "Promise", True, "left", "(Promise)", "", "Argument[0].Element", "ReturnValue.Element.Field[ratpack.func.Pair.left]", "value", "manual"]
+      - ["ratpack.exec", "Promise", True, "map", "", "", "Argument[-1].Element", "Argument[0].Parameter[0]", "value", "manual"]
+      - ["ratpack.exec", "Promise", True, "map", "", "", "Argument[0].ReturnValue", "ReturnValue.Element", "value", "manual"]
+      - ["ratpack.exec", "Promise", True, "mapError", "", "", "Argument[1].ReturnValue", "ReturnValue.Element", "value", "manual"]
+      - ["ratpack.exec", "Promise", True, "mapIf", "", "", "Argument[-1].Element", "Argument[0].Parameter[0]", "value", "manual"]
+      - ["ratpack.exec", "Promise", True, "mapIf", "", "", "Argument[-1].Element", "Argument[1].Parameter[0]", "value", "manual"]
+      - ["ratpack.exec", "Promise", True, "mapIf", "", "", "Argument[-1].Element", "Argument[2].Parameter[0]", "value", "manual"]
+      - ["ratpack.exec", "Promise", True, "mapIf", "", "", "Argument[1].ReturnValue", "ReturnValue.Element", "value", "manual"]
+      - ["ratpack.exec", "Promise", True, "mapIf", "", "", "Argument[2].ReturnValue", "ReturnValue.Element", "value", "manual"]
+      - ["ratpack.exec", "Promise", True, "next", "", "", "Argument[-1].Element", "Argument[0].Parameter[0]", "value", "manual"]
+      - ["ratpack.exec", "Promise", True, "nextOp", "", "", "Argument[-1].Element", "Argument[0].Parameter[0]", "value", "manual"]
+      - ["ratpack.exec", "Promise", True, "nextOpIf", "", "", "Argument[-1].Element", "Argument[0].Parameter[0]", "value", "manual"]
+      - ["ratpack.exec", "Promise", True, "nextOpIf", "", "", "Argument[-1].Element", "Argument[1].Parameter[0]", "value", "manual"]
+      - ["ratpack.exec", "Promise", True, "replace", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      - ["ratpack.exec", "Promise", True, "right", "", "", "Argument[-1].Element", "ReturnValue.Element.Field[ratpack.func.Pair.left]", "value", "manual"]
+      - ["ratpack.exec", "Promise", True, "right", "(Function)", "", "Argument[-1].Element", "Argument[0].Parameter[0]", "value", "manual"]
+      - ["ratpack.exec", "Promise", True, "right", "(Function)", "", "Argument[0].ReturnValue", "ReturnValue.Element.Field[ratpack.func.Pair.right]", "value", "manual"]
+      - ["ratpack.exec", "Promise", True, "right", "(Promise)", "", "Argument[0].Element", "ReturnValue.Element.Field[ratpack.func.Pair.right]", "value", "manual"]
+      - ["ratpack.exec", "Promise", True, "route", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
+      - ["ratpack.exec", "Promise", True, "route", "", "", "Argument[-1].Element", "Argument[0].Parameter[0]", "value", "manual"]
+      - ["ratpack.exec", "Promise", True, "route", "", "", "Argument[-1].Element", "Argument[1].Parameter[0]", "value", "manual"]
+      - ["ratpack.exec", "Promise", True, "sync", "", "", "Argument[0].ReturnValue", "ReturnValue.Element", "value", "manual"]
+      - ["ratpack.exec", "Promise", True, "then", "", "", "Argument[-1].Element", "Argument[0].Parameter[0]", "value", "manual"]
+      - ["ratpack.exec", "Promise", True, "value", "", "", "Argument[0]", "ReturnValue.Element", "value", "manual"]
+      - ["ratpack.exec", "Promise", True, "wiretap", "", "", "Argument[-1].Element", "Argument[0].Parameter[0].Element", "value", "manual"]
+      - ["ratpack.exec", "Result", True, "getValue", "", "", "Argument[-1].Element", "ReturnValue", "value", "manual"]
+      - ["ratpack.exec", "Result", True, "getValueOrThrow", "", "", "Argument[-1].Element", "ReturnValue", "value", "manual"]
+      - ["ratpack.exec", "Result", True, "success", "", "", "Argument[0]", "ReturnValue.Element", "value", "manual"]
diff --git a/java/ql/lib/ext/ratpack.form.model.yml b/java/ql/lib/ext/ratpack.form.model.yml
new file mode 100644
index 00000000000..c4677cecd8d
--- /dev/null
+++ b/java/ql/lib/ext/ratpack.form.model.yml
@@ -0,0 +1,8 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSummaryModel
+    data:
+      - ["ratpack.form", "Form", True, "file", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["ratpack.form", "Form", True, "files", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["ratpack.form", "UploadedFile", True, "getFileName", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
diff --git a/java/ql/lib/ext/ratpack.func.model.yml b/java/ql/lib/ext/ratpack.func.model.yml
new file mode 100644
index 00000000000..e850a8cbfe1
--- /dev/null
+++ b/java/ql/lib/ext/ratpack.func.model.yml
@@ -0,0 +1,40 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSummaryModel
+    data:
+      - ["ratpack.func", "MultiValueMap", True, "asMultimap", "", "", "Argument[-1].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["ratpack.func", "MultiValueMap", True, "asMultimap", "", "", "Argument[-1].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["ratpack.func", "MultiValueMap", True, "getAll", "", "", "Argument[-1].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["ratpack.func", "MultiValueMap", True, "getAll", "()", "", "Argument[-1].MapValue", "ReturnValue.MapValue.Element", "value", "manual"]
+      - ["ratpack.func", "MultiValueMap", True, "getAll", "(Object)", "", "Argument[-1].MapValue", "ReturnValue.Element", "value", "manual"]
+      - ["ratpack.func", "Pair", True, "getLeft", "", "", "Argument[-1].Field[ratpack.func.Pair.left]", "ReturnValue", "value", "manual"]
+      - ["ratpack.func", "Pair", True, "getRight", "", "", "Argument[-1].Field[ratpack.func.Pair.right]", "ReturnValue", "value", "manual"]
+      - ["ratpack.func", "Pair", True, "left", "()", "", "Argument[-1].Field[ratpack.func.Pair.left]", "ReturnValue", "value", "manual"]
+      - ["ratpack.func", "Pair", True, "left", "(Object)", "", "Argument[-1].Field[ratpack.func.Pair.right]", "ReturnValue.Field[ratpack.func.Pair.right]", "value", "manual"]
+      - ["ratpack.func", "Pair", True, "left", "(Object)", "", "Argument[0]", "ReturnValue.Field[ratpack.func.Pair.left]", "value", "manual"]
+      - ["ratpack.func", "Pair", True, "map", "", "", "Argument[-1]", "Argument[0].Parameter[0]", "value", "manual"]
+      - ["ratpack.func", "Pair", True, "map", "", "", "Argument[0].ReturnValue", "ReturnValue", "value", "manual"]
+      - ["ratpack.func", "Pair", True, "mapLeft", "", "", "Argument[-1].Field[ratpack.func.Pair.left]", "Argument[0].Parameter[0]", "value", "manual"]
+      - ["ratpack.func", "Pair", True, "mapLeft", "", "", "Argument[-1].Field[ratpack.func.Pair.right]", "ReturnValue.Field[ratpack.func.Pair.right]", "value", "manual"]
+      - ["ratpack.func", "Pair", True, "mapLeft", "", "", "Argument[0].ReturnValue", "ReturnValue.Field[ratpack.func.Pair.left]", "value", "manual"]
+      - ["ratpack.func", "Pair", True, "mapRight", "", "", "Argument[-1].Field[ratpack.func.Pair.left]", "ReturnValue.Field[ratpack.func.Pair.left]", "value", "manual"]
+      - ["ratpack.func", "Pair", True, "mapRight", "", "", "Argument[-1].Field[ratpack.func.Pair.right]", "Argument[0].Parameter[0]", "value", "manual"]
+      - ["ratpack.func", "Pair", True, "mapRight", "", "", "Argument[0].ReturnValue", "ReturnValue.Field[ratpack.func.Pair.right]", "value", "manual"]
+      - ["ratpack.func", "Pair", True, "nestLeft", "(Object)", "", "Argument[-1].Field[ratpack.func.Pair.left]", "ReturnValue.Field[ratpack.func.Pair.left].Field[ratpack.func.Pair.right]", "value", "manual"]
+      - ["ratpack.func", "Pair", True, "nestLeft", "(Object)", "", "Argument[-1].Field[ratpack.func.Pair.right]", "ReturnValue.Field[ratpack.func.Pair.right]", "value", "manual"]
+      - ["ratpack.func", "Pair", True, "nestLeft", "(Object)", "", "Argument[0]", "ReturnValue.Field[ratpack.func.Pair.left].Field[ratpack.func.Pair.left]", "value", "manual"]
+      - ["ratpack.func", "Pair", True, "nestRight", "(Object)", "", "Argument[-1].Field[ratpack.func.Pair.left]", "ReturnValue.Field[ratpack.func.Pair.left]", "value", "manual"]
+      - ["ratpack.func", "Pair", True, "nestRight", "(Object)", "", "Argument[-1].Field[ratpack.func.Pair.right]", "ReturnValue.Field[ratpack.func.Pair.right].Field[ratpack.func.Pair.right]", "value", "manual"]
+      - ["ratpack.func", "Pair", True, "nestRight", "(Object)", "", "Argument[0]", "ReturnValue.Field[ratpack.func.Pair.right].Field[ratpack.func.Pair.left]", "value", "manual"]
+      - ["ratpack.func", "Pair", True, "of", "", "", "Argument[0]", "ReturnValue.Field[ratpack.func.Pair.left]", "value", "manual"]
+      - ["ratpack.func", "Pair", True, "of", "", "", "Argument[1]", "ReturnValue.Field[ratpack.func.Pair.right]", "value", "manual"]
+      - ["ratpack.func", "Pair", True, "pair", "", "", "Argument[0]", "ReturnValue.Field[ratpack.func.Pair.left]", "value", "manual"]
+      - ["ratpack.func", "Pair", True, "pair", "", "", "Argument[1]", "ReturnValue.Field[ratpack.func.Pair.right]", "value", "manual"]
+      - ["ratpack.func", "Pair", True, "pushLeft", "(Object)", "", "Argument[-1]", "ReturnValue.Field[ratpack.func.Pair.right]", "value", "manual"]
+      - ["ratpack.func", "Pair", True, "pushLeft", "(Object)", "", "Argument[0]", "ReturnValue.Field[ratpack.func.Pair.left]", "value", "manual"]
+      - ["ratpack.func", "Pair", True, "pushRight", "(Object)", "", "Argument[-1]", "ReturnValue.Field[ratpack.func.Pair.left]", "value", "manual"]
+      - ["ratpack.func", "Pair", True, "pushRight", "(Object)", "", "Argument[0]", "ReturnValue.Field[ratpack.func.Pair.right]", "value", "manual"]
+      - ["ratpack.func", "Pair", True, "right", "()", "", "Argument[-1].Field[ratpack.func.Pair.right]", "ReturnValue", "value", "manual"]
+      - ["ratpack.func", "Pair", True, "right", "(Object)", "", "Argument[-1].Field[ratpack.func.Pair.left]", "ReturnValue.Field[ratpack.func.Pair.left]", "value", "manual"]
+      - ["ratpack.func", "Pair", True, "right", "(Object)", "", "Argument[0]", "ReturnValue.Field[ratpack.func.Pair.right]", "value", "manual"]
diff --git a/java/ql/lib/ext/ratpack.handling.model.yml b/java/ql/lib/ext/ratpack.handling.model.yml
new file mode 100644
index 00000000000..3523d1cf937
--- /dev/null
+++ b/java/ql/lib/ext/ratpack.handling.model.yml
@@ -0,0 +1,19 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSourceModel
+    data:
+      - ["ratpack.handling", "Context", True, "parse", "(com.google.common.reflect.TypeToken)", "", "ReturnValue", "remote", "manual"]
+      - ["ratpack.handling", "Context", True, "parse", "(com.google.common.reflect.TypeToken,java.lang.Object)", "", "ReturnValue", "remote", "manual"]
+      - ["ratpack.handling", "Context", True, "parse", "(java.lang.Class)", "", "ReturnValue", "remote", "manual"]
+      - ["ratpack.handling", "Context", True, "parse", "(java.lang.Class,java.lang.Object)", "", "ReturnValue", "remote", "manual"]
+      - ["ratpack.handling", "Context", True, "parse", "(ratpack.core.parse.Parse)", "", "ReturnValue", "remote", "manual"]
+      - ["ratpack.handling", "Context", True, "parse", "(ratpack.parse.Parse)", "", "ReturnValue", "remote", "manual"]
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSummaryModel
+    data:
+      - ["ratpack.handling", "Context", True, "parse", "(ratpack.core.http.TypedData,ratpack.core.parse.Parse)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["ratpack.handling", "Context", True, "parse", "(ratpack.core.http.TypedData,ratpack.core.parse.Parse)", "", "Argument[0]", "ReturnValue.MapKey", "taint", "manual"]
+      - ["ratpack.handling", "Context", True, "parse", "(ratpack.core.http.TypedData,ratpack.core.parse.Parse)", "", "Argument[0]", "ReturnValue.MapValue", "taint", "manual"]
+      - ["ratpack.handling", "Context", True, "parse", "(ratpack.http.TypedData,ratpack.parse.Parse)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
diff --git a/java/ql/lib/ext/ratpack.http.model.yml b/java/ql/lib/ext/ratpack.http.model.yml
new file mode 100644
index 00000000000..fc96663138e
--- /dev/null
+++ b/java/ql/lib/ext/ratpack.http.model.yml
@@ -0,0 +1,29 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSourceModel
+    data:
+      - ["ratpack.http", "Request", True, "getBody", "", "", "ReturnValue", "remote", "manual"]
+      - ["ratpack.http", "Request", True, "getContentLength", "", "", "ReturnValue", "remote", "manual"]
+      - ["ratpack.http", "Request", True, "getCookies", "", "", "ReturnValue", "remote", "manual"]
+      - ["ratpack.http", "Request", True, "getHeaders", "", "", "ReturnValue", "remote", "manual"]
+      - ["ratpack.http", "Request", True, "getPath", "", "", "ReturnValue", "remote", "manual"]
+      - ["ratpack.http", "Request", True, "getQuery", "", "", "ReturnValue", "remote", "manual"]
+      - ["ratpack.http", "Request", True, "getQueryParams", "", "", "ReturnValue", "remote", "manual"]
+      - ["ratpack.http", "Request", True, "getRawUri", "", "", "ReturnValue", "remote", "manual"]
+      - ["ratpack.http", "Request", True, "getUri", "", "", "ReturnValue", "remote", "manual"]
+      - ["ratpack.http", "Request", True, "oneCookie", "", "", "ReturnValue", "remote", "manual"]
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSummaryModel
+    data:
+      - ["ratpack.http", "Headers", True, "asMultiValueMap", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["ratpack.http", "Headers", True, "get", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["ratpack.http", "Headers", True, "getAll", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["ratpack.http", "Headers", True, "getNames", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["ratpack.http", "TypedData", True, "getBuffer", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["ratpack.http", "TypedData", True, "getBytes", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["ratpack.http", "TypedData", True, "getContentType", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["ratpack.http", "TypedData", True, "getInputStream", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["ratpack.http", "TypedData", True, "getText", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["ratpack.http", "TypedData", True, "writeTo", "", "", "Argument[-1]", "Argument[0]", "taint", "manual"]
diff --git a/java/ql/lib/ext/ratpack.util.model.yml b/java/ql/lib/ext/ratpack.util.model.yml
new file mode 100644
index 00000000000..b594e03aecd
--- /dev/null
+++ b/java/ql/lib/ext/ratpack.util.model.yml
@@ -0,0 +1,40 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSummaryModel
+    data:
+      - ["ratpack.util", "MultiValueMap", True, "asMultimap", "", "", "Argument[-1].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["ratpack.util", "MultiValueMap", True, "asMultimap", "", "", "Argument[-1].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      - ["ratpack.util", "MultiValueMap", True, "getAll", "", "", "Argument[-1].MapKey", "ReturnValue.MapKey", "value", "manual"]
+      - ["ratpack.util", "MultiValueMap", True, "getAll", "()", "", "Argument[-1].MapValue", "ReturnValue.MapValue.Element", "value", "manual"]
+      - ["ratpack.util", "MultiValueMap", True, "getAll", "(Object)", "", "Argument[-1].MapValue", "ReturnValue.Element", "value", "manual"]
+      - ["ratpack.util", "Pair", True, "getLeft", "", "", "Argument[-1].Field[ratpack.func.Pair.left]", "ReturnValue", "value", "manual"]
+      - ["ratpack.util", "Pair", True, "getRight", "", "", "Argument[-1].Field[ratpack.func.Pair.right]", "ReturnValue", "value", "manual"]
+      - ["ratpack.util", "Pair", True, "left", "()", "", "Argument[-1].Field[ratpack.func.Pair.left]", "ReturnValue", "value", "manual"]
+      - ["ratpack.util", "Pair", True, "left", "(Object)", "", "Argument[-1].Field[ratpack.func.Pair.right]", "ReturnValue.Field[ratpack.func.Pair.right]", "value", "manual"]
+      - ["ratpack.util", "Pair", True, "left", "(Object)", "", "Argument[0]", "ReturnValue.Field[ratpack.func.Pair.left]", "value", "manual"]
+      - ["ratpack.util", "Pair", True, "map", "", "", "Argument[-1]", "Argument[0].Parameter[0]", "value", "manual"]
+      - ["ratpack.util", "Pair", True, "map", "", "", "Argument[0].ReturnValue", "ReturnValue", "value", "manual"]
+      - ["ratpack.util", "Pair", True, "mapLeft", "", "", "Argument[-1].Field[ratpack.func.Pair.left]", "Argument[0].Parameter[0]", "value", "manual"]
+      - ["ratpack.util", "Pair", True, "mapLeft", "", "", "Argument[-1].Field[ratpack.func.Pair.right]", "ReturnValue.Field[ratpack.func.Pair.right]", "value", "manual"]
+      - ["ratpack.util", "Pair", True, "mapLeft", "", "", "Argument[0].ReturnValue", "ReturnValue.Field[ratpack.func.Pair.left]", "value", "manual"]
+      - ["ratpack.util", "Pair", True, "mapRight", "", "", "Argument[-1].Field[ratpack.func.Pair.left]", "ReturnValue.Field[ratpack.func.Pair.left]", "value", "manual"]
+      - ["ratpack.util", "Pair", True, "mapRight", "", "", "Argument[-1].Field[ratpack.func.Pair.right]", "Argument[0].Parameter[0]", "value", "manual"]
+      - ["ratpack.util", "Pair", True, "mapRight", "", "", "Argument[0].ReturnValue", "ReturnValue.Field[ratpack.func.Pair.right]", "value", "manual"]
+      - ["ratpack.util", "Pair", True, "nestLeft", "(Object)", "", "Argument[-1].Field[ratpack.func.Pair.left]", "ReturnValue.Field[ratpack.func.Pair.left].Field[ratpack.func.Pair.right]", "value", "manual"]
+      - ["ratpack.util", "Pair", True, "nestLeft", "(Object)", "", "Argument[-1].Field[ratpack.func.Pair.right]", "ReturnValue.Field[ratpack.func.Pair.right]", "value", "manual"]
+      - ["ratpack.util", "Pair", True, "nestLeft", "(Object)", "", "Argument[0]", "ReturnValue.Field[ratpack.func.Pair.left].Field[ratpack.func.Pair.left]", "value", "manual"]
+      - ["ratpack.util", "Pair", True, "nestRight", "(Object)", "", "Argument[-1].Field[ratpack.func.Pair.left]", "ReturnValue.Field[ratpack.func.Pair.left]", "value", "manual"]
+      - ["ratpack.util", "Pair", True, "nestRight", "(Object)", "", "Argument[-1].Field[ratpack.func.Pair.right]", "ReturnValue.Field[ratpack.func.Pair.right].Field[ratpack.func.Pair.right]", "value", "manual"]
+      - ["ratpack.util", "Pair", True, "nestRight", "(Object)", "", "Argument[0]", "ReturnValue.Field[ratpack.func.Pair.right].Field[ratpack.func.Pair.left]", "value", "manual"]
+      - ["ratpack.util", "Pair", True, "of", "", "", "Argument[0]", "ReturnValue.Field[ratpack.func.Pair.left]", "value", "manual"]
+      - ["ratpack.util", "Pair", True, "of", "", "", "Argument[1]", "ReturnValue.Field[ratpack.func.Pair.right]", "value", "manual"]
+      - ["ratpack.util", "Pair", True, "pair", "", "", "Argument[0]", "ReturnValue.Field[ratpack.func.Pair.left]", "value", "manual"]
+      - ["ratpack.util", "Pair", True, "pair", "", "", "Argument[1]", "ReturnValue.Field[ratpack.func.Pair.right]", "value", "manual"]
+      - ["ratpack.util", "Pair", True, "pushLeft", "(Object)", "", "Argument[-1]", "ReturnValue.Field[ratpack.func.Pair.right]", "value", "manual"]
+      - ["ratpack.util", "Pair", True, "pushLeft", "(Object)", "", "Argument[0]", "ReturnValue.Field[ratpack.func.Pair.left]", "value", "manual"]
+      - ["ratpack.util", "Pair", True, "pushRight", "(Object)", "", "Argument[-1]", "ReturnValue.Field[ratpack.func.Pair.left]", "value", "manual"]
+      - ["ratpack.util", "Pair", True, "pushRight", "(Object)", "", "Argument[0]", "ReturnValue.Field[ratpack.func.Pair.right]", "value", "manual"]
+      - ["ratpack.util", "Pair", True, "right", "()", "", "Argument[-1].Field[ratpack.func.Pair.right]", "ReturnValue", "value", "manual"]
+      - ["ratpack.util", "Pair", True, "right", "(Object)", "", "Argument[-1].Field[ratpack.func.Pair.left]", "ReturnValue.Field[ratpack.func.Pair.left]", "value", "manual"]
+      - ["ratpack.util", "Pair", True, "right", "(Object)", "", "Argument[0]", "ReturnValue.Field[ratpack.func.Pair.right]", "value", "manual"]
diff --git a/java/ql/lib/ext/retrofit2.model.yml b/java/ql/lib/ext/retrofit2.model.yml
new file mode 100644
index 00000000000..7b1a109365a
--- /dev/null
+++ b/java/ql/lib/ext/retrofit2.model.yml
@@ -0,0 +1,6 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSinkModel
+    data:
+      - ["retrofit2", "Retrofit$Builder", True, "baseUrl", "", "", "Argument[0]", "open-url", "manual"]

From 663d091776bb16c16732eba041a59a77691f8bbd Mon Sep 17 00:00:00 2001
From: Michael Nebel <michaelnebel@github.com>
Date: Tue, 15 Nov 2022 10:33:13 +0100
Subject: [PATCH 0665/1420] Java: Invert dependencies and use the extensible
 predicates.

---
 .../code/java/dataflow/ExternalFlow.qll       | 121 +++++++++++-------
 1 file changed, 77 insertions(+), 44 deletions(-)

diff --git a/java/ql/lib/semmle/code/java/dataflow/ExternalFlow.qll b/java/ql/lib/semmle/code/java/dataflow/ExternalFlow.qll
index 6bd13135c1b..520890146a0 100644
--- a/java/ql/lib/semmle/code/java/dataflow/ExternalFlow.qll
+++ b/java/ql/lib/semmle/code/java/dataflow/ExternalFlow.qll
@@ -161,41 +161,57 @@ private module Frameworks {
 }
 
 /**
+ * DEPRECATED: Define source models as data extensions instead.
+ *
  * A unit class for adding additional source model rows.
  *
  * Extend this class to add additional source definitions.
  */
-class SourceModelCsv extends Unit {
+class SourceModelCsv = SourceModelCsvInternal;
+
+private class SourceModelCsvInternal extends Unit {
   /** Holds if `row` specifies a source definition. */
   abstract predicate row(string row);
 }
 
 /**
+ * DEPRECATED: Define sink models as data extensions instead.
+ *
  * A unit class for adding additional sink model rows.
  *
  * Extend this class to add additional sink definitions.
  */
-class SinkModelCsv extends Unit {
+class SinkModelCsv = SinkModelCsvInternal;
+
+private class SinkModelCsvInternal extends Unit {
   /** Holds if `row` specifies a sink definition. */
   abstract predicate row(string row);
 }
 
 /**
+ * DEPRECATED: Define summary models as data extensions instead.
+ *
  * A unit class for adding additional summary model rows.
  *
  * Extend this class to add additional flow summary definitions.
  */
-class SummaryModelCsv extends Unit {
+class SummaryModelCsv = SummaryModelCsvInternal;
+
+private class SummaryModelCsvInternal extends Unit {
   /** Holds if `row` specifies a summary definition. */
   abstract predicate row(string row);
 }
 
 /**
- * A unit class for adding negative summary model rows.
+ * DEPRECATED: Define negative summary models as data extensions instead.
  *
- * Extend this class to add additional flow summary definitions.
+ * A unit class for adding additional negative summary model rows.
+ *
+ * Extend this class to add additional negative summary definitions.
  */
-class NegativeSummaryModelCsv extends Unit {
+class NegativeSummaryModelCsv = NegativeSummaryModelCsvInternal;
+
+private class NegativeSummaryModelCsvInternal extends Unit {
   /** Holds if `row` specifies a negative summary definition. */
   abstract predicate row(string row);
 }
@@ -420,17 +436,15 @@ private class SummaryModelCsvBase extends SummaryModelCsv {
   }
 }
 
-/** Holds if `row` is a source model. */
-predicate sourceModel(string row) { any(SourceModelCsv s).row(row) }
+private predicate sourceModelInternal(string row) { any(SourceModelCsvInternal s).row(row) }
 
-/** Holds if `row` is a sink model. */
-predicate sinkModel(string row) { any(SinkModelCsv s).row(row) }
+private predicate summaryModelInternal(string row) { any(SummaryModelCsvInternal s).row(row) }
 
-/** Holds if `row` is a summary model. */
-predicate summaryModel(string row) { any(SummaryModelCsv s).row(row) }
+private predicate sinkModelInternal(string row) { any(SinkModelCsvInternal s).row(row) }
 
-/** Holds if `row` is negative summary model. */
-predicate negativeSummaryModel(string row) { any(NegativeSummaryModelCsv s).row(row) }
+private predicate negativeSummaryModelInternal(string row) {
+  any(NegativeSummaryModelCsvInternal s).row(row)
+}
 
 /**
  * Holds if a source model exists for the given parameters.
@@ -446,7 +460,7 @@ predicate sourceModel(
   string output, string kind, string provenance
 ) {
   exists(string row |
-    sourceModel(row) and
+    sourceModelInternal(row) and
     row.splitAt(";", 0) = package and
     row.splitAt(";", 1) = type and
     row.splitAt(";", 2) = subtypes.toString() and
@@ -458,6 +472,8 @@ predicate sourceModel(
     row.splitAt(";", 7) = kind and
     row.splitAt(";", 8) = provenance
   )
+  or
+  extSourceModel(package, type, subtypes, name, signature, ext, output, kind, provenance)
 }
 
 /** Holds if a sink model exists for the given parameters. */
@@ -472,7 +488,7 @@ predicate sinkModel(
   string input, string kind, string provenance
 ) {
   exists(string row |
-    sinkModel(row) and
+    sinkModelInternal(row) and
     row.splitAt(";", 0) = package and
     row.splitAt(";", 1) = type and
     row.splitAt(";", 2) = subtypes.toString() and
@@ -484,6 +500,8 @@ predicate sinkModel(
     row.splitAt(";", 7) = kind and
     row.splitAt(";", 8) = provenance
   )
+  or
+  extSinkModel(package, type, subtypes, name, signature, ext, input, kind, provenance)
 }
 
 /** Holds if a summary model exists for the given parameters. */
@@ -497,26 +515,42 @@ predicate summaryModel(
   string package, string type, boolean subtypes, string name, string signature, string ext,
   string input, string output, string kind, string provenance
 ) {
-  summaryModel(package, type, subtypes, name, signature, ext, input, output, kind, provenance, _)
+  exists(string row |
+    summaryModelInternal(row) and
+    row.splitAt(";", 0) = package and
+    row.splitAt(";", 1) = type and
+    row.splitAt(";", 2) = subtypes.toString() and
+    subtypes = [true, false] and
+    row.splitAt(";", 3) = name and
+    row.splitAt(";", 4) = signature and
+    row.splitAt(";", 5) = ext and
+    row.splitAt(";", 6) = input and
+    row.splitAt(";", 7) = output and
+    row.splitAt(";", 8) = kind and
+    row.splitAt(";", 9) = provenance
+  )
+  or
+  extSummaryModel(package, type, subtypes, name, signature, ext, input, output, kind, provenance)
 }
 
 /** Holds if a summary model `row` exists for the given parameters. */
+bindingset[row]
 predicate summaryModel(
   string package, string type, boolean subtypes, string name, string signature, string ext,
   string input, string output, string kind, string provenance, string row
 ) {
-  summaryModel(row) and
-  row.splitAt(";", 0) = package and
-  row.splitAt(";", 1) = type and
-  row.splitAt(";", 2) = subtypes.toString() and
-  subtypes = [true, false] and
-  row.splitAt(";", 3) = name and
-  row.splitAt(";", 4) = signature and
-  row.splitAt(";", 5) = ext and
-  row.splitAt(";", 6) = input and
-  row.splitAt(";", 7) = output and
-  row.splitAt(";", 8) = kind and
-  row.splitAt(";", 9) = provenance
+  summaryModel(package, type, subtypes, name, signature, ext, input, output, kind, provenance) and
+  row =
+    package + ";" //
+      + type + ";" //
+      + subtypes.toString() + ";" //
+      + name + ";" //
+      + signature + ";" //
+      + ext + ";" //
+      + input + ";" //
+      + output + ";" //
+      + kind + ";" //
+      + provenance
 }
 
 /** Holds if a summary model exists indicating there is no flow for the given parameters. */
@@ -529,19 +563,21 @@ predicate negativeSummaryModel(
   string package, string type, string name, string signature, string provenance
 ) {
   exists(string row |
-    negativeSummaryModel(row) and
+    negativeSummaryModelInternal(row) and
     row.splitAt(";", 0) = package and
     row.splitAt(";", 1) = type and
     row.splitAt(";", 2) = name and
     row.splitAt(";", 3) = signature and
     row.splitAt(";", 4) = provenance
   )
+  or
+  extNegativeSummaryModel(package, type, name, signature, provenance)
 }
 
 private predicate relevantPackage(string package) {
   sourceModel(package, _, _, _, _, _, _, _, _) or
   sinkModel(package, _, _, _, _, _, _, _, _) or
-  summaryModel(package, _, _, _, _, _, _, _, _, _, _)
+  summaryModel(package, _, _, _, _, _, _, _, _, _)
 }
 
 private predicate packageLink(string shortpkg, string longpkg) {
@@ -627,14 +663,12 @@ module ModelValidation {
   }
 
   private string getInvalidModelKind() {
-    exists(string row, string kind | summaryModel(row) |
-      kind = row.splitAt(";", 8) and
+    exists(string kind | summaryModel(_, _, _, _, _, _, _, _, kind, _) |
       not kind = ["taint", "value"] and
       result = "Invalid kind \"" + kind + "\" in summary model."
     )
     or
-    exists(string row, string kind | sinkModel(row) |
-      kind = row.splitAt(";", 7) and
+    exists(string kind | sinkModel(_, _, _, _, _, _, _, kind, _) |
       not kind =
         [
           "open-url", "jndi-injection", "ldap", "sql", "jdbc-url", "logging", "mvel", "xpath",
@@ -648,8 +682,7 @@ module ModelValidation {
       result = "Invalid kind \"" + kind + "\" in sink model."
     )
     or
-    exists(string row, string kind | sourceModel(row) |
-      kind = row.splitAt(";", 7) and
+    exists(string kind | sourceModel(_, _, _, _, _, _, _, kind, _) |
       not kind = ["remote", "contentprovider", "android-widget", "android-external-storage-dir"] and
       not kind.matches("qltest%") and
       result = "Invalid kind \"" + kind + "\" in source model."
@@ -658,11 +691,11 @@ module ModelValidation {
 
   private string getInvalidModelSubtype() {
     exists(string pred, string row |
-      sourceModel(row) and pred = "source"
+      sourceModelInternal(row) and pred = "source"
       or
-      sinkModel(row) and pred = "sink"
+      sinkModelInternal(row) and pred = "sink"
       or
-      summaryModel(row) and pred = "summary"
+      summaryModelInternal(row) and pred = "summary"
     |
       exists(string b |
         b = row.splitAt(";", 2) and
@@ -674,13 +707,13 @@ module ModelValidation {
 
   private string getInvalidModelColumnCount() {
     exists(string pred, string row, int expect |
-      sourceModel(row) and expect = 9 and pred = "source"
+      sourceModelInternal(row) and expect = 9 and pred = "source"
       or
-      sinkModel(row) and expect = 9 and pred = "sink"
+      sinkModelInternal(row) and expect = 9 and pred = "sink"
       or
-      summaryModel(row) and expect = 10 and pred = "summary"
+      summaryModelInternal(row) and expect = 10 and pred = "summary"
       or
-      negativeSummaryModel(row) and expect = 5 and pred = "negative summary"
+      negativeSummaryModelInternal(row) and expect = 5 and pred = "negative summary"
     |
       exists(int cols |
         cols = 1 + max(int n | exists(row.splitAt(";", n))) and

From 0abeb831c73e2068d7eeaf8843bf8bf3416ab7dd Mon Sep 17 00:00:00 2001
From: Michael Nebel <michaelnebel@github.com>
Date: Tue, 15 Nov 2022 10:47:11 +0100
Subject: [PATCH 0666/1420] Java: Move summaryModel predicate, which constructs
 a CSV row to the testcode where it is used.

---
 .../code/java/dataflow/ExternalFlow.qll       | 20 ----------------
 .../flowtestcasegenerator/FlowTestCase.qll    | 24 +++++++++++++++++--
 .../GenerateFlowTestCase.qll                  |  8 +++----
 3 files changed, 26 insertions(+), 26 deletions(-)

diff --git a/java/ql/lib/semmle/code/java/dataflow/ExternalFlow.qll b/java/ql/lib/semmle/code/java/dataflow/ExternalFlow.qll
index 520890146a0..082fa167103 100644
--- a/java/ql/lib/semmle/code/java/dataflow/ExternalFlow.qll
+++ b/java/ql/lib/semmle/code/java/dataflow/ExternalFlow.qll
@@ -533,26 +533,6 @@ predicate summaryModel(
   extSummaryModel(package, type, subtypes, name, signature, ext, input, output, kind, provenance)
 }
 
-/** Holds if a summary model `row` exists for the given parameters. */
-bindingset[row]
-predicate summaryModel(
-  string package, string type, boolean subtypes, string name, string signature, string ext,
-  string input, string output, string kind, string provenance, string row
-) {
-  summaryModel(package, type, subtypes, name, signature, ext, input, output, kind, provenance) and
-  row =
-    package + ";" //
-      + type + ";" //
-      + subtypes.toString() + ";" //
-      + name + ";" //
-      + signature + ";" //
-      + ext + ";" //
-      + input + ";" //
-      + output + ";" //
-      + kind + ";" //
-      + provenance
-}
-
 /** Holds if a summary model exists indicating there is no flow for the given parameters. */
 extensible predicate extNegativeSummaryModel(
   string package, string type, string name, string signature, string provenance
diff --git a/java/ql/src/utils/flowtestcasegenerator/FlowTestCase.qll b/java/ql/src/utils/flowtestcasegenerator/FlowTestCase.qll
index 046debc5019..bab34473ed7 100644
--- a/java/ql/src/utils/flowtestcasegenerator/FlowTestCase.qll
+++ b/java/ql/src/utils/flowtestcasegenerator/FlowTestCase.qll
@@ -21,6 +21,26 @@ class TargetSummaryModelCsv extends Unit {
   abstract predicate row(string r);
 }
 
+/** Holds if a summary model `row` exists for the given parameters. */
+bindingset[row]
+predicate summaryModelRow(
+  string package, string type, boolean subtypes, string name, string signature, string ext,
+  string input, string output, string kind, string provenance, string row
+) {
+  summaryModel(package, type, subtypes, name, signature, ext, input, output, kind, provenance) and
+  row =
+    package + ";" //
+      + type + ";" //
+      + subtypes.toString() + ";" //
+      + name + ";" //
+      + signature + ";" //
+      + ext + ";" //
+      + input + ";" //
+      + output + ";" //
+      + kind + ";" //
+      + provenance
+}
+
 /**
  * Gets a CSV row for which a test has been requested, but `SummaryModelCsv.row` does not hold of it.
  */
@@ -64,8 +84,8 @@ private newtype TTestCase =
       string inputSpec, string outputSpec
     |
       any(TargetSummaryModelCsv tsmc).row(row) and
-      summaryModel(namespace, type, subtypes, name, signature, ext, inputSpec, outputSpec, kind, _,
-        row) and
+      summaryModelRow(namespace, type, subtypes, name, signature, ext, inputSpec, outputSpec, kind,
+        _, row) and
       callable = interpretElement(namespace, type, subtypes, name, signature, ext) and
       Private::External::interpretSpec(inputSpec, input) and
       Private::External::interpretSpec(outputSpec, output)
diff --git a/java/ql/src/utils/flowtestcasegenerator/GenerateFlowTestCase.qll b/java/ql/src/utils/flowtestcasegenerator/GenerateFlowTestCase.qll
index 9eb925be422..613ea19753f 100644
--- a/java/ql/src/utils/flowtestcasegenerator/GenerateFlowTestCase.qll
+++ b/java/ql/src/utils/flowtestcasegenerator/GenerateFlowTestCase.qll
@@ -21,25 +21,25 @@ query string getAParseFailure(string reason) {
   any(TargetSummaryModelCsv target).row(result) and
   any(SummaryModelCsv model).row(result) and
   (
-    not summaryModel(_, _, _, _, _, _, _, _, _, _, result) and
+    not summaryModelRow(_, _, _, _, _, _, _, _, _, _, result) and
     reason = "row could not be parsed"
     or
     exists(
       string namespace, string type, boolean subtypes, string name, string signature, string ext
     |
-      summaryModel(namespace, type, subtypes, name, signature, ext, _, _, _, _, result) and
+      summaryModelRow(namespace, type, subtypes, name, signature, ext, _, _, _, _, result) and
       not interpretElement(namespace, type, subtypes, name, signature, ext) instanceof Callable and
       reason = "callable could not be resolved"
     )
     or
     exists(string inputSpec |
-      summaryModel(_, _, _, _, _, _, inputSpec, _, _, _, result) and
+      summaryModelRow(_, _, _, _, _, _, inputSpec, _, _, _, result) and
       not Private::External::interpretSpec(inputSpec, _) and
       reason = "input spec could not be parsed"
     )
     or
     exists(string outputSpec |
-      summaryModel(_, _, _, _, _, _, _, outputSpec, _, _, result) and
+      summaryModelRow(_, _, _, _, _, _, _, outputSpec, _, _, result) and
       not Private::External::interpretSpec(outputSpec, _) and
       reason = "output spec could not be parsed"
     )

From f4e1867d28ed2a8538af0b39a5fb0e483a11f4c9 Mon Sep 17 00:00:00 2001
From: Michael Nebel <michaelnebel@github.com>
Date: Tue, 15 Nov 2022 10:56:55 +0100
Subject: [PATCH 0667/1420] Java: Define extensible predicates to at least be
 empty.

---
 java/ql/lib/ext/dummy.model.yml | 18 ++++++++++++++++++
 1 file changed, 18 insertions(+)
 create mode 100644 java/ql/lib/ext/dummy.model.yml

diff --git a/java/ql/lib/ext/dummy.model.yml b/java/ql/lib/ext/dummy.model.yml
new file mode 100644
index 00000000000..01642dccae6
--- /dev/null
+++ b/java/ql/lib/ext/dummy.model.yml
@@ -0,0 +1,18 @@
+extensions:
+  # Make sure that the extensible model predicates are at least defined as empty.
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSourceModel
+    data: []
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSinkModel
+    data: []
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSummaryModel
+    data: []
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extNegativeSummaryModel
+    data: []
\ No newline at end of file

From b3a3b676bafd9120e19db49f22d9e000e8115e76 Mon Sep 17 00:00:00 2001
From: Michael Nebel <michaelnebel@github.com>
Date: Tue, 15 Nov 2022 13:33:18 +0100
Subject: [PATCH 0668/1420] Java: Remove manual models from QL code.

---
 java/ql/lib/ext/android.content.model.yml     |    3 +
 java/ql/lib/ext/android.os.model.yml          |    1 +
 java/ql/lib/ext/android.webkit.model.yml      |    1 +
 .../lib/ext/com.google.common.cache.model.yml |    2 +
 .../ext/com.google.common.collect.model.yml   |    2 +
 java/ql/lib/ext/jakarta.ws.rs.core.model.yml  |    7 +
 java/ql/lib/ext/java.nio.file.model.yml       |    4 +-
 java/ql/lib/ext/java.util.stream.model.yml    |    4 +
 java/ql/lib/ext/javax.jms.model.yml           |    5 +
 java/ql/lib/ext/javax.ws.rs.core.model.yml    |    7 +
 java/ql/lib/ext/jodd.json.model.yml           |    6 +
 ...g.apache.commons.collections.bag.model.yml |    1 +
 ...e.commons.collections.collection.model.yml |    1 +
 ...he.commons.collections.iterators.model.yml |    1 +
 ...che.commons.collections.keyvalue.model.yml |    3 +
 ....apache.commons.collections.list.model.yml |    1 +
 ...g.apache.commons.collections.map.model.yml |    1 +
 .../org.apache.commons.collections.model.yml  |   12 +
 ...che.commons.collections.multimap.model.yml |    1 +
 ...apache.commons.collections.queue.model.yml |    1 +
 ...g.apache.commons.collections.set.model.yml |    1 +
 ...che.commons.collections.splitmap.model.yml |    1 +
 ....apache.commons.collections.trie.model.yml |    1 +
 ....apache.commons.collections4.bag.model.yml |    1 +
 ....commons.collections4.collection.model.yml |    1 +
 ...e.commons.collections4.iterators.model.yml |    1 +
 ...he.commons.collections4.keyvalue.model.yml |    3 +
 ...apache.commons.collections4.list.model.yml |    1 +
 ....apache.commons.collections4.map.model.yml |    1 +
 .../org.apache.commons.collections4.model.yml |   12 +
 ...he.commons.collections4.multimap.model.yml |    1 +
 ...pache.commons.collections4.queue.model.yml |    1 +
 ....apache.commons.collections4.set.model.yml |    1 +
 ...he.commons.collections4.splitmap.model.yml |    1 +
 ...apache.commons.collections4.trie.model.yml |    1 +
 .../lib/ext/org.apache.commons.io.model.yml   |    4 +
 .../ext/org.apache.commons.lang3.model.yml    |   10 +
 .../org.springframework.web.util.model.yml    |    1 +
 .../lib/ext/ratpack.core.handling.model.yml   |    1 +
 java/ql/lib/ext/ratpack.func.model.yml        |    4 +
 java/ql/lib/ext/ratpack.handling.model.yml    |    1 +
 java/ql/lib/ext/ratpack.util.model.yml        |    4 +
 .../code/java/dataflow/ExternalFlow.qll       |  252 ----
 .../java/dataflow/internal/ContainerFlow.qll  |  349 -----
 .../code/java/frameworks/ApacheHttp.qll       |  199 ---
 .../semmle/code/java/frameworks/Flexjson.qll  |    6 -
 .../semmle/code/java/frameworks/Hibernate.qll |   16 -
 .../semmle/code/java/frameworks/HikariCP.qll  |   17 -
 .../lib/semmle/code/java/frameworks/JMS.qll   |  112 --
 .../semmle/code/java/frameworks/JavaIo.qll    |   24 -
 .../semmle/code/java/frameworks/JavaxJson.qll |  138 --
 .../lib/semmle/code/java/frameworks/JaxWS.qll |  331 -----
 .../lib/semmle/code/java/frameworks/Jdbc.qll  |   30 -
 .../lib/semmle/code/java/frameworks/Jdbi.qll  |   21 -
 .../semmle/code/java/frameworks/JoddJson.qll  |   25 -
 .../semmle/code/java/frameworks/JsonJava.qll  |  252 ----
 .../semmle/code/java/frameworks/Logging.qll   |  340 -----
 .../semmle/code/java/frameworks/MyBatis.qll   |   86 --
 .../semmle/code/java/frameworks/Objects.qll   |   18 -
 .../semmle/code/java/frameworks/OkHttp.qll    |   71 -
 .../semmle/code/java/frameworks/Optional.qll  |   30 -
 .../semmle/code/java/frameworks/RabbitMQ.qll  |   58 -
 .../lib/semmle/code/java/frameworks/Regex.qll |   17 -
 .../semmle/code/java/frameworks/Retrofit.qll  |   12 -
 .../code/java/frameworks/SpringJdbc.qll       |   42 -
 .../semmle/code/java/frameworks/Stream.qll    |   92 --
 .../semmle/code/java/frameworks/Strings.qll   |   70 -
 .../semmle/code/java/frameworks/Thymeleaf.qll |   16 -
 .../code/java/frameworks/android/Android.qll  |   94 --
 .../frameworks/android/ContentProviders.qll   |  104 --
 .../frameworks/android/ExternalStorage.qll    |   15 -
 .../code/java/frameworks/android/Intent.qll   |  193 ---
 .../java/frameworks/android/Notifications.qll |  101 --
 .../code/java/frameworks/android/SQLite.qll   |  135 --
 .../frameworks/android/SharedPreferences.qll  |   16 -
 .../code/java/frameworks/android/Slice.qll    |   84 --
 .../code/java/frameworks/android/Widget.qll   |   12 -
 .../code/java/frameworks/android/XssSinks.qll |   16 -
 .../java/frameworks/apache/Collections.qll    | 1160 -----------------
 .../semmle/code/java/frameworks/apache/IO.qll |   23 -
 .../code/java/frameworks/apache/Lang.qll      |    2 -
 .../java/frameworks/apache/Lang2Generated.qll |  284 ----
 .../java/frameworks/apache/Lang3Generated.qll |  436 -------
 .../code/java/frameworks/guava/Base.qll       |   98 --
 .../code/java/frameworks/guava/Cache.qll      |   32 -
 .../java/frameworks/guava/Collections.qll     |  565 --------
 .../code/java/frameworks/guava/Guava.qll      |    3 -
 .../semmle/code/java/frameworks/guava/IO.qll  |  101 --
 .../lib/semmle/code/java/frameworks/jOOQ.qll  |    6 -
 .../jackson/JacksonSerializability.qll        |   15 -
 .../frameworks/javaee/jsf/JSFRenderer.qll     |   28 -
 .../code/java/frameworks/kotlin/StdLib.qll    |   14 -
 .../code/java/frameworks/ratpack/Ratpack.qll  |  135 --
 .../java/frameworks/ratpack/RatpackExec.qll   |   96 --
 .../code/java/frameworks/spring/Spring.qll    |    9 -
 .../java/frameworks/spring/SpringBeans.qll    |   48 -
 .../java/frameworks/spring/SpringCache.qll    |   27 -
 .../java/frameworks/spring/SpringContext.qll  |   18 -
 .../java/frameworks/spring/SpringData.qll     |   17 -
 .../java/frameworks/spring/SpringHttp.qll     |  101 --
 .../code/java/frameworks/spring/SpringUi.qll  |   46 -
 .../java/frameworks/spring/SpringUtil.qll     |  153 ---
 .../frameworks/spring/SpringValidation.qll    |   25 -
 .../frameworks/spring/SpringWebClient.qll     |   23 -
 .../frameworks/spring/SpringWebMultipart.qll  |   25 -
 .../java/frameworks/spring/SpringWebUtil.qll  |  176 ---
 .../code/java/regex/RegexFlowConfigs.qll      |    1 -
 .../code/java/regex/RegexFlowModels.qll       |   38 -
 .../security/AndroidIntentRedirection.qll     |   31 -
 ...CleartextStorageAndroidFilesystemQuery.qll |    1 -
 .../lib/semmle/code/java/security/Files.qll   |  100 --
 .../code/java/security/FragmentInjection.qll  |   16 -
 .../code/java/security/GroovyInjection.qll    |   41 -
 .../java/security/ImplicitPendingIntents.qll  |   33 -
 .../code/java/security/InformationLeak.qll    |    8 -
 .../java/security/JexlInjectionSinkModels.qll |   43 -
 .../code/java/security/JndiInjection.qll      |   56 -
 .../code/java/security/LdapInjection.qll      |   47 -
 .../code/java/security/MvelInjection.qll      |   25 -
 .../code/java/security/OgnlInjection.qll      |   23 -
 .../code/java/security/ResponseSplitting.qll  |   12 -
 .../code/java/security/TemplateInjection.qll  |   30 -
 .../lib/semmle/code/java/security/XPath.qll   |   32 -
 .../code/java/security/XsltInjection.qll      |   14 -
 .../java/security/regexp/RegexInjection.qll   |    2 +-
 125 files changed, 117 insertions(+), 7613 deletions(-)
 delete mode 100644 java/ql/lib/semmle/code/java/frameworks/HikariCP.qll
 delete mode 100644 java/ql/lib/semmle/code/java/frameworks/JMS.qll
 delete mode 100644 java/ql/lib/semmle/code/java/frameworks/JavaIo.qll
 delete mode 100644 java/ql/lib/semmle/code/java/frameworks/JavaxJson.qll
 delete mode 100644 java/ql/lib/semmle/code/java/frameworks/Jdbi.qll
 delete mode 100644 java/ql/lib/semmle/code/java/frameworks/JsonJava.qll
 delete mode 100644 java/ql/lib/semmle/code/java/frameworks/Logging.qll
 delete mode 100644 java/ql/lib/semmle/code/java/frameworks/Objects.qll
 delete mode 100644 java/ql/lib/semmle/code/java/frameworks/OkHttp.qll
 delete mode 100644 java/ql/lib/semmle/code/java/frameworks/Optional.qll
 delete mode 100644 java/ql/lib/semmle/code/java/frameworks/RabbitMQ.qll
 delete mode 100644 java/ql/lib/semmle/code/java/frameworks/Retrofit.qll
 delete mode 100644 java/ql/lib/semmle/code/java/frameworks/Strings.qll
 delete mode 100644 java/ql/lib/semmle/code/java/frameworks/Thymeleaf.qll
 delete mode 100644 java/ql/lib/semmle/code/java/frameworks/android/Notifications.qll
 delete mode 100644 java/ql/lib/semmle/code/java/frameworks/android/XssSinks.qll
 delete mode 100644 java/ql/lib/semmle/code/java/frameworks/apache/IO.qll
 delete mode 100644 java/ql/lib/semmle/code/java/frameworks/apache/Lang2Generated.qll
 delete mode 100644 java/ql/lib/semmle/code/java/frameworks/apache/Lang3Generated.qll
 delete mode 100644 java/ql/lib/semmle/code/java/frameworks/guava/Base.qll
 delete mode 100644 java/ql/lib/semmle/code/java/frameworks/guava/Cache.qll
 delete mode 100644 java/ql/lib/semmle/code/java/frameworks/guava/IO.qll
 delete mode 100644 java/ql/lib/semmle/code/java/frameworks/kotlin/StdLib.qll
 delete mode 100644 java/ql/lib/semmle/code/java/frameworks/ratpack/Ratpack.qll
 delete mode 100644 java/ql/lib/semmle/code/java/frameworks/spring/SpringBeans.qll
 delete mode 100644 java/ql/lib/semmle/code/java/frameworks/spring/SpringCache.qll
 delete mode 100644 java/ql/lib/semmle/code/java/frameworks/spring/SpringContext.qll
 delete mode 100644 java/ql/lib/semmle/code/java/frameworks/spring/SpringData.qll
 delete mode 100644 java/ql/lib/semmle/code/java/frameworks/spring/SpringUi.qll
 delete mode 100644 java/ql/lib/semmle/code/java/frameworks/spring/SpringUtil.qll
 delete mode 100644 java/ql/lib/semmle/code/java/frameworks/spring/SpringValidation.qll
 delete mode 100644 java/ql/lib/semmle/code/java/frameworks/spring/SpringWebMultipart.qll
 delete mode 100644 java/ql/lib/semmle/code/java/frameworks/spring/SpringWebUtil.qll
 delete mode 100644 java/ql/lib/semmle/code/java/regex/RegexFlowModels.qll
 delete mode 100644 java/ql/lib/semmle/code/java/security/Files.qll
 delete mode 100644 java/ql/lib/semmle/code/java/security/JexlInjectionSinkModels.qll

diff --git a/java/ql/lib/ext/android.content.model.yml b/java/ql/lib/ext/android.content.model.yml
index 23e3e376c12..a07799665db 100644
--- a/java/ql/lib/ext/android.content.model.yml
+++ b/java/ql/lib/ext/android.content.model.yml
@@ -3,6 +3,7 @@ extensions:
       pack: codeql/java-all
       extensible: extSourceModel
     data:
+      # ContentInterface models are here for backwards compatibility (it was removed in API 28)
       - ["android.content", "ContentInterface", True, "call", "(String,String,String,Bundle)", "", "Parameter[0..3]", "contentprovider", "manual"]
       - ["android.content", "ContentInterface", True, "delete", "(Uri,Bundle)", "", "Parameter[0..1]", "contentprovider", "manual"]
       - ["android.content", "ContentInterface", True, "getType", "(Uri)", "", "Parameter[0]", "contentprovider", "manual"]
@@ -80,6 +81,7 @@ extensions:
       - ["android.content", "ComponentName", False, "unflattenFromString", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
       - ["android.content", "ContentProvider", True, "query", "(Uri,String[],String,String[],String)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
       - ["android.content", "ContentProvider", True, "query", "(Uri,String[],String,String[],String,CancellationSignal)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      # ContentProviderClient is tainted at its creation, not by its arguments
       - ["android.content", "ContentProviderClient", True, "applyBatch", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
       - ["android.content", "ContentProviderClient", True, "call", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
       - ["android.content", "ContentProviderClient", True, "canonicalize", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
@@ -132,6 +134,7 @@ extensions:
       - ["android.content", "ContentValues", False, "put", "", "", "Argument[1]", "Argument[-1].MapValue", "value", "manual"]
       - ["android.content", "ContentValues", False, "putAll", "", "", "Argument[0].MapKey", "Argument[-1].MapKey", "value", "manual"]
       - ["android.content", "ContentValues", False, "putAll", "", "", "Argument[0].MapValue", "Argument[-1].MapValue", "value", "manual"]
+      # Currently only the Extras part of the intent and the data field are fully modeled
       - ["android.content", "Intent", True, "Intent", "(Context,Class)", "", "Argument[1]", "Argument[-1]", "taint", "manual"]
       - ["android.content", "Intent", True, "Intent", "(Intent)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
       - ["android.content", "Intent", False, "Intent", "(Intent)", "", "Argument[0].SyntheticField[android.content.Intent.extras].MapKey", "Argument[-1].SyntheticField[android.content.Intent.extras].MapKey", "value", "manual"]
diff --git a/java/ql/lib/ext/android.os.model.yml b/java/ql/lib/ext/android.os.model.yml
index 8581a3f47ae..32860445cf4 100644
--- a/java/ql/lib/ext/android.os.model.yml
+++ b/java/ql/lib/ext/android.os.model.yml
@@ -35,6 +35,7 @@ extensions:
       - ["android.os", "Bundle", False, "Bundle", "(PersistableBundle)", "", "Argument[0].MapValue", "Argument[-1].MapValue", "value", "manual"]
       - ["android.os", "Bundle", True, "clone", "()", "", "Argument[-1].MapKey", "ReturnValue.MapKey", "value", "manual"]
       - ["android.os", "Bundle", True, "clone", "()", "", "Argument[-1].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      #  Model for Bundle.deepCopy is not fully precise, as some map values aren't copied by value
       - ["android.os", "Bundle", True, "deepCopy", "()", "", "Argument[-1].MapKey", "ReturnValue.MapKey", "value", "manual"]
       - ["android.os", "Bundle", True, "deepCopy", "()", "", "Argument[-1].MapValue", "ReturnValue.MapValue", "value", "manual"]
       - ["android.os", "Bundle", True, "getBinder", "(String)", "", "Argument[-1].MapValue", "ReturnValue", "value", "manual"]
diff --git a/java/ql/lib/ext/android.webkit.model.yml b/java/ql/lib/ext/android.webkit.model.yml
index a12ffdd44dd..c5a3ed8661f 100644
--- a/java/ql/lib/ext/android.webkit.model.yml
+++ b/java/ql/lib/ext/android.webkit.model.yml
@@ -9,6 +9,7 @@ extensions:
       pack: codeql/java-all
       extensible: extSinkModel
     data:
+      # Models representing methods susceptible to XSS attacks.
       - ["android.webkit", "WebView", False, "evaluateJavascript", "", "", "Argument[0]", "xss", "manual"]
       - ["android.webkit", "WebView", False, "loadData", "", "", "Argument[0]", "xss", "manual"]
       - ["android.webkit", "WebView", False, "loadDataWithBaseURL", "", "", "Argument[1]", "xss", "manual"]
diff --git a/java/ql/lib/ext/com.google.common.cache.model.yml b/java/ql/lib/ext/com.google.common.cache.model.yml
index 673ee594992..852542d19d6 100644
--- a/java/ql/lib/ext/com.google.common.cache.model.yml
+++ b/java/ql/lib/ext/com.google.common.cache.model.yml
@@ -5,7 +5,9 @@ extensions:
     data:
       - ["com.google.common.cache", "Cache", True, "asMap", "()", "", "Argument[-1].MapKey", "ReturnValue.MapKey", "value", "manual"]
       - ["com.google.common.cache", "Cache", True, "asMap", "()", "", "Argument[-1].MapValue", "ReturnValue.MapValue", "value", "manual"]
+      # Lambda flow from Argument[1] not implemented
       - ["com.google.common.cache", "Cache", True, "get", "(Object,Callable)", "", "Argument[-1].MapValue", "ReturnValue", "value", "manual"]
+      # The true flow to MapKey of ReturnValue for getAllPresent is the intersection of the these inputs, but intersections cannot be modeled fully accurately.
       - ["com.google.common.cache", "Cache", True, "getAllPresent", "(Iterable)", "", "Argument[-1].MapKey", "ReturnValue.MapKey", "value", "manual"]
       - ["com.google.common.cache", "Cache", True, "getAllPresent", "(Iterable)", "", "Argument[-1].MapValue", "ReturnValue.MapValue", "value", "manual"]
       - ["com.google.common.cache", "Cache", True, "getAllPresent", "(Iterable)", "", "Argument[0].Element", "ReturnValue.MapKey", "value", "manual"]
diff --git a/java/ql/lib/ext/com.google.common.collect.model.yml b/java/ql/lib/ext/com.google.common.collect.model.yml
index 434fb34d728..98124e42679 100644
--- a/java/ql/lib/ext/com.google.common.collect.model.yml
+++ b/java/ql/lib/ext/com.google.common.collect.model.yml
@@ -3,6 +3,8 @@ extensions:
       pack: codeql/java-all
       extensible: extSummaryModel
     data:
+      # Methods depending on lambda flow are not currently modeled
+      # Methods depending on stronger aliasing properties than we support are also not modeled.
       - ["com.google.common.collect", "ArrayListMultimap", True, "create", "(Multimap)", "", "Argument[0].MapKey", "ReturnValue.MapKey", "value", "manual"]
       - ["com.google.common.collect", "ArrayListMultimap", True, "create", "(Multimap)", "", "Argument[0].MapValue", "ReturnValue.MapValue", "value", "manual"]
       - ["com.google.common.collect", "ArrayTable", True, "create", "(Iterable,Iterable)", "", "Argument[0].Element", "ReturnValue.SyntheticField[com.google.common.collect.Table.rowKey]", "value", "manual"]
diff --git a/java/ql/lib/ext/jakarta.ws.rs.core.model.yml b/java/ql/lib/ext/jakarta.ws.rs.core.model.yml
index 1f1cc59d161..44c8ed66881 100644
--- a/java/ql/lib/ext/jakarta.ws.rs.core.model.yml
+++ b/java/ql/lib/ext/jakarta.ws.rs.core.model.yml
@@ -27,6 +27,9 @@ extensions:
       - ["jakarta.ws.rs.core", "Form", True, "param", "", "", "Argument[0..1]", "Argument[-1]", "taint", "manual"]
       - ["jakarta.ws.rs.core", "GenericEntity", False, "GenericEntity", "", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
       - ["jakarta.ws.rs.core", "GenericEntity", True, "getEntity", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      # Methods that Date have to be syntax-checked, but those returning MediaType
+      # or Locale are assumed potentially dangerous, as these types do not generally check that the
+      # input data is recognised, only that it conforms to the expected syntax.
       - ["jakarta.ws.rs.core", "HttpHeaders", True, "getAcceptableLanguages", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
       - ["jakarta.ws.rs.core", "HttpHeaders", True, "getAcceptableMediaTypes", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
       - ["jakarta.ws.rs.core", "HttpHeaders", True, "getCookies", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
@@ -63,9 +66,13 @@ extensions:
       - ["jakarta.ws.rs.core", "NewCookie", False, "valueOf", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
       - ["jakarta.ws.rs.core", "PathSegment", True, "getMatrixParameters", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
       - ["jakarta.ws.rs.core", "PathSegment", True, "getPath", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      # The returned ResponseBuilder gains taint from a tainted entity or existing Response
       - ["jakarta.ws.rs.core", "Response", False, "accepted", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
       - ["jakarta.ws.rs.core", "Response", False, "fromResponse", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
       - ["jakarta.ws.rs.core", "Response", False, "ok", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      # Becomes tainted by a tainted entity, but not by metadata, headers etc
+      # Build() method returns taint
+      # Almost all methods are fluent, and so preserve value
       - ["jakarta.ws.rs.core", "Response$ResponseBuilder", True, "allow", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
       - ["jakarta.ws.rs.core", "Response$ResponseBuilder", True, "build", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
       - ["jakarta.ws.rs.core", "Response$ResponseBuilder", True, "cacheControl", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
diff --git a/java/ql/lib/ext/java.nio.file.model.yml b/java/ql/lib/ext/java.nio.file.model.yml
index a593f0e7bf7..43c19fedbff 100644
--- a/java/ql/lib/ext/java.nio.file.model.yml
+++ b/java/ql/lib/ext/java.nio.file.model.yml
@@ -24,10 +24,12 @@ extensions:
     data:
       - ["java.nio.file", "FileSystem", True, "getPath", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
       - ["java.nio.file", "FileSystem", True, "getRootDirectories", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["java.nio.file", "Path", True, "getParent", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
       - ["java.nio.file", "Path", True, "normalize", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
       - ["java.nio.file", "Path", True, "resolve", "", "", "Argument[-1..0]", "ReturnValue", "taint", "manual"]
       - ["java.nio.file", "Path", True, "toAbsolutePath", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
       - ["java.nio.file", "Path", False, "toFile", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
       - ["java.nio.file", "Path", True, "toString", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
       - ["java.nio.file", "Path", True, "toUri", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
-      - ["java.nio.file", "Paths", True, "get", "", "", "Argument[0..1]", "ReturnValue", "taint", "manual"]
+      - ["java.nio.file", "Paths", True, "get", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["java.nio.file", "Paths", True, "get", "", "", "Argument[1].ArrayElement", "ReturnValue", "taint", "manual"]
diff --git a/java/ql/lib/ext/java.util.stream.model.yml b/java/ql/lib/ext/java.util.stream.model.yml
index 431829ec322..ae453444faf 100644
--- a/java/ql/lib/ext/java.util.stream.model.yml
+++ b/java/ql/lib/ext/java.util.stream.model.yml
@@ -16,6 +16,7 @@ extensions:
       - ["java.util.stream", "Stream", True, "collect", "(Supplier,BiConsumer,BiConsumer)", "", "Argument[1].Parameter[0]", "Argument[2].Parameter[0..1]", "value", "manual"]
       - ["java.util.stream", "Stream", True, "collect", "(Supplier,BiConsumer,BiConsumer)", "", "Argument[1].Parameter[0]", "ReturnValue", "value", "manual"]
       - ["java.util.stream", "Stream", True, "collect", "(Supplier,BiConsumer,BiConsumer)", "", "Argument[2].Parameter[0..1]", "Argument[1].Parameter[0]", "value", "manual"]
+      # collect(Collector<T,A,R> collector) is handled separately on a case-by-case basis as it is too complex for MaD
       - ["java.util.stream", "Stream", True, "concat", "(Stream,Stream)", "", "Argument[0..1].Element", "ReturnValue.Element", "value", "manual"]
       - ["java.util.stream", "Stream", True, "distinct", "()", "", "Argument[-1].Element", "ReturnValue.Element", "value", "manual"]
       - ["java.util.stream", "Stream", True, "dropWhile", "(Predicate)", "", "Argument[-1].Element", "Argument[0].Parameter[0]", "value", "manual"]
@@ -43,6 +44,9 @@ extensions:
       - ["java.util.stream", "Stream", True, "limit", "(long)", "", "Argument[-1].Element", "ReturnValue.Element", "value", "manual"]
       - ["java.util.stream", "Stream", True, "map", "(Function)", "", "Argument[-1].Element", "Argument[0].Parameter[0]", "value", "manual"]
       - ["java.util.stream", "Stream", True, "map", "(Function)", "", "Argument[0].ReturnValue", "ReturnValue.Element", "value", "manual"]
+      # Missing for mapMulti(BiConsumer) (not currently supported):
+      # Argument[0] of Parameter[1] of Argument[0] -> Element of Parameter[1] of Argument[0]
+      # Element of Parameter[1] of Argument[0] -> Element of ReturnValue
       - ["java.util.stream", "Stream", True, "mapMulti", "(BiConsumer)", "", "Argument[-1].Element", "Argument[0].Parameter[0]", "value", "manual"]
       - ["java.util.stream", "Stream", True, "mapMultiToDouble", "(BiConsumer)", "", "Argument[-1].Element", "Argument[0].Parameter[0]", "value", "manual"]
       - ["java.util.stream", "Stream", True, "mapMultiToInt", "(BiConsumer)", "", "Argument[-1].Element", "Argument[0].Parameter[0]", "value", "manual"]
diff --git a/java/ql/lib/ext/javax.jms.model.yml b/java/ql/lib/ext/javax.jms.model.yml
index 9f153e35370..9ccf3e7a379 100644
--- a/java/ql/lib/ext/javax.jms.model.yml
+++ b/java/ql/lib/ext/javax.jms.model.yml
@@ -1,3 +1,8 @@
+ # This model covers JMS API versions 1 and 2.
+ #
+ # https://docs.oracle.com/javaee/6/api/javax/jms/package-summary.html
+ # https://docs.oracle.com/javaee/7/api/javax/jms/package-summary.html
+ #
 extensions:
   - addsTo:
       pack: codeql/java-all
diff --git a/java/ql/lib/ext/javax.ws.rs.core.model.yml b/java/ql/lib/ext/javax.ws.rs.core.model.yml
index 079f1afa9d2..3c1611970f9 100644
--- a/java/ql/lib/ext/javax.ws.rs.core.model.yml
+++ b/java/ql/lib/ext/javax.ws.rs.core.model.yml
@@ -28,6 +28,9 @@ extensions:
       - ["javax.ws.rs.core", "Form", True, "param", "", "", "Argument[0..1]", "Argument[-1]", "taint", "manual"]
       - ["javax.ws.rs.core", "GenericEntity", False, "GenericEntity", "", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
       - ["javax.ws.rs.core", "GenericEntity", True, "getEntity", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      # Methods that Date have to be syntax-checked, but those returning MediaType
+      # or Locale are assumed potentially dangerous, as these types do not generally check that the
+      # input data is recognised, only that it conforms to the expected syntax.
       - ["javax.ws.rs.core", "HttpHeaders", True, "getAcceptableLanguages", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
       - ["javax.ws.rs.core", "HttpHeaders", True, "getAcceptableMediaTypes", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
       - ["javax.ws.rs.core", "HttpHeaders", True, "getCookies", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
@@ -64,9 +67,13 @@ extensions:
       - ["javax.ws.rs.core", "NewCookie", False, "valueOf", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
       - ["javax.ws.rs.core", "PathSegment", True, "getMatrixParameters", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
       - ["javax.ws.rs.core", "PathSegment", True, "getPath", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      # The returned ResponseBuilder gains taint from a tainted entity or existing Response
       - ["javax.ws.rs.core", "Response", False, "accepted", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
       - ["javax.ws.rs.core", "Response", False, "fromResponse", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
       - ["javax.ws.rs.core", "Response", False, "ok", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      # Becomes tainted by a tainted entity, but not by metadata, headers etc
+      # Build() method returns taint
+      # Almost all methods are fluent, and so preserve value
       - ["javax.ws.rs.core", "Response$ResponseBuilder", True, "allow", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
       - ["javax.ws.rs.core", "Response$ResponseBuilder", True, "build", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
       - ["javax.ws.rs.core", "Response$ResponseBuilder", True, "cacheControl", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
diff --git a/java/ql/lib/ext/jodd.json.model.yml b/java/ql/lib/ext/jodd.json.model.yml
index 6335ce520c0..6187110797d 100644
--- a/java/ql/lib/ext/jodd.json.model.yml
+++ b/java/ql/lib/ext/jodd.json.model.yml
@@ -1,3 +1,9 @@
+ # A partial model of jodd.json.JsonParser noting fluent methods.
+ #
+ # This means that DataFlow::localFlow and similar methods are aware
+ # that the result of (e.g.) JsonParser.allowClass is an alias of the
+ # qualifier.
+ #
 extensions:
   - addsTo:
       pack: codeql/java-all
diff --git a/java/ql/lib/ext/org.apache.commons.collections.bag.model.yml b/java/ql/lib/ext/org.apache.commons.collections.bag.model.yml
index ae77069bdee..55ab021d9ff 100644
--- a/java/ql/lib/ext/org.apache.commons.collections.bag.model.yml
+++ b/java/ql/lib/ext/org.apache.commons.collections.bag.model.yml
@@ -3,6 +3,7 @@ extensions:
       pack: codeql/java-all
       extensible: extSummaryModel
     data:
+      # Note that when lambdas are supported we should have more models for TransformedBag, TransformedSortedBag
       - ["org.apache.commons.collections.bag", "AbstractBagDecorator", True, "AbstractBagDecorator", "", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
       - ["org.apache.commons.collections.bag", "AbstractMapBag", True, "AbstractMapBag", "", "", "Argument[0].MapKey", "Argument[-1].Element", "value", "manual"]
       - ["org.apache.commons.collections.bag", "AbstractMapBag", True, "getMap", "", "", "Argument[-1].Element", "ReturnValue.MapKey", "value", "manual"]
diff --git a/java/ql/lib/ext/org.apache.commons.collections.collection.model.yml b/java/ql/lib/ext/org.apache.commons.collections.collection.model.yml
index 53e523e74ed..a2cdd0a2d80 100644
--- a/java/ql/lib/ext/org.apache.commons.collections.collection.model.yml
+++ b/java/ql/lib/ext/org.apache.commons.collections.collection.model.yml
@@ -3,6 +3,7 @@ extensions:
       pack: codeql/java-all
       extensible: extSummaryModel
     data:
+      # Note that when lambdas are supported we should have more models for TransformedCollection
       - ["org.apache.commons.collections.collection", "AbstractCollectionDecorator", True, "AbstractCollectionDecorator", "", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
       - ["org.apache.commons.collections.collection", "AbstractCollectionDecorator", True, "decorated", "", "", "Argument[-1].Element", "ReturnValue.Element", "value", "manual"]
       - ["org.apache.commons.collections.collection", "AbstractCollectionDecorator", True, "setCollection", "", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
diff --git a/java/ql/lib/ext/org.apache.commons.collections.iterators.model.yml b/java/ql/lib/ext/org.apache.commons.collections.iterators.model.yml
index d5cf30ca7cc..d65fc0e6f93 100644
--- a/java/ql/lib/ext/org.apache.commons.collections.iterators.model.yml
+++ b/java/ql/lib/ext/org.apache.commons.collections.iterators.model.yml
@@ -3,6 +3,7 @@ extensions:
       pack: codeql/java-all
       extensible: extSummaryModel
     data:
+      # Note that when lambdas are supported we should have more models for TransformIterator
       - ["org.apache.commons.collections.iterators", "AbstractIteratorDecorator", True, "AbstractIteratorDecorator", "", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
       - ["org.apache.commons.collections.iterators", "AbstractListIteratorDecorator", True, "AbstractListIteratorDecorator", "", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
       - ["org.apache.commons.collections.iterators", "AbstractListIteratorDecorator", True, "getListIterator", "", "", "Argument[-1].Element", "ReturnValue.Element", "value", "manual"]
diff --git a/java/ql/lib/ext/org.apache.commons.collections.keyvalue.model.yml b/java/ql/lib/ext/org.apache.commons.collections.keyvalue.model.yml
index 679da24a74c..9c7e0fd4bca 100644
--- a/java/ql/lib/ext/org.apache.commons.collections.keyvalue.model.yml
+++ b/java/ql/lib/ext/org.apache.commons.collections.keyvalue.model.yml
@@ -3,6 +3,9 @@ extensions:
       pack: codeql/java-all
       extensible: extSummaryModel
     data:
+      # Note that when lambdas are supported we should model the package `org.apache.commons.collections4.functors`,
+      # and when more general callable flow is supported we should model the package
+      # `org.apache.commons.collections4.sequence`.
       - ["org.apache.commons.collections.keyvalue", "AbstractKeyValue", True, "AbstractKeyValue", "", "", "Argument[0]", "Argument[-1].MapKey", "value", "manual"]
       - ["org.apache.commons.collections.keyvalue", "AbstractKeyValue", True, "AbstractKeyValue", "", "", "Argument[1]", "Argument[-1].MapValue", "value", "manual"]
       - ["org.apache.commons.collections.keyvalue", "AbstractKeyValue", True, "setKey", "", "", "Argument[-1].MapKey", "ReturnValue", "value", "manual"]
diff --git a/java/ql/lib/ext/org.apache.commons.collections.list.model.yml b/java/ql/lib/ext/org.apache.commons.collections.list.model.yml
index d97d893a2c0..53ad3035659 100644
--- a/java/ql/lib/ext/org.apache.commons.collections.list.model.yml
+++ b/java/ql/lib/ext/org.apache.commons.collections.list.model.yml
@@ -3,6 +3,7 @@ extensions:
       pack: codeql/java-all
       extensible: extSummaryModel
     data:
+      # Note that when lambdas are supported we should have more models for TransformedList
       - ["org.apache.commons.collections.list", "AbstractLinkedList", True, "AbstractLinkedList", "", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
       - ["org.apache.commons.collections.list", "AbstractLinkedList", True, "addFirst", "", "", "Argument[0]", "Argument[-1].Element", "value", "manual"]
       - ["org.apache.commons.collections.list", "AbstractLinkedList", True, "addLast", "", "", "Argument[0]", "Argument[-1].Element", "value", "manual"]
diff --git a/java/ql/lib/ext/org.apache.commons.collections.map.model.yml b/java/ql/lib/ext/org.apache.commons.collections.map.model.yml
index 85b368c7fcd..a6280315075 100644
--- a/java/ql/lib/ext/org.apache.commons.collections.map.model.yml
+++ b/java/ql/lib/ext/org.apache.commons.collections.map.model.yml
@@ -3,6 +3,7 @@ extensions:
       pack: codeql/java-all
       extensible: extSummaryModel
     data:
+      # Note that when lambdas are supported we should have more models for DefaultedMap, LazyMap, TransformedMap, TransformedSortedMap
       - ["org.apache.commons.collections.map", "AbstractHashedMap", True, "AbstractHashedMap", "(Map)", "", "Argument[0].MapKey", "Argument[-1].MapKey", "value", "manual"]
       - ["org.apache.commons.collections.map", "AbstractHashedMap", True, "AbstractHashedMap", "(Map)", "", "Argument[0].MapValue", "Argument[-1].MapValue", "value", "manual"]
       - ["org.apache.commons.collections.map", "AbstractLinkedMap", True, "AbstractLinkedMap", "(Map)", "", "Argument[0].MapKey", "Argument[-1].MapKey", "value", "manual"]
diff --git a/java/ql/lib/ext/org.apache.commons.collections.model.yml b/java/ql/lib/ext/org.apache.commons.collections.model.yml
index 13192b5a709..5846d092b5c 100644
--- a/java/ql/lib/ext/org.apache.commons.collections.model.yml
+++ b/java/ql/lib/ext/org.apache.commons.collections.model.yml
@@ -3,6 +3,13 @@ extensions:
       pack: codeql/java-all
       extensible: extSummaryModel
     data:
+      # Note that when lambdas are supported we should model things relating to Closure, Factory, Transformer, FluentIterable.forEach, FluentIterable.transform
+      # Note that when lambdas are supported we should model the package `org.apache.commons.collections4.functors`,
+      # and when more general callable flow is supported we should model the package
+      # `org.apache.commons.collections4.sequence`.
+      # Note that when lambdas are supported we should have more models for populateMap
+      # Note that when lambdas are supported we should have a model for collect, forAllButLastDo, forAllDo, transform
+      # Note that when lambdas are supported we should have a model for forEach, forEachButLast, transformedIterator
       - ["org.apache.commons.collections", "ArrayStack", True, "peek", "", "", "Argument[-1].Element", "ReturnValue", "value", "manual"]
       - ["org.apache.commons.collections", "ArrayStack", True, "pop", "", "", "Argument[-1].Element", "ReturnValue", "value", "manual"]
       - ["org.apache.commons.collections", "ArrayStack", True, "push", "", "", "Argument[0]", "Argument[-1].Element", "value", "manual"]
@@ -60,6 +67,7 @@ extensions:
       - ["org.apache.commons.collections", "CollectionUtils", True, "selectRejected", "(Iterable,Predicate,Collection)", "", "Argument[2]", "ReturnValue", "value", "manual"]
       - ["org.apache.commons.collections", "CollectionUtils", True, "subtract", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
       - ["org.apache.commons.collections", "CollectionUtils", True, "synchronizedCollection", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      # Note that `CollectionUtils.transformingCollection` does not transform existing list elements
       - ["org.apache.commons.collections", "CollectionUtils", True, "transformingCollection", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
       - ["org.apache.commons.collections", "CollectionUtils", True, "union", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
       - ["org.apache.commons.collections", "CollectionUtils", True, "union", "", "", "Argument[1].Element", "ReturnValue.Element", "value", "manual"]
@@ -191,6 +199,7 @@ extensions:
       - ["org.apache.commons.collections", "ListUtils", True, "fixedSizeList", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
       - ["org.apache.commons.collections", "ListUtils", True, "intersection", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
       - ["org.apache.commons.collections", "ListUtils", True, "intersection", "", "", "Argument[1].Element", "ReturnValue.Element", "value", "manual"]
+      # Note that `ListUtils.lazyList` does not transform existing list elements
       - ["org.apache.commons.collections", "ListUtils", True, "lazyList", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
       - ["org.apache.commons.collections", "ListUtils", True, "longestCommonSubsequence", "(CharSequence,CharSequence)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
       - ["org.apache.commons.collections", "ListUtils", True, "longestCommonSubsequence", "(CharSequence,CharSequence)", "", "Argument[1]", "ReturnValue", "taint", "manual"]
@@ -208,10 +217,13 @@ extensions:
       - ["org.apache.commons.collections", "ListUtils", True, "sum", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
       - ["org.apache.commons.collections", "ListUtils", True, "sum", "", "", "Argument[1].Element", "ReturnValue.Element", "value", "manual"]
       - ["org.apache.commons.collections", "ListUtils", True, "synchronizedList", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      # Note that `ListUtils.transformedList` does not transform existing list elements
       - ["org.apache.commons.collections", "ListUtils", True, "transformedList", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
       - ["org.apache.commons.collections", "ListUtils", True, "union", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
       - ["org.apache.commons.collections", "ListUtils", True, "union", "", "", "Argument[1].Element", "ReturnValue.Element", "value", "manual"]
       - ["org.apache.commons.collections", "ListUtils", True, "unmodifiableList", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      # Note that MapIterator<K, V> implements Iterator<K>, so it iterates over the keys of the map.
+      # In order for the models of Iterator to work we have to use Element instead of MapKey for key data.
       - ["org.apache.commons.collections", "MapIterator", True, "getKey", "", "", "Argument[-1].Element", "ReturnValue", "value", "manual"]
       - ["org.apache.commons.collections", "MapIterator", True, "getValue", "", "", "Argument[-1].MapValue", "ReturnValue", "value", "manual"]
       - ["org.apache.commons.collections", "MapIterator", True, "setValue", "", "", "Argument[-1].MapValue", "ReturnValue", "value", "manual"]
diff --git a/java/ql/lib/ext/org.apache.commons.collections.multimap.model.yml b/java/ql/lib/ext/org.apache.commons.collections.multimap.model.yml
index be759e9ccbb..d1d0b5a885c 100644
--- a/java/ql/lib/ext/org.apache.commons.collections.multimap.model.yml
+++ b/java/ql/lib/ext/org.apache.commons.collections.multimap.model.yml
@@ -3,6 +3,7 @@ extensions:
       pack: codeql/java-all
       extensible: extSummaryModel
     data:
+      # Note that when lambdas are supported we should have more models for TransformedMultiValuedMap
       - ["org.apache.commons.collections.multimap", "ArrayListValuedHashMap", True, "ArrayListValuedHashMap", "(Map)", "", "Argument[0].MapKey", "Argument[-1].MapKey", "value", "manual"]
       - ["org.apache.commons.collections.multimap", "ArrayListValuedHashMap", True, "ArrayListValuedHashMap", "(Map)", "", "Argument[0].MapValue", "Argument[-1].MapValue.Element", "value", "manual"]
       - ["org.apache.commons.collections.multimap", "ArrayListValuedHashMap", True, "ArrayListValuedHashMap", "(MultiValuedMap)", "", "Argument[0].MapKey", "Argument[-1].MapKey", "value", "manual"]
diff --git a/java/ql/lib/ext/org.apache.commons.collections.queue.model.yml b/java/ql/lib/ext/org.apache.commons.collections.queue.model.yml
index 41c40f6fb4c..5a9db9599d4 100644
--- a/java/ql/lib/ext/org.apache.commons.collections.queue.model.yml
+++ b/java/ql/lib/ext/org.apache.commons.collections.queue.model.yml
@@ -3,6 +3,7 @@ extensions:
       pack: codeql/java-all
       extensible: extSummaryModel
     data:
+      # Note that when lambdas are supported we should have more models for TransformedQueue
       - ["org.apache.commons.collections.queue", "CircularFifoQueue", True, "CircularFifoQueue", "(Collection)", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
       - ["org.apache.commons.collections.queue", "CircularFifoQueue", True, "get", "", "", "Argument[-1].Element", "ReturnValue", "value", "manual"]
       - ["org.apache.commons.collections.queue", "PredicatedQueue", True, "predicatedQueue", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
diff --git a/java/ql/lib/ext/org.apache.commons.collections.set.model.yml b/java/ql/lib/ext/org.apache.commons.collections.set.model.yml
index 56f97fd9b2e..019f862568d 100644
--- a/java/ql/lib/ext/org.apache.commons.collections.set.model.yml
+++ b/java/ql/lib/ext/org.apache.commons.collections.set.model.yml
@@ -3,6 +3,7 @@ extensions:
       pack: codeql/java-all
       extensible: extSummaryModel
     data:
+      # Note that when lambdas are supported we should have more models for TransformedNavigableSet
       - ["org.apache.commons.collections.set", "AbstractNavigableSetDecorator", True, "AbstractNavigableSetDecorator", "", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
       - ["org.apache.commons.collections.set", "AbstractSetDecorator", True, "AbstractSetDecorator", "", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
       - ["org.apache.commons.collections.set", "AbstractSortedSetDecorator", True, "AbstractSortedSetDecorator", "", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
diff --git a/java/ql/lib/ext/org.apache.commons.collections.splitmap.model.yml b/java/ql/lib/ext/org.apache.commons.collections.splitmap.model.yml
index 307081c6171..447b3533fbc 100644
--- a/java/ql/lib/ext/org.apache.commons.collections.splitmap.model.yml
+++ b/java/ql/lib/ext/org.apache.commons.collections.splitmap.model.yml
@@ -3,6 +3,7 @@ extensions:
       pack: codeql/java-all
       extensible: extSummaryModel
     data:
+      # Note that when lambdas are supported we should have more models for TransformedSplitMap
       - ["org.apache.commons.collections.splitmap", "AbstractIterableGetMapDecorator", True, "AbstractIterableGetMapDecorator", "", "", "Argument[0].MapKey", "Argument[-1].MapKey", "value", "manual"]
       - ["org.apache.commons.collections.splitmap", "AbstractIterableGetMapDecorator", True, "AbstractIterableGetMapDecorator", "", "", "Argument[0].MapValue", "Argument[-1].MapValue", "value", "manual"]
       - ["org.apache.commons.collections.splitmap", "TransformedSplitMap", True, "transformingMap", "", "", "Argument[0].MapKey", "ReturnValue.MapKey", "value", "manual"]
diff --git a/java/ql/lib/ext/org.apache.commons.collections.trie.model.yml b/java/ql/lib/ext/org.apache.commons.collections.trie.model.yml
index 1312bd074b8..451e0b60bc7 100644
--- a/java/ql/lib/ext/org.apache.commons.collections.trie.model.yml
+++ b/java/ql/lib/ext/org.apache.commons.collections.trie.model.yml
@@ -3,6 +3,7 @@ extensions:
       pack: codeql/java-all
       extensible: extSummaryModel
     data:
+      # Note that when lambdas are supported we should have more models for TransformedSplitMap
       - ["org.apache.commons.collections.trie", "AbstractPatriciaTrie", True, "select", "", "", "Argument[-1].MapKey", "ReturnValue.MapKey", "value", "manual"]
       - ["org.apache.commons.collections.trie", "AbstractPatriciaTrie", True, "select", "", "", "Argument[-1].MapValue", "ReturnValue.MapValue", "value", "manual"]
       - ["org.apache.commons.collections.trie", "AbstractPatriciaTrie", True, "selectKey", "", "", "Argument[-1].MapKey", "ReturnValue", "value", "manual"]
diff --git a/java/ql/lib/ext/org.apache.commons.collections4.bag.model.yml b/java/ql/lib/ext/org.apache.commons.collections4.bag.model.yml
index 5261491c1c7..ddc26f49b7f 100644
--- a/java/ql/lib/ext/org.apache.commons.collections4.bag.model.yml
+++ b/java/ql/lib/ext/org.apache.commons.collections4.bag.model.yml
@@ -3,6 +3,7 @@ extensions:
       pack: codeql/java-all
       extensible: extSummaryModel
     data:
+      # Note that when lambdas are supported we should have more models for TransformedBag, TransformedSortedBag
       - ["org.apache.commons.collections4.bag", "AbstractBagDecorator", True, "AbstractBagDecorator", "", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
       - ["org.apache.commons.collections4.bag", "AbstractMapBag", True, "AbstractMapBag", "", "", "Argument[0].MapKey", "Argument[-1].Element", "value", "manual"]
       - ["org.apache.commons.collections4.bag", "AbstractMapBag", True, "getMap", "", "", "Argument[-1].Element", "ReturnValue.MapKey", "value", "manual"]
diff --git a/java/ql/lib/ext/org.apache.commons.collections4.collection.model.yml b/java/ql/lib/ext/org.apache.commons.collections4.collection.model.yml
index 1c53d650fd3..f3ac93c242d 100644
--- a/java/ql/lib/ext/org.apache.commons.collections4.collection.model.yml
+++ b/java/ql/lib/ext/org.apache.commons.collections4.collection.model.yml
@@ -3,6 +3,7 @@ extensions:
       pack: codeql/java-all
       extensible: extSummaryModel
     data:
+      # Note that when lambdas are supported we should have more models for TransformedCollection
       - ["org.apache.commons.collections4.collection", "AbstractCollectionDecorator", True, "AbstractCollectionDecorator", "", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
       - ["org.apache.commons.collections4.collection", "AbstractCollectionDecorator", True, "decorated", "", "", "Argument[-1].Element", "ReturnValue.Element", "value", "manual"]
       - ["org.apache.commons.collections4.collection", "AbstractCollectionDecorator", True, "setCollection", "", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
diff --git a/java/ql/lib/ext/org.apache.commons.collections4.iterators.model.yml b/java/ql/lib/ext/org.apache.commons.collections4.iterators.model.yml
index ca86086d08b..f6671a823c4 100644
--- a/java/ql/lib/ext/org.apache.commons.collections4.iterators.model.yml
+++ b/java/ql/lib/ext/org.apache.commons.collections4.iterators.model.yml
@@ -3,6 +3,7 @@ extensions:
       pack: codeql/java-all
       extensible: extSummaryModel
     data:
+      # Note that when lambdas are supported we should have more models for TransformIterator
       - ["org.apache.commons.collections4.iterators", "AbstractIteratorDecorator", True, "AbstractIteratorDecorator", "", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
       - ["org.apache.commons.collections4.iterators", "AbstractListIteratorDecorator", True, "AbstractListIteratorDecorator", "", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
       - ["org.apache.commons.collections4.iterators", "AbstractListIteratorDecorator", True, "getListIterator", "", "", "Argument[-1].Element", "ReturnValue.Element", "value", "manual"]
diff --git a/java/ql/lib/ext/org.apache.commons.collections4.keyvalue.model.yml b/java/ql/lib/ext/org.apache.commons.collections4.keyvalue.model.yml
index b62873ed707..aa4a663115e 100644
--- a/java/ql/lib/ext/org.apache.commons.collections4.keyvalue.model.yml
+++ b/java/ql/lib/ext/org.apache.commons.collections4.keyvalue.model.yml
@@ -3,6 +3,9 @@ extensions:
       pack: codeql/java-all
       extensible: extSummaryModel
     data:
+      # Note that when lambdas are supported we should model the package `org.apache.commons.collections4.functors`,
+      # and when more general callable flow is supported we should model the package
+      # `org.apache.commons.collections4.sequence`.
       - ["org.apache.commons.collections4.keyvalue", "AbstractKeyValue", True, "AbstractKeyValue", "", "", "Argument[0]", "Argument[-1].MapKey", "value", "manual"]
       - ["org.apache.commons.collections4.keyvalue", "AbstractKeyValue", True, "AbstractKeyValue", "", "", "Argument[1]", "Argument[-1].MapValue", "value", "manual"]
       - ["org.apache.commons.collections4.keyvalue", "AbstractKeyValue", True, "setKey", "", "", "Argument[-1].MapKey", "ReturnValue", "value", "manual"]
diff --git a/java/ql/lib/ext/org.apache.commons.collections4.list.model.yml b/java/ql/lib/ext/org.apache.commons.collections4.list.model.yml
index 4307d7f1a92..7d82ffdcfa5 100644
--- a/java/ql/lib/ext/org.apache.commons.collections4.list.model.yml
+++ b/java/ql/lib/ext/org.apache.commons.collections4.list.model.yml
@@ -3,6 +3,7 @@ extensions:
       pack: codeql/java-all
       extensible: extSummaryModel
     data:
+      # Note that when lambdas are supported we should have more models for TransformedList
       - ["org.apache.commons.collections4.list", "AbstractLinkedList", True, "AbstractLinkedList", "", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
       - ["org.apache.commons.collections4.list", "AbstractLinkedList", True, "addFirst", "", "", "Argument[0]", "Argument[-1].Element", "value", "manual"]
       - ["org.apache.commons.collections4.list", "AbstractLinkedList", True, "addLast", "", "", "Argument[0]", "Argument[-1].Element", "value", "manual"]
diff --git a/java/ql/lib/ext/org.apache.commons.collections4.map.model.yml b/java/ql/lib/ext/org.apache.commons.collections4.map.model.yml
index 77b0d66f081..52d1221ed1d 100644
--- a/java/ql/lib/ext/org.apache.commons.collections4.map.model.yml
+++ b/java/ql/lib/ext/org.apache.commons.collections4.map.model.yml
@@ -3,6 +3,7 @@ extensions:
       pack: codeql/java-all
       extensible: extSummaryModel
     data:
+      # Note that when lambdas are supported we should have more models for DefaultedMap, LazyMap, TransformedMap, TransformedSortedMap
       - ["org.apache.commons.collections4.map", "AbstractHashedMap", True, "AbstractHashedMap", "(Map)", "", "Argument[0].MapKey", "Argument[-1].MapKey", "value", "manual"]
       - ["org.apache.commons.collections4.map", "AbstractHashedMap", True, "AbstractHashedMap", "(Map)", "", "Argument[0].MapValue", "Argument[-1].MapValue", "value", "manual"]
       - ["org.apache.commons.collections4.map", "AbstractLinkedMap", True, "AbstractLinkedMap", "(Map)", "", "Argument[0].MapKey", "Argument[-1].MapKey", "value", "manual"]
diff --git a/java/ql/lib/ext/org.apache.commons.collections4.model.yml b/java/ql/lib/ext/org.apache.commons.collections4.model.yml
index c3e91e9939b..ce5fc6b9fe9 100644
--- a/java/ql/lib/ext/org.apache.commons.collections4.model.yml
+++ b/java/ql/lib/ext/org.apache.commons.collections4.model.yml
@@ -3,6 +3,13 @@ extensions:
       pack: codeql/java-all
       extensible: extSummaryModel
     data:
+      # Note that when lambdas are supported we should model things relating to Closure, Factory, Transformer, FluentIterable.forEach, FluentIterable.transform
+      # Note that when lambdas are supported we should model the package `org.apache.commons.collections4.functors`,
+      # and when more general callable flow is supported we should model the package
+      # `org.apache.commons.collections4.sequence`.
+      # Note that when lambdas are supported we should have more models for populateMap
+      # Note that when lambdas are supported we should have a model for collect, forAllButLastDo, forAllDo, transform
+      # Note that when lambdas are supported we should have a model for forEach, forEachButLast, transformedIterator
       - ["org.apache.commons.collections4", "ArrayStack", True, "peek", "", "", "Argument[-1].Element", "ReturnValue", "value", "manual"]
       - ["org.apache.commons.collections4", "ArrayStack", True, "pop", "", "", "Argument[-1].Element", "ReturnValue", "value", "manual"]
       - ["org.apache.commons.collections4", "ArrayStack", True, "push", "", "", "Argument[0]", "Argument[-1].Element", "value", "manual"]
@@ -60,6 +67,7 @@ extensions:
       - ["org.apache.commons.collections4", "CollectionUtils", True, "selectRejected", "(Iterable,Predicate,Collection)", "", "Argument[2]", "ReturnValue", "value", "manual"]
       - ["org.apache.commons.collections4", "CollectionUtils", True, "subtract", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
       - ["org.apache.commons.collections4", "CollectionUtils", True, "synchronizedCollection", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      # Note that `CollectionUtils.transformingCollection` does not transform existing list elements
       - ["org.apache.commons.collections4", "CollectionUtils", True, "transformingCollection", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
       - ["org.apache.commons.collections4", "CollectionUtils", True, "union", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
       - ["org.apache.commons.collections4", "CollectionUtils", True, "union", "", "", "Argument[1].Element", "ReturnValue.Element", "value", "manual"]
@@ -191,6 +199,7 @@ extensions:
       - ["org.apache.commons.collections4", "ListUtils", True, "fixedSizeList", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
       - ["org.apache.commons.collections4", "ListUtils", True, "intersection", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
       - ["org.apache.commons.collections4", "ListUtils", True, "intersection", "", "", "Argument[1].Element", "ReturnValue.Element", "value", "manual"]
+      # Note that `ListUtils.lazyList` does not transform existing list elements
       - ["org.apache.commons.collections4", "ListUtils", True, "lazyList", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
       - ["org.apache.commons.collections4", "ListUtils", True, "longestCommonSubsequence", "(CharSequence,CharSequence)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
       - ["org.apache.commons.collections4", "ListUtils", True, "longestCommonSubsequence", "(CharSequence,CharSequence)", "", "Argument[1]", "ReturnValue", "taint", "manual"]
@@ -208,10 +217,13 @@ extensions:
       - ["org.apache.commons.collections4", "ListUtils", True, "sum", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
       - ["org.apache.commons.collections4", "ListUtils", True, "sum", "", "", "Argument[1].Element", "ReturnValue.Element", "value", "manual"]
       - ["org.apache.commons.collections4", "ListUtils", True, "synchronizedList", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      # Note that `ListUtils.transformedList` does not transform existing list elements
       - ["org.apache.commons.collections4", "ListUtils", True, "transformedList", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
       - ["org.apache.commons.collections4", "ListUtils", True, "union", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
       - ["org.apache.commons.collections4", "ListUtils", True, "union", "", "", "Argument[1].Element", "ReturnValue.Element", "value", "manual"]
       - ["org.apache.commons.collections4", "ListUtils", True, "unmodifiableList", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
+      # Note that MapIterator<K, V> implements Iterator<K>, so it iterates over the keys of the map.
+      # In order for the models of Iterator to work we have to use Element instead of MapKey for key data.
       - ["org.apache.commons.collections4", "MapIterator", True, "getKey", "", "", "Argument[-1].Element", "ReturnValue", "value", "manual"]
       - ["org.apache.commons.collections4", "MapIterator", True, "getValue", "", "", "Argument[-1].MapValue", "ReturnValue", "value", "manual"]
       - ["org.apache.commons.collections4", "MapIterator", True, "setValue", "", "", "Argument[-1].MapValue", "ReturnValue", "value", "manual"]
diff --git a/java/ql/lib/ext/org.apache.commons.collections4.multimap.model.yml b/java/ql/lib/ext/org.apache.commons.collections4.multimap.model.yml
index 0611ffb8e90..3812b6766fd 100644
--- a/java/ql/lib/ext/org.apache.commons.collections4.multimap.model.yml
+++ b/java/ql/lib/ext/org.apache.commons.collections4.multimap.model.yml
@@ -3,6 +3,7 @@ extensions:
       pack: codeql/java-all
       extensible: extSummaryModel
     data:
+      # Note that when lambdas are supported we should have more models for TransformedMultiValuedMap
       - ["org.apache.commons.collections4.multimap", "ArrayListValuedHashMap", True, "ArrayListValuedHashMap", "(Map)", "", "Argument[0].MapKey", "Argument[-1].MapKey", "value", "manual"]
       - ["org.apache.commons.collections4.multimap", "ArrayListValuedHashMap", True, "ArrayListValuedHashMap", "(Map)", "", "Argument[0].MapValue", "Argument[-1].MapValue.Element", "value", "manual"]
       - ["org.apache.commons.collections4.multimap", "ArrayListValuedHashMap", True, "ArrayListValuedHashMap", "(MultiValuedMap)", "", "Argument[0].MapKey", "Argument[-1].MapKey", "value", "manual"]
diff --git a/java/ql/lib/ext/org.apache.commons.collections4.queue.model.yml b/java/ql/lib/ext/org.apache.commons.collections4.queue.model.yml
index e4385072bc6..f9067b758e9 100644
--- a/java/ql/lib/ext/org.apache.commons.collections4.queue.model.yml
+++ b/java/ql/lib/ext/org.apache.commons.collections4.queue.model.yml
@@ -3,6 +3,7 @@ extensions:
       pack: codeql/java-all
       extensible: extSummaryModel
     data:
+      # Note that when lambdas are supported we should have more models for TransformedQueue
       - ["org.apache.commons.collections4.queue", "CircularFifoQueue", True, "CircularFifoQueue", "(Collection)", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
       - ["org.apache.commons.collections4.queue", "CircularFifoQueue", True, "get", "", "", "Argument[-1].Element", "ReturnValue", "value", "manual"]
       - ["org.apache.commons.collections4.queue", "PredicatedQueue", True, "predicatedQueue", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
diff --git a/java/ql/lib/ext/org.apache.commons.collections4.set.model.yml b/java/ql/lib/ext/org.apache.commons.collections4.set.model.yml
index e6df878695e..63ac0c91141 100644
--- a/java/ql/lib/ext/org.apache.commons.collections4.set.model.yml
+++ b/java/ql/lib/ext/org.apache.commons.collections4.set.model.yml
@@ -3,6 +3,7 @@ extensions:
       pack: codeql/java-all
       extensible: extSummaryModel
     data:
+      # Note that when lambdas are supported we should have more models for TransformedNavigableSet
       - ["org.apache.commons.collections4.set", "AbstractNavigableSetDecorator", True, "AbstractNavigableSetDecorator", "", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
       - ["org.apache.commons.collections4.set", "AbstractSetDecorator", True, "AbstractSetDecorator", "", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
       - ["org.apache.commons.collections4.set", "AbstractSortedSetDecorator", True, "AbstractSortedSetDecorator", "", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
diff --git a/java/ql/lib/ext/org.apache.commons.collections4.splitmap.model.yml b/java/ql/lib/ext/org.apache.commons.collections4.splitmap.model.yml
index 4be99cb8ec9..5a1de63ba6a 100644
--- a/java/ql/lib/ext/org.apache.commons.collections4.splitmap.model.yml
+++ b/java/ql/lib/ext/org.apache.commons.collections4.splitmap.model.yml
@@ -3,6 +3,7 @@ extensions:
       pack: codeql/java-all
       extensible: extSummaryModel
     data:
+      # Note that when lambdas are supported we should have more models for TransformedSplitMap
       - ["org.apache.commons.collections4.splitmap", "AbstractIterableGetMapDecorator", True, "AbstractIterableGetMapDecorator", "", "", "Argument[0].MapKey", "Argument[-1].MapKey", "value", "manual"]
       - ["org.apache.commons.collections4.splitmap", "AbstractIterableGetMapDecorator", True, "AbstractIterableGetMapDecorator", "", "", "Argument[0].MapValue", "Argument[-1].MapValue", "value", "manual"]
       - ["org.apache.commons.collections4.splitmap", "TransformedSplitMap", True, "transformingMap", "", "", "Argument[0].MapKey", "ReturnValue.MapKey", "value", "manual"]
diff --git a/java/ql/lib/ext/org.apache.commons.collections4.trie.model.yml b/java/ql/lib/ext/org.apache.commons.collections4.trie.model.yml
index 44d64dda75d..1f33d441e18 100644
--- a/java/ql/lib/ext/org.apache.commons.collections4.trie.model.yml
+++ b/java/ql/lib/ext/org.apache.commons.collections4.trie.model.yml
@@ -3,6 +3,7 @@ extensions:
       pack: codeql/java-all
       extensible: extSummaryModel
     data:
+      # Note that when lambdas are supported we should have more models for TransformedSplitMap
       - ["org.apache.commons.collections4.trie", "AbstractPatriciaTrie", True, "select", "", "", "Argument[-1].MapKey", "ReturnValue.MapKey", "value", "manual"]
       - ["org.apache.commons.collections4.trie", "AbstractPatriciaTrie", True, "select", "", "", "Argument[-1].MapValue", "ReturnValue.MapValue", "value", "manual"]
       - ["org.apache.commons.collections4.trie", "AbstractPatriciaTrie", True, "selectKey", "", "", "Argument[-1].MapKey", "ReturnValue", "value", "manual"]
diff --git a/java/ql/lib/ext/org.apache.commons.io.model.yml b/java/ql/lib/ext/org.apache.commons.io.model.yml
index c135623eff6..6cb7aa0b251 100644
--- a/java/ql/lib/ext/org.apache.commons.io.model.yml
+++ b/java/ql/lib/ext/org.apache.commons.io.model.yml
@@ -3,6 +3,10 @@ extensions:
       pack: codeql/java-all
       extensible: extSummaryModel
     data:
+      # Models that are not yet auto generated or where the generated summaries will
+      # be ignored.
+      # Note that if a callable has any handwritten summary, all generated summaries
+      # will be ignored for that callable.
       - ["org.apache.commons.io", "IOUtils", False, "toBufferedInputStream", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
       - ["org.apache.commons.io", "IOUtils", True, "toByteArray", "(Reader)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
       - ["org.apache.commons.io", "IOUtils", True, "toByteArray", "(Reader,String)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
diff --git a/java/ql/lib/ext/org.apache.commons.lang3.model.yml b/java/ql/lib/ext/org.apache.commons.lang3.model.yml
index 4b0c89d2731..3fda3a551af 100644
--- a/java/ql/lib/ext/org.apache.commons.lang3.model.yml
+++ b/java/ql/lib/ext/org.apache.commons.lang3.model.yml
@@ -1,4 +1,14 @@
 extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSinkModel
+    data:
+      - ["org.apache.commons.lang3", "RegExUtils", False, "removeAll", "(String,String)", "", "Argument[1]", "regex-use", "manual"]
+      - ["org.apache.commons.lang3", "RegExUtils", False, "removeFirst", "(String,String)", "", "Argument[1]", "regex-use", "manual"]
+      - ["org.apache.commons.lang3", "RegExUtils", False, "removePattern", "(String,String)", "", "Argument[1]", "regex-use", "manual"]
+      - ["org.apache.commons.lang3", "RegExUtils", False, "replaceAll", "(String,String,String)", "", "Argument[1]", "regex-use", "manual"]
+      - ["org.apache.commons.lang3", "RegExUtils", False, "replaceFirst", "(String,String,String)", "", "Argument[1]", "regex-use", "manual"]
+      - ["org.apache.commons.lang3", "RegExUtils", False, "replacePattern", "(String,String,String)", "", "Argument[1]", "regex-use", "manual"]
   - addsTo:
       pack: codeql/java-all
       extensible: extSummaryModel
diff --git a/java/ql/lib/ext/org.springframework.web.util.model.yml b/java/ql/lib/ext/org.springframework.web.util.model.yml
index c3f70b66cf8..151be5867e0 100644
--- a/java/ql/lib/ext/org.springframework.web.util.model.yml
+++ b/java/ql/lib/ext/org.springframework.web.util.model.yml
@@ -6,6 +6,7 @@ extensions:
       - ["org.springframework.web.util", "AbstractUriTemplateHandler", True, "getBaseUrl", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
       - ["org.springframework.web.util", "AbstractUriTemplateHandler", True, "setBaseUrl", "", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
       - ["org.springframework.web.util", "AbstractUriTemplateHandler", True, "setDefaultUriVariables", "", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      # Writing to a `Request` or `Response` currently doesn't propagate taint to the object itself.
       - ["org.springframework.web.util", "ContentCachingRequestWrapper", False, "ContentCachingRequestWrapper", "", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
       - ["org.springframework.web.util", "ContentCachingRequestWrapper", False, "getContentAsByteArray", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
       - ["org.springframework.web.util", "ContentCachingResponseWrapper", False, "ContentCachingResponseWrapper", "", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
diff --git a/java/ql/lib/ext/ratpack.core.handling.model.yml b/java/ql/lib/ext/ratpack.core.handling.model.yml
index edb02aaeced..7662cc6c79d 100644
--- a/java/ql/lib/ext/ratpack.core.handling.model.yml
+++ b/java/ql/lib/ext/ratpack.core.handling.model.yml
@@ -3,6 +3,7 @@ extensions:
       pack: codeql/java-all
       extensible: extSourceModel
     data:
+      # All Context#parse methods that return a Promise are remote flow sources.
       - ["ratpack.core.handling", "Context", True, "parse", "(com.google.common.reflect.TypeToken)", "", "ReturnValue", "remote", "manual"]
       - ["ratpack.core.handling", "Context", True, "parse", "(com.google.common.reflect.TypeToken,java.lang.Object)", "", "ReturnValue", "remote", "manual"]
       - ["ratpack.core.handling", "Context", True, "parse", "(java.lang.Class)", "", "ReturnValue", "remote", "manual"]
diff --git a/java/ql/lib/ext/ratpack.func.model.yml b/java/ql/lib/ext/ratpack.func.model.yml
index e850a8cbfe1..04e5a0cec8c 100644
--- a/java/ql/lib/ext/ratpack.func.model.yml
+++ b/java/ql/lib/ext/ratpack.func.model.yml
@@ -13,17 +13,21 @@ extensions:
       - ["ratpack.func", "Pair", True, "left", "()", "", "Argument[-1].Field[ratpack.func.Pair.left]", "ReturnValue", "value", "manual"]
       - ["ratpack.func", "Pair", True, "left", "(Object)", "", "Argument[-1].Field[ratpack.func.Pair.right]", "ReturnValue.Field[ratpack.func.Pair.right]", "value", "manual"]
       - ["ratpack.func", "Pair", True, "left", "(Object)", "", "Argument[0]", "ReturnValue.Field[ratpack.func.Pair.left]", "value", "manual"]
+      # `map` maps over the `Pair`
       - ["ratpack.func", "Pair", True, "map", "", "", "Argument[-1]", "Argument[0].Parameter[0]", "value", "manual"]
       - ["ratpack.func", "Pair", True, "map", "", "", "Argument[0].ReturnValue", "ReturnValue", "value", "manual"]
+      # `mapLeft` & `mapRight` map over their respective fields
       - ["ratpack.func", "Pair", True, "mapLeft", "", "", "Argument[-1].Field[ratpack.func.Pair.left]", "Argument[0].Parameter[0]", "value", "manual"]
       - ["ratpack.func", "Pair", True, "mapLeft", "", "", "Argument[-1].Field[ratpack.func.Pair.right]", "ReturnValue.Field[ratpack.func.Pair.right]", "value", "manual"]
       - ["ratpack.func", "Pair", True, "mapLeft", "", "", "Argument[0].ReturnValue", "ReturnValue.Field[ratpack.func.Pair.left]", "value", "manual"]
       - ["ratpack.func", "Pair", True, "mapRight", "", "", "Argument[-1].Field[ratpack.func.Pair.left]", "ReturnValue.Field[ratpack.func.Pair.left]", "value", "manual"]
       - ["ratpack.func", "Pair", True, "mapRight", "", "", "Argument[-1].Field[ratpack.func.Pair.right]", "Argument[0].Parameter[0]", "value", "manual"]
       - ["ratpack.func", "Pair", True, "mapRight", "", "", "Argument[0].ReturnValue", "ReturnValue.Field[ratpack.func.Pair.right]", "value", "manual"]
+      # `nestLeft` Pair<A, B>.nestLeft(C) -> Pair<Pair<C, A>, B>
       - ["ratpack.func", "Pair", True, "nestLeft", "(Object)", "", "Argument[-1].Field[ratpack.func.Pair.left]", "ReturnValue.Field[ratpack.func.Pair.left].Field[ratpack.func.Pair.right]", "value", "manual"]
       - ["ratpack.func", "Pair", True, "nestLeft", "(Object)", "", "Argument[-1].Field[ratpack.func.Pair.right]", "ReturnValue.Field[ratpack.func.Pair.right]", "value", "manual"]
       - ["ratpack.func", "Pair", True, "nestLeft", "(Object)", "", "Argument[0]", "ReturnValue.Field[ratpack.func.Pair.left].Field[ratpack.func.Pair.left]", "value", "manual"]
+      # `nestRight` Pair<A, B>.nestRight(C) -> Pair<A, Pair<C, B>>
       - ["ratpack.func", "Pair", True, "nestRight", "(Object)", "", "Argument[-1].Field[ratpack.func.Pair.left]", "ReturnValue.Field[ratpack.func.Pair.left]", "value", "manual"]
       - ["ratpack.func", "Pair", True, "nestRight", "(Object)", "", "Argument[-1].Field[ratpack.func.Pair.right]", "ReturnValue.Field[ratpack.func.Pair.right].Field[ratpack.func.Pair.right]", "value", "manual"]
       - ["ratpack.func", "Pair", True, "nestRight", "(Object)", "", "Argument[0]", "ReturnValue.Field[ratpack.func.Pair.right].Field[ratpack.func.Pair.left]", "value", "manual"]
diff --git a/java/ql/lib/ext/ratpack.handling.model.yml b/java/ql/lib/ext/ratpack.handling.model.yml
index 3523d1cf937..3c2c54d0bba 100644
--- a/java/ql/lib/ext/ratpack.handling.model.yml
+++ b/java/ql/lib/ext/ratpack.handling.model.yml
@@ -3,6 +3,7 @@ extensions:
       pack: codeql/java-all
       extensible: extSourceModel
     data:
+      # All Context#parse methods that return a Promise are remote flow sources.
       - ["ratpack.handling", "Context", True, "parse", "(com.google.common.reflect.TypeToken)", "", "ReturnValue", "remote", "manual"]
       - ["ratpack.handling", "Context", True, "parse", "(com.google.common.reflect.TypeToken,java.lang.Object)", "", "ReturnValue", "remote", "manual"]
       - ["ratpack.handling", "Context", True, "parse", "(java.lang.Class)", "", "ReturnValue", "remote", "manual"]
diff --git a/java/ql/lib/ext/ratpack.util.model.yml b/java/ql/lib/ext/ratpack.util.model.yml
index b594e03aecd..218a023bcd3 100644
--- a/java/ql/lib/ext/ratpack.util.model.yml
+++ b/java/ql/lib/ext/ratpack.util.model.yml
@@ -13,17 +13,21 @@ extensions:
       - ["ratpack.util", "Pair", True, "left", "()", "", "Argument[-1].Field[ratpack.func.Pair.left]", "ReturnValue", "value", "manual"]
       - ["ratpack.util", "Pair", True, "left", "(Object)", "", "Argument[-1].Field[ratpack.func.Pair.right]", "ReturnValue.Field[ratpack.func.Pair.right]", "value", "manual"]
       - ["ratpack.util", "Pair", True, "left", "(Object)", "", "Argument[0]", "ReturnValue.Field[ratpack.func.Pair.left]", "value", "manual"]
+      # `map` maps over the `Pair`
       - ["ratpack.util", "Pair", True, "map", "", "", "Argument[-1]", "Argument[0].Parameter[0]", "value", "manual"]
       - ["ratpack.util", "Pair", True, "map", "", "", "Argument[0].ReturnValue", "ReturnValue", "value", "manual"]
+      # `mapLeft` & `mapRight` map over their respective fields
       - ["ratpack.util", "Pair", True, "mapLeft", "", "", "Argument[-1].Field[ratpack.func.Pair.left]", "Argument[0].Parameter[0]", "value", "manual"]
       - ["ratpack.util", "Pair", True, "mapLeft", "", "", "Argument[-1].Field[ratpack.func.Pair.right]", "ReturnValue.Field[ratpack.func.Pair.right]", "value", "manual"]
       - ["ratpack.util", "Pair", True, "mapLeft", "", "", "Argument[0].ReturnValue", "ReturnValue.Field[ratpack.func.Pair.left]", "value", "manual"]
       - ["ratpack.util", "Pair", True, "mapRight", "", "", "Argument[-1].Field[ratpack.func.Pair.left]", "ReturnValue.Field[ratpack.func.Pair.left]", "value", "manual"]
       - ["ratpack.util", "Pair", True, "mapRight", "", "", "Argument[-1].Field[ratpack.func.Pair.right]", "Argument[0].Parameter[0]", "value", "manual"]
       - ["ratpack.util", "Pair", True, "mapRight", "", "", "Argument[0].ReturnValue", "ReturnValue.Field[ratpack.func.Pair.right]", "value", "manual"]
+      # `nestLeft` Pair<A, B>.nestLeft(C) -> Pair<Pair<C, A>, B>
       - ["ratpack.util", "Pair", True, "nestLeft", "(Object)", "", "Argument[-1].Field[ratpack.func.Pair.left]", "ReturnValue.Field[ratpack.func.Pair.left].Field[ratpack.func.Pair.right]", "value", "manual"]
       - ["ratpack.util", "Pair", True, "nestLeft", "(Object)", "", "Argument[-1].Field[ratpack.func.Pair.right]", "ReturnValue.Field[ratpack.func.Pair.right]", "value", "manual"]
       - ["ratpack.util", "Pair", True, "nestLeft", "(Object)", "", "Argument[0]", "ReturnValue.Field[ratpack.func.Pair.left].Field[ratpack.func.Pair.left]", "value", "manual"]
+      # `nestRight` Pair<A, B>.nestRight(C) -> Pair<A, Pair<C, B>>
       - ["ratpack.util", "Pair", True, "nestRight", "(Object)", "", "Argument[-1].Field[ratpack.func.Pair.left]", "ReturnValue.Field[ratpack.func.Pair.left]", "value", "manual"]
       - ["ratpack.util", "Pair", True, "nestRight", "(Object)", "", "Argument[-1].Field[ratpack.func.Pair.right]", "ReturnValue.Field[ratpack.func.Pair.right].Field[ratpack.func.Pair.right]", "value", "manual"]
       - ["ratpack.util", "Pair", True, "nestRight", "(Object)", "", "Argument[0]", "ReturnValue.Field[ratpack.func.Pair.right].Field[ratpack.func.Pair.left]", "value", "manual"]
diff --git a/java/ql/lib/semmle/code/java/dataflow/ExternalFlow.qll b/java/ql/lib/semmle/code/java/dataflow/ExternalFlow.qll
index 082fa167103..b9688809c45 100644
--- a/java/ql/lib/semmle/code/java/dataflow/ExternalFlow.qll
+++ b/java/ql/lib/semmle/code/java/dataflow/ExternalFlow.qll
@@ -90,56 +90,30 @@ private module Frameworks {
   private import semmle.code.java.frameworks.android.ContentProviders
   private import semmle.code.java.frameworks.android.ExternalStorage
   private import semmle.code.java.frameworks.android.Intent
-  private import semmle.code.java.frameworks.android.Notifications
   private import semmle.code.java.frameworks.android.SharedPreferences
   private import semmle.code.java.frameworks.android.Slice
   private import semmle.code.java.frameworks.android.SQLite
   private import semmle.code.java.frameworks.android.Widget
-  private import semmle.code.java.frameworks.android.XssSinks
   private import semmle.code.java.frameworks.ApacheHttp
   private import semmle.code.java.frameworks.apache.Collections
-  private import semmle.code.java.frameworks.apache.IO
   private import semmle.code.java.frameworks.apache.Lang
   private import semmle.code.java.frameworks.Flexjson
   private import semmle.code.java.frameworks.generated
   private import semmle.code.java.frameworks.guava.Guava
   private import semmle.code.java.frameworks.jackson.JacksonSerializability
   private import semmle.code.java.frameworks.javaee.jsf.JSFRenderer
-  private import semmle.code.java.frameworks.JavaIo
-  private import semmle.code.java.frameworks.JavaxJson
   private import semmle.code.java.frameworks.JaxWS
   private import semmle.code.java.frameworks.JoddJson
-  private import semmle.code.java.frameworks.JsonJava
-  private import semmle.code.java.frameworks.Logging
-  private import semmle.code.java.frameworks.Objects
-  private import semmle.code.java.frameworks.OkHttp
-  private import semmle.code.java.frameworks.Optional
-  private import semmle.code.java.frameworks.Regex
-  private import semmle.code.java.frameworks.Retrofit
   private import semmle.code.java.frameworks.Stream
-  private import semmle.code.java.frameworks.Strings
-  private import semmle.code.java.frameworks.Thymeleaf
-  private import semmle.code.java.frameworks.ratpack.Ratpack
   private import semmle.code.java.frameworks.ratpack.RatpackExec
-  private import semmle.code.java.frameworks.spring.SpringCache
-  private import semmle.code.java.frameworks.spring.SpringContext
-  private import semmle.code.java.frameworks.spring.SpringData
   private import semmle.code.java.frameworks.spring.SpringHttp
-  private import semmle.code.java.frameworks.spring.SpringUtil
-  private import semmle.code.java.frameworks.spring.SpringUi
-  private import semmle.code.java.frameworks.spring.SpringValidation
   private import semmle.code.java.frameworks.spring.SpringWebClient
-  private import semmle.code.java.frameworks.spring.SpringBeans
-  private import semmle.code.java.frameworks.spring.SpringWebMultipart
-  private import semmle.code.java.frameworks.spring.SpringWebUtil
   private import semmle.code.java.security.AndroidIntentRedirection
   private import semmle.code.java.security.ResponseSplitting
   private import semmle.code.java.security.InformationLeak
-  private import semmle.code.java.security.Files
   private import semmle.code.java.security.FragmentInjection
   private import semmle.code.java.security.GroovyInjection
   private import semmle.code.java.security.ImplicitPendingIntents
-  private import semmle.code.java.security.JexlInjectionSinkModels
   private import semmle.code.java.security.JndiInjection
   private import semmle.code.java.security.LdapInjection
   private import semmle.code.java.security.MvelInjection
@@ -148,16 +122,10 @@ private module Frameworks {
   private import semmle.code.java.security.XPath
   private import semmle.code.java.security.XsltInjection
   private import semmle.code.java.frameworks.Jdbc
-  private import semmle.code.java.frameworks.Jdbi
-  private import semmle.code.java.frameworks.HikariCP
   private import semmle.code.java.frameworks.SpringJdbc
   private import semmle.code.java.frameworks.MyBatis
   private import semmle.code.java.frameworks.Hibernate
   private import semmle.code.java.frameworks.jOOQ
-  private import semmle.code.java.frameworks.JMS
-  private import semmle.code.java.frameworks.RabbitMQ
-  private import semmle.code.java.regex.RegexFlowModels
-  private import semmle.code.java.frameworks.kotlin.StdLib
 }
 
 /**
@@ -216,226 +184,6 @@ private class NegativeSummaryModelCsvInternal extends Unit {
   abstract predicate row(string row);
 }
 
-private class SourceModelCsvBase extends SourceModelCsv {
-  override predicate row(string row) {
-    row =
-      [
-        // org.springframework.security.web.savedrequest.SavedRequest
-        "org.springframework.security.web.savedrequest;SavedRequest;true;getRedirectUrl;;;ReturnValue;remote;manual",
-        "org.springframework.security.web.savedrequest;SavedRequest;true;getCookies;;;ReturnValue;remote;manual",
-        "org.springframework.security.web.savedrequest;SavedRequest;true;getHeaderValues;;;ReturnValue;remote;manual",
-        "org.springframework.security.web.savedrequest;SavedRequest;true;getHeaderNames;;;ReturnValue;remote;manual",
-        "org.springframework.security.web.savedrequest;SavedRequest;true;getParameterValues;;;ReturnValue;remote;manual",
-        "org.springframework.security.web.savedrequest;SavedRequest;true;getParameterMap;;;ReturnValue;remote;manual",
-        // ServletRequestGetParameterMethod
-        "javax.servlet;ServletRequest;false;getParameter;(String);;ReturnValue;remote;manual",
-        "javax.servlet;ServletRequest;false;getParameterValues;(String);;ReturnValue;remote;manual",
-        "javax.servlet.http;HttpServletRequest;false;getParameter;(String);;ReturnValue;remote;manual",
-        "javax.servlet.http;HttpServletRequest;false;getParameterValues;(String);;ReturnValue;remote;manual",
-        // ServletRequestGetParameterMapMethod
-        "javax.servlet;ServletRequest;false;getParameterMap;();;ReturnValue;remote;manual",
-        "javax.servlet.http;HttpServletRequest;false;getParameterMap;();;ReturnValue;remote;manual",
-        // ServletRequestGetParameterNamesMethod
-        "javax.servlet;ServletRequest;false;getParameterNames;();;ReturnValue;remote;manual",
-        "javax.servlet.http;HttpServletRequest;false;getParameterNames;();;ReturnValue;remote;manual",
-        // HttpServletRequestGetQueryStringMethod
-        "javax.servlet.http;HttpServletRequest;false;getQueryString;();;ReturnValue;remote;manual",
-        //
-        // URLConnectionGetInputStreamMethod
-        "java.net;URLConnection;false;getInputStream;();;ReturnValue;remote;manual",
-        // SocketGetInputStreamMethod
-        "java.net;Socket;false;getInputStream;();;ReturnValue;remote;manual",
-        // BeanValidationSource
-        "javax.validation;ConstraintValidator;true;isValid;;;Parameter[0];remote;manual",
-        // SpringMultipartRequestSource
-        "org.springframework.web.multipart;MultipartRequest;true;getFile;(String);;ReturnValue;remote;manual",
-        "org.springframework.web.multipart;MultipartRequest;true;getFileMap;();;ReturnValue;remote;manual",
-        "org.springframework.web.multipart;MultipartRequest;true;getFileNames;();;ReturnValue;remote;manual",
-        "org.springframework.web.multipart;MultipartRequest;true;getFiles;(String);;ReturnValue;remote;manual",
-        "org.springframework.web.multipart;MultipartRequest;true;getMultiFileMap;();;ReturnValue;remote;manual",
-        "org.springframework.web.multipart;MultipartRequest;true;getMultipartContentType;(String);;ReturnValue;remote;manual",
-        // SpringMultipartFileSource
-        "org.springframework.web.multipart;MultipartFile;true;getBytes;();;ReturnValue;remote;manual",
-        "org.springframework.web.multipart;MultipartFile;true;getContentType;();;ReturnValue;remote;manual",
-        "org.springframework.web.multipart;MultipartFile;true;getInputStream;();;ReturnValue;remote;manual",
-        "org.springframework.web.multipart;MultipartFile;true;getName;();;ReturnValue;remote;manual",
-        "org.springframework.web.multipart;MultipartFile;true;getOriginalFilename;();;ReturnValue;remote;manual",
-        "org.springframework.web.multipart;MultipartFile;true;getResource;();;ReturnValue;remote;manual",
-        // HttpServletRequest.get*
-        "javax.servlet.http;HttpServletRequest;false;getHeader;(String);;ReturnValue;remote;manual",
-        "javax.servlet.http;HttpServletRequest;false;getHeaders;(String);;ReturnValue;remote;manual",
-        "javax.servlet.http;HttpServletRequest;false;getHeaderNames;();;ReturnValue;remote;manual",
-        "javax.servlet.http;HttpServletRequest;false;getPathInfo;();;ReturnValue;remote;manual",
-        "javax.servlet.http;HttpServletRequest;false;getRequestURI;();;ReturnValue;remote;manual",
-        "javax.servlet.http;HttpServletRequest;false;getRequestURL;();;ReturnValue;remote;manual",
-        "javax.servlet.http;HttpServletRequest;false;getRemoteUser;();;ReturnValue;remote;manual",
-        // SpringWebRequestGetMethod
-        "org.springframework.web.context.request;WebRequest;false;getDescription;;;ReturnValue;remote;manual",
-        "org.springframework.web.context.request;WebRequest;false;getHeader;;;ReturnValue;remote;manual",
-        "org.springframework.web.context.request;WebRequest;false;getHeaderNames;;;ReturnValue;remote;manual",
-        "org.springframework.web.context.request;WebRequest;false;getHeaderValues;;;ReturnValue;remote;manual",
-        "org.springframework.web.context.request;WebRequest;false;getParameter;;;ReturnValue;remote;manual",
-        "org.springframework.web.context.request;WebRequest;false;getParameterMap;;;ReturnValue;remote;manual",
-        "org.springframework.web.context.request;WebRequest;false;getParameterNames;;;ReturnValue;remote;manual",
-        "org.springframework.web.context.request;WebRequest;false;getParameterValues;;;ReturnValue;remote;manual",
-        // TODO consider org.springframework.web.context.request.WebRequest.getRemoteUser
-        // ServletRequestGetBodyMethod
-        "javax.servlet;ServletRequest;false;getInputStream;();;ReturnValue;remote;manual",
-        "javax.servlet;ServletRequest;false;getReader;();;ReturnValue;remote;manual",
-        // CookieGet*
-        "javax.servlet.http;Cookie;false;getValue;();;ReturnValue;remote;manual",
-        "javax.servlet.http;Cookie;false;getName;();;ReturnValue;remote;manual",
-        "javax.servlet.http;Cookie;false;getComment;();;ReturnValue;remote;manual",
-        // ApacheHttp*
-        "org.apache.http;HttpMessage;false;getParams;();;ReturnValue;remote;manual",
-        "org.apache.http;HttpEntity;false;getContent;();;ReturnValue;remote;manual",
-        // In the setting of Android we assume that XML has been transmitted over
-        // the network, so may be tainted.
-        // XmlPullGetMethod
-        "org.xmlpull.v1;XmlPullParser;false;getName;();;ReturnValue;remote;manual",
-        "org.xmlpull.v1;XmlPullParser;false;getNamespace;();;ReturnValue;remote;manual",
-        "org.xmlpull.v1;XmlPullParser;false;getText;();;ReturnValue;remote;manual",
-        // XmlAttrSetGetMethod
-        "android.util;AttributeSet;false;getAttributeBooleanValue;;;ReturnValue;remote;manual",
-        "android.util;AttributeSet;false;getAttributeCount;;;ReturnValue;remote;manual",
-        "android.util;AttributeSet;false;getAttributeFloatValue;;;ReturnValue;remote;manual",
-        "android.util;AttributeSet;false;getAttributeIntValue;;;ReturnValue;remote;manual",
-        "android.util;AttributeSet;false;getAttributeListValue;;;ReturnValue;remote;manual",
-        "android.util;AttributeSet;false;getAttributeName;;;ReturnValue;remote;manual",
-        "android.util;AttributeSet;false;getAttributeNameResource;;;ReturnValue;remote;manual",
-        "android.util;AttributeSet;false;getAttributeNamespace;;;ReturnValue;remote;manual",
-        "android.util;AttributeSet;false;getAttributeResourceValue;;;ReturnValue;remote;manual",
-        "android.util;AttributeSet;false;getAttributeUnsignedIntValue;;;ReturnValue;remote;manual",
-        "android.util;AttributeSet;false;getAttributeValue;;;ReturnValue;remote;manual",
-        "android.util;AttributeSet;false;getClassAttribute;;;ReturnValue;remote;manual",
-        "android.util;AttributeSet;false;getIdAttribute;;;ReturnValue;remote;manual",
-        "android.util;AttributeSet;false;getIdAttributeResourceValue;;;ReturnValue;remote;manual",
-        "android.util;AttributeSet;false;getPositionDescription;;;ReturnValue;remote;manual",
-        "android.util;AttributeSet;false;getStyleAttribute;;;ReturnValue;remote;manual",
-        // The current URL in a browser may be untrusted or uncontrolled.
-        // WebViewGetUrlMethod
-        "android.webkit;WebView;false;getUrl;();;ReturnValue;remote;manual",
-        "android.webkit;WebView;false;getOriginalUrl;();;ReturnValue;remote;manual",
-        // SpringRestTemplateResponseEntityMethod
-        "org.springframework.web.client;RestTemplate;false;exchange;;;ReturnValue;remote;manual",
-        "org.springframework.web.client;RestTemplate;false;getForEntity;;;ReturnValue;remote;manual",
-        "org.springframework.web.client;RestTemplate;false;postForEntity;;;ReturnValue;remote;manual",
-        // WebSocketMessageParameterSource
-        "java.net.http;WebSocket$Listener;true;onText;(WebSocket,CharSequence,boolean);;Parameter[1];remote;manual",
-        // PlayRequestGetMethod
-        "play.mvc;Http$RequestHeader;false;queryString;;;ReturnValue;remote;manual",
-        "play.mvc;Http$RequestHeader;false;getQueryString;;;ReturnValue;remote;manual",
-        "play.mvc;Http$RequestHeader;false;header;;;ReturnValue;remote;manual",
-        "play.mvc;Http$RequestHeader;false;getHeader;;;ReturnValue;remote;manual"
-      ]
-  }
-}
-
-private class SinkModelCsvBase extends SinkModelCsv {
-  override predicate row(string row) {
-    row =
-      [
-        // Open URL
-        "java.net;URL;false;openConnection;;;Argument[-1];open-url;manual",
-        "java.net;URL;false;openStream;;;Argument[-1];open-url;manual",
-        "java.net.http;HttpRequest;false;newBuilder;;;Argument[0];open-url;manual",
-        "java.net.http;HttpRequest$Builder;false;uri;;;Argument[0];open-url;manual",
-        "java.net;URLClassLoader;false;URLClassLoader;(URL[]);;Argument[0];open-url;manual",
-        "java.net;URLClassLoader;false;URLClassLoader;(URL[],ClassLoader);;Argument[0];open-url;manual",
-        "java.net;URLClassLoader;false;URLClassLoader;(URL[],ClassLoader,URLStreamHandlerFactory);;Argument[0];open-url;manual",
-        "java.net;URLClassLoader;false;URLClassLoader;(String,URL[],ClassLoader);;Argument[1];open-url;manual",
-        "java.net;URLClassLoader;false;URLClassLoader;(String,URL[],ClassLoader,URLStreamHandlerFactory);;Argument[1];open-url;manual",
-        "java.net;URLClassLoader;false;newInstance;;;Argument[0];open-url;manual",
-        // Bean validation
-        "javax.validation;ConstraintValidatorContext;true;buildConstraintViolationWithTemplate;;;Argument[0];bean-validation;manual",
-        // Set hostname
-        "javax.net.ssl;HttpsURLConnection;true;setDefaultHostnameVerifier;;;Argument[0];set-hostname-verifier;manual",
-        "javax.net.ssl;HttpsURLConnection;true;setHostnameVerifier;;;Argument[0];set-hostname-verifier;manual"
-      ]
-  }
-}
-
-private class SummaryModelCsvBase extends SummaryModelCsv {
-  override predicate row(string row) {
-    row =
-      [
-        // qualifier to arg
-        "java.io;InputStream;true;read;(byte[]);;Argument[-1];Argument[0];taint;manual",
-        "java.io;InputStream;true;read;(byte[],int,int);;Argument[-1];Argument[0];taint;manual",
-        "java.io;InputStream;true;readNBytes;(byte[],int,int);;Argument[-1];Argument[0];taint;manual",
-        "java.io;InputStream;true;transferTo;(OutputStream);;Argument[-1];Argument[0];taint;manual",
-        "java.io;ByteArrayOutputStream;false;writeTo;;;Argument[-1];Argument[0];taint;manual",
-        "java.io;Reader;true;read;;;Argument[-1];Argument[0];taint;manual",
-        // qualifier to return
-        "java.io;ByteArrayOutputStream;false;toByteArray;;;Argument[-1];ReturnValue;taint;manual",
-        "java.io;ByteArrayOutputStream;false;toString;;;Argument[-1];ReturnValue;taint;manual",
-        "java.io;InputStream;true;readAllBytes;;;Argument[-1];ReturnValue;taint;manual",
-        "java.io;InputStream;true;readNBytes;(int);;Argument[-1];ReturnValue;taint;manual",
-        "java.util;StringTokenizer;false;nextElement;();;Argument[-1];ReturnValue;taint;manual",
-        "java.util;StringTokenizer;false;nextToken;;;Argument[-1];ReturnValue;taint;manual",
-        "javax.xml.transform.sax;SAXSource;false;getInputSource;;;Argument[-1];ReturnValue;taint;manual",
-        "javax.xml.transform.stream;StreamSource;false;getInputStream;;;Argument[-1];ReturnValue;taint;manual",
-        "java.nio;ByteBuffer;false;get;;;Argument[-1];ReturnValue;taint;manual",
-        "java.net;URI;false;toURL;;;Argument[-1];ReturnValue;taint;manual",
-        "java.net;URI;false;toString;;;Argument[-1];ReturnValue;taint;manual",
-        "java.net;URI;false;toAsciiString;;;Argument[-1];ReturnValue;taint;manual",
-        "java.nio;ByteBuffer;false;array;();;Argument[-1];ReturnValue;taint;manual",
-        "java.io;BufferedReader;true;readLine;;;Argument[-1];ReturnValue;taint;manual",
-        "java.io;Reader;true;read;();;Argument[-1];ReturnValue;taint;manual",
-        // arg to return
-        "java.nio;ByteBuffer;false;wrap;(byte[]);;Argument[0];ReturnValue;taint;manual",
-        "java.util;Base64$Encoder;false;encode;(byte[]);;Argument[0];ReturnValue;taint;manual",
-        "java.util;Base64$Encoder;false;encode;(ByteBuffer);;Argument[0];ReturnValue;taint;manual",
-        "java.util;Base64$Encoder;false;encodeToString;(byte[]);;Argument[0];ReturnValue;taint;manual",
-        "java.util;Base64$Encoder;false;wrap;(OutputStream);;Argument[0];ReturnValue;taint;manual",
-        "java.util;Base64$Decoder;false;decode;(byte[]);;Argument[0];ReturnValue;taint;manual",
-        "java.util;Base64$Decoder;false;decode;(ByteBuffer);;Argument[0];ReturnValue;taint;manual",
-        "java.util;Base64$Decoder;false;decode;(String);;Argument[0];ReturnValue;taint;manual",
-        "java.util;Base64$Decoder;false;wrap;(InputStream);;Argument[0];ReturnValue;taint;manual",
-        "cn.hutool.core.codec;Base64;true;decode;;;Argument[0];ReturnValue;taint;manual",
-        "org.apache.shiro.codec;Base64;false;decode;(String);;Argument[0];ReturnValue;taint;manual",
-        "org.apache.commons.codec;Encoder;true;encode;(Object);;Argument[0];ReturnValue;taint;manual",
-        "org.apache.commons.codec;Decoder;true;decode;(Object);;Argument[0];ReturnValue;taint;manual",
-        "org.apache.commons.codec;BinaryEncoder;true;encode;(byte[]);;Argument[0];ReturnValue;taint;manual",
-        "org.apache.commons.codec;BinaryDecoder;true;decode;(byte[]);;Argument[0];ReturnValue;taint;manual",
-        "org.apache.commons.codec;StringEncoder;true;encode;(String);;Argument[0];ReturnValue;taint;manual",
-        "org.apache.commons.codec;StringDecoder;true;decode;(String);;Argument[0];ReturnValue;taint;manual",
-        "java.net;URLDecoder;false;decode;;;Argument[0];ReturnValue;taint;manual",
-        "java.net;URI;false;create;;;Argument[0];ReturnValue;taint;manual",
-        "javax.xml.transform.sax;SAXSource;false;sourceToInputSource;;;Argument[0];ReturnValue;taint;manual",
-        // arg to arg
-        "java.lang;System;false;arraycopy;;;Argument[0];Argument[2];taint;manual",
-        // constructor flow
-        "java.net;URI;false;URI;(String);;Argument[0];Argument[-1];taint;manual",
-        "java.net;URL;false;URL;(String);;Argument[0];Argument[-1];taint;manual",
-        "javax.xml.transform.stream;StreamSource;false;StreamSource;;;Argument[0];Argument[-1];taint;manual",
-        "javax.xml.transform.sax;SAXSource;false;SAXSource;(InputSource);;Argument[0];Argument[-1];taint;manual",
-        "javax.xml.transform.sax;SAXSource;false;SAXSource;(XMLReader,InputSource);;Argument[1];Argument[-1];taint;manual",
-        "org.xml.sax;InputSource;false;InputSource;;;Argument[0];Argument[-1];taint;manual",
-        "javax.servlet.http;Cookie;false;Cookie;;;Argument[0];Argument[-1];taint;manual",
-        "javax.servlet.http;Cookie;false;Cookie;;;Argument[1];Argument[-1];taint;manual",
-        "java.util.zip;ZipInputStream;false;ZipInputStream;;;Argument[0];Argument[-1];taint;manual",
-        "java.util.zip;GZIPInputStream;false;GZIPInputStream;;;Argument[0];Argument[-1];taint;manual",
-        "java.util;StringTokenizer;false;StringTokenizer;;;Argument[0];Argument[-1];taint;manual",
-        "java.beans;XMLDecoder;false;XMLDecoder;;;Argument[0];Argument[-1];taint;manual",
-        "com.esotericsoftware.kryo.io;Input;false;Input;;;Argument[0];Argument[-1];taint;manual",
-        "com.esotericsoftware.kryo5.io;Input;false;Input;;;Argument[0];Argument[-1];taint;manual",
-        "java.io;BufferedInputStream;false;BufferedInputStream;;;Argument[0];Argument[-1];taint;manual",
-        "java.io;DataInputStream;false;DataInputStream;;;Argument[0];Argument[-1];taint;manual",
-        "java.io;ByteArrayInputStream;false;ByteArrayInputStream;;;Argument[0];Argument[-1];taint;manual",
-        "java.io;ObjectInputStream;false;ObjectInputStream;;;Argument[0];Argument[-1];taint;manual",
-        "java.io;StringReader;false;StringReader;;;Argument[0];Argument[-1];taint;manual",
-        "java.io;CharArrayReader;false;CharArrayReader;;;Argument[0];Argument[-1];taint;manual",
-        "java.io;BufferedReader;false;BufferedReader;;;Argument[0];Argument[-1];taint;manual",
-        "java.io;InputStreamReader;false;InputStreamReader;;;Argument[0];Argument[-1];taint;manual",
-        "java.io;OutputStream;true;write;(byte[]);;Argument[0];Argument[-1];taint;manual",
-        "java.io;OutputStream;true;write;(byte[],int,int);;Argument[0];Argument[-1];taint;manual",
-        "java.io;OutputStream;true;write;(int);;Argument[0];Argument[-1];taint;manual",
-        "java.io;FilterOutputStream;true;FilterOutputStream;(OutputStream);;Argument[0];Argument[-1];taint;manual"
-      ]
-  }
-}
-
 private predicate sourceModelInternal(string row) { any(SourceModelCsvInternal s).row(row) }
 
 private predicate summaryModelInternal(string row) { any(SummaryModelCsvInternal s).row(row) }
diff --git a/java/ql/lib/semmle/code/java/dataflow/internal/ContainerFlow.qll b/java/ql/lib/semmle/code/java/dataflow/internal/ContainerFlow.qll
index aebe509816f..19f11842d14 100644
--- a/java/ql/lib/semmle/code/java/dataflow/internal/ContainerFlow.qll
+++ b/java/ql/lib/semmle/code/java/dataflow/internal/ContainerFlow.qll
@@ -91,355 +91,6 @@ class ContainerType extends RefType {
   }
 }
 
-private class ContainerFlowSummaries extends SummaryModelCsv {
-  override predicate row(string row) {
-    row =
-      [
-        "java.lang;Object;true;clone;;;Argument[-1].MapKey;ReturnValue.MapKey;value;manual",
-        "java.lang;Object;true;clone;;;Argument[-1].MapValue;ReturnValue.MapValue;value;manual",
-        "java.lang;Object;true;clone;;;Argument[-1].Element;ReturnValue.Element;value;manual",
-        "java.util;Map$Entry;true;getKey;;;Argument[-1].MapKey;ReturnValue;value;manual",
-        "java.util;Map$Entry;true;getValue;;;Argument[-1].MapValue;ReturnValue;value;manual",
-        "java.util;Map$Entry;true;setValue;;;Argument[-1].MapValue;ReturnValue;value;manual",
-        "java.util;Map$Entry;true;setValue;;;Argument[0];Argument[-1].MapValue;value;manual",
-        "java.lang;Iterable;true;iterator;();;Argument[-1].Element;ReturnValue.Element;value;manual",
-        "java.lang;Iterable;true;spliterator;();;Argument[-1].Element;ReturnValue.Element;value;manual",
-        "java.lang;Iterable;true;forEach;(Consumer);;Argument[-1].Element;Argument[0].Parameter[0];value;manual",
-        "java.util;Iterator;true;next;;;Argument[-1].Element;ReturnValue;value;manual",
-        "java.util;Iterator;true;forEachRemaining;(Consumer);;Argument[-1].Element;Argument[0].Parameter[0];value;manual",
-        "java.util;ListIterator;true;previous;;;Argument[-1].Element;ReturnValue;value;manual",
-        "java.util;ListIterator;true;add;(Object);;Argument[0];Argument[-1].Element;value;manual",
-        "java.util;ListIterator;true;set;(Object);;Argument[0];Argument[-1].Element;value;manual",
-        "java.util;Enumeration;true;asIterator;;;Argument[-1].Element;ReturnValue.Element;value;manual",
-        "java.util;Enumeration;true;nextElement;;;Argument[-1].Element;ReturnValue;value;manual",
-        "java.util;Map;true;computeIfAbsent;;;Argument[-1].MapValue;ReturnValue;value;manual",
-        "java.util;Map;true;computeIfAbsent;;;Argument[1].ReturnValue;ReturnValue;value;manual",
-        "java.util;Map;true;computeIfAbsent;;;Argument[1].ReturnValue;Argument[-1].MapValue;value;manual",
-        "java.util;Map;true;entrySet;;;Argument[-1].MapValue;ReturnValue.Element.MapValue;value;manual",
-        "java.util;Map;true;entrySet;;;Argument[-1].MapKey;ReturnValue.Element.MapKey;value;manual",
-        "java.util;Map;true;get;;;Argument[-1].MapValue;ReturnValue;value;manual",
-        "java.util;Map;true;getOrDefault;;;Argument[-1].MapValue;ReturnValue;value;manual",
-        "java.util;Map;true;getOrDefault;;;Argument[1];ReturnValue;value;manual",
-        "java.util;Map;true;put;(Object,Object);;Argument[-1].MapValue;ReturnValue;value;manual",
-        "java.util;Map;true;put;(Object,Object);;Argument[0];Argument[-1].MapKey;value;manual",
-        "java.util;Map;true;put;(Object,Object);;Argument[1];Argument[-1].MapValue;value;manual",
-        "java.util;Map;true;putIfAbsent;;;Argument[-1].MapValue;ReturnValue;value;manual",
-        "java.util;Map;true;putIfAbsent;;;Argument[0];Argument[-1].MapKey;value;manual",
-        "java.util;Map;true;putIfAbsent;;;Argument[1];Argument[-1].MapValue;value;manual",
-        "java.util;Map;true;remove;(Object);;Argument[-1].MapValue;ReturnValue;value;manual",
-        "java.util;Map;true;replace;(Object,Object);;Argument[-1].MapValue;ReturnValue;value;manual",
-        "java.util;Map;true;replace;(Object,Object);;Argument[0];Argument[-1].MapKey;value;manual",
-        "java.util;Map;true;replace;(Object,Object);;Argument[1];Argument[-1].MapValue;value;manual",
-        "java.util;Map;true;replace;(Object,Object,Object);;Argument[0];Argument[-1].MapKey;value;manual",
-        "java.util;Map;true;replace;(Object,Object,Object);;Argument[2];Argument[-1].MapValue;value;manual",
-        "java.util;Map;true;keySet;();;Argument[-1].MapKey;ReturnValue.Element;value;manual",
-        "java.util;Map;true;values;();;Argument[-1].MapValue;ReturnValue.Element;value;manual",
-        "java.util;Map;true;merge;(Object,Object,BiFunction);;Argument[1];Argument[-1].MapValue;value;manual",
-        "java.util;Map;true;putAll;(Map);;Argument[0].MapKey;Argument[-1].MapKey;value;manual",
-        "java.util;Map;true;putAll;(Map);;Argument[0].MapValue;Argument[-1].MapValue;value;manual",
-        "java.util;Map;true;forEach;(BiConsumer);;Argument[-1].MapKey;Argument[0].Parameter[0];value;manual",
-        "java.util;Map;true;forEach;(BiConsumer);;Argument[-1].MapValue;Argument[0].Parameter[1];value;manual",
-        "java.util;Collection;true;parallelStream;();;Argument[-1].Element;ReturnValue.Element;value;manual",
-        "java.util;Collection;true;stream;();;Argument[-1].Element;ReturnValue.Element;value;manual",
-        "java.util;Collection;true;toArray;;;Argument[-1].Element;ReturnValue.ArrayElement;value;manual",
-        "java.util;Collection;true;toArray;;;Argument[-1].Element;Argument[0].ArrayElement;value;manual",
-        "java.util;Collection;true;add;;;Argument[0];Argument[-1].Element;value;manual",
-        "java.util;Collection;true;addAll;;;Argument[0].Element;Argument[-1].Element;value;manual",
-        "java.util;List;true;get;(int);;Argument[-1].Element;ReturnValue;value;manual",
-        "java.util;List;true;listIterator;;;Argument[-1].Element;ReturnValue.Element;value;manual",
-        "java.util;List;true;remove;(int);;Argument[-1].Element;ReturnValue;value;manual",
-        "java.util;List;true;set;(int,Object);;Argument[-1].Element;ReturnValue;value;manual",
-        "java.util;List;true;set;(int,Object);;Argument[1];Argument[-1].Element;value;manual",
-        "java.util;List;true;subList;;;Argument[-1].Element;ReturnValue.Element;value;manual",
-        "java.util;List;true;add;(int,Object);;Argument[1];Argument[-1].Element;value;manual",
-        "java.util;List;true;addAll;(int,Collection);;Argument[1].Element;Argument[-1].Element;value;manual",
-        "java.util;Vector;true;elementAt;(int);;Argument[-1].Element;ReturnValue;value;manual",
-        "java.util;Vector;true;elements;();;Argument[-1].Element;ReturnValue.Element;value;manual",
-        "java.util;Vector;true;firstElement;();;Argument[-1].Element;ReturnValue;value;manual",
-        "java.util;Vector;true;lastElement;();;Argument[-1].Element;ReturnValue;value;manual",
-        "java.util;Vector;true;addElement;(Object);;Argument[0];Argument[-1].Element;value;manual",
-        "java.util;Vector;true;insertElementAt;(Object,int);;Argument[0];Argument[-1].Element;value;manual",
-        "java.util;Vector;true;setElementAt;(Object,int);;Argument[0];Argument[-1].Element;value;manual",
-        "java.util;Vector;true;copyInto;(Object[]);;Argument[-1].Element;Argument[0].ArrayElement;value;manual",
-        "java.util;Stack;true;peek;();;Argument[-1].Element;ReturnValue;value;manual",
-        "java.util;Stack;true;pop;();;Argument[-1].Element;ReturnValue;value;manual",
-        "java.util;Stack;true;push;(Object);;Argument[0];Argument[-1].Element;value;manual",
-        "java.util;Queue;true;element;();;Argument[-1].Element;ReturnValue;value;manual",
-        "java.util;Queue;true;peek;();;Argument[-1].Element;ReturnValue;value;manual",
-        "java.util;Queue;true;poll;();;Argument[-1].Element;ReturnValue;value;manual",
-        "java.util;Queue;true;remove;();;Argument[-1].Element;ReturnValue;value;manual",
-        "java.util;Queue;true;offer;(Object);;Argument[0];Argument[-1].Element;value;manual",
-        "java.util;Deque;true;descendingIterator;();;Argument[-1].Element;ReturnValue.Element;value;manual",
-        "java.util;Deque;true;getFirst;();;Argument[-1].Element;ReturnValue;value;manual",
-        "java.util;Deque;true;getLast;();;Argument[-1].Element;ReturnValue;value;manual",
-        "java.util;Deque;true;peekFirst;();;Argument[-1].Element;ReturnValue;value;manual",
-        "java.util;Deque;true;peekLast;();;Argument[-1].Element;ReturnValue;value;manual",
-        "java.util;Deque;true;pollFirst;();;Argument[-1].Element;ReturnValue;value;manual",
-        "java.util;Deque;true;pollLast;();;Argument[-1].Element;ReturnValue;value;manual",
-        "java.util;Deque;true;pop;();;Argument[-1].Element;ReturnValue;value;manual",
-        "java.util;Deque;true;removeFirst;();;Argument[-1].Element;ReturnValue;value;manual",
-        "java.util;Deque;true;removeLast;();;Argument[-1].Element;ReturnValue;value;manual",
-        "java.util;Deque;true;push;(Object);;Argument[0];Argument[-1].Element;value;manual",
-        "java.util;Deque;true;offerLast;(Object);;Argument[0];Argument[-1].Element;value;manual",
-        "java.util;Deque;true;offerFirst;(Object);;Argument[0];Argument[-1].Element;value;manual",
-        "java.util;Deque;true;addLast;(Object);;Argument[0];Argument[-1].Element;value;manual",
-        "java.util;Deque;true;addFirst;(Object);;Argument[0];Argument[-1].Element;value;manual",
-        "java.util.concurrent;BlockingDeque;true;pollFirst;(long,TimeUnit);;Argument[-1].Element;ReturnValue;value;manual",
-        "java.util.concurrent;BlockingDeque;true;pollLast;(long,TimeUnit);;Argument[-1].Element;ReturnValue;value;manual",
-        "java.util.concurrent;BlockingDeque;true;takeFirst;();;Argument[-1].Element;ReturnValue;value;manual",
-        "java.util.concurrent;BlockingDeque;true;takeLast;();;Argument[-1].Element;ReturnValue;value;manual",
-        "java.util.concurrent;BlockingQueue;true;poll;(long,TimeUnit);;Argument[-1].Element;ReturnValue;value;manual",
-        "java.util.concurrent;BlockingQueue;true;take;();;Argument[-1].Element;ReturnValue;value;manual",
-        "java.util.concurrent;BlockingQueue;true;offer;(Object,long,TimeUnit);;Argument[0];Argument[-1].Element;value;manual",
-        "java.util.concurrent;BlockingQueue;true;put;(Object);;Argument[0];Argument[-1].Element;value;manual",
-        "java.util.concurrent;BlockingDeque;true;offerLast;(Object,long,TimeUnit);;Argument[0];Argument[-1].Element;value;manual",
-        "java.util.concurrent;BlockingDeque;true;offerFirst;(Object,long,TimeUnit);;Argument[0];Argument[-1].Element;value;manual",
-        "java.util.concurrent;BlockingDeque;true;putLast;(Object);;Argument[0];Argument[-1].Element;value;manual",
-        "java.util.concurrent;BlockingDeque;true;putFirst;(Object);;Argument[0];Argument[-1].Element;value;manual",
-        "java.util.concurrent;BlockingQueue;true;drainTo;(Collection,int);;Argument[-1].Element;Argument[0].Element;value;manual",
-        "java.util.concurrent;BlockingQueue;true;drainTo;(Collection);;Argument[-1].Element;Argument[0].Element;value;manual",
-        "java.util.concurrent;ConcurrentHashMap;true;elements;();;Argument[-1].MapValue;ReturnValue.Element;value;manual",
-        "java.util;Dictionary;true;elements;();;Argument[-1].MapValue;ReturnValue.Element;value;manual",
-        "java.util;Dictionary;true;get;(Object);;Argument[-1].MapValue;ReturnValue;value;manual",
-        "java.util;Dictionary;true;keys;();;Argument[-1].MapKey;ReturnValue.Element;value;manual",
-        "java.util;Dictionary;true;put;(Object,Object);;Argument[-1].MapValue;ReturnValue;value;manual",
-        "java.util;Dictionary;true;put;(Object,Object);;Argument[0];Argument[-1].MapKey;value;manual",
-        "java.util;Dictionary;true;put;(Object,Object);;Argument[1];Argument[-1].MapValue;value;manual",
-        "java.util;Dictionary;true;remove;(Object);;Argument[-1].MapValue;ReturnValue;value;manual",
-        "java.util;NavigableMap;true;ceilingEntry;(Object);;Argument[-1].MapKey;ReturnValue.MapKey;value;manual",
-        "java.util;NavigableMap;true;ceilingEntry;(Object);;Argument[-1].MapValue;ReturnValue.MapValue;value;manual",
-        "java.util;NavigableMap;true;descendingMap;();;Argument[-1].MapKey;ReturnValue.MapKey;value;manual",
-        "java.util;NavigableMap;true;descendingMap;();;Argument[-1].MapValue;ReturnValue.MapValue;value;manual",
-        "java.util;NavigableMap;true;firstEntry;();;Argument[-1].MapKey;ReturnValue.MapKey;value;manual",
-        "java.util;NavigableMap;true;firstEntry;();;Argument[-1].MapValue;ReturnValue.MapValue;value;manual",
-        "java.util;NavigableMap;true;floorEntry;(Object);;Argument[-1].MapKey;ReturnValue.MapKey;value;manual",
-        "java.util;NavigableMap;true;floorEntry;(Object);;Argument[-1].MapValue;ReturnValue.MapValue;value;manual",
-        "java.util;NavigableMap;true;headMap;(Object,boolean);;Argument[-1].MapKey;ReturnValue.MapKey;value;manual",
-        "java.util;NavigableMap;true;headMap;(Object,boolean);;Argument[-1].MapValue;ReturnValue.MapValue;value;manual",
-        "java.util;NavigableMap;true;higherEntry;(Object);;Argument[-1].MapKey;ReturnValue.MapKey;value;manual",
-        "java.util;NavigableMap;true;higherEntry;(Object);;Argument[-1].MapValue;ReturnValue.MapValue;value;manual",
-        "java.util;NavigableMap;true;lastEntry;();;Argument[-1].MapKey;ReturnValue.MapKey;value;manual",
-        "java.util;NavigableMap;true;lastEntry;();;Argument[-1].MapValue;ReturnValue.MapValue;value;manual",
-        "java.util;NavigableMap;true;lowerEntry;(Object);;Argument[-1].MapKey;ReturnValue.MapKey;value;manual",
-        "java.util;NavigableMap;true;lowerEntry;(Object);;Argument[-1].MapValue;ReturnValue.MapValue;value;manual",
-        "java.util;NavigableMap;true;pollFirstEntry;();;Argument[-1].MapKey;ReturnValue.MapKey;value;manual",
-        "java.util;NavigableMap;true;pollFirstEntry;();;Argument[-1].MapValue;ReturnValue.MapValue;value;manual",
-        "java.util;NavigableMap;true;pollLastEntry;();;Argument[-1].MapKey;ReturnValue.MapKey;value;manual",
-        "java.util;NavigableMap;true;pollLastEntry;();;Argument[-1].MapValue;ReturnValue.MapValue;value;manual",
-        "java.util;NavigableMap;true;subMap;(Object,boolean,Object,boolean);;Argument[-1].MapKey;ReturnValue.MapKey;value;manual",
-        "java.util;NavigableMap;true;subMap;(Object,boolean,Object,boolean);;Argument[-1].MapValue;ReturnValue.MapValue;value;manual",
-        "java.util;NavigableMap;true;tailMap;(Object,boolean);;Argument[-1].MapKey;ReturnValue.MapKey;value;manual",
-        "java.util;NavigableMap;true;tailMap;(Object,boolean);;Argument[-1].MapValue;ReturnValue.MapValue;value;manual",
-        "java.util;NavigableSet;true;ceiling;(Object);;Argument[-1].Element;ReturnValue;value;manual",
-        "java.util;NavigableSet;true;descendingIterator;();;Argument[-1].Element;ReturnValue.Element;value;manual",
-        "java.util;NavigableSet;true;descendingSet;();;Argument[-1].Element;ReturnValue.Element;value;manual",
-        "java.util;NavigableSet;true;floor;(Object);;Argument[-1].Element;ReturnValue;value;manual",
-        "java.util;NavigableSet;true;headSet;(Object,boolean);;Argument[-1].Element;ReturnValue.Element;value;manual",
-        "java.util;NavigableSet;true;higher;(Object);;Argument[-1].Element;ReturnValue;value;manual",
-        "java.util;NavigableSet;true;lower;(Object);;Argument[-1].Element;ReturnValue;value;manual",
-        "java.util;NavigableSet;true;pollFirst;();;Argument[-1].Element;ReturnValue;value;manual",
-        "java.util;NavigableSet;true;pollLast;();;Argument[-1].Element;ReturnValue;value;manual",
-        "java.util;NavigableSet;true;subSet;(Object,boolean,Object,boolean);;Argument[-1].Element;ReturnValue.Element;value;manual",
-        "java.util;NavigableSet;true;tailSet;(Object,boolean);;Argument[-1].Element;ReturnValue.Element;value;manual",
-        "java.util;Properties;true;getProperty;(String);;Argument[-1].MapValue;ReturnValue;value;manual",
-        "java.util;Properties;true;getProperty;(String,String);;Argument[-1].MapValue;ReturnValue;value;manual",
-        "java.util;Properties;true;getProperty;(String,String);;Argument[1];ReturnValue;value;manual",
-        "java.util;Properties;true;setProperty;(String,String);;Argument[-1].MapValue;ReturnValue;value;manual",
-        "java.util;Properties;true;setProperty;(String,String);;Argument[0];Argument[-1].MapKey;value;manual",
-        "java.util;Properties;true;setProperty;(String,String);;Argument[1];Argument[-1].MapValue;value;manual",
-        "java.util;Scanner;true;Scanner;;;Argument[0];Argument[-1];taint;manual",
-        "java.util;Scanner;true;findInLine;;;Argument[-1];ReturnValue;taint;manual",
-        "java.util;Scanner;true;findWithinHorizon;;;Argument[-1];ReturnValue;taint;manual",
-        "java.util;Scanner;true;next;;;Argument[-1];ReturnValue;taint;manual",
-        "java.util;Scanner;true;nextBigDecimal;;;Argument[-1];ReturnValue;taint;manual",
-        "java.util;Scanner;true;nextBigInteger;;;Argument[-1];ReturnValue;taint;manual",
-        "java.util;Scanner;true;nextBoolean;;;Argument[-1];ReturnValue;taint;manual",
-        "java.util;Scanner;true;nextByte;;;Argument[-1];ReturnValue;taint;manual",
-        "java.util;Scanner;true;nextDouble;;;Argument[-1];ReturnValue;taint;manual",
-        "java.util;Scanner;true;nextFloat;;;Argument[-1];ReturnValue;taint;manual",
-        "java.util;Scanner;true;nextInt;;;Argument[-1];ReturnValue;taint;manual",
-        "java.util;Scanner;true;nextLine;;;Argument[-1];ReturnValue;taint;manual",
-        "java.util;Scanner;true;nextLong;;;Argument[-1];ReturnValue;taint;manual",
-        "java.util;Scanner;true;nextShort;;;Argument[-1];ReturnValue;taint;manual",
-        "java.util;Scanner;true;reset;;;Argument[-1];ReturnValue;value;manual",
-        "java.util;Scanner;true;skip;;;Argument[-1];ReturnValue;value;manual",
-        "java.util;Scanner;true;useDelimiter;;;Argument[-1];ReturnValue;value;manual",
-        "java.util;Scanner;true;useLocale;;;Argument[-1];ReturnValue;value;manual",
-        "java.util;Scanner;true;useRadix;;;Argument[-1];ReturnValue;value;manual",
-        "java.util;SortedMap;true;headMap;(Object);;Argument[-1].MapKey;ReturnValue.MapKey;value;manual",
-        "java.util;SortedMap;true;headMap;(Object);;Argument[-1].MapValue;ReturnValue.MapValue;value;manual",
-        "java.util;SortedMap;true;subMap;(Object,Object);;Argument[-1].MapKey;ReturnValue.MapKey;value;manual",
-        "java.util;SortedMap;true;subMap;(Object,Object);;Argument[-1].MapValue;ReturnValue.MapValue;value;manual",
-        "java.util;SortedMap;true;tailMap;(Object);;Argument[-1].MapKey;ReturnValue.MapKey;value;manual",
-        "java.util;SortedMap;true;tailMap;(Object);;Argument[-1].MapValue;ReturnValue.MapValue;value;manual",
-        "java.util;SortedSet;true;first;();;Argument[-1].Element;ReturnValue;value;manual",
-        "java.util;SortedSet;true;headSet;(Object);;Argument[-1].Element;ReturnValue.Element;value;manual",
-        "java.util;SortedSet;true;last;();;Argument[-1].Element;ReturnValue;value;manual",
-        "java.util;SortedSet;true;subSet;(Object,Object);;Argument[-1].Element;ReturnValue.Element;value;manual",
-        "java.util;SortedSet;true;tailSet;(Object);;Argument[-1].Element;ReturnValue.Element;value;manual",
-        "java.util.concurrent;TransferQueue;true;tryTransfer;(Object,long,TimeUnit);;Argument[0];Argument[-1].Element;value;manual",
-        "java.util.concurrent;TransferQueue;true;transfer;(Object);;Argument[0];Argument[-1].Element;value;manual",
-        "java.util.concurrent;TransferQueue;true;tryTransfer;(Object);;Argument[0];Argument[-1].Element;value;manual",
-        "java.util;List;false;copyOf;(Collection);;Argument[0].Element;ReturnValue.Element;value;manual",
-        "java.util;List;false;of;(Object[]);;Argument[0].ArrayElement;ReturnValue.Element;value;manual",
-        "java.util;List;false;of;(Object);;Argument[0];ReturnValue.Element;value;manual",
-        "java.util;List;false;of;(Object,Object);;Argument[0..1];ReturnValue.Element;value;manual",
-        "java.util;List;false;of;(Object,Object,Object);;Argument[0..2];ReturnValue.Element;value;manual",
-        "java.util;List;false;of;(Object,Object,Object,Object);;Argument[0..3];ReturnValue.Element;value;manual",
-        "java.util;List;false;of;(Object,Object,Object,Object,Object);;Argument[0..4];ReturnValue.Element;value;manual",
-        "java.util;List;false;of;(Object,Object,Object,Object,Object,Object);;Argument[0..5];ReturnValue.Element;value;manual",
-        "java.util;List;false;of;(Object,Object,Object,Object,Object,Object,Object);;Argument[0..6];ReturnValue.Element;value;manual",
-        "java.util;List;false;of;(Object,Object,Object,Object,Object,Object,Object,Object);;Argument[0..7];ReturnValue.Element;value;manual",
-        "java.util;List;false;of;(Object,Object,Object,Object,Object,Object,Object,Object,Object);;Argument[0..8];ReturnValue.Element;value;manual",
-        "java.util;List;false;of;(Object,Object,Object,Object,Object,Object,Object,Object,Object,Object);;Argument[0..9];ReturnValue.Element;value;manual",
-        "java.util;Map;false;copyOf;(Map);;Argument[0].MapKey;ReturnValue.MapKey;value;manual",
-        "java.util;Map;false;copyOf;(Map);;Argument[0].MapValue;ReturnValue.MapValue;value;manual",
-        "java.util;Map;false;entry;(Object,Object);;Argument[0];ReturnValue.MapKey;value;manual",
-        "java.util;Map;false;entry;(Object,Object);;Argument[1];ReturnValue.MapValue;value;manual",
-        "java.util;Map;false;of;;;Argument[0];ReturnValue.MapKey;value;manual",
-        "java.util;Map;false;of;;;Argument[1];ReturnValue.MapValue;value;manual",
-        "java.util;Map;false;of;;;Argument[2];ReturnValue.MapKey;value;manual",
-        "java.util;Map;false;of;;;Argument[3];ReturnValue.MapValue;value;manual",
-        "java.util;Map;false;of;;;Argument[4];ReturnValue.MapKey;value;manual",
-        "java.util;Map;false;of;;;Argument[5];ReturnValue.MapValue;value;manual",
-        "java.util;Map;false;of;;;Argument[6];ReturnValue.MapKey;value;manual",
-        "java.util;Map;false;of;;;Argument[7];ReturnValue.MapValue;value;manual",
-        "java.util;Map;false;of;;;Argument[8];ReturnValue.MapKey;value;manual",
-        "java.util;Map;false;of;;;Argument[9];ReturnValue.MapValue;value;manual",
-        "java.util;Map;false;of;;;Argument[10];ReturnValue.MapKey;value;manual",
-        "java.util;Map;false;of;;;Argument[11];ReturnValue.MapValue;value;manual",
-        "java.util;Map;false;of;;;Argument[12];ReturnValue.MapKey;value;manual",
-        "java.util;Map;false;of;;;Argument[13];ReturnValue.MapValue;value;manual",
-        "java.util;Map;false;of;;;Argument[14];ReturnValue.MapKey;value;manual",
-        "java.util;Map;false;of;;;Argument[15];ReturnValue.MapValue;value;manual",
-        "java.util;Map;false;of;;;Argument[16];ReturnValue.MapKey;value;manual",
-        "java.util;Map;false;of;;;Argument[17];ReturnValue.MapValue;value;manual",
-        "java.util;Map;false;of;;;Argument[18];ReturnValue.MapKey;value;manual",
-        "java.util;Map;false;of;;;Argument[19];ReturnValue.MapValue;value;manual",
-        "java.util;Map;false;ofEntries;;;Argument[0].ArrayElement.MapKey;ReturnValue.MapKey;value;manual",
-        "java.util;Map;false;ofEntries;;;Argument[0].ArrayElement.MapValue;ReturnValue.MapValue;value;manual",
-        "java.util;Set;false;copyOf;(Collection);;Argument[0].Element;ReturnValue.Element;value;manual",
-        "java.util;Set;false;of;(Object[]);;Argument[0].ArrayElement;ReturnValue.Element;value;manual",
-        "java.util;Set;false;of;(Object);;Argument[0];ReturnValue.Element;value;manual",
-        "java.util;Set;false;of;(Object,Object);;Argument[0..1];ReturnValue.Element;value;manual",
-        "java.util;Set;false;of;(Object,Object,Object);;Argument[0..2];ReturnValue.Element;value;manual",
-        "java.util;Set;false;of;(Object,Object,Object,Object);;Argument[0..3];ReturnValue.Element;value;manual",
-        "java.util;Set;false;of;(Object,Object,Object,Object,Object);;Argument[0..4];ReturnValue.Element;value;manual",
-        "java.util;Set;false;of;(Object,Object,Object,Object,Object,Object);;Argument[0..5];ReturnValue.Element;value;manual",
-        "java.util;Set;false;of;(Object,Object,Object,Object,Object,Object,Object);;Argument[0..6];ReturnValue.Element;value;manual",
-        "java.util;Set;false;of;(Object,Object,Object,Object,Object,Object,Object,Object);;Argument[0..7];ReturnValue.Element;value;manual",
-        "java.util;Set;false;of;(Object,Object,Object,Object,Object,Object,Object,Object,Object);;Argument[0..8];ReturnValue.Element;value;manual",
-        "java.util;Set;false;of;(Object,Object,Object,Object,Object,Object,Object,Object,Object,Object);;Argument[0..9];ReturnValue.Element;value;manual",
-        "java.util;Arrays;false;stream;;;Argument[0].ArrayElement;ReturnValue.Element;value;manual",
-        "java.util;Arrays;false;spliterator;;;Argument[0].ArrayElement;ReturnValue.Element;value;manual",
-        "java.util;Arrays;false;copyOfRange;;;Argument[0].ArrayElement;ReturnValue.ArrayElement;value;manual",
-        "java.util;Arrays;false;copyOf;;;Argument[0].ArrayElement;ReturnValue.ArrayElement;value;manual",
-        "java.util;Collections;false;list;(Enumeration);;Argument[0].Element;ReturnValue.Element;value;manual",
-        "java.util;Collections;false;enumeration;(Collection);;Argument[0].Element;ReturnValue.Element;value;manual",
-        "java.util;Collections;false;nCopies;(int,Object);;Argument[1];ReturnValue.Element;value;manual",
-        "java.util;Collections;false;singletonMap;(Object,Object);;Argument[0];ReturnValue.MapKey;value;manual",
-        "java.util;Collections;false;singletonMap;(Object,Object);;Argument[1];ReturnValue.MapValue;value;manual",
-        "java.util;Collections;false;singletonList;(Object);;Argument[0];ReturnValue.Element;value;manual",
-        "java.util;Collections;false;singleton;(Object);;Argument[0];ReturnValue.Element;value;manual",
-        "java.util;Collections;false;checkedNavigableMap;(NavigableMap,Class,Class);;Argument[0].MapKey;ReturnValue.MapKey;value;manual",
-        "java.util;Collections;false;checkedNavigableMap;(NavigableMap,Class,Class);;Argument[0].MapValue;ReturnValue.MapValue;value;manual",
-        "java.util;Collections;false;checkedSortedMap;(SortedMap,Class,Class);;Argument[0].MapKey;ReturnValue.MapKey;value;manual",
-        "java.util;Collections;false;checkedSortedMap;(SortedMap,Class,Class);;Argument[0].MapValue;ReturnValue.MapValue;value;manual",
-        "java.util;Collections;false;checkedMap;(Map,Class,Class);;Argument[0].MapKey;ReturnValue.MapKey;value;manual",
-        "java.util;Collections;false;checkedMap;(Map,Class,Class);;Argument[0].MapValue;ReturnValue.MapValue;value;manual",
-        "java.util;Collections;false;checkedList;(List,Class);;Argument[0].Element;ReturnValue.Element;value;manual",
-        "java.util;Collections;false;checkedNavigableSet;(NavigableSet,Class);;Argument[0].Element;ReturnValue.Element;value;manual",
-        "java.util;Collections;false;checkedSortedSet;(SortedSet,Class);;Argument[0].Element;ReturnValue.Element;value;manual",
-        "java.util;Collections;false;checkedSet;(Set,Class);;Argument[0].Element;ReturnValue.Element;value;manual",
-        "java.util;Collections;false;checkedCollection;(Collection,Class);;Argument[0].Element;ReturnValue.Element;value;manual",
-        "java.util;Collections;false;synchronizedNavigableMap;(NavigableMap);;Argument[0].MapKey;ReturnValue.MapKey;value;manual",
-        "java.util;Collections;false;synchronizedNavigableMap;(NavigableMap);;Argument[0].MapValue;ReturnValue.MapValue;value;manual",
-        "java.util;Collections;false;synchronizedSortedMap;(SortedMap);;Argument[0].MapKey;ReturnValue.MapKey;value;manual",
-        "java.util;Collections;false;synchronizedSortedMap;(SortedMap);;Argument[0].MapValue;ReturnValue.MapValue;value;manual",
-        "java.util;Collections;false;synchronizedMap;(Map);;Argument[0].MapKey;ReturnValue.MapKey;value;manual",
-        "java.util;Collections;false;synchronizedMap;(Map);;Argument[0].MapValue;ReturnValue.MapValue;value;manual",
-        "java.util;Collections;false;synchronizedList;(List);;Argument[0].Element;ReturnValue.Element;value;manual",
-        "java.util;Collections;false;synchronizedNavigableSet;(NavigableSet);;Argument[0].Element;ReturnValue.Element;value;manual",
-        "java.util;Collections;false;synchronizedSortedSet;(SortedSet);;Argument[0].Element;ReturnValue.Element;value;manual",
-        "java.util;Collections;false;synchronizedSet;(Set);;Argument[0].Element;ReturnValue.Element;value;manual",
-        "java.util;Collections;false;synchronizedCollection;(Collection);;Argument[0].Element;ReturnValue.Element;value;manual",
-        "java.util;Collections;false;unmodifiableNavigableMap;(NavigableMap);;Argument[0].MapKey;ReturnValue.MapKey;value;manual",
-        "java.util;Collections;false;unmodifiableNavigableMap;(NavigableMap);;Argument[0].MapValue;ReturnValue.MapValue;value;manual",
-        "java.util;Collections;false;unmodifiableSortedMap;(SortedMap);;Argument[0].MapKey;ReturnValue.MapKey;value;manual",
-        "java.util;Collections;false;unmodifiableSortedMap;(SortedMap);;Argument[0].MapValue;ReturnValue.MapValue;value;manual",
-        "java.util;Collections;false;unmodifiableMap;(Map);;Argument[0].MapKey;ReturnValue.MapKey;value;manual",
-        "java.util;Collections;false;unmodifiableMap;(Map);;Argument[0].MapValue;ReturnValue.MapValue;value;manual",
-        "java.util;Collections;false;unmodifiableList;(List);;Argument[0].Element;ReturnValue.Element;value;manual",
-        "java.util;Collections;false;unmodifiableNavigableSet;(NavigableSet);;Argument[0].Element;ReturnValue.Element;value;manual",
-        "java.util;Collections;false;unmodifiableSortedSet;(SortedSet);;Argument[0].Element;ReturnValue.Element;value;manual",
-        "java.util;Collections;false;unmodifiableSet;(Set);;Argument[0].Element;ReturnValue.Element;value;manual",
-        "java.util;Collections;false;unmodifiableCollection;(Collection);;Argument[0].Element;ReturnValue.Element;value;manual",
-        "java.util;Collections;false;max;;;Argument[0].Element;ReturnValue;value;manual",
-        "java.util;Collections;false;min;;;Argument[0].Element;ReturnValue;value;manual",
-        "java.util;Arrays;false;fill;(Object[],int,int,Object);;Argument[3];Argument[0].ArrayElement;value;manual",
-        "java.util;Arrays;false;fill;(Object[],Object);;Argument[1];Argument[0].ArrayElement;value;manual",
-        "java.util;Arrays;false;fill;(float[],int,int,float);;Argument[3];Argument[0].ArrayElement;value;manual",
-        "java.util;Arrays;false;fill;(float[],float);;Argument[1];Argument[0].ArrayElement;value;manual",
-        "java.util;Arrays;false;fill;(double[],int,int,double);;Argument[3];Argument[0].ArrayElement;value;manual",
-        "java.util;Arrays;false;fill;(double[],double);;Argument[1];Argument[0].ArrayElement;value;manual",
-        "java.util;Arrays;false;fill;(boolean[],int,int,boolean);;Argument[3];Argument[0].ArrayElement;value;manual",
-        "java.util;Arrays;false;fill;(boolean[],boolean);;Argument[1];Argument[0].ArrayElement;value;manual",
-        "java.util;Arrays;false;fill;(byte[],int,int,byte);;Argument[3];Argument[0].ArrayElement;value;manual",
-        "java.util;Arrays;false;fill;(byte[],byte);;Argument[1];Argument[0].ArrayElement;value;manual",
-        "java.util;Arrays;false;fill;(char[],int,int,char);;Argument[3];Argument[0].ArrayElement;value;manual",
-        "java.util;Arrays;false;fill;(char[],char);;Argument[1];Argument[0].ArrayElement;value;manual",
-        "java.util;Arrays;false;fill;(short[],int,int,short);;Argument[3];Argument[0].ArrayElement;value;manual",
-        "java.util;Arrays;false;fill;(short[],short);;Argument[1];Argument[0].ArrayElement;value;manual",
-        "java.util;Arrays;false;fill;(int[],int,int,int);;Argument[3];Argument[0].ArrayElement;value;manual",
-        "java.util;Arrays;false;fill;(int[],int);;Argument[1];Argument[0].ArrayElement;value;manual",
-        "java.util;Arrays;false;fill;(long[],int,int,long);;Argument[3];Argument[0].ArrayElement;value;manual",
-        "java.util;Arrays;false;fill;(long[],long);;Argument[1];Argument[0].ArrayElement;value;manual",
-        "java.util;Collections;false;replaceAll;(List,Object,Object);;Argument[2];Argument[0].Element;value;manual",
-        "java.util;Collections;false;copy;(List,List);;Argument[1].Element;Argument[0].Element;value;manual",
-        "java.util;Collections;false;fill;(List,Object);;Argument[1];Argument[0].Element;value;manual",
-        "java.util;Arrays;false;asList;;;Argument[0].ArrayElement;ReturnValue.Element;value;manual",
-        "java.util;Collections;false;addAll;(Collection,Object[]);;Argument[1].ArrayElement;Argument[0].Element;value;manual",
-        "java.util;AbstractMap$SimpleEntry;false;SimpleEntry;(Object,Object);;Argument[0];Argument[-1].MapKey;value;manual",
-        "java.util;AbstractMap$SimpleEntry;false;SimpleEntry;(Object,Object);;Argument[1];Argument[-1].MapValue;value;manual",
-        "java.util;AbstractMap$SimpleEntry;false;SimpleEntry;(Entry);;Argument[0].MapKey;Argument[-1].MapKey;value;manual",
-        "java.util;AbstractMap$SimpleEntry;false;SimpleEntry;(Entry);;Argument[0].MapValue;Argument[-1].MapValue;value;manual",
-        "java.util;AbstractMap$SimpleImmutableEntry;false;SimpleImmutableEntry;(Object,Object);;Argument[0];Argument[-1].MapKey;value;manual",
-        "java.util;AbstractMap$SimpleImmutableEntry;false;SimpleImmutableEntry;(Object,Object);;Argument[1];Argument[-1].MapValue;value;manual",
-        "java.util;AbstractMap$SimpleImmutableEntry;false;SimpleImmutableEntry;(Entry);;Argument[0].MapKey;Argument[-1].MapKey;value;manual",
-        "java.util;AbstractMap$SimpleImmutableEntry;false;SimpleImmutableEntry;(Entry);;Argument[0].MapValue;Argument[-1].MapValue;value;manual",
-        "java.util;ArrayDeque;false;ArrayDeque;(Collection);;Argument[0].Element;Argument[-1].Element;value;manual",
-        "java.util;ArrayList;false;ArrayList;(Collection);;Argument[0].Element;Argument[-1].Element;value;manual",
-        "java.util;EnumMap;false;EnumMap;(Map);;Argument[0].MapKey;Argument[-1].MapKey;value;manual",
-        "java.util;EnumMap;false;EnumMap;(Map);;Argument[0].MapValue;Argument[-1].MapValue;value;manual",
-        "java.util;EnumMap;false;EnumMap;(EnumMap);;Argument[0].MapKey;Argument[-1].MapKey;value;manual",
-        "java.util;EnumMap;false;EnumMap;(EnumMap);;Argument[0].MapValue;Argument[-1].MapValue;value;manual",
-        "java.util;HashMap;false;HashMap;(Map);;Argument[0].MapKey;Argument[-1].MapKey;value;manual",
-        "java.util;HashMap;false;HashMap;(Map);;Argument[0].MapValue;Argument[-1].MapValue;value;manual",
-        "java.util;HashSet;false;HashSet;(Collection);;Argument[0].Element;Argument[-1].Element;value;manual",
-        "java.util;Hashtable;false;Hashtable;(Map);;Argument[0].MapKey;Argument[-1].MapKey;value;manual",
-        "java.util;Hashtable;false;Hashtable;(Map);;Argument[0].MapValue;Argument[-1].MapValue;value;manual",
-        "java.util;IdentityHashMap;false;IdentityHashMap;(Map);;Argument[0].MapKey;Argument[-1].MapKey;value;manual",
-        "java.util;IdentityHashMap;false;IdentityHashMap;(Map);;Argument[0].MapValue;Argument[-1].MapValue;value;manual",
-        "java.util;LinkedHashMap;false;LinkedHashMap;(Map);;Argument[0].MapKey;Argument[-1].MapKey;value;manual",
-        "java.util;LinkedHashMap;false;LinkedHashMap;(Map);;Argument[0].MapValue;Argument[-1].MapValue;value;manual",
-        "java.util;LinkedHashSet;false;LinkedHashSet;(Collection);;Argument[0].Element;Argument[-1].Element;value;manual",
-        "java.util;LinkedList;false;LinkedList;(Collection);;Argument[0].Element;Argument[-1].Element;value;manual",
-        "java.util;PriorityQueue;false;PriorityQueue;(Collection);;Argument[0].Element;Argument[-1].Element;value;manual",
-        "java.util;PriorityQueue;false;PriorityQueue;(PriorityQueue);;Argument[0].Element;Argument[-1].Element;value;manual",
-        "java.util;PriorityQueue;false;PriorityQueue;(SortedSet);;Argument[0].Element;Argument[-1].Element;value;manual",
-        "java.util;TreeMap;false;TreeMap;(Map);;Argument[0].MapKey;Argument[-1].MapKey;value;manual",
-        "java.util;TreeMap;false;TreeMap;(Map);;Argument[0].MapValue;Argument[-1].MapValue;value;manual",
-        "java.util;TreeMap;false;TreeMap;(SortedMap);;Argument[0].MapKey;Argument[-1].MapKey;value;manual",
-        "java.util;TreeMap;false;TreeMap;(SortedMap);;Argument[0].MapValue;Argument[-1].MapValue;value;manual",
-        "java.util;TreeSet;false;TreeSet;(Collection);;Argument[0].Element;Argument[-1].Element;value;manual",
-        "java.util;TreeSet;false;TreeSet;(SortedSet);;Argument[0].Element;Argument[-1].Element;value;manual",
-        "java.util;Vector;false;Vector;(Collection);;Argument[0].Element;Argument[-1].Element;value;manual",
-        "java.util;WeakHashMap;false;WeakHashMap;(Map);;Argument[0].MapKey;Argument[-1].MapKey;value;manual",
-        "java.util;WeakHashMap;false;WeakHashMap;(Map);;Argument[0].MapValue;Argument[-1].MapValue;value;manual"
-      ]
-  }
-}
-
 private predicate taintPreservingQualifierToMethod(Method m) {
   // java.util.Map.Entry
   m.getDeclaringType() instanceof EntryType and
diff --git a/java/ql/lib/semmle/code/java/frameworks/ApacheHttp.qll b/java/ql/lib/semmle/code/java/frameworks/ApacheHttp.qll
index 8328a9dfbcb..8c77a050a9f 100644
--- a/java/ql/lib/semmle/code/java/frameworks/ApacheHttp.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/ApacheHttp.qll
@@ -42,17 +42,6 @@ class TypeApacheHttpRequestBuilder extends Class {
   }
 }
 
-private class ApacheHttpSource extends SourceModelCsv {
-  override predicate row(string row) {
-    row =
-      [
-        "org.apache.http.protocol;HttpRequestHandler;true;handle;(HttpRequest,HttpResponse,HttpContext);;Parameter[0];remote;manual",
-        "org.apache.hc.core5.http.io;HttpRequestHandler;true;handle;(ClassicHttpRequest,ClassicHttpResponse,HttpContext);;Parameter[0];remote;manual",
-        "org.apache.hc.core5.http.io;HttpServerRequestHandler;true;handle;(ClassicHttpRequest,ResponseTrigger,HttpContext);;Parameter[0];remote;manual"
-      ]
-  }
-}
-
 /**
  * A call that sets a header of an `HttpResponse`.
  */
@@ -80,191 +69,3 @@ class ApacheHttpSetHeader extends Call {
   /** Gets the expression used as the value of this header. */
   Expr getValue() { result = this.getArgument(1) }
 }
-
-private class ApacheHttpXssSink extends SinkModelCsv {
-  override predicate row(string row) {
-    row =
-      [
-        "org.apache.http;HttpResponse;true;setEntity;(HttpEntity);;Argument[0];xss;manual",
-        "org.apache.http.util;EntityUtils;true;updateEntity;(HttpResponse,HttpEntity);;Argument[1];xss;manual",
-        "org.apache.hc.core5.http;HttpEntityContainer;true;setEntity;(HttpEntity);;Argument[0];xss;manual"
-      ]
-  }
-}
-
-private class ApacheHttpOpenUrlSink extends SinkModelCsv {
-  override predicate row(string row) {
-    row =
-      [
-        "org.apache.http;HttpRequest;true;setURI;;;Argument[0];open-url;manual",
-        "org.apache.http.message;BasicHttpRequest;false;BasicHttpRequest;(RequestLine);;Argument[0];open-url;manual",
-        "org.apache.http.message;BasicHttpRequest;false;BasicHttpRequest;(String,String);;Argument[1];open-url;manual",
-        "org.apache.http.message;BasicHttpRequest;false;BasicHttpRequest;(String,String,ProtocolVersion);;Argument[1];open-url;manual",
-        "org.apache.http.message;BasicHttpEntityEnclosingRequest;false;BasicHttpEntityEnclosingRequest;(RequestLine);;Argument[0];open-url;manual",
-        "org.apache.http.message;BasicHttpEntityEnclosingRequest;false;BasicHttpEntityEnclosingRequest;(String,String);;Argument[1];open-url;manual",
-        "org.apache.http.message;BasicHttpEntityEnclosingRequest;false;BasicHttpEntityEnclosingRequest;(String,String,ProtocolVersion);;Argument[1];open-url;manual",
-        "org.apache.http.client.methods;HttpGet;false;HttpGet;;;Argument[0];open-url;manual",
-        "org.apache.http.client.methods;HttpHead;false;HttpHead;;;Argument[0];open-url;manual",
-        "org.apache.http.client.methods;HttpPut;false;HttpPut;;;Argument[0];open-url;manual",
-        "org.apache.http.client.methods;HttpPost;false;HttpPost;;;Argument[0];open-url;manual",
-        "org.apache.http.client.methods;HttpDelete;false;HttpDelete;;;Argument[0];open-url;manual",
-        "org.apache.http.client.methods;HttpOptions;false;HttpOptions;;;Argument[0];open-url;manual",
-        "org.apache.http.client.methods;HttpTrace;false;HttpTrace;;;Argument[0];open-url;manual",
-        "org.apache.http.client.methods;HttpPatch;false;HttpPatch;;;Argument[0];open-url;manual",
-        "org.apache.http.client.methods;HttpRequestBase;true;setURI;;;Argument[0];open-url;manual",
-        "org.apache.http.client.methods;RequestBuilder;false;setUri;;;Argument[0];open-url;manual",
-        "org.apache.http.client.methods;RequestBuilder;false;get;;;Argument[0];open-url;manual",
-        "org.apache.http.client.methods;RequestBuilder;false;post;;;Argument[0];open-url;manual",
-        "org.apache.http.client.methods;RequestBuilder;false;put;;;Argument[0];open-url;manual",
-        "org.apache.http.client.methods;RequestBuilder;false;options;;;Argument[0];open-url;manual",
-        "org.apache.http.client.methods;RequestBuilder;false;head;;;Argument[0];open-url;manual",
-        "org.apache.http.client.methods;RequestBuilder;false;delete;;;Argument[0];open-url;manual",
-        "org.apache.http.client.methods;RequestBuilder;false;trace;;;Argument[0];open-url;manual",
-        "org.apache.http.client.methods;RequestBuilder;false;patch;;;Argument[0];open-url;manual"
-      ]
-  }
-}
-
-private class ApacheHttpFlowStep extends SummaryModelCsv {
-  override predicate row(string row) {
-    row =
-      [
-        "org.apache.http;HttpMessage;true;getAllHeaders;();;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.http;HttpMessage;true;getFirstHeader;(String);;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.http;HttpMessage;true;getLastHeader;(String);;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.http;HttpMessage;true;getHeaders;(String);;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.http;HttpMessage;true;getParams;();;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.http;HttpMessage;true;headerIterator;();;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.http;HttpMessage;true;headerIterator;(String);;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.http;HttpRequest;true;getRequestLine;();;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.http;HttpEntityEnclosingRequest;true;getEntity;();;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.http;Header;true;getElements;();;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.http;HeaderElement;true;getName;();;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.http;HeaderElement;true;getValue;();;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.http;HeaderElement;true;getParameter;(int);;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.http;HeaderElement;true;getParameterByName;(String);;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.http;HeaderElement;true;getParameters;();;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.http;NameValuePair;true;getName;();;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.http;NameValuePair;true;getValue;();;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.http;HeaderIterator;true;nextHeader;();;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.http;HttpEntity;true;getContent;();;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.http;HttpEntity;true;getContentEncoding;();;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.http;HttpEntity;true;getContentType;();;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.http;RequestLine;true;getMethod;();;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.http;RequestLine;true;getUri;();;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.http.params;HttpParams;true;getParameter;(String);;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.http.params;HttpParams;true;getDoubleParameter;(String,double);;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.http.params;HttpParams;true;getIntParameter;(String,int);;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.http.params;HttpParams;true;getLongParameter;(String,long);;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.http.params;HttpParams;true;getDoubleParameter;(String,double);;Argument[1];ReturnValue;value;manual",
-        "org.apache.http.params;HttpParams;true;getIntParameter;(String,int);;Argument[1];ReturnValue;value;manual",
-        "org.apache.http.params;HttpParams;true;getLongParameter;(String,long);;Argument[1];ReturnValue;value;manual",
-        "org.apache.hc.core5.http;MessageHeaders;true;getFirstHeader;(String);;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.hc.core5.http;MessageHeaders;true;getLastHeader;(String);;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.hc.core5.http;MessageHeaders;true;getHeader;(String);;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.hc.core5.http;MessageHeaders;true;getHeaders;();;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.hc.core5.http;MessageHeaders;true;getHeaders;(String);;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.hc.core5.http;MessageHeaders;true;headerIterator;();;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.hc.core5.http;MessageHeaders;true;headerIterator;(String);;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.hc.core5.http;HttpRequest;true;getAuthority;();;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.hc.core5.http;HttpRequest;true;getMethod;();;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.hc.core5.http;HttpRequest;true;getPath;();;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.hc.core5.http;HttpRequest;true;getUri;();;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.hc.core5.http;HttpRequest;true;getRequestUri;();;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.hc.core5.http;HttpEntityContainer;true;getEntity;();;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.hc.core5.http;NameValuePair;true;getName;();;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.hc.core5.http;NameValuePair;true;getValue;();;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.hc.core5.http;HttpEntity;true;getContent;();;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.hc.core5.http;HttpEntity;true;getTrailers;();;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.hc.core5.http;EntityDetails;true;getContentType;();;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.hc.core5.http;EntityDetails;true;getContentEncoding;();;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.hc.core5.http;EntityDetails;true;getTrailerNames;();;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.hc.core5.http.message;RequestLine;true;getMethod;();;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.hc.core5.http.message;RequestLine;true;getUri;();;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.hc.core5.http.message;RequestLine;true;toString;();;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.hc.core5.http.message;RequestLine;true;RequestLine;(HttpRequest);;Argument[0];Argument[-1];taint;manual",
-        "org.apache.hc.core5.http.message;RequestLine;true;RequestLine;(String,String,ProtocolVersion);;Argument[1];Argument[-1];taint;manual",
-        "org.apache.hc.core5.function;Supplier;true;get;();;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.hc.core5.net;URIAuthority;true;getHostName;();;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.hc.core5.net;URIAuthority;true;toString;();;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.http.util;EntityUtils;true;toString;;;Argument[0];ReturnValue;taint;manual",
-        "org.apache.http.util;EntityUtils;true;toByteArray;(HttpEntity);;Argument[0];ReturnValue;taint;manual",
-        "org.apache.http.util;EntityUtils;true;getContentCharSet;(HttpEntity);;Argument[0];ReturnValue;taint;manual",
-        "org.apache.http.util;EntityUtils;true;getContentMimeType;(HttpEntity);;Argument[0];ReturnValue;taint;manual",
-        "org.apache.hc.core5.http.io.entity;EntityUtils;true;toString;;;Argument[0];ReturnValue;taint;manual",
-        "org.apache.hc.core5.http.io.entity;EntityUtils;true;toByteArray;;;Argument[0];ReturnValue;taint;manual",
-        "org.apache.hc.core5.http.io.entity;EntityUtils;true;parse;;;Argument[0];ReturnValue;taint;manual",
-        "org.apache.http.util;EncodingUtils;true;getAsciiBytes;(String);;Argument[0];ReturnValue;taint;manual",
-        "org.apache.http.util;EncodingUtils;true;getAsciiString;;;Argument[0];ReturnValue;taint;manual",
-        "org.apache.http.util;EncodingUtils;true;getBytes;(String,String);;Argument[0];ReturnValue;taint;manual",
-        "org.apache.http.util;EncodingUtils;true;getString;;;Argument[0];ReturnValue;taint;manual",
-        "org.apache.http.util;Args;true;containsNoBlanks;(CharSequence,String);;Argument[0];ReturnValue;value;manual",
-        "org.apache.http.util;Args;true;notNull;(Object,String);;Argument[0];ReturnValue;value;manual",
-        "org.apache.http.util;Args;true;notEmpty;(CharSequence,String);;Argument[0];ReturnValue;value;manual",
-        "org.apache.http.util;Args;true;notEmpty;(Collection,String);;Argument[0];ReturnValue;value;manual",
-        "org.apache.http.util;Args;true;notBlank;(CharSequence,String);;Argument[0];ReturnValue;value;manual",
-        "org.apache.hc.core5.util;Args;true;containsNoBlanks;(CharSequence,String);;Argument[0];ReturnValue;value;manual",
-        "org.apache.hc.core5.util;Args;true;notNull;(Object,String);;Argument[0];ReturnValue;value;manual",
-        "org.apache.hc.core5.util;Args;true;notEmpty;(Collection,String);;Argument[0];ReturnValue;value;manual",
-        "org.apache.hc.core5.util;Args;true;notEmpty;(CharSequence,String);;Argument[0];ReturnValue;value;manual",
-        "org.apache.hc.core5.util;Args;true;notEmpty;(Object,String);;Argument[0];ReturnValue;value;manual",
-        "org.apache.hc.core5.util;Args;true;notBlank;(CharSequence,String);;Argument[0];ReturnValue;value;manual",
-        "org.apache.hc.core5.http.io.entity;HttpEntities;true;create;;;Argument[0];ReturnValue;taint;manual",
-        "org.apache.hc.core5.http.io.entity;HttpEntities;true;createGzipped;;;Argument[0];ReturnValue;taint;manual",
-        "org.apache.hc.core5.http.io.entity;HttpEntities;true;createUrlEncoded;;;Argument[0];ReturnValue;taint;manual",
-        "org.apache.hc.core5.http.io.entity;HttpEntities;true;gzip;(HttpEntity);;Argument[0];ReturnValue;taint;manual",
-        "org.apache.hc.core5.http.io.entity;HttpEntities;true;withTrailers;;;Argument[0];ReturnValue;taint;manual",
-        "org.apache.http.entity;BasicHttpEntity;true;setContent;(InputStream);;Argument[0];Argument[-1];taint;manual",
-        "org.apache.http.entity;BufferedHttpEntity;true;BufferedHttpEntity;(HttpEntity);;Argument[0];ReturnValue;taint;manual",
-        "org.apache.http.entity;ByteArrayEntity;true;ByteArrayEntity;;;Argument[0];Argument[-1];taint;manual",
-        "org.apache.http.entity;HttpEntityWrapper;true;HttpEntityWrapper;(HttpEntity);;Argument[0];ReturnValue;taint;manual",
-        "org.apache.http.entity;InputStreamEntity;true;InputStreamEntity;;;Argument[0];ReturnValue;taint;manual",
-        "org.apache.http.entity;StringEntity;true;StringEntity;;;Argument[0];Argument[-1];taint;manual",
-        "org.apache.hc.core5.http.io.entity;BasicHttpEntity;true;BasicHttpEntity;;;Argument[0];ReturnValue;taint;manual",
-        "org.apache.hc.core5.http.io.entity;BufferedHttpEntity;true;BufferedHttpEntity;(HttpEntity);;Argument[0];ReturnValue;taint;manual",
-        "org.apache.hc.core5.http.io.entity;ByteArrayEntity;true;ByteArrayEntity;;;Argument[0];Argument[-1];taint;manual",
-        "org.apache.hc.core5.http.io.entity;HttpEntityWrapper;true;HttpEntityWrapper;(HttpEntity);;Argument[0];ReturnValue;taint;manual",
-        "org.apache.hc.core5.http.io.entity;InputStreamEntity;true;InputStreamEntity;;;Argument[0];ReturnValue;taint;manual",
-        "org.apache.hc.core5.http.io.entity;StringEntity;true;StringEntity;;;Argument[0];Argument[-1];taint;manual",
-        "org.apache.http.util;ByteArrayBuffer;true;append;(byte[],int,int);;Argument[0];Argument[-1];taint;manual",
-        "org.apache.http.util;ByteArrayBuffer;true;append;(char[],int,int);;Argument[0];Argument[-1];taint;manual",
-        "org.apache.http.util;ByteArrayBuffer;true;append;(CharArrayBuffer,int,int);;Argument[0];Argument[-1];taint;manual",
-        "org.apache.http.util;ByteArrayBuffer;true;buffer;();;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.http.util;ByteArrayBuffer;true;toByteArray;();;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.http.util;CharArrayBuffer;true;append;(byte[],int,int);;Argument[0];Argument[-1];taint;manual",
-        "org.apache.http.util;CharArrayBuffer;true;append;(char[],int,int);;Argument[0];Argument[-1];taint;manual",
-        "org.apache.http.util;CharArrayBuffer;true;append;(CharArrayBuffer,int,int);;Argument[0];Argument[-1];taint;manual",
-        "org.apache.http.util;CharArrayBuffer;true;append;(ByteArrayBuffer,int,int);;Argument[0];Argument[-1];taint;manual",
-        "org.apache.http.util;CharArrayBuffer;true;append;(CharArrayBuffer);;Argument[0];Argument[-1];taint;manual",
-        "org.apache.http.util;CharArrayBuffer;true;append;(String);;Argument[0];Argument[-1];taint;manual",
-        "org.apache.http.util;CharArrayBuffer;true;append;(Object);;Argument[0];Argument[-1];taint;manual",
-        "org.apache.http.util;CharArrayBuffer;true;buffer;();;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.http.util;CharArrayBuffer;true;toCharArray;();;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.http.util;CharArrayBuffer;true;toString;();;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.http.util;CharArrayBuffer;true;substring;(int,int);;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.http.util;CharArrayBuffer;true;subSequence;(int,int);;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.http.util;CharArrayBuffer;true;substringTrimmed;(int,int);;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.hc.core5.util;ByteArrayBuffer;true;append;(byte[],int,int);;Argument[0];Argument[-1];taint;manual",
-        "org.apache.hc.core5.util;ByteArrayBuffer;true;append;(char[],int,int);;Argument[0];Argument[-1];taint;manual",
-        "org.apache.hc.core5.util;ByteArrayBuffer;true;append;(CharArrayBuffer,int,int);;Argument[0];Argument[-1];taint;manual",
-        "org.apache.hc.core5.util;ByteArrayBuffer;true;array;();;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.hc.core5.util;ByteArrayBuffer;true;toByteArray;();;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.hc.core5.util;CharArrayBuffer;true;append;(byte[],int,int);;Argument[0];Argument[-1];taint;manual",
-        "org.apache.hc.core5.util;CharArrayBuffer;true;append;(char[],int,int);;Argument[0];Argument[-1];taint;manual",
-        "org.apache.hc.core5.util;CharArrayBuffer;true;append;(CharArrayBuffer,int,int);;Argument[0];Argument[-1];taint;manual",
-        "org.apache.hc.core5.util;CharArrayBuffer;true;append;(ByteArrayBuffer,int,int);;Argument[0];Argument[-1];taint;manual",
-        "org.apache.hc.core5.util;CharArrayBuffer;true;append;(CharArrayBuffer);;Argument[0];Argument[-1];taint;manual",
-        "org.apache.hc.core5.util;CharArrayBuffer;true;append;(String);;Argument[0];Argument[-1];taint;manual",
-        "org.apache.hc.core5.util;CharArrayBuffer;true;append;(Object);;Argument[0];Argument[-1];taint;manual",
-        "org.apache.hc.core5.util;CharArrayBuffer;true;array;();;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.hc.core5.util;CharArrayBuffer;true;toCharArray;();;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.hc.core5.util;CharArrayBuffer;true;toString;();;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.hc.core5.util;CharArrayBuffer;true;substring;(int,int);;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.hc.core5.util;CharArrayBuffer;true;subSequence;(int,int);;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.hc.core5.util;CharArrayBuffer;true;substringTrimmed;(int,int);;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.http.message;BasicRequestLine;false;BasicRequestLine;;;Argument[1];Argument[-1];taint;manual",
-        "org.apache.http;RequestLine;true;getUri;;;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.http;RequestLine;true;toString;;;Argument[-1];ReturnValue;taint;manual"
-      ]
-  }
-}
diff --git a/java/ql/lib/semmle/code/java/frameworks/Flexjson.qll b/java/ql/lib/semmle/code/java/frameworks/Flexjson.qll
index 615d928a709..e0f04da2954 100644
--- a/java/ql/lib/semmle/code/java/frameworks/Flexjson.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/Flexjson.qll
@@ -33,9 +33,3 @@ class FlexjsonDeserializerUseMethod extends Method {
     this.hasName("use")
   }
 }
-
-private class FluentUseMethodModel extends SummaryModelCsv {
-  override predicate row(string r) {
-    r = "flexjson;JSONDeserializer;true;use;;;Argument[-1];ReturnValue;value;manual"
-  }
-}
diff --git a/java/ql/lib/semmle/code/java/frameworks/Hibernate.qll b/java/ql/lib/semmle/code/java/frameworks/Hibernate.qll
index 4832576b7b9..dcb72cd9722 100644
--- a/java/ql/lib/semmle/code/java/frameworks/Hibernate.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/Hibernate.qll
@@ -21,19 +21,3 @@ class HibernateSharedSessionContract extends RefType {
 class HibernateSession extends RefType {
   HibernateSession() { this.hasQualifiedName("org.hibernate", "Session") }
 }
-
-private class SqlSinkCsv extends SinkModelCsv {
-  override predicate row(string row) {
-    row =
-      [
-        //"package;type;overrides;name;signature;ext;spec;kind"
-        "org.hibernate;QueryProducer;true;createQuery;;;Argument[0];sql;manual",
-        "org.hibernate;QueryProducer;true;createNativeQuery;;;Argument[0];sql;manual",
-        "org.hibernate;QueryProducer;true;createSQLQuery;;;Argument[0];sql;manual",
-        "org.hibernate;SharedSessionContract;true;createQuery;;;Argument[0];sql;manual",
-        "org.hibernate;SharedSessionContract;true;createSQLQuery;;;Argument[0];sql;manual",
-        "org.hibernate;Session;true;createQuery;;;Argument[0];sql;manual",
-        "org.hibernate;Session;true;createSQLQuery;;;Argument[0];sql;manual"
-      ]
-  }
-}
diff --git a/java/ql/lib/semmle/code/java/frameworks/HikariCP.qll b/java/ql/lib/semmle/code/java/frameworks/HikariCP.qll
deleted file mode 100644
index 05f764b357b..00000000000
--- a/java/ql/lib/semmle/code/java/frameworks/HikariCP.qll
+++ /dev/null
@@ -1,17 +0,0 @@
-/**
- * Definitions of sinks in the Hikari Connection Pool library.
- */
-
-import java
-private import semmle.code.java.dataflow.ExternalFlow
-
-private class SsrfSinkCsv extends SinkModelCsv {
-  override predicate row(string row) {
-    row =
-      [
-        //"package;type;overrides;name;signature;ext;spec;kind"
-        "com.zaxxer.hikari;HikariConfig;false;HikariConfig;(Properties);;Argument[0];jdbc-url;manual",
-        "com.zaxxer.hikari;HikariConfig;false;setJdbcUrl;(String);;Argument[0];jdbc-url;manual"
-      ]
-  }
-}
diff --git a/java/ql/lib/semmle/code/java/frameworks/JMS.qll b/java/ql/lib/semmle/code/java/frameworks/JMS.qll
deleted file mode 100644
index f1eb0ace982..00000000000
--- a/java/ql/lib/semmle/code/java/frameworks/JMS.qll
+++ /dev/null
@@ -1,112 +0,0 @@
-/**
- * This model covers JMS API versions 1 and 2.
- *
- * https://docs.oracle.com/javaee/6/api/javax/jms/package-summary.html
- * https://docs.oracle.com/javaee/7/api/javax/jms/package-summary.html
- */
-
-import java
-private import semmle.code.java.dataflow.ExternalFlow
-
-/** Defines sources of tainted data in JMS 1. */
-private class Jms1Source extends SourceModelCsv {
-  override predicate row(string row) {
-    row =
-      [
-        // incoming messages are considered tainted
-        "javax.jms;MessageListener;true;onMessage;(Message);;Parameter[0];remote;manual",
-        "javax.jms;MessageConsumer;true;receive;;;ReturnValue;remote;manual",
-        "javax.jms;MessageConsumer;true;receiveNoWait;();;ReturnValue;remote;manual",
-        "javax.jms;QueueRequestor;true;request;(Message);;ReturnValue;remote;manual",
-        "javax.jms;TopicRequestor;true;request;(Message);;ReturnValue;remote;manual",
-      ]
-  }
-}
-
-/** Defines taint propagation steps in JMS 1. */
-private class Jms1FlowStep extends SummaryModelCsv {
-  override predicate row(string row) {
-    row =
-      [
-        // if a message is tainted, then it returns tainted data
-        "javax.jms;Message;true;getBody;();;Argument[-1];ReturnValue;taint;manual",
-        "javax.jms;Message;true;getJMSCorrelationIDAsBytes;();;Argument[-1];ReturnValue;taint;manual",
-        "javax.jms;Message;true;getJMSCorrelationID;();;Argument[-1];ReturnValue;taint;manual",
-        "javax.jms;Message;true;getJMSReplyTo;();;Argument[-1];ReturnValue;taint;manual",
-        "javax.jms;Message;true;getJMSDestination;();;Argument[-1];ReturnValue;taint;manual",
-        "javax.jms;Message;true;getJMSType;();;Argument[-1];ReturnValue;taint;manual",
-        "javax.jms;Message;true;getBooleanProperty;();;Argument[-1];ReturnValue;taint;manual",
-        "javax.jms;Message;true;getByteProperty;();;Argument[-1];ReturnValue;taint;manual",
-        "javax.jms;Message;true;getShortProperty;();;Argument[-1];ReturnValue;taint;manual",
-        "javax.jms;Message;true;getIntProperty;();;Argument[-1];ReturnValue;taint;manual",
-        "javax.jms;Message;true;getLongProperty;();;Argument[-1];ReturnValue;taint;manual",
-        "javax.jms;Message;true;getFloatProperty;();;Argument[-1];ReturnValue;taint;manual",
-        "javax.jms;Message;true;getDoubleProperty;();;Argument[-1];ReturnValue;taint;manual",
-        "javax.jms;Message;true;getStringProperty;();;Argument[-1];ReturnValue;taint;manual",
-        "javax.jms;Message;true;getObjectProperty;();;Argument[-1];ReturnValue;taint;manual",
-        "javax.jms;Message;true;getPropertyNames;();;Argument[-1];ReturnValue;taint;manual",
-        "javax.jms;BytesMessage;true;readBoolean;();;Argument[-1];ReturnValue;taint;manual",
-        "javax.jms;BytesMessage;true;readByte;();;Argument[-1];ReturnValue;taint;manual",
-        "javax.jms;BytesMessage;true;readUnsignedByte;();;Argument[-1];ReturnValue;taint;manual",
-        "javax.jms;BytesMessage;true;readShort;();;Argument[-1];ReturnValue;taint;manual",
-        "javax.jms;BytesMessage;true;readUnsignedShort;();;Argument[-1];ReturnValue;taint;manual",
-        "javax.jms;BytesMessage;true;readChar;();;Argument[-1];ReturnValue;taint;manual",
-        "javax.jms;BytesMessage;true;readInt;();;Argument[-1];ReturnValue;taint;manual",
-        "javax.jms;BytesMessage;true;readLong;();;Argument[-1];ReturnValue;taint;manual",
-        "javax.jms;BytesMessage;true;readFloat;();;Argument[-1];ReturnValue;taint;manual",
-        "javax.jms;BytesMessage;true;readDouble;();;Argument[-1];ReturnValue;taint;manual",
-        "javax.jms;BytesMessage;true;readUTF;();;Argument[-1];ReturnValue;taint;manual",
-        "javax.jms;BytesMessage;true;readBytes;;;Argument[-1];Argument[0];taint;manual",
-        "javax.jms;MapMessage;true;getBoolean;(String);;Argument[-1];ReturnValue;taint;manual",
-        "javax.jms;MapMessage;true;getByte;(String);;Argument[-1];ReturnValue;taint;manual",
-        "javax.jms;MapMessage;true;getShort;(String);;Argument[-1];ReturnValue;taint;manual",
-        "javax.jms;MapMessage;true;getChar;(String);;Argument[-1];ReturnValue;taint;manual",
-        "javax.jms;MapMessage;true;getInt;(String);;Argument[-1];ReturnValue;taint;manual",
-        "javax.jms;MapMessage;true;getLong;(String);;Argument[-1];ReturnValue;taint;manual",
-        "javax.jms;MapMessage;true;getFloat;(String);;Argument[-1];ReturnValue;taint;manual",
-        "javax.jms;MapMessage;true;getDouble;(String);;Argument[-1];ReturnValue;taint;manual",
-        "javax.jms;MapMessage;true;getString;(String);;Argument[-1];ReturnValue;taint;manual",
-        "javax.jms;MapMessage;true;getBytes;(String);;Argument[-1];ReturnValue;taint;manual",
-        "javax.jms;MapMessage;true;getObject;(String);;Argument[-1];ReturnValue;taint;manual",
-        "javax.jms;MapMessage;true;getMapNames;();;Argument[-1];ReturnValue;taint;manual",
-        "javax.jms;ObjectMessage;true;getObject;();;Argument[-1];ReturnValue;taint;manual",
-        "javax.jms;StreamMessage;true;readBoolean;();;Argument[-1];ReturnValue;taint;manual",
-        "javax.jms;StreamMessage;true;readByte;();;Argument[-1];ReturnValue;taint;manual",
-        "javax.jms;StreamMessage;true;readShort;();;Argument[-1];ReturnValue;taint;manual",
-        "javax.jms;StreamMessage;true;readChar;();;Argument[-1];ReturnValue;taint;manual",
-        "javax.jms;StreamMessage;true;readInt;();;Argument[-1];ReturnValue;taint;manual",
-        "javax.jms;StreamMessage;true;readLong;();;Argument[-1];ReturnValue;taint;manual",
-        "javax.jms;StreamMessage;true;readFloat;();;Argument[-1];ReturnValue;taint;manual",
-        "javax.jms;StreamMessage;true;readDouble;();;Argument[-1];ReturnValue;taint;manual",
-        "javax.jms;StreamMessage;true;readString;();;Argument[-1];ReturnValue;taint;manual",
-        "javax.jms;StreamMessage;true;readBytes;(byte[]);;Argument[-1];Argument[0];taint;manual",
-        "javax.jms;StreamMessage;true;readObject;();;Argument[-1];ReturnValue;taint;manual",
-        "javax.jms;TextMessage;true;getText;();;Argument[-1];ReturnValue;taint;manual",
-        // if a destination is tainted, then it returns tainted data
-        "javax.jms;Queue;true;getQueueName;();;Argument[-1];ReturnValue;taint;manual",
-        "javax.jms;Queue;true;toString;();;Argument[-1];ReturnValue;taint;manual",
-        "javax.jms;Topic;true;getTopicName;();;Argument[-1];ReturnValue;taint;manual",
-        "javax.jms;Topic;true;toString;();;Argument[-1];ReturnValue;taint;manual",
-      ]
-  }
-}
-
-/** Defines additional sources of tainted data in JMS 2. */
-private class Jms2Source extends SourceModelCsv {
-  override predicate row(string row) {
-    row =
-      [
-        "javax.jms;JMSConsumer;true;receive;;;ReturnValue;remote;manual",
-        "javax.jms;JMSConsumer;true;receiveBody;;;ReturnValue;remote;manual",
-        "javax.jms;JMSConsumer;true;receiveNoWait;();;ReturnValue;remote;manual",
-        "javax.jms;JMSConsumer;true;receiveBodyNoWait;();;ReturnValue;remote;manual",
-      ]
-  }
-}
-
-/** Defines additional taint propagation steps in JMS 2. */
-private class Jms2FlowStep extends SummaryModelCsv {
-  override predicate row(string row) {
-    row = "javax.jms;Message;true;getBody;();;Argument[-1];ReturnValue;taint;manual"
-  }
-}
diff --git a/java/ql/lib/semmle/code/java/frameworks/JavaIo.qll b/java/ql/lib/semmle/code/java/frameworks/JavaIo.qll
deleted file mode 100644
index 8748c2a0cb1..00000000000
--- a/java/ql/lib/semmle/code/java/frameworks/JavaIo.qll
+++ /dev/null
@@ -1,24 +0,0 @@
-/** Definitions of taint steps in Objects class of the JDK */
-
-import java
-private import semmle.code.java.dataflow.ExternalFlow
-
-private class JavaIoSummaryCsv extends SummaryModelCsv {
-  override predicate row(string row) {
-    row =
-      [
-        //`namespace; type; subtypes; name; signature; ext; input; output; kind`
-        "java.lang;Appendable;true;append;;;Argument[0];Argument[-1];taint;manual",
-        "java.lang;Appendable;true;append;;;Argument[-1];ReturnValue;value;manual",
-        "java.io;Writer;true;write;;;Argument[0];Argument[-1];taint;manual",
-        "java.io;Writer;true;toString;;;Argument[-1];ReturnValue;taint;manual",
-        "java.io;CharArrayWriter;true;toCharArray;;;Argument[-1];ReturnValue;taint;manual",
-        "java.io;ObjectInput;true;read;;;Argument[-1];Argument[0];taint;manual",
-        "java.io;DataInput;true;readFully;;;Argument[-1];Argument[0];taint;manual",
-        "java.io;DataInput;true;readLine;();;Argument[-1];ReturnValue;taint;manual",
-        "java.io;DataInput;true;readUTF;();;Argument[-1];ReturnValue;taint;manual",
-        "java.nio.channels;ReadableByteChannel;true;read;(ByteBuffer);;Argument[-1];Argument[0];taint;manual",
-        "java.nio.channels;Channels;false;newChannel;(InputStream);;Argument[0];ReturnValue;taint;manual"
-      ]
-  }
-}
diff --git a/java/ql/lib/semmle/code/java/frameworks/JavaxJson.qll b/java/ql/lib/semmle/code/java/frameworks/JavaxJson.qll
deleted file mode 100644
index 0a2db0d06fc..00000000000
--- a/java/ql/lib/semmle/code/java/frameworks/JavaxJson.qll
+++ /dev/null
@@ -1,138 +0,0 @@
-/**
- * Provides models for the `javax.json` and `jakarta.json` packages.
- */
-
-import java
-private import semmle.code.java.dataflow.ExternalFlow
-
-private class FlowSummaries extends SummaryModelCsv {
-  override predicate row(string row) {
-    row =
-      ["javax", "jakarta"] +
-        [
-          ".json;Json;false;createArrayBuilder;(JsonArray);;Argument[0];ReturnValue;taint;manual",
-          ".json;Json;false;createArrayBuilder;(Collection);;Argument[0].Element;ReturnValue;taint;manual",
-          ".json;Json;false;createDiff;;;Argument[0..1];ReturnValue;taint;manual",
-          ".json;Json;false;createMergeDiff;;;Argument[0..1];ReturnValue;taint;manual",
-          ".json;Json;false;createMergePatch;;;Argument[0];ReturnValue;taint;manual",
-          ".json;Json;false;createObjectBuilder;(JsonObject);;Argument[0];ReturnValue;taint;manual",
-          ".json;Json;false;createObjectBuilder;(Map);;Argument[0].MapKey;ReturnValue;taint;manual",
-          ".json;Json;false;createObjectBuilder;(Map);;Argument[0].MapValue;ReturnValue;taint;manual",
-          ".json;Json;false;createPatch;;;Argument[0];ReturnValue;taint;manual",
-          ".json;Json;false;createPatchBuilder;;;Argument[0];ReturnValue;taint;manual",
-          ".json;Json;false;createPointer;;;Argument[0];ReturnValue;taint;manual",
-          ".json;Json;false;createReader;;;Argument[0];ReturnValue;taint;manual",
-          ".json;Json;false;createValue;;;Argument[0];ReturnValue;taint;manual",
-          ".json;Json;false;createWriter;;;Argument[0];ReturnValue;taint;manual",
-          ".json;Json;false;decodePointer;;;Argument[0];ReturnValue;taint;manual",
-          ".json;Json;false;encodePointer;;;Argument[0];ReturnValue;taint;manual",
-          ".json;JsonArray;false;getBoolean;;;Argument[-1];ReturnValue;taint;manual",
-          ".json;JsonArray;false;getBoolean;;;Argument[1];ReturnValue;value;manual",
-          ".json;JsonArray;false;getInt;;;Argument[-1];ReturnValue;taint;manual",
-          ".json;JsonArray;false;getInt;;;Argument[1];ReturnValue;value;manual",
-          ".json;JsonArray;false;getJsonArray;;;Argument[-1];ReturnValue;taint;manual",
-          ".json;JsonArray;false;getJsonNumber;;;Argument[-1];ReturnValue;taint;manual",
-          ".json;JsonArray;false;getJsonObject;;;Argument[-1];ReturnValue;taint;manual",
-          ".json;JsonArray;false;getJsonString;;;Argument[-1];ReturnValue;taint;manual",
-          ".json;JsonArray;false;getString;;;Argument[-1];ReturnValue;taint;manual",
-          ".json;JsonArray;false;getString;;;Argument[1];ReturnValue;value;manual",
-          ".json;JsonArray;false;getValuesAs;;;Argument[-1];ReturnValue;taint;manual",
-          ".json;JsonArrayBuilder;false;add;;;Argument[-1];ReturnValue;value;manual",
-          ".json;JsonArrayBuilder;false;add;(boolean);;Argument[0];Argument[-1];taint;manual",
-          ".json;JsonArrayBuilder;false;add;(double);;Argument[0];Argument[-1];taint;manual",
-          ".json;JsonArrayBuilder;false;add;(int);;Argument[0];Argument[-1];taint;manual",
-          ".json;JsonArrayBuilder;false;add;(long);;Argument[0];Argument[-1];taint;manual",
-          ".json;JsonArrayBuilder;false;add;(JsonArrayBuilder);;Argument[0];Argument[-1];taint;manual",
-          ".json;JsonArrayBuilder;false;add;(JsonObjectBuilder);;Argument[0];Argument[-1];taint;manual",
-          ".json;JsonArrayBuilder;false;add;(JsonValue);;Argument[0];Argument[-1];taint;manual",
-          ".json;JsonArrayBuilder;false;add;(String);;Argument[0];Argument[-1];taint;manual",
-          ".json;JsonArrayBuilder;false;add;(BigDecimal);;Argument[0];Argument[-1];taint;manual",
-          ".json;JsonArrayBuilder;false;add;(BigInteger);;Argument[0];Argument[-1];taint;manual",
-          ".json;JsonArrayBuilder;false;add;(int,boolean);;Argument[1];Argument[-1];taint;manual",
-          ".json;JsonArrayBuilder;false;add;(int,double);;Argument[1];Argument[-1];taint;manual",
-          ".json;JsonArrayBuilder;false;add;(int,int);;Argument[1];Argument[-1];taint;manual",
-          ".json;JsonArrayBuilder;false;add;(int,long);;Argument[1];Argument[-1];taint;manual",
-          ".json;JsonArrayBuilder;false;add;(int,JsonArrayBuilder);;Argument[1];Argument[-1];taint;manual",
-          ".json;JsonArrayBuilder;false;add;(int,JsonObjectBuilder);;Argument[1];Argument[-1];taint;manual",
-          ".json;JsonArrayBuilder;false;add;(int,JsonValue);;Argument[1];Argument[-1];taint;manual",
-          ".json;JsonArrayBuilder;false;add;(int,String);;Argument[1];Argument[-1];taint;manual",
-          ".json;JsonArrayBuilder;false;add;(int,BigDecimal);;Argument[1];Argument[-1];taint;manual",
-          ".json;JsonArrayBuilder;false;add;(int,BigInteger);;Argument[1];Argument[-1];taint;manual",
-          ".json;JsonArrayBuilder;false;addAll;;;Argument[0];Argument[-1];taint;manual",
-          ".json;JsonArrayBuilder;false;addAll;;;Argument[-1];ReturnValue;value;manual",
-          ".json;JsonArrayBuilder;false;addNull;;;Argument[-1];ReturnValue;value;manual",
-          ".json;JsonArrayBuilder;false;build;;;Argument[-1];ReturnValue;taint;manual",
-          ".json;JsonArrayBuilder;false;remove;;;Argument[-1];ReturnValue;value;manual",
-          ".json;JsonArrayBuilder;false;set;;;Argument[1];Argument[-1];taint;manual",
-          ".json;JsonArrayBuilder;false;set;;;Argument[-1];ReturnValue;value;manual",
-          ".json;JsonArrayBuilder;false;setNull;;;Argument[-1];ReturnValue;value;manual",
-          ".json;JsonMergePatch;false;apply;;;Argument[-1];ReturnValue;taint;manual",
-          ".json;JsonMergePatch;false;apply;;;Argument[0];ReturnValue;taint;manual",
-          ".json;JsonMergePatch;false;toJsonValue;;;Argument[-1];ReturnValue;taint;manual",
-          ".json;JsonNumber;false;bigDecimalValue;;;Argument[-1];ReturnValue;taint;manual",
-          ".json;JsonNumber;false;bigIntegerValue;;;Argument[-1];ReturnValue;taint;manual",
-          ".json;JsonNumber;false;bigIntegerValueExact;;;Argument[-1];ReturnValue;taint;manual",
-          ".json;JsonNumber;false;doubleValue;;;Argument[-1];ReturnValue;taint;manual",
-          ".json;JsonNumber;false;intValue;;;Argument[-1];ReturnValue;taint;manual",
-          ".json;JsonNumber;false;intValueExact;;;Argument[-1];ReturnValue;taint;manual",
-          ".json;JsonNumber;false;longValue;;;Argument[-1];ReturnValue;taint;manual",
-          ".json;JsonNumber;false;longValueExact;;;Argument[-1];ReturnValue;taint;manual",
-          ".json;JsonNumber;false;numberValue;;;Argument[-1];ReturnValue;taint;manual",
-          ".json;JsonObject;false;getBoolean;;;Argument[-1];ReturnValue;taint;manual",
-          ".json;JsonObject;false;getBoolean;;;Argument[1];ReturnValue;value;manual",
-          ".json;JsonObject;false;getInt;;;Argument[-1];ReturnValue;taint;manual",
-          ".json;JsonObject;false;getInt;;;Argument[1];ReturnValue;value;manual",
-          ".json;JsonObject;false;getJsonArray;;;Argument[-1];ReturnValue;taint;manual",
-          ".json;JsonObject;false;getJsonNumber;;;Argument[-1];ReturnValue;taint;manual",
-          ".json;JsonObject;false;getJsonObject;;;Argument[-1];ReturnValue;taint;manual",
-          ".json;JsonObject;false;getJsonString;;;Argument[-1];ReturnValue;taint;manual",
-          ".json;JsonObject;false;getString;;;Argument[-1];ReturnValue;taint;manual",
-          ".json;JsonObject;false;getString;;;Argument[1];ReturnValue;value;manual",
-          ".json;JsonObjectBuilder;false;add;;;Argument[-1];ReturnValue;value;manual",
-          ".json;JsonObjectBuilder;false;add;;;Argument[1];Argument[-1];taint;manual",
-          ".json;JsonObjectBuilder;false;addAll;;;Argument[0];ReturnValue;value;manual",
-          ".json;JsonObjectBuilder;false;addAll;;;Argument[-1];ReturnValue;value;manual",
-          ".json;JsonObjectBuilder;false;addNull;;;Argument[-1];ReturnValue;value;manual",
-          ".json;JsonObjectBuilder;false;build;;;Argument[-1];ReturnValue;taint;manual",
-          ".json;JsonObjectBuilder;false;remove;;;Argument[-1];ReturnValue;value;manual",
-          ".json;JsonPatch;false;apply;;;Argument[-1];ReturnValue;taint;manual",
-          ".json;JsonPatch;false;apply;;;Argument[0];ReturnValue;taint;manual",
-          ".json;JsonPatch;false;toJsonArray;;;Argument[-1];ReturnValue;taint;manual",
-          ".json;JsonPatchBuilder;false;add;;;Argument[0..1];ReturnValue;taint;manual",
-          ".json;JsonPatchBuilder;false;add;;;Argument[-1];ReturnValue;value;manual",
-          ".json;JsonPatchBuilder;false;build;;;Argument[-1];ReturnValue;taint;manual",
-          ".json;JsonPatchBuilder;false;copy;;;Argument[0..1];ReturnValue;taint;manual",
-          ".json;JsonPatchBuilder;false;copy;;;Argument[-1];ReturnValue;value;manual",
-          ".json;JsonPatchBuilder;false;move;;;Argument[0..1];ReturnValue;taint;manual",
-          ".json;JsonPatchBuilder;false;move;;;Argument[-1];ReturnValue;value;manual",
-          ".json;JsonPatchBuilder;false;remove;;;Argument[0];ReturnValue;taint;manual",
-          ".json;JsonPatchBuilder;false;remove;;;Argument[-1];ReturnValue;value;manual",
-          ".json;JsonPatchBuilder;false;replace;;;Argument[0..1];ReturnValue;taint;manual",
-          ".json;JsonPatchBuilder;false;replace;;;Argument[-1];ReturnValue;value;manual",
-          ".json;JsonPatchBuilder;false;test;;;Argument[0..1];ReturnValue;taint;manual",
-          ".json;JsonPatchBuilder;false;test;;;Argument[-1];ReturnValue;value;manual",
-          ".json;JsonPointer;false;add;;;Argument[-1];ReturnValue;taint;manual",
-          ".json;JsonPointer;false;add;;;Argument[0..1];ReturnValue;taint;manual",
-          ".json;JsonPointer;false;getValue;;;Argument[0];ReturnValue;taint;manual",
-          ".json;JsonPointer;false;remove;;;Argument[0];ReturnValue;taint;manual",
-          ".json;JsonPointer;false;replace;;;Argument[0..1];ReturnValue;taint;manual",
-          ".json;JsonPointer;false;toString;;;Argument[-1];ReturnValue;taint;manual",
-          ".json;JsonReader;false;read;;;Argument[-1];ReturnValue;taint;manual",
-          ".json;JsonReader;false;readArray;;;Argument[-1];ReturnValue;taint;manual",
-          ".json;JsonReader;false;readObject;;;Argument[-1];ReturnValue;taint;manual",
-          ".json;JsonReader;false;readValue;;;Argument[-1];ReturnValue;taint;manual",
-          ".json;JsonReaderFactory;false;createReader;;;Argument[0];ReturnValue;taint;manual",
-          ".json;JsonString;false;getChars;;;Argument[-1];ReturnValue;taint;manual",
-          ".json;JsonString;false;getString;;;Argument[-1];ReturnValue;taint;manual",
-          ".json;JsonStructure;true;getValue;;;Argument[-1];ReturnValue;taint;manual",
-          ".json;JsonValue;true;asJsonArray;;;Argument[-1];ReturnValue;taint;manual",
-          ".json;JsonValue;true;asJsonObject;;;Argument[-1];ReturnValue;taint;manual",
-          ".json;JsonValue;true;toString;;;Argument[-1];ReturnValue;taint;manual",
-          ".json;JsonWriter;false;write;;;Argument[0];Argument[-1];taint;manual",
-          ".json;JsonWriter;false;writeArray;;;Argument[0];Argument[-1];taint;manual",
-          ".json;JsonWriter;false;writeObject;;;Argument[0];Argument[-1];taint;manual",
-          ".json;JsonWriterFactory;false;createWriter;;;Argument[-1];Argument[0];taint;manual",
-          ".json.stream;JsonParserFactory;false;createParser;;;Argument[0];ReturnValue;taint;manual"
-        ]
-  }
-}
diff --git a/java/ql/lib/semmle/code/java/frameworks/JaxWS.qll b/java/ql/lib/semmle/code/java/frameworks/JaxWS.qll
index c60c3ff0369..23f304be83a 100644
--- a/java/ql/lib/semmle/code/java/frameworks/JaxWS.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/JaxWS.qll
@@ -321,323 +321,6 @@ private class JaxRSXssSink extends XssSink {
   }
 }
 
-/** A URL redirection sink from JAX-RS */
-private class JaxRsUrlRedirectSink extends SinkModelCsv {
-  override predicate row(string row) {
-    row =
-      ["javax", "jakarta"] + ".ws.rs.core;Response;true;" + ["seeOther", "temporaryRedirect"] +
-        ";;;Argument[0];url-redirect;manual"
-  }
-}
-
-/**
- * Model Response:
- *
- * - the returned ResponseBuilder gains taint from a tainted entity or existing Response
- */
-private class ResponseModel extends SummaryModelCsv {
-  override predicate row(string row) {
-    row =
-      ["javax", "jakarta"] + ".ws.rs.core;Response;false;" + ["accepted", "fromResponse", "ok"] +
-        ";;;Argument[0];ReturnValue;taint;manual"
-  }
-}
-
-/**
- * Model ResponseBuilder:
- *
- * - becomes tainted by a tainted entity, but not by metadata, headers etc
- * - build() method returns taint
- * - almost all methods are fluent, and so preserve value
- */
-private class ResponseBuilderModel extends SummaryModelCsv {
-  override predicate row(string row) {
-    row =
-      ["javax", "jakarta"] + ".ws.rs.core;Response$ResponseBuilder;true;" +
-        [
-          "allow", "cacheControl", "contentLocation", "cookie", "encoding", "entity", "expires",
-          "header", "language", "lastModified", "link", "links", "location", "replaceAll", "status",
-          "tag", "type", "variant", "variants"
-        ] + ";;;Argument[-1];ReturnValue;value;manual"
-    or
-    row =
-      ["javax", "jakarta"] + ".ws.rs.core;Response$ResponseBuilder;true;" +
-        [
-          "build;;;Argument[-1];ReturnValue;taint;manual",
-          "entity;;;Argument[0];Argument[-1];taint;manual",
-          "clone;;;Argument[-1];ReturnValue;taint;manual"
-        ]
-  }
-}
-
-/**
- * Model HttpHeaders: methods that Date have to be syntax-checked, but those returning MediaType
- * or Locale are assumed potentially dangerous, as these types do not generally check that the
- * input data is recognised, only that it conforms to the expected syntax.
- */
-private class HttpHeadersModel extends SummaryModelCsv {
-  override predicate row(string row) {
-    row =
-      ["javax", "jakarta"] + ".ws.rs.core;HttpHeaders;true;" +
-        [
-          "getAcceptableLanguages", "getAcceptableMediaTypes", "getCookies", "getHeaderString",
-          "getLanguage", "getMediaType", "getRequestHeader", "getRequestHeaders"
-        ] + ";;;Argument[-1];ReturnValue;taint;manual"
-  }
-}
-
-/**
- * Model MultivaluedMap, which extends `Map<K, List<V>>` and provides a few extra helper methods.
- */
-private class MultivaluedMapModel extends SummaryModelCsv {
-  override predicate row(string row) {
-    row =
-      ["javax", "jakarta"] + ".ws.rs.core;MultivaluedMap;true;" +
-        [
-          "add;;;Argument[0];Argument[-1].MapKey;value;manual",
-          "add;;;Argument[1];Argument[-1].MapValue.Element;value;manual",
-          "addAll;;;Argument[0];Argument[-1].MapKey;value;manual",
-          "addAll;(Object,List);;Argument[1].Element;Argument[-1].MapValue.Element;value;manual",
-          "addAll;(Object,Object[]);;Argument[1].ArrayElement;Argument[-1].MapValue.Element;value;manual",
-          "addFirst;;;Argument[0];Argument[-1].MapKey;value;manual",
-          "addFirst;;;Argument[1];Argument[-1].MapValue.Element;value;manual",
-          "getFirst;;;Argument[-1].MapValue.Element;ReturnValue;value;manual",
-          "putSingle;;;Argument[0];Argument[-1].MapKey;value;manual",
-          "putSingle;;;Argument[1];Argument[-1].MapValue.Element;value;manual"
-        ]
-  }
-}
-
-/**
- * Model AbstractMultivaluedMap, which implements MultivaluedMap.
- */
-private class AbstractMultivaluedMapModel extends SummaryModelCsv {
-  override predicate row(string row) {
-    row =
-      ["javax", "jakarta"] + ".ws.rs.core;AbstractMultivaluedMap;false;AbstractMultivaluedMap;;;" +
-        [
-          "Argument[0].MapKey;Argument[-1].MapKey;value;manual",
-          "Argument[0].MapValue;Argument[-1].MapValue;value;manual"
-        ]
-  }
-}
-
-/**
- * Model MultivaluedHashMap, which extends AbstractMultivaluedMap.
- */
-private class MultivaluedHashMapModel extends SummaryModelCsv {
-  override predicate row(string row) {
-    row =
-      ["javax", "jakarta"] + ".ws.rs.core;MultivaluedHashMap;false;MultivaluedHashMap;" +
-        [
-          "(Map);;Argument[0].MapKey;Argument[-1].MapKey;value;manual",
-          "(Map);;Argument[0].MapValue;Argument[-1].MapValue.Element;value;manual",
-          "(MultivaluedMap);;Argument[0].MapKey;Argument[-1].MapKey;value;manual",
-          "(MultivaluedMap);;Argument[0].MapValue;Argument[-1].MapValue;value;manual"
-        ]
-  }
-}
-
-/**
- * Model PathSegment, which wraps a path and its associated matrix parameters.
- */
-private class PathSegmentModel extends SummaryModelCsv {
-  override predicate row(string row) {
-    row =
-      ["javax", "jakarta"] + ".ws.rs.core;PathSegment;true;" + ["getMatrixParameters", "getPath"] +
-        ";;;Argument[-1];ReturnValue;taint;manual"
-  }
-}
-
-/**
- * Model UriInfo, which provides URI element accessors.
- */
-private class UriInfoModel extends SummaryModelCsv {
-  override predicate row(string row) {
-    row =
-      ["javax", "jakarta"] + ".ws.rs.core;UriInfo;true;" +
-        [
-          "getAbsolutePath;;;Argument[-1];ReturnValue;taint;manual",
-          "getAbsolutePathBuilder;;;Argument[-1];ReturnValue;taint;manual",
-          "getPath;;;Argument[-1];ReturnValue;taint;manual",
-          "getPathParameters;;;Argument[-1];ReturnValue;taint;manual",
-          "getPathSegments;;;Argument[-1];ReturnValue;taint;manual",
-          "getQueryParameters;;;Argument[-1];ReturnValue;taint;manual",
-          "getRequestUri;;;Argument[-1];ReturnValue;taint;manual",
-          "getRequestUriBuilder;;;Argument[-1];ReturnValue;taint;manual",
-          "relativize;;;Argument[0];ReturnValue;taint;manual",
-          "resolve;;;Argument[-1];ReturnValue;taint;manual",
-          "resolve;;;Argument[0];ReturnValue;taint;manual"
-        ]
-  }
-}
-
-/**
- * Model Cookie, a simple tuple type.
- */
-private class CookieModel extends SummaryModelCsv {
-  override predicate row(string row) {
-    row =
-      ["javax", "jakarta"] + ".ws.rs.core;Cookie;" +
-        [
-          "true;getDomain;;;Argument[-1];ReturnValue;taint;manual",
-          "true;getName;;;Argument[-1];ReturnValue;taint;manual",
-          "true;getPath;;;Argument[-1];ReturnValue;taint;manual",
-          "true;getValue;;;Argument[-1];ReturnValue;taint;manual",
-          "true;getVersion;;;Argument[-1];ReturnValue;taint;manual",
-          "true;toString;;;Argument[-1];ReturnValue;taint;manual",
-          "false;Cookie;;;Argument[0..4];Argument[-1];taint;manual",
-          "false;valueOf;;;Argument[0];ReturnValue;taint;manual"
-        ]
-  }
-}
-
-/**
- * Model NewCookie, a simple tuple type.
- */
-private class NewCookieModel extends SummaryModelCsv {
-  override predicate row(string row) {
-    row =
-      ["javax", "jakarta"] + ".ws.rs.core;NewCookie;" +
-        [
-          "true;getComment;;;Argument[-1];ReturnValue;taint;manual",
-          "true;getExpiry;;;Argument[-1];ReturnValue;taint;manual",
-          "true;getMaxAge;;;Argument[-1];ReturnValue;taint;manual",
-          "true;toCookie;;;Argument[-1];ReturnValue;taint;manual",
-          "false;NewCookie;;;Argument[0..9];Argument[-1];taint;manual",
-          "false;valueOf;;;Argument[0];ReturnValue;taint;manual"
-        ]
-  }
-}
-
-/**
- * Model Form, a simple container type.
- */
-private class FormModel extends SummaryModelCsv {
-  override predicate row(string row) {
-    row =
-      ["javax", "jakarta"] + ".ws.rs.core;Form;" +
-        [
-          "false;Form;;;Argument[0].MapKey;Argument[-1];taint;manual",
-          "false;Form;;;Argument[0].MapValue.Element;Argument[-1];taint;manual",
-          "false;Form;;;Argument[0..1];Argument[-1];taint;manual",
-          "true;asMap;;;Argument[-1];ReturnValue;taint;manual",
-          "true;param;;;Argument[0..1];Argument[-1];taint;manual",
-          "true;param;;;Argument[-1];ReturnValue;value;manual"
-        ]
-  }
-}
-
-/**
- * Model GenericEntity, a wrapper for HTTP entities (e.g., documents).
- */
-private class GenericEntityModel extends SummaryModelCsv {
-  override predicate row(string row) {
-    row =
-      ["javax", "jakarta"] + ".ws.rs.core;GenericEntity;" +
-        [
-          "false;GenericEntity;;;Argument[0];Argument[-1];taint;manual",
-          "true;getEntity;;;Argument[-1];ReturnValue;taint;manual"
-        ]
-  }
-}
-
-/**
- * Model MediaType, which provides accessors for elements of Content-Type and similar
- * media type specifications.
- */
-private class MediaTypeModel extends SummaryModelCsv {
-  override predicate row(string row) {
-    row =
-      ["javax", "jakarta"] + ".ws.rs.core;MediaType;" +
-        [
-          "false;MediaType;;;Argument[0..2];Argument[-1];taint;manual",
-          "true;getParameters;;;Argument[-1];ReturnValue;taint;manual",
-          "true;getSubtype;;;Argument[-1];ReturnValue;taint;manual",
-          "true;getType;;;Argument[-1];ReturnValue;taint;manual",
-          "false;valueOf;;;Argument[0];ReturnValue;taint;manual",
-          "true;withCharset;;;Argument[-1];ReturnValue;taint;manual"
-        ]
-  }
-}
-
-/**
- * Model UriBuilder, which provides a fluent interface to build a URI from components.
- */
-private class UriBuilderModel extends SummaryModelCsv {
-  override predicate row(string row) {
-    row =
-      ["javax", "jakarta"] + ".ws.rs.core;UriBuilder;" +
-        [
-          "true;build;;;Argument[0].ArrayElement;ReturnValue;taint;manual",
-          "true;build;;;Argument[-1];ReturnValue;taint;manual",
-          "true;buildFromEncoded;;;Argument[0].ArrayElement;ReturnValue;taint;manual",
-          "true;buildFromEncoded;;;Argument[-1];ReturnValue;taint;manual",
-          "true;buildFromEncodedMap;;;Argument[0].MapKey;ReturnValue;taint;manual",
-          "true;buildFromEncodedMap;;;Argument[0].MapValue;ReturnValue;taint;manual",
-          "true;buildFromEncodedMap;;;Argument[-1];ReturnValue;taint;manual",
-          "true;buildFromMap;;;Argument[0].MapKey;ReturnValue;taint;manual",
-          "true;buildFromMap;;;Argument[0].MapValue;ReturnValue;taint;manual",
-          "true;buildFromMap;;;Argument[-1];ReturnValue;taint;manual",
-          "true;clone;;;Argument[-1];ReturnValue;taint;manual",
-          "true;fragment;;;Argument[0];ReturnValue;taint;manual",
-          "true;fragment;;;Argument[-1];ReturnValue;value;manual",
-          "false;fromLink;;;Argument[0];ReturnValue;taint;manual",
-          "false;fromPath;;;Argument[0];ReturnValue;taint;manual",
-          "false;fromUri;;;Argument[0];ReturnValue;taint;manual",
-          "true;host;;;Argument[0];ReturnValue;taint;manual",
-          "true;host;;;Argument[-1];ReturnValue;value;manual",
-          "true;matrixParam;;;Argument[0];ReturnValue;taint;manual",
-          "true;matrixParam;;;Argument[1].ArrayElement;ReturnValue;taint;manual",
-          "true;matrixParam;;;Argument[-1];ReturnValue;value;manual",
-          "true;path;;;Argument[0..1];ReturnValue;taint;manual",
-          "true;path;;;Argument[-1];ReturnValue;value;manual",
-          "true;queryParam;;;Argument[0];ReturnValue;taint;manual",
-          "true;queryParam;;;Argument[1].ArrayElement;ReturnValue;taint;manual",
-          "true;queryParam;;;Argument[-1];ReturnValue;value;manual",
-          "true;replaceMatrix;;;Argument[0];ReturnValue;taint;manual",
-          "true;replaceMatrix;;;Argument[-1];ReturnValue;value;manual",
-          "true;replaceMatrixParam;;;Argument[0];ReturnValue;taint;manual",
-          "true;replaceMatrixParam;;;Argument[1].ArrayElement;ReturnValue;taint;manual",
-          "true;replaceMatrixParam;;;Argument[-1];ReturnValue;value;manual",
-          "true;replacePath;;;Argument[0];ReturnValue;taint;manual",
-          "true;replacePath;;;Argument[-1];ReturnValue;value;manual",
-          "true;replaceQuery;;;Argument[0];ReturnValue;taint;manual",
-          "true;replaceQuery;;;Argument[-1];ReturnValue;value;manual",
-          "true;replaceQueryParam;;;Argument[0];ReturnValue;taint;manual",
-          "true;replaceQueryParam;;;Argument[1].ArrayElement;ReturnValue;taint;manual",
-          "true;replaceQueryParam;;;Argument[-1];ReturnValue;value;manual",
-          "true;resolveTemplate;;;Argument[0..2];ReturnValue;taint;manual",
-          "true;resolveTemplate;;;Argument[-1];ReturnValue;value;manual",
-          "true;resolveTemplateFromEncoded;;;Argument[0..1];ReturnValue;taint;manual",
-          "true;resolveTemplateFromEncoded;;;Argument[-1];ReturnValue;value;manual",
-          "true;resolveTemplates;;;Argument[0].MapKey;ReturnValue;taint;manual",
-          "true;resolveTemplates;;;Argument[0].MapValue;ReturnValue;taint;manual",
-          "true;resolveTemplates;;;Argument[-1];ReturnValue;value;manual",
-          "true;resolveTemplatesFromEncoded;;;Argument[0].MapKey;ReturnValue;taint;manual",
-          "true;resolveTemplatesFromEncoded;;;Argument[0].MapValue;ReturnValue;taint;manual",
-          "true;resolveTemplatesFromEncoded;;;Argument[-1];ReturnValue;value;manual",
-          "true;scheme;;;Argument[0];ReturnValue;taint;manual",
-          "true;scheme;;;Argument[-1];ReturnValue;value;manual",
-          "true;schemeSpecificPart;;;Argument[0];ReturnValue;taint;manual",
-          "true;schemeSpecificPart;;;Argument[-1];ReturnValue;value;manual",
-          "true;segment;;;Argument[0].ArrayElement;ReturnValue;taint;manual",
-          "true;segment;;;Argument[-1];ReturnValue;value;manual",
-          "true;toTemplate;;;Argument[-1];ReturnValue;taint;manual",
-          "true;uri;;;Argument[0];ReturnValue;taint;manual",
-          "true;uri;;;Argument[-1];ReturnValue;value;manual",
-          "true;userInfo;;;Argument[0];ReturnValue;taint;manual",
-          "true;userInfo;;;Argument[-1];ReturnValue;value;manual"
-        ]
-  }
-}
-
-private class JaxRsUrlOpenSink extends SinkModelCsv {
-  override predicate row(string row) {
-    row = ["javax", "jakarta"] + ".ws.rs.client;Client;true;target;;;Argument[0];open-url;manual"
-  }
-}
-
 private predicate isXssVulnerableContentTypeExpr(Expr e) {
   isXssVulnerableContentType(getContentTypeString(e))
 }
@@ -784,17 +467,3 @@ private class VulnerableEntity extends XssSinkBarrier {
       ).getArgument(0)
   }
 }
-
-/**
- * Model sources stemming from `ContainerRequestContext`.
- */
-private class ContainerRequestContextModel extends SourceModelCsv {
-  override predicate row(string s) {
-    s =
-      ["javax", "jakarta"] + ".ws.rs.container;ContainerRequestContext;true;" +
-        [
-          "getAcceptableLanguages", "getAcceptableMediaTypes", "getCookies", "getEntityStream",
-          "getHeaders", "getHeaderString", "getLanguage", "getMediaType", "getUriInfo"
-        ] + ";;;ReturnValue;remote;manual"
-  }
-}
diff --git a/java/ql/lib/semmle/code/java/frameworks/Jdbc.qll b/java/ql/lib/semmle/code/java/frameworks/Jdbc.qll
index ba9dd8d445c..be22f2716be 100644
--- a/java/ql/lib/semmle/code/java/frameworks/Jdbc.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/Jdbc.qll
@@ -34,33 +34,3 @@ class ResultSetGetStringMethod extends Method {
     getReturnType() instanceof TypeString
   }
 }
-
-/*--- Other definitions ---*/
-private class SqlSinkCsv extends SinkModelCsv {
-  override predicate row(string row) {
-    row =
-      [
-        //"package;type;overrides;name;signature;ext;spec;kind"
-        "java.sql;Connection;true;prepareStatement;;;Argument[0];sql;manual",
-        "java.sql;Connection;true;prepareCall;;;Argument[0];sql;manual",
-        "java.sql;Statement;true;execute;;;Argument[0];sql;manual",
-        "java.sql;Statement;true;executeQuery;;;Argument[0];sql;manual",
-        "java.sql;Statement;true;executeUpdate;;;Argument[0];sql;manual",
-        "java.sql;Statement;true;executeLargeUpdate;;;Argument[0];sql;manual",
-        "java.sql;Statement;true;addBatch;;;Argument[0];sql;manual"
-      ]
-  }
-}
-
-private class SsrfSinkCsv extends SinkModelCsv {
-  override predicate row(string row) {
-    row =
-      [
-        //"package;type;overrides;name;signature;ext;spec;kind"
-        "java.sql;DriverManager;false;getConnection;(String);;Argument[0];jdbc-url;manual",
-        "java.sql;DriverManager;false;getConnection;(String,Properties);;Argument[0];jdbc-url;manual",
-        "java.sql;DriverManager;false;getConnection;(String,String,String);;Argument[0];jdbc-url;manual",
-        "java.sql;Driver;false;connect;(String,Properties);;Argument[0];jdbc-url;manual"
-      ]
-  }
-}
diff --git a/java/ql/lib/semmle/code/java/frameworks/Jdbi.qll b/java/ql/lib/semmle/code/java/frameworks/Jdbi.qll
deleted file mode 100644
index 698d27d07ed..00000000000
--- a/java/ql/lib/semmle/code/java/frameworks/Jdbi.qll
+++ /dev/null
@@ -1,21 +0,0 @@
-/**
- * Definitions of sinks in the JDBI library.
- */
-
-import java
-private import semmle.code.java.dataflow.ExternalFlow
-
-private class SsrfSinkCsv extends SinkModelCsv {
-  override predicate row(string row) {
-    row =
-      [
-        //"package;type;overrides;name;signature;ext;spec;kind"
-        "org.jdbi.v3.core;Jdbi;false;create;(String);;Argument[0];jdbc-url;manual",
-        "org.jdbi.v3.core;Jdbi;false;create;(String,Properties);;Argument[0];jdbc-url;manual",
-        "org.jdbi.v3.core;Jdbi;false;create;(String,String,String);;Argument[0];jdbc-url;manual",
-        "org.jdbi.v3.core;Jdbi;false;open;(String);;Argument[0];jdbc-url;manual",
-        "org.jdbi.v3.core;Jdbi;false;open;(String,Properties);;Argument[0];jdbc-url;manual",
-        "org.jdbi.v3.core;Jdbi;false;open;(String,String,String);;Argument[0];jdbc-url;manual"
-      ]
-  }
-}
diff --git a/java/ql/lib/semmle/code/java/frameworks/JoddJson.qll b/java/ql/lib/semmle/code/java/frameworks/JoddJson.qll
index 9ed563091d7..5440b1ca5d6 100644
--- a/java/ql/lib/semmle/code/java/frameworks/JoddJson.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/JoddJson.qll
@@ -41,28 +41,3 @@ class AllowClassMethod extends Method {
     this.hasName("allowClass")
   }
 }
-
-/**
- * A partial model of jodd.json.JsonParser noting fluent methods.
- *
- * This means that DataFlow::localFlow and similar methods are aware
- * that the result of (e.g.) JsonParser.allowClass is an alias of the
- * qualifier.
- */
-private class JsonParserFluentMethods extends SummaryModelCsv {
-  override predicate row(string s) {
-    s =
-      [
-        "jodd.json;JsonParser;false;allowAllClasses;;;Argument[-1];ReturnValue;value;manual",
-        "jodd.json;JsonParser;false;allowClass;;;Argument[-1];ReturnValue;value;manual",
-        "jodd.json;JsonParser;false;lazy;;;Argument[-1];ReturnValue;value;manual",
-        "jodd.json;JsonParser;false;looseMode;;;Argument[-1];ReturnValue;value;manual",
-        "jodd.json;JsonParser;false;map;;;Argument[-1];ReturnValue;value;manual",
-        "jodd.json;JsonParser;false;setClassMetadataName;;;Argument[-1];ReturnValue;value;manual",
-        "jodd.json;JsonParser;false;strictTypes;;;Argument[-1];ReturnValue;value;manual",
-        "jodd.json;JsonParser;false;useAltPaths;;;Argument[-1];ReturnValue;value;manual",
-        "jodd.json;JsonParser;false;withClassMetadata;;;Argument[-1];ReturnValue;value;manual",
-        "jodd.json;JsonParser;false;withValueConverter;;;Argument[-1];ReturnValue;value;manual"
-      ]
-  }
-}
diff --git a/java/ql/lib/semmle/code/java/frameworks/JsonJava.qll b/java/ql/lib/semmle/code/java/frameworks/JsonJava.qll
deleted file mode 100644
index b8c79a010c0..00000000000
--- a/java/ql/lib/semmle/code/java/frameworks/JsonJava.qll
+++ /dev/null
@@ -1,252 +0,0 @@
-/**
- * Provides models for working with the JSON-java library (package `org.json`).
- */
-
-private import semmle.code.java.dataflow.ExternalFlow
-
-private class FlowModels extends SummaryModelCsv {
-  override predicate row(string row) {
-    row =
-      [
-        "org.json;JSONString;true;toJSONString;;;Argument[-1];ReturnValue;taint;manual",
-        "org.json;XMLXsiTypeConverter;true;convert;;;Argument[0];ReturnValue;taint;manual",
-        "org.json;CDL;false;rowToJSONArray;;;Argument[0];ReturnValue;taint;manual",
-        "org.json;CDL;false;rowToJSONObject;;;Argument[0..1];ReturnValue;taint;manual",
-        "org.json;CDL;false;rowToString;;;Argument[0];ReturnValue;taint;manual",
-        "org.json;CDL;false;toJSONArray;;;Argument[0..1];ReturnValue;taint;manual",
-        "org.json;CDL;false;toString;;;Argument[0..1];ReturnValue;taint;manual",
-        "org.json;Cookie;false;escape;;;Argument[0];ReturnValue;taint;manual",
-        "org.json;Cookie;false;toJSONObject;;;Argument[0];ReturnValue;taint;manual",
-        "org.json;Cookie;false;toString;;;Argument[0];ReturnValue;taint;manual",
-        "org.json;Cookie;false;unescape;;;Argument[0];ReturnValue;taint;manual",
-        "org.json;CookieList;false;toJSONObject;;;Argument[0];ReturnValue;taint;manual",
-        "org.json;CookieList;false;toString;;;Argument[0];ReturnValue;taint;manual",
-        "org.json;HTTP;false;toJSONObject;;;Argument[0];ReturnValue;taint;manual",
-        "org.json;HTTP;false;toString;;;Argument[0];ReturnValue;taint;manual",
-        "org.json;HTTPTokener;false;HTTPTokener;;;Argument[0];Argument[-1];taint;manual",
-        "org.json;HTTPTokener;false;nextToken;;;Argument[-1];ReturnValue;taint;manual",
-        "org.json;JSONArray;false;JSONArray;(Collection);;Argument[0].Element;Argument[-1];taint;manual",
-        "org.json;JSONArray;false;JSONArray;(Iterable);;Argument[0].Element;Argument[-1];taint;manual",
-        "org.json;JSONArray;false;JSONArray;(JSONArray);;Argument[0];Argument[-1];taint;manual",
-        "org.json;JSONArray;false;JSONArray;(JSONTokener);;Argument[0];Argument[-1];taint;manual",
-        "org.json;JSONArray;false;JSONArray;(Object);;Argument[0].ArrayElement;Argument[-1];taint;manual",
-        "org.json;JSONArray;false;JSONArray;(String);;Argument[0];Argument[-1];taint;manual",
-        "org.json;JSONArray;false;get;;;Argument[-1];ReturnValue;taint;manual",
-        "org.json;JSONArray;false;getBigDecimal;;;Argument[-1];ReturnValue;taint;manual",
-        "org.json;JSONArray;false;getBigInteger;;;Argument[-1];ReturnValue;taint;manual",
-        "org.json;JSONArray;false;getBoolean;;;Argument[-1];ReturnValue;taint;manual",
-        "org.json;JSONArray;false;getDouble;;;Argument[-1];ReturnValue;taint;manual",
-        "org.json;JSONArray;false;getEnum;;;Argument[-1];ReturnValue;taint;manual",
-        "org.json;JSONArray;false;getFloat;;;Argument[-1];ReturnValue;taint;manual",
-        "org.json;JSONArray;false;getInt;;;Argument[-1];ReturnValue;taint;manual",
-        "org.json;JSONArray;false;getJSONArray;;;Argument[-1];ReturnValue;taint;manual",
-        "org.json;JSONArray;false;getJSONObject;;;Argument[-1];ReturnValue;taint;manual",
-        "org.json;JSONArray;false;getLong;;;Argument[-1];ReturnValue;taint;manual",
-        "org.json;JSONArray;false;getNumber;;;Argument[-1];ReturnValue;taint;manual",
-        "org.json;JSONArray;false;getString;;;Argument[-1];ReturnValue;taint;manual",
-        "org.json;JSONArray;false;iterator;;;Argument[-1];ReturnValue.Element;taint;manual",
-        "org.json;JSONArray;false;join;;;Argument[-1];ReturnValue;taint;manual",
-        "org.json;JSONArray;false;join;;;Argument[0];ReturnValue;taint;manual",
-        "org.json;JSONArray;false;opt;;;Argument[-1];ReturnValue;taint;manual",
-        "org.json;JSONArray;false;optBigDecimal;;;Argument[-1];ReturnValue;taint;manual",
-        "org.json;JSONArray;false;optBigInteger;;;Argument[-1];ReturnValue;taint;manual",
-        "org.json;JSONArray;false;optBoolean;;;Argument[-1];ReturnValue;taint;manual",
-        "org.json;JSONArray;false;optDouble;;;Argument[-1];ReturnValue;taint;manual",
-        "org.json;JSONArray;false;optEnum;;;Argument[-1];ReturnValue;taint;manual",
-        "org.json;JSONArray;false;optFloat;;;Argument[-1];ReturnValue;taint;manual",
-        "org.json;JSONArray;false;optInt;;;Argument[-1];ReturnValue;taint;manual",
-        "org.json;JSONArray;false;optJSONArray;;;Argument[-1];ReturnValue;taint;manual",
-        "org.json;JSONArray;false;optJSONObject;;;Argument[-1];ReturnValue;taint;manual",
-        "org.json;JSONArray;false;optLong;;;Argument[-1];ReturnValue;taint;manual",
-        "org.json;JSONArray;false;optNumber;;;Argument[-1];ReturnValue;taint;manual",
-        "org.json;JSONArray;false;optQuery;;;Argument[-1];ReturnValue;taint;manual",
-        "org.json;JSONArray;false;optString;;;Argument[-1];ReturnValue;taint;manual",
-        // Default values that may be returned by the `opt*` methods above:
-        "org.json;JSONArray;false;optBigDecimal;;;Argument[1];ReturnValue;value;manual",
-        "org.json;JSONArray;false;optBigInteger;;;Argument[1];ReturnValue;value;manual",
-        "org.json;JSONArray;false;optBoolean;;;Argument[1];ReturnValue;value;manual",
-        "org.json;JSONArray;false;optDouble;;;Argument[1];ReturnValue;value;manual",
-        "org.json;JSONArray;false;optEnum;;;Argument[2];ReturnValue;value;manual",
-        "org.json;JSONArray;false;optFloat;;;Argument[1];ReturnValue;value;manual",
-        "org.json;JSONArray;false;optInt;;;Argument[1];ReturnValue;value;manual",
-        "org.json;JSONArray;false;optLong;;;Argument[1];ReturnValue;value;manual",
-        "org.json;JSONArray;false;optNumber;;;Argument[1];ReturnValue;value;manual",
-        "org.json;JSONArray;false;optString;;;Argument[1];ReturnValue;value;manual",
-        "org.json;JSONArray;false;put;;;Argument[-1];ReturnValue;value;manual",
-        "org.json;JSONArray;false;put;(boolean);;Argument[0];Argument[-1];taint;manual",
-        "org.json;JSONArray;false;put;(Collection);;Argument[0].Element;Argument[-1];taint;manual",
-        "org.json;JSONArray;false;put;(double);;Argument[0];Argument[-1];taint;manual",
-        "org.json;JSONArray;false;put;(float);;Argument[0];Argument[-1];taint;manual",
-        "org.json;JSONArray;false;put;(int);;Argument[0];Argument[-1];taint;manual",
-        "org.json;JSONArray;false;put;(long);;Argument[0];Argument[-1];taint;manual",
-        "org.json;JSONArray;false;put;(Map);;Argument[0].MapKey;Argument[-1];taint;manual",
-        "org.json;JSONArray;false;put;(Map);;Argument[0].MapValue;Argument[-1];taint;manual",
-        "org.json;JSONArray;false;put;(Object);;Argument[0];Argument[-1];taint;manual",
-        "org.json;JSONArray;false;put;(int,boolean);;Argument[1];Argument[-1];taint;manual",
-        "org.json;JSONArray;false;put;(int,Collection);;Argument[1].Element;Argument[-1];taint;manual",
-        "org.json;JSONArray;false;put;(int,double);;Argument[1];Argument[-1];taint;manual",
-        "org.json;JSONArray;false;put;(int,float);;Argument[1];Argument[-1];taint;manual",
-        "org.json;JSONArray;false;put;(int,int);;Argument[1];Argument[-1];taint;manual",
-        "org.json;JSONArray;false;put;(int,long);;Argument[1];Argument[-1];taint;manual",
-        "org.json;JSONArray;false;put;(int,Map);;Argument[1].MapKey;Argument[-1];taint;manual",
-        "org.json;JSONArray;false;put;(int,Map);;Argument[1].MapValue;Argument[-1];taint;manual",
-        "org.json;JSONArray;false;put;(int,Object);;Argument[1];Argument[-1];taint;manual",
-        "org.json;JSONArray;false;putAll;;;Argument[-1];ReturnValue;value;manual",
-        "org.json;JSONArray;false;putAll;(Collection);;Argument[0].Element;Argument[-1];taint;manual",
-        "org.json;JSONArray;false;putAll;(Iterable);;Argument[0].Element;Argument[-1];taint;manual",
-        "org.json;JSONArray;false;putAll;(JSONArray);;Argument[0];Argument[-1];taint;manual",
-        "org.json;JSONArray;false;putAll;(Object);;Argument[0];Argument[-1];taint;manual",
-        "org.json;JSONArray;false;query;;;Argument[-1];ReturnValue;taint;manual",
-        "org.json;JSONArray;false;remove;;;Argument[-1];ReturnValue;taint;manual",
-        "org.json;JSONArray;false;toJSONObject;;;Argument[0];ReturnValue;taint;manual",
-        "org.json;JSONArray;false;toJSONObject;;;Argument[-1];ReturnValue;taint;manual",
-        "org.json;JSONArray;false;toList;;;Argument[0];ReturnValue.Element;taint;manual",
-        "org.json;JSONArray;false;toString;;;Argument[0];ReturnValue;taint;manual",
-        "org.json;JSONArray;false;write;;;Argument[-1];Argument[0];taint;manual",
-        "org.json;JSONArray;false;write;;;Argument[0];ReturnValue;value;manual",
-        "org.json;JSONML;false;toJSONArray;;;Argument[0];ReturnValue;taint;manual",
-        "org.json;JSONML;false;toJSONObject;;;Argument[0];ReturnValue;taint;manual",
-        "org.json;JSONML;false;toString;;;Argument[0];ReturnValue;taint;manual",
-        "org.json;JSONObject;false;JSONObject;(JSONObject,String[]);;Argument[0];Argument[-1];taint;manual",
-        "org.json;JSONObject;false;JSONObject;(JSONObject,String[]);;Argument[1].ArrayElement;Argument[-1];taint;manual",
-        "org.json;JSONObject;false;JSONObject;(JSONTokener);;Argument[0];Argument[-1];taint;manual",
-        "org.json;JSONObject;false;JSONObject;(Map);;Argument[0].MapKey;Argument[-1];taint;manual",
-        "org.json;JSONObject;false;JSONObject;(Map);;Argument[0].MapValue;Argument[-1];taint;manual",
-        "org.json;JSONObject;false;JSONObject;(Object);;Argument[0];Argument[-1];taint;manual",
-        "org.json;JSONObject;false;JSONObject;(Object,String[]);;Argument[0];Argument[-1];taint;manual",
-        "org.json;JSONObject;false;JSONObject;(Object,String[]);;Argument[1].ArrayElement;Argument[-1];taint;manual",
-        "org.json;JSONObject;false;JSONObject;(String);;Argument[0];Argument[-1];taint;manual",
-        "org.json;JSONObject;false;JSONObject;(String,Locale);;Argument[0];Argument[-1];taint;manual",
-        "org.json;JSONObject;false;accumulate;;;Argument[0..1];Argument[-1];taint;manual",
-        "org.json;JSONObject;false;accumulate;;;Argument[-1];ReturnValue;value;manual",
-        "org.json;JSONObject;false;append;;;Argument[0..1];Argument[-1];taint;manual",
-        "org.json;JSONObject;false;append;;;Argument[-1];ReturnValue;value;manual",
-        "org.json;JSONObject;false;doubleToString;;;Argument[0];ReturnValue;taint;manual",
-        "org.json;JSONObject;true;entrySet;;;Argument[-1];ReturnValue.Element;taint;manual",
-        "org.json;JSONObject;false;get;;;Argument[-1];ReturnValue;taint;manual",
-        "org.json;JSONObject;false;getBigDecimal;;;Argument[-1];ReturnValue;taint;manual",
-        "org.json;JSONObject;false;getBigInteger;;;Argument[-1];ReturnValue;taint;manual",
-        "org.json;JSONObject;false;getBoolean;;;Argument[-1];ReturnValue;taint;manual",
-        "org.json;JSONObject;false;getDouble;;;Argument[-1];ReturnValue;taint;manual",
-        "org.json;JSONObject;false;getEnum;;;Argument[-1];ReturnValue;taint;manual",
-        "org.json;JSONObject;false;getFloat;;;Argument[-1];ReturnValue;taint;manual",
-        "org.json;JSONObject;false;getInt;;;Argument[-1];ReturnValue;taint;manual",
-        "org.json;JSONObject;false;getJSONArray;;;Argument[-1];ReturnValue;taint;manual",
-        "org.json;JSONObject;false;getJSONObject;;;Argument[-1];ReturnValue;taint;manual",
-        "org.json;JSONObject;false;getLong;;;Argument[-1];ReturnValue;taint;manual",
-        "org.json;JSONObject;false;getNames;;;Argument[0];ReturnValue.ArrayElement;taint;manual",
-        "org.json;JSONObject;false;getNumber;;;Argument[-1];ReturnValue;taint;manual",
-        "org.json;JSONObject;false;getString;;;Argument[-1];ReturnValue;taint;manual",
-        "org.json;JSONObject;false;increment;;;Argument[0];Argument[-1];taint;manual",
-        "org.json;JSONObject;false;increment;;;Argument[-1];ReturnValue;value;manual",
-        "org.json;JSONObject;false;keys;;;Argument[-1];ReturnValue.Element;taint;manual",
-        "org.json;JSONObject;false;keySet;;;Argument[-1];ReturnValue.Element;taint;manual",
-        "org.json;JSONObject;false;names;;;Argument[-1];ReturnValue;taint;manual", // Returns a JSONArray, hence this has no Element qualifier or similar
-        "org.json;JSONObject;false;numberToString;;;Argument[0];ReturnValue;taint;manual",
-        "org.json;JSONObject;false;opt;;;Argument[-1];ReturnValue;taint;manual",
-        "org.json;JSONObject;false;optBigDecimal;;;Argument[-1];ReturnValue;taint;manual",
-        "org.json;JSONObject;false;optBigInteger;;;Argument[-1];ReturnValue;taint;manual",
-        "org.json;JSONObject;false;optBoolean;;;Argument[-1];ReturnValue;taint;manual",
-        "org.json;JSONObject;false;optDouble;;;Argument[-1];ReturnValue;taint;manual",
-        "org.json;JSONObject;false;optEnum;;;Argument[-1];ReturnValue;taint;manual",
-        "org.json;JSONObject;false;optFloat;;;Argument[-1];ReturnValue;taint;manual",
-        "org.json;JSONObject;false;optInt;;;Argument[-1];ReturnValue;taint;manual",
-        "org.json;JSONObject;false;optJSONArray;;;Argument[-1];ReturnValue;taint;manual",
-        "org.json;JSONObject;false;optJSONObject;;;Argument[-1];ReturnValue;taint;manual",
-        "org.json;JSONObject;false;optLong;;;Argument[-1];ReturnValue;taint;manual",
-        "org.json;JSONObject;false;optNumber;;;Argument[-1];ReturnValue;taint;manual",
-        "org.json;JSONObject;false;optQuery;;;Argument[-1];ReturnValue;taint;manual",
-        "org.json;JSONObject;false;optString;;;Argument[-1];ReturnValue;taint;manual",
-        // Default values that may be returned by the `opt*` methods above:
-        "org.json;JSONObject;false;optBigDecimal;;;Argument[1];ReturnValue;value;manual",
-        "org.json;JSONObject;false;optBigInteger;;;Argument[1];ReturnValue;value;manual",
-        "org.json;JSONObject;false;optBoolean;;;Argument[1];ReturnValue;value;manual",
-        "org.json;JSONObject;false;optDouble;;;Argument[1];ReturnValue;value;manual",
-        "org.json;JSONObject;false;optEnum;;;Argument[2];ReturnValue;value;manual",
-        "org.json;JSONObject;false;optFloat;;;Argument[1];ReturnValue;value;manual",
-        "org.json;JSONObject;false;optInt;;;Argument[1];ReturnValue;value;manual",
-        "org.json;JSONObject;false;optLong;;;Argument[1];ReturnValue;value;manual",
-        "org.json;JSONObject;false;optNumber;;;Argument[1];ReturnValue;value;manual",
-        "org.json;JSONObject;false;optString;;;Argument[1];ReturnValue;value;manual",
-        "org.json;JSONObject;false;put;;;Argument[-1];ReturnValue;value;manual",
-        "org.json;JSONObject;false;put;(String,boolean);;Argument[0];Argument[-1];taint;manual",
-        "org.json;JSONObject;false;put;(String,Collection);;Argument[0];Argument[-1];taint;manual",
-        "org.json;JSONObject;false;put;(String,double);;Argument[0];Argument[-1];taint;manual",
-        "org.json;JSONObject;false;put;(String,float);;Argument[0];Argument[-1];taint;manual",
-        "org.json;JSONObject;false;put;(String,int);;Argument[0];Argument[-1];taint;manual",
-        "org.json;JSONObject;false;put;(String,long);;Argument[0];Argument[-1];taint;manual",
-        "org.json;JSONObject;false;put;(String,Map);;Argument[0];Argument[-1];taint;manual",
-        "org.json;JSONObject;false;put;(String,Object);;Argument[0];Argument[-1];taint;manual",
-        "org.json;JSONObject;false;put;(String,boolean);;Argument[1];Argument[-1];taint;manual",
-        "org.json;JSONObject;false;put;(String,Collection);;Argument[1].Element;Argument[-1];taint;manual",
-        "org.json;JSONObject;false;put;(String,double);;Argument[1];Argument[-1];taint;manual",
-        "org.json;JSONObject;false;put;(String,float);;Argument[1];Argument[-1];taint;manual",
-        "org.json;JSONObject;false;put;(String,int);;Argument[1];Argument[-1];taint;manual",
-        "org.json;JSONObject;false;put;(String,long);;Argument[1];Argument[-1];taint;manual",
-        "org.json;JSONObject;false;put;(String,Map);;Argument[1].MapKey;Argument[-1];taint;manual",
-        "org.json;JSONObject;false;put;(String,Map);;Argument[1].MapValue;Argument[-1];taint;manual",
-        "org.json;JSONObject;false;put;(String,Object);;Argument[1];Argument[-1];taint;manual",
-        "org.json;JSONObject;false;putOnce;;;Argument[-1];ReturnValue;value;manual",
-        "org.json;JSONObject;false;putOnce;;;Argument[0..1];Argument[-1];taint;manual",
-        "org.json;JSONObject;false;putOpt;;;Argument[-1];ReturnValue;value;manual",
-        "org.json;JSONObject;false;putOpt;;;Argument[0..1];Argument[-1];taint;manual",
-        "org.json;JSONObject;false;query;;;Argument[-1];ReturnValue;taint;manual",
-        "org.json;JSONObject;false;quote;(String);;Argument[0];ReturnValue;taint;manual",
-        "org.json;JSONObject;false;quote;(String,Writer);;Argument[0];Argument[1];taint;manual",
-        "org.json;JSONObject;false;quote;(String,Writer);;Argument[1];ReturnValue;value;manual",
-        "org.json;JSONObject;false;remove;;;Argument[-1];ReturnValue;taint;manual",
-        "org.json;JSONObject;false;stringToValue;;;Argument[0];ReturnValue;taint;manual",
-        "org.json;JSONObject;false;toJSONArray;;;Argument[-1];ReturnValue;taint;manual",
-        "org.json;JSONObject;false;toMap;;;Argument[-1];ReturnValue.MapKey;taint;manual",
-        "org.json;JSONObject;false;toMap;;;Argument[-1];ReturnValue.MapValue;taint;manual",
-        "org.json;JSONObject;false;toString;;;Argument[-1];ReturnValue;taint;manual",
-        "org.json;JSONObject;false;valueToString;;;Argument[0];ReturnValue;taint;manual",
-        "org.json;JSONObject;false;wrap;;;Argument[0];ReturnValue;taint;manual",
-        "org.json;JSONObject;false;write;;;Argument[-1];Argument[0];taint;manual",
-        "org.json;JSONObject;false;write;;;Argument[0];ReturnValue;value;manual",
-        "org.json;JSONPointer;false;JSONPointer;(List);;Argument[0].Element;Argument[-1];taint;manual",
-        "org.json;JSONPointer;false;JSONPointer;(String);;Argument[0];Argument[-1];taint;manual",
-        "org.json;JSONPointer;false;queryFrom;;;Argument[0];ReturnValue;taint;manual",
-        "org.json;JSONPointer;false;toString;;;Argument[-1];ReturnValue;taint;manual",
-        "org.json;JSONPointer;false;toURIFragment;;;Argument[-1];ReturnValue;taint;manual",
-        "org.json;JSONPointer$Builder;false;append;;;Argument[0];Argument[-1];taint;manual",
-        "org.json;JSONPointer$Builder;false;append;;;Argument[-1];ReturnValue;value;manual",
-        "org.json;JSONPointer$Builder;false;build;;;Argument[-1];ReturnValue;taint;manual",
-        "org.json;JSONStringer;false;toString;;;Argument[-1];ReturnValue;taint;manual",
-        "org.json;JSONTokener;true;JSONTokener;;;Argument[0];Argument[-1];taint;manual",
-        "org.json;JSONTokener;true;next;;;Argument[-1];ReturnValue;taint;manual",
-        "org.json;JSONTokener;true;nextClean;;;Argument[-1];ReturnValue;taint;manual",
-        "org.json;JSONTokener;true;nextString;;;Argument[-1];ReturnValue;taint;manual",
-        "org.json;JSONTokener;true;nextTo;;;Argument[-1];ReturnValue;taint;manual",
-        "org.json;JSONTokener;true;nextValue;;;Argument[-1];ReturnValue;taint;manual",
-        "org.json;JSONTokener;true;syntaxError;;;Argument[0..1];ReturnValue;taint;manual",
-        "org.json;JSONTokener;true;toString;;;Argument[-1];ReturnValue;taint;manual",
-        // The following model doesn't work yet due to lack of support for reverse taint flow:
-        "org.json;JSONWriter;true;JSONWriter;;;Argument[-1];Argument[0];taint;manual",
-        "org.json;JSONWriter;true;key;;;Argument[0];Argument[-1];taint;manual",
-        "org.json;JSONWriter;true;value;;;Argument[0];Argument[-1];taint;manual",
-        "org.json;JSONWriter;true;valueToString;;;Argument[0];ReturnValue;taint;manual",
-        "org.json;JSONWriter;true;array;;;Argument[-1];ReturnValue;value;manual",
-        "org.json;JSONWriter;true;endArray;;;Argument[-1];ReturnValue;value;manual",
-        "org.json;JSONWriter;true;endObject;;;Argument[-1];ReturnValue;value;manual",
-        "org.json;JSONWriter;true;key;;;Argument[-1];ReturnValue;value;manual",
-        "org.json;JSONWriter;true;object;;;Argument[-1];ReturnValue;value;manual",
-        "org.json;JSONWriter;true;value;;;Argument[-1];ReturnValue;value;manual",
-        "org.json;Property;false;toJSONObject;;;Argument[0].MapKey;ReturnValue;taint;manual",
-        "org.json;Property;false;toJSONObject;;;Argument[0].MapValue;ReturnValue;taint;manual",
-        "org.json;Property;false;toProperties;;;Argument[0];ReturnValue.MapKey;taint;manual",
-        "org.json;Property;false;toProperties;;;Argument[0];ReturnValue.MapValue;taint;manual",
-        "org.json;XML;false;escape;;;Argument[0];ReturnValue;taint;manual",
-        "org.json;XML;false;stringToValue;;;Argument[0];ReturnValue;taint;manual",
-        "org.json;XML;false;toJSONObject;;;Argument[0];ReturnValue;taint;manual",
-        "org.json;XML;false;toString;;;Argument[0..1];ReturnValue;taint;manual",
-        "org.json;XML;false;unescape;;;Argument[0];ReturnValue;taint;manual",
-        "org.json;XMLTokener;false;XMLTokener;;;Argument[0];Argument[-1];taint;manual",
-        "org.json;XMLTokener;false;nextCDATA;;;Argument[-1];ReturnValue;taint;manual",
-        "org.json;XMLTokener;false;nextContent;;;Argument[-1];ReturnValue;taint;manual",
-        "org.json;XMLTokener;false;nextEntity;;;Argument[-1];ReturnValue;taint;manual",
-        "org.json;XMLTokener;false;nextMeta;;;Argument[-1];ReturnValue;taint;manual",
-        "org.json;XMLTokener;false;nextToken;;;Argument[-1];ReturnValue;taint;manual"
-      ]
-  }
-}
diff --git a/java/ql/lib/semmle/code/java/frameworks/Logging.qll b/java/ql/lib/semmle/code/java/frameworks/Logging.qll
deleted file mode 100644
index 4c00873781c..00000000000
--- a/java/ql/lib/semmle/code/java/frameworks/Logging.qll
+++ /dev/null
@@ -1,340 +0,0 @@
-/** Provides classes and predicates to reason about logging. */
-
-import java
-private import semmle.code.java.dataflow.ExternalFlow
-
-private class LoggingSummaryModels extends SummaryModelCsv {
-  override predicate row(string row) {
-    row =
-      [
-        "org.apache.logging.log4j;Logger;true;traceEntry;(Message);;Argument[0];ReturnValue;taint;manual",
-        "org.apache.logging.log4j;Logger;true;traceEntry;(String,Object[]);;Argument[0..1];ReturnValue;taint;manual",
-        "org.apache.logging.log4j;Logger;true;traceEntry;(String,Supplier[]);;Argument[0..1];ReturnValue;taint;manual",
-        "org.apache.logging.log4j;Logger;true;traceEntry;(Supplier[]);;Argument[0];ReturnValue;taint;manual",
-        "org.apache.logging.log4j;Logger;true;traceExit;(EntryMessage,Object);;Argument[1];ReturnValue;value;manual",
-        "org.apache.logging.log4j;Logger;true;traceExit;(Message,Object);;Argument[1];ReturnValue;value;manual",
-        "org.apache.logging.log4j;Logger;true;traceExit;(Object);;Argument[0];ReturnValue;value;manual",
-        "org.apache.logging.log4j;Logger;true;traceExit;(String,Object);;Argument[1];ReturnValue;value;manual",
-        "org.slf4j.spi;LoggingEventBuilder;true;addArgument;;;Argument[1];Argument[-1];taint;manual",
-        "org.slf4j.spi;LoggingEventBuilder;true;addArgument;;;Argument[-1];ReturnValue;value;manual",
-        "org.slf4j.spi;LoggingEventBuilder;true;addKeyValue;;;Argument[1];Argument[-1];taint;manual",
-        "org.slf4j.spi;LoggingEventBuilder;true;addKeyValue;;;Argument[-1];ReturnValue;value;manual",
-        "org.slf4j.spi;LoggingEventBuilder;true;addMarker;;;Argument[-1];ReturnValue;value;manual",
-        "org.slf4j.spi;LoggingEventBuilder;true;setCause;;;Argument[-1];ReturnValue;value;manual",
-        "java.util.logging;LogRecord;false;LogRecord;;;Argument[1];Argument[-1];taint;manual"
-      ]
-  }
-}
-
-private string jBossLogger() { result = "org.jboss.logging;" + ["BasicLogger", "Logger"] }
-
-private class LoggingSinkModels extends SinkModelCsv {
-  override predicate row(string row) {
-    row =
-      [
-        // org.apache.log4j.Category
-        "org.apache.log4j;Category;true;assertLog;;;Argument[1];logging;manual",
-        "org.apache.log4j;Category;true;debug;;;Argument[0];logging;manual",
-        "org.apache.log4j;Category;true;error;;;Argument[0];logging;manual",
-        "org.apache.log4j;Category;true;fatal;;;Argument[0];logging;manual",
-        "org.apache.log4j;Category;true;forcedLog;;;Argument[2];logging;manual",
-        "org.apache.log4j;Category;true;info;;;Argument[0];logging;manual",
-        "org.apache.log4j;Category;true;l7dlog;(Priority,String,Object[],Throwable);;Argument[2];logging;manual",
-        "org.apache.log4j;Category;true;log;(Priority,Object);;Argument[1];logging;manual",
-        "org.apache.log4j;Category;true;log;(Priority,Object,Throwable);;Argument[1];logging;manual",
-        "org.apache.log4j;Category;true;log;(String,Priority,Object,Throwable);;Argument[2];logging;manual",
-        "org.apache.log4j;Category;true;warn;;;Argument[0];logging;manual",
-        // org.apache.logging.log4j.Logger
-        "org.apache.logging.log4j;Logger;true;" +
-          ["debug", "error", "fatal", "info", "trace", "warn"] +
-          [
-            ";(CharSequence);;Argument[0];logging;manual",
-            ";(CharSequence,Throwable);;Argument[0];logging;manual",
-            ";(Marker,CharSequence);;Argument[1];logging;manual",
-            ";(Marker,CharSequence,Throwable);;Argument[1];logging;manual",
-            ";(Marker,Message);;Argument[1];logging;manual",
-            ";(Marker,MessageSupplier);;Argument[1];logging;manual",
-            ";(Marker,MessageSupplier);;Argument[1];logging;manual",
-            ";(Marker,MessageSupplier,Throwable);;Argument[1];logging;manual",
-            ";(Marker,Object);;Argument[1];logging;manual",
-            ";(Marker,Object,Throwable);;Argument[1];logging;manual",
-            ";(Marker,String);;Argument[1];logging;manual",
-            ";(Marker,String,Object[]);;Argument[1..2];logging;manual",
-            ";(Marker,String,Object);;Argument[1..2];logging;manual",
-            ";(Marker,String,Object,Object);;Argument[1..3];logging;manual",
-            ";(Marker,String,Object,Object,Object);;Argument[1..4];logging;manual",
-            ";(Marker,String,Object,Object,Object,Object);;Argument[1..5];logging;manual",
-            ";(Marker,String,Object,Object,Object,Object,Object);;Argument[1..6];logging;manual",
-            ";(Marker,String,Object,Object,Object,Object,Object,Object);;Argument[1..7];logging;manual",
-            ";(Marker,String,Object,Object,Object,Object,Object,Object,Object);;Argument[1..8];logging;manual",
-            ";(Marker,String,Object,Object,Object,Object,Object,Object,Object,Object);;Argument[1..9];logging;manual",
-            ";(Marker,String,Object,Object,Object,Object,Object,Object,Object,Object,Object);;Argument[1..10];logging;manual",
-            ";(Marker,String,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object);;Argument[1..11];logging;manual",
-            ";(Marker,String,Supplier);;Argument[1..2];logging;manual",
-            ";(Marker,String,Throwable);;Argument[1];logging;manual",
-            ";(Marker,Supplier);;Argument[1];logging;manual",
-            ";(Marker,Supplier,Throwable);;Argument[1];logging;manual",
-            ";(MessageSupplier);;Argument[0];logging;manual",
-            ";(MessageSupplier,Throwable);;Argument[0];logging;manual",
-            ";(Message);;Argument[0];logging;manual",
-            ";(Message,Throwable);;Argument[0];logging;manual",
-            ";(Object);;Argument[0];logging;manual",
-            ";(Object,Throwable);;Argument[0];logging;manual",
-            ";(String);;Argument[0];logging;manual",
-            ";(String,Object[]);;Argument[0..1];logging;manual",
-            ";(String,Object);;Argument[0..1];logging;manual",
-            ";(String,Object,Object);;Argument[0..2];logging;manual",
-            ";(String,Object,Object,Object);;Argument[0..3];logging;manual",
-            ";(String,Object,Object,Object,Object);;Argument[0..4];logging;manual",
-            ";(String,Object,Object,Object,Object,Object);;Argument[0..5];logging;manual",
-            ";(String,Object,Object,Object,Object,Object,Object);;Argument[0..6];logging;manual",
-            ";(String,Object,Object,Object,Object,Object,Object,Object);;Argument[0..7];logging;manual",
-            ";(String,Object,Object,Object,Object,Object,Object,Object,Object);;Argument[0..8];logging;manual",
-            ";(String,Object,Object,Object,Object,Object,Object,Object,Object,Object);;Argument[0..9];logging;manual",
-            ";(String,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object);;Argument[0..10];logging;manual",
-            ";(String,Supplier);;Argument[0..1];logging;manual",
-            ";(String,Throwable);;Argument[0];logging;manual",
-            ";(Supplier);;Argument[0];logging;manual",
-            ";(Supplier,Throwable);;Argument[0];logging;manual"
-          ],
-        "org.apache.logging.log4j;Logger;true;log" +
-          [
-            ";(Level,CharSequence);;Argument[1];logging;manual",
-            ";(Level,CharSequence,Throwable);;Argument[1];logging;manual",
-            ";(Level,Marker,CharSequence);;Argument[2];logging;manual",
-            ";(Level,Marker,CharSequence,Throwable);;Argument[2];logging;manual",
-            ";(Level,Marker,Message);;Argument[2];logging;manual",
-            ";(Level,Marker,MessageSupplier);;Argument[2];logging;manual",
-            ";(Level,Marker,MessageSupplier);;Argument[2];logging;manual",
-            ";(Level,Marker,MessageSupplier,Throwable);;Argument[2];logging;manual",
-            ";(Level,Marker,Object);;Argument[2];logging;manual",
-            ";(Level,Marker,Object,Throwable);;Argument[2];logging;manual",
-            ";(Level,Marker,String);;Argument[2];logging;manual",
-            ";(Level,Marker,String,Object[]);;Argument[2..3];logging;manual",
-            ";(Level,Marker,String,Object);;Argument[2..3];logging;manual",
-            ";(Level,Marker,String,Object,Object);;Argument[2..4];logging;manual",
-            ";(Level,Marker,String,Object,Object,Object);;Argument[2..5];logging;manual",
-            ";(Level,Marker,String,Object,Object,Object,Object);;Argument[2..6];logging;manual",
-            ";(Level,Marker,String,Object,Object,Object,Object,Object);;Argument[2..7];logging;manual",
-            ";(Level,Marker,String,Object,Object,Object,Object,Object,Object);;Argument[2..8];logging;manual",
-            ";(Level,Marker,String,Object,Object,Object,Object,Object,Object,Object);;Argument[2..9];logging;manual",
-            ";(Level,Marker,String,Object,Object,Object,Object,Object,Object,Object,Object);;Argument[2..10];logging;manual",
-            ";(Level,Marker,String,Object,Object,Object,Object,Object,Object,Object,Object,Object);;Argument[2..11];logging;manual",
-            ";(Level,Marker,String,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object);;Argument[2..12];logging;manual",
-            ";(Level,Marker,String,Supplier);;Argument[2..3];logging;manual",
-            ";(Level,Marker,String,Throwable);;Argument[2];logging;manual",
-            ";(Level,Marker,Supplier);;Argument[2];logging;manual",
-            ";(Level,Marker,Supplier,Throwable);;Argument[2];logging;manual",
-            ";(Level,Message);;Argument[1];logging;manual",
-            ";(Level,MessageSupplier);;Argument[1];logging;manual",
-            ";(Level,MessageSupplier,Throwable);;Argument[1];logging;manual",
-            ";(Level,Message);;Argument[1];logging;manual",
-            ";(Level,Message,Throwable);;Argument[1];logging;manual",
-            ";(Level,Object);;Argument[1];logging;manual",
-            ";(Level,Object);;Argument[1];logging;manual",
-            ";(Level,String);;Argument[1];logging;manual",
-            ";(Level,Object,Throwable);;Argument[1];logging;manual",
-            ";(Level,String);;Argument[1];logging;manual",
-            ";(Level,String,Object[]);;Argument[1..2];logging;manual",
-            ";(Level,String,Object);;Argument[1..2];logging;manual",
-            ";(Level,String,Object,Object);;Argument[1..3];logging;manual",
-            ";(Level,String,Object,Object,Object);;Argument[1..4];logging;manual",
-            ";(Level,String,Object,Object,Object,Object);;Argument[1..5];logging;manual",
-            ";(Level,String,Object,Object,Object,Object,Object);;Argument[1..6];logging;manual",
-            ";(Level,String,Object,Object,Object,Object,Object,Object);;Argument[1..7];logging;manual",
-            ";(Level,String,Object,Object,Object,Object,Object,Object,Object);;Argument[1..8];logging;manual",
-            ";(Level,String,Object,Object,Object,Object,Object,Object,Object,Object);;Argument[1..9];logging;manual",
-            ";(Level,String,Object,Object,Object,Object,Object,Object,Object,Object,Object);;Argument[1..10];logging;manual",
-            ";(Level,String,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object);;Argument[1..11];logging;manual",
-            ";(Level,String,Supplier);;Argument[1..2];logging;manual",
-            ";(Level,String,Throwable);;Argument[1];logging;manual",
-            ";(Level,Supplier);;Argument[1];logging;manual",
-            ";(Level,Supplier,Throwable);;Argument[1];logging;manual"
-          ], "org.apache.logging.log4j;Logger;true;entry;(Object[]);;Argument[0];logging;manual",
-        "org.apache.logging.log4j;Logger;true;logMessage;(Level,Marker,String,StackTraceElement,Message,Throwable);;Argument[4];logging;manual",
-        "org.apache.logging.log4j;Logger;true;printf;(Level,Marker,String,Object[]);;Argument[2..3];logging;manual",
-        "org.apache.logging.log4j;Logger;true;printf;(Level,String,Object[]);;Argument[1..2];logging;manual",
-        "org.apache.logging.log4j;Logger;true;traceEntry;(Message);;Argument[0];logging;manual",
-        "org.apache.logging.log4j;Logger;true;traceEntry;(String,Object[]);;Argument[0..1];logging;manual",
-        "org.apache.logging.log4j;Logger;true;traceEntry;(String,Supplier[]);;Argument[0..1];logging;manual",
-        "org.apache.logging.log4j;Logger;true;traceEntry;(Supplier[]);;Argument[0];logging;manual",
-        "org.apache.logging.log4j;Logger;true;traceExit;(EntryMessage);;Argument[0];logging;manual",
-        "org.apache.logging.log4j;Logger;true;traceExit;(EntryMessage,Object);;Argument[0..1];logging;manual",
-        "org.apache.logging.log4j;Logger;true;traceExit;(Message,Object);;Argument[0..1];logging;manual",
-        "org.apache.logging.log4j;Logger;true;traceExit;(Object);;Argument[0];logging;manual",
-        "org.apache.logging.log4j;Logger;true;traceExit;(String,Object);;Argument[0..1];logging;manual",
-        // org.apache.logging.log4j.LogBuilder
-        "org.apache.logging.log4j;LogBuilder;true;log;(CharSequence);;Argument[0];logging;manual",
-        "org.apache.logging.log4j;LogBuilder;true;log;(Message);;Argument[0];logging;manual",
-        "org.apache.logging.log4j;LogBuilder;true;log;(Object);;Argument[0];logging;manual",
-        "org.apache.logging.log4j;LogBuilder;true;log;(String);;Argument[0];logging;manual",
-        "org.apache.logging.log4j;LogBuilder;true;log;(String,Object[]);;Argument[0..1];logging;manual",
-        "org.apache.logging.log4j;LogBuilder;true;log;(String,Object);;Argument[0..1];logging;manual",
-        "org.apache.logging.log4j;LogBuilder;true;log;(String,Object,Object);;Argument[0..2];logging;manual",
-        "org.apache.logging.log4j;LogBuilder;true;log;(String,Object,Object,Object);;Argument[0..3];logging;manual",
-        "org.apache.logging.log4j;LogBuilder;true;log;(String,Object,Object,Object,Object);;Argument[0..4];logging;manual",
-        "org.apache.logging.log4j;LogBuilder;true;log;(String,Object,Object,Object,Object,Object);;Argument[0..5];logging;manual",
-        "org.apache.logging.log4j;LogBuilder;true;log;(String,Object,Object,Object,Object,Object,Object);;Argument[0..6];logging;manual",
-        "org.apache.logging.log4j;LogBuilder;true;log;(String,Object,Object,Object,Object,Object,Object,Object);;Argument[0..7];logging;manual",
-        "org.apache.logging.log4j;LogBuilder;true;log;(String,Object,Object,Object,Object,Object,Object,Object,Object);;Argument[0..8];logging;manual",
-        "org.apache.logging.log4j;LogBuilder;true;log;(String,Object,Object,Object,Object,Object,Object,Object,Object,Object);;Argument[0..9];logging;manual",
-        "org.apache.logging.log4j;LogBuilder;true;log;(String,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object);;Argument[0..10];logging;manual",
-        "org.apache.logging.log4j;LogBuilder;true;log;(String,Supplier);;Argument[0..1];logging;manual",
-        "org.apache.logging.log4j;LogBuilder;true;log;(Supplier);;Argument[0];logging;manual",
-        // org.apache.commons.logging.Log
-        "org.apache.commons.logging;Log;true;" +
-          ["debug", "error", "fatal", "info", "trace", "warn"] + ";;;Argument[0];logging;manual",
-        // org.jboss.logging.BasicLogger and org.jboss.logging.Logger
-        // (org.jboss.logging.Logger does not implement BasicLogger in some implementations like JBoss Application Server 4.0.4)
-        jBossLogger() + ";true;" + ["debug", "error", "fatal", "info", "trace", "warn"] +
-          [
-            ";(Object);;Argument[0];logging;manual",
-            ";(Object,Throwable);;Argument[0];logging;manual",
-            ";(Object,Object[]);;Argument[0..1];logging;manual",
-            ";(Object,Object[],Throwable);;Argument[0..1];logging;manual",
-            ";(String,Object,Object[],Throwable);;Argument[1..2];logging;manual",
-            ";(String,Object,Throwable);;Argument[1];logging;manual"
-          ],
-        jBossLogger() + ";true;log" +
-          [
-            ";(Level,Object);;Argument[1];logging;manual",
-            ";(Level,Object,Object[]);;Argument[1..2];logging;manual",
-            ";(Level,Object,Object[],Throwable);;Argument[1..2];logging;manual",
-            ";(Level,Object,Throwable);;Argument[1];logging;manual",
-            ";(Level,String,Object,Throwable);;Argument[2];logging;manual",
-            ";(String,Level,Object,Object[],Throwable);;Argument[2..3];logging;manual"
-          ],
-        jBossLogger() + ";true;" + ["debug", "error", "fatal", "info", "trace", "warn"] + ["f", "v"]
-          +
-          [
-            ";(String,Object[]);;Argument[0..1];logging;manual",
-            ";(String,Object);;Argument[0..1];logging;manual",
-            ";(String,Object,Object);;Argument[0..2];logging;manual",
-            ";(String,Object,Object,Object);;Argument[0..3];logging;manual",
-            ";(String,Object,Object,Object,Object);;Argument[0..4];logging;manual",
-            ";(Throwable,String,Object);;Argument[1..2];logging;manual",
-            ";(Throwable,String,Object,Object);;Argument[1..3];logging;manual",
-            ";(Throwable,String,Object,Object,Object);;Argument[0..4];logging;manual"
-          ],
-        jBossLogger() + ";true;log" + ["f", "v"] +
-          [
-            ";(Level,String,Object[]);;Argument[1..2];logging;manual",
-            ";(Level,String,Object);;Argument[1..2];logging;manual",
-            ";(Level,String,Object,Object);;Argument[1..3];logging;manual",
-            ";(Level,String,Object,Object,Object);;Argument[1..4];logging;manual",
-            ";(Level,String,Object,Object,Object,Object);;Argument[1..5];logging;manual",
-            ";(Level,Throwable,String,Object);;Argument[2..3];logging;manual",
-            ";(Level,Throwable,String,Object,Object);;Argument[2..4];logging;manual",
-            ";(Level,Throwable,String,Object,Object,Object);;Argument[1..5];logging;manual",
-            ";(String,Level,Throwable,String,Object[]);;Argument[3..4];logging;manual",
-            ";(String,Level,Throwable,String,Object);;Argument[3..4];logging;manual",
-            ";(String,Level,Throwable,String,Object,Object);;Argument[3..5];logging;manual",
-            ";(String,Level,Throwable,String,Object,Object,Object);;Argument[3..6];logging;manual"
-          ],
-        // org.slf4j.spi.LoggingEventBuilder
-        "org.slf4j.spi;LoggingEventBuilder;true;log;;;Argument[0];logging;manual",
-        "org.slf4j.spi;LoggingEventBuilder;true;log;(String,Object);;Argument[0..1];logging;manual",
-        "org.slf4j.spi;LoggingEventBuilder;true;log;(String,Object[]);;Argument[0..1];logging;manual",
-        "org.slf4j.spi;LoggingEventBuilder;true;log;(String,Object,Object);;Argument[0..2];logging;manual",
-        "org.slf4j.spi;LoggingEventBuilder;true;log;(Supplier);;Argument[0];logging;manual",
-        // org.slf4j.Logger
-        "org.slf4j;Logger;true;" + ["debug", "error", "info", "trace", "warn"] +
-          [
-            ";(String);;Argument[0];logging;manual",
-            ";(String,Object);;Argument[0..1];logging;manual",
-            ";(String,Object[]);;Argument[0..1];logging;manual",
-            ";(String,Object,Object);;Argument[0..2];logging;manual",
-            ";(String,Throwable);;Argument[0];logging;manual",
-            ";(Marker,String);;Argument[1];logging;manual",
-            ";(Marker,String,Object);;Argument[1..2];logging;manual",
-            ";(Marker,String,Object[]);;Argument[1..2];logging;manual",
-            ";(Marker,String,Object,Object);;Argument[1..3];logging;manual",
-            ";(Marker,String,Object,Object,Object);;Argument[1..4];logging;manual"
-          ],
-        // org.scijava.Logger
-        "org.scijava.log;Logger;true;alwaysLog;(int,Object,Throwable);;Argument[1];logging;manual",
-        "org.scijava.log;Logger;true;" + ["debug", "error", "info", "trace", "warn"] +
-          [
-            ";(Object);;Argument[0];logging;manual",
-            ";(Object,Throwable);;Argument[0];logging;manual"
-          ], "org.scijava.log;Logger;true;log;(int,Object);;Argument[1];logging;manual",
-        "org.scijava.log;Logger;true;log;(int,Object,Throwable);;Argument[1];logging;manual",
-        // com.google.common.flogger.LoggingApi
-        "com.google.common.flogger;LoggingApi;true;logVarargs;;;Argument[0..1];logging;manual",
-        "com.google.common.flogger;LoggingApi;true;log" +
-          [
-            ";;;Argument[0];logging;manual", ";(String,Object);;Argument[1];logging;manual",
-            ";(String,Object,Object);;Argument[1..2];logging;manual",
-            ";(String,Object,Object,Object);;Argument[1..3];logging;manual",
-            ";(String,Object,Object,Object,Object);;Argument[1..4];logging;manual",
-            ";(String,Object,Object,Object,Object,Object);;Argument[1..5];logging;manual",
-            ";(String,Object,Object,Object,Object,Object,Object);;Argument[1..6];logging;manual",
-            ";(String,Object,Object,Object,Object,Object,Object,Object);;Argument[1..7];logging;manual",
-            ";(String,Object,Object,Object,Object,Object,Object,Object,Object);;Argument[1..8];logging;manual",
-            ";(String,Object,Object,Object,Object,Object,Object,Object,Object,Object);;Argument[1..9];logging;manual",
-            ";(String,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object);;Argument[1..10];logging;manual",
-            ";(String,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object[]);;Argument[1..11];logging;manual",
-            ";(String,Object,boolean);;Argument[1];logging;manual",
-            ";(String,Object,char);;Argument[1];logging;manual",
-            ";(String,Object,byte);;Argument[1];logging;manual",
-            ";(String,Object,short);;Argument[1];logging;manual",
-            ";(String,Object,int);;Argument[1];logging;manual",
-            ";(String,Object,long);;Argument[1];logging;manual",
-            ";(String,Object,float);;Argument[1];logging;manual",
-            ";(String,Object,double);;Argument[1];logging;manual",
-            ";(String,boolean,Object);;Argument[2];logging;manual",
-            ";(String,char,Object);;Argument[2];logging;manual",
-            ";(String,byte,Object);;Argument[2];logging;manual",
-            ";(String,short,Object);;Argument[2];logging;manual",
-            ";(String,int,Object);;Argument[2];logging;manual",
-            ";(String,long,Object);;Argument[2];logging;manual",
-            ";(String,float,Object);;Argument[2];logging;manual",
-            ";(String,double,Object);;Argument[2];logging;manual"
-          ],
-        // java.lang.System$Logger
-        "java.lang;System$Logger;true;log;" +
-          [
-            "(Level,Object);;Argument[1]", "(Level,String);;Argument[1]",
-            "(Level,String,Object[]);;Argument[1..2]", "(Level,String,Throwable);;Argument[1]",
-            "(Level,String,Supplier);;Argument[1..2]",
-            "(Level,String,Supplier,Throwable);;Argument[1..2]",
-            "(Level,ResourceBundle,String,Object[]);;Argument[2..3]",
-            "(Level,ResourceBundle,String,Throwable);;Argument[2]"
-          ] + ";logging;manual",
-        // java.util.logging.Logger
-        "java.util.logging;Logger;true;" +
-          ["config", "fine", "finer", "finest", "info", "severe", "warning"] +
-          ";;;Argument[0];logging;manual",
-        "java.util.logging;Logger;true;entering;(String,String);;Argument[0..1];logging;manual",
-        "java.util.logging;Logger;true;entering;(String,String,Object);;Argument[0..2];logging;manual",
-        "java.util.logging;Logger;true;entering;(String,String,Object[]);;Argument[0..2];logging;manual",
-        "java.util.logging;Logger;true;exiting;(String,String);;Argument[0..1];logging;manual",
-        "java.util.logging;Logger;true;exiting;(String,String,Object);;Argument[0..2];logging;manual",
-        "java.util.logging;Logger;true;log;(Level,String);;Argument[1];logging;manual",
-        "java.util.logging;Logger;true;log;(Level,String,Object);;Argument[1..2];logging;manual",
-        "java.util.logging;Logger;true;log;(Level,String,Object[]);;Argument[1..2];logging;manual",
-        "java.util.logging;Logger;true;log;(Level,String,Throwable);;Argument[1];logging;manual",
-        "java.util.logging;Logger;true;log;(Level,Supplier);;Argument[1];logging;manual",
-        "java.util.logging;Logger;true;log;(Level,Throwable,Supplier);;Argument[2];logging;manual",
-        "java.util.logging;Logger;true;log;(LogRecord);;Argument[0];logging;manual",
-        "java.util.logging;Logger;true;logp;(Level,String,String,String);;Argument[1..3];logging;manual",
-        "java.util.logging;Logger;true;logp;(Level,String,String,String,Object);;Argument[1..4];logging;manual",
-        "java.util.logging;Logger;true;logp;(Level,String,String,String,Object[]);;Argument[1..4];logging;manual",
-        "java.util.logging;Logger;true;logp;(Level,String,String,String,Throwable);;Argument[1..3];logging;manual",
-        "java.util.logging;Logger;true;logp;(Level,String,String,Supplier);;Argument[1..3];logging;manual",
-        "java.util.logging;Logger;true;logp;(Level,String,String,Throwable,Supplier);;Argument[1..2];logging;manual",
-        "java.util.logging;Logger;true;logp;(Level,String,String,Throwable,Supplier);;Argument[4];logging;manual",
-        "java.util.logging;Logger;true;logrb;(Level,String,String,ResourceBundle,String,Object[]);;Argument[1..2];logging;manual",
-        "java.util.logging;Logger;true;logrb;(Level,String,String,ResourceBundle,String,Object[]);;Argument[4..5];logging;manual",
-        "java.util.logging;Logger;true;logrb;(Level,String,String,ResourceBundle,String,Throwable);;Argument[1..2];logging;manual",
-        "java.util.logging;Logger;true;logrb;(Level,String,String,ResourceBundle,String,Throwable);;Argument[4];logging;manual",
-        "java.util.logging;Logger;true;logrb;(Level,String,String,String,String);;Argument[1..4];logging;manual",
-        "java.util.logging;Logger;true;logrb;(Level,String,String,String,String,Object);;Argument[1..5];logging;manual",
-        "java.util.logging;Logger;true;logrb;(Level,String,String,String,String,Object[]);;Argument[1..5];logging;manual",
-        "java.util.logging;Logger;true;logrb;(Level,String,String,String,String,Throwable);;Argument[1..4];logging;manual",
-        // android.util.Log
-        "android.util;Log;true;" + ["d", "v", "i", "w", "e", "wtf"] +
-          ";;;Argument[1];logging;manual"
-      ]
-  }
-}
diff --git a/java/ql/lib/semmle/code/java/frameworks/MyBatis.qll b/java/ql/lib/semmle/code/java/frameworks/MyBatis.qll
index 6c16bb168bb..64b32c78003 100644
--- a/java/ql/lib/semmle/code/java/frameworks/MyBatis.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/MyBatis.qll
@@ -12,21 +12,6 @@ class MyBatisSqlRunner extends RefType {
   MyBatisSqlRunner() { this.hasQualifiedName("org.apache.ibatis.jdbc", "SqlRunner") }
 }
 
-private class SqlSinkCsv extends SinkModelCsv {
-  override predicate row(string row) {
-    row =
-      [
-        //"package;type;overrides;name;signature;ext;spec;kind"
-        "org.apache.ibatis.jdbc;SqlRunner;false;delete;(String,Object[]);;Argument[0];sql;manual",
-        "org.apache.ibatis.jdbc;SqlRunner;false;insert;(String,Object[]);;Argument[0];sql;manual",
-        "org.apache.ibatis.jdbc;SqlRunner;false;run;(String);;Argument[0];sql;manual",
-        "org.apache.ibatis.jdbc;SqlRunner;false;selectAll;(String,Object[]);;Argument[0];sql;manual",
-        "org.apache.ibatis.jdbc;SqlRunner;false;selectOne;(String,Object[]);;Argument[0];sql;manual",
-        "org.apache.ibatis.jdbc;SqlRunner;false;update;(String,Object[]);;Argument[0];sql;manual"
-      ]
-  }
-}
-
 /** The class `org.apache.ibatis.session.Configuration`. */
 class IbatisConfiguration extends RefType {
   IbatisConfiguration() { this.hasQualifiedName("org.apache.ibatis.session", "Configuration") }
@@ -144,74 +129,3 @@ private class MyBatisProviderStep extends TaintTracking::AdditionalValueStep {
     )
   }
 }
-
-private class MyBatisAbstractSqlToStringStep extends SummaryModelCsv {
-  override predicate row(string row) {
-    row = "org.apache.ibatis.jdbc;AbstractSQL;true;toString;;;Argument[-1];ReturnValue;taint;manual"
-  }
-}
-
-private class MyBatisAbstractSqlMethodsStep extends SummaryModelCsv {
-  override predicate row(string row) {
-    row =
-      [
-        "org.apache.ibatis.jdbc;AbstractSQL;true;toString;;;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.ibatis.jdbc;AbstractSQL;true;WHERE;(String[]);;Argument[0];Argument[-1];taint;manual",
-        "org.apache.ibatis.jdbc;AbstractSQL;true;WHERE;(String[]);;Argument[0].ArrayElement;Argument[-1];taint;manual",
-        "org.apache.ibatis.jdbc;AbstractSQL;true;WHERE;(String);;Argument[0];Argument[-1];taint;manual",
-        "org.apache.ibatis.jdbc;AbstractSQL;true;WHERE;(String);;Argument[0].ArrayElement;Argument[-1];taint;manual",
-        "org.apache.ibatis.jdbc;AbstractSQL;true;VALUES;(String,String);;Argument[0..1];Argument[-1];taint;manual",
-        "org.apache.ibatis.jdbc;AbstractSQL;true;UPDATE;(String);;Argument[0];Argument[-1];taint;manual",
-        "org.apache.ibatis.jdbc;AbstractSQL;true;SET;(String[]);;Argument[0];Argument[-1];taint;manual",
-        "org.apache.ibatis.jdbc;AbstractSQL;true;SET;(String[]);;Argument[0].ArrayElement;Argument[-1];taint;manual",
-        "org.apache.ibatis.jdbc;AbstractSQL;true;SET;(String);;Argument[0];Argument[-1];taint;manual",
-        "org.apache.ibatis.jdbc;AbstractSQL;true;SET;(String);;Argument[0].ArrayElement;Argument[-1];taint;manual",
-        "org.apache.ibatis.jdbc;AbstractSQL;true;SELECT_DISTINCT;(String[]);;Argument[0];Argument[-1];taint;manual",
-        "org.apache.ibatis.jdbc;AbstractSQL;true;SELECT_DISTINCT;(String[]);;Argument[0].ArrayElement;Argument[-1];taint;manual",
-        "org.apache.ibatis.jdbc;AbstractSQL;true;SELECT_DISTINCT;(String);;Argument[0];Argument[-1];taint;manual",
-        "org.apache.ibatis.jdbc;AbstractSQL;true;SELECT_DISTINCT;(String);;Argument[0].ArrayElement;Argument[-1];taint;manual",
-        "org.apache.ibatis.jdbc;AbstractSQL;true;SELECT;(String);;Argument[0];Argument[-1];taint;manual",
-        "org.apache.ibatis.jdbc;AbstractSQL;true;RIGHT_OUTER_JOIN;(String[]);;Argument[0];Argument[-1];taint;manual",
-        "org.apache.ibatis.jdbc;AbstractSQL;true;RIGHT_OUTER_JOIN;(String[]);;Argument[0].ArrayElement;Argument[-1];taint;manual",
-        "org.apache.ibatis.jdbc;AbstractSQL;true;RIGHT_OUTER_JOIN;(String);;Argument[0];Argument[-1];taint;manual",
-        "org.apache.ibatis.jdbc;AbstractSQL;true;RIGHT_OUTER_JOIN;(String);;Argument[0].ArrayElement;Argument[-1];taint;manual",
-        "org.apache.ibatis.jdbc;AbstractSQL;true;OUTER_JOIN;(String[]);;Argument[0];Argument[-1];taint;manual",
-        "org.apache.ibatis.jdbc;AbstractSQL;true;OUTER_JOIN;(String[]);;Argument[0].ArrayElement;Argument[-1];taint;manual",
-        "org.apache.ibatis.jdbc;AbstractSQL;true;OUTER_JOIN;(String);;Argument[0];Argument[-1];taint;manual",
-        "org.apache.ibatis.jdbc;AbstractSQL;true;OUTER_JOIN;(String);;Argument[0].ArrayElement;Argument[-1];taint;manual",
-        "org.apache.ibatis.jdbc;AbstractSQL;true;ORDER_BY;(String[]);;Argument[0];Argument[-1];taint;manual",
-        "org.apache.ibatis.jdbc;AbstractSQL;true;ORDER_BY;(String[]);;Argument[0].ArrayElement;Argument[-1];taint;manual",
-        "org.apache.ibatis.jdbc;AbstractSQL;true;ORDER_BY;(String);;Argument[0];Argument[-1];taint;manual",
-        "org.apache.ibatis.jdbc;AbstractSQL;true;ORDER_BY;(String);;Argument[0].ArrayElement;Argument[-1];taint;manual",
-        "org.apache.ibatis.jdbc;AbstractSQL;true;OFFSET_ROWS;(String);;Argument[0];Argument[-1];taint;manual",
-        "org.apache.ibatis.jdbc;AbstractSQL;true;OFFSET;(String);;Argument[0];Argument[-1];taint;manual",
-        "org.apache.ibatis.jdbc;AbstractSQL;true;LIMIT;(String);;Argument[0];Argument[-1];taint;manual",
-        "org.apache.ibatis.jdbc;AbstractSQL;true;LEFT_OUTER_JOIN;(String[]);;Argument[0];Argument[-1];taint;manual",
-        "org.apache.ibatis.jdbc;AbstractSQL;true;LEFT_OUTER_JOIN;(String[]);;Argument[0].ArrayElement;Argument[-1];taint;manual",
-        "org.apache.ibatis.jdbc;AbstractSQL;true;LEFT_OUTER_JOIN;(String);;Argument[0];Argument[-1];taint;manual",
-        "org.apache.ibatis.jdbc;AbstractSQL;true;LEFT_OUTER_JOIN;(String);;Argument[0].ArrayElement;Argument[-1];taint;manual",
-        "org.apache.ibatis.jdbc;AbstractSQL;true;JOIN;(String[]);;Argument[0].ArrayElement;Argument[-1];taint;manual",
-        "org.apache.ibatis.jdbc;AbstractSQL;true;INTO_VALUES;(String[]);;Argument[0].ArrayElement;Argument[-1];taint;manual",
-        "org.apache.ibatis.jdbc;AbstractSQL;true;INTO_COLUMNS;(String[]);;Argument[0].ArrayElement;Argument[-1];taint;manual",
-        "org.apache.ibatis.jdbc;AbstractSQL;true;INSERT_INTO;(String);;Argument[0];Argument[-1];taint;manual",
-        "org.apache.ibatis.jdbc;AbstractSQL;true;INNER_JOIN;(String[]);;Argument[0];Argument[-1];taint;manual",
-        "org.apache.ibatis.jdbc;AbstractSQL;true;INNER_JOIN;(String[]);;Argument[0].ArrayElement;Argument[-1];taint;manual",
-        "org.apache.ibatis.jdbc;AbstractSQL;true;INNER_JOIN;(String);;Argument[0];Argument[-1];taint;manual",
-        "org.apache.ibatis.jdbc;AbstractSQL;true;INNER_JOIN;(String);;Argument[0].ArrayElement;Argument[-1];taint;manual",
-        "org.apache.ibatis.jdbc;AbstractSQL;true;HAVING;(String[]);;Argument[0];Argument[-1];taint;manual",
-        "org.apache.ibatis.jdbc;AbstractSQL;true;HAVING;(String[]);;Argument[0].ArrayElement;Argument[-1];taint;manual",
-        "org.apache.ibatis.jdbc;AbstractSQL;true;HAVING;(String);;Argument[0];Argument[-1];taint;manual",
-        "org.apache.ibatis.jdbc;AbstractSQL;true;HAVING;(String);;Argument[0].ArrayElement;Argument[-1];taint;manual",
-        "org.apache.ibatis.jdbc;AbstractSQL;true;GROUP_BY;(String[]);;Argument[0];Argument[-1];taint;manual",
-        "org.apache.ibatis.jdbc;AbstractSQL;true;GROUP_BY;(String[]);;Argument[0].ArrayElement;Argument[-1];taint;manual",
-        "org.apache.ibatis.jdbc;AbstractSQL;true;GROUP_BY;(String);;Argument[0];Argument[-1];taint;manual",
-        "org.apache.ibatis.jdbc;AbstractSQL;true;GROUP_BY;(String);;Argument[0].ArrayElement;Argument[-1];taint;manual",
-        "org.apache.ibatis.jdbc;AbstractSQL;true;FROM;(String[]);;Argument[0];Argument[-1];taint;manual",
-        "org.apache.ibatis.jdbc;AbstractSQL;true;FROM;(String[]);;Argument[0].ArrayElement;Argument[-1];taint;manual",
-        "org.apache.ibatis.jdbc;AbstractSQL;true;FROM;(String);;Argument[0];Argument[-1];taint;manual",
-        "org.apache.ibatis.jdbc;AbstractSQL;true;FROM;(String);;Argument[0].ArrayElement;Argument[-1];taint;manual",
-        "org.apache.ibatis.jdbc;AbstractSQL;true;FETCH_FIRST_ROWS_ONLY;(String);;Argument[0];Argument[-1];taint;manual",
-        "org.apache.ibatis.jdbc;AbstractSQL;true;DELETE_FROM;(String);;Argument[0];Argument[-1];taint;manual"
-      ]
-  }
-}
diff --git a/java/ql/lib/semmle/code/java/frameworks/Objects.qll b/java/ql/lib/semmle/code/java/frameworks/Objects.qll
deleted file mode 100644
index 1a7bbe8ef17..00000000000
--- a/java/ql/lib/semmle/code/java/frameworks/Objects.qll
+++ /dev/null
@@ -1,18 +0,0 @@
-/** Definitions of taint steps in Objects class of the JDK */
-
-import java
-private import semmle.code.java.dataflow.ExternalFlow
-
-private class ObjectsSummaryCsv extends SummaryModelCsv {
-  override predicate row(string row) {
-    row =
-      [
-        //`namespace; type; subtypes; name; signature; ext; input; output; kind`
-        "java.util;Objects;false;requireNonNull;;;Argument[0];ReturnValue;value;manual",
-        "java.util;Objects;false;requireNonNullElse;;;Argument[0];ReturnValue;value;manual",
-        "java.util;Objects;false;requireNonNullElse;;;Argument[1];ReturnValue;value;manual",
-        "java.util;Objects;false;requireNonNullElseGet;;;Argument[0];ReturnValue;value;manual",
-        "java.util;Objects;false;toString;;;Argument[1];ReturnValue;value;manual"
-      ]
-  }
-}
diff --git a/java/ql/lib/semmle/code/java/frameworks/OkHttp.qll b/java/ql/lib/semmle/code/java/frameworks/OkHttp.qll
deleted file mode 100644
index f541eb983ee..00000000000
--- a/java/ql/lib/semmle/code/java/frameworks/OkHttp.qll
+++ /dev/null
@@ -1,71 +0,0 @@
-/**
- * Provides classes and predicates for working with the OkHttp client.
- */
-
-import java
-private import semmle.code.java.dataflow.ExternalFlow
-
-private class OkHttpOpenUrlSinks extends SinkModelCsv {
-  override predicate row(string row) {
-    row =
-      [
-        "okhttp3;Request;true;Request;;;Argument[0];open-url;manual",
-        "okhttp3;Request$Builder;true;url;;;Argument[0];open-url;manual"
-      ]
-  }
-}
-
-private class OKHttpSummaries extends SummaryModelCsv {
-  override predicate row(string row) {
-    row =
-      [
-        "okhttp3;HttpUrl;false;parse;;;Argument[0];ReturnValue;taint;manual",
-        "okhttp3;HttpUrl;false;uri;;;Argument[-1];ReturnValue;taint;manual",
-        "okhttp3;HttpUrl;false;url;;;Argument[-1];ReturnValue;taint;manual",
-        "okhttp3;HttpUrl$Builder;false;addEncodedPathSegment;;;Argument[-1];ReturnValue;value;manual",
-        "okhttp3;HttpUrl$Builder;false;addEncodedPathSegment;;;Argument[0];Argument[-1];taint;manual",
-        "okhttp3;HttpUrl$Builder;false;addEncodedPathSegments;;;Argument[-1];ReturnValue;value;manual",
-        "okhttp3;HttpUrl$Builder;false;addEncodedPathSegments;;;Argument[0];Argument[-1];taint;manual",
-        "okhttp3;HttpUrl$Builder;false;addEncodedQueryParameter;;;Argument[-1];ReturnValue;value;manual",
-        "okhttp3;HttpUrl$Builder;false;addEncodedQueryParameter;;;Argument[0];Argument[-1];taint;manual",
-        "okhttp3;HttpUrl$Builder;false;addPathSegment;;;Argument[-1];ReturnValue;value;manual",
-        "okhttp3;HttpUrl$Builder;false;addPathSegment;;;Argument[0];Argument[-1];taint;manual",
-        "okhttp3;HttpUrl$Builder;false;addPathSegments;;;Argument[-1];ReturnValue;value;manual",
-        "okhttp3;HttpUrl$Builder;false;addPathSegments;;;Argument[0];Argument[-1];taint;manual",
-        "okhttp3;HttpUrl$Builder;false;addQueryParameter;;;Argument[-1];ReturnValue;value;manual",
-        "okhttp3;HttpUrl$Builder;false;addQueryParameter;;;Argument[0..1];Argument[-1];taint;manual",
-        "okhttp3;HttpUrl$Builder;false;build;;;Argument[-1];ReturnValue;taint;manual",
-        "okhttp3;HttpUrl$Builder;false;encodedFragment;;;Argument[-1];ReturnValue;value;manual",
-        "okhttp3;HttpUrl$Builder;false;encodedFragment;;;Argument[0];Argument[-1];taint;manual",
-        "okhttp3;HttpUrl$Builder;false;encodedPassword;;;Argument[-1];ReturnValue;value;manual",
-        "okhttp3;HttpUrl$Builder;false;encodedPath;;;Argument[-1];ReturnValue;value;manual",
-        "okhttp3;HttpUrl$Builder;false;encodedPath;;;Argument[0];Argument[-1];taint;manual",
-        "okhttp3;HttpUrl$Builder;false;encodedQuery;;;Argument[-1];ReturnValue;value;manual",
-        "okhttp3;HttpUrl$Builder;false;encodedQuery;;;Argument[0];Argument[-1];taint;manual",
-        "okhttp3;HttpUrl$Builder;false;encodedUsername;;;Argument[-1];ReturnValue;value;manual",
-        "okhttp3;HttpUrl$Builder;false;fragment;;;Argument[-1];ReturnValue;value;manual",
-        "okhttp3;HttpUrl$Builder;false;fragment;;;Argument[0];Argument[-1];taint;manual",
-        "okhttp3;HttpUrl$Builder;false;host;;;Argument[-1];ReturnValue;value;manual",
-        "okhttp3;HttpUrl$Builder;false;host;;;Argument[0];Argument[-1];taint;manual",
-        "okhttp3;HttpUrl$Builder;false;password;;;Argument[-1];ReturnValue;value;manual",
-        "okhttp3;HttpUrl$Builder;false;port;;;Argument[-1];ReturnValue;value;manual",
-        "okhttp3;HttpUrl$Builder;false;port;;;Argument[0];Argument[-1];taint;manual",
-        "okhttp3;HttpUrl$Builder;false;query;;;Argument[-1];ReturnValue;value;manual",
-        "okhttp3;HttpUrl$Builder;false;query;;;Argument[0];Argument[-1];taint;manual",
-        "okhttp3;HttpUrl$Builder;false;removeAllEncodedQueryParameters;;;Argument[-1];ReturnValue;value;manual",
-        "okhttp3;HttpUrl$Builder;false;removeAllQueryParameters;;;Argument[-1];ReturnValue;value;manual",
-        "okhttp3;HttpUrl$Builder;false;removePathSegment;;;Argument[-1];ReturnValue;value;manual",
-        "okhttp3;HttpUrl$Builder;false;scheme;;;Argument[-1];ReturnValue;value;manual",
-        "okhttp3;HttpUrl$Builder;false;scheme;;;Argument[0];Argument[-1];taint;manual",
-        "okhttp3;HttpUrl$Builder;false;setEncodedPathSegment;;;Argument[-1];ReturnValue;value;manual",
-        "okhttp3;HttpUrl$Builder;false;setEncodedPathSegment;;;Argument[0];Argument[-1];taint;manual",
-        "okhttp3;HttpUrl$Builder;false;setEncodedQueryParameter;;;Argument[-1];ReturnValue;value;manual",
-        "okhttp3;HttpUrl$Builder;false;setEncodedQueryParameter;;;Argument[0];Argument[-1];taint;manual",
-        "okhttp3;HttpUrl$Builder;false;setPathSegment;;;Argument[-1];ReturnValue;value;manual",
-        "okhttp3;HttpUrl$Builder;false;setPathSegment;;;Argument[0];Argument[-1];taint;manual",
-        "okhttp3;HttpUrl$Builder;false;setQueryParameter;;;Argument[-1];ReturnValue;value;manual",
-        "okhttp3;HttpUrl$Builder;false;setQueryParameter;;;Argument[0];Argument[-1];taint;manual",
-        "okhttp3;HttpUrl$Builder;false;username;;;Argument[-1];ReturnValue;value;manual",
-      ]
-  }
-}
diff --git a/java/ql/lib/semmle/code/java/frameworks/Optional.qll b/java/ql/lib/semmle/code/java/frameworks/Optional.qll
deleted file mode 100644
index 7716154a883..00000000000
--- a/java/ql/lib/semmle/code/java/frameworks/Optional.qll
+++ /dev/null
@@ -1,30 +0,0 @@
-/** Definitions related to `java.util.Optional`. */
-
-private import semmle.code.java.dataflow.ExternalFlow
-
-private class OptionalModel extends SummaryModelCsv {
-  override predicate row(string s) {
-    s =
-      [
-        "java.util;Optional;false;filter;;;Argument[-1].Element;ReturnValue.Element;value;manual",
-        "java.util;Optional;false;filter;;;Argument[-1].Element;Argument[0].Parameter[0];value;manual",
-        "java.util;Optional;false;flatMap;;;Argument[-1].Element;Argument[0].Parameter[0];value;manual",
-        "java.util;Optional;false;flatMap;;;Argument[0].ReturnValue;ReturnValue;value;manual",
-        "java.util;Optional;false;get;;;Argument[-1].Element;ReturnValue;value;manual",
-        "java.util;Optional;false;ifPresent;;;Argument[-1].Element;Argument[0].Parameter[0];value;manual",
-        "java.util;Optional;false;ifPresentOrElse;;;Argument[-1].Element;Argument[0].Parameter[0];value;manual",
-        "java.util;Optional;false;map;;;Argument[-1].Element;Argument[0].Parameter[0];value;manual",
-        "java.util;Optional;false;map;;;Argument[0].ReturnValue;ReturnValue.Element;value;manual",
-        "java.util;Optional;false;of;;;Argument[0];ReturnValue.Element;value;manual",
-        "java.util;Optional;false;ofNullable;;;Argument[0];ReturnValue.Element;value;manual",
-        "java.util;Optional;false;or;;;Argument[-1].Element;ReturnValue.Element;value;manual",
-        "java.util;Optional;false;or;;;Argument[0].ReturnValue;ReturnValue;value;manual",
-        "java.util;Optional;false;orElse;;;Argument[-1].Element;ReturnValue;value;manual",
-        "java.util;Optional;false;orElse;;;Argument[0];ReturnValue;value;manual",
-        "java.util;Optional;false;orElseGet;;;Argument[-1].Element;ReturnValue;value;manual",
-        "java.util;Optional;false;orElseGet;;;Argument[0].ReturnValue;ReturnValue;value;manual",
-        "java.util;Optional;false;orElseThrow;;;Argument[-1].Element;ReturnValue;value;manual",
-        "java.util;Optional;false;stream;;;Argument[-1].Element;ReturnValue.Element;value;manual"
-      ]
-  }
-}
diff --git a/java/ql/lib/semmle/code/java/frameworks/RabbitMQ.qll b/java/ql/lib/semmle/code/java/frameworks/RabbitMQ.qll
deleted file mode 100644
index 4f94cd295a8..00000000000
--- a/java/ql/lib/semmle/code/java/frameworks/RabbitMQ.qll
+++ /dev/null
@@ -1,58 +0,0 @@
-/**
- * Provides classes and predicates related to RabbitMQ.
- */
-
-import java
-private import semmle.code.java.dataflow.ExternalFlow
-
-/**
- * Defines remote sources in RabbitMQ.
- */
-private class RabbitMQSource extends SourceModelCsv {
-  override predicate row(string row) {
-    row =
-      [
-        // soruces for RabbitMQ 4.x
-        "com.rabbitmq.client;Command;true;getContentHeader;();;ReturnValue;remote;manual",
-        "com.rabbitmq.client;Command;true;getContentBody;();;ReturnValue;remote;manual",
-        "com.rabbitmq.client;Consumer;true;handleDelivery;(String,Envelope,BasicProperties,byte[]);;Parameter[3];remote;manual",
-        "com.rabbitmq.client;QueueingConsumer;true;nextDelivery;;;ReturnValue;remote;manual",
-        "com.rabbitmq.client;RpcServer;true;handleCall;(Delivery,BasicProperties);;Parameter[0];remote;manual",
-        "com.rabbitmq.client;RpcServer;true;handleCall;(BasicProperties,byte[],BasicProperties);;Parameter[1];remote;manual",
-        "com.rabbitmq.client;RpcServer;true;handleCall;(byte[],BasicProperties);;Parameter[0];remote;manual",
-        "com.rabbitmq.client;RpcServer;true;preprocessReplyProperties;(Delivery,Builder);;Parameter[0];remote;manual",
-        "com.rabbitmq.client;RpcServer;true;postprocessReplyProperties;(Delivery,Builder);;Parameter[0];remote;manual",
-        "com.rabbitmq.client;RpcServer;true;handleCast;(Delivery);;Parameter[0];remote;manual",
-        "com.rabbitmq.client;RpcServer;true;handleCast;(BasicProperties,byte[]);;Parameter[1];remote;manual",
-        "com.rabbitmq.client;RpcServer;true;handleCast;(byte[]);;Parameter[0];remote;manual",
-        "com.rabbitmq.client;StringRpcServer;true;handleStringCall;;;Parameter[0];remote;manual",
-        "com.rabbitmq.client;RpcClient;true;doCall;;;ReturnValue;remote;manual",
-        "com.rabbitmq.client;RpcClient;true;primitiveCall;;;ReturnValue;remote;manual",
-        "com.rabbitmq.client;RpcClient;true;responseCall;;;ReturnValue;remote;manual",
-        "com.rabbitmq.client;RpcClient;true;stringCall;(String);;ReturnValue;remote;manual",
-        "com.rabbitmq.client;RpcClient;true;mapCall;;;ReturnValue;remote;manual",
-        "com.rabbitmq.client.impl;Frame;true;getInputStream;();;ReturnValue;remote;manual",
-        "com.rabbitmq.client.impl;Frame;true;getPayload;();;ReturnValue;remote;manual",
-        "com.rabbitmq.client.impl;FrameHandler;true;readFrame;();;ReturnValue;remote;manual",
-      ]
-  }
-}
-
-/**
- * Defines flow steps in RabbitMQ.
- */
-private class RabbitMQSummaryCsv extends SummaryModelCsv {
-  override predicate row(string row) {
-    row =
-      [
-        // flow steps for RabbitMQ 4.x
-        "com.rabbitmq.client;GetResponse;true;GetResponse;;;Argument[2];Argument[-1];taint;manual",
-        "com.rabbitmq.client;GetResponse;true;getBody;();;Argument[-1];ReturnValue;taint;manual",
-        "com.rabbitmq.client;RpcClient$Response;true;getBody;();;Argument[-1];ReturnValue;taint;manual",
-        "com.rabbitmq.client;QueueingConsumer$Delivery;true;getBody;();;Argument[-1];ReturnValue;taint;manual",
-        "com.rabbitmq.client.impl;Frame;false;fromBodyFragment;(int,byte[],int,int);;Argument[1];ReturnValue;taint;manual",
-        "com.rabbitmq.client.impl;Frame;false;readFrom;(DataInputStream);;Argument[0];ReturnValue;taint;manual",
-        "com.rabbitmq.client.impl;Frame;true;writeTo;(DataOutputStream);;Argument[-1];Argument[0];taint;manual",
-      ]
-  }
-}
diff --git a/java/ql/lib/semmle/code/java/frameworks/Regex.qll b/java/ql/lib/semmle/code/java/frameworks/Regex.qll
index 790255c9703..687e983eab6 100644
--- a/java/ql/lib/semmle/code/java/frameworks/Regex.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/Regex.qll
@@ -22,20 +22,3 @@ class PatternLiteralField extends Field {
     this.hasName("LITERAL")
   }
 }
-
-private class RegexModel extends SummaryModelCsv {
-  override predicate row(string s) {
-    s =
-      [
-        //`namespace; type; subtypes; name; signature; ext; input; output; kind`
-        "java.util.regex;Matcher;false;group;;;Argument[-1];ReturnValue;taint;manual",
-        "java.util.regex;Matcher;false;replaceAll;;;Argument[-1];ReturnValue;taint;manual",
-        "java.util.regex;Matcher;false;replaceAll;;;Argument[0];ReturnValue;taint;manual",
-        "java.util.regex;Matcher;false;replaceFirst;;;Argument[-1];ReturnValue;taint;manual",
-        "java.util.regex;Matcher;false;replaceFirst;;;Argument[0];ReturnValue;taint;manual",
-        "java.util.regex;Pattern;false;matcher;;;Argument[0];ReturnValue;taint;manual",
-        "java.util.regex;Pattern;false;quote;;;Argument[0];ReturnValue;taint;manual",
-        "java.util.regex;Pattern;false;split;;;Argument[0];ReturnValue;taint;manual",
-      ]
-  }
-}
diff --git a/java/ql/lib/semmle/code/java/frameworks/Retrofit.qll b/java/ql/lib/semmle/code/java/frameworks/Retrofit.qll
deleted file mode 100644
index db79cb84515..00000000000
--- a/java/ql/lib/semmle/code/java/frameworks/Retrofit.qll
+++ /dev/null
@@ -1,12 +0,0 @@
-/**
- * Provides classes and predicates for working with the Retrofit API client.
- */
-
-import java
-private import semmle.code.java.dataflow.ExternalFlow
-
-private class RetrofitOpenUrlSinks extends SinkModelCsv {
-  override predicate row(string row) {
-    row = "retrofit2;Retrofit$Builder;true;baseUrl;;;Argument[0];open-url;manual"
-  }
-}
diff --git a/java/ql/lib/semmle/code/java/frameworks/SpringJdbc.qll b/java/ql/lib/semmle/code/java/frameworks/SpringJdbc.qll
index f0a75c8f3b9..fb729f5c00e 100644
--- a/java/ql/lib/semmle/code/java/frameworks/SpringJdbc.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/SpringJdbc.qll
@@ -9,45 +9,3 @@ private import semmle.code.java.dataflow.ExternalFlow
 class JdbcTemplate extends RefType {
   JdbcTemplate() { this.hasQualifiedName("org.springframework.jdbc.core", "JdbcTemplate") }
 }
-
-private class SqlSinkCsv extends SinkModelCsv {
-  override predicate row(string row) {
-    row =
-      [
-        //"package;type;overrides;name;signature;ext;spec;kind"
-        "org.springframework.jdbc.core;JdbcTemplate;false;batchUpdate;(String[]);;Argument[0];sql;manual",
-        "org.springframework.jdbc.core;JdbcTemplate;false;batchUpdate;;;Argument[0];sql;manual",
-        "org.springframework.jdbc.core;JdbcTemplate;false;execute;;;Argument[0];sql;manual",
-        "org.springframework.jdbc.core;JdbcTemplate;false;update;;;Argument[0];sql;manual",
-        "org.springframework.jdbc.core;JdbcTemplate;false;query;;;Argument[0];sql;manual",
-        "org.springframework.jdbc.core;JdbcTemplate;false;queryForList;;;Argument[0];sql;manual",
-        "org.springframework.jdbc.core;JdbcTemplate;false;queryForMap;;;Argument[0];sql;manual",
-        "org.springframework.jdbc.core;JdbcTemplate;false;queryForObject;;;Argument[0];sql;manual",
-        "org.springframework.jdbc.core;JdbcTemplate;false;queryForRowSet;;;Argument[0];sql;manual",
-        "org.springframework.jdbc.core;JdbcTemplate;false;queryForStream;;;Argument[0];sql;manual",
-        "org.springframework.jdbc.object;BatchSqlUpdate;false;BatchSqlUpdate;;;Argument[1];sql;manual",
-        "org.springframework.jdbc.object;MappingSqlQuery;false;BatchSqlUpdate;;;Argument[1];sql;manual",
-        "org.springframework.jdbc.object;MappingSqlQueryWithParameters;false;BatchSqlUpdate;;;Argument[1];sql;manual",
-        "org.springframework.jdbc.object;RdbmsOperation;true;setSql;;;Argument[0];sql;manual",
-        "org.springframework.jdbc.object;SqlCall;false;SqlCall;;;Argument[1];sql;manual",
-        "org.springframework.jdbc.object;SqlFunction;false;SqlFunction;;;Argument[1];sql;manual",
-        "org.springframework.jdbc.object;SqlQuery;false;SqlQuery;;;Argument[1];sql;manual",
-        "org.springframework.jdbc.object;SqlUpdate;false;SqlUpdate;;;Argument[1];sql;manual",
-        "org.springframework.jdbc.object;UpdatableSqlQuery;false;UpdatableSqlQuery;;;Argument[1];sql;manual"
-      ]
-  }
-}
-
-private class SsrfSinkCsv extends SinkModelCsv {
-  override predicate row(string row) {
-    row =
-      [
-        //"package;type;overrides;name;signature;ext;spec;kind"
-        "org.springframework.boot.jdbc;DataSourceBuilder;false;url;(String);;Argument[0];jdbc-url;manual",
-        "org.springframework.jdbc.datasource;AbstractDriverBasedDataSource;false;setUrl;(String);;Argument[0];jdbc-url;manual",
-        "org.springframework.jdbc.datasource;DriverManagerDataSource;false;DriverManagerDataSource;(String);;Argument[0];jdbc-url;manual",
-        "org.springframework.jdbc.datasource;DriverManagerDataSource;false;DriverManagerDataSource;(String,String,String);;Argument[0];jdbc-url;manual",
-        "org.springframework.jdbc.datasource;DriverManagerDataSource;false;DriverManagerDataSource;(String,Properties);;Argument[0];jdbc-url;manual"
-      ]
-  }
-}
diff --git a/java/ql/lib/semmle/code/java/frameworks/Stream.qll b/java/ql/lib/semmle/code/java/frameworks/Stream.qll
index 0c1347044c5..af157d78740 100644
--- a/java/ql/lib/semmle/code/java/frameworks/Stream.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/Stream.qll
@@ -96,95 +96,3 @@ private class RequiredComponentStackForCollect extends RequiredSummaryComponentS
     tail = SummaryComponentStack::return()
   }
 }
-
-private class StreamModel extends SummaryModelCsv {
-  override predicate row(string s) {
-    s =
-      [
-        "java.util.stream;BaseStream;true;iterator;();;Argument[-1].Element;ReturnValue.Element;value;manual",
-        "java.util.stream;BaseStream;true;onClose;(Runnable);;Argument[-1].Element;ReturnValue.Element;value;manual",
-        "java.util.stream;BaseStream;true;parallel;();;Argument[-1].Element;ReturnValue.Element;value;manual",
-        "java.util.stream;BaseStream;true;sequential;();;Argument[-1].Element;ReturnValue.Element;value;manual",
-        "java.util.stream;BaseStream;true;spliterator;();;Argument[-1].Element;ReturnValue.Element;value;manual",
-        "java.util.stream;BaseStream;true;unordered;();;Argument[-1].Element;ReturnValue.Element;value;manual",
-        "java.util.stream;Stream;true;allMatch;(Predicate);;Argument[-1].Element;Argument[0].Parameter[0];value;manual",
-        "java.util.stream;Stream;true;anyMatch;(Predicate);;Argument[-1].Element;Argument[0].Parameter[0];value;manual",
-        "java.util.stream;Stream;true;collect;(Supplier,BiConsumer,BiConsumer);;Argument[0].ReturnValue;Argument[1].Parameter[0];value;manual",
-        "java.util.stream;Stream;true;collect;(Supplier,BiConsumer,BiConsumer);;Argument[1].Parameter[0];ReturnValue;value;manual",
-        "java.util.stream;Stream;true;collect;(Supplier,BiConsumer,BiConsumer);;Argument[1].Parameter[0];Argument[2].Parameter[0..1];value;manual",
-        "java.util.stream;Stream;true;collect;(Supplier,BiConsumer,BiConsumer);;Argument[2].Parameter[0..1];Argument[1].Parameter[0];value;manual",
-        "java.util.stream;Stream;true;collect;(Supplier,BiConsumer,BiConsumer);;Argument[-1].Element;Argument[1].Parameter[1];value;manual",
-        // collect(Collector<T,A,R> collector) is handled separately on a case-by-case basis as it is too complex for MaD
-        "java.util.stream;Stream;true;concat;(Stream,Stream);;Argument[0..1].Element;ReturnValue.Element;value;manual",
-        "java.util.stream;Stream;true;distinct;();;Argument[-1].Element;ReturnValue.Element;value;manual",
-        "java.util.stream;Stream;true;dropWhile;(Predicate);;Argument[-1].Element;Argument[0].Parameter[0];value;manual",
-        "java.util.stream;Stream;true;dropWhile;(Predicate);;Argument[-1].Element;ReturnValue.Element;value;manual",
-        "java.util.stream;Stream;true;filter;(Predicate);;Argument[-1].Element;Argument[0].Parameter[0];value;manual",
-        "java.util.stream;Stream;true;filter;(Predicate);;Argument[-1].Element;ReturnValue.Element;value;manual",
-        "java.util.stream;Stream;true;findAny;();;Argument[-1].Element;ReturnValue.Element;value;manual",
-        "java.util.stream;Stream;true;findFirst;();;Argument[-1].Element;ReturnValue.Element;value;manual",
-        "java.util.stream;Stream;true;flatMap;(Function);;Argument[-1].Element;Argument[0].Parameter[0];value;manual",
-        "java.util.stream;Stream;true;flatMap;(Function);;Argument[0].ReturnValue.Element;ReturnValue.Element;value;manual",
-        "java.util.stream;Stream;true;flatMapToDouble;(Function);;Argument[-1].Element;Argument[0].Parameter[0];value;manual",
-        "java.util.stream;Stream;true;flatMapToInt;(Function);;Argument[-1].Element;Argument[0].Parameter[0];value;manual",
-        "java.util.stream;Stream;true;flatMapToLong;(Function);;Argument[-1].Element;Argument[0].Parameter[0];value;manual",
-        "java.util.stream;Stream;true;forEach;(Consumer);;Argument[-1].Element;Argument[0].Parameter[0];value;manual",
-        "java.util.stream;Stream;true;forEachOrdered;(Consumer);;Argument[-1].Element;Argument[0].Parameter[0];value;manual",
-        "java.util.stream;Stream;true;generate;(Supplier);;Argument[0].ReturnValue;ReturnValue.Element;value;manual",
-        "java.util.stream;Stream;true;iterate;(Object,Predicate,UnaryOperator);;Argument[0];ReturnValue.Element;value;manual",
-        "java.util.stream;Stream;true;iterate;(Object,Predicate,UnaryOperator);;Argument[0];Argument[1..2].Parameter[0];value;manual",
-        "java.util.stream;Stream;true;iterate;(Object,Predicate,UnaryOperator);;Argument[2].ReturnValue;ReturnValue.Element;value;manual",
-        "java.util.stream;Stream;true;iterate;(Object,Predicate,UnaryOperator);;Argument[2].ReturnValue;Argument[1..2].Parameter[0];value;manual",
-        "java.util.stream;Stream;true;iterate;(Object,UnaryOperator);;Argument[0];ReturnValue.Element;value;manual",
-        "java.util.stream;Stream;true;iterate;(Object,UnaryOperator);;Argument[0];Argument[1].Parameter[0];value;manual",
-        "java.util.stream;Stream;true;iterate;(Object,UnaryOperator);;Argument[1].ReturnValue;ReturnValue.Element;value;manual",
-        "java.util.stream;Stream;true;iterate;(Object,UnaryOperator);;Argument[1].ReturnValue;Argument[1].Parameter[0];value;manual",
-        "java.util.stream;Stream;true;limit;(long);;Argument[-1].Element;ReturnValue.Element;value;manual",
-        "java.util.stream;Stream;true;map;(Function);;Argument[-1].Element;Argument[0].Parameter[0];value;manual",
-        "java.util.stream;Stream;true;map;(Function);;Argument[0].ReturnValue;ReturnValue.Element;value;manual",
-        // Missing for mapMulti(BiConsumer) (not currently supported):
-        // Argument[0] of Parameter[1] of Argument[0] -> Element of Parameter[1] of Argument[0]
-        // Element of Parameter[1] of Argument[0] -> Element of ReturnValue
-        "java.util.stream;Stream;true;mapMulti;(BiConsumer);;Argument[-1].Element;Argument[0].Parameter[0];value;manual",
-        "java.util.stream;Stream;true;mapMultiToDouble;(BiConsumer);;Argument[-1].Element;Argument[0].Parameter[0];value;manual",
-        "java.util.stream;Stream;true;mapMultiToInt;(BiConsumer);;Argument[-1].Element;Argument[0].Parameter[0];value;manual",
-        "java.util.stream;Stream;true;mapMultiToLong;(BiConsumer);;Argument[-1].Element;Argument[0].Parameter[0];value;manual",
-        "java.util.stream;Stream;true;mapToDouble;(ToDoubleFunction);;Argument[-1].Element;Argument[0].Parameter[0];value;manual",
-        "java.util.stream;Stream;true;mapToInt;(ToIntFunction);;Argument[-1].Element;Argument[0].Parameter[0];value;manual",
-        "java.util.stream;Stream;true;mapToLong;(ToLongFunction);;Argument[-1].Element;Argument[0].Parameter[0];value;manual",
-        "java.util.stream;Stream;true;max;(Comparator);;Argument[-1].Element;ReturnValue.Element;value;manual",
-        "java.util.stream;Stream;true;max;(Comparator);;Argument[-1].Element;Argument[0].Parameter[0..1];value;manual",
-        "java.util.stream;Stream;true;min;(Comparator);;Argument[-1].Element;ReturnValue.Element;value;manual",
-        "java.util.stream;Stream;true;min;(Comparator);;Argument[-1].Element;Argument[0].Parameter[0..1];value;manual",
-        "java.util.stream;Stream;true;noneMatch;(Predicate);;Argument[-1].Element;Argument[0].Parameter[0];value;manual",
-        "java.util.stream;Stream;true;of;(Object);;Argument[0];ReturnValue.Element;value;manual",
-        "java.util.stream;Stream;true;of;(Object[]);;Argument[0].ArrayElement;ReturnValue.Element;value;manual",
-        "java.util.stream;Stream;true;ofNullable;(Object);;Argument[0];ReturnValue.Element;value;manual",
-        "java.util.stream;Stream;true;peek;(Consumer);;Argument[-1].Element;Argument[0].Parameter[0];value;manual",
-        "java.util.stream;Stream;true;peek;(Consumer);;Argument[-1].Element;ReturnValue.Element;value;manual",
-        "java.util.stream;Stream;true;reduce;(BinaryOperator);;Argument[-1].Element;Argument[0].Parameter[0..1];value;manual",
-        "java.util.stream;Stream;true;reduce;(BinaryOperator);;Argument[-1].Element;ReturnValue.Element;value;manual",
-        "java.util.stream;Stream;true;reduce;(BinaryOperator);;Argument[0].ReturnValue;Argument[0].Parameter[0..1];value;manual",
-        "java.util.stream;Stream;true;reduce;(BinaryOperator);;Argument[0].ReturnValue;ReturnValue.Element;value;manual",
-        "java.util.stream;Stream;true;reduce;(Object,BinaryOperator);;Argument[-1].Element;Argument[1].Parameter[0..1];value;manual",
-        "java.util.stream;Stream;true;reduce;(Object,BinaryOperator);;Argument[0];Argument[1].Parameter[0..1];value;manual",
-        "java.util.stream;Stream;true;reduce;(Object,BinaryOperator);;Argument[0];ReturnValue;value;manual",
-        "java.util.stream;Stream;true;reduce;(Object,BinaryOperator);;Argument[1].ReturnValue;Argument[1].Parameter[0..1];value;manual",
-        "java.util.stream;Stream;true;reduce;(Object,BinaryOperator);;Argument[1].ReturnValue;ReturnValue;value;manual",
-        "java.util.stream;Stream;true;reduce;(Object,BiFunction,BinaryOperator);;Argument[-1].Element;Argument[1].Parameter[1];value;manual",
-        "java.util.stream;Stream;true;reduce;(Object,BiFunction,BinaryOperator);;Argument[0];Argument[1].Parameter[0];value;manual",
-        "java.util.stream;Stream;true;reduce;(Object,BiFunction,BinaryOperator);;Argument[0];Argument[2].Parameter[0..1];value;manual",
-        "java.util.stream;Stream;true;reduce;(Object,BiFunction,BinaryOperator);;Argument[0];ReturnValue;value;manual",
-        "java.util.stream;Stream;true;reduce;(Object,BiFunction,BinaryOperator);;Argument[1..2].ReturnValue;Argument[1].Parameter[0];value;manual",
-        "java.util.stream;Stream;true;reduce;(Object,BiFunction,BinaryOperator);;Argument[1..2].ReturnValue;Argument[2].Parameter[0..1];value;manual",
-        "java.util.stream;Stream;true;reduce;(Object,BiFunction,BinaryOperator);;Argument[1..2].ReturnValue;ReturnValue;value;manual",
-        "java.util.stream;Stream;true;skip;(long);;Argument[-1].Element;ReturnValue.Element;value;manual",
-        "java.util.stream;Stream;true;sorted;;;Argument[-1].Element;ReturnValue.Element;value;manual",
-        "java.util.stream;Stream;true;sorted;(Comparator);;Argument[-1].Element;Argument[0].Parameter[0..1];value;manual",
-        "java.util.stream;Stream;true;takeWhile;(Predicate);;Argument[-1].Element;Argument[0].Parameter[0];value;manual",
-        "java.util.stream;Stream;true;takeWhile;(Predicate);;Argument[-1].Element;ReturnValue.Element;value;manual",
-        "java.util.stream;Stream;true;toArray;;;Argument[-1].Element;ReturnValue.ArrayElement;value;manual",
-        "java.util.stream;Stream;true;toList;();;Argument[-1].Element;ReturnValue.Element;value;manual"
-      ]
-  }
-}
diff --git a/java/ql/lib/semmle/code/java/frameworks/Strings.qll b/java/ql/lib/semmle/code/java/frameworks/Strings.qll
deleted file mode 100644
index c09b959254d..00000000000
--- a/java/ql/lib/semmle/code/java/frameworks/Strings.qll
+++ /dev/null
@@ -1,70 +0,0 @@
-/** Definitions of taint steps in String and String-related classes of the JDK */
-
-import java
-private import semmle.code.java.dataflow.ExternalFlow
-
-private class StringSummaryCsv extends SummaryModelCsv {
-  override predicate row(string row) {
-    row =
-      [
-        //`namespace; type; subtypes; name; signature; ext; input; output; kind`
-        "java.lang;String;false;concat;(String);;Argument[0];ReturnValue;taint;manual",
-        "java.lang;String;false;concat;(String);;Argument[-1];ReturnValue;taint;manual",
-        "java.lang;String;false;copyValueOf;;;Argument[0];ReturnValue;taint;manual",
-        "java.lang;String;false;endsWith;;;Argument[-1];ReturnValue;taint;manual",
-        "java.lang;String;false;format;(Locale,String,Object[]);;Argument[1];ReturnValue;taint;manual",
-        "java.lang;String;false;format;(Locale,String,Object[]);;Argument[2].ArrayElement;ReturnValue;taint;manual",
-        "java.lang;String;false;format;(String,Object[]);;Argument[0];ReturnValue;taint;manual",
-        "java.lang;String;false;format;(String,Object[]);;Argument[1].ArrayElement;ReturnValue;taint;manual",
-        "java.lang;String;false;formatted;(Object[]);;Argument[-1];ReturnValue;taint;manual",
-        "java.lang;String;false;formatted;(Object[]);;Argument[0].ArrayElement;ReturnValue;taint;manual",
-        "java.lang;String;false;getChars;;;Argument[-1];Argument[2];taint;manual",
-        "java.lang;String;false;getBytes;;;Argument[-1];ReturnValue;taint;manual",
-        "java.lang;String;false;getBytes;;;Argument[-1];Argument[2];taint;manual",
-        "java.lang;String;false;indent;;;Argument[-1];ReturnValue;taint;manual",
-        "java.lang;String;false;intern;;;Argument[-1];ReturnValue;taint;manual",
-        "java.lang;String;false;join;;;Argument[0..1];ReturnValue;taint;manual",
-        "java.lang;String;false;repeat;(int);;Argument[-1];ReturnValue;taint;manual",
-        "java.lang;String;false;replace;;;Argument[-1];ReturnValue;taint;manual",
-        "java.lang;String;false;replace;;;Argument[1];ReturnValue;taint;manual",
-        "java.lang;String;false;replaceAll;;;Argument[-1];ReturnValue;taint;manual",
-        "java.lang;String;false;replaceAll;;;Argument[1];ReturnValue;taint;manual",
-        "java.lang;String;false;replaceFirst;;;Argument[-1];ReturnValue;taint;manual",
-        "java.lang;String;false;replaceFirst;;;Argument[1];ReturnValue;taint;manual",
-        "java.lang;String;false;split;;;Argument[-1];ReturnValue;taint;manual",
-        "java.lang;String;false;String;;;Argument[0];Argument[-1];taint;manual",
-        "java.lang;String;false;strip;;;Argument[-1];ReturnValue;taint;manual",
-        "java.lang;String;false;stripIndent;;;Argument[-1];ReturnValue;taint;manual",
-        "java.lang;String;false;stripLeading;;;Argument[-1];ReturnValue;taint;manual",
-        "java.lang;String;false;stripTrailing;;;Argument[-1];ReturnValue;taint;manual",
-        "java.lang;String;false;substring;;;Argument[-1];ReturnValue;taint;manual",
-        "java.lang;String;false;toCharArray;;;Argument[-1];ReturnValue;taint;manual",
-        "java.lang;String;false;toLowerCase;;;Argument[-1];ReturnValue;taint;manual",
-        "java.lang;String;false;toString;;;Argument[-1];ReturnValue;value;manual",
-        "java.lang;String;false;toUpperCase;;;Argument[-1];ReturnValue;taint;manual",
-        "java.lang;String;false;translateEscapes;;;Argument[-1];ReturnValue;taint;manual",
-        "java.lang;String;false;trim;;;Argument[-1];ReturnValue;taint;manual",
-        "java.lang;String;false;valueOf;(char);;Argument[0];ReturnValue;taint;manual",
-        "java.lang;String;false;valueOf;(char[],int,int);;Argument[0];ReturnValue;taint;manual",
-        "java.lang;String;false;valueOf;(char[]);;Argument[0];ReturnValue;taint;manual",
-        "java.lang;AbstractStringBuilder;true;AbstractStringBuilder;(String);;Argument[0];Argument[-1];taint;manual",
-        "java.lang;AbstractStringBuilder;true;append;;;Argument[0];Argument[-1];taint;manual",
-        "java.lang;AbstractStringBuilder;true;append;;;Argument[-1];ReturnValue;value;manual",
-        "java.lang;AbstractStringBuilder;true;getChars;;;Argument[-1];Argument[2];taint;manual",
-        "java.lang;AbstractStringBuilder;true;insert;;;Argument[1];Argument[-1];taint;manual",
-        "java.lang;AbstractStringBuilder;true;insert;;;Argument[-1];ReturnValue;value;manual",
-        "java.lang;AbstractStringBuilder;true;replace;;;Argument[-1];ReturnValue;value;manual",
-        "java.lang;AbstractStringBuilder;true;replace;;;Argument[2];Argument[-1];taint;manual",
-        "java.lang;AbstractStringBuilder;true;reverse;;;Argument[-1];ReturnValue;value;manual",
-        "java.lang;AbstractStringBuilder;true;subSequence;;;Argument[-1];ReturnValue;taint;manual",
-        "java.lang;AbstractStringBuilder;true;substring;;;Argument[-1];ReturnValue;taint;manual",
-        "java.lang;AbstractStringBuilder;true;toString;;;Argument[-1];ReturnValue;taint;manual",
-        "java.lang;StringBuffer;true;StringBuffer;(CharSequence);;Argument[0];Argument[-1];taint;manual",
-        "java.lang;StringBuffer;true;StringBuffer;(String);;Argument[0];Argument[-1];taint;manual",
-        "java.lang;StringBuilder;true;StringBuilder;;;Argument[0];Argument[-1];taint;manual",
-        "java.lang;CharSequence;true;charAt;;;Argument[-1];ReturnValue;taint;manual",
-        "java.lang;CharSequence;true;subSequence;;;Argument[-1];ReturnValue;taint;manual",
-        "java.lang;CharSequence;true;toString;;;Argument[-1];ReturnValue;taint;manual"
-      ]
-  }
-}
diff --git a/java/ql/lib/semmle/code/java/frameworks/Thymeleaf.qll b/java/ql/lib/semmle/code/java/frameworks/Thymeleaf.qll
deleted file mode 100644
index 3c550d5441c..00000000000
--- a/java/ql/lib/semmle/code/java/frameworks/Thymeleaf.qll
+++ /dev/null
@@ -1,16 +0,0 @@
-/**
- * Provides classes and predicates for working with the Thymeleaf template engine.
- */
-
-import java
-private import semmle.code.java.dataflow.ExternalFlow
-
-private class ThymeleafSummaryModels extends SummaryModelCsv {
-  override predicate row(string row) {
-    row =
-      [
-        "org.thymeleaf;TemplateSpec;false;TemplateSpec;;;Argument[0];Argument[-1];taint;manual",
-        "org.thymeleaf;TemplateSpec;false;getTemplate;;;Argument[-1];ReturnValue;taint;manual",
-      ]
-  }
-}
diff --git a/java/ql/lib/semmle/code/java/frameworks/android/Android.qll b/java/ql/lib/semmle/code/java/frameworks/android/Android.qll
index 30f087408af..7b76302bc05 100644
--- a/java/ql/lib/semmle/code/java/frameworks/android/Android.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/android/Android.qll
@@ -103,74 +103,6 @@ class AndroidContentResolver extends AndroidComponent {
   }
 }
 
-private class UriModel extends SummaryModelCsv {
-  override predicate row(string row) {
-    row =
-      [
-        "android.net;Uri;true;buildUpon;;;Argument[-1];ReturnValue;taint;manual",
-        "android.net;Uri;false;decode;;;Argument[0];ReturnValue;taint;manual",
-        "android.net;Uri;false;encode;;;Argument[0];ReturnValue;taint;manual",
-        "android.net;Uri;false;fromFile;;;Argument[0];ReturnValue;taint;manual",
-        "android.net;Uri;false;fromParts;;;Argument[0..2];ReturnValue;taint;manual",
-        "android.net;Uri;true;getAuthority;;;Argument[-1];ReturnValue;taint;manual",
-        "android.net;Uri;true;getEncodedAuthority;;;Argument[-1];ReturnValue;taint;manual",
-        "android.net;Uri;true;getEncodedFragment;;;Argument[-1];ReturnValue;taint;manual",
-        "android.net;Uri;true;getEncodedPath;;;Argument[-1];ReturnValue;taint;manual",
-        "android.net;Uri;true;getEncodedQuery;;;Argument[-1];ReturnValue;taint;manual",
-        "android.net;Uri;true;getEncodedSchemeSpecificPart;;;Argument[-1];ReturnValue;taint;manual",
-        "android.net;Uri;true;getEncodedUserInfo;;;Argument[-1];ReturnValue;taint;manual",
-        "android.net;Uri;true;getFragment;;;Argument[-1];ReturnValue;taint;manual",
-        "android.net;Uri;true;getHost;;;Argument[-1];ReturnValue;taint;manual",
-        "android.net;Uri;true;getLastPathSegment;;;Argument[-1];ReturnValue;taint;manual",
-        "android.net;Uri;true;getPath;;;Argument[-1];ReturnValue;taint;manual",
-        "android.net;Uri;true;getPathSegments;;;Argument[-1];ReturnValue;taint;manual",
-        "android.net;Uri;true;getQuery;;;Argument[-1];ReturnValue;taint;manual",
-        "android.net;Uri;true;getQueryParameter;;;Argument[-1];ReturnValue;taint;manual",
-        "android.net;Uri;true;getQueryParameterNames;;;Argument[-1];ReturnValue;taint;manual",
-        "android.net;Uri;true;getQueryParameters;;;Argument[-1];ReturnValue;taint;manual",
-        "android.net;Uri;true;getScheme;;;Argument[-1];ReturnValue;taint;manual",
-        "android.net;Uri;true;getSchemeSpecificPart;;;Argument[-1];ReturnValue;taint;manual",
-        "android.net;Uri;true;getUserInfo;;;Argument[-1];ReturnValue;taint;manual",
-        "android.net;Uri;true;normalizeScheme;;;Argument[-1];ReturnValue;taint;manual",
-        "android.net;Uri;false;parse;;;Argument[0];ReturnValue;taint;manual",
-        "android.net;Uri;true;toString;;;Argument[-1];ReturnValue;taint;manual",
-        "android.net;Uri;false;withAppendedPath;;;Argument[0..1];ReturnValue;taint;manual",
-        "android.net;Uri;false;writeToParcel;;;Argument[1];Argument[0];taint;manual",
-        "android.net;Uri$Builder;false;appendEncodedPath;;;Argument[0];Argument[-1];taint;manual",
-        "android.net;Uri$Builder;false;appendEncodedPath;;;Argument[-1];ReturnValue;value;manual",
-        "android.net;Uri$Builder;false;appendPath;;;Argument[0];Argument[-1];taint;manual",
-        "android.net;Uri$Builder;false;appendPath;;;Argument[-1];ReturnValue;value;manual",
-        "android.net;Uri$Builder;false;appendQueryParameter;;;Argument[0..1];Argument[-1];taint;manual",
-        "android.net;Uri$Builder;false;appendQueryParameter;;;Argument[-1];ReturnValue;value;manual",
-        "android.net;Uri$Builder;false;authority;;;Argument[0];Argument[-1];taint;manual",
-        "android.net;Uri$Builder;false;authority;;;Argument[-1];ReturnValue;value;manual",
-        "android.net;Uri$Builder;false;build;;;Argument[-1];ReturnValue;taint;manual",
-        "android.net;Uri$Builder;false;clearQuery;;;Argument[-1];ReturnValue;value;manual",
-        "android.net;Uri$Builder;false;encodedAuthority;;;Argument[0];Argument[-1];taint;manual",
-        "android.net;Uri$Builder;false;encodedAuthority;;;Argument[-1];ReturnValue;value;manual",
-        "android.net;Uri$Builder;false;encodedFragment;;;Argument[0];Argument[-1];taint;manual",
-        "android.net;Uri$Builder;false;encodedFragment;;;Argument[-1];ReturnValue;value;manual",
-        "android.net;Uri$Builder;false;encodedOpaquePart;;;Argument[0];Argument[-1];taint;manual",
-        "android.net;Uri$Builder;false;encodedOpaquePart;;;Argument[-1];ReturnValue;value;manual",
-        "android.net;Uri$Builder;false;encodedPath;;;Argument[0];Argument[-1];taint;manual",
-        "android.net;Uri$Builder;false;encodedPath;;;Argument[-1];ReturnValue;value;manual",
-        "android.net;Uri$Builder;false;encodedQuery;;;Argument[0];Argument[-1];taint;manual",
-        "android.net;Uri$Builder;false;encodedQuery;;;Argument[-1];ReturnValue;value;manual",
-        "android.net;Uri$Builder;false;fragment;;;Argument[0];Argument[-1];taint;manual",
-        "android.net;Uri$Builder;false;fragment;;;Argument[-1];ReturnValue;value;manual",
-        "android.net;Uri$Builder;false;opaquePart;;;Argument[0];Argument[-1];taint;manual",
-        "android.net;Uri$Builder;false;opaquePart;;;Argument[-1];ReturnValue;value;manual",
-        "android.net;Uri$Builder;false;path;;;Argument[0];Argument[-1];taint;manual",
-        "android.net;Uri$Builder;false;path;;;Argument[-1];ReturnValue;value;manual",
-        "android.net;Uri$Builder;false;query;;;Argument[0];Argument[-1];taint;manual",
-        "android.net;Uri$Builder;false;query;;;Argument[-1];ReturnValue;value;manual",
-        "android.net;Uri$Builder;false;scheme;;;Argument[0];Argument[-1];taint;manual",
-        "android.net;Uri$Builder;false;scheme;;;Argument[-1];ReturnValue;value;manual",
-        "android.net;Uri$Builder;false;toString;;;Argument[-1];ReturnValue;taint;manual"
-      ]
-  }
-}
-
 /** Interface for classes whose instances can be written to and restored from a Parcel. */
 class TypeParcelable extends Interface {
   TypeParcelable() { this.hasQualifiedName("android.os", "Parcelable") }
@@ -185,29 +117,3 @@ class CreateFromParcelMethod extends Method {
     this.getEnclosingCallable().getDeclaringType().getAnAncestor() instanceof TypeParcelable
   }
 }
-
-private class ParcelPropagationModels extends SummaryModelCsv {
-  override predicate row(string s) {
-    // Parcel readers that return their value
-    s =
-      "android.os;Parcel;false;read" +
-        [
-          "Array", "ArrayList", "Boolean", "Bundle", "Byte", "Double", "FileDescriptor", "Float",
-          "HashMap", "Int", "Long", "Parcelable", "ParcelableArray", "PersistableBundle",
-          "Serializable", "Size", "SizeF", "SparseArray", "SparseBooleanArray", "String",
-          "StrongBinder", "TypedObject", "Value"
-        ] + ";;;Argument[-1];ReturnValue;taint;manual"
-    or
-    // Parcel readers that write to an existing object
-    s =
-      "android.os;Parcel;false;read" +
-        [
-          "BinderArray", "BinderList", "BooleanArray", "ByteArray", "CharArray", "DoubleArray",
-          "FloatArray", "IntArray", "List", "LongArray", "Map", "ParcelableList", "StringArray",
-          "StringList", "TypedArray", "TypedList"
-        ] + ";;;Argument[-1];Argument[0];taint;manual"
-    or
-    // One Parcel method that aliases an argument to a return value
-    s = "android.os;Parcel;false;readParcelableList;;;Argument[0];ReturnValue;value;manual"
-  }
-}
diff --git a/java/ql/lib/semmle/code/java/frameworks/android/ContentProviders.qll b/java/ql/lib/semmle/code/java/frameworks/android/ContentProviders.qll
index bf47e98b8fb..df51d59063e 100644
--- a/java/ql/lib/semmle/code/java/frameworks/android/ContentProviders.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/android/ContentProviders.qll
@@ -9,107 +9,3 @@ private import semmle.code.java.dataflow.ExternalFlow
 class ContentValues extends Class {
   ContentValues() { this.hasQualifiedName("android.content", "ContentValues") }
 }
-
-private class ContentProviderSourceModels extends SourceModelCsv {
-  override predicate row(string row) {
-    row =
-      [
-        // ContentInterface models are here for backwards compatibility (it was removed in API 28)
-        "android.content;ContentInterface;true;call;(String,String,String,Bundle);;Parameter[0..3];contentprovider;manual",
-        "android.content;ContentProvider;true;call;(String,String,String,Bundle);;Parameter[0..3];contentprovider;manual",
-        "android.content;ContentProvider;true;call;(String,String,Bundle);;Parameter[0..2];contentprovider;manual",
-        "android.content;ContentProvider;true;delete;(Uri,String,String[]);;Parameter[0..2];contentprovider;manual",
-        "android.content;ContentInterface;true;delete;(Uri,Bundle);;Parameter[0..1];contentprovider;manual",
-        "android.content;ContentProvider;true;delete;(Uri,Bundle);;Parameter[0..1];contentprovider;manual",
-        "android.content;ContentInterface;true;getType;(Uri);;Parameter[0];contentprovider;manual",
-        "android.content;ContentProvider;true;getType;(Uri);;Parameter[0];contentprovider;manual",
-        "android.content;ContentInterface;true;insert;(Uri,ContentValues,Bundle);;Parameter[0];contentprovider;manual",
-        "android.content;ContentProvider;true;insert;(Uri,ContentValues,Bundle);;Parameter[0..2];contentprovider;manual",
-        "android.content;ContentProvider;true;insert;(Uri,ContentValues);;Parameter[0..1];contentprovider;manual",
-        "android.content;ContentInterface;true;openAssetFile;(Uri,String,CancellationSignal);;Parameter[0];contentprovider;manual",
-        "android.content;ContentProvider;true;openAssetFile;(Uri,String,CancellationSignal);;Parameter[0];contentprovider;manual",
-        "android.content;ContentProvider;true;openAssetFile;(Uri,String);;Parameter[0];contentprovider;manual",
-        "android.content;ContentInterface;true;openTypedAssetFile;(Uri,String,Bundle,CancellationSignal);;Parameter[0..2];contentprovider;manual",
-        "android.content;ContentProvider;true;openTypedAssetFile;(Uri,String,Bundle,CancellationSignal);;Parameter[0..2];contentprovider;manual",
-        "android.content;ContentProvider;true;openTypedAssetFile;(Uri,String,Bundle);;Parameter[0..2];contentprovider;manual",
-        "android.content;ContentInterface;true;openFile;(Uri,String,CancellationSignal);;Parameter[0];contentprovider;manual",
-        "android.content;ContentProvider;true;openFile;(Uri,String,CancellationSignal);;Parameter[0];contentprovider;manual",
-        "android.content;ContentProvider;true;openFile;(Uri,String);;Parameter[0];contentprovider;manual",
-        "android.content;ContentInterface;true;query;(Uri,String[],Bundle,CancellationSignal);;Parameter[0..2];contentprovider;manual",
-        "android.content;ContentProvider;true;query;(Uri,String[],Bundle,CancellationSignal);;Parameter[0..2];contentprovider;manual",
-        "android.content;ContentProvider;true;query;(Uri,String[],String,String[],String);;Parameter[0..4];contentprovider;manual",
-        "android.content;ContentProvider;true;query;(Uri,String[],String,String[],String,CancellationSignal);;Parameter[0..4];contentprovider;manual",
-        "android.content;ContentInterface;true;update;(Uri,ContentValues,Bundle);;Parameter[0..2];contentprovider;manual",
-        "android.content;ContentProvider;true;update;(Uri,ContentValues,Bundle);;Parameter[0..2];contentprovider;manual",
-        "android.content;ContentProvider;true;update;(Uri,ContentValues,String,String[]);;Parameter[0..3];contentprovider;manual"
-      ]
-  }
-}
-
-private class SummaryModels extends SummaryModelCsv {
-  override predicate row(string row) {
-    row =
-      [
-        "android.content;ContentValues;false;put;;;Argument[0];Argument[-1].MapKey;value;manual",
-        "android.content;ContentValues;false;put;;;Argument[1];Argument[-1].MapValue;value;manual",
-        "android.content;ContentValues;false;putAll;;;Argument[0].MapKey;Argument[-1].MapKey;value;manual",
-        "android.content;ContentValues;false;putAll;;;Argument[0].MapValue;Argument[-1].MapValue;value;manual",
-        "android.content;ContentResolver;true;acquireContentProviderClient;;;Argument[0];ReturnValue;taint;manual",
-        "android.content;ContentResolver;true;acquireUnstableContentProviderClient;;;Argument[0];ReturnValue;taint;manual",
-        "android.content;ContentResolver;true;applyBatch;;;Argument[1];ReturnValue;taint;manual",
-        "android.content;ContentResolver;true;call;;;Argument[0];ReturnValue;taint;manual",
-        "android.content;ContentResolver;true;canonicalize;;;Argument[0];ReturnValue;taint;manual",
-        "android.content;ContentResolver;true;getStreamTypes;;;Argument[0];ReturnValue;taint;manual",
-        "android.content;ContentResolver;true;getType;;;Argument[0];ReturnValue;taint;manual",
-        "android.content;ContentResolver;true;insert;;;Argument[0];ReturnValue;taint;manual",
-        "android.content;ContentResolver;true;query;;;Argument[0];ReturnValue;taint;manual",
-        "android.content;ContentResolver;true;uncanonicalize;;;Argument[0];ReturnValue;taint;manual",
-        "android.content;ContentResolver;true;wrap;;;Argument[0];ReturnValue;taint;manual",
-        // ContentProviderClient is tainted at its creation, not by its arguments
-        "android.content;ContentProviderClient;true;applyBatch;;;Argument[-1];ReturnValue;taint;manual",
-        "android.content;ContentProviderClient;true;call;;;Argument[-1];ReturnValue;taint;manual",
-        "android.content;ContentProviderClient;true;canonicalize;;;Argument[-1];ReturnValue;taint;manual",
-        "android.content;ContentProviderClient;true;getLocalContentProvider;;;Argument[-1];ReturnValue;taint;manual",
-        "android.content;ContentProviderClient;true;getStreamTypes;;;Argument[-1];ReturnValue;taint;manual",
-        "android.content;ContentProviderClient;true;insert;;;Argument[-1];ReturnValue;taint;manual",
-        "android.content;ContentProviderClient;true;query;;;Argument[-1];ReturnValue;taint;manual",
-        "android.content;ContentProviderClient;true;uncanonicalize;;;Argument[-1];ReturnValue;taint;manual",
-        "android.content;ContentProviderOperation;false;apply;;;Argument[-1];ReturnValue;taint;manual",
-        "android.content;ContentProviderOperation;false;apply;;;Argument[0];ReturnValue;taint;manual",
-        "android.content;ContentProviderOperation;false;getUri;;;Argument[-1];ReturnValue;taint;manual",
-        "android.content;ContentProviderOperation;false;newAssertQuery;;;Argument[0];ReturnValue;taint;manual",
-        "android.content;ContentProviderOperation;false;newCall;;;Argument[0];ReturnValue;taint;manual",
-        "android.content;ContentProviderOperation;false;newDelete;;;Argument[0];ReturnValue;taint;manual",
-        "android.content;ContentProviderOperation;false;newInsert;;;Argument[0];ReturnValue;taint;manual",
-        "android.content;ContentProviderOperation;false;newUpdate;;;Argument[0];ReturnValue;taint;manual",
-        "android.content;ContentProviderOperation;false;resolveExtrasBackReferences;;;Argument[0];ReturnValue;taint;manual",
-        "android.content;ContentProviderOperation;false;resolveSelectionArgsBackReferences;;;Argument[0];ReturnValue;taint;manual",
-        "android.content;ContentProviderOperation;false;resolveValueBackReferences;;;Argument[0];ReturnValue;taint;manual",
-        "android.content;ContentProviderOperation$Builder;false;build;;;Argument[-1];ReturnValue;taint;manual",
-        "android.content;ContentProviderOperation$Builder;false;withExceptionAllowed;;;Argument[-1];ReturnValue;value;manual",
-        "android.content;ContentProviderOperation$Builder;false;withExpectedCount;;;Argument[-1];ReturnValue;value;manual",
-        "android.content;ContentProviderOperation$Builder;false;withExtra;;;Argument[-1];ReturnValue;value;manual",
-        "android.content;ContentProviderOperation$Builder;false;withExtraBackReference;;;Argument[-1];ReturnValue;value;manual",
-        "android.content;ContentProviderOperation$Builder;false;withExtras;;;Argument[-1];ReturnValue;value;manual",
-        "android.content;ContentProviderOperation$Builder;false;withSelection;;;Argument[-1];ReturnValue;value;manual",
-        "android.content;ContentProviderOperation$Builder;false;withSelectionBackReference;;;Argument[-1];ReturnValue;value;manual",
-        "android.content;ContentProviderOperation$Builder;false;withValue;;;Argument[-1];ReturnValue;value;manual",
-        "android.content;ContentProviderOperation$Builder;false;withValueBackReference;;;Argument[-1];ReturnValue;value;manual",
-        "android.content;ContentProviderOperation$Builder;false;withValues;;;Argument[-1];ReturnValue;value;manual",
-        "android.content;ContentProviderOperation$Builder;false;withYieldAllowed;;;Argument[-1];ReturnValue;value;manual",
-        "android.content;ContentProviderResult;false;ContentProviderResult;(Uri);;Argument[0];Argument[-1].Field[android.content.ContentProviderResult.uri];value;manual",
-        "android.content;ContentProviderResult;false;ContentProviderResult;(Bundle);;Argument[0];Argument[-1].Field[android.content.ContentProviderResult.extras];value;manual",
-        "android.content;ContentProviderResult;false;ContentProviderResult;(Throwable);;Argument[0];Argument[-1].Field[android.content.ContentProviderResult.exception];value;manual",
-        "android.content;ContentProviderResult;false;ContentProviderResult;(Parcel);;Argument[0];Argument[-1];taint;manual",
-        "android.database;Cursor;true;copyStringToBuffer;;;Argument[-1];Argument[1];taint;manual",
-        "android.database;Cursor;true;getBlob;;;Argument[-1];ReturnValue;taint;manual",
-        "android.database;Cursor;true;getColumnName;;;Argument[-1];ReturnValue;taint;manual",
-        "android.database;Cursor;true;getColumnNames;;;Argument[-1];ReturnValue;taint;manual",
-        "android.database;Cursor;true;getExtras;;;Argument[-1];ReturnValue;taint;manual",
-        "android.database;Cursor;true;getNotificationUri;;;Argument[-1];ReturnValue;taint;manual",
-        "android.database;Cursor;true;getNotificationUris;;;Argument[-1];ReturnValue;taint;manual",
-        "android.database;Cursor;true;getString;;;Argument[-1];ReturnValue;taint;manual",
-        "android.database;Cursor;true;respond;;;Argument[-1];ReturnValue;taint;manual"
-      ]
-  }
-}
diff --git a/java/ql/lib/semmle/code/java/frameworks/android/ExternalStorage.qll b/java/ql/lib/semmle/code/java/frameworks/android/ExternalStorage.qll
index 1e6919c023b..7eb088a9514 100644
--- a/java/ql/lib/semmle/code/java/frameworks/android/ExternalStorage.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/android/ExternalStorage.qll
@@ -5,21 +5,6 @@ private import semmle.code.java.security.FileReadWrite
 private import semmle.code.java.dataflow.DataFlow
 private import semmle.code.java.dataflow.ExternalFlow
 
-private class ExternalStorageDirSourceModel extends SourceModelCsv {
-  override predicate row(string row) {
-    row =
-      [
-        //"package;type;overrides;name;signature;ext;spec;kind"
-        "android.content;Context;true;getExternalFilesDir;(String);;ReturnValue;android-external-storage-dir;manual",
-        "android.content;Context;true;getExternalFilesDirs;(String);;ReturnValue;android-external-storage-dir;manual",
-        "android.content;Context;true;getExternalCacheDir;();;ReturnValue;android-external-storage-dir;manual",
-        "android.content;Context;true;getExternalCacheDirs;();;ReturnValue;android-external-storage-dir;manual",
-        "android.os;Environment;false;getExternalStorageDirectory;();;ReturnValue;android-external-storage-dir;manual",
-        "android.os;Environment;false;getExternalStoragePublicDirectory;(String);;ReturnValue;android-external-storage-dir;manual",
-      ]
-  }
-}
-
 private predicate externalStorageFlowStep(DataFlow::Node node1, DataFlow::Node node2) {
   DataFlow::localFlowStep(node1, node2)
   or
diff --git a/java/ql/lib/semmle/code/java/frameworks/android/Intent.qll b/java/ql/lib/semmle/code/java/frameworks/android/Intent.qll
index e37e7f350b8..4f6e9e3f5e4 100644
--- a/java/ql/lib/semmle/code/java/frameworks/android/Intent.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/android/Intent.qll
@@ -421,196 +421,3 @@ private class StartServiceIntentStep extends AdditionalValueStep {
     )
   }
 }
-
-private class IntentBundleFlowSteps extends SummaryModelCsv {
-  override predicate row(string row) {
-    row =
-      [
-        //"namespace;type;subtypes;name;signature;ext;input;output;kind"
-        "android.os;BaseBundle;true;get;(String);;Argument[-1].MapValue;ReturnValue;value;manual",
-        "android.os;BaseBundle;true;getString;(String);;Argument[-1].MapValue;ReturnValue;value;manual",
-        "android.os;BaseBundle;true;getString;(String,String);;Argument[-1].MapValue;ReturnValue;value;manual",
-        "android.os;BaseBundle;true;getString;(String,String);;Argument[1];ReturnValue;value;manual",
-        "android.os;BaseBundle;true;getStringArray;(String);;Argument[-1].MapValue;ReturnValue;value;manual",
-        "android.os;BaseBundle;true;keySet;();;Argument[-1].MapKey;ReturnValue.Element;value;manual",
-        "android.os;BaseBundle;true;putAll;(PersistableBundle);;Argument[0].MapKey;Argument[-1].MapKey;value;manual",
-        "android.os;BaseBundle;true;putAll;(PersistableBundle);;Argument[0].MapValue;Argument[-1].MapValue;value;manual",
-        "android.os;BaseBundle;true;putBoolean;;;Argument[0];Argument[-1].MapKey;value;manual",
-        "android.os;BaseBundle;true;putBooleanArray;;;Argument[0];Argument[-1].MapKey;value;manual",
-        "android.os;BaseBundle;true;putDouble;;;Argument[0];Argument[-1].MapKey;value;manual",
-        "android.os;BaseBundle;true;putDoubleArray;;;Argument[0];Argument[-1].MapKey;value;manual",
-        "android.os;BaseBundle;true;putInt;;;Argument[0];Argument[-1].MapKey;value;manual",
-        "android.os;BaseBundle;true;putIntArray;;;Argument[0];Argument[-1].MapKey;value;manual",
-        "android.os;BaseBundle;true;putLong;;;Argument[0];Argument[-1].MapKey;value;manual",
-        "android.os;BaseBundle;true;putLongArray;;;Argument[0];Argument[-1].MapKey;value;manual",
-        "android.os;BaseBundle;true;putString;;;Argument[0];Argument[-1].MapKey;value;manual",
-        "android.os;BaseBundle;true;putString;;;Argument[1];Argument[-1].MapValue;value;manual",
-        "android.os;BaseBundle;true;putStringArray;;;Argument[0];Argument[-1].MapKey;value;manual",
-        "android.os;BaseBundle;true;putStringArray;;;Argument[1];Argument[-1].MapValue;value;manual",
-        "android.os;Bundle;false;Bundle;(Bundle);;Argument[0].MapKey;Argument[-1].MapKey;value;manual",
-        "android.os;Bundle;false;Bundle;(Bundle);;Argument[0].MapValue;Argument[-1].MapValue;value;manual",
-        "android.os;Bundle;false;Bundle;(PersistableBundle);;Argument[0].MapKey;Argument[-1].MapKey;value;manual",
-        "android.os;Bundle;false;Bundle;(PersistableBundle);;Argument[0].MapValue;Argument[-1].MapValue;value;manual",
-        "android.os;Bundle;true;clone;();;Argument[-1].MapKey;ReturnValue.MapKey;value;manual",
-        "android.os;Bundle;true;clone;();;Argument[-1].MapValue;ReturnValue.MapValue;value;manual",
-        // model for Bundle.deepCopy is not fully precise, as some map values aren't copied by value
-        "android.os;Bundle;true;deepCopy;();;Argument[-1].MapKey;ReturnValue.MapKey;value;manual",
-        "android.os;Bundle;true;deepCopy;();;Argument[-1].MapValue;ReturnValue.MapValue;value;manual",
-        "android.os;Bundle;true;getBinder;(String);;Argument[-1].MapValue;ReturnValue;value;manual",
-        "android.os;Bundle;true;getBundle;(String);;Argument[-1].MapValue;ReturnValue;value;manual",
-        "android.os;Bundle;true;getByteArray;(String);;Argument[-1].MapValue;ReturnValue;value;manual",
-        "android.os;Bundle;true;getCharArray;(String);;Argument[-1].MapValue;ReturnValue;value;manual",
-        "android.os;Bundle;true;getCharSequence;(String);;Argument[-1].MapValue;ReturnValue;value;manual",
-        "android.os;Bundle;true;getCharSequence;(String,CharSequence);;Argument[-1].MapValue;ReturnValue;value;manual",
-        "android.os;Bundle;true;getCharSequence;(String,CharSequence);;Argument[1];ReturnValue;value;manual",
-        "android.os;Bundle;true;getCharSequenceArray;(String);;Argument[-1].MapValue;ReturnValue;value;manual",
-        "android.os;Bundle;true;getCharSequenceArrayList;(String);;Argument[-1].MapValue;ReturnValue;value;manual",
-        "android.os;Bundle;true;getParcelable;(String);;Argument[-1].MapValue;ReturnValue;value;manual",
-        "android.os;Bundle;true;getParcelableArray;(String);;Argument[-1].MapValue;ReturnValue;value;manual",
-        "android.os;Bundle;true;getParcelableArrayList;(String);;Argument[-1].MapValue;ReturnValue;value;manual",
-        "android.os;Bundle;true;getSerializable;(String);;Argument[-1].MapValue;ReturnValue;value;manual",
-        "android.os;Bundle;true;getSparseParcelableArray;(String);;Argument[-1].MapValue;ReturnValue;value;manual",
-        "android.os;Bundle;true;getStringArrayList;(String);;Argument[-1].MapValue;ReturnValue;value;manual",
-        "android.os;Bundle;true;putAll;(Bundle);;Argument[0].MapKey;Argument[-1].MapKey;value;manual",
-        "android.os;Bundle;true;putAll;(Bundle);;Argument[0].MapValue;Argument[-1].MapValue;value;manual",
-        "android.os;Bundle;true;putBinder;;;Argument[0];Argument[-1].MapKey;value;manual",
-        "android.os;Bundle;true;putBinder;;;Argument[1];Argument[-1].MapValue;value;manual",
-        "android.os;Bundle;true;putBundle;;;Argument[0];Argument[-1].MapKey;value;manual",
-        "android.os;Bundle;true;putBundle;;;Argument[1];Argument[-1].MapValue;value;manual",
-        "android.os;Bundle;true;putByte;;;Argument[0];Argument[-1].MapKey;value;manual",
-        "android.os;Bundle;true;putByteArray;;;Argument[0];Argument[-1].MapKey;value;manual",
-        "android.os;Bundle;true;putByteArray;;;Argument[1];Argument[-1].MapValue;value;manual",
-        "android.os;Bundle;true;putChar;;;Argument[0];Argument[-1].MapKey;value;manual",
-        "android.os;Bundle;true;putCharArray;;;Argument[0];Argument[-1].MapKey;value;manual",
-        "android.os;Bundle;true;putCharArray;;;Argument[1];Argument[-1].MapValue;value;manual",
-        "android.os;Bundle;true;putCharSequence;;;Argument[0];Argument[-1].MapKey;value;manual",
-        "android.os;Bundle;true;putCharSequence;;;Argument[1];Argument[-1].MapValue;value;manual",
-        "android.os;Bundle;true;putCharSequenceArray;;;Argument[0];Argument[-1].MapKey;value;manual",
-        "android.os;Bundle;true;putCharSequenceArray;;;Argument[1];Argument[-1].MapValue;value;manual",
-        "android.os;Bundle;true;putCharSequenceArrayList;;;Argument[0];Argument[-1].MapKey;value;manual",
-        "android.os;Bundle;true;putCharSequenceArrayList;;;Argument[1];Argument[-1].MapValue;value;manual",
-        "android.os;Bundle;true;putFloat;;;Argument[0];Argument[-1].MapKey;value;manual",
-        "android.os;Bundle;true;putFloatArray;;;Argument[0];Argument[-1].MapKey;value;manual",
-        "android.os;Bundle;true;putIntegerArrayList;;;Argument[0];Argument[-1].MapKey;value;manual",
-        "android.os;Bundle;true;putParcelable;;;Argument[0];Argument[-1].MapKey;value;manual",
-        "android.os;Bundle;true;putParcelable;;;Argument[1];Argument[-1].MapValue;value;manual",
-        "android.os;Bundle;true;putParcelableArray;;;Argument[0];Argument[-1].MapKey;value;manual",
-        "android.os;Bundle;true;putParcelableArray;;;Argument[1];Argument[-1].MapValue;value;manual",
-        "android.os;Bundle;true;putParcelableArrayList;;;Argument[0];Argument[-1].MapKey;value;manual",
-        "android.os;Bundle;true;putParcelableArrayList;;;Argument[1];Argument[-1].MapValue;value;manual",
-        "android.os;Bundle;true;putSerializable;;;Argument[0];Argument[-1].MapKey;value;manual",
-        "android.os;Bundle;true;putSerializable;;;Argument[1];Argument[-1].MapValue;value;manual",
-        "android.os;Bundle;true;putShort;;;Argument[0];Argument[-1].MapKey;value;manual",
-        "android.os;Bundle;true;putShortArray;;;Argument[0];Argument[-1].MapKey;value;manual",
-        "android.os;Bundle;true;putSize;;;Argument[0];Argument[-1].MapKey;value;manual",
-        "android.os;Bundle;true;putSizeF;;;Argument[0];Argument[-1].MapKey;value;manual",
-        "android.os;Bundle;true;putSparseParcelableArray;;;Argument[0];Argument[-1].MapKey;value;manual",
-        "android.os;Bundle;true;putSparseParcelableArray;;;Argument[1];Argument[-1].MapValue;value;manual",
-        "android.os;Bundle;true;putStringArrayList;;;Argument[0];Argument[-1].MapKey;value;manual",
-        "android.os;Bundle;true;putStringArrayList;;;Argument[1];Argument[-1].MapValue;value;manual",
-        "android.os;Bundle;true;readFromParcel;;;Argument[0];Argument[-1].MapKey;taint;manual",
-        "android.os;Bundle;true;readFromParcel;;;Argument[0];Argument[-1].MapValue;taint;manual",
-        // currently only the Extras part of the intent and the data field are fully modeled
-        "android.content;Intent;false;Intent;(Intent);;Argument[0].SyntheticField[android.content.Intent.extras].MapKey;Argument[-1].SyntheticField[android.content.Intent.extras].MapKey;value;manual",
-        "android.content;Intent;false;Intent;(Intent);;Argument[0].SyntheticField[android.content.Intent.extras].MapValue;Argument[-1].SyntheticField[android.content.Intent.extras].MapValue;value;manual",
-        "android.content;Intent;false;Intent;(String,Uri);;Argument[1];Argument[-1].SyntheticField[android.content.Intent.data];value;manual",
-        "android.content;Intent;false;Intent;(String,Uri,Context,Class);;Argument[1];Argument[-1].SyntheticField[android.content.Intent.data];value;manual",
-        "android.content;Intent;true;addCategory;;;Argument[-1];ReturnValue;value;manual",
-        "android.content;Intent;true;addFlags;;;Argument[-1];ReturnValue;value;manual",
-        "android.content;Intent;false;createChooser;;;Argument[0..2];ReturnValue.SyntheticField[android.content.Intent.extras].MapValue;value;manual",
-        "android.content;Intent;true;getBundleExtra;(String);;Argument[-1].SyntheticField[android.content.Intent.extras].MapValue;ReturnValue;value;manual",
-        "android.content;Intent;true;getByteArrayExtra;(String);;Argument[-1].SyntheticField[android.content.Intent.extras].MapValue;ReturnValue;value;manual",
-        "android.content;Intent;true;getCharArrayExtra;(String);;Argument[-1].SyntheticField[android.content.Intent.extras].MapValue;ReturnValue;value;manual",
-        "android.content;Intent;true;getCharSequenceArrayExtra;(String);;Argument[-1].SyntheticField[android.content.Intent.extras].MapValue;ReturnValue;value;manual",
-        "android.content;Intent;true;getCharSequenceArrayListExtra;(String);;Argument[-1].SyntheticField[android.content.Intent.extras].MapValue;ReturnValue;value;manual",
-        "android.content;Intent;true;getCharSequenceExtra;(String);;Argument[-1].SyntheticField[android.content.Intent.extras].MapValue;ReturnValue;value;manual",
-        "android.content;Intent;true;getData;;;Argument[-1].SyntheticField[android.content.Intent.data];ReturnValue;value;manual",
-        "android.content;Intent;true;getDataString;;;Argument[-1].SyntheticField[android.content.Intent.data];ReturnValue;taint;manual",
-        "android.content;Intent;true;getExtras;();;Argument[-1].SyntheticField[android.content.Intent.extras];ReturnValue;value;manual",
-        "android.content;Intent;false;getIntent;;;Argument[0];ReturnValue.SyntheticField[android.content.Intent.data];taint;manual",
-        "android.content;Intent;false;getIntentOld;;;Argument[0];ReturnValue.SyntheticField[android.content.Intent.data];taint;manual",
-        "android.content;Intent;true;getParcelableArrayExtra;(String);;Argument[-1].SyntheticField[android.content.Intent.extras].MapValue;ReturnValue;value;manual",
-        "android.content;Intent;true;getParcelableArrayListExtra;(String);;Argument[-1].SyntheticField[android.content.Intent.extras].MapValue;ReturnValue;value;manual",
-        "android.content;Intent;true;getParcelableExtra;(String);;Argument[-1].SyntheticField[android.content.Intent.extras].MapValue;ReturnValue;value;manual",
-        "android.content;Intent;true;getSerializableExtra;(String);;Argument[-1].SyntheticField[android.content.Intent.extras].MapValue;ReturnValue;value;manual",
-        "android.content;Intent;true;getStringArrayExtra;(String);;Argument[-1].SyntheticField[android.content.Intent.extras].MapValue;ReturnValue;value;manual",
-        "android.content;Intent;true;getStringArrayListExtra;(String);;Argument[-1].SyntheticField[android.content.Intent.extras].MapValue;ReturnValue;value;manual",
-        "android.content;Intent;true;getStringExtra;(String);;Argument[-1].SyntheticField[android.content.Intent.extras].MapValue;ReturnValue;value;manual",
-        "android.content;Intent;false;parseUri;;;Argument[0];ReturnValue.SyntheticField[android.content.Intent.data];taint;manual",
-        "android.content;Intent;true;putCharSequenceArrayListExtra;;;Argument[0];Argument[-1].SyntheticField[android.content.Intent.extras].MapKey;value;manual",
-        "android.content;Intent;true;putCharSequenceArrayListExtra;;;Argument[1];Argument[-1].SyntheticField[android.content.Intent.extras].MapValue;value;manual",
-        "android.content;Intent;true;putCharSequenceArrayListExtra;;;Argument[-1];ReturnValue;value;manual",
-        "android.content;Intent;true;putExtra;;;Argument[0];Argument[-1].SyntheticField[android.content.Intent.extras].MapKey;value;manual",
-        "android.content;Intent;true;putExtra;;;Argument[1];Argument[-1].SyntheticField[android.content.Intent.extras].MapValue;value;manual",
-        "android.content;Intent;true;putExtra;;;Argument[-1];ReturnValue;value;manual",
-        "android.content;Intent;true;putExtras;(Bundle);;Argument[0].MapKey;Argument[-1].SyntheticField[android.content.Intent.extras].MapKey;value;manual",
-        "android.content;Intent;true;putExtras;(Bundle);;Argument[0].MapValue;Argument[-1].SyntheticField[android.content.Intent.extras].MapValue;value;manual",
-        "android.content;Intent;true;putExtras;(Bundle);;Argument[-1];ReturnValue;value;manual",
-        "android.content;Intent;true;putExtras;(Intent);;Argument[0].SyntheticField[android.content.Intent.extras].MapKey;Argument[-1].SyntheticField[android.content.Intent.extras].MapKey;value;manual",
-        "android.content;Intent;true;putExtras;(Intent);;Argument[0].SyntheticField[android.content.Intent.extras].MapValue;Argument[-1].SyntheticField[android.content.Intent.extras].MapValue;value;manual",
-        "android.content;Intent;true;putExtras;(Intent);;Argument[-1];ReturnValue;value;manual",
-        "android.content;Intent;true;putIntegerArrayListExtra;;;Argument[0];Argument[-1].SyntheticField[android.content.Intent.extras].MapKey;value;manual",
-        "android.content;Intent;true;putIntegerArrayListExtra;;;Argument[-1];ReturnValue;value;manual",
-        "android.content;Intent;true;putParcelableArrayListExtra;;;Argument[0];Argument[-1].SyntheticField[android.content.Intent.extras].MapKey;value;manual",
-        "android.content;Intent;true;putParcelableArrayListExtra;;;Argument[1];Argument[-1].SyntheticField[android.content.Intent.extras].MapValue;value;manual",
-        "android.content;Intent;true;putParcelableArrayListExtra;;;Argument[-1];ReturnValue;value;manual",
-        "android.content;Intent;true;putStringArrayListExtra;;;Argument[0];Argument[-1].SyntheticField[android.content.Intent.extras].MapKey;value;manual",
-        "android.content;Intent;true;putStringArrayListExtra;;;Argument[1];Argument[-1].SyntheticField[android.content.Intent.extras].MapValue;value;manual",
-        "android.content;Intent;true;putStringArrayListExtra;;;Argument[-1];ReturnValue;value;manual",
-        "android.content;Intent;true;replaceExtras;(Bundle);;Argument[0].MapKey;Argument[-1].SyntheticField[android.content.Intent.extras].MapKey;value;manual",
-        "android.content;Intent;true;replaceExtras;(Bundle);;Argument[0].MapValue;Argument[-1].SyntheticField[android.content.Intent.extras].MapValue;value;manual",
-        "android.content;Intent;true;replaceExtras;(Bundle);;Argument[-1];ReturnValue;value;manual",
-        "android.content;Intent;true;replaceExtras;(Intent);;Argument[0].SyntheticField[android.content.Intent.extras].MapKey;Argument[-1].SyntheticField[android.content.Intent.extras].MapKey;value;manual",
-        "android.content;Intent;true;replaceExtras;(Intent);;Argument[0].SyntheticField[android.content.Intent.extras].MapValue;Argument[-1].SyntheticField[android.content.Intent.extras].MapValue;value;manual",
-        "android.content;Intent;true;replaceExtras;(Intent);;Argument[-1];ReturnValue;value;manual",
-        "android.content;Intent;true;setAction;;;Argument[-1];ReturnValue;value;manual",
-        "android.content;Intent;true;setClass;;;Argument[-1];ReturnValue;value;manual",
-        "android.content;Intent;true;setClassName;;;Argument[-1];ReturnValue;value;manual",
-        "android.content;Intent;true;setComponent;;;Argument[-1];ReturnValue;value;manual",
-        "android.content;Intent;true;setData;;;Argument[-1];ReturnValue;value;manual",
-        "android.content;Intent;true;setData;;;Argument[0];Argument[-1].SyntheticField[android.content.Intent.data];value;manual",
-        "android.content;Intent;true;setDataAndNormalize;;;Argument[-1];ReturnValue;value;manual",
-        "android.content;Intent;true;setDataAndNormalize;;;Argument[0];Argument[-1].SyntheticField[android.content.Intent.data];value;manual",
-        "android.content;Intent;true;setDataAndType;;;Argument[-1];ReturnValue;value;manual",
-        "android.content;Intent;true;setDataAndType;;;Argument[0];Argument[-1].SyntheticField[android.content.Intent.data];value;manual",
-        "android.content;Intent;true;setDataAndTypeAndNormalize;;;Argument[-1];ReturnValue;value;manual",
-        "android.content;Intent;true;setDataAndTypeAndNormalize;;;Argument[0];Argument[-1].SyntheticField[android.content.Intent.data];value;manual",
-        "android.content;Intent;true;setFlags;;;Argument[-1];ReturnValue;value;manual",
-        "android.content;Intent;true;setIdentifier;;;Argument[-1];ReturnValue;value;manual",
-        "android.content;Intent;true;setPackage;;;Argument[-1];ReturnValue;value;manual",
-        "android.content;Intent;true;setType;;;Argument[-1];ReturnValue;value;manual",
-        "android.content;Intent;true;setTypeAndNormalize;;;Argument[-1];ReturnValue;value;manual"
-      ]
-  }
-}
-
-private class IntentComponentTaintSteps extends SummaryModelCsv {
-  override predicate row(string s) {
-    s =
-      [
-        "android.content;Intent;true;Intent;(Intent);;Argument[0];Argument[-1];taint;manual",
-        "android.content;Intent;true;Intent;(Context,Class);;Argument[1];Argument[-1];taint;manual",
-        "android.content;Intent;true;Intent;(String,Uri,Context,Class);;Argument[3];Argument[-1];taint;manual",
-        "android.content;Intent;true;getIntent;(String);;Argument[0];ReturnValue;taint;manual",
-        "android.content;Intent;true;getIntentOld;(String);;Argument[0];ReturnValue;taint;manual",
-        "android.content;Intent;true;parseUri;(String,int);;Argument[0];ReturnValue;taint;manual",
-        "android.content;Intent;true;setPackage;;;Argument[0];Argument[-1];taint;manual",
-        "android.content;Intent;true;setClass;;;Argument[1];Argument[-1];taint;manual",
-        "android.content;Intent;true;setClassName;(Context,String);;Argument[1];Argument[-1];taint;manual",
-        "android.content;Intent;true;setClassName;(String,String);;Argument[0..1];Argument[-1];taint;manual",
-        "android.content;Intent;true;setComponent;;;Argument[0];Argument[-1];taint;manual",
-        "android.content;ComponentName;false;ComponentName;(String,String);;Argument[0..1];Argument[-1];taint;manual",
-        "android.content;ComponentName;false;ComponentName;(Context,String);;Argument[1];Argument[-1];taint;manual",
-        "android.content;ComponentName;false;ComponentName;(Context,Class);;Argument[1];Argument[-1];taint;manual",
-        "android.content;ComponentName;false;ComponentName;(Parcel);;Argument[0];Argument[-1];taint;manual",
-        "android.content;ComponentName;false;createRelative;(String,String);;Argument[0..1];ReturnValue;taint;manual",
-        "android.content;ComponentName;false;createRelative;(Context,String);;Argument[1];ReturnValue;taint;manual",
-        "android.content;ComponentName;false;flattenToShortString;;;Argument[-1];ReturnValue;taint;manual",
-        "android.content;ComponentName;false;flattenToString;;;Argument[-1];ReturnValue;taint;manual",
-        "android.content;ComponentName;false;getClassName;;;Argument[-1];ReturnValue;taint;manual",
-        "android.content;ComponentName;false;getPackageName;;;Argument[-1];ReturnValue;taint;manual",
-        "android.content;ComponentName;false;getShortClassName;;;Argument[-1];ReturnValue;taint;manual",
-        "android.content;ComponentName;false;unflattenFromString;;;Argument[0];ReturnValue;taint;manual"
-      ]
-  }
-}
diff --git a/java/ql/lib/semmle/code/java/frameworks/android/Notifications.qll b/java/ql/lib/semmle/code/java/frameworks/android/Notifications.qll
deleted file mode 100644
index 0f69f0bbe1d..00000000000
--- a/java/ql/lib/semmle/code/java/frameworks/android/Notifications.qll
+++ /dev/null
@@ -1,101 +0,0 @@
-/** Provides classes and predicates related to Android notifications. */
-
-import java
-private import semmle.code.java.dataflow.DataFlow
-private import semmle.code.java.dataflow.ExternalFlow
-private import semmle.code.java.dataflow.FlowSteps
-
-private class NotificationBuildersSummaryModels extends SummaryModelCsv {
-  override predicate row(string row) {
-    row =
-      [
-        "android.app;Notification$Action;true;Action;(int,CharSequence,PendingIntent);;Argument[2];Argument[-1];taint;manual",
-        "android.app;Notification$Action;true;getExtras;;;Argument[-1].SyntheticField[android.content.Intent.extras];ReturnValue;value;manual",
-        "android.app;Notification$Action$Builder;true;Builder;(int,CharSequence,PendingIntent);;Argument[2];Argument[-1];taint;manual",
-        "android.app;Notification$Action$Builder;true;Builder;(Icon,CharSequence,PendingIntent);;Argument[2];Argument[-1];taint;manual",
-        "android.app;Notification$Action$Builder;true;Builder;(Action);;Argument[0];Argument[-1];taint;manual",
-        "android.app;Notification$Action$Builder;true;addExtras;;;Argument[0].MapKey;Argument[-1].SyntheticField[android.content.Intent.extras].MapKey;value;manual",
-        "android.app;Notification$Action$Builder;true;addExtras;;;Argument[0].MapValue;Argument[-1].SyntheticField[android.content.Intent.extras].MapValue;value;manual",
-        "android.app;Notification$Action$Builder;true;build;;;Argument[-1];ReturnValue;taint;manual",
-        "android.app;Notification$Action$Builder;true;build;;;Argument[-1].SyntheticField[android.content.Intent.extras];ReturnValue.SyntheticField[android.content.Intent.extras];value;manual",
-        "android.app;Notification$Action$Builder;true;getExtras;;;Argument[-1].SyntheticField[android.content.Intent.extras];ReturnValue;value;manual",
-        "androidx.core.app;NotificationCompat$Action;true;Action;(int,CharSequence,PendingIntent);;Argument[2];Argument[-1];taint;manual",
-        "androidx.core.app;NotificationCompat$Action;true;Action;(IconCompat,CharSequence,PendingIntent);;Argument[2];Argument[-1];taint;manual",
-        "androidx.core.app;NotificationCompat$Action;true;getExtras;;;Argument[-1].SyntheticField[android.content.Intent.extras];ReturnValue;value;manual",
-        "androidx.core.app;NotificationCompat$Action$Builder;true;Builder;(int,CharSequence,PendingIntent);;Argument[2];Argument[-1];taint;manual",
-        "androidx.core.app;NotificationCompat$Action$Builder;true;Builder;(IconCompat,CharSequence,PendingIntent);;Argument[2];Argument[-1];taint;manual",
-        "androidx.core.app;NotificationCompat$Action$Builder;true;Builder;(Action);;Argument[0];Argument[-1];taint;manual",
-        "androidx.core.app;NotificationCompat$Action$Builder;true;addExtras;;;Argument[0].MapKey;Argument[-1].SyntheticField[android.content.Intent.extras].MapKey;value;manual",
-        "androidx.core.app;NotificationCompat$Action$Builder;true;addExtras;;;Argument[0].MapValue;Argument[-1].SyntheticField[android.content.Intent.extras].MapValue;value;manual",
-        "androidx.core.app;NotificationCompat$Action$Builder;true;build;;;Argument[-1];ReturnValue;taint;manual",
-        "androidx.core.app;NotificationCompat$Action$Builder;true;build;;;Argument[-1].SyntheticField[android.content.Intent.extras];ReturnValue.SyntheticField[android.content.Intent.extras];value;manual",
-        "androidx.core.app;NotificationCompat$Action$Builder;true;getExtras;;;Argument[-1].SyntheticField[android.content.Intent.extras];ReturnValue;value;manual",
-        "android.app;Notification$Builder;true;addAction;(int,CharSequence,PendingIntent);;Argument[2];Argument[-1];taint;manual",
-        "android.app;Notification$Builder;true;addAction;(Action);;Argument[0];Argument[-1];taint;manual",
-        "android.app;Notification$Builder;true;addExtras;;;Argument[0].MapKey;Argument[-1].SyntheticField[android.content.Intent.extras].MapKey;value;manual",
-        "android.app;Notification$Builder;true;addExtras;;;Argument[0].MapValue;Argument[-1].SyntheticField[android.content.Intent.extras].MapValue;value;manual",
-        "android.app;Notification$Builder;true;build;;;Argument[-1];ReturnValue;taint;manual",
-        "android.app;Notification$Builder;true;build;;;Argument[-1].SyntheticField[android.content.Intent.extras];ReturnValue.Field[android.app.Notification.extras];value;manual",
-        "android.app;Notification$Builder;true;setContentIntent;;;Argument[0];Argument[-1];taint;manual",
-        "android.app;Notification$Builder;true;getExtras;;;Argument[-1].SyntheticField[android.content.Intent.extras];ReturnValue;value;manual",
-        "android.app;Notification$Builder;true;recoverBuilder;;;Argument[1];ReturnValue;taint;manual",
-        "android.app;Notification$Builder;true;setActions;;;Argument[0].ArrayElement;Argument[-1];taint;manual",
-        "android.app;Notification$Builder;true;setExtras;;;Argument[0];Argument[-1].SyntheticField[android.content.Intent.extras];value;manual",
-        "android.app;Notification$Builder;true;setDeleteIntent;;;Argument[0];Argument[-1];taint;manual",
-        "android.app;Notification$Builder;true;setPublicVersion;;;Argument[0];Argument[-1];taint;manual",
-        "androidx.core.app;NotificationCompat$Builder;true;addAction;(int,CharSequence,PendingIntent);;Argument[2];Argument[-1];taint;manual",
-        "androidx.core.app;NotificationCompat$Builder;true;addAction;(Action);;Argument[0];Argument[-1];taint;manual",
-        "androidx.core.app;NotificationCompat$Builder;true;addExtras;;;Argument[0].MapKey;Argument[-1].SyntheticField[android.content.Intent.extras].MapKey;value;manual",
-        "androidx.core.app;NotificationCompat$Builder;true;addExtras;;;Argument[0].MapValue;Argument[-1].SyntheticField[android.content.Intent.extras].MapValue;value;manual",
-        "androidx.core.app;NotificationCompat$Builder;true;build;;;Argument[-1];ReturnValue;taint;manual",
-        "androidx.core.app;NotificationCompat$Builder;true;build;;;Argument[-1].SyntheticField[android.content.Intent.extras];ReturnValue.Field[android.app.Notification.extras];value;manual",
-        "androidx.core.app;NotificationCompat$Builder;true;setContentIntent;;;Argument[0];Argument[-1];taint;manual",
-        "androidx.core.app;NotificationCompat$Builder;true;getExtras;;;Argument[-1].SyntheticField[android.content.Intent.extras];ReturnValue;value;manual",
-        "androidx.core.app;NotificationCompat$Builder;true;setExtras;;;Argument[0];Argument[-1].SyntheticField[android.content.Intent.extras];value;manual",
-        "androidx.core.app;NotificationCompat$Builder;true;setDeleteIntent;;;Argument[0];Argument[-1];taint;manual",
-        "androidx.core.app;NotificationCompat$Builder;true;setPublicVersion;;;Argument[0];Argument[-1];taint;manual",
-        "android.app;Notification$Style;true;build;;;Argument[-1];ReturnValue;taint;manual",
-        "android.app;Notification$BigPictureStyle;true;BigPictureStyle;(Builder);;Argument[0];Argument[-1];taint;manual",
-        "android.app;Notification$BigTextStyle;true;BigTextStyle;(Builder);;Argument[0];Argument[-1];taint;manual",
-        "android.app;Notification$InboxStyle;true;InboxStyle;(Builder);;Argument[0];Argument[-1];taint;manual",
-        "android.app;Notification$MediaStyle;true;MediaStyle;(Builder);;Argument[0];Argument[-1];taint;manual",
-        // Fluent models
-        ["android.app;Notification", "androidx.core.app;NotificationCompat"] +
-          "$Action$Builder;true;" +
-          [
-            "addExtras", "addRemoteInput", "extend", "setAllowGeneratedReplies",
-            "setAuthenticationRequired", "setContextual", "setSemanticAction"
-          ] + ";;;Argument[-1];ReturnValue;value;manual",
-        ["android.app;Notification", "androidx.core.app;NotificationCompat"] + "$Builder;true;" +
-          [
-            "addAction", "addExtras", "addPerson", "extend", "setActions", "setAutoCancel",
-            "setBadgeIconType", "setBubbleMetadata", "setCategory", "setChannelId",
-            "setChronometerCountDown", "setColor", "setColorized", "setContent", "setContentInfo",
-            "setContentIntent", "setContentText", "setContentTitle", "setCustomBigContentView",
-            "setCustomHeadsUpContentView", "setDefaults", "setDeleteIntent", "setExtras", "setFlag",
-            "setForegroundServiceBehavior", "setFullScreenIntent", "setGroup",
-            "setGroupAlertBehavior", "setGroupSummary", "setLargeIcon", "setLights", "setLocalOnly",
-            "setLocusId", "setNumber", "setOngoing", "setOnlyAlertOnce", "setPriority",
-            "setProgress", "setPublicVersion", "setRemoteInputHistory", "setSettingsText",
-            "setShortcutId", "setShowWhen", "setSmallIcon", "setSortKey", "setSound", "setStyle",
-            "setSubText", "setTicker", "setTimeoutAfter", "setUsesChronometer", "setVibrate",
-            "setVisibility", "setWhen"
-          ] + ";;;Argument[-1];ReturnValue;value;manual",
-        ["android.app;Notification", "androidx.core.app;NotificationCompat"] +
-          "$BigPictureStyle;true;" +
-          [
-            "bigLargeIcon", "bigPicture", "setBigContentTitle", "setContentDescription",
-            "setSummaryText", "showBigPictureWhenCollapsed"
-          ] + ";;;Argument[-1];ReturnValue;value;manual",
-        ["android.app;Notification", "androidx.core.app;NotificationCompat"] + "$BigTextStyle;true;"
-          + ["bigText", "setBigContentTitle", "setSummaryText"] +
-          ";;;Argument[-1];ReturnValue;value;manual",
-        ["android.app;Notification", "androidx.core.app;NotificationCompat"] + "$InboxStyle;true;" +
-          ["addLine", "setBigContentTitle", "setSummaryText"] +
-          ";;;Argument[-1];ReturnValue;value;manual",
-        "android.app;Notification$MediaStyle;true;" +
-          ["setMediaSession", "setShowActionsInCompactView"] +
-          ";;;Argument[-1];ReturnValue;value;manual"
-      ]
-  }
-}
diff --git a/java/ql/lib/semmle/code/java/frameworks/android/SQLite.qll b/java/ql/lib/semmle/code/java/frameworks/android/SQLite.qll
index 5f1c1b19171..eb6765de9e4 100644
--- a/java/ql/lib/semmle/code/java/frameworks/android/SQLite.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/android/SQLite.qll
@@ -41,138 +41,3 @@ class TypeSQLiteOpenHelper extends Class {
 class TypeSQLiteStatement extends Class {
   TypeSQLiteStatement() { this.hasQualifiedName("android.database.sqlite", "SQLiteStatement") }
 }
-
-private class SQLiteSinkCsv extends SinkModelCsv {
-  override predicate row(string row) {
-    row =
-      [
-        //"package;type;overrides;name;signature;ext;spec;kind"
-        "android.database.sqlite;SQLiteDatabase;false;compileStatement;(String);;Argument[0];sql;manual",
-        "android.database.sqlite;SQLiteDatabase;false;execSQL;(String);;Argument[0];sql;manual",
-        "android.database.sqlite;SQLiteDatabase;false;execSQL;(String,Object[]);;Argument[0];sql;manual",
-        "android.database.sqlite;SQLiteDatabase;false;execPerConnectionSQL;(String,Object[]);;Argument[0];sql;manual",
-        // query(boolean distinct, String table, String[] columns, String selection, String[] selectionArgs, String groupBy, String having, String orderBy, String limit)
-        // query(boolean distinct, String table, String[] columns, String selection, String[] selectionArgs, String groupBy, String having, String orderBy, String limit, CancellationSignal cancellationSignal)
-        // query(String table, String[] columns, String selection, String[] selectionArgs, String groupBy, String having, String orderBy, String limit)
-        // query(String table, String[] columns, String selection, String[] selectionArgs, String groupBy, String having, String orderBy)
-        // queryWithFactory(SQLiteDatabase.CursorFactory cursorFactory, boolean distinct, String table, String[] columns, String selection, String[] selectionArgs, String groupBy, String having, String orderBy, String limit, CancellationSignal cancellationSignal)
-        // queryWithFactory(SQLiteDatabase.CursorFactory cursorFactory, boolean distinct, String table, String[] columns, String selection, String[] selectionArgs, String groupBy, String having, String orderBy, String limit)
-        // Each String / String[] arg except for selectionArgs is a sink
-        "android.database.sqlite;SQLiteDatabase;false;query;(String,String[],String,String[],String,String,String,String);;Argument[0];sql;manual",
-        "android.database.sqlite;SQLiteDatabase;false;query;(String,String[],String,String[],String,String,String,String);;Argument[1];sql;manual",
-        "android.database.sqlite;SQLiteDatabase;false;query;(String,String[],String,String[],String,String,String,String);;Argument[2];sql;manual",
-        "android.database.sqlite;SQLiteDatabase;false;query;(String,String[],String,String[],String,String,String,String);;Argument[4..7];sql;manual",
-        "android.database.sqlite;SQLiteDatabase;false;query;(String,String[],String,String[],String,String,String);;Argument[0..2];sql;manual",
-        "android.database.sqlite;SQLiteDatabase;false;query;(String,String[],String,String[],String,String,String);;Argument[4..6];sql;manual",
-        "android.database.sqlite;SQLiteDatabase;false;query;(boolean,String,String[],String,String[],String,String,String,String);;Argument[1];sql;manual",
-        "android.database.sqlite;SQLiteDatabase;false;query;(boolean,String,String[],String,String[],String,String,String,String);;Argument[2];sql;manual",
-        "android.database.sqlite;SQLiteDatabase;false;query;(boolean,String,String[],String,String[],String,String,String,String);;Argument[3];sql;manual",
-        "android.database.sqlite;SQLiteDatabase;false;query;(boolean,String,String[],String,String[],String,String,String,String);;Argument[5..8];sql;manual",
-        "android.database.sqlite;SQLiteDatabase;false;query;(boolean,String,String[],String,String[],String,String,String,String,CancellationSignal);;Argument[1];sql;manual",
-        "android.database.sqlite;SQLiteDatabase;false;query;(boolean,String,String[],String,String[],String,String,String,String,CancellationSignal);;Argument[2];sql;manual",
-        "android.database.sqlite;SQLiteDatabase;false;query;(boolean,String,String[],String,String[],String,String,String,String,CancellationSignal);;Argument[3];sql;manual",
-        "android.database.sqlite;SQLiteDatabase;false;query;(boolean,String,String[],String,String[],String,String,String,String,CancellationSignal);;Argument[5..8];sql;manual",
-        "android.database.sqlite;SQLiteDatabase;false;queryWithFactory;(CursorFactory,boolean,String,String[],String,String[],String,String,String,String);;Argument[2];sql;manual",
-        "android.database.sqlite;SQLiteDatabase;false;queryWithFactory;(CursorFactory,boolean,String,String[],String,String[],String,String,String,String);;Argument[3];sql;manual",
-        "android.database.sqlite;SQLiteDatabase;false;queryWithFactory;(CursorFactory,boolean,String,String[],String,String[],String,String,String,String);;Argument[4];sql;manual",
-        "android.database.sqlite;SQLiteDatabase;false;queryWithFactory;(CursorFactory,boolean,String,String[],String,String[],String,String,String,String);;Argument[6..9];sql;manual",
-        "android.database.sqlite;SQLiteDatabase;false;queryWithFactory;(CursorFactory,boolean,String,String[],String,String[],String,String,String,String,CancellationSignal);;Argument[2];sql;manual",
-        "android.database.sqlite;SQLiteDatabase;false;queryWithFactory;(CursorFactory,boolean,String,String[],String,String[],String,String,String,String,CancellationSignal);;Argument[3];sql;manual",
-        "android.database.sqlite;SQLiteDatabase;false;queryWithFactory;(CursorFactory,boolean,String,String[],String,String[],String,String,String,String,CancellationSignal);;Argument[4];sql;manual",
-        "android.database.sqlite;SQLiteDatabase;false;queryWithFactory;(CursorFactory,boolean,String,String[],String,String[],String,String,String,String,CancellationSignal);;Argument[6..9];sql;manual",
-        "android.database.sqlite;SQLiteDatabase;false;rawQuery;(String,String[]);;Argument[0];sql;manual",
-        "android.database.sqlite;SQLiteDatabase;false;rawQuery;(String,String[],CancellationSignal);;Argument[0];sql;manual",
-        "android.database.sqlite;SQLiteDatabase;false;rawQueryWithFactory;(CursorFactory,String,String[],String);;Argument[1];sql;manual",
-        "android.database.sqlite;SQLiteDatabase;false;rawQueryWithFactory;(CursorFactory,String,String[],String,CancellationSignal);;Argument[1];sql;manual",
-        "android.database.sqlite;SQLiteDatabase;false;delete;(String,String,String[]);;Argument[0..1];sql;manual",
-        "android.database.sqlite;SQLiteDatabase;false;update;(String,ContentValues,String,String[]);;Argument[0];sql;manual",
-        "android.database.sqlite;SQLiteDatabase;false;update;(String,ContentValues,String,String[]);;Argument[2];sql;manual",
-        "android.database.sqlite;SQLiteDatabase;false;updateWithOnConflict;(String,ContentValues,String,String[],int);;Argument[0];sql;manual",
-        "android.database.sqlite;SQLiteDatabase;false;updateWithOnConflict;(String,ContentValues,String,String[],int);;Argument[2];sql;manual",
-        "android.database;DatabaseUtils;false;longForQuery;(SQLiteDatabase,String,String[]);;Argument[1];sql;manual",
-        "android.database;DatabaseUtils;false;stringForQuery;(SQLiteDatabase,String,String[]);;Argument[1];sql;manual",
-        "android.database;DatabaseUtils;false;blobFileDescriptorForQuery;(SQLiteDatabase,String,String[]);;Argument[1];sql;manual",
-        "android.database;DatabaseUtils;false;createDbFromSqlStatements;(Context,String,int,String);;Argument[3];sql;manual",
-        "android.database;DatabaseUtils;false;queryNumEntries;(SQLiteDatabase,String);;Argument[1];sql;manual",
-        "android.database;DatabaseUtils;false;queryNumEntries;(SQLiteDatabase,String,String);;Argument[1..2];sql;manual",
-        "android.database;DatabaseUtils;false;queryNumEntries;(SQLiteDatabase,String,String,String[]);;Argument[1..2];sql;manual",
-        "android.database.sqlite;SQLiteQueryBuilder;true;delete;(SQLiteDatabase,String,String[]);;Argument[-1];sql;manual",
-        "android.database.sqlite;SQLiteQueryBuilder;true;delete;(SQLiteDatabase,String,String[]);;Argument[1];sql;manual",
-        "android.database.sqlite;SQLiteQueryBuilder;true;insert;(SQLiteDatabase,ContentValues);;Argument[-1];sql;manual",
-        "android.database.sqlite;SQLiteQueryBuilder;true;update;(SQLiteDatabase,ContentValues,String,String[]);;Argument[-1];sql;manual",
-        "android.database.sqlite;SQLiteQueryBuilder;true;update;(SQLiteDatabase,ContentValues,String,String[]);;Argument[2];sql;manual",
-        // query(SQLiteDatabase db, String[] projectionIn, String selection, String[] selectionArgs, String groupBy, String having, String sortOrder)
-        // query(SQLiteDatabase db, String[] projectionIn, String selection, String[] selectionArgs, String groupBy, String having, String sortOrder, String limit)
-        // query(SQLiteDatabase db, String[] projectionIn, String selection, String[] selectionArgs, String groupBy, String having, String sortOrder, String limit, CancellationSignal cancellationSignal)
-        "android.database.sqlite;SQLiteQueryBuilder;true;query;(SQLiteDatabase,String[],String,String[],String,String,String);;Argument[-1];sql;manual",
-        "android.database.sqlite;SQLiteQueryBuilder;true;query;(SQLiteDatabase,String[],String,String[],String,String,String);;Argument[1];sql;manual",
-        "android.database.sqlite;SQLiteQueryBuilder;true;query;(SQLiteDatabase,String[],String,String[],String,String,String);;Argument[2];sql;manual",
-        "android.database.sqlite;SQLiteQueryBuilder;true;query;(SQLiteDatabase,String[],String,String[],String,String,String);;Argument[4..6];sql;manual",
-        "android.database.sqlite;SQLiteQueryBuilder;true;query;(SQLiteDatabase,String[],String,String[],String,String,String,String);;Argument[-1];sql;manual",
-        "android.database.sqlite;SQLiteQueryBuilder;true;query;(SQLiteDatabase,String[],String,String[],String,String,String,String);;Argument[1];sql;manual",
-        "android.database.sqlite;SQLiteQueryBuilder;true;query;(SQLiteDatabase,String[],String,String[],String,String,String,String);;Argument[2];sql;manual",
-        "android.database.sqlite;SQLiteQueryBuilder;true;query;(SQLiteDatabase,String[],String,String[],String,String,String,String);;Argument[4..7];sql;manual",
-        "android.database.sqlite;SQLiteQueryBuilder;true;query;(SQLiteDatabase,String[],String,String[],String,String,String,String,CancellationSignal);;Argument[-1];sql;manual",
-        "android.database.sqlite;SQLiteQueryBuilder;true;query;(SQLiteDatabase,String[],String,String[],String,String,String,String,CancellationSignal);;Argument[1];sql;manual",
-        "android.database.sqlite;SQLiteQueryBuilder;true;query;(SQLiteDatabase,String[],String,String[],String,String,String,String,CancellationSignal);;Argument[2];sql;manual",
-        "android.database.sqlite;SQLiteQueryBuilder;true;query;(SQLiteDatabase,String[],String,String[],String,String,String,String,CancellationSignal);;Argument[4..7];sql;manual",
-        "android.content;ContentProvider;true;delete;(Uri,String,String[]);;Argument[1];sql;manual",
-        "android.content;ContentProvider;true;update;(Uri,ContentValues,String,String[]);;Argument[2];sql;manual",
-        "android.content;ContentProvider;true;query;(Uri,String[],String,String[],String,CancellationSignal);;Argument[2];sql;manual",
-        "android.content;ContentProvider;true;query;(Uri,String[],String,String[],String);;Argument[2];sql;manual",
-        "android.content;ContentResolver;true;delete;(Uri,String,String[]);;Argument[1];sql;manual",
-        "android.content;ContentResolver;true;update;(Uri,ContentValues,String,String[]);;Argument[2];sql;manual",
-        "android.content;ContentResolver;true;query;(Uri,String[],String,String[],String,CancellationSignal);;Argument[2];sql;manual",
-        "android.content;ContentResolver;true;query;(Uri,String[],String,String[],String);;Argument[2];sql;manual"
-      ]
-  }
-}
-
-private class SqlFlowStep extends SummaryModelCsv {
-  override predicate row(string row) {
-    row =
-      [
-        //"package;type;overrides;name;signature;ext;inputspec;outputspec;kind",
-        // buildQuery(String[] projectionIn, String selection, String groupBy, String having, String sortOrder, String limit)
-        // buildQuery(String[] projectionIn, String selection, String[] selectionArgs, String groupBy, String having, String sortOrder, String limit)
-        // buildUnionQuery(String[] subQueries, String sortOrder, String limit)
-        "android.database.sqlite;SQLiteQueryBuilder;true;buildQuery;(String[],String,String,String,String,String);;Argument[-1];ReturnValue;taint;manual",
-        "android.database.sqlite;SQLiteQueryBuilder;true;buildQuery;(String[],String,String,String,String,String);;Argument[0].ArrayElement;ReturnValue;taint;manual",
-        "android.database.sqlite;SQLiteQueryBuilder;true;buildQuery;(String[],String,String,String,String,String);;Argument[1..5];ReturnValue;taint;manual",
-        "android.database.sqlite;SQLiteQueryBuilder;true;buildQuery;(String[],String,String[],String,String,String,String);;Argument[-1];ReturnValue;taint;manual",
-        "android.database.sqlite;SQLiteQueryBuilder;true;buildQuery;(String[],String,String[],String,String,String,String);;Argument[0].ArrayElement;ReturnValue;taint;manual",
-        "android.database.sqlite;SQLiteQueryBuilder;true;buildQuery;(String[],String,String[],String,String,String,String);;Argument[1];ReturnValue;taint;manual",
-        "android.database.sqlite;SQLiteQueryBuilder;true;buildQuery;(String[],String,String[],String,String,String,String);;Argument[3..6];ReturnValue;taint;manual",
-        "android.database.sqlite;SQLiteQueryBuilder;true;buildUnionQuery;(String[],String,String);;Argument[-1];ReturnValue;taint;manual",
-        "android.database.sqlite;SQLiteQueryBuilder;true;buildUnionQuery;(String[],String,String);;Argument[0].ArrayElement;ReturnValue;taint;manual",
-        "android.database.sqlite;SQLiteQueryBuilder;true;buildUnionQuery;(String[],String,String);;Argument[1..2];ReturnValue;taint;manual",
-        // buildUnionSubQuery(String typeDiscriminatorColumn, String[] unionColumns, Set<String> columnsPresentInTable, int computedColumnsOffset, String typeDiscriminatorValue, String selection, String[] selectionArgs, String groupBy, String having)
-        // buildUnionSubQuery(String typeDiscriminatorColumn, String[] unionColumns, Set<String> columnsPresentInTable, int computedColumnsOffset, String typeDiscriminatorValue, String selection, String groupBy, String having)
-        "android.database.sqlite;SQLiteQueryBuilder;true;buildUnionSubQuery;(String,String[],Set,int,String,String,String[],String,String);;Argument[-1..0];ReturnValue;taint;manual",
-        "android.database.sqlite;SQLiteQueryBuilder;true;buildUnionSubQuery;(String,String[],Set,int,String,String,String[],String,String);;Argument[1].ArrayElement;ReturnValue;taint;manual",
-        "android.database.sqlite;SQLiteQueryBuilder;true;buildUnionSubQuery;(String,String[],Set,int,String,String,String[],String,String);;Argument[2].Element;ReturnValue;taint;manual",
-        "android.database.sqlite;SQLiteQueryBuilder;true;buildUnionSubQuery;(String,String[],Set,int,String,String,String[],String,String);;Argument[4..5];ReturnValue;taint;manual",
-        "android.database.sqlite;SQLiteQueryBuilder;true;buildUnionSubQuery;(String,String[],Set,int,String,String,String[],String,String);;Argument[7..8];ReturnValue;taint;manual",
-        "android.database.sqlite;SQLiteQueryBuilder;true;buildUnionSubQuery;(String,String[],Set,int,String,String,String,String);;Argument[-1..0];ReturnValue;taint;manual",
-        "android.database.sqlite;SQLiteQueryBuilder;true;buildUnionSubQuery;(String,String[],Set,int,String,String,String,String);;Argument[1].ArrayElement;ReturnValue;taint;manual",
-        "android.database.sqlite;SQLiteQueryBuilder;true;buildUnionSubQuery;(String,String[],Set,int,String,String,String,String);;Argument[2].Element;ReturnValue;taint;manual",
-        "android.database.sqlite;SQLiteQueryBuilder;true;buildUnionSubQuery;(String,String[],Set,int,String,String,String,String);;Argument[4..7];ReturnValue;taint;manual",
-        // static buildQueryString(boolean distinct, String tables, String[] columns, String where, String groupBy, String having, String orderBy, String limit)
-        "android.database.sqlite;SQLiteQueryBuilder;true;buildQueryString;(boolean,String,String[],String,String,String,String,String);;Argument[1];ReturnValue;taint;manual",
-        "android.database.sqlite;SQLiteQueryBuilder;true;buildQueryString;(boolean,String,String[],String,String,String,String,String);;Argument[2].ArrayElement;ReturnValue;taint;manual",
-        "android.database.sqlite;SQLiteQueryBuilder;true;buildQueryString;(boolean,String,String[],String,String,String,String,String);;Argument[3..7];ReturnValue;taint;manual",
-        "android.database.sqlite;SQLiteQueryBuilder;true;setProjectionMap;(Map);;Argument[0].MapKey;Argument[-1];taint;manual",
-        "android.database.sqlite;SQLiteQueryBuilder;true;setProjectionMap;(Map);;Argument[0].MapValue;Argument[-1];taint;manual",
-        "android.database.sqlite;SQLiteQueryBuilder;true;setTables;(String);;Argument[0];Argument[-1];taint;manual",
-        "android.database.sqlite;SQLiteQueryBuilder;true;appendWhere;(CharSequence);;Argument[0];Argument[-1];taint;manual",
-        "android.database.sqlite;SQLiteQueryBuilder;true;appendWhereStandalone;(CharSequence);;Argument[0];Argument[-1];taint;manual",
-        "android.database.sqlite;SQLiteQueryBuilder;true;appendColumns;(StringBuilder,String[]);;Argument[1].ArrayElement;Argument[0];taint;manual",
-        "android.database;DatabaseUtils;false;appendSelectionArgs;(String[],String[]);;Argument[0..1].ArrayElement;ReturnValue.ArrayElement;taint;manual",
-        "android.database;DatabaseUtils;false;concatenateWhere;(String,String);;Argument[0..1];ReturnValue;taint;manual",
-        "android.content;ContentProvider;true;query;(Uri,String[],String,String[],String);;Argument[0];ReturnValue;taint;manual",
-        "android.content;ContentProvider;true;query;(Uri,String[],String,String[],String,CancellationSignal);;Argument[0];ReturnValue;taint;manual",
-        "android.content;ContentResolver;true;query;(Uri,String[],String,String[],String);;Argument[0];ReturnValue;taint;manual",
-        "android.content;ContentResolver;true;query;(Uri,String[],String,String[],String,CancellationSignal);;Argument[0];ReturnValue;taint;manual"
-      ]
-  }
-}
diff --git a/java/ql/lib/semmle/code/java/frameworks/android/SharedPreferences.qll b/java/ql/lib/semmle/code/java/frameworks/android/SharedPreferences.qll
index 8a5c455fedd..99131155151 100644
--- a/java/ql/lib/semmle/code/java/frameworks/android/SharedPreferences.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/android/SharedPreferences.qll
@@ -56,19 +56,3 @@ class StoreSharedPreferenceMethod extends Method {
     this.hasName(["commit", "apply"])
   }
 }
-
-private class SharedPreferencesSummaries extends SummaryModelCsv {
-  override predicate row(string row) {
-    row =
-      [
-        "android.content;SharedPreferences$Editor;true;clear;;;Argument[-1];ReturnValue;value;manual",
-        "android.content;SharedPreferences$Editor;true;putBoolean;;;Argument[-1];ReturnValue;value;manual",
-        "android.content;SharedPreferences$Editor;true;putFloat;;;Argument[-1];ReturnValue;value;manual",
-        "android.content;SharedPreferences$Editor;true;putInt;;;Argument[-1];ReturnValue;value;manual",
-        "android.content;SharedPreferences$Editor;true;putLong;;;Argument[-1];ReturnValue;value;manual",
-        "android.content;SharedPreferences$Editor;true;putString;;;Argument[-1];ReturnValue;value;manual",
-        "android.content;SharedPreferences$Editor;true;putStringSet;;;Argument[-1];ReturnValue;value;manual",
-        "android.content;SharedPreferences$Editor;true;remove;;;Argument[-1];ReturnValue;value;manual"
-      ]
-  }
-}
diff --git a/java/ql/lib/semmle/code/java/frameworks/android/Slice.qll b/java/ql/lib/semmle/code/java/frameworks/android/Slice.qll
index b787f0ad282..393a543bbfb 100644
--- a/java/ql/lib/semmle/code/java/frameworks/android/Slice.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/android/Slice.qll
@@ -39,87 +39,3 @@ private class SliceActionsInheritTaint extends DataFlow::SyntheticFieldContent,
   TaintInheritingContent {
   SliceActionsInheritTaint() { this.getField() = "androidx.slice.Slice.action" }
 }
-
-private class SliceBuildersSummaryModels extends SummaryModelCsv {
-  override predicate row(string row) {
-    row =
-      [
-        "androidx.slice.builders;ListBuilder;true;addAction;;;Argument[0].SyntheticField[androidx.slice.Slice.action];Argument[-1].SyntheticField[androidx.slice.Slice.action];taint;manual",
-        "androidx.slice.builders;ListBuilder;true;addGridRow;;;Argument[0].SyntheticField[androidx.slice.Slice.action];Argument[-1].SyntheticField[androidx.slice.Slice.action];taint;manual",
-        "androidx.slice.builders;ListBuilder;true;addInputRange;;;Argument[0].SyntheticField[androidx.slice.Slice.action];Argument[-1].SyntheticField[androidx.slice.Slice.action];taint;manual",
-        "androidx.slice.builders;ListBuilder;true;addRange;;;Argument[0].SyntheticField[androidx.slice.Slice.action];Argument[-1].SyntheticField[androidx.slice.Slice.action];taint;manual",
-        "androidx.slice.builders;ListBuilder;true;addRating;;;Argument[0].SyntheticField[androidx.slice.Slice.action];Argument[-1].SyntheticField[androidx.slice.Slice.action];taint;manual",
-        "androidx.slice.builders;ListBuilder;true;addRow;;;Argument[0].SyntheticField[androidx.slice.Slice.action];Argument[-1].SyntheticField[androidx.slice.Slice.action];taint;manual",
-        "androidx.slice.builders;ListBuilder;true;addSelection;;;Argument[0].SyntheticField[androidx.slice.Slice.action];Argument[-1].SyntheticField[androidx.slice.Slice.action];taint;manual",
-        "androidx.slice.builders;ListBuilder;true;setHeader;;;Argument[0].SyntheticField[androidx.slice.Slice.action];Argument[-1].SyntheticField[androidx.slice.Slice.action];taint;manual",
-        "androidx.slice.builders;ListBuilder;true;setSeeMoreAction;(PendingIntent);;Argument[0];Argument[-1].SyntheticField[androidx.slice.Slice.action];taint;manual",
-        "androidx.slice.builders;ListBuilder;true;setSeeMoreRow;;;Argument[0].SyntheticField[androidx.slice.Slice.action];Argument[-1].SyntheticField[androidx.slice.Slice.action];taint;manual",
-        "androidx.slice.builders;ListBuilder;true;build;;;Argument[-1].SyntheticField[androidx.slice.Slice.action];ReturnValue;taint;manual",
-        "androidx.slice.builders;ListBuilder$HeaderBuilder;true;setPrimaryAction;;;Argument[0].SyntheticField[androidx.slice.Slice.action];Argument[-1].SyntheticField[androidx.slice.Slice.action];taint;manual",
-        "androidx.slice.builders;ListBuilder$InputRangeBuilder;true;addEndItem;;;Argument[0].SyntheticField[androidx.slice.Slice.action];Argument[-1].SyntheticField[androidx.slice.Slice.action];taint;manual",
-        "androidx.slice.builders;ListBuilder$InputRangeBuilder;true;setInputAction;(PendingIntent);;Argument[0];Argument[-1].SyntheticField[androidx.slice.Slice.action];taint;manual",
-        "androidx.slice.builders;ListBuilder$InputRangeBuilder;true;setPrimaryAction;;;Argument[0].SyntheticField[androidx.slice.Slice.action];Argument[-1].SyntheticField[androidx.slice.Slice.action];taint;manual",
-        "androidx.slice.builders;ListBuilder$RangeBuilder;true;setPrimaryAction;;;Argument[0].SyntheticField[androidx.slice.Slice.action];Argument[-1].SyntheticField[androidx.slice.Slice.action];taint;manual",
-        "androidx.slice.builders;ListBuilder$RatingBuilder;true;setInputAction;(PendingIntent);;Argument[0];Argument[-1].SyntheticField[androidx.slice.Slice.action];taint;manual",
-        "androidx.slice.builders;ListBuilder$RatingBuilder;true;setPrimaryAction;;;Argument[0].SyntheticField[androidx.slice.Slice.action];Argument[-1].SyntheticField[androidx.slice.Slice.action];taint;manual",
-        "androidx.slice.builders;ListBuilder$RowBuilder;true;addEndItem;(SliceAction,boolean);;Argument[0].SyntheticField[androidx.slice.Slice.action];Argument[-1].SyntheticField[androidx.slice.Slice.action];taint;manual",
-        "androidx.slice.builders;ListBuilder$RowBuilder;true;addEndItem;(SliceAction);;Argument[0].SyntheticField[androidx.slice.Slice.action];Argument[-1].SyntheticField[androidx.slice.Slice.action];taint;manual",
-        "androidx.slice.builders;ListBuilder$RowBuilder;true;setPrimaryAction;;;Argument[0].SyntheticField[androidx.slice.Slice.action];Argument[-1].SyntheticField[androidx.slice.Slice.action];taint;manual",
-        "androidx.slice.builders;ListBuilder$RowBuilder;true;setTitleItem;(SliceAction,boolean);;Argument[0].SyntheticField[androidx.slice.Slice.action];Argument[-1].SyntheticField[androidx.slice.Slice.action];taint;manual",
-        "androidx.slice.builders;ListBuilder$RowBuilder;true;setTitleItem;(SliceAction);;Argument[0].SyntheticField[androidx.slice.Slice.action];Argument[-1].SyntheticField[androidx.slice.Slice.action];taint;manual",
-        "androidx.slice.builders;SliceAction;true;create;(PendingIntent,IconCompat,int,CharSequence);;Argument[0];ReturnValue.SyntheticField[androidx.slice.Slice.action];taint;manual",
-        "androidx.slice.builders;SliceAction;true;createDeeplink;(PendingIntent,IconCompat,int,CharSequence);;Argument[0];ReturnValue.SyntheticField[androidx.slice.Slice.action];taint;manual",
-        "androidx.slice.builders;SliceAction;true;createToggle;(PendingIntent,CharSequence,boolean);;Argument[0];ReturnValue.SyntheticField[androidx.slice.Slice.action];taint;manual",
-        "androidx.slice.builders;SliceAction;true;getAction;;;Argument[-1].SyntheticField[androidx.slice.Slice.action];ReturnValue;taint;manual",
-        // Fluent models
-        "androidx.slice.builders;ListBuilder;true;" +
-          [
-            "addAction", "addGridRow", "addInputRange", "addRange", "addRating", "addRow",
-            "addSelection", "setAccentColor", "setHeader", "setHostExtras", "setIsError",
-            "setKeywords", "setLayoutDirection", "setSeeMoreAction", "setSeeMoreRow"
-          ] + ";;;Argument[-1];ReturnValue;value;manual",
-        "androidx.slice.builders;ListBuilder$HeaderBuilder;true;" +
-          [
-            "setContentDescription", "setLayoutDirection", "setPrimaryAction", "setSubtitle",
-            "setSummary", "setTitle"
-          ] + ";;;Argument[-1];ReturnValue;value;manual",
-        "androidx.slice.builders;ListBuilder$InputRangeBuilder;true;" +
-          [
-            "addEndItem", "setContentDescription", "setInputAction", "setLayoutDirection", "setMax",
-            "setMin", "setPrimaryAction", "setSubtitle", "setThumb", "setTitle", "setTitleItem",
-            "setValue"
-          ] + ";;;Argument[-1];ReturnValue;value;manual",
-        "androidx.slice.builders;ListBuilder$RangeBuilder;true;" +
-          [
-            "setContentDescription", "setMax", "setMode", "setPrimaryAction", "setSubtitle",
-            "setTitle", "setTitleItem", "setValue"
-          ] + ";;;Argument[-1];ReturnValue;value;manual",
-        "androidx.slice.builders;ListBuilder$RatingBuilder;true;" +
-          [
-            "setContentDescription", "setInputAction", "setMax", "setMin", "setPrimaryAction",
-            "setSubtitle", "setTitle", "setTitleItem", "setValue"
-          ] + ";;;Argument[-1];ReturnValue;value;manual",
-        "androidx.slice.builders;ListBuilder$RowBuilder;true;" +
-          [
-            "addEndItem", "setContentDescription", "setEndOfSection", "setLayoutDirection",
-            "setPrimaryAction", "setSubtitle", "setTitle", "setTitleItem"
-          ] + ";;;Argument[-1];ReturnValue;value;manual",
-        "androidx.slice.builders;SliceAction;true;" +
-          ["setChecked", "setContentDescription", "setPriority"] +
-          ";;;Argument[-1];ReturnValue;value;manual"
-      ]
-  }
-}
-
-private class SliceProviderSourceModels extends SourceModelCsv {
-  override predicate row(string row) {
-    row =
-      [
-        "androidx.slice;SliceProvider;true;onBindSlice;;;Parameter[0];contentprovider;manual",
-        "androidx.slice;SliceProvider;true;onCreatePermissionRequest;;;Parameter[0];contentprovider;manual",
-        "androidx.slice;SliceProvider;true;onMapIntentToUri;;;Parameter[0];contentprovider;manual",
-        "androidx.slice;SliceProvider;true;onSlicePinned;;;Parameter[0];contentprovider;manual",
-        "androidx.slice;SliceProvider;true;onSliceUnpinned;;;Parameter[0];contentprovider;manual"
-      ]
-  }
-}
diff --git a/java/ql/lib/semmle/code/java/frameworks/android/Widget.qll b/java/ql/lib/semmle/code/java/frameworks/android/Widget.qll
index e66852e8e2e..81c34179c15 100644
--- a/java/ql/lib/semmle/code/java/frameworks/android/Widget.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/android/Widget.qll
@@ -4,12 +4,6 @@ import java
 private import semmle.code.java.dataflow.ExternalFlow
 private import semmle.code.java.dataflow.FlowSources
 
-private class AndroidWidgetSourceModels extends SourceModelCsv {
-  override predicate row(string row) {
-    row = "android.widget;EditText;true;getText;;;ReturnValue;android-widget;manual"
-  }
-}
-
 private class DefaultAndroidWidgetSources extends RemoteFlowSource {
   DefaultAndroidWidgetSources() { sourceNode(this, "android-widget") }
 
@@ -35,9 +29,3 @@ private class EditableToStringStep extends AdditionalTaintStep {
     )
   }
 }
-
-private class AndroidWidgetSummaryModels extends SummaryModelCsv {
-  override predicate row(string row) {
-    row = "android.widget;EditText;true;getText;;;Argument[-1];ReturnValue;taint;manual"
-  }
-}
diff --git a/java/ql/lib/semmle/code/java/frameworks/android/XssSinks.qll b/java/ql/lib/semmle/code/java/frameworks/android/XssSinks.qll
deleted file mode 100644
index c324d22a605..00000000000
--- a/java/ql/lib/semmle/code/java/frameworks/android/XssSinks.qll
+++ /dev/null
@@ -1,16 +0,0 @@
-/** Provides XSS sink models relating to the `android.webkit.WebView` class. */
-
-import java
-private import semmle.code.java.dataflow.ExternalFlow
-
-/** CSV sink models representing methods susceptible to XSS attacks. */
-private class DefaultXssSinkModel extends SinkModelCsv {
-  override predicate row(string row) {
-    row =
-      [
-        "android.webkit;WebView;false;loadData;;;Argument[0];xss;manual",
-        "android.webkit;WebView;false;loadDataWithBaseURL;;;Argument[1];xss;manual",
-        "android.webkit;WebView;false;evaluateJavascript;;;Argument[0];xss;manual"
-      ]
-  }
-}
diff --git a/java/ql/lib/semmle/code/java/frameworks/apache/Collections.qll b/java/ql/lib/semmle/code/java/frameworks/apache/Collections.qll
index 4eb7f644233..6f8158b6c66 100644
--- a/java/ql/lib/semmle/code/java/frameworks/apache/Collections.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/apache/Collections.qll
@@ -29,1163 +29,3 @@ class MethodApacheCollectionsIsNotEmpty extends Method {
     this.hasName("isNotEmpty")
   }
 }
-
-/**
- * Value-propagating models for classes in the package `org.apache.commons.collections4`.
- */
-private class ApacheCollectionsModel extends SummaryModelCsv {
-  override predicate row(string row) {
-    row =
-      ["org.apache.commons.collections4", "org.apache.commons.collections"] +
-        [
-          // Note that when lambdas are supported we should model things relating to Closure, Factory, Transformer, FluentIterable.forEach, FluentIterable.transform
-          ";ArrayStack;true;peek;;;Argument[-1].Element;ReturnValue;value;manual",
-          ";ArrayStack;true;pop;;;Argument[-1].Element;ReturnValue;value;manual",
-          ";ArrayStack;true;push;;;Argument[0];Argument[-1].Element;value;manual",
-          ";ArrayStack;true;push;;;Argument[0];ReturnValue;value;manual",
-          ";Bag;true;add;;;Argument[0];Argument[-1].Element;value;manual",
-          ";Bag;true;uniqueSet;;;Argument[-1].Element;ReturnValue.Element;value;manual",
-          ";BidiMap;true;getKey;;;Argument[-1].MapKey;ReturnValue;value;manual",
-          ";BidiMap;true;removeValue;;;Argument[-1].MapKey;ReturnValue;value;manual",
-          ";BidiMap;true;inverseBidiMap;;;Argument[-1].MapKey;ReturnValue.MapValue;value;manual",
-          ";BidiMap;true;inverseBidiMap;;;Argument[-1].MapValue;ReturnValue.MapKey;value;manual",
-          ";FluentIterable;true;append;(Object[]);;Argument[-1].Element;ReturnValue.Element;value;manual",
-          ";FluentIterable;true;append;(Object[]);;Argument[0].ArrayElement;ReturnValue.Element;value;manual",
-          ";FluentIterable;true;append;(Iterable);;Argument[-1].Element;ReturnValue.Element;value;manual",
-          ";FluentIterable;true;append;(Iterable);;Argument[0].Element;ReturnValue.Element;value;manual",
-          ";FluentIterable;true;asEnumeration;;;Argument[-1].Element;ReturnValue.Element;value;manual",
-          ";FluentIterable;true;collate;;;Argument[-1].Element;ReturnValue.Element;value;manual",
-          ";FluentIterable;true;collate;;;Argument[0].Element;ReturnValue.Element;value;manual",
-          ";FluentIterable;true;copyInto;;;Argument[-1].Element;Argument[0].Element;value;manual",
-          ";FluentIterable;true;eval;;;Argument[-1].Element;ReturnValue.Element;value;manual",
-          ";FluentIterable;true;filter;;;Argument[-1].Element;ReturnValue.Element;value;manual",
-          ";FluentIterable;true;get;;;Argument[-1].Element;ReturnValue;value;manual",
-          ";FluentIterable;true;limit;;;Argument[-1].Element;ReturnValue.Element;value;manual",
-          ";FluentIterable;true;loop;;;Argument[-1].Element;ReturnValue.Element;value;manual",
-          ";FluentIterable;true;of;(Iterable);;Argument[0].Element;ReturnValue.Element;value;manual",
-          ";FluentIterable;true;of;(Object[]);;Argument[0].ArrayElement;ReturnValue.Element;value;manual",
-          ";FluentIterable;true;of;(Object);;Argument[0];ReturnValue.Element;value;manual",
-          ";FluentIterable;true;reverse;;;Argument[-1].Element;ReturnValue.Element;value;manual",
-          ";FluentIterable;true;skip;;;Argument[-1].Element;ReturnValue.Element;value;manual",
-          ";FluentIterable;true;toArray;;;Argument[-1].Element;ReturnValue.ArrayElement;value;manual",
-          ";FluentIterable;true;toList;;;Argument[-1].Element;ReturnValue.Element;value;manual",
-          ";FluentIterable;true;unique;;;Argument[-1].Element;ReturnValue.Element;value;manual",
-          ";FluentIterable;true;unmodifiable;;;Argument[-1].Element;ReturnValue.Element;value;manual",
-          ";FluentIterable;true;zip;(Iterable);;Argument[-1].Element;ReturnValue.Element;value;manual",
-          ";FluentIterable;true;zip;(Iterable);;Argument[0].Element;ReturnValue.Element;value;manual",
-          ";FluentIterable;true;zip;(Iterable[]);;Argument[-1].Element;ReturnValue.Element;value;manual",
-          ";FluentIterable;true;zip;(Iterable[]);;Argument[0].ArrayElement.Element;ReturnValue.Element;value;manual",
-          ";Get;true;entrySet;;;Argument[-1].MapKey;ReturnValue.Element.MapKey;value;manual",
-          ";Get;true;entrySet;;;Argument[-1].MapValue;ReturnValue.Element.MapValue;value;manual",
-          ";Get;true;get;;;Argument[-1].MapValue;ReturnValue;value;manual",
-          ";Get;true;keySet;();;Argument[-1].MapKey;ReturnValue.Element;value;manual",
-          ";Get;true;values;();;Argument[-1].MapValue;ReturnValue.Element;value;manual",
-          ";Get;true;remove;(Object);;Argument[-1].MapValue;ReturnValue;value;manual",
-          ";IterableGet;true;mapIterator;;;Argument[-1].MapKey;ReturnValue.Element;value;manual",
-          ";IterableGet;true;mapIterator;;;Argument[-1].MapValue;ReturnValue.MapValue;value;manual",
-          ";KeyValue;true;getKey;;;Argument[-1].MapKey;ReturnValue;value;manual",
-          ";KeyValue;true;getValue;;;Argument[-1].MapValue;ReturnValue;value;manual",
-          // Note that MapIterator<K, V> implements Iterator<K>, so it iterates over the keys of the map.
-          // In order for the models of Iterator to work we have to use Element instead of MapKey for key data.
-          ";MapIterator;true;getKey;;;Argument[-1].Element;ReturnValue;value;manual",
-          ";MapIterator;true;getValue;;;Argument[-1].MapValue;ReturnValue;value;manual",
-          ";MapIterator;true;setValue;;;Argument[-1].MapValue;ReturnValue;value;manual",
-          ";MapIterator;true;setValue;;;Argument[0];Argument[-1].MapValue;value;manual",
-          ";MultiMap;true;get;;;Argument[-1].MapValue.Element;ReturnValue.Element;value;manual",
-          ";MultiMap;true;put;;;Argument[0];Argument[-1].MapKey;value;manual",
-          ";MultiMap;true;put;;;Argument[1];Argument[-1].MapValue.Element;value;manual",
-          ";MultiMap;true;values;;;Argument[-1].MapValue.Element;ReturnValue.Element;value;manual",
-          ";MultiSet$Entry;true;getElement;;;Argument[-1].Element;ReturnValue;value;manual",
-          ";MultiSet;true;add;;;Argument[0];Argument[-1].Element;value;manual",
-          ";MultiSet;true;uniqueSet;;;Argument[-1].Element;ReturnValue.Element;value;manual",
-          ";MultiSet;true;entrySet;;;Argument[-1].Element;ReturnValue.Element.Element;value;manual",
-          ";MultiValuedMap;true;asMap;;;Argument[-1].MapKey;ReturnValue.MapKey;value;manual",
-          ";MultiValuedMap;true;asMap;;;Argument[-1].MapValue.Element;ReturnValue.MapValue.Element;value;manual",
-          ";MultiValuedMap;true;entries;;;Argument[-1].MapKey;ReturnValue.Element.MapKey;value;manual",
-          ";MultiValuedMap;true;entries;;;Argument[-1].MapValue.Element;ReturnValue.Element.MapValue;value;manual",
-          ";MultiValuedMap;true;get;;;Argument[-1].MapValue.Element;ReturnValue.Element;value;manual",
-          ";MultiValuedMap;true;keys;;;Argument[-1].MapKey;ReturnValue.Element;value;manual",
-          ";MultiValuedMap;true;keySet;;;Argument[-1].MapKey;ReturnValue.Element;value;manual",
-          ";MultiValuedMap;true;mapIterator;;;Argument[-1].MapKey;ReturnValue.Element;value;manual",
-          ";MultiValuedMap;true;mapIterator;;;Argument[-1].MapValue.Element;ReturnValue.MapValue;value;manual",
-          ";MultiValuedMap;true;put;;;Argument[0];Argument[-1].MapKey;value;manual",
-          ";MultiValuedMap;true;put;;;Argument[1];Argument[-1].MapValue.Element;value;manual",
-          ";MultiValuedMap;true;putAll;(Object,Iterable);;Argument[0];Argument[-1].MapKey;value;manual",
-          ";MultiValuedMap;true;putAll;(Object,Iterable);;Argument[1].Element;Argument[-1].MapValue.Element;value;manual",
-          ";MultiValuedMap;true;putAll;(Map);;Argument[0].MapKey;Argument[-1].MapKey;value;manual",
-          ";MultiValuedMap;true;putAll;(Map);;Argument[0].MapValue;Argument[-1].MapValue.Element;value;manual",
-          ";MultiValuedMap;true;putAll;(MultiValuedMap);;Argument[0].MapKey;Argument[-1].MapKey;value;manual",
-          ";MultiValuedMap;true;putAll;(MultiValuedMap);;Argument[0].MapValue.Element;Argument[-1].MapValue.Element;value;manual",
-          ";MultiValuedMap;true;remove;;;Argument[-1].MapValue.Element;ReturnValue.Element;value;manual",
-          ";MultiValuedMap;true;values;;;Argument[-1].MapValue.Element;ReturnValue.Element;value;manual",
-          ";OrderedIterator;true;previous;;;Argument[-1].Element;ReturnValue;value;manual",
-          ";OrderedMap;true;firstKey;;;Argument[-1].MapKey;ReturnValue;value;manual",
-          ";OrderedMap;true;lastKey;;;Argument[-1].MapKey;ReturnValue;value;manual",
-          ";OrderedMap;true;nextKey;;;Argument[-1].MapKey;ReturnValue;value;manual",
-          ";OrderedMap;true;previousKey;;;Argument[-1].MapKey;ReturnValue;value;manual",
-          ";Put;true;put;;;Argument[-1].MapValue;ReturnValue;value;manual",
-          ";Put;true;put;;;Argument[0];Argument[-1].MapKey;value;manual",
-          ";Put;true;put;;;Argument[1];Argument[-1].MapValue;value;manual",
-          ";Put;true;putAll;(Map);;Argument[0].MapKey;Argument[-1].MapKey;value;manual",
-          ";Put;true;putAll;(Map);;Argument[0].MapValue;Argument[-1].MapValue;value;manual",
-          ";SortedBag;true;first;;;Argument[-1].Element;ReturnValue;value;manual",
-          ";SortedBag;true;last;;;Argument[-1].Element;ReturnValue;value;manual",
-          ";Trie;true;prefixMap;;;Argument[-1].MapKey;ReturnValue.MapKey;value;manual",
-          ";Trie;true;prefixMap;;;Argument[-1].MapValue;ReturnValue.MapValue;value;manual"
-        ]
-  }
-}
-
-// Note that when lambdas are supported we should model the package `org.apache.commons.collections4.functors`,
-// and when more general callable flow is supported we should model the package
-// `org.apache.commons.collections4.sequence`.
-/**
- * Value-propagating models for classes in the package `org.apache.commons.collections4.keyvalue`.
- */
-private class ApacheKeyValueModel extends SummaryModelCsv {
-  override predicate row(string row) {
-    row =
-      ["org.apache.commons.collections4", "org.apache.commons.collections"] +
-        [
-          ".keyvalue;AbstractKeyValue;true;AbstractKeyValue;;;Argument[0];Argument[-1].MapKey;value;manual",
-          ".keyvalue;AbstractKeyValue;true;AbstractKeyValue;;;Argument[1];Argument[-1].MapValue;value;manual",
-          ".keyvalue;AbstractKeyValue;true;setKey;;;Argument[-1].MapKey;ReturnValue;value;manual",
-          ".keyvalue;AbstractKeyValue;true;setKey;;;Argument[0];Argument[-1].MapKey;value;manual",
-          ".keyvalue;AbstractKeyValue;true;setValue;;;Argument[-1].MapValue;ReturnValue;value;manual",
-          ".keyvalue;AbstractKeyValue;true;setValue;;;Argument[0];Argument[-1].MapValue;value;manual",
-          ".keyvalue;AbstractMapEntry;true;AbstractMapEntry;;;Argument[0];Argument[-1].MapKey;value;manual",
-          ".keyvalue;AbstractMapEntry;true;AbstractMapEntry;;;Argument[1];Argument[-1].MapValue;value;manual",
-          ".keyvalue;AbstractMapEntryDecorator;true;AbstractMapEntryDecorator;;;Argument[0].MapKey;Argument[-1].MapKey;value;manual",
-          ".keyvalue;AbstractMapEntryDecorator;true;AbstractMapEntryDecorator;;;Argument[0].MapValue;Argument[-1].MapValue;value;manual",
-          ".keyvalue;AbstractMapEntryDecorator;true;getMapEntry;;;Argument[-1].MapKey;ReturnValue.MapKey;value;manual",
-          ".keyvalue;AbstractMapEntryDecorator;true;getMapEntry;;;Argument[-1].MapValue;ReturnValue.MapValue;value;manual",
-          ".keyvalue;DefaultKeyValue;true;DefaultKeyValue;(Object,Object);;Argument[0];Argument[-1].MapKey;value;manual",
-          ".keyvalue;DefaultKeyValue;true;DefaultKeyValue;(Object,Object);;Argument[1];Argument[-1].MapValue;value;manual",
-          ".keyvalue;DefaultKeyValue;true;DefaultKeyValue;(KeyValue);;Argument[0].MapKey;Argument[-1].MapKey;value;manual",
-          ".keyvalue;DefaultKeyValue;true;DefaultKeyValue;(KeyValue);;Argument[0].MapValue;Argument[-1].MapValue;value;manual",
-          ".keyvalue;DefaultKeyValue;true;DefaultKeyValue;(Entry);;Argument[0].MapKey;Argument[-1].MapKey;value;manual",
-          ".keyvalue;DefaultKeyValue;true;DefaultKeyValue;(Entry);;Argument[0].MapValue;Argument[-1].MapValue;value;manual",
-          ".keyvalue;DefaultKeyValue;true;toMapEntry;;;Argument[-1].MapKey;ReturnValue.MapKey;value;manual",
-          ".keyvalue;DefaultKeyValue;true;toMapEntry;;;Argument[-1].MapValue;ReturnValue.MapValue;value;manual",
-          ".keyvalue;DefaultMapEntry;true;DefaultMapEntry;(Object,Object);;Argument[0];Argument[-1].MapKey;value;manual",
-          ".keyvalue;DefaultMapEntry;true;DefaultMapEntry;(Object,Object);;Argument[1];Argument[-1].MapValue;value;manual",
-          ".keyvalue;DefaultMapEntry;true;DefaultMapEntry;(KeyValue);;Argument[0].MapKey;Argument[-1].MapKey;value;manual",
-          ".keyvalue;DefaultMapEntry;true;DefaultMapEntry;(KeyValue);;Argument[0].MapValue;Argument[-1].MapValue;value;manual",
-          ".keyvalue;DefaultMapEntry;true;DefaultMapEntry;(Entry);;Argument[0].MapKey;Argument[-1].MapKey;value;manual",
-          ".keyvalue;DefaultMapEntry;true;DefaultMapEntry;(Entry);;Argument[0].MapValue;Argument[-1].MapValue;value;manual",
-          ".keyvalue;MultiKey;true;MultiKey;(Object[]);;Argument[0].ArrayElement;Argument[-1].Element;value;manual",
-          ".keyvalue;MultiKey;true;MultiKey;(Object[],boolean);;Argument[0].ArrayElement;Argument[-1].Element;value;manual",
-          ".keyvalue;MultiKey;true;MultiKey;(Object,Object);;Argument[0];Argument[-1].Element;value;manual",
-          ".keyvalue;MultiKey;true;MultiKey;(Object,Object);;Argument[1];Argument[-1].Element;value;manual",
-          ".keyvalue;MultiKey;true;MultiKey;(Object,Object,Object);;Argument[0];Argument[-1].Element;value;manual",
-          ".keyvalue;MultiKey;true;MultiKey;(Object,Object,Object);;Argument[1];Argument[-1].Element;value;manual",
-          ".keyvalue;MultiKey;true;MultiKey;(Object,Object,Object);;Argument[2];Argument[-1].Element;value;manual",
-          ".keyvalue;MultiKey;true;MultiKey;(Object,Object,Object,Object);;Argument[0];Argument[-1].Element;value;manual",
-          ".keyvalue;MultiKey;true;MultiKey;(Object,Object,Object,Object);;Argument[1];Argument[-1].Element;value;manual",
-          ".keyvalue;MultiKey;true;MultiKey;(Object,Object,Object,Object);;Argument[2];Argument[-1].Element;value;manual",
-          ".keyvalue;MultiKey;true;MultiKey;(Object,Object,Object,Object);;Argument[3];Argument[-1].Element;value;manual",
-          ".keyvalue;MultiKey;true;MultiKey;(Object,Object,Object,Object,Object);;Argument[0];Argument[-1].Element;value;manual",
-          ".keyvalue;MultiKey;true;MultiKey;(Object,Object,Object,Object,Object);;Argument[1];Argument[-1].Element;value;manual",
-          ".keyvalue;MultiKey;true;MultiKey;(Object,Object,Object,Object,Object);;Argument[2];Argument[-1].Element;value;manual",
-          ".keyvalue;MultiKey;true;MultiKey;(Object,Object,Object,Object,Object);;Argument[3];Argument[-1].Element;value;manual",
-          ".keyvalue;MultiKey;true;MultiKey;(Object,Object,Object,Object,Object);;Argument[4];Argument[-1].Element;value;manual",
-          ".keyvalue;MultiKey;true;getKeys;;;Argument[-1].Element;ReturnValue.ArrayElement;value;manual",
-          ".keyvalue;MultiKey;true;getKey;;;Argument[-1].Element;ReturnValue;value;manual",
-          ".keyvalue;TiedMapEntry;true;TiedMapEntry;;;Argument[0].MapValue;Argument[-1].MapValue;value;manual",
-          ".keyvalue;TiedMapEntry;true;TiedMapEntry;;;Argument[1];Argument[-1].MapKey;value;manual",
-          ".keyvalue;UnmodifiableMapEntry;true;UnmodifiableMapEntry;(Object,Object);;Argument[0];Argument[-1].MapKey;value;manual",
-          ".keyvalue;UnmodifiableMapEntry;true;UnmodifiableMapEntry;(Object,Object);;Argument[1];Argument[-1].MapValue;value;manual",
-          ".keyvalue;UnmodifiableMapEntry;true;UnmodifiableMapEntry;(KeyValue);;Argument[0].MapKey;Argument[-1].MapKey;value;manual",
-          ".keyvalue;UnmodifiableMapEntry;true;UnmodifiableMapEntry;(KeyValue);;Argument[0].MapValue;Argument[-1].MapValue;value;manual",
-          ".keyvalue;UnmodifiableMapEntry;true;UnmodifiableMapEntry;(Entry);;Argument[0].MapKey;Argument[-1].MapKey;value;manual",
-          ".keyvalue;UnmodifiableMapEntry;true;UnmodifiableMapEntry;(Entry);;Argument[0].MapValue;Argument[-1].MapValue;value;manual"
-        ]
-  }
-}
-
-/**
- * Value-propagating models for classes in the package `org.apache.commons.collections4.bag`.
- */
-private class ApacheBagModel extends SummaryModelCsv {
-  override predicate row(string row) {
-    row =
-      ["org.apache.commons.collections4", "org.apache.commons.collections"] +
-        [
-          // Note that when lambdas are supported we should have more models for TransformedBag, TransformedSortedBag
-          ".bag;AbstractBagDecorator;true;AbstractBagDecorator;;;Argument[0].Element;Argument[-1].Element;value;manual",
-          ".bag;AbstractMapBag;true;AbstractMapBag;;;Argument[0].MapKey;Argument[-1].Element;value;manual",
-          ".bag;AbstractMapBag;true;getMap;;;Argument[-1].Element;ReturnValue.MapKey;value;manual",
-          ".bag;AbstractSortedBagDecorator;true;AbstractSortedBagDecorator;;;Argument[0].Element;Argument[-1].Element;value;manual",
-          ".bag;CollectionBag;true;CollectionBag;;;Argument[0].Element;Argument[-1].Element;value;manual",
-          ".bag;CollectionBag;true;collectionBag;;;Argument[0].Element;ReturnValue.Element;value;manual",
-          ".bag;CollectionSortedBag;true;CollectionSortedBag;;;Argument[0].Element;Argument[-1].Element;value;manual",
-          ".bag;CollectionSortedBag;true;collectionSortedBag;;;Argument[0].Element;ReturnValue.Element;value;manual",
-          ".bag;HashBag;true;HashBag;;;Argument[0].Element;Argument[-1].Element;value;manual",
-          ".bag;PredicatedBag;true;predicatedBag;;;Argument[0].Element;ReturnValue.Element;value;manual",
-          ".bag;PredicatedSortedBag;true;predicatedSortedBag;;;Argument[0].Element;ReturnValue.Element;value;manual",
-          ".bag;SynchronizedBag;true;synchronizedBag;;;Argument[0].Element;ReturnValue.Element;value;manual",
-          ".bag;SynchronizedSortedBag;true;synchronizedSortedBag;;;Argument[0].Element;ReturnValue.Element;value;manual",
-          ".bag;TransformedBag;true;transformedBag;;;Argument[0].Element;ReturnValue.Element;value;manual",
-          ".bag;TransformedSortedBag;true;transformedSortedBag;;;Argument[0].Element;ReturnValue.Element;value;manual",
-          ".bag;TreeBag;true;TreeBag;(Collection);;Argument[0].Element;Argument[-1].Element;value;manual",
-          ".bag;UnmodifiableBag;true;unmodifiableBag;;;Argument[0].Element;ReturnValue.Element;value;manual",
-          ".bag;UnmodifiableSortedBag;true;unmodifiableSortedBag;;;Argument[0].Element;ReturnValue.Element;value;manual"
-        ]
-  }
-}
-
-/**
- * Value-propagating models for classes in the package `org.apache.commons.collections4.bidimap`.
- */
-private class ApacheBidiMapModel extends SummaryModelCsv {
-  override predicate row(string row) {
-    row =
-      ["org.apache.commons.collections4", "org.apache.commons.collections"] +
-        [
-          ".bidimap;AbstractBidiMapDecorator;true;AbstractBidiMapDecorator;;;Argument[0].MapKey;Argument[-1].MapKey;value;manual",
-          ".bidimap;AbstractBidiMapDecorator;true;AbstractBidiMapDecorator;;;Argument[0].MapValue;Argument[-1].MapValue;value;manual",
-          ".bidimap;AbstractDualBidiMap;true;AbstractDualBidiMap;;;Argument[0].MapKey;Argument[-1].MapKey;value;manual",
-          ".bidimap;AbstractDualBidiMap;true;AbstractDualBidiMap;;;Argument[0].MapValue;Argument[-1].MapValue;value;manual",
-          ".bidimap;AbstractDualBidiMap;true;AbstractDualBidiMap;;;Argument[1].MapKey;Argument[-1].MapValue;value;manual",
-          ".bidimap;AbstractDualBidiMap;true;AbstractDualBidiMap;;;Argument[1].MapValue;Argument[-1].MapKey;value;manual",
-          ".bidimap;AbstractDualBidiMap;true;AbstractDualBidiMap;;;Argument[2].MapKey;Argument[-1].MapValue;value;manual",
-          ".bidimap;AbstractDualBidiMap;true;AbstractDualBidiMap;;;Argument[2].MapValue;Argument[-1].MapKey;value;manual",
-          ".bidimap;AbstractOrderedBidiMapDecorator;true;AbstractOrderedBidiMapDecorator;;;Argument[0].MapKey;Argument[-1].MapKey;value;manual",
-          ".bidimap;AbstractOrderedBidiMapDecorator;true;AbstractOrderedBidiMapDecorator;;;Argument[0].MapValue;Argument[-1].MapValue;value;manual",
-          ".bidimap;AbstractSortedBidiMapDecorator;true;AbstractSortedBidiMapDecorator;;;Argument[0].MapKey;Argument[-1].MapKey;value;manual",
-          ".bidimap;AbstractSortedBidiMapDecorator;true;AbstractSortedBidiMapDecorator;;;Argument[0].MapValue;Argument[-1].MapValue;value;manual",
-          ".bidimap;DualHashBidiMap;true;DualHashBidiMap;(Map);;Argument[0].MapKey;Argument[-1].MapKey;value;manual",
-          ".bidimap;DualHashBidiMap;true;DualHashBidiMap;(Map);;Argument[0].MapValue;Argument[-1].MapValue;value;manual",
-          ".bidimap;DualLinkedHashBidiMap;true;DualLinkedHashBidiMap;(Map);;Argument[0].MapKey;Argument[-1].MapKey;value;manual",
-          ".bidimap;DualLinkedHashBidiMap;true;DualLinkedHashBidiMap;(Map);;Argument[0].MapValue;Argument[-1].MapValue;value;manual",
-          ".bidimap;DualTreeBidiMap;true;DualTreeBidiMap;(Map);;Argument[0].MapKey;Argument[-1].MapKey;value;manual",
-          ".bidimap;DualTreeBidiMap;true;DualTreeBidiMap;(Map);;Argument[0].MapValue;Argument[-1].MapValue;value;manual",
-          ".bidimap;DualTreeBidiMap;true;inverseOrderedBidiMap;;;Argument[-1].MapKey;ReturnValue.MapValue;value;manual",
-          ".bidimap;DualTreeBidiMap;true;inverseOrderedBidiMap;;;Argument[-1].MapValue;ReturnValue.MapKey;value;manual",
-          ".bidimap;DualTreeBidiMap;true;inverseSortedBidiMap;;;Argument[-1].MapKey;ReturnValue.MapValue;value;manual",
-          ".bidimap;DualTreeBidiMap;true;inverseSortedBidiMap;;;Argument[-1].MapValue;ReturnValue.MapKey;value;manual",
-          ".bidimap;TreeBidiMap;true;TreeBidiMap;;;Argument[0].MapKey;Argument[-1].MapKey;value;manual",
-          ".bidimap;TreeBidiMap;true;TreeBidiMap;;;Argument[0].MapValue;Argument[-1].MapValue;value;manual",
-          ".bidimap;UnmodifiableBidiMap;true;unmodifiableBidiMap;;;Argument[0].MapKey;ReturnValue.MapKey;value;manual",
-          ".bidimap;UnmodifiableBidiMap;true;unmodifiableBidiMap;;;Argument[0].MapValue;ReturnValue.MapValue;value;manual",
-          ".bidimap;UnmodifiableOrderedBidiMap;true;unmodifiableOrderedBidiMap;;;Argument[0].MapKey;ReturnValue.MapKey;value;manual",
-          ".bidimap;UnmodifiableOrderedBidiMap;true;unmodifiableOrderedBidiMap;;;Argument[0].MapValue;ReturnValue.MapValue;value;manual",
-          ".bidimap;UnmodifiableOrderedBidiMap;true;inverseOrderedBidiMap;;;Argument[-1].MapKey;ReturnValue.MapValue;value;manual",
-          ".bidimap;UnmodifiableOrderedBidiMap;true;inverseOrderedBidiMap;;;Argument[-1].MapValue;ReturnValue.MapKey;value;manual",
-          ".bidimap;UnmodifiableSortedBidiMap;true;unmodifiableSortedBidiMap;;;Argument[0].MapKey;ReturnValue.MapKey;value;manual",
-          ".bidimap;UnmodifiableSortedBidiMap;true;unmodifiableSortedBidiMap;;;Argument[0].MapValue;ReturnValue.MapValue;value;manual"
-        ]
-  }
-}
-
-/**
- * Value-propagating models for classes in the package `org.apache.commons.collections4.collection`.
- */
-private class ApacheCollectionModel extends SummaryModelCsv {
-  override predicate row(string row) {
-    row =
-      ["org.apache.commons.collections4", "org.apache.commons.collections"] +
-        [
-          // Note that when lambdas are supported we should have more models for TransformedCollection
-          ".collection;AbstractCollectionDecorator;true;AbstractCollectionDecorator;;;Argument[0].Element;Argument[-1].Element;value;manual",
-          ".collection;AbstractCollectionDecorator;true;decorated;;;Argument[-1].Element;ReturnValue.Element;value;manual",
-          ".collection;AbstractCollectionDecorator;true;setCollection;;;Argument[0].Element;Argument[-1].Element;value;manual",
-          ".collection;CompositeCollection$CollectionMutator;true;add;;;Argument[2];Argument[0].Element;value;manual",
-          ".collection;CompositeCollection$CollectionMutator;true;add;;;Argument[2];Argument[1].Element.Element;value;manual",
-          ".collection;CompositeCollection$CollectionMutator;true;addAll;;;Argument[2].Element;Argument[0].Element;value;manual",
-          ".collection;CompositeCollection$CollectionMutator;true;addAll;;;Argument[2].Element;Argument[1].Element.Element;value;manual",
-          ".collection;CompositeCollection;true;CompositeCollection;(Collection);;Argument[0].Element;Argument[-1].Element;value;manual",
-          ".collection;CompositeCollection;true;CompositeCollection;(Collection,Collection);;Argument[0].Element;Argument[-1].Element;value;manual",
-          ".collection;CompositeCollection;true;CompositeCollection;(Collection,Collection);;Argument[1].Element;Argument[-1].Element;value;manual",
-          ".collection;CompositeCollection;true;CompositeCollection;(Collection[]);;Argument[0].ArrayElement.Element;Argument[-1].Element;value;manual",
-          ".collection;CompositeCollection;true;addComposited;(Collection);;Argument[0].Element;Argument[-1].Element;value;manual",
-          ".collection;CompositeCollection;true;addComposited;(Collection,Collection);;Argument[0].Element;Argument[-1].Element;value;manual",
-          ".collection;CompositeCollection;true;addComposited;(Collection,Collection);;Argument[1].Element;Argument[-1].Element;value;manual",
-          ".collection;CompositeCollection;true;addComposited;(Collection[]);;Argument[0].ArrayElement.Element;Argument[-1].Element;value;manual",
-          ".collection;CompositeCollection;true;toCollection;;;Argument[-1].Element;ReturnValue.Element;value;manual",
-          ".collection;CompositeCollection;true;getCollections;;;Argument[-1].Element;ReturnValue.Element.Element;value;manual",
-          ".collection;IndexedCollection;true;IndexedCollection;;;Argument[0].Element;Argument[-1].Element;value;manual",
-          ".collection;IndexedCollection;true;uniqueIndexedCollection;;;Argument[0].Element;ReturnValue.Element;value;manual",
-          ".collection;IndexedCollection;true;nonUniqueIndexedCollection;;;Argument[0].Element;ReturnValue.Element;value;manual",
-          ".collection;IndexedCollection;true;get;;;Argument[-1].Element;ReturnValue;value;manual",
-          ".collection;IndexedCollection;true;values;;;Argument[-1].Element;ReturnValue.Element;value;manual",
-          ".collection;PredicatedCollection$Builder;true;add;;;Argument[0];Argument[-1].Element;value;manual",
-          ".collection;PredicatedCollection$Builder;true;addAll;;;Argument[0].Element;Argument[-1].Element;value;manual",
-          ".collection;PredicatedCollection$Builder;true;createPredicatedList;;;Argument[-1].Element;ReturnValue.Element;value;manual",
-          ".collection;PredicatedCollection$Builder;true;createPredicatedList;;;Argument[0].Element;ReturnValue.Element;value;manual",
-          ".collection;PredicatedCollection$Builder;true;createPredicatedSet;;;Argument[-1].Element;ReturnValue.Element;value;manual",
-          ".collection;PredicatedCollection$Builder;true;createPredicatedSet;;;Argument[0].Element;ReturnValue.Element;value;manual",
-          ".collection;PredicatedCollection$Builder;true;createPredicatedMultiSet;;;Argument[-1].Element;ReturnValue.Element;value;manual",
-          ".collection;PredicatedCollection$Builder;true;createPredicatedMultiSet;;;Argument[0].Element;ReturnValue.Element;value;manual",
-          ".collection;PredicatedCollection$Builder;true;createPredicatedBag;;;Argument[-1].Element;ReturnValue.Element;value;manual",
-          ".collection;PredicatedCollection$Builder;true;createPredicatedBag;;;Argument[0].Element;ReturnValue.Element;value;manual",
-          ".collection;PredicatedCollection$Builder;true;createPredicatedQueue;;;Argument[-1].Element;ReturnValue.Element;value;manual",
-          ".collection;PredicatedCollection$Builder;true;createPredicatedQueue;;;Argument[0].Element;ReturnValue.Element;value;manual",
-          ".collection;PredicatedCollection$Builder;true;rejectedElements;;;Argument[-1].Element;ReturnValue.Element;value;manual",
-          ".collection;PredicatedCollection;true;predicatedCollection;;;Argument[0].Element;ReturnValue.Element;value;manual",
-          ".collection;SynchronizedCollection;true;synchronizedCollection;;;Argument[0].Element;ReturnValue.Element;value;manual",
-          ".collection;TransformedCollection;true;transformingCollection;;;Argument[0].Element;ReturnValue.Element;value;manual",
-          ".collection;UnmodifiableBoundedCollection;true;unmodifiableBoundedCollection;;;Argument[0].Element;ReturnValue.Element;value;manual",
-          ".collection;UnmodifiableCollection;true;unmodifiableCollection;;;Argument[0].Element;ReturnValue.Element;value;manual"
-        ]
-  }
-}
-
-/**
- * Value-propagating models for the package `org.apache.commons.collections4.iterators`.
- */
-private class ApacheIteratorsModel extends SummaryModelCsv {
-  override predicate row(string row) {
-    row =
-      ["org.apache.commons.collections4", "org.apache.commons.collections"] +
-        [
-          // Note that when lambdas are supported we should have more models for TransformIterator
-          ".iterators;AbstractIteratorDecorator;true;AbstractIteratorDecorator;;;Argument[0].Element;Argument[-1].Element;value;manual",
-          ".iterators;AbstractListIteratorDecorator;true;AbstractListIteratorDecorator;;;Argument[0].Element;Argument[-1].Element;value;manual",
-          ".iterators;AbstractListIteratorDecorator;true;getListIterator;;;Argument[-1].Element;ReturnValue.Element;value;manual",
-          ".iterators;AbstractMapIteratorDecorator;true;AbstractMapIteratorDecorator;;;Argument[0].Element;Argument[-1].Element;value;manual",
-          ".iterators;AbstractMapIteratorDecorator;true;AbstractMapIteratorDecorator;;;Argument[0].MapValue;Argument[-1].MapValue;value;manual",
-          ".iterators;AbstractMapIteratorDecorator;true;getMapIterator;;;Argument[-1].Element;ReturnValue.Element;value;manual",
-          ".iterators;AbstractMapIteratorDecorator;true;getMapIterator;;;Argument[-1].MapValue;ReturnValue.MapValue;value;manual",
-          ".iterators;AbstractOrderedMapIteratorDecorator;true;AbstractOrderedMapIteratorDecorator;;;Argument[0].Element;Argument[-1].Element;value;manual",
-          ".iterators;AbstractOrderedMapIteratorDecorator;true;AbstractOrderedMapIteratorDecorator;;;Argument[0].MapValue;Argument[-1].MapValue;value;manual",
-          ".iterators;AbstractOrderedMapIteratorDecorator;true;getOrderedMapIterator;;;Argument[-1].Element;ReturnValue.Element;value;manual",
-          ".iterators;AbstractOrderedMapIteratorDecorator;true;getOrderedMapIterator;;;Argument[-1].MapValue;ReturnValue.MapValue;value;manual",
-          ".iterators;AbstractUntypedIteratorDecorator;true;AbstractUntypedIteratorDecorator;;;Argument[0].Element;Argument[-1].Element;value;manual",
-          ".iterators;AbstractUntypedIteratorDecorator;true;getIterator;;;Argument[-1].Element;ReturnValue.Element;value;manual",
-          ".iterators;ArrayIterator;true;ArrayIterator;;;Argument[0].ArrayElement;Argument[-1].Element;value;manual",
-          ".iterators;ArrayIterator;true;getArray;;;Argument[-1].Element;ReturnValue.ArrayElement;value;manual",
-          ".iterators;ArrayListIterator;true;ArrayListIterator;;;Argument[0].ArrayElement;Argument[-1].Element;value;manual",
-          ".iterators;BoundedIterator;true;BoundedIterator;;;Argument[0].Element;Argument[-1].Element;value;manual",
-          ".iterators;CollatingIterator;true;CollatingIterator;(Comparator,Iterator,Iterator);;Argument[1].Element;Argument[-1].Element;value;manual",
-          ".iterators;CollatingIterator;true;CollatingIterator;(Comparator,Iterator,Iterator);;Argument[2].Element;Argument[-1].Element;value;manual",
-          ".iterators;CollatingIterator;true;CollatingIterator;(Comparator,Iterator[]);;Argument[1].ArrayElement.Element;Argument[-1].Element;value;manual",
-          ".iterators;CollatingIterator;true;CollatingIterator;(Comparator,Collection);;Argument[1].Element.Element;Argument[-1].Element;value;manual",
-          ".iterators;CollatingIterator;true;addIterator;;;Argument[0].Element;Argument[-1].Element;value;manual",
-          ".iterators;CollatingIterator;true;setIterator;;;Argument[1].Element;Argument[-1].Element;value;manual",
-          ".iterators;CollatingIterator;true;getIterators;;;Argument[-1].Element;ReturnValue.Element.Element;value;manual",
-          ".iterators;EnumerationIterator;true;EnumerationIterator;;;Argument[0].Element;Argument[-1].Element;value;manual",
-          ".iterators;EnumerationIterator;true;getEnumeration;;;Argument[-1].Element;ReturnValue.Element;value;manual",
-          ".iterators;EnumerationIterator;true;setEnumeration;;;Argument[0].Element;Argument[-1].Element;value;manual",
-          ".iterators;FilterIterator;true;FilterIterator;;;Argument[0].Element;Argument[-1].Element;value;manual",
-          ".iterators;FilterIterator;true;getIterator;;;Argument[-1].Element;ReturnValue.Element;value;manual",
-          ".iterators;FilterIterator;true;setIterator;;;Argument[0].Element;Argument[-1].Element;value;manual",
-          ".iterators;FilterListIterator;true;FilterListIterator;(ListIterator);;Argument[0].Element;Argument[-1].Element;value;manual",
-          ".iterators;FilterListIterator;true;FilterListIterator;(ListIterator,Predicate);;Argument[0].Element;Argument[-1].Element;value;manual",
-          ".iterators;FilterListIterator;true;getListIterator;;;Argument[-1].Element;ReturnValue.Element;value;manual",
-          ".iterators;FilterListIterator;true;setListIterator;;;Argument[0].Element;Argument[-1].Element;value;manual",
-          ".iterators;IteratorChain;true;IteratorChain;(Iterator);;Argument[0].Element;Argument[-1].Element;value;manual",
-          ".iterators;IteratorChain;true;IteratorChain;(Iterator,Iterator);;Argument[0].Element;Argument[-1].Element;value;manual",
-          ".iterators;IteratorChain;true;IteratorChain;(Iterator,Iterator);;Argument[1].Element;Argument[-1].Element;value;manual",
-          ".iterators;IteratorChain;true;IteratorChain;(Iterator[]);;Argument[0].ArrayElement.Element;Argument[-1].Element;value;manual",
-          ".iterators;IteratorChain;true;IteratorChain;(Collection);;Argument[0].Element.Element;Argument[-1].Element;value;manual",
-          ".iterators;IteratorChain;true;addIterator;;;Argument[0].Element;Argument[-1].Element;value;manual",
-          ".iterators;IteratorEnumeration;true;IteratorEnumeration;;;Argument[0].Element;Argument[-1].Element;value;manual",
-          ".iterators;IteratorEnumeration;true;getIterator;;;Argument[-1].Element;ReturnValue.Element;value;manual",
-          ".iterators;IteratorEnumeration;true;setIterator;;;Argument[0].Element;Argument[-1].Element;value;manual",
-          ".iterators;IteratorIterable;true;IteratorIterable;;;Argument[0].Element;Argument[-1].Element;value;manual",
-          ".iterators;ListIteratorWrapper;true;ListIteratorWrapper;;;Argument[0].Element;Argument[-1].Element;value;manual",
-          ".iterators;LoopingIterator;true;LoopingIterator;;;Argument[0].Element;Argument[-1].Element;value;manual",
-          ".iterators;LoopingListIterator;true;LoopingListIterator;;;Argument[0].Element;Argument[-1].Element;value;manual",
-          ".iterators;ObjectArrayIterator;true;ObjectArrayIterator;;;Argument[0].ArrayElement;Argument[-1].Element;value;manual",
-          ".iterators;ObjectArrayIterator;true;getArray;;;Argument[-1].Element;ReturnValue.ArrayElement;value;manual",
-          ".iterators;ObjectArrayListIterator;true;ObjectArrayListIterator;;;Argument[0].ArrayElement;Argument[-1].Element;value;manual",
-          ".iterators;PeekingIterator;true;PeekingIterator;;;Argument[0].Element;Argument[-1].Element;value;manual",
-          ".iterators;PeekingIterator;true;peekingIterator;;;Argument[0].Element;ReturnValue.Element;value;manual",
-          ".iterators;PeekingIterator;true;peek;;;Argument[-1].Element;ReturnValue;value;manual",
-          ".iterators;PeekingIterator;true;element;;;Argument[-1].Element;ReturnValue;value;manual",
-          ".iterators;PermutationIterator;true;PermutationIterator;;;Argument[0].Element;Argument[-1].Element.Element;value;manual",
-          ".iterators;PushbackIterator;true;PushbackIterator;;;Argument[0].Element;Argument[-1].Element;value;manual",
-          ".iterators;PushbackIterator;true;pushbackIterator;;;Argument[0].Element;ReturnValue.Element;value;manual",
-          ".iterators;PushbackIterator;true;pushback;;;Argument[0];Argument[-1].Element;value;manual",
-          ".iterators;ReverseListIterator;true;ReverseListIterator;;;Argument[0].Element;Argument[-1].Element;value;manual",
-          ".iterators;SingletonIterator;true;SingletonIterator;;;Argument[0];Argument[-1].Element;value;manual",
-          ".iterators;SingletonListIterator;true;SingletonListIterator;;;Argument[0];Argument[-1].Element;value;manual",
-          ".iterators;SkippingIterator;true;SkippingIterator;;;Argument[0].Element;Argument[-1].Element;value;manual",
-          ".iterators;UniqueFilterIterator;true;UniqueFilterIterator;;;Argument[0].Element;Argument[-1].Element;value;manual",
-          ".iterators;UnmodifiableIterator;true;unmodifiableIterator;;;Argument[0].Element;ReturnValue.Element;value;manual",
-          ".iterators;UnmodifiableListIterator;true;umodifiableListIterator;;;Argument[0].Element;ReturnValue.Element;value;manual",
-          ".iterators;UnmodifiableMapIterator;true;unmodifiableMapIterator;;;Argument[0].Element;ReturnValue.Element;value;manual",
-          ".iterators;UnmodifiableMapIterator;true;unmodifiableMapIterator;;;Argument[0].MapValue;ReturnValue.MapValue;value;manual",
-          ".iterators;UnmodifiableOrderedMapIterator;true;unmodifiableOrderedMapIterator;;;Argument[0].Element;ReturnValue.Element;value;manual",
-          ".iterators;UnmodifiableOrderedMapIterator;true;unmodifiableOrderedMapIterator;;;Argument[0].MapValue;ReturnValue.MapValue;value;manual",
-          ".iterators;ZippingIterator;true;ZippingIterator;(Iterator[]);;Argument[0].ArrayElement.Element;Argument[-1].Element;value;manual",
-          ".iterators;ZippingIterator;true;ZippingIterator;(Iterator,Iterator);;Argument[0].Element;Argument[-1].Element;value;manual",
-          ".iterators;ZippingIterator;true;ZippingIterator;(Iterator,Iterator);;Argument[1].Element;Argument[-1].Element;value;manual",
-          ".iterators;ZippingIterator;true;ZippingIterator;(Iterator,Iterator,Iterator);;Argument[0].Element;Argument[-1].Element;value;manual",
-          ".iterators;ZippingIterator;true;ZippingIterator;(Iterator,Iterator,Iterator);;Argument[1].Element;Argument[-1].Element;value;manual",
-          ".iterators;ZippingIterator;true;ZippingIterator;(Iterator,Iterator,Iterator);;Argument[2].Element;Argument[-1].Element;value;manual"
-        ]
-  }
-}
-
-/**
- * Value-propagating models for the package `org.apache.commons.collections4.list`.
- */
-private class ApacheListModel extends SummaryModelCsv {
-  override predicate row(string row) {
-    row =
-      ["org.apache.commons.collections4", "org.apache.commons.collections"] +
-        [
-          // Note that when lambdas are supported we should have more models for TransformedList
-          ".list;AbstractLinkedList;true;AbstractLinkedList;;;Argument[0].Element;Argument[-1].Element;value;manual",
-          ".list;AbstractLinkedList;true;getFirst;;;Argument[-1].Element;ReturnValue;value;manual",
-          ".list;AbstractLinkedList;true;getLast;;;Argument[-1].Element;ReturnValue;value;manual",
-          ".list;AbstractLinkedList;true;addFirst;;;Argument[0];Argument[-1].Element;value;manual",
-          ".list;AbstractLinkedList;true;addLast;;;Argument[0];Argument[-1].Element;value;manual",
-          ".list;AbstractLinkedList;true;removeFirst;;;Argument[-1].Element;ReturnValue;value;manual",
-          ".list;AbstractLinkedList;true;removeLast;;;Argument[-1].Element;ReturnValue;value;manual",
-          ".list;AbstractListDecorator;true;AbstractListDecorator;;;Argument[0].Element;Argument[-1].Element;value;manual",
-          ".list;AbstractSerializableListDecorator;true;AbstractSerializableListDecorator;;;Argument[0].Element;Argument[-1].Element;value;manual",
-          ".list;CursorableLinkedList;true;CursorableLinkedList;;;Argument[0].Element;Argument[-1].Element;value;manual",
-          ".list;CursorableLinkedList;true;cursor;;;Argument[-1].Element;ReturnValue.Element;value;manual",
-          ".list;FixedSizeList;true;fixedSizeList;;;Argument[0].Element;ReturnValue.Element;value;manual",
-          ".list;GrowthList;true;growthList;;;Argument[0].Element;ReturnValue.Element;value;manual",
-          ".list;LazyList;true;lazyList;;;Argument[0].Element;ReturnValue.Element;value;manual",
-          ".list;NodeCachingLinkedList;true;NodeCachingLinkedList;(Collection);;Argument[0].Element;Argument[-1].Element;value;manual",
-          ".list;PredicatedList;true;predicatedList;;;Argument[0].Element;ReturnValue.Element;value;manual",
-          ".list;SetUniqueList;true;setUniqueList;;;Argument[0].Element;ReturnValue.Element;value;manual",
-          ".list;SetUniqueList;true;asSet;;;Argument[-1].Element;ReturnValue.Element;value;manual",
-          ".list;TransformedList;true;transformingList;;;Argument[0].Element;ReturnValue.Element;value;manual",
-          ".list;TreeList;true;TreeList;;;Argument[0].Element;Argument[-1].Element;value;manual",
-          ".list;UnmodifiableList;true;UnmodifiableList;;;Argument[0].Element;Argument[-1].Element;value;manual",
-          ".list;UnmodifiableList;true;unmodifiableList;;;Argument[0].Element;ReturnValue.Element;value;manual"
-        ]
-  }
-}
-
-/**
- * Value-propagating models for the package `org.apache.commons.collections4.map`.
- */
-private class ApacheMapModel extends SummaryModelCsv {
-  override predicate row(string row) {
-    row =
-      ["org.apache.commons.collections4", "org.apache.commons.collections"] +
-        [
-          // Note that when lambdas are supported we should have more models for DefaultedMap, LazyMap, TransformedMap, TransformedSortedMap
-          ".map;AbstractHashedMap;true;AbstractHashedMap;(Map);;Argument[0].MapKey;Argument[-1].MapKey;value;manual",
-          ".map;AbstractHashedMap;true;AbstractHashedMap;(Map);;Argument[0].MapValue;Argument[-1].MapValue;value;manual",
-          ".map;AbstractLinkedMap;true;AbstractLinkedMap;(Map);;Argument[0].MapKey;Argument[-1].MapKey;value;manual",
-          ".map;AbstractLinkedMap;true;AbstractLinkedMap;(Map);;Argument[0].MapValue;Argument[-1].MapValue;value;manual",
-          ".map;AbstractMapDecorator;true;AbstractMapDecorator;(Map);;Argument[0].MapKey;Argument[-1].MapKey;value;manual",
-          ".map;AbstractMapDecorator;true;AbstractMapDecorator;(Map);;Argument[0].MapValue;Argument[-1].MapValue;value;manual",
-          ".map;AbstractMapDecorator;true;decorated;;;Argument[-1].MapKey;ReturnValue.MapKey;value;manual",
-          ".map;AbstractMapDecorator;true;decorated;;;Argument[-1].MapValue;ReturnValue.MapValue;value;manual",
-          ".map;AbstractOrderedMapDecorator;true;AbstractOrderedMapDecorator;(OrderedMap);;Argument[0].MapKey;Argument[-1].MapKey;value;manual",
-          ".map;AbstractOrderedMapDecorator;true;AbstractOrderedMapDecorator;(OrderedMap);;Argument[0].MapValue;Argument[-1].MapValue;value;manual",
-          ".map;AbstractSortedMapDecorator;true;AbstractSortedMapDecorator;(SortedMap);;Argument[0].MapKey;Argument[-1].MapKey;value;manual",
-          ".map;AbstractSortedMapDecorator;true;AbstractSortedMapDecorator;(SortedMap);;Argument[0].MapValue;Argument[-1].MapValue;value;manual",
-          ".map;CaseInsensitiveMap;true;CaseInsensitiveMap;(Map);;Argument[0].MapKey;Argument[-1].MapKey;value;manual",
-          ".map;CaseInsensitiveMap;true;CaseInsensitiveMap;(Map);;Argument[0].MapValue;Argument[-1].MapValue;value;manual",
-          ".map;CompositeMap;true;CompositeMap;(Map,Map);;Argument[0].MapKey;Argument[-1].MapKey;value;manual",
-          ".map;CompositeMap;true;CompositeMap;(Map,Map);;Argument[0].MapValue;Argument[-1].MapValue;value;manual",
-          ".map;CompositeMap;true;CompositeMap;(Map,Map);;Argument[1].MapKey;Argument[-1].MapKey;value;manual",
-          ".map;CompositeMap;true;CompositeMap;(Map,Map);;Argument[1].MapValue;Argument[-1].MapValue;value;manual",
-          ".map;CompositeMap;true;CompositeMap;(Map,Map,MapMutator);;Argument[0].MapKey;Argument[-1].MapKey;value;manual",
-          ".map;CompositeMap;true;CompositeMap;(Map,Map,MapMutator);;Argument[0].MapValue;Argument[-1].MapValue;value;manual",
-          ".map;CompositeMap;true;CompositeMap;(Map,Map,MapMutator);;Argument[1].MapKey;Argument[-1].MapKey;value;manual",
-          ".map;CompositeMap;true;CompositeMap;(Map,Map,MapMutator);;Argument[1].MapValue;Argument[-1].MapValue;value;manual",
-          ".map;CompositeMap;true;CompositeMap;(Map[]);;Argument[0].ArrayElement.MapKey;Argument[-1].MapKey;value;manual",
-          ".map;CompositeMap;true;CompositeMap;(Map[]);;Argument[0].ArrayElement.MapValue;Argument[-1].MapValue;value;manual",
-          ".map;CompositeMap;true;CompositeMap;(Map[],MapMutator);;Argument[0].ArrayElement.MapKey;Argument[-1].MapKey;value;manual",
-          ".map;CompositeMap;true;CompositeMap;(Map[],MapMutator);;Argument[0].ArrayElement.MapValue;Argument[-1].MapValue;value;manual",
-          ".map;CompositeMap;true;addComposited;;;Argument[0].MapKey;Argument[-1].MapKey;value;manual",
-          ".map;CompositeMap;true;addComposited;;;Argument[0].MapValue;Argument[-1].MapValue;value;manual",
-          ".map;CompositeMap;true;removeComposited;;;Argument[-1].MapKey;ReturnValue.MapKey;value;manual",
-          ".map;CompositeMap;true;removeComposited;;;Argument[-1].MapValue;ReturnValue.MapValue;value;manual",
-          ".map;CompositeMap;true;removeComposited;;;Argument[0];ReturnValue;value;manual",
-          ".map;DefaultedMap;true;DefaultedMap;(Object);;Argument[0];Argument[-1].MapValue;value;manual",
-          ".map;DefaultedMap;true;defaultedMap;;;Argument[0].MapKey;ReturnValue.MapKey;value;manual",
-          ".map;DefaultedMap;true;defaultedMap;;;Argument[0].MapValue;ReturnValue.MapValue;value;manual",
-          ".map;DefaultedMap;true;defaultedMap;(Map,Object);;Argument[1];ReturnValue.MapValue;value;manual",
-          ".map;EntrySetToMapIteratorAdapter;true;EntrySetToMapIteratorAdapter;;;Argument[0].Element.MapKey;Argument[-1].Element;value;manual",
-          ".map;EntrySetToMapIteratorAdapter;true;EntrySetToMapIteratorAdapter;;;Argument[0].Element.MapValue;Argument[-1].MapValue;value;manual",
-          ".map;FixedSizeMap;true;fixedSizeMap;;;Argument[0].MapKey;ReturnValue.MapKey;value;manual",
-          ".map;FixedSizeMap;true;fixedSizeMap;;;Argument[0].MapValue;ReturnValue.MapValue;value;manual",
-          ".map;FixedSizeSortedMap;true;fixedSizeSortedMap;;;Argument[0].MapKey;ReturnValue.MapKey;value;manual",
-          ".map;FixedSizeSortedMap;true;fixedSizeSortedMap;;;Argument[0].MapValue;ReturnValue.MapValue;value;manual",
-          ".map;Flat3Map;true;Flat3Map;;;Argument[0].MapKey;Argument[-1].MapKey;value;manual",
-          ".map;Flat3Map;true;Flat3Map;;;Argument[0].MapValue;Argument[-1].MapValue;value;manual",
-          ".map;HashedMap;true;HashedMap;(Map);;Argument[0].MapKey;Argument[-1].MapKey;value;manual",
-          ".map;HashedMap;true;HashedMap;(Map);;Argument[0].MapValue;Argument[-1].MapValue;value;manual",
-          ".map;LazyMap;true;lazyMap;;;Argument[0].MapKey;ReturnValue.MapKey;value;manual",
-          ".map;LazyMap;true;lazyMap;;;Argument[0].MapValue;ReturnValue.MapValue;value;manual",
-          ".map;LazySortedMap;true;lazySortedMap;;;Argument[0].MapKey;ReturnValue.MapKey;value;manual",
-          ".map;LazySortedMap;true;lazySortedMap;;;Argument[0].MapValue;ReturnValue.MapValue;value;manual",
-          ".map;LinkedMap;true;LinkedMap;(Map);;Argument[0].MapKey;Argument[-1].MapKey;value;manual",
-          ".map;LinkedMap;true;LinkedMap;(Map);;Argument[0].MapValue;Argument[-1].MapValue;value;manual",
-          ".map;LinkedMap;true;get;(int);;Argument[-1].MapKey;ReturnValue;value;manual",
-          ".map;LinkedMap;true;getValue;(int);;Argument[-1].MapValue;ReturnValue;value;manual",
-          ".map;LinkedMap;true;remove;(int);;Argument[-1].MapValue;ReturnValue;value;manual",
-          ".map;LinkedMap;true;asList;;;Argument[-1].MapKey;ReturnValue.Element;value;manual",
-          ".map;ListOrderedMap;true;listOrderedMap;;;Argument[0].MapKey;ReturnValue.MapKey;value;manual",
-          ".map;ListOrderedMap;true;listOrderedMap;;;Argument[0].MapValue;ReturnValue.MapValue;value;manual",
-          ".map;ListOrderedMap;true;putAll;;;Argument[1].MapKey;Argument[-1].MapKey;value;manual",
-          ".map;ListOrderedMap;true;putAll;;;Argument[1].MapValue;Argument[-1].MapValue;value;manual",
-          ".map;ListOrderedMap;true;keyList;;;Argument[-1].MapKey;ReturnValue.Element;value;manual",
-          ".map;ListOrderedMap;true;valueList;;;Argument[-1].MapValue;ReturnValue.Element;value;manual",
-          ".map;ListOrderedMap;true;get;(int);;Argument[-1].MapKey;ReturnValue;value;manual",
-          ".map;ListOrderedMap;true;getValue;(int);;Argument[-1].MapValue;ReturnValue;value;manual",
-          ".map;ListOrderedMap;true;setValue;;;Argument[1];Argument[-1].MapValue;value;manual",
-          ".map;ListOrderedMap;true;put;;;Argument[1];Argument[-1].MapKey;value;manual",
-          ".map;ListOrderedMap;true;put;;;Argument[2];Argument[-1].MapValue;value;manual",
-          ".map;ListOrderedMap;true;remove;(int);;Argument[-1].MapValue;ReturnValue;value;manual",
-          ".map;ListOrderedMap;true;asList;;;Argument[-1].MapKey;ReturnValue.Element;value;manual",
-          ".map;LRUMap;true;LRUMap;(Map);;Argument[0].MapKey;Argument[-1].MapKey;value;manual",
-          ".map;LRUMap;true;LRUMap;(Map);;Argument[0].MapValue;Argument[-1].MapValue;value;manual",
-          ".map;LRUMap;true;LRUMap;(Map,boolean);;Argument[0].MapKey;Argument[-1].MapKey;value;manual",
-          ".map;LRUMap;true;LRUMap;(Map,boolean);;Argument[0].MapValue;Argument[-1].MapValue;value;manual",
-          ".map;LRUMap;true;get;(Object,boolean);;Argument[0].MapValue;ReturnValue;value;manual",
-          ".map;MultiKeyMap;true;get;;;Argument[-1].MapValue;ReturnValue;value;manual",
-          ".map;MultiKeyMap;true;put;;;Argument[-1].MapValue;ReturnValue;value;manual",
-          ".map;MultiKeyMap;true;put;(Object,Object,Object);;Argument[0..1];Argument[-1].MapKey.Element;value;manual",
-          ".map;MultiKeyMap;true;put;(Object,Object,Object,Object);;Argument[0..2];Argument[-1].MapKey.Element;value;manual",
-          ".map;MultiKeyMap;true;put;(Object,Object,Object,Object,Object);;Argument[0..3];Argument[-1].MapKey.Element;value;manual",
-          ".map;MultiKeyMap;true;put;(Object,Object,Object,Object,Object,Object);;Argument[0..4];Argument[-1].MapKey.Element;value;manual",
-          ".map;MultiKeyMap;true;put;(Object,Object,Object);;Argument[2];Argument[-1].MapValue;value;manual",
-          ".map;MultiKeyMap;true;put;(Object,Object,Object,Object);;Argument[3];Argument[-1].MapValue;value;manual",
-          ".map;MultiKeyMap;true;put;(Object,Object,Object,Object,Object);;Argument[4];Argument[-1].MapValue;value;manual",
-          ".map;MultiKeyMap;true;put;(Object,Object,Object,Object,Object,Object);;Argument[5];Argument[-1].MapValue;value;manual",
-          ".map;MultiKeyMap;true;removeMultiKey;;;Argument[-1].MapValue;ReturnValue;value;manual",
-          ".map;MultiValueMap;true;multiValueMap;;;Argument[0].MapKey;ReturnValue.MapKey;value;manual",
-          ".map;MultiValueMap;true;multiValueMap;;;Argument[0].MapValue.Element;ReturnValue.MapValue.Element;value;manual",
-          ".map;MultiValueMap;true;getCollection;;;Argument[-1].MapValue.Element;ReturnValue.Element;value;manual",
-          ".map;MultiValueMap;true;putAll;(Map);;Argument[0].MapValue;Argument[-1].MapValue.Element;value;manual",
-          ".map;MultiValueMap;true;putAll;(Map);;Argument[0].MapValue.Element;Argument[-1].MapValue.Element;value;manual",
-          ".map;MultiValueMap;true;values;;;Argument[-1].MapValue.Element;ReturnValue.Element;value;manual",
-          ".map;MultiValueMap;true;putAll;(Object,Collection);;Argument[0];Argument[-1].MapKey;value;manual",
-          ".map;MultiValueMap;true;putAll;(Object,Collection);;Argument[1].Element;Argument[-1].MapValue.Element;value;manual",
-          ".map;MultiValueMap;true;iterator;(Object);;Argument[-1].MapValue.Element;ReturnValue.Element;value;manual",
-          ".map;MultiValueMap;true;iterator;();;Argument[-1].MapKey;ReturnValue.Element.MapKey;value;manual",
-          ".map;MultiValueMap;true;iterator;();;Argument[-1].MapValue.Element;ReturnValue.Element.MapValue;value;manual",
-          ".map;PassiveExpiringMap;true;PassiveExpiringMap;(ExpirationPolicy,Map);;Argument[1].MapKey;Argument[-1].MapKey;value;manual",
-          ".map;PassiveExpiringMap;true;PassiveExpiringMap;(ExpirationPolicy,Map);;Argument[1].MapValue;Argument[-1].MapValue;value;manual",
-          ".map;PassiveExpiringMap;true;PassiveExpiringMap;(long,Map);;Argument[1].MapKey;Argument[-1].MapKey;value;manual",
-          ".map;PassiveExpiringMap;true;PassiveExpiringMap;(long,Map);;Argument[1].MapValue;Argument[-1].MapValue;value;manual",
-          ".map;PassiveExpiringMap;true;PassiveExpiringMap;(long,TimeUnit,Map);;Argument[2].MapKey;Argument[-1].MapKey;value;manual",
-          ".map;PassiveExpiringMap;true;PassiveExpiringMap;(long,TimeUnit,Map);;Argument[2].MapValue;Argument[-1].MapValue;value;manual",
-          ".map;PassiveExpiringMap;true;PassiveExpiringMap;(Map);;Argument[0].MapKey;Argument[-1].MapKey;value;manual",
-          ".map;PassiveExpiringMap;true;PassiveExpiringMap;(Map);;Argument[0].MapValue;Argument[-1].MapValue;value;manual",
-          ".map;PredicatedMap;true;predicatedMap;;;Argument[0].MapKey;ReturnValue.MapKey;value;manual",
-          ".map;PredicatedMap;true;predicatedMap;;;Argument[0].MapValue;ReturnValue.MapValue;value;manual",
-          ".map;PredicatedSortedMap;true;predicatedSortedMap;;;Argument[0].MapKey;ReturnValue.MapKey;value;manual",
-          ".map;PredicatedSortedMap;true;predicatedSortedMap;;;Argument[0].MapValue;ReturnValue.MapValue;value;manual",
-          ".map;SingletonMap;true;SingletonMap;(Object,Object);;Argument[0];Argument[-1].MapKey;value;manual",
-          ".map;SingletonMap;true;SingletonMap;(Object,Object);;Argument[1];Argument[-1].MapValue;value;manual",
-          ".map;SingletonMap;true;SingletonMap;(KeyValue);;Argument[0].MapKey;Argument[-1].MapKey;value;manual",
-          ".map;SingletonMap;true;SingletonMap;(KeyValue);;Argument[0].MapValue;Argument[-1].MapValue;value;manual",
-          ".map;SingletonMap;true;SingletonMap;(Entry);;Argument[0].MapKey;Argument[-1].MapKey;value;manual",
-          ".map;SingletonMap;true;SingletonMap;(Entry);;Argument[0].MapValue;Argument[-1].MapValue;value;manual",
-          ".map;SingletonMap;true;SingletonMap;(Map);;Argument[0].MapKey;Argument[-1].MapKey;value;manual",
-          ".map;SingletonMap;true;SingletonMap;(Map);;Argument[0].MapValue;Argument[-1].MapValue;value;manual",
-          ".map;SingletonMap;true;setValue;;;Argument[0];Argument[-1].MapValue;value;manual",
-          ".map;TransformedMap;true;transformingMap;;;Argument[0].MapKey;ReturnValue.MapKey;value;manual",
-          ".map;TransformedMap;true;transformingMap;;;Argument[0].MapValue;ReturnValue.MapValue;value;manual",
-          ".map;TransformedSortedMap;true;transformingSortedMap;;;Argument[0].MapKey;ReturnValue.MapKey;value;manual",
-          ".map;TransformedSortedMap;true;transformingSortedMap;;;Argument[0].MapValue;ReturnValue.MapValue;value;manual",
-          ".map;UnmodifiableEntrySet;true;unmodifiableEntrySet;;;Argument[0].Element.MapKey;ReturnValue.Element.MapKey;value;manual",
-          ".map;UnmodifiableEntrySet;true;unmodifiableEntrySet;;;Argument[0].Element.MapValue;ReturnValue.Element.MapValue;value;manual",
-          ".map;UnmodifiableMap;true;unmodifiableMap;;;Argument[0].MapKey;ReturnValue.MapKey;value;manual",
-          ".map;UnmodifiableMap;true;unmodifiableMap;;;Argument[0].MapValue;ReturnValue.MapValue;value;manual",
-          ".map;UnmodifiableOrderedMap;true;unmodifiableOrderedMap;;;Argument[0].MapKey;ReturnValue.MapKey;value;manual",
-          ".map;UnmodifiableOrderedMap;true;unmodifiableOrderedMap;;;Argument[0].MapValue;ReturnValue.MapValue;value;manual",
-          ".map;UnmodifiableSortedMap;true;unmodifiableSortedMap;;;Argument[0].MapKey;ReturnValue.MapKey;value;manual",
-          ".map;UnmodifiableSortedMap;true;unmodifiableSortedMap;;;Argument[0].MapValue;ReturnValue.MapValue;value;manual"
-        ]
-  }
-}
-
-/**
- * Value-propagating models for the package `org.apache.commons.collections4.multimap`.
- */
-private class ApacheMultiMapModel extends SummaryModelCsv {
-  override predicate row(string row) {
-    row =
-      ["org.apache.commons.collections4", "org.apache.commons.collections"] +
-        [
-          // Note that when lambdas are supported we should have more models for TransformedMultiValuedMap
-          ".multimap;ArrayListValuedHashMap;true;ArrayListValuedHashMap;(MultiValuedMap);;Argument[0].MapKey;Argument[-1].MapKey;value;manual",
-          ".multimap;ArrayListValuedHashMap;true;ArrayListValuedHashMap;(MultiValuedMap);;Argument[0].MapValue.Element;Argument[-1].MapValue.Element;value;manual",
-          ".multimap;ArrayListValuedHashMap;true;ArrayListValuedHashMap;(Map);;Argument[0].MapKey;Argument[-1].MapKey;value;manual",
-          ".multimap;ArrayListValuedHashMap;true;ArrayListValuedHashMap;(Map);;Argument[0].MapValue;Argument[-1].MapValue.Element;value;manual",
-          ".multimap;HashSetValuedHashMap;true;HashSetValuedHashMap;(MultiValuedMap);;Argument[0].MapKey;Argument[-1].MapKey;value;manual",
-          ".multimap;HashSetValuedHashMap;true;HashSetValuedHashMap;(MultiValuedMap);;Argument[0].MapValue.Element;Argument[-1].MapValue.Element;value;manual",
-          ".multimap;HashSetValuedHashMap;true;HashSetValuedHashMap;(Map);;Argument[0].MapKey;Argument[-1].MapKey;value;manual",
-          ".multimap;HashSetValuedHashMap;true;HashSetValuedHashMap;(Map);;Argument[0].MapValue;Argument[-1].MapValue.Element;value;manual",
-          ".multimap;TransformedMultiValuedMap;true;transformingMap;;;Argument[0].MapKey;ReturnValue.MapKey;value;manual",
-          ".multimap;TransformedMultiValuedMap;true;transformingMap;;;Argument[0].MapValue.Element;ReturnValue.MapValue.Element;value;manual",
-          ".multimap;UnmodifiableMultiValuedMap;true;unmodifiableMultiValuedMap;(MultiValuedMap);;Argument[0].MapKey;ReturnValue.MapKey;value;manual",
-          ".multimap;UnmodifiableMultiValuedMap;true;unmodifiableMultiValuedMap;(MultiValuedMap);;Argument[0].MapValue.Element;ReturnValue.MapValue.Element;value;manual"
-        ]
-  }
-}
-
-/**
- * Value-propagating models for the package `org.apache.commons.collections4.multiset`.
- */
-private class ApacheMultiSetModel extends SummaryModelCsv {
-  override predicate row(string row) {
-    row =
-      ["org.apache.commons.collections4", "org.apache.commons.collections"] +
-        [
-          ".multiset;HashMultiSet;true;HashMultiSet;;;Argument[0].Element;Argument[-1].Element;value;manual",
-          ".multiset;PredicatedMultiSet;true;predicatedMultiSet;;;Argument[0].Element;ReturnValue.Element;value;manual",
-          ".multiset;SynchronizedMultiSet;true;synchronizedMultiSet;;;Argument[0].Element;ReturnValue.Element;value;manual",
-          ".multiset;UnmodifiableMultiSet;true;unmodifiableMultiSet;;;Argument[0].Element;ReturnValue.Element;value;manual"
-        ]
-  }
-}
-
-/**
- * Value-propagating models for the package `org.apache.commons.collections4.properties`.
- */
-private class ApachePropertiesModel extends SummaryModelCsv {
-  override predicate row(string row) {
-    row =
-      ["org.apache.commons.collections4", "org.apache.commons.collections"] +
-        [
-          ".properties;AbstractPropertiesFactory;true;load;(ClassLoader,String);;Argument[1];ReturnValue;taint;manual",
-          ".properties;AbstractPropertiesFactory;true;load;(File);;Argument[0];ReturnValue;taint;manual",
-          ".properties;AbstractPropertiesFactory;true;load;(InputStream);;Argument[0];ReturnValue;taint;manual",
-          ".properties;AbstractPropertiesFactory;true;load;(Path);;Argument[0];ReturnValue;taint;manual",
-          ".properties;AbstractPropertiesFactory;true;load;(Reader);;Argument[0];ReturnValue;taint;manual",
-          ".properties;AbstractPropertiesFactory;true;load;(String);;Argument[0];ReturnValue;taint;manual",
-          ".properties;AbstractPropertiesFactory;true;load;(URI);;Argument[0];ReturnValue;taint;manual",
-          ".properties;AbstractPropertiesFactory;true;load;(URL);;Argument[0];ReturnValue;taint;manual"
-        ]
-  }
-}
-
-/**
- * Value-propagating models for the package `org.apache.commons.collections4.queue`.
- */
-private class ApacheQueueModel extends SummaryModelCsv {
-  override predicate row(string row) {
-    row =
-      ["org.apache.commons.collections4", "org.apache.commons.collections"] +
-        [
-          // Note that when lambdas are supported we should have more models for TransformedQueue
-          ".queue;CircularFifoQueue;true;CircularFifoQueue;(Collection);;Argument[0].Element;Argument[-1].Element;value;manual",
-          ".queue;CircularFifoQueue;true;get;;;Argument[-1].Element;ReturnValue;value;manual",
-          ".queue;PredicatedQueue;true;predicatedQueue;;;Argument[0].Element;ReturnValue.Element;value;manual",
-          ".queue;SynchronizedQueue;true;synchronizedQueue;;;Argument[0].Element;ReturnValue.Element;value;manual",
-          ".queue;TransformedQueue;true;transformingQueue;;;Argument[0].Element;ReturnValue.Element;value;manual",
-          ".queue;UnmodifiableQueue;true;unmodifiableQueue;;;Argument[0].Element;ReturnValue.Element;value;manual"
-        ]
-  }
-}
-
-/**
- * Value-propagating models for the package `org.apache.commons.collections4.set`.
- */
-private class ApacheSetModel extends SummaryModelCsv {
-  override predicate row(string row) {
-    row =
-      ["org.apache.commons.collections4", "org.apache.commons.collections"] +
-        [
-          // Note that when lambdas are supported we should have more models for TransformedNavigableSet
-          ".set;AbstractNavigableSetDecorator;true;AbstractNavigableSetDecorator;;;Argument[0].Element;Argument[-1].Element;value;manual",
-          ".set;AbstractSetDecorator;true;AbstractSetDecorator;;;Argument[0].Element;Argument[-1].Element;value;manual",
-          ".set;AbstractSortedSetDecorator;true;AbstractSortedSetDecorator;;;Argument[0].Element;Argument[-1].Element;value;manual",
-          ".set;CompositeSet$SetMutator;true;add;;;Argument[2];Argument[0].Element;value;manual",
-          ".set;CompositeSet$SetMutator;true;add;;;Argument[2];Argument[1].Element.Element;value;manual",
-          ".set;CompositeSet$SetMutator;true;addAll;;;Argument[2].Element;Argument[0].Element;value;manual",
-          ".set;CompositeSet$SetMutator;true;addAll;;;Argument[2].Element;Argument[1].Element.Element;value;manual",
-          ".set;CompositeSet;true;CompositeSet;(Set);;Argument[0].Element;Argument[-1].Element;value;manual",
-          ".set;CompositeSet;true;CompositeSet;(Set[]);;Argument[0].ArrayElement.Element;Argument[-1].Element;value;manual",
-          ".set;CompositeSet;true;addComposited;(Set);;Argument[0].Element;Argument[-1].Element;value;manual",
-          ".set;CompositeSet;true;addComposited;(Set,Set);;Argument[0].Element;Argument[-1].Element;value;manual",
-          ".set;CompositeSet;true;addComposited;(Set,Set);;Argument[1].Element;Argument[-1].Element;value;manual",
-          ".set;CompositeSet;true;addComposited;(Set[]);;Argument[0].ArrayElement.Element;Argument[-1].Element;value;manual",
-          ".set;CompositeSet;true;toSet;;;Argument[-1].Element;ReturnValue.Element;value;manual",
-          ".set;CompositeSet;true;getSets;;;Argument[-1].Element;ReturnValue.Element.Element;value;manual",
-          ".set;ListOrderedSet;true;listOrderedSet;(Set);;Argument[0].Element;ReturnValue.Element;value;manual",
-          ".set;ListOrderedSet;true;listOrderedSet;(List);;Argument[0].Element;ReturnValue.Element;value;manual",
-          ".set;ListOrderedSet;true;asList;;;Argument[-1].Element;ReturnValue.Element;value;manual",
-          ".set;ListOrderedSet;true;get;;;Argument[-1].Element;ReturnValue;value;manual",
-          ".set;ListOrderedSet;true;add;;;Argument[1];Argument[-1].Element;value;manual",
-          ".set;ListOrderedSet;true;addAll;;;Argument[1].Element;Argument[-1].Element;value;manual",
-          ".set;MapBackedSet;true;mapBackedSet;;;Argument[0].MapKey;ReturnValue.Element;value;manual",
-          ".set;PredicatedNavigableSet;true;predicatedNavigableSet;;;Argument[0].Element;ReturnValue.Element;value;manual",
-          ".set;PredicatedSet;true;predicatedSet;;;Argument[0].Element;ReturnValue.Element;value;manual",
-          ".set;PredicatedSortedSet;true;predicatedSortedSet;;;Argument[0].Element;ReturnValue.Element;value;manual",
-          ".set;TransformedNavigableSet;true;transformingNavigableSet;;;Argument[0].Element;ReturnValue.Element;value;manual",
-          ".set;TransformedSet;true;transformingSet;;;Argument[0].Element;ReturnValue.Element;value;manual",
-          ".set;TransformedSortedSet;true;transformingSortedSet;;;Argument[0].Element;ReturnValue.Element;value;manual",
-          ".set;UnmodifiableNavigableSet;true;unmodifiableNavigableSet;;;Argument[0].Element;ReturnValue.Element;value;manual",
-          ".set;UnmodifiableSet;true;unmodifiableSet;;;Argument[0].Element;ReturnValue.Element;value;manual",
-          ".set;UnmodifiableSortedSet;true;unmodifiableSortedSet;;;Argument[0].Element;ReturnValue.Element;value;manual"
-        ]
-  }
-}
-
-/**
- * Value-propagating models for the package `org.apache.commons.collections4.splitmap`.
- */
-private class ApacheSplitMapModel extends SummaryModelCsv {
-  override predicate row(string row) {
-    row =
-      ["org.apache.commons.collections4", "org.apache.commons.collections"] +
-        [
-          // Note that when lambdas are supported we should have more models for TransformedSplitMap
-          ".splitmap;AbstractIterableGetMapDecorator;true;AbstractIterableGetMapDecorator;;;Argument[0].MapKey;Argument[-1].MapKey;value;manual",
-          ".splitmap;AbstractIterableGetMapDecorator;true;AbstractIterableGetMapDecorator;;;Argument[0].MapValue;Argument[-1].MapValue;value;manual",
-          ".splitmap;TransformedSplitMap;true;transformingMap;;;Argument[0].MapKey;ReturnValue.MapKey;value;manual",
-          ".splitmap;TransformedSplitMap;true;transformingMap;;;Argument[0].MapValue;ReturnValue.MapValue;value;manual"
-        ]
-  }
-}
-
-/**
- * Value-propagating models for the package `org.apache.commons.collections4.trie`.
- */
-private class ApacheTrieModel extends SummaryModelCsv {
-  override predicate row(string row) {
-    row =
-      ["org.apache.commons.collections4", "org.apache.commons.collections"] +
-        [
-          // Note that when lambdas are supported we should have more models for TransformedSplitMap
-          ".trie;PatriciaTrie;true;PatriciaTrie;;;Argument[0].MapKey;Argument[-1].MapKey;value;manual",
-          ".trie;PatriciaTrie;true;PatriciaTrie;;;Argument[0].MapValue;Argument[-1].MapValue;value;manual",
-          ".trie;AbstractPatriciaTrie;true;select;;;Argument[-1].MapKey;ReturnValue.MapKey;value;manual",
-          ".trie;AbstractPatriciaTrie;true;select;;;Argument[-1].MapValue;ReturnValue.MapValue;value;manual",
-          ".trie;AbstractPatriciaTrie;true;selectKey;;;Argument[-1].MapKey;ReturnValue;value;manual",
-          ".trie;AbstractPatriciaTrie;true;selectValue;;;Argument[-1].MapValue;ReturnValue;value;manual",
-          ".trie;UnmodifiableTrie;true;unmodifiableTrie;;;Argument[0].MapKey;ReturnValue.MapKey;value;manual",
-          ".trie;UnmodifiableTrie;true;unmodifiableTrie;;;Argument[0].MapValue;ReturnValue.MapValue;value;manual"
-        ]
-  }
-}
-
-/**
- * Value-propagating models for the class `org.apache.commons.collections4.MapUtils`.
- */
-private class ApacheMapUtilsModel extends SummaryModelCsv {
-  override predicate row(string row) {
-    row =
-      ["org.apache.commons.collections4", "org.apache.commons.collections"] +
-        [
-          // Note that when lambdas are supported we should have more models for populateMap
-          ";MapUtils;true;emptyIfNull;;;Argument[0];ReturnValue;value;manual",
-          ";MapUtils;true;fixedSizeMap;;;Argument[0].MapKey;ReturnValue.MapKey;value;manual",
-          ";MapUtils;true;fixedSizeMap;;;Argument[0].MapValue;ReturnValue.MapValue;value;manual",
-          ";MapUtils;true;fixedSizeSortedMap;;;Argument[0].MapKey;ReturnValue.MapKey;value;manual",
-          ";MapUtils;true;fixedSizeSortedMap;;;Argument[0].MapValue;ReturnValue.MapValue;value;manual",
-          ";MapUtils;true;getMap;;;Argument[0].MapValue;ReturnValue;value;manual",
-          ";MapUtils;true;getMap;;;Argument[2];ReturnValue;value;manual",
-          ";MapUtils;true;getObject;;;Argument[0].MapValue;ReturnValue;value;manual",
-          ";MapUtils;true;getObject;;;Argument[2];ReturnValue;value;manual",
-          ";MapUtils;true;getString;;;Argument[0].MapValue;ReturnValue;value;manual",
-          ";MapUtils;true;getString;;;Argument[2];ReturnValue;value;manual",
-          ";MapUtils;true;invertMap;;;Argument[0].MapKey;ReturnValue.MapValue;value;manual",
-          ";MapUtils;true;invertMap;;;Argument[0].MapValue;ReturnValue.MapKey;value;manual",
-          ";MapUtils;true;iterableMap;;;Argument[0].MapKey;ReturnValue.MapKey;value;manual",
-          ";MapUtils;true;iterableMap;;;Argument[0].MapValue;ReturnValue.MapValue;value;manual",
-          ";MapUtils;true;iterableSortedMap;;;Argument[0].MapKey;ReturnValue.MapKey;value;manual",
-          ";MapUtils;true;iterableSortedMap;;;Argument[0].MapValue;ReturnValue.MapValue;value;manual",
-          ";MapUtils;true;lazyMap;;;Argument[0].MapKey;ReturnValue.MapKey;value;manual",
-          ";MapUtils;true;lazyMap;;;Argument[0].MapValue;ReturnValue.MapValue;value;manual",
-          ";MapUtils;true;lazySortedMap;;;Argument[0].MapKey;ReturnValue.MapKey;value;manual",
-          ";MapUtils;true;lazySortedMap;;;Argument[0].MapValue;ReturnValue.MapValue;value;manual",
-          ";MapUtils;true;multiValueMap;;;Argument[0].MapKey;ReturnValue.MapKey;value;manual",
-          ";MapUtils;true;multiValueMap;;;Argument[0].MapValue;ReturnValue.MapValue;value;manual",
-          ";MapUtils;true;orderedMap;;;Argument[0].MapKey;ReturnValue.MapKey;value;manual",
-          ";MapUtils;true;orderedMap;;;Argument[0].MapValue;ReturnValue.MapValue;value;manual",
-          ";MapUtils;true;populateMap;(Map,Iterable,Transformer);;Argument[1].Element;Argument[0].MapValue;value;manual",
-          ";MapUtils;true;populateMap;(MultiMap,Iterable,Transformer);;Argument[1].Element;Argument[0].MapValue.Element;value;manual",
-          ";MapUtils;true;predicatedMap;;;Argument[0].MapKey;ReturnValue.MapKey;value;manual",
-          ";MapUtils;true;predicatedMap;;;Argument[0].MapValue;ReturnValue.MapValue;value;manual",
-          ";MapUtils;true;predicatedSortedMap;;;Argument[0].MapKey;ReturnValue.MapKey;value;manual",
-          ";MapUtils;true;predicatedSortedMap;;;Argument[0].MapValue;ReturnValue.MapValue;value;manual",
-          ";MapUtils;true;putAll;;;Argument[1].ArrayElement;Argument[0].MapKey;value;manual",
-          ";MapUtils;true;putAll;;;Argument[1].ArrayElement;ReturnValue.MapKey;value;manual",
-          ";MapUtils;true;putAll;;;Argument[1].ArrayElement;Argument[0].MapValue;value;manual",
-          ";MapUtils;true;putAll;;;Argument[1].ArrayElement;ReturnValue.MapValue;value;manual",
-          ";MapUtils;true;putAll;;;Argument[1].ArrayElement.ArrayElement;Argument[0].MapKey;value;manual",
-          ";MapUtils;true;putAll;;;Argument[1].ArrayElement.ArrayElement;ReturnValue.MapKey;value;manual",
-          ";MapUtils;true;putAll;;;Argument[1].ArrayElement.ArrayElement;Argument[0].MapValue;value;manual",
-          ";MapUtils;true;putAll;;;Argument[1].ArrayElement.ArrayElement;ReturnValue.MapValue;value;manual",
-          ";MapUtils;true;putAll;;;Argument[1].ArrayElement.MapKey;Argument[0].MapKey;value;manual",
-          ";MapUtils;true;putAll;;;Argument[1].ArrayElement.MapKey;ReturnValue.MapKey;value;manual",
-          ";MapUtils;true;putAll;;;Argument[1].ArrayElement.MapValue;Argument[0].MapValue;value;manual",
-          ";MapUtils;true;putAll;;;Argument[1].ArrayElement.MapValue;ReturnValue.MapValue;value;manual",
-          ";MapUtils;true;safeAddToMap;;;Argument[1];Argument[0].MapKey;value;manual",
-          ";MapUtils;true;safeAddToMap;;;Argument[2];Argument[0].MapValue;value;manual",
-          ";MapUtils;true;synchronizedMap;;;Argument[0].MapKey;ReturnValue.MapKey;value;manual",
-          ";MapUtils;true;synchronizedMap;;;Argument[0].MapValue;ReturnValue.MapValue;value;manual",
-          ";MapUtils;true;synchronizedSortedMap;;;Argument[0].MapKey;ReturnValue.MapKey;value;manual",
-          ";MapUtils;true;synchronizedSortedMap;;;Argument[0].MapValue;ReturnValue.MapValue;value;manual",
-          ";MapUtils;true;toMap;;;Argument[0].MapKey;ReturnValue.MapKey;value;manual",
-          ";MapUtils;true;toMap;;;Argument[0].MapValue;ReturnValue.MapValue;value;manual",
-          ";MapUtils;true;transformedMap;;;Argument[0].MapKey;ReturnValue.MapKey;value;manual",
-          ";MapUtils;true;transformedMap;;;Argument[0].MapValue;ReturnValue.MapValue;value;manual",
-          ";MapUtils;true;transformedSortedMap;;;Argument[0].MapKey;ReturnValue.MapKey;value;manual",
-          ";MapUtils;true;transformedSortedMap;;;Argument[0].MapValue;ReturnValue.MapValue;value;manual",
-          ";MapUtils;true;unmodifiableMap;;;Argument[0].MapKey;ReturnValue.MapKey;value;manual",
-          ";MapUtils;true;unmodifiableMap;;;Argument[0].MapValue;ReturnValue.MapValue;value;manual",
-          ";MapUtils;true;unmodifiableSortedMap;;;Argument[0].MapKey;ReturnValue.MapKey;value;manual",
-          ";MapUtils;true;unmodifiableSortedMap;;;Argument[0].MapValue;ReturnValue.MapValue;value;manual"
-        ]
-  }
-}
-
-/**
- * Value-propagating models for the class `org.apache.commons.collections4.CollectionUtils`.
- */
-private class ApacheCollectionUtilsModel extends SummaryModelCsv {
-  override predicate row(string row) {
-    row =
-      ["org.apache.commons.collections4", "org.apache.commons.collections"] +
-        [
-          // Note that when lambdas are supported we should have a model for collect, forAllButLastDo, forAllDo, transform
-          ";CollectionUtils;true;addAll;(Collection,Object[]);;Argument[1].ArrayElement;Argument[0].Element;value;manual",
-          ";CollectionUtils;true;addAll;(Collection,Enumeration);;Argument[1].Element;Argument[0].Element;value;manual",
-          ";CollectionUtils;true;addAll;(Collection,Iterable);;Argument[1].Element;Argument[0].Element;value;manual",
-          ";CollectionUtils;true;addAll;(Collection,Iterator);;Argument[1].Element;Argument[0].Element;value;manual",
-          ";CollectionUtils;true;addIgnoreNull;;;Argument[1];Argument[0].Element;value;manual",
-          ";CollectionUtils;true;collate;;;Argument[0].Element;ReturnValue.Element;value;manual",
-          ";CollectionUtils;true;collate;;;Argument[1].Element;ReturnValue.Element;value;manual",
-          ";CollectionUtils;true;disjunction;;;Argument[0].Element;ReturnValue.Element;value;manual",
-          ";CollectionUtils;true;disjunction;;;Argument[1].Element;ReturnValue.Element;value;manual",
-          ";CollectionUtils;true;emptyIfNull;;;Argument[0];ReturnValue;value;manual",
-          ";CollectionUtils;true;extractSingleton;;;Argument[0].Element;ReturnValue;value;manual",
-          ";CollectionUtils;true;find;;;Argument[0].Element;ReturnValue;value;manual",
-          ";CollectionUtils;true;get;(Iterator,int);;Argument[0].Element;ReturnValue;value;manual",
-          ";CollectionUtils;true;get;(Iterable,int);;Argument[0].Element;ReturnValue;value;manual",
-          ";CollectionUtils;true;get;(Map,int);;Argument[0].MapKey;ReturnValue.MapKey;value;manual",
-          ";CollectionUtils;true;get;(Map,int);;Argument[0].MapValue;ReturnValue.MapValue;value;manual",
-          ";CollectionUtils;true;get;(Object,int);;Argument[0].ArrayElement;ReturnValue;value;manual",
-          ";CollectionUtils;true;get;(Object,int);;Argument[0].Element;ReturnValue;value;manual",
-          ";CollectionUtils;true;get;(Object,int);;Argument[0].MapKey;ReturnValue.MapKey;value;manual",
-          ";CollectionUtils;true;get;(Object,int);;Argument[0].MapValue;ReturnValue.MapValue;value;manual",
-          ";CollectionUtils;true;getCardinalityMap;;;Argument[0].Element;ReturnValue.MapKey;value;manual",
-          ";CollectionUtils;true;intersection;;;Argument[0].Element;ReturnValue.Element;value;manual",
-          ";CollectionUtils;true;intersection;;;Argument[1].Element;ReturnValue.Element;value;manual",
-          ";CollectionUtils;true;permutations;;;Argument[0].Element;ReturnValue.Element.Element;value;manual",
-          ";CollectionUtils;true;predicatedCollection;;;Argument[0].Element;ReturnValue.Element;value;manual",
-          ";CollectionUtils;true;removeAll;;;Argument[0].Element;ReturnValue.Element;value;manual",
-          ";CollectionUtils;true;retainAll;;;Argument[0].Element;ReturnValue.Element;value;manual",
-          ";CollectionUtils;true;select;(Iterable,Predicate);;Argument[0].Element;ReturnValue.Element;value;manual",
-          ";CollectionUtils;true;select;(Iterable,Predicate,Collection);;Argument[0].Element;Argument[2].Element;value;manual",
-          ";CollectionUtils;true;select;(Iterable,Predicate,Collection);;Argument[2];ReturnValue;value;manual",
-          ";CollectionUtils;true;select;(Iterable,Predicate,Collection,Collection);;Argument[0].Element;Argument[2].Element;value;manual",
-          ";CollectionUtils;true;select;(Iterable,Predicate,Collection,Collection);;Argument[0].Element;Argument[3].Element;value;manual",
-          ";CollectionUtils;true;select;(Iterable,Predicate,Collection,Collection);;Argument[2];ReturnValue;value;manual",
-          ";CollectionUtils;true;selectRejected;(Iterable,Predicate);;Argument[0].Element;ReturnValue.Element;value;manual",
-          ";CollectionUtils;true;selectRejected;(Iterable,Predicate,Collection);;Argument[0].Element;Argument[2].Element;value;manual",
-          ";CollectionUtils;true;selectRejected;(Iterable,Predicate,Collection);;Argument[2];ReturnValue;value;manual",
-          ";CollectionUtils;true;subtract;;;Argument[0].Element;ReturnValue.Element;value;manual",
-          ";CollectionUtils;true;synchronizedCollection;;;Argument[0].Element;ReturnValue.Element;value;manual",
-          // Note that `CollectionUtils.transformingCollection` does not transform existing list elements
-          ";CollectionUtils;true;transformingCollection;;;Argument[0].Element;ReturnValue.Element;value;manual",
-          ";CollectionUtils;true;union;;;Argument[0].Element;ReturnValue.Element;value;manual",
-          ";CollectionUtils;true;union;;;Argument[1].Element;ReturnValue.Element;value;manual",
-          ";CollectionUtils;true;unmodifiableCollection;;;Argument[0].Element;ReturnValue.Element;value;manual"
-        ]
-  }
-}
-
-/**
- * Value-propagating models for the class `org.apache.commons.collections4.ListUtils`.
- */
-private class ApacheListUtilsModel extends SummaryModelCsv {
-  override predicate row(string row) {
-    row =
-      ["org.apache.commons.collections4", "org.apache.commons.collections"] +
-        [
-          ";ListUtils;true;defaultIfNull;;;Argument[0];ReturnValue;value;manual",
-          ";ListUtils;true;defaultIfNull;;;Argument[1];ReturnValue;value;manual",
-          ";ListUtils;true;emptyIfNull;;;Argument[0];ReturnValue;value;manual",
-          ";ListUtils;true;fixedSizeList;;;Argument[0].Element;ReturnValue.Element;value;manual",
-          ";ListUtils;true;intersection;;;Argument[0].Element;ReturnValue.Element;value;manual",
-          ";ListUtils;true;intersection;;;Argument[1].Element;ReturnValue.Element;value;manual",
-          // Note that `ListUtils.lazyList` does not transform existing list elements
-          ";ListUtils;true;lazyList;;;Argument[0].Element;ReturnValue.Element;value;manual",
-          ";ListUtils;true;longestCommonSubsequence;(CharSequence,CharSequence);;Argument[0];ReturnValue;taint;manual",
-          ";ListUtils;true;longestCommonSubsequence;(CharSequence,CharSequence);;Argument[1];ReturnValue;taint;manual",
-          ";ListUtils;true;longestCommonSubsequence;(List,List);;Argument[0].Element;ReturnValue.Element;value;manual",
-          ";ListUtils;true;longestCommonSubsequence;(List,List);;Argument[1].Element;ReturnValue.Element;value;manual",
-          ";ListUtils;true;longestCommonSubsequence;(List,List,Equator);;Argument[0].Element;ReturnValue.Element;value;manual",
-          ";ListUtils;true;longestCommonSubsequence;(List,List,Equator);;Argument[1].Element;ReturnValue.Element;value;manual",
-          ";ListUtils;true;partition;;;Argument[0].Element;ReturnValue.Element.Element;value;manual",
-          ";ListUtils;true;predicatedList;;;Argument[0].Element;ReturnValue.Element;value;manual",
-          ";ListUtils;true;removeAll;;;Argument[0].Element;ReturnValue.Element;value;manual",
-          ";ListUtils;true;retainAll;;;Argument[0].Element;ReturnValue.Element;value;manual",
-          ";ListUtils;true;select;;;Argument[0].Element;ReturnValue.Element;value;manual",
-          ";ListUtils;true;selectRejected;;;Argument[0].Element;ReturnValue.Element;value;manual",
-          ";ListUtils;true;subtract;;;Argument[0].Element;ReturnValue.Element;value;manual",
-          ";ListUtils;true;sum;;;Argument[0].Element;ReturnValue.Element;value;manual",
-          ";ListUtils;true;sum;;;Argument[1].Element;ReturnValue.Element;value;manual",
-          ";ListUtils;true;synchronizedList;;;Argument[0].Element;ReturnValue.Element;value;manual",
-          // Note that `ListUtils.transformedList` does not transform existing list elements
-          ";ListUtils;true;transformedList;;;Argument[0].Element;ReturnValue.Element;value;manual",
-          ";ListUtils;true;union;;;Argument[0].Element;ReturnValue.Element;value;manual",
-          ";ListUtils;true;union;;;Argument[1].Element;ReturnValue.Element;value;manual",
-          ";ListUtils;true;unmodifiableList;;;Argument[0].Element;ReturnValue.Element;value;manual"
-        ]
-  }
-}
-
-/**
- * Value-propagating models for the class `org.apache.commons.collections4.IteratorUtils`.
- */
-private class ApacheIteratorUtilsModel extends SummaryModelCsv {
-  override predicate row(string row) {
-    row =
-      ["org.apache.commons.collections4", "org.apache.commons.collections"] +
-        [
-          // Note that when lambdas are supported we should have a model for forEach, forEachButLast, transformedIterator
-          ";IteratorUtils;true;arrayIterator;;;Argument[0].ArrayElement;ReturnValue.Element;value;manual",
-          ";IteratorUtils;true;arrayListIterator;;;Argument[0].ArrayElement;ReturnValue.Element;value;manual",
-          ";IteratorUtils;true;asEnumeration;;;Argument[0].Element;ReturnValue.Element;value;manual",
-          ";IteratorUtils;true;asIterable;;;Argument[0].Element;ReturnValue.Element;value;manual",
-          ";IteratorUtils;true;asIterator;;;Argument[0].Element;ReturnValue.Element;value;manual",
-          ";IteratorUtils;true;asMultipleUseIterable;;;Argument[0].Element;ReturnValue.Element;value;manual",
-          ";IteratorUtils;true;boundedIterator;;;Argument[0].Element;ReturnValue.Element;value;manual",
-          ";IteratorUtils;true;chainedIterator;(Collection);;Argument[0].Element.Element;ReturnValue.Element;value;manual",
-          ";IteratorUtils;true;chainedIterator;(Iterator[]);;Argument[0].ArrayElement.Element;ReturnValue.Element;value;manual",
-          ";IteratorUtils;true;chainedIterator;(Iterator,Iterator);;Argument[0].Element;ReturnValue.Element;value;manual",
-          ";IteratorUtils;true;chainedIterator;(Iterator,Iterator);;Argument[1].Element;ReturnValue.Element;value;manual",
-          ";IteratorUtils;true;collatedIterator;(Comparator,Collection);;Argument[1].Element.Element;ReturnValue.Element;value;manual",
-          ";IteratorUtils;true;collatedIterator;(Comparator,Iterator[]);;Argument[1].ArrayElement.Element;ReturnValue.Element;value;manual",
-          ";IteratorUtils;true;collatedIterator;(Comparator,Iterator,Iterator);;Argument[1].Element;ReturnValue.Element;value;manual",
-          ";IteratorUtils;true;collatedIterator;(Comparator,Iterator,Iterator);;Argument[2].Element;ReturnValue.Element;value;manual",
-          ";IteratorUtils;true;filteredIterator;;;Argument[0].Element;ReturnValue.Element;value;manual",
-          ";IteratorUtils;true;filteredListIterator;;;Argument[0].Element;ReturnValue.Element;value;manual",
-          ";IteratorUtils;true;find;;;Argument[0].Element;ReturnValue;value;manual",
-          ";IteratorUtils;true;first;;;Argument[0].Element;ReturnValue;value;manual",
-          ";IteratorUtils;true;forEachButLast;;;Argument[0].Element;ReturnValue;value;manual",
-          ";IteratorUtils;true;get;;;Argument[0].Element;ReturnValue;value;manual",
-          ";IteratorUtils;true;getIterator;;;Argument[0].Element;ReturnValue.Element;value;manual",
-          ";IteratorUtils;true;getIterator;;;Argument[0].ArrayElement;ReturnValue.Element;value;manual",
-          ";IteratorUtils;true;getIterator;;;Argument[0];ReturnValue.Element;value;manual",
-          ";IteratorUtils;true;getIterator;;;Argument[0].MapValue;ReturnValue.Element;value;manual",
-          ";IteratorUtils;true;loopingIterator;;;Argument[0].Element;ReturnValue.Element;value;manual",
-          ";IteratorUtils;true;loopingListIterator;;;Argument[0].Element;ReturnValue.Element;value;manual",
-          ";IteratorUtils;true;peekingIterator;;;Argument[0].Element;ReturnValue.Element;value;manual",
-          ";IteratorUtils;true;pushbackIterator;;;Argument[0].Element;ReturnValue.Element;value;manual",
-          ";IteratorUtils;true;singletonIterator;;;Argument[0];ReturnValue.Element;value;manual",
-          ";IteratorUtils;true;singletonListIterator;;;Argument[0];ReturnValue.Element;value;manual",
-          ";IteratorUtils;true;skippingIterator;;;Argument[0].Element;ReturnValue.Element;value;manual",
-          ";IteratorUtils;true;toArray;;;Argument[0].Element;ReturnValue.ArrayElement;value;manual",
-          ";IteratorUtils;true;toList;;;Argument[0].Element;ReturnValue.Element;value;manual",
-          ";IteratorUtils;true;toListIterator;;;Argument[0].Element;ReturnValue.Element;value;manual",
-          ";IteratorUtils;true;toString;;;Argument[2];ReturnValue;taint;manual",
-          ";IteratorUtils;true;toString;;;Argument[3];ReturnValue;taint;manual",
-          ";IteratorUtils;true;toString;;;Argument[4];ReturnValue;taint;manual",
-          ";IteratorUtils;true;unmodifiableIterator;;;Argument[0].Element;ReturnValue.Element;value;manual",
-          ";IteratorUtils;true;unmodifiableListIterator;;;Argument[0].Element;ReturnValue.Element;value;manual",
-          ";IteratorUtils;true;unmodifiableMapIterator;;;Argument[0].Element;ReturnValue.Element;value;manual",
-          ";IteratorUtils;true;unmodifiableMapIterator;;;Argument[0].MapValue;ReturnValue.MapValue;value;manual",
-          ";IteratorUtils;true;zippingIterator;(Iterator[]);;Argument[0].ArrayElement.Element;ReturnValue.Element;value;manual",
-          ";IteratorUtils;true;zippingIterator;(Iterator,Iterator);;Argument[0].Element;ReturnValue.Element;value;manual",
-          ";IteratorUtils;true;zippingIterator;(Iterator,Iterator);;Argument[1].Element;ReturnValue.Element;value;manual",
-          ";IteratorUtils;true;zippingIterator;(Iterator,Iterator,Iterator);;Argument[0].Element;ReturnValue.Element;value;manual",
-          ";IteratorUtils;true;zippingIterator;(Iterator,Iterator,Iterator);;Argument[1].Element;ReturnValue.Element;value;manual",
-          ";IteratorUtils;true;zippingIterator;(Iterator,Iterator,Iterator);;Argument[2].Element;ReturnValue.Element;value;manual"
-        ]
-  }
-}
-
-/**
- * Value-propagating models for the class `org.apache.commons.collections4.IterableUtils`.
- */
-private class ApacheIterableUtilsModel extends SummaryModelCsv {
-  override predicate row(string row) {
-    // Note that when lambdas are supported we should have a model for forEach, forEachButLast, transformedIterable
-    row =
-      ["org.apache.commons.collections4", "org.apache.commons.collections"] +
-        [
-          ";IterableUtils;true;boundedIterable;;;Argument[0].Element;ReturnValue.Element;value;manual",
-          ";IterableUtils;true;chainedIterable;(Iterable[]);;Argument[0].ArrayElement.Element;ReturnValue.Element;value;manual",
-          ";IterableUtils;true;chainedIterable;(Iterable,Iterable);;Argument[0].Element;ReturnValue.Element;value;manual",
-          ";IterableUtils;true;chainedIterable;(Iterable,Iterable);;Argument[1].Element;ReturnValue.Element;value;manual",
-          ";IterableUtils;true;chainedIterable;(Iterable,Iterable,Iterable);;Argument[0].Element;ReturnValue.Element;value;manual",
-          ";IterableUtils;true;chainedIterable;(Iterable,Iterable,Iterable);;Argument[1].Element;ReturnValue.Element;value;manual",
-          ";IterableUtils;true;chainedIterable;(Iterable,Iterable,Iterable);;Argument[2].Element;ReturnValue.Element;value;manual",
-          ";IterableUtils;true;chainedIterable;(Iterable,Iterable,Iterable,Iterable);;Argument[0].Element;ReturnValue.Element;value;manual",
-          ";IterableUtils;true;chainedIterable;(Iterable,Iterable,Iterable,Iterable);;Argument[1].Element;ReturnValue.Element;value;manual",
-          ";IterableUtils;true;chainedIterable;(Iterable,Iterable,Iterable,Iterable);;Argument[2].Element;ReturnValue.Element;value;manual",
-          ";IterableUtils;true;chainedIterable;(Iterable,Iterable,Iterable,Iterable);;Argument[3].Element;ReturnValue.Element;value;manual",
-          ";IterableUtils;true;collatedIterable;(Comparator,Iterable,Iterable);;Argument[1].Element;ReturnValue.Element;value;manual",
-          ";IterableUtils;true;collatedIterable;(Comparator,Iterable,Iterable);;Argument[2].Element;ReturnValue.Element;value;manual",
-          ";IterableUtils;true;collatedIterable;(Iterable,Iterable);;Argument[0].Element;ReturnValue.Element;value;manual",
-          ";IterableUtils;true;collatedIterable;(Iterable,Iterable);;Argument[1].Element;ReturnValue.Element;value;manual",
-          ";IterableUtils;true;emptyIfNull;;;Argument[0];ReturnValue;value;manual",
-          ";IterableUtils;true;filteredIterable;;;Argument[0].Element;ReturnValue.Element;value;manual",
-          ";IterableUtils;true;find;;;Argument[0].Element;ReturnValue;value;manual",
-          ";IterableUtils;true;first;;;Argument[0].Element;ReturnValue;value;manual",
-          ";IterableUtils;true;forEachButLast;;;Argument[0].Element;ReturnValue;value;manual",
-          ";IterableUtils;true;get;;;Argument[0].Element;ReturnValue;value;manual",
-          ";IterableUtils;true;loopingIterable;;;Argument[0].Element;ReturnValue.Element;value;manual",
-          ";IterableUtils;true;partition;;;Argument[0].Element;ReturnValue.Element.Element;value;manual",
-          ";IterableUtils;true;reversedIterable;;;Argument[0].Element;ReturnValue.Element;value;manual",
-          ";IterableUtils;true;skippingIterable;;;Argument[0].Element;ReturnValue.Element;value;manual",
-          ";IterableUtils;true;toList;;;Argument[0].Element;ReturnValue.Element;value;manual",
-          ";IterableUtils;true;toString;;;Argument[2];ReturnValue;taint;manual",
-          ";IterableUtils;true;toString;;;Argument[3];ReturnValue;taint;manual",
-          ";IterableUtils;true;toString;;;Argument[4];ReturnValue;taint;manual",
-          ";IterableUtils;true;uniqueIterable;;;Argument[0].Element;ReturnValue.Element;value;manual",
-          ";IterableUtils;true;unmodifiableIterable;;;Argument[0].Element;ReturnValue.Element;value;manual",
-          ";IterableUtils;true;zippingIterable;;;Argument[0].Element;ReturnValue.Element;value;manual",
-          ";IterableUtils;true;zippingIterable;(Iterable,Iterable[]);;Argument[1].ArrayElement.Element;ReturnValue.Element;value;manual",
-          ";IterableUtils;true;zippingIterable;(Iterable,Iterable);;Argument[1].Element;ReturnValue.Element;value;manual"
-        ]
-  }
-}
-
-/**
- * Value-propagating models for the class `org.apache.commons.collections4.EnumerationUtils`.
- */
-private class ApacheEnumerationUtilsModel extends SummaryModelCsv {
-  override predicate row(string row) {
-    row =
-      ["org.apache.commons.collections4", "org.apache.commons.collections"] +
-        [
-          ";EnumerationUtils;true;get;;;Argument[0].Element;ReturnValue;value;manual",
-          ";EnumerationUtils;true;toList;(Enumeration);;Argument[0].Element;ReturnValue.Element;value;manual",
-          ";EnumerationUtils;true;toList;(StringTokenizer);;Argument[0];ReturnValue.Element;taint;manual"
-        ]
-  }
-}
-
-/**
- * Value-propagating models for the class `org.apache.commons.collections4.MultiMapUtils`.
- */
-private class ApacheMultiMapUtilsModel extends SummaryModelCsv {
-  override predicate row(string row) {
-    row =
-      ["org.apache.commons.collections4", "org.apache.commons.collections"] +
-        [
-          ";MultiMapUtils;true;emptyIfNull;;;Argument[0];ReturnValue;value;manual",
-          ";MultiMapUtils;true;getCollection;;;Argument[0].MapValue;ReturnValue;value;manual",
-          ";MultiMapUtils;true;getValuesAsBag;;;Argument[0].MapValue.Element;ReturnValue.Element;value;manual",
-          ";MultiMapUtils;true;getValuesAsList;;;Argument[0].MapValue.Element;ReturnValue.Element;value;manual",
-          ";MultiMapUtils;true;getValuesAsSet;;;Argument[0].MapValue.Element;ReturnValue.Element;value;manual",
-          ";MultiMapUtils;true;transformedMultiValuedMap;;;Argument[0].MapKey;ReturnValue.MapKey;value;manual",
-          ";MultiMapUtils;true;transformedMultiValuedMap;;;Argument[0].MapValue.Element;ReturnValue.MapValue.Element;value;manual",
-          ";MultiMapUtils;true;unmodifiableMultiValuedMap;;;Argument[0].MapKey;ReturnValue.MapKey;value;manual",
-          ";MultiMapUtils;true;unmodifiableMultiValuedMap;;;Argument[0].MapValue.Element;ReturnValue.MapValue.Element;value;manual"
-        ]
-  }
-}
-
-/**
- * Value-propagating models for the class `org.apache.commons.collections4.MultiSetUtils`.
- */
-private class ApacheMultiSetUtilsModel extends SummaryModelCsv {
-  override predicate row(string row) {
-    row =
-      ["org.apache.commons.collections4", "org.apache.commons.collections"] +
-        [
-          ";MultiSetUtils;true;predicatedMultiSet;;;Argument[0].Element;ReturnValue.Element;value;manual",
-          ";MultiSetUtils;true;synchronizedMultiSet;;;Argument[0].Element;ReturnValue.Element;value;manual",
-          ";MultiSetUtils;true;unmodifiableMultiSet;;;Argument[0].Element;ReturnValue.Element;value;manual"
-        ]
-  }
-}
-
-/**
- * Value-propagating models for the class `org.apache.commons.collections4.QueueUtils`.
- */
-private class ApacheQueueUtilsModel extends SummaryModelCsv {
-  override predicate row(string row) {
-    row =
-      ["org.apache.commons.collections4", "org.apache.commons.collections"] +
-        [
-          ";QueueUtils;true;predicatedQueue;;;Argument[0].Element;ReturnValue.Element;value;manual",
-          ";QueueUtils;true;synchronizedQueue;;;Argument[0].Element;ReturnValue.Element;value;manual",
-          ";QueueUtils;true;transformingQueue;;;Argument[0].Element;ReturnValue.Element;value;manual",
-          ";QueueUtils;true;unmodifiableQueue;;;Argument[0].Element;ReturnValue.Element;value;manual"
-        ]
-  }
-}
-
-/**
- * Value-propagating models for the classes `org.apache.commons.collections4.SetUtils`
- * and `org.apache.commons.collections4.SetUtils$SetView`.
- */
-private class ApacheSetUtilsModel extends SummaryModelCsv {
-  override predicate row(string row) {
-    row =
-      ["org.apache.commons.collections4", "org.apache.commons.collections"] +
-        [
-          ";SetUtils$SetView;true;copyInto;;;Argument[-1].Element;Argument[0].Element;value;manual",
-          ";SetUtils$SetView;true;createIterator;;;Argument[-1].Element;ReturnValue.Element;value;manual",
-          ";SetUtils$SetView;true;toSet;;;Argument[-1].Element;ReturnValue.Element;value;manual",
-          ";SetUtils;true;difference;;;Argument[0].Element;ReturnValue.Element;value;manual",
-          ";SetUtils;true;disjunction;;;Argument[0].Element;ReturnValue.Element;value;manual",
-          ";SetUtils;true;disjunction;;;Argument[1].Element;ReturnValue.Element;value;manual",
-          ";SetUtils;true;emptyIfNull;;;Argument[0];ReturnValue;value;manual",
-          ";SetUtils;true;hashSet;;;Argument[0].ArrayElement;ReturnValue.Element;value;manual",
-          ";SetUtils;true;intersection;;;Argument[0].Element;ReturnValue.Element;value;manual",
-          ";SetUtils;true;intersection;;;Argument[1].Element;ReturnValue.Element;value;manual",
-          ";SetUtils;true;orderedSet;;;Argument[0].Element;ReturnValue.Element;value;manual",
-          ";SetUtils;true;predicatedNavigableSet;;;Argument[0].Element;ReturnValue.Element;value;manual",
-          ";SetUtils;true;predicatedSet;;;Argument[0].Element;ReturnValue.Element;value;manual",
-          ";SetUtils;true;predicatedSortedSet;;;Argument[0].Element;ReturnValue.Element;value;manual",
-          ";SetUtils;true;synchronizedSet;;;Argument[0].Element;ReturnValue.Element;value;manual",
-          ";SetUtils;true;synchronizedSortedSet;;;Argument[0].Element;ReturnValue.Element;value;manual",
-          ";SetUtils;true;transformedNavigableSet;;;Argument[0].Element;ReturnValue.Element;value;manual",
-          ";SetUtils;true;transformedSet;;;Argument[0].Element;ReturnValue.Element;value;manual",
-          ";SetUtils;true;transformedSortedSet;;;Argument[0].Element;ReturnValue.Element;value;manual",
-          ";SetUtils;true;union;;;Argument[0].Element;ReturnValue.Element;value;manual",
-          ";SetUtils;true;union;;;Argument[1].Element;ReturnValue.Element;value;manual",
-          ";SetUtils;true;unmodifiableNavigableSet;;;Argument[0].Element;ReturnValue.Element;value;manual",
-          ";SetUtils;true;unmodifiableSet;(Object[]);;Argument[0].ArrayElement;ReturnValue.Element;value;manual",
-          ";SetUtils;true;unmodifiableSet;(Set);;Argument[0].Element;ReturnValue.Element;value;manual",
-          ";SetUtils;true;unmodifiableSortedSet;;;Argument[0].Element;ReturnValue.Element;value;manual"
-        ]
-  }
-}
-
-/**
- * Value-propagating models for the class `org.apache.commons.collections4.SplitMapUtils`.
- */
-private class ApacheSplitMapUtilsModel extends SummaryModelCsv {
-  override predicate row(string row) {
-    row =
-      ["org.apache.commons.collections4", "org.apache.commons.collections"] +
-        [
-          ";SplitMapUtils;true;readableMap;;;Argument[0].MapKey;ReturnValue.MapKey;value;manual",
-          ";SplitMapUtils;true;readableMap;;;Argument[0].MapValue;ReturnValue.MapValue;value;manual",
-          ";SplitMapUtils;true;writableMap;;;Argument[0].MapKey;ReturnValue.MapKey;value;manual",
-          ";SplitMapUtils;true;writableMap;;;Argument[0].MapValue;ReturnValue.MapValue;value;manual"
-        ]
-  }
-}
-
-/**
- * Value-propagating models for the class `org.apache.commons.collections4.TrieUtils`.
- */
-private class ApacheTrieUtilsModel extends SummaryModelCsv {
-  override predicate row(string row) {
-    row =
-      ["org.apache.commons.collections4", "org.apache.commons.collections"] +
-        [
-          ";TrieUtils;true;unmodifiableTrie;;;Argument[0].MapKey;ReturnValue.MapKey;value;manual",
-          ";TrieUtils;true;unmodifiableTrie;;;Argument[0].MapValue;ReturnValue.MapValue;value;manual"
-        ]
-  }
-}
-
-/**
- * Value-propagating models for the class `org.apache.commons.collections4.BagUtils`.
- */
-private class ApacheBagUtilsModel extends SummaryModelCsv {
-  override predicate row(string row) {
-    row =
-      ["org.apache.commons.collections4", "org.apache.commons.collections"] +
-        [
-          ";BagUtils;true;collectionBag;;;Argument[0].Element;ReturnValue.Element;value;manual",
-          ";BagUtils;true;predicatedBag;;;Argument[0].Element;ReturnValue.Element;value;manual",
-          ";BagUtils;true;predicatedSortedBag;;;Argument[0].Element;ReturnValue.Element;value;manual",
-          ";BagUtils;true;synchronizedBag;;;Argument[0].Element;ReturnValue.Element;value;manual",
-          ";BagUtils;true;synchronizedSortedBag;;;Argument[0].Element;ReturnValue.Element;value;manual",
-          ";BagUtils;true;transformingBag;;;Argument[0].Element;ReturnValue.Element;value;manual",
-          ";BagUtils;true;transformingSortedBag;;;Argument[0].Element;ReturnValue.Element;value;manual",
-          ";BagUtils;true;unmodifiableBag;;;Argument[0].Element;ReturnValue.Element;value;manual",
-          ";BagUtils;true;unmodifiableSortedBag;;;Argument[0].Element;ReturnValue.Element;value;manual"
-        ]
-  }
-}
diff --git a/java/ql/lib/semmle/code/java/frameworks/apache/IO.qll b/java/ql/lib/semmle/code/java/frameworks/apache/IO.qll
deleted file mode 100644
index 997bffb9110..00000000000
--- a/java/ql/lib/semmle/code/java/frameworks/apache/IO.qll
+++ /dev/null
@@ -1,23 +0,0 @@
-/** Custom definitions related to the Apache Commons IO library. */
-
-import java
-private import semmle.code.java.dataflow.ExternalFlow
-
-private class ApacheCommonsIOCustomSummaryCsv extends SummaryModelCsv {
-  /**
-   * Models that are not yet auto generated or where the generated summaries will
-   * be ignored.
-   * Note that if a callable has any handwritten summary, all generated summaries
-   * will be ignored for that callable.
-   */
-  override predicate row(string row) {
-    row =
-      [
-        "org.apache.commons.io;IOUtils;false;toBufferedInputStream;;;Argument[0];ReturnValue;taint;manual",
-        "org.apache.commons.io;IOUtils;true;writeLines;(Collection,String,Writer);;Argument[0].Element;Argument[2];taint;manual",
-        "org.apache.commons.io;IOUtils;true;writeLines;(Collection,String,Writer);;Argument[1];Argument[2];taint;manual",
-        "org.apache.commons.io;IOUtils;true;toByteArray;(Reader);;Argument[0];ReturnValue;taint;manual",
-        "org.apache.commons.io;IOUtils;true;toByteArray;(Reader,String);;Argument[0];ReturnValue;taint;manual",
-      ]
-  }
-}
diff --git a/java/ql/lib/semmle/code/java/frameworks/apache/Lang.qll b/java/ql/lib/semmle/code/java/frameworks/apache/Lang.qll
index 84db672e935..ea04948d9bc 100644
--- a/java/ql/lib/semmle/code/java/frameworks/apache/Lang.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/apache/Lang.qll
@@ -1,8 +1,6 @@
 /** Definitions related to the Apache Commons Lang library. */
 
 import java
-import Lang2Generated
-import Lang3Generated
 private import semmle.code.java.dataflow.FlowSteps
 private import semmle.code.java.dataflow.ExternalFlow
 
diff --git a/java/ql/lib/semmle/code/java/frameworks/apache/Lang2Generated.qll b/java/ql/lib/semmle/code/java/frameworks/apache/Lang2Generated.qll
deleted file mode 100644
index 3d9c8116c59..00000000000
--- a/java/ql/lib/semmle/code/java/frameworks/apache/Lang2Generated.qll
+++ /dev/null
@@ -1,284 +0,0 @@
-/** Definitions related to the Apache Commons Lang 2 library. */
-
-import java
-private import semmle.code.java.dataflow.ExternalFlow
-
-private class ApacheCommonsLangModel extends SummaryModelCsv {
-  override predicate row(string row) {
-    row =
-      [
-        "org.apache.commons.text;StrBuilder;false;append;;;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.commons.text;StrBuilder;false;append;;;Argument[-1];ReturnValue;value;manual",
-        "org.apache.commons.text;StrBuilder;false;append;(char[],int,int);;Argument[0];Argument[-1];taint;manual",
-        "org.apache.commons.text;StrBuilder;false;append;(char[]);;Argument[0];Argument[-1];taint;manual",
-        "org.apache.commons.text;StrBuilder;false;append;(java.lang.CharSequence,int,int);;Argument[0];Argument[-1];taint;manual",
-        "org.apache.commons.text;StrBuilder;false;append;(java.lang.CharSequence);;Argument[0];Argument[-1];taint;manual",
-        "org.apache.commons.text;StrBuilder;false;append;(java.lang.Object);;Argument[0];Argument[-1];taint;manual",
-        "org.apache.commons.text;StrBuilder;false;append;(java.lang.String,int,int);;Argument[0];Argument[-1];taint;manual",
-        "org.apache.commons.text;StrBuilder;false;append;(java.lang.String,java.lang.Object[]);;Argument[0];Argument[-1];taint;manual",
-        "org.apache.commons.text;StrBuilder;false;append;(java.lang.String,java.lang.Object[]);;Argument[1].ArrayElement;Argument[-1];taint;manual",
-        "org.apache.commons.text;StrBuilder;false;append;(java.lang.String);;Argument[0];Argument[-1];taint;manual",
-        "org.apache.commons.text;StrBuilder;false;append;(java.lang.StringBuffer,int,int);;Argument[0];Argument[-1];taint;manual",
-        "org.apache.commons.text;StrBuilder;false;append;(java.lang.StringBuffer);;Argument[0];Argument[-1];taint;manual",
-        "org.apache.commons.text;StrBuilder;false;append;(java.lang.StringBuilder,int,int);;Argument[0];Argument[-1];taint;manual",
-        "org.apache.commons.text;StrBuilder;false;append;(java.lang.StringBuilder);;Argument[0];Argument[-1];taint;manual",
-        "org.apache.commons.text;StrBuilder;false;append;(java.nio.CharBuffer,int,int);;Argument[0];Argument[-1];taint;manual",
-        "org.apache.commons.text;StrBuilder;false;append;(java.nio.CharBuffer);;Argument[0];Argument[-1];taint;manual",
-        "org.apache.commons.text;StrBuilder;false;append;(org.apache.commons.text.StrBuilder);;Argument[0];Argument[-1];taint;manual",
-        "org.apache.commons.text;StrBuilder;false;appendAll;;;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.commons.text;StrBuilder;false;appendAll;;;Argument[-1];ReturnValue;value;manual",
-        "org.apache.commons.text;StrBuilder;false;appendAll;(Iterable);;Argument[0].Element;Argument[-1];taint;manual",
-        "org.apache.commons.text;StrBuilder;false;appendAll;(Iterator);;Argument[0].Element;Argument[-1];taint;manual",
-        "org.apache.commons.text;StrBuilder;false;appendAll;(Object[]);;Argument[0].ArrayElement;Argument[-1];taint;manual",
-        "org.apache.commons.text;StrBuilder;false;appendFixedWidthPadLeft;;;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.commons.text;StrBuilder;false;appendFixedWidthPadLeft;;;Argument[-1];ReturnValue;value;manual",
-        "org.apache.commons.text;StrBuilder;false;appendFixedWidthPadLeft;;;Argument[0];Argument[-1];taint;manual",
-        "org.apache.commons.text;StrBuilder;false;appendFixedWidthPadRight;;;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.commons.text;StrBuilder;false;appendFixedWidthPadRight;;;Argument[-1];ReturnValue;value;manual",
-        "org.apache.commons.text;StrBuilder;false;appendFixedWidthPadRight;;;Argument[0];Argument[-1];taint;manual",
-        "org.apache.commons.text;StrBuilder;false;appendln;;;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.commons.text;StrBuilder;false;appendln;;;Argument[-1];ReturnValue;value;manual",
-        "org.apache.commons.text;StrBuilder;false;appendln;(char[],int,int);;Argument[0];Argument[-1];taint;manual",
-        "org.apache.commons.text;StrBuilder;false;appendln;(char[]);;Argument[0];Argument[-1];taint;manual",
-        "org.apache.commons.text;StrBuilder;false;appendln;(java.lang.Object);;Argument[0];Argument[-1];taint;manual",
-        "org.apache.commons.text;StrBuilder;false;appendln;(java.lang.String,int,int);;Argument[0];Argument[-1];taint;manual",
-        "org.apache.commons.text;StrBuilder;false;appendln;(java.lang.String,java.lang.Object[]);;Argument[0];Argument[-1];taint;manual",
-        "org.apache.commons.text;StrBuilder;false;appendln;(java.lang.String,java.lang.Object[]);;Argument[1].ArrayElement;Argument[-1];taint;manual",
-        "org.apache.commons.text;StrBuilder;false;appendln;(java.lang.String);;Argument[0];Argument[-1];taint;manual",
-        "org.apache.commons.text;StrBuilder;false;appendln;(java.lang.StringBuffer,int,int);;Argument[0];Argument[-1];taint;manual",
-        "org.apache.commons.text;StrBuilder;false;appendln;(java.lang.StringBuffer);;Argument[0];Argument[-1];taint;manual",
-        "org.apache.commons.text;StrBuilder;false;appendln;(java.lang.StringBuilder,int,int);;Argument[0];Argument[-1];taint;manual",
-        "org.apache.commons.text;StrBuilder;false;appendln;(java.lang.StringBuilder);;Argument[0];Argument[-1];taint;manual",
-        "org.apache.commons.text;StrBuilder;false;appendln;(org.apache.commons.text.StrBuilder);;Argument[0];Argument[-1];taint;manual",
-        "org.apache.commons.text;StrBuilder;false;appendNewLine;;;Argument[-1];ReturnValue;value;manual",
-        "org.apache.commons.text;StrBuilder;false;appendNull;;;Argument[-1];ReturnValue;value;manual",
-        "org.apache.commons.text;StrBuilder;false;appendPadding;;;Argument[-1];ReturnValue;value;manual",
-        "org.apache.commons.text;StrBuilder;false;appendSeparator;;;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.commons.text;StrBuilder;false;appendSeparator;;;Argument[-1];ReturnValue;value;manual",
-        "org.apache.commons.text;StrBuilder;false;appendSeparator;(java.lang.String,int);;Argument[0];Argument[-1];taint;manual",
-        "org.apache.commons.text;StrBuilder;false;appendSeparator;(java.lang.String,java.lang.String);;Argument[0..1];Argument[-1];taint;manual",
-        "org.apache.commons.text;StrBuilder;false;appendSeparator;(java.lang.String);;Argument[0];Argument[-1];taint;manual",
-        "org.apache.commons.text;StrBuilder;false;appendTo;;;Argument[-1];Argument[0];taint;manual",
-        "org.apache.commons.text;StrBuilder;false;appendWithSeparators;;;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.commons.text;StrBuilder;false;appendWithSeparators;;;Argument[-1];ReturnValue;value;manual",
-        "org.apache.commons.text;StrBuilder;false;appendWithSeparators;;;Argument[1];Argument[-1];taint;manual",
-        "org.apache.commons.text;StrBuilder;false;appendWithSeparators;(Iterable,String);;Argument[0].Element;Argument[-1];taint;manual",
-        "org.apache.commons.text;StrBuilder;false;appendWithSeparators;(Iterator,String);;Argument[0].Element;Argument[-1];taint;manual",
-        "org.apache.commons.text;StrBuilder;false;appendWithSeparators;(Object[],String);;Argument[0].ArrayElement;Argument[-1];taint;manual",
-        "org.apache.commons.text;StrBuilder;false;asReader;;;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.commons.text;StrBuilder;false;asTokenizer;;;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.commons.text;StrBuilder;false;build;;;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.commons.text;StrBuilder;false;delete;;;Argument[-1];ReturnValue;value;manual",
-        "org.apache.commons.text;StrBuilder;false;deleteAll;;;Argument[-1];ReturnValue;value;manual",
-        "org.apache.commons.text;StrBuilder;false;deleteCharAt;;;Argument[-1];ReturnValue;value;manual",
-        "org.apache.commons.text;StrBuilder;false;deleteFirst;;;Argument[-1];ReturnValue;value;manual",
-        "org.apache.commons.text;StrBuilder;false;ensureCapacity;;;Argument[-1];ReturnValue;value;manual",
-        "org.apache.commons.text;StrBuilder;false;getChars;(char[]);;Argument[-1];Argument[0];taint;manual",
-        "org.apache.commons.text;StrBuilder;false;getChars;(char[]);;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.commons.text;StrBuilder;false;getChars;(int,int,char[],int);;Argument[-1];Argument[2];taint;manual",
-        "org.apache.commons.text;StrBuilder;false;insert;;;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.commons.text;StrBuilder;false;insert;;;Argument[-1];ReturnValue;value;manual",
-        "org.apache.commons.text;StrBuilder;false;insert;;;Argument[1];Argument[-1];taint;manual",
-        "org.apache.commons.text;StrBuilder;false;leftString;;;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.commons.text;StrBuilder;false;midString;;;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.commons.text;StrBuilder;false;minimizeCapacity;;;Argument[-1];ReturnValue;value;manual",
-        "org.apache.commons.text;StrBuilder;false;readFrom;;;Argument[0];Argument[-1];taint;manual",
-        "org.apache.commons.text;StrBuilder;false;replace;;;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.commons.text;StrBuilder;false;replace;;;Argument[-1];ReturnValue;value;manual",
-        "org.apache.commons.text;StrBuilder;false;replace;(int,int,java.lang.String);;Argument[2];Argument[-1];taint;manual",
-        "org.apache.commons.text;StrBuilder;false;replace;(org.apache.commons.text.StrMatcher,java.lang.String,int,int,int);;Argument[1];Argument[-1];taint;manual",
-        "org.apache.commons.text;StrBuilder;false;replaceAll;;;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.commons.text;StrBuilder;false;replaceAll;;;Argument[-1];ReturnValue;value;manual",
-        "org.apache.commons.text;StrBuilder;false;replaceAll;;;Argument[1];Argument[-1];taint;manual",
-        "org.apache.commons.text;StrBuilder;false;replaceFirst;;;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.commons.text;StrBuilder;false;replaceFirst;;;Argument[-1];ReturnValue;value;manual",
-        "org.apache.commons.text;StrBuilder;false;replaceFirst;;;Argument[1];Argument[-1];taint;manual",
-        "org.apache.commons.text;StrBuilder;false;reverse;;;Argument[-1];ReturnValue;value;manual",
-        "org.apache.commons.text;StrBuilder;false;rightString;;;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.commons.text;StrBuilder;false;setCharAt;;;Argument[-1];ReturnValue;value;manual",
-        "org.apache.commons.text;StrBuilder;false;setLength;;;Argument[-1];ReturnValue;value;manual",
-        "org.apache.commons.text;StrBuilder;false;setNewLineText;;;Argument[-1];ReturnValue;value;manual",
-        "org.apache.commons.text;StrBuilder;false;setNullText;;;Argument[-1];ReturnValue;value;manual",
-        "org.apache.commons.text;StrBuilder;false;StrBuilder;(java.lang.String);;Argument[0];Argument[-1];taint;manual",
-        "org.apache.commons.text;StrBuilder;false;subSequence;;;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.commons.text;StrBuilder;false;substring;;;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.commons.text;StrBuilder;false;toCharArray;;;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.commons.text;StrBuilder;false;toString;;;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.commons.text;StrBuilder;false;toStringBuffer;;;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.commons.text;StrBuilder;false;toStringBuilder;;;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.commons.text;StrBuilder;false;trim;;;Argument[-1];ReturnValue;value;manual",
-        "org.apache.commons.text;StringSubstitutor;false;replace;;;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.commons.text;StringSubstitutor;false;replace;(char[],int,int);;Argument[0];ReturnValue;taint;manual",
-        "org.apache.commons.text;StringSubstitutor;false;replace;(char[]);;Argument[0];ReturnValue;taint;manual",
-        "org.apache.commons.text;StringSubstitutor;false;replace;(java.lang.CharSequence,int,int);;Argument[0];ReturnValue;taint;manual",
-        "org.apache.commons.text;StringSubstitutor;false;replace;(java.lang.CharSequence);;Argument[0];ReturnValue;taint;manual",
-        "org.apache.commons.text;StringSubstitutor;false;replace;(java.lang.Object,java.util.Map,java.lang.String,java.lang.String);;Argument[0];ReturnValue;taint;manual",
-        "org.apache.commons.text;StringSubstitutor;false;replace;(java.lang.Object,java.util.Map,java.lang.String,java.lang.String);;Argument[1].MapValue;ReturnValue;taint;manual",
-        "org.apache.commons.text;StringSubstitutor;false;replace;(java.lang.Object,java.util.Map);;Argument[0];ReturnValue;taint;manual",
-        "org.apache.commons.text;StringSubstitutor;false;replace;(java.lang.Object,java.util.Map);;Argument[1].MapValue;ReturnValue;taint;manual",
-        "org.apache.commons.text;StringSubstitutor;false;replace;(java.lang.Object,java.util.Properties);;Argument[0];ReturnValue;taint;manual",
-        "org.apache.commons.text;StringSubstitutor;false;replace;(java.lang.Object,java.util.Properties);;Argument[1].MapValue;ReturnValue;taint;manual",
-        "org.apache.commons.text;StringSubstitutor;false;replace;(java.lang.Object);;Argument[0];ReturnValue;taint;manual",
-        "org.apache.commons.text;StringSubstitutor;false;replace;(java.lang.String,int,int);;Argument[0];ReturnValue;taint;manual",
-        "org.apache.commons.text;StringSubstitutor;false;replace;(java.lang.String);;Argument[0];ReturnValue;taint;manual",
-        "org.apache.commons.text;StringSubstitutor;false;replace;(java.lang.StringBuffer,int,int);;Argument[0];ReturnValue;taint;manual",
-        "org.apache.commons.text;StringSubstitutor;false;replace;(java.lang.StringBuffer);;Argument[0];ReturnValue;taint;manual",
-        "org.apache.commons.text;StringSubstitutor;false;replace;(org.apache.commons.text.TextStringBuilder,int,int);;Argument[0];ReturnValue;taint;manual",
-        "org.apache.commons.text;StringSubstitutor;false;replace;(org.apache.commons.text.TextStringBuilder);;Argument[0];ReturnValue;taint;manual",
-        "org.apache.commons.text;StringSubstitutor;false;replaceIn;(java.lang.StringBuffer,int,int);;Argument[-1];Argument[0];taint;manual",
-        "org.apache.commons.text;StringSubstitutor;false;replaceIn;(java.lang.StringBuffer);;Argument[-1];Argument[0];taint;manual",
-        "org.apache.commons.text;StringSubstitutor;false;replaceIn;(java.lang.StringBuilder,int,int);;Argument[-1];Argument[0];taint;manual",
-        "org.apache.commons.text;StringSubstitutor;false;replaceIn;(java.lang.StringBuilder);;Argument[-1];Argument[0];taint;manual",
-        "org.apache.commons.text;StringSubstitutor;false;replaceIn;(org.apache.commons.text.TextStringBuilder,int,int);;Argument[-1];Argument[0];taint;manual",
-        "org.apache.commons.text;StringSubstitutor;false;replaceIn;(org.apache.commons.text.TextStringBuilder);;Argument[-1];Argument[0];taint;manual",
-        "org.apache.commons.text;StringSubstitutor;false;setVariableResolver;;;Argument[0];Argument[-1];taint;manual",
-        "org.apache.commons.text;StringSubstitutor;false;StringSubstitutor;;;Argument[0];Argument[-1];taint;manual",
-        "org.apache.commons.text;StringSubstitutor;false;StringSubstitutor;;;Argument[0].MapValue;Argument[-1];taint;manual",
-        "org.apache.commons.text;StringTokenizer;false;clone;;;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.commons.text;StringTokenizer;false;getContent;;;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.commons.text;StringTokenizer;false;getCSVInstance;;;Argument[0];ReturnValue;taint;manual",
-        "org.apache.commons.text;StringTokenizer;false;getTokenArray;;;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.commons.text;StringTokenizer;false;getTokenList;;;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.commons.text;StringTokenizer;false;getTSVInstance;;;Argument[0];ReturnValue;taint;manual",
-        "org.apache.commons.text;StringTokenizer;false;next;;;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.commons.text;StringTokenizer;false;nextToken;;;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.commons.text;StringTokenizer;false;previous;;;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.commons.text;StringTokenizer;false;previousToken;;;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.commons.text;StringTokenizer;false;reset;;;Argument[0];Argument[-1];taint;manual",
-        "org.apache.commons.text;StringTokenizer;false;reset;;;Argument[0];ReturnValue;taint;manual",
-        "org.apache.commons.text;StringTokenizer;false;StringTokenizer;;;Argument[0];Argument[-1];taint;manual",
-        "org.apache.commons.text;StringTokenizer;false;toString;;;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.commons.text;StrTokenizer;false;clone;;;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.commons.text;StrTokenizer;false;getContent;;;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.commons.text;StrTokenizer;false;getCSVInstance;;;Argument[0];ReturnValue;taint;manual",
-        "org.apache.commons.text;StrTokenizer;false;getTokenArray;;;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.commons.text;StrTokenizer;false;getTokenList;;;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.commons.text;StrTokenizer;false;getTSVInstance;;;Argument[0];ReturnValue;taint;manual",
-        "org.apache.commons.text;StrTokenizer;false;next;;;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.commons.text;StrTokenizer;false;nextToken;;;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.commons.text;StrTokenizer;false;previous;;;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.commons.text;StrTokenizer;false;previousToken;;;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.commons.text;StrTokenizer;false;reset;;;Argument[0];Argument[-1];taint;manual",
-        "org.apache.commons.text;StrTokenizer;false;reset;;;Argument[0];ReturnValue;taint;manual",
-        "org.apache.commons.text;StrTokenizer;false;StrTokenizer;;;Argument[0];Argument[-1];taint;manual",
-        "org.apache.commons.text;StrTokenizer;false;toString;;;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.commons.text;TextStringBuilder;false;append;;;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.commons.text;TextStringBuilder;false;append;;;Argument[-1];ReturnValue;value;manual",
-        "org.apache.commons.text;TextStringBuilder;false;append;(char[],int,int);;Argument[0];Argument[-1];taint;manual",
-        "org.apache.commons.text;TextStringBuilder;false;append;(char[]);;Argument[0];Argument[-1];taint;manual",
-        "org.apache.commons.text;TextStringBuilder;false;append;(java.lang.CharSequence,int,int);;Argument[0];Argument[-1];taint;manual",
-        "org.apache.commons.text;TextStringBuilder;false;append;(java.lang.CharSequence);;Argument[0];Argument[-1];taint;manual",
-        "org.apache.commons.text;TextStringBuilder;false;append;(java.lang.Object);;Argument[0];Argument[-1];taint;manual",
-        "org.apache.commons.text;TextStringBuilder;false;append;(java.lang.String,int,int);;Argument[0];Argument[-1];taint;manual",
-        "org.apache.commons.text;TextStringBuilder;false;append;(java.lang.String,java.lang.Object[]);;Argument[0];Argument[-1];taint;manual",
-        "org.apache.commons.text;TextStringBuilder;false;append;(java.lang.String,java.lang.Object[]);;Argument[1].ArrayElement;Argument[-1];taint;manual",
-        "org.apache.commons.text;TextStringBuilder;false;append;(java.lang.String);;Argument[0];Argument[-1];taint;manual",
-        "org.apache.commons.text;TextStringBuilder;false;append;(java.lang.StringBuffer,int,int);;Argument[0];Argument[-1];taint;manual",
-        "org.apache.commons.text;TextStringBuilder;false;append;(java.lang.StringBuffer);;Argument[0];Argument[-1];taint;manual",
-        "org.apache.commons.text;TextStringBuilder;false;append;(java.lang.StringBuilder,int,int);;Argument[0];Argument[-1];taint;manual",
-        "org.apache.commons.text;TextStringBuilder;false;append;(java.lang.StringBuilder);;Argument[0];Argument[-1];taint;manual",
-        "org.apache.commons.text;TextStringBuilder;false;append;(java.nio.CharBuffer,int,int);;Argument[0];Argument[-1];taint;manual",
-        "org.apache.commons.text;TextStringBuilder;false;append;(java.nio.CharBuffer);;Argument[0];Argument[-1];taint;manual",
-        "org.apache.commons.text;TextStringBuilder;false;append;(org.apache.commons.text.TextStringBuilder);;Argument[0];Argument[-1];taint;manual",
-        "org.apache.commons.text;TextStringBuilder;false;appendAll;;;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.commons.text;TextStringBuilder;false;appendAll;;;Argument[-1];ReturnValue;value;manual",
-        "org.apache.commons.text;TextStringBuilder;false;appendAll;(Iterable);;Argument[0].Element;Argument[-1];taint;manual",
-        "org.apache.commons.text;TextStringBuilder;false;appendAll;(Iterator);;Argument[0].Element;Argument[-1];taint;manual",
-        "org.apache.commons.text;TextStringBuilder;false;appendAll;(Object[]);;Argument[0].ArrayElement;Argument[-1];taint;manual",
-        "org.apache.commons.text;TextStringBuilder;false;appendFixedWidthPadLeft;;;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.commons.text;TextStringBuilder;false;appendFixedWidthPadLeft;;;Argument[-1];ReturnValue;value;manual",
-        "org.apache.commons.text;TextStringBuilder;false;appendFixedWidthPadLeft;;;Argument[0];Argument[-1];taint;manual",
-        "org.apache.commons.text;TextStringBuilder;false;appendFixedWidthPadRight;;;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.commons.text;TextStringBuilder;false;appendFixedWidthPadRight;;;Argument[-1];ReturnValue;value;manual",
-        "org.apache.commons.text;TextStringBuilder;false;appendFixedWidthPadRight;;;Argument[0];Argument[-1];taint;manual",
-        "org.apache.commons.text;TextStringBuilder;false;appendln;;;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.commons.text;TextStringBuilder;false;appendln;;;Argument[-1];ReturnValue;value;manual",
-        "org.apache.commons.text;TextStringBuilder;false;appendln;(char[],int,int);;Argument[0];Argument[-1];taint;manual",
-        "org.apache.commons.text;TextStringBuilder;false;appendln;(char[]);;Argument[0];Argument[-1];taint;manual",
-        "org.apache.commons.text;TextStringBuilder;false;appendln;(java.lang.Object);;Argument[0];Argument[-1];taint;manual",
-        "org.apache.commons.text;TextStringBuilder;false;appendln;(java.lang.String,int,int);;Argument[0];Argument[-1];taint;manual",
-        "org.apache.commons.text;TextStringBuilder;false;appendln;(java.lang.String,java.lang.Object[]);;Argument[0];Argument[-1];taint;manual",
-        "org.apache.commons.text;TextStringBuilder;false;appendln;(java.lang.String,java.lang.Object[]);;Argument[1].ArrayElement;Argument[-1];taint;manual",
-        "org.apache.commons.text;TextStringBuilder;false;appendln;(java.lang.String);;Argument[0];Argument[-1];taint;manual",
-        "org.apache.commons.text;TextStringBuilder;false;appendln;(java.lang.StringBuffer,int,int);;Argument[0];Argument[-1];taint;manual",
-        "org.apache.commons.text;TextStringBuilder;false;appendln;(java.lang.StringBuffer);;Argument[0];Argument[-1];taint;manual",
-        "org.apache.commons.text;TextStringBuilder;false;appendln;(java.lang.StringBuilder,int,int);;Argument[0];Argument[-1];taint;manual",
-        "org.apache.commons.text;TextStringBuilder;false;appendln;(java.lang.StringBuilder);;Argument[0];Argument[-1];taint;manual",
-        "org.apache.commons.text;TextStringBuilder;false;appendln;(org.apache.commons.text.TextStringBuilder);;Argument[0];Argument[-1];taint;manual",
-        "org.apache.commons.text;TextStringBuilder;false;appendNewLine;;;Argument[-1];ReturnValue;value;manual",
-        "org.apache.commons.text;TextStringBuilder;false;appendNull;;;Argument[-1];ReturnValue;value;manual",
-        "org.apache.commons.text;TextStringBuilder;false;appendPadding;;;Argument[-1];ReturnValue;value;manual",
-        "org.apache.commons.text;TextStringBuilder;false;appendSeparator;;;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.commons.text;TextStringBuilder;false;appendSeparator;;;Argument[-1];ReturnValue;value;manual",
-        "org.apache.commons.text;TextStringBuilder;false;appendSeparator;(java.lang.String,int);;Argument[0];Argument[-1];taint;manual",
-        "org.apache.commons.text;TextStringBuilder;false;appendSeparator;(java.lang.String,java.lang.String);;Argument[0..1];Argument[-1];taint;manual",
-        "org.apache.commons.text;TextStringBuilder;false;appendSeparator;(java.lang.String);;Argument[0];Argument[-1];taint;manual",
-        "org.apache.commons.text;TextStringBuilder;false;appendTo;;;Argument[-1];Argument[0];taint;manual",
-        "org.apache.commons.text;TextStringBuilder;false;appendWithSeparators;;;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.commons.text;TextStringBuilder;false;appendWithSeparators;;;Argument[-1];ReturnValue;value;manual",
-        "org.apache.commons.text;TextStringBuilder;false;appendWithSeparators;;;Argument[1];Argument[-1];taint;manual",
-        "org.apache.commons.text;TextStringBuilder;false;appendWithSeparators;(Iterable,String);;Argument[0].Element;Argument[-1];taint;manual",
-        "org.apache.commons.text;TextStringBuilder;false;appendWithSeparators;(Iterator,String);;Argument[0].Element;Argument[-1];taint;manual",
-        "org.apache.commons.text;TextStringBuilder;false;appendWithSeparators;(Object[],String);;Argument[0].ArrayElement;Argument[-1];taint;manual",
-        "org.apache.commons.text;TextStringBuilder;false;asReader;;;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.commons.text;TextStringBuilder;false;asTokenizer;;;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.commons.text;TextStringBuilder;false;build;;;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.commons.text;TextStringBuilder;false;delete;;;Argument[-1];ReturnValue;value;manual",
-        "org.apache.commons.text;TextStringBuilder;false;deleteAll;;;Argument[-1];ReturnValue;value;manual",
-        "org.apache.commons.text;TextStringBuilder;false;deleteCharAt;;;Argument[-1];ReturnValue;value;manual",
-        "org.apache.commons.text;TextStringBuilder;false;deleteFirst;;;Argument[-1];ReturnValue;value;manual",
-        "org.apache.commons.text;TextStringBuilder;false;ensureCapacity;;;Argument[-1];ReturnValue;value;manual",
-        "org.apache.commons.text;TextStringBuilder;false;getChars;(char[]);;Argument[-1];Argument[0];taint;manual",
-        "org.apache.commons.text;TextStringBuilder;false;getChars;(char[]);;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.commons.text;TextStringBuilder;false;getChars;(int,int,char[],int);;Argument[-1];Argument[2];taint;manual",
-        "org.apache.commons.text;TextStringBuilder;false;insert;;;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.commons.text;TextStringBuilder;false;insert;;;Argument[-1];ReturnValue;value;manual",
-        "org.apache.commons.text;TextStringBuilder;false;insert;;;Argument[1];Argument[-1];taint;manual",
-        "org.apache.commons.text;TextStringBuilder;false;leftString;;;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.commons.text;TextStringBuilder;false;midString;;;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.commons.text;TextStringBuilder;false;minimizeCapacity;;;Argument[-1];ReturnValue;value;manual",
-        "org.apache.commons.text;TextStringBuilder;false;readFrom;;;Argument[0];Argument[-1];taint;manual",
-        "org.apache.commons.text;TextStringBuilder;false;replace;;;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.commons.text;TextStringBuilder;false;replace;;;Argument[-1];ReturnValue;value;manual",
-        "org.apache.commons.text;TextStringBuilder;false;replace;(int,int,java.lang.String);;Argument[2];Argument[-1];taint;manual",
-        "org.apache.commons.text;TextStringBuilder;false;replace;(org.apache.commons.text.matcher.StringMatcher,java.lang.String,int,int,int);;Argument[1];Argument[-1];taint;manual",
-        "org.apache.commons.text;TextStringBuilder;false;replaceAll;;;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.commons.text;TextStringBuilder;false;replaceAll;;;Argument[-1];ReturnValue;value;manual",
-        "org.apache.commons.text;TextStringBuilder;false;replaceAll;;;Argument[1];Argument[-1];taint;manual",
-        "org.apache.commons.text;TextStringBuilder;false;replaceFirst;;;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.commons.text;TextStringBuilder;false;replaceFirst;;;Argument[-1];ReturnValue;value;manual",
-        "org.apache.commons.text;TextStringBuilder;false;replaceFirst;;;Argument[1];Argument[-1];taint;manual",
-        "org.apache.commons.text;TextStringBuilder;false;reverse;;;Argument[-1];ReturnValue;value;manual",
-        "org.apache.commons.text;TextStringBuilder;false;rightString;;;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.commons.text;TextStringBuilder;false;setCharAt;;;Argument[-1];ReturnValue;value;manual",
-        "org.apache.commons.text;TextStringBuilder;false;setLength;;;Argument[-1];ReturnValue;value;manual",
-        "org.apache.commons.text;TextStringBuilder;false;setNewLineText;;;Argument[-1];ReturnValue;value;manual",
-        "org.apache.commons.text;TextStringBuilder;false;setNullText;;;Argument[-1];ReturnValue;value;manual",
-        "org.apache.commons.text;TextStringBuilder;false;subSequence;;;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.commons.text;TextStringBuilder;false;substring;;;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.commons.text;TextStringBuilder;false;TextStringBuilder;(java.lang.CharSequence);;Argument[0];Argument[-1];taint;manual",
-        "org.apache.commons.text;TextStringBuilder;false;TextStringBuilder;(java.lang.String);;Argument[0];Argument[-1];taint;manual",
-        "org.apache.commons.text;TextStringBuilder;false;toCharArray;;;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.commons.text;TextStringBuilder;false;toString;;;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.commons.text;TextStringBuilder;false;toStringBuffer;;;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.commons.text;TextStringBuilder;false;toStringBuilder;;;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.commons.text;TextStringBuilder;false;trim;;;Argument[-1];ReturnValue;value;manual",
-        "org.apache.commons.text;WordUtils;false;abbreviate;;;Argument[0];ReturnValue;taint;manual",
-        "org.apache.commons.text;WordUtils;false;abbreviate;;;Argument[3];ReturnValue;taint;manual",
-        "org.apache.commons.text;WordUtils;false;capitalize;(java.lang.String,char[]);;Argument[0];ReturnValue;taint;manual",
-        "org.apache.commons.text;WordUtils;false;capitalize;(java.lang.String);;Argument[0];ReturnValue;taint;manual",
-        "org.apache.commons.text;WordUtils;false;capitalizeFully;(java.lang.String,char[]);;Argument[0];ReturnValue;taint;manual",
-        "org.apache.commons.text;WordUtils;false;capitalizeFully;(java.lang.String);;Argument[0];ReturnValue;taint;manual",
-        "org.apache.commons.text;WordUtils;false;initials;(java.lang.String,char[]);;Argument[0];ReturnValue;taint;manual",
-        "org.apache.commons.text;WordUtils;false;initials;(java.lang.String);;Argument[0];ReturnValue;taint;manual",
-        "org.apache.commons.text;WordUtils;false;swapCase;;;Argument[0];ReturnValue;taint;manual",
-        "org.apache.commons.text;WordUtils;false;uncapitalize;(java.lang.String,char[]);;Argument[0];ReturnValue;taint;manual",
-        "org.apache.commons.text;WordUtils;false;uncapitalize;(java.lang.String);;Argument[0];ReturnValue;taint;manual",
-        "org.apache.commons.text;WordUtils;false;wrap;;;Argument[0];ReturnValue;taint;manual",
-        "org.apache.commons.text;WordUtils;false;wrap;(java.lang.String,int,java.lang.String,boolean,java.lang.String);;Argument[2];ReturnValue;taint;manual",
-        "org.apache.commons.text;WordUtils;false;wrap;(java.lang.String,int,java.lang.String,boolean);;Argument[2];ReturnValue;taint;manual",
-        "org.apache.commons.text.lookup;StringLookup;true;lookup;;;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.commons.text.lookup;StringLookupFactory;false;mapStringLookup;;;Argument[0].MapValue;ReturnValue;taint;manual",
-      ]
-  }
-}
diff --git a/java/ql/lib/semmle/code/java/frameworks/apache/Lang3Generated.qll b/java/ql/lib/semmle/code/java/frameworks/apache/Lang3Generated.qll
deleted file mode 100644
index 532bb20619e..00000000000
--- a/java/ql/lib/semmle/code/java/frameworks/apache/Lang3Generated.qll
+++ /dev/null
@@ -1,436 +0,0 @@
-/** Definitions related to the Apache Commons Lang 3 library. */
-
-import java
-private import semmle.code.java.dataflow.ExternalFlow
-
-private class ApacheCommonsLang3Model extends SummaryModelCsv {
-  override predicate row(string row) {
-    row =
-      [
-        "org.apache.commons.lang3;ArrayUtils;false;add;;;Argument[2];ReturnValue.ArrayElement;value;manual",
-        "org.apache.commons.lang3;ArrayUtils;false;add;;;Argument[0].ArrayElement;ReturnValue.ArrayElement;value;manual",
-        "org.apache.commons.lang3;ArrayUtils;false;add;(boolean[],boolean);;Argument[1];ReturnValue.ArrayElement;value;manual",
-        "org.apache.commons.lang3;ArrayUtils;false;add;(byte[],byte);;Argument[1];ReturnValue.ArrayElement;value;manual",
-        "org.apache.commons.lang3;ArrayUtils;false;add;(char[],char);;Argument[1];ReturnValue.ArrayElement;value;manual",
-        "org.apache.commons.lang3;ArrayUtils;false;add;(double[],double);;Argument[1];ReturnValue.ArrayElement;value;manual",
-        "org.apache.commons.lang3;ArrayUtils;false;add;(float[],float);;Argument[1];ReturnValue.ArrayElement;value;manual",
-        "org.apache.commons.lang3;ArrayUtils;false;add;(int[],int);;Argument[1];ReturnValue.ArrayElement;value;manual",
-        "org.apache.commons.lang3;ArrayUtils;false;add;(java.lang.Object[],java.lang.Object);;Argument[1];ReturnValue.ArrayElement;value;manual",
-        "org.apache.commons.lang3;ArrayUtils;false;add;(long[],long);;Argument[1];ReturnValue.ArrayElement;value;manual",
-        "org.apache.commons.lang3;ArrayUtils;false;add;(short[],short);;Argument[1];ReturnValue.ArrayElement;value;manual",
-        "org.apache.commons.lang3;ArrayUtils;false;addAll;;;Argument[0..1].ArrayElement;ReturnValue.ArrayElement;value;manual",
-        "org.apache.commons.lang3;ArrayUtils;false;addFirst;;;Argument[1];ReturnValue.ArrayElement;value;manual",
-        "org.apache.commons.lang3;ArrayUtils;false;addFirst;;;Argument[0].ArrayElement;ReturnValue.ArrayElement;value;manual",
-        "org.apache.commons.lang3;ArrayUtils;false;clone;;;Argument[0].ArrayElement;ReturnValue.ArrayElement;value;manual",
-        "org.apache.commons.lang3;ArrayUtils;false;get;;;Argument[0].ArrayElement;ReturnValue;value;manual",
-        "org.apache.commons.lang3;ArrayUtils;false;get;(java.lang.Object[],int,java.lang.Object);;Argument[2];ReturnValue;value;manual",
-        "org.apache.commons.lang3;ArrayUtils;false;insert;;;Argument[1..2].ArrayElement;ReturnValue.ArrayElement;value;manual",
-        "org.apache.commons.lang3;ArrayUtils;false;nullToEmpty;(java.lang.Object[],java.lang.Class);;Argument[0];ReturnValue;value;manual",
-        "org.apache.commons.lang3;ArrayUtils;false;nullToEmpty;(java.lang.String[]);;Argument[0];ReturnValue;value;manual",
-        "org.apache.commons.lang3;ArrayUtils;false;remove;;;Argument[0].ArrayElement;ReturnValue.ArrayElement;value;manual",
-        "org.apache.commons.lang3;ArrayUtils;false;removeAll;;;Argument[0].ArrayElement;ReturnValue.ArrayElement;value;manual",
-        "org.apache.commons.lang3;ArrayUtils;false;removeAllOccurences;;;Argument[0].ArrayElement;ReturnValue.ArrayElement;value;manual",
-        "org.apache.commons.lang3;ArrayUtils;false;removeAllOccurrences;;;Argument[0].ArrayElement;ReturnValue.ArrayElement;value;manual",
-        "org.apache.commons.lang3;ArrayUtils;false;removeElement;;;Argument[0].ArrayElement;ReturnValue.ArrayElement;value;manual",
-        "org.apache.commons.lang3;ArrayUtils;false;removeElements;;;Argument[0].ArrayElement;ReturnValue.ArrayElement;value;manual",
-        "org.apache.commons.lang3;ArrayUtils;false;subarray;;;Argument[0].ArrayElement;ReturnValue.ArrayElement;value;manual",
-        "org.apache.commons.lang3;ArrayUtils;false;toArray;;;Argument[0].ArrayElement;ReturnValue.ArrayElement;value;manual",
-        "org.apache.commons.lang3;ArrayUtils;false;toMap;;;Argument[0].ArrayElement.ArrayElement;ReturnValue.MapKey;value;manual",
-        "org.apache.commons.lang3;ArrayUtils;false;toMap;;;Argument[0].ArrayElement.ArrayElement;ReturnValue.MapValue;value;manual",
-        "org.apache.commons.lang3;ArrayUtils;false;toMap;;;Argument[0].ArrayElement.MapKey;ReturnValue.MapKey;value;manual",
-        "org.apache.commons.lang3;ArrayUtils;false;toMap;;;Argument[0].ArrayElement.MapValue;ReturnValue.MapValue;value;manual",
-        "org.apache.commons.lang3;ArrayUtils;false;toObject;;;Argument[0].ArrayElement;ReturnValue.ArrayElement;value;manual",
-        "org.apache.commons.lang3;ArrayUtils;false;toPrimitive;;;Argument[1];ReturnValue.ArrayElement;value;manual",
-        "org.apache.commons.lang3;ArrayUtils;false;toPrimitive;;;Argument[0].ArrayElement;ReturnValue.ArrayElement;value;manual",
-        "org.apache.commons.lang3;ObjectUtils;false;clone;;;Argument[0];ReturnValue;value;manual",
-        "org.apache.commons.lang3;ObjectUtils;false;cloneIfPossible;;;Argument[0];ReturnValue;value;manual",
-        "org.apache.commons.lang3;ObjectUtils;false;CONST_BYTE;;;Argument[0];ReturnValue;value;manual",
-        "org.apache.commons.lang3;ObjectUtils;false;CONST_SHORT;;;Argument[0];ReturnValue;value;manual",
-        "org.apache.commons.lang3;ObjectUtils;false;CONST;;;Argument[0];ReturnValue;value;manual",
-        "org.apache.commons.lang3;ObjectUtils;false;defaultIfNull;;;Argument[0..1];ReturnValue;value;manual",
-        "org.apache.commons.lang3;ObjectUtils;false;firstNonNull;;;Argument[0].ArrayElement;ReturnValue;value;manual",
-        "org.apache.commons.lang3;ObjectUtils;false;getIfNull;;;Argument[0];ReturnValue;value;manual",
-        "org.apache.commons.lang3;ObjectUtils;false;max;;;Argument[0].ArrayElement;ReturnValue;value;manual",
-        "org.apache.commons.lang3;ObjectUtils;false;median;;;Argument[0].ArrayElement;ReturnValue;value;manual",
-        "org.apache.commons.lang3;ObjectUtils;false;min;;;Argument[0].ArrayElement;ReturnValue;value;manual",
-        "org.apache.commons.lang3;ObjectUtils;false;mode;;;Argument[0].ArrayElement;ReturnValue;value;manual",
-        "org.apache.commons.lang3;ObjectUtils;false;requireNonEmpty;;;Argument[0];ReturnValue;value;manual",
-        "org.apache.commons.lang3;ObjectUtils;false;toString;(Object,String);;Argument[1];ReturnValue;value;manual",
-        "org.apache.commons.lang3;RegExUtils;false;removeAll;;;Argument[0];ReturnValue;taint;manual",
-        "org.apache.commons.lang3;RegExUtils;false;removeFirst;;;Argument[0];ReturnValue;taint;manual",
-        "org.apache.commons.lang3;RegExUtils;false;removePattern;;;Argument[0];ReturnValue;taint;manual",
-        "org.apache.commons.lang3;RegExUtils;false;replaceAll;;;Argument[0];ReturnValue;taint;manual",
-        "org.apache.commons.lang3;RegExUtils;false;replaceAll;;;Argument[2];ReturnValue;taint;manual",
-        "org.apache.commons.lang3;RegExUtils;false;replaceFirst;;;Argument[0];ReturnValue;taint;manual",
-        "org.apache.commons.lang3;RegExUtils;false;replaceFirst;;;Argument[2];ReturnValue;taint;manual",
-        "org.apache.commons.lang3;RegExUtils;false;replacePattern;;;Argument[0];ReturnValue;taint;manual",
-        "org.apache.commons.lang3;RegExUtils;false;replacePattern;;;Argument[2];ReturnValue;taint;manual",
-        "org.apache.commons.lang3;StringEscapeUtils;false;escapeJson;;;Argument[0];ReturnValue;taint;manual",
-        "org.apache.commons.lang3;StringUtils;false;abbreviate;;;Argument[0];ReturnValue;taint;manual",
-        "org.apache.commons.lang3;StringUtils;false;abbreviate;(java.lang.String,java.lang.String,int,int);;Argument[1];ReturnValue;taint;manual",
-        "org.apache.commons.lang3;StringUtils;false;abbreviate;(java.lang.String,java.lang.String,int);;Argument[1];ReturnValue;taint;manual",
-        "org.apache.commons.lang3;StringUtils;false;abbreviateMiddle;;;Argument[0];ReturnValue;taint;manual",
-        "org.apache.commons.lang3;StringUtils;false;abbreviateMiddle;;;Argument[1];ReturnValue;taint;manual",
-        "org.apache.commons.lang3;StringUtils;false;appendIfMissing;;;Argument[0];ReturnValue;taint;manual",
-        "org.apache.commons.lang3;StringUtils;false;appendIfMissing;;;Argument[1];ReturnValue;taint;manual",
-        "org.apache.commons.lang3;StringUtils;false;appendIfMissingIgnoreCase;;;Argument[0];ReturnValue;taint;manual",
-        "org.apache.commons.lang3;StringUtils;false;appendIfMissingIgnoreCase;;;Argument[1];ReturnValue;taint;manual",
-        "org.apache.commons.lang3;StringUtils;false;capitalize;;;Argument[0];ReturnValue;taint;manual",
-        "org.apache.commons.lang3;StringUtils;false;center;;;Argument[0];ReturnValue;taint;manual",
-        "org.apache.commons.lang3;StringUtils;false;center;(java.lang.String,int,java.lang.String);;Argument[2];ReturnValue;taint;manual",
-        "org.apache.commons.lang3;StringUtils;false;chomp;(java.lang.String,java.lang.String);;Argument[0];ReturnValue;taint;manual",
-        "org.apache.commons.lang3;StringUtils;false;chomp;(java.lang.String);;Argument[0];ReturnValue;taint;manual",
-        "org.apache.commons.lang3;StringUtils;false;chop;;;Argument[0];ReturnValue;taint;manual",
-        "org.apache.commons.lang3;StringUtils;false;defaultIfBlank;;;Argument[0..1];ReturnValue;taint;manual",
-        "org.apache.commons.lang3;StringUtils;false;defaultIfEmpty;;;Argument[0..1];ReturnValue;taint;manual",
-        "org.apache.commons.lang3;StringUtils;false;defaultString;;;Argument[0..1];ReturnValue;taint;manual",
-        "org.apache.commons.lang3;StringUtils;false;deleteWhitespace;;;Argument[0];ReturnValue;taint;manual",
-        "org.apache.commons.lang3;StringUtils;false;difference;;;Argument[0..1];ReturnValue;taint;manual",
-        "org.apache.commons.lang3;StringUtils;false;firstNonBlank;;;Argument[0].ArrayElement;ReturnValue;value;manual",
-        "org.apache.commons.lang3;StringUtils;false;firstNonEmpty;;;Argument[0].ArrayElement;ReturnValue;value;manual",
-        "org.apache.commons.lang3;StringUtils;false;getBytes;;;Argument[0];ReturnValue;taint;manual",
-        "org.apache.commons.lang3;StringUtils;false;getCommonPrefix;;;Argument[0].ArrayElement;ReturnValue;taint;manual",
-        "org.apache.commons.lang3;StringUtils;false;getDigits;;;Argument[0];ReturnValue;taint;manual",
-        "org.apache.commons.lang3;StringUtils;false;getIfBlank;;;Argument[0..1];ReturnValue;taint;manual",
-        "org.apache.commons.lang3;StringUtils;false;getIfEmpty;;;Argument[0..1];ReturnValue;taint;manual",
-        "org.apache.commons.lang3;StringUtils;false;join;(char[],char,int,int);;Argument[0];ReturnValue;taint;manual",
-        "org.apache.commons.lang3;StringUtils;false;join;(char[],char);;Argument[0];ReturnValue;taint;manual",
-        "org.apache.commons.lang3;StringUtils;false;join;(java.lang.Iterable,char);;Argument[0].Element;ReturnValue;taint;manual",
-        "org.apache.commons.lang3;StringUtils;false;join;(java.lang.Iterable,java.lang.String);;Argument[1];ReturnValue;taint;manual",
-        "org.apache.commons.lang3;StringUtils;false;join;(java.lang.Iterable,java.lang.String);;Argument[0].Element;ReturnValue;taint;manual",
-        "org.apache.commons.lang3;StringUtils;false;join;(java.lang.Object[],char,int,int);;Argument[0].ArrayElement;ReturnValue;taint;manual",
-        "org.apache.commons.lang3;StringUtils;false;join;(java.lang.Object[],char);;Argument[0].ArrayElement;ReturnValue;taint;manual",
-        "org.apache.commons.lang3;StringUtils;false;join;(java.lang.Object[],java.lang.String,int,int);;Argument[1];ReturnValue;taint;manual",
-        "org.apache.commons.lang3;StringUtils;false;join;(java.lang.Object[],java.lang.String,int,int);;Argument[0].ArrayElement;ReturnValue;taint;manual",
-        "org.apache.commons.lang3;StringUtils;false;join;(java.lang.Object[],java.lang.String);;Argument[1];ReturnValue;taint;manual",
-        "org.apache.commons.lang3;StringUtils;false;join;(java.lang.Object[],java.lang.String);;Argument[0].ArrayElement;ReturnValue;taint;manual",
-        "org.apache.commons.lang3;StringUtils;false;join;(java.lang.Object[]);;Argument[0].ArrayElement;ReturnValue;taint;manual",
-        "org.apache.commons.lang3;StringUtils;false;join;(java.util.Iterator,char);;Argument[0].Element;ReturnValue;taint;manual",
-        "org.apache.commons.lang3;StringUtils;false;join;(java.util.Iterator,java.lang.String);;Argument[1];ReturnValue;taint;manual",
-        "org.apache.commons.lang3;StringUtils;false;join;(java.util.Iterator,java.lang.String);;Argument[0].Element;ReturnValue;taint;manual",
-        "org.apache.commons.lang3;StringUtils;false;join;(java.util.List,char,int,int);;Argument[0].Element;ReturnValue;taint;manual",
-        "org.apache.commons.lang3;StringUtils;false;join;(java.util.List,java.lang.String,int,int);;Argument[1];ReturnValue;taint;manual",
-        "org.apache.commons.lang3;StringUtils;false;join;(java.util.List,java.lang.String,int,int);;Argument[0].Element;ReturnValue;taint;manual",
-        "org.apache.commons.lang3;StringUtils;false;joinWith;;;Argument[0];ReturnValue;taint;manual",
-        "org.apache.commons.lang3;StringUtils;false;joinWith;;;Argument[1].ArrayElement;ReturnValue;taint;manual",
-        "org.apache.commons.lang3;StringUtils;false;left;;;Argument[0];ReturnValue;taint;manual",
-        "org.apache.commons.lang3;StringUtils;false;leftPad;;;Argument[0];ReturnValue;taint;manual",
-        "org.apache.commons.lang3;StringUtils;false;leftPad;(java.lang.String,int,java.lang.String);;Argument[2];ReturnValue;taint;manual",
-        "org.apache.commons.lang3;StringUtils;false;lowerCase;(java.lang.String,java.util.Locale);;Argument[0];ReturnValue;taint;manual",
-        "org.apache.commons.lang3;StringUtils;false;lowerCase;(java.lang.String);;Argument[0];ReturnValue;taint;manual",
-        "org.apache.commons.lang3;StringUtils;false;mid;;;Argument[0];ReturnValue;taint;manual",
-        "org.apache.commons.lang3;StringUtils;false;normalizeSpace;;;Argument[0];ReturnValue;taint;manual",
-        "org.apache.commons.lang3;StringUtils;false;overlay;;;Argument[0];ReturnValue;taint;manual",
-        "org.apache.commons.lang3;StringUtils;false;overlay;;;Argument[1];ReturnValue;taint;manual",
-        "org.apache.commons.lang3;StringUtils;false;prependIfMissing;;;Argument[0];ReturnValue;taint;manual",
-        "org.apache.commons.lang3;StringUtils;false;prependIfMissing;;;Argument[1];ReturnValue;taint;manual",
-        "org.apache.commons.lang3;StringUtils;false;prependIfMissingIgnoreCase;;;Argument[0];ReturnValue;taint;manual",
-        "org.apache.commons.lang3;StringUtils;false;prependIfMissingIgnoreCase;;;Argument[1];ReturnValue;taint;manual",
-        "org.apache.commons.lang3;StringUtils;false;remove;;;Argument[0];ReturnValue;taint;manual",
-        "org.apache.commons.lang3;StringUtils;false;removeAll;;;Argument[0];ReturnValue;taint;manual",
-        "org.apache.commons.lang3;StringUtils;false;removeEnd;;;Argument[0];ReturnValue;taint;manual",
-        "org.apache.commons.lang3;StringUtils;false;removeEndIgnoreCase;;;Argument[0];ReturnValue;taint;manual",
-        "org.apache.commons.lang3;StringUtils;false;removeFirst;;;Argument[0];ReturnValue;taint;manual",
-        "org.apache.commons.lang3;StringUtils;false;removeIgnoreCase;;;Argument[0];ReturnValue;taint;manual",
-        "org.apache.commons.lang3;StringUtils;false;removePattern;;;Argument[0];ReturnValue;taint;manual",
-        "org.apache.commons.lang3;StringUtils;false;removeStart;;;Argument[0];ReturnValue;taint;manual",
-        "org.apache.commons.lang3;StringUtils;false;removeStartIgnoreCase;;;Argument[0];ReturnValue;taint;manual",
-        "org.apache.commons.lang3;StringUtils;false;repeat;;;Argument[0];ReturnValue;taint;manual",
-        "org.apache.commons.lang3;StringUtils;false;repeat;(java.lang.String,java.lang.String,int);;Argument[1];ReturnValue;taint;manual",
-        "org.apache.commons.lang3;StringUtils;false;replace;;;Argument[0];ReturnValue;taint;manual",
-        "org.apache.commons.lang3;StringUtils;false;replace;;;Argument[2];ReturnValue;taint;manual",
-        "org.apache.commons.lang3;StringUtils;false;replaceAll;;;Argument[0];ReturnValue;taint;manual",
-        "org.apache.commons.lang3;StringUtils;false;replaceAll;;;Argument[2];ReturnValue;taint;manual",
-        "org.apache.commons.lang3;StringUtils;false;replaceChars;;;Argument[0];ReturnValue;taint;manual",
-        "org.apache.commons.lang3;StringUtils;false;replaceChars;(java.lang.String,java.lang.String,java.lang.String);;Argument[2];ReturnValue;taint;manual",
-        "org.apache.commons.lang3;StringUtils;false;replaceEach;;;Argument[0];ReturnValue;taint;manual",
-        "org.apache.commons.lang3;StringUtils;false;replaceEach;;;Argument[2].ArrayElement;ReturnValue;taint;manual",
-        "org.apache.commons.lang3;StringUtils;false;replaceEachRepeatedly;;;Argument[0];ReturnValue;taint;manual",
-        "org.apache.commons.lang3;StringUtils;false;replaceEachRepeatedly;;;Argument[2].ArrayElement;ReturnValue;taint;manual",
-        "org.apache.commons.lang3;StringUtils;false;replaceFirst;;;Argument[0];ReturnValue;taint;manual",
-        "org.apache.commons.lang3;StringUtils;false;replaceFirst;;;Argument[2];ReturnValue;taint;manual",
-        "org.apache.commons.lang3;StringUtils;false;replaceIgnoreCase;;;Argument[0];ReturnValue;taint;manual",
-        "org.apache.commons.lang3;StringUtils;false;replaceIgnoreCase;;;Argument[2];ReturnValue;taint;manual",
-        "org.apache.commons.lang3;StringUtils;false;replaceOnce;;;Argument[0];ReturnValue;taint;manual",
-        "org.apache.commons.lang3;StringUtils;false;replaceOnce;;;Argument[2];ReturnValue;taint;manual",
-        "org.apache.commons.lang3;StringUtils;false;replaceOnceIgnoreCase;;;Argument[0];ReturnValue;taint;manual",
-        "org.apache.commons.lang3;StringUtils;false;replaceOnceIgnoreCase;;;Argument[2];ReturnValue;taint;manual",
-        "org.apache.commons.lang3;StringUtils;false;replacePattern;;;Argument[0];ReturnValue;taint;manual",
-        "org.apache.commons.lang3;StringUtils;false;replacePattern;;;Argument[2];ReturnValue;taint;manual",
-        "org.apache.commons.lang3;StringUtils;false;reverse;;;Argument[0];ReturnValue;taint;manual",
-        "org.apache.commons.lang3;StringUtils;false;reverseDelimited;;;Argument[0];ReturnValue;taint;manual",
-        "org.apache.commons.lang3;StringUtils;false;right;;;Argument[0];ReturnValue;taint;manual",
-        "org.apache.commons.lang3;StringUtils;false;rightPad;;;Argument[0];ReturnValue;taint;manual",
-        "org.apache.commons.lang3;StringUtils;false;rightPad;(java.lang.String,int,java.lang.String);;Argument[2];ReturnValue;taint;manual",
-        "org.apache.commons.lang3;StringUtils;false;rotate;;;Argument[0];ReturnValue;taint;manual",
-        "org.apache.commons.lang3;StringUtils;false;split;(java.lang.String,char);;Argument[0];ReturnValue;taint;manual",
-        "org.apache.commons.lang3;StringUtils;false;split;(java.lang.String,java.lang.String,int);;Argument[0];ReturnValue;taint;manual",
-        "org.apache.commons.lang3;StringUtils;false;split;(java.lang.String,java.lang.String);;Argument[0];ReturnValue;taint;manual",
-        "org.apache.commons.lang3;StringUtils;false;split;(java.lang.String);;Argument[0];ReturnValue;taint;manual",
-        "org.apache.commons.lang3;StringUtils;false;splitByCharacterType;;;Argument[0];ReturnValue;taint;manual",
-        "org.apache.commons.lang3;StringUtils;false;splitByCharacterTypeCamelCase;;;Argument[0];ReturnValue;taint;manual",
-        "org.apache.commons.lang3;StringUtils;false;splitByWholeSeparator;;;Argument[0];ReturnValue;taint;manual",
-        "org.apache.commons.lang3;StringUtils;false;splitByWholeSeparatorPreserveAllTokens;;;Argument[0];ReturnValue;taint;manual",
-        "org.apache.commons.lang3;StringUtils;false;splitPreserveAllTokens;(java.lang.String,char);;Argument[0];ReturnValue;taint;manual",
-        "org.apache.commons.lang3;StringUtils;false;splitPreserveAllTokens;(java.lang.String,java.lang.String,int);;Argument[0];ReturnValue;taint;manual",
-        "org.apache.commons.lang3;StringUtils;false;splitPreserveAllTokens;(java.lang.String,java.lang.String);;Argument[0];ReturnValue;taint;manual",
-        "org.apache.commons.lang3;StringUtils;false;splitPreserveAllTokens;(java.lang.String);;Argument[0];ReturnValue;taint;manual",
-        "org.apache.commons.lang3;StringUtils;false;strip;(java.lang.String,java.lang.String);;Argument[0];ReturnValue;taint;manual",
-        "org.apache.commons.lang3;StringUtils;false;strip;(java.lang.String);;Argument[0];ReturnValue;taint;manual",
-        "org.apache.commons.lang3;StringUtils;false;stripAccents;;;Argument[0];ReturnValue;taint;manual",
-        "org.apache.commons.lang3;StringUtils;false;stripAll;;;Argument[0].ArrayElement;ReturnValue.ArrayElement;taint;manual",
-        "org.apache.commons.lang3;StringUtils;false;stripEnd;;;Argument[0];ReturnValue;taint;manual",
-        "org.apache.commons.lang3;StringUtils;false;stripStart;;;Argument[0];ReturnValue;taint;manual",
-        "org.apache.commons.lang3;StringUtils;false;stripToEmpty;;;Argument[0];ReturnValue;taint;manual",
-        "org.apache.commons.lang3;StringUtils;false;stripToNull;;;Argument[0];ReturnValue;taint;manual",
-        "org.apache.commons.lang3;StringUtils;false;substring;;;Argument[0];ReturnValue;taint;manual",
-        "org.apache.commons.lang3;StringUtils;false;substringAfter;;;Argument[0];ReturnValue;taint;manual",
-        "org.apache.commons.lang3;StringUtils;false;substringAfterLast;;;Argument[0];ReturnValue;taint;manual",
-        "org.apache.commons.lang3;StringUtils;false;substringBefore;;;Argument[0];ReturnValue;taint;manual",
-        "org.apache.commons.lang3;StringUtils;false;substringBeforeLast;;;Argument[0];ReturnValue;taint;manual",
-        "org.apache.commons.lang3;StringUtils;false;substringBetween;;;Argument[0];ReturnValue;taint;manual",
-        "org.apache.commons.lang3;StringUtils;false;substringsBetween;;;Argument[0];ReturnValue;taint;manual",
-        "org.apache.commons.lang3;StringUtils;false;swapCase;;;Argument[0];ReturnValue;taint;manual",
-        "org.apache.commons.lang3;StringUtils;false;toCodePoints;;;Argument[0];ReturnValue;taint;manual",
-        "org.apache.commons.lang3;StringUtils;false;toEncodedString;;;Argument[0];ReturnValue;taint;manual",
-        "org.apache.commons.lang3;StringUtils;false;toRootLowerCase;;;Argument[0];ReturnValue;taint;manual",
-        "org.apache.commons.lang3;StringUtils;false;toRootUpperCase;;;Argument[0];ReturnValue;taint;manual",
-        "org.apache.commons.lang3;StringUtils;false;toString;;;Argument[0];ReturnValue;taint;manual",
-        "org.apache.commons.lang3;StringUtils;false;trim;;;Argument[0];ReturnValue;taint;manual",
-        "org.apache.commons.lang3;StringUtils;false;trimToEmpty;;;Argument[0];ReturnValue;taint;manual",
-        "org.apache.commons.lang3;StringUtils;false;trimToNull;;;Argument[0];ReturnValue;taint;manual",
-        "org.apache.commons.lang3;StringUtils;false;truncate;;;Argument[0];ReturnValue;taint;manual",
-        "org.apache.commons.lang3;StringUtils;false;uncapitalize;;;Argument[0];ReturnValue;taint;manual",
-        "org.apache.commons.lang3;StringUtils;false;unwrap;;;Argument[0];ReturnValue;taint;manual",
-        "org.apache.commons.lang3;StringUtils;false;upperCase;(java.lang.String,java.util.Locale);;Argument[0];ReturnValue;taint;manual",
-        "org.apache.commons.lang3;StringUtils;false;upperCase;(java.lang.String);;Argument[0];ReturnValue;taint;manual",
-        "org.apache.commons.lang3;StringUtils;false;valueOf;;;Argument[0];ReturnValue;taint;manual",
-        "org.apache.commons.lang3;StringUtils;false;wrap;(java.lang.String,char);;Argument[0];ReturnValue;taint;manual",
-        "org.apache.commons.lang3;StringUtils;false;wrap;(java.lang.String,java.lang.String);;Argument[0..1];ReturnValue;taint;manual",
-        "org.apache.commons.lang3;StringUtils;false;wrapIfMissing;(java.lang.String,char);;Argument[0];ReturnValue;taint;manual",
-        "org.apache.commons.lang3;StringUtils;false;wrapIfMissing;(java.lang.String,java.lang.String);;Argument[0..1];ReturnValue;taint;manual",
-        "org.apache.commons.lang3.builder;ToStringBuilder;false;append;;;Argument[-1];ReturnValue;value;manual",
-        "org.apache.commons.lang3.builder;ToStringBuilder;false;append;(java.lang.Object);;Argument[0];Argument[-1];taint;manual",
-        "org.apache.commons.lang3.builder;ToStringBuilder;false;append;(java.lang.Object[]);;Argument[0].ArrayElement;Argument[-1];taint;manual",
-        "org.apache.commons.lang3.builder;ToStringBuilder;false;append;(java.lang.String,boolean);;Argument[0];Argument[-1];taint;manual",
-        "org.apache.commons.lang3.builder;ToStringBuilder;false;append;(java.lang.String,java.lang.Object);;Argument[0..1];Argument[-1];taint;manual",
-        "org.apache.commons.lang3.builder;ToStringBuilder;false;append;(java.lang.String,java.lang.Object[],boolean);;Argument[0];Argument[-1];taint;manual",
-        "org.apache.commons.lang3.builder;ToStringBuilder;false;append;(java.lang.String,java.lang.Object[],boolean);;Argument[1].ArrayElement;Argument[-1];taint;manual",
-        "org.apache.commons.lang3.builder;ToStringBuilder;false;append;(java.lang.String,java.lang.Object[]);;Argument[0];Argument[-1];taint;manual",
-        "org.apache.commons.lang3.builder;ToStringBuilder;false;append;(java.lang.String,java.lang.Object[]);;Argument[1].ArrayElement;Argument[-1];taint;manual",
-        "org.apache.commons.lang3.builder;ToStringBuilder;false;appendAsObjectToString;;;Argument[-1];ReturnValue;value;manual",
-        "org.apache.commons.lang3.builder;ToStringBuilder;false;appendSuper;;;Argument[-1];ReturnValue;value;manual",
-        "org.apache.commons.lang3.builder;ToStringBuilder;false;appendSuper;;;Argument[0];Argument[-1];taint;manual",
-        "org.apache.commons.lang3.builder;ToStringBuilder;false;appendToString;;;Argument[-1];ReturnValue;value;manual",
-        "org.apache.commons.lang3.builder;ToStringBuilder;false;appendToString;;;Argument[0];Argument[-1];taint;manual",
-        "org.apache.commons.lang3.builder;ToStringBuilder;false;build;;;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.commons.lang3.builder;ToStringBuilder;false;getStringBuffer;;;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.commons.lang3.builder;ToStringBuilder;false;toString;;;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.commons.lang3.mutable;Mutable;true;getValue;;;Argument[-1].SyntheticField[org.apache.commons.lang3.mutable.MutableObject.value];ReturnValue;value;manual",
-        "org.apache.commons.lang3.mutable;MutableObject;false;MutableObject;;;Argument[0];Argument[-1].SyntheticField[org.apache.commons.lang3.mutable.MutableObject.value];value;manual",
-        "org.apache.commons.lang3.mutable;Mutable;true;setValue;;;Argument[0];Argument[-1].SyntheticField[org.apache.commons.lang3.mutable.MutableObject.value];value;manual",
-        "org.apache.commons.lang3.text;StrBuilder;false;append;;;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.commons.lang3.text;StrBuilder;false;append;;;Argument[-1];ReturnValue;value;manual",
-        "org.apache.commons.lang3.text;StrBuilder;false;append;(char[],int,int);;Argument[0];Argument[-1];taint;manual",
-        "org.apache.commons.lang3.text;StrBuilder;false;append;(char[]);;Argument[0];Argument[-1];taint;manual",
-        "org.apache.commons.lang3.text;StrBuilder;false;append;(java.lang.CharSequence,int,int);;Argument[0];Argument[-1];taint;manual",
-        "org.apache.commons.lang3.text;StrBuilder;false;append;(java.lang.CharSequence);;Argument[0];Argument[-1];taint;manual",
-        "org.apache.commons.lang3.text;StrBuilder;false;append;(java.lang.Object);;Argument[0];Argument[-1];taint;manual",
-        "org.apache.commons.lang3.text;StrBuilder;false;append;(java.lang.String,int,int);;Argument[0];Argument[-1];taint;manual",
-        "org.apache.commons.lang3.text;StrBuilder;false;append;(java.lang.String,java.lang.Object[]);;Argument[0];Argument[-1];taint;manual",
-        "org.apache.commons.lang3.text;StrBuilder;false;append;(java.lang.String,java.lang.Object[]);;Argument[1].ArrayElement;Argument[-1];taint;manual",
-        "org.apache.commons.lang3.text;StrBuilder;false;append;(java.lang.String);;Argument[0];Argument[-1];taint;manual",
-        "org.apache.commons.lang3.text;StrBuilder;false;append;(java.lang.StringBuffer,int,int);;Argument[0];Argument[-1];taint;manual",
-        "org.apache.commons.lang3.text;StrBuilder;false;append;(java.lang.StringBuffer);;Argument[0];Argument[-1];taint;manual",
-        "org.apache.commons.lang3.text;StrBuilder;false;append;(java.lang.StringBuilder,int,int);;Argument[0];Argument[-1];taint;manual",
-        "org.apache.commons.lang3.text;StrBuilder;false;append;(java.lang.StringBuilder);;Argument[0];Argument[-1];taint;manual",
-        "org.apache.commons.lang3.text;StrBuilder;false;append;(java.nio.CharBuffer,int,int);;Argument[0];Argument[-1];taint;manual",
-        "org.apache.commons.lang3.text;StrBuilder;false;append;(java.nio.CharBuffer);;Argument[0];Argument[-1];taint;manual",
-        "org.apache.commons.lang3.text;StrBuilder;false;append;(org.apache.commons.lang3.text.StrBuilder);;Argument[0];Argument[-1];taint;manual",
-        "org.apache.commons.lang3.text;StrBuilder;false;appendAll;;;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.commons.lang3.text;StrBuilder;false;appendAll;;;Argument[-1];ReturnValue;value;manual",
-        "org.apache.commons.lang3.text;StrBuilder;false;appendAll;(Iterable);;Argument[0].Element;Argument[-1];taint;manual",
-        "org.apache.commons.lang3.text;StrBuilder;false;appendAll;(Iterator);;Argument[0].Element;Argument[-1];taint;manual",
-        "org.apache.commons.lang3.text;StrBuilder;false;appendAll;(Object[]);;Argument[0].ArrayElement;Argument[-1];taint;manual",
-        "org.apache.commons.lang3.text;StrBuilder;false;appendFixedWidthPadLeft;;;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.commons.lang3.text;StrBuilder;false;appendFixedWidthPadLeft;;;Argument[-1];ReturnValue;value;manual",
-        "org.apache.commons.lang3.text;StrBuilder;false;appendFixedWidthPadLeft;;;Argument[0];Argument[-1];taint;manual",
-        "org.apache.commons.lang3.text;StrBuilder;false;appendFixedWidthPadRight;;;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.commons.lang3.text;StrBuilder;false;appendFixedWidthPadRight;;;Argument[-1];ReturnValue;value;manual",
-        "org.apache.commons.lang3.text;StrBuilder;false;appendFixedWidthPadRight;;;Argument[0];Argument[-1];taint;manual",
-        "org.apache.commons.lang3.text;StrBuilder;false;appendln;;;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.commons.lang3.text;StrBuilder;false;appendln;;;Argument[-1];ReturnValue;value;manual",
-        "org.apache.commons.lang3.text;StrBuilder;false;appendln;(char[],int,int);;Argument[0];Argument[-1];taint;manual",
-        "org.apache.commons.lang3.text;StrBuilder;false;appendln;(char[]);;Argument[0];Argument[-1];taint;manual",
-        "org.apache.commons.lang3.text;StrBuilder;false;appendln;(java.lang.Object);;Argument[0];Argument[-1];taint;manual",
-        "org.apache.commons.lang3.text;StrBuilder;false;appendln;(java.lang.String,int,int);;Argument[0];Argument[-1];taint;manual",
-        "org.apache.commons.lang3.text;StrBuilder;false;appendln;(java.lang.String,java.lang.Object[]);;Argument[0];Argument[-1];taint;manual",
-        "org.apache.commons.lang3.text;StrBuilder;false;appendln;(java.lang.String,java.lang.Object[]);;Argument[1].ArrayElement;Argument[-1];taint;manual",
-        "org.apache.commons.lang3.text;StrBuilder;false;appendln;(java.lang.String);;Argument[0];Argument[-1];taint;manual",
-        "org.apache.commons.lang3.text;StrBuilder;false;appendln;(java.lang.StringBuffer,int,int);;Argument[0];Argument[-1];taint;manual",
-        "org.apache.commons.lang3.text;StrBuilder;false;appendln;(java.lang.StringBuffer);;Argument[0];Argument[-1];taint;manual",
-        "org.apache.commons.lang3.text;StrBuilder;false;appendln;(java.lang.StringBuilder,int,int);;Argument[0];Argument[-1];taint;manual",
-        "org.apache.commons.lang3.text;StrBuilder;false;appendln;(java.lang.StringBuilder);;Argument[0];Argument[-1];taint;manual",
-        "org.apache.commons.lang3.text;StrBuilder;false;appendln;(org.apache.commons.lang3.text.StrBuilder);;Argument[0];Argument[-1];taint;manual",
-        "org.apache.commons.lang3.text;StrBuilder;false;appendNewLine;;;Argument[-1];ReturnValue;value;manual",
-        "org.apache.commons.lang3.text;StrBuilder;false;appendNull;;;Argument[-1];ReturnValue;value;manual",
-        "org.apache.commons.lang3.text;StrBuilder;false;appendPadding;;;Argument[-1];ReturnValue;value;manual",
-        "org.apache.commons.lang3.text;StrBuilder;false;appendSeparator;;;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.commons.lang3.text;StrBuilder;false;appendSeparator;;;Argument[-1];ReturnValue;value;manual",
-        "org.apache.commons.lang3.text;StrBuilder;false;appendSeparator;(java.lang.String,int);;Argument[0];Argument[-1];taint;manual",
-        "org.apache.commons.lang3.text;StrBuilder;false;appendSeparator;(java.lang.String,java.lang.String);;Argument[0..1];Argument[-1];taint;manual",
-        "org.apache.commons.lang3.text;StrBuilder;false;appendSeparator;(java.lang.String);;Argument[0];Argument[-1];taint;manual",
-        "org.apache.commons.lang3.text;StrBuilder;false;appendTo;;;Argument[-1];Argument[0];taint;manual",
-        "org.apache.commons.lang3.text;StrBuilder;false;appendWithSeparators;;;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.commons.lang3.text;StrBuilder;false;appendWithSeparators;;;Argument[-1];ReturnValue;value;manual",
-        "org.apache.commons.lang3.text;StrBuilder;false;appendWithSeparators;;;Argument[1];Argument[-1];taint;manual",
-        "org.apache.commons.lang3.text;StrBuilder;false;appendWithSeparators;(Iterable,String);;Argument[0].Element;Argument[-1];taint;manual",
-        "org.apache.commons.lang3.text;StrBuilder;false;appendWithSeparators;(Iterator,String);;Argument[0].Element;Argument[-1];taint;manual",
-        "org.apache.commons.lang3.text;StrBuilder;false;appendWithSeparators;(Object[],String);;Argument[0].ArrayElement;Argument[-1];taint;manual",
-        "org.apache.commons.lang3.text;StrBuilder;false;asReader;;;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.commons.lang3.text;StrBuilder;false;asTokenizer;;;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.commons.lang3.text;StrBuilder;false;build;;;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.commons.lang3.text;StrBuilder;false;delete;;;Argument[-1];ReturnValue;value;manual",
-        "org.apache.commons.lang3.text;StrBuilder;false;deleteAll;;;Argument[-1];ReturnValue;value;manual",
-        "org.apache.commons.lang3.text;StrBuilder;false;deleteCharAt;;;Argument[-1];ReturnValue;value;manual",
-        "org.apache.commons.lang3.text;StrBuilder;false;deleteFirst;;;Argument[-1];ReturnValue;value;manual",
-        "org.apache.commons.lang3.text;StrBuilder;false;ensureCapacity;;;Argument[-1];ReturnValue;value;manual",
-        "org.apache.commons.lang3.text;StrBuilder;false;getChars;(char[]);;Argument[-1];Argument[0];taint;manual",
-        "org.apache.commons.lang3.text;StrBuilder;false;getChars;(char[]);;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.commons.lang3.text;StrBuilder;false;getChars;(int,int,char[],int);;Argument[-1];Argument[2];taint;manual",
-        "org.apache.commons.lang3.text;StrBuilder;false;insert;;;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.commons.lang3.text;StrBuilder;false;insert;;;Argument[-1];ReturnValue;value;manual",
-        "org.apache.commons.lang3.text;StrBuilder;false;insert;;;Argument[1];Argument[-1];taint;manual",
-        "org.apache.commons.lang3.text;StrBuilder;false;leftString;;;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.commons.lang3.text;StrBuilder;false;midString;;;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.commons.lang3.text;StrBuilder;false;minimizeCapacity;;;Argument[-1];ReturnValue;value;manual",
-        "org.apache.commons.lang3.text;StrBuilder;false;readFrom;;;Argument[0];Argument[-1];taint;manual",
-        "org.apache.commons.lang3.text;StrBuilder;false;replace;;;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.commons.lang3.text;StrBuilder;false;replace;;;Argument[-1];ReturnValue;value;manual",
-        "org.apache.commons.lang3.text;StrBuilder;false;replace;(int,int,java.lang.String);;Argument[2];Argument[-1];taint;manual",
-        "org.apache.commons.lang3.text;StrBuilder;false;replace;(org.apache.commons.lang3.text.StrMatcher,java.lang.String,int,int,int);;Argument[1];Argument[-1];taint;manual",
-        "org.apache.commons.lang3.text;StrBuilder;false;replaceAll;;;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.commons.lang3.text;StrBuilder;false;replaceAll;;;Argument[-1];ReturnValue;value;manual",
-        "org.apache.commons.lang3.text;StrBuilder;false;replaceAll;;;Argument[1];Argument[-1];taint;manual",
-        "org.apache.commons.lang3.text;StrBuilder;false;replaceFirst;;;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.commons.lang3.text;StrBuilder;false;replaceFirst;;;Argument[-1];ReturnValue;value;manual",
-        "org.apache.commons.lang3.text;StrBuilder;false;replaceFirst;;;Argument[1];Argument[-1];taint;manual",
-        "org.apache.commons.lang3.text;StrBuilder;false;reverse;;;Argument[-1];ReturnValue;value;manual",
-        "org.apache.commons.lang3.text;StrBuilder;false;rightString;;;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.commons.lang3.text;StrBuilder;false;setCharAt;;;Argument[-1];ReturnValue;value;manual",
-        "org.apache.commons.lang3.text;StrBuilder;false;setLength;;;Argument[-1];ReturnValue;value;manual",
-        "org.apache.commons.lang3.text;StrBuilder;false;setNewLineText;;;Argument[-1];ReturnValue;value;manual",
-        "org.apache.commons.lang3.text;StrBuilder;false;setNullText;;;Argument[-1];ReturnValue;value;manual",
-        "org.apache.commons.lang3.text;StrBuilder;false;StrBuilder;(java.lang.String);;Argument[0];Argument[-1];taint;manual",
-        "org.apache.commons.lang3.text;StrBuilder;false;subSequence;;;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.commons.lang3.text;StrBuilder;false;substring;;;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.commons.lang3.text;StrBuilder;false;toCharArray;;;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.commons.lang3.text;StrBuilder;false;toString;;;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.commons.lang3.text;StrBuilder;false;toStringBuffer;;;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.commons.lang3.text;StrBuilder;false;toStringBuilder;;;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.commons.lang3.text;StrBuilder;false;trim;;;Argument[-1];ReturnValue;value;manual",
-        "org.apache.commons.lang3.text;StrLookup;false;lookup;;;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.commons.lang3.text;StrLookup;false;mapLookup;;;Argument[0].MapValue;ReturnValue;taint;manual",
-        "org.apache.commons.lang3.text;StrSubstitutor;false;replace;;;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.commons.lang3.text;StrSubstitutor;false;replace;(char[],int,int);;Argument[0];ReturnValue;taint;manual",
-        "org.apache.commons.lang3.text;StrSubstitutor;false;replace;(char[]);;Argument[0];ReturnValue;taint;manual",
-        "org.apache.commons.lang3.text;StrSubstitutor;false;replace;(java.lang.CharSequence,int,int);;Argument[0];ReturnValue;taint;manual",
-        "org.apache.commons.lang3.text;StrSubstitutor;false;replace;(java.lang.CharSequence);;Argument[0];ReturnValue;taint;manual",
-        "org.apache.commons.lang3.text;StrSubstitutor;false;replace;(java.lang.Object,java.util.Map,java.lang.String,java.lang.String);;Argument[0];ReturnValue;taint;manual",
-        "org.apache.commons.lang3.text;StrSubstitutor;false;replace;(java.lang.Object,java.util.Map,java.lang.String,java.lang.String);;Argument[1].MapValue;ReturnValue;taint;manual",
-        "org.apache.commons.lang3.text;StrSubstitutor;false;replace;(java.lang.Object,java.util.Map);;Argument[0];ReturnValue;taint;manual",
-        "org.apache.commons.lang3.text;StrSubstitutor;false;replace;(java.lang.Object,java.util.Map);;Argument[1].MapValue;ReturnValue;taint;manual",
-        "org.apache.commons.lang3.text;StrSubstitutor;false;replace;(java.lang.Object,java.util.Properties);;Argument[0];ReturnValue;taint;manual",
-        "org.apache.commons.lang3.text;StrSubstitutor;false;replace;(java.lang.Object,java.util.Properties);;Argument[1].MapValue;ReturnValue;taint;manual",
-        "org.apache.commons.lang3.text;StrSubstitutor;false;replace;(java.lang.Object);;Argument[0];ReturnValue;taint;manual",
-        "org.apache.commons.lang3.text;StrSubstitutor;false;replace;(java.lang.String,int,int);;Argument[0];ReturnValue;taint;manual",
-        "org.apache.commons.lang3.text;StrSubstitutor;false;replace;(java.lang.String);;Argument[0];ReturnValue;taint;manual",
-        "org.apache.commons.lang3.text;StrSubstitutor;false;replace;(java.lang.StringBuffer,int,int);;Argument[0];ReturnValue;taint;manual",
-        "org.apache.commons.lang3.text;StrSubstitutor;false;replace;(java.lang.StringBuffer);;Argument[0];ReturnValue;taint;manual",
-        "org.apache.commons.lang3.text;StrSubstitutor;false;replace;(org.apache.commons.lang3.text.StrBuilder,int,int);;Argument[0];ReturnValue;taint;manual",
-        "org.apache.commons.lang3.text;StrSubstitutor;false;replace;(org.apache.commons.lang3.text.StrBuilder);;Argument[0];ReturnValue;taint;manual",
-        "org.apache.commons.lang3.text;StrSubstitutor;false;replaceIn;(java.lang.StringBuffer,int,int);;Argument[-1];Argument[0];taint;manual",
-        "org.apache.commons.lang3.text;StrSubstitutor;false;replaceIn;(java.lang.StringBuffer);;Argument[-1];Argument[0];taint;manual",
-        "org.apache.commons.lang3.text;StrSubstitutor;false;replaceIn;(java.lang.StringBuilder,int,int);;Argument[-1];Argument[0];taint;manual",
-        "org.apache.commons.lang3.text;StrSubstitutor;false;replaceIn;(java.lang.StringBuilder);;Argument[-1];Argument[0];taint;manual",
-        "org.apache.commons.lang3.text;StrSubstitutor;false;replaceIn;(org.apache.commons.lang3.text.StrBuilder,int,int);;Argument[-1];Argument[0];taint;manual",
-        "org.apache.commons.lang3.text;StrSubstitutor;false;replaceIn;(org.apache.commons.lang3.text.StrBuilder);;Argument[-1];Argument[0];taint;manual",
-        "org.apache.commons.lang3.text;StrSubstitutor;false;setVariableResolver;;;Argument[0];Argument[-1];taint;manual",
-        "org.apache.commons.lang3.text;StrSubstitutor;false;StrSubstitutor;;;Argument[0];Argument[-1];taint;manual",
-        "org.apache.commons.lang3.text;StrSubstitutor;false;StrSubstitutor;;;Argument[0].MapValue;Argument[-1];taint;manual",
-        "org.apache.commons.lang3.text;StrTokenizer;false;clone;;;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.commons.lang3.text;StrTokenizer;false;getContent;;;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.commons.lang3.text;StrTokenizer;false;getCSVInstance;;;Argument[0];ReturnValue;taint;manual",
-        "org.apache.commons.lang3.text;StrTokenizer;false;getTokenArray;;;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.commons.lang3.text;StrTokenizer;false;getTokenList;;;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.commons.lang3.text;StrTokenizer;false;getTSVInstance;;;Argument[0];ReturnValue;taint;manual",
-        "org.apache.commons.lang3.text;StrTokenizer;false;next;;;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.commons.lang3.text;StrTokenizer;false;nextToken;;;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.commons.lang3.text;StrTokenizer;false;previous;;;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.commons.lang3.text;StrTokenizer;false;previousToken;;;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.commons.lang3.text;StrTokenizer;false;reset;;;Argument[0];Argument[-1];taint;manual",
-        "org.apache.commons.lang3.text;StrTokenizer;false;reset;;;Argument[0];ReturnValue;taint;manual",
-        "org.apache.commons.lang3.text;StrTokenizer;false;StrTokenizer;;;Argument[0];Argument[-1];taint;manual",
-        "org.apache.commons.lang3.text;StrTokenizer;false;toString;;;Argument[-1];ReturnValue;taint;manual",
-        "org.apache.commons.lang3.text;WordUtils;false;capitalize;(java.lang.String,char[]);;Argument[0];ReturnValue;taint;manual",
-        "org.apache.commons.lang3.text;WordUtils;false;capitalize;(java.lang.String);;Argument[0];ReturnValue;taint;manual",
-        "org.apache.commons.lang3.text;WordUtils;false;capitalizeFully;(java.lang.String,char[]);;Argument[0];ReturnValue;taint;manual",
-        "org.apache.commons.lang3.text;WordUtils;false;capitalizeFully;(java.lang.String);;Argument[0];ReturnValue;taint;manual",
-        "org.apache.commons.lang3.text;WordUtils;false;initials;(java.lang.String,char[]);;Argument[0];ReturnValue;taint;manual",
-        "org.apache.commons.lang3.text;WordUtils;false;initials;(java.lang.String);;Argument[0];ReturnValue;taint;manual",
-        "org.apache.commons.lang3.text;WordUtils;false;swapCase;;;Argument[0];ReturnValue;taint;manual",
-        "org.apache.commons.lang3.text;WordUtils;false;uncapitalize;(java.lang.String,char[]);;Argument[0];ReturnValue;taint;manual",
-        "org.apache.commons.lang3.text;WordUtils;false;uncapitalize;(java.lang.String);;Argument[0];ReturnValue;taint;manual",
-        "org.apache.commons.lang3.text;WordUtils;false;wrap;;;Argument[0];ReturnValue;taint;manual",
-        "org.apache.commons.lang3.text;WordUtils;false;wrap;(java.lang.String,int,java.lang.String,boolean,java.lang.String);;Argument[2];ReturnValue;taint;manual",
-        "org.apache.commons.lang3.text;WordUtils;false;wrap;(java.lang.String,int,java.lang.String,boolean);;Argument[2];ReturnValue;taint;manual",
-        "org.apache.commons.lang3.tuple;ImmutablePair;false;ImmutablePair;(java.lang.Object,java.lang.Object);;Argument[0];Argument[-1].Field[org.apache.commons.lang3.tuple.ImmutablePair.left];value;manual",
-        "org.apache.commons.lang3.tuple;ImmutablePair;false;ImmutablePair;(java.lang.Object,java.lang.Object);;Argument[1];Argument[-1].Field[org.apache.commons.lang3.tuple.ImmutablePair.right];value;manual",
-        "org.apache.commons.lang3.tuple;ImmutablePair;false;left;;;Argument[0];ReturnValue.Field[org.apache.commons.lang3.tuple.ImmutablePair.left];value;manual",
-        "org.apache.commons.lang3.tuple;ImmutablePair;false;of;(java.lang.Object,java.lang.Object);;Argument[0];ReturnValue.Field[org.apache.commons.lang3.tuple.ImmutablePair.left];value;manual",
-        "org.apache.commons.lang3.tuple;ImmutablePair;false;of;(java.lang.Object,java.lang.Object);;Argument[1];ReturnValue.Field[org.apache.commons.lang3.tuple.ImmutablePair.right];value;manual",
-        "org.apache.commons.lang3.tuple;ImmutablePair;false;right;;;Argument[0];ReturnValue.Field[org.apache.commons.lang3.tuple.ImmutablePair.right];value;manual",
-        "org.apache.commons.lang3.tuple;ImmutableTriple;false;ImmutableTriple;(java.lang.Object,java.lang.Object,java.lang.Object);;Argument[0];Argument[-1].Field[org.apache.commons.lang3.tuple.ImmutableTriple.left];value;manual",
-        "org.apache.commons.lang3.tuple;ImmutableTriple;false;ImmutableTriple;(java.lang.Object,java.lang.Object,java.lang.Object);;Argument[1];Argument[-1].Field[org.apache.commons.lang3.tuple.ImmutableTriple.middle];value;manual",
-        "org.apache.commons.lang3.tuple;ImmutableTriple;false;ImmutableTriple;(java.lang.Object,java.lang.Object,java.lang.Object);;Argument[2];Argument[-1].Field[org.apache.commons.lang3.tuple.ImmutableTriple.right];value;manual",
-        "org.apache.commons.lang3.tuple;ImmutableTriple;false;of;(java.lang.Object,java.lang.Object,java.lang.Object);;Argument[0];ReturnValue.Field[org.apache.commons.lang3.tuple.ImmutableTriple.left];value;manual",
-        "org.apache.commons.lang3.tuple;ImmutableTriple;false;of;(java.lang.Object,java.lang.Object,java.lang.Object);;Argument[1];ReturnValue.Field[org.apache.commons.lang3.tuple.ImmutableTriple.middle];value;manual",
-        "org.apache.commons.lang3.tuple;ImmutableTriple;false;of;(java.lang.Object,java.lang.Object,java.lang.Object);;Argument[2];ReturnValue.Field[org.apache.commons.lang3.tuple.ImmutableTriple.right];value;manual",
-        "org.apache.commons.lang3.tuple;MutablePair;false;MutablePair;(java.lang.Object,java.lang.Object);;Argument[0];Argument[-1].Field[org.apache.commons.lang3.tuple.MutablePair.left];value;manual",
-        "org.apache.commons.lang3.tuple;MutablePair;false;MutablePair;(java.lang.Object,java.lang.Object);;Argument[1];Argument[-1].Field[org.apache.commons.lang3.tuple.MutablePair.right];value;manual",
-        "org.apache.commons.lang3.tuple;MutablePair;false;of;(java.lang.Object,java.lang.Object);;Argument[0];ReturnValue.Field[org.apache.commons.lang3.tuple.MutablePair.left];value;manual",
-        "org.apache.commons.lang3.tuple;MutablePair;false;of;(java.lang.Object,java.lang.Object);;Argument[1];ReturnValue.Field[org.apache.commons.lang3.tuple.MutablePair.right];value;manual",
-        "org.apache.commons.lang3.tuple;MutablePair;false;setLeft;;;Argument[0];Argument[-1].Field[org.apache.commons.lang3.tuple.MutablePair.left];value;manual",
-        "org.apache.commons.lang3.tuple;MutablePair;false;setRight;;;Argument[0];Argument[-1].Field[org.apache.commons.lang3.tuple.MutablePair.right];value;manual",
-        "org.apache.commons.lang3.tuple;MutablePair;false;setValue;;;Argument[0];Argument[-1].Field[org.apache.commons.lang3.tuple.MutablePair.right];value;manual",
-        "org.apache.commons.lang3.tuple;MutableTriple;false;MutableTriple;(java.lang.Object,java.lang.Object,java.lang.Object);;Argument[0];Argument[-1].Field[org.apache.commons.lang3.tuple.MutableTriple.left];value;manual",
-        "org.apache.commons.lang3.tuple;MutableTriple;false;MutableTriple;(java.lang.Object,java.lang.Object,java.lang.Object);;Argument[1];Argument[-1].Field[org.apache.commons.lang3.tuple.MutableTriple.middle];value;manual",
-        "org.apache.commons.lang3.tuple;MutableTriple;false;MutableTriple;(java.lang.Object,java.lang.Object,java.lang.Object);;Argument[2];Argument[-1].Field[org.apache.commons.lang3.tuple.MutableTriple.right];value;manual",
-        "org.apache.commons.lang3.tuple;MutableTriple;false;of;(java.lang.Object,java.lang.Object,java.lang.Object);;Argument[0];ReturnValue.Field[org.apache.commons.lang3.tuple.MutableTriple.left];value;manual",
-        "org.apache.commons.lang3.tuple;MutableTriple;false;of;(java.lang.Object,java.lang.Object,java.lang.Object);;Argument[1];ReturnValue.Field[org.apache.commons.lang3.tuple.MutableTriple.middle];value;manual",
-        "org.apache.commons.lang3.tuple;MutableTriple;false;of;(java.lang.Object,java.lang.Object,java.lang.Object);;Argument[2];ReturnValue.Field[org.apache.commons.lang3.tuple.MutableTriple.right];value;manual",
-        "org.apache.commons.lang3.tuple;MutableTriple;false;setLeft;;;Argument[0];Argument[-1].Field[org.apache.commons.lang3.tuple.MutableTriple.left];value;manual",
-        "org.apache.commons.lang3.tuple;MutableTriple;false;setMiddle;;;Argument[0];Argument[-1].Field[org.apache.commons.lang3.tuple.MutableTriple.middle];value;manual",
-        "org.apache.commons.lang3.tuple;MutableTriple;false;setRight;;;Argument[0];Argument[-1].Field[org.apache.commons.lang3.tuple.MutableTriple.right];value;manual",
-        "org.apache.commons.lang3.tuple;Pair;true;getKey;;;Argument[-1].Field[org.apache.commons.lang3.tuple.ImmutablePair.left];ReturnValue;value;manual",
-        "org.apache.commons.lang3.tuple;Pair;true;getKey;;;Argument[-1].Field[org.apache.commons.lang3.tuple.MutablePair.left];ReturnValue;value;manual",
-        "org.apache.commons.lang3.tuple;Pair;true;getLeft;;;Argument[-1].Field[org.apache.commons.lang3.tuple.ImmutablePair.left];ReturnValue;value;manual",
-        "org.apache.commons.lang3.tuple;Pair;true;getLeft;;;Argument[-1].Field[org.apache.commons.lang3.tuple.MutablePair.left];ReturnValue;value;manual",
-        "org.apache.commons.lang3.tuple;Pair;true;getRight;;;Argument[-1].Field[org.apache.commons.lang3.tuple.ImmutablePair.right];ReturnValue;value;manual",
-        "org.apache.commons.lang3.tuple;Pair;true;getRight;;;Argument[-1].Field[org.apache.commons.lang3.tuple.MutablePair.right];ReturnValue;value;manual",
-        "org.apache.commons.lang3.tuple;Pair;true;getValue;;;Argument[-1].Field[org.apache.commons.lang3.tuple.ImmutablePair.right];ReturnValue;value;manual",
-        "org.apache.commons.lang3.tuple;Pair;true;getValue;;;Argument[-1].Field[org.apache.commons.lang3.tuple.MutablePair.right];ReturnValue;value;manual",
-        "org.apache.commons.lang3.tuple;Pair;false;of;(java.lang.Object,java.lang.Object);;Argument[0];ReturnValue.Field[org.apache.commons.lang3.tuple.ImmutablePair.left];value;manual",
-        "org.apache.commons.lang3.tuple;Pair;false;of;(java.lang.Object,java.lang.Object);;Argument[1];ReturnValue.Field[org.apache.commons.lang3.tuple.ImmutablePair.right];value;manual",
-        "org.apache.commons.lang3.tuple;Triple;true;getLeft;;;Argument[-1].Field[org.apache.commons.lang3.tuple.ImmutableTriple.left];ReturnValue;value;manual",
-        "org.apache.commons.lang3.tuple;Triple;true;getMiddle;;;Argument[-1].Field[org.apache.commons.lang3.tuple.ImmutableTriple.middle];ReturnValue;value;manual",
-        "org.apache.commons.lang3.tuple;Triple;true;getRight;;;Argument[-1].Field[org.apache.commons.lang3.tuple.ImmutableTriple.right];ReturnValue;value;manual",
-        "org.apache.commons.lang3.tuple;Triple;true;getLeft;;;Argument[-1].Field[org.apache.commons.lang3.tuple.MutableTriple.left];ReturnValue;value;manual",
-        "org.apache.commons.lang3.tuple;Triple;true;getMiddle;;;Argument[-1].Field[org.apache.commons.lang3.tuple.MutableTriple.middle];ReturnValue;value;manual",
-        "org.apache.commons.lang3.tuple;Triple;true;getRight;;;Argument[-1].Field[org.apache.commons.lang3.tuple.MutableTriple.right];ReturnValue;value;manual",
-        "org.apache.commons.lang3.tuple;Triple;false;of;(java.lang.Object,java.lang.Object,java.lang.Object);;Argument[0];ReturnValue.Field[org.apache.commons.lang3.tuple.ImmutableTriple.left];value;manual",
-        "org.apache.commons.lang3.tuple;Triple;false;of;(java.lang.Object,java.lang.Object,java.lang.Object);;Argument[1];ReturnValue.Field[org.apache.commons.lang3.tuple.ImmutableTriple.middle];value;manual",
-        "org.apache.commons.lang3.tuple;Triple;false;of;(java.lang.Object,java.lang.Object,java.lang.Object);;Argument[2];ReturnValue.Field[org.apache.commons.lang3.tuple.ImmutableTriple.right];value;manual",
-      ]
-  }
-}
diff --git a/java/ql/lib/semmle/code/java/frameworks/guava/Base.qll b/java/ql/lib/semmle/code/java/frameworks/guava/Base.qll
deleted file mode 100644
index 424dade4291..00000000000
--- a/java/ql/lib/semmle/code/java/frameworks/guava/Base.qll
+++ /dev/null
@@ -1,98 +0,0 @@
-/** Definitions of flow steps through utility methods of `com.google.common.base`. */
-
-import java
-private import semmle.code.java.dataflow.ExternalFlow
-
-private class GuavaBaseCsv extends SummaryModelCsv {
-  override predicate row(string row) {
-    row =
-      [
-        //`namespace; type; subtypes; name; signature; ext; input; output; kind`
-        "com.google.common.base;Strings;false;emptyToNull;(String);;Argument[0];ReturnValue;value;manual",
-        "com.google.common.base;Strings;false;nullToEmpty;(String);;Argument[0];ReturnValue;value;manual",
-        "com.google.common.base;Strings;false;padStart;(String,int,char);;Argument[0];ReturnValue;taint;manual",
-        "com.google.common.base;Strings;false;padEnd;(String,int,char);;Argument[0];ReturnValue;taint;manual",
-        "com.google.common.base;Strings;false;repeat;(String,int);;Argument[0];ReturnValue;taint;manual",
-        "com.google.common.base;Strings;false;lenientFormat;(String,Object[]);;Argument[0];ReturnValue;taint;manual",
-        "com.google.common.base;Strings;false;lenientFormat;(String,Object[]);;Argument[1].ArrayElement;ReturnValue;taint;manual",
-        "com.google.common.base;Joiner;false;on;(String);;Argument[0];ReturnValue;taint;manual",
-        "com.google.common.base;Joiner;false;skipNulls;();;Argument[-1];ReturnValue;taint;manual",
-        "com.google.common.base;Joiner;false;useForNull;(String);;Argument[-1];ReturnValue;taint;manual",
-        "com.google.common.base;Joiner;false;useForNull;(String);;Argument[0];ReturnValue;taint;manual",
-        "com.google.common.base;Joiner;false;withKeyValueSeparator;(String);;Argument[0];ReturnValue;taint;manual",
-        "com.google.common.base;Joiner;false;withKeyValueSeparator;(String);;Argument[-1];ReturnValue;taint;manual",
-        "com.google.common.base;Joiner;false;withKeyValueSeparator;(char);;Argument[-1];ReturnValue;taint;manual",
-        "com.google.common.base;Joiner;false;appendTo;(Appendable,Object,Object,Object[]);;Argument[1..2];Argument[0];taint;manual",
-        "com.google.common.base;Joiner;false;appendTo;(Appendable,Object,Object,Object[]);;Argument[3].ArrayElement;Argument[0];taint;manual",
-        "com.google.common.base;Joiner;false;appendTo;(Appendable,Iterable);;Argument[1].Element;Argument[-1];taint;manual",
-        "com.google.common.base;Joiner;false;appendTo;(Appendable,Object[]);;Argument[1].ArrayElement;Argument[-1];taint;manual",
-        "com.google.common.base;Joiner;false;appendTo;(Appendable,Iterator);;Argument[1].Element;Argument[-1];taint;manual",
-        "com.google.common.base;Joiner;false;appendTo;(StringBuilder,Object,Object,Object[]);;Argument[1..2];Argument[0];taint;manual",
-        "com.google.common.base;Joiner;false;appendTo;(StringBuilder,Object,Object,Object[]);;Argument[3].ArrayElement;Argument[0];taint;manual",
-        "com.google.common.base;Joiner;false;appendTo;(StringBuilder,Iterable);;Argument[1].Element;Argument[-1];taint;manual",
-        "com.google.common.base;Joiner;false;appendTo;(StringBuilder,Object[]);;Argument[1].ArrayElement;Argument[-1];taint;manual",
-        "com.google.common.base;Joiner;false;appendTo;(StringBuilder,Iterator);;Argument[1].Element;Argument[-1];taint;manual",
-        "com.google.common.base;Joiner;false;appendTo;;;Argument[-1];Argument[0];taint;manual",
-        "com.google.common.base;Joiner;false;appendTo;;;Argument[0];ReturnValue;value;manual",
-        "com.google.common.base;Joiner;false;join;;;Argument[-1..2];ReturnValue;taint;manual",
-        "com.google.common.base;Joiner$MapJoiner;false;useForNull;(String);;Argument[0];ReturnValue;taint;manual",
-        "com.google.common.base;Joiner$MapJoiner;false;useForNull;(String);;Argument[-1];ReturnValue;taint;manual",
-        "com.google.common.base;Joiner$MapJoiner;false;appendTo;;;Argument[1];Argument[0];taint;manual",
-        "com.google.common.base;Joiner$MapJoiner;false;appendTo;;;Argument[0];ReturnValue;value;manual",
-        "com.google.common.base;Joiner$MapJoiner;false;join;;;Argument[-1];ReturnValue;taint;manual",
-        "com.google.common.base;Joiner$MapJoiner;false;join;(Iterable);;Argument[0].Element.MapKey;ReturnValue;taint;manual",
-        "com.google.common.base;Joiner$MapJoiner;false;join;(Iterable);;Argument[0].Element.MapValue;ReturnValue;taint;manual",
-        "com.google.common.base;Joiner$MapJoiner;false;join;(Iterator);;Argument[0].Element.MapKey;ReturnValue;taint;manual",
-        "com.google.common.base;Joiner$MapJoiner;false;join;(Iterator);;Argument[0].Element.MapValue;ReturnValue;taint;manual",
-        "com.google.common.base;Joiner$MapJoiner;false;join;(Map);;Argument[0].MapKey;ReturnValue;taint;manual",
-        "com.google.common.base;Joiner$MapJoiner;false;join;(Map);;Argument[0].MapValue;ReturnValue;taint;manual",
-        "com.google.common.base;Splitter;false;split;(CharSequence);;Argument[0];ReturnValue;taint;manual",
-        "com.google.common.base;Splitter;false;splitToList;(CharSequence);;Argument[0];ReturnValue;taint;manual",
-        "com.google.common.base;Splitter;false;splitToStream;(CharSequence);;Argument[0];ReturnValue;taint;manual",
-        "com.google.common.base;Splitter$MapSplitter;false;split;(CharSequence);;Argument[0];ReturnValue;taint;manual",
-        "com.google.common.base;Preconditions;false;checkNotNull;;;Argument[0];ReturnValue;value;manual",
-        "com.google.common.base;Verify;false;verifyNotNull;;;Argument[0];ReturnValue;value;manual",
-        "com.google.common.base;Ascii;false;toLowerCase;(CharSequence);;Argument[0];ReturnValue;taint;manual",
-        "com.google.common.base;Ascii;false;toLowerCase;(String);;Argument[0];ReturnValue;taint;manual",
-        "com.google.common.base;Ascii;false;toUpperCase;(CharSequence);;Argument[0];ReturnValue;taint;manual",
-        "com.google.common.base;Ascii;false;toUpperCase;(String);;Argument[0];ReturnValue;taint;manual",
-        "com.google.common.base;Ascii;false;truncate;(CharSequence,int,String);;Argument[0];ReturnValue;taint;manual",
-        "com.google.common.base;Ascii;false;truncate;(CharSequence,int,String);;Argument[2];ReturnValue;taint;manual",
-        "com.google.common.base;CaseFormat;true;to;(CaseFormat,String);;Argument[1];ReturnValue;taint;manual",
-        "com.google.common.base;Converter;true;apply;(Object);;Argument[0];ReturnValue;taint;manual",
-        "com.google.common.base;Converter;true;convert;(Object);;Argument[0];ReturnValue;taint;manual",
-        "com.google.common.base;Converter;true;convertAll;(Iterable);;Argument[0].Element;ReturnValue.Element;taint;manual",
-        "com.google.common.base;Supplier;true;get;();;Argument[-1];ReturnValue;taint;manual",
-        "com.google.common.base;Suppliers;false;ofInstance;(Object);;Argument[0];ReturnValue;taint;manual",
-        "com.google.common.base;Suppliers;false;memoize;(Supplier);;Argument[0];ReturnValue;taint;manual",
-        "com.google.common.base;Suppliers;false;memoizeWithExpiration;(Supplier,long,TimeUnit);;Argument[0];ReturnValue;taint;manual",
-        "com.google.common.base;Suppliers;false;synchronizedSupplier;(Supplier);;Argument[0];ReturnValue;taint;manual",
-        "com.google.common.base;Optional;true;fromJavaUtil;(Optional);;Argument[0].Element;ReturnValue.Element;value;manual",
-        "com.google.common.base;Optional;true;fromNullable;(Object);;Argument[0];ReturnValue.Element;value;manual",
-        "com.google.common.base;Optional;true;get;();;Argument[-1].Element;ReturnValue;value;manual",
-        "com.google.common.base;Optional;true;asSet;();;Argument[-1].Element;ReturnValue.Element;value;manual",
-        "com.google.common.base;Optional;true;of;(Object);;Argument[0];ReturnValue.Element;value;manual",
-        "com.google.common.base;Optional;true;or;(Optional);;Argument[-1..0].Element;ReturnValue.Element;value;manual",
-        "com.google.common.base;Optional;true;or;(Supplier);;Argument[-1].Element;ReturnValue;value;manual",
-        "com.google.common.base;Optional;true;or;(Supplier);;Argument[0];ReturnValue;taint;manual",
-        "com.google.common.base;Optional;true;or;(Object);;Argument[-1].Element;ReturnValue;value;manual",
-        "com.google.common.base;Optional;true;or;(Object);;Argument[0];ReturnValue;value;manual",
-        "com.google.common.base;Optional;true;orNull;();;Argument[-1].Element;ReturnValue;value;manual",
-        "com.google.common.base;Optional;true;presentInstances;(Iterable);;Argument[0].Element.Element;ReturnValue.Element;value;manual",
-        "com.google.common.base;Optional;true;toJavaUtil;();;Argument[-1].Element;ReturnValue.Element;value;manual",
-        "com.google.common.base;Optional;true;toJavaUtil;(Optional);;Argument[0].Element;ReturnValue.Element;value;manual",
-        "com.google.common.base;MoreObjects;false;firstNonNull;(Object,Object);;Argument[0..1];ReturnValue;value;manual",
-        "com.google.common.base;MoreObjects;false;toStringHelper;(String);;Argument[0];ReturnValue;taint;manual",
-        "com.google.common.base;MoreObjects$ToStringHelper;false;add;;;Argument[0];ReturnValue;taint;manual",
-        "com.google.common.base;MoreObjects$ToStringHelper;false;add;;;Argument[0];Argument[-1];taint;manual",
-        "com.google.common.base;MoreObjects$ToStringHelper;false;add;;;Argument[-1];ReturnValue;value;manual",
-        "com.google.common.base;MoreObjects$ToStringHelper;false;add;(String,Object);;Argument[1];ReturnValue;taint;manual",
-        "com.google.common.base;MoreObjects$ToStringHelper;false;add;(String,Object);;Argument[1];Argument[-1];taint;manual",
-        "com.google.common.base;MoreObjects$ToStringHelper;false;addValue;;;Argument[-1];ReturnValue;value;manual",
-        "com.google.common.base;MoreObjects$ToStringHelper;false;addValue;(Object);;Argument[0];ReturnValue;taint;manual",
-        "com.google.common.base;MoreObjects$ToStringHelper;false;addValue;(Object);;Argument[0];Argument[-1];taint;manual",
-        "com.google.common.base;MoreObjects$ToStringHelper;false;omitNullValues;();;Argument[-1];ReturnValue;value;manual",
-        "com.google.common.base;MoreObjects$ToStringHelper;false;toString;();;Argument[-1];ReturnValue;taint;manual"
-      ]
-  }
-}
diff --git a/java/ql/lib/semmle/code/java/frameworks/guava/Cache.qll b/java/ql/lib/semmle/code/java/frameworks/guava/Cache.qll
deleted file mode 100644
index d1f8cf4f776..00000000000
--- a/java/ql/lib/semmle/code/java/frameworks/guava/Cache.qll
+++ /dev/null
@@ -1,32 +0,0 @@
-/** Flow steps through methods of `com.google.common.cache` */
-
-import java
-private import semmle.code.java.dataflow.ExternalFlow
-
-private class GuavaBaseCsv extends SummaryModelCsv {
-  override predicate row(string row) {
-    row =
-      [
-        //`namespace; type; subtypes; name; signature; ext; input; output; kind`
-        "com.google.common.cache;Cache;true;asMap;();;Argument[-1].MapKey;ReturnValue.MapKey;value;manual",
-        "com.google.common.cache;Cache;true;asMap;();;Argument[-1].MapValue;ReturnValue.MapValue;value;manual",
-        // lambda flow from Argument[1] not implemented
-        "com.google.common.cache;Cache;true;get;(Object,Callable);;Argument[-1].MapValue;ReturnValue;value;manual",
-        "com.google.common.cache;Cache;true;getIfPresent;(Object);;Argument[-1].MapValue;ReturnValue;value;manual",
-        // the true flow to MapKey of ReturnValue for getAllPresent is the intersection of the these inputs, but intersections cannot be modeled fully accurately.
-        "com.google.common.cache;Cache;true;getAllPresent;(Iterable);;Argument[-1].MapKey;ReturnValue.MapKey;value;manual",
-        "com.google.common.cache;Cache;true;getAllPresent;(Iterable);;Argument[0].Element;ReturnValue.MapKey;value;manual",
-        "com.google.common.cache;Cache;true;getAllPresent;(Iterable);;Argument[-1].MapValue;ReturnValue.MapValue;value;manual",
-        "com.google.common.cache;Cache;true;put;(Object,Object);;Argument[0];Argument[-1].MapKey;value;manual",
-        "com.google.common.cache;Cache;true;put;(Object,Object);;Argument[1];Argument[-1].MapValue;value;manual",
-        "com.google.common.cache;Cache;true;putAll;(Map);;Argument[0].MapKey;Argument[-1].MapKey;value;manual",
-        "com.google.common.cache;Cache;true;putAll;(Map);;Argument[0].MapValue;Argument[-1].MapValue;value;manual",
-        "com.google.common.cache;LoadingCache;true;get;(Object);;Argument[-1].MapValue;ReturnValue;value;manual",
-        "com.google.common.cache;LoadingCache;true;getUnchecked;(Object);;Argument[-1].MapValue;ReturnValue;value;manual",
-        "com.google.common.cache;LoadingCache;true;apply;(Object);;Argument[-1].MapValue;ReturnValue;value;manual",
-        "com.google.common.cache;LoadingCache;true;getAll;(Iterable);;Argument[0].Element;ReturnValue.MapKey;value;manual",
-        "com.google.common.cache;LoadingCache;true;getAll;(Iterable);;Argument[0].Element;Argument[-1].MapKey;value;manual",
-        "com.google.common.cache;LoadingCache;true;getAll;(Iterable);;Argument[-1].MapValue;ReturnValue.MapValue;value;manual"
-      ]
-  }
-}
diff --git a/java/ql/lib/semmle/code/java/frameworks/guava/Collections.qll b/java/ql/lib/semmle/code/java/frameworks/guava/Collections.qll
index feb27d22ec0..c20bafb36de 100644
--- a/java/ql/lib/semmle/code/java/frameworks/guava/Collections.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/guava/Collections.qll
@@ -8,571 +8,6 @@ private import semmle.code.java.Collections
 
 private string guavaCollectPackage() { result = "com.google.common.collect" }
 
-private class GuavaCollectCsv extends SummaryModelCsv {
-  override predicate row(string row) {
-    row =
-      [
-        //"package;type;overrides;name;signature;ext;inputspec;outputspec;kind",
-        // Methods depending on lambda flow are not currently modeled
-        // Methods depending on stronger aliasing properties than we support are also not modeled.
-        "com.google.common.collect;ArrayListMultimap;true;create;(Multimap);;Argument[0].MapKey;ReturnValue.MapKey;value;manual",
-        "com.google.common.collect;ArrayListMultimap;true;create;(Multimap);;Argument[0].MapValue;ReturnValue.MapValue;value;manual",
-        "com.google.common.collect;ArrayTable;true;create;(Iterable,Iterable);;Argument[0].Element;ReturnValue.SyntheticField[com.google.common.collect.Table.rowKey];value;manual",
-        "com.google.common.collect;ArrayTable;true;create;(Iterable,Iterable);;Argument[1].Element;ReturnValue.SyntheticField[com.google.common.collect.Table.columnKey];value;manual",
-        "com.google.common.collect;ArrayTable;true;create;(Table);;Argument[0].MapValue;ReturnValue.MapValue;value;manual",
-        "com.google.common.collect;ArrayTable;true;create;(Table);;Argument[0].SyntheticField[com.google.common.collect.Table.columnKey];ReturnValue.SyntheticField[com.google.common.collect.Table.columnKey];value;manual",
-        "com.google.common.collect;ArrayTable;true;create;(Table);;Argument[0].SyntheticField[com.google.common.collect.Table.rowKey];ReturnValue.SyntheticField[com.google.common.collect.Table.rowKey];value;manual",
-        "com.google.common.collect;BiMap;true;forcePut;(Object,Object);;Argument[0];Argument[-1].MapKey;value;manual",
-        "com.google.common.collect;BiMap;true;forcePut;(Object,Object);;Argument[1];Argument[-1].MapValue;value;manual",
-        "com.google.common.collect;BiMap;true;inverse;();;Argument[-1].MapKey;ReturnValue.MapValue;value;manual",
-        "com.google.common.collect;BiMap;true;inverse;();;Argument[-1].MapValue;ReturnValue.MapKey;value;manual",
-        "com.google.common.collect;ClassToInstanceMap;true;getInstance;(Class);;Argument[-1].MapValue;ReturnValue;value;manual",
-        "com.google.common.collect;ClassToInstanceMap;true;putInstance;(Class,Object);;Argument[1];Argument[-1].MapValue;value;manual",
-        "com.google.common.collect;ClassToInstanceMap;true;putInstance;(Class,Object);;Argument[-1].MapValue;ReturnValue;value;manual",
-        "com.google.common.collect;Collections2;false;filter;(Collection,Predicate);;Argument[0].Element;ReturnValue.Element;value;manual",
-        "com.google.common.collect;Collections2;false;orderedPermutations;(Iterable);;Argument[0].Element;ReturnValue.Element.Element;value;manual",
-        "com.google.common.collect;Collections2;false;orderedPermutations;(Iterable,Comparator);;Argument[0].Element;ReturnValue.Element.Element;value;manual",
-        "com.google.common.collect;Collections2;false;permutations;(Collection);;Argument[0].Element;ReturnValue.Element.Element;value;manual",
-        "com.google.common.collect;ConcurrentHashMultiset;true;create;(Iterable);;Argument[0].Element;ReturnValue.Element;value;manual",
-        "com.google.common.collect;HashBasedTable;true;create;(Table);;Argument[0].MapValue;ReturnValue.MapValue;value;manual",
-        "com.google.common.collect;HashBasedTable;true;create;(Table);;Argument[0].SyntheticField[com.google.common.collect.Table.columnKey];ReturnValue.SyntheticField[com.google.common.collect.Table.columnKey];value;manual",
-        "com.google.common.collect;HashBasedTable;true;create;(Table);;Argument[0].SyntheticField[com.google.common.collect.Table.rowKey];ReturnValue.SyntheticField[com.google.common.collect.Table.rowKey];value;manual",
-        "com.google.common.collect;HashBiMap;true;create;(Map);;Argument[0].MapKey;ReturnValue.MapKey;value;manual",
-        "com.google.common.collect;HashBiMap;true;create;(Map);;Argument[0].MapValue;ReturnValue.MapValue;value;manual",
-        "com.google.common.collect;HashMultimap;true;create;(Multimap);;Argument[0].MapKey;ReturnValue.MapKey;value;manual",
-        "com.google.common.collect;HashMultimap;true;create;(Multimap);;Argument[0].MapValue;ReturnValue.MapValue;value;manual",
-        "com.google.common.collect;HashMultiset;true;create;(Iterable);;Argument[0].Element;ReturnValue.Element;value;manual",
-        "com.google.common.collect;ImmutableBiMap;true;of;;;Argument[0];ReturnValue.MapKey;value;manual",
-        "com.google.common.collect;ImmutableBiMap;true;of;;;Argument[1];ReturnValue.MapValue;value;manual",
-        "com.google.common.collect;ImmutableBiMap;true;of;;;Argument[2];ReturnValue.MapKey;value;manual",
-        "com.google.common.collect;ImmutableBiMap;true;of;;;Argument[3];ReturnValue.MapValue;value;manual",
-        "com.google.common.collect;ImmutableBiMap;true;of;;;Argument[4];ReturnValue.MapKey;value;manual",
-        "com.google.common.collect;ImmutableBiMap;true;of;;;Argument[5];ReturnValue.MapValue;value;manual",
-        "com.google.common.collect;ImmutableBiMap;true;of;;;Argument[6];ReturnValue.MapKey;value;manual",
-        "com.google.common.collect;ImmutableBiMap;true;of;;;Argument[7];ReturnValue.MapValue;value;manual",
-        "com.google.common.collect;ImmutableBiMap;true;of;;;Argument[8];ReturnValue.MapKey;value;manual",
-        "com.google.common.collect;ImmutableBiMap;true;of;;;Argument[9];ReturnValue.MapValue;value;manual",
-        "com.google.common.collect;ImmutableClassToInstanceMap;true;copyOf;(Map);;Argument[0].MapKey;ReturnValue.MapKey;value;manual",
-        "com.google.common.collect;ImmutableClassToInstanceMap;true;copyOf;(Map);;Argument[0].MapValue;ReturnValue.MapValue;value;manual",
-        "com.google.common.collect;ImmutableClassToInstanceMap;true;of;(Class,Object);;Argument[0];ReturnValue.MapKey;value;manual",
-        "com.google.common.collect;ImmutableClassToInstanceMap;true;of;(Class,Object);;Argument[1];ReturnValue.MapValue;value;manual",
-        "com.google.common.collect;ImmutableCollection$Builder;true;add;(Object);;Argument[0];Argument[-1].Element;value;manual",
-        "com.google.common.collect;ImmutableCollection$Builder;true;add;(Object[]);;Argument[0].ArrayElement;Argument[-1].Element;value;manual",
-        "com.google.common.collect;ImmutableCollection$Builder;true;add;;;Argument[-1];ReturnValue;value;manual",
-        "com.google.common.collect;ImmutableCollection$Builder;true;addAll;(Iterable);;Argument[0].Element;Argument[-1].Element;value;manual",
-        "com.google.common.collect;ImmutableCollection$Builder;true;addAll;(Iterator);;Argument[0].Element;Argument[-1].Element;value;manual",
-        "com.google.common.collect;ImmutableCollection$Builder;true;addAll;;;Argument[-1];ReturnValue;value;manual",
-        "com.google.common.collect;ImmutableCollection$Builder;true;build;();;Argument[-1].Element;ReturnValue.Element;value;manual",
-        "com.google.common.collect;ImmutableCollection;true;asList;();;Argument[-1].Element;ReturnValue.Element;value;manual",
-        "com.google.common.collect;ImmutableList;true;copyOf;(Collection);;Argument[0].Element;ReturnValue.Element;value;manual",
-        "com.google.common.collect;ImmutableList;true;copyOf;(Iterable);;Argument[0].Element;ReturnValue.Element;value;manual",
-        "com.google.common.collect;ImmutableList;true;copyOf;(Iterator);;Argument[0].Element;ReturnValue.Element;value;manual",
-        "com.google.common.collect;ImmutableList;true;copyOf;(Object[]);;Argument[0].ArrayElement;ReturnValue.Element;value;manual",
-        "com.google.common.collect;ImmutableList;true;of;;;Argument[0..11];ReturnValue.Element;value;manual",
-        "com.google.common.collect;ImmutableList;true;of;;;Argument[12].ArrayElement;ReturnValue.Element;value;manual",
-        "com.google.common.collect;ImmutableList;true;reverse;();;Argument[-1].Element;ReturnValue.Element;value;manual",
-        "com.google.common.collect;ImmutableList;true;sortedCopyOf;(Comparator,Iterable);;Argument[1].Element;ReturnValue.Element;value;manual",
-        "com.google.common.collect;ImmutableList;true;sortedCopyOf;(Iterable);;Argument[0].Element;ReturnValue.Element;value;manual",
-        "com.google.common.collect;ImmutableListMultimap;true;of;;;Argument[0];ReturnValue.MapKey;value;manual",
-        "com.google.common.collect;ImmutableListMultimap;true;of;;;Argument[1];ReturnValue.MapValue;value;manual",
-        "com.google.common.collect;ImmutableListMultimap;true;of;;;Argument[2];ReturnValue.MapKey;value;manual",
-        "com.google.common.collect;ImmutableListMultimap;true;of;;;Argument[3];ReturnValue.MapValue;value;manual",
-        "com.google.common.collect;ImmutableListMultimap;true;of;;;Argument[4];ReturnValue.MapKey;value;manual",
-        "com.google.common.collect;ImmutableListMultimap;true;of;;;Argument[5];ReturnValue.MapValue;value;manual",
-        "com.google.common.collect;ImmutableListMultimap;true;of;;;Argument[6];ReturnValue.MapKey;value;manual",
-        "com.google.common.collect;ImmutableListMultimap;true;of;;;Argument[7];ReturnValue.MapValue;value;manual",
-        "com.google.common.collect;ImmutableListMultimap;true;of;;;Argument[8];ReturnValue.MapKey;value;manual",
-        "com.google.common.collect;ImmutableListMultimap;true;of;;;Argument[9];ReturnValue.MapValue;value;manual",
-        "com.google.common.collect;ImmutableMap$Builder;true;build;();;Argument[-1].MapKey;ReturnValue.MapKey;value;manual",
-        "com.google.common.collect;ImmutableMap$Builder;true;build;();;Argument[-1].MapValue;ReturnValue.MapValue;value;manual",
-        "com.google.common.collect;ImmutableMap$Builder;true;orderEntriesByValue;(Comparator);;Argument[-1];ReturnValue;value;manual",
-        "com.google.common.collect;ImmutableMap$Builder;true;put;(Entry);;Argument[0].MapKey;Argument[-1].MapKey;value;manual",
-        "com.google.common.collect;ImmutableMap$Builder;true;put;(Entry);;Argument[0].MapValue;Argument[-1].MapValue;value;manual",
-        "com.google.common.collect;ImmutableMap$Builder;true;put;(Object,Object);;Argument[0];Argument[-1].MapKey;value;manual",
-        "com.google.common.collect;ImmutableMap$Builder;true;put;(Object,Object);;Argument[1];Argument[-1].MapValue;value;manual",
-        "com.google.common.collect;ImmutableMap$Builder;true;put;;;Argument[-1];ReturnValue;value;manual",
-        "com.google.common.collect;ImmutableMap$Builder;true;putAll;(Iterable);;Argument[0].Element.MapKey;Argument[-1].MapKey;value;manual",
-        "com.google.common.collect;ImmutableMap$Builder;true;putAll;(Iterable);;Argument[0].Element.MapValue;Argument[-1].MapValue;value;manual",
-        "com.google.common.collect;ImmutableMap$Builder;true;putAll;(Map);;Argument[0].MapKey;Argument[-1].MapKey;value;manual",
-        "com.google.common.collect;ImmutableMap$Builder;true;putAll;(Map);;Argument[0].MapValue;Argument[-1].MapValue;value;manual",
-        "com.google.common.collect;ImmutableMap$Builder;true;putAll;;;Argument[-1];ReturnValue;value;manual",
-        "com.google.common.collect;ImmutableMap;true;copyOf;(Iterable);;Argument[0].Element.MapKey;ReturnValue.MapKey;value;manual",
-        "com.google.common.collect;ImmutableMap;true;copyOf;(Iterable);;Argument[0].Element.MapValue;ReturnValue.MapValue;value;manual",
-        "com.google.common.collect;ImmutableMap;true;copyOf;(Map);;Argument[0].MapKey;ReturnValue.MapKey;value;manual",
-        "com.google.common.collect;ImmutableMap;true;copyOf;(Map);;Argument[0].MapValue;ReturnValue.MapValue;value;manual",
-        "com.google.common.collect;ImmutableMap;true;of;;;Argument[0];ReturnValue.MapKey;value;manual",
-        "com.google.common.collect;ImmutableMap;true;of;;;Argument[1];ReturnValue.MapValue;value;manual",
-        "com.google.common.collect;ImmutableMap;true;of;;;Argument[2];ReturnValue.MapKey;value;manual",
-        "com.google.common.collect;ImmutableMap;true;of;;;Argument[3];ReturnValue.MapValue;value;manual",
-        "com.google.common.collect;ImmutableMap;true;of;;;Argument[4];ReturnValue.MapKey;value;manual",
-        "com.google.common.collect;ImmutableMap;true;of;;;Argument[5];ReturnValue.MapValue;value;manual",
-        "com.google.common.collect;ImmutableMap;true;of;;;Argument[6];ReturnValue.MapKey;value;manual",
-        "com.google.common.collect;ImmutableMap;true;of;;;Argument[7];ReturnValue.MapValue;value;manual",
-        "com.google.common.collect;ImmutableMap;true;of;;;Argument[8];ReturnValue.MapKey;value;manual",
-        "com.google.common.collect;ImmutableMap;true;of;;;Argument[9];ReturnValue.MapValue;value;manual",
-        "com.google.common.collect;ImmutableMultimap$Builder;true;build;();;Argument[-1].MapKey;ReturnValue.MapKey;value;manual",
-        "com.google.common.collect;ImmutableMultimap$Builder;true;build;();;Argument[-1].MapValue;ReturnValue.MapValue;value;manual",
-        "com.google.common.collect;ImmutableMultimap$Builder;true;orderKeysBy;(Comparator);;Argument[-1];ReturnValue;value;manual",
-        "com.google.common.collect;ImmutableMultimap$Builder;true;orderValuesBy;(Comparator);;Argument[-1];ReturnValue;value;manual",
-        "com.google.common.collect;ImmutableMultimap$Builder;true;put;(Entry);;Argument[0].MapKey;Argument[-1].MapKey;value;manual",
-        "com.google.common.collect;ImmutableMultimap$Builder;true;put;(Entry);;Argument[0].MapValue;Argument[-1].MapValue;value;manual",
-        "com.google.common.collect;ImmutableMultimap$Builder;true;put;(Object,Object);;Argument[0];Argument[-1].MapKey;value;manual",
-        "com.google.common.collect;ImmutableMultimap$Builder;true;put;(Object,Object);;Argument[1];Argument[-1].MapValue;value;manual",
-        "com.google.common.collect;ImmutableMultimap$Builder;true;put;;;Argument[-1];ReturnValue;value;manual",
-        "com.google.common.collect;ImmutableMultimap$Builder;true;putAll;(Iterable);;Argument[0].Element.MapKey;Argument[-1].MapKey;value;manual",
-        "com.google.common.collect;ImmutableMultimap$Builder;true;putAll;(Iterable);;Argument[0].Element.MapValue;Argument[-1].MapValue;value;manual",
-        "com.google.common.collect;ImmutableMultimap$Builder;true;putAll;(Multimap);;Argument[0].MapKey;Argument[-1].MapKey;value;manual",
-        "com.google.common.collect;ImmutableMultimap$Builder;true;putAll;(Multimap);;Argument[0].MapValue;Argument[-1].MapValue;value;manual",
-        "com.google.common.collect;ImmutableMultimap$Builder;true;putAll;(Object,Iterable);;Argument[0];Argument[-1].MapKey;value;manual",
-        "com.google.common.collect;ImmutableMultimap$Builder;true;putAll;(Object,Iterable);;Argument[1].Element;Argument[-1].MapValue;value;manual",
-        "com.google.common.collect;ImmutableMultimap$Builder;true;putAll;(Object,Object[]);;Argument[0];Argument[-1].MapKey;value;manual",
-        "com.google.common.collect;ImmutableMultimap$Builder;true;putAll;(Object,Object[]);;Argument[1].ArrayElement;Argument[-1].MapValue;value;manual",
-        "com.google.common.collect;ImmutableMultimap$Builder;true;putAll;;;Argument[-1];ReturnValue;value;manual",
-        "com.google.common.collect;ImmutableMultimap;true;copyOf;(Iterable);;Argument[0].Element.MapKey;ReturnValue.MapKey;value;manual",
-        "com.google.common.collect;ImmutableMultimap;true;copyOf;(Iterable);;Argument[0].Element.MapValue;ReturnValue.MapValue;value;manual",
-        "com.google.common.collect;ImmutableMultimap;true;copyOf;(Multimap);;Argument[0].MapKey;ReturnValue.MapKey;value;manual",
-        "com.google.common.collect;ImmutableMultimap;true;copyOf;(Multimap);;Argument[0].MapValue;ReturnValue.MapValue;value;manual",
-        "com.google.common.collect;ImmutableMultimap;true;inverse;();;Argument[-1].MapKey;ReturnValue.MapValue;value;manual",
-        "com.google.common.collect;ImmutableMultimap;true;inverse;();;Argument[-1].MapValue;ReturnValue.MapKey;value;manual",
-        "com.google.common.collect;ImmutableMultimap;true;of;;;Argument[0];ReturnValue.MapKey;value;manual",
-        "com.google.common.collect;ImmutableMultimap;true;of;;;Argument[1];ReturnValue.MapValue;value;manual",
-        "com.google.common.collect;ImmutableMultimap;true;of;;;Argument[2];ReturnValue.MapKey;value;manual",
-        "com.google.common.collect;ImmutableMultimap;true;of;;;Argument[3];ReturnValue.MapValue;value;manual",
-        "com.google.common.collect;ImmutableMultimap;true;of;;;Argument[4];ReturnValue.MapKey;value;manual",
-        "com.google.common.collect;ImmutableMultimap;true;of;;;Argument[5];ReturnValue.MapValue;value;manual",
-        "com.google.common.collect;ImmutableMultimap;true;of;;;Argument[6];ReturnValue.MapKey;value;manual",
-        "com.google.common.collect;ImmutableMultimap;true;of;;;Argument[7];ReturnValue.MapValue;value;manual",
-        "com.google.common.collect;ImmutableMultimap;true;of;;;Argument[8];ReturnValue.MapKey;value;manual",
-        "com.google.common.collect;ImmutableMultimap;true;of;;;Argument[9];ReturnValue.MapValue;value;manual",
-        "com.google.common.collect;ImmutableMultiset$Builder;true;addCopies;(Object,int);;Argument[-1];ReturnValue;value;manual",
-        "com.google.common.collect;ImmutableMultiset$Builder;true;addCopies;(Object,int);;Argument[0];Argument[-1].Element;value;manual",
-        "com.google.common.collect;ImmutableMultiset$Builder;true;setCount;(Object,int);;Argument[0];Argument[-1].Element;value;manual",
-        "com.google.common.collect;ImmutableMultiset;true;copyOf;(Iterable);;Argument[0].Element;ReturnValue.Element;value;manual",
-        "com.google.common.collect;ImmutableMultiset;true;copyOf;(Iterator);;Argument[0].Element;ReturnValue.Element;value;manual",
-        "com.google.common.collect;ImmutableMultiset;true;copyOf;(Object[]);;Argument[0].ArrayElement;ReturnValue.Element;value;manual",
-        "com.google.common.collect;ImmutableMultiset;true;of;;;Argument[0..5];ReturnValue.Element;value;manual",
-        "com.google.common.collect;ImmutableMultiset;true;of;;;Argument[6].ArrayElement;ReturnValue.Element;value;manual",
-        "com.google.common.collect;ImmutableSet;true;copyOf;(Collection);;Argument[0].Element;ReturnValue.Element;value;manual",
-        "com.google.common.collect;ImmutableSet;true;copyOf;(Iterable);;Argument[0].Element;ReturnValue.Element;value;manual",
-        "com.google.common.collect;ImmutableSet;true;copyOf;(Iterator);;Argument[0].Element;ReturnValue.Element;value;manual",
-        "com.google.common.collect;ImmutableSet;true;copyOf;(Object[]);;Argument[0].ArrayElement;ReturnValue.Element;value;manual",
-        "com.google.common.collect;ImmutableSet;true;of;;;Argument[0..5];ReturnValue.Element;value;manual",
-        "com.google.common.collect;ImmutableSet;true;of;;;Argument[6].ArrayElement;ReturnValue.Element;value;manual",
-        "com.google.common.collect;ImmutableSetMultimap;true;of;;;Argument[0];ReturnValue.MapKey;value;manual",
-        "com.google.common.collect;ImmutableSetMultimap;true;of;;;Argument[1];ReturnValue.MapValue;value;manual",
-        "com.google.common.collect;ImmutableSetMultimap;true;of;;;Argument[2];ReturnValue.MapKey;value;manual",
-        "com.google.common.collect;ImmutableSetMultimap;true;of;;;Argument[3];ReturnValue.MapValue;value;manual",
-        "com.google.common.collect;ImmutableSetMultimap;true;of;;;Argument[4];ReturnValue.MapKey;value;manual",
-        "com.google.common.collect;ImmutableSetMultimap;true;of;;;Argument[5];ReturnValue.MapValue;value;manual",
-        "com.google.common.collect;ImmutableSetMultimap;true;of;;;Argument[6];ReturnValue.MapKey;value;manual",
-        "com.google.common.collect;ImmutableSetMultimap;true;of;;;Argument[7];ReturnValue.MapValue;value;manual",
-        "com.google.common.collect;ImmutableSetMultimap;true;of;;;Argument[8];ReturnValue.MapKey;value;manual",
-        "com.google.common.collect;ImmutableSetMultimap;true;of;;;Argument[9];ReturnValue.MapValue;value;manual",
-        "com.google.common.collect;ImmutableSortedMap;true;copyOf;(Iterable);;Argument[0].Element.MapKey;ReturnValue.MapKey;value;manual",
-        "com.google.common.collect;ImmutableSortedMap;true;copyOf;(Iterable);;Argument[0].Element.MapValue;ReturnValue.MapValue;value;manual",
-        "com.google.common.collect;ImmutableSortedMap;true;copyOf;(Iterable,Comparator);;Argument[0].Element.MapKey;ReturnValue.MapKey;value;manual",
-        "com.google.common.collect;ImmutableSortedMap;true;copyOf;(Iterable,Comparator);;Argument[0].Element.MapValue;ReturnValue.MapValue;value;manual",
-        "com.google.common.collect;ImmutableSortedMap;true;copyOf;(Map);;Argument[0].MapKey;ReturnValue.MapKey;value;manual",
-        "com.google.common.collect;ImmutableSortedMap;true;copyOf;(Map);;Argument[0].MapValue;ReturnValue.MapValue;value;manual",
-        "com.google.common.collect;ImmutableSortedMap;true;copyOf;(Map,Comparator);;Argument[0].MapKey;ReturnValue.MapKey;value;manual",
-        "com.google.common.collect;ImmutableSortedMap;true;copyOf;(Map,Comparator);;Argument[0].MapValue;ReturnValue.MapValue;value;manual",
-        "com.google.common.collect;ImmutableSortedMap;true;copyOfSorted;(SortedMap);;Argument[0].MapKey;ReturnValue.MapKey;value;manual",
-        "com.google.common.collect;ImmutableSortedMap;true;copyOfSorted;(SortedMap);;Argument[0].MapValue;ReturnValue.MapValue;value;manual",
-        "com.google.common.collect;ImmutableSortedMap;true;of;;;Argument[0];ReturnValue.MapKey;value;manual",
-        "com.google.common.collect;ImmutableSortedMap;true;of;;;Argument[1];ReturnValue.MapValue;value;manual",
-        "com.google.common.collect;ImmutableSortedMap;true;of;;;Argument[2];ReturnValue.MapKey;value;manual",
-        "com.google.common.collect;ImmutableSortedMap;true;of;;;Argument[3];ReturnValue.MapValue;value;manual",
-        "com.google.common.collect;ImmutableSortedMap;true;of;;;Argument[4];ReturnValue.MapKey;value;manual",
-        "com.google.common.collect;ImmutableSortedMap;true;of;;;Argument[5];ReturnValue.MapValue;value;manual",
-        "com.google.common.collect;ImmutableSortedMap;true;of;;;Argument[6];ReturnValue.MapKey;value;manual",
-        "com.google.common.collect;ImmutableSortedMap;true;of;;;Argument[7];ReturnValue.MapValue;value;manual",
-        "com.google.common.collect;ImmutableSortedMap;true;of;;;Argument[8];ReturnValue.MapKey;value;manual",
-        "com.google.common.collect;ImmutableSortedMap;true;of;;;Argument[9];ReturnValue.MapValue;value;manual",
-        "com.google.common.collect;ImmutableSortedMultiset;true;copyOf;(Comparable[]);;Argument[0].ArrayElement;ReturnValue.Element;value;manual",
-        "com.google.common.collect;ImmutableSortedMultiset;true;copyOf;(Comparator,Iterable);;Argument[1].Element;ReturnValue.Element;value;manual",
-        "com.google.common.collect;ImmutableSortedMultiset;true;copyOf;(Comparator,Iterator);;Argument[1].Element;ReturnValue.Element;value;manual",
-        "com.google.common.collect;ImmutableSortedMultiset;true;copyOf;(Iterable);;Argument[0].Element;ReturnValue.Element;value;manual",
-        "com.google.common.collect;ImmutableSortedMultiset;true;copyOf;(Iterator);;Argument[0].Element;ReturnValue.Element;value;manual",
-        "com.google.common.collect;ImmutableSortedMultiset;true;copyOfSorted;(SortedMultiset);;Argument[0].Element;ReturnValue.Element;value;manual",
-        "com.google.common.collect;ImmutableSortedMultiset;true;of;;;Argument[0..5];ReturnValue.Element;value;manual",
-        "com.google.common.collect;ImmutableSortedMultiset;true;of;;;Argument[6].ArrayElement;ReturnValue.Element;value;manual",
-        "com.google.common.collect;ImmutableSortedSet;true;copyOf;(Collection);;Argument[0].Element;ReturnValue.Element;value;manual",
-        "com.google.common.collect;ImmutableSortedSet;true;copyOf;(Comparable[]);;Argument[0].ArrayElement;ReturnValue.Element;value;manual",
-        "com.google.common.collect;ImmutableSortedSet;true;copyOf;(Comparator,Collection);;Argument[1].Element;ReturnValue.Element;value;manual",
-        "com.google.common.collect;ImmutableSortedSet;true;copyOf;(Comparator,Iterable);;Argument[1].Element;ReturnValue.Element;value;manual",
-        "com.google.common.collect;ImmutableSortedSet;true;copyOf;(Comparator,Iterator);;Argument[1].Element;ReturnValue.Element;value;manual",
-        "com.google.common.collect;ImmutableSortedSet;true;copyOf;(Iterable);;Argument[0].Element;ReturnValue.Element;value;manual",
-        "com.google.common.collect;ImmutableSortedSet;true;copyOf;(Iterator);;Argument[0].Element;ReturnValue.Element;value;manual",
-        "com.google.common.collect;ImmutableSortedSet;true;copyOfSorted;(SortedSet);;Argument[0].Element;ReturnValue.Element;value;manual",
-        "com.google.common.collect;ImmutableSortedSet;true;of;;;Argument[0..5];ReturnValue.Element;value;manual",
-        "com.google.common.collect;ImmutableSortedSet;true;of;;;Argument[6].ArrayElement;ReturnValue.Element;value;manual",
-        "com.google.common.collect;ImmutableTable$Builder;true;build;();;Argument[-1].MapValue;ReturnValue.MapValue;value;manual",
-        "com.google.common.collect;ImmutableTable$Builder;true;build;();;Argument[-1].SyntheticField[com.google.common.collect.Table.columnKey];ReturnValue.SyntheticField[com.google.common.collect.Table.columnKey];value;manual",
-        "com.google.common.collect;ImmutableTable$Builder;true;build;();;Argument[-1].SyntheticField[com.google.common.collect.Table.rowKey];ReturnValue.SyntheticField[com.google.common.collect.Table.rowKey];value;manual",
-        "com.google.common.collect;ImmutableTable$Builder;true;orderColumnsBy;(Comparator);;Argument[-1];ReturnValue;value;manual",
-        "com.google.common.collect;ImmutableTable$Builder;true;orderRowsBy;(Comparator);;Argument[-1];ReturnValue;value;manual",
-        "com.google.common.collect;ImmutableTable$Builder;true;put;(Cell);;Argument[-1];ReturnValue;value;manual",
-        "com.google.common.collect;ImmutableTable$Builder;true;put;(Cell);;Argument[0].MapValue;Argument[-1].MapValue;value;manual",
-        "com.google.common.collect;ImmutableTable$Builder;true;put;(Cell);;Argument[0].SyntheticField[com.google.common.collect.Table.columnKey];Argument[-1].SyntheticField[com.google.common.collect.Table.columnKey];value;manual",
-        "com.google.common.collect;ImmutableTable$Builder;true;put;(Cell);;Argument[0].SyntheticField[com.google.common.collect.Table.rowKey];Argument[-1].SyntheticField[com.google.common.collect.Table.rowKey];value;manual",
-        "com.google.common.collect;ImmutableTable$Builder;true;put;(Object,Object,Object);;Argument[-1];ReturnValue;value;manual",
-        "com.google.common.collect;ImmutableTable$Builder;true;put;(Object,Object,Object);;Argument[0];Argument[-1].SyntheticField[com.google.common.collect.Table.rowKey];value;manual",
-        "com.google.common.collect;ImmutableTable$Builder;true;put;(Object,Object,Object);;Argument[1];Argument[-1].SyntheticField[com.google.common.collect.Table.columnKey];value;manual",
-        "com.google.common.collect;ImmutableTable$Builder;true;put;(Object,Object,Object);;Argument[2];Argument[-1].MapValue;value;manual",
-        "com.google.common.collect;ImmutableTable$Builder;true;putAll;(Table);;Argument[-1];ReturnValue;value;manual",
-        "com.google.common.collect;ImmutableTable$Builder;true;putAll;(Table);;Argument[0].MapValue;Argument[-1].MapValue;value;manual",
-        "com.google.common.collect;ImmutableTable$Builder;true;putAll;(Table);;Argument[0].SyntheticField[com.google.common.collect.Table.columnKey];Argument[-1].SyntheticField[com.google.common.collect.Table.columnKey];value;manual",
-        "com.google.common.collect;ImmutableTable$Builder;true;putAll;(Table);;Argument[0].SyntheticField[com.google.common.collect.Table.rowKey];Argument[-1].SyntheticField[com.google.common.collect.Table.rowKey];value;manual",
-        "com.google.common.collect;ImmutableTable;true;copyOf;(Table);;Argument[0].MapValue;ReturnValue.MapValue;value;manual",
-        "com.google.common.collect;ImmutableTable;true;copyOf;(Table);;Argument[0].SyntheticField[com.google.common.collect.Table.columnKey];ReturnValue.SyntheticField[com.google.common.collect.Table.columnKey];value;manual",
-        "com.google.common.collect;ImmutableTable;true;copyOf;(Table);;Argument[0].SyntheticField[com.google.common.collect.Table.rowKey];ReturnValue.SyntheticField[com.google.common.collect.Table.rowKey];value;manual",
-        "com.google.common.collect;ImmutableTable;true;of;(Object,Object,Object);;Argument[0];ReturnValue.SyntheticField[com.google.common.collect.Table.rowKey];value;manual",
-        "com.google.common.collect;ImmutableTable;true;of;(Object,Object,Object);;Argument[1];ReturnValue.SyntheticField[com.google.common.collect.Table.columnKey];value;manual",
-        "com.google.common.collect;ImmutableTable;true;of;(Object,Object,Object);;Argument[2];ReturnValue.MapValue;value;manual",
-        "com.google.common.collect;Iterables;false;addAll;(Collection,Iterable);;Argument[1].Element;Argument[0].Element;value;manual",
-        "com.google.common.collect;Iterables;false;concat;(Iterable);;Argument[0].Element.Element;ReturnValue.Element;value;manual",
-        "com.google.common.collect;Iterables;false;concat;(Iterable,Iterable);;Argument[0..1].Element;ReturnValue.Element;value;manual",
-        "com.google.common.collect;Iterables;false;concat;(Iterable,Iterable,Iterable);;Argument[0..2].Element;ReturnValue.Element;value;manual",
-        "com.google.common.collect;Iterables;false;concat;(Iterable,Iterable,Iterable,Iterable);;Argument[0..3].Element;ReturnValue.Element;value;manual",
-        "com.google.common.collect;Iterables;false;concat;(Iterable[]);;Argument[0].ArrayElement.Element;ReturnValue.Element;value;manual",
-        "com.google.common.collect;Iterables;false;consumingIterable;(Iterable);;Argument[0].Element;ReturnValue.Element;value;manual",
-        "com.google.common.collect;Iterables;false;cycle;(Iterable);;Argument[0].Element;ReturnValue.Element;value;manual",
-        "com.google.common.collect;Iterables;false;cycle;(Object[]);;Argument[0].ArrayElement;ReturnValue.Element;value;manual",
-        "com.google.common.collect;Iterables;false;filter;(Iterable,Class);;Argument[0].Element;ReturnValue.Element;value;manual",
-        "com.google.common.collect;Iterables;false;filter;(Iterable,Predicate);;Argument[0].Element;ReturnValue.Element;value;manual",
-        "com.google.common.collect;Iterables;false;find;(Iterable,Predicate);;Argument[0].Element;ReturnValue;value;manual",
-        "com.google.common.collect;Iterables;false;find;(Iterable,Predicate,Object);;Argument[2];ReturnValue;value;manual",
-        "com.google.common.collect;Iterables;false;find;(Iterable,Predicate,Object);;Argument[0].Element;ReturnValue;value;manual",
-        "com.google.common.collect;Iterables;false;get;(Iterable,int);;Argument[0].Element;ReturnValue;value;manual",
-        "com.google.common.collect;Iterables;false;get;(Iterable,int,Object);;Argument[2];ReturnValue;value;manual",
-        "com.google.common.collect;Iterables;false;get;(Iterable,int,Object);;Argument[0].Element;ReturnValue;value;manual",
-        "com.google.common.collect;Iterables;false;getLast;(Iterable);;Argument[0].Element;ReturnValue;value;manual",
-        "com.google.common.collect;Iterables;false;getLast;(Iterable,Object);;Argument[1];ReturnValue;value;manual",
-        "com.google.common.collect;Iterables;false;getLast;(Iterable,Object);;Argument[0].Element;ReturnValue;value;manual",
-        "com.google.common.collect;Iterables;false;getOnlyElement;(Iterable);;Argument[0].Element;ReturnValue;value;manual",
-        "com.google.common.collect;Iterables;false;getOnlyElement;(Iterable,Object);;Argument[1];ReturnValue;value;manual",
-        "com.google.common.collect;Iterables;false;getOnlyElement;(Iterable,Object);;Argument[0].Element;ReturnValue;value;manual",
-        "com.google.common.collect;Iterables;false;limit;(Iterable,int);;Argument[0].Element;ReturnValue.Element;value;manual",
-        "com.google.common.collect;Iterables;false;mergeSorted;(Iterable,Comparator);;Argument[0].Element.Element;ReturnValue.Element;value;manual",
-        "com.google.common.collect;Iterables;false;paddedPartition;(Iterable,int);;Argument[0].Element;ReturnValue.Element.Element;value;manual",
-        "com.google.common.collect;Iterables;false;partition;(Iterable,int);;Argument[0].Element;ReturnValue.Element.Element;value;manual",
-        "com.google.common.collect;Iterables;false;skip;(Iterable,int);;Argument[0].Element;ReturnValue.Element;value;manual",
-        "com.google.common.collect;Iterables;false;toArray;(Iterable,Class);;Argument[0].Element;ReturnValue.ArrayElement;value;manual",
-        //"com.google.common.collect;Iterables;false;toString;(Iterable);;Element of Argument[0];ReturnValue;taint;manual",
-        "com.google.common.collect;Iterables;false;tryFind;(Iterable,Predicate);;Argument[0].Element;ReturnValue.Element;value;manual",
-        "com.google.common.collect;Iterables;false;unmodifiableIterable;(ImmutableCollection);;Argument[0].Element;ReturnValue.Element;value;manual",
-        "com.google.common.collect;Iterables;false;unmodifiableIterable;(Iterable);;Argument[0].Element;ReturnValue.Element;value;manual",
-        "com.google.common.collect;Iterators;false;addAll;(Collection,Iterator);;Argument[1].Element;Argument[0].Element;value;manual",
-        "com.google.common.collect;Iterators;false;asEnumeration;(Iterator);;Argument[0].Element;ReturnValue.Element;value;manual",
-        "com.google.common.collect;Iterators;false;concat;(Iterator);;Argument[0].Element.Element;ReturnValue.Element;value;manual",
-        "com.google.common.collect;Iterators;false;concat;(Iterator,Iterator);;Argument[0..1].Element;ReturnValue.Element;value;manual",
-        "com.google.common.collect;Iterators;false;concat;(Iterator,Iterator,Iterator);;Argument[0..2].Element;ReturnValue.Element;value;manual",
-        "com.google.common.collect;Iterators;false;concat;(Iterator,Iterator,Iterator,Iterator);;Argument[0..3].Element;ReturnValue.Element;value;manual",
-        "com.google.common.collect;Iterators;false;concat;(Iterator[]);;Argument[0].ArrayElement.Element;ReturnValue.Element;value;manual",
-        "com.google.common.collect;Iterators;false;consumingIterator;(Iterator);;Argument[0].Element;ReturnValue.Element;value;manual",
-        "com.google.common.collect;Iterators;false;cycle;(Iterable);;Argument[0].Element;ReturnValue.Element;value;manual",
-        "com.google.common.collect;Iterators;false;cycle;(Object[]);;Argument[0].ArrayElement;ReturnValue.Element;value;manual",
-        "com.google.common.collect;Iterators;false;filter;(Iterator,Class);;Argument[0].Element;ReturnValue.Element;value;manual",
-        "com.google.common.collect;Iterators;false;filter;(Iterator,Predicate);;Argument[0].Element;ReturnValue.Element;value;manual",
-        "com.google.common.collect;Iterators;false;find;(Iterator,Predicate);;Argument[0].Element;ReturnValue;value;manual",
-        "com.google.common.collect;Iterators;false;find;(Iterator,Predicate,Object);;Argument[2];ReturnValue;value;manual",
-        "com.google.common.collect;Iterators;false;find;(Iterator,Predicate,Object);;Argument[0].Element;ReturnValue;value;manual",
-        "com.google.common.collect;Iterators;false;forArray;(Object[]);;Argument[0].ArrayElement;ReturnValue.Element;value;manual",
-        "com.google.common.collect;Iterators;false;forEnumeration;(Enumeration);;Argument[0].Element;ReturnValue.Element;value;manual",
-        "com.google.common.collect;Iterators;false;get;(Iterator,int);;Argument[0].Element;ReturnValue;value;manual",
-        "com.google.common.collect;Iterators;false;get;(Iterator,int,Object);;Argument[2];ReturnValue;value;manual",
-        "com.google.common.collect;Iterators;false;get;(Iterator,int,Object);;Argument[0].Element;ReturnValue;value;manual",
-        "com.google.common.collect;Iterators;false;getLast;(Iterator);;Argument[0].Element;ReturnValue;value;manual",
-        "com.google.common.collect;Iterators;false;getLast;(Iterator,Object);;Argument[1];ReturnValue;value;manual",
-        "com.google.common.collect;Iterators;false;getLast;(Iterator,Object);;Argument[0].Element;ReturnValue;value;manual",
-        "com.google.common.collect;Iterators;false;getNext;(Iterator,Object);;Argument[1];ReturnValue;value;manual",
-        "com.google.common.collect;Iterators;false;getNext;(Iterator,Object);;Argument[0].Element;ReturnValue;value;manual",
-        "com.google.common.collect;Iterators;false;getOnlyElement;(Iterator);;Argument[0].Element;ReturnValue;value;manual",
-        "com.google.common.collect;Iterators;false;getOnlyElement;(Iterator,Object);;Argument[1];ReturnValue;value;manual",
-        "com.google.common.collect;Iterators;false;getOnlyElement;(Iterator,Object);;Argument[0].Element;ReturnValue;value;manual",
-        "com.google.common.collect;Iterators;false;limit;(Iterator,int);;Argument[0].Element;ReturnValue.Element;value;manual",
-        "com.google.common.collect;Iterators;false;mergeSorted;(Iterable,Comparator);;Argument[0].Element.Element;ReturnValue.Element;value;manual",
-        "com.google.common.collect;Iterators;false;paddedPartition;(Iterator,int);;Argument[0].Element;ReturnValue.Element.Element;value;manual",
-        "com.google.common.collect;Iterators;false;partition;(Iterator,int);;Argument[0].Element;ReturnValue.Element.Element;value;manual",
-        "com.google.common.collect;Iterators;false;peekingIterator;(Iterator);;Argument[0].Element;ReturnValue.Element;value;manual",
-        "com.google.common.collect;Iterators;false;peekingIterator;(PeekingIterator);;Argument[0].Element;ReturnValue.Element;value;manual",
-        "com.google.common.collect;Iterators;false;singletonIterator;(Object);;Argument[0];ReturnValue.Element;value;manual",
-        "com.google.common.collect;Iterators;false;toArray;(Iterator,Class);;Argument[0].Element;ReturnValue.ArrayElement;value;manual",
-        "com.google.common.collect;Iterators;false;tryFind;(Iterator,Predicate);;Argument[0].Element;ReturnValue.Element;value;manual",
-        "com.google.common.collect;Iterators;false;unmodifiableIterator;(Iterator);;Argument[0].Element;ReturnValue.Element;value;manual",
-        "com.google.common.collect;Iterators;false;unmodifiableIterator;(UnmodifiableIterator);;Argument[0].Element;ReturnValue.Element;value;manual",
-        "com.google.common.collect;LinkedHashMultimap;true;create;(Multimap);;Argument[0].MapKey;ReturnValue.MapKey;value;manual",
-        "com.google.common.collect;LinkedHashMultimap;true;create;(Multimap);;Argument[0].MapValue;ReturnValue.MapValue;value;manual",
-        "com.google.common.collect;LinkedHashMultiset;true;create;(Iterable);;Argument[0].Element;ReturnValue.Element;value;manual",
-        "com.google.common.collect;LinkedListMultimap;true;create;(Multimap);;Argument[0].MapKey;ReturnValue.MapKey;value;manual",
-        "com.google.common.collect;LinkedListMultimap;true;create;(Multimap);;Argument[0].MapValue;ReturnValue.MapValue;value;manual",
-        "com.google.common.collect;Lists;false;asList;(Object,Object,Object[]);;Argument[0..1];ReturnValue.Element;value;manual",
-        "com.google.common.collect;Lists;false;asList;(Object,Object,Object[]);;Argument[2].ArrayElement;ReturnValue.Element;value;manual",
-        "com.google.common.collect;Lists;false;asList;(Object,Object[]);;Argument[0];ReturnValue.Element;value;manual",
-        "com.google.common.collect;Lists;false;asList;(Object,Object[]);;Argument[1].ArrayElement;ReturnValue.Element;value;manual",
-        "com.google.common.collect;Lists;false;cartesianProduct;(List);;Argument[0].Element.Element;ReturnValue.Element.Element;value;manual",
-        "com.google.common.collect;Lists;false;cartesianProduct;(List[]);;Argument[0].ArrayElement.Element;ReturnValue.Element.Element;value;manual",
-        "com.google.common.collect;Lists;false;charactersOf;(CharSequence);;Argument[0];ReturnValue.Element;taint;manual",
-        "com.google.common.collect;Lists;false;charactersOf;(String);;Argument[0];ReturnValue.Element;taint;manual",
-        "com.google.common.collect;Lists;false;newArrayList;(Iterable);;Argument[0].Element;ReturnValue.Element;value;manual",
-        "com.google.common.collect;Lists;false;newArrayList;(Iterator);;Argument[0].Element;ReturnValue.Element;value;manual",
-        "com.google.common.collect;Lists;false;newArrayList;(Object[]);;Argument[0].ArrayElement;ReturnValue.Element;value;manual",
-        "com.google.common.collect;Lists;false;newCopyOnWriteArrayList;(Iterable);;Argument[0].Element;ReturnValue.Element;value;manual",
-        "com.google.common.collect;Lists;false;newLinkedList;(Iterable);;Argument[0].Element;ReturnValue.Element;value;manual",
-        "com.google.common.collect;Lists;false;partition;(List,int);;Argument[0].Element;ReturnValue.Element.Element;value;manual",
-        "com.google.common.collect;Lists;false;reverse;(List);;Argument[0].Element;ReturnValue.Element;value;manual",
-        "com.google.common.collect;MapDifference$ValueDifference;true;leftValue;();;Argument[-1].SyntheticField[com.google.common.collect.MapDifference.left];ReturnValue;value;manual",
-        "com.google.common.collect;MapDifference$ValueDifference;true;rightValue;();;Argument[-1].SyntheticField[com.google.common.collect.MapDifference.right];ReturnValue;value;manual",
-        "com.google.common.collect;MapDifference;true;entriesDiffering;();;Argument[-1].SyntheticField[com.google.common.collect.MapDifference.left].MapKey;ReturnValue.MapKey;value;manual",
-        "com.google.common.collect;MapDifference;true;entriesDiffering;();;Argument[-1].SyntheticField[com.google.common.collect.MapDifference.right].MapKey;ReturnValue.MapKey;value;manual",
-        "com.google.common.collect;MapDifference;true;entriesDiffering;();;Argument[-1].SyntheticField[com.google.common.collect.MapDifference.left].MapValue;ReturnValue.MapValue.SyntheticField[com.google.common.collect.MapDifference.left];value;manual",
-        "com.google.common.collect;MapDifference;true;entriesDiffering;();;Argument[-1].SyntheticField[com.google.common.collect.MapDifference.right].MapValue;ReturnValue.MapValue.SyntheticField[com.google.common.collect.MapDifference.right];value;manual",
-        "com.google.common.collect;MapDifference;true;entriesInCommon;();;Argument[-1].SyntheticField[com.google.common.collect.MapDifference.left].MapKey;ReturnValue.MapKey;value;manual",
-        "com.google.common.collect;MapDifference;true;entriesInCommon;();;Argument[-1].SyntheticField[com.google.common.collect.MapDifference.right].MapKey;ReturnValue.MapKey;value;manual",
-        "com.google.common.collect;MapDifference;true;entriesInCommon;();;Argument[-1].SyntheticField[com.google.common.collect.MapDifference.left].MapValue;ReturnValue.MapValue;value;manual",
-        "com.google.common.collect;MapDifference;true;entriesInCommon;();;Argument[-1].SyntheticField[com.google.common.collect.MapDifference.right].MapValue;ReturnValue.MapValue;value;manual",
-        "com.google.common.collect;MapDifference;true;entriesOnlyOnLeft;();;Argument[-1].SyntheticField[com.google.common.collect.MapDifference.left].MapKey;ReturnValue.MapKey;value;manual",
-        "com.google.common.collect;MapDifference;true;entriesOnlyOnLeft;();;Argument[-1].SyntheticField[com.google.common.collect.MapDifference.left].MapValue;ReturnValue.MapValue;value;manual",
-        "com.google.common.collect;MapDifference;true;entriesOnlyOnRight;();;Argument[-1].SyntheticField[com.google.common.collect.MapDifference.right].MapKey;ReturnValue.MapKey;value;manual",
-        "com.google.common.collect;MapDifference;true;entriesOnlyOnRight;();;Argument[-1].SyntheticField[com.google.common.collect.MapDifference.right].MapValue;ReturnValue.MapValue;value;manual",
-        "com.google.common.collect;Maps;false;asMap;(NavigableSet,Function);;Argument[0].Element;ReturnValue.MapKey;value;manual",
-        "com.google.common.collect;Maps;false;asMap;(Set,Function);;Argument[0].Element;ReturnValue.MapKey;value;manual",
-        "com.google.common.collect;Maps;false;asMap;(SortedSet,Function);;Argument[0].Element;ReturnValue.MapKey;value;manual",
-        "com.google.common.collect;Maps;false;difference;(Map,Map);;Argument[0].MapKey;ReturnValue.SyntheticField[com.google.common.collect.MapDifference.left].MapKey;value;manual",
-        "com.google.common.collect;Maps;false;difference;(Map,Map);;Argument[1].MapKey;ReturnValue.SyntheticField[com.google.common.collect.MapDifference.right].MapKey;value;manual",
-        "com.google.common.collect;Maps;false;difference;(Map,Map);;Argument[0].MapValue;ReturnValue.SyntheticField[com.google.common.collect.MapDifference.left].MapValue;value;manual",
-        "com.google.common.collect;Maps;false;difference;(Map,Map);;Argument[1].MapValue;ReturnValue.SyntheticField[com.google.common.collect.MapDifference.right].MapValue;value;manual",
-        "com.google.common.collect;Maps;false;difference;(Map,Map,Equivalence);;Argument[0].MapKey;ReturnValue.SyntheticField[com.google.common.collect.MapDifference.left].MapKey;value;manual",
-        "com.google.common.collect;Maps;false;difference;(Map,Map,Equivalence);;Argument[1].MapKey;ReturnValue.SyntheticField[com.google.common.collect.MapDifference.right].MapKey;value;manual",
-        "com.google.common.collect;Maps;false;difference;(Map,Map,Equivalence);;Argument[0].MapValue;ReturnValue.SyntheticField[com.google.common.collect.MapDifference.left].MapValue;value;manual",
-        "com.google.common.collect;Maps;false;difference;(Map,Map,Equivalence);;Argument[1].MapValue;ReturnValue.SyntheticField[com.google.common.collect.MapDifference.right].MapValue;value;manual",
-        "com.google.common.collect;Maps;false;difference;(SortedMap,Map);;Argument[0].MapKey;ReturnValue.SyntheticField[com.google.common.collect.MapDifference.left].MapKey;value;manual",
-        "com.google.common.collect;Maps;false;difference;(SortedMap,Map);;Argument[1].MapKey;ReturnValue.SyntheticField[com.google.common.collect.MapDifference.right].MapKey;value;manual",
-        "com.google.common.collect;Maps;false;difference;(SortedMap,Map);;Argument[0].MapValue;ReturnValue.SyntheticField[com.google.common.collect.MapDifference.left].MapValue;value;manual",
-        "com.google.common.collect;Maps;false;difference;(SortedMap,Map);;Argument[1].MapValue;ReturnValue.SyntheticField[com.google.common.collect.MapDifference.right].MapValue;value;manual",
-        "com.google.common.collect;Maps;false;filterEntries;;;Argument[0].MapKey;ReturnValue.MapKey;value;manual",
-        "com.google.common.collect;Maps;false;filterKeys;;;Argument[0].MapKey;ReturnValue.MapKey;value;manual",
-        "com.google.common.collect;Maps;false;filterValues;;;Argument[0].MapKey;ReturnValue.MapKey;value;manual",
-        "com.google.common.collect;Maps;false;fromProperties;(Properties);;Argument[0].MapKey;ReturnValue.MapKey;value;manual",
-        "com.google.common.collect;Maps;false;fromProperties;(Properties);;Argument[0].MapValue;ReturnValue.MapValue;value;manual",
-        "com.google.common.collect;Maps;false;immutableEntry;(Object,Object);;Argument[0];ReturnValue.MapKey;value;manual",
-        "com.google.common.collect;Maps;false;immutableEntry;(Object,Object);;Argument[1];ReturnValue.MapValue;value;manual",
-        "com.google.common.collect;Maps;false;immutableEnumMap;(Map);;Argument[0].MapValue;ReturnValue.MapValue;value;manual",
-        "com.google.common.collect;Maps;false;newEnumMap;(Map);;Argument[0].MapValue;ReturnValue.MapValue;value;manual",
-        "com.google.common.collect;Maps;false;newHashMap;(Map);;Argument[0].MapKey;ReturnValue.MapKey;value;manual",
-        "com.google.common.collect;Maps;false;newHashMap;(Map);;Argument[0].MapValue;ReturnValue.MapValue;value;manual",
-        "com.google.common.collect;Maps;false;newLinkedHashMap;(Map);;Argument[0].MapKey;ReturnValue.MapKey;value;manual",
-        "com.google.common.collect;Maps;false;newLinkedHashMap;(Map);;Argument[0].MapValue;ReturnValue.MapValue;value;manual",
-        "com.google.common.collect;Maps;false;newTreeMap;(SortedMap);;Argument[0].MapKey;ReturnValue.MapKey;value;manual",
-        "com.google.common.collect;Maps;false;newTreeMap;(SortedMap);;Argument[0].MapValue;ReturnValue.MapValue;value;manual",
-        "com.google.common.collect;Maps;false;subMap;(NavigableMap,Range);;Argument[0].MapKey;ReturnValue.MapKey;value;manual",
-        "com.google.common.collect;Maps;false;subMap;(NavigableMap,Range);;Argument[0].MapValue;ReturnValue.MapValue;value;manual",
-        "com.google.common.collect;Maps;false;synchronizedBiMap;(BiMap);;Argument[0].MapKey;ReturnValue.MapKey;value;manual",
-        "com.google.common.collect;Maps;false;synchronizedBiMap;(BiMap);;Argument[0].MapValue;ReturnValue.MapValue;value;manual",
-        "com.google.common.collect;Maps;false;synchronizedNavigableMap;(NavigableMap);;Argument[0].MapKey;ReturnValue.MapKey;value;manual",
-        "com.google.common.collect;Maps;false;synchronizedNavigableMap;(NavigableMap);;Argument[0].MapValue;ReturnValue.MapValue;value;manual",
-        "com.google.common.collect;Maps;false;toMap;(Iterable,Function);;Argument[0].Element;ReturnValue.MapKey;value;manual",
-        "com.google.common.collect;Maps;false;toMap;(Iterator,Function);;Argument[0].Element;ReturnValue.MapKey;value;manual",
-        "com.google.common.collect;Maps;false;transformValues;(Map,Function);;Argument[0].MapKey;ReturnValue.MapKey;value;manual",
-        "com.google.common.collect;Maps;false;transformValues;(NavigableMap,Function);;Argument[0].MapKey;ReturnValue.MapKey;value;manual",
-        "com.google.common.collect;Maps;false;transformValues;(SortedMap,Function);;Argument[0].MapKey;ReturnValue.MapKey;value;manual",
-        "com.google.common.collect;Maps;false;uniqueIndex;(Iterable,Function);;Argument[0].Element;ReturnValue.MapValue;value;manual",
-        "com.google.common.collect;Maps;false;uniqueIndex;(Iterator,Function);;Argument[0].Element;ReturnValue.MapValue;value;manual",
-        "com.google.common.collect;Maps;false;unmodifiableBiMap;(BiMap);;Argument[0].MapKey;ReturnValue.MapKey;value;manual",
-        "com.google.common.collect;Maps;false;unmodifiableBiMap;(BiMap);;Argument[0].MapValue;ReturnValue.MapValue;value;manual",
-        "com.google.common.collect;Maps;false;unmodifiableNavigableMap;(NavigableMap);;Argument[0].MapKey;ReturnValue.MapKey;value;manual",
-        "com.google.common.collect;Maps;false;unmodifiableNavigableMap;(NavigableMap);;Argument[0].MapValue;ReturnValue.MapValue;value;manual",
-        "com.google.common.collect;Multimap;true;asMap;();;Argument[-1].MapKey;ReturnValue.MapKey;value;manual",
-        "com.google.common.collect;Multimap;true;asMap;();;Argument[-1].MapValue;ReturnValue.MapValue.Element;value;manual",
-        "com.google.common.collect;Multimap;true;entries;();;Argument[-1].MapKey;ReturnValue.Element.MapKey;value;manual",
-        "com.google.common.collect;Multimap;true;entries;();;Argument[-1].MapValue;ReturnValue.Element.MapValue;value;manual",
-        "com.google.common.collect;Multimap;true;get;(Object);;Argument[-1].MapValue;ReturnValue.Element;value;manual",
-        "com.google.common.collect;Multimap;true;keySet;();;Argument[-1].MapKey;ReturnValue.Element;value;manual",
-        "com.google.common.collect;Multimap;true;keys;();;Argument[-1].MapKey;ReturnValue.Element;value;manual",
-        "com.google.common.collect;Multimap;true;put;(Object,Object);;Argument[0];Argument[-1].MapKey;value;manual",
-        "com.google.common.collect;Multimap;true;put;(Object,Object);;Argument[1];Argument[-1].MapValue;value;manual",
-        "com.google.common.collect;Multimap;true;putAll;(Multimap);;Argument[0].MapKey;Argument[-1].MapKey;value;manual",
-        "com.google.common.collect;Multimap;true;putAll;(Multimap);;Argument[0].MapValue;Argument[-1].MapValue;value;manual",
-        "com.google.common.collect;Multimap;true;putAll;(Object,Iterable);;Argument[0];Argument[-1].MapKey;value;manual",
-        "com.google.common.collect;Multimap;true;putAll;(Object,Iterable);;Argument[1].Element;Argument[-1].MapValue;value;manual",
-        "com.google.common.collect;Multimap;true;removeAll;(Object);;Argument[-1].MapValue;ReturnValue.Element;value;manual",
-        "com.google.common.collect;Multimap;true;replaceValues;(Object,Iterable);;Argument[0];Argument[-1].MapKey;value;manual",
-        "com.google.common.collect;Multimap;true;replaceValues;(Object,Iterable);;Argument[1].Element;Argument[-1].MapValue;value;manual",
-        "com.google.common.collect;Multimap;true;replaceValues;(Object,Iterable);;Argument[-1].MapValue;ReturnValue.Element;value;manual",
-        "com.google.common.collect;Multimap;true;values;();;Argument[-1].MapValue;ReturnValue.Element;value;manual",
-        "com.google.common.collect;Multimaps;false;asMap;(ListMultimap);;Argument[0].MapKey;ReturnValue.MapKey;value;manual",
-        "com.google.common.collect;Multimaps;false;asMap;(ListMultimap);;Argument[0].MapValue;ReturnValue.MapValue.Element;value;manual",
-        "com.google.common.collect;Multimaps;false;asMap;(Multimap);;Argument[0].MapKey;ReturnValue.MapKey;value;manual",
-        "com.google.common.collect;Multimaps;false;asMap;(Multimap);;Argument[0].MapValue;ReturnValue.MapValue.Element;value;manual",
-        "com.google.common.collect;Multimaps;false;asMap;(SetMultimap);;Argument[0].MapKey;ReturnValue.MapKey;value;manual",
-        "com.google.common.collect;Multimaps;false;asMap;(SetMultimap);;Argument[0].MapValue;ReturnValue.MapValue.Element;value;manual",
-        "com.google.common.collect;Multimaps;false;asMap;(SortedSetMultimap);;Argument[0].MapKey;ReturnValue.MapKey;value;manual",
-        "com.google.common.collect;Multimaps;false;asMap;(SortedSetMultimap);;Argument[0].MapValue;ReturnValue.MapValue.Element;value;manual",
-        "com.google.common.collect;Multimaps;false;filterEntries;(Multimap,Predicate);;Argument[0].MapKey;ReturnValue.MapKey;value;manual",
-        "com.google.common.collect;Multimaps;false;filterEntries;(Multimap,Predicate);;Argument[0].MapValue;ReturnValue.MapValue;value;manual",
-        "com.google.common.collect;Multimaps;false;filterEntries;(SetMultimap,Predicate);;Argument[0].MapKey;ReturnValue.MapKey;value;manual",
-        "com.google.common.collect;Multimaps;false;filterEntries;(SetMultimap,Predicate);;Argument[0].MapValue;ReturnValue.MapValue;value;manual",
-        "com.google.common.collect;Multimaps;false;filterKeys;(Multimap,Predicate);;Argument[0].MapKey;ReturnValue.MapKey;value;manual",
-        "com.google.common.collect;Multimaps;false;filterKeys;(Multimap,Predicate);;Argument[0].MapValue;ReturnValue.MapValue;value;manual",
-        "com.google.common.collect;Multimaps;false;filterKeys;(SetMultimap,Predicate);;Argument[0].MapKey;ReturnValue.MapKey;value;manual",
-        "com.google.common.collect;Multimaps;false;filterKeys;(SetMultimap,Predicate);;Argument[0].MapValue;ReturnValue.MapValue;value;manual",
-        "com.google.common.collect;Multimaps;false;filterValues;(Multimap,Predicate);;Argument[0].MapKey;ReturnValue.MapKey;value;manual",
-        "com.google.common.collect;Multimaps;false;filterValues;(Multimap,Predicate);;Argument[0].MapValue;ReturnValue.MapValue;value;manual",
-        "com.google.common.collect;Multimaps;false;filterValues;(SetMultimap,Predicate);;Argument[0].MapKey;ReturnValue.MapKey;value;manual",
-        "com.google.common.collect;Multimaps;false;filterValues;(SetMultimap,Predicate);;Argument[0].MapValue;ReturnValue.MapValue;value;manual",
-        "com.google.common.collect;Multimaps;false;forMap;(Map);;Argument[0].MapKey;ReturnValue.MapKey;value;manual",
-        "com.google.common.collect;Multimaps;false;forMap;(Map);;Argument[0].MapValue;ReturnValue.MapValue;value;manual",
-        "com.google.common.collect;Multimaps;false;index;(Iterable,Function);;Argument[0].Element;ReturnValue.MapValue;value;manual",
-        "com.google.common.collect;Multimaps;false;index;(Iterator,Function);;Argument[0].Element;ReturnValue.MapValue;value;manual",
-        "com.google.common.collect;Multimaps;false;invertFrom;(Multimap,Multimap);;Argument[1];ReturnValue;value;manual",
-        "com.google.common.collect;Multimaps;false;invertFrom;(Multimap,Multimap);;Argument[0].MapKey;Argument[1].MapValue;value;manual",
-        "com.google.common.collect;Multimaps;false;invertFrom;(Multimap,Multimap);;Argument[0].MapValue;Argument[1].MapKey;value;manual",
-        "com.google.common.collect;Multimaps;false;newListMultimap;(Map,Supplier);;Argument[0].MapValue.Element;ReturnValue.MapValue;value;manual",
-        "com.google.common.collect;Multimaps;false;newListMultimap;(Map,Supplier);;Argument[0].MapKey;ReturnValue.MapKey;value;manual",
-        "com.google.common.collect;Multimaps;false;newMultimap;(Map,Supplier);;Argument[0].MapValue.Element;ReturnValue.MapValue;value;manual",
-        "com.google.common.collect;Multimaps;false;newMultimap;(Map,Supplier);;Argument[0].MapKey;ReturnValue.MapKey;value;manual",
-        "com.google.common.collect;Multimaps;false;newSetMultimap;(Map,Supplier);;Argument[0].MapValue.Element;ReturnValue.MapValue;value;manual",
-        "com.google.common.collect;Multimaps;false;newSetMultimap;(Map,Supplier);;Argument[0].MapKey;ReturnValue.MapKey;value;manual",
-        "com.google.common.collect;Multimaps;false;newSortedSetMultimap;(Map,Supplier);;Argument[0].MapValue.Element;ReturnValue.MapValue;value;manual",
-        "com.google.common.collect;Multimaps;false;newSortedSetMultimap;(Map,Supplier);;Argument[0].MapKey;ReturnValue.MapKey;value;manual",
-        "com.google.common.collect;Multimaps;false;synchronizedListMultimap;(ListMultimap);;Argument[0].MapKey;ReturnValue.MapKey;value;manual",
-        "com.google.common.collect;Multimaps;false;synchronizedListMultimap;(ListMultimap);;Argument[0].MapValue;ReturnValue.MapValue;value;manual",
-        "com.google.common.collect;Multimaps;false;synchronizedMultimap;(Multimap);;Argument[0].MapKey;ReturnValue.MapKey;value;manual",
-        "com.google.common.collect;Multimaps;false;synchronizedMultimap;(Multimap);;Argument[0].MapValue;ReturnValue.MapValue;value;manual",
-        "com.google.common.collect;Multimaps;false;synchronizedSetMultimap;(SetMultimap);;Argument[0].MapKey;ReturnValue.MapKey;value;manual",
-        "com.google.common.collect;Multimaps;false;synchronizedSetMultimap;(SetMultimap);;Argument[0].MapValue;ReturnValue.MapValue;value;manual",
-        "com.google.common.collect;Multimaps;false;synchronizedSortedSetMultimap;(SortedSetMultimap);;Argument[0].MapKey;ReturnValue.MapKey;value;manual",
-        "com.google.common.collect;Multimaps;false;synchronizedSortedSetMultimap;(SortedSetMultimap);;Argument[0].MapValue;ReturnValue.MapValue;value;manual",
-        "com.google.common.collect;Multimaps;false;transformValues;(ListMultimap,Function);;Argument[0].MapKey;ReturnValue.MapKey;value;manual",
-        "com.google.common.collect;Multimaps;false;transformValues;(Multimap,Function);;Argument[0].MapKey;ReturnValue.MapKey;value;manual",
-        "com.google.common.collect;Multimaps;false;unmodifiableListMultimap;(ImmutableListMultimap);;Argument[0].MapKey;ReturnValue.MapKey;value;manual",
-        "com.google.common.collect;Multimaps;false;unmodifiableListMultimap;(ImmutableListMultimap);;Argument[0].MapValue;ReturnValue.MapValue;value;manual",
-        "com.google.common.collect;Multimaps;false;unmodifiableListMultimap;(ListMultimap);;Argument[0].MapKey;ReturnValue.MapKey;value;manual",
-        "com.google.common.collect;Multimaps;false;unmodifiableListMultimap;(ListMultimap);;Argument[0].MapValue;ReturnValue.MapValue;value;manual",
-        "com.google.common.collect;Multimaps;false;unmodifiableMultimap;(ImmutableMultimap);;Argument[0].MapKey;ReturnValue.MapKey;value;manual",
-        "com.google.common.collect;Multimaps;false;unmodifiableMultimap;(ImmutableMultimap);;Argument[0].MapValue;ReturnValue.MapValue;value;manual",
-        "com.google.common.collect;Multimaps;false;unmodifiableMultimap;(Multimap);;Argument[0].MapKey;ReturnValue.MapKey;value;manual",
-        "com.google.common.collect;Multimaps;false;unmodifiableMultimap;(Multimap);;Argument[0].MapValue;ReturnValue.MapValue;value;manual",
-        "com.google.common.collect;Multimaps;false;unmodifiableSetMultimap;(ImmutableSetMultimap);;Argument[0].MapKey;ReturnValue.MapKey;value;manual",
-        "com.google.common.collect;Multimaps;false;unmodifiableSetMultimap;(ImmutableSetMultimap);;Argument[0].MapValue;ReturnValue.MapValue;value;manual",
-        "com.google.common.collect;Multimaps;false;unmodifiableSetMultimap;(SetMultimap);;Argument[0].MapKey;ReturnValue.MapKey;value;manual",
-        "com.google.common.collect;Multimaps;false;unmodifiableSetMultimap;(SetMultimap);;Argument[0].MapValue;ReturnValue.MapValue;value;manual",
-        "com.google.common.collect;Multimaps;false;unmodifiableSortedSetMultimap;(SortedSetMultimap);;Argument[0].MapKey;ReturnValue.MapKey;value;manual",
-        "com.google.common.collect;Multimaps;false;unmodifiableSortedSetMultimap;(SortedSetMultimap);;Argument[0].MapValue;ReturnValue.MapValue;value;manual",
-        "com.google.common.collect;Multiset$Entry;true;getElement;();;Argument[-1].Element;ReturnValue;value;manual",
-        "com.google.common.collect;Multiset;true;add;(Object,int);;Argument[0];Argument[-1].Element;value;manual",
-        "com.google.common.collect;Multiset;true;elementSet;();;Argument[-1].Element;ReturnValue.Element;value;manual",
-        "com.google.common.collect;Multiset;true;entrySet;();;Argument[-1].Element;ReturnValue.Element.Element;value;manual",
-        "com.google.common.collect;Multiset;true;setCount;(Object,int);;Argument[0];Argument[-1].Element;value;manual",
-        "com.google.common.collect;Multiset;true;setCount;(Object,int,int);;Argument[0];Argument[-1].Element;value;manual",
-        "com.google.common.collect;Multisets;false;copyHighestCountFirst;(Multiset);;Argument[0].Element;ReturnValue.Element;value;manual",
-        "com.google.common.collect;Multisets;false;difference;(Multiset,Multiset);;Argument[0].Element;ReturnValue.Element;value;manual",
-        "com.google.common.collect;Multisets;false;filter;(Multiset,Predicate);;Argument[0].Element;ReturnValue.Element;value;manual",
-        "com.google.common.collect;Multisets;false;immutableEntry;(Object,int);;Argument[0];ReturnValue.Element;value;manual",
-        "com.google.common.collect;Multisets;false;intersection;(Multiset,Multiset);;Argument[0..1].Element;ReturnValue.Element;value;manual",
-        "com.google.common.collect;Multisets;false;sum;(Multiset,Multiset);;Argument[0..1].Element;ReturnValue.Element;value;manual",
-        "com.google.common.collect;Multisets;false;union;(Multiset,Multiset);;Argument[0..1].Element;ReturnValue.Element;value;manual",
-        "com.google.common.collect;Multisets;false;unmodifiableMultiset;(ImmutableMultiset);;Argument[0].Element;ReturnValue.Element;value;manual",
-        "com.google.common.collect;Multisets;false;unmodifiableMultiset;(Multiset);;Argument[0].Element;ReturnValue.Element;value;manual",
-        "com.google.common.collect;Multisets;false;unmodifiableSortedMultiset;(SortedMultiset);;Argument[0].Element;ReturnValue.Element;value;manual",
-        "com.google.common.collect;MutableClassToInstanceMap;true;create;(Map);;Argument[0].MapKey;ReturnValue.MapKey;value;manual",
-        "com.google.common.collect;MutableClassToInstanceMap;true;create;(Map);;Argument[0].MapValue;ReturnValue.MapValue;value;manual",
-        "com.google.common.collect;ObjectArrays;false;concat;(Object,Object[]);;Argument[0];ReturnValue.ArrayElement;value;manual",
-        "com.google.common.collect;ObjectArrays;false;concat;(Object,Object[]);;Argument[1].ArrayElement;ReturnValue.ArrayElement;value;manual",
-        "com.google.common.collect;ObjectArrays;false;concat;(Object[],Object);;Argument[1];ReturnValue.ArrayElement;value;manual",
-        "com.google.common.collect;ObjectArrays;false;concat;(Object[],Object);;Argument[0].ArrayElement;ReturnValue.ArrayElement;value;manual",
-        "com.google.common.collect;ObjectArrays;false;concat;(Object[],Object[],Class);;Argument[0..1].ArrayElement;ReturnValue.ArrayElement;value;manual",
-        "com.google.common.collect;Queues;false;drain;(BlockingQueue,Collection,int,Duration);;Argument[0].Element;Argument[1].Element;value;manual",
-        "com.google.common.collect;Queues;false;drain;(BlockingQueue,Collection,int,long,TimeUnit);;Argument[0].Element;Argument[1].Element;value;manual",
-        "com.google.common.collect;Queues;false;newArrayDeque;(Iterable);;Argument[0].Element;ReturnValue.Element;value;manual",
-        "com.google.common.collect;Queues;false;newConcurrentLinkedQueue;(Iterable);;Argument[0].Element;ReturnValue.Element;value;manual",
-        "com.google.common.collect;Queues;false;newLinkedBlockingDeque;(Iterable);;Argument[0].Element;ReturnValue.Element;value;manual",
-        "com.google.common.collect;Queues;false;newLinkedBlockingQueue;(Iterable);;Argument[0].Element;ReturnValue.Element;value;manual",
-        "com.google.common.collect;Queues;false;newPriorityBlockingQueue;(Iterable);;Argument[0].Element;ReturnValue.Element;value;manual",
-        "com.google.common.collect;Queues;false;newPriorityQueue;(Iterable);;Argument[0].Element;ReturnValue.Element;value;manual",
-        "com.google.common.collect;Queues;false;synchronizedDeque;(Deque);;Argument[0].Element;ReturnValue.Element;value;manual",
-        "com.google.common.collect;Queues;false;synchronizedQueue;(Queue);;Argument[0].Element;ReturnValue.Element;value;manual",
-        "com.google.common.collect;Sets$SetView;true;copyInto;(Set);;Argument[-1].Element;Argument[0].Element;value;manual",
-        "com.google.common.collect;Sets$SetView;true;immutableCopy;();;Argument[-1].Element;ReturnValue.Element;value;manual",
-        "com.google.common.collect;Sets;false;cartesianProduct;(List);;Argument[0].Element.Element;ReturnValue.Element.Element;value;manual",
-        "com.google.common.collect;Sets;false;cartesianProduct;(Set[]);;Argument[0].ArrayElement.Element;ReturnValue.Element.Element;value;manual",
-        "com.google.common.collect;Sets;false;combinations;(Set,int);;Argument[0].Element;ReturnValue.Element.Element;value;manual",
-        "com.google.common.collect;Sets;false;difference;(Set,Set);;Argument[0].Element;ReturnValue.Element;value;manual",
-        "com.google.common.collect;Sets;false;filter;(NavigableSet,Predicate);;Argument[0].Element;ReturnValue.Element;value;manual",
-        "com.google.common.collect;Sets;false;filter;(Set,Predicate);;Argument[0].Element;ReturnValue.Element;value;manual",
-        "com.google.common.collect;Sets;false;filter;(SortedSet,Predicate);;Argument[0].Element;ReturnValue.Element;value;manual",
-        "com.google.common.collect;Sets;false;intersection;(Set,Set);;Argument[0..1].Element;ReturnValue.Element;value;manual",
-        "com.google.common.collect;Sets;false;newConcurrentHashSet;(Iterable);;Argument[0].Element;ReturnValue.Element;value;manual",
-        "com.google.common.collect;Sets;false;newCopyOnWriteArraySet;(Iterable);;Argument[0].Element;ReturnValue.Element;value;manual",
-        "com.google.common.collect;Sets;false;newHashSet;(Iterable);;Argument[0].Element;ReturnValue.Element;value;manual",
-        "com.google.common.collect;Sets;false;newHashSet;(Iterator);;Argument[0].Element;ReturnValue.Element;value;manual",
-        "com.google.common.collect;Sets;false;newHashSet;(Object[]);;Argument[0].ArrayElement;ReturnValue.Element;value;manual",
-        "com.google.common.collect;Sets;false;newLinkedHashSet;(Iterable);;Argument[0].Element;ReturnValue.Element;value;manual",
-        "com.google.common.collect;Sets;false;newSetFromMap;(Map);;Argument[0].MapKey;ReturnValue.Element;value;manual",
-        "com.google.common.collect;Sets;false;newTreeSet;(Iterable);;Argument[0].Element;ReturnValue.Element;value;manual",
-        "com.google.common.collect;Sets;false;powerSet;(Set);;Argument[0].Element;ReturnValue.Element.Element;value;manual",
-        "com.google.common.collect;Sets;false;subSet;(NavigableSet,Range);;Argument[0].Element;ReturnValue.Element;value;manual",
-        "com.google.common.collect;Sets;false;symmetricDifference;(Set,Set);;Argument[0..1].Element;ReturnValue.Element;value;manual",
-        "com.google.common.collect;Sets;false;synchronizedNavigableSet;(NavigableSet);;Argument[0].Element;ReturnValue.Element;value;manual",
-        "com.google.common.collect;Sets;false;union;(Set,Set);;Argument[0..1].Element;ReturnValue.Element;value;manual",
-        "com.google.common.collect;Sets;false;unmodifiableNavigableSet;(NavigableSet);;Argument[0].Element;ReturnValue.Element;value;manual",
-        "com.google.common.collect;Table$Cell;true;getColumnKey;();;Argument[-1].SyntheticField[com.google.common.collect.Table.columnKey];ReturnValue;value;manual",
-        "com.google.common.collect;Table$Cell;true;getRowKey;();;Argument[-1].SyntheticField[com.google.common.collect.Table.rowKey];ReturnValue;value;manual",
-        "com.google.common.collect;Table$Cell;true;getValue;();;Argument[-1].MapValue;ReturnValue;value;manual",
-        "com.google.common.collect;Table;true;cellSet;();;Argument[-1].MapValue;ReturnValue.Element.MapValue;value;manual",
-        "com.google.common.collect;Table;true;cellSet;();;Argument[-1].SyntheticField[com.google.common.collect.Table.columnKey];ReturnValue.Element.SyntheticField[com.google.common.collect.Table.columnKey];value;manual",
-        "com.google.common.collect;Table;true;cellSet;();;Argument[-1].SyntheticField[com.google.common.collect.Table.rowKey];ReturnValue.Element.SyntheticField[com.google.common.collect.Table.rowKey];value;manual",
-        "com.google.common.collect;Table;true;column;(Object);;Argument[-1].MapValue;ReturnValue.MapValue;value;manual",
-        "com.google.common.collect;Table;true;column;(Object);;Argument[-1].SyntheticField[com.google.common.collect.Table.rowKey];ReturnValue.MapKey;value;manual",
-        "com.google.common.collect;Table;true;columnKeySet;();;Argument[-1].SyntheticField[com.google.common.collect.Table.columnKey];ReturnValue.Element;value;manual",
-        "com.google.common.collect;Table;true;columnMap;();;Argument[-1].MapValue;ReturnValue.MapValue.MapValue;value;manual",
-        "com.google.common.collect;Table;true;columnMap;();;Argument[-1].SyntheticField[com.google.common.collect.Table.columnKey];ReturnValue.MapKey;value;manual",
-        "com.google.common.collect;Table;true;columnMap;();;Argument[-1].SyntheticField[com.google.common.collect.Table.rowKey];ReturnValue.MapValue.MapKey;value;manual",
-        "com.google.common.collect;Table;true;get;(Object,Object);;Argument[-1].MapValue;ReturnValue;value;manual",
-        "com.google.common.collect;Table;true;put;(Object,Object,Object);;Argument[0];Argument[-1].SyntheticField[com.google.common.collect.Table.rowKey];value;manual",
-        "com.google.common.collect;Table;true;put;(Object,Object,Object);;Argument[1];Argument[-1].SyntheticField[com.google.common.collect.Table.columnKey];value;manual",
-        "com.google.common.collect;Table;true;put;(Object,Object,Object);;Argument[2];Argument[-1].MapValue;value;manual",
-        "com.google.common.collect;Table;true;putAll;(Table);;Argument[0].MapValue;Argument[-1].MapValue;value;manual",
-        "com.google.common.collect;Table;true;putAll;(Table);;Argument[0].SyntheticField[com.google.common.collect.Table.columnKey];Argument[-1].SyntheticField[com.google.common.collect.Table.columnKey];value;manual",
-        "com.google.common.collect;Table;true;putAll;(Table);;Argument[0].SyntheticField[com.google.common.collect.Table.rowKey];Argument[-1].SyntheticField[com.google.common.collect.Table.rowKey];value;manual",
-        "com.google.common.collect;Table;true;remove;(Object,Object);;Argument[-1].MapValue;ReturnValue;value;manual",
-        "com.google.common.collect;Table;true;row;(Object);;Argument[-1].MapValue;ReturnValue.MapValue;value;manual",
-        "com.google.common.collect;Table;true;row;(Object);;Argument[-1].SyntheticField[com.google.common.collect.Table.columnKey];ReturnValue.MapKey;value;manual",
-        "com.google.common.collect;Table;true;rowKeySet;();;Argument[-1].SyntheticField[com.google.common.collect.Table.rowKey];ReturnValue.Element;value;manual",
-        "com.google.common.collect;Table;true;rowMap;();;Argument[-1].MapValue;ReturnValue.MapValue.MapValue;value;manual",
-        "com.google.common.collect;Table;true;rowMap;();;Argument[-1].SyntheticField[com.google.common.collect.Table.columnKey];ReturnValue.MapValue.MapKey;value;manual",
-        "com.google.common.collect;Table;true;rowMap;();;Argument[-1].SyntheticField[com.google.common.collect.Table.rowKey];ReturnValue.MapKey;value;manual",
-        "com.google.common.collect;Table;true;values;();;Argument[-1].MapValue;ReturnValue.Element;value;manual",
-        "com.google.common.collect;Tables;false;immutableCell;(Object,Object,Object);;Argument[0];ReturnValue.SyntheticField[com.google.common.collect.Table.rowKey];value;manual",
-        "com.google.common.collect;Tables;false;immutableCell;(Object,Object,Object);;Argument[1];ReturnValue.SyntheticField[com.google.common.collect.Table.columnKey];value;manual",
-        "com.google.common.collect;Tables;false;immutableCell;(Object,Object,Object);;Argument[2];ReturnValue.MapValue;value;manual",
-        "com.google.common.collect;Tables;false;newCustomTable;(Map,Supplier);;Argument[0].MapKey;ReturnValue.SyntheticField[com.google.common.collect.Table.rowKey];value;manual",
-        "com.google.common.collect;Tables;false;newCustomTable;(Map,Supplier);;Argument[0].MapValue.MapKey;ReturnValue.SyntheticField[com.google.common.collect.Table.columnKey];value;manual",
-        "com.google.common.collect;Tables;false;newCustomTable;(Map,Supplier);;Argument[0].MapValue.MapValue;ReturnValue.MapValue;value;manual",
-        "com.google.common.collect;Tables;false;synchronizedTable;(Table);;Argument[0].MapValue;ReturnValue.MapValue;value;manual",
-        "com.google.common.collect;Tables;false;synchronizedTable;(Table);;Argument[0].SyntheticField[com.google.common.collect.Table.columnKey];ReturnValue.SyntheticField[com.google.common.collect.Table.columnKey];value;manual",
-        "com.google.common.collect;Tables;false;synchronizedTable;(Table);;Argument[0].SyntheticField[com.google.common.collect.Table.rowKey];ReturnValue.SyntheticField[com.google.common.collect.Table.rowKey];value;manual",
-        "com.google.common.collect;Tables;false;transformValues;(Table,Function);;Argument[0].SyntheticField[com.google.common.collect.Table.columnKey];ReturnValue.SyntheticField[com.google.common.collect.Table.columnKey];value;manual",
-        "com.google.common.collect;Tables;false;transformValues;(Table,Function);;Argument[0].SyntheticField[com.google.common.collect.Table.rowKey];ReturnValue.SyntheticField[com.google.common.collect.Table.rowKey];value;manual",
-        "com.google.common.collect;Tables;false;transpose;(Table);;Argument[0].MapValue;ReturnValue.MapValue;value;manual",
-        "com.google.common.collect;Tables;false;transpose;(Table);;Argument[0].SyntheticField[com.google.common.collect.Table.columnKey];ReturnValue.SyntheticField[com.google.common.collect.Table.rowKey];value;manual",
-        "com.google.common.collect;Tables;false;transpose;(Table);;Argument[0].SyntheticField[com.google.common.collect.Table.rowKey];ReturnValue.SyntheticField[com.google.common.collect.Table.columnKey];value;manual",
-        "com.google.common.collect;Tables;false;unmodifiableRowSortedTable;(RowSortedTable);;Argument[0].MapValue;ReturnValue.MapValue;value;manual",
-        "com.google.common.collect;Tables;false;unmodifiableRowSortedTable;(RowSortedTable);;Argument[0].SyntheticField[com.google.common.collect.Table.columnKey];ReturnValue.SyntheticField[com.google.common.collect.Table.columnKey];value;manual",
-        "com.google.common.collect;Tables;false;unmodifiableRowSortedTable;(RowSortedTable);;Argument[0].SyntheticField[com.google.common.collect.Table.rowKey];ReturnValue.SyntheticField[com.google.common.collect.Table.rowKey];value;manual",
-        "com.google.common.collect;Tables;false;unmodifiableTable;(Table);;Argument[0].MapValue;ReturnValue.MapValue;value;manual",
-        "com.google.common.collect;Tables;false;unmodifiableTable;(Table);;Argument[0].SyntheticField[com.google.common.collect.Table.columnKey];ReturnValue.SyntheticField[com.google.common.collect.Table.columnKey];value;manual",
-        "com.google.common.collect;Tables;false;unmodifiableTable;(Table);;Argument[0].SyntheticField[com.google.common.collect.Table.rowKey];ReturnValue.SyntheticField[com.google.common.collect.Table.rowKey];value;manual",
-        "com.google.common.collect;TreeBasedTable;true;create;(TreeBasedTable);;Argument[0].MapValue;ReturnValue.MapValue;value;manual",
-        "com.google.common.collect;TreeBasedTable;true;create;(TreeBasedTable);;Argument[0].SyntheticField[com.google.common.collect.Table.columnKey];ReturnValue.SyntheticField[com.google.common.collect.Table.columnKey];value;manual",
-        "com.google.common.collect;TreeBasedTable;true;create;(TreeBasedTable);;Argument[0].SyntheticField[com.google.common.collect.Table.rowKey];ReturnValue.SyntheticField[com.google.common.collect.Table.rowKey];value;manual",
-        "com.google.common.collect;TreeMultimap;true;create;(Multimap);;Argument[0].MapKey;ReturnValue.MapKey;value;manual",
-        "com.google.common.collect;TreeMultimap;true;create;(Multimap);;Argument[0].MapValue;ReturnValue.MapValue;value;manual",
-        "com.google.common.collect;TreeMultiset;true;create;(Iterable);;Argument[0].Element;ReturnValue.Element;value;manual"
-      ]
-  }
-}
-
 /**
  * A reference type that extends a parameterization of `com.google.common.collect.Multimap`.
  */
diff --git a/java/ql/lib/semmle/code/java/frameworks/guava/Guava.qll b/java/ql/lib/semmle/code/java/frameworks/guava/Guava.qll
index d7a4ab959df..5dd8aaa18ee 100644
--- a/java/ql/lib/semmle/code/java/frameworks/guava/Guava.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/guava/Guava.qll
@@ -3,7 +3,4 @@
  */
 
 import java
-import Base
 import Collections
-import IO
-import Cache
diff --git a/java/ql/lib/semmle/code/java/frameworks/guava/IO.qll b/java/ql/lib/semmle/code/java/frameworks/guava/IO.qll
deleted file mode 100644
index 59fc0113e10..00000000000
--- a/java/ql/lib/semmle/code/java/frameworks/guava/IO.qll
+++ /dev/null
@@ -1,101 +0,0 @@
-/** Definitions of taint steps in the IO package of the Guava framework */
-
-import java
-private import semmle.code.java.dataflow.ExternalFlow
-
-private class GuavaIoCsv extends SummaryModelCsv {
-  override predicate row(string row) {
-    row =
-      [
-        //`namespace; type; subtypes; name; signature; ext; input; output; kind`
-        "com.google.common.io;BaseEncoding;true;decode;(CharSequence);;Argument[0];ReturnValue;taint;manual",
-        "com.google.common.io;BaseEncoding;true;decodingStream;(Reader);;Argument[0];ReturnValue;taint;manual",
-        "com.google.common.io;BaseEncoding;true;decodingSource;(CharSource);;Argument[0];ReturnValue;taint;manual",
-        "com.google.common.io;BaseEncoding;true;encode;(byte[]);;Argument[0];ReturnValue;taint;manual",
-        "com.google.common.io;BaseEncoding;true;encode;(byte[],int,int);;Argument[0];ReturnValue;taint;manual",
-        "com.google.common.io;BaseEncoding;true;withSeparator;(String,int);;Argument[0];ReturnValue;taint;manual",
-        "com.google.common.io;BaseEncoding;true;decode;(CharSequence);;Argument[-1];ReturnValue;taint;manual",
-        "com.google.common.io;BaseEncoding;true;decodingStream;(Reader);;Argument[-1];ReturnValue;taint;manual",
-        "com.google.common.io;BaseEncoding;true;decodingSource;(CharSource);;Argument[-1];ReturnValue;taint;manual",
-        "com.google.common.io;BaseEncoding;true;encode;(byte[]);;Argument[-1];ReturnValue;taint;manual",
-        "com.google.common.io;BaseEncoding;true;upperCase;();;Argument[-1];ReturnValue;taint;manual",
-        "com.google.common.io;BaseEncoding;true;lowerCase;();;Argument[-1];ReturnValue;taint;manual",
-        "com.google.common.io;BaseEncoding;true;withPadChar;(char);;Argument[-1];ReturnValue;taint;manual",
-        "com.google.common.io;BaseEncoding;true;omitPadding;();;Argument[-1];ReturnValue;taint;manual",
-        "com.google.common.io;BaseEncoding;true;encode;(byte[],int,int);;Argument[-1];ReturnValue;taint;manual",
-        "com.google.common.io;ByteSource;true;asCharSource;(Charset);;Argument[-1];ReturnValue;taint;manual",
-        "com.google.common.io;ByteSource;true;concat;(ByteSource[]);;Argument[0].ArrayElement;ReturnValue;taint;manual",
-        "com.google.common.io;ByteSource;true;concat;(Iterable);;Argument[0].Element;ReturnValue;taint;manual",
-        "com.google.common.io;ByteSource;true;concat;(Iterator);;Argument[0].Element;ReturnValue;taint;manual",
-        "com.google.common.io;ByteSource;true;copyTo;(OutputStream);;Argument[-1];Argument[0];taint;manual",
-        "com.google.common.io;ByteSource;true;openStream;();;Argument[-1];ReturnValue;taint;manual",
-        "com.google.common.io;ByteSource;true;openBufferedStream;();;Argument[-1];ReturnValue;taint;manual",
-        "com.google.common.io;ByteSource;true;read;();;Argument[-1];ReturnValue;taint;manual",
-        "com.google.common.io;ByteSource;true;slice;(long,long);;Argument[-1];ReturnValue;taint;manual",
-        "com.google.common.io;ByteSource;true;wrap;(byte[]);;Argument[0];ReturnValue;taint;manual",
-        "com.google.common.io;ByteStreams;false;copy;(InputStream,OutputStream);;Argument[0];Argument[1];taint;manual",
-        "com.google.common.io;ByteStreams;false;copy;(ReadableByteChannel,WritableByteChannel);;Argument[0];Argument[1];taint;manual",
-        "com.google.common.io;ByteStreams;false;limit;(InputStream,long);;Argument[0];ReturnValue;taint;manual",
-        "com.google.common.io;ByteStreams;false;newDataInput;(byte[]);;Argument[0];ReturnValue;taint;manual",
-        "com.google.common.io;ByteStreams;false;newDataInput;(byte[],int);;Argument[0];ReturnValue;taint;manual",
-        "com.google.common.io;ByteStreams;false;newDataInput;(ByteArrayInputStream);;Argument[0];ReturnValue;taint;manual",
-        "com.google.common.io;ByteStreams;false;newDataOutput;(ByteArrayOutputStream);;Argument[0];ReturnValue;taint;manual",
-        "com.google.common.io;ByteStreams;false;read;(InputStream,byte[],int,int);;Argument[0];Argument[1];taint;manual",
-        "com.google.common.io;ByteStreams;false;readFully;(InputStream,byte[]);;Argument[0];Argument[1];taint;manual",
-        "com.google.common.io;ByteStreams;false;readFully;(InputStream,byte[],int,int);;Argument[0];Argument[1];taint;manual",
-        "com.google.common.io;ByteStreams;false;toByteArray;(InputStream);;Argument[0];ReturnValue;taint;manual",
-        "com.google.common.io;CharSource;true;asByteSource;(Charset);;Argument[-1];ReturnValue;taint;manual",
-        "com.google.common.io;CharSource;true;concat;(CharSource[]);;Argument[0].ArrayElement;ReturnValue;taint;manual",
-        "com.google.common.io;CharSource;true;concat;(Iterable);;Argument[0].Element;ReturnValue;taint;manual",
-        "com.google.common.io;CharSource;true;concat;(Iterator);;Argument[0].Element;ReturnValue;taint;manual",
-        "com.google.common.io;CharSource;true;copyTo;(Appendable);;Argument[-1];Argument[0];taint;manual",
-        "com.google.common.io;CharSource;true;openStream;();;Argument[-1];ReturnValue;taint;manual",
-        "com.google.common.io;CharSource;true;openBufferedStream;();;Argument[-1];ReturnValue;taint;manual",
-        "com.google.common.io;CharSource;true;read;();;Argument[-1];ReturnValue;taint;manual",
-        "com.google.common.io;CharSource;true;readFirstLine;();;Argument[-1];ReturnValue;taint;manual",
-        "com.google.common.io;CharSource;true;readLines;();;Argument[-1];ReturnValue;taint;manual",
-        "com.google.common.io;CharSource;true;lines;();;Argument[-1];ReturnValue;taint;manual",
-        "com.google.common.io;CharSource;true;wrap;(CharSequence);;Argument[0];ReturnValue;taint;manual",
-        "com.google.common.io;CharStreams;false;copy;(Readable,Appendable);;Argument[0];Argument[1];taint;manual",
-        "com.google.common.io;CharStreams;false;readLines;(Readable);;Argument[0];ReturnValue;taint;manual",
-        "com.google.common.io;CharStreams;false;toString;(Readable);;Argument[0];ReturnValue;taint;manual",
-        "com.google.common.io;Closer;true;register;;;Argument[0];ReturnValue;value;manual",
-        "com.google.common.io;Files;false;getFileExtension;(String);;Argument[0];ReturnValue;taint;manual",
-        "com.google.common.io;Files;false;getNameWithoutExtension;(String);;Argument[0];ReturnValue;taint;manual",
-        "com.google.common.io;Files;false;simplifyPath;(String);;Argument[0];ReturnValue;taint;manual",
-        "com.google.common.io;MoreFiles;false;getFileExtension;(Path);;Argument[0];ReturnValue;taint;manual",
-        "com.google.common.io;MoreFiles;false;getNameWithoutExtension;(Path);;Argument[0];ReturnValue;taint;manual",
-        "com.google.common.io;LineReader;false;LineReader;(Readable);;Argument[0];Argument[-1];taint;manual",
-        "com.google.common.io;LineReader;true;readLine;();;Argument[-1];ReturnValue;taint;manual",
-        "com.google.common.io;ByteArrayDataOutput;true;toByteArray;();;Argument[-1];ReturnValue;taint;manual",
-        "com.google.common.io;ByteArrayDataOutput;true;write;(byte[]);;Argument[0];Argument[-1];taint;manual",
-        "com.google.common.io;ByteArrayDataOutput;true;write;(byte[],int,int);;Argument[0];Argument[-1];taint;manual",
-        "com.google.common.io;ByteArrayDataOutput;true;write;(int);;Argument[0];Argument[-1];taint;manual",
-        "com.google.common.io;ByteArrayDataOutput;true;writeByte;(int);;Argument[0];Argument[-1];taint;manual",
-        "com.google.common.io;ByteArrayDataOutput;true;writeBytes;(String);;Argument[0];Argument[-1];taint;manual",
-        "com.google.common.io;ByteArrayDataOutput;true;writeChar;(int);;Argument[0];Argument[-1];taint;manual",
-        "com.google.common.io;ByteArrayDataOutput;true;writeChars;(String);;Argument[0];Argument[-1];taint;manual",
-        "com.google.common.io;ByteArrayDataOutput;true;writeDouble;(double);;Argument[0];Argument[-1];taint;manual",
-        "com.google.common.io;ByteArrayDataOutput;true;writeFloat;(float);;Argument[0];Argument[-1];taint;manual",
-        "com.google.common.io;ByteArrayDataOutput;true;writeInt;(int);;Argument[0];Argument[-1];taint;manual",
-        "com.google.common.io;ByteArrayDataOutput;true;writeLong;(long);;Argument[0];Argument[-1];taint;manual",
-        "com.google.common.io;ByteArrayDataOutput;true;writeShort;(int);;Argument[0];Argument[-1];taint;manual",
-        "com.google.common.io;ByteArrayDataOutput;true;writeUTF;(String);;Argument[0];Argument[-1];taint;manual"
-      ]
-  }
-}
-
-private class GuavaIoSinkCsv extends SinkModelCsv {
-  override predicate row(string row) {
-    row =
-      [
-        //`namespace; type; subtypes; name; signature; ext; input; kind`
-        "com.google.common.io;Resources;false;asByteSource;(URL);;Argument[0];url-open-stream;manual",
-        "com.google.common.io;Resources;false;asCharSource;(URL,Charset);;Argument[0];url-open-stream;manual",
-        "com.google.common.io;Resources;false;copy;(URL,OutputStream);;Argument[0];url-open-stream;manual",
-        "com.google.common.io;Resources;false;readLines;;;Argument[0];url-open-stream;manual",
-        "com.google.common.io;Resources;false;toByteArray;(URL);;Argument[0];url-open-stream;manual",
-        "com.google.common.io;Resources;false;toString;(URL,Charset);;Argument[0];url-open-stream;manual"
-      ]
-  }
-}
diff --git a/java/ql/lib/semmle/code/java/frameworks/jOOQ.qll b/java/ql/lib/semmle/code/java/frameworks/jOOQ.qll
index 20a7303dd76..c109b980508 100644
--- a/java/ql/lib/semmle/code/java/frameworks/jOOQ.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/jOOQ.qll
@@ -22,9 +22,3 @@ predicate jOOQSqlMethod(Method m) {
   m.getAnAnnotation() instanceof PlainSqlType and
   m.getParameterType(0) instanceof TypeString
 }
-
-private class SqlSinkCsv extends SinkModelCsv {
-  override predicate row(string row) {
-    row = "org.jooq;PlainSQL;false;;;Annotated;Argument[0];sql;manual"
-  }
-}
diff --git a/java/ql/lib/semmle/code/java/frameworks/jackson/JacksonSerializability.qll b/java/ql/lib/semmle/code/java/frameworks/jackson/JacksonSerializability.qll
index 400f96598c1..7499e26450c 100644
--- a/java/ql/lib/semmle/code/java/frameworks/jackson/JacksonSerializability.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/jackson/JacksonSerializability.qll
@@ -282,18 +282,3 @@ class JacksonMixedInCallable extends Callable {
     )
   }
 }
-
-private class JacksonModel extends SummaryModelCsv {
-  override predicate row(string row) {
-    row =
-      [
-        "com.fasterxml.jackson.databind;ObjectMapper;true;valueToTree;;;Argument[0];ReturnValue;taint;manual",
-        "com.fasterxml.jackson.databind;ObjectMapper;true;valueToTree;;;Argument[0].MapValue;ReturnValue;taint;manual",
-        "com.fasterxml.jackson.databind;ObjectMapper;true;valueToTree;;;Argument[0].MapValue.Element;ReturnValue;taint;manual",
-        "com.fasterxml.jackson.databind;ObjectMapper;true;convertValue;;;Argument[0];ReturnValue;taint;manual",
-        "com.fasterxml.jackson.databind;ObjectMapper;false;createParser;;;Argument[0];ReturnValue;taint;manual",
-        "com.fasterxml.jackson.databind;ObjectReader;false;createParser;;;Argument[0];ReturnValue;taint;manual",
-        "com.fasterxml.jackson.core;JsonFactory;false;createParser;;;Argument[0];ReturnValue;taint;manual"
-      ]
-  }
-}
diff --git a/java/ql/lib/semmle/code/java/frameworks/javaee/jsf/JSFRenderer.qll b/java/ql/lib/semmle/code/java/frameworks/javaee/jsf/JSFRenderer.qll
index 9efa891676b..17eec30769a 100644
--- a/java/ql/lib/semmle/code/java/frameworks/javaee/jsf/JSFRenderer.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/javaee/jsf/JSFRenderer.qll
@@ -12,22 +12,6 @@ class FacesContext extends RefType {
   }
 }
 
-private class ExternalContextSource extends SourceModelCsv {
-  override predicate row(string row) {
-    row =
-      ["javax.", "jakarta."] +
-        [
-          "faces.context;ExternalContext;true;getRequestParameterMap;();;ReturnValue;remote;manual",
-          "faces.context;ExternalContext;true;getRequestParameterNames;();;ReturnValue;remote;manual",
-          "faces.context;ExternalContext;true;getRequestParameterValuesMap;();;ReturnValue;remote;manual",
-          "faces.context;ExternalContext;true;getRequestPathInfo;();;ReturnValue;remote;manual",
-          "faces.context;ExternalContext;true;getRequestCookieMap;();;ReturnValue;remote;manual",
-          "faces.context;ExternalContext;true;getRequestHeaderMap;();;ReturnValue;remote;manual",
-          "faces.context;ExternalContext;true;getRequestHeaderValuesMap;();;ReturnValue;remote;manual"
-        ]
-  }
-}
-
 /**
  * The method `getResponseWriter()` declared in JSF `ExternalContext`.
  */
@@ -49,15 +33,3 @@ class FacesGetResponseStreamMethod extends Method {
     this.getNumberOfParameters() = 0
   }
 }
-
-private class ExternalContextXssSink extends SinkModelCsv {
-  override predicate row(string row) {
-    row =
-      [
-        "javax.faces.context;ResponseWriter;true;write;;;Argument[0];xss;manual",
-        "javax.faces.context;ResponseStream;true;write;;;Argument[0];xss;manual",
-        "jakarta.faces.context;ResponseWriter;true;write;;;Argument[0];xss;manual",
-        "jakarta.faces.context;ResponseStream;true;write;;;Argument[0];xss;manual"
-      ]
-  }
-}
diff --git a/java/ql/lib/semmle/code/java/frameworks/kotlin/StdLib.qll b/java/ql/lib/semmle/code/java/frameworks/kotlin/StdLib.qll
deleted file mode 100644
index 3d70961cf37..00000000000
--- a/java/ql/lib/semmle/code/java/frameworks/kotlin/StdLib.qll
+++ /dev/null
@@ -1,14 +0,0 @@
-/** Definitions of taint steps in the KotlinStdLib framework */
-
-import java
-private import semmle.code.java.dataflow.ExternalFlow
-
-private class KotlinStdLibSummaryCsv extends SummaryModelCsv {
-  override predicate row(string row) {
-    row =
-      [
-        "kotlin.jvm.internal;ArrayIteratorKt;false;iterator;(Object[]);;Argument[0].ArrayElement;ReturnValue.Element;value;manual",
-        "kotlin.collections;ArraysKt;false;withIndex;(Object[]);;Argument[0].ArrayElement;ReturnValue;taint;manual"
-      ]
-  }
-}
diff --git a/java/ql/lib/semmle/code/java/frameworks/ratpack/Ratpack.qll b/java/ql/lib/semmle/code/java/frameworks/ratpack/Ratpack.qll
deleted file mode 100644
index 772ea3866e5..00000000000
--- a/java/ql/lib/semmle/code/java/frameworks/ratpack/Ratpack.qll
+++ /dev/null
@@ -1,135 +0,0 @@
-/**
- * Provides classes and predicates related to `ratpack.*`.
- */
-
-import java
-private import semmle.code.java.dataflow.DataFlow
-private import semmle.code.java.dataflow.FlowSteps
-private import semmle.code.java.dataflow.ExternalFlow
-
-/**
- * Ratpack methods that access user-supplied request data.
- */
-private class RatpackHttpSource extends SourceModelCsv {
-  override predicate row(string row) {
-    row =
-      ["ratpack.http;", "ratpack.core.http;"] +
-        [
-          "Request;true;getContentLength;;;ReturnValue;remote;manual",
-          "Request;true;getCookies;;;ReturnValue;remote;manual",
-          "Request;true;oneCookie;;;ReturnValue;remote;manual",
-          "Request;true;getHeaders;;;ReturnValue;remote;manual",
-          "Request;true;getPath;;;ReturnValue;remote;manual",
-          "Request;true;getQuery;;;ReturnValue;remote;manual",
-          "Request;true;getQueryParams;;;ReturnValue;remote;manual",
-          "Request;true;getRawUri;;;ReturnValue;remote;manual",
-          "Request;true;getUri;;;ReturnValue;remote;manual",
-          "Request;true;getBody;;;ReturnValue;remote;manual"
-        ]
-    or
-    // All Context#parse methods that return a Promise are remote flow sources.
-    row =
-      ["ratpack.handling;", "ratpack.core.handling;"] + "Context;true;parse;" +
-        [
-          "(java.lang.Class);", "(com.google.common.reflect.TypeToken);",
-          "(java.lang.Class,java.lang.Object);",
-          "(com.google.common.reflect.TypeToken,java.lang.Object);", "(ratpack.core.parse.Parse);",
-          "(ratpack.parse.Parse);"
-        ] + ";ReturnValue;remote;manual"
-  }
-}
-
-/**
- * Ratpack methods that propagate user-supplied request data as tainted.
- */
-private class RatpackModel extends SummaryModelCsv {
-  override predicate row(string row) {
-    row =
-      ["ratpack.http;", "ratpack.core.http;"] +
-        [
-          "TypedData;true;getBuffer;;;Argument[-1];ReturnValue;taint;manual",
-          "TypedData;true;getBytes;;;Argument[-1];ReturnValue;taint;manual",
-          "TypedData;true;getContentType;;;Argument[-1];ReturnValue;taint;manual",
-          "TypedData;true;getInputStream;;;Argument[-1];ReturnValue;taint;manual",
-          "TypedData;true;getText;;;Argument[-1];ReturnValue;taint;manual",
-          "TypedData;true;writeTo;;;Argument[-1];Argument[0];taint;manual",
-          "Headers;true;get;;;Argument[-1];ReturnValue;taint;manual",
-          "Headers;true;getAll;;;Argument[-1];ReturnValue;taint;manual",
-          "Headers;true;getNames;;;Argument[-1];ReturnValue;taint;manual",
-          "Headers;true;asMultiValueMap;;;Argument[-1];ReturnValue;taint;manual"
-        ]
-    or
-    row =
-      ["ratpack.form;", "ratpack.core.form;"] +
-        [
-          "UploadedFile;true;getFileName;;;Argument[-1];ReturnValue;taint;manual",
-          "Form;true;file;;;Argument[-1];ReturnValue;taint;manual",
-          "Form;true;files;;;Argument[-1];ReturnValue;taint;manual"
-        ]
-    or
-    row =
-      ["ratpack.handling;", "ratpack.core.handling;"] +
-        [
-          "Context;true;parse;(ratpack.http.TypedData,ratpack.parse.Parse);;Argument[0];ReturnValue;taint;manual",
-          "Context;true;parse;(ratpack.core.http.TypedData,ratpack.core.parse.Parse);;Argument[0];ReturnValue;taint;manual",
-          "Context;true;parse;(ratpack.core.http.TypedData,ratpack.core.parse.Parse);;Argument[0];ReturnValue.MapKey;taint;manual",
-          "Context;true;parse;(ratpack.core.http.TypedData,ratpack.core.parse.Parse);;Argument[0];ReturnValue.MapValue;taint;manual"
-        ]
-    or
-    row =
-      ["ratpack.util;", "ratpack.func;"] +
-        [
-          "MultiValueMap;true;getAll;;;Argument[-1].MapKey;ReturnValue.MapKey;value;manual",
-          "MultiValueMap;true;getAll;();;Argument[-1].MapValue;ReturnValue.MapValue.Element;value;manual",
-          "MultiValueMap;true;getAll;(Object);;Argument[-1].MapValue;ReturnValue.Element;value;manual",
-          "MultiValueMap;true;asMultimap;;;Argument[-1].MapKey;ReturnValue.MapKey;value;manual",
-          "MultiValueMap;true;asMultimap;;;Argument[-1].MapValue;ReturnValue.MapValue;value;manual"
-        ]
-    or
-    exists(string left, string right |
-      left = "Field[ratpack.func.Pair.left]" and
-      right = "Field[ratpack.func.Pair.right]"
-    |
-      row =
-        ["ratpack.util;", "ratpack.func;"] + "Pair;true;" +
-          [
-            "of;;;Argument[0];ReturnValue." + left + ";value;manual",
-            "of;;;Argument[1];ReturnValue." + right + ";value;manual",
-            "pair;;;Argument[0];ReturnValue." + left + ";value;manual",
-            "pair;;;Argument[1];ReturnValue." + right + ";value;manual",
-            "left;();;Argument[-1]." + left + ";ReturnValue;value;manual",
-            "right;();;Argument[-1]." + right + ";ReturnValue;value;manual",
-            "getLeft;;;Argument[-1]." + left + ";ReturnValue;value;manual",
-            "getRight;;;Argument[-1]." + right + ";ReturnValue;value;manual",
-            "left;(Object);;Argument[0];ReturnValue." + left + ";value;manual",
-            "left;(Object);;Argument[-1]." + right + ";ReturnValue." + right + ";value;manual",
-            "right;(Object);;Argument[0];ReturnValue." + right + ";value;manual",
-            "right;(Object);;Argument[-1]." + left + ";ReturnValue." + left + ";value;manual",
-            "pushLeft;(Object);;Argument[-1];ReturnValue." + right + ";value;manual",
-            "pushRight;(Object);;Argument[-1];ReturnValue." + left + ";value;manual",
-            "pushLeft;(Object);;Argument[0];ReturnValue." + left + ";value;manual",
-            "pushRight;(Object);;Argument[0];ReturnValue." + right + ";value;manual",
-            // `nestLeft` Pair<A, B>.nestLeft(C) -> Pair<Pair<C, A>, B>
-            "nestLeft;(Object);;Argument[0];ReturnValue." + left + "." + left + ";value;manual",
-            "nestLeft;(Object);;Argument[-1]." + left + ";ReturnValue." + left + "." + right +
-              ";value;manual",
-            "nestLeft;(Object);;Argument[-1]." + right + ";ReturnValue." + right + ";value;manual",
-            // `nestRight` Pair<A, B>.nestRight(C) -> Pair<A, Pair<C, B>>
-            "nestRight;(Object);;Argument[0];ReturnValue." + right + "." + left + ";value;manual",
-            "nestRight;(Object);;Argument[-1]." + left + ";ReturnValue." + left + ";value;manual",
-            "nestRight;(Object);;Argument[-1]." + right + ";ReturnValue." + right + "." + right +
-              ";value;manual",
-            // `mapLeft` & `mapRight` map over their respective fields
-            "mapLeft;;;Argument[-1]." + left + ";Argument[0].Parameter[0];value;manual",
-            "mapLeft;;;Argument[-1]." + right + ";ReturnValue." + right + ";value;manual",
-            "mapRight;;;Argument[-1]." + right + ";Argument[0].Parameter[0];value;manual",
-            "mapRight;;;Argument[-1]." + left + ";ReturnValue." + left + ";value;manual",
-            "mapLeft;;;Argument[0].ReturnValue;ReturnValue." + left + ";value;manual",
-            "mapRight;;;Argument[0].ReturnValue;ReturnValue." + right + ";value;manual",
-            // `map` maps over the `Pair`
-            "map;;;Argument[-1];Argument[0].Parameter[0];value;manual",
-            "map;;;Argument[0].ReturnValue;ReturnValue;value;manual"
-          ]
-    )
-  }
-}
diff --git a/java/ql/lib/semmle/code/java/frameworks/ratpack/RatpackExec.qll b/java/ql/lib/semmle/code/java/frameworks/ratpack/RatpackExec.qll
index 8f619d4a104..079cb44eb5d 100644
--- a/java/ql/lib/semmle/code/java/frameworks/ratpack/RatpackExec.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/ratpack/RatpackExec.qll
@@ -7,102 +7,6 @@ private import semmle.code.java.dataflow.DataFlow
 private import semmle.code.java.dataflow.FlowSteps
 private import semmle.code.java.dataflow.ExternalFlow
 
-/**
- * Model for Ratpack `Promise` methods.
- */
-private class RatpackExecModel extends SummaryModelCsv {
-  override predicate row(string row) {
-    //"namespace;type;overrides;name;signature;ext;inputspec;outputspec;kind",
-    row =
-      "ratpack.exec;Promise;true;" +
-        [
-          // `Promise` creation methods
-          "value;;;Argument[0];ReturnValue.Element;value;manual",
-          "flatten;;;Argument[0].ReturnValue.Element;ReturnValue.Element;value;manual",
-          "sync;;;Argument[0].ReturnValue;ReturnValue.Element;value;manual",
-          // `Promise` value transformation methods
-          "map;;;Argument[-1].Element;Argument[0].Parameter[0];value;manual",
-          "map;;;Argument[0].ReturnValue;ReturnValue.Element;value;manual",
-          "blockingMap;;;Argument[-1].Element;Argument[0].Parameter[0];value;manual",
-          "blockingMap;;;Argument[0].ReturnValue;ReturnValue.Element;value;manual",
-          "mapError;;;Argument[1].ReturnValue;ReturnValue.Element;value;manual",
-          // `apply` passes the qualifier to the function as the first argument
-          "apply;;;Argument[-1].Element;Argument[0].Parameter[0].Element;value;manual",
-          "apply;;;Argument[0].ReturnValue.Element;ReturnValue.Element;value;manual",
-          // `Promise` termination method
-          "then;;;Argument[-1].Element;Argument[0].Parameter[0];value;manual",
-          // 'next' accesses qualifier the 'Promise' value and also returns the qualifier
-          "next;;;Argument[-1].Element;Argument[0].Parameter[0];value;manual",
-          "nextOp;;;Argument[-1].Element;Argument[0].Parameter[0];value;manual",
-          "flatOp;;;Argument[-1].Element;Argument[0].Parameter[0];value;manual",
-          // `nextOpIf` accesses qualifier the 'Promise' value and also returns the qualifier
-          "nextOpIf;;;Argument[-1].Element;Argument[0].Parameter[0];value;manual",
-          "nextOpIf;;;Argument[-1].Element;Argument[1].Parameter[0];value;manual",
-          // 'cacheIf' accesses qualifier the 'Promise' value and also returns the qualifier
-          "cacheIf;;;Argument[-1].Element;Argument[0].Parameter[0];value;manual",
-          // 'route' accesses qualifier the 'Promise' value, and conditionally returns the qualifier or
-          // the result of the second argument
-          "route;;;Argument[-1].Element;Argument[0].Parameter[0];value;manual",
-          "route;;;Argument[-1].Element;Argument[1].Parameter[0];value;manual",
-          "route;;;Argument[-1];ReturnValue;value;manual",
-          // `flatMap` type methods return their returned `Promise`
-          "flatMap;;;Argument[-1].Element;Argument[0].Parameter[0];value;manual",
-          "flatMap;;;Argument[0].ReturnValue.Element;ReturnValue.Element;value;manual",
-          "flatMapError;;;Argument[1].ReturnValue.Element;ReturnValue.Element;value;manual",
-          // `blockingOp` passes the value to the argument
-          "blockingOp;;;Argument[-1].Element;Argument[0].Parameter[0];value;manual",
-          // `replace` returns the passed `Promise`
-          "replace;;;Argument[0].Element;ReturnValue.Element;value;manual",
-          // `mapIf` methods conditionally map their values, or return themselves
-          "mapIf;;;Argument[-1].Element;Argument[0].Parameter[0];value;manual",
-          "mapIf;;;Argument[-1].Element;Argument[1].Parameter[0];value;manual",
-          "mapIf;;;Argument[-1].Element;Argument[2].Parameter[0];value;manual",
-          "mapIf;;;Argument[1].ReturnValue;ReturnValue.Element;value;manual",
-          "mapIf;;;Argument[2].ReturnValue;ReturnValue.Element;value;manual",
-          // `wiretap` wraps the qualifier `Promise` value in a `Result` and passes it to the argument
-          "wiretap;;;Argument[-1].Element;Argument[0].Parameter[0].Element;value;manual"
-        ]
-    or
-    exists(string left, string right |
-      left = "Field[ratpack.func.Pair.left]" and
-      right = "Field[ratpack.func.Pair.right]"
-    |
-      row =
-        "ratpack.exec;Promise;true;" +
-          [
-            // `left`, `right`, `flatLeft`, `flatRight` all pass the qualifier `Promise` element as the other `Pair` field
-            "left;;;Argument[-1].Element;ReturnValue.Element." + right + ";value;manual",
-            "right;;;Argument[-1].Element;ReturnValue.Element." + left + ";value;manual",
-            "flatLeft;;;Argument[-1].Element;ReturnValue.Element." + right + ";value;manual",
-            "flatRight;;;Argument[-1].Element;ReturnValue.Element." + left + ";value;manual",
-            // `left` and `right` taking a `Promise` create a `Promise` of the `Pair`
-            "left;(Promise);;Argument[0].Element;ReturnValue.Element." + left + ";value;manual",
-            "right;(Promise);;Argument[0].Element;ReturnValue.Element." + right + ";value;manual",
-            // `left` and `right` taking a `Function` pass the qualifier element then create a `Pair` with the returned value
-            "left;(Function);;Argument[-1].Element;Argument[0].Parameter[0];value;manual",
-            "flatLeft;(Function);;Argument[-1].Element;Argument[0].Parameter[0];value;manual",
-            "right;(Function);;Argument[-1].Element;Argument[0].Parameter[0];value;manual",
-            "flatRight;(Function);;Argument[-1].Element;Argument[0].Parameter[0];value;manual",
-            "left;(Function);;Argument[0].ReturnValue;ReturnValue.Element." + left + ";value;manual",
-            "flatLeft;(Function);;Argument[0].ReturnValue.Element;ReturnValue.Element." + left +
-              ";value;manual",
-            "right;(Function);;Argument[0].ReturnValue;ReturnValue.Element." + right +
-              ";value;manual",
-            "flatRight;(Function);;Argument[0].ReturnValue.Element;ReturnValue.Element." + right +
-              ";value;manual"
-          ]
-    )
-    or
-    row =
-      "ratpack.exec;Result;true;" +
-        [
-          "success;;;Argument[0];ReturnValue.Element;value;manual",
-          "getValue;;;Argument[-1].Element;ReturnValue;value;manual",
-          "getValueOrThrow;;;Argument[-1].Element;ReturnValue;value;manual"
-        ]
-  }
-}
-
 /** A reference type that extends a parameterization the Promise type. */
 private class RatpackPromise extends RefType {
   RatpackPromise() {
diff --git a/java/ql/lib/semmle/code/java/frameworks/spring/Spring.qll b/java/ql/lib/semmle/code/java/frameworks/spring/Spring.qll
index fd3008e5f00..2b09288610e 100644
--- a/java/ql/lib/semmle/code/java/frameworks/spring/Spring.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/spring/Spring.qll
@@ -6,14 +6,10 @@ import semmle.code.java.frameworks.spring.SpringAttribute
 import semmle.code.java.frameworks.spring.SpringAutowire
 import semmle.code.java.frameworks.spring.SpringBean
 import semmle.code.java.frameworks.spring.SpringBeanFile
-import semmle.code.java.frameworks.spring.SpringBeans
 import semmle.code.java.frameworks.spring.SpringBeanRefType
-import semmle.code.java.frameworks.spring.SpringCache
-import semmle.code.java.frameworks.spring.SpringContext
 import semmle.code.java.frameworks.spring.SpringComponentScan
 import semmle.code.java.frameworks.spring.SpringConstructorArg
 import semmle.code.java.frameworks.spring.SpringController
-import semmle.code.java.frameworks.spring.SpringData
 import semmle.code.java.frameworks.spring.SpringDescription
 import semmle.code.java.frameworks.spring.SpringEntry
 import semmle.code.java.frameworks.spring.SpringFlex
@@ -36,12 +32,7 @@ import semmle.code.java.frameworks.spring.SpringQualifier
 import semmle.code.java.frameworks.spring.SpringRef
 import semmle.code.java.frameworks.spring.SpringReplacedMethod
 import semmle.code.java.frameworks.spring.SpringSet
-import semmle.code.java.frameworks.spring.SpringUi
-import semmle.code.java.frameworks.spring.SpringUtil
-import semmle.code.java.frameworks.spring.SpringValidation
 import semmle.code.java.frameworks.spring.SpringValue
-import semmle.code.java.frameworks.spring.SpringWebMultipart
-import semmle.code.java.frameworks.spring.SpringWebUtil
 import semmle.code.java.frameworks.spring.SpringXMLElement
 import semmle.code.java.frameworks.spring.metrics.MetricSpringBean
 import semmle.code.java.frameworks.spring.metrics.MetricSpringBeanFile
diff --git a/java/ql/lib/semmle/code/java/frameworks/spring/SpringBeans.qll b/java/ql/lib/semmle/code/java/frameworks/spring/SpringBeans.qll
deleted file mode 100644
index 63671f21855..00000000000
--- a/java/ql/lib/semmle/code/java/frameworks/spring/SpringBeans.qll
+++ /dev/null
@@ -1,48 +0,0 @@
-/**
- * Provides classes and predicates for working with Spring classes and interfaces from
- * `org.springframework.beans`.
- */
-
-import java
-private import semmle.code.java.dataflow.ExternalFlow
-
-/**
- * Provides models for the `org.springframework.beans` package.
- */
-private class FlowSummaries extends SummaryModelCsv {
-  override predicate row(string row) {
-    row =
-      [
-        "org.springframework.beans;PropertyValue;false;PropertyValue;(String,Object);;Argument[0];Argument[-1].MapKey;value;manual",
-        "org.springframework.beans;PropertyValue;false;PropertyValue;(String,Object);;Argument[1];Argument[-1].MapValue;value;manual",
-        "org.springframework.beans;PropertyValue;false;PropertyValue;(PropertyValue);;Argument[0];Argument[-1];value;manual",
-        "org.springframework.beans;PropertyValue;false;PropertyValue;(PropertyValue,Object);;Argument[0].MapKey;Argument[-1].MapKey;value;manual",
-        "org.springframework.beans;PropertyValue;false;PropertyValue;(PropertyValue,Object);;Argument[1];Argument[-1].MapValue;value;manual",
-        "org.springframework.beans;PropertyValue;false;getName;;;Argument[-1].MapKey;ReturnValue;value;manual",
-        "org.springframework.beans;PropertyValue;false;getValue;;;Argument[-1].MapValue;ReturnValue;value;manual",
-        "org.springframework.beans;PropertyValues;true;getPropertyValue;;;Argument[-1].Element;ReturnValue;value;manual",
-        "org.springframework.beans;PropertyValues;true;getPropertyValues;;;Argument[-1].Element;ReturnValue.ArrayElement;value;manual",
-        "org.springframework.beans;MutablePropertyValues;true;MutablePropertyValues;(List);;Argument[0].Element;Argument[-1].Element;value;manual",
-        "org.springframework.beans;MutablePropertyValues;true;MutablePropertyValues;(Map);;Argument[0].MapKey;Argument[-1].Element.MapKey;value;manual",
-        "org.springframework.beans;MutablePropertyValues;true;MutablePropertyValues;(Map);;Argument[0].MapValue;Argument[-1].Element.MapValue;value;manual",
-        "org.springframework.beans;MutablePropertyValues;true;MutablePropertyValues;(PropertyValues);;Argument[0].Element;Argument[-1].Element;value;manual",
-        "org.springframework.beans;MutablePropertyValues;true;add;(String,Object);;Argument[0];Argument[-1].Element.MapKey;value;manual",
-        "org.springframework.beans;MutablePropertyValues;true;add;(String,Object);;Argument[-1];ReturnValue;value;manual",
-        "org.springframework.beans;MutablePropertyValues;true;add;(String,Object);;Argument[1];Argument[-1].Element.MapValue;value;manual",
-        "org.springframework.beans;MutablePropertyValues;true;addPropertyValue;(PropertyValue);;Argument[0];Argument[-1].Element;value;manual",
-        "org.springframework.beans;MutablePropertyValues;true;addPropertyValue;(PropertyValue);;Argument[-1];ReturnValue;value;manual",
-        "org.springframework.beans;MutablePropertyValues;true;addPropertyValue;(String,Object);;Argument[0];Argument[-1].Element.MapKey;value;manual",
-        "org.springframework.beans;MutablePropertyValues;true;addPropertyValue;(String,Object);;Argument[1];Argument[-1].Element.MapValue;value;manual",
-        "org.springframework.beans;MutablePropertyValues;true;addPropertyValues;(Map);;Argument[0].MapKey;Argument[-1].Element.MapKey;value;manual",
-        "org.springframework.beans;MutablePropertyValues;true;addPropertyValues;(Map);;Argument[0].MapValue;Argument[-1].Element.MapValue;value;manual",
-        "org.springframework.beans;MutablePropertyValues;true;addPropertyValues;(Map);;Argument[-1];ReturnValue;value;manual",
-        "org.springframework.beans;MutablePropertyValues;true;addPropertyValues;(PropertyValues);;Argument[0].Element;Argument[-1].Element;value;manual",
-        "org.springframework.beans;MutablePropertyValues;true;addPropertyValues;(PropertyValues);;Argument[-1];ReturnValue;value;manual",
-        "org.springframework.beans;MutablePropertyValues;true;get;;;Argument[-1].Element.MapValue;ReturnValue;value;manual",
-        "org.springframework.beans;MutablePropertyValues;true;getPropertyValue;;;Argument[-1].Element;ReturnValue;value;manual",
-        "org.springframework.beans;MutablePropertyValues;true;getPropertyValueList;;;Argument[-1].Element;ReturnValue.Element;value;manual",
-        "org.springframework.beans;MutablePropertyValues;true;getPropertyValues;;;Argument[-1].Element;ReturnValue.ArrayElement;value;manual",
-        "org.springframework.beans;MutablePropertyValues;true;setPropertyValueAt;;;Argument[0];Argument[-1].Element;value;manual"
-      ]
-  }
-}
diff --git a/java/ql/lib/semmle/code/java/frameworks/spring/SpringCache.qll b/java/ql/lib/semmle/code/java/frameworks/spring/SpringCache.qll
deleted file mode 100644
index 007ce0d9d71..00000000000
--- a/java/ql/lib/semmle/code/java/frameworks/spring/SpringCache.qll
+++ /dev/null
@@ -1,27 +0,0 @@
-/**
- * Provides models for the `org.springframework.cache` package.
- */
-
-import java
-private import semmle.code.java.dataflow.ExternalFlow
-
-private class FlowSummaries extends SummaryModelCsv {
-  override predicate row(string row) {
-    row =
-      [
-        "org.springframework.cache;Cache$ValueRetrievalException;false;ValueRetrievalException;;;Argument[0];Argument[-1].MapKey;value;manual",
-        "org.springframework.cache;Cache$ValueRetrievalException;false;getKey;;;Argument[-1].MapKey;ReturnValue;value;manual",
-        "org.springframework.cache;Cache$ValueWrapper;true;get;;;Argument[-1].MapValue;ReturnValue;value;manual",
-        "org.springframework.cache;Cache;true;get;(Object);;Argument[-1].MapValue;ReturnValue.MapValue;value;manual",
-        "org.springframework.cache;Cache;true;get;(Object,Callable);;Argument[-1].MapValue;ReturnValue;value;manual",
-        "org.springframework.cache;Cache;true;get;(Object,Class);;Argument[-1].MapValue;ReturnValue;value;manual",
-        "org.springframework.cache;Cache;true;getNativeCache;;;Argument[-1].MapKey;ReturnValue.MapKey;value;manual",
-        "org.springframework.cache;Cache;true;getNativeCache;;;Argument[-1].MapValue;ReturnValue.MapValue;value;manual",
-        "org.springframework.cache;Cache;true;put;;;Argument[0];Argument[-1].MapKey;value;manual",
-        "org.springframework.cache;Cache;true;put;;;Argument[1];Argument[-1].MapValue;value;manual",
-        "org.springframework.cache;Cache;true;putIfAbsent;;;Argument[0];Argument[-1].MapKey;value;manual",
-        "org.springframework.cache;Cache;true;putIfAbsent;;;Argument[1];Argument[-1].MapValue;value;manual",
-        "org.springframework.cache;Cache;true;putIfAbsent;;;Argument[-1].MapValue;ReturnValue.MapValue;value;manual"
-      ]
-  }
-}
diff --git a/java/ql/lib/semmle/code/java/frameworks/spring/SpringContext.qll b/java/ql/lib/semmle/code/java/frameworks/spring/SpringContext.qll
deleted file mode 100644
index 3860a5457cd..00000000000
--- a/java/ql/lib/semmle/code/java/frameworks/spring/SpringContext.qll
+++ /dev/null
@@ -1,18 +0,0 @@
-/**
- * Provides models for the `org.springframework.context` package.
- */
-
-import java
-private import semmle.code.java.dataflow.ExternalFlow
-
-private class StringSummaryCsv extends SummaryModelCsv {
-  override predicate row(string row) {
-    row =
-      [
-        //`namespace; type; subtypes; name; signature; ext; input; output; kind`
-        "org.springframework.context;MessageSource;true;getMessage;(String,Object[],String,Locale);;Argument[1].ArrayElement;ReturnValue;taint;manual",
-        "org.springframework.context;MessageSource;true;getMessage;(String,Object[],String,Locale);;Argument[2];ReturnValue;taint;manual",
-        "org.springframework.context;MessageSource;true;getMessage;(String,Object[],Locale);;Argument[1].ArrayElement;ReturnValue;taint;manual"
-      ]
-  }
-}
diff --git a/java/ql/lib/semmle/code/java/frameworks/spring/SpringData.qll b/java/ql/lib/semmle/code/java/frameworks/spring/SpringData.qll
deleted file mode 100644
index 52c8579b4c7..00000000000
--- a/java/ql/lib/semmle/code/java/frameworks/spring/SpringData.qll
+++ /dev/null
@@ -1,17 +0,0 @@
-/**
- * Provides classes and predicates for working with Spring classes and interfaces from
- * `org.springframework.data`.
- */
-
-import java
-private import semmle.code.java.dataflow.ExternalFlow
-
-/**
- * Provides models for the `org.springframework.data` package.
- */
-private class FlowSummaries extends SummaryModelCsv {
-  override predicate row(string row) {
-    row =
-      "org.springframework.data.repository;CrudRepository;true;save;;;Argument[0];ReturnValue;value;manual"
-  }
-}
diff --git a/java/ql/lib/semmle/code/java/frameworks/spring/SpringHttp.qll b/java/ql/lib/semmle/code/java/frameworks/spring/SpringHttp.qll
index 2114b4fcc75..6f4eedf0f36 100644
--- a/java/ql/lib/semmle/code/java/frameworks/spring/SpringHttp.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/spring/SpringHttp.qll
@@ -43,107 +43,6 @@ class SpringHttpHeaders extends Class {
   SpringHttpHeaders() { this.hasQualifiedName("org.springframework.http", "HttpHeaders") }
 }
 
-private class UrlOpenSink extends SinkModelCsv {
-  override predicate row(string row) {
-    row =
-      [
-        "org.springframework.http;RequestEntity;false;get;;;Argument[0];open-url;manual",
-        "org.springframework.http;RequestEntity;false;post;;;Argument[0];open-url;manual",
-        "org.springframework.http;RequestEntity;false;head;;;Argument[0];open-url;manual",
-        "org.springframework.http;RequestEntity;false;delete;;;Argument[0];open-url;manual",
-        "org.springframework.http;RequestEntity;false;options;;;Argument[0];open-url;manual",
-        "org.springframework.http;RequestEntity;false;patch;;;Argument[0];open-url;manual",
-        "org.springframework.http;RequestEntity;false;put;;;Argument[0];open-url;manual",
-        "org.springframework.http;RequestEntity;false;method;;;Argument[1];open-url;manual",
-        "org.springframework.http;RequestEntity;false;RequestEntity;(HttpMethod,URI);;Argument[1];open-url;manual",
-        "org.springframework.http;RequestEntity;false;RequestEntity;(MultiValueMap,HttpMethod,URI);;Argument[2];open-url;manual",
-        "org.springframework.http;RequestEntity;false;RequestEntity;(Object,HttpMethod,URI);;Argument[2];open-url;manual",
-        "org.springframework.http;RequestEntity;false;RequestEntity;(Object,HttpMethod,URI,Type);;Argument[2];open-url;manual",
-        "org.springframework.http;RequestEntity;false;RequestEntity;(Object,MultiValueMap,HttpMethod,URI);;Argument[3];open-url;manual",
-        "org.springframework.http;RequestEntity;false;RequestEntity;(Object,MultiValueMap,HttpMethod,URI,Type);;Argument[3];open-url;manual"
-      ]
-  }
-}
-
-private class SpringHttpFlowStep extends SummaryModelCsv {
-  override predicate row(string row) {
-    row =
-      [
-        //"package;type;overrides;name;signature;ext;inputspec;outputspec;kind",
-        "org.springframework.http;HttpEntity;true;HttpEntity;(Object);;Argument[0];Argument[-1];taint;manual",
-        "org.springframework.http;HttpEntity;true;HttpEntity;(Object,MultiValueMap);;Argument[0];Argument[-1];taint;manual",
-        "org.springframework.http;HttpEntity;true;HttpEntity;(Object,MultiValueMap);;Argument[1].MapKey;Argument[-1];taint;manual",
-        "org.springframework.http;HttpEntity;true;HttpEntity;(Object,MultiValueMap);;Argument[1].MapValue.Element;Argument[-1];taint;manual",
-        "org.springframework.http;HttpEntity;true;HttpEntity;(MultiValueMap);;Argument[0].MapKey;Argument[-1];taint;manual",
-        "org.springframework.http;HttpEntity;true;HttpEntity;(MultiValueMap);;Argument[0].MapValue.Element;Argument[-1];taint;manual",
-        "org.springframework.http;HttpEntity;true;getBody;;;Argument[-1];ReturnValue;taint;manual",
-        "org.springframework.http;HttpEntity;true;getHeaders;;;Argument[-1];ReturnValue;taint;manual",
-        "org.springframework.http;ResponseEntity;true;ResponseEntity;(Object,HttpStatus);;Argument[0];Argument[-1];taint;manual",
-        "org.springframework.http;ResponseEntity;true;ResponseEntity;(Object,MultiValueMap,HttpStatus);;Argument[0];Argument[-1];taint;manual",
-        "org.springframework.http;ResponseEntity;true;ResponseEntity;(Object,MultiValueMap,HttpStatus);;Argument[1].MapKey;Argument[-1];taint;manual",
-        "org.springframework.http;ResponseEntity;true;ResponseEntity;(Object,MultiValueMap,HttpStatus);;Argument[1].MapValue.Element;Argument[-1];taint;manual",
-        "org.springframework.http;ResponseEntity;true;ResponseEntity;(MultiValueMap,HttpStatus);;Argument[0].MapKey;Argument[-1];taint;manual",
-        "org.springframework.http;ResponseEntity;true;ResponseEntity;(MultiValueMap,HttpStatus);;Argument[0].MapValue.Element;Argument[-1];taint;manual",
-        "org.springframework.http;ResponseEntity;true;ResponseEntity;(Object,MultiValueMap,int);;Argument[0];Argument[-1];taint;manual",
-        "org.springframework.http;ResponseEntity;true;ResponseEntity;(Object,MultiValueMap,int);;Argument[1].MapKey;Argument[-1];taint;manual",
-        "org.springframework.http;ResponseEntity;true;ResponseEntity;(Object,MultiValueMap,int);;Argument[1].MapValue.Element;Argument[-1];taint;manual",
-        "org.springframework.http;ResponseEntity;true;of;(Optional);;Argument[0].Element;ReturnValue;taint;manual",
-        "org.springframework.http;ResponseEntity;true;ok;(Object);;Argument[0];ReturnValue;taint;manual",
-        "org.springframework.http;ResponseEntity;true;created;(URI);;Argument[0];ReturnValue;taint;manual",
-        "org.springframework.http;ResponseEntity$BodyBuilder;true;contentLength;(long);;Argument[-1];ReturnValue;value;manual",
-        "org.springframework.http;ResponseEntity$BodyBuilder;true;contentType;(MediaType);;Argument[-1];ReturnValue;value;manual",
-        "org.springframework.http;ResponseEntity$BodyBuilder;true;body;(Object);;Argument[-1..0];ReturnValue;taint;manual",
-        "org.springframework.http;ResponseEntity$HeadersBuilder;true;allow;(HttpMethod[]);;Argument[-1];ReturnValue;value;manual",
-        "org.springframework.http;ResponseEntity$HeadersBuilder;true;eTag;(String);;Argument[-1];ReturnValue;value;manual",
-        "org.springframework.http;ResponseEntity$HeadersBuilder;true;eTag;(String);;Argument[0];Argument[-1];taint;manual",
-        "org.springframework.http;ResponseEntity$HeadersBuilder;true;header;(String,String[]);;Argument[-1];ReturnValue;value;manual",
-        "org.springframework.http;ResponseEntity$HeadersBuilder;true;header;(String,String[]);;Argument[0];Argument[-1];taint;manual",
-        "org.springframework.http;ResponseEntity$HeadersBuilder;true;header;(String,String[]);;Argument[1].ArrayElement;Argument[-1];taint;manual",
-        "org.springframework.http;ResponseEntity$HeadersBuilder;true;headers;(Consumer);;Argument[-1];ReturnValue;value;manual",
-        "org.springframework.http;ResponseEntity$HeadersBuilder;true;headers;(HttpHeaders);;Argument[-1];ReturnValue;value;manual",
-        "org.springframework.http;ResponseEntity$HeadersBuilder;true;headers;(HttpHeaders);;Argument[0];Argument[-1];taint;manual",
-        "org.springframework.http;ResponseEntity$HeadersBuilder;true;lastModified;;;Argument[-1];ReturnValue;value;manual",
-        "org.springframework.http;ResponseEntity$HeadersBuilder;true;location;(URI);;Argument[-1];ReturnValue;value;manual",
-        "org.springframework.http;ResponseEntity$HeadersBuilder;true;location;(URI);;Argument[0];Argument[-1];taint;manual",
-        "org.springframework.http;ResponseEntity$HeadersBuilder;true;varyBy;(String[]);;Argument[-1];ReturnValue;value;manual",
-        "org.springframework.http;ResponseEntity$HeadersBuilder;true;build;();;Argument[-1];ReturnValue;taint;manual",
-        "org.springframework.http;RequestEntity;true;getUrl;();;Argument[-1];ReturnValue;taint;manual",
-        "org.springframework.http;HttpHeaders;true;HttpHeaders;(MultiValueMap);;Argument[0].MapKey;Argument[-1];taint;manual",
-        "org.springframework.http;HttpHeaders;true;HttpHeaders;(MultiValueMap);;Argument[0].MapValue.Element;Argument[-1];taint;manual",
-        "org.springframework.http;HttpHeaders;true;get;(Object);;Argument[-1];ReturnValue.Element;taint;manual",
-        "org.springframework.http;HttpHeaders;true;getAccessControlAllowHeaders;();;Argument[-1];ReturnValue.Element;taint;manual",
-        "org.springframework.http;HttpHeaders;true;getAccessControlAllowOrigin;();;Argument[-1];ReturnValue;taint;manual",
-        "org.springframework.http;HttpHeaders;true;getAccessControlExposeHeaders;();;Argument[-1];ReturnValue.Element;taint;manual",
-        "org.springframework.http;HttpHeaders;true;getAccessControlRequestHeaders;();;Argument[-1];ReturnValue.Element;taint;manual",
-        "org.springframework.http;HttpHeaders;true;getCacheControl;();;Argument[-1];ReturnValue;taint;manual",
-        "org.springframework.http;HttpHeaders;true;getConnection;();;Argument[-1];ReturnValue.Element;taint;manual",
-        "org.springframework.http;HttpHeaders;true;getETag;();;Argument[-1];ReturnValue;taint;manual",
-        "org.springframework.http;HttpHeaders;true;getETagValuesAsList;(String);;Argument[-1];ReturnValue.Element;taint;manual",
-        "org.springframework.http;HttpHeaders;true;getFieldValues;(String);;Argument[-1];ReturnValue;taint;manual",
-        "org.springframework.http;HttpHeaders;true;getFirst;(String);;Argument[-1];ReturnValue;taint;manual",
-        "org.springframework.http;HttpHeaders;true;getIfMatch;();;Argument[-1];ReturnValue.Element;taint;manual",
-        "org.springframework.http;HttpHeaders;true;getIfNoneMatch;();;Argument[-1];ReturnValue.Element;taint;manual",
-        "org.springframework.http;HttpHeaders;true;getHost;();;Argument[-1];ReturnValue;taint;manual",
-        "org.springframework.http;HttpHeaders;true;getLocation;();;Argument[-1];ReturnValue;taint;manual",
-        "org.springframework.http;HttpHeaders;true;getOrEmpty;(Object);;Argument[-1];ReturnValue.Element;taint;manual",
-        "org.springframework.http;HttpHeaders;true;getOrigin;();;Argument[-1];ReturnValue;taint;manual",
-        "org.springframework.http;HttpHeaders;true;getPragma;();;Argument[-1];ReturnValue;taint;manual",
-        "org.springframework.http;HttpHeaders;true;getUpgrade;();;Argument[-1];ReturnValue;taint;manual",
-        "org.springframework.http;HttpHeaders;true;getValuesAsList;(String);;Argument[-1];ReturnValue.Element;taint;manual",
-        "org.springframework.http;HttpHeaders;true;getVary;();;Argument[-1];ReturnValue.Element;taint;manual",
-        "org.springframework.http;HttpHeaders;true;add;(String,String);;Argument[0..1];Argument[-1];taint;manual",
-        "org.springframework.http;HttpHeaders;true;set;(String,String);;Argument[0..1];Argument[-1];taint;manual",
-        "org.springframework.http;HttpHeaders;true;addAll;(MultiValueMap);;Argument[0].MapKey;Argument[-1];taint;manual",
-        "org.springframework.http;HttpHeaders;true;addAll;(MultiValueMap);;Argument[0].MapValue.Element;Argument[-1];taint;manual",
-        "org.springframework.http;HttpHeaders;true;addAll;(String,List);;Argument[0];Argument[-1];taint;manual",
-        "org.springframework.http;HttpHeaders;true;addAll;(String,List);;Argument[1].Element;Argument[-1];taint;manual",
-        "org.springframework.http;HttpHeaders;true;formatHeaders;(MultiValueMap);;Argument[0].MapKey;ReturnValue;taint;manual",
-        "org.springframework.http;HttpHeaders;true;formatHeaders;(MultiValueMap);;Argument[0].MapValue.Element;ReturnValue;taint;manual",
-        "org.springframework.http;HttpHeaders;true;encodeBasicAuth;(String,String,Charset);;Argument[0..1];ReturnValue;taint;manual"
-      ]
-  }
-}
-
 private predicate specifiesContentType(SpringRequestMappingMethod method) {
   exists(method.getAProducesExpr())
 }
diff --git a/java/ql/lib/semmle/code/java/frameworks/spring/SpringUi.qll b/java/ql/lib/semmle/code/java/frameworks/spring/SpringUi.qll
deleted file mode 100644
index e8ade8aa432..00000000000
--- a/java/ql/lib/semmle/code/java/frameworks/spring/SpringUi.qll
+++ /dev/null
@@ -1,46 +0,0 @@
-/**
- * Provides models for the `org.springframework.ui` package.
- */
-
-import java
-private import semmle.code.java.dataflow.ExternalFlow
-
-private class FlowSummaries extends SummaryModelCsv {
-  override predicate row(string row) {
-    row =
-      [
-        "org.springframework.ui;Model;true;addAllAttributes;;;Argument[-1];ReturnValue;value;manual",
-        "org.springframework.ui;Model;true;addAllAttributes;(Collection);;Argument[0].Element;Argument[-1].MapValue;value;manual",
-        "org.springframework.ui;Model;true;addAllAttributes;(Map);;Argument[0].MapKey;Argument[-1].MapKey;value;manual",
-        "org.springframework.ui;Model;true;addAllAttributes;(Map);;Argument[0].MapValue;Argument[-1].MapValue;value;manual",
-        "org.springframework.ui;Model;true;addAttribute;;;Argument[-1];ReturnValue;value;manual",
-        "org.springframework.ui;Model;true;addAttribute;(Object);;Argument[0];Argument[-1].MapValue;value;manual",
-        "org.springframework.ui;Model;true;addAttribute;(String,Object);;Argument[0];Argument[-1].MapKey;value;manual",
-        "org.springframework.ui;Model;true;addAttribute;(String,Object);;Argument[1];Argument[-1].MapValue;value;manual",
-        "org.springframework.ui;Model;true;asMap;;;Argument[-1].MapKey;ReturnValue.MapKey;value;manual",
-        "org.springframework.ui;Model;true;asMap;;;Argument[-1].MapValue;ReturnValue.MapValue;value;manual",
-        "org.springframework.ui;Model;true;getAttribute;;;Argument[-1].MapValue;ReturnValue;value;manual",
-        "org.springframework.ui;Model;true;mergeAttributes;;;Argument[-1];ReturnValue;value;manual",
-        "org.springframework.ui;Model;true;mergeAttributes;;;Argument[0].MapKey;Argument[-1].MapKey;value;manual",
-        "org.springframework.ui;Model;true;mergeAttributes;;;Argument[0].MapValue;Argument[-1].MapValue;value;manual",
-        "org.springframework.ui;ModelMap;false;ModelMap;(Object);;Argument[0];Argument[-1].MapValue;value;manual",
-        "org.springframework.ui;ModelMap;false;ModelMap;(String,Object);;Argument[0];Argument[-1].MapKey;value;manual",
-        "org.springframework.ui;ModelMap;false;ModelMap;(String,Object);;Argument[1];Argument[-1].MapValue;value;manual",
-        "org.springframework.ui;ModelMap;false;addAllAttributes;;;Argument[-1];ReturnValue;value;manual",
-        "org.springframework.ui;ModelMap;false;addAllAttributes;(Collection);;Argument[0].Element;Argument[-1].MapValue;value;manual",
-        "org.springframework.ui;ModelMap;false;addAllAttributes;(Map);;Argument[0].MapKey;Argument[-1].MapKey;value;manual",
-        "org.springframework.ui;ModelMap;false;addAllAttributes;(Map);;Argument[0].MapValue;Argument[-1].MapValue;value;manual",
-        "org.springframework.ui;ModelMap;false;addAttribute;;;Argument[-1];ReturnValue;value;manual",
-        "org.springframework.ui;ModelMap;false;addAttribute;(Object);;Argument[0];Argument[-1].MapValue;value;manual",
-        "org.springframework.ui;ModelMap;false;addAttribute;(String,Object);;Argument[0];Argument[-1].MapKey;value;manual",
-        "org.springframework.ui;ModelMap;false;addAttribute;(String,Object);;Argument[1];Argument[-1].MapValue;value;manual",
-        "org.springframework.ui;ModelMap;false;getAttribute;;;Argument[-1].MapValue;ReturnValue;value;manual",
-        "org.springframework.ui;ModelMap;false;mergeAttributes;;;Argument[-1];ReturnValue;value;manual",
-        "org.springframework.ui;ModelMap;false;mergeAttributes;;;Argument[0].MapKey;Argument[-1].MapKey;value;manual",
-        "org.springframework.ui;ModelMap;false;mergeAttributes;;;Argument[0].MapValue;Argument[-1].MapValue;value;manual",
-        "org.springframework.ui;ConcurrentModel;false;ConcurrentModel;(Object);;Argument[0];Argument[-1].MapValue;value;manual",
-        "org.springframework.ui;ConcurrentModel;false;ConcurrentModel;(String,Object);;Argument[0];Argument[-1].MapKey;value;manual",
-        "org.springframework.ui;ConcurrentModel;false;ConcurrentModel;(String,Object);;Argument[1];Argument[-1].MapValue;value;manual"
-      ]
-  }
-}
diff --git a/java/ql/lib/semmle/code/java/frameworks/spring/SpringUtil.qll b/java/ql/lib/semmle/code/java/frameworks/spring/SpringUtil.qll
deleted file mode 100644
index 7c78c6b7afc..00000000000
--- a/java/ql/lib/semmle/code/java/frameworks/spring/SpringUtil.qll
+++ /dev/null
@@ -1,153 +0,0 @@
-/**
- * Provides models for the `org.springframework.util` package.
- */
-
-import java
-private import semmle.code.java.dataflow.ExternalFlow
-
-private class FlowSummaries extends SummaryModelCsv {
-  override predicate row(string row) {
-    row =
-      [
-        "org.springframework.util;AntPathMatcher;false;combine;;;Argument[0..1];ReturnValue;taint;manual",
-        "org.springframework.util;AntPathMatcher;false;doMatch;;;Argument[1];Argument[3].MapValue;taint;manual",
-        "org.springframework.util;AntPathMatcher;false;extractPathWithinPattern;;;Argument[1];ReturnValue;taint;manual",
-        "org.springframework.util;AntPathMatcher;false;extractUriTemplateVariables;;;Argument[1];ReturnValue.MapValue;taint;manual",
-        "org.springframework.util;AntPathMatcher;false;tokenizePath;;;Argument[0];ReturnValue.ArrayElement;taint;manual",
-        "org.springframework.util;AntPathMatcher;false;tokenizePattern;;;Argument[0];ReturnValue.ArrayElement;taint;manual",
-        "org.springframework.util;AutoPopulatingList;false;AutoPopulatingList;(java.util.List,org.springframework.util.AutoPopulatingList.ElementFactory);;Argument[0].Element;Argument[-1].Element;value;manual",
-        "org.springframework.util;AutoPopulatingList;false;AutoPopulatingList;(java.util.List,java.lang.Class);;Argument[0].Element;Argument[-1].Element;value;manual",
-        "org.springframework.util;Base64Utils;false;decode;;;Argument[0];ReturnValue;taint;manual",
-        "org.springframework.util;Base64Utils;false;decodeFromString;;;Argument[0];ReturnValue;taint;manual",
-        "org.springframework.util;Base64Utils;false;decodeFromUrlSafeString;;;Argument[0];ReturnValue;taint;manual",
-        "org.springframework.util;Base64Utils;false;decodeUrlSafe;;;Argument[0];ReturnValue;taint;manual",
-        "org.springframework.util;Base64Utils;false;encode;;;Argument[0];ReturnValue;taint;manual",
-        "org.springframework.util;Base64Utils;false;encodeToString;;;Argument[0];ReturnValue;taint;manual",
-        "org.springframework.util;Base64Utils;false;encodeToUrlSafeString;;;Argument[0];ReturnValue;taint;manual",
-        "org.springframework.util;Base64Utils;false;encodeUrlSafe;;;Argument[0];ReturnValue;taint;manual",
-        "org.springframework.util;CollectionUtils;false;arrayToList;;;Argument[0].ArrayElement;ReturnValue.Element;value;manual",
-        "org.springframework.util;CollectionUtils;false;findFirstMatch;;;Argument[0].Element;ReturnValue;value;manual",
-        "org.springframework.util;CollectionUtils;false;findValueOfType;;;Argument[0].Element;ReturnValue;value;manual",
-        "org.springframework.util;CollectionUtils;false;firstElement;;;Argument[0].Element;ReturnValue;value;manual",
-        "org.springframework.util;CollectionUtils;false;lastElement;;;Argument[0].Element;ReturnValue;value;manual",
-        "org.springframework.util;CollectionUtils;false;mergeArrayIntoCollection;;;Argument[0].ArrayElement;Argument[1].Element;value;manual",
-        "org.springframework.util;CollectionUtils;false;mergePropertiesIntoMap;;;Argument[0].MapKey;Argument[1].MapKey;value;manual",
-        "org.springframework.util;CollectionUtils;false;mergePropertiesIntoMap;;;Argument[0].MapValue;Argument[1].MapValue;value;manual",
-        "org.springframework.util;CollectionUtils;false;toArray;;;Argument[0].Element;ReturnValue.ArrayElement;value;manual",
-        "org.springframework.util;CollectionUtils;false;toIterator;;;Argument[0].Element;ReturnValue.Element;value;manual",
-        "org.springframework.util;CollectionUtils;false;toMultiValueMap;;;Argument[0].MapKey;ReturnValue.MapKey;value;manual",
-        "org.springframework.util;CollectionUtils;false;toMultiValueMap;;;Argument[0].MapValue.Element;ReturnValue.MapValue.Element;value;manual",
-        "org.springframework.util;CollectionUtils;false;unmodifiableMultiValueMap;;;Argument[0].MapKey;ReturnValue.MapKey;value;manual",
-        "org.springframework.util;CollectionUtils;false;unmodifiableMultiValueMap;;;Argument[0].MapValue;ReturnValue.MapValue;value;manual",
-        "org.springframework.util;CompositeIterator;false;add;;;Argument[0].Element;Argument[-1].Element;value;manual",
-        "org.springframework.util;ConcurrentReferenceHashMap;false;getReference;;;Argument[-1].MapKey;ReturnValue.MapKey;value;manual",
-        "org.springframework.util;ConcurrentReferenceHashMap;false;getReference;;;Argument[-1].MapValue;ReturnValue.MapValue;value;manual",
-        "org.springframework.util;ConcurrentReferenceHashMap;false;getSegment;;;Argument[-1].MapKey;ReturnValue.MapKey;value;manual",
-        "org.springframework.util;ConcurrentReferenceHashMap;false;getSegment;;;Argument[-1].MapValue;ReturnValue.MapValue;value;manual",
-        "org.springframework.util;FastByteArrayOutputStream;false;getInputStream;;;Argument[-1];ReturnValue;taint;manual",
-        "org.springframework.util;FastByteArrayOutputStream;false;toByteArray;;;Argument[-1];ReturnValue;taint;manual",
-        "org.springframework.util;FastByteArrayOutputStream;false;write;;;Argument[0];Argument[-1];taint;manual",
-        "org.springframework.util;FastByteArrayOutputStream;false;writeTo;;;Argument[-1];Argument[0];taint;manual",
-        "org.springframework.util;FileCopyUtils;false;copy;;;Argument[0];Argument[1];taint;manual",
-        "org.springframework.util;FileCopyUtils;false;copyToByteArray;;;Argument[0];ReturnValue;taint;manual",
-        "org.springframework.util;FileCopyUtils;false;copyToString;;;Argument[0];ReturnValue;taint;manual",
-        "org.springframework.util;FileSystemUtils;false;copyRecursively;(java.io.File,java.io.File);;Argument[0];Argument[1];taint;manual",
-        "org.springframework.util;LinkedMultiValueMap;false;LinkedMultiValueMap;(java.util.Map);;Argument[0].MapKey;Argument[-1].MapKey;value;manual",
-        "org.springframework.util;LinkedMultiValueMap;false;LinkedMultiValueMap;(java.util.Map);;Argument[0].MapValue.Element;Argument[-1].MapValue.Element;value;manual",
-        "org.springframework.util;LinkedMultiValueMap;false;deepCopy;;;Argument[-1].MapKey;ReturnValue.MapKey;value;manual",
-        "org.springframework.util;LinkedMultiValueMap;false;deepCopy;;;Argument[-1].MapValue;ReturnValue.MapValue;value;manual",
-        "org.springframework.util;MultiValueMap;true;add;;;Argument[0];Argument[-1].MapKey;value;manual",
-        "org.springframework.util;MultiValueMap;true;add;;;Argument[1];Argument[-1].MapValue.Element;value;manual",
-        "org.springframework.util;MultiValueMap;true;addAll;(java.lang.Object,java.util.List);;Argument[0];Argument[-1].MapKey;value;manual",
-        "org.springframework.util;MultiValueMap;true;addAll;(java.lang.Object,java.util.List);;Argument[1].Element;Argument[-1].MapValue.Element;value;manual",
-        "org.springframework.util;MultiValueMap;true;addAll;(org.springframework.util.MultiValueMap);;Argument[0].MapKey;Argument[-1].MapKey;value;manual",
-        "org.springframework.util;MultiValueMap;true;addAll;(org.springframework.util.MultiValueMap);;Argument[0].MapValue.Element;Argument[-1].MapValue.Element;value;manual",
-        "org.springframework.util;MultiValueMap;true;addIfAbsent;;;Argument[0];Argument[-1].MapKey;value;manual",
-        "org.springframework.util;MultiValueMap;true;addIfAbsent;;;Argument[1];Argument[-1].MapValue.Element;value;manual",
-        "org.springframework.util;MultiValueMap;true;getFirst;;;Argument[-1].MapValue.Element;ReturnValue;value;manual",
-        "org.springframework.util;MultiValueMap;true;set;;;Argument[0];Argument[-1].MapKey;value;manual",
-        "org.springframework.util;MultiValueMap;true;set;;;Argument[1];Argument[-1].MapValue.Element;value;manual",
-        "org.springframework.util;MultiValueMap;true;setAll;;;Argument[0].MapKey;Argument[-1].MapKey;value;manual",
-        "org.springframework.util;MultiValueMap;true;setAll;;;Argument[0].MapValue;Argument[-1].MapValue.Element;value;manual",
-        "org.springframework.util;MultiValueMap;true;toSingleValueMap;;;Argument[-1].MapKey;ReturnValue.MapKey;value;manual",
-        "org.springframework.util;MultiValueMap;true;toSingleValueMap;;;Argument[-1].MapValue.Element;ReturnValue.MapValue;value;manual",
-        "org.springframework.util;MultiValueMapAdapter;false;MultiValueMapAdapter;;;Argument[0].MapKey;Argument[-1].MapKey;value;manual",
-        "org.springframework.util;MultiValueMapAdapter;false;MultiValueMapAdapter;;;Argument[0].MapValue.Element;Argument[-1].MapValue.Element;value;manual",
-        "org.springframework.util;ObjectUtils;false;addObjectToArray;;;Argument[0].ArrayElement;ReturnValue.ArrayElement;value;manual",
-        "org.springframework.util;ObjectUtils;false;addObjectToArray;;;Argument[1];ReturnValue.ArrayElement;value;manual",
-        "org.springframework.util;ObjectUtils;false;toObjectArray;;;Argument[0].ArrayElement;ReturnValue.ArrayElement;value;manual",
-        "org.springframework.util;ObjectUtils;false;unwrapOptional;;;Argument[0].Element;ReturnValue;value;manual",
-        "org.springframework.util;PropertiesPersister;true;load;;;Argument[1];Argument[0];taint;manual",
-        "org.springframework.util;PropertiesPersister;true;loadFromXml;;;Argument[1];Argument[0];taint;manual",
-        "org.springframework.util;PropertiesPersister;true;store;;;Argument[0];Argument[1];taint;manual",
-        "org.springframework.util;PropertiesPersister;true;store;;;Argument[2];Argument[1];taint;manual",
-        "org.springframework.util;PropertiesPersister;true;storeToXml;;;Argument[0];Argument[1];taint;manual",
-        "org.springframework.util;PropertiesPersister;true;storeToXml;;;Argument[2];Argument[1];taint;manual",
-        "org.springframework.util;PropertyPlaceholderHelper;false;PropertyPlaceholderHelper;;;Argument[0..1];Argument[-1];taint;manual",
-        "org.springframework.util;PropertyPlaceholderHelper;false;parseStringValue;;;Argument[0];ReturnValue;taint;manual",
-        "org.springframework.util;PropertyPlaceholderHelper;false;replacePlaceholders;;;Argument[0];ReturnValue;taint;manual",
-        "org.springframework.util;PropertyPlaceholderHelper;false;replacePlaceholders;(java.lang.String,java.util.Properties);;Argument[1].MapValue;ReturnValue;taint;manual",
-        "org.springframework.util;ResourceUtils;false;extractArchiveURL;;;Argument[0];ReturnValue;taint;manual",
-        "org.springframework.util;ResourceUtils;false;extractJarFileURL;;;Argument[0];ReturnValue;taint;manual",
-        "org.springframework.util;ResourceUtils;false;getFile;;;Argument[0];ReturnValue;taint;manual",
-        "org.springframework.util;ResourceUtils;false;getURL;;;Argument[0];ReturnValue;taint;manual",
-        "org.springframework.util;ResourceUtils;false;toURI;;;Argument[0];ReturnValue;taint;manual",
-        "org.springframework.util;RouteMatcher;true;combine;;;Argument[0..1];ReturnValue;taint;manual",
-        "org.springframework.util;RouteMatcher;true;matchAndExtract;;;Argument[0];ReturnValue.MapKey;taint;manual",
-        "org.springframework.util;RouteMatcher;true;matchAndExtract;;;Argument[1];ReturnValue.MapValue;taint;manual",
-        "org.springframework.util;RouteMatcher;true;parseRoute;;;Argument[0];ReturnValue;taint;manual",
-        "org.springframework.util;SerializationUtils;false;deserialize;;;Argument[0];ReturnValue;taint;manual",
-        "org.springframework.util;SerializationUtils;false;serialize;;;Argument[0];ReturnValue;taint;manual",
-        "org.springframework.util;StreamUtils;false;copy;(byte[],java.io.OutputStream);;Argument[0];Argument[1];taint;manual",
-        "org.springframework.util;StreamUtils;false;copy;(java.io.InputStream,java.io.OutputStream);;Argument[0];Argument[1];taint;manual",
-        "org.springframework.util;StreamUtils;false;copy;(java.lang.String,java.nio.charset.Charset,java.io.OutputStream);;Argument[0];Argument[2];taint;manual",
-        "org.springframework.util;StreamUtils;false;copyRange;;;Argument[0];Argument[1];taint;manual",
-        "org.springframework.util;StreamUtils;false;copyToByteArray;;;Argument[0];ReturnValue;taint;manual",
-        "org.springframework.util;StreamUtils;false;copyToString;;;Argument[0];ReturnValue;taint;manual",
-        "org.springframework.util;StringUtils;false;addStringToArray;;;Argument[0].ArrayElement;ReturnValue.ArrayElement;value;manual",
-        "org.springframework.util;StringUtils;false;addStringToArray;;;Argument[1];ReturnValue.ArrayElement;value;manual",
-        "org.springframework.util;StringUtils;false;applyRelativePath;;;Argument[0..1];ReturnValue;taint;manual",
-        "org.springframework.util;StringUtils;false;arrayToCommaDelimitedString;;;Argument[0].ArrayElement;ReturnValue;taint;manual",
-        "org.springframework.util;StringUtils;false;arrayToDelimitedString;;;Argument[0].ArrayElement;ReturnValue;taint;manual",
-        "org.springframework.util;StringUtils;false;arrayToDelimitedString;;;Argument[1];ReturnValue;taint;manual",
-        "org.springframework.util;StringUtils;false;capitalize;;;Argument[0];ReturnValue;taint;manual",
-        "org.springframework.util;StringUtils;false;cleanPath;;;Argument[0];ReturnValue;taint;manual",
-        "org.springframework.util;StringUtils;false;collectionToCommaDelimitedString;;;Argument[0].Element;ReturnValue;taint;manual",
-        "org.springframework.util;StringUtils;false;collectionToDelimitedString;;;Argument[0].Element;ReturnValue;taint;manual",
-        "org.springframework.util;StringUtils;false;collectionToDelimitedString;;;Argument[1..3];ReturnValue;taint;manual",
-        "org.springframework.util;StringUtils;false;commaDelimitedListToSet;;;Argument[0];ReturnValue.Element;taint;manual",
-        "org.springframework.util;StringUtils;false;commaDelimitedListToStringArray;;;Argument[0];ReturnValue.ArrayElement;taint;manual",
-        "org.springframework.util;StringUtils;false;concatenateStringArrays;;;Argument[0..1].ArrayElement;ReturnValue.ArrayElement;taint;manual",
-        "org.springframework.util;StringUtils;false;delete;;;Argument[0];ReturnValue;taint;manual",
-        "org.springframework.util;StringUtils;false;deleteAny;;;Argument[0];ReturnValue;taint;manual",
-        "org.springframework.util;StringUtils;false;delimitedListToStringArray;;;Argument[0];ReturnValue.ArrayElement;taint;manual",
-        "org.springframework.util;StringUtils;false;getFilename;;;Argument[0];ReturnValue;taint;manual",
-        "org.springframework.util;StringUtils;false;getFilenameExtension;;;Argument[0];ReturnValue;taint;manual",
-        "org.springframework.util;StringUtils;false;mergeStringArrays;;;Argument[0..1].ArrayElement;ReturnValue.ArrayElement;value;manual",
-        "org.springframework.util;StringUtils;false;quote;;;Argument[0];ReturnValue;taint;manual",
-        "org.springframework.util;StringUtils;false;quoteIfString;;;Argument[0];ReturnValue;taint;manual",
-        "org.springframework.util;StringUtils;false;removeDuplicateStrings;;;Argument[0].ArrayElement;ReturnValue.ArrayElement;value;manual",
-        "org.springframework.util;StringUtils;false;replace;;;Argument[0];ReturnValue;taint;manual",
-        "org.springframework.util;StringUtils;false;replace;;;Argument[2];ReturnValue;taint;manual",
-        "org.springframework.util;StringUtils;false;sortStringArray;;;Argument[0].ArrayElement;ReturnValue.ArrayElement;value;manual",
-        "org.springframework.util;StringUtils;false;split;;;Argument[0];ReturnValue.ArrayElement;taint;manual",
-        "org.springframework.util;StringUtils;false;splitArrayElementsIntoProperties;;;Argument[0].ArrayElement;ReturnValue.MapKey;taint;manual",
-        "org.springframework.util;StringUtils;false;splitArrayElementsIntoProperties;;;Argument[0].ArrayElement;ReturnValue.MapValue;taint;manual",
-        "org.springframework.util;StringUtils;false;stripFilenameExtension;;;Argument[0];ReturnValue;taint;manual",
-        "org.springframework.util;StringUtils;false;tokenizeToStringArray;;;Argument[0];ReturnValue.ArrayElement;taint;manual",
-        "org.springframework.util;StringUtils;false;toStringArray;;;Argument[0].Element;ReturnValue.ArrayElement;value;manual",
-        "org.springframework.util;StringUtils;false;trimAllWhitespace;;;Argument[0];ReturnValue;taint;manual",
-        "org.springframework.util;StringUtils;false;trimArrayElements;;;Argument[0].ArrayElement;ReturnValue.ArrayElement;taint;manual",
-        "org.springframework.util;StringUtils;false;trimLeadingCharacter;;;Argument[0];ReturnValue;taint;manual",
-        "org.springframework.util;StringUtils;false;trimLeadingWhitespace;;;Argument[0];ReturnValue;taint;manual",
-        "org.springframework.util;StringUtils;false;trimTrailingCharacter;;;Argument[0];ReturnValue;taint;manual",
-        "org.springframework.util;StringUtils;false;trimTrailingWhitespace;;;Argument[0];ReturnValue;taint;manual",
-        "org.springframework.util;StringUtils;false;trimWhitespace;;;Argument[0];ReturnValue;taint;manual",
-        "org.springframework.util;StringUtils;false;uncapitalize;;;Argument[0];ReturnValue;taint;manual",
-        "org.springframework.util;StringUtils;false;unqualify;;;Argument[0];ReturnValue;taint;manual",
-        "org.springframework.util;StringUtils;false;uriDecode;;;Argument[0];ReturnValue;taint;manual",
-        "org.springframework.util;StringValueResolver;false;resolveStringValue;;;Argument[0];ReturnValue;taint;manual",
-        "org.springframework.util;SystemPropertyUtils;false;resolvePlaceholders;;;Argument[0];ReturnValue;taint;manual"
-      ]
-  }
-}
diff --git a/java/ql/lib/semmle/code/java/frameworks/spring/SpringValidation.qll b/java/ql/lib/semmle/code/java/frameworks/spring/SpringValidation.qll
deleted file mode 100644
index 2dcf184de84..00000000000
--- a/java/ql/lib/semmle/code/java/frameworks/spring/SpringValidation.qll
+++ /dev/null
@@ -1,25 +0,0 @@
-/** Definitions of flow steps through utility methods of `org.springframework.validation.Errors`. */
-
-import java
-private import semmle.code.java.dataflow.ExternalFlow
-
-private class SpringValidationErrorModel extends SummaryModelCsv {
-  override predicate row(string row) {
-    row =
-      [
-        "org.springframework.validation;Errors;true;addAllErrors;;;Argument[0];Argument[-1];taint;manual",
-        "org.springframework.validation;Errors;true;getAllErrors;;;Argument[-1];ReturnValue;taint;manual",
-        "org.springframework.validation;Errors;true;getFieldError;;;Argument[-1];ReturnValue;taint;manual",
-        "org.springframework.validation;Errors;true;getFieldErrors;;;Argument[-1];ReturnValue;taint;manual",
-        "org.springframework.validation;Errors;true;getGlobalError;;;Argument[-1];ReturnValue;taint;manual",
-        "org.springframework.validation;Errors;true;getGlobalErrors;;;Argument[-1];ReturnValue;taint;manual",
-        "org.springframework.validation;Errors;true;reject;;;Argument[0];Argument[-1];taint;manual",
-        "org.springframework.validation;Errors;true;reject;;;Argument[1].ArrayElement;Argument[-1];taint;manual",
-        "org.springframework.validation;Errors;true;reject;;;Argument[2];Argument[-1];taint;manual",
-        "org.springframework.validation;Errors;true;rejectValue;;;Argument[1];Argument[-1];taint;manual",
-        "org.springframework.validation;Errors;true;rejectValue;;;Argument[3];Argument[-1];taint;manual",
-        "org.springframework.validation;Errors;true;rejectValue;(java.lang.String,java.lang.String,java.lang.Object[],java.lang.String);;Argument[2].ArrayElement;Argument[-1];taint;manual",
-        "org.springframework.validation;Errors;true;rejectValue;(java.lang.String,java.lang.String,java.lang.String);;Argument[2];Argument[-1];taint;manual"
-      ]
-  }
-}
diff --git a/java/ql/lib/semmle/code/java/frameworks/spring/SpringWebClient.qll b/java/ql/lib/semmle/code/java/frameworks/spring/SpringWebClient.qll
index 9744c323e36..955cb9e4131 100644
--- a/java/ql/lib/semmle/code/java/frameworks/spring/SpringWebClient.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/spring/SpringWebClient.qll
@@ -28,26 +28,3 @@ class SpringWebClient extends Interface {
     this.hasQualifiedName("org.springframework.web.reactive.function.client", "WebClient")
   }
 }
-
-private class UrlOpenSink extends SinkModelCsv {
-  override predicate row(string row) {
-    row =
-      [
-        "org.springframework.web.client;RestTemplate;false;delete;;;Argument[0];open-url;manual",
-        "org.springframework.web.client;RestTemplate;false;doExecute;;;Argument[0];open-url;manual",
-        "org.springframework.web.client;RestTemplate;false;exchange;;;Argument[0];open-url;manual",
-        "org.springframework.web.client;RestTemplate;false;execute;;;Argument[0];open-url;manual",
-        "org.springframework.web.client;RestTemplate;false;getForEntity;;;Argument[0];open-url;manual",
-        "org.springframework.web.client;RestTemplate;false;getForObject;;;Argument[0];open-url;manual",
-        "org.springframework.web.client;RestTemplate;false;headForHeaders;;;Argument[0];open-url;manual",
-        "org.springframework.web.client;RestTemplate;false;optionsForAllow;;;Argument[0];open-url;manual",
-        "org.springframework.web.client;RestTemplate;false;patchForObject;;;Argument[0];open-url;manual",
-        "org.springframework.web.client;RestTemplate;false;postForEntity;;;Argument[0];open-url;manual",
-        "org.springframework.web.client;RestTemplate;false;postForLocation;;;Argument[0];open-url;manual",
-        "org.springframework.web.client;RestTemplate;false;postForObject;;;Argument[0];open-url;manual",
-        "org.springframework.web.client;RestTemplate;false;put;;;Argument[0];open-url;manual",
-        "org.springframework.web.reactive.function.client;WebClient;false;create;;;Argument[0];open-url;manual",
-        "org.springframework.web.reactive.function.client;WebClient$Builder;false;baseUrl;;;Argument[0];open-url;manual"
-      ]
-  }
-}
diff --git a/java/ql/lib/semmle/code/java/frameworks/spring/SpringWebMultipart.qll b/java/ql/lib/semmle/code/java/frameworks/spring/SpringWebMultipart.qll
deleted file mode 100644
index 43acaceda76..00000000000
--- a/java/ql/lib/semmle/code/java/frameworks/spring/SpringWebMultipart.qll
+++ /dev/null
@@ -1,25 +0,0 @@
-/** Provides models of taint flow in `org.springframework.web.multipart` */
-
-import java
-private import semmle.code.java.dataflow.ExternalFlow
-
-private class FlowSummaries extends SummaryModelCsv {
-  override predicate row(string row) {
-    row =
-      [
-        "org.springframework.web.multipart;MultipartFile;true;getBytes;;;Argument[-1];ReturnValue;taint;manual",
-        "org.springframework.web.multipart;MultipartFile;true;getInputStream;;;Argument[-1];ReturnValue;taint;manual",
-        "org.springframework.web.multipart;MultipartFile;true;getName;;;Argument[-1];ReturnValue;taint;manual",
-        "org.springframework.web.multipart;MultipartFile;true;getOriginalFilename;;;Argument[-1];ReturnValue;taint;manual",
-        "org.springframework.web.multipart;MultipartFile;true;getResource;;;Argument[-1];ReturnValue;taint;manual",
-        "org.springframework.web.multipart;MultipartHttpServletRequest;true;getMultipartHeaders;;;Argument[-1];ReturnValue;taint;manual",
-        "org.springframework.web.multipart;MultipartHttpServletRequest;true;getRequestHeaders;;;Argument[-1];ReturnValue;taint;manual",
-        "org.springframework.web.multipart;MultipartRequest;true;getFile;;;Argument[-1];ReturnValue;taint;manual",
-        "org.springframework.web.multipart;MultipartRequest;true;getFileMap;;;Argument[-1];ReturnValue.MapValue;taint;manual",
-        "org.springframework.web.multipart;MultipartRequest;true;getFileNames;;;Argument[-1];ReturnValue.Element;taint;manual",
-        "org.springframework.web.multipart;MultipartRequest;true;getFiles;;;Argument[-1];ReturnValue.Element;taint;manual",
-        "org.springframework.web.multipart;MultipartRequest;true;getMultiFileMap;;;Argument[-1];ReturnValue.MapValue;taint;manual",
-        "org.springframework.web.multipart;MultipartResolver;true;resolveMultipart;;;Argument[0];ReturnValue;taint;manual"
-      ]
-  }
-}
diff --git a/java/ql/lib/semmle/code/java/frameworks/spring/SpringWebUtil.qll b/java/ql/lib/semmle/code/java/frameworks/spring/SpringWebUtil.qll
deleted file mode 100644
index 4f855eedbae..00000000000
--- a/java/ql/lib/semmle/code/java/frameworks/spring/SpringWebUtil.qll
+++ /dev/null
@@ -1,176 +0,0 @@
-/** Provides models of taint flow in `org.springframework.web.util` */
-
-import java
-private import semmle.code.java.dataflow.ExternalFlow
-
-private class FlowSummaries extends SummaryModelCsv {
-  override predicate row(string row) {
-    row =
-      [
-        "org.springframework.web.util;UriBuilder;true;build;;;Argument[-1];ReturnValue;taint;manual",
-        "org.springframework.web.util;UriBuilder;true;build;(Map);;Argument[0].MapValue;Argument[-1];taint;manual",
-        "org.springframework.web.util;UriBuilder;true;build;(Map);;Argument[0].MapValue;ReturnValue;taint;manual",
-        "org.springframework.web.util;UriBuilder;true;build;(Object[]);;Argument[0].ArrayElement;ReturnValue;taint;manual",
-        "org.springframework.web.util;UriBuilder;true;fragment;;;Argument[-1];ReturnValue;value;manual",
-        "org.springframework.web.util;UriBuilder;true;fragment;;;Argument[0];Argument[-1];taint;manual",
-        "org.springframework.web.util;UriBuilder;true;host;;;Argument[-1];ReturnValue;value;manual",
-        "org.springframework.web.util;UriBuilder;true;host;;;Argument[0];Argument[-1];taint;manual",
-        "org.springframework.web.util;UriBuilder;true;path;;;Argument[-1];ReturnValue;value;manual",
-        "org.springframework.web.util;UriBuilder;true;path;;;Argument[0];Argument[-1];taint;manual",
-        "org.springframework.web.util;UriBuilder;true;pathSegment;;;Argument[-1];ReturnValue;value;manual",
-        "org.springframework.web.util;UriBuilder;true;pathSegment;;;Argument[0].ArrayElement;Argument[-1];taint;manual",
-        "org.springframework.web.util;UriBuilder;true;port;;;Argument[-1];ReturnValue;value;manual",
-        "org.springframework.web.util;UriBuilder;true;port;(java.lang.String);;Argument[0];Argument[-1];taint;manual",
-        "org.springframework.web.util;UriBuilder;true;query;;;Argument[-1];ReturnValue;value;manual",
-        "org.springframework.web.util;UriBuilder;true;query;;;Argument[0];Argument[-1];taint;manual",
-        "org.springframework.web.util;UriBuilder;true;queryParam;;;Argument[-1];ReturnValue;value;manual",
-        "org.springframework.web.util;UriBuilder;true;queryParam;;;Argument[0];Argument[-1];taint;manual",
-        "org.springframework.web.util;UriBuilder;true;queryParam;(String,Collection);;Argument[1].Element;Argument[-1];taint;manual",
-        "org.springframework.web.util;UriBuilder;true;queryParam;(String,Object[]);;Argument[1].ArrayElement;Argument[-1];taint;manual",
-        "org.springframework.web.util;UriBuilder;true;queryParamIfPresent;;;Argument[-1];ReturnValue;value;manual",
-        "org.springframework.web.util;UriBuilder;true;queryParamIfPresent;;;Argument[0];Argument[-1];taint;manual",
-        "org.springframework.web.util;UriBuilder;true;queryParamIfPresent;;;Argument[1].Element;Argument[-1];taint;manual",
-        "org.springframework.web.util;UriBuilder;true;queryParams;;;Argument[-1];ReturnValue;value;manual",
-        "org.springframework.web.util;UriBuilder;true;queryParams;;;Argument[0].MapKey;Argument[-1];taint;manual",
-        "org.springframework.web.util;UriBuilder;true;queryParams;;;Argument[0].MapValue.Element;Argument[-1];taint;manual",
-        "org.springframework.web.util;UriBuilder;true;replacePath;;;Argument[-1];ReturnValue;value;manual",
-        "org.springframework.web.util;UriBuilder;true;replacePath;;;Argument[0];Argument[-1];taint;manual",
-        "org.springframework.web.util;UriBuilder;true;replaceQuery;;;Argument[-1];ReturnValue;value;manual",
-        "org.springframework.web.util;UriBuilder;true;replaceQuery;;;Argument[0];Argument[-1];taint;manual",
-        "org.springframework.web.util;UriBuilder;true;replaceQueryParam;;;Argument[-1];ReturnValue;value;manual",
-        "org.springframework.web.util;UriBuilder;true;replaceQueryParam;;;Argument[0];Argument[-1];taint;manual",
-        "org.springframework.web.util;UriBuilder;true;replaceQueryParam;(String,Collection);;Argument[1].Element;Argument[-1];taint;manual",
-        "org.springframework.web.util;UriBuilder;true;replaceQueryParam;(String,Object[]);;Argument[1].ArrayElement;Argument[-1];taint;manual",
-        "org.springframework.web.util;UriBuilder;true;replaceQueryParams;;;Argument[-1];ReturnValue;value;manual",
-        "org.springframework.web.util;UriBuilder;true;replaceQueryParams;;;Argument[0].MapKey;Argument[-1];taint;manual",
-        "org.springframework.web.util;UriBuilder;true;replaceQueryParams;;;Argument[0].MapValue.Element;Argument[-1];taint;manual",
-        "org.springframework.web.util;UriBuilder;true;scheme;;;Argument[-1];ReturnValue;value;manual",
-        "org.springframework.web.util;UriBuilder;true;scheme;;;Argument[0];Argument[-1];taint;manual",
-        "org.springframework.web.util;UriBuilder;true;userInfo;;;Argument[-1];ReturnValue;value;manual",
-        "org.springframework.web.util;UriBuilder;true;userInfo;;;Argument[0];Argument[-1];taint;manual",
-        "org.springframework.web.util;UriBuilderFactory;true;builder;;;Argument[-1];ReturnValue;taint;manual",
-        "org.springframework.web.util;UriBuilderFactory;true;uriString;;;Argument[-1..0];ReturnValue;taint;manual",
-        "org.springframework.web.util;UriComponents$UriTemplateVariables;true;getValue;;;Argument[-1].MapValue;ReturnValue;value;manual",
-        "org.springframework.web.util;UriTemplateHandler;true;expand;;;Argument[-1..0];ReturnValue;taint;manual",
-        "org.springframework.web.util;UriTemplateHandler;true;expand;(String,Map);;Argument[1].MapValue;ReturnValue;taint;manual",
-        "org.springframework.web.util;UriTemplateHandler;true;expand;(String,Object[]);;Argument[1].ArrayElement;ReturnValue;taint;manual",
-        "org.springframework.web.util;AbstractUriTemplateHandler;true;getBaseUrl;;;Argument[-1];ReturnValue;taint;manual",
-        "org.springframework.web.util;AbstractUriTemplateHandler;true;setBaseUrl;;;Argument[0];Argument[-1];taint;manual",
-        "org.springframework.web.util;AbstractUriTemplateHandler;true;setDefaultUriVariables;;;Argument[0];Argument[-1];taint;manual",
-        // writing to a `Request` or `Response` currently doesn't propagate taint to the object itself.
-        "org.springframework.web.util;ContentCachingRequestWrapper;false;ContentCachingRequestWrapper;;;Argument[0];Argument[-1];taint;manual",
-        "org.springframework.web.util;ContentCachingRequestWrapper;false;getContentAsByteArray;;;Argument[-1];ReturnValue;taint;manual",
-        "org.springframework.web.util;ContentCachingResponseWrapper;false;ContentCachingResponseWrapper;;;Argument[0];Argument[-1];taint;manual",
-        "org.springframework.web.util;ContentCachingResponseWrapper;false;getContentAsByteArray;;;Argument[-1];ReturnValue;taint;manual",
-        "org.springframework.web.util;ContentCachingResponseWrapper;false;getContentInputStream;;;Argument[-1];ReturnValue;taint;manual",
-        "org.springframework.web.util;DefaultUriBuilderFactory;false;DefaultUriBuilderFactory;;;Argument[0];Argument[-1];taint;manual",
-        "org.springframework.web.util;DefaultUriBuilderFactory;false;builder;;;Argument[-1];ReturnValue;taint;manual",
-        "org.springframework.web.util;DefaultUriBuilderFactory;false;getDefaultUriVariables;;;Argument[-1];ReturnValue.MapValue;taint;manual",
-        "org.springframework.web.util;DefaultUriBuilderFactory;false;setDefaultUriVariables;;;Argument[0].MapValue;Argument[-1];taint;manual",
-        "org.springframework.web.util;DefaultUriBuilderFactory;false;uriString;;;Argument[-1];ReturnValue;taint;manual",
-        "org.springframework.web.util;HtmlUtils;false;htmlEscape;;;Argument[0];ReturnValue;taint;manual",
-        "org.springframework.web.util;HtmlUtils;false;htmlEscapeDecimal;;;Argument[0];ReturnValue;taint;manual",
-        "org.springframework.web.util;HtmlUtils;false;htmlEscapeHex;;;Argument[0];ReturnValue;taint;manual",
-        "org.springframework.web.util;HtmlUtils;false;htmlUnescape;;;Argument[0];ReturnValue;taint;manual",
-        "org.springframework.web.util;ServletContextPropertyUtils;false;resolvePlaceholders;;;Argument[0..1];ReturnValue;taint;manual",
-        "org.springframework.web.util;ServletRequestPathUtils;false;getCachedPath;;;Argument[0];ReturnValue;taint;manual",
-        "org.springframework.web.util;ServletRequestPathUtils;false;getCachedPathValue;;;Argument[0];ReturnValue;taint;manual",
-        "org.springframework.web.util;ServletRequestPathUtils;false;getParsedRequestPath;;;Argument[0];ReturnValue;taint;manual",
-        "org.springframework.web.util;ServletRequestPathUtils;false;parseAndCache;;;Argument[0];ReturnValue;taint;manual",
-        "org.springframework.web.util;ServletRequestPathUtils;false;setParsedRequestPath;;;Argument[0];Argument[1];taint;manual",
-        "org.springframework.web.util;UriComponents;false;UriComponents;;;Argument[0..1];Argument[-1];taint;manual",
-        "org.springframework.web.util;UriComponents;false;copyToUriComponentsBuilder;;;Argument[-1];Argument[0];taint;manual",
-        "org.springframework.web.util;UriComponents;false;encode;;;Argument[-1];ReturnValue;taint;manual",
-        "org.springframework.web.util;UriComponents;false;expand;(Map);;Argument[0].MapValue;ReturnValue;taint;manual",
-        "org.springframework.web.util;UriComponents;false;expand;(Object[]);;Argument[0].ArrayElement;ReturnValue;taint;manual",
-        "org.springframework.web.util;UriComponents;false;expand;(UriTemplateVariables);;Argument[0].MapValue;ReturnValue;taint;manual",
-        "org.springframework.web.util;UriComponents;false;getFragment;;;Argument[-1];ReturnValue;taint;manual",
-        "org.springframework.web.util;UriComponents;false;getHost;;;Argument[-1];ReturnValue;taint;manual",
-        "org.springframework.web.util;UriComponents;false;getPath;;;Argument[-1];ReturnValue;taint;manual",
-        "org.springframework.web.util;UriComponents;false;getPathSegments;;;Argument[-1];ReturnValue;taint;manual",
-        "org.springframework.web.util;UriComponents;false;getQuery;;;Argument[-1];ReturnValue;taint;manual",
-        "org.springframework.web.util;UriComponents;false;getQueryParams;;;Argument[-1];ReturnValue.MapKey;taint;manual",
-        "org.springframework.web.util;UriComponents;false;getQueryParams;;;Argument[-1];ReturnValue.MapValue.Element;taint;manual",
-        "org.springframework.web.util;UriComponents;false;getScheme;;;Argument[-1];ReturnValue;taint;manual",
-        "org.springframework.web.util;UriComponents;false;getSchemeSpecificPart;;;Argument[-1];ReturnValue;taint;manual",
-        "org.springframework.web.util;UriComponents;false;getUserInfo;;;Argument[-1];ReturnValue;taint;manual",
-        "org.springframework.web.util;UriComponents;false;toUri;;;Argument[-1];ReturnValue;taint;manual",
-        "org.springframework.web.util;UriComponents;false;toUriString;;;Argument[-1];ReturnValue;taint;manual",
-        "org.springframework.web.util;UriComponents;false;toString;;;Argument[-1];ReturnValue;taint;manual",
-        "org.springframework.web.util;UriComponents;false;normalize;;;Argument[-1];ReturnValue;taint;manual",
-        "org.springframework.web.util;UriComponentsBuilder;false;build;;;Argument[-1];ReturnValue;taint;manual",
-        "org.springframework.web.util;UriComponentsBuilder;false;buildAndExpand;(Map);;Argument[0].MapValue;ReturnValue;taint;manual",
-        "org.springframework.web.util;UriComponentsBuilder;false;buildAndExpand;(Object[]);;Argument[0].ArrayElement;ReturnValue;taint;manual",
-        "org.springframework.web.util;UriComponentsBuilder;false;cloneBuilder;;;Argument[-1];ReturnValue;value;manual",
-        "org.springframework.web.util;UriComponentsBuilder;false;encode;;;Argument[-1];ReturnValue;value;manual",
-        "org.springframework.web.util;UriComponentsBuilder;false;fromHttpRequest;;;Argument[0];ReturnValue;taint;manual",
-        "org.springframework.web.util;UriComponentsBuilder;false;fromHttpUrl;;;Argument[0];ReturnValue;taint;manual",
-        "org.springframework.web.util;UriComponentsBuilder;false;fromOriginHeader;;;Argument[0];ReturnValue;taint;manual",
-        "org.springframework.web.util;UriComponentsBuilder;false;fromPath;;;Argument[0];ReturnValue;taint;manual",
-        "org.springframework.web.util;UriComponentsBuilder;false;fromUri;;;Argument[0];ReturnValue;taint;manual",
-        "org.springframework.web.util;UriComponentsBuilder;false;fromUriString;;;Argument[0];ReturnValue;taint;manual",
-        "org.springframework.web.util;UriComponentsBuilder;false;parseForwardedFor;;;Argument[0..1];ReturnValue;taint;manual",
-        "org.springframework.web.util;UriComponentsBuilder;false;schemeSpecificPart;;;Argument[-1];ReturnValue;value;manual",
-        "org.springframework.web.util;UriComponentsBuilder;false;schemeSpecificPart;;;Argument[0];Argument[-1];taint;manual",
-        "org.springframework.web.util;UriComponentsBuilder;false;toUriString;;;Argument[-1];ReturnValue;taint;manual",
-        "org.springframework.web.util;UriComponentsBuilder;false;uri;;;Argument[-1];ReturnValue;value;manual",
-        "org.springframework.web.util;UriComponentsBuilder;false;uri;;;Argument[0];Argument[-1];taint;manual",
-        "org.springframework.web.util;UriComponentsBuilder;false;uriComponents;;;Argument[-1];ReturnValue;value;manual",
-        "org.springframework.web.util;UriComponentsBuilder;false;uriComponents;;;Argument[0];Argument[-1];taint;manual",
-        "org.springframework.web.util;UriComponentsBuilder;false;uriVariables;;;Argument[-1];ReturnValue;value;manual",
-        "org.springframework.web.util;UriComponentsBuilder;false;uriVariables;;;Argument[0].MapValue;Argument[-1];taint;manual",
-        "org.springframework.web.util;UriTemplate;false;expand;(Map);;Argument[0].MapValue;ReturnValue;taint;manual",
-        "org.springframework.web.util;UriTemplate;false;expand;(Object[]);;Argument[0].ArrayElement;ReturnValue;taint;manual",
-        "org.springframework.web.util;UriTemplate;false;getVariableNames;;;Argument[-1];ReturnValue.Element;taint;manual",
-        "org.springframework.web.util;UriTemplate;false;match;;;Argument[0];ReturnValue.MapValue;taint;manual",
-        "org.springframework.web.util;UriTemplate;false;toString;;;Argument[-1];ReturnValue;taint;manual",
-        "org.springframework.web.util;UriUtils;false;decode;;;Argument[0];ReturnValue;taint;manual",
-        "org.springframework.web.util;UriUtils;false;encode;;;Argument[0];ReturnValue;taint;manual",
-        "org.springframework.web.util;UriUtils;false;encodeAuthority;;;Argument[0];ReturnValue;taint;manual",
-        "org.springframework.web.util;UriUtils;false;encodeFragment;;;Argument[0];ReturnValue;taint;manual",
-        "org.springframework.web.util;UriUtils;false;encodeHost;;;Argument[0];ReturnValue;taint;manual",
-        "org.springframework.web.util;UriUtils;false;encodePath;;;Argument[0];ReturnValue;taint;manual",
-        "org.springframework.web.util;UriUtils;false;encodePathSegment;;;Argument[0];ReturnValue;taint;manual",
-        "org.springframework.web.util;UriUtils;false;encodePort;;;Argument[0];ReturnValue;taint;manual",
-        "org.springframework.web.util;UriUtils;false;encodeQuery;;;Argument[0];ReturnValue;taint;manual",
-        "org.springframework.web.util;UriUtils;false;encodeQueryParam;;;Argument[0];ReturnValue;taint;manual",
-        "org.springframework.web.util;UriUtils;false;encodeQueryParams;;;Argument[0].MapKey;ReturnValue.MapKey;taint;manual",
-        "org.springframework.web.util;UriUtils;false;encodeQueryParams;;;Argument[0].MapValue;ReturnValue.MapValue;taint;manual",
-        "org.springframework.web.util;UriUtils;false;encodeScheme;;;Argument[0];ReturnValue;taint;manual",
-        "org.springframework.web.util;UriUtils;false;encodeUriVariables;(Map);;Argument[0].MapValue;ReturnValue.MapValue;taint;manual",
-        "org.springframework.web.util;UriUtils;false;encodeUriVariables;(Map);;Argument[0].MapKey;ReturnValue.MapKey;taint;manual",
-        "org.springframework.web.util;UriUtils;false;encodeUriVariables;(Object[]);;Argument[0].ArrayElement;ReturnValue.ArrayElement;taint;manual",
-        "org.springframework.web.util;UriUtils;false;encodeUserInfo;;;Argument[0];ReturnValue;taint;manual",
-        "org.springframework.web.util;UriUtils;false;extractFileExtension;;;Argument[0];ReturnValue;taint;manual",
-        "org.springframework.web.util;UrlPathHelper;false;decodeMatrixVariables;;;Argument[1].MapKey;ReturnValue.MapKey;value;manual",
-        "org.springframework.web.util;UrlPathHelper;false;decodeMatrixVariables;;;Argument[1].MapValue;ReturnValue.MapValue;taint;manual",
-        "org.springframework.web.util;UrlPathHelper;false;decodePathVariables;;;Argument[1].MapKey;ReturnValue.MapKey;value;manual",
-        "org.springframework.web.util;UrlPathHelper;false;decodePathVariables;;;Argument[1].MapValue;ReturnValue.MapValue;taint;manual",
-        "org.springframework.web.util;UrlPathHelper;false;decodeRequestString;;;Argument[1];ReturnValue;taint;manual",
-        "org.springframework.web.util;UrlPathHelper;false;getContextPath;;;Argument[0];ReturnValue;taint;manual",
-        "org.springframework.web.util;UrlPathHelper;false;getOriginatingContextPath;;;Argument[0];ReturnValue;taint;manual",
-        "org.springframework.web.util;UrlPathHelper;false;getOriginatingQueryString;;;Argument[0];ReturnValue;taint;manual",
-        "org.springframework.web.util;UrlPathHelper;false;getOriginatingRequestUri;;;Argument[0];ReturnValue;taint;manual",
-        "org.springframework.web.util;UrlPathHelper;false;getPathWithinApplication;;;Argument[0];ReturnValue;taint;manual",
-        "org.springframework.web.util;UrlPathHelper;false;getPathWithinServletMapping;;;Argument[0];ReturnValue;taint;manual",
-        "org.springframework.web.util;UrlPathHelper;false;getRequestUri;;;Argument[0];ReturnValue;taint;manual",
-        "org.springframework.web.util;UrlPathHelper;false;getResolvedLookupPath;;;Argument[0];ReturnValue;taint;manual",
-        "org.springframework.web.util;UrlPathHelper;false;getServletPath;;;Argument[0];ReturnValue;taint;manual",
-        "org.springframework.web.util;UrlPathHelper;false;removeSemicolonContent;;;Argument[0];ReturnValue;taint;manual",
-        "org.springframework.web.util;UrlPathHelper;false;resolveAndCacheLookupPath;;;Argument[0];ReturnValue;taint;manual",
-        "org.springframework.web.util;WebUtils;false;findParameterValue;(Map,String);;Argument[0].MapValue;ReturnValue;value;manual",
-        "org.springframework.web.util;WebUtils;false;findParameterValue;(ServletRequest,String);;Argument[0];ReturnValue;taint;manual",
-        "org.springframework.web.util;WebUtils;false;getCookie;;;Argument[0];ReturnValue;taint;manual",
-        "org.springframework.web.util;WebUtils;false;getNativeRequest;;;Argument[0];ReturnValue;taint;manual",
-        "org.springframework.web.util;WebUtils;false;getNativeResponse;;;Argument[0];ReturnValue;taint;manual",
-        "org.springframework.web.util;WebUtils;false;getParametersStartingWith;;;Argument[0];ReturnValue.MapKey;taint;manual",
-        "org.springframework.web.util;WebUtils;false;getParametersStartingWith;;;Argument[0];ReturnValue.MapValue;taint;manual",
-        "org.springframework.web.util;WebUtils;false;getRealPath;;;Argument[0..1];ReturnValue;taint;manual",
-        "org.springframework.web.util;WebUtils;false;getRequiredSessionAttribute;;;Argument[0];ReturnValue;taint;manual",
-        "org.springframework.web.util;WebUtils;false;getSessionAttribute;;;Argument[0];ReturnValue;taint;manual",
-        "org.springframework.web.util;WebUtils;false;parseMatrixVariables;;;Argument[0];ReturnValue.MapKey;taint;manual",
-        "org.springframework.web.util;WebUtils;false;parseMatrixVariables;;;Argument[0];ReturnValue.MapValue;taint;manual",
-        "org.springframework.web.util;WebUtils;false;setSessionAttribute;;;Argument[2];Argument[0];taint;manual"
-      ]
-  }
-}
diff --git a/java/ql/lib/semmle/code/java/regex/RegexFlowConfigs.qll b/java/ql/lib/semmle/code/java/regex/RegexFlowConfigs.qll
index 8936de5a923..5a913ccdef8 100644
--- a/java/ql/lib/semmle/code/java/regex/RegexFlowConfigs.qll
+++ b/java/ql/lib/semmle/code/java/regex/RegexFlowConfigs.qll
@@ -6,7 +6,6 @@ import java
 import semmle.code.java.dataflow.ExternalFlow
 private import semmle.code.java.dataflow.DataFlow
 private import semmle.code.java.dataflow.DataFlow2
-private import RegexFlowModels
 private import semmle.code.java.security.SecurityTests
 
 private class ExploitableStringLiteral extends StringLiteral {
diff --git a/java/ql/lib/semmle/code/java/regex/RegexFlowModels.qll b/java/ql/lib/semmle/code/java/regex/RegexFlowModels.qll
deleted file mode 100644
index 20ba2c14dc8..00000000000
--- a/java/ql/lib/semmle/code/java/regex/RegexFlowModels.qll
+++ /dev/null
@@ -1,38 +0,0 @@
-/** Definitions of data flow steps for determining flow of regular expressions. */
-
-import java
-import semmle.code.java.dataflow.ExternalFlow
-
-private class RegexSinkCsv extends SinkModelCsv {
-  override predicate row(string row) {
-    row =
-      [
-        //"namespace;type;subtypes;name;signature;ext;input;kind"
-        "java.util.regex;Matcher;false;matches;();;Argument[-1];regex-use[f];manual",
-        "java.util.regex;Pattern;false;asMatchPredicate;();;Argument[-1];regex-use[f];manual",
-        "java.util.regex;Pattern;false;compile;(String);;Argument[0];regex-use[];manual",
-        "java.util.regex;Pattern;false;compile;(String,int);;Argument[0];regex-use[];manual",
-        "java.util.regex;Pattern;false;matcher;(CharSequence);;Argument[-1];regex-use[0];manual",
-        "java.util.regex;Pattern;false;matches;(String,CharSequence);;Argument[0];regex-use[f1];manual",
-        "java.util.regex;Pattern;false;split;(CharSequence);;Argument[-1];regex-use[0];manual",
-        "java.util.regex;Pattern;false;split;(CharSequence,int);;Argument[-1];regex-use[0];manual",
-        "java.util.regex;Pattern;false;splitAsStream;(CharSequence);;Argument[-1];regex-use[0];manual",
-        "java.util.function;Predicate;false;test;(Object);;Argument[-1];regex-use[0];manual",
-        "java.lang;String;false;matches;(String);;Argument[0];regex-use[f-1];manual",
-        "java.lang;String;false;split;(String);;Argument[0];regex-use[-1];manual",
-        "java.lang;String;false;split;(String,int);;Argument[0];regex-use[-1];manual",
-        "java.lang;String;false;replaceAll;(String,String);;Argument[0];regex-use[-1];manual",
-        "java.lang;String;false;replaceFirst;(String,String);;Argument[0];regex-use[-1];manual",
-        "com.google.common.base;Splitter;false;onPattern;(String);;Argument[0];regex-use[];manual",
-        "com.google.common.base;Splitter;false;split;(CharSequence);;Argument[-1];regex-use[0];manual",
-        "com.google.common.base;Splitter;false;splitToList;(CharSequence);;Argument[-1];regex-use[0];manual",
-        "com.google.common.base;Splitter$MapSplitter;false;split;(CharSequence);;Argument[-1];regex-use[0];manual",
-        "org.apache.commons.lang3;RegExUtils;false;removeAll;(String,String);;Argument[1];regex-use;manual",
-        "org.apache.commons.lang3;RegExUtils;false;removeFirst;(String,String);;Argument[1];regex-use;manual",
-        "org.apache.commons.lang3;RegExUtils;false;removePattern;(String,String);;Argument[1];regex-use;manual",
-        "org.apache.commons.lang3;RegExUtils;false;replaceAll;(String,String,String);;Argument[1];regex-use;manual",
-        "org.apache.commons.lang3;RegExUtils;false;replaceFirst;(String,String,String);;Argument[1];regex-use;manual",
-        "org.apache.commons.lang3;RegExUtils;false;replacePattern;(String,String,String);;Argument[1];regex-use;manual",
-      ]
-  }
-}
diff --git a/java/ql/lib/semmle/code/java/security/AndroidIntentRedirection.qll b/java/ql/lib/semmle/code/java/security/AndroidIntentRedirection.qll
index 5252bbfa627..993c2941733 100644
--- a/java/ql/lib/semmle/code/java/security/AndroidIntentRedirection.qll
+++ b/java/ql/lib/semmle/code/java/security/AndroidIntentRedirection.qll
@@ -28,37 +28,6 @@ class IntentRedirectionAdditionalTaintStep extends Unit {
   abstract predicate step(DataFlow::Node node1, DataFlow::Node node2);
 }
 
-private class DefaultIntentRedirectionSinkModel extends SinkModelCsv {
-  override predicate row(string row) {
-    row =
-      [
-        "android.app;Activity;true;bindService;;;Argument[0];intent-start;manual",
-        "android.app;Activity;true;bindServiceAsUser;;;Argument[0];intent-start;manual",
-        "android.app;Activity;true;startActivityAsCaller;;;Argument[0];intent-start;manual",
-        "android.app;Activity;true;startActivityForResult;(Intent,int);;Argument[0];intent-start;manual",
-        "android.app;Activity;true;startActivityForResult;(Intent,int,Bundle);;Argument[0];intent-start;manual",
-        "android.app;Activity;true;startActivityForResult;(String,Intent,int,Bundle);;Argument[1];intent-start;manual",
-        "android.app;Activity;true;startActivityForResultAsUser;;;Argument[0];intent-start;manual",
-        "android.content;Context;true;startActivities;;;Argument[0];intent-start;manual",
-        "android.content;Context;true;startActivity;;;Argument[0];intent-start;manual",
-        "android.content;Context;true;startActivityAsUser;;;Argument[0];intent-start;manual",
-        "android.content;Context;true;startActivityFromChild;;;Argument[1];intent-start;manual",
-        "android.content;Context;true;startActivityFromFragment;;;Argument[1];intent-start;manual",
-        "android.content;Context;true;startActivityIfNeeded;;;Argument[0];intent-start;manual",
-        "android.content;Context;true;startForegroundService;;;Argument[0];intent-start;manual",
-        "android.content;Context;true;startService;;;Argument[0];intent-start;manual",
-        "android.content;Context;true;startServiceAsUser;;;Argument[0];intent-start;manual",
-        "android.content;Context;true;sendBroadcast;;;Argument[0];intent-start;manual",
-        "android.content;Context;true;sendBroadcastAsUser;;;Argument[0];intent-start;manual",
-        "android.content;Context;true;sendBroadcastWithMultiplePermissions;;;Argument[0];intent-start;manual",
-        "android.content;Context;true;sendStickyBroadcast;;;Argument[0];intent-start;manual",
-        "android.content;Context;true;sendStickyBroadcastAsUser;;;Argument[0];intent-start;manual",
-        "android.content;Context;true;sendStickyOrderedBroadcast;;;Argument[0];intent-start;manual",
-        "android.content;Context;true;sendStickyOrderedBroadcastAsUser;;;Argument[0];intent-start;manual"
-      ]
-  }
-}
-
 /** Default sink for Intent redirection vulnerabilities. */
 private class DefaultIntentRedirectionSink extends IntentRedirectionSink {
   DefaultIntentRedirectionSink() { sinkNode(this, "intent-start") }
diff --git a/java/ql/lib/semmle/code/java/security/CleartextStorageAndroidFilesystemQuery.qll b/java/ql/lib/semmle/code/java/security/CleartextStorageAndroidFilesystemQuery.qll
index 5b836e4c01f..89cc7ac021b 100644
--- a/java/ql/lib/semmle/code/java/security/CleartextStorageAndroidFilesystemQuery.qll
+++ b/java/ql/lib/semmle/code/java/security/CleartextStorageAndroidFilesystemQuery.qll
@@ -7,7 +7,6 @@ import java
 import semmle.code.java.dataflow.DataFlow
 private import semmle.code.java.dataflow.ExternalFlow
 import semmle.code.java.security.CleartextStorageQuery
-import semmle.code.java.security.Files
 import semmle.code.xml.AndroidManifest
 
 private class AndroidFilesystemCleartextStorageSink extends CleartextStorageSink {
diff --git a/java/ql/lib/semmle/code/java/security/Files.qll b/java/ql/lib/semmle/code/java/security/Files.qll
deleted file mode 100644
index 52ea86bc5b7..00000000000
--- a/java/ql/lib/semmle/code/java/security/Files.qll
+++ /dev/null
@@ -1,100 +0,0 @@
-/** Provides classes and predicates to work with File objects. */
-
-import java
-private import semmle.code.java.dataflow.ExternalFlow
-
-private class CreateFileSinkModels extends SinkModelCsv {
-  override predicate row(string row) {
-    row =
-      [
-        "java.io;FileOutputStream;false;FileOutputStream;;;Argument[0];create-file;manual",
-        "java.io;RandomAccessFile;false;RandomAccessFile;;;Argument[0];create-file;manual",
-        "java.io;FileWriter;false;FileWriter;;;Argument[0];create-file;manual",
-        "java.io;PrintStream;false;PrintStream;(File);;Argument[0];create-file;manual",
-        "java.io;PrintStream;false;PrintStream;(File,String);;Argument[0];create-file;manual",
-        "java.io;PrintStream;false;PrintStream;(File,Charset);;Argument[0];create-file;manual",
-        "java.io;PrintStream;false;PrintStream;(String);;Argument[0];create-file;manual",
-        "java.io;PrintStream;false;PrintStream;(String,String);;Argument[0];create-file;manual",
-        "java.io;PrintStream;false;PrintStream;(String,Charset);;Argument[0];create-file;manual",
-        "java.io;PrintWriter;false;PrintWriter;(File);;Argument[0];create-file;manual",
-        "java.io;PrintWriter;false;PrintWriter;(File,String);;Argument[0];create-file;manual",
-        "java.io;PrintWriter;false;PrintWriter;(File,Charset);;Argument[0];create-file;manual",
-        "java.io;PrintWriter;false;PrintWriter;(String);;Argument[0];create-file;manual",
-        "java.io;PrintWriter;false;PrintWriter;(String,String);;Argument[0];create-file;manual",
-        "java.io;PrintWriter;false;PrintWriter;(String,Charset);;Argument[0];create-file;manual",
-        "java.nio.file;Files;false;copy;;;Argument[1];create-file;manual",
-        "java.nio.file;Files;false;createDirectories;;;Argument[0];create-file;manual",
-        "java.nio.file;Files;false;createDirectory;;;Argument[0];create-file;manual",
-        "java.nio.file;Files;false;createFile;;;Argument[0];create-file;manual",
-        "java.nio.file;Files;false;createLink;;;Argument[0];create-file;manual",
-        "java.nio.file;Files;false;createSymbolicLink;;;Argument[0];create-file;manual",
-        "java.nio.file;Files;false;createTempDirectory;;;Argument[0];create-file;manual",
-        "java.nio.file;Files;false;createTempFile;(Path,String,String,FileAttribute[]);;Argument[0];create-file;manual",
-        "java.nio.file;Files;false;move;;;Argument[1];create-file;manual",
-        "java.nio.file;Files;false;newBufferedWriter;;;Argument[0];create-file;manual",
-        "java.nio.file;Files;false;newOutputStream;;;Argument[0];create-file;manual",
-        "java.nio.file;Files;false;write;;;Argument[0];create-file;manual",
-        "java.nio.file;Files;false;writeString;;;Argument[0];create-file;manual"
-      ]
-  }
-}
-
-private class WriteFileSinkModels extends SinkModelCsv {
-  override predicate row(string row) {
-    row =
-      [
-        "java.io;FileOutputStream;false;write;;;Argument[0];write-file;manual",
-        "java.io;RandomAccessFile;false;write;;;Argument[0];write-file;manual",
-        "java.io;RandomAccessFile;false;writeBytes;;;Argument[0];write-file;manual",
-        "java.io;RandomAccessFile;false;writeChars;;;Argument[0];write-file;manual",
-        "java.io;RandomAccessFile;false;writeUTF;;;Argument[0];write-file;manual",
-        "java.io;Writer;true;append;;;Argument[0];write-file;manual",
-        "java.io;Writer;true;write;;;Argument[0];write-file;manual",
-        "java.io;PrintStream;true;append;;;Argument[0];write-file;manual",
-        "java.io;PrintStream;true;format;(String,Object[]);;Argument[0..1];write-file;manual",
-        "java.io;PrintStream;true;format;(Locale,String,Object[]);;Argument[1..2];write-file;manual",
-        "java.io;PrintStream;true;print;;;Argument[0];write-file;manual",
-        "java.io;PrintStream;true;printf;(String,Object[]);;Argument[0..1];write-file;manual",
-        "java.io;PrintStream;true;printf;(Locale,String,Object[]);;Argument[1..2];write-file;manual",
-        "java.io;PrintStream;true;println;;;Argument[0];write-file;manual",
-        "java.io;PrintStream;true;write;;;Argument[0];write-file;manual",
-        "java.io;PrintStream;true;writeBytes;;;Argument[0];write-file;manual",
-        "java.io;PrintWriter;false;format;(String,Object[]);;Argument[0..1];write-file;manual",
-        "java.io;PrintWriter;false;format;(Locale,String,Object[]);;Argument[1..2];write-file;manual",
-        "java.io;PrintWriter;false;print;;;Argument[0];write-file;manual",
-        "java.io;PrintWriter;false;printf;(String,Object[]);;Argument[0..1];write-file;manual",
-        "java.io;PrintWriter;false;printf;(Locale,String,Object[]);;Argument[1..2];write-file;manual",
-        "java.io;PrintWriter;false;println;;;Argument[0];write-file;manual",
-        "java.nio.file;Files;false;write;;;Argument[1];write-file;manual",
-        "java.nio.file;Files;false;writeString;;;Argument[1];write-file;manual"
-      ]
-  }
-}
-
-private class FileSummaryModels extends SummaryModelCsv {
-  override predicate row(string row) {
-    row =
-      [
-        "java.io;File;false;File;;;Argument[0];Argument[-1];taint;manual",
-        "java.io;File;false;File;;;Argument[1];Argument[-1];taint;manual",
-        "java.io;File;true;getAbsoluteFile;;;Argument[-1];ReturnValue;taint;manual",
-        "java.io;File;true;getAbsolutePath;;;Argument[-1];ReturnValue;taint;manual",
-        "java.io;File;true;getCanonicalFile;;;Argument[-1];ReturnValue;taint;manual",
-        "java.io;File;true;getCanonicalPath;;;Argument[-1];ReturnValue;taint;manual",
-        "java.io;File;true;toPath;;;Argument[-1];ReturnValue;taint;manual",
-        "java.io;File;true;toString;;;Argument[-1];ReturnValue;taint;manual",
-        "java.io;File;true;toURI;;;Argument[-1];ReturnValue;taint;manual",
-        "java.nio.file;Path;true;getParent;;;Argument[-1];ReturnValue;taint;manual",
-        "java.nio.file;Path;true;normalize;;;Argument[-1];ReturnValue;taint;manual",
-        "java.nio.file;Path;true;resolve;;;Argument[-1..0];ReturnValue;taint;manual",
-        "java.nio.file;Path;true;toAbsolutePath;;;Argument[-1];ReturnValue;taint;manual",
-        "java.nio.file;Path;false;toFile;;;Argument[-1];ReturnValue;taint;manual",
-        "java.nio.file;Path;true;toString;;;Argument[-1];ReturnValue;taint;manual",
-        "java.nio.file;Path;true;toUri;;;Argument[-1];ReturnValue;taint;manual",
-        "java.nio.file;Paths;true;get;;;Argument[0];ReturnValue;taint;manual",
-        "java.nio.file;Paths;true;get;;;Argument[1].ArrayElement;ReturnValue;taint;manual",
-        "java.nio.file;FileSystem;true;getPath;;;Argument[0];ReturnValue;taint;manual",
-        "java.nio.file;FileSystem;true;getRootDirectories;;;Argument[0];ReturnValue;taint;manual"
-      ]
-  }
-}
diff --git a/java/ql/lib/semmle/code/java/security/FragmentInjection.qll b/java/ql/lib/semmle/code/java/security/FragmentInjection.qll
index 78cc2690bec..046993f6658 100644
--- a/java/ql/lib/semmle/code/java/security/FragmentInjection.qll
+++ b/java/ql/lib/semmle/code/java/security/FragmentInjection.qll
@@ -43,22 +43,6 @@ class FragmentInjectionAdditionalTaintStep extends Unit {
   abstract predicate step(DataFlow::Node n1, DataFlow::Node n2);
 }
 
-private class FragmentInjectionSinkModels extends SinkModelCsv {
-  override predicate row(string row) {
-    row =
-      ["android.app", "android.support.v4.app", "androidx.fragment.app"] +
-        ";FragmentTransaction;true;" +
-        [
-          "add;(Class,Bundle,String);;Argument[0]", "add;(Fragment,String);;Argument[0]",
-          "add;(int,Class,Bundle);;Argument[1]", "add;(int,Fragment);;Argument[1]",
-          "add;(int,Class,Bundle,String);;Argument[1]", "add;(int,Fragment,String);;Argument[1]",
-          "attach;(Fragment);;Argument[0]", "replace;(int,Class,Bundle);;Argument[1]",
-          "replace;(int,Fragment);;Argument[1]", "replace;(int,Class,Bundle,String);;Argument[1]",
-          "replace;(int,Fragment,String);;Argument[1]",
-        ] + ";fragment-injection;manual"
-  }
-}
-
 private class DefaultFragmentInjectionSink extends FragmentInjectionSink {
   DefaultFragmentInjectionSink() { sinkNode(this, "fragment-injection") }
 }
diff --git a/java/ql/lib/semmle/code/java/security/GroovyInjection.qll b/java/ql/lib/semmle/code/java/security/GroovyInjection.qll
index b735e28cd32..54ea8afce91 100644
--- a/java/ql/lib/semmle/code/java/security/GroovyInjection.qll
+++ b/java/ql/lib/semmle/code/java/security/GroovyInjection.qll
@@ -24,47 +24,6 @@ private class DefaultGroovyInjectionSink extends GroovyInjectionSink {
   DefaultGroovyInjectionSink() { sinkNode(this, "groovy") }
 }
 
-private class DefaultGroovyInjectionSinkModel extends SinkModelCsv {
-  override predicate row(string row) {
-    row =
-      [
-        // Signatures are specified to exclude sinks of the type `File`
-        "groovy.lang;GroovyShell;false;evaluate;(GroovyCodeSource);;Argument[0];groovy;manual",
-        "groovy.lang;GroovyShell;false;evaluate;(Reader);;Argument[0];groovy;manual",
-        "groovy.lang;GroovyShell;false;evaluate;(Reader,String);;Argument[0];groovy;manual",
-        "groovy.lang;GroovyShell;false;evaluate;(String);;Argument[0];groovy;manual",
-        "groovy.lang;GroovyShell;false;evaluate;(String,String);;Argument[0];groovy;manual",
-        "groovy.lang;GroovyShell;false;evaluate;(String,String,String);;Argument[0];groovy;manual",
-        "groovy.lang;GroovyShell;false;evaluate;(URI);;Argument[0];groovy;manual",
-        "groovy.lang;GroovyShell;false;parse;(Reader);;Argument[0];groovy;manual",
-        "groovy.lang;GroovyShell;false;parse;(Reader,String);;Argument[0];groovy;manual",
-        "groovy.lang;GroovyShell;false;parse;(String);;Argument[0];groovy;manual",
-        "groovy.lang;GroovyShell;false;parse;(String,String);;Argument[0];groovy;manual",
-        "groovy.lang;GroovyShell;false;parse;(URI);;Argument[0];groovy;manual",
-        "groovy.lang;GroovyShell;false;run;(GroovyCodeSource,String[]);;Argument[0];groovy;manual",
-        "groovy.lang;GroovyShell;false;run;(GroovyCodeSource,List);;Argument[0];groovy;manual",
-        "groovy.lang;GroovyShell;false;run;(Reader,String,String[]);;Argument[0];groovy;manual",
-        "groovy.lang;GroovyShell;false;run;(Reader,String,List);;Argument[0];groovy;manual",
-        "groovy.lang;GroovyShell;false;run;(String,String,String[]);;Argument[0];groovy;manual",
-        "groovy.lang;GroovyShell;false;run;(String,String,List);;Argument[0];groovy;manual",
-        "groovy.lang;GroovyShell;false;run;(URI,String[]);;Argument[0];groovy;manual",
-        "groovy.lang;GroovyShell;false;run;(URI,List);;Argument[0];groovy;manual",
-        "groovy.util;Eval;false;me;(String);;Argument[0];groovy;manual",
-        "groovy.util;Eval;false;me;(String,Object,String);;Argument[2];groovy;manual",
-        "groovy.util;Eval;false;x;(Object,String);;Argument[1];groovy;manual",
-        "groovy.util;Eval;false;xy;(Object,Object,String);;Argument[2];groovy;manual",
-        "groovy.util;Eval;false;xyz;(Object,Object,Object,String);;Argument[3];groovy;manual",
-        "groovy.lang;GroovyClassLoader;false;parseClass;(GroovyCodeSource);;Argument[0];groovy;manual",
-        "groovy.lang;GroovyClassLoader;false;parseClass;(GroovyCodeSource,boolean);;Argument[0];groovy;manual",
-        "groovy.lang;GroovyClassLoader;false;parseClass;(InputStream,String);;Argument[0];groovy;manual",
-        "groovy.lang;GroovyClassLoader;false;parseClass;(Reader,String);;Argument[0];groovy;manual",
-        "groovy.lang;GroovyClassLoader;false;parseClass;(String);;Argument[0];groovy;manual",
-        "groovy.lang;GroovyClassLoader;false;parseClass;(String,String);;Argument[0];groovy;manual",
-        "org.codehaus.groovy.control;CompilationUnit;false;compile;;;Argument[-1];groovy;manual"
-      ]
-  }
-}
-
 /** A set of additional taint steps to consider when taint tracking Groovy related data flows. */
 private class DefaultGroovyInjectionAdditionalTaintStep extends GroovyInjectionAdditionalTaintStep {
   override predicate step(DataFlow::Node node1, DataFlow::Node node2) {
diff --git a/java/ql/lib/semmle/code/java/security/ImplicitPendingIntents.qll b/java/ql/lib/semmle/code/java/security/ImplicitPendingIntents.qll
index bbfafc2d9c4..308b8037554 100644
--- a/java/ql/lib/semmle/code/java/security/ImplicitPendingIntents.qll
+++ b/java/ql/lib/semmle/code/java/security/ImplicitPendingIntents.qll
@@ -94,39 +94,6 @@ private class MutablePendingIntentFlowStep extends ImplicitPendingIntentAddition
   }
 }
 
-private class PendingIntentSentSinkModels extends SinkModelCsv {
-  override predicate row(string row) {
-    row =
-      [
-        "androidx.slice;SliceProvider;true;onBindSlice;;;ReturnValue;pending-intent-sent;manual",
-        "androidx.slice;SliceProvider;true;onCreatePermissionRequest;;;ReturnValue;pending-intent-sent;manual",
-        "android.app;NotificationManager;true;notify;(int,Notification);;Argument[1];pending-intent-sent;manual",
-        "android.app;NotificationManager;true;notify;(String,int,Notification);;Argument[2];pending-intent-sent;manual",
-        "android.app;NotificationManager;true;notifyAsPackage;(String,String,int,Notification);;Argument[3];pending-intent-sent;manual",
-        "android.app;NotificationManager;true;notifyAsUser;(String,int,Notification,UserHandle);;Argument[2];pending-intent-sent;manual",
-        "androidx.core.app;NotificationManagerCompat;true;notify;(int,Notification);;Argument[1];pending-intent-sent;manual",
-        "androidx.core.app;NotificationManagerCompat;true;notify;(String,int,Notification);;Argument[2];pending-intent-sent;manual",
-        "android.app;PendingIntent;false;send;(Context,int,Intent,OnFinished,Handler,String,Bundle);;Argument[2];pending-intent-sent;manual",
-        "android.app;PendingIntent;false;send;(Context,int,Intent,OnFinished,Handler,String);;Argument[2];pending-intent-sent;manual",
-        "android.app;PendingIntent;false;send;(Context,int,Intent,OnFinished,Handler);;Argument[2];pending-intent-sent;manual",
-        "android.app;PendingIntent;false;send;(Context,int,Intent);;Argument[2];pending-intent-sent;manual",
-        "android.app;Activity;true;setResult;(int,Intent);;Argument[1];pending-intent-sent;manual",
-        "android.app;AlarmManager;true;set;(int,long,PendingIntent);;Argument[2];pending-intent-sent;manual",
-        "android.app;AlarmManager;true;setAlarmClock;;;Argument[1];pending-intent-sent;manual",
-        "android.app;AlarmManager;true;setAndAllowWhileIdle;;;Argument[2];pending-intent-sent;manual",
-        "android.app;AlarmManager;true;setExact;(int,long,PendingIntent);;Argument[2];pending-intent-sent;manual",
-        "android.app;AlarmManager;true;setExactAndAllowWhileIdle;;;Argument[2];pending-intent-sent;manual",
-        "android.app;AlarmManager;true;setInexactRepeating;;;Argument[3];pending-intent-sent;manual",
-        "android.app;AlarmManager;true;setRepeating;;;Argument[3];pending-intent-sent;manual",
-        "android.app;AlarmManager;true;setWindow;(int,long,long,PendingIntent);;Argument[3];pending-intent-sent;manual",
-        "androidx.core.app;AlarmManagerCompat;true;setAlarmClock;;;Argument[2..3];pending-intent-sent;manual",
-        "androidx.core.app;AlarmManagerCompat;true;setAndAllowWhileIdle;;;Argument[3];pending-intent-sent;manual",
-        "androidx.core.app;AlarmManagerCompat;true;setExact;;;Argument[3];pending-intent-sent;manual",
-        "androidx.core.app;AlarmManagerCompat;true;setExactAndAllowWhileIdle;;;Argument[3];pending-intent-sent;manual",
-      ]
-  }
-}
-
 /**
  * Holds if taint can flow from `source` to `sink` in one local step,
  * including bitwise operations.
diff --git a/java/ql/lib/semmle/code/java/security/InformationLeak.qll b/java/ql/lib/semmle/code/java/security/InformationLeak.qll
index c3a4d0d286c..8fe7d215165 100644
--- a/java/ql/lib/semmle/code/java/security/InformationLeak.qll
+++ b/java/ql/lib/semmle/code/java/security/InformationLeak.qll
@@ -5,14 +5,6 @@ import semmle.code.java.dataflow.DataFlow
 private import semmle.code.java.dataflow.ExternalFlow
 import semmle.code.java.security.XSS
 
-/** CSV sink models representing methods not susceptible to XSS but outputing to an HTTP response body. */
-private class DefaultInformationLeakSinkModel extends SinkModelCsv {
-  override predicate row(string row) {
-    row =
-      "javax.servlet.http;HttpServletResponse;false;sendError;(int,String);;Argument[1];information-leak;manual"
-  }
-}
-
 /** A sink that represent a method that outputs data to an HTTP response. */
 abstract class InformationLeakSink extends DataFlow::Node { }
 
diff --git a/java/ql/lib/semmle/code/java/security/JexlInjectionSinkModels.qll b/java/ql/lib/semmle/code/java/security/JexlInjectionSinkModels.qll
deleted file mode 100644
index ed722c2f18a..00000000000
--- a/java/ql/lib/semmle/code/java/security/JexlInjectionSinkModels.qll
+++ /dev/null
@@ -1,43 +0,0 @@
-/** Provides sink models relating to Expression Language (JEXL) injection vulnerabilities. */
-
-private import semmle.code.java.dataflow.ExternalFlow
-
-private class DefaultJexlInjectionSinkModel extends SinkModelCsv {
-  override predicate row(string row) {
-    row =
-      [
-        // JEXL2
-        "org.apache.commons.jexl2;JexlEngine;false;getProperty;(JexlContext,Object,String);;Argument[2];jexl;manual",
-        "org.apache.commons.jexl2;JexlEngine;false;getProperty;(Object,String);;Argument[1];jexl;manual",
-        "org.apache.commons.jexl2;JexlEngine;false;setProperty;(JexlContext,Object,String,Object);;Argument[2];jexl;manual",
-        "org.apache.commons.jexl2;JexlEngine;false;setProperty;(Object,String,Object);;Argument[1];jexl;manual",
-        "org.apache.commons.jexl2;Expression;false;evaluate;;;Argument[-1];jexl;manual",
-        "org.apache.commons.jexl2;Expression;false;callable;;;Argument[-1];jexl;manual",
-        "org.apache.commons.jexl2;JexlExpression;false;evaluate;;;Argument[-1];jexl;manual",
-        "org.apache.commons.jexl2;JexlExpression;false;callable;;;Argument[-1];jexl;manual",
-        "org.apache.commons.jexl2;Script;false;execute;;;Argument[-1];jexl;manual",
-        "org.apache.commons.jexl2;Script;false;callable;;;Argument[-1];jexl;manual",
-        "org.apache.commons.jexl2;JexlScript;false;execute;;;Argument[-1];jexl;manual",
-        "org.apache.commons.jexl2;JexlScript;false;callable;;;Argument[-1];jexl;manual",
-        "org.apache.commons.jexl2;UnifiedJEXL$Expression;false;evaluate;;;Argument[-1];jexl;manual",
-        "org.apache.commons.jexl2;UnifiedJEXL$Expression;false;prepare;;;Argument[-1];jexl;manual",
-        "org.apache.commons.jexl2;UnifiedJEXL$Template;false;evaluate;;;Argument[-1];jexl;manual",
-        // JEXL3
-        "org.apache.commons.jexl3;JexlEngine;false;getProperty;(JexlContext,Object,String);;Argument[2];jexl;manual",
-        "org.apache.commons.jexl3;JexlEngine;false;getProperty;(Object,String);;Argument[1];jexl;manual",
-        "org.apache.commons.jexl3;JexlEngine;false;setProperty;(JexlContext,Object,String);;Argument[2];jexl;manual",
-        "org.apache.commons.jexl3;JexlEngine;false;setProperty;(Object,String,Object);;Argument[1];jexl;manual",
-        "org.apache.commons.jexl3;Expression;false;evaluate;;;Argument[-1];jexl;manual",
-        "org.apache.commons.jexl3;Expression;false;callable;;;Argument[-1];jexl;manual",
-        "org.apache.commons.jexl3;JexlExpression;false;evaluate;;;Argument[-1];jexl;manual",
-        "org.apache.commons.jexl3;JexlExpression;false;callable;;;Argument[-1];jexl;manual",
-        "org.apache.commons.jexl3;Script;false;execute;;;Argument[-1];jexl;manual",
-        "org.apache.commons.jexl3;Script;false;callable;;;Argument[-1];jexl;manual",
-        "org.apache.commons.jexl3;JexlScript;false;execute;;;Argument[-1];jexl;manual",
-        "org.apache.commons.jexl3;JexlScript;false;callable;;;Argument[-1];jexl;manual",
-        "org.apache.commons.jexl3;JxltEngine$Expression;false;evaluate;;;Argument[-1];jexl;manual",
-        "org.apache.commons.jexl3;JxltEngine$Expression;false;prepare;;;Argument[-1];jexl;manual",
-        "org.apache.commons.jexl3;JxltEngine$Template;false;evaluate;;;Argument[-1];jexl;manual"
-      ]
-  }
-}
diff --git a/java/ql/lib/semmle/code/java/security/JndiInjection.qll b/java/ql/lib/semmle/code/java/security/JndiInjection.qll
index 9dca731af80..cacf725cc99 100644
--- a/java/ql/lib/semmle/code/java/security/JndiInjection.qll
+++ b/java/ql/lib/semmle/code/java/security/JndiInjection.qll
@@ -72,62 +72,6 @@ private class ProviderUrlJndiInjectionSink extends JndiInjectionSink, DataFlow::
   }
 }
 
-/** CSV sink models representing methods susceptible to JNDI injection attacks. */
-private class DefaultJndiInjectionSinkModel extends SinkModelCsv {
-  override predicate row(string row) {
-    row =
-      [
-        "javax.naming;Context;true;lookup;;;Argument[0];jndi-injection;manual",
-        "javax.naming;Context;true;lookupLink;;;Argument[0];jndi-injection;manual",
-        "javax.naming;Context;true;rename;;;Argument[0];jndi-injection;manual",
-        "javax.naming;Context;true;list;;;Argument[0];jndi-injection;manual",
-        "javax.naming;Context;true;listBindings;;;Argument[0];jndi-injection;manual",
-        "javax.naming;InitialContext;true;doLookup;;;Argument[0];jndi-injection;manual",
-        "javax.management.remote;JMXConnector;true;connect;;;Argument[-1];jndi-injection;manual",
-        "javax.management.remote;JMXConnectorFactory;false;connect;;;Argument[0];jndi-injection;manual",
-        // Spring
-        "org.springframework.jndi;JndiTemplate;false;lookup;;;Argument[0];jndi-injection;manual",
-        // spring-ldap 1.2.x and newer
-        "org.springframework.ldap.core;LdapOperations;true;lookup;(Name);;Argument[0];jndi-injection;manual",
-        "org.springframework.ldap.core;LdapOperations;true;lookup;(Name,ContextMapper);;Argument[0];jndi-injection;manual",
-        "org.springframework.ldap.core;LdapOperations;true;lookup;(Name,String[],ContextMapper);;Argument[0];jndi-injection;manual",
-        "org.springframework.ldap.core;LdapOperations;true;lookup;(String);;Argument[0];jndi-injection;manual",
-        "org.springframework.ldap.core;LdapOperations;true;lookup;(String,ContextMapper);;Argument[0];jndi-injection;manual",
-        "org.springframework.ldap.core;LdapOperations;true;lookup;(String,String[],ContextMapper);;Argument[0];jndi-injection;manual",
-        "org.springframework.ldap.core;LdapOperations;true;lookupContext;;;Argument[0];jndi-injection;manual",
-        "org.springframework.ldap.core;LdapOperations;true;findByDn;;;Argument[0];jndi-injection;manual",
-        "org.springframework.ldap.core;LdapOperations;true;rename;;;Argument[0];jndi-injection;manual",
-        "org.springframework.ldap.core;LdapOperations;true;list;;;Argument[0];jndi-injection;manual",
-        "org.springframework.ldap.core;LdapOperations;true;listBindings;;;Argument[0];jndi-injection;manual",
-        "org.springframework.ldap.core;LdapOperations;true;search;(Name,String,ContextMapper);;Argument[0];jndi-injection;manual",
-        "org.springframework.ldap.core;LdapOperations;true;search;(Name,String,int,ContextMapper);;Argument[0];jndi-injection;manual",
-        "org.springframework.ldap.core;LdapOperations;true;search;(Name,String,int,String[],ContextMapper);;Argument[0];jndi-injection;manual",
-        "org.springframework.ldap.core;LdapOperations;true;search;(String,String,ContextMapper);;Argument[0];jndi-injection;manual",
-        "org.springframework.ldap.core;LdapOperations;true;search;(String,String,int,ContextMapper);;Argument[0];jndi-injection;manual",
-        "org.springframework.ldap.core;LdapOperations;true;search;(String,String,int,String[],ContextMapper);;Argument[0];jndi-injection;manual",
-        "org.springframework.ldap.core;LdapOperations;true;searchForObject;(Name,String,ContextMapper);;Argument[0];jndi-injection;manual",
-        "org.springframework.ldap.core;LdapOperations;true;searchForObject;(String,String,ContextMapper);;Argument[0];jndi-injection;manual",
-        // spring-ldap 1.1.x
-        "org.springframework.ldap;LdapOperations;true;lookup;;;Argument[0];jndi-injection;manual",
-        "org.springframework.ldap;LdapOperations;true;lookupContext;;;Argument[0];jndi-injection;manual",
-        "org.springframework.ldap;LdapOperations;true;findByDn;;;Argument[0];jndi-injection;manual",
-        "org.springframework.ldap;LdapOperations;true;rename;;;Argument[0];jndi-injection;manual",
-        "org.springframework.ldap;LdapOperations;true;list;;;Argument[0];jndi-injection;manual",
-        "org.springframework.ldap;LdapOperations;true;listBindings;;;Argument[0];jndi-injection;manual",
-        "org.springframework.ldap;LdapOperations;true;search;(Name,String,ContextMapper);;Argument[0];jndi-injection;manual",
-        "org.springframework.ldap;LdapOperations;true;search;(Name,String,int,ContextMapper);;Argument[0];jndi-injection;manual",
-        "org.springframework.ldap;LdapOperations;true;search;(Name,String,int,String[],ContextMapper);;Argument[0];jndi-injection;manual",
-        "org.springframework.ldap;LdapOperations;true;search;(String,String,ContextMapper);;Argument[0];jndi-injection;manual",
-        "org.springframework.ldap;LdapOperations;true;search;(String,String,int,ContextMapper);;Argument[0];jndi-injection;manual",
-        "org.springframework.ldap;LdapOperations;true;search;(String,String,int,String[],ContextMapper);;Argument[0];jndi-injection;manual",
-        "org.springframework.ldap;LdapOperations;true;searchForObject;(Name,String,ContextMapper);;Argument[0];jndi-injection;manual",
-        "org.springframework.ldap;LdapOperations;true;searchForObject;(String,String,ContextMapper);;Argument[0];jndi-injection;manual",
-        // Shiro
-        "org.apache.shiro.jndi;JndiTemplate;false;lookup;;;Argument[0];jndi-injection;manual"
-      ]
-  }
-}
-
 /** A set of additional taint steps to consider when taint tracking JNDI injection related data flows. */
 private class DefaultJndiInjectionAdditionalTaintStep extends JndiInjectionAdditionalTaintStep {
   override predicate step(DataFlow::Node node1, DataFlow::Node node2) {
diff --git a/java/ql/lib/semmle/code/java/security/LdapInjection.qll b/java/ql/lib/semmle/code/java/security/LdapInjection.qll
index 35c59279f4e..d78bd2f7ae1 100644
--- a/java/ql/lib/semmle/code/java/security/LdapInjection.qll
+++ b/java/ql/lib/semmle/code/java/security/LdapInjection.qll
@@ -32,53 +32,6 @@ private class DefaultLdapInjectionSink extends LdapInjectionSink {
   DefaultLdapInjectionSink() { sinkNode(this, "ldap") }
 }
 
-private class DefaultLdapInjectionSinkModel extends SinkModelCsv {
-  override predicate row(string row) {
-    row =
-      [
-        // jndi
-        "javax.naming.directory;DirContext;true;search;;;Argument[0..1];ldap;manual",
-        // apache
-        "org.apache.directory.ldap.client.api;LdapConnection;true;search;;;Argument[0..2];ldap;manual",
-        // UnboundID: search
-        "com.unboundid.ldap.sdk;LDAPConnection;false;search;(ReadOnlySearchRequest);;Argument[0];ldap;manual",
-        "com.unboundid.ldap.sdk;LDAPConnection;false;search;(SearchRequest);;Argument[0];ldap;manual",
-        "com.unboundid.ldap.sdk;LDAPConnection;false;search;(SearchResultListener,String,SearchScope,DereferencePolicy,int,int,boolean,Filter,String[]);;Argument[0..7];ldap;manual",
-        "com.unboundid.ldap.sdk;LDAPConnection;false;search;(SearchResultListener,String,SearchScope,DereferencePolicy,int,int,boolean,String,String[]);;Argument[0..7];ldap;manual",
-        "com.unboundid.ldap.sdk;LDAPConnection;false;search;(SearchResultListener,String,SearchScope,Filter,String[]);;Argument[0..3];ldap;manual",
-        "com.unboundid.ldap.sdk;LDAPConnection;false;search;(SearchResultListener,String,SearchScope,String,String[]);;Argument[0..3];ldap;manual",
-        "com.unboundid.ldap.sdk;LDAPConnection;false;search;(String,SearchScope,DereferencePolicy,int,int,boolean,Filter,String[]);;Argument[0..6];ldap;manual",
-        "com.unboundid.ldap.sdk;LDAPConnection;false;search;(String,SearchScope,DereferencePolicy,int,int,boolean,String,String[]);;Argument[0..6];ldap;manual",
-        "com.unboundid.ldap.sdk;LDAPConnection;false;search;(String,SearchScope,Filter,String[]);;Argument[0..2];ldap;manual",
-        "com.unboundid.ldap.sdk;LDAPConnection;false;search;(String,SearchScope,String,String[]);;Argument[0..2];ldap;manual",
-        // UnboundID: searchForEntry
-        "com.unboundid.ldap.sdk;LDAPConnection;false;searchForEntry;(ReadOnlySearchRequest);;Argument[0];ldap;manual",
-        "com.unboundid.ldap.sdk;LDAPConnection;false;searchForEntry;(SearchRequest);;Argument[0];ldap;manual",
-        "com.unboundid.ldap.sdk;LDAPConnection;false;searchForEntry;(String,SearchScope,DereferencePolicy,int,boolean,Filter,String[]);;Argument[0..5];ldap;manual",
-        "com.unboundid.ldap.sdk;LDAPConnection;false;searchForEntry;(String,SearchScope,DereferencePolicy,int,boolean,String,String[]);;Argument[0..5];ldap;manual",
-        "com.unboundid.ldap.sdk;LDAPConnection;false;searchForEntry;(String,SearchScope,Filter,String[]);;Argument[0..2];ldap;manual",
-        "com.unboundid.ldap.sdk;LDAPConnection;false;searchForEntry;(String,SearchScope,String,String[]);;Argument[0..2];ldap;manual",
-        // UnboundID: asyncSearch
-        "com.unboundid.ldap.sdk;LDAPConnection;false;asyncSearch;;;Argument[0];ldap;manual",
-        // Spring
-        "org.springframework.ldap.core;LdapTemplate;false;find;;;Argument[0..1];ldap;manual",
-        "org.springframework.ldap.core;LdapTemplate;false;findOne;;;Argument[0..1];ldap;manual",
-        "org.springframework.ldap.core;LdapTemplate;false;search;;;Argument[0..1];ldap;manual",
-        "org.springframework.ldap.core;LdapTemplate;false;searchForContext;;;Argument[0..1];ldap;manual",
-        "org.springframework.ldap.core;LdapTemplate;false;searchForObject;;;Argument[0..1];ldap;manual",
-        "org.springframework.ldap.core;LdapTemplate;false;authenticate;(LdapQuery,String);;Argument[0];ldap;manual",
-        "org.springframework.ldap.core;LdapTemplate;false;authenticate;(Name,String,String);;Argument[0..1];ldap;manual",
-        "org.springframework.ldap.core;LdapTemplate;false;authenticate;(Name,String,String,AuthenticatedLdapEntryContextCallback);;Argument[0..1];ldap;manual",
-        "org.springframework.ldap.core;LdapTemplate;false;authenticate;(Name,String,String,AuthenticatedLdapEntryContextCallback,AuthenticationErrorCallback);;Argument[0..1];ldap;manual",
-        "org.springframework.ldap.core;LdapTemplate;false;authenticate;(Name,String,String,AuthenticationErrorCallback);;Argument[0..1];ldap;manual",
-        "org.springframework.ldap.core;LdapTemplate;false;authenticate;(String,String,String);;Argument[0..1];ldap;manual",
-        "org.springframework.ldap.core;LdapTemplate;false;authenticate;(String,String,String,AuthenticatedLdapEntryContextCallback);;Argument[0..1];ldap;manual",
-        "org.springframework.ldap.core;LdapTemplate;false;authenticate;(String,String,String,AuthenticatedLdapEntryContextCallback,AuthenticationErrorCallback);;Argument[0..1];ldap;manual",
-        "org.springframework.ldap.core;LdapTemplate;false;authenticate;(String,String,String,AuthenticationErrorCallback);;Argument[0..1];ldap;manual"
-      ]
-  }
-}
-
 /** A sanitizer that clears the taint on (boxed) primitive types. */
 private class DefaultLdapSanitizer extends LdapInjectionSanitizer {
   DefaultLdapSanitizer() {
diff --git a/java/ql/lib/semmle/code/java/security/MvelInjection.qll b/java/ql/lib/semmle/code/java/security/MvelInjection.qll
index 167b21edae6..a0ada3d91a1 100644
--- a/java/ql/lib/semmle/code/java/security/MvelInjection.qll
+++ b/java/ql/lib/semmle/code/java/security/MvelInjection.qll
@@ -28,31 +28,6 @@ private class DefaultMvelEvaluationSink extends MvelEvaluationSink {
   DefaultMvelEvaluationSink() { sinkNode(this, "mvel") }
 }
 
-private class DefaulMvelEvaluationSinkModel extends SinkModelCsv {
-  override predicate row(string row) {
-    row =
-      [
-        "javax.script;CompiledScript;false;eval;;;Argument[-1];mvel;manual",
-        "org.mvel2;MVEL;false;eval;;;Argument[0];mvel;manual",
-        "org.mvel2;MVEL;false;executeExpression;;;Argument[0];mvel;manual",
-        "org.mvel2;MVEL;false;evalToBoolean;;;Argument[0];mvel;manual",
-        "org.mvel2;MVEL;false;evalToString;;;Argument[0];mvel;manual",
-        "org.mvel2;MVEL;false;executeAllExpression;;;Argument[0];mvel;manual",
-        "org.mvel2;MVEL;false;executeSetExpression;;;Argument[0];mvel;manual",
-        "org.mvel2;MVELRuntime;false;execute;;;Argument[1];mvel;manual",
-        "org.mvel2.templates;TemplateRuntime;false;eval;;;Argument[0];mvel;manual",
-        "org.mvel2.templates;TemplateRuntime;false;execute;;;Argument[0];mvel;manual",
-        "org.mvel2.jsr223;MvelScriptEngine;false;eval;;;Argument[0];mvel;manual",
-        "org.mvel2.jsr223;MvelScriptEngine;false;evaluate;;;Argument[0];mvel;manual",
-        "org.mvel2.jsr223;MvelCompiledScript;false;eval;;;Argument[-1];mvel;manual",
-        "org.mvel2.compiler;ExecutableStatement;false;getValue;;;Argument[-1];mvel;manual",
-        "org.mvel2.compiler;CompiledExpression;false;getDirectValue;;;Argument[-1];mvel;manual",
-        "org.mvel2.compiler;CompiledAccExpression;false;getValue;;;Argument[-1];mvel;manual",
-        "org.mvel2.compiler;Accessor;false;getValue;;;Argument[-1];mvel;manual"
-      ]
-  }
-}
-
 /** A default sanitizer that considers numeric and boolean typed data safe for building MVEL expressions */
 private class DefaultMvelInjectionSanitizer extends MvelInjectionSanitizer {
   DefaultMvelInjectionSanitizer() {
diff --git a/java/ql/lib/semmle/code/java/security/OgnlInjection.qll b/java/ql/lib/semmle/code/java/security/OgnlInjection.qll
index 1ebede55b78..aa10de4d3c1 100644
--- a/java/ql/lib/semmle/code/java/security/OgnlInjection.qll
+++ b/java/ql/lib/semmle/code/java/security/OgnlInjection.qll
@@ -25,29 +25,6 @@ class OgnlInjectionAdditionalTaintStep extends Unit {
   abstract predicate step(DataFlow::Node node1, DataFlow::Node node2);
 }
 
-private class DefaultOgnlInjectionSinkModel extends SinkModelCsv {
-  override predicate row(string row) {
-    row =
-      [
-        "org.apache.commons.ognl;Ognl;false;getValue;;;Argument[0];ognl-injection;manual",
-        "org.apache.commons.ognl;Ognl;false;setValue;;;Argument[0];ognl-injection;manual",
-        "org.apache.commons.ognl;Node;true;getValue;;;Argument[-1];ognl-injection;manual",
-        "org.apache.commons.ognl;Node;true;setValue;;;Argument[-1];ognl-injection;manual",
-        "org.apache.commons.ognl.enhance;ExpressionAccessor;true;get;;;Argument[-1];ognl-injection;manual",
-        "org.apache.commons.ognl.enhance;ExpressionAccessor;true;set;;;Argument[-1];ognl-injection;manual",
-        "ognl;Ognl;false;getValue;;;Argument[0];ognl-injection;manual",
-        "ognl;Ognl;false;setValue;;;Argument[0];ognl-injection;manual",
-        "ognl;Node;false;getValue;;;Argument[-1];ognl-injection;manual",
-        "ognl;Node;false;setValue;;;Argument[-1];ognl-injection;manual",
-        "ognl.enhance;ExpressionAccessor;true;get;;;Argument[-1];ognl-injection;manual",
-        "ognl.enhance;ExpressionAccessor;true;set;;;Argument[-1];ognl-injection;manual",
-        "com.opensymphony.xwork2.ognl;OgnlUtil;false;getValue;;;Argument[0];ognl-injection;manual",
-        "com.opensymphony.xwork2.ognl;OgnlUtil;false;setValue;;;Argument[0];ognl-injection;manual",
-        "com.opensymphony.xwork2.ognl;OgnlUtil;false;callMethod;;;Argument[0];ognl-injection;manual"
-      ]
-  }
-}
-
 private class DefaultOgnlInjectionSink extends OgnlInjectionSink {
   DefaultOgnlInjectionSink() { sinkNode(this, "ognl-injection") }
 }
diff --git a/java/ql/lib/semmle/code/java/security/ResponseSplitting.qll b/java/ql/lib/semmle/code/java/security/ResponseSplitting.qll
index d59e6c877c3..e99b8d363ff 100644
--- a/java/ql/lib/semmle/code/java/security/ResponseSplitting.qll
+++ b/java/ql/lib/semmle/code/java/security/ResponseSplitting.qll
@@ -14,18 +14,6 @@ private class DefaultHeaderSplittingSink extends HeaderSplittingSink {
   DefaultHeaderSplittingSink() { sinkNode(this, "header-splitting") }
 }
 
-private class HeaderSplittingSinkModel extends SinkModelCsv {
-  override predicate row(string row) {
-    row =
-      [
-        "javax.servlet.http;HttpServletResponse;false;addCookie;;;Argument[0];header-splitting;manual",
-        "javax.servlet.http;HttpServletResponse;false;addHeader;;;Argument[0..1];header-splitting;manual",
-        "javax.servlet.http;HttpServletResponse;false;setHeader;;;Argument[0..1];header-splitting;manual",
-        "javax.ws.rs.core;ResponseBuilder;false;header;;;Argument[1];header-splitting;manual"
-      ]
-  }
-}
-
 /** A source that introduces data considered safe to use by a header splitting source. */
 abstract class SafeHeaderSplittingSource extends DataFlow::Node {
   SafeHeaderSplittingSource() { this instanceof RemoteFlowSource }
diff --git a/java/ql/lib/semmle/code/java/security/TemplateInjection.qll b/java/ql/lib/semmle/code/java/security/TemplateInjection.qll
index 079ef551bb3..ce2bd9d217d 100644
--- a/java/ql/lib/semmle/code/java/security/TemplateInjection.qll
+++ b/java/ql/lib/semmle/code/java/security/TemplateInjection.qll
@@ -76,33 +76,3 @@ private class DefaultTemplateInjectionSanitizer extends TemplateInjectionSanitiz
     this.getType() instanceof NumericType
   }
 }
-
-private class TemplateInjectionSinkModels extends SinkModelCsv {
-  override predicate row(string row) {
-    row =
-      [
-        "freemarker.template;Template;true;Template;(String,Reader);;Argument[1];ssti;manual",
-        "freemarker.template;Template;true;Template;(String,Reader,Configuration);;Argument[1];ssti;manual",
-        "freemarker.template;Template;true;Template;(String,Reader,Configuration,String);;Argument[1];ssti;manual",
-        "freemarker.template;Template;true;Template;(String,String,Reader,Configuration);;Argument[2];ssti;manual",
-        "freemarker.template;Template;true;Template;(String,String,Reader,Configuration,String);;Argument[2];ssti;manual",
-        "freemarker.template;Template;true;Template;(String,String,Reader,Configuration,ParserConfiguration,String);;Argument[2];ssti;manual",
-        "freemarker.template;Template;true;Template;(String,String,Configuration);;Argument[1];ssti;manual",
-        "freemarker.cache;StringTemplateLoader;true;putTemplate;;;Argument[1];ssti;manual",
-        "com.mitchellbosecke.pebble;PebbleEngine;true;getTemplate;;;Argument[0];ssti;manual",
-        "com.mitchellbosecke.pebble;PebbleEngine;true;getLiteralTemplate;;;Argument[0];ssti;manual",
-        "com.hubspot.jinjava;Jinjava;true;renderForResult;;;Argument[0];ssti;manual",
-        "com.hubspot.jinjava;Jinjava;true;render;;;Argument[0];ssti;manual",
-        "org.thymeleaf;ITemplateEngine;true;process;;;Argument[0];ssti;manual",
-        "org.thymeleaf;ITemplateEngine;true;processThrottled;;;Argument[0];ssti;manual",
-        "org.apache.velocity.app;Velocity;true;evaluate;;;Argument[3];ssti;manual",
-        "org.apache.velocity.app;Velocity;true;mergeTemplate;;;Argument[2];ssti;manual",
-        "org.apache.velocity.app;VelocityEngine;true;evaluate;;;Argument[3];ssti;manual",
-        "org.apache.velocity.app;VelocityEngine;true;mergeTemplate;;;Argument[2];ssti;manual",
-        "org.apache.velocity.runtime.resource.util;StringResourceRepository;true;putStringResource;;;Argument[1];ssti;manual",
-        "org.apache.velocity.runtime;RuntimeServices;true;evaluate;;;Argument[3];ssti;manual",
-        "org.apache.velocity.runtime;RuntimeServices;true;parse;;;Argument[0];ssti;manual",
-        "org.apache.velocity.runtime;RuntimeSingleton;true;parse;;;Argument[0];ssti;manual"
-      ]
-  }
-}
diff --git a/java/ql/lib/semmle/code/java/security/XPath.qll b/java/ql/lib/semmle/code/java/security/XPath.qll
index 2122093a05c..c8b1077990d 100644
--- a/java/ql/lib/semmle/code/java/security/XPath.qll
+++ b/java/ql/lib/semmle/code/java/security/XPath.qll
@@ -10,38 +10,6 @@ private import semmle.code.java.dataflow.ExternalFlow
  */
 abstract class XPathInjectionSink extends DataFlow::Node { }
 
-/** CSV sink models representing methods susceptible to XPath Injection attacks. */
-private class DefaultXPathInjectionSinkModel extends SinkModelCsv {
-  override predicate row(string row) {
-    row =
-      [
-        "javax.xml.xpath;XPath;true;evaluate;;;Argument[0];xpath;manual",
-        "javax.xml.xpath;XPath;true;evaluateExpression;;;Argument[0];xpath;manual",
-        "javax.xml.xpath;XPath;true;compile;;;Argument[0];xpath;manual",
-        "org.dom4j;Node;true;selectObject;;;Argument[0];xpath;manual",
-        "org.dom4j;Node;true;selectNodes;;;Argument[0..1];xpath;manual",
-        "org.dom4j;Node;true;selectSingleNode;;;Argument[0];xpath;manual",
-        "org.dom4j;Node;true;numberValueOf;;;Argument[0];xpath;manual",
-        "org.dom4j;Node;true;valueOf;;;Argument[0];xpath;manual",
-        "org.dom4j;Node;true;matches;;;Argument[0];xpath;manual",
-        "org.dom4j;Node;true;createXPath;;;Argument[0];xpath;manual",
-        "org.dom4j;DocumentFactory;true;createPattern;;;Argument[0];xpath;manual",
-        "org.dom4j;DocumentFactory;true;createXPath;;;Argument[0];xpath;manual",
-        "org.dom4j;DocumentFactory;true;createXPathFilter;;;Argument[0];xpath;manual",
-        "org.dom4j;DocumentHelper;false;createPattern;;;Argument[0];xpath;manual",
-        "org.dom4j;DocumentHelper;false;createXPath;;;Argument[0];xpath;manual",
-        "org.dom4j;DocumentHelper;false;createXPathFilter;;;Argument[0];xpath;manual",
-        "org.dom4j;DocumentHelper;false;selectNodes;;;Argument[0];xpath;manual",
-        "org.dom4j;DocumentHelper;false;sort;;;Argument[1];xpath;manual",
-        "org.dom4j.tree;AbstractNode;true;createXPathFilter;;;Argument[0];xpath;manual",
-        "org.dom4j.tree;AbstractNode;true;createPattern;;;Argument[0];xpath;manual",
-        "org.dom4j.util;ProxyDocumentFactory;true;createPattern;;;Argument[0];xpath;manual",
-        "org.dom4j.util;ProxyDocumentFactory;true;createXPath;;;Argument[0];xpath;manual",
-        "org.dom4j.util;ProxyDocumentFactory;true;createXPathFilter;;;Argument[0];xpath;manual"
-      ]
-  }
-}
-
 /** A default sink representing methods susceptible to XPath Injection attacks. */
 private class DefaultXPathInjectionSink extends XPathInjectionSink {
   DefaultXPathInjectionSink() {
diff --git a/java/ql/lib/semmle/code/java/security/XsltInjection.qll b/java/ql/lib/semmle/code/java/security/XsltInjection.qll
index 570a7575af3..f6953a09539 100644
--- a/java/ql/lib/semmle/code/java/security/XsltInjection.qll
+++ b/java/ql/lib/semmle/code/java/security/XsltInjection.qll
@@ -15,20 +15,6 @@ private class DefaultXsltInjectionSink extends XsltInjectionSink {
   DefaultXsltInjectionSink() { sinkNode(this, "xslt") }
 }
 
-private class DefaultXsltInjectionSinkModel extends SinkModelCsv {
-  override predicate row(string row) {
-    row =
-      [
-        "javax.xml.transform;Transformer;false;transform;;;Argument[-1];xslt;manual",
-        "net.sf.saxon.s9api;XsltTransformer;false;transform;;;Argument[-1];xslt;manual",
-        "net.sf.saxon.s9api;Xslt30Transformer;false;transform;;;Argument[-1];xslt;manual",
-        "net.sf.saxon.s9api;Xslt30Transformer;false;applyTemplates;;;Argument[-1];xslt;manual",
-        "net.sf.saxon.s9api;Xslt30Transformer;false;callFunction;;;Argument[-1];xslt;manual",
-        "net.sf.saxon.s9api;Xslt30Transformer;false;callTemplate;;;Argument[-1];xslt;manual"
-      ]
-  }
-}
-
 /**
  * A unit class for adding additional taint steps.
  *
diff --git a/java/ql/lib/semmle/code/java/security/regexp/RegexInjection.qll b/java/ql/lib/semmle/code/java/security/regexp/RegexInjection.qll
index 3c1e2e98229..7b96ad6e198 100644
--- a/java/ql/lib/semmle/code/java/security/regexp/RegexInjection.qll
+++ b/java/ql/lib/semmle/code/java/security/regexp/RegexInjection.qll
@@ -2,8 +2,8 @@
 
 import java
 private import semmle.code.java.dataflow.DataFlow
+private import semmle.code.java.dataflow.ExternalFlow
 private import semmle.code.java.frameworks.Regex
-private import semmle.code.java.regex.RegexFlowModels
 
 /** A data flow sink for untrusted user input used to construct regular expressions. */
 abstract class RegexInjectionSink extends DataFlow::ExprNode { }

From 2d309bb8f82d443d629df231c7cf705dc4dca0c7 Mon Sep 17 00:00:00 2001
From: Michael Nebel <michaelnebel@github.com>
Date: Thu, 17 Nov 2022 11:29:18 +0100
Subject: [PATCH 0669/1420] Java: Include the library query pack to get the
 data extensions included.

---
 java/ql/integration-tests/all-platforms/kotlin/qlpack.yml | 8 ++++----
 1 file changed, 4 insertions(+), 4 deletions(-)

diff --git a/java/ql/integration-tests/all-platforms/kotlin/qlpack.yml b/java/ql/integration-tests/all-platforms/kotlin/qlpack.yml
index 2d76cd00707..9ead02fc564 100644
--- a/java/ql/integration-tests/all-platforms/kotlin/qlpack.yml
+++ b/java/ql/integration-tests/all-platforms/kotlin/qlpack.yml
@@ -1,4 +1,4 @@
-libraryPathDependencies:
-  - codeql-java
-  - codeql/java-tests
-  - codeql/java-queries
+dependencies:
+  codeql/java-all: '*'
+  codeql/java-tests: '*'
+  codeql/java-queries: '*'

From 157a2280887ce196287c6d361a852423d8a25b7a Mon Sep 17 00:00:00 2001
From: Michael Nebel <michaelnebel@github.com>
Date: Thu, 17 Nov 2022 15:06:04 +0100
Subject: [PATCH 0670/1420] Java: Add query packs with names to enable
 dependency resolution.

---
 .../kotlin/default-parameter-mad-flow/qlpack.yml             | 5 +++++
 .../kotlin/gradle_kotlinx_serialization/qlpack.yml           | 5 +++++
 .../kotlin/kotlin-interface-inherited-default/qlpack.yml     | 5 +++++
 .../kotlin/kotlin_java_static_fields/qlpack.yml              | 5 +++++
 .../linux-only/kotlin/custom_plugin/qlpack.yml               | 3 +++
 5 files changed, 23 insertions(+)
 create mode 100644 java/ql/integration-tests/all-platforms/kotlin/default-parameter-mad-flow/qlpack.yml
 create mode 100644 java/ql/integration-tests/all-platforms/kotlin/gradle_kotlinx_serialization/qlpack.yml
 create mode 100644 java/ql/integration-tests/all-platforms/kotlin/kotlin-interface-inherited-default/qlpack.yml
 create mode 100644 java/ql/integration-tests/all-platforms/kotlin/kotlin_java_static_fields/qlpack.yml
 create mode 100644 java/ql/integration-tests/linux-only/kotlin/custom_plugin/qlpack.yml

diff --git a/java/ql/integration-tests/all-platforms/kotlin/default-parameter-mad-flow/qlpack.yml b/java/ql/integration-tests/all-platforms/kotlin/default-parameter-mad-flow/qlpack.yml
new file mode 100644
index 00000000000..b8fa32c9094
--- /dev/null
+++ b/java/ql/integration-tests/all-platforms/kotlin/default-parameter-mad-flow/qlpack.yml
@@ -0,0 +1,5 @@
+name: integrationtest-default-parameter-mad-flow
+dependencies:
+  codeql/java-all: '*'
+  codeql/java-tests: '*'
+  codeql/java-queries: '*'
diff --git a/java/ql/integration-tests/all-platforms/kotlin/gradle_kotlinx_serialization/qlpack.yml b/java/ql/integration-tests/all-platforms/kotlin/gradle_kotlinx_serialization/qlpack.yml
new file mode 100644
index 00000000000..8b18f2ea94a
--- /dev/null
+++ b/java/ql/integration-tests/all-platforms/kotlin/gradle_kotlinx_serialization/qlpack.yml
@@ -0,0 +1,5 @@
+name: integrationtest-gradle-kotlinx-serialization
+dependencies:
+  codeql/java-all: '*'
+  codeql/java-tests: '*'
+  codeql/java-queries: '*'
diff --git a/java/ql/integration-tests/all-platforms/kotlin/kotlin-interface-inherited-default/qlpack.yml b/java/ql/integration-tests/all-platforms/kotlin/kotlin-interface-inherited-default/qlpack.yml
new file mode 100644
index 00000000000..814d1059ed5
--- /dev/null
+++ b/java/ql/integration-tests/all-platforms/kotlin/kotlin-interface-inherited-default/qlpack.yml
@@ -0,0 +1,5 @@
+name: integrationtest-kotlin-interface-inherited-default
+dependencies:
+  codeql/java-all: '*'
+  codeql/java-tests: '*'
+  codeql/java-queries: '*'
diff --git a/java/ql/integration-tests/all-platforms/kotlin/kotlin_java_static_fields/qlpack.yml b/java/ql/integration-tests/all-platforms/kotlin/kotlin_java_static_fields/qlpack.yml
new file mode 100644
index 00000000000..ecc3ee3e4ff
--- /dev/null
+++ b/java/ql/integration-tests/all-platforms/kotlin/kotlin_java_static_fields/qlpack.yml
@@ -0,0 +1,5 @@
+name: integrationtest-kotlin-java-static-fields
+dependencies:
+  codeql/java-all: '*'
+  codeql/java-tests: '*'
+  codeql/java-queries: '*'
diff --git a/java/ql/integration-tests/linux-only/kotlin/custom_plugin/qlpack.yml b/java/ql/integration-tests/linux-only/kotlin/custom_plugin/qlpack.yml
new file mode 100644
index 00000000000..e2f6b6de7ba
--- /dev/null
+++ b/java/ql/integration-tests/linux-only/kotlin/custom_plugin/qlpack.yml
@@ -0,0 +1,3 @@
+name: integrationtest-custom-plugin
+dependencies:
+  codeql/java-all: '*'

From 9c93402b260c9d2827b27f01d626de08347054c2 Mon Sep 17 00:00:00 2001
From: Michael Nebel <michaelnebel@github.com>
Date: Mon, 21 Nov 2022 13:31:31 +0100
Subject: [PATCH 0671/1420] Java: Convert integration test to use data
 extensions instead of inlined models.

---
 .../ext/test.model.yml                        | 28 +++++++++++++
 .../default-parameter-mad-flow/qlpack.yml     |  2 +
 .../kotlin/default-parameter-mad-flow/test.ql | 39 -------------------
 3 files changed, 30 insertions(+), 39 deletions(-)
 create mode 100644 java/ql/integration-tests/all-platforms/kotlin/default-parameter-mad-flow/ext/test.model.yml

diff --git a/java/ql/integration-tests/all-platforms/kotlin/default-parameter-mad-flow/ext/test.model.yml b/java/ql/integration-tests/all-platforms/kotlin/default-parameter-mad-flow/ext/test.model.yml
new file mode 100644
index 00000000000..19ee05fc65f
--- /dev/null
+++ b/java/ql/integration-tests/all-platforms/kotlin/default-parameter-mad-flow/ext/test.model.yml
@@ -0,0 +1,28 @@
+extensions:
+  - addsTo:
+      pack: integrationtest-default-parameter-mad-flow
+      extensible: extSummaryModel
+    data:
+      - ["", "ConstructorWithDefaults", True, "ConstructorWithDefaults", "(int,int)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["", "LibKt", True, "topLevelWithDefaults", "(int,int)", "", "Argument[0]", "ReturnValue", "value", "manual"]
+      - ["", "LibKt", True, "extensionWithDefaults", "(String,int,int)", "", "Argument[1]", "ReturnValue", "value", "manual"]
+      - ["", "LibClass", True, "memberWithDefaults", "(int,int)", "", "Argument[0]", "ReturnValue", "value", "manual"]
+      - ["", "LibClass", True, "extensionMemberWithDefaults", "(String,int,int)", "", "Argument[1]", "ReturnValue", "value", "manual"]
+      - ["", "LibClass", True, "multiParameterTest", "(int,int,int,int)", "", "Argument[0..1]", "ReturnValue", "value", "manual"]
+      - ["", "LibClass", True, "multiParameterExtensionTest", "(int,int,int,int)", "", "Argument[0, 1]", "ReturnValue", "value", "manual"]
+  - addsTo:
+      pack: integrationtest-default-parameter-mad-flow
+      extensible: extSourceModel
+    data:
+      - ["", "LibKt", True, "topLevelArgSource", "(SomeToken,int)", "", "Argument[0]", "kotlinMadFlowTest", "manual"]
+      - ["", "LibKt", True, "extensionArgSource", "(String,SomeToken,int)", "", "Argument[1]", "kotlinMadFlowTest", "manual"]
+      - ["", "SourceClass", True, "memberArgSource", "(SomeToken,int)", "", "Argument[0]", "kotlinMadFlowTest", "manual"]
+  - addsTo:
+      pack: integrationtest-default-parameter-mad-flow
+      extensible: extSinkModel
+    data:
+      - ["", "SinkClass", True, "SinkClass", "(int,int)", "", "Argument[0]", "kotlinMadFlowTest", "manual"]
+      - ["", "LibKt", True, "topLevelSink", "(int,int)", "", "Argument[0]", "kotlinMadFlowTest", "manual"]
+      - ["", "LibKt", True, "extensionSink", "(String,int,int)", "", "Argument[1]", "kotlinMadFlowTest", "manual"]
+      - ["", "SinkClass", True, "memberSink", "(int,int)", "", "Argument[0]", "kotlinMadFlowTest", "manual"]
+      - ["", "SinkClass", True, "extensionMemberSink", "(String,int,int)", "", "Argument[1]", "kotlinMadFlowTest", "manual"]
diff --git a/java/ql/integration-tests/all-platforms/kotlin/default-parameter-mad-flow/qlpack.yml b/java/ql/integration-tests/all-platforms/kotlin/default-parameter-mad-flow/qlpack.yml
index b8fa32c9094..f1e981e8791 100644
--- a/java/ql/integration-tests/all-platforms/kotlin/default-parameter-mad-flow/qlpack.yml
+++ b/java/ql/integration-tests/all-platforms/kotlin/default-parameter-mad-flow/qlpack.yml
@@ -3,3 +3,5 @@ dependencies:
   codeql/java-all: '*'
   codeql/java-tests: '*'
   codeql/java-queries: '*'
+dataExtensions:
+  ext/*.model.yml
diff --git a/java/ql/integration-tests/all-platforms/kotlin/default-parameter-mad-flow/test.ql b/java/ql/integration-tests/all-platforms/kotlin/default-parameter-mad-flow/test.ql
index b9b4423d94a..702b137fad7 100644
--- a/java/ql/integration-tests/all-platforms/kotlin/default-parameter-mad-flow/test.ql
+++ b/java/ql/integration-tests/all-platforms/kotlin/default-parameter-mad-flow/test.ql
@@ -3,45 +3,6 @@ import semmle.code.java.dataflow.TaintTracking
 import TestUtilities.InlineExpectationsTest
 private import semmle.code.java.dataflow.ExternalFlow
 
-private class Models extends SummaryModelCsv {
-  override predicate row(string row) {
-    row =
-      [
-        ";ConstructorWithDefaults;true;ConstructorWithDefaults;(int,int);;Argument[0];Argument[-1];taint;manual",
-        ";LibKt;true;topLevelWithDefaults;(int,int);;Argument[0];ReturnValue;value;manual",
-        ";LibKt;true;extensionWithDefaults;(String,int,int);;Argument[1];ReturnValue;value;manual",
-        ";LibClass;true;memberWithDefaults;(int,int);;Argument[0];ReturnValue;value;manual",
-        ";LibClass;true;extensionMemberWithDefaults;(String,int,int);;Argument[1];ReturnValue;value;manual",
-        ";LibClass;true;multiParameterTest;(int,int,int,int);;Argument[0..1];ReturnValue;value;manual",
-        ";LibClass;true;multiParameterExtensionTest;(int,int,int,int);;Argument[0, 1];ReturnValue;value;manual",
-      ]
-  }
-}
-
-private class SourceModels extends SourceModelCsv {
-  override predicate row(string row) {
-    row =
-      [
-        ";LibKt;true;topLevelArgSource;(SomeToken,int);;Argument[0];kotlinMadFlowTest;manual",
-        ";LibKt;true;extensionArgSource;(String,SomeToken,int);;Argument[1];kotlinMadFlowTest;manual",
-        ";SourceClass;true;memberArgSource;(SomeToken,int);;Argument[0];kotlinMadFlowTest;manual"
-      ]
-  }
-}
-
-private class SinkModels extends SinkModelCsv {
-  override predicate row(string row) {
-    row =
-      [
-        ";SinkClass;true;SinkClass;(int,int);;Argument[0];kotlinMadFlowTest;manual",
-        ";LibKt;true;topLevelSink;(int,int);;Argument[0];kotlinMadFlowTest;manual",
-        ";LibKt;true;extensionSink;(String,int,int);;Argument[1];kotlinMadFlowTest;manual",
-        ";SinkClass;true;memberSink;(int,int);;Argument[0];kotlinMadFlowTest;manual",
-        ";SinkClass;true;extensionMemberSink;(String,int,int);;Argument[1];kotlinMadFlowTest;manual"
-      ]
-  }
-}
-
 class Config extends TaintTracking::Configuration {
   Config() { this = "Config" }
 

From d7aafbfe6403da8b0fdb5fd2baf54d0e4262f216 Mon Sep 17 00:00:00 2001
From: Michael Nebel <michaelnebel@github.com>
Date: Mon, 21 Nov 2022 13:36:30 +0100
Subject: [PATCH 0672/1420] Java: Add model generator script that emits data
 extensions.

---
 .../GenerateFlowModelExtensions.py                | 15 +++++++++++++++
 1 file changed, 15 insertions(+)
 create mode 100755 java/ql/src/utils/model-generator/GenerateFlowModelExtensions.py

diff --git a/java/ql/src/utils/model-generator/GenerateFlowModelExtensions.py b/java/ql/src/utils/model-generator/GenerateFlowModelExtensions.py
new file mode 100755
index 00000000000..3dd1003bbdd
--- /dev/null
+++ b/java/ql/src/utils/model-generator/GenerateFlowModelExtensions.py
@@ -0,0 +1,15 @@
+#!/usr/bin/python3
+
+import sys
+import os.path
+import subprocess
+
+# Add Model as Data script directory to sys.path.
+gitroot = subprocess.check_output(["git", "rev-parse", "--show-toplevel"]).decode("utf-8").strip()
+madpath = os.path.join(gitroot, "misc/scripts/models-as-data/")
+sys.path.append(madpath)
+
+import generate_flow_model_extensions as model
+
+language = "java"
+model.Generator.make(language).run()
\ No newline at end of file

From 805430983c671e3ed768d914f7efc3d3452121c6 Mon Sep 17 00:00:00 2001
From: Michael Nebel <michaelnebel@github.com>
Date: Mon, 21 Nov 2022 13:52:51 +0100
Subject: [PATCH 0673/1420] Java: Convert commons-io to data extensions.

---
 .../generated/org.apache.commons.io.model.yml | 1433 +++++++++++++++++
 .../dataflow/internal/NegativeSummary.qll     |    9 -
 .../java/frameworks/GeneratedNegative.qll     |    8 -
 .../java/frameworks/apache/IOGenerated.qll    |  684 --------
 .../frameworks/apache/NegativeIOGenerated.qll |  765 ---------
 .../semmle/code/java/frameworks/generated.qll |    1 -
 .../src/Telemetry/UnsupportedExternalAPIs.ql  |    1 -
 .../external-models/negativesummaries.ql      |    1 -
 8 files changed, 1433 insertions(+), 1469 deletions(-)
 create mode 100644 java/ql/lib/ext/generated/org.apache.commons.io.model.yml
 delete mode 100644 java/ql/lib/semmle/code/java/dataflow/internal/NegativeSummary.qll
 delete mode 100644 java/ql/lib/semmle/code/java/frameworks/GeneratedNegative.qll
 delete mode 100644 java/ql/lib/semmle/code/java/frameworks/apache/IOGenerated.qll
 delete mode 100644 java/ql/lib/semmle/code/java/frameworks/apache/NegativeIOGenerated.qll

diff --git a/java/ql/lib/ext/generated/org.apache.commons.io.model.yml b/java/ql/lib/ext/generated/org.apache.commons.io.model.yml
new file mode 100644
index 00000000000..f7af89c8a1b
--- /dev/null
+++ b/java/ql/lib/ext/generated/org.apache.commons.io.model.yml
@@ -0,0 +1,1433 @@
+ 
+# THIS FILE IS AN AUTO-GENERATED MODELS AS DATA FILE. DO NOT EDIT.
+# Definitions of taint steps in the org.apache.commons.io framework.
+
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSinkModel
+    data:
+      - ["org.apache.commons.io.file", "PathFilter", true, "accept", "(Path,BasicFileAttributes)", "", "Argument[0]", "create-file", "generated"]
+      - ["org.apache.commons.io.file", "PathUtils", false, "copyFile", "(URL,Path,CopyOption[])", "", "Argument[0]", "open-url", "generated"]
+      - ["org.apache.commons.io.file", "PathUtils", false, "copyFile", "(URL,Path,CopyOption[])", "", "Argument[1]", "create-file", "generated"]
+      - ["org.apache.commons.io.file", "PathUtils", false, "copyFileToDirectory", "(Path,Path,CopyOption[])", "", "Argument[1]", "create-file", "generated"]
+      - ["org.apache.commons.io.file", "PathUtils", false, "copyFileToDirectory", "(URL,Path,CopyOption[])", "", "Argument[0]", "open-url", "generated"]
+      - ["org.apache.commons.io.file", "PathUtils", false, "copyFileToDirectory", "(URL,Path,CopyOption[])", "", "Argument[1]", "create-file", "generated"]
+      - ["org.apache.commons.io.file", "PathUtils", false, "newOutputStream", "(Path,boolean)", "", "Argument[0]", "create-file", "generated"]
+      - ["org.apache.commons.io.file", "PathUtils", false, "writeString", "(Path,CharSequence,Charset,OpenOption[])", "", "Argument[0]", "create-file", "generated"]
+      - ["org.apache.commons.io.filefilter", "FileFilterUtils", true, "filter", "(IOFileFilter,File[])", "", "Argument[1]", "create-file", "generated"]
+      - ["org.apache.commons.io.filefilter", "FileFilterUtils", true, "filterList", "(IOFileFilter,File[])", "", "Argument[1]", "create-file", "generated"]
+      - ["org.apache.commons.io.filefilter", "FileFilterUtils", true, "filterSet", "(IOFileFilter,File[])", "", "Argument[1]", "create-file", "generated"]
+      - ["org.apache.commons.io.input", "Tailer$Tailable", true, "getRandomAccess", "(String)", "", "Argument[-1]", "create-file", "generated"]
+      - ["org.apache.commons.io.input", "XmlStreamReader", true, "XmlStreamReader", "(URL)", "", "Argument[0]", "open-url", "generated"]
+      - ["org.apache.commons.io.output", "DeferredFileOutputStream", true, "writeTo", "(OutputStream)", "", "Argument[0]", "create-file", "generated"]
+      - ["org.apache.commons.io.output", "FileWriterWithEncoding", true, "FileWriterWithEncoding", "(File,Charset)", "", "Argument[0]", "create-file", "generated"]
+      - ["org.apache.commons.io.output", "FileWriterWithEncoding", true, "FileWriterWithEncoding", "(File,Charset,boolean)", "", "Argument[0]", "create-file", "generated"]
+      - ["org.apache.commons.io.output", "FileWriterWithEncoding", true, "FileWriterWithEncoding", "(File,CharsetEncoder)", "", "Argument[0]", "create-file", "generated"]
+      - ["org.apache.commons.io.output", "FileWriterWithEncoding", true, "FileWriterWithEncoding", "(File,CharsetEncoder,boolean)", "", "Argument[0]", "create-file", "generated"]
+      - ["org.apache.commons.io.output", "FileWriterWithEncoding", true, "FileWriterWithEncoding", "(File,String)", "", "Argument[0]", "create-file", "generated"]
+      - ["org.apache.commons.io.output", "FileWriterWithEncoding", true, "FileWriterWithEncoding", "(File,String,boolean)", "", "Argument[0]", "create-file", "generated"]
+      - ["org.apache.commons.io.output", "FileWriterWithEncoding", true, "FileWriterWithEncoding", "(String,Charset)", "", "Argument[0]", "create-file", "generated"]
+      - ["org.apache.commons.io.output", "FileWriterWithEncoding", true, "FileWriterWithEncoding", "(String,Charset,boolean)", "", "Argument[0]", "create-file", "generated"]
+      - ["org.apache.commons.io.output", "FileWriterWithEncoding", true, "FileWriterWithEncoding", "(String,CharsetEncoder)", "", "Argument[0]", "create-file", "generated"]
+      - ["org.apache.commons.io.output", "FileWriterWithEncoding", true, "FileWriterWithEncoding", "(String,CharsetEncoder,boolean)", "", "Argument[0]", "create-file", "generated"]
+      - ["org.apache.commons.io.output", "FileWriterWithEncoding", true, "FileWriterWithEncoding", "(String,String)", "", "Argument[0]", "create-file", "generated"]
+      - ["org.apache.commons.io.output", "FileWriterWithEncoding", true, "FileWriterWithEncoding", "(String,String,boolean)", "", "Argument[0]", "create-file", "generated"]
+      - ["org.apache.commons.io.output", "LockableFileWriter", true, "LockableFileWriter", "(File)", "", "Argument[0]", "create-file", "generated"]
+      - ["org.apache.commons.io.output", "LockableFileWriter", true, "LockableFileWriter", "(File,Charset)", "", "Argument[0]", "create-file", "generated"]
+      - ["org.apache.commons.io.output", "LockableFileWriter", true, "LockableFileWriter", "(File,Charset,boolean,String)", "", "Argument[0]", "create-file", "generated"]
+      - ["org.apache.commons.io.output", "LockableFileWriter", true, "LockableFileWriter", "(File,String)", "", "Argument[0]", "create-file", "generated"]
+      - ["org.apache.commons.io.output", "LockableFileWriter", true, "LockableFileWriter", "(File,String,boolean,String)", "", "Argument[0]", "create-file", "generated"]
+      - ["org.apache.commons.io.output", "LockableFileWriter", true, "LockableFileWriter", "(File,boolean)", "", "Argument[0]", "create-file", "generated"]
+      - ["org.apache.commons.io.output", "LockableFileWriter", true, "LockableFileWriter", "(File,boolean,String)", "", "Argument[0]", "create-file", "generated"]
+      - ["org.apache.commons.io.output", "LockableFileWriter", true, "LockableFileWriter", "(String)", "", "Argument[0]", "create-file", "generated"]
+      - ["org.apache.commons.io.output", "LockableFileWriter", true, "LockableFileWriter", "(String,boolean)", "", "Argument[0]", "create-file", "generated"]
+      - ["org.apache.commons.io.output", "LockableFileWriter", true, "LockableFileWriter", "(String,boolean,String)", "", "Argument[0]", "create-file", "generated"]
+      - ["org.apache.commons.io.output", "XmlStreamWriter", true, "XmlStreamWriter", "(File)", "", "Argument[0]", "create-file", "generated"]
+      - ["org.apache.commons.io.output", "XmlStreamWriter", true, "XmlStreamWriter", "(File,String)", "", "Argument[0]", "create-file", "generated"]
+      - ["org.apache.commons.io", "FileUtils", true, "copyDirectory", "(File,File)", "", "Argument[1]", "create-file", "generated"]
+      - ["org.apache.commons.io", "FileUtils", true, "copyDirectory", "(File,File,FileFilter)", "", "Argument[1]", "create-file", "generated"]
+      - ["org.apache.commons.io", "FileUtils", true, "copyDirectory", "(File,File,FileFilter,boolean)", "", "Argument[1]", "create-file", "generated"]
+      - ["org.apache.commons.io", "FileUtils", true, "copyDirectory", "(File,File,FileFilter,boolean,CopyOption[])", "", "Argument[1]", "create-file", "generated"]
+      - ["org.apache.commons.io", "FileUtils", true, "copyDirectory", "(File,File,boolean)", "", "Argument[1]", "create-file", "generated"]
+      - ["org.apache.commons.io", "FileUtils", true, "copyDirectoryToDirectory", "(File,File)", "", "Argument[1]", "create-file", "generated"]
+      - ["org.apache.commons.io", "FileUtils", true, "copyFile", "(File,File)", "", "Argument[1]", "create-file", "generated"]
+      - ["org.apache.commons.io", "FileUtils", true, "copyFile", "(File,File,CopyOption[])", "", "Argument[1]", "create-file", "generated"]
+      - ["org.apache.commons.io", "FileUtils", true, "copyFile", "(File,File,boolean)", "", "Argument[1]", "create-file", "generated"]
+      - ["org.apache.commons.io", "FileUtils", true, "copyFile", "(File,File,boolean,CopyOption[])", "", "Argument[1]", "create-file", "generated"]
+      - ["org.apache.commons.io", "FileUtils", true, "copyFileToDirectory", "(File,File)", "", "Argument[1]", "create-file", "generated"]
+      - ["org.apache.commons.io", "FileUtils", true, "copyFileToDirectory", "(File,File,boolean)", "", "Argument[1]", "create-file", "generated"]
+      - ["org.apache.commons.io", "FileUtils", true, "copyInputStreamToFile", "(InputStream,File)", "", "Argument[1]", "create-file", "generated"]
+      - ["org.apache.commons.io", "FileUtils", true, "copyToDirectory", "(File,File)", "", "Argument[1]", "create-file", "generated"]
+      - ["org.apache.commons.io", "FileUtils", true, "copyToDirectory", "(Iterable,File)", "", "Argument[1]", "create-file", "generated"]
+      - ["org.apache.commons.io", "FileUtils", true, "copyToFile", "(InputStream,File)", "", "Argument[1]", "create-file", "generated"]
+      - ["org.apache.commons.io", "FileUtils", true, "copyURLToFile", "(URL,File)", "", "Argument[0]", "open-url", "generated"]
+      - ["org.apache.commons.io", "FileUtils", true, "copyURLToFile", "(URL,File)", "", "Argument[1]", "create-file", "generated"]
+      - ["org.apache.commons.io", "FileUtils", true, "copyURLToFile", "(URL,File,int,int)", "", "Argument[0]", "open-url", "generated"]
+      - ["org.apache.commons.io", "FileUtils", true, "copyURLToFile", "(URL,File,int,int)", "", "Argument[1]", "create-file", "generated"]
+      - ["org.apache.commons.io", "FileUtils", true, "moveDirectory", "(File,File)", "", "Argument[1]", "create-file", "generated"]
+      - ["org.apache.commons.io", "FileUtils", true, "moveDirectoryToDirectory", "(File,File,boolean)", "", "Argument[1]", "create-file", "generated"]
+      - ["org.apache.commons.io", "FileUtils", true, "moveFile", "(File,File)", "", "Argument[1]", "create-file", "generated"]
+      - ["org.apache.commons.io", "FileUtils", true, "moveFile", "(File,File,CopyOption[])", "", "Argument[1]", "create-file", "generated"]
+      - ["org.apache.commons.io", "FileUtils", true, "moveFileToDirectory", "(File,File,boolean)", "", "Argument[1]", "create-file", "generated"]
+      - ["org.apache.commons.io", "FileUtils", true, "moveToDirectory", "(File,File,boolean)", "", "Argument[1]", "create-file", "generated"]
+      - ["org.apache.commons.io", "FileUtils", true, "newOutputStream", "(File,boolean)", "", "Argument[0]", "create-file", "generated"]
+      - ["org.apache.commons.io", "FileUtils", true, "openOutputStream", "(File)", "", "Argument[0]", "create-file", "generated"]
+      - ["org.apache.commons.io", "FileUtils", true, "openOutputStream", "(File,boolean)", "", "Argument[0]", "create-file", "generated"]
+      - ["org.apache.commons.io", "FileUtils", true, "touch", "(File)", "", "Argument[0]", "create-file", "generated"]
+      - ["org.apache.commons.io", "FileUtils", true, "write", "(File,CharSequence)", "", "Argument[0]", "create-file", "generated"]
+      - ["org.apache.commons.io", "FileUtils", true, "write", "(File,CharSequence,Charset)", "", "Argument[0]", "create-file", "generated"]
+      - ["org.apache.commons.io", "FileUtils", true, "write", "(File,CharSequence,Charset,boolean)", "", "Argument[0]", "create-file", "generated"]
+      - ["org.apache.commons.io", "FileUtils", true, "write", "(File,CharSequence,String)", "", "Argument[0]", "create-file", "generated"]
+      - ["org.apache.commons.io", "FileUtils", true, "write", "(File,CharSequence,String,boolean)", "", "Argument[0]", "create-file", "generated"]
+      - ["org.apache.commons.io", "FileUtils", true, "write", "(File,CharSequence,boolean)", "", "Argument[0]", "create-file", "generated"]
+      - ["org.apache.commons.io", "FileUtils", true, "writeByteArrayToFile", "(File,byte[])", "", "Argument[0]", "create-file", "generated"]
+      - ["org.apache.commons.io", "FileUtils", true, "writeByteArrayToFile", "(File,byte[],boolean)", "", "Argument[0]", "create-file", "generated"]
+      - ["org.apache.commons.io", "FileUtils", true, "writeByteArrayToFile", "(File,byte[],int,int)", "", "Argument[0]", "create-file", "generated"]
+      - ["org.apache.commons.io", "FileUtils", true, "writeByteArrayToFile", "(File,byte[],int,int,boolean)", "", "Argument[0]", "create-file", "generated"]
+      - ["org.apache.commons.io", "FileUtils", true, "writeLines", "(File,Collection)", "", "Argument[0]", "create-file", "generated"]
+      - ["org.apache.commons.io", "FileUtils", true, "writeLines", "(File,Collection,String)", "", "Argument[0]", "create-file", "generated"]
+      - ["org.apache.commons.io", "FileUtils", true, "writeLines", "(File,Collection,String,boolean)", "", "Argument[0]", "create-file", "generated"]
+      - ["org.apache.commons.io", "FileUtils", true, "writeLines", "(File,Collection,boolean)", "", "Argument[0]", "create-file", "generated"]
+      - ["org.apache.commons.io", "FileUtils", true, "writeLines", "(File,String,Collection)", "", "Argument[0]", "create-file", "generated"]
+      - ["org.apache.commons.io", "FileUtils", true, "writeLines", "(File,String,Collection,String)", "", "Argument[0]", "create-file", "generated"]
+      - ["org.apache.commons.io", "FileUtils", true, "writeLines", "(File,String,Collection,String,boolean)", "", "Argument[0]", "create-file", "generated"]
+      - ["org.apache.commons.io", "FileUtils", true, "writeLines", "(File,String,Collection,boolean)", "", "Argument[0]", "create-file", "generated"]
+      - ["org.apache.commons.io", "FileUtils", true, "writeStringToFile", "(File,String)", "", "Argument[0]", "create-file", "generated"]
+      - ["org.apache.commons.io", "FileUtils", true, "writeStringToFile", "(File,String,Charset)", "", "Argument[0]", "create-file", "generated"]
+      - ["org.apache.commons.io", "FileUtils", true, "writeStringToFile", "(File,String,Charset,boolean)", "", "Argument[0]", "create-file", "generated"]
+      - ["org.apache.commons.io", "FileUtils", true, "writeStringToFile", "(File,String,String)", "", "Argument[0]", "create-file", "generated"]
+      - ["org.apache.commons.io", "FileUtils", true, "writeStringToFile", "(File,String,String,boolean)", "", "Argument[0]", "create-file", "generated"]
+      - ["org.apache.commons.io", "FileUtils", true, "writeStringToFile", "(File,String,boolean)", "", "Argument[0]", "create-file", "generated"]
+      - ["org.apache.commons.io", "IOUtils", true, "copy", "(URL,File)", "", "Argument[0]", "open-url", "generated"]
+      - ["org.apache.commons.io", "IOUtils", true, "copy", "(URL,File)", "", "Argument[1]", "create-file", "generated"]
+      - ["org.apache.commons.io", "IOUtils", true, "copy", "(URL,OutputStream)", "", "Argument[0]", "open-url", "generated"]
+      - ["org.apache.commons.io", "IOUtils", true, "toByteArray", "(URI)", "", "Argument[0]", "open-url", "generated"]
+      - ["org.apache.commons.io", "IOUtils", true, "toByteArray", "(URL)", "", "Argument[0]", "open-url", "generated"]
+      - ["org.apache.commons.io", "IOUtils", true, "toString", "(URI)", "", "Argument[0]", "open-url", "generated"]
+      - ["org.apache.commons.io", "IOUtils", true, "toString", "(URI,Charset)", "", "Argument[0]", "open-url", "generated"]
+      - ["org.apache.commons.io", "IOUtils", true, "toString", "(URI,String)", "", "Argument[0]", "open-url", "generated"]
+      - ["org.apache.commons.io", "IOUtils", true, "toString", "(URL)", "", "Argument[0]", "open-url", "generated"]
+      - ["org.apache.commons.io", "IOUtils", true, "toString", "(URL,Charset)", "", "Argument[0]", "open-url", "generated"]
+      - ["org.apache.commons.io", "IOUtils", true, "toString", "(URL,String)", "", "Argument[0]", "open-url", "generated"]
+      - ["org.apache.commons.io", "RandomAccessFileMode", false, "create", "(File)", "", "Argument[0]", "create-file", "generated"]
+      - ["org.apache.commons.io", "RandomAccessFileMode", false, "create", "(Path)", "", "Argument[0]", "create-file", "generated"]
+      - ["org.apache.commons.io", "RandomAccessFileMode", false, "create", "(String)", "", "Argument[0]", "create-file", "generated"]
+
+
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSummaryModel
+    data:
+      - ["org.apache.commons.io.charset", "CharsetDecoders", true, "toCharsetDecoder", "(CharsetDecoder)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io.charset", "CharsetEncoders", true, "toCharsetEncoder", "(CharsetEncoder)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io.comparator", "CompositeFileComparator", true, "CompositeFileComparator", "(Comparator[])", "", "Argument[0].ArrayElement", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.comparator", "CompositeFileComparator", true, "CompositeFileComparator", "(Iterable)", "", "Argument[0].Element", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.comparator", "CompositeFileComparator", true, "toString", "()", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io.file.spi", "FileSystemProviders", true, "getFileSystemProvider", "(String)", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io.file.spi", "FileSystemProviders", true, "getFileSystemProvider", "(URI)", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io.file.spi", "FileSystemProviders", true, "getFileSystemProvider", "(URL)", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io.file", "AccumulatorPathVisitor", true, "AccumulatorPathVisitor", "(PathCounters)", "", "Argument[0]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.file", "AccumulatorPathVisitor", true, "AccumulatorPathVisitor", "(PathCounters,PathFilter,PathFilter)", "", "Argument[0]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.file", "AccumulatorPathVisitor", true, "AccumulatorPathVisitor", "(PathCounters,PathFilter,PathFilter)", "", "Argument[1]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.file", "AccumulatorPathVisitor", true, "AccumulatorPathVisitor", "(PathCounters,PathFilter,PathFilter)", "", "Argument[2]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.file", "AccumulatorPathVisitor", true, "getDirList", "()", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io.file", "AccumulatorPathVisitor", true, "getFileList", "()", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io.file", "AccumulatorPathVisitor", true, "withBigIntegerCounters", "(PathFilter,PathFilter)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io.file", "AccumulatorPathVisitor", true, "withBigIntegerCounters", "(PathFilter,PathFilter)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io.file", "AccumulatorPathVisitor", true, "withLongCounters", "(PathFilter,PathFilter)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io.file", "AccumulatorPathVisitor", true, "withLongCounters", "(PathFilter,PathFilter)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io.file", "CleaningPathVisitor", true, "CleaningPathVisitor", "(PathCounters,DeleteOption[],String[])", "", "Argument[0]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.file", "CleaningPathVisitor", true, "CleaningPathVisitor", "(PathCounters,DeleteOption[],String[])", "", "Argument[2].ArrayElement", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.file", "CleaningPathVisitor", true, "CleaningPathVisitor", "(PathCounters,String[])", "", "Argument[0]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.file", "CleaningPathVisitor", true, "CleaningPathVisitor", "(PathCounters,String[])", "", "Argument[1].ArrayElement", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.file", "CopyDirectoryVisitor", true, "CopyDirectoryVisitor", "(PathCounters,Path,Path,CopyOption[])", "", "Argument[0]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.file", "CopyDirectoryVisitor", true, "CopyDirectoryVisitor", "(PathCounters,Path,Path,CopyOption[])", "", "Argument[1].Element", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.file", "CopyDirectoryVisitor", true, "CopyDirectoryVisitor", "(PathCounters,Path,Path,CopyOption[])", "", "Argument[2].Element", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.file", "CopyDirectoryVisitor", true, "CopyDirectoryVisitor", "(PathCounters,Path,Path,CopyOption[])", "", "Argument[3].ArrayElement", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.file", "CopyDirectoryVisitor", true, "CopyDirectoryVisitor", "(PathCounters,PathFilter,PathFilter,Path,Path,CopyOption[])", "", "Argument[0]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.file", "CopyDirectoryVisitor", true, "CopyDirectoryVisitor", "(PathCounters,PathFilter,PathFilter,Path,Path,CopyOption[])", "", "Argument[1]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.file", "CopyDirectoryVisitor", true, "CopyDirectoryVisitor", "(PathCounters,PathFilter,PathFilter,Path,Path,CopyOption[])", "", "Argument[2]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.file", "CopyDirectoryVisitor", true, "CopyDirectoryVisitor", "(PathCounters,PathFilter,PathFilter,Path,Path,CopyOption[])", "", "Argument[3].Element", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.file", "CopyDirectoryVisitor", true, "CopyDirectoryVisitor", "(PathCounters,PathFilter,PathFilter,Path,Path,CopyOption[])", "", "Argument[4].Element", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.file", "CopyDirectoryVisitor", true, "CopyDirectoryVisitor", "(PathCounters,PathFilter,PathFilter,Path,Path,CopyOption[])", "", "Argument[5].ArrayElement", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.file", "CopyDirectoryVisitor", true, "getCopyOptions", "()", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io.file", "CopyDirectoryVisitor", true, "getSourceDirectory", "()", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io.file", "CopyDirectoryVisitor", true, "getTargetDirectory", "()", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io.file", "Counters$PathCounters", true, "getByteCounter", "()", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io.file", "Counters$PathCounters", true, "getDirectoryCounter", "()", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io.file", "Counters$PathCounters", true, "getFileCounter", "()", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io.file", "CountingPathVisitor", true, "CountingPathVisitor", "(PathCounters)", "", "Argument[0]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.file", "CountingPathVisitor", true, "CountingPathVisitor", "(PathCounters,PathFilter,PathFilter)", "", "Argument[0]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.file", "CountingPathVisitor", true, "CountingPathVisitor", "(PathCounters,PathFilter,PathFilter)", "", "Argument[1]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.file", "CountingPathVisitor", true, "CountingPathVisitor", "(PathCounters,PathFilter,PathFilter)", "", "Argument[2]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.file", "CountingPathVisitor", true, "getPathCounters", "()", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io.file", "DeletingPathVisitor", true, "DeletingPathVisitor", "(PathCounters,DeleteOption[],String[])", "", "Argument[0]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.file", "DeletingPathVisitor", true, "DeletingPathVisitor", "(PathCounters,DeleteOption[],String[])", "", "Argument[2].ArrayElement", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.file", "DeletingPathVisitor", true, "DeletingPathVisitor", "(PathCounters,LinkOption[],DeleteOption[],String[])", "", "Argument[0]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.file", "DeletingPathVisitor", true, "DeletingPathVisitor", "(PathCounters,LinkOption[],DeleteOption[],String[])", "", "Argument[1].ArrayElement", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.file", "DeletingPathVisitor", true, "DeletingPathVisitor", "(PathCounters,LinkOption[],DeleteOption[],String[])", "", "Argument[3].ArrayElement", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.file", "DeletingPathVisitor", true, "DeletingPathVisitor", "(PathCounters,String[])", "", "Argument[0]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.file", "DeletingPathVisitor", true, "DeletingPathVisitor", "(PathCounters,String[])", "", "Argument[1].ArrayElement", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.file", "DirectoryStreamFilter", true, "DirectoryStreamFilter", "(PathFilter)", "", "Argument[0]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.file", "DirectoryStreamFilter", true, "getPathFilter", "()", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io.file", "PathUtils", false, "copyFile", "(URL,Path,CopyOption[])", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io.file", "PathUtils", false, "copyFileToDirectory", "(URL,Path,CopyOption[])", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io.file", "PathUtils", false, "setReadOnly", "(Path,boolean,LinkOption[])", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io.file", "PathUtils", false, "visitFileTree", "(FileVisitor,Path)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io.file", "PathUtils", false, "visitFileTree", "(FileVisitor,Path,Set,int)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io.file", "PathUtils", false, "visitFileTree", "(FileVisitor,String,String[])", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io.file", "PathUtils", false, "visitFileTree", "(FileVisitor,URI)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io.file", "PathUtils", false, "writeString", "(Path,CharSequence,Charset,OpenOption[])", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io.filefilter", "AgeFileFilter", true, "AgeFileFilter", "(Instant)", "", "Argument[0]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.filefilter", "AgeFileFilter", true, "AgeFileFilter", "(Instant,boolean)", "", "Argument[0]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.filefilter", "AgeFileFilter", true, "toString", "()", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io.filefilter", "AndFileFilter", true, "AndFileFilter", "(IOFileFilter,IOFileFilter)", "", "Argument[0]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.filefilter", "AndFileFilter", true, "AndFileFilter", "(IOFileFilter,IOFileFilter)", "", "Argument[1]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.filefilter", "AndFileFilter", true, "AndFileFilter", "(IOFileFilter[])", "", "Argument[0].ArrayElement", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.filefilter", "AndFileFilter", true, "AndFileFilter", "(List)", "", "Argument[0].Element", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.filefilter", "AndFileFilter", true, "addFileFilter", "(IOFileFilter[])", "", "Argument[0].ArrayElement", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.filefilter", "AndFileFilter", true, "toString", "()", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io.filefilter", "ConditionalFileFilter", true, "addFileFilter", "(IOFileFilter)", "", "Argument[0]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.filefilter", "ConditionalFileFilter", true, "getFileFilters", "()", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io.filefilter", "ConditionalFileFilter", true, "setFileFilters", "(List)", "", "Argument[0].Element", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.filefilter", "DelegateFileFilter", true, "DelegateFileFilter", "(FileFilter)", "", "Argument[0]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.filefilter", "DelegateFileFilter", true, "DelegateFileFilter", "(FilenameFilter)", "", "Argument[0]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.filefilter", "DelegateFileFilter", true, "toString", "()", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io.filefilter", "FileEqualsFileFilter", true, "FileEqualsFileFilter", "(File)", "", "Argument[0]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.filefilter", "FileFilterUtils", true, "and", "(IOFileFilter[])", "", "Argument[0].ArrayElement", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io.filefilter", "FileFilterUtils", true, "andFileFilter", "(IOFileFilter,IOFileFilter)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io.filefilter", "FileFilterUtils", true, "andFileFilter", "(IOFileFilter,IOFileFilter)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io.filefilter", "FileFilterUtils", true, "asFileFilter", "(FileFilter)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io.filefilter", "FileFilterUtils", true, "asFileFilter", "(FilenameFilter)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io.filefilter", "FileFilterUtils", true, "magicNumberFileFilter", "(String)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io.filefilter", "FileFilterUtils", true, "magicNumberFileFilter", "(String,long)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io.filefilter", "FileFilterUtils", true, "magicNumberFileFilter", "(byte[])", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io.filefilter", "FileFilterUtils", true, "magicNumberFileFilter", "(byte[],long)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io.filefilter", "FileFilterUtils", true, "makeCVSAware", "(IOFileFilter)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io.filefilter", "FileFilterUtils", true, "makeDirectoryOnly", "(IOFileFilter)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io.filefilter", "FileFilterUtils", true, "makeFileOnly", "(IOFileFilter)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io.filefilter", "FileFilterUtils", true, "makeSVNAware", "(IOFileFilter)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io.filefilter", "FileFilterUtils", true, "nameFileFilter", "(String)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io.filefilter", "FileFilterUtils", true, "nameFileFilter", "(String,IOCase)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io.filefilter", "FileFilterUtils", true, "notFileFilter", "(IOFileFilter)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io.filefilter", "FileFilterUtils", true, "or", "(IOFileFilter[])", "", "Argument[0].ArrayElement", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io.filefilter", "FileFilterUtils", true, "orFileFilter", "(IOFileFilter,IOFileFilter)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io.filefilter", "FileFilterUtils", true, "orFileFilter", "(IOFileFilter,IOFileFilter)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io.filefilter", "FileFilterUtils", true, "prefixFileFilter", "(String)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io.filefilter", "FileFilterUtils", true, "prefixFileFilter", "(String,IOCase)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io.filefilter", "FileFilterUtils", true, "suffixFileFilter", "(String)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io.filefilter", "FileFilterUtils", true, "suffixFileFilter", "(String,IOCase)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io.filefilter", "FileFilterUtils", true, "toList", "(IOFileFilter[])", "", "Argument[0].ArrayElement", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io.filefilter", "IOFileFilter", true, "and", "(IOFileFilter)", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io.filefilter", "IOFileFilter", true, "and", "(IOFileFilter)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io.filefilter", "IOFileFilter", true, "negate", "()", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io.filefilter", "IOFileFilter", true, "or", "(IOFileFilter)", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io.filefilter", "IOFileFilter", true, "or", "(IOFileFilter)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io.filefilter", "MagicNumberFileFilter", true, "MagicNumberFileFilter", "(String)", "", "Argument[0]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.filefilter", "MagicNumberFileFilter", true, "MagicNumberFileFilter", "(String,long)", "", "Argument[0]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.filefilter", "MagicNumberFileFilter", true, "MagicNumberFileFilter", "(byte[])", "", "Argument[0]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.filefilter", "MagicNumberFileFilter", true, "MagicNumberFileFilter", "(byte[],long)", "", "Argument[0]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.filefilter", "MagicNumberFileFilter", true, "toString", "()", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io.filefilter", "NameFileFilter", true, "NameFileFilter", "(List)", "", "Argument[0].Element", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.filefilter", "NameFileFilter", true, "NameFileFilter", "(List,IOCase)", "", "Argument[0].Element", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.filefilter", "NameFileFilter", true, "NameFileFilter", "(String)", "", "Argument[0]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.filefilter", "NameFileFilter", true, "NameFileFilter", "(String,IOCase)", "", "Argument[0]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.filefilter", "NameFileFilter", true, "NameFileFilter", "(String[])", "", "Argument[0].ArrayElement", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.filefilter", "NameFileFilter", true, "NameFileFilter", "(String[],IOCase)", "", "Argument[0].ArrayElement", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.filefilter", "NameFileFilter", true, "toString", "()", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io.filefilter", "NotFileFilter", true, "NotFileFilter", "(IOFileFilter)", "", "Argument[0]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.filefilter", "NotFileFilter", true, "toString", "()", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io.filefilter", "OrFileFilter", true, "OrFileFilter", "(IOFileFilter,IOFileFilter)", "", "Argument[0]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.filefilter", "OrFileFilter", true, "OrFileFilter", "(IOFileFilter,IOFileFilter)", "", "Argument[1]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.filefilter", "OrFileFilter", true, "OrFileFilter", "(IOFileFilter[])", "", "Argument[0].ArrayElement", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.filefilter", "OrFileFilter", true, "OrFileFilter", "(List)", "", "Argument[0].Element", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.filefilter", "OrFileFilter", true, "addFileFilter", "(IOFileFilter[])", "", "Argument[0].ArrayElement", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.filefilter", "OrFileFilter", true, "toString", "()", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io.filefilter", "PathEqualsFileFilter", true, "PathEqualsFileFilter", "(Path)", "", "Argument[0].Element", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.filefilter", "PathVisitorFileFilter", true, "PathVisitorFileFilter", "(PathVisitor)", "", "Argument[0]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.filefilter", "PrefixFileFilter", true, "PrefixFileFilter", "(List)", "", "Argument[0].Element", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.filefilter", "PrefixFileFilter", true, "PrefixFileFilter", "(List,IOCase)", "", "Argument[0].Element", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.filefilter", "PrefixFileFilter", true, "PrefixFileFilter", "(String)", "", "Argument[0]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.filefilter", "PrefixFileFilter", true, "PrefixFileFilter", "(String,IOCase)", "", "Argument[0]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.filefilter", "PrefixFileFilter", true, "PrefixFileFilter", "(String[])", "", "Argument[0].ArrayElement", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.filefilter", "PrefixFileFilter", true, "PrefixFileFilter", "(String[],IOCase)", "", "Argument[0].ArrayElement", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.filefilter", "PrefixFileFilter", true, "toString", "()", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io.filefilter", "RegexFileFilter", true, "RegexFileFilter", "(Pattern)", "", "Argument[0]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.filefilter", "RegexFileFilter", true, "RegexFileFilter", "(Pattern,Function)", "", "Argument[0]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.filefilter", "RegexFileFilter", true, "RegexFileFilter", "(Pattern,Function)", "", "Argument[1]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.filefilter", "RegexFileFilter", true, "toString", "()", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io.filefilter", "SuffixFileFilter", true, "SuffixFileFilter", "(List)", "", "Argument[0].Element", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.filefilter", "SuffixFileFilter", true, "SuffixFileFilter", "(List,IOCase)", "", "Argument[0].Element", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.filefilter", "SuffixFileFilter", true, "SuffixFileFilter", "(String)", "", "Argument[0]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.filefilter", "SuffixFileFilter", true, "SuffixFileFilter", "(String,IOCase)", "", "Argument[0]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.filefilter", "SuffixFileFilter", true, "SuffixFileFilter", "(String[])", "", "Argument[0].ArrayElement", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.filefilter", "SuffixFileFilter", true, "SuffixFileFilter", "(String[],IOCase)", "", "Argument[0].ArrayElement", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.filefilter", "SuffixFileFilter", true, "toString", "()", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io.filefilter", "WildcardFileFilter", true, "WildcardFileFilter", "(List)", "", "Argument[0].Element", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.filefilter", "WildcardFileFilter", true, "WildcardFileFilter", "(List,IOCase)", "", "Argument[0].Element", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.filefilter", "WildcardFileFilter", true, "WildcardFileFilter", "(String)", "", "Argument[0]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.filefilter", "WildcardFileFilter", true, "WildcardFileFilter", "(String,IOCase)", "", "Argument[0]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.filefilter", "WildcardFileFilter", true, "WildcardFileFilter", "(String[])", "", "Argument[0].ArrayElement", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.filefilter", "WildcardFileFilter", true, "WildcardFileFilter", "(String[],IOCase)", "", "Argument[0].ArrayElement", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.filefilter", "WildcardFileFilter", true, "toString", "()", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io.filefilter", "WildcardFilter", true, "WildcardFilter", "(List)", "", "Argument[0].Element", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.filefilter", "WildcardFilter", true, "WildcardFilter", "(String)", "", "Argument[0]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.filefilter", "WildcardFilter", true, "WildcardFilter", "(String[])", "", "Argument[0].ArrayElement", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.input.buffer", "CircularBufferInputStream", true, "CircularBufferInputStream", "(InputStream)", "", "Argument[0]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.input.buffer", "CircularBufferInputStream", true, "CircularBufferInputStream", "(InputStream,int)", "", "Argument[0]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.input.buffer", "PeekableInputStream", true, "PeekableInputStream", "(InputStream)", "", "Argument[0]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.input.buffer", "PeekableInputStream", true, "PeekableInputStream", "(InputStream,int)", "", "Argument[0]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.input", "BOMInputStream", true, "BOMInputStream", "(InputStream,ByteOrderMark[])", "", "Argument[1].ArrayElement", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.input", "BOMInputStream", true, "BOMInputStream", "(InputStream,boolean,ByteOrderMark[])", "", "Argument[2].ArrayElement", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.input", "BOMInputStream", true, "getBOM", "()", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io.input", "BOMInputStream", true, "getBOMCharsetName", "()", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io.input", "BoundedInputStream", true, "BoundedInputStream", "(InputStream)", "", "Argument[0]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.input", "BoundedInputStream", true, "BoundedInputStream", "(InputStream,long)", "", "Argument[0]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.input", "BoundedReader", true, "BoundedReader", "(Reader,int)", "", "Argument[0]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.input", "BrokenInputStream", true, "BrokenInputStream", "(Supplier)", "", "Argument[0]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.input", "BrokenReader", true, "BrokenReader", "(Supplier)", "", "Argument[0]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.input", "CharSequenceReader", true, "CharSequenceReader", "(CharSequence)", "", "Argument[0]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.input", "CharSequenceReader", true, "CharSequenceReader", "(CharSequence,int)", "", "Argument[0]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.input", "CharSequenceReader", true, "CharSequenceReader", "(CharSequence,int,int)", "", "Argument[0]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.input", "CharSequenceReader", true, "toString", "()", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io.input", "CharacterFilterReader", true, "CharacterFilterReader", "(Reader,IntPredicate)", "", "Argument[1]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.input", "CircularInputStream", true, "CircularInputStream", "(byte[],long)", "", "Argument[0]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.input", "ClassLoaderObjectInputStream", true, "ClassLoaderObjectInputStream", "(ClassLoader,InputStream)", "", "Argument[0]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.input", "ClassLoaderObjectInputStream", true, "ClassLoaderObjectInputStream", "(ClassLoader,InputStream)", "", "Argument[1]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.input", "CloseShieldInputStream", true, "wrap", "(InputStream)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io.input", "InfiniteCircularInputStream", true, "InfiniteCircularInputStream", "(byte[])", "", "Argument[0]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.input", "MessageDigestCalculatingInputStream$MessageDigestMaintainingObserver", true, "MessageDigestMaintainingObserver", "(MessageDigest)", "", "Argument[0]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.input", "MessageDigestCalculatingInputStream", true, "MessageDigestCalculatingInputStream", "(InputStream,MessageDigest)", "", "Argument[1]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.input", "MessageDigestCalculatingInputStream", true, "getMessageDigest", "()", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io.input", "ObservableInputStream", true, "ObservableInputStream", "(InputStream,Observer[])", "", "Argument[1].ArrayElement", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.input", "ObservableInputStream", true, "add", "(Observer)", "", "Argument[0]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.input", "ObservableInputStream", true, "getObservers", "()", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io.input", "RandomAccessFileInputStream", true, "RandomAccessFileInputStream", "(RandomAccessFile)", "", "Argument[0]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.input", "RandomAccessFileInputStream", true, "RandomAccessFileInputStream", "(RandomAccessFile,boolean)", "", "Argument[0]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.input", "RandomAccessFileInputStream", true, "getRandomAccessFile", "()", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io.input", "ReadAheadInputStream", true, "ReadAheadInputStream", "(InputStream,int)", "", "Argument[0]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.input", "ReadAheadInputStream", true, "ReadAheadInputStream", "(InputStream,int,ExecutorService)", "", "Argument[0]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.input", "ReadAheadInputStream", true, "ReadAheadInputStream", "(InputStream,int,ExecutorService)", "", "Argument[2]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.input", "ReaderInputStream", true, "ReaderInputStream", "(Reader)", "", "Argument[0]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.input", "ReaderInputStream", true, "ReaderInputStream", "(Reader,Charset)", "", "Argument[0]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.input", "ReaderInputStream", true, "ReaderInputStream", "(Reader,Charset,int)", "", "Argument[0]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.input", "ReaderInputStream", true, "ReaderInputStream", "(Reader,CharsetEncoder)", "", "Argument[0]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.input", "ReaderInputStream", true, "ReaderInputStream", "(Reader,CharsetEncoder)", "", "Argument[1]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.input", "ReaderInputStream", true, "ReaderInputStream", "(Reader,CharsetEncoder,int)", "", "Argument[0]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.input", "ReaderInputStream", true, "ReaderInputStream", "(Reader,CharsetEncoder,int)", "", "Argument[1]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.input", "ReaderInputStream", true, "ReaderInputStream", "(Reader,String)", "", "Argument[0]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.input", "ReaderInputStream", true, "ReaderInputStream", "(Reader,String,int)", "", "Argument[0]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.input", "ReversedLinesFileReader", true, "readLine", "()", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io.input", "ReversedLinesFileReader", true, "readLines", "(int)", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io.input", "ReversedLinesFileReader", true, "toString", "(int)", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io.input", "SequenceReader", true, "SequenceReader", "(Iterable)", "", "Argument[0].Element", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.input", "SequenceReader", true, "SequenceReader", "(Reader[])", "", "Argument[0].ArrayElement", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.input", "Tailer$Builder", true, "Builder", "(File,TailerListener)", "", "Argument[0]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.input", "Tailer$Builder", true, "Builder", "(File,TailerListener)", "", "Argument[1]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.input", "Tailer$Builder", true, "Builder", "(Path,TailerListener)", "", "Argument[0].Element", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.input", "Tailer$Builder", true, "Builder", "(Path,TailerListener)", "", "Argument[1]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.input", "Tailer$Builder", true, "Builder", "(Tailable,TailerListener)", "", "Argument[0]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.input", "Tailer$Builder", true, "Builder", "(Tailable,TailerListener)", "", "Argument[1]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.input", "Tailer$Builder", true, "build", "()", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io.input", "Tailer$Builder", true, "withBufferSize", "(int)", "", "Argument[-1]", "ReturnValue", "value", "generated"]
+      - ["org.apache.commons.io.input", "Tailer$Builder", true, "withCharset", "(Charset)", "", "Argument[-1]", "ReturnValue", "value", "generated"]
+      - ["org.apache.commons.io.input", "Tailer$Builder", true, "withDelayDuration", "(Duration)", "", "Argument[-1]", "ReturnValue", "value", "generated"]
+      - ["org.apache.commons.io.input", "Tailer$Builder", true, "withDelayDuration", "(Duration)", "", "Argument[0]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.input", "Tailer$Builder", true, "withReOpen", "(boolean)", "", "Argument[-1]", "ReturnValue", "value", "generated"]
+      - ["org.apache.commons.io.input", "Tailer$Builder", true, "withStartThread", "(boolean)", "", "Argument[-1]", "ReturnValue", "value", "generated"]
+      - ["org.apache.commons.io.input", "Tailer$Builder", true, "withTailFromEnd", "(boolean)", "", "Argument[-1]", "ReturnValue", "value", "generated"]
+      - ["org.apache.commons.io.input", "Tailer", true, "Tailer", "(File,Charset,TailerListener,long,boolean,boolean,int)", "", "Argument[0]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.input", "Tailer", true, "Tailer", "(File,Charset,TailerListener,long,boolean,boolean,int)", "", "Argument[2]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.input", "Tailer", true, "Tailer", "(File,TailerListener)", "", "Argument[0]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.input", "Tailer", true, "Tailer", "(File,TailerListener)", "", "Argument[1]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.input", "Tailer", true, "Tailer", "(File,TailerListener,long)", "", "Argument[0]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.input", "Tailer", true, "Tailer", "(File,TailerListener,long)", "", "Argument[1]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.input", "Tailer", true, "Tailer", "(File,TailerListener,long,boolean)", "", "Argument[0]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.input", "Tailer", true, "Tailer", "(File,TailerListener,long,boolean)", "", "Argument[1]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.input", "Tailer", true, "Tailer", "(File,TailerListener,long,boolean,boolean)", "", "Argument[0]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.input", "Tailer", true, "Tailer", "(File,TailerListener,long,boolean,boolean)", "", "Argument[1]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.input", "Tailer", true, "Tailer", "(File,TailerListener,long,boolean,boolean,int)", "", "Argument[0]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.input", "Tailer", true, "Tailer", "(File,TailerListener,long,boolean,boolean,int)", "", "Argument[1]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.input", "Tailer", true, "Tailer", "(File,TailerListener,long,boolean,int)", "", "Argument[0]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.input", "Tailer", true, "Tailer", "(File,TailerListener,long,boolean,int)", "", "Argument[1]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.input", "Tailer", true, "create", "(File,Charset,TailerListener,long,boolean,boolean,int)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io.input", "Tailer", true, "create", "(File,Charset,TailerListener,long,boolean,boolean,int)", "", "Argument[2]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io.input", "Tailer", true, "create", "(File,TailerListener)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io.input", "Tailer", true, "create", "(File,TailerListener)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io.input", "Tailer", true, "create", "(File,TailerListener,long)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io.input", "Tailer", true, "create", "(File,TailerListener,long)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io.input", "Tailer", true, "create", "(File,TailerListener,long,boolean)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io.input", "Tailer", true, "create", "(File,TailerListener,long,boolean)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io.input", "Tailer", true, "create", "(File,TailerListener,long,boolean,boolean)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io.input", "Tailer", true, "create", "(File,TailerListener,long,boolean,boolean)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io.input", "Tailer", true, "create", "(File,TailerListener,long,boolean,boolean,int)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io.input", "Tailer", true, "create", "(File,TailerListener,long,boolean,boolean,int)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io.input", "Tailer", true, "create", "(File,TailerListener,long,boolean,int)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io.input", "Tailer", true, "create", "(File,TailerListener,long,boolean,int)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io.input", "Tailer", true, "getDelayDuration", "()", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io.input", "Tailer", true, "getFile", "()", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io.input", "Tailer", true, "getTailable", "()", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io.input", "TeeInputStream", true, "TeeInputStream", "(InputStream,OutputStream)", "", "Argument[1]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.input", "TeeInputStream", true, "TeeInputStream", "(InputStream,OutputStream,boolean)", "", "Argument[1]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.input", "TeeReader", true, "TeeReader", "(Reader,Writer)", "", "Argument[1]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.input", "TeeReader", true, "TeeReader", "(Reader,Writer,boolean)", "", "Argument[1]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.input", "TimestampedObserver", true, "getCloseInstant", "()", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io.input", "TimestampedObserver", true, "getOpenInstant", "()", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io.input", "TimestampedObserver", true, "toString", "()", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io.input", "UncheckedBufferedReader", true, "UncheckedBufferedReader", "(Reader)", "", "Argument[0]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.input", "UncheckedBufferedReader", true, "UncheckedBufferedReader", "(Reader,int)", "", "Argument[0]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.input", "UncheckedBufferedReader", true, "on", "(Reader)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io.input", "UncheckedFilterInputStream", true, "on", "(InputStream)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io.input", "UnixLineEndingInputStream", true, "UnixLineEndingInputStream", "(InputStream,boolean)", "", "Argument[0]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.input", "UnsynchronizedByteArrayInputStream", true, "UnsynchronizedByteArrayInputStream", "(byte[])", "", "Argument[0]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.input", "UnsynchronizedByteArrayInputStream", true, "UnsynchronizedByteArrayInputStream", "(byte[],int)", "", "Argument[0]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.input", "UnsynchronizedByteArrayInputStream", true, "UnsynchronizedByteArrayInputStream", "(byte[],int,int)", "", "Argument[0]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.input", "WindowsLineEndingInputStream", true, "WindowsLineEndingInputStream", "(InputStream,boolean)", "", "Argument[0]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.input", "XmlStreamReader", true, "XmlStreamReader", "(InputStream)", "", "Argument[0]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.input", "XmlStreamReader", true, "XmlStreamReader", "(InputStream,String)", "", "Argument[0]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.input", "XmlStreamReader", true, "XmlStreamReader", "(InputStream,String)", "", "Argument[1]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.input", "XmlStreamReader", true, "XmlStreamReader", "(InputStream,String,boolean)", "", "Argument[0]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.input", "XmlStreamReader", true, "XmlStreamReader", "(InputStream,String,boolean)", "", "Argument[1]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.input", "XmlStreamReader", true, "XmlStreamReader", "(InputStream,String,boolean,String)", "", "Argument[0]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.input", "XmlStreamReader", true, "XmlStreamReader", "(InputStream,String,boolean,String)", "", "Argument[1]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.input", "XmlStreamReader", true, "XmlStreamReader", "(InputStream,String,boolean,String)", "", "Argument[3]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.input", "XmlStreamReader", true, "XmlStreamReader", "(InputStream,boolean)", "", "Argument[0]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.input", "XmlStreamReader", true, "XmlStreamReader", "(InputStream,boolean,String)", "", "Argument[0]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.input", "XmlStreamReader", true, "XmlStreamReader", "(InputStream,boolean,String)", "", "Argument[2]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.input", "XmlStreamReader", true, "XmlStreamReader", "(URLConnection,String)", "", "Argument[1]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.input", "XmlStreamReader", true, "getDefaultEncoding", "()", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io.input", "XmlStreamReader", true, "getEncoding", "()", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io.input", "XmlStreamReaderException", true, "XmlStreamReaderException", "(String,String,String,String)", "", "Argument[1]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.input", "XmlStreamReaderException", true, "XmlStreamReaderException", "(String,String,String,String)", "", "Argument[2]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.input", "XmlStreamReaderException", true, "XmlStreamReaderException", "(String,String,String,String)", "", "Argument[3]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.input", "XmlStreamReaderException", true, "XmlStreamReaderException", "(String,String,String,String,String,String)", "", "Argument[1]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.input", "XmlStreamReaderException", true, "XmlStreamReaderException", "(String,String,String,String,String,String)", "", "Argument[2]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.input", "XmlStreamReaderException", true, "XmlStreamReaderException", "(String,String,String,String,String,String)", "", "Argument[3]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.input", "XmlStreamReaderException", true, "XmlStreamReaderException", "(String,String,String,String,String,String)", "", "Argument[4]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.input", "XmlStreamReaderException", true, "XmlStreamReaderException", "(String,String,String,String,String,String)", "", "Argument[5]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.input", "XmlStreamReaderException", true, "getBomEncoding", "()", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io.input", "XmlStreamReaderException", true, "getContentTypeEncoding", "()", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io.input", "XmlStreamReaderException", true, "getContentTypeMime", "()", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io.input", "XmlStreamReaderException", true, "getXmlEncoding", "()", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io.input", "XmlStreamReaderException", true, "getXmlGuessEncoding", "()", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io.monitor", "FileAlterationMonitor", false, "FileAlterationMonitor", "(long,Collection)", "", "Argument[1].Element", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.monitor", "FileAlterationMonitor", false, "FileAlterationMonitor", "(long,FileAlterationObserver[])", "", "Argument[1].ArrayElement", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.monitor", "FileAlterationMonitor", false, "addObserver", "(FileAlterationObserver)", "", "Argument[0]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.monitor", "FileAlterationMonitor", false, "getObservers", "()", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io.monitor", "FileAlterationMonitor", false, "setThreadFactory", "(ThreadFactory)", "", "Argument[0]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.monitor", "FileAlterationObserver", true, "FileAlterationObserver", "(File)", "", "Argument[0]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.monitor", "FileAlterationObserver", true, "FileAlterationObserver", "(File,FileFilter)", "", "Argument[0]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.monitor", "FileAlterationObserver", true, "FileAlterationObserver", "(File,FileFilter)", "", "Argument[1]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.monitor", "FileAlterationObserver", true, "FileAlterationObserver", "(File,FileFilter,IOCase)", "", "Argument[0]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.monitor", "FileAlterationObserver", true, "FileAlterationObserver", "(File,FileFilter,IOCase)", "", "Argument[1]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.monitor", "FileAlterationObserver", true, "FileAlterationObserver", "(String)", "", "Argument[0]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.monitor", "FileAlterationObserver", true, "FileAlterationObserver", "(String,FileFilter)", "", "Argument[0]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.monitor", "FileAlterationObserver", true, "FileAlterationObserver", "(String,FileFilter)", "", "Argument[1]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.monitor", "FileAlterationObserver", true, "FileAlterationObserver", "(String,FileFilter,IOCase)", "", "Argument[0]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.monitor", "FileAlterationObserver", true, "FileAlterationObserver", "(String,FileFilter,IOCase)", "", "Argument[1]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.monitor", "FileAlterationObserver", true, "addListener", "(FileAlterationListener)", "", "Argument[0]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.monitor", "FileAlterationObserver", true, "getDirectory", "()", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io.monitor", "FileAlterationObserver", true, "getFileFilter", "()", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io.monitor", "FileAlterationObserver", true, "getListeners", "()", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io.monitor", "FileAlterationObserver", true, "toString", "()", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io.monitor", "FileEntry", true, "FileEntry", "(File)", "", "Argument[0]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.monitor", "FileEntry", true, "FileEntry", "(FileEntry,File)", "", "Argument[0]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.monitor", "FileEntry", true, "FileEntry", "(FileEntry,File)", "", "Argument[1]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.monitor", "FileEntry", true, "getChildren", "()", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io.monitor", "FileEntry", true, "getFile", "()", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io.monitor", "FileEntry", true, "getLastModifiedFileTime", "()", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io.monitor", "FileEntry", true, "getName", "()", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io.monitor", "FileEntry", true, "getParent", "()", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io.monitor", "FileEntry", true, "newChildInstance", "(File)", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io.monitor", "FileEntry", true, "newChildInstance", "(File)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io.monitor", "FileEntry", true, "setChildren", "(FileEntry[])", "", "Argument[0].ArrayElement", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.monitor", "FileEntry", true, "setLastModified", "(FileTime)", "", "Argument[0]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.monitor", "FileEntry", true, "setName", "(String)", "", "Argument[0]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.output", "AbstractByteArrayOutputStream", true, "toByteArray", "()", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io.output", "AbstractByteArrayOutputStream", true, "toString", "()", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io.output", "AbstractByteArrayOutputStream", true, "toString", "(Charset)", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io.output", "AbstractByteArrayOutputStream", true, "toString", "(String)", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io.output", "AbstractByteArrayOutputStream", true, "write", "(InputStream)", "", "Argument[-1]", "Argument[0]", "taint", "generated"]
+      - ["org.apache.commons.io.output", "AbstractByteArrayOutputStream", true, "write", "(InputStream)", "", "Argument[0]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.output", "AbstractByteArrayOutputStream", true, "writeTo", "(OutputStream)", "", "Argument[-1]", "Argument[0]", "taint", "generated"]
+      - ["org.apache.commons.io.output", "AppendableOutputStream", true, "AppendableOutputStream", "(Appendable)", "", "Argument[0]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.output", "AppendableOutputStream", true, "getAppendable", "()", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io.output", "AppendableWriter", true, "AppendableWriter", "(Appendable)", "", "Argument[0]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.output", "AppendableWriter", true, "getAppendable", "()", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io.output", "BrokenOutputStream", true, "BrokenOutputStream", "(Supplier)", "", "Argument[0]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.output", "BrokenWriter", true, "BrokenWriter", "(Supplier)", "", "Argument[0]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.output", "ChunkedOutputStream", true, "ChunkedOutputStream", "(OutputStream)", "", "Argument[0]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.output", "ChunkedOutputStream", true, "ChunkedOutputStream", "(OutputStream,int)", "", "Argument[0]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.output", "CloseShieldOutputStream", true, "CloseShieldOutputStream", "(OutputStream)", "", "Argument[0]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.output", "CloseShieldOutputStream", true, "wrap", "(OutputStream)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io.output", "CountingOutputStream", true, "CountingOutputStream", "(OutputStream)", "", "Argument[0]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.output", "DeferredFileOutputStream", true, "DeferredFileOutputStream", "(int,File)", "", "Argument[1]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.output", "DeferredFileOutputStream", true, "DeferredFileOutputStream", "(int,String,String,File)", "", "Argument[1]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.output", "DeferredFileOutputStream", true, "DeferredFileOutputStream", "(int,String,String,File)", "", "Argument[2]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.output", "DeferredFileOutputStream", true, "DeferredFileOutputStream", "(int,String,String,File)", "", "Argument[3]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.output", "DeferredFileOutputStream", true, "DeferredFileOutputStream", "(int,int,File)", "", "Argument[2]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.output", "DeferredFileOutputStream", true, "DeferredFileOutputStream", "(int,int,String,String,File)", "", "Argument[2]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.output", "DeferredFileOutputStream", true, "DeferredFileOutputStream", "(int,int,String,String,File)", "", "Argument[3]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.output", "DeferredFileOutputStream", true, "DeferredFileOutputStream", "(int,int,String,String,File)", "", "Argument[4]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.output", "DeferredFileOutputStream", true, "getData", "()", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io.output", "DeferredFileOutputStream", true, "getFile", "()", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io.output", "DeferredFileOutputStream", true, "writeTo", "(OutputStream)", "", "Argument[-1]", "Argument[0]", "taint", "generated"]
+      - ["org.apache.commons.io.output", "LockableFileWriter", true, "LockableFileWriter", "(File,Charset,boolean,String)", "", "Argument[3]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.output", "LockableFileWriter", true, "LockableFileWriter", "(File,String,boolean,String)", "", "Argument[3]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.output", "LockableFileWriter", true, "LockableFileWriter", "(File,boolean,String)", "", "Argument[2]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.output", "LockableFileWriter", true, "LockableFileWriter", "(String,boolean,String)", "", "Argument[2]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.output", "ProxyCollectionWriter", true, "ProxyCollectionWriter", "(Collection)", "", "Argument[0].Element", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.output", "ProxyCollectionWriter", true, "ProxyCollectionWriter", "(Writer[])", "", "Argument[0].ArrayElement", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.output", "ProxyOutputStream", true, "ProxyOutputStream", "(OutputStream)", "", "Argument[0]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.output", "StringBuilderWriter", true, "StringBuilderWriter", "(StringBuilder)", "", "Argument[0]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.output", "StringBuilderWriter", true, "getBuilder", "()", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io.output", "StringBuilderWriter", true, "toString", "()", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io.output", "TaggedOutputStream", true, "TaggedOutputStream", "(OutputStream)", "", "Argument[0]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.output", "TeeOutputStream", true, "TeeOutputStream", "(OutputStream,OutputStream)", "", "Argument[0]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.output", "TeeOutputStream", true, "TeeOutputStream", "(OutputStream,OutputStream)", "", "Argument[1]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.output", "TeeWriter", true, "TeeWriter", "(Collection)", "", "Argument[0].Element", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.output", "TeeWriter", true, "TeeWriter", "(Writer[])", "", "Argument[0].ArrayElement", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.output", "ThresholdingOutputStream", true, "ThresholdingOutputStream", "(int,IOConsumer,IOFunction)", "", "Argument[1]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.output", "ThresholdingOutputStream", true, "ThresholdingOutputStream", "(int,IOConsumer,IOFunction)", "", "Argument[2]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.output", "UncheckedAppendable", true, "on", "(Appendable)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io.output", "UncheckedFilterOutputStream", true, "UncheckedFilterOutputStream", "(OutputStream)", "", "Argument[0]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.output", "UncheckedFilterOutputStream", true, "on", "(OutputStream)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io.output", "WriterOutputStream", true, "WriterOutputStream", "(Writer)", "", "Argument[0]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.output", "WriterOutputStream", true, "WriterOutputStream", "(Writer,Charset)", "", "Argument[0]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.output", "WriterOutputStream", true, "WriterOutputStream", "(Writer,Charset,int,boolean)", "", "Argument[0]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.output", "WriterOutputStream", true, "WriterOutputStream", "(Writer,CharsetDecoder)", "", "Argument[0]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.output", "WriterOutputStream", true, "WriterOutputStream", "(Writer,CharsetDecoder)", "", "Argument[1]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.output", "WriterOutputStream", true, "WriterOutputStream", "(Writer,CharsetDecoder,int,boolean)", "", "Argument[0]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.output", "WriterOutputStream", true, "WriterOutputStream", "(Writer,CharsetDecoder,int,boolean)", "", "Argument[1]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.output", "WriterOutputStream", true, "WriterOutputStream", "(Writer,String)", "", "Argument[0]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.output", "WriterOutputStream", true, "WriterOutputStream", "(Writer,String,int,boolean)", "", "Argument[0]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.output", "XmlStreamWriter", true, "XmlStreamWriter", "(File,String)", "", "Argument[1]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.output", "XmlStreamWriter", true, "XmlStreamWriter", "(OutputStream)", "", "Argument[0]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.output", "XmlStreamWriter", true, "XmlStreamWriter", "(OutputStream,String)", "", "Argument[0]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.output", "XmlStreamWriter", true, "XmlStreamWriter", "(OutputStream,String)", "", "Argument[1]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.output", "XmlStreamWriter", true, "getDefaultEncoding", "()", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io.output", "XmlStreamWriter", true, "getEncoding", "()", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io.serialization", "ValidatingObjectInputStream", true, "ValidatingObjectInputStream", "(InputStream)", "", "Argument[0]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.serialization", "ValidatingObjectInputStream", true, "accept", "(ClassNameMatcher)", "", "Argument[-1]", "ReturnValue", "value", "generated"]
+      - ["org.apache.commons.io.serialization", "ValidatingObjectInputStream", true, "accept", "(ClassNameMatcher)", "", "Argument[0]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.serialization", "ValidatingObjectInputStream", true, "accept", "(Class[])", "", "Argument[-1]", "ReturnValue", "value", "generated"]
+      - ["org.apache.commons.io.serialization", "ValidatingObjectInputStream", true, "accept", "(Pattern)", "", "Argument[-1]", "ReturnValue", "value", "generated"]
+      - ["org.apache.commons.io.serialization", "ValidatingObjectInputStream", true, "accept", "(String[])", "", "Argument[-1]", "ReturnValue", "value", "generated"]
+      - ["org.apache.commons.io.serialization", "ValidatingObjectInputStream", true, "reject", "(ClassNameMatcher)", "", "Argument[-1]", "ReturnValue", "value", "generated"]
+      - ["org.apache.commons.io.serialization", "ValidatingObjectInputStream", true, "reject", "(ClassNameMatcher)", "", "Argument[0]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io.serialization", "ValidatingObjectInputStream", true, "reject", "(Class[])", "", "Argument[-1]", "ReturnValue", "value", "generated"]
+      - ["org.apache.commons.io.serialization", "ValidatingObjectInputStream", true, "reject", "(Pattern)", "", "Argument[-1]", "ReturnValue", "value", "generated"]
+      - ["org.apache.commons.io.serialization", "ValidatingObjectInputStream", true, "reject", "(String[])", "", "Argument[-1]", "ReturnValue", "value", "generated"]
+      - ["org.apache.commons.io", "ByteOrderMark", true, "ByteOrderMark", "(String,int[])", "", "Argument[0]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io", "ByteOrderMark", true, "getCharsetName", "()", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io", "ByteOrderMark", true, "toString", "()", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io", "CopyUtils", true, "copy", "(InputStream,OutputStream)", "", "Argument[0]", "Argument[1]", "taint", "generated"]
+      - ["org.apache.commons.io", "CopyUtils", true, "copy", "(InputStream,Writer)", "", "Argument[0]", "Argument[1]", "taint", "generated"]
+      - ["org.apache.commons.io", "CopyUtils", true, "copy", "(InputStream,Writer,String)", "", "Argument[0]", "Argument[1]", "taint", "generated"]
+      - ["org.apache.commons.io", "CopyUtils", true, "copy", "(Reader,Writer)", "", "Argument[0]", "Argument[1]", "taint", "generated"]
+      - ["org.apache.commons.io", "CopyUtils", true, "copy", "(String,Writer)", "", "Argument[0]", "Argument[1]", "taint", "generated"]
+      - ["org.apache.commons.io", "CopyUtils", true, "copy", "(byte[],OutputStream)", "", "Argument[0]", "Argument[1]", "taint", "generated"]
+      - ["org.apache.commons.io", "CopyUtils", true, "copy", "(byte[],Writer)", "", "Argument[0]", "Argument[1]", "taint", "generated"]
+      - ["org.apache.commons.io", "CopyUtils", true, "copy", "(byte[],Writer,String)", "", "Argument[0]", "Argument[1]", "taint", "generated"]
+      - ["org.apache.commons.io", "DirectoryWalker$CancelException", true, "CancelException", "(File,int)", "", "Argument[0]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io", "DirectoryWalker$CancelException", true, "CancelException", "(String,File,int)", "", "Argument[1]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io", "DirectoryWalker$CancelException", true, "getFile", "()", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io", "FileCleaningTracker", true, "getDeleteFailures", "()", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io", "FileDeleteStrategy", true, "toString", "()", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io", "FileSystem", false, "normalizeSeparators", "(String)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io", "FileSystem", false, "toLegalFileName", "(String,char)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io", "FileUtils", true, "checksum", "(File,Checksum)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io", "FileUtils", true, "convertFileCollectionToFileArray", "(Collection)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io", "FileUtils", true, "delete", "(File)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io", "FileUtils", true, "getFile", "(File,String[])", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io", "FileUtils", true, "getFile", "(File,String[])", "", "Argument[1].ArrayElement", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io", "FileUtils", true, "getFile", "(String[])", "", "Argument[0].ArrayElement", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io", "FileUtils", true, "toURLs", "(File[])", "", "Argument[0].ArrayElement", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io", "FilenameUtils", true, "concat", "(String,String)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io", "FilenameUtils", true, "concat", "(String,String)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io", "FilenameUtils", true, "getBaseName", "(String)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io", "FilenameUtils", true, "getExtension", "(String)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io", "FilenameUtils", true, "getFullPath", "(String)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io", "FilenameUtils", true, "getFullPathNoEndSeparator", "(String)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io", "FilenameUtils", true, "getName", "(String)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io", "FilenameUtils", true, "getPath", "(String)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io", "FilenameUtils", true, "getPathNoEndSeparator", "(String)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io", "FilenameUtils", true, "getPrefix", "(String)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io", "FilenameUtils", true, "normalize", "(String)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io", "FilenameUtils", true, "normalize", "(String,boolean)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io", "FilenameUtils", true, "normalizeNoEndSeparator", "(String)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io", "FilenameUtils", true, "normalizeNoEndSeparator", "(String,boolean)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io", "FilenameUtils", true, "removeExtension", "(String)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io", "FilenameUtils", true, "separatorsToSystem", "(String)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io", "FilenameUtils", true, "separatorsToUnix", "(String)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io", "FilenameUtils", true, "separatorsToWindows", "(String)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io", "IOExceptionList", true, "IOExceptionList", "(List)", "", "Argument[0].Element", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io", "IOExceptionList", true, "IOExceptionList", "(String,List)", "", "Argument[1].Element", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io", "IOExceptionList", true, "getCause", "(int)", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io", "IOExceptionList", true, "getCauseList", "()", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io", "IOExceptionList", true, "getCauseList", "(Class)", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io", "IOUtils", true, "buffer", "(InputStream)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io", "IOUtils", true, "buffer", "(InputStream,int)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io", "IOUtils", true, "buffer", "(OutputStream)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io", "IOUtils", true, "buffer", "(OutputStream,int)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io", "IOUtils", true, "buffer", "(Reader)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io", "IOUtils", true, "buffer", "(Reader,int)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io", "IOUtils", true, "buffer", "(Writer)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io", "IOUtils", true, "buffer", "(Writer,int)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io", "IOUtils", true, "copy", "(InputStream,OutputStream)", "", "Argument[0]", "Argument[1]", "taint", "generated"]
+      - ["org.apache.commons.io", "IOUtils", true, "copy", "(InputStream,OutputStream,int)", "", "Argument[0]", "Argument[1]", "taint", "generated"]
+      - ["org.apache.commons.io", "IOUtils", true, "copy", "(InputStream,Writer)", "", "Argument[0]", "Argument[1]", "taint", "generated"]
+      - ["org.apache.commons.io", "IOUtils", true, "copy", "(InputStream,Writer,Charset)", "", "Argument[0]", "Argument[1]", "taint", "generated"]
+      - ["org.apache.commons.io", "IOUtils", true, "copy", "(InputStream,Writer,String)", "", "Argument[0]", "Argument[1]", "taint", "generated"]
+      - ["org.apache.commons.io", "IOUtils", true, "copy", "(Reader,Appendable)", "", "Argument[0]", "Argument[1]", "taint", "generated"]
+      - ["org.apache.commons.io", "IOUtils", true, "copy", "(Reader,Appendable,CharBuffer)", "", "Argument[0]", "Argument[1]", "taint", "generated"]
+      - ["org.apache.commons.io", "IOUtils", true, "copy", "(Reader,Appendable,CharBuffer)", "", "Argument[0]", "Argument[2]", "taint", "generated"]
+      - ["org.apache.commons.io", "IOUtils", true, "copy", "(Reader,Appendable,CharBuffer)", "", "Argument[2]", "Argument[0]", "taint", "generated"]
+      - ["org.apache.commons.io", "IOUtils", true, "copy", "(Reader,Appendable,CharBuffer)", "", "Argument[2]", "Argument[1]", "taint", "generated"]
+      - ["org.apache.commons.io", "IOUtils", true, "copy", "(Reader,Writer)", "", "Argument[0]", "Argument[1]", "taint", "generated"]
+      - ["org.apache.commons.io", "IOUtils", true, "copyLarge", "(InputStream,OutputStream)", "", "Argument[0]", "Argument[1]", "taint", "generated"]
+      - ["org.apache.commons.io", "IOUtils", true, "copyLarge", "(InputStream,OutputStream,byte[])", "", "Argument[0]", "Argument[1]", "taint", "generated"]
+      - ["org.apache.commons.io", "IOUtils", true, "copyLarge", "(InputStream,OutputStream,byte[])", "", "Argument[0]", "Argument[2]", "taint", "generated"]
+      - ["org.apache.commons.io", "IOUtils", true, "copyLarge", "(InputStream,OutputStream,byte[])", "", "Argument[2]", "Argument[0]", "taint", "generated"]
+      - ["org.apache.commons.io", "IOUtils", true, "copyLarge", "(InputStream,OutputStream,byte[])", "", "Argument[2]", "Argument[1]", "taint", "generated"]
+      - ["org.apache.commons.io", "IOUtils", true, "copyLarge", "(InputStream,OutputStream,long,long)", "", "Argument[0]", "Argument[1]", "taint", "generated"]
+      - ["org.apache.commons.io", "IOUtils", true, "copyLarge", "(InputStream,OutputStream,long,long,byte[])", "", "Argument[0]", "Argument[1]", "taint", "generated"]
+      - ["org.apache.commons.io", "IOUtils", true, "copyLarge", "(InputStream,OutputStream,long,long,byte[])", "", "Argument[0]", "Argument[4]", "taint", "generated"]
+      - ["org.apache.commons.io", "IOUtils", true, "copyLarge", "(InputStream,OutputStream,long,long,byte[])", "", "Argument[4]", "Argument[0]", "taint", "generated"]
+      - ["org.apache.commons.io", "IOUtils", true, "copyLarge", "(InputStream,OutputStream,long,long,byte[])", "", "Argument[4]", "Argument[1]", "taint", "generated"]
+      - ["org.apache.commons.io", "IOUtils", true, "copyLarge", "(Reader,Writer)", "", "Argument[0]", "Argument[1]", "taint", "generated"]
+      - ["org.apache.commons.io", "IOUtils", true, "copyLarge", "(Reader,Writer,char[])", "", "Argument[0]", "Argument[1]", "taint", "generated"]
+      - ["org.apache.commons.io", "IOUtils", true, "copyLarge", "(Reader,Writer,char[])", "", "Argument[0]", "Argument[2]", "taint", "generated"]
+      - ["org.apache.commons.io", "IOUtils", true, "copyLarge", "(Reader,Writer,char[])", "", "Argument[2]", "Argument[0]", "taint", "generated"]
+      - ["org.apache.commons.io", "IOUtils", true, "copyLarge", "(Reader,Writer,char[])", "", "Argument[2]", "Argument[1]", "taint", "generated"]
+      - ["org.apache.commons.io", "IOUtils", true, "copyLarge", "(Reader,Writer,long,long)", "", "Argument[0]", "Argument[1]", "taint", "generated"]
+      - ["org.apache.commons.io", "IOUtils", true, "copyLarge", "(Reader,Writer,long,long,char[])", "", "Argument[0]", "Argument[1]", "taint", "generated"]
+      - ["org.apache.commons.io", "IOUtils", true, "copyLarge", "(Reader,Writer,long,long,char[])", "", "Argument[0]", "Argument[4]", "taint", "generated"]
+      - ["org.apache.commons.io", "IOUtils", true, "copyLarge", "(Reader,Writer,long,long,char[])", "", "Argument[4]", "Argument[0]", "taint", "generated"]
+      - ["org.apache.commons.io", "IOUtils", true, "copyLarge", "(Reader,Writer,long,long,char[])", "", "Argument[4]", "Argument[1]", "taint", "generated"]
+      - ["org.apache.commons.io", "IOUtils", true, "lineIterator", "(InputStream,Charset)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io", "IOUtils", true, "lineIterator", "(InputStream,String)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io", "IOUtils", true, "lineIterator", "(Reader)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io", "IOUtils", true, "read", "(InputStream,byte[])", "", "Argument[0]", "Argument[1]", "taint", "generated"]
+      - ["org.apache.commons.io", "IOUtils", true, "read", "(InputStream,byte[])", "", "Argument[1]", "Argument[0]", "taint", "generated"]
+      - ["org.apache.commons.io", "IOUtils", true, "read", "(InputStream,byte[],int,int)", "", "Argument[0]", "Argument[1]", "taint", "generated"]
+      - ["org.apache.commons.io", "IOUtils", true, "read", "(InputStream,byte[],int,int)", "", "Argument[1]", "Argument[0]", "taint", "generated"]
+      - ["org.apache.commons.io", "IOUtils", true, "read", "(ReadableByteChannel,ByteBuffer)", "", "Argument[0]", "Argument[1]", "taint", "generated"]
+      - ["org.apache.commons.io", "IOUtils", true, "read", "(Reader,char[])", "", "Argument[0]", "Argument[1]", "taint", "generated"]
+      - ["org.apache.commons.io", "IOUtils", true, "read", "(Reader,char[])", "", "Argument[1]", "Argument[0]", "taint", "generated"]
+      - ["org.apache.commons.io", "IOUtils", true, "read", "(Reader,char[],int,int)", "", "Argument[0]", "Argument[1]", "taint", "generated"]
+      - ["org.apache.commons.io", "IOUtils", true, "read", "(Reader,char[],int,int)", "", "Argument[1]", "Argument[0]", "taint", "generated"]
+      - ["org.apache.commons.io", "IOUtils", true, "readFully", "(InputStream,byte[])", "", "Argument[0]", "Argument[1]", "taint", "generated"]
+      - ["org.apache.commons.io", "IOUtils", true, "readFully", "(InputStream,byte[])", "", "Argument[1]", "Argument[0]", "taint", "generated"]
+      - ["org.apache.commons.io", "IOUtils", true, "readFully", "(InputStream,byte[],int,int)", "", "Argument[0]", "Argument[1]", "taint", "generated"]
+      - ["org.apache.commons.io", "IOUtils", true, "readFully", "(InputStream,byte[],int,int)", "", "Argument[1]", "Argument[0]", "taint", "generated"]
+      - ["org.apache.commons.io", "IOUtils", true, "readFully", "(InputStream,int)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io", "IOUtils", true, "readFully", "(ReadableByteChannel,ByteBuffer)", "", "Argument[0]", "Argument[1]", "taint", "generated"]
+      - ["org.apache.commons.io", "IOUtils", true, "readFully", "(Reader,char[])", "", "Argument[0]", "Argument[1]", "taint", "generated"]
+      - ["org.apache.commons.io", "IOUtils", true, "readFully", "(Reader,char[])", "", "Argument[1]", "Argument[0]", "taint", "generated"]
+      - ["org.apache.commons.io", "IOUtils", true, "readFully", "(Reader,char[],int,int)", "", "Argument[0]", "Argument[1]", "taint", "generated"]
+      - ["org.apache.commons.io", "IOUtils", true, "readFully", "(Reader,char[],int,int)", "", "Argument[1]", "Argument[0]", "taint", "generated"]
+      - ["org.apache.commons.io", "IOUtils", true, "readLines", "(InputStream)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io", "IOUtils", true, "readLines", "(InputStream,Charset)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io", "IOUtils", true, "readLines", "(InputStream,String)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io", "IOUtils", true, "readLines", "(Reader)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io", "IOUtils", true, "toBufferedReader", "(Reader)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io", "IOUtils", true, "toBufferedReader", "(Reader,int)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io", "IOUtils", true, "toByteArray", "(InputStream,int)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io", "IOUtils", true, "toByteArray", "(InputStream,long)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io", "IOUtils", true, "toByteArray", "(String)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io", "IOUtils", true, "toCharArray", "(InputStream)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io", "IOUtils", true, "toCharArray", "(InputStream,Charset)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io", "IOUtils", true, "toCharArray", "(InputStream,String)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io", "IOUtils", true, "toCharArray", "(Reader)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io", "IOUtils", true, "toInputStream", "(CharSequence)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io", "IOUtils", true, "toInputStream", "(CharSequence,Charset)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io", "IOUtils", true, "toInputStream", "(CharSequence,String)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io", "IOUtils", true, "toInputStream", "(String)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io", "IOUtils", true, "toInputStream", "(String,Charset)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io", "IOUtils", true, "toInputStream", "(String,String)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io", "IOUtils", true, "toString", "(InputStream)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io", "IOUtils", true, "toString", "(InputStream,Charset)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io", "IOUtils", true, "toString", "(InputStream,String)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io", "IOUtils", true, "toString", "(Reader)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io", "IOUtils", true, "toString", "(byte[])", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io", "IOUtils", true, "toString", "(byte[],String)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io", "IOUtils", true, "write", "(CharSequence,Writer)", "", "Argument[0]", "Argument[1]", "taint", "generated"]
+      - ["org.apache.commons.io", "IOUtils", true, "write", "(String,Writer)", "", "Argument[0]", "Argument[1]", "taint", "generated"]
+      - ["org.apache.commons.io", "IOUtils", true, "write", "(StringBuffer,Writer)", "", "Argument[0]", "Argument[1]", "taint", "generated"]
+      - ["org.apache.commons.io", "IOUtils", true, "write", "(byte[],OutputStream)", "", "Argument[0]", "Argument[1]", "taint", "generated"]
+      - ["org.apache.commons.io", "IOUtils", true, "write", "(byte[],Writer)", "", "Argument[0]", "Argument[1]", "taint", "generated"]
+      - ["org.apache.commons.io", "IOUtils", true, "write", "(byte[],Writer,Charset)", "", "Argument[0]", "Argument[1]", "taint", "generated"]
+      - ["org.apache.commons.io", "IOUtils", true, "write", "(byte[],Writer,String)", "", "Argument[0]", "Argument[1]", "taint", "generated"]
+      - ["org.apache.commons.io", "IOUtils", true, "write", "(char[],Writer)", "", "Argument[0]", "Argument[1]", "taint", "generated"]
+      - ["org.apache.commons.io", "IOUtils", true, "writeChunked", "(byte[],OutputStream)", "", "Argument[0]", "Argument[1]", "taint", "generated"]
+      - ["org.apache.commons.io", "IOUtils", true, "writeChunked", "(char[],Writer)", "", "Argument[0]", "Argument[1]", "taint", "generated"]
+      - ["org.apache.commons.io", "IOUtils", true, "writeLines", "(Collection,String,OutputStream)", "", "Argument[1]", "Argument[2]", "taint", "generated"]
+      - ["org.apache.commons.io", "IOUtils", true, "writeLines", "(Collection,String,OutputStream,Charset)", "", "Argument[1]", "Argument[2]", "taint", "generated"]
+      - ["org.apache.commons.io", "IOUtils", true, "writeLines", "(Collection,String,OutputStream,String)", "", "Argument[1]", "Argument[2]", "taint", "generated"]
+      - ["org.apache.commons.io", "IOUtils", true, "writeLines", "(Collection,String,Writer)", "", "Argument[1]", "Argument[2]", "taint", "generated"]
+      - ["org.apache.commons.io", "IOUtils", true, "writer", "(Appendable)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io", "LineIterator", true, "LineIterator", "(Reader)", "", "Argument[0]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io", "LineIterator", true, "nextLine", "()", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io", "TaggedIOException", true, "TaggedIOException", "(IOException,Serializable)", "", "Argument[1]", "Argument[-1]", "taint", "generated"]
+      - ["org.apache.commons.io", "TaggedIOException", true, "getTag", "()", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io", "UncheckedIO", true, "apply", "(IOFunction,Object)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["org.apache.commons.io", "UncheckedIO", true, "apply", "(IOTriFunction,Object,Object,Object)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extNegativeSummaryModel
+    data:
+      - ["org.apache.commons.io.charset", "CharsetDecoders", "CharsetDecoders", "()", "generated"]
+      - ["org.apache.commons.io.charset", "CharsetEncoders", "CharsetEncoders", "()", "generated"]
+      - ["org.apache.commons.io.comparator", "DefaultFileComparator", "DefaultFileComparator", "()", "generated"]
+      - ["org.apache.commons.io.comparator", "DirectoryFileComparator", "DirectoryFileComparator", "()", "generated"]
+      - ["org.apache.commons.io.comparator", "ExtensionFileComparator", "ExtensionFileComparator", "()", "generated"]
+      - ["org.apache.commons.io.comparator", "ExtensionFileComparator", "ExtensionFileComparator", "(IOCase)", "generated"]
+      - ["org.apache.commons.io.comparator", "ExtensionFileComparator", "toString", "()", "generated"]
+      - ["org.apache.commons.io.comparator", "LastModifiedFileComparator", "LastModifiedFileComparator", "()", "generated"]
+      - ["org.apache.commons.io.comparator", "NameFileComparator", "NameFileComparator", "()", "generated"]
+      - ["org.apache.commons.io.comparator", "NameFileComparator", "NameFileComparator", "(IOCase)", "generated"]
+      - ["org.apache.commons.io.comparator", "NameFileComparator", "toString", "()", "generated"]
+      - ["org.apache.commons.io.comparator", "PathFileComparator", "PathFileComparator", "()", "generated"]
+      - ["org.apache.commons.io.comparator", "PathFileComparator", "PathFileComparator", "(IOCase)", "generated"]
+      - ["org.apache.commons.io.comparator", "PathFileComparator", "toString", "()", "generated"]
+      - ["org.apache.commons.io.comparator", "SizeFileComparator", "SizeFileComparator", "()", "generated"]
+      - ["org.apache.commons.io.comparator", "SizeFileComparator", "SizeFileComparator", "(boolean)", "generated"]
+      - ["org.apache.commons.io.comparator", "SizeFileComparator", "toString", "()", "generated"]
+      - ["org.apache.commons.io.file.attribute", "FileTimes", "minusMillis", "(FileTime,long)", "generated"]
+      - ["org.apache.commons.io.file.attribute", "FileTimes", "minusNanos", "(FileTime,long)", "generated"]
+      - ["org.apache.commons.io.file.attribute", "FileTimes", "minusSeconds", "(FileTime,long)", "generated"]
+      - ["org.apache.commons.io.file.attribute", "FileTimes", "now", "()", "generated"]
+      - ["org.apache.commons.io.file.attribute", "FileTimes", "ntfsTimeToDate", "(long)", "generated"]
+      - ["org.apache.commons.io.file.attribute", "FileTimes", "ntfsTimeToFileTime", "(long)", "generated"]
+      - ["org.apache.commons.io.file.attribute", "FileTimes", "plusMillis", "(FileTime,long)", "generated"]
+      - ["org.apache.commons.io.file.attribute", "FileTimes", "plusNanos", "(FileTime,long)", "generated"]
+      - ["org.apache.commons.io.file.attribute", "FileTimes", "plusSeconds", "(FileTime,long)", "generated"]
+      - ["org.apache.commons.io.file.attribute", "FileTimes", "setLastModifiedTime", "(Path)", "generated"]
+      - ["org.apache.commons.io.file.attribute", "FileTimes", "toDate", "(FileTime)", "generated"]
+      - ["org.apache.commons.io.file.attribute", "FileTimes", "toFileTime", "(Date)", "generated"]
+      - ["org.apache.commons.io.file.attribute", "FileTimes", "toNtfsTime", "(Date)", "generated"]
+      - ["org.apache.commons.io.file.attribute", "FileTimes", "toNtfsTime", "(FileTime)", "generated"]
+      - ["org.apache.commons.io.file.spi", "FileSystemProviders", "getFileSystemProvider", "(Path)", "generated"]
+      - ["org.apache.commons.io.file.spi", "FileSystemProviders", "installed", "()", "generated"]
+      - ["org.apache.commons.io.file", "AccumulatorPathVisitor", "AccumulatorPathVisitor", "()", "generated"]
+      - ["org.apache.commons.io.file", "AccumulatorPathVisitor", "relativizeDirectories", "(Path,boolean,Comparator)", "generated"]
+      - ["org.apache.commons.io.file", "AccumulatorPathVisitor", "relativizeFiles", "(Path,boolean,Comparator)", "generated"]
+      - ["org.apache.commons.io.file", "AccumulatorPathVisitor", "withBigIntegerCounters", "()", "generated"]
+      - ["org.apache.commons.io.file", "AccumulatorPathVisitor", "withLongCounters", "()", "generated"]
+      - ["org.apache.commons.io.file", "CleaningPathVisitor", "withBigIntegerCounters", "()", "generated"]
+      - ["org.apache.commons.io.file", "CleaningPathVisitor", "withLongCounters", "()", "generated"]
+      - ["org.apache.commons.io.file", "Counters$Counter", "add", "(long)", "generated"]
+      - ["org.apache.commons.io.file", "Counters$Counter", "get", "()", "generated"]
+      - ["org.apache.commons.io.file", "Counters$Counter", "getBigInteger", "()", "generated"]
+      - ["org.apache.commons.io.file", "Counters$Counter", "getLong", "()", "generated"]
+      - ["org.apache.commons.io.file", "Counters$Counter", "increment", "()", "generated"]
+      - ["org.apache.commons.io.file", "Counters$Counter", "reset", "()", "generated"]
+      - ["org.apache.commons.io.file", "Counters$PathCounters", "getByteCounter", "()", "generated"]
+      - ["org.apache.commons.io.file", "Counters$PathCounters", "getDirectoryCounter", "()", "generated"]
+      - ["org.apache.commons.io.file", "Counters$PathCounters", "getFileCounter", "()", "generated"]
+      - ["org.apache.commons.io.file", "Counters$PathCounters", "reset", "()", "generated"]
+      - ["org.apache.commons.io.file", "Counters", "Counters", "()", "generated"]
+      - ["org.apache.commons.io.file", "Counters", "bigIntegerCounter", "()", "generated"]
+      - ["org.apache.commons.io.file", "Counters", "bigIntegerPathCounters", "()", "generated"]
+      - ["org.apache.commons.io.file", "Counters", "longCounter", "()", "generated"]
+      - ["org.apache.commons.io.file", "Counters", "longPathCounters", "()", "generated"]
+      - ["org.apache.commons.io.file", "Counters", "noopCounter", "()", "generated"]
+      - ["org.apache.commons.io.file", "Counters", "noopPathCounters", "()", "generated"]
+      - ["org.apache.commons.io.file", "CountingPathVisitor", "toString", "()", "generated"]
+      - ["org.apache.commons.io.file", "CountingPathVisitor", "withBigIntegerCounters", "()", "generated"]
+      - ["org.apache.commons.io.file", "CountingPathVisitor", "withLongCounters", "()", "generated"]
+      - ["org.apache.commons.io.file", "DeletingPathVisitor", "withBigIntegerCounters", "()", "generated"]
+      - ["org.apache.commons.io.file", "DeletingPathVisitor", "withLongCounters", "()", "generated"]
+      - ["org.apache.commons.io.file", "NoopPathVisitor", "NoopPathVisitor", "()", "generated"]
+      - ["org.apache.commons.io.file", "PathFilter", "accept", "(Path,BasicFileAttributes)", "generated"]
+      - ["org.apache.commons.io.file", "PathUtils", "cleanDirectory", "(Path)", "generated"]
+      - ["org.apache.commons.io.file", "PathUtils", "cleanDirectory", "(Path,DeleteOption[])", "generated"]
+      - ["org.apache.commons.io.file", "PathUtils", "copyDirectory", "(Path,Path,CopyOption[])", "generated"]
+      - ["org.apache.commons.io.file", "PathUtils", "copyFileToDirectory", "(Path,Path,CopyOption[])", "generated"]
+      - ["org.apache.commons.io.file", "PathUtils", "countDirectory", "(Path)", "generated"]
+      - ["org.apache.commons.io.file", "PathUtils", "countDirectoryAsBigInteger", "(Path)", "generated"]
+      - ["org.apache.commons.io.file", "PathUtils", "createParentDirectories", "(Path,FileAttribute[])", "generated"]
+      - ["org.apache.commons.io.file", "PathUtils", "createParentDirectories", "(Path,LinkOption,FileAttribute[])", "generated"]
+      - ["org.apache.commons.io.file", "PathUtils", "current", "()", "generated"]
+      - ["org.apache.commons.io.file", "PathUtils", "delete", "(Path)", "generated"]
+      - ["org.apache.commons.io.file", "PathUtils", "delete", "(Path,DeleteOption[])", "generated"]
+      - ["org.apache.commons.io.file", "PathUtils", "delete", "(Path,LinkOption[],DeleteOption[])", "generated"]
+      - ["org.apache.commons.io.file", "PathUtils", "deleteDirectory", "(Path)", "generated"]
+      - ["org.apache.commons.io.file", "PathUtils", "deleteDirectory", "(Path,DeleteOption[])", "generated"]
+      - ["org.apache.commons.io.file", "PathUtils", "deleteDirectory", "(Path,LinkOption[],DeleteOption[])", "generated"]
+      - ["org.apache.commons.io.file", "PathUtils", "deleteFile", "(Path)", "generated"]
+      - ["org.apache.commons.io.file", "PathUtils", "deleteFile", "(Path,DeleteOption[])", "generated"]
+      - ["org.apache.commons.io.file", "PathUtils", "deleteFile", "(Path,LinkOption[],DeleteOption[])", "generated"]
+      - ["org.apache.commons.io.file", "PathUtils", "directoryAndFileContentEquals", "(Path,Path)", "generated"]
+      - ["org.apache.commons.io.file", "PathUtils", "directoryAndFileContentEquals", "(Path,Path,LinkOption[],OpenOption[],FileVisitOption[])", "generated"]
+      - ["org.apache.commons.io.file", "PathUtils", "directoryContentEquals", "(Path,Path)", "generated"]
+      - ["org.apache.commons.io.file", "PathUtils", "directoryContentEquals", "(Path,Path,int,LinkOption[],FileVisitOption[])", "generated"]
+      - ["org.apache.commons.io.file", "PathUtils", "fileContentEquals", "(Path,Path)", "generated"]
+      - ["org.apache.commons.io.file", "PathUtils", "fileContentEquals", "(Path,Path,LinkOption[],OpenOption[])", "generated"]
+      - ["org.apache.commons.io.file", "PathUtils", "filter", "(PathFilter,Path[])", "generated"]
+      - ["org.apache.commons.io.file", "PathUtils", "getAclEntryList", "(Path)", "generated"]
+      - ["org.apache.commons.io.file", "PathUtils", "getAclFileAttributeView", "(Path,LinkOption[])", "generated"]
+      - ["org.apache.commons.io.file", "PathUtils", "getDosFileAttributeView", "(Path,LinkOption[])", "generated"]
+      - ["org.apache.commons.io.file", "PathUtils", "getPosixFileAttributeView", "(Path,LinkOption[])", "generated"]
+      - ["org.apache.commons.io.file", "PathUtils", "getTempDirectory", "()", "generated"]
+      - ["org.apache.commons.io.file", "PathUtils", "isDirectory", "(Path,LinkOption[])", "generated"]
+      - ["org.apache.commons.io.file", "PathUtils", "isEmpty", "(Path)", "generated"]
+      - ["org.apache.commons.io.file", "PathUtils", "isEmptyDirectory", "(Path)", "generated"]
+      - ["org.apache.commons.io.file", "PathUtils", "isEmptyFile", "(Path)", "generated"]
+      - ["org.apache.commons.io.file", "PathUtils", "isNewer", "(Path,ChronoZonedDateTime,LinkOption[])", "generated"]
+      - ["org.apache.commons.io.file", "PathUtils", "isNewer", "(Path,FileTime,LinkOption[])", "generated"]
+      - ["org.apache.commons.io.file", "PathUtils", "isNewer", "(Path,Instant,LinkOption[])", "generated"]
+      - ["org.apache.commons.io.file", "PathUtils", "isNewer", "(Path,Path)", "generated"]
+      - ["org.apache.commons.io.file", "PathUtils", "isNewer", "(Path,long,LinkOption[])", "generated"]
+      - ["org.apache.commons.io.file", "PathUtils", "isOlder", "(Path,FileTime,LinkOption[])", "generated"]
+      - ["org.apache.commons.io.file", "PathUtils", "isOlder", "(Path,Instant,LinkOption[])", "generated"]
+      - ["org.apache.commons.io.file", "PathUtils", "isOlder", "(Path,Path)", "generated"]
+      - ["org.apache.commons.io.file", "PathUtils", "isOlder", "(Path,long,LinkOption[])", "generated"]
+      - ["org.apache.commons.io.file", "PathUtils", "isPosix", "(Path,LinkOption[])", "generated"]
+      - ["org.apache.commons.io.file", "PathUtils", "isRegularFile", "(Path,LinkOption[])", "generated"]
+      - ["org.apache.commons.io.file", "PathUtils", "newDirectoryStream", "(Path,PathFilter)", "generated"]
+      - ["org.apache.commons.io.file", "PathUtils", "newOutputStream", "(Path,boolean)", "generated"]
+      - ["org.apache.commons.io.file", "PathUtils", "noFollowLinkOptionArray", "()", "generated"]
+      - ["org.apache.commons.io.file", "PathUtils", "readAttributes", "(Path,Class,LinkOption[])", "generated"]
+      - ["org.apache.commons.io.file", "PathUtils", "readBasicFileAttributes", "(Path)", "generated"]
+      - ["org.apache.commons.io.file", "PathUtils", "readBasicFileAttributes", "(Path,LinkOption[])", "generated"]
+      - ["org.apache.commons.io.file", "PathUtils", "readBasicFileAttributesUnchecked", "(Path)", "generated"]
+      - ["org.apache.commons.io.file", "PathUtils", "readDosFileAttributes", "(Path,LinkOption[])", "generated"]
+      - ["org.apache.commons.io.file", "PathUtils", "readOsFileAttributes", "(Path,LinkOption[])", "generated"]
+      - ["org.apache.commons.io.file", "PathUtils", "readPosixFileAttributes", "(Path,LinkOption[])", "generated"]
+      - ["org.apache.commons.io.file", "PathUtils", "readString", "(Path,Charset)", "generated"]
+      - ["org.apache.commons.io.file", "PathUtils", "setLastModifiedTime", "(Path,Path)", "generated"]
+      - ["org.apache.commons.io.file", "PathUtils", "sizeOf", "(Path)", "generated"]
+      - ["org.apache.commons.io.file", "PathUtils", "sizeOfAsBigInteger", "(Path)", "generated"]
+      - ["org.apache.commons.io.file", "PathUtils", "sizeOfDirectory", "(Path)", "generated"]
+      - ["org.apache.commons.io.file", "PathUtils", "sizeOfDirectoryAsBigInteger", "(Path)", "generated"]
+      - ["org.apache.commons.io.file", "PathUtils", "waitFor", "(Path,Duration,LinkOption[])", "generated"]
+      - ["org.apache.commons.io.file", "PathUtils", "walk", "(Path,PathFilter,int,boolean,FileVisitOption[])", "generated"]
+      - ["org.apache.commons.io.file", "StandardDeleteOption", "overrideReadOnly", "(DeleteOption[])", "generated"]
+      - ["org.apache.commons.io.filefilter", "AbstractFileFilter", "AbstractFileFilter", "()", "generated"]
+      - ["org.apache.commons.io.filefilter", "AbstractFileFilter", "toString", "()", "generated"]
+      - ["org.apache.commons.io.filefilter", "AgeFileFilter", "AgeFileFilter", "(Date)", "generated"]
+      - ["org.apache.commons.io.filefilter", "AgeFileFilter", "AgeFileFilter", "(Date,boolean)", "generated"]
+      - ["org.apache.commons.io.filefilter", "AgeFileFilter", "AgeFileFilter", "(File)", "generated"]
+      - ["org.apache.commons.io.filefilter", "AgeFileFilter", "AgeFileFilter", "(File,boolean)", "generated"]
+      - ["org.apache.commons.io.filefilter", "AgeFileFilter", "AgeFileFilter", "(long)", "generated"]
+      - ["org.apache.commons.io.filefilter", "AgeFileFilter", "AgeFileFilter", "(long,boolean)", "generated"]
+      - ["org.apache.commons.io.filefilter", "AndFileFilter", "AndFileFilter", "()", "generated"]
+      - ["org.apache.commons.io.filefilter", "ConditionalFileFilter", "addFileFilter", "(IOFileFilter)", "generated"]
+      - ["org.apache.commons.io.filefilter", "ConditionalFileFilter", "getFileFilters", "()", "generated"]
+      - ["org.apache.commons.io.filefilter", "ConditionalFileFilter", "removeFileFilter", "(IOFileFilter)", "generated"]
+      - ["org.apache.commons.io.filefilter", "ConditionalFileFilter", "setFileFilters", "(List)", "generated"]
+      - ["org.apache.commons.io.filefilter", "FalseFileFilter", "toString", "()", "generated"]
+      - ["org.apache.commons.io.filefilter", "FileFilterUtils", "FileFilterUtils", "()", "generated"]
+      - ["org.apache.commons.io.filefilter", "FileFilterUtils", "ageFileFilter", "(Date)", "generated"]
+      - ["org.apache.commons.io.filefilter", "FileFilterUtils", "ageFileFilter", "(Date,boolean)", "generated"]
+      - ["org.apache.commons.io.filefilter", "FileFilterUtils", "ageFileFilter", "(File)", "generated"]
+      - ["org.apache.commons.io.filefilter", "FileFilterUtils", "ageFileFilter", "(File,boolean)", "generated"]
+      - ["org.apache.commons.io.filefilter", "FileFilterUtils", "ageFileFilter", "(long)", "generated"]
+      - ["org.apache.commons.io.filefilter", "FileFilterUtils", "ageFileFilter", "(long,boolean)", "generated"]
+      - ["org.apache.commons.io.filefilter", "FileFilterUtils", "directoryFileFilter", "()", "generated"]
+      - ["org.apache.commons.io.filefilter", "FileFilterUtils", "falseFileFilter", "()", "generated"]
+      - ["org.apache.commons.io.filefilter", "FileFilterUtils", "fileFileFilter", "()", "generated"]
+      - ["org.apache.commons.io.filefilter", "FileFilterUtils", "filter", "(IOFileFilter,File[])", "generated"]
+      - ["org.apache.commons.io.filefilter", "FileFilterUtils", "filter", "(IOFileFilter,Iterable)", "generated"]
+      - ["org.apache.commons.io.filefilter", "FileFilterUtils", "filterList", "(IOFileFilter,File[])", "generated"]
+      - ["org.apache.commons.io.filefilter", "FileFilterUtils", "filterList", "(IOFileFilter,Iterable)", "generated"]
+      - ["org.apache.commons.io.filefilter", "FileFilterUtils", "filterSet", "(IOFileFilter,File[])", "generated"]
+      - ["org.apache.commons.io.filefilter", "FileFilterUtils", "filterSet", "(IOFileFilter,Iterable)", "generated"]
+      - ["org.apache.commons.io.filefilter", "FileFilterUtils", "sizeFileFilter", "(long)", "generated"]
+      - ["org.apache.commons.io.filefilter", "FileFilterUtils", "sizeFileFilter", "(long,boolean)", "generated"]
+      - ["org.apache.commons.io.filefilter", "FileFilterUtils", "sizeRangeFileFilter", "(long,long)", "generated"]
+      - ["org.apache.commons.io.filefilter", "FileFilterUtils", "trueFileFilter", "()", "generated"]
+      - ["org.apache.commons.io.filefilter", "IOFileFilter", "and", "(IOFileFilter)", "generated"]
+      - ["org.apache.commons.io.filefilter", "IOFileFilter", "negate", "()", "generated"]
+      - ["org.apache.commons.io.filefilter", "IOFileFilter", "or", "(IOFileFilter)", "generated"]
+      - ["org.apache.commons.io.filefilter", "OrFileFilter", "OrFileFilter", "()", "generated"]
+      - ["org.apache.commons.io.filefilter", "RegexFileFilter", "RegexFileFilter", "(String)", "generated"]
+      - ["org.apache.commons.io.filefilter", "RegexFileFilter", "RegexFileFilter", "(String,IOCase)", "generated"]
+      - ["org.apache.commons.io.filefilter", "RegexFileFilter", "RegexFileFilter", "(String,int)", "generated"]
+      - ["org.apache.commons.io.filefilter", "SizeFileFilter", "SizeFileFilter", "(long)", "generated"]
+      - ["org.apache.commons.io.filefilter", "SizeFileFilter", "SizeFileFilter", "(long,boolean)", "generated"]
+      - ["org.apache.commons.io.filefilter", "SizeFileFilter", "toString", "()", "generated"]
+      - ["org.apache.commons.io.filefilter", "SymbolicLinkFileFilter", "SymbolicLinkFileFilter", "(FileVisitResult,FileVisitResult)", "generated"]
+      - ["org.apache.commons.io.filefilter", "TrueFileFilter", "toString", "()", "generated"]
+      - ["org.apache.commons.io.function", "IOBiConsumer", "accept", "(Object,Object)", "generated"]
+      - ["org.apache.commons.io.function", "IOBiConsumer", "andThen", "(IOBiConsumer)", "generated"]
+      - ["org.apache.commons.io.function", "IOBiFunction", "andThen", "(Function)", "generated"]
+      - ["org.apache.commons.io.function", "IOBiFunction", "andThen", "(IOFunction)", "generated"]
+      - ["org.apache.commons.io.function", "IOBiFunction", "apply", "(Object,Object)", "generated"]
+      - ["org.apache.commons.io.function", "IOConsumer", "accept", "(Object)", "generated"]
+      - ["org.apache.commons.io.function", "IOConsumer", "andThen", "(IOConsumer)", "generated"]
+      - ["org.apache.commons.io.function", "IOConsumer", "forEach", "(Object[],IOConsumer)", "generated"]
+      - ["org.apache.commons.io.function", "IOConsumer", "forEachIndexed", "(Stream,IOConsumer)", "generated"]
+      - ["org.apache.commons.io.function", "IOConsumer", "noop", "()", "generated"]
+      - ["org.apache.commons.io.function", "IOFunction", "andThen", "(Consumer)", "generated"]
+      - ["org.apache.commons.io.function", "IOFunction", "andThen", "(Function)", "generated"]
+      - ["org.apache.commons.io.function", "IOFunction", "andThen", "(IOConsumer)", "generated"]
+      - ["org.apache.commons.io.function", "IOFunction", "andThen", "(IOFunction)", "generated"]
+      - ["org.apache.commons.io.function", "IOFunction", "apply", "(Object)", "generated"]
+      - ["org.apache.commons.io.function", "IOFunction", "compose", "(Function)", "generated"]
+      - ["org.apache.commons.io.function", "IOFunction", "compose", "(IOFunction)", "generated"]
+      - ["org.apache.commons.io.function", "IOFunction", "compose", "(IOSupplier)", "generated"]
+      - ["org.apache.commons.io.function", "IOFunction", "compose", "(Supplier)", "generated"]
+      - ["org.apache.commons.io.function", "IOFunction", "identity", "()", "generated"]
+      - ["org.apache.commons.io.function", "IORunnable", "run", "()", "generated"]
+      - ["org.apache.commons.io.function", "IOSupplier", "get", "()", "generated"]
+      - ["org.apache.commons.io.function", "IOTriFunction", "andThen", "(Function)", "generated"]
+      - ["org.apache.commons.io.function", "IOTriFunction", "andThen", "(IOFunction)", "generated"]
+      - ["org.apache.commons.io.function", "IOTriFunction", "apply", "(Object,Object,Object)", "generated"]
+      - ["org.apache.commons.io.input.buffer", "CircularByteBuffer", "CircularByteBuffer", "()", "generated"]
+      - ["org.apache.commons.io.input.buffer", "CircularByteBuffer", "CircularByteBuffer", "(int)", "generated"]
+      - ["org.apache.commons.io.input.buffer", "CircularByteBuffer", "add", "(byte)", "generated"]
+      - ["org.apache.commons.io.input.buffer", "CircularByteBuffer", "add", "(byte[],int,int)", "generated"]
+      - ["org.apache.commons.io.input.buffer", "CircularByteBuffer", "clear", "()", "generated"]
+      - ["org.apache.commons.io.input.buffer", "CircularByteBuffer", "getCurrentNumberOfBytes", "()", "generated"]
+      - ["org.apache.commons.io.input.buffer", "CircularByteBuffer", "getSpace", "()", "generated"]
+      - ["org.apache.commons.io.input.buffer", "CircularByteBuffer", "hasBytes", "()", "generated"]
+      - ["org.apache.commons.io.input.buffer", "CircularByteBuffer", "hasSpace", "()", "generated"]
+      - ["org.apache.commons.io.input.buffer", "CircularByteBuffer", "hasSpace", "(int)", "generated"]
+      - ["org.apache.commons.io.input.buffer", "CircularByteBuffer", "peek", "(byte[],int,int)", "generated"]
+      - ["org.apache.commons.io.input.buffer", "CircularByteBuffer", "read", "()", "generated"]
+      - ["org.apache.commons.io.input.buffer", "CircularByteBuffer", "read", "(byte[],int,int)", "generated"]
+      - ["org.apache.commons.io.input.buffer", "PeekableInputStream", "peek", "(byte[])", "generated"]
+      - ["org.apache.commons.io.input.buffer", "PeekableInputStream", "peek", "(byte[],int,int)", "generated"]
+      - ["org.apache.commons.io.input", "AutoCloseInputStream", "AutoCloseInputStream", "(InputStream)", "generated"]
+      - ["org.apache.commons.io.input", "BOMInputStream", "BOMInputStream", "(InputStream)", "generated"]
+      - ["org.apache.commons.io.input", "BOMInputStream", "BOMInputStream", "(InputStream,boolean)", "generated"]
+      - ["org.apache.commons.io.input", "BOMInputStream", "hasBOM", "()", "generated"]
+      - ["org.apache.commons.io.input", "BOMInputStream", "hasBOM", "(ByteOrderMark)", "generated"]
+      - ["org.apache.commons.io.input", "BoundedInputStream", "isPropagateClose", "()", "generated"]
+      - ["org.apache.commons.io.input", "BoundedInputStream", "setPropagateClose", "(boolean)", "generated"]
+      - ["org.apache.commons.io.input", "BoundedInputStream", "toString", "()", "generated"]
+      - ["org.apache.commons.io.input", "BrokenInputStream", "BrokenInputStream", "()", "generated"]
+      - ["org.apache.commons.io.input", "BrokenInputStream", "BrokenInputStream", "(IOException)", "generated"]
+      - ["org.apache.commons.io.input", "BrokenReader", "BrokenReader", "()", "generated"]
+      - ["org.apache.commons.io.input", "BrokenReader", "BrokenReader", "(IOException)", "generated"]
+      - ["org.apache.commons.io.input", "BufferedFileChannelInputStream", "BufferedFileChannelInputStream", "(File)", "generated"]
+      - ["org.apache.commons.io.input", "BufferedFileChannelInputStream", "BufferedFileChannelInputStream", "(File,int)", "generated"]
+      - ["org.apache.commons.io.input", "BufferedFileChannelInputStream", "BufferedFileChannelInputStream", "(Path)", "generated"]
+      - ["org.apache.commons.io.input", "BufferedFileChannelInputStream", "BufferedFileChannelInputStream", "(Path,int)", "generated"]
+      - ["org.apache.commons.io.input", "CharSequenceInputStream", "CharSequenceInputStream", "(CharSequence,Charset)", "generated"]
+      - ["org.apache.commons.io.input", "CharSequenceInputStream", "CharSequenceInputStream", "(CharSequence,Charset,int)", "generated"]
+      - ["org.apache.commons.io.input", "CharSequenceInputStream", "CharSequenceInputStream", "(CharSequence,String)", "generated"]
+      - ["org.apache.commons.io.input", "CharSequenceInputStream", "CharSequenceInputStream", "(CharSequence,String,int)", "generated"]
+      - ["org.apache.commons.io.input", "CharacterFilterReader", "CharacterFilterReader", "(Reader,int)", "generated"]
+      - ["org.apache.commons.io.input", "CharacterSetFilterReader", "CharacterSetFilterReader", "(Reader,Integer[])", "generated"]
+      - ["org.apache.commons.io.input", "CharacterSetFilterReader", "CharacterSetFilterReader", "(Reader,Set)", "generated"]
+      - ["org.apache.commons.io.input", "CloseShieldInputStream", "CloseShieldInputStream", "(InputStream)", "generated"]
+      - ["org.apache.commons.io.input", "CloseShieldReader", "CloseShieldReader", "(Reader)", "generated"]
+      - ["org.apache.commons.io.input", "CloseShieldReader", "wrap", "(Reader)", "generated"]
+      - ["org.apache.commons.io.input", "ClosedInputStream", "ClosedInputStream", "()", "generated"]
+      - ["org.apache.commons.io.input", "ClosedReader", "ClosedReader", "()", "generated"]
+      - ["org.apache.commons.io.input", "CountingInputStream", "CountingInputStream", "(InputStream)", "generated"]
+      - ["org.apache.commons.io.input", "CountingInputStream", "getByteCount", "()", "generated"]
+      - ["org.apache.commons.io.input", "CountingInputStream", "getCount", "()", "generated"]
+      - ["org.apache.commons.io.input", "CountingInputStream", "resetByteCount", "()", "generated"]
+      - ["org.apache.commons.io.input", "CountingInputStream", "resetCount", "()", "generated"]
+      - ["org.apache.commons.io.input", "DemuxInputStream", "DemuxInputStream", "()", "generated"]
+      - ["org.apache.commons.io.input", "DemuxInputStream", "bindStream", "(InputStream)", "generated"]
+      - ["org.apache.commons.io.input", "MarkShieldInputStream", "MarkShieldInputStream", "(InputStream)", "generated"]
+      - ["org.apache.commons.io.input", "MemoryMappedFileInputStream", "MemoryMappedFileInputStream", "(Path)", "generated"]
+      - ["org.apache.commons.io.input", "MemoryMappedFileInputStream", "MemoryMappedFileInputStream", "(Path,int)", "generated"]
+      - ["org.apache.commons.io.input", "MessageDigestCalculatingInputStream", "MessageDigestCalculatingInputStream", "(InputStream)", "generated"]
+      - ["org.apache.commons.io.input", "MessageDigestCalculatingInputStream", "MessageDigestCalculatingInputStream", "(InputStream,String)", "generated"]
+      - ["org.apache.commons.io.input", "NullInputStream", "NullInputStream", "()", "generated"]
+      - ["org.apache.commons.io.input", "NullInputStream", "NullInputStream", "(long)", "generated"]
+      - ["org.apache.commons.io.input", "NullInputStream", "NullInputStream", "(long,boolean,boolean)", "generated"]
+      - ["org.apache.commons.io.input", "NullInputStream", "getPosition", "()", "generated"]
+      - ["org.apache.commons.io.input", "NullInputStream", "getSize", "()", "generated"]
+      - ["org.apache.commons.io.input", "NullReader", "NullReader", "()", "generated"]
+      - ["org.apache.commons.io.input", "NullReader", "NullReader", "(long)", "generated"]
+      - ["org.apache.commons.io.input", "NullReader", "NullReader", "(long,boolean,boolean)", "generated"]
+      - ["org.apache.commons.io.input", "NullReader", "getPosition", "()", "generated"]
+      - ["org.apache.commons.io.input", "NullReader", "getSize", "()", "generated"]
+      - ["org.apache.commons.io.input", "ObservableInputStream$Observer", "Observer", "()", "generated"]
+      - ["org.apache.commons.io.input", "ObservableInputStream$Observer", "closed", "()", "generated"]
+      - ["org.apache.commons.io.input", "ObservableInputStream$Observer", "data", "(byte[],int,int)", "generated"]
+      - ["org.apache.commons.io.input", "ObservableInputStream$Observer", "data", "(int)", "generated"]
+      - ["org.apache.commons.io.input", "ObservableInputStream$Observer", "error", "(IOException)", "generated"]
+      - ["org.apache.commons.io.input", "ObservableInputStream$Observer", "finished", "()", "generated"]
+      - ["org.apache.commons.io.input", "ObservableInputStream", "ObservableInputStream", "(InputStream)", "generated"]
+      - ["org.apache.commons.io.input", "ObservableInputStream", "consume", "()", "generated"]
+      - ["org.apache.commons.io.input", "ObservableInputStream", "remove", "(Observer)", "generated"]
+      - ["org.apache.commons.io.input", "ObservableInputStream", "removeAllObservers", "()", "generated"]
+      - ["org.apache.commons.io.input", "ProxyInputStream", "ProxyInputStream", "(InputStream)", "generated"]
+      - ["org.apache.commons.io.input", "ProxyReader", "ProxyReader", "(Reader)", "generated"]
+      - ["org.apache.commons.io.input", "QueueInputStream", "QueueInputStream", "()", "generated"]
+      - ["org.apache.commons.io.input", "QueueInputStream", "QueueInputStream", "(BlockingQueue)", "generated"]
+      - ["org.apache.commons.io.input", "QueueInputStream", "newQueueOutputStream", "()", "generated"]
+      - ["org.apache.commons.io.input", "RandomAccessFileInputStream", "availableLong", "()", "generated"]
+      - ["org.apache.commons.io.input", "RandomAccessFileInputStream", "isCloseOnClose", "()", "generated"]
+      - ["org.apache.commons.io.input", "ReversedLinesFileReader", "ReversedLinesFileReader", "(File)", "generated"]
+      - ["org.apache.commons.io.input", "ReversedLinesFileReader", "ReversedLinesFileReader", "(File,Charset)", "generated"]
+      - ["org.apache.commons.io.input", "ReversedLinesFileReader", "ReversedLinesFileReader", "(File,int,Charset)", "generated"]
+      - ["org.apache.commons.io.input", "ReversedLinesFileReader", "ReversedLinesFileReader", "(File,int,String)", "generated"]
+      - ["org.apache.commons.io.input", "ReversedLinesFileReader", "ReversedLinesFileReader", "(Path,Charset)", "generated"]
+      - ["org.apache.commons.io.input", "ReversedLinesFileReader", "ReversedLinesFileReader", "(Path,int,Charset)", "generated"]
+      - ["org.apache.commons.io.input", "ReversedLinesFileReader", "ReversedLinesFileReader", "(Path,int,String)", "generated"]
+      - ["org.apache.commons.io.input", "SwappedDataInputStream", "SwappedDataInputStream", "(InputStream)", "generated"]
+      - ["org.apache.commons.io.input", "TaggedInputStream", "TaggedInputStream", "(InputStream)", "generated"]
+      - ["org.apache.commons.io.input", "TaggedInputStream", "isCauseOf", "(Throwable)", "generated"]
+      - ["org.apache.commons.io.input", "TaggedInputStream", "throwIfCauseOf", "(Throwable)", "generated"]
+      - ["org.apache.commons.io.input", "TaggedReader", "TaggedReader", "(Reader)", "generated"]
+      - ["org.apache.commons.io.input", "TaggedReader", "isCauseOf", "(Throwable)", "generated"]
+      - ["org.apache.commons.io.input", "TaggedReader", "throwIfCauseOf", "(Throwable)", "generated"]
+      - ["org.apache.commons.io.input", "Tailer$RandomAccessResourceBridge", "getPointer", "()", "generated"]
+      - ["org.apache.commons.io.input", "Tailer$RandomAccessResourceBridge", "read", "(byte[])", "generated"]
+      - ["org.apache.commons.io.input", "Tailer$RandomAccessResourceBridge", "seek", "(long)", "generated"]
+      - ["org.apache.commons.io.input", "Tailer$Tailable", "getRandomAccess", "(String)", "generated"]
+      - ["org.apache.commons.io.input", "Tailer$Tailable", "isNewer", "(FileTime)", "generated"]
+      - ["org.apache.commons.io.input", "Tailer$Tailable", "lastModifiedFileTime", "()", "generated"]
+      - ["org.apache.commons.io.input", "Tailer$Tailable", "size", "()", "generated"]
+      - ["org.apache.commons.io.input", "Tailer", "getDelay", "()", "generated"]
+      - ["org.apache.commons.io.input", "Tailer", "stop", "()", "generated"]
+      - ["org.apache.commons.io.input", "TailerListener", "fileNotFound", "()", "generated"]
+      - ["org.apache.commons.io.input", "TailerListener", "fileRotated", "()", "generated"]
+      - ["org.apache.commons.io.input", "TailerListener", "handle", "(Exception)", "generated"]
+      - ["org.apache.commons.io.input", "TailerListener", "handle", "(String)", "generated"]
+      - ["org.apache.commons.io.input", "TailerListener", "init", "(Tailer)", "generated"]
+      - ["org.apache.commons.io.input", "TailerListenerAdapter", "TailerListenerAdapter", "()", "generated"]
+      - ["org.apache.commons.io.input", "TailerListenerAdapter", "endOfFileReached", "()", "generated"]
+      - ["org.apache.commons.io.input", "TimestampedObserver", "TimestampedObserver", "()", "generated"]
+      - ["org.apache.commons.io.input", "TimestampedObserver", "getOpenToCloseDuration", "()", "generated"]
+      - ["org.apache.commons.io.input", "TimestampedObserver", "getOpenToNowDuration", "()", "generated"]
+      - ["org.apache.commons.io.input", "UncheckedFilterInputStream", "UncheckedFilterInputStream", "(InputStream)", "generated"]
+      - ["org.apache.commons.io.input", "UncheckedFilterReader", "UncheckedFilterReader", "(Reader)", "generated"]
+      - ["org.apache.commons.io.input", "UncheckedFilterReader", "on", "(Reader)", "generated"]
+      - ["org.apache.commons.io.input", "XmlStreamReader", "XmlStreamReader", "(File)", "generated"]
+      - ["org.apache.commons.io.input", "XmlStreamReader", "XmlStreamReader", "(Path)", "generated"]
+      - ["org.apache.commons.io.input", "XmlStreamReader", "XmlStreamReader", "(URL)", "generated"]
+      - ["org.apache.commons.io.monitor", "FileAlterationListener", "onDirectoryChange", "(File)", "generated"]
+      - ["org.apache.commons.io.monitor", "FileAlterationListener", "onDirectoryCreate", "(File)", "generated"]
+      - ["org.apache.commons.io.monitor", "FileAlterationListener", "onDirectoryDelete", "(File)", "generated"]
+      - ["org.apache.commons.io.monitor", "FileAlterationListener", "onFileChange", "(File)", "generated"]
+      - ["org.apache.commons.io.monitor", "FileAlterationListener", "onFileCreate", "(File)", "generated"]
+      - ["org.apache.commons.io.monitor", "FileAlterationListener", "onFileDelete", "(File)", "generated"]
+      - ["org.apache.commons.io.monitor", "FileAlterationListener", "onStart", "(FileAlterationObserver)", "generated"]
+      - ["org.apache.commons.io.monitor", "FileAlterationListener", "onStop", "(FileAlterationObserver)", "generated"]
+      - ["org.apache.commons.io.monitor", "FileAlterationListenerAdaptor", "FileAlterationListenerAdaptor", "()", "generated"]
+      - ["org.apache.commons.io.monitor", "FileAlterationMonitor", "FileAlterationMonitor", "()", "generated"]
+      - ["org.apache.commons.io.monitor", "FileAlterationMonitor", "FileAlterationMonitor", "(long)", "generated"]
+      - ["org.apache.commons.io.monitor", "FileAlterationMonitor", "getInterval", "()", "generated"]
+      - ["org.apache.commons.io.monitor", "FileAlterationMonitor", "removeObserver", "(FileAlterationObserver)", "generated"]
+      - ["org.apache.commons.io.monitor", "FileAlterationMonitor", "start", "()", "generated"]
+      - ["org.apache.commons.io.monitor", "FileAlterationMonitor", "stop", "()", "generated"]
+      - ["org.apache.commons.io.monitor", "FileAlterationMonitor", "stop", "(long)", "generated"]
+      - ["org.apache.commons.io.monitor", "FileAlterationObserver", "checkAndNotify", "()", "generated"]
+      - ["org.apache.commons.io.monitor", "FileAlterationObserver", "destroy", "()", "generated"]
+      - ["org.apache.commons.io.monitor", "FileAlterationObserver", "initialize", "()", "generated"]
+      - ["org.apache.commons.io.monitor", "FileAlterationObserver", "removeListener", "(FileAlterationListener)", "generated"]
+      - ["org.apache.commons.io.monitor", "FileEntry", "getLastModified", "()", "generated"]
+      - ["org.apache.commons.io.monitor", "FileEntry", "getLength", "()", "generated"]
+      - ["org.apache.commons.io.monitor", "FileEntry", "getLevel", "()", "generated"]
+      - ["org.apache.commons.io.monitor", "FileEntry", "isDirectory", "()", "generated"]
+      - ["org.apache.commons.io.monitor", "FileEntry", "isExists", "()", "generated"]
+      - ["org.apache.commons.io.monitor", "FileEntry", "refresh", "(File)", "generated"]
+      - ["org.apache.commons.io.monitor", "FileEntry", "setDirectory", "(boolean)", "generated"]
+      - ["org.apache.commons.io.monitor", "FileEntry", "setExists", "(boolean)", "generated"]
+      - ["org.apache.commons.io.monitor", "FileEntry", "setLastModified", "(long)", "generated"]
+      - ["org.apache.commons.io.monitor", "FileEntry", "setLength", "(long)", "generated"]
+      - ["org.apache.commons.io.output", "AbstractByteArrayOutputStream", "AbstractByteArrayOutputStream", "()", "generated"]
+      - ["org.apache.commons.io.output", "AbstractByteArrayOutputStream", "reset", "()", "generated"]
+      - ["org.apache.commons.io.output", "AbstractByteArrayOutputStream", "size", "()", "generated"]
+      - ["org.apache.commons.io.output", "AbstractByteArrayOutputStream", "toByteArray", "()", "generated"]
+      - ["org.apache.commons.io.output", "AbstractByteArrayOutputStream", "toInputStream", "()", "generated"]
+      - ["org.apache.commons.io.output", "AbstractByteArrayOutputStream", "write", "(InputStream)", "generated"]
+      - ["org.apache.commons.io.output", "AbstractByteArrayOutputStream", "writeTo", "(OutputStream)", "generated"]
+      - ["org.apache.commons.io.output", "BrokenOutputStream", "BrokenOutputStream", "()", "generated"]
+      - ["org.apache.commons.io.output", "BrokenOutputStream", "BrokenOutputStream", "(IOException)", "generated"]
+      - ["org.apache.commons.io.output", "BrokenWriter", "BrokenWriter", "()", "generated"]
+      - ["org.apache.commons.io.output", "BrokenWriter", "BrokenWriter", "(IOException)", "generated"]
+      - ["org.apache.commons.io.output", "ByteArrayOutputStream", "ByteArrayOutputStream", "()", "generated"]
+      - ["org.apache.commons.io.output", "ByteArrayOutputStream", "ByteArrayOutputStream", "(int)", "generated"]
+      - ["org.apache.commons.io.output", "ByteArrayOutputStream", "toBufferedInputStream", "(InputStream)", "generated"]
+      - ["org.apache.commons.io.output", "ByteArrayOutputStream", "toBufferedInputStream", "(InputStream,int)", "generated"]
+      - ["org.apache.commons.io.output", "ChunkedWriter", "ChunkedWriter", "(Writer)", "generated"]
+      - ["org.apache.commons.io.output", "ChunkedWriter", "ChunkedWriter", "(Writer,int)", "generated"]
+      - ["org.apache.commons.io.output", "CloseShieldWriter", "CloseShieldWriter", "(Writer)", "generated"]
+      - ["org.apache.commons.io.output", "CloseShieldWriter", "wrap", "(Writer)", "generated"]
+      - ["org.apache.commons.io.output", "ClosedOutputStream", "ClosedOutputStream", "()", "generated"]
+      - ["org.apache.commons.io.output", "ClosedWriter", "ClosedWriter", "()", "generated"]
+      - ["org.apache.commons.io.output", "CountingOutputStream", "getByteCount", "()", "generated"]
+      - ["org.apache.commons.io.output", "CountingOutputStream", "getCount", "()", "generated"]
+      - ["org.apache.commons.io.output", "CountingOutputStream", "resetByteCount", "()", "generated"]
+      - ["org.apache.commons.io.output", "CountingOutputStream", "resetCount", "()", "generated"]
+      - ["org.apache.commons.io.output", "DeferredFileOutputStream", "isInMemory", "()", "generated"]
+      - ["org.apache.commons.io.output", "DeferredFileOutputStream", "toInputStream", "()", "generated"]
+      - ["org.apache.commons.io.output", "DemuxOutputStream", "DemuxOutputStream", "()", "generated"]
+      - ["org.apache.commons.io.output", "DemuxOutputStream", "bindStream", "(OutputStream)", "generated"]
+      - ["org.apache.commons.io.output", "FileWriterWithEncoding", "FileWriterWithEncoding", "(File,Charset)", "generated"]
+      - ["org.apache.commons.io.output", "FileWriterWithEncoding", "FileWriterWithEncoding", "(File,Charset,boolean)", "generated"]
+      - ["org.apache.commons.io.output", "FileWriterWithEncoding", "FileWriterWithEncoding", "(File,CharsetEncoder)", "generated"]
+      - ["org.apache.commons.io.output", "FileWriterWithEncoding", "FileWriterWithEncoding", "(File,CharsetEncoder,boolean)", "generated"]
+      - ["org.apache.commons.io.output", "FileWriterWithEncoding", "FileWriterWithEncoding", "(File,String)", "generated"]
+      - ["org.apache.commons.io.output", "FileWriterWithEncoding", "FileWriterWithEncoding", "(File,String,boolean)", "generated"]
+      - ["org.apache.commons.io.output", "FileWriterWithEncoding", "FileWriterWithEncoding", "(String,Charset)", "generated"]
+      - ["org.apache.commons.io.output", "FileWriterWithEncoding", "FileWriterWithEncoding", "(String,Charset,boolean)", "generated"]
+      - ["org.apache.commons.io.output", "FileWriterWithEncoding", "FileWriterWithEncoding", "(String,CharsetEncoder)", "generated"]
+      - ["org.apache.commons.io.output", "FileWriterWithEncoding", "FileWriterWithEncoding", "(String,CharsetEncoder,boolean)", "generated"]
+      - ["org.apache.commons.io.output", "FileWriterWithEncoding", "FileWriterWithEncoding", "(String,String)", "generated"]
+      - ["org.apache.commons.io.output", "FileWriterWithEncoding", "FileWriterWithEncoding", "(String,String,boolean)", "generated"]
+      - ["org.apache.commons.io.output", "LockableFileWriter", "LockableFileWriter", "(File)", "generated"]
+      - ["org.apache.commons.io.output", "LockableFileWriter", "LockableFileWriter", "(File,Charset)", "generated"]
+      - ["org.apache.commons.io.output", "LockableFileWriter", "LockableFileWriter", "(File,String)", "generated"]
+      - ["org.apache.commons.io.output", "LockableFileWriter", "LockableFileWriter", "(File,boolean)", "generated"]
+      - ["org.apache.commons.io.output", "LockableFileWriter", "LockableFileWriter", "(String)", "generated"]
+      - ["org.apache.commons.io.output", "LockableFileWriter", "LockableFileWriter", "(String,boolean)", "generated"]
+      - ["org.apache.commons.io.output", "NullOutputStream", "NullOutputStream", "()", "generated"]
+      - ["org.apache.commons.io.output", "NullPrintStream", "NullPrintStream", "()", "generated"]
+      - ["org.apache.commons.io.output", "NullWriter", "NullWriter", "()", "generated"]
+      - ["org.apache.commons.io.output", "ProxyWriter", "ProxyWriter", "(Writer)", "generated"]
+      - ["org.apache.commons.io.output", "QueueOutputStream", "QueueOutputStream", "()", "generated"]
+      - ["org.apache.commons.io.output", "QueueOutputStream", "QueueOutputStream", "(BlockingQueue)", "generated"]
+      - ["org.apache.commons.io.output", "QueueOutputStream", "newQueueInputStream", "()", "generated"]
+      - ["org.apache.commons.io.output", "StringBuilderWriter", "StringBuilderWriter", "()", "generated"]
+      - ["org.apache.commons.io.output", "StringBuilderWriter", "StringBuilderWriter", "(int)", "generated"]
+      - ["org.apache.commons.io.output", "TaggedOutputStream", "isCauseOf", "(Exception)", "generated"]
+      - ["org.apache.commons.io.output", "TaggedOutputStream", "throwIfCauseOf", "(Exception)", "generated"]
+      - ["org.apache.commons.io.output", "TaggedWriter", "TaggedWriter", "(Writer)", "generated"]
+      - ["org.apache.commons.io.output", "TaggedWriter", "isCauseOf", "(Exception)", "generated"]
+      - ["org.apache.commons.io.output", "TaggedWriter", "throwIfCauseOf", "(Exception)", "generated"]
+      - ["org.apache.commons.io.output", "ThresholdingOutputStream", "ThresholdingOutputStream", "(int)", "generated"]
+      - ["org.apache.commons.io.output", "ThresholdingOutputStream", "getByteCount", "()", "generated"]
+      - ["org.apache.commons.io.output", "ThresholdingOutputStream", "getThreshold", "()", "generated"]
+      - ["org.apache.commons.io.output", "ThresholdingOutputStream", "isThresholdExceeded", "()", "generated"]
+      - ["org.apache.commons.io.output", "UncheckedFilterWriter", "on", "(Writer)", "generated"]
+      - ["org.apache.commons.io.output", "UnsynchronizedByteArrayOutputStream", "UnsynchronizedByteArrayOutputStream", "()", "generated"]
+      - ["org.apache.commons.io.output", "UnsynchronizedByteArrayOutputStream", "UnsynchronizedByteArrayOutputStream", "(int)", "generated"]
+      - ["org.apache.commons.io.output", "UnsynchronizedByteArrayOutputStream", "toBufferedInputStream", "(InputStream)", "generated"]
+      - ["org.apache.commons.io.output", "UnsynchronizedByteArrayOutputStream", "toBufferedInputStream", "(InputStream,int)", "generated"]
+      - ["org.apache.commons.io.output", "XmlStreamWriter", "XmlStreamWriter", "(File)", "generated"]
+      - ["org.apache.commons.io.serialization", "ClassNameMatcher", "matches", "(String)", "generated"]
+      - ["org.apache.commons.io", "ByteOrderMark", "get", "(int)", "generated"]
+      - ["org.apache.commons.io", "ByteOrderMark", "getBytes", "()", "generated"]
+      - ["org.apache.commons.io", "ByteOrderMark", "length", "()", "generated"]
+      - ["org.apache.commons.io", "ByteOrderParser", "parseByteOrder", "(String)", "generated"]
+      - ["org.apache.commons.io", "Charsets", "Charsets", "()", "generated"]
+      - ["org.apache.commons.io", "Charsets", "requiredCharsets", "()", "generated"]
+      - ["org.apache.commons.io", "Charsets", "toCharset", "(Charset)", "generated"]
+      - ["org.apache.commons.io", "Charsets", "toCharset", "(String)", "generated"]
+      - ["org.apache.commons.io", "CopyUtils", "CopyUtils", "()", "generated"]
+      - ["org.apache.commons.io", "CopyUtils", "copy", "(Reader,OutputStream)", "generated"]
+      - ["org.apache.commons.io", "CopyUtils", "copy", "(Reader,OutputStream,String)", "generated"]
+      - ["org.apache.commons.io", "CopyUtils", "copy", "(String,OutputStream)", "generated"]
+      - ["org.apache.commons.io", "CopyUtils", "copy", "(String,OutputStream,String)", "generated"]
+      - ["org.apache.commons.io", "DirectoryWalker$CancelException", "getDepth", "()", "generated"]
+      - ["org.apache.commons.io", "EndianUtils", "EndianUtils", "()", "generated"]
+      - ["org.apache.commons.io", "EndianUtils", "readSwappedDouble", "(InputStream)", "generated"]
+      - ["org.apache.commons.io", "EndianUtils", "readSwappedDouble", "(byte[],int)", "generated"]
+      - ["org.apache.commons.io", "EndianUtils", "readSwappedFloat", "(InputStream)", "generated"]
+      - ["org.apache.commons.io", "EndianUtils", "readSwappedFloat", "(byte[],int)", "generated"]
+      - ["org.apache.commons.io", "EndianUtils", "readSwappedInteger", "(InputStream)", "generated"]
+      - ["org.apache.commons.io", "EndianUtils", "readSwappedInteger", "(byte[],int)", "generated"]
+      - ["org.apache.commons.io", "EndianUtils", "readSwappedLong", "(InputStream)", "generated"]
+      - ["org.apache.commons.io", "EndianUtils", "readSwappedLong", "(byte[],int)", "generated"]
+      - ["org.apache.commons.io", "EndianUtils", "readSwappedShort", "(InputStream)", "generated"]
+      - ["org.apache.commons.io", "EndianUtils", "readSwappedShort", "(byte[],int)", "generated"]
+      - ["org.apache.commons.io", "EndianUtils", "readSwappedUnsignedInteger", "(InputStream)", "generated"]
+      - ["org.apache.commons.io", "EndianUtils", "readSwappedUnsignedInteger", "(byte[],int)", "generated"]
+      - ["org.apache.commons.io", "EndianUtils", "readSwappedUnsignedShort", "(InputStream)", "generated"]
+      - ["org.apache.commons.io", "EndianUtils", "readSwappedUnsignedShort", "(byte[],int)", "generated"]
+      - ["org.apache.commons.io", "EndianUtils", "swapDouble", "(double)", "generated"]
+      - ["org.apache.commons.io", "EndianUtils", "swapFloat", "(float)", "generated"]
+      - ["org.apache.commons.io", "EndianUtils", "swapInteger", "(int)", "generated"]
+      - ["org.apache.commons.io", "EndianUtils", "swapLong", "(long)", "generated"]
+      - ["org.apache.commons.io", "EndianUtils", "swapShort", "(short)", "generated"]
+      - ["org.apache.commons.io", "EndianUtils", "writeSwappedDouble", "(OutputStream,double)", "generated"]
+      - ["org.apache.commons.io", "EndianUtils", "writeSwappedDouble", "(byte[],int,double)", "generated"]
+      - ["org.apache.commons.io", "EndianUtils", "writeSwappedFloat", "(OutputStream,float)", "generated"]
+      - ["org.apache.commons.io", "EndianUtils", "writeSwappedFloat", "(byte[],int,float)", "generated"]
+      - ["org.apache.commons.io", "EndianUtils", "writeSwappedInteger", "(OutputStream,int)", "generated"]
+      - ["org.apache.commons.io", "EndianUtils", "writeSwappedInteger", "(byte[],int,int)", "generated"]
+      - ["org.apache.commons.io", "EndianUtils", "writeSwappedLong", "(OutputStream,long)", "generated"]
+      - ["org.apache.commons.io", "EndianUtils", "writeSwappedLong", "(byte[],int,long)", "generated"]
+      - ["org.apache.commons.io", "EndianUtils", "writeSwappedShort", "(OutputStream,short)", "generated"]
+      - ["org.apache.commons.io", "EndianUtils", "writeSwappedShort", "(byte[],int,short)", "generated"]
+      - ["org.apache.commons.io", "FileCleaner", "FileCleaner", "()", "generated"]
+      - ["org.apache.commons.io", "FileCleaner", "exitWhenFinished", "()", "generated"]
+      - ["org.apache.commons.io", "FileCleaner", "getInstance", "()", "generated"]
+      - ["org.apache.commons.io", "FileCleaner", "getTrackCount", "()", "generated"]
+      - ["org.apache.commons.io", "FileCleaner", "track", "(File,Object)", "generated"]
+      - ["org.apache.commons.io", "FileCleaner", "track", "(File,Object,FileDeleteStrategy)", "generated"]
+      - ["org.apache.commons.io", "FileCleaner", "track", "(String,Object)", "generated"]
+      - ["org.apache.commons.io", "FileCleaner", "track", "(String,Object,FileDeleteStrategy)", "generated"]
+      - ["org.apache.commons.io", "FileCleaningTracker", "FileCleaningTracker", "()", "generated"]
+      - ["org.apache.commons.io", "FileCleaningTracker", "exitWhenFinished", "()", "generated"]
+      - ["org.apache.commons.io", "FileCleaningTracker", "getTrackCount", "()", "generated"]
+      - ["org.apache.commons.io", "FileCleaningTracker", "track", "(File,Object)", "generated"]
+      - ["org.apache.commons.io", "FileCleaningTracker", "track", "(File,Object,FileDeleteStrategy)", "generated"]
+      - ["org.apache.commons.io", "FileCleaningTracker", "track", "(String,Object)", "generated"]
+      - ["org.apache.commons.io", "FileCleaningTracker", "track", "(String,Object,FileDeleteStrategy)", "generated"]
+      - ["org.apache.commons.io", "FileDeleteStrategy", "delete", "(File)", "generated"]
+      - ["org.apache.commons.io", "FileDeleteStrategy", "deleteQuietly", "(File)", "generated"]
+      - ["org.apache.commons.io", "FileExistsException", "FileExistsException", "()", "generated"]
+      - ["org.apache.commons.io", "FileExistsException", "FileExistsException", "(File)", "generated"]
+      - ["org.apache.commons.io", "FileExistsException", "FileExistsException", "(String)", "generated"]
+      - ["org.apache.commons.io", "FileSystem", "getCurrent", "()", "generated"]
+      - ["org.apache.commons.io", "FileSystem", "getIllegalFileNameChars", "()", "generated"]
+      - ["org.apache.commons.io", "FileSystem", "getMaxFileNameLength", "()", "generated"]
+      - ["org.apache.commons.io", "FileSystem", "getMaxPathLength", "()", "generated"]
+      - ["org.apache.commons.io", "FileSystem", "getNameSeparator", "()", "generated"]
+      - ["org.apache.commons.io", "FileSystem", "getReservedFileNames", "()", "generated"]
+      - ["org.apache.commons.io", "FileSystem", "isCasePreserving", "()", "generated"]
+      - ["org.apache.commons.io", "FileSystem", "isCaseSensitive", "()", "generated"]
+      - ["org.apache.commons.io", "FileSystem", "isLegalFileName", "(CharSequence)", "generated"]
+      - ["org.apache.commons.io", "FileSystem", "isReservedFileName", "(CharSequence)", "generated"]
+      - ["org.apache.commons.io", "FileSystem", "supportsDriveLetter", "()", "generated"]
+      - ["org.apache.commons.io", "FileSystemUtils", "FileSystemUtils", "()", "generated"]
+      - ["org.apache.commons.io", "FileSystemUtils", "freeSpace", "(String)", "generated"]
+      - ["org.apache.commons.io", "FileSystemUtils", "freeSpaceKb", "()", "generated"]
+      - ["org.apache.commons.io", "FileSystemUtils", "freeSpaceKb", "(String)", "generated"]
+      - ["org.apache.commons.io", "FileSystemUtils", "freeSpaceKb", "(String,long)", "generated"]
+      - ["org.apache.commons.io", "FileSystemUtils", "freeSpaceKb", "(long)", "generated"]
+      - ["org.apache.commons.io", "FileUtils", "FileUtils", "()", "generated"]
+      - ["org.apache.commons.io", "FileUtils", "byteCountToDisplaySize", "(BigInteger)", "generated"]
+      - ["org.apache.commons.io", "FileUtils", "byteCountToDisplaySize", "(Number)", "generated"]
+      - ["org.apache.commons.io", "FileUtils", "byteCountToDisplaySize", "(long)", "generated"]
+      - ["org.apache.commons.io", "FileUtils", "checksumCRC32", "(File)", "generated"]
+      - ["org.apache.commons.io", "FileUtils", "cleanDirectory", "(File)", "generated"]
+      - ["org.apache.commons.io", "FileUtils", "contentEquals", "(File,File)", "generated"]
+      - ["org.apache.commons.io", "FileUtils", "contentEqualsIgnoreEOL", "(File,File,String)", "generated"]
+      - ["org.apache.commons.io", "FileUtils", "copyDirectory", "(File,File)", "generated"]
+      - ["org.apache.commons.io", "FileUtils", "copyDirectory", "(File,File,FileFilter)", "generated"]
+      - ["org.apache.commons.io", "FileUtils", "copyDirectory", "(File,File,FileFilter,boolean)", "generated"]
+      - ["org.apache.commons.io", "FileUtils", "copyDirectory", "(File,File,FileFilter,boolean,CopyOption[])", "generated"]
+      - ["org.apache.commons.io", "FileUtils", "copyDirectory", "(File,File,boolean)", "generated"]
+      - ["org.apache.commons.io", "FileUtils", "copyDirectoryToDirectory", "(File,File)", "generated"]
+      - ["org.apache.commons.io", "FileUtils", "copyFile", "(File,File)", "generated"]
+      - ["org.apache.commons.io", "FileUtils", "copyFile", "(File,File,CopyOption[])", "generated"]
+      - ["org.apache.commons.io", "FileUtils", "copyFile", "(File,File,boolean)", "generated"]
+      - ["org.apache.commons.io", "FileUtils", "copyFile", "(File,File,boolean,CopyOption[])", "generated"]
+      - ["org.apache.commons.io", "FileUtils", "copyFile", "(File,OutputStream)", "generated"]
+      - ["org.apache.commons.io", "FileUtils", "copyFileToDirectory", "(File,File)", "generated"]
+      - ["org.apache.commons.io", "FileUtils", "copyFileToDirectory", "(File,File,boolean)", "generated"]
+      - ["org.apache.commons.io", "FileUtils", "copyInputStreamToFile", "(InputStream,File)", "generated"]
+      - ["org.apache.commons.io", "FileUtils", "copyToDirectory", "(File,File)", "generated"]
+      - ["org.apache.commons.io", "FileUtils", "copyToDirectory", "(Iterable,File)", "generated"]
+      - ["org.apache.commons.io", "FileUtils", "copyToFile", "(InputStream,File)", "generated"]
+      - ["org.apache.commons.io", "FileUtils", "copyURLToFile", "(URL,File)", "generated"]
+      - ["org.apache.commons.io", "FileUtils", "copyURLToFile", "(URL,File,int,int)", "generated"]
+      - ["org.apache.commons.io", "FileUtils", "createParentDirectories", "(File)", "generated"]
+      - ["org.apache.commons.io", "FileUtils", "current", "()", "generated"]
+      - ["org.apache.commons.io", "FileUtils", "deleteDirectory", "(File)", "generated"]
+      - ["org.apache.commons.io", "FileUtils", "deleteQuietly", "(File)", "generated"]
+      - ["org.apache.commons.io", "FileUtils", "directoryContains", "(File,File)", "generated"]
+      - ["org.apache.commons.io", "FileUtils", "forceDelete", "(File)", "generated"]
+      - ["org.apache.commons.io", "FileUtils", "forceDeleteOnExit", "(File)", "generated"]
+      - ["org.apache.commons.io", "FileUtils", "forceMkdir", "(File)", "generated"]
+      - ["org.apache.commons.io", "FileUtils", "forceMkdirParent", "(File)", "generated"]
+      - ["org.apache.commons.io", "FileUtils", "getTempDirectory", "()", "generated"]
+      - ["org.apache.commons.io", "FileUtils", "getTempDirectoryPath", "()", "generated"]
+      - ["org.apache.commons.io", "FileUtils", "getUserDirectory", "()", "generated"]
+      - ["org.apache.commons.io", "FileUtils", "getUserDirectoryPath", "()", "generated"]
+      - ["org.apache.commons.io", "FileUtils", "isDirectory", "(File,LinkOption[])", "generated"]
+      - ["org.apache.commons.io", "FileUtils", "isEmptyDirectory", "(File)", "generated"]
+      - ["org.apache.commons.io", "FileUtils", "isFileNewer", "(File,ChronoLocalDate)", "generated"]
+      - ["org.apache.commons.io", "FileUtils", "isFileNewer", "(File,ChronoLocalDate,LocalTime)", "generated"]
+      - ["org.apache.commons.io", "FileUtils", "isFileNewer", "(File,ChronoLocalDateTime)", "generated"]
+      - ["org.apache.commons.io", "FileUtils", "isFileNewer", "(File,ChronoLocalDateTime,ZoneId)", "generated"]
+      - ["org.apache.commons.io", "FileUtils", "isFileNewer", "(File,ChronoZonedDateTime)", "generated"]
+      - ["org.apache.commons.io", "FileUtils", "isFileNewer", "(File,Date)", "generated"]
+      - ["org.apache.commons.io", "FileUtils", "isFileNewer", "(File,File)", "generated"]
+      - ["org.apache.commons.io", "FileUtils", "isFileNewer", "(File,FileTime)", "generated"]
+      - ["org.apache.commons.io", "FileUtils", "isFileNewer", "(File,Instant)", "generated"]
+      - ["org.apache.commons.io", "FileUtils", "isFileNewer", "(File,long)", "generated"]
+      - ["org.apache.commons.io", "FileUtils", "isFileOlder", "(File,ChronoLocalDate)", "generated"]
+      - ["org.apache.commons.io", "FileUtils", "isFileOlder", "(File,ChronoLocalDate,LocalTime)", "generated"]
+      - ["org.apache.commons.io", "FileUtils", "isFileOlder", "(File,ChronoLocalDateTime)", "generated"]
+      - ["org.apache.commons.io", "FileUtils", "isFileOlder", "(File,ChronoLocalDateTime,ZoneId)", "generated"]
+      - ["org.apache.commons.io", "FileUtils", "isFileOlder", "(File,ChronoZonedDateTime)", "generated"]
+      - ["org.apache.commons.io", "FileUtils", "isFileOlder", "(File,Date)", "generated"]
+      - ["org.apache.commons.io", "FileUtils", "isFileOlder", "(File,File)", "generated"]
+      - ["org.apache.commons.io", "FileUtils", "isFileOlder", "(File,FileTime)", "generated"]
+      - ["org.apache.commons.io", "FileUtils", "isFileOlder", "(File,Instant)", "generated"]
+      - ["org.apache.commons.io", "FileUtils", "isFileOlder", "(File,long)", "generated"]
+      - ["org.apache.commons.io", "FileUtils", "isRegularFile", "(File,LinkOption[])", "generated"]
+      - ["org.apache.commons.io", "FileUtils", "isSymlink", "(File)", "generated"]
+      - ["org.apache.commons.io", "FileUtils", "iterateFiles", "(File,IOFileFilter,IOFileFilter)", "generated"]
+      - ["org.apache.commons.io", "FileUtils", "iterateFiles", "(File,String[],boolean)", "generated"]
+      - ["org.apache.commons.io", "FileUtils", "iterateFilesAndDirs", "(File,IOFileFilter,IOFileFilter)", "generated"]
+      - ["org.apache.commons.io", "FileUtils", "lastModified", "(File)", "generated"]
+      - ["org.apache.commons.io", "FileUtils", "lastModifiedFileTime", "(File)", "generated"]
+      - ["org.apache.commons.io", "FileUtils", "lastModifiedUnchecked", "(File)", "generated"]
+      - ["org.apache.commons.io", "FileUtils", "lineIterator", "(File)", "generated"]
+      - ["org.apache.commons.io", "FileUtils", "lineIterator", "(File,String)", "generated"]
+      - ["org.apache.commons.io", "FileUtils", "listFiles", "(File,IOFileFilter,IOFileFilter)", "generated"]
+      - ["org.apache.commons.io", "FileUtils", "listFiles", "(File,String[],boolean)", "generated"]
+      - ["org.apache.commons.io", "FileUtils", "listFilesAndDirs", "(File,IOFileFilter,IOFileFilter)", "generated"]
+      - ["org.apache.commons.io", "FileUtils", "moveDirectory", "(File,File)", "generated"]
+      - ["org.apache.commons.io", "FileUtils", "moveDirectoryToDirectory", "(File,File,boolean)", "generated"]
+      - ["org.apache.commons.io", "FileUtils", "moveFile", "(File,File)", "generated"]
+      - ["org.apache.commons.io", "FileUtils", "moveFile", "(File,File,CopyOption[])", "generated"]
+      - ["org.apache.commons.io", "FileUtils", "moveFileToDirectory", "(File,File,boolean)", "generated"]
+      - ["org.apache.commons.io", "FileUtils", "moveToDirectory", "(File,File,boolean)", "generated"]
+      - ["org.apache.commons.io", "FileUtils", "newOutputStream", "(File,boolean)", "generated"]
+      - ["org.apache.commons.io", "FileUtils", "openInputStream", "(File)", "generated"]
+      - ["org.apache.commons.io", "FileUtils", "openOutputStream", "(File)", "generated"]
+      - ["org.apache.commons.io", "FileUtils", "openOutputStream", "(File,boolean)", "generated"]
+      - ["org.apache.commons.io", "FileUtils", "readFileToByteArray", "(File)", "generated"]
+      - ["org.apache.commons.io", "FileUtils", "readFileToString", "(File)", "generated"]
+      - ["org.apache.commons.io", "FileUtils", "readFileToString", "(File,Charset)", "generated"]
+      - ["org.apache.commons.io", "FileUtils", "readFileToString", "(File,String)", "generated"]
+      - ["org.apache.commons.io", "FileUtils", "readLines", "(File)", "generated"]
+      - ["org.apache.commons.io", "FileUtils", "readLines", "(File,Charset)", "generated"]
+      - ["org.apache.commons.io", "FileUtils", "readLines", "(File,String)", "generated"]
+      - ["org.apache.commons.io", "FileUtils", "sizeOf", "(File)", "generated"]
+      - ["org.apache.commons.io", "FileUtils", "sizeOfAsBigInteger", "(File)", "generated"]
+      - ["org.apache.commons.io", "FileUtils", "sizeOfDirectory", "(File)", "generated"]
+      - ["org.apache.commons.io", "FileUtils", "sizeOfDirectoryAsBigInteger", "(File)", "generated"]
+      - ["org.apache.commons.io", "FileUtils", "streamFiles", "(File,boolean,String[])", "generated"]
+      - ["org.apache.commons.io", "FileUtils", "toFile", "(URL)", "generated"]
+      - ["org.apache.commons.io", "FileUtils", "toFiles", "(URL[])", "generated"]
+      - ["org.apache.commons.io", "FileUtils", "touch", "(File)", "generated"]
+      - ["org.apache.commons.io", "FileUtils", "waitFor", "(File,int)", "generated"]
+      - ["org.apache.commons.io", "FileUtils", "write", "(File,CharSequence)", "generated"]
+      - ["org.apache.commons.io", "FileUtils", "write", "(File,CharSequence,Charset)", "generated"]
+      - ["org.apache.commons.io", "FileUtils", "write", "(File,CharSequence,Charset,boolean)", "generated"]
+      - ["org.apache.commons.io", "FileUtils", "write", "(File,CharSequence,String)", "generated"]
+      - ["org.apache.commons.io", "FileUtils", "write", "(File,CharSequence,String,boolean)", "generated"]
+      - ["org.apache.commons.io", "FileUtils", "write", "(File,CharSequence,boolean)", "generated"]
+      - ["org.apache.commons.io", "FileUtils", "writeByteArrayToFile", "(File,byte[])", "generated"]
+      - ["org.apache.commons.io", "FileUtils", "writeByteArrayToFile", "(File,byte[],boolean)", "generated"]
+      - ["org.apache.commons.io", "FileUtils", "writeByteArrayToFile", "(File,byte[],int,int)", "generated"]
+      - ["org.apache.commons.io", "FileUtils", "writeByteArrayToFile", "(File,byte[],int,int,boolean)", "generated"]
+      - ["org.apache.commons.io", "FileUtils", "writeLines", "(File,Collection)", "generated"]
+      - ["org.apache.commons.io", "FileUtils", "writeLines", "(File,Collection,String)", "generated"]
+      - ["org.apache.commons.io", "FileUtils", "writeLines", "(File,Collection,String,boolean)", "generated"]
+      - ["org.apache.commons.io", "FileUtils", "writeLines", "(File,Collection,boolean)", "generated"]
+      - ["org.apache.commons.io", "FileUtils", "writeLines", "(File,String,Collection)", "generated"]
+      - ["org.apache.commons.io", "FileUtils", "writeLines", "(File,String,Collection,String)", "generated"]
+      - ["org.apache.commons.io", "FileUtils", "writeLines", "(File,String,Collection,String,boolean)", "generated"]
+      - ["org.apache.commons.io", "FileUtils", "writeLines", "(File,String,Collection,boolean)", "generated"]
+      - ["org.apache.commons.io", "FileUtils", "writeStringToFile", "(File,String)", "generated"]
+      - ["org.apache.commons.io", "FileUtils", "writeStringToFile", "(File,String,Charset)", "generated"]
+      - ["org.apache.commons.io", "FileUtils", "writeStringToFile", "(File,String,Charset,boolean)", "generated"]
+      - ["org.apache.commons.io", "FileUtils", "writeStringToFile", "(File,String,String)", "generated"]
+      - ["org.apache.commons.io", "FileUtils", "writeStringToFile", "(File,String,String,boolean)", "generated"]
+      - ["org.apache.commons.io", "FileUtils", "writeStringToFile", "(File,String,boolean)", "generated"]
+      - ["org.apache.commons.io", "FilenameUtils", "FilenameUtils", "()", "generated"]
+      - ["org.apache.commons.io", "FilenameUtils", "directoryContains", "(String,String)", "generated"]
+      - ["org.apache.commons.io", "FilenameUtils", "equals", "(String,String)", "generated"]
+      - ["org.apache.commons.io", "FilenameUtils", "equals", "(String,String,boolean,IOCase)", "generated"]
+      - ["org.apache.commons.io", "FilenameUtils", "equalsNormalized", "(String,String)", "generated"]
+      - ["org.apache.commons.io", "FilenameUtils", "equalsNormalizedOnSystem", "(String,String)", "generated"]
+      - ["org.apache.commons.io", "FilenameUtils", "equalsOnSystem", "(String,String)", "generated"]
+      - ["org.apache.commons.io", "FilenameUtils", "getPrefixLength", "(String)", "generated"]
+      - ["org.apache.commons.io", "FilenameUtils", "indexOfExtension", "(String)", "generated"]
+      - ["org.apache.commons.io", "FilenameUtils", "indexOfLastSeparator", "(String)", "generated"]
+      - ["org.apache.commons.io", "FilenameUtils", "isExtension", "(String,Collection)", "generated"]
+      - ["org.apache.commons.io", "FilenameUtils", "isExtension", "(String,String)", "generated"]
+      - ["org.apache.commons.io", "FilenameUtils", "isExtension", "(String,String[])", "generated"]
+      - ["org.apache.commons.io", "FilenameUtils", "wildcardMatch", "(String,String)", "generated"]
+      - ["org.apache.commons.io", "FilenameUtils", "wildcardMatch", "(String,String,IOCase)", "generated"]
+      - ["org.apache.commons.io", "FilenameUtils", "wildcardMatchOnSystem", "(String,String)", "generated"]
+      - ["org.apache.commons.io", "HexDump", "HexDump", "()", "generated"]
+      - ["org.apache.commons.io", "HexDump", "dump", "(byte[],long,OutputStream,int)", "generated"]
+      - ["org.apache.commons.io", "IOCase", "checkCompareTo", "(String,String)", "generated"]
+      - ["org.apache.commons.io", "IOCase", "checkEndsWith", "(String,String)", "generated"]
+      - ["org.apache.commons.io", "IOCase", "checkEquals", "(String,String)", "generated"]
+      - ["org.apache.commons.io", "IOCase", "checkIndexOf", "(String,int,String)", "generated"]
+      - ["org.apache.commons.io", "IOCase", "checkRegionMatches", "(String,int,String)", "generated"]
+      - ["org.apache.commons.io", "IOCase", "checkStartsWith", "(String,String)", "generated"]
+      - ["org.apache.commons.io", "IOCase", "forName", "(String)", "generated"]
+      - ["org.apache.commons.io", "IOCase", "getName", "()", "generated"]
+      - ["org.apache.commons.io", "IOCase", "isCaseSensitive", "()", "generated"]
+      - ["org.apache.commons.io", "IOCase", "isCaseSensitive", "(IOCase)", "generated"]
+      - ["org.apache.commons.io", "IOCase", "toString", "()", "generated"]
+      - ["org.apache.commons.io", "IOCase", "value", "(IOCase,IOCase)", "generated"]
+      - ["org.apache.commons.io", "IOExceptionList", "checkEmpty", "(List,Object)", "generated"]
+      - ["org.apache.commons.io", "IOExceptionList", "getCause", "(int,Class)", "generated"]
+      - ["org.apache.commons.io", "IOExceptionWithCause", "IOExceptionWithCause", "(String,Throwable)", "generated"]
+      - ["org.apache.commons.io", "IOExceptionWithCause", "IOExceptionWithCause", "(Throwable)", "generated"]
+      - ["org.apache.commons.io", "IOIndexedException", "IOIndexedException", "(int,Throwable)", "generated"]
+      - ["org.apache.commons.io", "IOIndexedException", "getIndex", "()", "generated"]
+      - ["org.apache.commons.io", "IOUtils", "IOUtils", "()", "generated"]
+      - ["org.apache.commons.io", "IOUtils", "byteArray", "()", "generated"]
+      - ["org.apache.commons.io", "IOUtils", "byteArray", "(int)", "generated"]
+      - ["org.apache.commons.io", "IOUtils", "close", "(Closeable)", "generated"]
+      - ["org.apache.commons.io", "IOUtils", "close", "(Closeable,IOConsumer)", "generated"]
+      - ["org.apache.commons.io", "IOUtils", "close", "(Closeable[])", "generated"]
+      - ["org.apache.commons.io", "IOUtils", "close", "(URLConnection)", "generated"]
+      - ["org.apache.commons.io", "IOUtils", "closeQuietly", "(Closeable)", "generated"]
+      - ["org.apache.commons.io", "IOUtils", "closeQuietly", "(Closeable,Consumer)", "generated"]
+      - ["org.apache.commons.io", "IOUtils", "closeQuietly", "(Closeable[])", "generated"]
+      - ["org.apache.commons.io", "IOUtils", "closeQuietly", "(InputStream)", "generated"]
+      - ["org.apache.commons.io", "IOUtils", "closeQuietly", "(OutputStream)", "generated"]
+      - ["org.apache.commons.io", "IOUtils", "closeQuietly", "(Reader)", "generated"]
+      - ["org.apache.commons.io", "IOUtils", "closeQuietly", "(Selector)", "generated"]
+      - ["org.apache.commons.io", "IOUtils", "closeQuietly", "(ServerSocket)", "generated"]
+      - ["org.apache.commons.io", "IOUtils", "closeQuietly", "(Socket)", "generated"]
+      - ["org.apache.commons.io", "IOUtils", "closeQuietly", "(Writer)", "generated"]
+      - ["org.apache.commons.io", "IOUtils", "consume", "(InputStream)", "generated"]
+      - ["org.apache.commons.io", "IOUtils", "contentEquals", "(InputStream,InputStream)", "generated"]
+      - ["org.apache.commons.io", "IOUtils", "contentEquals", "(Reader,Reader)", "generated"]
+      - ["org.apache.commons.io", "IOUtils", "contentEqualsIgnoreEOL", "(Reader,Reader)", "generated"]
+      - ["org.apache.commons.io", "IOUtils", "copy", "(ByteArrayOutputStream)", "generated"]
+      - ["org.apache.commons.io", "IOUtils", "copy", "(Reader,OutputStream)", "generated"]
+      - ["org.apache.commons.io", "IOUtils", "copy", "(Reader,OutputStream,Charset)", "generated"]
+      - ["org.apache.commons.io", "IOUtils", "copy", "(Reader,OutputStream,String)", "generated"]
+      - ["org.apache.commons.io", "IOUtils", "copy", "(URL,File)", "generated"]
+      - ["org.apache.commons.io", "IOUtils", "copy", "(URL,OutputStream)", "generated"]
+      - ["org.apache.commons.io", "IOUtils", "length", "(CharSequence)", "generated"]
+      - ["org.apache.commons.io", "IOUtils", "length", "(Object[])", "generated"]
+      - ["org.apache.commons.io", "IOUtils", "length", "(byte[])", "generated"]
+      - ["org.apache.commons.io", "IOUtils", "length", "(char[])", "generated"]
+      - ["org.apache.commons.io", "IOUtils", "resourceToByteArray", "(String)", "generated"]
+      - ["org.apache.commons.io", "IOUtils", "resourceToByteArray", "(String,ClassLoader)", "generated"]
+      - ["org.apache.commons.io", "IOUtils", "resourceToString", "(String,Charset)", "generated"]
+      - ["org.apache.commons.io", "IOUtils", "resourceToString", "(String,Charset,ClassLoader)", "generated"]
+      - ["org.apache.commons.io", "IOUtils", "resourceToURL", "(String)", "generated"]
+      - ["org.apache.commons.io", "IOUtils", "resourceToURL", "(String,ClassLoader)", "generated"]
+      - ["org.apache.commons.io", "IOUtils", "skip", "(InputStream,long)", "generated"]
+      - ["org.apache.commons.io", "IOUtils", "skip", "(ReadableByteChannel,long)", "generated"]
+      - ["org.apache.commons.io", "IOUtils", "skip", "(Reader,long)", "generated"]
+      - ["org.apache.commons.io", "IOUtils", "skipFully", "(InputStream,long)", "generated"]
+      - ["org.apache.commons.io", "IOUtils", "skipFully", "(ReadableByteChannel,long)", "generated"]
+      - ["org.apache.commons.io", "IOUtils", "skipFully", "(Reader,long)", "generated"]
+      - ["org.apache.commons.io", "IOUtils", "toBufferedInputStream", "(InputStream)", "generated"]
+      - ["org.apache.commons.io", "IOUtils", "toBufferedInputStream", "(InputStream,int)", "generated"]
+      - ["org.apache.commons.io", "IOUtils", "toByteArray", "(InputStream)", "generated"]
+      - ["org.apache.commons.io", "IOUtils", "toByteArray", "(Reader)", "generated"]
+      - ["org.apache.commons.io", "IOUtils", "toByteArray", "(Reader,Charset)", "generated"]
+      - ["org.apache.commons.io", "IOUtils", "toByteArray", "(Reader,String)", "generated"]
+      - ["org.apache.commons.io", "IOUtils", "toByteArray", "(URI)", "generated"]
+      - ["org.apache.commons.io", "IOUtils", "toByteArray", "(URL)", "generated"]
+      - ["org.apache.commons.io", "IOUtils", "toByteArray", "(URLConnection)", "generated"]
+      - ["org.apache.commons.io", "IOUtils", "toString", "(URI)", "generated"]
+      - ["org.apache.commons.io", "IOUtils", "toString", "(URI,Charset)", "generated"]
+      - ["org.apache.commons.io", "IOUtils", "toString", "(URI,String)", "generated"]
+      - ["org.apache.commons.io", "IOUtils", "toString", "(URL)", "generated"]
+      - ["org.apache.commons.io", "IOUtils", "toString", "(URL,Charset)", "generated"]
+      - ["org.apache.commons.io", "IOUtils", "toString", "(URL,String)", "generated"]
+      - ["org.apache.commons.io", "IOUtils", "write", "(CharSequence,OutputStream)", "generated"]
+      - ["org.apache.commons.io", "IOUtils", "write", "(CharSequence,OutputStream,Charset)", "generated"]
+      - ["org.apache.commons.io", "IOUtils", "write", "(CharSequence,OutputStream,String)", "generated"]
+      - ["org.apache.commons.io", "IOUtils", "write", "(String,OutputStream)", "generated"]
+      - ["org.apache.commons.io", "IOUtils", "write", "(String,OutputStream,Charset)", "generated"]
+      - ["org.apache.commons.io", "IOUtils", "write", "(String,OutputStream,String)", "generated"]
+      - ["org.apache.commons.io", "IOUtils", "write", "(StringBuffer,OutputStream)", "generated"]
+      - ["org.apache.commons.io", "IOUtils", "write", "(StringBuffer,OutputStream,String)", "generated"]
+      - ["org.apache.commons.io", "IOUtils", "write", "(char[],OutputStream)", "generated"]
+      - ["org.apache.commons.io", "IOUtils", "write", "(char[],OutputStream,Charset)", "generated"]
+      - ["org.apache.commons.io", "IOUtils", "write", "(char[],OutputStream,String)", "generated"]
+      - ["org.apache.commons.io", "LineIterator", "closeQuietly", "(LineIterator)", "generated"]
+      - ["org.apache.commons.io", "RandomAccessFileMode", "create", "(File)", "generated"]
+      - ["org.apache.commons.io", "RandomAccessFileMode", "create", "(Path)", "generated"]
+      - ["org.apache.commons.io", "RandomAccessFileMode", "create", "(String)", "generated"]
+      - ["org.apache.commons.io", "RandomAccessFileMode", "toString", "()", "generated"]
+      - ["org.apache.commons.io", "StandardLineSeparator", "getBytes", "(Charset)", "generated"]
+      - ["org.apache.commons.io", "StandardLineSeparator", "getString", "()", "generated"]
+      - ["org.apache.commons.io", "TaggedIOException", "isTaggedWith", "(Throwable,Object)", "generated"]
+      - ["org.apache.commons.io", "TaggedIOException", "throwCauseIfTaggedWith", "(Throwable,Object)", "generated"]
+      - ["org.apache.commons.io", "UncheckedIO", "UncheckedIO", "()", "generated"]
+      - ["org.apache.commons.io", "UncheckedIO", "accept", "(IOConsumer,Object)", "generated"]
+      - ["org.apache.commons.io", "UncheckedIO", "apply", "(IOBiFunction,Object,Object)", "generated"]
+      - ["org.apache.commons.io", "UncheckedIO", "get", "(IOSupplier)", "generated"]
+      - ["org.apache.commons.io", "UncheckedIO", "run", "(IORunnable)", "generated"]
+      - ["org.apache.commons.io", "UncheckedIOExceptions", "UncheckedIOExceptions", "()", "generated"]
+      - ["org.apache.commons.io", "UncheckedIOExceptions", "create", "(Object)", "generated"]
+      - ["org.apache.commons.io", "UncheckedIOExceptions", "wrap", "(IOException,Object)", "generated"]
+
+        
\ No newline at end of file
diff --git a/java/ql/lib/semmle/code/java/dataflow/internal/NegativeSummary.qll b/java/ql/lib/semmle/code/java/dataflow/internal/NegativeSummary.qll
deleted file mode 100644
index e7b6b7b8838..00000000000
--- a/java/ql/lib/semmle/code/java/dataflow/internal/NegativeSummary.qll
+++ /dev/null
@@ -1,9 +0,0 @@
-/** Provides modules for importing negative summaries. */
-
-/**
- * A module importing the frameworks that provide external flow data,
- * ensuring that they are visible to the taint tracking / data flow library.
- */
-private module Frameworks {
-  private import semmle.code.java.frameworks.GeneratedNegative
-}
diff --git a/java/ql/lib/semmle/code/java/frameworks/GeneratedNegative.qll b/java/ql/lib/semmle/code/java/frameworks/GeneratedNegative.qll
deleted file mode 100644
index c12c6c3be16..00000000000
--- a/java/ql/lib/semmle/code/java/frameworks/GeneratedNegative.qll
+++ /dev/null
@@ -1,8 +0,0 @@
-/** Provides a module for importing negative models. */
-
-/**
- * A module importing all generated negative Models as Data models.
- */
-private module GeneratedFrameworks {
-  private import apache.NegativeIOGenerated
-}
diff --git a/java/ql/lib/semmle/code/java/frameworks/apache/IOGenerated.qll b/java/ql/lib/semmle/code/java/frameworks/apache/IOGenerated.qll
deleted file mode 100644
index db1ed1bea58..00000000000
--- a/java/ql/lib/semmle/code/java/frameworks/apache/IOGenerated.qll
+++ /dev/null
@@ -1,684 +0,0 @@
-/**
- * THIS FILE IS AN AUTO-GENERATED MODELS AS DATA FILE. DO NOT EDIT.
- * Definitions of taint steps in the IOGenerated framework.
- */
-
-import java
-private import semmle.code.java.dataflow.ExternalFlow
-
-private class IOGeneratedSinksCsv extends SinkModelCsv {
-  override predicate row(string row) {
-    row =
-      [
-        "org.apache.commons.io.file;PathFilter;true;accept;(Path,BasicFileAttributes);;Argument[0];create-file;generated",
-        "org.apache.commons.io.file;PathUtils;false;copyFile;(URL,Path,CopyOption[]);;Argument[0];open-url;generated",
-        "org.apache.commons.io.file;PathUtils;false;copyFile;(URL,Path,CopyOption[]);;Argument[1];create-file;generated",
-        "org.apache.commons.io.file;PathUtils;false;copyFileToDirectory;(Path,Path,CopyOption[]);;Argument[1];create-file;generated",
-        "org.apache.commons.io.file;PathUtils;false;copyFileToDirectory;(URL,Path,CopyOption[]);;Argument[0];open-url;generated",
-        "org.apache.commons.io.file;PathUtils;false;copyFileToDirectory;(URL,Path,CopyOption[]);;Argument[1];create-file;generated",
-        "org.apache.commons.io.file;PathUtils;false;newOutputStream;(Path,boolean);;Argument[0];create-file;generated",
-        "org.apache.commons.io.file;PathUtils;false;writeString;(Path,CharSequence,Charset,OpenOption[]);;Argument[0];create-file;generated",
-        "org.apache.commons.io.filefilter;FileFilterUtils;true;filter;(IOFileFilter,File[]);;Argument[1];create-file;generated",
-        "org.apache.commons.io.filefilter;FileFilterUtils;true;filterList;(IOFileFilter,File[]);;Argument[1];create-file;generated",
-        "org.apache.commons.io.filefilter;FileFilterUtils;true;filterSet;(IOFileFilter,File[]);;Argument[1];create-file;generated",
-        "org.apache.commons.io.input;Tailer$Tailable;true;getRandomAccess;(String);;Argument[-1];create-file;generated",
-        "org.apache.commons.io.input;XmlStreamReader;true;XmlStreamReader;(URL);;Argument[0];open-url;generated",
-        "org.apache.commons.io.output;DeferredFileOutputStream;true;writeTo;(OutputStream);;Argument[0];create-file;generated",
-        "org.apache.commons.io.output;FileWriterWithEncoding;true;FileWriterWithEncoding;(File,Charset);;Argument[0];create-file;generated",
-        "org.apache.commons.io.output;FileWriterWithEncoding;true;FileWriterWithEncoding;(File,Charset,boolean);;Argument[0];create-file;generated",
-        "org.apache.commons.io.output;FileWriterWithEncoding;true;FileWriterWithEncoding;(File,CharsetEncoder);;Argument[0];create-file;generated",
-        "org.apache.commons.io.output;FileWriterWithEncoding;true;FileWriterWithEncoding;(File,CharsetEncoder,boolean);;Argument[0];create-file;generated",
-        "org.apache.commons.io.output;FileWriterWithEncoding;true;FileWriterWithEncoding;(File,String);;Argument[0];create-file;generated",
-        "org.apache.commons.io.output;FileWriterWithEncoding;true;FileWriterWithEncoding;(File,String,boolean);;Argument[0];create-file;generated",
-        "org.apache.commons.io.output;FileWriterWithEncoding;true;FileWriterWithEncoding;(String,Charset);;Argument[0];create-file;generated",
-        "org.apache.commons.io.output;FileWriterWithEncoding;true;FileWriterWithEncoding;(String,Charset,boolean);;Argument[0];create-file;generated",
-        "org.apache.commons.io.output;FileWriterWithEncoding;true;FileWriterWithEncoding;(String,CharsetEncoder);;Argument[0];create-file;generated",
-        "org.apache.commons.io.output;FileWriterWithEncoding;true;FileWriterWithEncoding;(String,CharsetEncoder,boolean);;Argument[0];create-file;generated",
-        "org.apache.commons.io.output;FileWriterWithEncoding;true;FileWriterWithEncoding;(String,String);;Argument[0];create-file;generated",
-        "org.apache.commons.io.output;FileWriterWithEncoding;true;FileWriterWithEncoding;(String,String,boolean);;Argument[0];create-file;generated",
-        "org.apache.commons.io.output;LockableFileWriter;true;LockableFileWriter;(File);;Argument[0];create-file;generated",
-        "org.apache.commons.io.output;LockableFileWriter;true;LockableFileWriter;(File,Charset);;Argument[0];create-file;generated",
-        "org.apache.commons.io.output;LockableFileWriter;true;LockableFileWriter;(File,Charset,boolean,String);;Argument[0];create-file;generated",
-        "org.apache.commons.io.output;LockableFileWriter;true;LockableFileWriter;(File,String);;Argument[0];create-file;generated",
-        "org.apache.commons.io.output;LockableFileWriter;true;LockableFileWriter;(File,String,boolean,String);;Argument[0];create-file;generated",
-        "org.apache.commons.io.output;LockableFileWriter;true;LockableFileWriter;(File,boolean);;Argument[0];create-file;generated",
-        "org.apache.commons.io.output;LockableFileWriter;true;LockableFileWriter;(File,boolean,String);;Argument[0];create-file;generated",
-        "org.apache.commons.io.output;LockableFileWriter;true;LockableFileWriter;(String);;Argument[0];create-file;generated",
-        "org.apache.commons.io.output;LockableFileWriter;true;LockableFileWriter;(String,boolean);;Argument[0];create-file;generated",
-        "org.apache.commons.io.output;LockableFileWriter;true;LockableFileWriter;(String,boolean,String);;Argument[0];create-file;generated",
-        "org.apache.commons.io.output;XmlStreamWriter;true;XmlStreamWriter;(File);;Argument[0];create-file;generated",
-        "org.apache.commons.io.output;XmlStreamWriter;true;XmlStreamWriter;(File,String);;Argument[0];create-file;generated",
-        "org.apache.commons.io;FileUtils;true;copyDirectory;(File,File);;Argument[1];create-file;generated",
-        "org.apache.commons.io;FileUtils;true;copyDirectory;(File,File,FileFilter);;Argument[1];create-file;generated",
-        "org.apache.commons.io;FileUtils;true;copyDirectory;(File,File,FileFilter,boolean);;Argument[1];create-file;generated",
-        "org.apache.commons.io;FileUtils;true;copyDirectory;(File,File,FileFilter,boolean,CopyOption[]);;Argument[1];create-file;generated",
-        "org.apache.commons.io;FileUtils;true;copyDirectory;(File,File,boolean);;Argument[1];create-file;generated",
-        "org.apache.commons.io;FileUtils;true;copyDirectoryToDirectory;(File,File);;Argument[1];create-file;generated",
-        "org.apache.commons.io;FileUtils;true;copyFile;(File,File);;Argument[1];create-file;generated",
-        "org.apache.commons.io;FileUtils;true;copyFile;(File,File,CopyOption[]);;Argument[1];create-file;generated",
-        "org.apache.commons.io;FileUtils;true;copyFile;(File,File,boolean);;Argument[1];create-file;generated",
-        "org.apache.commons.io;FileUtils;true;copyFile;(File,File,boolean,CopyOption[]);;Argument[1];create-file;generated",
-        "org.apache.commons.io;FileUtils;true;copyFileToDirectory;(File,File);;Argument[1];create-file;generated",
-        "org.apache.commons.io;FileUtils;true;copyFileToDirectory;(File,File,boolean);;Argument[1];create-file;generated",
-        "org.apache.commons.io;FileUtils;true;copyInputStreamToFile;(InputStream,File);;Argument[1];create-file;generated",
-        "org.apache.commons.io;FileUtils;true;copyToDirectory;(File,File);;Argument[1];create-file;generated",
-        "org.apache.commons.io;FileUtils;true;copyToDirectory;(Iterable,File);;Argument[1];create-file;generated",
-        "org.apache.commons.io;FileUtils;true;copyToFile;(InputStream,File);;Argument[1];create-file;generated",
-        "org.apache.commons.io;FileUtils;true;copyURLToFile;(URL,File);;Argument[0];open-url;generated",
-        "org.apache.commons.io;FileUtils;true;copyURLToFile;(URL,File);;Argument[1];create-file;generated",
-        "org.apache.commons.io;FileUtils;true;copyURLToFile;(URL,File,int,int);;Argument[0];open-url;generated",
-        "org.apache.commons.io;FileUtils;true;copyURLToFile;(URL,File,int,int);;Argument[1];create-file;generated",
-        "org.apache.commons.io;FileUtils;true;moveDirectory;(File,File);;Argument[1];create-file;generated",
-        "org.apache.commons.io;FileUtils;true;moveDirectoryToDirectory;(File,File,boolean);;Argument[1];create-file;generated",
-        "org.apache.commons.io;FileUtils;true;moveFile;(File,File);;Argument[1];create-file;generated",
-        "org.apache.commons.io;FileUtils;true;moveFile;(File,File,CopyOption[]);;Argument[1];create-file;generated",
-        "org.apache.commons.io;FileUtils;true;moveFileToDirectory;(File,File,boolean);;Argument[1];create-file;generated",
-        "org.apache.commons.io;FileUtils;true;moveToDirectory;(File,File,boolean);;Argument[1];create-file;generated",
-        "org.apache.commons.io;FileUtils;true;newOutputStream;(File,boolean);;Argument[0];create-file;generated",
-        "org.apache.commons.io;FileUtils;true;openOutputStream;(File);;Argument[0];create-file;generated",
-        "org.apache.commons.io;FileUtils;true;openOutputStream;(File,boolean);;Argument[0];create-file;generated",
-        "org.apache.commons.io;FileUtils;true;touch;(File);;Argument[0];create-file;generated",
-        "org.apache.commons.io;FileUtils;true;write;(File,CharSequence);;Argument[0];create-file;generated",
-        "org.apache.commons.io;FileUtils;true;write;(File,CharSequence,Charset);;Argument[0];create-file;generated",
-        "org.apache.commons.io;FileUtils;true;write;(File,CharSequence,Charset,boolean);;Argument[0];create-file;generated",
-        "org.apache.commons.io;FileUtils;true;write;(File,CharSequence,String);;Argument[0];create-file;generated",
-        "org.apache.commons.io;FileUtils;true;write;(File,CharSequence,String,boolean);;Argument[0];create-file;generated",
-        "org.apache.commons.io;FileUtils;true;write;(File,CharSequence,boolean);;Argument[0];create-file;generated",
-        "org.apache.commons.io;FileUtils;true;writeByteArrayToFile;(File,byte[]);;Argument[0];create-file;generated",
-        "org.apache.commons.io;FileUtils;true;writeByteArrayToFile;(File,byte[],boolean);;Argument[0];create-file;generated",
-        "org.apache.commons.io;FileUtils;true;writeByteArrayToFile;(File,byte[],int,int);;Argument[0];create-file;generated",
-        "org.apache.commons.io;FileUtils;true;writeByteArrayToFile;(File,byte[],int,int,boolean);;Argument[0];create-file;generated",
-        "org.apache.commons.io;FileUtils;true;writeLines;(File,Collection);;Argument[0];create-file;generated",
-        "org.apache.commons.io;FileUtils;true;writeLines;(File,Collection,String);;Argument[0];create-file;generated",
-        "org.apache.commons.io;FileUtils;true;writeLines;(File,Collection,String,boolean);;Argument[0];create-file;generated",
-        "org.apache.commons.io;FileUtils;true;writeLines;(File,Collection,boolean);;Argument[0];create-file;generated",
-        "org.apache.commons.io;FileUtils;true;writeLines;(File,String,Collection);;Argument[0];create-file;generated",
-        "org.apache.commons.io;FileUtils;true;writeLines;(File,String,Collection,String);;Argument[0];create-file;generated",
-        "org.apache.commons.io;FileUtils;true;writeLines;(File,String,Collection,String,boolean);;Argument[0];create-file;generated",
-        "org.apache.commons.io;FileUtils;true;writeLines;(File,String,Collection,boolean);;Argument[0];create-file;generated",
-        "org.apache.commons.io;FileUtils;true;writeStringToFile;(File,String);;Argument[0];create-file;generated",
-        "org.apache.commons.io;FileUtils;true;writeStringToFile;(File,String,Charset);;Argument[0];create-file;generated",
-        "org.apache.commons.io;FileUtils;true;writeStringToFile;(File,String,Charset,boolean);;Argument[0];create-file;generated",
-        "org.apache.commons.io;FileUtils;true;writeStringToFile;(File,String,String);;Argument[0];create-file;generated",
-        "org.apache.commons.io;FileUtils;true;writeStringToFile;(File,String,String,boolean);;Argument[0];create-file;generated",
-        "org.apache.commons.io;FileUtils;true;writeStringToFile;(File,String,boolean);;Argument[0];create-file;generated",
-        "org.apache.commons.io;IOUtils;true;copy;(URL,File);;Argument[0];open-url;generated",
-        "org.apache.commons.io;IOUtils;true;copy;(URL,File);;Argument[1];create-file;generated",
-        "org.apache.commons.io;IOUtils;true;copy;(URL,OutputStream);;Argument[0];open-url;generated",
-        "org.apache.commons.io;IOUtils;true;toByteArray;(URI);;Argument[0];open-url;generated",
-        "org.apache.commons.io;IOUtils;true;toByteArray;(URL);;Argument[0];open-url;generated",
-        "org.apache.commons.io;IOUtils;true;toString;(URI);;Argument[0];open-url;generated",
-        "org.apache.commons.io;IOUtils;true;toString;(URI,Charset);;Argument[0];open-url;generated",
-        "org.apache.commons.io;IOUtils;true;toString;(URI,String);;Argument[0];open-url;generated",
-        "org.apache.commons.io;IOUtils;true;toString;(URL);;Argument[0];open-url;generated",
-        "org.apache.commons.io;IOUtils;true;toString;(URL,Charset);;Argument[0];open-url;generated",
-        "org.apache.commons.io;IOUtils;true;toString;(URL,String);;Argument[0];open-url;generated",
-        "org.apache.commons.io;RandomAccessFileMode;false;create;(File);;Argument[0];create-file;generated",
-        "org.apache.commons.io;RandomAccessFileMode;false;create;(Path);;Argument[0];create-file;generated",
-        "org.apache.commons.io;RandomAccessFileMode;false;create;(String);;Argument[0];create-file;generated"
-      ]
-  }
-}
-
-private class IOGeneratedSummaryCsv extends SummaryModelCsv {
-  override predicate row(string row) {
-    row =
-      [
-        "org.apache.commons.io.charset;CharsetDecoders;true;toCharsetDecoder;(CharsetDecoder);;Argument[0];ReturnValue;taint;generated",
-        "org.apache.commons.io.charset;CharsetEncoders;true;toCharsetEncoder;(CharsetEncoder);;Argument[0];ReturnValue;taint;generated",
-        "org.apache.commons.io.comparator;CompositeFileComparator;true;CompositeFileComparator;(Comparator[]);;Argument[0].ArrayElement;Argument[-1];taint;generated",
-        "org.apache.commons.io.comparator;CompositeFileComparator;true;CompositeFileComparator;(Iterable);;Argument[0].Element;Argument[-1];taint;generated",
-        "org.apache.commons.io.comparator;CompositeFileComparator;true;toString;();;Argument[-1];ReturnValue;taint;generated",
-        "org.apache.commons.io.file.spi;FileSystemProviders;true;getFileSystemProvider;(String);;Argument[-1];ReturnValue;taint;generated",
-        "org.apache.commons.io.file.spi;FileSystemProviders;true;getFileSystemProvider;(URI);;Argument[-1];ReturnValue;taint;generated",
-        "org.apache.commons.io.file.spi;FileSystemProviders;true;getFileSystemProvider;(URL);;Argument[-1];ReturnValue;taint;generated",
-        "org.apache.commons.io.file;AccumulatorPathVisitor;true;AccumulatorPathVisitor;(PathCounters);;Argument[0];Argument[-1];taint;generated",
-        "org.apache.commons.io.file;AccumulatorPathVisitor;true;AccumulatorPathVisitor;(PathCounters,PathFilter,PathFilter);;Argument[0];Argument[-1];taint;generated",
-        "org.apache.commons.io.file;AccumulatorPathVisitor;true;AccumulatorPathVisitor;(PathCounters,PathFilter,PathFilter);;Argument[1];Argument[-1];taint;generated",
-        "org.apache.commons.io.file;AccumulatorPathVisitor;true;AccumulatorPathVisitor;(PathCounters,PathFilter,PathFilter);;Argument[2];Argument[-1];taint;generated",
-        "org.apache.commons.io.file;AccumulatorPathVisitor;true;getDirList;();;Argument[-1];ReturnValue;taint;generated",
-        "org.apache.commons.io.file;AccumulatorPathVisitor;true;getFileList;();;Argument[-1];ReturnValue;taint;generated",
-        "org.apache.commons.io.file;AccumulatorPathVisitor;true;withBigIntegerCounters;(PathFilter,PathFilter);;Argument[0];ReturnValue;taint;generated",
-        "org.apache.commons.io.file;AccumulatorPathVisitor;true;withBigIntegerCounters;(PathFilter,PathFilter);;Argument[1];ReturnValue;taint;generated",
-        "org.apache.commons.io.file;AccumulatorPathVisitor;true;withLongCounters;(PathFilter,PathFilter);;Argument[0];ReturnValue;taint;generated",
-        "org.apache.commons.io.file;AccumulatorPathVisitor;true;withLongCounters;(PathFilter,PathFilter);;Argument[1];ReturnValue;taint;generated",
-        "org.apache.commons.io.file;CleaningPathVisitor;true;CleaningPathVisitor;(PathCounters,DeleteOption[],String[]);;Argument[0];Argument[-1];taint;generated",
-        "org.apache.commons.io.file;CleaningPathVisitor;true;CleaningPathVisitor;(PathCounters,DeleteOption[],String[]);;Argument[2].ArrayElement;Argument[-1];taint;generated",
-        "org.apache.commons.io.file;CleaningPathVisitor;true;CleaningPathVisitor;(PathCounters,String[]);;Argument[0];Argument[-1];taint;generated",
-        "org.apache.commons.io.file;CleaningPathVisitor;true;CleaningPathVisitor;(PathCounters,String[]);;Argument[1].ArrayElement;Argument[-1];taint;generated",
-        "org.apache.commons.io.file;CopyDirectoryVisitor;true;CopyDirectoryVisitor;(PathCounters,Path,Path,CopyOption[]);;Argument[0];Argument[-1];taint;generated",
-        "org.apache.commons.io.file;CopyDirectoryVisitor;true;CopyDirectoryVisitor;(PathCounters,Path,Path,CopyOption[]);;Argument[1].Element;Argument[-1];taint;generated",
-        "org.apache.commons.io.file;CopyDirectoryVisitor;true;CopyDirectoryVisitor;(PathCounters,Path,Path,CopyOption[]);;Argument[2].Element;Argument[-1];taint;generated",
-        "org.apache.commons.io.file;CopyDirectoryVisitor;true;CopyDirectoryVisitor;(PathCounters,Path,Path,CopyOption[]);;Argument[3].ArrayElement;Argument[-1];taint;generated",
-        "org.apache.commons.io.file;CopyDirectoryVisitor;true;CopyDirectoryVisitor;(PathCounters,PathFilter,PathFilter,Path,Path,CopyOption[]);;Argument[0];Argument[-1];taint;generated",
-        "org.apache.commons.io.file;CopyDirectoryVisitor;true;CopyDirectoryVisitor;(PathCounters,PathFilter,PathFilter,Path,Path,CopyOption[]);;Argument[1];Argument[-1];taint;generated",
-        "org.apache.commons.io.file;CopyDirectoryVisitor;true;CopyDirectoryVisitor;(PathCounters,PathFilter,PathFilter,Path,Path,CopyOption[]);;Argument[2];Argument[-1];taint;generated",
-        "org.apache.commons.io.file;CopyDirectoryVisitor;true;CopyDirectoryVisitor;(PathCounters,PathFilter,PathFilter,Path,Path,CopyOption[]);;Argument[3].Element;Argument[-1];taint;generated",
-        "org.apache.commons.io.file;CopyDirectoryVisitor;true;CopyDirectoryVisitor;(PathCounters,PathFilter,PathFilter,Path,Path,CopyOption[]);;Argument[4].Element;Argument[-1];taint;generated",
-        "org.apache.commons.io.file;CopyDirectoryVisitor;true;CopyDirectoryVisitor;(PathCounters,PathFilter,PathFilter,Path,Path,CopyOption[]);;Argument[5].ArrayElement;Argument[-1];taint;generated",
-        "org.apache.commons.io.file;CopyDirectoryVisitor;true;getCopyOptions;();;Argument[-1];ReturnValue;taint;generated",
-        "org.apache.commons.io.file;CopyDirectoryVisitor;true;getSourceDirectory;();;Argument[-1];ReturnValue;taint;generated",
-        "org.apache.commons.io.file;CopyDirectoryVisitor;true;getTargetDirectory;();;Argument[-1];ReturnValue;taint;generated",
-        "org.apache.commons.io.file;Counters$PathCounters;true;getByteCounter;();;Argument[-1];ReturnValue;taint;generated",
-        "org.apache.commons.io.file;Counters$PathCounters;true;getDirectoryCounter;();;Argument[-1];ReturnValue;taint;generated",
-        "org.apache.commons.io.file;Counters$PathCounters;true;getFileCounter;();;Argument[-1];ReturnValue;taint;generated",
-        "org.apache.commons.io.file;CountingPathVisitor;true;CountingPathVisitor;(PathCounters);;Argument[0];Argument[-1];taint;generated",
-        "org.apache.commons.io.file;CountingPathVisitor;true;CountingPathVisitor;(PathCounters,PathFilter,PathFilter);;Argument[0];Argument[-1];taint;generated",
-        "org.apache.commons.io.file;CountingPathVisitor;true;CountingPathVisitor;(PathCounters,PathFilter,PathFilter);;Argument[1];Argument[-1];taint;generated",
-        "org.apache.commons.io.file;CountingPathVisitor;true;CountingPathVisitor;(PathCounters,PathFilter,PathFilter);;Argument[2];Argument[-1];taint;generated",
-        "org.apache.commons.io.file;CountingPathVisitor;true;getPathCounters;();;Argument[-1];ReturnValue;taint;generated",
-        "org.apache.commons.io.file;DeletingPathVisitor;true;DeletingPathVisitor;(PathCounters,DeleteOption[],String[]);;Argument[0];Argument[-1];taint;generated",
-        "org.apache.commons.io.file;DeletingPathVisitor;true;DeletingPathVisitor;(PathCounters,DeleteOption[],String[]);;Argument[2].ArrayElement;Argument[-1];taint;generated",
-        "org.apache.commons.io.file;DeletingPathVisitor;true;DeletingPathVisitor;(PathCounters,LinkOption[],DeleteOption[],String[]);;Argument[0];Argument[-1];taint;generated",
-        "org.apache.commons.io.file;DeletingPathVisitor;true;DeletingPathVisitor;(PathCounters,LinkOption[],DeleteOption[],String[]);;Argument[1].ArrayElement;Argument[-1];taint;generated",
-        "org.apache.commons.io.file;DeletingPathVisitor;true;DeletingPathVisitor;(PathCounters,LinkOption[],DeleteOption[],String[]);;Argument[3].ArrayElement;Argument[-1];taint;generated",
-        "org.apache.commons.io.file;DeletingPathVisitor;true;DeletingPathVisitor;(PathCounters,String[]);;Argument[0];Argument[-1];taint;generated",
-        "org.apache.commons.io.file;DeletingPathVisitor;true;DeletingPathVisitor;(PathCounters,String[]);;Argument[1].ArrayElement;Argument[-1];taint;generated",
-        "org.apache.commons.io.file;DirectoryStreamFilter;true;DirectoryStreamFilter;(PathFilter);;Argument[0];Argument[-1];taint;generated",
-        "org.apache.commons.io.file;DirectoryStreamFilter;true;getPathFilter;();;Argument[-1];ReturnValue;taint;generated",
-        "org.apache.commons.io.file;PathUtils;false;copyFile;(URL,Path,CopyOption[]);;Argument[1].Element;ReturnValue;taint;generated",
-        "org.apache.commons.io.file;PathUtils;false;copyFileToDirectory;(URL,Path,CopyOption[]);;Argument[1].Element;ReturnValue;taint;generated",
-        "org.apache.commons.io.file;PathUtils;false;setReadOnly;(Path,boolean,LinkOption[]);;Argument[0].Element;ReturnValue;taint;generated",
-        "org.apache.commons.io.file;PathUtils;false;visitFileTree;(FileVisitor,Path);;Argument[0];ReturnValue;taint;generated",
-        "org.apache.commons.io.file;PathUtils;false;visitFileTree;(FileVisitor,Path,Set,int);;Argument[0];ReturnValue;taint;generated",
-        "org.apache.commons.io.file;PathUtils;false;visitFileTree;(FileVisitor,String,String[]);;Argument[0];ReturnValue;taint;generated",
-        "org.apache.commons.io.file;PathUtils;false;visitFileTree;(FileVisitor,URI);;Argument[0];ReturnValue;taint;generated",
-        "org.apache.commons.io.file;PathUtils;false;writeString;(Path,CharSequence,Charset,OpenOption[]);;Argument[0].Element;ReturnValue;taint;generated",
-        "org.apache.commons.io.filefilter;AgeFileFilter;true;AgeFileFilter;(Instant);;Argument[0];Argument[-1];taint;generated",
-        "org.apache.commons.io.filefilter;AgeFileFilter;true;AgeFileFilter;(Instant,boolean);;Argument[0];Argument[-1];taint;generated",
-        "org.apache.commons.io.filefilter;AgeFileFilter;true;toString;();;Argument[-1];ReturnValue;taint;generated",
-        "org.apache.commons.io.filefilter;AndFileFilter;true;AndFileFilter;(IOFileFilter,IOFileFilter);;Argument[0];Argument[-1];taint;generated",
-        "org.apache.commons.io.filefilter;AndFileFilter;true;AndFileFilter;(IOFileFilter,IOFileFilter);;Argument[1];Argument[-1];taint;generated",
-        "org.apache.commons.io.filefilter;AndFileFilter;true;AndFileFilter;(IOFileFilter[]);;Argument[0].ArrayElement;Argument[-1];taint;generated",
-        "org.apache.commons.io.filefilter;AndFileFilter;true;AndFileFilter;(List);;Argument[0].Element;Argument[-1];taint;generated",
-        "org.apache.commons.io.filefilter;AndFileFilter;true;addFileFilter;(IOFileFilter[]);;Argument[0].ArrayElement;Argument[-1];taint;generated",
-        "org.apache.commons.io.filefilter;AndFileFilter;true;toString;();;Argument[-1];ReturnValue;taint;generated",
-        "org.apache.commons.io.filefilter;ConditionalFileFilter;true;addFileFilter;(IOFileFilter);;Argument[0];Argument[-1];taint;generated",
-        "org.apache.commons.io.filefilter;ConditionalFileFilter;true;getFileFilters;();;Argument[-1];ReturnValue;taint;generated",
-        "org.apache.commons.io.filefilter;ConditionalFileFilter;true;setFileFilters;(List);;Argument[0].Element;Argument[-1];taint;generated",
-        "org.apache.commons.io.filefilter;DelegateFileFilter;true;DelegateFileFilter;(FileFilter);;Argument[0];Argument[-1];taint;generated",
-        "org.apache.commons.io.filefilter;DelegateFileFilter;true;DelegateFileFilter;(FilenameFilter);;Argument[0];Argument[-1];taint;generated",
-        "org.apache.commons.io.filefilter;DelegateFileFilter;true;toString;();;Argument[-1];ReturnValue;taint;generated",
-        "org.apache.commons.io.filefilter;FileEqualsFileFilter;true;FileEqualsFileFilter;(File);;Argument[0];Argument[-1];taint;generated",
-        "org.apache.commons.io.filefilter;FileFilterUtils;true;and;(IOFileFilter[]);;Argument[0].ArrayElement;ReturnValue;taint;generated",
-        "org.apache.commons.io.filefilter;FileFilterUtils;true;andFileFilter;(IOFileFilter,IOFileFilter);;Argument[0];ReturnValue;taint;generated",
-        "org.apache.commons.io.filefilter;FileFilterUtils;true;andFileFilter;(IOFileFilter,IOFileFilter);;Argument[1];ReturnValue;taint;generated",
-        "org.apache.commons.io.filefilter;FileFilterUtils;true;asFileFilter;(FileFilter);;Argument[0];ReturnValue;taint;generated",
-        "org.apache.commons.io.filefilter;FileFilterUtils;true;asFileFilter;(FilenameFilter);;Argument[0];ReturnValue;taint;generated",
-        "org.apache.commons.io.filefilter;FileFilterUtils;true;magicNumberFileFilter;(String);;Argument[0];ReturnValue;taint;generated",
-        "org.apache.commons.io.filefilter;FileFilterUtils;true;magicNumberFileFilter;(String,long);;Argument[0];ReturnValue;taint;generated",
-        "org.apache.commons.io.filefilter;FileFilterUtils;true;magicNumberFileFilter;(byte[]);;Argument[0];ReturnValue;taint;generated",
-        "org.apache.commons.io.filefilter;FileFilterUtils;true;magicNumberFileFilter;(byte[],long);;Argument[0];ReturnValue;taint;generated",
-        "org.apache.commons.io.filefilter;FileFilterUtils;true;makeCVSAware;(IOFileFilter);;Argument[0];ReturnValue;taint;generated",
-        "org.apache.commons.io.filefilter;FileFilterUtils;true;makeDirectoryOnly;(IOFileFilter);;Argument[0];ReturnValue;taint;generated",
-        "org.apache.commons.io.filefilter;FileFilterUtils;true;makeFileOnly;(IOFileFilter);;Argument[0];ReturnValue;taint;generated",
-        "org.apache.commons.io.filefilter;FileFilterUtils;true;makeSVNAware;(IOFileFilter);;Argument[0];ReturnValue;taint;generated",
-        "org.apache.commons.io.filefilter;FileFilterUtils;true;nameFileFilter;(String);;Argument[0];ReturnValue;taint;generated",
-        "org.apache.commons.io.filefilter;FileFilterUtils;true;nameFileFilter;(String,IOCase);;Argument[0];ReturnValue;taint;generated",
-        "org.apache.commons.io.filefilter;FileFilterUtils;true;notFileFilter;(IOFileFilter);;Argument[0];ReturnValue;taint;generated",
-        "org.apache.commons.io.filefilter;FileFilterUtils;true;or;(IOFileFilter[]);;Argument[0].ArrayElement;ReturnValue;taint;generated",
-        "org.apache.commons.io.filefilter;FileFilterUtils;true;orFileFilter;(IOFileFilter,IOFileFilter);;Argument[0];ReturnValue;taint;generated",
-        "org.apache.commons.io.filefilter;FileFilterUtils;true;orFileFilter;(IOFileFilter,IOFileFilter);;Argument[1];ReturnValue;taint;generated",
-        "org.apache.commons.io.filefilter;FileFilterUtils;true;prefixFileFilter;(String);;Argument[0];ReturnValue;taint;generated",
-        "org.apache.commons.io.filefilter;FileFilterUtils;true;prefixFileFilter;(String,IOCase);;Argument[0];ReturnValue;taint;generated",
-        "org.apache.commons.io.filefilter;FileFilterUtils;true;suffixFileFilter;(String);;Argument[0];ReturnValue;taint;generated",
-        "org.apache.commons.io.filefilter;FileFilterUtils;true;suffixFileFilter;(String,IOCase);;Argument[0];ReturnValue;taint;generated",
-        "org.apache.commons.io.filefilter;FileFilterUtils;true;toList;(IOFileFilter[]);;Argument[0].ArrayElement;ReturnValue;taint;generated",
-        "org.apache.commons.io.filefilter;IOFileFilter;true;and;(IOFileFilter);;Argument[-1];ReturnValue;taint;generated",
-        "org.apache.commons.io.filefilter;IOFileFilter;true;and;(IOFileFilter);;Argument[0];ReturnValue;taint;generated",
-        "org.apache.commons.io.filefilter;IOFileFilter;true;negate;();;Argument[-1];ReturnValue;taint;generated",
-        "org.apache.commons.io.filefilter;IOFileFilter;true;or;(IOFileFilter);;Argument[-1];ReturnValue;taint;generated",
-        "org.apache.commons.io.filefilter;IOFileFilter;true;or;(IOFileFilter);;Argument[0];ReturnValue;taint;generated",
-        "org.apache.commons.io.filefilter;MagicNumberFileFilter;true;MagicNumberFileFilter;(String);;Argument[0];Argument[-1];taint;generated",
-        "org.apache.commons.io.filefilter;MagicNumberFileFilter;true;MagicNumberFileFilter;(String,long);;Argument[0];Argument[-1];taint;generated",
-        "org.apache.commons.io.filefilter;MagicNumberFileFilter;true;MagicNumberFileFilter;(byte[]);;Argument[0];Argument[-1];taint;generated",
-        "org.apache.commons.io.filefilter;MagicNumberFileFilter;true;MagicNumberFileFilter;(byte[],long);;Argument[0];Argument[-1];taint;generated",
-        "org.apache.commons.io.filefilter;MagicNumberFileFilter;true;toString;();;Argument[-1];ReturnValue;taint;generated",
-        "org.apache.commons.io.filefilter;NameFileFilter;true;NameFileFilter;(List);;Argument[0].Element;Argument[-1];taint;generated",
-        "org.apache.commons.io.filefilter;NameFileFilter;true;NameFileFilter;(List,IOCase);;Argument[0].Element;Argument[-1];taint;generated",
-        "org.apache.commons.io.filefilter;NameFileFilter;true;NameFileFilter;(String);;Argument[0];Argument[-1];taint;generated",
-        "org.apache.commons.io.filefilter;NameFileFilter;true;NameFileFilter;(String,IOCase);;Argument[0];Argument[-1];taint;generated",
-        "org.apache.commons.io.filefilter;NameFileFilter;true;NameFileFilter;(String[]);;Argument[0].ArrayElement;Argument[-1];taint;generated",
-        "org.apache.commons.io.filefilter;NameFileFilter;true;NameFileFilter;(String[],IOCase);;Argument[0].ArrayElement;Argument[-1];taint;generated",
-        "org.apache.commons.io.filefilter;NameFileFilter;true;toString;();;Argument[-1];ReturnValue;taint;generated",
-        "org.apache.commons.io.filefilter;NotFileFilter;true;NotFileFilter;(IOFileFilter);;Argument[0];Argument[-1];taint;generated",
-        "org.apache.commons.io.filefilter;NotFileFilter;true;toString;();;Argument[-1];ReturnValue;taint;generated",
-        "org.apache.commons.io.filefilter;OrFileFilter;true;OrFileFilter;(IOFileFilter,IOFileFilter);;Argument[0];Argument[-1];taint;generated",
-        "org.apache.commons.io.filefilter;OrFileFilter;true;OrFileFilter;(IOFileFilter,IOFileFilter);;Argument[1];Argument[-1];taint;generated",
-        "org.apache.commons.io.filefilter;OrFileFilter;true;OrFileFilter;(IOFileFilter[]);;Argument[0].ArrayElement;Argument[-1];taint;generated",
-        "org.apache.commons.io.filefilter;OrFileFilter;true;OrFileFilter;(List);;Argument[0].Element;Argument[-1];taint;generated",
-        "org.apache.commons.io.filefilter;OrFileFilter;true;addFileFilter;(IOFileFilter[]);;Argument[0].ArrayElement;Argument[-1];taint;generated",
-        "org.apache.commons.io.filefilter;OrFileFilter;true;toString;();;Argument[-1];ReturnValue;taint;generated",
-        "org.apache.commons.io.filefilter;PathEqualsFileFilter;true;PathEqualsFileFilter;(Path);;Argument[0].Element;Argument[-1];taint;generated",
-        "org.apache.commons.io.filefilter;PathVisitorFileFilter;true;PathVisitorFileFilter;(PathVisitor);;Argument[0];Argument[-1];taint;generated",
-        "org.apache.commons.io.filefilter;PrefixFileFilter;true;PrefixFileFilter;(List);;Argument[0].Element;Argument[-1];taint;generated",
-        "org.apache.commons.io.filefilter;PrefixFileFilter;true;PrefixFileFilter;(List,IOCase);;Argument[0].Element;Argument[-1];taint;generated",
-        "org.apache.commons.io.filefilter;PrefixFileFilter;true;PrefixFileFilter;(String);;Argument[0];Argument[-1];taint;generated",
-        "org.apache.commons.io.filefilter;PrefixFileFilter;true;PrefixFileFilter;(String,IOCase);;Argument[0];Argument[-1];taint;generated",
-        "org.apache.commons.io.filefilter;PrefixFileFilter;true;PrefixFileFilter;(String[]);;Argument[0].ArrayElement;Argument[-1];taint;generated",
-        "org.apache.commons.io.filefilter;PrefixFileFilter;true;PrefixFileFilter;(String[],IOCase);;Argument[0].ArrayElement;Argument[-1];taint;generated",
-        "org.apache.commons.io.filefilter;PrefixFileFilter;true;toString;();;Argument[-1];ReturnValue;taint;generated",
-        "org.apache.commons.io.filefilter;RegexFileFilter;true;RegexFileFilter;(Pattern);;Argument[0];Argument[-1];taint;generated",
-        "org.apache.commons.io.filefilter;RegexFileFilter;true;RegexFileFilter;(Pattern,Function);;Argument[0];Argument[-1];taint;generated",
-        "org.apache.commons.io.filefilter;RegexFileFilter;true;RegexFileFilter;(Pattern,Function);;Argument[1];Argument[-1];taint;generated",
-        "org.apache.commons.io.filefilter;RegexFileFilter;true;toString;();;Argument[-1];ReturnValue;taint;generated",
-        "org.apache.commons.io.filefilter;SuffixFileFilter;true;SuffixFileFilter;(List);;Argument[0].Element;Argument[-1];taint;generated",
-        "org.apache.commons.io.filefilter;SuffixFileFilter;true;SuffixFileFilter;(List,IOCase);;Argument[0].Element;Argument[-1];taint;generated",
-        "org.apache.commons.io.filefilter;SuffixFileFilter;true;SuffixFileFilter;(String);;Argument[0];Argument[-1];taint;generated",
-        "org.apache.commons.io.filefilter;SuffixFileFilter;true;SuffixFileFilter;(String,IOCase);;Argument[0];Argument[-1];taint;generated",
-        "org.apache.commons.io.filefilter;SuffixFileFilter;true;SuffixFileFilter;(String[]);;Argument[0].ArrayElement;Argument[-1];taint;generated",
-        "org.apache.commons.io.filefilter;SuffixFileFilter;true;SuffixFileFilter;(String[],IOCase);;Argument[0].ArrayElement;Argument[-1];taint;generated",
-        "org.apache.commons.io.filefilter;SuffixFileFilter;true;toString;();;Argument[-1];ReturnValue;taint;generated",
-        "org.apache.commons.io.filefilter;WildcardFileFilter;true;WildcardFileFilter;(List);;Argument[0].Element;Argument[-1];taint;generated",
-        "org.apache.commons.io.filefilter;WildcardFileFilter;true;WildcardFileFilter;(List,IOCase);;Argument[0].Element;Argument[-1];taint;generated",
-        "org.apache.commons.io.filefilter;WildcardFileFilter;true;WildcardFileFilter;(String);;Argument[0];Argument[-1];taint;generated",
-        "org.apache.commons.io.filefilter;WildcardFileFilter;true;WildcardFileFilter;(String,IOCase);;Argument[0];Argument[-1];taint;generated",
-        "org.apache.commons.io.filefilter;WildcardFileFilter;true;WildcardFileFilter;(String[]);;Argument[0].ArrayElement;Argument[-1];taint;generated",
-        "org.apache.commons.io.filefilter;WildcardFileFilter;true;WildcardFileFilter;(String[],IOCase);;Argument[0].ArrayElement;Argument[-1];taint;generated",
-        "org.apache.commons.io.filefilter;WildcardFileFilter;true;toString;();;Argument[-1];ReturnValue;taint;generated",
-        "org.apache.commons.io.filefilter;WildcardFilter;true;WildcardFilter;(List);;Argument[0].Element;Argument[-1];taint;generated",
-        "org.apache.commons.io.filefilter;WildcardFilter;true;WildcardFilter;(String);;Argument[0];Argument[-1];taint;generated",
-        "org.apache.commons.io.filefilter;WildcardFilter;true;WildcardFilter;(String[]);;Argument[0].ArrayElement;Argument[-1];taint;generated",
-        "org.apache.commons.io.input.buffer;CircularBufferInputStream;true;CircularBufferInputStream;(InputStream);;Argument[0];Argument[-1];taint;generated",
-        "org.apache.commons.io.input.buffer;CircularBufferInputStream;true;CircularBufferInputStream;(InputStream,int);;Argument[0];Argument[-1];taint;generated",
-        "org.apache.commons.io.input.buffer;PeekableInputStream;true;PeekableInputStream;(InputStream);;Argument[0];Argument[-1];taint;generated",
-        "org.apache.commons.io.input.buffer;PeekableInputStream;true;PeekableInputStream;(InputStream,int);;Argument[0];Argument[-1];taint;generated",
-        "org.apache.commons.io.input;BOMInputStream;true;BOMInputStream;(InputStream,ByteOrderMark[]);;Argument[1].ArrayElement;Argument[-1];taint;generated",
-        "org.apache.commons.io.input;BOMInputStream;true;BOMInputStream;(InputStream,boolean,ByteOrderMark[]);;Argument[2].ArrayElement;Argument[-1];taint;generated",
-        "org.apache.commons.io.input;BOMInputStream;true;getBOM;();;Argument[-1];ReturnValue;taint;generated",
-        "org.apache.commons.io.input;BOMInputStream;true;getBOMCharsetName;();;Argument[-1];ReturnValue;taint;generated",
-        "org.apache.commons.io.input;BoundedInputStream;true;BoundedInputStream;(InputStream);;Argument[0];Argument[-1];taint;generated",
-        "org.apache.commons.io.input;BoundedInputStream;true;BoundedInputStream;(InputStream,long);;Argument[0];Argument[-1];taint;generated",
-        "org.apache.commons.io.input;BoundedReader;true;BoundedReader;(Reader,int);;Argument[0];Argument[-1];taint;generated",
-        "org.apache.commons.io.input;BrokenInputStream;true;BrokenInputStream;(Supplier);;Argument[0];Argument[-1];taint;generated",
-        "org.apache.commons.io.input;BrokenReader;true;BrokenReader;(Supplier);;Argument[0];Argument[-1];taint;generated",
-        "org.apache.commons.io.input;CharSequenceReader;true;CharSequenceReader;(CharSequence);;Argument[0];Argument[-1];taint;generated",
-        "org.apache.commons.io.input;CharSequenceReader;true;CharSequenceReader;(CharSequence,int);;Argument[0];Argument[-1];taint;generated",
-        "org.apache.commons.io.input;CharSequenceReader;true;CharSequenceReader;(CharSequence,int,int);;Argument[0];Argument[-1];taint;generated",
-        "org.apache.commons.io.input;CharSequenceReader;true;toString;();;Argument[-1];ReturnValue;taint;generated",
-        "org.apache.commons.io.input;CharacterFilterReader;true;CharacterFilterReader;(Reader,IntPredicate);;Argument[1];Argument[-1];taint;generated",
-        "org.apache.commons.io.input;CircularInputStream;true;CircularInputStream;(byte[],long);;Argument[0];Argument[-1];taint;generated",
-        "org.apache.commons.io.input;ClassLoaderObjectInputStream;true;ClassLoaderObjectInputStream;(ClassLoader,InputStream);;Argument[0];Argument[-1];taint;generated",
-        "org.apache.commons.io.input;ClassLoaderObjectInputStream;true;ClassLoaderObjectInputStream;(ClassLoader,InputStream);;Argument[1];Argument[-1];taint;generated",
-        "org.apache.commons.io.input;CloseShieldInputStream;true;wrap;(InputStream);;Argument[0];ReturnValue;taint;generated",
-        "org.apache.commons.io.input;InfiniteCircularInputStream;true;InfiniteCircularInputStream;(byte[]);;Argument[0];Argument[-1];taint;generated",
-        "org.apache.commons.io.input;MessageDigestCalculatingInputStream$MessageDigestMaintainingObserver;true;MessageDigestMaintainingObserver;(MessageDigest);;Argument[0];Argument[-1];taint;generated",
-        "org.apache.commons.io.input;MessageDigestCalculatingInputStream;true;MessageDigestCalculatingInputStream;(InputStream,MessageDigest);;Argument[1];Argument[-1];taint;generated",
-        "org.apache.commons.io.input;MessageDigestCalculatingInputStream;true;getMessageDigest;();;Argument[-1];ReturnValue;taint;generated",
-        "org.apache.commons.io.input;ObservableInputStream;true;ObservableInputStream;(InputStream,Observer[]);;Argument[1].ArrayElement;Argument[-1];taint;generated",
-        "org.apache.commons.io.input;ObservableInputStream;true;add;(Observer);;Argument[0];Argument[-1];taint;generated",
-        "org.apache.commons.io.input;ObservableInputStream;true;getObservers;();;Argument[-1];ReturnValue;taint;generated",
-        "org.apache.commons.io.input;RandomAccessFileInputStream;true;RandomAccessFileInputStream;(RandomAccessFile);;Argument[0];Argument[-1];taint;generated",
-        "org.apache.commons.io.input;RandomAccessFileInputStream;true;RandomAccessFileInputStream;(RandomAccessFile,boolean);;Argument[0];Argument[-1];taint;generated",
-        "org.apache.commons.io.input;RandomAccessFileInputStream;true;getRandomAccessFile;();;Argument[-1];ReturnValue;taint;generated",
-        "org.apache.commons.io.input;ReadAheadInputStream;true;ReadAheadInputStream;(InputStream,int);;Argument[0];Argument[-1];taint;generated",
-        "org.apache.commons.io.input;ReadAheadInputStream;true;ReadAheadInputStream;(InputStream,int,ExecutorService);;Argument[0];Argument[-1];taint;generated",
-        "org.apache.commons.io.input;ReadAheadInputStream;true;ReadAheadInputStream;(InputStream,int,ExecutorService);;Argument[2];Argument[-1];taint;generated",
-        "org.apache.commons.io.input;ReaderInputStream;true;ReaderInputStream;(Reader);;Argument[0];Argument[-1];taint;generated",
-        "org.apache.commons.io.input;ReaderInputStream;true;ReaderInputStream;(Reader,Charset);;Argument[0];Argument[-1];taint;generated",
-        "org.apache.commons.io.input;ReaderInputStream;true;ReaderInputStream;(Reader,Charset,int);;Argument[0];Argument[-1];taint;generated",
-        "org.apache.commons.io.input;ReaderInputStream;true;ReaderInputStream;(Reader,CharsetEncoder);;Argument[0];Argument[-1];taint;generated",
-        "org.apache.commons.io.input;ReaderInputStream;true;ReaderInputStream;(Reader,CharsetEncoder);;Argument[1];Argument[-1];taint;generated",
-        "org.apache.commons.io.input;ReaderInputStream;true;ReaderInputStream;(Reader,CharsetEncoder,int);;Argument[0];Argument[-1];taint;generated",
-        "org.apache.commons.io.input;ReaderInputStream;true;ReaderInputStream;(Reader,CharsetEncoder,int);;Argument[1];Argument[-1];taint;generated",
-        "org.apache.commons.io.input;ReaderInputStream;true;ReaderInputStream;(Reader,String);;Argument[0];Argument[-1];taint;generated",
-        "org.apache.commons.io.input;ReaderInputStream;true;ReaderInputStream;(Reader,String,int);;Argument[0];Argument[-1];taint;generated",
-        "org.apache.commons.io.input;ReversedLinesFileReader;true;readLine;();;Argument[-1];ReturnValue;taint;generated",
-        "org.apache.commons.io.input;ReversedLinesFileReader;true;readLines;(int);;Argument[-1];ReturnValue;taint;generated",
-        "org.apache.commons.io.input;ReversedLinesFileReader;true;toString;(int);;Argument[-1];ReturnValue;taint;generated",
-        "org.apache.commons.io.input;SequenceReader;true;SequenceReader;(Iterable);;Argument[0].Element;Argument[-1];taint;generated",
-        "org.apache.commons.io.input;SequenceReader;true;SequenceReader;(Reader[]);;Argument[0].ArrayElement;Argument[-1];taint;generated",
-        "org.apache.commons.io.input;Tailer$Builder;true;Builder;(File,TailerListener);;Argument[0];Argument[-1];taint;generated",
-        "org.apache.commons.io.input;Tailer$Builder;true;Builder;(File,TailerListener);;Argument[1];Argument[-1];taint;generated",
-        "org.apache.commons.io.input;Tailer$Builder;true;Builder;(Path,TailerListener);;Argument[0].Element;Argument[-1];taint;generated",
-        "org.apache.commons.io.input;Tailer$Builder;true;Builder;(Path,TailerListener);;Argument[1];Argument[-1];taint;generated",
-        "org.apache.commons.io.input;Tailer$Builder;true;Builder;(Tailable,TailerListener);;Argument[0];Argument[-1];taint;generated",
-        "org.apache.commons.io.input;Tailer$Builder;true;Builder;(Tailable,TailerListener);;Argument[1];Argument[-1];taint;generated",
-        "org.apache.commons.io.input;Tailer$Builder;true;build;();;Argument[-1];ReturnValue;taint;generated",
-        "org.apache.commons.io.input;Tailer$Builder;true;withBufferSize;(int);;Argument[-1];ReturnValue;value;generated",
-        "org.apache.commons.io.input;Tailer$Builder;true;withCharset;(Charset);;Argument[-1];ReturnValue;value;generated",
-        "org.apache.commons.io.input;Tailer$Builder;true;withDelayDuration;(Duration);;Argument[-1];ReturnValue;value;generated",
-        "org.apache.commons.io.input;Tailer$Builder;true;withDelayDuration;(Duration);;Argument[0];Argument[-1];taint;generated",
-        "org.apache.commons.io.input;Tailer$Builder;true;withReOpen;(boolean);;Argument[-1];ReturnValue;value;generated",
-        "org.apache.commons.io.input;Tailer$Builder;true;withStartThread;(boolean);;Argument[-1];ReturnValue;value;generated",
-        "org.apache.commons.io.input;Tailer$Builder;true;withTailFromEnd;(boolean);;Argument[-1];ReturnValue;value;generated",
-        "org.apache.commons.io.input;Tailer;true;Tailer;(File,Charset,TailerListener,long,boolean,boolean,int);;Argument[0];Argument[-1];taint;generated",
-        "org.apache.commons.io.input;Tailer;true;Tailer;(File,Charset,TailerListener,long,boolean,boolean,int);;Argument[2];Argument[-1];taint;generated",
-        "org.apache.commons.io.input;Tailer;true;Tailer;(File,TailerListener);;Argument[0];Argument[-1];taint;generated",
-        "org.apache.commons.io.input;Tailer;true;Tailer;(File,TailerListener);;Argument[1];Argument[-1];taint;generated",
-        "org.apache.commons.io.input;Tailer;true;Tailer;(File,TailerListener,long);;Argument[0];Argument[-1];taint;generated",
-        "org.apache.commons.io.input;Tailer;true;Tailer;(File,TailerListener,long);;Argument[1];Argument[-1];taint;generated",
-        "org.apache.commons.io.input;Tailer;true;Tailer;(File,TailerListener,long,boolean);;Argument[0];Argument[-1];taint;generated",
-        "org.apache.commons.io.input;Tailer;true;Tailer;(File,TailerListener,long,boolean);;Argument[1];Argument[-1];taint;generated",
-        "org.apache.commons.io.input;Tailer;true;Tailer;(File,TailerListener,long,boolean,boolean);;Argument[0];Argument[-1];taint;generated",
-        "org.apache.commons.io.input;Tailer;true;Tailer;(File,TailerListener,long,boolean,boolean);;Argument[1];Argument[-1];taint;generated",
-        "org.apache.commons.io.input;Tailer;true;Tailer;(File,TailerListener,long,boolean,boolean,int);;Argument[0];Argument[-1];taint;generated",
-        "org.apache.commons.io.input;Tailer;true;Tailer;(File,TailerListener,long,boolean,boolean,int);;Argument[1];Argument[-1];taint;generated",
-        "org.apache.commons.io.input;Tailer;true;Tailer;(File,TailerListener,long,boolean,int);;Argument[0];Argument[-1];taint;generated",
-        "org.apache.commons.io.input;Tailer;true;Tailer;(File,TailerListener,long,boolean,int);;Argument[1];Argument[-1];taint;generated",
-        "org.apache.commons.io.input;Tailer;true;create;(File,Charset,TailerListener,long,boolean,boolean,int);;Argument[0];ReturnValue;taint;generated",
-        "org.apache.commons.io.input;Tailer;true;create;(File,Charset,TailerListener,long,boolean,boolean,int);;Argument[2];ReturnValue;taint;generated",
-        "org.apache.commons.io.input;Tailer;true;create;(File,TailerListener);;Argument[0];ReturnValue;taint;generated",
-        "org.apache.commons.io.input;Tailer;true;create;(File,TailerListener);;Argument[1];ReturnValue;taint;generated",
-        "org.apache.commons.io.input;Tailer;true;create;(File,TailerListener,long);;Argument[0];ReturnValue;taint;generated",
-        "org.apache.commons.io.input;Tailer;true;create;(File,TailerListener,long);;Argument[1];ReturnValue;taint;generated",
-        "org.apache.commons.io.input;Tailer;true;create;(File,TailerListener,long,boolean);;Argument[0];ReturnValue;taint;generated",
-        "org.apache.commons.io.input;Tailer;true;create;(File,TailerListener,long,boolean);;Argument[1];ReturnValue;taint;generated",
-        "org.apache.commons.io.input;Tailer;true;create;(File,TailerListener,long,boolean,boolean);;Argument[0];ReturnValue;taint;generated",
-        "org.apache.commons.io.input;Tailer;true;create;(File,TailerListener,long,boolean,boolean);;Argument[1];ReturnValue;taint;generated",
-        "org.apache.commons.io.input;Tailer;true;create;(File,TailerListener,long,boolean,boolean,int);;Argument[0];ReturnValue;taint;generated",
-        "org.apache.commons.io.input;Tailer;true;create;(File,TailerListener,long,boolean,boolean,int);;Argument[1];ReturnValue;taint;generated",
-        "org.apache.commons.io.input;Tailer;true;create;(File,TailerListener,long,boolean,int);;Argument[0];ReturnValue;taint;generated",
-        "org.apache.commons.io.input;Tailer;true;create;(File,TailerListener,long,boolean,int);;Argument[1];ReturnValue;taint;generated",
-        "org.apache.commons.io.input;Tailer;true;getDelayDuration;();;Argument[-1];ReturnValue;taint;generated",
-        "org.apache.commons.io.input;Tailer;true;getFile;();;Argument[-1];ReturnValue;taint;generated",
-        "org.apache.commons.io.input;Tailer;true;getTailable;();;Argument[-1];ReturnValue;taint;generated",
-        "org.apache.commons.io.input;TeeInputStream;true;TeeInputStream;(InputStream,OutputStream);;Argument[1];Argument[-1];taint;generated",
-        "org.apache.commons.io.input;TeeInputStream;true;TeeInputStream;(InputStream,OutputStream,boolean);;Argument[1];Argument[-1];taint;generated",
-        "org.apache.commons.io.input;TeeReader;true;TeeReader;(Reader,Writer);;Argument[1];Argument[-1];taint;generated",
-        "org.apache.commons.io.input;TeeReader;true;TeeReader;(Reader,Writer,boolean);;Argument[1];Argument[-1];taint;generated",
-        "org.apache.commons.io.input;TimestampedObserver;true;getCloseInstant;();;Argument[-1];ReturnValue;taint;generated",
-        "org.apache.commons.io.input;TimestampedObserver;true;getOpenInstant;();;Argument[-1];ReturnValue;taint;generated",
-        "org.apache.commons.io.input;TimestampedObserver;true;toString;();;Argument[-1];ReturnValue;taint;generated",
-        "org.apache.commons.io.input;UncheckedBufferedReader;true;UncheckedBufferedReader;(Reader);;Argument[0];Argument[-1];taint;generated",
-        "org.apache.commons.io.input;UncheckedBufferedReader;true;UncheckedBufferedReader;(Reader,int);;Argument[0];Argument[-1];taint;generated",
-        "org.apache.commons.io.input;UncheckedBufferedReader;true;on;(Reader);;Argument[0];ReturnValue;taint;generated",
-        "org.apache.commons.io.input;UncheckedFilterInputStream;true;on;(InputStream);;Argument[0];ReturnValue;taint;generated",
-        "org.apache.commons.io.input;UnixLineEndingInputStream;true;UnixLineEndingInputStream;(InputStream,boolean);;Argument[0];Argument[-1];taint;generated",
-        "org.apache.commons.io.input;UnsynchronizedByteArrayInputStream;true;UnsynchronizedByteArrayInputStream;(byte[]);;Argument[0];Argument[-1];taint;generated",
-        "org.apache.commons.io.input;UnsynchronizedByteArrayInputStream;true;UnsynchronizedByteArrayInputStream;(byte[],int);;Argument[0];Argument[-1];taint;generated",
-        "org.apache.commons.io.input;UnsynchronizedByteArrayInputStream;true;UnsynchronizedByteArrayInputStream;(byte[],int,int);;Argument[0];Argument[-1];taint;generated",
-        "org.apache.commons.io.input;WindowsLineEndingInputStream;true;WindowsLineEndingInputStream;(InputStream,boolean);;Argument[0];Argument[-1];taint;generated",
-        "org.apache.commons.io.input;XmlStreamReader;true;XmlStreamReader;(InputStream);;Argument[0];Argument[-1];taint;generated",
-        "org.apache.commons.io.input;XmlStreamReader;true;XmlStreamReader;(InputStream,String);;Argument[0];Argument[-1];taint;generated",
-        "org.apache.commons.io.input;XmlStreamReader;true;XmlStreamReader;(InputStream,String);;Argument[1];Argument[-1];taint;generated",
-        "org.apache.commons.io.input;XmlStreamReader;true;XmlStreamReader;(InputStream,String,boolean);;Argument[0];Argument[-1];taint;generated",
-        "org.apache.commons.io.input;XmlStreamReader;true;XmlStreamReader;(InputStream,String,boolean);;Argument[1];Argument[-1];taint;generated",
-        "org.apache.commons.io.input;XmlStreamReader;true;XmlStreamReader;(InputStream,String,boolean,String);;Argument[0];Argument[-1];taint;generated",
-        "org.apache.commons.io.input;XmlStreamReader;true;XmlStreamReader;(InputStream,String,boolean,String);;Argument[1];Argument[-1];taint;generated",
-        "org.apache.commons.io.input;XmlStreamReader;true;XmlStreamReader;(InputStream,String,boolean,String);;Argument[3];Argument[-1];taint;generated",
-        "org.apache.commons.io.input;XmlStreamReader;true;XmlStreamReader;(InputStream,boolean);;Argument[0];Argument[-1];taint;generated",
-        "org.apache.commons.io.input;XmlStreamReader;true;XmlStreamReader;(InputStream,boolean,String);;Argument[0];Argument[-1];taint;generated",
-        "org.apache.commons.io.input;XmlStreamReader;true;XmlStreamReader;(InputStream,boolean,String);;Argument[2];Argument[-1];taint;generated",
-        "org.apache.commons.io.input;XmlStreamReader;true;XmlStreamReader;(URLConnection,String);;Argument[1];Argument[-1];taint;generated",
-        "org.apache.commons.io.input;XmlStreamReader;true;getDefaultEncoding;();;Argument[-1];ReturnValue;taint;generated",
-        "org.apache.commons.io.input;XmlStreamReader;true;getEncoding;();;Argument[-1];ReturnValue;taint;generated",
-        "org.apache.commons.io.input;XmlStreamReaderException;true;XmlStreamReaderException;(String,String,String,String);;Argument[1];Argument[-1];taint;generated",
-        "org.apache.commons.io.input;XmlStreamReaderException;true;XmlStreamReaderException;(String,String,String,String);;Argument[2];Argument[-1];taint;generated",
-        "org.apache.commons.io.input;XmlStreamReaderException;true;XmlStreamReaderException;(String,String,String,String);;Argument[3];Argument[-1];taint;generated",
-        "org.apache.commons.io.input;XmlStreamReaderException;true;XmlStreamReaderException;(String,String,String,String,String,String);;Argument[1];Argument[-1];taint;generated",
-        "org.apache.commons.io.input;XmlStreamReaderException;true;XmlStreamReaderException;(String,String,String,String,String,String);;Argument[2];Argument[-1];taint;generated",
-        "org.apache.commons.io.input;XmlStreamReaderException;true;XmlStreamReaderException;(String,String,String,String,String,String);;Argument[3];Argument[-1];taint;generated",
-        "org.apache.commons.io.input;XmlStreamReaderException;true;XmlStreamReaderException;(String,String,String,String,String,String);;Argument[4];Argument[-1];taint;generated",
-        "org.apache.commons.io.input;XmlStreamReaderException;true;XmlStreamReaderException;(String,String,String,String,String,String);;Argument[5];Argument[-1];taint;generated",
-        "org.apache.commons.io.input;XmlStreamReaderException;true;getBomEncoding;();;Argument[-1];ReturnValue;taint;generated",
-        "org.apache.commons.io.input;XmlStreamReaderException;true;getContentTypeEncoding;();;Argument[-1];ReturnValue;taint;generated",
-        "org.apache.commons.io.input;XmlStreamReaderException;true;getContentTypeMime;();;Argument[-1];ReturnValue;taint;generated",
-        "org.apache.commons.io.input;XmlStreamReaderException;true;getXmlEncoding;();;Argument[-1];ReturnValue;taint;generated",
-        "org.apache.commons.io.input;XmlStreamReaderException;true;getXmlGuessEncoding;();;Argument[-1];ReturnValue;taint;generated",
-        "org.apache.commons.io.monitor;FileAlterationMonitor;false;FileAlterationMonitor;(long,Collection);;Argument[1].Element;Argument[-1];taint;generated",
-        "org.apache.commons.io.monitor;FileAlterationMonitor;false;FileAlterationMonitor;(long,FileAlterationObserver[]);;Argument[1].ArrayElement;Argument[-1];taint;generated",
-        "org.apache.commons.io.monitor;FileAlterationMonitor;false;addObserver;(FileAlterationObserver);;Argument[0];Argument[-1];taint;generated",
-        "org.apache.commons.io.monitor;FileAlterationMonitor;false;getObservers;();;Argument[-1];ReturnValue;taint;generated",
-        "org.apache.commons.io.monitor;FileAlterationMonitor;false;setThreadFactory;(ThreadFactory);;Argument[0];Argument[-1];taint;generated",
-        "org.apache.commons.io.monitor;FileAlterationObserver;true;FileAlterationObserver;(File);;Argument[0];Argument[-1];taint;generated",
-        "org.apache.commons.io.monitor;FileAlterationObserver;true;FileAlterationObserver;(File,FileFilter);;Argument[0];Argument[-1];taint;generated",
-        "org.apache.commons.io.monitor;FileAlterationObserver;true;FileAlterationObserver;(File,FileFilter);;Argument[1];Argument[-1];taint;generated",
-        "org.apache.commons.io.monitor;FileAlterationObserver;true;FileAlterationObserver;(File,FileFilter,IOCase);;Argument[0];Argument[-1];taint;generated",
-        "org.apache.commons.io.monitor;FileAlterationObserver;true;FileAlterationObserver;(File,FileFilter,IOCase);;Argument[1];Argument[-1];taint;generated",
-        "org.apache.commons.io.monitor;FileAlterationObserver;true;FileAlterationObserver;(String);;Argument[0];Argument[-1];taint;generated",
-        "org.apache.commons.io.monitor;FileAlterationObserver;true;FileAlterationObserver;(String,FileFilter);;Argument[0];Argument[-1];taint;generated",
-        "org.apache.commons.io.monitor;FileAlterationObserver;true;FileAlterationObserver;(String,FileFilter);;Argument[1];Argument[-1];taint;generated",
-        "org.apache.commons.io.monitor;FileAlterationObserver;true;FileAlterationObserver;(String,FileFilter,IOCase);;Argument[0];Argument[-1];taint;generated",
-        "org.apache.commons.io.monitor;FileAlterationObserver;true;FileAlterationObserver;(String,FileFilter,IOCase);;Argument[1];Argument[-1];taint;generated",
-        "org.apache.commons.io.monitor;FileAlterationObserver;true;addListener;(FileAlterationListener);;Argument[0];Argument[-1];taint;generated",
-        "org.apache.commons.io.monitor;FileAlterationObserver;true;getDirectory;();;Argument[-1];ReturnValue;taint;generated",
-        "org.apache.commons.io.monitor;FileAlterationObserver;true;getFileFilter;();;Argument[-1];ReturnValue;taint;generated",
-        "org.apache.commons.io.monitor;FileAlterationObserver;true;getListeners;();;Argument[-1];ReturnValue;taint;generated",
-        "org.apache.commons.io.monitor;FileAlterationObserver;true;toString;();;Argument[-1];ReturnValue;taint;generated",
-        "org.apache.commons.io.monitor;FileEntry;true;FileEntry;(File);;Argument[0];Argument[-1];taint;generated",
-        "org.apache.commons.io.monitor;FileEntry;true;FileEntry;(FileEntry,File);;Argument[0];Argument[-1];taint;generated",
-        "org.apache.commons.io.monitor;FileEntry;true;FileEntry;(FileEntry,File);;Argument[1];Argument[-1];taint;generated",
-        "org.apache.commons.io.monitor;FileEntry;true;getChildren;();;Argument[-1];ReturnValue;taint;generated",
-        "org.apache.commons.io.monitor;FileEntry;true;getFile;();;Argument[-1];ReturnValue;taint;generated",
-        "org.apache.commons.io.monitor;FileEntry;true;getLastModifiedFileTime;();;Argument[-1];ReturnValue;taint;generated",
-        "org.apache.commons.io.monitor;FileEntry;true;getName;();;Argument[-1];ReturnValue;taint;generated",
-        "org.apache.commons.io.monitor;FileEntry;true;getParent;();;Argument[-1];ReturnValue;taint;generated",
-        "org.apache.commons.io.monitor;FileEntry;true;newChildInstance;(File);;Argument[-1];ReturnValue;taint;generated",
-        "org.apache.commons.io.monitor;FileEntry;true;newChildInstance;(File);;Argument[0];ReturnValue;taint;generated",
-        "org.apache.commons.io.monitor;FileEntry;true;setChildren;(FileEntry[]);;Argument[0].ArrayElement;Argument[-1];taint;generated",
-        "org.apache.commons.io.monitor;FileEntry;true;setLastModified;(FileTime);;Argument[0];Argument[-1];taint;generated",
-        "org.apache.commons.io.monitor;FileEntry;true;setName;(String);;Argument[0];Argument[-1];taint;generated",
-        "org.apache.commons.io.output;AbstractByteArrayOutputStream;true;toByteArray;();;Argument[-1];ReturnValue;taint;generated",
-        "org.apache.commons.io.output;AbstractByteArrayOutputStream;true;toString;();;Argument[-1];ReturnValue;taint;generated",
-        "org.apache.commons.io.output;AbstractByteArrayOutputStream;true;toString;(Charset);;Argument[-1];ReturnValue;taint;generated",
-        "org.apache.commons.io.output;AbstractByteArrayOutputStream;true;toString;(String);;Argument[-1];ReturnValue;taint;generated",
-        "org.apache.commons.io.output;AbstractByteArrayOutputStream;true;write;(InputStream);;Argument[-1];Argument[0];taint;generated",
-        "org.apache.commons.io.output;AbstractByteArrayOutputStream;true;write;(InputStream);;Argument[0];Argument[-1];taint;generated",
-        "org.apache.commons.io.output;AbstractByteArrayOutputStream;true;writeTo;(OutputStream);;Argument[-1];Argument[0];taint;generated",
-        "org.apache.commons.io.output;AppendableOutputStream;true;AppendableOutputStream;(Appendable);;Argument[0];Argument[-1];taint;generated",
-        "org.apache.commons.io.output;AppendableOutputStream;true;getAppendable;();;Argument[-1];ReturnValue;taint;generated",
-        "org.apache.commons.io.output;AppendableWriter;true;AppendableWriter;(Appendable);;Argument[0];Argument[-1];taint;generated",
-        "org.apache.commons.io.output;AppendableWriter;true;getAppendable;();;Argument[-1];ReturnValue;taint;generated",
-        "org.apache.commons.io.output;BrokenOutputStream;true;BrokenOutputStream;(Supplier);;Argument[0];Argument[-1];taint;generated",
-        "org.apache.commons.io.output;BrokenWriter;true;BrokenWriter;(Supplier);;Argument[0];Argument[-1];taint;generated",
-        "org.apache.commons.io.output;ChunkedOutputStream;true;ChunkedOutputStream;(OutputStream);;Argument[0];Argument[-1];taint;generated",
-        "org.apache.commons.io.output;ChunkedOutputStream;true;ChunkedOutputStream;(OutputStream,int);;Argument[0];Argument[-1];taint;generated",
-        "org.apache.commons.io.output;CloseShieldOutputStream;true;CloseShieldOutputStream;(OutputStream);;Argument[0];Argument[-1];taint;generated",
-        "org.apache.commons.io.output;CloseShieldOutputStream;true;wrap;(OutputStream);;Argument[0];ReturnValue;taint;generated",
-        "org.apache.commons.io.output;CountingOutputStream;true;CountingOutputStream;(OutputStream);;Argument[0];Argument[-1];taint;generated",
-        "org.apache.commons.io.output;DeferredFileOutputStream;true;DeferredFileOutputStream;(int,File);;Argument[1];Argument[-1];taint;generated",
-        "org.apache.commons.io.output;DeferredFileOutputStream;true;DeferredFileOutputStream;(int,String,String,File);;Argument[1];Argument[-1];taint;generated",
-        "org.apache.commons.io.output;DeferredFileOutputStream;true;DeferredFileOutputStream;(int,String,String,File);;Argument[2];Argument[-1];taint;generated",
-        "org.apache.commons.io.output;DeferredFileOutputStream;true;DeferredFileOutputStream;(int,String,String,File);;Argument[3];Argument[-1];taint;generated",
-        "org.apache.commons.io.output;DeferredFileOutputStream;true;DeferredFileOutputStream;(int,int,File);;Argument[2];Argument[-1];taint;generated",
-        "org.apache.commons.io.output;DeferredFileOutputStream;true;DeferredFileOutputStream;(int,int,String,String,File);;Argument[2];Argument[-1];taint;generated",
-        "org.apache.commons.io.output;DeferredFileOutputStream;true;DeferredFileOutputStream;(int,int,String,String,File);;Argument[3];Argument[-1];taint;generated",
-        "org.apache.commons.io.output;DeferredFileOutputStream;true;DeferredFileOutputStream;(int,int,String,String,File);;Argument[4];Argument[-1];taint;generated",
-        "org.apache.commons.io.output;DeferredFileOutputStream;true;getData;();;Argument[-1];ReturnValue;taint;generated",
-        "org.apache.commons.io.output;DeferredFileOutputStream;true;getFile;();;Argument[-1];ReturnValue;taint;generated",
-        "org.apache.commons.io.output;DeferredFileOutputStream;true;writeTo;(OutputStream);;Argument[-1];Argument[0];taint;generated",
-        "org.apache.commons.io.output;LockableFileWriter;true;LockableFileWriter;(File,Charset,boolean,String);;Argument[3];Argument[-1];taint;generated",
-        "org.apache.commons.io.output;LockableFileWriter;true;LockableFileWriter;(File,String,boolean,String);;Argument[3];Argument[-1];taint;generated",
-        "org.apache.commons.io.output;LockableFileWriter;true;LockableFileWriter;(File,boolean,String);;Argument[2];Argument[-1];taint;generated",
-        "org.apache.commons.io.output;LockableFileWriter;true;LockableFileWriter;(String,boolean,String);;Argument[2];Argument[-1];taint;generated",
-        "org.apache.commons.io.output;ProxyCollectionWriter;true;ProxyCollectionWriter;(Collection);;Argument[0].Element;Argument[-1];taint;generated",
-        "org.apache.commons.io.output;ProxyCollectionWriter;true;ProxyCollectionWriter;(Writer[]);;Argument[0].ArrayElement;Argument[-1];taint;generated",
-        "org.apache.commons.io.output;ProxyOutputStream;true;ProxyOutputStream;(OutputStream);;Argument[0];Argument[-1];taint;generated",
-        "org.apache.commons.io.output;StringBuilderWriter;true;StringBuilderWriter;(StringBuilder);;Argument[0];Argument[-1];taint;generated",
-        "org.apache.commons.io.output;StringBuilderWriter;true;getBuilder;();;Argument[-1];ReturnValue;taint;generated",
-        "org.apache.commons.io.output;StringBuilderWriter;true;toString;();;Argument[-1];ReturnValue;taint;generated",
-        "org.apache.commons.io.output;TaggedOutputStream;true;TaggedOutputStream;(OutputStream);;Argument[0];Argument[-1];taint;generated",
-        "org.apache.commons.io.output;TeeOutputStream;true;TeeOutputStream;(OutputStream,OutputStream);;Argument[0];Argument[-1];taint;generated",
-        "org.apache.commons.io.output;TeeOutputStream;true;TeeOutputStream;(OutputStream,OutputStream);;Argument[1];Argument[-1];taint;generated",
-        "org.apache.commons.io.output;TeeWriter;true;TeeWriter;(Collection);;Argument[0].Element;Argument[-1];taint;generated",
-        "org.apache.commons.io.output;TeeWriter;true;TeeWriter;(Writer[]);;Argument[0].ArrayElement;Argument[-1];taint;generated",
-        "org.apache.commons.io.output;ThresholdingOutputStream;true;ThresholdingOutputStream;(int,IOConsumer,IOFunction);;Argument[1];Argument[-1];taint;generated",
-        "org.apache.commons.io.output;ThresholdingOutputStream;true;ThresholdingOutputStream;(int,IOConsumer,IOFunction);;Argument[2];Argument[-1];taint;generated",
-        "org.apache.commons.io.output;UncheckedAppendable;true;on;(Appendable);;Argument[0];ReturnValue;taint;generated",
-        "org.apache.commons.io.output;UncheckedFilterOutputStream;true;UncheckedFilterOutputStream;(OutputStream);;Argument[0];Argument[-1];taint;generated",
-        "org.apache.commons.io.output;UncheckedFilterOutputStream;true;on;(OutputStream);;Argument[0];ReturnValue;taint;generated",
-        "org.apache.commons.io.output;WriterOutputStream;true;WriterOutputStream;(Writer);;Argument[0];Argument[-1];taint;generated",
-        "org.apache.commons.io.output;WriterOutputStream;true;WriterOutputStream;(Writer,Charset);;Argument[0];Argument[-1];taint;generated",
-        "org.apache.commons.io.output;WriterOutputStream;true;WriterOutputStream;(Writer,Charset,int,boolean);;Argument[0];Argument[-1];taint;generated",
-        "org.apache.commons.io.output;WriterOutputStream;true;WriterOutputStream;(Writer,CharsetDecoder);;Argument[0];Argument[-1];taint;generated",
-        "org.apache.commons.io.output;WriterOutputStream;true;WriterOutputStream;(Writer,CharsetDecoder);;Argument[1];Argument[-1];taint;generated",
-        "org.apache.commons.io.output;WriterOutputStream;true;WriterOutputStream;(Writer,CharsetDecoder,int,boolean);;Argument[0];Argument[-1];taint;generated",
-        "org.apache.commons.io.output;WriterOutputStream;true;WriterOutputStream;(Writer,CharsetDecoder,int,boolean);;Argument[1];Argument[-1];taint;generated",
-        "org.apache.commons.io.output;WriterOutputStream;true;WriterOutputStream;(Writer,String);;Argument[0];Argument[-1];taint;generated",
-        "org.apache.commons.io.output;WriterOutputStream;true;WriterOutputStream;(Writer,String,int,boolean);;Argument[0];Argument[-1];taint;generated",
-        "org.apache.commons.io.output;XmlStreamWriter;true;XmlStreamWriter;(File,String);;Argument[1];Argument[-1];taint;generated",
-        "org.apache.commons.io.output;XmlStreamWriter;true;XmlStreamWriter;(OutputStream);;Argument[0];Argument[-1];taint;generated",
-        "org.apache.commons.io.output;XmlStreamWriter;true;XmlStreamWriter;(OutputStream,String);;Argument[0];Argument[-1];taint;generated",
-        "org.apache.commons.io.output;XmlStreamWriter;true;XmlStreamWriter;(OutputStream,String);;Argument[1];Argument[-1];taint;generated",
-        "org.apache.commons.io.output;XmlStreamWriter;true;getDefaultEncoding;();;Argument[-1];ReturnValue;taint;generated",
-        "org.apache.commons.io.output;XmlStreamWriter;true;getEncoding;();;Argument[-1];ReturnValue;taint;generated",
-        "org.apache.commons.io.serialization;ValidatingObjectInputStream;true;ValidatingObjectInputStream;(InputStream);;Argument[0];Argument[-1];taint;generated",
-        "org.apache.commons.io.serialization;ValidatingObjectInputStream;true;accept;(ClassNameMatcher);;Argument[-1];ReturnValue;value;generated",
-        "org.apache.commons.io.serialization;ValidatingObjectInputStream;true;accept;(ClassNameMatcher);;Argument[0];Argument[-1];taint;generated",
-        "org.apache.commons.io.serialization;ValidatingObjectInputStream;true;accept;(Class[]);;Argument[-1];ReturnValue;value;generated",
-        "org.apache.commons.io.serialization;ValidatingObjectInputStream;true;accept;(Pattern);;Argument[-1];ReturnValue;value;generated",
-        "org.apache.commons.io.serialization;ValidatingObjectInputStream;true;accept;(String[]);;Argument[-1];ReturnValue;value;generated",
-        "org.apache.commons.io.serialization;ValidatingObjectInputStream;true;reject;(ClassNameMatcher);;Argument[-1];ReturnValue;value;generated",
-        "org.apache.commons.io.serialization;ValidatingObjectInputStream;true;reject;(ClassNameMatcher);;Argument[0];Argument[-1];taint;generated",
-        "org.apache.commons.io.serialization;ValidatingObjectInputStream;true;reject;(Class[]);;Argument[-1];ReturnValue;value;generated",
-        "org.apache.commons.io.serialization;ValidatingObjectInputStream;true;reject;(Pattern);;Argument[-1];ReturnValue;value;generated",
-        "org.apache.commons.io.serialization;ValidatingObjectInputStream;true;reject;(String[]);;Argument[-1];ReturnValue;value;generated",
-        "org.apache.commons.io;ByteOrderMark;true;ByteOrderMark;(String,int[]);;Argument[0];Argument[-1];taint;generated",
-        "org.apache.commons.io;ByteOrderMark;true;getCharsetName;();;Argument[-1];ReturnValue;taint;generated",
-        "org.apache.commons.io;ByteOrderMark;true;toString;();;Argument[-1];ReturnValue;taint;generated",
-        "org.apache.commons.io;CopyUtils;true;copy;(InputStream,OutputStream);;Argument[0];Argument[1];taint;generated",
-        "org.apache.commons.io;CopyUtils;true;copy;(InputStream,Writer);;Argument[0];Argument[1];taint;generated",
-        "org.apache.commons.io;CopyUtils;true;copy;(InputStream,Writer,String);;Argument[0];Argument[1];taint;generated",
-        "org.apache.commons.io;CopyUtils;true;copy;(Reader,Writer);;Argument[0];Argument[1];taint;generated",
-        "org.apache.commons.io;CopyUtils;true;copy;(String,Writer);;Argument[0];Argument[1];taint;generated",
-        "org.apache.commons.io;CopyUtils;true;copy;(byte[],OutputStream);;Argument[0];Argument[1];taint;generated",
-        "org.apache.commons.io;CopyUtils;true;copy;(byte[],Writer);;Argument[0];Argument[1];taint;generated",
-        "org.apache.commons.io;CopyUtils;true;copy;(byte[],Writer,String);;Argument[0];Argument[1];taint;generated",
-        "org.apache.commons.io;DirectoryWalker$CancelException;true;CancelException;(File,int);;Argument[0];Argument[-1];taint;generated",
-        "org.apache.commons.io;DirectoryWalker$CancelException;true;CancelException;(String,File,int);;Argument[1];Argument[-1];taint;generated",
-        "org.apache.commons.io;DirectoryWalker$CancelException;true;getFile;();;Argument[-1];ReturnValue;taint;generated",
-        "org.apache.commons.io;FileCleaningTracker;true;getDeleteFailures;();;Argument[-1];ReturnValue;taint;generated",
-        "org.apache.commons.io;FileDeleteStrategy;true;toString;();;Argument[-1];ReturnValue;taint;generated",
-        "org.apache.commons.io;FileSystem;false;normalizeSeparators;(String);;Argument[0];ReturnValue;taint;generated",
-        "org.apache.commons.io;FileSystem;false;toLegalFileName;(String,char);;Argument[0];ReturnValue;taint;generated",
-        "org.apache.commons.io;FileUtils;true;checksum;(File,Checksum);;Argument[1];ReturnValue;taint;generated",
-        "org.apache.commons.io;FileUtils;true;convertFileCollectionToFileArray;(Collection);;Argument[0].Element;ReturnValue;taint;generated",
-        "org.apache.commons.io;FileUtils;true;delete;(File);;Argument[0];ReturnValue;taint;generated",
-        "org.apache.commons.io;FileUtils;true;getFile;(File,String[]);;Argument[0];ReturnValue;taint;generated",
-        "org.apache.commons.io;FileUtils;true;getFile;(File,String[]);;Argument[1].ArrayElement;ReturnValue;taint;generated",
-        "org.apache.commons.io;FileUtils;true;getFile;(String[]);;Argument[0].ArrayElement;ReturnValue;taint;generated",
-        "org.apache.commons.io;FileUtils;true;toURLs;(File[]);;Argument[0].ArrayElement;ReturnValue;taint;generated",
-        "org.apache.commons.io;FilenameUtils;true;concat;(String,String);;Argument[0];ReturnValue;taint;generated",
-        "org.apache.commons.io;FilenameUtils;true;concat;(String,String);;Argument[1];ReturnValue;taint;generated",
-        "org.apache.commons.io;FilenameUtils;true;getBaseName;(String);;Argument[0];ReturnValue;taint;generated",
-        "org.apache.commons.io;FilenameUtils;true;getExtension;(String);;Argument[0];ReturnValue;taint;generated",
-        "org.apache.commons.io;FilenameUtils;true;getFullPath;(String);;Argument[0];ReturnValue;taint;generated",
-        "org.apache.commons.io;FilenameUtils;true;getFullPathNoEndSeparator;(String);;Argument[0];ReturnValue;taint;generated",
-        "org.apache.commons.io;FilenameUtils;true;getName;(String);;Argument[0];ReturnValue;taint;generated",
-        "org.apache.commons.io;FilenameUtils;true;getPath;(String);;Argument[0];ReturnValue;taint;generated",
-        "org.apache.commons.io;FilenameUtils;true;getPathNoEndSeparator;(String);;Argument[0];ReturnValue;taint;generated",
-        "org.apache.commons.io;FilenameUtils;true;getPrefix;(String);;Argument[0];ReturnValue;taint;generated",
-        "org.apache.commons.io;FilenameUtils;true;normalize;(String);;Argument[0];ReturnValue;taint;generated",
-        "org.apache.commons.io;FilenameUtils;true;normalize;(String,boolean);;Argument[0];ReturnValue;taint;generated",
-        "org.apache.commons.io;FilenameUtils;true;normalizeNoEndSeparator;(String);;Argument[0];ReturnValue;taint;generated",
-        "org.apache.commons.io;FilenameUtils;true;normalizeNoEndSeparator;(String,boolean);;Argument[0];ReturnValue;taint;generated",
-        "org.apache.commons.io;FilenameUtils;true;removeExtension;(String);;Argument[0];ReturnValue;taint;generated",
-        "org.apache.commons.io;FilenameUtils;true;separatorsToSystem;(String);;Argument[0];ReturnValue;taint;generated",
-        "org.apache.commons.io;FilenameUtils;true;separatorsToUnix;(String);;Argument[0];ReturnValue;taint;generated",
-        "org.apache.commons.io;FilenameUtils;true;separatorsToWindows;(String);;Argument[0];ReturnValue;taint;generated",
-        "org.apache.commons.io;IOExceptionList;true;IOExceptionList;(List);;Argument[0].Element;Argument[-1];taint;generated",
-        "org.apache.commons.io;IOExceptionList;true;IOExceptionList;(String,List);;Argument[1].Element;Argument[-1];taint;generated",
-        "org.apache.commons.io;IOExceptionList;true;getCause;(int);;Argument[-1];ReturnValue;taint;generated",
-        "org.apache.commons.io;IOExceptionList;true;getCauseList;();;Argument[-1];ReturnValue;taint;generated",
-        "org.apache.commons.io;IOExceptionList;true;getCauseList;(Class);;Argument[-1];ReturnValue;taint;generated",
-        "org.apache.commons.io;IOUtils;true;buffer;(InputStream);;Argument[0];ReturnValue;taint;generated",
-        "org.apache.commons.io;IOUtils;true;buffer;(InputStream,int);;Argument[0];ReturnValue;taint;generated",
-        "org.apache.commons.io;IOUtils;true;buffer;(OutputStream);;Argument[0];ReturnValue;taint;generated",
-        "org.apache.commons.io;IOUtils;true;buffer;(OutputStream,int);;Argument[0];ReturnValue;taint;generated",
-        "org.apache.commons.io;IOUtils;true;buffer;(Reader);;Argument[0];ReturnValue;taint;generated",
-        "org.apache.commons.io;IOUtils;true;buffer;(Reader,int);;Argument[0];ReturnValue;taint;generated",
-        "org.apache.commons.io;IOUtils;true;buffer;(Writer);;Argument[0];ReturnValue;taint;generated",
-        "org.apache.commons.io;IOUtils;true;buffer;(Writer,int);;Argument[0];ReturnValue;taint;generated",
-        "org.apache.commons.io;IOUtils;true;copy;(InputStream,OutputStream);;Argument[0];Argument[1];taint;generated",
-        "org.apache.commons.io;IOUtils;true;copy;(InputStream,OutputStream,int);;Argument[0];Argument[1];taint;generated",
-        "org.apache.commons.io;IOUtils;true;copy;(InputStream,Writer);;Argument[0];Argument[1];taint;generated",
-        "org.apache.commons.io;IOUtils;true;copy;(InputStream,Writer,Charset);;Argument[0];Argument[1];taint;generated",
-        "org.apache.commons.io;IOUtils;true;copy;(InputStream,Writer,String);;Argument[0];Argument[1];taint;generated",
-        "org.apache.commons.io;IOUtils;true;copy;(Reader,Appendable);;Argument[0];Argument[1];taint;generated",
-        "org.apache.commons.io;IOUtils;true;copy;(Reader,Appendable,CharBuffer);;Argument[0];Argument[1];taint;generated",
-        "org.apache.commons.io;IOUtils;true;copy;(Reader,Appendable,CharBuffer);;Argument[0];Argument[2];taint;generated",
-        "org.apache.commons.io;IOUtils;true;copy;(Reader,Appendable,CharBuffer);;Argument[2];Argument[0];taint;generated",
-        "org.apache.commons.io;IOUtils;true;copy;(Reader,Appendable,CharBuffer);;Argument[2];Argument[1];taint;generated",
-        "org.apache.commons.io;IOUtils;true;copy;(Reader,Writer);;Argument[0];Argument[1];taint;generated",
-        "org.apache.commons.io;IOUtils;true;copyLarge;(InputStream,OutputStream);;Argument[0];Argument[1];taint;generated",
-        "org.apache.commons.io;IOUtils;true;copyLarge;(InputStream,OutputStream,byte[]);;Argument[0];Argument[1];taint;generated",
-        "org.apache.commons.io;IOUtils;true;copyLarge;(InputStream,OutputStream,byte[]);;Argument[0];Argument[2];taint;generated",
-        "org.apache.commons.io;IOUtils;true;copyLarge;(InputStream,OutputStream,byte[]);;Argument[2];Argument[0];taint;generated",
-        "org.apache.commons.io;IOUtils;true;copyLarge;(InputStream,OutputStream,byte[]);;Argument[2];Argument[1];taint;generated",
-        "org.apache.commons.io;IOUtils;true;copyLarge;(InputStream,OutputStream,long,long);;Argument[0];Argument[1];taint;generated",
-        "org.apache.commons.io;IOUtils;true;copyLarge;(InputStream,OutputStream,long,long,byte[]);;Argument[0];Argument[1];taint;generated",
-        "org.apache.commons.io;IOUtils;true;copyLarge;(InputStream,OutputStream,long,long,byte[]);;Argument[0];Argument[4];taint;generated",
-        "org.apache.commons.io;IOUtils;true;copyLarge;(InputStream,OutputStream,long,long,byte[]);;Argument[4];Argument[0];taint;generated",
-        "org.apache.commons.io;IOUtils;true;copyLarge;(InputStream,OutputStream,long,long,byte[]);;Argument[4];Argument[1];taint;generated",
-        "org.apache.commons.io;IOUtils;true;copyLarge;(Reader,Writer);;Argument[0];Argument[1];taint;generated",
-        "org.apache.commons.io;IOUtils;true;copyLarge;(Reader,Writer,char[]);;Argument[0];Argument[1];taint;generated",
-        "org.apache.commons.io;IOUtils;true;copyLarge;(Reader,Writer,char[]);;Argument[0];Argument[2];taint;generated",
-        "org.apache.commons.io;IOUtils;true;copyLarge;(Reader,Writer,char[]);;Argument[2];Argument[0];taint;generated",
-        "org.apache.commons.io;IOUtils;true;copyLarge;(Reader,Writer,char[]);;Argument[2];Argument[1];taint;generated",
-        "org.apache.commons.io;IOUtils;true;copyLarge;(Reader,Writer,long,long);;Argument[0];Argument[1];taint;generated",
-        "org.apache.commons.io;IOUtils;true;copyLarge;(Reader,Writer,long,long,char[]);;Argument[0];Argument[1];taint;generated",
-        "org.apache.commons.io;IOUtils;true;copyLarge;(Reader,Writer,long,long,char[]);;Argument[0];Argument[4];taint;generated",
-        "org.apache.commons.io;IOUtils;true;copyLarge;(Reader,Writer,long,long,char[]);;Argument[4];Argument[0];taint;generated",
-        "org.apache.commons.io;IOUtils;true;copyLarge;(Reader,Writer,long,long,char[]);;Argument[4];Argument[1];taint;generated",
-        "org.apache.commons.io;IOUtils;true;lineIterator;(InputStream,Charset);;Argument[0];ReturnValue;taint;generated",
-        "org.apache.commons.io;IOUtils;true;lineIterator;(InputStream,String);;Argument[0];ReturnValue;taint;generated",
-        "org.apache.commons.io;IOUtils;true;lineIterator;(Reader);;Argument[0];ReturnValue;taint;generated",
-        "org.apache.commons.io;IOUtils;true;read;(InputStream,byte[]);;Argument[0];Argument[1];taint;generated",
-        "org.apache.commons.io;IOUtils;true;read;(InputStream,byte[]);;Argument[1];Argument[0];taint;generated",
-        "org.apache.commons.io;IOUtils;true;read;(InputStream,byte[],int,int);;Argument[0];Argument[1];taint;generated",
-        "org.apache.commons.io;IOUtils;true;read;(InputStream,byte[],int,int);;Argument[1];Argument[0];taint;generated",
-        "org.apache.commons.io;IOUtils;true;read;(ReadableByteChannel,ByteBuffer);;Argument[0];Argument[1];taint;generated",
-        "org.apache.commons.io;IOUtils;true;read;(Reader,char[]);;Argument[0];Argument[1];taint;generated",
-        "org.apache.commons.io;IOUtils;true;read;(Reader,char[]);;Argument[1];Argument[0];taint;generated",
-        "org.apache.commons.io;IOUtils;true;read;(Reader,char[],int,int);;Argument[0];Argument[1];taint;generated",
-        "org.apache.commons.io;IOUtils;true;read;(Reader,char[],int,int);;Argument[1];Argument[0];taint;generated",
-        "org.apache.commons.io;IOUtils;true;readFully;(InputStream,byte[]);;Argument[0];Argument[1];taint;generated",
-        "org.apache.commons.io;IOUtils;true;readFully;(InputStream,byte[]);;Argument[1];Argument[0];taint;generated",
-        "org.apache.commons.io;IOUtils;true;readFully;(InputStream,byte[],int,int);;Argument[0];Argument[1];taint;generated",
-        "org.apache.commons.io;IOUtils;true;readFully;(InputStream,byte[],int,int);;Argument[1];Argument[0];taint;generated",
-        "org.apache.commons.io;IOUtils;true;readFully;(InputStream,int);;Argument[0];ReturnValue;taint;generated",
-        "org.apache.commons.io;IOUtils;true;readFully;(ReadableByteChannel,ByteBuffer);;Argument[0];Argument[1];taint;generated",
-        "org.apache.commons.io;IOUtils;true;readFully;(Reader,char[]);;Argument[0];Argument[1];taint;generated",
-        "org.apache.commons.io;IOUtils;true;readFully;(Reader,char[]);;Argument[1];Argument[0];taint;generated",
-        "org.apache.commons.io;IOUtils;true;readFully;(Reader,char[],int,int);;Argument[0];Argument[1];taint;generated",
-        "org.apache.commons.io;IOUtils;true;readFully;(Reader,char[],int,int);;Argument[1];Argument[0];taint;generated",
-        "org.apache.commons.io;IOUtils;true;readLines;(InputStream);;Argument[0];ReturnValue;taint;generated",
-        "org.apache.commons.io;IOUtils;true;readLines;(InputStream,Charset);;Argument[0];ReturnValue;taint;generated",
-        "org.apache.commons.io;IOUtils;true;readLines;(InputStream,String);;Argument[0];ReturnValue;taint;generated",
-        "org.apache.commons.io;IOUtils;true;readLines;(Reader);;Argument[0];ReturnValue;taint;generated",
-        "org.apache.commons.io;IOUtils;true;toBufferedReader;(Reader);;Argument[0];ReturnValue;taint;generated",
-        "org.apache.commons.io;IOUtils;true;toBufferedReader;(Reader,int);;Argument[0];ReturnValue;taint;generated",
-        "org.apache.commons.io;IOUtils;true;toByteArray;(InputStream,int);;Argument[0];ReturnValue;taint;generated",
-        "org.apache.commons.io;IOUtils;true;toByteArray;(InputStream,long);;Argument[0];ReturnValue;taint;generated",
-        "org.apache.commons.io;IOUtils;true;toByteArray;(String);;Argument[0];ReturnValue;taint;generated",
-        "org.apache.commons.io;IOUtils;true;toCharArray;(InputStream);;Argument[0];ReturnValue;taint;generated",
-        "org.apache.commons.io;IOUtils;true;toCharArray;(InputStream,Charset);;Argument[0];ReturnValue;taint;generated",
-        "org.apache.commons.io;IOUtils;true;toCharArray;(InputStream,String);;Argument[0];ReturnValue;taint;generated",
-        "org.apache.commons.io;IOUtils;true;toCharArray;(Reader);;Argument[0];ReturnValue;taint;generated",
-        "org.apache.commons.io;IOUtils;true;toInputStream;(CharSequence);;Argument[0];ReturnValue;taint;generated",
-        "org.apache.commons.io;IOUtils;true;toInputStream;(CharSequence,Charset);;Argument[0];ReturnValue;taint;generated",
-        "org.apache.commons.io;IOUtils;true;toInputStream;(CharSequence,String);;Argument[0];ReturnValue;taint;generated",
-        "org.apache.commons.io;IOUtils;true;toInputStream;(String);;Argument[0];ReturnValue;taint;generated",
-        "org.apache.commons.io;IOUtils;true;toInputStream;(String,Charset);;Argument[0];ReturnValue;taint;generated",
-        "org.apache.commons.io;IOUtils;true;toInputStream;(String,String);;Argument[0];ReturnValue;taint;generated",
-        "org.apache.commons.io;IOUtils;true;toString;(InputStream);;Argument[0];ReturnValue;taint;generated",
-        "org.apache.commons.io;IOUtils;true;toString;(InputStream,Charset);;Argument[0];ReturnValue;taint;generated",
-        "org.apache.commons.io;IOUtils;true;toString;(InputStream,String);;Argument[0];ReturnValue;taint;generated",
-        "org.apache.commons.io;IOUtils;true;toString;(Reader);;Argument[0];ReturnValue;taint;generated",
-        "org.apache.commons.io;IOUtils;true;toString;(byte[]);;Argument[0];ReturnValue;taint;generated",
-        "org.apache.commons.io;IOUtils;true;toString;(byte[],String);;Argument[0];ReturnValue;taint;generated",
-        "org.apache.commons.io;IOUtils;true;write;(CharSequence,Writer);;Argument[0];Argument[1];taint;generated",
-        "org.apache.commons.io;IOUtils;true;write;(String,Writer);;Argument[0];Argument[1];taint;generated",
-        "org.apache.commons.io;IOUtils;true;write;(StringBuffer,Writer);;Argument[0];Argument[1];taint;generated",
-        "org.apache.commons.io;IOUtils;true;write;(byte[],OutputStream);;Argument[0];Argument[1];taint;generated",
-        "org.apache.commons.io;IOUtils;true;write;(byte[],Writer);;Argument[0];Argument[1];taint;generated",
-        "org.apache.commons.io;IOUtils;true;write;(byte[],Writer,Charset);;Argument[0];Argument[1];taint;generated",
-        "org.apache.commons.io;IOUtils;true;write;(byte[],Writer,String);;Argument[0];Argument[1];taint;generated",
-        "org.apache.commons.io;IOUtils;true;write;(char[],Writer);;Argument[0];Argument[1];taint;generated",
-        "org.apache.commons.io;IOUtils;true;writeChunked;(byte[],OutputStream);;Argument[0];Argument[1];taint;generated",
-        "org.apache.commons.io;IOUtils;true;writeChunked;(char[],Writer);;Argument[0];Argument[1];taint;generated",
-        "org.apache.commons.io;IOUtils;true;writeLines;(Collection,String,OutputStream);;Argument[1];Argument[2];taint;generated",
-        "org.apache.commons.io;IOUtils;true;writeLines;(Collection,String,OutputStream,Charset);;Argument[1];Argument[2];taint;generated",
-        "org.apache.commons.io;IOUtils;true;writeLines;(Collection,String,OutputStream,String);;Argument[1];Argument[2];taint;generated",
-        "org.apache.commons.io;IOUtils;true;writeLines;(Collection,String,Writer);;Argument[1];Argument[2];taint;generated",
-        "org.apache.commons.io;IOUtils;true;writer;(Appendable);;Argument[0];ReturnValue;taint;generated",
-        "org.apache.commons.io;LineIterator;true;LineIterator;(Reader);;Argument[0];Argument[-1];taint;generated",
-        "org.apache.commons.io;LineIterator;true;nextLine;();;Argument[-1];ReturnValue;taint;generated",
-        "org.apache.commons.io;TaggedIOException;true;TaggedIOException;(IOException,Serializable);;Argument[1];Argument[-1];taint;generated",
-        "org.apache.commons.io;TaggedIOException;true;getTag;();;Argument[-1];ReturnValue;taint;generated",
-        "org.apache.commons.io;UncheckedIO;true;apply;(IOFunction,Object);;Argument[1];ReturnValue;taint;generated",
-        "org.apache.commons.io;UncheckedIO;true;apply;(IOTriFunction,Object,Object,Object);;Argument[1];ReturnValue;taint;generated"
-      ]
-  }
-}
diff --git a/java/ql/lib/semmle/code/java/frameworks/apache/NegativeIOGenerated.qll b/java/ql/lib/semmle/code/java/frameworks/apache/NegativeIOGenerated.qll
deleted file mode 100644
index 8c2e0684942..00000000000
--- a/java/ql/lib/semmle/code/java/frameworks/apache/NegativeIOGenerated.qll
+++ /dev/null
@@ -1,765 +0,0 @@
-/**
- * THIS FILE IS AN AUTO-GENERATED MODELS AS DATA FILE. DO NOT EDIT.
- * Definitions of negative summaries in the IOGenerated framework.
- */
-
-import java
-private import semmle.code.java.dataflow.ExternalFlow
-
-private class IOGeneratedNegativesummaryCsv extends NegativeSummaryModelCsv {
-  override predicate row(string row) {
-    row =
-      [
-        "org.apache.commons.io.charset;CharsetDecoders;CharsetDecoders;();generated",
-        "org.apache.commons.io.charset;CharsetEncoders;CharsetEncoders;();generated",
-        "org.apache.commons.io.comparator;DefaultFileComparator;DefaultFileComparator;();generated",
-        "org.apache.commons.io.comparator;DirectoryFileComparator;DirectoryFileComparator;();generated",
-        "org.apache.commons.io.comparator;ExtensionFileComparator;ExtensionFileComparator;();generated",
-        "org.apache.commons.io.comparator;ExtensionFileComparator;ExtensionFileComparator;(IOCase);generated",
-        "org.apache.commons.io.comparator;ExtensionFileComparator;toString;();generated",
-        "org.apache.commons.io.comparator;LastModifiedFileComparator;LastModifiedFileComparator;();generated",
-        "org.apache.commons.io.comparator;NameFileComparator;NameFileComparator;();generated",
-        "org.apache.commons.io.comparator;NameFileComparator;NameFileComparator;(IOCase);generated",
-        "org.apache.commons.io.comparator;NameFileComparator;toString;();generated",
-        "org.apache.commons.io.comparator;PathFileComparator;PathFileComparator;();generated",
-        "org.apache.commons.io.comparator;PathFileComparator;PathFileComparator;(IOCase);generated",
-        "org.apache.commons.io.comparator;PathFileComparator;toString;();generated",
-        "org.apache.commons.io.comparator;SizeFileComparator;SizeFileComparator;();generated",
-        "org.apache.commons.io.comparator;SizeFileComparator;SizeFileComparator;(boolean);generated",
-        "org.apache.commons.io.comparator;SizeFileComparator;toString;();generated",
-        "org.apache.commons.io.file.attribute;FileTimes;minusMillis;(FileTime,long);generated",
-        "org.apache.commons.io.file.attribute;FileTimes;minusNanos;(FileTime,long);generated",
-        "org.apache.commons.io.file.attribute;FileTimes;minusSeconds;(FileTime,long);generated",
-        "org.apache.commons.io.file.attribute;FileTimes;now;();generated",
-        "org.apache.commons.io.file.attribute;FileTimes;ntfsTimeToDate;(long);generated",
-        "org.apache.commons.io.file.attribute;FileTimes;ntfsTimeToFileTime;(long);generated",
-        "org.apache.commons.io.file.attribute;FileTimes;plusMillis;(FileTime,long);generated",
-        "org.apache.commons.io.file.attribute;FileTimes;plusNanos;(FileTime,long);generated",
-        "org.apache.commons.io.file.attribute;FileTimes;plusSeconds;(FileTime,long);generated",
-        "org.apache.commons.io.file.attribute;FileTimes;setLastModifiedTime;(Path);generated",
-        "org.apache.commons.io.file.attribute;FileTimes;toDate;(FileTime);generated",
-        "org.apache.commons.io.file.attribute;FileTimes;toFileTime;(Date);generated",
-        "org.apache.commons.io.file.attribute;FileTimes;toNtfsTime;(Date);generated",
-        "org.apache.commons.io.file.attribute;FileTimes;toNtfsTime;(FileTime);generated",
-        "org.apache.commons.io.file.spi;FileSystemProviders;getFileSystemProvider;(Path);generated",
-        "org.apache.commons.io.file.spi;FileSystemProviders;installed;();generated",
-        "org.apache.commons.io.file;AccumulatorPathVisitor;AccumulatorPathVisitor;();generated",
-        "org.apache.commons.io.file;AccumulatorPathVisitor;relativizeDirectories;(Path,boolean,Comparator);generated",
-        "org.apache.commons.io.file;AccumulatorPathVisitor;relativizeFiles;(Path,boolean,Comparator);generated",
-        "org.apache.commons.io.file;AccumulatorPathVisitor;withBigIntegerCounters;();generated",
-        "org.apache.commons.io.file;AccumulatorPathVisitor;withLongCounters;();generated",
-        "org.apache.commons.io.file;CleaningPathVisitor;withBigIntegerCounters;();generated",
-        "org.apache.commons.io.file;CleaningPathVisitor;withLongCounters;();generated",
-        "org.apache.commons.io.file;Counters$Counter;add;(long);generated",
-        "org.apache.commons.io.file;Counters$Counter;get;();generated",
-        "org.apache.commons.io.file;Counters$Counter;getBigInteger;();generated",
-        "org.apache.commons.io.file;Counters$Counter;getLong;();generated",
-        "org.apache.commons.io.file;Counters$Counter;increment;();generated",
-        "org.apache.commons.io.file;Counters$Counter;reset;();generated",
-        "org.apache.commons.io.file;Counters$PathCounters;getByteCounter;();generated",
-        "org.apache.commons.io.file;Counters$PathCounters;getDirectoryCounter;();generated",
-        "org.apache.commons.io.file;Counters$PathCounters;getFileCounter;();generated",
-        "org.apache.commons.io.file;Counters$PathCounters;reset;();generated",
-        "org.apache.commons.io.file;Counters;Counters;();generated",
-        "org.apache.commons.io.file;Counters;bigIntegerCounter;();generated",
-        "org.apache.commons.io.file;Counters;bigIntegerPathCounters;();generated",
-        "org.apache.commons.io.file;Counters;longCounter;();generated",
-        "org.apache.commons.io.file;Counters;longPathCounters;();generated",
-        "org.apache.commons.io.file;Counters;noopCounter;();generated",
-        "org.apache.commons.io.file;Counters;noopPathCounters;();generated",
-        "org.apache.commons.io.file;CountingPathVisitor;toString;();generated",
-        "org.apache.commons.io.file;CountingPathVisitor;withBigIntegerCounters;();generated",
-        "org.apache.commons.io.file;CountingPathVisitor;withLongCounters;();generated",
-        "org.apache.commons.io.file;DeletingPathVisitor;withBigIntegerCounters;();generated",
-        "org.apache.commons.io.file;DeletingPathVisitor;withLongCounters;();generated",
-        "org.apache.commons.io.file;NoopPathVisitor;NoopPathVisitor;();generated",
-        "org.apache.commons.io.file;PathFilter;accept;(Path,BasicFileAttributes);generated",
-        "org.apache.commons.io.file;PathUtils;cleanDirectory;(Path);generated",
-        "org.apache.commons.io.file;PathUtils;cleanDirectory;(Path,DeleteOption[]);generated",
-        "org.apache.commons.io.file;PathUtils;copyDirectory;(Path,Path,CopyOption[]);generated",
-        "org.apache.commons.io.file;PathUtils;copyFileToDirectory;(Path,Path,CopyOption[]);generated",
-        "org.apache.commons.io.file;PathUtils;countDirectory;(Path);generated",
-        "org.apache.commons.io.file;PathUtils;countDirectoryAsBigInteger;(Path);generated",
-        "org.apache.commons.io.file;PathUtils;createParentDirectories;(Path,FileAttribute[]);generated",
-        "org.apache.commons.io.file;PathUtils;createParentDirectories;(Path,LinkOption,FileAttribute[]);generated",
-        "org.apache.commons.io.file;PathUtils;current;();generated",
-        "org.apache.commons.io.file;PathUtils;delete;(Path);generated",
-        "org.apache.commons.io.file;PathUtils;delete;(Path,DeleteOption[]);generated",
-        "org.apache.commons.io.file;PathUtils;delete;(Path,LinkOption[],DeleteOption[]);generated",
-        "org.apache.commons.io.file;PathUtils;deleteDirectory;(Path);generated",
-        "org.apache.commons.io.file;PathUtils;deleteDirectory;(Path,DeleteOption[]);generated",
-        "org.apache.commons.io.file;PathUtils;deleteDirectory;(Path,LinkOption[],DeleteOption[]);generated",
-        "org.apache.commons.io.file;PathUtils;deleteFile;(Path);generated",
-        "org.apache.commons.io.file;PathUtils;deleteFile;(Path,DeleteOption[]);generated",
-        "org.apache.commons.io.file;PathUtils;deleteFile;(Path,LinkOption[],DeleteOption[]);generated",
-        "org.apache.commons.io.file;PathUtils;directoryAndFileContentEquals;(Path,Path);generated",
-        "org.apache.commons.io.file;PathUtils;directoryAndFileContentEquals;(Path,Path,LinkOption[],OpenOption[],FileVisitOption[]);generated",
-        "org.apache.commons.io.file;PathUtils;directoryContentEquals;(Path,Path);generated",
-        "org.apache.commons.io.file;PathUtils;directoryContentEquals;(Path,Path,int,LinkOption[],FileVisitOption[]);generated",
-        "org.apache.commons.io.file;PathUtils;fileContentEquals;(Path,Path);generated",
-        "org.apache.commons.io.file;PathUtils;fileContentEquals;(Path,Path,LinkOption[],OpenOption[]);generated",
-        "org.apache.commons.io.file;PathUtils;filter;(PathFilter,Path[]);generated",
-        "org.apache.commons.io.file;PathUtils;getAclEntryList;(Path);generated",
-        "org.apache.commons.io.file;PathUtils;getAclFileAttributeView;(Path,LinkOption[]);generated",
-        "org.apache.commons.io.file;PathUtils;getDosFileAttributeView;(Path,LinkOption[]);generated",
-        "org.apache.commons.io.file;PathUtils;getPosixFileAttributeView;(Path,LinkOption[]);generated",
-        "org.apache.commons.io.file;PathUtils;getTempDirectory;();generated",
-        "org.apache.commons.io.file;PathUtils;isDirectory;(Path,LinkOption[]);generated",
-        "org.apache.commons.io.file;PathUtils;isEmpty;(Path);generated",
-        "org.apache.commons.io.file;PathUtils;isEmptyDirectory;(Path);generated",
-        "org.apache.commons.io.file;PathUtils;isEmptyFile;(Path);generated",
-        "org.apache.commons.io.file;PathUtils;isNewer;(Path,ChronoZonedDateTime,LinkOption[]);generated",
-        "org.apache.commons.io.file;PathUtils;isNewer;(Path,FileTime,LinkOption[]);generated",
-        "org.apache.commons.io.file;PathUtils;isNewer;(Path,Instant,LinkOption[]);generated",
-        "org.apache.commons.io.file;PathUtils;isNewer;(Path,Path);generated",
-        "org.apache.commons.io.file;PathUtils;isNewer;(Path,long,LinkOption[]);generated",
-        "org.apache.commons.io.file;PathUtils;isOlder;(Path,FileTime,LinkOption[]);generated",
-        "org.apache.commons.io.file;PathUtils;isOlder;(Path,Instant,LinkOption[]);generated",
-        "org.apache.commons.io.file;PathUtils;isOlder;(Path,Path);generated",
-        "org.apache.commons.io.file;PathUtils;isOlder;(Path,long,LinkOption[]);generated",
-        "org.apache.commons.io.file;PathUtils;isPosix;(Path,LinkOption[]);generated",
-        "org.apache.commons.io.file;PathUtils;isRegularFile;(Path,LinkOption[]);generated",
-        "org.apache.commons.io.file;PathUtils;newDirectoryStream;(Path,PathFilter);generated",
-        "org.apache.commons.io.file;PathUtils;newOutputStream;(Path,boolean);generated",
-        "org.apache.commons.io.file;PathUtils;noFollowLinkOptionArray;();generated",
-        "org.apache.commons.io.file;PathUtils;readAttributes;(Path,Class,LinkOption[]);generated",
-        "org.apache.commons.io.file;PathUtils;readBasicFileAttributes;(Path);generated",
-        "org.apache.commons.io.file;PathUtils;readBasicFileAttributes;(Path,LinkOption[]);generated",
-        "org.apache.commons.io.file;PathUtils;readBasicFileAttributesUnchecked;(Path);generated",
-        "org.apache.commons.io.file;PathUtils;readDosFileAttributes;(Path,LinkOption[]);generated",
-        "org.apache.commons.io.file;PathUtils;readOsFileAttributes;(Path,LinkOption[]);generated",
-        "org.apache.commons.io.file;PathUtils;readPosixFileAttributes;(Path,LinkOption[]);generated",
-        "org.apache.commons.io.file;PathUtils;readString;(Path,Charset);generated",
-        "org.apache.commons.io.file;PathUtils;setLastModifiedTime;(Path,Path);generated",
-        "org.apache.commons.io.file;PathUtils;sizeOf;(Path);generated",
-        "org.apache.commons.io.file;PathUtils;sizeOfAsBigInteger;(Path);generated",
-        "org.apache.commons.io.file;PathUtils;sizeOfDirectory;(Path);generated",
-        "org.apache.commons.io.file;PathUtils;sizeOfDirectoryAsBigInteger;(Path);generated",
-        "org.apache.commons.io.file;PathUtils;waitFor;(Path,Duration,LinkOption[]);generated",
-        "org.apache.commons.io.file;PathUtils;walk;(Path,PathFilter,int,boolean,FileVisitOption[]);generated",
-        "org.apache.commons.io.file;StandardDeleteOption;overrideReadOnly;(DeleteOption[]);generated",
-        "org.apache.commons.io.filefilter;AbstractFileFilter;AbstractFileFilter;();generated",
-        "org.apache.commons.io.filefilter;AbstractFileFilter;toString;();generated",
-        "org.apache.commons.io.filefilter;AgeFileFilter;AgeFileFilter;(Date);generated",
-        "org.apache.commons.io.filefilter;AgeFileFilter;AgeFileFilter;(Date,boolean);generated",
-        "org.apache.commons.io.filefilter;AgeFileFilter;AgeFileFilter;(File);generated",
-        "org.apache.commons.io.filefilter;AgeFileFilter;AgeFileFilter;(File,boolean);generated",
-        "org.apache.commons.io.filefilter;AgeFileFilter;AgeFileFilter;(long);generated",
-        "org.apache.commons.io.filefilter;AgeFileFilter;AgeFileFilter;(long,boolean);generated",
-        "org.apache.commons.io.filefilter;AndFileFilter;AndFileFilter;();generated",
-        "org.apache.commons.io.filefilter;ConditionalFileFilter;addFileFilter;(IOFileFilter);generated",
-        "org.apache.commons.io.filefilter;ConditionalFileFilter;getFileFilters;();generated",
-        "org.apache.commons.io.filefilter;ConditionalFileFilter;removeFileFilter;(IOFileFilter);generated",
-        "org.apache.commons.io.filefilter;ConditionalFileFilter;setFileFilters;(List);generated",
-        "org.apache.commons.io.filefilter;FalseFileFilter;toString;();generated",
-        "org.apache.commons.io.filefilter;FileFilterUtils;FileFilterUtils;();generated",
-        "org.apache.commons.io.filefilter;FileFilterUtils;ageFileFilter;(Date);generated",
-        "org.apache.commons.io.filefilter;FileFilterUtils;ageFileFilter;(Date,boolean);generated",
-        "org.apache.commons.io.filefilter;FileFilterUtils;ageFileFilter;(File);generated",
-        "org.apache.commons.io.filefilter;FileFilterUtils;ageFileFilter;(File,boolean);generated",
-        "org.apache.commons.io.filefilter;FileFilterUtils;ageFileFilter;(long);generated",
-        "org.apache.commons.io.filefilter;FileFilterUtils;ageFileFilter;(long,boolean);generated",
-        "org.apache.commons.io.filefilter;FileFilterUtils;directoryFileFilter;();generated",
-        "org.apache.commons.io.filefilter;FileFilterUtils;falseFileFilter;();generated",
-        "org.apache.commons.io.filefilter;FileFilterUtils;fileFileFilter;();generated",
-        "org.apache.commons.io.filefilter;FileFilterUtils;filter;(IOFileFilter,File[]);generated",
-        "org.apache.commons.io.filefilter;FileFilterUtils;filter;(IOFileFilter,Iterable);generated",
-        "org.apache.commons.io.filefilter;FileFilterUtils;filterList;(IOFileFilter,File[]);generated",
-        "org.apache.commons.io.filefilter;FileFilterUtils;filterList;(IOFileFilter,Iterable);generated",
-        "org.apache.commons.io.filefilter;FileFilterUtils;filterSet;(IOFileFilter,File[]);generated",
-        "org.apache.commons.io.filefilter;FileFilterUtils;filterSet;(IOFileFilter,Iterable);generated",
-        "org.apache.commons.io.filefilter;FileFilterUtils;sizeFileFilter;(long);generated",
-        "org.apache.commons.io.filefilter;FileFilterUtils;sizeFileFilter;(long,boolean);generated",
-        "org.apache.commons.io.filefilter;FileFilterUtils;sizeRangeFileFilter;(long,long);generated",
-        "org.apache.commons.io.filefilter;FileFilterUtils;trueFileFilter;();generated",
-        "org.apache.commons.io.filefilter;IOFileFilter;and;(IOFileFilter);generated",
-        "org.apache.commons.io.filefilter;IOFileFilter;negate;();generated",
-        "org.apache.commons.io.filefilter;IOFileFilter;or;(IOFileFilter);generated",
-        "org.apache.commons.io.filefilter;OrFileFilter;OrFileFilter;();generated",
-        "org.apache.commons.io.filefilter;RegexFileFilter;RegexFileFilter;(String);generated",
-        "org.apache.commons.io.filefilter;RegexFileFilter;RegexFileFilter;(String,IOCase);generated",
-        "org.apache.commons.io.filefilter;RegexFileFilter;RegexFileFilter;(String,int);generated",
-        "org.apache.commons.io.filefilter;SizeFileFilter;SizeFileFilter;(long);generated",
-        "org.apache.commons.io.filefilter;SizeFileFilter;SizeFileFilter;(long,boolean);generated",
-        "org.apache.commons.io.filefilter;SizeFileFilter;toString;();generated",
-        "org.apache.commons.io.filefilter;SymbolicLinkFileFilter;SymbolicLinkFileFilter;(FileVisitResult,FileVisitResult);generated",
-        "org.apache.commons.io.filefilter;TrueFileFilter;toString;();generated",
-        "org.apache.commons.io.function;IOBiConsumer;accept;(Object,Object);generated",
-        "org.apache.commons.io.function;IOBiConsumer;andThen;(IOBiConsumer);generated",
-        "org.apache.commons.io.function;IOBiFunction;andThen;(Function);generated",
-        "org.apache.commons.io.function;IOBiFunction;andThen;(IOFunction);generated",
-        "org.apache.commons.io.function;IOBiFunction;apply;(Object,Object);generated",
-        "org.apache.commons.io.function;IOConsumer;accept;(Object);generated",
-        "org.apache.commons.io.function;IOConsumer;andThen;(IOConsumer);generated",
-        "org.apache.commons.io.function;IOConsumer;forEach;(Object[],IOConsumer);generated",
-        "org.apache.commons.io.function;IOConsumer;forEachIndexed;(Stream,IOConsumer);generated",
-        "org.apache.commons.io.function;IOConsumer;noop;();generated",
-        "org.apache.commons.io.function;IOFunction;andThen;(Consumer);generated",
-        "org.apache.commons.io.function;IOFunction;andThen;(Function);generated",
-        "org.apache.commons.io.function;IOFunction;andThen;(IOConsumer);generated",
-        "org.apache.commons.io.function;IOFunction;andThen;(IOFunction);generated",
-        "org.apache.commons.io.function;IOFunction;apply;(Object);generated",
-        "org.apache.commons.io.function;IOFunction;compose;(Function);generated",
-        "org.apache.commons.io.function;IOFunction;compose;(IOFunction);generated",
-        "org.apache.commons.io.function;IOFunction;compose;(IOSupplier);generated",
-        "org.apache.commons.io.function;IOFunction;compose;(Supplier);generated",
-        "org.apache.commons.io.function;IOFunction;identity;();generated",
-        "org.apache.commons.io.function;IORunnable;run;();generated",
-        "org.apache.commons.io.function;IOSupplier;get;();generated",
-        "org.apache.commons.io.function;IOTriFunction;andThen;(Function);generated",
-        "org.apache.commons.io.function;IOTriFunction;andThen;(IOFunction);generated",
-        "org.apache.commons.io.function;IOTriFunction;apply;(Object,Object,Object);generated",
-        "org.apache.commons.io.input.buffer;CircularByteBuffer;CircularByteBuffer;();generated",
-        "org.apache.commons.io.input.buffer;CircularByteBuffer;CircularByteBuffer;(int);generated",
-        "org.apache.commons.io.input.buffer;CircularByteBuffer;add;(byte);generated",
-        "org.apache.commons.io.input.buffer;CircularByteBuffer;add;(byte[],int,int);generated",
-        "org.apache.commons.io.input.buffer;CircularByteBuffer;clear;();generated",
-        "org.apache.commons.io.input.buffer;CircularByteBuffer;getCurrentNumberOfBytes;();generated",
-        "org.apache.commons.io.input.buffer;CircularByteBuffer;getSpace;();generated",
-        "org.apache.commons.io.input.buffer;CircularByteBuffer;hasBytes;();generated",
-        "org.apache.commons.io.input.buffer;CircularByteBuffer;hasSpace;();generated",
-        "org.apache.commons.io.input.buffer;CircularByteBuffer;hasSpace;(int);generated",
-        "org.apache.commons.io.input.buffer;CircularByteBuffer;peek;(byte[],int,int);generated",
-        "org.apache.commons.io.input.buffer;CircularByteBuffer;read;();generated",
-        "org.apache.commons.io.input.buffer;CircularByteBuffer;read;(byte[],int,int);generated",
-        "org.apache.commons.io.input.buffer;PeekableInputStream;peek;(byte[]);generated",
-        "org.apache.commons.io.input.buffer;PeekableInputStream;peek;(byte[],int,int);generated",
-        "org.apache.commons.io.input;AutoCloseInputStream;AutoCloseInputStream;(InputStream);generated",
-        "org.apache.commons.io.input;BOMInputStream;BOMInputStream;(InputStream);generated",
-        "org.apache.commons.io.input;BOMInputStream;BOMInputStream;(InputStream,boolean);generated",
-        "org.apache.commons.io.input;BOMInputStream;hasBOM;();generated",
-        "org.apache.commons.io.input;BOMInputStream;hasBOM;(ByteOrderMark);generated",
-        "org.apache.commons.io.input;BoundedInputStream;isPropagateClose;();generated",
-        "org.apache.commons.io.input;BoundedInputStream;setPropagateClose;(boolean);generated",
-        "org.apache.commons.io.input;BoundedInputStream;toString;();generated",
-        "org.apache.commons.io.input;BrokenInputStream;BrokenInputStream;();generated",
-        "org.apache.commons.io.input;BrokenInputStream;BrokenInputStream;(IOException);generated",
-        "org.apache.commons.io.input;BrokenReader;BrokenReader;();generated",
-        "org.apache.commons.io.input;BrokenReader;BrokenReader;(IOException);generated",
-        "org.apache.commons.io.input;BufferedFileChannelInputStream;BufferedFileChannelInputStream;(File);generated",
-        "org.apache.commons.io.input;BufferedFileChannelInputStream;BufferedFileChannelInputStream;(File,int);generated",
-        "org.apache.commons.io.input;BufferedFileChannelInputStream;BufferedFileChannelInputStream;(Path);generated",
-        "org.apache.commons.io.input;BufferedFileChannelInputStream;BufferedFileChannelInputStream;(Path,int);generated",
-        "org.apache.commons.io.input;CharSequenceInputStream;CharSequenceInputStream;(CharSequence,Charset);generated",
-        "org.apache.commons.io.input;CharSequenceInputStream;CharSequenceInputStream;(CharSequence,Charset,int);generated",
-        "org.apache.commons.io.input;CharSequenceInputStream;CharSequenceInputStream;(CharSequence,String);generated",
-        "org.apache.commons.io.input;CharSequenceInputStream;CharSequenceInputStream;(CharSequence,String,int);generated",
-        "org.apache.commons.io.input;CharacterFilterReader;CharacterFilterReader;(Reader,int);generated",
-        "org.apache.commons.io.input;CharacterSetFilterReader;CharacterSetFilterReader;(Reader,Integer[]);generated",
-        "org.apache.commons.io.input;CharacterSetFilterReader;CharacterSetFilterReader;(Reader,Set);generated",
-        "org.apache.commons.io.input;CloseShieldInputStream;CloseShieldInputStream;(InputStream);generated",
-        "org.apache.commons.io.input;CloseShieldReader;CloseShieldReader;(Reader);generated",
-        "org.apache.commons.io.input;CloseShieldReader;wrap;(Reader);generated",
-        "org.apache.commons.io.input;ClosedInputStream;ClosedInputStream;();generated",
-        "org.apache.commons.io.input;ClosedReader;ClosedReader;();generated",
-        "org.apache.commons.io.input;CountingInputStream;CountingInputStream;(InputStream);generated",
-        "org.apache.commons.io.input;CountingInputStream;getByteCount;();generated",
-        "org.apache.commons.io.input;CountingInputStream;getCount;();generated",
-        "org.apache.commons.io.input;CountingInputStream;resetByteCount;();generated",
-        "org.apache.commons.io.input;CountingInputStream;resetCount;();generated",
-        "org.apache.commons.io.input;DemuxInputStream;DemuxInputStream;();generated",
-        "org.apache.commons.io.input;DemuxInputStream;bindStream;(InputStream);generated",
-        "org.apache.commons.io.input;MarkShieldInputStream;MarkShieldInputStream;(InputStream);generated",
-        "org.apache.commons.io.input;MemoryMappedFileInputStream;MemoryMappedFileInputStream;(Path);generated",
-        "org.apache.commons.io.input;MemoryMappedFileInputStream;MemoryMappedFileInputStream;(Path,int);generated",
-        "org.apache.commons.io.input;MessageDigestCalculatingInputStream;MessageDigestCalculatingInputStream;(InputStream);generated",
-        "org.apache.commons.io.input;MessageDigestCalculatingInputStream;MessageDigestCalculatingInputStream;(InputStream,String);generated",
-        "org.apache.commons.io.input;NullInputStream;NullInputStream;();generated",
-        "org.apache.commons.io.input;NullInputStream;NullInputStream;(long);generated",
-        "org.apache.commons.io.input;NullInputStream;NullInputStream;(long,boolean,boolean);generated",
-        "org.apache.commons.io.input;NullInputStream;getPosition;();generated",
-        "org.apache.commons.io.input;NullInputStream;getSize;();generated",
-        "org.apache.commons.io.input;NullReader;NullReader;();generated",
-        "org.apache.commons.io.input;NullReader;NullReader;(long);generated",
-        "org.apache.commons.io.input;NullReader;NullReader;(long,boolean,boolean);generated",
-        "org.apache.commons.io.input;NullReader;getPosition;();generated",
-        "org.apache.commons.io.input;NullReader;getSize;();generated",
-        "org.apache.commons.io.input;ObservableInputStream$Observer;Observer;();generated",
-        "org.apache.commons.io.input;ObservableInputStream$Observer;closed;();generated",
-        "org.apache.commons.io.input;ObservableInputStream$Observer;data;(byte[],int,int);generated",
-        "org.apache.commons.io.input;ObservableInputStream$Observer;data;(int);generated",
-        "org.apache.commons.io.input;ObservableInputStream$Observer;error;(IOException);generated",
-        "org.apache.commons.io.input;ObservableInputStream$Observer;finished;();generated",
-        "org.apache.commons.io.input;ObservableInputStream;ObservableInputStream;(InputStream);generated",
-        "org.apache.commons.io.input;ObservableInputStream;consume;();generated",
-        "org.apache.commons.io.input;ObservableInputStream;remove;(Observer);generated",
-        "org.apache.commons.io.input;ObservableInputStream;removeAllObservers;();generated",
-        "org.apache.commons.io.input;ProxyInputStream;ProxyInputStream;(InputStream);generated",
-        "org.apache.commons.io.input;ProxyReader;ProxyReader;(Reader);generated",
-        "org.apache.commons.io.input;QueueInputStream;QueueInputStream;();generated",
-        "org.apache.commons.io.input;QueueInputStream;QueueInputStream;(BlockingQueue);generated",
-        "org.apache.commons.io.input;QueueInputStream;newQueueOutputStream;();generated",
-        "org.apache.commons.io.input;RandomAccessFileInputStream;availableLong;();generated",
-        "org.apache.commons.io.input;RandomAccessFileInputStream;isCloseOnClose;();generated",
-        "org.apache.commons.io.input;ReversedLinesFileReader;ReversedLinesFileReader;(File);generated",
-        "org.apache.commons.io.input;ReversedLinesFileReader;ReversedLinesFileReader;(File,Charset);generated",
-        "org.apache.commons.io.input;ReversedLinesFileReader;ReversedLinesFileReader;(File,int,Charset);generated",
-        "org.apache.commons.io.input;ReversedLinesFileReader;ReversedLinesFileReader;(File,int,String);generated",
-        "org.apache.commons.io.input;ReversedLinesFileReader;ReversedLinesFileReader;(Path,Charset);generated",
-        "org.apache.commons.io.input;ReversedLinesFileReader;ReversedLinesFileReader;(Path,int,Charset);generated",
-        "org.apache.commons.io.input;ReversedLinesFileReader;ReversedLinesFileReader;(Path,int,String);generated",
-        "org.apache.commons.io.input;SwappedDataInputStream;SwappedDataInputStream;(InputStream);generated",
-        "org.apache.commons.io.input;TaggedInputStream;TaggedInputStream;(InputStream);generated",
-        "org.apache.commons.io.input;TaggedInputStream;isCauseOf;(Throwable);generated",
-        "org.apache.commons.io.input;TaggedInputStream;throwIfCauseOf;(Throwable);generated",
-        "org.apache.commons.io.input;TaggedReader;TaggedReader;(Reader);generated",
-        "org.apache.commons.io.input;TaggedReader;isCauseOf;(Throwable);generated",
-        "org.apache.commons.io.input;TaggedReader;throwIfCauseOf;(Throwable);generated",
-        "org.apache.commons.io.input;Tailer$RandomAccessResourceBridge;getPointer;();generated",
-        "org.apache.commons.io.input;Tailer$RandomAccessResourceBridge;read;(byte[]);generated",
-        "org.apache.commons.io.input;Tailer$RandomAccessResourceBridge;seek;(long);generated",
-        "org.apache.commons.io.input;Tailer$Tailable;getRandomAccess;(String);generated",
-        "org.apache.commons.io.input;Tailer$Tailable;isNewer;(FileTime);generated",
-        "org.apache.commons.io.input;Tailer$Tailable;lastModifiedFileTime;();generated",
-        "org.apache.commons.io.input;Tailer$Tailable;size;();generated",
-        "org.apache.commons.io.input;Tailer;getDelay;();generated",
-        "org.apache.commons.io.input;Tailer;stop;();generated",
-        "org.apache.commons.io.input;TailerListener;fileNotFound;();generated",
-        "org.apache.commons.io.input;TailerListener;fileRotated;();generated",
-        "org.apache.commons.io.input;TailerListener;handle;(Exception);generated",
-        "org.apache.commons.io.input;TailerListener;handle;(String);generated",
-        "org.apache.commons.io.input;TailerListener;init;(Tailer);generated",
-        "org.apache.commons.io.input;TailerListenerAdapter;TailerListenerAdapter;();generated",
-        "org.apache.commons.io.input;TailerListenerAdapter;endOfFileReached;();generated",
-        "org.apache.commons.io.input;TimestampedObserver;TimestampedObserver;();generated",
-        "org.apache.commons.io.input;TimestampedObserver;getOpenToCloseDuration;();generated",
-        "org.apache.commons.io.input;TimestampedObserver;getOpenToNowDuration;();generated",
-        "org.apache.commons.io.input;UncheckedFilterInputStream;UncheckedFilterInputStream;(InputStream);generated",
-        "org.apache.commons.io.input;UncheckedFilterReader;UncheckedFilterReader;(Reader);generated",
-        "org.apache.commons.io.input;UncheckedFilterReader;on;(Reader);generated",
-        "org.apache.commons.io.input;XmlStreamReader;XmlStreamReader;(File);generated",
-        "org.apache.commons.io.input;XmlStreamReader;XmlStreamReader;(Path);generated",
-        "org.apache.commons.io.input;XmlStreamReader;XmlStreamReader;(URL);generated",
-        "org.apache.commons.io.monitor;FileAlterationListener;onDirectoryChange;(File);generated",
-        "org.apache.commons.io.monitor;FileAlterationListener;onDirectoryCreate;(File);generated",
-        "org.apache.commons.io.monitor;FileAlterationListener;onDirectoryDelete;(File);generated",
-        "org.apache.commons.io.monitor;FileAlterationListener;onFileChange;(File);generated",
-        "org.apache.commons.io.monitor;FileAlterationListener;onFileCreate;(File);generated",
-        "org.apache.commons.io.monitor;FileAlterationListener;onFileDelete;(File);generated",
-        "org.apache.commons.io.monitor;FileAlterationListener;onStart;(FileAlterationObserver);generated",
-        "org.apache.commons.io.monitor;FileAlterationListener;onStop;(FileAlterationObserver);generated",
-        "org.apache.commons.io.monitor;FileAlterationListenerAdaptor;FileAlterationListenerAdaptor;();generated",
-        "org.apache.commons.io.monitor;FileAlterationMonitor;FileAlterationMonitor;();generated",
-        "org.apache.commons.io.monitor;FileAlterationMonitor;FileAlterationMonitor;(long);generated",
-        "org.apache.commons.io.monitor;FileAlterationMonitor;getInterval;();generated",
-        "org.apache.commons.io.monitor;FileAlterationMonitor;removeObserver;(FileAlterationObserver);generated",
-        "org.apache.commons.io.monitor;FileAlterationMonitor;start;();generated",
-        "org.apache.commons.io.monitor;FileAlterationMonitor;stop;();generated",
-        "org.apache.commons.io.monitor;FileAlterationMonitor;stop;(long);generated",
-        "org.apache.commons.io.monitor;FileAlterationObserver;checkAndNotify;();generated",
-        "org.apache.commons.io.monitor;FileAlterationObserver;destroy;();generated",
-        "org.apache.commons.io.monitor;FileAlterationObserver;initialize;();generated",
-        "org.apache.commons.io.monitor;FileAlterationObserver;removeListener;(FileAlterationListener);generated",
-        "org.apache.commons.io.monitor;FileEntry;getLastModified;();generated",
-        "org.apache.commons.io.monitor;FileEntry;getLength;();generated",
-        "org.apache.commons.io.monitor;FileEntry;getLevel;();generated",
-        "org.apache.commons.io.monitor;FileEntry;isDirectory;();generated",
-        "org.apache.commons.io.monitor;FileEntry;isExists;();generated",
-        "org.apache.commons.io.monitor;FileEntry;refresh;(File);generated",
-        "org.apache.commons.io.monitor;FileEntry;setDirectory;(boolean);generated",
-        "org.apache.commons.io.monitor;FileEntry;setExists;(boolean);generated",
-        "org.apache.commons.io.monitor;FileEntry;setLastModified;(long);generated",
-        "org.apache.commons.io.monitor;FileEntry;setLength;(long);generated",
-        "org.apache.commons.io.output;AbstractByteArrayOutputStream;AbstractByteArrayOutputStream;();generated",
-        "org.apache.commons.io.output;AbstractByteArrayOutputStream;reset;();generated",
-        "org.apache.commons.io.output;AbstractByteArrayOutputStream;size;();generated",
-        "org.apache.commons.io.output;AbstractByteArrayOutputStream;toByteArray;();generated",
-        "org.apache.commons.io.output;AbstractByteArrayOutputStream;toInputStream;();generated",
-        "org.apache.commons.io.output;AbstractByteArrayOutputStream;write;(InputStream);generated",
-        "org.apache.commons.io.output;AbstractByteArrayOutputStream;writeTo;(OutputStream);generated",
-        "org.apache.commons.io.output;BrokenOutputStream;BrokenOutputStream;();generated",
-        "org.apache.commons.io.output;BrokenOutputStream;BrokenOutputStream;(IOException);generated",
-        "org.apache.commons.io.output;BrokenWriter;BrokenWriter;();generated",
-        "org.apache.commons.io.output;BrokenWriter;BrokenWriter;(IOException);generated",
-        "org.apache.commons.io.output;ByteArrayOutputStream;ByteArrayOutputStream;();generated",
-        "org.apache.commons.io.output;ByteArrayOutputStream;ByteArrayOutputStream;(int);generated",
-        "org.apache.commons.io.output;ByteArrayOutputStream;toBufferedInputStream;(InputStream);generated",
-        "org.apache.commons.io.output;ByteArrayOutputStream;toBufferedInputStream;(InputStream,int);generated",
-        "org.apache.commons.io.output;ChunkedWriter;ChunkedWriter;(Writer);generated",
-        "org.apache.commons.io.output;ChunkedWriter;ChunkedWriter;(Writer,int);generated",
-        "org.apache.commons.io.output;CloseShieldWriter;CloseShieldWriter;(Writer);generated",
-        "org.apache.commons.io.output;CloseShieldWriter;wrap;(Writer);generated",
-        "org.apache.commons.io.output;ClosedOutputStream;ClosedOutputStream;();generated",
-        "org.apache.commons.io.output;ClosedWriter;ClosedWriter;();generated",
-        "org.apache.commons.io.output;CountingOutputStream;getByteCount;();generated",
-        "org.apache.commons.io.output;CountingOutputStream;getCount;();generated",
-        "org.apache.commons.io.output;CountingOutputStream;resetByteCount;();generated",
-        "org.apache.commons.io.output;CountingOutputStream;resetCount;();generated",
-        "org.apache.commons.io.output;DeferredFileOutputStream;isInMemory;();generated",
-        "org.apache.commons.io.output;DeferredFileOutputStream;toInputStream;();generated",
-        "org.apache.commons.io.output;DemuxOutputStream;DemuxOutputStream;();generated",
-        "org.apache.commons.io.output;DemuxOutputStream;bindStream;(OutputStream);generated",
-        "org.apache.commons.io.output;FileWriterWithEncoding;FileWriterWithEncoding;(File,Charset);generated",
-        "org.apache.commons.io.output;FileWriterWithEncoding;FileWriterWithEncoding;(File,Charset,boolean);generated",
-        "org.apache.commons.io.output;FileWriterWithEncoding;FileWriterWithEncoding;(File,CharsetEncoder);generated",
-        "org.apache.commons.io.output;FileWriterWithEncoding;FileWriterWithEncoding;(File,CharsetEncoder,boolean);generated",
-        "org.apache.commons.io.output;FileWriterWithEncoding;FileWriterWithEncoding;(File,String);generated",
-        "org.apache.commons.io.output;FileWriterWithEncoding;FileWriterWithEncoding;(File,String,boolean);generated",
-        "org.apache.commons.io.output;FileWriterWithEncoding;FileWriterWithEncoding;(String,Charset);generated",
-        "org.apache.commons.io.output;FileWriterWithEncoding;FileWriterWithEncoding;(String,Charset,boolean);generated",
-        "org.apache.commons.io.output;FileWriterWithEncoding;FileWriterWithEncoding;(String,CharsetEncoder);generated",
-        "org.apache.commons.io.output;FileWriterWithEncoding;FileWriterWithEncoding;(String,CharsetEncoder,boolean);generated",
-        "org.apache.commons.io.output;FileWriterWithEncoding;FileWriterWithEncoding;(String,String);generated",
-        "org.apache.commons.io.output;FileWriterWithEncoding;FileWriterWithEncoding;(String,String,boolean);generated",
-        "org.apache.commons.io.output;LockableFileWriter;LockableFileWriter;(File);generated",
-        "org.apache.commons.io.output;LockableFileWriter;LockableFileWriter;(File,Charset);generated",
-        "org.apache.commons.io.output;LockableFileWriter;LockableFileWriter;(File,String);generated",
-        "org.apache.commons.io.output;LockableFileWriter;LockableFileWriter;(File,boolean);generated",
-        "org.apache.commons.io.output;LockableFileWriter;LockableFileWriter;(String);generated",
-        "org.apache.commons.io.output;LockableFileWriter;LockableFileWriter;(String,boolean);generated",
-        "org.apache.commons.io.output;NullOutputStream;NullOutputStream;();generated",
-        "org.apache.commons.io.output;NullPrintStream;NullPrintStream;();generated",
-        "org.apache.commons.io.output;NullWriter;NullWriter;();generated",
-        "org.apache.commons.io.output;ProxyWriter;ProxyWriter;(Writer);generated",
-        "org.apache.commons.io.output;QueueOutputStream;QueueOutputStream;();generated",
-        "org.apache.commons.io.output;QueueOutputStream;QueueOutputStream;(BlockingQueue);generated",
-        "org.apache.commons.io.output;QueueOutputStream;newQueueInputStream;();generated",
-        "org.apache.commons.io.output;StringBuilderWriter;StringBuilderWriter;();generated",
-        "org.apache.commons.io.output;StringBuilderWriter;StringBuilderWriter;(int);generated",
-        "org.apache.commons.io.output;TaggedOutputStream;isCauseOf;(Exception);generated",
-        "org.apache.commons.io.output;TaggedOutputStream;throwIfCauseOf;(Exception);generated",
-        "org.apache.commons.io.output;TaggedWriter;TaggedWriter;(Writer);generated",
-        "org.apache.commons.io.output;TaggedWriter;isCauseOf;(Exception);generated",
-        "org.apache.commons.io.output;TaggedWriter;throwIfCauseOf;(Exception);generated",
-        "org.apache.commons.io.output;ThresholdingOutputStream;ThresholdingOutputStream;(int);generated",
-        "org.apache.commons.io.output;ThresholdingOutputStream;getByteCount;();generated",
-        "org.apache.commons.io.output;ThresholdingOutputStream;getThreshold;();generated",
-        "org.apache.commons.io.output;ThresholdingOutputStream;isThresholdExceeded;();generated",
-        "org.apache.commons.io.output;UncheckedFilterWriter;on;(Writer);generated",
-        "org.apache.commons.io.output;UnsynchronizedByteArrayOutputStream;UnsynchronizedByteArrayOutputStream;();generated",
-        "org.apache.commons.io.output;UnsynchronizedByteArrayOutputStream;UnsynchronizedByteArrayOutputStream;(int);generated",
-        "org.apache.commons.io.output;UnsynchronizedByteArrayOutputStream;toBufferedInputStream;(InputStream);generated",
-        "org.apache.commons.io.output;UnsynchronizedByteArrayOutputStream;toBufferedInputStream;(InputStream,int);generated",
-        "org.apache.commons.io.output;XmlStreamWriter;XmlStreamWriter;(File);generated",
-        "org.apache.commons.io.serialization;ClassNameMatcher;matches;(String);generated",
-        "org.apache.commons.io;ByteOrderMark;get;(int);generated",
-        "org.apache.commons.io;ByteOrderMark;getBytes;();generated",
-        "org.apache.commons.io;ByteOrderMark;length;();generated",
-        "org.apache.commons.io;ByteOrderParser;parseByteOrder;(String);generated",
-        "org.apache.commons.io;Charsets;Charsets;();generated",
-        "org.apache.commons.io;Charsets;requiredCharsets;();generated",
-        "org.apache.commons.io;Charsets;toCharset;(Charset);generated",
-        "org.apache.commons.io;Charsets;toCharset;(String);generated",
-        "org.apache.commons.io;CopyUtils;CopyUtils;();generated",
-        "org.apache.commons.io;CopyUtils;copy;(Reader,OutputStream);generated",
-        "org.apache.commons.io;CopyUtils;copy;(Reader,OutputStream,String);generated",
-        "org.apache.commons.io;CopyUtils;copy;(String,OutputStream);generated",
-        "org.apache.commons.io;CopyUtils;copy;(String,OutputStream,String);generated",
-        "org.apache.commons.io;DirectoryWalker$CancelException;getDepth;();generated",
-        "org.apache.commons.io;EndianUtils;EndianUtils;();generated",
-        "org.apache.commons.io;EndianUtils;readSwappedDouble;(InputStream);generated",
-        "org.apache.commons.io;EndianUtils;readSwappedDouble;(byte[],int);generated",
-        "org.apache.commons.io;EndianUtils;readSwappedFloat;(InputStream);generated",
-        "org.apache.commons.io;EndianUtils;readSwappedFloat;(byte[],int);generated",
-        "org.apache.commons.io;EndianUtils;readSwappedInteger;(InputStream);generated",
-        "org.apache.commons.io;EndianUtils;readSwappedInteger;(byte[],int);generated",
-        "org.apache.commons.io;EndianUtils;readSwappedLong;(InputStream);generated",
-        "org.apache.commons.io;EndianUtils;readSwappedLong;(byte[],int);generated",
-        "org.apache.commons.io;EndianUtils;readSwappedShort;(InputStream);generated",
-        "org.apache.commons.io;EndianUtils;readSwappedShort;(byte[],int);generated",
-        "org.apache.commons.io;EndianUtils;readSwappedUnsignedInteger;(InputStream);generated",
-        "org.apache.commons.io;EndianUtils;readSwappedUnsignedInteger;(byte[],int);generated",
-        "org.apache.commons.io;EndianUtils;readSwappedUnsignedShort;(InputStream);generated",
-        "org.apache.commons.io;EndianUtils;readSwappedUnsignedShort;(byte[],int);generated",
-        "org.apache.commons.io;EndianUtils;swapDouble;(double);generated",
-        "org.apache.commons.io;EndianUtils;swapFloat;(float);generated",
-        "org.apache.commons.io;EndianUtils;swapInteger;(int);generated",
-        "org.apache.commons.io;EndianUtils;swapLong;(long);generated",
-        "org.apache.commons.io;EndianUtils;swapShort;(short);generated",
-        "org.apache.commons.io;EndianUtils;writeSwappedDouble;(OutputStream,double);generated",
-        "org.apache.commons.io;EndianUtils;writeSwappedDouble;(byte[],int,double);generated",
-        "org.apache.commons.io;EndianUtils;writeSwappedFloat;(OutputStream,float);generated",
-        "org.apache.commons.io;EndianUtils;writeSwappedFloat;(byte[],int,float);generated",
-        "org.apache.commons.io;EndianUtils;writeSwappedInteger;(OutputStream,int);generated",
-        "org.apache.commons.io;EndianUtils;writeSwappedInteger;(byte[],int,int);generated",
-        "org.apache.commons.io;EndianUtils;writeSwappedLong;(OutputStream,long);generated",
-        "org.apache.commons.io;EndianUtils;writeSwappedLong;(byte[],int,long);generated",
-        "org.apache.commons.io;EndianUtils;writeSwappedShort;(OutputStream,short);generated",
-        "org.apache.commons.io;EndianUtils;writeSwappedShort;(byte[],int,short);generated",
-        "org.apache.commons.io;FileCleaner;FileCleaner;();generated",
-        "org.apache.commons.io;FileCleaner;exitWhenFinished;();generated",
-        "org.apache.commons.io;FileCleaner;getInstance;();generated",
-        "org.apache.commons.io;FileCleaner;getTrackCount;();generated",
-        "org.apache.commons.io;FileCleaner;track;(File,Object);generated",
-        "org.apache.commons.io;FileCleaner;track;(File,Object,FileDeleteStrategy);generated",
-        "org.apache.commons.io;FileCleaner;track;(String,Object);generated",
-        "org.apache.commons.io;FileCleaner;track;(String,Object,FileDeleteStrategy);generated",
-        "org.apache.commons.io;FileCleaningTracker;FileCleaningTracker;();generated",
-        "org.apache.commons.io;FileCleaningTracker;exitWhenFinished;();generated",
-        "org.apache.commons.io;FileCleaningTracker;getTrackCount;();generated",
-        "org.apache.commons.io;FileCleaningTracker;track;(File,Object);generated",
-        "org.apache.commons.io;FileCleaningTracker;track;(File,Object,FileDeleteStrategy);generated",
-        "org.apache.commons.io;FileCleaningTracker;track;(String,Object);generated",
-        "org.apache.commons.io;FileCleaningTracker;track;(String,Object,FileDeleteStrategy);generated",
-        "org.apache.commons.io;FileDeleteStrategy;delete;(File);generated",
-        "org.apache.commons.io;FileDeleteStrategy;deleteQuietly;(File);generated",
-        "org.apache.commons.io;FileExistsException;FileExistsException;();generated",
-        "org.apache.commons.io;FileExistsException;FileExistsException;(File);generated",
-        "org.apache.commons.io;FileExistsException;FileExistsException;(String);generated",
-        "org.apache.commons.io;FileSystem;getCurrent;();generated",
-        "org.apache.commons.io;FileSystem;getIllegalFileNameChars;();generated",
-        "org.apache.commons.io;FileSystem;getMaxFileNameLength;();generated",
-        "org.apache.commons.io;FileSystem;getMaxPathLength;();generated",
-        "org.apache.commons.io;FileSystem;getNameSeparator;();generated",
-        "org.apache.commons.io;FileSystem;getReservedFileNames;();generated",
-        "org.apache.commons.io;FileSystem;isCasePreserving;();generated",
-        "org.apache.commons.io;FileSystem;isCaseSensitive;();generated",
-        "org.apache.commons.io;FileSystem;isLegalFileName;(CharSequence);generated",
-        "org.apache.commons.io;FileSystem;isReservedFileName;(CharSequence);generated",
-        "org.apache.commons.io;FileSystem;supportsDriveLetter;();generated",
-        "org.apache.commons.io;FileSystemUtils;FileSystemUtils;();generated",
-        "org.apache.commons.io;FileSystemUtils;freeSpace;(String);generated",
-        "org.apache.commons.io;FileSystemUtils;freeSpaceKb;();generated",
-        "org.apache.commons.io;FileSystemUtils;freeSpaceKb;(String);generated",
-        "org.apache.commons.io;FileSystemUtils;freeSpaceKb;(String,long);generated",
-        "org.apache.commons.io;FileSystemUtils;freeSpaceKb;(long);generated",
-        "org.apache.commons.io;FileUtils;FileUtils;();generated",
-        "org.apache.commons.io;FileUtils;byteCountToDisplaySize;(BigInteger);generated",
-        "org.apache.commons.io;FileUtils;byteCountToDisplaySize;(Number);generated",
-        "org.apache.commons.io;FileUtils;byteCountToDisplaySize;(long);generated",
-        "org.apache.commons.io;FileUtils;checksumCRC32;(File);generated",
-        "org.apache.commons.io;FileUtils;cleanDirectory;(File);generated",
-        "org.apache.commons.io;FileUtils;contentEquals;(File,File);generated",
-        "org.apache.commons.io;FileUtils;contentEqualsIgnoreEOL;(File,File,String);generated",
-        "org.apache.commons.io;FileUtils;copyDirectory;(File,File);generated",
-        "org.apache.commons.io;FileUtils;copyDirectory;(File,File,FileFilter);generated",
-        "org.apache.commons.io;FileUtils;copyDirectory;(File,File,FileFilter,boolean);generated",
-        "org.apache.commons.io;FileUtils;copyDirectory;(File,File,FileFilter,boolean,CopyOption[]);generated",
-        "org.apache.commons.io;FileUtils;copyDirectory;(File,File,boolean);generated",
-        "org.apache.commons.io;FileUtils;copyDirectoryToDirectory;(File,File);generated",
-        "org.apache.commons.io;FileUtils;copyFile;(File,File);generated",
-        "org.apache.commons.io;FileUtils;copyFile;(File,File,CopyOption[]);generated",
-        "org.apache.commons.io;FileUtils;copyFile;(File,File,boolean);generated",
-        "org.apache.commons.io;FileUtils;copyFile;(File,File,boolean,CopyOption[]);generated",
-        "org.apache.commons.io;FileUtils;copyFile;(File,OutputStream);generated",
-        "org.apache.commons.io;FileUtils;copyFileToDirectory;(File,File);generated",
-        "org.apache.commons.io;FileUtils;copyFileToDirectory;(File,File,boolean);generated",
-        "org.apache.commons.io;FileUtils;copyInputStreamToFile;(InputStream,File);generated",
-        "org.apache.commons.io;FileUtils;copyToDirectory;(File,File);generated",
-        "org.apache.commons.io;FileUtils;copyToDirectory;(Iterable,File);generated",
-        "org.apache.commons.io;FileUtils;copyToFile;(InputStream,File);generated",
-        "org.apache.commons.io;FileUtils;copyURLToFile;(URL,File);generated",
-        "org.apache.commons.io;FileUtils;copyURLToFile;(URL,File,int,int);generated",
-        "org.apache.commons.io;FileUtils;createParentDirectories;(File);generated",
-        "org.apache.commons.io;FileUtils;current;();generated",
-        "org.apache.commons.io;FileUtils;deleteDirectory;(File);generated",
-        "org.apache.commons.io;FileUtils;deleteQuietly;(File);generated",
-        "org.apache.commons.io;FileUtils;directoryContains;(File,File);generated",
-        "org.apache.commons.io;FileUtils;forceDelete;(File);generated",
-        "org.apache.commons.io;FileUtils;forceDeleteOnExit;(File);generated",
-        "org.apache.commons.io;FileUtils;forceMkdir;(File);generated",
-        "org.apache.commons.io;FileUtils;forceMkdirParent;(File);generated",
-        "org.apache.commons.io;FileUtils;getTempDirectory;();generated",
-        "org.apache.commons.io;FileUtils;getTempDirectoryPath;();generated",
-        "org.apache.commons.io;FileUtils;getUserDirectory;();generated",
-        "org.apache.commons.io;FileUtils;getUserDirectoryPath;();generated",
-        "org.apache.commons.io;FileUtils;isDirectory;(File,LinkOption[]);generated",
-        "org.apache.commons.io;FileUtils;isEmptyDirectory;(File);generated",
-        "org.apache.commons.io;FileUtils;isFileNewer;(File,ChronoLocalDate);generated",
-        "org.apache.commons.io;FileUtils;isFileNewer;(File,ChronoLocalDate,LocalTime);generated",
-        "org.apache.commons.io;FileUtils;isFileNewer;(File,ChronoLocalDateTime);generated",
-        "org.apache.commons.io;FileUtils;isFileNewer;(File,ChronoLocalDateTime,ZoneId);generated",
-        "org.apache.commons.io;FileUtils;isFileNewer;(File,ChronoZonedDateTime);generated",
-        "org.apache.commons.io;FileUtils;isFileNewer;(File,Date);generated",
-        "org.apache.commons.io;FileUtils;isFileNewer;(File,File);generated",
-        "org.apache.commons.io;FileUtils;isFileNewer;(File,FileTime);generated",
-        "org.apache.commons.io;FileUtils;isFileNewer;(File,Instant);generated",
-        "org.apache.commons.io;FileUtils;isFileNewer;(File,long);generated",
-        "org.apache.commons.io;FileUtils;isFileOlder;(File,ChronoLocalDate);generated",
-        "org.apache.commons.io;FileUtils;isFileOlder;(File,ChronoLocalDate,LocalTime);generated",
-        "org.apache.commons.io;FileUtils;isFileOlder;(File,ChronoLocalDateTime);generated",
-        "org.apache.commons.io;FileUtils;isFileOlder;(File,ChronoLocalDateTime,ZoneId);generated",
-        "org.apache.commons.io;FileUtils;isFileOlder;(File,ChronoZonedDateTime);generated",
-        "org.apache.commons.io;FileUtils;isFileOlder;(File,Date);generated",
-        "org.apache.commons.io;FileUtils;isFileOlder;(File,File);generated",
-        "org.apache.commons.io;FileUtils;isFileOlder;(File,FileTime);generated",
-        "org.apache.commons.io;FileUtils;isFileOlder;(File,Instant);generated",
-        "org.apache.commons.io;FileUtils;isFileOlder;(File,long);generated",
-        "org.apache.commons.io;FileUtils;isRegularFile;(File,LinkOption[]);generated",
-        "org.apache.commons.io;FileUtils;isSymlink;(File);generated",
-        "org.apache.commons.io;FileUtils;iterateFiles;(File,IOFileFilter,IOFileFilter);generated",
-        "org.apache.commons.io;FileUtils;iterateFiles;(File,String[],boolean);generated",
-        "org.apache.commons.io;FileUtils;iterateFilesAndDirs;(File,IOFileFilter,IOFileFilter);generated",
-        "org.apache.commons.io;FileUtils;lastModified;(File);generated",
-        "org.apache.commons.io;FileUtils;lastModifiedFileTime;(File);generated",
-        "org.apache.commons.io;FileUtils;lastModifiedUnchecked;(File);generated",
-        "org.apache.commons.io;FileUtils;lineIterator;(File);generated",
-        "org.apache.commons.io;FileUtils;lineIterator;(File,String);generated",
-        "org.apache.commons.io;FileUtils;listFiles;(File,IOFileFilter,IOFileFilter);generated",
-        "org.apache.commons.io;FileUtils;listFiles;(File,String[],boolean);generated",
-        "org.apache.commons.io;FileUtils;listFilesAndDirs;(File,IOFileFilter,IOFileFilter);generated",
-        "org.apache.commons.io;FileUtils;moveDirectory;(File,File);generated",
-        "org.apache.commons.io;FileUtils;moveDirectoryToDirectory;(File,File,boolean);generated",
-        "org.apache.commons.io;FileUtils;moveFile;(File,File);generated",
-        "org.apache.commons.io;FileUtils;moveFile;(File,File,CopyOption[]);generated",
-        "org.apache.commons.io;FileUtils;moveFileToDirectory;(File,File,boolean);generated",
-        "org.apache.commons.io;FileUtils;moveToDirectory;(File,File,boolean);generated",
-        "org.apache.commons.io;FileUtils;newOutputStream;(File,boolean);generated",
-        "org.apache.commons.io;FileUtils;openInputStream;(File);generated",
-        "org.apache.commons.io;FileUtils;openOutputStream;(File);generated",
-        "org.apache.commons.io;FileUtils;openOutputStream;(File,boolean);generated",
-        "org.apache.commons.io;FileUtils;readFileToByteArray;(File);generated",
-        "org.apache.commons.io;FileUtils;readFileToString;(File);generated",
-        "org.apache.commons.io;FileUtils;readFileToString;(File,Charset);generated",
-        "org.apache.commons.io;FileUtils;readFileToString;(File,String);generated",
-        "org.apache.commons.io;FileUtils;readLines;(File);generated",
-        "org.apache.commons.io;FileUtils;readLines;(File,Charset);generated",
-        "org.apache.commons.io;FileUtils;readLines;(File,String);generated",
-        "org.apache.commons.io;FileUtils;sizeOf;(File);generated",
-        "org.apache.commons.io;FileUtils;sizeOfAsBigInteger;(File);generated",
-        "org.apache.commons.io;FileUtils;sizeOfDirectory;(File);generated",
-        "org.apache.commons.io;FileUtils;sizeOfDirectoryAsBigInteger;(File);generated",
-        "org.apache.commons.io;FileUtils;streamFiles;(File,boolean,String[]);generated",
-        "org.apache.commons.io;FileUtils;toFile;(URL);generated",
-        "org.apache.commons.io;FileUtils;toFiles;(URL[]);generated",
-        "org.apache.commons.io;FileUtils;touch;(File);generated",
-        "org.apache.commons.io;FileUtils;waitFor;(File,int);generated",
-        "org.apache.commons.io;FileUtils;write;(File,CharSequence);generated",
-        "org.apache.commons.io;FileUtils;write;(File,CharSequence,Charset);generated",
-        "org.apache.commons.io;FileUtils;write;(File,CharSequence,Charset,boolean);generated",
-        "org.apache.commons.io;FileUtils;write;(File,CharSequence,String);generated",
-        "org.apache.commons.io;FileUtils;write;(File,CharSequence,String,boolean);generated",
-        "org.apache.commons.io;FileUtils;write;(File,CharSequence,boolean);generated",
-        "org.apache.commons.io;FileUtils;writeByteArrayToFile;(File,byte[]);generated",
-        "org.apache.commons.io;FileUtils;writeByteArrayToFile;(File,byte[],boolean);generated",
-        "org.apache.commons.io;FileUtils;writeByteArrayToFile;(File,byte[],int,int);generated",
-        "org.apache.commons.io;FileUtils;writeByteArrayToFile;(File,byte[],int,int,boolean);generated",
-        "org.apache.commons.io;FileUtils;writeLines;(File,Collection);generated",
-        "org.apache.commons.io;FileUtils;writeLines;(File,Collection,String);generated",
-        "org.apache.commons.io;FileUtils;writeLines;(File,Collection,String,boolean);generated",
-        "org.apache.commons.io;FileUtils;writeLines;(File,Collection,boolean);generated",
-        "org.apache.commons.io;FileUtils;writeLines;(File,String,Collection);generated",
-        "org.apache.commons.io;FileUtils;writeLines;(File,String,Collection,String);generated",
-        "org.apache.commons.io;FileUtils;writeLines;(File,String,Collection,String,boolean);generated",
-        "org.apache.commons.io;FileUtils;writeLines;(File,String,Collection,boolean);generated",
-        "org.apache.commons.io;FileUtils;writeStringToFile;(File,String);generated",
-        "org.apache.commons.io;FileUtils;writeStringToFile;(File,String,Charset);generated",
-        "org.apache.commons.io;FileUtils;writeStringToFile;(File,String,Charset,boolean);generated",
-        "org.apache.commons.io;FileUtils;writeStringToFile;(File,String,String);generated",
-        "org.apache.commons.io;FileUtils;writeStringToFile;(File,String,String,boolean);generated",
-        "org.apache.commons.io;FileUtils;writeStringToFile;(File,String,boolean);generated",
-        "org.apache.commons.io;FilenameUtils;FilenameUtils;();generated",
-        "org.apache.commons.io;FilenameUtils;directoryContains;(String,String);generated",
-        "org.apache.commons.io;FilenameUtils;equals;(String,String);generated",
-        "org.apache.commons.io;FilenameUtils;equals;(String,String,boolean,IOCase);generated",
-        "org.apache.commons.io;FilenameUtils;equalsNormalized;(String,String);generated",
-        "org.apache.commons.io;FilenameUtils;equalsNormalizedOnSystem;(String,String);generated",
-        "org.apache.commons.io;FilenameUtils;equalsOnSystem;(String,String);generated",
-        "org.apache.commons.io;FilenameUtils;getPrefixLength;(String);generated",
-        "org.apache.commons.io;FilenameUtils;indexOfExtension;(String);generated",
-        "org.apache.commons.io;FilenameUtils;indexOfLastSeparator;(String);generated",
-        "org.apache.commons.io;FilenameUtils;isExtension;(String,Collection);generated",
-        "org.apache.commons.io;FilenameUtils;isExtension;(String,String);generated",
-        "org.apache.commons.io;FilenameUtils;isExtension;(String,String[]);generated",
-        "org.apache.commons.io;FilenameUtils;wildcardMatch;(String,String);generated",
-        "org.apache.commons.io;FilenameUtils;wildcardMatch;(String,String,IOCase);generated",
-        "org.apache.commons.io;FilenameUtils;wildcardMatchOnSystem;(String,String);generated",
-        "org.apache.commons.io;HexDump;HexDump;();generated",
-        "org.apache.commons.io;HexDump;dump;(byte[],long,OutputStream,int);generated",
-        "org.apache.commons.io;IOCase;checkCompareTo;(String,String);generated",
-        "org.apache.commons.io;IOCase;checkEndsWith;(String,String);generated",
-        "org.apache.commons.io;IOCase;checkEquals;(String,String);generated",
-        "org.apache.commons.io;IOCase;checkIndexOf;(String,int,String);generated",
-        "org.apache.commons.io;IOCase;checkRegionMatches;(String,int,String);generated",
-        "org.apache.commons.io;IOCase;checkStartsWith;(String,String);generated",
-        "org.apache.commons.io;IOCase;forName;(String);generated",
-        "org.apache.commons.io;IOCase;getName;();generated",
-        "org.apache.commons.io;IOCase;isCaseSensitive;();generated",
-        "org.apache.commons.io;IOCase;isCaseSensitive;(IOCase);generated",
-        "org.apache.commons.io;IOCase;toString;();generated",
-        "org.apache.commons.io;IOCase;value;(IOCase,IOCase);generated",
-        "org.apache.commons.io;IOExceptionList;checkEmpty;(List,Object);generated",
-        "org.apache.commons.io;IOExceptionList;getCause;(int,Class);generated",
-        "org.apache.commons.io;IOExceptionWithCause;IOExceptionWithCause;(String,Throwable);generated",
-        "org.apache.commons.io;IOExceptionWithCause;IOExceptionWithCause;(Throwable);generated",
-        "org.apache.commons.io;IOIndexedException;IOIndexedException;(int,Throwable);generated",
-        "org.apache.commons.io;IOIndexedException;getIndex;();generated",
-        "org.apache.commons.io;IOUtils;IOUtils;();generated",
-        "org.apache.commons.io;IOUtils;byteArray;();generated",
-        "org.apache.commons.io;IOUtils;byteArray;(int);generated",
-        "org.apache.commons.io;IOUtils;close;(Closeable);generated",
-        "org.apache.commons.io;IOUtils;close;(Closeable,IOConsumer);generated",
-        "org.apache.commons.io;IOUtils;close;(Closeable[]);generated",
-        "org.apache.commons.io;IOUtils;close;(URLConnection);generated",
-        "org.apache.commons.io;IOUtils;closeQuietly;(Closeable);generated",
-        "org.apache.commons.io;IOUtils;closeQuietly;(Closeable,Consumer);generated",
-        "org.apache.commons.io;IOUtils;closeQuietly;(Closeable[]);generated",
-        "org.apache.commons.io;IOUtils;closeQuietly;(InputStream);generated",
-        "org.apache.commons.io;IOUtils;closeQuietly;(OutputStream);generated",
-        "org.apache.commons.io;IOUtils;closeQuietly;(Reader);generated",
-        "org.apache.commons.io;IOUtils;closeQuietly;(Selector);generated",
-        "org.apache.commons.io;IOUtils;closeQuietly;(ServerSocket);generated",
-        "org.apache.commons.io;IOUtils;closeQuietly;(Socket);generated",
-        "org.apache.commons.io;IOUtils;closeQuietly;(Writer);generated",
-        "org.apache.commons.io;IOUtils;consume;(InputStream);generated",
-        "org.apache.commons.io;IOUtils;contentEquals;(InputStream,InputStream);generated",
-        "org.apache.commons.io;IOUtils;contentEquals;(Reader,Reader);generated",
-        "org.apache.commons.io;IOUtils;contentEqualsIgnoreEOL;(Reader,Reader);generated",
-        "org.apache.commons.io;IOUtils;copy;(ByteArrayOutputStream);generated",
-        "org.apache.commons.io;IOUtils;copy;(Reader,OutputStream);generated",
-        "org.apache.commons.io;IOUtils;copy;(Reader,OutputStream,Charset);generated",
-        "org.apache.commons.io;IOUtils;copy;(Reader,OutputStream,String);generated",
-        "org.apache.commons.io;IOUtils;copy;(URL,File);generated",
-        "org.apache.commons.io;IOUtils;copy;(URL,OutputStream);generated",
-        "org.apache.commons.io;IOUtils;length;(CharSequence);generated",
-        "org.apache.commons.io;IOUtils;length;(Object[]);generated",
-        "org.apache.commons.io;IOUtils;length;(byte[]);generated",
-        "org.apache.commons.io;IOUtils;length;(char[]);generated",
-        "org.apache.commons.io;IOUtils;resourceToByteArray;(String);generated",
-        "org.apache.commons.io;IOUtils;resourceToByteArray;(String,ClassLoader);generated",
-        "org.apache.commons.io;IOUtils;resourceToString;(String,Charset);generated",
-        "org.apache.commons.io;IOUtils;resourceToString;(String,Charset,ClassLoader);generated",
-        "org.apache.commons.io;IOUtils;resourceToURL;(String);generated",
-        "org.apache.commons.io;IOUtils;resourceToURL;(String,ClassLoader);generated",
-        "org.apache.commons.io;IOUtils;skip;(InputStream,long);generated",
-        "org.apache.commons.io;IOUtils;skip;(ReadableByteChannel,long);generated",
-        "org.apache.commons.io;IOUtils;skip;(Reader,long);generated",
-        "org.apache.commons.io;IOUtils;skipFully;(InputStream,long);generated",
-        "org.apache.commons.io;IOUtils;skipFully;(ReadableByteChannel,long);generated",
-        "org.apache.commons.io;IOUtils;skipFully;(Reader,long);generated",
-        "org.apache.commons.io;IOUtils;toBufferedInputStream;(InputStream);generated",
-        "org.apache.commons.io;IOUtils;toBufferedInputStream;(InputStream,int);generated",
-        "org.apache.commons.io;IOUtils;toByteArray;(InputStream);generated",
-        "org.apache.commons.io;IOUtils;toByteArray;(Reader);generated",
-        "org.apache.commons.io;IOUtils;toByteArray;(Reader,Charset);generated",
-        "org.apache.commons.io;IOUtils;toByteArray;(Reader,String);generated",
-        "org.apache.commons.io;IOUtils;toByteArray;(URI);generated",
-        "org.apache.commons.io;IOUtils;toByteArray;(URL);generated",
-        "org.apache.commons.io;IOUtils;toByteArray;(URLConnection);generated",
-        "org.apache.commons.io;IOUtils;toString;(URI);generated",
-        "org.apache.commons.io;IOUtils;toString;(URI,Charset);generated",
-        "org.apache.commons.io;IOUtils;toString;(URI,String);generated",
-        "org.apache.commons.io;IOUtils;toString;(URL);generated",
-        "org.apache.commons.io;IOUtils;toString;(URL,Charset);generated",
-        "org.apache.commons.io;IOUtils;toString;(URL,String);generated",
-        "org.apache.commons.io;IOUtils;write;(CharSequence,OutputStream);generated",
-        "org.apache.commons.io;IOUtils;write;(CharSequence,OutputStream,Charset);generated",
-        "org.apache.commons.io;IOUtils;write;(CharSequence,OutputStream,String);generated",
-        "org.apache.commons.io;IOUtils;write;(String,OutputStream);generated",
-        "org.apache.commons.io;IOUtils;write;(String,OutputStream,Charset);generated",
-        "org.apache.commons.io;IOUtils;write;(String,OutputStream,String);generated",
-        "org.apache.commons.io;IOUtils;write;(StringBuffer,OutputStream);generated",
-        "org.apache.commons.io;IOUtils;write;(StringBuffer,OutputStream,String);generated",
-        "org.apache.commons.io;IOUtils;write;(char[],OutputStream);generated",
-        "org.apache.commons.io;IOUtils;write;(char[],OutputStream,Charset);generated",
-        "org.apache.commons.io;IOUtils;write;(char[],OutputStream,String);generated",
-        "org.apache.commons.io;LineIterator;closeQuietly;(LineIterator);generated",
-        "org.apache.commons.io;RandomAccessFileMode;create;(File);generated",
-        "org.apache.commons.io;RandomAccessFileMode;create;(Path);generated",
-        "org.apache.commons.io;RandomAccessFileMode;create;(String);generated",
-        "org.apache.commons.io;RandomAccessFileMode;toString;();generated",
-        "org.apache.commons.io;StandardLineSeparator;getBytes;(Charset);generated",
-        "org.apache.commons.io;StandardLineSeparator;getString;();generated",
-        "org.apache.commons.io;TaggedIOException;isTaggedWith;(Throwable,Object);generated",
-        "org.apache.commons.io;TaggedIOException;throwCauseIfTaggedWith;(Throwable,Object);generated",
-        "org.apache.commons.io;UncheckedIO;UncheckedIO;();generated",
-        "org.apache.commons.io;UncheckedIO;accept;(IOConsumer,Object);generated",
-        "org.apache.commons.io;UncheckedIO;apply;(IOBiFunction,Object,Object);generated",
-        "org.apache.commons.io;UncheckedIO;get;(IOSupplier);generated",
-        "org.apache.commons.io;UncheckedIO;run;(IORunnable);generated",
-        "org.apache.commons.io;UncheckedIOExceptions;UncheckedIOExceptions;();generated",
-        "org.apache.commons.io;UncheckedIOExceptions;create;(Object);generated",
-        "org.apache.commons.io;UncheckedIOExceptions;wrap;(IOException,Object);generated"
-      ]
-  }
-}
diff --git a/java/ql/lib/semmle/code/java/frameworks/generated.qll b/java/ql/lib/semmle/code/java/frameworks/generated.qll
index 7a16e24890e..cc088532c6d 100644
--- a/java/ql/lib/semmle/code/java/frameworks/generated.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/generated.qll
@@ -5,6 +5,5 @@
 import java
 
 private module GeneratedFrameworks {
-  private import apache.IOGenerated
   private import kotlin.StdLibGenerated
 }
diff --git a/java/ql/src/Telemetry/UnsupportedExternalAPIs.ql b/java/ql/src/Telemetry/UnsupportedExternalAPIs.ql
index 16871f87a53..b1721972dd3 100644
--- a/java/ql/src/Telemetry/UnsupportedExternalAPIs.ql
+++ b/java/ql/src/Telemetry/UnsupportedExternalAPIs.ql
@@ -8,7 +8,6 @@
 
 import java
 import semmle.code.java.dataflow.internal.FlowSummaryImpl as FlowSummaryImpl
-import semmle.code.java.dataflow.internal.NegativeSummary
 import ExternalApi
 
 private predicate relevant(ExternalApi api) {
diff --git a/java/ql/test/library-tests/dataflow/external-models/negativesummaries.ql b/java/ql/test/library-tests/dataflow/external-models/negativesummaries.ql
index b1e104a0fcd..32e2c4bc5cc 100644
--- a/java/ql/test/library-tests/dataflow/external-models/negativesummaries.ql
+++ b/java/ql/test/library-tests/dataflow/external-models/negativesummaries.ql
@@ -5,4 +5,3 @@
 import java
 import semmle.code.java.dataflow.ExternalFlow
 import ModelValidation
-import semmle.code.java.dataflow.internal.NegativeSummary

From b61f515af26764d67158c201e0c78eb3cd5e909f Mon Sep 17 00:00:00 2001
From: Michael Nebel <michaelnebel@github.com>
Date: Mon, 21 Nov 2022 15:37:13 +0100
Subject: [PATCH 0674/1420] Jave: Make support for query specific models.

---
 java/ql/lib/ext/experimental/dummy.model.yml  | 15 ++++
 java/ql/lib/qlpack.yml                        |  1 +
 .../code/java/dataflow/ExternalFlow.qll       | 80 +++++++++++++++++++
 3 files changed, 96 insertions(+)
 create mode 100644 java/ql/lib/ext/experimental/dummy.model.yml

diff --git a/java/ql/lib/ext/experimental/dummy.model.yml b/java/ql/lib/ext/experimental/dummy.model.yml
new file mode 100644
index 00000000000..d1521d27a9c
--- /dev/null
+++ b/java/ql/lib/ext/experimental/dummy.model.yml
@@ -0,0 +1,15 @@
+# Define the extensible prediactes related to experimental queries
+# to at least be empty.
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extExperimentalSourceModel
+    data: []
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extExperimentalSinkModel
+    data: []
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extExperimentalSummaryModel
+    data: []
diff --git a/java/ql/lib/qlpack.yml b/java/ql/lib/qlpack.yml
index ed5323ebe4a..3dd389eb958 100644
--- a/java/ql/lib/qlpack.yml
+++ b/java/ql/lib/qlpack.yml
@@ -10,3 +10,4 @@ dependencies:
 dataExtensions:
   - ext/*.model.yml
   - ext/generated/*.model.yml
+  - ext/experimental/*.model.yml
diff --git a/java/ql/lib/semmle/code/java/dataflow/ExternalFlow.qll b/java/ql/lib/semmle/code/java/dataflow/ExternalFlow.qll
index b9688809c45..866e3f5687f 100644
--- a/java/ql/lib/semmle/code/java/dataflow/ExternalFlow.qll
+++ b/java/ql/lib/semmle/code/java/dataflow/ExternalFlow.qll
@@ -194,6 +194,77 @@ private predicate negativeSummaryModelInternal(string row) {
   any(NegativeSummaryModelCsvInternal s).row(row)
 }
 
+/**
+ * Holds if an experimental source model exists for the given parameters.
+ * This is only for experimental queries.
+ */
+extensible predicate extExperimentalSourceModel(
+  string package, string type, boolean subtypes, string name, string signature, string ext,
+  string output, string kind, string provenance, string filter
+);
+
+/**
+ * Holds if an experimental sink model exists for the given parameters.
+ * This is only for experimental queries.
+ */
+extensible predicate extExperimentalSinkModel(
+  string package, string type, boolean subtypes, string name, string signature, string ext,
+  string input, string kind, string provenance, string filter
+);
+
+/**
+ * Holds if an experimental summary model exists for the given parameters.
+ * This is only for experimental queries.
+ */
+extensible predicate extExperimentalSummaryModel(
+  string package, string type, boolean subtypes, string name, string signature, string ext,
+  string input, string output, string kind, string provenance, string filter
+);
+
+/**
+ * A class for activating additional model rows.
+ *
+ * Extend this class to include experimental model rows with `this` name
+ * in data flow analysis.
+ */
+abstract class ActiveExperimentalModels extends string {
+  bindingset[this]
+  ActiveExperimentalModels() { any() }
+
+  /**
+   * Holds if an experimental source model exists for the given parameters.
+   */
+  predicate sourceModel(
+    string package, string type, boolean subtypes, string name, string signature, string ext,
+    string output, string kind, string provenance
+  ) {
+    extExperimentalSourceModel(package, type, subtypes, name, signature, ext, output, kind,
+      provenance, this)
+  }
+
+  /**
+   * Holds if an experimental sink model exists for the given parameters.
+   */
+  predicate sinkModel(
+    string package, string type, boolean subtypes, string name, string signature, string ext,
+    string output, string kind, string provenance
+  ) {
+    extExperimentalSinkModel(package, type, subtypes, name, signature, ext, output, kind,
+      provenance, this)
+  }
+
+  /**
+   * Holds if an experimental summary model exists for the given parameters.
+   */
+  predicate summaryModel(
+    string package, string type, boolean subtypes, string name, string signature, string ext,
+    string input, string output, string kind, string provenance
+  ) {
+    extExperimentalSummaryModel(package, type, subtypes, name, signature, ext, input, output, kind,
+      provenance, this)
+  }
+}
+
 /**
  * Holds if a source model exists for the given parameters.
  */
@@ -222,6 +293,9 @@ predicate sourceModel(
   )
   or
   extSourceModel(package, type, subtypes, name, signature, ext, output, kind, provenance)
+  or
+  any(ActiveExperimentalModels q)
+      .sourceModel(package, type, subtypes, name, signature, ext, output, kind, provenance)
 }
 
 /** Holds if a sink model exists for the given parameters. */
@@ -250,6 +324,9 @@ predicate sinkModel(
   )
   or
   extSinkModel(package, type, subtypes, name, signature, ext, input, kind, provenance)
+  or
+  any(ActiveExperimentalModels q)
+      .sinkModel(package, type, subtypes, name, signature, ext, input, kind, provenance)
 }
 
 /** Holds if a summary model exists for the given parameters. */
@@ -279,6 +356,9 @@ predicate summaryModel(
   )
   or
   extSummaryModel(package, type, subtypes, name, signature, ext, input, output, kind, provenance)
+  or
+  any(ActiveExperimentalModels q)
+      .summaryModel(package, type, subtypes, name, signature, ext, input, output, kind, provenance)
 }
 
 /** Holds if a summary model exists indicating there is no flow for the given parameters. */

From 665d40dc4be8904dac81b8e92bf627a999ad440d Mon Sep 17 00:00:00 2001
From: Michael Nebel <michaelnebel@github.com>
Date: Mon, 21 Nov 2022 15:44:12 +0100
Subject: [PATCH 0675/1420] Java: Convert file-path-injection to data
 extensions.

---
 .../experimental/com.jfinal.core.model.yml    | 28 +++++++++++++++++++
 .../Security/CWE/CWE-073/FilePathInjection.ql |  5 ++++
 .../Security/CWE/CWE-073/JFinalController.qll | 21 --------------
 3 files changed, 33 insertions(+), 21 deletions(-)
 create mode 100644 java/ql/lib/ext/experimental/com.jfinal.core.model.yml

diff --git a/java/ql/lib/ext/experimental/com.jfinal.core.model.yml b/java/ql/lib/ext/experimental/com.jfinal.core.model.yml
new file mode 100644
index 00000000000..078e86a4817
--- /dev/null
+++ b/java/ql/lib/ext/experimental/com.jfinal.core.model.yml
@@ -0,0 +1,28 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extExperimentalSourceModel
+    data:
+      - ["com.jfinal.core", "Controller", True, "get", "", "", "ReturnValue", "remote", "manual", "file-path-injection"]
+      - ["com.jfinal.core", "Controller", True, "getBoolean", "", "", "ReturnValue", "remote", "manual", "file-path-injection"]
+      - ["com.jfinal.core", "Controller", True, "getCookie", "", "", "ReturnValue", "remote", "manual", "file-path-injection"]
+      - ["com.jfinal.core", "Controller", True, "getCookieObject", "", "", "ReturnValue", "remote", "manual", "file-path-injection"]
+      - ["com.jfinal.core", "Controller", True, "getCookieObjects", "", "", "ReturnValue", "remote", "manual", "file-path-injection"]
+      - ["com.jfinal.core", "Controller", True, "getCookieToInt", "", "", "ReturnValue", "remote", "manual", "file-path-injection"]
+      - ["com.jfinal.core", "Controller", True, "getCookieToLong", "", "", "ReturnValue", "remote", "manual", "file-path-injection"]
+      - ["com.jfinal.core", "Controller", True, "getDate", "", "", "ReturnValue", "remote", "manual", "file-path-injection"]
+      - ["com.jfinal.core", "Controller", True, "getFile", "", "", "ReturnValue", "remote", "manual", "file-path-injection"]
+      - ["com.jfinal.core", "Controller", True, "getFiles", "", "", "ReturnValue", "remote", "manual", "file-path-injection"]
+      - ["com.jfinal.core", "Controller", True, "getHeader", "", "", "ReturnValue", "remote", "manual", "file-path-injection"]
+      - ["com.jfinal.core", "Controller", True, "getInt", "", "", "ReturnValue", "remote", "manual", "file-path-injection"]
+      - ["com.jfinal.core", "Controller", True, "getKv", "", "", "ReturnValue", "remote", "manual", "file-path-injection"]
+      - ["com.jfinal.core", "Controller", True, "getLong", "", "", "ReturnValue", "remote", "manual", "file-path-injection"]
+      - ["com.jfinal.core", "Controller", True, "getPara", "", "", "ReturnValue", "remote", "manual", "file-path-injection"]
+      - ["com.jfinal.core", "Controller", True, "getParaMap", "", "", "ReturnValue", "remote", "manual", "file-path-injection"]
+      - ["com.jfinal.core", "Controller", True, "getParaToBoolean", "", "", "ReturnValue", "remote", "manual", "file-path-injection"]
+      - ["com.jfinal.core", "Controller", True, "getParaToDate", "", "", "ReturnValue", "remote", "manual", "file-path-injection"]
+      - ["com.jfinal.core", "Controller", True, "getParaToInt", "", "", "ReturnValue", "remote", "manual", "file-path-injection"]
+      - ["com.jfinal.core", "Controller", True, "getParaToLong", "", "", "ReturnValue", "remote", "manual", "file-path-injection"]
+      - ["com.jfinal.core", "Controller", True, "getParaValues", "", "", "ReturnValue", "remote", "manual", "file-path-injection"]
+      - ["com.jfinal.core", "Controller", True, "getParaValuesToInt", "", "", "ReturnValue", "remote", "manual", "file-path-injection"]
+      - ["com.jfinal.core", "Controller", True, "getParaValuesToLong", "", "", "ReturnValue", "remote", "manual", "file-path-injection"]
diff --git a/java/ql/src/experimental/Security/CWE/CWE-073/FilePathInjection.ql b/java/ql/src/experimental/Security/CWE/CWE-073/FilePathInjection.ql
index fff9a3b3613..9c976c8dce7 100644
--- a/java/ql/src/experimental/Security/CWE/CWE-073/FilePathInjection.ql
+++ b/java/ql/src/experimental/Security/CWE/CWE-073/FilePathInjection.ql
@@ -12,12 +12,17 @@
  */
 
 import java
+import semmle.code.java.dataflow.ExternalFlow
 import semmle.code.java.dataflow.FlowSources
 import semmle.code.java.security.PathCreation
 import JFinalController
 import semmle.code.java.security.PathSanitizer
 import DataFlow::PathGraph
 
+private class ActivateModels extends ActiveExperimentalModels {
+  ActivateModels() { this = "file-path-injection" }
+}
+
 /** A complementary sanitizer that protects against path traversal using path normalization. */
 class PathNormalizeSanitizer extends MethodAccess {
   PathNormalizeSanitizer() {
diff --git a/java/ql/src/experimental/Security/CWE/CWE-073/JFinalController.qll b/java/ql/src/experimental/Security/CWE/CWE-073/JFinalController.qll
index df3b77cddaa..94cd966da9d 100644
--- a/java/ql/src/experimental/Security/CWE/CWE-073/JFinalController.qll
+++ b/java/ql/src/experimental/Security/CWE/CWE-073/JFinalController.qll
@@ -61,24 +61,3 @@ private class SetToGetAttributeStep extends AdditionalValueStep {
     )
   }
 }
-
-/** Remote flow source models relating to `JFinal`. */
-private class JFinalControllerSource extends SourceModelCsv {
-  override predicate row(string row) {
-    row =
-      [
-        "com.jfinal.core;Controller;true;getCookie" + ["", "Object", "Objects", "ToInt", "ToLong"] +
-          ";;;ReturnValue;remote;manual",
-        "com.jfinal.core;Controller;true;getFile" + ["", "s"] + ";;;ReturnValue;remote;manual",
-        "com.jfinal.core;Controller;true;getHeader;;;ReturnValue;remote;manual",
-        "com.jfinal.core;Controller;true;getKv;;;ReturnValue;remote;manual",
-        "com.jfinal.core;Controller;true;getPara" +
-          [
-            "", "Map", "ToBoolean", "ToDate", "ToInt", "ToLong", "Values", "ValuesToInt",
-            "ValuesToLong"
-          ] + ";;;ReturnValue;remote;manual",
-        "com.jfinal.core;Controller;true;get" + ["", "Int", "Long", "Boolean", "Date"] +
-          ";;;ReturnValue;remote;manual"
-      ]
-  }
-}

From 5c15ad412c7406edb9acbd264229b14b8782d67a Mon Sep 17 00:00:00 2001
From: Michael Nebel <michaelnebel@github.com>
Date: Tue, 22 Nov 2022 08:52:11 +0100
Subject: [PATCH 0676/1420] Java: Convert log4j-injection to data extensions.

---
 ...org.apache.logging.log4j.message.model.yml |   9 +
 .../org.apache.logging.log4j.model.yml        | 362 ++++++++++++++++++
 .../CWE/CWE-020/Log4jJndiInjection.ql         | 155 +-------
 3 files changed, 373 insertions(+), 153 deletions(-)
 create mode 100644 java/ql/lib/ext/experimental/org.apache.logging.log4j.message.model.yml
 create mode 100644 java/ql/lib/ext/experimental/org.apache.logging.log4j.model.yml

diff --git a/java/ql/lib/ext/experimental/org.apache.logging.log4j.message.model.yml b/java/ql/lib/ext/experimental/org.apache.logging.log4j.message.model.yml
new file mode 100644
index 00000000000..16b401d219d
--- /dev/null
+++ b/java/ql/lib/ext/experimental/org.apache.logging.log4j.message.model.yml
@@ -0,0 +1,9 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extExperimentalSummaryModel
+    data:
+      - ["org.apache.logging.log4j.message", "MapMessage", True, "put", "", "", "Argument[1]", "Argument[-1]", "taint", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j.message", "MapMessage", True, "putAll", "", "", "Argument[0].MapValue", "Argument[-1]", "taint", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j.message", "MapMessage", True, "with", "", "", "Argument[-1]", "ReturnValue", "value", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j.message", "MapMessage", True, "with", "", "", "Argument[1]", "Argument[-1]", "taint", "manual", "log4j-injection"]
diff --git a/java/ql/lib/ext/experimental/org.apache.logging.log4j.model.yml b/java/ql/lib/ext/experimental/org.apache.logging.log4j.model.yml
new file mode 100644
index 00000000000..3c8a2867a65
--- /dev/null
+++ b/java/ql/lib/ext/experimental/org.apache.logging.log4j.model.yml
@@ -0,0 +1,362 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extExperimentalSinkModel
+    data:
+      - ["org.apache.logging.log4j", "CloseableThreadContext", False, "put", "", "", "Argument[1]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "CloseableThreadContext", False, "putAll", "", "", "Argument[0]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "CloseableThreadContext$Instance", False, "put", "", "", "Argument[1]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "CloseableThreadContext$Instance", False, "putAll", "", "", "Argument[0]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "LogBuilder", True, "log", "(CharSequence)", "", "Argument[0]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "LogBuilder", True, "log", "(Message)", "", "Argument[0]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "LogBuilder", True, "log", "(Object)", "", "Argument[0]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "LogBuilder", True, "log", "(String)", "", "Argument[0]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "LogBuilder", True, "log", "(String,Object)", "", "Argument[0..1]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "LogBuilder", True, "log", "(String,Object,Object)", "", "Argument[0..2]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "LogBuilder", True, "log", "(String,Object,Object,Object)", "", "Argument[0..3]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "LogBuilder", True, "log", "(String,Object,Object,Object,Object)", "", "Argument[0..4]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "LogBuilder", True, "log", "(String,Object,Object,Object,Object,Object)", "", "Argument[0..5]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "LogBuilder", True, "log", "(String,Object,Object,Object,Object,Object,Object)", "", "Argument[0..6]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "LogBuilder", True, "log", "(String,Object,Object,Object,Object,Object,Object,Object)", "", "Argument[0..7]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "LogBuilder", True, "log", "(String,Object,Object,Object,Object,Object,Object,Object,Object)", "", "Argument[0..8]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "LogBuilder", True, "log", "(String,Object,Object,Object,Object,Object,Object,Object,Object,Object)", "", "Argument[0..9]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "LogBuilder", True, "log", "(String,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object)", "", "Argument[0..10]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "LogBuilder", True, "log", "(String,Object[])", "", "Argument[0..1]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "LogBuilder", True, "log", "(String,Supplier[])", "", "Argument[0..1]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "LogBuilder", True, "log", "(Supplier)", "", "Argument[0]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "debug", "(CharSequence)", "", "Argument[0]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "debug", "(CharSequence,Throwable)", "", "Argument[0]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "debug", "(Marker,CharSequence)", "", "Argument[1]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "debug", "(Marker,CharSequence,Throwable)", "", "Argument[1]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "debug", "(Marker,Message)", "", "Argument[1]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "debug", "(Marker,MessageSupplier)", "", "Argument[1]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "debug", "(Marker,MessageSupplier,Throwable)", "", "Argument[1]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "debug", "(Marker,Object)", "", "Argument[1]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "debug", "(Marker,Object,Throwable)", "", "Argument[1]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "debug", "(Marker,String)", "", "Argument[1]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "debug", "(Marker,String,Object)", "", "Argument[1..2]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "debug", "(Marker,String,Object,Object)", "", "Argument[1..3]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "debug", "(Marker,String,Object,Object,Object)", "", "Argument[1..4]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "debug", "(Marker,String,Object,Object,Object,Object)", "", "Argument[1..5]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "debug", "(Marker,String,Object,Object,Object,Object,Object)", "", "Argument[1..6]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "debug", "(Marker,String,Object,Object,Object,Object,Object,Object)", "", "Argument[1..7]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "debug", "(Marker,String,Object,Object,Object,Object,Object,Object,Object)", "", "Argument[1..8]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "debug", "(Marker,String,Object,Object,Object,Object,Object,Object,Object,Object)", "", "Argument[1..9]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "debug", "(Marker,String,Object,Object,Object,Object,Object,Object,Object,Object,Object)", "", "Argument[1..10]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "debug", "(Marker,String,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object)", "", "Argument[1..11]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "debug", "(Marker,String,Object[])", "", "Argument[1..2]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "debug", "(Marker,String,Supplier)", "", "Argument[1..2]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "debug", "(Marker,String,Throwable)", "", "Argument[1]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "debug", "(Marker,Supplier)", "", "Argument[1]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "debug", "(Marker,Supplier,Throwable)", "", "Argument[1]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "debug", "(Message)", "", "Argument[0]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "debug", "(Message,Throwable)", "", "Argument[0]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "debug", "(MessageSupplier)", "", "Argument[0]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "debug", "(MessageSupplier,Throwable)", "", "Argument[0]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "debug", "(Object)", "", "Argument[0]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "debug", "(Object,Throwable)", "", "Argument[0]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "debug", "(String)", "", "Argument[0]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "debug", "(String,Object)", "", "Argument[0..1]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "debug", "(String,Object,Object)", "", "Argument[0..2]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "debug", "(String,Object,Object,Object)", "", "Argument[0..3]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "debug", "(String,Object,Object,Object,Object)", "", "Argument[0..4]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "debug", "(String,Object,Object,Object,Object,Object)", "", "Argument[0..5]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "debug", "(String,Object,Object,Object,Object,Object,Object)", "", "Argument[0..6]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "debug", "(String,Object,Object,Object,Object,Object,Object,Object)", "", "Argument[0..7]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "debug", "(String,Object,Object,Object,Object,Object,Object,Object,Object)", "", "Argument[0..8]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "debug", "(String,Object,Object,Object,Object,Object,Object,Object,Object,Object)", "", "Argument[0..9]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "debug", "(String,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object)", "", "Argument[0..10]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "debug", "(String,Object[])", "", "Argument[0..1]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "debug", "(String,Supplier)", "", "Argument[0..1]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "debug", "(String,Throwable)", "", "Argument[0]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "debug", "(Supplier)", "", "Argument[0]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "debug", "(Supplier,Throwable)", "", "Argument[0]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "entry", "(Object[])", "", "Argument[0]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "error", "(CharSequence)", "", "Argument[0]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "error", "(CharSequence,Throwable)", "", "Argument[0]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "error", "(Marker,CharSequence)", "", "Argument[1]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "error", "(Marker,CharSequence,Throwable)", "", "Argument[1]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "error", "(Marker,Message)", "", "Argument[1]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "error", "(Marker,MessageSupplier)", "", "Argument[1]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "error", "(Marker,MessageSupplier,Throwable)", "", "Argument[1]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "error", "(Marker,Object)", "", "Argument[1]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "error", "(Marker,Object,Throwable)", "", "Argument[1]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "error", "(Marker,String)", "", "Argument[1]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "error", "(Marker,String,Object)", "", "Argument[1..2]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "error", "(Marker,String,Object,Object)", "", "Argument[1..3]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "error", "(Marker,String,Object,Object,Object)", "", "Argument[1..4]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "error", "(Marker,String,Object,Object,Object,Object)", "", "Argument[1..5]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "error", "(Marker,String,Object,Object,Object,Object,Object)", "", "Argument[1..6]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "error", "(Marker,String,Object,Object,Object,Object,Object,Object)", "", "Argument[1..7]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "error", "(Marker,String,Object,Object,Object,Object,Object,Object,Object)", "", "Argument[1..8]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "error", "(Marker,String,Object,Object,Object,Object,Object,Object,Object,Object)", "", "Argument[1..9]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "error", "(Marker,String,Object,Object,Object,Object,Object,Object,Object,Object,Object)", "", "Argument[1..10]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "error", "(Marker,String,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object)", "", "Argument[1..11]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "error", "(Marker,String,Object[])", "", "Argument[1..2]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "error", "(Marker,String,Supplier)", "", "Argument[1..2]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "error", "(Marker,String,Throwable)", "", "Argument[1]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "error", "(Marker,Supplier)", "", "Argument[1]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "error", "(Marker,Supplier,Throwable)", "", "Argument[1]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "error", "(Message)", "", "Argument[0]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "error", "(Message,Throwable)", "", "Argument[0]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "error", "(MessageSupplier)", "", "Argument[0]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "error", "(MessageSupplier,Throwable)", "", "Argument[0]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "error", "(Object)", "", "Argument[0]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "error", "(Object,Throwable)", "", "Argument[0]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "error", "(String)", "", "Argument[0]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "error", "(String,Object)", "", "Argument[0..1]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "error", "(String,Object,Object)", "", "Argument[0..2]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "error", "(String,Object,Object,Object)", "", "Argument[0..3]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "error", "(String,Object,Object,Object,Object)", "", "Argument[0..4]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "error", "(String,Object,Object,Object,Object,Object)", "", "Argument[0..5]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "error", "(String,Object,Object,Object,Object,Object,Object)", "", "Argument[0..6]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "error", "(String,Object,Object,Object,Object,Object,Object,Object)", "", "Argument[0..7]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "error", "(String,Object,Object,Object,Object,Object,Object,Object,Object)", "", "Argument[0..8]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "error", "(String,Object,Object,Object,Object,Object,Object,Object,Object,Object)", "", "Argument[0..9]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "error", "(String,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object)", "", "Argument[0..10]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "error", "(String,Object[])", "", "Argument[0..1]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "error", "(String,Supplier)", "", "Argument[0..1]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "error", "(String,Throwable)", "", "Argument[0]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "error", "(Supplier)", "", "Argument[0]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "error", "(Supplier,Throwable)", "", "Argument[0]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "fatal", "(CharSequence)", "", "Argument[0]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "fatal", "(CharSequence,Throwable)", "", "Argument[0]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "fatal", "(Marker,CharSequence)", "", "Argument[1]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "fatal", "(Marker,CharSequence,Throwable)", "", "Argument[1]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "fatal", "(Marker,Message)", "", "Argument[1]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "fatal", "(Marker,MessageSupplier)", "", "Argument[1]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "fatal", "(Marker,MessageSupplier,Throwable)", "", "Argument[1]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "fatal", "(Marker,Object)", "", "Argument[1]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "fatal", "(Marker,Object,Throwable)", "", "Argument[1]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "fatal", "(Marker,String)", "", "Argument[1]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "fatal", "(Marker,String,Object)", "", "Argument[1..2]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "fatal", "(Marker,String,Object,Object)", "", "Argument[1..3]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "fatal", "(Marker,String,Object,Object,Object)", "", "Argument[1..4]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "fatal", "(Marker,String,Object,Object,Object,Object)", "", "Argument[1..5]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "fatal", "(Marker,String,Object,Object,Object,Object,Object)", "", "Argument[1..6]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "fatal", "(Marker,String,Object,Object,Object,Object,Object,Object)", "", "Argument[1..7]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "fatal", "(Marker,String,Object,Object,Object,Object,Object,Object,Object)", "", "Argument[1..8]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "fatal", "(Marker,String,Object,Object,Object,Object,Object,Object,Object,Object)", "", "Argument[1..9]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "fatal", "(Marker,String,Object,Object,Object,Object,Object,Object,Object,Object,Object)", "", "Argument[1..10]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "fatal", "(Marker,String,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object)", "", "Argument[1..11]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "fatal", "(Marker,String,Object[])", "", "Argument[1..2]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "fatal", "(Marker,String,Supplier)", "", "Argument[1..2]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "fatal", "(Marker,String,Throwable)", "", "Argument[1]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "fatal", "(Marker,Supplier)", "", "Argument[1]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "fatal", "(Marker,Supplier,Throwable)", "", "Argument[1]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "fatal", "(Message)", "", "Argument[0]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "fatal", "(Message,Throwable)", "", "Argument[0]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "fatal", "(MessageSupplier)", "", "Argument[0]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "fatal", "(MessageSupplier,Throwable)", "", "Argument[0]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "fatal", "(Object)", "", "Argument[0]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "fatal", "(Object,Throwable)", "", "Argument[0]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "fatal", "(String)", "", "Argument[0]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "fatal", "(String,Object)", "", "Argument[0..1]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "fatal", "(String,Object,Object)", "", "Argument[0..2]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "fatal", "(String,Object,Object,Object)", "", "Argument[0..3]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "fatal", "(String,Object,Object,Object,Object)", "", "Argument[0..4]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "fatal", "(String,Object,Object,Object,Object,Object)", "", "Argument[0..5]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "fatal", "(String,Object,Object,Object,Object,Object,Object)", "", "Argument[0..6]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "fatal", "(String,Object,Object,Object,Object,Object,Object,Object)", "", "Argument[0..7]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "fatal", "(String,Object,Object,Object,Object,Object,Object,Object,Object)", "", "Argument[0..8]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "fatal", "(String,Object,Object,Object,Object,Object,Object,Object,Object,Object)", "", "Argument[0..9]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "fatal", "(String,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object)", "", "Argument[0..10]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "fatal", "(String,Object[])", "", "Argument[0..1]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "fatal", "(String,Supplier)", "", "Argument[0..1]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "fatal", "(String,Throwable)", "", "Argument[0]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "fatal", "(Supplier)", "", "Argument[0]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "fatal", "(Supplier,Throwable)", "", "Argument[0]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "info", "(CharSequence)", "", "Argument[0]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "info", "(CharSequence,Throwable)", "", "Argument[0]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "info", "(Marker,CharSequence)", "", "Argument[1]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "info", "(Marker,CharSequence,Throwable)", "", "Argument[1]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "info", "(Marker,Message)", "", "Argument[1]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "info", "(Marker,MessageSupplier)", "", "Argument[1]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "info", "(Marker,MessageSupplier,Throwable)", "", "Argument[1]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "info", "(Marker,Object)", "", "Argument[1]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "info", "(Marker,Object,Throwable)", "", "Argument[1]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "info", "(Marker,String)", "", "Argument[1]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "info", "(Marker,String,Object)", "", "Argument[1..2]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "info", "(Marker,String,Object,Object)", "", "Argument[1..3]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "info", "(Marker,String,Object,Object,Object)", "", "Argument[1..4]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "info", "(Marker,String,Object,Object,Object,Object)", "", "Argument[1..5]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "info", "(Marker,String,Object,Object,Object,Object,Object)", "", "Argument[1..6]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "info", "(Marker,String,Object,Object,Object,Object,Object,Object)", "", "Argument[1..7]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "info", "(Marker,String,Object,Object,Object,Object,Object,Object,Object)", "", "Argument[1..8]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "info", "(Marker,String,Object,Object,Object,Object,Object,Object,Object,Object)", "", "Argument[1..9]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "info", "(Marker,String,Object,Object,Object,Object,Object,Object,Object,Object,Object)", "", "Argument[1..10]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "info", "(Marker,String,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object)", "", "Argument[1..11]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "info", "(Marker,String,Object[])", "", "Argument[1..2]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "info", "(Marker,String,Supplier)", "", "Argument[1..2]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "info", "(Marker,String,Throwable)", "", "Argument[1]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "info", "(Marker,Supplier)", "", "Argument[1]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "info", "(Marker,Supplier,Throwable)", "", "Argument[1]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "info", "(Message)", "", "Argument[0]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "info", "(Message,Throwable)", "", "Argument[0]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "info", "(MessageSupplier)", "", "Argument[0]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "info", "(MessageSupplier,Throwable)", "", "Argument[0]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "info", "(Object)", "", "Argument[0]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "info", "(Object,Throwable)", "", "Argument[0]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "info", "(String)", "", "Argument[0]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "info", "(String,Object)", "", "Argument[0..1]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "info", "(String,Object,Object)", "", "Argument[0..2]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "info", "(String,Object,Object,Object)", "", "Argument[0..3]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "info", "(String,Object,Object,Object,Object)", "", "Argument[0..4]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "info", "(String,Object,Object,Object,Object,Object)", "", "Argument[0..5]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "info", "(String,Object,Object,Object,Object,Object,Object)", "", "Argument[0..6]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "info", "(String,Object,Object,Object,Object,Object,Object,Object)", "", "Argument[0..7]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "info", "(String,Object,Object,Object,Object,Object,Object,Object,Object)", "", "Argument[0..8]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "info", "(String,Object,Object,Object,Object,Object,Object,Object,Object,Object)", "", "Argument[0..9]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "info", "(String,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object)", "", "Argument[0..10]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "info", "(String,Object[])", "", "Argument[0..1]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "info", "(String,Supplier)", "", "Argument[0..1]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "info", "(String,Throwable)", "", "Argument[0]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "info", "(Supplier)", "", "Argument[0]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "info", "(Supplier,Throwable)", "", "Argument[0]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "log", "(Level,CharSequence)", "", "Argument[1]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "log", "(Level,CharSequence,Throwable)", "", "Argument[1]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "log", "(Level,Marker,CharSequence)", "", "Argument[2]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "log", "(Level,Marker,CharSequence,Throwable)", "", "Argument[2]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "log", "(Level,Marker,Message)", "", "Argument[2]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "log", "(Level,Marker,MessageSupplier)", "", "Argument[2]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "log", "(Level,Marker,MessageSupplier,Throwable)", "", "Argument[2]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "log", "(Level,Marker,Object)", "", "Argument[2]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "log", "(Level,Marker,Object,Throwable)", "", "Argument[2]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "log", "(Level,Marker,String)", "", "Argument[2]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "log", "(Level,Marker,String,Object)", "", "Argument[2..3]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "log", "(Level,Marker,String,Object,Object)", "", "Argument[2..4]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "log", "(Level,Marker,String,Object,Object,Object)", "", "Argument[2..5]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "log", "(Level,Marker,String,Object,Object,Object,Object)", "", "Argument[2..6]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "log", "(Level,Marker,String,Object,Object,Object,Object,Object)", "", "Argument[2..7]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "log", "(Level,Marker,String,Object,Object,Object,Object,Object,Object)", "", "Argument[2..8]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "log", "(Level,Marker,String,Object,Object,Object,Object,Object,Object,Object)", "", "Argument[2..9]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "log", "(Level,Marker,String,Object,Object,Object,Object,Object,Object,Object,Object)", "", "Argument[2..10]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "log", "(Level,Marker,String,Object,Object,Object,Object,Object,Object,Object,Object,Object)", "", "Argument[2..11]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "log", "(Level,Marker,String,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object)", "", "Argument[2..12]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "log", "(Level,Marker,String,Object[])", "", "Argument[2..3]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "log", "(Level,Marker,String,Supplier)", "", "Argument[2..3]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "log", "(Level,Marker,String,Throwable)", "", "Argument[2]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "log", "(Level,Marker,Supplier)", "", "Argument[2]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "log", "(Level,Marker,Supplier,Throwable)", "", "Argument[2]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "log", "(Level,Message)", "", "Argument[1]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "log", "(Level,Message,Throwable)", "", "Argument[1]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "log", "(Level,MessageSupplier)", "", "Argument[1]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "log", "(Level,MessageSupplier,Throwable)", "", "Argument[1]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "log", "(Level,Object)", "", "Argument[1]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "log", "(Level,Object,Throwable)", "", "Argument[1]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "log", "(Level,String)", "", "Argument[1]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "log", "(Level,String,Object)", "", "Argument[1..2]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "log", "(Level,String,Object,Object)", "", "Argument[1..3]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "log", "(Level,String,Object,Object,Object)", "", "Argument[1..4]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "log", "(Level,String,Object,Object,Object,Object)", "", "Argument[1..5]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "log", "(Level,String,Object,Object,Object,Object,Object)", "", "Argument[1..6]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "log", "(Level,String,Object,Object,Object,Object,Object,Object)", "", "Argument[1..7]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "log", "(Level,String,Object,Object,Object,Object,Object,Object,Object)", "", "Argument[1..8]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "log", "(Level,String,Object,Object,Object,Object,Object,Object,Object,Object)", "", "Argument[1..9]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "log", "(Level,String,Object,Object,Object,Object,Object,Object,Object,Object,Object)", "", "Argument[1..10]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "log", "(Level,String,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object)", "", "Argument[1..11]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "log", "(Level,String,Object[])", "", "Argument[1..2]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "log", "(Level,String,Supplier)", "", "Argument[1..2]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "log", "(Level,String,Throwable)", "", "Argument[1]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "log", "(Level,Supplier)", "", "Argument[1]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "log", "(Level,Supplier,Throwable)", "", "Argument[1]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "logMessage", "(Level,Marker,String,StackTraceElement,Message,Throwable)", "", "Argument[4]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "printf", "(Level,Marker,String,Object[])", "", "Argument[2..3]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "printf", "(Level,String,Object[])", "", "Argument[1..2]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "trace", "(CharSequence)", "", "Argument[0]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "trace", "(CharSequence,Throwable)", "", "Argument[0]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "trace", "(Marker,CharSequence)", "", "Argument[1]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "trace", "(Marker,CharSequence,Throwable)", "", "Argument[1]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "trace", "(Marker,Message)", "", "Argument[1]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "trace", "(Marker,MessageSupplier)", "", "Argument[1]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "trace", "(Marker,MessageSupplier,Throwable)", "", "Argument[1]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "trace", "(Marker,Object)", "", "Argument[1]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "trace", "(Marker,Object,Throwable)", "", "Argument[1]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "trace", "(Marker,String)", "", "Argument[1]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "trace", "(Marker,String,Object)", "", "Argument[1..2]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "trace", "(Marker,String,Object,Object)", "", "Argument[1..3]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "trace", "(Marker,String,Object,Object,Object)", "", "Argument[1..4]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "trace", "(Marker,String,Object,Object,Object,Object)", "", "Argument[1..5]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "trace", "(Marker,String,Object,Object,Object,Object,Object)", "", "Argument[1..6]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "trace", "(Marker,String,Object,Object,Object,Object,Object,Object)", "", "Argument[1..7]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "trace", "(Marker,String,Object,Object,Object,Object,Object,Object,Object)", "", "Argument[1..8]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "trace", "(Marker,String,Object,Object,Object,Object,Object,Object,Object,Object)", "", "Argument[1..9]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "trace", "(Marker,String,Object,Object,Object,Object,Object,Object,Object,Object,Object)", "", "Argument[1..10]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "trace", "(Marker,String,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object)", "", "Argument[1..11]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "trace", "(Marker,String,Object[])", "", "Argument[1..2]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "trace", "(Marker,String,Supplier)", "", "Argument[1..2]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "trace", "(Marker,String,Throwable)", "", "Argument[1]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "trace", "(Marker,Supplier)", "", "Argument[1]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "trace", "(Marker,Supplier,Throwable)", "", "Argument[1]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "trace", "(Message)", "", "Argument[0]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "trace", "(Message,Throwable)", "", "Argument[0]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "trace", "(MessageSupplier)", "", "Argument[0]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "trace", "(MessageSupplier,Throwable)", "", "Argument[0]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "trace", "(Object)", "", "Argument[0]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "trace", "(Object,Throwable)", "", "Argument[0]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "trace", "(String)", "", "Argument[0]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "trace", "(String,Object)", "", "Argument[0..1]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "trace", "(String,Object,Object)", "", "Argument[0..2]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "trace", "(String,Object,Object,Object)", "", "Argument[0..3]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "trace", "(String,Object,Object,Object,Object)", "", "Argument[0..4]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "trace", "(String,Object,Object,Object,Object,Object)", "", "Argument[0..5]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "trace", "(String,Object,Object,Object,Object,Object,Object)", "", "Argument[0..6]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "trace", "(String,Object,Object,Object,Object,Object,Object,Object)", "", "Argument[0..7]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "trace", "(String,Object,Object,Object,Object,Object,Object,Object,Object)", "", "Argument[0..8]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "trace", "(String,Object,Object,Object,Object,Object,Object,Object,Object,Object)", "", "Argument[0..9]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "trace", "(String,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object)", "", "Argument[0..10]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "trace", "(String,Object[])", "", "Argument[0..1]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "trace", "(String,Supplier)", "", "Argument[0..1]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "trace", "(String,Throwable)", "", "Argument[0]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "trace", "(Supplier)", "", "Argument[0]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "trace", "(Supplier,Throwable)", "", "Argument[0]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "warn", "(CharSequence)", "", "Argument[0]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "warn", "(CharSequence,Throwable)", "", "Argument[0]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "warn", "(Marker,CharSequence)", "", "Argument[1]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "warn", "(Marker,CharSequence,Throwable)", "", "Argument[1]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "warn", "(Marker,Message)", "", "Argument[1]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "warn", "(Marker,MessageSupplier)", "", "Argument[1]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "warn", "(Marker,MessageSupplier,Throwable)", "", "Argument[1]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "warn", "(Marker,Object)", "", "Argument[1]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "warn", "(Marker,Object,Throwable)", "", "Argument[1]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "warn", "(Marker,String)", "", "Argument[1]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "warn", "(Marker,String,Object)", "", "Argument[1..2]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "warn", "(Marker,String,Object,Object)", "", "Argument[1..3]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "warn", "(Marker,String,Object,Object,Object)", "", "Argument[1..4]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "warn", "(Marker,String,Object,Object,Object,Object)", "", "Argument[1..5]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "warn", "(Marker,String,Object,Object,Object,Object,Object)", "", "Argument[1..6]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "warn", "(Marker,String,Object,Object,Object,Object,Object,Object)", "", "Argument[1..7]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "warn", "(Marker,String,Object,Object,Object,Object,Object,Object,Object)", "", "Argument[1..8]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "warn", "(Marker,String,Object,Object,Object,Object,Object,Object,Object,Object)", "", "Argument[1..9]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "warn", "(Marker,String,Object,Object,Object,Object,Object,Object,Object,Object,Object)", "", "Argument[1..10]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "warn", "(Marker,String,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object)", "", "Argument[1..11]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "warn", "(Marker,String,Object[])", "", "Argument[1..2]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "warn", "(Marker,String,Supplier)", "", "Argument[1..2]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "warn", "(Marker,String,Throwable)", "", "Argument[1]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "warn", "(Marker,Supplier)", "", "Argument[1]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "warn", "(Marker,Supplier,Throwable)", "", "Argument[1]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "warn", "(Message)", "", "Argument[0]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "warn", "(Message,Throwable)", "", "Argument[0]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "warn", "(MessageSupplier)", "", "Argument[0]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "warn", "(MessageSupplier,Throwable)", "", "Argument[0]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "warn", "(Object)", "", "Argument[0]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "warn", "(Object,Throwable)", "", "Argument[0]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "warn", "(String)", "", "Argument[0]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "warn", "(String,Object)", "", "Argument[0..1]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "warn", "(String,Object,Object)", "", "Argument[0..2]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "warn", "(String,Object,Object,Object)", "", "Argument[0..3]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "warn", "(String,Object,Object,Object,Object)", "", "Argument[0..4]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "warn", "(String,Object,Object,Object,Object,Object)", "", "Argument[0..5]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "warn", "(String,Object,Object,Object,Object,Object,Object)", "", "Argument[0..6]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "warn", "(String,Object,Object,Object,Object,Object,Object,Object)", "", "Argument[0..7]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "warn", "(String,Object,Object,Object,Object,Object,Object,Object,Object)", "", "Argument[0..8]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "warn", "(String,Object,Object,Object,Object,Object,Object,Object,Object,Object)", "", "Argument[0..9]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "warn", "(String,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object)", "", "Argument[0..10]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "warn", "(String,Object[])", "", "Argument[0..1]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "warn", "(String,Supplier)", "", "Argument[0..1]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "warn", "(String,Throwable)", "", "Argument[0]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "warn", "(Supplier)", "", "Argument[0]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "Logger", True, "warn", "(Supplier,Throwable)", "", "Argument[0]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "ThreadContext", False, "put", "", "", "Argument[1]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "ThreadContext", False, "putAll", "", "", "Argument[0]", "log4j", "manual", "log4j-injection"]
+      - ["org.apache.logging.log4j", "ThreadContext", False, "putIfNull", "", "", "Argument[1]", "log4j", "manual", "log4j-injection"]
diff --git a/java/ql/src/experimental/Security/CWE/CWE-020/Log4jJndiInjection.ql b/java/ql/src/experimental/Security/CWE/CWE-020/Log4jJndiInjection.ql
index 7b70a2e47d9..369833a4df2 100644
--- a/java/ql/src/experimental/Security/CWE/CWE-020/Log4jJndiInjection.ql
+++ b/java/ql/src/experimental/Security/CWE/CWE-020/Log4jJndiInjection.ql
@@ -19,159 +19,8 @@ import semmle.code.java.dataflow.FlowSources
 import semmle.code.java.dataflow.ExternalFlow
 import DataFlow::PathGraph
 
-private class Log4jLoggingSinkModels extends SinkModelCsv {
-  override predicate row(string row) {
-    row =
-      [
-        // org.apache.logging.log4j.Logger
-        "org.apache.logging.log4j;Logger;true;" +
-          ["debug", "error", "fatal", "info", "trace", "warn"] +
-          [
-            ";(CharSequence);;Argument[0];log4j;manual",
-            ";(CharSequence,Throwable);;Argument[0];log4j;manual",
-            ";(Marker,CharSequence);;Argument[1];log4j;manual",
-            ";(Marker,CharSequence,Throwable);;Argument[1];log4j;manual",
-            ";(Marker,Message);;Argument[1];log4j;manual",
-            ";(Marker,MessageSupplier);;Argument[1];log4j;manual",
-            ";(Marker,MessageSupplier);;Argument[1];log4j;manual",
-            ";(Marker,MessageSupplier,Throwable);;Argument[1];log4j;manual",
-            ";(Marker,Object);;Argument[1];log4j;manual",
-            ";(Marker,Object,Throwable);;Argument[1];log4j;manual",
-            ";(Marker,String);;Argument[1];log4j;manual",
-            ";(Marker,String,Object[]);;Argument[1..2];log4j;manual",
-            ";(Marker,String,Object);;Argument[1..2];log4j;manual",
-            ";(Marker,String,Object,Object);;Argument[1..3];log4j;manual",
-            ";(Marker,String,Object,Object,Object);;Argument[1..4];log4j;manual",
-            ";(Marker,String,Object,Object,Object,Object);;Argument[1..5];log4j;manual",
-            ";(Marker,String,Object,Object,Object,Object,Object);;Argument[1..6];log4j;manual",
-            ";(Marker,String,Object,Object,Object,Object,Object,Object);;Argument[1..7];log4j;manual",
-            ";(Marker,String,Object,Object,Object,Object,Object,Object,Object);;Argument[1..8];log4j;manual",
-            ";(Marker,String,Object,Object,Object,Object,Object,Object,Object,Object);;Argument[1..9];log4j;manual",
-            ";(Marker,String,Object,Object,Object,Object,Object,Object,Object,Object,Object);;Argument[1..10];log4j;manual",
-            ";(Marker,String,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object);;Argument[1..11];log4j;manual",
-            ";(Marker,String,Supplier);;Argument[1..2];log4j;manual",
-            ";(Marker,String,Throwable);;Argument[1];log4j;manual",
-            ";(Marker,Supplier);;Argument[1];log4j;manual",
-            ";(Marker,Supplier,Throwable);;Argument[1];log4j;manual",
-            ";(MessageSupplier);;Argument[0];log4j;manual",
-            ";(MessageSupplier,Throwable);;Argument[0];log4j;manual",
-            ";(Message);;Argument[0];log4j;manual",
-            ";(Message,Throwable);;Argument[0];log4j;manual", ";(Object);;Argument[0];log4j;manual",
-            ";(Object,Throwable);;Argument[0];log4j;manual", ";(String);;Argument[0];log4j;manual",
-            ";(String,Object[]);;Argument[0..1];log4j;manual",
-            ";(String,Object);;Argument[0..1];log4j;manual",
-            ";(String,Object,Object);;Argument[0..2];log4j;manual",
-            ";(String,Object,Object,Object);;Argument[0..3];log4j;manual",
-            ";(String,Object,Object,Object,Object);;Argument[0..4];log4j;manual",
-            ";(String,Object,Object,Object,Object,Object);;Argument[0..5];log4j;manual",
-            ";(String,Object,Object,Object,Object,Object,Object);;Argument[0..6];log4j;manual",
-            ";(String,Object,Object,Object,Object,Object,Object,Object);;Argument[0..7];log4j;manual",
-            ";(String,Object,Object,Object,Object,Object,Object,Object,Object);;Argument[0..8];log4j;manual",
-            ";(String,Object,Object,Object,Object,Object,Object,Object,Object,Object);;Argument[0..9];log4j;manual",
-            ";(String,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object);;Argument[0..10];log4j;manual",
-            ";(String,Supplier);;Argument[0..1];log4j;manual",
-            ";(String,Throwable);;Argument[0];log4j;manual",
-            ";(Supplier);;Argument[0];log4j;manual",
-            ";(Supplier,Throwable);;Argument[0];log4j;manual"
-          ],
-        "org.apache.logging.log4j;Logger;true;log" +
-          [
-            ";(Level,CharSequence);;Argument[1];log4j;manual",
-            ";(Level,CharSequence,Throwable);;Argument[1];log4j;manual",
-            ";(Level,Marker,CharSequence);;Argument[2];log4j;manual",
-            ";(Level,Marker,CharSequence,Throwable);;Argument[2];log4j;manual",
-            ";(Level,Marker,Message);;Argument[2];log4j;manual",
-            ";(Level,Marker,MessageSupplier);;Argument[2];log4j;manual",
-            ";(Level,Marker,MessageSupplier);;Argument[2];log4j;manual",
-            ";(Level,Marker,MessageSupplier,Throwable);;Argument[2];log4j;manual",
-            ";(Level,Marker,Object);;Argument[2];log4j;manual",
-            ";(Level,Marker,Object,Throwable);;Argument[2];log4j;manual",
-            ";(Level,Marker,String);;Argument[2];log4j;manual",
-            ";(Level,Marker,String,Object[]);;Argument[2..3];log4j;manual",
-            ";(Level,Marker,String,Object);;Argument[2..3];log4j;manual",
-            ";(Level,Marker,String,Object,Object);;Argument[2..4];log4j;manual",
-            ";(Level,Marker,String,Object,Object,Object);;Argument[2..5];log4j;manual",
-            ";(Level,Marker,String,Object,Object,Object,Object);;Argument[2..6];log4j;manual",
-            ";(Level,Marker,String,Object,Object,Object,Object,Object);;Argument[2..7];log4j;manual",
-            ";(Level,Marker,String,Object,Object,Object,Object,Object,Object);;Argument[2..8];log4j;manual",
-            ";(Level,Marker,String,Object,Object,Object,Object,Object,Object,Object);;Argument[2..9];log4j;manual",
-            ";(Level,Marker,String,Object,Object,Object,Object,Object,Object,Object,Object);;Argument[2..10];log4j;manual",
-            ";(Level,Marker,String,Object,Object,Object,Object,Object,Object,Object,Object,Object);;Argument[2..11];log4j;manual",
-            ";(Level,Marker,String,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object);;Argument[2..12];log4j;manual",
-            ";(Level,Marker,String,Supplier);;Argument[2..3];log4j;manual",
-            ";(Level,Marker,String,Throwable);;Argument[2];log4j;manual",
-            ";(Level,Marker,Supplier);;Argument[2];log4j;manual",
-            ";(Level,Marker,Supplier,Throwable);;Argument[2];log4j;manual",
-            ";(Level,Message);;Argument[1];log4j;manual",
-            ";(Level,MessageSupplier);;Argument[1];log4j;manual",
-            ";(Level,MessageSupplier,Throwable);;Argument[1];log4j;manual",
-            ";(Level,Message);;Argument[1];log4j;manual",
-            ";(Level,Message,Throwable);;Argument[1];log4j;manual",
-            ";(Level,Object);;Argument[1];log4j;manual",
-            ";(Level,Object);;Argument[1];log4j;manual",
-            ";(Level,String);;Argument[1];log4j;manual",
-            ";(Level,Object,Throwable);;Argument[1];log4j;manual",
-            ";(Level,String);;Argument[1];log4j;manual",
-            ";(Level,String,Object[]);;Argument[1..2];log4j;manual",
-            ";(Level,String,Object);;Argument[1..2];log4j;manual",
-            ";(Level,String,Object,Object);;Argument[1..3];log4j;manual",
-            ";(Level,String,Object,Object,Object);;Argument[1..4];log4j;manual",
-            ";(Level,String,Object,Object,Object,Object);;Argument[1..5];log4j;manual",
-            ";(Level,String,Object,Object,Object,Object,Object);;Argument[1..6];log4j;manual",
-            ";(Level,String,Object,Object,Object,Object,Object,Object);;Argument[1..7];log4j;manual",
-            ";(Level,String,Object,Object,Object,Object,Object,Object,Object);;Argument[1..8];log4j;manual",
-            ";(Level,String,Object,Object,Object,Object,Object,Object,Object,Object);;Argument[1..9];log4j;manual",
-            ";(Level,String,Object,Object,Object,Object,Object,Object,Object,Object,Object);;Argument[1..10];log4j;manual",
-            ";(Level,String,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object);;Argument[1..11];log4j;manual",
-            ";(Level,String,Supplier);;Argument[1..2];log4j;manual",
-            ";(Level,String,Throwable);;Argument[1];log4j;manual",
-            ";(Level,Supplier);;Argument[1];log4j;manual",
-            ";(Level,Supplier,Throwable);;Argument[1];log4j;manual"
-          ], "org.apache.logging.log4j;Logger;true;entry;(Object[]);;Argument[0];log4j;manual",
-        "org.apache.logging.log4j;Logger;true;logMessage;(Level,Marker,String,StackTraceElement,Message,Throwable);;Argument[4];log4j;manual",
-        "org.apache.logging.log4j;Logger;true;printf;(Level,Marker,String,Object[]);;Argument[2..3];log4j;manual",
-        "org.apache.logging.log4j;Logger;true;printf;(Level,String,Object[]);;Argument[1..2];log4j;manual",
-        // org.apache.logging.log4j.LogBuilder
-        "org.apache.logging.log4j;LogBuilder;true;log;(CharSequence);;Argument[0];log4j;manual",
-        "org.apache.logging.log4j;LogBuilder;true;log;(Message);;Argument[0];log4j;manual",
-        "org.apache.logging.log4j;LogBuilder;true;log;(Object);;Argument[0];log4j;manual",
-        "org.apache.logging.log4j;LogBuilder;true;log;(String);;Argument[0];log4j;manual",
-        "org.apache.logging.log4j;LogBuilder;true;log;(String,Object[]);;Argument[0..1];log4j;manual",
-        "org.apache.logging.log4j;LogBuilder;true;log;(String,Object);;Argument[0..1];log4j;manual",
-        "org.apache.logging.log4j;LogBuilder;true;log;(String,Object,Object);;Argument[0..2];log4j;manual",
-        "org.apache.logging.log4j;LogBuilder;true;log;(String,Object,Object,Object);;Argument[0..3];log4j;manual",
-        "org.apache.logging.log4j;LogBuilder;true;log;(String,Object,Object,Object,Object);;Argument[0..4];log4j;manual",
-        "org.apache.logging.log4j;LogBuilder;true;log;(String,Object,Object,Object,Object,Object);;Argument[0..5];log4j;manual",
-        "org.apache.logging.log4j;LogBuilder;true;log;(String,Object,Object,Object,Object,Object,Object);;Argument[0..6];log4j;manual",
-        "org.apache.logging.log4j;LogBuilder;true;log;(String,Object,Object,Object,Object,Object,Object,Object);;Argument[0..7];log4j;manual",
-        "org.apache.logging.log4j;LogBuilder;true;log;(String,Object,Object,Object,Object,Object,Object,Object,Object);;Argument[0..8];log4j;manual",
-        "org.apache.logging.log4j;LogBuilder;true;log;(String,Object,Object,Object,Object,Object,Object,Object,Object,Object);;Argument[0..9];log4j;manual",
-        "org.apache.logging.log4j;LogBuilder;true;log;(String,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object);;Argument[0..10];log4j;manual",
-        "org.apache.logging.log4j;LogBuilder;true;log;(String,Supplier[]);;Argument[0..1];log4j;manual",
-        "org.apache.logging.log4j;LogBuilder;true;log;(Supplier);;Argument[0];log4j;manual",
-        // org.apache.logging.log4j.ThreadContext
-        "org.apache.logging.log4j;ThreadContext;false;put;;;Argument[1];log4j;manual",
-        "org.apache.logging.log4j;ThreadContext;false;putIfNull;;;Argument[1];log4j;manual",
-        "org.apache.logging.log4j;ThreadContext;false;putAll;;;Argument[0];log4j;manual",
-        // org.apache.logging.log4j.CloseableThreadContext
-        "org.apache.logging.log4j;CloseableThreadContext;false;put;;;Argument[1];log4j;manual",
-        "org.apache.logging.log4j;CloseableThreadContext;false;putAll;;;Argument[0];log4j;manual",
-        "org.apache.logging.log4j;CloseableThreadContext$Instance;false;put;;;Argument[1];log4j;manual",
-        "org.apache.logging.log4j;CloseableThreadContext$Instance;false;putAll;;;Argument[0];log4j;manual",
-      ]
-  }
-}
-
-class Log4jInjectionSummaries extends SummaryModelCsv {
-  override predicate row(string row) {
-    row =
-      [
-        "org.apache.logging.log4j.message;MapMessage;true;with;;;Argument[1];Argument[-1];taint;manual",
-        "org.apache.logging.log4j.message;MapMessage;true;with;;;Argument[-1];ReturnValue;value;manual",
-        "org.apache.logging.log4j.message;MapMessage;true;put;;;Argument[1];Argument[-1];taint;manual",
-        "org.apache.logging.log4j.message;MapMessage;true;putAll;;;Argument[0].MapValue;Argument[-1];taint;manual",
-      ]
-  }
+private class ActivateModels extends ActiveExperimentalModels {
+  ActivateModels() { this = "log4j-injection" }
 }
 
 /** A data flow sink for unvalidated user input that is used to log messages. */

From ab12b6cc2b60e8c524bf2f900dce9028dd850f04 Mon Sep 17 00:00:00 2001
From: Michael Nebel <michaelnebel@github.com>
Date: Tue, 22 Nov 2022 09:35:52 +0100
Subject: [PATCH 0677/1420] Java: Convert android-web-resource-response to data
 extensions.

---
 .../lib/ext/experimental/android.webkit.model.yml |  6 ++++++
 java/ql/lib/ext/experimental/java.io.model.yml    |  6 ++++++
 .../CWE/CWE-200/AndroidWebResourceResponse.qll    | 15 ++++-----------
 3 files changed, 16 insertions(+), 11 deletions(-)
 create mode 100644 java/ql/lib/ext/experimental/android.webkit.model.yml
 create mode 100644 java/ql/lib/ext/experimental/java.io.model.yml

diff --git a/java/ql/lib/ext/experimental/android.webkit.model.yml b/java/ql/lib/ext/experimental/android.webkit.model.yml
new file mode 100644
index 00000000000..dc2a4b95b64
--- /dev/null
+++ b/java/ql/lib/ext/experimental/android.webkit.model.yml
@@ -0,0 +1,6 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extExperimentalSummaryModel
+    data:
+      - ["android.webkit", "WebResourceRequest", False, "getUrl", "", "", "Argument[-1]", "ReturnValue", "taint", "manual", "android-web-resource-response"]
diff --git a/java/ql/lib/ext/experimental/java.io.model.yml b/java/ql/lib/ext/experimental/java.io.model.yml
new file mode 100644
index 00000000000..1b4fd419994
--- /dev/null
+++ b/java/ql/lib/ext/experimental/java.io.model.yml
@@ -0,0 +1,6 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extExperimentalSummaryModel
+    data:
+      - ["java.io", "FileInputStream", True, "FileInputStream", "", "", "Argument[0]", "Argument[-1]", "taint", "manual", "android-web-resource-response"]
diff --git a/java/ql/src/experimental/Security/CWE/CWE-200/AndroidWebResourceResponse.qll b/java/ql/src/experimental/Security/CWE/CWE-200/AndroidWebResourceResponse.qll
index 44e0d7fd96f..bd177b30213 100644
--- a/java/ql/src/experimental/Security/CWE/CWE-200/AndroidWebResourceResponse.qll
+++ b/java/ql/src/experimental/Security/CWE/CWE-200/AndroidWebResourceResponse.qll
@@ -6,6 +6,10 @@ private import semmle.code.java.dataflow.ExternalFlow
 private import semmle.code.java.dataflow.FlowSteps
 private import semmle.code.java.frameworks.android.WebView
 
+private class ActivateModels extends ActiveExperimentalModels {
+  ActivateModels() { this = "android-web-resource-response" }
+}
+
 /**
  * The Android class `android.webkit.WebResourceRequest` for handling web requests.
  */
@@ -68,14 +72,3 @@ private class FetchUrlStep extends AdditionalValueStep {
     )
   }
 }
-
-/** Value/taint steps relating to url loading and file reading in an Android application. */
-private class LoadUrlSummaries extends SummaryModelCsv {
-  override predicate row(string row) {
-    row =
-      [
-        "java.io;FileInputStream;true;FileInputStream;;;Argument[0];Argument[-1];taint;manual",
-        "android.webkit;WebResourceRequest;false;getUrl;;;Argument[-1];ReturnValue;taint;manual"
-      ]
-  }
-}

From 07578f11d44e99624f8a9e6cdebe9371f5eb2004 Mon Sep 17 00:00:00 2001
From: Michael Nebel <michaelnebel@github.com>
Date: Tue, 22 Nov 2022 09:58:45 +0100
Subject: [PATCH 0678/1420] Java: Convert hardcoded-jwt-key models to data
 extensions.

---
 .../com.auth0.jwt.interfaces.model.yml        | 19 ++++++++++++++++
 .../Security/CWE/CWE-321/HardcodedJwtKey.qll  | 22 ++++---------------
 2 files changed, 23 insertions(+), 18 deletions(-)
 create mode 100644 java/ql/lib/ext/experimental/com.auth0.jwt.interfaces.model.yml

diff --git a/java/ql/lib/ext/experimental/com.auth0.jwt.interfaces.model.yml b/java/ql/lib/ext/experimental/com.auth0.jwt.interfaces.model.yml
new file mode 100644
index 00000000000..3a4e6a42701
--- /dev/null
+++ b/java/ql/lib/ext/experimental/com.auth0.jwt.interfaces.model.yml
@@ -0,0 +1,19 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extExperimentalSummaryModel
+    data:
+      - ["com.auth0.jwt.interfaces", "Verification", True, "acceptExpiresAt", "", "", "Argument[-1]", "ReturnValue", "value", "manual", "hardcoded-jwt-key"]
+      - ["com.auth0.jwt.interfaces", "Verification", True, "acceptIssuedAt", "", "", "Argument[-1]", "ReturnValue", "value", "manual", "hardcoded-jwt-key"]
+      - ["com.auth0.jwt.interfaces", "Verification", True, "acceptLeeway", "", "", "Argument[-1]", "ReturnValue", "value", "manual", "hardcoded-jwt-key"]
+      - ["com.auth0.jwt.interfaces", "Verification", True, "acceptNotBefore", "", "", "Argument[-1]", "ReturnValue", "value", "manual", "hardcoded-jwt-key"]
+      - ["com.auth0.jwt.interfaces", "Verification", True, "build", "", "", "Argument[-1]", "ReturnValue", "taint", "manual", "hardcoded-jwt-key"]
+      - ["com.auth0.jwt.interfaces", "Verification", True, "ignoreIssuedAt", "", "", "Argument[-1]", "ReturnValue", "value", "manual", "hardcoded-jwt-key"]
+      - ["com.auth0.jwt.interfaces", "Verification", True, "withAnyOfAudience", "", "", "Argument[-1]", "ReturnValue", "value", "manual", "hardcoded-jwt-key"]
+      - ["com.auth0.jwt.interfaces", "Verification", True, "withArrayClaim", "", "", "Argument[-1]", "ReturnValue", "value", "manual", "hardcoded-jwt-key"]
+      - ["com.auth0.jwt.interfaces", "Verification", True, "withAudience", "", "", "Argument[-1]", "ReturnValue", "value", "manual", "hardcoded-jwt-key"]
+      - ["com.auth0.jwt.interfaces", "Verification", True, "withClaim", "", "", "Argument[-1]", "ReturnValue", "value", "manual", "hardcoded-jwt-key"]
+      - ["com.auth0.jwt.interfaces", "Verification", True, "withClaimPresence", "", "", "Argument[-1]", "ReturnValue", "value", "manual", "hardcoded-jwt-key"]
+      - ["com.auth0.jwt.interfaces", "Verification", True, "withIssuer", "", "", "Argument[-1]", "ReturnValue", "value", "manual", "hardcoded-jwt-key"]
+      - ["com.auth0.jwt.interfaces", "Verification", True, "withJWTId", "", "", "Argument[-1]", "ReturnValue", "value", "manual", "hardcoded-jwt-key"]
+      - ["com.auth0.jwt.interfaces", "Verification", True, "withSubject", "", "", "Argument[-1]", "ReturnValue", "value", "manual", "hardcoded-jwt-key"]
diff --git a/java/ql/src/experimental/Security/CWE/CWE-321/HardcodedJwtKey.qll b/java/ql/src/experimental/Security/CWE/CWE-321/HardcodedJwtKey.qll
index b16142f3856..09db11dd40b 100644
--- a/java/ql/src/experimental/Security/CWE/CWE-321/HardcodedJwtKey.qll
+++ b/java/ql/src/experimental/Security/CWE/CWE-321/HardcodedJwtKey.qll
@@ -6,6 +6,10 @@ import java
 private import semmle.code.java.dataflow.ExternalFlow
 private import semmle.code.java.dataflow.FlowSources
 
+private class ActivateModels extends ActiveExperimentalModels {
+  ActivateModels() { this = "hardcoded-jwt-key" }
+}
+
 /** The class `com.auth0.jwt.JWT`. */
 class Jwt extends RefType {
   Jwt() { this.hasQualifiedName("com.auth0.jwt", "JWT") }
@@ -125,21 +129,3 @@ class HardcodedJwtKeyConfiguration extends TaintTracking::Configuration {
     )
   }
 }
-
-/** Taint model related to verifying JWT tokens. */
-private class VerificationFlowStep extends SummaryModelCsv {
-  override predicate row(string row) {
-    row =
-      [
-        "com.auth0.jwt.interfaces;Verification;true;build;;;Argument[-1];ReturnValue;taint;manual",
-        "com.auth0.jwt.interfaces;Verification;true;" +
-          ["acceptLeeway", "acceptExpiresAt", "acceptNotBefore", "acceptIssuedAt", "ignoreIssuedAt"]
-          + ";;;Argument[-1];ReturnValue;value;manual",
-        "com.auth0.jwt.interfaces;Verification;true;with" +
-          [
-            "Issuer", "Subject", "Audience", "AnyOfAudience", "ClaimPresence", "Claim",
-            "ArrayClaim", "JWTId"
-          ] + ";;;Argument[-1];ReturnValue;value;manual"
-      ]
-  }
-}

From aed5ee4edccf2222967a9f31eea75c0a8b123f9b Mon Sep 17 00:00:00 2001
From: Michael Nebel <michaelnebel@github.com>
Date: Tue, 22 Nov 2022 10:09:54 +0100
Subject: [PATCH 0679/1420] Java: Convert thread-resource-abuse to data
 extensions.

---
 .../lib/ext/experimental/java.lang.model.yml  | 12 ++++++++++
 .../java.util.concurrent.model.yml            |  6 +++++
 .../CWE/CWE-400/ThreadResourceAbuse.qll       | 22 ++-----------------
 3 files changed, 20 insertions(+), 20 deletions(-)
 create mode 100644 java/ql/lib/ext/experimental/java.lang.model.yml
 create mode 100644 java/ql/lib/ext/experimental/java.util.concurrent.model.yml

diff --git a/java/ql/lib/ext/experimental/java.lang.model.yml b/java/ql/lib/ext/experimental/java.lang.model.yml
new file mode 100644
index 00000000000..0622356da8e
--- /dev/null
+++ b/java/ql/lib/ext/experimental/java.lang.model.yml
@@ -0,0 +1,12 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extExperimentalSinkModel
+    data:
+      - ["java.lang", "Thread", True, "sleep", "", "", "Argument[0]", "thread-pause", "manual", "thread-resource-abuse"]
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extExperimentalSummaryModel
+    data:
+      - ["java.lang", "Math", False, "max", "", "", "Argument[0..1]", "ReturnValue", "value", "manual", "thread-resource-abuse"]
+      - ["java.lang", "Math", False, "min", "", "", "Argument[0..1]", "ReturnValue", "value", "manual", "thread-resource-abuse"]
diff --git a/java/ql/lib/ext/experimental/java.util.concurrent.model.yml b/java/ql/lib/ext/experimental/java.util.concurrent.model.yml
new file mode 100644
index 00000000000..0f86bfe4ae5
--- /dev/null
+++ b/java/ql/lib/ext/experimental/java.util.concurrent.model.yml
@@ -0,0 +1,6 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extExperimentalSinkModel
+    data:
+      - ["java.util.concurrent", "TimeUnit", True, "sleep", "", "", "Argument[0]", "thread-pause", "manual", "thread-resource-abuse"]
diff --git a/java/ql/src/experimental/Security/CWE/CWE-400/ThreadResourceAbuse.qll b/java/ql/src/experimental/Security/CWE/CWE-400/ThreadResourceAbuse.qll
index e4dd7458951..3201f9483e4 100644
--- a/java/ql/src/experimental/Security/CWE/CWE-400/ThreadResourceAbuse.qll
+++ b/java/ql/src/experimental/Security/CWE/CWE-400/ThreadResourceAbuse.qll
@@ -6,26 +6,8 @@ private import semmle.code.java.dataflow.ExternalFlow
 import semmle.code.java.dataflow.FlowSteps
 import semmle.code.java.controlflow.Guards
 
-/** `java.lang.Math` data model for value comparison in the new CSV format. */
-private class MathCompDataModel extends SummaryModelCsv {
-  override predicate row(string row) {
-    row =
-      [
-        "java.lang;Math;false;min;;;Argument[0..1];ReturnValue;value;manual",
-        "java.lang;Math;false;max;;;Argument[0..1];ReturnValue;value;manual"
-      ]
-  }
-}
-
-/** Thread pause data model in the new CSV format. */
-private class PauseThreadDataModel extends SinkModelCsv {
-  override predicate row(string row) {
-    row =
-      [
-        "java.lang;Thread;true;sleep;;;Argument[0];thread-pause;manual",
-        "java.util.concurrent;TimeUnit;true;sleep;;;Argument[0];thread-pause;manual"
-      ]
-  }
+private class ActivateModels extends ActiveExperimentalModels {
+  ActivateModels() { this = "thread-resource-abuse" }
 }
 
 /** A sink representing methods pausing a thread. */

From 91840c613e52e1130be2514ab54dd0510b699ef1 Mon Sep 17 00:00:00 2001
From: Michael Nebel <michaelnebel@github.com>
Date: Tue, 22 Nov 2022 10:34:17 +0100
Subject: [PATCH 0680/1420] Java: Convert unsafe-url-forward to data
 extensions.

---
 ...ndertow.server.handlers.resource.model.yml |  8 +++
 .../jakarta.servlet.http.model.yml            |  6 +++
 .../ext/experimental/java.nio.file.model.yml  |  9 ++++
 .../java.util.concurrent.model.yml            |  1 +
 .../experimental/javax.servlet.http.model.yml |  6 +++
 .../org.springframework.core.io.model.yml     | 16 ++++++
 .../Security/CWE/CWE-552/UnsafeUrlForward.qll | 53 ++-----------------
 7 files changed, 50 insertions(+), 49 deletions(-)
 create mode 100644 java/ql/lib/ext/experimental/io.undertow.server.handlers.resource.model.yml
 create mode 100644 java/ql/lib/ext/experimental/jakarta.servlet.http.model.yml
 create mode 100644 java/ql/lib/ext/experimental/java.nio.file.model.yml
 create mode 100644 java/ql/lib/ext/experimental/javax.servlet.http.model.yml
 create mode 100644 java/ql/lib/ext/experimental/org.springframework.core.io.model.yml

diff --git a/java/ql/lib/ext/experimental/io.undertow.server.handlers.resource.model.yml b/java/ql/lib/ext/experimental/io.undertow.server.handlers.resource.model.yml
new file mode 100644
index 00000000000..222a144acaf
--- /dev/null
+++ b/java/ql/lib/ext/experimental/io.undertow.server.handlers.resource.model.yml
@@ -0,0 +1,8 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extExperimentalSummaryModel
+    data:
+      - ["io.undertow.server.handlers.resource", "Resource", True, "getFile", "", "", "Argument[-1]", "ReturnValue", "taint", "manual", "unsafe-url-forward"]
+      - ["io.undertow.server.handlers.resource", "Resource", True, "getFilePath", "", "", "Argument[-1]", "ReturnValue", "taint", "manual", "unsafe-url-forward"]
+      - ["io.undertow.server.handlers.resource", "Resource", True, "getPath", "", "", "Argument[-1]", "ReturnValue", "taint", "manual", "unsafe-url-forward"]
diff --git a/java/ql/lib/ext/experimental/jakarta.servlet.http.model.yml b/java/ql/lib/ext/experimental/jakarta.servlet.http.model.yml
new file mode 100644
index 00000000000..17737495c06
--- /dev/null
+++ b/java/ql/lib/ext/experimental/jakarta.servlet.http.model.yml
@@ -0,0 +1,6 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extExperimentalSourceModel
+    data:
+      - ["jakarta.servlet.http", "HttpServletRequest", True, "getServletPath", "", "", "ReturnValue", "remote", "manual", "unsafe-url-forward"]
diff --git a/java/ql/lib/ext/experimental/java.nio.file.model.yml b/java/ql/lib/ext/experimental/java.nio.file.model.yml
new file mode 100644
index 00000000000..990a632fae4
--- /dev/null
+++ b/java/ql/lib/ext/experimental/java.nio.file.model.yml
@@ -0,0 +1,9 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extExperimentalSummaryModel
+    data:
+      - ["java.nio.file", "Path", True, "normalize", "", "", "Argument[-1]", "ReturnValue", "taint", "manual", "unsafe-url-forward"]
+      - ["java.nio.file", "Path", True, "resolve", "", "", "Argument[-1..0]", "ReturnValue", "taint", "manual", "unsafe-url-forward"]
+      - ["java.nio.file", "Path", True, "toString", "", "", "Argument[-1]", "ReturnValue", "taint", "manual", "unsafe-url-forward"]
+      - ["java.nio.file", "Paths", True, "get", "", "", "Argument[0..1]", "ReturnValue", "taint", "manual", "unsafe-url-forward"]
diff --git a/java/ql/lib/ext/experimental/java.util.concurrent.model.yml b/java/ql/lib/ext/experimental/java.util.concurrent.model.yml
index 0f86bfe4ae5..fbbee520183 100644
--- a/java/ql/lib/ext/experimental/java.util.concurrent.model.yml
+++ b/java/ql/lib/ext/experimental/java.util.concurrent.model.yml
@@ -4,3 +4,4 @@ extensions:
       extensible: extExperimentalSinkModel
     data:
       - ["java.util.concurrent", "TimeUnit", True, "sleep", "", "", "Argument[0]", "thread-pause", "manual", "thread-resource-abuse"]
+      - ["java.util.concurrent", "TimeUnit", True, "sleep", "", "", "Argument[0]", "thread-pause", "manual", "unsafe-url-forward"]
diff --git a/java/ql/lib/ext/experimental/javax.servlet.http.model.yml b/java/ql/lib/ext/experimental/javax.servlet.http.model.yml
new file mode 100644
index 00000000000..c4f359c0904
--- /dev/null
+++ b/java/ql/lib/ext/experimental/javax.servlet.http.model.yml
@@ -0,0 +1,6 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extExperimentalSourceModel
+    data:
+      - ["javax.servlet.http", "HttpServletRequest", True, "getServletPath", "", "", "ReturnValue", "remote", "manual", "unsafe-url-forward"]
diff --git a/java/ql/lib/ext/experimental/org.springframework.core.io.model.yml b/java/ql/lib/ext/experimental/org.springframework.core.io.model.yml
new file mode 100644
index 00000000000..8fc74cd24db
--- /dev/null
+++ b/java/ql/lib/ext/experimental/org.springframework.core.io.model.yml
@@ -0,0 +1,16 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extExperimentalSinkModel
+    data:
+      - ["org.springframework.core.io", "ClassPathResource", True, "getFilename", "", "", "Argument[-1]", "get-resource", "manual", "unsafe-url-forward"]
+      - ["org.springframework.core.io", "ClassPathResource", True, "getPath", "", "", "Argument[-1]", "get-resource", "manual", "unsafe-url-forward"]
+      - ["org.springframework.core.io", "ClassPathResource", True, "getURL", "", "", "Argument[-1]", "get-resource", "manual", "unsafe-url-forward"]
+      - ["org.springframework.core.io", "ClassPathResource", True, "resolveURL", "", "", "Argument[-1]", "get-resource", "manual", "unsafe-url-forward"]
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extExperimentalSummaryModel
+    data:
+      - ["org.springframework.core.io", "ClassPathResource", False, "ClassPathResource", "", "", "Argument[0]", "Argument[-1]", "taint", "manual", "unsafe-url-forward"]
+      - ["org.springframework.core.io", "Resource", True, "createRelative", "", "", "Argument[0]", "ReturnValue", "taint", "manual", "unsafe-url-forward"]
+      - ["org.springframework.core.io", "ResourceLoader", True, "getResource", "", "", "Argument[0]", "ReturnValue", "taint", "manual", "unsafe-url-forward"]
diff --git a/java/ql/src/experimental/Security/CWE/CWE-552/UnsafeUrlForward.qll b/java/ql/src/experimental/Security/CWE/CWE-552/UnsafeUrlForward.qll
index aa2999a9955..bff6a0a3893 100644
--- a/java/ql/src/experimental/Security/CWE/CWE-552/UnsafeUrlForward.qll
+++ b/java/ql/src/experimental/Security/CWE/CWE-552/UnsafeUrlForward.qll
@@ -6,6 +6,10 @@ private import semmle.code.java.dataflow.StringPrefixes
 private import semmle.code.java.frameworks.javaee.ejb.EJBRestrictions
 private import experimental.semmle.code.java.frameworks.SpringResource
 
+private class ActiveModels extends ActiveExperimentalModels {
+  ActiveModels() { this = "unsafe-url-forward" }
+}
+
 /** A sink for unsafe URL forward vulnerabilities. */
 abstract class UnsafeUrlForwardSink extends DataFlow::Node { }
 
@@ -161,52 +165,3 @@ private class SpringUrlForwardSink extends UnsafeUrlForwardSink {
     this.asExpr() = any(ForwardPrefix fp).getAnAppendedExpression()
   }
 }
-
-/** Source model of remote flow source from `getServletPath`. */
-private class ServletGetPathSource extends SourceModelCsv {
-  override predicate row(string row) {
-    row =
-      [
-        "javax.servlet.http;HttpServletRequest;true;getServletPath;;;ReturnValue;remote;manual",
-        "jakarta.servlet.http;HttpServletRequest;true;getServletPath;;;ReturnValue;remote;manual"
-      ]
-  }
-}
-
-/** Taint model related to `java.nio.file.Path` and `io.undertow.server.handlers.resource.Resource`. */
-private class FilePathFlowStep extends SummaryModelCsv {
-  override predicate row(string row) {
-    row =
-      [
-        "java.nio.file;Paths;true;get;;;Argument[0..1];ReturnValue;taint;manual",
-        "java.nio.file;Path;true;resolve;;;Argument[-1..0];ReturnValue;taint;manual",
-        "java.nio.file;Path;true;normalize;;;Argument[-1];ReturnValue;taint;manual",
-        "java.nio.file;Path;true;toString;;;Argument[-1];ReturnValue;taint;manual",
-        "io.undertow.server.handlers.resource;Resource;true;getFile;;;Argument[-1];ReturnValue;taint;manual",
-        "io.undertow.server.handlers.resource;Resource;true;getFilePath;;;Argument[-1];ReturnValue;taint;manual",
-        "io.undertow.server.handlers.resource;Resource;true;getPath;;;Argument[-1];ReturnValue;taint;manual"
-      ]
-  }
-}
-
-/** Taint models related to resource loading in Spring. */
-private class LoadSpringResourceFlowStep extends SummaryModelCsv {
-  override predicate row(string row) {
-    row =
-      [
-        "org.springframework.core.io;ClassPathResource;false;ClassPathResource;;;Argument[0];Argument[-1];taint;manual",
-        "org.springframework.core.io;ResourceLoader;true;getResource;;;Argument[0];ReturnValue;taint;manual",
-        "org.springframework.core.io;Resource;true;createRelative;;;Argument[0];ReturnValue;taint;manual"
-      ]
-  }
-}
-
-/** Sink models for methods that load Spring resources. */
-private class SpringResourceCsvSink extends SinkModelCsv {
-  override predicate row(string row) {
-    row =
-      // Get spring resource
-      "org.springframework.core.io;ClassPathResource;true;" +
-        ["getFilename", "getPath", "getURL", "resolveURL"] + ";;;Argument[-1];get-resource;manual"
-  }
-}

From b96540c9376d269c8cadeaae58ef06c668cd2001 Mon Sep 17 00:00:00 2001
From: Michael Nebel <michaelnebel@github.com>
Date: Tue, 22 Nov 2022 11:00:21 +0100
Subject: [PATCH 0681/1420] Java: Convert permissve-dot-regex-query to data
 extensions.

---
 .../experimental/javax.servlet.http.model.yml  | 10 ++++++++++
 .../CWE/CWE-625/PermissiveDotRegexQuery.qll    | 18 ++++--------------
 2 files changed, 14 insertions(+), 14 deletions(-)

diff --git a/java/ql/lib/ext/experimental/javax.servlet.http.model.yml b/java/ql/lib/ext/experimental/javax.servlet.http.model.yml
index c4f359c0904..04098f85f5d 100644
--- a/java/ql/lib/ext/experimental/javax.servlet.http.model.yml
+++ b/java/ql/lib/ext/experimental/javax.servlet.http.model.yml
@@ -4,3 +4,13 @@ extensions:
       extensible: extExperimentalSourceModel
     data:
       - ["javax.servlet.http", "HttpServletRequest", True, "getServletPath", "", "", "ReturnValue", "remote", "manual", "unsafe-url-forward"]
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extExperimentalSourceModel
+    data:
+      - ["javax.servlet.http", "HttpServletRequest", False, "getPathInfo", "()", "", "ReturnValue", "uri-path", "manual", "permissive-dot-regex-query"]
+      - ["javax.servlet.http", "HttpServletRequest", False, "getPathTranslated", "()", "", "ReturnValue", "uri-path", "manual", "permissive-dot-regex-query"]
+      - ["javax.servlet.http", "HttpServletRequest", False, "getRequestURI", "()", "", "ReturnValue", "uri-path", "manual", "permissive-dot-regex-query"]
+      - ["javax.servlet.http", "HttpServletRequest", False, "getRequestURL", "()", "", "ReturnValue", "uri-path", "manual", "permissive-dot-regex-query"]
+      - ["javax.servlet.http", "HttpServletRequest", False, "getServletPath", "()", "", "ReturnValue", "uri-path", "manual", "permissive-dot-regex-query"]
+
diff --git a/java/ql/src/experimental/Security/CWE/CWE-625/PermissiveDotRegexQuery.qll b/java/ql/src/experimental/Security/CWE/CWE-625/PermissiveDotRegexQuery.qll
index 21a44ebbb8f..e1c802c0245 100644
--- a/java/ql/src/experimental/Security/CWE/CWE-625/PermissiveDotRegexQuery.qll
+++ b/java/ql/src/experimental/Security/CWE/CWE-625/PermissiveDotRegexQuery.qll
@@ -8,6 +8,10 @@ import semmle.code.java.controlflow.Guards
 import semmle.code.java.security.UrlRedirect
 import Regex
 
+private class ActivateModels extends ActiveExperimentalModels {
+  ActivateModels() { this = "permissive-dot-regex-query" }
+}
+
 /** A string that ends with `.*` not prefixed with `\`. */
 private class PermissiveDotStr extends StringLiteral {
   PermissiveDotStr() {
@@ -19,20 +23,6 @@ private class PermissiveDotStr extends StringLiteral {
   }
 }
 
-/** Remote flow sources obtained from the URI of a servlet request. */
-private class GetServletUriSource extends SourceModelCsv {
-  override predicate row(string row) {
-    row =
-      [
-        "javax.servlet.http;HttpServletRequest;false;getPathInfo;();;ReturnValue;uri-path;manual",
-        "javax.servlet.http;HttpServletRequest;false;getPathTranslated;();;ReturnValue;uri-path;manual",
-        "javax.servlet.http;HttpServletRequest;false;getRequestURI;();;ReturnValue;uri-path;manual",
-        "javax.servlet.http;HttpServletRequest;false;getRequestURL;();;ReturnValue;uri-path;manual",
-        "javax.servlet.http;HttpServletRequest;false;getServletPath;();;ReturnValue;uri-path;manual"
-      ]
-  }
-}
-
 /** The qualifier of a request dispatch method call. */
 private class UrlDispatchSink extends UrlRedirectSink {
   UrlDispatchSink() {

From 74f02cf8551628f3593c606b46305d8a28a055f1 Mon Sep 17 00:00:00 2001
From: Michael Nebel <michaelnebel@github.com>
Date: Tue, 22 Nov 2022 13:56:29 +0100
Subject: [PATCH 0682/1420] Java: Allow empty package name in model
 definitions.

---
 java/ql/lib/semmle/code/java/dataflow/ExternalFlow.qll | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/java/ql/lib/semmle/code/java/dataflow/ExternalFlow.qll b/java/ql/lib/semmle/code/java/dataflow/ExternalFlow.qll
index 866e3f5687f..186c7ed168d 100644
--- a/java/ql/lib/semmle/code/java/dataflow/ExternalFlow.qll
+++ b/java/ql/lib/semmle/code/java/dataflow/ExternalFlow.qll
@@ -549,7 +549,7 @@ module ModelValidation {
       ext = "" and
       pred = "negative summary"
     |
-      not package.regexpMatch("[a-zA-Z0-9_\\.]+") and
+      not package.regexpMatch("[a-zA-Z0-9_\\.]*") and
       result = "Dubious package \"" + package + "\" in " + pred + " model."
       or
       not type.regexpMatch("[a-zA-Z0-9_\\$<>]+") and

From 43a63d63735b30f9cc371153fdb308b3f7271b53 Mon Sep 17 00:00:00 2001
From: Michael Nebel <michaelnebel@github.com>
Date: Tue, 22 Nov 2022 14:49:52 +0100
Subject: [PATCH 0683/1420] Java: Convert all models to data extensions in
 testcases.

---
 java/ql/test/ext/test.model.yml               | 145 ++++++++++++++++++
 .../dataflow/notnullexpr/test.ql              |   6 -
 .../library-tests/dataflow/whenexpr/test.ql   |   6 -
 .../dataflow/callback-dispatch/test.ql        |  20 ---
 .../dataflow/collections/containerflow.ql     |  11 --
 .../dataflow/external-models/sinks.ql         |  14 --
 .../dataflow/external-models/srcs.ql          |  25 ---
 .../dataflow/external-models/steps.ql         |  17 --
 .../dataflow/synth-global/test.ql             |  13 --
 .../content-provider-summaries/test.ql        |  13 --
 .../frameworks/android/intent/test.ql         |  13 --
 .../frameworks/android/notification/test.ql   |  10 --
 .../frameworks/apache-collections/test.ql     |  11 --
 .../guava/generated/collect/test.ql           |  12 --
 .../library-tests/frameworks/stream/test.ql   |   7 -
 java/ql/test/library-tests/optional/test.ql   |   6 -
 java/ql/test/qlpack.yml                       |   2 +
 17 files changed, 147 insertions(+), 184 deletions(-)
 create mode 100644 java/ql/test/ext/test.model.yml

diff --git a/java/ql/test/ext/test.model.yml b/java/ql/test/ext/test.model.yml
new file mode 100644
index 00000000000..319ee2b834e
--- /dev/null
+++ b/java/ql/test/ext/test.model.yml
@@ -0,0 +1,145 @@
+extensions:
+  # Model(s) for Kotlin - dataflow/notnullexpr and dataflow/whenexpr test cases.
+  - addsTo:
+      pack: codeql/java-tests
+      extensible: extSummaryModel
+    data:
+      - ["", "Uri", False, "getQueryParameter", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+
+  # Model(s) for Java - dataflow/callback-dispatch test case.
+  - addsTo:
+      pack: codeql/java-tests
+      extensible: extSummaryModel
+    data:
+      - ["my.callback.qltest", "A", False, "applyConsumer1", "(Object,Consumer1)", "", "Argument[0]", "Argument[1].Parameter[0]", "value", "manual"]
+      - ["my.callback.qltest", "A", False, "applyConsumer1Field1Field2", "(A,A,Consumer1)", "", "Argument[0].Field[my.callback.qltest.A.field1]", "Argument[2].Parameter[0]", "value", "manual"]
+      - ["my.callback.qltest", "A", False, "applyConsumer1Field1Field2", "(A,A,Consumer1)", "", "Argument[1].Field[my.callback.qltest.A.field2]", "Argument[2].Parameter[0]", "value", "manual"]
+      - ["my.callback.qltest", "A", False, "applyConsumer2", "(Object,Consumer2)", "", "Argument[0]", "Argument[1].Parameter[0]", "value", "manual"]
+      - ["my.callback.qltest", "A", False, "applyConsumer3", "(Object,Consumer3)", "", "Argument[0]", "Argument[1].Parameter[0]", "value", "manual"]
+      - ["my.callback.qltest", "A", False, "applyConsumer3_ret_postup", "(Consumer3)", "", "Argument[0].Parameter[0]", "ReturnValue", "value", "manual"]
+      - ["my.callback.qltest", "A", False, "forEach", "(Object[],Consumer3)", "", "Argument[0].ArrayElement", "Argument[1].Parameter[0]", "value", "manual"]
+      - ["my.callback.qltest", "A", False, "applyProducer1", "(Producer1)", "", "Argument[0].ReturnValue", "ReturnValue", "value", "manual"]
+      - ["my.callback.qltest", "A", False, "produceConsume", "(Producer1,Consumer3)", "", "Argument[0].ReturnValue", "Argument[1].Parameter[0]", "value", "manual"]
+      - ["my.callback.qltest", "A", False, "produceConsume", "(Producer1,Consumer3)", "", "Argument[1].Parameter[0]", "ReturnValue", "value", "manual"]
+      - ["my.callback.qltest", "A", False, "applyConverter1", "(Object,Converter1)", "", "Argument[0]", "Argument[1].Parameter[0]", "value", "manual"]
+      - ["my.callback.qltest", "A", False, "applyConverter1", "(Object,Converter1)", "", "Argument[1].ReturnValue", "ReturnValue", "value", "manual"]
+
+  # Model(s) for Java - dataflow/collections test case.
+  - addsTo:
+      pack: codeql/java-tests
+      extensible: extSummaryModel
+    data:
+      - ["", "B", False, "readElement", "(Spliterator)", "", "Argument[0].Element", "ReturnValue", "value", "manual"]
+      - ["", "B", False, "readElement", "(Stream)", "", "Argument[0].Element", "ReturnValue", "value", "manual"]
+
+  # Model(s) for Java - dataflow/external-models test cases.
+  - addsTo:
+      pack: codeql/java-tests
+      extensible: extSourceModel
+    data:
+      - ["my.qltest", "A", False, "src1", "()", "", "ReturnValue", "qltest", "manual"]
+      - ["my.qltest", "A", False, "src1", "(String)", "", "ReturnValue", "qltest", "manual"]
+      - ["my.qltest", "A", False, "src1", "(java.lang.String)", "", "ReturnValue", "qltest-alt", "manual"]
+      - ["my.qltest", "A", False, "src1", "", "", "ReturnValue", "qltest-all-overloads", "manual"]
+      - ["my.qltest", "A", False, "src2", "()", "", "ReturnValue", "qltest", "manual"]
+      - ["my.qltest", "A", False, "src3", "()", "", "ReturnValue", "qltest", "manual"]
+      - ["my.qltest", "A", True, "src2", "()", "", "ReturnValue", "qltest-w-subtypes", "manual"]
+      - ["my.qltest", "A", True, "src3", "()", "", "ReturnValue", "qltest-w-subtypes", "manual"]
+      - ["my.qltest", "A", False, "srcArg", "(Object)", "", "Argument[0]", "qltest-argnum", "manual"]
+      - ["my.qltest", "A", False, "srcArg", "(Object)", "", "Argument", "qltest-argany", "manual"]
+      - ["my.qltest", "A$Handler", True, "handle", "(Object)", "", "Parameter[0]", "qltest-param-override", "manual"]
+      - ["my.qltest", "A$Tag", False, "", "", "Annotated", "ReturnValue", "qltest-retval", "manual"]
+      - ["my.qltest", "A$Tag", False, "", "", "Annotated", "Parameter", "qltest-param", "manual"]
+      - ["my.qltest", "A$Tag", False, "", "", "Annotated", "", "qltest-nospec", "manual"]
+      - ["my.qltest", "A", False, "srcTwoArg", "(String,String)", "", "ReturnValue", "qltest-shortsig", "manual"]
+      - ["my.qltest", "A", False, "srcTwoArg", "(java.lang.String,java.lang.String)", "", "ReturnValue", "qltest-longsig", "manual"]
+  - addsTo:
+      pack: codeql/java-tests
+      extensible: extSinkModel
+    data:
+      - ["my.qltest", "B", False, "sink1", "(Object)", "", "Argument[0]", "qltest", "manual"]
+      - ["my.qltest", "B", False, "sinkMethod", "()", "", "ReturnValue", "qltest", "manual"]
+      - ["my.qltest", "B$Tag", False, "", "", "Annotated", "ReturnValue", "qltest-retval", "manual"]
+      - ["my.qltest", "B$Tag", False, "", "", "Annotated", "Argument", "qltest-arg", "manual"]
+      - ["my.qltest", "B$Tag", False, "", "", "Annotated", "", "qltest-nospec", "manual"]
+  - addsTo:
+      pack: codeql/java-tests
+      extensible: extSummaryModel
+    data:
+      - ["my.qltest", "C", False, "stepArgRes", "(Object)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["my.qltest", "C", False, "stepArgArg", "(Object,Object)", "", "Argument[0]", "Argument[1]", "taint", "manual"]
+      - ["my.qltest", "C", False, "stepArgQual", "(Object)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["my.qltest", "C", False, "stepQualRes", "()", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["my.qltest", "C", False, "stepQualArg", "(Object)", "", "Argument[-1]", "Argument[0]", "taint", "manual"]
+      - ["my.qltest", "C", False, "stepArgResGenerated", "(Object)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["my.qltest", "C", False, "stepArgResGeneratedIgnored", "(Object,Object)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["my.qltest", "C", False, "stepArgResGeneratedIgnored", "(Object,Object)", "", "Argument[1]", "ReturnValue", "taint", "manual"]
+
+  # Model(s) for Java - dataflow/synth-global test case.
+  - addsTo:
+      pack: codeql/java-tests
+      extensible: extSummaryModel
+    data:
+      - ["my.qltest.synth", "A", False, "storeInArray", "(String)", "", "Argument[0]", "SyntheticGlobal[db1].ArrayElement", "value", "manual"]
+      - ["my.qltest.synth", "A", False, "storeTaintInArray", "(String)", "", "Argument[0]", "SyntheticGlobal[db1].ArrayElement", "taint", "manual"]
+      - ["my.qltest.synth", "A", False, "storeValue", "(String)", "", "Argument[0]", "SyntheticGlobal[db1]", "value", "manual"]
+      - ["my.qltest.synth", "A", False, "readValue", "()", "", "SyntheticGlobal[db1]", "ReturnValue", "value", "manual"]
+      - ["my.qltest.synth", "A", False, "readArray", "()", "", "SyntheticGlobal[db1].ArrayElement", "ReturnValue", "value", "manual"]
+
+  # Model(s) for Java - frameworks/android/content-provider-summaries test case.
+  - addsTo:
+      pack: codeql/java-tests
+      extensible: extSummaryModel
+    data:
+      - ["generatedtest", "Test", False, "newWithMapValueDefault", "(Object)", "", "Argument[0]", "ReturnValue.MapValue", "value", "manual"]
+      - ["generatedtest", "Test", False, "newWithMapKeyDefault", "(Object)", "", "Argument[0]", "ReturnValue.MapKey", "value", "manual"]
+      - ["generatedtest", "Test", False, "getMapValueDefault", "(Object)", "", "Argument[0].MapValue", "ReturnValue", "value", "manual"]
+      - ["generatedtest", "Test", False, "getMapKeyDefault", "(Object)", "", "Argument[0].MapKey", "ReturnValue", "value", "manual"]
+
+  # Model(s) for Java - frameworks/android/intent test case.
+  - addsTo:
+      pack: codeql/java-tests
+      extensible: extSummaryModel
+    data:
+      - ["generatedtest", "Test", False, "newBundleWithMapValue", "(Object)", "", "Argument[0]", "ReturnValue.MapValue", "value", "manual"]
+      - ["generatedtest", "Test", False, "newPersistableBundleWithMapValue", "(Object)", "", "Argument[0]", "ReturnValue.MapValue", "value", "manual"]
+      - ["generatedtest", "Test", False, "getMapValue", "(BaseBundle)", "", "Argument[0].MapValue", "ReturnValue", "value", "manual"]
+      - ["generatedtest", "Test", False, "newWithIntent_extras", "(Bundle)", "", "Argument[0]", "ReturnValue.SyntheticField[android.content.Intent.extras]", "value", "manual"]
+
+  # Model(s) for Java - frameworks/android/notification test case.
+  - addsTo:
+      pack: codeql/java-tests
+      extensible: extSummaryModel
+    data:
+      - ["generatedtest", "Test", False, "getMapKeyDefault", "(Bundle)", "", "Argument[0].MapKey", "ReturnValue", "value", "manual"]
+
+  # Model(s) for Java - frameworks/apache-collections test case.
+  - addsTo:
+      pack: codeql/java-tests
+      extensible: extSummaryModel
+    data:
+      - ["generatedtest", "Test", False, "newRBWithMapValue", "", "", "Argument[0]", "ReturnValue.MapValue", "value", "manual"]
+      - ["generatedtest", "Test", False, "newRBWithMapKey", "", "", "Argument[0]", "ReturnValue.MapKey", "value", "manual"]
+
+  # Model(s) for Java - frameworks/guave/generated/collect test case.
+  - addsTo:
+      pack: codeql/java-tests
+      extensible: extSummaryModel
+    data:
+      - ["generatedtest", "Test", False, "newWithElementDefault", "(Object)", "", "Argument[0]", "ReturnValue.Element", "value", "manual"]
+      - ["generatedtest", "Test", False, "newWithMapKeyDefault", "(Object)", "", "Argument[0]", "ReturnValue.MapKey", "value", "manual"]
+      - ["generatedtest", "Test", False, "newWithMapValueDefault", "(Object)", "", "Argument[0]", "ReturnValue.MapValue", "value", "manual"]
+
+  # Model(s) for Java - frameworks/stream test case.
+  - addsTo:
+      pack: codeql/java-tests
+      extensible: extSummaryModel
+    data:
+      - ["generatedtest", "Test", False, "getElementSpliterator", "(Spliterator)", "", "Argument[0].Element", "ReturnValue", "value", "manual"]
+
+  # Model(s) for Java - frameworks/stream test case.
+  - addsTo:
+      pack: codeql/java-tests
+      extensible: extSummaryModel
+    data:
+      - ["generatedtest", "Test", False, "getStreamElement", "", "", "Argument[0].Element", "ReturnValue", "value", "manual"]
diff --git a/java/ql/test/kotlin/library-tests/dataflow/notnullexpr/test.ql b/java/ql/test/kotlin/library-tests/dataflow/notnullexpr/test.ql
index 1bb9801bc64..6e97f945f13 100644
--- a/java/ql/test/kotlin/library-tests/dataflow/notnullexpr/test.ql
+++ b/java/ql/test/kotlin/library-tests/dataflow/notnullexpr/test.ql
@@ -2,12 +2,6 @@ import java
 import semmle.code.java.dataflow.TaintTracking
 import semmle.code.java.dataflow.ExternalFlow
 
-class Step extends SummaryModelCsv {
-  override predicate row(string row) {
-    row = ";Uri;false;getQueryParameter;;;Argument[-1];ReturnValue;taint;manual"
-  }
-}
-
 class Conf extends TaintTracking::Configuration {
   Conf() { this = "qltest:notNullExprFlow" }
 
diff --git a/java/ql/test/kotlin/library-tests/dataflow/whenexpr/test.ql b/java/ql/test/kotlin/library-tests/dataflow/whenexpr/test.ql
index 1bb9801bc64..6e97f945f13 100644
--- a/java/ql/test/kotlin/library-tests/dataflow/whenexpr/test.ql
+++ b/java/ql/test/kotlin/library-tests/dataflow/whenexpr/test.ql
@@ -2,12 +2,6 @@ import java
 import semmle.code.java.dataflow.TaintTracking
 import semmle.code.java.dataflow.ExternalFlow
 
-class Step extends SummaryModelCsv {
-  override predicate row(string row) {
-    row = ";Uri;false;getQueryParameter;;;Argument[-1];ReturnValue;taint;manual"
-  }
-}
-
 class Conf extends TaintTracking::Configuration {
   Conf() { this = "qltest:notNullExprFlow" }
 
diff --git a/java/ql/test/library-tests/dataflow/callback-dispatch/test.ql b/java/ql/test/library-tests/dataflow/callback-dispatch/test.ql
index 4771031581f..09366857c0b 100644
--- a/java/ql/test/library-tests/dataflow/callback-dispatch/test.ql
+++ b/java/ql/test/library-tests/dataflow/callback-dispatch/test.ql
@@ -3,26 +3,6 @@ import semmle.code.java.dataflow.DataFlow
 import semmle.code.java.dataflow.ExternalFlow
 import TestUtilities.InlineExpectationsTest
 
-class SummaryModelTest extends SummaryModelCsv {
-  override predicate row(string row) {
-    row =
-      [
-        "my.callback.qltest;A;false;applyConsumer1;(Object,Consumer1);;Argument[0];Argument[1].Parameter[0];value;manual",
-        "my.callback.qltest;A;false;applyConsumer1Field1Field2;(A,A,Consumer1);;Argument[0].Field[my.callback.qltest.A.field1];Argument[2].Parameter[0];value;manual",
-        "my.callback.qltest;A;false;applyConsumer1Field1Field2;(A,A,Consumer1);;Argument[1].Field[my.callback.qltest.A.field2];Argument[2].Parameter[0];value;manual",
-        "my.callback.qltest;A;false;applyConsumer2;(Object,Consumer2);;Argument[0];Argument[1].Parameter[0];value;manual",
-        "my.callback.qltest;A;false;applyConsumer3;(Object,Consumer3);;Argument[0];Argument[1].Parameter[0];value;manual",
-        "my.callback.qltest;A;false;applyConsumer3_ret_postup;(Consumer3);;Argument[0].Parameter[0];ReturnValue;value;manual",
-        "my.callback.qltest;A;false;forEach;(Object[],Consumer3);;Argument[0].ArrayElement;Argument[1].Parameter[0];value;manual",
-        "my.callback.qltest;A;false;applyProducer1;(Producer1);;Argument[0].ReturnValue;ReturnValue;value;manual",
-        "my.callback.qltest;A;false;produceConsume;(Producer1,Consumer3);;Argument[0].ReturnValue;Argument[1].Parameter[0];value;manual",
-        "my.callback.qltest;A;false;produceConsume;(Producer1,Consumer3);;Argument[1].Parameter[0];ReturnValue;value;manual",
-        "my.callback.qltest;A;false;applyConverter1;(Object,Converter1);;Argument[0];Argument[1].Parameter[0];value;manual",
-        "my.callback.qltest;A;false;applyConverter1;(Object,Converter1);;Argument[1].ReturnValue;ReturnValue;value;manual"
-      ]
-  }
-}
-
 class Conf extends DataFlow::Configuration {
   Conf() { this = "qltest:callback-dispatch" }
 
diff --git a/java/ql/test/library-tests/dataflow/collections/containerflow.ql b/java/ql/test/library-tests/dataflow/collections/containerflow.ql
index 12f7a3ffd22..fc596462aef 100644
--- a/java/ql/test/library-tests/dataflow/collections/containerflow.ql
+++ b/java/ql/test/library-tests/dataflow/collections/containerflow.ql
@@ -3,17 +3,6 @@ import semmle.code.java.dataflow.DataFlow
 import semmle.code.java.dataflow.ExternalFlow
 import TestUtilities.InlineFlowTest
 
-class SummaryModelTest extends SummaryModelCsv {
-  override predicate row(string row) {
-    row =
-      [
-        //"package;type;overrides;name;signature;ext;inputspec;outputspec;kind",
-        ";B;false;readElement;(Spliterator);;Argument[0].Element;ReturnValue;value;manual",
-        ";B;false;readElement;(Stream);;Argument[0].Element;ReturnValue;value;manual"
-      ]
-  }
-}
-
 class HasFlowTest extends InlineFlowTest {
   override DataFlow::Configuration getTaintFlowConfig() { none() }
 }
diff --git a/java/ql/test/library-tests/dataflow/external-models/sinks.ql b/java/ql/test/library-tests/dataflow/external-models/sinks.ql
index aa1b3a549f3..5da8f29ff4c 100644
--- a/java/ql/test/library-tests/dataflow/external-models/sinks.ql
+++ b/java/ql/test/library-tests/dataflow/external-models/sinks.ql
@@ -3,20 +3,6 @@ import semmle.code.java.dataflow.DataFlow
 import semmle.code.java.dataflow.ExternalFlow
 import ModelValidation
 
-class SinkModelTest extends SinkModelCsv {
-  override predicate row(string row) {
-    row =
-      [
-        //`namespace; type; subtypes; name; signature; ext; input; kind`
-        "my.qltest;B;false;sink1;(Object);;Argument[0];qltest;manual",
-        "my.qltest;B;false;sinkMethod;();;ReturnValue;qltest;manual",
-        "my.qltest;B$Tag;false;;;Annotated;ReturnValue;qltest-retval;manual",
-        "my.qltest;B$Tag;false;;;Annotated;Argument;qltest-arg;manual",
-        "my.qltest;B$Tag;false;;;Annotated;;qltest-nospec;manual"
-      ]
-  }
-}
-
 from DataFlow::Node node, string kind
 where sinkNode(node, kind)
 select node, kind
diff --git a/java/ql/test/library-tests/dataflow/external-models/srcs.ql b/java/ql/test/library-tests/dataflow/external-models/srcs.ql
index 08b13328fa4..655fee35611 100644
--- a/java/ql/test/library-tests/dataflow/external-models/srcs.ql
+++ b/java/ql/test/library-tests/dataflow/external-models/srcs.ql
@@ -3,31 +3,6 @@ import semmle.code.java.dataflow.DataFlow
 import semmle.code.java.dataflow.ExternalFlow
 import ModelValidation
 
-class SourceModelTest extends SourceModelCsv {
-  override predicate row(string row) {
-    row =
-      [
-        //`namespace; type; subtypes; name; signature; ext; output; kind`
-        "my.qltest;A;false;src1;();;ReturnValue;qltest;manual",
-        "my.qltest;A;false;src1;(String);;ReturnValue;qltest;manual",
-        "my.qltest;A;false;src1;(java.lang.String);;ReturnValue;qltest-alt;manual",
-        "my.qltest;A;false;src1;;;ReturnValue;qltest-all-overloads;manual",
-        "my.qltest;A;false;src2;();;ReturnValue;qltest;manual",
-        "my.qltest;A;false;src3;();;ReturnValue;qltest;manual",
-        "my.qltest;A;true;src2;();;ReturnValue;qltest-w-subtypes;manual",
-        "my.qltest;A;true;src3;();;ReturnValue;qltest-w-subtypes;manual",
-        "my.qltest;A;false;srcArg;(Object);;Argument[0];qltest-argnum;manual",
-        "my.qltest;A;false;srcArg;(Object);;Argument;qltest-argany;manual",
-        "my.qltest;A$Handler;true;handle;(Object);;Parameter[0];qltest-param-override;manual",
-        "my.qltest;A$Tag;false;;;Annotated;ReturnValue;qltest-retval;manual",
-        "my.qltest;A$Tag;false;;;Annotated;Parameter;qltest-param;manual",
-        "my.qltest;A$Tag;false;;;Annotated;;qltest-nospec;manual",
-        "my.qltest;A;false;srcTwoArg;(String,String);;ReturnValue;qltest-shortsig;manual",
-        "my.qltest;A;false;srcTwoArg;(java.lang.String,java.lang.String);;ReturnValue;qltest-longsig;manual"
-      ]
-  }
-}
-
 from DataFlow::Node node, string kind
 where sourceNode(node, kind)
 select node, kind
diff --git a/java/ql/test/library-tests/dataflow/external-models/steps.ql b/java/ql/test/library-tests/dataflow/external-models/steps.ql
index 7875763f5e8..e57c4d54b17 100644
--- a/java/ql/test/library-tests/dataflow/external-models/steps.ql
+++ b/java/ql/test/library-tests/dataflow/external-models/steps.ql
@@ -4,23 +4,6 @@ import semmle.code.java.dataflow.ExternalFlow
 import ModelValidation
 import semmle.code.java.dataflow.internal.FlowSummaryImpl as FlowSummaryImpl
 
-class SummaryModelTest extends SummaryModelCsv {
-  override predicate row(string row) {
-    row =
-      [
-        //`namespace; type; subtypes; name; signature; ext; input; output; kind`
-        "my.qltest;C;false;stepArgRes;(Object);;Argument[0];ReturnValue;taint;manual",
-        "my.qltest;C;false;stepArgArg;(Object,Object);;Argument[0];Argument[1];taint;manual",
-        "my.qltest;C;false;stepArgQual;(Object);;Argument[0];Argument[-1];taint;manual",
-        "my.qltest;C;false;stepQualRes;();;Argument[-1];ReturnValue;taint;manual",
-        "my.qltest;C;false;stepQualArg;(Object);;Argument[-1];Argument[0];taint;manual",
-        "my.qltest;C;false;stepArgResGenerated;(Object);;Argument[0];ReturnValue;taint;generated",
-        "my.qltest;C;false;stepArgResGeneratedIgnored;(Object,Object);;Argument[0];ReturnValue;taint;generated",
-        "my.qltest;C;false;stepArgResGeneratedIgnored;(Object,Object);;Argument[1];ReturnValue;taint;manual",
-      ]
-  }
-}
-
 from DataFlow::Node node1, DataFlow::Node node2
 where FlowSummaryImpl::Private::Steps::summaryThroughStepTaint(node1, node2, _)
 select node1, node2
diff --git a/java/ql/test/library-tests/dataflow/synth-global/test.ql b/java/ql/test/library-tests/dataflow/synth-global/test.ql
index de3866636c0..0d9f2265afc 100644
--- a/java/ql/test/library-tests/dataflow/synth-global/test.ql
+++ b/java/ql/test/library-tests/dataflow/synth-global/test.ql
@@ -1,16 +1,3 @@
 import java
 import TestUtilities.InlineFlowTest
 import ModelValidation
-
-class SummaryModelTest extends SummaryModelCsv {
-  override predicate row(string row) {
-    row =
-      [
-        "my.qltest.synth;A;false;storeInArray;(String);;Argument[0];SyntheticGlobal[db1].ArrayElement;value;manual",
-        "my.qltest.synth;A;false;storeTaintInArray;(String);;Argument[0];SyntheticGlobal[db1].ArrayElement;taint;manual",
-        "my.qltest.synth;A;false;storeValue;(String);;Argument[0];SyntheticGlobal[db1];value;manual",
-        "my.qltest.synth;A;false;readValue;();;SyntheticGlobal[db1];ReturnValue;value;manual",
-        "my.qltest.synth;A;false;readArray;();;SyntheticGlobal[db1].ArrayElement;ReturnValue;value;manual",
-      ]
-  }
-}
diff --git a/java/ql/test/library-tests/frameworks/android/content-provider-summaries/test.ql b/java/ql/test/library-tests/frameworks/android/content-provider-summaries/test.ql
index 2fa9dc00fd8..5d91e4e8e26 100644
--- a/java/ql/test/library-tests/frameworks/android/content-provider-summaries/test.ql
+++ b/java/ql/test/library-tests/frameworks/android/content-provider-summaries/test.ql
@@ -1,15 +1,2 @@
 import java
 import TestUtilities.InlineFlowTest
-
-class SummaryModelTest extends SummaryModelCsv {
-  override predicate row(string row) {
-    row =
-      [
-        //"package;type;overrides;name;signature;ext;inputspec;outputspec;kind",
-        "generatedtest;Test;false;newWithMapValueDefault;(Object);;Argument[0];ReturnValue.MapValue;value;manual",
-        "generatedtest;Test;false;newWithMapKeyDefault;(Object);;Argument[0];ReturnValue.MapKey;value;manual",
-        "generatedtest;Test;false;getMapValueDefault;(Object);;Argument[0].MapValue;ReturnValue;value;manual",
-        "generatedtest;Test;false;getMapKeyDefault;(Object);;Argument[0].MapKey;ReturnValue;value;manual"
-      ]
-  }
-}
diff --git a/java/ql/test/library-tests/frameworks/android/intent/test.ql b/java/ql/test/library-tests/frameworks/android/intent/test.ql
index a11619fb013..5d91e4e8e26 100644
--- a/java/ql/test/library-tests/frameworks/android/intent/test.ql
+++ b/java/ql/test/library-tests/frameworks/android/intent/test.ql
@@ -1,15 +1,2 @@
 import java
 import TestUtilities.InlineFlowTest
-
-class SummaryModelTest extends SummaryModelCsv {
-  override predicate row(string row) {
-    row =
-      [
-        //"package;type;overrides;name;signature;ext;inputspec;outputspec;kind",
-        "generatedtest;Test;false;newBundleWithMapValue;(Object);;Argument[0];ReturnValue.MapValue;value;manual",
-        "generatedtest;Test;false;newPersistableBundleWithMapValue;(Object);;Argument[0];ReturnValue.MapValue;value;manual",
-        "generatedtest;Test;false;getMapValue;(BaseBundle);;Argument[0].MapValue;ReturnValue;value;manual",
-        "generatedtest;Test;false;newWithIntent_extras;(Bundle);;Argument[0];ReturnValue.SyntheticField[android.content.Intent.extras];value;manual"
-      ]
-  }
-}
diff --git a/java/ql/test/library-tests/frameworks/android/notification/test.ql b/java/ql/test/library-tests/frameworks/android/notification/test.ql
index d0dffb02d6b..f0a60550d4d 100644
--- a/java/ql/test/library-tests/frameworks/android/notification/test.ql
+++ b/java/ql/test/library-tests/frameworks/android/notification/test.ql
@@ -1,13 +1,3 @@
 import java
 import semmle.code.java.frameworks.android.Intent
 import TestUtilities.InlineFlowTest
-
-class SummaryModelTest extends SummaryModelCsv {
-  override predicate row(string row) {
-    row =
-      [
-        //"package;type;overrides;name;signature;ext;inputspec;outputspec;kind",
-        "generatedtest;Test;false;getMapKeyDefault;(Bundle);;Argument[0].MapKey;ReturnValue;value;manual"
-      ]
-  }
-}
diff --git a/java/ql/test/library-tests/frameworks/apache-collections/test.ql b/java/ql/test/library-tests/frameworks/apache-collections/test.ql
index fae8e0bdd77..5d91e4e8e26 100644
--- a/java/ql/test/library-tests/frameworks/apache-collections/test.ql
+++ b/java/ql/test/library-tests/frameworks/apache-collections/test.ql
@@ -1,13 +1,2 @@
 import java
 import TestUtilities.InlineFlowTest
-
-class SummaryModelTest extends SummaryModelCsv {
-  override predicate row(string row) {
-    row =
-      [
-        //"package;type;overrides;name;signature;ext;inputspec;outputspec;kind",
-        "generatedtest;Test;false;newRBWithMapValue;;;Argument[0];ReturnValue.MapValue;value;manual",
-        "generatedtest;Test;false;newRBWithMapKey;;;Argument[0];ReturnValue.MapKey;value;manual"
-      ]
-  }
-}
diff --git a/java/ql/test/library-tests/frameworks/guava/generated/collect/test.ql b/java/ql/test/library-tests/frameworks/guava/generated/collect/test.ql
index dfafbea561f..5d91e4e8e26 100644
--- a/java/ql/test/library-tests/frameworks/guava/generated/collect/test.ql
+++ b/java/ql/test/library-tests/frameworks/guava/generated/collect/test.ql
@@ -1,14 +1,2 @@
 import java
 import TestUtilities.InlineFlowTest
-
-class SummaryModelTest extends SummaryModelCsv {
-  override predicate row(string row) {
-    row =
-      [
-        //"package;type;overrides;name;signature;ext;inputspec;outputspec;kind",
-        "generatedtest;Test;false;newWithElementDefault;(Object);;Argument[0];ReturnValue.Element;value;manual",
-        "generatedtest;Test;false;newWithMapKeyDefault;(Object);;Argument[0];ReturnValue.MapKey;value;manual",
-        "generatedtest;Test;false;newWithMapValueDefault;(Object);;Argument[0];ReturnValue.MapValue;value;manual"
-      ]
-  }
-}
diff --git a/java/ql/test/library-tests/frameworks/stream/test.ql b/java/ql/test/library-tests/frameworks/stream/test.ql
index adfc47bd521..5d91e4e8e26 100644
--- a/java/ql/test/library-tests/frameworks/stream/test.ql
+++ b/java/ql/test/library-tests/frameworks/stream/test.ql
@@ -1,9 +1,2 @@
 import java
 import TestUtilities.InlineFlowTest
-
-class SummaryModelTest extends SummaryModelCsv {
-  override predicate row(string row) {
-    row =
-      "generatedtest;Test;false;getElementSpliterator;(Spliterator);;Argument[0].Element;ReturnValue;value;manual"
-  }
-}
diff --git a/java/ql/test/library-tests/optional/test.ql b/java/ql/test/library-tests/optional/test.ql
index b0d5ab16112..5d91e4e8e26 100644
--- a/java/ql/test/library-tests/optional/test.ql
+++ b/java/ql/test/library-tests/optional/test.ql
@@ -1,8 +1,2 @@
 import java
 import TestUtilities.InlineFlowTest
-
-class SummaryModelTest extends SummaryModelCsv {
-  override predicate row(string row) {
-    row = "generatedtest;Test;false;getStreamElement;;;Argument[0].Element;ReturnValue;value;manual"
-  }
-}
diff --git a/java/ql/test/qlpack.yml b/java/ql/test/qlpack.yml
index d1fe5254a38..76f524125f5 100644
--- a/java/ql/test/qlpack.yml
+++ b/java/ql/test/qlpack.yml
@@ -5,3 +5,5 @@ dependencies:
     codeql/java-queries: ${workspace}
 extractor: java
 tests: .
+dataExtensions:
+  - ext/*.model.yml

From d7e656a32ac223d3cbce1bab93b3a25164751576 Mon Sep 17 00:00:00 2001
From: Michael Nebel <michaelnebel@github.com>
Date: Wed, 23 Nov 2022 10:15:49 +0100
Subject: [PATCH 0684/1420] Java: Add change note.

---
 java/ql/lib/change-notes/2022-11-23-mad-data-extensions.md | 4 ++++
 1 file changed, 4 insertions(+)
 create mode 100644 java/ql/lib/change-notes/2022-11-23-mad-data-extensions.md

diff --git a/java/ql/lib/change-notes/2022-11-23-mad-data-extensions.md b/java/ql/lib/change-notes/2022-11-23-mad-data-extensions.md
new file mode 100644
index 00000000000..6e897ed60c2
--- /dev/null
+++ b/java/ql/lib/change-notes/2022-11-23-mad-data-extensions.md
@@ -0,0 +1,4 @@
+---
+category: minorAnalysis
+---
+* Models as Data models for Java are defined as data extensions instead of being inlined in the code. New models should be added in the `lib/ext` folder.
\ No newline at end of file

From a8effd196123f8965b4bbe75ba8e2d187a3d342a Mon Sep 17 00:00:00 2001
From: Arthur Baars <aibaars@github.com>
Date: Mon, 28 Nov 2022 13:02:22 +0100
Subject: [PATCH 0685/1420] Ruby: add change note

---
 ruby/ql/lib/change-notes/2022-11-28-subclass-calls.md | 4 ++++
 1 file changed, 4 insertions(+)
 create mode 100644 ruby/ql/lib/change-notes/2022-11-28-subclass-calls.md

diff --git a/ruby/ql/lib/change-notes/2022-11-28-subclass-calls.md b/ruby/ql/lib/change-notes/2022-11-28-subclass-calls.md
new file mode 100644
index 00000000000..b37686daf94
--- /dev/null
+++ b/ruby/ql/lib/change-notes/2022-11-28-subclass-calls.md
@@ -0,0 +1,4 @@
+---
+category: minorAnalysis
+---
+* When resolving a method call, the analysis now also searches in sub-classes of the receiver's type.

From 3971cbf294c2e77f49a176e4c3a1e90432399c06 Mon Sep 17 00:00:00 2001
From: Geoffrey White <40627776+geoffw0@users.noreply.github.com>
Date: Mon, 28 Nov 2022 11:25:37 +0000
Subject: [PATCH 0686/1420] Swift: Extend the taint test with WKUserScript.

---
 .../dataflow/taint/LocalTaint.expected        |   2 +-
 .../dataflow/taint/Taint.expected             | 544 +++++++++---------
 .../dataflow/taint/webview.swift              | 107 ++--
 3 files changed, 347 insertions(+), 306 deletions(-)

diff --git a/swift/ql/test/library-tests/dataflow/taint/LocalTaint.expected b/swift/ql/test/library-tests/dataflow/taint/LocalTaint.expected
index 8ba56979b65..297f5f4382d 100644
--- a/swift/ql/test/library-tests/dataflow/taint/LocalTaint.expected
+++ b/swift/ql/test/library-tests/dataflow/taint/LocalTaint.expected
@@ -165,4 +165,4 @@
 | url.swift:100:12:100:54 | ...! | url.swift:100:12:100:56 | .standardizedFileURL |
 | url.swift:101:15:101:57 | ...! | url.swift:101:15:101:59 | .user |
 | url.swift:102:15:102:57 | ...! | url.swift:102:15:102:59 | .password |
-| webview.swift:52:11:52:18 | call to source() | webview.swift:52:10:52:41 | .body |
+| webview.swift:77:11:77:18 | call to source() | webview.swift:77:10:77:41 | .body |
diff --git a/swift/ql/test/library-tests/dataflow/taint/Taint.expected b/swift/ql/test/library-tests/dataflow/taint/Taint.expected
index 37d4e5dda85..1eb4db5261b 100644
--- a/swift/ql/test/library-tests/dataflow/taint/Taint.expected
+++ b/swift/ql/test/library-tests/dataflow/taint/Taint.expected
@@ -410,126 +410,126 @@ edges
 | url.swift:117:28:117:28 | tainted :  | url.swift:117:16:117:35 | call to init(string:) :  |
 | url.swift:120:46:120:46 | urlTainted :  | url.swift:43:2:46:55 | [summary param] 0 in dataTask(with:completionHandler:) :  |
 | url.swift:120:61:120:61 | data :  | url.swift:121:15:121:19 | ...! |
-| webview.swift:16:5:16:39 | [summary param] 0 in init(object:in:) :  | file://:0:0:0:0 | [summary] to write: return (return) in init(object:in:) :  |
-| webview.swift:17:5:17:38 | [summary param] 0 in init(bool:in:) :  | file://:0:0:0:0 | [summary] to write: return (return) in init(bool:in:) :  |
-| webview.swift:18:5:18:42 | [summary param] 0 in init(double:in:) :  | file://:0:0:0:0 | [summary] to write: return (return) in init(double:in:) :  |
-| webview.swift:19:5:19:40 | [summary param] 0 in init(int32:in:) :  | file://:0:0:0:0 | [summary] to write: return (return) in init(int32:in:) :  |
-| webview.swift:20:5:20:42 | [summary param] 0 in init(uInt32:in:) :  | file://:0:0:0:0 | [summary] to write: return (return) in init(uInt32:in:) :  |
-| webview.swift:21:5:21:42 | [summary param] 0 in init(point:in:) :  | file://:0:0:0:0 | [summary] to write: return (return) in init(point:in:) :  |
-| webview.swift:22:5:22:42 | [summary param] 0 in init(range:in:) :  | file://:0:0:0:0 | [summary] to write: return (return) in init(range:in:) :  |
-| webview.swift:23:5:23:40 | [summary param] 0 in init(rect:in:) :  | file://:0:0:0:0 | [summary] to write: return (return) in init(rect:in:) :  |
-| webview.swift:24:5:24:40 | [summary param] 0 in init(size:in:) :  | file://:0:0:0:0 | [summary] to write: return (return) in init(size:in:) :  |
-| webview.swift:25:5:25:41 | [summary param] this in toObject() :  | file://:0:0:0:0 | [summary] to write: return (return) in toObject() :  |
-| webview.swift:26:5:26:55 | [summary param] this in toObjectOf(_:) :  | file://:0:0:0:0 | [summary] to write: return (return) in toObjectOf(_:) :  |
-| webview.swift:27:5:27:42 | [summary param] this in toBool() :  | file://:0:0:0:0 | [summary] to write: return (return) in toBool() :  |
-| webview.swift:28:5:28:44 | [summary param] this in toDouble() :  | file://:0:0:0:0 | [summary] to write: return (return) in toDouble() :  |
-| webview.swift:29:5:29:40 | [summary param] this in toInt32() :  | file://:0:0:0:0 | [summary] to write: return (return) in toInt32() :  |
-| webview.swift:30:5:30:42 | [summary param] this in toUInt32() :  | file://:0:0:0:0 | [summary] to write: return (return) in toUInt32() :  |
-| webview.swift:31:5:31:62 | [summary param] this in toNumber() :  | file://:0:0:0:0 | [summary] to write: return (return) in toNumber() :  |
-| webview.swift:32:5:32:44 | [summary param] this in toString() :  | file://:0:0:0:0 | [summary] to write: return (return) in toString() :  |
-| webview.swift:33:5:33:44 | [summary param] this in toDate() :  | file://:0:0:0:0 | [summary] to write: return (return) in toDate() :  |
-| webview.swift:34:5:34:44 | [summary param] this in toArray() :  | file://:0:0:0:0 | [summary] to write: return (return) in toArray() :  |
-| webview.swift:35:5:35:65 | [summary param] this in toDictionary() :  | file://:0:0:0:0 | [summary] to write: return (return) in toDictionary() :  |
-| webview.swift:36:5:36:50 | [summary param] this in toPoint() :  | file://:0:0:0:0 | [summary] to write: return (return) in toPoint() :  |
-| webview.swift:37:5:37:50 | [summary param] this in toRange() :  | file://:0:0:0:0 | [summary] to write: return (return) in toRange() :  |
-| webview.swift:38:5:38:47 | [summary param] this in toRect() :  | file://:0:0:0:0 | [summary] to write: return (return) in toRect() :  |
-| webview.swift:39:5:39:47 | [summary param] this in toSize() :  | file://:0:0:0:0 | [summary] to write: return (return) in toSize() :  |
-| webview.swift:40:5:40:84 | [summary param] this in atIndex(_:) :  | file://:0:0:0:0 | [summary] to write: return (return) in atIndex(_:) :  |
-| webview.swift:41:5:41:53 | [summary param] 1 in defineProperty(_:descriptor:) :  | file://:0:0:0:0 | [summary] to write: argument this in defineProperty(_:descriptor:) :  |
-| webview.swift:42:5:42:89 | [summary param] this in forProperty(_:) :  | file://:0:0:0:0 | [summary] to write: return (return) in forProperty(_:) :  |
-| webview.swift:43:5:43:38 | [summary param] 0 in setValue(_:at:) :  | file://:0:0:0:0 | [summary] to write: argument this in setValue(_:at:) :  |
-| webview.swift:44:5:44:48 | [summary param] 0 in setValue(_:forProperty:) :  | file://:0:0:0:0 | [summary] to write: argument this in setValue(_:forProperty:) :  |
-| webview.swift:52:11:52:18 | call to source() :  | webview.swift:52:10:52:41 | .body |
-| webview.swift:56:13:56:20 | call to source() :  | webview.swift:59:10:59:10 | source :  |
-| webview.swift:56:13:56:20 | call to source() :  | webview.swift:60:10:60:10 | source :  |
-| webview.swift:56:13:56:20 | call to source() :  | webview.swift:61:10:61:10 | source :  |
-| webview.swift:56:13:56:20 | call to source() :  | webview.swift:62:10:62:10 | source :  |
-| webview.swift:56:13:56:20 | call to source() :  | webview.swift:63:10:63:10 | source :  |
-| webview.swift:56:13:56:20 | call to source() :  | webview.swift:64:10:64:10 | source :  |
-| webview.swift:56:13:56:20 | call to source() :  | webview.swift:65:10:65:10 | source :  |
-| webview.swift:56:13:56:20 | call to source() :  | webview.swift:66:10:66:10 | source :  |
-| webview.swift:56:13:56:20 | call to source() :  | webview.swift:67:10:67:10 | source :  |
-| webview.swift:56:13:56:20 | call to source() :  | webview.swift:68:10:68:10 | source :  |
-| webview.swift:56:13:56:20 | call to source() :  | webview.swift:69:10:69:10 | source :  |
-| webview.swift:56:13:56:20 | call to source() :  | webview.swift:70:10:70:10 | source :  |
-| webview.swift:56:13:56:20 | call to source() :  | webview.swift:71:10:71:10 | source :  |
-| webview.swift:56:13:56:20 | call to source() :  | webview.swift:72:10:72:10 | source :  |
-| webview.swift:56:13:56:20 | call to source() :  | webview.swift:73:10:73:10 | source :  |
-| webview.swift:56:13:56:20 | call to source() :  | webview.swift:74:10:74:10 | source :  |
-| webview.swift:56:13:56:20 | call to source() :  | webview.swift:75:10:75:10 | source :  |
-| webview.swift:56:13:56:20 | call to source() :  | webview.swift:78:26:78:26 | s :  |
-| webview.swift:56:13:56:20 | call to source() :  | webview.swift:79:24:79:24 | s :  |
-| webview.swift:56:13:56:20 | call to source() :  | webview.swift:80:26:80:26 | s :  |
-| webview.swift:56:13:56:20 | call to source() :  | webview.swift:81:25:81:25 | s :  |
-| webview.swift:56:13:56:20 | call to source() :  | webview.swift:82:26:82:26 | s :  |
-| webview.swift:56:13:56:20 | call to source() :  | webview.swift:83:25:83:25 | s :  |
-| webview.swift:56:13:56:20 | call to source() :  | webview.swift:84:25:84:25 | s :  |
-| webview.swift:56:13:56:20 | call to source() :  | webview.swift:85:24:85:24 | s :  |
-| webview.swift:56:13:56:20 | call to source() :  | webview.swift:86:24:86:24 | s :  |
-| webview.swift:56:13:56:20 | call to source() :  | webview.swift:89:39:89:39 | s :  |
-| webview.swift:56:13:56:20 | call to source() :  | webview.swift:93:17:93:17 | s :  |
-| webview.swift:56:13:56:20 | call to source() :  | webview.swift:97:17:97:17 | s :  |
-| webview.swift:59:10:59:10 | source :  | webview.swift:25:5:25:41 | [summary param] this in toObject() :  |
-| webview.swift:59:10:59:10 | source :  | webview.swift:59:10:59:26 | call to toObject() |
-| webview.swift:60:10:60:10 | source :  | webview.swift:26:5:26:55 | [summary param] this in toObjectOf(_:) :  |
-| webview.swift:60:10:60:10 | source :  | webview.swift:60:10:60:41 | call to toObjectOf(_:) |
-| webview.swift:61:10:61:10 | source :  | webview.swift:27:5:27:42 | [summary param] this in toBool() :  |
-| webview.swift:61:10:61:10 | source :  | webview.swift:61:10:61:24 | call to toBool() |
-| webview.swift:62:10:62:10 | source :  | webview.swift:28:5:28:44 | [summary param] this in toDouble() :  |
-| webview.swift:62:10:62:10 | source :  | webview.swift:62:10:62:26 | call to toDouble() |
-| webview.swift:63:10:63:10 | source :  | webview.swift:29:5:29:40 | [summary param] this in toInt32() :  |
-| webview.swift:63:10:63:10 | source :  | webview.swift:63:10:63:25 | call to toInt32() |
-| webview.swift:64:10:64:10 | source :  | webview.swift:30:5:30:42 | [summary param] this in toUInt32() :  |
-| webview.swift:64:10:64:10 | source :  | webview.swift:64:10:64:26 | call to toUInt32() |
-| webview.swift:65:10:65:10 | source :  | webview.swift:31:5:31:62 | [summary param] this in toNumber() :  |
-| webview.swift:65:10:65:10 | source :  | webview.swift:65:10:65:26 | call to toNumber() |
-| webview.swift:66:10:66:10 | source :  | webview.swift:32:5:32:44 | [summary param] this in toString() :  |
-| webview.swift:66:10:66:10 | source :  | webview.swift:66:10:66:26 | call to toString() |
-| webview.swift:67:10:67:10 | source :  | webview.swift:33:5:33:44 | [summary param] this in toDate() :  |
-| webview.swift:67:10:67:10 | source :  | webview.swift:67:10:67:24 | call to toDate() |
-| webview.swift:68:10:68:10 | source :  | webview.swift:34:5:34:44 | [summary param] this in toArray() :  |
-| webview.swift:68:10:68:10 | source :  | webview.swift:68:10:68:25 | call to toArray() |
-| webview.swift:69:10:69:10 | source :  | webview.swift:35:5:35:65 | [summary param] this in toDictionary() :  |
-| webview.swift:69:10:69:10 | source :  | webview.swift:69:10:69:30 | call to toDictionary() |
-| webview.swift:70:10:70:10 | source :  | webview.swift:36:5:36:50 | [summary param] this in toPoint() :  |
-| webview.swift:70:10:70:10 | source :  | webview.swift:70:10:70:25 | call to toPoint() |
-| webview.swift:71:10:71:10 | source :  | webview.swift:37:5:37:50 | [summary param] this in toRange() :  |
-| webview.swift:71:10:71:10 | source :  | webview.swift:71:10:71:25 | call to toRange() |
-| webview.swift:72:10:72:10 | source :  | webview.swift:38:5:38:47 | [summary param] this in toRect() :  |
-| webview.swift:72:10:72:10 | source :  | webview.swift:72:10:72:24 | call to toRect() |
-| webview.swift:73:10:73:10 | source :  | webview.swift:39:5:39:47 | [summary param] this in toSize() :  |
-| webview.swift:73:10:73:10 | source :  | webview.swift:73:10:73:24 | call to toSize() |
-| webview.swift:74:10:74:10 | source :  | webview.swift:40:5:40:84 | [summary param] this in atIndex(_:) :  |
-| webview.swift:74:10:74:10 | source :  | webview.swift:74:10:74:26 | call to atIndex(_:) |
-| webview.swift:75:10:75:10 | source :  | webview.swift:42:5:42:89 | [summary param] this in forProperty(_:) :  |
-| webview.swift:75:10:75:10 | source :  | webview.swift:75:10:75:31 | call to forProperty(_:) |
-| webview.swift:78:26:78:26 | s :  | webview.swift:16:5:16:39 | [summary param] 0 in init(object:in:) :  |
-| webview.swift:78:26:78:26 | s :  | webview.swift:78:10:78:47 | call to init(object:in:) |
-| webview.swift:79:24:79:24 | s :  | webview.swift:17:5:17:38 | [summary param] 0 in init(bool:in:) :  |
-| webview.swift:79:24:79:24 | s :  | webview.swift:79:10:79:47 | call to init(bool:in:) |
-| webview.swift:80:26:80:26 | s :  | webview.swift:18:5:18:42 | [summary param] 0 in init(double:in:) :  |
-| webview.swift:80:26:80:26 | s :  | webview.swift:80:10:80:51 | call to init(double:in:) |
-| webview.swift:81:25:81:25 | s :  | webview.swift:19:5:19:40 | [summary param] 0 in init(int32:in:) :  |
-| webview.swift:81:25:81:25 | s :  | webview.swift:81:10:81:49 | call to init(int32:in:) |
-| webview.swift:82:26:82:26 | s :  | webview.swift:20:5:20:42 | [summary param] 0 in init(uInt32:in:) :  |
-| webview.swift:82:26:82:26 | s :  | webview.swift:82:10:82:51 | call to init(uInt32:in:) |
-| webview.swift:83:25:83:25 | s :  | webview.swift:21:5:21:42 | [summary param] 0 in init(point:in:) :  |
-| webview.swift:83:25:83:25 | s :  | webview.swift:83:10:83:51 | call to init(point:in:) |
-| webview.swift:84:25:84:25 | s :  | webview.swift:22:5:22:42 | [summary param] 0 in init(range:in:) :  |
-| webview.swift:84:25:84:25 | s :  | webview.swift:84:10:84:51 | call to init(range:in:) |
-| webview.swift:85:24:85:24 | s :  | webview.swift:23:5:23:40 | [summary param] 0 in init(rect:in:) :  |
-| webview.swift:85:24:85:24 | s :  | webview.swift:85:10:85:49 | call to init(rect:in:) |
-| webview.swift:86:24:86:24 | s :  | webview.swift:24:5:24:40 | [summary param] 0 in init(size:in:) :  |
-| webview.swift:86:24:86:24 | s :  | webview.swift:86:10:86:49 | call to init(size:in:) |
-| webview.swift:89:5:89:5 | [post] v1 :  | webview.swift:90:10:90:10 | v1 |
-| webview.swift:89:39:89:39 | s :  | webview.swift:41:5:41:53 | [summary param] 1 in defineProperty(_:descriptor:) :  |
-| webview.swift:89:39:89:39 | s :  | webview.swift:89:5:89:5 | [post] v1 :  |
-| webview.swift:93:5:93:5 | [post] v2 :  | webview.swift:94:10:94:10 | v2 |
-| webview.swift:93:17:93:17 | s :  | webview.swift:43:5:43:38 | [summary param] 0 in setValue(_:at:) :  |
-| webview.swift:93:17:93:17 | s :  | webview.swift:93:5:93:5 | [post] v2 :  |
-| webview.swift:97:5:97:5 | [post] v3 :  | webview.swift:98:10:98:10 | v3 |
-| webview.swift:97:17:97:17 | s :  | webview.swift:44:5:44:48 | [summary param] 0 in setValue(_:forProperty:) :  |
-| webview.swift:97:17:97:17 | s :  | webview.swift:97:5:97:5 | [post] v3 :  |
+| webview.swift:27:5:27:39 | [summary param] 0 in init(object:in:) :  | file://:0:0:0:0 | [summary] to write: return (return) in init(object:in:) :  |
+| webview.swift:28:5:28:38 | [summary param] 0 in init(bool:in:) :  | file://:0:0:0:0 | [summary] to write: return (return) in init(bool:in:) :  |
+| webview.swift:29:5:29:42 | [summary param] 0 in init(double:in:) :  | file://:0:0:0:0 | [summary] to write: return (return) in init(double:in:) :  |
+| webview.swift:30:5:30:40 | [summary param] 0 in init(int32:in:) :  | file://:0:0:0:0 | [summary] to write: return (return) in init(int32:in:) :  |
+| webview.swift:31:5:31:42 | [summary param] 0 in init(uInt32:in:) :  | file://:0:0:0:0 | [summary] to write: return (return) in init(uInt32:in:) :  |
+| webview.swift:32:5:32:42 | [summary param] 0 in init(point:in:) :  | file://:0:0:0:0 | [summary] to write: return (return) in init(point:in:) :  |
+| webview.swift:33:5:33:42 | [summary param] 0 in init(range:in:) :  | file://:0:0:0:0 | [summary] to write: return (return) in init(range:in:) :  |
+| webview.swift:34:5:34:40 | [summary param] 0 in init(rect:in:) :  | file://:0:0:0:0 | [summary] to write: return (return) in init(rect:in:) :  |
+| webview.swift:35:5:35:40 | [summary param] 0 in init(size:in:) :  | file://:0:0:0:0 | [summary] to write: return (return) in init(size:in:) :  |
+| webview.swift:36:5:36:41 | [summary param] this in toObject() :  | file://:0:0:0:0 | [summary] to write: return (return) in toObject() :  |
+| webview.swift:37:5:37:55 | [summary param] this in toObjectOf(_:) :  | file://:0:0:0:0 | [summary] to write: return (return) in toObjectOf(_:) :  |
+| webview.swift:38:5:38:42 | [summary param] this in toBool() :  | file://:0:0:0:0 | [summary] to write: return (return) in toBool() :  |
+| webview.swift:39:5:39:44 | [summary param] this in toDouble() :  | file://:0:0:0:0 | [summary] to write: return (return) in toDouble() :  |
+| webview.swift:40:5:40:40 | [summary param] this in toInt32() :  | file://:0:0:0:0 | [summary] to write: return (return) in toInt32() :  |
+| webview.swift:41:5:41:42 | [summary param] this in toUInt32() :  | file://:0:0:0:0 | [summary] to write: return (return) in toUInt32() :  |
+| webview.swift:42:5:42:62 | [summary param] this in toNumber() :  | file://:0:0:0:0 | [summary] to write: return (return) in toNumber() :  |
+| webview.swift:43:5:43:44 | [summary param] this in toString() :  | file://:0:0:0:0 | [summary] to write: return (return) in toString() :  |
+| webview.swift:44:5:44:44 | [summary param] this in toDate() :  | file://:0:0:0:0 | [summary] to write: return (return) in toDate() :  |
+| webview.swift:45:5:45:44 | [summary param] this in toArray() :  | file://:0:0:0:0 | [summary] to write: return (return) in toArray() :  |
+| webview.swift:46:5:46:65 | [summary param] this in toDictionary() :  | file://:0:0:0:0 | [summary] to write: return (return) in toDictionary() :  |
+| webview.swift:47:5:47:50 | [summary param] this in toPoint() :  | file://:0:0:0:0 | [summary] to write: return (return) in toPoint() :  |
+| webview.swift:48:5:48:50 | [summary param] this in toRange() :  | file://:0:0:0:0 | [summary] to write: return (return) in toRange() :  |
+| webview.swift:49:5:49:47 | [summary param] this in toRect() :  | file://:0:0:0:0 | [summary] to write: return (return) in toRect() :  |
+| webview.swift:50:5:50:47 | [summary param] this in toSize() :  | file://:0:0:0:0 | [summary] to write: return (return) in toSize() :  |
+| webview.swift:51:5:51:84 | [summary param] this in atIndex(_:) :  | file://:0:0:0:0 | [summary] to write: return (return) in atIndex(_:) :  |
+| webview.swift:52:5:52:53 | [summary param] 1 in defineProperty(_:descriptor:) :  | file://:0:0:0:0 | [summary] to write: argument this in defineProperty(_:descriptor:) :  |
+| webview.swift:53:5:53:89 | [summary param] this in forProperty(_:) :  | file://:0:0:0:0 | [summary] to write: return (return) in forProperty(_:) :  |
+| webview.swift:54:5:54:38 | [summary param] 0 in setValue(_:at:) :  | file://:0:0:0:0 | [summary] to write: argument this in setValue(_:at:) :  |
+| webview.swift:55:5:55:48 | [summary param] 0 in setValue(_:forProperty:) :  | file://:0:0:0:0 | [summary] to write: argument this in setValue(_:forProperty:) :  |
+| webview.swift:77:11:77:18 | call to source() :  | webview.swift:77:10:77:41 | .body |
+| webview.swift:81:13:81:20 | call to source() :  | webview.swift:84:10:84:10 | source :  |
+| webview.swift:81:13:81:20 | call to source() :  | webview.swift:85:10:85:10 | source :  |
+| webview.swift:81:13:81:20 | call to source() :  | webview.swift:86:10:86:10 | source :  |
+| webview.swift:81:13:81:20 | call to source() :  | webview.swift:87:10:87:10 | source :  |
+| webview.swift:81:13:81:20 | call to source() :  | webview.swift:88:10:88:10 | source :  |
+| webview.swift:81:13:81:20 | call to source() :  | webview.swift:89:10:89:10 | source :  |
+| webview.swift:81:13:81:20 | call to source() :  | webview.swift:90:10:90:10 | source :  |
+| webview.swift:81:13:81:20 | call to source() :  | webview.swift:91:10:91:10 | source :  |
+| webview.swift:81:13:81:20 | call to source() :  | webview.swift:92:10:92:10 | source :  |
+| webview.swift:81:13:81:20 | call to source() :  | webview.swift:93:10:93:10 | source :  |
+| webview.swift:81:13:81:20 | call to source() :  | webview.swift:94:10:94:10 | source :  |
+| webview.swift:81:13:81:20 | call to source() :  | webview.swift:95:10:95:10 | source :  |
+| webview.swift:81:13:81:20 | call to source() :  | webview.swift:96:10:96:10 | source :  |
+| webview.swift:81:13:81:20 | call to source() :  | webview.swift:97:10:97:10 | source :  |
+| webview.swift:81:13:81:20 | call to source() :  | webview.swift:98:10:98:10 | source :  |
+| webview.swift:81:13:81:20 | call to source() :  | webview.swift:99:10:99:10 | source :  |
+| webview.swift:81:13:81:20 | call to source() :  | webview.swift:100:10:100:10 | source :  |
+| webview.swift:81:13:81:20 | call to source() :  | webview.swift:103:26:103:26 | s :  |
+| webview.swift:81:13:81:20 | call to source() :  | webview.swift:104:24:104:24 | s :  |
+| webview.swift:81:13:81:20 | call to source() :  | webview.swift:105:26:105:26 | s :  |
+| webview.swift:81:13:81:20 | call to source() :  | webview.swift:106:25:106:25 | s :  |
+| webview.swift:81:13:81:20 | call to source() :  | webview.swift:107:26:107:26 | s :  |
+| webview.swift:81:13:81:20 | call to source() :  | webview.swift:108:25:108:25 | s :  |
+| webview.swift:81:13:81:20 | call to source() :  | webview.swift:109:25:109:25 | s :  |
+| webview.swift:81:13:81:20 | call to source() :  | webview.swift:110:24:110:24 | s :  |
+| webview.swift:81:13:81:20 | call to source() :  | webview.swift:111:24:111:24 | s :  |
+| webview.swift:81:13:81:20 | call to source() :  | webview.swift:114:39:114:39 | s :  |
+| webview.swift:81:13:81:20 | call to source() :  | webview.swift:118:17:118:17 | s :  |
+| webview.swift:81:13:81:20 | call to source() :  | webview.swift:122:17:122:17 | s :  |
+| webview.swift:84:10:84:10 | source :  | webview.swift:36:5:36:41 | [summary param] this in toObject() :  |
+| webview.swift:84:10:84:10 | source :  | webview.swift:84:10:84:26 | call to toObject() |
+| webview.swift:85:10:85:10 | source :  | webview.swift:37:5:37:55 | [summary param] this in toObjectOf(_:) :  |
+| webview.swift:85:10:85:10 | source :  | webview.swift:85:10:85:41 | call to toObjectOf(_:) |
+| webview.swift:86:10:86:10 | source :  | webview.swift:38:5:38:42 | [summary param] this in toBool() :  |
+| webview.swift:86:10:86:10 | source :  | webview.swift:86:10:86:24 | call to toBool() |
+| webview.swift:87:10:87:10 | source :  | webview.swift:39:5:39:44 | [summary param] this in toDouble() :  |
+| webview.swift:87:10:87:10 | source :  | webview.swift:87:10:87:26 | call to toDouble() |
+| webview.swift:88:10:88:10 | source :  | webview.swift:40:5:40:40 | [summary param] this in toInt32() :  |
+| webview.swift:88:10:88:10 | source :  | webview.swift:88:10:88:25 | call to toInt32() |
+| webview.swift:89:10:89:10 | source :  | webview.swift:41:5:41:42 | [summary param] this in toUInt32() :  |
+| webview.swift:89:10:89:10 | source :  | webview.swift:89:10:89:26 | call to toUInt32() |
+| webview.swift:90:10:90:10 | source :  | webview.swift:42:5:42:62 | [summary param] this in toNumber() :  |
+| webview.swift:90:10:90:10 | source :  | webview.swift:90:10:90:26 | call to toNumber() |
+| webview.swift:91:10:91:10 | source :  | webview.swift:43:5:43:44 | [summary param] this in toString() :  |
+| webview.swift:91:10:91:10 | source :  | webview.swift:91:10:91:26 | call to toString() |
+| webview.swift:92:10:92:10 | source :  | webview.swift:44:5:44:44 | [summary param] this in toDate() :  |
+| webview.swift:92:10:92:10 | source :  | webview.swift:92:10:92:24 | call to toDate() |
+| webview.swift:93:10:93:10 | source :  | webview.swift:45:5:45:44 | [summary param] this in toArray() :  |
+| webview.swift:93:10:93:10 | source :  | webview.swift:93:10:93:25 | call to toArray() |
+| webview.swift:94:10:94:10 | source :  | webview.swift:46:5:46:65 | [summary param] this in toDictionary() :  |
+| webview.swift:94:10:94:10 | source :  | webview.swift:94:10:94:30 | call to toDictionary() |
+| webview.swift:95:10:95:10 | source :  | webview.swift:47:5:47:50 | [summary param] this in toPoint() :  |
+| webview.swift:95:10:95:10 | source :  | webview.swift:95:10:95:25 | call to toPoint() |
+| webview.swift:96:10:96:10 | source :  | webview.swift:48:5:48:50 | [summary param] this in toRange() :  |
+| webview.swift:96:10:96:10 | source :  | webview.swift:96:10:96:25 | call to toRange() |
+| webview.swift:97:10:97:10 | source :  | webview.swift:49:5:49:47 | [summary param] this in toRect() :  |
+| webview.swift:97:10:97:10 | source :  | webview.swift:97:10:97:24 | call to toRect() |
+| webview.swift:98:10:98:10 | source :  | webview.swift:50:5:50:47 | [summary param] this in toSize() :  |
+| webview.swift:98:10:98:10 | source :  | webview.swift:98:10:98:24 | call to toSize() |
+| webview.swift:99:10:99:10 | source :  | webview.swift:51:5:51:84 | [summary param] this in atIndex(_:) :  |
+| webview.swift:99:10:99:10 | source :  | webview.swift:99:10:99:26 | call to atIndex(_:) |
+| webview.swift:100:10:100:10 | source :  | webview.swift:53:5:53:89 | [summary param] this in forProperty(_:) :  |
+| webview.swift:100:10:100:10 | source :  | webview.swift:100:10:100:31 | call to forProperty(_:) |
+| webview.swift:103:26:103:26 | s :  | webview.swift:27:5:27:39 | [summary param] 0 in init(object:in:) :  |
+| webview.swift:103:26:103:26 | s :  | webview.swift:103:10:103:47 | call to init(object:in:) |
+| webview.swift:104:24:104:24 | s :  | webview.swift:28:5:28:38 | [summary param] 0 in init(bool:in:) :  |
+| webview.swift:104:24:104:24 | s :  | webview.swift:104:10:104:47 | call to init(bool:in:) |
+| webview.swift:105:26:105:26 | s :  | webview.swift:29:5:29:42 | [summary param] 0 in init(double:in:) :  |
+| webview.swift:105:26:105:26 | s :  | webview.swift:105:10:105:51 | call to init(double:in:) |
+| webview.swift:106:25:106:25 | s :  | webview.swift:30:5:30:40 | [summary param] 0 in init(int32:in:) :  |
+| webview.swift:106:25:106:25 | s :  | webview.swift:106:10:106:49 | call to init(int32:in:) |
+| webview.swift:107:26:107:26 | s :  | webview.swift:31:5:31:42 | [summary param] 0 in init(uInt32:in:) :  |
+| webview.swift:107:26:107:26 | s :  | webview.swift:107:10:107:51 | call to init(uInt32:in:) |
+| webview.swift:108:25:108:25 | s :  | webview.swift:32:5:32:42 | [summary param] 0 in init(point:in:) :  |
+| webview.swift:108:25:108:25 | s :  | webview.swift:108:10:108:51 | call to init(point:in:) |
+| webview.swift:109:25:109:25 | s :  | webview.swift:33:5:33:42 | [summary param] 0 in init(range:in:) :  |
+| webview.swift:109:25:109:25 | s :  | webview.swift:109:10:109:51 | call to init(range:in:) |
+| webview.swift:110:24:110:24 | s :  | webview.swift:34:5:34:40 | [summary param] 0 in init(rect:in:) :  |
+| webview.swift:110:24:110:24 | s :  | webview.swift:110:10:110:49 | call to init(rect:in:) |
+| webview.swift:111:24:111:24 | s :  | webview.swift:35:5:35:40 | [summary param] 0 in init(size:in:) :  |
+| webview.swift:111:24:111:24 | s :  | webview.swift:111:10:111:49 | call to init(size:in:) |
+| webview.swift:114:5:114:5 | [post] v1 :  | webview.swift:115:10:115:10 | v1 |
+| webview.swift:114:39:114:39 | s :  | webview.swift:52:5:52:53 | [summary param] 1 in defineProperty(_:descriptor:) :  |
+| webview.swift:114:39:114:39 | s :  | webview.swift:114:5:114:5 | [post] v1 :  |
+| webview.swift:118:5:118:5 | [post] v2 :  | webview.swift:119:10:119:10 | v2 |
+| webview.swift:118:17:118:17 | s :  | webview.swift:54:5:54:38 | [summary param] 0 in setValue(_:at:) :  |
+| webview.swift:118:17:118:17 | s :  | webview.swift:118:5:118:5 | [post] v2 :  |
+| webview.swift:122:5:122:5 | [post] v3 :  | webview.swift:123:10:123:10 | v3 |
+| webview.swift:122:17:122:17 | s :  | webview.swift:55:5:55:48 | [summary param] 0 in setValue(_:forProperty:) :  |
+| webview.swift:122:17:122:17 | s :  | webview.swift:122:5:122:5 | [post] v3 :  |
 nodes
 | data.swift:25:2:25:66 | [summary param] 0 in init(base64Encoded:options:) :  | semmle.label | [summary param] 0 in init(base64Encoded:options:) :  |
 | data.swift:26:2:26:61 | [summary param] 0 in init(buffer:) :  | semmle.label | [summary param] 0 in init(buffer:) :  |
@@ -1023,99 +1023,99 @@ nodes
 | url.swift:120:46:120:46 | urlTainted :  | semmle.label | urlTainted :  |
 | url.swift:120:61:120:61 | data :  | semmle.label | data :  |
 | url.swift:121:15:121:19 | ...! | semmle.label | ...! |
-| webview.swift:16:5:16:39 | [summary param] 0 in init(object:in:) :  | semmle.label | [summary param] 0 in init(object:in:) :  |
-| webview.swift:17:5:17:38 | [summary param] 0 in init(bool:in:) :  | semmle.label | [summary param] 0 in init(bool:in:) :  |
-| webview.swift:18:5:18:42 | [summary param] 0 in init(double:in:) :  | semmle.label | [summary param] 0 in init(double:in:) :  |
-| webview.swift:19:5:19:40 | [summary param] 0 in init(int32:in:) :  | semmle.label | [summary param] 0 in init(int32:in:) :  |
-| webview.swift:20:5:20:42 | [summary param] 0 in init(uInt32:in:) :  | semmle.label | [summary param] 0 in init(uInt32:in:) :  |
-| webview.swift:21:5:21:42 | [summary param] 0 in init(point:in:) :  | semmle.label | [summary param] 0 in init(point:in:) :  |
-| webview.swift:22:5:22:42 | [summary param] 0 in init(range:in:) :  | semmle.label | [summary param] 0 in init(range:in:) :  |
-| webview.swift:23:5:23:40 | [summary param] 0 in init(rect:in:) :  | semmle.label | [summary param] 0 in init(rect:in:) :  |
-| webview.swift:24:5:24:40 | [summary param] 0 in init(size:in:) :  | semmle.label | [summary param] 0 in init(size:in:) :  |
-| webview.swift:25:5:25:41 | [summary param] this in toObject() :  | semmle.label | [summary param] this in toObject() :  |
-| webview.swift:26:5:26:55 | [summary param] this in toObjectOf(_:) :  | semmle.label | [summary param] this in toObjectOf(_:) :  |
-| webview.swift:27:5:27:42 | [summary param] this in toBool() :  | semmle.label | [summary param] this in toBool() :  |
-| webview.swift:28:5:28:44 | [summary param] this in toDouble() :  | semmle.label | [summary param] this in toDouble() :  |
-| webview.swift:29:5:29:40 | [summary param] this in toInt32() :  | semmle.label | [summary param] this in toInt32() :  |
-| webview.swift:30:5:30:42 | [summary param] this in toUInt32() :  | semmle.label | [summary param] this in toUInt32() :  |
-| webview.swift:31:5:31:62 | [summary param] this in toNumber() :  | semmle.label | [summary param] this in toNumber() :  |
-| webview.swift:32:5:32:44 | [summary param] this in toString() :  | semmle.label | [summary param] this in toString() :  |
-| webview.swift:33:5:33:44 | [summary param] this in toDate() :  | semmle.label | [summary param] this in toDate() :  |
-| webview.swift:34:5:34:44 | [summary param] this in toArray() :  | semmle.label | [summary param] this in toArray() :  |
-| webview.swift:35:5:35:65 | [summary param] this in toDictionary() :  | semmle.label | [summary param] this in toDictionary() :  |
-| webview.swift:36:5:36:50 | [summary param] this in toPoint() :  | semmle.label | [summary param] this in toPoint() :  |
-| webview.swift:37:5:37:50 | [summary param] this in toRange() :  | semmle.label | [summary param] this in toRange() :  |
-| webview.swift:38:5:38:47 | [summary param] this in toRect() :  | semmle.label | [summary param] this in toRect() :  |
-| webview.swift:39:5:39:47 | [summary param] this in toSize() :  | semmle.label | [summary param] this in toSize() :  |
-| webview.swift:40:5:40:84 | [summary param] this in atIndex(_:) :  | semmle.label | [summary param] this in atIndex(_:) :  |
-| webview.swift:41:5:41:53 | [summary param] 1 in defineProperty(_:descriptor:) :  | semmle.label | [summary param] 1 in defineProperty(_:descriptor:) :  |
-| webview.swift:42:5:42:89 | [summary param] this in forProperty(_:) :  | semmle.label | [summary param] this in forProperty(_:) :  |
-| webview.swift:43:5:43:38 | [summary param] 0 in setValue(_:at:) :  | semmle.label | [summary param] 0 in setValue(_:at:) :  |
-| webview.swift:44:5:44:48 | [summary param] 0 in setValue(_:forProperty:) :  | semmle.label | [summary param] 0 in setValue(_:forProperty:) :  |
-| webview.swift:52:10:52:41 | .body | semmle.label | .body |
-| webview.swift:52:11:52:18 | call to source() :  | semmle.label | call to source() :  |
-| webview.swift:56:13:56:20 | call to source() :  | semmle.label | call to source() :  |
-| webview.swift:59:10:59:10 | source :  | semmle.label | source :  |
-| webview.swift:59:10:59:26 | call to toObject() | semmle.label | call to toObject() |
-| webview.swift:60:10:60:10 | source :  | semmle.label | source :  |
-| webview.swift:60:10:60:41 | call to toObjectOf(_:) | semmle.label | call to toObjectOf(_:) |
-| webview.swift:61:10:61:10 | source :  | semmle.label | source :  |
-| webview.swift:61:10:61:24 | call to toBool() | semmle.label | call to toBool() |
-| webview.swift:62:10:62:10 | source :  | semmle.label | source :  |
-| webview.swift:62:10:62:26 | call to toDouble() | semmle.label | call to toDouble() |
-| webview.swift:63:10:63:10 | source :  | semmle.label | source :  |
-| webview.swift:63:10:63:25 | call to toInt32() | semmle.label | call to toInt32() |
-| webview.swift:64:10:64:10 | source :  | semmle.label | source :  |
-| webview.swift:64:10:64:26 | call to toUInt32() | semmle.label | call to toUInt32() |
-| webview.swift:65:10:65:10 | source :  | semmle.label | source :  |
-| webview.swift:65:10:65:26 | call to toNumber() | semmle.label | call to toNumber() |
-| webview.swift:66:10:66:10 | source :  | semmle.label | source :  |
-| webview.swift:66:10:66:26 | call to toString() | semmle.label | call to toString() |
-| webview.swift:67:10:67:10 | source :  | semmle.label | source :  |
-| webview.swift:67:10:67:24 | call to toDate() | semmle.label | call to toDate() |
-| webview.swift:68:10:68:10 | source :  | semmle.label | source :  |
-| webview.swift:68:10:68:25 | call to toArray() | semmle.label | call to toArray() |
-| webview.swift:69:10:69:10 | source :  | semmle.label | source :  |
-| webview.swift:69:10:69:30 | call to toDictionary() | semmle.label | call to toDictionary() |
-| webview.swift:70:10:70:10 | source :  | semmle.label | source :  |
-| webview.swift:70:10:70:25 | call to toPoint() | semmle.label | call to toPoint() |
-| webview.swift:71:10:71:10 | source :  | semmle.label | source :  |
-| webview.swift:71:10:71:25 | call to toRange() | semmle.label | call to toRange() |
-| webview.swift:72:10:72:10 | source :  | semmle.label | source :  |
-| webview.swift:72:10:72:24 | call to toRect() | semmle.label | call to toRect() |
-| webview.swift:73:10:73:10 | source :  | semmle.label | source :  |
-| webview.swift:73:10:73:24 | call to toSize() | semmle.label | call to toSize() |
-| webview.swift:74:10:74:10 | source :  | semmle.label | source :  |
-| webview.swift:74:10:74:26 | call to atIndex(_:) | semmle.label | call to atIndex(_:) |
-| webview.swift:75:10:75:10 | source :  | semmle.label | source :  |
-| webview.swift:75:10:75:31 | call to forProperty(_:) | semmle.label | call to forProperty(_:) |
-| webview.swift:78:10:78:47 | call to init(object:in:) | semmle.label | call to init(object:in:) |
-| webview.swift:78:26:78:26 | s :  | semmle.label | s :  |
-| webview.swift:79:10:79:47 | call to init(bool:in:) | semmle.label | call to init(bool:in:) |
-| webview.swift:79:24:79:24 | s :  | semmle.label | s :  |
-| webview.swift:80:10:80:51 | call to init(double:in:) | semmle.label | call to init(double:in:) |
-| webview.swift:80:26:80:26 | s :  | semmle.label | s :  |
-| webview.swift:81:10:81:49 | call to init(int32:in:) | semmle.label | call to init(int32:in:) |
-| webview.swift:81:25:81:25 | s :  | semmle.label | s :  |
-| webview.swift:82:10:82:51 | call to init(uInt32:in:) | semmle.label | call to init(uInt32:in:) |
-| webview.swift:82:26:82:26 | s :  | semmle.label | s :  |
-| webview.swift:83:10:83:51 | call to init(point:in:) | semmle.label | call to init(point:in:) |
-| webview.swift:83:25:83:25 | s :  | semmle.label | s :  |
-| webview.swift:84:10:84:51 | call to init(range:in:) | semmle.label | call to init(range:in:) |
-| webview.swift:84:25:84:25 | s :  | semmle.label | s :  |
-| webview.swift:85:10:85:49 | call to init(rect:in:) | semmle.label | call to init(rect:in:) |
-| webview.swift:85:24:85:24 | s :  | semmle.label | s :  |
-| webview.swift:86:10:86:49 | call to init(size:in:) | semmle.label | call to init(size:in:) |
-| webview.swift:86:24:86:24 | s :  | semmle.label | s :  |
-| webview.swift:89:5:89:5 | [post] v1 :  | semmle.label | [post] v1 :  |
-| webview.swift:89:39:89:39 | s :  | semmle.label | s :  |
-| webview.swift:90:10:90:10 | v1 | semmle.label | v1 |
-| webview.swift:93:5:93:5 | [post] v2 :  | semmle.label | [post] v2 :  |
-| webview.swift:93:17:93:17 | s :  | semmle.label | s :  |
-| webview.swift:94:10:94:10 | v2 | semmle.label | v2 |
-| webview.swift:97:5:97:5 | [post] v3 :  | semmle.label | [post] v3 :  |
-| webview.swift:97:17:97:17 | s :  | semmle.label | s :  |
-| webview.swift:98:10:98:10 | v3 | semmle.label | v3 |
+| webview.swift:27:5:27:39 | [summary param] 0 in init(object:in:) :  | semmle.label | [summary param] 0 in init(object:in:) :  |
+| webview.swift:28:5:28:38 | [summary param] 0 in init(bool:in:) :  | semmle.label | [summary param] 0 in init(bool:in:) :  |
+| webview.swift:29:5:29:42 | [summary param] 0 in init(double:in:) :  | semmle.label | [summary param] 0 in init(double:in:) :  |
+| webview.swift:30:5:30:40 | [summary param] 0 in init(int32:in:) :  | semmle.label | [summary param] 0 in init(int32:in:) :  |
+| webview.swift:31:5:31:42 | [summary param] 0 in init(uInt32:in:) :  | semmle.label | [summary param] 0 in init(uInt32:in:) :  |
+| webview.swift:32:5:32:42 | [summary param] 0 in init(point:in:) :  | semmle.label | [summary param] 0 in init(point:in:) :  |
+| webview.swift:33:5:33:42 | [summary param] 0 in init(range:in:) :  | semmle.label | [summary param] 0 in init(range:in:) :  |
+| webview.swift:34:5:34:40 | [summary param] 0 in init(rect:in:) :  | semmle.label | [summary param] 0 in init(rect:in:) :  |
+| webview.swift:35:5:35:40 | [summary param] 0 in init(size:in:) :  | semmle.label | [summary param] 0 in init(size:in:) :  |
+| webview.swift:36:5:36:41 | [summary param] this in toObject() :  | semmle.label | [summary param] this in toObject() :  |
+| webview.swift:37:5:37:55 | [summary param] this in toObjectOf(_:) :  | semmle.label | [summary param] this in toObjectOf(_:) :  |
+| webview.swift:38:5:38:42 | [summary param] this in toBool() :  | semmle.label | [summary param] this in toBool() :  |
+| webview.swift:39:5:39:44 | [summary param] this in toDouble() :  | semmle.label | [summary param] this in toDouble() :  |
+| webview.swift:40:5:40:40 | [summary param] this in toInt32() :  | semmle.label | [summary param] this in toInt32() :  |
+| webview.swift:41:5:41:42 | [summary param] this in toUInt32() :  | semmle.label | [summary param] this in toUInt32() :  |
+| webview.swift:42:5:42:62 | [summary param] this in toNumber() :  | semmle.label | [summary param] this in toNumber() :  |
+| webview.swift:43:5:43:44 | [summary param] this in toString() :  | semmle.label | [summary param] this in toString() :  |
+| webview.swift:44:5:44:44 | [summary param] this in toDate() :  | semmle.label | [summary param] this in toDate() :  |
+| webview.swift:45:5:45:44 | [summary param] this in toArray() :  | semmle.label | [summary param] this in toArray() :  |
+| webview.swift:46:5:46:65 | [summary param] this in toDictionary() :  | semmle.label | [summary param] this in toDictionary() :  |
+| webview.swift:47:5:47:50 | [summary param] this in toPoint() :  | semmle.label | [summary param] this in toPoint() :  |
+| webview.swift:48:5:48:50 | [summary param] this in toRange() :  | semmle.label | [summary param] this in toRange() :  |
+| webview.swift:49:5:49:47 | [summary param] this in toRect() :  | semmle.label | [summary param] this in toRect() :  |
+| webview.swift:50:5:50:47 | [summary param] this in toSize() :  | semmle.label | [summary param] this in toSize() :  |
+| webview.swift:51:5:51:84 | [summary param] this in atIndex(_:) :  | semmle.label | [summary param] this in atIndex(_:) :  |
+| webview.swift:52:5:52:53 | [summary param] 1 in defineProperty(_:descriptor:) :  | semmle.label | [summary param] 1 in defineProperty(_:descriptor:) :  |
+| webview.swift:53:5:53:89 | [summary param] this in forProperty(_:) :  | semmle.label | [summary param] this in forProperty(_:) :  |
+| webview.swift:54:5:54:38 | [summary param] 0 in setValue(_:at:) :  | semmle.label | [summary param] 0 in setValue(_:at:) :  |
+| webview.swift:55:5:55:48 | [summary param] 0 in setValue(_:forProperty:) :  | semmle.label | [summary param] 0 in setValue(_:forProperty:) :  |
+| webview.swift:77:10:77:41 | .body | semmle.label | .body |
+| webview.swift:77:11:77:18 | call to source() :  | semmle.label | call to source() :  |
+| webview.swift:81:13:81:20 | call to source() :  | semmle.label | call to source() :  |
+| webview.swift:84:10:84:10 | source :  | semmle.label | source :  |
+| webview.swift:84:10:84:26 | call to toObject() | semmle.label | call to toObject() |
+| webview.swift:85:10:85:10 | source :  | semmle.label | source :  |
+| webview.swift:85:10:85:41 | call to toObjectOf(_:) | semmle.label | call to toObjectOf(_:) |
+| webview.swift:86:10:86:10 | source :  | semmle.label | source :  |
+| webview.swift:86:10:86:24 | call to toBool() | semmle.label | call to toBool() |
+| webview.swift:87:10:87:10 | source :  | semmle.label | source :  |
+| webview.swift:87:10:87:26 | call to toDouble() | semmle.label | call to toDouble() |
+| webview.swift:88:10:88:10 | source :  | semmle.label | source :  |
+| webview.swift:88:10:88:25 | call to toInt32() | semmle.label | call to toInt32() |
+| webview.swift:89:10:89:10 | source :  | semmle.label | source :  |
+| webview.swift:89:10:89:26 | call to toUInt32() | semmle.label | call to toUInt32() |
+| webview.swift:90:10:90:10 | source :  | semmle.label | source :  |
+| webview.swift:90:10:90:26 | call to toNumber() | semmle.label | call to toNumber() |
+| webview.swift:91:10:91:10 | source :  | semmle.label | source :  |
+| webview.swift:91:10:91:26 | call to toString() | semmle.label | call to toString() |
+| webview.swift:92:10:92:10 | source :  | semmle.label | source :  |
+| webview.swift:92:10:92:24 | call to toDate() | semmle.label | call to toDate() |
+| webview.swift:93:10:93:10 | source :  | semmle.label | source :  |
+| webview.swift:93:10:93:25 | call to toArray() | semmle.label | call to toArray() |
+| webview.swift:94:10:94:10 | source :  | semmle.label | source :  |
+| webview.swift:94:10:94:30 | call to toDictionary() | semmle.label | call to toDictionary() |
+| webview.swift:95:10:95:10 | source :  | semmle.label | source :  |
+| webview.swift:95:10:95:25 | call to toPoint() | semmle.label | call to toPoint() |
+| webview.swift:96:10:96:10 | source :  | semmle.label | source :  |
+| webview.swift:96:10:96:25 | call to toRange() | semmle.label | call to toRange() |
+| webview.swift:97:10:97:10 | source :  | semmle.label | source :  |
+| webview.swift:97:10:97:24 | call to toRect() | semmle.label | call to toRect() |
+| webview.swift:98:10:98:10 | source :  | semmle.label | source :  |
+| webview.swift:98:10:98:24 | call to toSize() | semmle.label | call to toSize() |
+| webview.swift:99:10:99:10 | source :  | semmle.label | source :  |
+| webview.swift:99:10:99:26 | call to atIndex(_:) | semmle.label | call to atIndex(_:) |
+| webview.swift:100:10:100:10 | source :  | semmle.label | source :  |
+| webview.swift:100:10:100:31 | call to forProperty(_:) | semmle.label | call to forProperty(_:) |
+| webview.swift:103:10:103:47 | call to init(object:in:) | semmle.label | call to init(object:in:) |
+| webview.swift:103:26:103:26 | s :  | semmle.label | s :  |
+| webview.swift:104:10:104:47 | call to init(bool:in:) | semmle.label | call to init(bool:in:) |
+| webview.swift:104:24:104:24 | s :  | semmle.label | s :  |
+| webview.swift:105:10:105:51 | call to init(double:in:) | semmle.label | call to init(double:in:) |
+| webview.swift:105:26:105:26 | s :  | semmle.label | s :  |
+| webview.swift:106:10:106:49 | call to init(int32:in:) | semmle.label | call to init(int32:in:) |
+| webview.swift:106:25:106:25 | s :  | semmle.label | s :  |
+| webview.swift:107:10:107:51 | call to init(uInt32:in:) | semmle.label | call to init(uInt32:in:) |
+| webview.swift:107:26:107:26 | s :  | semmle.label | s :  |
+| webview.swift:108:10:108:51 | call to init(point:in:) | semmle.label | call to init(point:in:) |
+| webview.swift:108:25:108:25 | s :  | semmle.label | s :  |
+| webview.swift:109:10:109:51 | call to init(range:in:) | semmle.label | call to init(range:in:) |
+| webview.swift:109:25:109:25 | s :  | semmle.label | s :  |
+| webview.swift:110:10:110:49 | call to init(rect:in:) | semmle.label | call to init(rect:in:) |
+| webview.swift:110:24:110:24 | s :  | semmle.label | s :  |
+| webview.swift:111:10:111:49 | call to init(size:in:) | semmle.label | call to init(size:in:) |
+| webview.swift:111:24:111:24 | s :  | semmle.label | s :  |
+| webview.swift:114:5:114:5 | [post] v1 :  | semmle.label | [post] v1 :  |
+| webview.swift:114:39:114:39 | s :  | semmle.label | s :  |
+| webview.swift:115:10:115:10 | v1 | semmle.label | v1 |
+| webview.swift:118:5:118:5 | [post] v2 :  | semmle.label | [post] v2 :  |
+| webview.swift:118:17:118:17 | s :  | semmle.label | s :  |
+| webview.swift:119:10:119:10 | v2 | semmle.label | v2 |
+| webview.swift:122:5:122:5 | [post] v3 :  | semmle.label | [post] v3 :  |
+| webview.swift:122:17:122:17 | s :  | semmle.label | s :  |
+| webview.swift:123:10:123:10 | v3 | semmle.label | v3 |
 subpaths
 | data.swift:89:41:89:48 | call to source() :  | data.swift:25:2:25:66 | [summary param] 0 in init(base64Encoded:options:) :  | file://:0:0:0:0 | [summary] to write: return (return) in init(base64Encoded:options:) :  | data.swift:89:21:89:71 | call to init(base64Encoded:options:) :  |
 | data.swift:93:34:93:41 | call to source() :  | data.swift:26:2:26:61 | [summary param] 0 in init(buffer:) :  | file://:0:0:0:0 | [summary] to write: return (return) in init(buffer:) :  | data.swift:93:21:93:73 | call to init(buffer:) :  |
@@ -1206,35 +1206,35 @@ subpaths
 | url.swift:101:46:101:46 | urlTainted :  | url.swift:9:2:9:43 | [summary param] 1 in init(string:relativeTo:) :  | file://:0:0:0:0 | [summary] to write: return (return) in init(string:relativeTo:) :  | url.swift:101:15:101:56 | call to init(string:relativeTo:) :  |
 | url.swift:102:46:102:46 | urlTainted :  | url.swift:9:2:9:43 | [summary param] 1 in init(string:relativeTo:) :  | file://:0:0:0:0 | [summary] to write: return (return) in init(string:relativeTo:) :  | url.swift:102:15:102:56 | call to init(string:relativeTo:) :  |
 | url.swift:117:28:117:28 | tainted :  | url.swift:8:2:8:25 | [summary param] 0 in init(string:) :  | file://:0:0:0:0 | [summary] to write: return (return) in init(string:) :  | url.swift:117:16:117:35 | call to init(string:) :  |
-| webview.swift:59:10:59:10 | source :  | webview.swift:25:5:25:41 | [summary param] this in toObject() :  | file://:0:0:0:0 | [summary] to write: return (return) in toObject() :  | webview.swift:59:10:59:26 | call to toObject() |
-| webview.swift:60:10:60:10 | source :  | webview.swift:26:5:26:55 | [summary param] this in toObjectOf(_:) :  | file://:0:0:0:0 | [summary] to write: return (return) in toObjectOf(_:) :  | webview.swift:60:10:60:41 | call to toObjectOf(_:) |
-| webview.swift:61:10:61:10 | source :  | webview.swift:27:5:27:42 | [summary param] this in toBool() :  | file://:0:0:0:0 | [summary] to write: return (return) in toBool() :  | webview.swift:61:10:61:24 | call to toBool() |
-| webview.swift:62:10:62:10 | source :  | webview.swift:28:5:28:44 | [summary param] this in toDouble() :  | file://:0:0:0:0 | [summary] to write: return (return) in toDouble() :  | webview.swift:62:10:62:26 | call to toDouble() |
-| webview.swift:63:10:63:10 | source :  | webview.swift:29:5:29:40 | [summary param] this in toInt32() :  | file://:0:0:0:0 | [summary] to write: return (return) in toInt32() :  | webview.swift:63:10:63:25 | call to toInt32() |
-| webview.swift:64:10:64:10 | source :  | webview.swift:30:5:30:42 | [summary param] this in toUInt32() :  | file://:0:0:0:0 | [summary] to write: return (return) in toUInt32() :  | webview.swift:64:10:64:26 | call to toUInt32() |
-| webview.swift:65:10:65:10 | source :  | webview.swift:31:5:31:62 | [summary param] this in toNumber() :  | file://:0:0:0:0 | [summary] to write: return (return) in toNumber() :  | webview.swift:65:10:65:26 | call to toNumber() |
-| webview.swift:66:10:66:10 | source :  | webview.swift:32:5:32:44 | [summary param] this in toString() :  | file://:0:0:0:0 | [summary] to write: return (return) in toString() :  | webview.swift:66:10:66:26 | call to toString() |
-| webview.swift:67:10:67:10 | source :  | webview.swift:33:5:33:44 | [summary param] this in toDate() :  | file://:0:0:0:0 | [summary] to write: return (return) in toDate() :  | webview.swift:67:10:67:24 | call to toDate() |
-| webview.swift:68:10:68:10 | source :  | webview.swift:34:5:34:44 | [summary param] this in toArray() :  | file://:0:0:0:0 | [summary] to write: return (return) in toArray() :  | webview.swift:68:10:68:25 | call to toArray() |
-| webview.swift:69:10:69:10 | source :  | webview.swift:35:5:35:65 | [summary param] this in toDictionary() :  | file://:0:0:0:0 | [summary] to write: return (return) in toDictionary() :  | webview.swift:69:10:69:30 | call to toDictionary() |
-| webview.swift:70:10:70:10 | source :  | webview.swift:36:5:36:50 | [summary param] this in toPoint() :  | file://:0:0:0:0 | [summary] to write: return (return) in toPoint() :  | webview.swift:70:10:70:25 | call to toPoint() |
-| webview.swift:71:10:71:10 | source :  | webview.swift:37:5:37:50 | [summary param] this in toRange() :  | file://:0:0:0:0 | [summary] to write: return (return) in toRange() :  | webview.swift:71:10:71:25 | call to toRange() |
-| webview.swift:72:10:72:10 | source :  | webview.swift:38:5:38:47 | [summary param] this in toRect() :  | file://:0:0:0:0 | [summary] to write: return (return) in toRect() :  | webview.swift:72:10:72:24 | call to toRect() |
-| webview.swift:73:10:73:10 | source :  | webview.swift:39:5:39:47 | [summary param] this in toSize() :  | file://:0:0:0:0 | [summary] to write: return (return) in toSize() :  | webview.swift:73:10:73:24 | call to toSize() |
-| webview.swift:74:10:74:10 | source :  | webview.swift:40:5:40:84 | [summary param] this in atIndex(_:) :  | file://:0:0:0:0 | [summary] to write: return (return) in atIndex(_:) :  | webview.swift:74:10:74:26 | call to atIndex(_:) |
-| webview.swift:75:10:75:10 | source :  | webview.swift:42:5:42:89 | [summary param] this in forProperty(_:) :  | file://:0:0:0:0 | [summary] to write: return (return) in forProperty(_:) :  | webview.swift:75:10:75:31 | call to forProperty(_:) |
-| webview.swift:78:26:78:26 | s :  | webview.swift:16:5:16:39 | [summary param] 0 in init(object:in:) :  | file://:0:0:0:0 | [summary] to write: return (return) in init(object:in:) :  | webview.swift:78:10:78:47 | call to init(object:in:) |
-| webview.swift:79:24:79:24 | s :  | webview.swift:17:5:17:38 | [summary param] 0 in init(bool:in:) :  | file://:0:0:0:0 | [summary] to write: return (return) in init(bool:in:) :  | webview.swift:79:10:79:47 | call to init(bool:in:) |
-| webview.swift:80:26:80:26 | s :  | webview.swift:18:5:18:42 | [summary param] 0 in init(double:in:) :  | file://:0:0:0:0 | [summary] to write: return (return) in init(double:in:) :  | webview.swift:80:10:80:51 | call to init(double:in:) |
-| webview.swift:81:25:81:25 | s :  | webview.swift:19:5:19:40 | [summary param] 0 in init(int32:in:) :  | file://:0:0:0:0 | [summary] to write: return (return) in init(int32:in:) :  | webview.swift:81:10:81:49 | call to init(int32:in:) |
-| webview.swift:82:26:82:26 | s :  | webview.swift:20:5:20:42 | [summary param] 0 in init(uInt32:in:) :  | file://:0:0:0:0 | [summary] to write: return (return) in init(uInt32:in:) :  | webview.swift:82:10:82:51 | call to init(uInt32:in:) |
-| webview.swift:83:25:83:25 | s :  | webview.swift:21:5:21:42 | [summary param] 0 in init(point:in:) :  | file://:0:0:0:0 | [summary] to write: return (return) in init(point:in:) :  | webview.swift:83:10:83:51 | call to init(point:in:) |
-| webview.swift:84:25:84:25 | s :  | webview.swift:22:5:22:42 | [summary param] 0 in init(range:in:) :  | file://:0:0:0:0 | [summary] to write: return (return) in init(range:in:) :  | webview.swift:84:10:84:51 | call to init(range:in:) |
-| webview.swift:85:24:85:24 | s :  | webview.swift:23:5:23:40 | [summary param] 0 in init(rect:in:) :  | file://:0:0:0:0 | [summary] to write: return (return) in init(rect:in:) :  | webview.swift:85:10:85:49 | call to init(rect:in:) |
-| webview.swift:86:24:86:24 | s :  | webview.swift:24:5:24:40 | [summary param] 0 in init(size:in:) :  | file://:0:0:0:0 | [summary] to write: return (return) in init(size:in:) :  | webview.swift:86:10:86:49 | call to init(size:in:) |
-| webview.swift:89:39:89:39 | s :  | webview.swift:41:5:41:53 | [summary param] 1 in defineProperty(_:descriptor:) :  | file://:0:0:0:0 | [summary] to write: argument this in defineProperty(_:descriptor:) :  | webview.swift:89:5:89:5 | [post] v1 :  |
-| webview.swift:93:17:93:17 | s :  | webview.swift:43:5:43:38 | [summary param] 0 in setValue(_:at:) :  | file://:0:0:0:0 | [summary] to write: argument this in setValue(_:at:) :  | webview.swift:93:5:93:5 | [post] v2 :  |
-| webview.swift:97:17:97:17 | s :  | webview.swift:44:5:44:48 | [summary param] 0 in setValue(_:forProperty:) :  | file://:0:0:0:0 | [summary] to write: argument this in setValue(_:forProperty:) :  | webview.swift:97:5:97:5 | [post] v3 :  |
+| webview.swift:84:10:84:10 | source :  | webview.swift:36:5:36:41 | [summary param] this in toObject() :  | file://:0:0:0:0 | [summary] to write: return (return) in toObject() :  | webview.swift:84:10:84:26 | call to toObject() |
+| webview.swift:85:10:85:10 | source :  | webview.swift:37:5:37:55 | [summary param] this in toObjectOf(_:) :  | file://:0:0:0:0 | [summary] to write: return (return) in toObjectOf(_:) :  | webview.swift:85:10:85:41 | call to toObjectOf(_:) |
+| webview.swift:86:10:86:10 | source :  | webview.swift:38:5:38:42 | [summary param] this in toBool() :  | file://:0:0:0:0 | [summary] to write: return (return) in toBool() :  | webview.swift:86:10:86:24 | call to toBool() |
+| webview.swift:87:10:87:10 | source :  | webview.swift:39:5:39:44 | [summary param] this in toDouble() :  | file://:0:0:0:0 | [summary] to write: return (return) in toDouble() :  | webview.swift:87:10:87:26 | call to toDouble() |
+| webview.swift:88:10:88:10 | source :  | webview.swift:40:5:40:40 | [summary param] this in toInt32() :  | file://:0:0:0:0 | [summary] to write: return (return) in toInt32() :  | webview.swift:88:10:88:25 | call to toInt32() |
+| webview.swift:89:10:89:10 | source :  | webview.swift:41:5:41:42 | [summary param] this in toUInt32() :  | file://:0:0:0:0 | [summary] to write: return (return) in toUInt32() :  | webview.swift:89:10:89:26 | call to toUInt32() |
+| webview.swift:90:10:90:10 | source :  | webview.swift:42:5:42:62 | [summary param] this in toNumber() :  | file://:0:0:0:0 | [summary] to write: return (return) in toNumber() :  | webview.swift:90:10:90:26 | call to toNumber() |
+| webview.swift:91:10:91:10 | source :  | webview.swift:43:5:43:44 | [summary param] this in toString() :  | file://:0:0:0:0 | [summary] to write: return (return) in toString() :  | webview.swift:91:10:91:26 | call to toString() |
+| webview.swift:92:10:92:10 | source :  | webview.swift:44:5:44:44 | [summary param] this in toDate() :  | file://:0:0:0:0 | [summary] to write: return (return) in toDate() :  | webview.swift:92:10:92:24 | call to toDate() |
+| webview.swift:93:10:93:10 | source :  | webview.swift:45:5:45:44 | [summary param] this in toArray() :  | file://:0:0:0:0 | [summary] to write: return (return) in toArray() :  | webview.swift:93:10:93:25 | call to toArray() |
+| webview.swift:94:10:94:10 | source :  | webview.swift:46:5:46:65 | [summary param] this in toDictionary() :  | file://:0:0:0:0 | [summary] to write: return (return) in toDictionary() :  | webview.swift:94:10:94:30 | call to toDictionary() |
+| webview.swift:95:10:95:10 | source :  | webview.swift:47:5:47:50 | [summary param] this in toPoint() :  | file://:0:0:0:0 | [summary] to write: return (return) in toPoint() :  | webview.swift:95:10:95:25 | call to toPoint() |
+| webview.swift:96:10:96:10 | source :  | webview.swift:48:5:48:50 | [summary param] this in toRange() :  | file://:0:0:0:0 | [summary] to write: return (return) in toRange() :  | webview.swift:96:10:96:25 | call to toRange() |
+| webview.swift:97:10:97:10 | source :  | webview.swift:49:5:49:47 | [summary param] this in toRect() :  | file://:0:0:0:0 | [summary] to write: return (return) in toRect() :  | webview.swift:97:10:97:24 | call to toRect() |
+| webview.swift:98:10:98:10 | source :  | webview.swift:50:5:50:47 | [summary param] this in toSize() :  | file://:0:0:0:0 | [summary] to write: return (return) in toSize() :  | webview.swift:98:10:98:24 | call to toSize() |
+| webview.swift:99:10:99:10 | source :  | webview.swift:51:5:51:84 | [summary param] this in atIndex(_:) :  | file://:0:0:0:0 | [summary] to write: return (return) in atIndex(_:) :  | webview.swift:99:10:99:26 | call to atIndex(_:) |
+| webview.swift:100:10:100:10 | source :  | webview.swift:53:5:53:89 | [summary param] this in forProperty(_:) :  | file://:0:0:0:0 | [summary] to write: return (return) in forProperty(_:) :  | webview.swift:100:10:100:31 | call to forProperty(_:) |
+| webview.swift:103:26:103:26 | s :  | webview.swift:27:5:27:39 | [summary param] 0 in init(object:in:) :  | file://:0:0:0:0 | [summary] to write: return (return) in init(object:in:) :  | webview.swift:103:10:103:47 | call to init(object:in:) |
+| webview.swift:104:24:104:24 | s :  | webview.swift:28:5:28:38 | [summary param] 0 in init(bool:in:) :  | file://:0:0:0:0 | [summary] to write: return (return) in init(bool:in:) :  | webview.swift:104:10:104:47 | call to init(bool:in:) |
+| webview.swift:105:26:105:26 | s :  | webview.swift:29:5:29:42 | [summary param] 0 in init(double:in:) :  | file://:0:0:0:0 | [summary] to write: return (return) in init(double:in:) :  | webview.swift:105:10:105:51 | call to init(double:in:) |
+| webview.swift:106:25:106:25 | s :  | webview.swift:30:5:30:40 | [summary param] 0 in init(int32:in:) :  | file://:0:0:0:0 | [summary] to write: return (return) in init(int32:in:) :  | webview.swift:106:10:106:49 | call to init(int32:in:) |
+| webview.swift:107:26:107:26 | s :  | webview.swift:31:5:31:42 | [summary param] 0 in init(uInt32:in:) :  | file://:0:0:0:0 | [summary] to write: return (return) in init(uInt32:in:) :  | webview.swift:107:10:107:51 | call to init(uInt32:in:) |
+| webview.swift:108:25:108:25 | s :  | webview.swift:32:5:32:42 | [summary param] 0 in init(point:in:) :  | file://:0:0:0:0 | [summary] to write: return (return) in init(point:in:) :  | webview.swift:108:10:108:51 | call to init(point:in:) |
+| webview.swift:109:25:109:25 | s :  | webview.swift:33:5:33:42 | [summary param] 0 in init(range:in:) :  | file://:0:0:0:0 | [summary] to write: return (return) in init(range:in:) :  | webview.swift:109:10:109:51 | call to init(range:in:) |
+| webview.swift:110:24:110:24 | s :  | webview.swift:34:5:34:40 | [summary param] 0 in init(rect:in:) :  | file://:0:0:0:0 | [summary] to write: return (return) in init(rect:in:) :  | webview.swift:110:10:110:49 | call to init(rect:in:) |
+| webview.swift:111:24:111:24 | s :  | webview.swift:35:5:35:40 | [summary param] 0 in init(size:in:) :  | file://:0:0:0:0 | [summary] to write: return (return) in init(size:in:) :  | webview.swift:111:10:111:49 | call to init(size:in:) |
+| webview.swift:114:39:114:39 | s :  | webview.swift:52:5:52:53 | [summary param] 1 in defineProperty(_:descriptor:) :  | file://:0:0:0:0 | [summary] to write: argument this in defineProperty(_:descriptor:) :  | webview.swift:114:5:114:5 | [post] v1 :  |
+| webview.swift:118:17:118:17 | s :  | webview.swift:54:5:54:38 | [summary param] 0 in setValue(_:at:) :  | file://:0:0:0:0 | [summary] to write: argument this in setValue(_:at:) :  | webview.swift:118:5:118:5 | [post] v2 :  |
+| webview.swift:122:17:122:17 | s :  | webview.swift:55:5:55:48 | [summary param] 0 in setValue(_:forProperty:) :  | file://:0:0:0:0 | [summary] to write: argument this in setValue(_:forProperty:) :  | webview.swift:122:5:122:5 | [post] v3 :  |
 #select
 | data.swift:90:12:90:12 | dataTainted3 | data.swift:89:41:89:48 | call to source() :  | data.swift:90:12:90:12 | dataTainted3 | result |
 | data.swift:94:12:94:12 | dataTainted4 | data.swift:93:34:93:41 | call to source() :  | data.swift:94:12:94:12 | dataTainted4 | result |
@@ -1359,33 +1359,33 @@ subpaths
 | url.swift:102:15:102:67 | ...! | url.swift:57:16:57:23 | call to source() :  | url.swift:102:15:102:67 | ...! | result |
 | url.swift:118:12:118:12 | ...! | url.swift:57:16:57:23 | call to source() :  | url.swift:118:12:118:12 | ...! | result |
 | url.swift:121:15:121:19 | ...! | url.swift:57:16:57:23 | call to source() :  | url.swift:121:15:121:19 | ...! | result |
-| webview.swift:52:10:52:41 | .body | webview.swift:52:11:52:18 | call to source() :  | webview.swift:52:10:52:41 | .body | result |
-| webview.swift:59:10:59:26 | call to toObject() | webview.swift:56:13:56:20 | call to source() :  | webview.swift:59:10:59:26 | call to toObject() | result |
-| webview.swift:60:10:60:41 | call to toObjectOf(_:) | webview.swift:56:13:56:20 | call to source() :  | webview.swift:60:10:60:41 | call to toObjectOf(_:) | result |
-| webview.swift:61:10:61:24 | call to toBool() | webview.swift:56:13:56:20 | call to source() :  | webview.swift:61:10:61:24 | call to toBool() | result |
-| webview.swift:62:10:62:26 | call to toDouble() | webview.swift:56:13:56:20 | call to source() :  | webview.swift:62:10:62:26 | call to toDouble() | result |
-| webview.swift:63:10:63:25 | call to toInt32() | webview.swift:56:13:56:20 | call to source() :  | webview.swift:63:10:63:25 | call to toInt32() | result |
-| webview.swift:64:10:64:26 | call to toUInt32() | webview.swift:56:13:56:20 | call to source() :  | webview.swift:64:10:64:26 | call to toUInt32() | result |
-| webview.swift:65:10:65:26 | call to toNumber() | webview.swift:56:13:56:20 | call to source() :  | webview.swift:65:10:65:26 | call to toNumber() | result |
-| webview.swift:66:10:66:26 | call to toString() | webview.swift:56:13:56:20 | call to source() :  | webview.swift:66:10:66:26 | call to toString() | result |
-| webview.swift:67:10:67:24 | call to toDate() | webview.swift:56:13:56:20 | call to source() :  | webview.swift:67:10:67:24 | call to toDate() | result |
-| webview.swift:68:10:68:25 | call to toArray() | webview.swift:56:13:56:20 | call to source() :  | webview.swift:68:10:68:25 | call to toArray() | result |
-| webview.swift:69:10:69:30 | call to toDictionary() | webview.swift:56:13:56:20 | call to source() :  | webview.swift:69:10:69:30 | call to toDictionary() | result |
-| webview.swift:70:10:70:25 | call to toPoint() | webview.swift:56:13:56:20 | call to source() :  | webview.swift:70:10:70:25 | call to toPoint() | result |
-| webview.swift:71:10:71:25 | call to toRange() | webview.swift:56:13:56:20 | call to source() :  | webview.swift:71:10:71:25 | call to toRange() | result |
-| webview.swift:72:10:72:24 | call to toRect() | webview.swift:56:13:56:20 | call to source() :  | webview.swift:72:10:72:24 | call to toRect() | result |
-| webview.swift:73:10:73:24 | call to toSize() | webview.swift:56:13:56:20 | call to source() :  | webview.swift:73:10:73:24 | call to toSize() | result |
-| webview.swift:74:10:74:26 | call to atIndex(_:) | webview.swift:56:13:56:20 | call to source() :  | webview.swift:74:10:74:26 | call to atIndex(_:) | result |
-| webview.swift:75:10:75:31 | call to forProperty(_:) | webview.swift:56:13:56:20 | call to source() :  | webview.swift:75:10:75:31 | call to forProperty(_:) | result |
-| webview.swift:78:10:78:47 | call to init(object:in:) | webview.swift:56:13:56:20 | call to source() :  | webview.swift:78:10:78:47 | call to init(object:in:) | result |
-| webview.swift:79:10:79:47 | call to init(bool:in:) | webview.swift:56:13:56:20 | call to source() :  | webview.swift:79:10:79:47 | call to init(bool:in:) | result |
-| webview.swift:80:10:80:51 | call to init(double:in:) | webview.swift:56:13:56:20 | call to source() :  | webview.swift:80:10:80:51 | call to init(double:in:) | result |
-| webview.swift:81:10:81:49 | call to init(int32:in:) | webview.swift:56:13:56:20 | call to source() :  | webview.swift:81:10:81:49 | call to init(int32:in:) | result |
-| webview.swift:82:10:82:51 | call to init(uInt32:in:) | webview.swift:56:13:56:20 | call to source() :  | webview.swift:82:10:82:51 | call to init(uInt32:in:) | result |
-| webview.swift:83:10:83:51 | call to init(point:in:) | webview.swift:56:13:56:20 | call to source() :  | webview.swift:83:10:83:51 | call to init(point:in:) | result |
-| webview.swift:84:10:84:51 | call to init(range:in:) | webview.swift:56:13:56:20 | call to source() :  | webview.swift:84:10:84:51 | call to init(range:in:) | result |
-| webview.swift:85:10:85:49 | call to init(rect:in:) | webview.swift:56:13:56:20 | call to source() :  | webview.swift:85:10:85:49 | call to init(rect:in:) | result |
-| webview.swift:86:10:86:49 | call to init(size:in:) | webview.swift:56:13:56:20 | call to source() :  | webview.swift:86:10:86:49 | call to init(size:in:) | result |
-| webview.swift:90:10:90:10 | v1 | webview.swift:56:13:56:20 | call to source() :  | webview.swift:90:10:90:10 | v1 | result |
-| webview.swift:94:10:94:10 | v2 | webview.swift:56:13:56:20 | call to source() :  | webview.swift:94:10:94:10 | v2 | result |
-| webview.swift:98:10:98:10 | v3 | webview.swift:56:13:56:20 | call to source() :  | webview.swift:98:10:98:10 | v3 | result |
+| webview.swift:77:10:77:41 | .body | webview.swift:77:11:77:18 | call to source() :  | webview.swift:77:10:77:41 | .body | result |
+| webview.swift:84:10:84:26 | call to toObject() | webview.swift:81:13:81:20 | call to source() :  | webview.swift:84:10:84:26 | call to toObject() | result |
+| webview.swift:85:10:85:41 | call to toObjectOf(_:) | webview.swift:81:13:81:20 | call to source() :  | webview.swift:85:10:85:41 | call to toObjectOf(_:) | result |
+| webview.swift:86:10:86:24 | call to toBool() | webview.swift:81:13:81:20 | call to source() :  | webview.swift:86:10:86:24 | call to toBool() | result |
+| webview.swift:87:10:87:26 | call to toDouble() | webview.swift:81:13:81:20 | call to source() :  | webview.swift:87:10:87:26 | call to toDouble() | result |
+| webview.swift:88:10:88:25 | call to toInt32() | webview.swift:81:13:81:20 | call to source() :  | webview.swift:88:10:88:25 | call to toInt32() | result |
+| webview.swift:89:10:89:26 | call to toUInt32() | webview.swift:81:13:81:20 | call to source() :  | webview.swift:89:10:89:26 | call to toUInt32() | result |
+| webview.swift:90:10:90:26 | call to toNumber() | webview.swift:81:13:81:20 | call to source() :  | webview.swift:90:10:90:26 | call to toNumber() | result |
+| webview.swift:91:10:91:26 | call to toString() | webview.swift:81:13:81:20 | call to source() :  | webview.swift:91:10:91:26 | call to toString() | result |
+| webview.swift:92:10:92:24 | call to toDate() | webview.swift:81:13:81:20 | call to source() :  | webview.swift:92:10:92:24 | call to toDate() | result |
+| webview.swift:93:10:93:25 | call to toArray() | webview.swift:81:13:81:20 | call to source() :  | webview.swift:93:10:93:25 | call to toArray() | result |
+| webview.swift:94:10:94:30 | call to toDictionary() | webview.swift:81:13:81:20 | call to source() :  | webview.swift:94:10:94:30 | call to toDictionary() | result |
+| webview.swift:95:10:95:25 | call to toPoint() | webview.swift:81:13:81:20 | call to source() :  | webview.swift:95:10:95:25 | call to toPoint() | result |
+| webview.swift:96:10:96:25 | call to toRange() | webview.swift:81:13:81:20 | call to source() :  | webview.swift:96:10:96:25 | call to toRange() | result |
+| webview.swift:97:10:97:24 | call to toRect() | webview.swift:81:13:81:20 | call to source() :  | webview.swift:97:10:97:24 | call to toRect() | result |
+| webview.swift:98:10:98:24 | call to toSize() | webview.swift:81:13:81:20 | call to source() :  | webview.swift:98:10:98:24 | call to toSize() | result |
+| webview.swift:99:10:99:26 | call to atIndex(_:) | webview.swift:81:13:81:20 | call to source() :  | webview.swift:99:10:99:26 | call to atIndex(_:) | result |
+| webview.swift:100:10:100:31 | call to forProperty(_:) | webview.swift:81:13:81:20 | call to source() :  | webview.swift:100:10:100:31 | call to forProperty(_:) | result |
+| webview.swift:103:10:103:47 | call to init(object:in:) | webview.swift:81:13:81:20 | call to source() :  | webview.swift:103:10:103:47 | call to init(object:in:) | result |
+| webview.swift:104:10:104:47 | call to init(bool:in:) | webview.swift:81:13:81:20 | call to source() :  | webview.swift:104:10:104:47 | call to init(bool:in:) | result |
+| webview.swift:105:10:105:51 | call to init(double:in:) | webview.swift:81:13:81:20 | call to source() :  | webview.swift:105:10:105:51 | call to init(double:in:) | result |
+| webview.swift:106:10:106:49 | call to init(int32:in:) | webview.swift:81:13:81:20 | call to source() :  | webview.swift:106:10:106:49 | call to init(int32:in:) | result |
+| webview.swift:107:10:107:51 | call to init(uInt32:in:) | webview.swift:81:13:81:20 | call to source() :  | webview.swift:107:10:107:51 | call to init(uInt32:in:) | result |
+| webview.swift:108:10:108:51 | call to init(point:in:) | webview.swift:81:13:81:20 | call to source() :  | webview.swift:108:10:108:51 | call to init(point:in:) | result |
+| webview.swift:109:10:109:51 | call to init(range:in:) | webview.swift:81:13:81:20 | call to source() :  | webview.swift:109:10:109:51 | call to init(range:in:) | result |
+| webview.swift:110:10:110:49 | call to init(rect:in:) | webview.swift:81:13:81:20 | call to source() :  | webview.swift:110:10:110:49 | call to init(rect:in:) | result |
+| webview.swift:111:10:111:49 | call to init(size:in:) | webview.swift:81:13:81:20 | call to source() :  | webview.swift:111:10:111:49 | call to init(size:in:) | result |
+| webview.swift:115:10:115:10 | v1 | webview.swift:81:13:81:20 | call to source() :  | webview.swift:115:10:115:10 | v1 | result |
+| webview.swift:119:10:119:10 | v2 | webview.swift:81:13:81:20 | call to source() :  | webview.swift:119:10:119:10 | v2 | result |
+| webview.swift:123:10:123:10 | v3 | webview.swift:81:13:81:20 | call to source() :  | webview.swift:123:10:123:10 | v3 | result |
diff --git a/swift/ql/test/library-tests/dataflow/taint/webview.swift b/swift/ql/test/library-tests/dataflow/taint/webview.swift
index f0a7f77d12f..803415ae2a8 100644
--- a/swift/ql/test/library-tests/dataflow/taint/webview.swift
+++ b/swift/ql/test/library-tests/dataflow/taint/webview.swift
@@ -1,17 +1,28 @@
 
 // --- stubs ---
-class WKScriptMessage {
+
+class NSObject {}
+
+class WKScriptMessage : NSObject {
     open var body: Any { get { return "" } }
 }
+
 class NSNumber {
     init(value: Int) {}
 }
+
 class Date {}
+
 class CGPoint {}
+
 class NSRange {}
+
 class CGRect {}
+
 class CGSize{}
+
 class JSContext {}
+
 class JSValue {
     init(object: Any, in: JSContext) {}
     init(bool: Bool, in: JSContext) {}
@@ -44,56 +55,86 @@ class JSValue {
     func setValue(_: Any!, forProperty: Any!) {}
 }
 
+enum WKUserScriptInjectionTime : Int {
+    case atDocumentStart = 0
+}
+
+class WKContentWorld : NSObject {}
+
+class WKUserScript : NSObject {
+    init(source: String, injectionTime: WKUserScriptInjectionTime, forMainFrameOnly: Bool) {}
+    init(source: String, injectionTime: WKUserScriptInjectionTime, forMainFrameOnly: Bool, in contentWorld: WKContentWorld) {}
+
+    var source: String { get { return "" } }
+}
+
 // --- tests ---
+
 func source() -> Any { return "" }
 func sink(_: Any) {}
 
 func testInheritBodyTaint() {
-    sink((source() as! WKScriptMessage).body) // $ tainted=52
+    sink((source() as! WKScriptMessage).body) // $ tainted=77
 }
 
 func testJsValue() {
     let s = source()
-    
+
     let source = s as! JSValue
-    sink(source.toObject() as Any) // $ tainted=56
-    sink(source.toObjectOf(NSNumber.self) as Any) // $ tainted=56
-    sink(source.toBool()) // $ tainted=56
-    sink(source.toDouble()) // $ tainted=56
-    sink(source.toInt32()) // $ tainted=56
-    sink(source.toUInt32()) // $ tainted=56
-    sink(source.toNumber() as Any) // $ tainted=56
-    sink(source.toString() as Any) // $ tainted=56
-    sink(source.toDate() as Any) // $ tainted=56
-    sink(source.toArray() as Any) // $ tainted=56
-    sink(source.toDictionary() as Any) // $ tainted=56
-    sink(source.toPoint()) // $ tainted=56
-    sink(source.toRange()) // $ tainted=56
-    sink(source.toRect()) // $ tainted=56
-    sink(source.toSize()) // $ tainted=56
-    sink(source.atIndex(0) as Any) // $ tainted=56
-    sink(source.forProperty("") as Any) // $ tainted=56
+    sink(source.toObject() as Any) // $ tainted=81
+    sink(source.toObjectOf(NSNumber.self) as Any) // $ tainted=81
+    sink(source.toBool()) // $ tainted=81
+    sink(source.toDouble()) // $ tainted=81
+    sink(source.toInt32()) // $ tainted=81
+    sink(source.toUInt32()) // $ tainted=81
+    sink(source.toNumber() as Any) // $ tainted=81
+    sink(source.toString() as Any) // $ tainted=81
+    sink(source.toDate() as Any) // $ tainted=81
+    sink(source.toArray() as Any) // $ tainted=81
+    sink(source.toDictionary() as Any) // $ tainted=81
+    sink(source.toPoint()) // $ tainted=81
+    sink(source.toRange()) // $ tainted=81
+    sink(source.toRect()) // $ tainted=81
+    sink(source.toSize()) // $ tainted=81
+    sink(source.atIndex(0) as Any) // $ tainted=81
+    sink(source.forProperty("") as Any) // $ tainted=81
 
     let context = JSContext()
-    sink(JSValue(object: s as Any, in: context)) // $ tainted=56
-    sink(JSValue(bool: s as! Bool, in: context)) // $ tainted=56
-    sink(JSValue(double: s as! Double, in: context)) // $ tainted=56
-    sink(JSValue(int32: s as! Int32, in: context)) // $ tainted=56
-    sink(JSValue(uInt32: s as! UInt32, in: context)) // $ tainted=56
-    sink(JSValue(point: s as! CGPoint, in: context)) // $ tainted=56
-    sink(JSValue(range: s as! NSRange, in: context)) // $ tainted=56
-    sink(JSValue(rect: s as! CGRect, in: context)) // $ tainted=56
-    sink(JSValue(size: s as! CGSize, in: context)) // $ tainted=56
-    
+    sink(JSValue(object: s as Any, in: context)) // $ tainted=81
+    sink(JSValue(bool: s as! Bool, in: context)) // $ tainted=81
+    sink(JSValue(double: s as! Double, in: context)) // $ tainted=81
+    sink(JSValue(int32: s as! Int32, in: context)) // $ tainted=81
+    sink(JSValue(uInt32: s as! UInt32, in: context)) // $ tainted=81
+    sink(JSValue(point: s as! CGPoint, in: context)) // $ tainted=81
+    sink(JSValue(range: s as! NSRange, in: context)) // $ tainted=81
+    sink(JSValue(rect: s as! CGRect, in: context)) // $ tainted=81
+    sink(JSValue(size: s as! CGSize, in: context)) // $ tainted=81
+
     let v1 = JSValue(object: "", in: context)
     v1.defineProperty("", descriptor: s as Any)
-    sink(v1) // $ tainted=56
+    sink(v1) // $ tainted=81
 
     let v2 = JSValue(object: "", in: context)
     v2.setValue(s as Any, at: 0)
-    sink(v2) // $ tainted=56
+    sink(v2) // $ tainted=81
 
     let v3 = JSValue(object: "", in: context)
     v3.setValue(s as Any, forProperty: "")
-    sink(v3) // $ tainted=56
+    sink(v3) // $ tainted=81
+}
+
+func testWKUserScript() {
+    let atStart = WKUserScriptInjectionTime.atDocumentStart
+    let a = WKUserScript(source: "abc", injectionTime: atStart, forMainFrameOnly: false)
+    sink(a)
+    sink(a.source)
+
+    let b = WKUserScript(source: source() as! String, injectionTime: atStart, forMainFrameOnly: false)
+    sink(b) // $ MISSING: tainted=132
+    sink(b.source) // $ MISSING: tainted=132
+
+    let world = WKContentWorld()
+    let c = WKUserScript(source: source() as! String, injectionTime: atStart, forMainFrameOnly: false, in: world)
+    sink(c) // $ MISSING: tainted=137
+    sink(c.source) // $ MISSING: tainted=137
 }

From 1e63893411544df87370f5544da0720a743cf5e9 Mon Sep 17 00:00:00 2001
From: Tom Hvitved <hvitved@github.com>
Date: Mon, 28 Nov 2022 13:12:24 +0100
Subject: [PATCH 0687/1420] C#: Add integration test that checks whether env
 vars are passed through autobuilder

---
 .../posix-only/inherit-env-vars/Program.cs             |  1 +
 .../posix-only/inherit-env-vars/build.sh               |  2 ++
 .../posix-only/inherit-env-vars/proj.csproj.no_auto    | 10 ++++++++++
 .../posix-only/inherit-env-vars/test.py                |  6 ++++++
 4 files changed, 19 insertions(+)
 create mode 100644 csharp/ql/integration-tests/posix-only/inherit-env-vars/Program.cs
 create mode 100644 csharp/ql/integration-tests/posix-only/inherit-env-vars/build.sh
 create mode 100644 csharp/ql/integration-tests/posix-only/inherit-env-vars/proj.csproj.no_auto
 create mode 100644 csharp/ql/integration-tests/posix-only/inherit-env-vars/test.py

diff --git a/csharp/ql/integration-tests/posix-only/inherit-env-vars/Program.cs b/csharp/ql/integration-tests/posix-only/inherit-env-vars/Program.cs
new file mode 100644
index 00000000000..e9708d0b5d2
--- /dev/null
+++ b/csharp/ql/integration-tests/posix-only/inherit-env-vars/Program.cs
@@ -0,0 +1 @@
+Console.WriteLine(args[0]);
diff --git a/csharp/ql/integration-tests/posix-only/inherit-env-vars/build.sh b/csharp/ql/integration-tests/posix-only/inherit-env-vars/build.sh
new file mode 100644
index 00000000000..e0f0c8dccd3
--- /dev/null
+++ b/csharp/ql/integration-tests/posix-only/inherit-env-vars/build.sh
@@ -0,0 +1,2 @@
+cp $PROJECT_TO_BUILD temp.csproj
+dotnet build temp.csproj
diff --git a/csharp/ql/integration-tests/posix-only/inherit-env-vars/proj.csproj.no_auto b/csharp/ql/integration-tests/posix-only/inherit-env-vars/proj.csproj.no_auto
new file mode 100644
index 00000000000..74abf5c9766
--- /dev/null
+++ b/csharp/ql/integration-tests/posix-only/inherit-env-vars/proj.csproj.no_auto
@@ -0,0 +1,10 @@
+<Project Sdk="Microsoft.NET.Sdk">
+
+  <PropertyGroup>
+    <OutputType>Exe</OutputType>
+    <TargetFramework>net6.0</TargetFramework>
+    <ImplicitUsings>enable</ImplicitUsings>
+    <Nullable>enable</Nullable>
+  </PropertyGroup>
+
+</Project>
diff --git a/csharp/ql/integration-tests/posix-only/inherit-env-vars/test.py b/csharp/ql/integration-tests/posix-only/inherit-env-vars/test.py
new file mode 100644
index 00000000000..1b49fb18519
--- /dev/null
+++ b/csharp/ql/integration-tests/posix-only/inherit-env-vars/test.py
@@ -0,0 +1,6 @@
+from create_database_utils import *
+import os
+
+os.environ["PROJECT_TO_BUILD"] = "proj.csproj.no_auto"
+
+run_codeql_database_create([], test_db="default-db", db=None, lang="csharp")

From 7863bc2c99a7419b95d1d6ebc2388c3b396db6c3 Mon Sep 17 00:00:00 2001
From: Ian Lynagh <igfoo@github.com>
Date: Mon, 28 Nov 2022 12:14:36 +0000
Subject: [PATCH 0688/1420] Kotlin: Accept test output

---
 .../reflection/reflection.expected            | 35 +++++++++++++++++++
 1 file changed, 35 insertions(+)

diff --git a/java/ql/test/kotlin/library-tests/reflection/reflection.expected b/java/ql/test/kotlin/library-tests/reflection/reflection.expected
index e6a864b11a4..4fe78050665 100644
--- a/java/ql/test/kotlin/library-tests/reflection/reflection.expected
+++ b/java/ql/test/kotlin/library-tests/reflection/reflection.expected
@@ -282,23 +282,58 @@ compGenerated
 | file://<external>/LongRange.class:0:0:0:0 | forEach | Forwarder for a Kotlin class inheriting an interface default method |
 | file://<external>/LongRange.class:0:0:0:0 | spliterator | Forwarder for a Kotlin class inheriting an interface default method |
 | file://<external>/String.class:0:0:0:0 | isEmpty | Forwarder for a Kotlin class inheriting an interface default method |
+| reflection.kt:7:49:7:54 | new Function2<Ccc,Integer,Double>(...) { ... } | The class around a local function, a lambda, or a function reference |
+| reflection.kt:10:38:10:42 | new KProperty1<C,Integer>(...) { ... } | The class around a local function, a lambda, or a function reference |
+| reflection.kt:14:38:14:44 | new Function1<C,Integer>(...) { ... } | The class around a local function, a lambda, or a function reference |
+| reflection.kt:15:35:15:41 | new KProperty0<Integer>(...) { ... } | The class around a local function, a lambda, or a function reference |
+| reflection.kt:17:45:17:49 | new KMutableProperty1<C,Integer>(...) { ... } | The class around a local function, a lambda, or a function reference |
+| reflection.kt:21:44:21:50 | new Function2<C,Integer,Unit>(...) { ... } | The class around a local function, a lambda, or a function reference |
+| reflection.kt:22:42:22:48 | new KMutableProperty0<Integer>(...) { ... } | The class around a local function, a lambda, or a function reference |
+| reflection.kt:24:46:24:64 | new Function1<KCallable<?>,Boolean>(...) { ... } | The class around a local function, a lambda, or a function reference |
 | reflection.kt:33:9:33:23 | getP0 | Default property accessor |
 | reflection.kt:34:9:34:23 | getP1 | Default property accessor |
 | reflection.kt:34:9:34:23 | setP1 | Default property accessor |
+| reflection.kt:50:13:50:28 | new KProperty1<String,Character>(...) { ... } | The class around a local function, a lambda, or a function reference |
+| reflection.kt:51:13:51:28 | new KProperty0<Character>(...) { ... } | The class around a local function, a lambda, or a function reference |
+| reflection.kt:60:17:60:32 | new Function2<Generic<Integer>,Integer,String>(...) { ... } | The class around a local function, a lambda, or a function reference |
+| reflection.kt:61:17:61:34 | new Function1<Integer,String>(...) { ... } | The class around a local function, a lambda, or a function reference |
+| reflection.kt:62:17:62:34 | new Function1<Generic<Integer>,String>(...) { ... } | The class around a local function, a lambda, or a function reference |
+| reflection.kt:63:17:63:36 | new Function0<String>(...) { ... } | The class around a local function, a lambda, or a function reference |
+| reflection.kt:64:17:64:34 | new Function1<Generic<Integer>,String>(...) { ... } | The class around a local function, a lambda, or a function reference |
+| reflection.kt:65:17:65:36 | new Function0<String>(...) { ... } | The class around a local function, a lambda, or a function reference |
+| reflection.kt:67:17:67:32 | new KMutableProperty1<Generic<Integer>,Integer>(...) { ... } | The class around a local function, a lambda, or a function reference |
+| reflection.kt:68:17:68:34 | new KMutableProperty0<Integer>(...) { ... } | The class around a local function, a lambda, or a function reference |
+| reflection.kt:70:17:70:30 | new KProperty0<Integer>(...) { ... } | The class around a local function, a lambda, or a function reference |
+| reflection.kt:71:17:71:34 | new KProperty0<Integer>(...) { ... } | The class around a local function, a lambda, or a function reference |
+| reflection.kt:72:17:72:35 | new KMutableProperty0<Integer>(...) { ... } | The class around a local function, a lambda, or a function reference |
 | reflection.kt:83:17:83:28 | getValue | Default property accessor |
+| reflection.kt:90:18:90:24 | new Function1<String,Inner<String>>(...) { ... } | The class around a local function, a lambda, or a function reference |
+| reflection.kt:97:14:97:21 | new Function1<String,Class2<String>>(...) { ... } | The class around a local function, a lambda, or a function reference |
+| reflection.kt:98:14:98:17 | new Function1<String,Unit>(...) { ... } | The class around a local function, a lambda, or a function reference |
+| reflection.kt:99:14:99:29 | new Function1<String,Inner<String>>(...) { ... } | The class around a local function, a lambda, or a function reference |
 | reflection.kt:105:18:105:31 | getProp1 | Default property accessor |
 | reflection.kt:105:18:105:31 | setProp1 | Default property accessor |
+| reflection.kt:109:17:109:27 | new KMutableProperty0<Integer>(...) { ... } | The class around a local function, a lambda, or a function reference |
+| reflection.kt:115:9:115:27 |  | The class around a local function, a lambda, or a function reference |
+| reflection.kt:116:40:116:44 | new Function1<Integer,Unit>(...) { ... } | The class around a local function, a lambda, or a function reference |
 | reflection.kt:126:9:126:13 |  | Declaring classes of adapter functions in Kotlin |
+| reflection.kt:126:9:126:13 | new Function0<Unit>(...) { ... } | The class around a local function, a lambda, or a function reference |
 | reflection.kt:131:1:131:50 | takesOptionalParam$default | Forwarder for Kotlin calls that need default arguments filling in |
 | reflection.kt:134:21:134:40 |  | Declaring classes of adapter functions in Kotlin |
+| reflection.kt:134:21:134:40 | new Function1<Integer,Integer>(...) { ... } | The class around a local function, a lambda, or a function reference |
 | reflection.kt:140:5:140:54 | takesOptionalParam$default | Forwarder for Kotlin calls that need default arguments filling in |
 | reflection.kt:144:21:144:41 |  | Declaring classes of adapter functions in Kotlin |
+| reflection.kt:144:21:144:41 | new Function1<Integer,Integer>(...) { ... } | The class around a local function, a lambda, or a function reference |
 | reflection.kt:145:32:145:70 |  | Declaring classes of adapter functions in Kotlin |
+| reflection.kt:145:32:145:70 | new Function2<MemberOptionalsTest,Integer,Integer>(...) { ... } | The class around a local function, a lambda, or a function reference |
 | reflection.kt:150:1:150:60 | extTakesOptionalParam$default | Forwarder for Kotlin calls that need default arguments filling in |
 | reflection.kt:153:21:153:44 |  | Declaring classes of adapter functions in Kotlin |
+| reflection.kt:153:21:153:44 | new Function1<Integer,Integer>(...) { ... } | The class around a local function, a lambda, or a function reference |
 | reflection.kt:154:33:154:61 |  | Declaring classes of adapter functions in Kotlin |
+| reflection.kt:154:33:154:61 | new Function2<String,Integer,Integer>(...) { ... } | The class around a local function, a lambda, or a function reference |
 | reflection.kt:157:1:157:49 | ConstructorOptional | Forwarder for Kotlin calls that need default arguments filling in |
 | reflection.kt:162:25:162:45 |  | Declaring classes of adapter functions in Kotlin |
+| reflection.kt:162:25:162:45 | new Function1<Integer,ConstructorOptional>(...) { ... } | The class around a local function, a lambda, or a function reference |
 propertyReferenceOverrides
 | reflection.kt:10:38:10:42 | ...::... | reflection.kt:10:38:10:42 | get | kotlin.reflect.KProperty1<C,Integer>.get(Reflection.C) |
 | reflection.kt:10:38:10:42 | ...::... | reflection.kt:10:38:10:42 | invoke | kotlin.jvm.functions.Function1<C,Integer>.invoke(Reflection.C) |

From a32363de79b4c60b4a52706a0f9fc1b959995a82 Mon Sep 17 00:00:00 2001
From: Ian Lynagh <igfoo@github.com>
Date: Mon, 28 Nov 2022 12:14:50 +0000
Subject: [PATCH 0689/1420] Kotlin: Avoid giving a single class 2
 compiler-generated kinds

---
 .../src/main/kotlin/KotlinFileExtractor.kt    | 26 ++++++++++++-------
 1 file changed, 16 insertions(+), 10 deletions(-)

diff --git a/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt b/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt
index 3d9b4ad37ce..bca94f95114 100644
--- a/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt
+++ b/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt
@@ -1507,14 +1507,15 @@ open class KotlinFileExtractor(
                 }
                 is IrFunction -> {
                     if (s.isLocalFunction()) {
-                        val classId = extractGeneratedClass(s, listOf(pluginContext.irBuiltIns.anyType))
+                        val compilerGeneratedKind = if (s.origin == IrDeclarationOrigin.ADAPTER_FOR_CALLABLE_REFERENCE) {
+                            CompilerGeneratedKinds.DECLARING_CLASSES_OF_ADAPTER_FUNCTIONS
+                        } else {
+                            null
+                        }
+                        val classId = extractGeneratedClass(s, listOf(pluginContext.irBuiltIns.anyType), compilerGeneratedKind = compilerGeneratedKind)
                         extractLocalTypeDeclStmt(classId, s, callable, parent, idx)
                         val ids = getLocallyVisibleFunctionLabels(s)
                         tw.writeKtLocalFunction(ids.function)
-
-                        if (s.origin == IrDeclarationOrigin.ADAPTER_FOR_CALLABLE_REFERENCE) {
-                            tw.writeCompiler_generated(classId, CompilerGeneratedKinds.DECLARING_CLASSES_OF_ADAPTER_FUNCTIONS.kind)
-                        }
                     } else {
                         logger.errorElement("Expected to find local function", s)
                     }
@@ -4685,7 +4686,7 @@ open class KotlinFileExtractor(
                 val baseClass = pluginContext.referenceClass(FqName("kotlin.jvm.internal.FunctionReference"))?.owner?.typeWith()
                     ?: pluginContext.irBuiltIns.anyType
 
-                val classId = extractGeneratedClass(ids, listOf(baseClass, fnInterfaceType), locId, functionReferenceExpr, declarationParent, { it.valueParameters.size == 1 }) {
+                val classId = extractGeneratedClass(ids, listOf(baseClass, fnInterfaceType), locId, functionReferenceExpr, declarationParent, null, { it.valueParameters.size == 1 }) {
                     // The argument to FunctionReference's constructor is the function arity.
                     extractConstantInteger(type.arguments.size - 1, locId, it, 0, ids.constructor, it)
                 }
@@ -5389,14 +5390,15 @@ open class KotlinFileExtractor(
         locId: Label<DbLocation>,
         elementToReportOn: IrElement,
         declarationParent: IrDeclarationParent,
+        compilerGeneratedKind: CompilerGeneratedKinds? = null,
         superConstructorSelector: (IrFunction) -> Boolean = { it.valueParameters.isEmpty() },
-        extractSuperconstructorArgs: (Label<DbSuperconstructorinvocationstmt>) -> Unit = {}
+        extractSuperconstructorArgs: (Label<DbSuperconstructorinvocationstmt>) -> Unit = {},
     ): Label<out DbClass> {
         // Write class
         val id = ids.type.javaResult.id.cast<DbClass>()
         val pkgId = extractPackage("")
         tw.writeClasses(id, "", pkgId, id)
-        tw.writeCompiler_generated(id, CompilerGeneratedKinds.CALLABLE_CLASS.kind)
+        tw.writeCompiler_generated(id, (compilerGeneratedKind ?: CompilerGeneratedKinds.CALLABLE_CLASS).kind)
         tw.writeHasLocation(id, locId)
 
         // Extract constructor
@@ -5443,11 +5445,15 @@ open class KotlinFileExtractor(
     /**
      * Extracts the class around a local function or a lambda. The superclass must have a no-arg constructor.
      */
-    private fun extractGeneratedClass(localFunction: IrFunction, superTypes: List<IrType>) : Label<out DbClass> {
+    private fun extractGeneratedClass(
+        localFunction: IrFunction,
+        superTypes: List<IrType>,
+        compilerGeneratedKind: CompilerGeneratedKinds? = null
+    ) : Label<out DbClass> {
         with("generated class", localFunction) {
             val ids = getLocallyVisibleFunctionLabels(localFunction)
 
-            val id = extractGeneratedClass(ids, superTypes, tw.getLocation(localFunction), localFunction, localFunction.parent)
+            val id = extractGeneratedClass(ids, superTypes, tw.getLocation(localFunction), localFunction, localFunction.parent, compilerGeneratedKind = compilerGeneratedKind)
 
             // Extract local function as a member
             extractFunction(localFunction, id, extractBody = true, extractMethodAndParameterTypeAccesses = true, null, listOf())

From 116d9667e714edee3f766401f10eb764ab4af28d Mon Sep 17 00:00:00 2001
From: Geoffrey White <40627776+geoffw0@users.noreply.github.com>
Date: Mon, 28 Nov 2022 12:15:38 +0000
Subject: [PATCH 0690/1420] Swift: Remove special case from query.

---
 .../queries/Security/CWE-094/UnsafeJsEval.ql   | 11 -----------
 .../Security/CWE-094/UnsafeJsEval.expected     | 18 ------------------
 2 files changed, 29 deletions(-)

diff --git a/swift/ql/src/queries/Security/CWE-094/UnsafeJsEval.ql b/swift/ql/src/queries/Security/CWE-094/UnsafeJsEval.ql
index e5764416d27..f7c2a3569b7 100644
--- a/swift/ql/src/queries/Security/CWE-094/UnsafeJsEval.ql
+++ b/swift/ql/src/queries/Security/CWE-094/UnsafeJsEval.ql
@@ -97,17 +97,6 @@ class UnsafeJsEvalConfig extends TaintTracking::Configuration {
   // TODO: convert to new taint flow models
   override predicate isAdditionalTaintStep(DataFlow::Node nodeFrom, DataFlow::Node nodeTo) {
     exists(Argument arg |
-      arg =
-        any(CallExpr ce |
-          ce.getStaticTarget()
-              .(MethodDecl)
-              .hasQualifiedName("WKUserScript",
-                [
-                  "init(source:injectionTime:forMainFrameOnly:)",
-                  "init(source:injectionTime:forMainFrameOnly:in:)"
-                ])
-        ).getArgument(0)
-      or
       arg =
         any(CallExpr ce |
           ce.getStaticTarget().(MethodDecl).hasQualifiedName("String", "init(decoding:as:)")
diff --git a/swift/ql/test/query-tests/Security/CWE-094/UnsafeJsEval.expected b/swift/ql/test/query-tests/Security/CWE-094/UnsafeJsEval.expected
index e6b4fb45005..9736090e8e3 100644
--- a/swift/ql/test/query-tests/Security/CWE-094/UnsafeJsEval.expected
+++ b/swift/ql/test/query-tests/Security/CWE-094/UnsafeJsEval.expected
@@ -6,21 +6,15 @@ edges
 | UnsafeJsEval.swift:201:21:201:35 | call to getRemoteData() :  | UnsafeJsEval.swift:205:7:205:7 | remoteString :  |
 | UnsafeJsEval.swift:201:21:201:35 | call to getRemoteData() :  | UnsafeJsEval.swift:208:7:208:39 | ... .+(_:_:) ... :  |
 | UnsafeJsEval.swift:201:21:201:35 | call to getRemoteData() :  | UnsafeJsEval.swift:211:24:211:37 | .utf8 :  |
-| UnsafeJsEval.swift:204:7:204:66 | try! ... :  | UnsafeJsEval.swift:265:13:265:13 | string :  |
-| UnsafeJsEval.swift:204:7:204:66 | try! ... :  | UnsafeJsEval.swift:268:13:268:13 | string :  |
 | UnsafeJsEval.swift:204:7:204:66 | try! ... :  | UnsafeJsEval.swift:276:13:276:13 | string :  |
 | UnsafeJsEval.swift:204:7:204:66 | try! ... :  | UnsafeJsEval.swift:279:13:279:13 | string :  |
 | UnsafeJsEval.swift:204:7:204:66 | try! ... :  | UnsafeJsEval.swift:285:13:285:13 | string :  |
 | UnsafeJsEval.swift:204:7:204:66 | try! ... :  | UnsafeJsEval.swift:299:13:299:13 | string :  |
 | UnsafeJsEval.swift:204:12:204:66 | call to init(contentsOf:) :  | UnsafeJsEval.swift:204:7:204:66 | try! ... :  |
-| UnsafeJsEval.swift:205:7:205:7 | remoteString :  | UnsafeJsEval.swift:265:13:265:13 | string :  |
-| UnsafeJsEval.swift:205:7:205:7 | remoteString :  | UnsafeJsEval.swift:268:13:268:13 | string :  |
 | UnsafeJsEval.swift:205:7:205:7 | remoteString :  | UnsafeJsEval.swift:276:13:276:13 | string :  |
 | UnsafeJsEval.swift:205:7:205:7 | remoteString :  | UnsafeJsEval.swift:279:13:279:13 | string :  |
 | UnsafeJsEval.swift:205:7:205:7 | remoteString :  | UnsafeJsEval.swift:285:13:285:13 | string :  |
 | UnsafeJsEval.swift:205:7:205:7 | remoteString :  | UnsafeJsEval.swift:299:13:299:13 | string :  |
-| UnsafeJsEval.swift:208:7:208:39 | ... .+(_:_:) ... :  | UnsafeJsEval.swift:265:13:265:13 | string :  |
-| UnsafeJsEval.swift:208:7:208:39 | ... .+(_:_:) ... :  | UnsafeJsEval.swift:268:13:268:13 | string :  |
 | UnsafeJsEval.swift:208:7:208:39 | ... .+(_:_:) ... :  | UnsafeJsEval.swift:276:13:276:13 | string :  |
 | UnsafeJsEval.swift:208:7:208:39 | ... .+(_:_:) ... :  | UnsafeJsEval.swift:279:13:279:13 | string :  |
 | UnsafeJsEval.swift:208:7:208:39 | ... .+(_:_:) ... :  | UnsafeJsEval.swift:285:13:285:13 | string :  |
@@ -28,14 +22,10 @@ edges
 | UnsafeJsEval.swift:211:19:211:41 | call to init(_:) :  | UnsafeJsEval.swift:214:7:214:49 | call to init(decoding:as:) :  |
 | UnsafeJsEval.swift:211:24:211:37 | .utf8 :  | UnsafeJsEval.swift:144:5:144:29 | [summary param] 0 in init(_:) :  |
 | UnsafeJsEval.swift:211:24:211:37 | .utf8 :  | UnsafeJsEval.swift:211:19:211:41 | call to init(_:) :  |
-| UnsafeJsEval.swift:214:7:214:49 | call to init(decoding:as:) :  | UnsafeJsEval.swift:265:13:265:13 | string :  |
-| UnsafeJsEval.swift:214:7:214:49 | call to init(decoding:as:) :  | UnsafeJsEval.swift:268:13:268:13 | string :  |
 | UnsafeJsEval.swift:214:7:214:49 | call to init(decoding:as:) :  | UnsafeJsEval.swift:276:13:276:13 | string :  |
 | UnsafeJsEval.swift:214:7:214:49 | call to init(decoding:as:) :  | UnsafeJsEval.swift:279:13:279:13 | string :  |
 | UnsafeJsEval.swift:214:7:214:49 | call to init(decoding:as:) :  | UnsafeJsEval.swift:285:13:285:13 | string :  |
 | UnsafeJsEval.swift:214:7:214:49 | call to init(decoding:as:) :  | UnsafeJsEval.swift:299:13:299:13 | string :  |
-| UnsafeJsEval.swift:265:13:265:13 | string :  | UnsafeJsEval.swift:266:22:266:107 | call to init(source:injectionTime:forMainFrameOnly:) |
-| UnsafeJsEval.swift:268:13:268:13 | string :  | UnsafeJsEval.swift:269:22:269:124 | call to init(source:injectionTime:forMainFrameOnly:in:) |
 | UnsafeJsEval.swift:276:13:276:13 | string :  | UnsafeJsEval.swift:277:26:277:26 | string |
 | UnsafeJsEval.swift:279:13:279:13 | string :  | UnsafeJsEval.swift:280:26:280:26 | string |
 | UnsafeJsEval.swift:285:13:285:13 | string :  | UnsafeJsEval.swift:286:3:286:10 | .utf16 :  |
@@ -68,10 +58,6 @@ nodes
 | UnsafeJsEval.swift:211:19:211:41 | call to init(_:) :  | semmle.label | call to init(_:) :  |
 | UnsafeJsEval.swift:211:24:211:37 | .utf8 :  | semmle.label | .utf8 :  |
 | UnsafeJsEval.swift:214:7:214:49 | call to init(decoding:as:) :  | semmle.label | call to init(decoding:as:) :  |
-| UnsafeJsEval.swift:265:13:265:13 | string :  | semmle.label | string :  |
-| UnsafeJsEval.swift:266:22:266:107 | call to init(source:injectionTime:forMainFrameOnly:) | semmle.label | call to init(source:injectionTime:forMainFrameOnly:) |
-| UnsafeJsEval.swift:268:13:268:13 | string :  | semmle.label | string :  |
-| UnsafeJsEval.swift:269:22:269:124 | call to init(source:injectionTime:forMainFrameOnly:in:) | semmle.label | call to init(source:injectionTime:forMainFrameOnly:in:) |
 | UnsafeJsEval.swift:276:13:276:13 | string :  | semmle.label | string :  |
 | UnsafeJsEval.swift:277:26:277:26 | string | semmle.label | string |
 | UnsafeJsEval.swift:279:13:279:13 | string :  | semmle.label | string :  |
@@ -94,10 +80,6 @@ subpaths
 | UnsafeJsEval.swift:287:31:287:97 | call to JSStringCreateWithCharacters(_:_:) :  | UnsafeJsEval.swift:124:21:124:42 | string :  | UnsafeJsEval.swift:124:70:124:70 | string :  | UnsafeJsEval.swift:287:16:287:98 | call to JSStringRetain(_:) :  |
 | UnsafeJsEval.swift:301:31:301:84 | call to JSStringCreateWithUTF8CString(_:) :  | UnsafeJsEval.swift:124:21:124:42 | string :  | UnsafeJsEval.swift:124:70:124:70 | string :  | UnsafeJsEval.swift:301:16:301:85 | call to JSStringRetain(_:) :  |
 #select
-| UnsafeJsEval.swift:266:22:266:107 | call to init(source:injectionTime:forMainFrameOnly:) | UnsafeJsEval.swift:165:14:165:37 | call to init(contentsOf:) :  | UnsafeJsEval.swift:266:22:266:107 | call to init(source:injectionTime:forMainFrameOnly:) | Evaluation of uncontrolled JavaScript from a remote source. |
-| UnsafeJsEval.swift:266:22:266:107 | call to init(source:injectionTime:forMainFrameOnly:) | UnsafeJsEval.swift:204:12:204:66 | call to init(contentsOf:) :  | UnsafeJsEval.swift:266:22:266:107 | call to init(source:injectionTime:forMainFrameOnly:) | Evaluation of uncontrolled JavaScript from a remote source. |
-| UnsafeJsEval.swift:269:22:269:124 | call to init(source:injectionTime:forMainFrameOnly:in:) | UnsafeJsEval.swift:165:14:165:37 | call to init(contentsOf:) :  | UnsafeJsEval.swift:269:22:269:124 | call to init(source:injectionTime:forMainFrameOnly:in:) | Evaluation of uncontrolled JavaScript from a remote source. |
-| UnsafeJsEval.swift:269:22:269:124 | call to init(source:injectionTime:forMainFrameOnly:in:) | UnsafeJsEval.swift:204:12:204:66 | call to init(contentsOf:) :  | UnsafeJsEval.swift:269:22:269:124 | call to init(source:injectionTime:forMainFrameOnly:in:) | Evaluation of uncontrolled JavaScript from a remote source. |
 | UnsafeJsEval.swift:277:26:277:26 | string | UnsafeJsEval.swift:165:14:165:37 | call to init(contentsOf:) :  | UnsafeJsEval.swift:277:26:277:26 | string | Evaluation of uncontrolled JavaScript from a remote source. |
 | UnsafeJsEval.swift:277:26:277:26 | string | UnsafeJsEval.swift:204:12:204:66 | call to init(contentsOf:) :  | UnsafeJsEval.swift:277:26:277:26 | string | Evaluation of uncontrolled JavaScript from a remote source. |
 | UnsafeJsEval.swift:280:26:280:26 | string | UnsafeJsEval.swift:165:14:165:37 | call to init(contentsOf:) :  | UnsafeJsEval.swift:280:26:280:26 | string | Evaluation of uncontrolled JavaScript from a remote source. |

From ffbd20145004c334c9c0b81dcf0ea63c0bc3204b Mon Sep 17 00:00:00 2001
From: Geoffrey White <40627776+geoffw0@users.noreply.github.com>
Date: Mon, 28 Nov 2022 12:07:21 +0000
Subject: [PATCH 0691/1420] Swift: Implement basic model of WKUserScript.

---
 .../frameworks/StandardLibrary/WebView.qll    | 13 ++++++++
 .../dataflow/taint/Taint.expected             | 22 +++++++++++++
 .../dataflow/taint/webview.swift              |  4 +--
 .../Security/CWE-094/UnsafeJsEval.expected    | 32 +++++++++++++++++++
 4 files changed, 69 insertions(+), 2 deletions(-)

diff --git a/swift/ql/lib/codeql/swift/frameworks/StandardLibrary/WebView.qll b/swift/ql/lib/codeql/swift/frameworks/StandardLibrary/WebView.qll
index 84a965cba31..a7179ad3d19 100644
--- a/swift/ql/lib/codeql/swift/frameworks/StandardLibrary/WebView.qll
+++ b/swift/ql/lib/codeql/swift/frameworks/StandardLibrary/WebView.qll
@@ -131,3 +131,16 @@ private class JsExportedSource extends RemoteFlowSource {
 
   override string getSourceType() { result = "Member of a type exposed through JSExport" }
 }
+
+/**
+ * A model for `WKUserScript` summaries.
+ */
+private class WKUserScriptSummaries extends SummaryModelCsv {
+  override predicate row(string row) {
+    row =
+      [
+        ";WKUserScript;true;init(source:injectionTime:forMainFrameOnly:);;;Argument[0];ReturnValue;taint",
+        ";WKUserScript;true;init(source:injectionTime:forMainFrameOnly:in:);;;Argument[0];ReturnValue;taint"
+      ]
+  }
+}
diff --git a/swift/ql/test/library-tests/dataflow/taint/Taint.expected b/swift/ql/test/library-tests/dataflow/taint/Taint.expected
index 1eb4db5261b..fc06d87ca7a 100644
--- a/swift/ql/test/library-tests/dataflow/taint/Taint.expected
+++ b/swift/ql/test/library-tests/dataflow/taint/Taint.expected
@@ -439,6 +439,8 @@ edges
 | webview.swift:53:5:53:89 | [summary param] this in forProperty(_:) :  | file://:0:0:0:0 | [summary] to write: return (return) in forProperty(_:) :  |
 | webview.swift:54:5:54:38 | [summary param] 0 in setValue(_:at:) :  | file://:0:0:0:0 | [summary] to write: argument this in setValue(_:at:) :  |
 | webview.swift:55:5:55:48 | [summary param] 0 in setValue(_:forProperty:) :  | file://:0:0:0:0 | [summary] to write: argument this in setValue(_:forProperty:) :  |
+| webview.swift:65:5:65:93 | [summary param] 0 in init(source:injectionTime:forMainFrameOnly:) :  | file://:0:0:0:0 | [summary] to write: return (return) in init(source:injectionTime:forMainFrameOnly:) :  |
+| webview.swift:66:5:66:126 | [summary param] 0 in init(source:injectionTime:forMainFrameOnly:in:) :  | file://:0:0:0:0 | [summary] to write: return (return) in init(source:injectionTime:forMainFrameOnly:in:) :  |
 | webview.swift:77:11:77:18 | call to source() :  | webview.swift:77:10:77:41 | .body |
 | webview.swift:81:13:81:20 | call to source() :  | webview.swift:84:10:84:10 | source :  |
 | webview.swift:81:13:81:20 | call to source() :  | webview.swift:85:10:85:10 | source :  |
@@ -530,6 +532,12 @@ edges
 | webview.swift:122:5:122:5 | [post] v3 :  | webview.swift:123:10:123:10 | v3 |
 | webview.swift:122:17:122:17 | s :  | webview.swift:55:5:55:48 | [summary param] 0 in setValue(_:forProperty:) :  |
 | webview.swift:122:17:122:17 | s :  | webview.swift:122:5:122:5 | [post] v3 :  |
+| webview.swift:132:13:132:102 | call to init(source:injectionTime:forMainFrameOnly:) :  | webview.swift:133:10:133:10 | b |
+| webview.swift:132:34:132:41 | call to source() :  | webview.swift:65:5:65:93 | [summary param] 0 in init(source:injectionTime:forMainFrameOnly:) :  |
+| webview.swift:132:34:132:41 | call to source() :  | webview.swift:132:13:132:102 | call to init(source:injectionTime:forMainFrameOnly:) :  |
+| webview.swift:137:13:137:113 | call to init(source:injectionTime:forMainFrameOnly:in:) :  | webview.swift:138:10:138:10 | c |
+| webview.swift:137:34:137:41 | call to source() :  | webview.swift:66:5:66:126 | [summary param] 0 in init(source:injectionTime:forMainFrameOnly:in:) :  |
+| webview.swift:137:34:137:41 | call to source() :  | webview.swift:137:13:137:113 | call to init(source:injectionTime:forMainFrameOnly:in:) :  |
 nodes
 | data.swift:25:2:25:66 | [summary param] 0 in init(base64Encoded:options:) :  | semmle.label | [summary param] 0 in init(base64Encoded:options:) :  |
 | data.swift:26:2:26:61 | [summary param] 0 in init(buffer:) :  | semmle.label | [summary param] 0 in init(buffer:) :  |
@@ -752,6 +760,8 @@ nodes
 | file://:0:0:0:0 | [summary] to write: return (return) in init(rect:in:) :  | semmle.label | [summary] to write: return (return) in init(rect:in:) :  |
 | file://:0:0:0:0 | [summary] to write: return (return) in init(referencing:) :  | semmle.label | [summary] to write: return (return) in init(referencing:) :  |
 | file://:0:0:0:0 | [summary] to write: return (return) in init(size:in:) :  | semmle.label | [summary] to write: return (return) in init(size:in:) :  |
+| file://:0:0:0:0 | [summary] to write: return (return) in init(source:injectionTime:forMainFrameOnly:) :  | semmle.label | [summary] to write: return (return) in init(source:injectionTime:forMainFrameOnly:) :  |
+| file://:0:0:0:0 | [summary] to write: return (return) in init(source:injectionTime:forMainFrameOnly:in:) :  | semmle.label | [summary] to write: return (return) in init(source:injectionTime:forMainFrameOnly:in:) :  |
 | file://:0:0:0:0 | [summary] to write: return (return) in init(string:) :  | semmle.label | [summary] to write: return (return) in init(string:) :  |
 | file://:0:0:0:0 | [summary] to write: return (return) in init(string:relativeTo:) :  | semmle.label | [summary] to write: return (return) in init(string:relativeTo:) :  |
 | file://:0:0:0:0 | [summary] to write: return (return) in init(string:relativeTo:) :  | semmle.label | [summary] to write: return (return) in init(string:relativeTo:) :  |
@@ -1052,6 +1062,8 @@ nodes
 | webview.swift:53:5:53:89 | [summary param] this in forProperty(_:) :  | semmle.label | [summary param] this in forProperty(_:) :  |
 | webview.swift:54:5:54:38 | [summary param] 0 in setValue(_:at:) :  | semmle.label | [summary param] 0 in setValue(_:at:) :  |
 | webview.swift:55:5:55:48 | [summary param] 0 in setValue(_:forProperty:) :  | semmle.label | [summary param] 0 in setValue(_:forProperty:) :  |
+| webview.swift:65:5:65:93 | [summary param] 0 in init(source:injectionTime:forMainFrameOnly:) :  | semmle.label | [summary param] 0 in init(source:injectionTime:forMainFrameOnly:) :  |
+| webview.swift:66:5:66:126 | [summary param] 0 in init(source:injectionTime:forMainFrameOnly:in:) :  | semmle.label | [summary param] 0 in init(source:injectionTime:forMainFrameOnly:in:) :  |
 | webview.swift:77:10:77:41 | .body | semmle.label | .body |
 | webview.swift:77:11:77:18 | call to source() :  | semmle.label | call to source() :  |
 | webview.swift:81:13:81:20 | call to source() :  | semmle.label | call to source() :  |
@@ -1116,6 +1128,12 @@ nodes
 | webview.swift:122:5:122:5 | [post] v3 :  | semmle.label | [post] v3 :  |
 | webview.swift:122:17:122:17 | s :  | semmle.label | s :  |
 | webview.swift:123:10:123:10 | v3 | semmle.label | v3 |
+| webview.swift:132:13:132:102 | call to init(source:injectionTime:forMainFrameOnly:) :  | semmle.label | call to init(source:injectionTime:forMainFrameOnly:) :  |
+| webview.swift:132:34:132:41 | call to source() :  | semmle.label | call to source() :  |
+| webview.swift:133:10:133:10 | b | semmle.label | b |
+| webview.swift:137:13:137:113 | call to init(source:injectionTime:forMainFrameOnly:in:) :  | semmle.label | call to init(source:injectionTime:forMainFrameOnly:in:) :  |
+| webview.swift:137:34:137:41 | call to source() :  | semmle.label | call to source() :  |
+| webview.swift:138:10:138:10 | c | semmle.label | c |
 subpaths
 | data.swift:89:41:89:48 | call to source() :  | data.swift:25:2:25:66 | [summary param] 0 in init(base64Encoded:options:) :  | file://:0:0:0:0 | [summary] to write: return (return) in init(base64Encoded:options:) :  | data.swift:89:21:89:71 | call to init(base64Encoded:options:) :  |
 | data.swift:93:34:93:41 | call to source() :  | data.swift:26:2:26:61 | [summary param] 0 in init(buffer:) :  | file://:0:0:0:0 | [summary] to write: return (return) in init(buffer:) :  | data.swift:93:21:93:73 | call to init(buffer:) :  |
@@ -1235,6 +1253,8 @@ subpaths
 | webview.swift:114:39:114:39 | s :  | webview.swift:52:5:52:53 | [summary param] 1 in defineProperty(_:descriptor:) :  | file://:0:0:0:0 | [summary] to write: argument this in defineProperty(_:descriptor:) :  | webview.swift:114:5:114:5 | [post] v1 :  |
 | webview.swift:118:17:118:17 | s :  | webview.swift:54:5:54:38 | [summary param] 0 in setValue(_:at:) :  | file://:0:0:0:0 | [summary] to write: argument this in setValue(_:at:) :  | webview.swift:118:5:118:5 | [post] v2 :  |
 | webview.swift:122:17:122:17 | s :  | webview.swift:55:5:55:48 | [summary param] 0 in setValue(_:forProperty:) :  | file://:0:0:0:0 | [summary] to write: argument this in setValue(_:forProperty:) :  | webview.swift:122:5:122:5 | [post] v3 :  |
+| webview.swift:132:34:132:41 | call to source() :  | webview.swift:65:5:65:93 | [summary param] 0 in init(source:injectionTime:forMainFrameOnly:) :  | file://:0:0:0:0 | [summary] to write: return (return) in init(source:injectionTime:forMainFrameOnly:) :  | webview.swift:132:13:132:102 | call to init(source:injectionTime:forMainFrameOnly:) :  |
+| webview.swift:137:34:137:41 | call to source() :  | webview.swift:66:5:66:126 | [summary param] 0 in init(source:injectionTime:forMainFrameOnly:in:) :  | file://:0:0:0:0 | [summary] to write: return (return) in init(source:injectionTime:forMainFrameOnly:in:) :  | webview.swift:137:13:137:113 | call to init(source:injectionTime:forMainFrameOnly:in:) :  |
 #select
 | data.swift:90:12:90:12 | dataTainted3 | data.swift:89:41:89:48 | call to source() :  | data.swift:90:12:90:12 | dataTainted3 | result |
 | data.swift:94:12:94:12 | dataTainted4 | data.swift:93:34:93:41 | call to source() :  | data.swift:94:12:94:12 | dataTainted4 | result |
@@ -1389,3 +1409,5 @@ subpaths
 | webview.swift:115:10:115:10 | v1 | webview.swift:81:13:81:20 | call to source() :  | webview.swift:115:10:115:10 | v1 | result |
 | webview.swift:119:10:119:10 | v2 | webview.swift:81:13:81:20 | call to source() :  | webview.swift:119:10:119:10 | v2 | result |
 | webview.swift:123:10:123:10 | v3 | webview.swift:81:13:81:20 | call to source() :  | webview.swift:123:10:123:10 | v3 | result |
+| webview.swift:133:10:133:10 | b | webview.swift:132:34:132:41 | call to source() :  | webview.swift:133:10:133:10 | b | result |
+| webview.swift:138:10:138:10 | c | webview.swift:137:34:137:41 | call to source() :  | webview.swift:138:10:138:10 | c | result |
diff --git a/swift/ql/test/library-tests/dataflow/taint/webview.swift b/swift/ql/test/library-tests/dataflow/taint/webview.swift
index 803415ae2a8..473f0d6f917 100644
--- a/swift/ql/test/library-tests/dataflow/taint/webview.swift
+++ b/swift/ql/test/library-tests/dataflow/taint/webview.swift
@@ -130,11 +130,11 @@ func testWKUserScript() {
     sink(a.source)
 
     let b = WKUserScript(source: source() as! String, injectionTime: atStart, forMainFrameOnly: false)
-    sink(b) // $ MISSING: tainted=132
+    sink(b) // $ tainted=132
     sink(b.source) // $ MISSING: tainted=132
 
     let world = WKContentWorld()
     let c = WKUserScript(source: source() as! String, injectionTime: atStart, forMainFrameOnly: false, in: world)
-    sink(c) // $ MISSING: tainted=137
+    sink(c) // $ tainted=137
     sink(c.source) // $ MISSING: tainted=137
 }
diff --git a/swift/ql/test/query-tests/Security/CWE-094/UnsafeJsEval.expected b/swift/ql/test/query-tests/Security/CWE-094/UnsafeJsEval.expected
index 9736090e8e3..0030af81b05 100644
--- a/swift/ql/test/query-tests/Security/CWE-094/UnsafeJsEval.expected
+++ b/swift/ql/test/query-tests/Security/CWE-094/UnsafeJsEval.expected
@@ -1,4 +1,6 @@
 edges
+| UnsafeJsEval.swift:69:2:73:5 | [summary param] 0 in init(source:injectionTime:forMainFrameOnly:) :  | file://:0:0:0:0 | [summary] to write: return (return) in init(source:injectionTime:forMainFrameOnly:) :  |
+| UnsafeJsEval.swift:75:2:80:5 | [summary param] 0 in init(source:injectionTime:forMainFrameOnly:in:) :  | file://:0:0:0:0 | [summary] to write: return (return) in init(source:injectionTime:forMainFrameOnly:in:) :  |
 | UnsafeJsEval.swift:124:21:124:42 | string :  | UnsafeJsEval.swift:124:70:124:70 | string :  |
 | UnsafeJsEval.swift:144:5:144:29 | [summary param] 0 in init(_:) :  | file://:0:0:0:0 | [summary] to write: return (return) in init(_:) :  |
 | UnsafeJsEval.swift:165:10:165:37 | try ... :  | UnsafeJsEval.swift:201:21:201:35 | call to getRemoteData() :  |
@@ -6,15 +8,21 @@ edges
 | UnsafeJsEval.swift:201:21:201:35 | call to getRemoteData() :  | UnsafeJsEval.swift:205:7:205:7 | remoteString :  |
 | UnsafeJsEval.swift:201:21:201:35 | call to getRemoteData() :  | UnsafeJsEval.swift:208:7:208:39 | ... .+(_:_:) ... :  |
 | UnsafeJsEval.swift:201:21:201:35 | call to getRemoteData() :  | UnsafeJsEval.swift:211:24:211:37 | .utf8 :  |
+| UnsafeJsEval.swift:204:7:204:66 | try! ... :  | UnsafeJsEval.swift:265:13:265:13 | string :  |
+| UnsafeJsEval.swift:204:7:204:66 | try! ... :  | UnsafeJsEval.swift:268:13:268:13 | string :  |
 | UnsafeJsEval.swift:204:7:204:66 | try! ... :  | UnsafeJsEval.swift:276:13:276:13 | string :  |
 | UnsafeJsEval.swift:204:7:204:66 | try! ... :  | UnsafeJsEval.swift:279:13:279:13 | string :  |
 | UnsafeJsEval.swift:204:7:204:66 | try! ... :  | UnsafeJsEval.swift:285:13:285:13 | string :  |
 | UnsafeJsEval.swift:204:7:204:66 | try! ... :  | UnsafeJsEval.swift:299:13:299:13 | string :  |
 | UnsafeJsEval.swift:204:12:204:66 | call to init(contentsOf:) :  | UnsafeJsEval.swift:204:7:204:66 | try! ... :  |
+| UnsafeJsEval.swift:205:7:205:7 | remoteString :  | UnsafeJsEval.swift:265:13:265:13 | string :  |
+| UnsafeJsEval.swift:205:7:205:7 | remoteString :  | UnsafeJsEval.swift:268:13:268:13 | string :  |
 | UnsafeJsEval.swift:205:7:205:7 | remoteString :  | UnsafeJsEval.swift:276:13:276:13 | string :  |
 | UnsafeJsEval.swift:205:7:205:7 | remoteString :  | UnsafeJsEval.swift:279:13:279:13 | string :  |
 | UnsafeJsEval.swift:205:7:205:7 | remoteString :  | UnsafeJsEval.swift:285:13:285:13 | string :  |
 | UnsafeJsEval.swift:205:7:205:7 | remoteString :  | UnsafeJsEval.swift:299:13:299:13 | string :  |
+| UnsafeJsEval.swift:208:7:208:39 | ... .+(_:_:) ... :  | UnsafeJsEval.swift:265:13:265:13 | string :  |
+| UnsafeJsEval.swift:208:7:208:39 | ... .+(_:_:) ... :  | UnsafeJsEval.swift:268:13:268:13 | string :  |
 | UnsafeJsEval.swift:208:7:208:39 | ... .+(_:_:) ... :  | UnsafeJsEval.swift:276:13:276:13 | string :  |
 | UnsafeJsEval.swift:208:7:208:39 | ... .+(_:_:) ... :  | UnsafeJsEval.swift:279:13:279:13 | string :  |
 | UnsafeJsEval.swift:208:7:208:39 | ... .+(_:_:) ... :  | UnsafeJsEval.swift:285:13:285:13 | string :  |
@@ -22,10 +30,18 @@ edges
 | UnsafeJsEval.swift:211:19:211:41 | call to init(_:) :  | UnsafeJsEval.swift:214:7:214:49 | call to init(decoding:as:) :  |
 | UnsafeJsEval.swift:211:24:211:37 | .utf8 :  | UnsafeJsEval.swift:144:5:144:29 | [summary param] 0 in init(_:) :  |
 | UnsafeJsEval.swift:211:24:211:37 | .utf8 :  | UnsafeJsEval.swift:211:19:211:41 | call to init(_:) :  |
+| UnsafeJsEval.swift:214:7:214:49 | call to init(decoding:as:) :  | UnsafeJsEval.swift:265:13:265:13 | string :  |
+| UnsafeJsEval.swift:214:7:214:49 | call to init(decoding:as:) :  | UnsafeJsEval.swift:268:13:268:13 | string :  |
 | UnsafeJsEval.swift:214:7:214:49 | call to init(decoding:as:) :  | UnsafeJsEval.swift:276:13:276:13 | string :  |
 | UnsafeJsEval.swift:214:7:214:49 | call to init(decoding:as:) :  | UnsafeJsEval.swift:279:13:279:13 | string :  |
 | UnsafeJsEval.swift:214:7:214:49 | call to init(decoding:as:) :  | UnsafeJsEval.swift:285:13:285:13 | string :  |
 | UnsafeJsEval.swift:214:7:214:49 | call to init(decoding:as:) :  | UnsafeJsEval.swift:299:13:299:13 | string :  |
+| UnsafeJsEval.swift:265:13:265:13 | string :  | UnsafeJsEval.swift:266:43:266:43 | string :  |
+| UnsafeJsEval.swift:266:43:266:43 | string :  | UnsafeJsEval.swift:69:2:73:5 | [summary param] 0 in init(source:injectionTime:forMainFrameOnly:) :  |
+| UnsafeJsEval.swift:266:43:266:43 | string :  | UnsafeJsEval.swift:266:22:266:107 | call to init(source:injectionTime:forMainFrameOnly:) |
+| UnsafeJsEval.swift:268:13:268:13 | string :  | UnsafeJsEval.swift:269:43:269:43 | string :  |
+| UnsafeJsEval.swift:269:43:269:43 | string :  | UnsafeJsEval.swift:75:2:80:5 | [summary param] 0 in init(source:injectionTime:forMainFrameOnly:in:) :  |
+| UnsafeJsEval.swift:269:43:269:43 | string :  | UnsafeJsEval.swift:269:22:269:124 | call to init(source:injectionTime:forMainFrameOnly:in:) |
 | UnsafeJsEval.swift:276:13:276:13 | string :  | UnsafeJsEval.swift:277:26:277:26 | string |
 | UnsafeJsEval.swift:279:13:279:13 | string :  | UnsafeJsEval.swift:280:26:280:26 | string |
 | UnsafeJsEval.swift:285:13:285:13 | string :  | UnsafeJsEval.swift:286:3:286:10 | .utf16 :  |
@@ -45,6 +61,8 @@ edges
 | UnsafeJsEval.swift:301:31:301:84 | call to JSStringCreateWithUTF8CString(_:) :  | UnsafeJsEval.swift:301:16:301:85 | call to JSStringRetain(_:) :  |
 | UnsafeJsEval.swift:301:31:301:84 | call to JSStringCreateWithUTF8CString(_:) :  | UnsafeJsEval.swift:305:17:305:17 | jsstr |
 nodes
+| UnsafeJsEval.swift:69:2:73:5 | [summary param] 0 in init(source:injectionTime:forMainFrameOnly:) :  | semmle.label | [summary param] 0 in init(source:injectionTime:forMainFrameOnly:) :  |
+| UnsafeJsEval.swift:75:2:80:5 | [summary param] 0 in init(source:injectionTime:forMainFrameOnly:in:) :  | semmle.label | [summary param] 0 in init(source:injectionTime:forMainFrameOnly:in:) :  |
 | UnsafeJsEval.swift:124:21:124:42 | string :  | semmle.label | string :  |
 | UnsafeJsEval.swift:124:70:124:70 | string :  | semmle.label | string :  |
 | UnsafeJsEval.swift:144:5:144:29 | [summary param] 0 in init(_:) :  | semmle.label | [summary param] 0 in init(_:) :  |
@@ -58,6 +76,12 @@ nodes
 | UnsafeJsEval.swift:211:19:211:41 | call to init(_:) :  | semmle.label | call to init(_:) :  |
 | UnsafeJsEval.swift:211:24:211:37 | .utf8 :  | semmle.label | .utf8 :  |
 | UnsafeJsEval.swift:214:7:214:49 | call to init(decoding:as:) :  | semmle.label | call to init(decoding:as:) :  |
+| UnsafeJsEval.swift:265:13:265:13 | string :  | semmle.label | string :  |
+| UnsafeJsEval.swift:266:22:266:107 | call to init(source:injectionTime:forMainFrameOnly:) | semmle.label | call to init(source:injectionTime:forMainFrameOnly:) |
+| UnsafeJsEval.swift:266:43:266:43 | string :  | semmle.label | string :  |
+| UnsafeJsEval.swift:268:13:268:13 | string :  | semmle.label | string :  |
+| UnsafeJsEval.swift:269:22:269:124 | call to init(source:injectionTime:forMainFrameOnly:in:) | semmle.label | call to init(source:injectionTime:forMainFrameOnly:in:) |
+| UnsafeJsEval.swift:269:43:269:43 | string :  | semmle.label | string :  |
 | UnsafeJsEval.swift:276:13:276:13 | string :  | semmle.label | string :  |
 | UnsafeJsEval.swift:277:26:277:26 | string | semmle.label | string |
 | UnsafeJsEval.swift:279:13:279:13 | string :  | semmle.label | string :  |
@@ -75,11 +99,19 @@ nodes
 | UnsafeJsEval.swift:301:31:301:84 | call to JSStringCreateWithUTF8CString(_:) :  | semmle.label | call to JSStringCreateWithUTF8CString(_:) :  |
 | UnsafeJsEval.swift:305:17:305:17 | jsstr | semmle.label | jsstr |
 | file://:0:0:0:0 | [summary] to write: return (return) in init(_:) :  | semmle.label | [summary] to write: return (return) in init(_:) :  |
+| file://:0:0:0:0 | [summary] to write: return (return) in init(source:injectionTime:forMainFrameOnly:) :  | semmle.label | [summary] to write: return (return) in init(source:injectionTime:forMainFrameOnly:) :  |
+| file://:0:0:0:0 | [summary] to write: return (return) in init(source:injectionTime:forMainFrameOnly:in:) :  | semmle.label | [summary] to write: return (return) in init(source:injectionTime:forMainFrameOnly:in:) :  |
 subpaths
 | UnsafeJsEval.swift:211:24:211:37 | .utf8 :  | UnsafeJsEval.swift:144:5:144:29 | [summary param] 0 in init(_:) :  | file://:0:0:0:0 | [summary] to write: return (return) in init(_:) :  | UnsafeJsEval.swift:211:19:211:41 | call to init(_:) :  |
+| UnsafeJsEval.swift:266:43:266:43 | string :  | UnsafeJsEval.swift:69:2:73:5 | [summary param] 0 in init(source:injectionTime:forMainFrameOnly:) :  | file://:0:0:0:0 | [summary] to write: return (return) in init(source:injectionTime:forMainFrameOnly:) :  | UnsafeJsEval.swift:266:22:266:107 | call to init(source:injectionTime:forMainFrameOnly:) |
+| UnsafeJsEval.swift:269:43:269:43 | string :  | UnsafeJsEval.swift:75:2:80:5 | [summary param] 0 in init(source:injectionTime:forMainFrameOnly:in:) :  | file://:0:0:0:0 | [summary] to write: return (return) in init(source:injectionTime:forMainFrameOnly:in:) :  | UnsafeJsEval.swift:269:22:269:124 | call to init(source:injectionTime:forMainFrameOnly:in:) |
 | UnsafeJsEval.swift:287:31:287:97 | call to JSStringCreateWithCharacters(_:_:) :  | UnsafeJsEval.swift:124:21:124:42 | string :  | UnsafeJsEval.swift:124:70:124:70 | string :  | UnsafeJsEval.swift:287:16:287:98 | call to JSStringRetain(_:) :  |
 | UnsafeJsEval.swift:301:31:301:84 | call to JSStringCreateWithUTF8CString(_:) :  | UnsafeJsEval.swift:124:21:124:42 | string :  | UnsafeJsEval.swift:124:70:124:70 | string :  | UnsafeJsEval.swift:301:16:301:85 | call to JSStringRetain(_:) :  |
 #select
+| UnsafeJsEval.swift:266:22:266:107 | call to init(source:injectionTime:forMainFrameOnly:) | UnsafeJsEval.swift:165:14:165:37 | call to init(contentsOf:) :  | UnsafeJsEval.swift:266:22:266:107 | call to init(source:injectionTime:forMainFrameOnly:) | Evaluation of uncontrolled JavaScript from a remote source. |
+| UnsafeJsEval.swift:266:22:266:107 | call to init(source:injectionTime:forMainFrameOnly:) | UnsafeJsEval.swift:204:12:204:66 | call to init(contentsOf:) :  | UnsafeJsEval.swift:266:22:266:107 | call to init(source:injectionTime:forMainFrameOnly:) | Evaluation of uncontrolled JavaScript from a remote source. |
+| UnsafeJsEval.swift:269:22:269:124 | call to init(source:injectionTime:forMainFrameOnly:in:) | UnsafeJsEval.swift:165:14:165:37 | call to init(contentsOf:) :  | UnsafeJsEval.swift:269:22:269:124 | call to init(source:injectionTime:forMainFrameOnly:in:) | Evaluation of uncontrolled JavaScript from a remote source. |
+| UnsafeJsEval.swift:269:22:269:124 | call to init(source:injectionTime:forMainFrameOnly:in:) | UnsafeJsEval.swift:204:12:204:66 | call to init(contentsOf:) :  | UnsafeJsEval.swift:269:22:269:124 | call to init(source:injectionTime:forMainFrameOnly:in:) | Evaluation of uncontrolled JavaScript from a remote source. |
 | UnsafeJsEval.swift:277:26:277:26 | string | UnsafeJsEval.swift:165:14:165:37 | call to init(contentsOf:) :  | UnsafeJsEval.swift:277:26:277:26 | string | Evaluation of uncontrolled JavaScript from a remote source. |
 | UnsafeJsEval.swift:277:26:277:26 | string | UnsafeJsEval.swift:204:12:204:66 | call to init(contentsOf:) :  | UnsafeJsEval.swift:277:26:277:26 | string | Evaluation of uncontrolled JavaScript from a remote source. |
 | UnsafeJsEval.swift:280:26:280:26 | string | UnsafeJsEval.swift:165:14:165:37 | call to init(contentsOf:) :  | UnsafeJsEval.swift:280:26:280:26 | string | Evaluation of uncontrolled JavaScript from a remote source. |

From 30468dd419f3bf01d5988aa633dcc486a0adcd99 Mon Sep 17 00:00:00 2001
From: Geoffrey White <40627776+geoffw0@users.noreply.github.com>
Date: Mon, 28 Nov 2022 12:27:33 +0000
Subject: [PATCH 0692/1420] Swift: Implement field content as well.

---
 .../swift/frameworks/StandardLibrary/WebView.qll    | 13 +++++++++++++
 .../dataflow/taint/LocalTaint.expected              |  3 +++
 .../library-tests/dataflow/taint/Taint.expected     |  6 ++++++
 .../test/library-tests/dataflow/taint/webview.swift |  4 ++--
 4 files changed, 24 insertions(+), 2 deletions(-)

diff --git a/swift/ql/lib/codeql/swift/frameworks/StandardLibrary/WebView.qll b/swift/ql/lib/codeql/swift/frameworks/StandardLibrary/WebView.qll
index a7179ad3d19..b16c6aba370 100644
--- a/swift/ql/lib/codeql/swift/frameworks/StandardLibrary/WebView.qll
+++ b/swift/ql/lib/codeql/swift/frameworks/StandardLibrary/WebView.qll
@@ -144,3 +144,16 @@ private class WKUserScriptSummaries extends SummaryModelCsv {
       ]
   }
 }
+
+/**
+ * A content implying that, if a `WKUserScript` is tainted, its `source` field is tainted.
+ */
+private class WKUserScriptInheritsTaint extends TaintInheritingContent,
+  DataFlow::Content::FieldContent {
+  WKUserScriptInheritsTaint() {
+    exists(FieldDecl f | this.getField() = f |
+      f.getEnclosingDecl().(ClassOrStructDecl).getName() = "WKUserScript" and
+      f.getName() = "source"
+    )
+  }
+}
diff --git a/swift/ql/test/library-tests/dataflow/taint/LocalTaint.expected b/swift/ql/test/library-tests/dataflow/taint/LocalTaint.expected
index 297f5f4382d..3e594f2d7a8 100644
--- a/swift/ql/test/library-tests/dataflow/taint/LocalTaint.expected
+++ b/swift/ql/test/library-tests/dataflow/taint/LocalTaint.expected
@@ -166,3 +166,6 @@
 | url.swift:101:15:101:57 | ...! | url.swift:101:15:101:59 | .user |
 | url.swift:102:15:102:57 | ...! | url.swift:102:15:102:59 | .password |
 | webview.swift:77:11:77:18 | call to source() | webview.swift:77:10:77:41 | .body |
+| webview.swift:130:10:130:10 | a | webview.swift:130:10:130:12 | .source |
+| webview.swift:134:10:134:10 | b | webview.swift:134:10:134:12 | .source |
+| webview.swift:139:10:139:10 | c | webview.swift:139:10:139:12 | .source |
diff --git a/swift/ql/test/library-tests/dataflow/taint/Taint.expected b/swift/ql/test/library-tests/dataflow/taint/Taint.expected
index fc06d87ca7a..b72d5905fd7 100644
--- a/swift/ql/test/library-tests/dataflow/taint/Taint.expected
+++ b/swift/ql/test/library-tests/dataflow/taint/Taint.expected
@@ -533,9 +533,11 @@ edges
 | webview.swift:122:17:122:17 | s :  | webview.swift:55:5:55:48 | [summary param] 0 in setValue(_:forProperty:) :  |
 | webview.swift:122:17:122:17 | s :  | webview.swift:122:5:122:5 | [post] v3 :  |
 | webview.swift:132:13:132:102 | call to init(source:injectionTime:forMainFrameOnly:) :  | webview.swift:133:10:133:10 | b |
+| webview.swift:132:13:132:102 | call to init(source:injectionTime:forMainFrameOnly:) :  | webview.swift:134:10:134:12 | .source |
 | webview.swift:132:34:132:41 | call to source() :  | webview.swift:65:5:65:93 | [summary param] 0 in init(source:injectionTime:forMainFrameOnly:) :  |
 | webview.swift:132:34:132:41 | call to source() :  | webview.swift:132:13:132:102 | call to init(source:injectionTime:forMainFrameOnly:) :  |
 | webview.swift:137:13:137:113 | call to init(source:injectionTime:forMainFrameOnly:in:) :  | webview.swift:138:10:138:10 | c |
+| webview.swift:137:13:137:113 | call to init(source:injectionTime:forMainFrameOnly:in:) :  | webview.swift:139:10:139:12 | .source |
 | webview.swift:137:34:137:41 | call to source() :  | webview.swift:66:5:66:126 | [summary param] 0 in init(source:injectionTime:forMainFrameOnly:in:) :  |
 | webview.swift:137:34:137:41 | call to source() :  | webview.swift:137:13:137:113 | call to init(source:injectionTime:forMainFrameOnly:in:) :  |
 nodes
@@ -1131,9 +1133,11 @@ nodes
 | webview.swift:132:13:132:102 | call to init(source:injectionTime:forMainFrameOnly:) :  | semmle.label | call to init(source:injectionTime:forMainFrameOnly:) :  |
 | webview.swift:132:34:132:41 | call to source() :  | semmle.label | call to source() :  |
 | webview.swift:133:10:133:10 | b | semmle.label | b |
+| webview.swift:134:10:134:12 | .source | semmle.label | .source |
 | webview.swift:137:13:137:113 | call to init(source:injectionTime:forMainFrameOnly:in:) :  | semmle.label | call to init(source:injectionTime:forMainFrameOnly:in:) :  |
 | webview.swift:137:34:137:41 | call to source() :  | semmle.label | call to source() :  |
 | webview.swift:138:10:138:10 | c | semmle.label | c |
+| webview.swift:139:10:139:12 | .source | semmle.label | .source |
 subpaths
 | data.swift:89:41:89:48 | call to source() :  | data.swift:25:2:25:66 | [summary param] 0 in init(base64Encoded:options:) :  | file://:0:0:0:0 | [summary] to write: return (return) in init(base64Encoded:options:) :  | data.swift:89:21:89:71 | call to init(base64Encoded:options:) :  |
 | data.swift:93:34:93:41 | call to source() :  | data.swift:26:2:26:61 | [summary param] 0 in init(buffer:) :  | file://:0:0:0:0 | [summary] to write: return (return) in init(buffer:) :  | data.swift:93:21:93:73 | call to init(buffer:) :  |
@@ -1410,4 +1414,6 @@ subpaths
 | webview.swift:119:10:119:10 | v2 | webview.swift:81:13:81:20 | call to source() :  | webview.swift:119:10:119:10 | v2 | result |
 | webview.swift:123:10:123:10 | v3 | webview.swift:81:13:81:20 | call to source() :  | webview.swift:123:10:123:10 | v3 | result |
 | webview.swift:133:10:133:10 | b | webview.swift:132:34:132:41 | call to source() :  | webview.swift:133:10:133:10 | b | result |
+| webview.swift:134:10:134:12 | .source | webview.swift:132:34:132:41 | call to source() :  | webview.swift:134:10:134:12 | .source | result |
 | webview.swift:138:10:138:10 | c | webview.swift:137:34:137:41 | call to source() :  | webview.swift:138:10:138:10 | c | result |
+| webview.swift:139:10:139:12 | .source | webview.swift:137:34:137:41 | call to source() :  | webview.swift:139:10:139:12 | .source | result |
diff --git a/swift/ql/test/library-tests/dataflow/taint/webview.swift b/swift/ql/test/library-tests/dataflow/taint/webview.swift
index 473f0d6f917..a656d600de7 100644
--- a/swift/ql/test/library-tests/dataflow/taint/webview.swift
+++ b/swift/ql/test/library-tests/dataflow/taint/webview.swift
@@ -131,10 +131,10 @@ func testWKUserScript() {
 
     let b = WKUserScript(source: source() as! String, injectionTime: atStart, forMainFrameOnly: false)
     sink(b) // $ tainted=132
-    sink(b.source) // $ MISSING: tainted=132
+    sink(b.source) // $ tainted=132
 
     let world = WKContentWorld()
     let c = WKUserScript(source: source() as! String, injectionTime: atStart, forMainFrameOnly: false, in: world)
     sink(c) // $ tainted=137
-    sink(c.source) // $ MISSING: tainted=137
+    sink(c.source) // $ tainted=137
 }

From 76afc2dcc3ebf367e6bd02f72681bf184f94ce97 Mon Sep 17 00:00:00 2001
From: Asger F <asgerf@github.com>
Date: Mon, 28 Nov 2022 14:00:43 +0100
Subject: [PATCH 0693/1420] JS: Fix formatting and rephrase comment

---
 .../data/internal/ApiGraphModelsSpecific.qll          | 11 +++++------
 1 file changed, 5 insertions(+), 6 deletions(-)

diff --git a/javascript/ql/lib/semmle/javascript/frameworks/data/internal/ApiGraphModelsSpecific.qll b/javascript/ql/lib/semmle/javascript/frameworks/data/internal/ApiGraphModelsSpecific.qll
index df8710c37e2..9ebbe4099db 100644
--- a/javascript/ql/lib/semmle/javascript/frameworks/data/internal/ApiGraphModelsSpecific.qll
+++ b/javascript/ql/lib/semmle/javascript/frameworks/data/internal/ApiGraphModelsSpecific.qll
@@ -32,12 +32,11 @@ import JS::DataFlow as DataFlow
 private import AccessPathSyntax
 
 /**
- * Holds if `rawType` represents the JavaScript npm `package` with type `qualifiedName`.  
- * The `qualifiedName` is everything after the first ".".   
- * So e.g. `rawType = "foo.bar"` will parse to `package = "foo" and qualifiedName = "bar"`.  
- * `package´ can be enclosed in single-quotes if the package name includes dots, 
- * e.g. `'my.package'.type` parses to `package = "my.package" and qualifiedName = "type"`.  
- */ 
+ * Holds if `rawType` represents the JavaScript type `qualifiedName` from the given NPM `package`.
+ *
+ * Type names have form `package.type` or just `package` if referring to the package export
+ * object. If `package` contains a `.` character it must be enclosed in single quotes, such as `'package'.type`.
+ */
 bindingset[rawType]
 predicate parseTypeString(string rawType, string package, string qualifiedName) {
   exists(string regexp |

From 751ffbd9c898f301c341e9abee4ace799b3eff49 Mon Sep 17 00:00:00 2001
From: erik-krogh <erik-krogh@github.com>
Date: Mon, 28 Nov 2022 14:44:07 +0100
Subject: [PATCH 0694/1420] use different keys for different caches

---
 swift/actions/run-integration-tests/action.yml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/swift/actions/run-integration-tests/action.yml b/swift/actions/run-integration-tests/action.yml
index 6e190693a55..00ef006ea09 100644
--- a/swift/actions/run-integration-tests/action.yml
+++ b/swift/actions/run-integration-tests/action.yml
@@ -20,7 +20,7 @@ runs:
     - id: query-cache
       uses: ./.github/actions/cache-query-compilation
       with:
-        key: swift-qltest
+        key: swift-integration
     - name: Run integration tests
       shell: bash
       run: |

From d2824413db9596ce2699f08cbe8ebd4754f28b4b Mon Sep 17 00:00:00 2001
From: erik-krogh <erik-krogh@github.com>
Date: Mon, 28 Nov 2022 14:44:34 +0100
Subject: [PATCH 0695/1420] skip the only remaining macos job running on main

---
 .github/workflows/swift.yml | 1 +
 1 file changed, 1 insertion(+)

diff --git a/.github/workflows/swift.yml b/.github/workflows/swift.yml
index 2baae15f270..4871442d4b7 100644
--- a/.github/workflows/swift.yml
+++ b/.github/workflows/swift.yml
@@ -35,6 +35,7 @@ jobs:
   # not using a matrix as you cannot depend on a specific job in a matrix, and we want to start linux checks
   # without waiting for the macOS build
   build-and-test-macos:
+    if: ${{ github.event_name == 'pull_request' }}
     runs-on: macos-12-xl
     steps:
       - uses: actions/checkout@v3

From a76d47681d365b2d81962cc367da7b3f92c428ca Mon Sep 17 00:00:00 2001
From: Felicity Chapman <felicitymay@github.com>
Date: Fri, 25 Nov 2022 10:05:54 +0000
Subject: [PATCH 0696/1420] Replace references in Qhelp files

---
 go/ql/src/Security/CWE-601/BadRedirectCheck.qhelp | 2 +-
 python/ql/src/Imports/SyntaxError.qhelp           | 7 ++++---
 2 files changed, 5 insertions(+), 4 deletions(-)

diff --git a/go/ql/src/Security/CWE-601/BadRedirectCheck.qhelp b/go/ql/src/Security/CWE-601/BadRedirectCheck.qhelp
index b6036f4399b..a592abfff38 100644
--- a/go/ql/src/Security/CWE-601/BadRedirectCheck.qhelp
+++ b/go/ql/src/Security/CWE-601/BadRedirectCheck.qhelp
@@ -7,7 +7,7 @@ Redirect URLs should be checked to ensure that user input cannot cause a site to
 to arbitrary domains. This is often done with a check that the redirect URL begins with a slash,
 which most of the time is an absolute redirect on the same host. However, browsers interpret URLs
 beginning with <code>//</code> or <code>/\</code> as absolute URLs. For example, a redirect to
-<code>//lgtm.com</code> will redirect to <code>https://lgtm.com</code>. Thus, redirect checks must
+<code>//example.com</code> will redirect to <code>https://example.com</code>. Thus, redirect checks must
 also check the second character of redirect URLs.
 </p>
 </overview>
diff --git a/python/ql/src/Imports/SyntaxError.qhelp b/python/ql/src/Imports/SyntaxError.qhelp
index 00b4870e86a..3498a7a5510 100644
--- a/python/ql/src/Imports/SyntaxError.qhelp
+++ b/python/ql/src/Imports/SyntaxError.qhelp
@@ -26,9 +26,10 @@ However, it is worth investigating why a module containing a syntax error
 was able to persist and address that problem as well.
 </p>
 <p>If you suspect that the syntax error is caused by the analysis using the
-wrong version of Python, consider specifying the version explicitly. For
-LGTM.com, you can customize extraction using an <code>lgtm.yml</code> file as
-described <a href="https://lgtm.com/help/lgtm/python-extraction">here</a>.
+wrong version of Python, consider specifying the version explicitly. When
+you run code scanning using the CodeQL action, you can configure the Python
+version to use. For more information, see 
+<a href="https://docs.github.com/en/code-security/code-scanning/automatically-scanning-your-code-for-vulnerabilities-and-errors/configuring-code-scanning#analyzing-python-dependencies">Analyzing Python dependencies</a>.
 </p>
 </recommendation>
 <references>

From 36a6ccba8b15fbe2cd552514cf0c25c728906489 Mon Sep 17 00:00:00 2001
From: Felicity Chapman <felicitymay@github.com>
Date: Fri, 25 Nov 2022 10:12:03 +0000
Subject: [PATCH 0697/1420] Remove reference in template

---
 .github/ISSUE_TEMPLATE/ql---general.md | 3 +--
 1 file changed, 1 insertion(+), 2 deletions(-)

diff --git a/.github/ISSUE_TEMPLATE/ql---general.md b/.github/ISSUE_TEMPLATE/ql---general.md
index 1d5b7d244f6..7d317fc7580 100644
--- a/.github/ISSUE_TEMPLATE/ql---general.md
+++ b/.github/ISSUE_TEMPLATE/ql---general.md
@@ -9,6 +9,5 @@ assignees: ''
 
 **Description of the issue**
 
-<!-- Please explain briefly what is the problem.
-If it is about an LGTM project, please include its URL.-->
+<!-- Please explain briefly what is the problem.-->
 

From 5f835da8387498cce3e6145206a32a95e8eaaef0 Mon Sep 17 00:00:00 2001
From: Felicity Chapman <felicitymay@github.com>
Date: Fri, 25 Nov 2022 10:15:14 +0000
Subject: [PATCH 0698/1420] Update HTML comment in query

---
 cpp/ql/src/Likely Bugs/RedundantNullCheckSimple.ql | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/cpp/ql/src/Likely Bugs/RedundantNullCheckSimple.ql b/cpp/ql/src/Likely Bugs/RedundantNullCheckSimple.ql
index 47ed2b704d5..bf39200c5b6 100644
--- a/cpp/ql/src/Likely Bugs/RedundantNullCheckSimple.ql	
+++ b/cpp/ql/src/Likely Bugs/RedundantNullCheckSimple.ql	
@@ -12,8 +12,8 @@
  */
 
 /*
- * Note: this query is not assigned a precision yet because we don't want it on
- * LGTM until its performance is well understood.
+ * Note: this query is not assigned a precision yet because we don't want it 
+ * included in query suites until its performance is well understood.
  */
 
 import cpp

From fb0959bcea33d22382fdfad958e8199bba8771ac Mon Sep 17 00:00:00 2001
From: Felicity Chapman <felicitymay@github.com>
Date: Fri, 25 Nov 2022 10:19:23 +0000
Subject: [PATCH 0699/1420] Update QL reference

---
 docs/codeql/ql-language-reference/annotations.rst             | 1 -
 docs/codeql/ql-language-reference/expressions.rst             | 4 ----
 .../ql-language-reference/ql-language-specification.rst       | 4 +---
 3 files changed, 1 insertion(+), 8 deletions(-)

diff --git a/docs/codeql/ql-language-reference/annotations.rst b/docs/codeql/ql-language-reference/annotations.rst
index e801f0a95aa..b78ef5bdd34 100644
--- a/docs/codeql/ql-language-reference/annotations.rst
+++ b/docs/codeql/ql-language-reference/annotations.rst
@@ -433,7 +433,6 @@ The ``bindingset`` annotation takes a comma-separated list of variables.
   (for characteristic predicates and member predicates) and ``result`` (for predicates that return a result). 
   For more information, see ":ref:`predicate-binding`."
 - When you annotate a class, each variable must be ``this`` or a field in the class. 
-  Binding sets for classes are supported from release 2.3.0 of the CodeQL CLI, and release 1.26 of LGTM Enterprise.
 
 .. Links to use in substitutions
 
diff --git a/docs/codeql/ql-language-reference/expressions.rst b/docs/codeql/ql-language-reference/expressions.rst
index 2091c7628a3..fdb0d6cd35a 100644
--- a/docs/codeql/ql-language-reference/expressions.rst
+++ b/docs/codeql/ql-language-reference/expressions.rst
@@ -117,8 +117,6 @@ The values of the contained expressions need to be of :ref:`compatible types <ty
 Furthermore, at least one of the set elements has to be of a type that is a supertype of the types of all
 the other contained expressions.
 
-Set literals are supported from release 2.1.0 of the CodeQL CLI, and release 1.24 of LGTM Enterprise.
-
 .. index:: super
 .. _super:
 
@@ -341,8 +339,6 @@ The following aggregates are available in QL:
       where x in [-5 .. 5] and x != 0
       select unique(int y | y = x or y = x.abs() | y)
 
-  The ``unique`` aggregate is supported from release 2.1.0 of the CodeQL CLI, and release 1.24 of LGTM Enterprise.
-
 Evaluation of aggregates
 ========================
 
diff --git a/docs/codeql/ql-language-reference/ql-language-specification.rst b/docs/codeql/ql-language-reference/ql-language-specification.rst
index 765a5fda4ab..bf44b85e2cc 100644
--- a/docs/codeql/ql-language-reference/ql-language-specification.rst
+++ b/docs/codeql/ql-language-reference/ql-language-specification.rst
@@ -1356,9 +1356,7 @@ Set literals can be of any type, but the types within a set literal have to be c
 
 The values of a set literal expression are all the values of all the contained element expressions.
 
-Set literals are supported from release 2.1.0 of the CodeQL CLI, and release 1.24 of LGTM Enterprise.
-
-Since release 2.7.1 of the CodeQL CLI, and release 1.30 of LGTM Enterprise, a trailing comma is allowed in a set literal.
+Since release 2.7.1 of the CodeQL CLI, a trailing comma is allowed in a set literal.
 
 Disambiguation of expressions
 -----------------------------

From c06db6b67c3097bd499f759db77c5459ff3f4715 Mon Sep 17 00:00:00 2001
From: Felicity Chapman <felicitymay@github.com>
Date: Fri, 25 Nov 2022 10:28:29 +0000
Subject: [PATCH 0700/1420] Remove LGTM support info

---
 .../supported-languages-and-frameworks.rst    |   4 +-
 .../codeql-overview/system-requirements.rst   |   4 +-
 docs/codeql/ql-training/template.rst          |   2 +-
 .../supported-frameworks.rst}                 |   0
 .../supported-platforms.rst}                  |   0
 .../supported-versions-compilers.rst}         |   0
 docs/codeql/support/conf.py                   | 101 ------------------
 docs/codeql/support/framework-support.rst     |  19 ----
 docs/codeql/support/index.rst                 |  19 ----
 docs/codeql/support/language-support.rst      |  16 ---
 docs/codeql/support/ql-training.rst           |  63 -----------
 docs/codeql/support/read-me-project.rst       |  15 ---
 12 files changed, 5 insertions(+), 238 deletions(-)
 rename docs/codeql/{support/reusables/frameworks.rst => reusables/supported-frameworks.rst} (100%)
 rename docs/codeql/{support/reusables/platforms.rst => reusables/supported-platforms.rst} (100%)
 rename docs/codeql/{support/reusables/versions-compilers.rst => reusables/supported-versions-compilers.rst} (100%)
 delete mode 100644 docs/codeql/support/conf.py
 delete mode 100644 docs/codeql/support/framework-support.rst
 delete mode 100644 docs/codeql/support/index.rst
 delete mode 100644 docs/codeql/support/language-support.rst
 delete mode 100644 docs/codeql/support/ql-training.rst
 delete mode 100644 docs/codeql/support/read-me-project.rst

diff --git a/docs/codeql/codeql-overview/supported-languages-and-frameworks.rst b/docs/codeql/codeql-overview/supported-languages-and-frameworks.rst
index be66125846a..7cb78873ceb 100644
--- a/docs/codeql/codeql-overview/supported-languages-and-frameworks.rst
+++ b/docs/codeql/codeql-overview/supported-languages-and-frameworks.rst
@@ -16,7 +16,7 @@ CodeQL library packs (`source <https://github.com/github/codeql/tree/codeql-cli/
 and CodeQL bundle (`releases <https://github.com/github/codeql-action/releases>`__)
 support the following languages and compilers.
 
-.. include:: ../support/reusables/versions-compilers.rst
+.. include:: ../reusables/supported-versions-compilers.rst
 
 Frameworks and libraries
 ########################
@@ -31,4 +31,4 @@ The current versions of the CodeQL library and query packs (`source <https://git
     For example, by extending the data flow libraries to include data sources
     and sinks for additional libraries or frameworks.
     
-.. include:: ../support/reusables/frameworks.rst
\ No newline at end of file
+.. include:: ../reusables/supported-frameworks.rst
\ No newline at end of file
diff --git a/docs/codeql/codeql-overview/system-requirements.rst b/docs/codeql/codeql-overview/system-requirements.rst
index fd4465f9ba4..3d482fecedf 100644
--- a/docs/codeql/codeql-overview/system-requirements.rst
+++ b/docs/codeql/codeql-overview/system-requirements.rst
@@ -10,8 +10,8 @@ System requirements for running the latest version of CodeQL.
 Supported platforms
 #######################
 
-.. include:: ../support/reusables/platforms.rst
-    
+.. include:: ../reusables/supported-platforms.rst
+
 .. include:: ../reusables/kotlin-beta-note.rst
 
 Additional software requirements
diff --git a/docs/codeql/ql-training/template.rst b/docs/codeql/ql-training/template.rst
index 0fc0a740a66..503ac757fdb 100644
--- a/docs/codeql/ql-training/template.rst
+++ b/docs/codeql/ql-training/template.rst
@@ -41,7 +41,7 @@ For this example you should download:
 
 .. note::
 
-   Some notes about the project, perhaps a link to the project page on LGTM.
+   Some notes about the project.
 
 .. Agenda slide. Explaining what is to be covered in the presentation
 
diff --git a/docs/codeql/support/reusables/frameworks.rst b/docs/codeql/reusables/supported-frameworks.rst
similarity index 100%
rename from docs/codeql/support/reusables/frameworks.rst
rename to docs/codeql/reusables/supported-frameworks.rst
diff --git a/docs/codeql/support/reusables/platforms.rst b/docs/codeql/reusables/supported-platforms.rst
similarity index 100%
rename from docs/codeql/support/reusables/platforms.rst
rename to docs/codeql/reusables/supported-platforms.rst
diff --git a/docs/codeql/support/reusables/versions-compilers.rst b/docs/codeql/reusables/supported-versions-compilers.rst
similarity index 100%
rename from docs/codeql/support/reusables/versions-compilers.rst
rename to docs/codeql/reusables/supported-versions-compilers.rst
diff --git a/docs/codeql/support/conf.py b/docs/codeql/support/conf.py
deleted file mode 100644
index c8acb659695..00000000000
--- a/docs/codeql/support/conf.py
+++ /dev/null
@@ -1,101 +0,0 @@
-# -*- coding: utf-8 -*-
-#
-# CodeQL analysis support for LGTM Enterprise docs build configuration file.
-#
-# This file is execfile()d with the current directory set to its
-# containing dir.
-#
-# Note that not all possible configuration values are present in this
-# autogenerated file.
-#
-# All configuration values have a default; values that are commented out
-# serve to show the default.
-
-# For details of all possible config values, 
-# see https://www.sphinx-doc.org/en/master/usage/configuration.html
-
-##############################################################################
-#
-# Modified 22032021. 
-
-# The configuration values below are specific to the supported languages and frameworks project
-# To amend html_theme_options, update version/release number, or add more sphinx extensions,
-# refer to code/documentation/ql-documentation/global-sphinx-files/global-conf.py
-
-##############################################################################
-
-# -- Project-specific configuration -----------------------------------
-
-# Set QL as the default language for highlighting code. Set to none to disable 
-# syntax highlighting. If omitted or left blank, it defaults to Python 3. 
-highlight_language = 'none'
-
-# The name of the Pygments (syntax highlighting) style to use.
-pygments_style = 'sphinx'
-
-# The master toctree document.
-master_doc = 'index'
-
-# Project-specific information.
-project = u'Supported languages and frameworks for LGTM Enterprise'
-
-# The version info for this project, if different from version and release in main conf.py file.
-# The short X.Y version.
-
-# LGTM Enterprise release
-release = u'1.30'
-
-# CodeQL CLI version used by LGTM Enterprise release
-version = u'2.7.6'
-
-# -- Project-specifc options for HTML output ----------------------------------------------
-
-# The name for this set of Sphinx documents.  If None, it defaults to
-# "<project> v<release> documentation".
-html_title = 'Supported languages and frameworks'
-
-# Output file base name for HTML help builder.
-htmlhelp_basename = 'Supported languages and frameworks'
-
-# Add any paths that contain templates here, relative to this directory.
-templates_path = ['../_templates']
-
-# Add any paths that contain custom static files (such as style sheets) here,
-# relative to this directory. They are copied after the builtin static files,
-# so a file named "default.css" will overwrite the builtin "default.css".
-html_static_path = ['../_static']
-
-html_theme_options = {'font_size': '16px',
-                      'body_text': '#333', 
-                      'link': '#2F1695',
-                      'link_hover': '#2F1695',
-                      'show_powered_by': False,
-                      'nosidebar':True,
-                      'head_font_family': '-apple-system, BlinkMacSystemFont, "Segoe UI", Helvetica, Arial, sans-serif, "Apple Color Emoji", "Segoe UI Emoji"',
-                      }
-
-html_favicon = '../images/site/favicon.ico'
-
-# -- Currently unused, but potentially useful, configs--------------------------------------
-
-# Add any paths that contain custom themes here, relative to this directory.
-#html_theme_path = []
-
-# A shorter title for the navigation bar.  Default is the same as html_title.
-#html_short_title = None
-
-# The name of an image file (relative to this directory) to place at the top
-# of the sidebar.
-#html_logo = None
-
-# Custom sidebar templates, maps document names to template names.
-#html_sidebars = {}
-
-# Add any extra paths that contain custom files (such as robots.txt or
-# .htaccess) here, relative to this directory. These files are copied
-# directly to the root of the documentation.
-#html_extra_path = []
-
-# List of patterns, relative to source directory, that match files and
-# directories to ignore when looking for source files.
-exclude_patterns = ['read-me-project.rst', 'reusables/*']
diff --git a/docs/codeql/support/framework-support.rst b/docs/codeql/support/framework-support.rst
deleted file mode 100644
index d12b1a96c8f..00000000000
--- a/docs/codeql/support/framework-support.rst
+++ /dev/null
@@ -1,19 +0,0 @@
-Frameworks and libraries
-########################
-
-LGTM Enterprise |release| includes CodeQL CLI |version|. The CodeQL libraries and queries used by this version of LGTM Enterprise have been explicitly checked against the libraries and frameworks listed below.
-
-.. pull-quote::
-
-    Note
-
-    For details of framework and library support in the most recent release of the CodeQL CLI, see `Supported languages and frameworks <https://codeql.github.com/docs/codeql-overview/supported-languages-and-frameworks/>`__ in the CodeQL CLI documentation.
-
-.. pull-quote::
-
-    Tip
-    
-    If you're interested in other libraries or frameworks, you can extend the analysis to cover them. 
-    For example, by extending the data flow libraries to include data sources and sinks for additional libraries or frameworks.
-
-.. include:: reusables/frameworks.rst
diff --git a/docs/codeql/support/index.rst b/docs/codeql/support/index.rst
deleted file mode 100644
index 89812242fce..00000000000
--- a/docs/codeql/support/index.rst
+++ /dev/null
@@ -1,19 +0,0 @@
-Supported languages and frameworks
-##################################
-
-These pages describe the languages and frameworks supported in the latest enterprise release of CodeQL and LGTM. (CodeQL was previously known as QL.) 
-Users of `LGTM.com <https://lgtm.com/>`_ may find that additional features are supported because it's updated more frequently.
-
-For details see:
-
-.. toctree::
-
-  language-support.rst
-  framework-support.rst
-
-For details of the CodeQL libraries, see `CodeQL standard libraries <https://codeql.github.com/codeql-standard-libraries/>`_.
-
-.. toctree::
-   :hidden:
-
-   ql-training
\ No newline at end of file
diff --git a/docs/codeql/support/language-support.rst b/docs/codeql/support/language-support.rst
deleted file mode 100644
index 49b90693a7c..00000000000
--- a/docs/codeql/support/language-support.rst
+++ /dev/null
@@ -1,16 +0,0 @@
-Languages and compilers
-#######################
-
-LGTM Enterprise |release| includes CodeQL CLI |version|. LGTM Enterprise supports analysis of the following languages compiled by the following compilers.
-
-.. pull-quote::
-
-    Note
-
-    For details of language and compiler support in the most recent release of the CodeQL CLI, see `Supported languages and frameworks <https://codeql.github.com/docs/codeql-overview/supported-languages-and-frameworks/>`__ in the CodeQL CLI documentation.
-
-Note that where there are several versions or dialects of a language, the supported variants are listed.
-If your code requires a particular version of a compiler, check that this version is included below. 
-If you have any questions about language and compiler support, you can find help on the `GitHub Security Lab discussions board <https://github.com/github/securitylab/discussions>`__.
-
-.. include:: reusables/versions-compilers.rst
diff --git a/docs/codeql/support/ql-training.rst b/docs/codeql/support/ql-training.rst
deleted file mode 100644
index 6eb8019e5c9..00000000000
--- a/docs/codeql/support/ql-training.rst
+++ /dev/null
@@ -1,63 +0,0 @@
-CodeQL training and variant analysis examples
-=============================================
-
-CodeQL and variant analysis
----------------------------
-
-Variant analysis is the process of using a known vulnerability as a seed to find similar problems in your code. Security engineers typically perform variant analysis to identify possible vulnerabilities and to ensure that these threats are properly fixed across multiple code bases.
-
-CodeQL is the code analysis engine that underpins LGTM, the community driven security analysis platform. Together, CodeQL and LGTM provide continuous monitoring and scalable variant analysis for your projects, even if you don’t have your own team of dedicated security engineers. You can read more about using CodeQL and LGTM in variant analysis on the `Security Lab research page <https://securitylab.github.com/research>`__.
-
-CodeQL is easy to learn, and exploring code using CodeQL is the most efficient way to perform variant analysis. 
-
-Learning CodeQL for variant analysis
-------------------------------------
-
-Start learning how to use CodeQL in variant analysis for a specific language by looking at the topics below. Each topic links to a short presentation on CodeQL, its libraries, or an example variant discovered using CodeQL.
-
-.. |arrow-l| unicode:: U+2190
-
-.. |arrow-r| unicode:: U+2192
-
-.. |info| unicode:: U+24D8
-
-When you have selected a presentation, use |arrow-r| and |arrow-l| to navigate between slides.
-Press **p** to view the additional notes on slides that have an information icon |info| in the top right corner, and press **f** to enter full-screen mode.
-
-The presentations contain a number of query examples.
-We recommend that you download `CodeQL for Visual Studio Code <https://codeql.github.com/docs/codeql-for-visual-studio-code/>`__ and add the example database for each presentation so that you can find the bugs mentioned in the slides. 
-
-
-.. pull-quote:: 
-
-   Information
-
-   The presentations listed below are used in CodeQL and variant analysis training sessions run by GitHub engineers. 
-   Therefore, be aware that the slides are designed to be presented by an instructor. 
-   If you are using the slides without an instructor, please use the additional notes to help guide you through the examples. 
-
-CodeQL and variant analysis for C/C++
-~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
-
-- `Introduction to variant analysis: CodeQL for C/C++ </QL/ql-training/cpp/intro-ql-cpp.html>`__–an introduction to variant analysis and CodeQL for C/C++ programmers.
-- `Example: Bad overflow guard </QL/ql-training/cpp/bad-overflow-guard.html>`__–an example of iterative query development to find bad overflow guards in a C++ project.
-- `Program representation: CodeQL for C/C++ </QL/ql-training/cpp/program-representation-cpp.html>`__–information on how CodeQL analysis represents C/C++ programs. 
-- `Introduction to local data flow </QL/ql-training/cpp/data-flow-cpp.html>`__–an introduction to analyzing local data flow in C/C++ using CodeQL, including an example demonstrating how to develop a query to find a real CVE.
-- `Exercise: snprintf overflow </QL/ql-training/cpp/snprintf.html>`__–an example demonstrating how to develop a data flow query.
-- `Introduction to global data flow </QL/ql-training/cpp/global-data-flow-cpp.html>`__–an introduction to analyzing global data flow in C/C++ using CodeQL.
-- `Analyzing control flow: CodeQL for C/C++  </QL/ql-training/cpp/control-flow-cpp.html>`__–an introduction to analyzing control flow in C/C++ using CodeQL.
-
-CodeQL and variant analysis for Java
-~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
-
-- `Introduction to variant analysis: CodeQL for Java </QL/ql-training/java/intro-ql-java.html>`__–an introduction to variant analysis and CodeQL for Java programmers.
-- `Example: Query injection </QL/ql-training/java/query-injection-java.html>`__–an example of iterative query development to find unsanitized SPARQL injections in a Java project.
-- `Program representation: CodeQL for Java </QL/ql-training/java/program-representation-java.html>`__–information on how CodeQL analysis represents Java programs. 
-- `Introduction to local data flow </QL/ql-training/java/data-flow-java.html>`__–an introduction to analyzing local data flow in Java using CodeQL, including an example demonstrating how to develop a query to find a real CVE.
-- `Exercise: Apache Struts </QL/ql-training/java/apache-struts-java.html>`__–an example demonstrating how to develop a data flow query.
-- `Introduction to global data flow </QL/ql-training/java/global-data-flow-java.html>`__–an introduction to analyzing global data flow in Java using CodeQL.
-
-Further reading
-~~~~~~~~~~~~~~~
-
-- `GitHub Security Lab <https://securitylab.github.com/research>`__
diff --git a/docs/codeql/support/read-me-project.rst b/docs/codeql/support/read-me-project.rst
deleted file mode 100644
index 81182043793..00000000000
--- a/docs/codeql/support/read-me-project.rst
+++ /dev/null
@@ -1,15 +0,0 @@
-Publishing this project for a new version
-#########################################
-
-To update this project for a new version:
-
-1. Check with the language teams that all information in the ``ql/change-notes/support/`` directory is ready.
-
-2. Open the ``global-conf.py`` file in the ``global-sphinx-files`` directory and change the following variables 
-to the correct value(s) if necessary:
-
-    * ``version =``
-    * ``release = ``
-    * If it's the first release of the year, ``copyright =``
-
-3. Commit your changes. The output of the ``doc/sphinx`` PR check should be correct for the new version and ready to publish.
\ No newline at end of file

From b5f849463bc771e65c30246d700f0e643ea5c198 Mon Sep 17 00:00:00 2001
From: Felicity Chapman <felicitymay@github.com>
Date: Fri, 25 Nov 2022 11:19:40 +0000
Subject: [PATCH 0701/1420] Update QL library references

---
 cpp/ql/lib/definitions.qll                               | 4 ++--
 cpp/ql/src/Metrics/Dependencies/ExternalDependencies.qll | 2 +-
 ruby/ql/lib/codeql/Locations.qll                         | 4 ++--
 ruby/ql/lib/codeql/ruby/printAst.qll                     | 2 +-
 4 files changed, 6 insertions(+), 6 deletions(-)

diff --git a/cpp/ql/lib/definitions.qll b/cpp/ql/lib/definitions.qll
index cb229d66ef1..e866a50513b 100644
--- a/cpp/ql/lib/definitions.qll
+++ b/cpp/ql/lib/definitions.qll
@@ -12,8 +12,8 @@ import IDEContextual
  *
  * In some cases it is preferable to modify locations (the
  * `hasLocationInfo()` predicate) so that they are short, and
- * non-overlapping with other locations that might be highlighted in
- * the LGTM interface.
+ * non-overlapping with other locations that might be reported as
+ * code scanning alerts in GitHub.
  *
  * We need to give locations that may not be in the database, so
  * we use `hasLocationInfo()` rather than `getLocation()`.
diff --git a/cpp/ql/src/Metrics/Dependencies/ExternalDependencies.qll b/cpp/ql/src/Metrics/Dependencies/ExternalDependencies.qll
index 352cf86ddd5..967a9987a4f 100644
--- a/cpp/ql/src/Metrics/Dependencies/ExternalDependencies.qll
+++ b/cpp/ql/src/Metrics/Dependencies/ExternalDependencies.qll
@@ -52,7 +52,7 @@ class Library extends LibraryT {
     // The versions reported for C/C++ dependencies are just the versions that
     // happen to be installed on the system where the build takes place.
     // Reporting those versions is likely to cause misunderstandings, both for
-    // people reading them and for the vulnerability checker of lgtm.
+    // people reading them and for vulnerability checkers.
     result = "unknown"
   }
 
diff --git a/ruby/ql/lib/codeql/Locations.qll b/ruby/ql/lib/codeql/Locations.qll
index 8bed8d904f1..269d16833eb 100644
--- a/ruby/ql/lib/codeql/Locations.qll
+++ b/ruby/ql/lib/codeql/Locations.qll
@@ -6,7 +6,7 @@ import files.FileSystem
  * A location as given by a file, a start line, a start column,
  * an end line, and an end column.
  *
- * For more information about locations see [LGTM locations](https://codeql.github.com/docs/writing-codeql-queries/providing-locations-in-codeql-queries/).
+ * For more information about locations see [Locations](https://codeql.github.com/docs/writing-codeql-queries/providing-locations-in-codeql-queries/).
  */
 class Location extends @location {
   /** Gets the file for this location. */
@@ -40,7 +40,7 @@ class Location extends @location {
    * The location spans column `startcolumn` of line `startline` to
    * column `endcolumn` of line `endline` in file `filepath`.
    * For more information, see
-   * [LGTM locations](https://codeql.github.com/docs/writing-codeql-queries/providing-locations-in-codeql-queries/).
+   * [Providing locations in CodeQL queries](https://codeql.github.com/docs/writing-codeql-queries/providing-locations-in-codeql-queries/).
    */
   predicate hasLocationInfo(
     string filepath, int startline, int startcolumn, int endline, int endcolumn
diff --git a/ruby/ql/lib/codeql/ruby/printAst.qll b/ruby/ql/lib/codeql/ruby/printAst.qll
index 28f5def4969..25aa7908db3 100644
--- a/ruby/ql/lib/codeql/ruby/printAst.qll
+++ b/ruby/ql/lib/codeql/ruby/printAst.qll
@@ -70,7 +70,7 @@ class PrintAstNode extends TPrintNode {
    * Holds if this node is at the specified location. The location spans column
    * `startcolumn` of line `startline` to column `endcolumn` of line `endline`
    * in file `filepath`. For more information, see
-   * [LGTM locations](https://codeql.github.com/docs/writing-codeql-queries/providing-locations-in-codeql-queries/).
+   * [Locations](https://codeql.github.com/docs/writing-codeql-queries/providing-locations-in-codeql-queries/).
    */
   predicate hasLocationInfo(
     string filepath, int startline, int startcolumn, int endline, int endcolumn

From ea127c3d99c217bee0f7f0c7165eb90ed2dfa5e3 Mon Sep 17 00:00:00 2001
From: Felicity Chapman <felicitymay@github.com>
Date: Fri, 25 Nov 2022 11:20:03 +0000
Subject: [PATCH 0702/1420] A few more references

---
 docs/codeql/reusables/supported-versions-compilers.rst    | 2 +-
 .../metadata-for-codeql-queries.rst                       | 8 ++++----
 .../providing-locations-in-codeql-queries.rst             | 8 ++++----
 3 files changed, 9 insertions(+), 9 deletions(-)

diff --git a/docs/codeql/reusables/supported-versions-compilers.rst b/docs/codeql/reusables/supported-versions-compilers.rst
index ab09831884b..85a650ed17a 100644
--- a/docs/codeql/reusables/supported-versions-compilers.rst
+++ b/docs/codeql/reusables/supported-versions-compilers.rst
@@ -37,4 +37,4 @@
     .. [7] JSX and Flow code, YAML, JSON, HTML, and XML files may also be analyzed with JavaScript files.
     .. [8] The extractor requires Python 3 to run. To analyze Python 2.7 you should install both versions of Python.
     .. [9] Requires glibc 2.17.
-    .. [10] TypeScript analysis is performed by running the JavaScript extractor with TypeScript enabled. This is the default for LGTM.
+    .. [10] TypeScript analysis is performed by running the JavaScript extractor with TypeScript enabled. This is the default.
diff --git a/docs/codeql/writing-codeql-queries/metadata-for-codeql-queries.rst b/docs/codeql/writing-codeql-queries/metadata-for-codeql-queries.rst
index 040f873d410..46807e45399 100644
--- a/docs/codeql/writing-codeql-queries/metadata-for-codeql-queries.rst
+++ b/docs/codeql/writing-codeql-queries/metadata-for-codeql-queries.rst
@@ -9,7 +9,7 @@ About query metadata
 --------------------
 
 Any query that is run as part of an analysis includes a number of properties, known as query metadata. Metadata is included at the top of each query file as the content of a QLDoc comment. 
-This metadata tells LGTM and the CodeQL :ref:`extension for VS Code <codeql-for-visual-studio-code>` how to handle the query and display its results correctly. 
+This metadata tells the CodeQL :ref:`extension for VS Code <codeql-for-visual-studio-code>` and the `Code scanning feature in GitHub <https://docs.github.com/en/code-security/code-scanning/automatically-scanning-your-code-for-vulnerabilities-and-errors/about-code-scanning-with-codeql>`__ how to handle the query and display its results correctly. 
 It also gives other users information about what the query results mean. For more information on query metadata, see the `query metadata style guide <https://github.com/github/codeql/blob/main/docs/query-metadata-style-guide.md>`__ in our `open source repository <https://github.com/github/codeql>`__ on GitHub.
 
 .. pull-quote::
@@ -28,7 +28,7 @@ The following properties are supported by all query files:
 +=======================+===========================+=======================================================================================================================================================================================================================================================================================================================================================================+
 | ``@description``      | ``<text>``                | A sentence or short paragraph to describe the purpose of the query and *why* the result is useful or important. The description is written in plain text, and uses single quotes (``'``) to enclose code elements.                                                                                                                                                    |
 +-----------------------+---------------------------+-----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+
-| ``@id``               | ``<text>``                | A sequence of words composed of lowercase letters or digits, delimited by ``/`` or ``-``, identifying and classifying the query. Each query must have a **unique** ID. To ensure this, it may be helpful to use a fixed structure for each ID. For example, the standard LGTM queries have the following format: ``<language>/<brief-description>``.                  |
+| ``@id``               | ``<text>``                | A sequence of words composed of lowercase letters or digits, delimited by ``/`` or ``-``, identifying and classifying the query. Each query must have a **unique** ID. To ensure this, it may be helpful to use a fixed structure for each ID. For example, the standard CodeQL queries have the following format: ``<language>/<brief-description>``.                |
 +-----------------------+---------------------------+-----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+
 | ``@kind``             | | ``problem``             | Identifies the query is an alert (``@kind problem``) or a path (``@kind path-problem``). For more information on these query types, see ":doc:`About CodeQL queries <about-codeql-queries>`."                                                                                                                                                                         |
 |                       | | ``path-problem``        |                                                                                                                                                                                                                                                                                                                                                                       |
@@ -40,12 +40,12 @@ The following properties are supported by all query files:
 |                       | | ``readability``         |                                                                                                                                                                                                                                                                                                                                                                       |
 |                       | | ``security``            |                                                                                                                                                                                                                                                                                                                                                                       |
 +-----------------------+---------------------------+-----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+
-| ``@precision``        | | ``low``                 | Indicates the percentage of query results that are true positives (as opposed to false positive results). This, along with the ``@problem.severity`` property, determines whether the results are displayed by default on LGTM.                                                                                                                                       |
+| ``@precision``        | | ``low``                 | Indicates the percentage of query results that are true positives (as opposed to false positive results). This, along with the ``@problem.severity`` property, determines how the results are displayed in GitHub.                                                                                                                                                    |
 |                       | | ``medium``              |                                                                                                                                                                                                                                                                                                                                                                       |
 |                       | | ``high``                |                                                                                                                                                                                                                                                                                                                                                                       |
 |                       | | ``very-high``           |                                                                                                                                                                                                                                                                                                                                                                       |
 +-----------------------+---------------------------+-----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+
-| ``@problem.severity`` | | ``error``               | Defines the level of severity of any alerts generated by a non-security query. This, along with the ``@precision`` property, determines whether the results are displayed by default on LGTM.                                                                                                                                                                         |
+| ``@problem.severity`` | | ``error``               | Defines the level of severity of any alerts generated by a non-security query. This, along with the ``@precision`` property, determines how the results are displayed in GitHub.                                                                                                                                                                                      |
 |                       | | ``warning``             |                                                                                                                                                                                                                                                                                                                                                                       |
 |                       | | ``recommendation``      |                                                                                                                                                                                                                                                                                                                                                                       |
 +-----------------------+---------------------------+-----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+
diff --git a/docs/codeql/writing-codeql-queries/providing-locations-in-codeql-queries.rst b/docs/codeql/writing-codeql-queries/providing-locations-in-codeql-queries.rst
index 239d3fc7628..f8f5682c8b9 100644
--- a/docs/codeql/writing-codeql-queries/providing-locations-in-codeql-queries.rst
+++ b/docs/codeql/writing-codeql-queries/providing-locations-in-codeql-queries.rst
@@ -11,7 +11,7 @@ CodeQL includes mechanisms for extracting the location of elements in a codebase
 About locations
 ---------------
 
-When displaying information to the user, LGTM needs to be able to extract location information from the results of a query. In order to do this, all QL classes which can provide location information should do this by using one of the following mechanisms:
+When displaying information to the user, applications need to be able to extract location information from the results of a query. In order to do this, all QL classes which can provide location information should do this by using one of the following mechanisms:
 
 -  `Providing URLs <#providing-urls>`__
 -  `Providing location information <#providing-location-information>`__
@@ -49,7 +49,7 @@ A custom URL can be provided by defining a QL predicate returning ``string`` wit
 File URLs
 ^^^^^^^^^
 
-LGTM supports the display of URLs which define a line and column in a source file.
+The CodeQL extension for Visual Studio Code and the code scanning views in GitHub support the display of URLs which define a line and column in a source file.
 
 The schema is ``file://``, which is followed by the absolute path to a file, followed by four numbers separated by colons. The numbers denote start line, start column, end line and end column. Both line and column numbers are **1-based**, for example:
 
@@ -57,12 +57,12 @@ The schema is ``file://``, which is followed by the absolute path to a file, fol
 -  ``file:///opt/src/my/file.java:1:1:2:1`` denotes the location that starts at the beginning of the file and extends to the first character of the second line (the range is inclusive).
 -  ``file:///opt/src/my/file.java:1:0:1:0`` is taken, by convention, to denote the entire first line of the file.
 
-By convention, the location of an entire file may also be denoted by a ``file://`` URL without trailing numbers. Optionally, the location within a file can be denoted using three numbers to define the start line number, character offset and character length of the location respectively. Results of these types are not displayed in LGTM.
+By convention, the location of an entire file may also be denoted by a ``file://`` URL without trailing numbers. Optionally, the location within a file can be denoted using three numbers to define the start line number, character offset and character length of the location respectively. Results of these types are not displayed as code scanning alerts.
 
 Other types of URL
 ^^^^^^^^^^^^^^^^^^
 
-The following, less-common types of URL are valid but are not supported by LGTM and will be omitted from any results:
+The following, less-common types of URL are valid but are not interpreted as code scanning alerts and will be omitted from any results:
 
 -  **HTTP URLs** are supported in some client applications. For an example, see the code snippet above.
 -  **Folder URLs** can be useful, for example to provide folder-level metrics. They may use a file URL, for example ``file:///opt/src:0:0:0:0``, but they may also start with a scheme of ``folder://``, and no trailing numbers, for example ``folder:///opt/src``.

From c451fa8ad4ca3bf8e5fa1d0e9ad3503b89d9f870 Mon Sep 17 00:00:00 2001
From: Felicity Chapman <felicitymay@github.com>
Date: Fri, 25 Nov 2022 12:59:48 +0000
Subject: [PATCH 0703/1420] Update cpp/ql/src/Likely
 Bugs/RedundantNullCheckSimple.ql

Co-authored-by: Taus <tausbn@github.com>
---
 cpp/ql/src/Likely Bugs/RedundantNullCheckSimple.ql | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/cpp/ql/src/Likely Bugs/RedundantNullCheckSimple.ql b/cpp/ql/src/Likely Bugs/RedundantNullCheckSimple.ql
index bf39200c5b6..0de0979f9a3 100644
--- a/cpp/ql/src/Likely Bugs/RedundantNullCheckSimple.ql	
+++ b/cpp/ql/src/Likely Bugs/RedundantNullCheckSimple.ql	
@@ -12,7 +12,7 @@
  */
 
 /*
- * Note: this query is not assigned a precision yet because we don't want it 
+ * Note: this query is not assigned a precision yet because we don't want it
  * included in query suites until its performance is well understood.
  */
 

From c1e6d4c82af7fef1d90405d2a219562b3d56b2ef Mon Sep 17 00:00:00 2001
From: Felicity Chapman <felicitymay@github.com>
Date: Mon, 28 Nov 2022 11:19:34 +0000
Subject: [PATCH 0704/1420] Update .github/ISSUE_TEMPLATE/ql---general.md

---
 .github/ISSUE_TEMPLATE/ql---general.md | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/.github/ISSUE_TEMPLATE/ql---general.md b/.github/ISSUE_TEMPLATE/ql---general.md
index 7d317fc7580..f68574485c1 100644
--- a/.github/ISSUE_TEMPLATE/ql---general.md
+++ b/.github/ISSUE_TEMPLATE/ql---general.md
@@ -9,5 +9,6 @@ assignees: ''
 
 **Description of the issue**
 
-<!-- Please explain briefly what is the problem.-->
+<!-- Please explain briefly what is the problem.
+If it is about a GitHub project, please include its URL. -->
 

From da4c17853472d69a5a5f4b913c116ab65154457a Mon Sep 17 00:00:00 2001
From: Felicity Chapman <felicitymay@github.com>
Date: Thu, 24 Nov 2022 12:19:29 +0000
Subject: [PATCH 0705/1420] Update main Python articles

---
 .../analyzing-control-flow-in-python.rst       |  6 +++---
 .../analyzing-data-flow-in-python.rst          | 18 ++++++------------
 .../codeql-for-python.rst                      |  2 +-
 .../codeql-library-for-python.rst              | 10 ++++------
 .../expressions-and-statements-in-python.rst   | 10 ++--------
 .../functions-in-python.rst                    |  8 +++-----
 .../using-api-graphs-in-python.rst             | 12 ------------
 7 files changed, 19 insertions(+), 47 deletions(-)

diff --git a/docs/codeql/codeql-language-guides/analyzing-control-flow-in-python.rst b/docs/codeql/codeql-language-guides/analyzing-control-flow-in-python.rst
index 15f6a96596d..c37b721cc87 100644
--- a/docs/codeql/codeql-language-guides/analyzing-control-flow-in-python.rst
+++ b/docs/codeql/codeql-language-guides/analyzing-control-flow-in-python.rst
@@ -47,7 +47,7 @@ Example finding unreachable AST nodes
    where not exists(node.getAFlowNode())
    select node
 
-➤ `See this in the query console on LGTM.com <https://lgtm.com/query/669220024/>`__. The demo projects on LGTM.com all have some code that has no control flow node, and is therefore unreachable. However, since the ``Module`` class is also a subclass of the ``AstNode`` class, the query also finds any modules implemented in C or with no source code. Therefore, it is better to find all unreachable statements.
+Many codebases have some code that has no control flow node, and is therefore unreachable. However, since the ``Module`` class is also a subclass of the ``AstNode`` class, the query also finds any modules implemented in C or with no source code. Therefore, it is better to find all unreachable statements.
 
 Example finding unreachable statements
 ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
@@ -60,7 +60,7 @@ Example finding unreachable statements
    where not exists(s.getAFlowNode())
    select s
 
-➤ `See this in the query console on LGTM.com <https://lgtm.com/query/670720181/>`__. This query gives fewer results, but most of the projects have some unreachable nodes. These are also highlighted by the standard "Unreachable code" query. For more information, see `Unreachable code <https://lgtm.com/rules/3980095>`__ on LGTM.com.
+This query should give fewer results. You can also find unreachable code using the standard "Unreachable code" query. For more information, see `Unreachable code <https://codeql.github.com/codeql-query-help/python/py-unreachable-statement/>`__.
 
 The ``BasicBlock`` class
 ------------------------
@@ -114,7 +114,7 @@ Example finding mutually exclusive blocks within the same function
    )
    select b1, b2
 
-➤ `See this in the query console on LGTM.com <https://lgtm.com/query/671000028/>`__. This typically gives a very large number of results, because it is a common occurrence in normal control flow. It is, however, an example of the sort of control-flow analysis that is possible. Control-flow analyses such as this are an important aid to data flow analysis. For more information, see ":doc:`Analyzing data flow in Python <analyzing-data-flow-in-python>`."
+This typically gives a very large number of results, because it is a common occurrence in normal control flow. It is, however, an example of the sort of control-flow analysis that is possible. Control-flow analyses such as this are an important aid to data flow analysis. For more information, see ":doc:`Analyzing data flow in Python <analyzing-data-flow-in-python>`."
 
 Further reading
 ---------------
diff --git a/docs/codeql/codeql-language-guides/analyzing-data-flow-in-python.rst b/docs/codeql/codeql-language-guides/analyzing-data-flow-in-python.rst
index f5128e5eafd..2ad5fc925f0 100644
--- a/docs/codeql/codeql-language-guides/analyzing-data-flow-in-python.rst
+++ b/docs/codeql/codeql-language-guides/analyzing-data-flow-in-python.rst
@@ -97,11 +97,9 @@ Python has builtin functionality for reading and writing files, such as the func
       call = API::moduleImport("os").getMember("open").getACall()
     select call.getArg(0)
 
-➤ `See this in the query console on LGTM.com <https://lgtm.com/query/8635258505893505141/>`__. Two of the demo projects make use of this low-level API.
-
 Notice the use of the ``API`` module for referring to library functions. For more information, see ":doc:`Using API graphs in Python <using-api-graphs-in-python>`."
 
-Unfortunately this will only give the expression in the argument, not the values which could be passed to it. So we use local data flow to find all expressions that flow into the argument:
+Unfortunately this query will only give the expression in the argument, not the values which could be passed to it. So we use local data flow to find all expressions that flow into the argument:
 
 .. code-block:: ql
 
@@ -115,9 +113,7 @@ Unfortunately this will only give the expression in the argument, not the values
       DataFlow::localFlow(expr, call.getArg(0))
     select call, expr
 
-➤ `See this in the query console on LGTM.com <https://lgtm.com/query/8213643003890447109/>`__. Many expressions flow to the same call.
-
-We see that we get several data-flow nodes for an expression as it flows towards a call (notice repeated locations in the ``call`` column). We are mostly interested in the "first" of these, what might be called the local source for the file name. To restrict attention to such local sources, and to simultaneously make the analysis more performant, we have the QL class ``LocalSourceNode``. We could demand that ``expr`` is such a node:
+Typically, you will see several data-flow nodes for an expression as it flows towards a call (notice repeated locations in the ``call`` column). We are mostly interested in the "first" of these, what might be called the local source for the file name. To restrict attention to such local sources, and to simultaneously make the analysis more performant, we have the QL class ``LocalSourceNode``. We could demand that ``expr`` is such a node:
 
 .. code-block:: ql
 
@@ -160,9 +156,9 @@ As an alternative, we can ask more directly that ``expr`` is a local source of t
       expr = call.getArg(0).getALocalSource()
     select call, expr
 
-➤ `See this in the query console on LGTM.com <https://lgtm.com/query/6602079735954016687/>`__. All these three queries give identical results. We now mostly have one expression per call.
+These three queries all give identical results. We now mostly have one expression per call.
 
-We still have some cases of more than one expression flowing to a call, but then they flow through different code paths (possibly due to control-flow splitting, as in the second case).
+We still have some cases of more than one expression flowing to a call, but then they flow through different code paths (possibly due to control-flow splitting).
 
 We might want to make the source more specific, for example a parameter to a function or method. This query finds instances where a parameter is used as the name when opening a file:
 
@@ -178,7 +174,7 @@ We might want to make the source more specific, for example a parameter to a fun
       DataFlow::localFlow(p, call.getArg(0))
     select call, p
 
-➤ `See this in the query console on LGTM.com <https://lgtm.com/query/3998032643497238063/>`__. Very few results now; these could feasibly be inspected manually.
+For most codebases, this will return only a few results and these could be inspected manually.
 
 Using the exact name supplied via the parameter may be too strict. If we want to know if the parameter influences the file name, we can use taint tracking instead of data flow. This query finds calls to ``os.open`` where the filename is derived from a parameter:
 
@@ -194,7 +190,7 @@ Using the exact name supplied via the parameter may be too strict. If we want to
       TaintTracking::localTaint(p, call.getArg(0))
     select call, p
 
-➤ `See this in the query console on LGTM.com <https://lgtm.com/query/2129957933670836953/>`__. Now we get more results and in more projects.
+Typically, this finds more results.
 
 Global data flow
 ----------------
@@ -369,8 +365,6 @@ This data flow configuration tracks data flow from environment variables to open
     select fileOpen, "This call to 'os.open' uses data from $@.",
       environment, "call to 'os.getenv'"
 
-➤ `Running this in the query console on LGTM.com <https://lgtm.com/query/6582374907796191895/>`__ unsurprisingly yields no results in the demo projects.
-
 
 Further reading
 ---------------
diff --git a/docs/codeql/codeql-language-guides/codeql-for-python.rst b/docs/codeql/codeql-language-guides/codeql-for-python.rst
index 15b0c4a84f8..3b639e9cdf2 100644
--- a/docs/codeql/codeql-language-guides/codeql-for-python.rst
+++ b/docs/codeql/codeql-language-guides/codeql-for-python.rst
@@ -16,7 +16,7 @@ Experiment and learn how to write effective and efficient queries for CodeQL dat
    expressions-and-statements-in-python
    analyzing-control-flow-in-python
 
--  :doc:`Basic query for Python code <basic-query-for-python-code>`: Learn to write and run a simple CodeQL query using LGTM.
+-  :doc:`Basic query for Python code <basic-query-for-python-code>`: Learn to write and run a simple CodeQL query.
 
 -  :doc:`CodeQL library for Python <codeql-library-for-python>`: When you need to analyze a Python program, you can make use of the large collection of classes in the CodeQL library for Python.
 
diff --git a/docs/codeql/codeql-language-guides/codeql-library-for-python.rst b/docs/codeql/codeql-language-guides/codeql-library-for-python.rst
index 204a6d22c3b..c1b392cc358 100644
--- a/docs/codeql/codeql-language-guides/codeql-library-for-python.rst
+++ b/docs/codeql/codeql-language-guides/codeql-library-for-python.rst
@@ -53,7 +53,7 @@ All scopes are basically a list of statements, although ``Scope`` classes have a
    where f.getScope() instanceof Function
    select f
 
-➤ `See this in the query console on LGTM.com <https://lgtm.com/query/665620040/>`__. Many projects have nested functions.
+Many codebases use nested functions.
 
 Statement
 ^^^^^^^^^
@@ -95,7 +95,7 @@ As an example, to find expressions of the form ``a+2`` where the left is a simpl
    where bin.getLeft() instanceof Name and bin.getRight() instanceof Num
    select bin
 
-➤ `See this in the query console on LGTM.com <https://lgtm.com/query/669950026/>`__. Many projects include examples of this pattern.
+Many codebases include examples of this pattern.
 
 Variable
 ^^^^^^^^
@@ -126,7 +126,7 @@ For our first example, we can find all ``finally`` blocks by using the ``Try`` c
    from Try t
    select t.getFinalbody()
 
-➤ `See this in the query console on LGTM.com <https://lgtm.com/query/659662193/>`__. Many projects include examples of this pattern.
+Many codebases include examples of this pattern.
 
 2. Finding ``except`` blocks that do nothing
 ''''''''''''''''''''''''''''''''''''''''''''
@@ -157,7 +157,7 @@ Both forms are equivalent. Using the positive expression, the whole query looks
    where forall(Stmt s | s = ex.getAStmt() | s instanceof Pass)
    select ex
 
-➤ `See this in the query console on LGTM.com <https://lgtm.com/query/690010036/>`__. Many projects include pass-only ``except`` blocks.
+Many codebases include pass-only ``except`` blocks.
 
 Summary
 ^^^^^^^
@@ -278,8 +278,6 @@ Using this predicate we can select the longest ``BasicBlock`` by selecting the `
    where bb_length(b) = max(bb_length(_))
    select b
 
-➤ `See this in the query console on LGTM.com <https://lgtm.com/query/666730036/>`__. When we ran it on the LGTM.com demo projects, the *openstack/nova* and *ytdl-org/youtube-dl* projects both contained source code results for this query.
-
 .. pull-quote::
 
    Note
diff --git a/docs/codeql/codeql-language-guides/expressions-and-statements-in-python.rst b/docs/codeql/codeql-language-guides/expressions-and-statements-in-python.rst
index 48cca630660..32a16560bc3 100644
--- a/docs/codeql/codeql-language-guides/expressions-and-statements-in-python.rst
+++ b/docs/codeql/codeql-language-guides/expressions-and-statements-in-python.rst
@@ -54,8 +54,6 @@ The ``global`` statement in Python declares a variable with a global (module-lev
    where g.getScope() instanceof Module
    select g
 
-➤ `See this in the query console on LGTM.com <https://lgtm.com/query/686330052/>`__. None of the demo projects on LGTM.com has a global statement that matches this pattern.
-
 The line: ``g.getScope() instanceof Module`` ensures that the ``Scope`` of ``Global g`` is a ``Module``, rather than a class or function.
 
 Example finding 'if' statements with redundant branches
@@ -81,7 +79,7 @@ To find statements like this that could be simplified we can write a query.
      and forall(Stmt p | p = l.getAnItem() | p instanceof Pass)
    select i
 
-➤ `See this in the query console on LGTM.com <https://lgtm.com/query/672230053/>`__. Many projects have some ``if`` statements that match this pattern.
+Many codebases have some ``if`` statements that match this pattern.
 
 The line: ``(l = i.getBody() or l = i.getOrelse())`` restricts the ``StmtList l`` to branches of the ``if`` statement.
 
@@ -150,8 +148,6 @@ We can check for these using a query.
      and cmp.getOp(0) instanceof Is and cmp.getComparator(0) = literal
    select cmp
 
-➤ `See this in the query console on LGTM.com <https://lgtm.com/query/688180010/>`__. Two of the demo projects on LGTM.com use this pattern: *saltstack/salt* and *openstack/nova*.
-
 The clause ``cmp.getOp(0) instanceof Is and cmp.getComparator(0) = literal`` checks that the first comparison operator is "is" and that the first comparator is a literal.
 
 .. pull-quote::
@@ -180,7 +176,7 @@ If there are duplicate keys in a Python dictionary, then the second key will ove
      and k1 != k2 and same_key(k1, k2)
    select k1, "Duplicate key in dict literal"
 
-➤ `See this in the query console on LGTM.com <https://lgtm.com/query/663330305/>`__. When we ran this query on LGTM.com, the source code of the *saltstack/salt* project contained an example of duplicate dictionary keys. The results were also highlighted as alerts by the standard "Duplicate key in dict literal" query. Two of the other demo projects on LGTM.com refer to duplicate dictionary keys in library files. For more information, see `Duplicate key in dict literal <https://lgtm.com/rules/3980087>`__ on LGTM.com.
+When we ran this query on some test codebases, we found examples of duplicate dictionary keys. The results were also highlighted as alerts by the standard "Duplicate key in dict literal" query. For more information, see `Duplicate key in dict literal <https://codeql.github.com/codeql-query-help/python/py-duplicate-key-dict-literal/>`__.
 
 The supporting predicate ``same_key`` checks that the keys have the same identifier. Separating this part of the logic into a supporting predicate, instead of directly including it in the query, makes it easier to understand the query as a whole. The casts defined in the predicate restrict the expression to the type specified and allow predicates to be called on the type that is cast-to. For example:
 
@@ -222,8 +218,6 @@ This basic query can be improved by checking that the one line of code is a Java
        and attr.getObject() = self and self.getId() = "self"
    select f, "This function is a Java-style getter."
 
-➤ `See this in the query console on LGTM.com <https://lgtm.com/query/669220054/>`__. Of the demo projects on LGTM.com, only the *openstack/nova* project has examples of functions that appear to be Java-style getters.
-
 .. code-block:: ql
 
    ret = f.getStmt(0) and ret.getValue() = attr
diff --git a/docs/codeql/codeql-language-guides/functions-in-python.rst b/docs/codeql/codeql-language-guides/functions-in-python.rst
index ab401f6c5e5..fbb4ff0d6e5 100644
--- a/docs/codeql/codeql-language-guides/functions-in-python.rst
+++ b/docs/codeql/codeql-language-guides/functions-in-python.rst
@@ -28,7 +28,7 @@ Using the member predicate ``Function.getName()``, we can list all of the getter
    where f.getName().matches("get%")
    select f, "This is a function called get..."
 
-➤ `See this in the query console on LGTM.com <https://lgtm.com/query/669220031/>`__. This query typically finds a large number of results. Usually, many of these results are for functions (rather than methods) which we are not interested in.
+This query typically finds a large number of results. Usually, many of these results are for functions (rather than methods) which we are not interested in.
 
 Finding all methods called "get..."
 -----------------------------------
@@ -43,7 +43,7 @@ You can modify the query above to return more interesting results. As we are onl
    where f.getName().matches("get%") and f.isMethod()
    select f, "This is a method called get..."
 
-➤ `See this in the query console on LGTM.com <https://lgtm.com/query/690010035/>`__. This finds methods whose name starts with ``"get"``, but many of those are not the sort of simple getters we are interested in.
+This finds methods whose name starts with ``"get"``, but many of those are not the sort of simple getters we are interested in.
 
 Finding one line methods called "get..."
 ----------------------------------------
@@ -59,7 +59,7 @@ We can modify the query further to include only methods whose body consists of a
     and count(f.getAStmt()) = 1
    select f, "This function is (probably) a getter."
 
-➤ `See this in the query console on LGTM.com <https://lgtm.com/query/667290044/>`__. This query returns fewer results, but if you examine the results you can see that there are still refinements to be made. This is refined further in ":doc:`Expressions and statements in Python <expressions-and-statements-in-python>`."
+This query returns fewer results, but if you examine the results you can see that there are still refinements to be made. This is refined further in ":doc:`Expressions and statements in Python <expressions-and-statements-in-python>`."
 
 Finding a call to a specific function
 -------------------------------------
@@ -74,8 +74,6 @@ This query uses ``Call`` and ``Name`` to find calls to the function ``eval`` - w
    where call.getFunc() = name and name.getId() = "eval"
    select call, "call to 'eval'."
 
-➤ `See this in the query console on LGTM.com <https://lgtm.com/query/6718356557331218618/>`__. Some of the demo projects on LGTM.com use this function.
-
 The ``Call`` class represents calls in Python. The ``Call.getFunc()`` predicate gets the expression being called. ``Name.getId()`` gets the identifier (as a string) of the ``Name`` expression.
 Due to the dynamic nature of Python, this query will select any call of the form ``eval(...)`` regardless of whether it is a call to the built-in function ``eval`` or not.
 In a later tutorial we will see how to use the type-inference library to find calls to the built-in function ``eval`` regardless of name of the variable called.
diff --git a/docs/codeql/codeql-language-guides/using-api-graphs-in-python.rst b/docs/codeql/codeql-language-guides/using-api-graphs-in-python.rst
index 24be065c912..adfcdaa8d60 100644
--- a/docs/codeql/codeql-language-guides/using-api-graphs-in-python.rst
+++ b/docs/codeql/codeql-language-guides/using-api-graphs-in-python.rst
@@ -29,8 +29,6 @@ following snippet demonstrates.
 
     select API::moduleImport("re")
 
-➤ `See this in the query console on LGTM.com <https://lgtm.com/query/1876172022264324639/>`__.
-
 This query selects the API graph node corresponding to the ``re`` module. This node represents the fact that the ``re`` module has been imported rather than a specific location in the program where the import happens. Therefore, there will be at most one result per project, and it will not have a useful location, so you'll have to click `Show 1 non-source result` in order to see it.
 
 To find where the ``re`` module is referenced in the program, you can use the ``getAUse`` method. The following query selects all references to the ``re`` module in the current database.
@@ -42,8 +40,6 @@ To find where the ``re`` module is referenced in the program, you can use the ``
 
     select API::moduleImport("re").getAUse()
 
-➤ `See this in the query console on LGTM.com <https://lgtm.com/query/8072356519514905526/>`__.
-
 Note that the ``getAUse`` method accounts for local flow, so that ``my_re_compile``
 in the following snippet is
 correctly recognized as a reference to the ``re.compile`` function.
@@ -77,8 +73,6 @@ the above ``re.compile`` example, you can now find references to ``re.compile``.
 
     select API::moduleImport("re").getMember("compile").getAUse()
 
-➤ `See this in the query console on LGTM.com <https://lgtm.com/query/7970570434725297676/>`__.
-
 In addition to ``getMember``, you can use the ``getUnknownMember`` method to find references to API
 components where the name is not known statically. You can use the ``getAMember`` method to
 access all members, both known and unknown.
@@ -97,15 +91,11 @@ where the return value of ``re.compile`` is used:
 
     select API::moduleImport("re").getMember("compile").getReturn().getAUse()
 
-➤ `See this in the query console on LGTM.com <https://lgtm.com/query/4346050399960356921/>`__.
-
 Note that this includes all uses of the result of ``re.compile``, including those reachable via
 local flow. To get just the *calls* to ``re.compile``, you can use ``getAnImmediateUse`` instead of
 ``getAUse``. As this is a common occurrence, you can use ``getACall`` instead of
 ``getReturn`` followed by ``getAnImmediateUse``.
 
-➤ `See this in the query console on LGTM.com <https://lgtm.com/query/8143347716552092926/>`__.
-
 Note that the API graph does not distinguish between class instantiations and function calls. As far
 as it's concerned, both are simply places where an API graph node is called.
 
@@ -134,8 +124,6 @@ all subclasses of ``View``, you must explicitly include the subclasses of ``Meth
 
     select viewClass().getAUse()
 
-➤ `See this in the query console on LGTM.com <https://lgtm.com/query/288293322319747121/>`__.
-
 Note the use of the set literal ``["View", "MethodView"]`` to match both classes simultaneously.
 
 Built-in functions and classes

From a407f0a4ac34b32728de5884b6c7f9f9be7c6192 Mon Sep 17 00:00:00 2001
From: Felicity Chapman <felicitymay@github.com>
Date: Thu, 24 Nov 2022 13:25:50 +0000
Subject: [PATCH 0706/1420] Update main C/C++ articles

---
 docs/codeql/codeql-language-guides/codeql-for-cpp.rst  |  2 +-
 .../conversions-and-classes-in-cpp.rst                 | 10 +---------
 .../expressions-types-and-statements-in-cpp.rst        | 10 +---------
 .../codeql/codeql-language-guides/functions-in-cpp.rst | 10 ++--------
 .../refining-a-query-to-account-for-edge-cases.rst     |  2 --
 5 files changed, 5 insertions(+), 29 deletions(-)

diff --git a/docs/codeql/codeql-language-guides/codeql-for-cpp.rst b/docs/codeql/codeql-language-guides/codeql-for-cpp.rst
index 8acd450ecd7..4e5e53d8cb2 100644
--- a/docs/codeql/codeql-language-guides/codeql-for-cpp.rst
+++ b/docs/codeql/codeql-language-guides/codeql-for-cpp.rst
@@ -21,7 +21,7 @@ Experiment and learn how to write effective and efficient queries for CodeQL dat
    hash-consing-and-value-numbering
 
 
--  :doc:`Basic query for C and C++ code <basic-query-for-cpp-code>`: Learn to write and run a simple CodeQL query using LGTM.
+-  :doc:`Basic query for C and C++ code <basic-query-for-cpp-code>`: Learn to write and run a simple CodeQL query.
 
 -  :doc:`CodeQL library for C and C++ <codeql-library-for-cpp>`: When analyzing C or C++ code, you can use the large collection of classes in the CodeQL library for C and C++.
 
diff --git a/docs/codeql/codeql-language-guides/conversions-and-classes-in-cpp.rst b/docs/codeql/codeql-language-guides/conversions-and-classes-in-cpp.rst
index 9bd057412f6..0ceacc3acd9 100644
--- a/docs/codeql/codeql-language-guides/conversions-and-classes-in-cpp.rst
+++ b/docs/codeql/codeql-language-guides/conversions-and-classes-in-cpp.rst
@@ -165,8 +165,6 @@ Our starting point for the query is pairs of a base class and a derived class, c
    where derived.getABaseClass+() = base
    select base, derived, "The second class is derived from the first."
 
-➤ `See this in the query console on LGTM.com <https://lgtm.com/query/1505902347211/>`__
-
 Note that the transitive closure symbol ``+`` indicates that ``Class.getABaseClass()`` may be followed one or more times, rather than only accepting a direct base class.
 
 A lot of the results are uninteresting template parameters. You can remove those results by updating the ``where`` clause as follows:
@@ -177,8 +175,6 @@ A lot of the results are uninteresting template parameters. You can remove those
      and not exists(base.getATemplateArgument())
      and not exists(derived.getATemplateArgument())
 
-➤ `See this in the query console on LGTM.com <https://lgtm.com/query/1505907047251/>`__
-
 Finding derived classes with destructors
 ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 
@@ -196,8 +192,6 @@ Now we can extend the query to find derived classes with destructors, using the
      and d2 = derived.getDestructor()
    select base, derived, "The second class is derived from the first, and both have a destructor."
 
-➤ `See this in the query console on LGTM.com <https://lgtm.com/query/1505901767389/>`__
-
 Notice that getting the destructor implicitly asserts that one exists. As a result, this version of the query returns fewer results than before.
 
 Finding base classes where the destructor is not virtual
@@ -216,11 +210,9 @@ Our last change is to use ``Function.isVirtual()`` to find cases where the base
      and not d1.isVirtual()
    select d1, "This destructor should probably be virtual."
 
-➤ `See this in the query console on LGTM.com <https://lgtm.com/query/1505908156827/>`__
-
 That completes the query.
 
-There is a similar built-in `query <https://lgtm.com/rules/2158670642/>`__ on LGTM.com that finds classes in a C/C++ project with virtual functions but no virtual destructor. You can take a look at the code for this query by clicking **Open in query console** at the top of that page.
+There is a similar standard query `Non-virtual destructor in base class <https://codeql.github.com/codeql-query-help/cpp/cpp-virtual-destructor/>`__ that finds classes in a C/C++ project with virtual functions but no virtual destructor.
 
 Further reading
 ---------------
diff --git a/docs/codeql/codeql-language-guides/expressions-types-and-statements-in-cpp.rst b/docs/codeql/codeql-language-guides/expressions-types-and-statements-in-cpp.rst
index d7adc22c2cd..c9515aca4c8 100644
--- a/docs/codeql/codeql-language-guides/expressions-types-and-statements-in-cpp.rst
+++ b/docs/codeql/codeql-language-guides/expressions-types-and-statements-in-cpp.rst
@@ -23,8 +23,6 @@ In the following example we find instances of ``AssignExpr`` which assign the co
    where e.getRValue().getValue().toInt() = 0
    select e, "Assigning the value 0 to something."
 
-➤ `See this in the query console on LGTM.com <https://lgtm.com/query/1505908086530/>`__
-
 The ``where`` clause in this example gets the expression on the right side of the assignment, ``getRValue()``, and compares it with zero. Notice that there are no checks to make sure that the right side of the assignment is an integer or that it has a value (that is, it is compile-time constant, rather than a variable). For expressions where either of these assumptions is wrong, the associated predicate simply does not return anything and the ``where`` clause will not produce a result. You could think of it as if there is an implicit ``exists(e.getRValue().getValue().toInt())`` at the beginning of this line.
 
 It is also worth noting that the query above would find this C code:
@@ -33,7 +31,7 @@ It is also worth noting that the query above would find this C code:
 
    yPtr = NULL;
 
-This is because the database contains a representation of the code base after the preprocessor transforms have run. This means that any macro invocations, such as the ``NULL`` define used here, are expanded during the creation of the database. If you want to write queries about macros then there are some special library classes that have been designed specifically for this purpose (for example, the ``Macro``, ``MacroInvocation`` classes and predicates like ``Element.isInMacroExpansion()``). In this case, it is good that macros are expanded, but we do not want to find assignments to pointers. For more information, see `Database generation <https://lgtm.com/help/lgtm/generate-database>`__ on LGTM.com.
+This is because the database contains a representation of the code base after the preprocessor transforms have run. This means that any macro invocations, such as the ``NULL`` define used here, are expanded during the creation of the database. If you want to write queries about macros then there are some special library classes that have been designed specifically for this purpose (for example, the ``Macro``, ``MacroInvocation`` classes and predicates like ``Element.isInMacroExpansion()``). In this case, it is good that macros are expanded, but we do not want to find assignments to pointers. For more information, see `Database creation <https://codeql.github.com/docs/codeql-overview/about-codeql/#database-creation>`__.
 
 Finding assignments of 0 to an integer
 ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
@@ -49,8 +47,6 @@ We can make the query more specific by defining a condition for the left side of
      and e.getLValue().getType().getUnspecifiedType() instanceof IntegralType
    select e, "Assigning the value 0 to an integer."
 
-➤ `See this in the query console on LGTM.com <https://lgtm.com/query/1505906986578/>`__
-
 This checks that the left side of the assignment has a type that is some kind of integer. Note the call to ``Type.getUnspecifiedType()``. This resolves ``typedef`` types to their underlying types so that the query finds assignments like this one:
 
 .. code-block:: cpp
@@ -109,8 +105,6 @@ Unfortunately this would not quite work, because the loop initialization is actu
      and e.getLValue().getType().getUnspecifiedType() instanceof IntegralType
    select e, "Assigning the value 0 to an integer, inside a for loop initialization."
 
-➤ `See this in the query console on LGTM.com <https://lgtm.com/query/1505909016965/>`__
-
 Finding assignments of 0 within the loop body
 ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 
@@ -127,8 +121,6 @@ We can find assignments inside the loop body using similar code with the predica
      and e.getLValue().getType().getUnderlyingType() instanceof IntegralType
    select e, "Assigning the value 0 to an integer, inside a for loop body."
 
-➤ `See this in the query console on LGTM.com <https://lgtm.com/query/1505901437190/>`__
-
 Note that we replaced ``e.getEnclosingStmt()`` with ``e.getEnclosingStmt().getParentStmt*()``, to find an assignment expression that is deeply nested inside the loop body. The transitive closure modifier ``*`` here indicates that ``Stmt.getParentStmt()`` may be followed zero or more times, rather than just once, giving us the statement, its parent statement, its parent's parent statement etc.
 
 Further reading
diff --git a/docs/codeql/codeql-language-guides/functions-in-cpp.rst b/docs/codeql/codeql-language-guides/functions-in-cpp.rst
index 84d72e5376a..574b11a33f3 100644
--- a/docs/codeql/codeql-language-guides/functions-in-cpp.rst
+++ b/docs/codeql/codeql-language-guides/functions-in-cpp.rst
@@ -40,8 +40,6 @@ It might be more interesting to find functions that are not called, using the st
    where not exists(FunctionCall fc | fc.getTarget() = f)
    select f, "This function is never called."
 
-➤ `See this in the query console on LGTM.com <https://lgtm.com/query/1505891246456/>`__
-
 The new query finds functions that are not the target of any ``FunctionCall``—in other words, functions that are never called. You may be surprised by how many results the query finds. However, if you examine the results, you can see that many of the functions it finds are used indirectly. To create a query that finds only unused functions, we need to refine the query and exclude other ways of using a function.
 
 Excluding functions that are referenced with a function pointer
@@ -58,11 +56,9 @@ You can modify the query to remove functions where a function pointer is used to
      and not exists(FunctionAccess fa | fa.getTarget() = f)
    select f, "This function is never called, or referenced with a function pointer."
 
-➤ `See this in the query console on LGTM.com <https://lgtm.com/query/1505890446605/>`__
-
 This query returns fewer results. However, if you examine the results then you can probably still find potential refinements.
 
-For example, there is a more complicated LGTM `query <https://lgtm.com/rules/2152580467/>`__ that finds unused static functions. To see the code for this query, click **Open in query console** at the top of the page.
+For example, there is a more complicated standard query, `Unused static function <https://codeql.github.com/codeql-query-help/cpp/cpp-unused-static-function/>`__, that finds unused static functions.
 
    You can explore the definition of an element in the standard libraries and see what predicates are available. Use the keyboard **F3** button to open the definition of any element. Alternatively, hover over the element and click **Jump to definition** in the tooltip displayed. The library file is opened in a new tab with the definition highlighted.
 
@@ -80,8 +76,6 @@ This query uses ``Function`` and ``FunctionCall`` to find calls to the function
      and not fc.getArgument(1) instanceof StringLiteral
    select fc, "sprintf called with variable format string."
 
-➤ `See this in the query console on LGTM.com <https://lgtm.com/query/1505889506751/>`__
-
 This uses:
 
 -  ``Declaration.getQualifiedName()`` to identify calls to the specific function ``sprintf``.
@@ -89,7 +83,7 @@ This uses:
 
 Note that we could have used ``Declaration.getName()``, but ``Declaration.getQualifiedName()`` is a better choice because it includes the namespace. For example: ``getName()`` would return ``vector`` where ``getQualifiedName`` would return ``std::vector``.
 
-The LGTM version of this query is considerably more complicated, but if you look carefully you will find that its structure is the same. See `Non-constant format string <https://lgtm.com/rules/2152810612/>`__ and click **Open in query console** at the top of the page.
+The published version of this query is considerably more complicated, but if you look carefully you will find that its structure is the same. See `Non-constant format string <https://codeql.github.com/codeql-query-help/cpp/cpp-non-constant-format/>`__.
 
 Further reading
 ---------------
diff --git a/docs/codeql/codeql-language-guides/refining-a-query-to-account-for-edge-cases.rst b/docs/codeql/codeql-language-guides/refining-a-query-to-account-for-edge-cases.rst
index d2a6cee326a..049dc95ad9b 100644
--- a/docs/codeql/codeql-language-guides/refining-a-query-to-account-for-edge-cases.rst
+++ b/docs/codeql/codeql-language-guides/refining-a-query-to-account-for-edge-cases.rst
@@ -146,8 +146,6 @@ Finally we can simplify the query by using the transitive closure operator. In t
        and exists(c.getBlock())
    select c, "Constructor does not initialize fields $@.", f, f.getName()
 
-➤ `See this in the query console on LGTM.com <https://lgtm.com/query/1505896968215/>`__
-
 Further reading
 ---------------
 

From 0ac0277639dc4c89c004ab567e9b2aa929d409d8 Mon Sep 17 00:00:00 2001
From: Felicity Chapman <felicitymay@github.com>
Date: Thu, 24 Nov 2022 13:43:57 +0000
Subject: [PATCH 0707/1420] Minor change to C# article

---
 docs/codeql/codeql-language-guides/codeql-for-csharp.rst | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/docs/codeql/codeql-language-guides/codeql-for-csharp.rst b/docs/codeql/codeql-language-guides/codeql-for-csharp.rst
index e327cb177ee..9b692094841 100644
--- a/docs/codeql/codeql-language-guides/codeql-for-csharp.rst
+++ b/docs/codeql/codeql-language-guides/codeql-for-csharp.rst
@@ -12,7 +12,7 @@ Experiment and learn how to write effective and efficient queries for CodeQL dat
    codeql-library-for-csharp
    analyzing-data-flow-in-csharp
 
--  :doc:`Basic query for C# code <basic-query-for-csharp-code>`: Learn to write and run a simple CodeQL query using LGTM.
+-  :doc:`Basic query for C# code <basic-query-for-csharp-code>`: Learn to write and run a simple CodeQL query.
 
 -  :doc:`CodeQL library for C# <codeql-library-for-csharp>`: When you're analyzing a C# program, you can make use of the large collection of classes in the CodeQL library for C#.
 

From b22ccc114eed793234ea03302289e23df61de0f3 Mon Sep 17 00:00:00 2001
From: Felicity Chapman <felicitymay@github.com>
Date: Thu, 24 Nov 2022 13:47:14 +0000
Subject: [PATCH 0708/1420] Minor changes to Go and Ruby article

---
 docs/codeql/codeql-language-guides/codeql-for-go.rst   | 2 +-
 docs/codeql/codeql-language-guides/codeql-for-ruby.rst | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/docs/codeql/codeql-language-guides/codeql-for-go.rst b/docs/codeql/codeql-language-guides/codeql-for-go.rst
index be81a19f1a8..0eaefbb5922 100644
--- a/docs/codeql/codeql-language-guides/codeql-for-go.rst
+++ b/docs/codeql/codeql-language-guides/codeql-for-go.rst
@@ -13,7 +13,7 @@ Experiment and learn how to write effective and efficient queries for CodeQL dat
    abstract-syntax-tree-classes-for-working-with-go-programs
    modeling-data-flow-in-go-libraries
 
--  :doc:`Basic query for Go code <basic-query-for-go-code>`: Learn to write and run a simple CodeQL query using LGTM.
+-  :doc:`Basic query for Go code <basic-query-for-go-code>`: Learn to write and run a simple CodeQL query.
 
 -  :doc:`CodeQL library for Go <codeql-library-for-go>`: When you're analyzing a Go program, you can make use of the large collection of classes in the CodeQL library for Go.
 
diff --git a/docs/codeql/codeql-language-guides/codeql-for-ruby.rst b/docs/codeql/codeql-language-guides/codeql-for-ruby.rst
index 82d13cf410e..f36df2496bf 100644
--- a/docs/codeql/codeql-language-guides/codeql-for-ruby.rst
+++ b/docs/codeql/codeql-language-guides/codeql-for-ruby.rst
@@ -14,7 +14,7 @@ Experiment and learn how to write effective and efficient queries for CodeQL dat
    analyzing-data-flow-in-ruby
    using-api-graphs-in-ruby
 
--  :doc:`Basic query for Ruby code <basic-query-for-ruby-code>`: Learn to write and run a simple CodeQL query using LGTM.
+-  :doc:`Basic query for Ruby code <basic-query-for-ruby-code>`: Learn to write and run a simple CodeQL query.
 
 -  :doc:`CodeQL library for Ruby <codeql-library-for-ruby>`: When you're analyzing a Ruby program, you can make use of the large collection of classes in the CodeQL library for Ruby.
 

From 8ec06d45e06a09ea48f7297914e2c4280cbb6683 Mon Sep 17 00:00:00 2001
From: Felicity Chapman <felicitymay@github.com>
Date: Fri, 25 Nov 2022 08:42:09 +0000
Subject: [PATCH 0709/1420] Replace LGTM description with VS Code

---
 docs/codeql/codeql-language-guides/functions-in-cpp.rst | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/docs/codeql/codeql-language-guides/functions-in-cpp.rst b/docs/codeql/codeql-language-guides/functions-in-cpp.rst
index 574b11a33f3..b6f3e26db50 100644
--- a/docs/codeql/codeql-language-guides/functions-in-cpp.rst
+++ b/docs/codeql/codeql-language-guides/functions-in-cpp.rst
@@ -60,7 +60,7 @@ This query returns fewer results. However, if you examine the results then you c
 
 For example, there is a more complicated standard query, `Unused static function <https://codeql.github.com/codeql-query-help/cpp/cpp-unused-static-function/>`__, that finds unused static functions.
 
-   You can explore the definition of an element in the standard libraries and see what predicates are available. Use the keyboard **F3** button to open the definition of any element. Alternatively, hover over the element and click **Jump to definition** in the tooltip displayed. The library file is opened in a new tab with the definition highlighted.
+   You can explore the definition of an element in the standard libraries and see what predicates are available. Highlight the element, right-click to display the context menu, and click **Go to Definition**. The library file is opened in a new tab with the definition of the element highlighted.
 
 Finding a specific function
 ---------------------------

From 85961f5dce3331b075de5e09cc95ed75922088e3 Mon Sep 17 00:00:00 2001
From: Felicity Chapman <felicitymay@github.com>
Date: Mon, 28 Nov 2022 12:41:26 +0000
Subject: [PATCH 0710/1420] Update
 docs/codeql/codeql-language-guides/functions-in-cpp.rst

---
 docs/codeql/codeql-language-guides/functions-in-cpp.rst | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/docs/codeql/codeql-language-guides/functions-in-cpp.rst b/docs/codeql/codeql-language-guides/functions-in-cpp.rst
index b6f3e26db50..34c99885c6a 100644
--- a/docs/codeql/codeql-language-guides/functions-in-cpp.rst
+++ b/docs/codeql/codeql-language-guides/functions-in-cpp.rst
@@ -60,7 +60,7 @@ This query returns fewer results. However, if you examine the results then you c
 
 For example, there is a more complicated standard query, `Unused static function <https://codeql.github.com/codeql-query-help/cpp/cpp-unused-static-function/>`__, that finds unused static functions.
 
-   You can explore the definition of an element in the standard libraries and see what predicates are available. Highlight the element, right-click to display the context menu, and click **Go to Definition**. The library file is opened in a new tab with the definition of the element highlighted.
+   You can explore the definition of an element in the standard libraries and see what predicates are available. Right-click the element to display the context menu, and click **Go to Definition**. The library file is opened in a new tab with the definition of the element highlighted.
 
 Finding a specific function
 ---------------------------

From a9b6a1231725935af4f0f4e1d9aee50912a6187b Mon Sep 17 00:00:00 2001
From: Felicity Chapman <felicitymay@github.com>
Date: Thu, 24 Nov 2022 14:06:55 +0000
Subject: [PATCH 0711/1420] Updates for Java articles

---
 .../annotations-in-java.rst                   |  8 +--
 .../codeql-for-java.rst                       |  2 +-
 .../codeql-library-for-java.rst               | 32 +++-------
 .../codeql/codeql-language-guides/javadoc.rst |  4 +-
 .../overflow-prone-comparisons-in-java.rst    | 46 ++++++++++++---
 .../codeql-language-guides/types-in-java.rst  | 59 ++++++++++++++-----
 6 files changed, 94 insertions(+), 57 deletions(-)

diff --git a/docs/codeql/codeql-language-guides/annotations-in-java.rst b/docs/codeql/codeql-language-guides/annotations-in-java.rst
index 3439fb6ff0e..38f30e238f0 100644
--- a/docs/codeql/codeql-language-guides/annotations-in-java.rst
+++ b/docs/codeql/codeql-language-guides/annotations-in-java.rst
@@ -51,7 +51,7 @@ We could then write this query to find all ``@SuppressWarnings`` annotations att
        anntp.hasQualifiedName("java.lang", "SuppressWarnings")
    select ann, ann.getValue("value")
 
-➤ `See the full query in the query console on LGTM.com <https://lgtm.com/query/1775658606775222283/>`__. Several of the LGTM.com demo projects use the ``@SuppressWarnings`` annotation. Looking at the ``value``\ s of the annotation element returned by the query, we can see that the *apache/activemq* project uses the ``"rawtypes"`` value described above.
+If the codebase you are analyzing uses the ``@SuppressWarnings`` annotation, you can check the ``value``\ s of the annotation element returned by the query. They should use the ``"rawtypes"`` value described above.
 
 As another example, this query finds all annotation types that only have a single annotation element, which has name ``value``:
 
@@ -66,8 +66,6 @@ As another example, this query finds all annotation types that only have a singl
    )
    select anntp
 
-➤ `See the full query in the query console on LGTM.com <https://lgtm.com/query/2145264152490258283/>`__.
-
 Example: Finding missing ``@Override`` annotations
 --------------------------------------------------
 
@@ -124,7 +122,7 @@ This makes it very easy to write our query for finding methods that override ano
        not overriding.getAnAnnotation() instanceof OverrideAnnotation
    select overriding, "Method overrides another method, but does not have an @Override annotation."
 
-➤ `See this in the query console on LGTM.com <https://lgtm.com/query/7419756266089837339/>`__. In practice, this query may yield many results from compiled library code, which aren't very interesting. It's therefore a good idea to add another conjunct ``overriding.fromSource()`` to restrict the result to only report methods for which source code is available.
+In practice, this query may yield many results from compiled library code, which aren't very interesting. It's therefore a good idea to add another conjunct ``overriding.fromSource()`` to restrict the result to only report methods for which source code is available.
 
 Example: Finding calls to deprecated methods
 --------------------------------------------
@@ -237,7 +235,7 @@ Now we can extend our query to filter out calls in methods carrying a ``Suppress
        and not call.getCaller().getAnAnnotation() instanceof SuppressDeprecationWarningAnnotation
    select call, "This call invokes a deprecated method."
 
-➤ `See this in the query console on LGTM.com <https://lgtm.com/query/8706367340403790260/>`__. It's fairly common for projects to contain calls to methods that appear to be deprecated.
+It's fairly common for projects to contain calls to methods that appear to be deprecated.
 
 Further reading
 ---------------
diff --git a/docs/codeql/codeql-language-guides/codeql-for-java.rst b/docs/codeql/codeql-language-guides/codeql-for-java.rst
index 392ef19c8b2..aa10f481592 100644
--- a/docs/codeql/codeql-language-guides/codeql-for-java.rst
+++ b/docs/codeql/codeql-language-guides/codeql-for-java.rst
@@ -26,7 +26,7 @@ Experiment and learn how to write effective and efficient queries for CodeQL dat
    working-with-source-locations
    abstract-syntax-tree-classes-for-working-with-java-programs
 
--  :doc:`Basic query for Java code <basic-query-for-java-code>`: Learn to write and run a simple CodeQL query using LGTM.
+-  :doc:`Basic query for Java code <basic-query-for-java-code>`: Learn to write and run a simple CodeQL query.
 
 -  :doc:`CodeQL library for Java <codeql-library-for-java>`: When analyzing Java code, you can use the large collection of classes in the CodeQL library for Java.
 
diff --git a/docs/codeql/codeql-language-guides/codeql-library-for-java.rst b/docs/codeql/codeql-language-guides/codeql-library-for-java.rst
index c4072ad55b2..c4bbc67d319 100644
--- a/docs/codeql/codeql-language-guides/codeql-library-for-java.rst
+++ b/docs/codeql/codeql-language-guides/codeql-library-for-java.rst
@@ -70,7 +70,7 @@ For example, the following query finds all variables of type ``int`` in the prog
        pt.hasName("int")
    select v
 
-➤ `See this in the query console on LGTM.com <https://lgtm.com/query/860076406167044435/>`__. You're likely to get many results when you run this query because most projects contain many variables of type ``int``.
+You're likely to get many results when you run this query because most projects contain many variables of type ``int``.
 
 Reference types are also categorized according to their declaration scope:
 
@@ -87,7 +87,7 @@ For instance, this query finds all top-level types whose name is not the same as
    where tl.getName() != tl.getCompilationUnit().getName()
    select tl
 
-➤ `See this in the query console on LGTM.com <https://lgtm.com/query/4340983612585284460/>`__. This pattern is seen in many projects. When we ran it on the LGTM.com demo projects, most of the projects had at least one instance of this problem in the source code. There were many more instances in the files referenced by the source code.
+You will typically see this pattern in the source code of a repository, with many more instances in the files referenced by the source code.
 
 Several more specialized classes are available as well:
 
@@ -109,7 +109,7 @@ As an example, we can write a query that finds all nested classes that directly
    where nc.getASupertype() instanceof TypeObject
    select nc
 
-➤ `See this in the query console on LGTM.com <https://lgtm.com/query/8482509736206423238/>`__. You're likely to get many results when you run this query because many projects include nested classes that extend ``Object`` directly.
+You're likely to get many results when you run this query because many projects include nested classes that extend ``Object`` directly.
 
 Generics
 ~~~~~~~~
@@ -143,8 +143,6 @@ For instance, we could use the following query to find all parameterized instanc
        pt.getSourceDeclaration() = map
    select pt
 
-➤ `See this in the query console on LGTM.com <https://lgtm.com/query/7863873821043873550/>`__. None of the LGTM.com demo projects contain parameterized instances of ``java.util.Map`` in their source code, but they all have results in reference files.
-
 In general, generic types may restrict which types a type parameter can be bound to. For instance, a type of maps from strings to numbers could be declared as follows:
 
 .. code-block:: java
@@ -166,8 +164,6 @@ As an example, the following query finds all type variables with type bound ``Nu
        tb.getType().hasQualifiedName("java.lang", "Number")
    select tv
 
-➤ `See this in the query console on LGTM.com <https://lgtm.com/query/6740696080876162817/>`__. When we ran it on the LGTM.com demo projects, the *neo4j/neo4j*, *hibernate/hibernate-orm* and *apache/hadoop* projects all contained examples of this pattern.
-
 For dealing with legacy code that is unaware of generics, every generic type has a "raw" version without any type parameters. In the CodeQL libraries, raw types are represented using class ``RawType``, which has the expected subclasses ``RawClass`` and ``RawInterface``. Again, there is a predicate ``getSourceDeclaration`` for obtaining the corresponding generic type. As an example, we can find variables of (raw) type ``Map``:
 
 .. code-block:: ql
@@ -179,8 +175,6 @@ For dealing with legacy code that is unaware of generics, every generic type has
        rt.getSourceDeclaration().hasQualifiedName("java.util", "Map")
    select v
 
-➤ `See this in the query console on LGTM.com <https://lgtm.com/query/4032913402499547882/>`__. Many projects have variables of raw type ``Map``.
-
 For example, in the following code snippet this query would find ``m1``, but not ``m2``:
 
 .. code-block:: java
@@ -230,7 +224,7 @@ For example, the following query finds all expressions whose parents are ``retur
    where e.getParent() instanceof ReturnStmt
    select e
 
-➤ `See this in the query console on LGTM.com <https://lgtm.com/query/1947757851560375919/>`__. Many projects have examples of ``return`` statements with child expressions.
+Many projects have examples of ``return`` statements with child expressions.
 
 Therefore, if the program contains a return statement ``return x + y;``, this query will return ``x + y``.
 
@@ -244,7 +238,7 @@ As another example, the following query finds statements whose parent is an ``if
    where s.getParent() instanceof IfStmt
    select s
 
-➤ `See this in the query console on LGTM.com <https://lgtm.com/query/1989464153689219612/>`__. Many projects have examples of ``if`` statements with child statements.
+Many projects have examples of ``if`` statements with child statements.
 
 This query will find both ``then`` branches and ``else`` branches of all ``if`` statements in the program.
 
@@ -258,8 +252,6 @@ Finally, here is a query that finds method bodies:
    where s.getParent() instanceof Method
    select s
 
-➤ `See this in the query console on LGTM.com <https://lgtm.com/query/1016821702972128245/>`__. Most projects have many method bodies.
-
 As these examples show, the parent node of an expression is not always an expression: it may also be a statement, for example, an ``IfStmt``. Similarly, the parent node of a statement is not always a statement: it may also be a method or a constructor. To capture this, the QL Java library provides two abstract class ``ExprParent`` and ``StmtParent``, the former representing any node that may be the parent node of an expression, and the latter any node that may be the parent node of a statement.
 
 For more information on working with AST classes, see the :doc:`article on overflow-prone comparisons in Java <overflow-prone-comparisons-in-java>`.
@@ -278,7 +270,7 @@ For annotations, class ``Annotatable`` is a superclass of all program elements t
    from Constructor c
    select c.getAnAnnotation()
 
-➤ `See this in the query console on LGTM.com <https://lgtm.com/query/3206112561297137365/>`__. The LGTM.com demo projects all use annotations, you can see examples where they are used to suppress warnings and mark code as deprecated.
+You may see examples where annottions are used to suppress warnings or to mark code as deprecated.
 
 These annotations are represented by class ``Annotation``. An annotation is simply an expression whose type is an ``AnnotationType``. For example, you can amend this query so that it only reports deprecated constructors:
 
@@ -292,7 +284,7 @@ These annotations are represented by class ``Annotation``. An annotation is simp
        anntp.hasQualifiedName("java.lang", "Deprecated")
    select ann
 
-➤ `See this in the query console on LGTM.com <https://lgtm.com/query/5393027107459215059/>`__. Only constructors with the ``@Deprecated`` annotation are reported this time.
+Only constructors with the ``@Deprecated`` annotation are reported this time.
 
 For more information on working with annotations, see the :doc:`article on annotations <annotations-in-java>`.
 
@@ -307,8 +299,6 @@ For Javadoc, class ``Element`` has a member predicate ``getDoc`` that returns a
        jdoc = f.getDoc().getJavadoc()
    select jdoc
 
-➤ `See this in the query console on LGTM.com <https://lgtm.com/query/6022769142134600659/>`__. You can see this pattern in many projects.
-
 Class ``Javadoc`` represents an entire Javadoc comment as a tree of ``JavadocElement`` nodes, which can be traversed using member predicates ``getAChild`` and ``getParent``. For instance, you could edit the query so that it finds all ``@author`` tags in Javadoc comments on private fields:
 
 .. code-block:: ql
@@ -321,8 +311,6 @@ Class ``Javadoc`` represents an entire Javadoc comment as a tree of ``JavadocEle
        at.getParent+() = jdoc
    select at
 
-➤ `See this in the query console on LGTM.com <https://lgtm.com/query/2510220694395289111/>`__. None of the LGTM.com demo projects uses the ``@author`` tag on private fields.
-
 .. pull-quote::
 
    Note
@@ -349,7 +337,7 @@ For example, the following query finds methods with a `cyclomatic complexity <ht
        mc.getCyclomaticComplexity() > 40
    select m
 
-➤ `See this in the query console on LGTM.com <https://lgtm.com/query/6566950741051181919/>`__. Most large projects include some methods with a very high cyclomatic complexity. These methods are likely to be difficult to understand and test.
+Most large projects include some methods with a very high cyclomatic complexity. These methods are likely to be difficult to understand and test.
 
 Call graph
 ----------
@@ -369,8 +357,6 @@ We can use predicate ``Call.getCallee`` to find out which method or constructor
        m.hasName("println")
    select c
 
-➤ `See this in the query console on LGTM.com <https://lgtm.com/query/5861255162551917595/>`__. The LGTM.com demo projects all include many calls to methods of this name.
-
 Conversely, ``Callable.getAReference`` returns a ``Call`` that refers to it. So we can find methods and constructors that are never called using this query:
 
 .. code-block:: ql
@@ -381,7 +367,7 @@ Conversely, ``Callable.getAReference`` returns a ``Call`` that refers to it. So
    where not exists(c.getAReference())
    select c
 
-➤ `See this in the query console on LGTM.com <https://lgtm.com/query/7261739919657747703/>`__. The LGTM.com demo projects all appear to have many methods that are not called directly, but this is unlikely to be the whole story. To explore this area further, see ":doc:`Navigating the call graph <navigating-the-call-graph>`."
+Codebases often have many methods that are not called direcstly, but this is unlikely to be the whole story. To explore this area further, see ":doc:`Navigating the call graph <navigating-the-call-graph>`."
 
 For more information about callables and calls, see the :doc:`article on the call graph <navigating-the-call-graph>`.
 
diff --git a/docs/codeql/codeql-language-guides/javadoc.rst b/docs/codeql/codeql-language-guides/javadoc.rst
index 7e16cc6ce36..c1bce79a0a2 100644
--- a/docs/codeql/codeql-language-guides/javadoc.rst
+++ b/docs/codeql/codeql-language-guides/javadoc.rst
@@ -149,8 +149,6 @@ Now we can write a query for finding all callables ``c`` and ``@throws`` tags ``
        not mayThrow(c, exn)
    select tt, "Spurious @throws tag."
 
-➤ `See this in the query console on LGTM.com <https://lgtm.com/query/1258570917227966396/>`__. This finds several results in the LGTM.com demo projects.
-
 Improvements
 ~~~~~~~~~~~~
 
@@ -216,7 +214,7 @@ The first case can be covered by changing ``getDocumentedException`` to use the
        (result.hasName(tt.getExceptionName()) and visibleIn(tt.getFile(), result))
    }
 
-➤ `See this in the query console on LGTM.com <https://lgtm.com/query/8016848987103345329/>`__. This finds many fewer, more interesting results in the LGTM.com demo projects.
+This query should find many fewer, more interesting results.
 
 Currently, ``visibleIn`` only considers single-type imports, but you could extend it with support for other kinds of imports.
 
diff --git a/docs/codeql/codeql-language-guides/overflow-prone-comparisons-in-java.rst b/docs/codeql/codeql-language-guides/overflow-prone-comparisons-in-java.rst
index b0762a5c139..53c36c7f786 100644
--- a/docs/codeql/codeql-language-guides/overflow-prone-comparisons-in-java.rst
+++ b/docs/codeql/codeql-language-guides/overflow-prone-comparisons-in-java.rst
@@ -44,7 +44,7 @@ We'll start by writing a query that finds less-than expressions (CodeQL class ``
        expr.getRightOperand().getType().hasName("long")
    select expr
 
-➤ `See this in the query console on LGTM.com <https://lgtm.com/query/490866529746563234/>`__. This query usually finds results on most projects.
+This query usually finds results on most codebases.
 
 Notice that we use the predicate ``getType`` (available on all subclasses of ``Expr``) to determine the type of the operands. Types, in turn, define the ``hasName`` predicate, which allows us to identify the primitive types ``int`` and ``long``. As it stands, this query finds *all* less-than expressions comparing ``int`` and ``long``, but in fact we are only interested in comparisons that are part of a loop condition. Also, we want to filter out comparisons where either operand is constant, since these are less likely to be real bugs. The revised query looks like this:
 
@@ -59,7 +59,7 @@ Notice that we use the predicate ``getType`` (available on all subclasses of ``E
        not expr.getAnOperand().isCompileTimeConstant()
    select expr
 
-➤ `See this in the query console on LGTM.com <https://lgtm.com/query/4315986481180063825/>`__. Notice that fewer results are found.
+Notice that fewer results are found.
 
 The class ``LoopStmt`` is a common superclass of all loops, including, in particular, ``for`` loops as in our example above. While different kinds of loops have different syntax, they all have a loop condition, which can be accessed through predicate ``getCondition``. We use the reflexive transitive closure operator ``*`` applied to the ``getAChildExpr`` predicate to express the requirement that ``expr`` should be nested inside the loop condition. In particular, it can be the loop condition itself.
 
@@ -113,16 +113,44 @@ Now we rewrite our query to make use of these new classes:
 
 .. code-block:: ql
 
-   import Java
+    import java
 
-   // Insert the class definitions from above
+    // Return the width (in bits) of a given integral type 
+    int width(PrimitiveType pt) {
+    (pt.hasName("byte") and result=8) or
+    (pt.hasName("short") and result=16) or
+    (pt.hasName("char") and result=16) or
+    (pt.hasName("int") and result=32) or
+    (pt.hasName("long") and result=64)
+    }
 
-   from OverflowProneComparison expr
-   where exists(LoopStmt l | l.getCondition().getAChildExpr*() = expr) and
-   not expr.getAnOperand().isCompileTimeConstant()
-   select expr
+    // Find any comparison where the width of the type on the smaller end of 
+    // the comparison is less than the width of the type on the greater end
+    abstract class OverflowProneComparison extends ComparisonExpr {
+    Expr getLesserOperand() { none() }
+    Expr getGreaterOperand() { none() }
+    }
 
-➤ `See the full query in the query console on LGTM.com <https://lgtm.com/query/506868054626167462/>`__.
+    // Return `<=` and `<` comparisons
+    class LTOverflowProneComparison extends OverflowProneComparison {
+    LTOverflowProneComparison() {
+        (this instanceof LEExpr or this instanceof LTExpr) and
+        width(this.getLeftOperand().getType()) < width(this.getRightOperand().getType())
+    }
+    }
+
+    // Return `>=` and `>` comparisons
+    class GTOverflowProneComparison extends OverflowProneComparison {
+    GTOverflowProneComparison() {
+        (this instanceof GEExpr or this instanceof GTExpr) and
+        width(this.getRightOperand().getType()) < width(this.getLeftOperand().getType())
+    }
+    }
+
+    from OverflowProneComparison expr
+    where exists(LoopStmt l | l.getCondition().getAChildExpr*() = expr) and
+        not expr.getAnOperand().isCompileTimeConstant()
+    select expr
 
 Further reading
 ---------------
diff --git a/docs/codeql/codeql-language-guides/types-in-java.rst b/docs/codeql/codeql-language-guides/types-in-java.rst
index 04cc716b961..e7dc5113294 100644
--- a/docs/codeql/codeql-language-guides/types-in-java.rst
+++ b/docs/codeql/codeql-language-guides/types-in-java.rst
@@ -34,7 +34,7 @@ To determine ancestor types (including immediate super types, and also *their* s
    where B.hasName("B")
    select B.getASupertype+()
 
-➤ `See this in the query console on LGTM.com <https://lgtm.com/query/1506430738755934285/>`__. If this query were run on the example snippet above, the query would return ``A``, ``I``, and ``java.lang.Object``.
+If we ran this query on the example snippet above, the query would return ``A``, ``I``, and ``java.lang.Object``.
 
 .. pull-quote::
 
@@ -80,8 +80,6 @@ This recipe is not too difficult to translate into a query:
        target.getElementType().(RefType).getASupertype+() = source.getElementType()
    select ce, "Potentially problematic array downcast."
 
-➤ `See this in the query console on LGTM.com <https://lgtm.com/query/8378564667548381869/>`__. Many projects return results for this query.
-
 Note that by casting ``target.getElementType()`` to a ``RefType``, we eliminate all cases where the element type is a primitive type, that is, ``target`` is an array of primitive type: the problem we are looking for cannot arise in that case. Unlike in Java, a cast in QL never fails: if an expression cannot be cast to the desired type, it is simply excluded from the query results, which is exactly what we want.
 
 Improvements
@@ -143,7 +141,7 @@ Using these new classes we can extend our query to exclude calls to ``toArray``
        not ce.getExpr().(CollectionToArrayCall).getActualReturnType() = target
    select ce, "Potentially problematic array downcast."
 
-➤ `See this in the query console on LGTM.com <https://lgtm.com/query/3150404889854131463/>`__. Notice that fewer results are found by this improved query.
+Notice that fewer results are found by this improved query.
 
 Example: Finding mismatched contains checks
 -------------------------------------------
@@ -269,8 +267,6 @@ Now we are ready to write a first version of our query:
        not haveCommonDescendant(collEltType, argType)
    select juccc, "Element type " + collEltType + " is incompatible with argument type " + argType
 
-➤ `See this in the query console on LGTM.com <https://lgtm.com/query/7947831380785106258/>`__.
-
 Improvements
 ~~~~~~~~~~~~
 
@@ -284,19 +280,50 @@ Adding these three improvements, our final query becomes:
 
 .. code-block:: ql
 
-   import java
+    import java
 
-   // Insert the class definitions from above
+    class JavaUtilCollection extends GenericInterface {
+        JavaUtilCollection() {
+            this.hasQualifiedName("java.util", "Collection")
+        }
+    }
 
-   from JavaUtilCollectionContainsCall juccc, Type collEltType, Type argType
-   where collEltType = juccc.getCollectionElementType() and argType = juccc.getArgumentType() and
-       not haveCommonDescendant(collEltType, argType) and
-       not collEltType instanceof TypeVariable and not argType instanceof TypeVariable and
-       not collEltType = argType.(PrimitiveType).getBoxedType() and
-       not argType.hasName("<nulltype>")
-   select juccc, "Element type " + collEltType + " is incompatible with argument type " + argType
+    class JavaUtilCollectionContains extends Method {
+        JavaUtilCollectionContains() {
+            this.getDeclaringType() instanceof JavaUtilCollection and
+            this.hasStringSignature("contains(Object)")
+        }
+    }
 
-➤ `See the full query in the query console on LGTM.com <https://lgtm.com/query/8846334903769538099/>`__.
+    class JavaUtilCollectionContainsCall extends MethodAccess {
+        JavaUtilCollectionContainsCall() {
+            exists(JavaUtilCollectionContains jucc |
+                this.getMethod().getSourceDeclaration().overrides*(jucc)
+            )
+        }
+    Type getArgumentType() {
+        result = this.getArgument(0).getType()
+        }
+        Type getCollectionElementType() {
+        exists(RefType D, ParameterizedInterface S |
+            D = this.getMethod().getDeclaringType() and
+            D.hasSupertype*(S) and S.getSourceDeclaration() instanceof JavaUtilCollection and
+            result = S.getTypeArgument(0)
+        )
+        }
+    }
+
+    predicate haveCommonDescendant(RefType tp1, RefType tp2) {
+        exists(RefType commondesc | commondesc.hasSupertype*(tp1) and commondesc.hasSupertype*(tp2))
+    }
+
+    from JavaUtilCollectionContainsCall juccc, Type collEltType, Type argType
+    where collEltType = juccc.getCollectionElementType() and argType = juccc.getArgumentType() and
+        not haveCommonDescendant(collEltType, argType) and
+        not collEltType instanceof TypeVariable and not argType instanceof TypeVariable and
+        not collEltType = argType.(PrimitiveType).getBoxedType() and
+        not argType.hasName("<nulltype>")
+    select juccc, "Element type " + collEltType + " is incompatible with argument type " + argType
 
 Further reading
 ---------------

From d6ae5c898ab2778d58c85ccc289400546f2b7566 Mon Sep 17 00:00:00 2001
From: Felicity Chapman <felicitymay@github.com>
Date: Fri, 25 Nov 2022 08:32:58 +0000
Subject: [PATCH 0712/1420] Respond to review feedback

---
 docs/codeql/codeql-language-guides/codeql-library-for-java.rst | 2 ++
 docs/codeql/codeql-language-guides/types-in-java.rst           | 2 ++
 2 files changed, 4 insertions(+)

diff --git a/docs/codeql/codeql-language-guides/codeql-library-for-java.rst b/docs/codeql/codeql-language-guides/codeql-library-for-java.rst
index c4bbc67d319..d6b021bb81e 100644
--- a/docs/codeql/codeql-language-guides/codeql-library-for-java.rst
+++ b/docs/codeql/codeql-language-guides/codeql-library-for-java.rst
@@ -299,6 +299,8 @@ For Javadoc, class ``Element`` has a member predicate ``getDoc`` that returns a
        jdoc = f.getDoc().getJavadoc()
    select jdoc
 
+You can see this pattern in many projects.
+
 Class ``Javadoc`` represents an entire Javadoc comment as a tree of ``JavadocElement`` nodes, which can be traversed using member predicates ``getAChild`` and ``getParent``. For instance, you could edit the query so that it finds all ``@author`` tags in Javadoc comments on private fields:
 
 .. code-block:: ql
diff --git a/docs/codeql/codeql-language-guides/types-in-java.rst b/docs/codeql/codeql-language-guides/types-in-java.rst
index e7dc5113294..3bb1c59fed7 100644
--- a/docs/codeql/codeql-language-guides/types-in-java.rst
+++ b/docs/codeql/codeql-language-guides/types-in-java.rst
@@ -80,6 +80,8 @@ This recipe is not too difficult to translate into a query:
        target.getElementType().(RefType).getASupertype+() = source.getElementType()
    select ce, "Potentially problematic array downcast."
 
+Many projects return results for this query.
+
 Note that by casting ``target.getElementType()`` to a ``RefType``, we eliminate all cases where the element type is a primitive type, that is, ``target`` is an array of primitive type: the problem we are looking for cannot arise in that case. Unlike in Java, a cast in QL never fails: if an expression cannot be cast to the desired type, it is simply excluded from the query results, which is exactly what we want.
 
 Improvements

From 33ae086861c2965d65fa64e0f93f2da5098b40bd Mon Sep 17 00:00:00 2001
From: Felicity Chapman <felicitymay@github.com>
Date: Fri, 25 Nov 2022 08:27:34 +0000
Subject: [PATCH 0713/1420] Apply suggestions from code review

Co-authored-by: Tony Torralba <atorralba@users.noreply.github.com>
---
 .../codeql/codeql-language-guides/codeql-library-for-java.rst | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/docs/codeql/codeql-language-guides/codeql-library-for-java.rst b/docs/codeql/codeql-language-guides/codeql-library-for-java.rst
index d6b021bb81e..319afdf29c0 100644
--- a/docs/codeql/codeql-language-guides/codeql-library-for-java.rst
+++ b/docs/codeql/codeql-language-guides/codeql-library-for-java.rst
@@ -270,7 +270,7 @@ For annotations, class ``Annotatable`` is a superclass of all program elements t
    from Constructor c
    select c.getAnAnnotation()
 
-You may see examples where annottions are used to suppress warnings or to mark code as deprecated.
+You may see examples where annotations are used to suppress warnings or to mark code as deprecated.
 
 These annotations are represented by class ``Annotation``. An annotation is simply an expression whose type is an ``AnnotationType``. For example, you can amend this query so that it only reports deprecated constructors:
 
@@ -369,7 +369,7 @@ Conversely, ``Callable.getAReference`` returns a ``Call`` that refers to it. So
    where not exists(c.getAReference())
    select c
 
-Codebases often have many methods that are not called direcstly, but this is unlikely to be the whole story. To explore this area further, see ":doc:`Navigating the call graph <navigating-the-call-graph>`."
+Codebases often have many methods that are not called directly, but this is unlikely to be the whole story. To explore this area further, see ":doc:`Navigating the call graph <navigating-the-call-graph>`."
 
 For more information about callables and calls, see the :doc:`article on the call graph <navigating-the-call-graph>`.
 

From 179941daabf10a4d4f6be0e90f146bf091b6136d Mon Sep 17 00:00:00 2001
From: Felicity Chapman <felicitymay@github.com>
Date: Thu, 24 Nov 2022 14:25:44 +0000
Subject: [PATCH 0714/1420] First set of updates for JavaScript articles

---
 .../codeql-for-javascript.rst                 |  2 +-
 .../codeql-library-for-javascript.rst         | 36 ++++---------------
 2 files changed, 8 insertions(+), 30 deletions(-)

diff --git a/docs/codeql/codeql-language-guides/codeql-for-javascript.rst b/docs/codeql/codeql-language-guides/codeql-for-javascript.rst
index ce6651acb79..11a4c5e456c 100644
--- a/docs/codeql/codeql-language-guides/codeql-for-javascript.rst
+++ b/docs/codeql/codeql-language-guides/codeql-for-javascript.rst
@@ -18,7 +18,7 @@ Experiment and learn how to write effective and efficient queries for CodeQL dat
    abstract-syntax-tree-classes-for-working-with-javascript-and-typescript-programs
    data-flow-cheat-sheet-for-javascript
 
--  :doc:`Basic query for JavaScript code <basic-query-for-javascript-code>`: Learn to write and run a simple CodeQL query using LGTM.
+-  :doc:`Basic query for JavaScript code <basic-query-for-javascript-code>`: Learn to write and run a simple CodeQL query.
 
 -  :doc:`CodeQL library for JavaScript <codeql-library-for-javascript>`: When you're analyzing a JavaScript program, you can make use of the large collection of classes in the CodeQL library for JavaScript.
 
diff --git a/docs/codeql/codeql-language-guides/codeql-library-for-javascript.rst b/docs/codeql/codeql-language-guides/codeql-library-for-javascript.rst
index e9070cc493b..0b3f8daedb1 100644
--- a/docs/codeql/codeql-language-guides/codeql-library-for-javascript.rst
+++ b/docs/codeql/codeql-language-guides/codeql-library-for-javascript.rst
@@ -43,7 +43,7 @@ Textual level
 
 At its most basic level, a JavaScript code base can simply be viewed as a collection of files organized into folders, where each file is composed of zero or more lines of text.
 
-Note that the textual content of a program is not included in the CodeQL database unless you specifically request it during extraction. In particular, databases on LGTM (also known as "snapshots") do not normally include textual information.
+Note that the textual content of a program is not included in the CodeQL database unless you specifically request it during extraction.
 
 Files and folders
 ^^^^^^^^^^^^^^^^^
@@ -77,7 +77,7 @@ For example, the following query computes, for each folder, the number of JavaSc
    from Folder d
    select d.getRelativePath(), count(File f | f = d.getAFile() and f.getExtension() = "js")
 
-➤ `See this in the query console on LGTM.com <https://lgtm.com/query/1506075865985/>`__. When you run the query on most projects, the results include folders that contain files with a ``js`` extension and folders that don't.
+When you run the query on most projects, the results include folders that contain files with a ``js`` extension and folders that don't.
 
 Locations
 ^^^^^^^^^
@@ -138,7 +138,7 @@ As an example of a query operating entirely on the lexical level, consider the f
    where comma.getNextToken() instanceof CommaToken
    select comma, "Omitted array elements are bad style."
 
-➤ `See this in the query console on LGTM.com <https://lgtm.com/query/659662177/>`__. If the query returns no results, this pattern isn't used in the projects that you analyzed.
+If the query returns no results, this pattern isn't used in the projects that you analyzed.
 
 You can use predicate ``Locatable.getFirstToken()`` and ``Locatable.getLastToken()`` to access the first and last token (if any) belonging to an element with a source location.
 
@@ -179,8 +179,6 @@ As an example of a query using only lexical information, consider the following
    from HtmlLineComment c
    select c, "Do not use HTML comments."
 
-➤ `See this in the query console on LGTM.com <https://lgtm.com/query/686330023/>`__. When we ran this query on the *mozilla/pdf.js* project in LGTM.com, we found three HTML comments.
-
 Syntactic level
 ~~~~~~~~~~~~~~~
 
@@ -351,8 +349,6 @@ As an example of how to use expression AST nodes, here is a query that finds exp
    where add = shift.getAnOperand()
    select add, "This expression should be bracketed to clarify precedence rules."
 
-➤ `See this in the query console on LGTM.com <https://lgtm.com/query/690010024/>`__. When we ran this query on the *meteor/meteor* project in LGTM.com, we found many results where precedence could be clarified using brackets.
-
 Functions
 ^^^^^^^^^
 
@@ -373,8 +369,6 @@ As an example, here is a query that finds all expression closures:
    where fe.getBody() instanceof Expr
    select fe, "Use arrow expressions instead of expression closures."
 
-➤ `See this in the query console on LGTM.com <https://lgtm.com/query/668510056/>`__. None of the LGTM.com demo projects uses expression closures, but you may find this query gets results on other projects.
-
 As another example, this query finds functions that have two parameters that bind the same variable:
 
 .. code-block:: ql
@@ -388,8 +382,6 @@ As another example, this query finds functions that have two parameters that bin
        p.getAVariable() = q.getAVariable()
    select fun, "This function has two parameters that bind the same variable."
 
-➤ `See this in the query console on LGTM.com <https://lgtm.com/query/673860037/>`__. None of the LGTM.com demo projects has functions where two parameters bind the same variable.
-
 Classes
 ^^^^^^^
 
@@ -444,7 +436,7 @@ Here is an example of a query to find declaration statements that declare the sa
        not ds.getTopLevel().isMinified()
    select ds, "Variable " + v.getName() + " is declared both $@ and $@.", d1, "here", d2, "here"
 
-➤ `See this in the query console on LGTM.com <https://lgtm.com/query/668700496/>`__. This is not a common problem, so you may not find any results in your own projects. The *angular/angular.js* project on LGTM.com has one instance of this problem at the time of writing.
+This is not a common problem, so you may not find any results in your own projects.
 
    Notice the use of ``not ... isMinified()`` here and in the next few queries. This excludes any results found in minified code. If you delete ``and not ds.getTopLevel().isMinified()`` and re-run the query, two results in minified code in the *meteor/meteor* project are reported.
 
@@ -471,8 +463,6 @@ As an example of a query involving properties, consider the following query that
        not oe.getTopLevel().isMinified()
    select oe, "Property " + p1.getName() + " is defined both $@ and $@.", p1, "here", p2, "here"
 
-➤ `See this in the query console on LGTM.com <https://lgtm.com/query/660700064/>`__. Many projects have a few instances of object expressions with two identically named properties.
-
 Modules
 ^^^^^^^
 
@@ -537,7 +527,7 @@ As an example, consider the following query which finds distinct function declar
        not g.getTopLevel().isMinified()
    select f, g
 
-➤ `See this in the query console on LGTM.com <https://lgtm.com/query/667290067/>`__. Some projects declare conflicting functions of the same name and rely on platform-specific behavior to disambiguate the two declarations.
+Some projects declare conflicting functions of the same name and rely on platform-specific behavior to disambiguate the two declarations.
 
 Control flow
 ~~~~~~~~~~~~
@@ -574,7 +564,7 @@ As an example of an analysis using basic blocks, ``BasicBlock.isLiveAtEntry(v, u
        not f.getStartBB().isLiveAtEntry(gv, _)
    select f, "This function uses " + gv + " like a local variable."
 
-➤ `See this in the query console on LGTM.com <https://lgtm.com/query/686320048/>`__. Many projects have some variables which look as if they were intended to be local.
+Many projects have some variables which look as if they were intended to be local.
 
 Data flow
 ~~~~~~~~~
@@ -599,8 +589,6 @@ As an example, the following query finds definitions of local variables that are
        not exists (VarUse use | def = use.getADef())
    select def, "Dead store of local variable."
 
-➤ `See this in the query console on LGTM.com <https://lgtm.com/query/2086440429/>`__. Many projects have some examples of useless assignments to local variables.
-
 SSA
 ^^^
 
@@ -642,8 +630,6 @@ For example, here is a query that finds all invocations of a method called ``sen
          send.getMethodName() = "send"
    select send
 
-➤ `See this in the query console on LGTM.com <https://lgtm.com/query/1506058347056/>`__. The query finds HTTP response sends in the `AMP HTML <https://lgtm.com/projects/g/ampproject/amphtml>`__ project.
-
 Note that the data flow modeling in this library is intraprocedural, that is, flow across function calls and returns is *not* modeled. Likewise, flow through object properties and global variables is not modeled.
 
 Type inference
@@ -707,8 +693,6 @@ As an example of a call-graph-based query, here is a query to find invocations f
          not exists(invk.getACallee())
    select invk, "Unable to find a callee for this invocation."
 
-➤ `See this in the query console on LGTM.com <https://lgtm.com/query/3260345690335671362/>`__
-
 Inter-procedural data flow
 ~~~~~~~~~~~~~~~~~~~~~~~~~~
 
@@ -843,7 +827,7 @@ As an example of the use of these classes, here is a query that counts for every
    from NodeModule m
    select m, count(m.getAnImportedModule())
 
-➤ `See this in the query console on LGTM.com <https://lgtm.com/query/659662207/>`__. When you analyze a project, for each module you can see how many other modules it imports.
+When you analyze a project, for each module you can see how many other modules it imports.
 
 NPM
 ^^^
@@ -872,8 +856,6 @@ As an example of the use of these classes, here is a query that identifies unuse
    not exists (Require req | req.getTopLevel() = pkg.getAModule() | name = req.getImportedPath().getValue())
    select deps, "Unused dependency '" + name + "'."
 
-➤ `See this in the query console on LGTM.com <https://lgtm.com/query/666680077/>`__. It is not uncommon for projects to have some unused dependencies.
-
 React
 ^^^^^
 
@@ -899,8 +881,6 @@ For example, here is a query to find SQL queries that use string concatenation (
    where ss instanceof AddExpr
    select ss, "Use templating instead of string concatenation."
 
-➤ `See this in the query console on LGTM.com <https://lgtm.com/query/1506076336224/>`__, showing two (benign) results on `strong-arc <https://lgtm.com/projects/g/strongloop/strong-arc/>`__.
-
 Miscellaneous
 ~~~~~~~~~~~~~
 
@@ -965,8 +945,6 @@ As an example, here is a query that finds ``@param`` tags that do not specify th
    not exists(t.getName())
    select t, "@param tag is missing name."
 
-➤ `See this in the query console on LGTM.com <https://lgtm.com/query/673060054/>`__. Of the LGTM.com demo projects analyzed, only *Semantic-Org/Semantic-UI* has an example where the ``@param`` tag omits the name.
-
 For full details on these and other classes representing JSDoc comments and type expressions, see `the API documentation <https://codeql.github.com/codeql-standard-libraries/javascript/semmle/javascript/JSDoc.qll/module.JSDoc.html>`__.
 
 JSX

From 7e5a9fbe2e82b9e6c9a72794f3ba8a3c3dcc86f0 Mon Sep 17 00:00:00 2001
From: Felicity Chapman <felicitymay@github.com>
Date: Mon, 28 Nov 2022 09:30:35 +0000
Subject: [PATCH 0715/1420] Update note for review comments

---
 .../codeql-language-guides/codeql-library-for-javascript.rst    | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/docs/codeql/codeql-language-guides/codeql-library-for-javascript.rst b/docs/codeql/codeql-language-guides/codeql-library-for-javascript.rst
index 0b3f8daedb1..8c9c6d8cffa 100644
--- a/docs/codeql/codeql-language-guides/codeql-library-for-javascript.rst
+++ b/docs/codeql/codeql-language-guides/codeql-library-for-javascript.rst
@@ -228,7 +228,7 @@ The `TopLevel <https://codeql.github.com/codeql-standard-libraries/javascript/se
 
    Note
 
-   By default, LGTM filters out alerts in minified top-levels, since they are often hard to interpret. When writing your own queries in the LGTM query console, this filtering is *not* done automatically, so you may want to explicitly add a condition of the form ``and not e.getTopLevel().isMinified()`` or similar to your query to exclude results in minified code.
+   By default, GitHub code scanning filters out alerts in minified top-levels, since they are often hard to interpret. When you write your own queries in Visual Studio Code, this filtering is *not* done automatically, so you may want to explicitly add a condition of the form ``and not e.getTopLevel().isMinified()`` or similar to your query to exclude results in minified code.
 
 Statements and expressions
 ^^^^^^^^^^^^^^^^^^^^^^^^^^

From 59b6d657cca9abd7bfa7dc32f6f072ec057eaf3e Mon Sep 17 00:00:00 2001
From: Felicity Chapman <felicitymay@github.com>
Date: Mon, 28 Nov 2022 11:49:19 +0000
Subject: [PATCH 0716/1420] Apply suggestions from code review

Co-authored-by: hubwriter <hubwriter@github.com>
---
 cpp/ql/lib/definitions.qll                                    | 2 +-
 cpp/ql/src/Likely Bugs/RedundantNullCheckSimple.ql            | 2 +-
 .../writing-codeql-queries/metadata-for-codeql-queries.rst    | 4 ++--
 3 files changed, 4 insertions(+), 4 deletions(-)

diff --git a/cpp/ql/lib/definitions.qll b/cpp/ql/lib/definitions.qll
index e866a50513b..e4a2aca98f6 100644
--- a/cpp/ql/lib/definitions.qll
+++ b/cpp/ql/lib/definitions.qll
@@ -13,7 +13,7 @@ import IDEContextual
  * In some cases it is preferable to modify locations (the
  * `hasLocationInfo()` predicate) so that they are short, and
  * non-overlapping with other locations that might be reported as
- * code scanning alerts in GitHub.
+ * code scanning alerts on GitHub.
  *
  * We need to give locations that may not be in the database, so
  * we use `hasLocationInfo()` rather than `getLocation()`.
diff --git a/cpp/ql/src/Likely Bugs/RedundantNullCheckSimple.ql b/cpp/ql/src/Likely Bugs/RedundantNullCheckSimple.ql
index 0de0979f9a3..4dacffb6a55 100644
--- a/cpp/ql/src/Likely Bugs/RedundantNullCheckSimple.ql	
+++ b/cpp/ql/src/Likely Bugs/RedundantNullCheckSimple.ql	
@@ -13,7 +13,7 @@
 
 /*
  * Note: this query is not assigned a precision yet because we don't want it
- * included in query suites until its performance is well understood.
+ * to be included in query suites until its performance is well understood.
  */
 
 import cpp
diff --git a/docs/codeql/writing-codeql-queries/metadata-for-codeql-queries.rst b/docs/codeql/writing-codeql-queries/metadata-for-codeql-queries.rst
index 46807e45399..54cfd20bba7 100644
--- a/docs/codeql/writing-codeql-queries/metadata-for-codeql-queries.rst
+++ b/docs/codeql/writing-codeql-queries/metadata-for-codeql-queries.rst
@@ -40,12 +40,12 @@ The following properties are supported by all query files:
 |                       | | ``readability``         |                                                                                                                                                                                                                                                                                                                                                                       |
 |                       | | ``security``            |                                                                                                                                                                                                                                                                                                                                                                       |
 +-----------------------+---------------------------+-----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+
-| ``@precision``        | | ``low``                 | Indicates the percentage of query results that are true positives (as opposed to false positive results). This, along with the ``@problem.severity`` property, determines how the results are displayed in GitHub.                                                                                                                                                    |
+| ``@precision``        | | ``low``                 | Indicates the percentage of query results that are true positives (as opposed to false positive results). This, along with the ``@problem.severity`` property, determines how the results are displayed on GitHub.                                                                                                                                                    |
 |                       | | ``medium``              |                                                                                                                                                                                                                                                                                                                                                                       |
 |                       | | ``high``                |                                                                                                                                                                                                                                                                                                                                                                       |
 |                       | | ``very-high``           |                                                                                                                                                                                                                                                                                                                                                                       |
 +-----------------------+---------------------------+-----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+
-| ``@problem.severity`` | | ``error``               | Defines the level of severity of any alerts generated by a non-security query. This, along with the ``@precision`` property, determines how the results are displayed in GitHub.                                                                                                                                                                                      |
+| ``@problem.severity`` | | ``error``               | Defines the level of severity of any alerts generated by a non-security query. This, along with the ``@precision`` property, determines how the results are displayed on GitHub.                                                                                                                                                                                      |
 |                       | | ``warning``             |                                                                                                                                                                                                                                                                                                                                                                       |
 |                       | | ``recommendation``      |                                                                                                                                                                                                                                                                                                                                                                       |
 +-----------------------+---------------------------+-----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+

From 479a9e4156f63abf0ca4bf73292453b7e67b747e Mon Sep 17 00:00:00 2001
From: Rasmus Wriedt Larsen <rasmuswl@github.com>
Date: Mon, 28 Nov 2022 16:01:42 +0100
Subject: [PATCH 0717/1420] Python: Update `.expected`

---
 .../CWE-285-PamAuthorization/PamAuthorization.expected    | 8 +++++++-
 1 file changed, 7 insertions(+), 1 deletion(-)

diff --git a/python/ql/test/query-tests/Security/CWE-285-PamAuthorization/PamAuthorization.expected b/python/ql/test/query-tests/Security/CWE-285-PamAuthorization/PamAuthorization.expected
index 7fb5217dbe1..ddee575f148 100644
--- a/python/ql/test/query-tests/Security/CWE-285-PamAuthorization/PamAuthorization.expected
+++ b/python/ql/test/query-tests/Security/CWE-285-PamAuthorization/PamAuthorization.expected
@@ -1,10 +1,16 @@
 edges
+| pam_test.py:0:0:0:0 | ModuleVariableNode for pam_test.request | pam_test.py:70:16:70:22 | ControlFlowNode for request |
+| pam_test.py:4:26:4:32 | ControlFlowNode for ImportMember | pam_test.py:4:26:4:32 | GSSA Variable request |
+| pam_test.py:4:26:4:32 | GSSA Variable request | pam_test.py:0:0:0:0 | ModuleVariableNode for pam_test.request |
 | pam_test.py:70:16:70:22 | ControlFlowNode for request | pam_test.py:70:16:70:27 | ControlFlowNode for Attribute |
 | pam_test.py:70:16:70:27 | ControlFlowNode for Attribute | pam_test.py:75:14:75:40 | ControlFlowNode for pam_authenticate() |
 nodes
+| pam_test.py:0:0:0:0 | ModuleVariableNode for pam_test.request | semmle.label | ModuleVariableNode for pam_test.request |
+| pam_test.py:4:26:4:32 | ControlFlowNode for ImportMember | semmle.label | ControlFlowNode for ImportMember |
+| pam_test.py:4:26:4:32 | GSSA Variable request | semmle.label | GSSA Variable request |
 | pam_test.py:70:16:70:22 | ControlFlowNode for request | semmle.label | ControlFlowNode for request |
 | pam_test.py:70:16:70:27 | ControlFlowNode for Attribute | semmle.label | ControlFlowNode for Attribute |
 | pam_test.py:75:14:75:40 | ControlFlowNode for pam_authenticate() | semmle.label | ControlFlowNode for pam_authenticate() |
 subpaths
 #select
-| pam_test.py:75:14:75:40 | ControlFlowNode for pam_authenticate() | pam_test.py:70:16:70:22 | ControlFlowNode for request | pam_test.py:75:14:75:40 | ControlFlowNode for pam_authenticate() | This PAM authentication call may lead to an authorization bypass, since `pam_acct_mgmt` is not called afterwards. |
+| pam_test.py:75:14:75:40 | ControlFlowNode for pam_authenticate() | pam_test.py:4:26:4:32 | ControlFlowNode for ImportMember | pam_test.py:75:14:75:40 | ControlFlowNode for pam_authenticate() | This PAM authentication call may lead to an authorization bypass, since `pam_acct_mgmt` is not called afterwards. |

From c310948521caa6217b2e0e8a531689092ca9b3e6 Mon Sep 17 00:00:00 2001
From: Rasmus Wriedt Larsen <rasmuswl@github.com>
Date: Mon, 28 Nov 2022 16:02:38 +0100
Subject: [PATCH 0718/1420] Python: Remove enclosing module for PAM Auth
 Bypass.qll

---
 .../security/dataflow/PamAuthorization.qll    | 43 ++++++++-----------
 .../src/Security/CWE-285/PamAuthorization.ql  |  2 +-
 2 files changed, 20 insertions(+), 25 deletions(-)

diff --git a/python/ql/lib/semmle/python/security/dataflow/PamAuthorization.qll b/python/ql/lib/semmle/python/security/dataflow/PamAuthorization.qll
index 82d73cc3e89..6abfc999092 100644
--- a/python/ql/lib/semmle/python/security/dataflow/PamAuthorization.qll
+++ b/python/ql/lib/semmle/python/security/dataflow/PamAuthorization.qll
@@ -12,33 +12,28 @@ import semmle.python.dataflow.new.TaintTracking
 import PamAuthorizationCustomizations::PamAuthorizationCustomizations
 
 /**
- * Provides a taint-tracking configuration for detecting "PAM Authorization" vulnerabilities.
+ * A taint-tracking configuration for detecting "PAM Authorization" vulnerabilities.
  */
-module PamAuthorization {
-  /**
-   * A taint-tracking configuration for detecting "PAM Authorization" vulnerabilities.
-   */
-  class Configuration extends TaintTracking::Configuration {
-    Configuration() { this = "RemoteToPam" }
+class Configuration extends TaintTracking::Configuration {
+  Configuration() { this = "RemoteToPam" }
 
-    override predicate isSource(DataFlow::Node node) { node instanceof Source }
+  override predicate isSource(DataFlow::Node node) { node instanceof Source }
 
-    override predicate isSink(DataFlow::Node node) { node instanceof Sink }
+  override predicate isSink(DataFlow::Node node) { node instanceof Sink }
 
-    override predicate isAdditionalTaintStep(DataFlow::Node node1, DataFlow::Node node2) {
-      // Models flow from a remotely supplied username field to a PAM `handle`.
-      // `retval = pam_start(service, username, byref(conv), byref(handle))`
-      exists(API::CallNode pamStart, DataFlow::Node handle, API::CallNode pointer |
-        pointer = API::moduleImport("ctypes").getMember(["pointer", "byref"]).getACall() and
-        pamStart = libPam().getMember("pam_start").getACall() and
-        pointer = pamStart.getArg(3) and
-        handle = pointer.getArg(0) and
-        pamStart.getArg(1) = node1 and
-        handle = node2
-      )
-      or
-      // Flow from handle to the authenticate call in the final step
-      exists(VulnPamAuthCall c | c.getArg(0) = node1 | node2 = c)
-    }
+  override predicate isAdditionalTaintStep(DataFlow::Node node1, DataFlow::Node node2) {
+    // Models flow from a remotely supplied username field to a PAM `handle`.
+    // `retval = pam_start(service, username, byref(conv), byref(handle))`
+    exists(API::CallNode pamStart, DataFlow::Node handle, API::CallNode pointer |
+      pointer = API::moduleImport("ctypes").getMember(["pointer", "byref"]).getACall() and
+      pamStart = libPam().getMember("pam_start").getACall() and
+      pointer = pamStart.getArg(3) and
+      handle = pointer.getArg(0) and
+      pamStart.getArg(1) = node1 and
+      handle = node2
+    )
+    or
+    // Flow from handle to the authenticate call in the final step
+    exists(VulnPamAuthCall c | c.getArg(0) = node1 | node2 = c)
   }
 }
diff --git a/python/ql/src/Security/CWE-285/PamAuthorization.ql b/python/ql/src/Security/CWE-285/PamAuthorization.ql
index 9e2eb00d815..44f464b81f5 100644
--- a/python/ql/src/Security/CWE-285/PamAuthorization.ql
+++ b/python/ql/src/Security/CWE-285/PamAuthorization.ql
@@ -13,7 +13,7 @@
 import python
 import DataFlow::PathGraph
 import semmle.python.ApiGraphs
-import semmle.python.security.dataflow.PamAuthorization::PamAuthorization
+import semmle.python.security.dataflow.PamAuthorization
 
 from Configuration config, DataFlow::PathNode source, DataFlow::PathNode sink
 where config.hasFlowPath(source, sink)

From 3d9556e5a3d255b15b29a70beb5322f670de87d5 Mon Sep 17 00:00:00 2001
From: Rasmus Wriedt Larsen <rasmuswl@github.com>
Date: Mon, 28 Nov 2022 16:03:17 +0100
Subject: [PATCH 0719/1420] Python: Use proper Query suffix

---
 .../{PamAuthorization.qll => PamAuthorizationQuery.qll}         | 2 +-
 python/ql/src/Security/CWE-285/PamAuthorization.ql              | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)
 rename python/ql/lib/semmle/python/security/dataflow/{PamAuthorization.qll => PamAuthorizationQuery.qll} (96%)

diff --git a/python/ql/lib/semmle/python/security/dataflow/PamAuthorization.qll b/python/ql/lib/semmle/python/security/dataflow/PamAuthorizationQuery.qll
similarity index 96%
rename from python/ql/lib/semmle/python/security/dataflow/PamAuthorization.qll
rename to python/ql/lib/semmle/python/security/dataflow/PamAuthorizationQuery.qll
index 6abfc999092..18dc29a4a71 100644
--- a/python/ql/lib/semmle/python/security/dataflow/PamAuthorization.qll
+++ b/python/ql/lib/semmle/python/security/dataflow/PamAuthorizationQuery.qll
@@ -15,7 +15,7 @@ import PamAuthorizationCustomizations::PamAuthorizationCustomizations
  * A taint-tracking configuration for detecting "PAM Authorization" vulnerabilities.
  */
 class Configuration extends TaintTracking::Configuration {
-  Configuration() { this = "RemoteToPam" }
+  Configuration() { this = "PamAuthorization" }
 
   override predicate isSource(DataFlow::Node node) { node instanceof Source }
 
diff --git a/python/ql/src/Security/CWE-285/PamAuthorization.ql b/python/ql/src/Security/CWE-285/PamAuthorization.ql
index 44f464b81f5..399e98ea323 100644
--- a/python/ql/src/Security/CWE-285/PamAuthorization.ql
+++ b/python/ql/src/Security/CWE-285/PamAuthorization.ql
@@ -13,7 +13,7 @@
 import python
 import DataFlow::PathGraph
 import semmle.python.ApiGraphs
-import semmle.python.security.dataflow.PamAuthorization
+import semmle.python.security.dataflow.PamAuthorizationQuery
 
 from Configuration config, DataFlow::PathNode source, DataFlow::PathNode sink
 where config.hasFlowPath(source, sink)

From fef06679e5775cff610dceaae3ffd191376ec75b Mon Sep 17 00:00:00 2001
From: Rasmus Wriedt Larsen <rasmuswl@github.com>
Date: Mon, 28 Nov 2022 16:03:32 +0100
Subject: [PATCH 0720/1420] Python: Remove options file for PAM Auth Bypass

Should not be needed
---
 .../test/query-tests/Security/CWE-285-PamAuthorization/options   | 1 -
 1 file changed, 1 deletion(-)
 delete mode 100644 python/ql/test/query-tests/Security/CWE-285-PamAuthorization/options

diff --git a/python/ql/test/query-tests/Security/CWE-285-PamAuthorization/options b/python/ql/test/query-tests/Security/CWE-285-PamAuthorization/options
deleted file mode 100644
index 28b616e5f19..00000000000
--- a/python/ql/test/query-tests/Security/CWE-285-PamAuthorization/options
+++ /dev/null
@@ -1 +0,0 @@
-semmle-extractor-options: --lang=3 --max-import-depth=2 -p ../lib

From f8442ccb0ea9141604769a61dec73a9392deb643 Mon Sep 17 00:00:00 2001
From: Rasmus Wriedt Larsen <rasmuswl@github.com>
Date: Mon, 28 Nov 2022 16:08:44 +0100
Subject: [PATCH 0721/1420] Python: Adjust PAM Auth bypass test slightly

---
 .../PamAuthorization.expected                 | 14 +++----
 .../CWE-285-PamAuthorization/pam_test.py      | 41 ++++++++++---------
 2 files changed, 29 insertions(+), 26 deletions(-)

diff --git a/python/ql/test/query-tests/Security/CWE-285-PamAuthorization/PamAuthorization.expected b/python/ql/test/query-tests/Security/CWE-285-PamAuthorization/PamAuthorization.expected
index ddee575f148..55fdfa9795c 100644
--- a/python/ql/test/query-tests/Security/CWE-285-PamAuthorization/PamAuthorization.expected
+++ b/python/ql/test/query-tests/Security/CWE-285-PamAuthorization/PamAuthorization.expected
@@ -1,16 +1,16 @@
 edges
-| pam_test.py:0:0:0:0 | ModuleVariableNode for pam_test.request | pam_test.py:70:16:70:22 | ControlFlowNode for request |
+| pam_test.py:0:0:0:0 | ModuleVariableNode for pam_test.request | pam_test.py:71:16:71:22 | ControlFlowNode for request |
 | pam_test.py:4:26:4:32 | ControlFlowNode for ImportMember | pam_test.py:4:26:4:32 | GSSA Variable request |
 | pam_test.py:4:26:4:32 | GSSA Variable request | pam_test.py:0:0:0:0 | ModuleVariableNode for pam_test.request |
-| pam_test.py:70:16:70:22 | ControlFlowNode for request | pam_test.py:70:16:70:27 | ControlFlowNode for Attribute |
-| pam_test.py:70:16:70:27 | ControlFlowNode for Attribute | pam_test.py:75:14:75:40 | ControlFlowNode for pam_authenticate() |
+| pam_test.py:71:16:71:22 | ControlFlowNode for request | pam_test.py:71:16:71:27 | ControlFlowNode for Attribute |
+| pam_test.py:71:16:71:27 | ControlFlowNode for Attribute | pam_test.py:76:14:76:40 | ControlFlowNode for pam_authenticate() |
 nodes
 | pam_test.py:0:0:0:0 | ModuleVariableNode for pam_test.request | semmle.label | ModuleVariableNode for pam_test.request |
 | pam_test.py:4:26:4:32 | ControlFlowNode for ImportMember | semmle.label | ControlFlowNode for ImportMember |
 | pam_test.py:4:26:4:32 | GSSA Variable request | semmle.label | GSSA Variable request |
-| pam_test.py:70:16:70:22 | ControlFlowNode for request | semmle.label | ControlFlowNode for request |
-| pam_test.py:70:16:70:27 | ControlFlowNode for Attribute | semmle.label | ControlFlowNode for Attribute |
-| pam_test.py:75:14:75:40 | ControlFlowNode for pam_authenticate() | semmle.label | ControlFlowNode for pam_authenticate() |
+| pam_test.py:71:16:71:22 | ControlFlowNode for request | semmle.label | ControlFlowNode for request |
+| pam_test.py:71:16:71:27 | ControlFlowNode for Attribute | semmle.label | ControlFlowNode for Attribute |
+| pam_test.py:76:14:76:40 | ControlFlowNode for pam_authenticate() | semmle.label | ControlFlowNode for pam_authenticate() |
 subpaths
 #select
-| pam_test.py:75:14:75:40 | ControlFlowNode for pam_authenticate() | pam_test.py:4:26:4:32 | ControlFlowNode for ImportMember | pam_test.py:75:14:75:40 | ControlFlowNode for pam_authenticate() | This PAM authentication call may lead to an authorization bypass, since `pam_acct_mgmt` is not called afterwards. |
+| pam_test.py:76:14:76:40 | ControlFlowNode for pam_authenticate() | pam_test.py:4:26:4:32 | ControlFlowNode for ImportMember | pam_test.py:76:14:76:40 | ControlFlowNode for pam_authenticate() | This PAM authentication call may lead to an authorization bypass, since `pam_acct_mgmt` is not called afterwards. |
diff --git a/python/ql/test/query-tests/Security/CWE-285-PamAuthorization/pam_test.py b/python/ql/test/query-tests/Security/CWE-285-PamAuthorization/pam_test.py
index f80ce82669a..f16e3c9941e 100644
--- a/python/ql/test/query-tests/Security/CWE-285-PamAuthorization/pam_test.py
+++ b/python/ql/test/query-tests/Security/CWE-285-PamAuthorization/pam_test.py
@@ -39,29 +39,30 @@ pam_acct_mgmt.restype = c_int
 pam_acct_mgmt.argtypes = [PamHandle, c_int]
 
 
-class pam():
+def authenticate_bad_but_no_alert(self, username, service='login'):
+    # This is not OK, but since we don't have flow from a remote-flow-source, we
+    # don't give an alert.
+    handle = PamHandle()
+    conv = PamConv(None, 0)
+    retval = pam_start(service, username, byref(conv), byref(handle))
+    retval = pam_authenticate(handle, 0)
+    # NOT OK: no call to `pam_acct_mgmt`
+    auth_success = retval == 0
 
-    def authenticate_bad_but_good(self, username, service='login'):
-        handle = PamHandle()
-        conv = PamConv(None, 0)
-        retval = pam_start(service, username, byref(conv), byref(handle))
-        # This is not fine but we don't alert here as there is a possibility that the function is not actually used
-        retval = pam_authenticate(handle, 0)
-        auth_success = retval == 0
+    return auth_success
 
-        return auth_success
 
-    def authenticate_good(self, username, service='login'):
-        handle = PamHandle()
-        conv = PamConv(None, 0)
-        retval = pam_start(service, username, byref(conv), byref(handle))
+def authenticate_good(self, username, service='login'):
+    handle = PamHandle()
+    conv = PamConv(None, 0)
+    retval = pam_start(service, username, byref(conv), byref(handle))
 
-        retval = pam_authenticate(handle, 0)
-        if retval == 0:
-            retval = pam_acct_mgmt(handle, 0)
-        auth_success = retval == 0
+    retval = pam_authenticate(handle, 0)
+    if retval == 0:
+        retval = pam_acct_mgmt(handle, 0)
+    auth_success = retval == 0
 
-        return auth_success
+    return auth_success
 
 
 app = Flask(__name__)
@@ -73,10 +74,12 @@ def bad():
     retval = pam_start(service, username, byref(conv), byref(handle))
 
     retval = pam_authenticate(handle, 0)
+    # NOT OK: no call to `pam_acct_mgmt`
     auth_success = retval == 0
 
     return auth_success
 
+
 @app.route('/good')
 def good():
     username = request.args.get('username', '')
@@ -89,4 +92,4 @@ def good():
         retval = pam_acct_mgmt(handle, 0)
     auth_success = retval == 0
 
-    return auth_success
\ No newline at end of file
+    return auth_success

From 4e67ec19d05a74ec22bb6fb1608dec561a3bd294 Mon Sep 17 00:00:00 2001
From: Rasmus Wriedt Larsen <rasmuswl@github.com>
Date: Mon, 28 Nov 2022 16:14:38 +0100
Subject: [PATCH 0722/1420] Python: Adjust alert text of `py/pam-auth-bypass`

---
 python/ql/src/Security/CWE-285/PamAuthorization.ql             | 3 ++-
 .../CWE-285-PamAuthorization/PamAuthorization.expected         | 2 +-
 2 files changed, 3 insertions(+), 2 deletions(-)

diff --git a/python/ql/src/Security/CWE-285/PamAuthorization.ql b/python/ql/src/Security/CWE-285/PamAuthorization.ql
index 399e98ea323..3093bcf21d5 100644
--- a/python/ql/src/Security/CWE-285/PamAuthorization.ql
+++ b/python/ql/src/Security/CWE-285/PamAuthorization.ql
@@ -18,4 +18,5 @@ import semmle.python.security.dataflow.PamAuthorizationQuery
 from Configuration config, DataFlow::PathNode source, DataFlow::PathNode sink
 where config.hasFlowPath(source, sink)
 select sink.getNode(), source, sink,
-  "This PAM authentication call may lead to an authorization bypass, since `pam_acct_mgmt` is not called afterwards."
+  "This PAM authentication depends on a $@, and `pam_acct_mgmt` is not called afterwards.",
+  source.getNode(), "user-provided value"
diff --git a/python/ql/test/query-tests/Security/CWE-285-PamAuthorization/PamAuthorization.expected b/python/ql/test/query-tests/Security/CWE-285-PamAuthorization/PamAuthorization.expected
index 55fdfa9795c..d2abf9a88ea 100644
--- a/python/ql/test/query-tests/Security/CWE-285-PamAuthorization/PamAuthorization.expected
+++ b/python/ql/test/query-tests/Security/CWE-285-PamAuthorization/PamAuthorization.expected
@@ -13,4 +13,4 @@ nodes
 | pam_test.py:76:14:76:40 | ControlFlowNode for pam_authenticate() | semmle.label | ControlFlowNode for pam_authenticate() |
 subpaths
 #select
-| pam_test.py:76:14:76:40 | ControlFlowNode for pam_authenticate() | pam_test.py:4:26:4:32 | ControlFlowNode for ImportMember | pam_test.py:76:14:76:40 | ControlFlowNode for pam_authenticate() | This PAM authentication call may lead to an authorization bypass, since `pam_acct_mgmt` is not called afterwards. |
+| pam_test.py:76:14:76:40 | ControlFlowNode for pam_authenticate() | pam_test.py:4:26:4:32 | ControlFlowNode for ImportMember | pam_test.py:76:14:76:40 | ControlFlowNode for pam_authenticate() | This PAM authentication depends on a $@, and `pam_acct_mgmt` is not called afterwards. | pam_test.py:4:26:4:32 | ControlFlowNode for ImportMember | user-provided value |

From 8694119c3cccbad423a2622bff77aa2aa258204b Mon Sep 17 00:00:00 2001
From: Rasmus Wriedt Larsen <rasmuswl@github.com>
Date: Mon, 28 Nov 2022 16:16:34 +0100
Subject: [PATCH 0723/1420] Python: Update `py/pam-auth-bypass` change-note
 wording

---
 python/ql/lib/change-notes/2022-11-17-py-pam-improve.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/python/ql/lib/change-notes/2022-11-17-py-pam-improve.md b/python/ql/lib/change-notes/2022-11-17-py-pam-improve.md
index 95c5f387103..ec7f49bd11d 100644
--- a/python/ql/lib/change-notes/2022-11-17-py-pam-improve.md
+++ b/python/ql/lib/change-notes/2022-11-17-py-pam-improve.md
@@ -1,4 +1,4 @@
 ---
  category: majorAnalysis
 ---
-* Converted `py/pam-auth-bypass` to a data-flow query, resulting in significantly lower false positives.
+* The _PAM authorization bypass due to incorrect usage_ (`py/pam-auth-bypass`) query has been converted to a tain-tracking query, resulting in significantly fewer false positives.

From 97bd91ed19898335a9886b1ebbde20849e7c917c Mon Sep 17 00:00:00 2001
From: Geoffrey White <40627776+geoffw0@users.noreply.github.com>
Date: Mon, 28 Nov 2022 16:05:42 +0000
Subject: [PATCH 0724/1420] Swift: Simplify using
 ApplyExpr.getArgumentWithLabel.

---
 .../queries/Security/CWE-1204/StaticInitializationVector.ql | 6 ++----
 swift/ql/src/queries/Security/CWE-259/ConstantPassword.ql   | 5 ++---
 swift/ql/src/queries/Security/CWE-760/ConstantSalt.ql       | 5 ++---
 .../queries/Security/CWE-916/InsufficientHashIterations.ql  | 5 ++---
 4 files changed, 8 insertions(+), 13 deletions(-)

diff --git a/swift/ql/src/queries/Security/CWE-1204/StaticInitializationVector.ql b/swift/ql/src/queries/Security/CWE-1204/StaticInitializationVector.ql
index ccf6584c391..9a0ac0e3d79 100644
--- a/swift/ql/src/queries/Security/CWE-1204/StaticInitializationVector.ql
+++ b/swift/ql/src/queries/Security/CWE-1204/StaticInitializationVector.ql
@@ -32,7 +32,7 @@ class StaticInitializationVectorSource extends Expr {
 class EncryptionInitializationSink extends Expr {
   EncryptionInitializationSink() {
     // `iv` arg in `init` is a sink
-    exists(CallExpr call, string fName, int arg |
+    exists(CallExpr call, string fName |
       call.getStaticTarget()
           .(MethodDecl)
           .hasQualifiedName([
@@ -40,9 +40,7 @@ class EncryptionInitializationSink extends Expr {
               "CCM", "CTR"
             ], fName) and
       fName.matches("%init(%iv:%") and
-      arg = [0, 1] and
-      call.getStaticTarget().(MethodDecl).getParam(pragma[only_bind_into](arg)).getName() = "iv" and
-      call.getArgument(pragma[only_bind_into](arg)).getExpr() = this
+      call.getArgumentWithLabel("iv").getExpr() = this
     )
   }
 }
diff --git a/swift/ql/src/queries/Security/CWE-259/ConstantPassword.ql b/swift/ql/src/queries/Security/CWE-259/ConstantPassword.ql
index 75af598dc19..e17d8a4c778 100644
--- a/swift/ql/src/queries/Security/CWE-259/ConstantPassword.ql
+++ b/swift/ql/src/queries/Security/CWE-259/ConstantPassword.ql
@@ -32,13 +32,12 @@ class ConstantPasswordSource extends Expr {
 class ConstantPasswordSink extends Expr {
   ConstantPasswordSink() {
     // `password` arg in `init` is a sink
-    exists(ClassOrStructDecl c, AbstractFunctionDecl f, CallExpr call, int arg |
+    exists(ClassOrStructDecl c, AbstractFunctionDecl f, CallExpr call |
       c.getFullName() = ["HKDF", "PBKDF1", "PBKDF2", "Scrypt"] and
       c.getAMember() = f and
       f.getName().matches("%init(%password:%") and
       call.getStaticTarget() = f and
-      f.getParam(pragma[only_bind_into](arg)).getName() = "password" and
-      call.getArgument(pragma[only_bind_into](arg)).getExpr() = this
+      call.getArgumentWithLabel("password").getExpr() = this
     )
   }
 }
diff --git a/swift/ql/src/queries/Security/CWE-760/ConstantSalt.ql b/swift/ql/src/queries/Security/CWE-760/ConstantSalt.ql
index 9cd6dbd5ace..b351eb710d7 100644
--- a/swift/ql/src/queries/Security/CWE-760/ConstantSalt.ql
+++ b/swift/ql/src/queries/Security/CWE-760/ConstantSalt.ql
@@ -32,13 +32,12 @@ class ConstantSaltSource extends Expr {
 class ConstantSaltSink extends Expr {
   ConstantSaltSink() {
     // `salt` arg in `init` is a sink
-    exists(ClassOrStructDecl c, AbstractFunctionDecl f, CallExpr call, int arg |
+    exists(ClassOrStructDecl c, AbstractFunctionDecl f, CallExpr call |
       c.getFullName() = ["HKDF", "PBKDF1", "PBKDF2", "Scrypt"] and
       c.getAMember() = f and
       f.getName().matches("%init(%salt:%") and
       call.getStaticTarget() = f and
-      f.getParam(pragma[only_bind_into](arg)).getName() = "salt" and
-      call.getArgument(pragma[only_bind_into](arg)).getExpr() = this
+      call.getArgumentWithLabel("salt").getExpr() = this
     )
   }
 }
diff --git a/swift/ql/src/queries/Security/CWE-916/InsufficientHashIterations.ql b/swift/ql/src/queries/Security/CWE-916/InsufficientHashIterations.ql
index 046c86d2f5c..19d400dfe1b 100644
--- a/swift/ql/src/queries/Security/CWE-916/InsufficientHashIterations.ql
+++ b/swift/ql/src/queries/Security/CWE-916/InsufficientHashIterations.ql
@@ -33,13 +33,12 @@ class IntLiteralSource extends IterationsSource instanceof IntegerLiteralExpr {
 class InsufficientHashIterationsSink extends Expr {
   InsufficientHashIterationsSink() {
     // `iterations` arg in `init` is a sink
-    exists(ClassOrStructDecl c, AbstractFunctionDecl f, CallExpr call, int arg |
+    exists(ClassOrStructDecl c, AbstractFunctionDecl f, CallExpr call |
       c.getFullName() = ["PBKDF1", "PBKDF2"] and
       c.getAMember() = f and
       f.getName().matches("init(%iterations:%") and
       call.getStaticTarget() = f and
-      f.getParam(pragma[only_bind_into](arg)).getName() = "iterations" and
-      call.getArgument(pragma[only_bind_into](arg)).getExpr() = this
+      call.getArgumentWithLabel("iterations").getExpr() = this
     )
   }
 }

From aa5c893d5e9c4eec894c1e8988f65515e6b31bb4 Mon Sep 17 00:00:00 2001
From: Geoffrey White <40627776+geoffw0@users.noreply.github.com>
Date: Mon, 28 Nov 2022 16:08:24 +0000
Subject: [PATCH 0725/1420] Swift: Further simplify.

---
 .../src/queries/Security/CWE-1204/StaticInitializationVector.ql | 2 +-
 swift/ql/src/queries/Security/CWE-259/ConstantPassword.ql       | 2 +-
 swift/ql/src/queries/Security/CWE-760/ConstantSalt.ql           | 2 +-
 .../src/queries/Security/CWE-916/InsufficientHashIterations.ql  | 2 +-
 4 files changed, 4 insertions(+), 4 deletions(-)

diff --git a/swift/ql/src/queries/Security/CWE-1204/StaticInitializationVector.ql b/swift/ql/src/queries/Security/CWE-1204/StaticInitializationVector.ql
index 9a0ac0e3d79..28dbb45d95c 100644
--- a/swift/ql/src/queries/Security/CWE-1204/StaticInitializationVector.ql
+++ b/swift/ql/src/queries/Security/CWE-1204/StaticInitializationVector.ql
@@ -39,7 +39,7 @@ class EncryptionInitializationSink extends Expr {
               "AES", "ChaCha20", "Blowfish", "Rabbit", "CBC", "CFB", "GCM", "OCB", "OFB", "PCBC",
               "CCM", "CTR"
             ], fName) and
-      fName.matches("%init(%iv:%") and
+      fName.matches("%init(%") and
       call.getArgumentWithLabel("iv").getExpr() = this
     )
   }
diff --git a/swift/ql/src/queries/Security/CWE-259/ConstantPassword.ql b/swift/ql/src/queries/Security/CWE-259/ConstantPassword.ql
index e17d8a4c778..91982a2a2dd 100644
--- a/swift/ql/src/queries/Security/CWE-259/ConstantPassword.ql
+++ b/swift/ql/src/queries/Security/CWE-259/ConstantPassword.ql
@@ -35,7 +35,7 @@ class ConstantPasswordSink extends Expr {
     exists(ClassOrStructDecl c, AbstractFunctionDecl f, CallExpr call |
       c.getFullName() = ["HKDF", "PBKDF1", "PBKDF2", "Scrypt"] and
       c.getAMember() = f and
-      f.getName().matches("%init(%password:%") and
+      f.getName().matches("%init(%") and
       call.getStaticTarget() = f and
       call.getArgumentWithLabel("password").getExpr() = this
     )
diff --git a/swift/ql/src/queries/Security/CWE-760/ConstantSalt.ql b/swift/ql/src/queries/Security/CWE-760/ConstantSalt.ql
index b351eb710d7..47f84fd9bd7 100644
--- a/swift/ql/src/queries/Security/CWE-760/ConstantSalt.ql
+++ b/swift/ql/src/queries/Security/CWE-760/ConstantSalt.ql
@@ -35,7 +35,7 @@ class ConstantSaltSink extends Expr {
     exists(ClassOrStructDecl c, AbstractFunctionDecl f, CallExpr call |
       c.getFullName() = ["HKDF", "PBKDF1", "PBKDF2", "Scrypt"] and
       c.getAMember() = f and
-      f.getName().matches("%init(%salt:%") and
+      f.getName().matches("%init(%") and
       call.getStaticTarget() = f and
       call.getArgumentWithLabel("salt").getExpr() = this
     )
diff --git a/swift/ql/src/queries/Security/CWE-916/InsufficientHashIterations.ql b/swift/ql/src/queries/Security/CWE-916/InsufficientHashIterations.ql
index 19d400dfe1b..7349978189d 100644
--- a/swift/ql/src/queries/Security/CWE-916/InsufficientHashIterations.ql
+++ b/swift/ql/src/queries/Security/CWE-916/InsufficientHashIterations.ql
@@ -36,7 +36,7 @@ class InsufficientHashIterationsSink extends Expr {
     exists(ClassOrStructDecl c, AbstractFunctionDecl f, CallExpr call |
       c.getFullName() = ["PBKDF1", "PBKDF2"] and
       c.getAMember() = f and
-      f.getName().matches("init(%iterations:%") and
+      f.getName().matches("init(%") and
       call.getStaticTarget() = f and
       call.getArgumentWithLabel("iterations").getExpr() = this
     )

From edb6325117e9b61725334d95c2cdc3a2a46bba90 Mon Sep 17 00:00:00 2001
From: Geoffrey White <40627776+geoffw0@users.noreply.github.com>
Date: Mon, 28 Nov 2022 16:11:07 +0000
Subject: [PATCH 0726/1420] Swift: Fix comment.

---
 swift/ql/src/queries/Security/CWE-135/StringLengthConflation.ql | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/swift/ql/src/queries/Security/CWE-135/StringLengthConflation.ql b/swift/ql/src/queries/Security/CWE-135/StringLengthConflation.ql
index 09d5319e11a..8f60c90b2c4 100644
--- a/swift/ql/src/queries/Security/CWE-135/StringLengthConflation.ql
+++ b/swift/ql/src/queries/Security/CWE-135/StringLengthConflation.ql
@@ -162,7 +162,7 @@ class StringLengthConflationConfiguration extends DataFlow::Configuration {
         call.getStaticTarget() = funcDecl and
         flowstate = "String"
       ) and
-      // match up `funcName`, `paramName`, `arg`, `node`.
+      // match up `funcName`, `arg`, `node`.
       funcDecl.getName() = funcName and
       call.getArgument(arg).getExpr() = node.asExpr()
     )

From 410609fed4832f431fdc24835e6c235bb1455648 Mon Sep 17 00:00:00 2001
From: Geoffrey White <40627776+geoffw0@users.noreply.github.com>
Date: Mon, 28 Nov 2022 15:44:23 +0000
Subject: [PATCH 0727/1420] Swift: Make ConstructorDecl, DestructorDecl into
 MethodDecls.

---
 swift/ql/lib/codeql/swift/elements/decl/ConstructorDecl.qll | 4 ++--
 swift/ql/lib/codeql/swift/elements/decl/DestructorDecl.qll  | 4 ++--
 2 files changed, 4 insertions(+), 4 deletions(-)

diff --git a/swift/ql/lib/codeql/swift/elements/decl/ConstructorDecl.qll b/swift/ql/lib/codeql/swift/elements/decl/ConstructorDecl.qll
index 5905cf11cf6..0a88ec16700 100644
--- a/swift/ql/lib/codeql/swift/elements/decl/ConstructorDecl.qll
+++ b/swift/ql/lib/codeql/swift/elements/decl/ConstructorDecl.qll
@@ -1,4 +1,4 @@
-// generated by codegen/codegen.py, remove this comment if you wish to edit this file
 private import codeql.swift.generated.decl.ConstructorDecl
+private import codeql.swift.elements.decl.MethodDecl
 
-class ConstructorDecl extends Generated::ConstructorDecl { }
+class ConstructorDecl extends Generated::ConstructorDecl, MethodDecl { }
diff --git a/swift/ql/lib/codeql/swift/elements/decl/DestructorDecl.qll b/swift/ql/lib/codeql/swift/elements/decl/DestructorDecl.qll
index fd331fb9be5..1dfa7c4c2e3 100644
--- a/swift/ql/lib/codeql/swift/elements/decl/DestructorDecl.qll
+++ b/swift/ql/lib/codeql/swift/elements/decl/DestructorDecl.qll
@@ -1,4 +1,4 @@
-// generated by codegen/codegen.py, remove this comment if you wish to edit this file
 private import codeql.swift.generated.decl.DestructorDecl
+private import codeql.swift.elements.decl.MethodDecl
 
-class DestructorDecl extends Generated::DestructorDecl { }
+class DestructorDecl extends Generated::DestructorDecl, MethodDecl { }

From e97aee5d9d85422e8501ccf1f626c3e8ac454412 Mon Sep 17 00:00:00 2001
From: Geoffrey White <40627776+geoffw0@users.noreply.github.com>
Date: Mon, 28 Nov 2022 16:20:20 +0000
Subject: [PATCH 0728/1420] Swift: QLDoc.

---
 swift/ql/lib/codeql/swift/elements/decl/ConstructorDecl.qll | 3 +++
 swift/ql/lib/codeql/swift/elements/decl/DestructorDecl.qll  | 3 +++
 2 files changed, 6 insertions(+)

diff --git a/swift/ql/lib/codeql/swift/elements/decl/ConstructorDecl.qll b/swift/ql/lib/codeql/swift/elements/decl/ConstructorDecl.qll
index 0a88ec16700..7933c7f93b2 100644
--- a/swift/ql/lib/codeql/swift/elements/decl/ConstructorDecl.qll
+++ b/swift/ql/lib/codeql/swift/elements/decl/ConstructorDecl.qll
@@ -1,4 +1,7 @@
 private import codeql.swift.generated.decl.ConstructorDecl
 private import codeql.swift.elements.decl.MethodDecl
 
+/**
+ * An initializer of a class, struct, enum or protocol.
+ */
 class ConstructorDecl extends Generated::ConstructorDecl, MethodDecl { }
diff --git a/swift/ql/lib/codeql/swift/elements/decl/DestructorDecl.qll b/swift/ql/lib/codeql/swift/elements/decl/DestructorDecl.qll
index 1dfa7c4c2e3..b9e1739f31a 100644
--- a/swift/ql/lib/codeql/swift/elements/decl/DestructorDecl.qll
+++ b/swift/ql/lib/codeql/swift/elements/decl/DestructorDecl.qll
@@ -1,4 +1,7 @@
 private import codeql.swift.generated.decl.DestructorDecl
 private import codeql.swift.elements.decl.MethodDecl
 
+/**
+ * A deinitializer of a class.
+ */
 class DestructorDecl extends Generated::DestructorDecl, MethodDecl { }

From 96e04e7f636ca9c6ecec38c9b81264effbff99c3 Mon Sep 17 00:00:00 2001
From: Geoffrey White <40627776+geoffw0@users.noreply.github.com>
Date: Mon, 28 Nov 2022 16:13:12 +0000
Subject: [PATCH 0729/1420] Swift: Use ConstructorDecl in place of name
 matching.

---
 .../queries/Security/CWE-1204/StaticInitializationVector.ql    | 3 +--
 swift/ql/src/queries/Security/CWE-259/ConstantPassword.ql      | 3 +--
 swift/ql/src/queries/Security/CWE-760/ConstantSalt.ql          | 3 +--
 .../src/queries/Security/CWE-916/InsufficientHashIterations.ql | 3 +--
 4 files changed, 4 insertions(+), 8 deletions(-)

diff --git a/swift/ql/src/queries/Security/CWE-1204/StaticInitializationVector.ql b/swift/ql/src/queries/Security/CWE-1204/StaticInitializationVector.ql
index 28dbb45d95c..ec595c53b6c 100644
--- a/swift/ql/src/queries/Security/CWE-1204/StaticInitializationVector.ql
+++ b/swift/ql/src/queries/Security/CWE-1204/StaticInitializationVector.ql
@@ -34,12 +34,11 @@ class EncryptionInitializationSink extends Expr {
     // `iv` arg in `init` is a sink
     exists(CallExpr call, string fName |
       call.getStaticTarget()
-          .(MethodDecl)
+          .(ConstructorDecl)
           .hasQualifiedName([
               "AES", "ChaCha20", "Blowfish", "Rabbit", "CBC", "CFB", "GCM", "OCB", "OFB", "PCBC",
               "CCM", "CTR"
             ], fName) and
-      fName.matches("%init(%") and
       call.getArgumentWithLabel("iv").getExpr() = this
     )
   }
diff --git a/swift/ql/src/queries/Security/CWE-259/ConstantPassword.ql b/swift/ql/src/queries/Security/CWE-259/ConstantPassword.ql
index 91982a2a2dd..5ba853575e4 100644
--- a/swift/ql/src/queries/Security/CWE-259/ConstantPassword.ql
+++ b/swift/ql/src/queries/Security/CWE-259/ConstantPassword.ql
@@ -32,10 +32,9 @@ class ConstantPasswordSource extends Expr {
 class ConstantPasswordSink extends Expr {
   ConstantPasswordSink() {
     // `password` arg in `init` is a sink
-    exists(ClassOrStructDecl c, AbstractFunctionDecl f, CallExpr call |
+    exists(ClassOrStructDecl c, ConstructorDecl f, CallExpr call |
       c.getFullName() = ["HKDF", "PBKDF1", "PBKDF2", "Scrypt"] and
       c.getAMember() = f and
-      f.getName().matches("%init(%") and
       call.getStaticTarget() = f and
       call.getArgumentWithLabel("password").getExpr() = this
     )
diff --git a/swift/ql/src/queries/Security/CWE-760/ConstantSalt.ql b/swift/ql/src/queries/Security/CWE-760/ConstantSalt.ql
index 47f84fd9bd7..f0085e94f65 100644
--- a/swift/ql/src/queries/Security/CWE-760/ConstantSalt.ql
+++ b/swift/ql/src/queries/Security/CWE-760/ConstantSalt.ql
@@ -32,10 +32,9 @@ class ConstantSaltSource extends Expr {
 class ConstantSaltSink extends Expr {
   ConstantSaltSink() {
     // `salt` arg in `init` is a sink
-    exists(ClassOrStructDecl c, AbstractFunctionDecl f, CallExpr call |
+    exists(ClassOrStructDecl c, ConstructorDecl f, CallExpr call |
       c.getFullName() = ["HKDF", "PBKDF1", "PBKDF2", "Scrypt"] and
       c.getAMember() = f and
-      f.getName().matches("%init(%") and
       call.getStaticTarget() = f and
       call.getArgumentWithLabel("salt").getExpr() = this
     )
diff --git a/swift/ql/src/queries/Security/CWE-916/InsufficientHashIterations.ql b/swift/ql/src/queries/Security/CWE-916/InsufficientHashIterations.ql
index 7349978189d..d8cb049ea50 100644
--- a/swift/ql/src/queries/Security/CWE-916/InsufficientHashIterations.ql
+++ b/swift/ql/src/queries/Security/CWE-916/InsufficientHashIterations.ql
@@ -33,10 +33,9 @@ class IntLiteralSource extends IterationsSource instanceof IntegerLiteralExpr {
 class InsufficientHashIterationsSink extends Expr {
   InsufficientHashIterationsSink() {
     // `iterations` arg in `init` is a sink
-    exists(ClassOrStructDecl c, AbstractFunctionDecl f, CallExpr call |
+    exists(ClassOrStructDecl c, ConstructorDecl f, CallExpr call |
       c.getFullName() = ["PBKDF1", "PBKDF2"] and
       c.getAMember() = f and
-      f.getName().matches("init(%") and
       call.getStaticTarget() = f and
       call.getArgumentWithLabel("iterations").getExpr() = this
     )

From 349a10c013623ad918d81a8bcb6b887d9f3ff5ef Mon Sep 17 00:00:00 2001
From: Geoffrey White <40627776+geoffw0@users.noreply.github.com>
Date: Mon, 28 Nov 2022 17:41:41 +0000
Subject: [PATCH 0730/1420] Swift: codegen.

---
 swift/ql/.generated.list | 2 --
 1 file changed, 2 deletions(-)

diff --git a/swift/ql/.generated.list b/swift/ql/.generated.list
index a62640aace8..f86852145f3 100644
--- a/swift/ql/.generated.list
+++ b/swift/ql/.generated.list
@@ -17,10 +17,8 @@ ql/lib/codeql/swift/elements/decl/ConcreteFuncDecl.qll 7dd23b6145977ec6ca60dd39c
 ql/lib/codeql/swift/elements/decl/ConcreteFuncDeclConstructor.qll 4eb2e9dc8b4c93e457bb594085d8f50862dc07a712ce7a0f2dee7f108467ce3e 1f994d6ae1ca2e4fd5da075b70ea22322181bdaf43034face1e82ef353fe34bf
 ql/lib/codeql/swift/elements/decl/ConcreteVarDecl.qll be33f40e8870a10aec413f35d8f62a502d7d5dd8a52665730740e880566206d7 d821efa43c6d83aedfb959500de42c5ecabbf856f8556f739bc6cec30a88dfab
 ql/lib/codeql/swift/elements/decl/ConcreteVarDeclConstructor.qll 4b6a9f458db5437f9351b14464b3809a78194029554ea818b3e18272c17afba3 a60d695b0d0ffa917ad01908bec2beaa663e644eddb00fb370fbc906623775d4
-ql/lib/codeql/swift/elements/decl/ConstructorDecl.qll df6725dfa6670b1ff9a5135126b38cb93d813f852ffd1290bb60b541e28b92d9 fb3ed454cdc97bedc5577c9823f6385eb9616d156085fc8796cc09732ae48121
 ql/lib/codeql/swift/elements/decl/ConstructorDeclConstructor.qll ba5cc6f440cba3d47b364a37febd64f85941cdc0237db52a2b8844d1dc75d483 9fc039ca7a0f33f03b3f573186f02efecbac0c2e0dc5abba5d47876ca26390fe
 ql/lib/codeql/swift/elements/decl/Decl.qll 7a7ea5727a238684e783adf04ce8f721bf4451e1324ffc966ad671d60a43d64b 662e53ffc8226ae351032d0389784e6b70d517794e83a4c698ac84996361608f
-ql/lib/codeql/swift/elements/decl/DestructorDecl.qll a2ba5e8861661ebc4cf875d540bf1edf0970920304aeeaef34592ea2739afc21 10001d21ec5aecc398e4c0e9bf05ee905c3edc4f89dd0afc7b2e5aca6b767dec
 ql/lib/codeql/swift/elements/decl/DestructorDeclConstructor.qll c33b113a3ccb0b1bfd9aad8b909940776da5fdb8a24e1b998c5ebde3903be981 155ad928fbebf9688eec30a2cf61d9a2d4cd15d1161dc3f6202e6331bdb3a56a
 ql/lib/codeql/swift/elements/decl/EnumCaseDeclConstructor.qll 8c907544170671f713a8665d294eeefdbe78a607c2f16e2c630ea9c33f484baf eec83efc930683628185dbdad8f73311aad510074d168a53d85ea09d13f1f7e1
 ql/lib/codeql/swift/elements/decl/EnumDecl.qll 04271e164379af3a33eb060d230b768878e06acc37c3d132cad089a2c663c6c4 779940ebdbd510eb651972c57eb84b04af39c44ef59a8c307a44549ab730febb

From 03ae2821c3e54fa4515e0dfd84937b40c956a8aa Mon Sep 17 00:00:00 2001
From: Geoffrey White <40627776+geoffw0@users.noreply.github.com>
Date: Mon, 28 Nov 2022 18:24:28 +0000
Subject: [PATCH 0731/1420] Update
 swift/ql/lib/codeql/swift/frameworks/Alamofire/Alamofire.qll

Co-authored-by: Mathias Vorreiter Pedersen <mathiasvp@github.com>
---
 swift/ql/lib/codeql/swift/frameworks/Alamofire/Alamofire.qll | 3 +--
 1 file changed, 1 insertion(+), 2 deletions(-)

diff --git a/swift/ql/lib/codeql/swift/frameworks/Alamofire/Alamofire.qll b/swift/ql/lib/codeql/swift/frameworks/Alamofire/Alamofire.qll
index 92a76b52240..5f6e25338ad 100644
--- a/swift/ql/lib/codeql/swift/frameworks/Alamofire/Alamofire.qll
+++ b/swift/ql/lib/codeql/swift/frameworks/Alamofire/Alamofire.qll
@@ -12,8 +12,7 @@ private import codeql.swift.dataflow.FlowSources
  */
 private class AlamofireResponseType extends NominalTypeDecl {
   AlamofireResponseType() {
-    this.getFullName() = ["DataResponse", "DownloadResponse"] or
-    this.getABaseTypeDecl() instanceof AlamofireResponseType
+    this.getABaseTypeDecl*().getFullName() = ["DataResponse", "DownloadResponse"]
   }
 
   /**

From cf7cd2b470988aceecb19516a3cdd3f63f618ac5 Mon Sep 17 00:00:00 2001
From: Geoffrey White <40627776+geoffw0@users.noreply.github.com>
Date: Mon, 28 Nov 2022 19:01:37 +0000
Subject: [PATCH 0732/1420] Swift: Convert to MaD.

---
 .../swift/frameworks/Alamofire/Alamofire.qll  | 38 ++++++-------------
 .../dataflow/flowsources/FlowSources.expected | 19 ----------
 2 files changed, 11 insertions(+), 46 deletions(-)

diff --git a/swift/ql/lib/codeql/swift/frameworks/Alamofire/Alamofire.qll b/swift/ql/lib/codeql/swift/frameworks/Alamofire/Alamofire.qll
index 5f6e25338ad..849fc5128e6 100644
--- a/swift/ql/lib/codeql/swift/frameworks/Alamofire/Alamofire.qll
+++ b/swift/ql/lib/codeql/swift/frameworks/Alamofire/Alamofire.qll
@@ -7,32 +7,16 @@ private import codeql.swift.dataflow.DataFlow
 private import codeql.swift.dataflow.ExternalFlow
 private import codeql.swift.dataflow.FlowSources
 
-/**
- * An Alamofire response handler type.
- */
-private class AlamofireResponseType extends NominalTypeDecl {
-  AlamofireResponseType() {
-    this.getABaseTypeDecl*().getFullName() = ["DataResponse", "DownloadResponse"]
-  }
-
-  /**
-   * Gets a field that contains remote data.
-   */
-  FieldDecl getADataField() {
-    result = this.getAMember() and
-    result.getName() = ["data", "value", "result"]
+private class StringSource extends SourceModelCsv {
+  override predicate row(string row) {
+    row =
+      [
+        // `DataResponse.data`, `.value`, `.result`
+        ";DataResponse;true;data;;;;remote", ";DataResponse;true;value;;;;remote",
+        ";DataResponse;true;result;;;;remote",
+        // `DownloadResponse.data`, `.value`, `.result`
+        ";DownloadResponse;true;data;;;;remote", ";DownloadResponse;true;value;;;;remote",
+        ";DownloadResponse;true;result;;;;remote",
+      ]
   }
 }
-
-/**
- * A remote flow source that is an access to remote data from an Alamofire response handler.
- */
-private class AlamofireResponseSource extends RemoteFlowSource {
-  AlamofireResponseSource() {
-    exists(AlamofireResponseType responseType |
-      this.asExpr().(MemberRefExpr).getMember() = responseType.getADataField()
-    )
-  }
-
-  override string getSourceType() { result = "Data from an Alamofire response" }
-}
diff --git a/swift/ql/test/library-tests/dataflow/flowsources/FlowSources.expected b/swift/ql/test/library-tests/dataflow/flowsources/FlowSources.expected
index 6fb99daf5f2..057b8418c77 100644
--- a/swift/ql/test/library-tests/dataflow/flowsources/FlowSources.expected
+++ b/swift/ql/test/library-tests/dataflow/flowsources/FlowSources.expected
@@ -1,25 +1,9 @@
-| alamofire.swift:91:27:91:27 | .result | Data from an Alamofire response |
-| alamofire.swift:99:27:99:27 | .result | Data from an Alamofire response |
-| alamofire.swift:342:23:342:32 | .data | Data from an Alamofire response |
-| alamofire.swift:349:22:349:31 | .value | Data from an Alamofire response |
-| alamofire.swift:356:23:356:32 | .value | Data from an Alamofire response |
-| alamofire.swift:363:22:363:31 | .value | Data from an Alamofire response |
-| alamofire.swift:370:23:370:32 | .value | Data from an Alamofire response |
-| alamofire.swift:377:28:377:37 | .value | Data from an Alamofire response |
 | alamofire.swift:387:28:387:28 | call to init(contentsOfFile:) | external |
 | alamofire.swift:387:28:387:55 | call to init(contentsOfFile:) | external |
-| alamofire.swift:394:22:394:31 | .value | Data from an Alamofire response |
-| alamofire.swift:401:22:401:31 | .value | Data from an Alamofire response |
 | alamofire.swift:402:28:402:28 | call to init(contentsOf:) | external |
 | alamofire.swift:402:28:402:50 | call to init(contentsOf:) | external |
-| alamofire.swift:409:23:409:32 | .value | Data from an Alamofire response |
-| alamofire.swift:416:22:416:31 | .value | Data from an Alamofire response |
-| alamofire.swift:423:23:423:32 | .value | Data from an Alamofire response |
-| alamofire.swift:429:28:429:37 | .value | Data from an Alamofire response |
 | alamofire.swift:446:20:446:20 | call to init(contentsOfFile:) | external |
 | alamofire.swift:446:20:446:49 | call to init(contentsOfFile:) | external |
-| alamofire.swift:453:23:453:32 | .data | Data from an Alamofire response |
-| alamofire.swift:459:23:459:32 | .data | Data from an Alamofire response |
 | customurlschemes.swift:30:44:30:54 | url | external |
 | customurlschemes.swift:34:52:34:68 | url | external |
 | customurlschemes.swift:38:52:38:62 | url | external |
@@ -27,9 +11,6 @@
 | customurlschemes.swift:48:9:48:28 | ...[...] | Remote URL in UIApplicationDelegate.application.launchOptions |
 | data.swift:18:20:18:20 | call to init(contentsOf:options:) | external |
 | data.swift:18:20:18:54 | call to init(contentsOf:options:) | external |
-| file://:0:0:0:0 | .data | Data from an Alamofire response |
-| file://:0:0:0:0 | .result | Data from an Alamofire response |
-| file://:0:0:0:0 | .result | Data from an Alamofire response |
 | nsdata.swift:18:17:18:17 | call to init(contentsOf:) | external |
 | nsdata.swift:18:17:18:40 | call to init(contentsOf:) | external |
 | nsdata.swift:19:17:19:17 | call to init(contentsOf:options:) | external |

From 963407de4c20cf613db65183bc935f28145d7c89 Mon Sep 17 00:00:00 2001
From: tiferet <tiferet@github.com>
Date: Mon, 28 Nov 2022 11:16:06 -0800
Subject: [PATCH 0733/1420] Update the documentation

---
 .../adaptivethreatmodeling/ATMConfig.qll          | 15 +++++++++++----
 1 file changed, 11 insertions(+), 4 deletions(-)

diff --git a/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/ATMConfig.qll b/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/ATMConfig.qll
index 8eceff9e362..814037837c1 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/ATMConfig.qll
+++ b/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/ATMConfig.qll
@@ -73,16 +73,23 @@ abstract class AtmConfig extends string {
     not exists(this.getAReasonSinkExcluded(candidateSink))
   }
 
+  /**
+   * Gets the list of characteristics that cause `candidateSink` to be excluded as an effective sink.
+   */
   final EndpointCharacteristics::EndpointCharacteristic getAReasonSinkExcluded(
     JS::DataFlow::Node candidateSink
   ) {
-    // An endpoint is an effective sink if it has neither standard endpoint filter characteristics nor endpoint filter
-    // characteristics that are specific to this sink type.
-    // TODO: Experiment with excluding all endpoints that have a medium- or high-confidence characteristic that implies
-    // they're not sinks for this sink type (or not sinks for any sink type), not just the EndpointFilterCharacteristics.
+    // An endpoint is an effective sink (sink candidate) if none of its characteristics give much indication whether or
+    // not it is a sink. Historically, we used endpoint filters, and scored endpoints that are filtered out neither by
+    // a standard endpoint filter nor by an endpoint filter specific to this sink type. To replicate this behaviour, we
+    // have given the endpoint filter characteristics medium confidence, and we exclude endpoints that have a
+    // medium-confidence characteristic that indicates that they are not sinks, either in general or for this sink type.
     exists(EndpointCharacteristics::EndpointCharacteristic filter, float confidence |
       filter.getEndpoints(candidateSink) and
       confidence >= filter.mediumConfidence() and
+      // TODO: Experiment with excluding all endpoints that have a medium- or high-confidence characteristic that
+      // implies they're not sinks, rather than using only medium-confidence characteristics, by deleting the following
+      // line.
       confidence < filter.highConfidence() and
       (
         // Exclude endpoints that have a characteristic that implies they're not sinks for _any_ sink type.

From 7b0269c9991962e3b6ab466d62ecd08a84923c56 Mon Sep 17 00:00:00 2001
From: tiferet <tiferet@github.com>
Date: Mon, 28 Nov 2022 11:28:08 -0800
Subject: [PATCH 0734/1420] Fix British spelling that code scanning didn't
 like.

I've been working with Brits for too long :)
---
 .../lib/experimental/adaptivethreatmodeling/ATMConfig.qll       | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/ATMConfig.qll b/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/ATMConfig.qll
index 814037837c1..1417c87991b 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/ATMConfig.qll
+++ b/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/ATMConfig.qll
@@ -81,7 +81,7 @@ abstract class AtmConfig extends string {
   ) {
     // An endpoint is an effective sink (sink candidate) if none of its characteristics give much indication whether or
     // not it is a sink. Historically, we used endpoint filters, and scored endpoints that are filtered out neither by
-    // a standard endpoint filter nor by an endpoint filter specific to this sink type. To replicate this behaviour, we
+    // a standard endpoint filter nor by an endpoint filter specific to this sink type. To replicate this behavior, we
     // have given the endpoint filter characteristics medium confidence, and we exclude endpoints that have a
     // medium-confidence characteristic that indicates that they are not sinks, either in general or for this sink type.
     exists(EndpointCharacteristics::EndpointCharacteristic filter, float confidence |

From 99de397a5fa95ad80e1a881a10c7a119da169e70 Mon Sep 17 00:00:00 2001
From: tiferet <tiferet@github.com>
Date: Thu, 17 Nov 2022 11:15:57 -0800
Subject: [PATCH 0735/1420] Remove redundant code

`isOtherModeledArgument` and `isArgumentToBuiltinFunction` contained the old logic for selecting negative endpoints for training.

These can now be deleted, and replaced by a single base class that collects all EndpointCharacteristics that are currently used to indicate negative training samples: `OtherModeledArgumentCharacteristic`.

This in turn lets us delete code from `StandardEndpointFilters` that effectively said that endpoints that are high-confidence non-sinks shouldn't be scored at inference time, either.
---
 .../adaptivethreatmodeling/CoreKnowledge.qll  | 114 ------------------
 .../EndpointCharacteristics.qll               |  80 ++++++++----
 .../StandardEndpointFilters.qll               |  24 +---
 .../endpoint_large_scale/EndpointFeatures.ql  |   5 +-
 4 files changed, 59 insertions(+), 164 deletions(-)

diff --git a/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/CoreKnowledge.qll b/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/CoreKnowledge.qll
index e569fb3dc96..55dca5ba6a8 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/CoreKnowledge.qll
+++ b/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/CoreKnowledge.qll
@@ -44,7 +44,6 @@ private import semmle.javascript.security.dataflow.HttpToFileAccessCustomization
 private import semmle.javascript.security.dataflow.BrokenCryptoAlgorithmCustomizations
 private import semmle.javascript.security.dataflow.LoopBoundInjectionCustomizations
 private import semmle.javascript.security.dataflow.CleartextStorageCustomizations
-import FilteringReasons
 
 /**
  * Holds if the node `n` is a known sink in a modeled library, or a sibling-argument of such a sink.
@@ -110,116 +109,3 @@ predicate isKnownStepSrc(DataFlow::Node n) {
   DataFlow::SharedFlowStep::step(n, _) or
   DataFlow::SharedFlowStep::step(n, _, _, _)
 }
-
-/**
- * Holds if `n` is an argument to a function of a builtin object.
- */
-private predicate isArgumentToBuiltinFunction(DataFlow::Node n, FilteringReason reason) {
-  exists(DataFlow::SourceNode builtin, DataFlow::SourceNode receiver, DataFlow::InvokeNode invk |
-    (
-      builtin instanceof DataFlow::ArrayCreationNode and
-      reason instanceof ArgumentToArrayReason
-      or
-      builtin =
-        DataFlow::globalVarRef([
-            "Map", "Set", "WeakMap", "WeakSet", "Number", "Object", "String", "Array", "Error",
-            "Math", "Boolean"
-          ]) and
-      reason instanceof ArgumentToBuiltinGlobalVarRefReason
-    )
-  |
-    receiver = [builtin.getAnInvocation(), builtin] and
-    invk = [receiver, receiver.getAPropertyRead()].getAnInvocation() and
-    invk.getAnArgument() = n
-  )
-  or
-  exists(Expr primitive, MethodCallExpr c |
-    primitive instanceof ConstantString or
-    primitive instanceof NumberLiteral or
-    primitive instanceof BooleanLiteral
-  |
-    c.calls(primitive, _) and
-    c.getAnArgument() = n.asExpr() and
-    reason instanceof ConstantReceiverReason
-  )
-  or
-  exists(DataFlow::CallNode call |
-    call.getAnArgument() = n and
-    call.getCalleeName() =
-      [
-        "indexOf", "hasOwnProperty", "substring", "isDecimal", "decode", "encode", "keys", "shift",
-        "values", "forEach", "toString", "slice", "splice", "push", "isArray", "sort"
-      ] and
-    reason instanceof BuiltinCallNameReason
-  )
-}
-
-predicate isOtherModeledArgument(DataFlow::Node n, FilteringReason reason) {
-  isArgumentToBuiltinFunction(n, reason)
-  or
-  any(LodashUnderscore::Member m).getACall().getAnArgument() = n and
-  reason instanceof LodashUnderscoreArgumentReason
-  or
-  any(JQuery::MethodCall m).getAnArgument() = n and
-  reason instanceof JQueryArgumentReason
-  or
-  exists(ClientRequest r |
-    r.getAnArgument() = n or n = r.getUrl() or n = r.getHost() or n = r.getADataNode()
-  ) and
-  reason instanceof ClientRequestReason
-  or
-  exists(PromiseDefinition p |
-    n = [p.getResolveParameter(), p.getRejectParameter()].getACall().getAnArgument()
-  ) and
-  reason instanceof PromiseDefinitionReason
-  or
-  n instanceof CryptographicKey and reason instanceof CryptographicKeyReason
-  or
-  any(CryptographicOperation op).getInput() = n and
-  reason instanceof CryptographicOperationFlowReason
-  or
-  exists(DataFlow::CallNode call | n = call.getAnArgument() |
-    call.getCalleeName() = getAStandardLoggerMethodName() and
-    reason instanceof LoggerMethodReason
-    or
-    call.getCalleeName() = ["setTimeout", "clearTimeout"] and
-    reason instanceof TimeoutReason
-    or
-    call.getReceiver() = DataFlow::globalVarRef(["localStorage", "sessionStorage"]) and
-    reason instanceof ReceiverStorageReason
-    or
-    call instanceof StringOps::StartsWith and reason instanceof StringStartsWithReason
-    or
-    call instanceof StringOps::EndsWith and reason instanceof StringEndsWithReason
-    or
-    call instanceof StringOps::RegExpTest and reason instanceof StringRegExpTestReason
-    or
-    call instanceof EventRegistration and reason instanceof EventRegistrationReason
-    or
-    call instanceof EventDispatch and reason instanceof EventDispatchReason
-    or
-    call = any(MembershipCandidate c).getTest() and
-    reason instanceof MembershipCandidateTestReason
-    or
-    call instanceof FileSystemAccess and reason instanceof FileSystemAccessReason
-    or
-    // TODO database accesses are less well defined than database query sinks, so this may cover unmodeled sinks on existing database models
-    [
-      call, call.getAMethodCall()
-    /* command pattern where the query is built, and then exec'ed later */ ] instanceof
-      DatabaseAccess and
-    reason instanceof DatabaseAccessReason
-    or
-    call = DOM::domValueRef() and reason instanceof DomReason
-    or
-    call.getCalleeName() = "next" and
-    exists(DataFlow::FunctionNode f | call = f.getLastParameter().getACall()) and
-    reason instanceof NextFunctionCallReason
-    or
-    call = DataFlow::globalVarRef("dojo").getAPropertyRead("require").getACall() and
-    reason instanceof DojoRequireReason
-  )
-  or
-  (exists(Base64::Decode d | n = d.getInput()) or exists(Base64::Encode d | n = d.getInput())) and
-  reason instanceof Base64ManipulationReason
-}
diff --git a/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/EndpointCharacteristics.qll b/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/EndpointCharacteristics.qll
index 7bd615df139..d86577d68b9 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/EndpointCharacteristics.qll
+++ b/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/EndpointCharacteristics.qll
@@ -143,11 +143,19 @@ private class NosqlInjectionSinkCharacteristic extends EndpointCharacteristic {
  * negative samples for training.
  */
 
+/**
+ * A characteristic that is an indicator of not being a sink of any type, because it's a modeled argument.
+ */
+abstract class OtherModeledArgumentCharacteristic extends EndpointCharacteristic {
+  bindingset[this]
+  OtherModeledArgumentCharacteristic() { any() }
+}
+
 /**
  * A characteristic that is an indicator of not being a sink of any type, because it's an argument to a function of a
  * builtin object.
  */
-abstract private class ArgumentToBuiltinFunctionCharacteristic extends EndpointCharacteristic {
+abstract private class ArgumentToBuiltinFunctionCharacteristic extends OtherModeledArgumentCharacteristic {
   bindingset[this]
   ArgumentToBuiltinFunctionCharacteristic() { any() }
 }
@@ -187,15 +195,17 @@ abstract class LikelyNotASinkCharacteristic extends EndpointCharacteristic {
   }
 }
 
-private class LodashUnderscore extends NotASinkCharacteristic {
-  LodashUnderscore() { this = "LodashUnderscoreArgument" }
+private class LodashUnderscoreCharacteristic extends NotASinkCharacteristic,
+  OtherModeledArgumentCharacteristic {
+  LodashUnderscoreCharacteristic() { this = "LodashUnderscoreArgument" }
 
   override predicate getEndpoints(DataFlow::Node n) {
     any(LodashUnderscore::Member m).getACall().getAnArgument() = n
   }
 }
 
-private class JQueryArgumentCharacteristic extends NotASinkCharacteristic {
+private class JQueryArgumentCharacteristic extends NotASinkCharacteristic,
+  OtherModeledArgumentCharacteristic {
   JQueryArgumentCharacteristic() { this = "JQueryArgument" }
 
   override predicate getEndpoints(DataFlow::Node n) {
@@ -203,7 +213,8 @@ private class JQueryArgumentCharacteristic extends NotASinkCharacteristic {
   }
 }
 
-private class ClientRequestCharacteristic extends NotASinkCharacteristic {
+private class ClientRequestCharacteristic extends NotASinkCharacteristic,
+  OtherModeledArgumentCharacteristic {
   ClientRequestCharacteristic() { this = "ClientRequest" }
 
   override predicate getEndpoints(DataFlow::Node n) {
@@ -213,7 +224,8 @@ private class ClientRequestCharacteristic extends NotASinkCharacteristic {
   }
 }
 
-private class PromiseDefinitionCharacteristic extends NotASinkCharacteristic {
+private class PromiseDefinitionCharacteristic extends NotASinkCharacteristic,
+  OtherModeledArgumentCharacteristic {
   PromiseDefinitionCharacteristic() { this = "PromiseDefinition" }
 
   override predicate getEndpoints(DataFlow::Node n) {
@@ -223,13 +235,15 @@ private class PromiseDefinitionCharacteristic extends NotASinkCharacteristic {
   }
 }
 
-private class CryptographicKeyCharacteristic extends NotASinkCharacteristic {
+private class CryptographicKeyCharacteristic extends NotASinkCharacteristic,
+  OtherModeledArgumentCharacteristic {
   CryptographicKeyCharacteristic() { this = "CryptographicKey" }
 
   override predicate getEndpoints(DataFlow::Node n) { n instanceof CryptographicKey }
 }
 
-private class CryptographicOperationFlowCharacteristic extends NotASinkCharacteristic {
+private class CryptographicOperationFlowCharacteristic extends NotASinkCharacteristic,
+  OtherModeledArgumentCharacteristic {
   CryptographicOperationFlowCharacteristic() { this = "CryptographicOperationFlow" }
 
   override predicate getEndpoints(DataFlow::Node n) {
@@ -237,7 +251,8 @@ private class CryptographicOperationFlowCharacteristic extends NotASinkCharacter
   }
 }
 
-private class LoggerMethodCharacteristic extends NotASinkCharacteristic {
+private class LoggerMethodCharacteristic extends NotASinkCharacteristic,
+  OtherModeledArgumentCharacteristic {
   LoggerMethodCharacteristic() { this = "LoggerMethod" }
 
   override predicate getEndpoints(DataFlow::Node n) {
@@ -247,7 +262,8 @@ private class LoggerMethodCharacteristic extends NotASinkCharacteristic {
   }
 }
 
-private class TimeoutCharacteristic extends NotASinkCharacteristic {
+private class TimeoutCharacteristic extends NotASinkCharacteristic,
+  OtherModeledArgumentCharacteristic {
   TimeoutCharacteristic() { this = "Timeout" }
 
   override predicate getEndpoints(DataFlow::Node n) {
@@ -257,7 +273,8 @@ private class TimeoutCharacteristic extends NotASinkCharacteristic {
   }
 }
 
-private class ReceiverStorageCharacteristic extends NotASinkCharacteristic {
+private class ReceiverStorageCharacteristic extends NotASinkCharacteristic,
+  OtherModeledArgumentCharacteristic {
   ReceiverStorageCharacteristic() { this = "ReceiverStorage" }
 
   override predicate getEndpoints(DataFlow::Node n) {
@@ -267,7 +284,8 @@ private class ReceiverStorageCharacteristic extends NotASinkCharacteristic {
   }
 }
 
-private class StringStartsWithCharacteristic extends NotASinkCharacteristic {
+private class StringStartsWithCharacteristic extends NotASinkCharacteristic,
+  OtherModeledArgumentCharacteristic {
   StringStartsWithCharacteristic() { this = "StringStartsWith" }
 
   override predicate getEndpoints(DataFlow::Node n) {
@@ -277,7 +295,8 @@ private class StringStartsWithCharacteristic extends NotASinkCharacteristic {
   }
 }
 
-private class StringEndsWithCharacteristic extends NotASinkCharacteristic {
+private class StringEndsWithCharacteristic extends NotASinkCharacteristic,
+  OtherModeledArgumentCharacteristic {
   StringEndsWithCharacteristic() { this = "StringEndsWith" }
 
   override predicate getEndpoints(DataFlow::Node n) {
@@ -285,7 +304,8 @@ private class StringEndsWithCharacteristic extends NotASinkCharacteristic {
   }
 }
 
-private class StringRegExpTestCharacteristic extends NotASinkCharacteristic {
+private class StringRegExpTestCharacteristic extends NotASinkCharacteristic,
+  OtherModeledArgumentCharacteristic {
   StringRegExpTestCharacteristic() { this = "StringRegExpTest" }
 
   override predicate getEndpoints(DataFlow::Node n) {
@@ -295,7 +315,8 @@ private class StringRegExpTestCharacteristic extends NotASinkCharacteristic {
   }
 }
 
-private class EventRegistrationCharacteristic extends NotASinkCharacteristic {
+private class EventRegistrationCharacteristic extends NotASinkCharacteristic,
+  OtherModeledArgumentCharacteristic {
   EventRegistrationCharacteristic() { this = "EventRegistration" }
 
   override predicate getEndpoints(DataFlow::Node n) {
@@ -303,7 +324,8 @@ private class EventRegistrationCharacteristic extends NotASinkCharacteristic {
   }
 }
 
-private class EventDispatchCharacteristic extends NotASinkCharacteristic {
+private class EventDispatchCharacteristic extends NotASinkCharacteristic,
+  OtherModeledArgumentCharacteristic {
   EventDispatchCharacteristic() { this = "EventDispatch" }
 
   override predicate getEndpoints(DataFlow::Node n) {
@@ -311,7 +333,8 @@ private class EventDispatchCharacteristic extends NotASinkCharacteristic {
   }
 }
 
-private class MembershipCandidateTestCharacteristic extends NotASinkCharacteristic {
+private class MembershipCandidateTestCharacteristic extends NotASinkCharacteristic,
+  OtherModeledArgumentCharacteristic {
   MembershipCandidateTestCharacteristic() { this = "MembershipCandidateTest" }
 
   override predicate getEndpoints(DataFlow::Node n) {
@@ -321,7 +344,8 @@ private class MembershipCandidateTestCharacteristic extends NotASinkCharacterist
   }
 }
 
-private class FileSystemAccessCharacteristic extends NotASinkCharacteristic {
+private class FileSystemAccessCharacteristic extends NotASinkCharacteristic,
+  OtherModeledArgumentCharacteristic {
   FileSystemAccessCharacteristic() { this = "FileSystemAccess" }
 
   override predicate getEndpoints(DataFlow::Node n) {
@@ -329,7 +353,8 @@ private class FileSystemAccessCharacteristic extends NotASinkCharacteristic {
   }
 }
 
-private class DatabaseAccessCharacteristic extends NotASinkCharacteristic {
+private class DatabaseAccessCharacteristic extends NotASinkCharacteristic,
+  OtherModeledArgumentCharacteristic {
   DatabaseAccessCharacteristic() { this = "DatabaseAccess" }
 
   override predicate getEndpoints(DataFlow::Node n) {
@@ -344,7 +369,7 @@ private class DatabaseAccessCharacteristic extends NotASinkCharacteristic {
   }
 }
 
-private class DomCharacteristic extends NotASinkCharacteristic {
+private class DomCharacteristic extends NotASinkCharacteristic, OtherModeledArgumentCharacteristic {
   DomCharacteristic() { this = "DOM" }
 
   override predicate getEndpoints(DataFlow::Node n) {
@@ -352,7 +377,8 @@ private class DomCharacteristic extends NotASinkCharacteristic {
   }
 }
 
-private class NextFunctionCallCharacteristic extends NotASinkCharacteristic {
+private class NextFunctionCallCharacteristic extends NotASinkCharacteristic,
+  OtherModeledArgumentCharacteristic {
   NextFunctionCallCharacteristic() { this = "NextFunctionCall" }
 
   override predicate getEndpoints(DataFlow::Node n) {
@@ -363,7 +389,8 @@ private class NextFunctionCallCharacteristic extends NotASinkCharacteristic {
   }
 }
 
-private class DojoRequireCharacteristic extends NotASinkCharacteristic {
+private class DojoRequireCharacteristic extends NotASinkCharacteristic,
+  OtherModeledArgumentCharacteristic {
   DojoRequireCharacteristic() { this = "DojoRequire" }
 
   override predicate getEndpoints(DataFlow::Node n) {
@@ -373,7 +400,8 @@ private class DojoRequireCharacteristic extends NotASinkCharacteristic {
   }
 }
 
-private class Base64ManipulationCharacteristic extends NotASinkCharacteristic {
+private class Base64ManipulationCharacteristic extends NotASinkCharacteristic,
+  OtherModeledArgumentCharacteristic {
   Base64ManipulationCharacteristic() { this = "Base64Manipulation" }
 
   override predicate getEndpoints(DataFlow::Node n) {
@@ -475,7 +503,7 @@ abstract private class StandardEndpointFilterCharacteristic extends EndpointFilt
   }
 }
 
-private class IsArgumentToModeledFunctionCharacteristic extends StandardEndpointFilterCharacteristic {
+class IsArgumentToModeledFunctionCharacteristic extends StandardEndpointFilterCharacteristic {
   IsArgumentToModeledFunctionCharacteristic() { this = "argument to modeled function" }
 
   override predicate getEndpoints(DataFlow::Node n) {
@@ -487,7 +515,9 @@ private class IsArgumentToModeledFunctionCharacteristic extends StandardEndpoint
         or
         CoreKnowledge::isKnownStepSrc(known)
         or
-        CoreKnowledge::isOtherModeledArgument(known, _)
+        exists(OtherModeledArgumentCharacteristic characteristic |
+          characteristic.getEndpoints(known)
+        )
       )
     )
   }
diff --git a/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/StandardEndpointFilters.qll b/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/StandardEndpointFilters.qll
index 11041937a3a..b553376e017 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/StandardEndpointFilters.qll
+++ b/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/StandardEndpointFilters.qll
@@ -7,28 +7,6 @@
  */
 
 private import javascript
-private import semmle.javascript.filters.ClassifyFiles as ClassifyFiles
-private import semmle.javascript.heuristics.SyntacticHeuristics
-private import CoreKnowledge as CoreKnowledge
-import EndpointCharacteristics as EndpointCharacteristics
-
-/**
- * Holds if the node `n` is an argument to a function that has a manual model.
- */
-predicate isArgumentToModeledFunction(DataFlow::Node n) {
-  exists(DataFlow::InvokeNode invk, DataFlow::Node known |
-    invk.getAnArgument() = n and invk.getAnArgument() = known and isSomeModeledArgument(known)
-  )
-}
-
-/**
- * Holds if the node `n` is an argument that has a manual model.
- */
-predicate isSomeModeledArgument(DataFlow::Node n) {
-  CoreKnowledge::isKnownLibrarySink(n) or
-  CoreKnowledge::isKnownStepSrc(n) or
-  CoreKnowledge::isOtherModeledArgument(n, _)
-}
 
 /**
  * Holds if the data flow node is a (possibly indirect) argument of a likely external library call.
@@ -69,7 +47,7 @@ private DataFlow::SourceNode getACallback(DataFlow::ParameterNode p, DataFlow::T
  * Get calls for which we do not have the callee (i.e. the definition of the called function). This
  * acts as a heuristic for identifying calls to external library functions.
  */
-DataFlow::CallNode getACallWithoutCallee() {
+private DataFlow::CallNode getACallWithoutCallee() {
   forall(Function callee | callee = result.getACallee() | callee.getTopLevel().isExterns()) and
   not exists(DataFlow::ParameterNode param, DataFlow::FunctionNode callback |
     param.flowsTo(result.getCalleeNode()) and
diff --git a/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/EndpointFeatures.ql b/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/EndpointFeatures.ql
index 6c1d88443d0..9439fda8ab2 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/EndpointFeatures.ql
+++ b/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/EndpointFeatures.ql
@@ -12,8 +12,8 @@ import experimental.adaptivethreatmodeling.SqlInjectionATM as SqlInjectionAtm
 import experimental.adaptivethreatmodeling.TaintedPathATM as TaintedPathAtm
 import experimental.adaptivethreatmodeling.XssATM as XssAtm
 import experimental.adaptivethreatmodeling.EndpointFeatures as EndpointFeatures
-import experimental.adaptivethreatmodeling.StandardEndpointFilters as StandardEndpointFilters
 import extraction.NoFeaturizationRestrictionsConfig
+private import experimental.adaptivethreatmodeling.EndpointCharacteristics as EndpointCharacteristics
 
 query predicate tokenFeatures(DataFlow::Node endpoint, string featureName, string featureValue) {
   (
@@ -21,7 +21,8 @@ query predicate tokenFeatures(DataFlow::Node endpoint, string featureName, strin
     not exists(any(SqlInjectionAtm::SqlInjectionAtmConfig cfg).getAReasonSinkExcluded(endpoint)) or
     not exists(any(TaintedPathAtm::TaintedPathAtmConfig cfg).getAReasonSinkExcluded(endpoint)) or
     not exists(any(XssAtm::DomBasedXssAtmConfig cfg).getAReasonSinkExcluded(endpoint)) or
-    StandardEndpointFilters::isArgumentToModeledFunction(endpoint)
+    any(EndpointCharacteristics::IsArgumentToModeledFunctionCharacteristic characteristic)
+        .getEndpoints(endpoint)
   ) and
   EndpointFeatures::tokenFeatures(endpoint, featureName, featureValue)
 }

From 1c679378e7a29bd15f55cc19c7218f3f2f991083 Mon Sep 17 00:00:00 2001
From: tiferet <tiferet@github.com>
Date: Thu, 17 Nov 2022 11:39:00 -0800
Subject: [PATCH 0736/1420] `FilteringReason` is no longer being used and can
 be deleted

---
 .../FilteringReasons.qll                      | 220 ------------------
 1 file changed, 220 deletions(-)
 delete mode 100644 javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/FilteringReasons.qll

diff --git a/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/FilteringReasons.qll b/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/FilteringReasons.qll
deleted file mode 100644
index 4b0cdb986e8..00000000000
--- a/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/FilteringReasons.qll
+++ /dev/null
@@ -1,220 +0,0 @@
-/**
- * For internal use only.
- *
- * Defines a set of reasons why a particular endpoint was filtered out. This set of reasons
- * contains both reasons why an endpoint could be `NotASink` and reasons why an endpoint could be
- * `LikelyNotASink`. The `NotASinkReason`s defined here are exhaustive, but the
- * `LikelyNotASinkReason`s are not exhaustive.
- */
-newtype TFilteringReason =
-  TIsArgumentToBuiltinFunctionReason() or
-  TLodashUnderscoreArgumentReason() or
-  TClientRequestReason() or
-  TPromiseDefinitionReason() or
-  TCryptographicKeyReason() or
-  TCryptographicOperationFlowReason() or
-  TLoggerMethodReason() or
-  TTimeoutReason() or
-  TReceiverStorageReason() or
-  TStringStartsWithReason() or
-  TStringEndsWithReason() or
-  TStringRegExpTestReason() or
-  TEventRegistrationReason() or
-  TEventDispatchReason() or
-  TMembershipCandidateTestReason() or
-  TFileSystemAccessReason() or
-  TDatabaseAccessReason() or
-  TDomReason() or
-  TNextFunctionCallReason() or
-  TArgumentToArrayReason() or
-  TArgumentToBuiltinGlobalVarRefReason() or
-  TConstantReceiverReason() or
-  TBuiltinCallNameReason() or
-  TBase64ManipulationReason() or
-  TJQueryArgumentReason() or
-  TDojoRequireReason()
-
-/** A reason why a particular endpoint was filtered out by the endpoint filters. */
-abstract class FilteringReason extends TFilteringReason {
-  abstract string getDescription();
-
-  abstract int getEncoding();
-
-  string toString() { result = getDescription() }
-}
-
-/**
- * A reason why a particular endpoint might be considered to be `NotASink`.
- *
- * An endpoint is `NotASink` if it has at least one `NotASinkReason`, it does not have any
- * `LikelyNotASinkReason`s, and it is not a known sink.
- */
-abstract class NotASinkReason extends FilteringReason { }
-
-/**
- * A reason why a particular endpoint might be considered to be `LikelyNotASink`.
- *
- * An endpoint is `LikelyNotASink` if it has at least one `LikelyNotASinkReason` and it is not a
- * known sink.
- */
-abstract class LikelyNotASinkReason extends FilteringReason { }
-
-class IsArgumentToBuiltinFunctionReason extends NotASinkReason, TIsArgumentToBuiltinFunctionReason {
-  override string getDescription() { result = "IsArgumentToBuiltinFunction" }
-
-  override int getEncoding() { result = 5 }
-}
-
-class LodashUnderscoreArgumentReason extends NotASinkReason, TLodashUnderscoreArgumentReason {
-  override string getDescription() { result = "LodashUnderscoreArgument" }
-
-  override int getEncoding() { result = 6 }
-}
-
-class ClientRequestReason extends NotASinkReason, TClientRequestReason {
-  override string getDescription() { result = "ClientRequest" }
-
-  override int getEncoding() { result = 7 }
-}
-
-class PromiseDefinitionReason extends NotASinkReason, TPromiseDefinitionReason {
-  override string getDescription() { result = "PromiseDefinition" }
-
-  override int getEncoding() { result = 8 }
-}
-
-class CryptographicKeyReason extends NotASinkReason, TCryptographicKeyReason {
-  override string getDescription() { result = "CryptographicKey" }
-
-  override int getEncoding() { result = 9 }
-}
-
-class CryptographicOperationFlowReason extends NotASinkReason, TCryptographicOperationFlowReason {
-  override string getDescription() { result = "CryptographicOperationFlow" }
-
-  override int getEncoding() { result = 10 }
-}
-
-class LoggerMethodReason extends NotASinkReason, TLoggerMethodReason {
-  override string getDescription() { result = "LoggerMethod" }
-
-  override int getEncoding() { result = 11 }
-}
-
-class TimeoutReason extends NotASinkReason, TTimeoutReason {
-  override string getDescription() { result = "Timeout" }
-
-  override int getEncoding() { result = 12 }
-}
-
-class ReceiverStorageReason extends NotASinkReason, TReceiverStorageReason {
-  override string getDescription() { result = "ReceiverStorage" }
-
-  override int getEncoding() { result = 13 }
-}
-
-class StringStartsWithReason extends NotASinkReason, TStringStartsWithReason {
-  override string getDescription() { result = "StringStartsWith" }
-
-  override int getEncoding() { result = 14 }
-}
-
-class StringEndsWithReason extends NotASinkReason, TStringEndsWithReason {
-  override string getDescription() { result = "StringEndsWith" }
-
-  override int getEncoding() { result = 15 }
-}
-
-class StringRegExpTestReason extends NotASinkReason, TStringRegExpTestReason {
-  override string getDescription() { result = "StringRegExpTest" }
-
-  override int getEncoding() { result = 16 }
-}
-
-class EventRegistrationReason extends NotASinkReason, TEventRegistrationReason {
-  override string getDescription() { result = "EventRegistration" }
-
-  override int getEncoding() { result = 17 }
-}
-
-class EventDispatchReason extends NotASinkReason, TEventDispatchReason {
-  override string getDescription() { result = "EventDispatch" }
-
-  override int getEncoding() { result = 18 }
-}
-
-class MembershipCandidateTestReason extends NotASinkReason, TMembershipCandidateTestReason {
-  override string getDescription() { result = "MembershipCandidateTest" }
-
-  override int getEncoding() { result = 19 }
-}
-
-class FileSystemAccessReason extends NotASinkReason, TFileSystemAccessReason {
-  override string getDescription() { result = "FileSystemAccess" }
-
-  override int getEncoding() { result = 20 }
-}
-
-class DatabaseAccessReason extends NotASinkReason, TDatabaseAccessReason {
-  override string getDescription() { result = "DatabaseAccess" }
-
-  override int getEncoding() { result = 21 }
-}
-
-class DomReason extends NotASinkReason, TDomReason {
-  override string getDescription() { result = "DOM" }
-
-  override int getEncoding() { result = 22 }
-}
-
-/** DEPRECATED: Alias for DomReason */
-deprecated class DOMReason = DomReason;
-
-class NextFunctionCallReason extends NotASinkReason, TNextFunctionCallReason {
-  override string getDescription() { result = "NextFunctionCall" }
-
-  override int getEncoding() { result = 23 }
-}
-
-class ArgumentToArrayReason extends LikelyNotASinkReason, TArgumentToArrayReason {
-  override string getDescription() { result = "ArgumentToArray" }
-
-  override int getEncoding() { result = 24 }
-}
-
-class ArgumentToBuiltinGlobalVarRefReason extends LikelyNotASinkReason,
-  TArgumentToBuiltinGlobalVarRefReason {
-  override string getDescription() { result = "ArgumentToBuiltinGlobalVarRef" }
-
-  override int getEncoding() { result = 25 }
-}
-
-class ConstantReceiverReason extends NotASinkReason, TConstantReceiverReason {
-  override string getDescription() { result = "ConstantReceiver" }
-
-  override int getEncoding() { result = 26 }
-}
-
-class BuiltinCallNameReason extends NotASinkReason, TBuiltinCallNameReason {
-  override string getDescription() { result = "BuiltinCallName" }
-
-  override int getEncoding() { result = 27 }
-}
-
-class Base64ManipulationReason extends NotASinkReason, TBase64ManipulationReason {
-  override string getDescription() { result = "Base64Manipulation" }
-
-  override int getEncoding() { result = 28 }
-}
-
-class JQueryArgumentReason extends NotASinkReason, TJQueryArgumentReason {
-  override string getDescription() { result = "JQueryArgument" }
-
-  override int getEncoding() { result = 29 }
-}
-
-class DojoRequireReason extends NotASinkReason, TDojoRequireReason {
-  override string getDescription() { result = "DojoRequire" }
-
-  override int getEncoding() { result = 30 }
-}

From 15121931b47c85dfddb1287ecc80efc67a1879a3 Mon Sep 17 00:00:00 2001
From: tiferet <tiferet@github.com>
Date: Thu, 17 Nov 2022 11:59:36 -0800
Subject: [PATCH 0737/1420] Delete `CoreKnowledge`.

All remaining functionality in `CoreKnowledge` is only being used in `EndpointCharacteristics`, so it can be moved there as a small set of helper predicates.
---
 .../adaptivethreatmodeling/CoreKnowledge.qll  | 111 -----------------
 .../EndpointCharacteristics.qll               | 113 +++++++++++++++++-
 .../NosqlInjectionATM.qll                     |   1 -
 .../SqlInjectionATM.qll                       |   1 -
 .../adaptivethreatmodeling/TaintedPathATM.qll |   1 -
 .../adaptivethreatmodeling/XssATM.qll         |   1 -
 6 files changed, 108 insertions(+), 120 deletions(-)
 delete mode 100644 javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/CoreKnowledge.qll

diff --git a/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/CoreKnowledge.qll b/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/CoreKnowledge.qll
deleted file mode 100644
index 55dca5ba6a8..00000000000
--- a/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/CoreKnowledge.qll
+++ /dev/null
@@ -1,111 +0,0 @@
-/*
- * For internal use only.
- *
- * Provides predicates that expose the knowledge of models
- * in the core CodeQL JavaScript libraries.
- */
-
-private import javascript
-private import semmle.javascript.security.dataflow.XxeCustomizations
-private import semmle.javascript.security.dataflow.RemotePropertyInjectionCustomizations
-private import semmle.javascript.security.dataflow.TypeConfusionThroughParameterTamperingCustomizations
-private import semmle.javascript.security.dataflow.ZipSlipCustomizations
-private import semmle.javascript.security.dataflow.TaintedPathCustomizations
-private import semmle.javascript.security.dataflow.CleartextLoggingCustomizations
-private import semmle.javascript.security.dataflow.XpathInjectionCustomizations
-private import semmle.javascript.security.dataflow.Xss::Shared as Xss
-private import semmle.javascript.security.dataflow.StackTraceExposureCustomizations
-private import semmle.javascript.security.dataflow.ClientSideUrlRedirectCustomizations
-private import semmle.javascript.security.dataflow.CodeInjectionCustomizations
-private import semmle.javascript.security.dataflow.RequestForgeryCustomizations
-private import semmle.javascript.security.dataflow.CorsMisconfigurationForCredentialsCustomizations
-private import semmle.javascript.security.dataflow.ShellCommandInjectionFromEnvironmentCustomizations
-private import semmle.javascript.security.dataflow.DifferentKindsComparisonBypassCustomizations
-private import semmle.javascript.security.dataflow.CommandInjectionCustomizations
-private import semmle.javascript.security.dataflow.PrototypePollutionCustomizations
-private import semmle.javascript.security.dataflow.UnvalidatedDynamicMethodCallCustomizations
-private import semmle.javascript.security.dataflow.TaintedFormatStringCustomizations
-private import semmle.javascript.security.dataflow.NosqlInjectionCustomizations
-private import semmle.javascript.security.dataflow.PostMessageStarCustomizations
-private import semmle.javascript.security.dataflow.RegExpInjectionCustomizations
-private import semmle.javascript.security.dataflow.SqlInjectionCustomizations
-private import semmle.javascript.security.dataflow.InsecureRandomnessCustomizations
-private import semmle.javascript.security.dataflow.XmlBombCustomizations
-private import semmle.javascript.security.dataflow.InsufficientPasswordHashCustomizations
-private import semmle.javascript.security.dataflow.HardcodedCredentialsCustomizations
-private import semmle.javascript.security.dataflow.FileAccessToHttpCustomizations
-private import semmle.javascript.security.dataflow.UnsafeDynamicMethodAccessCustomizations
-private import semmle.javascript.security.dataflow.UnsafeDeserializationCustomizations
-private import semmle.javascript.security.dataflow.HardcodedDataInterpretedAsCodeCustomizations
-private import semmle.javascript.security.dataflow.ServerSideUrlRedirectCustomizations
-private import semmle.javascript.security.dataflow.IndirectCommandInjectionCustomizations
-private import semmle.javascript.security.dataflow.ConditionalBypassCustomizations
-private import semmle.javascript.security.dataflow.HttpToFileAccessCustomizations
-private import semmle.javascript.security.dataflow.BrokenCryptoAlgorithmCustomizations
-private import semmle.javascript.security.dataflow.LoopBoundInjectionCustomizations
-private import semmle.javascript.security.dataflow.CleartextStorageCustomizations
-
-/**
- * Holds if the node `n` is a known sink in a modeled library, or a sibling-argument of such a sink.
- */
-predicate isArgumentToKnownLibrarySinkFunction(DataFlow::Node n) {
-  exists(DataFlow::InvokeNode invk, DataFlow::Node known |
-    invk.getAnArgument() = n and invk.getAnArgument() = known and isKnownLibrarySink(known)
-  )
-}
-
-/**
- * Holds if the node `n` is a known sink for the external API security query.
- *
- * This corresponds to known sinks from security queries whose sources include remote flow and
- * DOM-based sources.
- */
-predicate isKnownExternalApiQuerySink(DataFlow::Node n) {
-  n instanceof Xxe::Sink or
-  n instanceof TaintedPath::Sink or
-  n instanceof XpathInjection::Sink or
-  n instanceof Xss::Sink or
-  n instanceof ClientSideUrlRedirect::Sink or
-  n instanceof CodeInjection::Sink or
-  n instanceof RequestForgery::Sink or
-  n instanceof CorsMisconfigurationForCredentials::Sink or
-  n instanceof CommandInjection::Sink or
-  n instanceof PrototypePollution::Sink or
-  n instanceof UnvalidatedDynamicMethodCall::Sink or
-  n instanceof TaintedFormatString::Sink or
-  n instanceof NosqlInjection::Sink or
-  n instanceof PostMessageStar::Sink or
-  n instanceof RegExpInjection::Sink or
-  n instanceof SqlInjection::Sink or
-  n instanceof XmlBomb::Sink or
-  n instanceof ZipSlip::Sink or
-  n instanceof UnsafeDeserialization::Sink or
-  n instanceof ServerSideUrlRedirect::Sink or
-  n instanceof CleartextStorage::Sink or
-  n instanceof HttpToFileAccess::Sink
-}
-
-/** DEPRECATED: Alias for isKnownExternalApiQuerySink */
-deprecated predicate isKnownExternalAPIQuerySink = isKnownExternalApiQuerySink/1;
-
-/**
- * Holds if the node `n` is a known sink in a modeled library.
- */
-predicate isKnownLibrarySink(DataFlow::Node n) {
-  isKnownExternalApiQuerySink(n) or
-  n instanceof CleartextLogging::Sink or
-  n instanceof StackTraceExposure::Sink or
-  n instanceof ShellCommandInjectionFromEnvironment::Sink or
-  n instanceof InsecureRandomness::Sink or
-  n instanceof FileAccessToHttp::Sink or
-  n instanceof IndirectCommandInjection::Sink
-}
-
-/**
- * Holds if the node `n` is known as the predecessor in a modeled flow step.
- */
-predicate isKnownStepSrc(DataFlow::Node n) {
-  TaintTracking::sharedTaintStep(n, _) or
-  DataFlow::SharedFlowStep::step(n, _) or
-  DataFlow::SharedFlowStep::step(n, _, _, _)
-}
diff --git a/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/EndpointCharacteristics.qll b/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/EndpointCharacteristics.qll
index d86577d68b9..7cfce4be406 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/EndpointCharacteristics.qll
+++ b/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/EndpointCharacteristics.qll
@@ -7,10 +7,47 @@ private import semmle.javascript.security.dataflow.SqlInjectionCustomizations
 private import semmle.javascript.security.dataflow.DomBasedXssCustomizations
 private import semmle.javascript.security.dataflow.NosqlInjectionCustomizations
 private import semmle.javascript.security.dataflow.TaintedPathCustomizations
-private import CoreKnowledge as CoreKnowledge
 private import semmle.javascript.heuristics.SyntacticHeuristics as SyntacticHeuristics
 private import semmle.javascript.filters.ClassifyFiles as ClassifyFiles
 private import StandardEndpointFilters as StandardEndpointFilters
+private import semmle.javascript.security.dataflow.XxeCustomizations
+private import semmle.javascript.security.dataflow.RemotePropertyInjectionCustomizations
+private import semmle.javascript.security.dataflow.TypeConfusionThroughParameterTamperingCustomizations
+private import semmle.javascript.security.dataflow.ZipSlipCustomizations
+private import semmle.javascript.security.dataflow.TaintedPathCustomizations
+private import semmle.javascript.security.dataflow.CleartextLoggingCustomizations
+private import semmle.javascript.security.dataflow.XpathInjectionCustomizations
+private import semmle.javascript.security.dataflow.Xss::Shared as Xss
+private import semmle.javascript.security.dataflow.StackTraceExposureCustomizations
+private import semmle.javascript.security.dataflow.ClientSideUrlRedirectCustomizations
+private import semmle.javascript.security.dataflow.CodeInjectionCustomizations
+private import semmle.javascript.security.dataflow.RequestForgeryCustomizations
+private import semmle.javascript.security.dataflow.CorsMisconfigurationForCredentialsCustomizations
+private import semmle.javascript.security.dataflow.ShellCommandInjectionFromEnvironmentCustomizations
+private import semmle.javascript.security.dataflow.DifferentKindsComparisonBypassCustomizations
+private import semmle.javascript.security.dataflow.CommandInjectionCustomizations
+private import semmle.javascript.security.dataflow.PrototypePollutionCustomizations
+private import semmle.javascript.security.dataflow.UnvalidatedDynamicMethodCallCustomizations
+private import semmle.javascript.security.dataflow.TaintedFormatStringCustomizations
+private import semmle.javascript.security.dataflow.NosqlInjectionCustomizations
+private import semmle.javascript.security.dataflow.PostMessageStarCustomizations
+private import semmle.javascript.security.dataflow.RegExpInjectionCustomizations
+private import semmle.javascript.security.dataflow.SqlInjectionCustomizations
+private import semmle.javascript.security.dataflow.InsecureRandomnessCustomizations
+private import semmle.javascript.security.dataflow.XmlBombCustomizations
+private import semmle.javascript.security.dataflow.InsufficientPasswordHashCustomizations
+private import semmle.javascript.security.dataflow.HardcodedCredentialsCustomizations
+private import semmle.javascript.security.dataflow.FileAccessToHttpCustomizations
+private import semmle.javascript.security.dataflow.UnsafeDynamicMethodAccessCustomizations
+private import semmle.javascript.security.dataflow.UnsafeDeserializationCustomizations
+private import semmle.javascript.security.dataflow.HardcodedDataInterpretedAsCodeCustomizations
+private import semmle.javascript.security.dataflow.ServerSideUrlRedirectCustomizations
+private import semmle.javascript.security.dataflow.IndirectCommandInjectionCustomizations
+private import semmle.javascript.security.dataflow.ConditionalBypassCustomizations
+private import semmle.javascript.security.dataflow.HttpToFileAccessCustomizations
+private import semmle.javascript.security.dataflow.BrokenCryptoAlgorithmCustomizations
+private import semmle.javascript.security.dataflow.LoopBoundInjectionCustomizations
+private import semmle.javascript.security.dataflow.CleartextStorageCustomizations
 
 /**
  * A set of characteristics that a particular endpoint might have. This set of characteristics is used to make decisions
@@ -61,6 +98,63 @@ abstract class EndpointCharacteristic extends string {
   final float mediumConfidence() { result = 0.6 }
 }
 
+/*
+ * Helper predicates.
+ */
+
+/**
+ * Holds if the node `n` is a known sink for the external API security query.
+ *
+ * This corresponds to known sinks from security queries whose sources include remote flow and
+ * DOM-based sources.
+ */
+private predicate isKnownExternalApiQuerySink(DataFlow::Node n) {
+  n instanceof Xxe::Sink or
+  n instanceof TaintedPath::Sink or
+  n instanceof XpathInjection::Sink or
+  n instanceof Xss::Sink or
+  n instanceof ClientSideUrlRedirect::Sink or
+  n instanceof CodeInjection::Sink or
+  n instanceof RequestForgery::Sink or
+  n instanceof CorsMisconfigurationForCredentials::Sink or
+  n instanceof CommandInjection::Sink or
+  n instanceof PrototypePollution::Sink or
+  n instanceof UnvalidatedDynamicMethodCall::Sink or
+  n instanceof TaintedFormatString::Sink or
+  n instanceof NosqlInjection::Sink or
+  n instanceof PostMessageStar::Sink or
+  n instanceof RegExpInjection::Sink or
+  n instanceof SqlInjection::Sink or
+  n instanceof XmlBomb::Sink or
+  n instanceof ZipSlip::Sink or
+  n instanceof UnsafeDeserialization::Sink or
+  n instanceof ServerSideUrlRedirect::Sink or
+  n instanceof CleartextStorage::Sink or
+  n instanceof HttpToFileAccess::Sink
+}
+
+/**
+ * Holds if the node `n` is a known sink in a modeled library.
+ */
+private predicate isKnownLibrarySink(DataFlow::Node n) {
+  isKnownExternalApiQuerySink(n) or
+  n instanceof CleartextLogging::Sink or
+  n instanceof StackTraceExposure::Sink or
+  n instanceof ShellCommandInjectionFromEnvironment::Sink or
+  n instanceof InsecureRandomness::Sink or
+  n instanceof FileAccessToHttp::Sink or
+  n instanceof IndirectCommandInjection::Sink
+}
+
+/**
+ * Holds if the node `n` is known as the predecessor in a modeled flow step.
+ */
+private predicate isKnownStepSrc(DataFlow::Node n) {
+  TaintTracking::sharedTaintStep(n, _) or
+  DataFlow::SharedFlowStep::step(n, _) or
+  DataFlow::SharedFlowStep::step(n, _, _, _)
+}
+
 /*
  * Characteristics that are indicative of a sink.
  * NOTE: Initially each sink type has only one characteristic, which is that it's a sink of this type in the standard
@@ -511,9 +605,9 @@ class IsArgumentToModeledFunctionCharacteristic extends StandardEndpointFilterCh
       invk.getAnArgument() = n and
       invk.getAnArgument() = known and
       (
-        CoreKnowledge::isKnownLibrarySink(known)
+        isKnownLibrarySink(known)
         or
-        CoreKnowledge::isKnownStepSrc(known)
+        isKnownStepSrc(known)
         or
         exists(OtherModeledArgumentCharacteristic characteristic |
           characteristic.getEndpoints(known)
@@ -616,10 +710,19 @@ private class DatabaseAccessCallHeuristicCharacteristic extends NosqlInjectionSi
 private class ModeledSinkCharacteristic extends NosqlInjectionSinkEndpointFilterCharacteristic {
   ModeledSinkCharacteristic() { this = "modeled sink" }
 
+  /**
+   * Holds if the node `n` is a known sink in a modeled library, or a sibling-argument of such a sink.
+   */
+  predicate isArgumentToKnownLibrarySinkFunction(DataFlow::Node n) {
+    exists(DataFlow::InvokeNode invk, DataFlow::Node known |
+      invk.getAnArgument() = n and invk.getAnArgument() = known and isKnownLibrarySink(known)
+    )
+  }
+
   override predicate getEndpoints(DataFlow::Node n) {
     exists(DataFlow::CallNode call | n = call.getAnArgument() |
       // Remove modeled sinks
-      CoreKnowledge::isArgumentToKnownLibrarySinkFunction(n)
+      isArgumentToKnownLibrarySinkFunction(n)
     )
   }
 }
@@ -630,7 +733,7 @@ private class PredecessorInModeledFlowStepCharacteristic extends NosqlInjectionS
   override predicate getEndpoints(DataFlow::Node n) {
     exists(DataFlow::CallNode call | n = call.getAnArgument() |
       // Remove common kinds of unlikely sinks
-      CoreKnowledge::isKnownStepSrc(n)
+      isKnownStepSrc(n)
     )
   }
 }
diff --git a/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/NosqlInjectionATM.qll b/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/NosqlInjectionATM.qll
index 85b3d14d7e9..f03631bfdcf 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/NosqlInjectionATM.qll
+++ b/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/NosqlInjectionATM.qll
@@ -8,7 +8,6 @@ import javascript
 private import semmle.javascript.heuristics.SyntacticHeuristics
 private import semmle.javascript.security.dataflow.NosqlInjectionCustomizations
 import AdaptiveThreatModeling
-private import CoreKnowledge as CoreKnowledge
 
 class NosqlInjectionAtmConfig extends AtmConfig {
   NosqlInjectionAtmConfig() { this = "NosqlInjectionATMConfig" }
diff --git a/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/SqlInjectionATM.qll b/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/SqlInjectionATM.qll
index f52e1898667..14821404e6d 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/SqlInjectionATM.qll
+++ b/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/SqlInjectionATM.qll
@@ -7,7 +7,6 @@
 import semmle.javascript.heuristics.SyntacticHeuristics
 import semmle.javascript.security.dataflow.SqlInjectionCustomizations
 import AdaptiveThreatModeling
-import CoreKnowledge as CoreKnowledge
 
 class SqlInjectionAtmConfig extends AtmConfig {
   SqlInjectionAtmConfig() { this = "SqlInjectionATMConfig" }
diff --git a/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/TaintedPathATM.qll b/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/TaintedPathATM.qll
index e83938071df..302907820da 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/TaintedPathATM.qll
+++ b/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/TaintedPathATM.qll
@@ -7,7 +7,6 @@
 import semmle.javascript.heuristics.SyntacticHeuristics
 import semmle.javascript.security.dataflow.TaintedPathCustomizations
 import AdaptiveThreatModeling
-import CoreKnowledge as CoreKnowledge
 
 class TaintedPathAtmConfig extends AtmConfig {
   TaintedPathAtmConfig() { this = "TaintedPathATMConfig" }
diff --git a/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/XssATM.qll b/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/XssATM.qll
index 508cac4544f..2cc848a7ea9 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/XssATM.qll
+++ b/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/XssATM.qll
@@ -7,7 +7,6 @@
 private import semmle.javascript.heuristics.SyntacticHeuristics
 private import semmle.javascript.security.dataflow.DomBasedXssCustomizations
 import AdaptiveThreatModeling
-import CoreKnowledge as CoreKnowledge
 
 class DomBasedXssAtmConfig extends AtmConfig {
   DomBasedXssAtmConfig() { this = "DomBasedXssATMConfig" }

From 210644e87d30b656cb81af047a7d8d6e688be6c5 Mon Sep 17 00:00:00 2001
From: tiferet <tiferet@github.com>
Date: Thu, 17 Nov 2022 12:12:03 -0800
Subject: [PATCH 0738/1420] Delete `StandardEndpointFilters`.

All remaining functionality in `StandardEndpointFilters` is only being used in `EndpointCharacteristics`, so it can be moved there as a small set of helper predicates.
---
 .../EndpointCharacteristics.qll               | 59 ++++++++++++++++---
 .../StandardEndpointFilters.qll               | 56 ------------------
 2 files changed, 52 insertions(+), 63 deletions(-)
 delete mode 100644 javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/StandardEndpointFilters.qll

diff --git a/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/EndpointCharacteristics.qll b/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/EndpointCharacteristics.qll
index 7cfce4be406..74a5ca6256d 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/EndpointCharacteristics.qll
+++ b/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/EndpointCharacteristics.qll
@@ -9,7 +9,6 @@ private import semmle.javascript.security.dataflow.NosqlInjectionCustomizations
 private import semmle.javascript.security.dataflow.TaintedPathCustomizations
 private import semmle.javascript.heuristics.SyntacticHeuristics as SyntacticHeuristics
 private import semmle.javascript.filters.ClassifyFiles as ClassifyFiles
-private import StandardEndpointFilters as StandardEndpointFilters
 private import semmle.javascript.security.dataflow.XxeCustomizations
 private import semmle.javascript.security.dataflow.RemotePropertyInjectionCustomizations
 private import semmle.javascript.security.dataflow.TypeConfusionThroughParameterTamperingCustomizations
@@ -155,6 +154,53 @@ private predicate isKnownStepSrc(DataFlow::Node n) {
   DataFlow::SharedFlowStep::step(n, _, _, _)
 }
 
+/**
+ * Holds if the data flow node is a (possibly indirect) argument of a likely external library call.
+ *
+ * This includes direct arguments of likely external library calls as well as nested object
+ * literals within those calls.
+ */
+private predicate flowsToArgumentOfLikelyExternalLibraryCall(DataFlow::Node n) {
+  n = getACallWithoutCallee().getAnArgument()
+  or
+  exists(DataFlow::SourceNode src | flowsToArgumentOfLikelyExternalLibraryCall(src) |
+    n = src.getAPropertyWrite().getRhs()
+  )
+  or
+  exists(DataFlow::ArrayCreationNode arr | flowsToArgumentOfLikelyExternalLibraryCall(arr) |
+    n = arr.getAnElement()
+  )
+}
+
+/**
+ * Get calls for which we do not have the callee (i.e. the definition of the called function). This
+ * acts as a heuristic for identifying calls to external library functions.
+ */
+private DataFlow::CallNode getACallWithoutCallee() {
+  forall(Function callee | callee = result.getACallee() | callee.getTopLevel().isExterns()) and
+  not exists(DataFlow::ParameterNode param, DataFlow::FunctionNode callback |
+    param.flowsTo(result.getCalleeNode()) and
+    callback = getACallback(param, DataFlow::TypeBackTracker::end())
+  )
+}
+
+/**
+ * Gets a node that flows to callback-parameter `p`.
+ */
+private DataFlow::SourceNode getACallback(DataFlow::ParameterNode p, DataFlow::TypeBackTracker t) {
+  t.start() and
+  result = p and
+  any(DataFlow::FunctionNode f).getLastParameter() = p and
+  exists(p.getACall())
+  or
+  exists(DataFlow::TypeBackTracker t2 | result = getACallback(p, t2).backtrack(t2, t))
+}
+
+/**
+ * Get calls which are likely to be to external non-built-in libraries.
+ */
+DataFlow::CallNode getALikelyExternalLibraryCall() { result = getACallWithoutCallee() }
+
 /*
  * Characteristics that are indicative of a sink.
  * NOTE: Initially each sink type has only one characteristic, which is that it's a sink of this type in the standard
@@ -582,7 +628,6 @@ abstract class EndpointFilterCharacteristic extends EndpointCharacteristic {
 
 /**
  * An EndpointFilterCharacteristic that indicates that an endpoint is unlikely to be a sink of any type.
- * Replaces https://github.com/github/codeql/blob/387e57546bf7352f7c1cfe781daa1a3799b7063e/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/StandardEndpointFilters.qll#LL15C24-L15C24
  */
 abstract private class StandardEndpointFilterCharacteristic extends EndpointFilterCharacteristic {
   bindingset[this]
@@ -786,7 +831,7 @@ private class NotDirectArgumentToLikelyExternalLibraryCallOrHeuristicSinkNosqlCh
     //
     // ## Direct arguments to external library calls
     //
-    // The `StandardEndpointFilters::flowsToArgumentOfLikelyExternalLibraryCall` endpoint filter
+    // The `flowsToArgumentOfLikelyExternalLibraryCall` endpoint filter
     // allows sink candidates which are within object literals or array literals, for example
     // `req.sendFile(_, { path: ENDPOINT })`.
     //
@@ -809,7 +854,7 @@ private class NotDirectArgumentToLikelyExternalLibraryCallOrHeuristicSinkNosqlCh
     // `codeql/javascript/ql/src/semmle/javascript/heuristics/AdditionalSinks.qll`.
     // We can't reuse the class because importing that file would cause us to treat these
     // heuristic sinks as known sinks.
-    not n = StandardEndpointFilters::getALikelyExternalLibraryCall().getAnArgument() and
+    not n = getALikelyExternalLibraryCall().getAnArgument() and
     not (
       SyntacticHeuristics::isAssignedToOrConcatenatedWith(n, "(?i)(nosql|query)") or
       SyntacticHeuristics::isArgTo(n, "(?i)(query)")
@@ -878,7 +923,7 @@ private class NotAnArgumentToLikelyExternalLibraryCallOrHeuristicSinkCharacteris
     // `codeql/javascript/ql/src/semmle/javascript/heuristics/AdditionalSinks.qll`.
     // We can't reuse the class because importing that file would cause us to treat these
     // heuristic sinks as known sinks.
-    not StandardEndpointFilters::flowsToArgumentOfLikelyExternalLibraryCall(n) and
+    not flowsToArgumentOfLikelyExternalLibraryCall(n) and
     not (
       SyntacticHeuristics::isAssignedToOrConcatenatedWith(n, "(?i)(sql|query)") or
       SyntacticHeuristics::isArgTo(n, "(?i)(query)") or
@@ -916,7 +961,7 @@ private class NotDirectArgumentToLikelyExternalLibraryCallOrHeuristicSinkTainted
     // `codeql/javascript/ql/src/semmle/javascript/heuristics/AdditionalSinks.qll`.
     // We can't reuse the class because importing that file would cause us to treat these
     // heuristic sinks as known sinks.
-    not StandardEndpointFilters::flowsToArgumentOfLikelyExternalLibraryCall(n) and
+    not flowsToArgumentOfLikelyExternalLibraryCall(n) and
     not (
       SyntacticHeuristics::isAssignedToOrConcatenatedWith(n, "(?i)(file|folder|dir|absolute)")
       or
@@ -977,7 +1022,7 @@ private class NotDirectArgumentToLikelyExternalLibraryCallOrHeuristicSinkXssChar
     // `codeql/javascript/ql/src/semmle/javascript/heuristics/AdditionalSinks.qll`.
     // We can't reuse the class because importing that file would cause us to treat these
     // heuristic sinks as known sinks.
-    not StandardEndpointFilters::flowsToArgumentOfLikelyExternalLibraryCall(n) and
+    not flowsToArgumentOfLikelyExternalLibraryCall(n) and
     not (
       SyntacticHeuristics::isAssignedToOrConcatenatedWith(n, "(?i)(html|innerhtml)")
       or
diff --git a/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/StandardEndpointFilters.qll b/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/StandardEndpointFilters.qll
deleted file mode 100644
index b553376e017..00000000000
--- a/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/StandardEndpointFilters.qll
+++ /dev/null
@@ -1,56 +0,0 @@
-/**
- * For internal use only.
- *
- * Provides classes and predicates that are useful for endpoint filters.
- *
- * The standard use of this library is to make use of `isPotentialEffectiveSink/1`
- */
-
-private import javascript
-
-/**
- * Holds if the data flow node is a (possibly indirect) argument of a likely external library call.
- *
- * This includes direct arguments of likely external library calls as well as nested object
- * literals within those calls.
- */
-predicate flowsToArgumentOfLikelyExternalLibraryCall(DataFlow::Node n) {
-  n = getACallWithoutCallee().getAnArgument()
-  or
-  exists(DataFlow::SourceNode src | flowsToArgumentOfLikelyExternalLibraryCall(src) |
-    n = src.getAPropertyWrite().getRhs()
-  )
-  or
-  exists(DataFlow::ArrayCreationNode arr | flowsToArgumentOfLikelyExternalLibraryCall(arr) |
-    n = arr.getAnElement()
-  )
-}
-
-/**
- * Get calls which are likely to be to external non-built-in libraries.
- */
-DataFlow::CallNode getALikelyExternalLibraryCall() { result = getACallWithoutCallee() }
-
-/**
- * Gets a node that flows to callback-parameter `p`.
- */
-private DataFlow::SourceNode getACallback(DataFlow::ParameterNode p, DataFlow::TypeBackTracker t) {
-  t.start() and
-  result = p and
-  any(DataFlow::FunctionNode f).getLastParameter() = p and
-  exists(p.getACall())
-  or
-  exists(DataFlow::TypeBackTracker t2 | result = getACallback(p, t2).backtrack(t2, t))
-}
-
-/**
- * Get calls for which we do not have the callee (i.e. the definition of the called function). This
- * acts as a heuristic for identifying calls to external library functions.
- */
-private DataFlow::CallNode getACallWithoutCallee() {
-  forall(Function callee | callee = result.getACallee() | callee.getTopLevel().isExterns()) and
-  not exists(DataFlow::ParameterNode param, DataFlow::FunctionNode callback |
-    param.flowsTo(result.getCalleeNode()) and
-    callback = getACallback(param, DataFlow::TypeBackTracker::end())
-  )
-}

From 4580b5567350afb42b3adb9987c7ce0fe5754796 Mon Sep 17 00:00:00 2001
From: tiferet <tiferet@github.com>
Date: Thu, 17 Nov 2022 12:27:40 -0800
Subject: [PATCH 0739/1420] Oops -- forgot to stage one file in the previous
 commit :)

---
 .../endpoint_large_scale/getALikelyExternalLibraryCall.ql     | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/getALikelyExternalLibraryCall.ql b/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/getALikelyExternalLibraryCall.ql
index 6c2928c74e0..da91ecf1b43 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/getALikelyExternalLibraryCall.ql
+++ b/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/getALikelyExternalLibraryCall.ql
@@ -1,3 +1,3 @@
-import experimental.adaptivethreatmodeling.StandardEndpointFilters
+import experimental.adaptivethreatmodeling.EndpointCharacteristics as EndpointCharacteristics
 
-select getALikelyExternalLibraryCall()
+select EndpointCharacteristics::getALikelyExternalLibraryCall()

From d8752a0b12d347cef734a6e4e6c2486f778492ae Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Peter=20St=C3=B6ckli?= <p-@github.com>
Date: Tue, 22 Nov 2022 11:09:22 +0100
Subject: [PATCH 0740/1420] Add additional sinks to the `rb/kernel-open` query

---
 .../codeql/ruby/security/KernelOpenQuery.qll  | 47 ++++++++++++++++++-
 .../2022-11-22-kernel-open-sinks.md           |  4 ++
 .../security/cwe-078/KernelOpen.inc.qhelp     |  9 +++-
 .../queries/security/cwe-078/KernelOpen.ql    |  8 ++--
 .../cwe-078/KernelOpen/KernelOpen.expected    | 23 +++++++++
 .../security/cwe-078/KernelOpen/KernelOpen.rb |  9 ++++
 6 files changed, 94 insertions(+), 6 deletions(-)
 create mode 100644 ruby/ql/src/change-notes/2022-11-22-kernel-open-sinks.md

diff --git a/ruby/ql/lib/codeql/ruby/security/KernelOpenQuery.qll b/ruby/ql/lib/codeql/ruby/security/KernelOpenQuery.qll
index 309a26ac9df..7f868a571cb 100644
--- a/ruby/ql/lib/codeql/ruby/security/KernelOpenQuery.qll
+++ b/ruby/ql/lib/codeql/ruby/security/KernelOpenQuery.qll
@@ -19,6 +19,24 @@ class AmbiguousPathCall extends DataFlow::CallNode {
     this = API::getTopLevelMember("IO").getAMethodCall("read") and
     not this = API::getTopLevelMember("File").getAMethodCall("read") and // needed in e.g. opal/opal, where some calls have both paths, but I'm not sure why
     name = "IO.read"
+    or
+    this = API::getTopLevelMember("IO").getAMethodCall("write") and
+    name = "IO.write"
+    or
+    this = API::getTopLevelMember("IO").getAMethodCall("binread") and
+    name = "IO.binread"
+    or
+    this = API::getTopLevelMember("IO").getAMethodCall("binwrite") and
+    name = "IO.binwrite"
+    or
+    this = API::getTopLevelMember("IO").getAMethodCall("foreach") and
+    name = "IO.foreach"
+    or
+    this = API::getTopLevelMember("IO").getAMethodCall("readlines") and
+    name = "IO.readlines"
+    or
+    this = API::getTopLevelMember("URI").getAMethodCall("open") and
+    name = "URI.open"
   }
 
   /** Gets the name for the method being called. */
@@ -26,11 +44,38 @@ class AmbiguousPathCall extends DataFlow::CallNode {
 
   /** Gets the name for a safer method that can be used instead. */
   string getReplacement() {
+    result = "File.open" and name = "Kernel.open"
+    or
     result = "File.read" and name = "IO.read"
     or
-    result = "File.open" and name = "Kernel.open"
+    result = "File.write" and name = "IO.write"
+    or
+    result = "File.binread" and name = "IO.binread"
+    or
+    result = "File.binwrite" and name = "IO.binwrite"
+    or
+    result = "File.foreach" and name = "IO.foreach"
+    or
+    result = "File.readlines" and name = "IO.readlines"
+    or
+    result = "URI(<uri>).open" and name = "URI.open"
   }
 
   /** Gets the argument that specifies the path to be accessed. */
   DataFlow::Node getPathArgument() { result = this.getArgument(0) }
 }
+
+/**
+ * A sanitizer for kernel open vulnerabilities.
+ */
+abstract class Sanitizer extends DataFlow::Node { }
+
+/**
+ * If a File.join is performed the resulting string will not start with a pipe |
+ * This is true as long the tainted data doesn't flow into the first argument.
+ */
+private class FileJoinCall extends Sanitizer, DataFlow::ExprNode {
+  FileJoinCall() {
+    this = API::getTopLevelMember("File").getAMethodCall("join").getArgument(any(int i | i > 0))
+  }
+}
diff --git a/ruby/ql/src/change-notes/2022-11-22-kernel-open-sinks.md b/ruby/ql/src/change-notes/2022-11-22-kernel-open-sinks.md
new file mode 100644
index 00000000000..d44c59eade9
--- /dev/null
+++ b/ruby/ql/src/change-notes/2022-11-22-kernel-open-sinks.md
@@ -0,0 +1,4 @@
+---
+category: minorAnalysis
+---
+* Extended the `rb/kernel-open` query with following sinks: `IO.write`, `IO.binread`, `IO.binwrite`, `IO.foreach`, `IO.readlines`, and `URI.open`.
\ No newline at end of file
diff --git a/ruby/ql/src/queries/security/cwe-078/KernelOpen.inc.qhelp b/ruby/ql/src/queries/security/cwe-078/KernelOpen.inc.qhelp
index eea2281cc4a..add02f20bf3 100644
--- a/ruby/ql/src/queries/security/cwe-078/KernelOpen.inc.qhelp
+++ b/ruby/ql/src/queries/security/cwe-078/KernelOpen.inc.qhelp
@@ -6,15 +6,19 @@
 <p>If <code>Kernel.open</code> is given a file name that starts with a <code>|</code>
 character, it will execute the remaining string as a shell command. If a
 malicious user can control the file name, they can execute arbitrary code.
-The same vulnerability applies to <code>IO.read</code>.
+The same vulnerability applies to <code>IO.read</code>, <code>IO.write</code>,
+<code>IO.binread</code>, <code>IO.binwrite</code>, <code>IO.foreach</code>,
+<code>IO.readlines</code> and <code>URI.open</code>.
 </p>
 
 </overview>
 <recommendation>
 
 <p>Use <code>File.open</code> instead of <code>Kernel.open</code>, as the former
-does not have this vulnerability. Similarly, use <code>File.read</code> instead
+does not have this vulnerability. Similarly, use the methods from the <code>File</code>
+class instead of the <code>IO</code> class e.g. <code>File.read</code> instead
 of <code>IO.read</code>.</p>
+<p>Instead of <code>URI.open</code> use <code>URI(<uri>).open</code> or an HTTP Client.</p>
 
 </recommendation>
 <example>
@@ -36,6 +40,7 @@ user-supplied file path.
 <li>
 OWASP:
 <a href="https://www.owasp.org/index.php/Command_Injection">Command Injection</a>.
+<a href="https://cheatsheetseries.owasp.org/cheatsheets/Ruby_on_Rails_Cheat_Sheet.html#command-injection">Ruby on Rails Cheat Sheet: Command Injection</a>.
 </li>
 
 <li>
diff --git a/ruby/ql/src/queries/security/cwe-078/KernelOpen.ql b/ruby/ql/src/queries/security/cwe-078/KernelOpen.ql
index 6e03bcb06c2..b88d42fb609 100644
--- a/ruby/ql/src/queries/security/cwe-078/KernelOpen.ql
+++ b/ruby/ql/src/queries/security/cwe-078/KernelOpen.ql
@@ -1,6 +1,7 @@
 /**
- * @name Use of `Kernel.open` or `IO.read` with user-controlled input
- * @description Using `Kernel.open` or `IO.read` may allow a malicious
+ * @name Use of `Kernel.open`, `IO.read` or similar sinks with user-controlled input
+ * @description Using `Kernel.open`, `IO.read`, `IO.write`, `IO.binread`, `IO.binwrite`,
+ *              `IO.foreach`, `IO.readlines`, or `URI.open` may allow a malicious
  *              user to execute arbitrary system commands.
  * @kind path-problem
  * @problem.severity error
@@ -32,7 +33,8 @@ class Configuration extends TaintTracking::Configuration {
 
   override predicate isSanitizer(DataFlow::Node node) {
     node instanceof StringConstCompareBarrier or
-    node instanceof StringConstArrayInclusionCallBarrier
+    node instanceof StringConstArrayInclusionCallBarrier or
+    node instanceof Sanitizer
   }
 }
 
diff --git a/ruby/ql/test/query-tests/security/cwe-078/KernelOpen/KernelOpen.expected b/ruby/ql/test/query-tests/security/cwe-078/KernelOpen/KernelOpen.expected
index 140dbca5371..8ade991204a 100644
--- a/ruby/ql/test/query-tests/security/cwe-078/KernelOpen/KernelOpen.expected
+++ b/ruby/ql/test/query-tests/security/cwe-078/KernelOpen/KernelOpen.expected
@@ -2,12 +2,35 @@ edges
 | KernelOpen.rb:3:12:3:17 | call to params :  | KernelOpen.rb:3:12:3:24 | ...[...] :  |
 | KernelOpen.rb:3:12:3:24 | ...[...] :  | KernelOpen.rb:4:10:4:13 | file |
 | KernelOpen.rb:3:12:3:24 | ...[...] :  | KernelOpen.rb:5:13:5:16 | file |
+| KernelOpen.rb:3:12:3:24 | ...[...] :  | KernelOpen.rb:6:14:6:17 | file |
+| KernelOpen.rb:3:12:3:24 | ...[...] :  | KernelOpen.rb:7:16:7:19 | file |
+| KernelOpen.rb:3:12:3:24 | ...[...] :  | KernelOpen.rb:8:17:8:20 | file |
+| KernelOpen.rb:3:12:3:24 | ...[...] :  | KernelOpen.rb:9:16:9:19 | file |
+| KernelOpen.rb:3:12:3:24 | ...[...] :  | KernelOpen.rb:10:18:10:21 | file |
+| KernelOpen.rb:3:12:3:24 | ...[...] :  | KernelOpen.rb:11:14:11:17 | file |
+| KernelOpen.rb:3:12:3:24 | ...[...] :  | KernelOpen.rb:13:23:13:26 | file :  |
+| KernelOpen.rb:13:23:13:26 | file :  | KernelOpen.rb:13:13:13:31 | call to join |
 nodes
 | KernelOpen.rb:3:12:3:17 | call to params :  | semmle.label | call to params :  |
 | KernelOpen.rb:3:12:3:24 | ...[...] :  | semmle.label | ...[...] :  |
 | KernelOpen.rb:4:10:4:13 | file | semmle.label | file |
 | KernelOpen.rb:5:13:5:16 | file | semmle.label | file |
+| KernelOpen.rb:6:14:6:17 | file | semmle.label | file |
+| KernelOpen.rb:7:16:7:19 | file | semmle.label | file |
+| KernelOpen.rb:8:17:8:20 | file | semmle.label | file |
+| KernelOpen.rb:9:16:9:19 | file | semmle.label | file |
+| KernelOpen.rb:10:18:10:21 | file | semmle.label | file |
+| KernelOpen.rb:11:14:11:17 | file | semmle.label | file |
+| KernelOpen.rb:13:13:13:31 | call to join | semmle.label | call to join |
+| KernelOpen.rb:13:23:13:26 | file :  | semmle.label | file :  |
 subpaths
 #select
 | KernelOpen.rb:4:10:4:13 | file | KernelOpen.rb:3:12:3:17 | call to params :  | KernelOpen.rb:4:10:4:13 | file | This call to Kernel.open depends on a $@. Consider replacing it with File.open. | KernelOpen.rb:3:12:3:17 | call to params | user-provided value |
 | KernelOpen.rb:5:13:5:16 | file | KernelOpen.rb:3:12:3:17 | call to params :  | KernelOpen.rb:5:13:5:16 | file | This call to IO.read depends on a $@. Consider replacing it with File.read. | KernelOpen.rb:3:12:3:17 | call to params | user-provided value |
+| KernelOpen.rb:6:14:6:17 | file | KernelOpen.rb:3:12:3:17 | call to params :  | KernelOpen.rb:6:14:6:17 | file | This call to IO.write depends on a $@. Consider replacing it with File.write. | KernelOpen.rb:3:12:3:17 | call to params | user-provided value |
+| KernelOpen.rb:7:16:7:19 | file | KernelOpen.rb:3:12:3:17 | call to params :  | KernelOpen.rb:7:16:7:19 | file | This call to IO.binread depends on a $@. Consider replacing it with File.binread. | KernelOpen.rb:3:12:3:17 | call to params | user-provided value |
+| KernelOpen.rb:8:17:8:20 | file | KernelOpen.rb:3:12:3:17 | call to params :  | KernelOpen.rb:8:17:8:20 | file | This call to IO.binwrite depends on a $@. Consider replacing it with File.binwrite. | KernelOpen.rb:3:12:3:17 | call to params | user-provided value |
+| KernelOpen.rb:9:16:9:19 | file | KernelOpen.rb:3:12:3:17 | call to params :  | KernelOpen.rb:9:16:9:19 | file | This call to IO.foreach depends on a $@. Consider replacing it with File.foreach. | KernelOpen.rb:3:12:3:17 | call to params | user-provided value |
+| KernelOpen.rb:10:18:10:21 | file | KernelOpen.rb:3:12:3:17 | call to params :  | KernelOpen.rb:10:18:10:21 | file | This call to IO.readlines depends on a $@. Consider replacing it with File.readlines. | KernelOpen.rb:3:12:3:17 | call to params | user-provided value |
+| KernelOpen.rb:11:14:11:17 | file | KernelOpen.rb:3:12:3:17 | call to params :  | KernelOpen.rb:11:14:11:17 | file | This call to URI.open depends on a $@. Consider replacing it with URI(<uri>).open. | KernelOpen.rb:3:12:3:17 | call to params | user-provided value |
+| KernelOpen.rb:13:13:13:31 | call to join | KernelOpen.rb:3:12:3:17 | call to params :  | KernelOpen.rb:13:13:13:31 | call to join | This call to IO.read depends on a $@. Consider replacing it with File.read. | KernelOpen.rb:3:12:3:17 | call to params | user-provided value |
diff --git a/ruby/ql/test/query-tests/security/cwe-078/KernelOpen/KernelOpen.rb b/ruby/ql/test/query-tests/security/cwe-078/KernelOpen/KernelOpen.rb
index 2c6e303f398..37c79fb6739 100644
--- a/ruby/ql/test/query-tests/security/cwe-078/KernelOpen/KernelOpen.rb
+++ b/ruby/ql/test/query-tests/security/cwe-078/KernelOpen/KernelOpen.rb
@@ -3,6 +3,15 @@ class UsersController < ActionController::Base
     file = params[:file]
     open(file) # BAD
     IO.read(file) # BAD
+    IO.write(file) # BAD
+    IO.binread(file) # BAD
+    IO.binwrite(file) # BAD
+    IO.foreach(file) # BAD
+    IO.readlines(file) # BAD
+    URI.open(file) # BAD
+
+    IO.read(File.join(file, "")) # BAD - file as first argument to File.join
+    IO.read(File.join("", file)) # GOOD - file path is sanitised by guard
 
     File.open(file).read # GOOD
 

From 315480824bc65253aa58dffbaf2fec8641d4bf8d Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Peter=20St=C3=B6ckli?= <p-@github.com>
Date: Tue, 22 Nov 2022 11:25:10 +0100
Subject: [PATCH 0741/1420] Fix KernelOpen qhelp

---
 ruby/ql/src/queries/security/cwe-078/KernelOpen.inc.qhelp | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/ruby/ql/src/queries/security/cwe-078/KernelOpen.inc.qhelp b/ruby/ql/src/queries/security/cwe-078/KernelOpen.inc.qhelp
index add02f20bf3..2c220ba7aea 100644
--- a/ruby/ql/src/queries/security/cwe-078/KernelOpen.inc.qhelp
+++ b/ruby/ql/src/queries/security/cwe-078/KernelOpen.inc.qhelp
@@ -18,7 +18,7 @@ The same vulnerability applies to <code>IO.read</code>, <code>IO.write</code>,
 does not have this vulnerability. Similarly, use the methods from the <code>File</code>
 class instead of the <code>IO</code> class e.g. <code>File.read</code> instead
 of <code>IO.read</code>.</p>
-<p>Instead of <code>URI.open</code> use <code>URI(<uri>).open</code> or an HTTP Client.</p>
+<p>Instead of <code>URI.open</code> use <code>URI(..).open</code> or an HTTP Client.</p>
 
 </recommendation>
 <example>

From 88282ade1ac00fb4eead0d54b5333725b8c26f05 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Peter=20St=C3=B6ckli?= <p-@github.com>
Date: Tue, 29 Nov 2022 09:59:40 +0100
Subject: [PATCH 0742/1420] Add predicate to filter out calls to File in opal

---
 .../codeql/ruby/security/KernelOpenQuery.qll   | 18 +++++++++++-------
 1 file changed, 11 insertions(+), 7 deletions(-)

diff --git a/ruby/ql/lib/codeql/ruby/security/KernelOpenQuery.qll b/ruby/ql/lib/codeql/ruby/security/KernelOpenQuery.qll
index 7f868a571cb..9c728beed76 100644
--- a/ruby/ql/lib/codeql/ruby/security/KernelOpenQuery.qll
+++ b/ruby/ql/lib/codeql/ruby/security/KernelOpenQuery.qll
@@ -16,23 +16,22 @@ class AmbiguousPathCall extends DataFlow::CallNode {
     this.(KernelMethodCall).getMethodName() = "open" and
     name = "Kernel.open"
     or
-    this = API::getTopLevelMember("IO").getAMethodCall("read") and
-    not this = API::getTopLevelMember("File").getAMethodCall("read") and // needed in e.g. opal/opal, where some calls have both paths, but I'm not sure why
+    methodCallOnlyOnIO(this, "read") and
     name = "IO.read"
     or
-    this = API::getTopLevelMember("IO").getAMethodCall("write") and
+    methodCallOnlyOnIO(this, "write") and
     name = "IO.write"
     or
-    this = API::getTopLevelMember("IO").getAMethodCall("binread") and
+    methodCallOnlyOnIO(this, "binread") and
     name = "IO.binread"
     or
-    this = API::getTopLevelMember("IO").getAMethodCall("binwrite") and
+    methodCallOnlyOnIO(this, "binwrite") and
     name = "IO.binwrite"
     or
-    this = API::getTopLevelMember("IO").getAMethodCall("foreach") and
+    methodCallOnlyOnIO(this, "foreach") and
     name = "IO.foreach"
     or
-    this = API::getTopLevelMember("IO").getAMethodCall("readlines") and
+    methodCallOnlyOnIO(this, "readlines") and
     name = "IO.readlines"
     or
     this = API::getTopLevelMember("URI").getAMethodCall("open") and
@@ -65,6 +64,11 @@ class AmbiguousPathCall extends DataFlow::CallNode {
   DataFlow::Node getPathArgument() { result = this.getArgument(0) }
 }
 
+predicate methodCallOnlyOnIO(DataFlow::CallNode node, string methodName) {
+  node = API::getTopLevelMember("IO").getAMethodCall(methodName) and
+  not node = API::getTopLevelMember("File").getAMethodCall(methodName) // needed in e.g. opal/opal, where some calls have both paths (opal implements an own corelib)
+}
+
 /**
  * A sanitizer for kernel open vulnerabilities.
  */

From 5b6dd786c3bb90f1dee78683738d4836a3c9e3a0 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Peter=20St=C3=B6ckli?= <p-@github.com>
Date: Tue, 29 Nov 2022 10:00:23 +0100
Subject: [PATCH 0743/1420] Add changes for NonConstantKernelOpenQuery

---
 .../queries/security/cwe-078/NonConstantKernelOpen.ql  |  5 +++--
 .../NonConstantKernelOpen.expected                     | 10 ++++++++--
 .../NonConstantKernelOpen/NonConstantKernelOpen.rb     |  6 ++++++
 3 files changed, 17 insertions(+), 4 deletions(-)

diff --git a/ruby/ql/src/queries/security/cwe-078/NonConstantKernelOpen.ql b/ruby/ql/src/queries/security/cwe-078/NonConstantKernelOpen.ql
index a7cb2500c54..036fc0d8cbd 100644
--- a/ruby/ql/src/queries/security/cwe-078/NonConstantKernelOpen.ql
+++ b/ruby/ql/src/queries/security/cwe-078/NonConstantKernelOpen.ql
@@ -1,6 +1,7 @@
 /**
- * @name Use of `Kernel.open` or `IO.read` with a non-constant value
- * @description Using `Kernel.open` or `IO.read` may allow a malicious
+ * @name Use of `Kernel.open` or `IO.read` or similar sinks with a non-constant value
+ * @description Using `Kernel.open`, `IO.read`, `IO.write`, `IO.binread`, `IO.binwrite`,
+ *              `IO.foreach`, `IO.readlines`, or `URI.open` may allow a malicious
  *              user to execute arbitrary system commands.
  * @kind problem
  * @problem.severity warning
diff --git a/ruby/ql/test/query-tests/security/cwe-078/NonConstantKernelOpen/NonConstantKernelOpen.expected b/ruby/ql/test/query-tests/security/cwe-078/NonConstantKernelOpen/NonConstantKernelOpen.expected
index 920592aae3e..6361bc7daa5 100644
--- a/ruby/ql/test/query-tests/security/cwe-078/NonConstantKernelOpen/NonConstantKernelOpen.expected
+++ b/ruby/ql/test/query-tests/security/cwe-078/NonConstantKernelOpen/NonConstantKernelOpen.expected
@@ -1,4 +1,10 @@
 | NonConstantKernelOpen.rb:4:5:4:14 | call to open | Call to Kernel.open with a non-constant value. Consider replacing it with File.open. |
 | NonConstantKernelOpen.rb:5:5:5:17 | call to read | Call to IO.read with a non-constant value. Consider replacing it with File.read. |
-| NonConstantKernelOpen.rb:9:5:9:21 | call to open | Call to Kernel.open with a non-constant value. Consider replacing it with File.open. |
-| NonConstantKernelOpen.rb:19:5:19:33 | call to open | Call to Kernel.open with a non-constant value. Consider replacing it with File.open. |
+| NonConstantKernelOpen.rb:6:5:6:18 | call to write | Call to IO.write with a non-constant value. Consider replacing it with File.write. |
+| NonConstantKernelOpen.rb:7:5:7:20 | call to binread | Call to IO.binread with a non-constant value. Consider replacing it with File.binread. |
+| NonConstantKernelOpen.rb:8:5:8:21 | call to binwrite | Call to IO.binwrite with a non-constant value. Consider replacing it with File.binwrite. |
+| NonConstantKernelOpen.rb:9:5:9:20 | call to foreach | Call to IO.foreach with a non-constant value. Consider replacing it with File.foreach. |
+| NonConstantKernelOpen.rb:10:5:10:22 | call to readlines | Call to IO.readlines with a non-constant value. Consider replacing it with File.readlines. |
+| NonConstantKernelOpen.rb:11:5:11:18 | call to open | Call to URI.open with a non-constant value. Consider replacing it with URI(<uri>).open. |
+| NonConstantKernelOpen.rb:15:5:15:21 | call to open | Call to Kernel.open with a non-constant value. Consider replacing it with File.open. |
+| NonConstantKernelOpen.rb:25:5:25:33 | call to open | Call to Kernel.open with a non-constant value. Consider replacing it with File.open. |
diff --git a/ruby/ql/test/query-tests/security/cwe-078/NonConstantKernelOpen/NonConstantKernelOpen.rb b/ruby/ql/test/query-tests/security/cwe-078/NonConstantKernelOpen/NonConstantKernelOpen.rb
index b22ba051722..f2422157327 100644
--- a/ruby/ql/test/query-tests/security/cwe-078/NonConstantKernelOpen/NonConstantKernelOpen.rb
+++ b/ruby/ql/test/query-tests/security/cwe-078/NonConstantKernelOpen/NonConstantKernelOpen.rb
@@ -3,6 +3,12 @@ class UsersController < ActionController::Base
     file = params[:file]
     open(file) # BAD
     IO.read(file) # BAD
+    IO.write(file) # BAD
+    IO.binread(file) # BAD
+    IO.binwrite(file) # BAD
+    IO.foreach(file) # BAD
+    IO.readlines(file) # BAD
+    URI.open(file) # BAD
 
     File.open(file).read # GOOD
 

From deb3accd1efd582a9a3e4553e57cd016a7a7d276 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Peter=20St=C3=B6ckli?= <p-@github.com>
Date: Tue, 29 Nov 2022 10:07:13 +0100
Subject: [PATCH 0744/1420] make  predicate private

---
 ruby/ql/lib/codeql/ruby/security/KernelOpenQuery.qll | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/ruby/ql/lib/codeql/ruby/security/KernelOpenQuery.qll b/ruby/ql/lib/codeql/ruby/security/KernelOpenQuery.qll
index 9c728beed76..e0a595accf6 100644
--- a/ruby/ql/lib/codeql/ruby/security/KernelOpenQuery.qll
+++ b/ruby/ql/lib/codeql/ruby/security/KernelOpenQuery.qll
@@ -64,7 +64,7 @@ class AmbiguousPathCall extends DataFlow::CallNode {
   DataFlow::Node getPathArgument() { result = this.getArgument(0) }
 }
 
-predicate methodCallOnlyOnIO(DataFlow::CallNode node, string methodName) {
+private predicate methodCallOnlyOnIO(DataFlow::CallNode node, string methodName) {
   node = API::getTopLevelMember("IO").getAMethodCall(methodName) and
   not node = API::getTopLevelMember("File").getAMethodCall(methodName) // needed in e.g. opal/opal, where some calls have both paths (opal implements an own corelib)
 }

From 97db2c91f11b157326bd4bd32e98509e98349ac9 Mon Sep 17 00:00:00 2001
From: Felicity Chapman <felicitymay@github.com>
Date: Thu, 24 Nov 2022 17:48:05 +0000
Subject: [PATCH 0745/1420] First draft update basic query to use VS Code

(cherry picked from commit 3e0702f9045b49fc87d1f701a7363877208cef58)
---
 .../basic-query-for-cpp-code.rst              |  89 ++++++++++--------
 .../add-codeql-db-github.png                  | Bin 0 -> 4017 bytes
 .../basic-cpp-query-results-1.png             | Bin 0 -> 311380 bytes
 .../basic-cpp-query-results-2.png             | Bin 0 -> 550586 bytes
 .../codeql-extension-icon.png                 | Bin 0 -> 4070 bytes
 .../database-selected.png                     | Bin 0 -> 39246 bytes
 .../codeql/reusables/setup-to-run-queries.rst |   1 +
 7 files changed, 51 insertions(+), 39 deletions(-)
 create mode 100644 docs/codeql/images/codeql-for-visual-studio-code/add-codeql-db-github.png
 create mode 100644 docs/codeql/images/codeql-for-visual-studio-code/basic-cpp-query-results-1.png
 create mode 100644 docs/codeql/images/codeql-for-visual-studio-code/basic-cpp-query-results-2.png
 create mode 100644 docs/codeql/images/codeql-for-visual-studio-code/codeql-extension-icon.png
 create mode 100644 docs/codeql/images/codeql-for-visual-studio-code/database-selected.png
 create mode 100644 docs/codeql/reusables/setup-to-run-queries.rst

diff --git a/docs/codeql/codeql-language-guides/basic-query-for-cpp-code.rst b/docs/codeql/codeql-language-guides/basic-query-for-cpp-code.rst
index 91cbab4cd07..0f43a737b9a 100644
--- a/docs/codeql/codeql-language-guides/basic-query-for-cpp-code.rst
+++ b/docs/codeql/codeql-language-guides/basic-query-for-cpp-code.rst
@@ -3,7 +3,9 @@
 Basic query for C and C++ code
 ==============================
 
-Learn to write and run a simple CodeQL query using LGTM.
+Learn to write and run a simple CodeQL query using Visual Studio Code with the CodeQL extension.
+
+.. include:: ../reusables/setup-to-run-queries.rst
 
 About the query
 ---------------
@@ -14,24 +16,42 @@ The query we're going to run performs a basic search of the code for ``if`` stat
 
    if (error) { }
 
+Finding a CodeQL database to experiment with
+--------------------------------------------
+
+Before you start writing queries, you need a CodeQL database to run them against. The simplest way to do this is to download a database directly from GitHub.com.
+
+#. In Visual Studio Code, click the **QL** icon |codeql-ext-icon| in the left sidebar to display the CodeQL extension. 
+
+#. Click **From GitHub** or the GitHub logo |github-db| at the top of the CodeQL extension to open an entry field.
+
+#. Copy the URL for the repository into the field and press the keyboard **Enter** key.
+
+#. Optionally, if the repository has more than one CodeQL database available, choose which language to download.
+
+Information about the progress of the database download is shown in the bottom right corner of Visual Studio Code. When the download is complete, the database is shown with a check mark in the **Databases** section of the CodeQL extension.
+
+.. image:: ../images/codeql-for-visual-studio-code/database-selected.png
+       :align: center
+       :width: 500
+
 Running the query
 -----------------
 
-#. In the main search box on LGTM.com, search for the project you want to query. For tips, see `Searching <https://lgtm.com/help/lgtm/searching>`__.
+#. In Visual Studio Code, create a new folder to store your experimental queries for C and C++ CodeQL databases. For example, ``cpp-experiments``.
 
-#. Click the project in the search results.
+#. Create a ``qlpack.yml`` file in your experiments folder with the contents shown below. This tells the CodeQL extension that any queries you create in the folder are intended to run on C or C++ CodeQL databases.
 
-#. Click **Query this project**.
+   .. code-block:: yaml
 
-   This opens the query console. (For information about using this, see `Using the query console <https://lgtm.com/help/lgtm/using-query-console>`__.)
+      name: github-owner/cpp-experiments
+      version: 0.0.1
+      dependencies:
+         codeql/cpp-all: ^0.1.2
 
-   .. pull-quote::
+#. Create a second new file in your experiements folder with the ``.ql`` file extension. You will write your first query in this file.
 
-      Note
-
-      Alternatively, you can go straight to the query console by clicking **Query console** (at the top of any page), selecting **C/C++** from the **Language** drop-down list, then choosing one or more projects to query from those displayed in the **Project** drop-down list.
-
-#. Copy the following query into the text box in the query console:
+#. Copy the following query into the new file and save the file:
 
    .. code-block:: ql
 
@@ -42,34 +62,19 @@ Running the query
         block.getNumStmt() = 0
       select ifstmt, "This 'if' statement is redundant."
 
-   LGTM checks whether your query compiles and, if all is well, the **Run** button changes to green to indicate that you can go ahead and run the query.
+#. Right-click in the query window and select **CodeQL: Run Query**. (Alternatively, run the command from the Command Palette.)
 
-#. Click **Run**.
+   The query will take a few moments to return results. When the query completes, the results are displayed in a CodeQL Query Results window, alongside the query window.
+   
+   The query results are listed in two columns, corresponding to the two expressions in the ``select`` clause of the query. The first column corresponds to the expression ``ifstmt`` and is linked to the location in the source code of the project where ``ifstmt`` occurs. The second column is the alert message.
 
-   The name of the project you are querying, and the ID of the most recently analyzed commit to the project, are listed below the query box. To the right of this is an icon that indicates the progress of the query operation:
+.. image:: ../images/codeql-for-visual-studio-code/basic-cpp-query-results-1.png
+    :align: center
 
-   .. image:: ../images/query-progress.png
-       :align: center
+If any matching code is found, click a link in the ``ifstmt`` column to open the file and highlight the matching ``if`` statement.
 
-   .. pull-quote::
-
-      Note
-
-      Your query is always run against the most recently analyzed commit to the selected project.
-
-   The query will take a few moments to return results. When the query completes, the results are displayed below the project name. The query results are listed in two columns, corresponding to the two expressions in the ``select`` clause of the query. The first column corresponds to the expression ``ifstmt`` and is linked to the location in the source code of the project where ``ifstmt`` occurs. The second column is the alert message.
-
-   ➤ `Example query results <https://lgtm.com/query/4242591143131494898/>`__
-
-   .. pull-quote::
-
-      Note
-
-      An ellipsis (…) at the bottom of the table indicates that the entire list is not displayed—click it to show more results.
-
-#. If any matching code is found, click a link in the ``ifstmt`` column to view the ``if`` statement in the code viewer.
-
-   The matching ``if`` statement is highlighted with a yellow background in the code viewer. If any code in the file also matches a query from the standard query library for that language, you will see a red alert message at the appropriate point within the code.
+.. image:: ../images/codeql-for-visual-studio-code/basic-cpp-query-results-2.png
+    :align: center
 
 About the query structure
 ~~~~~~~~~~~~~~~~~~~~~~~~~
@@ -120,7 +125,7 @@ In this case, identifying the ``if`` statement with the empty ``then`` branch as
 
 To exclude ``if`` statements that have an ``else`` branch:
 
-#. Extend the ``where`` clause to include the following extra condition:
+#. Edit your query and extend the ``where`` clause to include the following extra condition:
 
    .. code-block:: ql
 
@@ -134,14 +139,20 @@ To exclude ``if`` statements that have an ``else`` branch:
         block.getNumStmt() = 0 and
         not ifstmt.hasElse()
 
-#. Click **Run**.
+#. Re-run the query.
 
    There are now fewer results because ``if`` statements with an ``else`` branch are no longer reported.
 
-➤ `See this in the query console <https://lgtm.com/query/1899933116489579248/>`__
-
 Further reading
 ---------------
 
 .. include:: ../reusables/cpp-further-reading.rst
 .. include:: ../reusables/codeql-ref-tools-further-reading.rst
+
+.. |codeql-ext-icon| image:: ../images/codeql-for-visual-studio-code/codeql-extension-icon.png
+  :width: 20
+  :alt: Icon for the CodeQL extension.
+
+.. |github-db| image:: ../images/codeql-for-visual-studio-code/add-codeql-db-github.png
+  :width: 20
+  :alt: Icon for the CodeQL extension option to download a CodeQL database from GitHub.
diff --git a/docs/codeql/images/codeql-for-visual-studio-code/add-codeql-db-github.png b/docs/codeql/images/codeql-for-visual-studio-code/add-codeql-db-github.png
new file mode 100644
index 0000000000000000000000000000000000000000..6b61e32849e6736057bdccf5eec023c4d4c18853
GIT binary patch
literal 4017
zcmV;i4^HrjP)<h;3K|Lk000e1NJLTq001Ze001Ni1^@s6`#g9S000a?X+uL$Nkc;*
zP;zf(X>4Tx07!|IR|i;A$rhell8``Xfe1(my$J$R0!Rs=#ULOZY=k60C?N)dioGl<
zxOTCC4P6ycbS;3`5K$~Fg1s-Os3_~AE_UTj3h278d~d#Q?)>+kGyger?##V+0MKgW
zNhCR_HUPQe0%=TG5F;r$g+Y1()By=lfE%#j@$)6D=;#Ol%V7KW^7aNm<n2`_xz<1X
z|7+0^2=n;>Akh$~3G(^55FZ8rui#6h1ppA`yyesai5$ZU^rSFAh!@Loh7woEahehz
zP}s!9upw>+Kuv?klV$***$#O|AwL6ZX!b$uA{L0m0BA8F_Rr1D6F{5_u^qILKrGj1
zrhTWA@i)!1Ax$1HV+bqfq9|&?qI^jXZ~Fh4j{jY9b7X@)Y+%*Ml!nL1=M3|9D?5)X
z#~Kj#iqj&aAl8NWy-1+2hZv<~%EIH7_NXyGpAB;c=n%UIc)?tVjUf&d=R`)R__TCU
zC<kJ=LeOcV0!|#n1`sb6=7+?pY_>}CVpP7++H@(KrQ*-?qzb=sUk_y2@hp}8>r5d>
zrH^SAWyU2!Oo7;{P?Qh}u_naM`Ps2tmCfj)Om^g;jZ_vRkKYR77@;^UNU4t%rb|O(
zRQ4sg`GfPtwq}Yrkt%$!ATuspnIEi~&r`$?=Yq8h#jN;29btY_#Nb>6!r&0)+_7gu
zaeS;w=e?vLC`LIJr$}<5Rra`rFegmTTR`ldUl^+zizgJo1*z1>(<KGbamqOHqAcE+
zXk|S33J?L<AQ&)!4AwM|2eN>ut+%ch-YI)R0S`z)1`q-#6*D*@QPCrY*H};l{(wjb
z@`uI+DSCyV5b|G!Smo6Tq$_$06(h326NqyG7v#WunPQZ9$Xfz<3>ncsyz^k?!+3LG
zmG}R9evtjfupkqmVq}9J8Crvu#1LXIF`O7mw8xEbf7}<3fY(4+-Eb!EJvfhV_Jk*d
z4#GpibwVfM_GHm~=?_tk1)WeoRF#Xg?{k6MKur%k2={~PP#LG=M!*SohkjUi0QBqu
zS+*)}c~%%dX#Z^n-#rbL9odD9l82E4$#y@E)O67F7*dhv`uqGSV@(^%H+!h(NB`{a
zvM+!w_eV=?F?I-R!A@fru;W-AU|^@PdaM;YA;&|j>#<^W4SI`F#FGtmME~$N_+;go
z%y+4F>2dk2>?;sXlfR<@J5MrQD$2+#V6fm9LCD~U`OYI4ZZ2+a0LZ^D%GcK$y5hTm
z&@X=D7HkH<@9@CDz_D)}w*i1drEvS-{KnbNg0G3w0Gu!9%cO-$4wqjD@GYSQcbXwE
z1(v`L&c_XS0$&gaLckah1>!(5m;|HGgzH=irh=JZ9w-K-U<FtUHi9i+JJ=2OfrFq9
z90#YtIdBQIgX`cfTs__31?U5B!6yVkNC*|7A%=(<VvRT=ZU__cM?#PYBnC-FQjrWq
zjL49g$O5DkS%qvwwjou>ugFp4G;#syKyD*lNDuNF`G{hu2C9depf>18l!>xXE*ghU
zL^IGSXc4*)U52hlE784ZEqWTggkDEG(HCex1~7Guj+tXl7!zY-QCJF=j!CiESP52!
zRbn+*1ANX`u}-WP`+yU18qUC-;0g}M<8eMd1)q&C#W&)+@mjnYzlwL^efU=bm0(P8
zB=`_Ggd{=+VJe}RP)68EI6^oJ_fj|EEs;p16K#oJa4#kkvxqZ@ONpC^`-zRj4&ozX
zKZ!&#Bsr4&NKqsnsen{W+CbV%Iz_rd>L$HcQ&%%nb5jddOHmW6%~vZ^+oN_;?TXq{
zwNGSivNhR<97Pt8r<0eHcaR&%m&x7aPZS-BEya%#N6DhhqpYXYP|i~BQQoMlt6Qjh
ztB+F`sn1nkuYN%Nyn2`V2Mt{f2MxBy1Pz(SGL2mtjT*N#-cYGj8)_gmg<3#eMy;Zr
zp+2C#*Q9AWYjQLNnsYSEHET7mXui}UYguctv?gg4X_aXm(z>kGt4-Fn(PnG&v}bFV
zYai9Vsok$b({a^_(#h3Xs<TJug3dEtlCF(zh^|0)q3(9wGrEsx7|oK#rtxVDXgg?U
zY2A86JzG7FUY1^|-afrHy*_<ieRur?{b~B;`X}@|=@{LH&Y|bfm(vf@Z_qyuGa1Gj
zCLFe8Sk162!`>MTHwZKk8k899H@I%_(U4&nVwi2X(y-3(z7cNZU^LEXs?lbnvqrtc
z^@jTn=MOI#esK65W7OEeIL3H}@pj`@<9-uUlQ0vB$p(`%CcUO~(?HWK(>10iO?%8}
zX8vX(vo&U?%$_s!87xK)V?Cpp(PwUK9&Ro(-)7!s{>j4DBHm)Y#eR$XmJ~~-WxC}W
z%O=Y{D>JLHRx_=tt?pQpt(n%D*6XZWtl!z#+9cX6vZ=FqW@})}u`RN#w!LRZwF|JD
zVpnN*&7Nq_w9mHRWZ&+9I(Rr_I+QzHc0?UL9Yv0t96Lr3MtF}9kEk4R(@DdL<y7cY
z?bPK=caCtL?_B5na-`MBl#we(wv7Dh;^C6xvcu)BtFG%9*ZHmuuCLu3-1u(gZr4Up
zM}>}>Gpc^nD|bhCq5Ed{TOKrzu^x*&nmoREdU;AcYdm|rth`daD!gto^_bDjrOfl*
z1n(g4Io`*;Klph16!;wU`P0|QH`{lQ@3YaiqlKe)jDF;2;m7ma=GW=Z@K5#M>fae)
z9>5Ez40sr587K(c8TgcC&&p!$WxWh?36cgK33|u&Vb5YW24lft!6m_MA-W;)Asa&;
zgj$4VgjR?4g?WU{2x|-{gmc4JhTr6vaQK`mPTv@>F|)=rb2YfJ+>P9a5e^a3h=#G~
z*fC>QkG&UZ9Vw2iivm%csMS&Tqiv(7L?0VR92Y&VeB6^5*O-|xEwQxN$+3H4-^K;S
zEswh!Zx=6%Z%WWgn2=DF@GdbpaaCex(#WJ)Ntcq1l10h&DWsHyl$|O4<3q-;9p62{
zV?yzS8xw6OPMdgPlF_7`Nhc<2P3BELluAfVOx=_EnHR;Y<n^a<(kjyW_-y_<{tH2%
zV2z+h=qFqye46f;zAF7$hF`|&jGoMZ%(Bd05nHrT^eQVnYfIL<?5ONr*#kL=Is0?f
za#M4Uigm@=;^sWlylHtI5=Tj~q;rbTl(kd(q+IFFd?bHjetm%+{E=^!*~xyAbrt#-
zmKVOCnlSayG@WVUX|2;8rZ1WPv?#Rbml^mB{*0!X<}>Hb?3%@zwQV*sJ8gE;9LqTi
z=XB2vo4b1+WnT8Y-{!l_Up4=)1&Iq97Md)ayYSIZVLw$DYZgn3Z!Yp(v}G~AShTop
z$*3h8mV7M{lw2%zDJ?7gyp+H6;?J%>um5>qS^BcJ<(|touOO}vueh-?VCC*rI;)CS
zJz70>b?q9)nvyktt)0B~LYaHnmUWbMvUQ#7Bi7e%u-dR<!{?2e8?ToKmG7@Gu2@p>
zZj)fsmCb>hYqpqdDc$mMt7z-3ZDHGLD{U&vwiCA(Zhx{PVMog^%wMW@8tp9I`DK@Q
zSLg1S-OW{ARaJY8_bjhQt7X+adnfE|-xs{EzQ(C$+kX1~(gWat?7;J1Q-8g2kbAJ{
z5c5#YVe7*cM`%Y%YLVLMwS9G&b)EIe^&LmY9BpdwZ8&nw`Pi=G=EuuV=$}}Al5%q4
z$$?Wvr}`TujlHKcPCsgz+;sO$(wS?`<C@#fa?hSW7kchY3#;YSdB5|=FZf(IdXagt
z?vm%F+E$O&Bfok4cBIX-t@g6l<@$E-_J)qp9Vf2@TseI;`0BZ9oNJe^M_%u^5r5;>
z%?UR<ZwYQayPb3U)t$mSpYG1RN4QsVU;BR91LFskzuW)5ztgkxL|1TE>%-WGcOUT|
zy?C7e_;dHdC)6ipPtBfIJ#%|@yeG7${rULk-7h3BKJ^y=q4P(@OS_kc{|x-IwJ)i!
z`<3+7!0V-N4Bzbf%l)sW{^<S(Z*$*%dROw^@cr%&%nvOe6F)xvH1#v-^ZGCLUmCu0
zzup_j9T<@Cq&&s100t|Xo({n4T>wy%0ieP28D+fk{HG|0^31A0;6GvI8BtL@0jPnE
z{5PK62*3eYZ33Y-Y~{c3ae)9GHEO61p4AlRN_io|bHLVMIl8@i;#}}UQJy)!i~GkG
z$W`6JkL|wzY4m)991THb0001NWmrjOO-%qQ0000800aRV00jU50096106qa500jU5
z0096107d~Q00RI300963004(+00aO40096108Rh^000000FVFx009610FVFx00963
zpaK8{000010000epaTE|000010000a00000)jVRW00009a7bBm000&x000&x0ZCFM
z@Bjb;pGibPR9Fekm+w*IFc8J<gAS4w02h%S&LzMcJ&=!lgdVs#N-#ZeJ(wPRH2^=G
zO*Yc5EF~8vn(@EY?%Sugk}cO47nkqV3AZ07%x$E0eh9&)X{xsUxq;xB*7yC_^=-U%
zT{m9$In|{l7E(ecH)+?sRQnJuBG|U=j$*mwv|lOF>=LincU7rsnwZ?nl*m<cRzXNX
z?ilUi;c+uxJ^a~Kd@OPh5;Z+?*pmc9a;#2Sp(#+WFO1Ep&e>wIxVHdV5UbT{r|b3g
zZ}s%_`*StEeA?@1PC{V0T<*m1fIsCVzVF|5a3}xT9k{zlEcx}s=AJ_qPN)vV=(Ftf
z=|(P%t^3Rpqh4-<fJef!Ti9Mshv4?>put2fZ7aR^FszD!9TD_Kf^&%?_*=~@CB7E<
zh@b_EZCV&!Z<*c0vQ&%+HqDipEj4m8AYm-QiU?Y`|D&`PZjLP?Xw8Ehpi&=e&{pn<
zU}>U#{Vg&URzxs&WER+=HY;~T&`Xj#VlQ6Xy;m8Z!LUUHOI`sX*fE|Xf?g67^hWN*
zSavY1_Z_}jCC15e1OVVeNT$en1kLT%F#OwWi72_u4Yo#GC2KINVHn1%cf$Yn_Sc9P
zZr^mwlxO-I)OLs9FcJ|$5M&=nGTHBOKPB|{a%^}}jTnj3$@M+^MXR}UP%jor3nA+t
zBK6tQ7*=wzrTk0<38ZvdF%)1&%)xFNRRK<wn7+9=%Y3IgUUL;BKr04W4jQU)c#COt
z$~Y14l~%%C1;qiyL`j)*^vS$RDTtq^U=BIrXa9?FqA}q`!O1e6udi?PV|4%g{3o*I
zk|WUlX$ny(#oT)=j0vA1#=Pa4+p-A)D08obsE{coCIiSWu>^egHMxqvn~at3<OzNN
Xfov!@Rw30M00000NkvXXu0mjfEmnoK

literal 0
HcmV?d00001

diff --git a/docs/codeql/images/codeql-for-visual-studio-code/basic-cpp-query-results-1.png b/docs/codeql/images/codeql-for-visual-studio-code/basic-cpp-query-results-1.png
new file mode 100644
index 0000000000000000000000000000000000000000..f9abcb1c328d747ee423961d847104be9d0d4cd1
GIT binary patch
literal 311380
zcmeFZWmp~A)-FnLm*5T|xVr^SaCdii2<{d%ND|x$PH+wG?(XjHuD9sk-Rb_$-sj$Z
z`}{n49<mCkRclt&oMXIJgvd&ZAi(0lf`EV^h>3oX2VNLJK)^mgLjphH8C>lH0fFZ?
zd;eZm?EQNp*^f5HW|l@EAfh2LDp0Bly%?z)-@fph`a+AsG{S(&gNnj@?<69^xBT>$
zpMn_DFSL<{s>Z3z2SE#6&Vklv23d}V#;=h+FOOnBgU)GF3U;Ti#KWe^=IG%%jrp0=
z{%D}l8DzwKL+mYQ9vevQ8mO71Dl!QrXMlhk=)@}+Ss&cemD6+5!kryxkbd3!>$59J
z{*6N=^4clB`)7+$6zKC?5Ta4!T$r=lT4X{<kdhUNEC>+f&4$eh&=9<K*o!O%{$R|0
zyTI2fJ$8w&31w$GI!lSIA^D~JyQ7Rj(q|D}g^BsV%uTNZ4&Gn{cYv5O5?u`s4x;iW
z!<OM!e&wf`Hp%hKjXGr?tR$8qpf`Y~-p-&fZ_V%!L$tYjPKbEc`e<+H&ughW*%KYu
z-LnmU?nKQUN!^Wud>uOeCX;9?;HFVDy)+0b+pw=~J?1KpkuMFw9&!h{9@?c<GdP?W
z5q<lEaNbR&gB%5vevROWSq7*yUI!#HJ;qj0#}CVD@pFB}rja=Z%B1YI;qxrm=8rl^
zhO?(MF;DxF#3I>|W*A0Yq=J&ZGe2abkzvZnI)-j%%QRyKcQPcMHqyftF-RhpVb`#}
zbI^$9N22FQyf;w1BCWmkKkuwI4(0et<xxt+OsAPZSeP)Z(1En=R|VHucq4$X=Oy2<
zq6yx%g1os<W+G_kQ7FFMm_<Y(%!!dJ`Y}W4swRMeTyjW*{~%Qds{rRSIa&)u{zUgU
zDa5E<AIE71%~HIn(YqU1<X1C9SPVY!Q!HPg%6;;ReimacQMwDhLJ}2#L<S{CXXbb#
zH%byXttt!t<Rc1w7Sshn=@yWVe5Mnqx;Y7xMePQMPEy{A8f^axbECyQK|k81M+4La
z9($Cp;aqpK-Njxv=K9&)>&s(TDG};-eM5f&Y<2(G4rF}>#$+t<%I<Jm?*+_ApJ{&8
zMO(5X9*#(xt54*g5Zm6jISP`mUKx&h>>|lUK%~g>DaL%RJhu0p=a)iy2Yv0oCySlC
zF5Cj+9OR|y0&;QiO0Am8+Ep2g&-B>}a+wDq27fjn>|4-RuwEy=hzW<03oQAs+jsX5
z6b4ebeeCXe+ak{g$K~`swAUgMmW)o&7Om0-n5FBg_`15erEZ1j+{E4Q3--(O9TD6<
z%XLH{IDU9OVZSllOc-#^ciOePEj*w`mX2!9e8nxpq(#-&L!(=|f+^6m5_~&Ef@Mu-
zZ4J`XOy4&>ja#=??>j>8wT@v4*>Zf+($Z39gZJ~5&--lK`{jqO*&)A@ka3V?`tAO#
z0CB`P9q1F<?-0(3#0(IzEr>(i2ri&H$k2i<SjZ4-{7muSnZuv<HDPo75_AbDAhUHL
zRN>hCXmz<~5Uzav(-HBYa$7lVVJiLiSLif(7FQs4z-(H{!39L2(Z3T124m}obG)&J
zMm-e~`~v+JQcPI>EBuGBo-YYKpjl{Y0hS-CiIsXvdgL}(KEB%Jw<ggNMLNT|4c5<t
z{1KFx&bA{O9a1h!hZ7|Ifq8_|6r~PXE3jCEdbH7$)(xleleP%=D5fbNB!gpEM1p}d
z7OH`PoGNT=gjm_EDvWZVl0K^{n8%PxnRFrMy$`A#&QMFr3M^vxx*absL|Qm~C;M9c
zsd@u;bExyG=Zy+zjIN~Z+Z$w#Pj3Yw^{Bqb%L>nkaR_q2UCXnt(tZ`qLbVFfwxuUS
ztq5igmIz4-z7GlSKwKly=L`A3^p^A6gQ(nFf_xuE$vOTx2`-^J!9B7@6$KS$1$zZJ
zB?&pyf<YB(h51Y;`NPmTg(?|Ct8&)aAUq+AFS${1QO;j*d*XT*H)PQ8LuorBUyJl+
z3}hDOPRI_)AIUA{6%=UXxfet#VCD}i>6Cc!KQ_3<-9aH}AwVHicYz}$bTNf%;e_M-
zWL=WYSHv|ZVhvE|*AgzuNd3;6-ZY(M#%1x51tQU&rJvP;wZyb(;*EuxMOh`88M;}F
z8U9#Z;bei-RQ0H_#d)QPMVtlUWK;fP$@_7;$&j($NwpspBHMmL%v#@y!>xmh`JKNX
zIW02RMVev_e(TCPHG?zdHZ?I@bo;=g!4sh!tDV2Z+sM|)>#61G{0RPNcDH#)e!;zq
zwHP?`eS0Ks9BIsEgb$G!y9<X5ui8*`u#~!e2^*drngtmr8tZ_)#`<LRiyoGKyj9Iu
z>Cj0NiuHyr%aG}hQRB=C;l}pMz<b1PBzkNw+Z%j?iJ4Z8E|<Vlr*-9ZFI0sn2Go#V
z$S7vA#vF%n{&AXd)*Nyv_W@JmC*wC2tj4(msmvGHG{T4mJedijCf1e&)^yCv#!JRe
zy=_x(mh_uCy*}T^qDkZ!)otSRllAjbGZ&O8GZ+0RI#P`)N|;KR+Aq{7T%Mhodpk!{
zo?qc=Y@yp<Mq6G~-Do0G1y`D+uVUsrm})v)Ib6MLxP0Wp<-%de70s>b^Z}m-Unn98
zk6Rd7*d-D<G7rygT&z80Q*lS}aAH%^Il?yeSabW~V;0aezEX=+hdu1At$tfCZ{I8~
zDBj1KzAZ*5E?LA|xUt@}o)(r935ZB!{^2!2?JVN_{oeRmgMcNnjNtRT#CJ_DZm!}y
z7Vq2}3LE4bsT!=AF5^cBvIowWz>kTJIhVQ{`EFe9&~ET9ZpWv4+2@@jk1Iy2GXpZ6
z!@M?3R=dyVx2AW8Ph>8a_m;7B30mOt;9amxu_>Szuy3M`hWqpnjT+%U!hD0ohjHt^
z(i_%ihcsx_Yb9;9BCaDoCB}VE@JaoX@h9b=s{q$egU}Z6<e%)@RRWhc;%#q|sic>&
zN*F7;SnOGA$`-;Gf>01q#)1ROc4in2R3aNO&G0EB3O|F&CFf1bU1wTl=6)c=6~V*g
zDfU>1!kUgxV5BXpoarrd*I({}=%kIT$F;$v|7;^ZA|C%mHs*wmk;6_&-(;*OOHC~9
zTlhDj-b>1?=ugopl#lE0yGrnvd0GtwPe0+JT9Hd9x#)cx%}N#{C$o^+lH!dP7nPD+
zjJiv}>@3*0%(WY%8oRr(eBye76G+z$PZ!xC*Ch2wJc?_gdQ=P4>DmiR9q<__AJ9h8
zsFb^)qJC!~F;#z%cc3*3#u>tSZ$J4_!9Ft7v2%89>)m*RnJfNl5wWr?`_SR&Duuf&
z&D|l7x8C|*p1uSRUu|M$d%eCnqTgZ0Vm75EGF*<Zq?oOl6^-NP&?h`qQdI85Vc)<%
zh2<n{F>enZBz7iNS+Oy3TRDy6^>e~)I}9Tv)w>fIX<s!gZ`BXzus)YSguvloB+?|;
zpNz`r@hM?iU`Twnp*z#6G-7O0t*o)?%_GH)^`J$G)}(Qyq@{jrh;F`E8!qN6d3M!R
zyDP8WOzmecAu2{LsVQU9-8@p_DhO5PQRi`TJjCfr{Ko2Cl+th|nBYDe>lp1=?wGPq
zGBs^eI#;USz8#)`TM`Eqb6mnutSWzM9i=-SGw7RSQ5|ndxp-z*V7gyqr8jR*ZAH~z
zjrtSQ+Pj=YPo$rIK<9@O&LPd>tx=qd%JxzG;-HeYl9GGaHBE_dfzc$7JNbdtGG;?b
zQ&+z6yw}~+7}$!>LCd+0f_J0c7x&U#<a60Uz5RA{5mOOy^RIKeRi2IsjwzSDm-r&x
zcvj{oRvaG(ZfA<ux4QdfcG6V6zJ2_-+Uu(zlzWFu8s3=8EX`-0xZrRtIhJ5CxSlva
z^l><q57X^P60Tr#!nOIloBl?V!|khU+0nP{>^bGgDUxQ_2dAvTilVFX>CHQ*<Ey}k
zQGD_ea7|86)|<Uri)4$qViE1*8WivKsX-WaZW|bDp86E~`^l6x?zE$!Mv)qok2?2W
zvta8`G0pSOP0iyK=O0vTRrcFwf}9CY2^(FKpKt81+sG%#jbsK>m3i#lof^n1b02SS
zwioH&((_(oJbynI>6ECC3wnlssHmdPFS(Dom~7e4wt-(hxa)r`$$8p&g0it+_Ht7>
zTRM3>LK;A#B}C=pePp?0-aWsgztX{J`q;dL+k=nw<s|D}X9)--bz&-F%f1$fY}Bjt
z)^lv5hO>uUir}+>AN(tPdYjmCa_?T{`G!BRr!GRbyi&CS{my2&*?eN>3xdyTo`;w^
ziMB27O5A4OGNsE|*XXvUdGcN^m9zQteK$sr(qe1mVKa!?g@->Lf&f4qKrD?^#f+t-
zK&XIiXb|vMI3N(f)+^wP_Z9A++rqCXK)`<cIVcE7kQoU0zxI&^USIxw0lr?|^ZP4k
zI_MvJATXqZ{jm-9;bqqzTQ7d#1;$oX%^m~<gY@O=m6-h76A%!75U~#eiY~7X7NKg;
zCLe1~!Diesxt-8(ox&l6I{o}+(97Z;4nodk4iH#zEDlsNyXbJj8!hxh8imR-<XREg
zI<A_JiA|F0ot=-5mKvp&&fmqQq;T3BZ&d^&%%1Zs(>>l@-rq*a@WRAip<uBe^<T}F
zYAEr)f<Tk~?Z5O0&}C2drih~1Xi!*+5hh>C+~gld2sPEfcj-RA{})x$0tz=k2q7GS
z#~C8wa`W47vcVgk<;A;hf9>{bD;vBnR(-|ekI(q^Y5&z$dNwE|LzUvlCHn6}{jc8q
zYv=SVpI4HkW}1JT&97npS6j5`3_khUe#IsKx+wqEn}6+03IVT6CAJRw&#sMWKL0eG
zR$XN!!nDe-GyVUy6$<O{c)OkUna(!nFSq>Hfd9X5jmY~J(^|Fs!`sF0D-Wtw@31Rx
zo^bxpZalv)2F!2grZM3|P5lpV|NouR|8XMxpPJIZGNna#@cd^hgMv~QL_rJ(^Uvb-
zABX+F`vt!QuuRSK)A#?`wBZ-??G>l9^ZiE)D=NOF#TQKQ`RP$(Gw-<Jyx6uKfxS|E
z9=}!&ES~GEV7-a*AI$B_1dvt<FepU$_3p?L(<B8cR;5A}v&W}L_K-{RDk3tlcq%t;
zHL*YY#eZL8R;KAnR|9ba3B7KJ4;rs+sJSNk>FQag=AD-x*W3n+9G-5s0}$8`*n5ri
z_D)_&O3>9B?#x!0*q7)C^@~K{VQahXW{2*n|C2EQqgJOI`3@G3p<!882SG0&<c{Va
z|Hl9MFVp0t04?4ig0l^tc|i8O%=6*2Tkl||jJ0U_r_J(6k;YF3^NGBZIg66X31N+*
ziA<5m(k>i}PmBg#pWKgXbBoyao#q5|1JISBD~7l%u-L6NU4TQ(>me;<{q6S4*7Lh-
zZ^zB=@8%@Yd0bAaZ2qX6EeE<T6Q1*e-FJyNy4C7=Yd9pH3)uo2_fX25;Q9Nb`eSuZ
z4cgh3%5iDju1G>cFW}IzEbDd6Z+!LI10j~0k@y~LYc8iWyoE%zzW?Q<e$9-LQwT0g
zka0mcTC`Yo^ZYtEoDN04vHaXruBC;dD*Nq?C>a9o*mB<8NiKy1yDseYqbaw8lwH+D
zl|L3_dIb#ptXb}eb7K?h@fE~&8lg3ToxRjPeZ>HiU1NfAVtzXm!{zZZpRF|S{Xs?0
zXr@RIrjAEhj)7Bl1U)|pDt<MYWc&!#D@pJ}yCSKPB^ka)MRaI<lwDmBq7<ROO)(0x
zk<{ti+eba!V3NppOocy}-1HL7a$vOTox-R22|X|58giP>`l#Fek$B^EvIlc!e_B<~
zl37Q#giS%~z7gGP0YeI#Uv)0;B}=+tW^O+9yxojjjn%M*$xZ$!KAT=FLEp$Sz&!kJ
zwdm&(tow1JbHU93&-KD;X*(jE=iNoGHaXkH<MlF>cEM_UP*6X8bHm>LwDRmM;@D2z
zelhOTNf2N30`3tm%7Oj;;m;r>-kWs8#-VcEla*FG73_uF3J8WnV8_)V?&HEc#})gs
zmn8s9?W~Fh$)nuA&4}OcQA>$pdOIWoZCS_bugRmOSd@iROu8*TWCb`K6Q8oyu+InC
zb+A}W&r5eQK6eostA53O0#=k>d-%RcTl3RpNx9V^@4cm7#USJ-qgXXAr&!4tv-R6;
zonSs|kGtJmGpDN_Hz<4u*{gR_Bb*U(9o=EK6i-;^!1%I+qzI6>4@PFpN_zbk;IG#6
zG9!itZ;if<?%rR{6Gdn~^)Ddv-flz%;&wX6yt``kcZPmhq?%syR?j^pdzF8l4L>!s
zWc-QN%~g_(h4t<IF}I4X=O9#~#_4vN_YjZ0yzd^kvbO6czes$7Nh&9#s1i=chm*0r
zf)WC-_#MsbS(7xSpL!O5t+_34iAPY1&wtKa*W0dzkaz9Jz2g#)T&#DF^xiLN_NqB3
z@5k{n;iA&nRAFqqnzIP{Oy5*9YU94!0&TeFX1kr@jQBnf9_IeI*}FIWi;{{KD<t|L
z>$IlXWgRbp$4RSR^Wzou9GQO&@;k?iQIVkK$0KLo<u5Q<<)3c2x7I$>Yk%`IYJiI1
zSPMRxF^CMX`ngzbxH#10b1gEQ%41N9d%PK;2(7(#ZxpBH1fyZo==k8-^zCu|-084t
zIuO8Be9G*>`L9{`|J|CbjO7nP&=rT06yfrV-;-McrXfEFVkc3~o)FB+tk?ZvVqp)0
zx3$abymkaFuVl(8J*!!xI0T^Fh(r-On|@(a*0c*KeK>1uhrraFF}%3W&q?HB2=y#u
z>Zhpy7w%CviiyD$jvz!GdUrk`OT+w{-Q<=yf3B?w-(kep4!3hE1z0m{WhG5_<_Pn=
z)Q}FF`-9BG4R*^K``z&m)yc|#7JKN`!a#ebCz?$NEWKEJ4`D*D-R!tN6{mbqBk(1U
z^FfB~WP8YBS7kM$n3E1v8MH>S0d|2cdcU}yr4G>{9gkBXud?yKHC%qOk)`Qd_k%JK
zj)#->ipN#<Qj=6yGKRb*P&gW7s7HxrJ(P~|dgtT7)(5u!J?E>CLH6Z$$zFH6v&Zfa
zP7;tyUr9u|EchUK42k&4_s_T&fZ2mz!SmDcO9xQYaH<zR_J<`6$PNRG!XqUo&FgNY
zK&9lsc@5h*o_N9YdhyiJZ8Jut+%Xw?6_`m8-o1VxtPeMh(dBdI1p(YgH6&kV>$RI#
zbFCadiSX7NvKWl?M_{yk*dq0dyU}_|v?vY{kQ_9s-10(jRNG#3UJjp4;_|Dw|5b2*
zZ87Y^I^2NdxHYjXWNiskwbH%xp7%n}4CTtO+G~M_>ydmYA~SB!kJs%l<+*xBUpC%(
z$<+XPELuSt8(5(Y!iRLFEf0DnjaOmkH+t*4xoL<pytl_U>yQF6)WtRWs(JyN>qxlG
zkB3WoGo`4YR+!WeD~x(=*LEl=OKz9yOiej2oxL5}***~HadoRfStM;LI-W|Fm+_Q8
zCL&QD;^kBkIdq>7c+O9|3E2(h-Dn=}m!Bi}ItnYt#1T@Cl;OY`S4)R^pD~9x)(6_i
zJc@tuApRg!ELL;HmEjBkH$nT6;L^VmGt_?*ybBx(DVxdN?lBse30o42`u@6=4$Yc6
ze=GH-`5*}fK)V|$#Adp(tlQ0z^74PPKYZ-{e19{K0(N&;vmUV;N?qIo$e*apLmUPi
zo6!p8E7`+*&+jZNM}?)BnvqZJfFj&2sfb6N;N~*qgKj0)gBXpZz2@A2?=(Z~alPmq
z&elA@)c+~Tx{eZZ9r=qr&<>!y_A4IVoaFL7Qr0~%nXFB$wEE+E`SXw=k9=ss@wH-K
zuzjz`n)WlJ1&YuE**_LqG@}_Ta^A8+3NJZt#`yM0+!3bctv$xI9?jpT_8%9fGME2y
z*L2R_Mx(}xOC}p-R9*p`k+y0=em6go6x?avYT6P;EwH%hZjVDByHzr*+^G$QoDH0m
z2X&vO@j_m2&MbFukGX7G+udlGzQNX|X5*X0I>j+6nItrQ!--(~xkOthrp~v?S@&a|
zJrm|<_EVr<bvmjZH{Bn>nWS9CozyQs^1i#A7%%HWQ;<Y?I)3)js8PRqIQ+TXH<cUy
zprfZde%4P<2o|N9u#yeT3$_KvX|2_YVO}_3y_n%;@9ktphKx_FK6XSBV*CLE_<gTX
z<Mq0*_1Un5v1l(vMm#mptE*Q0;JW0zI8}-&M~FWSL4$u{2(`-&xSS!Fwf&)1qIh2^
zq7jxikp8Mj2`jtS{rbp`J75~MsA_P6PTFBlcLj2ZdD7Ur({wceGa_>~hfU-BYlNPr
z`^k(PtbpY6!!{q7zu-x#mg{EB=cebG?d69p_Of<Ve`TzO2{~<n>-WEAly3y}3v@6^
zaa48+zX47)&=(Af4Mtn=h~E2Ff@8%8jHzS!sruqrQ85u{l={jW2<!_CPl!r`jug||
zNtWee4PHZRs-57|M*D>o(yGpjj_XynwMv{%(XK(u;4n*67$B`S#<(^Ob{GsDr)Y>y
zs@B}JT25OD&G2-hBWMEn0j(02{>$LKc`>lppjSX?xTrjeTv%SYi%+MA6fCT^mC4s>
z_Bw5pKdief_6CYjAW#5!En*F*l+-^iaGcieh+e-F$0t9Zck{k|uxh-V^3@fumhyQG
z)`^C(RTjoIVU(huw%B(0*ERUZq@zgZw}6wB$ButZCLoE%1tvexfrc&qRB_S<7x02O
z>7IdQO<?m8qrhWQNhM&ZG43<phGmUjv+a5~d#Aaf4uG-})-Hfi<EMH*-Rc)~uaw^(
z>*TFMMLDiXnQ@6J+mplquB)Gh!>G`jg@hBCUxd0m+l=mG4VSNSZt~f7My4OLJV)j*
zJ^*J=MUoNNW{93Z#=afa75~BshoC?cQ`xE4UM@#SX0TLs*;p0nn=;!K95UH$U~Y$J
zW-;G;(X2>>!zkufLqZL6)bs+-^?gLtzqVrSxU}D1B-u127_+;*{o)0*bNB!O`DKrD
zsTTwcmRY$4M}j)czU;v$F@$ZB{8a}nmoq5WKwgg=8dTAAe=Er*0^2&NP<0dDFNh6T
z&R7mHNHuFN$F<w3438J%P{Q&#ws<xTr^3lO70Pw7+(2)`DX)|cK0kjRq4O0&<6=fP
zzTKTF(s(CajBq~Rb>DcsMC}$fZ}n3PzA~fe1zARDCxI5ncRM*PI!?P-wK)YL5o(`R
z<=Eq<)Xg|Ye6KCv`%%ypA#>nNWqA&Ct57v-1t?C)1l_FtYC27Cl#UNRud&_i3@0oI
zDD(XZUg?0-^PF~|&X!j%sr=0Sb*p_qQ$*5vO3qa@?K<Jjd%h6AFqYZ#wh#^LT2ef(
zn^i^%(^S_j7zvuP4>!Z!Pvdzw)8&R`tL%jy#2mqwy=#g;@LX1W_0l}A%p4YnS-F~r
z?G9%(iB~>>M7QmGKpt|R^^mNyI_u$TE@zitFS&PHY+f{+d?g|)C(!bKygbEmuicD=
z(`<gaS&s}*+P}lwegSsXy_c+Ao7J}f2Ji4;E;p9z5x2jZHR(2cTD@!VettT2Ezxca
z)gE6TJoZI9;y&TpfIA-o!1qXn$?(I0%cD1dasu=auCrm`O8AT`J3Wz)@KJPyRv*iH
z-hBS_bJ>e~N#q7VjiC3+g%?MQ+)Kl{vj&ko7?CBajp|!p%U;S>L_v8<n|#0BIArtj
z)1i&`XYB=M(SY@)^$2c#TivHr#1h6Pw5y<d<^ZFSbb-~2ahb@9X8_c9v~t4jZ=~5b
zQ$p-BrtL=8Cc7){5}@_}Sk#%yH^F8$mV_T8;fJw@B-r#EF!>^Qf_bjm<@q6&@g(f;
z4CY^&rEdfggP4)-8ky^z!6#a-tn4-^5oSix@UF;$;yQJ<b%5IS=D?A^kh%z-s~X$A
z{M^7G`xF5coyRyrcI(E=>b6N79&&!Fn1{$WX4>|VnA$FS%0@+1Qv*2`2`iAC_*|4S
zJeLlmgcS1i>s_AMsldv*acG5bH_SZE-sGkF6NX5tgMwEw%-QIjyoPl^n*-qG=Tv4y
zf_EH+<$YA)esQWnD>&tZD6$_+V%yq!Dn0M7tR_MzCjnk(wnkA9kRS+?{Cxw=d5lXz
zhR0D?2bP<)Ectxn1>#1iY98Fk<HqnZxv^%pVjMwb!jJ0(8|A<3{Zv82m$Da|l(skG
zYtR~KsT453#n~-dDz7ItpMlt~a3bHd)bo|3BKLO4dUhZXrkp3cT0SWL;jGO}`+8DY
zgI0TdD{fR6XOMGH<}hd5>Q>ZeDKnB6hg-#tr)o@`T4>qhWDI}`I{tBUXF_%wf9=Gw
zQ6Si%^88>a&uJcKy~gvi<^@Ii!i42_Xo%(0xiV>3cnVkzA2Kb2e1*j!-W-<q)2*ia
zBbt8%R>GY$_aRzOv|_O>kC<?l{`9S8$yb5US4w9AM2QX$;KB<4R=@2O%Ej*Rv*3lD
z&H;mjr%*3RWp)OtKw)hVp%;g()|}?;d73wN<rj<Thbm8AA2M&kH_OIN(q6pd;0lZ&
z62Oh<$8s<p=DCIkpFoQ>9Avv~WPzaH+;6<wD>$VDlc8(87`qjkz0h_)jFCcJP#zXU
zmcz+<duU_cJhe`ii3OH?!tME;dS2HSr<{FT;>nRxlYFv&cvvQPGaxeHI`FLj{94U?
zcG*MYGI5JLq)@!1`N<8w_zg(dFq60B__eRm1fxs7_Fi@7UrWlruAnTEuTCJt4-pIe
zhHw^j<^07B;U%E7DVm?Y<@O%pB#$`iG}XQxEeiFu1*<$EGrc}qG?)ZFpza{pL{Z<6
z1@!w)a&PeEBt~^Bg{p&-p+miXfKjDRA;UKnoS1OjhF#-JfG#N&x@EfBG+sJQaYjZY
zzYvAYO<uX*d55o<f^IKq96W%371}wwWLEpAOQ7kSAH?OLx$qBa)>mo{09Xi5-*lrt
z>elE+JBzGZZtx(GCJjv)TxYr|=CGBIkRmJ1cUW02vb^AGH5)^%8qf5FiRm1m^LWe{
zc8#rhEe=iT2JrY%#q~#Zg{+{C^5kSgV!e3%J#}G;eQx%{JkIa<v<$*oaT<@3m&=pe
z>=wPBAMHMw44J^V>3z^1vcM+t@x@D|cG#P->&CB;7T58*HF5!Z`Wgr__~MA1|GAl8
za!pr;!iS=OFhQQDIP5q?hA^l8oe6L)JIUnnTmcC4MdAF*o`@JOFgpa_LEvOjF;sPZ
zO95uvWdW;=Bz*bU&G$5#g)KQNQ>-&{`~ZUOF!RPXgv*8JX2oA>$^<tb&8b7|e4M0&
z2Y*qX*d0Y$^ZDeCDZ~1sq~ja_qpZLgPqjBM*Lj4<IhXD^HY=E_w!P}C{)BU{Ak0yS
zD12WL0^F)Q5FT@yrMEO{ZbQ?v{;)b+CcnE%udJ;K>5{{yX)Do!y3U$<YN*6j+g)pW
z8!C$;2BCH&WncUW7Vh|kdUM<_hV1h*9oc$zw-CUqwy~nBc}7_GP_*k%9dyfy;K!tP
z@&9<i;KmxOOKo@iC4{lS1+#Qr1qX8gdKmg_b**sYX&0^m5$wKwWAEj@&hy<g|HxGR
zaT9KmE`O*Z)olvRBq_CRT`YM!%l%v;=_0BgZVY%rw&(4``S3aqW~%*jgvDem2B<|(
za589y%d+ir1pn)!@0Mkq7^fA|kVcSvl*a8At&K!pCJp<=_4+yMl{)Yn@#UsbD4)YL
z170d?XvNK74F3<eSjQ<fa(BW_unPc}c|WWZuJe#xoxhMTfDqUcwIgc>5xAMI5X>jr
z4`DYumo%L9xe-WbR^PyXOben>01y5O^SL#IV!>N1JM)14{(ULIeSEn}wh!x5+MAj1
zSJCpyIhD_UsnEYP0?9g1{LSldF)AOkG0*y{gP!rcJwS0R&i@Vo8sg&XRwzQ{O5XYJ
z=UQ{tLe!g7o;RyOc8|dC7}>Am#DvwhOH{v)uL0^0GUn(iGdkB>HkC6+;}k~>u=qqU
z``X`uSX6L}vW8WH<J^kKdOIR_!_HUKhG;Hl1|El<XKM9GHn$5^B07?u4v?H2N$|F;
z^otycd22*pzBp|+Gd3n#UtDlf1Z<|a5rUGohywU#hPp$(fSNL|n&y+hqR*I;z#+2;
z@a%S=wGwi(jDGcd1xax`Ans5t)@lP!V+(My?g&yt><na=4=qx)f{=L=qX0B(3c)V~
zBsM&-Ozd&7z#&R-kkMLyw<@&i7}$I9bVVvWsMh!3UX%3<R1B@EXpoF6j%}%a+-U_`
z&Wo&0RQmS^xR<c~HFoRz-56X|8*s1W9FSKpH>>)Zwez)cN?+Aq5Qz4}67IGLLy^Iz
zq*~V>#tl?EyveM<P^;mRzdfiJZUgkj*HfDIgO;|iT&+Bp6AH5?86<}#_Zh#6B!4!j
zKcp4GR*Lf)h`C`k$5y;SXtB8LSi|`cZX6?UGeppeL~z05Wvc<K0u~=iQ8n$z>o1li
z-|It^Z(SzB^pr)z03P$@J7o+ogD4=0G+)5foXv||)s640>14AGF#q0S7?=p+8&dRQ
zmEOA#_t|}b!jXa?{}HH(EN;W)^zDHNpIeE+W%0cqPEVU4tTv%wJph;`!Mbe7EAU~z
z=%;paTCr!6;*WLs;!}myRH5vEeKXJiiiN0r5s>kx`(r|=^zTxjwKb_S0iGnEmHNts
zWYx<+$oA}Q{B)U)=r{U<QAj|K0SWYhpFAHCY&OfCtD$614Z7_G5|@*?Hs_3eTPNej
z3NXNDF_krE(sVzpI%Qq`IxPM4q@tW3fx4TDcHioW*W_FiB&W*N_muOv_JoSv2BZB3
zIkK(n0MJ@}-I;$8%U>k!6~s4wkz3D9i#cLKbPCdus{M|iVr7W#*;Bp4GW#;|BR6F3
zKqGZ)`xJr?wu`JLA;x~*Uo<SWt?zB7Rn0wX*lg+ja1)Y(-G3<abVHV8dG=9BE9cJ}
zI1&m9?q*A;x~~I^X0}VmbVs?JeA~9ubZf~?SsKh`D9!c!aQ-5yeF56>^q|S-!IHRT
z;j##Uuqlc92Ug66jw^X6?i@fk+av34fo=jHVaT}1lgliRV4Nt)VOZg>Q%*OK-lO<t
z<Ii6#e#O}=O*(E^FAi~y))2kLSZ<v^O*y&x)e+7=ZtSDqq<nAW+~7OE+_ADKvHV)W
z6&%u8On{!V2s*7YrTtY51>n9`dSmf9cJ!MVb5NHtu3M4vM|rHUw}cJRd&uviKm|FL
z(B8J5p^0|X-L7O;((P}S=#4*Ih)!w4`XY9M9wBlclv?V3^I*%2CQWoKfH~?l5$Hq0
z5alkCgJ%0~>z(z@;-C`g_8$3Gx2m!swtG@VheyMz#pl(mLn6^i7|naMqtDTIwCBMj
z5vH#jqUS^f)bZG{7tf6VVX7}R^+lX>U`1`<dw#lZHt`1dpUA?thcP8ng#9yBOe~&r
zU5SvaGL9u#mBbh9gcdgdGBC`HkFeBh5pvHzRa3{}{#!FUJ(xeqL|1=<a7?C3iIVlB
z(i|^);O9kt>3+}T8v|IrF^A)&MlwV%S-r;#FbVr`K*!fCg9U;?@?%a|2#u<>4`==D
zs50-=Eafs?0jlGAl}zZI>UmXr;93^qK`ts%Nkz8t?)QF3CglsLfy4(5=h6t7TTf^r
z<Fwhfo#-l%O!RW`bV|^n*za7rInF3ZEYuTWAD&kH-!EU@v1!S!Cd1)?dcOD}0ac$>
zNJg?0mESP!WJTa7*JJF1e=s499mNiS7kPosnUWtUZvu*#Gw9W<DZ=KYOvuXpfr(VW
zh)m^J7>rJJL+(hY58^MsJ>fvKO0UB~cr^dBfx8>{ETpc<v+dzcKO0_vZ_#k8dAZXj
zNM|OELv}fQqNJfT4Zd|?!R7pDm`PRhx<l#52nsAxF(;;$!{|Xxe)9{Sm^39>E-O&g
zP>|*{ViR|+-4A;qQ@B-)s@zsQk=LU*7KJDx0b~+%)1PY2m$rCx4)4p0u9px0Vlc{z
zujC{NcUZFWJzf~p9M$cMD_LM6uO$W+V$FALO2$!D3h*$60p+tQ`-jxn`TRZ?pAj!4
zAK#2f6+I-joxCz$@n;Ei$X+56OrsRXDVRv!JJW%V0Y~EOg*w9)EyqbEgT@EG1sTy-
zyoN?gfU17>xnh?xC;pA}wtw|mcUp7AkTMnHS3-wu+m<h{3o1?7u5~FiZN7zvv>H%R
z-lk{EU-MC!k?REQKPy%*I<0N<@yJ9{8lc_R18z}JH-S41ZD^z>eXcusIL5<q?~6XL
z=uQ0o3UI8Vlr$`gs@7N_0gU;PtvL~<-0EEA$H)=TBrt%fom(g_5s`FdyP}QhfAZz<
z05Fq6ya$a6hn&(8$hqd8z6pihcV0A$3b<Z$>&j*T$`danT{UrJlKk&*_OI0qZKvh8
z2G53|s}3NOITn|Eu;!-}^J(74i;5AT(=&`qGEY`6hwXITg}t59T-|cGBhHRZ8hdDo
zn|i)kmr0!0oZY+~@`a<F@BmT3X^jx3ezeOvK&+Ad*T;CFgFe{413J0Im8!PKX=mtO
z<HH&CYNYprLB*lkcTb2uM~~HaQ9~3Cir=FInns9C{SnxLw<~E%vXF0vck1(_VDZ1b
z7=<_8PS6B;Z;i`ISyg7p_7%?XV-htYH#O<A>`&z{&+&D~TEHeq!4&eD+%9(Npcpo}
z4Ij7In<=YyExo*&D-sY;H~nl?uK;r+fB<1yu;wIAQXz+?7&oz>q4O@^12A38%6kn+
zOKhTI)XgA|Ei|!tu)#oMchZIU#{p*nbNL?JI_BIWTdP9tFOXH8rbQP8pjj>zha<g@
zC+(4@)dbiE5%13OjQ7>PA3}76VMkdxytuLLK}f@?D$Jt*-z(%g{w%)<KuVSB;6pic
zHFk?Ey*G>0x&#7>B7~kSQKWFq<EQS^00_Z8CeI2rY^?>nwz2W@$lC)s&GDa3w}8GX
z*oV;xLT`xlBWnX{frg!5jMPdFs{X+ye^9Lg@m_<*hmsKQL!$?AOVB-xrpfj)VL$Cp
zO(&hLtt1P=_-z2kTCh+cT{G7-<sz$AjZ1THI_GwFHv&Mk%c)kS-IEg1bM?4~Bocn%
zy+NtGU$r^@P5J21)T)@soX$XT?N%a(E#fo#A<#Kbp<%Sw9z6k@2@-VI{C2PrQIYNY
zpB?T`)=x3g3eMGcjBAC_(y=q=kWt~l>uZwc$yQj}c6OR$2M95J5i?Z)(PlL?Ph@`g
z`~X*mN-A={5%p}X>K#zyb-dIcGiX@ZM^#|R-zl6ij1e2ZGi~E<DfSeUYH5s)>hSjM
zP3VwwKm9Uy7#8CjTq(;C(pYFfe-g3`hlg?KlgP{)&p!d~RGz+s@~_-kUT#b6b}}m6
zk1_?6`_sXn%M<p_ebq5Y^6CH!sE`ylBjqZ507RwJhi@$z9*>Ga-MMLATwi>Hqy@tq
zlDT4K(@+AS5OB~^-S+ZZf(HiC{lryECaT4YhHIHq0{ddFm%W=8*4Q*+`Knpu?aRWM
zL0S71R^-aKHn&D$^1Giwzqokr?zFcMIGAVH7F}9UJERi3gtU^%pS(V%<iclk<4CE%
zs!g6=2_a8q2;QB(f;@5gS7PpEHJd{CUeyf^n-IJ#t^JRNn~)zVFe}@-`inHo)%psf
zoth>tX$7bZ^~qdF(f#7(d!g>LT(b$zo1wN5BqnWkJs_>cuzhOi<;_48fG$`e6}4EG
zoqeJ$PHDkpZnqq`S%nxZ8kmvdyu=AfLkq|NzP?|t7VL))ke|-tnhnP%rQvbeXf(ZU
zH)qWOGVAdW9*qqzDcH5=!5}9QnN;1=!s2qW;v%^)Eq-m)bJPGN2)c>z$~Auq@oPG*
zkdgsdjA;h3RRSFE8*8$qgqf{$j#?KFMfn3thoZG?^6Q{I%fBqPUnj0Els*U=4}Ft9
za(e`%6fCZE+2%|$WnB~+XJZOSs6YWv#shxgd(<MJLZQ5vrVQ2#aZ=Ttk?i}0<K#o$
zJKuvUHp9reBMBD5mH{udjj<aK_obUzx+dzPowfRtN5FR?z5Q^jq;MmrA0@>WQeb<|
z@!T%XdbqLw8oUZnu)E|2ZirXDNzjFSz9sf2#Hz7tTK2jRbOut4OQj~O0D4cfX*2tC
z^uBBuHvp}`2}hgnN{UQM(hI~Ew~n>%nLzPRPg6W=eE@%p^3dk$Km|Tf0%!ocW>F$s
zlmOLx4nD_LN<e%c*2F!?GTz||K4NRFL&uGVp9;N^228pNIrk*XybgFK5G^2{LK@4K
zBE_Jvr~83lB7Y^vBPb)MNHY0-sbpCjr+b+nw=kOU2pwjJqUEFb_GlTTjNdSaGHCo*
z3zUOoroWs$DIcsuzNBnr8IZGNnN}>IH|f}a!CsK`UzI)!P@bji$RnfTr}ngTx~ED?
z4myrmT;e-}{Z;B3`3^C+&y_Yn4|F)oO5!A%=|149Sg93wJ>Efp(gGc_>FI9&RGpzH
z8tF*ve9VCNJ;OBwg{DZ3{BB)7Z{+PI_QWTmui|iE_rK8z0?29G0AK0{vThrbXz!=<
zG)4(T;m<VXqRHKShCXJ8AAt;#VL}cTOJ*rNJ{QXufzXew5SX6;Rg8U!Ud+E4S@Z(n
zsA$C)Y4-07x+AR03uinDy})vh!kCA!2;<a@6Ug=_ExOc9QetM00sZ_%f`+juX>_to
zO)q<R%!#!=2b5$OKpWF!S%2yWI5&ZRsC@k;hxHthX(*pp<W^HFAd8_NGoB=a)SnOY
z@xkM9Fj%p<(>NaIGVHrn3*wWhmp41kc*NTeaT);LNza-4&5P%@!@7NGLI6yCj%-QE
z+rp2RGf4CQHeZ^K;ai-)u1QNhU5=O%SCc=zpwkqkKs#@jatCvwzUZ<ZUM66@WuKWQ
zDQPxgi&0oLmB{!d$jthp8Sq*py97-t3rd>Eq$`F-z6W&>!j2(<EvRY(j(mG7)HCmX
zkC<|%cptzwr$$2TQv$7yF`X7p;|R50bZ~KHo9ZEe(58gHsa^}EW(m`-(jpoOHQ;)@
zU|zd>aQP~{WRO(}WEz@hor-={`jdSOU4}q34n>!&+lY7IuChD9Um<OYu%1_g2(8f?
zKHzhaDyqLsgZRb32u{ORvFvXsQ3~XkT-gIaKEP~JIMP9L4hWa66XM64QyPYeXKS7y
z2rzcS`U>Pn??nsde%B|pY3pe!QX8WfYUq0Sit<^oMVWNE5&q~4Q^V^A<sX$-cF}Xz
zi88iIeGMPF=|Q7H@d=OVxvK3X8zPkfY$rS&o6ke|w^XO^6~@ZlJBaF&Bn)h+KJ?;!
zz_33k9b}vT1O#)q`it9Hxdc?BS-yyrImxe}_7ebhg=&DOsM^=QB8e7}vbH<3`IrUN
zo}aB=%&IT}>+}PbACwoD8r{1OIA78(s(`i#DxkCb1c|LP_h!EzIB234JF2Phh*A?n
zJRG*y4GDDMJvCs3J1TE}4<hKxN$4?&BlDLkV*)53W)i-97bR%&xA&u=w8_0yj&sUs
zyq=(~@(cFq50@q0R(ktVDtv&YSZ?8=z1`-nXr{Agx9|Yj?^y=;&fn#7&Mq`)+~Wu-
zDkgZcr{IbD;grgoZ|`VRww%pDqg)Vd$?M0+(>%tq)PA@1@TaPNX+VG38d(C3Lf@C2
zSmNHi;!Xu@m3K1?`g0iwd>?2qD-aJWhMzl$2)u4qj2&P<t&2nhp`Pa6SMPwb>Wk=T
zQCusGx9bt7<rLv~b4n8Kk*Zt=IK*I?t}#?VPgTzsI)w^7A8t-xg^F>Om;wS`DWKk+
zuxUY_SF`LI(V#I;%g?wt%yg$<$llq)rhMyR%;mT@Y9!A|D<a8&K$>gobmg(^d2PRO
zD%lS6N8L?#@_j^_;k($akna55;RB2fs$v~8Az`k@o3+olN@;-42%7L-K}_J?u1DhS
zVx6PJ=L!)}hn-Ifg(H-qM1+t8HNafO4X+XR<f_VYJQv{WoYN-|P%`|GF|xbY21jq{
zkSY$9{1OXs(q4PG9Tg!AcPw}eLKH~0VeWb5OJjKW_?zdI5YE2DVN7q%a_%kD<CiF$
zMphuVrx>$0#+iAdPC}b`E{rql_INoRDWIMIUgbvxKo`61y;JRZ-t$Y-1|Vut?!TVZ
z8s|qIpr_GfMp@~)|JsTozgqWMm+9dC`gr+m0b|ODxMQlgRpk~*tAwHUTBF1^Z$!~T
zBP7@8m&4d;pCM)svL24E`_{imNB~kpgRR_l<ZWdz8+libM+k(GR)OK#uhMl%Rsx2e
z5Jsh-@SKP2t69f5&5ylUhCt(gAVnOAv-t!spkY;|l-zlVHZ7XZ00KE(1D*#+kerP3
z(&}C7056%{(SGlRJ+8@Tzu430pBceLg=as&82-byNDO({vSJVe>T=zUBZee`<BhE*
z+LiAB-%CKsW9Ss6=EDd^_6dP#pEf#X^%|e1#B0sia*3A+#%W!23t1mfmC*f5UR+Zb
zdJ>4BvanWG0CbCzRkV2`g7Q%SS*ws%mf5yI7*H2+Bhf9#?Q8y{^97*p>H+kkrvxXr
zS33oCsODH8wphInV0ReIpH7=Z1vKzvEWjB~pE|<_R`763IPX)%i@FEzQ`gf+o|^8T
z&TwhZYea;cK7#I?H4knbk8XfHs|L0Cuyr1g)6qWDUr$q5My0nt>?`a)#V+e_N?@Y}
zS&A=!t+B3ps?&*nF`6KD$rp(vIQ{DGNy$)gMysLlH#YW%S9b>^sob1nxjRkA;Bj-}
zqTmI1;-M+fyDo9UEZf~^@)M{H7XYur$kt_H<}$Tzx^4L)Y&Psnkp)IVQUOSX<5E-f
z(_h1rP91jKfwWpXAb(;)hf*oaZ};f;_YLCmxH$lrhy<7E-QmoLK)Ff-qmKDRB@pCi
zGuzuvJNz^a-iiH3SLdgOm1OLU*4s17DRzPD1P!Fpu9Xx5eRKxQ(UUO=`p$?~VQ3O2
z*=Q|-P+1cRA?Ipb`nIWJTV$Z0p!c>H5=XsMfK-rWW1G|%wl4?~Y|3i_*Nv|XA2)h#
zl82NiT>|Z$uCi+dPhfln9DIo9cV1ZT^txv13QmNtG#=VeOmB<2#drUHs)EATD#z0$
zItTEVfC2LXtU3xbKeS3l1bC8L+hvuXXbdO<nEs~Ff#TgMdmDsy<Z!6IT6l0J<1a3Y
zw&&%fOHq5B!$8JLSGhXeG`Z$Ja>G=k`}GWbi6bu@8uP9PlkG}NO|n6*0@i#EfN^=s
zNN`g=?Yw)R%a#mXmtkEiS7QKH^nmo_5y1;Y#b(3`7cMpC(1j()f<s!!xx7}-0bMk^
z^MB~*2`?$zX8^}Rza+rm#r1-&=53l?@a?w}Ou8&&i@TwPUp(V-c#a8b_)y}L5O`rj
zZn7_dx)~@W!W{<<ns8@vknFXE#OWjuawAhC-`}tMkkXjQ!a;J@0#VL2R<u?LT&qfy
zN%7c9t0R#EAnSRG^UYHa8KwO7S1t0#B^8%tA4v`%7pmLN&*-Ut4>*Lu*YF%(exfx&
z{0txZ*pi+6_8-ysqqjB*YnN>SWV~g<n$Yza!F^=P)I0+ZS_GXZmhc(o^*RAeLVj;c
z2P@lAKmd@RvLT~gcTrf?Zto>e!*h|UF<~|xNxyN|Q`f$60U|@47EX}FtGvhpobYV#
zeXyp7z`e6AT#nE;{0(5|&5v$lRJ5^|O&W5?c#s#)k5jhh@{Dhfy{_wBN<y#Y06N&F
zZc!8i;XLWKuyCLFv5#`S5gXv7Jkmax=e_9;fDB@ConFKK4Yr%ZdZC7+hb%1!;LDuJ
z4r5|=$Z1v6+T4&hYw{8=Mma{hFauU|<O>|KD@{<p{u%p7QH?k|QtSOe_RX=)RaLEE
z3R*`;U8UWNqWv?m|8KzHj|FPV>Pv^fp6@l3t7cO~YXt;)Pa)s7k}aUw6f0^p*ItR!
z=0>5j&npo7<j?}bzfSe$)?PWSHNguNK_D?2#^;tBv-=WZo^P*3iu-+?fX^7Y=Yxrq
z@CX&VpdzVNwNMI>nxvvBZ2`4I<Ep*}B5SO8_d9_o`w?L&G`D4|fVN<}aZ>HVxDfcS
z{E7pGFJMP4>s<xuLi+_#(I)rD!upj|hAT#X4Wcw0CMF_r<Q4B9C-EhB@achaL+<(N
z=PKX$U;yi<w**9r3AtAoq@ZxP#A9H~a}fiiX>KjW46Vg|WgMV;F^Ak?G^wV^W>re+
z_I@xp9n3uZP?E6$ysNTvp?vi7ZqJvnF^~wOE$B0?b4a9Aa?u)3hjA$Gb3dQ^k`N;;
zv?;!n=myBV?+<#~E|IWRsVT#>rJxcOp@ZuH5;#77Q!~W14-Psc|2+zRwnAPHe0xHV
zX0V^{ELEag5Q;+BP1*<m-C>B}(v0fPjd0VG;B%*Q8{yQmh-oU?pT)Tr700xHFars^
zY_Y!qxpYWh2#k2X;uy%Dyze1(MPon)3lH2E`Jr0v=#CkmW>&uja$UW=)K*G_NHX6Y
zVuD=M0I-1QHCZ7EzVhTN62}MYzJ+bY11H^tn;te)rTb~+l}kdAZJRC#s$3(iWk1Mz
zE)|=+^;5SP<uk+>GD~L*Z4BDpYfCvZ;xC&(MsmPUCQ;)UkeR}-c|#|;ff0gUONpa<
zX^=yQ3+le^PKIsveSIUOE1lnV|H+36l3XmnouHw+rkL!#J!!yz!mZ>od{<9(0j(h~
z*T$FkYv$m~S^&QmN+OE?49|<UL~r<3JR7jxTOwLoJ_2tA-?KxaM+Z%nzbav&f9^@=
zHX}-CN8)?e|5i99x-)55s?Q^KY7t0Tv;z`Cd}^17Ha+C!_lde@yG^c#_sDOK&&?|+
zPU}4^!0BC|vk~ckNc{!y{SNB+gU~qu6uS1f3dFH8Gdvp($|VeV_O_3)W7TWtt|Y3)
zXSbY-$ab<S@RRT7xj-9Cgu~s~UvQsYho$uw<$K<>9L7vV#x<<S6k->c!PE8bZfV!w
z(sbS=B25HfrC7b;N!uJFWh1|k$%q$dvPKi&!J<D;QoB%kcNmh^0m16^T74k55OyH3
zBBPfMHEY^Kq3-fZf@dg!^I4j-nNENb@UFC70MjY4viFv<RUUrg3zBw5iU)4~;zf@u
z{k<v&EMxz!PX{XqewsQ?!w2^RT>m#{+6txk5w}2!F-v_^5E)s3IUps&MLH<uqX462
z<Y;K`C&d~owyv@=o3M#w`p&(rILst6W<{^Y2aANgakD@~Mzn?VR*3<F4Kv|tx_8QR
zq_{@_*b}YFAZ<R(Kv(C8^2{($tG!mtmpXB!z2=HhAO73(iVVBZmDi5E)4PV(#7Rig
zGo7&0?+q`Fbie7hN))~~CIn>-)v~bX>0vc3TOpkyHGoz7H0DThPGK3h@`mX?OWsAt
z_g0gSc}Ki#;AdqoPuR=b`q?0n2=IU`&rHU?0=W*>hCUFL9vbe;DX8Twy26RtH}!Mn
zz&MIwQOT1a%hM0gCGeYqop0R(#4ekUB}B`R&Av=7WY=b}aNWZ^zCa%Hr`*Zw%O5=2
zQ=Hce_O8JJ_Zn5;^kpBP0Ep+N-{1ToK_u&j^jbB3*j#DfE(*c|h=H9tPw7;%*o9iz
zm4pp!+^&$uep~&lThKPJf>jabq(JE?*}3%$greXcj{1GL@;8=$Rvp=x7i33zU@GD^
zbg-#)4@l5XI{&*zv3%X29d@TnmWMm7qo*@ZJ#Z(D6@OHFd1*{aCi&*$(C+^V98t(>
zrjr=yQZ)q~vd38phuw&qK!LJCBbpa8;G6;u0Xnzdh#d8@T*fy?z)u|F&}W)2FkaNR
z0+P)eb{F~){zDW+C?}mx*rSO<^bQ32wmuX2=71M7AnZyv&=S3@Q*O<8$A~Wp>+gMb
z87jq`$g=;9ICj0gL6tmKe_xp?aykm7275OVz7p_2<a#GLp4vu>&tuH|<+6KEgve7a
za4MF7dVybnVXWI%!j~_}4SJGwChng62L$s0Eg~KH%EVAL#W*!bhaC+wlJFACmhA)x
z7&4S&UQXkzaS|;JkmzMRKLyYQK2%QLTc3daX<$OX`>mt!N2o(at;}&7MZMYi!N8DJ
zyRNIngb?K#-1fx01KFwpUL#whZPe1-29jP=ityBG7S1{a&EtL*R)VUQ)k`LPf;<}|
zKlP?u$p*;T8C?fYCm4_sh3p@i!(L;n##y*P60Vkfo30(Rvi!N|w3-zq9XcrzhJ}Lo
z?xaOr#cI;6ih#X&p1%H|eDw1*+I0{WrDfzb;k7>&bgnA04(TD<)anylLM7Hl&dg&e
z(4cL(Q*LXob-2z8wwwNLJOY=5-yZbw-sbf&p|V?ZNRv#o`5q9t99#v&H8X1!FQtA2
zUGo~0J_^-*hB`HkSiAKm%l^Sy+CK;(pqi=+wSeR(>s5_H`icWjt}#tbY1rTca4fav
zGjLf=Ch_N~IN8ABaj0i~bIO8-f2odWdCI^$%{vPtK?GR9+2wjZQ~^(rb?io5AibhA
ztV^}7+g-Cp0Awg*t3A<s)!ruLETK}w?$#AnL&_gc{Bh#d2KW$tFfPy8$r1g3IqdJS
ze`T78A6enI$LnNw-m~OG(7)nj94Jr{wNm^8gZ#k{#1woAHD1D$c<AoHz$2hvLZ=1b
z^iqj!1XX{gTYnSb`9)A?UgBnf23MagRw7h;x+(z!3W|wSp=V<up%1uf1U;bDOK$r{
z0;)hCOly@$*%flo`F9YAE4;<(=Of99Nq!peh~#BOCFx%->Tjo$(IPKFiyjL+C?~lN
zaC%t4)pNgE_>+wP;Xip<f$}|^yuUeVN8*0a^8_fbZ}X7q%Vc@6oGhpLfTy->dx(P!
zhg1HoA_g3Xs~i{t{_UjQ^53qbub8IpKs=+~#m=bQ>bMNwAqx(m`XK<%6e2BqKYQK)
z*&MJ;;-6c2LzY3(`dW1kFqy*Pdo0pNd4IoZz@<~9I{~^mI1>+Q%>_X6KLHPTaY)89
zd_RLM%>Os`#!IKH%mfB?7<`=bKdxRMTmz6<T?LY&bUOK9bdT4~&-gbM1#J}5)0*~D
z8dgJx|7*+ThCTouvO6qQV*gK{HX)L3;h9*5{y%TR-!91im^uIE+w^>3&{9&#FWEcH
z?I7T<p8fu}0RERD{fCqOH~Trh1|CtD{=)X};(Whk!vEJTsh4M8&DZe$*$L)F0q5uF
zSBd@44r5Bipf;|CZy_B=rzQB)dQsgfSH0p;dEN~7*V9S=X|n!r?nrtRw8IQY&i}*Q
zTZUELt?S!>Af*V>Eh60@-5_1k-7TSXgLH^=x6<7y-Hn8lgmg*gB>!VR$9~p&*0I;x
zYrlJac|YMHsM9%rV~qR0uj@L8Vzzi-4~{ndW2UEg%vo|=%V2=bF&9DjUk=27^0EE7
zmi~vo+dv6pdtUL`S#F{p3b{mtb@k#6INZCyvRE|x=^*;|)8+s0D_ImcVvdi<w{<8+
z1ia4H(1>Xlh*7?#Y2GBs{%>pPpFAV~^53+fWY$czDeQfU(cP_|o2y-KYY2=Vn&(ir
zUaGUm|Lv{#^WB<P%Mvv=c&Ck0|92D4zkLq>*-Jgg0gw37*Sdc&!T+-#{GWd>89bZ#
zftdgE5B<CEzI_k-C~24BoyWiX!T<Sx8ikD49;e9l&$QeB`49fXcmMzO#`q5GE*d!O
zJMBzRIPOiCHojwLdOuQUwM3(?^5-M*KP;es`6C9;u`R0q+p29?cH2t-k5{db?<yP+
z$<LspHU1YNg$yViGGlzFvf9>zHverM2_ZheI{0=>Z1H~KpPU1~W~hGMCF(C*?PC1J
zIrHboRm$+aww5#Meddci5MkUjuN|!EkSXnam;E0-Mk)-<nqZ48(krB(L+_5OVyVp`
zp831p{(smag?uBJzMq5S?!lGE4#{82`al08{~unjP(If7Jk8~N`hT=(3;D{EeXj)x
z`E(<RMXCSnT-o-7(*^mat<n0KgUbJC<3w>p@hwX?V)~C?Q5?YCI1MI_{AX`cmID%A
z`xLhx)uqxu-?J%Md~Fw-<cuVKulz4Q)LShC%9~n}q`usLQHMBk_=1c*y)|f141tdX
z6-Yt4cs!041ESji0HAXZe5S!bgQ9GPY^GA|HT}!A{g-d}USNS;p8tIDuMncYK5a*W
zzF_#tm-e9(*$|o-bXWpvY!wHzuKXh!4)xq{f%G2K%d6x}jQhX%e^P%Zfm_7UG>Oh`
z126Pqw(h4jI#}Y!JbzjH-**rIcp+Hc=Lt#s8((4n$ARF8=ZU&A1f_3PjgY}{5AHK)
z+8oHyKCU2Os{LK*XURN3NBp5@f;lw3C-_~P>T&%JHJ+58K$F1$mijVgkk+0$y96P?
z-f*TLt*@=$Ps(vVZE-&jJNyDHrbY9V^EKW;cQgu0Ez|u5bvo3`)$jMts~G_E4_a|a
zm2?uw{B%Ln6z9F>Aiq}u>^y-p`ab-i*x$=MJmPN#q>ApbaWLB?g$5mtzza-VI0V6o
zmkS`Z;Cu58yaL%<!CMd<E#7e$7U!8XPaZo21`k5eqO}}>KNk$fsm(dDsDJF*MYu`8
z8NVhC4T+x9efx7R`j>a=?_0#%H|<Yk#ongn3Q0USc(q8v?;Zf<LcDLgtCMps<p<0L
z#7*)4ItzZOGgSa5R1jzh8^5j*0fYvgfTydN6IHHsacP|v-vYGV1{S5$*oiMQcN)N7
z+Q$s$e7*9gpqoHZ;5&Y^Sg$ztI8nnWw4xJ*E+B*7BM6nT;e{t~$Ddo@tN&D!a3HLj
zl>c(*?qzk+`U`k`N62l<-0#3A&IHXl+wuF6@}ArT!+e(Gn0s}wXO?P%1B{|`N9Qy8
z>R!WT-?`zD3{rp>&{zlzNf(sQ<;!cQwOE)#geXU$Tn>FF!uYcGyCh(`=-GujF?u?j
z(k2&xrtS+P?&mhU1uzDs6C)f&Gsyx&&2>=c&VmnIP$bW8fq364=D*+3d?P3T-lor;
zpJ#oEzJ9?T*e34Fw_90G=*b<R-usna!uKdpI>xv=BpFD49(Wwq8fol{j*~rEX&^hz
z)(nR6kasJf6Vm<7HDh7MrVt_Mt&wGH&`R{79oDcg*Bzlw%x%9mdIg%Ho9wxtv+L`q
z%$6w1BxS#bwwB=>{UI%m@c8^q5R4rK-u<arMatSfcXi$KdZW})05gQFLqk+gJ~1{~
zBstGpJ|fnjhPHrRAyt_Hs7%cjD_nX*yZNCjT}-mErlh1EzmGpa$NxpjdmM!9e}50M
z(h;EY5_1ohvPumu{I&*`1)Z<`9NYXmQb5TAK_o0&u;VZTLPiA`hX(@5dyHOZ<O@6f
zp@l6br6+FdUEW0pQ|m+PIoq&G`+SiqPuEtZDy(%gE$qSCFxOf*ONb@tyPrWvL&XRz
z(G>53@Xe48+aA1oI%FXJWN#B-DB<X=o*E3+&y45a(Yu_f_unc1Ws~~nn=1h-*nDTZ
z%*Ei%GTid$uk!m>+mUL*M+djdzzP!K0u+r$z5=;}A7LL6)^dVy0irk`;}e4vj{`S?
zA9O$TyuDGLOP@A5?-Kx)!UjD|2n3{RG#0j?YgN_iOwv5slNVx1I}vRH>^4sTs08_s
zpf`ZGaA*lW<fxbH83LE!;1~*s?=cXzPqo~ntpM@Xs^(cCtY7$MhDTWthH2yzsNVsE
zWqY%Ca1N}r%8#NsPI4)J4%e^!jpgxO5q|soybi}xxMK#Cn!I*wbsY?-*J~D|Wx+|*
z>Oi#CM(}z&+jndXz=^t`V>JIHTKs~q^ZU2+yDqQlt4I0hj?8HojzB=L?-v?t1jf<$
z!UJxuw*5fPi*|m%6>Xwj+B1sETy*})@R$WCr7li_o(Iv2{hhip_@K4XDV;Dl(5f4c
zo^}JvR}>mA+bonKGbkpX`^NOw!{G0G&0l^c!~hP{A73|lC=e2Kos&Nd(ok`lDDX6x
zqyzn{aG)xKA2(81{G5c_Dc$M%HHw}zAqm$9At+8{66*K#l1`4&_yX;L0F(jMAMsGb
z{!Wf_v1WjkC!4;i|K$ppGFw!I<C_EzBEGD=L&l^GfF6Rju{^)~fX+w?Y>7KZz;?r0
zES3xQxUa;{rhhK(EPP)uhYtp6`@Cc=Mzt&_g#HvQdWUy=wzV6j52u+A;l$@4yL^h*
z4Fw~q$Jx|xXdf&vY)?1pwL!xoN9KxI&td(N@FasgUIQI9LRc0+cI+%ZzsQrm=;Oge
zaMcA*00H;^qQ2${1#M9Jdf>}#({V9eo0!~!`9%=N+At=Bj)`iE&Ca2jXgn@a%9rAF
zdPbocAoXuPoDkb#0p|QDGrBHb987Y<f)BT!{TwDd{d~PoQ<vezOXWAf1O*jJL2@S`
zeYgUKu`!9y1lac%^~Kd&vf)JBRpX~%Lv0&BJu?9r^ir;mmN)w@A;r-nq36!vaElV}
zHf@7i#A3>2%JpRO<T%`km<_6-(OCABK1`z11X7<{JFc_uT~LGtHhANHs2P6G8mT@{
z5&(nb>Mckpm?!3cagaNfCxS$K?lq3wUi`hNq7;K=HDj##E>bDVwp9!<xRT}r`JD(?
zv|Di4VeezfIV+4t>w`ef*C81jf0!%KTyUDbyaPN6!hV5?3D*6Z$zIu#nmcG=W4G2@
zTQksb4-J4_5dzKgwpb<``*kNoptX90L;DJ3pVow61@Etn5v=Z&0)0^$)Sx+R%p&0A
z1==bhYpMJ&{7@s$3~YP?P_g;VGJo+akI}P6@?U6pKA;i2rv42iRo@qR?=FfL?u|!0
z(gl}zUDcJfuDv%~hPLANO2B}tylAGV@y=SVezPt;VT^h0iQ#S`rJ0@7DGKR;<bs+n
zu8xB}(?=WcqYlI`6Jx5S%lSL!8@xFrb6pniK{`D2Q7E)FbMk6i*H46Mq2BrSnJd8N
zU|T&C>}4_Fg1*Q0OB&E_)&x!;l&umku6<r2upIZ_RX{UW=-u5}Y{a=L9!rWN-ZR&l
z&=81dBnkiO!_E&+%Dp>H@Gm5<J=B`~f>Jn&xzCDr>$c4CtD#4(xBd@%+g_`lhsb96
zb3EokTCRVK=>t3<Z~#)dB@dic0~=8=DiaY23CKUCT)6u`osQJ>z{7UGI{NhPoqs$S
zDXZXA#KJ|$^Bo7w;*+sAbv(Wcd(0dSp~mKs88@Uyps@km194c{+wY_Lg{(kqwH6Hf
z@#PU(dXADCC@YOBFvfNq$H5i~=9(;)cGZ!NZy_^n_dmWT+eZY!l$KUsJ3h(U?-a?S
z;W^GZ0gYo|Zh{uA0MrmV`CB{^lrpy2TbzrpU!v+6b$}<H6wt@UfzXWF?M@_7IFY6R
z62m`bZLSOcEUiH;4MjmX|1xU>iJJMKk9YY5#BjndgNf`Vf1^up-3Z<vM}GE;y*}T=
zy*}HS+`f&J?}qw3`GVJUnDx03@4HATA8$E$EBqP&g(ZGol2KR*LAn)F)Am;(jzR#!
z2!ckcZ3R^g?m_8FfTS~!2&x9A3`B=}_gTZ>9xIqpQRHjMz`Lf61no{Ru}U{nz3p$L
zPj=g0PhleJ0)enjP&{U4>K?!LfA+yPMKHKG<p~Yc<-m0@Yiz6yHEcEjxWVdce`FBR
z?G7&>QfLwwcpoRf32GmkG$-I24WP<!ec8rk`yMD&m8V`yAv2LBg}~z^75gy|N{h(p
zc#iaY4pj8jXkD+pr!~!c+VS9gkluYQ{URF7G0&)g^b4eLK0HYqWO{WKx(CYCZw!LG
zsg#mob;u1b@u;zzp|0#8Uy}Rj?Yraz^_zZ=*voNXi^6AP0gh_76+o6KtV=Et@Wtod
zuTjRdy0`(zlTW@dfgQ38Zi2YpqkvHrf2EfMlJ8YstF<d^-R7k!S=A-JFEP)Z>8e7j
zs(}}~9Lhm6-TMc6#bcPA<u;#-MQIP$HsB&#0dN(jInUbV{K7B$bw3&PPPf`bXGzkJ
z0KTP@64u)@|44InKKbDh3hJ_x=OwGFOzY9&(4}PIn0c!$#U$IvYvm^aE2n8p@K08|
zFZaPTd|}-q;4lLCrZ~#%yD=oXALvf@*jhmG6Rg+b-ZOWb*=5e4{|<sS=tHT%vy)Q+
zjDBX~HDk_Kg7yiTW}&H_IBQ0M=McU2IAe>lsgs8{4mN7v(k`*Kkon3QR>L&WCxLNZ
z-$q$%FaMHIn4>oCHH>`Yjo6Pm?IF++kR1x%KU-&)N8t1;fV5SsFgvkln)(F-$4bL2
z-xjI5o}1~s%0&aP$8d1>83|UbHU~a%?kT>zqX(q2m16;lEi(xcH<NK)LxC;bG%I4S
zvvIlIDSKOvl9dP8QC>)yVMP%`-R#SoR?3e%AOMLBypi^NKJ=IP8%uP{s91h{ZZ-`6
z{^+Oi)pzHKFIu@pBl|GK;1ii%2tKaJB!q(bbgl9)rxVZvy7l&?7)l3I{pMbM4&Zqq
zv)pW|X`o(RMe5mcbN>z6$dvH880hBpo15Holb78D^<CNv1G;6{V_@2~oYFM^)vnKq
zuUd`FYPca|h}d5fE+1a_z2ik@bl5Li9&Mb2&QW)5YnB43zVC)z@<@)7Yli`t^7PhU
zcenN{M~Yk~u>U-vebsPY{36HZ`49sk*YB^28fAD7C`jTRWPci12@sYl7|)U8UT_6j
zXG3BH4|9#(ms`CE5ttM?osdlLpjPpp-tU6tzrj~VY0~H`{j`4g_y`Tj@txdF#_qVK
zPpVB_X!`18voy(^I$RKnf1*aB;)4rV@UxnYF?A<SM`YC0q^|Au5rJ8hWu_pl@OwRf
z(k|b9hee-CFg;-s;tfI_7DfU1Tla;^wnbyc-r7%W+pSbB(#qAX@ee-(S4*4J(eu5P
z3g8szYp2fGLQR&~{w*t>)VXHZ23B5U17DlGOdb@&fEUnb)e256^G9!|CMf%~hg0t4
zh5ck0=eR!ERP|QOUpi<ddTlrW7{j;jF%$1)%fw5k${B9`^7$S2Ce?5I5pOg17Cp_c
zY7|^C-!?jk8i-aZ4PDY?KJqi`=hD3*?!4%?760(0g9j2LAh^TQ7Ct7h>_n6FsxACb
zPaqR0Tne#c2CaG&lfMsr5lJ-8JU))WlkD6i7!M@g-hBI@S)~4ZcA`qF&40pqjxuw{
zNE{-hRuYEoSFWTTZ(>t){t#;P({_i?Pydfj8dL?m-aa29-nuTm9pYe?>!>tYDau86
z6)}*H3<{Tc(l9xp1eT6NIH>n1(YoXG)@n$J$UAJ{&v7!^rcN|R+xku?Ej<=e>6{~a
zypQHqiRgSD7)#anjb#LeEZZiHD{b;k!N-t4?NB{6?Kmlii$t)dXKE;=nRK;8=h>p9
z3wNbVhWh27vPb@*MWLoTl5tP6uhp48fP)g>xPV=;^U&Mnt>~{o5<4H-k?tCh=Id5$
z!EZTN@ZsUU1wCTv%`x-f0YDwiedo3}3L@hW3eNO=oD2Hu$KFTs8=&g{lpT{litkAB
z;`=UmKjc-l&Y=DxlRdT~y1p^$3($QVq>V{7#>b6tlH&0ei~{HAQ*vA;Y&Oo^b8v2l
zekG4`pbuwFMagcQAPdHDQ_fG2<J@0<<$#&4?|t*LW%8Y`4QK-qd|zaPfd)Ar`26ft
z+{A_7mwo?Y2dYq7EwHiPW3+;DqM;<?Cw&u(`QL^;=|Ufe>1m89)87s}7Zt}rNiXMS
z$_5c_Uf=cr6{NZ>2fjduRVb<h;H4fcxy*l)@J?P@YzqxHlBF9D6aX8tRJzjuYqvK&
zAhNL}1)pp5lBVZcrVeMqS48~?7~OIdpm5y<531F~>%D4HlXx;K41dIm@-#%Y%ngwA
z^56o@o-U9@Pbtyo^0(%I!tQViP60x+M^^PWp^bfO=Df+&eWwtl^J3zZ<f-_h$G0(s
z@$x@Sf>v+6a^uy)=0q*Nv7^AMr*SIxd$zOV%;=f4QLJI7SFn&zN>!Gil}Jcf>j~<8
zgQD<e-U0EIo>tR!5lL1uJ#gp4XkA}8J|<hyFDc?O%cMj={|7CKNr!DS>CT(6Jqc!*
zAy<9$x9#^c#pEnAPjvjz&&1I&lau<BROG(+`&^d*(Uq)~)J=clI3<g2Y0J@($|B%5
zLtt+1;nvjgHIQXP4z-7oU8RJveiJ6=^-rjlD?O{%y4aW!eBe&=p0_krFI`WmvVJr|
zFFO|n;fo!Q*i)$b68$t}CPrdu`5E7l(6kb$MVljNs@Z%AJ=GxAN4nA+R03<w^;a4A
zVDMAdqJ-%wc(T~<tt1Zm2SI<&(JT4Yn~;mEgH`WdU6&sMlEd$PZhqq34mkHKja)ij
z>r|9NXGc=Mu${EEv`&cQ>OMd7eb!ue`ykcZq;k;qaQ{7@tiYGYv-ch(l=H>rj0GwZ
ze=}{MOz)pRyeYg}eGsTJIn@N*L{+1YCY9k{xzkK(krW-TYsAEfMv>pq{GI`gAKsWT
z(r;)4e)Yks)_c<mLLb{mZyLA$V9!c(qALVLxBRHNoO|Z$5;U(*Y}O(;bSs#2@N~8F
zVbYV-aKt-mG3}Dt>B=YJ;k^~Z{<&sZUnBk&57xc@D^ZdMg*;ikW@lh>xRS-?#a;cD
z&<QaUaAg@iBmJ|1{FgI`EFs{MfQyQ_jYIRx&v1VyiavQri)OUiXUg+&d_3q^uBVV<
zOXN9dC~UCWU-uDJbIx~z30De#zCUSt<F=5HM8}yiclOt5@{gh8%Uhs;wDzExoCGt}
z7zE~MiZFw`P4QaOH|IthVB@q#Vr;6I{W?3qE;wk-1C$K?_uB>Rc5jZ2(wQq8Kv9_*
zelHyie-C0G@j+<*9z7AlTNxg<c>GO{TPQqpwykc*^vXcFlywDQ)3w$ahg30^w7*I2
zHU2QZr@_R|8gmSjJ82Omh2LpT0hKgtD-XUR=i}{Xj(KXeFUFg|XOmXcCo#IyUpL^k
z4;@heLq#c9rh}}X#B4Ai7tuJcrvsL4*KDORVd)s=bPK@LRh=sN9U$Kim=iYvvB%f|
z>s(Vl>M6e1wreWf2Msk1i&O*5=`ZLi3g#+hG+g?5kB+m1{lgv$Vb_UODDd=cH1jNz
zrK1(sh?*PjejrJKYe)G><2ef9=o2OrLhV!8ww4XvoO0tBDeohPWrH7mi&Oxa%)H0a
zm&rKgdHzBC#Zz&|_WW!f*vEl^mpveVtf<;&?l<bH{}#!4m4^x2FN^CS{UPy-8E7D_
zu-f0WKMUNSVByDx+jCvUFzB`t+WhQ}z+Cy1$K}-fWr!sxxSvp^J1WgPR!71wj@zY+
zP`Nj6XDO^Stpl_a8nknGGS%(@`s~lJx|JdanF+0#$ZrN*61E6Z_mm=nFJJgR0^<gU
znh{`yjb*SacIx7?8(CZmgylM!+efnRND^W}=@5g!<Y~1jSh8X3Eo1RXG1HW@B!9cQ
zr?B`EQw26)v*dUS|ExHb?S(P(s4@J&->$WfnKAgH{Y0;H(x%ZJ6W|^}(3-%ZzxF`(
z+oMHBrq%!Crt|)J#o(o4YdEQ(fOq}z!xPx}p8E%xKKZOSgC{ZX$pshn9u(Fuzs$bQ
zWcLeny}Npdd_Y8|Ev@_Tp7u_#y`3}Z`IWL27y@b=y<l9<?IZQ^Yz}_Yo2?~Nn`wIQ
zv#}6z*#UNgWK-)coq%6;fRo&FxNz&mdr`UszW*Q__&XWmo0UXKZ3|3SA*vi;NE$Y#
zt(3Y`$uBr`&cjLP`FXO^PB4CqbPK!Zz}UVl+OHDQ`p*M8f0;aegd0J2v?=o&;!S{o
zWd_l?!b*SQ<fQHJw?!o_7g|rr%g{nQWPtlDU+t-$5h)7qDa+UQt-wUaG?xqx)RtMu
z=M6_A=|IKGQ_Yl#+jpe+ZhZO&4Qr!UXZJUx{dGg(zK?wHclh<&Vs@OScQEAzAPSm&
zdAB@w*EUi7xu?j)vNVoUl7SI!jvr{~L6F3h=sdOkt5INtlVct~m_Ld}1}TQ@Db5?G
zp3lDjd-P2j`NQa&kCKgoRo3gM#P`T=zlyR3`ocJaxB<PzR#9<TSi0Tm-gmMKFc?Pb
zBXW?%X^zv+7@JlpS)+2=vDU{^Q4o4N|7^5+=S?P)qjjD!bFNPQt<T+_zUGmVx0m0F
z@=YLd$m#jXB$!J}cuJd}dLAhi`6KuW#Yz9nVNAxOCNdXrr5Uxp3LdS7*Zc7;YM&w=
zc=1g-WGqSih0rx(QG{)JP=wWgnA!B3Tk!*VC*`$F6g<8O^^=RJwmRu@!t_wo<t})H
zKfr_hnle<^4IQixIX3yj1g1qCT5<KQ;Owsk+aSf`;H*<NpTG|ELOq$KG0#>on!TM;
zxsaSr^6U-4dXb=7(DkO&w$?V~P;iN~_P)|v236DTq(i2#1=_ma$QwOCfwDE!Q`cT8
zo|Xki9trI+pjqbkrgSaILH871;SK#Y-YN2(_|SN%7{2F+*2&GF5G9Q(O>LhY_KmmX
zkoL)J%wg88^AN&qG&?gkEB>a;pl5HhXHcVO`mLkKonZ8GuykJWooz|Z$VHhls30#H
zw#4C^aF%|qlHgy$)3{>aJbX5Vj3JH{-_c`o^?7lkJY;VAC$0_$`5>LG68VqWJ0xRH
z^7N3L-po&DZn&qV9z#9UGg!PeT#@bXP<*9nQVr9_kDfg;&z;brtW_D4_;&|PQVqgz
z`xLUi506H={a_|E$JlB@nFnaf<i8h~jX24hW8DfH$F27|-p+nG%#NgtD3JRZo&qID
zo2MoN)@CQrmoPK8co)YN-(`R1ctS3|koKe0)CeG#tZU{sQ=biIZ1Eb8Tjn*|x5Fa#
z(*73AUbO`rMok<laRLB{6<rIdD<s}!xqe5>r_h&jnABk(Q9E0(&AH^N+(q5W*@H$H
zF5U871obhG;>KmV^E009_Mq_`sssIbJ@;D>-Y4KO;!DloaHpT{s3Q4kU4xPNH_d9F
zTF87DI8Sqa1K6Luw7DbCEZbWcUvmC?TxNL~MS-JMjjpsk#Y|aD$3ZH(Z9rI#Rn4vT
zt~^<OxUV0u=GnD>lJ;Pyrw+1fT&AoHb!l$!Ggx%+f*2v)-fA(6{tjcWI|U|bjD-z<
z7FK@{p#D-Jf6wiYo8uIgo}Jfph1sn?7IWAhDO_nRoxVADVDyPWZK}HQQmoR8l3bA%
z5{_v}64~rS-Hh0PCWWse2+&_wX%Lf%)jQG60C2FDiQ)6E_72`ciOE7{1b#dyY|-(W
z42*-?)#bp|TsC65|8C$00%kW%_;_Ny#c`iMUE-(D?Wt<5s_hB<2{M^(a&O2Y`@Xk{
zqZga_4Y7m&bDURj#Dhr(E&UJA%;!ga<^j;KPQ|pARnOQXU*wHeb(H!6ht^mnbd<dl
zew~s9AWq7eVHVT_Q`PI_%*+mtq%36V$cMX!&exgCMu9@ot>t?x-(_0w5<C%eohzjL
zYjfNn5^%Bobv+MW3myZAt@i*P5vpoQF8E!>`|kB(#)CqR7xj7nB{M!Eep-+NN)^iw
zB_tyfRujqLU)>%_;f{!$o)K0foo~#@Mvbq0?g4(<dfY`zMsTRvdx3nd`9(UR9TNk#
zz+T$v+g*s}!H;6~`8SfVTyx<I-Jo$!_u#Or0!&KZ!vp)kUoBvi&Z1^nK4#xCI&zgE
zRSrH6$|PP>#a9NQ;kku59v$#a*u3TP=br!G#}WgE>r!81`6t}KXkHYJyFm(MxP_ra
zPyij=%uNV?sr6Lm9?@gkIABtRW6oslH9jdmGP{$8Wlh!!vS3jCtB;|-3P3`-R<Sy_
zPK-*HhyA<MR}~1@f2+i9@gBg}Ah4lvMr@Ax0XbtVfvpncB{@-E8|fA9PewB>Yx*}q
zM9j0M$U-7mKvYRll=5STX8dbbM-FmM;jN#5YrnM#{^1xKwK@c=zZq3ZnS_Ghv#L!i
zZGV)Na2(a7F~PnD7&fgc8aNWDUlk9jn_Ig!&>DV2x)AMbV_Irx&=isE6f-?^M`yHh
z!namMidaQ+l>2ph_7FBvKT4EfBBPq%vTb8T`34Uuu2p@E8-!kw(6+&_x){rhSduPB
zR%6G_A#!&8(O61#4!>W%63iq;qR#UmG-3jM-ubWOT+sQ2=I~3g?=YI^MT_P3H|fth
z$&{5EXNoj<2U5@`a^X(GO4Yf_DGs;ned!^W>fX#@o%`xH&AGNeY|F`iDB!Dw?N0(F
z8+#gztQ$hY)uH7~s{*O}_LnRC6$g=(44C~>2@WQ>DbNC!nYBe~)K46~+Qq>+5Y2hu
zL`lruIvr+HNC{t#=38+PhS4t+G0OwW$hWE0qOJNfUh1|E`v<|wa07N(JF>U0iOo?A
z$gPNcpKVCzmP_3`=#&9CVHXPm6Nbj1i?Lzdmv^9&#MmNe_CfAkTbc!tWGy+&O2!+p
z7sQ8mpiHTyb`5=Obw_^+AwQjdJt?bv%rbRao%YPVjN=pe!!qZk=IFAEtY*~wb#>Z<
zb<O%h_>;g56yFI?c{hgBxje2*$&P*aaIHVbORxy{f*xD2wqj1TD`JPlmVQ`bV(9eL
z(r*<jKQV;07;_S^*LCX~bM}^L7#(6`l5-ddi>drJ=wj4`huyi$bkU!#7+Xl59NW;-
z*mE0AuG{1MHnOz$a|oRo{t2vT`@j6+YmLqfr_4dEs>Dfs2hd=G%966wv`<Jpn=8J(
zPDq@fvBYN6j(Vq6XN~`Opll)M8JXPuSNCn|m4HAWESl3rOPrn-9g|G2$9WXYJ%Jlc
z2iZq+6^5eq)eN>SOO3J^bffxbB(qsl$H3p)Bmw&Pr0s)sYL6wmzVt7+aXw%MEQZ@k
z%e0b7tj<Q$66D*RRuaKw9AjAj*H>Mjf^;Q47k*jM@5}l@<t_6PU=S$TvZ<{HdxX%2
z&(UUIxedn&FdqdTd#7df7r8}x=p`RiMt_u6@^+QaaLtJLmAhi%ki&On`jW<$UfGv-
z%nQLML<*E$fz?+X;>e!CmaZB$BFA1}R*?V%0mfITCb4C&IHfy%`}-av+u?M@-0phS
z{?6K&y6NHDRLb~-|6WN0WSeMy%U-@GWqornV9bX4)aBmqEa175dU&=zC5oj2P3kc3
z6Fla2jO&__uOx=ZP{RmzzfY5}q|$tC$;pC(c8te^!17Tt{ez*Uxf3en<TSyGFiz&W
za^dT#aFk|6XZOwb%dW>Ps*3Fj12P)a;Hm$nG`}Nqat1W8MrWPUunhv7>Dr`hKRz{C
zEBoY$mBhjhf5hNJ-MgLHj}W?v#8<fmL*71_Smi#M?kNL2reZcY8~JqZW#^KIR6jP1
z!bd7H`jh-CUbwR0WR0keyUDfGWs?~o;lTxc{Nsx%0_>&&-WGHI2S7~i8NE|YXs)rG
z6u$?vm~U?NVC2NIc4=-ZRi8`l0`EElgwKN0kn@>A=ENuu#^JtQ@n1k%b8&xV?cAf|
zKM0FR^oyP%TjC5{(Xg|RA_!FkJ0s<6lMe3zJ5$lt7>`3>_h<e4hU8wrj@{*;EjsGn
z#2|CH0ORPKQz-RMy6JP{2~w-Hdm+7-ttp+ll#}p{*EBwK5c~D)W;i+>xIoID8lc$%
zs}Dka?%;xcWu6BRB%9nmfZJ9(txbUCC=TRF)n?ImfVY3NS7u<LA~~v!L!&B${#Q6s
zRv-6=UqV|4Koe$^_8P`3+=3y0Jgm-!$m{%D<4_8seD?fg(c<Zy^5*fKQ`HH}tK~1B
z$-;Boc1<#^E@FR-tL<_ffgK0+yne<yj_#$)j~w@r`6^G#<_KA_90R95#cFQ@l^l;b
z%09L>Z%v%B<f^9FIF9=~T}1euMTxvfV%q99AGT6$kA`coDkpclTB%vs46!L#g!MX4
zl=2owQRQI#BLFu6G4}D#rfkwBK)A%yyV#pyQjuSw{8rxzd?PCk@^wp1k$_jVxzYld
z9okUg?T9Ba7JytRdm!m9WiMfO{DHWlsjzr(y&{G~wcfXE8SjhByYbRfX!~GQ=aj__
z^s65TP;4WB<>kn|{bRZ)941b@Bd2l%U>B1^`Lx@0a;ej++PX%Ut0Mg}@Xb7{PuNVT
z{_Cmv<BN(2d_~9_UD?+c?jU5{B<5#f4^*A4Bb<as6`pGf!<FqpF{iuFO9r-k;l^KY
zKZchTH+#8tCH-Ba(ZDVnZ#8&Nn=&-0G(q+2<(*Xsid{?&_2&~7LaG<&eqolC)QrUL
zk)isOkxtK{yr*diO;Y4FARE~U#`RXd_I=3`yR9=*sy)LH_0>~3<mwes$)}v^?r265
ztlL86oX_@&q3h9DYGfPux%aP*8JwWq?SSU=<)=XHX$*0qs)E`k+`5Y4=vPp)8fl>^
zi!IiC#zcliYNreL@&UM=DDXSS+l#jZS3j5Uae9eeRx#5iHpoVq?6R$+OPS66<8g7E
zQaEf<EYhER;!6%dm}?NDS)NY~QVi#i>>6~;5m3ZQM%?*PoJh`G82E1D7^u|dC@($p
zx#(*$`|&h!(5Pjk^}dqQP`ZU~*9uPG(|mfB%jMf2R#00U7wo2!Q;cZmlzbIm)5{A*
zo+0e<r4=*ho&3~oDep6yGVP^};|^$u=@lW!_vtnwY_rbQa7wO<e`RM(WOI0=JY1=%
zLx8vZZqc;)7(lE74)JB)oo<eNIyJlehfVhk2^cLHSGa=Zm>l`^@G<Y9Xak)|0dUH0
zJb-HoXpLDJ<ivzNy1gBw>~yKcND715)xzrrP@x_B5u#)TgU)vj)n+3Ld=tAbnV~67
zIH`8rP0ZWIQZRTLD;>D9eLLSf;jS75Qh4MgeRVq$bA-iDz`~|gAAY0@TG~n{-&)$X
zWhl(zRi;yph3=R8>JAQjAo>QG%oTjIE~j(w>G8Y)BkkR)PJ;Iw@RUmfP;OYgb6+!+
z!+R(ouI>X?5AiE}$>FAq#{(q9Z|4O#7)-K-W5Xn1;3#eI4vnV@6y3`0He>BM6#0+Z
zAL%YcDSqv2X5p!@CPGvU0$v^}xs+Ex=1qYDbap8=Qtp%Ld|AibvE58;V4p7o0X}2=
z0~}92I{7!Jy-f~(iVyS5(}DQr6$veMGGg`dHKrw>D>8bIfp<akr@rtK<o#4-WX+s=
z#nk&r<#*FoyPcYqp2_3~!?*THvNzj?nyfzVODpQ^kxr>jF&Dgg=&w8i=~LKSl`xau
zO}{7GI~42|UNG@b-<V9TkJ*r+wS6>GbYZJ*?!Ly}tY#iYe~^Z81vorJp*z6s;5-<E
zo}$6W7!N#{2Id<ymWJt}2$`>Ie%hLnBBYQ!{xO-CoA-XIz-0qqfIdizHSEnCK6ArJ
zO8RIhl-n6m{k|2Fpcm8!lmzZoY)-spaLa)j0LUS(I6SO_{nI{?8e3Q=Z1ZR4YbX&w
zDWjTBN#_>5Mg=)k*K{gu;`^5|Y2b+L-0pDyp5?!AV=@uckw^M~tN%*jJ2R3S7_@g)
z++xN_fDh2!r8vp%+HSV-A5I?(SV{*K;ZqQla`<GnFnM$Th7hwKT`Wqo+H9c0uxrrN
z4Zx>pT*_a*XEwyouaRkrpN;)&|2X!uY<TvoL(B`*5!4ltYjfF*2!qaU^Rz29?K`>0
zp7k0iA($bUMM5K+uuyYkT6N5V=o~&P+M#c=zi?}(32WHUt%j$WF9OXOKMitls4bEe
zBqmW3b=kB@@zKgxBx39k9F571Z>TcQ1ft(8;wWWwP$FBkW%wDBDakINNcHVrq?X-Q
z4&{cmZW-0*(?<xUxq=|tf(WzI=ZjCS6BxYIhf!}USvxyXH^!;-ESl=)%m{a;3S+gA
z25Vq)yuV6p+E2l;Egwc1WOv>MU9gRt3mAU9U}MzhIYd9#9_FAXa6Y>RYPbW=T0iR5
z<OSK8oZYPW9qzosn=ZQb6bK##Q>8M?I>iG&)^q2|+iM5$9wfGzreUKpl)K$v(z5wq
zl80=0gK8(GLjdL-NaXlkn2`VnDHcg;cuW{4mCw!Ins}HpJ#gA|o@k<d!65Cs%ec2#
zu8MKB1)q-cXtLF`Toj)6xcp1{`P9GF3V-bSaU`&tJ}S2k;I3;>boM`krGJqLpaY|9
z4pMW}ja#^}5I9(@O0SdWga~X38}EC&iJqrs78Ja!Yr}{UC@zsG*?mznlU!n|lE+su
zPI!twJSGSR6Y(^b2>H2H@pO_wJG*|%GdEj-FwrAA)?_Q?mfoKNJvbVKs{H7mFUp2B
z>TO=lm3*$v2R*c)^9W}u*Rb3V(U06KnDSg56lrc3+wOvdeT%?POGCJ_mgHtOT^=EL
z?^=%xMz6ZqsczRMwJLdN)DGw{JAE1tA7uv!-lt_Lbfh>s%K5P~^r~A^a{=ba>{Fw)
zPHn<NU*hfqql=arUEpx4t!7>*Ql&FoTjDzTIUnLu=T@dzA8O6Dz4Wo6#*&-qN6}0a
zkKDXWs*M7gH`PFZI#Z%0Y2TiC;;A(!EgJ0m`<&I6wMi$!S?&TE!wMUsFtJ_cX?A&O
zz;j4J!DKm_?f<MLa&;5<oDOBB?IVTj+Q{ipmlRK)A0#;%Y-wRX{?$a@yfn1gu<UJW
zwmVhYmKwga#^vd{D__*~=<}iY*v>E{I>VyXd^m{=+?kWj6A!&~hi_{g+-#Dsv)2RI
ziY57s!yv;xqMMC{r+OgNftX7fCw_Z1X9_!+vjcx=C#VlwG;5b96Uoo^m!=|%mAt(n
zG*l=;_MqaFRxmv$NT=gvFv@{Sl13N`%0^KdiI<w<jK;?>@}n!v7-~dw@^CMVIO~p=
zv<B@auVRg$o{}@WRrWP4crgw7oHv0|ZWIJ!nUGZE?&!1^JwPub-yPAt`NsZroydIO
z2=LAwAY=-yPD!&c4h^AIY$EtZGYeeYVEEeE5Wmn9!1O8P77DeqUuu8;NlTI}hdMLB
zUu;gK^!XRbvQ9?R6w;QyW8hn`OYo{piha{Wox^u(Q#6R=-5g~JMdlo-k)f{i^fJh*
zL{OQhxdrjv9Qv5wbye9{1_oj}qlBY;B9S&YE^Wh}$e37qO9j3732SexTkd8*_I0vH
z|0`;_7xZYA?U>lRWV{oV?N5%W^^Z&QnW-=sE)6;lQlvW3Txq917YGfX-q1g|wc13H
ziq~!3GgfP4=P|y#_j-!@bqz=vgA5JW6ABiyfh2CEpcDwNaLu1?Kz;g+^=7P=QS@5*
zcq`+KWdEsQuN2E3>uKctvnso&n8`a=%`8)rNN<T!amZLTKNElpbA_{R(v?}<)^K_g
z7G82EytCfy`?4jyYToP&#&-=rsax@Ur7)`gq3q8U`vs`)iQv{mF8dyUZqk|Wr*{-J
zU=aD}M#3Sts@~5xrUkDlta;w%q1a?bvJI+y1u|xcL%el_-zvi%KDdafjm%CMnKs&-
zf~*2oUiJB=WC1G3UVEuZJF8iiT5r(m>Ke#v-*}z%K@GwsCrJb2ZT{^3Ks{cx2}*op
z(T~-ea!a((5y<|Mo{7RHM8*0^(xoxEs|}|lq7CWc9w=-b2+J_2QZtr;Z`*dV)+oQD
zvp5Z@LZF)m+tknH5OpKyT$>|J<OLj?4=R2t<lXIysAYg{({VX?sH~g;{4AVNUQs2Z
zY5|V<NvCJ4luHdxl+(ca@Z5^aS`PwTJUQs46#>2O^-`>G^Os*^-_i^Fh=iI${o=nL
zTlR!m$)O?+@h>8_#fj*p@EX?0dR;mvU-hz|?Da+VPassQnSD!f#QRWLv%HeV{xpa-
zGcy;}JNEFwt7w?$GRE`aH;tKB;q$if6D{X>uF8a(AO1plx_ED4CVcyWnK-V>{{T2(
zaM7G4?`A7Asm%O*IR{_R0&&_y=)2n+rXgadiVeXmW%U(E2*!pB^CqOhZkcN$?!b1J
zE`d?M^&KMJ(;>mHFdeqHz$+Sm3uZ$oh+foYS2=Y3Iy?oZcMhX{qm194AiZZpa=V9A
z5#NBS{xQ@S#r%<%!}(J6q^ECC@WD+N&js&o0@XO5+M6^@%8@kuKRZLP+rPzvPf`(O
zVNW+`>7#0fqOok@@C50Dc2=KLP9r|S`$ZW@CUgtDvW^|BOUg3D8f+rtUhDnQwom$v
zs6O!(6{Ir~=X&<SQ({K_PU<^|j#{mZ$il&Xfe!T#Xi}_zD|hS%&jJRnu%Dx>DPg_W
z+zw2FGeqim?N!%lLc5OLX=?XG`7$T|^3j~(q}<S<ZMNZQsUL#I>IQMeEVL`&k%6Tq
zhXy1<V<9=I1H7#W)J##Nu7~TPM=#(DOi6lw_2|4XUGZ=J()~GJ^)um~pe%>-Qrvo1
zPIZD9N7+Ye@x}=Rr$M4ivLa!;an>!&8mw~b2<gt1Z(BeE!lvLcS>qfS0S>=K`PgQe
zCAQcDjld25YHHCmEy~KX_?#!Y7H$Vvzqu}ebAh{Lng026&Xt$+kBd4zl=NZ_65;A|
z8dw+0b-zVS73-_vvNdirCL~)gY_0|!I&iGRsQ1IuKfgJj(}$tY;is_PMRnRLsUEdQ
z{S@c33T)6>KcfO1Pl*o?H&fygf#4xB3J6NUs0rHlXZeB%IH?l6UttdCGF?KdQ{u2}
z&jg%4Jryf>6eSRXSyG|VEzVr?W1URObK(uKY^T@a;}p1N#_e+{#RkQ{C(OBb;1+q2
z{nVfp{w1==GCl>Wh>B__9$xiT?x|wn8D?V+`v8MYKultVh(E}f!x_Z1c^*tYez~*c
z)%4*9>9kuIMdOs|?jVph555LzJQ?2rr;5|3v>I3e!`CUTMl+_poYW#@)VzwllB5p4
zQ>OcCZV?FQp1I$fhDVd<IYbJ~_(TaG7h?FSJ`YVj16vkOFv6iC14WSt0_qnng|*vR
z{(l&0`L2?+i)Z2Ld=Nf{tBLxfiP3n9w7r0Sy3YjeXtPE+BTNo{0OnxhMU~Ce;mhJ5
zt3@VWg{;O};Wesx_B}e;(+HcYtGgmJ*IuiB)W$L4Fji`}v`R_&QzP-N5*k@uTFod;
zA>ew`VuK$UwXz(Xo`3{(R!Kbb7G8sGLhj7+nb}xIdW`bsd}Ulf#R|cO_zX@1qFu=O
z+Z=^VfrA2{8ev2d*DO7rm{;y4v~g@_hI79&*)6B%HM12v1ot$FFwVRH0D{%)cf>Y^
zj_XR`L7Gz&puGvcC!UG>xc`z49?zU5XqEq1K-0zbOtJcT9Deh=3AeH095o>$kpw1P
zYJEY+Ec&F@ccM}Ukv{v<n)S=ce%O>bPMMe{)0gBX2i;-&f;#ILi6QMJ@AWagDdP!Y
z$(dCTE|qDNE<q`e@MN$4M0$wueK@-JTt5Jy6Vo@B6C8CzxPgIt)i(H2p35+vX6MMP
za{ycrLVWWETgjL-uQAkKGViR=MSx?Xk(k9O;K&%))j9kSi+aAYn07F(iLfSUgLE=*
z=i4XVG0xG3ir*Q3E$@p7VX+#>0`oCLP^1k+G<96~{L#A@MQN$svn5B-L}jO;K)VjS
z%cqyn3*wwjFc~X|I>vBS=PwRbr?_L4!^sp0g6X@)a5F^ThRVBN+uojrVp0tP&kHpu
zW@=L7-c)AltGrd~)2;J6p^LSk#wFM2UfDuLS!)7oDAQpnUW>f53e|*Kzdw`K@#d1-
z94;X}A1PG~hEfG0hR|cS942$-RyJb|*HNZQoxu!|xz#WT)d~tU2#RlHcm47w3*Z?x
z4ijE|F*~)Sth9*|ClQ(DRqV)pwc}RYG7uEHqg|;9n^TRDQE4?&{VaM+c0iG_=Iwp8
z{_I3D4NEJ7tVB4*C^}eQ#q}NpM8w~lJLyU<R7neUkBbW5-6&M>>eq=ZePW2(Er_%`
zPi}xh=qreSG@RNfWO^KM1CMP5Ijpcr=b(a0fy~@<tgB6+-+fE(VZ<@ekex;_71Rky
zna91lbl`?YkN#-fiIOpT9+z}qB^Xg(qMNQdHyESA8RgdPpDEvZcDzq>YV`d1Lh!fF
zC>h0d!p$r@A8k~H%669}ZhW(*h2WQ!O^<-6YTzf}`Lvb$iYZz^(#ATdiw}K6lck?y
z-%DL<?P~<KsD0^B9QV2C9W1AJ>#Osjp0c5-NE`;O27%a`x4pOad6s@xiMC~Oi@Cfw
zN{NM}Qy#rmabC`C>-i$f{YmkyY_z!qsbXs@DUNS(?^p=FU8MZA&#0h$*?vjC>?^G{
z#u16$a(oHmE9U&m;<LlbM^B@Q+Zr6d{4UsOw`W3$%zfVb6a4^!_KOf)0xgCN58InJ
zJX0ww&Ow-PWw}Ot`pAKUk0#fE#g|)U6DBmWaVrd+`Kt~KV!MVwrsvoEc1m;&^~-o8
zR5?M@42Wy1Wr6vyj|rV8Axq>~Gg7LvSRe$u(@YOG{Yk50N0!Fw3=0PYL7QW}U+rqz
zoQ?VRI(5?IM1Rmzkt2E8L=^a@2lGozq}v3j7z12lYNF$8MZ$RpB`6IKGI@II1ql;2
zQoOO+=QKWZ<1d-3BqjRavU=aTZc$$Ix$l?D>|85Peb$S0-o;Pl9XH$38q*;B)xv`K
z{9M~Y^T+EvUYzXof%-AI#IgqS#)RSq<}f#=)TSsIPc8W!Ow|3GLYW$5>voB@9y66j
zq<to@*EWuI-g7GGf>X%5UW}=)STDX3jV~!H&?(_LjOSP4D+*YJ7<>-o#-8Q{4cq0;
z;R`>ga%g)H#lGu_EDH(ewv^efKa!bu6_nbq-xQ6Ucd1mw3>dX$p%uRoOE))WyoSFH
zvhF3gGJMj(w-0K&{pneDra2<iQeJPO;X*d`aDzE&+9r9~R_GmC_FgdF8i%>*dEUqO
zHG1RsZxt}ETejU<?*>4oXPrJ~<uRSSfN!WkHMm`x&)(@42nx<y_oRDX)@Ot62o3gn
z{Xrj-uXjEB;CejGz3*k5GGyG7znSZ1*asZ=V<fS*#fuZyNB8Ppmpe9yw0gLI;691*
zXfSG&b-$r3tRD@U08<q|?H@U(dJl1xE_NAu@1|^DIBAzL4dIMNi&azhhi%AAdT2mu
zv_8)(<x6=KD%O9Y&*0Zg7*5TI7hG0c+|<p{Iwz<)swb_En7Pb!)T_3|ESzl4rcW27
zll+;J)uNlQ{(8gv^Ze6C^iA;IdGHVj`-W!Ir`_6J#M$>z)onS<$j_{cRf`!>%{&PW
zVs)=$JF9QNL<Bx>;fQr6NGR}SdjJz}+DS3BCb6BG$`U=v-%mk}Q;dEyI3>j++#h5c
z1<bx{f@=c2k5~r$e^>UAj7~iNWF3{7^g)b88<*&VzYqNybMg@Umn8?P4${Fh+WW?(
zwF0;C?1%7E3xe#iMl(N*Vm=Lg10|V2u}4^enpiS14M&<KK?Wk;nx2<|o(8I0%dmDY
zXT%IEUh+{cIf*1x4Di~;OoN+k-+Mc*a8FBX<gB$Y<CppA$E_!u^fuu<?}@Prd82V>
zVAtJ;bSZ0HZP4CX$|S%cb@=SEm3LWii~7T|{SbrwdbC6kX3uVrBa3CYDT1U$D|7U4
zHMsU@nBfIvOcK@7>z6O$MDPC1@tCHofiG&Yu|@!O9h6)e0n@jd7|9MXjlKW_NU7pC
zdXjG9WPZpV&e+B)Be*9|lNt1B*lip0P{nRV;*T9ZV_tf@<?9*Ag{1%R%=K7emzIkg
zFIfMXF%eNIWDl-*ZD?9gWSD@Dj=LnJu!_NX6Y1?<fJhH##7`*=V{{zUJU)$0OMkWq
z;7Vmr{a);$4l>cBR1WD8`6AcXV9?)ZZU4Fyu0i;{FkqDW-n93b;4%j_8k68cg98#l
z9D*089jYyTo>1@CW}%`_&s|V<s9uk_hszi@d7Rl8K)_Viq@_QFvDtA<at*{We_b<3
zmVqE`uvOyZIeUNv{uk05Qd1o`J&5!dr{p>kBbGsadX8e|i!24P#vlZ-ZXYVhl&N6p
zePgdwrW6r<l=#n=I1iN*-Dbjp(qvA_j%+v`^Mt5_S_+bwCLDvrt}))EOmYrijH|g8
zUjN>Xb{}*_Uhxv|lTf^Lw)wjn6eOf7^3e`2p#@+4#+bDg76iPGyX6${x}d{d`OvY;
zK0FN5X^<(URvU<IECJ!cL7IST2g56W6CV(Q&I^B-y+Ry1>IdPzorSBb6FEs8Pj#`$
zj!W!RbF8B8CC8O+k9mQ}b+}+&5(dW)B$~|IO0sCdt-*RUOXDXIKNh(<s(3nGE`g&^
zXLJBi>B#|TQGf7?L<0R;J4I2$@Qv^a?s!Gz%dz^`oq5tZsV*VRiAg3qD8<K3+=vbu
z$tCmIcwr)z`5)h`qdKTS^*?0|aagS1z!1;0EG4`Jy1NpYd_e{2kJnxp=Hr_nsOvaQ
zdUat!5^u#pb~5yQBbXIOwM0H~7C;1buE+p)q4lSVAGe$jnm_B<H^Z)|f~y^)(-d$!
z&5~wu5Apq(*N4x~xlxuBn>!LAhD(9vTykC$Piv1Nnco-SAQxPMP{W5g|6iG`qRDUY
z=lc*44MgX!1Z19bEOazgKj=vkp0a_gI*ochdz#K^?tK-vQgFv`y{y0BrsaS_8g`85
zUgh<q<MHQWC#5|Y8wp2m**&Ivi@w{}mH7Rj$4!{PS&6tD7ALn`C)+%AMWnW?M(eKU
z3R^_l52>rxdDvj`u|sK_*ZUAz!^%0PCFWQby%l215um*p7iFOx5NJ{I^2))xL82qm
z9*2S);uOje=3bV=(Ah`Z@_f~vp%`5;Ir9vm%CD6a>tT#*?a4#sr_AfEM027XEAv~J
z0@22cMy;TjYxK_Ur>mD_JA>Fs{`LB0w~jbBX|K`1-3Yl)VMTjV&MbVg?gTFJn3y?)
zW^+D|Y@y$dQz{G85IJN5ht3A|KwxV!#036j2MAU@b1CzQLpb_qy;|=u3|lEqFym98
zA2CJB;de5GVCr|qdPzzpWkX~YUV?gUBQzxl>Ah~!ml)t}F!`38OiJnY*lLq8ndy`h
zZ-S@)CJRmJzVaQAFrx}Bc^$?NjSu2n!oEBEI;2(fu3Wm=*~T1Hwszo!x)T#Sum%rP
z9<I~T{*u<lCDvZWu_w5DH=)J6j&u7wpQ*;?EFN5Mxomv5Iq!|Zarl`fxo%$r{~Ndq
zdhq;d4eBo;w+Ix&UsNgTl3T-L<}o6B@~=H7M0G{lwSOWx^*Jz`(Z3<sN&M<3IL)}@
zgTCn)-`<@PUB+p^Pa}UTw>?|aj!Vy4SOIoqZkR(Iife&vFLq<E-gR0jW7unpCEW!L
zn6}1NwqBX2kL}o2;&!Q2-@U8csBA5|+ytdWNJmrZnM#CrzL}N2Iam4+Yvq0{%7gdQ
z5v5fOZ)S37y$VMN&ni(R*2$fuhII(m**89y8&g2?Q3ncSrOkYRvajt|KT~aLO{_b^
zx1fOhlyhzA^2wcVL!F&G%K7}|Xd#@0!G<Dn$@e>JtSjfmn8;$a1SRCek8kBtY-%L7
zBV#E}^M}^!ZKHOK)occJHnUP3=hvhyD|bjuAu(<zbERInr|o+=c3b<o?jt;gcn;p~
z+TKLYzNl2q$!k(;@?NGbi;ON1_41)a#u$C^WrkRZrJ{PJ2ryEObE+4V(YoN#csFH<
zCD66p9Gblmyfqe|i)t2hc^Av!n_H}=O-!iOzlwiv=5r$mfy93@om+LwI5kl2>R>|2
zDRsjXj4CJP?etJ{p3l-%*r}M*&lUbQqMX5y28q2rxnG2>8_QX!|1|LeoWm2p-hCnX
z%LwETsl5H2&_}T;&w$VY$IedH1ozc9$Xl{-)swifMzV0MECJmN-a^t+C<<$mTJ$qp
z<2?v1hos3NroKT^G!u`dkc=Loz)Qu@=+ZYG8{5gbXo$@5S#~heWNdrkFb6#&J)l&c
zTMP?S`e4G!Ae|6)ZF(F;suq{@%UBV<jR$t9+cAdOHzb~%@<5Z?V!9+*o4Va+V*RD1
zoYsfqwNP!>%S?a5Fyb6S`t!S^h??80gY&c=$wB(Vcmxt8?%#~KoQ6f-Roq{Pb&;Z}
zl!=<3EmA~CIpB0sf10EHzOI~c_qq~hII?QUgkeRoehr7-(<gaU=CgL*72S|S#pgOw
zdhdz`;l;0delAKaFG(Ra`B&L3Z><KYd5*HZ#gIQXs0#0prB{4=B{=VFv!`)HQ`7ur
zEr42TzOZk~JRs1V16TM3b1o*%2lRPH=kaWL8VJ>7gfpZ@STQij(Q?vUz%t6Ehp|i1
z&^JL$ZoVTY{nP0_l?ny}fq5Oc^o3PXY=CWyZ!IoZL$Vn#Iu_8Pw*cSN=!_n|nk%9L
zX}B}3JT88lWkr}}mo<klAU$_y(sHX-pm#s2RBE7>aq?dLC-GC6$a(WvG%TdTuBi<p
zrfF=YM9uZU?tt%TZ=YEpp7DQ0kCH#ZPp#ZeDgHiMkfS`T%<264uj6l8vX7mbfO$4Z
zfluKf$u;aD=0X+R-*x*W%vn+R3${Iq^fwLE%Ps4q?6seR>PM>JVkq9I&$P2=;yvn7
z=kW^X+$bN0L&Xq$Jn2}M{hzOZwx84~W|AETZS~~I<6j+@A$bas1iq_SE#+f(#%YB8
zGSswv$ZHn;jMV3QTm&wyN)F&=wV`P84_ylk#`X)8HgJBtwezECx;6Ai3%H$4;JR()
ze&p*kZW<2nU#UcjI%jTV5*#kRuP~{o%d(H8^ybdGaT)Z7*<(0VozE9PL^jGJ$<Jv;
zpBzg-Qh6}2SH)>k4|z8$y^be)ZqB6~T6qtY^OKA}qg*M~lhwQxP#NGT3x{~K+qOtt
zrNbe7=Yl2VnDLFmpcr4ta8-2vjABW?KO8K?5kgzG6<cmWBsJ4La&w0KdN;xKfrL6y
zSuctFQf$bI^7bh9Goj#b*@HV55lug&!kyzTG6nQai~2c}0o*~Z&R*JKs%}W%(^owW
z?jJqowfb$M^4~s*2ur|3LgeW?oI!|7$TrdJd|`dka|>fSfV(URKhaQAc%w5^6j>a!
zLW<4SlK7rC`<{Dqa%=b7po%=wvddcLDLrlS38|C5;*59GEpQ0Io~(cZQj<}t!Q5DE
z-fLa}Taf4>Z3_Tdij@=8(|$aY=%uSc)ZmD$uJKDvcb+dK(hR)Gf&Kd8PCQOhh~MOP
zHMac7KkEN6_SSJ#et){R5=w}4x70>TkdSWamhJ{Ak#0edluqexq?=7i_ok#JHV8<A
zG(3wr&&>JGoZrkje~K@~jq6_bTG!{g-j@<e{#3TrLch}$##KU5G#fW;-sm$%PE>WX
zhF;Da$o``6L+l8{_eLZI(emrJdd7JWn7MK4e@>Fro;d8yCh>ApR{MGiI&_{o!n@A>
zN|D6r@4?E-S6=G5E3t1@;m$O<zhC#aHdDvlM>s7rnPxSf4>o#&l!n^|-#mwYUk9b5
z#rt-uWR;8@pYnROGI-@?$wBxBb)u)Stjn2fKZdRzdxW8Re6lS;n)vNh0j^|@#vhgX
z@`lf^O?5L=*m8cT?q7>RlT$U1hG@4^P#nF#7rjy{7i*ODw(!+Q<%#zjWH$XcgPeOH
zeQW77b)Hi3ot|t>js*Qz5?4ZFm59)R{KAv9=~KsjIhfDN*Nkhs*5#8ZU#-i$q)G@w
z{E}klMZ#gxfvvJd>?aW;pF)}0$E)3j!XC^5N_^T-=j@xSBN~`*A36fVbe>0pAmWfb
z5C4|d31i%QSe8pv$4JoV)x=<`xjll7^scRA;8fXymM@Wp0cNph`IG7iY^6M`z$w4-
zPgK*6=S+xelOI!#Ja)dMPQRaeiQfKJf9}^OYFLq)@EHLGsmnYol_5qPdxHZTQzFar
z14}m?@9whpn%du&eIG}uW$O04JjV+(F{_lNwD@)?u%PdG><b&ZXzn-_)+s1x!x7{Z
zv)`3c>tnVuQ5oA2F2itdxOVH^ew||;!+j9dn0eLF4<+$1&$_D&hA_-?yE7o?itZW>
z+6=*VpX*Zx$GSh)HFc~d%4}m5X*XxFnEmfN-G5m3W+;%9xxbeUrpdp^DbtlV?&9RL
z*0H*fFQ{_=j(*YfrB95fWnq&h+J;K=u+)lr=~7EztxZg?<UPU+v#%6kN6m;-Haz8H
zssrx;_t#B(e1vF%_{Pc|`>PtU`AHMqtQRcX1Vykd+Ur6{4L%NLUe+5EWp2j)28=;^
z+r=#BzAl1TnE|HI)(wHDenEe6Nfgb6U~k1LP5adG2nU?_R(barZ~K9zC}q<A=XTdu
zp`k+78lW&pNOjA*>HletSi@>pmCJVFRlH<e;7l^HEpSu|R(T`}aY}JrQuq7M+i3~a
zqfURv=LBYkK4<C;+YbyDF;(2bSgq_|g#pLSzPm=NK?me`H?DvjV2O;EFC~2nK{1)o
zg9EV;9bcwOH39(==*}E`{0uI~jVQ{foq#ayu!x=GADcw=CpWqG3ju`iSmCkp6FOe$
zKU!>qn#%ID<=-rO|7iU*4|ZMae8GIl5|l+$zCi~~>8A-B-@r&yPDFCRQ=<-l<%Wk}
z_eadLs`&>`txlnoH4&Z32NMRjI_GTTO6mZdt2y{GLtZiIeaLYcj=1vtLovl7zkk{%
zWC%>`TR7vN(~1qcK@JZpgAc1q4=65Hz7TA0Qh(8R?hRNpkUlM_ktyLIHXJA4^iXv5
zjf}q_Nrs=ovJ4^VD`k7-yu8Tbu2%<19x-o*@bl1BF`PK3R18rG^KJ1?6Iy>fA<;_e
zlN|!nj@`9i`js&_VG|%;Rw73LG+iS0F70vUj}u@5w|D#%(eQ{MTss{Bt`vA)499#C
z_HyqthU}VAP*)S$%3l(p%U}uVy8+BgO}Vp1>Ln6j0)e@|ChrW-%%oh#maU#L#dD$l
z%3i1zG2&hMLWEeXDYLbvGsgZ`!ORyb@}p-=KY$T9We6d)aofUH$B;3%71u7jsJ(XK
z7kUAt_~coTGv4$%_gKI?|3i$(94@DqSIh2&vRG>rsY9=l<h7A8@vb~pv{FOui==pS
z!Si=ACR;|O2vZ;_$~}D?DChOuAb$1@wcRf%?Hr*P2mR}T!ZOu^O70+|CM084DW34-
zEtl|#Q7m5}AJ)6$7~3IrA>*x`U^o17bSyRJIO1~jxi50UV#(2}31mo)GP{_!G#bf2
zwV2bD4Xs*g6^-e_6l$paUlsT-cD=rm+9{gB7nVoiiI>|9w~{M1J?)FPocHP{`1bZ@
zqIVG}7REl=6w#RTA}HNc=8NOp)lW8=mc;Xp%kw8RkJ6kc`e2!TF|gZHf{%)%A`77j
z3|F)}w00PF3~$mw70mM*+qIuoxnIRBwfHReF=DCg{Lv1Q+0j!GuipGVah6&Ji`FX6
zYBtwYvG>gcJHro5IyMzwcOF~30WE}vR>O?R$jP@QRx9~?RC_#oWVhU=JpgLe<jA^#
z6T<M`_{pMG4Zrzs8^*YeRlqilVhQH^n`4;u-CRIi8$omJ)0EO>PDF_jv1;E7Bl2^W
zU+oNMeKD^d)H!!g#l|pWsMGE#*OXk~@wXxRydPukN_5SS5e_h^^{(35pRT-^Z*aU%
zHky1q{~GE<RkkVDAvdd8WBtPXOYI9s)5r4}AR9hhN61G2ndWy2?O%;@kh(H}<=)!q
zt>{{L7B{?S4|g=Eu#<kSU2?2wGi^hm1JU8MG3n6OPE^m>yswsJ%l9q)YI@6gpz;?(
z=wxWiymywZe{C)<UnXfU|7_-SzC~LB%r?#+<~gW!3C|7IxOB@)=NCVQ{W&m5FhmR&
z3Aa>;?M<&wa9z07rb05Fwm$k3S~ZhHbtqzRb=%iqHZO%a6kyn%;91U%*3YYnl9&z*
zS@d@GLIwq`sdKQ!lE8#?Mi11S*<lBR7<l-WY}}dKM~{GaQx*$GxJiakv<wW)w)*+w
zkmy!Uzd=h5cw39!H<J2YIP+Vsoklw&{o?#ujGMdD;}V5ZQkUQ4u}K6s95dRHIu{F3
ztZe0o;qoIqbC%`?kqM{{dZfKc&Z;dcx^ox(4B#_FJepnUZKDO+V{8HGA7&OFbmk{d
z50IHuoantF?Z^isdCn+PQ(s!0RkVQa`OmS+|M9EJda91+KFl}S!?|d-%&yhZX0gPN
z3FK4=er+A>6K>(s;m0#7Jo8tj5)rg`{7qk2ebv8bOWv$oHLs`ZKb>@^P_iHgOtU#<
zp>^3pK38wx9Ii&1$B42)5EZc(_rSxLj*PEB8CDCq%B~Ey1@2x(B>MP1EWB&wkLsPC
z5MP<6VWr+m<}Y3y?FGSUkW4T)@RnXZ$$5^}uSFp>Kz#g2L%3g4D1am9rCQESm@4xM
zD@vkX6_pb}(iB3LHgT2GD3{DLE|g=Z9ONRg>_Q0h-$8{{U~+>rNX&TFxd@670UAit
zTU2>1e`OEQv3<t*Hw0GuviVq%s<{|O`v&+7O%=1rVs+S&k#+F#sHwM#vdTgb_`>#n
zKh1viOomobnknq3EW+o?9-dFJj8iW}(pKcpD|Oc6E~VFhb$*5eT*C*0%lfZ0ua2<t
z74c?r(e55R&uT?|7-297mravd4f`Rz!JvJi2s=qE%9$R|8`Ye!UTnJb-#1UjR7MLi
zl+8_+w?IuzI*!na0#<-~WDpAe3Jh_k{HA(<*CPNgAgi{5p!;MbsW){b=Eg`}5>;$t
z3y}Q?`}L#ol*tOxjASa5RgMdx!h@Q4Hh3eK6VM`&iixY-bLC`BxbKdzT^ia!qAM1%
z*P`-0o|;Rp)F7o<chR^aXvnp>0sL@Rw3}#F<%_4eMMg^^=3pA{sk0xl#$jAKo|tW`
zG?yI-ixeFWSG(FYNJEbG9(upn@+ptlM>wxeYwwvc9JaM4WH?Z-2PgHdxGO?$U3Ye&
zUU+4_oAX9Biuy#1>;(mLyu@{_)x~ML?9C_0Z(Tc+8rl%dQ|jo)$qZp?p9;y0r-xUv
z&;!VCnOuUnlYzBK0!F!=#(w+EMIG7i?oF8MyY(rd2pR<J9)@W#>A=dhSvHIYEve=7
z6~b4~X$^XxMqp4on=$$F2bjMgpS-*qU^0$n`0)4IZAJf-%#Uvq$&K#iS|mGz5A6oc
z{NMwLahW<;oLlVYMFdo4fGz$zknEPv&?A_r5!r=4^#_c*F|Lxr5|mzA>Y<^A`x2*7
ziNyGYSo&T|l5VZbr5VWyoYuwDm8D)CEJ;F-9WD-6BbCd}i<~wnImnVv_ZE0)UpXph
zziR@ap6=>i!7J;Kl8ewdld1H^4++j=ujz_<o8+4NTADzJxw}tGZ&>oT_~mm^_oxUL
z?};<CLF9w@i<~aOdCE15vhHLWO8<!ONR($|UZ2xSOdt0LYNe_l^&!M_4aWH<CG4bI
zFV0ca9ni789Bz=hUKX1~&o-n>s+YMfQ|Qyd(6sx(E=)CG#&lBXi_KR)ZIv)xbGSJe
zM{Js*NDXJca7i1!yHnV99rh!ODYzZ=OR&xqAi*j8=0FxL$sg~tHFmX0cX=mVDjkGg
z;78-c;6oPuAp=$HJN@q7vEOlz&$UFZ^K5hy)MqnqJZyZ8SIumZCRjEqZV(!p>U<||
zfJBdwc{6kN7}Z*RDU}EAltPN-+f3o@cgQI{Tan~}RPZTzt~H!F`LDSVowa9l=4-Rd
z*lMWhMA^|}|KIp?e}*y1L(5d8+DCe-rwv%yMCmtD3qSugyL;w_;qj-BkQHVAFNtb{
zq@~oL&i1PjYO0$35A`&Dt5!Q+Zi9IZ_Rp5$f>)s46WWC@Fzp(6J5l7R`SN*-D<}{0
zQJ2NI{&8df7hxFxI@HH_r#}<a2y;~CO*-dk-H<v)e_(0pqf|PvoHYT6C@U&+o)91b
zmNM}YeE;WmODFydoP1@d*{mi0%zr(mhc%zQ45G#3nyVtu?|T@C><9?t^q0ssW7&AC
z+&;tG;dA}-TlnJ!4GLmlI9HN<P9Eu^C`|b{_8^LUUnO#ju<+SIi-KEZJ`ujF`K<SE
zL1}X6an>^1X+P^h2@$IQCvOR4y0`ds0@<^k@0cEW?op};eHjn<f$dyL^eM}`Saxdv
z?J(tx;lF_tqHnU!I}})+|85hDg3zjFVBrNyApzWzQIL2jQHdUzOZVABOGa$cDKFZd
zmay2n0sTyKuOH1{lnhk;K#_@(Rg<pU>8$155x@tb;NRU|3woZSu#NHUmVJcdyy$(X
zscKeXLSOy*i~);Co$46kA#>m;VQtvH<b#fM=jD&I8J9FAyg?f8#5k)(titF54GC^c
zXw5syQQl>`OM-=k_NMHrlqY4M?#Cr@l7*Pe+n1i9`V>g*Wb2T^ygZQ*@u9&!tHel*
z^Hz~6D#wpkrC2nIbmy_#M_|`lkRzE|S%L8_&%ny;#O70qKC!_PN<~<cVFtRL<;Ojz
zI9P4{O7NepB;v!YKa7{eJ??cmanG6T+CLyViVY0zJVlS=+mzWs+?E0ZPG6aDhwZlu
zhA`wR(WMK!$QI%o6+bH;?Ed)Z!gukDqSq8sCY|5N^O96it;7E!*J6+`T!u&9uE7HM
z+l6QTB6gwCa`t|XK<*@Xj3_OQm0pd%{1}I4GwqFIPWb1)@-l;sXA3y}wz39m!~yEu
z($X*a_Nj%n>?A@oQ8jlWX->khxVBHMp2jO@d-P!hCPScs!Rio}QeVSxO8jL++DR~3
zI9tJ>wV+!cujol|fR!SZTQz>8*x%B1%Q61A7gtJ+1%J`{wCo)tuVVSFIq8!#ye>?H
zjA&Y)Y%-juunK*Cp0`h*mVIY`p6l>{jUmTLtc>4CViPWt-}-@B%&h3l{7A@gh4P^t
zkQ_aJC%q@Xis&3ofo(6Z9#MxrET)2sJ>naNh8=4aRV7(`IkT<+8`avd+o;XdSB6Sf
z{a0$f6uvS|RMamNh?`1AN)}8$k1KTl)h!b+q!t$Nvv)UCqMDb#|0Cn3T{w63c-BH)
zxY(ZRMxL09_Dvbd!m+K2QI)kZ7LRI+wx!$fnZxR-BjX0$+5Pp{!C(Zt_>%d^l|ug8
zy)R6Z<<XRets+owBfrbP+qh!Ku~)iPwxPo}?~_}~mKxKOGP5X8U@KV)ZfB~ldR5FF
zTegJznB9Zx@jH!wN{p|o56-|i7ilB^*y&-?$|QVqE`Mo$+QzZl!m}1o=_M(VWr5vY
zo%PQ!#D84HHC`k9`PLJd$O<dp+`yyr#1qo$FjqZIbr__77lu=bth$X245g-fl7vnw
zwXfKbN?sr^PgRF#gv8G6^z)$qX8tqboBOPrHFUC2iA`IzEE7UpOYk8EtEj{!#S`5F
z6&VrlIW-%+#nd7utJdhB{{#ps0`S<0+BQPGMbX3_69pNBaK7j2Jb%=LD(QizLT!Ag
zhMow8vG^)W1f_Kd5Qb$BYm2;D4Hold%|Yw9@JGUCfPCxKrV^#b?&)?8m_}5ee`hWW
zZI6W>^nZRSSb)xxWGN(53d$C$$Aper<ZO~<2Iosq%J*}m@G<~!%&#GppY&r<4;piM
zQ9yZnxW`nx!8KA*kx5hYYASJ17r@=^mIp*as~wv;RcG9z;srmb=35CL)54IE*bbu-
zEms_xoyx-LP*2((0K0O88sf_JXF;CH@1)fI6Pm#MH|l_r&bo_g<-JOWU&j6-Lkz9<
zRJNkBTUCjqhYGdQOUEDlJ_L2l9k;4m;cu2fsmpUXQV!{fGNjcsG?xQ)uOyb~jnaF}
z`0=ec#2asA4dsYPT$G}vmLx_g6ZmIW|K<pjmQk+0%k_+x)49s&r+Wf+^R+)bgmyA@
zg#7ccH0@){;_+2A;*Qr>*ev+t-euP8Io&#||KRoUqn9(ABJGdBXVhX1!);F!yBnb8
zi;`P1xe1u2E2Ekyj3VKB>AHxE@%lZNMCR+H!124Q#HUq_x#v}H2pD9Od)U_LQRs(N
z7>nn|3J)?rO0;}8Be~aRA4TPV`J<TDIK$tRtXN=&%~OH$`H>#7jhL2Y3+NOka|{(C
zDh+b9RtEXFzO;)Wi(%B6yPvT_EEVa~3PT^1bn_*+_F8@u=F-wC5bmW3&rm(HYwuv6
zg=%!eQRet6>@5F`HuLT>YstMkk|~i{XMp{<s#V(1yzeRECrR`><x%KQ=m<R1g34gs
zT+JBVzF8aPciGusPCr(}Vop;%fQ80>ymjPWe=~@*PWp;LFWpd)P~%iv)o?Eg**(+I
zJic<R7a`x%a-x=Sx0z@=|Bq>Tm}4t&%nl*Gh?On>Qhv(0j=d{9ZIj?L$r!`9V|_Qp
zo^780yM`B6_?ZKjRZFo^3gd4sb9{fspCUPGE8}1NRK3jkN|DcowRyfBrQiQdA3I@|
zxWptJ%b<19wTE!MpFVN0^by+HI>%kChz5U6G=bp#?~GZ81^u-}4a~Ljh1%SyqFJr?
zGZ-O?E~GLw_FhRr#GInF;-V+JW`Cn-^5GW2PqwDbJ|i9^@(P1Sc0(abvXz7$CqG7~
zc(~u$H<usSc?joDeR07FF%mapH&^DXTXI7gPi2P`hK}JYhAvPs`c}uU!>MV|B|Z4^
zs7O|UE8mmgf1U~c{R$>BE%j-@*4HNX)#Jg@P<k6mgrIm!Jkg)U;A~Meh?4awF)vUf
z<wSjAyWTg4Bk748Dat$NbO^yt3Z8QqepHa@|C+rkdm>dP1|ZP1xYx{m4h7#R??tpC
zHXfY-T~F3jao8;6Gk|Xeb&a0LYRF=6-R%Izr3;$>pMb9wPXf_=ql2hIMe>Xb-K95D
zkb*>zdTNX4@Xx76C_M%xvP6$C5pcKP(fy`9#!;Do9{PNV)vNl^P=v(W&w$d?lPy~}
zVVT11C1y;TgYW<qi0(M;6RuEI9qg^He0gxJ2r~}Kd2N<%5)u`o^C<+K5Do*zuu(xV
zYaU?flOfDsf5Yf(iqFj`8w>o!^VrGmiaudD$&E_$IcrIBA)Yb;hJ);Ia=AxMAuk`F
z2u=3*=kN_)#`_FXolW?$$%IWfS{H|St0+x=eX5)+>EB$<*iwQ__~Emy<M9APpD58X
zqTEhiEaX(Q`B=dDw=y+F-A9CNhw&`Y{a_q{#9x)}gc!KhLG{J)+q5z-^nWcMgvXW{
zvTu<y1jSD`9_F0i9P3H*i#PfT<sQ+VHL1Aag9Pl~0Uk$3rYhEb?c#m9I+>KK7AsFH
znkst0+n#Oaj<_+wmMUM9&k&f?*6i$(jio(vbF|JjxU!SuK1=39jp=eg%<)Oite4M2
zU$JA|GD?sbme~=G>tbN8vkxJy@BweD^*c#IecJ9X7*6X|;D)l3TPt;AEQ7bp*%ZNB
z$3lJhPz7v9Ch%^JetpfhH_Y+z`?Sl`I$w90JsSHCnwRhQqAg|iNX8y~ep(2)V`%04
z6P%8FaSqdBR%tE21)06yx0x?GftFFa$lV;@?cHRiarPU)xS{meZ`#TkB@>PCR*S-h
z>Utl?dS+1uUbFzE=1oJi(==aN^MJGbPHCNAuV00!ziL~JyvM+~2RlrzZLRHUqs@D=
zhW=WY!%ZhyFhpWbc8S3MEH|N=)?fa$u)joL1M;Nvu$DrI+f}k<K+ANVJ-Xd4B5aiM
zzK-L|hWKs0pqXf3N3Hk3i_U75G-gAB`w_ye`kOX<4q<t>%fb_JbPdsr`BQ1?S6mBL
zJl5yIljI&Htz#GbHBcY*0-q1<weve#TUjcFzFnBw90!^ycLVFkyOv5#PHwM93~y&r
z%e-YNpz`b0H@R24w#*na>O)%aOz|%z(^Ou^x_T%!>uo!n&h-EOZ2r%h$v-mCHUtO&
z-4y%K9Sdu4Fq}vqo-HHOv47^@h25`VDVA`ioahB?OGt8pvIZ}n;q57B$T#Tn{m28o
z&0-*w^1Ok+os!1|4`&1zQ<GJ+zv=C=o<P2CzJ!qG#HXEpj?Nxz{C1$X4*BAxo=3|p
zO$agTy>%bG)hpLp#S|5Nhl(mBBa12wA&w&DsTg*oyE`9JYc|_dvw#I@_P=K73kp;r
zzRh`65`c^l*M+TYgGQpNr`sVYv4HN9I)okM%sgwX{^i5F${W~sL*XWXqUdQ@>^uR6
zT7z^t9V}GxcSmtz3n{j@-$$W+ev+qqr=c>pbm!}M7q_ooUh|rL2IedI2fF^pTgVIv
zHSvStiP}0l`sUE!)-Cm2RNelOK;(~@3NrNsU*u}5`Wy+De#1GOO{x+L5+@;$sAM!%
z^z)8BwXaQw7fJ9f2Sai1Z!J>Wr}q>mDUu?c$7EI9ZjK}2IkrgEDLSunN5IvhW^fvw
z_o0%A+pIr&yqS0=jtWW_8tKr1EN3UPru*WIrG&m|?5}S&SfQ;owv!oAEn<_UrpmV!
zLkt);pEJQ$j!~oC0PkJ(D2ThV8!U5Ovp@PXfI8~5VL7g(VR*JzX*Dy3bFSN*HSBqk
zqrGlEm&1$d_<euD+)PS!0($QOGhfkF?U&o|Z)Lflo6}+Qt+G9Z-(L5hDrHI!*pxrn
zm0s|*l#YrsNVqC*Ugaz=)2iCJW`4w5zVN%-Lro}d#g8av^V~xD3B6?7oXZoWu!b{*
zFCl-b{?$9;e_DqkJyZ{HSTtc=FcgxGdc=Rlpxtv=zEOmaFYW)wB1$B=37itra#|>d
zfMpwhU*ce8i>zn<LE^YoJ~m@;WWF_84X`P5&l2$idYDvOfgYGXM=5UO2}6i-CDO~Y
z(lX1V4dRXFwA;;x5<{2W_i-cF$lfMApT-!Bb36uUJl-6lF@W1(eLyX*rQyRV_(woy
za+?)1dQzFlcDc0)eL=HJo{*Rpa+Aeel<2;;STpHUg%lBQHC<yl_R(Br9Wa8`2i*a)
zAG%x-Z3^NBONuv+F_(!JLV!&FhN0>l)K2K-45yFsp`D2*v=z#y;E-y-9=;2scjk}m
zuz8hpz&)sF3F>NlnPO`GR)%G2k9PO@MCHpDhEr-gHnI5hEay-cEaCK~8PgR9>Mh^P
zM~3qQs;G|E-daz=NANN0BX@H~TaIUBJ|zDD`V&qcAjj@P@283m1w5+(Ek)8HXcn44
zGoPuK7hU~LL7>O>;r4iYS{_;bl=v3_!XCy|z0H`Ucu2YKKjlsJg@f{hj~c`MuM+*9
z1FEtINVua7whI?zeWf0@g#$YD^Yjvz;lnR(0X@SdR2xzYG4e>Z^W^xMW_jnaktw}t
zSZ0+s&ZE3rjZ{{0m5(G0oxu*mXX2~+^Ui1SM2LF5kd*1l_q26tFR2$-&=(-)BjeHP
z!TBwtIH9=6uZ`7p>8RZMaweG*`a9;}_Q7VpRM57jPwz7;achzgtbp&Fb_ys4gMghw
z?vnWNYY!JWz%e{$e6C>tar`orSI<9cSm5Q$-@!{T_%T6jnb;#TG84k^-k*84)@&Ub
zeY)c%O)_bYdq4lnqNlot!*55cc*R1k*q}6W%BCrsIr&cEOPOX|0qLpXwnfnJ&Hl93
z`57XUgpBI<>9^VU9%>q~?i$QVL6hwmAwv3}*Li?|gc#TQz2LgjTe4JrC1FBh%As5$
z2cN^?y><q0+Cs`3gqC^rp=KH0Jf~(UuUES}tR{}fy@JzO<2Bl%P`~Fgp!<?D2xGSY
zxP8y_o@s=8UR~#$m%7rkHuBwfZOxe#zmSMFo5G@o_}wCxqWEB9RtxXT*2C9~tO!jL
z{b8gHK^FgTGX76b-GBU^vILScRzTXPGrG8UNcD>!<r-+t0IQC%337j#T@;YyH#S<z
zjqpJCA9*xrB`dGh_#vCwp!H{ynkoVzz+IX0cA*Sr&AqJ3J`6o354!-%P%k-BF`X}H
zONK$VXpJ}Q%u$SwO6(Tc@E9%GX-9ovZN+MZ%~Fs(I>rJp?iU{LYGi81Y0r5c7ytF4
z^=_O|;=Ae~Xe427F1-Pj4)6{{%xAe?5B+i{&J0?%Dn~=1%j+n-NU=IqKl=I^L?pT&
z@^MQngNxt>N9m&n+oceU#XnaLlR5@Aj8MRD#REF!y1lz!Jn0U{@d(dAScuka=wLFt
zX_v0nawzUjV4_XDr}{GJ3lhXfA(i<EzE{gtvFx8lCJSinn!?LW2wiCoyN0FrDmnEx
z!+YW_nX@-LtSdImKPL!i=4xXudvVX6YUAy`*6Qybq!3FvSrAkI5FD80Bgsitp<DMJ
ze~r{<xlk$dF!6g9`Leu|s<igkC!|smEZ_!alPPz_ks#Rrl)gv&ksSF$&CYe=Axo76
zOB9?mx85-#skUu^o_YRJxuJ}i$o#cx6k)ZD4Yxf}-*zM73pZE;>UmvTHtQ#Gp#Vd2
zC)jzBmDiwCrfur(HF%;j^`lP<`Fv;IoT6l>urmsWEdMCpBRpVzxIB$)7165S6zsO+
zW!kPm-Y!kB^BjS>1^eF_2Vdza5H#|C;N;KIPRHzlj-0=hO2I{*pjW8yZ0I^bB;pVn
zFG9Ix4ak@%4qLKRn1a1&cwWrWBm5@=!sPs}5i$vZc@;l{wHG6Hz1CaJ;|$KEu1idR
z&DB`$+VS_ks1&pCK3W_E#)n<%bGfhc+bmgizpL6gmp<@pS@s;8`<rJpn2J}d6j+8y
z(ygfE{w>|4-c%wc75c_=`P$8(&?8BrJ$rrn1FUGhgx%)-=`<~!lG+gTE2-O+_;1_6
zq6PEOiwVY!{4B|s-t?<4_8jTV8LuUMFAqhDUz>Spzd2#pYITisRjskVDS(hHhndTz
z^)OVBx}qFM8wG{d)^5Mn(y{Z%^Q<!seP9QLeyTG9HqL*cs{XfMERsf2_Vocr_?`wN
z<(MPQzm1VXS5|;wsE>rs_eVOTJge3lz;Xsa#GOez__>RQ5r~orU4kfKT9IwC-Oo+?
zGnz+DREjB-FQ{a9LcYrvg&8gOUCF(J5IP3H=;6VXXkS!}`&{BNv0atNXrW@4#=+$D
zj)SfL)^h<06G6QYzYM6ndySlO;l0@CxcXXJSLlfV)gN3X0d{9xL6sqdMpL)DqKgfd
zd*VQ>o<LU&9Fup-w0ZU>qKuOjM=I@iTy_C3_w7N^eYPrnVmW9K=UFMHDaw8orcOYK
zZb<wW03R3&heLEjuzK)d1#o0KUqj<}>z!c%`-#F%oAPb?#(mGp`F`lk{c6kYh}g*0
zDn3BJcZ92!ryP-m#){$bWT*hJ-Yk238&^5B1)Sb96;YGDps+*mCZ%{e?@&AO7J-rV
z<p$-h&6HBRE#bHCRsxQ*4=nZ~tnXtgvF%_YaaK*n`+CKb?1@$&n8B;;Xyn@oYsI@f
z$Vjsk0$>_;ms>V^Bu<K9O;aKtu~zR8Bo~So|9TG{7PBG!$k+g&2;nfC@|Kcu!%^d|
zuVRDmIi>BGZm$2=`%y;99O5NJVFTm!!8gAH8)FP;Lnzgofr841!wj5@E>e#)<tR@1
zd9vPF$77&4E={jL)S5G{lh%EFdI?BOb>KM4Z^P$ktWob3!B3?`W8?@fS&4El*1tS7
z&yd*|l|x96`qIFG#+R2(#&mQd7cu`>B;-8e^(e{!i|->~|IYN{iD;QRR*DaC2GF(y
z8*vXyEtdSTT}mv6Q{CYPwCyN#PDL03_j{S%1Dk0DA*o(BS&(g{S5WDkH-K&8=a=x$
zkHsW5R<#wxICcYi&n|0c><AW!Suy#f{ViHou{$`DGN_3GsAzt&)Ea*=GMV(_LU&c}
zFgsCo_JCH3^V`RvihT%CU<D_ad#|J@&4<}AfT-ZE#0wuHk1x1BgwPuA$x>rmKq>P4
z#^H<VFfW6KFxmI)!KB*cRkza+kMX=w@D1An5_OO9hl#Ac0+{t!Y4?KKaue4p`gecH
zDVOy;RBH@gYda(zZ*+LFG|PhH=a*5!;R{!|hmpDK$CRGV_tQ4ANj@51N5uO&Wv<EZ
zUI;2t;@>RC%wwF~kDhlA|82D&`byTxutQ;@7M@|A`U#{`<Puq~+J<G$)H(6X*d_BP
zJawNE6b^DPNc(6gaPxW=oxX8w^rD<DnU?lpW=gAj+14aL1u>8Hz#XbAUurCO{%tt(
z<;r)5+t9H2d9&fn(yE?z;VjjCOnTBI|8I0ClL7yn9{)e>4@DwK^`Jg1UO!HyUyN55
zl?XpMUY0cBrGIv9QhC<1zrn&~^XvqE5T9(bADH0`5By}S1nPwkBl>W$N5~yepX<T<
zyK`adiJYLUN2RickY&+GWe>1Q%z+ihHK{P&^;=C5yU7m}|I+}~LY+0`b599gEVw7$
zPilFUNaec?p&7@YUk&g#eaxNDC<SxeFG0M&@whlF1jrZ7tso}ADuDNt-);X-t8ty#
z&r0J7s%j_{jK0&m7-iFbIUTf}4<4>|ldlH1ip0Wd`;hrSe5)Z`U^|fL17M5sF^O!D
znyZ(^(hh*J3)SbRn6B>G<2N9GIS9CSbWU5NE*`-|IgU>4Se-B&mv4ttIZ6O5#L}>c
zgA*`cXT$K&m=jKbE{{djPZ(AYlzK-EaASm{9@Adn>$(e<ba(*7Qd6}&Z`Q4p3Q>=2
zV6~ntf_l9N?@m#!UR!6$)1S%~-g3+!N+MM+8no|jXcQ(%)i0^TTJ=IC6UA5^KZ^15
z#PQKyLkR=|%a<d3%)fX@K~1&#G+({ULz&)vERT{$EAj>Ah4@cwO1US{59NVxQN#mJ
z2ARI2XrvZpLVL(r#4p%54Sh*sM{jS&3si*M06A=Y9`S59Mv6k_$Us_95w+-3I3Npl
zCK%7hf<~!XMz=}e{p`k63?<<x)ae-NgApC1SBYK!-Gc)+QygH%X(?CqU7_w_nF$0s
zBH3fFn1ncZ3<*YDf*m|{{LA>tCq@@Mx(~;J%Dvtn_2seP_V_v)s90hIvMZ-*(Pf};
zo38T;&zR<6+uC*tU10NaTXISA;%Qy6y~4UlrKRa`HyzL7K-TZAIrWKG==a15uF?q`
z_Y<Li`9%bh<@05H_zkiclA{<x!9F>l5mGyfFPJDG`Veh^RQ5XNyx-2VeWI4jvnnEM
z78j!0+f%wz^avVaN<m=pM2HE2UjO=x`MfV7`rQrmh5kGgY|I~qQLBgp-f^2M?g;om
z2tt1ggAON(b9<sKSp7a=8yK%hdJ>_R2!MfOHBfn4fFCa3>NS;>4=CBHU_KfhU_f9u
zK+OhI>g%`);O9vla~GZbP02W!mva2pBS+ulPsasnY}q}_uj|PZ)oJn%(|;T77V1g#
z2V)MRf!f3ThezoC#>vu}Yv4V>n9oO&KtJ+!tXJz4z3Yw$il;%%*^dr>0gRAqqe=xz
zxJ@q)$~wn9-rl79?B!{nqxCAq_G-(sV;aZ9y&j7va}mhLK9)j{4HkMHZl2TZS08pH
zp*aWN?s(=ww%9-+TzK?vU+dLkWHAb}A%~$a*<ZqK&vC(h(eAVQnEk$6P5P)-E-E}^
zf)j#~m<L8m`2IEM64aPZlJrN;Dn3|BC(+s{G5;<OaB7~%3!2?#M+a&Tae=%MZib+l
z1p2Ry+*Beg=sqJCYnL5YV=Af+>0c3<l)R*8g=Z4BO*0cb)P$4fzb;7cF82k_WD+P+
zGK6ng2)E<ERsDsElsS*F&_C=D{PgE=0{t$qZ8{$hDr@#%td>gaw%@<vh$w$ZQ4h2l
zn$I+Rm;2iMHGlhxU$$j$3@uYiiC`pS<5;KAT57xc;46pAsUU~nAfalm0j_mj4>qiJ
zmvwX~EmI2h;8j~$bg08Jl|u9LXc8BargN=a#kgN>0+e~y%{2&;SA%9j@)TUOJ|F(p
z8X-k=yn7W$@E`Y(e~3~4lX_K3_!#fv-Oq$%{rEXY-B5xnTRTB9ZZUS0ftl*ZW~k~n
zQr6+*>ndG3pfxKUFs*-Ku_@<uH^<3LOFYUKa>bOwP6Tmjlk)_q@{9m@AdyQ+A#P&B
zz;?ODi_``2zzULJCi`uF1|DdAE4b9{M+sCy$xho1@bEi_9Yz-@qb&ip-s0G~oQ`+t
z%exxev8v`rooLL;1bIT29`s~*Br0Z8o}0m6W2t}8;i;);eIfddE?Xw^gQAQnyJH}7
z3(HU$Z-WqD`Uzx_@P!tX`g^M`5}gblUM@n4C|&c309s|M@UhJ0CnLD-3blM$3N2i-
zdjuY$$~#j|<$UNHJ4g^%0!ogklCr|r5?yhbB(Pk)VUbTp`M*fSm5Pvvtx|-$Pc<}t
zlu6b~zXG)PcdYJLvOA;)Xp2|p2M4~8wH)`a${N%!Ty~}y|N5+bxqD3KSBKLr7+4>`
zsj`Ji*<<CaatXRbm~iRkQ5?XD>s3}D?#@f$UJNbl^(}O}Uf!*=b!qLpTd|!gN=51|
zt>s40FNBQlVT8sQVfe1dRO_l=ovJSjPf-^!hH+j4o8n+WGb{L}B(|7L{Q0L!(NuCN
z*IUNQ3IrJ@O2)i09Ll{+9fWQYRN)X~(CXMMr&u+gqIa$L;(UnWN62q4nc3jR9}9*r
z5NgMw^)C#v6h$|G5#ldiYCOpub80HM&DIl*G#;)5^35Q~%7M)Jn~1`@tJ(IehQQ-)
zcQKYqYwa^~YvPjw^%<vm-F_nP8h_yxqKRXLd17&}Y38%u&us*Ks3CSTxgBRH<#<c&
zD=iT{K!nL&|L|?bXG#vC?%z)bBK!a$(qMCID2>+%X*cNQ4-e2&#|v{S<n&=#6-SHw
zTSuZOBz3GfS4jEzzR}@vIpxHmoVHs?Ts21I4FR(j)>|dM&XinPJ;8BHGV0Nn{-IEe
zbEpvphm5;$#H6=e%CBDcFLx1lv5t|xD;KNdmaj7)^@sY2BU+!J{tk2r-Ydj;_R@*b
zhgc{pH{Ql&s7EZCp}Stx-t6`xJZ*XY$DLkMIcDN+lXoWA7r^%i0z#wDLO9F`oT|{K
z%-eNMmp(dm*0OD+GDKoPi8W)Qaw08#Z*w>o+?A{;ure<s%{Lnf5miTh7#lR1b(z;G
zgk_s4?*pdZS4MIg_(`3Y#c9<1I}1S05l_!(_4k5hJSU!yPV??|rXU>);;zK5tw-Lq
zr0KV-Wqpp5RCT0T^YAS&)gF7ZE3cKX^Xiw$`N{1_>P0rE)yhIUe%e#ooR|jQF3mHY
zGxC_??JvbHn3%s_IsS0LZa+$r+f;~ij3Rrv6zMaH-LG?cV;Ws?Z1>B-@J`brQa2&^
zV*HPNHp)9T&POK>|Id<#G6|A0fl*Zor7Q$8d}NxW7*DEVCNhzT?1J~|wanxhcg&Y^
zKG}6{{XE~3dewGG{^H3-^FtfzI#N!Tz9+lR(UH0bG>z)TOGW;iR&9}-R+F+j^;QHF
zXHDdC;g4nve-gLn_~wr&z@L-T8N?f3q<;w5Z`DrRR8!=o^G;M8uylbRf`qsW!DD56
z)2DE~vS;NLoSJ5>LaWqq0qolWA=xcjxvzq8u=6SbNuz^NG55_|uLz^dZU)ZAROCC+
zpX1g2{Ac(%padrTa1NPJ?-xwR$k`^{?MfX#evukFzID~*<p-!8gE1zXBdJ^c{E%-_
zw?_D=aM^gLnBPua;zvRiV+8`)dLhU$+mnUCGTHZ<M`LFX^&opUlIv@p^R?EIzx?wH
z#E^Tu2F>*5I|KM|l7!as1s@daG?+DKI%K;zfn@RO;EN5?8b%_bJA;ZbSs)JQ*$=`M
zJJn|Ib59^SLIhoAs%kTWc|OMhg{WIUmaq(dA=bLl$B_5isS;5<<hA2k;iPbs6KUJi
zBLs8v-Vl|?G#TySN;M$`AGG3q+KJ&~=^5b^w@(452**)j9-y&ayOpF{XjC?P;!uaP
z9xP4-@q_tY!#mwR!`^6&-(1`{Es80coZtTT$xx|Rsf-HG+}cRz=xSUd>@vBDq>FhI
zP7<^k-k9Se^PM*UHE*#9iw!BG@mSYNaOPtD!<6#{d|7yQi>yle5##F$mYfJtGXA@Z
zbyN1f_JYqRMMjR{?0A<^1#zbzGPg=lBK^u9QA6NrvoKWIS%}&?_se+k`GKN~Hxj$b
zQ+CwmXP~1X7Bu0|&)}~OHl!c1kJXLQEz6sa^^HWKw}(V!`x*SLUAyP{I>AxEcr^Jt
z^Lj7Y&+yjqbSUJYS9tcqQHg{|YFwk|jB=Rg@EH&EV)b$hN-9ioPsS7B<nDmWpm^HW
z=me6^h|%#>6OutkkM>G3H5Y$j+QbR*(lgpkylRRpP+7V#mROH)T5p-%+K$vZ%N@x{
z>qFfe1VHQ9*N;=q6Rn3)oBAo8aD?9+rhld@Xyh0qdeWtmX09a78u65v@GbJ6-)>YL
zQhlO7;)-trwD4zV-;=~GXJ$qgk=_JgYvgc}xhTyAE2D`T^!VL3juq}(X~{@+^^_1H
zp!VE<Q5T-5-MP&JlwhYbxnvb#J<}ipoA(ozI~k6+2b}vJs(jOIeZO16t_CcaKfxvZ
zZX|WU0SgPG>Ug7}J1>-@^9=!dnd6%2LFRhmY2L0Ex(wT@8ybo~ik+O^^*+VCAup0e
zq?b0d)#0E+Z2W#uaFSGxa5z@R!GOU~kW)I5HLbkCG?K||d1Gv2SL(??*EW2p|8y(^
zrA#QDaGi~)1!>jyc3hO>x@C4quuo_5JEic;%#}7TqY3MeJ5CN6G-sV9rT9!s7aExw
zf?tJoC1E<$HBdi&sLzg;wgAIfYT{u5)GJutbGJa6ifN-T>7G7r1zMbzkSAH=8|xTF
zPVYot1|XJ<#11+ZqMsIi^1GpZaOdig#m6>swAL_symQj>r2obcDj%x0kkKf>ntW6q
z;pMDsG_YNRC#)A;h<e{r`=_l;i_7xeX!a5W4PhFA`*+xHkvs^sE|oU*;q?JrShnWa
zD)OKH8DQb@mksR5ku*m?PJqZH;{6NBY6b;K>jOIBQh-yS4Z+D7@z#~;(@STVMVxQ7
z*@VD$^~fEE-wdZ1I>8Ns<g5t0$z^qZr$gv)+F?GYeGBwP2+p5!x75elNFnuyAx@Zx
zhP+`#C-F&G71!tVSl&pV!#U@PxtbT$<ADF4v(K5vsEx%FO-mOce^<J5!m8h#2bsu?
z55i#%SQ`g|5}^f#`8r#>ygn5srA7{Je8m(3E}B3z(~O1+vlTz+X*sC0Q|Llm%i8}W
z1cu*D;44GCl8kb0hHqmybW3^R2w_eBUGt#%Vcm6UlilVDl0bt&!ucVQ?&lGS=)mj9
zN58;YnL+u)%fBKnom-JbTkP{emFi-9xvizfH_*g0P0T0Oa9*bj#`%7#Ut74p$3ZVy
z3u*UfRc_5ifY>4E;~?8AgPd3X71x98WjlZ8?^e_N$(TWY83pirKO3dD=u>Ui%Gg(V
z;=24ev6#6I#ZjZlcc|m>)u@Py@o~y3FC~zLDavr7@14>7BZfeq@=mMhlxpc?h^Cr-
zG^p;LBoDuw1;#Z?UjO6JV;-d0FoH7cXC$2cl5)Ce>`2C2_dr5>^N~E+OjX$>qxxn&
zeLTrDJBS+>rr&(N{xsa>)s4S4j)5=vXK#s%rYT(?wkg8+#+nf?YQWkia*I5}b^W~+
z(&eGLoa>8T-Zyc0+-46(S~d+wW7m-SJ5qCeCfY!9^+pE858WKtV#KqKpIfSqqh3+n
zQAIFS(FaDm&OaSQybZ3;-8c643rbYK61@_hXEromQA$kQ@?IdmfzNN@_?a_$2@wF9
zY=&$**E;iJCiLZQ(u?mAHr6fMuc=Xcu~F97@}Ie&;hi#uPbpos$gkHoet0=4xI-~x
zNNg(VocH|`ifYjY|7IT4pM71Z*Hvq3pkDqJMPB6V(IELhx<L5J6kGW2Y+UH|)=M!}
zo;Qz~4tp@R3u3WkEHAbqMqGIB&-_js^ccP62YvM)SH#r{<YPc-%Lb>=OHPN&$cO9O
z)YJJgnK=5M*q!4Mr2;5V(rGnzI6%E{CdD}L&C>gE?Q$h}?%G0JzBxzlaP9WTdQ6&6
z3?Fga&pJMSMlnQ>AY1;VJa5a|fu9H0u>CDilOJ#8yiM;_E!2LhU1b)-oQ6Nlg_M|B
z9RqMDGJCyyd2iF7RBxPriso*x6%r<G&v#X;@eO~JS^s$TeFgJ3L3S$Q1iRxn)@2<G
zU75YN<p}3$X4^N!+i8hjUnEQBzv^zm8}y7izmn9EKG}AlY#qV>H}Z-vgQM|W+ah*R
zN(<qM@&EhrM+GIT_S1_<3iQwhgGmiokz&?|7AsK^Jsn!`$(d<hiH4z}$p4XlbK4S?
z_jW`_wZXCURf)M=qHJ5@NS<f8ku@U~>o&Wy5yKY|e5pq-P+Gi8vy#g;=<rPbF1Z={
zY{c)BAb2p!SEj!~Qih5v+mF6&s*;ML$cC}XYB@f%+D3N-s`|1AaXu8WAfP_#?3#R-
z?|?CdTOfw(ry24lufKm7Z>Ts@HliLS=Oz!Z>2{8R>vl%@37#9|srWC(#4NMt)PaV@
z$oZps`21W7c{S11VbxUaswihf=$0s9*D@P)8J6O$0gJ~IQk1K$V#o*v=5%FZ&mwBF
zl%IWaXSke^!mEBAV~AF6dI?PuJ5E5=L^05s>sLoB?`!H!+Mo!!uuWKt>ymae9Ke&Y
zuLqsrhuAYzAF*M3x_`muK;ICQIBgqZdzomd;04lGzD#m+lip?4Qe_E{)!LlnC)g?M
zE)`<L0gIgu3fMc#0BoXs`sd%)HJp!o=7;#;aG?@w?JexWNf1Wat4%-5on|sa{_3Hh
z+592dYQ`PH1f|QioqUJAFU@54R<eQAclnqcedBr*?eh8YB)Q<&)VW2f!Di&N$s3n@
zpkGA3HJ{af@hLx_cU@|Tj5s|%>U0!{p8A_gEDn#k+Sr&eSfYbo%ie#@WF&VSqo#t(
zis|5BRbIep<Th_fum-{!c>Ah*oDjw4XD?}cZtxxhXd3=w3G}Z2wol<d&piCYB&ZBI
zCZlpyS?J3frk6QZbCX`})~aT=+ddsIget0cT<;7RciP8s<+*l0Ii4(~$)Eh>yRQ}F
zQQrs>IWIndX<KljeaIFN&royuZ%-%5{i8`CgFV`7sN@SW`4U-@;RLD;_WDWnw)oqX
ziCF}=u^jn%kPK7Qf}dTHyFj#VsVNfwiTLDMG(e3g|D3x53U?gPNxxk3f$=*$C!F<V
z339N>R$td^q?b$xpouJ`=1Wix#FTjh_=`%*2I`yv^HGFOG|RBv*I1T{;C};u0gfoG
z8}!ueZqhpECV=|T{Bfg^d!2wsPLx_bVs`+yr&+{RR)=IVQ~-<*c&Pq6l4yMa?EkY9
z{~tfUA`_H|d!yu<=30}UV=B1$Mt&YMvthHmuQ!}UyUNzXUH+rZIfj2p;G-Gt%KBUm
z$2AERbUDC|jH>a@9ixhh|5)hvwJ)+qG7B`v7=NOXihMSP&ReWqQ}E|OV#5N?3VU~h
zVO(iENEI~}lOq2fr`xC?GiUKsiMpI3FC4F}_JNAJ@u>s+^cj7wPGf)s%WtR^;C?o(
z>4egm21pPc^C2Q2`>$7D6&uvU^<dNZH>YqG5z26epe`s!*$J3;nbk*D4GX1?Mt!`A
z&f0n?#^dnHa+GW#ni|*W?;`jE8cYZl{?>I}4l$(vl`Zi<X+Rx2Vp$;W_Yr7<!4u+W
zO+bcTa#^UiGY1fa=b0?p)e`@P{-0MYd5!?&<vKa$gLBXU%O=~!*0d2jeuZtUm?6*v
zS$&I`!sk*FLHzoy=h+UNg3EqU>pB0QSAfsmw*iV6VnJ+5T&M0mJi{3KJ(y`?)gWL?
zPE;_VJ>EgE+j?jsR#73K%K&#KxpY1kv)%||4sgx!IGvCR$FWzX0+}NM>F96*7TJ%g
z@B?uq3Lg8kp{E+_^3VLau>C=}^zAn;8+t8yd7Sw1I#zFhvzHnD1O0cWOmqO4a0^g*
zuW(tzB)Gvy9q^CcR5KQWsIh_{ooGbxC$o)zRbE@1YlBf&+8*hpuopypdgHM36DDa!
zO^TpS=Kmf5gBQ@~O-riBWxj*Ddsvnz;<?Sw%Iv99O{GK@-A#ILa35sYh%q!@z}`Dw
z*?MRGn`Q66>TKdhV5IOR@ZbMg|5W5eP_f2)EbjYx+u=h=!BV4_*+1>8Hy_S;4k=tV
z8bRh|;K$0!8qYE7%zMy!lIL^%*O>c(Y8~C-3{TLM&3*f|%W_QMB%&378dhD@-!y@0
z=Co>DYjRMZJs{1UK#uPE-QqU6ZVfofa(-<Dz#ob<y0lx}tH^*DU2W7E5YVlF_Q<3M
zm_7DTFn2Z!Qte|wm$NA7(b4C<zd1Rp-z9t?tjRX8QqYep{+C1XKc2XMTf0W(l3BKA
z*<lu$>3P7@z2z#jJ6BU!2Ih&d0tHh4j(53lF)Wu;C6V{feou%$C})eV`-|GntNCFT
zOR@jNMg9MaS0q6^>!Al@pn_qLz9k*<b)n1<4s$@|{#QGJRt?rq04@UVE4d_AjB<Ms
z>7xO;*OsGYA2;&3cJ1Jqq#^0iNm$GQcrU&7>NKSdOvFdPn7AcxgANv+keFoX%S*TY
z;Mdc|&E&L>^#+gXYR&uUl7URXMLnGVzkT=)tRiNVcQOdL^nKdOpIVVZ83{XeCc%Ja
zKSW;3j^kf!URm!@DyzCcdott0-g%w<tD0M`obN2(G}9mExa$wgar$0I9QM)U`)q9j
zr=F!?@luvdlcj6-zj}jYaiaVIyDsBnar@41&#Onc7xDzar<_%-*vr|W>Yz`02^LUf
z#-_`neaqg)l$w%@Z&l#=!(>%kbdaf%Ob~-oNRLXsSY&V>+#i<U4;AVSOI6?<0V~&S
zi1%{+zaEG>cHU-f?kI{>965l7a9Ep{oADL|pFSA4vR+IUD8yZ!Y_+U(1)=8y7mI4U
zug|&7Ty=gKfMaCC>0ISa13bVm{TSf6td###s{h}&MI)s5vlV+Ga#{gr<?TE6?Z{F_
zkINiUY~5g3#VRco^7pH_m%k>$XB%&{zx<13S`>kD1N7H8f5fL>WIi9Nlxl!o&MY*7
zLQv=GbQ@R5)TsvyUYT0!<4Qh%x~EtH)1_A2<x)+yCeSF_<+20bQIZd?v)1mR>2&}W
zNb8|H>+`&Lh{dx$RNc1iMQS}eDd)%+s73$xt^B{8TWa7UsDJ4|GPVX4pmC$={K3jB
zI<@_KR%f7Na3BB~z3bYu>$$bl=CEUu@ZCl3!~V+WvO^2dV9+VhOtQ2Bg5Qg@C*TZM
zvHZvC|2(ORETeEbEbHA}^a&SWB^^Jv#W-nnK0-*jnua8mYU8#Wbbqv*`xgrmEaCSk
zB1ZF|oNkdmB#-<UM<X8W2F4Hjxf$q7z~+{exL7`z{hk>?#tYM5Fq{_6vYD-5tpZ&g
zXe_qyZ=N$r-$BiMbgT2MzS{uP_tsdOR~{{vHEG~R_PXc3{qBrSyV<$;p$O=wgjCRo
zFtujNKk1zR+#LVo{iQsIRfL07K*IIDk$g1STfK802Fh!wqLZuf7fl>dIVLr9?dZTF
zbv3Bk2_y;~=rr>CuX`}H@*@N-ZPijaP*xHLF1t!sfA^Ryd}Pe#VkM6UUTYG5s_^)4
za(-dq9S`+4V0UPmD$}mFod=sUF}H29QRgP0Y$pL50vm1lAJ8)qfSd`8koY{<1Uds)
zR^wUzoVGv5gU0wAg}O-2FnAWRbcCD1dln8(Q9}$xt+!;p7pum^bkPs5LGa}A6M|wZ
z@+2Hq>r{5rw}XN$AyP&Ut^^PuOz^rGV94wb!KN8pVmtc^X1c2NE51Ob@oriKb-4RP
zgbXJUj-;)<O)Q&jKo#w=!wZL3(S|$Q%A>Ec5(+*S{(3=oAANF+9a2;~5f~Fy#%g;a
zQ+la=f(`nV1kJ#Jn>A?y#F6{wFFzLj#P~nfZ_zLc=U#Koly!3kbINu2&EM(p1m5Dr
zdNh$NS*+yBSg?b-MszI-;tr>6(P&wK|Ec)v@h#I#8BQ8@_-C`8E8}Wx@U+SFylo{h
z=@$D5b^#{NP0*PBc4w-1ojIZELSuU4!57&=8A*9x(|QUUqEix*9f%+BW>}HS5DEXs
zlcYh45TR)~ma&KT4VW7(lb)l<+mv$JFG=b+@2j(3PeO@VPJC0}?fZ7S%*55F+A_!y
z498r)E|lGZUO!#2<udE)``(|&{#~YT*-NG+gMaYYT+aOFDO-O$+lnG;?g{s`+z8(p
zydkr1@J3rLzuTfkW(b2DvtKP7e69D%YAZAP7A@1!l=b*KK3ixi=U!#il-;5#!SI!&
zg#sDFI-*}5qs;pmYpV2yxiP^E&P|uC?;d>=F#AdJJnL)wYO8(uOS(!SuDjf%0Eanv
z&gIl$$t?5rvURPZ)OK_Cs^<cE;r-!*Fl0X1W}^2FlN){eryr>`R8-0uR@DX!i~5_2
zm+JJ;^H6#3^YwVhHy6}pxdR2s#HTA8V^HS3hB>`?yJ<BNH!Fr3-!v*UA(Gvje0Lp>
zs?}wFxsfXu_$(VV!DF&OZY%vtcGqCZY;KM2csFTfFzP#$2HiIme`|XGpR9Hxl>d*b
zuMUbjTK|>?=?3ZU7U@Pw0i{7oKuWq>kd*EQLAqJGyGy!Ty1U^$-gxi5znL9ohyP%|
zd(QKGGWLa!BM%YzWpXhUwlLvQ&xjoUa00GRmi5xRVYs4#bMKV(&r275kKb(%1c3(3
zxnKp7G-)*}`sImN*L<pst<sBtO%9(W-WVBAW}l^@aet-farMD*xvG{qkw=Q(;gI6J
zb{W$zJ-7Li&ad;<>Pa_;+Yr+=4^2Vubcg-QUyV<;2Z0Rri)WKmMr#N4RvveU<ugl_
zn{qG^>7POJizGEGvOTSQT5o16z14Q->`&^?M!d<QNYDgzmp$%u@s}Yvaz<}4bejXh
zj0SbC63_!hn7C*o6lDT+iiHr%Z~MTg%J?_;dGPgqz~3B4s$%)%*ZolhPC)E%jne(M
z3w>78q>vHucHi8B>h$kih^(h7ys!5@<xL!gL_i%k1$0)iAlR`C5^-(EL6^te*UI6J
z{H>uR?D%%wW;g%+9o|HC1K*}6H_Zh?xAGWC*z!-+fK88eU(S?3P{00#u0hlUZklXB
zwI7XL&gikNct3kiYPy7lcY;O!cv_$0Pbw(7UaPFbp3ekfz-_x?i$G7$pl}83b#p+Y
zX4HH+ZBI?<Km!6b@oQ^Bx=TJG3Pj$O0yR=(ERW-!N<FA#`nVpV`>h|K151`?XU_*|
z2rjs9uX_~f3$i1{p^-2Uo4?bOh^b(_t?<xTJI<rTJGh&}#YMhiogN(x(D_hKrJpII
z?1s*bD(#~JLRAHLD(BoQd4w=lg+}cw8!NdgD_a|R>iM{i`JAAzkN!$KCimGQOVC=S
zD9UB!<tIlOVHJ%vB_;jvLI7+rhP7w#9szn@7`TO_V`7xm?0ru5AI?V;rc1Qtq@{zl
z5T2POy>1?SV|c#1T!OapD66H0-BGOYQ+MpvXOrP%n!gP+wYl87XqoHaN-p+V@w&HU
zh)7eNGem&qg?-67is6C$nZVE`mkB$_;_6^->M2blX&X~~9o(}^D78a}ph=kGhDZ-n
zU^hGF&)?a%2SoXAqe8_U#>d7|dq3UgdAVwnv73!kKQ=;nTdV-%pbrKl>ka61+Xc6v
z*XY(rn#E&y@8f#qw%N_Yhx|Pm|6XcQ=>L8>CVY!{eJCIXo#K@6a3T3Jaqo!8arT|s
zHk^EWdwYBxq6)dLR-=<;H54HQPO1s*XCz5^8^IH@NAr!6D74iV0l#c_epC4FnD(^8
z2ci?F+h73sV_x`J4ypUWhr>m`%1gjAo%56OCU$lb717K4+l>lcyWn<*k+>&092Vm3
zGq|q@GeDe=b$f;B-n%J@lxb>e4ve{$7?R|P3w{SnQM#RQw~VQ2zSCaEX`}l!DQIDA
zZhE{D2p3NR{Y^j!9)T~P{;mILsd1?xkjrT-t98;M%Ftc89+W9@dejY$A+#j6iB(lB
zH!J>D)%Ci?ovSH1=-1{Qq*G|pop}an%Z_BZ&z%)Q=R;BRw-KY(mPm;hrzkNnQBj!j
z=fr3ORaHxFcAo)D=2mgGR;Q=?9aj3=KVCnNu-g7?f#&Z|&Im4vQt%Z~m{)Z=T90fs
z#!m@WZ+U~vC$#5LTJlv~H?~M<O1BHJma{?}S)1OPRGV^2jlYRw_B9nbc<##6_3W45
zV`-N~Q7!W+(|(+O9F6fmUZNrtkdxBssdf*mSKpgryHy7ru1&AaW~8v-b?8I#-hb@K
zk5lu$N^2`OwOFiADj47ExUZ7#2YHcmpD5QGgEO>n8oaLVv8EalR97b3@wSDI$&9&K
z^naMn$lk4Rh<SYfevpvx8?ORuAurIO-X-?IW<z4S{tKOB0@^Q~XD-;@cXFRvb*Jki
z>j=y^b|izf>ptNLK8NRf7Z=;l?%JKstt+>tcU|lh!zyxo)O##5VTMTfRuOT_d%5qt
zoonP6!?Bn9uZK-31oqVp{6Nd3q?v7p^rH|L;~FdpIXN}IE*z9}oGO>zw7Q~Zy}}vS
zm5krrNPN9z0_?j2xPHcRWf*V0%d;2-{M1a?J$GvNYhBN;0mQ_ZEU1qU-6HfF(Y3`f
z%52RFZ<tf)TA+OH9Oq|)Av~^m*?9+(y}4<gMNc}Bp_1xt-)m$s(0y>f&geZ$+f2}6
zP34pr<sBCMc7gsbQSD+jlgr%@L19=LEzzw>qBeZ5NolApBOcL$!)^vr_|Ta#de@Da
z(*wJEd*uKaF-1HKe+wQSSV~Ohfxye%38`TTk20>;yT1HSFzdk^b6|+GSb92cZA1{O
zP;i+;QpxHE8hEXcTMjxu{cq`n5%Ts!6P^J6+bZv=sUzL0GDzHb_k|sM=NvSA)Re-E
z!F9c=D#VnQlZ$!0zuxar$ijT^N)&X3TnhfA<m7e5W*0kvF$i@%X5<9186ARfJYaMz
zODTtQ{LSVk;Uc#Bx9c~K=|W6^pi34B38@t3l8c{ze*U_K%cu`yKUSy7&nq$$#s1#u
zJ0kp$P05U|`+Jj`$_$=+#4jON>8a!d{)q^hr{IV-=O#<}l3ZsAc6oWv<EyLL-Uq(<
zmeU?0JD`}+Bpf^l<9O%M^D8Usp!-hu#JMd9Lh5<(q4vDm_C+`-K?){92yNfhWIn#T
zSu*za2BC#37EVwxNH0FA5#944wiYt&6%U;Ut?aIT#O%D+{s4vDWsSks-ZpyviZ`Hb
z2h6cEE#3lLTzDR6r;8mY2lA=BW2ubxA#DYS)8?FF>jJ&tcFbO2)@hg=co$$YA6hYl
z<{JI)FX=zOs{i=8$LkZVs_E$P6T@_s%!#0jo|{4!vcd@aA<;(k4<i9FCq~cjaAqjp
z2B1k6U>=M1e2u|L@p2UC9vvOh5_H|_V>RHzwRp4F*Vi4$6fif*arTy*Q>M5nxma`$
zNO#9lC5?nG0{dS`TG(+47TJ_{{N|x;ASY%VeHX?r$6l}RT$qJQtir)Db_ch;mo0-H
zhlSbQTRS<TKG}OC`0IF;z_P6INQ=Aus`@Wll&>{#5S1!_QO~Nwul=~>ek`OFX-q32
z>-h5}yPEwYxQ61~6jSGkS&V}wxs3;~@htA^I6mOw;}_|{z+cSx)(=Q3L#|bc?i1w+
zK&#5p9k{7$X>|+TSR_R|B}J{Q!hi5y8Rulxt6nDeiZ}Lzb^a-?e8)gxkiNBbA+W1a
zr??D*6#3%six*RRrR7~Y29{cDX6wMaNwH(~KT>P$&@__s)ZmjM*A?H&2_@Nku8S{y
z0mGsoIPt#C=nmC#{@wAH<E5OpQUnsFl}=i}C$G;K&dy`-3ybA%a~oj&xTBWwMNCOd
zj<neBovjmAX-lZ7bE{u9W~9Ep;<&x6ulN{w_#onAwrJI7tQF*UJX+5fqT=Ng0Q)8!
zv-Mrr)V0^lb1h-vb8IzDl445LanUm!Z(;_Ed(DGk!}!7yksPd+6<whV1|Aum1Zm5Z
zd04Tu`?Td4=1!*;w>o9+7ygD8)pkRK^&CoESW4GhMiR%?IV7E&mW(nyVMpZ;ch9b6
zRqUubudNP$;5CTwy*JVI)p$9VL2ml$>^BSN;}3y9kw4ZIsi3gP|NY9>fp)!jlDkUR
zxoc!?u@L_haXg1`ZlCk}ii8j1>5G$(B0p#5u9`cdf)s=pv-*VtV)FO}Nr^D&rJbE>
zPcC%-d{lA7aDJ!iG|jWxq49R^RCJAD2&{jAT<SnimF3|I7T%QnnF{rTZ__84xrPs9
z&H$joz(LWJ(D#=uRzaUbzuK;Ye3OkLhrw>q+i2i(ACF696hEuHQZ*I4VJ#aMmN{yX
z-(A!T&QuYhg;6$DQSO&spuyzGp;}0}U%R@Y`1TbkLg*@S<g0JvyElG7ks=BsN{f78
z$cn%glev47X@9X?fMgV0{1y>jgHWPeWC)Y6Gxax+rRbx{S&n(XM@}q{B=JEEqiDq9
z>}-1%PF#RLpJM-4nC}nAoQqmZ155sN_NLYy)Y9#e2d1Cb)0D_voumq$^-=jAD8z9L
zSreUhiaf{O1Vm23osY1?wtcELk1N)$RX|ob@z7Twv>+kJ0$kBR!x5-aGKX_vDN5h2
z2Se;G<paqhh?u<;hE-4We(fV&kq)!Xt}v9gF$c#LRCH3i%<3VIka+G5YI7Y(h)s-)
z5IOI@bu#3oW^K2&pKm7U#e;zNKCGim)&o#SH163LE*TPQ^VruXofe1mD52rctk7rW
z$1#ga7*77uhhh+W%f<O{KBtm{;)bOs-1XwG1K<o4oy@09-w3BC{SegK>d=tbVA+p<
zbcUC7brESw%6owh<xR25F!=Bor=-)Y??NhAQe5FWU2<@4y3F=zW}yM~6U_Gc*_j}l
z`kJA;sP-b$^ykEDgi*?))4xqa`=d`@q8R=a>q)Gmz+*=&*Yrp88jRz$KTZT%v$E)m
zFrEK3n*7(PC;bx*D}Mqy7YtpnBQylWEz+2}6Y#xocm9U3BW#lR;*-%A7Z=GbIQK>5
zP(du@bsT8qO;Vs3SScn!pb8u9a})rR_s;X}!6Ht-t(dPpO_Kdxs)ssNWX(^PA317!
zGit8i3P`@~aM%q#L!&VeQ0BQ}leSeD@gT-D@zuW<GIH|$)lZO`+viYaGOEiG)Nb+u
zP4CllFdeD-wVQGQvs^AqjS~Vvx(V+DO0WGWNePLW!rY6{NaW(Ri>ue{ZSH4aR(DJ1
z--@8H@c?$ui(>@)%Ak|D#Ke5!x%xflci3hVxnWL>pM76+G(x&Q=SFl^zr`y7(ADnX
znsZ7pvHH}$1cote2FBx5&+%qqcnNE*z~$sb@s1+^RI{*dSn>xuH)sDn)xAT?E>6qy
z<3D%E@Deky8z?zeuX`3*Y0?Y{a?|6K!N4W0S#5Qu|1j}x*Y+uGylO%e$zpoi!kb|q
zuWwwDta_xDh+hp0K75QY84Er%>e61eXZ$ua8l}*}%R?Cp-_x+#g6rn9nLC6D+Prt7
zcW^~d$TH1-UaTiO^};A_ch{<aaNbgt<N6!4kqX2_mH%;MG`pp&bpWMWH{R<iaVqzX
z)7_$n|J30R^p^Nbt}mLsvtmxUXxnJcOqFD!O|SQl82Dd`3_OZ|H|{z|m;L@iM26S1
zy!gSiL08}0+VIMm<w<Hw<S~~ob_73cJSi<Q6NxZg&6Bf}znA1cM;W=#JVhj==kn3R
za8J$Cr&^>{r|D+W6KZcSqScW|v<8a<xA54v5W>2`KR6YkP2<SE9mBKuW4y+CtmQFF
zTpcgRpKFP0TKtp#=<AAuOEas(s7s_4i%+$>-|ryjiV1CG_qc?kbc)NFmBr%Oa1uS!
zS(G!Llh(hL;-B}tGOX~o+il;zKyIo~x&f=t_;r|nFL=hLk&mtq=BNN}J{huUi*?T9
z;$*>pvTh6az`n@5H4yp&X|5{#U8RXehdr<7or5P)B23pqO+_4&y7{R;-&V~R#MN6@
zP+97bOEW>`he}J8!oalvAYZf7=p^l)V_c&i&feVg2|QmCLt1SDNi5Jmmc{x`1Sr~m
zeO=nSyAKmb3?e^jC#HcQ8d$<@RW=j$*mk1w>`Ww{vnq-I`4NhWdg6{AaB$v3e#W&<
z6M73G?s)Ppu0Rv)c&n7H4S0GJu-L^yeJVQ1y&xt$5?j<m7KR>R)%x518$aM?jgRx!
zW^@K>7<O7tU^-|Jl{w0SIVgDxg_JSsUU8sodG$t+mANLODTq8e)ZcEUTvBizPvyQ(
zWN)`*PAAM1EJIZQ&}$1R8wB4Kex?dJF_HsuADz)0V?WLWqeN^K?jFpS#d{d@OThG-
zEVSGRn6uMnt+=lOs;;CIvfnKM@IBonhymkuUvhsf;eiJnB5r)3s`%pa^gu#M3r{;J
zjUt_C^lv}pS>cJ`zh;DgP7440NvsUJH?`U5Bi&5^%V0Aw6+ppKBLoQz?ouV1`J7>l
zjrj6qG!k}cjU*3-wtT9~cP#%!h9IlJK6U4n!vT1s2)FO_E>2PvLLu?N(wnZvqjuTl
z&YbQ}l<rkb?mE0e3)S{|yunomHlc1@8}!`U6mCiEYp(z?*XvMt2V4buCPMSoOfu>|
z7)asL)&YnjV6;uUYygh(O~_!+K(S`4)_ZV#e&s=E<nxhNEr$@#W5hci&Ue4&v#J3O
ziaZ)!Un;Vsa&l_-tGVrq`-|Ta=tZVq68`FdnQ4DXWhh%2F&3SDsELXCKzSsu;3SkH
zHOE36wU(Qkt1<IlfpxC-Wl{OxoQgu3++e%SI2z>0qTi?~|N0k+rqO;wkuLY_*DkiD
zq>5pcvyG!Dis8{dJq)qRdoy&aBo!}ZaE=|&m=?l}Cyo2Zs3AB($!x=VLdD2cJ$5TG
z9A<Hzk3`>=#!t=Z6l*WXQfobtWuPEpo-yQL_T8&)$=##t;+2oGO@7$)&-Mc<WfHUX
zru8(s;yDjPo)ClF{bw|0N=xCNwKFwxy3c)wi+hSDTA%aOItNVlrxOwW8y!%kTqVLO
z<g^NqX*77oYmJmXMYSsC3@TKY_Je)PJ)<3T7FNACul-r8HUT>zEPkSAnY>R6XF59x
zh5y*Dz5a`(fQ->sx&7Iykl<h?pN1^zCfi7_H1DVWf!;-}qo(tZ)zUX#H_=6;SQxE}
zq1|YT{QI98Si?DZ{8nXv;}4=6q@$uinJi9AYe>b~sv1V~ZlvW%Sco>X=);C|+9}co
zq1Wv&)>yHBDcb2reHZ0425xd@ElVmDylGQ2p&juFl3MDYNct@pb0U!?2xT>va$8=&
z<WHyB>ecLs=5t}{nDWgt+`8R&00FOakq8=7?Lu{0P*+u2%<o%0gJ4MCYv{}$6<3D~
z`!9a-BCH{B_Ww3df3X!~XlUrz+qdN_FZk}$ABSr1$9=tca>OJL0MMv!Jrp%ZEH~>s
z;oQW<v+5KoUhdC~Ci6%+u{F9N;gY8(a$Cetg<+~|z>x|7biI|^`w=MKkfvo+x-ekz
zd_`w};4&4{_Pv1nt~99J<aY*+pbi>wwR=RwU9+pvomd9tMFm4kL`nG`!MCLEs{GG`
zgM+QsX<{>*bp$z0f0N^Azxg`LZs9$iEdzd?+IH;WQKOGBpSUfGKe>v2fozM9BIY@W
z{rGcvXYALdz0Y+QxVV<t3|-JH#v?WRf)ak$_V@T(d;&-vzq^|2{;MIE!ZX2F?P;DR
zLAzydYWqt4E*UXc2qjiWAt)=xgIvW7!9hXvWv@nK{;@3l|AT;-7Ft;NvYV~gAC`Nc
z_VQ5{Vn-G~ct44~68UAEz9#S`B~j7SagkoZ;N7GJx!C(gX;GtKk;;!GDiFKQckglX
zNX<(#|9JnFb!y-1<$zM>P2op;Vb&f-4i~P;n`S=oTf|Q;D0RHbOqnEXkjvl2Qa8i1
z5fPjx&A7%$$M--A!K5%k*TjRt+5B)OH{bt~ZWdI&QUgBh=aK1h)2;cLy|2@vD|R-w
z_3|RBK-T5zW>V%BY+QT)?7^J<Q0anGR}ese2r$Flt_}(!Mg{G&Jszu>u#&Z59A9jw
z2TS`0nSn5e0ux*zJYIP{Z_mP`GR2G-hl|#axXn0iQCHL2)(lbx5*!MeyuODs;;?iZ
zHoBEx!V=Oyb=NLAr6g;#G|Yb%m+b!$VO@~cyij}mdqj^!ta7NRQDOaB9C*McjfTC%
zss!B`uU@{M$*?T%<@(+ye^soSe%L<nl-hK+X92NV;vY44Ljh-WfSVK1002)NR{Bc)
zIjz-5;9XizK5cJq7WR*$#&4`FRGUMHee1fqO57krqy{ClWwy*$+|EbV{2`y5oNBaR
z&+RQTWp&)%-fFi>6;9wUME~>S6xE^D&#E;1`cClA-H1kZpnE>KqV;~kvA#k8iZp`V
zb$yz6tfP_8kDy~(R2bRR_g-Ngm(IK@3Yr2dC1HHh3w0XC9<Q>gYG<r>=mODP^j0g}
zCqDL%j<CPqpL`>jnZupVo#AbAsQ$%df6+gukZweWoP>>6A_1Y7Umzc%>@3&b^0l@`
zBecQfkT!U4T!AGO)lQ%n=6@%Z-%pcFe?%4H2fqAaVo@NV2&2?SY|-2PlCyg}IP8u#
z)B7y%t%gp{OR4pWQ6$z|shrwclP*u!E$yqu8$}No=*#`83T$KRGX)vNxdO0(^@b7_
zdgNZxFjqzW+1g}!)+jtfx-ZaI8jM{Lkwb#MEBN~6k*38sR5&9hrtBe{Z@@Z*s*f6r
zfFK`VAf-*a5Anq_01PKCXaKad`3Jc)Rww0?*Wo|FC37h5uTxDKaruRD)E7HU?oRa(
zv@Rzy+NbuYyT%8fCeJ-@UnQLc5$U#=Hc-D!<HDDuBf9R8ZtNH$`uy}*0tMO*t*4*H
zATYKswq(;#vY;Am+6vGH&BI@8DMe|*`;s;8^z6Po(G&aX7itCAt92Bqn?{qZ_l*v_
zS>0kgCgCiJS<QNgKO%Jy148AOQPx*Uh1_-~Txuf2c0drwrP@--BI_iGQxPe)ztKiL
zjh=WYD1bdB*{Ujk>a@a`ORTr6a^BkjxTgw~0NVsKI;?m#5k$v82<q#ThlzK(5N|=A
zG%U1OC`rfbAwmJd>Bz3Gt{r8J<b%cfi2|+a0aCXeib1wp!0rKD_jX0GZE`UpFCX<g
z2Q;mqR9$a!6%h4I?V)Lw9RyS)ZqJ&91vXo$W=NeAlN7j`2kpt%yf!-Z#rU0KP}~=L
z4KgEKiq_*Dhb(B)|NkET&o{g%upZP-zlX7wOu*>Mgo(C!xI`VivP6RlO_ek3T2^3-
z(?5^iBYjoseUX@a)u@n++8~p_=3dkIa#_obM5dUZ?AKm__m%PPMA}r(WovOg!zVVU
z-z->;9lV>B*IeDc++1dID+wg_>67=<NT*RZT%>V9rQ33AK3_FCE>+CzpNeGVCzaLt
zViRZv^#o<+!(8QjHxLRTl%Any<6BfhR(Ep2)xI>=$9S5T(?R2^g0dX~;jwiF*D{@L
z(fTNXXO%|x#Zok$ON!&?@x~3^r7P)i*>G{^VJ@G31opD~@H6TAD#Jm;%z`Vbh$WH!
zSjf-tB^n)-nkb{~%fx|SYUkT)e%t{lJOu@2Tji5@$D@Euq6Jp6Z(eE`)kx5<5w$Qr
zFbE0hgshUgv{xDtH}4=~p3C#Q@lt~Xi=2Bheup4g1mVs@t<%#|dz+&<F2^~h_EXsJ
zF&DrV9|xLebq;Ob{-L#orfod0U`8OK%mZ?q!2!NkEPQ-?SA%LU&yUw4<*@QX?pHS0
z?5G4voUWDnV!Qr9b%<Hc?Q5uOLut;-3^8<yr6<*gxWF0v>z8P|j3rNb8jp2)(^c{{
z{V|5Wj{Pt!izuX42Ot4WC%%pLlU~aQRO0iv>JN>v6ZjsWpURnpWC7zRp~MAeXa)24
zPKaJ>%U!cn4<j9vvLgYx`9l5&6V0eGc09qE#H!wEJT~30sK@<uc^a*w@)QH1OK$s?
z(Xp{cXiU|YSA6*@biD?f!znyufzHF)wEx6*d<wD4krSCKBC*H`D+g3?UeOIM)b<w4
z4*c+Y#ssjosjbSdKHef$KShQ3l=RQI2yeS&)gafchxb1!B{Wg@ek+&`ewjAq#44)U
z`RqMlRfJv{(^xB6K1Dwtx7MG^wXoQn^kv2}MR`%JmCjsjzkP9BL8ulaH~bq~0&nt3
zp*EGj5@0X`u%A(47m7jYb8eGoV;os?`oVIYWY)s<MDG^m+E~T<N@4TCVwKjo)7LS=
z@b!78C`*gy`11TO(RmLsaE!Ab2d2aB2)w+o>4#=&eT=>s%V}u^ybO&k=3+G<i%&`_
z@x0v<e7HY3>|6<cJK)mpZGqxt?w*SXix=rZ(=?yJkamwg(K0T9fS%vKD4rI@KxLUA
z*%b@RiHvBLwTDx9KRkK8#4Z}kRy(2)leDlE4=eri6)eaH&et~d3OjF^df`gU(=Euk
z_59Z}{PKfFm1&d*NG|cc9UK6#?9<az1CnG@54kU+A|kFHvxj&}wZ%+wu9fyfSTmUK
z9SOJajzMll?fE8&Xg-vL_PvMETSz#?H+qyg|AXmzdz1YWa3Mmjgq+)8lD@9;ba-&L
zptq4La3+NaE+iT@{zT4VX<TyI2)mN#^`wIB=%2?xp)A7jQz@sBi{DAW?A;M(6Zso)
zmbQdUNkIn{hRI`qih?5k>OnX(BxK@PPgXWKV`7koI3(&8)koYwL)#EPDDwaStTXKr
zn0=MS@*h<_Nl#G-#!`~D1KLnNzY)|!#%C>dI8hF5<P2z~xgpkPM#R}S0w~LG!bYWS
zpjJI&)bF_ejE_72)>GjT68gXJ_0KEBF4TI7EX4-MB-}$Mc6O(6hRl3)^eWuRFQW5`
z`vl9)Ex{V$%hc~@4SP4z4}EmhO%rohv~FY_xwOq}>f)I;bAlkT?Oga$$MbITT3tMc
zhlaet=&-rybJT&RP^Cs2HP*71U-qL8fB(B*v*}t*es6XyS{xe#Cd5qlV{)eQw`J4B
zYYK0ol&Q(H!W>6fVJlzOOF(zS?i~z;E)lB4*Zrbh>94AKZP6~0%1^{&Ros6xr_Kl4
z;JE)K_{ZuE5Z0LSu}DgN?zo3<CnOdPa=8Rx-M$l(T3ZsIM#3-aMrA-GW~!}}fu$1I
z!($pqC0PMWU=jUVX~sWtq@TRUrw$R`06|hd2m?+^)5s{>D+w{`>gwuLR0(c7J8xrh
z@*0nOAeGHJL`HW*nhQ;CB3BAMVGnQn(2#SxB2Do2gDcR?UEEL9+td9m7gl-mQ3r%}
z!G-HLDW=175Z+0~vLdz#qIPr$9MvsVu%s@yJg@Ftd?DcCbl}q=LYpMAO3bG#J%~Zd
zC$hG`k@%yMZeaKKE>2io#ppFvn=&{7cV^LPtmGh%VLR{IO)HQ+#@ZZtpMjfnS9$Y&
zQ$qLP#bH%gSXi7vr@~ksd1$A-ArG@cn>!ZivW5s71{N(1&Hgr=hrSIn;Evzk329gD
zu=V!icsRWa7nGRE5OS{>(e;B_JO)b7OISEzcYpuAkm>X#i0e7t>6`koasvrM&Ob(R
zI%P>%<^K6^(clV)Nj1y$eP*Q1prD@ixE3`-NPcBeR!<1<@x2vTAMOewO}&FMd1lB%
zQO$T1zuoy20W03;a(S@o2?Q|(58#33AD=r}%iE^~2yW)4V6UHIZ#c;$bokO45Zqco
z5toLn2oVzQLcR=ZdA`5zK;eZnI_@)u5%EkvuAOrM!EJM^(;<KRAA+!dJ<#EN&_{ZF
z7l#IG2AW?uU%O5-2x{o#-opEvLB$9WO|*MlcjM%qwLe7bL$~-CONkHn=g(8VurHZk
zyz{Ta3tN2!cVAiLQ1HFJv>W}Z=j~o&B!_iUELvgyy@Hy?gAnHSgSan)zMXFu=YIyo
zd@*RI7T4uwklo&C^m#1vdxOW6b6MTnq}20%BCE>@09ie;U_0oq4Mi-Cq<p{J|26gb
zt6q}uBl;$Gah^x+Q4|f&*V)XXj%^c>i0)Jkn^1k@EB{%M$3JJD$xkA#XJ}~@)#WaW
zccdrYzGs@#>PcD&&wIja4eJZ|i<GK+cZ@%1z~8?*OZ{S{9x1<<Z^iIjNSN5!zkX!^
z_Nw!fqUzVaND4JB_W-J*--BrB=RnOn$iHu?Kxki;80aq+8kc%N+}69-XV?o1<F60z
zoxx-d=%@nj=VQX1GSC{V#<R>xo(bJW-ouWt%cp2E!e?n+zlm2waPAw&0jtP;jcSVm
zA)U%LAU!=BWSi0XjD|axz-aFBobGWZQ#LhBOxcwJFp`pFdlEAw@85_Ww8bVaC+!G1
zKYw<q?^SoMV>_j%&m}0qohNM~9VwL+j{fpQ#oTHDIz*jj1z67xcI&WeD)5N-sE<V!
zeVOw9jB<1I(tg0p-wxKgTMOSPspA!f^}gs|jd)R6gvgVIRRhw81+)K#8o>L&6j7Jn
zO6F56PWl{X4+&7*8FkmvK3?}|6MSG>F%qsqv|&E)>`S9Nu+XR(jo(BuC-W?=G*OE6
zYveYtHoix8anfP*i%jyfRsls@FY4*X<)cf;ea0w_Ks`0R>|Fy{_GVE3{0!Ncan-MH
z3|W<!3b+MVdhvTJx~nU7anw7^Dy8E~gLws^av}p_ah?pt!|dHBjA`uy%K`V)t6`#P
zxa<@b;T45n(l`#88s4gi7*bGBd`Vd7l>8|Xcr_g--$h*XGc@gR!C51`!0B*a3p$t2
ze#;aJJNXJg0Pj;Ls*B_-Uz$*5!HDs~8oV2fKZ3@r;@WyoYzywbBt}mAEoV3Hp3o$%
zHb0nD=YcL5DQe=hzAo5pPRPc?)xz<-*{6vtA<1Ws@Yjto_!~f>3ipQJFpejX3sy-v
zuZ0zxPPc4d*YnZ^XzyJ8e@%%E8Q_zbXjZ-p;U}L59N;%E@3x=L$IFZo6TCECu8MjH
zBGAy#e=-AUH8%n$Y>yV}-PT_nqjQqXRcdOYhB%X3HG+V`;wua@A1>lVfWD4@2y5E{
ziB%sde=ev@m#Hj`kD!bq`I+Hz1bsR=tJ-7VnJP*kIK?7PcNuAGbv@^$nJ1z@T&SJ6
zb_OA0+R(WS%IUwM6M(WvepNqkjZa>7KIghQc=Mv4(@XTlOm?tbxk(v(0C={8vCg@x
z@%Ig59d~|<88_UOjZnhJV`4_}$EbiEXc3Phu?P4T7+TPXhZ`MjH+l^0`e_pOOgbhz
z->{eae;yOZ!omVvjIb@X>Y67kKC>J9*7kN8m#e`zRECA1qEqJznLNSlTU}FZylIUU
zge+&mOzQde50;7Ka`8gRDM`fLyz(UHnvx5EX5Bq|7v}32P=0a}U6q_4f$x_TbY${`
zC(dqsCr(BwJk3E%Os{YEVNLO0C(a3~9UdXYcvHoqyn4?}>P7TW>{C09cf@<4uaB?d
z9wL&PXD-tQyp~(6@x0~-_XeI?bPBMRnqx>6lpL}T6zx2pONMTsJ36V^s0K@9V7zf3
zTW0N?@=|naS-NBtwif977)LJ0rwiNu2dy{9CUBi1IoswT>+8q=#9%Mtu6=F7i4R9F
zGKG|v#uVax_wnjrK6kXcOOl?<NvN9s@|$jzppmp9z``1V&{&#W9QYN2OY!lhrEkm6
zHk;1j_s_+|p4=94-xsqUZx5+%{yPg`p*BW%WPm>##@k?x)mN6{MWW84pMMnwQL4xl
zv)KxlZp%~O{bw60-HsQbKVRP0kttSY^zw}wj@}7^X_~hIiCk$G2=Fi8%V!8b?z9kw
zKPA$ABTr!;()&zWm<12@qkqxQN#WcZ5yur^sJpCOoSc6Ea#L)2-9Wn4z^;c}iST_A
z&iJ9tV-6Ubvn*Cya^;iO)rjo#dIY=Q=Mpb;bxH1HWaa(%(KP}j3mlXTi`V#i9tM}n
z%V@q-!XN=e4Y+%lnx%*MHM>cS+B+V24{{Q88RIewe=O~N`BH+sB`6j4O0|$lkPER1
zsbcKrbb|!O-tCPzh8!2dk4tzawc?ZFkC_{Lf)TXZxU7ElpYBtc25dsBp@2%e=xO8*
zXrZ&}-l2LDF<B^FfemL2ns%}o;Lj>;v;DbA)!ke#zn|;_(Qf9qe#*}O{usf(Cl%Hs
zwr@LX9T~5`XS6KZa{*5irf;5K@8wmFY^4}CnaxiFrP$X*2QQmGl(Wf9w>bL{GurGD
zoLzm54n?iZIalR+JEJ_KsC!ZKQe2H6vAd<jdmv!6RPD)1{TnCOO$SVUbj6dD*`h%<
zZ1+|4-4lf!{b<Wbr_?K^Q#@uK<D7=kXh*Kxi0G1tF4V^e+#BZI2z;ZNCiRjDzWyTE
z;(5IXAJrZbEc%ddgH#{Y!l)cZj=q*7hnU;*UhU7~H_mKv&p9JO8GYiYG3bP^)IM@r
zYN#H#osgTUWP6e_dWT38c?d_S5Zb<G3c*MUM&?Zz5xV}wlK(BgUDDO}XU}X|>&Tl%
zD{U$}-|{Zr0>C}eV$iQ?dB$RN%Cz|@kh&T{1fOmU8%TTj9Ck1sIXeowL+}TkS3Jw^
z?HWyK&`X=IUKRNZRpR=I^b~~A%NY|w`hc@mnvbi|EcY+oibYeOM{_al)!~Pvra~wA
z1o90NiVLM#L@cJu7&|6l<_mZ|ZfxQ{KEW`#;d5RR<ncmo7ab;s<3)`@Vi-u0Tp0kq
z48u!n$4^avIZ=&~6_8vf2DCSl#QqhZTsLv;0L8p_WkV_qVv-t+Cvs`TiGy+rEv5{<
zg$mGyOrMXo{)C(rk9D?lJ%RUq0Kv%4FcT3GiMyr$gz?DC&HcXhV5|*;Vnmy^Vs9DP
z(>z&Dv3eR@&uJe?Ypl|K!hLZ;KP9{e$x@d&CxlY*oT2y`*fDASp)eh!1e`Qtu`on@
zXY%`+-}*2yrz1ZgWoROXk{|3Y)J6<t=wXQ+9#oF9;<4fO55yH+m<YV7Npjd7S52UT
z!4k$M;6fSO?g=N+X4YjKN1?C_4GsN0RuMV(GQ%v?;&N}QA?y)>_!?nqJxHf9+5tYN
zL|Z3B@W3(k%2ubToEN6m`{Ww&+8@y@v8gSQ{4*!Ex=TcqCR&Ifx!~&$8>zIpsinRD
z9?W=25rL4ywrTihkcLjUe|V2iOtW*IDi3eZrBD|m{W4N`aP5z?AO4DJVyH*t;tG~p
zThr0*VMogqve3EZH@q?{2TwwDRXHI{JuM=0nmD*Phs<aelU2bjo8q`pt>wNxFy=9s
z_y5}8!5Zyjm?o-klaI%CIREF23ysh|4(kEOL@)WeQnIH|`iIaRxUV@30~pCvJ&}+t
zsp}bwwyq8f1{AmR9_wvw-^Z?$mW?PZH)|8gD9jZ-I5Et(2JpLt5ebMV<mKD*hKGiJ
zXlaO>Ckt4W!(eYOZP;Tx#7}u+nJkPJf#Qh$W>@^_?=J82607YYNJv{6E~VlX5-}z;
zEdj-rcr#q;1u?;s6=f$f%DLP!=b7jqqiJ2<V0yv(OF>e8hkRAP+w~s=u&;qNy~%Nj
zt@UC2&fR)m!t^sUO^$<&wEYOHJ_K1~$Tg3}S3(z1Sa&#E(?bts$~t+Rp-Zp~T}>oi
zG~8wcWLvlTb*;%qWaokGO~)E+r{HNu^lhbdp;}fnGU|As@_kJi6K#+~<a%o`iuNbg
zvtO?AWA~IR>EZcx9S>r`GLZe!<gbteI42gURCVB<zLu4_0u@+6{XB{g`X_S?Rr)q!
z_NUy$r_)cv>4!~TuuB{DVyh~G+Zgn|&5xC+P)V4{Yt5Na|A#6dga(*gwr;1W=V?_A
z86dodf+BC}n>M6RBfeVvFgGHaEOxgQc^l1pE)wt3@8Cr*qFnR*5L89_n8o@s^oV+{
zF+OENZ2=&0HPbD187loS@!rL7^7QD|A{{Kq%D-kwKdzvQnNIP~8Iv{gIP$(!(ahAp
z-Th0PC_6r1wNg7)48$(n+bMUkAi2=|ZsRR#n&uU!J3$vg(Uv6UBmUBghBrBZ#s;+k
z+od{)Juxd)16H1W_AaU{9zO&dT8jH%4#e;wd+SuO)(1|x5GJMVSml6$1#9cEDQqmQ
zeU>g*CyF3e6_NQGOQxVz`0t55R?iQW;>bnhi#s59fQG+frv2uq<({-2tdwy#RP+4)
zZ){XH{3q8i(#g-TBpKp3jN%%$l9ANlNj=hm?WU_DbcnSl^k#rqz%s*ii;$)#x$rHu
zt!+i}96*gXRi;XY7K!{colc_*{I1=P7FR&#c+92y-|ZK-x<78<H}AoRYvAmt?E>-(
zV(*DuPv!(2rve7Mg;!EeYHIN*F8wNQ_lM3^?8xh6F<~#alV3BqeyOosuqte{><uHz
z^J7n28aO}z@sNp^iz<Ool&{w|hrf)bQ-KuO7Gcy1WlPDJGbc;sa1$005k-?tH;^G%
za*ecJRa8b=MqHk`XRkr|u?rRfR(`;-6r%5_o)n3fQd&iY?@K+q-Yr*rwz~T6?v;)B
z^GRof8ef+;&x%K-mlJs+Cp2v=l?65mGNn9`ptW2)vuaWj>-ai@q@FgU%P|e?PRa?H
zsCCJ9#2c02qcIVRLSkF=bWjtZ<7v|UQcviE-<vp&6ZgxhnMH^vxSQ)4<&=G45fCia
zaQtL3CfDF7;^o>Lq=9!*JxQ*D^<VThF+S|8JD%wB*{kRZ`!vVaz5$#?YF)C0N>&oa
zKIM_0f^pD`dRbU*GR^QUA6?3+?cT$*lAA3qUN)DJ(<yt-FjU<Y7o@?s-d|qAbjm)l
z<rlOZK4zCPuZ_75B|&cK;?h)*vV?|tc%|RY+P=L$6-;3NT>kZT>hT_AY}15jI+e}+
znUf^Dhli7OS#X(aq!{CmD3;G;N#5Of?2o(m?%nef`0sTpj#8;LGb7n}C}z<!X}tcK
z{cw<rFj4$hvh2Hg*5DwsQjZKBBQQ!gSnI98M<>OVJbWZH&$NV`t#PXfpRx>GlazU=
z_-L)hro|NbV&a-Us}07F4bauTo#EQd)iF1(xvFko`2vl+Mv16ll#wU15|abLtn(#O
z-GkRm`uDC+35~&#s2{Fiuc%P#JH+x=%q<M(^AggbPdYuJG&&UbnYAwKap7J}UxZ*Q
z36mHiDDhLnh?!IDHKz2*VXY1!*`ejIGfFH)pPqt3_+wRdgnm#@>el`+U*%tw!e1MN
z7W%grK8X36A0!sk82iXkpb6Z2(tcch&}|0t1Z8z7WkfggdG=$}@8ySo1^+&T!`$qO
zKbX}t++ScSdkD4+azk3qliaRYy2KKZ11L0Tw{(g=PkE9aS_uEOJ>mX2H?|<Cqie$O
zn<_^5>$WST)^7lDnT}r=C-}Bfhwrdr*F3+|qe0OPLcrntDWtQ_^<rlXnj)hD-0Po?
zv&ukjXKQYv_J81re_R8d^5pqu3F}OF{ZAw`78*-|AE@tZSo3Y6lz)8@Djs}|h?4Nz
zFQ&w>a-#f0fAYe+_l<E_?6?dWq6!1Al$$4=R%%-R=vxK6MnsGWV*RxQE5DXDGJP5H
z61{(!dnL}?f-QfBUDU)^eD3LRnK#(TQd=4-hJ^UK8O!vWchEkh9rFc3i061=O^-#Y
z=?>YPgK1#Gx21ylY#9fCHmiuLjoVbwhZj)T=~O|V$vI!K|7<-X8hz^U54jLdm9vTN
z;0rY6VHZTF<&UZjRRRtWJCt8f7rPS`6)3&5TsV@55yE>9QqYvNlKVdAxR<LhB&TsV
zU_0?B(?Q&u7RYV0iUXm@j;Qx&sh|4BKcjr`kSC+>e58DZMO@N@v4j+0?*tXhcU=EA
zJ{8CSWKHBc>H)_N-EEUO!;y)`n>>n_MefRFRO0&$2_7>XlRe1<>bQi5jy!c!0h;#V
zh#k$FcTg&nV9mvq7uBFo+IWZ+@B74JKM<-WyITi5txA`%!ni-X=wZ$wjUwL#nvTj7
z|4gsPcTef8cm{q2_hytX4;TbA6+?^s3>iV|Rp<)EU+>!aiJ~8G1x~w`8`vZ>Ap&iA
z3Z6@+uM!i*-qFgp`33US?9Kkt=<e#$n0W{HX{DgGPddTI^7`mC&nectXdka(kG#)n
zKbIlSNGCaIr;(`Y0hs=5u-P(!wdqdFn50prwTwmUbuA~0YL0ge#Xo?5-X_=+=Xs;Y
zuDJK#VC9`^tPZjIe-UdwGIE}VH&hK^^PY|e{)ynRie3!G@j)zDY0aqN*A&_Jo)&g`
z^LU$71(axcO{DBku1U`$hj#2DQm^1)<(`=`s#~<JQw4@gbl#JQDs7TsF+j<-#j@Lk
ze$~7Bg=1tgt#Yj<!q+%KV|(QhOg69h3Ld^M2%j`|h0Iga_`O|l;464I>4-tL$VAe#
z&4p8E&BFtMOqS0%`#HaiyQTKL$uF1CJiD)K`DX0KuLh2|i4Lcht`L?z(}o%>ei-E)
zjm?np->U6D6h^dGUjZ2TKPQ)xJFGAO)C%%A!>E`TP&7rWrS&{(i^@D)2E84hb!)sl
ztIlli7|CwP7-KwzB8sK$9p^G7XtG?4EIK$IzLgVlEp{KDOm$eJKa)U)i0(mF#!%_9
z*Xa{Vts&{ZqzP>m()s{!o3>P??i~9m_Psci??zid2FdD;_43zC11EMxH-HrHOB8!1
zavJ~OQ!OYtHU1o4-^7iR*!$Oa4eC!>qk;GkT4j0LMF=tBJ^7%YA1pUdQ%6O5y|4o1
zj)`VKs5l#-s<`!j+`5hOJwWCS70~AF^j%$DlPkCHzC-5K|15&7(s5OMG7Zd}Xj&Rk
zPH_e2AQNE65ltWExiZgksX-O6BNn*i=g^*e0LzF^;xchls|*MJWq1oRkD|}qr-GC*
zIMbG^0@*wqOH>hpSzHPRBa4E1s)S{=e9nUCz-g2E0NQIeose@~S~+-ZKueAmG;Oh1
zy9XD_=xgYT@&BV14M*|$xf2Zw&sRXxVm>-%lvf-d9gCQ5Qe<~P753R3kLMz4+9ct+
zH9i7X>vK``J}z!YuU<S_w$fGc%_l%k$ohVEm+^eY;EN4>7V`iU1pU&7tz5mFlW+D)
znD#ksw1*+iA=GqJt}KF#e`w3zysxA2;Y6xaJ512r>`Q%(tzE~Tbuv|D*tc7HKncg2
z4GyKYbRil{bAAU?wxDEXOnYNn+o=njI&w=MNilZGd7p1cnlbtq&~q7FlBvEDoSd8=
z-`7p6XJI7RV>upbhS;Fk2WQDXxlnw@&;@b@`F!ivbQ7V_$C6svEJd*{`yN87Y+w;?
zU?J8<7kVwjSN|#e%jgwvPhA>HMg~ajlL#imYe)-M$Bfh0c#VuH{T2m#p!JDg+oZ5V
zXbH^1cEH2#YWd@Uzh@QY@=K9g2}FS~kmL^i<A-^J^y3oM`Wxb&W7lVW6BNp<=lfRM
zt>3mG`(m))O*&b%B+Q-Z7V2zcXd*ecqhy9AGBruyb5}}r8vFc^u&Zp4Hj0bzFjm<}
z_#GxUVC{)}dwMiGyJv^DUv%VxQKqPSY3;6=YxHMQ&}@rmit5as=plL0$NMXiDwn~a
zPWcO7ccD*oTwHR<&E)b8oAD`dzG6+*H%$v~V@v}p;0oV1m4n3oy^?KoNt({V6wBH2
zv4sN8K@PQ`azWHhP0geqCVmT)E~9RLA)CM4qdP45k6vd{#m?(EkTE~Z7@$#0iHuzg
zFEytSvP_k8PB_CK-q2a_jMo%;DDxnN*X&)!R~*G6DJNm&B8NuOhfiYMQaAJ1SSvT+
zc75EFvhB%m>N$e9(x&v+ucUB4N|!UgX?z%862f%lEo*G8f5>*sm^sPSK<KC9Lb%X!
zfuPBEj%%-RczE{gMLV`6AS>#U2>Z@|@MN1zi7*eX;8@rHhqA=dGZe1SO3E6@vHj4Q
zeW;ligo76xq19#nbxt57S*N!I?|n0`4B94szQdmuwX|ZAeu%}X$TY|Q2&c^>L~R~|
z3+-<Rrn++PtnjCsVvG*x(;ZZLZ*+r-vwhZvslA_dlkRKf4oD{sRro*+jd({&Q0q(i
zDvM6@rS~y-NYT}Fs*&BhkuQC53GvG!xIQ}9FG;54mNG1tlY93I*eHdyNxiB)i4nbQ
zKKX_vNTL){wDxQ8!wRm!dvT%yx4`VoyO!YdFe12}26xES{#o(*aWPa&X`9S&hXjqM
zclZ$zvbG^r$3?~NXqf@bQUsERiXIC@*r=#Bj~B+wZ{XeDYtm17K6e>M`W0-=>8~t2
z9Q?j2ESL0J+;MFN7r0+SYb#sz7?v8ke3iF5ok}}F_{X5zW-HZ3n*Te6zEjj^^z^T4
z)tl`@z-k;AvpMpXYW~WWa8=Bvi#4(E)j9P{7?b(l-!KoS3P68+B?jk*N4uJ*<M4If
z-73TT$(3mX+m8za*0mDQL4~(pHnl%a1Mg`WG;L6NSc&F_XA};nrkEgH=IaB%2q>Lz
zjI?9E_r5x;v)wQPZNv?T;w358EpsgF`9S?~jd}4h$wj{o9-1n-8aY=nW*4#7W%Q&)
z|L{kiH0lt$_Yn^9K7e7~EV(X?Bysg(v0ol8%oKe?+NZ;y#|k)*+cZ8E$50UD!cd$m
zp-q=sw0`Tc>k_cBp_7z@aWHAGFe}WO=NWW)AogYrc?n`1vT7e2uXcKDX&Sg~19(Zd
zbbMb%!E2Z4A&+N}J+%KCHva#vun4dodyUgyR@KhAYTTL)Tg&6`JjB#?FLQK><`lA7
zo>h<&m2d#ZI?{oY4H22TMpmPF8(s5&t$nz6SUBgu=h!ygi|PZvMYhr4)Y}(;O&p3I
zDA%SE?~<9@gO(Y~VKo1fL>KyMNPIXYftPZS=xveOsajliwvh#y0Epe2Mq}X3U0wXn
z+i&!TV=h7dyJn@=6f~^|?P|8bsige+=ck%Jj{Sbn_PyxGNV^cdJKEwu;S7@A0VC8p
z8#1`42MqhG{z1wSf@kGUpWElQhx_5BAWLRN0VTxWwN)=NL|!9|hOD{rtdsK&FdBk@
zo7{`NDP{8McI2_fcs4yXD|~_&9vBnFqN8KFnBBGuFs38rVvNpmZU6c6XNR-Nxi4tb
z$hztDUBNo&E_x@gRvsH0`*EAZYNBwX>jj+@FiEl2|G_FEbz;}$t%*WHJT`XJtasG)
zhbjLniSACB9V{3GX)SU{iFXCc!u<Pqv>I7iSt`>)-a4K@&u2CK``RBrykev=?ZWN^
z+<Q!PCmJ+PFXP-8qnW*GSK*{Mo=X4bv8%yz%*<BUbkf*dj2kC)FE4j;5*5V2!QJW>
zi7p~RDT{uyr)4igb@lzn9<v&RmA|**N5#LRRp-*|h8vOeLGi8IOfDWq#{o*kxA968
zWR^k5AMW!m9(u_RZ3kOyw!`Hnc|1k;Iu&Kf+@$jk+;RIMA*?tXUtw!}p`84uc+cBd
zM(37NLaJBuy`=($Z4pB{`^N2!&rwc!p)ozSj4yoejy`HT<*$D85IGgwb(=Fav+u!p
z)Pbb`h%OVS+>!e{w!4+#b?tV0tJq56X<aYNVy=3*-`FCOIh>&=A6KQi-(0g$Z&QEc
z|2n!a+;Xu?j^Vi&goWq2S@vT8XV?;j=9c?u8!{683la-2RUJzi=Z|z>E`2FP(2Icn
zN9HP>gkKJulbi4y`78A$@>#Zz7D1DUXGGPWQ`W)z`O?ZaVu%^P52^cym+9*7E13<N
z%t8*);!ttCh8|s^qSbAbwB82F?I%k2tB7ac$tq=FU{e$%-LpU`-#vZGNnnf4U8A`3
zkk~BpH|>v2X%XmpyYGY=`x~k3re_UnbwN}oPn7K1l%xn`ajfU{B>wXC6zlUdY<fBA
zNby-*z!1s{m8AE3#gQ6i-n98*gXifpD+b4!_Y1_--x<~tGuL}Jw57JhAG5sk_6Y!Q
zu=r0sBXI_7=r_15r29`fbf`mwilFZ>8QYI{8_3x%iocL7RE~-!8g}ui!7ZRkiYSU4
z4txqH{{;Xyh;Yb|V9x+{IQe;4J?#<Pd2eFx#g{8rOYFt*0#-l%o~GdZ$R!gH88OZO
zVu()|l#t|V)-TwP@JX>Y>`>~UpO*o0z=8ovp*~IJC$ukbGM`RRZ)ATSGuJWEmOtPd
zj8#2XeGo3(;60v2-%-2c$z52aGa!bSANBMf9HZX2RsvRGnIFzaOVepu(?oNwJu-6#
z*b8b4Q%qpswpxl~NClSDr4S3)ts`6?AkcZQD)<|^iEC=Pp-B^}(emD>(5`sxr$<fl
zYxbx8T}s__Uk#Vmt-l13AMO_on8e2mwTeKn{6pu}|4RDXFexL`AOj6{`Y~wHway`q
zUssTR92to?EYA35!{oqpH~5LCzyD$MJYvjPgoP!E(+?~;1wSj7XCmEdK(n7$&zt^*
zX59y>1sTbNF|9V752>C7<>XQjtnIi39fiGyb$&(}(U@@EeS{u|E4Oeu={AL*Vybv*
za{~D#kAMCc$-#bmyJ=H8Su=;fEO8?)&;*O&x%GqTsU*$m!-ptFY}ubq!g1U$c_$8%
z)FW;CCn7C#iUxGQUta?VPAd=i<W0a43F4w6Xfy}`3mSgmXD1oxtNeQc*wf5#*P3EB
zkmn5K{}f_U1vCQhw*itbHSh0K&a%Xjs5c&)1FCnVO4F4lib*_W7i6K}QTWJL;LSNa
zu+-p3RcaoB_o!;+Ir<W$&;<#e4^7-Xz5=2-+~C2=<+Dv1%=GmQZMXEA@J0uQ+s<mQ
zW{WYZStFBe(@fkfZdb0<@4x#d4#slSiZwEcr)U&Djy5RtVsKJw;rr<Zu~wUoQRbOj
z8E;)9LUfacYyp8V67_L;79{Tc31MrQjH;2J1N#jt_%JuOPJ+Gy>CDSZ!A8lvz)8x$
z$;sCwam;LN>RG=G7lre_e6tD7%g!!59|MU=>Le5+hzRHB=MFX0%J`I(6^6Z93ZAKf
zqF+~99`7mxuUcAi()NR-uX>2A_wv<(^aG`hDJTf?WPJ+KiGoT&(vZX@p?v(sg@ZjG
z%TOg6T4(sJ(3%4S)oa0g%GrNy72%}Ni9fsdU241Dt|02hRj?qp;x!%AT$WkGu{9pv
z+~c<oridw3op?JVL)hQaTzni`MK&rMICCifS=HHh;lm#ylAQf(IFQ?dPAtk6BH~zN
zL~9u-eo2zYypWJgzasJx68W>ZVR<CSTJKly!J)_dc>IFn`RAtV951-HQnD^7E-cam
z^Xb%t+Rpj@MXY0q6Wq$`r3q!MjhY==+zEg}05IAIh!ZuRsv}b;_qOnbFF7(cr>K~8
z9Js)Vhe}AKQWv^i|2r>1AG2>IBa@S!dzw%Ry%0%OJ{104mu9c9uq@&qe0n&(q`Uhn
zGXe}8X4DQ!Y9^ugc98Mz84*!&%4F%SBcoGv6txbzI3JnYatPP;-bQ{t?Yz_vlnr+E
zX_~0tKVNvJmO<FXe)^%vXZl=LM<Qv)J011^-bTl{-yFV0*<@Ny(EbUbs=wc-_$J=i
z%y^Hr2hRwFwbcT#JHOy4jVWqzZ{VcB4d#0XPycD<|FQNKU{$W!`>-HLScIZ90@5Yj
z-Q6vn(j_GbC<2Ofw;&*$f*>tQgLDfD(w$1kxAvJiGe>9UH)qcOyRLJtYpbyLe&6?b
z*0a{V?seZogEusUy7%Q9E%=w%ZVSkn#AaZgey4B7DQEmnXDn2;;EQ$hT$=?^&Xhj2
zYRJ(otALwb*RM3`C;kno@}GNtF5sF;!%b*7>0DAzLVirxCwN@QL5iu;3P6vXR^ewH
zlv8%iIKO2C1qxTu5fw%BW6$<n8((i~azp8KsqrH>ZjUV^PlOcQ>t<d*#1w^Bf|e_e
z$FLgybwlrU4jcQcE<X@0xnXxtKJa{r#K5Imx|guq2(m?PaVa|!#2vd9g4a!Gf=kwr
zbD$HL&vRnAw?#I;^8xwL?vjm5ifxl067M(4-rH1EwWw-t`3N&ez4xa_`xOT^_t093
zzJ2pJ6}Z|glv=LzS(j=u;fLU>v^ENBZFiLWH@R3}-C9k+c*6%uRunw!2FZU%E&pB<
z3uCu~-7^)b^^iX5n(lG^`5UAd_BuOfW%VsD^y8Tc%^RMZP;&L{KExu$u=;Y;IP&Sr
z@v%E&Jk|R^tRHJLDtbs)BFvXft$kO{<6N7RTR9Gr^{^a0bMV%DP`s!1Y4l0Lof~w<
zBmQgb);F(ZbMJG$&#t<~coaitiUjl4G#IIit_SFG<EfO6EW!_F=Ogm-Zi!l%+-P~3
zlQW_|x|SP&LdNcwaEppcm(P$|$yZ#0tG1|n1X0CG^@!XScW&t#Bs+lm7&#uwHHCD^
zm$!0ju{xVQQKViu5uNV#VfHb-ev|LHyP#<}*JgM(KaAGnbU#lQ<<a8BD^|E)mwNfm
zOhaCRXG?>s^^AhI?W0F`!)(?@)$f<$D$;zXP{lUBQf$Ws!Qgm}4WG>-lu2+g1t;ib
zJ;^66bWbu)wqDU=&x)A}OXi9KHl@TzLqpekFxGEzJ9U1ra8FCVKSq8ORa52JxVG3e
z3A$688XwXxx^bXC?wn(X85Wx_O@h5EEKLH*me^N%A+)|4D)ru{GuB#pS#+*H|K7U@
z#=c;X1|82t(KLK>_d@iQgPD?p==PS!R{Gf3*hzOqMQwb%)^!hMlAxg0{c@Z8^PTTT
z)v$zU&}zT)S_;ig1Yu!g&lv$Nj&5L>mY1H8=opLB=XBrolxv~MA9<hey_Sh-at#4V
zPWrwErCyzo;={$37J^k3GqX2%UPL*!wpst4M>%$5A*Rk{3h1e+=pT<+Ps*P1S_sED
zQH;~RMJ?&n{Sdbvpk==9r~9hL)Ypz@hK`S5g!;Fd`ZpkWF1)E>UO}2L-{o10kY<#E
zx{TM;@LMKywC;Cg^<TGM)>PDdVjz5PWqqo2VEqBm9(OF?N}V#Razw?VqhAn-nkG9^
zc}Hiy>K-Rx7@bhARqZkz**-E<ubW`TD=XjZ6QYq5HWj8IP{A>}OVqcrUi`kki*tQw
zU4;~xX6W5W0uQI2+D0X#^;g$8^S@nD8!u8fBSEsz!-jFU$tQt<)=pPhJDPwtAtoTT
zs@d`R9DXpCcqs!yeiCJslI)5X_}#f_yp8BI+wrIAK(XIj+eAR^nU`WrNr)2T=~&aB
z3&$atuDfmMd+rGPJ20dBJaT&1eLA}_Ipd>?{YUi&zz-Te3b^SLd`ZDdP36(jN*Le9
z$KhM|MeY-MTfBODpw{mN@JbXy2dR4noGGiy%@N#7UTM6Aq;-oC_6*z4ErADW0kf|>
zNK2VsfCBNoUbYcND@wXKz9a#^1z1C~BSAcG0J`rf?%gvZ_84!jE77?+n|Lb^>cP-m
zQ1I#RYX$W(@@OgrIu4xB@$Qhh@A(&>^dUr5ZJraFw(K52x-}a3+3C_BQ)o&@eO&H{
z3O&rL^V0QC{BeeNab&cRb9^SJaYfnJ-Jf?F42?vp-7nt`DeyZY?u$rmd>h4;(1}Hb
z%CTyFWx8sd?~F<CAX3v(ps1WBwJ4ye_IOZiGKHK`N?vpSso61e_^WN6v$KVfvUkmC
z8f=w*82)F;SL@aEbzYF!9#yK_nQ3EcioUG3v7qT!?cj~lcPqJ!`{b$NoQL(u8Sgm9
zrbczu^Dka<(Vybq#%}we)M3A>K&CRQ@NYu7!h^2#CH7UTnfdm8wqaVST6^(Df8!T#
ztF0J^Yc5R2DV^)j+-R8ms%|?`nTHsxl2ti-YWfZ=>}0V-+Q-1R)8YPfRqzG3{o%RS
zV(sFk0WKdq$nLjPSfEh6nu{4;UaOGO=^Y5Xc!S5yJhmsjQJ4o`X>?yITu@5z+pL(+
z#_{GuW!j;;ibA%a|H#xPuOyvo-`EFufv%61WgEIgMAB69yPCQmjWFsYviEYQRixei
z(VE<>7tGwY%Q4r_k8q%vQm6B4$2aR#-y6QS3KMXz?+we63hlJNTS<H)!nY?MNTrZD
zA0@}c8I)axMPc&b+g(=sDQ-{bMoz6Xji159%e_c^-%a@h$LDS&nQ?4={Azq2{UoDO
z3$)zZ0(P@a{($n`wrf1up|7UXFgNmLe!(_p``Z0dF4&r-u1VM*qp7>9m{O;W>G2iy
zI4RhzZ#G7&HHx8GqVg1nhdgHMz4^kokLx4;z{$zUe(9D@W%6C+dC$v^{#nz5TQ$oc
zUp%5?Qca)ZiQ}fxk}wEN$h-TticU;dOoWr&ba@${S5FT_W?ury&0Z%_87-QHCg>wN
zE;)y_Wg3s_R$@8fhhSS*D5cGgX;)qRWQa#waG2a3&$s?@Lh2vk2Ju1)ndhx6+PZV0
zc8_T6RJ3L^ii!8AnZw$%-wwcxD_Esy)~=lkVLX`#y&9KMD#y9&TKb>4y->suj&6HA
z-L&ysC83^r=m}Ry_-WGc<5)@vad0w^cd8WUKq2c!U8u3|X23-z7P#X=(B&3>V0y{r
z18B4N2VuF~YF`I^#Ej7(BijV(Ambn30&f_6JU$@B;x|qWx>Ja>_2Gg~9h?Y91}dbx
zgRpH&ITpkHYTIqi$_Wz%d+vYjjJ0oOx+U0r{HRdj{+)=t&C2&DnbekjUbBM0+qoOc
zprN>rKp6yrQlp~CFXAz5t%+8PkZM~#T3iGXg;<b<!VouYKgSL-S*HzIw?2gr7sxFv
zC|I_Cd@P*IVun?IaZ;YRZyms=yyKRsf?S&X+CGZn!0&g>x?1X%WT;bLE__SJEo5%?
z9t9^kd;zaYgSURQ9*r|ztBh+TPVc;f-OxQ8w$qvb6tVBQOS+BZeD2qPK@(LZB=`zN
zT!|J_aA3jEL2f4?FRI2m4Cgz0)Q5FRY4sAhdYn#~yEduMmfeepx_ct__Jy7))nCBD
znKAsLSkuP4S)*3!5dV_VQz=vNCUwKDvVqTM4G}{U4ss(SsH%n-`2_CVVkR*jn40Py
z%H>sWO7iyCN($%1zUxH2_6&PmNkWc&_wHHSVy;8%l)%Pn|9SFBnYOOGHrmMtjRtXz
zFInl9FDb|ha~#VogCS6D_0fRqtik{pi|7E?31yIT1!ZNAa>(*3fsM}GEDsI~%1WUh
z#(8n^Yrz+c92IZL%4r1R)#5S>&BpAy+Ir@7e$l1!YnO2xAtS)LWZiMg!2c#nCMx$Z
zVkRWTFKb$y%`w6AnJj9VjF(sKS0k}TK-meCRi8M&B;>kaSrl!02ptek4fO>)_hx^$
zOb;|g6Z8Zl$2tNe+?0=yzhtw)$nFjt2p!cky&n|?xG^WeRS*=3vC&OuA3tiA(TNP!
zsCC8{+Uh2}b0d>QqYXhMg9%D{S@bWbqa9FMGqt}$4bq2}c%{)ibaJt{`_V4ld}VN2
zgm57y-9NVdz-~9e{@%#%{!+8d5v+4-m2qH9y776BPz-)(@L7MIM;A40HZAm+6<8Ro
z4xb*J9;1AT+wBul3J3^rjUFx-9ZOz01uafJsgo8Y->V2y(W4_!10E#r67*4wLg>dW
z4zNGLJp(+HCCE!p<ARYHQBne>@B&lt4A%0cXadVrx16s_u5XRDn<1|$`~qGFG%qZC
zZe!_X6W4s>AAUTZeyfgDM&|91C6k!>m5X?03z!(R*yucWuj(YjKqCG0TldjiHr4?-
zfyHDlhseh$qm=Josbp0?BIy5srLt~#Rx4cJxG(GWypNfct9c9mT?NWE&ZRXng8--+
zGrgqZ7|kAwK12{jES}FGIaa<?xw?(httOs*vEcjp!ypEygsJBG&+gO9xo>^ln>rfI
zLcHUUgRkCQ$eKu{gG4(!>uu5|Qt~g8!v7c<{^yIP&*Zb1t<(WLq}^y<6X4p+fQ{V?
zv#GJPSfZqoP4nYg=HYjg9J(j@`2(aTdb(}KyVj21D82Q=Xo-e&^jcrfcl3=L%u0{Y
z(Oh!wi?N7y_fPaN<&?)KpCZ^(m}VFKV-g>=dG383Pqz-T%T-KeK*IfmMzJAUmG#ap
z;e4u~Pwi+|11OJpJx3iOH1Z`uBG}$x@1`&Wlex6_M>i8ILwQ2lx_SDFqGvlR6g9$~
zW?+nMB(dDl5bK4f#k%NBf|d^u0a5T@tULwnMWuV6PKa!{wI2!pQ7{P6Ss_F@DE=WC
zpq@i%b~S&rNhyie>59R9wlAdK_y>{o)@^Ill=d_@?%%AMqjIfish1rvY*%y%SI2!P
z3)|jvu`6QuDPo^}*d8$XMv<m5<P>Rpv_k;B;1x~Eye=VNo@$Y{H|#m(Z4kWQFYjDA
zMtkO<9CK|=so&hwo2x6Qq&S{)QE9kMrJhOcOL14>(OAa>yPhb{lUhWwkb>@^MZ`TU
z*ln)O9@b5w&3&aAHFLV@Gg6S4LSjg-32QQ0et7O~K~C{|UpmQI5P}`hNeJD_fFR3@
z8(lquMM_4msPiOP`Vrb&))O+!sOoFGSZImehD&|4Mcf}uAG>)UZZIBt-f@e#bs<ci
zTdmq|GAHQx+nkb>2xdwOQxIEB(QTD{*X%E(Sf0WR>bMvBpO*pQGkKcM?z5He={{GC
z%Pw!pI(F<b$N`NUKJ6o7z3};~HS{YYVLDNu+Jt)oWCf*pNJ&Q(=cyEu+Tpla(nQ<D
z7ng3&nYW%j05W7}QT3<%$+;TVzPNg(BjFe-CB0Ik7b}Mx*L#-lt<S!9BXex->WJ93
z?u?<9OU=J>9z71kFZ8FWTYV&FEt#THQZgU&_b+_31OHSa#&74{`AxGVQ?m_Ws|O)w
zUW@ECu97iK*Yhcui##33%m(FQ+0!(pA#$=k&#hS`Ifi-H%jlhCMlCnE$I8vS_D6o4
zk8D)rF@NQCmB6Zb8QjeGXOP*-W?e5&k+wd=A`T3adS&UF*_(zMRMlatp&Y?17axcI
zC;~g*X^w@lP>hpCe5K`vFdJtmEikV@1oGK50b3~P;RWn?Y-dO}mvc$wPK%p28;bAV
z#bukWb<>Kbn||G1R)}%YJALZ!wTZuJ?71I?Lo;-)*Ah(knXaDsT+chpVknqDn_m#f
z>p1&bROT4;bII(75@w9t&M88l-qapR(N)q)K&dQ-!ZK>x-Qdv4U!4<{YuL&ZAcECJ
zVN5mlVsVTm4jP$yVn^%MGli!sYd7%@1YvqXqobpvKQV<R$db#9K~ysx+TIh-_8SHh
z<TQ3@N~_B@z13a#E5oPJ`;@WC3zOJ)(=wEfIp|$3qx;x5e78XG=TQB11ZuwUBe#OP
z`?RJco%b065*QIPDy}CVk6&9asCC$=FFd?p!fTe{1<{=mJMq*@`|UX-E%S68KAYo)
z`pun#o;N)s2BhPSy@JQK^#->X85I!p0HO7&&7n_4$X9=9o!?7oIxtL+$P`0+*%6|(
zbV+Oh8O>$T{Fpg9d&{Un;l#AJwu<)QDF`_pM!)(r_wq%jtl1^I>K~3JI8tuAbVjN;
zG~;{wmj@m!rQ-CTiZW)fu9r>6e+#lbb9*|!!GtkT(x-LHQ)DD(X3t0XCF*2Fx$90?
zy-kCbPI~e6nc15%hKKdH4F)a`h0EVoo?xB3Z!NecXpMzs@l+!!M~u#8cr_}YRo1QX
zg=>zHx;Sxt(YzP#bg&SNW4Y-zp`f9*UI#z&;b%R!^o7j`&93Iru1?id=(>{Ty?sQH
zL3Lc5cZbB`bk@fMw6?#3N%hB;i)Kzvtm15<;yKHMjZVDlnitSwv03o9BlJ)wky;gU
zHZmo$vv$S;=^vhK=N4rjPJ{gEG)@MYX>UPELk>N~vy0-_0sBeE<HW!7q@J1^Yq2{q
zi<Q0JlzHU%{vvQX0<(L)>HThg96R~m`;Y<iB0bYJ@v0ZikI-~l$a2e0VE$}pK#sZV
z>~w~kQI>tQ4e!vuknPE{Q=)_IG?B-TrIph9-sNi)XlUku212~yKu-#h*RvbU{XXG@
zTvh7c`h?@9usj|bu+@F$_vM;$pQ-1a3m-gwEN@8q@Fb-7(mao^i@wH%bf1GnoRRFV
zu`<(XaowAIteUr}>|<drM$>QsQuhUCujHg8D&~f7nK(Xo=QZZ%M>3wGVWr(7*WF!k
z%10xWtE+Ug$?Vju)QmXoNEX=(3<+s!5@wXut+Lh0%bz_4k%+uY*73TVw?3hvXGd^g
zG`1-`q4J&sM`S6)*q_AgO2%2(%}BzD^|3NFFt^=R?S1%w>LXXHNOSXZb$2G?>k|-U
z<hFdrguE5|QhY9rab0m=;~QqC;m+_)_sI@)nl)nJ^KQg*Ez&L<xTd2Q{AKnfXm{bZ
z20QkQ<hTAle!zVN<K$a{+&3ShPhLfzc2@ctaO?6-4Da4|(MT%0{Buj-clPcO4{}0D
zOF<?=YLZ9uwI#Q1X_IFI7z52{xFl@yR+WUbKu@pLhD-A0BOXr_BsW%XN&MX1>x}ON
zK!zoEpxVKZxE;&IdUdp9bk`_>-ksIVIX}z;8$Tic9?%milX{alx+Y3OQsLCq*viN7
zhF?N00kVx;#1o$H2z}#mfd$fncU9fJUEDe&yH*YtRE8yP+<mzix7|%PcrAc};%2!T
z6`Qx7!*Rmd`vP7~%?m8ufxwqdG`}x&Z|D_k-!A3PmnLk7LlZ^pk{*}ZD8%ebN1^I-
zCaD?`OO94PxF_*$B29DQeKel@^*RC+cD%+?ZQ8MTI<$k_6;6CYi#%UBYAqIGyz3+}
zb`>NVqS@4~T$GXoC=%_>De`Wo#Bob)LvD7@%(~p&SK_@r$EEfOF3>o|$#IrHoD}tM
z>KwfC)w1*Hs5;rD88ROA*|m#fZ;$lG-+Dd4<KegzrfS*~anen!Oe0hOL?rDl9_bAb
zFJL}!4tw85ft3FFUC@o;{ZKK-bNJL)DH_4TD0ln^$+w<1glMOP2}Wv81Y=`;HT%Bv
z_4<0I<chiZdO@Ub*jL3bb932tlbiwFQY>a26Q#zci7M7%nk0;RRqEqfwRyI8J|nkH
z?tFcyXT4^#la{0Cqwp+v*0y0Kf16|6E$~QGlcTQWG9hOKw4p`3j-L9afeI)k6O&>D
zkLBsnW!@~sKqg&%jPVLbyPJ<y+9Nb{9z|DM_L1OVVUg)o+vA#j%eNKMF!#Ivjel*t
zLJK1vhravrVemHjqid{Gw~o{`E-B7}C&Ee&!bW6nKbiA+|M=smsHmyOf*LhxYJ}n#
z&tRIiu8v>iasE?5KCBB8Qe6FO<>hp7inxhMTXp6Z79*XO+btJw9o>6@svpdP_Kq7k
z`T1;3pX>93fhBB&lb6X)H^97#$UKG3(aFS!f1gzSXMoRGz_|G^+~=839Ts<+ZCSXM
zw6t{3)c^q!CuBgPH2sTNuS{~w<9RcX<swJ{O=YseMX?dd_O&uIpI*vDyMC;D=T>q!
z?Vf&{&i`gsri)gP=>zlxgmB-gobhQZxDU8+GkFi`&w&omb@Y#0#D)ASohmMBL{_QP
z=TycK=RY@a8+;KW^{J$6XwrY+%Lya5VIrX?;Pm?FOe;nf9&eG4H|}oTyL>Oe^w}Uu
z%&RnXv&?`e@`UuqRc9Kw)3y6ZNNRn0aVzC7g$yF@?&{l^Ow&Q0cg>$S)xV=oEI92E
zx)2t@=RkBiz)>gswPVrg+ME0@vER9KX8}j|lFOU-awG3+)Toex*|&H}Y(b<(7OUd5
zro;6<A#oO#;Fn>KMJ@%{ifi0K*WAj_Hx8(-O?MN|rekK+@SH24J6|a#nU{al*HH7T
zdrl1=3TrBF4f)esgxD!NiWgLL?Fh<AW8-CdmXCsMUz^Ki4$_vGYj3H<+IX&)B2%;U
zb_yC=iT#p3BS6%D`R^5hKQzd+pIj!)A!NQ=tL_Vje7>7{vnG`v{es6zln2H;DPb{F
zn8{~<JB5cUoFOq5Moibj{v73A<hk+`@JW_2d;!?_YmeLa6@I$gl#UEITNiC^-P%6A
z&0rk-nDWwabwYA^xn`?e8@bRYwRP-QyU0}HhX?`g*xMZ$etsBN#3}4WMnZN9!7L%*
z5*KKw592e*pSrD%EQcyC05h074uecK>kjvfHKj5(a&foZd36oayFPts0@tlS@cslH
z{IMDJ$Jfe>7?ln)23r9V5)#AtKzqS!X=&Me&1paNs@iQCt^6W>GE9$;f2~Ro1_=36
z)|+SH;&!;gBeyZ*?<KPy{}YdfTj_5aFKpG)G4No_XXG+TXI~T}+h$c5ur#Hf3a8?+
z41>Lp)FH-|D<cmgFwT!BfEq4JqA;1gC?^$qR7B+M+qWewZ*=tb;-M!+5L2?SC`0vI
z8IAqrwpn`FWM?eBIpkso<QvgVcNAt{Mk|(YY(lwPiC}@6V>fN8P#8>9JEQ~6a@1U7
zk>}q$+kf-42T`yXt~V<R6jcS%Cb+ZNT+2~P-|+lS;Tzg5IvbUiX0TW;M(o6W@7ydd
z4h}hDYWeQXD{YRKa1#LJCX-9fg)i-ix1I2FI-7xqF~2!Y?)~Gt=-n66nB}VXwq-dc
z_x*inqpH0h5p^rXr^IkX)y-b!iKuvM!ECZxw4~hdWv_;AJMxq-e!SN)9%TyS+a*%L
zI;+Et3GbWJ%vv>B0Dbo}CZU(VZwf(IQH^K1TN%-z7mmdza_(yn+5LdQb?F&z%@IKd
zF*6>FAx!@}rax}OfOl+nx4h@kvgN(61Z#U^6n-;r5oh1fkh;HLh$b7#$>}L7`E)=4
z@@ZmWqQUq@#EC|PkNo|+r_@4A9o^3d9Q@N93RdA|iy0GA=I+1*#)Iva0Nsf)Da2@S
zRAi*nn0<G5St9B|(0WT9)~~<&&kFr-IY84Lxr|=S1YY+I+iWYeQ_$(?Tp2Ey{uI2m
z<;d6?931ROe|X<drVcK``t!i&l=*E=k{Gonbv)v<KW=1hU3BFp*UCCIBI=(%v8iA3
zoC_h#G2XF<3j9EQvIZ$Ls=S6}Tik!$7jBP)AJyKubg0tW*7i0e9!6I*K@$%T3eMOX
zmql4&VZX<Lfe2-JUt`k9&k?fYKV<)=wf)vGRO-LJ`=9@T*OD2%7zvqKS=rE)7`dFA
zlhZknEmvfkn>sb6-%L+S+p)~v_0QAhkJ7Dw>2(;Ezn9cfZCJd-h3sfWUKvXz(Lh)~
z2qB1TczC=cmbZSs#lI(WzdqVO^Y_BjRLYhp@<>QX1C0+KT7&x-)ss+JgpUnEtkW)l
zi1`1%&+^kkb`xzH0`Ut*gMeU+`?F0*h!-J}KL_YPhQ<H&wc{QR_ZMjTl9Gb!TlnKA
zPwqVp3=AxH{4Cnh-OcZn=RE)GV^@|xr(@yc<J0jESAhTVnT6>gUk=+#1yxfuSRzHn
z40=`as%mOQrW?OLkEVX{b0*oKYAY9Xh4`gPmZWM)8ofPA0LK~-cYd7gDvg8vVZW;!
z5&d7h=jzXzu&=YchI0hc!XiTLdau{E)3w9A3s-)9Ln1pAKtTBE-xd0-fkyi78r1uU
zxX$W*V0&!6@!#RSf4jCImdplYBqVV;FoEG-c@q^CRVO$T{@Yt2pOKLv3<Y^1TQ^Mh
zug+dZ9IMqs;Hf)aW*THWR{GhhK_V>m=ZOBN9}S)OY%qEPIR!<wRte%}WT7QOFQF@r
zvEZYhPROrsy29$8%ICgv<^W;=i=6Vo@Uu~7TeHozbr5T=vD9FHLHhLu{`zeH{rxDD
z&G_`Wp-l2Qfy_*UPd0cW9u45*<0IB1Egc>2l-TF}U*kr`2Mh$|{|l`F>kR<mp2Ln`
zdH3<7vRXIeU-}MkS`4CGDe&v)>r=XL=_Xl2LjwU-!;ka7YXRJY!L06NE+yy$dB}?`
z^!&n#jqsyJy5O`$*<$+pN$!7Uxyj%3l4eIx-;DB+UsOB|4~+;C_9e2XpNy~gE#@UO
zJx-Tpxs{_PZ=`u?X*m@M_X+ML8f4k9D4^248*S7rsJ6_p9B;qy$t!KVxLDso>#$pM
zzvKs&-#HYrb4cjI=aB#Jm-Cv)QVLC!&*XAb?<djfR=zT?d3feaZ!iHAFMD&j#$Vn<
z94lftyUr8$?D8b&>xdIk|KIQa?>^ptN_O@YtZNP%i_REYQyv)TZ4V_C`eZv<#aQi}
zZTQPOnxMNbeQds(%;#Rb*>?U<T+uI|+1`T^mgHyssm{{^Jf`EmLJ86hatkhOqoz3y
zP_S?o>AvQ-IFggP^@rOPp$Qs@qg>P}jsZQzXF*sj*|C)0f4LREe9phQ;bghk-1m^F
zbo8K3PY-RC>xyUYvre&cKu5xe_d47#e{z*HESUE3RgphlvLi}o9HR{k#@Z;EM;<`i
z%}Ismk6-N%-}3)@S(7IGiQjXF=(Xa;ctsnyLF~O6mXb)66K=V^I3LeJMfB71z>>-E
z*#5Errh9Mu&kTaDl5&ELDm(C~!{l4>fBMP)>ofmx8Duwb+Y4?iIbumO`hR{m^Sp!H
zMm{*fq!jB9zYX~&H;9ULgJy-v&etwWT2S4XDAawua+6AQ^nbqKS#8RQGwn5YA4O86
zkQlHry{_B7*{FnmnVQ8Lmm6Rr1?ZIaJh{Bu0~2&BTvZSZa=-!Z(|6-tVD%-z@qFYY
zH5eTcG5b0zFi)ePs^|dpQaGWf{me=<k=48#A+NtOTH=6tgUR+oIH?0fq3e-UZ_{3_
zBeaL?KEZg59dtO;?k0N;O=vVc;2C_qDpAz{yzmcjhONCCCN89*4lghg+7d%-N#PMJ
z8tu}I)38w$`?aw$3!rQ04BosK_$PPmAJ(4PE&mhGo%xQIl|0^DY^&k?Y)kVzEvt&4
zOZfMw<i829hc&G!WXQ$uD&(nVcY`kw1&aLoWcqfzUq`~>%vm)Y5N#@(($KtD2q&4Q
zSV?8GRDA502iIpY+Z5!}bwO7Dm2xu?g%K}U?uKf2J;!JJKoY($#9=eClUS%<LoSCR
z&*P&{ylNW!1955X_mIIovN|r_%pVkYTSF|sSW9P`VI}A<TpEV|39QB5sHb`Ci`Wq!
z)-VY1;&Qx)HH@phaH?S}b(lHke<AO?i8_S804fxHcGF#&r?fyHee7WktxJoZBo2%1
zFYmF}*G5Z9m<<Nl?DkhUEIx#$>;^c3&86MLq5B~f&QISiB$4FE#^zge#r0S$eZ1i!
zTcI}9n<7}OI;Dam`rG4rg4>?VRZ_E*`Ai<(&~AJ%SBVRlF`ZjpG+6&7!v5h|{r)mS
z4Sl|k_HuTrj#7qJ$+x)pu<P4V#iDZ`p0B^BF{rzVoFh*X2VZ{ICgObnkbJs@+|!Uz
zF%vQ+o=vFf1lKO-B=-RHd)GCL8!ooL$_0`Qp3M5<NN`r<ye%8Uf_8<d-3>WsilunU
z?F;&EK~pNd2?Wd>WaF9a=s(rC<o3HifXHV;K)$^L7JsHK82=`K{nx{T6B#|hdGdPC
z%O86i)036=hUs$lfVN1)78h^At0bI*`%166*su-sNEVMDrSZDmJI;ms-sSWq8@7C+
zXdvdeV0Yqf?#vB-9XYbx@Pfi@srBEYh%#t4kp?^-ffjGvLy~obed0L4qpmEA{|GYw
z?aTdsv(NeKOPoVeE3QpR9K;WSz#I0ufpS~*a6^DKcR)C=d`q=@L&jot#Ll8WQ^Eq4
zjsF;hHzB*#tj-dx2}tP>L~}WOs>@N$mi?5QIbLpF0LGGu<51c~UR034#8A)IELs`%
zX+jw86j;hVb-BT8Fr{8%Fg@Q9-3IQ^d^xAvn4N3B8hNVkS@o)HYjj@U)2Op}$yX=r
z|57TZSRsL4IU|F#&Z384hO|%ZjiWI{AtOe#<-pH?EwsrI5HNM|D<rYsf$ZrHn?-l1
zOqR!U9vwYxC}1MZ1LySt!8=(3KFs$YEa8t85uUijSIbApo~h+IbxdERqZTmbxV`?-
zLs9yb1+d7tD;|8u%vyD$6zu;RN2~Thw{+}{Qx*bC%fT2?<txsd?BMw=;1f-vs2-o*
zw;jwp{GV^RBLkMSDjLzn`t0yLs*m{^UCP^0m_P)#%I}h6dUQV@Na%~UQT<s`$uiMY
z$zazyevMwUyDukR1lk^^X&zrXZr<sGgTa=m;hRbF{f`+U3&5dc=eRdiYH}6z%1y_{
z$R#mF@@PSy4OXB>9n9H1KD30+-2&(qA!4?hNL7jyDe-)I7ljJ=kDg3EVKk^4+glwK
zA~)D~Um5DJE}kR5ZTlS>tKHC+Tn#V@1B{miA^JwEk*_X31!1xW$Tmg*L7oOXx<^g;
z);yr)k-g@2x<8r-oG7+{L=<y`+Vyv6n3_KI+<yN;G5~k~`_ZaHaEMkDv@~sH;~1=~
z9A@mj4(j@IK!^}k4G5aSdkD#rhsCQiRd$4%gCkd?rAB9-`=>u7nTtJrN@`eUBH_|T
zTum5K5}>#q@0NQwqf{5y{6^#v$sLHdmE?&q#@}^`=v(PS1xPWiKu&UlS_tBDkA~J=
z>-Rjq8H?k!ZUvse`>o$*XTG_1oD5mkDZwO!tHXEDa$@AWPg$z^5bWZW<R?c9b!@uA
z@Z7T(43q=&hzs5YHQMYfDjgj~%uHYWGM?4O;VU%Hvp=M{0BpeR@tSs+0Z)K8>8U$$
z9&mGZ>Td&eiNU$)9%;XYlmrFvp#sK#1yj3Fj@ue&$TH>;X!!<u{5@+zLVow;^2L<T
zf8m4^CR@Jjsx3_RSh&QXEG|B#5O#t^%i|d_=a&LBG{F&DG`cidQRX49pdv_%Fv|dG
z9|v*s<`a-**(>ab2@k%SCLMZ>(adSP)BWu9d^ZpnEj5evtsm`v?OMzf3&%M`K}cVA
zgXj2-OFO4vqrBfrB*2d}BFN^och&dJF8jTqkGK<4*tc+;oyzrHVDTnHA(k9ON@8_|
zn0G#N?au4dr|l0O<6>B;J5)wnt-uf&7nq_|f5|thoBI;h%)RLDwDD>yV<!6|iJL%}
zt3tpwPIHKY^2wJ@wPO&X{!+%j7UC%A*nF_msq9T@5yer;Lj3}0Bk3e~=I?btp*RDd
zbB&P=S~Lml_C)p*m9#Ack)|0oKS~}7;8Q$S69HNLfa@C5UN+41I4*&?3kK3%+QU9K
z`y|>rbcewc7mqh>xEDnD63Hc=CNw`v57ByQJ)9r=y7pSCup3NPv^;&A=IiAsUOBfI
zh8_7Z^$oYXdg<E*<7G7*Qs(rFT6d{a)!QoQwEEN`8Tj-LI#gV{i+$l(r8Tw1FlXT{
z^Z=xdLGDB#$FwbM;oBVUdmo_k+<{=v1@d5y?~kPfsKbOBLcuD%%97UhNn}&8Y;0!^
zn3|`3EqDz%0{%ju(4u50j}RNle=l185!!z(2k_+~(qA~=qwu~1q=?V=+qXx&z-Kae
zTAT&u?3`8|QP~#V33oK5U5}RS1mu`<b-S1`FowIq@z=-zm@G?$2m0icI_-&IDSjQ*
z<B9G`{K@e_ecuh{j?Dg&#xM>zp?4Y9hf2w>>1aj;iv+}jr}R7BkC9(<5RSZY>tQ&=
zbugUAX*-zHbMQ(il`nnuS-jb;1!(P7yGip?6o}xswgc1G&0_9@f(1-R9q2!#w5S2A
zI-jy2@yn(kPD~(5*!FVIT^a->|H(73lGc_JBlX#fOy^=e-C@gZqS%f)+J*6~n>t){
zcWYy=r@vx!F7Kt3Q$Kn+DgeGwn%`VN{4W8({)sQ_8vuD5odRK!6PSOcanS%qTB52y
z{rH-QW5qk!0<xh4n&x&uVK<(|YZmE#&BnKDi}|4T_I~c<st;JOjNSQd9`Zr65KgCb
zU8QN;m69`D0hM+JA>A*8)CL0y-m68`Ya9jYc~O@B1<}?sKQ4I-AjZRPB1JRU@~CL=
zUsUMD90jnE;jkl`I(eZ-sccT9r4UYj&oB8R3jmw!O<vohbZ36)R(P-})MVp+i%;`*
zscNHJ&;0$(Pjg!7a2WpBJli;Et0>HUPRut_XxP~N=^~<9CGG=N>gvn}=naqd5$+Aa
zIg<u^GyTA`)aUq$_jHWX=t7K|;+<Mw(2q4|(MvjUXgpPX`awe%b5wh6eD^|MzW#Rb
zT5Xuuf=tTynX@0GH>g&4T)%`|x19iPjMt&)`Mz{Yk^-%ghJH&ZRnu-dyNV~46H%27
ze5&`Z-yR>C({Bnd(JV^pU#uL|^={#1c>K+1>pw2e|9XrjO2X>RdC_Bl3gKvy(+bjD
z+ItBDZMe+Ym7&)(V&us~+(|rUMTFkN%t?=u(5daw;ijd;Mawi`Zv)XI?RM6wFTtXU
zHq0$OxG2k{pNa5Dom2~9GBcMErQ`{r2lv94U=S`<lpx#^VN-G%<Ow1OMHyteM&#RS
zt_htr!0>V_-2i9z@_@_kKY$0A1oD*KuIoqclR<<IYu3Oi!MkB+*3qWpm&ot=)DtLO
zCvQS<sS__;UP(qee_^aNjJWTPVpGhB@Atsmj}+LEtp>dv0YlIOU&oMEtU5(_^mIdy
zZ#8r9K}_IHA5I5FoF|OhEHj0A@g7C$rNw390&T=vttFQ06C8I&=QE$xdc|3VRa--G
zMba<$JP(#pqM*;w*f$b^+GG}_XmSq4qrDnFi@H>o-f_;79|-PzgGLcZS0{k-({M#v
zbQ`<PNOw-8vIIHJBC!7E>e6T&>o&s=tO}>^Pp)f*W^!YAN``*x#{GEtHB{>+_a>`~
zsArEjcnj<t#_BU3TN4*REPK7bL?GQnX{<L^?+7|~M{_!J3xPMH(u7P(ws&VAT^%c<
zC>!1Sy!ri0>Qb2WH+EO6Oe19{Tx!Ki%?bNApS_azfS=KWg%tfkUG{^9>#?dcQ<s}!
zT_xb~6}IE7Y8k>J6e1QcL<4`TRA+u1aBWTiI>4mT?mqSwZ6xuw9G>1q7aToMV(JSk
z(J0XL>MIp8-GQ`n_(`4;Z1M6;st^thLnv1HS4|fu7Y*bkk^g7N;-5*i8JT|_zBZnO
zxf(JK#s0?hYKc;21Z_=D)xF_?oac&c#w{o=m9276X>2jnUV3UD@cIFpy?)e3u@U!{
zl!;pBubl}r7<MT@Hahg#j=DIw{W%Ct_ZjOBpPceeZfl3GqCav-oFbHH#J3EbzndFN
zkfYQ@-Il90@-9@q)j!b*ZnoVZsz!{RiyNDFf;dP3M?ainduy0)^&u1=I%rzoVSL-i
zSfR%GtG;6u52qDb0Y}Kjk7H6tgEJcAu{zJ)HBU(C1w^F3nQj+Vx4d@-q<E(*DmLHh
zaHp%pL(|>9GCjjXW?4~?M`er>=_5cxSrtc%;Q05ZZwwU#VA(`J&M|1zc({i`fO0Ra
z-HGOt)xJ%Qq^Vptztf${H>w*uP{TkglW}9Am6684*&1x((QHEG7NG(TuSwUhU2}{H
z?wKY9;D@cG{-E|d$kuj)(B-m#R*+Xq)p}JT$368!3B&&NIF2ePl16pE9YIdYZ)517
zx1BKHwl+q~Tl28k^0Q4zy#=Em4CIW)eFdtk?E`3CmveA6;{Kjq{nyy?FF)W<q(F9}
za7r|Nn}C#ZwpEUaL8U#WE*Mc`Gu1qdLC*wp;UAtB-e8||({%a6FpsBm)W<BRIY}n&
zFW=z&5l?v=eY79l%76<JLje?Fkd(c~)4sOEa41eGy+BDri2(SfV#*(rQ};`XiU#a=
zMLjPR>;TqH%MGeAza~<hPo7^wsL2c2%<ng<pMsIk`6B5Z*#{L~`}YWyp$sx?ij5(+
z@hQJIrw`Aq8|HEecWDjk-Y8_Qs+1Vqjh_<A4_C{5awtUeDmr-SIhO%fdExEPF`aU~
zJpNOFJ^S?QyLt`RLyECv<V{j{gYp4}%l1a#Ug&VCSLQo*yuHXlkFZ6AR;m<--Neu#
zngHzbi)oVIz^(dgI-i`DuQ2D%o8yz&=JRRj+gS;5wDJK=7`Wzn^b>Xyl^rKPyyw~E
z@H+Qw<DwnQ;Zyp@3ndB=wujiC3Dgkk&!n1Jl9y+~(f)UQ;CGlz*aAzqDF$D?LM0K0
zL4q%^qf<43Q1E2B)Tqy-?c>L-ZcP0e)`nS;IKPyO6&_jKI&g`@`5LdA(XNuP<Dj&<
z6lmVYbVi_SfGH9(>&Sb&dm<B%KVGre+WOWnW1o_`7X2v~_&<D!%2`SnKUJl$=nZ9V
z$HbHmzzbI$`X(<=i4<8#$K&3^As|22rqiHWEBQRC_(fN4mN==gJ!JHfBXuciJ|Jq$
z1um<HEi=0eUIJzWT=r|3r&;23I7J;j>FH()T}oT=md6L;UHtu@dE@t~bylP34IAnN
zB+o)%V_6nTj$+^cRB4SX<gq-E-5@l9dyQ;3PmP*)B8{)vP}^)vu)t7gid;{-A&YpS
zxDT=k(YB~Gsqzmm!%^(|?cs|1MGp9B>|Fxh7>VlK$JE7eal#R**`m{k68B|Fqxjze
z%-_SHe<-D&A1#Ho#k=xa_f3+Ce1rOy#|rfV#%cu#dvp|OuQL-`@vmViF+_>HC(Sl#
zL1pfbUF=D=%9e`LN$E=FI-X8aT$`P^x#>Y!Ahx|@F8O8x$2Po`-#Gm|8qPSqJqXm~
z*>`FgK4<qinzH*4o<4i=se15A98E4jTisC9U01OOQpxG={6<NZ3-e3+!lTPdFQ~%~
zx)yrdf1sAQVJ6=nisHF-*SV!*o?xypMIu+{?foKB^&02fGn@P!!_}5bnIG9W$Q87h
zr2ZfB>bzSKLL4D7$-C&%H*X;gfCn%I0rLyh%}@0`5x2x_-!QNS>evvlnk}i^V9pZ(
zf58wdhpm^!@1Fdy{&*Bjnh<IUz)6mJo~mSAEM!u+qnK)enA8)hW_dDr_f=QS6c&cm
za3zcom^+m37kj{Col)q)z{`#iA-f4zp+d>$D-A-o)4Dg}C&=hU>9vY4*@ab{%Wh|p
zQ|Q1b$Gk>^rE4LHBJ29vWl_;4P^JwMms=E1FEfhaIj4d43SsV@kr!fUE*mwe@*z04
zZO2e=xZat0cvg>aJ`-^GbaJgR1^zgFDCMpHW63e~nGN8vc0*8Jw?wsGmh01gu4hGN
zvNB}-Lq}AUV}^7cTD$(F><$LsPE}!#3n^4mTe(?-X?=fxoQnLcAyOjGLFVdI<HK}X
z^;eFMB}$jrJ5u9mRQTB^bhcIJ;~2~0lAm6aDHq1O>$iH=oBB30i~BF&qrYdG5id~6
z(-Y$_t&;?X_~G7>7>qEIA*Tw7&qP&}rQeRi<(63NS=%i)59iwWdbCulC|Hw73JdPi
zOgfH|@@$50Pz~hciE#K%yaF`k$?Y;@91)4PkkuWDTqdBzC^~6s<VU~{f;#B{6ou?>
zPQM-1MH`TL|MdDCCUY<Es=P}VBbT>H%Brp4X-7L`ev+O^oOU?Zqde#exUSQwmr}31
z19J1JtM|d$>mLEA7mtiZ!i&p1EOVkurHiE_$(`ENB}W_0yYSddTG0_Q!ihQ+QQ{oX
z#oR8)HxN*H346W@-NHAZk^jr;2RT>$Ed%X34<}dG^2KHRf_~H>9YJVVh4*_z6zJDD
zyW*YI=~P7foDJov`8@oHd#xSy-Pd^Kk2SPvQ9G7FWs4KpS>ACm;3R!B#ia3VTP7PN
zCFM5}W77<?4soQ^^d;u-RtHo}%1`kdBq56L{)UJBezSj%&3_8c_75e8_>m=TvFjX#
zd&it>J4$(>FMa0H&5uG)?mfD&uYlOxTN#dRSLHvjIenoNIsgxKPH0T*_oXg2qmh>4
zCApGNp*t>j#xrl${ZMJSPCXl9Um)iSdVvJ-?yDox&uA5;$yEA)*}Yo+tqoSJS4;M4
z4<H8{I$pfPSNs0<G|c>$D+d*yVR9^hh|!*ebibw_O#j{+l$*`ul;R61ZE0ohUmkD~
zbl=cVzPrzVw3P8N6DotVZcz6z6^f<Pz*N9xR-Q8-E9L5ey=Bp|Q><M!)mIC3)@uB4
zipl$@I%j|)pMLX5gXjD`6ht%1q2m6kNby+J*N8Q3FHGY)<3%lJoZY~EAE-Jx4NhaV
zStn9m2V@pP*(Sz~LcRx>lo;uj)q+b%fXE2+cfFwswObW(ob|Kxw|bUN#TP2jcqh#g
z*4%-*W`ZlT#9QcqPENsvA7t4OuIH=gnE<wZo!B;oM)8ExZsHnl$q@m^)9Y&YSB5&2
z-nv?U@mWEe_5V|k?N?agx8y0J8D+=P(eqmTa}4QL$^zN)x|oz?7Gu#k9Rtj&0&q=T
zC~G6(Kuq`@?wrZe`+*DZYi19`FgP<F=7L;rqw`l;Hq#H6HUoc1YPxO%a%24=^!xiz
zLayGSS1Ru+ZAN=3Db*_^+P%8L@rzh31x2=;=w;vO;Z>F_sWT(WbIRk+2;Y(A{;aqA
zhbwLc*8Q0^MOluYTMS4ik}P^~7^P(#w_yE@yKeNsG^p(m6^7{02PqPKD<J$)SKMFM
zg)ExTurOl}ntQI}w$sb&@rK&0Bq7p6=?DZegjUwOPLT_Att)tj(zOgcImi!FcpfIj
zG2$}bo%S$QQp*&_VDsEDQ!Ccz8O)Z8S2mUqN5Xg9*=|d}iE)=QAQF8((elFN9Z08K
zZI<&vN-ixhL%e?=jF|6aHDMqhkZ}`AhUmflBdC|U9U7lk%&C({!oN;%ZzHT>iyEP<
z0oVjM@<E&7i;?G+AnAK;Y7FDH3o!6@hnTnWP(lHLJ;C^?T-}<}yFoThjU}jvptlv0
zNr16|kO-^*oe(zn4Su~vpw{2JaM`OhY;mMWsUoiDL)hssa3Pur`|RqK22M|)DE%Jr
zs`LU(*^CgnnAdq*hXQHjZN1hb%^|@b-{yjC$Boxe3E9m%uMO6Dy7ZOn3c{LO)TRPB
zwYo17FoFd5e`4OG7B1CDbG0v;x@38zD7oz$Aw~ZrT#y4yOE7Gv$yVZ3Kk$rFX5w{e
z3rpo!u|mo^GP_&^;VuVAkeuUyCdfN`W_5ib`hQ3jb<xR;WG}uZO0fjkplTmPu5g&$
zHa}5xdA~uFm(X-jtM_s{4zZ6gc=Pc4SFOxPYOX)PbWSfaqLl&Xi7TMuz5$6>0aZRa
zBsI!pq@?Wu-$(v3kxbNB=$8}vfYR$`Lqk<CqNR!H%IhvT`c&JDmez`~W0=i$Ob>x(
zZ48l^`!B<VAFgaT?1H{o*Anh}9D|Mt5cPp6y>~#LSsD=yTVxQ^%`A|%8)p#u+t%;t
zn+w6T?2NxEwL645%?Oony7umR2utxnbZ`a3V*3|$3m%Mq&|VOvKNq!xz>YxfrnofS
zDD_@fhDi8@N2>E@;MK$LKZJju!J7YcH~p+KeW}~f_j{}gu`{D?<yKZ3WLC%T_z51B
zw^O`O9xZ-Yoo>XtUt-w!LlQY}sCF+@W0=Eh&&mc{-dBfhwLdGUK5YX()9GkPP09OY
zvusXBvtuvhJ~aGTVKUp^we+Fj!ygZ9tZ5B?bVTR2PF;m{@|}2#zr0~T{p@5kj8Er0
z-)dpS8g;_L)@LzE(P9>AmFN%tDDM6Cqs6I`b1dEKpXw*WdOY?4i}toA;4^l^zVL5@
z&YwDM$VmL_w#m`^>QN|7qHgD~aJgD}cxX>_Uy8mS587fQ?c|D;FyEMF`F+WM$w-OF
zx&11iBbf@#7c_BCO2sISD3<=9!g1;LFAQ`N=KGIX`tUL8%|beAtk&Bh{@YM$W8^ql
z-=<MMf!RoX<yNPW!tu1&49gxkLdaX($jdqb-gG!RSif<vh^pumb1viP3bCvSug4bK
z$b`D9?*4Y;*=hR+TBVP)XArI}8SBIs0Ub}iZj-0v+`o-^(O^(4s0Ed`ne)OReWMHX
zvslkxm~sF-ay{TA3(=4ct641;)C^vb@<=P?M4kIOx?lJCNm`nD9&LkgN4Cn3R$oD5
zMz)$Q==<xIe5l@`UTl>b<+J7QjOrJ=DnR6tj>1E<Y#`mI9lKu!L!#nCq&+ahZ++m2
zOLZY8LoO~0fqh>>ran+@1--o<LWerzwudY)R+8AQ%j3_MjY{`(-Pf|s^xvy{JwA8$
z9rSRfY^UDz6Y9wv#&Hd-apQB^CRp0pOIXngo$f_P1}j^q^0_W$=+t|~;tTROpj&_K
zyq@;HEWNJGv&p<-&TDr;VPQ~7%0si#B%RGyl>c9f^FO~9Sc8R0`gl8y>rukH2$12n
z_9Z>7*M(wy-N)<uK5$s4aTiWD(n;-<;N<L?Z4MDdsV_W3oDx*+JMzy7IQX|)NGcpZ
zlUG>wrCqYoZFulKl;KV+vtcic(R5*Iw}`84)5Q$qV-QpJqGK`zESvkh5)FJhg8ZC8
zE_=b3UZ?z}jI?xVz<G>n)rmvc;bT9n8VlQADF8%Jhp0ua>x)0r%-nsm3wS`%m-o*I
zbrvvit!i8oJ!7sX-y6>NT&GzG3DES+%+a95q06pRsI?#{!C{gKzR@G8nE^9N#ClU8
z@zi4)E`X<7IY6@xIZijs$Qch_W6~dk46kjzCwY{?ppJV;RNKm!_L6*`Hls@BV_KkB
zTxWYvm}}2}gC=4I_fw$^?lF|YdaJgR)z3D+C`TG;yH~s$duBh1L7igs$dxpZXS)tm
zJZy)6zE|{7@i4tG*jm5HfSA7B<tt744l{t155NJN^NoBWtK_Kgq2b;e*YDg2et`5<
zq*KjzBEMISe}8(yA8;LAc$%|Lj;wqqh`)|XxwyTVlF9%gy_B25-QADQy2(wy{?0Gy
ziGL_rgb)Shi_jDq;kbl(*xnL3h1ZyGODT)S0}x6bPub&yL%eM6>of30m0VJ{!lJ03
zno+TZMyFJ!NY0@#szB-4XPmyJXx(ba6NW50w)WoMUoRJpxWxRe1lg?z&<~vIZ+MKl
z-<%-0?VZwYOW&mIGEV$Dz@~Y7j5kVd)#FMWy-2)Zo*RTXiE5rSM_S&yTl$CT;_lW?
z<>EP4ul)5RtEr#L&u`fZx6fi<rgiUl6Sus`gEskdCJ&Z0mp|<OBlA$=<K(|Y`uYQx
zp}h!YXJI6)za$2?y*Msj_0xG(QL;s>S8BOoc58?}FXSK2itnsxe@6+dsgz5NM6&+M
zl{psTG$9X`d3~)gZiJ-50*^u4NRQKHq0n|rGzrCj4_Et*;|p5YGKqIgCCdX9QhA4=
z3Yh@LAoIAZ_<{j4SbnlO)bGc20NDg8X1RRcBbee(MwDm3sm!4x4f%~3MP`bwp0C~k
zeaZG1X2Va2jeuYq;5}ISc<b1fM98;Jr_xI0gSsT`{~lTViG<0NU;zAz!&vDpG<FVm
zPN&JL^_mLPJ<NYT>e&SHQuoa?)BMH`w<;Kw{Gf9;G~OP-n+0fyJ-?yA{rk=Q`{$=O
z!9-S(kVlLmsa?!$*v={<l@wx5n-W88hrCZqGy?UbA7q_v%VSBN&i~&%VlwG-7v)6=
zzWu@xGdqV=&;AC$!wSf=E8JE!)m}<ts}*Q6+QiD>CBo>V1%kc>Ey`4+*D5H#e7`>d
zjgWcc0v1<aa<%BuPn*>FraxpF?@z$(@J>-0k4sLT@{53)t(J>+`oKuQW_hnn{!3i=
z>DT`~LhnrBUsqG6wukZ0TaI`WVNGmq$64X2eDhcYzlpN}5EZ9EY@|PbT>SoV?FuMZ
zEMId9WDI}*o8PvKzpVlpXh2ed`f1hk4vf@tH)^Y&nSy^VA&EuVSw-djm)|sF@&^i2
z5~2?c9MZ!`ZD9E<Xi6{tg;i=RN_GZoszOH1>cY<t(|<|==x$7s$&!F6e?aVw%_&e@
z>w%HgQ<uMR)cQ}!lRdQGAoBV7xsyd`pit^V*{LeO4^=!HEP`wvcsTMzNPppSrliSA
z4D$cY5rPx(dJ=d*z~dN60CrarY_@SsKm!~QT9qzSPHpD4fiZs}cWlprN0j|<9udDk
zOz*ZZvp@WCk^^HZIq<M@tokz-KpBXGLNat~Zu>7FA<p!$o?n~pUHoM|-zRs3xrN<#
zSA`OQfHP*%fuj~lE>W(AYkl$Ohx%t$IGGxhK%LhLufYi5AHO46N)t?&oCbrKz>)7?
zS^%=pm$k1i|K;nq$Dv?er<<>)hg;P^di5`S;c6TRDS9OgrvX33g!0G2${E+D{ScHt
z$eNCtZAJ>WPyb4*rzZB?q|f3A{VzOj|13peyx1Sx;SUo4@Jj-W;wDB6Kx`JjE$Apf
zE}rif7z2%l3$g{?6}y+BKi$yZLXjf1GH6Ssd_tW_M?!&0APy;8`Tq*5M2x@{48yZt
z`5A%<!$(GBiq?SmO#S$c3QoksYR`}TSN4!N;xW}G?V<j(%Gy<taj1$6>L(CK<vg_F
zDj9*2!h!&5fcq+C#qa-DJ`2&Rw||?t_j7lrofR2}#RodjRX=cU%ii>PdY#_l3aOwi
z;8A7>y@V@7+!5yMStkE-JAZoqKZWGqlSxfPE9m-A9`4T<w~vB&ZhOuDC6WAjNBr$T
z3Ufm|k$r68vs<&+|H6@G16}h(Yw(qE_Z_R-{*b%?%~s#3{yl(7J=U#^A#=AYIGv9U
z@0qIEB~Mb$k;iudGC&eQ1<8N}CWG{4G7RNNyzD5ZzIP0~ynD%r5#QvmUGbKqIV7*|
zBT5X{b+5>xO~3%|z%U8lJvTJ^&W<^{v8yNl`xE)c1(rvhL(VCDsWgq%PK8qI$}<x~
zr_s6gsh$spr5aB0A7UhgdY+v=OooAaqJ2E~jj3@ks1eBg1m2|L=n25EGQM!-!5FNQ
zJ|(SxAwF-uD_hIcsfg<{gNjav+^BPTZbh3!Xpi`(hw_K)^S{1qH$W+W?w9xA`wlRW
z>2l0EqH?s$Of;p-AcH|bb`{`8w<hs?1m;eTfQf|LInTvr*~<bt4BzkckXP`PSc)ju
zRl>+d1rSIpfW#l1f4sj6tRuv-(=0JC1;P`4Bo$ve$TbadD%r(z)91diDPI08P+gG3
zsK=T7Ld>w6wnx#4&*kWiY;hK-9~bj%ylJt3=8F#b6}e)&*8jY;xHU0c*C&S63p9I*
z!+pUbw~g+?(dB<UieJ{T8J7QC7+>!S>wv00jAJPHBcpZ$^feeYy+Et_G8ibeT1mT$
zBcb(P`>fDF=K=vC!G%ymvl_oVC|+`a;+g}j0_?d0xJpUVKx#_L1dwDSz({gLkj@E8
zoIwdktSP4BMi#L9eJ{gpVn^6<J>1|wGGTzp7J=BnS1^V?PQ>r=QDQOJ6bfQHzR?oH
zbc%^p0^m*BAd*rSP`J~lHtM`Q*LgR$)b!DX%kpXbo-i>&h{Y0!M1JW%J?M5f6grK3
zGg$tXqgeKD*Et&>0+`7G@J>nUY6FmSPPYoT^j-TUa^Qg;1R|rz>o}pl`gt?|bFuKG
z`*F(h&V{mtE(m51bGt4@95yU@6|~)CH47F9AMHZS&FTY<EC*DwpoU{TxT}T{@f*+v
zx|GmJX!X!J-MYy1rU?ufV-JW;Lo(FQAVzl=>Qr>YKJJ0hxRc7ZOsUPyG+<9vtwN7R
zxXG0r&0pOVEQxBb)7{qEMBtY|bF>8TSc<|Q845jaPV}X&zM9R3<6cjSFc=Fz=mQ<?
zxVct2*wt)-nAgjF64(}%8ks%H<AfDSwaWFWo;^X3&j4@k)=e0?@}E|QFc~416|inz
z+rLz(2~f0&DEERT{lkdGH{6di5ws9;&9^~JDFN8R%|8eCf8H`I$Y>}-`>7P6IUi#6
zLR=g%yt6!%7i|sjaSgN;#EQtFQ{06aYKB6#WG0aZY|(`mK_sl86aDl%03reX4MLFj
zA~?jXKmy)=H?MMvBPPS;41%7Mm$RWrz83i;ni837+BG^gc^X*L2=-GHxpN4!93zYM
zxz5h0Dac5B0ORO^xZe#q=kp7-_AxMY+F`}ADhZ<*vEQLF<D4RVD?T)qVf6_^-B6J?
z5a(=?4_SX?sxy;y3`hfEr5o~A)14LnSHy>~q?Ty;s&(Zk@$GUHk+0KgA8ra6fh_sG
z>n~{o^Nta;M$LL&Xsab0w9!*n9A`7*-T4=i`4D72qFuky%p3kjGpD#+hBw7tjF9Am
z7(vWzZS^Ki0!ZfD-M9WpGOvM>GYRz~-k7DHe5SDQmQ)LXW5{>P3@}pn<cF??f{<m7
z?#INb`iu#H3rzJ02{X4-B9wdDiN5Z9r4KERPdm+XIzq}Kl|E99OX902w9CG)pPh46
zilV4h4ps|iwrngf!LSP2f6ScxZIv?M5UF|&`1*6Jf`#6%!0Why-5YWTsNgJ+x>V6X
zJ1yKVMC3n|K>oI}!kc(P-)0{nrhTdcy&CVsI0{fr&nh>kSEeoT(<24N$g>`v%#mUX
z^iwGzM4gB2{y)OrGOWw4Tlc;}PzgaAq?GQGPC>f6yBp~a1*Ac`yIZ=uyFo(YPq%c#
zo;<PMXRo#H{T>G&)I$a3y5=0?9KZ7%6ar^J9+0ky+b4CKyt{PcdjLU?tUy}}sd$%j
zOIm9SA#EX~=|Z0j=r4+PAa+A;d@hg^P0|=Eh3SVR>qVg<6#Hs!$g0WKA9RB^qRT$2
zDHUlpRO<AC+zM-e9`B|<k5Da_o9Baxfxq9z23so-M#d!r>&mtv;uDA^838$YU>7Nn
zq-{_PD;vPV8mS8Xp8L@~Jyw%Zyt8gJnchHGupUC+9@H9()!>w>%-gR1nT4xn-R^Vu
zP(d6imd@)uFNB3<gXZd8{pkX*XUV|k-T1!g)7eh8@4dY%i8z?TcrP;WXoCBK5QToq
z8MsW(OZV$V;WWVT1MLiGY>gQS2H<8M2K#|=iFtpuxYymR1rQE{q*KCZ5vamL71Iy4
z&=<M(|DxijOp0>c*q@_pp4~VR12>S6&!zgxo?t42s}I5WGe}Lp7*OID!sEVdI)#XH
z`i&Ais)D!M>E6qHa~C#?wP9Cg`vC*l`^UZQV|)=6R66k)V6?au&SibohOJe<K))}2
z+?MV_t5qNF`;tfBe73|)hzT5E@i^>%^q!J-LRvKHj=WC6CtuWboQYLVS%2l02D+vN
z`g8D)hxPUJ2DfC1j)D8_`L5SBkSdJ&!eNy6j(<B}1)1G}Qrl{N0#Y`;giyp#W8irG
z$NBK%Jc}})=~B!4G#)q2^{j)FX$6f$i?W7ZlWn4!p-ljk8f$yqU|^wxWhiPUZp}?<
z3UPFi2?OYxz$LK%?cPAWZyDsNMHSg@ss#Suwc>vqUEqh6EKs!VLt=qw4s;&N&3|0)
zb=ChLRZt}{RLk~nFq2xW2C0s&$C4|0Z(!?d%?TX9@aOVj1>BSKSJiBmzjU)N=pMj{
zwigob1(N^Iz!<Hu<g(=id<*CLlUgRVzjVMdLX*M8?9G;1obBN61MQo!Q}jEcY%`EB
zl=<X=6gJi3?hG=>kFOn9Ih<aTB(iY~dd8{taH!?N1;=aFhs*DXJ&<pvr6_v8PM`_a
zyb>XLy-mU$j5$aljm(pnfy@5o8Obk~u#WgQlTQ*>5$LxZ)GaE#hJ&B)akawN{!zv`
zosZ54mWCrgz-t@~u0~S8H@4&b3jO8|%iQ@NKfb%+oe93{wb7{pxzBgGD6}Q=%`|f<
zz)JGmqHY1Yu$MwcVUb?NL_8dIykOasd}0~|T^;={UM#Jr!alCAH((gO(MsW>;@)xI
z{U)LnL97+6+bsA+AMCR*&A)Wso$N7i{e`yX@fPLqpA`N~9-#13hu?kYfTPbfCHOai
zPxAjm;9HywV5B9vf1ovBv9xS#%wEs=)e3ZFB0(Fv(uG38kCpXoU^GI<zD2R`UfGC#
zsHg(&$ddZ~-TYS~f?Qrl*eEx1K_T`cuuT>OalE7_C#PaR-M13)xfz!}$k1H1V)PE&
zDi1`FhWZ78$QCA0Ce?mpQxT4(ij@MO+`%q*pHNV?CwE+bHQ!J!|6<$%XmefUk0U>{
z!DPT*%##2s<OPgTkU$e~u*|C`+PnUiyI{6i?gXq#)|)6Jn!+tCTJ?h{LA)N(xc2jB
zJqzO+aC=K=@sDP)r>JqTsbz9tmN){6qGpq2Q}+>&MGXm32wAjkaycP7TaVxq3VqV`
z`hPsXOy7K}RQbSMwT*q`<FjEZ?N!$U3{=FVxwhgyw|djGaVVv&I{El*@To<Z!amfl
zqx$jqOUu0}0IA$xl*Ggo*C1`qEY-6rPxTrm?i${h10>X}2vSsBR%yRtHYiE<Hysw<
zXBcUo3&p30eXwPaN}!npktyyy@w?}AE&Et--?4TDAYZ}ldg^eDV7=^-fS+>DgpXc>
z8=)3%n<{P?drmPDD~;9*1+`s+g8LF+PE2TW(yw?g7&L_4$J(XbU?frbQ|$&Rg*U&C
z9PT|>jQE;+DXYg~P%8^olQ*EXoKb%!2Zs>6r!!kavl>eL)IxF&HpgJ~H%QbD)Vts4
zJzP-HC6%T>MB3itrv{v*NM(R4zV-!3aIArsf?Ja2Ybl-RQpyVO^E2Q2j%&?O-uCEb
zD#Fs5vz!7<3tAo%cjrePQ+3CltuA7nUv<3kEdT<(&68uUiV{q~?#8e4PtO9cOLfNi
z_-Ew##wA-|9^3-NceNgvyj?C%G@LbnKfA6t+oKqO8EweY&$C+Ibi`R@yG}-p{w0yr
zI8s2#KvTNuuW+2R5Fk=lvAoK^`}9x_1oax`^9d2chLW@l>WhDv6|#F+F1DZZTPv*<
z8yzUA1!Xlh3{%D83eLsK-8Ujd4zPNk{lD*6ElopknG6g1sO5H>OegfKbUUCeI105}
z+>}4%3PQNer>|Ha_GT;&<aA<WxKHYVm-EbUx?sYIQDz+kL{A-Fw1VU60Q&~K@s_Qt
zgj&e7J0KvgYyU~`&VK_!+6u1hum-SkW=Q*EqWHmcRrsG)1x(D;0;)8Bvbqc^#{7DT
z4Wf?V;TPfwr1rs;>`q`$Ya^KuUUU=IB&YJ-72#@4(+~XO+ixoW_9)E#e;x(zYhQtX
zX94`nuK=&+K%e5YVCKXvaY8G%0t{UH+i%>Kkns~M@BkYEfP;V*>%n}BY{K{d!>C}6
z5Px0kaf4=A3%G+mZzPHg+04#b<h?#nq(cw_NZ=h@!N}7LY_I9Az%SvFgHf8)pja^|
z|9r6rr;NQZxiO~GPX9R$IlI*Hx!razt38b(=e3V17Y<9hJbP}(=c`PbvJT|NdeeAp
z{$TDz)2vfwX}8>7X5UE&6lE04Wj9*+f)$z9eSAcIKDSV6jpvlh5KsIwP%po%TKjuu
z?FSunQd1j<m$$-6T6eafhi|&wE4HfNTJ>E6s(96!dhrD3kCa)FBM{_eLswOuuDpiI
zVD|L^<W!BDg-+ccf>qp>Lc$%QBUga+7$UReAxfYdF8ANLJ8Bv;edO6Wm+t@|wHelv
z?;5{1&|eQFV2lQ1;9e#J&2rxL1guA%LY@=;ilyz6=}k8V9&by&Q}64wfGsd_k7iRN
zhl=7wWe~EFOt2KD2LKBpoAiB*GSqbB-g|<-Y4IBTeU|HZ0gvQ4cLyY^(A~IYsJZXL
zs0;%fFA(W6mjjd^pDV14gzPO=mi!`TK40l$a}{9EeMuR%oQq^%d5z9<j2%aZop-Zn
zlIGfLO_zHWn@i{d%B8U6ZN+3?qavN8kWjXOTi{5C3AuV$*x3Vb6U!vSj+WZCV*Zw$
z(st(O0L`DC0owL8kfJM{uC1Uk&V3p{qYx$w&z6HOQ-jaDTIAs##4#Vb&(KK=bDq<c
zr)*^d6>l%=pjWfdtUR3&*QHXj9sQt55Nd#fa^2yC1>3>a0obY2eY&}jxq(Sdj)&QZ
zKL<z(PI&!E1E5O6Z~T~oY5qLmuUbzLBz>;Cjm#wn2BS25qUs^V<-$pQ1QH(CqSzoB
z{)qwX*=+V)6-1CE@d`##=l~p1?#dRHj>iBzt7bbmuFUD04w#OiPXFmB*`?L~4ao|l
zxv39W-WX6AR*>P@>;qoH0cKNKz{xSRe|J1^3AcsLtG*nf=k_NE3M9F-lg7*e%fYQ>
zJZviu$H0?f2v{|3tkkV_P{M`rCbN;lbz#yZfB+H+O&Z0H#@^c~uA_P)FCNfF1T~Oh
zX-&_F)_<r2noHoNnWR)2_kb4%g?5}dgcjR8<$TxPdDw+(JEbaihST$gy;yzWL{>)>
zjHwubBfIJZ6%RJuS-si8y3_Au6xV)Q^?CEd!*4v&4ID<uN10D-)9?v~L1IP5VdbV+
z$J(-u)!|B%k(-LOFp_R$0lyKLo_2bxdPflG5i4%aMGkuQo-scI5&d!yln`=lcZKFo
z0GIw9NeUg2$^+QvXT=xauxZ*v4>%YJzfNGzlV>Wk%r(0wM#=W-2JZV#g@kfe(AHj*
zm<`;@5u9DMIkTvfECUnh1K3_Pau+GrsZcxzb^`C>kQ&u5rF)Y->c+6kWU=JutTfmM
zB(hpHN>v#S=({667RqJkIX@t|W)%t<cYVLOe3gp1J`;B~x__Xil!SJYx|l73tkX=Q
zw+YsfhkCsqFi-Pp-g{L*lO)zcc!*A4=k>rzjX515T=AoZ;^EKKL&kpSf18;6$L#0_
z3XI{J_F3-4s1+V2KHb+Sd(aA0Xj_RoE?U*iyINvxhbLvnj^_hDO4)L~({Wlo2D3bs
zoeG<raR#`D47Rg?@_-pCK3ncO{fxMb4vCOYb031ROGAK+Ibj}F^QU1Rb}eK#XwZ7h
zm1@jcYv$cpu+<T2g>%gryHnaO{1GQ2@gxxyFARh`kr&^Idigi6y%@~-=xHQtR6KiM
zLx!x_F_guNY+{a<SG4(8N#G4HX>1U|A+(jg*yWKMsoQ&yZE;S)+}<K4jhVzNba!TL
zr19qiiG~BCnc{qJX@3H<c+yBd$BJow!{lXJ4Fz2HIZ~;;c}U9b;leg#X(D&xCUQ$N
zwwE!6Zvl2lT*5tjXlU>(W`xc}03jFJUfS0cjEIkzw+e#nohQEC=%bRMWgrCqp~U$#
zPa{rW3l=?OBq$G{gH5XIfGy3RXIEQ^d`q+-mB8>pxH*Rzb%Ff~<l)>wNU`$PyO5F3
zVPI^2F=BbhzMASjvzU+w5wruv36dwy6F_##ud=)>noKbt{wf6};0X0ZT1?V}v=P;l
z82L<17B5yhFbwc4{H6oO7e~O2{c`_-TqTeMT91ZROZ(~0OnVS7;d6E?0@noyJ(E&(
z3|jT+BvM2wL#@ubWq7P1*eNo2KF#p%b+B>~73VEG*Ug5YUUZriAQ6zd1>FeU4{UXs
zH}sv3mds#z03UDUd)|XhrW^cEFOCz5bIeb1X+Fho5Yl)NJ}*P1LA65j@r+isQR7C_
zCyEIbVA3Hn9IX5ta5;;f+j{TFCw3kE@LMl?dkn~0RtiSv5`5#;Z_5a=wHi~7d&t!p
zC(lZyl53Um(0}u(S=t=|XLyyi8rhV{7>t@z6b3og_T<ZmckYB<*Xe=VKu(}7Wm>wU
zG{m?ZHIMdlkw&EGh?ewtsWq0y<}w>Az93}HLk;Yg*rByvLC4=9WISVl%GrF_8MHX&
zhmmCLfBk<qfd3(uPKtgyi%F7*k4_k9SUt+tTT3!=LfEaG-M|bJ0Xy1g$1U)8hChxm
zgZTP7+e*tE4rg+=$?r<Qo_&61)}ehiuP!qlp8RZ%w0+(fQ4?4VRG+!(dXW+QHc%!#
zcHTYfQ{aj;VD_e#P@qz=D2&&%3wopAIcmnJ;n?71n&t#VaVNBf=T5p-#Qs3tKDvfP
zO?h$~^cJj1^va2L>b_r^0vlZoR7C7Vg5px%Q<4&q#k0~XCr4Slvi%$R9wa-OBK-lE
zQ{C(HBhz18YXc_}OPOeUJNT0sQ(K~TR4T`YI-nt)m5-7*h8X_R2m3gkTBnUgHwi~<
z_q5b^rKcZ(;(JSK>c#Aaq%<4C96t}-P=OqZICfv`3#b&%+NGPBLFg8>@g&#JB=;7u
zTK$0R!Oi=!`E2xzmgok<<cG+Cb=!jz*Q=5n&0Q1Juo{wgn6_CJ2b0U^4qQVplKj*p
zOfxm0<gR}x0E!JE*6{YL?=B9uiq9^SFek~WH}B;_U$&O~+(APp@I&X9#Y6>PWOf@n
z`tMKx<lI5$fpXg)J^|395j&Qb&0Y^Aj6;5KZ2@_aqSBbE%+^aox0!ICp?w9i)T;FT
zvFSnxmKH8#)|o$i=%6_%x#*7ybH6rQ6GP5oARpqIpaY8DZJwl<TmP$l6)wl8B0?a#
z)k4$N{lt=tS9)AMBd&joV;SK@8#8rLpi*9jkq)~))3+M0$si4l=t(&wCV1Y9TaFvn
z_S^`ZlVTooQnjG<n=vZtFzHF(kcz_DH)5p}%MpuV9CkW9o7_xFUJgZU&#8`!NUw9G
zC4+_E7z~u!T%W$fB>>eClfKEh)L0EF8dX&H44CtJq>{CW9OyYtqAa4F<}D|4Dy}ry
zJJ>7=+2IaQX&pBiLBdGr&rZcQFP>zrxF1VI&D8X{B5If#4R%I?r@(RXKo6w=!FEKL
zXzbfO*Wv{5|330#By1@Fpl4o+4P%k%PJVM62lk?|O7@d(crY5t>Y(_4^p%rBt9Qq3
zY`6VppDEOM-?5m-Xn8on)&YNeax%@<NXz3GopsX}{2H_5(|%gb`tfE^Th5mAEm%t1
z-=Q*!Y3AIRk%vY(lGZWMcZ>nk-PZP9&*FsmSpjGbYt5`1HZj3c@`~j08=S{eP1_!f
zS{}|BNMmxyOvBbZOF5Tr`(LRGSTB|!O{2$+`*hyfqPfxagAHI7rePrmY=sGLCJ_)(
z>33oODzz02-Avi4!HC0*mq$T^<W`T9{@nyQiag^gn+17yc|X?H4>X>n>6CAarJ{iE
zUK}^;D)s52-20}2Y7yuBhmL*j0ygCWWf>R=IJL^Z3$JcHE`F0~-MCAZeI?^d#~#r5
zJR#yxY_U1qlAQ?$9?M&3ve=1wTLX<4W*Fc=tkWsk3S%L^1q$OYj#-A!SY8msKcYGr
zmkn2cdMGWWS(~caO0`CrprXlcEoO?0$S+74e*7hnm1UZbKUBRQZ-1h_;e5h57#u7a
z*^u1PV<y5JBz!LS8~9*{Kg@D!B8R8055}IrA}`pEG`Ju`=QBC%E>)=46wMX~Z0AWO
zYkmQX9gAj^+euiAL2n5Xn{f3f{a~3bfAu4SuQnXmb^$H55-#Vz&rb^#-Hkg6l0CXz
z6&!{Syb4i1n)G5Bis?rEiLd9!jDQ4r%1<XEO6COAr@b20vX?^M4s*8ztbM4DSkO9L
zBr~g_)HY~jYK@9oFVhM?dB&JL-rsD2+@~;<1v7rdEEbO3pzWwC>3n)Jwf#wCc%HdV
z&1UxxAW)?wZRaQWYOnd#CBwE!KG~H4{C^bJHdNXC6|rOb!=a6L6+h~E&c!RKpTonK
zeRl*J75cdt3}XES6~!mngdc7zNWaQ}m%|e(dUEGZP8yP5-8fU+<?RC|;Ny2*quUX3
zv0xUF<zEAQFW;Au-&vTKw_1?CpY3!W-|f>+khKBMG3}?&2cEZ*5rltJxd2{B`0cny
z@nXN^?2nY_eo^}iyN)kdgehY&31apqNzu+n0Pp>HE66nxF*rb^0Pf4l7LZ;rO9V`m
z*A`YiJw05kW>L)Bbo}zwQyvE?9QFrEMYkk!v5Wl`AP$GMVe1Q_>qg{GiPM8Vu#F1u
zb1k$}RV_sdN(RO=g>Y~FBRc7SOt$g%VGM;t<JLAwCZ7i=@}YvqMPO}S)gxEh^PcQs
z_lqM>WsJRU2{*P!P#G|zN|^Z;BG5OFPnW1o#SusTU=5tyk}R}!D_6#q5(<fDes!=V
z8%t)1q=cCa8OfxINZATyF)6O)A}2-yy{3KsJS1Ui0rw3pINp;;<|GbBp@W>*qib;e
zcl|vRTZ%w!6Dh_RB)Y*oQI6FRZJ!hq-#|x>7#Ob%AxnHQWo=4Xvxi<z)A=#Yr>TOe
zbt79%zaBPs2NPhYeJ}C36RIh4{BsYsmIUS^7jo&p9zdq!bluOF;OtQ~cO*nkP!)1!
zJuhZNfpG%eem6JXO`w{rRY1*ABIa48S&sjs@(+DZ#{o34p5ELRy5e6Pj{K*?l-kxP
z&+ji<2$DF7@35L@Gh>aS+g&gVQF{c*-Ajkp;oPME__YMBID6kSP9#lDUuCs6ooCZd
zd{fTq7c-zQwZ1ya>ABR!(VNRPo#^)WP-6<+2Bp**T(P)_YNVanI;}_k`8;HB?Vs^b
z|J#-Qo&^RlbI0WvF#h7!@#3+$Qpnk<tesPhUuW@*f_4G5Q;o3q%u(EcS%E(0K&(!(
zOaqJfO$`O%RyExRl}3l%pF0T*<iYZS04M|#fYlNqv$AGj3sg?XaW$$d-UEXvNErw4
z%s#=<e$0Nc9+dEw-iX<3@NXK2Pef2^T5TYN>mZ2LY7b<Rrd~<Hf!e_QGZ|Z7!OaZY
zvI{Yp#ra(mlix(S4j<p|XD}TknHjx&^Um;%_YRM14J9pf-YQ<X&e!cib(V?#pic0}
zG=`OZvo8>*@8V8Uh&2{^h}DC~Q5+Y!jXl`1Q+Ln4F-r6idlN~DuSRVf_xYI+I0xTc
z93c(+*AmWPICzKf!i`e>g(!W<F<5UhOKKrgxsd&}yyq)eH97K}YPaG~QzF?J&ii#R
z7R@;yp;!(1^)^I}$@XMIgmzSPv+z~u@OV#Er()(e6Qpi?H`)B@+o;K*B#=2*8#QOj
zZ+W!jI!pMF4`=|dXODWR_d@lqmulF%8BcF<?!@2pHT(#!|J@V0M5G0lr65j!Z2x`7
z39?Pz?9woLIVH+_fP@Sy=&%Y9T$5lwcDO;0t^I``E1P~5crO>3N0QSaSY%axCn*|V
z5JRw3uCjH(E2Jj|`JQW1(o4(ymeJ8XN+|<~k6#l+ZGivx-pBQ<^ElpR1!0h)SYp&a
zQEa#f`0LP}rdi&gL1EBqcghglcK|z%=2U~d33Vm7GjeM>bGAcLO0Zr!LtP;B!;AsP
zSaZ)+=d!b9WPL6cjcR{y4;n)6i0I$bL|+j}WJ}dqnmQ7K5rYGtGacq80X?u%E`_{V
zZJ!S#KKceI2i!Ls(N12<xS3|3g*`W_>Hf^9=p;VFZKQzzJ`xnj0~bo;)Oa@LV2u-w
z%{sM_{JXlJWoN{(h0M>LJ~Y{(<z5PAO_gs5CS#!#K;<j<dxQT6qW53t8_wrXXK8gy
zb|JKq$BKOSf4ZLY#3-pWj~9^fIj2|r%uXOZTcG(u9-&@m88v(Hkl{j!U3R0aW;EH<
zGHIVPTX^tO>P#su`SXm&o)p{f7|RLq^(|SYy!z(H+kIt&40fFIaS{6pCQh)loeyO9
zd9NHS)KJgcMF<;8Ti9Sn(_k<Ryz_OUnA&I{+ji{eN)aSOr9YfUv!?9a<NzBkB*BGx
zSV%VtKuFIDA7~bz^9h8N#t*-BXUdE!@BM~&LGmQeGW_u6@e1KoL9~qZR)ADGZ`W0R
zH}O~BML8J(A7K4qB}<;ps<b1j12{&43)U))Z-YI4&F2-zxreEjET-e*q1Y#C3=3C7
zFli~hyHRb!!viGgiv#6gj_2g@oyQOeR+9FUV&wBe)!=QNii?hXsD%A~A8C{c{&F%h
z;j7Y;+<`*m4iFPGrj4r&#!v2{k0A2~ctxk6vsyQ*hcfmMYU!)?Vy_Lm15qxs=@(zV
zLG2-Xwu<)oRq+Dsy4G-!r1c%W9zsZmJ3k+y{5qIUXYa$gJMFuco@DG7Z@Y8Pl_b(2
zk#bU&b!p1J$HG7M<AzUXBBk_p!gimqa@>Z4gUf_|=5ZECDtj@laKz?R*6Wo^7nUJ6
z*muNYK}PClrVSu-e9@i9bnj!MbzPNd7E9rd>gd0i<RAbBQX5cB+gJq07VDp4aF4#U
zR%PxfNnw2_xJx2Sm08JAVdkk&BH$X$=AA{l4!d%1$x5plWjWw4j?Q-1A{O`g6%twU
zk!qNw<ML+SD5cf#<p}Pu$>&#j@SiV)X(gkbwv#GjQ6-n#N+h1nCvc6IyLA+lkb)w3
zzZ%c!=mp2|@m4~*0*325Y!ZC$^tY*q&<K84?U~fFZoZplb+5B#n_7Ng)`~sj7VT6i
zS9)cCD>Ua4&DM+PzA9|5s{_Fkkq^FZbt_#+mY!QeiPqgxwK1u<(g}qd8}!j99ZD#^
z<uOS9Gn9Xvz=7s9Jh&yx_Rksq`!3Mg{a&0d)nLnO2Ff81nIsgQCay3ntmJ}j5!i9D
z1@eUIaN}XOMQY-*VGqENbZQCYZaIyRyG_-)B=eZjDedP_s#T5Sd3+(@)lMwZAfoQE
zIOM0Rhf=n~^_uS%Igyd=&M~jqC57Z>yFeBE2bBIFnDzTPG}CA71K>A@OIgb*-XP0J
zfOaC_>$t}T=xHsUQJrif#Eoz+{W(62!pe0VbU11aqk-!%7?C9MFt!z(IJSnLt9a(z
znUTvT&h`cT6S1L&rUa_9MRfJ6(2F)IY0R(-h{Yi6N*OygrS^TprIDc~cncj?subIE
zdPOsUr0lIa#Da<{mXP`N1NlBDDyEo24C=NZI$e2{18S-YTM!ILwv5mw6KO}6qO=%e
zdHE7?$A$nHJOjUrzMcd)5+BVlB$yBflE`iw)c^^mwj2fr*kM>p5F=(B_<c|onPNdv
zX#VU&dL8B@niKlbm_eEvq>~7ZAhKt=juVromb5lfRVXV0Xy$X=m%r9KN}MVVZ}-dV
z^xUr5p%jFH9j~)J$WNzI73dW8p9&ZOQIt<F5L^pgZ8<M*57Ie)(YJv%?>Fd@=uupO
zcH0;zR2SHf$T<PY@*}(@ay_5m-%4{o3ZuM9bAKH3COAJ_q%X@YObFHX=?!tRn<iR)
z_FqLi_XKaY`j~;5wf42=8Yam4yY2E5o47bXUKv~RIHOg5y8#Jy`BnnvJq-%SIGl^%
z%!yvEDB?_Mm)7Tf5Dlsw2R->a;(dv|a?B8rY>GO;%yT@(PHd|p@!%6Q_v#<MVeYC>
zdZ7)QmDZM)TKH)Jn{jhF@IIr2y-5M{mqKBE+KYLPhqv}wwW|?CSmoP+Xb@7Sq4f(_
z?}DErn-di-C*8J~h!Vv*Tt0j5$_C}qsSC!-%{M4QV%P^>KY@*qohTgbA7e#Pk_@b*
zCBDns)SLbCzBHdq`D~=TiIt=CwvS7{C={zV7%6p&yytI(JAH{88gxRL5L%@l{ZFIa
zwQ<yE^ZbYOVI`Ms);YCCnH}la7tv|7r`reukO`O;Rmwk7_sKAxi9G6F9wV&?3PJ}6
zkOn8dNYnM4yOk0#_xj##B9vOTR?4YkUNmcAj^x(XCQq!}=(Jj#$G=~t$@pm7)0~Jy
zr%R<-T~Dc#`<>%pq=F_rzA=pV{(J6ZG=^hdUJz-qGPBj)?|0Fg<6bshK2jRPwHOw|
z>BOxcn^^rK)~HHlSYd-nf@ysHH|RAf7U2?#QYQxSyyf56k0(cn*7#7Sj=eackgpAW
zcrv~lWZ_p#+~QLo^NmibyXX$Fvf>LrJE}M=e9NH3QCLx^Nj~tc-Z%3Nb!D<o;WQk^
zgIAeG>uad!Ce?q28o%#DqX1|g{W6@jC>Hv;pT9*a+4E|ru4a%Eb(wvU4CvOR=cP%e
zS_);r6SP%1MECLOX3TpS7+xL@z!ue@CgQ?$3Rr@Xp5ix2)N>Q1_POtip99>|CGCgj
z2RKlo7yMi(xwLQ=p#N9=?8g+GDG+!?2r7<!ceG|e2IR;+$U&Bnt2-yyY5)4-usNUU
znbcWwSq~eq?#*$X2%&52k0bPmzY@i0be4{YITAhT04=p|@tZ>VeZ}u3pE(fZP<^yO
z5LF%k)@CV!wo;7Lie%Dx8HM^jo}(<ir6yD0d@(t-?4X=_bf8A3Ysd3rQcA!VcvNo5
zKn`fqCOuuf!vOwJ4CT7W(4f4XH2ne>lmZB@h>{T3#6<bAThmA2K7Hg+r{5z^3?-S&
zTKW*b4+h}T2VD#$^NmLfJ*9w}QqDR5x5qr#?zw8EwHNyWP9jENFsi+H^~C-)N>Kb6
zy$B_E@Wp87IOzqOXieSDcdV<<|C_s9J=#8a8mkldsWE95n$IVPgsmpC5*M!fiC>I>
z>8{~ynb!VAOIRJnY_ANT-G=B&I?BT-f<!MdO3*Da0t2v$U%I4PKZnoR7w`ez&Rp<_
z!~T&OApg~RY|Fo<cC@GBL1f9MB-jAb%-h>Kj3)Q#Wr_!ItqTia(H@vFp8S`uJo`6F
zZg8n4hunt}e?Dh?1@#Lsj=0ytb8G=SlwXWhF0pe-b2;uAV$@MdczE42p5#t}$L6L-
zqTQ8*9BSNtjK`v{6GZEc0G<$Xc>Ze{D_pDuhZc!TJ~3EkOjXJ2fx=d&40Y)_YiYK6
z1HjGbhhfJmBfx0<>tw0%!fdv3{#Qkt`h+f+mJ=UsKf{n%g7d?2-qr6l8y#?twci<>
zuM6nosL9zM0TRMV+kF_xfIf@=Ycz;nOalLfgLjPAEs;Ai(Dl!=m4|k*>ZrHXB%77H
z@Alp0A(_2l$-h<sb=SC)kd3|zFuB_G*5@fmbunWC0r^BM4VihoH0AJ&SCHrhO$-Zz
zb2(ti`e@WDNqCeZv49ltsf;A!$^IKX{BGTJ#nveXh2cBxFUe2tUSqXyj2DvxtETs{
zNLpkaX>2Kv)WoSY_xhhAFu6WVOn%{J?VBqENr306ZB{qtI;z!16P1CMH_gXK;bVvl
zLW86aPY0+Q1Mzb)1s++Hwqhn#M!WD;dl9>IRFGeLwcZJKZ}t;jG+iZ)mA7ya(N#%T
zW{sYo=URt20ia;caHvtqc(K>9w!i1&N3Z5|*PgJgVQMs~48G+S-}!nsSGT0}tY$Si
zli+ukDp}A%A>A!)%#Wnkg<i@QAD@Z|htIEsyU}?(uU~_1QED%-($S(fXJ8i!=Y;#m
z>nhub?x3A=n}(I(E~aD&X%~Y2N%=_BTn}`s$JyUck7qCb%eL~P5XKs8M$~9!9R{ky
zScx}?mo>h>KAA0t-2|C>)3=0fJDKRm+(k9nAfa|~>^X|f9&FhD#iU+sss{=g4{MNf
zDQqDCxBM~~XS2E^hDO{hQq#Uty;wX*!JS2?#PK^=?6Y{IMQbV21Rl7#>2jTwvaptG
z{raAMmykabM!8#fYx3r%k(hs@+=!56gzbS0rvuzGm%GEd5umzzZG>vW!v&L!Pc&uO
zF->Q3j1#MgfsmD?8IPR@XEmBh_dLC`AMkTr8+O4FCX@qYqMPZ}qnY28vTJueojs+w
zPXvKWpCOrseY@DXAXOpBlsvA(xhHE~!7feytBUwSa@1|Oa?(BJ;jamES+~8345uT}
z7wT+L+C=hCEEDCpWcB+=)By&wZ&gA3F-Fw@QBajQs^tK1)Q&vQZxF>Rbd<wLP@@ur
z5Lf|8Se>p5^$y|T4*7M>Ba8bbo{ZG|FS0rPaNf#Q#}!Xct6$IK2f{LtkZA!PIuNc7
z{PkVmTZ~G7!gSSCt$;V@Xy*6IRxGq~x+%GB`#+eblw~g=bWFQb@RNleMm4=j@&&W2
z4xtcKollOo^84c5#MF|FAOodo!ArB5eaJ4{iDsB4zo!AfZe#F14(0nHYE5Xu$Fc>r
zi0{r#i;_YAO_+FjIQG*(Y<(9P_wyeFvCaWOax;caYskswbq}-shG%a`Ckq44ztQQT
z=>Z0<$Q#fybz@b!F5>qfd4@_Sq<WM{6*N{nYud=}JRmV&uXv9AdDAV=;}tkCGWb1L
z-YNa`T!1=FbzXk+Qs{bnEZwH9dwnyV+f{t{;Rk-Nwjen)`RyYI(6{5_$*s=xPp>Nw
zFoz?4p-e^m;YPi9*(Y7?Sf{Jb^I0NxGUUWn5=6BhngAJ-aV$kQjrfKIlN3D~qXC5d
zFSu)5IggvMoj9-HA4Oc~;(0xnD}78*4@l49?GZ*Wwa28?v#hRXq(_+*f99T&T=|gr
zwh~MJ(BR`Q#h*{A%{b8>9+RmFs9#z{jeB0?Y|!p0^427do%TJ-B#+2tk@8KRRX47u
zgZCLaXGXy|Y14q*b&jl@QY*Vi>`(XW$}&F*B8DzBqJx#Tv4daDjFf*~w<?U@G^Imk
z+}#pj6?$*BU4RgRZ!w$9qG0UG7jc&GO(^1H54F;tUU!J~O%0EQVKOESV<Vxj^+1H!
zoaB|EH9Ery_iOEw(2H_)cJfaBMKi53rkm#Y{Qnv=;dw%b;gXka7Z}sBa?JrMayyL6
z#%+XU?$^k#>a+qOFDnR!LsFF^UA<2mn1n^I2E|vqih-B-@F<TiHC(-TJUl<?Dt@&P
zG$<WAvTdx<Q9fe(NdRO>0pPf*MfP(5??hRK9he9<O>kGF%uZLEWz6amfVe;GV%Y^4
z5D}`)TFUB%0G|M;Z<DSIk$pY(zah{*y}v^pPuUpH{CtSF@l@rE`A1H3k&w^U*%?(-
zz-RSHouYbNJ{z94{E>d<YR|e{SZl={L%gNBIz|9NNIj<>rjA4~sA=dattoMS{=m8t
zCF-qLz!;NB*_gAlan;8wXXJ=eK+(KU+qNtOBaR<rGHEm+_CKM*o2OIAd=bv@4uG9-
z3K#)$Tz0{;p7)A?LGx|=vDNb~%~JyMxwVF?Ln9Alm4<*pH&lfy*#>Xz;o##;yBm;;
zJm6k{_cmZ^o}Hox1k8|lZt@`sboTX~wN)cX;In`EM49#SFIhCduCHv8BXx6ejNA6!
zmP_RHNu^8so7J=7@%v5~Rhw)XO$n#QCnxm{4J@vme*(Vo1zO(A@@uG&LE5BA+XWK9
zXjN>6tW8Co%jqB?aQHlnRqVD#Um#MSg{2WqW!|RQ$aeAt@)CVE9%cHATtpGhHBr$m
zqLV*D0K~AyKoNOajCI|cKLJp|oF4|gp}Xcdxt@>BC-G1raFX*Kz5#+U8FOZ9oypTX
ztl}J)#b03FVe%zb&Jx5o?E5G`+%8yz<nEZ9ZiwwQbQ!FMoJ8=^#YYyriwN511H>Ft
z6ngnVzLA!qqTsVp`yP5Vz&Nir!&7E|Pg1A2+F&|vE}WE}K7s&DuW#Dv*x5ysN$-qo
zF-0OErtIn;S;(w-@9w>pLDS;^Hm`~4;d-l4^j_Q`JcrR_Kipju&t2{1YBVGh!k819
zQ(aVRc#Q$C4@V>DWGP4lu_(m{#s&sZsCIk04^5?pG8^nOY15U$dAHWrKZA6iXq{^A
z@4dsSO2BY(Jbr(}CaP4k#%>{0T||58F_l+U-a=;c`?fAL={d+8H}H2oJtlpHd~-$3
zMU~0Gc9Cs*+|ft-@cYf<WBQ_<)`05|U-b2}5P8hXQh}^e2%T41DGwQ|;m`m%1FAt&
zO7NdBY|Ah2KdO{BI6M;XfO8phVzoCY;5ZGEG7A@=Rv(j`EP^K%;xDak;o&*G)$t1I
z?O$Kd{QnXGWrWzhZ<_zWc5%bCUr|7st4qjU`k3@WZA&+Ok7}Udx~_~;u2J>bL$0`8
zm4*t+Kv0+vrc_XTNzY2rSKqtA%1u|;>f5sXg0i)|SLAtCD<ZF2wLyf}clotl2Q{Q8
zl+vf$&o}092<aJL)S6pcks!HoK3oz;V+UN4cf1<L<8DhvSn}!A#)H+`AIWjx5)k2?
zyYMxU8`qM9KSP5r^B*4!VxLf`PFh?_u|?GQV_*fF$CD`6O{G*cZT*KKfzr#%%ct|w
z*4AZ!f+qYzeYqZSTab2-w+qO+_%T7?HK)azUN_<LKu+ip0AaK>ZZa(=onOS=!|J#v
ze6U2oJD(pI`1%&;d7G-LF+F2CWsQ4OH}8}8Pwe3iUmOBI(~uYfUKpSn_)pU~>7jcC
ziote;K%oV)qTgl_zGyNj?3r6&$Kin3D^QI_MMGV4AS1$j`s;5#GA!P%?i>OSLMvi_
zJ2B*@505fUNGvaOd+5wVw&xkkN&;JUDkZ=%sB|1r6!b1&JH&39xaYaDc14cf_B+!T
z1;jh+b8QT`b0?0g*cUPs{5&q<bn!Ma8jTKxZpbW5O!9O@J@ywI{m?6)H}5KGUh1#A
zClB&W1F{xPBz^lX-=i&Ndw~fnO=A?{^U3`eBWw1RkIJDDUytcOI%}5%Z!?_<sB#Cy
z9rM}CzRpdP@0+9@L*BZZ;En^JPuz3DDn$1!&7}FE3+-VO@t|7J4%`JdTx&75jGxH~
z3T^=Pl(fE$b?A$ih#6@-j-7vLONA<Z*$P$BRFH;l<zG=GL9n-~7IBl4vvp^lqFs26
zgoH_cTzskuf==HPw0e+u@)q7?iW(Wgrh<TDDk`dlLzkP*_Q(XVR<K(rN3w_mH-tZF
zFEo4f4{RVk>lSY@o+kwbg{rpTwf<bxSy<Q3#oOZZ3Rz!&jW_~#jfmnxgRPJc5kdac
zB~+XA>AhJP_7^wz8)saUltJ+D@WU8f#k<^Q34})t4Gr*->YTRI)DnF*1MSy5>tod3
z4JW>Ry;f%%o1_xF(Nd%&cyINau_RfCjOuAZiU0#gp!WUg$1442%$z^IqrCzs(Qj(r
zSAY}2%XCm@)#EYYE`=)Hgo{gKu)p6D!yWVC58>OMo?*6$Pa{jynNF7`5l`69y)qu4
z`1Z=|?;pQ^|Ni=ee5=qgX}UeoXR|GRdn7?Hx{5*o&Dpib<`}m(60KYZ+oEnZG}v-?
zy2i`*GvMoA0A+b9efg2B-JAXt*`pS~&f|c%r15;j^}A|n5<+ZBI7t1ysdp=g^uGKj
z`!4yhs@Tlt?TP@bSs%rn-^nrCRXYWI;Ed1{_sQHG(>H}r2cqzMT;VA#zJ)Y=(NT5f
z87T_iBNgh=uG-Vkmu#S2{RE>+TRz4bk}GJR@{7-(HTAQg_uYvglZU@min0Bc;wfO*
z5}akpS>uX>VU(7WAjbAXX8JEG`r*8F+_>Osg;Vy0yEX}4v=7bxK82M9eqIeiSZgzi
zgqmbdqs%PS@`6%!=MM4EdBl7tC%d$cL)KK{BR}B0JPl0m*PX?l{#+IBj9+~(4%oNA
zaiiTWCm~LjeyY*3%9sm<Go&ZtOr3WR?CgtppPnE($d@P?(0UhZd2mQ^REe{JgG1)0
zLRo!0bzIn3qB(0Nk#4?i^@Xlp4`rT<6Q^2M{)Y%|>q7*8Qsw&2fjHLh+aHw@FUW>T
z$W>0#UPDdQ>a;0M&Cj>)adCPYrt`l$u6J{pD$yXw$tYOf*xHl;G=jQ%f=J($W#-5b
zUp~a6%bjfsYl(Qs_IJP6XUg|kSWVSWV@it3C0MalqK5%>X)&(%E8_@T@)51RyXR}3
z8-&ZzkUpt=NVBDS(>cC4_s?j$rfs!(?MTtP&FpvzMt*PW+FF^KGb9I(b+-vW^5Zz3
zwEIJug}VXgmo1AN9Fqq!+L2~7?=&m^@cVikN*^4UO&=%CGX;%F@ropWeAEm;V9Zb%
z`%;PFiIHn4JGzDz(;u0dBzIF)PoWPHJw3wUCqT(Gw6c)$u(pjUm@aJ!YfQU7Z`nY@
z6{^wy8o4>QV)Da=G^@C0I7xst{F3S6S8z@D#GJZ2&#JIn@R@qh^cH;?^%5Jdy>VP{
zMZxKxN~J+M*f+c6E`qXO*;llD?{icux!KagAFIE^N68l+H-`+g>CnV(ZcJp_s0=cf
zEve1<N*sBl^lEeJgg@<43(L1vV97q6eC(%Zjsn>PyW_Kt=X1#EgZEpH?q(M#IA1Am
z{%E`1l?^3R(+x>CY#{}Q5{lCVmQc{<Rj<D?+aE07Xjs&I5qZ*O+CR;KPE$rs;Ki?~
z93z7hB(hs4vy!nCitf9Y$@s97b`>{NEj1L6Ef@~zu17&DJl-i};=36qSU6c^+Fj=Z
zw`VwM#*)Fb_53#0O1g6G!CA=hOh+Rj6eh%B!_(17kHm|00z=Amd}-;Is$}=r3$;Md
zfi}7yY6hr$*fhbvf7^H>p0U7s<3%UJYd#oGzyl;8?>7F(NMe!6><C_}^fx$$rcT!%
z&H+|SLyk%@0A}(Hp-bK0sD-$5H%@pU&k4t;+Rah3E<^e>UKz`(*ga!HHO0xSWqo(#
zGHK``g}<rGi5Kp{7J$i}##6AEekvcL=V6k}G>}o%_w|wgZ*Qk6I2zTTKF?T7NI-|Z
zIDMPu)j`yD5}i)#5{0RVLYOC*wF*z9s{VC8=KZKJYR{??zrDzJHvCa)kGtB@)e?`v
zcN@xH%jhV!HWYHkUHSyL_>tw$o9;ae?gccg`d^h4dhKhU!JHTPe-R%0A}6I=wA)+U
zw9@hQxgNJ%nF3!-B?2#5kBq1&gZX+V0)339Szi~F2(SziN2_ybTe+w1E;9KX>Ekhq
zpfFTWfPJYnhUS(uF>-^p1R<2VTJeAJ{aDA?82x_YAG-21>-CZbh1keA4JEzjW9d6y
zodfo7QWB-5eKU&Q9w<g9h;8cT_kW73!rH#5dAikxu2k{3hmwy|J%APBlD7Uu&iQ*9
zke>{qxB~-GoV1ivabrcK)U>siXC*u@F&$XKV{%8>ww?XQwAU+62+@Lq#KNLSj>ZzR
zlNko0Woa;epWY0@A6FUC===TSgnrE|^@#@i1Hzw`<n49Gk4}Rgl@<03-_RK?<M`FB
zA==T<c|Hk|(-zG~FZta%U%qqS*U%?wvqt4*Tiv6^Bn~7H)_8R0!^qnwpAm{^`|c)H
zzmS29`5CrPCaYi~exjBXSwW~m+Xt89R{j*}*hF!;d`^~XXy`qbj@CH^+Y`YCE=%An
zZEJWD_2{y5NyjJ219rE1xuqo>VGbHa(-dtb`8@apOTQnQjAI21JyuSOQICU_XNWM8
z4`pezJ+BsQUHx7utY);zw;OJkpusf+ycDbGJ-*^0@0*I_P3C!z0593}NS7V-y@qAR
z7*>+N>npQe+{p+{xavH6OG!byXnVJjD*N;`L70swjL<m_i4c0k2!ScX>A;ya2GJ`n
zU*_dqzDI#<=29QCP7DM}3Z_|IO<sPz>OcNZ@^aR!uGcU7Z?&O5INTLW>?Tr+$OXNX
zuc)b&QELc!*v84#Pzws^fn;1(^Tv<m)DOK`c{N6miOy?{-7}mf?#+9KX^YOR&`Z=d
z@zfl9@LLnHlBe@Cg<<!nJ?D#_YPX50m#$k*s;^m2=I;iI*F0qAn-zlN>pd*WUum+n
zt~DF$Sn%XW%pHmAQ0oRan8H{5l(ZNo{i3Tw#StxK-O)HkphFCO+c!a9$16FLyE#2S
z_k!TKCL%a!?1f0t=PUHAj2-@Lf6*OOH}{E6MGG=>U-e8_q!5&2k97+>r!(dPjHQp^
z-=*6^Sv}5BO7D-UU%C#4m!|Uk{?pAhZ8B|0DrSAtY;3!+N@>5-)Dr=(x5@VMX3Ocj
zWRu_4!#;+q6~w^LWdM&d$M?Ayc<o>W-TWF&V|^Q1oU>eYKBl5Rh*0y)*IT<=!h(iL
z9VkeeLW;?wyye{kkrApH)2fR7MA?8q7{U;C#ZW9g;n89>Djr!6_)Q}X#JGTs;LHVX
zI&Tma<90T}ws|IJMR0d-`4v_YSOoLYMa|A!5t~sd%SX)zK})W8^OKvERrz5=-`pc_
zkLb<c6vN;c$}o8CaL&V(R=oTR48TO2SEoSZEIP=eYK4>5HR6hgQAldMTXE9trJb`2
z1_YTue!TUitAEofW4=eQ2ii+R2jW&j%RMi;h<M@;C-+*VCnt6{Ah}>j_k}pYRS!RW
zJwZf3sjXISN#Qx*_9D~M2?1Cj@dh!+Xnf&>%G2p`R@t2)l_#P0a*U8u+e|{uG0Y#j
zB*y?n!Pb_sp|Nq$lnW12G7&u{GV(*VPj!vW^m79RCGk2Gn^BXt*7Xc?Cg25h-fMOa
zj)8#nv@`;um>la)#wRGFJ!C$Gi^!K?0R;5>@dg-nXu_wLYlKO7dgmV1(>xaa6Td|W
zI77Tag_Se*EjMY<4nyp6U<-=|+pFtLzFAR4K`7UCw_8JH<;#a}wu;^>w!V74CIt}E
z$ChN`g|ae=59xs}c3;lo46tkdu&6)vLf3egc6H`0?1|f<prn<QSmn4B7M1*<k~j^D
z=ur0{e|3o?LfNEZQS4YSmX&jkf9sEQe|Le2qK&r!Qx}?g_olaVA{>24W}5yF3VTLG
z==T`+k{f?G^+_FmyQIm~3D#plriK8R!3w)>irUVp-HnaS4?XW_w7<NClni$2o0s#3
zz0}hanC#FZf{w1D!GE8HKEHsAa8fN5i@q_qBP6b_D%o7pmCkQ1VS%?PYT<+=Ezo=(
zddorAKl(OO8A;Ali}og{^`R@PU;N&}@)c`2sWTy8;sGvA*09_DeKlG@L6HC<Y(Ax)
zkeV&jjG{_pQ(fE6ih6K7)sVOlOg^+e6dHoAur_nVtk+4}K|ar|r3W5<g$=Dh%VOZ`
z0!tc1{mAhQf0aV5bk!REi^V-bDg5l<`0EG0s^gz;*J2`d(oOBq(;eqN@g<!vJ)H03
zN8md4=%)pZ?GRJM8gI%TO$eT-6+}l4s{S%KHm9&;GSB(&HNyEc<ca8N{8OTx`JwT`
z*-H5gq_l<L%L_5wM>297<oP&v)t}sC%LC%<;w(u8^NuXNY$ZmdCxi&~=EX%uT9`Vg
zH)D~dRPe!p5mO7Z-vvaF^1At0oo_FE`i3E-;RU^sL)Z6^*CI5SkR2g}G_Ul>tDTX-
z%o?+y?X};>j~UwD;s|Gy7uQhWyS^acb`d!jBqq?D;7k@)TXsEJP~Nn1CkKzt;oFyN
zyB8RU8B3GJ?k}fn7>ZZb6wxNfqX3sp*ZQ5V=?*8c2YQt4I7MQY966aPnE7Ar_s%3t
zS?j_VTLhz@VcEEpyLq)b-VZhClpO5rvYMJH_lG^5<k~q!lm?NgZOtt$lvLtaHBngX
zX6Cls+8kAs>$i2kop2lK>)-MnZv?Ct78ahWnc9zes44c)%gD$yj1$Liudnt@B~@;0
z7~<p(O5ca=uC0A|A{!XBUJ?2$X^+tL`ThBuj}f$MFg^&>DP?R`DG<Celk&8}NBZ;}
zUM>zb3KH@uiHHRD*uk2%UqwD-+_gYHGix%P-2Mx{`DaX3RaG<c-qse`aptL~qJsX1
z+zLP#58gD+&d#Evp%MFkrs*}OYwrS_exS~hj)w=g?azSqzKG&853sc@+ac5XCc$_#
zrSK@(PBo{SzLk6^#3D8(1{>Yt(B;j$-5mUf)1g#mpUb1T?3q7O?nre#y==!fMuXQc
zYMhU?71TsuJPR>Z0zPfizg&!Zdv(Z6az8V>Nu#aurNkV6<b4}X(nGD+`A;RGkrxV+
zuEHnCsxKVByBKHj^@sKw;{dNaS)L67;w{-F*ry+NciwJY@1djA3*h=DMgm6hmId6s
zJ^c5~E#8T%%jKBXWl@Oy-Y$@_yf^UPe>%$U3`Mg`C-;v~{bO?qA4Y6V&0tMqM6gV9
z7W1Tvp8GmEkLSAdZ3ep-$^c=x))?(%%pEVeJC@985Z*XYq4p~67H${3WA&!4`;Lg(
zyciWV<cxllVVZtX#a4_-qJ(`zgRPq>=xWWIdn}nT%=2n@_>owiVxnH#;%=(8OQ7(L
z3=J73-N@~#YogMR7;$gz^C)!Yk(&*rM9lHFy1><H--T=$t0&rvl@^mUb)$*J6$O_R
zy>nugst&!#ueGC|gpZOPJa?}dHDmeR*4>)<4!$+Wb9X;R;(Jee6Sf9v%`7#06h6Up
znewLG+*COi8X41h_>k#%CNJrno~OnnXJQo>`oH6#v2=q>W-?u@v=Lao)ts3yuzxAG
z)@9FkOe$icvPYUVOaYx&dpU3V8ow5o!-)B$xIzg|Pp)%vvpX_qp+_+0td)op1y{#+
zmhYBoGo6$6s<c~b6i((hagT!Za+*NO$3Xcf*3e}x2*HE<*gEIs5MgE6DIr3+n+~Ve
zJWErJqeBMelb0+8CcehWD^ib&rHto-W2t{xrd44vIE^Fdc7;LZ=-9)%aK2yO9CmFw
zIH)z)CuGc%vc04f4JDpH?~B8P2>lP=Cfu8l{dWinoOf>R2HRI>Eq7(P-G2C|vg}zC
zzUif;?jJrK@OTh$G`XXSfJ;ECVarLWImYe&eT!>f?y1Ly(_MHPRgZi##nf=}5gRJQ
zn-q2l4El=Kk^AQ5ur%Gxj}>f%4CGbwdf{yc!bzTY*_E17N~E-{7y5(Z95a?Y=>L@K
z{`z_(?c=>zx7DDptxa%J%u`xjtthN%E|m-m3rnlL7IUZ9p{xKYo(+X{{9BdmFPKJh
zC~X*!*&Cbc^abyb^23MBo`<UbT@VXPTh{jgl+e<ii=^WAZv}ZJHS1PIBUPy;p0!*%
zJC`?G905xZv1O^kjmfF0O{yIlA|J;$&@>cWwh%uLppgHxK!nf!>#Gx4`yAP0O1XAR
z<3QZa2a0$Df0~0O@}DMS1cjD1g^j6%Bxmrc_pUcU8QcLN5%-neDi|lgd|KuHz~Fi7
z&_Ki}Lt#F$k#`285Q0=y$sXb4{gfr#+&!~TX}f5rgt$3HoOXbxWz=L6ZmHBGQJE7c
zSmAxM&lK?#^3Jnxk6PL_(+hU@^xH=!HS+MHcrP=r?@J3@ySK7?sS=AL^eyz+DHH}y
zrzcryQ+-nj0oM7zf1bDIO#7aTT!gggcP;E2BBb!LPJzE_zkLssW!a3CA8$9iwBDxE
zAn>*ro{^~g3t>)*!yKDGWGeW~-t_ErY~D(Rns!<ygJy8b^HMFaM^57xyuHJ=Pjs<+
z)8%69yQ+#h1!DA?zIyh-sFn~qJC)l@&mxzg#VrbPu4Sz(Cp6Cq^cj;rwz7CCcKr?=
zgA>&Fwet~r&-OC4^)u%M>WBg>{M#cHKnlt?RF%Cln!g!*TfodEa*G!!=5d{)6ICct
z#k>%+@Jr2sJt~Pv8)AKZ|Lb%Lt5O6LU8-4teB5gPE&E=iembvflN+zyLI<tI%xh6;
zYXbCn8S+nxgMiQe94tY|=T!XFCFrAS;Q0Vr-NdDm8&r}y|GH$$rL<DBqMEia{R%Ta
zg!Bzz{omah|MS;N$;S_g7#QI(>1;{JkQP~thp}-uL#EW`d)L~Sn3yQo*y5vgwF3VV
z$#w-mMB{iM1NvK2Z)lKTkR%jFr(Ke+X(0!TzBdVT?H)9<L0eN)1Wbm0^OIh(1pg>~
zGd$tCdwZkG%gZg%BhMBh4uhmtm=_a@Z4%VU9LJ7}%Gr$sd=%B9WRS|VH#XMFNs1Ri
z88=g2I7#ayN1eq)sXX_?X7PQL{Nz}!m6}sppvNh8g-g~p?0O(^2Zgbf#b=<p%Z~r>
z0?MzL@z9f(+=6*?Y1w#HDO#kr<-tKgW3vFQGJRJ0kJPse4SU^$=Dn_~DZI@pJcD8?
zzlpM0tsXY1^%*DTtIa<c%SxVD2zFESs2;R$t!`wIq*iH!GdNub%*d;nA8!d9>2;v<
z*k^^FqVZT%{%VA`m0J|jKl<>MDm&*wLrKS0d~D-w$Td4^Vn|zE6iwYS5ApOv*UD4T
zEv;>dmDTRIIl}lud!F!S2bX!ODk+EAiwx!aQMnRf!El4(!s+}O)@!FX`V6_2Cf3gP
zwZjE>ZC>{=WZH#jbg+WwOoKL3-$DX6x_di&zLhv+leyr1Xu0h_A5ZX#ana3J|DIh_
zfw5_Xf>5Sz@T}Oq4dmtecNRcy>Ozvao7tn{ytc)H0RF$qn|~cz{~k8{uRk@F%+P>O
zi19^)hnMe>P;z9gK2gO{V!z10-ANRD=z;HZl5WhJ(brdZrBlPmm-k$@&9X$HD-q_4
z6gNZG`0t;{G}x!5g$Ee8r7<}?Z<&pZjailOTxs9S#@JTQPtq-aFi))Xm^vsPgwORE
z7#)zJEoQG_apM<BO{gEq!(f?V4dk*sz>A^U-l#3hiwmcF(rP_ONu~IrO9)TM7W#i!
z`wF1Awq@-TLPCJx7CgASJHZBbcMb0D0YY%M;Do{5U6SDLuEE`5aQ>Zl-qHKcz3)~1
zRa7y|rkKrMt9x~S{q@&SorxqNv)tUH!Jam;#CccTUo|5>NTAS6nT-RHfQi~7<mNrd
z<zC{&9QMX8mPnn;73+HU-9~Xyc6cn(;TJ%tNzy&J@Gw%8Mpco2n@!U|BH%-xs`kvV
zGtE$cZp*sFo`LZJw_uNtu2eO@n{H^*_Z|c+g;1Z^HR4)%8oU|(R>mrk-~?$66NO6j
zH*?Kz;5vAT{ioJmNSGI`pazZTVS=c-4Ld(FB+@jK*QY!16^!fXxeGcY_>_{%oN@`N
zs#TUu<cEJ!{9O8!ae6V+?kn~}D_WnV?3q>Wi`!S`^LuktxAxaT5anvCL;T)u)t=(j
z@X8Yjy4i4Wa8kpYdaNnmH-}3VRmqyYFaPbT{&lGbUa4!T9xT#e;NeLFO`JK|+-mbW
zbE!U5xN@7VWm&h;3Z#ki7;9v@Q*)9KL%p27mTTN#@^)!e?{Xps>&!lwZ34dVH-F7@
zv)G`oIf5f1B1$yn<plwOC`G-r{Leu_LDErCQEIUj)}KCby^F0&Ne}Z`^N}$rWS6?M
zq;`%;C@FD1j!XF_+xos-R|GoteRKiUDBmIwaY@cqg|W9^JS%P6mjE8Py;%mIP*)0J
z<e^KnW~c@Dl3Z!(;JnZM$9zc5Q8AKuh(~9S&GC-(SU}HcM`n5cK7lv*!QSk8U+2M7
zv0TpTsjXQs?2=e=FGK}*G6wo}u+qacHzILUoS~OZa#e~$y8L*5_emli$WO7PsPp1d
zs?XM9;20OAYUl`$n00N*U|!VlP8XzuBz`_O?mK*u$=4B9`3;%JI=>}n)Oe-;8b9rt
z-)JHHML4aHk<l|S6%E}u=)F=ln?0AStw61tyLshaeK!?VFNST*(L=-Sml=@-4+FqD
zh5s+sDgWxtaH70o^U3u5d`en+x=foJ>Rb3EvG6xUdN4&`bL%-q$s$CHA1E5Tozh@J
z^5R)3Ep@D}zhR)mYEX4`w{Pno?jZSqf?RPqAoEb9t}U{GFpSG4Nn7ztb+Dk0wM_M9
z{~7ZnbL3H5QMvPh4(~=8s=ZjMYulX(*G;_hYH;W`;o#5u_`+FbWr;oyE5#S1gKZaE
z_(|i_7<!8C5-|s9FA$zn=!h^0_qYt|4}*0jnX4wj&IlIG;=;JjeRDlh)>`|VZadlS
zQ>v=wafO^Z0+>m^Ow2F@z`b{2Z#|(ey_tc}d6jEOpCQy{-#Qr2o*BOHM}&JUxW4}-
z;(AyO8Wh-g3mK`%+w{c4C~bSkyMJJFd%liFifLj|v3M~NN&~K;$|ga|{DrMGS5{V&
znUBZzwe{n!qeep1Y2-}1g*gi)(m&=~|9Wzg!|s^QBo7|pg!uXSq2u64(#ktHI+9>A
zv6<jGn|q7eQWs3gz?m0WIl5n>#D%nEhal3DQA^mCai0Bs1&p9_b90qdOgO1@zI}^J
zJ3KhppqFDV1D+%U8R0@58s*T$(|bpxJ<&jHif|lfr}G$dmE0F%?&5Fz`4UB*J--!4
zcNvx?kD-j)C@pc05t7EV*zO$OsZK}wwzj1hNrv2>*m?s^=XUG8$MHU;WWn}=mAlSS
zsrqnso`+Q{uNA(gX5{A#=Yzw;O~z}@>x&7wdPp>_#fUB%QwRxjay8D7^Aa6tG<8^b
zIi0o|P4HRxYw*32hhNBeU0jl^h=zu8Hff)=fkR5u$XHg5bs_c;XRW`9>URYVi}L}(
z(Vumi$ImdfU_D#k@S*{l6!UM43)%aAd7-tXA-ygs_g4-)>mJAi9MOoj3;K4ie%J?0
zKD30RPjPHc!p9KD(79i;)6o~vGLQh7i34N|q&!}SwX8)r#Kdybz%C_XO-&IAy@`uT
z^igHH=uLl?JPQxV#VTh$1xNF7m<64~5VcZ2bRo5Q$Nct3DMe~wgw<~;zB*LC9PU%;
zR3(X^?Y}PZ-`=4k8?8Yt$StjPbcca~X{5f{83R-C@@fM*$!H9l(;nlQo6i?STXF~@
zo7I<`W{HVMGAvN>{^b;u)(7N<FMcXYdU*r0(k)KI!(VH>-&L%Xhbmcmg`TqqhPiyh
zv{110;WLV{Q9hb0x=99e|M3y5D*H6L;~2Vyq%ksYNqZ>KlX2CaW%?O!`t?BfH{FxT
zkh7W_(~jeC{*i9`nwlYD-*Tm5&Q}TnTmup_?P>;<w~$fon=5f!sZ2l;Gv`|X%m5Z>
z?1*-s%iDk6`AFe>=3_Rxw^RM<ms5-MZrSBiQntdGKr|q*@ejJ9;J2NHi+%lqK?BC=
zJIV0A=O%3xbG2KPs#BNAkOojkb26NInQXnkBM1%*masf@=A#@KR!Mb6vNVTwss$t_
zh8qZ8XW9pjy~)@03`%jaQkz)&UbQBqG2Ou-9~w3p8j;rWdP&5}6J)x_<6!~T&i;Zm
zs4{_y=2FDZgH3@n;Ejo{%c!^5!)gGW+#4HtXk*E}?BX8B%kGMUogrXTJ*n20L>4*E
z-W~u5@c;6w=CfcDCZkL;v#6NvH~~g^m8OP<`B{R3m1yd~t)j|<#%Dp3Z6Vg3_rx>$
zhjy#KqRW5&+fFD@CO6penMJ8z5BG4z9^Nk%%A!M%QIcQkUNJc5fTn%2Z__s$f?g`j
z?hx$_%ulN#cB#I?tJy8{%OkO`aayEh4{bj}O?l{}nS>OD^^)+aV@Pn`xlhc3jz|Fn
zziKYjpLi{aY9f?N?BN{K;S@`uRODl2wR!s3_8c#P^#az)EhFFM1A9u_Dgid1XdiqO
zt{@8*f7ZdcLBwYX87n)*Nb&-SYFpor*)UOG62(LnaVti5!};m(QWTi#SAT)Sn+3If
z?|z-zFhHM^e9SL=^u@2rN=B4y6OYSWSx$lyIVL{7K!Da`kLTF%rqT84lH60xH1|z{
z@%u2!_aP3M3j|*0yq9?Ap>X*>Tp8pCj`W(eFXyNR`tpI8*aQb8kb1fmm%|4+)J`*-
zO`n;#=!(Lfw6ri?i6tyxr2%1{9xlaYo60JNWk&3O10c#6*YaR;(b&CT=2xA%FF%k_
z=s<RG_gwq02W)a?zpQU4#KYT<XE@WO@Mh--H=FQ-jJ!@J*w6)BxNm|)`;uyF`5mUB
zYz4q|jt}d$D0(onR-KTJ(sEiNEF^};Oa~`{O_MxHy_@6n?PFCiy-f4b(@rc8VbUdM
zCJ8e_iWd{#`MNBQXCH!O0(pHPm#Ntt?(N8e%!oHBSeQ)%Hu-NJ;oto@3jJ*9pnx3C
z>3yP3hvaZ=Z7ne6ib_&aGCMXF)p<O4Y*s9^&+Mov!7Acxp2SZSs5Ft>-fdo)Az1%;
zi~ah#hQ%*{W(CZ|5hk%^DC9P~ijB@~#yvHo8U}lLyAo;+yC2den{I8N6mlAYW5xP9
za+KL?42tbx!`65FC!PXX*sHMn0?D1&3|lZXcqvyjGe4~+Fn)w{P2u|#cdN}NC8h_r
zvy%G0<uX2H#4uzkEJGEtFtFRppQ%^5A}F4N7Z6d3-`aHbv5KbNcF`U-mw-n<dU_n6
z2L|MDc|nAUcT!xJr^#xN3y0Lun%zP>-)xXOm&YQD|0S)4^bBG5-LOrD)BZpvcD%Q~
z1w+8Y)vUR7=8)*LO;jbDO@{z~;x&K|o<Gev9?M&sBotaDtLo^!>+#h9F=6c!f4*$n
zfLg=SQm`N|bzgPgJ@@r|yknDbKYa(F!!b(T@=<-@!m_;Xx0-Xi?R84K*y$DGrIdL5
zBhO!U#>CZAR2JCX;>ra#)hfnki|`cF)6A%v&tvsmZL`=)F`-9MJl;x$knmw-$g1tv
zUV41ZF7+ZhG4#WX@*H>c7{hn1vRc-$&^z38+PD<t+475{&whqx3Sjp58Vft3AR7ML
z`nt~&Pj@qf;5Kkx|M@%zssEP1Wtrwt9EA-yKx?}Hq4PNp)$Xdz-k2++eNB$2Ekm3_
zwEEW^_4Ee0+aVexs^+~qMlCN)0pB3{hId%r<_EdwA$n{o38k2<HhK^E2x+WghM&U8
zJYguPvOUgaz0oOa9XbEq=KC9JtpCi99^WsdX9P{6&UQr>=rB~)*0xe@F~;yLL}m!o
zu<Ny^CBCf)ZOw^@$m0I1`}}$%CK$5(t*7*I1Q&6wKHV^pz}MS5T~XBP@{%n?%*I|7
z)!GZ93ea0(-Dw9EI;9qmW7r5M9yh}f_D+qR>TYi}*>v#B_JX}~wbR?uG=I=?51lHW
zA-H2B71R}_$d)aep=(Ic==KXF2mx3q>Snq)yG<5R;KI$r@^-N3o7ySbI`d_8mn!29
zt-^4vyeT$P>IE^Gy1WrF8TFQ83^-Ob30y8wE!CUZNo=oAwPY7QYkoS)s@hrP74nkU
z&sn%DA+{cuge+5Dj>B56I<i4^W#FRFD)Mrseouw`8$6ohz^YCD_>nlpW##t7tHM$q
zfU15-pPRqm#rhK4dP!j!8tt$`y%1n+$d=3t(qQsa@*hi(OJb7)pk>-sSg=@vDA_0M
zh%y;k#M{GV(*jx^xy1EzDHKAc6=)Q9^Pc8R4h!M>fy{H2CkQG2lXL4Wf#$+|!R3t?
z&*hz-m~*N}RKLTSSv|5!<*9l%zgN)3!oJ7Xh=<FA1!fOr6?4Z-z9siE{PMHp;+eEN
z$+oJ5=hOEy3NryspDg)ZAEu;`#ED|=WzCTpDx=K+0kMfIl_7ZPfl#=eP27Bi>D{<0
z{GlJn_2639qqbO}G@|(MnsVkjeTQLp5~g(SV2;r|b<xvZZ2iuX=az!GL0d{*M0cVu
zc|_#VwbGCgXrY~I3xJ;BRpNK~AqJHX=7V^Z4QT&{>Gv-j3(a?5EdbHmOD?YN;<mc%
zQkOzz>v>inT2@*B#E`JaC{i;y$>5t_qDA<qml}l_SsIB3cs9hfma<t3Xo#z@&4<`y
z)>LeYX2;gaRZ&q>*JZJwKl^iv>sKa|RaKR3iG&R1VSt_GYK$=zw{@_)%<-=QE61i2
zbE=bn+&lV;x2V%c$N51U$}6|v3+KaYj9e2%XLI=MW+zv1d@rxzqYU&pTgsadN=a3r
zw=v0X@v%t9WSIO;6n8W2kD`Ezh%!<L1PRYf3!SF6l74HpnLEzaiImHuNeKv++#_LC
zLc72l=M&9pNJQUjzGTP0rWTjQK-tuEd+PUJw&Sb#MNt@q9|XQd0<U}4jqY~b(U#AK
z#;U4LqmP*)i*_O9-j}@QuG?pLZlLHW!_D2SIO0bFFaZ+JMsiTY$j+ISQj0%%0i_dq
zNkI%RcCV<Dwll+TWOpqpx<^MxIv3)MC3VPexSc35(47`nK1ps28uduSn=Uxe7Qp|f
z#Kz7Cbq5uS9G8iSf|WHM=)-!)&(FWdqoAT93g~;s6rWNf?MzBX7)?QNijc5#C76z1
zdT@_|I3T(D3@`ygFLK#xb|!?KC`%{bE-gl?%&Qg&T<11gg-sCYSG~c2^Z!#!=41ec
z%;@}s14j72>Ok}&tAO6L+VMjgzjq3tU0+Af%KiGqf8z;F<j*#5f?Wpq+u!Q%r5w-A
zy}^K%HVvSjhyL^O|4*-X#G$6~=aLKCw6(R(fT_={#=XeSP+^M0%gY%+hWrkY*k<cj
z>W?lZnSzN@c1?BA#<McJc?eKGRdiRuPf(fer_P|SyO_g&pyD2FEF_=goy*_B{k5k3
zH}4AkILiA>OH1qQ>Pi(J(3{>bLW21#Ao4FJ@%I8imM7Yd^0T<0AQ(U`%}-lLN2R~T
zP~Y9XQJYO(!pYI`XE#t>b8~ZS&dO~Unuf+MB=v+I7e%m+y{Ssza4_3m&Ki6wXPZCc
zD-&DWkZjov%`xUr9tQ8Y!ua<D<hN?Ydsq<=Xn@)4cpJ!L&Zex$eyd~rPmlAjn9*<P
z6DG73&pu_z$6w5LM!#(A6oeTnYiUWrAmU{KHO->JLLyvTT)0=SvizRI^fSA-xUd57
zGB74CVo<HydJ|vfvR{^E;hK@7w$rkmwD1utmDy}8{8d$DUH0d<1H_E>CUdUch_(3t
zc+%y;;_-WZ26`4vxX}v#569tut>03LV7{n690CGa<k!w_nqwP4xnDMew=gtLeKbBJ
zLl#g(0r&SyY7F=Fg*0SL?=8KC)VfDJFtFzrOTbeE7Ce@`^HFT+gcUgMSDZ+7)Eswp
zv?e0_KQ8+}?~5i9KiROalYs1D!Zsi~1_1GDOEcUU7#Q)<(Qm<Q_8uZ4&}3v}yJ4K}
z`w#D1S|tD;k1e7M;i}X*#mCW2lIMkGWf_ZUPH$W?sB@0%(#`WQWL)5HrzidYqc8Z^
z?fnn$Y$N=<$Ih{M^nt-aW$idE>o(L{2|Ba=lBPsX&$zIHmLgS5XZs3;E~%;7%No$D
zH1$#A%GwIsum#a~|FA9p*PHM69l1je%}oat2L^*fD_UB#FJ-t?R8)TMLw0udyec}`
zW&<xqx)c<mfh1Uz2|`$RWgR6D+MP#SeKGzLFIW8i(&6qLp{(X2`Cq)$zsBIdzvG1W
z%vJ6<a{o2ouhh2RFZ}(*S1!q{g16;T5iJwMj4H~?1#cG@7nN7y*Vonzbz78`-WP@T
z)da=~nRp~1)9GBV(R+Bz!Fv42S7KdXX)dTJ5!=$??OZX|i3_3ISupk{{j(SS`)B>h
z!T#q<f*cg1<|v;X92|P5rc~A<f`hYaYFMiaJTG>>Y?+vv7PmR|JBA!+zn&O8;9A%x
z=G;tFRx&p!)hq%wRc!S@q3=gr4K0)x9^CTp-{q#*PXA~#_+Q!|zS!4^*4-`?9;>%I
zul|FzG%-FC(YJ7OWM*NRs;6RPj5ahfn({8~a332Rvrv?j4Be|XQnAv#HkOw^NTZqz
ziG||BGn;-Zz~<>DhqQ;Aho+REHl;zXYhkcrVQTkxm;2AQ_aA<9m6!PE(*ugER3sz;
z{{H@?N5Dvv*!FgT+`K$RfIP*;!!z)3a$<LRxaw2}uDxwp7a;=INW6a-d6Wjjn1W&w
zf~zhrFj{whNM#q4wPnQjN^9HCvA0(ATL~jzR~>J`{eN^M!$wf)<obqNKzCpsl~P_b
zU?*Pi_xJa~dU++;+5W&_C}|)!{WLcRD<brfR7K(wmzd|ugZC#zN1ELm_pyy5W2s1&
zX$$PgmW#7cr5Z!Ex|Hdh4sVBlJXrqk7W~VzYG`hiugV%45<k5zfJ`ar>u1fq+uGii
zs#Ma@NVZQ-fvb{Sk-Q`VN1RLNSn=r!#$_(OyQ-UJB^^(<Dk(K{HAG2JVM7&5E-03%
zl6*?t6aD{sf9F5%ud`#VR}xT){W3Z#51eXm2?+_YV?w$lH#axq<Ksol&CR!>1UDur
zY)Px+zvi$it0;kJ-&>SUQP`SUt4#h3cK*M7`JI3IP@0gSlEgVXIjOv+R$M}wUK0D1
zbsJ1oTC_YaS;a6$@lVnD>LSr-eiBLRx%y|klTB9&MO}l4xo<1{BT;3ae@NuB6q$YN
z=zBjv^!z_q=HD$O%N?rj^73*hi5o_8l2Au>14Cwmz{dro<&<KqXIhU{gZTFVberzk
zNVIzB8=uNo^;#ep)i$Zxsf2Ahcqt^_?2)%PzH<>(*AQD?+0CxNL{%~^Pne&m3_8wI
zQrZ%qN$dACmJ1+p)?9oEmq7@<xTLdl+Ostf@US+(R^xhn>Ui{Z#fvojyZ=F9K~9~-
zDJtRYx42Cwz36sY-!3PH+oSq>$0N5?oRfG<oBWLDV)DB0slA_Wjbt#``kPljiB6hs
z7=tfV2;0R#u8$`1%gM0zB;?}_jqn@DZMTr;%4wMs$sN1#ZPo|)g)4(R!6hYB?sst1
z;ym+I>w@|JOHT;=+BV0t1smsUn6|e#b-}&En+JHR&QxQ5xu*HnHE@4@Vxx4gu5WM0
z1F>{xH!77?RK|Xaj2kDPb4}2&M*82$M8AqGc|eCEhv$FIB-}mz0hYz2uU4<cwDJQL
zEqTTfz_g_@9CuMtqT>f2(&|^CqHT8=uA6XZ<jX0FYJ}7cRIj;;WtwgZrkGE5b%lKY
zejkEW$mMZSGdB*zYuQ@1$wure+THuMUc&n`$3zSa95~FRs+c@>jHhX6j6*4_@A!lc
zHm?PqxJDL#6z%#RQGU7qu6cG=@ukNGDaWLJTS*6^4kJ#mzFL?hFX$#$R77c6`JoVU
z0*j6_A!m}y=@se9_6$vr@TO}E1KB|r?(+ejHYKM|tg-xOA3P{>38<(4aM=Fo0CZw~
zrbR<j9C>tpaH$q6TeB@75@2KFi-H!G)NmLZUd`cC^ZKt(*KQci&dG_?)O4FXs-v&3
zu+PibUl4@S@EB6Ba;m6e!ev613DgrTs0aJ3AVk+eps{S%#6Fi9T5o`gb`jxn47LwQ
zA2VHNa_W3!n~}~f-j+$w(eYej0m!qKRSO?}VQ_G^zPaq_>FF@`+}2zpsejQ=G&4Ot
z;i>mti}n7=J5v~m_Vrs+3d^QTY5|WY%Yi+O$!jj{osnaKJc5T$y(D&!)BMNv_h}uV
zfG__FME{#3-wFDemTr2zmc}=UY<ydk%jU#hz7}u9Qt=Yq!I-4Cx)y{PX1}Fdznb+h
z8Wc7*wz9Iau~QA6AM8u0Ly5Nldd1!7+iX?E$uY2&$Atr{Wg`aH>efon9n_VeaFRw+
z;R&(dn_`(XTO<*?Aktm^bc|xX;L=O^loed(RHpT$PH_gAenG5Po%^|{h_0FNYUS8*
z_vq%)*wj*VX5{qKhr%BL6|NnU0L&*|&X3H<X7}yoU!4$;BCW0r^LbvOqlEGSd?+x0
zVJ)^Iy#c}ebuIrCtR6}WayWw1aSt!HI8i57%A-{d$dn10a%DOyB_9L!qUddva0~vv
z6?{-<t4)z|b8^x$VWPlC@=!glw&XswoxJx@xn_a;H8nO;x9{f4g!PY?*E`F*uNL-Z
zdWVM-scDJ<p0<ER+7jIrVFQ&QU*xtx1@CutYaPCarpo9o=~Gexq7R`__SqkeHZ8RN
zhj3(=5Nf?U0w}dJxPSfj?Hiz*tVvBn!veJmP&GfwDr_7b(Ua6xpM+p>&9}IRDQJ-X
zWz_|xVBOr@Mx%)WhEx}-OlW|3^Yai#(l_4@F%gl^gJmTpoh#MkeQ!~Id#YKv&`tRt
z3jO@i339C|ii1Ox33+2X2WbbcgE4|i$Di_UHxQIZ3@P9I6%PdL>_ZoHHbro7!*^!H
zM+q{nA@~N5@Xx|7k!A6j4#5txhfI4te2k&~x8Wq21%Ap}IubX1FuT{8dH`k`p`bzb
zZMZK&=vIy#=*DxngwH?wPD?G$C)vm2^JUNBym<ZP1%b@bvlwNCG%0|z9T!ksf51~Q
z@}{cNHEXTJnEPg%LpdcW&neeN$GgK=W29nvW9NuwV2gq<Yob{-q?g^<qVdY%lP+Tt
zl&1(TTm9B~ePPw2+u3U@Jmy2x&;t(TY5U6))qSxGY>}juyR;@f(rnI$HW3jH8{_F|
zcGkmB&6FOaW@jf;utJhyaFh?7MDsOXu(_GMR`MO%z7O5fBpeKS0ag3$kMd&vYn>+z
z&se>>F_eMcIWBVv)*qpPo!+(pXls3c<m>beA<S$vC#;|@?^E658JYE?dEvaO<()FF
zS-|?ifjGw^BS4Ng5Vf(PciJ#x2FBb3!of?K&9mY|<OFo+J_>a!%(^j8V5muFKYQ?0
zh$8SK7LrH67swD2cxp)o=6Ra17U9~aQIX3u_FY_GQ?flJYP}D`$htiCwU)tey_t5k
z@bTn+_l}>{bXXmSJBNddi)*w{Y4>9JPC!vitZdH4Z7@lXKW5DXlC`Q&*gwFKX9SX)
z*p~7IFKVv`JKNi%IQ<ADF>xw@ENjU!F&P;8LU%#-B~(<VoObL`TQ8>}%5-jQCeJ;1
z`VRcFHTwq(ZHfvMmLcsJ;s8dj%{NdC@Q3iy(#*$Ov<e{=up0+QR3p3A#cjDA3+!)B
z&7z>?p7c|kHiytLapi25eUv{teo~A)%6HcD7VNs=8gfCw76|_&oi6-Mp|!7rA-F&E
zjEdxx^5JS1ch5OzP7DVwJhk})6tPENYkK>WxCD%=hGuP_gU#a_3xPn$A{23N-;$h{
zuZq0F7FE9-pV02zOzOSv>M_k@n-Ndr4UfYmg7qnc5VA|i65jB%#u5_m?pA#L$kM{j
z!DVOsd%l$hf$okX1l83wfqH>)7MSg(aAa|nMm^E3t*sZ3W4Wxfw5=x_o?`<j!FrOc
z;H3EHVId(X@PP*^E}QJUylH>}s9AJ3Pew+Dn7R00qCmfCWIKC%%#klnBf-*Bu1-#j
zRQjPIA$dQ$J*a`UYQ@aT>+9<j>lr`~H;cgKkGLzV7TU=*Q%mbkyMO{({1T>}l>7F1
zj2^FsJ4mTji!vtebAicz36DPxQ)NDHQc37U0l!>{NLsq!B^#YuRwg_rquAf$QO*Tu
zkBCf)<_cGr{D9(R+bSMhPf%#{Dq)rMcwJ^Vw6veSQNc*K*6aBb#A7L<=j0RJuC}>N
zI7URldLu-v*ZrX0c~y?eP@3w7;0e#j#xxh72ii??99en=?j5cz=CfCkF~s=*@00al
z-ZY-J(HSW?d$n!d{PH~MO%4QyBPyF>@1vIFC)rWfL}HMR<U%4Zt%&lRq-wKOK0`xL
z%g0w)m4}*lXeMdg<D42tat&TYFCgJ8{qUjTWIj}?N;)Q_`fIR{khUkZIXI%E=@uv<
zO4cR@g!U6S534J|B1#&CYP!QH8d8GULO7(`sOD&~;c@TC$?lJir=>_}@bxuDtrtL3
ze@R31Rf!f+7|>~IEl_%@F?jw1=805IEnWW8!mHO8c_C;o6@<Q1DT;^{tJ&sn7<ar9
zjEQ-7F<<N&+9&-9DV6y9bF;npFEs~25f?|zYi*yp%Q84rq^WDha&{JB*CQw-(h;7a
zg+=k-T_^-FF$Tnt+>N(FTCEkG*i8D7Jx=sya3)V7knH8kAFPgBlpc?PWHt8SAB|it
zR=!PU(`N2=FJ6#2JvdJwL?+KgpqZ4VK;k6~-e4hK)RLHjEH%n=*T~9hj>Q{G2A&X(
zR~`sPD>+ZT$<4$9Z4Vx4%YI)bZ4X}j>>(YOJLb#Js}Jh<4laJYVFt=s0_|S-yFisH
zBEy@G&V7rXyTPQiugvQ3VD}Tn@)v$EIqpVv7PEM8@=Lj7;T1Zc__~MNh<9y`>BWRz
zDsVhpnSn~}UKg>A*>sYG4pT-#BCOvF5PjP}B4oT9TQARR7x0!3HK`4}&wd$qhOeoj
zI+=YeKx3(e<1!StfmYc5viF$iG(7>3W2nQu{v(XmPy9vBe*%uRsMvYUH*$7weH}bq
zTwJW;&H2`jA7xeL03RQJN|@iV`vk&gdT~rxzExk}5tb>P#`!I4?sA{w&4KG=WO;d1
z!^{_fX`uQ#Uuk3ta*p!(!<v49))f4J1zr`Uk`BqRva(WnrUaiNqVR`>n6ddCG3YCf
zR=lM$f|&|S;wt7y@^kv*`maW9_QDU4NQjo{fIiI5ChqU=M@2ew4K5(+&Q4WjT`?)P
zyC4Q}5T3yuPaM2y?YKn4uZqN#bI?CkZ2kNufdm><tCC<SbZy79yQC_{xyN*G$X#oa
z{Eo0qA;4^hO|H<~Js(Nl{(WrlcXVnB=jwtGQ3>1?-PxS1-tJ+)PlKL9bxKMa)Wj0G
zsQIVHc2(oBMDen>+IH}w;SK6XXX@2*2RWhH+V1yw&pP^8K8P({;FNlLw^2^`wDU$;
zt%(0<h3WNiKWi(__hC+EuIpa-DAOLcBc01U_pMJ9g9V_MD%jkb*K&gNEv)KWE|RHr
z*9xR)W2rGOz5GcibJX;zP-vXA%%NemSH>S3tlqCNEx*AAX{=F7OMXPhWSE+o9#7s_
zSFHGo@w2%ZgRvHrDHc%i_QwO{NUci>@7eBGKM}ZBC)ouB`YJ8PMc8t3YPUNbz9E)@
zM~+<z!H9&iiPn`nArlO#Jbuh9j=*^62n)2-deZ3nq~=8=*i$lF+jQT1w<2{FIp2sv
zjFRC`GO66s?4I14uT4xbfSw&B2N##<^;Sp*jrk9ON9)nU9EpIPF_4Y?1gEBwqy^>+
zm>WeWrvh{~zSC={6yLKKk{G*r;ayUf#1>a$MpVjFk(GJ^_=K*mSegxXn7}NjsJx=F
zi%M?xwB)orQ=_Vikj}GyZUFbjGOEc&_T@n%n@_y>sqt<`X7fl7h?RrprwjAg!%#I^
zlvOljC19I-$GQ@}ch&|{blW>+hbw_hE?8s|RGYmB^d3enEglXgMcfZh;lqeCvl#91
zE5R@1+T})cSR&!7BPgJj>6VQ|zxKu)UUSE%r_k=d6zfKYPpc84ttCMlMv!Y0e&`vB
z<^t%h7yU95Lt^DDz!6HSg`yH&T36%`$08?Rc#UXqjtZsyNbuu0(B8F0&QiBYGAHFx
z*K8M}_rwJ$Sj$Z*a_Hx-(-GltBGMyTMhM5HyX*1&!!Sqj{62gTtQFVM!B0ro&2E1A
za&MwhP**qOdPR~B9tL_C3yOC1$BrZ-A|e2((-R}(KH3;mW;!s)8#rtYVsqQCktU>u
zB$mck8(Ugiiyj@_t~6-(0Bpu<uS2tSd$XRkjU2tvTyT&7;~%!V>P7K&#9vX#8S*7r
z)V%Ph9`DY;z<||m^_Lr0l4A~&d^w7+?b!s27(m_RXNThNw|gkMdXK_bi^Wv)r#FAS
ziiv7xKL*-cozi%Cc<3U1;?%6S!3TuI`oF6Vw;JA11yL4^a5|i#jM=6#tx$UB1h;HF
z7t7tZu-qw!9A{PCzfRuXIg&!d@}{Mjc0`94einy;(6GU;5h;qe!0#D-ri55*?GXe4
zqnzu-JKyO!wD<ao4_O{ij-^K4KMF`L)@cvbIosv+#v~Qp$rAXW^WPIU>Zz!Tr}Ary
zB#`mONSRhD+2j<AIre>1d8N@gZPy}MIBlKOdfK3AKY!^uc5&lce7BXxmf0?IZ)imH
zP2j0s^LD}KArZ(<5q48=N5<w7)JeO#*K#Sg5!on#@2A8~N-6=Il6_XzzLMU{ZPhz)
zl3a;`u3@i4fEusKGzf_<3(d1`+`61TR~KmGT_Yd1isCn+pu4ucz4&1`9(m*?$L}o`
zZ2nj(OVD)G1izDqYnp6*7}8^_+$FWbu%Q3;`|0_44nrb8Q5RqRB5$f{$t*De-ma>k
z@9nPKBs-wEY`7LIZ6(L|Q2ALfp?E7@X1lgaZ=ydz%LI#8!g3BWBJl$QBx-mHpBZFz
zu;O~myX!bl66GVZP=_CTcfV4g@UU~UZIif};j>3havG;tQCAmf(|BnjDLtu!q~1`w
zQQc$QN);FMrb21&gq>ENftx#4{mW3*ECXd3nI3}{m0?vwY~Twc!;dFoX~Kyq_4UEj
z%fsC<6S@sH#0eqisdP4-B2BxEPvQXE&`GZu_H&tsAcK|GU6*IgZCux0%%ILiP59T&
zOe}iHSOEMauggo>wA|37{!sXxAs%`_{LY>qzOu~sK!$pdDNV4~J>rm%!AH6^C?ctk
z%e?PmPk^2@l6OYeW$Q#$a;`RX9O<4ag%zE$OXdz>0CIuCXF>pA2ib)E^FbZiiZ87)
z9BNGBY|%iN`8p4Wl5?PJ$sRVU6p5{uXj>9Fj}Y-6d79a)>zkV*&xC|q2}>^lVWy>Q
zT4V+)-U`0<R~2r@Q3BJ+d}exj0s*|3m=6yS_5jwulI8?~Ok4a5FffS4!lg6#$E4dk
zIIvL4$H74s!*{JL7I4tg)Np?k<qpNap3R{g&QhiPu3YrrAuiAm1=JPdfigqqUeV^p
z)|S}2ckdibXmkUC@!f?NfS|B~y}f;XXSBCh5;~)O4ykGRTNN+XlPZ|5kJcc`#aoh1
z^24N_qa|?WVj|Z25OFCsG2U3$`|RoM!O(0x>V8gHf^SS4t83=+{0%E^Rkq?hr`u{T
z*U0F5$39CsC>meDmor8pcA=HMrbu+;>KaF~Vnt@K_mDBc#$UM(RQza|zg!>-w?g!h
zT=NtaYpp8AFuN(C79kL^DNE;t^xj+Uul6o8)x#swY<n?a(x0ME;EOA9{Zmw}_v7{|
zU!5GvZO-K0j{}OkYXvmv=4!f38i$X`ru;y`E3Lt4_gGPTV`C#LQ2`GL39E8XhoNym
zAqWSA+&@g8g@6kgoum>Dc_9QAyUdNig-}oNIHx8gl!qp{y`7q3tFd{oN%1~?!&MfI
zEWj2!o|_a&frSN1ZZqt9|NIn{!e+@sP^4f0i&&0fZ;V7fLn-uHLe=6rYC)}2DlI-S
zkwkY69cQmxtbIID%}c=c;jsLnr$1o>(|V%1DEC7Mjl1WpqVAW|%OX((3%KKj`lyzc
z7FH^m<`xfE&xQHi<DxY(o4b=bgtast@)yEDYPP{ZOlp#wX5m<mHy2V`RWd2q(rGTx
za!HDiY2S!We2K#u8u$7jTkA4=B8sqi3b^{hva={Ulh;1=9X=S}ey-j7G-<N>$u7Ao
zW(9M_qmt8ffkRPa{3<iNNfkBHTATWXbjvaR*i6ZX!k@c+$K(gr!fAwF;TqX8gE)^Q
zSH4SJW^gC;pKx>~Xgqwb*rJHRv(r<Bu=pgk;P&<O&9?ILFBK9J+Y$~fqrbfVc?Nm;
z%Hf(*($OUV7>$Us4iXCX9H`~B@4~6=LO}s#NPbR^h?wb2bx~6L3t)Vq37@6?aY04J
z2Y{eL#ly3(y13>EWnl1wTx}>SG!(tvd{1;^)q>lbTa<moXrq$48$xwcp96HZ1O^3#
z1&=)%E+!Z{Sma$FX5^uxK?n{COh+;{*4OE7%Q4_{jC;kE?o;)c+D3M_DSRkyaYJjb
zxeXuH6Xs`s&o%*A$BFdWp)J=@l5fXpcIuxh_&d^2x7c{;TyPf%f1GQ-9$`x#1yxls
zy#d9}_{>aOI}zSz`qL#EhW>&d(u@a*^9X(K$Fihd=lb|7mH5!xGXkjGw<R6UkBLNN
zjHaAKzi!MU=TaSCyknEwHzr*9vXtPX@h%aaQDXrcPDp(+=d;|#FLU`#<W3!(Hn>{p
zqk$A2%`jq$3VAoMH=t>+5>``}{UgG{txG)Dgm{rcSOo9s5Li<7EB1|p!Z7`utxRFr
z3}m{~9NaBT)TN}dmM78qlSAKm(a}-#Pq!WqA`ShYc4T=G$y&2(L{zt5$)}sQwGmX^
zRaHqo_lsc83xGj0-x*!*FKdd3nvpSFgGNG9^YA{^F=UQCE1a^%_<@v!&C8iL@ai)n
zzU&$iwz_1ft~wgt0T}KxKs@@A7#4MGe#Uut=zL7%+kJZ(mi_T#oCSW@T#E*Um-3Z+
zYMc_~3uz#|hfSL2?W(V@R@J7aoAAw>6oF4GqHdiX>r-gq2*gybs_0#h+6NbEsOK()
zJzREBh*=*koD}1nQqr=w4Q)5O>KEu5SDS_@_@+fW*>POru!fd&b#g@BcgK7|cRU}L
zNulc>K;3kq>Z6;dciZy@xa^`xtNZho_1ZbQa+;ITfq`7NF|Hy44p)fNAvU;eSn+#x
z#164smVJ=SV!eiW>G`%=pl1$%F@(S7eEo{~8<zJq_-l>%gmfsedhj<0Jq~UdR{RAR
z6g372>)>F0<A3F(1qA?2@x+9izZ8p-&cw$nhekxOHCFM3d91BFhe6^K62?;4n%ZZU
z7PZX>KLb8h-_14*oOQW3B}E@z<q09EGz*f|?u>CuaEWhAum%|H7-|@dfghpc*wZPB
z&KkMxRt0Nmd5DOJ(DCtQ_GilTdwa!CJzFxrU4A$=0){$dvRluS9yw$7Hu1KdoG=Es
zxB+pVCO!##-gMbRN5N~<KLWg8pt+;I0_aL7ONmGdzqiLW0u<jLkoN~bQi8?n1oJQ8
zCjd$ca*)UaY^8e(tEs7}i~aKU@%x+e&F2r@G`ei`zVydx2^gW`qPfQVt3v#Iw^GlP
z?Al@Xh}=P)QY(EOnI*W;qH{f$*%Y-|cKvY7waw$@rQ@RV3fVH0FBYLZDCymU_9<)&
zLL%@?M+AZC9GHEqk$IB^O^eP>Gvz|~Z#d?aQP?8DjHktI=_K9-_-Q7l$F~@)W@lDZ
zf^U3&V04yi5)H2v&<eEP(WcMdxi&{-$yUd@s<>+i-+2&8IOn3ufKVQ4?vQCM<U`7o
z6|=*~Dl`*=bBz1f);tROY;1;E^#vK6SK`s$Wa%L+Df@u(OpG^hoYgcnzvOXo?|}^i
zgLb<-V`6SGvZlUAqy-260!Zp?7`F;a7AoqNH7~Qb5m4T=4E4>Fqc1Vchq&OgKJc6G
zvt9+<A5P{BT6ud~tZ^MohN#qXg=!iNNJuHhK@n%GwAadtGdwsacM0dw3ef1tAnsv<
zLST6|+Dco4;q;3=k>G}R1_}b{oX~;u6LNw;>Z<2UJ;?r;QCY!N-KG7J)3vvyr%&`%
zQVKH-&H4A{M6W0N8e#UwqayR`$jK|M#FfXM0&7D4-$IwKjZz=LH5EHqwTY>z6Z1s{
zFi=3DFmjsJ!2gjynF`rU7Z@EQBI4<ggGLdKb<L=fU&yMfURdcSL3Mm|Bn$L4#D~#S
zna|TjnH<bk3VGFvmCWiD4*CDNvBwS(d9^ncsN?1WIXa4WpS++i;%h?T-x*~)pP&J<
z*(Y0SMA+ZV>sP8kmL;mbfs(8&;>{iWk4U%c5wyVm0gPv2GkA`cAeCsBG%xVWSddwX
z74ch_oW<!W<(P=zw9YZ&7NPaYEl1gu$UFs8L&a9j!Wg6DgR;D|#f$X4R7W5a`#cZ}
zMO&Sm@|p||9lj0-aEkhvemHDoHBF29GL2~lQFxzz_jcMjzGS_-0!f5?{O<3c)vMlg
zIF%bu_fZ;eC`YV>e^Fst#ch6ehx}eeZ6<~HLX!xY$wXJz#)27S&RrU!pYz@<&3XaR
z{EB;~w1^qA<uh(fadBKqt%dWsQ2ob`N*3;=N-8R)OSQ8jz0)&c`@3fLeAe%5<<duU
zWOueLZrWXHfP4x_pz9h$b^8FPI)RyFTc)3mtzhDu;A5B)mrCES?r6=HP_E6<APqEp
z^<`t^c3CumgmXw`?I2f569a4}lbx8Hw6SMrNSOYVTDR>SZC|#_tv%NC;ZqVtZ+L7b
zWq>waaPeX}ZC`%N#)GnMw2X6Y(|O*^wL5b;)ejx1wkIomoM9%JN$$f2OKL6p`HAVE
z-<NjO8`jO;J%z6!<<rW#*OR|q9xX+Wo56FX&FGg<OX<I?tgNp*-gEe@pNlq9$ZHne
zHK&ohF)x)}r0E|VB#oTzgeN#vWr~dKgd%_Bvnum0W58lDTO&xRlgYI{OeCSB>ON%S
zf4Pi=fPiMiMI<6UL}=;Sx>Csa{dX_?3-mAs)E(p)3q@F|(~ifL=&NHORyXW#C-o@P
z&yDqFc;~O>Ho)-#r~Pv;EUY9O8vTB*#-EV+l2>o{att6PSWwrb80@90IJwi<iISYw
z>Wo5CL?c<ylwC8F89lz}^z#T`;A-5(ozpAE#V{n1Drss7K1k;)kQE{328Mr<sSNKj
zdrp_W^>K&!G`>nzZQeOp+)MLTgdk2&9eqgWg4O$OzGM4>i8`PjW9?-rRUD+oJXB9X
zfeboC=yN{G9;JKB<=G^BLd~v(1oqyMUh36Y{Yse{q&d!UOPb)tOOF9z56BW>VTm+h
zVIfJR<9?fBQ~eikh5?<P&Zs8ujHAP-%q%S}Go6^_fPD)f4Lf;#KCSEtFxgmLj~4Sn
zYbfPHtR@>`i}U%{lGt&S)*TX$G9~!SFfT7Abe^U@zU)~737FH9oED@Ep`^MA5y-u~
z7>!qeSKm2Mf8g^z-xIzViSh-1ILSD>b?)+J7<COJtgHy!3InvkfTm>$-zSlvnfsZn
z*oa`>f>)nkGtXBjDa4bsKXLYFQaK{8bp0v3VibML#~0vpyK9=vX4q+W>gt(wQC;oW
z3Adz`Lx_PPdV2bhGXh^-qFJkXdyNDwC@81@^a#DCW@h#Z0h?K5Xw?&zMh%DFtpgs{
z+!}Jk2gKpzaR&!h=0Li$XDfn9V1JQwfA4j>nUo;3Xe@)J;}lcZWR)oj8qzQ@AOeI<
z$%#G|eL*1+E7)#Uj9Qp&ac2R@B|llA5rhK6g1zX-s|+usgOCV`d;sCqP)p$!#dN2!
zZMDL?zmyZXGX*6ji{3zYN~J%^>I1`Z{(A>%Lggh5j3<8h-DG~d@OIP&nwRgg7<YSf
zvsSBFr}Rt7I?p6gmvn=yEcb{Mzo7ZuQ}ph$R#1#-Fg>@@yFHXzE3LG(64KfxPyP74
zOqu+a)o`n2psqJ4gC~&s;HtVnORf&&$;=LYYENx?_+rNQ@>8}4W?-_p&|VpQgVMu^
zk&!5$#~afCKr;J$5V5g9oZ_pat1CGSj3?M3Cgz)%d79mhd{xSFwQ0d#{iK0Gkm1!8
zeuwJrNUXJkL!Krrf1A;;Os(*b11@E9a<knxFJNlY<gDWPEhgGXmKb6Y!u-Abzt{BU
z5aNJSbNYFbLwdr`5}>Uob3VN4Na##pZjs?}S6@O14_ELmT_-Gi@-ogRwWuzTEIAw6
z0$K^%lr&wX9QPUY`q-D-Ar?g#-<9f6SjvAkA?2(PJh=z%g5e1??kW}H2#E5cmJ0OY
zQTrV(4aKnt*DWPL-V}BEy_COGI7VN<0<)wlTX?;V$@KJE-!v8UI+4oc64U`pLq~y(
zhDL`eGA3$QT2>ZA{0)P~hsdYWEF|#Vp#d((BNdqQ6ngq_;SzEfUl$h_m+KY+(KzT-
z*r@G}+4yJH-KZ+mrvcddTDD0TVvm>Wzi9#dje+EMp7x=(mMvN9l9iQJxlF%5nA87L
zqr=n4vik>+g0sPO4kQB^RZ{%bvm6d{C`F)>`GHjd`W{08xq^n+u*Y8qT>%>2-(Nh2
zTwE!7S@;!cv=GiN-;YekndJ1P1M=p+JYR@Ax#JxlWGQ)Q_~_xN5dKwlY`H>Z4Y;^A
zg6@SgAz2=}s|S(^xtNlI4}IgU1=awC7+!5}Jlc08g)kp9QN7Zm&tfp`8MZZgK%t;X
zL))xoank?eNyi4t8}d%6A<wAX;8p<~Yl}jr2t;|A7u$%33cTRid0dE193EDw`VQfw
zP>9<5oED=q#GYHfV{4-yy<>Jb{3Suidot<V;rvft0g7yIzXsv3ovDoP_1>H-D66ZJ
z9+p@MKiD3N0LqMLfC&~CQ`#>FCSx&U!&O$!i;4pC-^gn9d*vUBhVL99OgL<N>`VuP
zpyNE>M=s0BkK<eBH8HR+)C|uG-IZX@E~^sUv?La5v&*YekPg0FX4RTUZDLvRU(FiD
zo(x^Lf^GF&>NZ7{I|x!h#k#3r7UdwH4v~}>4hq|m`|*WnefDYz#?^J*qT#eo)U>@6
zT0EW>^F@4fT$~E;GQ{FL@f+OS6guAH*vsj<Bwh$qiSH(n*vI}-q_IHXdCU?(=;r@;
zz4biZLDp`?B~ms%E=Dz5Iz1*iQAnVLE0esvLD^VN=Yoq4Zy{jPkk;ATaqZq0(Btrt
zk)SKv^m=?U-i^j{R=m~o%->;e=rQAN-8D)lN^u!$N#srz|04|lK=AC+bo|=wkQ{n1
zLOnKa|45A1gEJc1Pm&}$B}L4~XZ{#=acRjM5YiLU1`-ZYpbg3C)DXI|hehhekyPsq
zY)@EdC~1`J{ILKk8k+Mbqi@-5^_1ywfBK9+k$irBuprl~H+tSmk;9|Ve+|`sf!^cs
zGoQ$lfWHJO07J!lyShYIS9O$u;;keg1+8|1$7g{(7CCN!5Z)VBH`fdkbbSuf$+cT`
zBy{~TEJ(yh^eLxDFS|3?SCr#msc^qDurniOL*HmyFoI|K-NSot2|hv(&~Vx4&G=(x
z;ad)+3l!>*{O`ANW2c?Q$7@8JOLDHf4`AZ5qR|gilMNE;JRXkc*eNFm%^P!X<tx88
z8yI<<B#eBt3t}nP<t&Wf1%<-FV?<GudM?tt^EF1LE!OaO?a$PUG!=E<UrgvF1PZQq
zBW8gJuw`hqf!UMK>7Mp9z)A+E<3&>oB3xmgeeMm2YOQgzCr!tcpB~di2vdE0wfbhF
z(geyef+__Iq>>Vq<9M0UIZ@tilU8B|k;~wW=4TF*Ffbgp?gC5%H1gNk&X!mcGXt3u
znHi$v12g1dJ|(&J;N<m(!9B-*ofQ1-b9kF^+h)Zf3ropOVCaCNh{(r2kd;*l)l!N|
ze#aq6LC>p*BqmEsTo1ETW<b{w-CG2YM?SBDf<&}>bV$m>*Uh+(8m=i9jm->I=$_yU
zqOa|EFz;NzILnF^iK*+*o1<j}vqv?pct|XtWm0i!$hB+vP~uUwAxgW^87<Dktdy})
zF$%oBZ~Dtci7=msBpY15ToEl{Y=EGX%>v^RN{lHw<Yim?#p3;Tt}eXVd<{NVSQ;;G
zFe`j2cZ7Q+FI2c^p(0KScB9V^+y0U1;JOqi0-<O17btv;Np&ReW2)7JSv*CYf2->G
z-3oryytU)?x@N>-GUQxx-xgQ2ogb|<0_|#SxY!r8mep8clkYj=GBA|iet>m^einwd
zdJL_>n?new-x}rtG*KLOs{&-Uxw+(HQT28`+0?3#SRed{nlC;v|4driLLIe%wXl);
zRc`UOoB1!tP5JHv);%;dbTC-thcEU_xn4fd#)3^##&Xja(~}T5uR&F*tQ<|Th3RR5
zbW?vowAK}P6CdZXWa!A>_~ZE=&p8W`_L=2!;LD+>47b;a({)$<oVzn532vgq9ArpD
zJw84GO){D}r{A3x)Gg@o4@~;!r)5Ed$}#pA3;d5`ns63N3IbX=+jMt26uyv@@*RkY
z?cPRmYDG*-$_dmHeZUbasIq4C6Q5NfAAO~|*+f;n<l*h;bnT?$2DC(uzKqd!8#!X*
zx4oI|@k*WcK8djOV#C3M1MORjn`2g^rtatc4V4ceNL<G6x1xdcByEzbT)Q#h_VQ5t
z+qY-2LF`z!c2r@kHgF@-2NB|kd+D*8yf=8**itiPWQyzEJ^;ilecZyQM31`t?78WF
zPBF>p*}%Z=g01db3JMsDsj5O`n#vDh&%^3BqEm|-^)_pAhXtPO19USm1QD-PSvPHL
zZ|zk4C3GOWdy={YICqb;sj^*pJT}aQPbrEafq6z5+R_l-)6k1HlhRiq*KN9Yk6|V$
zHv>WNyMBS0!5&}mJxA9GA8FUTmiV26rq}0>^;#sBUam+X4$}jwGlF40H)^kNt#cq!
zT*kTi<5$N{e6Q>^G!0vN33)eR6)x+V3E%R=ou4}`hi&*sbNM#gk<)2IqL3|Lu(t<(
z;^pkgGNn+ujosJgYYNo7$RwTH5TVU$eK_4*^YxEt1s5oO&LrvIxJ~5FTsnK<+yXHl
z!_QoZ%Ak3K=_59jiU|0l<h_UZ45$DwlScwzOxxVYLtkQtEA#*$Ak^o7cGcfz)PrdF
zB`Y&CGty0d3D-85)$Iho#$*6f;)61XP;3fK4Das__rLL*EM4ReFnJ!Q%to=l$DO~v
zP!U}P#?y-ht))vL5%7uw7!ikNK0OAhHgAbE#p8hwSqAcB{aPtGUt3PJIH=$>vmPP0
z5<O;Mv$`pqPyWEm7EXt!QmL@#J6Ww86%E&?vU_WFN)iZ_=Z!qXnl{60lk}nSf=Dtf
zOupzu$eE@u3>N0-ynD*AlYp5P!;0)(OyRfbWjh^AqP`z_PS%N-<8kFm7KUkwg*7x4
znl16@Xrh^ejZv}dWr@=W4^<Z?x92?!loTvFdjr>>X<tu3A3~+CJ)PMUVIF?2!mTJY
zDnj6>L37YBdN}Do^l(1q0D}EoJ42>nJx{q&!i5^$?(uO}g67F}nbb#e?`DTEWICW6
zggCjDTT-Gu-?$&#BoT65(zBAZtS5^WMWxq6MvdLaSliZ=!A<X~rJUm}bLmb-mOHl7
zoSEPL#1EeR^&jWrieSI5Q#+DPn_4fpOQPx9JkuEFaMGm-`ON9oFh7dlT0@ZadMe>O
zBV&spd)!*umaaZ+R`IBvdxYc36RCHgFON@v0joT$*2#9jKPfGoRg>9UJsH9_@?)}1
zz^uz3M7b^&I~jGwJ({U!@Q$CZsXRZjo*j7PXOjjVmu<RYce8b8!n>{Sc};T7pJs|y
z!fdpozQ6}Pjbp1m=u)&t^<r>7+}z(KSUQa6^hmlz#O|kf(8r2Y`<A<<IE>d2b7{21
zC&dWe@%u`@5^NNB*jJ^n{s7jd&zxfKN?(!!`FN@9rt<NhTJ{kylL*jFt8Rv2Kl@|1
zkwVd?QQEGK+}+$HRNn}?TMO|Z7sx<6IG*Qhult&<cdvB01|~7+<%Nfbqblit(-#!f
z5AiboBTo5y3}H>C&t}{kohl(AQ9JdhY3u6Y(Z@h+`H;i-=U~~-1N4@Gp?-O&u?F^h
z4N6Z>uMaI07tjJlK9(FD(fNc)96ycJPc8X1RJ-MQA6VgYP4GfW6&Zs(c8G%V=Omr6
z$cVc7syZ^)r}rDn6<in_?-i~P%m+W3{Z~jUV@+KVQ+61AwN&^nPT#==lHFMxgYNwZ
zo!hBbEHhEyq@@wxL6D@V#AcY=RX&`h+d2<d`TgrVM@f8vw_ic?fsHS2t{Wz%iea68
z2(fnc<j2qF)nQZ>5VO{x)Y=kC0+Pf|o07cg0)#TVy9vz!%@MU2_*yHWX?P{OicSOw
z>0dDLaSY$gevQ2H!Xgi4KakG7vF&+Nq-uJ0{b;jrhj?~kEpCc<z$nq69MiV|1fF5T
zd{m4%7&`C*GAI;}D9iEEhZ8`NIYnwY1Ik}(JYs)l=WLgR?WnbPs+`JQ{0V7xA2m#e
z=KLutB~>fn{r5X1i@_JWzM~k<C~JU!sEz+X`~Num3a}{Gt!+UN6p;o+S~^9fQ@Xo5
zr9rw&N?N)>x}>|2M!FlMr5R!fiT~kz-`U%}&-uRpKmT=kc?~neFf;G-tY@uz-Rr(J
z71P;=5JC{wnR+fiI60N(F!|5sp#7YyE;_w@Q(Z-kO=ob}j@RDNK{r>L!(l%6wpU(j
za^7>MF(e|QHi6geW268OUIbF6(xmgX)}_vYR549<X*?e4>vpLZ7Y$@b@mmp0h%v&t
z7e{&=Y5hQco|?PSycNTAp$^SqdrWBi<6$!J)uk~t->#pSpBE9s!NwLn+&2|ZYR*Ik
zuw(sU9T7Eka5y0^@y^VQ>Nt>OjJ?8}t+nPQqoCMb_YYvn10Xl0%ih^`1aA$MX?Q3e
zJHIRWv_(tDcI(}3a*58gRp&^91I-hpaV`uycCXfYgC6PdU{rK;$^E(N=;&48PX1`y
zA}2Z!?w^1tSghU~kKrCYlC8B`j0r#EEuw;VMH3N0h?+v$T|eFuylpa}TyU7CBuj3!
z(}&@K{pT<8?Y~0B$5+Y<ttpn9YJ2{dGy=3|^B=-F+wi-)H?i%s*_%Nyt>l%(L)i+=
z&}kL*WhBk4C6$;Rl|mIrwdQdm4sb-2LRB<+C~0ZsJ0-Xfut{xnWyFpA>*@?wv*;1D
z4Lu;M%r=S}Tp^@~T8Hiqsn}fDe1pjxpKAl@a<X6G;0&dW@g>CTe2CV*AgZC3Dvm3^
zxaBD~mWU10`W!D{i~_O-mq&wxLzw(D*cy`)pA(-;xhp#8j-vZXC`sY3{WtL+e4@{Z
ziDK>_WRYUqI~c@2J{~lFUd=`fl>holJu3aXh-8@%**F_z50{$lL)l%9Nwr$sh1Sd4
zg3=QwiRtOJ#c+=$7wYXOINYEqGi+4c+*$=1vyota3tixJZ#J5Qge3crw}OhZ@t6gb
zn(_6U-#Ze&-!?;rK};|klz<obn~>9gJ;{vP$K|A3VZMgA%5gt^EWA^Ml7T_z*z*T}
z2#ySeu`z-kv~>5buwZlgWn;@PI{%B;WL%Y`0T+CKC5ARgwt=FhXCBGAx7~;PTYht8
z@1;W`{N^LrSSfEIU)ntzM@QuVeHdal3H^8XQ(aNRXiFQnR}Na%#wiqTeQO*GD$^yn
zr7|yBuDjKg(4(Tnty;#uynDFXp@{N8NuTo3Uq<MEi*@;O0H-XJV?YS~x6jBAgKOei
zq|7hi9Zcrb#%nUDh>eYX6T7}{uU@WS872HLrI;D4PXO`_7L)38VmB$%nX-(i;mDV)
z@(yG7g<Z@)T0I3oe3XNP6dS1!-q&{6cqk<@>-**RSjs1lA1jYdV)X&nDeZJHJXzQe
z7y3WVugW4lR-NWg)_e2ME%4VsKS2pA65%g_<Wzx`YzUFp(?hddwn^w-tmUH;_}91m
z1crfup(|!#fs5>5ZLPTT1ZXRXlaqi*)tMZh@2g!Q$UZFvv|Nfc?mi3pu=)j(Ik>S8
z5rjG(EC@wL#&6JWxC6Bp4yOaWjm=GJ7d$<fOuW<msFO+KOE)C;(yuI6c59A+VUd-e
zZvt$7q8ibRtLZr4@4t~h{wdPH2&7*=-B2oueEvte^<@a74EK#;uhebS(+pR{>^x(|
z;WjW8|N8=^6(wSjIY+QVattfEzyFIe8sNr|djW%-W7{l=czr4chF0ZS6oWt3uNeW1
z3vtlZfDMncPnr8B8zB%BV75jt%WsEk03~xlfzlRCAn&v-A__`r*?#QkyYbw2v7>ZX
z_e~QYYKk8}bY)svJflR&X~f0q-_dHnq4>Z_L$ixcLSlDSrl<uaaX2COA{fPTR4ep4
z{hfXFg&6hubH2p}2Zawu#=ZEQj?|_SLI(}zF=JR>TU9n|hvK+s|BPKea{@#h9EHL!
z%r&yU`Y`@iR{8h;WkVhxp|IK5^sVN1jeBqZ{o#Kgo=SY)tUN(MK~(3WxaFTq5VCEZ
zl)nXBr6o|$;3xgrX?%c~Alf!M8aY>Moj1Ybbijp$iAiay@ap#Vc8uHuS<t~FA~hH4
z<ND{{ki`a(;X8?+?LXi0Z@cO*yZe8=KVJ`S2IKvQ4`upF_V!ilUF=d~$+(Z7JjwL-
z4#-s&;r{c*DRE$SZL9fT{dv#-`(OE=p84A60oUuq2alD0Us3<@?JpdU4ULQx-oMY4
z!vLvSXk4uF=cp)2;8ymi2ykL>2SmvKT<8fB4`9jdf-?SS1OB!N{@4xw*BgqAK46G>
zuHG)bOC;=5ouE6>pTELqgkDxMFf_{g=O6v^!T+zn=FN9Qu4`#zq}2LY7y9Q4_ybY@
z|Gg0_+;+7&m>fIB&hek9c>Z5jK>jk^*WL3|Mz{aV^Zutr@o(<;`A({94nBY4O_ufl
z+pGFKLH{|vRr3U@>v{sbSrfEhF#i#N{>KH@1_wLEYQ6L}1Gn&hx?&SbK*3VE3R1aQ
zwVRCnwxU&}V0>?GN^RnofeWQe-CT@1j{kprh1%dOe15As{`>uXIeyH>!6E<d9SrDS
zDcyp?!7pgIS)wG3#~ymfYr0&zoMbfVi^NMd{K$vH(rSq|cX&%Cw<*OU^?FD8X$qLo
zIUGr?7?U?S+qEm2#|yRAgC!uKSJZTme)Gm`%E5TWbgZB0VZPF*te?<jg`DBDfi6w6
ziIKFgWO+-6Jo5>;t<Q~2?aVa2_P*gIKbWkGhkx|PSmcBOY{B-6GiPYR-xQqwWqnUb
z0|l1Jp=o60--8|adM99Ei#2L<K^FTtFOOn&#srkbI5-OY{IDQDl|UDq*oRlazX~II
zsi9HfWY40}hB;M?GRw&p>l}-(wP2RwU2xLY*vm^91JKM}fA7BG;b`C<KuJLnk(s$F
z(Ijl!{oPuJ$k;fHh@6}}=>4!7HO_WQ>%}!y0k4zT4;6qywqz<OYX!kPY#1335s8kE
ze_8&)|6zy<pnL!93_?`DTvQJJ^oh|VEhGek*>sF=qV)suoG!kEv9i6SHHro<>w-i=
z*J}1f_D6ZCfj*jC?mI)-I|8eT(qtO{N9?kKirNL1W(FC7@toXm?mW%#Fh!-usx>tg
zCBb1(Ww54mx)pa*Z6jXx;?MJR=PAq*Dcrv<g}=!Me6fe!&cRV}p@NfC3dei+JDKbL
zi$#FF*H<koD??YPt^w0v$S;8=wsk7b>)3>*7cV$lekB0YZ=sNpXWaREAH?F`+Xoh6
zlOD~j22z0vZet5)WJK>I47!jXnND&GfjZ_LELvxPUV}!ar|f6m+4=d{-qMm#vO_N6
zRL=OOCDq=0B&>FEO1ok@F3sZr$(LL@h3yl0C?V;0aw%;=a6CTRReMvJY0z@)?0uBm
z$<o|1P)8|cd19{9i3AgE!bI`8o7+WAOLKQ^$y57uXDqMx+vvN*km@kzOV-mIF{T4z
z6d6|ayAI`?r+=K!psIKR3v!yGV7<=g*L&*G0`FbTq*zdD{#c^_(++-4^Z+IrhO+lx
z2&BQNKj&*pNwoDNBvw{dFkil;>BOVeHXF_KKN^ycWZZF`*WxwnBF-Z4fPu~BIQls3
zx~J_6o165ux-S}mW|a(D*Qp)nc*rgcf%Hu@I50I7JGqH@|I~_>EGeU#it;V+;a(Kv
zeN5$V|I;u|%tN?q6RA{U&!fP=+}PHxJR|fgNi=XK5oc)O)<9$E66_gY!uN{y`a-zK
zlO6BOK*$b#)__SMloy^-ggovO_MZhA+5P)88yf%M(ciw72{I7RY9=a-Bp7o(euTZJ
zq62+cDg{Hv@ug-rVqN)9MDjX_Z_U;vEawA8w#Orx9ltw;?Yy!ufQ+5KupZs$w+Sxx
zx^)TVxj9wY8OtGaajv5V=EiSaVo+vh#i_}uXn#@lecf(4n{>E3p3IH<68IC+=Xu(&
z9$P@~_XAt1Z&BdYj<}d~j=v1O+)`!bn@ZF51kTR4hj^UNVRIXfJ{mmxk3Omr{{z@u
z>TjX%{ubqTkbD50=QEI>NH_rADmkyTqh6G;WwyY#c7L028W6yo%izS4IEmnJi-BG@
zrId&WDLx6_+_%or2n@?=8<{c$63=~%a`xNnyj8n_45Y;THU$QAbF<_7Yq<*J%J>EE
z#y1Tu4Fp)x^|#m42CKX}3gzc_aOOlmf>v%?q{Rnxq2w0VK-)J}A6ag$HnUSx@lC(S
zWK0woPy#>9kxL{wkb%N%C-rA@9{i+kxY|rEj){-g$<&|`vv~uCv35pyVv?B6MK9s~
z?IEj5SNpX$WN^Y<L$4wha!!feh$<>8bL#C56^_}_@jX(fN*0TwDRd6GHdAH|{9lXa
zeT)?BkCQSz`eDV-R$(zK{C${Vq`+mjxVXUWTmuOHq_<q#X30ZG1UmZ0$HSoeoMNv;
zPNTTem~(r3Rj)3hb$a{yd~VN=v@kK(WmHN!$6s1|Qb5LB@s6QWpOp3W(H%M^#JA+v
zdn1u{vOmeBa-;x?ujPC-lH7MfPiIUcLqnSF%yxbCtCeAK*WS+>1yaen98UD&GZR}i
z&tjsYq?e1Ye5F%^vnkT?MD|HXRVrf6yKq{?T;gMDHt-d;f3)_d-f+i!C1lB=v{4{w
zL@^RQXF_wc!6kLEDWrkTZ6tpxm)m;KC>0D$3w}M_DT#rvHQ|RogT`3@AW)zthK2o)
zRuK^qB43*y(!WGvQ0;);^{KL|swf&-?5m;jFZD`ev5hhhlkO(5^%*1ZuF3RdYl+Xt
zzN--ADg3(qTuEo!;shnxaoG|~ZE=T9l2x6a|5-Dt@N;c;jgtMKP`W<FWU`oHvGs?6
z?FZYq%FbEPuG5#B_|jMTGq#-D{(C5yDq`0O)Dn}l(2sD|m=Pk+=Z)e4xl~x+DMS;7
zJfNj*Xx5=1c8?T#t5HjknNO)z$_Dxurw36ze!U`=Zn6qqxNpm7ihmiQc#s5ntpC{B
zqVnUjRp+TB0(|ft&@GkYZv*r9k`&T{h{Hm}#6F#CMcgk7=8M*V@$HvJk#j7y-KqTy
z0Khmfme*#danFC^s`fU$_VDeUniB3|@$#}Zn=YyEb+WI*vBZ6Ql*tg!EwFZ=K{Uoi
z$isGV<r-XB;6)xf9a^B%s<Rw^rN#l9TW)ZL!6aw5J`D|<z7y%|+m6D=wLzP|TWYK{
z*{h4EWM)=4Ra;^_Lw<tfh^hwf&q_v|e7X7^gvjF$)fvLb%$jGvO2f8)jO4akU@zY^
z-ub=pAH@iW3e0Pa+T6|Yh@Uz=gt5fWLH+H#_%~_gzp0GyVdo|dIA%rv7AC=uF@fIE
z(ZaG(2??SE1O!n|u`E%>vG>~!V<{msD{FhE++bt7VX8(Cf)W_|Qq2DBTI|?-A@n-Q
zPgEbxJn8tjr^-ZAM(%yk<7Y{y3E-H4e49j~pkk%*P4cULMZt<<djidxO}`aKI+${%
zl#h6^P(vf-wPsEhvLDuHpB5Yva-ZxpUB8U<tqhUZR_`487L<1R{-w(m{3o-#bIUAi
z>>=9XAT^_O4-OeLhVsDl@jQm;*4B8`j^0%=0en~2hOr8UH1d}(!{T3K_m!O!V)NT@
z4z-@Ad14Z#OVZ-5wq=q+ACU&e(UFxhK^@y^kRyto#WVC2MvGrJpL=Ca7QN-qsFw-P
z>q&Rkp(+~atu}w$$xl|Jg6*c&n#K<l1KM9=Ao<mC5w8R!pt#xT`(O}`=S5@#|Bgk{
z6DT2@(2_Q;o<x>#%ldwCkWQ1cl=G)3P9U)ul|?pm&9S+K6BQBB2&@JzXJ=ia5b|iZ
ztIx1Y2YVx%O(qL1GmFW(?d{5mjYS5lKPOo&)S!14zA2%=dIE#tre}t;DVW!8r<j8k
zGL*s|4WJMUWeOQCh+n7F?%DUR-FHfkA0|FER8-oEdJb}BPdjxcyvr1pcBE$)OY391
zU^&7zzW%rP)Bmz)C{rK6N#>lqqxyT9mmuWrFOH|m#pJlBDrT>nRb_0W&=G)K;IKP&
zPZgGz4&T7OqVb&=5k0-cI9>VbhP8W;cJ}6sz@rt_Y~iMpzYk-aHs@;-8nz&E!V&Li
z%B2_N6f>C3Q8v4{*wSQ4B{_(jm%Y(NzLb+<)F-USA)vwQTcEh>c@o1m=#c^}xXdZ{
zn?l-1A5+W+dz&m{WeW^_D*8L8d4|)qd6}1m>LpFY0#;bCcvg5=9;vxfZVKpXSRpOs
zG6a$+fG<_G49_5?1pEu9_j6^)7~}C~#?eDUXWT|Rn1n~W!w^W{N%@dA^=Ho7#eJXj
zdq546MgUgqtkYmU6`XM!OJq_ZeW$}@Qx;F`5h4C4Nr^IKRx<U91EN~t9Nd%g)&;G;
zo_##v%=**quhVU!plZhuwvdmHp8X_Q#h_StXK>K0^{M08tw%tOHLv9Mwpym--7rn*
zSJ{g919j0eoall6rS6tvTu4YEKTAf3gIF|bY31Pbox)v(o8m35_vvhHY_f+^+c9Aj
zgnHJ$eT1#nj@HL`(s{9Y8x%a4SN0zFn~dx$w~!|Zst<6VKR1aJgF>NL*suFwTbr8P
zjrJ(C6UdiJk4Yov8H!lPvtOKldZQzz8StN$*s?4zgDj0k(*nr<Qm^{FL7bVJi>j{P
zWDLPstaQEyhn+P!Jg@84gUD1)fdYpx$ln>VY8#ZA%pex2k8iFZG(gY|O>$w(z*}0)
z1;f&9`5iQTDAQ%VpyU3$n+X|n3L#KwIIuhP6;F9pdy2;g=naBPXFny#Iwdqe+#czi
zuB;gd;v0AYMWgNd*hWmqn9s7ZhGJ9aTKLPNjcSw8Cqhk~Mti9gpnl3C`xqFA<goXg
z`goQpQoX4&F({~@$}OUsGa)sV?rd*1SC9~^&-w6%Fm}@}y-6lWMOhH~s4J5UyUM1{
zmP|Tjb{;JxfX&&ZKA7na<QS8f9%l_v?}w#QIRi%xm=1Gwyj;TKyw1Lo@;#ORPKPBX
z(XZGbF4l)?GZeiqEiR4WLQjv2VlBS$L>QNO0+GHxSwaO_ht&w#<~C~6BWxG`%Jdga
zQ7YAjNH|^wp#E2eH#Hp(3e*I0(*RYkgY4|j@kQH3Zp%ZMn3)jL^D_}%S$Y0o%~Y;t
z?ijXvSoJ^p*ZsKdVYCek<-f#-O2qtTI-3qZKe!cBu>(JxHJPNhL3sH11!B?U>%d*l
zrFIk%W1YhRk`kLHP6e43m!#WVePK4&@M?B$R^lU!x!BhX2#I25X3z^5V!GHQue%bg
z{@z50N;?$=Q)-IlB9>32CiYlKGG5L;O?6sAj3frhRFrO5m&5`u0<`J0Kae4LWUPt0
zr3Lq!pra#!R?Ank^?WxryUjNa`*Y%{WUKpg{**2R1SO}pZV?h6Im2XqMeW`*@Y?FG
z45e}RY#90vTbLUf(t^o~Cvu<&r^(4R^XJ4O;46K&`6@6oQ-4K`nnr`BCbH`t2=2Db
z#AdEX-=<AZfAYL_l=NC@7Na+mllbuAfyeb|^y#;;bTSmBUmKZE(oas1VtI~9OI7eD
zTrORbxQxX#4f=kV<e_QWrq|bRG~QJx?c?oj?DoA;_5?iCP7$R?oMKhvfgnHBXIy?5
z5ssyXwnaZ4=}S?d#2JSAnaMK87VclR(Z4yoe|wHk#bXnd!WgaE@8&bJvvPooW%8rV
z2aHB3Y^)jZ{r1Fvyv*xB@0P6ytwzV~w+ytjm`e%k1K!>b*wyofXSZ3O4lyuOY4@F*
zFGvQ(vyOc+waYQ(xA#L=5m9aH{Ps<3tw4+(332p^Cw)3QiE*;Sd!G<m?bQG}j&qix
z=7QMN6g<JnfdLC&DRfd9@c{naslgZvR#xMk5n@HxO{?2wG?G*SzdF&9iIL^w;T78J
zmA0>7UYP<#iE3-%u4(JTR)s1RE33|n5Fsf%JpBDwF7^t~8|@?zNReM~L}*7gY2tG^
z3qxi)Yj}BfwJWj{C|mhxbg3_71{7t#Kv26_`t->;IbY5ShNKvvS8?$tnU&Dkaaz6j
zYKfDcpBh+yGZAyOU4V<CY7tRM`ZJl)>CG(XjDnmTn#V=AtzK?myl{4JP*qF=13y-D
zH{svEy8q>b1P|pC`QSE7?R|OY3+e|k$#U!Ema(C+`0as2Ch+EFUFtsCiP-)9CCk`+
zfM{i3Q5f(D{_I2s{Z5KtZEbyjHQ-&?A8n~9e!-Hda~9W6EQ)-zo0zn{mkW{XJe%E(
z&XE0_2WjgdNS}DO$nuI^PRmd^#s7_(Db+glU{A+%dN=P4%gqIJ{Qa4nvJuFG_RV}k
z8jz9bfYk&8D_L^$TOpn1l5Aw5+sm!58GBDQQhD&j7#YPT@*^3}>WiC&g!rxk#2AEv
zh>#M+F`xHQe)bdE^AAQr5bHd?*@5rGv$V7{S?|@ZdLLFIIx5OaZfG7BYZ)_~)IDd5
z!NFAjz1n&IoF?pL9HwpJn4Bm^u{RaDoSRJYSj|@sfb$y;{UU8W)UNxG@ztuIcFXM(
z_l}FJi|p2ccIIu8HH*As?q>6V)-eHj;5uo?A+s&}(0>%iz>{%dnbq4m2@=-ZIPn7g
z{7?^NJy$y)gXyf;kPm+cfPHWUh<JH*j(@IFHaR?hBfg*0_w8Nd(X#AfL)6xKAr^MQ
z*82Kp0qI()9}VPKSbnvXO3LG5vb-68-<B{1YuHvyCV%k<-<M=P!V1xG`$E6GKgVHW
z$niji3cF-vFGe4p9?Kx~PA&N~JZlM*K3EhtMv0@hFRz~T;4-$>>V|bg(`S$@DM>=+
zJ>7M2G4mJSsi09=jagsvpdf_|ri(XFzasRi2w!r(@oGmJ|EhNW9A90fO`#&GsK}si
zKzyLDzdvu8<sc6s_bFDEUjR#C=V)Q>?nO52cJody=~Ow1b;PlY)03ldPba&*P`z?}
z7voCZZ?I3EJ!2`l><q%7Vy@QDB!PZ3S~C=wx(k9|)5kE`%54tD4@)*{-XhbIkvm5F
z`;p*NNUFQLF66oRUNre9rrg*{X+C9XcA)A@1Si{PdxFxp`(V%_@lDCKP~xapvSn^{
zDuzq-i&t}tY?a}`NEL$z9Vw5N_IsjZtMPMm=H9`-m^)+|*na46k6iPSkAQwEE|c&H
zL5=A+d2n!WRLFO(llMk|ahgdkl{8Yj>?x5alTKeLWu)|Tru>yu8doB{R)b)=2Q=}U
z-bG{8!D6F=s%iqIPUU;#R9>$oT`j|p-UV=GV;;JNgIL8*%O2;Ez%t9Z^~ZVG9J*Q2
zVzocR-XD`nU^ACJg;~UskK3-4chifI<aRwp1+!^yHr7=gZ6tGWBZmG4u<vmB0Jj-p
z-Bsil&aWPMpanEG3iEXkQ8)Cq)U?^395b5$j~}+zSt+4WAr|YxF6?TyF}Q)%SyiMR
zX}%>QI`TWr=HrPZ;qjWE*H%j)xlz%HB@-LH)gi|D26vGprTdn?{bah-QGy~APzyAV
zukL3yu0JP@NO+9C^;G?A(T=g~q`^d@zX&vTsJpxUMa9mpmYUN!K3?hP-M6@?<_xc|
z7sdgHfN)>m?5XXeoD3$jDjyGq^-jONGf_)xOG}N48ta{&2E&YdW>q0yX~Sx1OMV<4
zO4-;naJhR_!?I<is@DBDTCofE?(3Q@^OoG~5SX7g@8ZU05z1=}4t;^I!uKs~zi+nO
zy)-YcQTW3CRq-d=<6wuq!s4K8KTI>cY&0sy`J7VE0;bq0{I^JaY)sc*p&lZ6=;*(1
z?dp#Y+-_2sjKiJ7w~)osTs9Nc^;kpUV90+=dyu=-Ow#tYQUxWTKXd=`uzQH^Ge7yY
z;1pDyp~7%iksc;`xi})qDesqm0_8@hS*i{7tCg`Tih7n^i4x))%ANS_SVp+})@nW(
z8~}=ieGyPt=I0g`G+htsw*(up>C{KOVIB%{k&}1R!i?w3W#xkqp1BX^C``bd$@_VI
zY2O|Kw@`iofiCs@t#mK#ylpTF*<~CDl(I*=LU2rhl`hA|E8$Q|z2(_TV=S2QkqiOT
z-p|CDgTPn(lNyn?Hx*pr70>Ig-0xpITK6F-E*S0E*`$SZu;kT?pl@2;eem6#?k~+W
zzClu1b2!PsXZV@--Gh*j5TX~)pNo2WdfJ17GdMK#Yofg#)?dpqzUEhLoUg%bsLntm
z@HM@+N5Ovt`VY!u-Eh?6{v7CfGJ^MMb>6wP%KP=56{(i6q#*mvFjBH*S<-_j$G~2w
zN8o7U!v@}g@0KLt_%T@%2J3Kh<yQ)1gOM76;bbp0!oH9~=8RI`9N4XQB>9`&bW3OL
z)9|8mKHpW0LI?RcB{$hS-bTSBZhHK?6DQ)}it5U|#6wRRiT6(#<RX|ZM96Mrlh}U#
z_r!n+tHaLgtLqbF@e}U{gk}@HWx9LUmz31Bv?LlDFL%7$C|nPl(?xZzNu3OhjV0jW
z{cYv9+}8qxue)y8*k)et3*<#=uZ9@C{OP}yhp2HH9J5|+9wgpmJ{@O&eIZ0PxSAJ$
z+#Fk#L!v->2$W{8rGkP2xGzHSW+h(i@H<z5^hV#HdfKi?St<t}4YIQ;9;9M8(0un^
z9F`opKMh~&=MS4=-7;DOU)cS=A!WN80&erm#oF12pphbMuNp_EIRpm85CwpPi-3Z0
z7>+=94_VY)zq~Gn*YWX`bF73|Lx#fp;IRDPJM^-4h({kywEZ;aPE-cVvE#hGiD6l*
z6UR<Idz!r2c_q|jUrCu>k%=PfIG}f9W|X_X0G!X!RYK?MWnH0#*Ml^xPOa}UP@u6*
zA`X#$k{*;N!BaF=iI1`XRf#W^<U>DQE#jfbrnGqTN<_Wo<Qd&$M8ohH$djw1Sv-$p
zTaxK-nw47@1_z}?niOSai7XMZ@+#8`jr!xBNZbw;SHMdGQHkLDk>mK5Wp3@ci9vd|
zpBaJqfc<a3){U&*U|%r1zpLRJd{nse>q|>Bi-SuGErAglrH%j??jV4We@6U$V-v}?
z>^l_sXz=rYoZ%(~?q1-u#~+*(vTgOe5p51}VNM7n{##Jx<3s)Q>62`l+Ke0RohSvu
zEksWGWN2u*L@PRE=i22MiBMM8F3h=qb}@R>^Rn^H7Jd=0+-d*`;LTz4T76KX=#v<$
zbFu#HB};kFj5j-!wu#&lgSOujhEZCM6RS|A*6_)z6l5BlhKj_`cX?F5bh5X9B*(_L
zDRcUe32**PmQR!>a+8;~E(x;v#C21nW0fi=le*&StUd;k&Q_%N;W=_Ti;j}|?a#dQ
z+rp#gtd0-3k9$q@SLD-q@J%jNhH>{3x+IE}tuZ!ed9EOV{u4EppXAeV_RkKN#ZJq&
z&ue4dZ+bUqY{aL=a%4oO?FD>EXmg@`dWTX)K5>i1Vh^QF1`l*ExN(BIC3puJ*Lid+
zeUQ~{V5~c;KY_x|#i`F=qWKqH`#4rSKpG@C%Vjb%1RDC4au$(LC~X|puU(4EOgFQf
z6yoXWXcjRPgu1UUe!*?Kjt%JE3f%4##JuoY@j{N}kZ7gRn8{OQVQeRn@swdctF!NW
zv-BBy$U)obY4M&<_hG~NEig?p5TMm|g;w{(nja1q2b98K<OQ1jevu~yy`AKBs!Y%T
z-4A&+$IKP^^;aWA(%X|4Ice8E^5G@f>sd7RoYhe*_>eKKldT-V5q}2P(Mc&8`8of=
zhBHY~_-7ODfl*GcqAE)8-((1N6=527D_mVlWoCK9AO(FjA8h%GmCoe~PUsQh4`(|{
z;t~=xHkepgRA<ibnmqBLN%}!$HfzFjKxq_mE`8W^5>D1YTOHBPKbR{Y0QZXPcB4Pu
zbZaQJ$~=Cv(W1U`D3!BcuDoE*?=gnS!9u<L=}$Sb^k(@!VhRe8aOJr~ZXpP{wfm9v
ztGH*)Zs*t@=X<l`V_MUFx76)Lg@?Wzm#`BZVvtRbd#2420v9*;E-}31Z(UBlHdG(=
zGbutZm~V}VCpehbM|6knyK8H&7Pu?x?vIb}`tJlVgbDr{!5<(hlEW-regKR+{VaHF
zzo+;did<PoIA>-uoYz@-xAZ}=rYa8SgW3t3p5>9CDU8V=YJuU#G}o%9RIq83mp2x<
z-zq=-?fi2!DM_8fjH=CttcgxGb*_wvG0(v$W7DazbkeD*_T6y}FVW#oW0l!q#Zbt3
zd#fAOt$5v-aQIhGk7vzCH#+Nkn_{2||JHi;Fq7_1m9}<xnCT`^Ybo-gvL0i*ptSah
z+f~FJVJdrFbmkC2bRg|C&}ffuQNQIJOz_Mz;kB~xS`~Pfn8?1qvqMVZFhrwbmE-Bb
zDGw@X&^#LnlrTnO#0*KE*^R<`dc#K_U#xkFu;@0t-|i-_8bV&Ry1TVbVp`k(w83d0
zM7*J@mvz}HgMxt2pi11<wxQ}ZQ9u%_H7OjQj>qLwKpc?ZM<3LtwO~Rjr^UbE*`J`2
z#9LsklwEF2sdZem(*O0;A2fKxQW8YNUjBN#GR|o|JW;@+`@<r&iVPj=#fh*wT54mA
zM6Dl(eB*11<CB`4PRx#_+KC#D84bDC11l05`f|S04EoZ2$RW>NB7yrJ4`dFd(d_{w
z<5~H1$vEMzQ&A-<!f(ZTK0KUywV4n@%LNHL2geih%UThrEK#2MH%wg;L`t|Pc2=?r
zIsvRi<>wPt`O%(wNQ<;n^rtEuuZdTGU`Y;zH3TJ@8hbKl_-_<0u+^q5XoL}I7+W7B
z;tQItXwXfwyMo4UJ~JH9BN1@_83<Akj60pJ*I<6QkoMg(ufV%e5yEX09aGa=&Gv62
z)(8~RDMUO^;h~CTfpi)*y>h8`KvFDf=sUHC9aRnq2@w%m{?4xlBYz9SI{@A*Ojl<S
zSz<RjKUlOsUKcYJ(HzXg)qdWqBmESQO}0*<#7N;|{qK<g+;;f%!1`+&FM46RiXjZ#
z-Gj?thph^RhKBe_HropIwpWNk>C@L`W(MYYis8-naoXu$v6d*|ACd63+`QetTCw}y
zKXs$0q+`;t`h{#fP(gVPc@*iMgQV$nkN)->=ixs0p=6*)#$K9F4L?};;tVXrV-{LO
zU2nN=^QP=#7Q}3*LcGySgvT~F4ykJ-z4mG96K$u`AL2Z}@=-S>67syzLuhWecxh@p
zO4~KHu;6}We)#yxV4gU~OkF(}J^s~rZmZaG$@;EBrE}1Wf-VU)wfZW%X|#IRAUkPk
z0;zNeHa?HL_I8#a8OEEb(q)O+**U^NWE<y$O9s*m*`%?TKo@%niXXT=l3_=(EXzr+
zTON(K&cPaTXU9y6Md>2%WvhB}LN6{lqRDBS=6-0KH0xe=YOK$on&Yn)(JF(0l1A<+
zwQlotG9I{2Ro95e-KZ$>oSc0L>OVt1GulZAm}`LwHTA~P!@Fv4DD}x|u^$HYA@`~m
z4zF~?1|^B&U-fGzv|Q^lV`2XcuD@Wev%h`P%=Ihv&EYtQ-$R8zYdRke0o~J|qrs|F
z^z`8b;ESn<2@K$P_!y%A1MaJ3)p9GQVP~A1wACO2wPpWWvzV!7xTxbE8Z~_{Hr=Ae
zQ+g2;lYev_b1;t1&T=%Yn`37<4TK(+sy#tM$_mHlRL*Y&^VxdAa~&~MHM4~*M-8?c
z!QaSdXOqqq=@omBmFdaG7Z+3S{gJ|OnW=M>FN5o34w8Gy?0@jMRPKS=j`HREWTr>8
zAR;!7)-+wR%nunWJPi4%QENpv2mk0%(wt--K`qGFn@{mup<b=h{?wAHJ3Oxq-?$y?
z-*#_qA09HWRU{1e^&LI34!AmlLa`4Y4n*#khPO>~x8fw)Evigdp`f6At86;Aaj__Q
zR`VR=Pp%5zm-p!ZV22JSU3Fc9${>3&hMAM^1eW*momSY`?5x@xRy_v9_Y<BoqnM&%
z%!d%#Lur!u$tpWnS79lp$I!pD*t}=q0AF;_N<jzr2!-rgh=(_il$2CfSop@{(Fe!#
z?C=|5(U0El9MxVgHw;busbX!o>s&77K{vH`u_qm5)X62<Y-G*P%rZo`vsf&!g)>rJ
zpTH;#bTQdqp0-9IP-!s=Y;!A0QMnNVen&w8Zu!`%im_~|wq+MH>xYpP`7lJpqexFh
zYvP;y9eNi|=`Tn)nN&PHITI|Cax)c13fny!uN!R1(f~GOk%J_nshN@uk03=!*{f4#
z#ImxY0v1U<N3IT;LCLSzesi_<QG%wd1^cO6`J!adH->Ex9gXOaO6D$dOxf0760UEV
zCUR>wFA=Wf@-*h<H6>wFd0e&8dt$A(j^{YMX8ucXN%jWL5Uui_D64t_u*IQ3_K>tf
zFUPVrMOXk;#`2uxC8;;JpRISft*kJgR1)0rsHPq5RSpLW6(zG;=VH+)f1>BP`0=pM
z*USKokg2;ae&#qdkcCJ#5l%DtEQ9<NFQ$N|njP;3X$pDz5Q@C7c4gSJ<gz;tah{qn
zlX}m0M;Gb6qpYFF<0WG`hr-)9Dy|KX&$Yc$=nRXr-}8{t&)@F4rHZpYdk8KiAP`q0
z<o-I0UwUX~8#*`M=w$7B+(#jF32+4pIPxa;3iY~9f}oZgs0Q$1i<joTPBhpMAN;j>
zd-H4i=6rdY%6h4Z9kPWaBO`;)aIm*;0`!17)7b|ehhWo@VC$A~qi`L0OOMCvcqW1u
zpy0WS09z>L-qm(}Yb#GdCRJCuCxQ@1&1umAhmq#l`Jz+$?6M6vq!VMJ(pUx`<}t4q
z@Swt&PfaU<sPa1OD1tdlzvn$8>DA`bV-dW!`Ir#bQXFk(A6Qse`{&1xY;fo`Q9X)U
zBi3q;)!*bq-;p#4TeSN<=9s0W21-E<&S4Yq7Kg_h{Xse^H*KZ(I)vrr<(bcPc!8I)
zIP<OMZTCy-ksOJ5lQwUd(-8p_DiW8HPRHxxeuh)vK}KUafp$A+vee`<QDv&&P-D_F
z{ZuFKYGsghIUCG!LK?U)e)#IUV{`YV&)46c?M`n41-samwP_30E|<;YRhFv^>O)_f
zwQe**JZySR(P#>pdmU$^H1}2^K|xA#Y0!%h4#z97)3Vi*lziHJGQ?@WKgXO?!qLvp
z0$u9nCvf;NI1x{;MQy1MEvS3sEVc0}f{Uc^=)JK!-6>FFS_o9gm860!bvUHC?obhn
zt{R^~)_Q2plek!iwtl%>9IbQ?yX@>HcKPp}?H{dlm{rEq6*y9mlaFOZ@Dx_9eQItN
zV%aGDrxpM=_s!|}sz;~rT$9W*cS5@x6>S%x>u{>AlX@-|Cg1ZVw}_;-rkMxgK_}Nh
z!;J2LfehpK=Dm+NnQWvKEp^B1Fpm5;t|gf~FDQ8>j{~)r<USG-UHX0iFj&4`M?kwo
zba`MT^&7N~zl0aSiZg({?kKqGiE$16STU}!-PS#+6hO2ljE+Cs(z3ADrSq7A$IKPX
znp8LkSsJ}VM}T50D(k+JwnW`1D+`V&e4?htZoj8m2j*4=b_k52yVEAqtaRCg62&HC
zsY_M1zBc8`%T^`)O`R;m9^*$SZIj%D65(FlERi)OcjHl7nGC<d+&*R`AJ%)(=F0RQ
zrgG*%eyU5o*HuL=LxiC*-)~o7w=&Y|9=<DNF?yl5_JbI7@EBMR4AmxSa=18e{ZL=4
z&CWzC@F9E;=T@d#`=S6?@mB(0?veFep?75Dd#kG?*uN@|MCnZA7>-qX>K|g4l<|2_
zQ*I+@H+E)XLwAl38V`4HUP|@9<a{~zRgFN0J1xcdtAK}|pQa2QV$?}!sv1$p$0ujq
zW42oKYiDZxada3T@vy@Z3@}0%0sQnrD23#_-?*k3R5bVA(ukv<Xyp}#b+ppgu8j7o
z1O550E;Zv>JrkIWp8+!2==OLXyTs!P%1=TP!@PIyLG0za`_<Fh82qoWEw&M$=$#~t
zEoq*=_E}T)Sy@?KcZ+N7;bd&#t$O&Gu$_VaiTDt<aU#upjbR_UZz)2nFzt}BkAhXn
z<~fXjT|6g!v1Cbyv5UnGTOOSUVLmr4<i_Y{!<r3yne#UIpi`u$w-utHLOKh9x7{C`
zx<_UlddyKS(_%|unynl<g}Zn1T?*#=?F<gw7XcVp6e5(;rBC}tpE2^*q3>hu@!a6_
zF~GH~jvCfndZ&jZ7@A4_Tq^W7s%M`+tk*HvTenU5JvZE8@p;qo?JIY5tLs_ejMzt~
zmyxX&x+;x(`muyu&LU`+dNt62CvktHY~HU`J~7yn&9J;0O97MpIbML9y&6NwxEw<%
zp|5g=*aI;nRAf)BJC(kGUKp5Ha3x(^3Ns^2!r~5<cN{5VbO8y<Dz#+te@QoGo8f>1
zt9J7vU3=7gLs(YnTfS|yd9oEbB(t}t_>Ai9-%zO5qPnw0<s75>u-UHssT?ZTn3p(X
zLaBq-^ZgX0k>>z4NN9oaDdL0?Y*X5&E>55lp9vsBbfoy14y2F|s)}uC$`i1;W2zrG
z)gDwh>?+?o?j6C7m+J7YIQZlItUM=#9<`IaP=IxV>RD4JCMM=8=D{OjBM$S^#;u&m
z<Egf_Ya6iTv#J<G2rSgHuaX`3ZoLW-btV9fm98IPMg#N25baS&nCj<m1nEF5hXM>p
zq#w~Txt^LF@Rz;c#B=tD$9q4Jkbx*PbFu}ps%+%i)t}ILYYJ#e*KUiuhlhV&5@22g
zy{G;0!yOyDe8zXHW66Rof7-u%5Y!-<$GDJ&^2J6cBpcN8<pKo?x$ck1Q2MT=kW=5i
zMaSVZ?sgU^dRJQcMMLD)faSd+nAbHVaK=8l*`Ti-6Z=&GyrjESnF>)&`a`6a8q0a|
zp}oc6ef<>#I|FI163-vz;alC>aS7W1{PZ6QX*MsP@!QuQ=HG(}^et#Q?O|lrdU5W<
z#WEbNqXQMT2kjWhT;DWG2$~TDeOgc1{jkD#5_nW$ASEO)oxCS--?#f<YnwT(<E2%9
zfR2v-6Kp8V>9;y|9#^MSE5#BuJyFIj!m5Tfpx(E+d22Glw;<r&d}2N@z21Ss`}Jwx
zG)Ks$AppM|Ws+H>>JKhF0(v&g1BLwDBPuCap(CB`63|cYDHF_?kd7{z+vevr78vN%
zt58ev-9imY-{Y-UX4riGT~0vu{PDyK7>riMCXC02DcuJ_m+urDm-|sZU%&eWntYfq
zUQqF1PT$01GyUF4_^+m6e$iisyRLmdUmLIw1KWsHAm6L0k{99fZ^^vRiDYBah1^x=
z&9H^-V%tO6zRQHYk!?Js)i5T^;kR0aC)19NTrey)w$LzMF2ut%0IxD32TQB3E7uRo
z!PplSWgA7ME$Er>*sNveq|g)vb=^oGTB{WY(FN^it=Gp$KurJ~^sAin;Bt@XcqP`%
zPV^9ZNxCQCs&=-E057;PKYu=2s}YpD>l2i)m#osfjRU8k#~H&xiyP(7)5Nn2$Y7^n
z5h7*4x{<B6Em;kv^Ok-}V~f~d;d0Qmd5mP0Fd0juVltX3B+iJGUFQWA?C=r7uJ8`p
zwf)?z2yt4w^02!E^MhE{?6jw9<@)f(A#MCP*nwpu{_p~{+4|r7GuqnU^01X@4M38u
zTjW|ImVvpg$JKV8xB@m4M0L+Js1yx5rFS)v(V!dg9k$AQ;-P36o`R~iU0H5pY`+)i
zuWcTBBCGx&Ie!VXrtVXnwA8vLr6Of_^lysVwjOpvu?~d2EJx<o6ACh;AVpfIwb@+e
zpQ%Jg@Vr@eUPCS~XU|jnS><x_9-y97pxSt{^bp}0smrT}(7DcYc7zsd&;iK#U>G5?
zR~$PZxA9KYUe<@VsXMY%?ozwi{jvhptXR8QeF5kAh7^U-X0_9Hey}M4e%X9>c9wr4
zE;g2|Ve`BlBtAf-nWn4yyLMVAyq(3S3mG{%dPvTCn?WD!TXq!V-w)L*v9<<!>15sq
zhYR)57a5wKssPHokbqfY_I6@@_g`!7FaP_@iU0Un{$V@theek=&`DQS6`Xg%%e6VD
zll_kRXCe3-c<}(n?(qzpDZHdVJL`a@Rpb?G$no}jn~b0RQ&_O%A$&p<M6$z=%Mt|W
zw4-dwSjpL|KmZQM<t}P|Uj9h{n*WMbSB8HN;@6y*K&>4$KUG!PbP&A1vru0d?xM-!
zb?eS3!;_3L^DA^f6uiPOUE<HQq-$YCgUGZqKiagjCRWMn(*YX&7=<n6{jg>L?63?r
zL*EANwQR^6<zjU*94ce%tPej9_h&1^@#bnQX+*YXjnkD@ZT+?e_(`AbZHPf@Ud8us
z9k$+StD#VAX*Jl3K^D4J3knfqJqV9H3K+CkUCLjFc3I=8o_4J=IOxhn@5P3kOrF1W
zd$`)>kmhz!kB+B?+Dnr8{Tb+~0k(WpkAAYVo#V5LpQ7O^omL0&+%}M3Xh=1Nkf`UP
zR~_dskQmvI+!D)ohwzexj4ysi`yapxBhKLVm7dLBf9~XbRc4z`_@%k2sWWAU+w|`C
zrV9tX>0#iNUg4AsF2-N3+dnQyJ`SAcr4b6`8!zeQFE_E_CM)}G`LCw}3ZBggyySlf
z;r-6`k*$ZDAczPq6l?2bYEny(P==OdLlKqgnM4lnv6)0~Vi|6(<%ERiMsqwo>M(gx
z1vvFKYmYY8*AXKqX>)ZWxb`lMK(*a25V40ZTB=qoSz(d^4wrUEY`ic$_9$SIL)7%}
z1$umpQxxr~>D1T6nV2Nj-1jAW$RWOr@BGWl>r(fO0@r{l5UZ*Z_P6Krh#GW?@=k4~
z+@%6*%*K0@!n{Y_^R}{X$EIW1K`ByuSiQ2JyF_Sp>o?*wI_Fq#T(6U!Kd}e_h7_|+
zPl5Wlw$U=e-u`!4-3U$FAD6gp9vd9M%?b2TSu7}5Y3IbGrIn8-(V!#1>;uywPH2sm
zlEdZLFo=g;2in`|?~c;h-5u;2S2Yh*W7^x>JDCTjd35Z6uxc>3duxGzh^8z-a_qCe
z^|`rW9hBQhhohawW}4ktnXQ*Jxn{~K$Zx+af++$sK$iGm{MGYA%>2sV%&z`%C74qm
z+<n5tiKh)uvZC4hO<(!XjhxR7XOY5%We|c?t^Fl-fI1j+!#J{<RJX$MC_fVoBqQE@
zTI9NtWkhaQjK&9h%qEc4u1;7i?U2sQCu*u_K)CweHxV>*lgEw1zBYm}_mywC0)fxk
zdAz*58h#x#c75Zg!ydoBSc~8wd96UvzFWIFlqvxf_~kprb8F~|)8^Kmxy9%WGv&b7
z_)dQ=@VC%hj^cky;M>JwOW99e(lg+4V&(8-87@?-bh13i$!H0I7IPehc2B;wrC7b1
zghw2yf-+L)A=IMl+l(7bJh1mdv`JET@4k$CYL*ezuzY<Tl{}&L{Q&HyK;bal96S8N
z9(o$9@Ij+9|KG<seXgY18h9kronS!EhsbesphSD44J81a^=LXoGxPKPvuuAGs`^{e
z^Oqm_n#p8S^3EvrEO!+x@htY3k-|cdDhdZ5J^jap3P99sa+X6hxKG5#&L=QXQHj1U
zfn=QeB*36oSYo63YNx0Z!L3X_#Bjz}4kSkRReK)j6(lp`A%(=zX$S*GfNZBkQ%i`D
z00`n_2}$Gix45sd+n;mP$)rUPXN0n^C921FvD&^iMA^c^#tx>&8}9A>Tr@pn=dgf4
z`#i??`s&4Mp99ds4r1jk9rQU235IJq&~}FiC9&CLhC2t9GH)u+Un=?`&;6c2E26+?
zoOQ^ZCCEBt9Y3URWVBkSE1${XcVx!H#3a@1tZ<tG5>m>k@1FlnWc6=jRe$}_?72_-
zo?#csOA!=m`g{TgN#&aG_VD%r!7c*9``MB&xv0J0zh{DDJlJ=ds64?KV1@cx==Va3
zb}I!Yp!vbvwQf5PPPWIZz7I<)ae3U?&i3cyRXaNg^k<^S*88HR4!rJ3Y1;)5Xb)_#
z(~^q_V)g{SJCM~5?!j~LRD&4wgi|TayvNp2a?%|Zb8jv~AmZUYYI`_o8P(NY`u&%8
z7uQ~Fu)j4PFakHfT8rS7ObWSTK7vA7<^uX9AuXNfT*F$tz1nG~C;iEr?ETZyE_;qn
zPI(|t4qj0^Is=EpC>Vwj8USw)-(x!`-kwV%2==d3XdiJBT`jp-PqJC1f<^5{$1qS+
zNXyB|eP_Ft9WB;i-C1m81q}|G%TIq<ZT~U|_?JidJV;~{a<HDxvbib^PZV49epg>J
zdS@wf_S{$QzMKLRZZ0k^Rc_~2NuY=XUS<3R3po-vWZEhuO-sQ-sL|w7=u1(~+Iw<+
zz~}G>rrLToq3hXBj-dy@oB-#w$*~`k_)|t$ql>ROw5h|VOPQIhv$GRX!P&};fnUiq
zome{#ua)}1*X!;^g|Qw)2l0g%Q6N!~-#uN#$cT!Bh77N5Pyh{{1n7*wWbg9wvaYAl
z8yfv{z=nv)INzVASjq!OoF>rIAQ7S2r?q~oWBTxm!Jkp=fseWX->yRSRD#6|fs>OH
zU?TYHUatB+%xGpG3v_~f@#o%brTz98Sz!b$LqDo8!(Xbm2e4<c4_N&3OG~*ne-~hv
zeF1mj^yISk3Hy+-_J?d9X9}YmA<<Yplz$A!gWd-r=%G{*B;a`@D_E`0Mq$J|?m3xH
z1zMywQJuBFZ%~UVRp^=Oir`XznltdzHzpoELxJ4#T*pkKWba3@mZU~PYWDn+pQ2EA
zZH*ntd6}MKLM&gR+%K^!V~h4r`2f<E)j=%#U<_Q?SM9ELCW|DTz1h8Pn?8Q*dRxs-
ztJ9LQx4*v))R#`zqh-)}oqB!JdFAEhW5P0B=;H7uAXCK}{j=ZI=(26>>=ceSdO?-2
zk^imodaonR7MImZvMI5e13<s1NRl)C;}Zo64uVFS5%7XQQ=ZYq*%=XS3W$$S4APK!
z9xSi}BprjmdS(stWCCTF`#fd!@m4`z8Z{%s%~fu0|EiH0?~d!F10g8|g@T@5hBLBD
zr7e^m&>w87O((L&FkIKdSp6u-S_pMqHn8Lf(9npvvLI(Y8xcHL`9pSZOJ6pD9LM2G
zo&tEai|uiT&I2u}y3RTPzLGI8^gn66ylf?LtPFh1{`~5uM5opBdxKbgS`L_Hu+h~9
zB_+<u$YHX7Fz{K-0*rxi@WCClQEnPUe~;M{$gnj#2<;7wWGC+<!DtDm(?K@K<m3S8
z>8D}fDGJojo1I7Gyb5%+hx3152EXSu|L%5m1fRBTwtiK#mzy|ut(;gt+94F9uXWfx
z(jNIhLWOlOHY7W?kY&RC*tMd@F87iA0f2brJm-{hnkH)QCT*=|v<uRU7`)}hLj|eX
zJfrm_dg}|iIYqAzy6o3ZIbJ;^ehIcI4?3IuPt-+^^F@826exp3@&ek@+5SX3`>yv@
z1f?pA747A10p`?4Q80ai>dVH?J_=YrfEeJJ334DLYY7ydi!Z1skhiL@v!T)$FA8pW
z+qFNxA5N1(Kq0_Pi>n(3H3cFgN^L5m!K2H|%TX|s*mYIB(h-Oh`8fUs5^YM9KgoS3
zk<oZ5UtN2vOFLEdOZ#dVP_;$mJU?8P+2anL{#35Z4?VKKJT@}uP<`t)n8e(<^g*?(
z3pN>r_xkhg^@$AeN7IRXv_-eWW|DM-!GVFQ1m~b%G$A<CjI4^&9&I1fK)#%oE15{*
z$4Gm%Ivp4B^(*bpXchwUOBTsb@y^oj#eI5{g-R2();g=ZiQEAmr=ueJi$o#)uIC3*
zfS1=eCT*3)L&)hUDRzIN@;|5s>SpELpZ)m+0-nl!r+cB7Vd%2I=@5xQE{VEX))stN
z3ph$a=fwaUAGfSsd@rUD+j8L`kA!r|yz&bIHbp1@YwSr#!z6fd4Tw4xDk>jslHl(-
za{fG=#bt-S2TBuXZz7X%r+_4A@MGaMNg({8+Vj6h=zlyqK>@o5`2;TlC6MZ+D$Dv-
z(D?QsbDi_bNp=;l+zttKm5hB{ZAXAkm%6xkp}Qa>cR0DrKgQwgbBg6yedZcxVW$GU
zj~0>cn;;HqAHEyn50F)%C%{gjX*(33GwxypMe`6)Ew5&)shjn?p17{~<M`$K3bCGS
znfn#(h#fW1c#OihDd@e!2ysxY8p)F(wE3#jnx-mPVLnYyOrjt0Iy^l5t>?9~P45jh
zCMKe_jOKevpv5kL#(sHq^@KrUZ{PpdN}E18wq`lbD{L|QpCj+^t~|<(sh|OhSi}qr
z5kUPwgti0>ab>l&@#!-NyXQYV(F6=!j-qx*g>$U2_f8YaeL_U+s`m}G^w7Wth45-+
z+3PN6f4-Jx7C;r9A6Y#IFB=RaBrqtX6~D8$Py2!7+&RqtNj99D;+lE9zX{&VOANyM
zK|AWscRNkN-7X99+OA@sJO-*c>FA`kZh{lHk&0D+Z0_%C$uUV(8S8B&FdB4n_nseX
zIV}oh35TIC^%&Y<EVtU~+7SPK_4pPkzMP?{Kit9vv&su}DmA8iHbI1noDMtLOfh@i
ziWC@+e>;!<QpNuDejko^-cGlh-cp3So&9R9<TeU+`@y@lb)v=xtUw>F(3K-rQq)j$
zf!vJUIdJDw<a%yjPfJ#^&?QOY^<lhi4I56jPS!wwBQqqFO*~?zKtWqwqdrqYRt9ab
z#W6t?oiP!En!|G}!$_YkP3IVLIQRnhp3_?B?R|Zh97w(E#TN2zUDpEta|5q~=Av@y
z@C`RWR!%`agN|f*DgcB$C=G^R$33}PEBZw@DDBXE+&Qc8-5`Qnn30i@O!cIWmOp{r
zjvSxeHe2u<37ZzR{qdPOX^+}xNbB8AL<xWyGM6tdoLxb$C<vYxZ=GcaMm46wabJC<
zKy+xjw1?p1Ovf`fcVOAW>6V+wY##R}94KeruG?N#Qx>J{?&{dlVy@IflGtwAZc@43
z;?kT~AKy1?rOUZ;rE|42t2lCx#&)H};v7BHu6Sfm<a@9T6eAg0ucLtDy~Pp1`mXuL
z_t?|TWa~n8lgvH;kS@!B5+vxeP7)@Up#beQ8Qz;1=>EKlzGh8)Pw1yll#JxY`CD1x
zMKt|uK)&*=4#q}#@>Uy(AXGNzApMu2G@<*E59+l|lCSHK8Rw*pl+>V(L;972YVXC8
z+acQWcmQlfHBdQ{>%94@fe;ZNz(x!N#Q&Mz?%=}Eh{<^|QBf6i4~00r1t=7JDrjhR
zB6vwWA1o2!bljuV?D&2IiAUnnR;ojkmKpvW*!4Sq=K-7<oljHKg1R~9(^@W=B}O^?
z3k1}^jcE8BqkYCfDHz7v^2N#TGY&slIXKX6@fj%;#sD&FG!W?}B`jwZ>t}mvU&tTb
zYz-xuyt07xY2a%cEyaRgKKD%!zb;Yv**$wkmTP2WDPl-Q=SW9g@10IFKhr2H=cydz
zm?EdHA+j8Y$#p9-N-vGeIoUSzh;y=^_V8jMEH<q9)JqvXIFTxCj0r{z^hjL!fYGs!
zdW{7YPeeMem$pd0>~t<L_IkC#PRYTMq?)2D{v#}hn~Td22V1~=;-Zq`q_Vaa$GrOK
zV+rw>f$2VVmha#HAHu#mtm%JmUlB!6LJ$K9krI#wkp@vZlo;Jzqq|i^Q9`;ykcQD6
zA}YNRGIAgy3>a((3)qO?$MZbjbH1MQ{I2s4*DjR7w)guL_v^mz7k7Qo=#$;Oz4w3%
z(bLal=|6wkD^FL7Cn`+ccY|vMRoF(~c$2Ncz-}`9KpzMn)j;@|&0&O`wLeQ8`cf1Z
zSOIKjr3<}gS8pDSwg9tTy$aYPct0F9Vg;|c=wIo)B?-QVw&|e-_I8cf6-V3x)L4L=
zt?20Ji2jF&;OY!C>9#>HTgl%C4x>EQTS&Y8P(iCVOhVRt%T2@JFJSdK6up9R)j0*a
z29l#4ZPQjq`YYv+_LOlO=l*pL6bm~j6+apvAc|v5R*~!`+M#r{CQa7Vf6%T{brc26
ze`GfVsb3Qua=MtQfizywWVfCSKaVSr@z;C@kZtNXqm$H8gMIuje17OorZv+VH=y)L
zR2wAm;Ff~hva&Ie(*<#t>XdXUK0dkl|J7byxcIHf->l_=d-dc!85tR%vf}_m9}Y%}
zOX|-p*7s_`X+_nvl$1pP<CiW`fFi=ixb3sdoxj=c{MU4*7|ui2xx+PdY0A~dbvB<l
z%=C%n-WLs3+tu$ntR85_)z6sVb3Z<4@Fbl5=Uw^t2ZgQ|4XUDETa>rB&FHlKGSr;`
ztmO}^XS&OD^6mtfxW4`<=mo^zNAmLW8i8G6E5Q8scaiTuAJZsm^N+UiuUq(!7LtZx
z*L5=cAxY=1NdJK^#m3e|4cFc~B|qe8J_qc=*{i{ObUVv+!}mBX&^NTl76N&6d(YhA
z*Pg;$gOvhqnvFyyhkeR68JWp(!J5bYv#H|qf!unVKWkZc2K%7tR8(&^W}fq;9mS~t
zHM#Trch>hgfEn+H!GoVZfi6yN$_ylbZhn6Ld0)O~f>ye`fmUgVI;(~CZxz9IBBPjC
z=#xk0$wSH@`}~&s@NcAaIx5%ikI^~_wxd7a-Xq$;o))jhiernOA{OHI7&7cOU@2Er
zQ15}@Kp!pB*~-o)dA-9+Aett>S1(1Y%DV-dwv;k2d8s6I)SVbXc*o>aFn>EjmuU%i
z?Ok)&!g6YgRiR+*b#J@Vl+b3dN_==X`E!o}sJ^SCPWSg{_5W%30XLcU*G{|~VVBxt
zsEebbFKrHItEb6dIkjvY8vc56x{aW)W}cpYxngHnWzt};o-VN9gXy->68lmbvviJ}
z`JzBfGWq2ax{I8CY8Q{oV!&~m4-BR*qq_-$Bgxb5{>Q$xvc+@L8m7&Lp`Hy(b24j7
z!2tmRS;u%a8#wn|uPZ1eap25F;MkG<#}~RA(T<mdfq~}`kiT7JN9yW?Z^{Hz9}15E
zRfgMQOKBPa&4~iLi}W{n0p7@*xQvV$FuK2MVq&7hcIl6&Qw%?keSQFw-G95>sQ?Vl
zMFY|1y{%6D^XF}oLp3wxi>us?L8g=M&uLxpR;Op4e;P+)ulY2>x?dqhr&I0ICl1aE
zC#&9bTI@wOqN^W-xLP!Q7*UyRFH~rSzi<bn&AzbbmCY0iZ6W7QnqamA^;H*faP_3*
zO1ZSn*#?4YRiieKI8?JDH7C;0XQp19m0R0m;D&n{ELX9f?#h^S1ebk&^ujDUd&#l5
zS!U|iRqMFRwEkqqB%eJqzo^YRB^S|3-9X=^s+OG!{iuo_<eVHk2;FsH|GF-Bv8J%D
z<m(xIPyTzt-qu2mZ_o?L=d@nePjEYD_!cT+;or2y(h;4XvuyB=NOc=;b$!~otpv6W
z<Y#KXmyBI+FVm*vzs{o+Znp`$ha%No$iyBOexS%C25S1909v4&#{zsGua={_J9<-K
zvSBYuxDC2^YFbXf>>q!w+Li%^4s?ozk14lL*5!Ex<gLSl)$7P(zNncz1*bqET}@B$
zkT9c$^d4^8aCTnm-~ai{e|(vLsi;V%#RLL2XNydyrq*a?2$s?(YnLkl0{I%xn~S~6
ze!%|hA)vkIyni1q3$IiMkc{MaPk&Lj0y2oC++5~gJl{&va{W#>Hk?Br@B*vifU(O^
zhd-)167!QymgUB^zyI1oB{C*!K<%?fx&gS-M0k$8JfYlPXfuXK940q<pV|oqJY&{z
zx@7)fuX2F%L3OdcyE*5+<%#d5+#+Nu^aQb-yQ`OllL;WgskzNddhL)7k`Y{aR!g{4
zKa|WPjX0{c^pw~TozmB=5(Amqetb}y)tW7C@26Lwc9GX@i}@-~4?5)*B+S1{D#%Py
z3bEY1Ct6gIoGdz2_sP=Z10r<JWl}`;^NUq<@M<HsLX9BEdaGx%EXzCpbereUZ)J;{
zt+AP!ZUb4;d?>u!!u1ii)RM0Yz3`6@V)MKPjpI<Q5XO}lO%q?|2JJq3>rM3EU;V${
z{@Y$;+N{=-yU7<`VV{SYK2_&urM@Bj@$k%CtwrZgU_6)F&>)Je29TD=B!JU-mzS5<
z(G1}PEDtMn)rVMi=YD_c&(6)_1`t=?FLamz{pdZ@CN;myOn+SD@k}zNCF45l=r;b|
z5H_nwg~?K@>fN2z<q*ia_qp?XVu8aiJ(s-_CNYEiAC%QH_cLQE$wqpz1iaOG8zLrX
z4UIrkQ<2;Djip^(T3~taI-E?%8U{PP{V?znopC3JMUQ1q(Xdtm)BM2Ef~Jc}dswHB
zT^cS2FCKBXrm*}`glXrOx6J{_B|f{Bv;<;)8K`KYWv-#%*Cz^(nCJV7g{Eg~uBG3&
z#Wm8pT^n!<^nV7TKZ8>fIGUSQ*hPYiTF7Ne_$gqd?`+8F0US~8@t-t8S&VSD`7)a_
z2Av0e<ORtoDGqx-hmuoM?e9<6eH|DeRe$<ctV%n<r;YX$1EjIyjD;;=gez^I+@Eh-
zIdDijFg>J7x%H3H=ki>eOk+UGTH@r{X5XhH7Y&fSj{@SvNZSkT@w<9?xNOhZ_)fwQ
z16#O}0~rH}Ae!by6&Dv?3u#d1@Vj~~V^A3rfw-vZIu~0G3l50e-Z(Ow|3tlDhNl#j
zA!kzm-fIQ*EaC9J@qgaWKaNjyI^X!uv!%e;H-~l&5Ev}qm_5rGUdWgxZfsyN<qz-?
zCY#-i_WP&_J*L6x=XB857#X>Kw_MaR?Kv;g(*b@Iu>1xMPQUW^NDv)Gl?$M?&>&#1
zY-!^n{Q7%(y$`SzCk^|sK+43plpoLAeT1DL+m?sjC6GLRhYwuS^qg2$F7@L9b$7y9
zdS)g;sZRJv{<MMyv7?|8QD(z0twwk^pb-Wun&kZeNxgPm1CMWR2p@7v&gp4~D+g}P
zt0q(EB+r76IYn!$uC6<o_%7YeS?}RE-%iRsE@lYT7*68I8&F~|a+Kn(&%i1WkvhGC
zzhi;P0w@G4@l#0)Dd>Z3@2&QE<>8h-oD5N@orJK+Q6#2P^5mncFHv8T9C->#+RVL$
z_96PO9P^;lKRu_AC1RDfqHIKQ$;%pHGX@i943r{je{O4LeDIZjS0JCq%k?<zRDN7U
z)KsT?>l*S#UW)#hkC(G^+ONr0aFUd#9MV1X$C{*?pZT+UrvWX@0mJ7fyHB6YHG9X8
z5@C7t*RF7tooqR(Z_OFu-A#m;mWE+aQPO>TEvMap7CJT-V4*HH{b_iIrhQPRv*K0_
zCSA?ZavEvn62kRmWVb1mPva8YGsPlH%8-a)QG#Ee%M}hOoKq0FKVLlz6-uJ+6x9Mi
zYZD0!MjoUuG=r2?C1|Hb@LG(1v#mLkg1A6XOZQE@;h>PZeU8Eb|49P6x^6j+JSn#c
z=aLdsk$(Boc%MHhFKcdZEH1vmF|=a<tJnE?s6@#{$I98c&IE0P>x4a($p9~zIGlQ+
z4j3r#qBCY0I#1~xEPOi~eH{AHm#ea8Ky&%^%Tg`fPx7i*RiE3U@rOT}r!71CLqEJ?
zt%Bf~W6bv9Zs9%t2tjiz3G09#vwidoR|GZh?<5t!#HXDg7{>gi_ZPV69d|<ED;ysJ
zeY&K+UMhg4oQvr>?QRgXs~mG-h|QWh1g~*V2)_pgCokoBz`Y%Us)3g?>{PH-4GY(*
zwq_dyIxDfEf#25V_m^7b6Q`<??qR3-df=TSC_$5x^MUbK9LA=0^Cwg!xko`)-lA^a
zymM(_#&>#V=nTqqV~GodU;8=Ik#}=%^V4*4VBH=@9&?QCMz_5?cJNB91^L5h;1bRH
zJ;n|2P_e{;fp}(Xi-i@qL@Nww9&z8h`~~^>EW1sAcS%xngTiUyk>>=HZ+BuVR2Q=R
zb~{X8M7PS`aOTs)XAbk3N}?rBMz0fJr%o?SIzZzp8Be<iiEk2;IBNK!&UJ9T?y1Ge
z;+ngbLOf^Oqy|ECe}QX$g%IQ^SULU-eg7UE$1Tri%YH1W0|;#?$;tFLWrONseamru
z9LE>-va`Xfh_ILpzZ_ou(o9!vJRV5f@6T3Z{b00Ov#55}f2AVe5gAuu@51GqqMt8k
z6ch-VMpwu+^{86isaVyi@u~C{9V8D5s5t^%>&3zNP|uY=*<;(qIO~@mB>Lwilhn4#
zD?q!OJSO7%`Aq$~tTM!3w;O!pwAv1IUccHu(t8W7c+Ry`H|4N%U1<0vCX50mO&&8?
zr(Y}L>r2Zx&1Lu_lv<J`6t>UGABO8T$(wb0i<Q|TBa}Ky$#VB-^x`EPqj>#4dP%K!
z@mIa=cALs}J*U;rqbp%^8<Tg(*0u@@%Q}oq?(rxdD80TE*85g&<#J+=4y8J`+BZ)u
z=S^>{`rc=ZPyl>@JD|qL++was`AOPI*D*<!OiLennnrFGEle#mSL5pwxG5Kw%lPb4
zTHWr&DTGu-&f>vO3LoV8l(E&9Z(S0n^3f@_c0X6F@_38jvGAQzw%r-p&1L+L*am;k
z$HJqQWdtHSPXDV>7i|Zr8B8E4)OZC3-$TV7oCeRqIPWZ?mS0tqEi=86wwv^7-!3wG
zRK?Q#0#vYXkWmDuIPJ~>sz1lpXP=U<U9p}-Zeud??{s%^&+3a25cIZVVG@si%~C86
zxAOBZUsA!N9b*Djg4`jr(q>8zFcH)eZRehZP|Jo)n;7D!e|^PjN}Me>>M?z?CcQUf
zNLw9EiP_D2DGGkDdV?X`hqjiznU{l@b7o4pu?J8Ei#p-Xt0tuH*3l*UZe`8Rkw3%+
zG2y35SJ<g*5ZLW|PF5D>uuP_qMrw&gk!dQ@;r_h)pzjZn%@En~+d#*7)64;8xPbq5
z!@3gIY~+v>;`bIc(=T!Y?Wo1c4SD2d)A86<CoSv<h1-+4;pv!~Iwm?^cD1t1b#~^0
zW1#3z)TIJs)!CLDn4IOa8pT8eHblyQk!~&}&n?ifz1M#Df$y<Pl+N?0rJeW1{G)co
zceGwXEj@cdG}o?~*-Sw}UanEy8rVgw?8`F$6xHRNRqVngCgVxM^9QKRfGM|#t;}fd
zK_^1+GMl7pl(`5_7z3UNr)66-6O?s*dt|qcZ16#W6Fp2<acFNc*}vz;|EQONf}7<M
zIp@cco+?mHGT@ftZS-_<Af!rjWN4^DFL-E4VUUPd1Ke#L8o&tY{pgRAlX{^Ngg^VC
zM#|ift%}lyYMt+$m>##5U~-@DZLG>bZ5wP-VQ)5_g7>uID0(MCpD}4AzE~W6)yiWp
zEin_<QQLM~7hjv>6fra9s%7)8K3UxQ+1m%J+yyH<Rs&TvLQQt5%)w)koOj!P%=|nW
z%}Z_%u6UvH+1O57{P<i#w*ieKCM|EIx6-GLGGo!j(4(?Eq6nGY?jQ5>gJ(0esMGlj
zA5e5x$U9)#B9W&2quA%iPm(XNI@Ts8e+rvxb*Y$wT)K(69wZCics`0)upb}}$LS!5
zGy%0^TM6CXb7AVYK!-~EO+|KN@{eOE90sIe-_<PxN(XFSYRmUg3Z-RasDH(eIfhXy
z_-o&~U2l>6p}%Muxx*rn+T?N=Mk>PAJv3qmO_u@ciMg&%Q_5BRhBJ8ZGAEP4WH`rr
znXIt}{B|9mqJR4CD>boz+~$Z#qK-?oNL7wzF~RL7U0JZKS4fUeAI+Vbh4vW()`{Ei
zKuwgCG|3~nnYRPG_FU3dX3%OG`EZKWW|!vt6GSz6GTTnNZ-Vb9O_EQ|FqaHo1GJ>1
z{u*QdP=V?4IF+{c^l&u_3SKKci8~%7goi`-2PDjLHDsB*>ie}!O<Z%T8lE`TVzxj~
zExs~WOCg;|4xyt(D)reFE^688g=V9c9fZ*9`lq6ICFaa8nW}$5h~F0XM1aaP&#|*q
zBenVIYIdpa-kaOF*)@(D2Fnl}M)2VzuKr5f6gmb6!@f<Ihpg94Y;I7~hj&@0bypmq
zDrF8TfB3_MbQr1CT}FiNCO^K_qFLcD_qOE|b4a&a&{l_jLXv9O3u!;L8alXuJlwoD
zpiQ|y+_d}NeC1@xKtlZ1T~qB*Ff~h~Adp;TdGKMV&;kdG5wwP8fAyIHOWNjUqIqaD
zOJgm{Qz5dFl9MqbbyyH3QAt3ou9nyZy&4FexX8cj+lV`Hkfe6n+=swAFQj6--M$77
zjCdA=Ettdb0U;hPy*u^r5ZHo^#eRQvxcF$<*@9A6rmNGt$vuJ@9!m~nfdOl>HHCOQ
zL9@z0rgQ&CO5X0|(zdJ#*l>I@D!*sI?MYQfso}S#&E*|aYS%Ku*FuoO@!WzQib`04
zU?!iWoY;s#z`lPj+^3tA-ARHlNEEXFmyF3uPIk>&Z}i~c;6jdyiV8gF?dYhMNt5$C
zKy*IS#=`$+U93o@l_x!Y6TCi}1@$qr+?b4f?;G-Fsbi)>-ab%;t3*S!sv{{7B_9^Y
zU^(v;^J=~O=sK@ZReAL!`(0z2-XBU68d|){2}#t;U4reKIo-5RkpulY$MFo7ru&Ec
z4ZldOxppree;F3(4Te`PF@OzCI&=acM0oL@J^+g3?dmC^<qucpavouJN{h<bc`OBD
zg46m~Ys!DtR*K`+CA9}#P7|6NcE>t*EOLHEz|wJh<I`nQ13jdE2OYyZWm9f8(}`Ab
zOWXLwL?aC~=gbn%x!Z{rk<o~q{RnJ*n%!8~hVI^~DkRiBL)tp?Gf!CvcFoBtn3?dE
zXE_BN9;@c!{Z6%aK*y36?~b@l&@SNqWud<YKaFsJqZgXB(e3te&OuwyK)z>B`V(`x
zm%DJe;$Jf@^_?eU-KvGhv9VSXcB#fzKYxIy*n$nEjZgP^+*g+%wIj6Mq_m@^mODxG
z?lI#h;bU{_%G*rV6E~g_2I~FILPM!NWW5o=%`_F$_S<J(zs!g@4q9{54}@=Vn&K)3
zD~}Kc+AuNkw)c~%3WoVxzWJwSO)A*ZF$<54l=D?<Q!!P?^36gSwJ8`Q57C9|k}Da+
zx6RLF=CR6z8HMA7pUmZ#zdQH7yoTR~O*}4hdCV1P_yHLa_>MBn`PF(~V2@ABesfZ2
z-4l7M2KWn}E@krxmj1P0D5%7WRL$2l8exgghWsvbGfQy-ooo4$3MrGy5Q%Pd(~q|x
zTj^0M|E~T120p_9algHc425eo+_-~gWcJj27mvPU*KYKq7cs-97Li4pQ<e9ZYs<?G
zrpHA*WFoC{sDpL3>$gG+z~?Q{5yz2GH0%UTRwkV`wP{x*Ka-!>FJ7+6PqT?SvckZ;
zD?K+umxe%G&EcRrogDcd^f!*th8`X9Zxxt@fT>~E$R4k3O5V)?^f)p`HPQQ%rjS|M
z7x@PUMLLPWos1hde-xYMgfD(=Th2@4msB9+<9bYgeX%C8hK>y}PE+YJ%c$ia`qhe!
z8uPy@XPp;+6*S}4nCGvMBWxgUY-}+#(|>FEUUK3(q*71G(-~6xUP;6Q$tuz?pHx`u
zxj7T+AIY=qYRG?C>gspFyL@o{qW^X?*Utkzw~rfmzDa#ckEJ3IvqT@Z(SHZM+Ln<a
zV8#t7z<>>Unf{3bqJOmN-xC#0O|$*b=D$1+fk_Wt&AkOy(?{kFzS(o2FYK7~UeC^r
zu}*5)6Q3zVQ}es~R^9!SLM~+>NmJa=l<2SPgiMc+xB1-s3gMIYW(bK%yLUIG+kl2w
zS~oCAJ<%k!Kw#lo*d3SHJn%!6yc!Kn(tUw|m$zhhG@OD@_#<%_g*M|FCh1L1R(kV1
z<`*6!ORgeQCGS-njW;6N!*_fp%<NhbIeedPXLYvbMDmPlTnoJq5$k6j9ZT2a-=$}!
zza!%9Uv(KVyYD{uiw3kGjePdL^wR$9J_2lbzM)@jzN{|+b{&$|$df3Z!|4~dSAN$P
zV>A<5bHTQi1+>P30hxjXtpqJF2t;{eb7kU^sq&QT(`k$A@lugBbj8{b3CwOXUTCgK
z8N*bwW^$H0(D_rib<M2ka^-f3(w$ICG!AFc^89)XT<T=M29~#*%&H6Nye?nhM0S^W
zF#GO!?GP3*`MAtuUjK?c!qf25)R{Lu6m#K3W|wK!8es-IL)!*3<$-Uj<Xg=yFsX3@
z-j})D4K{P=u*M=>bdw-W?H=*K^TU+?LDCWwcaUz_Jjh}>8Q;W|0;1Q{ew7l9NRfS5
zkU~MYKQOW77!af`<M(zzfv9uhkDGH0*FXOCd0<&;g^R@wx<~D^)}+qOnR)g4s>pT)
z!^;PW1xE*=PA1ovTAvv?=`gJrjPDz}$Qc80ZhJ5RWk*fD75YYg*=1<@R1U#ZOV~Qm
zffJ%^D=xl16fLAZOYVC80RUd_+^RqS$AS7Yfi&Iy4TAqBYyp_%(btWMV%3_n+|-XJ
z{tcGl_5y^IGWx{be%idXmY$@7dhH*fiTBH-R(^EaPj5SM+O66qDkcj(uPc8rRWqHg
zlJA{z_yp3Jhdb*P_y#31eq3iclGlOv#-nabJyt0YEA|;xUX4)!MOaJrAfF_j(SPKg
zJg1=G>r`y;+=qKg<=SMcM{53a)vU&Le4o);f7vOoX3vSSMzyPk_8b+hfkEH6$Z)lW
zI1`BPK@#e+iKXQgwb$DQ-rZ9C#=Dw|{2oD)HS;!-HG}WG%jsVuj0!>n5A1><SEWt|
zCrasc?U*~|_iYNO&f+jxHyoc)O6GdM9nJ34x{t2CxGnzS=|CM_mi_rOy&ra56I4Sn
zCX5|TA57Acwo8j{Q(q8o`oc=(a-M=>2%^oEH{2W9b;6f?f}pRuT(-i{>2gK~xki(b
zmY!}Fe#ca47^p+^6B){9O68D>%aSwANO|3wHbXO1&g7Rl`%FXaa;Ntv7W&@Qb2GYa
zI70G$>Q<aa!u1-plId-%=|qeBh>kDjL>U$td7`Ah14S%n0(FcF-kbL7wJhOx;qmjw
zrXo5yFXQp1hRt0Iw)~^zkhyHr>!@bgo=9DFG&2XK$WwZI!v|B2qzzP02OJI|Y(aA(
z{tFgoTBV3P#X;UdH>w+<t|c6X%-o-ew4G=>KoGhR9}-3bIBfo{<QFehOu{LB19&`{
z%IU_8Ry}}j@~dpv8+mw3!BWaM5gyIh?{u#<HUw7%kKSZ?0%?D)$E(Ht08Oo*HyBQT
z#T&%<Ou1m2x&e=pKJX%J@r|rZq_LSo8YW>hfl<6bp9~k_kTwFPPfA^g1%(|PMKM~x
zH)K56$Rat6dY5S?85*|hKTI|c8acNfa67Q~-r*KU7VcpALrHnvRs!`lFJJkQN`OqY
zfq~b!R3+$Z^0+W1>c$GT{(G+?@uZT?ATU;JoAx^?^7B^fk$s=5l*^*^{*u?%l9l(8
zHF1p-m0tVHLP!eE2l~g`^T_OsUh~^xP?@FNBVgF_*wZx4Sr?Shg*&D{jF?_miJjPb
z#FKc-_Pi|L^G7`wDC<v_Je&;~s2ye_ug4glEu}mca>z8i`Q{DaqoikSZbCUm!{5$d
zpUO)0bbjUS*BkmgR|jWG&(VF1S#QI4>FPdLX>QK9;N$b$3V5!^9|<l8_m<4wV6fH*
zFnmxcSYBbnZZ%`>KTxX~sbsU}k6MCkJh?0Unb^6AkbZ1nU^gOV{2d*T9v+juowfpc
zhA9;*8{BOg)`-VT6T*}74txSxO~I&{&P4svf6QC{08ai410aFl=q#uPSg`!}9y0m@
zl~&IEu?p@^_c>8ue~{<*D`qhCm-Fp=tBt*BC;E_UHKrwuX-)ob)srGrt?q_%7YJxB
zhdv6Z$z07f2r^ish}aiv89`4gJV1pBFb~eJRdwowuf+1nZ|ZEiMK)F5^{DYa4bQnI
zgHq;@mKu3X!CwV?katf_$FXBkCcM&|h>TR%C{P03y**g|=qrHu6<BaG=t%1>h5o?o
zAv%R5D$^k|*^nL;mL?XK>XPaeM)1*E$gelS4fazySrMPe)upj3Ctg)|2EMZn?GZF}
z-{Cq%e?o*JZO=RNRk|LAnzvN-ew-YWS@VQM@EK{zX?1XY&OYZ-r<M`9-&p)J*=}IO
z0@z2(LTW%MymEsz(y*}umBcsf1}bQ}MQ(kzor3>Uq8+hRBipb~C5J^;ly>VdR))D@
zN;)<e<$4lo13Rh2oc5fw5T>1U>qWkPvpc^B<QuspLUa#4EH4LwTnO#V1o+FQrbX2)
zEkjiHu5S`9`rfapP0p0Lh;(06yR@bU6afBo)CVs7&6RHtUC|o$ODNA?>q@MQL4^j)
za2YAFYaeS<7JrlTDNBDz=^1^q-lgubptpZq<bQ|Yq7>b(JNuvIK2G}7_dIPmb8)`l
z%zEPAf5gM=J3t%_(Afo~(0=I)BM*xVJvPfSz+y#dZRm4c{#eRnQS4p)=DT+}wN!E=
zo^M;?@>1ETlz%$7`#Sp&z-i4^JsYy%${1PxyAG|0s)!^OO@&rAc!*VIhRZ`2V)Wsw
z*%DJ=XWuRR?b$oDmj2n~ChRR|?RZ93%B=348(`t>V=saWJksf156B|*Rq44J@)omy
z*R&ogW!dX2TYA^Faq;FtYpfQF*pm=$5IHOE+%8g!l@}7(I5<;_m3SBR@)bBFAl;cU
z&8Ay#)K_$|V}_tiy?R9a#^Lbw5}Ww&hQcj{QD#+sPm9x0nFa;e{_=&+fCO(ct$2~|
z__xPUn-<K15M<1S=vF25)la7(O@MrFe*dw)p0@Eo_YSy<DeIUO2c;ePZ1HZSJCCr3
zt{xUP_j}}Uak$%p$LPT@0x}Yyvt*Pcbm!i;(ESSv@Vch}er^!x9uC7#Cs*@11q8XE
zmhNT!I-<~X)IAxe(O1Ey+^x9mcPOpniw!o4p4##i|1a^JZdbQ(=$sayy7qDOIr=rA
z2{=3i1KV+VfpH16Bl{YlCVAvJ4>0-H8e#HPF23+T%UOYkg>EyzS<7@@2WCzj0Pn^9
z%D!uYI<WFU9ga6#Z`nRpUE4tACl4N6rKF;Hw;?E3U8$Ng)}%p2t7hUdRCMy~f^PFD
zm5Pf;)F9NNN)7}?Q$ss4e~LTJEypB3lckJ*^-jlvWZdaj2gaS=uCn+ryj*X#5I_v8
z&X*im^g~AmuTs2zt=p83vECH%Dsi{0|A^$BD{w*689d$WL#o6tnk<WiVmH{0Ed0~N
ze(!1=0$vG9*0IQjjLG~kY{=C2)^u6tVi?qWJ*t07@1n58+m@wJH(|RzqQ`n^^c$X9
z8C~qTlM0I;N79a70uVQ9Rlm!S1D;U~$fJ_pa#AUT+Yp4Q0zU~nf4|dJ%YVW3uCg*;
zhehi_9F_jG$Aa<kn24jlFJwom0^F-eki^cr4IhFLomSkJHymE7X~tzp$V?tH2_hAv
z8Q#{SCB8}VHO$)?8gNp*%S<rr*9~ZHat*8<pbFQ8&p0EUmwg+Q&6i?X7aRAG4Mx3|
z##~(`5V=4@QOxnJeQ%3e!fbiMx*SyQM63WR5y{g|GFJKj2k!p?`IgDFPlgHrxUSw4
zSoC>X)B=pcdz^k2OG-)2g@snt0)|tGi2@rBe?QN|`^xHnc>(-0)SKpiJb&H%yVe#U
z$Mi`zq2nKHnzY#%@7p)hmw9qEZ&u&7liI6g-*SV_fE4I+b=@%=@t$7%@`si8mD*ME
zX=w&weJT)do;RSEm9>XVV!kM<#$Yw$7g(mqN|=Sef`yd@f6K!s^LJL0s}@SM@fc%F
z4^5bYLdcKytkAJTw=bpRyIU-`7%F<~O8<wok-OkMU`X!H<O^o5dT2d{_uE&B3@<T^
zavl>(3aopAN3!j@-8p<5<0w<}Sx=u|fZrEH*t=q|<!1O@LmQBur==N5LC}=VvB~$#
zjE;_r*y&k{J3tw`%Kig&q#Qe~Q1@;ELCPC5rI(KK**R|uy;Sq003j$JklVenzeHjh
zmi4Ql*+{?3(l5KbAl`NpJ&lwvzfjop!LK$XzCb*nE_6!8#Il#apP5IT)7TG;E;Y=$
z@PWI%Gk49_=*wd(2n5I!n@5B*PGu^V<uDw&s=+Xcakk{o%lEfB>wm*@R3uq`0sX#b
zL5SxX@C1_dBqD9Z62*)MKw#eS>r{TC!}D(hl}lG|0Nj?WG*EaD;Iv`({c=u#1_!iV
zTgA#RgA;$tliJ|diVihDS4n&lxIaPUd6hOaUz?S|gou6)U45OgBw#_owjv8ZPkldL
zcAp^X@pY8xoKDA1kG3WjdUO(ez(|{2&taSL$TPsJa<P)C$u;0{3^TP5i~r6leM+h$
zzG_xdtpj^gfFbf1ZC1!WN~gEG?x;WV4Xg4(5<?_cI8OmjT3V{Kn(cDE&!V=Fdh3e*
zwngP4+u*zd@lN#_{bdelN?my+n`~`^KL2Lh$uAS1ecwihZAzyH>q<&}qDQY>M7@sQ
zt>42+&vx0`G&?ng?wdLx{As)ShPsJT13n<}y@$SU=LXBhxoOIjQcg*T7@uFM-tW_d
zwy#}hVK*v}o$G38_5`vuo)3NQ_U=yzECr>jU>ahQ=CEC=^agPMee_W4F%E}4ZpZT#
z5JDUH;5?>hOT~DoGj!gi!62a&H4XYtjBPu_H@s#)T9$rF3AkKe*><#fRDm9=vH-m6
zGCsYJTV<B0E-+*%D|7z%z5@@;JEW`pF0;%a#AmT6{lwJk;G^L9vpfX(W&z28OtjP?
zDYuP4iS@BF4~@>;FO|z`2wJ5PGf+TvbgwP0a?Tqvsw-#wP6w(H{-uk-ztmavL-upN
ztk<7(9^_pw*nW|T&F(yDDwb=(MbtTXrf*JGI%KexDMT6`k>B?pRm_qt*;}3+i&HsR
z#Yw%%Ej~g!smd^pV4MACxOikR6Ht}dYw(@wi}IVw)F52zC({5Kha<ZEd}{@8B?<1;
zEjiupYyMwSPqyaAeSYSgplh#Rr=7Al_#&adNmVA@A^!2jG&h757pJp{*i8;#IaHeH
zOe+K)bOv<ik0y2OwlE-vq@=Dnu*L$qwVxlOhlgp$g!3G4igMo5v(+OGwOu-O|0={Q
zeYdZOMNWRS<5y=Eyu&B)aLoyw>TlJ1=Qy!va9-YArNFn*&|xi6&(!>hLu4XLxUBL1
zmrKdgTS5AUyzuOi7n&z%ciie5F;3qRpZy@zvqVmZ*{Af&zU7pXEZ)<-T6Zg|ON^iO
z^C=j3Ql#ZRH@@`vaIRr*s?2^veI^rqcEIvZ$kcvK#a1%uMwLRSCC%yDIYyFhJ-!tj
zu+Xy00H7##`2Gusz|AF1aPW$6!GPMP+!OSvdv{~)=gI`1ks;;00i4Cf#8;`Gzb*N!
zj1h8jSS25bkFH8*5;nC^Qnl3$Kjh%2mc$I^VEEc^bfx0l%OSS><Ii)PlKjf(2LxfH
zx1GSZKrNELCrr8DMEo6t3T^5pj}}(ldqTwSv1fo;y+i9Fj_AJsgg@oci`ck`LJLo>
z4-R_fdalIn9o(-@g?o)`_fg^DutpOei^M*T{(k%Sj2ja<ma7zR;vSP0cTVL=6UTMK
zd;C^H;%6x=yqDe;kBu#D>~p!TW$7a4Y1ekzHGcwQtlD?WCVjlr9Gh+IeT>UveuZ`A
z!v|1kZ4B)?B(;&2&4%pB@2=Y|eo(<F0!^;t_XS<eoOOtxmvY)u)BmM1a9ktd7|r->
zvMyc0YV@Z_6dP@}ofe^KYY(^+RVbe@trFRQF)8`LTZ<efmdC3fpdHU+zK9;bGs+u?
z_ui4BaQhMS8){)aSlgs$xgy9B8kkWQ8QK$kI%(5v`wr2<T#0v3$ZrgLp6g)|$b_C6
zpY)xvvi}q)VQASv2;X1$BI@!aJGi{BkYV7m=txNS`t_^o2CA@`if*fLOta}XqY?Os
zNI&WI%Tm_1AAY^-9g;FIa$VdZT<Um?%6l`ky{FW_mPmvXLR<C2k;aIK=#HhTTLu5E
z^`0+Q{KzK^=#%w`_#Kputn>J72HQOx+flRbIUT^v13$~d#q}5vY|U`8(eK`PMe#>|
zP&`MjBm3)-6UL;`QEFtz#b)_yjGmtH&BaOK#AA|`iTb<hQ=*{>Y3+@?Ivf^kxGsOH
z%Fo=iTs?EVNXoc&eK_B6`He;UAX2GXhvgI%d8z@7>I9@qJJUkLMZP8qE#Bdmk64`3
zsk+<VuPL1&pb-9D{zYS#|B31zLccfV`P`;XflOCwPLGLbE9k|CTx#=6b22m8`_mp_
zF(u|X_njwdrPp9ed{t_Oz5a7W!}`;n><!=*f}TOp_#7way~TDK4NZ-ou>`AklIVh!
zYC`jqpxr20ueG5D#}mo-q=Ttp4gN~oERP!6hi<+K$k>i*`Q@|4#J3f8vuQJaCJT%0
zY3y&~^3w@rjOTy3={elbZf<s)m}@P?v4iM_me)@{hCuts=6XDP4~09?5H|3PVhZB^
z&Js^+&q2{f?1tIHDok((5>3<Hu8mj_C+zJBbZWIJB8xCE^sXK>nk@Kxp3vjx&JxW4
zUF9D=;={{KYLyk;r>j(lUP~HC>5DWCCpvYt=MkRp#Wlyg?%o9$x)HP7@QLO0*r#V3
zrr?ZkCRKGtj!+42GUIZaHruywPNx>7jClZ^%n*N2e&2AN%3&TNLRj2(z|81{fAzEC
zSsIuMo@udcod9JZOKcN~$2aYzhzr|E+1=qla=_Pb`Cwd(_i?UlMv$B;wov_^7BY4G
zehtPGO=!!@lG>X%GQ<n6TP8+KH8$Gg@Nzo6ESA~5;2hO)=-l`5PlBi**l0fLZP`ra
zlAmC!>}gM9J1MMbD#G2W3i>kk+V-It1>TZNH{z%}m}Q=SyWLf7$f9US>T3}-CX%FS
z;@F)rt8L*|OYG<%)Chg9<#vFLEkTcG2mEq<Cw9VXS`+mPPzVw;*4UxBD{^kt`;Q*-
zj}!dA%_TfCu;9LjX)rLwN-+(J&Dh)9<CK=3zv&B51b;i%)FX=+GeYp&yp)ub(ECfI
z4g5Y576@;J$K>WN!lnJ!<NwvAMsYkbHvZLTS@t|8K!EP%%}wtUhrTQHK*f6JNAibn
zl^UrT_1ZpDt)_ifPM_UnUwQX_I^{P<>^6_`9>L>!&E&UK0a<CwA04=ix(z5u&9(LC
z4uUTxI4gp>!m!x3CVb~`eS2wx&=WyDt|6(Rw#hDcA%U)j%+Tw$RY0{B?*d5ZU9v6A
z+Js+D&S_q#YxmhKW4UH^-Lw=km*eqc4-|7=3ibDA7eJHA44gxiYVW7D@b+uN@VEEo
z3XE<hT>9>JV=GCK@WL3F+j8a=b8wANz1x}15MU~Ft}Iom02oqQ4%z-PgkgBMiME76
z+N#Qn7>$Bd^37{({3M@!2V@Vk{)dX;m+`Xzefa(lY!3DbfGaSCh%(J>xpsqyrZbQW
zZB6s=mTr<Zt|2?2X6EC#rN!g^cL1rW+CP+J+_4;mR;Rx{{q&mWJp0_C_Gx1WX!KTQ
zw!LM+NOe2$*1hRCb7BYDdCcUTYgW4eN0O^qOKPZ$>{`!^LwA}<Q5eZG0|&3rFH0Bo
zU!QnIMqG;^5sbq6lsQ;i=9SO0P!&QfI$P#FjHCbcq5bEhZ;yZXuuCf+03qMt<OfZM
z**cra-pEKG^a4}_lb*2lw>LyS6~|2h!O;P58Hivh{s4XyRq;VyZ1i8yR-qsndFIyp
zX?!b=MwsQnM~bHlCymgXl~ECc`+!6~u(Ht^*UVE8M$i0LVFPe_(chC<2Wf=n`nX8>
zXY`+EnjJyOGqdr$RMgaIdR1{%JqgYio32HV4+g1A9hve93B0pVkQL-QKWA9Vx>%p`
zxg;T_JoOztGb`8Jt)Ap<?PbthZA-%UaW!>j|DHK_OtNIPQ27wVBjZAiE|YIP`T1Cl
z^)20!yR8kbcF$>sp%-tDgU<u4_u8jRLgGlssbwp$RG?P?yG#Oi{ZiSSuF8-Fc<1Z;
zIuV$~!CPCf=NT3OS%CP?^0yIYfhq>rl&O_3YjS~x*%=O4=8QD>tZ5W1OumllB@@{6
z|BlJM)q&v3Ft_aqvRD?vh8H(C!KE?qA0x8=0{WO#Z<lz}=pR3A@<~RBcQpa_Ui)5i
z4Gzfwql(FE%Q_rY0x3P6&~BY6Ouip#bsS@61{R!tbD2EyKS8C&OIq3DLx++Hz~Yc#
zK<1SbuA}uw`x<s>BQ^>qjk*VzktJ4`m!4XP%E&B)-94xuU`>$=#UCuavm`ftrP#_5
z!DFFfVeP1IY016N+c9J3xKdvsde9J9^Ih-l6x&t$r;s!H!&iFW{rojmBRruqCw6)s
z8Km7zw?MkM`7JQ+GhPM+?+Q`Zr|$Q@qFBgy@o3vgAtgmex&kUDaQCio9|z)TzpQ?l
zj>N!hhre4MnU+&QcnfprcD>^=;1Oyl*jD%>e8x|_k4<vX>-nLmGvR2*1~9l{zjEcu
zx>Lq<mC*=rmTV!S1gBi@mq%Mhy?Yx|Fvq#GrTV&ZhC1?x_Khci?O8e?Pz-e+IY(Z}
za1o0t><A{Wv{D!-@8x+B8#@B1Xw9^vhU73<EEXh&QIvzceg4neG44bDn<Q7n<uNfa
zp>t+PKAf5xSl^iG$)~QNK~FO4z%8`nC^iAJTs0k?gzonCR%I=ww+)Fq^=E1SKzIKE
z5=1-Fjk`_}i&Q<toS?v-$7ILM^U8lO#}z%u%5r_;%tLpYq1Wj)@WklewzdZo)>FXC
z;gUr7rBI4Z2i${mjJuP?Mx2VTc4p9Omt*F1AFO<6NPakkII8&xCe=fys1s2xpENsG
z*ApF$dkOc$KQsuOb}GL#J6pQJ%D~xz5h?XC$m4<100*C&9J{<QIXSr%CW!Bym=0Ej
zu#j2gd4DT^3II~ZZiZ@@VE?UeLmXWtR<%ub12l;+Lu!EPSFfd}=Dc@CA25JftE{RO
zeNXiK0Hg@Qq{nPO0AS4L>H-_c7egUVuUc(X!8xIlpGQa`ZaEKg4fQYPdVQkwS@a&r
zItBXxLUn^fW@r7kLn8mW45mGbYW~xSOukzZ=i|i-OO_9wW;n)XZZ*&@{Qcef-%m-K
zcNf4&<CdKNp6JGX&NmUGUS@2!L>z~h09N!H6v4pu1-G755nyK}YsdzB`@xSl+J@Yr
zX6P%<>SQv#q2GwY&aYE5u8q{P$wgk@p}TtLiUl!elXbRJ1=Q<RnwpUYcO!P|bc}2V
z3ftxV1ZSB+?7sPzz0b8sZnsVUOe<$GsnemFeu7kUI|)-)vtXHHjc&PJ$e7af@O|Kv
z&{G;<n+k&1&Vl);2k7q!g1C?)s0`-S1#dll{d0OA7SC1ZyI`uMCf7-a3=7AH>Wxk?
zxL}#fnFa8h>q6IRuB{<xSY<c-){sb<5$)zeFd(21j<sq9TNG1dCdd<=U&qHwSlxLX
zRe^V^XSa-wVEGnt-+h9K94l4<I7EnI&Jpvkv9ak!RY=Hsk6!tUng$riyn<MToD&vQ
z{*OrV&uj2k$9R_U0W#M&_ZMq8_UR$;rsobYnTG&ATU@-nLt%GAfF&4vfUZ*-WujQf
zMR}ENFtw(@@Wq=h<aE7n_EdA^bS#cW$p0;dLqv`{+iu6~{*;vC?Q5ddzr;UYrN1eZ
zN1>CVg^~q6$MF+#OTf=)A}6pDFdcZzPvw#WXfl}}czp~_Q3<Y2bMmWJY<~a#j+lXq
z%k=o>v-6i8dG^c$#+!L)!gA!YNr2GRt5+Y;<_wSAjEcF>MYl1dl=ErT{_i)kFiue|
zjaB;Z-})URogYOH4i2iwGR6J_srw&vt}vW(<NCy$m5P%PsypJ<X!sPZ)Rr9}mM{=1
zOk<*FU>LgqFbwb)e^UeG#)mZti@u3->wxH=^P@fILGd)DF=OU7D7CTQvU)$fi;=lu
zp@$JO_vUOn3~^sq<INt|gL@i3DDoaf@!sCL{7jKVKVCpd#G!aDT^CG!338{RqDnq{
z?n0(U0>IU+BK&ft5}w9xJ6~J?15k0(bvZPm=)+3`>&Z%0V6$S%Z{u!2KP&gudE;D-
z9}psie&=r3uo<;f57exH!{gR{_oUI$QE3((0-Lm7d9`KtJhBHczj_yaj$#<ts>{j2
z(GRgxee_5TC<e8;Du^LlzD2OpI7a@@JrPGtU6l7-t7oDi6~CLP_wV0paS2%==K$e=
zT?OMD_R!x7)05ytaA5>>3;Oi}VjhVR%(oB(VPirWRBOIT@LwJe9{BPli>@5hUIjz7
z$@{j9{hd#I`_YL1<iCF^{{%_@`iJP2dxdP$&HPM9z|34;*HFRFUGmuaHZ>q|pj#l^
z*bKy{IEGYNNgM423Z&ICKvL1Fr%QIjE@kq!L#A4eM<NIFgJHqdkWHn<!niZ~O7LsE
z^?dT@n@nsFx$(Xwjf|FYo8hT|n}hxN5X!9!SSf2^^7-<QfbFcnRH=5#?yeW|vc!0?
z;SIo^bqBloEJA8#G>egO1K@gboE{7)$ie}`1*?-Iq=F{kqk@w+JUry5ek2DRjJ>5$
z|4WhceV0i{MuIg{9h@#UBCC(LEY}wFTjyQsQxYn}G6R-wJ={m;!~)I_O`U+h2FwH>
zxI*YX?RIWkU`d}8dNTgx0PsRsCl{*i*y57{suMYyP$1R6S!(LW&%5pYcq1f@k_g&s
z?LF4+2*jXmjP>+v$yh?%TVu0dzA(7p?|%q5(~1u0_liLu^h>n}{;pqYJJHe;A76Gl
zI5~{~a&tjqS4b<M>=-a-W7-Y^tYp>_Baey!<Cq6IJIlSxvY6kSKLDwW5;l8M7${n<
zo)S@z5q?OQZD8=C+rcW_%rmX2NjxzEq08?qw?8VzdQ4PQ#xo`9y#YLbmt{d>)YNkx
zfOpb*`)s>!8N#8quOmoGrsEpfq4dEaEK)FJDgf9~GPssuB}kNRgzdk)1r}x(2@UBz
z_#*UkR1B61hzdJL7E!)|GZulbFZhKuQ!;SBV%2=^f^G@=W!nz;=prnj4Lx50Ws0NJ
zR(bI#YIo5WRzsgU=>hIN4#*OBNuFD8n$q#DwIVHIC9097C}3UthPRyC?p8DfYtmMP
zQ3b4Phhdx`8!i{mDmQPC(@eto=jP`NiaCzbb-!G!k@p4t-ua_7X+G16KSnB?ip0YA
zX9%x}<YkM#b~pcuvWkT`D)LR*nEyISQY;j>bkCyWTiBB)3il2sHH8jkr}O1PrH|3H
zk<xkhZjV1Cmu{=P=f6Sc?#TFaYhPll@cS?oOAox0^icY%#-ktBQ~uUSTS8@&01{(v
z|CNf0GGpVL$k|&NfRwCohl)9H(R<zLEI?0!f%rR*(1E>TedL6>&gX2VLlX$`wmslJ
zy}6K&>pw)74$M4x^U`2za$DmG)6y?6{s3LSEsyco89?LEXHsP7>^;p8-4|3(FsCQF
z337Pj#NA{t1O>p2b`iCcPZI7EGE4hWv;-nxm7G(TfJVs+As+9jzP(}d6@Dfj(bd{W
z!Y$FX&xUvO%2O<@a9Ke57^#b$?~ZoP4NQzrTAdP&em`T?K<I8Cg|@MVvM_o#xppRL
z=F4@fdro=&>GD`-z(6Qjl{NS?$D)mAA!$>dX&(4Ho6CKtyk3E}>ya*=Ik~y_e($~=
z2;2JMz&1cyVl^WnU<LBv?V0G%d(G41>4e~|wt4Zc5*tB)>{L7DrlD-LwSy2hE?$ub
zz5$kW{dSk3sRBAC*Sod8w)9o51pyg2nTA9-eDV({=+3i5F-7h9Ti}6(VoQK><?y#N
zHQ+>T7)*nc6;~^_k*m=_g7HUN(oTWn6XCL<?b0%#a(^RqdzcmO@$=5(gM9-2Ucda6
zasT+9VmujOcG}$txc#(4MK4`!x)6=nw@MwAC@}6TK0ArTs*a@wLW30>;3u$q*Vjr(
z;Y?T50RV2F=KSm2gfjv^cgimcZ+bnoh}A^5#PQuZ%am^eoC<0x=QE1^GQjvU*|YZ;
z1nh5KYZws}V`n~&I`NDonH4YwhdtFQkVjA=!hnxr4{+_y`5yPOM6mrQJwwO%mI712
zM4a476JP{0;re@l`-wZ4>_JEv^@#KC!v%%YL*2Q~K!}NDD>$!xMxp6P5^Ja63Kv2b
zrrJ+EkG)|^>G~y(QPgqtMmu&=^8?`B%<WzhEkJE~1O&V^U}5sGLHY!h#C*@;`YpTK
z5p>*x-V+=o&ubX4TUrC+RJuiHK$b}JaQubmKq}VW(BhYLnJP2^sy*##ZtBpDLuWem
z9GQ|2zHlnp0J_KgPs0JWRVg3z*8rR6Gv*GR*7m(&{@;r$)^DH{wxdR_TZOR~gzdd9
zDJjYP{`$g__-qmTRS#1E)hb1or1kf21Vy>$A;?p}(G>OGg=zj^ruSrx{B09iJi3fK
zq{p@9EIYyzNYw9FLnQMWFQkb(LuP&f&gc%m#g;S036Om~j!x6eUdyG`15z8WB?W#q
zB%gS+1^Wr4dvRDE=xFjjfXFjgPC6h|3e38p;%z02!&plQ8xF3RX-S&LX14=HQ65T%
zpXL}7c`BAbWOjZ6Gx|QZz4$6}1Em6)0bJ&ddQMM5_j6qh?{qKWq<S_>b4F1kta^}k
z!151bxes66MCn^e&SS&ZYg(5?8KF(@Q}TWF^pe{nYTMVD#9HKPNlVL8sEkciX!J`N
zNZSvpo8rz%!D#W_cAyFHRjU+gcQE<qP!!-ToGrx@a(%!4d0tbffSRpPJrUOTui~E0
zS(l8s!sdYvwSebDTpalgV$88=xaz9p@{`4L6|w~|3tLA?<whtPDa@)W7fMj3G9opV
z*10$7n9*9Dcb&>MeWj1gFUD{Ea1XX7XgEnFU7{e=dcV9BuLI0Yf0qhd{Dlfarz^CP
zbkrlW+Rp_bU3+nq0?utpRXlS5&CH_<BVlhHYX*l{dGfW)E_9s`QQRBF(>6^&j5h_?
zRhpsx@dVRpRnL?A)b$$zVq#Nsk73%%H<z@P>C5s%Dgy&+5`m!d$mv$iD?5sCK+(<v
z7_B6!vW0&mXWSlF1zJH$mDwU5gp`~d0xLz)a82C&ee|v4EH}XZ%4fl&RjNuNb$?1%
zVW{8)%QIEReo5wI$$~4tpx}K1ku*M>W_X(40hnBBWvT)zRue%P^$WRDzK{C#fo8XX
z@-pCr;}12)-^X`fn8KE7BR|-1g(pZ{eeZz>wh_~31X~{$q5Nx24^=&xOaUjBg_!G>
z&SZQY)k?W;kZ#a*?WrgzVDY~(s@#9ChfJ%ZUY>#}zag;`z&uQvUDGPIOHi>iER}(!
zhbRY6s|-?U2+OSRIPyTU_b^^{LmNQoFElo7?ne%=1itD?Xx@}K1bkMqkY>tS(gVQm
zuPm?J+L@2<d!WrgqdX`Sd8j$?w5oXvcB(6fGf3lm>=>(ZR9s#@D0_-`^9Ksn^~0Hu
zIUu39#6-dk?PXmiQ4A1Db7rzn2r|thBO_u1GlVyiOF_zx&|H_=Y4Iv)L;o5<U-<sy
zOt(x|MYKjY+U0MDj$G;gjGTXTGEGirYwlP_zA{j_STTJbfR=!K7*+Ap8r1kCHSMZK
zu*vJ2GU9yoChH#yfmWo2Tzqr|0H>VF(#*C?6&Sw37Y*Nv-!8IY4xDn8V**X&^saCb
zP6S-$Xofa&zb3L_02}KvrQ344-4M;GEwPq&GF|p;%Fh)8lB$7aBmu3<1SZRg(zCpQ
zK|}H%0Z$%JzyLv*wpla-Qi^nn&Dh2<9eGiF1>9w&LeqR9Hdj5En!G96f&B%W?!`93
zm{Mf55~qhLi&npG&pc2_VP1fNAEBw|4|MV3qpPW~q9Ato8ErSf)M2{)p7Y`xj=!Ii
z*w}SpcH7a2XKKKdS}h0c3%I?3yuVRd_vGt0>T{eF*+~5UGeMA6z)?3VHe_dZrcO}O
zekr8Z)B$AW$u!&0uZeF1%CM^D&Fk+C0uj>=P<;L03-^y1XBacXD#l~~c(4DDo^t1*
zVy}yNZ@Yy8bGde}zeR6!-b=;MYZv1ytAh-D3L6?!3$=&iXf?co-jb^tfnHEynQs7$
z+xdhjh=yDUFzfU1)e&W9?=z_dE1kP%I`oMDy)zeg&0wSR#2p6Eq=u?#MM;e~_4F)b
z`0rRIg{p4+2|yB}$Sr<zz2$u!9i4RfaAKy0v1=t`UK3M#%N7~qbo>X>+_bCshR?i9
z+2NuAKf<}ON;TLsHEm7iW7P`32h;b7sMNp(AdgM0<%a@AYhFYR)z7LgpFd}UkK6qK
ztW-Xdd;0ckNU86{F~W{GUt3SiCi)jbxU4*We15Idn(yfkgLFRyTB@DL>gwtuBTVxX
zR9ZdRppA|nar|L5uBr0WS2sy9fm0EkpR#IwDF8+25^?^9sQoKH^x|A__iw>=mX4Q~
zSDLj^`1&?;()qs-R3PGYkzW)Jj^3sFXTA9c-uGA61iXo{Q4z-Yl~}fG$A$SVz!WRX
zjPxKBN*}#-{^6Y;xoIE19725xuLC`)b`)=koqJ)dqb$%AKPTJV+?0n6*J4+F9VGI8
zySOa^NoL*Y6|iOlAeq)a`3(&PpB@v|x(Q2Fju`k9z-09t0i3@b04Gq#Nn+#FA+o>|
z%=B%N>cMZPd3V6d56bgFDd(n`<6xWjYHpog9_<f1ia<tzngoB`v=M2xvOyDBG!5>8
z6_u2{r?Os4$5~B^Y<nfMerS=}yzh!;shr`Ho3?<&OIfij7r;{?=Vb1#=f_^?+;)3P
zl6Y0znw<?&pDKm@KhoYhpvrXn9#;lb4vHusDiQ_=D4~K#W6&XW0BNNgq&pN*l$LHJ
z58a&xN_QVZIuG6P+h^`)W}JIxuJile|A2GgygcvoK6~%A*IN5Nu(6(GGL<LX0H;db
zTKx^oaX5nxK9=nSIN7SV7;82us~275w^aAsC_WhM(QZDt<ZJxHl4ZGKl=2pOUflV!
z>h+Iz{PvZbHFfOp;$g3*?;GbkRfX7GD%x@7o3+_w<Q1F(g7@bpImz)n1vwks)J_nl
zZN-{Dd8+oW1?G<xbi;y~a8lD<T<WWGsj4dk&qVg4K@d||HM-2WX<NUZHYr=UyWJ6U
za80R3G>x!N!sQj`_t#g)-&~JoIm%Qv9OH26+&(sC`WASdYm_EqMMg!%2&Ifv*#8=%
zIS>>yZ(N`hoE4GTv)X3mre|I7n4+P_F~5cI^2~D+lZoNaZlUT<U-W!>+>RYv(BX5b
z<hCL|b>FUvcfo0(p+e0DD#7Hv?_^a=pjs$MGO0wpE+8XsCjNcL#oFOAxWt=AFJB=2
z{bzr(3yDso@Y~uJZ)Y28X$i1s9_(#D2j0waOTv?{_{GlA)enq`GxwsL6N3E0Kj3)?
zhCY3}x^cH|>D?PRS~}_cLPD-%-C#;)TFyc4pAZSo!R_G7kO!ud`{U)S&4E2?4jEs@
z@?QmE?awOo=g?(EkuWaddE>3RQ0ij&*KMMrO6bqScVX_$o408x8_7ozrxf-0>(N8t
z<^IOU$J%DQAf2zL&loJ}<Bz6KnkaFIWRdYuRrJioXXNu&60(kC=Wh@@%JQ9RaoQU7
zbe5jA@QaBtMX}IayCzrWo4K026Hqz1K3EZ<I`OTns?wL76C)YL8OC71S$V9I(r*0B
zHk9a(eA6U;k%VX-BBXsI&z<kLjRfnbcjYJp3)`8So&tZjhX03&xCLL2rONF(&1HZ`
zYYd#TAjr2{7)|3FPq^uj&^5Q137+<TXA}HON$X|0M<8;dNI{HWI*)DGEGfihgGgz2
z{!Ym(Ds3FRLZ4elusn6o8<al>#!}b75HcJ8ram5-F-)F#4->YwxCJm?!liA}LKG85
zyCW}7%Yzu^>tM`MKpD#4i9bsA{(U#Q(BNPl8}{9OfS{T#v5tIixJE?0HqjM2cI>;=
z5@hR~vXngb`FZm#wP01!sACTa$+LFqXI4$Bq~J@e#>+m}Uy#;v@XGS8)(}7~7OxI~
z5ZAc-o<c2GL9aJAHR4$1k3etAk)yPkzx;3#{;-CBphkM^I9MA~us)4gRjsfu7<}Hq
zxG*`$A&t97N@tE2dZl!2vm#>Mdq2l1SvX`=S4>K{>vZBP!RsPD%OPTqzE`7mdvdcD
ziTtIupZ4#_X&8Lns)_S&*B-Y!J20ikC?REautx35Uv>_V3FpfI?z0xjN^&H6eTKY0
zikE9-%rZaMLqXlCD{>05KGj49?^o2YKvR)m9qgZ{qM|Z?^E3r#=aWLR!TaH0xn4F<
zQZ@RDJW^X7G@pVI^7Yt>89@@(m?7gGPMbxe2iimAdal!OT=>Bm{w7+JI$ZUsXp3sv
z$d&;V_?}^b%?&+v+x>MhmHp*=9IrO-Hm!34uIUFt|2t74fwbS?$SqH%)t5J006&+z
z!C1sH&l%i6b)Lk$@T9aCUVD3LP~xKy*qGYba5O0Gi`=l+@7Q;$*udJ!EH8VL?{%A#
z-!|PeY*MgFf!nI)SaB?h*tFVxpEuUx-hB2)M@o?wUKjVc7xFt$+*G_au|J#?T?BHD
zs?uqErzC%}xnY;4JQ<-n-11zT>8R@y<`dp&P(Nt5n^$W+Jy8h&{xg@6jtU=b-2T$)
zns@8X^nzC8G#46%%_#>6zG*TCb!wWjogUkf@L$L5^{Z(!Tt8Luofx0+ZNQ>D#w$5l
z6mUOXCyCvDasexHeP+>`%KGhlQEWH$CX!yg8=iV6lpu@onuUpqhXNZ+&Ka-T6g`gM
zEJ*O*sE%|w*q+SKs@PB>R@@psJkYJ>zL>JLVCpjGSH3FQwfR_A`-bAz=H|QiFJ`=6
zgNX1AJ1Ym+S!`XwndK{@Gi@JWfEl#fux%p?!MW}Xi(uerF}m!HQBA-Mi(5g#YoVoB
zc1m88Rgda*$Qa_gp1wMH;R?3V)hU057K##luRZugVyo_33x0m`R_zSZ7p1UJU=zpm
za)Etk_S28!P^~^^;LcE2FRIdvBu*Q1@7GsMfPPzm4xUlIOo;q~64?7BBqi0uR+@ep
zoZsF8#=LX)9;`?7Od|KAyR!5%As*OAyBye+K$;@%Hw_8>TgUzNp2=Y7Ov0e8yC5zu
z(vN_F+!klCuEXMCw*}VhyS<)bk7!5e4aCQN1gKHThikEz;XaS9uHjQS@0%YwWq{ZA
zI-sGLFfS!Q(9&C^0`ngJa&FCWjtc|3{q3u!eEn)sbyF&*HGjMP>GhN;G>Jsa^|IMe
zN_BP5%a<?b!V&xg>`A9FN*9gVnM1PE<YD|klU%*A*S4AX??-}L@Kt`-)Cq2~M%<sp
zrEp>Xs?W}!UZ0^9;)AS_o6>==)zqZtbYDA>o+-}fZ3l^w6wN8MvwcqaEgilyw}xhX
zXL-AybbDk=qQz~$Exudi{c^QhuA_2;SK9LnBl8Xa$fn@|v@@FBaxcXsXzEfRXY`Rk
z^;x5r{JUpb5kB@EM|_-*sK2;wziLwI{YqBJ!T~!a?w1GFi5~_`$};L_^m=#UJogo<
zlIL&d4}4|C`p6O+#0FrC&|kdL*7~)@<-mgY+MCy}{a}N24$i;On>fc~0@%j_lkYB6
zd5X@f5yPRpr}*F;&#3=^RLR$;n*r3IY!IAWCpj*{SqutC{p=|Ke^(Yw0_r?GJZQOB
zU~rzOqGBjMqpEeEc09XH$7=K~%~xe<H4O!JUAnH5jug`^)8Hya%aYKO^vZK>63wcW
zIAy|~@p{9PZ|^?fGcI9sGB55}7uO95X5nWb5?cIiI`-L!SRv--iDDMC9R{#)QN6l%
zA8ROb*bW1T^4PxU4Iw)P-*!<0pq+SgXj|MoWvymbgEz^Rl7*$tE3a*48D^Gz!Jme~
zC!AwDsP4&ht)su+)!3#JxCLQ%Mj!oU4EQ4&@E>tAz+F?Woa<kU_^5v(|B>5Du8gkI
z#6(a7X;e^8h69)GaXzw*tjw)yQ?2j(zAOP1yNh-$B2Pr(?26}h>*h@?)Qerxw6YEd
z0cBf!pI(s1)7=B7!PDd+q0rBf85RN$#jW&DQMhczt+uTW<c)Zgo@^>SK@CQ;r%=5a
zg;i<jAd<A*C$Xi*gJZ=-Z8@euGmuTqfvPy#%fe-8<bIxHk$$>7dT@Pf(XKmR)oC&p
zikmR#fu$yVH_o7i8Yr-Vxk?3)2Zf2HqQU2H@g<8l^Fr88#K$GVu!py3T`CRmI8Ms-
zKIWWnm(|02DzO~;0`Wm!^OF^5i0stRC#z~<DQ#ALL8tVlgR*Y--cU=)rafkPetmI&
zu*EyGC-&<p_Cacp#b&eHEUw!^Zb6!1Q~<M-lGVvj<P8<l5(8Uf6THC=eNKdn79GYH
zcdbS$ozY{ZQ<}_%0xTKM2~XKENj)L*3Z-K{T;&R33@R5*R@Z6plqiI6ko2uCX`_NF
z^1lae7IUgoSisnE<d;su-Oy4MG_=u|3%h5Zu7?#xf0STHYcWXMQOQPuF`=4lh4@rr
z6VLI@=T4L9_XRUt)3Rn}`=??Q_R0bE?P2}Hr!IDZz%umzI8Fn69p~&{ac~4x2^Y1}
z-)8*%Z~!4EDc#MRDOTinf7~C~xKrl3??%5_!89kqC$2R-mpimZ-mGu@SYxo*JbpNm
zA|+`!AS<Kv^e~<QC6+MIbb~02Rq>emMrPQjU|-XqciN`NFe%SishmoA^?I>1XIFK0
zLWFlf?)N>0U40>mUBPRF0hdEsZtogzkKg^K$k{P<%U~`Yvt>UR>t}Z39#Uy)NzT~f
z8F-83^SD97=>k-O+jfrNor`ooWjymvR#rAq$d{59H+~e?MM+OD1;&?zGu(tIl9BuN
zU_RA(HYF&~5l;*?KR(;4X;=_hUe4XN6q*G+U}mS?4YoAa6YXbtZ;)NMpg&1MOst9X
zY@o<=^Mvmfr|*~P)w(p^G1jR${w%SKuL)JeSul8xHFWH;n55*njCR!JyXY3K_i_Wb
zEDy1zG=D!t4a0%*wr(t9PzjYwR)=BnE!xZ;2dKUDraN}oGUr&SCvFh+pVzcF`TOd-
z1=GOM92RpLN4#kdmxcRx(Ifwd6GR#YB!YzQe*zQa&X^q!u}p+i@P*h0&(S0XOJmfF
zBeD_poE#T$m4d4MW~hW8g&YJ_S>&W2V78A&IJAtJhJ3me5{h^%cE}?l`qt4i7U%Be
zV?XqEf5<@GjzM1Hr1awS$D=<zL9mBTEF-?r_VhUmPHD8DNCJ|So`|tn^Sa1+^XLl(
z1G+9(%SldHe)+d;^{;QKj{r*w$F-5@2juE6kdlABnt#`A58VI+;Nv>|6_N)I{7EtP
zYgE_huBjkyvx|PoEyB4?`{J*Eo4<qLCF?%XyPsoX*x%2P))*jj32FcCIMaF=nAn;L
z`7A{uk3V3oAQ_|R9nO_slTjN=&@?yu{SN+q_F|XuL?ocV)lcr6{rx`v>F)jc5;H_&
zxA>Ecw%1yYMyz(XEFyXpPrm%?_q!3FKnzN~`<qw)$r55edO^bVh^&Ld7Y_BmzWTqs
zQ9taC|NB>Q==fdfU3*VLCiqW3`9I&s??6ml-8mF(-c0tV75s<S@Z0WmJAxq6Kv3U(
z_%lh%f4$b$ApnmGigY7ae^zV$*K4JA#kqX+(%ZP-F79vN>~;+Qk)YsRJs0cW`v?E=
zJFz?`u$=>eC|c4`rOu8Tt^at(f8LqDe~X?nJZ}BntKa(mya)gD#{Bn%ipO>51l#<0
z+E4%6^*|%`1TL5v6-DKZivRs(|C8MS{;jwLDSa##{-;e%q$i7WpMuj;Pxkt!Z~xO8
zx$-xhIl%xbWsbb3wEsWX_uo#b)+Ai_{?0zL+yCRAiN|j5l;jux+dl?<0QfT*Q-OIf
zJn#Q~vEhEb%>T#tD@B_6T72F$pDLO9dQlq9p*u24p{m-uBTJHJ`;7A+T{|5zk}doV
z%`LQ2*qo88YD{rI?o7MgG>1-JI;pA1lV!JlYyH-ptuti8kcfQiTM8qYS~O_Q>BaIA
zghfRIESghoPwzs@A3%Rb=MT7ec;B*I_6@PsY57tuL9XNW^Qukb`BOsP7ipj^nq$<P
zeV@{0&pgHx1DKk4<UQ$QC(mniS1o@b&$VAS_;=1LK)%e7$xrS-7-m-zGt5{uVXSQY
z0S7RLC1vxuD)h4zb(6mWymERnRZIVqm+ncy0G(^Bod~h<@vo3~Xg5c4tgQE_7X{pT
z8oq#}Hve95mOcIZFWVFHuj%)9J$dLJXqJk^5U7X5W>422_`SBr3q5;X<?8YW=37tW
z8)=voD6`%K$J<K=Oy_^NR@%~*JF##hT#tnCEkwloBME_$0YI(pwnO3J;oa8!axzaH
z#_>%+Nzc{*xp9iD>kKeR0zde0*3Ub1NU(ncx{BIVNvF2wTxOXhmc<1ep7%gz?b7T4
zpkT8-M^i{dOe_#e)o(y{1u@xsS;^GfRWLe>^Jo(BV{Yjri3ptyY>QWbQSZdoRUogq
z@mUzu8^h5<ZQl&O#{vHSmosRp$D=o~+|{P?h?SD@-aj4^Mp+1S4UTG|q(6&LtZuII
z(#6mbrnz#Zc5FI|%jR4KmemCe@9WqB<8}6w)UCO=^*54b7nOKB2gdSUI7Sm!+OK>Y
z-l@3Mdn@ZX6<^2$uEcQQNmS0QR*Bl#g~d2@yX2wO(O37Gxav`qY~6_46!dlxRjG$H
zy>RQ53ab4sKNMg8P#XQH#CP*^Ddoc=)AX?|t_@)Cfk8Zzyj4Z`uwg|{-KS5sFGIZE
zzSZu@RLzB|Ls##V@mvdk|Jqbk5+MuBLvIM{0Q)<bOv7wF*?yh?psEmH%81I#2Xn7{
zz3OfL^{&&qSGIUNR;@`fudS`0U!?3JN>O`=ow74NIazq;sN^5P7n)Z`Y1J9leilgi
zBZ%R-xm}YG8%u3r0z-HvKUTnaw|J_22?+_({f!mC*51f-wj%IYah2k$hp4E?=x^j4
zsNdW@$2-OGnXu;UP>Ju%jYbvb2(>c)d{J2^rJ}I|74yh+?|`cP<ef|L&ATL13&D|H
zRHDiElZESZT!O4xlt~|^TO?j~<=-XlEi{hMd;P6UKuAc;%q)AR`}8M=<Mv=LQ*M*m
zGlnHUzSLTSAror0acXrb4U#l8q!_D8oU7Og@G6eWpC_k+q5V=jmaX~aojE15a-sNQ
z@fhJ$PDLy-bv}tSI=oar5j#3O?CD*j-qz`(NzhCXGcrm~xo|Y8Kc?x|^_1G}%N8&s
zY8_66Zl~$c@iiVsCMKUFvWB+bL$Cg}=b+Zb5kJbWbK+-brJl2!MKg!c{8D?l-RdL0
zlk*3yt1t11$4|R#y}-ZaeUS~deZBD{QHo&fxJK}NxJ6b=!Bg{!$b(2WsvfR#lA)5K
zN7huPK0y`VDW*c*6u&C1XX3MXJo+MLR5eE9uyEb&eDJM<n2KFjUs&6F2V!nS_Coe#
zxQTRL^=~L`ZN1!8v#)G0#Yd~&pO38Ixl8g`Ku&TQSKxF`3?BUz_cfn2wFlIXD-Z8|
zoYx67y8A6)WxFa`TQ_<CaCIom%A&<_6B?eM#WkSKl_X>f+{(}b<ALs`O5l`aq~LJu
z_$<N9SPvU@tt=#m2;&y|)0|O%zJ8KW!nu=n-c)?N?F@w$Q<5%~ID@RX@uaUet%w$i
z6`|evM_M47#NYk+ZBS#*9fKc!`p4@(enoBI2BVD!Gt$UkQrS<(8L^)@gwwqcoI{Ev
zJrJZS0!b-0&0Z%+h}}LVJU<Y&Hdb4FJY^Fv+7Nv}ORnp?nml$Z$9P+7AkQ#j4rMT>
zwmcoc3x&=*{LW0(0TLBS5fS<&{~MPo;B<<pZNUQp4Tr(z;vTX|Omb*<w+k37?`*jT
z3bny!{HYn|_xh4X7+H>**_DGvzr~Xqg#!J_8yUQaGW{5ooYmLMo{DgPS1KHgVPJ31
zrJ@XES}=K8^ataeOuOo%$BP#(vg#2n=v<!D--Y4BiY3n-4hN`mA6!x=>9!)$|B9NV
zIgIqlQ>(CVmVR2<+1V*v_WE8HOxj(v;P)Bwz4S;W=Y;NTd5^BNbMvmdk8)ST_=P#E
zOAVoK{rpt_aL0Ym;#T2O6P)dK=VxMDB7SN<9N8psb9UYXAVG1M6awGjQb^7bx9?Y^
zO8TU`w?17*o1OFFZ7IwOe_B9DsbS??&ZPDFls%7zeM-j8<Sk_`ZLO~>gKBd6>+D7M
zjK|K3wdFQ){N@EPT**{~Byf2m_{vyys{r}!Bs0>WoiUF=DPCJ^o_^1{7oM*79B#nV
zRe}!mLw7-xFc=|Z^}*PvhujSE>3Ua%bev3_SDV;3AU=8AH0{exL_@1X9^}9Z6>Z8X
z210-|z49gxsai@_prMy>#SVopd_l-bx0=WDvH9NE$(}BY79L$-{4bYUwY2c=rXMN=
zp^_w{X4M>ayWc7@u&9DI!TQq~p_jPAa$&ll1G;NDEwx(7r)oRu(OqU^>T)uC8uTy@
zdOK*F;R5Log8J=jc#pAk%QWcEy?zQ_^G(q_0}EW!amFv)7$pp23=k<mmK~OGIHV)8
zTK-H{w)r(8S=W0L0_oj~tWgO}l)GL-2(!)H$&0LC85A<-vkGC1sl$ldaigJfyKd<G
zb#NrI1oW`_z<B3gE=>7Y6T(h@OLJ+YraM6-&~Lk6a;kAItBUfrIy0r?(tX1&RM59)
z)viY~T|A=Q<0AMDwmxE^CFPRmiB(R{6?><CAzm&gZ024S?|8TXJd7Mzk{+dey-}*<
z%%T#Dshtm8z=EIuMEv+92XlcGpKz>b8bq%3o>P)^Uz28y5i7U@(63m4#_Wmam1N?x
zXT_&#{e>uJGCu-egHL&#J>!ExCgR$R(n3#Gj6+L4F{YPQy=N8wdZY&Mu<<!!NSWli
z*pXh|ozE^56~#akX#o6R=6QucGE&~Rc$`8$OU)RjrR4y<dV7`aOhc&l()0&kC14lr
zJLyMnZl{h_Etbv=u1{oD<NkIayYh#fjm41-voGUN{K+{|pXq86=>UCA<GrorGiNOC
z#Fz-mcX;P<px4fuYwBDf5^{U_se(P)z61Y_-JY|)Mnw6m@b@xJ44p&68HJjk*UIIY
z111LKB`tO(gc(dz*SXG#P|cGZ#jOwK2cDg(9(B2>OrmJeyw{D)Y!h^;hbyk>%4tbM
z8axFO25B}bbR?Bgf7Js<MCy359cd_u7QU(4VNGSZ-RPWs){FZw8eNGR)L)g^lXda5
zqU|Ox1ghGulQSB^h~WyzTAgV^_TGs+J?X(l@(G_Z<V$=`k?HWzIz@U4aiyBs;An$f
zfe^+GM`u)`%Otbvz`lcXw21(ZKHn0ESspJ#@-sJp+OSy?8~lK!W+@=JVFpaPaslR=
z))r2aN%Ts?xk#zjF4`~ol-a|&Hew2ubBc<05Q)G3WhNtyr5Ac(l((bJh)q>_rV4Ks
zNB0y>;w7(_W@o(^;Yc!+iOX0TldCd7Fh@PFr|)YPW0VyZ?@2EI7~#%_<&Echgyct~
zp6sv295&{(jIafD6xVu}A5>@tmbp74dhj-r*GbOFex+--OSPcwHlI^*o(NJ<2`XM%
zp1D_UQMb#L601pw`8W`>85tN=6si0Bjdp8i^s75`e{%b@ntBqK^}BtS>PSHJ_YZb4
zG^-;Q*nZz7e^UXEEAz82rpmb4$gX-)Ifr7LvXA2I%4qDb6&ZC5KECrpC?jKZn9BU&
zlXY}pp`Dt%fIoVm`w>q$!Ya2`tY2fGK7E!#+EhjOhRJE%WSKciy@BAz^a(t9<hVq1
zX*gggW7Q?ayEA<il2MF!4ULBYNv(9s2pqD$ivHIFLJC)LsA1@34wi(CM~_vzC|C)w
zPv3}*MKFU1;$8k*qgA;+A*45ix&Y%R2^X+Ub%GAMn;&My4G`JsPXgENsM6&=cs=a5
zafS<u@evyK@3g#xc!A|{GM$K<y$!Ir&E=DLx7T=Pp(R?FRdvvh4CVlp3)(t2xTGIO
zH4f$-l#B<6?Zv)c?AU=0i4o9Nt)U%L%o65)9|D+lTpm!)Ta1&Bcuw9>Ovv{15$ZDP
zgbA^W(d)in9Dy&lh4E*QmH=@c@^jk(Ot+j5M%zI;J1c`yBN-xjF0%`yfWcllnpt-O
zCbKDT_v@TG1ys&kHN4y7#G4c{T{&9uNi6NaszK);v~k3t_|-;4knXhNp(7}~)Y70Y
zi6fqa;|b0mBbqrVB2YKKS%MycY1(SYZmMMU@t91CD5+Uz{5k@2y}w7moWj;=?%w(V
z>S7xV5gl}xisD0b(w8SBS!pF2C_!A#g}_>JBrtM<@pRO#0pcSX#={=iC3`)LaXBdA
zN+#9d21@;vV?%>qJhptB{edJ9dN9<wEenby8{Qem9*1;`6(F#$J9L(0wnmceeZv$p
zmrh?fEbo|lx6@VffhaE19Qj<<gBFh&d4^Hut#u<RJE6rL6ey*0iBKLbR>*$7hh&po
zjlR165m-q72Zy+U`e7DF9PbqK4CAKrXICQGnW`iA9{m3LkEzq|zmrQJ8$nV*{&+oY
ze26)AE{O~MdhZLl>3fOuKBb=!^O6Gw_Sa|?mV7Tets=w*vcI}eEIfMtS?K`9CEv1<
zJjRiuxiCaUA(5%b6|LGq22oh%sK<E{0~jXh<MI+wSPsNxru<m57w(O4SJy&>!lk}e
z6BISZ@C_SdGT4FIEUTE}a(KY>I+jWUn>ti{F5$(_GD;H4m$-b62g=wf(|Cs{5|b0A
zFi^1~%5E}jG;h_>X+EcJXO50_9M6gNakLRO^$21lm0LnxG9D`LgG^__Gde%#%Lluf
zB(paR?OzQ>Ydx^>*d+%?roW1zErnid6fZPCGh882ba<e4Gh+g)qdY`Q-j4w{LA^pl
zL@C{+_}I5N4-qo-W@l3ALz6tiztGfSsS2kBB_i*&MLTUgagp_q?hIi#oW3MI@`<1Y
zOQm7*OAI3Ygrx*mMKymMxi!aSkZ>gMZmUDA>)WDXfw$-SV9=MU_H{<nfx?VvmABmu
z%6xn+0#+2Znyn6wP$p}qy+*nEqVA;5?7KiD7k4&5aC(!oH)E#>D)fnI!mlSgLHF3C
z1a;Srw89dt;<VmX`N4T<@5O0evw=zE{jUq@M-Ef^!<(fsN~+MsCNP-6oK__pS|7JE
z2PI4$w~1Y9eOM+N@|kRkF*MjsdUkF)0z=Js{Hy<>inrW_M)HTwU(&~vfDb}{bAoMs
z0<X2)j{AqaP{K`yRD<E&Qh?1xqGv1DZ2umv{1p+3UBjPNKz}qP?3A88_5efswcV!k
z(ixmK{A-Der&tnA)v3^e9_8|17Fip515NPXd<#|yJ0g2|HJ1ywKEbv25(FF1Sj2sp
z-c#-XV+M|sU0VtkuqTwiCBy&V=_RD>aySG2jP%8DvVgXnOF+cG3$s2Cv-9U+AFruT
z={`_HAp&J(iG=Up#;cdxrmK>0JH>|dM!X6s-^YSENesO97`d<;G9Alyqco-^?o<eE
zP<eiA+QAao8CPP~Rb{69-LIn3Klp`(+c1YGnU+8=*@KlL&t2HKKi?b~?LL}3;)Naa
zLRGpv*%HCtf?SlLQy)#W&5y4nv{VI(5bHo3-T5Rx-|z?Oqr(HF1~SM@z>V56K5W(!
zu%uq}3-2yj?^e#^n5~d`J-xTuVlzkD#Rm^UAeGw6PHU+1{<?w!x{-h)RmMMw;I_$v
zLR?~Gc;+3vTgn9n6Pcco&1HM<IFc(ve=s<3#T7-mrb0*SpbW(q8noA9+QCd0Y5V<+
z$({XCVbY{ML@w`7qT6S6{;GHkdMPD>$Lg0{90^9Hd^2`dXJ8>NlJ&kl^k;d1i%_Rl
zT-Mv<1y_lb+wC@r54IZ-`fgrQ9xnOwprx$$;!hCe;oJZmZ5y}1VBwV6&Yh36Sb{k;
z)oe(mNs^=lD3Q)>Hph|E%cx&GjODMWGvu3Li=3PrW(f``aQ;+QprDf}zSjLht~D80
zJuvu~ZPPEUR?Gk)H=eA|l~wPP1VZ1JuOl2TpI^U_ikDW08!}g+;3{&I5?O$6isBwC
z(4dI{?8YHa6-j+4pixUeMW5fEsmdjbj9p6Fye8A3xE6J{O3i<Rw5c3>#~1|+P+uq5
zC`=_WSw)holT8&O1Hf7w%zwZIhIH#w$FIx9rP2K&jsW5XFHdh`M7Lwsl|Y^8i&Cy4
z87y_GInM+JASj?Y(k;}dA`cFhl@gA~-qhUKsJrvSijU$X!Wc5{d;9+9_YyrvZYTYq
z1^7#dJJyJRu9_9FMj~8vtOIDfO4P0RAl3|Kl>%j?=knYVj$1CZ-+LuAUn9@Vz}}4Q
zW9$k3ChTa^r}tmkL+Tv3*Ptk;QKn9=cCS6TZ4495t%k3XNQp>F-t}N8*MPWvLnSdD
zWI7WzMW0Rf0TQZ463_PLd?1ftP>hDmY%wl2xRw=WA0hDF1RRJEqJw51Pj#1A=<=nL
zEEJYxBztkG$$BJ0C1%fjmDlhRcqTMjpY*u!NR|pQV9S_wOP?pq^LVHnDMRwAmHOay
zh4(#f?$1UgYBEQ5p?R;|akXgD<Lo-697^t6MtFy=+qq2TqGq(k`I9jdg@=m4crQe2
z7Ow6qIz08>1^l1@($ANXo;8)L;ms|ftNmmRf2?7BA^(AMe7upe`Pv^C;9q|w<%LIL
zU=Q<{_pfr#Bn0m1(-P5%;W$_?X3+VEMwYe^@}xR;dw+4THb(1e#%e-Hr4FbD<$(%|
z4h#}Lr<R)RyuV}8_wY0iNs+-l|1XM)tJuP+;~{Cf`{fHr7AzeVA{J#HoYD8x(e#RI
zV5rawY~w}G5V;9~xHuT(tbM1cr5VaOs@zg{7Jo`5kvd{}I^x_H5A5TXynC*A3$3<y
zbf6i+p|r~@vd?iEBI|L(d7-vCR3#j(qzlBBLcjt|*UxUJ&&5+qOra@k2A=|sYAtLl
zG8H~3TKf3DQSZ6ma{!Iu6Z89mRi-=13jZ}h!2Uw)S3GPDjm<^(8>6^-(A4Cq9guXk
zS$>E$*+>KKegZPolRuSAc(|~e?@I!r%cv#ON!Ek@a)~>+&`xmIfo&*uKYP8chIsyK
znDGw?_+HD6Rc){tbbdXR1II(AOdE{WR#16$Y4si!>9tRp+3mzue$X|yLEb=K77Tjd
z3_{VA&EY)V$7yOjY5g%cB);4$uL*?lY?h$h-zK$iUtJB4zOC(5<@F_fsjJci6`8Oq
zK<c{YSc6A4KX;i_=@1IoH40T^Dv6`41C$8!fsc9L%qqHL?gPiqVo<OlKD9EzP_2$~
zsGQ;P=&GhuhUP|dl;RiF0t4h+XKLV_np@UXv_msi3=`-XelS_G+RXKkLAeBP?+<eX
zSN=2jQf{fQHToETc-;ST>yc2oL7i7Zu4qMU2rS*_mqH(i4Ka@&PdhnYe3XEQ&I4yg
zdGpw-0EW(9cA-!|E&Ml6s=i&k)KYojWCd38UqUcHSkgf&5w3+5z<GlaiTbwRL&D``
zv4&6a0&i7Le2=tfHt!0sR6(W4!DyA&o++XdqYEIxUem=&Py1@c5Ya-!xXYD!+guHi
zQh3*qL(;3YbBmvO4|Kt1!vvSJP=hqimheV^!qW{Z-?<SO%f8|{2w=SnXZRZc=S#aR
zD<?^g$slutCGN*-Ak*Pu9w{|}293<z`M%CMtwA39wWTtU5@n&M-jk`VoXgj1tBtss
ztBdz1!m2QJCK$eQ-cLV0#PriGNiFa8hWL6onJ_1yw1A`;oUyT*NetOpC1X~be|*P{
z|H)YpX&2$hdh|11rLv!7-cZmVLL20B^_>l<*Hyk=B14hZHN!2I+Q%@E+xT81bHL!m
z`)~)-B#Gfd+Fjn2P+7kN;)X<}^^Ihu2^|+{eRppAXSX1|Wjl&zqvo=2rC=vAOkX>Y
z{v>bj38Lfu_y**zWtvXFQp-aoN}qU!F10!sg(;r`k-Q_WzwB)fJz^1-O%x?HEj)CD
zZMW0mPg{QE)#Afd1~t4Mh~YsFsSJ++oPKKNA0h8L4Gp5Aq9OYR%XiCqRr?zebAol5
zUb6oEph=tkl3*^tnJGN*=ngY;mfpsh%I3;a!tP8}Ly#hv+yjnkin=P@y-J981E2?F
z*0lqOd-tuJ2T}r4^UG;&4HV@$BLr0x(AI07T<*XUS+fe9VD{mI;2D7sCe?I7@7hz&
zz_al)Kkh3%TC!vf=b|#OYd-3d)f-}*0u-R{aCK4kzJTfn)a<!ShM$7Mu>A9Xbw{Nb
zaC4nA=?FdJ`2?@--@j<w1LhY+&?gcs<DC0h6X6I>r7O5|#1%u*k||nEz+A4OS?5y#
zWmVt7*4SyARm~V)r@aUPtGp3VQ-3#Y!Nt)Q(U|JrJ{V2vp3@+A-feYRkm#H@E9~N$
z72M2yuH&cwO^Dt0?QP6S$=u+nO4BzJ3`*$6l2tW~rapPdR)Yn4qosghv8P7erLHuc
z+-LuSodikt;g`D8MP3rQs2Ayxtc~3*w#-?SPkfHxXbX=(jh_t+=Fb#>$Eh13zNPF0
zxRaKO9K!A2WaHgq*_}$R%ElE3DEk}9F%b!gg3*tj1CToy1DN(9t&mlt`pBU}AkM>@
zS=Q2)21As)CEBW|4{(*K%D4J4!_K=I3sr{)CP89MC7-}GLQ~yoJqU}N<6TfHY`o09
zJ0(dPx#E5W%Vqv%2cf{3<~q`91&5)+VbgkS4?HHsyFPT*h3Q7mDA-~ttn8gvoUpv|
z)Qdhi%D0hp^8mEjY<^^e9)={>0xP@vi{4!Aw~VT#`K@09LlkaOETqlx54R0Fu1au$
z>Ry#dB#ybF$leHD+C|8>XT}BhVZS=6nJtUHv$Mj%#)dcTSuc37Xdi;&QeyNr(vW8|
zRC8~k+}OPZin3*OO6%UI)}KigdbgIxR0SCE+^*nV+&_h2fySumCvFo8Y|l^?gHW8Y
z$1?192Y2Sw4-G&Xr=wVQB77)$gd=_P(a}V8=k3oVxUwmdHA!#-db5;}a8?%MA>NMo
z_0jyc^<4Si<Cx>Kkb-1cQ#w^9aYeT=^vpzD&Yx#@{#!5o*Ke~GMgZ<90*IvritI@f
z$<C&_p;KQSdTwtXhFrR9r1(|Bre;F?s#HIo+_JFShn23|rb?!*^xsG24J=>tRXwQi
zImoB2N2X$G#fBQa!gfy_3w=J&JwR(!mF}c7FH)2t=DegMw64;6a09niHt6D|2d?xC
zR`L&G=T9_--Kldv+_xdCZacMw<uE(EB+#n>_}rs~NjeKF3df3yc83yLo4na|@DyGg
zkMpy&CB5qLkyKAcQ7Fy>+hFAxayfKTxF8gCi}Z?&Kq!KgK@k>c@Z$gmv;-;>;*4)Q
zv2uph2a;GchE&B;J#6Dc5=$VC0@gc+K*Vysw{7i&Dfkw&<Xn{5D#dfEfZhu^OunO6
zL1wCO7`Dc`rF!{O*3h<qrsVp)wCWB!yU*=_JQA*5#YF`tRQsXK=-(#@+3wCH$IJtj
ze_a>k%4iZ>S-hK3A^mlIx-kpPJujQ_k=NQCNQUI3C8jdn^$dXLZRtB=56vO7(b$o4
zcgeJ2fT=q?oL0CNq3C_(sP^q9w_c*FG6ZJ=&PJnw8@+Z=`<59>^*qOVaPXbK1x)Zm
z%uUrQHQ8dnKc)jn?chC_i#=Dfd`{5z8+ov^-3w+^^s$z|48cFpI{c`PqVJ)|P2pkH
z>^SvqRD%88Y)CDZ&F-vt>yl^BXEAC`U%u#fJZ1a(61eKRxZMO#=)K4yro_z*6FZGa
z&kC;GRppwnYUqucRLk6-5il)u7%I?DHGaZEZ)m@Y0As(Z%MBI--O4#K9ajg(3lsUm
zwO@s<bRhZ<!>QEF&@)@zl1_K{RP&f{PJFu0AH-Fj#6VTTwqJxcL=-<VsM*I$elc)t
z%8;rEZ5;tnR6R*PzA1Fu%^Kt`BxNhv9@gwn-fbSS&k;|PsYfcPV(ANcW`-Dtjvxg!
zePE?G7w(oVmNwvBcOS6pKxnA|iy0I<0Y<y30P<s7B1srygQ2@Mgdq2XxS^VO#ngGr
z9z~RZ;6iPY46#}xlS+1G)ApTfd+>*2iUu8+SClf>Kelk-30N9I_PS|3#b@XOLJ!N~
zhh$7D(=9zOdvw1xW|Ng<5PK{1F7AbtM5%i?QQ%g%cN}Qo5Mw28aHpBRv!$#W0syfA
z>X~DOU&G}{nLGxrM3JEg6a2z#8vTdHAeZf~ge<~n-=KWfVsY>*^6HB^;z&Zm);WdM
z+MYI!GY!R7ClQxX50GYuvkxVK<6TU!H&dXr6#7E*grsgp*t)4%%;+55*DYuXglEnO
zOE@{fDQ@Dwu{z`+SN?AN)9+YXY(D-qE!x>T-RVzcwd$;9Q<Hag58%pjoz85KP2P%o
zUI`TM#fB1Rfy*+o5BNAZ(o#BI4pyne#2R*}#I9yUba3x8yl6jABfq2bj{V8CmWaE?
zOac43vOgp?-|4e0rhIIzh1CDFEBV9DESXRucny_Kqhlv|43&IQ(EPg)k!u+XEs$IL
z0XF5~&Rxn9L3m!89n9-w@*Rh!IZ($fDzw9S_Y_h*hIG|DDqPWWeh*ILjO{0;C1Z*l
z=C3niww((#MTHyFCH?&D^5z!j*_R9_5>|qYZ2G&62J{6@2IN!FU&1%ZCkmDQ`!-*l
za1t8S?`>4v?J>dTOb0f1?_Be5S(57|vW0N3&CkDir$E2sixX80o1uK+$bJ1QdcE0k
zX_xZBVMO-c<?tkoau*6|fmFPL{*Z);2IJPsaz@2$>Sx*4ik#Qj{R+_#c<8y$rFH?<
z63%YAc#gh0*LtB}IPJ4lbY%yMAq6EzPn{$sYjQcE_M!@_TFzPlbJj1&Jd}D>W!Z+@
z1<{&FJtfGqB!WJZ1izi=@7jP0rGWH?{1&N4{7g~o9EsK-JR;9~vNK=kWsSP~C=4Vg
zB`HCBWpF=obo3UZ>=wNYbw10E4%KgWfd2{E>y2IW^2pqF-sM?u=igw`-^-?dXE?b%
zyAn%2;S9bB&u(9Q<;K5!wl~K<ctM44SjHef+h9TR&3TRbUSf{oaS9R1Q5wb;<AI9{
zxz3hyq<(kzpWxRI=sHJhE)08PT4rUoXMC-|3(g2Zw-+lapdClA_d&=xywY^y+<6(j
zDTo3MEldx)Pn~}F^5)*^XCTl>_<rxSB#vWX`dlV3M%oa%F<}+Eq>zA;x1;cME{~<=
z(~xRiSiPt&*+9^qg=(5TgGrh#@@E(^xWv%}n(~=Hn(5TMI8XRu&c#$t<NfWw`r`|t
zud7$^ZA$%<Aajy2DDY`W36w!86>KDzRLVOqyDs#Rs*-vXpY)OZ>jk9N0Sd&ej-1QC
zhwk6=$Nvn^i3%EZvtfnXo6Czw<~GZ(GaXmLe4V>_In_~TJsGcXwCMEr_UlnU9O6Ix
z3H~;MYuB$`BXMG0`{Aem<-=$sH6|2%drgq{MTK)etsspa_fKBodG!v>W&E*m(|CVP
zTIa$AfqpWszm~kZZQ)<jecygqljXR*a*LjphURlV1^Lg@-V@YP{kZK#Sw*BVr{4}d
z&DdHQEnXK8`fXeO`GSe~+{U-8kZU}EJ)yCpHxvU%WV3K=?g1EygLy&m*K6_TKk~QB
zAr*{wmUM%j(HM)EYuCSTWLUvtzMAzb2}P9PRNa5I%KX_USM#0`W_p+1!h6AvFpA+*
zLN}nfo0l5+st$H;j3z3M^!_^W{ofz5A9vngZ>WF$h8v69cy>?X_rwR{YJRD5mxzx4
zPZ!INPbz#fZcOI~2H9WVkiT8aUtf^I0Wx2ZEBl+ve__%0&;Ov53|@fPZ1n~9pFK10
zdE5X^3aWT9`T7qm?BAD-ZWKpOgJIN^`r}`3<bSy2vG)jwG#HvOgqjckUvC=rlVV>I
zT&uI#yB=)|d=9Noo!ZZzcT24gCO?h|-H7wXX2%f_V;TqY{?UQ)_iOrynW*Q8EU+Zk
zt~O{(FgLz$VBlaf=*f)I-vzb(crhWtzpv9@!mxk)ug03;e!r+8Dkk=}1V?szWr7jR
z7%0}8qqsDAciz7z!9v2Sul1p<yM^&Q_4haDpL{5_sax@}P%O=?%m&l!Aa|yF8i=R#
zj_;$RO+XkZ{gN#{0-Lv#k}BuxJq7PovBt4Cne5$vE%5lKx7&!|TJXZhsp<di+GFYP
zPOy+BGVT7PZ}hk8{Ob#`@34Ds?D`SUA9^1D@R0lAiRG6DsQ`nh>c$Vo&HoR7<pP;7
z(^y^0=pS9OzdsA5;&JPd>H6!w<?XkvlLx#o(RphW<ayqFsSl88?I~}OsNuE%8HT<u
zc7aA??pb*mAwBOBo|9%sCg%+rq$PV7qV<(m`xE#Z<|rLAX=sD;tnzpZ^P6rU@|o{q
zmlU8k-TmE78zL&lB{yu!W$^yfr$=R=n@)$iasyiF{lLQcFjSbWFyEf|_SAWn>dEFP
zLr9oyKcS0^`r1pa=5(-)t%hNc{YP+E=zOvYd&8fP^Ld8zwRIz&Dh9j+@&I%zX(4bj
zdH-HsrcPDH@xt}rPbU6RP$@B7659B)O6f0Fghnp*`9%Fj^)IKvhcAH39q`2d*0_ga
z(`_vCxzw#A%so#QB=-m7bhPGk5(6m-Ip*IRc+a~Y#poUjL2a!P2g+)K=i^}mn>?n~
zE$nIh#75oYtnJ+!s5b^phtH782VJOw*{6BKoLMQQPpcrz;^0bh&RoO77^^(((3vkD
z@xLn<nhXMa6DlCgHY@zfTFwK=q}bRLY$fJ;nCC2dn&{kJj-9%wm7!czII>k?Vp6d#
zF9zVwIYy;kfB@%#+p=-4WD2n4KBkJbc0W6K;NDVca4vr$UU*3?Y1V+LI&@YpwbcJw
zTFy^>-OX10IEVLDwN+q1&11V5a5yMKw>9Yf5m~cAYzlvC%%^8pl<$wD?6VMXmzV9B
z&*T5T%73#<=YKis5hPboZ3s+(by_>YSX+da);xuR*-lFd<70=R)65GZ!}<|q&c+cT
zj#V}hbjdO(c5|@Bs5BeQNXnLzE)s|#%z1J97x5r+DxEGR$}t8ZQmdGGDgf}4tHJ$G
z4~p@I&5_$z9GNB^u7{D&_sOos*wvV0-EiS-3)HO|9fM@hK-g9vkU}iQ5<Ebot9Bu`
z-wsCIl<hp41oF%Q@N%8pae*3h0gEWt$($z+QFkukiiXSX`*_;(l`VnhVWKe=-ZFx3
zSTy2PovbB}%kIE%Iv7ia4O872^c4V*Ep?hx^M|UQMi5r%ja}M#x}U8QNnthgV+<iu
zGR~uO`Eb4DG`86v>kOR?H@Q$|)8~abWKPI>`AJJG1Kr;=P-tJ+WWPYt(3{7l6{V-n
z%HtfWY_%KCQE1n87>`cppG!1WdOGL4Uu{r`F>La2sZQc^kel4<Ajp3VPo!G_eXN%V
zuyGpi+9D;_P_(nJww9{fAui+@6F0nbIousiqLzf7+B`7(e6-27`vq&R7A%dmaU&%z
zg5?(hjYKHR{k*;IL@_cKte0$(f%K^H?#9AFI&8?D4gt2yML+{BMz@6BNpAf`9IR3D
zfdJP8{UUr8fo0lrpKc8G+$Zt;$Uwu-Pa5ZQ@B4{Oj@Xubz`8CTO**^u<<_I$>QZV#
z5Cna96({>+=l%6pQhT`I&btt9m}&mYK!rom%&RHr9iFRlyL|<>7T4NXS@$hp1A@$h
zF&DuWzMXe>Z$r9qG!en3tQhn~6<yhVu##ETVk@5hZT|7mq;W5{48e#oBh^XsR>%hC
z@yh`o#FB=29g9=r{raojet{chJeo#QZ-|VRR$n&I*VoUy;dC9}6f3mnxl#a3&95>0
z&`{gysCfgA^%nEn`UZ^a8yOlR%v`M8s5#4z|AwCg^{s(RI)8B<{rD~j659MD;6$7c
zM^wpG3XbOqcI<>9ZV#u3#Paxc@MyE(u1`u#?w082n0+-gbfK7&_%dO)8bD=iqa^R)
z7jEq9D;8r3XP~xNEO?w`asoqM)a^9)ty^tK3pttu_xYAx%Cq#<?+2(WFt?R-LH>V6
z;nb^Ogp8XA(iaZlNtBGhe9DnK$QjXHc`6TdehYLMJ9*^rX{#g#sO-l5GrhzUjG-gF
z@FjCfFT#E8IHj$I8+U;dD4a8(0%@~W)|w;5Qi5G!O)L*MD5gN%K6Qz7vZ2NIOeYH2
z;6#`Y6hPJkr#8!>G?{<Vfy?aIXPaf6>e`=Ou(-LOed_l|iGPNqcehF<xOr?W<)?{~
zn-Naww_<QqFgeK8ZkUI5Lk{5PGz0dH{IT~Ca)x&A3OE-I2U~S2oPpGP3%xOC|Aviw
z=ZoLyU9RPrB+vf#7OH$c=SydDxr@lU26XU3VWff9Oc-g*_x{_rjXL(2GX!;PQ$<%7
zgZ=#UE?jW<&WX$U@Q7PGz1j9e2u$drAUn${6FUVkeLlFKzPyz0PK2q9K)Nl0K0N<8
zl_QIm9gtrZK;Hj6F8Jk3T$eBgP9Nx>eer2h-?~$DqyyV4L6~c4IrD;t<-qzn*sWmU
zhJ9zYIOmF_93Uw@UYr24l8U}U?S^wMoc(XeP0QPSIA`hjwlWrg0}K_E_3lE^0CZx|
znM`H#x95QK@YUoo;O-p{je%m4)LPs_!hHd}h5?UfS<Q3K`jrJ7$<eXEb$&WP|M|+$
z0GgG@Wbj@Q*LD;*CJkkx^KhiGv*zft&lp|AU@6J=>K_NNW@$FgSbJ2g=V*%w*t%jF
znN|I-PLU7p^4ct_z{z=_!<kGXxY7@h@I02t$3E=X5kb0=zElT>xj>m>BM8e{kh?#Z
z7@~#<%OdmT*$Bk~JX+@6PjpLqZWFvR!8T#03PAhhvb$%$O@55_yB!6z7dhZ=F%}Iz
z!)hyLI9GivT4V3ub=WX+u_RM5bK5<jq%>-GV2A%ux!g9V%Eat@_D8}y3pcn~v7QH5
zHtmbFoeoaE!)0F=MPR|At!%$s(A7#iNV398Fvx`43;L5EQ*B1;UmwcRuk?{<D79X=
z_?-8K-WHfVbX4vxa#anFJi0lyQK(QX(}Th>1yhhABO40PX4hjQbq5EDQO>(3$FRm5
zYy^?R;hVrwELEM`TIYz{eEkDxd>3z{>GARR5{5n(f0hw@xw)FScY41tD19Rt6smXP
z{WZ6j{6UE?U#3S$5&yD!g+lC^jC?_ka6|1BjY5h}suiJGUJ+x=#mak3Sw&1S-*-gB
zC3EV%34Q)`LL@53LR@2FB~qh-&V{HoG=)ku9!OE2e~&-3lx0PtVh7U`C4!_ZEu6FU
z4-o})2>~%lBZ1+yT%%2Me7zy;%#NxUD>FNmYLb(<c5{<!=@@aWx#RkD+tq933F`&v
zKt0=l7VIu*n7fl;zphyc!xj4U5B!gpiu0r9xh$tgb_nG=@zt4oJ;|OgPwG2V93KU|
zO2JIvDTzmIZA1~3NAP0FRJ7kxKzG*x*5;fnSmp%ndA0WE$WNT$lCuDLOjm=SJoL#O
zzQ4Ktpq63?(Jwhbmrp!YZXvBHdoKZ4CC({z%0<AQ+yI7?=ez5CYD3PoF%^|;d|L-I
zR!`NB*Hmhyf$^+!N|lDJt;o~NCHS;9j>OiGUwOcYO%G3C0Xq-!-;anKbRTQbSE;db
zcXC)Qz+gQ-kndI|?dE1w6pk>o+x3BFCbTZYVjJt?x$pXL%OPb<%1`QP1+a(g9-6ld
zZLM%kY9NdKC=Rx-TrU%zyZr|m27I;oeG#vA8zW$;{aZx%k8k}XMu2+2hSBN8YK*|i
zJIt6uhgzx~SN?#ty}Rk)-W}Wgs)Fg=1oDFw=0klLZPY1|Y^+AQemSw*crL4KqJ`R@
z@2VuRa<DdDXs2r8K4ET?ST5@Ir&Nd1`$ybl=wgq!)^cGpc_*Ow$d^3VCdZ}(qtnNn
zocLbL`CmW#8N%bf-$yL|>;UG4DrN$gQ-PGw;=v@hFZ7fQIsYapL%nJU`4HB`f;Fw|
zh|fk=_B#dSN}MNUE+9u`3sa3@V;CV)Pq|z4e4{kR>0{Ex_a%0vXi~t5ri+kwO9R^q
z%z$13lTku-ushiyFyoBc6GSp|-!XKi0RK>-S*4@K>mINp3#cT+*bIX~z%wMDt~k0Q
z7etQt0#cT-2fC=igrwLfSg}nPty4(HGTm#C`snL7qN>O6q~+es!XcJLkVyqIE||W?
zX)8?yh%vp{Qf(zD203LLFLY!;Cs9cdO}CV!;rW2h02Ta!K?>0x>9o<;{Akr`4|H2?
z35Ez`?)6St=W1b6z5FO~%ko_L;zt8OTl?B+YTFS?Dkl>}6IBNu)!EpL!IBr{;w>hq
zR*<b%QM>zQ!%AA^xY{tMWJMLEWQX%pF)r4aC<f=$eQ<5D8l{miq^Kz3Y#~vR@wm-1
zx94Ak^OSS5%d+_-(A@bja^};}_p<V_KTXp4mc-VAoa{SasflIfEXEJ0W8D?WDA9yf
zRm}28%?tGUgjK4=A}Al;=)-8+%*U$i20M{<n2Jpmk2^@q_FHKI5zR3-GK*{17uLxg
zeXJXI%uhI-qk~a<pUIRV6GA&AS0|%}P|{BHbPcS(?NO->Ec}3Yyfo#hte(`hrsB6h
zp8UA`XX16YcA8l7i|dBV2Bl{<Aza>6J^r=r{S!AH7>(m&MR4;n{bzRJf&9UyRozD%
z(wQ>GE=|Tabay(IBYP|D3x`!p>aF&HFa_o@ig+Z?iosD={ON@(`d;kBgVI*_+Eb|L
zapZ%QZhRN{U%9`)AVL}~ciTZ|L~jxxJ*DRcOY*SR!$aRyVvt=zzIqW4ZrXz-X!G!+
zx+Ez<TUp`nSV>7t)YKg85zGN6>h+jMrOV#3Pz1MKE)Ou#nNmhPc)^-&-2IH&v<Nx&
z;BQ*BdCw7N_6CP|hv}}%fnyo?F7AIuOzeT|%h^NR<7WAhz;5I~fnkV)yyCOT#`(i2
znM8>!`*-fVD5fzsk4}<k&e4~|gFJfJa624Q<g=Ns5l(4vF{D=1-nU}67fUW@Ft?jC
zEct?}=d-8FANSDR*~DOQ7?c$5M*=^geV`G~66-eXatV?52*INNOT}@-W4m1}Cl_l1
znVB0H3<3<b$C(0i6B#ivQ}LyQ<+rAJDksAYA3QKsqIJN_>s&iH4MRmNDbi*lFTp5H
zhpP1`bxm%Fiz@dd8%Pz`oIhzm<hE`TAlvrAQaNg(u~GOdMnYUn%mPzolhF)p)U|^f
zOG&c=Y=+&PX8TDkf$s0hK*_kM1Uo4rZvfgb14X>dg1(f-n9AKuE`<nf`Q-Z43Ef6c
zCe_WFr6imnPRx&1vLtq{Gf=CUSFKUcDjpCKy1XS(n}yV7Yu>S{o62N+AL;LCQ+w<`
zj>;cU7i{e+m5#euxodKm)B(J&B1LcS8fqyOT=%0%YYTIm-?BFnF!}FzW`g}fjV2hn
z`mSrnLidbL6$fE~`%!GDE%kYW$n~gkHB_$O1G<uek$pjgFx@-i^n(uuJofKjO?qfq
z-o$cYur7oLPxZsx`Eyw9=vxD2I~-!E!*H}ufo4j-;L_BM^7tfIIhOKq<0VMw%Ifc+
zL_gH4_=o$n5HQ;{knTxoh<9ms3cfo(3QS;9L1{CI`{Z~fB)4VffE8KgQ>!s5QJ22k
zM|f}KhyumU^UjFOT}Tvn;>b-aYcHb)k-+&Oi(Hu`o3M~pKVHi8g0!q$Q<_D5l${L^
zUA`1hq!LGq*DH5QT%zln99m4G%e6DV8SI7pnxsjq*P>C+rKInA1i>47e4E+Px~VPH
zQCys!$W-ADybDD>>k!d5OTTTT&xubxh909zP}0Acz{=Mfe?Sqbsinq`(q>)CsqZ=$
zlEk;M7W=c71b^QdES@++_O(lngSwr0BZT6V4~bhOUOlp3d6~{>V5pvw!&I78Y-7IP
zM1&rBGj(OiOG==F*g@b3mV(;hvKeyo$#<$sGVx{IN1;-#0zu+(X9R*m<@|N)-_vKd
z2QUDYSwvqS(Pay6wBVx61;@5A#FRzFs~%#{cov}udGhugqYBN<FjRctA7o!8Z+9lA
zowYZ`B@E~kyRHwl3QASH&s}>6(&(!{xXRgLaTLBA_cnlqwzY~RrIV38A|eqN1j&4>
z94TEnz3|yo{hR%~y}AkO2tzgOJqf;204ecKo>e(VMb(ffj0stz&A{?GmEtIn8eW~h
zQGI7tuaxUoDvXLZkaVsnJ@rxU5iGM_0J_x0gY|A0(v)>W!HMC#N~gQxmwAjI{%<8U
z0CKgsUN9@^z)SY^n<bgv3)Nyjy!KaxRK2UKi4NdMVrc)Q<m3S$jVd1V34i#A`mWn}
z=j_3&G8^Od<T0KcF5@%;7DzA8VKTAJJkhvn=oMd~48l@-u?!&|kb5uc9FC7`DMSgA
zdUe7W(@6$WZwjuvRb`CUbG{eud?Dl*CsL3Wej(dB4Qj6Er|}Bpj_N`mK2t{A`FK`r
z6QoZD(05+`D7uXnN?1qMd@)4%SV4v5@GHGntsr6qu~Vt2DB)x~dTrqj@Ovqc=7`fQ
z^oju;+e)Eh$iue$_;SMXSVgl-2<va34H4g`{gq{dSlKF$2QeU@cW{8P%M3iOlFXC<
z0aPxcJHXGX9A7^(Q^A;SK39r7a?6&|eqV4kGUk?09$)t#jtF#RINx@jQTZkj1(Iob
z3AwEOyxC)m1A{E@VnVQ9jngJ_>%n#{L(kE#=g}uiEN5f}^7R9Y5G^O(<GZ1`*mvu~
z<TB&wh4Yz}WVX}Ey*K9vbD2w%AH%Jq7IFg``V(L-L0;tyI!j+a242)gifcU<Qo`~u
zJrwSIGf)0(Sp#*};sbHcA&5;|HH1iZtV`oFtT!umR1~u4-3AfKO?z0)hl4-^z8ndL
z{Uv@r44*!=mt!o33Q@tNsi|kZ-5LBJT=nl}o-QBZvFGp>N!p=AO+>I`_D#+2?=qnl
zHa}ZYQ)NwT9L($^PZ%@==k8NHm_h@Lie{THnR(I^{@``#klgyaKPnwp{&L)a^*X9Q
zOu_yRYo}|%0gP$mbQU0_NkWnm?7oDM?J!cZn?&+J1<a9A?}#g!$lo8#w>KtQpYEKW
zg(LoELI!=$+W5(WuP62?h%G)rcYYZJPbHoVJd{?Q($-MkDS{*uO$5Y8ZQW?QBxuv4
zicfM(n!~h}zBMVsq4JXTg@GO)j>+>KHnhms(lj(kn>U3s4vKIpbRFC^8Po$oSyodd
z#~rQJwhzD36CX|rtbWHri3$-w0H${>$clJi#Hnt{ZQpGtt)#@A^$U6mI;5;n^hb<2
zK)SI2?u%YtGME}5C99Gq0b)5(>>Vs1>m<@s?!!}Vhm5YBs@o}z9m@ozHkF#p$Q;&C
zct7+7S-M=cJ{VhH4$62&abw_zvy{l2{~7Cz9Kzo+vVV(sfByFUDK}N+o~`3bna?C#
zIHQR{_>$!L|FL%7@l^MH{4b?(6e^-3+D4%v*`p*P!m+pPy*E)(DoNQh<HWJo!LcHe
zz4uD?CVL!y?{D{gU3K5TtE>C>xPE^%)YsSde7>L0d%RxHw-TEaW&Py_a8l8eCqKll
zI)h^eG&+HuAcp*624Xs|wdOb-tr8F7<<-Gg`5*k`MdO7$QF5>oJ@ukiJ0!|%Guzjz
zzS1Z{S9?@VdMQl5^ll0Eb{{D_2B~%jLa?x)JG-EVUXqphaL!MZXAgB{BHPBx3Y$5Y
zLb!1g254mR)7F+jF|WsvOWg`}nel0m42fL1A(->aS|MyHe!4(%C6j)T4}y@*lnW9e
zLwxU%gG@lPI@%QF-1yUm<||-%e_NC2XV1f52L)-V#9(jaLpZl7AE`lhHvZ%jybDkV
z=AUW{=XJ78=}seeZ({I0xsNTb&D2C$zV5SYP;haFdUE+?%)@4U|CY8>liiafnG{Ra
zL>mFK?%X-$?jo)!t}1QiX@=~!zEA`0gb%X5TW_k+S;wdEWvPa4r@bU8x>lXEDuDDZ
zdE7}@az7xwffY;OTy`>js0m76x!O#!YTq4@HHv6)JxvhX3R0v_@Oa)%;h~Uko6Kk&
z8xRmMa>=qku7C=L>8+e6jD8^)qOr2`qfSR2?K$}E{24x{L8-VfIFCBMmOsDQhPbI2
z3uI$%AEaX1fJCF%cNj&U;23}v80VenFLwL<E!zGaN(Ks^?6mpVFDeeh{+)P)afj5`
zYl|T`%%GLW9gGfp9Vq`cf4`!My6RqV_@*x|S_6a*cgE*NDc*Wqs|2fjJhsn?c+lGQ
zvnpk2%VMFLCT-zfq^g57d{S@44x{J}0yO4LX9$)*Av%yqu&c;!wr?2(qFzbuFt#dD
zG1L4}|3nV`AgP+sYwS&0$jpw8A3wmEMy)<(#>D<|077ZIibF-r#FX`%qck#iCi%B3
zH~E6s@`Qf0gBf~ZoA$f=<1c=SOa5ci5zGA0lV>IIs;3Jk#Z2!Ff~h8<J#sq7h~ktq
zwsy+~{=ov+2q|nAi`x@!T>HXJkGs#&E6nVrW6#KlyxEd`=*Da!!A6!dflyATEWIYy
z#%48>%DS9EJ4v<nU3Qls{m7>;c3L6dj%TYz<vgm(?fIL?G;D1q_R+-%^PJ=eE~daf
z1pun)NC;4B)WIZ3yAISlhO{}5HR9P`5m6!pZOL!5ZhG6Bi&Oy*pMiD_|Ik-R45=*@
zf;w#(GL(9>G9K)(Nl@^ZVL)nT$jRb%%W9-%{ynrpOrh|Wi6qS|;?XXKN}4CL6I1Y2
z6K%;xSkh)NC2>PSqx!k5U-0oW=!L8azJ7PpD<rJ-eJPV6Dm7kAR!b`y*&JyfEvHW0
zhl+1hIHbU?p6?5a=x&ekVH7iD6k-iqv27QxYQ%`CV!PNKzCAE%iGNLUpYcT;MvQ;p
zT~ZJi!78SpK&x{Fq~q49gD?fa5WyIceClyo>0O2-Ft-ABMcDaG+o1GDrPgHOvZkX;
zzE+R<Fo4V-qQc9Rvw3zP_FI`T#A1&F!pwTNL-+2;M}my1li$q<wA^i;n~sZP140rd
zOC&~06(=ThFNg<eph6QEHR2{s02n#5-nbS&$l{GzsZ8X;5GJ`~#}En#%W7PdpNE7b
z-&!n*k3l%J-a24eri%WM@(M5>{fx~~^Ct7X`TM1X<fdc9wkE36L?V=i*Rs72a*On&
zi4EQ)toa{5`Bl;=+PQTPOTkcWQqSBM-yJfh-HzR|>zVzKe&850y=7dL1UFJ!G-fZ$
z8(1^!#B6>6d8Uql2B-ruUh)zmtxl)WbB$c6_iu+VRl=x!4*ouXbyzm`ikaX8QiSnm
zXS9HHl&B`H=TqcFTd^Mvw-Y~g*z>lmjc`ePON%U0Ug`bV{fsF`zZm=CSOQW#k$rbZ
zV&Hu>OMVS{_`bQY#JjWT{sO>-s@#bNS~4_8WYYBD3>wIMK7=R?RPBeLd4vNZLVklE
z(~j{&#$2YUT2kh&f|!MG-a7po-?*qji`bf~-cS6*+LVb0w7N2%#VTgl(cO4R*{2Z7
z`Dh#yi^IT4GurSYSXAr^LxF)4u?Ga=!$-$ELzmmo*;mk8Of?t{xun6qG|iizNBx;Z
z;5%Vs<)CNzB}ph)E)8ML&m3>bc7|~gop4P<c@+y!x`srV_dfmdv4$pFLP(|H-_=zy
zI4%=750n0uKTOW>@S!VX*b@O!^3NTa-E_LQKlP0#1p~$Mi{sXw`}d54{B1s(m2;U0
zmEP$aVRoa@gwp^Y$Xw*|DRer*&Q!tp#OPK#Qg<_*bc-a1mV!wkW#aYi=b=4Wt8N(b
z@1L;x+UWe)>Q>OEk}F<UbvOCbM*@!Pef5tEwz`wqp0>-*pOLOM2-n~*vB`RM!Zf!8
z29H1+%AnIW&t=0lM|_e(uG(O#%gsD2FPW-Z0V5u)wQDb_wZCj>vJOII&IhaMG<aBR
za2v{|dFB6B;Ce7*Wtk5MEsQvDE5J0uMB|tbuas6TYh@S^4{D0^YqdnrRA`d+cLD}V
zf-<r+^iv9bl`xg+12z6WE-0V&FU$@1Ircfva^|Ye6*gKD3nPtcko_*mtwd%Q!ywyG
zCgoc2TSulo3tLB}yzS;{v?pGn3?n^xbFL%n9#VB(;OH<j=jqF0@<>>JU1~ZYF&c<v
zh6wen^XtUYICJIL1))}V*>|5$h@6!{FH4udpL1nbTUy(gE!LZqxmw_2$n{>EB;|-{
z@`Psk3*`zn`#BByXH3qKmX45ot1ex6dH2$dCts{DYRmb~m+YmxrrOMzy}iXTxe@&d
zV-)fuECto}VFZW$0xA`6x6WL`h~yeHk7#jSdGZrfQecq?tmIE!b=q$Iv5x+=qMj;!
z$k$|AO)}uMzWRCvepw_L&1$;P0A15&R=tYEartkpmiRRmwZSO5-Q*oPM3j>!HTE8`
z??0&3xY})8%Q~xbLP|)BvwBm}1q9rLJ+8@N3Mqcmo!RW&wjr;(aS1kEO8F%G=G~Xp
zS8bKA5_+F*d^XZeA{Z4vt7Hr=N$6c8l^kY2A8_WO!1$3nqN3^0@y?qa1Tl2YQDX)P
zk)HVbXN-Ds(@ESJ!pJ3<<x|3tE-hM95hye`iN#(SS4-L9*gGYD#wUn%_4}~_nb22~
zvA-w{Cov`)bQzbV$zyNyFu$LWIW7aqlZt@xcvBqA4Zl-ypL!vB-a9VR#esILKvwuX
zL1GgkwO|j<#w;X}hB2oqPbIoNz5Kp)dEv|&qdiGtFR2yWNNpuCaS;5JJZJ)2Nm0r`
zDRpk$ikLrBUW48$dx{R~jxg%+(cAqXDflB}jk4cQuF+L7yLTtXWphshKzRS%MHP65
zXg(-z+y1BK<H3=Adjhi>pq5f{ZWdhK*YVQqK&DM_<mRN_E%sI*-+ep1r7PKF@>|07
zNp-z)lPL+G!jBU)&Jl@o*9hZhjO~<$$Yp!>-1>zWQcA-;DN>So&a`9apSSW0VZ`?v
zeS6+rc+k|sOC~|^LSm32CF99Ui0Y<wK)k)xul~tlHSfJ#E`Qk=Cf^I9RSN+O$sdp6
zKUd$Mo7(rqC>HXe&Ht(~p=LW*lY@7lDEB~dV<U&6mZkT!0!M$_<~KE!_1GhSeI*7*
z_o3)nkCQ+4$-nts)LGQUVEf4FzU<b+hy5-x#(7Wo<>lQWJEOgFPnnybx}p7T@^_L|
zat-fDcHW=TnE%XEetH_9T>9SH=gVU@)mGc=O#54vYT2rdu;d@><L^F{pT5I?eQT*U
zL_C>o7dH62D)yf%^shb^dLKmA@Ki$nAKeX@|A@qOrfEm*|B?RfX$;VSZ)i3DmO}XJ
z#{y4D2ch;VI#qD0{q-vP&-M7r74((Cm!_g<4E48<4|${vz5?J5C&}VH@oR~j)Y08I
zlWw^r(l;pa@`-7U{}5gL*C+e?KfYyw#~n9G7}Edc-TyCNV332)-n+HCMB{(?*S~yh
zP<h@RB-XxB+4#2~%kLH#6um+Fn3(gZ<eyyzkGvNtD{o?c6vTdc>%aa&lmhJLOmb#>
zAN{k-SR<EFoxLFPlLz|${e>4uKTQ8YHmQ$v&p*4&IC2?$pQO(}Q<H0*^HoW@{qcWW
zHuUmPnmsNz+HlvnKB5;lQW0ppQung6O;Rkukn)5zuElY$qV$?K&S4-Br!&8ufoM9*
zEED8n2;-*NOT|Tcz!s=BdP8(6wewx%xw8S85(|8ps-f}}`s&6n;8C_DE4Sa{=bgMd
z1y!pIXyyyQgfaB`NXM1kw5LPOX_`Isvi9wk?xV}zF#9zFA+v$XP7fxJsFd|`nDzC5
zXu=R8wqj*I$3=ZaPyOGbPK4(5|3}m*@C90%=|e*W+x@Zpn{$r}0c~>b%TsDCMT+?5
zC9y<Tjkbep$AV8`(EWTTOQll8b{REpo7}yq?l8MK)DlD_ZbO=1YG}(>@A<4v!by8}
z%Ud5S{pL)PW#)`rUU?%<zouNcg(M$Z4Sw|IAdFB3_wqO17ASCaAO>liQ7=9lln);z
z0ONU4eJ2JW5#NO+I4J+(ppeGauU%Qc2kGl&8@5&fhsqS}bjqJGFikNA9WPY^!Z=;X
z*3%(*yZFFiwy!Yrr5OODTpxZP5CUKY3)4{W^@d*5-*@W_2+Zh1E>jM30nitt4Is#L
zh+Y*$_p=dK6hiEE`07lwGi&D$*}lL$#htc5`5&q5uU-^zn}WnnqIG|?0e%far)$zl
znP$7MEZc@23fi(V9psZ-8;E<+Yk;$v&%v2=zH-WWW{Fj4y$u81TIDxaPF8>JI5HfN
zo{F<<+SO(#uu?N|-|NAiV4sXjB*oq?ddA@5I;Ru`Www;{`>tfC&y<d8xvso}M4i8J
z*`+~nuOd|CuO?0oZz-NADuAHy)Ic0klY`2jF(}ns+d&~be+dc;_lI_30NAju?TA2x
zpx3{pfYR3b^1&S-gGZE$T?=_Z2J4w#EnWD^!@hiji=ox*)-moIo+6Y)t(=QcJLrOi
zS{<~*3%J7n-ag4i>4W*NoK9!^A<FoxV;%lZEK~rhY@0W`@HUC#d-}t=N<B%el**iU
zFXw%jn2o&J{U&0~E#G*${)|w?8{Y?v>`J)~-0ij5#4+o^*lXoY#}^Bjjrb==yW8UU
z%QBujn`IhRi*;X{Jd@ak%W0jpcvb7bo~d<bBppVtgD~-;Vn!K-7Rn5C%DC9rvmDAC
zWnOz7o0^(RIi8I#fj4<f=n6szgEG-2jLVQ-%;I8FJ^s#$WrD{LsAndHM2}p!cc60`
zvY;t|3k9khfA&4KWn?B)Vw{>#Dsvy$hFo(WcBygzbB1|w2Oz_G5xT+ot3=`s#i7LW
z-YYh~D~)NlMadgpO&}msAbLg`fQaM52ie1YH$FZ6;}Mn#(sPo!G!XysM1OhQrqvTe
zQJ3HC0Ae!+A9#yf?QWuTqVz5sj>_}H9}jt{6gkScZDBeGwMkjyTJ%jRPn?`s&Yo{~
z+t_$fQMTUSXZJ4wr&6M}$>1zqMU3(~lv}jUv%xmge5L>az;xkECUw=JkSQnYPD30M
z;W&{nH}iZdn<|Nv>_Ngu5T)md#MV7Jl?nr~MU={IXL`o#<)4N=0m=D%5ot6n)qju!
z1S%=+$aaPQNE?6kv%R%-=dzht^~%*MN4bUU-!1k=Kuel)+x-6x?n=r%#dh~Q-u1%y
z^IhN*H-r6^sbQ<2>VCf6XsV$asPy_%>)->%nJ7jkaCLmKb|ou<0-P-*zsi7jUC1|x
zm^6y)%2{Wa!nk0iTTgk>Xd&2>m6>c8P)J+#;6RjQI_2ntLpC3zlboZPCZ?a&ZNzKR
z4-P42dDB_9jfG4X%@k#YcEQ-o2_b=-R$O(kyKstluE8d8X8QEk0@$_i^*cEYH#efk
z|AOth;(5vChXaX1(tYTTj@R>1sbjy7L&@_6K=|1EY5m;VW*-fWQ>yVZfdLX(Q`@)f
zeDk6?gPt+<nbV273dxW5D)gR7B^gf=Ox-I^mW}S`(KUMi;(%gA_j9J?t&yYeO;ohT
zyW59xh6AkCpVN{_ig8TA194&!cts(hf6j7Us;N&X<fl*mFPdwU-CN*ccaw6BMb*@o
z9^f8)akb|LGDeo<NhbROSksp(;>FM)RkcYibeR;sNEws@j&E*Y_6QN3UFXXNL+c69
zXu^J1xnwoqNu>lQLT}cJB;r6P%LaBsJM@5uFI^#)l%>ps#__2qK;l3IkU6taUbusM
zaMzMuun8V$Xc!V)jD+0dpR*Qq6pEA(AD;y+sxb&SL;JXiy8~F&XW9^Q960Vf)lFdK
zAijtW5V9q~I2(+WnC9730~(Myr31R7;$O;55ECT>S^LyNc6ePd6kT~A6shs7etFb}
zMKiAuZ2rHoT+IOmvkcIfAq5k(;B~Z_jPHdGjAW!KGVIwrfIrzt<-b9$R=~2$6YxuE
zg$J_cW@TT2S;I#Frfc_PQ{3IpYf0ws0PO`WEZ5?aX9}ODP1K8=9rB^%-#dB-`oJ9B
z*0gY_cfnvcEvPMi8#Ou|aJl*mbhWZUO}nwt#521fQ{jflBqyuY-G4OO-LITWGjrvN
z5<g^>_S;yTX7{4eu%VjgE`oQyYa=0d(B~>^k1WlnN^0`Ycj-@A%)WfzXD#%#4@Gk*
zhs^khg@cB!v>1D$l#?5WUWNC#`?>kh9-L(eVn!{9Yn!Dm_8H#~M^f@1EZ2$uV7byb
z&7I%=k|if?F8uB=dZDp)tpr10Zi)64a}8M`+!73!8(E^8st%<pN?GBeUfeIIirV8*
zU}NPdColp)kIS8&^2LoAAk_Wd3zWC4tPi62B&BduFzkzk!NucFU<gp{FY)FYm?W;C
zEfVjaUp&d6akNi%dIVG=cKy3P20FZ>_Y8nxskncsIFXhcRm;CsoSfk{Ft81Z{e=e%
zpna7N+8G9Adr@WsZsJ0UuKi{aiJz`JubLx`1iFd&HZ=7VjEN^ZCYk#zCnds4`KU_$
zr1FACv!iN9yWkv6Gke0HI?i$6_*dGh8Pa-|S-Vtm7ceR;ymH$-0~eo62x&#8a?)%Z
zP?O<&$=vgKvY-2U9`o3Hb5(OUB}vW8o-eFto^TNNY0>7?4a=)Jl%t=K&_()u<hG-z
zI)GECpy?Aaj|{1+WO3$I`;nKvz30xeMOD+}&_MIs&FwAk&fW(}m{5BJ!8r*h>F1Y0
z$Y?K4tC0@qh|ao}7f<cCC_AV4e<5AHGA8mbm@E_|d7sYDNq)9I$JA1ZVl{YV!kme<
zyH#j$Dmj;zJWMRvDau5dFV1(l#uP$`B-AyNt`_voHHdqrU{|_I97u8W{yvd+9<UYg
zXbDH$QR}KBdFTvL?R7XnsbX)ekHx6AQuaorKJ;KJFz(5{+{BVmE2BdPdd>`;yEvWK
zx;-!mkwrWv?FCRH!9%Yr(KhOmCjF9$v|QR<x+2E>QHak?v@9t9Ij9~>*#twhl~4YJ
z=oof&5l;SY*fpk^s>48CZpy7#tzuH?cWy>;Tg9^SoU88uXj*e13a$Yyr)C9>)eDk0
zjMTFEwkA|upxIjKu|=8d7kLPyoEToj8D2L;kbd>+BHBgJr`TM%;~x)A&mpE!{cRYa
zU|T%{10ZE=7}2aKGZbgScl3fW_OK0*xpEh7mmHzZ?1J%Y8j;T5o+Wn0PAFWtFGFnr
zbTw0@?XfT^G(GEFER*1o^Wx^M9<se+gVJ+1O)aI1p;jH{BY_Thz-2WePPNDd*0i3r
z_ZEz@ai|-HjgFoxN2VvEb4d$|Y{DGf&@c6&xinL_P)A2RL7^ty%#|U{eu+4Lk)XEo
zJZH7?Nsx0=JZWBWW)%P+?qAYe4-tCj!DfPA5aExFS`Z!0@6!%{6R75x&>vH0<2eHB
zbZch5j@zX!UOk)}b!g(a{5cM^zVw_lW#j2={fZ>i-SvwNWFljZ29TpT&B|WBhpufY
z7`;RIDb$TxM4XL;*~=n-hI79v76cQmFIlh?2m63`kArqogkyPp&lm8~mLdbb?QT9W
z=WO0bq2~^UL5WvoL#QpbW{%Xftb@-t+Z*qll}{Q@#cMAaBjN+@wyhbvK$UbHKZJjv
zJxF{gbO2=LNmJ~^%4&||=ctsVas^x8AfeeMpVcH^cPi6h7=_&3r)*IZbQzN-g>Zbx
z-vO>^8KPRp=T<HNLwzstvzAkk-t$UnH>@Z#kbLN_PVuNCTHh@$)IkTqNSLP3{gzQ?
z3ZAX4AaQC{Bdk&rXt240oYROWgvxlmE^dM)LkY%O9)y9g>PZjZE~koJGejxc?>wKJ
zID$@)Rygh4ujKmiAjfK}3B}^E%UX|h^D$A+OHZl!stPg@vz%rpZeEmX&K+7s1bQX$
z01)ef*@=@docPVU^e|oc8C014Kro1Sdx>SUGCXb|?faZ&2WlQ&PsP(fi*@hYMXXXl
zU;#C;ZhZt{d#ZPD7{xH5V!ofUinj3X8!UxCrb9}W?fBia^1f%Ej#Da^`E{h1!ymP8
zZX51C)7GI~E+u<woYp`jfA9wBj9b4K&&R30zH}#@RF??(fbj738YjK$`F+l#qfFce
zj)1aX8d54ybKSZX!92k;=K_S-R<wL4q&NhIm85@DV(Hio-&RUW2)+lGOYZD9>{J{d
zn88{QA`pivI@DR1HJk%_yB1$oK~2#C<86B~x)bS#<m8^X$(l%1#PiD|@^23%)`B??
zZr07UAr6Zw#`kaW{onjN>)3nC1mEGNri^n8U5*xkE9*KSd+n02RWcTrUh^3hL(F1|
zy1RxkS=$jp_Y>SwV44DIFx>ri%fE3_xGP=wvP&HAD`{us27=&e_&}_vrpA3H@xExg
zly=nyn+jW1g*!K+uA^dgj7ivr%|2r(JUnV0<kHUdOG`IjDm=9lBj#|VgMo-$TtL&u
z+`e))f@$}fh83W~RD3^3K3__jB`;#6f5+y7O<2W<2|2br9=Um?D{$woJ-M^@T#K(w
zS23q9vL0~^2*j3Bv{USs_7!)(g60#;VoZC7!QLO3^HZ-MYmAXVJ1_PnT#--05Ecf`
z@vD}Qd0ufw*MmsBPZAYDdArdfb~beVUV?9M7kG+}*I3oEx9|SwDzK46Fa7EyuZsVB
z^VQ1wm{IsFF7NAIozK**we-(lRFxk{c#!4IM`o>d8{7@*s3(k@7)(PT8Ef7l&uxa5
zSgZ;{vN;jAQVQ72gLfnrUeIu6JdNpN_I!%WCE!pOCS0}nT1H<ml=F@ciKtTW!DI+0
z_DOY<Su${9zlPKSCl+ktGj(2Hee!RutMuTgfAUN}gi@jf&98QtKY}QMWb%0BoRn_K
z-bMlp&-IR1h$0EGv54`wi@H2cIs|gseKS&O%nv(6cW+%FPqEL+^CJ?U5EFDwiEA;@
zAMlnc5QR$#7!YfrCmQi!oTW&DGM35CI*kV{0x+5eI#4C(Tla&6C>><igx~1{4z|@j
z`e<SRE2Yv{YhvJJK9L9_oI}oy6fUVGb5R33X~9TneJewEtLJ74iZy{z>h+yw%c3fu
zCvcL?1wG#&e}Oxe=$TmY`2C+e*k`7|gH_J;lLTTWL0_Jd!T!+kxq&mDa*iuACRh|j
z?_xxm;ly)Lu{oA2$@2^{t@AYGQ6wgu4m9iP|JtX{FA0pi&8TVcFqta63x`6$p23g1
zunp+fJI@n)!$64ReX%Fn?A2e3p0Orn_z)`>L8z;#$pZgdC+$bBWt$qC>8@52k?k@R
zn?I($1a<7E>MXq&)buI#vHq^T5T%RivF$dQDXk+WIeP1H;AWrUCJa*25uvqtdm<Yk
za-9%aOkP-cA&`9NPPP8=smXxNFpV3XyFwQ-E@iWQc&o&^Ts~YmL)Hz3xrs|sDjI^C
zPi`Tj6pTUWl*kwr{UuX~l20KW+Sc+3`lXNeKTE+?)$)T8O<p1%z+Ne4kPM}3`*42Z
zrD%~3LLjJzPNmt~2?_2;=TCu%iCoUxuG4Qsrku84R?}d0ZeUBNMsFzwxPHRR?|2^R
zcRfknjlE}_Dj6a&(zx?H+LLL<{-FG=rf-${lny5u7>@Q*OreU4fe&_#SIm&_ZTyM=
z#|0_onM{FZ$d!jn4F=|dKLzTM?Da35tgWslDYpJN+&ZiMink3MZ$~X?j&>^SKXZ88
zYJZ~U&qEgjIxaEo_`O~PoA8i@hybUAw@TFUK3cTooC%b(Tz&O+8~T3;c-hS)7K_o7
z?J9cT+UxjkK0u<=zisbzq)J<MSZesTrxb!^X!LhP${rYmV=tQc<VfPHVfL8-Wz);N
zvL#G3e)oxEK($kWgy7)k5fBQMNz;c(IXI9t?j1OXcDS$4aN)xHrv|5)S136MS5T#8
zj{5lJ3vyDQSd}B{QT?k&6Zww^Mn=x+HqL=lbaM*5oOh*e7x5mKg<18BlC^I_LybTc
zHlHb9trt$EW56|oOmyHLek*gj^e$K1kX)}zmDb0MKi=*gME+;ercbyG8%HMpC=&c?
zPoQLp%8$2$k<uo5jnTpZ;k4Z3hl;vg7m3p-`$Vrl6reoxxnA+u;@M=^Bi$JZmRPp9
z*mgU@XZ2#9F|u9AE`UDNVD}7$lH`g&iBu(M6cG?14rZ1KCoe2zAq?b2$5qG8R6s-k
zWd!ifc0ycWiimeTgJcm9EU*i+a@+ZV=x)?yZIsPV%z#)4sC-eWUm%}9$Tae}!pzJb
z<m4q6Co)Ur{d;9OMJt|zE@rLfYJJiai+}g>8(3#GF((c)tYVhIyH>7xiGB0rHM72g
z4nljDJ(hJmti4EtLw%Uh(b+)VD3Xva6XMDNrFH->jb2av&<=HY!${Zlgvy%|JKuvI
z<WzKqf9QvwEc^RpeRog>G3^Uz{oNB4Xg$;chSg~Z$L(GLf1aW{9SkC@LExRw&<KK2
zyl(_tmvJAYlnA>1nUjnL0e<+Uh@^on*?W2&Oc1R}Wqg3Fcp4}KI7BcM0il=12xvxl
zsZ$ttK_$`Z)Kg$IwxaJgxh6zQgQ{L@CR*rTqX|s&ICz^E95KSBcY}k2Ej$BD(Jwbq
z=n_$XyA}!@mPul#Bm1;+uD8^c4XWxyo}9=R3mRX`o(Tp*u6g1>#nm*BO>>0$w0|uX
zz%m_8WV}O>;vLt2G+hb22wE>$nsYN2ouI&3g5%%bv|8aD{&?3_2r6C#4NqR?IpLpP
zL;+~7-5~v4gD&b53E&bh<lbF}Bvu#7)65z5__<}f;tf@{El|ntdvZ)5>iYg6vkp1;
z1lQ_h|7!0kw*lIX6E??;YaQuK7!7Qmi{CSAs8U+w?ww$tRePW`FuiqGMUJG!sAyWN
zYcq^exII1mvQDR~VfX<fe06$Tnw4f$dRpo=XtL5@jQUaseU(urR$8dM4v3oCuP=_5
z-0(EOejiWXTf_&I7h!A@!|rq_|7omz`}R$XbY-HInR<3_sbB~ciPjoR7GR(}^?{1x
zb2|^9tL7<FOBdG2@mL;2!v|MX*clBY-)oSFyP5BN4B|01z1n4m4)bmWxzYG~tZR8!
zszP<yRZ}Om`J^+B5mj7d;5jsafomz;AU8UICGp&72RJVxa1I{^sb0HA6Fjrtw7y3$
zawu;?v!twar{}ACfR>+&e>wnQR(!kC77&A<1!1Tl9QT68P*I5)@%ySKGxVJWiGjQ^
zTY#}EKs72xB(U0Oo3GLcc!=J4_s~gAoLH>sK+&hL;MYI)5q2Ss$!TxHvXrzVKmPI;
zzY~}zLinagK(G4H307k#RK~_;gi=U$L7L#k4Jd9E;+@HwV5Ant?xZNz#n4M-?!KN9
zMmr^SJCqN%{+{DeyK9s~q)bxnmOMW2Aju<fl0JNoB+~&xtYS`cUs?-Sa2wuyDrxkI
zVqXYx$>QNaLcdBd_u~GMde!VDk3o&H<vmro1Rt+n?O<-xWYUbqLFG%6UhTLXVGPK4
zE*)M46WdgfwvUCAa~<bskkA!6DmiuOG$E>SNDtTCKZTkdC2SrzFZakD$eJOg^v8}J
zvxS~p2U6HWXs(GkYp_ofpE^POq_ovQx4v(A`wT!|fmPfEO5*V%WrJ{a=XuX*AgbK^
z(qmPh4aXboU@p1{8dLCzX|MPG`mK8L5=J_TJdl@4)Ir#YD#}m5z9EaJu_!x~5()Ja
zH-Nroy*zU7#;N$ZSYM|rUEn^`!aj-l5Fk#8+JMc~_}frrTak+sXsZT$?3Z*1>q|5F
z`VLD*PHJ(T_jJPduJ@(P&H;V&w&tfB<rM2pPKhG6wz%oSl|DprPVCN2YgEM8at(xC
zc07}xh{<>teF<QZyzW_zsLc@UKw6mk`Ar^!rr0mTP+B!WoZp48iKRpbfb)vzWeJfE
zH4MU{66-aa?ytNMIfYAk=wFwEjD>MArL}GlJetC%{DkGGqU`J&SIIRDLVX2jO5b<t
z>ukTOUGK1mc1S9yqD4t4)?Me3)AnD-ldm(#1S&c7p8sNz{rL~2_7j0s0|yafD2sP1
z?S_rll7gM0dd7oisutyx{tY*;KNDyrmnuI)>@#tlu|U62wKyo;ut9T0!<lg1<&oyW
z7K4^H&%n*kHKjI>cZr|7G#Oagp*hJ#f*Vp^_AuKV%Z;eU6V~6&$v(2pKceA%H$0d;
zo|gzQn<D&LVsq=ATTnBbJ=sVUVg@Ft#+by`NiZxR=>peEq3F9%=G30!DhFrFAoqR#
zm=u}$K=qyRN=#h7WRF;Tb;2O9ZSZ_5dk6z%RhC;R^m%5m)m}-KZ`NW*S1z7<4;CLh
ziUqs;wf!A}cSU-fB%+HT7hZg7s;H<~E_c&AA}1*o4zjT#btV<``+KzV2W8PO7WZ*X
zue{{wqdtiq8JKqP*WKmsaPkG{P(9TssGIB@J^kPU(7Vcl7n7g55ax`@e376`1FZPh
zCdT(+hsE0;`uq#-+6!>k3Iy(ozwB{x00+}gsYp?;m?zV4PLP}Drb$K<)G~D?%0~Tb
zq94hja@pa?P3pavQQ#4dxI23}<E_@>V|+5eq1gHK&>0W&H+Aa$6fChn^hqtw?k4O)
zMq5Q0Ucdd!pA%aPjzw;7>TL|Yk?avpZ=?uG;Z9QrOU32)BK7q~yO|`SH14L2dt3^I
zPx!Gq)#H)pL5x0Blez_?BiQx=r(4vOta!^NE4ehz`a%`Xc?<q7UNfcqhPL`O`^h={
zIh^fC@fl2DR#IfT;Cq)Ijk;2^TGUPPXIUAhZsi;?y(3v}%omD-K4XGmsHPu%R26Me
zLY0W9#CHEoC=pA#lD*5oz+A?_yi!GWyP6TyPuPh~qLoceQ$jISY{RY5Idp1fqJ#tW
z@*$dNvAnV9=f)6n9W_aw#+FvWQKApKrt0g~?O|3oi;`z^maYo!FA($h(TfUF4+>%U
zTDDP2-Y1IH`wP{NIijShK<PcfM7cKKxR4;^%QO}LRmNJTA00dbP$*K|5njo~^-b$-
zHDfdU$Sb}P3W~-ekO_9Ave>t+BTW8470YL};oKb5sXL2npT54&Di(6#WNLgXG3#Bf
zqN)v^eNLWUkLn)pK}O*M&snI(N~)qg=(6?{s5<vuO1F_h=TewHw^51b@-@}^vclQs
zv<Xdx4#=U^9^_A?;s7-@g?&9h*iYugJ(iPb(YP=c#2`_eP4*q@YES5T5;g-QCHX?}
z)Yj4snwgvS_LE`C+XqvxI-Vpx1{F!QW=`5f1Lbv93}&fd`8Xx3Hs@v1KeSEp21JaW
z&(=Kv5!#YPz+T_Tw4KHqHp_E)|G7sz6tEyV!7*}_<JtUwEiE1LIVv*GNcJQz7O92$
z<83jZ?$_x!{#*|2&b!?4(fY#d1NPqUTvn`BbNG67qRn_y`Erkyq@Da6GBOMF12Srf
zy1e^jo!r-x9hCx)s9SENFMbTYXw-E=c$x8Bb{dzU*g$zo=ySCXslm+?*VAepI)ww8
zpZWzP_h)$7a2g~jn~DzL<SROCYy5A&yg0p_9r88{@43ydOzn4vjfb+8SnV{NS>*BZ
zsS$|$0nn^`E{?Ci2uhsR?=LD$q`3w@Xh5?@1OOxshHY8&=V+;ZXS2c#hm;MLqs$7@
zO}2|C?o_7$FM#6Y^HxL%vEKI{v!lAopIN&$pv7YSUSd@gRyyuskdVYVPv5FUt9g5W
zU1iuTvW(j6kc_8}7yU$<?Lq`%iImZ~>^UrEHDkC2F?=vKhp8qoNiM+EZmgjs{393H
zS6;7b?cys}t|SRQ+7l2MD1Vj*V}Rl>M?DUxz$xziV~3aOCjLrr4ZC;&_IW=RU2c$b
zxoiIEdVeU8jp%)n`&hVs2ne7h+<J$eMnyWu#lCWH;O5nx7{f(OKy>2npwo?2S3gkX
z>8iol*ero|8TCxZT71`&I2n_fM7`URDQWE{d(}-OHo~TucnIIh1aUet&Qz!66}%LH
z|Nj>mQL9uGmN=;CjZO#f(2bxbpK)CtJN-aMr?Z}aTLr75xbKhk_fw|--)aW;kh5v4
zg(pynY=s)fxEIqMFWF|iWY&{ior!BTGM2FAtTWLYzYw#J6`gzI#9v;Ao|6bPCrjha
z6%-oS35nqc%}q^+l>%LuxcFNY1q9yiD9X>Oe6?+aZ#ed@H8vye#oM79RSA@M-sFPX
zqCh1vCDraA_6oV}Ybm8U6?^_VRR7maK#M>X$pH4Tp#wRdyZ$cwftOD<{zFs!46ZiR
zGKmfSAi?HDXF!1sCBD$3_Jqk&7RN=S3584#4^;0_=D)^Ox)1F?d+q~8UpUMiQ<9UD
zvzLt{<A4sk<MNc^I3WtjIe)z3zxbW(Irq(jinyT|<u`3{=OX+3vrN)Y{k698PJ}?y
zE^%hLq_pzqR2R(120NrdaKE3ee4y;&|MIPVc{gX7d_%^FYJMut{o-bSd4=y^C}S3Q
z$f(9R@>7EK-wW=4S(A?e(|At&(_gOo|NX}#PX)QFeO%E0vIzg?t_~li|L~UW7|GxN
z<iGo>KmpPCeBEc~-`>7}4$08akgP3L$KTD!I?EtHjM-fhMEf^4{?~8He|#QasqRRK
ziav8Q9r-Uy!(YDX|M6e{>*|Ne?_6SFxT9gK`;YX}@Gan;Ub@Ns^BX#X{Ai-a`$zr}
z>=U^m3gkz7Y9*)p&zAMh-G||xjF&?=AvI4lS)S^=9h9hBR6O<DR`K5~E`j0wvGRSG
z#JYfmg#{DHwh-jVWLLIP>o_&<KhxHRkhF~Lkb$%>2`KMvV7sb@a`KB82dZmpv%|t@
z5P==Sw}C3au>w!fN?hU9|LyAj+g(M9kBI%shZZOzO!gJ#Gk&1xMZAe%bhM3OuSXsk
zwB@ct&_1T<@Q;|Opkb$ozYn;NMeA;G9VSC@*di0U<JS~)p~eK^0M$xH&2KxPt?Kkw
zuQpp+T4J|-()MQGj=HC7Wt2bb3GsS=fb&}X@MsES#;n283FR14Cxu5imrKcNyOgg^
zYAatIT{yj9Vs=X@T->O2_7+F?H^$VCk%Fn|OVXI}<h^0K2?jRCt&4US&3gT=BtQ3r
zs=Pb+_&bp7l^*JCdLR*fcH$g6dn-%vrX?~QiWkhD*TJTn8+d8<*h+^s8TVvTrZGf*
zwxEoxP;mh@pE0n}kjcy(1PI>KK>1c47WjH!8MBms-6Q)Am9{mg%vc+NL1&|&Vf40*
zL2Gt@YkA;LXXx8k0x$QoA@VVBhSM2=Z-*YS2`NKk6jASGWM*FC;Ao#{Pc?&<3>#su
zH`G-Xl$1h3-MnaRzf+Hj)+d;iGcjXsJqP8g{&poGhbDxp{e&628IKY8kwaN(TKbQI
zOM9ASu@J^!<<4tnyLlNclV)|#N*i^~p3QkfOzi1KwY{41ls2V3_R$j8<jc}8(lHv&
zhK{!rh{R1+Hr`|(yHUU<p4H(RzG|FS<b7PfNr&I4XPVxq$>k|wvuT_%`&b)9a;*Xa
z+v+Y*eK^-6qe>V1<#k9Yj~9*Q(-RT=ZmvQ*F`zN119{Nb0Hj<z9s367I)gt%Iad!k
zqw)K2Tg!HiwXKa>XqGi00VY5aue+>U!!TF7&9f`cFw&@-4(19!wScLjF60_qK+2d#
z?99!;YO=NCMVHkS2t-l4KZx90Zhgie2B6VXFgZLMBzK+Qu}sGA4k{(6;fxit$L*T>
z6t06~_}?#`l+JF$TMtG31EW9Q#cO-doX&tmVc!(UAQhm?wQ(wiZUSoFS9;xVNtB#V
z9)+Il5ZU2Fh6TUb>Z5e`F(e^kStaOOow2<$h!}~XVH$~;xl@YP4MV{tU&aGBUA2#b
z!gx~5e$`DopLRuoT&>HmxUsF4(9?El)v^1E1!=1hK8A$VU^(x|?T}Jw%HEMew>Q&r
z)Eb5z7LrCy(*p9G*yx<fbr?lph?>GrroeQ+(Z}5K<bzh12mC2mqRg$Xz@|e;0`ppT
zuc>u0#V1m)KzK18Kw&upz!=26voNwvBcbXF{*<*a4u)TLKo4Z}`aCpLx?m!EwT%@d
zd_~=naDh%$JK-nx)iyWTAz+^O=Ib-uw?F^&ZukDp5e}Hw+E6<Ciuk%=3xhIfP7dR$
ze)5iD@d7XRu}uU0PjEO6Mih6$M00UFiB7fZ>gr5J8B7OcEWLE6C>~eU)Lipd-GT%c
zmvf`}x2?61{qcA|GS+b|E<&Lche(g67i~}f0h=5fLhT%UvrK4u>E=@%lF#gYpU-|v
zW8UrL#RBSU{iy3^8Ryiu&uFD0P3f57d!{ON-y%)cGb<EI0%{K}lx;*eYv$k;Ig)}j
zCr4Z;XSH-fSk0ynD=!V+Fe<9P-?o-^|N7Ev0?9_CI>si04PHFSovItK?T4HWH-o_%
zFiR|N9#7B5l}6!`Ie41+sZ|+BrzB;_-@~!648@I4d9verGIMt>Il5iDhkk>2*QvxD
zAt%1Zq>rzw%mIZ(C{|dQqj#<|2O9eP3Yztnlg;m6DQ~|xcD0K4gEdm-g;wfCe*VZE
zGBmSViUocyC(F{gYorhEmOUiK;nzO;kgwS~W*?Dw>z9`?f7aUs4)4agJQQ_Pfh5yK
zfYQvKQ6b7)z>cz!wsn)tkzgUjAG_p*`mNr*<-ks~+yqRw?LO8kq1K8z%Bn^)6;^r|
zsWs+H<v{{zi+GBI{15b0|G@&dtnD#=fL;o{`}%NF#u}aRK`P;u1lP>ElK58sLiEI(
zG+{(F`F=%V4_?l7+c2%}!GR=(o(LlG@!;BI#aA~?&;zaraCUkB_c^d4)-u$Jl%6e5
z$mmQtIXN3M-&PyB$T#5pTCLCMviBBn;^COG!-yo|x=r(mV_-&Bt;P)=-_Xz#1xXC4
z8oLg(Fd!QSJL*;V&qu!dX`%$-PqLYZ;H@BYO!{!2$3JkBXnj|i;9lCHDpsSsxeQR(
zE@b{x)BHuY!Y=Ry=3nny{tBg{=lfU<JeaN{`&)0VI+YPA*mZ*<ckaf%6wo9--~X+R
z<=dnE{2Z(YNY`-RD&}3;80#mGIva&9;N<oh^ev>t8ozl7ow(`4`mI?1MAB#@uc|KV
z<_E;FHiJVMNvSZeRMbUwtShH8Q*Wc>>8QDW0_b98m-ONMVws{%cek{ECnm3ygS+1+
zF-dd7JjyBluz0jY^(=Irfl8aCql_~iUr!meSH6Aw$u#UDI^SBp0hBxknw6jOJ5iyj
z1$B=UXs5b!QWscF`E4>SX}M7g34VqJ$zX1ovC;@swYA{je`S~VEljeakcsk~Wlvys
zKQe<dqRZAm$zWY2WIFA@AG_{Dfm(`=Wp$Rsfh}-f)PT%~jvNYBM_1IwDmD=2ZPDgr
zMGt_HA0RVz6QbXU1p!2+V==}OOl=maZ;t(TUob?CMOPt)-a4Qn)FCalAX;Q*5^U@j
zN3PvI4T~_un!5o{w?ft)K3-32)_E7xMd}o8G)<O!CHi^ztIg2yceuG2?x}V&ZMv01
zB!pSv<_P6o;(3Y-7mL%r%1A2<x+jMd64;p!u(D5F$(=J>O^}mHJC~rUp$#p*tHgEu
z+s@pJ4L8qt+(s?(K&Y|Y=QJxk1zg+IB78PcFO-rE!I~mcwis^PRk`&ousB!hc?$bC
z33q*$dTM^Y^f^7zofzl>1q;y-dq%zzp|N<}-Ey^_M;jshgxb^(%yLY0!v@{E3P05D
z1%MmzQTy0^0eMUoC?WexH5pYC*?}bs1EeO60VHFJhSM~H7KlEF5_zGs0Ik||?TXv7
zIkIy@&^EyV8#jM4d(#7&Q!`v_$=oWh#W3UJ-7I#^bC35Q>CyVe4cbNmQ%|PQB`Q_x
z*MPJ&otQ=1s*dV0-N@!<=X_Bmw_yvoupPhzF#%%*N*CdKIrZz+g&7pD)tZS{ye+*`
zgebGsT-S7*KpR4cf2!xnj|jK{D`-__f9X9+2~jDR*%#&l-VTvc*C9AT>r@@gY)%mY
zw6QaV`{b!4TB=i-H^XWczCbgWowo%M&~a}}WlD?&_t!&Dwgaj;G}g1wKF)$80CVTz
z-Pv9+8y&Z}x}fo{)Ex$sHfN=bH8c!WzCoD6sQTjvCTX@8BDam9ZEZU`0F{6B*!9p6
zq>H0UFFJ~Km02BZpAG$F)PKzc>8Ra^puDz;P<o+Rpp(`+Ct$EX9SA_%(Kke9fEjSj
z${(?W>e9@4Qm!YZ$=6&0N+5PH4!>EE^9kX6nYMPhx!fD$jsB@le$U;cSPMI_<uywb
z#hSfNwqyPp!G38VE-C5a2B32Xk2bscHc(miQ|SKmzy3PQ5m=(?0LkYg676Cblc(VY
zh?%b}w!Gj~Im1$QP*-DzI}?NNVQj`*zl^2REiDbX3aa-cy5-)TX<MAjU0j#A7=vcz
zVA7i(nv0D+sK**Hg!2zkt3Pf_?VB~70cDo>JR)Qm@jLf1CQ%4n(-5F5@sUy|I?}4g
ztgG!jsFWVJZ30G&0e^$PC(G4Si9%X5c5O0(qVJih>&Ae|8q|u{+Xu!6cDx~zU0oA%
zlrtYfkQQjhkASg_F#zXMHUz9J@t-OBbd#2zyiYvsSIULoVlGfuy0;8KIg4&m`Icu9
ztOW<@EawNa3i=+6&G})NbEDb3g)|#$Q$^mz0p9uY>4I2?>>_v)?JjPz`_9v-HCc1Q
z>t<jJ<9#P|ZZ#jwrnCRz{?yznQn1?Kn5S)YDF4w`4$qs`5}~v2BXeN?T821Mc=5s^
z*5ZgUy<(G>WW{cds(qt^_R1M(eP&1gY*lv8K#CD>w7+P@TOsvtKBlNPh8`+fwI*k1
z+gS;Qe(fnGFsG;wIFxoT4`$Es!~2n<^_FgQv^hOxhiuZIbg`mXw;63UYvH0_;$bSn
zNke{$v$6`QPAfA-%rl)Utc`pkZgRJhvgU*>Y#SHme<<`oS7e-jPME!?7*sTS3e{j>
z0b7zg2p$lFoiVhmX725DjV@A1j7??YNWeFNludJhZVUhBp=(3JIKLE}rGHnPfRlEe
zWX#N~XuNK^c%yfA3i_Qdb0_m=_NAPlpAhOrdRz5%SBYAMG{(y=<0eM!P>)2omD^)Z
zTDz!ij`v@j3|#3o@57sLEcEn|>SWCvtI61MgPF6p{Pwi5b{*Gf8aY0d7MiS_mhFAV
z?|Qv1e8W8`h8<CJbs&30CSP)>+9B=OJaQkFhGIbUXvqyd6Ta-cI!AB4km^RLR<j=<
zrc$|oX9D`}c2r}D>#s^#upLJvo9)Qa?9y?c?L&xeC>57pL8-+fx*i;$usL|NKOI;}
za+9^VGkFhC%fngxD2{joTI}v6&|`Ex+_`J&#nrkrWXSKVG|HIKejeDz-M|5vVycc8
zdf5fN-jN!19w-;^=GnsjwO8;7Fgw1F480q0(W3i1Ko?<?{TrYgoU&i0^}Hu<7Qdww
ziC0#O9{S6?AO$*leWiGNnrW2Ad9DQTxdtI3{d;3lxtrIWKM42l?{^rbHR{GClSGU;
zUQq?$iFXKgI3D%Z<J$W$OYf_V_S4&wsl_RR?G#=1WAD5?9=<khOCEj@P4LeyJ*Q*}
zb4D*0KgZVNQ$T5LO|uP&5)uLh`-qsR6Z~GM9zB{GIIA69Pib*-l~134X$zSUzudpQ
z)m~_aU5&E^GhyDG-xKy%eaf_YD3%1F;0T+|&&uv>v>S$8x(HVKOK!7`2lRW3tXiDd
z9(?u<a_7h~=iG`}xLq*`uiZe3YD*E8>9vntVFdz|;V#}hZ&T9?;aJ>6PTTthnbDUa
ze0qop7VwOe;aT<AA<W<?#7gGf%iRb0E4uXv5lwpTrQxGtRz6Epoy~=IC}%{+o9s7n
zS5xuHAE&>2*9EEMUE%}W#_^8Qx#M0AfK}^xb%@|Q&wp!iFvDSC#Iy~J0U)`%c4bpL
zV26ytTg|^N5&!ujU{fC!??XE^6uY@K6FW6ZP_2%eJ;Uouxv6jF&Jn2`Cu$YesKyvq
ztFl)}H%$<$)+y(Ayd=3@#wqn)uv()oEUwvO-~p+z!j@H99@jzTy&n%C8+06H!*-6k
zO)DCc_QDK>D_H&doFyx2(pQ$ZQeNoW!YzL02VaWiYk(vVsNIEv&2QB#V=)tKhU<0n
z;GtQoJja)aeRXpFx~IaT0uZ~?o-RwgdohMN!GlZ{XpG6(SkEaYn6SNK`nnob56(a%
zto|CzKg36Qq*`X#PAgHpn0t5OQUT2N;9ya>Kk%^h97>#lf*m|hNO0g$i5iCBn8Oxn
z_*$&jjqDN+kvD0^NX#f|J~L?c-r8<qZ&x|;xP@}@zRj_IKEk4mjQs?Xe!IVW&Vpy?
z2#BoUXAZ)6g{;S=`SoeL=*c2>1C?_uE75aw67uTkH4!q;fK7HIWP&(JyuKQ-1xvx4
zP;n5+m@`na1^Fp-8Ck?rR|Ezai`7)OmqF8=S9MQm03iH_lQ`5;HQaaaVFE?9YJ=0}
zdwv4r=|zk|hCJI{iP>!lj@}1cuUf6eeW3YW*pIrL@Cw1ml2jPriJosc-t1l7By(H6
z`Q-+%>#3%W@j6<+7L!rJ@hGdQML2B}^0<uJE;etZeh9@<tr?vlTwijK4sZp`Z(q0(
z<P>$Lu!ozrt{2!Nv&SK*v8gZ|EuD}p&%U*uL}+rLBQ;}^N*Ijz$=ryv8rFr9GGgNl
z)-}JnDHyDo@9*pB>3NFAe)HSXc6TL*N7FZBdSHD3XE`jkaz>ut6g+8mc2s)^K`WOE
zPP&cm<bSF6n`KHKA3?NLs<hPS6=;2^H`J_XoQ1ljpVaH%iIJI*RFX3`?wKsu@M{Lj
zltB}Dql?Gg%ZN*XgmqByS!xtbKnIi<P#}X4GsL$VG+=4kJ~P4Iiz68ei2*^jQ@rJK
zrmNTlgw%U3+nn+Y@mXtv^y-sJEL6fI^!d)lxEzBFVxw<p<!&<tbmZRz67iM;AQa`t
zD1|wpaG{Gr?S8Xe9$YGQbk=P<KanTK=%Z{fvt0Am+MHix$`>ypZ7fU7GVIzLq9vK7
z45*axjo1|Bh4wfgrEvs_Xr_%}T;#|_(Kpew7inBk^&1e!?S6NHUu}RKJ=4VQfVy`s
z2EFJIwQxlxy?XY|vgCI@ud{unq<p;S&g<x1GR+bV=zsBfuhoOYL9Of$KCdwFdEp<L
ziBurohFQKx)>C8Da&e~*2FCSwwIg~wGtB4Ax~sJOFbCZn9pcSB1H#nTFWHEGG!5K+
zkxv=?>jzBu(gj^KN%sa(T>r*@XYtXMO}bszlDKu_3yiFvit-<@sqjSF%}7?QyZK6(
zFt>DxM)%vG{qL&l?h_ZHo^O{*aNMHdw0yue0RcS+FJcAz65R}yG@l(Z^ko7jhvS<y
zl*?l_!%X~n{Y=tyn)lpIZ2#PJ+%$2Y{}f*uFT`n_MCnXR`m>-fAfJjQ!|Xnzb%5bR
zwAgv<)96s<#M7^c>akg|Vj@^sX_*iq_M+%|I8Ze})0UJdmEiJ{l7(^FH3z0j0F7XR
zNwZS6#LDepAQ9!WYnMh7TgUKMh+DMT(fIo$UOgWdbacu|=hi2iDZbnnV8UNgFXEx5
zoY?>=0X5L;qZDfUDOCEE?RstGWzbP$7<$npOp*TD+;#0*d9^=e+tZLKm*`KMS<I$J
zCIHROwE<~SKe0I&&BRu2i0?}~y-OTLQH~e%__Tr2n~=Zp6!h9{d5!sYW}u!`G%uRY
zYQDEqSV>9gwT8UGI!%)Aj}L9<?&#fqhc%kQ&n?C<t-m6=@6tJQmk{5=wHT)$v3>c2
zo1z(vO%~oZZz21H*ju6mAE`VQwX2a*Z&{?HTYMy8cdwC*l1}3rzXtoOHp$<0HQXmy
zqw<@)ly4MJoJ5R|oy9QReI=)CuH1RRf%<k7h9p+++Cf{31<cgHrQWI!84F$CJTMEH
zhF14M3I!-v))Yzyoocj&J+d40p(gkaeqP>Q^aW|p)7g-A=ZOgqR=kq5&PJPVfi0|8
zHclGKAr#k;Iaa+l1uykpa|E*wpn;>q+ijHB`7kG>HqxY{C!ewxrw}hlw5B5|>h_h9
z%=Ll9-p6{M>+8viFE*#)20n@^H7>8mIy^W@t0C<l@ztmO+f*u!PBQWH!iT-(rGy5X
zM_URl_QV#83<(KhAt8OcRMq3<RP05Y5pg5x{diAG{83exO0x@XPReS8HiyI=TB|n}
zyI+oSzUHgQ<Qw@>Z;3BN`rrvQ@udRuJ#n$IIYK+n`+r_?Q;||s>tEcZs3Y@HVqrog
zs|&KjN3eP5L2xr8qPki~m8@)*|3=o<c9`I$&@U44M@;bZ2mW(>8#P6Qzw2BeLB&2X
z`vm_%lB(zv{^6BAo6B@Wt@kw+KAE@|XK@8%=<n-fW#N@suk~eEbZ77MZzRJ3cwyfy
z5^<Q`d5>@H0itq5C;*4h&RscXfRBgSG-;|JP!h%l-%3ry7R%)-x2qetIW3MI+RbfE
z+YaRnJ;=dQd##%#mH{yQsgQZybqOkfw{ypzw4nx|>tCr_ABVaeXHb;kr;f`#p)h&A
z9fd7Jy<F9)Uf^^doc+3fR)+ZNwO(~P`3M(=SsU~x2YR}GF~{x2tqE@D)pem_6%)rc
z3p+T&_qI!|yR_$F$fN5x(7Z7}vP*j3i|!`<W6bu?@%c|r>KLr=a-Z@3;udA#0(CCC
z#FlV2VBc><9msSYn-H;tV^7t790XowH4<KTQw@(1zjJ<0dTVW-=Z9_cSDEMGRglT|
zs8+Nh_RNajwYhSP1#8)heX>^W1xv+yoP6aJ2=N(2;t4iaRQRtatDju-LO!%8EW#az
zR6o~?Y2S45_LePz3W4&uDwT~y^ZpBA8lbjHW>RIb;a}txBg;k#)%Qhcbr7T`qj?PK
zGB!4Lf@L0ela%x9KGtN#%ul9y!$(2apj7r1nXQuFXjAt2h8j$#xEy2zQgh4>IUNr4
zy{7r-P>V^$3SkL@N**!_ON2&@z~<*+-_~AkQ#LCXP5?K<Re4H`pJ{1|!Mv<`6KAT+
zE7PJXnZ?znA{L`!7!^kIIFMr1@r(Q3Dai5<c=)d;TTLeC+?K^LnW!uNsc3?Zl>Kh$
z!Qcd@+9RaY2@evt2R&SGEP~{C%n-Cc;&#$O$_fq%xpUHN3)_3L3buDW7LqRa_wiBl
zY5!f5P%4|)Iz5J^OQu=%lTErw5@sHs5FNroeQ}0#Ej>VohKOBQLuT1qLw@4Hb+RXK
zIDP#>OdaDrccCk%c6B3TCcjcj!8lvK)ekU2i{}IcN@*RS3_W(B{jK{S=31h=TTXta
zY%mGBIw+r7^^oY*gC}`z1c54a_R?XsCU$kyhH>iJWI^ddf@EG^o~bMhw)*&n$)=<K
zj`Gexh4YnTDi>3~^_X6%djuLQt}#n+AwC+g-xC1rdEMrDCD?BT%f5ybkK-|R6D^D*
z#@thBH*4l~jwuGXBJ_+B3^M6`g)^@I#=wXfJ>5z9zK{QnFrM0GQr~|a>l#a!agI0S
zx{2YsA6=1535@;o=(7b6gzPg>3A=`daL%s>Sq<{$UbW3RK03(uiwf?Khu$hJKs5nQ
zRPK~ny!`?!aGyLn2(+Edn?FLDQ6A>?dS8pR`=-=GMrbCa+vUvh7&bwVEU()lAVh63
zx&?B9Zqi-#xEFG~-Ymu8I@toZpU;$7#sTFxVETP)WmbTTWZHREvb0jN$5C|OlZL}L
z7HY0eBSGgYpae(ntAd1^{Kdk~NR3<UC+tCz+~W#kRt7=AK9=uq$~TRKv~*cevLODL
zKb3KpZR#f#JEF`SP}s%yHsyrcEEwm7brtc}2`Ac<6t7Y-J&zFF8I8<qN4lh46%Ved
zYl>~8Fx^P+g6MkauSM)&F#axLhmzZ?Y2c_gs%F-CmSiKxkfP6VcBY^$$lvod3->|^
zUj6ln<74<TK=ABc@Y*X&5N$t$HCR&^-GU5Ir#3Xu4B*d~?iPO>Ray<XTWp4GsO4OH
z35yv#8}&PvG$CI0$zvj>q}-&rZmjTn<;)1tiyy*^_+=txGkIBJTg0t|!HUjbi`%mC
zy2egu6sTU$r<#H$&`kBz=GuY@sQ>4a>O3R%9H1tzNvyhySKjwqpt_;Y2c*J@zawe4
zV-{>}yim}+Zaby00R>ZIFd5l4iCzdU-j&C4v}N<!Zo`-lPbjZG>NRahiA-J{h%7PU
zZ_r)2n)K1vsJ9x^OO_G5UC<$E>Ho%-bCmXOV)utGDj&l9{LPCTM#}VQu{s2?<5`oF
zdoS4y<F<C6xl1iIjL9%Ao@^vj7-UgSd{pB$n~HP()^Qm3=`4hHCPdgBRxrB>-&+K%
zQdNxs2omiyPZBe+<PG^f9E#k&xW0BwJZaA^2#qWRkE3rPc+Y9b-ZN8+)~kA>))D=>
z4=p#oaCNC&-30s@B`0fxE}x;EfhnV^Ks<(yb!1-XeWUQ>GtlP=9R(j@24IFmu^$&<
z!kQ1?`q-BZg*3l-cjycf3%-Udq;n|AWZl;n%atJZmdOZ#$D7h+xvG-kCR6ge5Z$q?
zeF*2(^zB#ACd7JJb>7du1Dyh{&U5Dp^n`S43KV?npz`;v^1|MC=g{ko*=ED7xKVV-
zv}~J0)a)1nZ4QU|Wh{3V+l#ka5t{MJ=ejx^s1ftnUX+?3{vLxgCrN%n79vr{3@UOc
zy1@gQg4l`OlavfdEdU15e;uWkW<Kx%D(8;^x!PG_(Ax=q*Mk4U-g^gP+4ukdrCda!
za#C5Pl#!80HWjkxX>TE$>>VYdXxK6;^R)LSR6<tvPWG0)PJXYW`)*wKeO-6=_jCXI
z`;XMw={%0({eHb)ujljeOikuQ8W}GWb-maR-}aR3TR_C_J}mjpxM_A3kmy(yEyzQi
zKZI&s5!l2Ss8=@CfD*#7G0E~~=Dv7uX;?XRtp|*u0|Bi?>Quk^ESVo?I4{O?a)w}0
z47UR_A@*iNef^z)samg!_!*Y{TVG%DGEMr<!Mnb-rKg~&*l_`SqLbKg=!$u_E@DZT
zlH~X=ZqvIg!EFPb_D9oMZqETR9|ZXJA`WuPQ%5$22?#`t^bg{2s>1qzhx{sLDDAmn
z!2*q~EQLMgiAPo~9_zZQ2ka>dZNVm+qqn{P=>EiKp{orX8$%ADmGA2<*4b#a;SaOl
zChE25n-Hb?<Jb?ee96lk>XPxB<e!<GUWwVY@ew2`O{@VeqK1@YDI`$e-Ache7F?j`
z^tsUc#l6n^*sny-03^jO2sr9{mwj%Mp5lfa5v?aTx~!sY-k+QwR(Vy=tZoI>2h0T~
zV14b|T}cuwwkZ*nLTM_6h@myxNhM0=3i@UdM#h3X>>tuWlZm>`NNb<J<eIise^INC
zSd80}IHHjyWJV|%2$r@|ERgc#uUh%!5(S9U(bBzHn^=9_<p!5eTHZoM3T-c1MQhAb
zKW;>UOG<?<#k%d%ON@|9(5t9WmD7`8yRmt`GV6;iD~XX0sjSbP+N%Au=DIrFaWqy1
zLy6Mjmk4QB&$}%jqvbH8kfq4w*D?{`G=?Z20{PceOJN%5eODVaKi+fiF`Z;mw|;hC
z<KE-PD~Is6264E11x>tU?IgIgnRx7NNvT-TY)<{;G@kc7CayF-MdEqIZKjmWE~KEu
zt`$}y+pbGH`R}K-eESD{u+Ry)m!cq)mIzEJnfa2bGelk(M!76Q+m?K9Z;KiYG0Rdl
zW2XvTud8^<vO_LaRz|7RNA=ECZhW$eEnwc%*ej?Q4e-U@UN5s*b<?=KJY;#*YCykX
zYpmRF3j7tu=KY3(TtyDMDu8IFO;797*{a00?qatFavz#UIv*7}eF%pDvr$k^LCSRa
zOB7Chwz|#o{leohVlze1^0Gk41ZJVHqADbBM~*XODr*kq?^+8=MrLxjM{t-tBZ4Fg
zw8F!J&^m8i!db`!4BRZALK02?A*AneV#wogobRXQiqMAO!c_B-%%P=*``ejv{utoV
zJ+*3Gc8BN=#O@Q$C?LYMswGV7eqp8W>+;6xjmnAEHmsXRndcE!at|vGE#arg4C$3f
zz|L${ZYLKsj}#44VYZ4l!YS8ZP<=UsLzYi_*xtvtW}9S?t5FdK0vj7dR$Towf@%J`
zP<>=+*tLC4n3gCxBW$OLV)5zIry^HOl(IQ<c_>IV5nTWNvaNk+&-_LhAJMrypU>Ax
z(k3mm8g_n_F4<=_SA$Z~9A=ak$yAhqCpj!tdz_aF<nu)w?!aV*BQ;xe+q-<vJ=d9a
zkyYu5UlxeCal&{?D3x$Q?wWkm6~jxDy!C88@X2i$@J4K3qQbuBXk9(Wv)7y7=W+8w
z$;IVg>Um@^Z}|~Q?3Xk@3m^DO=<%^da;bla>CZ2LnEtxs)uax-{aCCd*M_8W+rWno
z|I!T>HSEpz4tBK*$ZQQjUZX5`u`or0N*-&)ex>mWN%9g-M7pb5X6~Rh_Qm>Ie!-XR
zF8>v7y8J-YpfV^j$jk5QTu$mV(bc$ONUkPxRzm&CYqac)``XpQ{xZjmT$G~D<Kn=%
zZ%X>X_7xYOs+7h<zDWgL7ZC4P<MD4gdf1piM-N5+Q{C&*y(5U43XTxcdIUblznFm5
zD;pRmMT{34!dO{z{3=}QWdkuUNI^({>tzc*FdH8s(R<&d^juc+j8>+RTiU3M5RmZM
zxtk(Pem`cIa8g~*-qMK~`SO*qagA}Auf-<CUusKw2fCIb{RhkA-9aYyc<TIAiMCvW
zi0?BAb>+6aGB`R2^+FX=$mLor%_>=$Us-b0jdsG?*-o?8704Bulb5$ByEt&;^>ME?
z81$w6f^arH)SkTWdD0y0%G+M#%`{VX7Xm@IQ_MQH8|3N1U*~lGP4HpEf}eRha;;#`
zWK<7d{pH%;6|z7rdY0k~nyC`wNaar?g9hJq&}@y=3v<53b))hkl&zuVPC3$^yKm#|
zt!nRO7AhZ*aYV%=?z+?Ty&&g37?OA7?*!KLxk4@xU2?c8al8j7TLE+9*hQSMzM2dH
zfMet1C8ZZ{85@_Dsw6KR`|VEl?Z{4xJ1$-H-X-R1B<Jm}W_H3<+OdnV)ZEu`%Op~V
zy46>>tJ0mT@VJg^WA+&+BggZ9JBkV!;>RbEhT3MPNRN4>UaK35oNn;=<uLqr^?tji
z*KC5IYG<COTJE5jdQy#5Zfp#HMzv!>&3+X%Qx|?{{P!ul?Wy}%1rhz*|N8Bn2;DjO
ziI9NcSuS0{pV``f{ntS`C!t&ATi7!$-4puknUTrrsh;u2GmLqAxKUia^(mRXnM3@>
z?^h3_OdIR}vdM8XQOJdz>wUqm-Hx9-%fEaTw}o$BuV%PBh?V@r!?$-&<9Pw|FLJm)
zeJ*wX5Cac(cK>S1|Mw63uP(r!{;ZwRs~txoqYK0JBKm(4Iztj%N?renZ|Bwj>ev03
z-~J!pdiBx?-A!>QADU(Ui(BVU@BHts*|!ft90eM8CCe+nbpQYRfBgMp1W6A(ilu{A
zYh-`dy86ps;$Qx<S3E)d1$#5|!~gQ<|NbrgJs~3_qm!XV@;~a+fBQ?OzCtoGG9kV4
zjBMzX!h22s@niV@oBZAH4jy29wvM#*=jA`!em~}I|NT{rlK^TlM!^d2Pin1yd+Wb@
z!8jx2Wz-ffxc+a{;t=GrB@7<n`QKiq5qX*1LD{wc4Soz!@pn@s%Bk%Bx0i`TUdE_A
zcJ^nA_}^XCKdlu1atojlFiMCE@8nOx*Z<{ZI3?j_8eIf?DE|IV{oUn;X9p83<PtJX
z^xxe!UdM1hU5->s^_u7nWsb6VS18*({@Bd_W2|y!wqe1H)kzD7+`N*A0?YZN0*_r4
zk@3DkzjmIJo#tUfr9C+wZjA-z^*w{MhLMA1&ElcY)N4DNw%%Mx*HB2b&jyv~=@zir
zZDSV-Jsu#GWki=>Bo9Q;IYjRYXK{pZWd<;u>-`O(>yO|Zl-nl5+X$*s!ytjJ+aEg|
z5tm}G8EYTN83tAm!X989scp4IX-P7L&|uM<vsIhmg)ZthS>E!sSc;AWbeD$;xz5(l
zeG(i42gB=YpXUGWu@*v+6@e+7`Rv)V^VA-2EMI$1VfB_@@G>nhmy}(#Zc953xCna)
z>-m}VkgtoGSIE3}=v*BQW6rm%u^4H)EP>KB&7Z*SEZdu6k;*fzC+zD~5x!33&|iDX
zf!ds?lv;OLTQJGHpxPAF%RKm$U|x6laK`sse@B16CI$DMcnwRChUc8Q{-9_W<{fmT
zx~Hy~heOY?o7wdpN~Ih66VcW>$J9O}or(E@(mv3^%tE~LW7QQz1&1hMpaW^~{?W-b
zAo$*p5(Gx5|B4mZ?1b-5!Nfcr0Yg|uxXu^X-V(lkni`RVeqBkSod65Wr8!#=ew%~d
zP+1E{YS@ESr=qNPrIdC^vh$~nLXHzWSLnudA8;rB=Q~`8n_$vgcR*NR5b1@$37R}$
zlTkQMx9<w!wVFMOKAZ0A!cHl=wlRjyd)0Ty+)FJYuKG@M%zv(yjC8N7w951LX0~Bb
z+v*AR;Hxi*<t)l_X`lBIPQ+SZ`<o>y*+Xya^D<>_fkBuGmcBKb-tTL1_#_X9r*ry+
zL5l^De{@3AwtCuy&a+cg)(R-lH=LkMl`a5e5F$m-nxf`+IT#8m!PLclfL4w67GNL|
za9$dXV;#H11|Z2k0G=>2F*Q(wTxv<x@UgboH@$KDB-g9Zxfj*13B0CHlt9PC0<^LD
zQg;V_Zu5SyrZ9vOjQs9NjT1d|QKR4^nuXpZNvTJOn3JXRqPV|F2y@oXj96pADEY3{
z^YopCwx<K);)n;d#D+qpF^}6omK|-vC~d~I!m82roU<>7+(R)EeXi_d;;N*@+)81Z
zP4n5bxhE7B?=SnHt`n?>z;2x{s|$&Ia7eWSL&i6$b}J&)Zg~zSmhzh^+LZt{WjWUd
zEMHgXfl1~E-XN=Q9@<hPpW*$0%;Dgsj3lH(qH2$(QUMNVacg^_vM|cBgu!VJPbs9H
z3+;rNOq7r(xR;82qWuS?pu*3AlSlYRd^U@{fr|kuInDRx7Km(>@b;tcpF*bTlr6^U
za6t~Sp?$dm1%8+?#Yv#XIC$&I&+7hfZnO|4Ymg&Z6&?WEY!U>KH8uh?plGhC`7pjx
zsL<|%iyBK)T9>$V3Qdx9cY0%oSnQorv~yWPdpzPax*}=zPNrQxc|c9DeE1)7Yw`7a
z77(#>&LGzujv|=wHwdG`<whZJt2)4@IVGwCcnD>Agbz&(57A_!O1BwWMj_zHEt7u0
z0QFz5X=SEdaskW3>kFk_Fd;eo-q_d}k;7#1Bad0%4Dp}D{c$dY@yZMHZLYsv>S2(F
zA^lt<3397!8jp>avrL9W_)6YFrs~nUsZpKGM;;ufx(y7otPhc~7Y^3co%o=(6K&BG
zJaVPODe3yNY;okIlrI$r`RD~8F;s`AyuNHAB_*W*y8DPzqCQVRhud^{{4HiYA<3%L
za}`F92J^BqO`Xk3(uav_UliYeinJ|3#?c2OK%HvMgs6CX(}7-5XRdU`5R3z;Ign{|
zb!yj=>s-D{c0<AK*6LNQ=C4=K*jZ>IYe0Uj!&ervOR=E~py=;N$(`HVK5KOIOTZEj
zvA(@pN7<-OzefR#-MPVm{q*TkGt{M8;4bvLANe4U&3u$Nq8%&pkaFE{t`HMemzy_X
z1M=#V1?I<p6hmMIG2h13;M^9={M};*PGWL=mD^jjg1hp=eFg{cgGJ)>Ca~!vPl-#=
zAKl07`m$#6%r1StXjZ<Ea5UAz@dJI^b&DR)`P`7_?{7%4PKmspue5o-+<7r;hbUDd
zGJhutMXI{i-<&S5=af<vc<&+|T?YX{LGYe~>RAXz;PHYvKp&)?f-V|!a|PNsy})5V
zG5j<l!o=XcIktZXq^<_Y)ZnchZfqvVdd*<H9-dH=V3Y0$L==BfY-h3;lQN%?GQIiM
z2L`lSVRdsg4lfKt1`4R%SLDq)Fz75TB0kXBR+*tOkq|rXI@gs>4$~I9I=ZlKf$iDj
zM`6+%v$;I+4WkBjBl|vXm}SiQoei|E*^PZ2$Wy-}=L)(w3xK70JY#UW12cRzXc?Y8
z43@z;aKt#w9C5wfW34M$qn;GWs2UAK)~XWDIH7j#i5DY-uNM!lu7mZAqdc=!dLi1|
zB7mILVfoRCOVzN2o%o1wHYk7u3ClwR0!`*gBo$qf#yY{Ie{OGgVQ=RjvS<ieMi$<)
z@6EWWE`Q6009iEj6VpH(dOjexiKoFr=Vg-h<T%V-@{yRbP!_FI7h{uEvUG2sj+m%I
zrlu~*0{|mI%ou9Ga=M3Y-@F1&xH!k87#9o`$j6S>CY(pKbqJ9QY-xIIR!&0yWJdP`
zAJ3GSZ&Aoei7m}mv$h(BDKkwqmz%D>zPZZPXbW^pU`97}JeT3AD>qhuIK=h1Yts#u
z#Xf4+*`qdmOq$6UE9hZceAh>3LQ@u*EX>=UV`gp)azG6sL`tp!yXO$&eDOr4*QXV=
zKVTQhw4d$1q#E{qvsrd-FCk2Ox+zolk6%perXfOO{XB8XM{{%krS$x_Z{<P&DRO(F
znn235L^WhuGSJ%-lO-fET|g*{wU(H6nAbU_Zsb}Ts+{?-!>TwpirKNQeXddaOq*?}
zjLnR+c&gb+i*4l(S5z6`=4J7!x`$WVB4pQ*fP@?(S{Yc`{r4Tx8Kt4_lp@HWS9)bC
z@F&ePffPZ`4X#S;V!=+)q%(HLy5)kVJp(2F(lQw^K|dm*@SK1QkJlz!yBrX{823z)
z)?MMmbv+_no9gX^isS{D<puOP6upvJaU1p!lU3}X2BlTF2p77vcs8d&YWW5i4S~Y#
zDWvQHkBN3Vvf0}TGyCXP57SA9wLu8(ZJ<H5HTZQxo>?iZaRDHQd>*RUBKb0Ua$KvU
z5Gj9n>?TR>yX=$^+#3Mh_EGG^D_@tVi{nj(H+Kp+S@_br#@wmz2VIJOz7;q>L~Oy@
zPpZu`9&X@I85Sva=2CR*H`((Jpp96dA?=1ST1Bd>Zi@%aDPOiw7Ndm=>(cWCTMU}y
z+Ogw`s#0fOtJWsqSS8FA29CjfSdV@fFdw^CL&IBf%0g|MvYe<=U{CW!bS$Wgzh6+H
zMzZcE&#JT@-sZvI6<hmoz@Q+1cM+u9xUl2MMIX#bthi-nT%mJ<ueYvuZ_To6)lf&^
z_KcB5I(-heu}FWZVr56?;xn=jY9;wDV*P|+ZI39fRi!-YELCs%B0iR9qzuQrd~_U?
zMj5B-5qKl?Z4(%Z;<Nm&T_r%h0Jzj8rlq$_pY90kTY>?4H*A+*yh-sWt?#Cmydqpd
z$;tVIfz{=$y2w)-%<OB7=uB58D?4+iU**mi>n}8D{db+s+tvxE(3GD_jvrz*aqp$^
zp=i&e!Ms{RRFS9eV;bz>4B*2?`a$kp5-_QH1c241qBag*Lx+Ys^>I@|vWwQuTN5zc
zBl4!L+*t~6U#!AI>O5W~sUlpeDh`1Twe$cNY&=x)?)4GWMTPF`+phr#O>xB>{;8OI
z1(+W0AwX!DFB_<Ei_I(yRaQnJ^3ZUMWQvQto#F@ax#zM1Htvcc$>2z7qv9fnxgFa9
z8L$+tuykv6oJZF_dl*@L6ZA=rHCtk}_c1t|Z=Pcg!k+1xq5cG;k)lK3@j+Uq*V3--
zQWCrjU4%^3l}6lh#82zE13yKl-~<9px3%x#y1mE?JdeI!+44$^D2HJ^>H6U2h?p0T
zPgpxgP@0moWK{-eKHlPnk6yHLp6pgpJTVVsKH@-LG$j~Tg8DC|?;C*}2%5`_<76zg
zo_3E$$H#jS$z)(GOfySI#A|^HP4(P!XN2Y+^R%kU?It|WV{_{?yNkY{bDnrqkZK@y
z=34X!h?EJW3A8b^>S<(Fv1mQ<SX?kNI!-hI-Eee}7yYR1F>U*fZQ2~$Pr(PY<DuKI
zxp2w#x6bHy_#gynu)E;EsU?*Zuz4F_Nz4n7GKpfQF4(y3&6!Zu!D;8J87I6?mo*ON
zj<f7>pO6_Bny=UKZcH#PI1DU3IO|F<#gW{*#taZEeC3zA4aa5qhOZHVz}@8&%=Yh1
zW&c6SzBn8TgN)KKtQ%-BN*FHM!MU#V^ffR8&cPkF`drd&7f@lAE^qrt^;->KC#|9-
zz+vbo8GyUOjCc6{@mFG2>#J~{qWt)}<q7eY8(i=!CZEog!nsCMu1bYlz0fjRI#z%m
zpWj4pRcxeMdiWSR{%HqPQFAagKXRVwbi!)tvB#0u$OPWRJ9oH+F#6EF>Pnx2o7q`z
zKvXyuoKfnpwG>-KhDmU>NKYs{k?;yom9FC8Z*OPi764I%Fxxb&n|a7&QB_IryoF>4
zTvdAOFEy88*s!2=TJkcJ-(~%`e!ARLzQgXyR~eP>iW5%q%e{G*=?MBUBs00RUM6xd
z*I1Un7{u_gf=?&>d5GO;R;Uq?b^#=O3fA*8eSSSHW$Lmg_V|?HlA>aZ34m3Rh=-zj
z?dcIHVCIl{dmB2xPG#kjvn}EU2*kYM0qAPs>>49}aY)E84O*k^(sXkN=x2)JI*~~5
zCPGhvP3aeR>KPK|3(J(oq$VO6vl-e$qoe1P)0?Xy(WnMat0RGEv@>G{-6!L@F0e04
z>oE-FG1CYw|Ee2Jj)p_L>BM%^FChKDKF<riyj!_X;Y7*htI&P__=&v$H++ff7Mei3
zYMhU$`<WF(%2ene#ONlJ9Wp2NI(0sdP3&sfsG}^(8_7~x&ykH4V7d7@>7C0Fl}idj
z*YqgSieIHe?yn>tYV^I8$9mw8!&xw?<?UvcE?uf;y4Usa@CQk>p1&E~HPD)lV5Fhz
zCGD0|>_|og!Nx#MO=J{sS@@G4_}WP*glu2Oc<wq2GB_!p5UG9YeHN4U`u`2i43*Vn
zwW5cch=9sBZ7@$+JXW4f3besK6(IS2Our-c@;rLX1$1Qt^yTDm_n8WrMjDTPcq&4<
zs?Bi24ubBBHW{a50X6=|FkL0l>J%71>^d6VCU0`7v{<WcrLQvPDQUJjC!RK1pC1_5
zl<T(%yBQnMM>g_HXa32){pSM@{O%l+9D-94*Q)awLwL^K*c}GAq}n%0F#q5%yU-9U
z*)k_s)>QAB6Dob(MXqZC$`73)HiL|pv+Bv13-+9!hlCg+D>h1=G*M238tt(O#k8gm
zwGI`%stG5x+->0w#tzb}-@NhwYP9a~()W>+C`~2UvYYSkiR3W(LVXAABrfgce<Lz<
z8STJ<RBpAJ{l2<+jjGI={O9?!7Rqs?2o{qu(sqhtCx@y-+}z&DN`rh?RXQZ9om72l
zptLZBQO>T-^;l{OD*+qbG|Eit>!Z}kWucA?Al!{ENpEZPZ_i9X?r8u`9+g9P6%kWj
z?wzrET{kBoR0$*dn|Ptt_7ugMD7%_d3ry@L_nY?PhPT(}4gud3IggbZsMb~l7Q=z5
zWNtE6b${Zg6>iltzXF189EzX8BmVtd3FI<hf7H%ufJk*!wvVuzYn=w8nNSv;;Dr-1
zYj4KO%q5u*LtK4;yNz?scFh_n5?u&M$yMbL1uiHn`#@u0N{}3%loa)Uge^Y=%4Gl6
z`U1`UkS|&V@tdS_>(Z!DurJT+ymwO;M9z}8XzDNfC0fv%kMw~6ck`P77o7|OTx*eY
zmC^nl86TE~gtI3TXDDkHtN=JK9rP@cm~NUMe7;^$`9;k*(wh0EA%sajHO6%5l^ku=
z!U>B@&dv~HXIWIX<qp!6-YmTu+Q1rG3MRc9wC*f=oKlGR@1Li{Hwqz7l73%Z<%<iE
zpPZr9<V2IuXE0v3VAs<*x`?B3#WI!tX=Kc>*aa+i`g|wh<3jU#nXQ7J(@@08J$nPb
zbxk&-osF+#S}93DhP3Pj%63Ga=~cSb{IoVitl4&bD5Uz#Ni-W`vqF?xxj=nCmv<63
zKs1Qj0z4&-B%m@hCm<Rd9VNXaeQON*9FN1bgu_*d8{@GLQNa&Yg}KY|hi>sHdvdS{
z3JzIF*UWULGbJ&r^qVq{@X6`6aP95BTWaS6bz*^0<0(Pcd^eVv{OG^HEn~)_B$B>A
z)n4i>2yU6#S9ksUAN}~uetvr2zKUDJe*qPBRg(a6`ecJ!RW~#?mtFT}>d@N)bIc1y
zDTb+4Ey1NOR^qK1q-O|Icc6eE;)i+pOl^Mhac-zu(!pJs5dgh3+Yo<H$>n1{jVY`f
zfTb_dR~@=@vtYg{gri8*H7N|qYY7QxNU8VF&_L=Dr$tGAZ!8WeVkvpbwh8TI3Z;(^
zUEld!mWkwG2-k8~-oWHUF<zK*lE*#GAL~3G5i*c)r_Y1E`GAkJQiwzqS3XjZ4}w>#
zXpQclgk?hx=9p<oo{9X0)<zX)e`=lHu3lr$+2F(>qz~eO-70QmT3m%%s~0gfFUcvs
znR-BB>6dIic7BogM+LtR2PJWc;yVifb?(Wjiqh-27WaP3Ti%C*78N4r2fXs9Rbyz}
zt-*7o6j9N7^dQFjCuzAYA(%r_e85Gv)7q0U>9RQrt`NPN?#TPcYam1DGYr!*0*%$m
zUaljJu7c83-}|9MY=^nea-R)nyPJFvMXLO@hLTM`FjapmfIIz!s;&BQ|3hkaL`?MW
z(JCsq@=8Mc>xAzdsd?kJ{NgKV2S5LH*=h0h;)1zpiHY{i)c5oGF&_6q&|kA(<pY4D
zgygMBQuH{6ZfZkGJ_Q77mx$44k|q&r9d0h*7Qbo^CjgtL7NzZPKNQ7yHDxI<vRc_N
z0g)FFiPVy1&<20_`fiD_Y4^Ad6(U(aaR)iPPdS}Ow6e-=n~^FfZld4mbK*X%MrVWH
z5M`DhS8evu$LEDwu+2KSXeL+TQ?m0+f{l;$c2`Dp?8R(j+=^dWLpM(sCmV|D{ghJv
z-B7On`5RCTQXCGOmfVkf9RDCrM3jS)E~YcfolQ`mcAI?LEPu{m)q(f@GX;$3#ZLk4
zryi$O4H~PeV~-Sv8t(N2JjC=~-WIQAVq<?1-@1SUdlEhNf{J)yNhysnXWxo~iFfqM
zTYZo;n&S}6m#ut~%vkyaPRu)0yDL*|_nZmZf+qmY*j#MjKKfMb4mv>|Uw^DVq-xmk
z)~&ZMK&>drHY9uh9tWgDF6G{vkYp)77aqtteBcBoc!WvYr%MB*uC6JJvaqN)I6aM0
zzB>t4V<hvh(eBa1+t75i9hmG!+b}A_ZW>PU{5@)>NZ;akb6K?WyWF5jdx;qy)ogtq
zLnEV-VY`Jv{$v(XY8?Q`&4I7TAruJwW?8oZ8f2-yPz9myTB}*QdTTd;%z+q5@tgg_
zV?a^vnm)G;3xBp0D*zRYR;N**d0lrPGwjDa8IP*AZJh(RUIE}6MVnbdyLR25sXzpU
z{=6b8)$TC{qv4cxNyX^=j|WM}hvdU%@hbuwdP*ex<!>6o|NOy|N+ECqds7fjK)fiN
z3qE)r2&I)fgj<ld!GCpn<-BXpw8_FBnb;fHa+&<|<(W3DW=41s<CTsfI>A(1;@N9S
zm4<a_jK;`pajy2MTPMxN@fwx~)|&G%3ppxTyW=6;T$Fg19j?f~-PNGJRE;UDPdSn^
znp<k#(QGxFCWfS|(;eG@1KAv$#_h%22AwA&uCZe(;&pv2KUD%C73Z<zP$PEzva0Hl
z^PL%5W(4<Oi|qr!@+_!Q3lT{uTH_S^t(zn{^1Aez(c@5b@3`JTKgodR*fz)jwG!y&
zmVuL+1IQ6>FDUJYPH~#vLMYAlQ0CyC>@93Q%eS2r;jJh@e+N>|B3>9bMxvDND4;LU
z$RS2HiV4rXZ5_o``c)fH^WvgnAT1{PiK9LuM>D-jU|y&6G7DCYc8`r=JhQ>FVk&ri
zEi3+j=r|XREM4L3$7aUbK2yng83%A(wB1+Hyl_Ivz5HGrQb7ha_z@W=CeP*VQL%$w
zywM1jxgAow90gMKyAfqEjpt4_gJvh3M0iJ^T=$;axiUNf?jt-_FsFHzf=|=}Hq0MX
z=08Nj5ho%6za`ZWWXWkQ5U5VM0J+tByVM?xz>yUcAvfB#Nd<gYW9Z|+UMCpgtxM1`
zg$2sTwl@Y1+Hh&rxU6%55x+zWzP$kR8G#F(zmx(0vZejwTQ7psB)cdN3@iFBSMYWE
zqx;c(3ZIirqi3T!qvoh`gHAE85ss^vec}x7yb+=<t>skLoEB3aWPO*R(gJ&Bs&sVr
zvYBh5MfhHNELE4S{B|Z8fo#X^0-F7aMeS;byz0-!EiMDiX&mQj$^Jcr_z-k^fBHI@
zvf-If$prnT36l3pXiskkQ7zn69gD)|eFe-alb<1P#TwC;lB!QaJ?dHpbJYy?Ca{`*
zxpo7Cub8gRiR38s*DOE;LV6<BR4r`{Otlfj+??j!Eof``eDXOlX}$Bf83=`f{Mlr0
ze(KcG0RVf47<0x?+6Qd8z{BnUt>CC?G!nH2)7S{iiK(NOJoDhHX68%%(8jyWD212c
zOa)kQUY3<tZ=PVR8G_@*?4qvPyh6rARkQHXN8ngt?j|fNpu%MMSKD=q&)dl)(>@)1
zJ(=il%HxQ-p$ILZSl9bq2r`2Z&u0Q<uZ|rAUoOk6Vv9|tTJHHT3;$#=cVy~RCf9t-
zFZYhV@WR@=^bdPx8uyjfE4N!tBLZg<%TKE_QPn;O1^=Jd&Yv~wwdn14g35s;e^<DC
zzvztFNFH7~JWVn}m2U)XjrOOODCzSaDSve6mId)2!TIhQZ0QddXVO|+jxxRbsz31P
zkY#$_78PyvO^-IzbDf+ti<9$X{tufsdgh&HdT|Rp){ME^X2|+_BWT1fHd|>_>Obzp
zE2(=-SaG@G$R$)fDt~WmNMNp{?JH>JJG|{0OYl#_845kWD2*0ag7sh{@vdYV*`SUS
zPnm^N#hMNDp}LWTAK|FU0_SC;La7iv|5TB6nn5d%k;9oP;U+*{hE2o*IP^eX_CV{6
zJ(Fa~hTO%mUMzEA{}=D$!*e@%I48-qonAJ^3JP|4gk4nAhZcG{!{Y1l!b6S#Uhd8|
z&`O{c6m;Q7<16@3q22r~Pn9yZX@b#9Sg>{G#zHge`og=WP&4eLt&H$dsy;+3I`3^f
zX9bD64xlsbd%<n%y&1XaF8cA2%hMsAuTCO!EKU(ao9O;7;cg~As>A0wzJje4iFnf2
zzQ<Duc>{*)03f~{@Iu@jPp*i$)A{AJ5JAMILEtL&3?4}ZNMtp!re)KYGZ)B*M-IvQ
z;!SRMlug>($&ecL^ZemMf_}+Z=DB(%2@KF5aCcYKncY4PU%H=U+xc<R*eSMkhW^6_
zv@gOlrc|Zfu@i!OHUW9DT!V363@=_7|55a#q)#*O%E#urZ7%scXpW6L!J4dM`MzH0
zm%{ghq;5lKqcgMqzrZ$yjvm};ygqC!J@b;HeJ3|@H5mq7M_mlsau{3EHMrVXoiAXf
zRLVP))Z#8)!72#CsZByVPW^RL=h|qOrkJEa@qn_lJCjP1cwJA&p=UW(4g;ave|V(7
zP{@B^(a`<GjJNTFRi7!5V}3!>BZofbrg>NUM->M19HvHk+g+AWei-e!Ug13_|7KCC
zox}+g4<SOQVbI_Jrqgw2H!y${d*h)V#(`re<4y}CbxIB2cTzVs#SlJ8RY#|}wy*Rk
zdVrZB9~xw}heJoZf+`M}^sUZxMO7PQBZI;;<k<2Q=OTz}{qohXO-x<30E3wn8beB=
zn9NW~qF_VBLY-N?f{yI+!l-dVbfA_i=5T_p3|~56<r3@l2^vu2y&Y>n@F@TmEgs6}
z%T!_V45?v1Fd?nGvNG;DWe&dzROw4fO40y+&P7mOba7@FeuFHNi4D#EkcB4C;(YZG
zkO@A%Kk<h6L@V+BL_Xc{UxW!6NZ@>GVL;W7Nix&}Lfpsj@xnOFX|$KB==P-Urcjor
z_?%$epLml4N9rkc*|oTHxV_P94*+6p92F{+&27-kSeHS&HjvkBuk4svl~LVh)l3b!
zf$ts9-gztI^p`_vAv$t;v;B!LVr5fDtq6SoJ2>uBoPhKFvqtd?IbjK$lP8L^?rSH+
zcNFlH(k!f1j0)BqVhwq684|?*V(~hSs9ldS%Xt2-5<=>v-~(Qb4T-%aL+?wUUYT>$
zxF*^^8pm{zApv8d2EtBRSKc%3pAP+XQ59S!WLoDaO#I*cKd0rWaYNl~DlPg-T5}Xd
zLN)V4Et*wTUim)Fw+Kj&*$PdMWbeJmlzL-Zf8wuS@5xojNqCr>c;Uw){ujUd_s^p~
zL})w_U9izsdhE*hyV#+ytcuCM;aDHL@Z?2N#v}xve%~DaFJCc60VTM8Ezq{?uiyQD
zu1SCV^qd?hyl}Fo2>vhc;rsjdsy`2^wVd)1O4h%=aKEXLzrUM9kbxI0WM1;SLg+uf
z*SMTR@u6b}sG+V*h>s^V@q>|ZE;7-)xvgvPKYipR^e==Wj<7M51xKnU`l?>FFZkUX
z^}2Ql0!Xvv`m&GyhYuz=MkqoC4~|mdjPxn!boGvB&z?!h`v2BY{r%qiei{D!vBbT>
zG30r(0&^EUJPzy6LXwh_wqA)47>>7Ga~wgLrI<eN1+19Ve)`{<SN`+$L*D-pws-n<
z_4W0a!{ZGr7|L$ktutHv89DO(0{=hUszOuv=fY$PSAK~aKzcR*udfs$4EML8Qy91C
z|8(gk#NlNas@ncHx$^)2X8!K_g$SR{XQw<@``Z~E+yO!&N0SxGD>(Tlk2Um$ngmpO
zd}8Oyth2w(&|#{PPBxGx+LjUeOu44><JQN{kGt$$F1%4s6%tA~d$(^D_U6#kb{9M%
z;_ZvS*+8-2T0)nklpWGGRQSj~ARv$R3W5cJ#=Jhlpd*39P(fo1Kd)u*=qSW(U{ced
z-MNO8j3BW3GFVWgG7C;WqLb`zjR3C)+)cTU0|>bW<XI+w^-0y(1rcO7bk_|s8l=G9
zO)uFcTxP&B?E=9;4>)hPyup^Y3_V`@R6kSH5WqU}vkyd1?bRM1AOEH2xa;o~+x1>T
zV1S!T%WcX5N4_c$P%lEo1@b2YP?=-{g|Gj-RJh!cK<_ikMqWnc8CefpW53|%<P`LI
zH_r!rzM0xqU2@o&iML3JDLnQ?q;~Q?#Wrov{PP3Nbw`df=Lnv!I5C?Ue||b|&M?1^
z#?+o?C0|E}_jP=UUM2KSj~v_`+S~SYfa5i(Q#?R+9jeY+B(uqaF>pWta(PtZ_O(Ix
z&kDT3_I-oaHAD{e4BVcM1CNev)WQfa9gqTK)RhZHz-2~KHoya$i{QLK&bL5bJb@%8
zvJ`#x_H%~Dp(0?1r;}gLLIR3i1DvNVk;DJnk}{#wtX?;C@SGo?m0z}J9Rs<}L<J3^
zWUQCG%fL6EAQ=`KWpiQLJ%Q%O8sL?4_DN(&2--pPdGk$t^|5<3v_F3K=VkQABI_q9
z)Nu$2Qvv&+`dd)8c5(5qfk?_RH^)+G5VE4)@&HWuBmVt8UQeg3=KTeNyD6v3^7w57
z(xa9W(xdjIy?kSp3qyb;T*E!`Afj4<ZeZNQsdO%aN*B{}$1}BUmjp<{@!Pld;A6dl
z3-AMCGiZ%@;i+h@U!&WyeFG+c1nJm2H4!vv(~+UYOIwy_KckG0tYLV^lm#lR0USwm
zD8tk~McDM_stH-`ut8M3o#$m<oOqOQ^*jqCc02Mhsbu7B&j%d-N>;ne)GOfs1?66W
z=AZ~n8a;SKaK{?Xz&dLawHGM_+=|k*N()AL44QwgyJMoK^Z6br>AZkXVfsM{RO7&y
z-W5E(LPHLH(PtAS7yqt@`F)r2s;6stB|_*5hjM0a?jEWQz>b>3$Q5D3skFwy6P8G$
z+z;9a#KoHnt;F~{`)%^ZM0Hy|Y3eFYa<t_XSmeJO+BvJ=FJ6}tI+*o3s?eq<^9uHz
z0kfIw;9fMp{zx);dQeeAV^5yjgY>BF%H#yPWp;x(eT~hAK4s7K*XfN%Yb@%Im*>{T
zs<B6Bt3aE&4F?k*Pw=oc9eN930{UV!^I&5Udo8jUM2eHr1gl#*ds|@)ey^K}5fRwS
zHTfrxN%<541gIMoJK_;}w48!n!UurXnV`CmHkBeiZ^_i<AS-BSE<UGQyU67pqtIrY
z{^bZ86#(ayAw>!-ZRg&Q)|RT0X2Q*DLwO`M_`rVmBp%R+3=HkZO1G820F8JRMJ>tq
zbD!5i{P<AcdeJQu$xwCWkuMXQ6VT{Z_dP<@FKKc8Ze7FgcU<5KnUiR50R&|h;L-()
z#PkqQ-7^n4K&c7|{@Z9zG{<LA-lnJ=`YihqiKumXnId`@w~p!jLq_Q_YuYbsBs-=H
zbJdw$i`>&UOw6;IZ%AEio|oO9*gn0QKA3U9+;GhX0R%4{DuYRMqL>{8q)KnPK7=SZ
z%Dy5SgB8YiOVHJ6S9zrlnA;h~ou0Sr{2*OuJFDCWNrCrzkjI*hDyF;4*>*7}zRdeb
zc(NSM!-^w}q||tS@_7^=d}e?(70bw%un~m`gO>9xB4M3&z??=*++LwMxf8YleO`4~
z43{*+aDU#vfBltQ@xdckKi~a)7ajd(uTVtL77nUp8K&0l@?x7Jd}rl64(2eiZH8t$
zyo|lLXp5cw{KSgM!?{-W{HXK5&VspysEp5(t>~beH)HL<aTX#O2hi9Io|^~-iC8m)
z3gxX#7yoLOwQ`@L$33OR-a=rg56Fu0`CgY4NqG~G5ks=;&?&S$^bg1}b_wpOL0>F;
zjgk5G^$=Zx-aIS<KE`}_+gkt`UzW2jfrSaspaq4W{5e^RN{E|R1(C?eT*2E;ri_`>
zo%_H7KfSZe(*#hQcOYO@fpfEJsULSHOhM)s-T*p-dgp`iN0g*>Vv{SHk@17GPP@%a
zg+z4obSYapn*ocIp!v_wTJ93A!;WB>;mXDiYvOGuNDW@G(w43yd&T+%_*-_Vh!_ge
ziG#bQKmK*r%+K}IOXA#TD@J8&2Dh_T;kuv$scNY1|9r~)<3SucdbuR*na<%2&m!u?
zO1oDUs(kMprfe!W1veu7wEHMm9YOP2m9*YXGxYe8YRphTNwh7FRFq0%{>NE=*+Uj;
zY6WZS&FR_>PASTL0-?dd=4xtv$9WF&Kwz&wgLSJ2c@NApXupwwp*wu^j1g72H;F;*
zxKi9U@FnK}wDM4>6)RrYe<y%2{~R41ZUaoa^v{X~<~a^BsBT=Y+}8%P1?e+KuyU(!
zya2a^#D7ouzO0ePZY5?*zqs03-k)dkJk|o%PvXRp=%VpRvoyzr!3>FnA<+<L7*7}=
z-BW~$(}>U_=3rR2mRd9c?bX2*IiS7d!O~tYJwrnf(+@jXC-g>UD_40B+j}Af#6U%j
zmu*C1;(XD7bQ|36w%gB#F4a;VpVc@{a6`*wDk1TWXpu>otiWdcl>1{#NU^N!-^|vn
z!r2B@v0j&!V>H|$OsW=8D9pQextoLFw`l5x!il;<XoU0v%F+^u6qs1l*R(}n?-jrU
zKMc>DQxcv5f5+qSOmaXg#34*-7B^2stJKA=c>6;kkYH+@eHKEPlEa2nHn^X5Rl&f`
z$R%0J6T9jFs{PXKeOMbLSsilux^$h4qwPaes!i>(#1{qtj$k<4yjmsNa~wAMN)w&d
zmoGs{UIn*i#UiFEuc;Zq6XXiGZxzifLMQs;s{6H>e!w@eJc&262cmWr@%asdHaDuM
zP{{2%`^Bwu{W&5$T7!WF9`?Zng3Feb<rR2S>gdnRbad~UuV~dG$!_rUL^Qp$X8IUz
zxCpu58c{8q>CV79zTcN0sN;EIg}U|oCbj<{W73;It4r|rpuKcz=gzw(4D04_D#3GN
z?kP!8Jx_)=3qij}1fIY_M8|lqqSjVYN3zus*iH}3r3exugyJq9I_HA{Y4%wE{Yc74
za<jBL23|(Hx9Zd}Ve09D30%`(j4U))t~<$BCvshkoZXU;k<N`|UXxa>w1e;jluDdV
zr3VYg=L3zqH_h6U^$^M@;rR_`mm_$F)m%Gf5#CHtkUmK{=5N_V%r&R;lFUbm;1j8v
z!ty%5PvI)ocYA5Mdd4TIrlDqkqV;L|GLJM9TroudGt*aSb;C(~##9YKX@K^ZV7{4P
z{iK=a@EFD~J}Yp3j({et;5ini;$vF~16Z52-<P;}!?{;`LD<eoyun^J0*Hb>B3zX;
zKA{LQ&u{TrXU8rWSN4;KDtu!A-$B3Sfvna!kWzy#RvE$ykb2;3HI)ahMUn++??cO7
z&Gv56BPIZFM&1jT$)~q5F4HM~UrFCGmB{Y(uBUemughizZ1do+(`on=>}<c>1)Uq6
zPcg(usEbYf83gPC%7sG0-qA5KY8~wng3ROdea&4JtVN%3$TOCgcU*Y7P<Q?9wF{t}
zX&LD(-T^6ZF{4fE!pp$x!q<FOL7V&8_e%_RgMeq;8eQZ^wYy2nTB<t3{xhN}?#rRs
z4RL>V2lK7Z8c(JrJvO%3Ga03#dF=1xD!p=sM)-Uf@ea@L;ay|LTZmq}Oje3alYc<t
zeg?T_E<~nB?v{R`3)9q}>nn6*+oD@4^T3uZ)!Doq6V|PJD_^kGwVr!VEIMtVHK^ze
z>(<Uf!E_<<fZh9&1REMrmyxEbl9|23$8awn<H+{VlesHC(9vxutHC9h<bTt<BnixY
z$#-!G_R*Iu!<4WORDdQRl+8n`8j?T(3QdpAF+^JX>MFosy;~aLL9=p&8JMQE$e9#S
zqSyGaC}G9)$kDS8lhW1m>(STM3N5wxQcL#*u4QID@+LP$x-TFv|0vxYeyN6kh6Zyr
zUV;f1w6(lcLDfX2y}pdX*rf*60@(a}BaCCF1h^PR<KBdNle1Rt<Ur1^aYoJ~#`a_+
z$-YUmZP@=Ru<q4JWFiFIOCAGsl=O;9EauK@UAfnyk2NQyVtatV2jyvGYHxg&Z=jg)
zxqR!Jk_O7S)a99`m>a8b8Y$hbMU-{qqb=;|wh;W=_l!=m-(}cy<8A{?t@IJD?v!s4
zickKtbZwdmr@OWiiXPVl85(`gjSt*|-1ox{DJ}0|e0b{MBPB1<zPcN=sUylo5D6d6
z+tqGm*A|XaQV5}ou7w=uT!i?OxGaw~(_~-jsQ$9*KYwAci_V5>qr(1$i{~D2h<jkx
zxBvpy9R-9}uLT%Cb+Lu?rpvftN-w3Fc|1qcg~FTMIioM16@7%?gve?^eiHq9@Br?r
zKJH-u`*$0}?n5n`TL4SzQPFW98&pKoecH@e-+&^|p(|`bVWJ<Tk~+yYW}YPi_5;aN
z3m*|kFyjjV`v<Cp^xN%fx_y0@VKrp6!992>wffmE8GXMq42p{vR3nq#B+U;iz1~t#
z4K?|GNP+?{xM$z<`u;6e@2|=_OIEQMwkdLfl?18E_&8R&<%#C?0O#K#HYMoUY{#V>
z4F;(k`-d&tDfpbSVD4vkd=BbUYW}D${9qHWISsDv@sM0*20G>w#_xMYEVbFrHa%qI
zJoSf}r6xOPxXkF=M8nEI2GA)zSHq1EL@0gQ-D`(ITaZ3Av|Pc^y#${@NsD(i5hiAo
z>CC46t5_8K;yTAv?mN)t9!*<<0d{Fz5T+)14x~D3Q%SLZG%QESp=tQPSP*1SzC2xE
z#dF1n{Z-VpV`5bHN-ML`6}t^OyT{UA`(G89Tm~~*1S1T|KAdGq{(PMVv9VO)(}38Q
zz(+Rv)aJr5A4$@1IeG~}rF7k5E1>*>9}Cg4m8ub_ZR~sAiS8@0Pjyvhqjeclw}ySP
zbo)I=I=r2RjkV2**r;knkl4l(9!9o!VI2>uy)@lOYSU9;)e<g2C<1w8@Jwh_MBcO4
za_2F6J$343%QNEU$;(MiRGhdrq%YQ`_eWb*Y@R>iTYWJbM@n61!3*S>mAS^v;B87Q
zeo_$%kKDY=9cFFTN)O=}$!VTN10ehY+ldnhzlQ%H{8kF&&hRL=ac_dEzGz)zozV0V
zC{C@1uQIFX%6Ap_f<AT*(YjM6Nkx3|=7&MOU513B<vsl!-+7<*?S;$^gq5+b<Hdz$
z#lWU@!)nV_A=qX{KuXIDY-x55P%$}fcMSzVzI``L{RWDA&zJI`wbM@<blOan5c_hW
zlG~ks#eJSGzIbdhKvWO5WP?^bBloQJblBdj$i)Qzi#^#5XUouaKrT$BEwgA3CiL@v
zRF-w>3E-f#PE+dE_vc}hjySrGlQs0lKpcm{*@*`W3McWSAt%)5s9gA2O6?`Q#Cqn6
zl$@5PNC74ojNY%lI-F?AFK~_uf?Uen)gsr<oP3-D_MoHJ+t_iv?9yCVZYr*xv?4vi
zy6H}jKYH&L9M+d}M?93BM5JFn21)M1XXK;{O7_w)%tut})CQs$QdvApc>;0Z>X7nn
zyLQ^`X<Yr#0g>6dR6bR&q5{=~&vByh6gL=@T_GgeyXCP?hP7X2f5K-aT6J+9yb_ig
zRO!y8sSQ#O&`me`hV9((i6qrsZdAF@W`@>8xA8#GF`7jTy)R%jrsT2zR~mv;AOjDj
zH*vY+$+s1cH0w!|8}{>bf{WslmKA|H{BS{~D<ZQqkx|+?+7b6;?hw~6Z2|nZ$LOD<
z!a;aGSK(*!1~<K8lvsf#4ecXdDG|qN58J|>F?;Nt-?p^l?i`vNuLSbXL9X$suz^*k
zHCV{+a2@JQRcXe4*+Q%|<*w_9E|s<G@#7H5N3YY<aL}f+$xgw=He!ZBH(bq!O6n9o
znW{-NQlVZR<Nsp|IRKm`NmU36wA|g<tP)0M^x;ir*Y=a4+2ut@(fSG^F`)M-m5{{P
z#k)o`N+>43S6L|r;RjNkz?!iAk;*L1T3j!v6b9Jy0<7pe&r)L0M3T&zLL%DkCcHZ7
zqQYTtw0ftBUJp*$oR)88np)ONOI!?z#Ni{jDN+b61l-(egRXM33ef7NDW@tkb7{N`
zL9oQIuaq#{JeF#5u~(qqIBnJ6OdGj+q5AoV8#vd#%(=YMBLQ+jw#C7OmlCCXTMQKr
zy57l8j(4A#5|B<Uh}gBc=?qIXR14>Qp)AZG!e*6KtZ&R9eYGm<6$9eo&#%ZxjXqW#
ziTI^4b6O(qBX0N#UHzWv-S-%UhKLC6N(?FInw!oRqm+k^OXuD&33fm4P;}Ps#R~WD
zS}GvXX5LXe_O`FIeWN_+_Fno@-{CrJs$Mzh0p0{(6}?kl5@()7YI9v}ve4i<*!D1{
zJ2blrH(VjLL)@-w#TV*Xxzm{hk19UN3Ln`_jIzvuW5Ez^tfHc#mOZV`%iB;tt-;}-
zmv^B|@rhPwojqg;N%uj2);!jI&1OWgWfE|%4#Wdd2?ST63dq4FBqMd&DG@V=wjx+e
z3QwmgeU5(HeOgmQvLhSXV6RS?&4nk}B=<_MTp}I!$ft6B{6c|7;6*$gFU9lDr_OeF
z#n;Qn>?_D7oH{)D($8fcpdlp;x?aWN$zodJebr^OONmZedO;Y@Z2flH5SXC}`ZU5M
zh7XDg%q3gT77*;N=18YKg5Bj?!M<PCd~&HaSFrPEH#fNqC)=zs^p!8>{H9J7z4<Dg
zpc`86Q)Xhy6rmp@?=L5jpJ$R^zk(f@5}e?PI>Rba5L%qE_-uSer5ONyQtM13E^}5l
zIys2E>d$3aG?aX{R>UX~Cm!d2s=zrRIx?rxd7;D%o{RklmryOn4-pkBjzFqPW}s>z
z%;j0)U^5FkST*H`s_zMaGNIM7V$(<wmkCX^BpsUyfo_Jf{Hsb{f|nUoSD<Rs01-5B
zfiY#1@Msj)r*1u6;H@;)QLD>*jeX~GyEss+;aDqa#aHG|Cyr*{CmiLL1A(68+jI53
zwkDc*1c$fAhbmQL)WyyuPtLSiX{g264<b<!4iGybazD&2qmEe_m0ho2WAk&49vt{4
zP<ADu&GSa)mUlL|UjA4n&~UF?5YjP4=`U60#kn^}^M)}>QTzSwh{pI(2y}klXW=X&
zdv9v;5cb0>Mh+k$L;hb!ilQ&Y_N%8(TEn>PoqI<q4I~^^&!Vp}J`UBS8?Z06$L4&R
zj1hq5oR=GJXQqx7tQ2Xklb5eA43^KqnKchFdCkGmLH9zm-LuEk{5(V0U|%0N{;~77
z1611#!j<x<?tD1ILYeUcox6+O))*+^?${-blY4V*e~LB5Wur$OzzF4I%9uh-5i`;;
zd_AOZ80Qk}#d&n>_*^=j<>l3BGY|Omd+dA_BX@fqTWt%xPHoL#7h+JpefBt54r`OM
z<!eKPo6DJL@DFb8PIU##bP<#*bC~25PuvP>j}1K}@!fm-0?Har`lYmt8YqV}b9gkr
zx6Fk2a10sWv{$%qe^%k-*Z@{W<Txr}N;1a^GaJv^inQ8te~(p{I2}hp?GFEObnK(e
zGzzR6q1D91*GEDk<lQBD&ej0w?<#zhAK=~fF!H8^4CD$`dqK@ED+upGNcbSqlL4XC
zQ&&pckCz;(aLJ1rp>*COII2sa@iB(K51jC46nz+c9@z;hgBUdpPW;eU4)pZguz1Bp
zYvKWn-yMBdpakFX3CnACs+Jtah<f;97;{0z#FYq{d>cIpyJgTffh?q4!j=y=1V2Vk
zk~O4Wt$pG*^BF8_+0c-FOXLcx&O_ce@kC^-+U5jg({5-v6W~-7AJGwhTc%#bs0=zc
z1ItQa*^lNsznp-b6e=eCEiBkW`iGKr-^U(jXP8QSL;kC2;?V5P_23-eig1Q3Qp?CB
z;!F|e8=i;eq4}d(`HX}bukHJF_<2SC{FPh<?uyx5MT))<<O=RI_)RFvaKHQ1wwJc`
z%-vuLqE*j^F5`IBpMG+ZfGvUR(ayp~)mP&^eb4AMU-cUPpu*Aiey#-Nl%8&fDUX5#
zu3paWbK%`}1?sHjRe@0^go<7%^w=b&6icGgm|OO}ROX@l%E;iDgzPF3+6gA@`AgQH
z-z?H{VL<|lw@jMI(2UUJZEH7SVm4YbBoU%ly`Kb~y~0e{)C1~vXrppd#;1VV2gJjN
zp-&_W9t^sZoalNJXjWy|BRcDG09ZFeQbo09gS}u6cxY}TGr6e~$6MWe7^q4ypWm8-
z^QrVNCBt$zSs>_?XaW>hdC-^_A#Uuwh1UgoK51iaNU+h}1oz!^;wm-Y#^-xvyLxua
zavPH`Y?}^s63b4C5h=AwO83>4tf9Z=gS>vY(Vs8fBY=H=F`q1zryVj5jj}VUXo>k;
z@pc#PzPE-bz_<Mg-u@+`ctodyXRv<7`!9cQ+wVVEUoI2@ecnX{_`Rr-D?U%lzmV3s
zy3*olE{95l1a7j4`5y8g&)J`^>W_hUu$~u^_k*yZ9q+|>2z>=_dmfDQ```mGg98^A
z)_Z%{m&Q`7#O_d_et(fo6~}RWrSo3W4URkOE2kRQ3dRKYn7W3!dKRS2TG#*Js<iaI
zZZTfTLf9!k7C+GJI-~%C^6?&9Pv^u+3vEs==&}}gB%Eq2*%I$7)30^%j@XnU&EIpV
z<ulLk8&|@M;2KueSgV<Ib1?vQgVL4#=)2sTqt6HQQja~tA>4ZLk}U`ag;)xOmNGrZ
zcDGMnyoh)F2MHG}U~|x0%7Lz(XGZTQIP6$Ki@;6{PUoIC?pGLp3_nU4J>OOW=_s>^
zcPb<_PgXkh)YD%0N2XwUxPtcWfq9n{D$POps1b<Kh2=&OEF*WSEX^@c7NZ}2D%VGr
zSl&P8bUI!m(==Wno!%pmeOTfv<v<XS{K+_K_HH9cbmuU`Qjr{WxZq-<ro0~tsgTf`
z_R^ET;4qF3$A)#<#|bqf)<J<TrV|KMyw`JgnPwd-i+e~ij*lLxr6STpzE^{k>j=;$
z!!(@n0YAVD5a><#HD83M4D&)(6*<=KtFHPG)>|d1H3RIR1cYauD5MG2PlE@M-bDUv
zFGrYXi!Mlo>k>qzFz6=CNDtYpI7&{u4lF$vId}n0wJhDG2XeV7F*<<7yE<AW4+^61
zETdCFxo!m8a`4dopIe?60i)b`9H}khgTt&bL+<O*;BClKt%Diuyuf|4BusTYYy55(
zoqzsWhu;F!3>A<hMQg5HFq*y{c;N(-kqGMSNXz@^{QakJLgaO49vHG%E2V3jr4G8q
zh9AsVcOV|`x?Q0IN>xmL6r>r&s^xB00NHk@V70G(BX=lmE~3DpNyWoKvsq-WQZ$#U
zRx?$^5l6}<CHELkh?p*nU=n>1DY8!0asF3Po$^-`_zDq=aN^x3nRa#~kGaNqC<i=O
zVXM9IQ3dxLI$KFq?98j{IjK6+Ux8rJMoKGxdlb?rY=w_uPpl$+C2EfgnEqE-D8L(=
z{hgHYu@GUE8kMy8oUtgGF$hzX%n-Z+w)sZOlBx6S)C|cP5OA3_0pWE1F<P{lh2}k9
zs?Wms@5T00EA#;>_FI0g_j%iGh#}DMR|ztJZDDK+VB3lBU|YLc1Z)dyp&2lwl6hHC
zFTM^_R|Ym6LgOw8zMY?#QR`zOX@|fgE{$f7-poSN4o1bX%rE8yMkt4Vq%hlXO{kY|
z?RZUEfy5!(9O;>ptdc<&b_|JYHNf*y2K^J8Z&_IT%R$77i$&nJ7jON{ONpxnF^$jJ
z9{VmWt!iz9R^Rb2M_5fNdz04E6N%p<O~tmIAHv38&Ivz;-^iaa`rh^Ux(8cW0iwkp
zxO>9A9XiEa19?th>pQ0H|9;p$;@F4Y3g#2C%AJ8zFCx@<Lw!04jox!-ySOwFRd!I!
zojNMI6vet}8E?_t|3#Z+ciKj<kKam-zq#|{PPepin#QeEk0_FCKG3WC=l8AMd2Tj=
zZ6?)cyvby`C%MZ<O*KUGT>Ik9t~7`{K13oX_l^s_`61KCvtM;DCa7ac{X)O26V==Z
zCN(1mCU9z^qM{jEmXPki+{W{+W9d}s8V$9v#|+Bo;`0l#1;DYc{YJBWh*6!+4e?0h
zDM3aTELV>XHpw#KziRme0^*O&%YCfC=0F$7e->kQDIRACW_MY+t(ZVN^r{OnKUlo=
zJDS++*(z<ILNW$z5YC|>o!W&9Tl_)V^Igl!SX-ykMc3D31pctYag3MS^bUb`L@FfR
zV-M?C$-DkSMQ1o<N#g=_=3+&4+pqyXO;jht{LE>$-3Qx5LAA1}wBZ;UhFP)!I}gZ@
zL;7OnAFz|f)fU-JglIg7ArTDx4zop+$;+@AG;|~xZMd8AWEv1=9=AxRF=PE$WPcdi
zg88X8Q021R(6VyRaEW-IKt_Gtsf5h{c(yS8x}??SoF63Ev{{y%Jr$YwLye5D<mMF*
zCcs+|CsWoQs8sptr4H?)p~mW%&DSsQ=-8>TOWyT`n5jJ>C&=tx-nk}6d%!QdE#J)1
z?P*|kxY{pOOE94qv&NOM02}t3-}{K)Zm_trLmL!{)y<Ke*SU^wBHCr0t4U}+FW9tk
z1>3{?UbkhArjFS!Ytg=ck}QBxO3?>Vb3Ty9dZ9SFr-LJ_w6}6kNR2FcuqeR(<WeZb
zm;SF@-Al29A2|EtM;Sx0xm%(6%<Duu>fFT=M12+Z*E8lg&Q@BqQP>v@G<oz{aIIr0
zEH;C)FRf?iM)=I>Y)i{XHyn|%V6t{HH8#-ahTV<ND=&`&5m@w3*to~|9l4?ue^$BU
z8_0pgulmqe4);NfVp3pgb&h#Yj%L(kZqm+Za=m!AH(l`+g2t8#G_x_V<PsNE)06>l
z^tm<zb&#Rab!=w?qmnuQUI|(P<Rplk<%ZMSOqKrTuTH4M=1*lu?6jvVgxoL008aNK
z4WpmE6sEox26^QAZ4S8Q4*Bjdq0u~T0ozq}3H?)Nk&}gi$Po^=<Uzp5X}gN9Wciwb
z+>`E)%_49VvT<I%YvtPh`E=83;3QD%DmV|q*n<ZZBG-`_9dZllKi^|d-x4HJYAWEM
z0K0E{lGTr^<@E)DC2BsK#rrwbg|GZbLDZc0);G+}x=!%8uD@OC?M$Gu<v9kA2*>T<
z&pI?!GMDR#^<_=sMeQ!t9inhbt+C7z-HsXl|A>3*xGL8zY**1~fPzQ~h_FPE5|C6H
zm5@-n8%YVJ8v#*3N~Bv#y1PLU>FyS#OS(DZb??1&?Y-P<owLvH`~DIYCUd^?na}%-
zG4A`iX}H8~7x;#Pv4L)zeZ1orDoI>LG6-w*DvzjLj0Js0FHH6|v=0LK?-xBGCE>7O
zJZL=q^GW*mr~8K|iM(*Y+WMA_wj_5LnWjan;!$JYNK`U@oZWXnGi`@-gx`i5duIL5
zCDmvrMOdr5OU(782{j5}Afr^C=>F<+98Y&hc;ji>5BL5mjOhDQaS?VoFX~h%D}A)6
zTgbC&`Wi!YM)s9kR>7BUmZ9=hYvsc(Vv25zKUY~FbGe5Rs07s1#X*E5H*NziR3fpE
z^?St(s8HNTe;G*n{aDGDP`&@~P`An1VTA4A<_I*(1nB8p<N>SH??tV>xK;ErTt_E}
z4{PD#e_Xro%?FXYWCbi7vN5TZfq{WvO4TbJN^Yo@vS{9wRG-U(VoNSj1W(?b`m&)&
zKi{wP&p&rDj=3<=eOH?7)!aBsJW=kqB%+{>%r}49Hh$L(dg4$O0L%w#2kJBy-mvWH
zCoxFOM(u7Q`LEydKm4{oe^E4V_)=sw8qtI7pp-li?NN~p{n@4Y`|tm==k(|QCb5r}
zh_4aOtmkV9>If1^5Q2OoRXo0V3+U)*=`E>${!_mn_5b2G0%$S?6$-McsgD3i#}Iw^
z(9gQOu5=U;Qh_;_4Z>NqMi@B%){^}5D*_kI<+6(u24jl7d#HoIC;Q1?e&65v51ME`
zvpUXezQ0h!|Bd(P`?oZD@ukRV(9oXo{>#Hk<4Z&o*;LO*Nb#p@>H9m7NR<ty5UB-j
z>%Im6PL@nF{c&IWu~+`xuc%JBd`VAF*XloC_IH2eSKnubacw%f?(+Y%vO$Sub28vf
zK!BIt!v)medaHi@UU*y-Zf$Jz3a=CW|KT~k(qsRhpU|fp;F~NuYyRt}{HtsG^H0Qv
zf>8$#=UUm1-t6D`u|FJ*;qhFC!31L#!T3L}ATLB{ev?1<e*^Ab_;kZR+#dhGUzs-n
zQC0t90U+<FOXF|;pnSx%0PSed<g?q2=t#@HjmVOBtk85!x2ej$x6oMe&3rN3HIz4W
z_Y~~jaNkHYv{YuFHdp3db}s218u0!?Gb?Ahg)?lJ=4AW6&~&6YPuwfN{7~(kf|MDa
zGUq(`P^rn&*PC@8;RDDALZ-#%IA(`05GWNJ?2W~e0dL+c<~GsiLGyGFY4^bV+<bTl
zf6EI|a700fJR8J?+Jgv5d#MuC8jy#HHQ$}`Mwv&q`4Z9xZ?+8c<SR$hndR`XZWd5o
zhL&a_fZ~d)2zJXP)s$>WtZl#PME=-+>&U^mVsm)_<JY^yKfXB-#|0VKv~tYT0o*WX
z=U5krn~f0`0`!;q!2#dY@S3r?k)}Plo<h#rFOqmQFZZsPXq6q6Yn(`iZm-G8Ja~|%
ze0Nf2-O(9Y2amMUs@ezv%DY-GZ?%y1JjpPhqusD@R-1K*#K?S%E9<$PW)TR1ublL~
z_4&;FSe3KO%T(ugP;53E_vL5{fl4PULJeqvE@<D`rifO`7(`r#NCrCwSFo$m69}k6
z#Gyt|jUwc*dq#FGtbLGP+mjAnST;yu-UAKV)nKg4w;21j0W?T-GW2jYq^ci;a>Hz(
zG+<P0zu+N6*3rk$rA^ad39b~e`pDp5-KG$RqScEU=zjK~&iSf4OtGVu`_maQml`gq
zQ6+=-UwVo}_+sU=)T{s`9BQ(P!9IeU9`S<Ie&Hs<Wjp``7AAu(kqZ;0e}Oia;@er?
z>B7tF`WMt12ZJ?<ryO;N37m?wBW}G*?KYXH6;*QlR$rtj*9%z{bo+*)Jj5m>FV-6}
zuN0_T`KJ_R#H<NSSbq$L3z~@nTqV2wL2~Tr*Lai5TKrpYH(ovF{kDk=v6KMRmzOsG
z^{9x=&K9PYS8GKf1hW8~f<qt*xnfa)3>$*s&O-a`m^3tb-EJZf=}ll^oz$lG^+ZZa
zREK<qk`A=$o;+R1y|WxorH05?*NG(?Fds}vy7O6L&I(<HnUs9P$y+MF@1!mYuzhHy
zF#b>!{rd*<&)u6Qvii4|m$gz&0Kf`e^a7yZ)mg-6nGp4!uV`p!V0-lGg7xHb!u>Zi
zk;hNV+&mfVxRx-m*}QOMT!1&`=gpOzfC~|&tt~^jW=Snq9KBLRq&1cDoQl3I==CfY
zYSt9F4+yvv4U{^0W<(uE_bhR>hi_K2=$8Ad-n_P_U;r0z=j2pdj4Ap}fg)%+ox;Pl
zyz5{QdmVg|c5m)fAoD&|;Ur*1Zvs#o-;fkFK*h{FZK|4H{Rt!}rhq3Y1#mBXfU(Pv
zLe#Afg#B+uAfgeXy56SBRHoEQ-)EQglByFe0NDVZ{j(IkwrE5z{f6*(QdCuhz&DX~
z%j~syO`lb=*kxrTI??&`I(r5biy)VNPh5ZLUwv1QOJC3sImV>=7ssh*e6#3aw&<@T
zP=^q~%7aa1#H@eyRN{Ciq#J&nQZ;L!u!78OLAq%anvMXOc^8fHzU`Nt`FgnmlgGRU
zkDW=>XI7+?DhlN)Y^{s3SgZDF`}M9;%8A=IAtTPdA`TMFJl3j;7!Q+KIJh*1R)^ly
z7W1320$rve;IT)H4)#hD&~Bp(aszm#V<e>iF)Fnu?u24EV!khZnG~;l>kF&X{`O4W
z(gtjdt~;PAKLZ*<4Lw8}ZN+v47!N;=%zQie!t`VB_11sva=-Yhx)p^)vB^AE0Hzg8
z5H~@W%Fqvvkp-(H^^Gmfq^RX6)(cdeXbse|t~ExgMO2~mGxst!4_w82_c`c8AAI=m
zQQ(cyUawDP+91i^^*GU8xQ&QVwr6YJ9fG6ujT<*IJ_%*c`G5>A7xwrv;k~t>_(Ee^
zg`V>6Zjvf>ZqRFo*5^IdZXJ`kaqeNg%I%mi&^Q#Hz`Ru*&TbmrrsS@i;Al8D7hfE)
znIa+!;+dGVV#W4@$9pgz|59QM?9bu;jmxHp+zUBs8$+I6o(=meg@;4S&~KAVZ1i>B
z5=!^4CaAL{`9PGLYTLk@HEGnD;At)s%D~Od-Ak|4ng%H;dz@rKK2<E?t@Z~u{wavI
z_vON{Cn3;nPSg~Q`Ednxq&4c<`*Uye2)h5c=D+v~S1}eaLNz=H&+k-M2M#j2nx(v7
z0Q<%8AvC^)vT7fn6j6=UjTr4+O%@uyHRXN#J==|g0ip%Y4@9IE0w4OrH%K8R^2Wik
zTcOr!vd7n*isYV&Cq=ikTO68(^O>q-UpXtv1sjL1CH6F8GW6*8FqfGr<?84dGaNeg
z1MXLb!v)!uz^_7p%_1cbN1*P|0l95&&iDcSW+++mwln+2zy$QEy%i7>OBsMCk<Svp
zyHG}~p%4<==|e1^{ZHDj1=9V7W>MHd5o6N>u5b6)eL*kR3Ahj3n@QKBZLZp6h{ysw
z-_3q;D}%rtV84hD-{tg`OW$F?(3%*4R;4DQk~)Y4VILd#64@7zp00NYMO-li$wEO#
zywILN(s+Xp`=~zLrF<Bho1631oez2zITzj<zjwJI{y4@kRfE-LWn5z{T!L&4fDh)&
zk~S_M_n`TvnBMl>ZW-4|dR%oLnJ5|drV|=fBBWn1vw-ZTX?Jt+F~>WE^gC$-Dy+qr
zqy2Z^RnPU1@@Nbjz8C18Em{!*4))r{XQVIY7#!qI^CH#RJ-YU71fqFfDqnk`ocrj0
zwj+Oq>-oDlp5>SiIA*VP-Gx*%lRTIwjKHjo;PSi7A{gzQisytx<Y6q#d#5At=~eV$
zT3K~NA)8Ero$D=GL~0TBCma(<rOE+8_AM^j&<7$SX4AEZ+&}X@U_F`TH`p`GVTxAD
z7m(S5%=0Sr20eM%TKYB|0K@}wn~|%ndhQsq8;h`KVeFoN2p|Hdy;Rw>L1^_(ANnRU
zWtf)whTKrrMaE=Ms&}_pwYd}KokPU9kKy*6&Cs&u%xk%i$cM`+UGYMHoPCpJ&=S|W
zjt6;#y8Wr``==X}ODF!BqtqSXi>+SvHBng?XYc8}K=lgkegmfo*G3oov2)Pb&c?}^
z6qwH;m!WyRXmF~IGt)E5SU$3eoqnfdksb`-iR_C?k!8B-aF4l<g7*L9of93hA&~l{
z35zxdW-ZKjC>`E7+bGde7spB52Uo*YS9YbO1KRF5e-Zxhtm*_ZQH!+$+B4%3G1KZo
zyf58&CQ?Nw_$1cZI<oNmZDHgjZq@M{_6@LA`EbL?pPwSc)%(8YId@jv4`)e3KE~!C
za=6UpCjwD38?}=@YDs*hps{R@i{K$pv;7*xug_gR{L&RysdVB6F&qt)9`5Z8jU7(8
zDxudr2iY<GJ3z7yz;QDn1Umy<VpcGSpF(FapfG+H8*+!UqovHy2+md6V3#=g_DWSI
zPZ1Ba+ps5r^*cXzyGmzb!(l9(Ai8({b0uc&bZF-N-*wH2+J4+@eYPo<xEH%NsFxvd
zujS}q?C2{zIJa!xE^IH+dNC7^X|kRQ5bqow<TR-A^SaO1?seIrzoLHh#aXPzG))gR
ziq2^g)dc%{dD=w+ZXS}Cyw<pl=Zb25Z<qS5@UTXOsIJ?U|4?lvhoW)rI5W~t@te#1
z*#G|gD{#=j;rzOFSG2Dk499cew8TUCEEQuL-%<K)OdB(rj-*CUV4u-qGZrY7NiufS
zm#puq>~4@3n#es6cx_A^QqR3$=wntZI;b%j5IINk)Ko=`)&w2(u9J9KlbAr9K8ZUI
z5h|ynft<&xM*_@n+(`djyoSPE0Jl~$8Hu3qQha?qIHYjxxIcW(#t@Dt5P)I$1_WT@
z9|Yh*flON<02@+)@UX3buGbskcDozk21{B}vZ54%8QOO2Ni${Qz3vWL^TQL0@vT2y
zYI!*|jtTlsTVWzSIw0SezjF!wQS#?5#5;kIh|}mmkx;Ks&<X%xn8sSS?bgFglk_AZ
z9BtU8@tTn%Bplp6*FHi&g<x;oTSsjs&lg3ZT@KIEcwKvi<BDva<PbPW?0b1xroJZ`
z_{n(Af&R=q$UNWK5x;v6NtcfJ2mW_$V(Vysn%BfA^&;de>Xobs#$a1E8zO0y2yB?X
zIB8CSNmBaKECBwVcJ03WK5BBgE_*f{6r;0>F}$qwDBdrW*EfhqSaeAuQt28jfSN)-
zV~GGb*B(wvC5zxa>Hc@AvaHVxg5z9{;&sMNmIiR;{3nr~eB6aOfD>adHYkp+wwGij
zF%HAQjwI4L_0~G5X-mzOj(;4ju&+N?UgGoW8!3knM6MXY=PZ-cnTXwFq4j#yvYnsh
z1GOhLD1JW>;)k!*#JKt*yZQN6&Vwk)Dh_MhtKF=bA||Qr3FC=0adn2@d=>G6*Nb9d
zFu!Cs+n*C}zbtd}fou!H{&fodAz6|5hJ=IcZ-tWou-5+A-+uZkwiCkvWZ+2=oIQxX
z2~m*Epr0<K20eodwp^(uqe=mp)^7|KsP3W-F|mbSX-MgDmDI^pHX=-$K9w~YC7dxz
zreL|2tL`>??}3rpH|2I!!;Kfn03NDbO%$${L^6enr({hqlJV<~k82{akpR=~FGKEk
zPVo${g4nHW@!%9Fb(5&+SZr1_2=0AnATbMbA<4eX|Bxc*Ak<DAlnbtjhY85ve4;Em
z?|0-`@9t*5$AlTa{-@K95ODDb8Erv0Wg805At)Z)lmiICt^Exf$gcnzPA_Rmpx6?|
zT)zb3MvWXaslh6mj%4ab6DP!!<XfCyNGl*pWGCRtqk4>S*9l>wty`89`>OUg^inFu
z1hODBf}C(y1G{7c6*C7!d8*NkDCWULb1yrkR%{Ld0sGG6C1SNjKB+xR@1Gci_kj?I
zNZC=X?^kZpUdE#Z)y(=8s`1ZToYqS!dtlg6)wzCS8RRz6DzEyQvef;j14=RXF98S`
zsEdUl#o=xG9R&Omi`3*h2pHrIn;?NNYg8lBhItB-`EAkk4-l}W`G8Ic$`=vdS3q=*
z$xxK+1v5_CT3#7r@#*9$IVdL<U6sD)k<;&Qd?~vHssIdb6Wf%=uuN9Rcaq7*Py?Fu
z?J94Bn!aRNfJ0vPD@0-X-<&Uov$rm~=uT3l!?BjONy6XzX|ZPL*W_E@PbL4W^!WXM
ze!52@{}#)1HeIQJrdaVId(hlRLH9QfUFVw+cSKoDTU(d8P1K4*5_a+@H0oJSG_kM<
zxuC|ky2ee}Fe=Yn?hZd0D)Lo4R{A7O=(F0(6Dt9{T(a7$##t4ct8Z+1UZ!25CYzw0
z+deOIUl{M9Ov|-V(DN3ibMN_ke=LB{o8Y;JO_>npU>*4%g5*>Onf9dW7vZUb?(apN
zcwxMopY|-i?~h{SMjJTG9mI_*YT~k@gk%)!i;#ZE!$EilNyYZglH|Dx8>V7Tr7doM
zJ=}rQ)cHH?PNPWZccbcVWQ2!YXP--E)67bMuV@XU`&c*b?&<^uJNX_dI_plVN;pAf
zlI(e5@%eKwOb>}ib3w-rLfBne7t~fA4a5+Ly8Y~3A-lJ;ao);%vikR({c!u?0mia2
znNc@;){E$})-uVoH}|G~yer3`rcTMx{mG>BZ|}zMe@)g$D-DzUjp87+)PzbFFA207
zWf2696eyBB6S0jdhs<#t&{9%f$h67N2t*TOYHJ)ex-a`!sragljy=OIHSiqpxF`hK
z<!`xT5S)r)(a$EYCT#W&Z`X5!Gi-?$)$V?*7gy^3DwLST=-ibY65YCAR}=4GfL7<J
zw*2@^a=dRY5(zDP+6#}KdVzn=ToG(%=|BKm`c2-wsb>{k=1ULU*8mZW02n{2^t{yQ
z)=S67q;U_KugH?mil(lPPi5;657KkMkY5GYRAS6xDjJI64i1k)LVF{auyj+=aYxpp
zKNu2;!a*2g0q?Q;w`SVe`QJIg^$~r0^L++Gg&8sVh;dXLIKf(VUK&m|ckoJExz?Ij
z(zT-GV)X%mTC$n4Q+f3b{u~h$j<1!oZq;Xy>dinKj`OAE(tIQw?^PMEsG9yldJGLt
z+%pV+`BBkAPhPD(&pxaHU4kNvo3m7wlkujdx0k_ulON4(U#e(Fa%gE=b*1f$jD<_!
zdTGsXCT+u)#ID<EDStdA+KS0Y@vg42gsWrnEib%3V`#Q0e22ss*UM3<ryxi~b!qJ$
z=xC^ACfxAAqgRLssel89p4-G!vIN57MVfvjD%vLtG~ZU>L@#{_hrBLtP;p*8iNEYZ
zMfDW6$N?nA1W>{wY*ibzc-AtKf<bz#kBNlVrdrHN?mj)$(Ji#iJl*;+;aejYM|Fb6
zeYNSw1`fJ68s@(vgf-;14;EqLn|-am_V!-I=~Sb{;Jz`m8_FeSiF^B`m@x)UPYa(&
zP?wK+dwZ{lva700^1!x@NI<ZsH8WdR!zBH0PUjKh{}|SjX`Bqbb@u1>_V0`Q54XEB
z%}@-T!n$Gv{gWcK3OhxlPYAGEHv3H@dyv))GsL8oK2w62!o;T&eAs6&jK*@~<L;Rm
zmKu*Kar~APn0lL?$aJjqH!iLucqd(?2%x3$0^{RlAT##9dl(aI7JsTY-$1%(0l{j*
zVDM|IuGE|x!}u|zdLl@=jRd4Yy~lq>1<xB3@=fMD;$Mz{1AG&jMD-PVs8`@_&N;)5
zs^1t8t@#ag+kv&Y*m`%`3)F%>{nz9!2+}5tyt%`hbB7$8lPZY-eQZ0pFZ59=Uu5w7
znt`He;!~1O^+o%mycJallA=fMVE5}c#XbSa@YXU!(!2@BM~{)`Sq0^({sKnT7{B-7
zj-T|pPbOQnjeY3a4F^rFLDs)97if%r=2USA>d>ctGaaB<WJpHKhJ34;x^lr-sWXpE
zRIo4Wi4<_aNKiy1W9sAU5+_B*E0jpfJ@+cWpid$FPWyz!#1h6fF!gF9B(l3kW0e(Y
zG6~NtY)zr)jGuiAQ}4%|Ak9{NBI-gc>mf;z2&E?X()$JAHC&JYr@Idl9D)r0JQjhy
zSr@DI;Dc*ac_^2yS@w&M>Br;@*c~^!cjD0b?07)1DPk{N*XxW3hXFb~_v{4blSzos
zm|k?l;_;YQs9oj<xx(78VAJQ6%7n*i^;bq5g5J&SxI1QOZ%#kZ{0It+MY8gQ>OQD=
z3}V1FdLg~rF`j+Q!Tg?1TCH!;;!kT3ddRmgt9j|2_(}f$(`x*~3T=#dW^%O>0(OSu
zO~)#2F^@otj1dg>>YHHh0zJEbiKdVSRiaWw=k0aqWQw$=<X*V)aQ55_HDnp?qY!~G
z)E{B0P_D6=efgyE70v(*p_x=T=F_c~zj+{Geh{&o(*Dj%<UA3Jhph+tZGj>;Ob)8h
z4X^}Hqcg|?0y=X=Dt&L1g;I7@Qo27iJs-C9(zi4HwX)AI-mX+os~d2>n(4MOy#`ct
zeEn_6!FoDB@6bYfE+JJ5PDl49QWcO^LP0nypbe(><C^Iji{Fpg13yr7%UVP;^9iy;
zZtHl8(XI&mG^OQ3Yhe7VUL`msR5bwR-kT^&fXGo6pkwE4D~+JKA0u{r++Fuoq|}eg
zd*X2B1Ma8c{CG6!f)|V0nc4$Y{pxAPq-jM%H-iJESo=6qScw$fD%!FE9cgxBXrOSA
zEaMQAzRc|OZ54h|&D0`C4YHjXOH1{NEo>EH+KI?Eqj?-<t!6h%A#ZC?{p|RJfC-1n
z{ZFSI%rayi=yCx(aY=y`5{*=34RBo*O3ZYgTq7hTy!mcphql!HJ093e%_v00?0%;0
z1R>9}w<5PIKg-&b@NA{@K=gAfY^NX}&N$W~{g7J+&NbnP&=;9=mv-c&eU?cFJv$>i
zr4McI)4D;*Xj{%TFFn$Z`M_SwY^^$UBqI9#EL0j2s#IK+$ovTK%L{a-(4g1oXbxi@
z$scut;H$DZ&6?VUv+jPaw<f(;(miIWrIU*L1}mM94zZio<DlE0WSChufE!8ESS<Tn
z3%mPt+z@ofjKC4=9j!{2b+C6W3wn<qhTqZ1%@WDV7Of~~XEuxdzJa*F)NIXM0PnNJ
ztuw#><FC$xWQEV1ZaQ`*++X^5XJla)ObBJfa#fJ>VVyUuez;1&Ih*jt)rS`Z%Hw@|
zZee237&-YJ8{GMS1sh!A@14p(t?)KtodGN~e3K*A=0^wT@Ppkvp=ldlOEx<@%ck|=
zj6IT}1^p=Vo?uAUy7=4(_Y%7NyPbnAlA|k<cnP$b#kK2Uq7(H06&fsao4G1!JP^wZ
zvHep{!z=(56e-iwa9ZXR=H;1>J7Y(OeKOo4jx)?Lt~iF^Xl%_&(^6)GF`zW-WmMs#
zREd5Bg^n~Mk>EC8-a{L9b&^a77ssblkT7ywZcbw)3Hq+>1$42YUbL;Q)yG>6xVxS9
zY4u2oC2Wb=<i5AAo*AB1SrdPogbdi$6!G38@n(ClRftdI!ZBnJYWj;t(?w@_A4YTC
zwkbI}+#7;Zo)HqegI9oi(hE=j92-^b2k_BJ%{-mohI{UUoqV-O-w>eJhQ~7QVsUpv
z{2k`w5Wc_02A{+XQ~lwB`2ce^>IYPEKkXoY*h>Gk1G}u=Ko|=Bu(RtU`RgEL+nPVj
zahf=SjUo?n)G8fF>EeZA&!DB+BvecGa15|#un%!gMH}Y#GlZ&V-0#y+!jUy(wVa^f
z&9mF&sr`qBH(@y-uMH9LY91E-Q^c!8#U&d*;B+$dvy>jiNg6*Sa6l{u54XDG{5Eul
z<LvKY=vM%5`KFy!i5<7u7vZvRABk0y@4k(AoY`<T^99x&S=#utOGs!veLIi_?qGn~
z&&m$~-%YX~p=bS2#X}fR6S|wa?;_2-?6(h~QQecTe&baS&+ZKQ+HddReJe$$Pu+|=
zNTzO1sP2Ig!2D=D?9$;^I*dVlZ!34#ORXpwk@9LGf=Fr=Sr9CNCOs_0>-Ck1q{&L?
z;nwDPaaAy9)mlh|_tk*mZ1N5R`nlPcXK_V3$x9K?2haY>dyP%lm&Cx*THR@z;w1{i
ze#2}P9FFTUuZ5Q(ok@T-sti3Y1qz8a?%MebwTeM^x7sx?jtnO#@^uL|sb`8|Qi1br
zOGLMWpB6Pd2RHF<&8b1PnpT_#w`x?~N`sNOSz;D_|MQ?5J;Oe`yCFVt=Le{dua2N!
zl05%2DXq|7GSh+-_^P(E)JfXrb+twqQ`M=fpnXY`bMd7b{mI<I)9;%>vkS=RZA&@*
z3Xh=AHaR9APZr4mJ04r}TGgyq1A}63;khldx(|B$MqA~Ui)hNcdwG$wmamK#oBhax
zr;9Swa|Gv4jC}cs8Vl2T8H(QNHFyM;aI2BoZMppwL;g}-)sq*5pFN|o-cF(+-C;c_
z8(~MOXcep+g5=fs{aOK*queDRpit}Mj6ip2AvlFe>}kQw;rqQ7)5wVpbmj~Z>JT-%
z6okzmm(i0&lTLLmlP08NF<9B;X^rQKm6MW-Hz@SmVK5o<xC+Uogtpu$?zZIG(DSXV
z|6mC_9=-yWFwYv4IsYeE!m<-m|IQM|{+%TZjJAGR^7r*P(U@56TWPi(^D~iDh+r4}
zx70hbHb--JA0QkLjQ!aHrR~u7+S^A9Bc~m3dj{*jy}4lbW|Z@ctJKLlvz*vIFD>~6
zcP#>eK&|&L(D6T<nkjgDweQ72YL*tmGqgC@b>C;}qpM3tADEjTur-+EmKjv7JsqHi
z3Ea+-So4Fa+kVa*@wy+Y4%yr+aX)Q?2k??=*K4oM4S?(q${J3$us7HcHhAj%tN+U<
zi6ea0(e{3yK3OJ}EER<<8cZd{MqB%Fev(q0z1UyrsO+kgr1*z>VXO^C@ynO{%i+DE
zSji>U;`6d8Qi-3>%iZ%+bFS(V9&Ml@>QNR5L!oPR2p@c-BFa!D|Av6|c*t&<j&kj-
zWC-fMBYXDjrjB7glX$CRi&XlygNNeY9%q<>l+@jUvv>T66P8=|k5$oxP|1!ijON_#
zvQqLNDbz_VVi9j8)+<uJGPqTGX3w`@UqjPmD@#{OBoO_;nGN?Ew)TolEJicfy>DKS
zkgG?I5o7fTRf>8gmI}KY+(^2ZkO1^r^2r?*3c&2?R&}o#fJDDF-_vO;P#s=I^Zw2n
z`KjPXgP)4{#$56jVW04Jt-l&XBbyou{keWwbd4Qo_>s$s&M_T4K%iLhbh79dq$S=|
zc2Shxn+%HJ`7&)8Yb1y4)qT-Scc~e#hfC$@ipMu=p$9j$6r?Rez3>QP8<%u&y>zQ=
zGv0(a!S*qx_P!J|uHwbopt`Yop^>6=rGsrAlvrYY#l6(q)KYx<T$|#=zrTA=2|PBp
zCLi6#t`4M|rQ5uFOd6k&?nm#RN(SvDBVMZCtJWVk9Oz~Kc5&r2eaaBMO#_O)#2PIW
zz2jy0tIUhlxW4#V$C6g$!oY1Uj3&-t(-oN6*=?kHbA--jGC)}NVs3gXc2TI~;AS>q
z^r6G1ex9D51=iK;3Ct{i3i#yv4UbCyxLC^Jf~b3UpvlkU?O%*q;mJj!f*sAujB|_@
z3zIAg@SmD+o0(IH$TI~EMH<LwZktinh`tU}`19ZQ7Dw2Ud<(BMx=Zs9EA>zBsBoMU
z4y`Vft%~q*c6v0FW!|iMcF3=4Lh0p*2CO8ep}to3`NPn0^*WZHJ`4Z4^zZ_3wOm-3
z81X(o^vnD^FU_CN1y3D|xy;(+=G)|}Z<JEw2J*DE(YAEOc9#})N0ygE3%csvbvtoN
z8HoOz!R7MhYyyR;{KDUZ4x_)R&dhk+vdXX|t`rjDydlxKS?Bw&<HR4&vShYsDfXKS
z_eV$n@VWo#wf=QQ^N(-FrFH2BQL&a~^<}z0ziNN?k*+;_b}Z?OV&2~ZH~;y|g16l(
ziq9~IQw#IbA7AjV7R0X#+5k$vW73_;1HX{A|IOD_hrFcETVduO{y$vVAHU<8IN1#Y
zdo7{Ad=S1XNF^OmkKcd!zr6f_8~&xxPJgug=HRCm)K5~BUw&5q?LYW#Vhf)S(lSfF
z{3B!K-@fJV{q>sivvXn%_<GKN`3nEr<KdFK<ZD@^qgExL3oAvoC-Cm4RpKFl<Xw0q
za#;RV3-jNWO6;Yx2}wYtj(`7E;{WB3{@Wvwg`w>PxTL`5{;|R$JG?auu_TqvLnV8u
zB0v>%i7^YRxzP3e)tdYp{}DjxAG~l*49?$dc6foGmtVPtsqjhj&ypVe4-X0h5Jrpy
z%Cxn{ToxGXqv4g~a#^96!P0(Po%s%G?*rHW^uc#mBx40h5A}ikN`Px9`rU7OIyC1F
z68-+SwIJh?|Hy(a?O7~b-u{uYtw-w=#aJj=)QL2fEFORda41CC{!f?sf(JhtQ0gdN
z%;m^i*6`Kb*jt~~US)pLFh+`^MY*N3WF6uK^6c(4{o-cw<Kz9sj}JM3ERB>c(mLB!
zt6?)HJt|2}YSomFSRW~CUR{o1D=W-s`ydr3Mj@T!bX~gg0jG4Fg>9bG(!D&VL-w$_
zulcd}8qAUe_soq8WV=2_jBv6|=iiU+?c-Xx^F}EyL6Lb)J5PIZm8;+%3SMY)iNQ6X
z`vBD}a`1^4ye}@!io{79bSJ+i1b6{Jy6n1#K9*^LU8NcE?jj^aq`B+S!v46o`7*##
zlK_xnb%4a%gDGyy!&1?MFCPsB3f{st+YD<!H-;JZqz=Ro?3PF>h-fZaYko`oNssjn
zTiE7Ql7<zzrE-`Lx|D|hd|R?)e638+mTPxgcI(X_B+FlHOeOdbl2KUlHCS0Jj7g^%
zs>NoQX~pO$+da#Hu22%pP$_TRn0%PdX|=$J;2RJVCrD>RgNJg_T<)FeKIl82WVg3w
z)HOS6-yGnH<-V9?@pV_XN_6Zjie7d-_+3&^i|jG!C}&kYLlO&Hs!;u~oyV)M)a*UO
zlZU^kCrRbSi-XLtCB2Vcq}xQF;P^>&mul*Fky@az`VeXlkX<%nn}qXt&E`Oc9AE?W
z2(I+8E-<tjlv*ts7Lh=acze0rJEqKvAMLONN@{Tc0C-m&nXsQYjmZKRmldW^tjv0?
zEJ)Uovd-8;&?Jeuu^)kaLhYC|h=`i+Uyph;KMMV0-G%@P%^_wtJ~_08O3d6jq1@od
zjN1t1Es$Py5QdkHxWUILovY+CRTTAiqte@g4t}gZ+{-S{Pcx#hWRLTsU!u_$IOuF5
zeeyMiUjHDG_pd&L{+!3TFN{DiQ#|%pa~fDzOz&S}waLhbg$91*BgD4bS~4bm(wuUm
zm;3^|%ldkS_|Cf{#leMUz4Gxy?y|xN2(!6KOmI|e9YOU@WVx&T6hq3cE7oZulqf|h
z-M)p#Z8F?ynYT4HNoINRMpMc6mfvh*^TleQFI2%>3@(tH*7V%9ZFQl<XN|M<9)5P7
z+S%&?J)AUX0WNP5FUTi~1l78R04>)565b7`TBGJ!v&f9}QmPm3oo0kS?}x+8M9gxy
z_`0iK8r0N3-+T&)yunH6Tlv_|yj>w1waHiS9{lu5e#L>-knQrr&nFQ9U<3fJDcAS3
zOJPQyJOHxE&sKs>KQ5KKAend-84Vh*qyYQ;fxEY$(|Kgv@?UPr7x>5&(TMIJAj&m6
zGLCSmx3I5Dq+?hpRXJ7cfJ@!SH6-vgf7pfYDZrm;Lf-l7$rJS*3vW2i+#}Ck7^=UE
z<+j8$TV@^pmDd-2=o$rUOJK%mE&WigVQ|>a=UGa}wxw*2j#d_qZ)(bx^K%2bleMIA
zBXkcptc(;)diU9CWQ@B;Sa_Z$haJj<NE}&zO%VsEx=Sr}toQw0XVdJNqc#eW!0cBW
zd=88n278-}HR5KhN5CB<Mt$yvDh6pHml%=<`v6V+BG;80(!B|y3>Dp{zH5e+zTlyx
z%a|<ZWa5n^YjOd8ZQ231yNcO+;-50W4p6v*<i>D6n}zC?1zdWCiY#X}8h50dU&-fY
zxkdWDAadvDYl{a;$lJ~7XHH2Fwh(kIsdlBNL+D>yIN4b=1J846B6p4^OEH)j>w?~V
z{EOQq6(d?BSL`@Ui&GXxD~14s@jk+@y8{T;y)e@mkOfb12oe-uZWu4*$A+}EspT^x
zQxtOIZUa!U8K#cq8)9Vs!Y)zDy`cgzIwuKGThd7)+NK?)ygZ*QSERyH#l`DRMHwqQ
zAML*A(`BNRd%5}USW>>3tawmxeFW><$ylg<zTqIjWZr5uam^mPN2QHWwwu5i?qd4I
z5L=z-j>-Vpb$d@QC!w?W++Be^u^mV<y8HpCa@Ud$aKQ4hri=6S>*6!ds}%kV^RdDc
zPZ@u#Lx_XAPsZAH5&y?${a0TJh>e3qeA6`u`IsQU@jOt}82PP&T4Sph>12=QQwCD-
z^NVFhKK)2&5@3CDRh}%+r6GufIJmSSbS&)!+Dnz4y&~(8M^dBg^wE#3mOp*EAXU)g
zd4J$KC;u^*&lJFUJRd=FFAR50DKI4mCW3-t{;Qp8R>#E#HgX;{1VBpn+LUeA;aTT)
zDK#cW>iO4Byi#(hHUtGJg#~`_hb@Fa4umk(d{D|iKu{iepY9D7!qY4SB~l?(vYI0Q
z+UJx-PC)nMxe1ny-RpVPXL%vT8DY~OHo6j}bZ4p#anOW5bi=r(jC3QNG4l<&J{EhY
zb(j!m*>NlfrBDU0@njv0g4`!v&m?Pdc>T7TTK<nak;FD?bF_qRzrGgxSJ&~!#aBc}
z5^rG&-serkO4Gz)B7od=Jugx$EP%YC85wQREFZueF2_Z}&LbOQqejgrF9_%Jebp5T
zo6^&btY=o|88TAi8R=dcZtCV-oyt~aU)s#>5Y=fQzzVIR<R&fTDGPH{(mBa!tX$T<
zfUe^pVt7_H4KZ1yK6eeFVY^)m0{QUub?*C%Xy7Y!iKBi3Yb_kq={$7p!pFI_KYHJU
zHCIJ-;j<4r6H~h*WVKC!>~|%L4ThPFKqq*4-Vhvi-+GP5Do41E_SZJ8F-<jbaRyL~
z(BJH)^0-^o6zQ<qP*?zwU^U$UJWAJD?8DnIhRxK<3XB#eIRl`LV<%bs0P}yNQj1xw
z{Tivp<~+~`F@s<Vi2@vw0lJSEP_y5Ma|7bpM~$XYZl_a}!FC?c#tdu;5%3PXJM}KJ
z4i`KQfoa5;@z9~S%r1AUPQ46y_#rG%WBXM^ty^Bm`gT0_ac0R!DvkH*-D5CE7@RRb
z9}MmCp=eU1yI93MYSwgvZ73-XZk`-_C2b(6+6NIP8^=497Y}<R{r3=AAQDAbbicpM
zl@}zTk3j5pxlm<@+N~Ffge_EIMvf7PQlq8S65IuYwqZMNCV@9(V(P%%TMluat8DAy
z*VZ^7{Q$#TjRpz%9(ZUORWga(WPF?$tdUH$oABK1l8(_kS|KVTMQBW=5p6nw0+6@>
z?;KG$hh-|<d|uYhl@dn9KpQ>n_Gb_B1<T|b?0pxP)OQ?3BUTaTg*yv?tozQ6uxB{O
zpu|^vp2K?SvK3ES1!$7{9pFS}Qlz<DGF$YRuO^6t7k6c<a#BAka}uG_x|}#o6m|D7
zAcCi99B?!&K918x!9YosE;Jyia(Xbs9QR{+<32nNEswS~ZhD~%hGd`}vgdeTxfnvy
zC7gM3T>w5nNuwdVDy#vod@R;P)J5FbBg{H*BYyn+pL|t<zYPjQ?<;&hls5M{4Ms`}
ziV(eqZC8ya96kF5>=?5^dQj8TOzwZd1y?;dF)+}ZuS{kvSC~`$Mh^R3p@fY?9RnSj
zh+NjqyjO*E5p(K6`LiuePC0ub;<Uyz-Mowjdpb}pOIV<MZ%<t!X1UNDkU;i@*rd4T
z6y>(xC@IyX^SHVtZt*HaYZ9Vv&RZXImfS-(l=K&&6L5J*gFbo|zsUKhayVB*m3>)#
z8B1gJ^vRM^#R}RdUwDsp{ANKZuCNj?_c$v0t}V!`D!j!G9R&@$s?-Qy<EF<yyK?l@
zfODY8c&K-2C`R(SLR%FU!I#g$2KJ7pYQ`xt<j1{SC2?`_=`y3d@Myy!a)g%7=Duam
zD7hb(mRln3$w@4=PCM@F<{;Dy7aq7xE1UXA(EE~ROuVG3bBER76gchH7z(?VRAk0*
zFL%cByNR_OQEeZ>(emv4LprrEtKBxVBGZ;#Uf!1aJ&u)S(L(e=vzV8g(+ucpQjGEm
z>0%(JU#D2s=wKE@U&4Shmm1vBjbp{-Ob!oqdKjEZjw(mY3P5CHN~|&+T!Mg>kKxUh
zg8}1y=3a*R4h(4W6hFJh0BG6e`L1um^s$4w4TfHxy%Qt{izTz^3&VD!KMp)zg~td(
zy*8(bx8l2eUP8madI83an(88~9JR0yH$OkS91iMcuFp=(mG&Mfz++G?vY2Jsqu^DL
zRF@F+vHPgJUq^uRUho<$kNhI~GEa~x*NlF6VwpQ+vN2cHGF)Qb4A!X@SdGJ!Rv$cJ
zGT0aqb90j29;ZfmrR{m;m-ED%{?j=oBX(U?&PN&r**m}8U1EX?p`ZyGvR8IpZT0%?
z*v-Lt_o6cUimo2(XMq?V`BK?U(KXgSmBkj`oiEaY<SyHya4%U9XDit=t)BhZ{kiT{
z%gO{+1YnKqB9b4@Dbwj}E)2Zw5PIQm97lYNK-EH0Kf&LPd8E4YlK{^32j?7bUYYh`
z`aITeI;oy%uwi+)kJA0<t=<B(B^{yTPc8SSLxK@cm2REa%4`1oa=kX%g)@}lav+M3
zH+E*4+J+kAm!}%9)N0@+;dZ^9b-6DO6P0C3=88QbEK{%%29tyTz#nzygQ7;=myqUg
zMbejOew(b~WxOWJ>YF|9br)k|24_i#<pnG1b6J&bE!hungumPn?);FHNO)XqP<3bU
zbg0iO=3I|!23rfKpve~d4DA?hIkRT%Nf0-Wg`(rpT;dLStEajC><|$a-Xwo`%?sxE
z!x*KuuoK;FyHc(d<0s)C7#-5S#?W{euR)-*;F*-JTGq>RdcxV4ylfHoS^Op*U3@i0
z5GcRfd8*<KxZ5VYm@sEc-YB?+<Y)K_)tsj>yc-sa2(!%r1s4uJ(|#7HMNbh^YlylK
zAU2dX4XQkErtV}17-jdWbRBx%LV&^qk#S-nyQ<=C?fNl|X7SarV0`J1W!5o~l8jY^
z+R><&5@kPQ^Ck8(R;N@<kV`!(jtZv-5$X>#--hUo^z&cZIeKP6AvCiSfLD0_h?l-v
zppD-Vj0u}z*HO__<KiwP;c}9NmvvmE$XXC4mUzBO{SgRJ4Lb3oa3GCf9nE{4GokQ}
zr>}f{#`s0!q9+rz9&PF=ZRj#m!N8kFPv9MYcEY<=Xi@zj;B^x|en!Z=cKWhsF{TQs
zMdYr7Gh~yj0iSKC?Eztxj4v`{EKe}#>Cj7C6LS%5lt{9U;$4+PXw!I6%us=CwQ}lQ
zMuZ6&@jNF`a{}l#dBpYKNLAT6)W>Y6Nf7?=K%0!Br$yyF^Ae<|R#XntTehAD6{q}x
zoc(v$^vrZKNTUpxBdOy7HXVk*rY(D9t;S5M4!898()G@4<nh%+K?DX1oNIDpqR@Ck
z;OH2!?(Dp}?Djix8V-KH`6sCpZM>pExkR2UwdU<{+IeMBsUKF^ygt{{<&;th{!ONl
zb%_f;CWp!084=i@aEIRwKDE5svzCQnG9QCg7&Bs})K~nJ+@5?K_KhNSwVq&C7Yprb
zpFqGcM%_)RnYUF>8a`a7XdB6IXBzp^m_jA-X`=yUDKMC%R#CCxI-e#pQ2+Sue5zaq
zk(|ImPfPUpC&JVOZK(@`aQ@O<s&Y>5@FBx<oB%i^M%=bgSkQi=ctr2!l!RQofj()e
zVl2a<+v%~Xkz3}*+s4C8TbY#&^B~_YARidEn?IHZm42BLdjwQv6RCr^<8a`3$)0s~
z<WW0;sWs-~?l^$ov87`&|2P}|=U2~861^1Ev(^D7j0sa$8E^4@XJ=1V2^wiPIzF-x
zG<z!(wxQl;c4`U{`x^`W+0FE8`1fv0<~mqrO$Fms*>^QW_Lmw47nKFz8QOJ;AvfI;
zJc$c#rxGmNgp*0QAFlvTdvN+J?r?04rYdDZ`er=YiLJ;_fJ!p@h%dhdAKD@po<_|0
z&bN0@uOWKZo`Fi*G(WWtd{oX%fo=<tDGo`5E0e1L|3%OnV$iofJ$#PyU}cVq+!teA
z62hURlS08{Fno%pIMxr=QGfLrg7pL+=r<UI*q(Q%Tp#vAqr}Bc9Lqzb6d7_7zD#<C
z<4Sla#o}X>Tbu)}QJjk$+*_M_%V9^ntQytFh@0a@(AU4|jqk%VUsz*7Xq=8okj|0$
zZBvJM;~>78r9!5g0Yy8@Y}FP8XVB|xI3Yv#=6mGN@27>h2CJ-iM;mmM#K-YPre%$C
z>gS+YAf(MKQgq!0!(#@Hr_iI#7U!%x5NjB5pyKh3%zN`+=jvCZljo~9_+!3-)|3E$
zJ;^dxUL)9x=Lo3!{qqWI9M=KJrn+ZK>v7+a>u`IrVyq1>J9%D32fW2oUbLAjmqA5o
za>8EF?+VE`McOjS$ismg?Ux7pBL#3gQ`y_09T#s?M#UWOYI{?@uH0rdt2C6W^Qr)G
zkZ@l-D8Iz(<S=7f%)U@EcXWuu)vd6bKG|uxj5R95m)L5L{!^bd1@)Rw9Rtfl>R&8?
z-1Rz1h7qbKU7#mx&M6y|8!DD(8T!&sh1U#zSRDjFxQt<Ab?t`o5^-tH1!bazg+b9N
z4%El>#j-8Y%ubcPCb+Fn#<0RZhc#l<c&Sd1)&gh#Ye@Zzo(4ZcpYXS@UG{54cRMpR
zNGr<X7%BiR<$Z55`0LjSSRR{6QgSt-hlN2Ub0E7qGav8l_@E0t)PB9Af_-V!af^Gh
zQsc35A}gj-PUT!G?fX_upGTif48P{{_WqYq8sE2z?a9lT#V;{N%8y23?vs_d%<m5|
z`tb1+tej?C94uv1FD=vSvwBmh7cyequu6#KFfA(7PYt6w!s96OZMTqN7i#lYw2gFu
z(%<xMN<Di{e5ud)oe?*>TnFvoI7N{$zr8g-(_9}|_i%f;GrFovIUZEhO9eW9B;0We
zQ6WY@Y3A~X=nQ*r+&CT{$`~F{g%e30Vb{oHG8drX;2|jg(mP**>s;LryYsS~?J~Nc
zq-3lQuYVdyE!9X+Zm3tjiY~%5MC0-`4_`MTJVMk+@di5P)37q!TS49dGxL0XiAP&T
z)?yqysHzmIcJa0|yRV{ONga!zrRNNr3OX+=U<qWqBr)H{WB9Yo1;lmVNKt91D)ku$
z#D=k`X0cRkuFz#WTjW~++RIHl>FVI40h&dzzObg=r0JGij%BS`^UEpvKYabMXV4R7
zLxx?Ya2*olvx~{DZMjRui|K!O{#nK%FCI+bg7Ms65@!To4N6Rf>A$LsTwkyiP_Xp5
z^R|Paa%W1Jn98h?`dz3m$=2wH0odG{0UT{8bmi<2qc1a2&_qGsM**V_pY4kViBgKZ
zyEEEWJx+TCOhl3b2bOit%yX|8D8s=e+2xBLzu|M2e36<_kbEYYYA@i3$Zn&jkIAv5
z0PoGdA8(VtRR+UraM0Cm-l-8lX9VM8VpQJ@Khd{oI5FjrtDYm-eWto}2whZjpCjFt
zyIAKjnlcl+Ycpp~JsZ2LZpIqW0)-Yn(b<Ib+Y`@m?q*F^aByU0l}ydGdvKAf;%F{|
z${5pUzoU;{y1JA4odxsD%Vr)$6@n`rq-d5W_;tFIJKoBCWFIg%Fo)7OOxdL2Onc|1
zNW`Mopwn7Q(J<Zef9~WzCRBW(&#s_Z@{19DQy~u)0wICSH+<UpV<?w6GKt*%QE#EL
z!iAQF*9+Q1dFE-<lBIFflA5N1$&a>NU@phkf$b5PA|zB~^G$1+EKN3TN?eci?J@iV
zwb(JNK+pSxw(HIAu0esb!eJs_B9an5O*7`8Z4X0wzG9$uy7D+-JYe`rk<+vx5Xf7e
zQ%G}T#Z4>9<f12kGE^UI)k%|#ZAy6;O_Y;L9NDMihc36ui#4hKZk!emwL-;5qX0(8
zuQyh=Dxee_HPb<P$*^3?_KL0;fNnE6&-Em|XIJqy1cvsu2vgL`gDG}7+6!<~EFhIk
zIeoHaZp|_XC<9ZJi_C)I9cyBCn>VB+Uu1&tPEZLiL<gO!v+b2ehuP7Z$sr#LyYL;Z
z-HgYG=}B-*(_(4fu8Y|-Q$O3tc|0z7I;ky_`=?ss0<v@o#GI@7v+v|i<)N#2<vXL8
zs8!R{>Jn9)4=mZnAFa>aoPrwoQ;#O8^>Eeq;}}8*VAgHUlPr4r+4K5yod!w#n8O3p
zZ-Q6DSRV&>JO*k0+heZ}Dy$F>&GS=?v#+d8&`NR36UXs_8s5C??*q-YPF0{mn2E%;
zn^v^LDz$k%386tsfg1ZGuxRVC)QU#1WfXkEPpptNoN<-F1nEz<iTCB5=j>VDccF<<
z)uQ%A@R~tyddh)Wx+Q-XD5dG?o*4}08-!IRr#{tDH&YK~&5F4(=trD*m)r(1GV21a
zWC~yma(K$F<m<&>?c|A<@}wFcqc{>15?;85ZjO4-bbeKTYw_`@Ai_WfFHy)kewhW*
zDNnsKcus^8*>UdW-Wqn^FViCWFIB^ZGdS&cONja(2w?G)Vt2f!ao1hX&Y(5<;K<&_
ziRLa#ma)L2)@Qxkygig!MCOT8W^Gh>Tnviu>rb;5U`K(fqcMn<{7Sehn$``ZFG0v=
z6zUialb06V>t=1dbl_bshbG4qoH%_72GHb>GKxmg&+89&V0x#uQn$~5VX%M!Wk`L(
zHyWh~_UvXy`Pddn>Jo>+Q@KWBD6wa@i}SeF`Si3J&pg_>m$@S+{eBCsd7JlGeLf$H
zATnVmayNm4$otmzIX^VfTn_cg0rf@R@PJSA)hMr>y|>d&Up{-GJza0iq!JDH;&Fr6
zi=o+cs3=yUh%BrzK>u=I=B%!|*`DY6z{j+)QWLyqGrU+MPVu&WiESPELL|ReTrQt!
z{pXxxd8;n13$TaUHlV1ehXRt^2t!;q*3y<62A83Z9ZbIuv)5cgeXWsYumEbig|L|n
zKjJyucD`vm3W=84yMA1&9&po8{{{{VB2;y89K+V`McGSU7`aa!Ws@l6arZwTX-mTy
zOAMO3##W^ALd&oyy`9<A-$6nd>Bz(5PY&De#B{;EnxJ%Px4#d35n<DZR`XUO3dD$`
z_4|W&2$8<@QA;4U1%$)8e1nx8RPLJds@Va`mzt+6z6LpZ3+4<!Z&Ed=-GjoJf~B~1
z2pe%d{@A?!_?3h{3I>3a8x_!}8MSy)%Nt&Kn0b#smg>yHXk`bd_eF{(+pdOaDoL72
z{z>j3b_)Bx1%!$6NlpWPE=kDmir{e`qLp5Cpcm+!khubWlWaZKeM|JN_3;|F764?L
z1lEWszEtUmEkRPy06op6eWG}HReuyufyHV;!5ng?>}y1czR0!ZQI*Nc4fw?w4C%<3
zS@x(Ug!Ina<kJ(@9eJxI9O{Q*-095Eb-`Z`AnkLBW;UyHbb8GtE5t8RGv8&btTGCm
zdN8a^K^N{UhFWI{Ws$Jr2d`J>>ml_1pBKQN7tP)|zAffpsN$5{Yn7FN`2Y+xbX|i^
zho=ny-*o^;j7Q0A67k*R*DL76^TR?*t+)qOY$n_{Um-q>K!Xn#rXzdGcx7`<@b`D;
zy**?%5})*>_PkwSw_LDuJl^?<7Faxf3cOhumhWMf(CXXYytnLpq3isqL{%$+`eZSl
z!?@T`s64xy#^axnvD3Vq1NZ=ASMv44#k`1K@vurqQxAnYQenKDJNOug|D*lPt<!do
zA@6Ox-6tlbr8BXq8QdL&jh{ChgJa^0B)xG!(~2=vt6HRqaTM0ElfEFF$znX%tXpfg
zHc&xoF4mXb!+U^xr9J=2#GN%TQrS{BgT9uq^tF|8KN}RV=OXl=?*C=;0k-9Bx7Yh8
z5>fLzZV~J37tqlJ_%-U2s><I}VK+J@hzajVN{I#+l#P@a$T}@VJ0kM50dymPymBGH
zW!X{-gZSgFz~VPrwmqX`#`Vt;ORn)d#`JDxvZdP>4wkwq?5)j#U<@5Q13pz9DJiQE
z{U!+A(;HqBMvs+v=8l%Iud~1XE$NOs`k{cN_+HEoH0RX4(Xv;|sLTUe2}t}#E!A*?
z0-ERf+ALtW+H$J0;bDzAsly7tOyKT0#NiyX1x2D#@Q}VL%Rq=l%Y46E-4U1K6IGL`
zwZUbPAesR>!@;8H#qar;$XISrwqwl^_BT@nUD`5N=btW+us>hwo(>ED;&gv{F2n3s
zugV2oyg*!)E9V@{jB$ImV8rO|8hV9Iq~@|QCFKZR@l4#SW>7*mpTOd}WWEwWXPH-n
z=lHrQlTIn0%E&T`gRn+S6JwG^y28%Ve0TPpkb_Q<I!ZRm=CkK!VqkL{59dcJk555h
zczCW8&}o*4y`^{f&3T|ZMB69)%@CZ|qd2X7w;Nl0E^SOg>x2>g%QphY2^s&_XoE<f
zTg_&|miQK4ONfaxr=qxgX8FVZR6=GajEJqalcpRc7A=Py;k_Y_TZ&Pz-gLiws(&xV
z+jIye-#HWf)UD?o9P<0VyYD9;|8SV*=lk`4j6GdE&_MRT8H^ZCG@T!s(a!Z|JXR_+
zGSCaU$>&@jPbPtT(#k|_kwmb;Otxb7(SwA9B*F@r{o}F?3n%uF==L}~P^Xsdz`RNf
zMhCUg_MOl21TvaqczIdQtZ1`o+$U6#0lTC2`sIfS7n?m2IFQ(M`Hj~?R~m53WinMt
zl3hdA>BO>=AHo)!_sX2}$&>6Bn`Q>Z+z)K=dcIe~K4_EPF2HV}eP^tt7~?%(eH1AH
zMmw$9X!bKjt$pdPp|~EQvfuRTKnx@K!4OOozQtS&7$f5oC9_)~f?r;=16KIvw9JaF
zBubgGbcT@e=gRG(u=qN`o5;|E8qrkZb5iIgq$;GtJPK9GEk`@kM$8U27W`rmA9auF
zV7^Xmr4txs=5=phOR01SpBun)#NG&zN)*}E!}yS2Nu}oSO<<EEUW2i7``eLEf16%3
zAzm>0knHZ)kd#pZl_I*TF}!l-C*x$CyW(;&VU?F?o`{4cuA|tq>YSsKGZqf{Amyev
zdt|4Jb5DNeh0k94gWHM9NfD}mZn6B(b}xQSEOI-sikkBV0g7Gnr^WrB?`q`9b&Z(4
zz3@}d%Rr{iWXuFLJf~ra9K1!`U3U0n5(+4*9kkF!IaBN%#yeO(@+MaKDNfa4l&m+_
z?xs-CcC!><l{N=vyvF`Q&?}5Nlxi|yXiu8dB7Q2Ve4z?ax7d}Li+xQJqG9D%=nF%r
zfAl3^F0OqfHtp|&Ax7lcM*xl(Wg-}#yg~H{2btG$w?Z`4qehYVv7p1lJ=0~6{Wedk
z?4cmwkQPIl<x#m3gg;b#HTevWVetlgY$T6ymm~wuyJ2(b3OTj(NVe{I8VtGiH7bV6
z?YJ;tFm&9cj4!TnvRr6%#Ys5_3F4dg54<c?UKe`mDn3x_$j459quy5oH@OzjqZnDk
zIZ&bt8rm9tVgSu+Q8um6xdAI_E~9UJf@b#|;z^0%ZdN7?Z)etllBUG@HG77hZ(xV0
zz>rYs=Eh~Yp44yW_j{ezI!%uXrkn*^N&4Yb@%XB$n~9^^=t$e~jS2s|n4bNCrxNAH
zr{OdoKD*{od>rFP?;X8@FZ?K^d;eB=`6)63`;fR>yt^@^dy&96g_Bxw$<CA$8_pXf
zmyY+jB^*$k!;rB(mH#AE@r}~Yd`uXNB`@rU8P!^Cw~56IPOzhZvr+upg%lID5HMP{
z?(ds_BzUi(4AXM?Cz8HvyPXz*6({t;#Yq8UYLCPAgpi;MOXdv5A(+Fy>Y8t4vgLBT
z1iKbVj|bCht8|8JbgM4b%nts;jVxz(6B8Cj7*JuRWnw>}uiXB8+3oauHZR7!r;{(*
z33il5!$Cx2qaIt~ek7J}QlZ`-S9LVX>8jlCWdwb6+ukIW*3?F*!$~=&-oF>j*qMqj
z^=2~q@9S3oByt#O9~-=qFT1gY@8iS+r;YfU0l>#|ObXKWjp^jtU0@AAkT~t)N||lB
zaXCx$>wF=5nqK*0OPQw<2?N_k8D?(Y9t-bav+bTzQKRky!>%=L={Ol%X@>muqMP+$
z#*Yc?=JSSnWogulq9Ry^4o8PbO*PqY8ixZz4%oSkpQm(RBj@}S_i%|NEy=e@*EIbO
zv`r~v&oM%4G?RM)#u<aB=p10rXA2cNj@PH|Tp_f&ITYsXWJilp^E{eUip+=UDmOT7
zrr>s0*hV$0_y)|uVX&?D$G4kvfWUvn_ft$mE*##bz<Y6%C_#>&%TT%tY20o=IZPxC
zDKPDP1voy@Z*C)#)UllMQzvljHs7PXh9UApuyybq#ziT)>pGsD8s&)hxIT7sL#+L9
zZ`rh!_sC({_A>X&An&W3s8=$nG7T)4sDAwmraFtA%y;3~!Om^BzTz4jIIGtYC-8J$
z?txm#fTWY^>D`JwcLFs==pg5}-9xg2reI=_p9Lev2n4is>OEDl_*Z!CtC$blE|NH|
zcWgTJ-rk2@KO7045afT^SZoLEmPhE_YiyX}Vi2$s(Ni#5WU9V~L{90w0hJZe&E$q5
zGAta9(c#TKX!V{w|IEpAqzo<HqQVgll$*O9JIRv|?sZIm$@NWfRDHRN$qFI5?Q2fF
z#3;VGFgC|AGsU#PkxiJa-M?q8kMsKpDE8RdM_-f~_(&RQ{NG!GQ!-Oc(m96HI`h2N
z+}P2S7{A!=)uaxxb@w9}r?Z&IydDmpX^O(o=nN@?x;PZpc-RTde%|%O!(&4WKoxA}
zToz+2FkC#Z(cuNkFWa&n0v!3=#_h>U|6;qEzygz!Q3AkFL7kZ{K>pMLx+I&T?FR2G
zi<S-VvfnU6cj!!}Jv>G^^1=V1nipC;Y%Dn*;^(e#eHy*xS<KYvZq^s_bjw|3vrom`
zvj5Dry~U8H(o~I<<Z{Xdh6R%C0kj;v!)M4$!t6~)9Zb1zn8y>8ZY-(t>i`L<GKw2q
z-(sMg8%b^V$=VpTNH}Yp#!zwiTJEE-BZZV~@P8E%W1}EPSbhzbN(9)x2CArMHFdVC
zbDd9c>%Xhwm%KnlgT~38m3v%BCzXZi>;FUATZcuNw|(P^4k(DIfCz}N27)vwNP`F{
zT@sRt1Jd0wgo%_$k2DM-DcvC|N{8e~NY{YWkORMS_IdB!`}y6w_rAyR{>QPa2-kJZ
z^*zr|&bz#D*QI4VKgq>ooS!C?`%)uno`};G+^RX!ND^C!?X%I`Pa<HJ2a$rDTkTw-
z^WyotJjQOzd^$O(Q-_t*vow$Uk6$A8Q>Mj`*smX|B~e``KikW`*da_TYG#xAiWFfG
zbGQG+tDN3|+Q^9@i3i4Z#vxQ>o^5w$8FgSqb2~NpH3fHhJ!!<O-YLrJ>=+KuX&Ic^
zhBqu#K92&w-7{`bZ5~U_5o;b#O`Y+8hfTr>JiUV*?;tczF5g7mq@!kYgwfz__%>8D
zV8>p=r?@@x+P!8{E(?3hnmySjamY_QNEK6^nT$d+5nUsT3Pjh)VHpu2S}{Q6*uE+>
zEd}wXZY+<E2A>!1PK@zXX+vz5i-=skUSB4WX3~WxKPCd10*lvbsw{NefR&Vss~gu_
zx4v(?n|t^pK{7v5_*$&ELfm)YSI>5EV@qiUh`peLR%-pLL<J(aXipH~B9FtKH!Q#Z
z!ZWh#qst<W|1seEU%V84|50fAxeH%mqH6_YO@KHnNh>LoyzgT2#8-cuZRzYxp_&wS
zznjCbQEzNpv!N|o<+32i*y;qTgaOI#!3-Npx_&QfJLjGSa1i^H-?&a57djJE#(Vv=
z5?!_=`R6J&T{)rKU&5H}Fsh^2+S*S1T#qPrcssB_OI?VP{9y%Tblw_FUn<BSi&077
zfzA1`?&zhAW1$=6&?08+tjVSk^b@Q;&*WMM(f)Takgk)9(zLrTWVfz2x6#b;vq7Gi
zkEX+u{c>z(LgSA4y`-uCw&PYG{V{qb0Ci-QLkzSK_+^E>Jk&7sWmyXbz=YpX7i)3!
z40m{~`SK`xPtT@``J(%BeZ;=!2UpAC)?hLyaCl6AHh6MKk8jSS2taAks=cbK!w+|B
zeTFX<`L-Vn0>c^;SAz0A1G*g>!_NxJ`^c+8oI4F{FW93a`U&}4Gw#mbC}j`6XhTh4
zdLvlI4zMWK11cSzy@P{x%TvQS^IMw}`Dw0pP;{~e5*c~|_bE<>ui6V*SB<V@*Jk^m
zB#W|R&_t6OkLxKUQsemjmfIa9M8BLF0043E%)BOkly868&0uJcrTS$+-QFWhoxm#`
zMInjw>JHc~x8&qV5LMD6uQ^`PT?V_85O9fQN2IDmmJEG#Sb`G89d;cS3`83`#L7o{
zomz&gP@)IsX&dA;ME&Zelk3@d4DcTU`g3u-sBf0WU41XVw2VfhhEON=O*IqTjmh@c
z`s<8QD2PA|VBdXxFnGO8WhSPOgAzt5uGNvKr-}_W4Clmjud5aE(^UB0cGNNBL3)!f
z=@5D)Kz`I=Qsg>Pk`<Q|+Gc$9aRSzN;T#cuBda}G%AWcBg6CH=9;XESW`kq`T7n~d
z1>U{K7!M8OnraS450HDc?`okU<4=%-#>YRhlPAk-+2~nle^Tz{3(uET6W-$^_qBO+
zK)A|8UOUKmJ@qtSA)`+^u*-63Ugc+Un613>m}<z%dJEmX-YKI%{JBhLaj>e3iPF}M
zi#2d%2zi^_s>q>}7n~8txnP+dc>2<XqO{-26&O+;0-QXZ{zio#I@K}y=kfb6cg92Z
zLXW;HP{~h27*crxe0E13A1Tnv0x8@yj36fzKYMLY>6{xLaF_zb$K{P+RcNR{d_=D+
zd8+65%hw|x<{ZoMLkqzH`Gwc^OCvpZ61^TWzeKjib{SophZXm!t;Avt>E14-naO<D
zgty%Wyu@f-al!O!IYe10ZU+GJW;jzNT<;tIBBiQrGs|&gBre4GXD`tGE-)B|l@Atd
z0uwywyy%`>wg`1X>$UH^07cm9KqaoV%W!oIzvCe^4`g(M{L2ZVK0WAbij@XGL3oX;
z@=!!V2rA*)g84T(W2IuO>`tcLC}VIpbCu&~TJextZ_WR+Q?TrlKq<{DR9f->&lWo-
zo-?!mHqC9byYY5>UzL}|6DNf(>dw*Z_06P5v>_4s5xtFW-{$3|v8ol0Q;R0v@H>|n
zq5;+2h8Oe43&GrveK3;8CS{Wi+6b+_F}0>>-K{Q`qMiO4)UFE-lOBCNMY1%0eK?MJ
zOef)c#8g{i0@`q+U~{pQOFu2j!e{WPKI&&vVB7qh-4h!|oD$d$@tQpf&q*>}o6d{T
z+Kj$~;4)eHWaqi=6n_JK?C7_R^LKd*QfAL*eb5VJxc=CLMk!_N$zugjXe&eC6|P7)
zTN^1RIX<dV=hdtl+WeM=z2K9v<jvgDC@%Sq(XAxD)&8C}X-_j*Ss$KbaRM7v89V6>
z{<JKZ7)g^)qX+IP@?bV3OwG8c)%p6MU*GkG`BnaV2Pqh(TdqSy9q9*)D&2fToBU-`
z1|=_;xhfvC^a>LBA!1|<pJ8Lg{3DY~3Cj#7`qD`aRt5_+EVS$_*E>%X{rPf~m14<F
zW(p*UG&uAILy&DDG^p&meD=7X_L_}av(8s&kVh*%bp5GhnVhAf^hLv}3%DC8$){@8
zrzADhN!d`KjRFaVkRUFv+dO-g;sc3MB>#P(GX{sE4e58}(?TD)m`b~Vh|1i^=Y|+Z
z7*<;^?HLtnpv`PMPb$OMH_q~;81E(J;vH9DU9NJ8J4Z9MOpu2Fm+0k&4dPc6|5dNX
zsFcp*r=V#7agqh%-tZZDuvU@avA6PCZZOF}J$?zwXa_p@h%oes<HCC0*fnHeP-!re
zXrBS7X^dPDnn=3($$S4+w)7YB?5}Blq<4Ev9Brj4!~~nBkI}gMb8#H->g#j}BD2eQ
zd$9@Be17ac9qra(m$JvM*hCJO-WW<iV(*crmmE9_Xm*v?%W1{!_r7i6j*{*9-KHsa
z82L*blRB<ukgUwv^gcO!k>nYTGe0OXb>mNDGoE;MOn<v0IFYK^mUrR~_OfT3Z`mHO
zeAG2)B^=y$i!`>gFffFp*EF85!y+)KL-U;OgMv|6*uY~N3P`d;+`l3)(99ItzL`Us
z&~90QjduI<P*1%Q9v}RgvGCHGxv7RY$}gg&G(A|6dqE>T8M8RV!@WR^I?b!wf2PKY
z(I021p4@|#+SIJA`R#ZqU}|{^1G|Q9!?c3=^ge@Xf)^0E<*9zZA@~u2G1r5}Ab#Ai
zgmbjSCtU|LHHAM|%Wus@GgfFU0Lft^AAhWmLurkgwHiG)9TxENe(^Da!*8dm*B9~y
zlz27o+lIjalr@bj6OenbR+iGCb7_9-Rr?Wy*k{MUJO0}HjO<e_F%$^Pgn7F^+syys
zj{S~Hym(Xpk&0{}y1C!RuK8)<#Vcu%Y?|M+th_>pd&fJL1gqR`w~s{z*A`IyacTY-
z?1|s=MUoU7g`MTz{T8Gm_e2Et2ZE2i{2TMwWI(Ke_<=}S@aCuEY;1Fob=xY)5rN$W
z&&N1x;|OXOx2g6l@vvZ3gyiF|_cYX676*%Lc(t_$6AXqIM>ZGlb~w85K31hq4md0Z
zEJ3rQ*Fn&Fj@v|jw8ao=aevO_^I{(&tWh$*^&Uh_*Tg}Nny!6xoll6pfbEZ)klC@h
zOJ^RhqB{D<LeG_gI5z=YXe&99GjDO3DuE0VxivA@_D%7sRY5#;VtvX(o5ZLg>k&!n
z9}+j0^Z(h1^n}9Nh_5k+K=7$5=(@Z4G+(LHfN*IS{k^!`3>)upx=7;6<Fe~e;`Qf?
z;?J*+pS^P&5uCmo7%Sp3Pt$KmdPF8b`tDF%OY!9Bhk*DWiiee7^Yd)X^)%JJOwcx@
zJCuQVPkkc1xwuP`A^>aYP%R#?J5un#)LuO$)^5<zxCe5mG)pY+q4g|Q#;>GovwmS#
zS_RUC9y$3fkL{8g%%g2kfkYJkwE_iIl-*uwKn^7GTPsMO?Kz|h@b2UlDb68VXq##(
zw(RYOS-6Gm9rQdQ%^;;#PTG{_|J;7I`^3YC<38D^u0MwZ;#Y{<^^~oXsQzLjhJof9
ztNZx?0Mmvi_Jp{T&o18sdGjmtH-n{9`>tCM$6=-)76p=1v7-vn*_QLJb5<G}3bCJ!
z#Y|l7R2N6f883M0v-xG^Y+E(Am@T}I`+OuW?Jwgklg}MXr+s3o<@cHdz2`4au1ikJ
zwY|$=gU>MOV?{9z*`>3vp_nk2C|ct;GP_!gX>znbJd_1HkYQChi0Xw&d4ZNPiu^>*
z#!Ecc6&F=57T0=jJEqb7W0MGZW_>%CRqMxt;n&6OJUfdc>9|)+f4$vFtsd>x(9nn|
zE3?L@`&~xRAnEKQ+op4_v5-L3UJ?nIn*Xwq>93!iKcAxi^Of4EqZ$;qt{O1Y)Whw&
zil)8W<C!%(jJR1*c~nIB_<seM|JP^vKY&X3zij0s2-YKSlI|Q<gxIYWo>dIgzT2#8
zsGrg-NF+&E|2OsX|9&3+<H!6<zD#PLB7F))_i#a)ms-<WUz714f1tnmA^-Sq5$xg7
ziHWwvi(Sznwya1W&-Q=!bNt<<R{Mp}pzx)e`|U43#{bvfn?~Ee_+zwBR>7^FKU*aJ
z=2!h%B?Z&j>c}y!zrUbrpNQUNjpWeq6H18riRAw(m;1Zl?T;Hm!$tJ8DaY|&QObeY
z{lQx6-~Y>h{H6c$N2I!F?<lLP@>I&xO}s_~W)lTorW9I#ZQK8wtMJDy{R2p^ld@D$
z2tr9L^}OciMI3oLUfW}EeE?+Fnx}T7UdcS5{_6wkKflpm{yFkssr#v3XHJ-O??b&L
zGIID`@}rv?V-X~=0ar9e16@`{j7u!rss$VH|8~<StLj&$Uai(pIse`9`gi|2IYvr@
zB$nnK&52Wv^kEUFFGteWw3JVd5H`Ng>@A|}c$EH&((4~@D3L%obD{q7Im8k6J8b9J
zXe{)k{W;kNQ^<qJ{@={aEJ7q%6@zR-Sej@*7Np^PPo}Ev$=5c2+@!y}w*T~hSy;m3
z6B94!M#kzPNMW}5W@f6;dSP|seLxOPb$YGFKmGmxe(_nBNi00<E|#99xtx9|1t5wc
zN_d4a=^t^(!I4C*FBv&lCu07e{s}fbi3K}5`(628WEAYlF9ZJh{=lcG>v(!p?nBG-
z--(kCHYagCXRyY{2SceCnfIu<7iZGkCsH5DcCX#q;8)aO@$7S@4afW8_X~5fx~Dny
zZE$vW@#3OolSJdPj*VC1-Md^Cf~|zs#UJHjsx}|^;B}=2c`8nQdi0Wwz;que0ul8)
zbq!6;Hdu|Vh^rQn4-<e{`dwLw+h;ruizcQEwI+!6i$QGsX|x>_NX$WUCsFx;+kxy*
zG(`Q&<+R)aN|EhOzjU!ryHyQ{1Nx!Zv2DM)vm@lA2Dw!o#Va1dpGWnJFsb{Vo|WIi
zSTI}8N!tH-mHh`0;DbgID-4LFr0e3q0|3kVtQqGZc~uxd4cw^qOdHx<F7$kyjgR(4
za1=5m<O}XDCap;Mda}K+m~snyipzWSxe{X$)~{@tMeY@o`MWbYBru=<o~Xg2z?XeW
zUPwEy<MG!<f2nDvtenQ&>bcbRvCNb8F%NNEdn!E!Nn+QVnA{9n4Tno@(DXO$lZW#_
z=!bzwLsw4-Cgel#CV-u2`o*Qt0xTZ#uM7Y*;@i9uO-T$N?y2^0DgxW4z~j#30%c+r
z)~=``k<o(t+y-vBv!(kG^VR;n4x0FeDNIB_Y}X1zs9hO76ga#_Ap9R6jqqW*-IIB{
zugfV?WEwb4G{{WRAJ5cJE^h)xNv>Q+y{*?R_{WhX)j;z#1`dKZsk58!eVSA-t_hVG
z?cquX(E$rhR&-X%KTR|KA1@}8rEZ)ml#A@hde;teUURUYjo-^vYoMbU=R%VBKO#?G
z9@cx@*==HBKYxeEo!w{iWRXXgn^{Zu-3CkH_Lv;4QLx60uO3vjq-QRFb3j*X>+(6g
zv+$ieowBITB;&7S*or|I&y?IPl|STv>slv7eWD3$eM?rnGwzY@CDb;?CvT1&0>XYn
z&9!C`)koT|lcUSW>23k-F=pGVQ*wv<^NOtpyNhyw(*1ZO7JLbl8^r8)KFv%O7sHn=
zyF@oAgP`@}zC1%KumGKo5q#x%$zw$U@1hnd`Fz~fn*74OQ}5bSfG_@J{iFOt`Dy#=
zKVRmjk9J?=G*v%Mb29~-<v?lRcpJBWJZNW&;5K~mpGGLQaPTAh{2FVJqq;4xIsc55
zw0d``s*M<(tL!q*5`NwPo}`3LYocMwfopsn%2&d>j{S<#+%;ufA<k+#c6*{-pt(B|
zt+5#^%0Hwh+F@<9s%abl!ULUv){dnVkmQZJpI|-jT+`C(`&%U6W#=52#@T#H04NUK
zI<Q8ZiD6U!7%=O<Wg->E&+#RVs38-)gMsMyX;7yJ%fsCL!Aj>#N9CQvmmv6C0Q`q3
zlnOflX*CWB|EfPyvrTLtAu_aRH|l1EsUUu_E0t`T--(o!n*g!1jEt9w7-9hF>~dyD
zd8hU)rayBG_Di?R%Y=MnNe)&cV{#5B2q!05>`2HS(tNNrISaKc|1%+kyZc}Fc^PK*
z=))(sr{b3tq~c->`Z5lll7wh;>Yt4<%rZpqX5ofXbgG9!6lWg)Qww8~6!hS<LMo^k
z@dXjH1a4$D8GrQVy^=Q&(q33G8KGERmqE-xB(iI>55&kxwz&$d7Va1AWk0{@n)Y2H
zq<V_c%qMbTETj8ge5~Wf$wHgl1Ds8M+askM!UPjzeWZ5Y`>Y>(x<&gPVQ)U@<6$;O
zD4Bp(2Kb5!xU?brb$N~ewxDk#CTHW`zrG|->XuaCK`=@^bK+}vA-MboV=#fAnPUln
zA0l+HL}tUQMF>LQlm+~yREVJij`LItfAY?d8DdY7?ig5OkMiqUuZ2%<=}<BIn+b+T
z*Kd4JBuUj8VjlQbyGHe|OZqo67(#svs=(L4mds;pOAHgx&NoUx>U02o!Q(y$Do<Yc
za0P8iIYd(ykobF_xx=O2ja_RGsbKz5_^`;d+O@A^rxUI6<x@0Lvo$e6e=+Y`$xUwh
zsz=Oln6w^+7GK+w5?dx|i@_dT3^zSN+<yapvkpx!Zl}nA98-1+3k#zSfXUr^_Fr=8
z^ZQ~f<4{A!SK}=ZPRw9F0egvOmsVI-=#Un6NWS{jkQU}WoW}8>_5Jjtx)kE^ouaYC
z-g3O*GB_!^mcbh0DvBhuDtF<*_kQDw;t~OcvK@NaB)C#}^5TZ<VD)5DuR|Yfs$f*k
zhh6n`{EPA&I6uJmetymBkbA=Bjvh^mM^e8phgY1KlNS>RWKT;TI!n}3{m;`$qv(H~
zBsOS&W~q>eeT;47Gt$s;_p8+|(DJ2SAyJb1u@)Gm?JN0hSDbhIayJEl&J}=99iM4a
zZFHwkm-{~Xd8gJc=#?9S&fXi-jZ_CQbqNoapK6#K5cHqhYL^xHpl~HCUr>z|EPFq&
z=1I*d=n|$|LcM4#<2<<ddI9+>d(a2L3*@~P%naXhkZdJx$Rh7;^0l1>yC=QuUj>Lf
z+U&Hx;V$n-5D?uDuZl0OrG4U*pPZmGXh_j?0ei!_XV--2EQ@<dT^H0c^J)2v!-MqG
z|2c`VutKQBdS}f(RU47_?{$TI<H9()T7uwSqJ<VCkby_ZwI2WYe0>&QKHM0vLKm0I
zVIFHqW@Kr3!Bu9!XyJm;_t}iXRjhp5Xk9f8(NG=Kc3`8ktXns*I8@16^?t>eu2Nfw
zXX}gB2?S4+ox3~Rn%?`ns-x5ggwBiLGZ6JB`rP1>@jdXDYreA%irwGMjIC(~6^_#x
zG5o%^^KSm|8(+8f0hYZLV6s~%$>FP<GHHcOHLJ}Wc(>33O2=3Sy@)-Osw?^jkqCzn
z(_;iqB_TLkOAYtH#)XEXq5K-201}VY>8LDA0Ly>~$&LH*$fOdgpV~lx&u~^MwN(rv
zMEGI4DFa?2aJT~*V`vunx!btXZTW&{EvCwF9VmxbV0b*TY2EpujHy$A-sR(o4bcIx
zq+4TsscaUY6tQ?nOPw?u(sJExtZp4vCld5YuTf8Th~*w}cj_kQiZo5YwbEjpK+NRU
zdZ*Ta^#;MJ*=%Qu+0u^+;!Gho6DgUNxw8TmxVVG;&AJi6{o@GKI?NSBgt~43Z(Ns2
zq^TaX+*pGm##l&$z?xHX*Q{$)p%CKWsD@vP2PU!2SXvHkcWl%Al+7&q&a{htyYS4p
z8m*<u1@7P7v5?Z|*_5?l)BaZ2XqmfwjHCxdDFtg997Hb~pkrpyoO<KE8>(#K%7a*%
zuM<2l+zUaM&o5Z|H-a<TpEjNpZ8drhMMVynMZ5Rl4n;ABr(116J=Izwl|vI|sxncP
z*b)UIo`N;KhNsOtf)EaESGWK2$2!&~zpiZ*9Od|#JK*d8@laH%k?3a)|4oL7NYzZm
ze^pLG{(?}8Sde14+gQZyZf8vpQ#=<prtX=L{IMn`>mFZZ3P{ssa$OM~7&-{<T+x|T
zbV&^w(mwPCKSdJnSe4Ihc(M%L_fEa0o{V>6(IczofqI><xBzNDpi?<y*~x3bTBjZn
zDvp0F+WiesvEwG!#**$y<3@ga?kvb8Qd~6bwTp9Wv^_Sn*--=6B^GVBWVI*s&UvDl
zxjr48>oy|HX8kD%*2J^#53wTNT3*Khmc&RB%bypyC$ULB<PkMolKi?`MUtRJ;nt^@
zi3VAGEO0F|+wv#t6er`tN&j;Y_K!V^QHp!WsuX*Q;m&f{yV4$+RuB{<Zc5o|F{&T;
zzkEDBeaYw7cje6V>0dLbQ9)ssqT6%L7^Mv#n-ZIr%o#25-xkVpV$F`k665)h3&jHZ
z(S(R_LMI!1@R<D}=Jz86QnB?Mj^QyLA-WUgq$T$K&K``a5qd18{5gi?sHVwY1sKzO
zPtD;bRy*3eM6Yol>1kIxq*PE&*xj6oMl4i%ppwHR7a}BCzV^1w8y@B-f2WqLUhvqE
zIN#28rP)Y@2FN{}dlSG%<hXfmejcsefzD>eHJEsZl3&B~Hq^U6vDx46Y@bkwXH#P<
zH*kr<VZe%G23hQ&OQMJP6FQpo<P7ORQltngB8OO@C<yrr`VFadib-Be6?kt?@CY<&
z!*tjs23Z>q4y)z`lxil&kcfQ=Wm-6kb(?u#OUW!DHa?TmF-xqLA-9JvBlIwL_lK%y
zMfx-Iv%@&io4MOSu=3l>_Uojtwdd;m>IRqnl3C*j?PW|dPss=P*cZ5v=X{&5))eG0
zELu8$49k0cq7GB|eqwXgZaGwWNyIMxy2ZG$O(rcThUF518quMMsGcev6^Tjmn2vif
zlMvdNAPPrV6=kavQ;SVf5x+go3^~)c7W%KlhefRz;aDE1S4>rV^SmKWgr5DG4yUTY
zAx#JS*12;oYksguuAIKPyC|RpZ;V?)<U+A9xd}^zbSp%Y0O%d%)~GJoqMc`eG;7}z
z$nniLig}9Q$u+EM57nj7&N|e=#@08iix&4<eyoHjZz;8Ueql)XI=|*sQNm&o&l5x~
z?Ru?zPhEhk5fa69dH-N-kNb3+p3I*j{y#o*EOsPGz6|=Vt|7Im(#gEXa}xIB2YF|D
z)W*~)G?$+|C|%&FL;bLRi+-*CXfwK3omnN0fxZE1u3CbE7n#)U&SwVc`}k`jt(H^|
zX}&eEAoU;TB&NwMdqa%FG?6+dH_&)Shxp0%ZmgLj{{)3ebGrhz;!rrG&<zALOOEU-
zLn}a7v7XMlUv1$5TjQ&MN2%=1i)lG>kX{#rsjL8xh_%^oh!!@{H$f!2+WGBU9?KnC
zX~8m<qS0elN-`%Lq%Vt{M5?Rvx`TTk=Wy+qj5HJZSG6yhKnx9g!|^Ft)M}BLfMLxk
zX}x!r$H;ngLp9&1rdsMXwCwbF;|I-&OUN{|nDE0SRZdy@&ZwrcO=}Hgb3-_q`V{{&
zw7TggR7_!ogYU{&t}17D5Dgxi^z78VpI%bi*oO}-ccugyX8KVgV>IxoChFmDnnA^A
zv5VnUhqU;Y;&wmytO(#<cmyZF!Ju?_6jKWV!*=c)ymFjw>G>O!vLd{RouYWV<!0Lq
zU-n-zwvOGtfwD7iLzVTSAML<Z#7gDA;;#Ifh?<Y#rvQ_PLa|W;;kIbfi-mfeep6P5
z&fp6;1I#2v-S*kebs>1NLUU-mb%7WqhHlX#{?%@!0m-UF0>x`4f&Zk>%4a(K+dkob
z&^sy(RvMtjxAUBCOPeupO3$dm%!9j;zGj&8q5T`A(tA~XugFUlrrV;ns>?4QCtt4a
z>7d8y%!CFUa|z*igC?!KH<rPlDtoO9uZP;~>j;1YU}zzOSfpB{`Q;|^hNi>vYkVXB
zAES$ZDi0(}b{zy$`##Y`C0d8(d%d?nnOt34Dg5<X=1lFH_m75HzK-W|5_4xOEebw)
zZw^y!4^X>?NOhf=9axdl{O}M_WYup=5_@K^YkoSz);Y_1r26xT^X^`s82c(KW}3$u
z+~QppQmY!4O1~{{2A*s_Mxr4JBcE_x74^nGwp1MA7wjnX>l~*PWV!vaSQ2!E4Jl9u
zHD9U;_@g})YYi!q<=%8Li;6oY+lCkCTl|Cm+$jJ3t5Z+wmzdBYMp+if>Y*w@ZXwY=
zuJ!4(ggYEMZP}GJy_|L;anvAo6dk*NzheH|j~gJ~_P=;7nS~Tl(wZoa6}^QhC5rzA
zA4@k-HYcVlDGkyh=*!2ViG7neLjo~B+{|tf8b&B@Kkm;<*ajo;k9q6SB=_;-X*$KS
z(wv^TdPQHbxBaEaZI4AmNLm+oDTEt73%5fX@dq$pQdUSYBTM&Si3SCe_@g7Vkx_SK
z2W`#T-_9Y#E#h|4ko&1)XDDxF)xU=sKNig8SpD2X>?Qe1*RPQm+8<VWpFLiv#jbmC
zptNrk^6ZUD&m(q-F*x_FUy&HnoKKaaL!4j_S2#@fI*6nP2!y)HEhu(y_g8No*#54m
z>Vdv?PIgxVb0y&t`Avrg0nmL!|Boe^I5=TdW>OAfX-}PH_q)qDE1>50%F6BM$ERj}
zIeLOcZ~DqCdll?T|CcG*;b5Q87I8)K$Hm>eL(E8RjjkC<=UKH&lC%gBqMp(0(~Hw7
z{!R<`mm#0*OS%7v$dbGL6+wAuVyKmq)|X32tKL#!<f%f+$)C(f{T|`@yx#4#8LSi+
zWpeVuM?+OxIv}!q^LDv-^k(mCvI-(fY(}aF1#^?0E?2LGddy|SELObdRMm?j`jYPh
zIX62P;bP=86hk4kc9#E7!bgo0am?h}II~w(C_R;pY68FTPx<>C>&VQT#QlT5QuwrQ
zV8%@*$tFnkeQKO+(Nn|z4Sa=RFB%j@n#pOKv4QudGd`ZJP7f`!C`!UXCQo~O$!6GT
z*WV5%(NfYP`Kc9W0f~6k30B5Wy{|^Ej5psk{r6|{k8OzMl)V2L<R<CwX5mmS`BAN%
zB_>Ei<9-tnZ`OV7R6R}2`5ULDSUCR2E^Hu<G!+54BhH%WzGCs$r<*gRH#Sf|^*q2K
zQu#A2@=SL&8x7s%G*cqT&<11uBvW)B@nt*W%}Kqgp&gqOMB-0#2jj<&ln5$eGm(+i
zO9R(*UIH|vG9p*H%rjdJUI&GCAb2V^$oJIL<RD;rG4+FKQ{}ypssMH83+(o{<6LMS
zVG5y=z{>@Ce#exnprwoCHPIqbB(@!xWWZEYw=<t@)ES~L0iJSnMK*Brg6_>+s*_%+
z`9}<6AY+CpjHHofGA%Wkhpze&-IM(;r^C(7H=t#q>Q2&A3KI=M7TR6_0ZmxteYD9h
zR&I^IvZ=XE5b#)i#N+-AC*!jNjx1|e0XpY&CE56P#k$_Sfat<&mF+Yy1_2865`W|}
z^0|8^2mjgej~CnFqnE=mJo?-<Y?oyflU*Z7g0!F1auR4g;ql)6?k%PW#H$kEx42n$
z3OeqSRdY}u9XV9$v1V4fzqd`X7}K#hU*)nBksVCO;PS8`;HkRZOes}uHZxf3ODq~7
zuy!Kk;pv>1evgp-u4L(&PPX&+f^DDW7}x!luPj$n<NIv(99Wi4Gf11du+?l7avu5Z
z;*D!-Ag&!ms|uJeG2P|T7<T8(*35LBCDp;H&9BhnX~P7aEE^NZVAlO0*AmS|g*-PD
z)noQxVWXhV_S`IK+k7wTd2UNf@D9dGNk|;z5j1PUP~Xb5AZ*_L<Hd|2w6ZU5r%c=<
zUw2PJdwg)g!ssIGoF-DbAn>{=3Y+BhA(3nelUUj_D<n)C^7W18w}p-)C8LE%3Q^Ba
za8CaWc{_#AUMqH(kaMkR7Y<o{quC|=zR(pnWR1dP<6s^i=n9TBRMm5P$j%^ZHR^+Y
zZYy<wM4cop>%C!6=PUQ#lW?N5Lvffhn5+Fz{J*jQbR1@!jC|WKFZ@_zcDg<jRp)yV
zV_I`Ibxvk&S{e7w7D{zGoG-{1iM#yg)c*T~<iAJr%Uo<ILG`eb$o{$^R!Jd?{7cg5
zYm$ZoLNI&V`rnE3biTbKTFS8_YOf-Ta{E!~l1)Ho1h5+&Lr$ts$K==T51Gw64Ej4-
zf`dz^^P}%B^2E6;zcdg5$3d-KyBS#!jX?y~R3ljx25nr?jh)>Z1KR5J)H>-VjpBrs
z!nC<JDkALT(@S<whK$q4J1$HZ=XV$#Rw5sJxn8DnFgikr^9Ia+>_%FS)a#)A>73L$
zLx}YnV&hONm=$=b^_>pE`+1%=EB7(covc=xeMgqQ!k}x#Y-77pL^*zuX`loyv+IWd
z*ZqCbRVSh5&Zw`4Sj8{#`s_IOi!U3t7|OA7eZP@>h&9R`Uj@s2$_xX(WTv3qC&7s*
zGTZHv6hZCzzq%idmar22cZ1LCqumi38CSa7^`dqChg|sOsN<raEGoXd8NsT|fCji=
z027Zd%O8sc_jMHVY`E>P%5?xedKqnGu=B6JgQ8U??NK$H{_ELw!giI4F^z37#xXD`
zUz{L)q5t7Q<Co5N=MRpD2=a|`6)wZD7vl5P$Od{BM~d6?G(s49Wh^i}W&Vt|aU(8i
z3N{ezH5+?GcMn%?F<d;`GZWN#hs$P>@<f?|kP@sHbUPm_!h{!cdT<Y!n!abz8wbFg
z6VW+)lWB3)mq2>^#0kwR8|(#>1p|~%os#rjfW+|UqK0o1>}6S-9aq<T;=&+rl`$lM
zY8|-=lEoXa^-vD`y?-Rs+s1^OS*o%VTEdLMP-3>NM-1B#v?-FC?&6!&g7#&1r@fT}
zeD{;=T72B=dlOCq)&qpnm*3u?PKMO4X{fZxmehh94`be;C^Hw^D1S8KHOXY6ucs2m
zF9kd{algsfmf=uqZEh)yG}*U=3{;MZ3QcW(yLw;_Jz;_Gc79%iW_B4l>64ag;1D{V
zASy1fp)5@+qT`&qtyo|z@=S&bx9Fkrb}MRo88x~pI5$F|0fV98;(qnhl;a38NMvi0
z+aMr6y?8ET6ZPw?#m={@%tdRJwm{}A=l0yTwKhEBQ6XU}&Ry2=cm#d@C2qzDVgnVq
zD>~16+si$Z=;ui=^~{3a5!I9=+Md=Z9lT>U&I@u7YdUTVt$~31f}M}8?*)j^8}SJ}
zw~`J$NFWk<m$JF`XrMs;R{yt)RbjBLKiTQ&8A)F|s8&DJ114j0ktBmAn$|QYBV_wq
z4_gPe-o23|SxE2AetmZrPoHK|p|B$?;=89motea1Av;oaaG$8-Yy)Iz!Z3~8q;e)P
z#c22lm9-sIH=V$`**$ptus?4Y5>VNR29gaPK?u8vpR4@Nuk-9gMTb$NtprbhfK}Sv
zHv{eBOg*$Z29{dR!({p9T*P3=TX}Sk`LB}?EKGxKREX?+Co5*H+4gNc3eM;sGXmaQ
zYP-)*B7f^SKpU(iDH3+63TNP+-l$pA-Egh}i+nNVeJAXkc;@JpJ(svYn+*Op%N)V3
zmbxf0vV>n88dtvR^>8z^jr9giedK+S)yAoBOH{j%ZupTa{9b)P0R2NQA^=82wQ&Lz
zJNj7x*9=TPgYDY}lL{CBZ=V^30pU0`>wxtwVlt#p&nPRbD9*dxqbsyZAhaqkU@3S^
zb*m$17$!apNcxQmG>WliI;!+;2I|i;h-hD%oVSi7Jb*EC=bXJ)t_?j8urc_SrTYHr
zn#rLziL~G5y?fVqzHvjt`1<CKNmmicen%M`F>?8fL0<cJlB8klvgyt7J^OeH%pi+J
zxA(`27Kb|8L{P~QsNFk9%E5<j{?_4{FsRTQ+hq=Fo#I0?I)qC;d;W3Q`j2ykGX%%-
zjGRC3V~fD-zvZix-#yaE{G!9gi$ONkxQ>w@b|G=(4ru6o@vLeE1pgzu&$~UDnPI3B
z*&)%d^%iEdcA9)`7=Rum%jpnZwqE|}gn9}Br)RdY26mOs!awS679VJdE~COn?x{sn
zZpivjo(&o6E}W{JuHAk1B*6JSsZNs^s_ll)EvhHW%=qMDhOWo_HJ*lM{S|Tq<2*vo
zP9bAfI%bKI^=0w?G<x?LN#=d?p)#fWB}4rZpO}8M<8)khHtW7o7_IiB`KRdY@B^k*
zo&dB1g6=+3&x~qa%@4Yn+d%-JWgV{Ym5rH$!78eo>_Nq06Q2w302Ih_QCd1UR(gu2
zF+upbCf|&oXKJjt)6EXQ)WqfoA9ZAJYpp9KPbN>kbqd|Z*Y(Zg;^qbu5(b%EV~l;y
zXJ%GazTd$<h#7<m?B0cQ04UB>=<U~Tm|qr7$&7?Tc4a>QW0oq|(P|F?#&^j)0)ZLM
zb8kBU@wuLvICOP-;JbwAQn_hO^2<7ePMgyZ&Pp7~#(C!!C0n`tuC}V-@#wMgNIu1x
z+v@{{1Zc1ugcy}#=9}Zw3x>FBu@jv#R43c<iQ^H}N9jJ)@2b7mn&gYm$sJOj+EX&C
zN-euGGV>_UYsp&!Z96Jg#_W25tp8PBe#iYporGD}H&quV&o6+p1fy=B)*b@2UKRRw
zy&I{Pt&WJRbMBSjDQHe`7*;LKbnN5G-derFN^E47Ryohn^pxhM!H{3t);uG$I`d?$
zZzY{2c6Llhr_N`$riSMe&x_+m-HwPkCTN-$Jl5OWU&W|zZ)7i0E*9m~P!iYrVW!mB
z=4jKzP-|k6(@5pc%6#QUY8Z!5UBSp2gQ|T+)k#_7Yy&1HMYj=;SDWkEm3&PRwKR1L
zd7=;Ze??%I&pa(@EB+e^;jzmXfz}eKyDw+vff5;}&e&|O?Q-wOhs-U-@57|xZ-5}$
z3yzpR0}rKmq>J+HVUYi0k>Cuu^P_G;E=TQ?<PX>*Mvk0c7HT%3JrU7G;34vO9sn}b
zkj+l-84A8`Q#a|VJ0RFCFK3YLpk#Vvv}muVKTnlIvvy;$)9QXBdqwi#qtW{`+;NJ?
z<9WtvJq>kFpNGh=5sCY%o^|*KDc&#KvNCsjOV+Tf^<$r6?YrE9|5pILxr%YB@{J-q
z8tfuVza!Luu*e_fnbUov@349I^Rs_z9&inlYENja%0zi`-S$`6H7BFy(mNj~n{ld&
zvjDU3J<A5$P0a)Jq&fP-ox>c>=TdnXoQpO}`tcjJM?LzMHT9T)5O^%fk^TAWYhxl7
zd(MaNd#=7tPa)FDOJ)U5J76{T+l})<_$R3N#B7$iG?1)rIb;2Tjh&Qs=PTQ{{gTrv
zVjs$4mUdD5o-3^Dh!7GP8kW>T&kY71^tX=bFiA6aRqWjO@a54#Qq4KcCip_XimiT?
zoVXD+<Be1t^jcoL`f`>zr#WxEg~zmdy*7#%;#zHE`=IFd)S%iKT1XN0?t$30D$Kt0
z?y#F=EM$ZYt*p;Fyr4|(-dB4T3sqj1Fl2F-ZyAMbR|_91LyPjR%QGtG2SgluA&-+;
z=9%{_j}vu+R58Ruer!AGW7m~hL1}MK0nI+h%@5t?RtMKwA`9=(KI(FKKT+?)hcVsG
zOp^18%i8~y7*Uj8hB{f`fBjy~q9*xQuQ7l5TUGr%uZr!WDn21x+3n#X3zpUf_&qyG
z`0ndZHzf5oZe9mT*r81P%wsnG>29BN1C8f+@R!`=P_JdCQ$x2x7zP{MhU}oJd!suw
zUkHZiA{Th{?1`BK19OWLj@9(yJ33w}&I_e=G1Fq$`wcoGlFo_mXARWq$eVj&qR0ze
zX54=rzxDo2j?J|h^Fl0Ah}-|*iqo)S@?a-yS3VQSdduO;sLdw{Bc-AEu6OFASPSHA
zH=PHx#`oZh0&cprTS8%}nK=cyuU`E8hExJuy-fcYoMs-z-Uqf}yRxsM2lk_wR0-LS
zgPX^q;^HjwouI-kz_72v=_-0i>?U{ba_0l)nnApCjvQS{_6ds}N0q^TP_vn$qG!+d
zdUN&jc>wL=Vf<ri??Ye71PK8Gq2~=-SO+s5EBIy^Ks+C_Z3?z~=%$=%zBkg5K)}Up
zkw5IdaYtJBfFKY!xYkkkC{UD^H#3<#3Lu;&NPuZo;b?rLaBU{QW~}2NV{HI^-9q7G
z(>?p(r#BM5R)jwu714G+&+%#)M%e}AUc5yIA7LcLDhyvjvhmTEm34@0<L}lK=i`e5
z#of#Aoh#m(_2Y-%Jk8QF6BZ4HQ0m=@2SkDe?1k`jT@NIsEaVx!lxmU)F3`bUFH?LC
z4VQjtaa<5FJwKIyGQEk<ch7x!Ib{O31JnJDt8eWC<^Xykh{j$pd#9uTZ(7@rIA(C6
zV(ynLTBFF5-JxFC+E1&%UueX=u_KoHZBqaGzz1Qf((kdf-X&G9mQbB5sk?mZz6}Vv
z#iie9br0smsGO;S3N_e&DHF{+0><92cg1CFWde8Whu6lV5u+uo;-C0$N_yU(sV)_-
zEaz11T6;stv2kru;h*RecZC3l(&2@~U|_4ds+J!{)?Aer*l+`zORea|qI-p=Nbx`B
zgTqJ9oc{WqCnYk1tKgCPPcq&LiFv^nZ8sxx@<<r>SHceCF-|2ZQZJ#sdT3X^hY5fD
z2AF}1=|j(Qw~o~M;4SQ+wDa)-;0z0LLP6QBv3xD07bwr!=Vuw!#Mk`PHx4MzEIIEw
zkn-NF1t4E!?ZG~os5ok$#H+Eq{j}SW>fMV!JLXgDnh#~5_OjUC$q3a{DVYyFqmn#7
zkFY#ZAT+u#jR%hGD&c$NMA-6N*iRsPKlroRJ|i)r5i1_`HT;o7;?>`_#GU=Jn{L!=
z`A8yx6kGeFj^G+OH+o>ZD;u?gTF7;i(bQdF1x*L)tAzB`o8@ijvRHs#v4rek4zR;)
z;B_Xc)qf}x$m<=NqzXdD)+=Tbr^rr$4Wzw#wRvHG{3Z2OY<)Qe_np00*HKdjti^UT
z$r)#SI63_0i#lp~sU!wQNjKQ;+-k7lmSV3Qgy3XZ&K`&K6UJaBEyng@lsOoy&(;_j
zB|$ZzWteJA!2Ox#f(OQ)4O*K+Yq#TKX|BIZE-&DJ+=;pvDy$<fv{1DQ4D8_8l}$Yx
z_H$~|x*}yT#whWaeiL_H2|!Tb0Ld4vKEyhaAfzYg-j%yBqWOV154cwSD5v%alh9tR
zT)NV2rpuI&@5$a6{(FwhO5zQxQhn=D+MILZ`N?@?<Sd?BKbzXdKMzVP=1nl%c#k!a
z^yzciuGxH6E;~Z^+IR@p$(J!<v0Q`way}n8QnJ!(TVD-d5lHvncGCHhN23MI^AZGX
zhL{0Q%qMUn$)h#uhvD_lQ1hOUGnNmZQUSBLJaO)|@b+cMS8dD}aGAfpJku67{fsg1
zgQ<=h&>yHrP4E2VYt{um(ISq`SDxd{dP~vZdOab}RCQN)=N!3cUTTw$ZW6UP-5DI}
zb5In_lo!^+ZV<e?@gviS_wS1zcU|nl5WQ7@3F|Ft`!g{*kvvm~$+j)c58DeB;R@uq
zHx$|Y)tA-EUd&<+twNj^yvd0n1YR#Dh48(gs&#@=lEJh1Q50%<+3&NYANyB60MHnZ
zt`OtKQCEG2XH&vF?_^!TXVy8%(TOkeRGtSmXFmt#B?*YCwqZSU?2PLun*ZjUe*(js
zfZQMjy>j~$5XXdUbdM%)l=V2r@a6}cml0_Xgyac#s^Hr1C#yipb)1aX;^`H|Xm_eW
zTZ=GC#1Z(cT{ByweQ{3P+1TGJHY-{PNM&aq@pt9Piq|G2=HI35{Uk<s;~Azpwwx|9
zp_*K&NWzxT9e-X7uS6+)nUB|qYs?nc(w;d!1E*gWN3riKd%sl2CyKo)CTj-4SK)`z
z644esOPJu%jU>p#2}L>pAn9cAtGQ}<zkilCpSYT0+?FR6ALeErVvZW4#DV>OZTj}v
z7@NzEwtK2D>#oy5eAS!NI4l3!%kcL1|AIWF!TNSg(w-2t7W?jAHU?!{9q=qt_G%?t
zi%gZP4K9Yct3_k`#|Kj~)P~zA(>NJVMI1Senx9IN1nNW4BmrwT@#EnENXvfXYf!ZP
z`StZ^>{`1h)>mvgHtk{|FZ)1~IBqh=Sgz{ccrC}FTe62m0njW92(XN_$uO)EwAF52
z-uc)V1@TB1r*-=reyz3~Y3tQ7PfBV|r#)MLxusy6yjWA}sRF=CZ^%tN@q={16h@Aw
zy>uSrpSE^Kc|H^YcS=otDir~;tCQl>&SDF%1ZfeYYz3DpAxAXRNV}M@7!w0=eW6Bg
zXJ)jl--t{0d@vmPwP&=s`bk0NX+Y(LS%%Y0)#*PMj!Wff<r@u?66O?Db)31}`kjP2
zYIH!QwL8uy%9t2%XFN(ht#&goCcq`qe;y=}g@@(1PhBfF=-Cmz@wgM)RfID~9DYCR
zO-0Hx7&mf2)4J88TDKLqPZRuZEbF%7wV7Ma%%4{VUX46U{pB&+dGKnxLJ~as%P)1&
z)sh8TzXDf+KI+mR`Rh*!OE|hdv`ttjIVQWe+geZJN@?Y${fFkZlLB#5R<SqgP-ca$
zwy)m3(fd%EHMDcH=)p)BSW_0CtM1UQ>gsGX_kHzX`yQ&yv3HL;;ZDXuF#nWtlwcE@
zXk(^yI>?kfc6o>kj%E|8Q#T>6srtF=1@i;#Ehq(PI;y4w{u`an(Xm%f9-u439Z}QC
zH^Pa(U3vDRZgk$45#h%+aOaBqfwa9RNCHBCJ4V{Ag}<=JXb8{>qd3QSQB}YEW+>Z4
zFT4~lM)T;Gwvxuq9&RFMWdzjvljCszFA$^9i)-oZ&PFH}F28>9POF|7L`#-OVvBLj
zH?MTeI)dDFE6&~)8iHbRL3v5DGu72+Y_96sxh0U1M`-?v!9M`F(AqV{VdCQQ-EN=j
z#J<j&vO6=Tz_Q>v&0Aw1!1tmm-UIeFcxyK=APgc@tH;dblvHDR8`!*J`<4fbGTri3
z9@RnA=f;J+1fMXCPeJV7o#Mx{g0bSx_hjs6EbVU+snt!lMTG`Egdi?peX<u!j8#ls
zAslKeAnXxRjN#t6P$|aw5OuqMO5l(CDD~|W%Ms0Q17Upn>iND$L{$&V&RxsPZ{Kyf
z(Rh|pIZJ<dk%{M>`QpHe?;%Zm8`k*qdIrk7#Cq_f*-{rB)6R448195UPwp*Q0pDGl
zoS4Gh%T-DZ3}NE<<QTkXDxEvu7mE7W)70+cLTAiVjcOLJTFkbbL!Kk&Xx>TFDS&`>
ziRqjo6{_~2xW3YZ%{u0RZElW8iAmSSszNaI^@w0{wajK;@)95a-t!K(sW!V%ZqhRG
zDPwPE53v%Cc&$!m`4VPdCZR6iJl_8F`KdP4a<NzVqF<JL81!FQLIjoE?R<un3gUu7
z9cecI^72YESh*;!`?0&9XFJB8qlCs+iPx@EZ2-Uf<lYL&`q^jgRAvvmlvlR73Y`Yc
zQu`?{pq1mVhZ<Q+b|i{lb>6StojzJd*!S9#I)QxC)e{2`!fip6?_|u&l#l~q0b1->
z<+i9K1*%G;W@*YyJGO;<+%tJ4gjw=8=U5RGjrTjLbihC2fz;`&nkLwO3Eu7{U4rHd
zacA+i#XcJpYOvg4f-pCG+)%$!0WUE)hV0F@t}8#8owicJ;}zJlvCgu2G^L=PQ^&14
zon6rHZqnuo|M6*8akqu?&9RlY%`TXm7rX#EXzDmRE0#J+M&&D+HP$}sy1FLpPB@WQ
z1}p$$J<Xou&GNT@25A4GSoqx%ko@krwV`kev&MEMQ(Jsi(pJ*&?T}D&bmjA5Ye{X(
zk;c}8b-A*y=Xks{TAU>L!O0&B;U{r+iH}Ni6P9^8T!tmB?!D{p%CEa3a;Vw(jQPdS
z`;5#7<yoDRCfKbAJJQ(RHzQ#^r;AQYnW)li0UTJptEBP)ou|Z09<lwUr8d2ud^jET
znO2yJ0W{wO3+4{|kmi%%^Ue}bt(xbO61IT7iZA=dcj1=_zpHXDbmQ4f*xZvka`c2H
z<s%Vul?!<SfCQ&)ZgyJ8*$^8%AlGKW2n6RCK;)-ko?TnQJ~mgm`SU2_qg3Qd5J{#%
z@>g)4A}7Tl*aKVJr>=b!@osk6srf|)OXlxsFoS8|pOdf}Jj)y`nvgspV07@Um08Ta
zKwa?sa8vprH1vdjA%?;W9+RW`E(Q@di{2%~WK$9fBMmPPk1Q46mL(A?=eicuJ}@Q_
zsE74Zp;^!H$&T6QhRu<T*qJhd;w=olp)=ySz}1r`Pn9;Ix0yraucslShM$~UbTV9~
zdN(QbSHIK3(b2%eio~WKN<X3`*@icY#2;!*XmgBAddMS{Tz?GJ7PX7CgvuV)78!+&
z*EU}t6x`{;>z#{U1?1KRD8Y0B%?Zx$5?$Lj9ma2`N%0Pwr+7Uh=0!~uYWG6l65Hd5
zKRp?0g@~{9TDLasLgEMYn9cTAs<!vh`8|bE&o4NnTMS}y9egsoEvoBDO0uqU&oT?|
z$SVbsZd|NXCrtp29hQ{a!sDWB+#@K+HeGJXkSMK86m;m69>ysW*wkbOpI}tlJZ`B}
zyKYc%Z59VXz}%PYvm$i>;yT!cyK%5}Hb!aZIws!4oKRY6ek;62F6Ni@pmFh#@P^0u
z%bE!nTnAMsHfc`ztB_GwA&~(nwyP_1$<oe!?|^}6qbQpTHbmcT6Uk58Nquft%2?<T
zw`sJxKIo*}^1!}jbkfBR$sr@uha8dL$vIX6&IG7(kn8j0dqAvFu)eJEna2j?wJ(J7
z+zA}VI-}-#%%P45!u6)z{Vfa^y%9E(rFH=vnGey;+j;}o3>zhUCEfZUQxC#LT<w%{
zb*l9P*xzyqscO<8ppz@(={254PVeHe%hi&{f`jyi5#Q$wG)*k4`K`3~c+x>=2B*UJ
ze0~Snq&K2&OUG=q<7N!hSuCnkm5_NbwEj?@-cD?;I5q6<AckLel2w&y$(^0C6nPa|
z<lZm0`6$ad^m*;yZL?ZOBUkPmmiM}6W8Ew?dwxjkv)u0PT1#)6M{K%Tbd~|w5h}=O
zs|5oND^=t!^syWBRJG+8ine~)t}7orUXwY5s*w7n^_g^+x;`>oB<j?F(@`Q`wrt+n
zcwxh>s*ZrO!_#sldrmYxmsH}bv{fhMw8{cqQ-sRC*V)!4WKNbx+EfL&Mr`ttVQiWo
zD`H{RZsR$VYpf3}zVdR?mmvwVSo(Hllia4#Tabj|r-ph1IeYV>pGJY-eoI<qrz*LS
zbI#7uQeL(}iM(9n>?K^9N`lCsj<bF<XNL8iIkrlw2@Kk{u;CuEIdWym!_p-3^PPN?
zE?3y`Y8v#|RcEH6l*p>q#Lhvp8l|UtefWikxnmb<Qd?sAOj}{qoa=yy{37*wG`=EK
z5z+qE2S2#)s5~3n8CX~nmime$-FflaDP`Hg*md$~cvJ_*lE<pGGNZ06!k%2(AhFG~
z3AqE8@^tuLoh;Vy(}z7ygUPIQhkS8w!T7+kLpq@aJfVEVwD~rP=>T*9s$a+cw?Cb;
z$&(b1X3Z28zERr`hLel9&rSAp@OoC9*<0Lk^r;egx|>Ly?%c{JA7_;}w;=u?BcAX)
zY^PUp-bLWU{^2<62Z@KD`iZ+vp<clHQ-6+~GcrPv#y%UgzR|2@oQsA&<-WzXzRjTV
zz=dp8(o2q5eF=Vh_4{NdE+7y6`gM^_bMTqv4Brx^gL5hv@0~eb)D4_5Ez;DHzW5`_
z**)6WulMSiGApzd93G_l91Y8)scLoE&}#26X{<t3Ikwl0mAisY@!)gS*~hgCh5bj6
z6jcO#Rn1jqADnoImCq+kUzR3z*R(!sx)f`>nor2PHSvWKH@UOHxERxG>$^WfvALO^
zlViBe*lwF^=p0%DDV9wHy*b}!)6v_OW&GX3e@rlcZf;Vq&)C!VQ4^N>d!3eLEltn0
zCSEzU<tuE}-~Pge%2#E|Yj&gOIo7qM?=kJ^;7JjEVZ8F25+^jF+_AOAw$x{|*4BTJ
zcNe`lxACg2lHORBv%|(v=flIEz{N=nA}wSkAa+$#1J+2MgVJG(UG30aRo_YsH_5Sd
z>3YJRwvGousn6$9-Y2hFgMykdXZztX?-DnV!^Z<p)X&xl0gXRH?qgbc5%*GesY=n<
zn}Hh<aoU*3?7YfmPJ?pZFZT)8j-`O0bDGGtTI@qf-v@u{2A@d`ZMXv@jCxUtCNTFb
z!A+~KqZ+kku6{2!EYfh2CX)Zr*Hh@MuWey@nJ1*13(|sByJSsu%;JfGZp&9IRh+$S
zE3kAPTsnkVQx*S<L#2RSR7~%=l?Wl5X`FB+{qe$1(_3pde(nUv(r^4$Ci2o<_QnjV
z6}NS5c8z70_AQ=_I@X<7Kt!g2I_r6IehUcka1T%d9kF_(dW|9`0Q)hN0!gM39*3Rg
z?IGeu#I2H#U|Buy^d<P$b2YNEt2dd>Cokx%r7q0I-f{lXV5-?eeoO1wdy`$LuvZn|
zh@{-=F^?LnY~VYZS!88)AUR;>%!J^V0FjK`j58GUjQZ~88m7CBppt@P9;md+{L8th
z5D%?C3PTsTe#1h%++L>0>>M5UO*VI@)s?2r^)la2FJ22;Y4Dzdfl#K6-h8h&pISTx
zb-e~4C)d(K>+{Z?{@_OQbXN_`dNjlCXZHQwvQt|`DoS^b*-b$pH&}X`z4_Pox`QLf
z^HWVQ+=hiou6>m*9Lvmael{qBitk%dTMho&M2Ki<yawy@C_qNt>F>TDfcG7tkwW1`
zlJFI4!tELM#}6jtJhTh^6^UT8INy|7Rb}nvt<eMD)}kx`tan_-kpUV{VJ_L(&`9_y
zaZ(WLFynfD_NI39r6|y*V}@*M``nsb1{6H+D;7>@2+||svS2=LZjGl+9K?XS#VBNv
z-(mcbP~42ywbH=_RyW_Xcvp+YHx)~WhE*>hb(E1JhW$qj^?^(^-5s*ZuUXv4H}6PO
zhMZU2FMvuH#jnhs6R_6B_q<t8=Z-n8+8+UB8uuoUh1rIpqOZbgIbXHcM(U&AT%9rS
zf{e41>EzkWtxL4a-pBQMqMUxKtkDXq;YWT%CA8v1sKuY{`NH7V5p49Y_=Eq=v}(|n
zLzL56?-Q^0s9Nn*ev+pw1-^JTfsG386fQf%8<&;}J88#T4TPMYWDRbdsVcTyNHp7s
z47+G)d;fah-hRYpndtJij-IHg-B{AW93^Jmh_<cWhVfEg&-3a&E}iV$Z#m%vCPF3s
zpuZMh$RyvTsC}JKub!OvtwcBK{7sfZZ&KAMKF+h3{G<*aW8-D*T7?vg!4oVMz5SHy
zORPI4;)D>5L78z{MCWWqT|Tj8i!=_lO)gew>)hFnOVXE1B(~Ab-qS@wzUMSdn?-Fx
z;5sln882j)*ySTwL5sM`UVlYEphqkBe(%UaTB(7$;9FulnAykIN&6?oyzthN1>m|W
zM3GkPbS;yg=~3Lwe>@DeCbxA~me%Nz#$a9)g4w04g|@!X5xM7ey<KD>C)PDU0Mb)-
z#+qX1VvIb$0lxAMg<zjs9)!oSNbfxj3nm#;;74CVjEnnh)t;1JkN%->(dfZK=9-v0
ztii!XFQWlaYn#om)`sB3vYAAF8H-l<am(iJWvVcxwLYw@<8)tw_fLg`PXFjU?Rr}3
z2B?KCiQ?YC?dz(8DIXOsV(}p0WvCgCdeoH52hCM)N(Vtlq{qYbeCfQll(sJW3%-M`
zi7+{y;Xusp+&asu$*<Tv!{&9&SZ0A=XMqDBF}VAG9*Sglibv&A;o~**!4iff%#^+z
zvr`J|=0g8pb8j70W!kn63%U(j1r(7O5u~I;LIEYD8$_f8HXYI-Z6GazbVwtxX^;j*
zP*OlT1?gtf`8)T#?~Km86VJDvf4*6+H5=XBZ0@+O^E}QYgt{G516420=7Eq?!ecXl
zjC0Wrs8IVw9RR8DP`TgWnmWS(IV3B+&1ScGGYQFghFs@9YmId2rtNiC*bj~-1o7q@
zcRZ}PoB1T1>}ocMAm2Z*uHze-f53{c+Q?&cZi^9g_R}$1u9`SCT3_)<+e-vBL$#`x
zs+JS2S6D@UU@OCKXH0cJJrQ}hIe2d{thz;sEd(211?nBLEq`*&Z|z4wUHo`-$`S-(
z-u_q81nl~*joZGZ8WLLDppC*FfA8m=HpK0;G~}$OienMK8+c)ev?!9-%DuXQP4B&E
zjXN9LhlHK!C-a&*p)CnD)Gql43;66sDGy^7b~Hi;Ny-&RS^yCGD#tkesPfTwM|b|*
zQ<mntx90&YWZxP+3fVg41u-h;1s$}g<4A+ZdFyh|^K_KiwzY?kt&QFKY(>ZCR+stc
z?bqCdzT#_6T7*G&x^NWySui+hiT5B`Z0>AcLRmCb%M%irS(G7)J|o~q!T*Ea`0Fc$
z$A}W<1Y`-S&E5B5_h$MN%ey_O#Wz4Zw1Jp9&DVqF-Gf{C-C<ZJ!wFG|LoPec@+BS{
zdWF(wE5oQP=dR>6;>=k2G^uczbf(-sqs=Ilhf_p$)1`=NJLFRzab%+B8{HKp>zjy0
znK=G#;I7}glK0EKYo#WLI~j{Zl+_h38>Se~@P2j6I_a_v<uA>|2FU@^Kr%1HcYkrA
zQsv75-FUc60#tPhD-i{rvlp9~oEY9&0O781p4N5A)Gdy%N%VDFXwy4xHN@?*J^W5?
zO9b<rAU@Q))x`m0wCQyMztt5AYl!z$Q95g-uEB%vmD_GKtE^%R<0NNmRx~``9;rZ#
ztV6(n?o#z$wXZ|?nPk8=51f~f%K-tgcTXV*#4ZdAj+EQa&-8Di@p&KUuiL$Vsfv?)
zj8l&*qqxDqeS{z+@l;u|-J>pIw@NE;qNfRMYUR~gPCZd`?Fu5-k{CuJObcB)#FeY7
zjR}3_I|rj{lT7Bvf(s@w9y6D%g?X2$B9m#N%eKdH_wlZt#jPalN;|-)421<WH3Gx1
z81HQkJ0`sI;%$nwh5pE5131fF`-gjW5Qe!sHaGQ&hL9IzpGk3BJJUMb8j4pKX;(z%
zDINNLDVYL2m$_5~3kWoHNwqfn)2kc{-L3(}=5(QXzm3Q0T(_Ayn?{+9VJjqd8*4jH
z+IvLNmBZuKT>F*oq4rxU;s?{-Ie>_XFW+0DdWqC%tb-$dcRati%t~MX0!mi1VEGFM
zZ%|DUtVS@t6|CtMIy^0Jv8e7Ft+0|%{rKzoFuM`E#qtC)&Z$!0`<TgMgay684VH^1
zzA=`uP8Q|bFNr6-%Iu?abtkQNC|hh^yeZUsv-nk$bL`-awZiPY+*8-$)-Pb({GIPK
zalkz71^BcbiQ%zEy0L6OwM&=V+udjgBwv<)E}L-x;E_er@lDIh)%!x9K<qE3mo>#N
z-}?*V<=o?%nIv>o`bm7hj9lFwuuQLQ>uUFzLCa2uGQq;bWjiH$l0VIc<(<Q@t9$Ux
z3&PnO0(QRm$GW@T^V{PP;@P^b#aDQuJOJ!T*?PLu7n#s;isI|AE2Ekl#9z@|iNC6z
zsU&8*kS{@g5VUfzCG>p+OZsPd>u+TaX3TKn1Sx*aAeYdDg>tpFgmMYetkB-D&4=Lp
zy_=bgsm*Has#|=msEY4{&s$K7e1u4uw<2m7BlG{;2YOxk1=ImA`|$Cu$Rxt5Jq2J2
zhtU4Ys}B4*oF_9QRWY&@IlIx*mh|d9sW8BF;e8RY!NIG_;kKu3S$(*x>8hMtU_EnE
z_rmtM;fR77`eUCW3wXxv@_w2}>KSHq$S(Htwz-zJx$;JsF*}FreW+f?_8}<f_YT|L
ztlnE%?b+)9Bi-(bC|4cV!t#Q(42Y@i1#KWtF5Lvn5ojA*p?E83hH<=kaw3f(ZKg_Q
z=wc&6=_xmxVUvnSNr5s0(JU+lXl!|@L0x(T_eUlh^)E_;B{>$<Jylzq=+1*f^W&;^
zT`s|t&z<x?w>i=BUY9PRw-yyS)`aZN)=(Y{*xaD<YPlDkc`T*c?Z`5M%34_679^$H
zWYGY<P_Qm;b2}tB%y#x`IuzrpDXau|pCVpY`7()ae;(sQ!2g9Z7&hm^#x>B{7!30}
z4E1XE45z(Rufh4!!5*=cl<0SOU>|g_K#`!la7$SsM&K4?l#!e#j`(!Zp5S03w_pBS
z#mam1!lT@=5YRXd=r@CpasKM&V18Y2lO3Qhvkxfw*2t6bR6)&IGW;vB5H;sO`!FJ5
zK7K%YQc%u7@Woe#g?X<6osBvB0E#9|ZA(cG?p*#=4s+2kk1*Q(us@e&wLeQI8{Ibx
z>5&Zv-_cA5d~fCtWO=owZ<5WbFGo`8gYI9qU9l<)lBv5udmkcXcI`0DtR0p&V-L$&
zqkG|u;TBY|->zX_t8fwO-P}5!Vs~I)=Zbnhc0M>ru;BTYE%OKMJH+qO%3)JM5pKng
z>dPO@Gu)LzqY^4``VO`yjtYeww?-=BE_`?KK0*&{)VYph<6u{z+cb0DxNAeenKE*7
zfv?0%yDEtLT3i@~X!gY2{wrE#=(fTA`Sb$P!_gzRCDPR&@~=N`Ojl|140nhN4};rf
zCt+@|D=}&|g?H;(ro&pH(y&i1XR6flq@hQ&MUTwE4WTThze%_B%M+f0l!ptvVpeA<
zdG9o**FImadezSDU}cZUrU$Ppx7~eOBpZ&P^X}|4%@jD1^SZM^lEi`qIR6^bD7bcr
z@ovpc=^|`r?5CnU3Ug;%blmwkuDnuOx7l(AD~2iXIxqH;#>wc!uZOvRtXmnsOK;#P
zP?(X{YSro7n;3QK7{#z>uI}|J?~jP16VoOx=&9>Gd3Og<Nwp*qFF&`f9AYAcm!Iu1
zF6r0r!R&a<kfi(rP;wf}874xtI}BIGwgSCFlo*o5-Ih<)XT$;J|0CBlc3P2eo#~|r
zY#$Zkh0Vh~svQgZJSP5kO!2QQs9zj0WOcyOHcoNManLgn^cDlzs@IU$Qr9%YR>2~B
z$wRL9N!uHYUgE$N<W85Wyu~IwzQ6PkHweUGX}7pv=K}~xUgMq3NBtiKSSsqX*G63L
zn2)Kfdjn=F(Ul^pFHj*KIOkBq;Q76L-m(C#^y{$M9>`~$yS5y?RVwWhGwfIQ%Gh#G
z;jF8SiKC}l&GUl2d9=om)|GFkIieU&%SRcjBo#6udOM1+XV=jpBBAA!<z`7)>674@
zA9{hUxS>^Q+YORVN6J|T$E4zLo1~^Vb`j*@rXLEdTcOi!1zi9NLg3P7(O`}RKMVmE
z%xXQKFK%3i-lb22qcOh6V>+%*9D?bgen<M;;a>E^w%gzg3H9)T6;kwsC&QOM1RH|$
z<lK$k{L~2*F%cUSbYKlJS3N&Ful&uu`5BjaXNkQ~StCR$oQKR+m8YU4N4`4$L{G~=
zS$B5S+Dna_b*@As38Nl#d6!iG??R1Pyc2zK4Tx7)*(<LiUbEac=v}Dv=)J1>>Btnt
z+Ut0z`AOpruip_mK_0A5^sO%H6dC8^XDd+O&ZCc<9(Fu3E3q1-jI}6Kq4#M9o%gqP
zLS$JVWC2F}lAI95Wnv@a8ESc2yT;wed8y39Ig0kyYHzP-UZ5{x<dosQ6HNF68ZK!O
z`?A|knX?wY7pfeq3-9npAMBJ(YZvv$4Yf9-ur|>BMjryaMaD@CPr;7O%Uba%$d~c{
z7KGH4Xjok#J#j0e23&JnkjGyvX?BBj!DN{DF)_2Ay-)Lpv~F?hs&=9F{s`3J$~T$-
z%PIAj6);C_CV8B+QDjk<<j@$LU`*_JHuw8_oSTnRrAr68H&@3BFzOeP`5Ey8DzzUy
zv4ZQjmxrPXg_448dnK&htp~2R&%5nyTJTt#ehy7#R}H6_dT}j2zwwc^-jxZPjpukf
zUji<&b4)${Y7=LB{}4`-Z8yzG4X{gq8g8BIu}rAv{-Q{}N3Av0#+|N0OGBe#|9XEh
z)7nKl+|aTmlVO#%i7|Wg={6w5vWwMB$Kt+}<`RmU7x{9f^f26Q3fMomH{(kzhfO1H
zZuY%8OyqZL`}{TyEs&c;eH(FB%qpRvib1-s$i$<b>)YJY0Ex4?xVp;gY#@F(W4+1u
zXz4E7Yi3Pu1vbRFs_294`5EZf^^RxXW^&?G=DYA9<};;h)8%w(RX&8jdC>y=xD6u#
zRu6IAE2V~Brce2!`pQD8a+4d$5BSUzQ9-Vb_TC5O&Mpa@M)4Zuc2RMu2^KWsj~7{c
zmN}Qog&vK6_niRV;c7|z0REoFEbsdhzm>s%Txh972)!s`)MGyC5VHA8Y_hJ8(c+t}
zW=L4*XsYeU2P-O({8h05>0RZ*K<IHX%(<7Jlo4E5AH>R8`1p;vX4Of2ncSLK6?%*5
z?wM_!#>ht_S&356P0K=>@B)50K*XFeJP4ml?_Dz=lohm|d=pa;jzzQk?AuCl!L;cx
z$fIMRTXw<{M5Bu>?^S@MJvZ!gTmuA%?3Cz0`fS2hCgrq%UU?ejG8@`LgU=kx4buy?
z#D)tuCc_r=MR?!Or>*5B1z<eexti+FQtY2s6S^T!7L3^w!>&sVUPI3$X6PR5%b6tz
zu77dkX|4y|WmSv(!32+DrV?$%^0=x(n%_zMxk2*>{I{lBHFbSD!aj~e1WaBQ!-p=W
z+)B#a7b#Or6%ib!V5-uOv;iiEqA{DeQsA_HDtICf86c4Z#|oj-9z|v97m4{#@eDpM
z=%%MmqW0%VV4!)uP&_>F`~~S^JAh33K2gLO=hXgZ^)#$_UqW+(HEKS-M}AU}U^Ah~
zPEQ9C`!dA*k(&eAx?l3lT4AjA5L231He4?qBHOi{fSGwougt;Yce``s=EDI2cwJBm
zEem$r+r6lwOnZ2?3WYK(mz%%*p!#uHZ)4{ZkA|5W>OEYDLi4^n_HvUwJ|O3EM=s>6
z1FyU5t*SKndR77!OKn4Ov#SmEs(ae3VAlrIf@2aUs9B5EvGLZuN+)d_@}~Pg2qnM1
zD#LlVT<WtN-6KtyZw>#;f`MpRN#px*hA$9vlTz^HT1D|LN@g-x=poh8EAtpcS$y^J
zH~-|Dw}h>?MK)C}{*9%Td1%VS&G8KLDhC@wNQU;o$u!i3maw3t7U>Cha{aH4BBX}W
ziYNW|i4nRoks*#ffq6W|ODU4d?@4L7<$2GxN3t_z+M^3YIWQt!0ii6>uUcg`;TOIZ
zFh0~yqOyBcgsrpA7+^D-dSPJfLU9f=Gax7NlWOaYj}aX+;cZFTcV=%8g!a=>Bm*Z0
z^7WqdXjDHILy;NSm|e|1$h7|-s+D1d%^>o+^i+BJh7w<JvAamv`)W#h&uh#yO4bWF
zx0NsgIAc$VJWK2QyxS=@6!;}1AdqC;IdGmD=y-%ux1_}orDGQIOP$fA$>zdg-Xy+`
z_+On#m#Iirr!FjfGRFVwhw-mB8BCk-Dd8BF%nq7Str(XBS1EtM`lRNS6U3g@wOCrM
zBd(=DzxrA-SOj7nG^|b1^_%%;!QJKtc9Ug_j09uT38=0Azy3sMYKB3l+_f}%DgeIu
z_6Y+1j0zY}`W(<U@vvKukslh-VLBf+FCgo0lMRB$1F_mu=Re&||IwErNG$BgPCPls
z(<z#|Bb7U#&Mhk$1h!OK#a_yuW|>WDKeXii<@PZeCFW6}VW|VvI*DXyM6chR5mcu<
zD|&NZN6~M!%_HRF1wUdSy_RV1iayKZ$0ewFu@C~~W+O8lH4Qm$$LP9;;o=SPGyf6t
z{QDFC^ZUHK&(cF@k(*7zgu_aosQXOAM)PwEvyKgK(DmOzZ=yc^6Qr#1rH$rH<e+W+
z=>()GQ!_C&J6w1SZn9ufvo^||qYm27PCmh1saL|iC@r|B%{srvu#=IImE=N2L}TGL
zm7WX_?Dus3pP1u+{;+*Ch%ki|`tTO85F<%lWh4EIuJVsppBg2sxaVUw<W=xbx5Z;G
zysi3M9t7uq`W^n^Ise1&`t$pQvCbF}D+qA;{Ovpbvwx^RZ2%b>j7U1pKc9i0FVY`>
z)4%-vyu67%eQIiA^mQ;k{vW*kpWfno_LFba2fTkh<A3=%em`)c=Lrtn42oz;C0+0d
zltg_t{jW|ru^Sc#8_9uN{pr7fD}MjM|M;=!OR!I{kql}z*8X>g*~J{@|3{xDO3cGI
zfaqV(0sSRxa2)4_d|;MKK6=Ei*}_pc+%g9~d(qi(0xjcII$Q!J*@5}=S}4EFp^U7|
zdo`~Zv`UgR1kmJ#4x3x-8*9;u<uVB63N%^Cz}l)0W(0!1Pn$YvzbVjb5XPdfCQFVi
z$<c{b(##HkCjdId-dOt{4bpL7n(#nCp4>%R8k!G7P7{G?KrqGV@_5eE$=r1s_D1y;
zo2mcmeniHJ1P!SRW6=(1Mx*Z#@YNT=G=v3=$V*$p7?f|%bDZ}QMfi0(hs;DOgU65a
zbQCNy1M^Q&<R4Rsdmml6pwsXp_ELcjbEyJoa(;e%|LWlsW<Qsqo*R#eXORV4-xk;c
zT7b_^?zo;FYvacUoKo3Wbh73LK#PlllNf_B+QblWW;hXEb~s!&*7=pQ&`~ALFh@q#
z@dk_A>6Dn#6mC7Ga`uuAKiDCQngrhFTaOv;G|N)|D%~V8<ZLAG{w9uDk}3L*Z1`)5
z=(jmR95pqz+IsePDqyR_J0T~yDhgWC#%b3S%@Xr`FNyn#b%Ge<DvOpFURE6}ne;e^
zXg=W8E|kM*NasVhEX<?g6i**v!s=we$y?TX9~A>?t`GFS<uHXs0>=&6m#1g>(hV~~
zX&nU<D_`gH*W}iZM;@+4)I^?_yHUsD0ah=q7=q&58kUz6_UtXf@jx0av~)P5q1??4
z6=g6T0brIx`2qN`&A;m^)|ox^`;C`4bDF4D#cmTp^KZMe7uV^TXEPYx;mnIQ=WsxY
z`^`_*x!jj0qp-VU2l$2TXti4_u;jc|BgGS~5d{S{1B7x%e5I3+OX3sZu-IqX)4ns3
zop5B^#(zdGJg27~Y%O<V+n3mIUNbImY&9Pubyz(!l_rkMbibD9Yf*eUd~FfNZym(o
z=;Z^U#TwP8B1mksS{!LcaApY<dX|Zy7;GyXoq41R#r72^6JV_)G1e83^?HabwHh5M
zRY69*C(tz=sVqCtl0JTs!@w7A)&QZ`-jVOd{g@Uuv+ox-3GNyj5Lt;7>2wa<{m8WI
z#AL!_F8}S!WiaoUnn@1cboXfCz>qREz}x(ry?FDFW$~l9=drYhg;^KD2<o5j)|4xW
z*D}GC^Z=5Et|={5ZE4%qVx8)H3)~$pxJe5%2mw|x1jl*<4o*&4NXu=3Y)oTt67v>~
zP9eZXT*;g9Xm{fESz^-=D2@3jR72c>%nXoGu2wS>u<BYHZ7t%JW7nu~5dSK<ey3{!
zjvS*d!#h8H7&c?d&^=gUnXkdUqpu8#nY8{@!l*N>m!|?fB%~|~I6y`(k7X!xA1Ko;
zV@#@V4KTp|^!&5!8P8OpT{mREY6$?n>KA&Vbj4)xscv;0*|ZmrbCPRm!e<sc1Px`&
zSKi}VD0HrT`@r4IilLyUHwKa$g<WSXH_t*^njJgFVJayqq5=jU3B|xH^eE4x``(kU
zFEO~kKHG&W=qVY+4(Oq2q4Bxeuq|zwk4(eUA|sl20>^)IzpNsdiB<!#GTgl%g7gD^
zJJZ6KPMp@2I?kc>&u5<6vv!F@VG0Xe^T3^pKom<7EH%(V62WpBuZQsK%HM2bc!0K3
zEvs4FCY|+yTSK-yzLNdtFlM=G+4sJ&8ex0AC+@2@36J8vBJhsBJi(?rW~UIaLay1d
zR2%O5kxhXWgC%Nmm&Z$^f?kkld*J9cWh;D8u^Md7UMul|X_;$$Env|W>wYW%2EXfQ
zw-1Ml`|e8tH6uD;S4zEOnU-;vg0>todUM5d^9sP0V7Cw+_wye7H}VaeNsnkWXxwn<
z&Jo?+at^5t$@s(k?c+V_<cq;^Z~ooW`plXAMJo@qPdFxB1H&PHa6E`Wa78$onvP@`
z?=qftr=a1}i+naIbQXMv+Y`fAmrpNfW3e88#WdJ+-R{+nd+s*`L0N&#ngVas>#Ys6
zL`>XZ0q2vi#*Jm+q;~uwx`gKyR`Lsc=mqrOiq)_d!J~QdR(hwlC9uQ-^JStq4#$C|
zv(r`gLidXjBUxnF#tei;=4)hnFJ7oG;?T;p*iif;X5ld3(^?&NhOS0z9`b+cc>HDh
z%5e;O`!?c@6&0!qywk=rH$Xu8a1$sBq7~PRToCq@Pw*9@<R_`D1m+>unS!JRD0@%y
z=x$E~kl&?!3XpE9qpia)eot>GH&&s<cKDW*DI8%=oSnWamv)tN%3xRThclNK7~P{=
z4L=XvDuG<_e<||vur)L^FouKRu&CXnEXpgq)R+IEXAiFAo%vvJ*IHlb?_yCFr^CUX
zJ(n@CcDie>Xko%>AjX4}{DM5&M!6315~aIsJyG<*WP&(rI6_Cr{B;oJ#eBh1!tMdX
zQ*0I*H+vUWIBumDJ5A4(Yb49qvpQwkpefT-GVxx87c=GDN#q1|Srj%VVQd!q0#Wc)
zchPp=F@$m4if^DAb$!S${bVzMP#RK#kkfY(o@pMq$Aj@r8C2hf)tJMkgB+{%+H@rF
zKw_USL$KXk{{mhGmv^;5kTFtH3|ymOO!h&N;l{jQ0}pt&>^%bf)v^R*?I;vCQxA$M
za{_?{w)1$em5`JOr!8<-%+{*t;jsrsP|Pj2T~RLA0h4sd&K+^v(gN#dYL7B(d7#1F
z>dMo*vwS~6KV!5GW6(E9fK2IJeiRkOS6X4R3z-pxi=UT4biFy)^TgW+RX)d<>=~%r
z;iLoZ+Q|o(w16ji$MrGuy}a7PHmCWV(r6HJ?RCR8p}(~URDc#tM5&!j8D7HMl$JQ4
zHN@|<dmK*Wo{v>nX#{g)6R1H*V=a1>zw84JbB<kyD*o}BWLJrWW=!0C0B2iXg5i|+
zqN)+NQumlae9^A4w0qT%OWl@T{3(zb1a(MH0$jp-LCfxChjZHE*L;tOK;CGK^EA~6
z;=%)6IljrT$l5e8Hi|h#=~R2mx;FQ6<c%@U<1P5SLqzAfxFAdg4g1SU(<zy`?aIZH
zL78C6n+x~Wt)J-XCYru&!!V7HhjNX8|H$X|jHwb?bg{+#9!PBQozPf3Kqnk=L3^ez
z*XWgL(6FecZk^huil_`{(Hdyw;SY|uu89O=2Le~T9o)(n1`W(UKnNJ&!o55iy#?M-
zeQCu9<#IFoKV?iTL}44~4sdP>Xa@dOwe{ogYAI<~pbWS;>=}J`B~({Mo|klv8x~N7
zEQm$jMyJchOv!^AuO4m~j)4aBN_%u)18OVt4mqW!4Q5VjQpQGTpx!d*xLOIAbtOHj
z6Ele!d1sux$V5|^o%z+crf5T20*WacM9{5W<2~D({L)H*__bo3vyY$m)}+D<J2SG9
z%a8NG83O(SINpGqT32xo$5b&y%H0n;LFK_Qduy#;k33dh)_bfsC?M!s7w6;&#Qbwv
zChPAQy`uz$y^1JALzzaoUvL3?x`P0jx?3Lxa9PyFuOjB@6R*9~x-Y*8)7v7qQ=D_6
zy||la@uoT+=j6H(f!M~d$st*n81Yo>LT`}wYuL$0e8*_JRbAx;SD)a&Rw9yNbCPT(
z`EI{dHXRLFv#L}yfL*D!0C|Yw?9ewx<C{6jiE%UIL1KZjb-w@@8FX4(=>Vtz(H;l$
zI%g+72dmp9EEUdcCiv{hC*bZ1p5CO@L|Bv^ygBq1tCPl=!f9^0O0`JiED?bj2OTTQ
z3y{DFGQD_KhrB2Jc~QD?x}%oW1BZJcPxP4|5>%IOEXPiKAJnYUkfXl?_kF&`c+%FJ
zk~>~cc1z`9=N(d5s36yIZ@i3W7ht^7PPn@8evacO?#=fz-vvXHzFUxMKKXGE{LQO-
zUNDla6sEO9Cp3E|KAX77P$evo%6`J;>^%--h{nbq8|z9&ph?FxnWk+=hDUU_$77T9
z(j1-F%>ys}n|e*A+xu3Gs9y@v$et%BMV?~Itnk~|<er~4GCC`%yk!T?JFS8+)-jxs
z9bgW%ZjE|afyJ=_OXbRK@+ZmU>yWlQ@FhS{j~FP1`BZjjkE1OQ2y+@O@nXUW<p=LD
z^Dj@q<FHSR%=H`tU??U13O%_x33u(uJ(D*{n3HR9!!Zu#%sSOWa`FkchO6g2nr@`X
zFztXBfy)3Tf;S@r-_Sc+(7B)=Op{u6rW33%c33`v#CfT;{uraU|FJs^;P{#WhIx)X
z54vEf?25S#67yoJ*d$@=15}CA>cheGf+2dg3}Ex|%*aH=s1O@t{F-8lCF>~Rr(DTA
z;Zwvlg?0So_TJs7jA~$d#PCf=>Ida}T^^WzYuj%a5e2wZACLEuEfxz<p}8>5;~1ir
z*EJj`W!>lA3M%UYi3P$8AyW{&Q$iP=yLbeNMO-HS-aPScn;Js3cgc*4;$@1e3VN0!
z?puLbuK0oYg+L82siuOI2`9*C6xX<8FZk9YP+FWt^Inp6$HCRzGPbtky`?3}ds~1@
zbJQGc#tb_)ZKo!A@`J@kM$l$X5GUfp?3QiS{I=6nlu>qIkQ>Qj1<2!CgqFgJ=U~Ms
z3K}?N%F8^~ihAIA)a9H!v5_2n3qvdL8BTAKN}15w+s1IRrz7S$!XIVbj7#9RQn8D3
z2CAsVGfqRhP988i3`&5-x^r`J7r*)%Khp4CXR&Zy9I)InO~9IO*b!&@0Z1V&LKmb(
zG}3-U47_g2L!ExpDxvV>Z^h%^+`rTzNwq?UtAt15wFw@F{UdjyAHK>C5|+ZQD6!(w
zRBPo)m5SIH>@Tr=88_X2*E&h&<9+v5S?RRxuG!eW%6-S03Xbr(?JgNiN%|Rw-uD|O
z=D05V1&%pp@6q=mC0<EfkYqWpROwD^Fy^g^1a%i@$-8pQ?u5Ut=x`C1@A62DY1Q?%
z4J|VLb*UnHU$I;;ZQ02(9wZJst3`ZuHKJyp*2N({Ay{DPMokdM_&ebQaCM8p7|oyb
zrB|p!xMf2k_DS(~iPv%}q3;uDxB3*LU>%B0M@$TZSmv%=9U+f=Z<{baOhR!9n%LkQ
zcBG2BA#_ihT6O1?)9Mdn%MUgOE!ct?8NOVL^s<F~dGR`Bj20dLV)@+Lto>^9WUnIz
zHd$7ZK<PTEfkqr0MNGs(YrUb6(@~dAplX!Iy3&_W+;}i_Dm3@>n`0z`#Kme$Zt}$B
z(QCszOp&zAo{~()RP;_w#R9-{1ngKPreCso3u?8h{?Lqwtb~NE_xyxI7r{js>4W1V
zVs)R+6+!;?Q=-Swq4;#ZU(n|_cb*R%<WSQE=7Xk>=Z0Lfz4n}-x<>xPrx>gH$Bke|
z&{rGpakMwe9+kF$gV+|bh}o<WP!C^J-P6IcYSLCo77z3tQKE2!=V!63#H5Rke5^$8
z0|>lP7ko|;^4xibm)~d#{E92P`0k(DBa5~8mwoDDa5BC=lK-h&raq4SZ*?L-)b)sU
zu2o25A0V;g9EJNndb{bXD1>aCI3DR>u3e=mUTM~-_Nv(I`C^64$AJn%JUakxX{Ckh
zE@Nb;_Dw_MejK=ys@@s_#MEzeV|5ivC=ppR;l{v-J4oVM^fus115YzCJlSUA(<zHz
zUETc(+HWN5u7sN1@e*bU$p+V7ONaN%INFMeo+@lkpSdy0#VFwJ^aVGykf;^8u{eFc
zu0AHgrfUx6pykUWlrAv|V&KH_GU!Ub_bRg8v+LktB9avAuOr?kR@3%4uos$XxUO#P
z+dPz7n`syJ{uZH~w)iPllZqlY9Cu~K#28%d0?x`KhK$7^fu%gEV#3&pv~c{pV)j6!
zYPcw2cno(i-60iwKfycv0enog#zC-iU6csyrudK<q&esUI;lalES4sGu#GHqi=mnF
z>oliEE%%0nfhmd~rMVXy0F6&G*?w$Ue+MX@K07m9QHrrMT0A%WE;EM8{yYo9EA*;D
z+C#a9WQrIY4%ZY{az~3%Ah+e1OQ|<~J{`Wq{)Gzrbl7FDJeivV<xtG+k!PCUb|yjO
z(Z71ZQAU6M6~`JT&haD@L)T017-=a*g}~+++sSbCfl;sOohkB)9KAZ)&z6qhGb{_P
z=;n0Sq8O8373gKw<7W8wM)cTfI1ta+bV^=(s-~JoP7-mGvAlDx`x{o}($=j5%8X-~
zGX<bc^iZ>20FmM9G!v7;J<O~#E+;XZfP(*`A;OOZ=js`zOa48Cn`COaiBlv~&WVZS
z6s~%yki~Ooj^O+_Sc6gmlH+hnrcO<DoZ6QlIA0{-=kWmt2UZokDqoi9WsX=A4K|`2
z>c$+~WSESnflTah2Z-!u9yh?AHt5WP6tczL=hubpf7ehVTA+v#pQie4mHlx={`3l_
zGZ=gG^~J$nmd?P(;CId2G$kyOm~zJ8b?%f^XWJtA!K|J9!ca-aNjAgRS<y?VS-6-|
ziM2p{x?S32xO+zHqR|wl9Hw+#U{8)Y;N;}AaJUlj#u&gJ%q*Q9?6Cq19af_bfI<^_
zur)dgF{mF2?t6)2{Hxp;6r{<l!TQ{Ql=)uBa-dRTAjc$qRw}MqlOxS9OeYGB83cO3
zP3)`^lhNyjH|D$@gL(QA4y3iQ(Vyir2`|K^sI6UkHTOx7-&0b<Wt<`x!Kb~EaF?M4
zU5oHTG`^{2abz~F#(uQkltV8a?YAic<?5nc<rwXCaO+D|w2p3De9zd?AMrp)Z?7b=
zAqTBSsCSz3IcijN1kE`mI*?58J9<<b&qNe&=Fq;O+x+jR^`aL@nxX(%7@ld642Mm5
z0J<K!G)hh)`ZL%9rKm05WV<MwL%Z^8Qp@3P$*ZUw^3GxI15A)!84gAljRAVav2KA|
z<%^6#=*7qr*IGE+Q?8TC)gQyzzEk6V&;lOe7GZT#UKA+$iVkr1H$B|Q_2@sw!YlOB
z5kU(1L7G$0#IO295MQo#+jEE+X4KwH79DVi3V)zw*o@<9QdT0-+^IOU95TmbE*L%S
z9l}-R?$*{mZWq8Bb<3gAInh%@9b;akLV*wwOGvOBzB#GYI1HE23Il#YX-#2fgWG(i
zB)u;$?#Jd`AwfOOyF1(^RP`fp;_qM}vHOWI_ea)xV!5w?!9tY*2pzRk8e7JQ?uzLS
zK1)5EORZXvXnIm4ASE8PRx-Fq{(3oRY4$wa#h+AlVQZKQSJ%#G1-pT?28?tq4Ghd3
zsz7!a1vULJFybo8N|Y~?LQ+63bnsA=V|w05j43?5uO!*SFiFXNt#j7_1m*%n$!Jgc
z*i&p~h`MFQ>@d(7;Iv5@^Iz1x<*;xs`B?U_Rv4dTqkoCSGCzxyl;pH?B6TU?)`PXY
zvP@1(@B?LimG*SOQh*0n876fTsAR(z20ER5xfa1JEX~U6`vyYk{7X<2_c5E!>0s%&
zoc{3XB~9Rfs-ows!?^P;=7twmgnrtsa3nqPWS*XoF8pzB|N51}J_4NPjN-xc_(;3~
zcqq{rENk29qNb-X3-%x{Y9-=zrox8=xoJ_rC6gnh*b*7z^b=X(XHhG90q777%DhMn
zdb|&v$)>shG{XC{p&ab6`J=(3xZji3&{~l}9Tl4i)y@o^xRIz*Dr7%w+i$q4*{vu&
z#UVL|qm6^)w!t@*!C>oD5UxChT;ALQ%j7<G`dZqSs}#ra(2SqlyB<;QgWA>M)4=Qf
zlf%r~m3^qJ32tqoSJ-DK!gbZM0iu4U)>T7+Q=Y=H1hkW#4?Cb#Sg>ybGh75t3G+gd
zC+p8Xn&+rJUrhYnp7LYrclxXX(i78U*L+@wo`VOY2fky<f$J4Yn@0l}d$rp9N+8<u
zGHPJ$uCm!^my9@aK{nHnv73FPT+5)T*OI)#opRpv=^D4KWtuGAab?DX2o~kKuXA?g
znFHh2sdT;+Lbl*?5KIaW1}-MuVId0;8g^2^kJqNlj!}7tv&T4ro@~JZ6KUbjRyueB
zA(H)|3_JxekY_po;!E<&fU6u9#bA66P!IZBH%G1BeLLyFZ+<(<KqZVJUGfzjyDEfL
zJe*d=_(_C|sVf}o0GDVzpU&dIS$dYc(t{}G8+xfwggMCIye1q(<=LN$iil9ZVj<ew
zuQgrgN5X^|#4K22pv5l0=V#vZGwT78=T(exq+hf#G~b1%d$DM<4i;{c!siHewUrLY
zQo0;FDQ|WF&(_ZT^SC`ogW=^iB{m;(d^<r9Z>HD(CWvq9;&}&xUGn(%PbvtE@dniO
z#56t=Z#%=*`EemQZ}*4fi-`UZyFZwT@o=z?^zT-MA9p!|F7evY5vVRXU`SMIG52E4
z<^CRR#DjAKjo{YU`sK}?I}z;Xy~gSCoIm1ud?F#Y<6)w6oAGcsZ@(op%Edn?x0ioE
zi>5VzFxSD~d@99_g#szHtlGh~J|*W~mfm0Bf~pZLwbx4Z!{;xPEHpH1bJ~w8lcBeT
z3tW0*$3!{R*});i`NNUk>tNtRkKBVc+cnygqc-+Y1DQi1ROM#JN#Tl0legG@5jhnF
zOs}46J1Zah=F@BPF3Mn_wv(MRTUQYFHE<t;*QR?x|7(_t1r9Jh)2|=_V+U@)_|T=s
zkT!d02mNR(P<Ks%Wi1e6B57e-4v>9Go2t5&A%wZ;hf$=#?mq>n8;`T$6OCfia4LEm
zh$AB7%aXrvH6>fF>0J2BmwIq0{Zf%dCRdf`1Qad(MhS~XPSNZ%9zy#2_|4N#7KoWK
zG=Q#_X1r7xt)_vE`P`alfFPqVYIDN-N@)q;tv*@!e7hUH=2wH<r>&S5R1j{5cUk^V
z_R7&}uty}c*ge%emP5t_eBX)4@sh`Qy1VnI{CWf+umHRU4Dno{%4&gDUys-hh=|W)
zpsMDlQ)ti0+5+2~Z7O>dv_u=5TONpd3j42$bj%r_b$)sJLZ#v6<8A9?T}~3jz1hbg
zoNr&)NuE#~)Ve6P$ub`~(CZuter1?gWB0v9-sEF<5j;21Eu0O8Ii_C{y$-h2^#Y#r
z{MeoSf`AkwW~9S*?x$t-FJWW)E7)*x%B$+W;-^ET(i9|0*;46`KzfzTG35XpPQR?$
z&A?`hTE((CS=p!0v~Kez+e}y<?)%|yZKZSPtB0TDar)ev{nfh0_gLCckNv#Le&Hxa
zcU{gW^uN06k0<#CACxKbf-ApL`Z;XZpju#{2595dcHnR02zD@)X9RgG``Ka~)B~`e
zJV;B1Dc(o(pn|<h7~-5ohhs@%$>Q`V5_O!FxU8qsWWZ-VCQQy{1Kv=5!sihF&=c=$
zPF_-+A}!7uTg_Vo03^l?Ro1|wwDOAM9X(TU!MhAdr1m;R$>un0A2BSURc^=bB6b0>
ziFc8W+Qs3`V>Px)ZwYO;4b?&rnDr;7VuBH8NSFtfVCG44gK2WMvNCj5*D?N76G{cr
z6Uf<8^p)%GU=E>SGN`5K*#$(khZqdQ^#P-G17hnPKR;a<$=yBra{A<GY;Tv%1(OT2
z!?G3SfbQ@#?W=~+hCj;HD5M*ANu|!35oR(}%7P(;2tj{IYHb^5yI@zm4}ZjlRVE;H
z-IzpncTa6_V?A*HP*A*s8}(yxr)S3|qeV*h5&hdm7N(}cE*DV|lRq8Iq6cc$6GGFa
z?$%mqXFuf%_n;Q^)#nWjCuNLEU)c(tnx8BU=I$!6+Rjm^un=VnH8c7=<Av-E%GsP4
zr;2whT-@v7Mz;)*>GaQ9%wLG=_P`6i7e82zdKf<SeBiS^+MNUEVUxUM@e!?uWpIhr
zY_8S!bhEiDo-i3B&KQ@{7V;Qwcj;Dd2+li~E0>p`O9AsYfT*DpjDpm!k6f9F$m_~+
z-i)gas7;@VmK<#keKG-uY>*83ThN6Yn?<!G2#r3l>kvb(&vdZ2g2Hx@$NI{<_!u>6
zU+>p2WIc~|?Mo8#H%F2q_A}nudsEQUPeR4W-K6qe%B~8NgaF+A330N7B>x7KFtK5e
z-N8G4RNRakWz|r(Eqd71x@xSt!v^6uWc>jjGr2{TAE7pZ#HAb7Zwf&E;bYnQd8T^|
z7{xJS5J&D*=`Zgr-YS2Y7FpTG-z2{r9HS=AW+<eZr)k%*nz|r`Q|-^v^gea0ByZw&
zzZbE=RKr<|x9wo7ThzKqJe=E*bqk|7oMBls>P@><KUkt0XFQKlCt^YsK-jCuL(g{O
z1|OI;C-b;Q#ZX<oW6dAM&J?ox?Ku?>fBHmtZgtb4o8n-WZS;>B90<Xrz#5*(461%w
z4{84yQj}%{nsD|Czv#24KVT-|cx><|`CLdq@~5?7jdjd25~teiKI^c|_Yv-#h<Ix`
z24`$omAPGP9LoLTLvzn9PgU3j`nbd9zlEccQCQl)_da-mddl5BU4wn~AQCIQiC(|5
zaV{o1E}wTL%SJrP4_pWX+2>8fE$3h74!0H6%;;B)4Cx)T_?@|Pd+?JPvfv<VIH09K
zd+cl5<5TjJ+;p#D(Ej<n!s`ZzD;*qdOqYo|cS%7}siYi+zL<(vyp9-0?rsXuIT|q3
zHl!YK7M)udcZZeTZB(XG@@hjP!?8KPmK00^6||1ti8&k2=LbxxBui(X|NAN%5=NCg
z{kPD$;uC4+>3UJ!IA4N~;ATCWYp^>IH|-T9ZD`P0^CBIrlZYc<-Obc2MS%+N1^&Y>
zmktq0=i)aTnnlKX$2+0Ej!@sg){Jj@S6l_$-j-gz2SmqvSG6I0oP3?kEyyeiJLNt0
zZQLZQfuA1V``D=fLcGh)^SDf!qxX8K0}3*mt?Qc4e!D^olE6Aylyr@;5c{dr1D?o<
z;}KtTfpG36y%cvW&2A}teG76JcUx!AVx1^J4Cw58q&?2*K~5w+LJnver39vaW_OGl
z*o!mb6qI#ZqAs-6bRtq2I4KG<jX#m4fBiC~K=|3-2lb}w9lw2&zkJ*8-x_w&t1MyI
zvNZLfPg|OI1PKF0s$Cgl8nUs=LLDtJB(b8z|7G?s31z_FFi3erSpMUz{KG4+hje+5
zK3^?#X*%jx<h}XLt0<tl<6CJY+%w4Lw;ITg^;=z?*W&*AvkHI1HFym@$cpQmQ~$bN
zV$L?b12$UXmac>4s4)ynEHLPcgQb>E#$ZUXZI%X~p0CF4d`yFZA&IFD*WU;!X3u|W
z8ON<zH|aY6dpG?LXY}J;-Mutb<kE$$6pMPaINn`N9lO67Z@`i7>Zq^(&A<NjRsH>P
z{eFU6qoGW29iTLF{ZTsnX(jkizPy_ZhcT&7WBQNI>)&1AO)lWNZWi5a+x++T`5%74
z5OEA;)>l^jAKvqS&%~eKykLTP@=RP~7k_^8{)8d@`<K*#*ij}6{-}RFi(X+T7*#St
zI(L61y#0QG{_wGC<Eit2?sla(%0QP<sluo3uiy3$H`vdIQz!tY3Zur}tDK)u<DXWU
zfB)rveRJa7Gq7r<IGpnN?+#;tIZVOkHO>Eu3kz;4)Sj7l7YR=OcZd0mIgG)ge96iG
z@HG78iSxRGK_g!dP~iP{hY7_T=JP;;IsSjLiu`<$|8S#=Nx{JBO0mF2y#MMjw9;^x
z&|;zfOaIm5?iVJEe0d4~Kf7(f+?=CXowv9`3kmZ{6SV;Mj|)TPJZbK;1*$SnPio2R
zl<!4%x~j6xPX}<2PaO~|v*wbK88*et?d^A~Y2Ms%D>U0nt5lOTafT)>T8YfCr96tJ
zWpl${+0;KA7C$eTCq&j9a_?Q*gkZqvGTUjofKccuQPsPqn3ffd$p!@+g0|99M128b
z()oa{(h36LR$xtC9C!>JtSmTugFCXt!djirsTg=rpY|BiVZXouW_Hs9+g5I|alyNG
zEtx$669Jqu0Fy0l-0lq=R|4{*zd!55j|_GCi?D#<G`#%R^z_7wXE4mz2hdNZ0jP@v
zJO$%S<S(!bU{W*y8U2__=POEUa7Mfh>{ufE3yor6J{3LNmENcofjCY4On7n0O}3bz
zpZB|wvxrQyyAxwl3`aP5B&kuA5y$4+FixSu$4Xc-#f0xVzs}gi<I~;eK3t65#4&mM
z@Rg5DD)OdGD(Ul>GO7pn?^b<b2G-swFN_%+5R5oS?+k-r4-?e4;DVv|0Kp+FPWzp;
zUNv?kq?=sD*u+&V$?^^xfS5k%aWJhA6DFk+6RnAavpEH1uz-6TfPt0N6mpsMv>cAG
zKdkrlodl{$5ZNe{eEY}J;NWfRbKT7-G*r;!8VW>rMH68}e&}qCX(`~!+<4jTXF+ig
zpKDtK%`GO;FYO)hc!AwJc>Jl?4|>|w>+pni+GYFx+v53AQJ7bBp3cBf?Nip}NA+hh
zQI_oX7>3t6KPL1Fa1i7z2tliie#nQ7pbrV}Qd862Z7&Oycj+P2ZW<_SHILo$=`XUj
z`;~5*+4%`WHyzJi;s&+exd)s(rqb2UpNh)!o=4m?^<WK|Wh>NcbNtNP5Dn~;Y{WpR
zl~rN&cSo9n+bI7Xi#r>*Z{tMwM!>5{7Ho4X7hKA8%#tHOw9WUw#M9OBkC@Cf_g?6&
zHm*besXYTJL5B`lI$$sGl8o0f7DGD)vp2x&S^!IJ1vFQSNcQy%kJ75tma{^VV?AZb
zqhEv6gWiCp!F!05awj~mYx|>Mcn|vsj<O!*zbz_ZH?VF>R>8Ob$~MIyXSN?n)VEbP
zh&RE>sjnSl8N*99Z!(REN5sflc7VxrP%cBQ5Q*LF;ocFcB~W=(5))p7AF%LN#YDNp
z1y{go{w*1Dv%=_-p@~!)*Nxry1qZcu4)P28p)%)pw2k(j(ISV7<YmJhs$>t6m$<uh
zwm6<S4N8d|gXz02Bx}79D*TOIDq?r%u^lE)om3P^&GP0UGBAj30hCdZNOo!fvVi(~
z%kw;6VyFYLpnT(@H~IeQ<=Mpri2OX92CMAo!-KuOgyAOzN@YoS@=vwG7~aAFs3aze
z(}>jRSl2JlFF$+>j8X&fW6C40UCs>euGeTc@x0Z|hYTA`_d7XE#!a+xV%;hQCZ_%K
zo+uMA>89~~LGz<-uEim$t@rxFn*LXdJ*{>kG-^{2H^ed76ka$8ibT2Om>a{>Y@W(;
zd>`9-WF29cU%mqlt2A#J3Wb+Psun8&az0y2{N}@Rpq1u37i$R4b$nsjeB1Lip=N2T
z{S|>Wqh?iE=9jz}3$w-Vga<rb?D;Np5<H#^g}3pQi@Vv8i&P&vJFdG?dkUXDe-Ydz
z0oMV1rFLez+^^s&shV&Qb}~RD{WD9ri-qp2iZ2L0bymU<;mE_)=z@|e>BrUXs>y&^
zdu9t!$+PxPe4`_il%gm@XMagud&6OW`}PT){kx3U>ABt$GMXiNC%zXAVQ@L~ctKJJ
zk4)mE=-t!lU$e=Y>Z0i~S8JZT4NcqSZrv$lIKs6w^2n~*;;*S_Up+DH5wV-Nz@;1s
ztgi3#y}3DhuU@@Ui$a`RkvP^~hwDtS?f?AXsxbD?e-e1GdebRxC11ljNBtlDIXbbq
z(69d@TwFpTwWvrX{-*1c?HJ(CS6Nu(HfZKUl`Efs-;L$zCkku^21ze#kGwpat6Fd-
zT6JjD`1-uBaSvWvdzjb7$SV46@@{UW8(Qf)$wq6?(|e(2A;-=zb71G^=NEu;mWV?`
zS#<Mc==!=Ha2`LzPIW~kuNR6XKDw^OkKXI%S5C2I<`6UGY%ah4MPEfF47|Qo4JXdn
z$t1deTJb5%Z+J{TC7SjYxL!E%tKQrJ5WD8zp3lzC&ggLYIJfT%7+WMa&|bZIg1=?z
z`6`^P2*YNKozUeprcX}_iFkB+y-M%BY{lJoi@O%zpYKRLg-b}d#q+ecB%De8?cT8)
zR}O>q`nKL(Kol-dU*au@@VeGR@bUHwzA*b6&raO+{O!*e`YIb*sIMKp@1*wgiT|h9
ziKoXdd>0T92w(X`b*^&1ud6G0XlbNszKepD{1iGVrTs;p2(}23ugszLIa?1U8p^}{
z<jPA&vJb17UgvT$nHOGNFeZAeJ28BHt&x@2;-FAf&_pO>$wPaeMLG8{w$=V{FD<wG
z^K-57C{k9jtA?^Qj~7E>s?m1DAN%seUEPkeH|%CY42+BhpNN0D`*mP|5w`xq)q9{n
z9je?Jbt|l>(7b>DzWG6BW~P#|GEGNE2hYpX1r)`lrCCM<gU5tO;%Gm|c+LWYwE!OW
zS=Vm@{S}V6(X+r6Eimn79LxqQ&62rKD&4)k>2ofYDz`t^s%UGofclLG>kNk&J|UsB
zn_HEPj7)}o%R<;&z1;*DO=J<y!7$}@P!PdzYW?^%x!92HZ71>%nVAe^moKZ>#t5?Y
z5SzaV;M4o0Yd=<tWoAiCZOXvFpg8)n-^(ditAcJ@JMP&s!TXYzFV9XYtE$qzeEIVA
zAbPqz_01cRXV0D)0O;?1(-65Xdf9Pl=p_J08u~5R^;F&6-JxM&20U5YtFZ$;JxDW&
z)ckzK&d$y->*{y!?&T16ykaPKUi<zc_LkfIhK7dhRXJ^<V<y^8&#u$c=RI~KxpL*o
z*A1^j6pE$H`kQwv$s=Gnnrowc0P{a{t8d!g-d;&X<tlvCIl&G!O-&|3O2NDyR%Yg~
zp`izZ)uPkM62adW`U~fb`N$Ec`$MYmZ&P;d?(I#EfAmMbQhi2*=lTmLr}9U~m9e_5
zf||N%m_15`JaIy!(K%ECZ0-2H=(ackLlAG59N<0rr9f-A#$)t;FY}XgrIb{pq;wL&
zl&V{2O9yjeR2xdu<r5f3CMG7-1aRKe<DHytPl%|m7d2xkn%%qhPDMo}W4_r&*Xy^N
z8}4#l#k1QtgedYdh|mU-zu)!$_~I6i*T{%AALLC6kJHxsMX1HZ#B>|!>eiZVW9WhP
z(!k-~ockbtZky=D>vu?P!R|>~7NHs)(}2|rulD?Nzc=^UO>S-(*9dJ9b{^R*sB<r$
zbBuh_=&>i#GnN7mmcM^35SYS@YoqMXU<VcyaC~lRD!^jbS>tWC_O?bOoijk!HSeV9
zx%=LyRyxyQcarY3ZfsgFZ*QlCoQ@Xn(_6?MT4kaXH#dr3LdxuBLp|d-_waW^U%i@y
z3PO!8LieHf#p4h0Pd{ow-)8o81MJ$=LYaPPopZur^A|J1>f@(dVxO7whKGk^Q>B|I
z5{XJT22+*3h#2$VfvkEOK0ZFF6Z(D;UkK&)ww5DcFMDIk8Qe%CD=WJUZ+h~G$W^3h
zf~%DzUnJ7UNP!}KQ;hVAufLt(*f)bDw@0x#?dx4;$*s)ELG#BRqWV!jAD$C_;HK_!
z#moN|{p3cIbG*wH--xxfwUNPynNw8th!Hs-YdrA5bvonz32DDH#Ft<e-5ZwsE;e9&
zcdATe=G3D&KB|4{=qH~(4OYiW5A`*JnS;8<c<kyo!SxX@`mQ1ceFv0Y+lvBL2RWgh
gpD*(*dF&(X7hx%vZiF&z9fSWQ#pFa$w{^Y$A490WfB*mh

literal 0
HcmV?d00001

diff --git a/docs/codeql/images/codeql-for-visual-studio-code/basic-cpp-query-results-2.png b/docs/codeql/images/codeql-for-visual-studio-code/basic-cpp-query-results-2.png
new file mode 100644
index 0000000000000000000000000000000000000000..dd8e33df9fe25de4a296f94d4029513e1b6d9b1d
GIT binary patch
literal 550586
zcmbTd1ymegwmpmmZ9)@*I|K_Z!7Vt!LI~~-!M$+^?jgZF!6CRq<L=V9H16&WUuWLT
zd{2IF&HqiW)vIe&S6A0Pb?-U*?7b`OqoOn>IuSY?92};sjKn86ICNe(IK&-PWY`|d
zXH$AOIDn|7xcEm|adC=|j&^32)~0Z9GGX!RC>kpLcp2K?zlmD-qspK)qal1kkU{&|
zO+i6w9r#9+o)Y<Mcr(-6de;g+OkG@MXJ)@ypfVHF*Jjp&0{Z=5EUudh=sS&NUUn^Z
zM-SJToX>ntM?=kSaARLKWZ&==aKkmMAy~?50I3=Hg5G-|Ov0mm^dl}`IX$QOy|aS~
zH)wEweRhQ`x^bvV*Dx(||7<mmje33yM==h}M?1T10Fooam95C-ynq94f;T4-!bm#N
zFLKyKL-7Y4f?uikIi$QI|2W&#T~29>EUFOD`@;+_Ywo4H6r~8_7mKU+2UK{WU2qoc
z6j!6e!#JX8=oO^Zv7$^f=6T-vKTdgut0@)8SdCE`w|~)pY5(OV`_k_2IXU`S*U`x&
zK-k(~sxL0Mw{IJ8?#d_-!`Mp%ybgy@Wm8NC-89Q&m4^`InhbQT$6pn&i)3OtA@2a2
zP(kfFp;44CaknL;3T~>MmFZE8>cz$^e<3K6bRh#-@wP&`imYotoEv>^8Jl-zNX=av
zJ<maJb=1c)nLA~Qf7+L)l+KN@#53)o5tH|yE&3P-M600f8o8aT(1{=3`6chVkrnkB
zk2+=<eU0EJFOy7R3~rvBxbf#Jnugne^X^)+aNgLrUgZ>=EIP^LzmrE*y0Est)?jr1
zzIjh-=<}&-MF**41-Q9bVJ_z2_4~tia}EW)6dzu`jN>oWtNI`|I{6W8(Sr<qf?}cw
zy4P(l3MYFZG%v;-26#_@F+r0oOa*Vyf$*~w1Z;kQX|8W5m3{>!b*1=F22U|~ESdMn
zKm<BmPF^bIaq8e1jgLrAeln<MAw4e`Jc6=-XZpb!n^R~xj2;-c)RpZxp-%Al8*QG+
zMsc7%Z3Ga2a9jj@Zm`)2ax#d&e)jbF_SjQSf%DVIB!G-iD<Gi@XvD^zM)0A!H_G03
z5kJOnMpR?Tp7uzHH^%NNkS_3Lhj@pJ7~SfX$+*`pmU8rq^p7H+<0Gn%o%|O>6|e+R
zuLJfz66UW<wV}C%_-KIOE)L)|Yv0<ss}YD;Jlh~I3t`5S&ILt&4~a$WcNK}AbRN4P
z_!PT+cmF_dtUx@#<5{pR{d{m-$?C^^EiGrw?uu&Fu4s&3zOF%PV31$#@f%lwvRAx#
zzrx4`(<4H;>j$Qb#PbQyjmc*6kXxbauEXu`14f|YkJfB>0VNLIw*!4l2IVXG@B3Cl
zZ%3#JY*}n=;rd!x2WDo78`qlr$5?&V@vM>Cj!)X!+A8cw>frsvbM5b!AA06SzLteS
z;L=#P2XlfxyiC+bJz@U&!Yzf8?L|V{%aLA85Q07sRjiEw_+m|zBMB*cG;m)BJ@0F>
z0U14VuE7fp4DPSY1_HB~SN;K6FG*1H+xhI#ssr{{SagJzR$lBN+O^Xmy_Z47{Ye=d
zN@x_tOJ$3Sb1E(N4fPGOtkkDifJ9{9x8y#AoY$H`))KXps(odB${Spc@Vlb6)VeZQ
zXGFK5Mg_=4At_nhJ2G)$l^<D%LKG!9#~3WI8-cpPrP7S!%@)iaM9qPE(gNf779z-O
zE|Jm6#)<?u#>UDT=n2uX6>}PBYQd^T?=%p-M${`5f8*c#;W!YDw56}0zwBLi5Eg!s
z8O7Sov(|K~1tx3_cU$$oQAdb3khgzx1LO^SBZh4F_Gi*ZsaaWGF<y-8Pduy4u`)S0
zHeq`9th6{)p`4*|VX2|_VNqQ#*Qkv|!X!A}@O^)fQGP>K==WKEUUXiLU$RkbkG5G|
zMV(W{Nd-eyP8p|oSe;R2A=~xSVfegCjgpB?<-55M5=p#o`9BhWxP2q;OYC3TP<l-o
z&fFdIO1l5oQ1<Wq$&VwSj+CJV#l_kMp2aaL_=TgY`ei<%k6@3)I}}V^Occ!89wf}<
z9*!toq9~%echHZ8pNYRvybID2)s-swmGM(Jt7Rs~lHbaa>qUwa*Wf#=cV!kWlT=ok
zRu$E>mbjMjmZTGnzo&{7rfbK|tj?>=trD%sr&<b^%ETcKQ(+VRQ<_Cp(%WB0ICa05
zM%jjzin{$ga$VwVjIkgX{@#;!YKdVXU}0{#<RKxXEflSnpjQYLZsu+l_SW@wdqjG)
zyxY8^yAaqVSPCBbxjmK$!J4oe6M4x=*h551Qfs0yT+Y}DB?R!Gasi3r2o8AaZBNF(
z84?&J+0;*zkDRn%+in<ejaU?on`Ku?HFsVH-@n|(VkPvkzacfAoNedr0R^ABuB)y4
z;Hdmy!wKt0{=rGxoaYP?g)l+h<<Tj44q2EznNd}}Gs_>!;JhGYl6q+@l$|_oZfi|u
z%fh*A1~q%?@0g~78ntx$MBFF5mdi73+$0*L9TaBdEUr-FEGa5E()dx5Je@qf|6BX_
z^4#qFn|Y?n!YX$&D}%ub=E{=VW^?HpjPg_?bxXJ542#j~(b{E`<s(0S5U&Y;oPdt2
z1gQ|IWOOQtfD}*)6a$PYAaQ`mc7|<!-uZkuxhd}!ZJ%+hv;E+h1FIRajMBA{4|{8?
z-`6WUH%p64_X%chOEF8!mPi(FY&UIZq?DzDqEk4Fd?p#)q}_hrn_X*@am7@SMF^${
zwtzg`KL}X~dV+t0KQ+Gv+j3kcjSuAxokNk1DUSJ|z0D#wpu5*MBp0`knSP!Hx0vIq
z@!IU5Y_~|C4fECB^M$RM-O&@J%jLagLIbiki~<0Nz=Dt-b&>EU&UAFZ=+Lwo;E47e
znH0^V_sVe8hzHrY-LRde-G;J}@|2QToGef)&@50b<SNKLa2VAJKo{uLsUEz%kz{|9
z_EvG3pp3n$hs)_*eZ^wbVhHw2?1|9eik(?@WA&J3d`nV>=-&|t%4r2t%GcR8+4&OW
z#L^`ALZx1dKL}=$lG&Lns%QHvJdKunUUW0ZG!fh3vqso`82ga)?PL523p=las*(9b
zUyi11;`gZUlKqzqIdOq;=?stS;yq=g%R=qOVyA(`I5u>OsUXAe<2h-vbhK6qTMEK)
zA7m8dmwwzO<98QtT;@AWyq&nav3}xz!g!x$5S1mpL#IRIm2#BW^7c_PSifg4GGoYZ
zsB%aTTf18M;w__~mE3gGLBWCU93o#B-@Vh6ql!~ZxJ&ok+Lj;$Z0Sz=N?Nue$0>X?
zu14i9M`w4$>y59GkGDVBL#$o=T))qE7u-Ai1pJoF6t>GTu5`;a%Mu7_9&7SbHGTC?
zBH<0-DKam4i*tMUAf-E{#)g|iz{V9qGRTLq?L3N^+T=-Qs&@rm-f9}sfA?JWA`F8F
zFNG<s>115VP(&5q3QsP=j^#|Z+LXOTqq^Rvzkr4~!HXF?PKU{bftm3U9M^iWHd-oD
z_Uvw;c~@DxnK8&yMo|hZtFPcN*gR6@FAi4|(h_oYIV9>y`TowgBprMumh3r~;1cIj
z>5{%rJw0PrK3{IsxgC{ET$YFue_X~^s`2U6_J;u^e%L?Nsy4}*Vd>1F*kZrL#&F>a
zqs`mFTAVt3Ti;4*L+L@*A^jp(qC=*oThm04`u0)M(y*$Ys;Xz?HB*^XvFVhMC*6U~
zGCsJhrKiwr!RPL20&&IfpzT~=#kbkvn`ikh@ciSj;eIEsw1xDCFR}BxHQp}CF6o#3
zm!#6YBsO18Y<L}qZf8r^w|WPab}}`5zB@Xu_WP?y=HC(1L^bDgDvEqbS#-XZpGdYE
zUQbyVaU9JM!S^_l$0**MbZ<THWxdhi^@w$^IQqVwJFgZqP2KAL;F>dBRdQ81vw7!w
zd=(r$PD)pXq{HX^?q;vSD$OdfR9f%29@}?)dKisIzz)q;s43m)ek#2~AoFOXS-M``
zQUBg&4sjhNzIEZbr4>?jE}?F(zTY_;;zoW--V926zHz$lpqr#KRT|Dv6LRu&1=CgM
zKi=MKFR{L16~4rK{&_ClE!UJ7@(g&Ws$nfGyN|z^YTM7X11ulh4L+9TJ?%W9*f}lx
zc&ML2Paco3hOn5)aYTe4xh^?(&+k~T^od#=TcN~#qy*nias<1};E)+pGG4ar>%x8f
z0iV@=PG|}~d&s8`JsT<#T@f+dBve)wgfH-qdf>@eLT!WButE6AZN1rg;@}TQ`tD1?
z%Z#bl+aKI1JDl344fq<HJ=Szi#FaDnS|jdz@%mJk+G7q|;Vdt_0!T35!x{%TYf}wb
zGX({>x3FzgI3#!?xEHW3c-UJQp7@{JQt<R}h=1FU00$Rh35WFeV-#VZe_r2U??1o!
zk57awgnt}?&YOk!k8Q-AKZklG%QC}0(ClS2o#5c`X#Tw6Wk0<+frAr;la+Y?83ccj
zj*|99wV`fwgoTL@<$Wa*O<0zRiD5s&_a9&VsFK)L-ceuciIgS*KYwF-|3>B&FqQ)K
z*Dne}+!xA7Z??<(j(i?pgAbGE_cD$$GLkdWx0jZ!Rn^mPCJUWMTA`e_LAYvZ8DF>;
ztZ_6gUVZaJ^7z^|$g0FJz-~G)D5Ok=K?#p`LFONZW4_-krb&e+BZ~0qn<y5xhR1Gh
z_{5^qsF2X-w-HqEf4*pzXuB@b<0ndxgdO9D^oHVZd;hs<uo{G~h(i8QQGK%(kspRb
zm*=qFlZ$2)`#%r;^C$meFSTq|p1C{*Q@N<v4)2VPQ*KL(@QY|_chMp3fBobCad!W>
zyqT?EWFkIZs|^nG)s`>53%CDmsQ=<B{^yBeX;1cw%kVOYlQW1avJrY?g{ih!|7#%r
zA4Ug@@oF=+!}>*vfHau*t$nrfzjHNgYe+!uweDD&yf%j}tgsjVDyIKqG_dQ2JC4Gk
zl`l|I5qkgTufG46gE4r6Hd!6D`xE6@ZauH{`&Nee6W6g9#+yGkOXA<VS@YGCqDgA!
zP~MVSFLt5Zn?Xfoo2Gwfa0VM_uOTW*J93abMY;7}CG{2FvyiS=|3<8Pxcwc5l%u9}
z_^vLa${wRsR&I!}pA-MD(+3uCgB(=(GBo0RrBv7mHMFOna#L0+>~heJTmG%^Q=nc%
zk!SYI<Q1@h`PTZ`UF+lijf)aRpq9+C(@~hvaDwuBYkgR^GLnYfK$kZ|>i^Da<M+3$
zVJJ#2YAmzUNy$U$<;Pe5@7dyC&MVjf1n&`GH%(^!z9*lHWlAF2+ryru-PmyY-w700
z(csH)fU%A1-u&w+NQ6j!L9OM#F%RC1;UMMBEb>HWvQb_}k>{iIX7EzsiT&S$#1@Pe
zNzB6%wO<@YWCfd}=_wP{yXYjn_D<z{|M&6vLn+w2?=HAXxZhpYJ9xkQX<Q<YPU5-V
zrh)z+DgFO4C)zaV#&~SK_V$T0^I)@7J6aB>hab5AKe8Mm&a7dGTfR-*lIw~eX<+@s
zS!VwEh(K9DlGMM<`ANyBE8Pxzla`ii)>X9AxV$6s(ld?!?S>E_AcPXT!T#jpY>>4s
z?#{YuSS`@%-9zm{OEGF$Uj+>q`TM^Z7$-A4m^+%7r&O(Vo@=Tm2%$Im>Z3OM--1FA
zh2*+mQ^)0gw!t+jc>cQE_iD}@GNrDcJ|c9zIIclD$n>|w&WYw<Qak^)`EIXxH!DDR
z@>7(e&?SmweT>hAu_V}^iqviK8lt9cQ;6T|FWR90FXqC~2GSQrVk_=uAkXv@EFt|M
zw=1TDM*~p$Yxaz$;H8;YaLpW?=WgqHy%joNTi@MO*CXj5QSdOMW$Ptz$|>`?EVdk%
z#Agnqh!J@LDKFh_XNnwFLli9oFu7$ipC7g%5v=n)W?QZXOaHHH&N#WP+EOK!XF4yx
zw4cP&C44UkPmgz4Xhw&WJfAKDM74TagyXp_u$<fzL!L<nTJgV_X??2s@g|sg<dYn8
z{Issy(#5QCOs-XFgW2rayX;lE@*X0qHxi1YLf1NtyLqX>t#Df!bmcc+2Xisi=Y*LB
zmtR>z`S6Q$6&=Fv$vy9adM9kIbrWryuJ0}u<&+-HL##+~G#vYBAnhpRI$a{0aVit!
z&o{l%kfLzV&1y)#rg{21*uT2$ewSk@MCV{y0J2iqg0JSSAg8_L`inW#>j5wM=@nAA
z3W2<29y>oP=5qfDSP0%B;c1%0Hiqmeq7Qo>bB+o^WGC|+Krg*E<JD7w2}{#q6;USD
zx>A<?u;))iFRojkz5A;2o&zj}PsZj4xd)l5UYq7n%l&{uI`L4t-xOT+8voyd?VlVX
z$}V(yVQINntO5x{Tla(ntRFQUCvX>`VG7hh6or@{4=M-w!&?U47Qa5-N_T^1;Pcv6
zbmN67KE1%#VG}y*quz!6;HY3kYR?<N&U;@Q2fFn1c<jq)Px7<#-G1QQM33DPU$b%0
za0GmtRCkiyND!o__%Ll+&tcGc;|00p>!Cv%py<kA_3*6z(^+CE2Fdb0^cv5SwQ7ii
zn$}*&uK98To$>d#Bk=i%^P)p9?q>h9@q!ozbDWy4%ap|I^1~L-?UAAOvhVXFWHV7e
z<4;Iy&vd*_yR9J6w(-D%FaO9{kqQX+;A3ygGqWE8r4Oey+dm^%zy<3!*bcD8#VSmq
zY1^<Fer?Gw3mk4f>A>jrygaO1&Nym)enJ)gEjQ3}PKMV}Vv7%lO+)@+;+lQIx(bH;
zTBsr{A$hqBDtWKPDu`|Ce-`dIg^;?+z~HHy$6jInL~f$q{2>+IZmckQ)>))ttMquX
z>H??B-sGCb<0_V~OdZt2sx{_oa1KQ_{kUnOF1JnnYA~kU!^8O~zL6-j@CM{qy#T{?
zdY=tjZnubC5PD&wYystenGq0q6a#Bt-l5E8H`{3X{AD)vkEIdyJ*l3rJG#)GQG?WL
z@mvMQGJkS80x5xZa}$f)YRhY8gs`eV2Gs`abZ6O^NPQC>MA}N?b({Acd}a~kt|ekX
zUeUs|tFKUiJB}pCASNcfZ@FJO#zQ=#rnHw>1i^A(?&H-$88A)w;iNMveBSQfD1td*
zgl{`7aK=zR)>uUF>F)q3k`SQ`%t6z9VYGdG`}}mhA_OR{o&ORvQ+HOy-@08iOx3=e
z3cbh^<K^KT`Cfi8AxGC0M)_rkn0x`Kapr(cKKpoJE@DMbq-_*NgFa44)%COdaz<aI
zq-umeUY7bH%{;?B+}ud`fp7nJ75Yz8(-rnwht+v&dau`0eY17)3T%z1J;eA`32AOn
z_o%PYcZXnoW&Oax>P<b4uBbF)Cg0mZ{o2Ln{@bt}H`oA}in9AE5~GVu|GH-E(86=s
zL-IIMl@yjVs?@F45rr7+1y2KUaD26#5JaADNB31eyLk>wZ}By$BN#`t;aN53e_FiR
z_JyXAfi6aOE6mB{tCZ3hnYoUMA)g|C$0cZiaw}f+&A&{63+P(RN%p9St%zX@Bt`3V
zqF$2<3^&j8cBORe^0enP9<b?nwGGQV(yNaZnxJdhzk?RG^H(<`<IA!SQE??T(^^5i
z^k>@*;aJ=mK6krafR{s&e$wKA*kxkqNwAn8{;Kr-8MB?c+`Qu;^L_@f@EJ!*Q2C*v
zr40e&4U%K1(Cva*s!g~i5^P~47?$vx>bP&l@4KG`*^>NeqVP;NK!y)c*hNji>P>du
z==fz<&lq}@$c9Q8wLy@2sCJ@`V}BssJuHnm<z0MjnE1emdx#&C*-UHSMJ)VhK&W`w
zd@T=Wg9_SoGkHKBs(I^~Y#&J162o7&E&gQGqU0|6%T`sa<GnnF9Zby(_6O{?LfUC4
zWT32@y%uu}i}p8cI6x4@s5oCWL9a|-A@AWn_X0w!B<t(7;`UhE8)J&6%U5!rP_mvc
zhX#=GYiCBbL*eKM?2Y#CaP<@ku#m@%HgHHz*~U+3I&SgwxEPmatkN=xmE1E--g1Z$
zx}rzUXGCmL{%0)(P{L<qa?e|2d%Tn{iKJ)2_p87u^9Q}iIY;uRR$1XNy|m!zQcksN
zao1h!izF0zSjECo!P^cF;gzrhRd$_R^g8!!+PkOOmaZFe;PVLItOV?S#bA-y)a1Vj
z4K|nS@_0C`Uyt4m#8KQaQ<n19YQ38(Ls!b#3?IwmnKSwEmH4Y#V42&pw;NwlYsfb^
z$S3MA66JjjJ?_);8-2HO1Rahnda!!L?CDL?@g=GHpT*|Cwk^StaO9ikSj8oHM!oY)
zQ_be`P7=~qRU$2d<SeN!)0#M>hjw1;#5nsU^MPnM=w+&aNH)=lBKFN!w>89N%6D-A
z)d||R4UN*_Qidp1>HaT}m^V0KumC_?Si9blxEpeVp5cn4ho+@~x;4nsbWrXtmFoL+
z8&No_@ueA-TcS*x?h>kq!->&6pQ+vQtI8hL__StxI8S&Bxi_a5mY=R_7x;tP1O}(I
z?Q}Ca>aAW_aZ-XetZSy!c1e#x(yIzN!#iPxF@-2(uJt1>5CXvtPrwY<p$O7RMnK<b
z%l#2!>18NMabCMI@qIlxFoCyg>K}!Xpb2R!*)1cGtz>TbWApZU6dSbv)VkN{gXUsi
zYy&K3+`Ff3@zo@s>O|*%fr`7=!Fc8FFmFMOvih~~pzXfd>5=bX_mEAyEGz?%*;YFK
zdH`XbOX(}-;1hPFph<HWl(Wg#2tb$P>!e?f@qJh)?20<*jkxK?*C%-&aaY!SHGjFh
zq?c@(pc(#@g{!9VlXv7WZ?p+rB@?11H4i+X`i7CM7-h|Nx#hJ2&PtC)CO$fIET#OC
zlYV{_Hp?#9w*~HSG7cpU6W3Ar=fwQ4kd>1Y{w@#J+UZ?1ggg~Dg@0oiU)c7(&x!hy
z?m2u=VCO6Fc*WCdgJ&{!4->gI{i3@TlX`aZMIJ4Uw36Ot8<Vyx04OAqV1+IRhNWm9
z5AA#-6dn_be^-83W&WzTvA6>^`7-AFxUYY^RShc$_~{4M4^P*v%XZ`<NwsMHFA?b)
zR$G2l7a;Bjyd%Ox#17?fGHwgK>#&2NLwZ;C5^f`W>j>srdj4BYk=u<Qj3`MmZpkV6
zYzH^%F`4b1gpq~De0Ckr=b6v)iMp<H0GCDg?R1RsSK<13#`Bi>>3d)0kv;oR%5YI_
zDj-TC&8ro{CvAur{)7Q0bm`8Yuv_MQQ75K#oQ8dD0t8{OVtUQ)`SF_d*YjnWuY$Us
zyJ=O<A`bwGc7(%I%ixITVsJNXn@q6|dYuXX(?=lWrk65=<hzB_Z5!+1O|p50Z07Bd
z`KxVpTR@hs@8e}R?L7ZXhLYDB&SR-1K+o~<W{am)GbX$aE03x3#7L#(N<ws=VTKXe
zwBF}kr6XTy<6e>TMy&J|F-Z<tD=eB280=~3s;NvqteMf<mD9ib)atJ@lFe9J|7!)p
zbR>EYy)1RheZFsfmOCHj(HEkhS&?IDc=I^p`>5`{prL0dN;n#Yibzmk>PLdbzevn}
z#Aj{1+<XnyKCs%@bYOC-KKc(J<X<7R5<o7<rU12egnW5khC$Z-GS9=?8p}3rH<p&0
zwMzngJ&++}*WmdgUt}u(Yx<wE8pB8C`*7;vr3R!uYgg9P=)1rCgFgu~2G9HUOPg$e
zjZz%5u4v+|&XGTzga}$}@_(&X;907EdP(dLGTVGieHg?Wy|UhJNVpD>lHvy`EV|6-
zMvP?NoP6KD{K+N!4UL_I1SN$(*^L;f5L{+ZT-x~MZt3`G-7s_8BO1qbh`smo70+0H
z2PdN|EG3VQEw_aj=BPYng`Azf%*1#RA@Sw;uwgr+8zqkfLjJIV(p_a=jZ+(ob!>8x
zJ!UR8R|Gi92^z2SpRLlCnzL*rxQ#3M;qe36NbpX31vfp~Iv)x`FfG~vlR9{<MCf`R
z))ao>cNUaCQzq&0+<^5_%D;K;j#mP(j@)b=GQ7`zWHNm{KY{@vpE|OdrL$>jSIZ#F
z!p<Mmk4m8AT!rp?w&O=w{9!Oq{ealw?LG_cu*pBt&3{e2Z`ghz{UVRuthU^lr{$G&
z$)^5_B9_Nj#L-3EbWkbBzaGhHwgcBIr>gmpz;cXFwwGz`r(^!XM*olf^kZz{1m`mq
zJbwP;#{JUS#j?)&meWgI{x5{z=p$(66i`^9^w)Fdna)u6ZCuja&6~rAJaK+<wy=6o
zlZ01a^(RAjI=2?ZZJ+pe^JIqDbO|WLM$50{n3SDMGd+(QDhf5ET5=S&JpsQq{DHR3
zhc<SM+!Y&1@tAf<v3QUmER*7rTCLT>Qj%ycpwQN3sPmxVqYxMgFXcLl(*$%ZUN?hm
zik$HQ6dW3`*k<riSXcXvw18A(2-|ge=S#W#bXTo|J+~*$Z+98jLpxEg?5N1^XM4lB
zfS5)A51*S(a+YcA&rhSz4@wmo&#+#8VG4qUZQ3HDKUyX(9~LZH;bnWCx(mnJxbsVl
zExmVi=ClQ8+pHzsDR`ezY#qyM1@X2tVWxq_=h$<(ICBO&)(UCH)iwiFw#k%a6owpI
zWnP}X0j%h4D$t(^UW|!HSh-G~!urR{P<e(B18mw*62c^t@LmEx({vkv5tSDc2Es2E
z7Mg#s%Wd|+woXH^{%Neylg~W8FO>3>D~vte+IDbKxNT5KZ0jC0vqc!=_Pp3>5V*>h
zU=FQR78d><DL8n)&U3s3_D#&pog3w3BuD)OeRzzEfftwWZ@F1voA|BOu>-qn%)%*e
z%6M9Dhj(E$!&r5!)Mh=M_u$y~`5v%ntlzSsNl-y=x`C(!6}Y(pMi}eqvAVWA>66he
zkMMiH1=npHb6_K9Se4YMjgx;qVhrVCz!~jTt<pa68XCg6NVXrk^((OUA|aeUw487+
zTaDq6S_lR6m+(9qOxA_t%d2Tw=Kdnz>%vir{C!umzM{5#d-tIw{p_X5aL2|yKf|%8
zyIUoBJC(OLDk1jgkiOVzBjRnU<Hc}d0ZMC<zwSoHKlruCH6rcKcwSBw!oZv0Rgy8p
zVOgY<!MFvE{6n@A$vUGY|JkWQa2Dn`@>dG}!rOUrcEwqa8vke@&!?6J+a~65_R*Q+
zt_aq3Y@$sBY5tnI80?s6IWP;G<jY^Y$T)0*I2#DPM#kN~Bqm@h$zBfVluXQf^gX{2
z1Z16^dMUrqz6zCWh!8#xhlV4J1b7|5=xm^3E+H;%2$}&XQ+%bEeOM=drXL8nMy_`h
zJb4{vUia1*7+SW@;3hm4v>gdlZZ8(Jc&|m0TApg#$e_lUXg_P;iMfAop+tg%oW$D#
zXuRxjR=q@M`~=jn$an^MpuJHNy0-ZJa>21`n7cTFn6TXVBkD0znz6t^xj4J(JN(O0
z?<1#2q-b||%U*yHrLcHgD5W*vxG0po^)$-vHB={B=xX-jCzf|Xy)v7h7L9!u#E3vo
zMyrO`?g$2K*5(6}2;g~CmK}zTL~pG0@3rn=eUf&vNm?Sve0Bcv0-}Vkr@=Q$_^{R}
zI#&#ySEEg`iL}BE7zdTKR}K5zAFAu@qxHDNR|e&GFnw7lMiu(gz09Co^7fQy@R6+D
z{GoP&dNbA5+&BS<Rct>M97sC{U-s~4#1H_Fkc({-=Bodm+}``$<LWKko*n<L8nLB^
zcF0|3cpfQBQ0ru0vx6hCqusizMup8Kj)s-%^mKiSx7Z&R-myZ5t?8lXPRCJ7!nY<>
z2mAM+o{ci=2&PIIkL#voUEko&DzZ@_)NdAu;F)vbk*e#Qln}6$mELX#eQyu39f?T9
zwbC6Ch%P6cxo*+X5=KxIAG4N?Nw+&Wg;xJ*;O|0M1jQlb?ZUzcf|rvj`+7v{gozg!
zum;_+64Upb1pkpL&b#16H0o2wncMm7v_)8NKM>o|Yd&m&UV+!qJ5(5V9@CqbZIz%i
z)eS3;&0HIocp^(DbON;9FPYD??B%q?Na_7{s8pFdnhsCzeFVAgUCdL6h4k&vn}9-|
zN7DBFpCM##?+kV#*3xl*l07O79kqLYtb38lhX+-lN7+XA7SmDbxHo;G)GUijtlXxO
z9^uO??$Ovzj}z`V+0!^U5&7#C#jaq$6lpivsBYz*U53}uGiSD6eAyelui#HjMZ)hO
zJ--t<oG<w+n`E4dtZ?VX^aLJW7nK)SFwQP}i#<7B7$F4f+Pg((p`ORO&O01ClD#au
z#-XPjN#9Xcv4TNJ*f{RpuZNt`u`Z^#NjJvZmCT>9d~Z5`$>+$D`kbdO=XhT))e(RU
zf$*{9tNay<#cixUrx897L**DRqCLe4yVoc&E}`$(^9X<82<*YRA(In)3vH+2ukZXJ
zo<WPCmiLLdj)%X6uarbzgCqAd^i+umkYTVvY?C$n@pPFs)%w$NcoIkEha`UnWLe-_
z%VtS~mIl0(pQ59!T<fCS0RKj?f4egBRDJErYD{4oyMzzu`(~QiSZwWpOPG~nJf#J|
zf%-lSKZBAmt21>7#+~S)HW3z>e#48QLUkU5d|o$1w&KcCKd?R_pWzEkHk2O>N+cOE
zE_Kr}KK-18B`T?rAadKU^hzZr$U%6Oc_WlMnx30I-i;1Hnu^*$Vudhxmhe5Vkv+hF
z6-IgBGzn;}>2l-qxW@JE$F4|ff&5JTyz8UZu{@9B0T)I(_t-<VZz%|lI8rnJqY;Bc
z5IC$h)-np45$@_>beKXR4HU2LYZjPpy~q`hxIFXC!6s*dVZsdYw<`?WLRvmClb*tm
zreIa~fe7ysruA&1j<fc87;&T))6*LT4(XX35oA42lWS&QJ39zo-MyQTV`ZMcJ%-(2
zW{K!POA}Dk#v|UkJ3qeCCp;(}cFd{H=<8|u?x<B<mfsKZ<O{_K7o-%8T|2D=U$V=n
zBi%OCFvra<e8-f=F#V~?bETSo>Ib`(vPE+qUwEB_pO&i8*qe}ds0$uI%wvgHZ`mT&
z8;179db~uA^(pbJLnJe#vR&@jjkGK}B%X2h0}9=|Za(OqU*`%OgR6LH)9|Z@{lRgc
zqT69Ct&o~TJ_#xb-}5g!7Nt7%0b*0Jwop3ht|&?-sl~opspD?!ng5?G{m(F}ZI+4+
zuZL$xEng&-#YNbNY^L|kl#qq<oywSE)Ic|dSiU6?>)2q^`DE?ne)+j22|0`nU=&mz
z6)pWlM3_G7wHkxX%KzPo71!A$5p&f*Ai=YM_xa)6yZ|vh8<kC5BMija<$t)*DJlyX
z8#5fr`Y_jL{-=FF65I3+xJ}1GXano`fDKkuvC9$(z=T|HiS;`YyQ8p?%Md8#yR3AM
zy4f=`h+^UqH388Sl|!&^Vz^GMfdTmyOPhVKKzFyj=JahkRiiwewLhV4ljH2(&Z>F<
zioXF(SN67Gi#lt0hO`J`W08*PPAn1dP5(Q1e`?pWe!6_SY4Cx;re)FjZec@DwQ(9E
zD%?QNg<~8mGCH<42ZauIX?sIG`<0407|pSigCNvR9hrK89Xa07!MID3i4Z|r(0c>X
z6+17TCcx6+@ZoNzH3O*ZY9znj8#k9DnF6Ev4ssTI{=tD6Sid4DynX<-zHcV=*Pl`r
z6Ad|4OphR@W?JKio}cy+j9LtF_;m|VIyk}3-z`8-9?9iFXJUpL>9(Y^NN`%#a<{jJ
zNRtudWEblGxPbk<Ihx>36supC7&^{&XE5&`Ej@;(_cq|vU=VMOXQI%f?w6gvFz`<A
zh9KNn_eg+>#hcI60XBfZ@2E0`Ztf|258@Ly^@lYYCC{UiOJ3!8!Aaj+G9NU~POXKB
zC3*G~gl|LIHeygOVFXI(uZu~?>iD|+6-|P_%%^|U4)|)FvM`d~+|zfMhDzupA`h`x
z`B8eA-*a*B^3y%E?liY#fBxVCuEt3^#lF<vhiFEwGGiX2nPvy1dXM`@@*w0Dq7S}E
zlUEN+LdiBJd%ptXF6xYm%=w3l`3I=ei)d7|jh%DWf0hrNAbh++^0Q#e<S2eiMtVzm
zfl>B7a1cdg;FKUO6h7pvMbUSAcU6HZuXz|U*epM$tWRSf*`6n;_nUe)5T&<BP{Acs
z98KUGZx}oV|8Rww%2)QbaSOKM&;#F2#g$WY{qv3#bHV4uhz*et@ATThk16ljkXZ<K
zx>DsdKzE_b6@d3H57DM9^3m|xSCl#?d&U!tN-E8x!uPMo8@N@`5U3A}Xab6&1V8Gy
zOsTr~Q;T)H^*5$Irr!vXdF2l?Bol$fYK?EJ9o)fbx&Wr_``$DDfJAml7keXv41a_C
z0<uBo&PF*HH@V}DfUje3=pDXiHVTlJOIK1}Dlp55g?-R3YCwJZ@<q~V?YJ9^k$TD9
zbQ*U$BIctrMLf5lfCYun?KRMJbPP%H#ELGNKXuRNHn0=bS7Ta~-^q#lQpbT^nD7*)
zq2^Gk_JdZ?@sOmo`(r1k4qoo+mkUOq-&5?*+MAPaEpcjQrJ-jVzj|yH)>B2!)i2+D
z<KZ+kh)cY_Icq{X{;(;WNY%0bOsNCFN`|ea?6M$X2I0^9U9f^(78}cwaeDrg*FKqg
zv6JtQQkA&E9Pg%JhAbMlU^Q*Exk=Ri8OqN54y@6eovrfuT5G>T@E@YXe<ooJOwc0Z
zPoo@aEDNoK%4>v&EZ?z43+=T#n51@CHE_m%q#l&~5-Q-BZA@I|+fdK4tY0(oc}gCa
zm`a+TJDD?G1i*^prK*3#R`wxc#AMBQlOeviV|#(%pdUr-%)27P^J|}wq?*Dlj>E5Y
zULQB(WGAc&%PQw{$L-a#kq0k<{R8pHAl_FjfR{*+B(<<wwz0TXc2!c#9%tF#i6!yt
z+R^LBKWR>GII%{)wWs3g3+cKH&UH&V2d9hI!?!Q<w46qX@eaE~OW&nLmyH|XWSH8)
zw2DA!nR!oP1s6a8712mpNJ(7S?hTP<X#QO5w3d}Ba%a^S>LwV429Xv%i#6hzftVQu
z6>$+^a=Te&Rlgk_2V=4(|KYW@41;jP{pIp<dw@KS&m9mNNL1arzd6@=`N7{}$<~NU
z(P+6vDexsgy;%zKNtz(REAVual{~@Du~{0mOMs+%mAXq2v%*ND_}Jxi1T24O+`$Ho
zA=b=x>i~kWvHYn=cZMUcUvzyDT%K442E*B8VO>yJ9}TlAQD3=v_ItXZo)y?VQL0se
zLA02i3-<<?uD8x}h!wOV(A(l@-Kr;K=qQklDsE^2<ye=}Y?FVg@U-2EMSfTWECC`^
zNs_(`DB&^c{{x721SpyJ+R4eIJ}H&PhVpxEE)^vX$a#t{%4F)u%MCk(?G}k|@P1rY
zA(2b`tC=E-z{%rZ!O_C*J%2G{zLBoyrLpvbj6{j=HqN<+P~@P#yIE&nkQ7bZIO^RV
zRd*kGEYKH3jk;=hFqrs9P-2(F&Y0UF!5Rey{!{_M=tqUX_o#fIgFl9iOqxy0_suft
z)m@Jpk|ns!_tt83#6I3;sU29E_B(H|mj@JJz~ezlIuW;FtjG8Vj$p!Eq`#5q8&1z3
zFoqs83)k_}JS(bu9FOJe7CjHkr@|S2wVnjAUJS;#4wEBFfb@n&!+hXTPS*>vql>UI
zdbp-QPLcZ%ET5BrS`|C)z8O~|1uDRc7}~k02Hig>pVD^21N5gCgA$2Tgl|g)#=vMV
zBT5d*jah37-=X%Zj=xh^>>pNUjiY7h(m_VOHNL00BjC18@{J9n`e=+#5wi!$wR6H}
z*0rtUEhkR|rX$T9J=_VQvpc?h`I6D*Tvv4}z8TjYj=>cr3vv>1r<BykD<$Y8=P`0k
zmxc;YEaRc?pd7cxzA%nyPe$ZbFLPeuh{(knVyPl#nePQ<5arQk14;I1*i&KUtUcQ$
zEpy&apMC9Rtw{!7Y00jJtrRO-vkqRE;C&Zno9)%vd=P&|Wh(&#FrS30x9TNRjnlnR
z$u<8_@uYP%t6Nq+e|_g)5it3;q@eVo;oN<>`#tk%Pu8DW-|d{|`?U35kylZkSGk{M
zP{)o;&%O~$OEza>StT)H0J6G{gJcD9jK7`xpmum+qVXOzf6FmUGYy6);>5yZ^MBd>
zJtA;NyqRp*yAG!kRr@8B)c6C9po$<2{>Lky`^OHz)kFbi;{;~V7Gz$dU!QQh-|gnl
z2>21_F7LX6-y)4B<?-j`2fN7k&oe!G5gkZnya^*08!)qMu)9IiaX3%5jFAnw7zCXy
zT*<Juo*CV(Bew3>3HdNp?F?8h)mf*Hv|MRdSbiJ~z!I(}%Y08A7}8*o$dKK77GE~m
z>1?$LQx9Z8?+xwW<`qWo77}uGtLQfc@07&al(!>a>Tc+o7MHbnOl=u0@bCXtS>}l|
zI`N=2b`EM+M~c*WK3#)xf1Y_>DN@sO!6*u)sjK}JvH0Wc;p1Qalph#W>>+^{4B<H=
z6OLm$A?anpAUM7Sdu}1L6@lG@!`yTQ$<DkwCn1KzP>1vD#v4&!jJx6R+7|SgT5wQM
z7^0zX-~QtEC~tq#7oxz!EFAjl$<&Z|bo=6+0k~<+6ie#Xx%)yKP;+Wan(?-n_oUPh
z<wImk!u?TG*$n|#-lo*+E0|+Z6|ag37$vIuhzZ`N)`+yMY<+$_mOd$EH6%SSPT4!z
zl6n5fbKkvFX6OnO&e{wZhPAUCx-cpGlHVm8n)6<tz&DhJFM2Y<>FY8o-z_N7Ev&NJ
zfypk$C-dye_JK^^y(w1227r}#u{7>FsG<zP$EA`+`WE=O$?99!S3!KDApV!?Kvq85
z%6aMZl7`pV=&Ss%W&0$ajf>Qucm?Bv%FA{92zCrSL+^IJ0m{tSH=S8*-yCqvReyf4
zH3K{>dYupNPO2y|=gCHw4|l!CrVXTZ22#rxakM})1>GG_XG(z_6N5pXw-ky8F{ae4
z*bRvRUMFwXDy-jdMfp>8bWx!0iyQut4I)g8Q@$W0u?>iZ+=%vwV$cyML>LdA1~-yz
zK0GWD`FoPL2rXS+KV_)U!6^E9%g&e_U2cBflB$UW%Lbm`DQcP?OVy`)0{P86_hKHS
zd6^1!IwuMxrfj10BU8N6mQEq$J|GbX>Tw>Jau5G$*Xx=lQRkCHv}I9ecHgnjb(2Sv
zEu9N84dHB2C72Ab@tLsWSgQ8vZhyv2*J=3OrHgu_wBJ>zee69&z(7=9R*&b)dsK0a
zHK6*Be>#0S72sk&qAr7^p)htk70;i|Yq2xL=8s0AYl25M8Ag(UT>NU_9z*Q4ETP!v
zIVRg|H?cM8XR++-{i4e9C=j~}Vh6XdME@a-TQ{flSm*PG=@g6^OQ2|sc0zKsO>*^3
zho**T9&xae5zNnIM>#MAkxr8)ycK`b+jI$2)jnZ;j}V<py5`|BQWRFjBV)uCMGh&l
z4_FHJV?X=V8tPUGQg1x0T|iEK0G#?>Rb@`yvsvVCK84ZC!H}{(n$hC<sEA0q;{d~D
z<;Ecoz97$D)7O3jrt1%LOzCO^3rs#u_d9m5mfAZs3d}hXJts|Y_aYQhP*%CbL7?}S
zlMCj~{Q$=>eX$D(7wL*#@43v)xL5(Tp<v1En`eNL5j-aAVm{QFsvHAew@f`cCuBPG
z5I%l|z>jcE7&^};loTPRMH}<46<fn>74&)Gzc`;eFj#-P*-LAHaitc)KZLIm6GO93
z3PS%_je=x2kkM!H^oK+65y8mLMu6{QX!0TK9k^YI@~SBdTd8)?F$`)%21+%f6I874
z4dd<0J67JvtkZg)hg3H?vOiu~#y1nM?Ak23%rJLQ;BA)SbP6CLYR|$<RH~U7jc<jJ
za|q~BN8Mt{)5ohxCCWh`Zf-|?$(q79|F~2VG>pQ079Pe0kWSX>yTllC+_!ZK^na>p
z8I^P`f7BADP}wvLto?y;->92#?6oamdE9)>@?GfZW_@4Gwl)!SlvmrX*@ge8ejVLV
z+g+rU59MUGy@r7YS*32-=l(8F|M_m_^3p5FpH)!9XALK_k0&3-iZioE3HDIf3e#{P
zHryZ9>9gB=!X%RGt~iTFbde7}_WJF_)EOG}$ebtXPAuvH-huBI`!3TqVa6T3&`ua*
z&-{0_y=_QoWhI6@jaFeErY=9}A9j*KyBiHr1A)v&UgbUKPE+T!qfvtSJpw|<(+#K?
z$6KJy?R1Y+n_5|zBB$B9b_#7d8(_p=0I82GJ78;0u!`yooIx_5s`Yi&-g(k(JQ6$1
zra6shuJbbdQCJ?=RLnBm-9w~+{Z*c`e|V$2a~{)`WYP*^sYj4VuJCNr^5c;a;qxlH
zEiXV16b^_vly`Z6i7?aoMLkZuRDJPkT7|sAuq<oWta0HMCt|-AFqGu&Up?T>1Fq|=
z9N;~=a5!P9oze3g9%GdtxpU}%Y{0a;xzTKQ)s(2()x&Ss^z$z=xY_qQuWX4A6Sr?*
zL`rP|ac^2>h>MopypSN9MDynP*TTd?oNaZl2U!i+Dd<(^PV7T@rW7M#UK%=tnHyk|
zO?pCN{Sw=Va$Z{A<G4E4H+88ycr=`^G6_16Gb<II0aK#?rP%M#Ab79ePu$E~i^H72
zWtV75f2cdsrbDk-!4|c`pKLABd7Sr3zIQ6Ch1itXR4qV~)%O(qvb%8-pK&tC3CrtY
zS}Vr*63m8}x$`mKxMtwQ88@TE6(;y}O%{PL-;ncfsB7EQcyQ$<67>P0lq5M-uisC4
z!dzAog8VnTTxOyaT~YFc`~-FY`59cYr4!V!(4hAy(d4&*W0gfi4Ja~e3PqR`Y+3Mh
zYdr=Msyg+Yv+sMkT---Jp(-T#tq+^5lIdZoo~;%^+N#3V*^s36H%Q^^=>)wg4^GBx
zZ;^v6=;Ucg()R$h5+Ndp3;?2bG-X;B*kTnPUB3KDeX<s}J%N_!&2IBBoemLDn+5w|
zS|k{g+?yF{&Gk~KfUFD*wqPrpQP9ACsm-Y$9);v1K56ZDy(U9oA-ha>4RxMUw%{g1
z7SE!6r<lCL9RM9tdJd!L^-Bo>J5-?cG#bHeX&voR7~hl!899boDZ1OZR)K!hQs&>d
z5BjKMBBzYpyRfBSckuhLS@hL>u*!r(utRoeaHZC<HXX3+2<(fk&x!T4w`_gg^AFC+
zp!!vk%XFCK6`z@1!wn^eHJ{iIKd;a_7zmtRZkmC40FCB#gs;}!g9u-M)K>Z8pF-IJ
z{Tp;0x^aV0x<KZV1romS2&I3-oo;<W2-U~IWwcW8*+7Tqn|pWtjr3&8WOq7=MHydl
z&IoYWXoyf;vfBqJ28cCJ5w)ZIOqxFQ9$0${jZ#*F+Sq|ld&EqF#{lrOkd>_j48Zwe
z#YoeQ6tT@~5yr%e)RUp*@OI*t<K$hO!pB#rx_pYTt~auhQjIyHxxkL#c)`o7pZ%xq
zxV{*<0yVWzG}@-<=kTPn(x#)g65mlJ3`zAUu`?xGKW1N~*z~GUe|<Oqxv5H$ORjFb
zWstR1kkonXeRmVSji1jCps%Zz9aM95fV?+^dq6sK2=o=D=RsUKu*fitJk(*gZcS&c
zc~!mjPSrv2BTHak)ZI8$l$0D)Q@m~9p8C<GnsQ*?(w%s7>d5u3pPty;Axe-Z0Rm8p
zuEt&aE;Ypc>E*uN|3ceDx*}Y#N0(hDPlU|Q@RaV*9mrxuZ>KrgHXh_Z3Q=+eDAAeL
zF(cW8&hLO(hy#FsINduNsWAd05oGC`LFS2}x{8s{WdJsc=#3cGhFeBr(yj)&p0lSL
z1%g0vRASkfk<mJsPT#E`XxKm5udeH&+ERGvGN2gZ0!lGh$zqze`fPV*&KBBe4B!Zq
z?xjZ!c<t=0PN=dy0Us^Rvlj;B!Vi!l$!lcBa_wqSOGIVm=>vyvrJu!00q{;!6+r{I
zDuUw`zMYsnlaMUVMy4n0E`|v=zDguL_sdOZ)8QZMy4TONHuVEnmaDf3^n(1+a_e`v
z2Y>S@EMFHp_b&TP+1(rXP@oFH97GXsXr}_(9ySxO)V3CyYNF{DSYhV2%Z&jtzS(v^
zLxOE;F=&y$d{<A}HsG^bSW*KmiDMsS>?A-=VhW(Rej3|asq1|?wF@I<59|0!2d$a(
z6YpPKNUOluOp}jsR$9eU8iG7;ZLQ;zR{yU2aMJlhtjPCtKBrb>sakEjXUB87OPhIY
z-B?6jS5&H>%7kFKfR-f$lZZRs-@&iJ)@7njCGf+Rp~klN>HPN)$*!*;!wB=+qWV*8
zeLf){$npE+TA1J`CK?RK^jyHYMv+3LGsgncdIQH8*C@UXiM)CnlCQtoEAr&v?$o-B
zI=^FOVaE2`gS8-B+#HwOdG&pU4}ia-=uYjd{(8wx{|@F$&9r+vjXgs7A##qO2r6PA
zDQs%YfBMI<5F{-xkrqmHn-$TzXwW6C9>Bgg<d82EI6le&YnxxPoU-%)aJ<sOU{zty
z5B1&M2=L@go%?QlAVbC7Hv&uY_M}cQ$jj?MUC}CQ*=^B5dR$$SH?S$qEp28<f-ULn
zWt<)3y?9dS*elu+B13G6{}Q_YRvV-k;qOlJrtkE7XS$+f9B-C>AoTW<dorE!e3zno
z3q=GTuJp6>2nMfu|7POO!AW`P7-;W&5dxnwGS&OV1%1@eT_?~7RT}6!R;c?VmaZtz
z?|r^oA|s$geHKoWJ`IriMvI8wfF0vch%B_zM)q45_C%Frh_fcIgm7r=iK_;U1eLxZ
zF^7SlTYVa#!|8}<uMMCrZV*i!x$q<*tT()J)&DDe4hPR#jg_gt@ziI_N!(Su%b!t!
z_3US2a1qj&V4JuYcCxdR&p;J;X_CZd>6M>!M{?VGZl9IQ|BIE}T;GdI=<#74jnbs<
zP<#1K&0*w^fA=xZYx_Y6Ce%g17uosVFG$wj@(nlOPxqx7k+mojAQQs05!R^%W{6<o
zVUlq)gM>AR?|sg!1@OnYA46X2RZST#)rue~_{&OEjkP;r1JvF|+@3H)7j@Kq*yUAB
zf~heuLXhvc-i)hK>T<M`r|D>GRZDjnX5xR_JXZZmMDV%xRjsz6*v71_2LS3qRJQ~M
z{Not|QM*?wq}2zS_PlZfP9%`iH3#6aw^y7BcLu|0Pl!cH>`7=$L=u#+{qwD{;8|NS
z6?x!iLUQIaKm<LT?=y{l#*bZ<(CxXRZN<PJ@^n%7bq|_JVAL3C8ED1%_BK6=yAG_=
z?Cuq_g1N!~r_?%3*!XAc)MNxG#;TVV31o{({JS~7jsvgv(^OOi?>>T1%8EGkSm%0w
z6S?yXUZ2BLk$*WeREr;{bDq{T$JIN>=G{V;lL*Th4GC|kDAN_sf)W1E)sAeVrriy9
zo^?fi^>WFTuo=mD=4s1jY?cnBaq9+~j#U0XZD+TqwjS#ljo_n2!}aIAuiL6?HZW~f
zG7jwHPNeFRi}liwdfNlUJ-qI$1r>~H{~gj-vBY%)s)N)YZkdAqw@m%UUtibTD#f$O
zePUt|OsSA6%p9c+WB($cGjnFCyx%wXcEP)V?m@)#LO|aNngK<2K*Da&4oQ#k`|Rl1
zBIi&!ALj$=aBDhSRS&=-Tgj`-w*5|nW<s^ic5Y+<o*roRmlKS;$SlQpNSfwGik2Uo
zD&R~QF&{|owTV-A7wDkL3#G!`L#b2i`mpIt^thFDpq-k4zMix;UK)#CJ8nSWKtM0%
z9PajUBHVcBbk45zG2G--ti5eYqc&0B=TI<}BlrGm`}k126B0}!t!_V;nlezV+n3G=
z^{{M0om%rM9SAuu7nCH{(>3;JbsFKL^WNgjWccNnt_{nn7>2xvji_A<?66Eb6ibe%
zF<d&FmZ(EFKb)O@R!x+^Fq<SLkXK{%PA}Vj@>wPG?la_$CtP5@PATnXo+~oDnJnSY
zgB)!Z6y=At#~=Q9gmOa*iXKA4%ioSGXP<zQns$CY>75mKG?us^$gw`o|3*L!s(wNO
z#!;@M{_%3{Cg1M-KB%bhjU@D?wBJZha5ID&-;R~UU%O=#yW@53i$Jt{1y&>ZxS(Iz
zqQLBH=eBdv*ondsHx%E`&ZGTzSk2;AjEB~v1xkyLrw`+>6$Q`Fg*zP9NHfj#^CqP(
z@Hk~Dep_8p;<&%cd_v#T^wB3QkQZ#lNpy1+HnG0s#fq~%FsDTq_UbqREz3|4uZCF7
zSvK?8Rx^Xf^KRhkaH&Ov^>UR$TIy_@_s>}Rgu)y*$l;}u`I+syG6@q})Q17m<NW`b
zTK~KKnF97m1KeW;t1v%hN#np<%K+KpyqalkS^xDRCy-|yEsXB-tV1qL`pN{(U8S+5
zM@Gfvy|RNxC%Hc-=+_6ycMW1(^(*;Qo;*w_x)Y(1EXW$0VMLrfz(n7I3*iMtUF<X;
zSkqiWQeZ`wK29|4Uq9}#!BmIzhD{5N!f_Gy%uYzo4XVd$9#`@bgx(`gQVfQpie54X
zs4un;mGIF!@p9J{f0XIwr&D$sPS!|nah+?}GXV7kC~LFpF(NIyC_l1Gd=lK8fhWyh
zoJr{9{?Z5CgAR`rt&)+JWR~gD!gb%J32Aa$F5rQwEsQ8#9#`D(VE5lJUuySfWsr8)
z$q?`BwH_#~;cgEVeBP&Jhu;5>v$qb*YFpQb6%bH5q#G&e?rtd&5D+A#yBkEhyGsEH
zm2QET?r!OB>F#g5>+F5@_d92;v(DN7a$S>m&N0Uv<9Y5H#9?%|1~Xg&87xH^T&^&#
zsJv^@;_z9~bpII7z?kN*N%tH_`9M?7&i%N7yz_Ln$X%b<nj(G|P-rr)cWv*^FnQ+I
zE#pZuw~i=!>)*-`geO-{TcSsd+SmVuy!ZupH4)91c3x(an%AQz%mP{7c2_poJcE`9
zzpfpln$v)hqY^ZaQ&=C|Uo?oBV&WnFVS%ayz1zh1P_ly@(mT_;8v6fdt8DI<{phmj
zoZmq56tf{mRe@Ik)5wf_2w*QY$=L!c<dzL9q4X<2=ly3><&UP<FtwS!Drzpv=csPQ
z@K&0{OWt=i*&3xy^{R`+gF*0mD@W2=3G75H>wK4%nO^7997etI2F=hWQWo0!VD)`r
zgEuB|TZ?JORznjwY<_KI_!HAKq*?g>C@Q<L3HV5!DpBZOw&IT7T`VrXnX~^)ljX@a
z4+Qre8&JDQ!|dY!^GE=w#P-e4^5z==#^`{}9w;&vPz&s6g@&QN2?_s+H2s&0UJM5}
ze}Bk~%~Qxo+(_}buk7T1E5G_yL%(AiF4L-dD(}n;dt?uKQDEF3F6;6%w)OSp{>cXL
zVw5HHR@$efl+75w{m0wWyL`&fc=|>%?*f39hbGpMfBYKDOT<eZ&X=fh0e|Y_Gz@H}
z2xExN6XLdbw`cYJYfqX@{G{v6H{gt9mtG8g_0LcA&!zo;_E-1#W`G)v`S{$in@t-f
zDPYkk0#Z6k$xHCv+c2s>yW%etmj5Z(!=o6Uno7D9|IK4P$MYo8aO;<r+FwtO|2oG1
z{5K*)n8{pL@7&KO)R7J%e(biCnV=;+`4<ZKSJ(ZwmlsY9<7(4yC3fHD^nbq#@ZVT4
z;S9{p^YS~d`-r8pB{u$ax%j&=Nv3J89M=yfK3l@$(Eit3vZu7R_-7Wt|NiD!4B#?7
zk9#<7epmcqgo_{*)<KJ;bbisV@fYCW|1?;>pMaZTwJN3w_^eix&?31||Mz$D&zJQP
zPAdLUYbVsM##sH!zzq0$<mJ`pxwEO*9R8jE)+z8<fM=x+BaP4Ln~G}G6%P5M|NFlY
zK|^o$qoj~#m^@qh1&h#0@s|tKUk^_w+hYLS$Yprgt1j^*YWX|;8<y|WN5F$>z+m{^
z*AR^eFYI4q_BWH}Uo#nR7miv!`E^#FJ6NK?KC5AaG5L2s(?5AwmR2}(cGY}!T`$h(
zt(_3axcW^ROREu^$Nzn7!3xUr*tp=2M1__=5*1Jcc_NRb^w0iNxcjf$|0kaFSBq1l
z2w4Mn<o7xUiQfgyWw?={Mt^t3pS-YeI~YX5t27;l&0t*MT{mnH)$sbiKbHtIy2!6f
zXu<=GbT2#kv$KBoq4sb8+S`Ut;PT|%>NfjKAODvJJ!N~m_}%?#OM~mrewBp}k)i4K
z_&xm=a2;v5+N87Si|y?0(nF^vX9M+%e`lT5LuBFP+`yjj`(mp7XTSM(6YZyz9+*xY
zr{k-g5o3OaQw6Efe_2=j5BEoml`Q1tZs5LiwAw}EAL(xU8}BQ|e;J%VnT-Ga?zV8C
z-w7h|&Gq%OFNV4`nB2tw&SSk8e)`xy!qs|>S>D$$+V<aCu7knKVd!d|`zU~>3xh5s
z<zFlI|KW~&!ymzP0pIFGeqm<xo`c%Iu{Hyx6#ruZuKQixhgZ-|*`c3RdU;@k?px3u
zOY)b0=WQ7QOa0MGFso4&2~nT_?LS$G|NX}bnxaxH4L#o{quF6hsld8e&7t4wpNr6?
zFAQf)`#;Q+Klx_=m=+?6kD?-O^#f|lHhRiv1bM8>d#KGomds$E&JQRdybX2a>(>(o
zMl~z)@2PTRLS@t20JQpU0x(%Z+}`Q@O!t@Xfot+?udVSIID&W^*BNc-dO@LEk_&8+
z><TGtUv*g*E<3sN)YRW|GB%!$cANw81I0Y>GvBqI?nD8T6So!cUrHVUK=!A>;FS*J
zu5CitYU7Og_vh0Yz(QvRK9#lvrzTG+hx#3L3?F1d-<HaGK#kB@0loP)u&K)fZhXHq
zfp^F>l6OM}U}{#7LXCWRC}NI0t2NEC=y~!Lkb+FW;Oz!n!8+ztujKSEe;R_z>05Px
zyJ>qlh}4>HK?AK4IOg*}4@o@_h+jkEj)LzGuQTLwP$i0*BQoFDE8}XfLY*ifCgnjS
z?gfOhlVf<j_EYSI8fMOoM3I|!%iTHIGac9nP;2E8s$CCNQm)5AV-1OAsnN=GhKcJ;
zH&klw{<HXRKTB0C#27=<kM3`lc+5s~{cW=?p@Sdhdw%TfgGTCmHmOz8ZTTetCslNb
z2b8h62CXreJl;#Nq%y(Y_HAlrOty2TIT54hvo=`>vH%`jEWqG_j_@C5LgjlP?Jv|7
z?A$?f^>01`5?Tdj;EXEG!Q0z2|K*#aFRI64<pRh%MQBYL#td=22CC9bYw*_f^LxF>
zilyB)05<N~1=HmMIms{sm7-E`g`&VwJ2Wq1Q`V&cvKA{h*>?@-2U=T8-xmf%aFM{p
zY>^7qtLrw>`(ZH#ztd;FU-**Tzk2V*=ZsWX@SAZw3w!MaY`w2M^&D=Gx?Ij?*y7i%
zRY|M4>vbqj33vV&-f#D7^?-%IsRyR^EJxtZp72AdmQRn;mdo<KHhU83^zHA)*0&Qb
zPa*B?#fnTpW@dJ3>xxl`uz-%E+}1Fj(#1IgD55~t1nSHC-t7AQb%R%;A4Qka*)y9=
z+3RXCMl6}E+X-o{cA*6Ji?I_q_+i#|YD9MFFk;*0#~pPaHH?ibQog(&u<ZKqV<Kp`
zMdlaq186l#J237^@uJfKmUGXn@N43$;7N=^3rg`vLlK}~vTr41(;1l5FpP+y3$AmP
zXm%*1w6v1`2`KO}CGX=n4gmD$!J-M29^OwmQ%G$+g_*AnI+KuO@c)~22yYz@uV(wZ
zg4_V<uB!u-GHAg+YLAg7!55aEz$|%Z<35%a$|ekagdubpRbMEh!w8{fqgMy|uG3F%
z`gHGO6?vBZFL})qp)w}rw|Ow63e}+J#OaVkz6{g7HQ;#e)m%P^yl3A0is17mVmjcq
z&321wnDPqlfpv_VV!aJZ%{%Ho>)|Tv)j{7Lb|f0%pukCgJErJ7m{9kQqp~z-Sl?^n
zGW8LpmjD#1wJeKOwhg{!O#y)g05|x_jsI#BYj!ZxV8KmcS!ZE>3-y#7v37x6h`ZCR
zoG4V?$Nh!$aLLBEC^oL*E1HD9rPP1760)$tp>wb;gsk!zSAS^C2h|fYwF7Yk9L{^k
zk?dc{EDz^3O+`Oi%lnwL7QLZ_#guekFANgHYk3=KH|e;G&XLxdG5g4K=LxgM2<~z?
z^Z`<*api3Q)E{-@d_V+p#5Ld!c?GN*a_@{&jGo0%qA|{Nqw76$%tPvmTLo0SnmoA>
z8x`x6^HW!*D!CsghXU$4V7(2Xkrt@!LZHjYH|<}hZoaYyb37l)qYIg!aeJQpT?a-5
z?Y4>@N<4>XwRK&W1Hyb=@`9uWrXv-SSpZ(N^UVxIk`;tQGc<C+D#+J(R%D|f$519g
z;mI8V>o*k*mU}_+WOJ8ygV1P`qVnFC9hI4T@fNhZoZh#W*-Y^knQj|q`5IP1RLqvp
z0!CL2=8DyjZ^Acx8$Jb-0L?2S-e<pVlW7KNudG+b2Y8n)+|X~WY&^6CQvmZ{1<|R(
zG#g7ic2^H5nyCiHcwD3Jq5Qw9-zDg}5gI7Ypk(s$>npk2387SVlbMXas((4f`7q!V
zwu^kWF=si!v!GpXs-%rD+jw7<s+40pFoR^r*C>Q?PGqU7GdSQp*l5o;u#=WWio{f_
z$7?RvRM!>VWlP%CU>i>?)yG()J$sQOkfAswp6moXrnna|0JCUfI^5?N_~r^Vo!S+d
zZF=@a+0k5B^tL#Kc*s#MQ(vHD$`b6AeCvCi!Mt_`jA}WD?g9WLInBIi$TuZaGs5ey
z_T5kMljUFOY%Gg&sEDhrOn^#B&rG^p--aAlmRmYEno-@`X2=!A8+~S(=cx(IA?Ezn
zWdrObVr$TVwdZ4M4#NA@N8Zg<e$FHN^<p)BZ0Xx5oBSPmJDfn|hI4_vk5akmY*jjS
z6l3|YH#u?mS3CMYiiyt{kJD#6#>cm)FL#Syl_(FsUx0MrXyp!YFE+>|m@T2}SyoRQ
z(~<H>Z3WT@=g~9Gb_t!Ai6M4>KERMBiV?aViJFvDZNHh@6jG1+gt**z;AQhNZ2VEr
z#|OIn^jIB$ox5Lx^bjGd$`Prv#UJt@?d8(&?%Vg`SI}KblM&f&92mFKl3QySjNO2U
zA4!Qq9%H&2q+xugXaekU6^VbjAn+e-1FefZluq*UfQ(u<9@oMau>&DTq?|Q0zlIO2
zdoS~M?}21rXS`{8d}I+65}|ANz_<G~PD!XvBg!=fO@NY!Na!SGD3{rD87ZLoWozl}
z?WVBqL(ggc74}N7yE8~tkr1@^0Cml?Jhd?g67S39fXfX4TgpLQ(KDa`*=@znqYGz?
zAsO?e_%IM)7ysOjXv{cHDWOBP+rJSM7olXq9NCSd3kTq#DgknKnns;?=<1o9S!*-E
zD4Z0@zh7Gk0Iggo<+p%yWYC7at5I+DJZ2KQCJ5B82t309W@6#75oywS8{sP(Ao*iQ
zOwj?nlw-$p^%r@*md5GgrMe~=PCHIy0%sewstQrWRt59bQ`Yt7Z>=@JP<u<J^_9T7
z%HK>6c~6!uR8r=(Gt{UR8@e{FdeReaQj1yr9u`MaU~am#=asQj5Yr1Cfykg)<Ts*2
z#&%U`Hp#9yD@>b$#g09mY$B*Y#_s!6nrc*ZM?Ha3LOnS9#1N6ccwM_9({&{zQ1Znf
zRL#6{8+NQ*4aCdUhnW{(CqE7I0O&3b3~sA!MjJH0=`_-%AxEPt4$mO%<?3}%Fy75^
zQd2rlQ)}}1b;g0GNz*RYO>JZb$mS^2jtu6;mfMjcG`<3>t01|(|0+}*C~9)C@6yCy
z1QG)7iaBld-i=DBcuNzSZ+gFnNI7_I;*&R-oG`SUr8vZ#xB;!$uFIXl4OD0wNYW9w
z;#mmO-}upE96|W9MQp8`V;g8s)zyX{*HqaLtzB1NEO_9W-L26G7dD_4gS3zi!6=c<
z3>O_}N=n$F(LOZA>1Zw)Ny-hr0hAP@Q1euK$OAkU_vq)M-(cTn*G4n#`$M~D($z8-
zMVa+BX`U|$a@oO5EzuG$=o1-g-_CJXy1pO^sgv~FxB3y}WN(d8li-Z)#_`U+WOZhM
zGx->5&ZW;hAPgWi<sUK__W@F(LM3&D8^Rw)N3bgfLU`Q~Cep=WAO=ewQs;_#aH_M&
z{DsS#Z2zX@;kxAdgn7tHzyqao#w#DM-wC#5OC55YkX<XV`*0W}Y+1J@kmG<RHJ3`b
z=|R8kXit0~bu-kr^Yd@&0-(wXuM1#}oPt<{1PgxZL-%<N2S*FyEsTU)p3Oe>d;P3M
zb(%uRF9m_r)As$G25Q%50+^!m+8En*qtc^janx-ZxRA;|vyOvf@8d2l!tDf<$ImDd
zlfCO2vVJOL3e;u2{=||iIgPJf^38|l?B(YC7Pp(v^;lM>=$wq}vE=7B>m$@Vx*IA9
zO7$el@XxX~ukyGX3(-|yPnIvM1+*B!y)g<C!22c9oE%0=!Jv<Ks0$>DH&yuODi0u3
zq5(af^Oz@CS}a`jH#*9i5n9X~kwd?-f7pXenmhS#MlF&o-|4T3@4l5YVwTKTr{=#O
zOj>MVIEUt?nZ+q^rF;>rfF_P9A;v-jv=DXbBwolQn<`--9>KLT`bQasmBJ<@xw@sC
zoY|+|T2l$OlFNkczK##r!=s?xA*RThs)n2kPocDjs#zs8VEFH8VJRgsGOP18A<h<9
zyUqE|$mLJvD-N~LdQ8Ng`yIj?yAdNI!4_8q!|?{$_qCy_>PC{o1hJ`%E~N%-8G`Jq
z!MKAO@8-t{xklz=tebAJIG<vmSqtpJ?<ll07Xjd}u2k`@s3LAxJeUyFx!WLM161(a
z$Wt^ccJEgR-asIwHnb5I^FSq>=KXN9h&#o)Prm1>_2VUBb}b5MgaR#4_TZG?1b^za
zn{9;06pqB&t=#+O!8P^%m;Dg51u`)e54Lv2p{*H`0lzZg^m$q^tTqF$^%M{{Ld!id
zo@rIv#@k(-#-BZavBe?Wih(lY*qtOZim@6<^zirl+Sgrw109oF>|La0y&WaFP<r7{
z5?jcMl}qWxYIlBy5%(Zf9(`ABeqz@8VKvbd!mmzgd}XO>JHfU~ycac!gN!R(M>dm@
z$DX~r@vOMqna(q2ewf@+*TK0UQG^tClWI(jGL<;o&YSWha~Pp)oD24X+A-JA`K^n0
zmY%N0Vc4RdW@1Ogl&;U+=Z=W@`gxbo21Q=K25YzEx05HeYP$kiC%2k7+?a_j@C(mR
zJbTR?ujjDLoM-O))(-*4_1|HU{~s0xz8Ka?zmw;k5mH|fx`=4~#E@rJMo=Ha`3WL=
z9G3c%C%5vCg8ni^ntt+e^JjDtyy>W<2o^Z(tn2ao9T-Fb+j++^1xdVy#%P3<$MBB$
z8n=@*5H*Poe#*=-yi*#R-=I@dLO#{6yP$_-B+ry!0H60QIqMk<$tk*CX%uW{Gjk^O
z(MP<%pnRFE>(#obV`b763P`TEzkcXYcg>i)Bm|Zb<HJ$XR8WhcgtqJ5@+C`YR8YLN
z>vC%w8SEbNYZVtj3WlH{9mw1olN$U={&WivHu+!=7C1sY*kK~9T76e1e>zXz1$p%W
z2sB(EK)Um#jV0m-mWGVw=^d!Sx52C&Mc)wFepMeUis@p}$7kd%#x`37RTrV?YzR%J
zO#IK0K`{>5^p{9SNN#VedqpyXon&wyQ>_p;Xsh98(_D@u@?;fUfCPdP3R4=Z=Qg?^
zK}Q}V%hxUZWDC^HFDD&r#DgOa34&snGo^W>Oy$NO>k|Z`2doC-4!z8o$I3dvhqqnz
z)X1YIYCGHqLLjusD7Uh*wug6C>abJ~#V(EC7dE^Br-YmN(rhfA5G}ZpSKx-sHrV2k
z)srvkm1+Wxtw?D8@<tGll84=uZt;BY>4C|7wej9puuF0ewtRD6c^*~m-*TALbZgYg
z&a{HVLrLJvyL`ByW;C$VSGIK9dMJ-GWxuaPgyb)h?uXd=tsxU5%COhzaSX*?+9{8-
zwhAp_>ozcZCVobVI7zr3c^j;hx$MPGu}%``pcIg95=_Vn@n3@YBGC5^9!V^9b8f|D
z-F~><QEz(ZAHosj-oqQA5o}LBCn59cVy(8bCQbO_ZS4|9;thK^##(E*gZb2Z7sj2;
z{MjB(mZ%{<hMtQVixS4-3W0oET?(c1BkA{Mu<>D0gy<XO1gi@n`8z5~f>oKnLH&A$
zOz^`NMRF~83sadoyA;adp@?xW&i&4u7BJrRFsrxisHYs#z-#SvB@w}n%AcEyGs|6&
z)fVz!^6Zqsit<h$o9p69Dqy!l@pY#hvK}brR<2e|^b<^S9YlT1G8H~Y>87bV;D9xR
zrGJFnVKd{R!97@{ID^sUXYq8CRQoWSV4*C>(oeHB)M64U&%IddW`9jnJuHUwd?Z-u
z=Uh{5jV*F*jorYeC(#zki0nd9`?4ne#awWW<zQh8fzzr@?E)Pi9W#t0+`y3l&Ow+!
zQU~kGB}cinb{D_dLqzYY^WUI^!$@!j$We9zoxN9tXE4&uY)=SOgoDUWMX^hvh*lc9
zq}o%W=^hbmm5syzOnKi3T2%4Z0nO;Pc(7q>7hjpZ3ei26>iiz-wvz=@VSEmVjyPOv
zsh&e;@<+sKfraTwCP@%wh2wGEGl))a5%lMlN5Jn?{iQE2+55;HZx_)JJwo5L({KrA
zw^B!P4d)?82paIW3nR9J)quBVNQNp(s^W_}DVC0BARDQi!l?p#+@)HgAFRX6R7d_w
z1l^xprV(U3@7D8HS5me=_1Ay4tM?A=^!nM}fwb_ovYUhOfp2hu7+DAl94nQWrofU!
zeIJ%cB~Bs|tbrE8QE@y{rA$(bZ65YI%*RK*X0v^J8JCv)I|VsA2ESw~#;SXpy{|M_
zWZo}G2?gJ_qKmY$AeZ5Z3B%EiKR!~HC&$x2rdm;pRL9$drGS^{YVX2Ygn|k6{5sV$
z#i>Rgw{X931eyk$t+$~gvSe5V6Je}2!{nf9H?!`fhJE1KKy(uVF%QqrI^y;~sXXc=
z`Ys0~%YzoqX_qJ$xsII3k4oi^jnN%3r53e0#f-#^kep{|wbMQ4+TPngpKV59^R+8Y
zJ*ex#Zm?R>{NErx$52_H+Lg&-^V+k}{jP*RSeX-?jS4V=Y|FK=P;&Wn4zo8HL3GK$
z2u~T@Qu|g%3u`98PDkHTT0n-sRf7Vqy^V^<tRh!SEr_BO{Z6`WQ260Co7jPP!#&)j
zOEJ6>9mejqt$=3C$stOtyQk}so$mH20iIb`tS1KiF|u!r@P#j^UFknzt0)I)MBi0D
z&Wp|W3N&ScL7TY3+~(Gz$dz6rrjX9m=gSDJ84;||yx-fWU&Q6%#@G!kNI+vnpH$c6
zx8s#Y=hP3*;LWc)*AqaR2XPw#-6<B2LEw=~9dlyQ$XOmyaonOGZxWAE?V#O*C|NQR
z5s+w3cz1{{WoRK%PUEPAxa`hR3^>nV7=iqhMcs7u@t|s=O)4{|zFLwt!WhaS{RTNl
z^K}=D85RRm0U~>WL=ZByLekl2$P-~<%w+wc_W~G@ep*Q44Z4IXK8tWUynGaL5q|3x
zW7zJMcw-_^k#Mp#>C}*MuFK@t^fx4fNC}2scm(*$dhkv3Z%;V`<VzANBaWB8GU0Md
zskS>TlNY~Y!C58<X~d&Nz5yM87A|)ump>a22Dsn;@JRk{gQrK8H5pSLSj!p}c)^c~
zhqG{{(WUatZxzp=?B$oIB(vz^ta!vamx#jSXB241s0YEfodwcN4Q*pOCHOEekeSVa
zC%iW#8oLE%QU<X@))|z0((&GM=K;$-wA`1TH?xb14|j_X?-@?Kegu6C<*<*EapQsa
z#m{9X%#?L#(baTBU&c@j%pdyIY0qNCsgytBzL1HJJP4faL61++bGc6Z{Vu*X6l0K<
znArV344<IK+2mdq<-ze=Qx=jSlP{95M+C_XVj=@hwBVry{0Ur3+iRD&`8F^haYi}k
zv7|%JB}(%=2;X-;<*VaS2q4-S`ir**)+i&hx=~_?<y>!UBJ6RrN5lyAVJY%_sl{;+
z-00LYLd@dHtRoK(J#7_Nfi#&Dw-{?%^pZ@-P|gUi9HJkRmq&QKLM-kx+nh=~^i)S>
zPjBLVn?bPB0KDnjYb$neul283tuMTZ%}OQuHE@*e8benDh8f!<FwmmXN0@qt*u<S6
z5(}`5Idj4HtE(S<SK=??q;forc`fssFo@OWagR;%%UwB+&AF`?-lG2qs%2G*in4D#
zcE*|2;QG0+rvI~QVZRQ0=&8{N@Lr>Z9tse^c=r+vWqBfEYuoGi@z%_kNozNW&2@uq
zB5(bqT+33HW-!i~H>t1Li(xd>YmO8u6u;DTB`A5o3w$2Qydu?rXW%J6qF_g9c7Dy@
z0dj98S&_c;Noij&19cc8TU$Bd)RFVd1M(AFzrQQvL}AD+b4|mySxN3vUlk)D&6)#2
z<5)L((Go^f=;~JlWpQg{#AV{bUW4YR%BuTU%xE{D68MT|`NAtN!Me-7MVYchG*}6J
zmK-meL|>ktaMF^mG5Hx!YdO)5dyKUF;~sZw#BuZsvfP$FWoG<^pJLjb?ygM?Nvskg
z5faXo3EGv3T_(LdcuQTBG%9Ru&z9dI!XF=Axd$_&*V`Vy#iy8-TA`DOSyl^e@$!Fb
zgrqFycB40A&Rg_tv98(I;aiNI5ar;Cryl|dTHoZB=Z3a4qKH5wdsi98cl%WFtF-e^
z1tDzY*dqPiyb;}TyJBkiPYJE6H0woaJH`+3KFt_g@)sKBoR4mw6>4oRi8zS{`!=UK
zBn#JWPT9aks%_flT(4X){&<z%C)9o(Apnt@lWH|uv7gVIuNk$*upMPOWa#&bBJ|Q`
zKi)1pdigw&lwCqLqSyx`(=lkaKseLkXra3<in~h@W!Wm>s6_(rV!qV+J#5>mZEjy|
zb>~^gb%HQ*ur1M8d9zdPU=ppko9qqW)@Q%a?TRC@U%%g}My5SjI}i1@p%^#DNY~%4
zqRn_ER1tDFksQvwbz&L->+{)<!?g?~3q$FgU4`GI{r07sm_uxyYrc9>KM#Mm@M2P^
z3w*cN-Fz2XGX<jj@=O<lFUxN08nrgxe%~t)AZGbgd0gM3_bYLA#mfU4c)5Q9#o*ms
z`kF9!Pj1zXDoGo%4FwEaJ$S-b?*QCV?QOL}`MJDHuUAy-7l4b>a6<UVKKv-x@yQQH
zQ*_l0N89Z^`;6Mp@VeUieV3Ni!}{%idXD~z-E&V63IC!3(I7p8>5>wA@-ieSFPROE
znODs(`6Df%UlTdCDTjt6(F%p47z>t8S+5!AH8IH}3~r7-SY;eBBzR1GBB@6)9z*8R
zl^jH8Vlpb{(TVJO=%{Za+Tq-OEo%=o(vp)Hh8`FLajbM5S>Pf0i*KQQm8;-%E^~Vx
zOOOoRK`O=trzn4+p@{W%nK-|9S7U8LUN06&pU`axnOQ$ZhXG;iEoFppUxVOgYmhxr
z-eM#j(~+qrm93?-5Si-JFSHc#QU=}j5b-<018=CtJj@~eB>iVVmtvl0M+K=0T+q5z
z)lMqT^5GnQbw68QyZKaN#EhJ`KpJtBz38z!$_5cbK4BB@6xV|5YGjFE1QfZAfHPMP
zH110-hY;nxT6>48a_@C_HifHF=a3<`Mv%E<;BG$JFR6CLnp1>4t|L~UI_Og1trCUK
zJ-Webk~(h!|57@k>%)qF(v<z}EnbaB)8N>%sFbT}&&D0M7mHaXXlGZkn`$~k9T89@
z2r8M^MIAjpFuv$d#KI>d8zNSl+;ZL2pN$~23gCdkl>&vmXLI~6B%eplsL{rH+(8#x
zOarJ_&6vA)7DZ~V%F^Az<gKf75(1&<P{kB897xvbChVJ)JKR~*td;qF26_|eI@^>2
zwK2cVZB%2B%w<3D&E43H^G<4tVdbPBkJ%|bt<4B=e>I2n*wWEU{E^0n4wIokT0+gm
zHUAT<p9vR|`-GK8<w0BjF};i+_lbWsul~`+Hop33hu5jD(TUerfXl;$1;;Tv^&O!Q
zWTK$At%!8mBxPVA4vAybk9_8CrH9Al#~_Y52MwHtyh$X_qY}FqX1{jC$G{U<<=9J?
ze~PsjuqnB+nf=0h$Z~RrmryLk{tkh#DSg5AR;n^|v$H3Th6c{G&Sf|N=UoB%ECoej
z>UF8+)jOjRh6u%TCwH$<2lC_J8@!jkXr7;W4k)Y=?MNtlX_fBMf(T6ocV-I|P_cbz
z&nd~EIhUckeSl%rLL|b__s=gZujMu&)&ADoaTc}8hG(a*_H&@Rg|j^(I3A#Pm+ja!
zhV#dU@L|@O%mcqRR-^=~??5$Sf#cb~*O%2pK#cXdy>47agcp11rxO$T<O)GE=aYkG
zsJrE^E$t9>pyC-!7dlI)1M<b!V~*eA${<5p0CbgOP>?M$YnxylYeh<;Qs6?(&BhAb
zg=JRySf~>4%g-qW%coS}l0AQn^at999vWYvIxp(EMU6XomY#7zz$WCY^P;&6htRTA
zl>GVuBwtRQd3bQ|_Me>62pxs2c%4E6Uq4>-SZ`RpYm@tE2nCsOQgj?gB+V*?PLP>7
z9q6$xx1@zr4{yByGm#G>D2pL!LZm`^n}!#pcU#g>!o5|x>Xxx;{7nej83cF&28K=i
zH}9dbf37~co`A$QK8ks;O{$8!-AbAVEOc1Gsqf*@okopL-RAkbdUHpncCW0m+?+_h
zZ}b;l*O@|Rg-Xw-9$gc`^XrWFUC<k&wXnh+ENa8n;Zz%hfBg+G=#KEW(xhIF^vZz@
z$b)jf`$*Uttf<1r;sCi`9PH4EZ{oP_X_^1%=Ag-kRfW>4Fv8d={B+A@&k;Fr6TZ{c
zVD9CprBe@QAV=z%RZZ$-KeqLY;)Elj?tbopbl3s;^dJZmr|-DG=2)eAKC;(a!PGW?
zUK|;u;^Wk~lKgu|H~00rAdkx2lIIqX=Um?tTy9P;i8u32_V0|8k|tVFP<)5$OT*8U
znQcGtapheWmCvcX-)|{?X$e8$5fC^$Oi@C~2-43$uz)XQ&C|8+I<)qa#v;M#&WTZ{
z)yZWgk!j_}b9$=e?Al>=*2zV5W>8u@-KOqpXLf4)mgF~5o;)RgJdWS-+GAZE)S%vO
z`eVbxEII~^YI6Hrg%P{s4rcGNOfMlX%L;@=N!<69B>4@o9;Ox>Ps)j+7X8e=t8FLL
zESsU*(MWB!-=XA14Ge8cja{t}SH#ftp}&h(N-$}OG53fMI$4HhTHU+4E!{4Bh*Q{6
z>0Mn1pal?*IW_K~mrSd+T(R1;$18sN<`CmhtFn7~jlBtX<$OZ4HiMxP>sn~Y_kJJ$
z3TXifi~khKpLeI+SRxp#>pOENBbTn<cEQZFxPu0#x`us?u+8ep?`;H>?ln~(Z*VQa
zs!^eN>WDW+;5LH1_*}P>X>NOjxEIQAxJ`f`4D`0jdCJRq0V-uu(2px@tjMb_zgA$N
zB{=TH@n@By*3+2lhZ~=V61=7Dw=;gS`Lmmt7uW(Q4!Rv}j^n%y9p&wQR2OQQV@UvN
z&c1Y|io!+b3U9AFn<(+-9O0EnaT|OX4ibuo2C$>T+cebz#(gLP$c{yt?lNw>^EsKj
zy3%;MaQ#dYP&yhjJpm6uiai#6lKu)G&=pbGpGF#B<3a9Udd4rkMY_Q2pDhk>L$3wc
zIX!egkX|g8N3=UNXv6zJ6BCj(5iLR9d_Z%|^<m4Ft+&J|QyXxhj+p^4mMPl{0FFvP
z;bB@Yi{~AW{@EwAI%EVbzu7LHsFs9&14x%u;)7jEw3liDMNhMU<w`<K2g1X`$SHaw
zglZeI?4S|(r*-R6i_SUT^8(t;KcIoUXD4`~p^48(JXJqNj0@IG&8X!#JRY&}UfiVY
zgWA{ptfkT)!m;$S09UkYaIJ{7zkc()0>u3SPs+p=rK#kS%tJda<S=06ea1cQLL=aM
zjunp_vC%MyNqO6oAA9Nd54Kbt0I9igo2EZsZ@&y9mdNLU3jD5BXy|8Y<Z8q2`~PrM
z#Bi@N8|9#ddAoGVZu@O=NAf0P1hTdOb9@ug*F~HCE^R{7lkgT5X%2*NKN64MWhh<p
zlraIgI<@GEV~cXa6rG&mWz3oE$wt;cW^Hxp>k?TN`}?^WphA-}Z$!T0hdH^DxP{Vl
zgi#_J4MBxuF9=1(_E;WHD<pp(!XfB>g1^1U%=IABwA$~%vSN9{9GCcO&7mrG!nn}u
znpBX{Hl3yG)3yRXiOTDAm#d!b$(+TQygMxf9>HHf0vlxJa1Du&2j;?a7{zt`_l?p0
z^3)1D$9?AdXEO+x@}6!OlVms8lU&7n48XHsFeET$332&Tt+TX;iLPotasvR`grB{N
z)d#3l=!k5f@`wKX5A|G4oxuFeW9PgNku9CH(*DbM`pS#HNaP^J_^(#=8S}pP2iS_I
z(3qWk3|<ONV(R@kvT^J?YT7j<{NSmg1m|e^WRc>_@1`vg6RedoXG<2Vs&u7<U>2L9
zI@%H<+^8gtiW7XBH)@@dQ9+L3tLYv~MBCNsOw7zo-1Ckq*PYyu7-%~2^?q_S!Lmr@
zgmLyHq7qD97X+jgf5|k?xlI3_@y=UdwoV9Tf)`IE|4kN@QP)cgBb;6^b(cR!`EYgR
zTl%#ZUHCU(DLc+;l?jVNxs$D+Bqv5j^^kfyt01RJccP$Wm3u$DN~ZJbn|%;T|4wQy
z8PFnQgz}ev)Jr7tkbxD{iK|iCA#@NS>U$BhjNUT(wypKX6hvvwk*;3IFk|2Zp-k10
zTyefb?Wn^h?iDD362RT5Nnj^zsq1A&>g43vr@N{O^lJ0629dBbt(0u*9fus{(A?}@
zzdPpkh`Fw-*Ll<RqWo^_6r=VHx2f?yhw-}1K`S~#4v54j(CFL|S*5zmEu<q;?jiu?
zFGH+>ya-Fusc&eX*YA>+ak2B-R=2C~>gGRAC6fviITeoffC#aDWmSLLF93I0x&zHJ
zgvxkQ@)H|Xu>1*lO%@(pNqZXOSu<n92;G!c4C`(i>s-uL-(y~nu@p}Yq@${Kk<=A=
z+V)(D=&tn}H%=DA^Wh$QctM1c!EjBH$iFirx2~zJX$>u7zAn8=#<8RJvd5FV?z9#8
zh&yX+I8(G{m^>o+Q78u%mFF`p$Evs612N&%qnoujB}LD15nY$?qii${pb8m<>R$|Q
zYn6-YQ11>N?rpNs7%P!0d1uHjSZ6*|963qs0&$%=d3MeZ{Zr{<&j5B3fnke?r_J@V
z7dpl7Jqx0ad~ZO0Kx$WG=T}>$l;+Fn4F#L&&4$XA{rr5lL@$%~b28vSqSdi>w<H-G
zjS^~x`>m2u3JXX+(fneg$dc3EYi8^Yws4}y#bsOW&-4ukV&Dc}NHsRcAbEI}#pkT&
z4WbbBAzU4^3{0LdTL_<*MNN=OQKE8R0GkMn_xZ`UPAQ$4HdjPCt^2POV(qjRB&bTX
z%SV)13z66UB4NJMm*z}Sa(5V96y{G4jDC|^HXaKQ6glJ!JaPBWA-Vc&g8WIEfE7Jb
zrlePk@(kZRO!SpRqMF~lfW|RPmw1PM5b>n5U2vQDpb4P&ugAw@5Yg!Cl6*~tE7?hG
z%Y5N`-F*3ga*49%8nYz$>XBVNu`JkR&%_!am=r;t{AZEp+DsPyv(U32U_v|(`OdpA
zMc+?|97BW1ual(h(kTaJss$lH40iZ+(|xxHSMnS4$qDC0Ft!ei8R>!BP&k@SgKGoG
zE@vM7Vzu5SaG}$K&1xi$OvnsE5sPj~`p@Vh6}X35Y6IUmyC$G0+C?T@R2}o<{yu!7
zmk{l*h;qE_uI+?c8LL#Uzr_(*vav1j)TUXDBno3V=of;L_LU&zvE-67I8+CBs_EOV
zy#H=zY)}IDCIdIA1O~^fa~G`%<{RLv(_AVJ#qA)f>q%jRSFQ2P+Cgo{yShxjA{#JJ
zOMtBBsDdWZO=}vkg!IBQzkup5^d#6M1Qg|HW_3Y3+6H<we8J*N$-?<>3c*=D*EvKQ
zuC5H;<M(}TRW}SoW|bA;qK^c!$Lw%BS$hILl{ID<F<A?2=f*u_7TjwmrDZsvFk1ad
zl8O8)$)}%X{NkGDo*`wQE_1b3$I$`(AK&KM(1zMU*xX54V;l06Q^TC|KlH7X(o0a^
zD{I0F((v%p_z+6z<%bFv65F?`Q>4Oji(hd?(Vdh_FG8g-Je0!c3!X|v_(X(^wEx1C
z!;D}Jp>{S@&Hkl@{hSj=Rn?NUfR<wPE2Wd~`xzgI3vZiO1$#-8kqhtUiJQ$#QB$4O
z{@uI-gR%JMOGFm5z)4DPyOU2HQFeEzBQ)F#z!+w~5<>IS%_nQA;3Sr;Bhaw(JUR6a
zP)GzQu0N-RdfvSjA3!{b8V`633(qnBVk4tC@NMzv#1lwT)nd?iyK$cZ;#)N!-r~$}
zUjZEoy;QWqOJrLF+)44_xl2&7O~~CR--z+&R1@a<RVx)OZOx!sWN|OJ8rJS>F^5#h
zOwz%a+63^(q%6(fh}G$nC?`}5M`bf&eC07E?Lce29t6zxZx5%<{`^+T;X3sV!;$k#
zkpAnxOV_T@U}xd|<4Lxs^j(e_b_YIm%Xx+ocO@-vnf8M6vlsJ8e+T9UuT$h*IQt;t
zRBhOEZxvL80iW4SPKMzb4U4+S2ByqoNWbfabISGg8QV>h_=k?sD+@B(xCpeLZ`=<q
z`tp!vbNXjPzb^JpDP_@|K!~Vyg`JAcY%Jq#$_^#Qa9e$|OAI2SbaS|sQ5ce2+B_La
zpG9k44j*xDvIO_5ZM9F&f4ma!4gzPQgxoyJXZL;7%Fd}YAiZCpobx98kW<Ql;uI95
zz7DY4a4_iJ!?_6LVM(8Ux{oUH{2nDkGxx?}q%)O2UN6kgw2woWGyL>uz~!Ln0aE(i
zPx7s<Vb(#-u;-PT4Byl(i@u!quNZ%L(uqODZR%_N$0UIHVtZ|f&Sf>j5%dJfZ@d45
z>MP~c4ZwDiS$@4hK^7x>d4%z)nw`3rjJa@I=i$zn5bYp?1^)-|(gvWy;#`pXWml7w
zGktO<&p<!Mof8K3o^WL~_z&-#$5=Gs@;pD>tikjqGl`iXTSoYa^}TFCr-4)UE_fHT
z_NdrDq5-(z$P43t!k7gdw=Ja!(AEV=g|~R|wFuYxKK66oiQNxv6F!(ua?(5}>!K4S
z6vN$KCl=+&$?zr1SxL(tDSzdG;Fj<c)-D1K9e(tlf74G!me_wiO=6tKR=n}aF3)IA
z9{H>xWG`;xd$LosbBqwo7b0R%lque%C!%ECrdi#4x<o6G-@M+C;kH6N_;lRo4}Tz5
z)jFCuh07bxG3qUv9$@?F^*yT@I!#+33YJiC4=m~T%XMiFg$1%v6{%=bA6#4=$VISj
zPegJ>BdBSqhzofaUG0z5!?{?JF3X*?La#9+W@)%liTPBe!tpSi-jrL+F!qw(F&VOQ
z$quUzCyBKNT<&8f%Oyq=!Q|;0rgs->Tr+cV4C5*%btCM3j~pt9`l|hl&glKhyh#5i
zz5G2Gx6=Uc%yYFY_L#oQPB1t%WU%FApS=zN2C%_FvkMO+oRKnUwh7J5=AP8=;xxQ7
zKw8y<NN$ZGl3H$8RH3pgOJ1oIMnQB|vlR^@3E70#BkgeON5YgLbi$sLMmGw|i+k`^
zn5#^Xr}#s={3~7(i!m$fq`Nu97poNx;?3wRaLB$+QO)7_>}#WPtO!O1h<Gr8BCC>*
z0+0|FtNLj=LWJ}8v<gBTX3-B=NwY14BV;`c#oNo1&CF%iLl1O|kUYaWCj#D_-n2i7
z8GM2Ncmw@%BA<mj_Z6(Gv}vi4m&%h4Bp?F~t9a3oPJZ$lFy>7{)rMG-AKmz?N@YBj
zw9H@h^?xZmro<L}Z9VQzI7E)~?YtcvffuLsWf)%n{M{4GDx1g*`%X{d-N7GyY)Shi
zMJo?L{crE!=HH^tluG8MpK%L>stz?8Z4jVN6C3?{FgPgZ_h^-&^K}Ew0?lrRsV`@b
zzevg{?+Tw8el$^x8hv6<@=a9IR|m+eBc7`X3!@w_Cfj#JZo`H{6-M_{ZAM4q*L%Wm
zFpY4X(32k~zPAp2xRd;N|Eh}HelS%zhlWQnQ()Rlrd01oSm!;xaega6PgfRucZg8j
zf1B&A#6-fL1iy+sg8k@v1QJCCn$`z3F9UJ|jaizFKlU8}e8L6kl&95`m>6pfS16f0
zTB3^exD_v1;wcFOK`eFU1G<m|mAA5Q?OK{26Nm1|Va^mX<Wf{BxDU<m29&&<l5JG_
zrOgN!AAND^lRfv61*H3Q=TNaSpUVvk`4<XS-ucq4jqzaB=RR?%dzM-<$hXT-gNHK0
znkwD8>UHC<`j8{2!fULbR_<Rn&l6WK-~+;>92BY@bY(QD9y#}KBapl!xH|H60YP|m
zhl}pJjM4^1&B*7!t0QOaP&B8fUatvw_%P6lODP<q9Wi|~GJl^aIKy0-A~sCDh(PQZ
zedDHSpI>{@^9<b*DCl+aGf8|x&BjULUiD@$Crjksy=JG6j`Ct3to_=kELMKNJ$vFg
zoBw89^mxS(d71eeV;ovv!Q`~%Nhm)xB~$GZjC6Ni)7D~B)6JFs@HzBIy8EKotR`Tw
zpmPh5&wWRn6Emhhn*R}nbOD{~Qu4_gXH_JvaRu_J(~8_LU!n;)nFFeQ2^3kQz7{Zh
zUl(AZk8a0-!!LM`WG5l@Z!#;UeV+>ZJ7dBmFb7P&7ye<8!EV<sg~G+o;wIbF$^7#4
z46?DYbs|<G_Z}$UR>I;vC3`GSZ^F&um+&U$imtShoWeQ~I+1TpFNT|gq}H{$K9zpy
zrQv2nrK=t$5u;uYs!J^x9{RF9nRLCidw1E*?P`9VY?~8tESm(mu^c?P%PSaihE2Dr
z-{Y#W3pv8Oqn)Yq`jUAf*v+k|`f5H>dbPshk8gF78xBucOhC`!V~G<t7OJIc8)=$+
zPFVEzEgPB&z9rwlgsygSxB>^Usj;zWrK;FNN1j<HcKFeya}l$zNV_Ne9o4Gz{O>fY
z+Xh2#J(79(I4ivApR4u3ykggmD{|M>gIo=k^S&7Cp;y|S+Te&Dg?7telgMsejv+1-
z*?rm*OIl-jaX~{2E-n3ie-!@kd?65Q#<!46Lt_c~o-DlPAyza$ZkOJL(iB;yiDx-o
z8&||q(&qx_eRuU!{$4JHxtDs8roSggl{~9FmhSFayQ{h(F86?@H~rZ<WgH8FD6ygT
zKxd2g7@8<tQ9$K|-J;PCdX}L<A`33B)@EPWwihO;Xykk2>_46i8*jcFO77ZdJbF)j
zre&&$!XC4ci?=5a@v=_+&>_@YrQHGlraf(XJU}~p%>GrDhUucx`)q|J4?ux(A{wWW
z%;;X5&TLuUmDk}4k3Ze<VtOTp=b;>FdQg~uMi*YUHI{raXi|*&W90Ss>|U+YRLVPI
z3D!x+WcpcP+&Q7<*<jzuW&E<(%6#|ofTr;7d~BfZ{Jlou$HNRpsSeYof|DQ0!{98_
z5A2i8XoiRzBN}q5yZ9rXRPS-$x!l@nZVuNe$D>I~7TrXbKsg#k(vPGY#Af-0x(&ib
z>XpLdD*oO>G~D)4_i+24%-toCa+Pdzhg7NL#_c$R!gZfdT8+T>=Xu$#r#t0(QmN=>
z9B6z_K44gESYKgIIxQE?s*>)-ut1iw?GJanQMi!{8h|ght9{og=>3-1KF6chJ;C#2
zaxvG_k1^M95%!ao(dcHka9_TQU8YWI4LGp=rxg=@5@YPnmCA>+Z_l>{f4IGyY)D{_
zm~T+vFVtjFNK_x_>CHMQP)Hg`57{$XRP5%{S@aoo3*#dG>Xf8l)De3nIs<t+Gn*i*
zsIt#(Gr`nsP|-YeN+w*PlKHjXbh4bH8DcYdAKUsupg%Gxfiv!_L({X;9;Q3l<>|Y?
zfJb}O!q;*eKX!^MIewfP%cEp)`56oGIeq>}!xof?g|nU$J3xjgEWa<xBye{+wwp{$
zg)9^}G9Jr;-Yx;lPm7lh>z<A-^erGoKK!TtFg!W@n^)=4E~71<KZTG#-)Gee?0-H{
z;Fl(LB8fNhRH-BW<~Nz&i|&upxbop*r6*65uG62AJF|#BTJu}z`t+EPUmSWE0?#Hv
z()D`5MfUdb{N>QC!y-zYmtJIuIW@DF{uhz~%jn;+)Dy9-R7BJ~crT!70@h30n;1T(
zD4+0_l|G-?1+et=@hi~C)3Pmn?Uz*8KW-8GrF=9dcRwmiZgl30Kw?WEO-{ZW<io+_
zoE;4hKcmdOMqHEy_BHEqtyh{vM9JwN^i$^Lg&^a~98(<_70(zwgaYr~GW@CMJ{}^K
z#YCl;Las{jggk3SRKuQO6(AdrED=yqexh^|4tb4G7>9;Qy?D!WgdpmR*38pdo7E)0
zPPKSmILwFF5n{m-_@YCCnsoBzQlCF8R*0tn`Anj1rkr<(pL0|QWz%mA60G!Og5YW|
z@5_5$yYFl6x_5RT%6**!qTKw^MjgenT08<iZzmz$zDA%63h->s3)9LP>3nk^h>Rb5
z_95h2!R6HMbjVBizW!opLP5ytv#!#u14>*@=U3?m{7u>Ibxpb*q-BazNz>ij+r*v5
z{60c6GVe~f%3b-q!jI2$eW(k^iHf7LqN;p~?|H8;?i?>K?oKRkR{|YNMK^$!&v8|y
zNpOkRkbj04C*4!_mEQq%(#e|%Dup(H{^Md2(b3z*&C4h6@KDbWUU}{$=K1ABW%vlY
zlWd|Ikgdw~;v3R%{OXKI%GTfJT&2e$!880^Rf;X9HF%lgE$`xFA;91|+|-^hVQ_k;
z++UfwtvuEeqo7^6ID;l80}V#>qS4H-_|={<#4QQg3(Qh~NSClkJ>4>a!=xe1B6E^z
zBBmv@`~;#q=+l#U9s;UYM=Gz){!xfcO2grKe7Q<H$`M92^gRH6JjJ=wo@{bLVvV(v
zJJzIT1Mby;+B)G*bOr)8kf|@bl8Dj;bgkmQq7H>Fy@i2OVD5VzIE6NY@Imm1SW4Sc
zCOprtt_7M+{{)MKLx_tn8>5p{cUWDtlzhIwBwCnD>#*qiryjo1&h&^UY>fZR0)VC7
zTY+QjLd1Ew(h2Jaj}mJb$xCg-gmuwh@kuWJSM!Z8`bX1W8k+h#u=+wFjwh%Xkms=+
zM&%)4yu$u=*o!UO{sD$K>GZI%Uzqz_phuwE`orS{x1b_%fEF!OHvfTG;#YssaU)Sa
zMikg#n2asET`;FKo*wsMu1fdf8J=0LgTUG6-iQR>r}d)FuzeOjvJKU@JQG*Fb!0sV
z>v=1KiFkkNWjk;I3l~khu+(=!deBPq_H|Z)I)sJ!8$m?DMZfH~*T%GQ(Nvz=uBcqO
z5l5P_rJBUwvF<&{tvs>Hjso0CY3erUnZk2D#`RfFxO-L;ZQPErE*KMS1mF6k;!ILj
zDw-32-g`|ixudwtJXLAvo%%ZZqnkn#V=M8&6;P^1&0F@&2^@Ungx!#u{sDgk`-OPK
zInjcnRUC2n{F6uSb2h|PM<0?*lb1hPiE2D`DMzY<t7ziYFJIx?qCF0_$DyLXb_(GN
zbuZ3UZ0%Z!!!&ka{QiUS4)C!w$*;H4PVYpJTX({luPWIgK0B|Ay^0gRXx~I@_a$Tv
z8f3-UOcLF3`5zZ(SiC3G*}JIgauuCLj8`o!4ql4lN;&?ro_tfe9vzeY?tUxnYC$@=
z<OZa4t__|=m5W^EWSot4H=tNp+T8_Rugl!&kNsF29Jz>IC{W`%OB(Mi3k*Dd(uDF_
z*!{&~a^1x)ts4TaE=KUrA;%X(dIO%qi+vglZ$|jKZ$6`rK9okTU6}l68*%O|5;x-+
zq1;6=ZwaYJN?-MNb8i|7bBJ?{IwS3ru`^U;*uMoqs*3my<~&QUv~Y>FK0RJjyPn9c
zQta%wj3_=CtsYU=0r5#?-VRnxGV})#tSQxd{RlwhrRH=E-<i0C&W$FEcNwygpg{Ly
z!X#E~SCPYWH0M=Zv(_x4Q<npaF@prbYWLNp;eO0Lf-lk+IO)j)M<EvLd8`Y_C=nOu
z)h8+G=Uks@5?~Jp)v^!RXVlpzP2`JXIdDElZOl_yade+$u<97dKPv8D?XW7&zWd;X
z%w4(MkoDpVTGY#C18dbq&h$s!AusFlaD8(9$`p(a8Cz>J&pS6@o{!WTrdXExy^}&N
zMXKarN<9`$Z{xgp+jnWg9B(z~xe&AZ&gnPR`uuf(e>cwa`43$u_={740nS~$l=pb(
zC)Ll|{AIW|ebD;ir|y$wcr2%#{XoV2eAKOPJmRP?sXxZdW`Wj0$c+uT<UCjYC0f(l
zpVmIwdWm(fq~^<OPI<2ZLO1ltY%<$v%Xy@|=0mGP(zE3?dg7NCi3+H9jeSjlW#*Dq
z{hkljDO@W!jS2P)7L#IJ1h!usXOCW(E&TMlMD|frSxh<-XGWF(ID~X?LqiCk%2t2i
zEmfc&XL6}^IN|eQR8GCOm%wLC^YhZ)4_vr6CKKamANs}fuSDxksvDi7BhYHKXU=DM
z*Qd+fu#7f5To8T<#n>-05zxR?22^(O=`ie0*&x+4mjC1vbo(Y$(f2u2Qc9?Ol~0NK
z<wPz~ShOQ1Vm-~($H3BdX;D@}x5`5nnRVDtiV25fPL@JC$kCdI*(x+jcC8Y$e%L|+
zc>U<!+M5KMNgn7L$&QA4T_0&?8*pPwax1sIjurCzVq~*(8@_u8ehRoY?0QRWkabOe
z9@F!5z6BUwNByNCM{nL<VK~n*QP_^XXOBOsed2PPL-$OdO<mYpmfw%K7dEcg4))%2
z?7gX`QEO;mFq$FpN9nQb^%Oqw_ubXMO?fU2xv}hymb=9s*%`+=y+1cirn|{aa8I`)
zY(ro&N?;TBCLcA5(>-kdO{Gz08Y7W6=&zNxc`f8%mGw#)VVgz<&FYPIV_$rd{LtO?
z<Gl7UynuVS^ewq^tDvfbJhaIS-w4)&l+oY7;B>t!zr1<VfPF@_SQ+0+y84_Naf?5>
zTXskI6^08$|IJ%G{?S3U7TKQ_R#PVt6|6TF1y0||^?NU3Vx>}$b5VMwc5+IFsEMzB
z_FSZ8LuOHIH#{PHysrnfcRdPc?5MS4Xv_E(FZAz`AA?rI)D*Gw@Z03;VUb#3v!<br
ziFmHOM~!}`fow!VE_+$+*Kja2R+fU#7NYbh_<A!fPGRh27qLtFEMnUkXm52*$|55i
z!rkKhApvf0xYDpGOl3at#K)T)_ubM+AaQLKymeX`f5ML_5Iw&lF<)vscyna*TEyDF
zJNiYq4cYwV3$9M#Z)K@hs2i=GzCRw9p<+HcdASrXL8j-MAe6=%mm8pfl2%IAH6q>h
z^oS)tf0cd0I6{jnhrS2%4Psh)`ExEQ@oYI7OU$TL@pTfU#kGhl;`hi=f#N^OMU43q
zPZ#l#*3tRm{M~w59=8nO3cv3!x|ZO2cyC9FiELQ=;)}o=Ax8|72u&e3svR`@XeEv>
zbL<C+FLDuD-^PCk^H}-XpBrcDSvx?ZOAs_kRav5cB_r9#>aY<m7}ra?IDn2AkNoAH
zb547=EOv~8=s~8=Z%r;EB$n3GrJvZ0P)gHapTCfiLOyuh(%@Kfm+u7j=SKEW!V==+
zN0<(81e*m92<@r7v&AyLqT~vy#?~z2h~ni!sJ>>P*v3=o-u`U&)aS4gYGIu!f3=7}
zM=zVb-BXi6S2;9L^LzbGaV!h%q}PI5{L)rXk&~~-%z*<MMRu$so;WRe`f>hUFll6_
z$^qHy@1?S&$6PRF16h6@>5LyzbL~S&xte!Vv8KFzp0vDtW!#3+O2kS?#(`Gl(m{vv
zdGEX@<yt<<&I+8e@!cyn?&nmFaItupCRbiv55GpvuNEI%|Lv*&kFT=~iYrRHb+FKc
z;0XkG2=4Cg?(Wby1b4UK?hxEbfW|Gjy9EjE1b4qD^Ud6u`RdmFMI}_K)7@vEv-i8!
zdX^A7nR3_`S=n)f(+FRG9`~xzC8endEG@BiZ3A4h+9UlfW0*j{ZCvSeG?x~}SM4Ym
z#QqMcdoqOeH&VRRNp-TP$^6-4%r6<}j>`HpGgtNNf?2)>kpiHqsP<1V$~l~|81p<#
zJAV*g7WdID;-!BJ5m}IePO(%*m$1%xb6W~FDDb6bfR^ixi|!W9;u<|&&fu<FD6<IX
zx-PO*m&4(8zR6so7tKHiVucw4l|~oZzBW>`6n2E^!q=G1=~U;~vumIJ>$%_xm)tw>
zz!?T*VeG?4e8la`@n73P?9x9>X=Ru4zqkml>^!1!@OMqw)415646*99ZZCZIp02Pg
z(9;m6KA$4UAR|(o*LCeU+hQa8X_z={&@d*QXb|h~u;BG7qxX$vwViMBk7lc7q1p0D
zZI8m*m)p+gKWoz-nFZN5y-mONd|oP}{HjyFZwT1W*H+nFZds^+f?u2l6EO^$WOsdU
zAa1R)4|py?&WpRP^v{u$oixWZx92(E`9dV`hK^xOuZJ`0IcBozm%&(z7qd%_y(|8j
zi!NbX=z5QurKGIncDSg*IxhP~jfZ%|y1w^6Bb4#Mf$z!PIi6!WX^1ROa96+P#HCK0
z@-5B4YEdjdZ<Aa8wp7t#e)hZQgP|;Pr#fv2vEkcai#UZHa1!SuN!0J4@b^&rYS8+b
z4%+AOhE5yyO3fyzkinF;m)p2tVST@#M{t->_I~0WpG7y39lRL(#zjq*<z!bdOd`@0
zLYPhW01}L*Z?iP<{qP5@`&|<O4WRSr#f9#D;WNUVaY>leVyQTX05X5K>hv*zI>$@A
zbAj2n56WPzvCzsidyn}i=DTf?Fa!G9>Jb7$H|byF<iEjYbNC(2cRh5btiDA_-fI?A
zhlW&-2#mB4-=qt^ZFF{wrYG4$l1ariN2)`a-z(o+d7?C==e{RXYa}ImKjbSHmE?sj
zD;}wfbR#K?@jv_cTwNFSQmxs4eX!$r*VkOuxK%_;irGMH2+U2tzJW#Ag#obK_$2{3
za=n_eiqoW#Wuq$hPHJ&F&O%5?j;KV7;D}^6%vw!DGnh}2XC29~tO7^EEQn{|^HA>)
z!kikk_y|o&d+Gg2=YD)GS(PuOk>6-_^U@KjYyj+g?sD(D1Hv&<u)wH>W)oRehQ)5t
zkGIf{(e8}tlD;y;HtHH*NKFJTKuUo~E$h9;)b1kTL9+dU=Bi06lAeqEGOrbvpTQw2
zk+5+{swyd=T@?I-(IBTbej~NtcM{=v(s)7dL6!k-&{T*>35DeNRDCEk%TAceE>Kyu
zvIOB+y6zllF5*P;ObgI&l{S70XXWFGz?ukUei3aJ-6Gfl2?r`TM1;mWS1nObfhC#)
zM8)w{grQDT&#kg{X{O;8W4UM#OFI?i^o*hOhoa*;Clg{)I7WHU;ZFm(k!m#M0`kYu
zM<~JT$`{1j_!rT4h?n4%N?nnrbswvH6BdwJA{@q#08wc5mnZUGKBU}RXsW=cM8fG}
z?NLXO7PeLI%j96cD}ML$%gY`fW3+6~(M=Q_R$^@|lS>}NKS{(O=<RIB7IY6a9pYY#
z9HFRHV9c(YK#Y5UmpHF6{P|RLndFcmMdT-ztlP3J$L;&>ccLjxNWG{vXdq)$CZh8L
zudQtAfH<$X;dGU6m4WcVgsU7&hl8;UNi2tW39Kl2k*>W`EmANpN&Nl}mJ?kx<!VY>
z#J1}aTKW9(_Ux^s_epAp_)FAi<T{M-<)SoxiEd0w*qcKo6MY8!3AW9{lz()e&#LoX
z0=Rr0EJTll8#bn6Q7H;t$We?F)Q?b}N!4LC!#RENX33Z6t5o6`iA6-vO=My2qb;st
zXO*gGd_O^gl4RJCCsULM_G76gAh%$sIo8cs_P5a4^H_&a_ur62WpG@uIUvzC&{tAi
zV3?cws%ee$Ea$0#>D;5cF$I&FaZ4C553$h{r4ps3HJGRC;BN{HzuQoGC2m*sm!>-~
zDdwTEgTPU@ne@}fz4gJn@@OGF6&%QdNI{OKm?%xM_R}zo+Y)f81ln*}iI`J<(w(O6
zLAD_A)Jtv$UPaHv*#&FnmEmyg{mpSi#Ca-&s15~V)uWRO$`nH|^Y)v=c`@z#So_x4
z6N)K6lQ|XVh3@mC$_1ZhYCxI;K8SaxQqPWLqryiqggH4F)y8QI_5mHCo)L=rEa&f8
z?P7W-+!gvLoxdp1WuVbNug-NfhTquo60(BhtS9cqg({3XV1GONuziL4%u@I<0vB=e
zMo_Y-eX>TdY&Bg*6xq+4XZkjQ;MjiaVO4lWrd=(NbgNBwIS#LOc0ap;_7vTUvoc43
zjphq!x<0cLU2cB<qk0Xe^J4W4uJ`Jmh}lWnUUtMmOeRtsfmaqe-7pW=g-Pr|?(k^r
ziNVoY{KLunp=iYZc9J@n=s>p1&UoZxFRAZ7e#EG6r`~DR8Cq2~4Aq*C;Ws;O1ap|p
zOP~x+FB(XB+|rrN^t=#(Lv54@Y?{`#WYb^l%;oB>G1R?^xBC|f1;{S@JIE@mFl7eD
zP#ipjRklOD;4*nFe9?HlxUQCb7G{LMY$Y5Nm_7`)>SiomFHKoy*>oQ02e|gzO|zWw
zocGn6{JFtB#Z16W9e<j&%;_Cv_Xse2mtM!tU@@4qU=P}o;kKOXD6w&QC?IZjwDUh|
zG(bii4V_4p_W@9^JaCxsfwzGvLt-lYN%ldv=F?4RllR0i))JaXj0(=)Ei>st2pAFX
zf5^QLxQ2pyOHKX9lY<Es*lK<wCjLo(4@3poWfSBf!5n{j|4LGSx1j(25#TBQb0JQ2
zmUcHk4-NW5q)Zxy+LsTJG38XD(GBH3@P4$AI@G~Hg1}}TK-hL-N5$5J)#&mj^_2p`
z4RIyRXn0fG!NsVsn}pkJzuzFmqXa_ZyeAeCr0=dpx*wL%teovrp9>wxq6uW@fY2Hh
zj~gUSQ08z7SP>-OX^NVmVQheiqusS2p}Idw^py#S!L^eF9~}Zw1Ac%A$T`awjdLuR
z<&esRvAR7dQH@-bK4$$TTq|B8ZG4o`G}JK4`*4x-E;1cem8e58h4{nW65AZU#PmBQ
z5iBSo=UTxkQySLsZ5puh<q@={XhGmOiXd4GDJME%WCyLH1cG2m)|aoOE9-Ab;0odC
zQf(gI+HV&9QGeTuAZZ$B;~dn8zQ`K$nJSvQxEFpN6AY7N^Yc+uhmZ^(^M?5S#md6h
zUF)yHi3tYmT$BoN{iv*4Mxoe490ub~DSq4Vbdu6UWCCEfpeKZgi0hBT5g9#W%)c}(
zq>&eHCGNi(BcX*59!I|0=BX0!L=lc|V43xsn;v#rr8_2q#amH){h)IFU1FHfbh~s?
zzI^h;`YA0r^z+ZhP*hlPC2URyLw7_Z4=L!HfFEi}Q3V;L-~pnO{&?XgtT{t*&ij<P
zCO4=Eo(JFX0?p(1Mmy7coBRet4Z1tHzSS?Kh>)IxL*WLa>3K27LIRPSFilBbFlXeA
z<<!{$Px7a?@tXAw8z%rx!ln1~1L~kKB+L;Odl+rL`zbmZ)#1RPj0Vy*`buq-@e=Ni
z_JDm@{_f?;@xyUxf0@rG39@oE^ls*0_D)~RratbAlcx@UN1}6PenT73293`7ay*b@
z=E9q~e;J}NN}zPOd30OTyTbG1-i37|XWoioqVyr#7G07aT`T|L0n1F%y{qs*K|Y|=
z5sHj|_yE_R90!L@DCjJ*-|8#^DwOq`LD*83%(xm^hZRbA5>dTcW?14RG}wgI+06T1
zM4N}tXIa+=z@)N_A5ys`UWi8m5w!1;fLN@V5}a*=_I#6sKvl-$Y_uP(`0w+c8K>V#
zJ@x3nuC>@DR*|%0)l`ov^ewoj!^*`_R!vkhIk!!MzjX1Cca%EB-h?$_A8n6JoUvtE
z;k9uL9&uy(+x*dCx*C8^VjE8MO-(+`wp^;^vs#nUS1m6uKfG!WDNaQapl*i99a{Ks
zH`p|~7OW=ti>6l5rZaInFV*_Qp7DAz-zE;INP5Xw_)#Ht_>#_&{CfO3Vm3d3652aV
zuLEa#5pCUhxfhF1Vesljci?`IRa1MH`TCZuoiY$SY?>J4M^kY6Y{x3?hSYpsK{<|4
zk2+7AL2rP}CDy=Ga+BEvcpbLI9LUZr?O)i4s9s2;8m%5IYB`BuZ+H$m*7f76MSS<r
z@L)Dw4e31(Dkos*fV!-wCtk)py=6DmiCjF?_XY{s^mmi-vdi`@Zl5SNoEIMk*%m6y
z{%i?()tXkfhU#)}+{*+tv^PTzmImV4`C<`DpcZ{PBk{OCz_W<2QmwUlsO+ckdOzMH
z1{|F41$voH*S#)^JG=+(oPdDEXkOgDvrtKF5fl^Mg)6|VH28rc^yfq1oANz0enIAA
zY6Ant8gCpxO79VRV@tLq;WQh&8JZ|86Y-CoVyOSWe^e@fesIk$&=z_~9Kk!$NX8Oa
zW6^33iftiA=JPizJ=aWDMc$#FdMjOgM6~1fE0`dr6#h)23+XaLC*RpXMo&$^_3;A_
z2JrSU#L#ZF%DKf9bA5!gfcdWo3K{$yl}@odMP;JsvxFH*2$jy|^ecADOL6B&KD1A;
zZNq}>CGi4KqD4TFbuZnGt=RV>URm!bVv_NSZhy+LVIH&#$I@yl=b(aMd-%Q-ghq1-
z$welhT&4Tr@wz)m+RZ+q>QCl`e?}0`HS-eXNmZ~@^-F_RM{+Djlgzyz0GKeOWU%+Q
zJ~ZrU2hk}qyJAce)%m7k?c>hD>y^+`3PaJJv806rnDVFwLGiEpL=g|$;(MHTL0JQv
zd^<RFX4FOFSm&sX3Ak+fm@7WUid6OAEVG&k)E=n{Kjp5JZU~aixwb0g@_X{^NOCFJ
zhESmdA~Grld^<s$AX1zbcZ&LoK8_$zelGocI_AzcWmTdleGP@l0Fx5cNp+^=wJomp
zFf7seBy~@CIbHX0rI5Ai^p+Ur(d;enXRnuC&|G&aGL3Dg15AxH2TLg-tLjl2Wf@8#
z;q_4T9XXve*_QUQ0cNUJotVQ`BiD)fnZ$G6Z&4y0k!n??3#?-=ydfmprnpUM@<O^L
ztVwoo);0t8O{5Is$<vGGG788xP8A!48533q_B|1maPX-5Ppk-BCu1)0fvlDYs77BM
z=tZ@mXkL;1I%2Bw{id*|Z`asUw}*`-D`7w3;xqYUT?G*|GTc@K(;_!z+`-ASwTHL$
zcS^+klKX(7bkvE<&b8kHd#tT{Pth*D9u-<~u;JU`LWx7M@Un{t3T+0RLeZs4=cw6s
zErts5g`kG}Q<7O3d=BdkxH_C0iJt0$I<AW9+5ZP@BW^OhSgh0g-pGub(pR#?G2aC0
zEaLIy=ZeRQ<~P+-TKed|CJnHsC1pMSB(qYKGg}{{Hslz`+}iS+2cwRbmdZ!e>lDtt
zvE^Qj6{cL?gPn>)SOg`<hwyq^^~`D?5sqWe)7o9{`Y1wAM|T4SqRlbv>(W-6-yWC#
zk&O+xsvJVrv@>hXbexs=%NLd0lXp$D;kcG_T)vfm2#W7@*!M<0d@118<2=yo@@AXP
z&rf8vSF2#lhRC{aDBpXZ-R@KjOdt<MAKG6J?=YVtN`?q!FdE_SQtl75T{Zr8(79Ij
z(rst{xkrL!mz931I#921?786kU1K5_Jr4J1yqPxpF*(Zb20H!zg^$^9<;YR!SG#!N
zn`6Q(p$E?;m51cFWnJ-llrO=gcM0ytgP-sY;lFj_{)lgbmnkNW`v@(IlYfX`e<KxW
z<xz!bwMjZu^_$}#+n+QLBUAoyEMc`k`srHZKOH&$wf&Kf5X@@U-!zd&n<j#V!h9lL
zDw`)4;2RYaE;P!+Nx&4CQ$1xE-U<t`8kC_$u5}pAdLPW{>$rRK<etALjk?ZHR>o;W
z%q<^;jhI3!TZ{prILNQ2ZxCMT?RCtGgV*~I?UggZm)kp}i$&2nBZZzW5`iw|OAG+R
z(-9ojWZ5#7oS{}10uw&OD8xmfE6k!eP1AB3-?V<(OhlV5im&bWD*O|Wm_YHwN)}&B
z<R9n<;eGU-$u7udl}hXE&0;+eKKc}S-l2$+cvwpBz;c_*x_}Z9$OtlEL%-iB;klJE
zm%_O(#hBG&cT(0@9ZZzQW75bivlMRM)jae@gEybqf+e9f1%sHt7gmzOt>xP^<B3Z!
z<WCRV!~%p#A2FLYVFS4-9MB-aQ}l|d#2vk3X7@&)58if*B{Y<4)tQqgjFtJ7b0MLt
z=r&7Df6<oIy1tBa)*p4HDC4(S-lHh0QN2BQWU*upiQBOrq*2p;a+vb|MCr?=hVk9;
z<ci=rpd+WH?+&gi8mv^PFraI{(j@VG$Rxi-IiXo14ED1mRh#@3=3p>Za>&9*okzeC
zl}Yq1Z%~|r@9thz0FO!n@+jSKnfq}o>qmhwu(JIv)&U?P*&&0c9N~EXhmR06V=L^-
zO9;YM7nm<bCg|ZjmV39?fZas?$IU>>70}mRX|>kNcc4sCaiez?sg#gk9O*hvXpI`$
zV6dJBME*Cvn6ilLF3STo^>4bMY)7d1Bls+zL^Cw&&Nv=QUyWz+kwyd_@WONvV!*k3
znXp~oztgS8lAg5H)+$#cvld;-qp}vNoK8n1+&nw7Z*dO8Zs9Ug>K@X=F6fe#eZLui
zZkuRgmgaRd2~cjY)4fQJTsAIDt(~|<+Hy}cg;j?W6-!PzZaK2-CtZSJ`WXFris{gD
zC`v(iENaRkve@_2s@1a7<4@De)Gn9wN^;J(xTDm!$iMF>tL6*qXiF{Rc{W!ZUrgNe
zcP!Jc2<K_<#Fw0xg)<syZ|yC7I>6Ij2zDAH`DKLR89%D`o2z=8Z83Y7i)V_b+uDL4
zU<_2^Wk~9{4xt*Z`6TQVGThjAU`!wmYhIv$Fg{XvdhRxoA3<trXUOh3)$3Mdem<%#
zq4i?Izl`=7<~EWtF^nx<^l1Y3GXLzdXc>7xrtvuT(q3#_1D>MxduqAm!SYx*Wh*T)
z^iu9rDhp=5f>j*sz~ABky7$htz7m=9HGHhFI8@Mo8pg?F3u`e(|8af^co2URSWqu;
z9o^Dr@z+uJKhOIk7HF`JNdN{Nk&P=0aQq2Sg`KARP$yYZ$c5>XoYn<<0Cdw)fUA|5
zO{_}KHPWI?x=`tGWSfMWHsRAz(XmB&SjSB3K!btA-Q8-c7@1yiyRp1xB)@7HK?ecO
z)KVl7E0U@Z23qIZaCO>qHfCXhD}-Q2$NhY-t8_cx*wqDV5I$-;>YD7e<3N>O@6TCt
zim5)IRVnUDB4NQ@n$WvXWpB%x9MUlcvdFsgeSsZlZ>JSO^aF$FBc)MZ5|I?+LWQZ|
zp-R$vxWF{#$4=dH%)wIJ>T?;c;<f^*&sYa_p=3WFWwGEzF$Z~)e1?gxr~DYCdLx=3
zvl1PpB?tX5w51|Hz~IP@awy~#A`>HHo@{?|7iB5+Lv}rn{tuMrr75hEU6eWQ`Hw;g
zLW#6EP6bB7{nPBp%-Lj8g|sV=K1vBUvb$GXg>khwSo&8v204h97NCU*3)Y-MevZRx
z{_kZA{9Fw5c0RX`6VfgWWpcx_Yhp7ZxDo7DvJHtEzTjDvD$lfgaUR@GGO5GU&1vEG
ztK}4%LnasW{N%N_qK}LMw&{{u9m~4oUDOdxsk43*Aqtx1_}Cn}kK5wc13sf<0sw2)
zj(0aRQJuq4;wdiz@7T3DimRTESXMUC0-fBIg?`+;@)K50f4YLfQCR9M|K?lX{QRW^
zkCfT!^Y<(Zj<6CrAGO``EjO1a_bNiqIo+nbz@P=sktX<=)5R2-2kzZ>rLQ3K++2^{
zbnu55LFtaN0ni$qV;16r5c^v^@3XFPx@{kWR-0^p6Fai&xg~)u@`b+x3@zD<$S)P2
z4vO^8^?knBE1@s+LTh!ntEZ8Mhb~HIRtMblveohi*z9H2s5g4*a?1=vnF+T6q9TdA
zDrTDQNn^j1;33Zm;UVw2=9CkU77j6IwYEMTSUf6GjizGD&cegKo)%$7Z($@s5ym{O
z1gTMmnA3IjLh;}_`x3vowtC`@=d#mN%-qKz*Lm&v{oXg99sX_<EqykfUGJwKqXgG!
zJZ>B_Pij}c%*RwN&OC5ZT?o}|ek4PFOR`zd`w(2Q2BiP_GgRY9{HuMFL=aaRcTj;`
zexZ!NuHfGr=Ks5#{<Vw#$t}JPbWX;LAajY{ta_cc$wgLg(Q00W3J#$eZnEG`_3>iP
z02Y)@)@Q2bct*`|6Gyh}hL7QqX|TQ9^o5@V>_E(Me*hqppBb4-oc^40PyUzcZey~-
zkU~Ps88M|Xw`#`^J?-=mbj(6pOq(rV-aX%HZN~GkAO4lW<hi0{!Ge+?rOV8Ee%$#^
zgPiFi+Fa&D`ZnPlOD=k{sL=fd14$vBV5tpIDLVxcRW;o@LH=<_%h(Rc2yUzqTttfZ
zk#)eR_GO&s)S1kveZujlKh%a<!rR(OAyNS<NcPbDYs(+6Ck@dx`P{TwgD(Ox>sw({
zlM}?GMxhUYSG;^CHvbqKoy6Qc@?0L&gF;zGVEuc`18;~%kIRbo`JL&7jTlF*AhH==
zMzo;m1naJ-)>nn~>j8MFQ}Jc37-`6k&pyxjnmzl04ako5*wIqzw(^6^0K+Mme^i{P
zpqyQGiFQ=Xf`>wU>oY~R8V~gn*48M$HMg@j3_aLW4&5NJ`FlLykWa%cB0gf$X0}=8
zjrYpO41N5dLpMEsOHIP3S=t<Y^E$c4s_si!%8xli+Zk{(=vfvV3#gvOxi$?q%XywJ
zWD$>5n%rw1WjO*`>go*d+Bqr{wV7Eh5Bbg(Y8P+q<cT>F;4d1S&1)O{p7OEJFCRN-
zoL+7vrS)|hehYe@TskeDWN8%UKhAT?(Nw@B&gTW2|LEbdR46ZwO$gZvE4gnc2KTdC
za)KBMjC2c*iJsNZ8#dXqytSqO*SP6Fc3)t0kT<|C#PFp6uC+J<C{}24%ejmCKV_Kg
zl0D!aAx++1XTw=uQgw6HL^)Ph%+)a9{O>E<k{<yp7XTjI#F0}(wfWm;SGtg7J*ras
zIhqgzilePf=B%5O@|9wU+}<AG=)!fGaLSGQ<TLK#tfc(=M-vWZfq3*6QRN(<p;qtW
z>2hL#i)NUQbuJ4afzzX;m6;1Ejj23FLJmlRfP!v{DYZm{EHAcu{9D=uFT+An*->8c
zk^Im-Yr=~$k;6-60;c;&id@cfwz<Ca?dZ!MKFrUbQ{(u&zlhKBU5gA6&6Fs_^2>Yi
zId1lz`JjiPbLHo-FM&zj5QSqB6epES3ONp46I@Hdn%D6Rhg8>WQjrBIUIwjcxqx(B
zbJ`f^)amWdaBNx@+{DTci8O+CdVRiigGC+wfaA^du_9kvvbn#~KB3fdwP~*-MRX}w
z7r1$6$no~sSbRBldcLZPtcBOw2UwFgiBn_~mMAZPN2G-?lVe{4058Lqz$L#g;5sWz
zluwW#@F@KD^l0*K=~MTpI%9TK{!;z*lE8y`%JU=Aan=)<Cm|wAytQC65%pSsnrS8t
z0~$YrbS{a>76AwLAW~l7*}2h?lFH_l|HLELW?qUz{pxw&qimTWn$q(Lczrxee4E66
z1zr`pWTjV6y+18m)(F@2Tvpywq-&3W!MnCq&Z`g5+^QoU#3~3gtDUp10FTx%;p^Q%
zX<d>vYr`R@I)`Twr>0Y0FgktW(g~+u`pNzAn>{e+nA$rJi)}7$-~22xpWB^`2F}}%
zLX9<%=`?!!j_dQ)!(_Hv)BY0WnvI(PAn2(~kY=yXZDI5F^KhZcT7dORWs1j^euRqw
z8kk8o;o?Lm^rfQsJMn#$KKaP5_eWHyN4S9+=7-gS#J2ARk6qqkx2EV|F%)u~>XdTq
zdJn7B^6aZ$Te7LEY9ke<D~Yd^k;SmP%|UJDHr_wYrhOWPJhk@1?@y!{40e30mTr^A
zbqGlKZg_bnGnxWet*6A<Uter54)ow>&-d2Ctx~UY&A10>*##2&L*AHB^b1F+a8CGG
zJ8TVqFPi_4vF(4XqrWKw@vt|Dpt#h@RdB-Bp8$sakX75Tn<lkSNZ^Csn~T#$k1g>x
zbxn@l#>wcZjCJ82%A!&-S!)0>&;?{hi)qn1*e6O8>4fUy3j~uf3KNHihuJKK;K_A2
zp*Q8S;*i4=Iv?h~AA<2BopPN~5{E&No>GVlF!0FEcAGDQl=;1rrI}>R-GlL@A|)MC
zEobIv3V#{Cliq0N<$pN}j8{N;I47@y+h!u-^Ow!X0A6)jr(%9_exc#mL?_ui(zZzF
zV!rGGlGifq!6w7G6?6WB44@zeF#*n#d`E2S+lpdpe2qyW7PXpF{OKBp)7RY&&OCW=
z^UW9p2&1;<IjvP%xjT&w0liWOhb0NRO?so=Vp}sug%=2xLJ=Tv)g}3w=btd8K`tDJ
zxoul^TT^1kdtc(jf_7x2Rx9Xa=Do%cY5#!2LZ1-A&>XkZRlZ)0(*s8U5<IK2zz~e3
zmGwbcy`XCVZ7y<ge0ymxp#w0a<bPtjwr2Hd2ds%FI^7G~4Z!~di~MM*pGklEh9cA7
z5(eT+9v@<PD#NEgNKv)eWQ13;boOgM{>rx7$JV|SaXl_}U1K2YijR6J=VFC&Yww|h
zQZ8dVuux#`yske_f}NL<VrM`cb#wM6(k=DxX=K+)6`jX7u|JPj#hY`2tgn=ZdzYeG
z7FMEv^<iv+B2tE-eKvh|JV`!B#Jd$p!}c(}7rmkR-o{*|v5JNJ9(6U<?nlIBu$EP_
zE=O8vXOl_I0Q6!TOD<j$P)yKIPDAF?&p*0puDgc2N0)h3F0iD555u7OL(qPi2{T}h
z*$t9m#*pYsxkfprQ?&4H$))vFri2dJC9g`qo_X@mt-8(NN8FRR{P-!i*^b*Kk8tuC
z0VF~-IozFb9k)f=Df@kQ{4B_t^Klv*+XJ)I&`gvz%OpN^CkA)s%lL6E_~MajTYU73
zTj>gqbK*gv`IK||{YK|@;_}-;!1I)SsgCa@70G^{Nx{Y|>sr8sZrSJ<7Y0igQ)t%1
zH<57Cnp3TR{0oHkZNfOKFTMdazW@yncOw!)hWoEW!oPMk{~Qqt&WQQ<odd`TRc|?A
zIgZBWy*~ivF8&|8KpT!koyB*Bp+IS^{kZcQz=J-34F2U@TmWEt5=SQH<sW0eTO{6G
zDB&%_=QEOF_8QpChLD^T@X=EzMRFP`rC#*J!VQ*ws}Yl9&JQ3@ybH#VmFcIuc|B0@
zO9(>dmPF=Ue{(QZAW=+&k^8utPVDmVX+7eH-$i0B*@MQIXp=~*f~xnIlGpd$X~x2>
zZ>6}XX<3ccF_5CtA>*RY4+{{4mLIX{R(cRI7W3ICvR)<3q^ZMQlMRLxK$$HaH>R{B
zmj0+BnVEvcih7SYjDw<`rn)T8jd6I`@oONOW0g}~2I~|*5GG-wyP|{PX&_l<E_B$b
zcj2L@ezTwJnuXdIKj?kF<@N7p;HiN;rXP*VLGK+LAw|Av0~BgNTe4Gc6CPL1Ds<Xl
zWqb$oIxeJTsdY#3hlySSH~=+<qqxS)ssST^G0v%mPt#!u+)svDqp!fPc9wzw_Q9ZE
z5-?%{7ZAIM4ZWp}x!2~sepVibFi1+|lS2i2092j@DH+HK^+ridPcUvs(i}K$N&W8j
zpX)CsRPn}}H)ER1=cCyRK$eLkjpePCpBIlMz+Y7fw09?s#W;))mCEe7<Cd@Pc(Brl
z1!&NIB~kXOGW6SnO*ONC8+;#f-WResdBSvJ=mZCi`Pc26O~!23bkcIvUGsJcxem>5
z)B~v4m_1Km-SvKb_6H1f=Pv+f8)eAe_YFW6jq>7%YE^Y2I#pYydwSVn@GF}My%?YL
zl+Wd0B-%Y_O#803M2H2>3WjGdj~G9-23*+^{ch5XMMxBKN<upJ)4L7IbNI)5k}@m5
z^k)W}HZ~&}TvH8)%*%kb3}M0&zCfxiCEL?;3H`cwpz(tTFSD+T+71J8N8!BC=7SDQ
zt8wpcO4BKdWCJ&*`&k!!kIl~GxVN%}E>AOXiYBvzAdpTt<ezrCrPzD2MFEg+eFc?%
zh7CC$DIvpgN`<c(K6YADat{PvUT1BtiK<_F*7I#Aj*BkB1wtE3I(=lmMLCGMALl|o
zpVDUH>8A4PuGSkE>fZ-W9!xhIRB@p|W)&*tG<D}ILu_t-*PC2UIyy{ybs7vI?{#84
zt){3SU%Zar_Ke=N$u-j9Lopr_Y?>_KTX7&%YcdNkQnvq?m#V9WFhjV+i=HXG3e&3f
zAKPRb?xzxKe=F#_o)%PA-Y-d<*woLsmT_pn!S>54v(;lRtK)kP_rq8(E3PSI(r3za
zVw@&M-?VD7|2h|ajnC!~hW*5|e-}`bl3r>T%rKQ;^Y014e=mMHjDVNt#}crfVb|M>
zP;^L!d9~9>GClfzaVK-gPh+%QD<31Ja50cCSQe;0zZ9;L@8IFF=LP)`Yytq0BYrQJ
zgcc_$a9{L37#ks9Bn<=6F><Su+Y*82vTyO$cV`>WR54-(bK6BH*MpnH+qfWlRB9>-
zT4X1}V^46Ml5n(wy3*?uDPkSakJ><!+oBkOy$&E)=0XO#jdOoOr~~Kg0B8?Aj_CXX
zK)uM-i8GJKQfUW{$FXfdu|W)~q&|_7)zTJppDIBx*))RVeu|Erqc-diN93Ym8d(rL
zN(xYjGIAesb_RreK@<f{3*x_nIg1@FtfjfB=vmp6OAr*;p!?~D0c*$DMn2<i7w|6S
zvB+@nh&kgKD5n1grb^%<ot1JJ?Q_Pnz9_da|K5Avhd%x8_iU|^LIn>b=@2yC#XgVp
zQD~Y=XY#)SUiAG#B<-%Bq0C#>UwTB1tGgeS6VKyN>UHx&!uipJThTE-2Tfg^&uO&8
zeGcUE{LzDSiWW%Xt2rx<`^hZuR`$U$XjkguoB5xq(jW>lgC_NEmSExTznwZ+6sm_M
z-)j^`P+t(oQgcHKodg6RmPr#LD15B5m}1X3%%+lGZ-oyXr3K-1SKPOvtKZM07^Wop
zX0sbT-JQpnLM`gB?e7+pCEd!WwR_#B0AH6Hf%`gCfHw?wk}If|zMB)eG5ovZ=)%eY
zLI0CcN;Z4&%Ujv9f;iDZ3}Nicp++X5*=99>PbLV;j1%53Au>Y7WtW}Qm-;2i1PB}t
zx|?<&vsh<VF{3ue&4_x$yC{o;$IqE@9*dg(^G?ApFttWZu-$0KEVu-pN(9qL<k=Av
zZ{@jmlHz_9+13;X@JEf|&SLcwf+vf{*JElj4G1IS=as{RmK6*F*$w;Sqhc9hkf-80
za4}Z7tAl%YZ$BPPho*bsJJp^Ch&|i%XU%#%D6-;A`x!T6x%F_SHe8n$#Jqc?pYG9A
z+yUAM5_^z&Mx&i3C8aW<0x;?ZlE_!N?nQrb76dzXK9h_cJZSgV-A7@uM!&=}%Vkj6
zCs8hu_ajH;eyV#|gYFREV^I4IrC}TEb@QiestE5M`5q`>!MedsTNd9kPneg>dE8cG
zhdsCp@yEVpB#6au$Y+>El4uJWAoN?=5N{@-t;Sv>iW&i{Koqw0_GSnNibA{!!%mq8
zr+T{@u`;u3u@Sc)$Dfdxm*{~I@a!DZgTtX%NB(KX3&+y!Zl=Cmq`>&iK-<GgOc|(B
zyF-+M_m<|sty|!CkZa~us;%Esr7W(aj3DQG))RGxgn4`~nFZTUN}#q}$DkYrDG-ny
zvvD-H%a>y);mwmqc9t1(5;H<(ibQgK%z9q-f|sy6v3*4Z<8-kfGI%_}-}uhLlsmfA
z15yTiiq;%$O~*?VxDqF-xNSc3x#E7Xiq&P`lPS~UWx3KZphSJ6Q@^aZ>vR3Zf6Vxx
z>Ha5?!fPYN!yNPdPJQ8c$d*L#P<Q3kMfoE0YsEsLM<(*L<>hnHf<I!<-c;ft+*(sx
z!wIC!=B7Q<wEyuniF`&v=JFzD+9!3UP^B{{J5?-k6>ZhXQ;SYztx1XdhDS1^(e8BB
z<Z>QA=$4sPat5zNEa7Ty*ed;I-1Z=-t^|nyYPat|<Jtmt;O*-$ZNPuu_x}B-A00&B
zD42&Bw2>ye{ri#0jjI?q$#yW9Nf6<~tv*S8skkLpp<)Ub!)G1;Az637o7oy703t!H
z(*%p~6iRK0`ilubVt*)(Gf>CrK8X=yIsr|usut#HeFot=PpU-4jPW?+SS)2<LjfT%
zC{%C`z0{YhR&qkvnElIf{Q`IX`^Ys~973Qj<7DrVoUTKi{Z*@B4{RIgkAO)_p`81~
zi-C-oL+fnCciCf(hHgxXxPXd7g#6e|;)Z^XavVi_md^xdjE5NUln;%7AS_QDxXXJ{
zPEn{OY6itZ-LczRx{HH3=;61WcmV}9vjD_2z#=lk_N>)5)x_D~@G-ivfMlVKP}38D
zXsAV~Ewux4Oc{gnCMd5h$=XaLU7Oz(3WK=7vqc?!$uixd);kkGcQJR@jE3@>yT&@Z
z!@A(DNgjdmTVbt`QcW!_>_>h_kyoJ1vVPPNC9jG|Zq}najI)b@dV>G4QZ}8LyiE_>
z(d~~eUt00>iQ`*HQZ54o`)>zsi1VGYB;QRB)i&Ok-rv#+IHXp?cb2T<cyuoB<&2t#
zfeL{gNm2+KDt>|O$Bpw2pFpH-_hi|fPZy}c^h-A6bY%uH7%;~+ah#X&!oz?)_N9zM
z36g#u#Oe8Rzt_6`p(1;zeuDf0*fQaP<j!Jmu$l4J5ND|d^`G(sc?@J6uRQ1%AOcA=
zgHBP{j267$Nut}!9wT0t`<>Ls#^8${cVV_BE3IpMOYF;2wpphook4Byx&VQ-PmagP
zCWAn}vVTV)vklb_kX0a*kEX8upL<b;P;05Si2E^tm%v@p{<w+-SdY`sQMT~<N1nX9
zRv4CI)xs}1I`5;GKPaace<$~5M-qM1Mxx9m^(gr>6YKA{(&#@Q3%)C=<mr`Kd@JEA
zlS+?NK$*QhszhE*u+I{MdX&5_xfbeWFiDY3)<)QG*->okV8ScnC+;`IDbZ>F<gj0d
zt?)tTj()_P_UA3!nl$x&2MfE8;8jRr<PYNDT!tt%mh=y|zmGh0*AR)59IZPJ$Zdw<
zPx14f&xQt1il6&PemHdNFu$ZDLX+rK^*^)!ZipL;X(pei<47IHp)(=mA|+a_CZ`m~
z2PBR_=hZ{d0Xiz_y_nf*Dg$g`yO)aHcYQ5V1O6wG#hcN+BC}<r!k*p7R)env>(EFM
z27Gyi-TO1sdK1{!Y0iicTszb>hh3~>Y|_&N50eG-b&Yx2l;&LC4G2$u@|UfkYG;8p
z10WJoRAo`ydZQ)CjOSQE8q993wGkd;g}HKzh^!L!+Si%v-qB{2;?1@FVeui#0<Q~l
zgggLuP`>=u_wl}t`E;b-L-PG30jnk~7{30y=}Ag+dEENGn^gvkOXY&At{>_ovbSCu
zkCvaJ-7hY)gj9rU@8F@fjV`+%!XZNSCv7B^04|Dn1x+3NYj^EG<`Dr8qW(jo$@^Tu
z=>ciavG{Vf)30)WNk*Oidsk{}`+=RrP$5cg>ez#yL4T~b^f1qL+{cmfLeFzv%f;d<
zS{=?*5E-r$iZ8FLJ|65OY;t6O^JZ_0Z)i73rxm|oCM=Ga>NwEYBcy_L0W6V;bf*~$
zq>b<)_F;rbxsI~$p>YkNac^@`lOy~EJ=342Ykvmfm@iStWqdFX=_4N0mra_wxuA>U
z`fZF5OdrkzibSV9InqVk#b?TlR#j8us<Ulk8X|xqWRPS;Rh{DAny|cBohrm69}D2x
z<{v%HW9q#PQWwLVz7uM?c(hY?1Ez31`Ltx5l4>1-8A2i;9IdCT8p*27+@tnL`j$bu
z_bU3&5LAw1Xi=hE-lCT;e8QtfO!0j?;3eXn&x_3Tx=Y1~3~iHWF_VW|C5d8f6)?;-
z3Ea<Z)|#l7KlcExlmnSm`vjUWiMg4U_jSl^33^y2e<Z=$U;DFM#3OitY_+uQ<>AOK
z9wUm1v|}HdR}^;crg(yQMk!TG5-_+u99&Jz`L&St(ry+LMkdI1fxOcRBc&lx;<-*$
zc2}SFD1P$|^Wi}Moz5sOQ=ANu;`k9Yi;^!l5pgS05O+<|KMH>W&$b<wSD>?P3Q_0z
zXna9=DR30gCwosWc;~3tK#W?E!UF_Lx3kY;_-=kFI(@utme3Ji6hBf_eK&@+A$F9Y
z?_??qlSgKik?Bsn+*^+wGH((s@b!DHTj$E-UI#8KP<)^*Q(%jB{ZXy~6}13XE?Q$|
zBdlx>{6{qM<1_R&L1z^SALKmF@98DSksI1FtR+RB$ZS$yX?M1=zNMr+BB9xRcMEla
zpv*5OBuQ;_eOg{bI5diY^1gwEf4BLjxv*fecF$x#cVMT6|AdM_o1(z+!SZUN?qK1G
zdGqmlg3Wi694U%4>Dz~60U~vw2l0w;48HC!&8Pjb0|Em`F5wsbp|pn?421~OD9=S1
z`PaDx5pgYk-3XM0S5$W*N6ZI(ymSdk>;k-evBgTKk4ATQhfXmaxUVa2iOw<Vh7Z)N
z8#P+Q)DRlpkz~V+iL}I~E+}aHtxw?&zC43Ys|ag?9qK$Mq-StM=2M-j>gp|C5Ad$2
z4epo={Cms3mVDBlemDXHrMOSb^5%H&x|Szs%yK(|&ok^kU9AcDUY7CrdTx#*U{w`<
z<y-rqWV@NM$NB1b`^21HVbC4<uz^E&6Q?ni^=GU2<UpZ|{g8v+=Y`LO&_|;Kcl;6?
z5!JQhG^z&em^2gTi9dmv$^FcbV?27fcgy57HxYh1vHFybtUdU<OC0|Pxp<02V#d=E
ztes1**aZDYeN-#>sE6L9>ruhP^-+`)8CE&HBg#*w3b^Df0(i8^Vb6In*t=W>1o1=P
zd+i6cnr#B2nqOfpR$ENgX2*QMURjr&5?P^LA7ujXJq>Epu(aFzqrbCFqmZ0<(?vMd
zkG?+C`#*8WvhzK~PM1H2<~el(NlSt4%tkAO{EZ;PW24PT4aw`kvVfF<T#%_)^5H#(
z*(PGD%z$7;5h-V_Y>g|GXv#P?P423Pzbe5C{K1dKm%MqIr-B;Cjb1cn%U||^Y*BDH
zg*;X|=&2H;0e<)E5w%i+kjnjLldqi_Vl1ZSf|FU-=OR?M$N7#Vg0H;_%WJj1&kYWJ
z*5g@=(JT@vhY3XAc+#F@pAtk(1K2fTf2EHW>hX66yRVp9R~yy*EIe#Xr`-<v^`EZW
zfc|iQ-#F`~>kN|>2A#mI28kEeG*D^$P5^d<S{JOSM;Ow|bzu6I*-7xL)ZVHN{6u-7
zPHwi@?yvY!*w&-+MeF(zaK;}^PuNMTbD(Z5i9er>X<wKQk?ttbuvkh?D#3oV`B2^s
z6O+-e5IO=?MIK3S61otPIZfTv$k*p%Utj|Ui}F$q#YVt^&fK>PfE&j>Q=-&J+go<?
zR#IMi@@vb;UWOFssA^t4j8P8UChl~Dt&T*8p%Y=C_%LT+oEO+ni}cMdcs!4xs9I2S
zSXKTEMhJ8qfvQ3D!;B^lJY@wx1Sdz=d>0)V)Qk#B9UYO)=4K0t!`<tM^P>HUffeZ)
z_eHhty-Nslq<HR(JP#fFyXgpQaZLF0%m~yENWuK^go(53{cQ?NaOfpgOeS4AY^$PM
zf)!}@3XO&!C>WJ~kf{6|cknI=d5X{yZG&LH#urSSUqmhQjql$<9Lp9}mXtAD&?LiA
z1uVugb{K~s{@F4u9+X!*abQap;+<kI0pDLq669+X8#@b3kb6{L`fK$y#A~?dpNqTg
zao+bHQ9Kqk1V{pS>8WzVUbFUj*PJ-|9SdnQMZd+}3H$UDzf~%yf_P%UaCTM=sm#?|
zZv_N`p_ovObP+5OiH{*DN$?LSwi3U4pkLq7Ra^yK`9ZY!^9B@BQY;?2yqD6wfuo}R
zXS0cce5&k<GSel>4i|4_v$Bh!rj&+EevB_{ow8dD)56&0?<Jj+#11KU7;*iIh9#J~
zi%#<Ra+oj+Eg!yek{DGx?(pmub_6hO@%Ouew?`Ue83_t~%(D<{rWS6}=$}Ix3=X>G
zZ=-Iq*wepAY6X5siTqG^!bp*4pBFXrDo9~d+WlyZfoML~W%zJ)z|5;?oH%k<I@z|v
zgE@Gctwac}ODm9BT2D~OVZLr}E=-NKk4uU#Y>x7tZtA$VR9dBC#Ap{Y%<$a$+3Rd=
z(ck2`YO2NjIP&IQYzP)q@xO9ccEug8?WCNWg&s%9(=C_%wVodJw3&pXY_J(Pb@AqO
zBSmUq`T?&EwcbX8ntHr6XDN7o>_(U)a*<!Fq4@dCc53@#el~fk{T>ULYSL~vB0wc=
zg+D2g!4EW_b=<~@PO0L)8XU1F`|P&Zrp9C8$*XA={}-3>klh<%cKc3(NWRCXBd=Cy
z<1fEpDb!LRUBEUkfQgZr3HAfjTbA%-L^0E6o{K#6#!F6Iva}Ui@x=|8m0W*%@wCOl
zwUz&r!xe2{pAbC9)7P(Jvo1$m15{@gD#d6dz&495*-30DvsWDU2h|$1I%K~a|1i*L
zH>BKD(LhH>vq9b0WYQwBa;79NHs)@oRC0~{iv?gYP#pFK1K;W}YDGv_@e3)&Zif~<
z=5HLB=9+`{qV6xfn|RRo0j?~GhOX*Z*II=U80<4tT}<U%wBtVXw~|{0vHa9=!Kmy>
z#=DqK&8RJRC!y|<rCPN%a`rq5HyZFzj20Uy1`UCPvc$WjSHDr8zLF<tNIE}B)6qWc
zwwzU1l4JvqO-u|Kv4;|Z0^*MWzqTgmEFZ4ZkeCwte(SQ)Ti%7>5%06B3iBX#_36I9
zaoo(_)*&ReF(n!Js6BAu!w|APGC+BP2fYta*ft4@+BLv@^0@BEDCuG2DXfViKk`(_
zbwW5uD7}vBHQeECm775a^vV6l!XsAfq6^+5b;d~wxshw3$~UZpa>wE3eB^}-8mkv-
zibB|dPkrCZKrRgBRo_2(jJS<T`HZ;OR33ytvK4Z5!H-4fd!B^?!HOB*fs5K73X^ma
z4{7nEvAF7yS;qlwgTS<OCP3#3&5Z>*gzr1*ggb(soFyh$uG<%jQ$0-Bc;tUeR8&d%
zg1(hGPHo?s#kb`eyg@TaQ`ToDy>&I8yC|x)u{-EICmk9)L=QBsChOaQ5=u1SuWhq(
z6=bDb-Q^p#U`Xeq$Sq9EeH-&;OY~0YiL=C(HP8gc&+>@cL)<}EV~``u9h<R+l*WLG
z*|=jcUEtrj3-DLa8B}rp9^SQXE>oy6UP={h+D)?TJvhy&dKYIngAGO2x{@uZ%t*)|
za86z#%evT0h<sxr`B^PLmn88J_8uGE90o&AHkfF(-Rq>8(%YOe8V1Vs#F+lmkZT^2
ztxUNi6;-Nq#x_^R_E$QvO_vQb&VAfp&4K^vOr!)G=F&TDaN66*7(3CvZ}yGapC?WC
zP(cx~H#1q_nJYQeH9+P-Vrx#J|C?4O0{!hOG?KpfeMb1!kn&&i13~{cPRPK_JSa19
zGCGZ8&AZOX1Y{cW#)%L-Cz=Cv$a&5cr>jAa#s9-xa_#@-@~$#jsMn(4%^q=Ad>HqX
z0g7eKXB<vwaR-}qhQWmYuyO$}F<FXw77^t+KJ`jf!<2ejJ4DF4=dceMVy`vUO0Lwd
z(N(W5jsK6+gk<xntO4w~I>W>KJ<o2M4-Ar<42<wZ;m@lz?F$nR5BL(ZO1)NByW3W)
z?yeOSOLZsl^d~<iqZXOijFn%NuQl{~o;C#FG+pepU#kuk?Pgt3j<wD&vX*GztQFhL
zG3Cv^CsOSRZkNMtS)RO*zFyRD68{Ez$aR_Fk{TPU?``Xvi<xAu5Is#%F;VnDOrMzH
z`p*C(e^T)%&;%lv(F=^q0yO}dsm{T?1`QqlMXEX3LoU-k2MtPQehrlfj|LTw{ypJz
zeQ5k^W8V(_c~Fv@!`vC|Iu8(b$r}Yn>w&+nbORZ#;tGwJ`($kCp87Yu|A(^mBZv5h
zVHdQ8_FXTALegKS4uSWXP&$v>iDzh_8HWaJ8pC8W%;?H;Xq7G+>+Ro<HwiVIS`85)
zW(r=8Y9=Lh1<jBHAz@_G>ZB$O<=@xoKVw2~pg{E8H}fX+gAmIFu@rdIE&`pa)SUp2
zLpYWJp3|wv;}%;I8tarH%86NYix!t7GQAe(INQc!(nw4?gn}%_ym?kbF|m-V<7E!k
z>qcOb#FJQVmB5(zI?NaAb|6%+UA|s&Fm00SAKpw&#Hr4pM?|MxA1~+1C%h|nuS+4H
zm4?n>t}|5(y^(-F3giR~lCvv?{A)cA%SuAs6-$7sFMhY*bruR-0I#*j0@eBNQ0Z(*
z9tQ;)pcsb9(4IDG?h^e)nJRjb7^Mv3{Q;1CSzK%QZYxtec_LxR7eRzif<Uf_*y7>l
ztOq6a<acYUMREZ42_T_P)O$tm9cxNwqC?NZEsZ}gChEzq{EF+U_Qj0(dmd{H*Bw18
zFfw|;NpKcn<M<?J&%a>vK@pJwuzpNXf`H;vR(II`7<`&+9yeFqvIKNQDX}AH3JJM?
zIb#BBP(Sgy|2Xqms4<aPw5q7u29%od{>)~r2{gmiua5ASaHD={vjWg*d^wLpiS(Q0
z*tzq5(6r*f_vCP#Tb+53p(W`si_0$$?ELp!SDn!myDJDX?d0h!{<T*BC3ha6olzEW
zE}*c?Ee$s5OkCb0)11!gEx~7?Sf|j&snMjuYvW=`-O@eEMEYOtuYK35RZOAFz%XxW
zYfG-wZI;HQE&Za6y*FWimnK$)EEz>tXuI5SGGJ%)kzM$H4V3<5?WwKdj4o@+ki#}r
zRN=W{<7P9TpG?ZBK9)mk%kAt|T)!9fDCr4{gZu1G%qy%(B!@vEJGuR93KfL*^NBU%
zR8`YGhtI2_^-4~~2`2GpS_7k{H%PEae0MApt06sPdlP8!O8^F9b8t#3DqFJQAJO$G
zI@4q&NUOBR{zB}c@VJ!wV+l_|%>XD=>QgT;_@)8pvd9$>lesF#f(+%qGkvuZuKErE
z&b?dR->DGE<N^PYpo;jqTj!%*|DU|YbD%PKbblQ0|33PaU;zQ~aG$P~9TpwUaQrWd
zRnFTE<q$qVZ6tND7mMM0?jS8D@MTDf3NDN~2tI;g2SiKfPvMKZ9G`t(Q@s9bJq1jY
zej}5JMld$H%Hbbz&N>@cNza<)N7?*rtzJ=;joY}Q+=`*b2b6H;U0luBzuhg@7^cXy
z*#wE2^hZq%TmY@~A$wV-7Xl~IVOd_AqLC)5!>$a8RD?(smr*Dh0;`T&{anh5ne4V%
z;>BQ2*LGi0pgA61@^rOb1eJ)v_yGZs98?N{4EY92xTAf?y}7$BWi&h#D?v(XYAbBT
z!MU)q-*&vjJ2GL@o#Es!Q({<fu%|^Ku<26_+N*zE9Ul^Z0W_o-AlANf0h~Yvu?)P4
zttb-tH!K7m({+I!RqP%%`2Tg~{YNC{pPwr$Ic!p6zqbHxfAspVq*Xh#%Y2Hpizxz?
zUQ<oQ|Mjm06M@FLpQX3S+iCX2v0UZ`T5ax@g2-7P;yx@`mC`Vr68&y*aiYkP0My@%
zEW6)%6_v>0d|(Yx0<T?>_}VX2)+!V;SgIpm4?UEpsv04*_JrV&$}hWBUZ>taWRWE!
zpm0^xH5gnAWo1i<fI5H#o(p&?CGwb+!8+i%QzEY%6X)$Mgt2zE(ete1Y6l7i;ko`Y
z+Tfy$Tbt|;`$jyG`d7H?gj|XT|NP6*o5i%6w_fwPO$JD(6Co0hk>W^@&+}n_b-O?=
ztL$$<5H7=?Z~jW$JAWf~mQ&8o$4hf)1O>MF{Eh!VGv@z%jB-d&dNd{{m=(rP)984a
zIB!x2|LYR_A8$|w33Sj~d}2Z$Rth2}*93Y!ZrCN{M_7uS)L^Y_Mx%(C4oxK`;xzYc
zmXdkdYjZDrtTc!|@d!*l31Jkzr_G6Elne~U^kuO(eKyBxKfVrx8o1*(9}(!B9Cxqm
zPC8|^?wEwZ?N(NpUThB;>AD(&W;vjNa&Euv{eoEJ0x=kZ-E!hpV|6FMMDsp3?|6!p
zGt_~#9OISmuVcrf#0Nl{IPc~-i|hdx5gsI$a0g$%ng9jpYKmJ4Uo#s?83H7_oj@*N
zovH+iY?a32su0y6{y*O6zwV=d-!^y?Bxut+jpfu7hntN#0Mr<h*{`s){`cPEFHQis
z!W4C3@7`Y4bME3iuuQalM8)EGH`>_nPPVE#0S>Voui5(LsV`t??$AH@m+(@9?U66=
zFw@56C5(XTaumCsUT+j#f~*Pty+3-hvL|wF@h8aR+8)IC-0-U}HC8*kWWX;G0Jl}=
z6Kd$XH#g5snDRV293Vl56~KpXS`f|t1;KyC9q2BH#}Olp0}K(8KxKO7q^wISy`E{V
z&rLiUsd!~(uXd#e>Ew3<fjzgEr~ACnab1{YK(F0F@%ulN{dG`X+4eOI2SSh#+=9CX
z4{~sK3m%*VcZc8}{NN5DxVyW1(BSSa!5!XB-`mgaboa07`}iYOrwUH?UNYC5V~#b(
zwa|>^9~{PUDKplQEgbEVBaLcPaxpv`;o#b5M_WrD%T5IL7{EJ)-c2;^#m)F%afsjf
zWB>i+eE|nS&K9*D>y1$nN>MOPX-!-Dx2^cR0$Eg`wuUsw2;CTa9`3nQ{)|-m-(xHK
zDU$2(t$;`cml}FA!UO(@J(KKsmE(Sz6vJvpkWgI0YQ+Ntu7wA<WA07x(QE;5$nG<5
zTMl}-8}x)?fBFI}qoQ|EmdzI`HvnJbn1WNh)3Wi90$4*S-yx0xWw3air`u`b{KEu2
zFbc~HW~R^MAY`xaizQlI@iTy71#_ve5K$9gwJCHM^xQV*KKt?B**~^47cePhrOos^
z0VvG<bvEmo*3a&wiaz8PcH6@;^+s4Hu>6+1fC0ch_x<&HxB<|=cQ}f_?Rn<X{Qy@E
z-amKO-K{iJ5-4>V>`fLjqn5aUUVOGpGMlWONtCDtMI`ZtimK{%EarWbr{nZCDe|OA
zCLAfDn(E9}w947fa}?11uTF!);+lf!F~GoPdG3ZYZwBEX>)E&u)_%|Fd(}}@5Umck
zV#~vt|JM{HDGgFFehi-o1Ri#@$*}uu^;3ku&)|0(((i;u1>H<(3spy>v8CK5Q%%`t
z+EY#SMVi{Agu`zraFdk9yT9`2_jJ(YYjaBta9L3m&pE_B<M3vi;0oOyP$J)r-L}=V
zom^~ELH2lqyM`L4)iX(v+gg=$Q;SpL;@*F}NEzNqYpgn&R-^2r3au7}d(A#62CjXq
zzhZ8GU3zJ~bq(i{wHitS4E^y!d%acbD)i~0AGHFC-+QYL{aM{)I?XS@R}C};DP}ta
zI99k!ni6aBJ&qwwMTLX^6Wa5E?2MYotb|-DCf*4apo2xr@jbBI_q`gyALgYdPcc80
zpDHSn<-M$1c@uvWJIM-EWkKglc9d%Jm70(}{!&i!M9UkwcQqPy*O(&-hYQvF<=%sy
zxnZuHPC9%~F1)3a_Zwa>a>faPEcs?E++)K{K5ZDZ{zlCBZY$XeuixaEWIIB%lwv<F
zA={{jC|{(Qn=r4UMi`U`gsxJ<<w(WO5L!8)7$5_zEt21Bfw2Y#03Yjb*~e?3{iWu{
zXQS#*y2d|6I;nhS&0!O06mz5_r?m?$<SxG9N2BncZMMS@YWB7R%#4FQk8_BPdVsj6
z<Z^kiOYi_N<zq`*A367Eo3<7;ZTrc`8yw8UX6}H<O28Y!m5#qRUt78#|M+;-nhUxC
z{$=<>yu|)Re*~}D){jIWqNIVsQtOd#i5`F@?)gTd(HwLQH0$G0b<QEB!MwM|PPnJ(
za@J&NfQM5K>F4yrI7f8It*#(6Ewv&2fo8Mm60md&piC7Yyp)ubq<hv4V+&{%_eYUS
zW%Ntbe|_t+VAI=gm~26T&uMQxL;JC;Ez&E$btQ)EVC|{(>5gv}uvXC2T1#?_zI>Wg
z)rke@z0Cb)W5+`JkHbzaXkT4{-3($j`9d0i23s-Y%cMnt&0(9xAE%fuEp+-r<=HLV
zXTD2wfD{)2kz*sGD9Y)i8w)0>udu?l5#TlTy~5HYdQPS{EvAaps2_9W(&(Q#G<W2Y
zPNe|VYnp9zdddB25mKI0g98vRH7ISqv^_om2yd|SUrwbKLtbBu1RlsM9nAfufAyc;
zghLPcd=;5PVa!e}{~P-lEEwTRgf%FJiJ_YtTTEJsl(@ZIVq=u~(?3Z?Z7zXrYysa$
zpUa?(Sv36ea`!7417&_|O-8#Wp-h=Z`idq4vsvSSm(N&k#`KUzZ6s##T#*Rv^+(O}
zBK0|YbHWI$Li~1=)9#7LCj{7_kgVw=E>H&q0c37^5n>f5eR3^h6Fq!j<oY)}3XQZc
z`a3P|BM6YF8=?GXdX<b#LrAzpQmtCZ3B4uc$SU@}U+URB5Xv-aWyiCnU}hcXc`J;^
z)P1`A;G{NydLHe^aK&|49D6OSc9t75-);$FUy22%gSGGv47;s*B(w3b2*Ng^#m!VM
zPNxORr$#70d52z}=y8%4H_)~(H*m6m3vP^N_rUzVN|H`<Bx4rm>igz;L=EV_+u;x_
zhCx5V)SJ4;0Tio%S<n6A+Kw}GSsEIe4d5cin||I1b)o_hRtnRPc3VFpjndpz7(yJ$
zcqulJ=agAOY=r?@47$?>k^-haee^wY0*|XBf1u6*cQ4ARF(ISkQFQC*i$q~-zc;Wp
zvdda*`GR`PsN@@3Hr*K1UF?8Ya+jb7vhE1L+6ooszbB5s-hEPXIp0ao4eIrN3G;Qt
z&6afa`zrcrF2f3xVV47thk%Ca9_@IR0V|KxCn{Ow0ph!K<ts|Qo1kAFYa4x};r7l~
z4|a$g*sTe+PXNsi+m!pFlPGNB1c7a)t@ZF!knelekXdOn+om%$ecK6OLm(jOOpIV-
zz@&IzrS*6xv;EC+h!T`RH`>dbs`E|Y4PDH6s+4n<3{1Sa-&HbQJBlsshA7m1hK)4>
z#EEL_Z7eq+!%dxFqMjEJqv2O!2ek3`GpocfH2~JWU&I2ujh4j0GoMk&A}7W~MsM!L
zVfr5^%Rdh5G6K@?XE}Hm3$WmQ8}B}feWL^0IJ~)IYc-|j4_geW49C*g#0+3}fw+=9
zPc+Witm)q%&*w~OpA?c+3Ui=B#4ZcCd@|m&dFqw$HsR|VSn#_zx~L<K%XmzP`f~UE
z*J=O-xMwCkxeCrhlOctd9&}6~sKRPi66$>aYIf}|K(erA)6!<agjRDsLu6k?)_1jl
zzfh)<p9@vEFBSqD26cG?h4AZYk#@NP4bqa>#6wCsT9#Ss0Ke2ajmff^kQ%13Z&56>
ziQ1UxoWn5=_ddzkHEY}Hsfu_0fO3VdKrHFgkF-|MD2*~c?U!2XEYT|5^0J~{V-W4>
zb~KXA)d1Vz%gV)fo5@IgaE!%~^zQGp8d&*omJxlyPDgPJYFnp-A5>Ggh63=V!e7kA
z0VhAFkw@&zXpTML+0_s@=GV=!>78c!h1R`*_NySuho9e!d45c0G311dLFYo&p8#pY
z^dP5L2LoF>N`_Rac5_GF=y0GR$HsFzR~XM7q~8}&1ZTO|3pPXX!n=LEJ1%WrO-*%}
zQuBfCHV@Q^LHn_kiO-DXotL*kRmEKJ9Rm@P&1b6%U<ku+O%a#L^NxZ7<K)Es3W8J~
zdhnk!<&V*|HkJ>rfJ<#iqyFbF6M6DSc!FDiCN2APfbC0}2yW6;U>8)rYt)6lv0d%(
zr&cGl3Eyhr1JZQjlC$j*EEY(gP6!yhmA<SMXJC^K0A~lDtmHZt2VmK)Ia96L4(;7$
z&UKQRj$I7)LpnjFi!c@=LumO<j57Y#Cr+H@2*`hiA}?!ZKEub;i^l;jV5OU1aV>u}
zV?LxXN6Xxd2VyspnH-+azY%ZT{oyVK*I-QJw-PTqN;H5p<`22--cWUO1RAO4-n%2w
zuCk|q8;PgWh&u<ZKL8P(&0a{GSZePsoi?hs-4`an5_GZ*<0mmLnK(?g47ltF+UiXl
z0$2dXQpV6o91FHf1=>H-sXq`bT^?bt8|DXa@3>$l&>Ph4hEgj5e7c*=D8^nORMPAx
zD^(Rms0?XHOb1&Y)jChNRM?GZZ49WEeq8=ub`J<m{8qjqV0w=+EMOX=niE9qn+~yC
zRouxlZ)SdiFtIjBWr=6CLTL!$^;-xGb-yKd66Q+RI7h@xh#aACkG9pC;{HOA5Qk{l
zu$_$0G@58dfM(2KJ{9#v#s8=m2`v}JR@qu^@#zXoJgjprw?2JWyAWln4&VSt2rQ?~
z*lwA{_J+J;YY8OY95TY4{p^J60SH**__0Ax*sGSGZs$fuD1FmlQ=>c`a_f{llguGm
z&y6Wx5x;<dB7vZwK?#I=3H`>}5AO#*@6-JmSh}-vfIk|otDZ@($J%6^AI0l!Hk3$}
z4V&l*D~kdma6=M19s!me*;mPU(3UBn;PD`V0Ac`%!gXvS5AsBUwPBBk$Fg#W4ZHx0
z{W@JspfX3hu(6KRj~8Q-?RAhTkbXPW!oi?TM^nfs7?lwE-uGtFslyUqrc1C$i1z|)
zs`pn3{aRb^DkX3UjIWTF?HR~)S$(CGm|PFxx0+1EB98%B)d3b9Q7z5|$uT|+4&D-B
z*^F$tJe(htpiJE;NnL04<Xyc6a<(`CgkW;}kwV+$(3h5VGAe{5GsXg2A{i&dwE-X|
zsmz`s*c&?cYgqK$ELU*~!yMZwF;&8>lA`O-l+w0mkE0%Mi|=^bQNnzqDdoV>kzWuJ
z*`xVQ{a*xMQ#28;X#-dXSZScqb;TQI96DCc*{>>CI)O1=U!Sk91HcbuB)A+-o|(UR
z&ulhc1HukxPV?C}5cO=)cmM*Km@@Nk;sbvau6?KwAeSHgOjq4k+^uu7xwJ1oVhtzU
zf366|A5Fj|9fJ)qmwo|UGE0Q<bTVkL{|pIPNjY$;4;ir7+`|8T!ExSVQ4j_V5P`M%
zPPYO8hjG-3IoH}r2REt5%M`wREn*F|hs4{*&fe#{6^Z84dI2j9jXw&KCiTxOu;2ep
z3<?JWvK^2##g(|)K>8*n-EvGnHkJfqOm&_;%&IRU*VD?#-K1XK6ladT1S_lZDhWS?
z7>WCXR2vyB3y(n*=Pr2boeb}|e=0qn$0G(-nr1Y;rmM<ZNaG4Y*SCf;C_j`6si)#~
zJZ4cipHtm$7OfALqSp4}EDL-rrTNduom?evMrz1%1FE>BbQe=vR}-o*8^({@J!oy|
zvW%eNtZP{Qnej_33u|NBY|V5VI$6f|g?<7o5Q6m20?cH%R!uf3XECmGM~qheZsa}^
znyCT8TzPVq8yp)2&k#-IRoz#&Sg_J1V2{eiLLR2}xk|y*<s^+Pq3kPTsN3ysZu)x`
zaS~}9vHq}yR)Ak)0H8Py&O7t947CbfrI{-m@P4x5U`fsZC}<N|5s6eyxi@T-*Bhco
ztAw_RIU)AfIWf<6k|`YZw|j+(ePIh(Lt=`AX9K#z93Kwzt6PH4<mw{$Q1)1kj{%nz
zN!)9uUc7b2&D8JJ?<K9zWx$GvA=JhcO17k*3fbh=-m(~f$n!^sG;F8{ymK4Kj8oO=
zB>5DpZtOd@^=3;_l;CZG#nq6j*w3<Mk2?c0P)1NSki5&6I$HcAKi!A*uBhNQQSS}Q
z5)q+PV{^(VdQ%iTl^nwwt#bHsAMvnp@U*)!+i*41Yd+>7<%?P+roxzBVH>AnHEpWm
zZCDH4yhA)dz3)E-NVC8_e;40=5@sl7;<g2xWUWL+MP6NBN>IgoY<FN@1RMn^qjJaa
z9)M|373U*fjL7N)M$t5Mek|o+o}B_f?x#4efSo>fX^BvLt|_{N37d&7%c3_p^94yX
zi67oCq2QNt{8EqaM3}z-8fs{+({cF!64#SnLjq-?{rAnY-I;@HsLGEpj+Fw$WdJun
zU{^lF^h+j63O_*uAO`<g@pXP5C1y8gMY4#{N(e)Xb<%D@A&_Y^X|+jb2#TJ|4CdIC
zjwlI{;Jk%<+5UrdLqH!W|Bv22_*(a+ko)xSkbNSs2OI-!!>KhQ9*97Oq{#KpE=B3N
z!!b;|o%)VZx}tAof=oR$76m#K55up+;n%a{wW9!X!w`UKbEtLb%3?t>o&s%(2EFqU
z_6vOSNC6^>LuA!4=(m)}l*Aws<S|JB>!z(FGeOjS;9e>gS1FzhZi1;tMwaRVO?#wm
z)+Qy6Xv;M34Qg>>O9UoeZz62qO`I5=SPO+bA3`>7fPEp982Y;`Qc#o%%i*(Feo+5u
zbsPm}#XphQ4@j^v{i1h|f-VQnHI<H8DD-!iW{KAw*$}Jc$>%(m;FU{Lz_Ca;Kj|{a
zZrrZ)ENi+2tL~0)xlXT4qE)^5Yj2p(HZJs0ne_Q`tGPx%RiHz5*k$tvwwa3nZ;Z^T
zbUs?zp~vHw%nsKGC}vUy3eMNn;|_Q0kj#3qZZ6vb<5zX_*%qa#smrm0m;+CiOF}iE
zleF;`+q9J>Q>USa1_cT(tzX_OR*Twk?py+*PiJKfvLsFo=I(yyyuaATD?T3@(gl83
z)NWSUa=)oKa9iyi?yX|CirFPS4!*9D68e4)+Xkm}7?$$>X<`Kq+}0tCh(>c@{Eg4E
zrO_~#nk%;-s*x9o_gWX5jkd=zA>bWX)OujZx9Au}7GW?U-%_H*r_)Mi#`O$+DaU%*
zR8D1_Lg%cQP(x>?TvNxLije71fA+)w8%*;iAt?i@=f=^pmU8P)3uKlkq?O;3$RLrI
ziC7*0SH@u)&u8PYXSYdape!j`C?xGOO~4l`17$)=Fr&#wafrnNC-RQTKxEi-yq05P
zW3T3}72uB%vz<skA<gE&2LMT<9O}2sK}qN;VVQdb@E{rh%JBX+#o+^!^eZ9aYg;~r
zH!(xORww7TsfAx~Y4S2(6Yhq|B+<LHsA0R!V^r<N3Ej^le<_}7HdJW=nEq)e;p6C#
zb1%w4%ss3#nzyl->rA7Q)zzcn@DI64=p?;FRWTyhTPTI2PYp>oPDM1?KbHVi*a;E1
zwIp75P8czM{{zVz7r>85aOlm^C%DHQsXUl0^8Ogm*`x7R7lJx}G%UCYE6x5O+CwVB
z9)A2ErS~||sOw7ixL)}C{W{~H26nT1RlNq6Vpjnp1CTNyGzLRFb1_ajX?B3J`gm(-
zO1#7-%CuCxg(>UZ9TG9G<FdsEezF6S^|ZzrPcnlcvrbyGB?=<uCAv+X8YySQe4C@~
zky2t%u>I^QV<OL9c_412BktirUl@17Rre_8NG3a{Wlb8O^q#YGNEC`F!23wHsde{t
zM7%YKxU2+uB{_v~`IoWHx#?bmq{8i&M87WK@S`o|X=M0Beq9pSDAH)I-K>lZK}HE*
zMzxF_#<hFKdSA7Oof5r1uyoU#w~TGhzKr#}D0uOu>L?u|!~p-~uekO9^cVrvMkQEX
zhnK}R;%r+xQn85ewKk+)vo0R9k~s(y602k;;?lOISJc~L_zp4J6sF96KYH&eAl2*u
z_%uDuTo&N+tf!O*Y0BK`uOB}fJyd&jF61$oZY8)%;GjE0t4Y67$U?=t&~8`<>~`Ps
z4o^z+P*k%n|A5J4El+?vvHPGqj@_QZHiuh@v9yf9z7Vm~1VE%m*c(Rxl0U76u3(YK
z?RDL^aG|WKrQFNn^!a=HOTv-7OVRuCem*o}EGHl?rCGn0u>G~tKHlu=<YV8F(S0ym
zY0wuz9F!&KkbE4;va{fraw***Vn$)OHKqXP9jg<g8`2mp%SrtP{%qeA{O~l(g>(%n
zFbgBRh*fE3mr{wRy|P@l3<V1AiP1O2{E+ET;{JZzs9(IB&^vrzK)l(2U>fpjhn`=t
zTwtQNW!O_GE!19qINAdnsy5Qp=u1s;JQi;cr@9_5+#H(@{$O8jXG5fDgGzXTrVA<U
z1;+>he4xjJc#088szX5xebuO)8T>xEuYWS+K59#GWk(~c@w3hkD)Uo078^aSUF?D7
z8yw|rd@{Wm*w+~IZyw7xD7(TxkqcT?y+n+PgFqqf3UlbD%)4IcRZ3m<_^Cg8!iwI!
zg1sw_&FB^+<E_VEfT~gx{FwF;(X!g`S4cW&_p`~;hbGT@YjaI0nU3Z$c8?O>FX8rW
zReL>!(kmIrZ5)vIyiPVuA>Mb*Z766pnCvvR)*rk2i56sn&`8AX6tuL8*)(WZe+9CE
z1biA<BBQ#r%@-RcmnZ}|lTCi+^q0G=L7O=7Fa7PMfe`@7K}y9*=N1&Gb2`#0YHnDz
zGW9PmCPTh_xw|qJz44h*!A|jIb+A&zuq8o7Xd}N(t*Q7pdO;tb$flauhV<vHk?%cw
zI5b?b5<_7!S(aA8c=Zv%BL}$^(q|HJaA&2I%Mq}150hg0zZey?WUAlRMmD|l%@>GK
zTn~_hq1}w}4SB+Qo&)bA)HdgDXq2*jTklj$4lLO%d!guGLpbQM4jXj%mo!3nC)s)k
z^J$RK=$E(G%Rnt$JVS*?hz#=rR7IATM?vq&7tjDBY!wb@@cxMBV`aBTz+MVvad-Ib
zS8=pr$c(<DU~w#ZO>s%#pmpu?&;B?$gXFRvPXI_dG1q)5*&8B0*JDT9CZZU`r{i`a
z;;i_<fjF6-Tw7aPbar)>TUgrC(COG@Xnn@h6$s=RR<+|FNwpemyZm<0^T$TWhqo{C
z7U;`$0)=8nKMcLxN9HC8WAm%SWi$Vf>|&8GH-^xw;(7v9E0W%%HKYg^??<?Qrc-NY
z!omuzp7ufZA_ms^{AVTpxhyqbKq3l4UE9xlsP9hnUPVwBJ~Vn5Y$2L5V$@`(A1&_I
zz4fJX`+C#U1g%Jbf7gneSKnTwR`8BPW|NX#VUMR!q6W>R<jjcyZF?J+Q@SJOhA#Df
zr<Wwm;jZ4D#nhxI`xMQrpW%jvSu~WK(wAK=C*P5XkN8M<0y8UUorP<2Fc|TP<HN>*
zj>&E#U_!xfRNGoqUC_@bts84U*r*Ql4BNWNyzHPr$B@Nov^qcf&wE-X;rK&ewPzOd
z&xMVSelXDpLPOZ|%Pg+p$?ptmZpS&I-{R_l**`h6dH=lW{(MzN??+)G#?kouhh}P4
z*00hzI2NY6yR6JIh6fY4c`IGAucZ=2>4s!BHr7PL94Ks2Ap4?1Uy?ldd8cR%nXrz{
zE{+7eX<0&#cq@c3SuF@-@_4vD{#I1<Nl<3Rn9)Vv<JKn0<)YZ0!h(TZE`b;dEQ3xE
zFPwc-UuD#726aUSqF6Po`UYY%foXpQJQg$^M3d9bVh=POEblJ}ffs2`ffW@MmRw{@
zKom^!dcDnh$Z;zGmG7rpBdnqYkpyrSrZ(oSS|<lmF^I~98a`Jq1IChm!66}Z4Lhk<
zoKlHJSfIUEmYBY3#X!~@=W+WpZ9qN6*Zrt|yGY%>CAj__%*Q&ZIVq-v8>-9N&mN>=
z;1~pJw`QIeNqEG^x|=7!J3SXbTl%AKzwiQ778>U$LQ6mE&q_rHBMG!!PBja-T>FK~
zj=ZJ4Wo3*ORCu_4apL}Av=TrwF8y6eolk@)?#Wr&ljdue)vOs@2pdXX#fj@LS{4g+
zV@IQ37SS;=CELkMC|7)fmmbg|70HFW?K<24H$8vMRa-al$^i;L*y1)e!~Iw-5O*?k
zC1oeg76Tg+O-Z?wHf%L>uE!)hbh354E6nuQ*6r(o$6J$Nt<%<u0aE?9%4v(GY-a9u
zY!B7Gbz@EPbqmLyI<N7{EmL#m-hZ~&aM@F#xqp19IXPh9_A4aIXrb*CT*z}#GB{4}
zXzno4$(r2Kg?#Y#y2S?@v^rT=!Mt%=T`T$N<@I7VtDrzK2eRA}i8YrqD1a+w70;Fz
zVp=ri2mi;k39d977(pFHUy0<cnKGO6%@c+y2l_uk{{LHj5ERxYuyu`%!6D0Zg5n?P
zJh5WqRpGGGU5IJy<7BVs)=EA&9rIHw`L&hTm&?N9<K~wzr@9HQ=dB&UF@LGeg|TO=
zlgRCLQDm)#ZU5}<AC$DWM@<Au>=65rlX5)W?@PxpoSTti|2jk_XT6bKar}CByuDmD
z5F2;T6b@@!h9bJ@MJW_2RygW$;(ucR|1z>yp9BXP0mo-Yp(9f{YmY|YX1e}+*qIfY
z0G5F%Z%0XV*xLFda4DhDc$S1MhEEATm*WomENx>$11cWUWY{Kh0-Z)pk&s48xU%>8
ztaz^ZyA{E_3@($5%*@PPK;3A(D;8*u;NWwA`G7FCiR!LwY6{}p!@p}dSQvtS2J;N0
z82wjDYdeRAWDwz2_ZOX(Wyr|^f%J$Z9Qp+7u&#PwW+c#->(565rs|4coDfwI5m!`J
zZXz&RB)e3BmZ$YTe2A!N1sbza+Ah1~7Wln>y?~N}#B)Dv<O#?wh!jQ4!Wz{0)vZ7p
z1^g~n4^HyrNg@N6!)ri4EpAQTTDw9YPGF}{Fq^XXBM{r;3bx4qa%BH8e^?1#Oy*za
z2{iI)j7n3RYon;`j7s70csj+*?(8mqQKr=;&Na}~eF;80wOGYwtMF|@!Hze54KAR-
zkIO0InNZS@9X@K&2Nt1DR*Ps=4U6LL7z5Y&q$;SPPKr`uLfK$`U05lxI^-4D#agq)
z7|OckO>6y$D?vB}xpfL4Q-aRo;_Qq<Kx2K{qiq@u$RhTm@re6RrJ{W?m3EaPkLz+w
zk;ajhUse)xSo>s+N&TTibdY?C<1dTvk2qLY2c_+1<KGPxM-Px(JsL#n7T5=s{3zL5
zq!49?V?4hk-wOmzOu$aSy~B~8{yg@yGEb;cM5$HlC0n{EZDfX|z98XZJcu((&-dV`
z>2b1GxmDg3E-Nf487!XcF3q{QvAsRW`56A+_0^Uw`eK_<*}j+921pu{)(K=M1S5>z
zb-x$3eC~~Jj>@ckeYuZ5W}2o&7r6)xQBK&iOKYun1!yTtdw6(MU@yQ$2G6RrC8}|#
z_H=j8$~YHYhBL{g@miQs6(fTE7@B_haHoYxX5}7B1iNIxs?56X?d_2nWg#66d0ES*
zCTmxlVgNrETfc0J0JHilg(}z{7n{sEc|$`Az}(LW3WDe}(9o=MxiGD+?>tQpAQ<0k
zyVA^H*ABPN@Y5ho!8%AS^aMbgY&~*e|Gf(b`ZEzv4e#krAXLg})LK?o&t@P>pSX3J
zug;m3PC|i^V+zi9zsRJO=KFNZI{W{A)-rk%pfG;TGCeeV9d2T<FX+&YV%oYn;Idy|
z#1&!Gl~4mlM0b@@ZLP-Z6GGFgIUY%gn{(rBZdTDTO^*^HRP5_=EgDziig+q3H0TWe
zi7U)$HqVY<5XtQ`WO-A^_Ce8D=Yv}Eax*UbWL=X!q`Sb2?ZID-1njheJAr4)HJ+PS
z-Ak^Yq*LC!#|gtEB_5g$#&`!ySyc4WB;Upsq1^e*Fa#ZS%A&E7*L;StLxK%TRuh5E
zn-qK(yT~w>spu&nizs{EQ*HIL<RDc^Q&E^BmZOSQ?|qW>KLVXM9IYC&R^8>qYo<>*
z$gFH*bJdOgot;FM$Y&IFqrE@U1i~g+l^kgl>)6>Mh34-`#OSlu-rrF(I#y}M8RYcS
zp>65NwGg9J-4%xSt$fP5FNWz`F(o_xrE8j(pEGft4i(_GX?na$NS}g>E4-|-d%r{E
zVgEXt)L<hvs+}@H)+iOjDd09bIoX(WFIAZHV5<lEwahn3jGNp%?hv^o&6W5!$Ke0W
zj!UGMt$0_&rLcynlepPk^76f?U9?ca3P7cmwW#?>BEsOO9C)!mt*Eb`)$LeBg@Pq}
zy|zFOY2q2X@>-CV8@X=xdm+E6(dJvYPxw&2munOGiY!LMc=g!eAV5#7VirB$TN#hX
z^oitk3L|lepD)?x`5KFJK;uBl;n3C@=nanE-<%n6!Ez8fZ=g``9aQKc;jFk~q}(IV
z^nOLar6O);?oPCo6vpK?`l4-pG^gJ6+Rz%gYSYwtr47RVm?Z*J4Gxb|?wh&l3T!*&
za5U-4(o8Ho6(0LZl6Rc~Ve^Sg*NLMTROob>ZH^yT0iBcL!$Q#@@>x!HV(av0T>4O=
zO_oQn3yHW0UlZad7cXfAWX&~)@aZI5KR2N9U+grp|7ZR3XFPd>3W+GYwR`|txIL9_
z6g%9)rK@FE+M2caIr}x^fe^?(=ki!4MOO)SH@3)4BYJLqha0YplR=%!nU@O*aObZe
zE|PIu2Z=4aoJ)ZS*M;8+YWF#(0`>c#xgm4YYc<3GM!oRkTs|whrFCns`%x&@8ydLk
z-mQ3hd$Rx@>9cQ~66Wke4@^_MTkuJG-e>3TruT<`_^gXM1WtX2v}@l_jR`_Lr;Oho
z`D=c`s0#-LeH*+ixfGLxL#iNHyPTi+O`DYA2%21)!nc(D6<N;*A%|jg>@{62oX)--
z9r2@<t!z{fPN;TFnny~Gw)?wOiFv7hG(%VjJv9Gba(NRE`a`voq^7n)D6kMET}}^Y
zWboXiP*#g22~z6^Q_DP3MftDj%nk67dhJ1}=<iK}imWUPu$*GpKDb->@94cPTX0_c
zb9DLn;TDJr1SLPYdgGQq_eNyizB*Z&t2R4it+g)owU!IIGI#Kz`UNbV!i6lk2Y4es
z3@y09m6Tk(GizGwaA6fZ*L19RH0)d&7Rn9A=9QEceq1X+O;M12`*r6`&hs|9c-4H0
zPP-|=5@2Q4BXkI5W!GTt%pS~iN-lVn%2o(zzNTy&7UZ$A#;v<Gt*nHe>r6+<5KhSp
z$Xo+R*HxbwOI&0GB8(X>svheh_*_rgULqMM6X_n(0>rhf`jC#*UqCNpGO2JHnr6br
z1h@G0rFJ;7dIvuG?vGVL69(%?tyd)w=SnMeZa22h&HQ0Dyi!?dDr%`7=b40Kfa{Zh
z-FDJQP_lH6on*Q@@7Ze0pJVgq%KM0#M-M7e{sKj*sAbYnQ^N38=m-0&z5Sv=g|Zo{
z;WQ0@HF0BQYCkXK`ek_49{JBg@9>?^OifX?o9{^W1}pPQuKmQzQ}eR(5smGv%uVvr
z2SN|Ej%sp#ebK;OCBshnT-z*W+(??UDB9!=cg_Tn!q8ri&aDJ0=-~gjW+{<XehtvK
zcL74-#JD(raZohF$AY%hpLLCBCxCHU;hvp3$tLX4kM90={KBTe-@Ykv<l<j-%C2`%
zj`Cr)kadR*6%Tc^+rYTH=)ZDzwpHd!p_2>x{g`-z2zhi=vL?!?y81#%=HdcD>B9#}
zY;0$!Ue^WmEpux$K|!nnc4c_)PcJ9Y;}s0Rbs9=pIf#TzjqbBw3!6Y`!M5Yw;k^``
zEv}XK_!A2g;trpizBZ^kcVg4;6d32_BMXY!oQmFS`?Qs(=R_3@`k7_6hiLLNiD<p7
zcZD&%01uZ`m^sK}VmJ9tG6Dz5f98O31$M<wg@ep7?(kJd$+L>UDcBB=OjwaeqS>uP
zmncJVEV1nbtM&R7pyDLU=6^>ze(LD(h?f6V`9}hi5EoYAUYQ@RzJfwjkq^;G+za$=
zdmZOZjMIyY*h54DZgHTP$)a`IZUvH?F*%P@v{`h@7SD%$9jW-{qx0sE78KG6L{4F6
zL&!#Zq@0{dfGcWiKMc5Ad!<f!$Le0y;iI<WtN}W@zHCQaWTb$Ld_hYpjSj#SE)WM&
z!Lfm6Wv?={Ug%uex=(ZPn<~L}Cj(&<+Vd?Xy$C$I0bVcPX-Z8x1PqV+3?kkW{yqP5
zm;Fv52ZtvzutU7Htd8%r$FDth*cyH@pKLZ*t*k0ndDpB$43D@`k_}Wz3J#8~Dr2=B
z{B<lX3|9uBZ>40R2~Xu%pFD(aO;fgyY1I9!E6W?i+0O8omn`j$^CTQ=PoOER(_vTK
zf^03jcx^m%`8h!9zJi<x3nv_I*VfLqj2s+lQsqpayI^PWDA%lwig{Oh@*v&Epq)Bt
zu28BGq*99b3y@~CNFsXH03@t}`|Xpf^=T(F4=ea#Y!WGGVq(@8<t5?!-(PG;^*`yL
z+n?!RAZ!wx2{BR&oviH+$!^0ddzV8)P7T)&DR;=!h4`tP3alJe24S>YxoHuD4BGB0
z_g?6f5?$fq&k3Oa%b)o}Pmvdhh~U!z3R_(+5NDA6q)Y|D69<SxacQ-<!lQ5IRm{Vp
z>gTjWr)3j_`aer^-4`ecyzUKb8m_zf#K666zNh@`WDfx81!%s!<F~W#+S(b($hwvc
z)xxXV`y5}MtUTS1JoRxlk1B9L2$HGjSj|hU0j-ZI1({Ad<l(S7iHt(8K>`Ihp-|{)
zfvidopaQ0C*!^iERA>AyB1a?p!`DvITYGk*0YDqWlR9}_pMBw?0rkYe$z0<Qk&svV
z>0$ZF!VC}y_PGBtWMMZLM|Vo$o|QKRGc1CH&#9zxI9DyzDq%>{arR>MU}r27j=I#&
z&W>(w<^Hl7;NVRbtLZ%+<tSHS9JM}q6u*{@)anMV98@XoOd*CmAIIFsz;zN6vR}aa
zjRUOF$xo6Am6D3!X;n|y`=RHBJ-HRev3ha&c((-~`tS+N4f9tR1A>C_BOJ>VdWg9I
z>&DKSfPkK5c7>i!B(-b!D{vY072H)PR0wCaLTcKSiapU&%sXnQ!kd)3ImFcrCbv-a
z>W?bh1f#b-w6}%UHcg^$-zce7odl%`jlq9IaVU;?82b6yqsFsU&Ay^s!S)LVLjC>K
z=a82Oi4SI4E_+B^RbPcN<B@6N2(-wB!@B1#)oqICZ7TbRtf>6u9;j0nA1i7QUXApf
zpmRS4U^+B)K+$7Dz~b2)!L_!^6O2NN@eA*n1frw3tY%1JKzgqMoWM;-jVEeiGFd2f
zcsv`DO@OgDA)B{CzkMd-U}1*%GJCkYKi2Kd7FWI;I-!xxI=}PUmv6rv3%=ks7((+H
zzFQ(kki%Y#bygbvIPTPI`Oi7XJZ$o_HCh{1ED^4{W%v00@H=(7r5<S6IXMHjL&@w?
zj#Gldt{o86KEg=pz7rw12Fl4ZC>Lt3D*ZM$e18u5%T%u=Viaok;!fa)<bqlFt2kw-
zQf&=nT6dqWZ<`T_AhjD%i6VOi79TV}91T3nSXx@DxC=sy!!n*onAY*+Sxx_ZcX@bf
zXjN_5ES!TEc&5~Jy%ur~taP;!!2>wTcBf@`)g@YReSTFB2-`wR7e*lKam(I~u)G&q
zuL<Dz`{{|aVV{P3-e<-!-;SmWK^X~ef~jzKAEl(EG8Y@2%vh0gS8u%cGqq{+Sj*(S
zUS_iz?HjI?j0bgYj;q`O+L#HL^qN$fweZFOMm;6e$NTmr`y#2s6#yvFSvB<rxr1PV
zv`dNicqefCrRa+(hyXE9Pfs-j7{TUWlMTh{01P_4`O#Xn3RC9W@jl8O|E+zU#o7YT
z@GNOJ`-1ez!YUqL1r_zSIQOzu)5+JQIT5Wj4nGOVZyE-EWu8wS$>1z3hm0n>KgaaH
zX9^WumBQBCQ$~V_CyLlH{|P&N=6!0ZLietWAk>b8M-V)f@qvY7{{%Y0&l-Q(`m`j!
zOugBl(rjw4tI>RPj%_%LMu+rv`?%niJHFRAPB8T@VjoUZ-{o0fF&F$;kdPI$-i>!7
z_kV3e4k`LFc2_Gms%9xb-KwNCYXHFBxg0THg)%;YOBn{U=1>REppO9DasY`hda)yi
zm;X)&9UMBoDi2G`{)mJSl1MBA+mZ7Sn!*E_cd)@}T2f4wc0G&EIm@kDEvL=w9U}5#
z8>ri%rBa02ZXzHUth?X@FhGnLpj9uf01N++kPyc;c*?F99k(U==l*u2vg$;aM~hM*
zIJSh&-eMk$zFIYWxfw)5Hn)S{R=4zbK9s<akmyz$03O_^f_&-T{mRlxQYMTzI$t!|
z)Ws$2KGiqm4w;C`dmWHRl?cME?$P{T%YhS_UliM~U%w)8{3a*aa$NYUae!SSXxo^<
zT2>Jb@34B;l4l&Puxy+DxfIExuyyXnQ2kh>QMv-UfE0uMsZy*i0$fXo+SagX`tlJ*
z*k#Z4>l}2viQD#QfVO#lsp{r43i-^tq=Aarqi|BvrQJVK;-d{fz|DcfJK?4}p<F;^
zuwO~BH=-U`y~ajE6AB6nQuqK9FT-8*GV$xPLfXD*JtCznMom|?Y4XK*9MR8)q56{b
zy5|&lw+b$uNVs6CB<(Hk_RZ62d@C{@`JGgeM(r?3>UD*|;O*eV7lPjhOm`HGiszIA
z+y5uY0t|lYB9&&~)vwV2RG7W}4`1)}hI_WDY%i_4l6=uw)I)I0P7x!-W~lZ{Y<bKc
zDmV7fsG)r9`iN3cGPn3FGPT~NK5p>(h@UKE#=gGtBzgtjVw(G@vfq0iidR_7iQUvU
z`BoS~`Bg<p$@!bq$8(5aK$x<gfaTJW__0aLEL?DNH*AAWlYj$&u_?UHp!X;`Ay!vl
zjYRg*30wm8da5+q*APEp)Fn@AKVNt9gZF^V@)Zcibbs*!=+cX6Yin2F>?#8HS-9Mz
z1$0U(DkkyI`QQGvrvzliJ7Q43GLc%%l%C<m#zl2MqVMWCWwZ>Xs3f5-#6I>EnPXIh
z$h3K0gW->c%*rEDz%F!=ePOALr-fDr=&v+bcF`s9GoZBLuh5(uC>u2^S)8-0W`=2#
z!Q{4tpw!vme&S)DkV)mlfX5b(UBFHMxYO$bNH^u@<cM+#6rhcma^WGZzODmc6y<C>
ziy^gn<J|AZnGEwLmh#1Eji@;p5W-2#*n1r93AgT-`h>`kya4<398fv+F&s|GPaRd&
z)8)d$CiJ|w85&ct=tQLt6b}Q7%gG(bxn`QXeS6B+J3grQp20+ndzQMQV4gh2T$UjI
zb+BuuGNP_C6~3sfHl#s!acI-Lnq*cInK74<LBa{x`Fd1}%&K^XKm*6np9RE!unPWC
zw7#WZDSb2(;_YZ2WcaTq5tB>@g-v&ifXYCd5>ZKGXwZkpDl#(~_f=S{uclvN`s?!{
z%`*++Z+IrED^z4r_P3P*`g1#8@_Z4HQj>&Iial%tOTUZ?=xPRvMlW5pmum`bH+Shy
zK}2i9F<FVJI2R9+;U46gq{o!1r5|Xx9%Csil`LrdyqMf48I1cDmLn@0Z=6VLh(i<~
zhdt%ft+VhhMr9`#KIb#@oLCXS(>9F*vpi3*jXlvxOiV04M=&)#eKAHqV)b!BB($G|
z2kr=w{@uH1%7X|n4&|<(px_4LDD=v^BBnpJ04T9J(S!;TcV2-9<ADop)=dC`h?<*Q
zlP#b!vzUc=CXjEgJ*I+l=B;!oJ==2P?b@*CXwUn74B*E4Z*3F^icvU-3tyd9VQi%P
zIC-fHAsLR>4$K?Q7U~W5yzaNVn2{=_i7Vfr;_vi&!Trv<E8o8ptzITb0yhRZOCPL_
zq##jHP-2pk&D3TC%&gr7XQZU&0vfl{9iTq0<oS+CM7{#2wynyfqVnS`r#<{Q82ANr
znN1MgQyurR!^AP(K;S@<@PV)|bFYCG9I1$<HC5GS!OXm!KPiiXBk3kf%lyh2%xAX1
zlUt1i;3iYn!aIiZ{VmOpD~9gmA4PCZq&8EkT!vP-;1zTWl}5KajET<MjTU{8c&T!4
z0kx8f{0{yv<6pqP1(lazFW=1f^>AV$l)jX#N|+z?93r`)m;Id4oerfk79@L@8xsp`
zujaYgjGXvv&%(Y#D-yG+V9c58m5#T!OJo%wk{jv0V4YM7eApIW{oZ`ZQ|x4Wks*(C
z90fUCP?Tza|G;&KxVmAQwe{7saeh?=4kar@H6p=`V^Vd4e^VSxFN$-v!#m4hH4ks^
zcsH0D+Mb-i&jq0mw_gkk3;P|oqc5i2dU}2y^Oc~+4s<m|;A(;g3YJa*$@3l{)O$SK
zS_a`B0*bdVFfe9?Ggk}scGV91kizkGXwHm&@yWH036mFCybd8XcK_&Gj8a1o5)$rC
zyk)t!eeTJ&!$nisjbLpY;Y!OmOrEa}G;ges$^K$N?+@vp@+H0?rDp{C1Cri8(Y5j^
zN7moVf->{&r7<VtR7OWR6oolM9BjG9g#`N;?TrJitqZW$*<LdVRU*qKdD_xI<mToQ
zt{Soe$w$X=2|zYOr8n=qfLnvPHx@A+_Va^sj>cWM9IGuaA9D$A8is;?1A%#jkdPZp
zIRND%%?~#`TApiZ$Frn{#I^EXljB+d<VXyewheShBf{a!ThC?#29A7>u^XL^dDGJA
z#dTnD7%=2B31;|RhIY1x41P~f+MsS3yr<$Q3f>KZw&6OeQNrzlrlt&u(SO8-+wCqZ
zrv)a4SJx}njL%vTPgN17hTx8sDhGnjHaZ`vn*8B3xgqP0`~n8XM~`2DK{mc28kggl
zs~z*eO=D^XhSGT@n>9)QmIbxcIktp&#Z3C2h^=J}Mv@N2q*%X4D<Hz#LDnw06xtUo
zM^1_lmq6bH;?#Oczrvo_Sre6C$5N2!fhZ_sTy75LT3yjb3UGy@ztzKMcl)%<ZpDm|
zlS*XdTll3;etd1vqUP?TIfSb9d(7Vc5M*yb0nW`!7GmBg)BQbvE)V+b>}+{`eKKN%
z%MO3|><F8MI-655Q)%fp80hGu1F`SmobFby2rkoNW67_2pP2p|7j{D1=xP@-7W0~{
zmU*eOj*A{{ETtqQB8B*~UdelSz6Mbj%v77j)0|d>z0izB;o#t~U~STcbQjV+S?gv2
zz-Er?2x6gILrQL%-wRY-$aq=^_GPM50?t^sb;C%f1#{<=>Q^TE150-O1n&voqP>97
z=k{%r7iq-;b+AGqIXO8wPcs!!rlzLmH#KSI6duV+nmUx3!qtj#A9N>MwU}7_{9f2f
z@(E&yfHU5Q$G3lEQHP*4e+dAyXMMr12pNBWfVWgoM6iC0Wes`YH%sjkMB|^TSlA_D
z#2DC-i0!2*(?&rwpwnV*vZ~V3(rLtz{(cGd$3g><DYerOe8KEo=6;@0xf(n4*1-wK
z>Y|c-jNx0u09O!bYGOh{tanA156GLQg`>N>yA?jX5LjPoc7=l!1AzpIe4JOD()#tI
zS|85&bgSWPz5fdlc_BbbNJ#j>kWf+O$pMRs&p90*)dH_#v0#witX1B5y(i3Z9$^ab
znHMd)wkvCaq+hV<>`(L$!veD({|#r-G=*|oGaQeoZ~ci_Sl<#guF6+ZZ08N984RVX
zva_>8MM$;IDGv;60VSl#z^|3MGAPu0G-_%pwRsZ(Wr*gwb;1cUbN7EVnRe2kR7$lM
zcf0UXy5t0Gu9AZt_NVeQG&>CB3Beq*6LaG<1Y5jnvfzoig(aP8_r3gDeH1?KlT1a9
ztx~N<jX>fPy@{ZVjEoH#bK``>MC$oxo-F3!YM{fx3=_3N|Hw$Z#r6NI&T3%WP_C~}
z*74acs;v>|dnsj8BJTXptUcjDXg*SEYHF=^@drpnZN2mJ$t}SB=toBUZ=K}Qy1iih
zQwoB8p#up~n*A0al>ENu_($L-;&T-H+c7dS#fLQ2M$aJV6~aXoAto`>VoWN{UV{}L
zho|$(bLvJ6f6i$#fZS<&oW2(<9N(GqaWkUrguZ|Zv$pnQf@bEGV(<0y6HY9xZ)qv1
zY-zHHKn*-65Nz+!EyyeVUNNUYgMsu9rjUy$KitE)6#0uTr1vr9N=Ta4#}Y&r_zE_L
zMwLHZ<m$9`YQzH)lapQB9g`ChsIIc1Kv?FzO{9MhV86fAA9<thC~{zU_;Ix!0&s3P
zpKZw-8|VGF4)ul!_0=ntU-5PkevzNYf$tC=VWao^*IBp2;qkb{0L0XG$X<BaZ%%!G
z8??XWrGHi-qZ&{#YOodl?L#*F*?C8Fu-u5hZ!_Q*R}@ISSQ2-4cjM<iot*r=qx2_K
z^j{v;pKtYs8PeLu&o?t5AmE437N`%Lh7|uhm<oK6bw3I$99;eP{BQ;iFE{?*j`jch
z!-J1kNC-R-s`~3eTwHd+dmbl6zsUalkN@|4+XA{nNvzvr$&G){lKzipX7mn`<Im3S
zK_wA`#hYzES>t2ie);=2|6hOkw>0d(zvi37Z)R4=?GcE(x)JCA^gZ_Cp$NJEF~ENt
zy8pewKgQts0Xf(?IXM-iq~N(g+V{DBM*sgk(%-*QyjPUi(yvWE2tO4Y{$HN#jX7kC
zd}m&MNs@XJPJVs9_h(8SDI-S@!J`&p%nRX;DV>iu)5(&X5dUi(MknDW_oX8UZS?so
zxf$}s0$oEKzDz#WT9)X>LT{X8TqeJ_`N~yJL{984Sy|cTGiR=@>rP_iV+6Wm$t#+p
zGou$gYR-%BC;=?_e>}8-`WiO&=*r{(T0JEg7_rw9NrHd$4EM#uw*ZNqiw#^<fyUO`
zz&8Y<1%>&T>uga@x{R!Wwx;(VINh!pF|e=(Z4?z1H{IB*mT0H{2O<4^Kz<*6?+~#U
z8KQxBv2`d?m>}(@ZQrXO|JYeO7?99%o~HITnGs$66CaH-f_>iGYVNy?v{3<lrcB>=
zPxQ5ocQ+C3)5(yidU@#$D#3*1?b%GBp^yGaZ8q&QuSgL1-`Cgkugvg6eDhYC{wS8M
zOm5G7Ox7Jh9?^;{fT^@G$X3A96)^*-qH#{LOnitn!gx*y{z{J$#M>p?0y{U>xheuV
zhb?M`gb{I$(%7Q&zx2qw|JozN>F(_{gY1nY6+;cd#W46sP4TY_Y-J7As}99Gn}$n!
zf%;@A@t^T!#SO0R4m#RXslb}L2w67tqN93DxLqRJ-#631T}XypIX-a_y<E=7HyIhV
z0ai?G)qZA_pS3$%DKVPTgSF<vb>M7+NwtEa6k0u~v5zzQZEIPESCUAhP-1}J3KKsk
zXGcC$+dKX$rdri`I}!I!&cw>9s?lS{=ovlGwpWNTK9aC_lT9+Ob~n&)#3n`5^nW2v
zT`n&=$6;+N%FA-HhA@R6FVT8lcK}qJgWB|xIBp)Eetl+>bwhpqh~(ttn&D?I*gwO{
zKNgI4h*Vp5w}_Pd;`q2AA{<<h!sSOD9VZ*39#^CP$1nZ!do(kkCh!e!vm4Id@csDE
zqrlVD+<f=duk6GL*(6iL|HY^Z*?&15L)9b*)yOOb*61dgOuZbWTcbIh$$28MxT$z4
zSvx2e5y3drMap@X;(EnMs;a8N!ND1dxw4VI(c)C2jt9uXBy;=f=Zl;%heJOb(z#Wb
zRGFOXsmaOx!T4Mh;jb_R1O)t8CV|2)YX0uFH82o%U})%Yf6;iIl7eF3Gzg6nxODvc
zUikMIC;gorj>uKTN`#;P#UgO?`qTwA^c@~PK8J{dRr{vRpYQ#@uX^xrOLe0EetRpb
z-ulR8YHEsE5_B{%I+`bQT+&#QaemG{S7$@${N-(4PL6Di8ApsLam%+2yd43c!@O~P
zEZ5%NUgdbGJ~r%&xPec^V8zf8J~%h0E-5bly)ytw(ZGP5qlQyKFVmS2nSU-AdKDGU
zhO{HDZ(Jp{*aqxb(WBxJ(4dmKgNhqYz+*a=lb5&S6NF3W_~YF_CidT77$3IHy0gDO
z2+z+1CR6~qgW1>j9|s%2CnkryUcGv}Guvs0DUI(CK|*4u{!&z293L>duppS79cw?t
z`g3PA{U?jf8sjWIJzL5tyrju;3#23f8~62z3*v11!(&MjuLF7&!nfOo!9hXkK0c7@
z^|s`zB~8J>uM<5u-@V&c=;-VHJA(4ht@y_QV+{evKNDysZ*3`zJ>7)Iu=41v`p;KR
zhN2Lb&Z0Ep5#dYxrI<W_5nCJDBvX@$&!ws}WPlHG|I7Caic@`i``F~9o0Wz)GJ~Q1
zhP;i<EBCV@?UR?~{*K4I1=WQm`PmH((9|j{IAIxDOq&}UeS}f2S4Xj~#-^sI;BZz!
zMm0Hc1YPFDzS&u|$G!;}?~s2!%fD~G@4Zk&=3OtR>sQu5D|mS61NIIMvAd%#Zs*%G
z5O+dEsdKtWVn(Wx-_C?cU@}r(?&mW<*_V=@;6@3aytmwCw0s;pjA<@)&EHYlo}r$O
zZs+nEs0deBiYzWjikH^qNB$KOmf`1Lxv6>8e8S6G%|VY4*nib2Au5e0BG8GNSJENe
z%d0hyWHiG|j^#T>%aUJeQo1qjMP6pTijKohA2cu^eZCg*4*J06%|_7E36hhdbzoXI
zaaC2-IDm>oUCWv{R#wh{_*J1#Z5lugqa%PB76HAex`Vkv{0P5{9zqx#p%`hW=+AE{
zi%OHadle(PX1|U-ONp_tjHq?H!dtsTa>sx>k5aWuoZ-9=_V5-nWpX6WcZUp{r?INM
z(P=!!A#GOQ^YW-}0nL<67em7w&6Yp%bOi;4otbjIn3x#ho12>ogs0yBU*g;IHW-fe
znr+LJ(A>9;6gqeH&Ww-8l1X6n78DYKLnJ9n6JFsb0s)dZfU=YcN9|^h?Bm(lS@bTT
zF)Lj3v0Shre5X-ZSa>uLg_H^eN_Ye9yCn=MV(j3+dbm&@J)FXkdCY7)KyOKa&a-Rk
z+*BRg?M`BS{yHeVZH5Uyp@xP1;^WF&_6Jd0$M;dH#&6*9xRCLwFc3GeS-S3%-Z6aN
z>UpFSK7l>OD&>fTtf-LW9+op-O?xXOM32i5&U5&{Ko94gnOuui@9e4&ZS7V-P1F3H
zp(DLA_rp$tl4*(6PCTTTQyLMD%@FAZVXPz~ST+iQci&WUWW2=l>FZwM;9cnSgwA8a
z{aVK6wMc;6_z~9fQKdUVk9TQ<>FaDVF)5hp7EF++SU^-`BW`Sr(g%6@<z_?ZxigT5
zTgA1kQOhS0KBvqvYY8|!m{S{Vt^*fp%dWG^(;1`N+<rsn!~W8p%Q2^@XkRosj6qe$
zR{hFF-IDY7x6zHsU&5xR<qNM>-Fx`U+ij}$qIot1k2Z|#<L8t8e(EXOk;bYd^2NKm
zx#g9YNBVr#k?p?8rLsBFimBg*x4lBh$!Rb(Eh<E94advRt`U5s;Bq<7>v|JO3iB_?
z-v5I1Up6C12Xgd+*fl{?aS;GZfMX*jB4Tv4&W6ZRP?*JX0ffV5{`LXrm!Wic=O7*y
zz1tc|WAKkEAYd#aWnzlV$Q%+xdSK)CU9nwia)yG5W;Ju!qR1l*8N7sxNtu<SWNXP}
z6;E(z1fXM@dPZYdAZHjmzk8$(zv@ex-gtHS==SUE@f3;!cOh?Og=y}R@~r9Z%#GoE
zfr95=h&Vw!=JQaj)5DtJam(`2NdF}N&#wK2*~!Jv;OnCI(83WR0ZwT^v%>`emtAn)
zYGb0jYJ2l3Qzfz@MsEe>%b`wd4A_EF*6^qM)q}$dK0o2mb*j^}g6{WlJoocFsNf*D
z{Y)OMg-<Yhz*emv4<ogV`_(eIC`8WMt>sf>R*-p-+nV!k4QsUN`sO^%_xOW|mPq^q
zw4(1Uso_|EQ#1?U>0Mw}lzD&3ZEMFg8alB%u`nlCB1><3mzSQI-_Vl8yLc1SWe429
zR{&0~!#-2=G^u~XkWQ`WV%a?n3=9w`irk9+GChA*a{rd9V0pa=g++NuA;OAR1e_~y
zSR(_2ga036Zvhm?!=?QO0tph_g1fsrBsc`u;0co8?i$>J1($)~4nbznf#B}0gS)$P
z`@j2s_tyP(x8AMlDyk@;X6WhebDr~@-&3F=XJf;HM#vQ$SF^CZY#52&2FT6IXVFBw
zk*jhOpjVkKEh0cMPyjq+&QDK&-`;xc?IX1#BgA29lL4$2;Z8#?+jJr;<dR&hEkWOn
z33b+`0cHCKRa1QNr?;CF>ZaMB%=}+?8y^rf<nIHV_eOkyBA_7{Y4cd@!!TO3rjF74
zNeq+QxodhuHI1)0XyF`g4LT<7B|tmW0#*TiqNdju+Fs{ovpIASYTo(Mw!x!HUuV1c
z(W=-!|2(oZzzgZM-^yT$e;#S4ioe$pEwckjaj&5BF3Vn5IQ`y6=MfAJOh2r=R!f~N
z7eLL&F4qt#CQ!GeJlL*_hP9D1B+0|)Mv{c=-c!5oO#7Glhe$AWb3z_>+P<Qbw~a-n
zgM&?*8sPC=)iXBKlznsZkFoJL{@N)Lpe>EhYQ`yx<;FUz(ZYgx1dR23rv6u_Vpjux
znCdm*W#Ab5>iBr;9~F1lMf>FBq~&~#d2qzR#%6!Q=Kj8d`;ucAuAq#J%s#(6gXC`k
z$8{-PV|{&Q>3C8iuoke<lf-AYH20Nz;%it)$T;t;0d+ksJw1j{0QJOc|Ch5`(z(mo
zNK<3>gDQ;;Pe1~62tYQoS^DU4*?SrxmpEx<Ygq_A5m#bWLUR&5ImPeDW2d%ix~s)1
zX(kORs}4$_mLARQg6}m7MjuZz@|cN|yiiqK{YCLd;7-qz<U6zTo`>U&{qO#&fxNoF
zARZAj8beS^Dq@UwRcKQ4P)X~H{bXCgkGhg>784gIm)vh>o_P{rje|0sDsAbEPjBhZ
zaMYLHB_}4z0S_O(MTh_5<^G@kl>!9tn0!>!+=>`E1X4X)e!u`XzoI*Of0dYsXj2*t
z)UKW!GI?rE(Zxsiv=a&&KcXTd%?7{?4FXT!qMW{$RIcsM&CM}Ph&ROnVxV-}C)aLa
znq+tr8CQXp4xHwY&d+vXUYZ_nq}AsB>^Uv&*^5(+{*`Ma!xYvNicc~pD@@Q&*05d-
z(as3Ulq`s9CXkM4YLOgOSmSxE!=t}Oqkhz_4E<;)lmXEdXqi@@J59sQ<NzMtKQ$e%
z^Bpwwm0b(5^_Lg-Nf=C~NX}ywXixqKc>cr_q-WUq%WuXsw3`pRvvtBe7LLzjr-y|j
zoMVqB<Tb1s7&;}N$J*qzQ0v>GA5*Yd$wnJ~@KfvTW5`PBSzs#d6aCm2#;2|oe}o$}
zj#Eje6Hi4@2`cD7W?*rBgGjHO_~hu5)~utZ3-RUG09xj>5e^QwM28pT_>0miCIXvo
zKaBDeW!L-uH{B|jy=M46jh>JfPzZVk(@u_k2Gm}OU^Keb^=2R^FHAllg_B0LFr%`H
zBYw{Y&fIocvb$GV|J^z%p^V&KS%-WJKZQ?d@c5q${8Fn%7F^4+iU-r6gfi6b;p~qe
zOCmOpPd;_aszmr6L3S7C2W;z?3!&s|q89*{iK0c^4G&OGUGBDy{Mi9pZZ4~S6aHl5
z`(;MUGm&#rp<ogCCqRD)*dJgjJ{{v6Sb&5Pm0Hyq3O6<mKuSB9xis+|hh}_A&m#}X
z+&el1gP)R-p5<Q9j@2f6G{QY9R|h_OQGsIoYC?&ut)?qCxsD_E0;>vM+em8hn%gW`
zjw`oe*MFe{YJ&mJsF=)rN{!wK+>y?HZkAxC+K|q}1y;UnSzehh3N5LN2<IyA6~MIS
znhvWB1ywL*tPaNU)eUL$y?ITS+h8lUlwm5@Via0C%>&;iTz4S^x(soQsIG&N>B*qS
zjWG4TaI@xSG|~j7*a{<ouUSU*Nq@*V9TSVAa?*3L12qc4aZ}yPACPrMlT7i+gxHKX
zAa1KzyDE}9it!mv?tUtGy5CvT*S>`SyC9#+m>C&!Zeae#`X}WafT>wQUVc3N@73K<
z8ux;iJ;8B{GaTW&<SOX-In(`W5Sp7iFtpZ*&(0<w6>x}z*sI|1YZ}OC6#e`ihbg|s
zU?@fI+Y;e+EMhY*PD`6!+2T~Ay>oa-Gx#+J?sCpld~9FsZ|cmGR#1LEgP^jL6Ykx;
z$HaVXx6A6PrPmG!JaMiMt~Fva5ReYf%q{-&=jV#AJ84Mh{ba7R#$L^!OkA0V_)tG%
zE`PG`M|zd*zDhE(H}OK=)htzdU=XnHrPty?6iuGOVkhQ^Gup4~b(f?P5(POLHTc<P
z*8grTmsAPvS!}%-6tvWPhNF8q|6RYN;dZ@<fefg(zX4%Mv5xaKS{=wO3q%<P#x-U_
z-94e7-T)-E5b2DyPE%x?ygbQ%;}$xit_K4d8Mp#cF-h{M*?=0;`dyb8=2gE@(I~T%
zs@4VhB4u5_dQ?=@-^6yQwDoN-&t7MSO)Z^S4zp9y{3C^G)Ekz&W2#mbHrS({e7?_j
z^@+(dcd)dS3<BxfRC~<@P;*)5oT1j?$UH4#3{cb)t>Z|~<3ZX6U3it<>zh6AH5%le
z4sqC8y(3PVJzgrAMhb^SjR#J6Aw59FNb&9F6eI6`U*T@~pd9m$4qnC!U-`ow8dkPF
z9;9BkUh5!=fV~hXven$&Af>-P`S4p<*}7W*?kH9wH|GNI@X^^^^>LJ1vmg(@>3@+P
z{@d#A{U(CL5mtb;!Px!B-CdEfwD<4c9AO?Jd&P|i@$hJp-2!m$JV8M#Qg78)Qa>bJ
z=z<U1<DObAZ~NwPxjp53JyG!YgvItgvs(q4^r}Dp%-Dj2rYjIZR(tV}C=h}v94^HD
za|M%hc?5d#M*mVKik!%jdZm0Tn8y=nBJu?{N*uly{hH&zX-!bz5!MsgI8tzAFJh%p
zzPm;sgJbWnhjUy4dXO$08|#nS>k56L4j1tj=6G(%$fgMwx>~~%NtDniRA0{&wz&9o
zv(MizsQkQ^-A^%rvrqkHS1vNmOO*8GUP-~;`C;5%CEc4oKuNymqe7ZLJK<}py5TSA
zoYo7aDGUz}U_B@k1!%1<yCuH>rgdf1E)^hgO2mIer+2f2hR^6>TF62<)Gzdy7mA9t
z=Mc5;L^*P3;A1u3a)Ec2o^=6hqiLI?#6N23kVMJ_r#7aHXQcowiH|q<h%!%|VXFxd
zSVDUL=p!^m>;n}>+Muw=yeKlphLoH}pri!$2EM+Q&MRe27Qb!B$oDdw_PrdJRUfLD
zIbsF2{^$^Rj;MxiZ*SQUW3UorCi7+e%&2J#JV=qSzMQ*WSWd@gkGUa#%w`pHK(4E-
zVq^jX1(Dw%@A}Dvd;<zuTy9Tr**EKl50n&~p@E_F6Zf#k`CPv#Lw>hZ=1de}9Dx|j
zhd_>6h9iXNmJP3S6aw}c$SFSja37;7K;9Z;^zC%hs$fk>G5A=*Z(LEa(HQ)S!)wOu
z{2kh_K;56#tPU)AxhG?ZgGf~GTVNk<y(y{8q<*>BbhSFU9a8hNt1vorojvr*YV4H^
zp-;*g@aTj);uM!avV3x>H(?=G2x0;&aq<0i2O;&EVB8!!_STL=bVd^DHm}{bI@^1A
zsj6{qx`EObXxL?jnIK>`UFX#|Hip>-YycZ%9{~Q&bPo$4glGh8kbWX?@i^k;<#lIr
zXxZ8x?1t6g(9%m!`iko+!oi6x_yh$#Sq!C0>0NI#0kncD@V(`v%tUU82G~{W^!$8R
z_2gv7R%7+HHq1VeN^+Xu)1m$4E`lD5R5HfPp?^sDAJsNp=9kq%L0m#YMezF7E3EB=
zwuc<RR2ja}6RVQjm?BPf5ESSG_H1ly96QuC-Qp}$wh;GpViLWdiy{qntcUp_KJ8Xs
z->^*6({yE1FtzOU2wwIU!E$XEg<9P-7g4Jbgs(EErl!Wrswxlv==)&#@3tRoStG2g
zLjRt1zxW2LYnTdM!tDSrd~8@eRT4www#5+3A}q#G^GoY2$~Z%AO-*6YU&pCp4_o1`
z`Wg7%)Krf9MPqVI3GcxZ>Txwnm%F92y7h$N%TfP@=hkpvbPT(fmeG<wxZ7X7b#hL)
znOt15QAonViKW!5T2xwf4tBP1vgEL+chs+2!HJN2+9$fG6Qkh{P`#D_IZ=pruDukt
zbWEBGJwNo5F086{HwbUZBB8$iJA7}RZ0rQk@e3i52)`S_`=5%t|GR(rosF&fE!<18
z3y#?#IA|TfE_ZkP*Q%BQJDx(!dbMHZTZi-CD2LWM!wS6fTr-X<J1Lz2{DC@Yq}a?c
z!!qgj-(coJF@+UM$*nq&!MjajOW6G2O!dd5@Vc_@j*r!iIYvS+?UrM!q;it<MoQly
zRez?BGWRK5CWU$LF-WIBewmp6%c(KMh`pxyS;L3|(W8>AgHmD0J+<LC^Z?dYy?boJ
zF>(1|oV-|_({#y_gn~sO71kb+U?v(I3dWOm;j>MUhF$0elx=S|Kg$y57P1&OFq7d?
zt>B-dM^lHB7>crlypck8nTNhm5Cjz+>gcP<73hZb5AV{G3Q?{owXWNhR<IO4<}KD$
zUm?;8B|Z#_vR&h_-h}XBiftdh=#6}YeeYoP9|I@@CWl<@5F-(lo*#0QCM1;I`3@da
zvd{7MA<Vz$&jxfkv>y;*r4paowW5m;D&Bi8Vk<2nooV;?yX?)q)e%G@S=-+kqjS)H
zU=ao}O1oQ$+C0kLr3WSa28W|5`^|7Zq-9&L%OE|XOd`yNt1`}^67mi;-ANmU32y=M
zofFT6OwQ*en_YxwH_Hl`=k3*)RouRRhk>;ey!Ot7e%*$UwbzXHCm*#~Q?}BQE5G6s
zFKWa8GGX)yoL9rIjGqpn-K3LB#KaInqUS&OE0(z!eCj~g)!IyqsYq3d8dY*>_Qn%c
zM>(6Jw!wW0H2W!@25>V{JZrAYkQlGE=V|Jw(S~HVN)8{Jl~!DFdBb$_gS$Gb?iuk&
z7C$Oo@y-l;`I2^g!uuX_kz4DaN8;G5J4PmI9jO$MXN8fB`Lqs3*O9pl`GW<AwL6Yy
zUCc$VQdy6*xVyCcU=Ec9<}T5paypugYESelK~zOQ<E>pgNNWxiVNHKZmanI|SXm97
z9e&23Q|hegEi8w}^0$ou%HPB|2Nji^5OwYg$lZW(!mw(V<Ppd;mF(15Bs~wsh>iEp
zbM4U8YNRWDI$kp0dk(*+&u-C(e5clPaNQUGj)}1%KfjBzLvX@4a>nR+$F$C)f5S<5
zVIBn#|Gd`Egg5C9iKzs1biOkt)=iVSUa)0T@SB?xsH%N!beJPiAS1I|m%*0xx{S}*
zJ@(G3-Q7R3O*}}Y?@ILaEHJ}9;l!K(Mip{7o8&JJ7|ZT2#(P~6S*TkqZf<1E)-#8>
zy<|@TA~B85J&U*k9U!%3&${D-Wqj|TLE2ok28wUr2^9F1%IPC_5KN?ykYQdIj!oyK
z#%}kSzg3LGs;cOr*Hy;-rroUy3QT*u<BI2(E(8+IpLPA8T)9IwypStCSI=*|s0V3)
zz4D8XEjQB_9`fH{6lwK}pX^~STagQIc_}nKhUw`ysOoHIW5MoPy4^QuJTJoA7ti1P
ziUCYCUG7ypXNHQGgj6f+-490P4dZ!DE#Z;M0N~fR67f-6UPVQG_IT<4thxRVQuzO;
zl^D3dH^h`?5_1w7kdvvx_m*fBDSZ4#-CWCoUzf>GufwbTHvDVkn;bLLv=?1pNvJ}<
z&LY0$)zQfbdoap2>c}pjVebM~?W4Mrf|}~pIX6lOr*Kjua($;@EOatY(i+S15Yl?C
zQOd}TYDi&|d3Boci#gN5OJnsjvs6Sg%vU`F)?y50pH#HQTV^<X*wsDqh==#O9$lf~
zR}oM1TVPqSnwBAK-KA7o^6+_D#P40Vy3EnVU`-ea>m(4PkPiAXPRw~9YHZy}5_GUW
zq5^isT|EZGQo5)nO4A+d^&Vh*({j|ijbL%Ocb!}`laB2v!ACh1IVV>%fcni4)`(M>
z*h?7Sbt*AgN=&?i$Ge}Trj7w*u5v-qKY-Z-s=MWrYMh-b^$sRU^kw|ja!T-9c=Wi{
z@DEIfK;_!!Wc*0L=NC+ZZy#grca1x(qpf@R#x8mqu^Zo2POw5n7<zlurjQ~g06V%}
zB*wR`(CO%jj$<rQGj_S9vGu(72h&ARfliPp8xB?A!ej*4skrJ73!&`#tppTM$G*O6
z+`kq;I#^ccPnakT2tOm_m4b0BWEq*?o_+0lUJfSqfI{h8hk`^>aT9HO?`v><@Q~m9
zdw&v0P1`oCyGe2f7bcKHGbqf0J1M(-?jB+-7G+lK@Z~nHYPT@hEvitF-~jE?TdA+q
zbqvp^1H0}98!#(C_v-5&K(KwiOC_wmIV{XszL}YR*`Shi1L#j&wr8?d|BWYQcY`Ej
zDcIw_?%r5<=r}k1`0ayzitl<=ru>7E{fYnKBv^elJX+4Nawk&gP^G{_mgqEqOx$}D
z@d)!7a56LYk1u$+qsY-db=ezFri;DYgdr(=Ie27>dcUhMw#S#u0f`-5F7WzOhoeyv
zO^tpemect`y;`33P0dnCNp#uy#91O-yA*tTRb`)dr=yr?0)99#mSAtQxzo+##YG%K
zt$uv6XIVm`RA_lPj;V~QslGk2_xI1%uHy3-?`+ZWdHlIVZUA@Ijpwhz6hk)rTSa_P
zVlcUaPJntJ07s}@PWeB{X}3R}S7+-t?d~mJyAnE!x$M@t{C$UXnw%@uz_V|9#yh#m
zwBUEzF7rgUP|Y2!?cW##j3lDE&+>q!L6)S-aLgei_vLrZxgVq89vrrAR8|Tih{cVn
z``3Bl>ql-@o}fOqkGCt<yHV_rLCwXP$unnr0>tffr*eMxMk51_eDIm`&FlbF_ir?F
zgmdx$<(VNmEJuMGL-!CKX1TUsfpKtRw0%-saqiiTCYe{o?VlaheCQQ*qH@par5-wX
zbbUm+9OBLOrr!L2*ARVyC&+k(5X0KxfHJG0#>cG1c3s}o=%1gCj)75+$q!)OqoSIb
zi|gv10$YgCElW1m*Ejb8-ym;2H5gh(%T_KcCDrG<-yIzi5^}i~Mjjbemz-N(*+X2u
z$bC}|pfSF@%F#E^(oIEZH}j7y&1F$q3ikv<kZ$r%W-K&ZZjh%2M(kwL)ba5g&Z_aP
z_%wAad_e|io8Oc4bcu_@5c4hg?!yL+%z<gT-cmSPF|7F!1E0EAQLns${PEB}cZrRN
zaaa*&B;oC*8$Y}M+8kjSc$#3f%X4!u<x0!N>)`D|lb9<nQ@fnBmLr78>eEkpL-Ot#
zaRd?~EKHbg6tNn{TN$J#FJ=l8&FY(JH!RY9WuI!J!dKdh51r~~?FKfD2kjM{-p#r$
z(<v9r52NlZUD0y{St*kTUOKq53ri9(c58oMQ*q3_lGAsn+R_q)Bf&`dzh|P1*4}vC
z`aX0RWdHF<r%~^fJS~H-ERdv!ybR~A$Rm+Ig}$TCmpF<(jd@2+fZ;BvxzfsG+ZQO=
zYer}}DGL8o=cONVV&n@b7be08IjmG@+#T<ip8X=OBFk&l<szIm%_vK8va9dqJ`2cJ
zuA>g@@j^f=m%vnv>%GX+P#Y`y*>JtK^}+afj^3RQ3b4PH)$w#jZv@8VH(3HQ6R4HG
zglSF~cDut!f%BZ}Yi`af`tlgY*DP^a)D>;<s<#7;_{P$9&7dSUnz*fqz}R3MC@T5%
zAtb-|t!j5U6$FHg4n1Cit`>0Znr*YRW!jaH@+nuP%#g!+_V@L4wO^oTJxupf`K~<&
ze}#-Z)=Vp`rusZ8d^l0W#AGPfc}C$Fhbj>NIGioj-FXZ0hU*k5%7X=!#N96*6rHUB
zeOifc(M20s*&MtLgA)sFy)z;dKYF|1eOWR*C>&1A*>>n_y?c9K&r-NB@6O&3lCqU5
zecr&>vup2W2Y&w>K;6ZfsYSKNigevb@jFVY4dC5Gn!mb}L8De#YpU2+3p?><`iJM#
zXSvbOV296va2xNvNd5KtXp`P9P;KoyE(~kgm!XS3_)+u;`JlA}nPkwRdh|>77q#m=
zPwE}DK+NN^YpZ4=z_+89pF}Qecr@$v@((WH;@BhAC$NKoM#zXw^a-9(<m-Dx8L3G?
zsbb{#^HeMA-%`2GA0}ky4#P|nTI!bc8MzCyyds19W;c#g6+blP^N(+5&I*+Bzw9A=
zWnay{#AOkEvbdpeaXD^YzIyH>BqYqw#1$144UvpTrNmnVxac9wLj>y`KCKW9l2tq%
z1IpP?3JSZIdy@;0WBgZ4?CdHXPVVk09SX$~K|w)#|A1yY1{U-Nqb8O~y*a?lLXAb8
zYcq)i3h^;{4z~v?YQOC8@Ah_r>-w1983k}H^UOdc7o~p`hb83D&069dH|$PGJ;)a5
z<&SEcUc2n!Wc_w+m%cuJ!?sTqXVlaRD9ZJjPq1*!={$4jcU4?1{JJ6$t?2RD1>5Q-
z8d+O>g2CYjRlF;$f(2sq9_37^Ceo`Jl+ch;0LwUon-YQBb<7ogw%L1}vyoj<%eZ+^
zAy2%B;E1Ww@o`k>{Dypn<fOcQZx)~r`VD`@Khc+#UdH*#X55;|XS<M(7IHH%k}Hz;
z)JW!cF+D}qB_}9+EuYdea(}hWCm^wX$b<UL%h^ERR13L&WII#_0NK<6l18(CbKD!o
zCau5A6GAnRqa4SZ<!^?ph}<|Q9L+_1{4<mFRZl+)m!5R?Ad!h@v=SaROha)`k0HB`
zkE}1WFNHHA&Prj`UV5A^Be)e&MyctwzT{|WLdtegS%SLx>CXz*-wnr51*aiB=|q(H
zXTM51wLp4V*d5*RpQ@73Q?YPlBI~BNZwv_HSBUm{u>gfxo?d=hwyo>t$6InARX?`8
zR{HGrwuj}DzR^*Zd<j_X_eI!Z^-6ZGW`1}jUdLzOOrhzlP=XN;D3)Ys9V(o^%dCXs
zPSiCcT_}G_M(`KBbsm5JDmHgy{+_I^_&h?=^zW!U@_1`&a0qLet{?t-+-+?za&gIp
zr}=D>3R`S!Z&PJl(~ve?%|XGf-t}^7>|N(?f|!R>#TFzsk$0qhRHVxd8mEuhdSg`z
zBXBerL|A}yA(8Hf5Oa;Z@h`fL0kd&|dWhR^Q^v1n<L+)Rok@iG;sM86Rg=XhAkQ({
z!Up2gHcjM`r#fr)?Cm&%+}%80v8dG2In*0DI>#-n?b2+l1B0GVKq5~P&YVQTk4s%(
zB~4HqL&+daQohKO8On%+lIjsDJX_dS`GM%`ysjO6Qc{CE_lwpipZr0G4<_$;KR7VQ
z;H*u&rwdLA(WJ8r{>XyKmc+VVh|5n9<k3pR@RvJopXi{tt~6LVG9zU@q<GvooD`Mm
z+?;rtY?KwEqLQY}i^i+Dr7LY|X^ET2(Kz|k^q_YP`*NB4c)7uIwXeUYxL~A^#Ubg#
zZkv1BK*KaVS|G}7ln0C&nb`Q6Z87lpZ+-;Tmc4EFoa|)RB&#oBkZkzKAJ>d&hMzen
z&zX?icmM57$O`M~3XGSl@&KC!*6X^h-D}PM{=d%m|65o1zf6{wqHy%|^zrf|HrR+2
zS$B~pu#<Y7>p!-Od{K@7+Cv5ia7!V8#4FtY!xJzdqE||n!lb1FY!uc}exkZ}j~Aoh
z?U9iY9@Cz8fb%G>V*n8qKl~Cv#4k2}$@rk;*?g)Awy@(sm7GTO)AFxQ;ic*ZyYhgC
z@qiuvZ)XStUIEkw4uE!<yI|Mw07jKR<lFCgQ#JO!B8e3%7cySDO2Z~Yy{`z7w!vgC
z{o`h$c?G%OM~qb#5-U~NJ|0CTNIf&?Rce+Oqu4CPBxs7Q(5Fi-(wvNH6}dbv;yH?V
zyD36N7eghox~`+8DkUraTspgqY`925ZQCeqf;}w_$!4}zZEQU1pg*t$Rm>t$>Zx?W
zXz3?PxPX3?TGE{8xcX*A(St{GR<->(&*c=PQe4?mQ)`%Y14&<xkr=xmn;LoLTChb5
z*#%ye#AQJTbIa37b5GC38y(4(WX(wXX?CYe5z1T+f9)gB8~IYUVZ4$Oe_4$aPow8y
z#ik40h1*Av`sc%4vlZi7%&<!tDaH4+VeKsnG4-hFl;v9P5>m>9);g<mn%^1!YB*a}
z@<%0-bbl{&&Aj_Y9Npj>Ap!}OcIFK*9cr;mUq$UO@uuvS{=TqdRRyZ>5)fT<@`g-b
zo6II9X}P8b8l4sg`;Zb{{eegKVTyZhs{QLNFrg}WYQcQEv^%N4Xk}`ck}`WHs@%wt
z%i0xie|pM+gtZ*B?mdU;>l((@x_TWp2i+;g<d4B#m!fWW<>sDz6!hK-ly~y_0<oID
zM%PeMB$0S|8j3~Us}PQg^37yqlmzd2dV2QZ?(2m_OIU<&DPfk%OM~v9GpjZf1oS$L
znHq~t&F`*xg!i+eUYogJ!_j|0Sn*#ITVCGXZ%%m*#c(J8)H`u}ED0M~=1*-|5-H9p
zlt8*CDv=L=2uz?$sKpfBKOnYZ>c06{i-h?ELbF@vE(MB&>5h>4h<#?oTzgSOfW-mW
zC=)NBUdDC>bZd6UjIAdhS1qtNQX(>RNxEQ5l<_s*zc5)Kb&xS#M`zU^EqmQdt-4cR
zn`6V+dHHx%%OuMlS*NG{*6u4|{+^Cvcw6}zpKZ8EVbHW+Jt_p*vC*3JBu@axOxnv^
zg)2>w2)ny|zS|ImWZJR$eM?_|f!Y*ue4ay-=9L^LdVnd|!G+(WzL`hT;ADHI&2C@<
z{TJ&0>Y?6%fc&=|Yb1JqT+Nr`2l_p5y-!420;Fbja9U=jVzK1U_nZ=JYsbM;GxuXf
zY?8)x{UakYOJbL{S6g(B?e;)22`(<KRBLPNME`har)0juA!&7lpK*#hA%VhMg*p`X
zl;cn_sM}hEVTU<u*<>Z{9;soJ(9xIgd1Z1%MY+|5PgIqqwO|*_V*pQH+Ep-fM08LJ
zW+HHBuPA3<HStv0*lpr3zP-HRIUIP%cSgS#jzB$<1EXQ-cpf`0++Ew737uxeEH56R
zqLbwf`+IzhyiWXr7RZxGFZL)&<k{<5x3x#mpSZ~OMl@TH0WKBV7GFr@+%$bLFKd7E
zw5>C$z7&|2=(QoS=Mr&d7){2rS>uQ+=vuDG>az-C_VTV@@Nk%KQH857I({QX#FV~I
ztXVy1ZZTk9gC^A`#~NEaB(6ly_n7f(`&m^;Fs5-2dEp_u$V^DdrivdV{#t;gG;zTr
z+W2mroTCnZ|4AZ3*EW(+_}l38{US3DDj(uQ>_1+qK#kO>aS&06{^zBZy&BXB&y5p@
zKe7q8HNYxYpfp0}8-BZm**!LWy)Um<OzM?<GyY85y(R|6^i41Pp~qD%kIqC~T`WR@
zW9M^cicAa)lS^#u*}_JVREtAcwufgO+R&R7Az)x&WDj*E6MZ-o?m%0T6i`WzUF(Y<
zLJw367kD{)>`ZT{EiFxsAs@}nU3aQD0u=nM00WzVylmqK_mIx8N$IAe82*Ueh?52L
z=a|YW$;K9?)o`Z<9Rc&?@4x4cPTel(=-*yg>xygFzulFQ{7y+E#e+QCc`W1J>diY{
z{}QVDuzP$9Stzi7>C$%X6*`k$|Lxo?a(ms2Z~LoK|3lHNU12TwEo*DG@1LXBj6bru
zP0($HTI3@M+sSfeyYz`y^1p#zO{vYrNc2Vdhug{y#}rgnR^sB}NgEy!ywhLok$I8S
zpZP**K%&yOMNlQi+(U5k$u=f|k&)5m@bkm>zJG8XM<ff|aHe`B_0JEjK@FZ1C#TxF
z;!*;d-~4a1-eMg9N)?i2Dc~X5^7yY*l>h#k`T)cFVf4`w|BK8&#z`Ow`{BJ*Bofp?
zjg-NF1X#|oC@U-1kdO;%A1nB)hV~2C??H_D+$&aFBSZix@oQ<RL(;_Cv3Q&4@A7tw
z%%G~`#yqD<ASH0Ur{D0e<(n9LLqs<8PDdmHSHtL5z6|2vpy)_FP)1&<aJKpQ-pM}`
zx?dS`p!b;q@wxOYG*zoPPI9nt8iiC(RM6b*$lYP?>^+s}aZ_(rJfllc7`@ukBO$H`
zm3*rwkq^{zUDExZ(N&|)^{l48EF0PJ`qw{#Ss(L%9@>vH0eL>HOAO>jSUEgW0*~DW
zerbxFKm^<^^LMrDdYIZ?$xpE~A(Fy-Q_ZdVBE%b{)4cP`L-ffyH+!kq0<x6l%W9)G
z#*_y2bn(V!k&oW7ME-b)Ju&gNWg*-%cQTjn21li7-RgMR3`n^7j{ku7GWTPAo3v3#
z#s&QXJfJo&$~gMpYz}w7xho5=DKAs0>Mwo(lvwqK+mtqz6K!(uXbO}4!5^=4vH9_F
z6DMrz#VZ=!%AQ6tIrVVflr}{*ig<F#HuO)+sclR#Zl9F$uL$U8O!PAISpgwZ_f}g5
zcf<G4%OY`IKfb2s=6Gy@Qn8)pDRK8B#==F}t7|*=dz&iSfxf;;?Rq=m59EGxXC8HL
zK)A{&pxj0t6-fAL<YDz+&Lw6E;wP6q#)_qkkoy5_C-k2*I>P)v<`#5-&wV?bfi#pf
z%ohA)kc>=a?xN(&+8x}5BrEN&*XUh9LZ=swdPZD0#~8?TuA=79K{K#)5rR4K7Imk`
zYT));tb@%JZb$d^D4$EPFty1O<%Ro7!Kai7AOVUIm?E#-f&s_&S(Zub9V&k)A_77m
zasR5H|Ly75qx$6W?gT3Z>pqqI+R$4^i6xH#hJoK50F*8&xUBm2Y5VvaML0C0YnZp7
zgBE*jV?#1JIvN*Pcg?sEOVF3ITXzOa=co1@5ZPj>BQT=o+PGc>>h*G2k21}#+_wSC
z<_mR}39h_V|9{@>fA8!Du9{0MI9jLR1ZtBH!UF5BF84Yv2`ttIknoBs92_0T6SEp_
z-v|#{#V?dM=fH}fzAo-8cC)+z_>@D=xWgik63uo#aQc7El|pp-RJ9H-3QB%2i_&q}
z+0-M%q-vU0$VU<%IbI@1Pi`A&O@J-bt(Sr%pbZ~DQ2S^fgzng)v--!BL(=!c3$1^v
z!M<-}gz9sy7g`zHE!j?*CC}IP&GV(Jp5+S(u4CRE%%GEkGMj9|Tt+Yj7I3)kr9#{V
z-w=raiJ23__~tDb&ubX|yUDdIT`(Z0`*l<QT<v#^f9A?o;6d6<mRO(10v`%3*CB&i
z;;((XxXtjgS7Jx23^s{uIUFEccQ#Zae3kDvWOV{UZF3A!u3&ZM345Xt3mIfmEzx8L
z+suo;wtm2E*@?eY<ZJiw(W8~qY{A182}!%6^J9x2<+1dKck>zWviU+)RXoU8kp$f+
zj^(nyvmp-~+5UM+ws;hFcSrXAWwwF4o9zB~QIHkgwHbZ;0wC|mS}B>`SQ+O30)_aM
z;AJ+&7dF<_NrcA-7W7ruUQRv*3~%;#)>*Q6JG;Jh%quI4l2c(0R$E5$Z8`zWDU?k@
zQ_)5{GiDdbPwH_NJVXqFg6Wm1{2$S$=H{d__}yLH$g+saj&>V&Rwf5ZIoxb=ncNx=
zj~%tOA^vZ#Z|vP8w1vZC(AA`)Xh|5fy1J!HO=45tUZ7j}Qu%ZVkY24Vxao(;U0O!H
z_9RU!wcV*LXBtU9nFh#Q>Ik3pjpi!Wn(mLc@Ng@lHT1tS(oOMY%C^t$%2u+OjIg~K
z7++3(?fy_#$8)X_L;d}XFi3W)0nzN(IG6nYumG6)e#@-Ykn;LbCYh1^Zh{Cd1JL2~
z`d{M~iJw~hsX9730DFyUxD%ShY5GT00=7hn9w7A>dCi5pyQ>Q+W%@r>1pafQ=fClw
z;y7o<GpQ@1VilAnL@kL~?OK#pRu!tar-K;J#Ef)x<%MgAghBQG)+L$ruwXYbcCzDv
z|BXjHAWH6)o|w5^xa9}_nX1<WLqbuUrb98>775v~EWT@y`$`V5B|W&k@sB+z4)fyo
za(mE`2`==9n)RIa4*@Q=N<*YVSdpu~(FrO16<w`$6z3~~KM%1CC<M*==|d$Jc_Gb2
zY+j3~`Ev&qe-XdqMbz5k_>VzeepXB>W<=JQ0j(+hooogue@fu9j8cPw{&W;Sc)*A)
z(VYCw|9a##N2$rd#@h*Rl^?;cEH5z&6ztUzJ|e=QCaVAr^=y@FQeXT-F=i9#>KqCx
z>Aw`xUYv=qkZCACc%94#+mEm~JG<A)^Th=tJm+NyZz(pm8A67hV9xpPW5d8$1Ym0g
zuTi(k=Ob$_>#6&iM+v6>ey~-{xrAwhJb{0<&{1s+og6XoS!)NS_f@~P$KE+s$7}0}
ze?%wI`5J!xYlT601Z(U?C-STJ0%Py5r_x)u`537V|0uXA^NMG8>k3W`^|Tv_oVb;K
ziW1)@*|>SV0eVd;i;fEfO~cQ!%|?SgVg&npRMQ`yvBWNAaEQ?jn>O_GkUsl5>|_Z^
zJlgO0U_0OJe!29}PRx>iXuWS-Fg@83SD&Astx=H*KYg~k^W8R>#cK1)I~-VFiJ`8H
zyUPqVJ3C>inxTY3q2O8OHoJq1bO09oN8T9S+>4Wr*6QM{giVuM9A?-Y)5qlJyX-yc
zx;;#1F5DdYK*CKpHxMX>;1+ufD!poYd1j<Db|@p<Wm?}TlX{d4neFXSjKZ%N56$-7
zp;_A+`ILNf$XPQ>H2O_*&VkMCVCKxmcKYjx;jAX!exI&)mY^Ww!j7Yq$JOY3dk_`t
z2rjWco{4wY>0p<VEU!OC>Cu%l(+dq=60vl$p-=PY%reNpNUPRMGRAk3(&5X@#fg~X
zvHR;(hwNnj(W#qeoi9@iwn)|@PS!oz-+Ta3GuQC@0MigYRYxgI-p4crmpSqzH0JnO
zQ#<h!-d2Hn%O2^HArfh9!gCJ+K1!C5tAba>PM*SJr_*L%ym~`wW+sbtw6Obe;;;{n
zu9_NFQgSlNS#{azxAdwec`Q>!lXqJwn;Lp{Od#y62;U{2KHXsW8<%SyOLpN0!wlgI
zA>}L)`4HFg4Eqln*%=G@eLr3y{oA7s3I0$Zs#E<U=)z}tr^BcM0>4;iIhmhAhHmY)
z-i16cGLjs%^T&$C1__D7D`^eYX34KLf<1g0h>c22OOxm1<W%SB&yx5&_x}BRxu7>_
zzdW<T*r(1yg!6l7<2-%H8*dQ?2oC@1+E1*3vo*%&F$ZWn9@6mLDjieQY+card@P0~
z_Wh=p)t3Y=voI`Y-7gr#SwAk+oQ@S~u%nQ2fkYNVCihc{G>JD1nC3cF&R2MGad|^+
zNDVCJe6z={rBzVrdQ{`xV%Vl!mkc-AMQAF0p$Z&$%rin3*TPN%V%%8;tl6Rxi0km2
zVHL-&!=0O(YwU{xnLOTlHsPE5i&>Qo8)$3Qj=ZD<Mmq|q(d&HZTFZvzYKA@|3QNWt
zE<<VTO^Zme5&`jf3`e_c10s;Hcjn!^*MhU55!sI^T<G06VPodic=Y<RZ}$a!UI|A0
z>C8l#<l3w*6h|x}oJf{@c58HFAvLa-_A0A2^Iv^{6?gu5t|@t0TC{vhxQGyit7&lD
z{1j{H!*T`1bOqd58oNo7yM2*YiGTc1wGs&>#cOm1jp{X_tr|DeEFAs9UwuI5_f;M?
zd`EYe!jzhrRs3f;Q@=Dqkb(%?w%JkItb%=p4esv!EqWh})f~T}bJn~0vY-ZIOA8Fe
zebgucN3(`Rs2)LLMsS%|Hf~)<1MQyOOF9O*vukph0{R-yt!ArIt``*My?^(7op_F*
zMOPWl0l%hdjx*}gGo@!HUe}h<m@U}=yE@e8t-FS}JR@*%IYmgKczZQrMLoAZ*pU_#
z5yQNPW&K}*vMmqi{J3b&^W}s3R@#$SfYA|GCf>pQo##YFeN0h2HCvH*o;#|2TGViu
zMa_AZs4Td#=jWbmMt#><45>`ODahSO38#_^#hf=!kIVa}$I>|XZfP!KJy!gg@jxKo
z#qIj;MOb69sK6W*!+l<T?mZq}VX5UfzrTg2FWt2R6(f6etf<#((ThU~1w}>5Yt_4b
zX6G(<HDjn}#oc}8_pe_gE`Jb`kx6azToq}RLHY$>9wuxEO%^Al9))x-hl!e$T4X+_
z-Yu{1?CyOR!^?t;=Epw6i22&-H9pKAowU~7`_p%Bf}_UnYFx|3ww}>Nw|QmrXj4hI
zd&U>TvCcJrjgorneFpYR?zzIoj(Ri>$W-!tMVvv=C)@e_9R)0Iu=wV($O6W0Zvm4w
zXnD<Owci$QKQP~T>uHOBablD~AV$;b4T^(7Zy)mVGO8Y9Iy<gvau*O+7Jgs#l`laj
za(Tm&(DA>PYM9pR+1S&HC3InMRM-xuGv!ojGjjctZ0pg+VWAZfAybuwiq8`Fl9f37
z4L`BBhv)@bb5>*f$vnF%HzZ|Un~w??;`omE3{)rK_e>b3>DGfi4nU+eXV%p!nw@u$
z5{O|eM0wZ<A71^t<F_vM7gnr;S9e0V!i<|fwFClO^4A<4IhuEB8hZ71q)Ca1Q&R>f
zUI2K8NX*A0`suxqA;G-W;Zh(`V9585<BbzY!#Z1@J-uIXV%jN&?aRG*>D-sz&Vx2w
zlh$!{soinDpZCK)^2FYYIx2D4y@E{-6XA{7*0%RQ-5oH9UM`&~BD)>^TZELDv#seY
zXHTXey{abm{47#LKC|BHKQ%2GQofo`H^@}~VgkLKtq#QY^Viika2!*!Lu&h~Ya|Rv
z@V`DK(#r=S?G>qbmh>_l_3@p@?y}GFnT<S5ye_Euu1^-!YggR0F0b!Rzt6KubhmoO
z%q&p;MeDuVbs%BeUYK5y$ny<5E}u&%E`ovI6Am4Oq$fo>4K4mK6U6w(Khft@+Edao
z;vHoLx%X(t!feyaqB+lcx2$=}@gzOAxTa969ruyZDToQ%n|pJt?XW#2B++!mCsKfi
z&zs*Sre6lh=5qs~>!Rk}D)<)?Z^cd5=eS?WB@*v-G)%C*)bHV#k>d|Xd*28SCwAwR
zkriWyTA=NuHhQ%)cdc~~<6MBwm%Ztxt;zh<B0niH9q0<&cA}shE`H*2vfYrS-WJV`
z{#&kBE6YfUKSh6?4nEnra{(UpuD#C*5#(F6i03fm7vc%}wm&PlbJn<^rFvy!!z!P!
z9ADlC9DO%y&x@f5*5>@b@dvu$i*fM1=eZ^W0`F!0mOHoV4xfJQG=H9mgc(uOQ)=?5
zu)yoLjWF=&*g7BkfnrDmUx<08Jjng(61UsjVp)v5hgH|Z0K8N;Qu|U-DMQH5s+Okk
zEZ=Q6Mm|z;yH{sHi2g0wv=XyI27lj0Jp!xA(v*}(`4kt^I>*Te^;j>39-zl8Lp93Q
zxk%U9BmtU>baA(_&y<Oq&pOfM6y!^>-QnDJ9+j1p`_rx4u}A8gMM8LZNmf)Jw2ES2
zNNYel-C5A^$Jg8c{;`&R^CCxtA{qIsU=(SE{FUJ7R-0`h@wcDJozDl=#1Y*|`*%CD
zLFq7`m8w=f>CRw+A!X3Qudpyw=);J?oxz`5HJB{&^3X%s`H8Gw0=z7n%Dxw?Z?$)h
zRq2%golPcgU-fv6WZRULcWZRBzfW3a!xQhFXjI!L!@FAy^~^qa*DE8C-^@Wn`ru>p
z>~CQh7XRCD81p(5)W)nG{?=diC+sqBf8uxVDP&DkQ%?~DFNBN{u~KLAz$GXamV6ED
zV(Hda76t}V0heLQ<5vL#kM+$P>T4T4b#<9f$x>0m8+s8O*D;#f-!S=;JtM|OX{n6a
z23btNU|S{Mdl#$?+{sp7#|cPru~ba&Nzf9z%2HgHk-4FPNQAw*X>5$og`SMe8^RGy
zWSXmW86yi=wMHK|MI5B+F`fiuSe#$1%H@1xUX>7%=s3Yp%p)Fqy!^WBpsKumG{|_e
zVEtlg!joqgC#?P7-(yy>>Hp5=T=v)H+gsAz0b?J+h4R9!&F$?8z_ZW9=0yzco-!+{
znl(0?-kA>#i7HabPNtl>^u6>%Z-;oCnXEUmUr#lW<s|7ZY8yK6uQ5rvZ_9(r@;sYc
zhra6ZKicy-GU(u8>w&YeMpG2_C0dwf-E1ld(Dp=nb@gKX&_5k5wm$Nce!k0r@U`~Y
znw}IZ8Pm1k)7iZ!G4o3mN`%Ab!S2Kr=9&~ykUbPz|5kQI4lz3Ro=g`mTs=kM)_-->
zA~*beB!NZd(CJ;vqY_64!lQQOu`Fjwz4&S`MKYj2eL-}!-m^66Sa&xWCPyCHWK~zX
zG>!(t_WsDkib-bRngt{Y6VavMcUEy;XVUxZAh-VnIVWM(@~~$=`<cQOkpCgk)~ujl
zW{c0w_Wk4$h)dQHJXcs*cd%i<cUr@wVx+LtmlK5HqeDA@hj~DxV7+t0Y5l7a<dtQ$
zpTRn!6q5Rl*f-VkIOFlgPVc45n%6bu>hQ{OSdv|RqUT8By}G}O{&%K|ov|h|O4lpO
zRJ^dJZFRT(U^Lo-y8Cv5-AxFz%Tw7VAth5{d=$zmX8g0N!ik&HPvH=Mp=I?W(}<FW
zBv#n3og3_9f0I$7NWYtxx|`H2ol)8gj$%DoX0BGlpGKRvS7}(p#-_1}qHpW`o1Z0q
zmj3cmDPQ!qI~tv?24_sgxmfjzl|4f>HQy7K#%zxUl-9fO_(L;NSg!<Ug{-CAtZbeL
zxLw8ei*1HtlfaL{bKnCGQDDri{_gXvfXK12|50AX_Ys`0#$_#&HQ}<ph3D@h<QePy
zpyr(A7RmCY(FN%*`?L9@Wn?Vsn*EQ0UYp}D<Kub#rMfs@Yf_K5bnqii?9*z7)4>3A
zkH7A=8Qg(We+Db%v!FI>eOcKhRY!w*4vI7BAN5i8koz9KJ|nH&r$eO0H9PrLd+eix
zBG{NGm~9mlfnq)Cyw-u&RYjUKb&;K#s9@iwLEBo(vqM^Il*8Vp$B0<8WbEg+zv8cp
zS#Rfi1iw9$`)(n=MM+tl?UAX*+VBdbUeW(Jr{K|OUKN`e^PM#Bwp_qD;SK9fLD%Gc
zeMpMCqhzeYp`l&`vF@L&7I%=<L=4#Xh6(>`-kmp%H%(Qtl|O35H@lLK$?hl-L(#te
zk@#QSrO!vf!NGkFqmMo{Kdzo13dauT6Y@DSq$3`MHX(w}bd&EWeLz%F^*HqCxKz>@
z=htqN1Cxc(zX6Lm%6M+kDH7p_1Uj^2DmmV){oX8-lLpgVOa|f|B>=bZhhyVAR+aZm
zxvonm8o!0CD_abkU82(?2U^R$45JH)m@Ph9wi~@t%Y`wI&%KQ~-RuI%h@?Iy7sV_1
ze|zjG{-~n92&xjciak9=^1Lgrt6OU!&$>Xd-rL>Wr0HPwQivrdkrAS&mklkmldFo}
zo@{Pzj^c<tc2a(m0#ML)rov3PPlC=1lzvFEI}2EO>#!5bWJrGC*KF8X=o9h=(~kZ{
za*SWr4i;0)Z<*R~MS|0h&+vbHj%mH+5IHX)Vs(604Y}K2>>+qrUJU+Ki*(f2!Gc}{
z%1)l6vDt6dhPb2JNZQ#x_4hAIBHcSNo|vKFWmaNmg9cMwuPkj%CB;CJecdowuMbnG
z$Orq2Q%7#fF`MI@a+OIT0VLYO?0dLLsIe(>S_p@RpptUcVD<0dq}x?c&8^{lU*ODB
zlz#=+)Yc(Lw5x4v#O!4KBTM0$KYcXg{<PBa=DgU=P(He3bXMBz^MUyQUKM3N>Zcze
zE}~w+sz8y(Al{Y=#96X-4A3dSO@$by?H!U73NkSnc&It&4`-MvcBK_2vo=qGt>5mi
zKoc;(CS!WT%wm5=gBBoHInPhc{X37N;x~Pb2i){GJ3FD!E093EOc(}zglhXtNXE7E
zSy3!Kd*Y;T-G;9ob%*wB^8K6ZJo->kRwXk1E7d$yk}K=A6W&MB$hO7z!C_rKXV5Z^
zgZz~)iB`PEdvJ=c!Z~2&O$gg^XTN$KjTn--ljn7M5_ciL!A`Cc(_!uQ>sBnC3aFh$
znq{sdvy+o$@?@^!$ka$lkIWgouYc|D?J-G4rX(k$uH}Yhim|fFw$KIl%2R&$W*@^+
zv(1G{1_F`h>&V)fwx1FhKPtzHa7o7W!rMVi&#3EVWqbQQ=Y_@Tuh;u50RsMcC?7hf
zs-B+0KP<v4(Xg1jOPpQ?r(F-di!EWEy{w{QgU4@IsQXfadqsP5#-BoV`U1Z>lR1rR
zKO(<-hkK&$3N<Q!-=~lOY@%9vZpt0;?|l{og0}yCsZ9h2b&j%%zA8VxzQ!NnKE_nr
z6zVS?RX?0lM~Jx+(Mb*ZPa)t#EhVN%KKT{Yz0hFv+P$rzxPvnr)$BTEfU--_%-!)D
z-;>`7_YRk0-sM-v(MFnU^<J{BI5u>64^o5FowMt~@8i>kbd&u{W=;Ox%V4(kMyv~l
z8e7~aP+i)#y;p(u;`T(Jc&or(Z03%vDH4gbkiECJH>J?KLSTt@4>_qjjHD6-&2cjM
znyaUyWa{wL;P_PV!D(+In(mtqJ;+aF<buS?NLW~yGAm|UAl0R^;LD{AOG``ERx!W%
zXd~;E2!+FxxO3mX-p>E5ZWz2nAkteE@V>V36pbP^`$H|Y7zKwt0{5?`CH-{(GC7o{
zJL;^APxWg$r-5BYv7O7^A)%A!mUMSwi>r$BXRCy&fbO5lMpP}9pJn&OHmn%!Hl@3s
zYnu9J)hB}wIZvKmL=7~YE3OXZPl2wmV){)qYtSpBw*<$Y_dYj8T^QCA&i+JDemzs~
zlDT&WVwnpb;GE^N=3+UI<U`!C2%n`E%Zr?0p8N;Z$e0K^%A$O-c2P55l5Tl5)6ss6
z_?&!IuX#4CEU2xGO~0y<M2wwS$D$kG{M-WZ;BjjQw<9{?K%}|AkA!Qu#Oz=BYe#~6
zAJ;quA~KhJ^Pvf0;%6R7q1dGi?081(!ty6wj`}GBVqZJ$;;v#UWxQoM#j1jA=P%CU
zU5(|M*>qMun$zBGZqKS+#^!D4`z2qc7{1VGy&ovaoTZu3*HvSi-8!6B9!YR;BeOIZ
z%+@OVxi&tm^m(&HDtoC1UO^cE3aFDXq29j!_cvsUvEK-DX`xO%?J<J4Z~>-4R6Sq*
z^Ddsk1t+WG{vYDS>037X=Tj}q*<M&=+@wrEaA~t<3|zdS<=BR^qB1`{Wm-(t%VPeq
z1peiymhY^inD2ow!69+V-#d|%oymH~QItGm6oih&(80+|moqAFVQ;4z=lso|W=*9x
z2)h20V;RL#NN_ll*k(|ZiAX)<aTBchW)Bp{ukp8;H3>%8D&z}t=7@s0V_PVo*{;%2
zo@Wte)^e1Ol>=_dBNJJoZ08;owuku)@rZG>cQR+<qr*om+V996Ysa4tg+Ak2GBBzR
z=KTzYI*}erQ0%Rf=1(s+d#F0vg<|sK4?cfqLUSohIu+B^{mK<P14oGY3hv(>0pC=9
zfbmJ5epW$i8pgkH0F1B0Y+e@3|M)=v?#ApB@%bqtxsVWz)K(I#{J5s?AOwOyp>a+L
z%HULI%iWOu5YS;imn)2N;jFDHJ!zGj?U-iR`z*>?=<4?N(@mo&{g>ee9HY0xxBcxC
zR<wU5y7P)+e^s6S-nAf?lHZe0{FNZF9MUU8Oi4FHV1!wVTEkGrp+8gB9vQ5(6l%|C
z*2h!h?2wdgjQ3_u`pl-L+7&Yk`_rDHbO<K%!mprOObMca;Bby0Wz?!TrV=i11G9(6
zO9Vlq5KIcliE|Q9tt;kwZ*4?KxItBq&cP|#2`ggszzB1(a1ucjI9os}>!YD2Z$Xb8
z4*Y-#rI!u;P8kEi3P}jZgtUjl)M%dThd2LDkN|F@zvpp)+%zMLkOr}C%2NH1Fj+YQ
zje-K&;b(+DAO3X;ERYdwKqP(ri&0DppGp|0n`v1Htr7m?1X-BD57bsY_j&rA8d~fF
zUjQ06e_!P1rO%XI!H=e6g-K|H!9|@5>de=H3^O!KR0_3L=A0{O+#ST#b(H&K{xvN0
zw#IhjS<LfM)M0Vk`Sm+q_(J<T2{PZ@N@HU0pAGno$!B?YZ~-CppSY(QS{c9u-UzhA
z6K2jPRR8uf@+s=W=g*&mK!57%`G>PaGXjHx`rF$B4v&u3+N;}lO(_2L7X&{2Rb>&;
z0V%>^{Odans|cT$`XZ!*L%Frqd(ybSPXMG+MkXc&GE)<i{AE&i#ozzx7jgB_$^8gP
z1)Tyz(W7&J{o>NAq0tL|Z6Q4}@=wP|ag+O=iG?NSH-)(FwkjM1Qc<Fk&1RBmvQW>i
zynv6F)OW_DY!~kq5a6e&rzgWk#RI9TVsC6}nh1FPmVugDva++8C8DOb3`P^@=Mr{F
zu}2}I<%B}$KuWrJU+Y#^jYCF1I9RNd5|EgIE!!<vGLdKc^&Z(WR{Y;qg1`?9r@RtA
z8Vf7lPFmoDZJC(=*WZc$_}g|7k_Z$E`^5+`k3rQfOCN4v{2`H_6o3^c9w$I}j|%a~
zmj30utytL7LIngB7Cb&u3Ar66Hh7Q3yg`dhG}qCgr*x=`=UZ7hp30FV29R4t5jbxK
z&LShblwReM(~FC%EVMrTKa9O~RF!MjJ*+5#qJ%VTx=W-x1nKSu>F(U5NOyy@bc1wv
zcXvv6>`mu)d(Qj&#(2*;&+{JtV~=6&`?{|+*IaYWiFUNwsuM_<8gz2303+hlPPmiI
zVjhnyi!rg@9b%Xs-l1<$4_`Z+MnKa|!gle!Sfy9`MQM&Wkqs@~2$_bP$eUx2ICyK1
zNJ5*~@27D8_u)@sd9J@np9MvXvtBM%3GMd&TlHjSe~!Tj95(rt=e;6v*QIr=mhO~n
zWdNWY`Qht}2D!S5CKlenvp4pw6`~jzri;bLTC6(D?d$tkGPE(bxcEjcn}>sQK|x3;
z2blqXqDSEY2Bs<dYgBj0hYueneDpm%Th#s0SODh^S$X;QslfQ7h@NHu9Un)cf22JQ
zq~*~^*cJYm3TM(gQ*${{^N}YAwEU2R%t&IDFhlUKF3D}Fwwamu>jtzuz;wn89UtG;
z9|3s1-T7hucEOr_f!Rl7dWeGFe<{!4v`Zs6K0bce1T*>TI)KPcOi{#x#_fxNZf2O2
zxvu_O+u@A7Y1fOI?Hk*TTM6Bbi5y(1q-&A<KLE?+<s}*jM9VF(AZKAwoYI-C|ISaj
z#4_7uyosak<TGcvc}_R0{UU-KA^`F_#$%*d9Y25eO*sIxXHu*b<bVIC{iPbzRl(cD
zmimkH^71+W0S<i!B7g{}Yc?M_vms+w+hF5&U&h4gG=v2?BIe>rLHu7MA5F!V{*DCF
zmQ4#|Nj&DFedPVxE{x2Iu?h#uC8nZR8C84?{=woQ1q%EW5L;-j;bKBR)Ho_jJR_kt
z>v}maU(nzycSRk;k1WhMv^cq)$4|t}Ro;iGhxv6sB=5glka1HfN5>@d#GwT<B47w{
z41Nd@hYS?lt$lf4I};TWK(dvKIq}P~U!Hc}TF+R`$<99Vas;3Fz8b46vpACY7A`uk
zmBug+Z7k}j-%gD?yq$2{mSusfesR!IF_4qt`2#fX>`J^$j!042f)MG+#je6sBA^!M
z4k>9u>yjSbeDgvnxbfaat5jQ>97_3${oCIT_21`Tn(Q!#Hk~~^!mc(3d4wr|O}@=2
zoYAYloDlC<M93?wn&I}pu|js!XWlmw2>rw3QZsH1E>X>?JRI{J@^=1m_j&1aovVI!
zlW%<a$6ORG<2nY3pCUIEwUs|1eh^?+GmHEtT*_rj2}l`Vkhs@VPR<8DXVg&x3%|h{
zWqo}T+f$M1bCzd9LlhgkF<%2XGe+m1biq@P&?{|EiNjOWxAcyMtK*ervA0UX;|*3f
zRJ|lBMk5v;eTHcVb(-17OF8O`R1tqQ9-tu9jXlFAPM>%Su0s4*gFnrWFd+2MPWj3m
zVSV3^xMm*h%05A#{?=^Z`0~^I8vc0f0Qz(ISjZiZJ+L{)N}N(z)`%ojbs(wcHxHl#
zc}wY4e&+$v5fVqmS6ha!erc6Qzp)oLdGdcbfVzTp1hVY!k-m>b6ZjOTST7F`Ki`<;
zQ^_;GuqaxtH{s1}m>U<@jB^r-EMEa9#*0MexhY+!JzwOAwiPeysa(!lYVC#uLAZ?F
zX@eFzKtx{|l5UwC7>-8JS}>=J%x}Q|3*c#^`}*h4D1t*@pJw(BpAA0`-j7`W>tzAX
zN(!4dtT|tleii3ju!Z`3WX1%RYf^U@dYtfyU$s=U6R`?wQC7vU7+viA3tZH#v$btf
zup%Gzh10+!$!xi?@L5sJQvy|!^^c(<+ebAo%|}X>8k{G)@8*b6!(x?~E4cNKp{Mux
z1Wyj`@j<`>s;$~KpNMnH)UCaVh4l7;RG?Vg#lJ(*P4K5IL_Y2OPEJmCy2$LTWjk<1
z&;NRe?a2wfPE#4ie(HAawt2sZjfx`b1sZj(o7>w7K%Pz;o|-O4dN4hn8C5Dz&$_v9
zW=JGDMS+30A5+g$Ys+pCcYb;6I$av>%B9pR0(F&u?j1$J{pBzDryou5U(VV3m6ViV
z<l+z&Cig<WDgE_D<o7`l{Z0M=LDNluQ6(qfC#Nj@Z$R9$mq|3w5v7J-1Ap)Vldt3d
z6tXs0!Zi$r=%%}6Q9}-jy>si)nFg4rDEs~bEt!Gk)^B!~kMc!yIDa1Sq_nR^MKoJG
zJLagBYvb+hpJ+(_P3r<6h$wy`A-_=ko-|MnTkm#V-@=T6zP=z(0~9qiHIuOyfNnjB
z%KK48Dlc%whmw!WC;suo&!~EUp_ZF}`Bi9fO>SIz^QQo3t72uZ0wsqdzLcJo+b`9V
zE3G$3>UYC;)BAF|q-%S7;y@KuR90Roj;g9C&ugQC_V<j3RXjdsj#MkhV?>%?%i6t0
ze@a6t%L`s#;=F77^S%AC2Y<S3QC?oY;A?AZ+of9=LBLl!P4qASZ$WJU@-uKTn}M$w
zD+esy4Hi={OibyltgNPLt#!;MbKlk1)%6Kg;-yQfsbK^7CEe*{g>G3+ecxJpXKPCc
zm0U7%U)oBe!XOAa4J|QQjWz<r5e;}R8{+C<Edc^LAuh!lO&CNc#La_kiMaI(N6tIN
zL7ph1CdlJPS>9TyoT4tJwG&M5hX;Q-+0PMX=L^oqfaT(ki5B~8AzpO!SMZ==ZI;?4
z#_&?masq%Zy5P#fELgCpDS<IBuoia}`~AD#%*K5P9%mI11qIx|&`{3#d5SC2E}KCO
z8k=2jC|&yWJfC^59)#e5vf9j2@VN@FaGs|};Rx@?Kg+HOCk$X7#h7TZuSg_1N}mY;
z*)y&IenJ1w6Hz1-lw@QQkMZjS0RY;C1Q6FQ&d<x6nqo_(^9Flf>+%eLXAoboUUZVZ
zCpRbKwFenCW@Y)HopEv0#{ei7_(sEkKqwlo)|<P#$^Ge~?z#~OTSEI6LSP08u2gq%
zVFyf=zCs|7P3uMoWZQ$}>uX80|C|1K_7cbMnVZFC*8+cwXSYDF5xvbh6iU)^ZJ2g#
zz}}^PveLXIR0Rxy<FCJ|X#vyta(T*vLkr6iL1Ylfq5=^^oLI{pfC;$5O#VxRGKW#4
z1i6PDhao4Vw!$p$uMhG@^YtTEDwdaf(}@E@i^ebIExyQvjU1;f6d)yWE1-s$$0fM<
zcZXWHfC(;k@#Vu_*4jQ8BRolE39DTBs+9=x(D2?|Gf)Y0*qy%|PK3HPyVh2quOI7P
z4e;KGWEOCjSv@y0R6{X5c?@d0lcXqHnWVH_)-a$PDxPin_-A1T9!sM$K}K;gcM_vv
z9U5nau`Wi>s@EzS^#`h)sw&WLkWEv%OSA|!^z=-tverq_Bt;;)5!p=Pi1DK=4-^+4
zFmMCce*%i=-dei_7&@OXm(`_ey1Bb63c^UX{-94p@?^Eqc*yCv|GA)`pvq#N@eKk(
z*3yzD(9UE7zjA%N6aUS#NFsZV!3tp^^UOC$ZIDsZ`9VU@O+zE0eLm3NAN6K9G7{Nr
zwWV3nl#_#FJWfShj7Fuj*wL@q^@11)DMH<nmZjpo!};!be3C32456$H41)lving{e
z?EJ6{d^MXZ?3s_k7gaXkMMzszI17+$veITa69$s}NUd0>gfujNuG#J*g9t|>U<nRp
zPBQVh5Tj~q;VzCQ)m%uA7ifht(wfP|WI~%xL*EgoKinHwsRM~uOYMy(VX+twY11CM
ze^%15s+X>pZ_zutV2CJb(N?<${Mdde0v$l+Qj@^mO+t6bVlBaYwg|`QqxN-Zab~7`
zFgDz~eJZcdPP@p2O+0BtKofM<I3QHBxLBFjYeyw-5OD{>N#<F7x;-e11%ytpe+Zpm
zL|TZ#ns)#KHkd)vFOpHmA4}GGorMl%=+(a{=wnOpr;a3B^-;4u4eh|G-;^B#l#I-B
zhLCl@lvy0OlpO}?YDJ@f0C{AU+3)PM>aCs+25z>t<)_N)idiM#&b4+QKNVUoFhh9n
zCjf}EJHvQ+UNM}#c>VGND@=kGMn(|se9`pp(aU6Bk#7?)9aRt&<x0BhC^mB5=T%uE
znpI4)O$m;^Qf+RjI3%U!Zi&<6d`EafW98E}Zf5uKH*esbOL4lFH%KSlpx3>+ex+#s
z>)omg<`O_Be>kcOhYhDLr_lQVjS!VCd`L3)AA@Wq3(d#R9XtST5SHs|d<+b73-qc#
z`7f0o8l8^BfxCUG-rg96ywPg3-46NwuO<JVs&U=!>z{2=sb;5+WFu^D-X!#jCwB5r
zZ{y<P`a^U9J8X!-oIZR2TV?EACrP@Et82rlK(t6kMn?Ql;WU60<P$z<89V^#z`Of^
zpOBGHa1YT(Rx?_TMXt%HNs+y_pa-;FJkb}#r9aZ}+~n&sLf55x$IG}pbJi>LVqmK>
zm6?AI5(b-4bO}G=<x9@tOK=D$BU)x|4gq=yO)PYdq$Rv%1CNADt?J9y%@ne_V$%l&
z>ykO&trKTP64Tmwx<PnUwUi00`1ga^VF(YMcQNS!d^y|MW8rmp(+jDGsV17S3~wRZ
zoyk-r^gf($PPxy2y`ZcrfuE=7Sw?RS$-H_Ji_`Ozj>2=5GvN=k&}j8)roBR}*IY2(
zG!}J}FfU*Qqbi5iZ#}PYW=2QH+%%9oM?#=2)mu73iYm%OI$Evre<k_-llQOXz4P+U
zszV>J!O5losxhDRV|zwy5|&7a4%qjNeUU&=fY7@i`6#G+p)Of>Tg^Lr!D4LkqwV_r
zY(HP*ko71GZL^$T0T!$yi}KWPQZ0!K{tg+LO`uy3-QkQtid87uJO{hH{2}i`3q<7T
zT)o;%s@Xp*Z%|m8_=MG)_^>MB%Xcztf`!Yx?QZ!4o3zAB6rO^s@8)XCGOctjVQ&p{
z$Vr^`xMCa538c5kx~tYFZ^$hR*S5DL1WOykI2{^8-4|dLJe4_9*+GKln9VX^HPeB^
zZ}<eRr>>TdY^%2`pO^A+eyb<gmhZn&D|0y=gCsY4k&x55+Bf%piRVchj<tBL?;Vt>
z3?f;31e9uViE1eIcA!dIE?$pyBFU&sL+T6%Jr^1-zKW$%&#{A}ebO1So!Wmn7B1}T
zdmaKiIaMepS%{v$6q7uwMp|f%#@&R&0Za1M$HGT^^&S5IDZ=?tZGe@j>DBSF!@BR;
zU0Fg1TPn&^SgSjzWT9F8(tH^(aFIMip?e%;z-pCoJXuM-W*Y<WtYnWejHpsUSA;}@
zRjd*^`uZI>g(0Q7Vw~VcB%c?L(?JwNZ8PxYzqneS!ASC(!rt_)fNpRU0PWJu#S{l8
zrx`h|OI0j;iX-56Px=+et};sl(ak5#hT(B3E0d9u%9@!Kf|&-wM86E6D*yuBZ}W67
zJ$bm!vl-;{C5;d)QH8a98Yb*l`SPak5Ey=C&2kI3Shc9*8F%>7UFkrsWUBOL-^A1$
zz-h}|)?AW1YGPq?6so7zx7oU%oK2Daq=}17P(@>xM%TZqyO9-t2P4Ag%-7JcO3EQ4
z{E2*-Pd60Jt}tj3TpI%@)z-!MthI=XdbN0!lPjC8-Ed~~>li6&A`X$omVFu~Ma+4p
z_URqA2NJJT5C%1LDS>1dcD-8*l-oJ!VBG12W*C?Pg;8DulBR+MF0Afo?Z>0tUlCqe
zV5V18ObzZ+2K#I)l*~|b0s&eV#s0}MI-zrHTG&Ve9=l2xnUBq5rH4s(<r1yBQ`JxK
z^^%AM!x>q_3fEgc*@Te?cqu7TFT?5SR%u@5<*u0UxWCBPGEv$0*kWP6PSV)T>NSe~
z<on(_5RJnj1r*bJYu>*T8y9WCc*svQcgXrBySS3n#(-!$)T`O(Jz{eD;AJXF!IRSD
z-eLklrU$NaQt12?EF7HMn>Ubz$@sXq$%SgJgJ$1)Bu$wZ3MAIO-VDL4%nnmX_NVi<
zC1;`hQEG;rwe~1x+YWwIw-0so94bXumv+GSvHM>B!aAFor)9y#QEB(C&L6Q#e624n
zibC@Hk9T+&7_YpugkSu@OqpQ8&=LZ<%z5NCO{Tk25Uzs^gN-ZyAP<U(3{<$Scc1UI
zE+?ydaAk-|NQ#1RagBtqVE=E<4!|4x<X`mlNk}*=$+(y;w44*RP1}jG=o=+nAds^t
z1X@bU9{^r73#qQI&Ospw75MQ24pH<ZY&z5|e|Nc&4Ioy<$xIv^9NsDCTUo&99(AzT
z>Pzb);-TZ?P1=R&O)9So6-QV4Fg3euNF>!Uuu#OY9!BJ*+H&>F>P8yTCK=F2-d3Hh
z2~%Yn5ar+`EFuLXv}oqxbA?;YI-8%~S3i`+tqUs?LOHLw=Y2@>W;!;~z;;#kvFpN@
zU;1}k);`BM*Lb2lNcu)^dn7lc*nGiE4dtRF*j~BYSC?>w*bZ-`#}qZ9u^Hv1WlyXV
z&&T<J(*$-+sLJc2ghF4#IZcl9Xaowyr3jGRjlX-UIiwn!U>`2ATCOE9mB4Y_;8E93
z$7VQ^E~&drMyldAwitQi8UnS?aqeyQdK4~SWHXWEy4;nzYQ2gPOGi)&#NqX}a)n3%
z9!R&>x>QD+v#1ofXZT)Fg_CF<**t{m&m7h!Ce!90KRg;V&qB^8Yt7b$J(1XL*4Q7a
zZPSrwjQh*Ed6sv5t_WCB-t=~XNFIFdY}ZfcZe2&Lmz6Ib3Bw$`Qn=2i#X*@3En=&^
z_4=*1P60fBunhbpC|^!4dm~hu%XShr2T#8H<@h<MiK3;7@)7Yw6}eWwZ7ClFT2XY{
zKc@|Up#lH;qc=HO+j!c%eU@t#B~m!>*kiv5v$3)L${4_s|GrmVXS*dnxYFp4L?BIT
zXK=OwEW%i_SYWVLv_(w<H#}fGqp0Ao&IA7z*Y|5<3|E{=?4(9(i&!~Dk-!|R%PZNd
zOP(qYD_q;g^XoozKFgaZ&((*<nI8QnrvvxBg0py(+Od&qyrkW;<W>w*Cw<qj3~WKG
z$Spr}zMR93!m-{YITFJ;34K>>&SnU7Fjh;J#aiZ9lwAHf?Z|*YpD_j>NvBO^J0VKa
zUHEuq_K^vS>)qfkJ>8}G{=gMMN`}<USL6{`=dg)^YD4*$b<@YEFm&BmpWS|;@d;+=
z`D<73HoTo3^ar^0FxrtPAT%eegXsrY&vxT!TRN}H$ISp0f#~U>o4~;QgkP?cVgkvU
zyC8^S_>Ogl5kXiY_)XvVeB4}eRt_4@w2m@R@dspAT$3M&C9i7Y_{O4Alh3CGxM!2n
z?#Ywpn2Z3tZFhCq`r}tRm`8!YQ>-+q+bx~Pkpgc4qokyM5uIf3Y1@NX$g7t3j<?x!
zM@d~n!B{}>MKx6=BebfC1^e=z-F?n*qAEW>)@b?WO-?qJUzq02^#<Gc9K(a}+Dg!I
z%N-8juB($x7mzX&kgDCh|L*r-Ase-T`KsMHJB-EaaOs|<aw1e;ePuxsyka^$rOXzu
z9Q5{&gVhF0gp7>LuTf($zWpffPG4neDCjS~5yn?jVkzXZFOHp-bfC2UaT1iPP9Lsl
z$^MOB5EUK~(Q227K^uWI642qosDzRI_nA8LtLKOk!${J_H|DnZAdV>q0E<d?{Wd46
zGU$IlFi`m3htdTU|J&;ogUw=&P${*rq?9Be*GQH75f~*MFp9X5pkALxz>=>Er-kz{
zmqw^j7&}!sXY%TL7(BWRFreC!sBEL}$W@(g_XY6~2v>zf-fW)-z-rPzoM#5rMa^Qy
zTqAXpcB^XccT^*=*plE{gfADrW_$QtcO0K4?_0|&4Vq8|=SfJhQy<LTeer8|@m?98
z-0fFl-F@sjS<Vf@t>>gTLOW8me0#C1URQ}nDnL>@Rpm8_Q}2Mtw_IQx2gh3)3SyLY
zVXcZeI!qns_TV}32HyV~-A}tZd>*-pG*Q{g<6ViLW`|;lrPD4?wpNn@aqExQRu8Bs
zmMKdScCkLdCTV&R$>)VzR+~;v6ulhK{4Fa7BvH&@hl3fp%HKAe)kr%OY4?4fm->W(
zmOSh7mVn{ju0%)B&_c^&OV*g0CO?xs@3Av@HjIc*>$1|Z=H9ye(I*q`&qsapUbWgR
zF6io3!wOqMA@3atFie6#?6O#on)+u)1>>7Nma~6&E>uP7E!YuRg-#z{+tYp=i{NzF
zCA5Cl2pOQ+10te{b#!#}Y;gzx8=I|@5053RKtQ9Kv9&e5?^VwU$&TBHU8H{jk!<#m
zWr;<$`pbpDHk&r4Kq5NOOj8PqKw+5>n^}SRn0kwQJ+fc6$tY?1?so=#0}dvpnDvc~
z>Y4_|R4(Uu%&j@AqlIe6#H{A1*EaCmc(z<-sX0D6a3#xw!^y{Z&h)RlBa4|H$?R<H
zrY(pUg!_=E)P<P(4l#*)nlf*}o*N%$whQu$1LyQ}8Y>&Y3L!KJ80co^rD(^-93WdU
zxfbQ#Z`{%VPobX5TWPr!aho}0t$vHHWqT3ExSFdEMQu>luz81W-U?2?4Xu~12~S~2
z#^_Oez{Td=aw?f^u;!bB+`e@aIpnf>QysA@#%l?TQ@gKEI)!>Cx;r&ibNZopjo8gN
zkS-#DF7Q?Is+j=4REf1Q{cN`(Vu^=lZw3{n#fdE08YMm38|&%&%Hz7E+smWOU<ej&
zvgp;)UG7k=HNlVSht(t0u4TA=t&pNHuuq17tMU0|DMY*2k#kg%2A8Ch$$!Egzd*j}
z#Kz1}e|a{zI|Ng~!J+D~)9czE=k=co0NdAdfyrFJ;syG$^D5f<D7vvR+^?LLl;DuC
zlP5sRyq;Umoy2VV5m@e1X!Tsq)-n<05*HiJTy9h_eR_QOZEA4eXwl*O+F`BjIhE@s
zK>{$J%bc20RIjnX2HtWxE348bwYO>WI9K5A-M`OG|N4ndIm+7DlsIO`j#29Sj6~VF
zs($7avs$ZVlfFoz3G}V5Ak@9eQQpZW=F5}S^pup8&4H)u4Wy#cuRLL=-&3yjQnZ;(
zF9<(c$iiUXU^|9m9%`U3gbMOp@g5A9=Z3c&d$O=-{k%oR?!QQC%x>z+^r+9!oLN+-
zVy<8pWh$VhVF=E3;Se8ERhBO<DXkEI@AqvRUKzi()-q>L7Ly2OD$5Lwd99x6ym+bJ
zl4HmyO)d}gMfKo2IRK(oZB^RH`8_ipO}Lq#etLNO{i6^0GL)dg`R9<-yPj_o2#NPT
zf>nEq4uu+_ILIK^_Lt#eVg(E89`4)#1{s2lAP>u2`}HeR>0%!}cZ<&O`o+?WvM(lj
zN36fNzd%;q&+2BT>I%mn_9&bSVA%dG)r031`T6<UZ1~Jm^?IP+Gx@sM*FWKb$>||_
zGM~udk!4OBgHj--+NLTnI$Bz)j<ISyq6UV@k;psFaZY|h-HP(^<lVvU_G*Cg8pv{x
z__Q&S%9YbLPS|7yb#pT{Eoefa<Kxrue>?Vc+7vs#vGn&r&)><dVv@Gm3Io;snUXC>
zx`LRWrRLBoPM6ak@MYUVJg(=2m!g3E73MmpG>_Y5Z14KI-ul?gZI|wp;(CjPJ+L|k
zF8=^X2*SIMfRIIpc|#@qF03@bS`@z`jDEYjOBIoz*us{Z4@T`~x-%j<V)s~+jB>%v
z9VvB)+t5l+p7*<ZTlNy@%^rAfSQmTP>>V|2wWnPC{`t|ZyX_~(i0{<JEQ=hCH5T*<
zjk6Epou#cl7Jhw|=1(ZZzR>h3=R>sh)5VmUhsS2_{U;mt11hAE$=Kuh0tza!UxCOH
zM)10Vuwb~Ca-Y-ND-c4+=nd=~3S2#F$_kIeCfzN2uTGfD%qk#f8%ie}Ek-cCd1=}|
zO7tHZoU57!etwBU4H0<^T`4J~!&h_fz^}n!#C}uw`6nVTUIFPe7S757heb+rzLNO{
z$8K*$4d3CPUv83rTY^q$^vc&8d*4<WsWfg?m-bajwiOq$2gslfpf)~Z0t^g26A*4s
zJ98$aJ+9Vq+u2Dk09!yqH$A;f?hmRz+qz24XG_s=aU~AX3D`ndhV4Vt{{H0t`pKFe
zQQJ4+%eB5FZXg~yvGwP1J<eAPclRbVc8IL&uS^I=hc@W$;y`6XQXIZtw`?9asANQ6
z&A`AQ>|xIBb;Ka%J)uo8ih>Wb;?IN@&WXK4YTNPBYpp7d8JAzx;Z{4#LwZ>Y(aj|u
zmc!(h=y8ted17#A`=o2j<biV`8N3_~ihkF_!;+J1T4PP}=|w_66UfLYWgWMBFIGKB
zVZ${?1w?>c%Lb!d=8YCFx*LJ*3or5!Pfb)dPv~lZ$>{CYtq~6Mjgi!v$%G9)>;pLe
z%ILx7cIUHBda6_KHOJ=p0UUkM=_c&$w(uxaU5&f!z1LSrr#z=?)xIMJNE6*|A-V*t
zWow)G7IolT%ncMXnT^f0ev=uYC2s%>au?jEvvD}x%PuM3JoluF_#a&5NA?j6F+fpv
zt!;{uDEWM%<N_!aD*yshrN}5I>&6&ZbjAjfeG}(w+Lw;UG6X05g~CPudK3PmMp;$|
z#+AZ%skR#dq*hQ6t^K)E8~Z{}$gooc5I;(-b(+bvP^ze^Qc7L-VV=;EVKmz4NOP-z
z!S(K{6+&8*??okLCdl7HIIezny4Gigp%bM^yvwoEcEcSM5XKBB9IIS_i85t`!E4YG
zwsosb8k#K-u`WrW>foM@6@LS*&i#t0tKL%1C=pK^HDJ%e8v=t5j4za`Txf@eF^FnW
zfAdw2`{Mx?M|ePEj%n(4t4bS}pzH@#esTTEDOL?p%kqQOrhoV{eZtYqJqHOlFQhjx
z!20N0iyodt*;oDnZjTNF7n#-?aziCiDR%LUC}D5cyfhEruT1JJEd6JI8CL8{-jo3u
z8JWYf<7`1@KLbS`zk7IWWJm}J*sW0^0MU|?fuXxAH&;MexfGfGRw7DY&^Nti9E@9P
zD(&H+>mEm#0vmoIh3J`~p75=XPQ9f@^6v6zue9-aLK09cO9Mpk)Ii^#L&p@p=NLGU
zVa>w={6EX(--g_Od0*6Fp3iKa`8c``1StdLPld4%M%+~FIZ^fn(HP*}b&%9BwmY6h
z#XLpXcYW4N0Azj3R4xOx{H#-6Pe%K<)vpw=YJx$uEXk9uw(rxBOJqZRM+)><F{xpA
zVWFTun3=(Nqgs><MVjo7MXu&Xo=W*MgeUw1`6Lz&Mrq?|ah*VoBfs?MydC&{I&J((
zN&#ipYuZ8m>L`GG5|G2^Df3n|iqGXJr48>2x#0P^{49@gRZxb0Pf%*Uu{{VDPcTXU
ze_jA5fz6By@F$hEt*22g_H6!fD^=$-_6lms)Xv6iGH16{C@|I-R5&rIKBz*7&En_>
z+!$Ls(Tx$U$m}&y&@>MH`9@t~yKk(@pHJG!GZipIDt5=^7ciT@y^?MaW0gvR8kE3@
zAWm9R*3wGXGS{#;0t*=6dG}DE)#BVnBboSV8D55%<0Pilr7k`2Y$*vE+9o~U_mk!w
zPS>5~q)uC4iuOjg+0eSIyE}*RJU>E4$;3JYHAyMnh+I}kjCY>BAxhzHa7g{&!~Pvw
zYCca_4Ni%EZ#WS3qNKL~3{>Dj=pfMVg7(83{%0>3Ba#G|2{ZF}o0l~!FP%<!%PT0D
zo~`FzjV+%WhhqPi%7+v4Or*?E#Cj)Mm85NCNn9cfv1!Ect+BB&5aZ36P>Si8es|m`
z!@0T<sP6S}F)QRzD&=8!3$I7(#7wQ5<cfar-5M|oaexl9p(0>&ykrS^dqa@k+RCS8
zKg@!L{N)_fL-Fc_^x~OYR3ZfWv@E>gM}ooec(t7%cG6#74VZ*kulhWCETf*cYvq1p
z;|bmzGALoU@1mQcBJ{N|KihPnz4&hAwW@R#^+pVDhCK8b%Mz{A>{TB#$8$t$?hTzX
z)6CW=rsK>p?T0PSxw~K9bmrz-0OQ+W0npAO_S!n14^bvsJpwUU>t{x!ruqbgJ(+f<
z>PL~m#c01uoQu_oq1#@HeO4HsS58lEHV==fq}&&3@+dGLsQds1$Bdc+#2h@YdVO_`
z=_Lyg+hhbr!1`m{d!%DIH5>pno8ju6GwxB<@m{yfQyosebx6GSs!^E8Xs+my3FWwY
zNbesWRH?Laa3b@RPJgha;kn%tFL@L&Y<co*M&1P0?tlIIbbhlVBde%b$IbV+)NnCl
zi;-~o2*+psKrV&zIfBQ@=lZ>3_vq+o48F(tt6Pt5ch}SQ1G@0`IBe|tis8x0u;W&*
zH@1A{3L_&Y*#*FyyuuM$TZ3C&<4iu9Z=T~}HS~s4Vf-htLJ=m6;2-iwZ?l)z&J+DH
z6h+fnFfY|Pz1!OOU7sGV_5di&!V$N&_C@V!gzMz{lujUw+ru_4jXC7egJ{N=<G-9F
zb&TgNQMX66tGVf3kBRKWn?SEeUi!&P+J0xGWO7~^Adq+Yo^FuJ?b)4HE(hsb$7J{(
zJ_B28oELlgsXlo{Wi3f950@Go^jBLqm~`r&Ww_5?&M#_&+bvYUr>~l+QP@r^sf+_{
zl?edaci6C8RY=-y`K3XLiE3<aNa0PYm%I~YI(#>46**N_%MI#0JnFzj6cW;we)p99
zi1GsPDtLKQcQb~-)<oDDk?^`bEGsq3slqj`Oc~4?6Q3;n+Vu6*cq<9G-er7pmd{cT
z;`P+HoZSR0!8RCnmDt^XS^aWrGSX`&jlopD8@jW8pOd1k{)oiE&Y>dsMc-VctSpSF
z!0Rr}obsm6Go}Gbb!tCmJmffaCyw!@{BEIeXMGk)r`Ucsebpn}%H!C>6cdBx>oMPf
zT12nM;lL^99h;wbMscik4_@|<)8hpP0Fa@T@eQt^c|EKNHQWtb=NuW5P@wS5L5bY>
zHx-rTKVODVr_;}yT<+x6rez+hgvMuzBF6moir*O>8h@D$3_BdCA0y$@mzDg-JvU=k
z1BJeqjCv9RGWTvQC!;Lf5FK7G`iBE3-==xK$BrnKQ86;XmlW0P0(r3MaGGbFlmdw0
z`yFdD^itE#&h7_dyXEdM+wr6(#len@r1*63D?!+1$Ud>_W#Zx%9Q4}uMIgapL6l#(
zBRE{~g~#={eA3ebPX!PyA{azKZMlFZILduj08CkotnQNBU#(Idc)VKqR8XW-YNTJ#
z(Kza0=BPZBRNsAzJn0?~$x9Vg+JXrF^T0w$ep+rg**V&f;bLl>(e1vycy}cDdhd0|
zhD$E%&ln#P>@MSqPc8zZ)P2zx0N`F{%1^m>1uRr!*&#?LGC^GNF)?|3*y3*rnzH#l
z^9pH4;?iv`LSDj1iG4X;YoFjEwl>?H1Q3lOk9LeJbq}}OXc~`O4ehD$ZmCvdA#TQh
z(dqn9LtZ=Rl;OQ0eTT!`XTVd;qr3A8xUJE{oicY<+)k=@l^AGgLswij-tAS(@jY|X
zJ)9}Q<+)n22V8{+#M(1kw6@e#FWcb=WPyUN6vqv@2dD*RgFa;Jk`tiV=IQqqrhH4p
z%Hp@*9wJ&v9v&LXzJc!ei1NUnwmzRhKK0RYhR8)cVs<g}^0p|m71Y<)pC6R9&KwYg
zX^Uoz&N_Z`)$nL3^)%t*gSpUs7#O9W%-k)jKApNJo(;i;218Ab_<&n;>^`S#yyu0N
zoUUoceXo2ngAQ$4s{?Nwc41TeSqkXGUGwT{R<Xc_-+IzWhCGEpQGbv7<A8WpZA;Q2
zSSrQLjE$hIe9#p|UCVy2`LUcXWUY#HrH(xnB~vbLL^+64Ke<q)7cfux(7VRQM`mSU
zyQDI@D$+RfLBWUxU!S!kUZDB@@NIjg*$NI<iipn*)KI(BayN|6%W4Aj&<PV$(bA@k
z;&rnM?aCC0i>*65KkKYI?N=*o7_t8_FqkoG)fzn!z25DTi}_tDjf-Ku<7p_fX^7d<
z0)q|0aeS*!)osPrU{>QWQjcA5e(31&*=3)vdX~90_q>b--x*p_R$Y!ut>1zVt;hkd
zuS-u<?Tx-Ch-=pV(T9((<7tS}4D30QFF)Oy6D)Jvr=3<AzI7W71BI(!Y?Z%{kvDm`
zO%mikS#bQG<^s__1G|VPFB(Lvzu5v)#S%11t6!ftMyb!M+V@J)K(Gy(WVP*X3DMIl
zv{NiRRmNsYG|biTlKuo`BYtgxX`NeAd~ENUgL1VQ;y{OZeV>-jnX2xPai%Ph3oe1-
znu%(}uLU%qks>+M%3u|^H!-(%e|d#35?;Epxwb8p;gc65^5vzUzrXxqjb*iG-&cMB
zP65-Jl;BRj1BI*O9$e3fiNY59{YCmMcTrJzAz@*&2#G}45xoC6q)B3W-okr-SUGC8
z-t#6SaSnig9zfB6^cXsBup!{7`I@8wtQ)^|^F=(l)uzYPbdky=;G|HMFH>w<51@!3
zYaBKiZoZJS*t)1Pg_Gq*71yu#cPFhZ4;Wm9ZUBOy2M6eE-zz3^AmXx09`{3}?nEz0
z+RC_`D0@LS7u3z{{=oWzp{yy>nWxeul`S_|Mn=XC$S^(|w70XP<l@5B#x;j=O1p4>
z?yDf7tl`G)CNIiQVds4L<GhKPGZ7qY7h*RO6S{TG+To)n(i%=o>x7KQ;SnosoL*rO
zxFAgN@hB>xVAVw*Yc-EtNKQ=dxu5W5%&(k{OG|X3h%1&`9QBTuH3FM$n%{_BWzF<b
zkg=^I(?GaxM@J;C@^f1+x>H1`oEBf5Wn`n4&oFR=C@%UrWgw#%rSNshqlU{*{PGI)
ziyvmO&EMzsXpnVv4ZrRHtGZil&DJYouwL$>5Fe-Q@!#BZJKSHJ28T(-;^Q40y5qlc
z!uLiyJ59Iqog7ThD6Z5kGRK*q(<6mlJ&&^By*zWgc+Xxz;{Zsi<`Y^&B~v-$0Cw7U
zon<)4_4nmz(*H8{RLg6#={71C(D#S^)_w0dHpJZN2oBcJ<!Fd33D0+M>Dw7G)^pS=
zaGlf`OfJMjBp`-di`dj}tMqoP?RXKhWK~r~1LVc~q}|h<fS`DBTj&V(S)%2^nj~4r
zi|m*H0*>sH3?Tm$@EhSSbJR9V<!G`~@JEaY42%o}G;tHOa`viwx8#rbzW~|X`1m+u
zO7Q+@hWz#FFaQ^*PNbDDFxT^ER5djvXLYRaE$xVAGPXe+cBDM_r=1mj00AE=We+6v
zi4B`_s3QEq4F8kx8Bq8h@&Ji;h7ebFfWba(hod4Q`lNw`fVJv&!c&mEe((lx)1omn
zz)IcyiFFtyf={%9v{|Lw`RbR;j#3GIZRM;GnFY7a+B2TZIem35W7n%=Dd_faj3aGn
z(?MzD?o<KwLr7K@Ni%Ss0Sb}SQWbErPS6>+&$$c$SJ=cVNJ@qp6k*xmo~RY&tHn^r
zC`(};Mezi%D(ca-7pqkoOp$vI&%dEiRXXFrHH#O<37~&_3W#rt$=dXKczUl?%{{f9
z(AU3NyPGw+r_AyX7grVqTyc~H3i*L9>wx`4^}YyyX=y8b0m3f|C%TF6m>MF31T_d&
z>g9No?C>bUyO8-t$jULL5POFslHLah)}pTD?kCSBo9V-oMc_-3drnc<n(Xtqh4+bg
z+@_XUf{(=puJ7z2&FfAOd>f5a7?G3bwS81j#Nxt)x~NWt$^*N&YYBp`u;5qWzZ?BA
zo8NmgdqunS{lAxgsKZv`ZyFK2oR!4p3o33IN(Z)km08y*vXQ?4Qi@N2FX#3!r4N4=
z>KZNq$I-mPg+>Hh$kNhM;q>5}N<NE4K-ja+6?%2DTDEL!VWeErhb#B%*Dpx8TsSij
zAbLKdGyD@Dy@{c7MfN7eC8mORT?ND5PN(H;2RJoR8CwSoj?Gf@_T<(RsS<jlKbsN*
z{)^N>mdpG3i&uR-d^NveDlp5@>}5kJ(`iiuQm{y_sCy#_WZXNe#Q|Yj^gJ+O_&uMg
zAdH5MIFyULLLY`TZE_yajZ?b4*-4iIey@(aJaMP7*X6viT_}*Lm7dTxzOtenObyn2
zNGnr+!PU9pA-j@p7=X~<KcnLY$d^_PMg^q95to(}Bs8q`A)B+*t@s=T?jb1btmIgs
z?*QprD!<LF_IaC|L?N51oc)(Ub!;HMXcEH`axb$OBuF>QX4`kLQ$`@WYW1`BTieo=
z7tzz2EDdc@GB+n@vFjF@a!kX%;d%fI)mhPEF+-6Nlg%3c(IC86xptk6E(@;WpWMJy
z`m@!CTDL1JPTO@~G2_Qy#_allQq)I#$wbe@@K@;RWgitQ>&yWD#~0pEl8*okX?VC?
z+#;miS4hUube@!A>vzR~-#@T!xiL~3btcKn%NyhlK~49(HQjrVo3|4LxYwnxcNeod
zIjJ}4pL|~R+t7)t7A(yB>;({bisG_aDJm%wfV1{jpB~v959h|Sk-XS|$qC2V_7|z3
zR*5t6tVe&88ais~=nSLt)e@u8G^rSJDMoCwfmo_8B<WR;D?B>&s=n-Hd2iU@`!C)b
zs50ET{n<SY2|AvM0N&Gtjb=d%fAt4&{6}$EA3Pv86!hQNYW4_M)=#TTvvx7^CZRwV
zSD)wL;u?GmKq639nhtNO?Y~Q<{Q#)Ld1}mOrIpL2q@upe>1W@xWO;%lz$-CZku&a4
z4mbZM=m?jgFMjoCzueQgJ_LNGZ6M{A4}2j7Ii{Oor}WL|?;ZE2g642@#kna?wtn*|
zjKT4R#@6voDubGQkJtJYRWjUWQ<QtyF_v>~+l5L+idSYLyfT+<{rGT7dT{)$PmhhX
z5YO}KS?!{v{bucw4WTsM@LS|*_XefU^pKd|J)r-eig*_Ag7?ZmQ9j-6DWoy)@!Nj4
zN3N8Y)0f5bp#v_GRi*PzB)&c?_o(F7V&XqV<SBgKKoX!BN>qK@*}X^)JRz_$060Q_
zyMK5nqU+GK$$!i4UM&u=*^F*maVirpkhp&Y5h`&J;DJDaeqWaxohdLj_7n^ZvX_=B
z&hcWp<DYJ4TMhCrfvC;B#_1$unHT^LV4S7)ZU?b708|xcy)CpGQ|CLIf}&#V(o|&?
z{z~0uSosI7hCW%!rkkwQwj$Q=`D4}<YGx{qhaOQvzylVZ2?h~aDZczKDuDy|pMBv3
z)npha1=*O470+armx>qY@U*nF46DItT9^0*m-x;{3ptKkH*-v+C$&~9O*bi7{rL}~
z81fK&DmTNb*t$pHQYdvqih~W=hLJ>E9e!{bo#j5$rgBR*c)mwhi$#K7@vh7dHN93n
zy?E?Fj#X1>HjQSH(m#bw=C*vquz7n!tJu(!&VD^>Kyb~aoOh9(9+_PR2K35hJj8y~
zG#1dVjuhw!Iux=WC<XSeNA`pz@_HE|+KO)8<}M9Y-8y+U$Gya8y~P68zOI;P7$}x^
ze=cB#0|VSk6rO~CJ}ze3=ZLi-SF`?x!Q)AA-oUX)1~j`{da8%{(T~T55*HvlUmjvR
zJ?jWFg`m!#m0u#deMv;ZvjLU+0PAIFU#1vYumzxMZ$9lnQ0H42+Zdy#1#NOU-JS1|
zET(xqg7@UclOm6rz!%4jCuX?zAZf#`fjGwEw{C@-wqPHN{iy==d~C;-rulCB0_Yd|
z!h@NTtiwYK93IyyO(g3!$D;)$R}F*F(EGWcx-TvcW@W<r^(_~w#2OJ2t+~rt%k$-4
zW0at9P%qk_-I^RFeE}4||40`<gGs=7zVagFqwY6uOAODmM^lgYB4%;|EkIwD=&+TX
z$8lCC5)R4$SOaxeb;ZlVuq#rIH}6go(j?Y-q%jz_cXkFZenU)L|0|K<E7|!wq7%c4
zTA>Gg>VRTp^EC!Afoc#g5<WL&cX(oAVwYRl?+Eep_+7v!S4GP)Zd*<+xz3w$$m)2h
z-VW*emHkbR1BSj`6_K>K;sP*s<Ih{B>^wb?J_=wGga_fmGQEQJj+beZRTg*4QmLv#
zRfAkkc17fh2Gl4yzg|Xz>V+r0Cha~Z`F{`cYg>*mAtB+{8jE?mf>hR#tM`Pby#!v!
zeC!v;%gJ;0>kHN9Tidam4=o;d?^hk0jD~UQZ*ul;c6W9t?rea?IBoy9ZElK7>R|y<
z433KH(~7|llN~KTorSAydv(QlZ#Gf&Db5lE6PMghnwdTCT}%Np)T=S3QSPkj+1Nw|
zeSb})TIe=zL<X?i?Pdb>o##^uGX2zu<C&~Gb?ZR<(#$cU5f_F|VU^>7vYvI!)5D3E
zA-c6qMO_pdJeVY+JBd0cH+O(jsdRK)J&L3&>>}fh#(%tWe}+E`X?7u)7$28&nyazI
z1xBp{4I>@F)|oB8{Bg5+5PG!Tj#x_QBTBfb?b5EqZ+c9jU6vr_q$`>mqto486MNL6
z0r$@96b}3R;^Lt$?bd(+X}oi{{6^=KnM+wP9w<=+_{c3gh5hY$Rs?Th*x+4Hlg#Y^
zO<5n$%;~93NeKfZEokea0QWQzb<{d7Y0!0eb{aG=6hZO{au9oUd;=`z+q)S3{9D;z
zM}jF*F5!$=*?j{uoc_$(#Ky%~`u3EPRzQ(R>HK0p)aAuzG7K)rwvL!sP+=y}^b7_l
z+p+?NQErKVHI%DuR)rhTB?a+_KwR*+oD`?4@i{_6#G9U*q^aij{o0;KAW28HUO3&x
z%mY|B@Fti0&TujX^p@}G9*X1vP_B$qtk(C;%7qe}@V5H;QN4Bl@r~hpeksrwWyoG0
zX#IG9qfGK^mj#58bOqv|)2In$WMq`Qtqc<vU-}*y$v>DtPl2HTdAAEx*37XnSq{Vy
z_?uUDE#OAppk|Qg^{;^GuCOM!;!D~2o(X(vx8h<`q_{hqbsqhd%B||6u5kw|p!_RY
zVD!e<tmOLkSh!fH3DuiLfM9xa-Cupg{3nFY-~1ZTgh(NXWMDEDHfn;~08NB4E*r2a
z;QwG_XBV9YYP~z=s{hrKkvxA;aD&&u{Vae%*DY>Gic2D>Q_~)h{Z&k9mPiMY*Xsf+
z9n%Z--*^=5)`y$$d0deZFgZel8fcOQ%k#tNP4n-d4_B)P;$aCTV!yw(4Tj#n|M<1B
zJ`Z281BNnU@a_s%BoW-1eq5y?Z%>>d?-tD>qOMf<9?mDtmR)4z)7c%)V`O*>lx(x{
z!b_p+A@t%%5w!7}EU6)Fa;?2ZQiP1{?d|I2xjc%FBu$=3aa^`9304%gKF+$gh(zGW
z;gin~l7?(0X_%QFSc-ezFRgg3K5QNwNL=yR@By<?Y<y5M<aL|oKmJQ+P}UlmNQjBE
z%e4*IO~wc<zy2os2a)hN6}Q!@`e20P*bkw=bx3`(wAJX$k<G%#ZVR8V>UkH&{<c~i
z<S9gk!D*Ktv+&-!<|QmF$||g;f*x-5Sr4mYSU+nMA_hAob)5PvSH)g*n^;6!0ieIA
z$jSZd-u;*P(GOkt)0Q28$RdH$w{{xkd*ZgmGBAH1^6+@o`ee#xYCpG=m+rZsH+z5Y
zUXo^AF%yET^kNq3N#o{d;0?qfyKOVXs_?RWAOLe$2MpX5fI1p#x>(JS;(84}0G^G6
zm!JDBn`(!URzeJAVn8Fe$<{3ynVFdj{+7`-z_BCu)&mwww<<qgbc5+9dRkcp)=YZf
zg#PIg@;2gMd%Qcz18|0-M*mX1ebKb7U*Qhd_Y0Wb&H$vrQ<C4YHM%($8Op%LOTktr
z91apg;yI5z56|ajDimX<t;*?I7eR#6($=;rn9mMpo4U@Bm(qtUHQ9C^0cj-@ngm7~
zevxt;ntfT?n|%jg>&^stalhmK2Qp<%j}#dQH30lP>y|VO<dzywTFe=u!*c9*9z+o(
z@UXBblQ~E)e2{oe`W25u?3h93s1aL0awcq0lZ^VLXI}LN71sm4nUuh1z-`77Nr`@d
zmX<d5uI=y$0&FbA@09dFPfrP3)I0%`9(i`4z!l^+efi^6eRVP3OE3;B+?xuXzp7u2
zK%SO*cv}^DQ>^4x8#&p|_`ewbwM_E0wPO-ic69~*9U4kDvhaa76$P11u?r4(w1e&t
z|7Zbf^b5d;Rx#F59rDxODPil4AT~hwebj(6UgsXi29lJb5yjnB*w>`cR?yb;H&Z7I
zihq6wEotVnb0w%RE(C%H0ON@maeGL9b#n<V*PV;JnALOaV2OOC1Le)b9YJt^9;MZd
zD~DBUeXYXG8LFb3y6~2t5ZV-9@LNLxX7Xd<VQEovOx<)3?x6cdk-nQZ@)J3!=3fc0
zed~rQJv2-)Ti0bcv_}(XgYD@^uYS}h+E9mu)9Dyj9BbQK#a_G~_nJ%;x8>E7y4UeL
zy*H-lc&>sq&_6RC_1jyjDc_fR@ZC3Kj_QNi5W8?PIXPhrB^>I_n+h#8Cln=RtUg(@
zCTOLl1_2JA=hwOr$I2$uI3ZIr5}^;sUd6;~>+1sIOTErGMcMmx76oa|j7fRlzQL&1
z*<`reh{m`3z)emSD2VxmAp(n6rjxlS0boEnSUZ#2Sv2J!QfXu$<bNW%%~IFUFt8Dd
z%~ZT=$UGik&XK^CS(3I3dK=dl)!1Rb!SU=f=06?!KYE{h?`J1!Bgt$sixE$oF)}8@
zNh~a?$;wdAa|HS(e(qO!0D5Zxm<_XLwd5-yC9K0+Uk9uFW@`W_Az<G4U)+-8`!q{X
zBgN1nr!pG8x!9kUa1Gq#F}{@SCu$i+)p`0Ed(JkbVaAsZBom$73@yIDwG(ype8&gy
zCsq1)h%Po3uVrv%{<f`LjRKFyoyv%M85QP3GQYqTty3nqxw|dlH=k!PKcfwQaR{RP
zXor@AKVSG7B=|}?ZmR~6G{NxT>MCeQ%Q#6NlW!E%3knJboltK|J>v~dMJM_~OD2NE
zMx;#}_l*yOm)v@p?q&GRRH=0~8it*hZeb2n9J*q(<+*eo_42~4TmkYYPS=JQpGF#N
z#)=&FpX@X$NmcKOKe438Bm`7#_}7uq>_Hl>i4A)l3+|8xZ-n4%rE3gYj+-{o)Cd3r
zQrngs2x#JxfGGVm9Pr}fLqnbpV?-h#(V&29pL#4_s|Xc`zVSUB_wJwwkN!6HhREHZ
z@sfu^0c?xkZK*mmIT^Z_wRr~k%E^{vwPx3aI-PI`*xK$@;CmI5*jz0;O9)<?)H&?Q
zCwiTAW9~i8yCGfI6*8SX$zczhOf?#yFGiE8^lKfz)3@mTBKS;DfHKINS#&vm*b6n<
z1A6=+xq||k^~Rdg`{nyk{lMpf79U@+S=f|SBq<fI9EdVa+;JPbml_F^XjB+#M0@q7
zpEc*DLsQ3>>USPTpofdKGO2^#CUu@}RU99?P-V{Db}ELAvaVLWbeaLKS|oxS5@;s4
zqzu$O-o>M%BT@v)-@&I~pR@G3pBN#rkSmgSoICv+x!bt20YsDe*L0;ng+9_C=%ndR
z7b-EEPLL`+vbElX8P^0~Rg3Oa+wh?hSsYSOqP_U1hW)n?+}rd0@8xNo`*qBoS0|V{
z?oli5&|%MMjP?xpYon2rf`Je>BefUJv2oo%!;}ARr=mcU7XPvuk!la{>n^lZ%R3yL
z&})5lAh&BbE6bC_&_kXn1qST?C!wQ!WfNMn?n2iEKCx$SJ0Rk0saGn`sA=h0v`5dv
z&g(vc*B;?w+oIBuiT=9M{S5xCF^m*CEE>k>dS@YVg>R2MVJj)t*{N!<Wa1F9a7`%|
zj-}*uU?rv8%W%AscLR_tW4DHHv=)8qe!Mk`Gh+p<O+xRw4J~dWyW?nIDGGEUpgS~$
zlnCBdh)VfJ5+kEA==GP%I94jADzrHcQ;+hsea=b8&)J^@r<`Oh9Bn7hMarFJ-^H+I
zYqDv`fhzSf<fPfKczDC~$n#<X$%TCLdy67CwO)n{8!Ao7I;0WH$0*IW?ZVgW&k4l^
z$WTkfjHC8O(T9+d1%8x=ba&*a+DvUF6@?V!<SNFEKPAq&8Vc$o#KkKsSZPxk8jv2)
zg5X36X=n!Xi4eFshmu$%(kB4+E6jd21_%y}WVKonEo;8S@i?|mw;z_@0kUyEPH19Y
z4-5_}xdI*_cDj~m4K~Cu-I&@g-atB^BoH4;z*E`WBa`N!E)WM>l9%Q>V4g_ublqDh
zWy(fI)=jCPsaZVIeY+{+2|*>%N|#LIPQ-URWO%Q#7=l4J(Z4^}9xvvI{G1f#pCIR-
z9C6zi8KHUfC^s~8fs`)melq<rdxrgvYyBNAYrdlZ6@5H%x1GM%=fHK29bf>iwA^R^
zl_K4}LM5T1=B6_JK~gO)b_keaUr^iEzt-daRF)zBv@#=`<E2J`UY=(WJZqk>kSm!n
ztK+5B+?7*n3<w)PHo?|gar1fJ*U2$+aV@gXQmjWAuQY)<Ie%nbekL6yJ7;%%k-(*`
z^(4&xhVMplD2Yd+p46E)ryj*9oa3*a9&PYsvUV=Xb~{VUM^*dE1GeSSyL8vr7fY|w
zmd`|@U2cN3Flp(Wil_?#D_{q=2E5s1k2q!3d_<1qRRs|gwt;sPPkHOTqj3%09{23&
zS^@|6Q=@cB8zZZ?L|fKMN=uJ4OEnVR-4~7tK08hs%USd-R<WpO86WZ%xo&pogj;H3
zI*bug`<t-V2lb-~H{Q2ro+}Nk3%#!QS}YCMSNV|JaWo{_)7EaE)}7vxHF4q9>Ury^
zO}i%_!tIH<aI$`BI7`>j_S%Ff3m#dk+tn4WLRGVB@kkpN!#u)y)uVO*H6$`BDyquk
z&Z)4VAfw)XXQH;{f-Wm9@Qq_+ccsq5zREt2W}{Pyo#6v8GL`%E>3PuiQv{vsZ+2{S
zTTm#}u{s3bkO%@qjphQ)48TS(KO8%^D(It(=c*c^CD6ELNMPWH1P6y+dfp7`6bea|
z8*u=}zSV9TOXGpa_WjXhRlrr7ReZor%D~1p+b1C<mE(0C;PpeR(W#)jqes|TqEPr#
z%HLoA|Nj$BdzkfyEw9HNuUIzBJ<X=Zz&vaeI#&cGC8hJ))`#J~_s&BL!&Rim%Z;<D
z1T1grQ<|<;+(?yC9j|}Kxy*bt%&NAC_q+v+5=XrrnSNUhbiEh>QoYRUnlTPs<vl<8
zSdarJ4d6e>YzOHM>eD?g6V(Od9Mzirsm+sJ-(3Jmf^@~);6ZUlLI|EpQ#ze@xCf4L
z*KPGKP4}IG8+^3wAgF4V+E$28nW<YnSG76zVh0Z2r7fRr3_LS4Q+Q#59a4vbY5m!F
zG)?KCB7tkg`~RcttK*{Dx4w^v(v6_fAU&jXcXv0^(%mH@Idn=(!_eI!DT9DRcOwnb
z4e$2c@_6rkp6B%+2mOHK-m}+lt#7R;qsFA<O}S%(a4xmQ-05kpV`;?^B_OA({(Oap
zDdOL{+hDdwl-Fxm&BPme22Rce(N2s^SVH>Jp@`vmLT;K1eHWhdC_@Tq;z8;`Y71H>
zZ1h)di;pbaT~utH%Vhj7SLTYEniBOd{0jQ2T((`H1GELMyLc*&j+AXD!vcwnEz}zY
z^X9v6Vv`faEiz2aP@=N4H4ISSZgS}cuGfl#tJUs~k9F`qabE_HD<)E~{?v?PhlV}j
z*AB&eTFy%y84&d;zNbg5erwBa`^ZW`5zp?``ue)wkR4--EwF~5_^Fr;m)$%U<@n98
zd%Fp4vi?_->7ZJWO4!?qiXSIg4|+|(2lR%cBkA0^^Yx8MSdZ2*{4Yh%wB6<1`IE)z
z91qD+B6(VGj|X41l#0g`_a^c%(b0w9U-&<0GSqLgjpT;1n|&Tq<)Tdj>AOpMPsV!~
z7!dnjv@EIn7nWaDv>wY;96p<Yfxxa)yj$X5cKOjy|GO_?Dy>r#gI{cSs^aj1xrcR4
z-+dt;I+)s~#g2RU`VMV1UxIJB@hKMK{hHu??(z5a)B`WZ$uqy}v8<oTV|wv7e92XJ
z09soBEY&fSKB}Ly+pQ_(<Gloc9{&M$HEnt~ebHwuIf%?mcw&v0muu0guC8^;a^H7{
zc5)d>(>BcXH8YL)ZuV+U&*$t*Kq>J8f^K_S6&xBB24&Zy`(KnZ14?xp6e#r%JoM)X
zWHzgV1+|1d2Af-+BP+ozRoIX=77>G*-~L;WS1@9LS&A$z-K+2eT_2JK_CrQigpUI@
z)!$YJz;8e2J;^(<PjN$GNU0uwUKdKwJClF17QHZF=Q(xEs9fXq3@@o9!-?lk_F_Q<
zhdRof-i_V^!5Fbjza?gMmHd)QP_B2X!mzKa+)U!m`#^hmayyA&qbEE)G!=OUE^q!6
zn)9@j;HCXz1wO={-ri!|nTeg3F3oPbtErn_jH{9}SG!hs%9~(B<>Ph$65D;XM#Jmb
z>y*PuA3`oNUvI0+<e00L6vQ}{8?JY$h}SLFy46gtvnk83jd(LV)&9Mnx$p#V>O<h8
zTwPsx2DrjIRq)2z@AmC4usLP2Np6=BWDp_!RF>tN*pk2d-+pP08r$K^&r&noa`$+4
z0Tg8v!1d);Cuejql{Ww~1ZMA;YnR*M43u!2)pK)@&@7kJI-+2QNA1+h9a*L}F~MtC
z^tIl|9WW4Vwci{#<8VT!P1}vx0WDd>DW!pLo<7m~i|~eJ244W*g<j`-?7}`Le%^@E
zY+#Rz?vfTryFQ`a-KkvWid#Ao{y3Lx!6!#Qrl}fV7P~XIW2tz==*787WL49ECbIh$
z?k^*-9V*;)!NeKO=5ZW>p>Kk-r+)F1ephF^LQX-?Kw`af%!w-3zPMCuWF*vl<yfTk
z&0R(LeR(=V=nRpY*UebNI6;+BcUda|qfi?Jvf~-B%oh}bFqS}Tq8+2&OWr3HciP-c
z6&@X}X7^G2_G27&f70^e%0ld5Vo=}ow1btE)ml)np1S|(mPftARB<VnOcOBwKuSwr
zIW~|9gG9nZ_W*E!PC(@$@QLJwdwmBU;exfkwwzvxTsoKX-B1{Fb%%y%Z(SXtGte+i
zxrQ8WL`exeteT78FN*&F*z0+FSazc<mQkgT`xn01xtq;IQ8)XLpdi|kgw=L)8h9-S
zLgYiZzW;)G1HexkQcq7$(V0(G9<>Pn(H9p$oV56)LM42{N`3be85x-sn);-2TNo05
zOR@#}>Wb7(*afkD+BE;Jl-~8=*RN`fklu`1ylGE*-WWFR_-FXDLqkK*lW2>DL81x^
z-l^9D(|Cm9ro6%YTmz}+01Ob4)v0`IJ($L*frnWx5MV!ig~y<%yD|wo3eP>wy#O|$
z1tb2ovl3c@7yIz)^Ur(O{1Q%*AKNi@d2>zjoUujb_~eX2GFjBZn?IbuG9(wwz;R6{
zoMTNkL0l-iwc`|}4+Y;?PC4A{gWnD&EkKB*lhd5}4Z{ZcGeYOq`_$%9fbgD7WMt&|
z`CFN$SUge(7k|l$kWQE{d??xzI7}||AooWm|HEVPN5CL8^E8}f)o4mWLSE_H`}MG_
zn1>CF{n>F`_I<#tJi{Z^T75u<(f8_0H;W^a>+PjuKKenlh~|#CnAo>ecI$*XxG+G_
zTAZAse6-2f{*4JQ@37-`g9)FWmHgPR<$?2bHG7kWgC>eN?ZoyaL5hs(YBd+JY$8J<
zg>lqJ_`h5!RChSw@lm}HH-0qC{>3-GZI0G1;Z!z^AU^_+ekV6?`_t?R=4&tdi#`I9
zUAmnu&km{!RY1EX@dAsR{GW}*|L|gd8h%|nL2CrJVTGyVwEF#u8Vb4*qwxV7Kfito
z+Qh2Fi*hY=tSOb(7Q=Z=zT2|vhf9KG-=T^0iApM8!=Zz^{NUc4W0x29k}M=%6!4M_
zfjT@oMV}ZAk%-RH*8*`)Y5%1BfBCRZrE~)8GZW@M?DC<y{P&~jR{&E}j8u>*i`ak9
z5jrxWxqqto%tKt?z|&0G9B4Y?8W|uJ6`GR-s;a8A+}tS(1y{;%-jD(k#`pDh3tq6{
z0)-5j$Iqw$OS|V;FC(6$U9HlBikTeu=u5NoHTb`j7NO;9Y(!*a6~@epLz-{@mUH$W
zucO|JfS<F*`sShJqk=!M-6up1mbH|WgaEE2ot1x^=d8wJL`6vG5B?vWk7d?r{2G|>
zdXP=r-0JB@CnpQUV)5xKPSA;X#4_y`T^1wV_V#uhZK?6tuzpk52R{t};-F`NANK7z
zs>GxJ%6a{I-I9fc*etPPvDnO@xYyq~JEVcEspr>llKYx-b3VP{#-5(slvGr4jTLw$
zlne|Ei{W%A(JBQHh>W(WoUH7L4tm(HKkesh=6S@uY3Fx7K3~~*ycyUNHdQ2@iMV-e
zaRnW-!v}r#_8CmqT;eH1b*u-+apfnKp1Du+7R{}Y`qw0`rx&Hoo#Zzjov7Vi=fp!=
zZCK;I*_xUXOeQHVlq6*dQbgYum6Zqhcyea6wFSaabPs4ONwq(^r?ZPhE<6u5uWqP|
zkFLPbHpwZfTIbuayArBPyW3|{wH0RJwjmmy8I_TCE{JW*jV~$z?;y+4gbq$U!&Tl}
zN1ZTq_DrP1C&U*$A67tCR8ZPDUR=zc9c+C-&$LDfqM}qfxsrh{9k<Ul7W(aj>DqpD
zw~a6Ko~*D82qG+*q<T1~cP~oc<Doo(*DbE8%V_4=|5_6-VWyaWeM@dtR-Vt;B08iA
zbseu$N$yr~(=FL~SP8Mu{r+785JZo7AnOBz!Ou?Ad<32&G5X=R8~Y!>Y{l{To?-z6
zX9a<7Q6(~KP(4wi77JnVbU3hVrUuyRFb_cA@qe3b_iZs6P@d{`Tn1#QlL49{Xn#fV
z0!l<kZCCi!R6Rc2e#JY+s8sqozF~?KR*=+uLU%yYDZ(G0f?boODn2YAy8Mynf$^E*
z8?rpa)7wTl3vZkhIMIdKvB0EA<LctC(|Ua(lHM(mAR{u6K`rg)EJPC7b0X6K6P(D@
zjQoS{y!H~T%L7J)x+(S@^9hz$WWhF|_q88F;<(v9?oGJv6x5Z~3vb-~2xhkwyGDsX
zRNZ(*;XbC3dUSRpl^kCizGk8Jpck;Yu9&%I2cp&79wTlBZ(6I`Y7mcP7oD=W+;=L6
zr*VW?4X?-he@aPts)woP7E@N05)^GN)8X2L{eeg8l4c|B^^~%OF2%-yk9xD_+QE8j
zKS@jcY~$VPs?0h0o9~2x>){g$;O%_YB;knuzduAf+~5-T6(f2FwiG!it{EUW@X}37
zODm3Nu=057@9z&7JyT=^01-^};+FPz<0DGhBpUo_m4d3OSUP(8Z6G~xJo)3Xu`Sv~
zYe5v13G!=f^HE-l`sa?n&w+Y^f5U*XB+xdUzhJ+V4Y=JoILJwYkU!(pF2(Jde9=N^
zqtC*Yy2FI3-rrP-&Benrqm!K*KTEJMH})EsUsWeh&Z_dOgB9$3LRb&9q#p?fK&x}B
zTRpPh3xXe0F7{56`Ccu`eTXqeQtk<*Y!R3kQgKxXz{ckRWyo-8U2iL!U9mXLKd&!(
zYeWy$$7Q9<bn({)$>D<IjrASBh6l|@Mbi}$L=b27X@GR4#Ny@6)Nz+t>@pbN_fDpI
zRkO3JidnHn4=Dt|upk}KZfeW<*|dQKV=_ZL>0^0P-3*ZCmGO!Shzr`7m+m?FoY=nR
zz`!vyIyxt~5AU2@NiisB190dG=jR{fDCEK^{Kx0ww?9l+K|LA;G3~2=rRL|))t#QU
z*%u{--CmtY!$$&*&Q3l8Xtl3Qx1qYFLMOwN@Tc6!tW2~gnyLLVN5x}@jrJ6vI?l2A
zsVFI7z{wrK!KX-gOS%t`CZ7PlX`~d3#NX^rqWV(z3vB<>4d<fl{(1I8(~Bc}WU61$
zXy$dKFK8d(r*hK=W#x8vf#2xa*j$91kB>|qWm*-=PMjQ_nH*(wTN9|%r<Jkqd{foz
z+ak13Os(P9KUa~gsxJEOVbtEX>X$yknB5d(MR(>bJJEQubhniw58mBnM2OxH;h*Xv
z7r@0I#lD`)RL)`$xjz2*>Pw?oWzn_qQI7TV7AKZxc1ykUY=#$}%}EoR_k89E$ro$q
z`}ni6a&o4zCdG_S6VWeTynsXlzTuKZe4hWQ2l{hNXk<Z(0F+kWs2FEE0hsHjc`H$p
z#d10tCo2XgWbiR#7)CGYB(52@c}?TF(^JRjddo2?E32I<#-fuRhO<`B6E&CqD5Bs$
zRP;0?B_trHYyHtRjbjV)ANk}G5QInF03%>xa&pN}!V`)eLL-)s<|*ZptL;>3Q=I2H
za56B}pR8d~n%(p5l?+%eH?&iV4kB0x`#rVvn<AVH<`=V#BE#|vzB{YnGIl2v2^gX^
zym+u!Oh-i+Xs_A})+4@7og>L;e8j2xM(7h1!*puGTo9+uwHDHhgrr>ScPFo=q9=?8
z4od>1NTA@Es<^s7UJ6OMlwgf9#JfID7VOtR8hm@U!~II69SSHG1f8K;$n8qN447WF
zm!!Q~qQO0QRYNK6{7!HwI>_n9+=`Bds^j{p0LB~q;YT(b%$e&{T1(M&^*sG`EA$Oc
zI@s!J<Hb%{H}iTEhbBw6d_!5BDGC`pg`=DK{i>=)NGV#UG;3%mC>kflrKOrj6D1jE
zE`D-yg!xBp`aBo31e<w+SUeI`uV8U4Bn6OB5mtn!%HEzt+NEUcn<KUo{c!_?QY$b=
z+_X5Eq-9KGRAjPv%9v`+#a=TlA?T+&IljVWX5`3lvx|u#tHSKY^K-XDt5(NAAM%S4
zY+%HB+GNJ|-*q+r><Sd%bV4|v^Ob7Q1Dp^z>*#~BkkC6TC#|L;Mi5A?OAOpALe7E9
zIdS}M>nC*zXb5P?a-LH9HQG0A0I}vF+yL##vl}PrD0(+*U7@U>aYB|+PI?z+)(`YL
zlrFfkF=?FklQWz>M{8Xf35IEs(Ia>0W@6EWX2pXOttVDa(#M#;m4tG^pQHb_&5X7V
zs|9Uc&D{3!H7jcxsMh0{yuNR-moZJA&VT2l<+!nR_R!5e<f-o=|M1d9w4fVxUEQ3A
zswRtWIa6*TeGNceryn+1C8&3`@)bVo62fDK%7y^2EafY`N>Xr;PZ=)WOECnDjUrYR
zyA5a<B;))XJ&^?S4Ui5HJ-Xn|pnA7Irzum7ByVRRzNMwFUzUnjl9XYSuN+;{*r-zX
zf*7l76*_CM-JFH4TL`J>H`LL|-`T#syBYD`x1ZrRR6Vov-;*@8w$2_t=iu>vi;*w)
zQG)v1CKstDS?T^ralmHdMx`dG8m}w|{XG2JsFLiX01chydn2dm{k`L6(L``<>iAQh
zqo?nFX}<q?=YD^&obit1Dfz6Rr}T3TxPAb#Y#Oo|&6BQu3nMo}TKl;j8j#BxG&#qM
z00xp31kC`*ZN2T>{Ej{yxyFk&ZF5}Csl(P2bpFfbK*-3})|M<g`|7bpRI2<#^?Jzq
zX7|D5wES5i<;}Lwm?xbjh}hA&_rqWA+?z&hOsusk=l-`6J8}@~^8Ay!&7S~HsX4u_
z(`jMBIaOlT%Pa{u4C{NU`pW5V(<18XXSY_L;^Jg<8ktp*2m%AkpiViV#J$xfMn>Ga
z`Vq{`z5SBaT#mTxY?U-IhgnW1J2S_|)zy_W8vu->#>-<!*ViNV{4VU7?@Uht1Cc@s
ztGKpC0>Sj<B~5Pnf%{Z>?)ap+s_z#M*X9Gs+2pIOMhic~J86Ew#bv7Zz1I*YtMZb9
zyi;1!!%Af>x%bEK9LygSbi77#O<(Y4-ah^+v#jOFnA~L|L5mWF?p>(N`1<u&BT{nx
z@2&k`uERfEwyijr-S|AA%P`<%6TM=osj3TGd5#Ct5<31S+XcwH<bYiVYMVbvG;Ff^
zx;j{uNxxd^z5VUw5i}ydhf)!Wi;qt*DeThJ9tFtK5CnU`>N9|fG!C+)ITM?7-?eF2
zz%1LCI@z#z{q#d5#Xee}&#&*J9QjexRot@IIPbT0D*0icx&qOLfvo6QPodvmc_-`F
zQQJX?^nG=)fY4NRI5G9;k$pD{?Tqs1%)pkDVM@MpyLyL*Sly(?iX<0bik-6d1V^rB
zsbe2cA3)Cy)p^(+D?~FGEwbk3XIz-c@7tZJhyq(bw!gc&zEZ_U5%l%(klWMHeead^
zF{7~<4>;jIb{zQ4UQCuiqVjHN+?Rb$d{=z4n2q3`;o`>F#L+Xj>U6l2`PU8iPBeV@
zdBRORnSJsL+Vvk#yT;E*p_=8Nkyj6{0ZKr9#Qv-KYeAA@5(7NKwgAkjF`eZtD`jP3
z2Wd?DsF|6WMF@ngDvwNf-oX08f^LQUA&gW7p$fG6a%!96=<P8Ib5A7qgaxS`VVFJZ
z_g_Wi%pfEH#*9KI<}2c`Yf=#U5Pxo0*r+_pL}jOT1!7D1w4;y7*<1j|gy~M#S{62#
zijo$;Zkw1g7T<&k1JitS;~cClU3ZeQ|Ih2R;b(sr)~GDPsoUi;y|B3lKmtzQi$2=u
z5?kk(vEf=c|Jc~`>ka+=_3|pb*hyjJhs*15N7SViCI{U70(4exA~6>lWCi=rJ>`A1
ze~j8S(9068rj~Y)@y%O)R)S7VPM$Z+Rx;t6qrd)M*|KG_Mo9fzC7DY8Io?Zg*oT>U
z!T)s_`7gKQc@(_Z1GPb&*c|n$1nk^X^AGgwnJ}~7^Yiuv3&kvfh3B?_hu`u3c<=y^
zEdo`b>FRqLEdzr*rR{uU>`MXy{hDWl`yxXOffRtZBiP&eg{I*K-)>~BhqL5~R2ug8
zzvei1C%w~3!pHxD_}lyb&tEd@A-y%qjaXW7K*hkH0B~|m@-7@|1sdyD0QL$+&2P-j
z6!aGW;tYx}L_Y)vnw6P$2cxMeD+>c!t$YZC4tqBW=x*4Iy5Lg*z2wn77^RVb_R_%N
z#+PE~h4WuNpaCmFLI>dUy_wg9!Qm{w^LPKrsq*ffCY<qSWpDGzP0_{oxnIRfV@)kA
zN|L8i99IEPl)tiUwC}`8661FU9Bl0ILEZMeus@Ect4w^&qQ9JCIv252;1PhhUNSqt
z{bdjW0GcR%giG@gx!js56;V${SGK9x+%btG9DGP4>d4}v2!{fv_WPo`db!AHQ#5tQ
zkhZ{PGyL=!87GBToYC#LoPL=QLqivpL<~ekC4%AgJ{3E<8ser99-Y}QgxF%Xu4wDK
zhy8ahN^eZLW_Ab$I6Dn{%am8f7r)7!*Sj4bosn6~0UIyU3+EX~iri{C?#v(zG*lsF
zfjqi8w3fqc)$T6Xhi<veUD(L0$F5Jrae28#&!+SY@}W=qdt=&a;=AH;)S6lw+>6dx
z4?6-kXGOB5k;Z-6<Bl6z4>=Bs4e#E+v|nuDEp91ETP;v{W$gl=@*Zw`Pj{F_+KaP=
zpIN&Mm(xT#zzFn@ECAMtP5k0|Ufnrh{7-D&LuY-W^RXtQd6sZ|qcVPB5(4GB{b4&k
zKM%bq&MHRpmQ7YDOiwq4l+_jc-2NZhDAI3f@Av|pT$LFpgIhaUn3$qR$HoS1I4&}=
z3fb7$z5%H;#id`b-VIxmMT>c276$G%Dd5n@VqszN?6~2+%knu6t3KFDa(pcIy%5A~
zt_{R%|0iTiO4kEp0+*OfuqNpCF$njyE4Q{tPI3N0YxoU<R`Hl=K~L$1T5Qb-CRf35
zhios779uSizaZn-%wkVhn^MF1>E7t*XhM+p%m=EZ1MMdRa1sRCT_ReoZ-G@TP5pE;
z?lDiI<k_s;lCbe)d^H1qEa;<KRalP?K}@7XP-nE@Es-!No!>Igl<bb9+34B^LN8V#
z-!^x2hBB)wusU(t=D#rPh<4$YF5&W%I2(E9p>V&>ZD%Rl$Ge~1;?d3l8DuI5CO7YW
zFOI~sF!@bv6N8Y_U-plVuj}@8%xizVbROfQL_9-bru|IG{z~QVAizZOO`igufWZB9
z#(3X8KE9^Pn@{s&BFja8tO)+^)#-<bkoDDi(MU*Zrz4Q7`l<qu*CJzJXqM;P-Q5+p
zw`YolP6G>T%pmxR*w)d<JM^vRv(`}mhQ`n6z*w;=<LRNPuP+b$@>M5@-EPRM$T2fX
zQnhgaiNi}kxH)E0i}I>G#D?+X|FX{{U`6Uvan8H0)v=-#A9QUI6WSQVg$4a_74^JT
zDsZC6G>=JgU>SX|gz8<8^bQxk2Arg%1uqG2aT~0Sf2e0<B)Vs{?N4dQcI2T_9}zw6
zyD}1JIggp=k;oH&yvH(sszZ)_(-FytY#e_910IRzN0Wu*t0E!D3i3lhf)Y^#-FUbR
zHfB{|5sBXT114}#n6aZuDQ%Q?Rm|Lx@`g(wY;9~h+zch`ZFO;JI2>Q!f|6cApS873
z0RRaQEAq1^tE(v4uu*=6zREZlT>T<czc;O=QXW-6N}r-420zd`{XRE?LBXvmvA=%D
znAko#(R&4xghU)Il0i*f{V$LJ|02QJ^Opy${jJKI(VqWv@ZLKie?+#)sq@0=P+E#v
zA<s$j&%mBspV6_`3EZM-w#y=)u|%KXY{z$UZu)?e3d@*}=~L;qw%Zh81CTX|m%n2V
zj0!@B%+CBf85YL-ihu8g@a?}*O!Y@!loz`-t3^dukbvQci1X8xY3GI}U%GA;(>DYw
zSYPm44xhWs$P)Fk=A=@LNQzW6l5E!OT41TkNZrk=upivI3#uHo-{VY8>7x@526>fl
zh<%vuoy4X*ZQ#!pSR%YR{wP+ug{L>FzC?VLdE!*!O}08>;`Za?U8C<!&~;c?7|029
zrg00&Gcz?Uasxc9<uW&#vo!EgnlhMYe-UE-qp|#FBVY#)C#t^;kkyUC-UNUq_APL9
zCB(($ppu2JM3UKmcKl`@9n1*sOe^FVTg+J)e`Ecrxn2jdf&ZIKrt=&5GM!dJY!E`Q
zGHFYR-CCrLO=p&Q;ZRN&L<C}2%JP&E;ONiHEx?g=L&Hl~KL>8FGriervj%M4;Y|Km
zpc@C=10!GhCXvtVn$C9ZbEXV#-r+H20;Zu}mp!d^D|hHR%U*MH2G6vWiDZa=7*YOk
zj<_~N&(=2Hs=tddi?YM~;!!(yor;`X;|>!S*ZZD0KL-cq3@%3zZCG+}$MLt#pRxdk
zBmV*@gFcUbo%@CUU{N50$o+x4zv}kb;}-6=57;;}3+&NTfJQfE#QShx69DrHnj$G^
zXy&c`jbKNnRltO84X!5U_L~$zj+V{qTvnQGI^t&6tfJelba&E0luxgTkQwIT45+JP
zQ`S|@h1S47QMCw(oZYcb?^0C9d9Z|A$tJtTmHgidPk;a-s%wA=Nq2jxDN7z%X3zRn
z-1Dcge*~<VWw$!gh0$9z=C(U7+JD9Ug}r!Vim8><lrWr>kx%KIq{7>h!C1jWQ8OR{
zre-2XXemek@w)i7*rY%iTo%M}cvF&k*>(Za?Ee!Vowb!g{g`DaL9b~}j|I>Ik<~IE
zlQ(Nco<Dy}<+%;Wj3vx#!tg*}ataDGkWtWb0z;hCUeGo;ZHP@MczcIHF%X$y2MdzY
zAHqkM+I{l@@3CXGPT8xLJ4i{1`k2$>xdDxrXN}=tdiAswEHX81?Kyh=i!q~JwX?HJ
zS=kab{)`U)2hWPTp^klUg8!{*YRh+n>bg25%V9@4CN5EP>q;vi1lBKaG;P;vt0&VI
z7xS$;Qw{qEIS^q+jTb)(;XZEXW|=&ii`|k2o?kr;Cvxhu-+8D1*x((&i%rwm756&j
zrh})k;3VB8LjUHH`WMyHSxHSw-e<BI1&bI@QR|<4F){@#C5@q}PA&TfwJgXk5Xr!G
z-dK_pmIilQoLv<J5X)B+LX?z=wGKuF*c{<?;*M>goc<>$ti_d;>Bc4$s0K$zu^<IP
zaWpgrkknq@e5)7qi&TMX;c&5&F`CLe$F5KDa~vF_Q)=?gPoGH708A!_R<)pVqtD#+
zF#!pQS;E-e!K`b-?5qt0<3)wS)Sc7~D+$rX*TWJ)gxB0P{?ulStwB2_(Bk&ybchTx
z4INn!)rg@216m#3!qSqM5et&qKZeujq^h;VI*F=->G?&O^I>%J@Ag_92`v9Xsrav}
z@{fMhgPOEU!ZVCrlI8tMd}bz$LELt)8TH=>kT*a60g>(!y!K5<WAg-Z1<;|S<HH;z
zg4OQa;t_uBe(PIKr!)0gSryo%JnlVLaSI2alCd*bO#ttqUf0?|!BCo@(;zlWUfy8(
zD~}Q;GqF<|&vw4{galkS2HPA!eoxSvSN?OPlumXiKJq#*S$p*8k?;AYO>%z^?_=@O
zt(QJNUZZzf>(lgEo3J5r)q6$tw7<=eH15;+`3k$q<@@?&ClL{-6D|r0!xKBJ;j{A6
zFMP$%lwbVvsQp_h1!^i#O~u7GgHPFd>8IWV6&2CURvHC*`Qbc&UKAnK`F`yUOq}=k
zkDx;a;@{^&DPV-KqrhCrYisEjS?leIR8jsAjIGv&vMLd_>*AZhHdSdkrZ83Hct9(5
zs$rPyNKBNFmS#Qf&hN;ynd-d#=YN)nh{*Sxnm<$uX5`N5xDR7rP@ON@@eGv`FAe*@
zU_cI*aK_UjttOV76Ya_6@3DV>yMMrm{>k0ayngLWgMnr8Uxl{64tfE8Sl<>uuOkMS
zbi`z1{)OBIK250laKggE&?m>=h{z=VFWV~sQy<l`16M)=OVv6J6Cxqg5Gv(APqe?k
zcq4@q3I^u_%_<qc1S<Ofa^wE?O^gzsT3U3Q3eSNZFjzd{Pb43}>O#c7zukA8->551
zMjkDGHZOq9SQlsWCG({2et}u$UWTEl>zTi?w<jYgOalpz>*y9xnN<fv8oL*T7kuKk
z?Caywaa^6ff0>R*0L<RCzE(y5fZJ|KL4YoihSnNQeUqf1*|}d`MnnX+%z!@`F!z<&
z@d0u=DMv>vK-_3yTH{)@;HKhmcb&FXHzn|?7hI^Kpuj@Jn^du5VP2pjE6eNZ;&MD_
zw>PR=OCy_DQf8~NuLXKUXE=+BUJn6MZwY|dFCaa^2ekm0WR(CxmX-VQ`T(8p=5PjG
z)c=W{3`T!cHBBS@A*#K-{gsF$B4NnzO<?Tr#i7#->;He^m;nYVlH_e0dvet`MY`Tz
zN&#3#rbrn1MG;lwuu&@aWV*re6d~c*#Nf`OMen4N(|?>_34cGofb;~e#N??T<t;#<
zi?dD!Dk@uit4nA&GDXdd7=Y|6tE$om1wDm*7UhOSB<MCd<yaNAwTW&Zz<+#uaggf*
zGzMz^H|L3?M{E59R&}F|j%%m^CK?)e!t+J6zjF`&>8TP0ze6Md4wP1xcVH`dxPLqB
zpBKQV(jn7;1R`}H;eTWL;@<Rho6xeFv4WrTaxu+*%*WbH6UX9mtL2~>jLzKOM!v^;
zjY1`FYHdX(DTz?0F{NUHq#L+*kfWS3=)&U4_T*9(P*}GNmjm4WQ##sWH4VazKDAPY
z@K9j!Nuqc}ikg;|LRA%(#NFkk6cqYW5)IA9HLmRS_iA8IB*hF3^(1LNQ3g{Iu(y;v
z;$BBbhlYkmO54H4%8GTC0R%E#F^!HH{nCl_=i|_cCMx9i4t(i*zNd|gjqTL^l>p~2
zK*nF5egM>%JgnW2cu~QJ@u%{Wiu0%PlNlib>-Xm}nCNeiBcSLClQsJ(?D}~`yp0m@
zvq?9s8v~rHm)BL_D=jS2tW5wOtv7<_bUcxTr++5?yNzP<8DG@HEgjU`o|=1>r>P^8
z<L=fcF-W2bDbcxQfgA59GP%Ftxrv=A!D+jA3m}sn9a%E?9N4WB$*jiDQ~+f19zZ5d
zSyQ%7x5u7deEj$vn{$H1?=stJQ|BT1<Hs-W6$>Yz)-ZPoiQpY7YU)iL7tUn?6%`4L
zMs&KLAN|fmY^_!gEOD{Z(47X`IR#*kTU+Y0BNH7RNHY~!{7q8<I|oN~?=pWIl>D#f
z<5L+@AlnHrAiyl@fKXT!@0-r7r9t~?SZ>>r{hSTQZRUPF7wbQY+gltOIv&nE1R8>H
z1bQ)XaTwrL{h4aAH$$()zZ(GF`J4lG`@JMC^I$nV13@vn9(U8kET}geNpK`7kM7lK
zt7)lAO+>QyAyO_4f4|$0Qh?Z&t8Z5~F3!vhypQs*vb3bGikOBO6#~-OgtToy8%x=l
zkm0OR5~OqPFA*z@#~Oq{FAKh?wBGsIv@>u_mYnxsukB1YTmF=1E$+?WBtGlkpA%Hw
z5C@SP0aZ(lpL=A8AvO>haFp4tVUiV%!`6!bUZkwjjrWyHMWKzmJ9Jlk@6Eq{%m#61
zayh<d5a9SBa&Nc57e&f!j1>BAaA~P&{ba@hVZy?Ys>NXi4jF)&P6WJ8Kd!X<_Pp=x
z5$Z&Fr0JMz3Vwe3W2M`UQv8*m?=@QkTiAz?kP8{nzm70^=mDQdcf}dPb*I6>oB<{h
z5<CM>Wu_{vrx*=J9PRib!^011^pD&EetF(SGv4u`#98nF4)T>vbxW%|bh!TP`*I_n
z-%m|uA-F--<k6Yxnp)Fg6{|y=!haD`PL;gde+b4yvv|y3)=lfYJ!$WN5Vv3UGSTg-
z<>yn+B-Vs2NLm0Ts{|YM>C@EhqyB@udN%@fjmfbp6Hhk#MchQDL=)q#EA!V=ws{xT
z%gXP|ljBw8uCB~#oy_X#3=Ir&OBugcp;#e}hP1k1a!!`7A^xp@k8q;bR8ZTm1yC|a
z_{y8Tf3Q|-^9>aVKo;n*v0RChBpsZjqoKZ<T3$;h7Q6)EBTuRCbj#SVYWVnpEd6fD
z7bp8W-Ov){Kd4EWMUcLT8iRX{zn16Z%mZ!(ZS9n6mv7PJ<A%*HVY)56Za!Oh9U8Gf
z+Bx*=UW&D|^J^lmAKP_1#CN|Q9H{T!*=WSeTN_)>zrL($Kxc3`{VGcMuTl|A5s-Da
zXR$ug;aHoE3Y<J^Euk#`0s}fRDVBHFWS3GNe34n7!1~twv&SY1gQpQ$2r(P05JN+c
zrkhOIC|s$2YDE9VFkM|;tEzg(Llq+xO;Dov%k#xAso{jGTHn@18JE~IKy%iboS*#^
zCjhtvlqXlqVZP%5S3Z?ZW1}#yhc?^T#DpG9{(3u-Q-I?gFabn*sjH&_;nD*r$0?9j
zEnVEHQF5;YFF@b`A<>_4CT#LNYgJ|XlkbK0_KFv|opR+H$jOaxnK2q?2pIr)5i}>G
z{l%p3G9nyBq>!FoD+{ILZn^$pU;jm(Y{0Be)%;Fvj+Givk>~$_7we>+d@*GHIz!Mu
z6AGPw5=H(L=wh5Hl$Dh~;{~4-m6bKnTQ|JF3%$I)rfHZe7vE^6^RJlV`4Al394W4M
zPx|Zi*CT;LKd)9+8C{#m$<N<xuyAr>l~3bHTz6l~f8SWKw^jL~_u5I*7WeO`!Jl&g
zsxVv?OBEZVFJWQ^6VP|5ymW(;)P9pdL}zPjJ4INrcYrsDaQyg00<Hc25!*^Z$oT7+
zIEq766VJs@xuH^-Qfqkr*_tgIh385~pWVIl4MAkCiy5X!kvYw)s%mc4n`FDaJEVuB
z@K1N0V?NfU=ZqDo^0vtEo!p}&A3UcF#(h-7{qBA{tNj!1iG6!hNpf!i8T&LA&&N-n
zgsu-C?w>MQH41*jyT}IeAa4;f&c0+!24a+}Bz@zvxSV&kuX>g^mN_8G*iL7H#z5Gn
z6}hYF?Z>j-7xGBo8&0*oGN}}XrRKSZ`pmEKa28|v>EY3k;-V6~!SxS}^*>dsg`u#K
zsc1q*jX4+Y$Xy@<WU|m8+P<SLS)8QZw1M|9%)sY}NL^u+FpAiyFT<VDC|iQ_?s|Jl
zy*U(Ff0zGiot|!?Ci6gT>ft17X-ayB##qWy6D$PC7dIy>aN}5c-3Zn0u8w_rhl&z@
zma#}c;tCyH2m;v=k;1`Iyc3d>t7Sn+E8EQ00G27oF2Z1+HxD|<BIVNGbs|!et}b3I
zJ$xF`mXPdk+!$atU20dHAI1F34zz&JRHR9L7$gFtB{SU4)t(fPo8UTwAU$m8Aic+a
zZkJR*Crl^+=O4gDfRTt$Chgs^W{28{JFqa_Gtg<~8$MTf%Kl7^MG1+Wv8(8z9G3rF
zH7V0UA3%G(<y&qZ_a?JToh;Qh`B?dLtEJIUr|v=+4)rLovx=6FZ+^Os0VNGsu67D!
z7}C&_F78B*v*GCayx`yDU~jAM+bJP;Kn)|1g%yu^lkFJ~vOa#sRlv}kb~_}Di!F!;
z*KZ)kBxqDAfRM|YTy!xDgZZh$M+w}1@|{o>q%y2;CtW!;T*`0l5Z&^+I&AeGs;nf{
zsdovMDJ?B+fdKIJyGW9(oNGEd$nxR7+r{VkPgOv|L8?OlnErjjI@i=zC^yM=Rv`CG
zJPieZ)6@-R)?GHE1L`S89zp?sUf;dZXLPHBw>#|71ngv_G!by6M(c0zKii%qioOi&
z=>7V>M=EY<Mm}GY@ekP+GnT8G5+hlytuL5d$8|Jpu%?gmD!q1zw&dt9d5jjCU3c1x
z8XKo=m5%*pTf9MR&EW(K$mg$fW?M+@T*_AI00FRknp?AZ$w(rexJ)o(MYLTI_o}wx
zW=lPp<>JmR>u_!$gWXx<5MC?=9AbnR9Ns<p6yB!Zf>J|WUCk5Kl2j*`+Lj;6g@dAO
z_WrUIu{Z!(DMCs{7NE!QEGa1|CbD98WyJ{h#f#nwL{25AeZa}2Zn@f}JqhnE(%^(d
z(#;Fa&qUlMc)3$tP!P;Otl4yD8)o)peI3`twx$qm^}L_%QOClfw7B@NbyI|LA0$wV
z5>Ga+`bf9u23RA=XP1V3keraPW4sr&C}wGCxfdr8cjI34<V}^@_D;3Zq^^mv@$}2;
zmXE6KlGm9fuqS`PW6Q}NO?h)~YaFcf&|v&>jz^fn<)FnRm)Z}!oQY{zrUBb-Z*R9P
z;-q|Nj7#BmrfLyS69eoq$huhDo(@wbT|plb={4ytOnH`;I_%*GlNd}cEM7DhIpW6V
z?<K^NB&>c%HF7{2UneO@Ct@OqEMU5eBa>psc7%hwBgGW7Wz{wzkBln@)xPV5b+VKy
z^z3icbX;Y=JQ?)&i8k=~Y{_7yCBI6CT3=ru#?f&U3p)-^vru*T@x_&vV^k1<z;H=e
zwSbExT|ztvwkoa~dEr)+HP2y0^yKnMk<tBGPhYmcyfsg|W!3|A_{(_l^C*tlbHm*V
z%caNrHhc1bcOqb<#OlyzZK<fN-tUuq#MZHKq*L$6gZj|X4{(L*V#@(sJ5X9w3l)^j
z&8a+*2`erdzX<|uY8_dnaW8U34lS160$_h_drG!SmEreYE~?sLwgeMf=*<Ug%!_ey
zxbf_on!t)IN+`5~bC8Q1a0aC3go6h!Z0G7rPGVx-=v2N5(8(IN9Z)VUiXz}tu<aA@
z_z~ljO|cEw@FaM#-O;L>bPyOEeu|bj^mko6V;Ds40E7DWD_1!=IW_A-UbnqZfNJ5G
zzZbXRFc1*@K%vkaKzZ_026T}T!9<yV@tsclWZe0g@W%Q6K~lm3kHoKX?d4RQF9QSF
zfEhk+bKw^{mpKk8^hg-?bmv<`vtsgdILR4Wh69uE@bIGcb_4B)n1!B!fdQyUz~0-W
z-djK%Xy8%{T&4WV%1Uq&ECr0u#L*K8C-27$wX+DI24|2rCpa#=6($}Am%K$fqtxub
zmX_W3gwCC%2Dr`Vcz+4eH!)P85vYxX>ozVf_|zbMF=&b5nhsyyyZMG$D_WbUzbxfj
zo(J}>+W9##r>)%+%omse-@kKoTdl2h^C!hV9Y;hq#0rRtQt-OomX{zHD=3J58<5Ka
z!}6*&=_hk5_L3T6<mb1XMkMq+L@j&Kp%Hl_H(^O<>C!;VDYC>UhXNl=_^8T_31$B0
zMc^cUq>TexWMs5BXJ?;CRz-6aS`MZnog_{MX*(%DJ$C1|o|LP{vox~q^2BGD%aX$~
z^9m<$Z38@ysl4utx~`{oLxz3T4l5#f7Ir3JK`k8Eyu-hCYXz)`2!Y%WXKIoG=6%L1
z*Rv6oVC|Q`9waCA;?o|9OHK!C*ndGG+#p*3QiBTR6q<*x0rLcua_}*b|0M>j{*W%8
zX&Wxnpf>|3>(lyr4o*$B%%EP#+9j|&!pXvdx<zuX=fLb`gfY3>E#MrpmkP)QNazrQ
z2aLd8B|+}C{ibYz9wYAdm1FME!PKJ5`YHAp$}U<vg;dT!WcNLyr1_B9PrdS|?j0AW
zN(6X)fDFJP5=oAPJznH18Dwfo@zh4Cv9DXmoz$Tl2UEB^lYcl;ijxoZk3RwkB80@m
zJhEO-W-^`{$27d3m|$Owi+u{mN%%;c2{)Ou`VF1`>vG{y%G%mmNUoNU3tBaIb8D+!
znR0kP{ywV#^b3_G78mqsUHfeEb+uN>gSr0P<Yu|;4%<|2Nu%=YNqS&Ud|aF-s0rlM
zda4(M@Jktc*Lg<m0A$Od5c7J0p6fp-8^Ql;qHs7v{BoTRlsKIf5BH=KGA4(FUjDYw
zt+0aJTu}z%aC$uLJe(5BRe@gJZwILm2xR;q39#nb_o}68d5weLk@%j*rZp;S#yKv~
zkg+i)=JcJr#cQY3Wa(JRwizQvNoRkM2CEq?9z^02X5_6Z7mrExIJ#~se4B|j$Ui8T
zZFzPvD@+nr(1|IN>g8N9-xm&7zv|Jb+5GA<<!b^UA5V0@zf^FlOoV=*m8IeE#k)!i
zELyqMhHg~VbL#J9M`KVbw1ttYQmMWbNli5ol}1k_oKcWZ41(-`zEu2(JU4u9PItRL
zB#<Vj>%e(cJu%pK%m?AB87WH#7`FVcTH;u=@id`J$;0*LRy0G|qb9sXO^`2TrPk|C
z0tn51Z#+PhiiYB`CIvqN;S3?eykfl}i(@mI8_#1?Mf}VQH%7+NmQ0e<+*xrlZ*pb~
zo<ym*-8Mh70`;~CsA~|%<A2S&+>ReGMaye$CFiNLv}SV8$Thc6zMMAQadRoYZKrx|
zzO7f?C!s8<in3vMSE<Q@rEZPy80Wb+%@TK*b^ig#^o;K6&cI;bXxRo5Z1@Gawzm`~
z9wiTamCL_6$tZ8qqxb*uS(wMWzK4B)D~rpK4M6!c`Aa>|XE>*M>{$CZmA)sioxR&!
zFBZ8zt1v7aR=79}d`53xV+|^7S^QD?Cb#X$$!l8jF4}_8u!{EP3@EhqA(By>HIhNy
zv<h7L3Yqyz)yU|D@97bi*J0aTbMw?1MfAJ`8JPx;3yq}qM7-y`*RBsXeOQJM8NYKu
zXr`~*YeS0kDI)&G)YPZf-6V@<gIzV2v=<pkNmA@}k$dQSGy`01Pnv|7^m!tame{~$
z@RBNTY5XtP*i`*Kd(Ji-elVIC(OuY0#3Lq_ixy~38dZ@zy1|m+(52SZwkr?~8Ts~o
zh@@t>ra&NsBj!TPIkB&N-TB+*n^sewH3Ih^jMIO(J-9_JdiLM(s^Le6Ar;;n8W!iw
z)e|ju%=l!817L$7{mEN}^H<^F=oIw2HpN9nYY1VKrx&(2+vCN~5;LE<nzjp4_L}Wb
z)ipUi?jjcaZpiDshz7InfaG_xhAGDWXhmiJLL90*n&Hh6&9T^A&(q_<!(x&M1A2X_
z^fbPaF9LdQ-?$D(q~H3`^+sk%8s+xIvh!uyFu0CuB`H3+;kfWzK#Nq&Rrbk1mzAS_
z_=DcCWmuWvp`1qG)cv6P;;`oPr93unVo%4j15#^K@|3`?tJxVb+emdaKPL?J?|Zq7
zk|P(%yNAd|n1mUnN|#5j+`a?8J9-aOP>qs}Yu=BaL;P_H7pp^8S^MMJsbts}43?x^
zuf$yrx_!s>3^pe9XCaiP=&pYKeG0?O$Lp!njw_GaUm5K2;PaD3#^Dba6h*L%8!U-!
zAVjNvzPZDh)sNmaysedH^BN#T4hL%_W!R$0kGr(L4;K&+nkYO$ed<Ks@tAz9zlhEG
z?MNLpAgl>YgRVay*B>67@d_Vz^}m7@?G=yrPDPE`-)8vC44K`IOXCWfu%>j2T)j3F
z-gG<2O|1!1xvlR0sTXojN|CUr$PYf&+j(2A+9AD0&8X&R3CJV<B^Nq-Hr#<k*)}+w
zgW`>lKin30d~ufu*S$7BI<bWRFkHz#0r8@;F0zu`ajDtrUb0a?%TK>ujPJ00A?XW~
zR`=V3_Kpu^6*td2^D*+y`MExoOcT9Bo3T~+9IAJtt1~-c{~-#Umq90?ck&c`)n1|D
zOETb_>N5i6&sk5qoVBZQ{l<R*D*Opl0R)|TH^4;ic+0n6toON}?}gb+(7o5U^(%l5
z)@gQKpK%s@f$<g9@3sz|M;yP{gNk$eRdwg`W@C4QB1HQz32oHZlJ4IJQb@rw0unD5
zU~|)bRB#aA6T%1mXK<S%$*?s0d-*zk3x)b)9<o>n#7guMWWZcIr`@DE-F&uC!ivX+
z4A-5~3Cr!5G5~Vl*ns74CUn&?*XMJG&mFnLA|qYFEzLPe*75U8gHNrH$mMW%!GP-Q
z6cFP&&nF+^+qsr7?GK)<sR(nt@xMJ{Y)7B998Tx%TWTq%w%uE7OXFV|r)A;*8XDF~
zu6#Kl0|T2YlgBmnP*y?JYDeqd?#uYZReNjvVF2R+SwBt0Kc_nYzzwh#`P8VD*|wFK
zU_DC7^RHPkU{^tC_xw~So!*v*12q~C-22?s@IA5i7yO3NV<jsf1TdIVGB>9`Y%z!d
z<zscpl>|m^brNj4so|op6XO#3{Jzeer?4k)_>&{}P~DTLERxM~BG+z143Xx2XGX^r
zouC{MA6Zf;B30>SxUL~~F$2$HVJFMGAY`vna+&A+-jUb{I}&0(v0Sd)`&W1FZQ;+#
zu#gh&^8Gb20$ho>C0@zru{cjD4<j(ehVmg$h()IjzzuIeiXk-!T5r7CHEWD=S!vb^
z5Y(DON%fyZ9e?sV5Pc9&!Yo`C){FugZIjI<X^VP(#V1*<+3^ce$tT<~PjmVda%T*E
z-iv7!i+ZejyyQJZw<>cM(3;u~^dzjYDTnDDEe0lVx%2eO$rNrKf$WkHW^a9$UjkMs
zwxg30wK#vFKl01<dR8^#mBo6H$b&DJ4YTrsbBGVfy`FbW(ngdrfeNZeq6l11!w_Ft
z_zlro6%R6<(>dU3DqByM!ql}QILnvd`n?aD`aK-T(QE+WBZ+x4idIB$#gFw#UHosr
zY;k5KPJDSm>459FQfB?VgopfH%Y&?f@<%(<y=i!z9<zg{3nWVPZ`-?v1_eC<Jmt~F
zprZI>YfP5+!1ZPRCI>9m;Iv%*04o=lhQ~PhF2BOU@agcO`?XByvc|HA>D>ZnF@j>Q
z>Z<xxT5`(>FC}+Wft*7AP5Y^;x@fd!sZ(A)RaFrH)hOH8e0bSknzGh3vUIw0u-}lW
z_MT@d;w@fZ7?)G;P|bD}FWwk%G^QDlD@`3w9qWC_T)G?fqC9oj=VW2gLE1lP^hH{z
zKhM&y8Nb?SrA{reFuA)U^qAaL)cY6`^aKV;biT&r5;*;4rPBtz;y)RnRyc~P<@a*o
zYx{AF;pIwkSQv^qRi-OdVSD?|?`E!De5Z}hkbDK@f>AT;+0~vW4ou*((~6x0Ysm|T
z%kM_ly~MG}jUsCX*gk2wF#F`R%>E%&MutwmW?{IHN>1~LN*9N_IU~t-9@!)8^748t
zf!(k$&$6L$Bm9SelS@IfAMyMpiJGHVw65RvD${5qrJ;jt{O)PdS2K`MYrKHxHbUEn
zSk3D+)2<;y<tb2u0ynk-&iMDp>iCwe9|aGr)%yOL&%=Dkr-bjkMGG4yG*Ka)u$MT}
z^qIGs$D4<OQ<zDt;j7hD-#*OQXLAzY3UF(M=8JyEpL|IG=aNb|rWNu1h1k~N3o0K!
zN_m5&lXn83Ad+-vLlb+0FV5|!UAydU_eXU*1zC3#;(0vcg<gzgxvMl@t6VQzd>#>b
ze8*7hAs}-3(&)<FE2l7}yhgLJvGLMM`_r_>F78xQL3C<jzMlz~7PC_A&1;?O_(RB{
zB5ywth?O-Yq!N)e7M<^gl|3P$MT6*@=WLgEQNa(yjx0R92OXMV|JOQyR~Ujx8{_?V
zsmvJ)k@3D;1>{n4spR*Yecg~}lOI=#t++mu!-!H?IjSFnarze@n+3+y#&^QWU|m5E
z-xk{=qq-7=WQvjMj@5q%sm62zfh}gp6Yd!%X$b6I(z<V!K;EjUJwNPw4SWAYdwhHx
zQa<K%=W$!bTO6rxrJ*rdQ^cpJpGIl;K6E&m(6Ph5CHYA-whKR&^!LqV7&LJP;^XOw
z1{Q6mVX9C|j2BqX58UMH@;Lb{ym<O)uuP9zxo!+FjP||2d}Ay;pxk^@Zf2GKcZyIu
z!cx6sm(*e0)UkCIzN;%eX*WM>b~Y1D2nOT7c(*$GQw#CN0SSmVE<qawjPyJ0`&MD0
z?gzJ0W%kg=2X{9Z-)8F?n&j8#xfgG{S0#YzkgywF@?2GKmf}}n_AjqHm8eLs1#CS;
z2uh#V0|V|AAK>r}4|if5<;BP3^*%~o7zF?g)oo+$TtSp8uPQ}&kz<E90Lu%~dS2$H
zJGlBrSs6?BlxMu8A~sb?(<fYHt*>bNDg}g_$z~*^`pnV9Jvk6E^FAlHTcYa4j7?Kt
z7APCWMs>phU8=DZ+Sf0w)Y5jT8-LDiZpHLyxOWG<r6A%vU}<Fr6K2y*N39GlK2p%R
zW4~U<cv#iYFI@s%U)RtXvWhuq>3SrP>;?be+bnXyBB*CqgI%qWG*7gpORcnXq6VyO
z%{0IUF8roSQdnmA$pgFY6zGYEMFeV>V+*H86)MAl@2LK90<W7Bu7t<4A#2pdKrl_N
z&YqYxJ5jPQctr>g9|YUG@v~}0aHT9P%5VOdbLop!WhS-v(clhMqpN5}p(J-TQ>PSA
zu=17y2%!zFFtB4%QsHby{kn{^xHUB$&Z-QOJ^d94Dig2uF8w_5to9_VFrwLFY1Rml
zP#k_mewikz)`jb4^5)t_i#VEiD4zwi9QUUFqm-E6V<d9B1Qgf{ycg42n9OD}5NxdQ
z-YztPNg8lyb6fPxs*!bxym*;L4VhbMvE{2O#?6;Kbh#Fn-C#k}LFr+HR&oI@KfWya
z=e#uZV1`~tZ*q>Ck%vn<-@}^`4-Ho^I7UG?4wp>aR-YoMGN|Co7p1kDeH~$Vbl{&A
zP|RX9-t97Xlm3o7CYO~djHBg1oAgLOP|&~rmDEjs{;lulNt(bw(7b&rwn}KsaY|u_
ztl{0Pe~U&7<EDAN+YX&wX({gDhkWR)l#>jhKb3KtQ|xDhVQ;7WtiZv5)0L2rgk{A=
z{3;G0TxrE%2;hYy;jx|_Ec$-^f`PboWl4$mY~!vJQeL=K<dDk4E?<RpRH}93b$`_m
z={2>xzI4AY{1bECF}UYY%mk_7N%q&|Pc$}4)uR)LjNE_su01#>(esGe5m2egN--{F
zp{pt_mb~3JfVhKh?)@!F`c>6}ZzW=Om7OUc+Qg_KXmEa@VQks3a<Y^%3~R^Sh&rCb
zPt|V;d*4erOTE(7l>6jK;3v$R>Gh>9b?!>YKR$F?<$)u{kt3msy*ci+%}nwWOQdZm
zcC{A78O``b)9R@Kg><Rr4FWu!Um~$aVsF>!o8Tb9%V07)o04LRrl<i|=8sQ&$VYKj
z+6%WTW6F4*O7L{hi^fYTJG7qMmGZd-mtE8mbnmVnDvreTq#@KcDueivNVuiXIS44f
zegtIb!`49-8M`k=nh)JX=V{hTxpjpidp8GO5*7D^8xM?zFo2qZ<9u(qtzE;n<Und;
z#*$SZXkGOK3ti==_<Y-c7`6`|0yorcuDG~X1nCZR>t68QrnB+=x1Ov*=6Z)&2Z0cO
zi+&(LuDPY9D2TyDcHXqAn%9#aj0Fe_QfqNlLAJ79lGcwmU5{@T#j4ge;{;Lg^vBG`
zRJ>J3&NLgkGiU&qrAB|k-rj{IBr~p~w-m%bd+DB{Rf9X2;)VyhcB|x7s8=Wt)MBmI
zk)%Z#Fc#mLZ$id17gG{70ap*x@SdL^3W~>5MXGBQs9erci1haLY2b;Qj}qAXl%|p6
z_*3uxWXEJm8K&OSGEL%bcpHdCt0<Pv%Lwv#L{V^77-(nX(YLB7lnTr68V_jq(UMUW
zSfsCN3-O_TDJd?N<^)q9>bb(LmWv`dCYJ=(Uosx0zAU8F$OxeT(9KSy@hQ$97k;(M
zENpBENlYDK6=>)i`UTb1ah#8;#W#dc%Smkq4&M;1>s>p$>hCwrC{GFlePA==f7c5#
zCm=O?@y5DVW)}Vs^&H3V<M6-tp?r&qgk;o^jZX~klo?6@Ea}~GeJY#GsGc;mo;|kM
z#*dNKhSwfLvnq`Qw*@4jyXn&49_4BUrgJ%xw=B=g0n8Y_Rpk8t<LoV<;##(~(O?0B
zySqCi!QI{6T>`<~L-62k0fM``yKAt<-Q8W@$~phJXTN>VeeaHcj5V6-rfF7J)ts}Y
zeV@OE{1j%q$XC1RJ3YcllfLYcfwwD!9<59myd<9^cZy5os&0c1_<g8Tul%oREbSO?
z*XBEBixT?-p(TCPRm^qAOA~P^x}%}9k_#kEHg`_R4o3j+<i+R{Q}dW;ueUUjubgI0
zO7(7<)aU)fZlwm6=$yuuQ;Q<1DnwRV$53@Y<7LQ#JRZZ}YHP;!bng99!pj=zzR8Hs
z2ja_hj*Kxm1q!z>Z|ZGSacX><s_Sl?nf@2-ycRI&a$(LAE}Vz(e4qFHGHK{^AyRyO
zN8XDC(ZLBSwLe!*S8ENm3)9QBYO|7@W;0RR#S1<8Jb2Qs_=+T8smGT1UMbJ!H*Rc8
z;;03GjgVDI)0T+Y>Q_MDOPR;8HrI|K7QvO!u2QHYOHAuc-L^yglTOoh<m`~%*?7&=
z_cjukMj`3U(f5x1@L^bmx9a|Gis+U9hEsFg#-(qk1`%j=V;qwHUZUFST7Q}cKn03p
zU3mcXD|tbUioLFDUdKs6H^L~NLMG+tIe!Flp=kcNuc|=q6%s}fd%a%MH(;OU6{@%2
zLQQa{vAwZeptyNKdM0WY<A6#%0x{)Oc;C3FUWe&x2=YH(oUIg}7=_7iet4Lcmv6}n
zJHMY*_bClPKRA%|LNF=Opg(WT5Tw^X&_yL>en=vEp0noI<kJ!H%h+&Oi=%tMcZ<yG
zxZrQQbnVIB0Fr|T6n61<ddo@D_t(>(Y{rH?nKI+nUfygg8>_@&$O8k$tb8AeP;XZ4
zpEi#e?PR2Wn6e*E&)$p5JfD-j73p*y!oFPbuZh#y4w<1S5PQEIHMG2VAAU5%EMS(~
z>_ZUcddMEwpE&^LfsOLm`}E014a*d*H&<2P7+_b}gd@W3cov*3f96|yTE2^)S3ngp
z;MmK0Q|XqdQlLL|YlFSXI|fu~uYO~`)QWIg#%CWSNuBSF<@J?~Q>^pW3{G}iZ>+J^
zXKy%gPc`!twk_JtiU!eg&l+Czi7*r)jTh;*!_MtgA)UV0o1Co+z23r;8(3_(fm8eq
z;njrqtv`Gp`F*b~BPOXwsZ!{%<B89Pg85%5^pVmxPu^ihmOal#Q4^C(>>wq)p_-W%
zXAQcoy|8H`*c_wGN{TJdgw7~!yt<}!SYrXJuQ90eaxFjOe%iuK6QvJ<VANL`;H&S|
z??pg=8CNw}0pzStI5Yg}bsgOBd<R<^#~4-X;<rdgZ!o>?&t!tX^ZL#fVDVqFO47$1
z+PMr6X(AuW?@+lEx$mzf6k8|R?_Y}Rd+BBtZ@Ja~Out)|t8Qp~V|xU0xUO^sWS39E
zIv&HUn%!YcT)uD;sn6|`g6$10&CLfO`Hu3bozxwzvmq*d#e<9+o+HmlVIO{pmd7BE
zqd9Mz7b$O=8sh;$fSIobDD6?)k<WDLXg_MVgY@enULTorP%qQU^T`Z-H$Q7VQ2S*%
ze9hW}tl*l{$LqZ<p_J+h5S~|W8Y2j=`h|ep7z2aP;}*T5z_fSvoMDwSs=rC<5})K|
z7R@>m#rHUm+@lXm=8e#-ftO**vxQX>#`CWv?_cY<{xQa;g}iP~bJNG%3Oc1U4;rR^
z!WOrrZ6U^I9hP0DPGn)TUhF+p*CG1OjfYHPq=g$6!vR2HO}k<5jNZI<eD6krBA3ty
zmvP|^>+1&)vui}lT@t9krLA$4DAqgpV1II-Cz9C23!Qu=sjNCKr9JzSUNj+At|<0N
zyYaV?+(C8Ah+JQ0o7FWT_FN73+8TZ@=?^GcdHNl<53Jl;xZ%x4p|qRd^JsIbMtEpA
zFa3&X)JXdn3apU90vn;@6}-;R$~8Z`jB}CsTu11iyGJS1+%DVK^BkaGg<_OWa@@H@
z{D9!WVKogcHaxR%L}8awVsByhviw$d({aC_=NR7I=gFtMM=J8Q!u3PXW<jV%-Pxpu
zl355|o(h(>2=#pXQlWvV^w;u@Q9OF;bz-DRWnLYRAo6}?gZOD&g&{(pZxcd6c${9H
zNH2AbiX0*DWayVAkx^z10-;Y`oAIzvdbid*hLPE&o?>rDZ9RJNNdp>HqA$xg#b}ti
zhxnhnS{h&XI__(LIjXK`tM5S;4C$kqIG@gJpO;>yHWj(AzPKR}yC_ngj<`B<MnysS
z>f}vXFbI_5I6KSQ%+)wO8gx)KuawxMkAz`hjIUv!QH8SvfHhYz`Pc{Y<?+7`y|k!7
z7Lpp=ptDOs8IswkQiRyudIX>O?AaLG@ZW>hnnUqSzsmF0U3|9)g{O<kFh;Do_99CB
zjOl6S86j^%(uSDXei;BH7^Xx6+@4R&3%mOk4QG;NgmanZQ2JuC5lMHs9{Vet;&oNm
z41aoNz+bb6vVL5(5GudP$jZwP(7hnMk!feNN0~pG983h`_1Dm#U#?1G*uR14;u(P_
zC;W+A0_m$HUdn4}pVP~os(rBC9|re3Z@CT;0ImJ*&v5L4hBmw#{HkHt3P4rbqS*U0
zbTEW>uHE#t@T+1LMAVLO9PD-wFxbQ&Zul8~rgcCUg{)##tDkQpwSvm4*-^x32q@0k
z9ti4FByTC2>%zws6=WIu+QucNDUKkYBGOfrGlU!Si)|r%Tu(Zd@&Rm40kc}n?t#2o
zEMl|Pf)TA>jRh^@vANY|t=GAC)AAztSZ;}3A)zLqFWRaJNO9K3AJP{*ZjABzEq7$H
zW~;k1*tDM1FU`CxthSjyq<a5gU=Xh|EyJc@hJ|4+k+u97l$&dk%ITPIuRFIjH2~!O
zFU9JkoMt$N&!E*~LQX-{om5I<<tq;8blO0pu+!lT%~s1y9sRhVK_!fc_yDynTDcWY
zv-O2UR-hV}EKy!-tBEYsAD46;(!|>i2-kV7DQviSpMRy{;7GP<GKC6@a?kny1j40&
z4Y?J=f!#1?^f2~~I*623>v)Cw0Jk8eWkRk=kBQk0St9CX|KJP|R!k={Xy12vMLkiZ
z95Xa5XTR4~Ru*=5mlN#DGt0vG)%>$D9z{BW%L^dDasnuside|0sOYff5D*Z!@Wh!Q
zi^mD~6BdUPp?btjqtBpN^eVtXG+FuU5)~PJC$)%)(H1*4TASsYLXw$2Af$M2an(eA
zU)0{fJVYa~safxOIimfGWj_Y`RXZ*9Sm>^S*EupEt>vBeTj#f+>qY_(e&VE-x*S_Q
z_yLX-qOH05?6iu5oy-STwQWyK90i?H{l`b>Latf&V2@c0tcChrE>nUU^<4}~@`=nm
zt!Sp!Vl+9HGV%~R!|PbiVQ+Jd4=sH3hwiqzEu~zm+PzactHub*^dj|YARN_kUk{Zg
z4RlbLQQ5^P9`E;p3oBc;;q=w#4Es~}KY0670I!t=`N*A`Zx5*B)%hl!d}sD&$<Oay
zuX7!VJ1#YOLKDPBAFIfz)S}+gSzILR!1W^3J@t^^K}&xr3dK56(~*5Uv6Va0#bVfx
zZL(d1O-jB}S&Xp{4B}#V1IV4L%Jq1ISM>8Isp}cPv=M)UbFTV^Nw`YJcwOpSwz-+A
z9PD|fS>BtYU4N{`$mQJJuw~FrwYo@jTw8YLBZS1;sHM4~RcDE){bSYKiG|8Dmdn=0
z=4i)82MfU3%dNA*s=O)Z_+e~S0A?09EVVn)jJSEaWOg+9+sa4A#h&FYfvMu+(Up{x
z0Ig*@BK){1qX}_l`{-v<u5;zm(rZ8`GZjQr`w!F2*MRkXlN^nqtc){_^m#3HGaY58
zC$5Pbj>$E0*<&_tv!7R~u`hXV!UeCdo~U$#)nG=2P$=U=tOD)QMxO?zw>@o@H=pMY
zSJS?|H$FBTf))EjI(`KoNOa0dPvyDW)L*f4BVWE^NaJ_t+PQqjTUriserO9^EZ@RA
zzWU_rX!8U6*rlzmf!>iOeMeSQdY3-WrJh(zPhZR|E)Y{*PXrP3J@kEw%Igfv^!{6w
zE8)4S%E6QGG#(8yDk`ehKDBD9fgpMn@#YU}3{Q~m%IwR+it~!IuJf!esIQ~N1vIXu
zP^kzd3YiOv4p2Z9k~q8Z&2Z$5Yhu5nWKV$1V9y*H{mE(F?t0qhc<R3E9hR{7J4&6i
z_pMEyOWxtmCP6Q!fG#T2G`7yFPNmrMme8NFcycjt_{t>kLkl5&PySkVR1zls)PrYX
z<s54QhEm>QbrRF?LcvuUAEj(61GH;-Z1SsdJoL<Ib9>LBAYR8WgY+|isCfn{$ut;#
z?qM@QT@5Dl0vTx$2}W@>-1<Sb4QLh^R<=<;`9ic>eeUzka5)5ej=9`FsRbxjrk)r}
zlVvHF{56gCExMuU{cjtqpb2XmevL>-E;_&JY6s1_L-CcD`FU)H{Ik`zmTCV54j2}D
zFE9BU<eArTkK$u?*ywlv`KrYO8@)is#5{DLh>b;k5ELanQ~@8rp!*3$3A8H4Da-S!
zmav)wHNrx??UuZ(yg-*d3rTYOL;q7~@1=t{hvHQ+z25P8qWSH{BkC$Xz^-eOj!r~W
zAwq!8fy;L~N8#?=t?byU<$mpNh}ur38T#Sq*z%muVieRNH)x2((S2mNJSj<;w&W}U
zBD9%KONBv7rr^X`ypnCbB-RA7^i?9*$W&^Hm|UtS1(dahFwlqN#9p5<F;^<rN4Bjj
z2o~$ck5o0=J-c*8C4EZZ@JT*~OE}f0CpF85Djf2t3Vs9gBZD_AW^dKp>znXl?9;r#
zQ6+?B4F{-Ry62Zhjx}#{uGLrZHp*B?S@hPSlyui)3x(vm*HMZ|DirP&Zq-7pZLyZp
zzr>nMWIUc#O(_La7uWG2A&)Q41fIu{i6h#H?$#3F;Oy3(HOD2XZ>P?z`<Ui=ZlDDi
zF}n(l<9wnVI%&|&4JbxbtSor{{Nl|^VA<dlkT*U&JZo4(;^ohb2nYF7yFPb#EyKGa
zgQ|1RM|N?`g#XztRL8N7Y<a5`PQDH@vM2aX{SFIJzG<zjkm-l`8uH@9@t3XAqe*37
z2#A*`AeilQ!hXxw<@o_r-V`~;xswE1fuIOre_ioApYETw3q1h?SI#VO)@W#MK3P-0
zect7UB8=qKR6dhbYJZb>luM@BXK%+F(7W)|Wo?(fqmdtKQTO>3sGhNCb#}c1mo)qi
z!wk0q6s>7~l&2MHL9)4YKR4j9qUC+)K#tFL=y=x_sxU8Rx1f*)q>LI4PNH_=q0c5)
zB(eFGDm!ybfnJd6lbk@KRzCKbwM4=ZX)At12$Ar#+pn=Kl2nrAA0C=E`$GSP1>hsl
zwwJAneK+|_VTbd#{)Yq&<bk-&N9hDqWL#m5qvP$mDdY2@!*&*Jp==`xorEsW()?zn
zA2oMUb|R&VOp^mBl!Omk@*J{o__`xlbVvt-wxwdBS;FxJ1IP*Qqv8Ugl_`{N!1R=2
zY`eZgY2_xXZVncFJh;Q@Zq0eA2H$(m*W-ayFXJ&58r9I$qyZ3=7N7VaBhM9}yN0qw
z!{R&1^?2=&DTBGrAxL(AHd2Dw!U)uAt88OGk&xH1JlBIEWmlq*iS4h+Rz|FS4j%;F
z+#%r?#Jq$3EcXs+vP-$L3IKp)730dq%7rRigCFNKZ@y_4){>FAdp~fBe89dVC_b}*
z8Pra881yKZ!%%FVPA&lcpRY-3uu<n#mm}*%SR+A0zsEeOF;#Z0VhHp3X6KUIDf`V(
zszZe-;UIXF+^!%bqH<7PUf%b~IhUU8M3#8bj5g0ZDF7!^E(i;vv9WhC-3?`xKfEi4
zyvz`s)e=0f23zRK-RkyyQIp$OMXwO|_T3EbDxU1xZTXYb`%LGu{Yg+;5NGQyJZ=RP
z_F&xWG<ck9#fI!}nD+3-85;k^BKi_I*|}(r-nyR!F9K<ukQqM9DY`s|r*4i@sPcry
z82(B9j{0t+i+5Fl0aD4#!#SN*yCKM9wEKPik@6kC!NpAoyf!{R9Q3hM_=G=xRU%w8
z7=lYYyt#O-5Q5cPTr@JyDWzN|xGZ3e4ArIkZEC#6cL%N$$3WH4`PHM2jWDNmxb&kS
z^IcjCQ{8F~Ohh>IDktqvmiFLH52v^)<KX?n(Wm*P<|W!Sri$kr9p4xCk58L4sM!0+
zKEglUrzHJ%I&ArAr4wK2eIKXs)UL{2QZ+CdHpGfhS+|@eqz-8y-jiD}1tC}H**~PH
zmDqOZuEnkEcC?G+XY%Upb=7_2x-DWphJuQmn2+m+SKGuLFe$7tS1eg{Sz<QQ4pB~`
z*9950u(H<K^fc`z&BEfNksY?udlbWGfWlQ9VJ>8wTbu<nbem{*zKo}<CL|r25a~~>
z8l-v1e-DOAe7T~;vEQ(T%t)49>5?L6Tfe3w|8m(^eNodP-JiH~+B|dm1^LvR*0wLl
zwo#?qh~Tc}p74;*>6?uArYmi@Q!4$_%as)QF0xKTuD_q5^Qr|&wv+k#$=+_(J6HE5
zvXk}xlj`HDj*;Xv#-wvHa9JXXfPve4eSJEz^4CCm-)AVAW&OKJajUx$@)4F*ixZEP
z*}H?N%>8Zlq;?V?KB-?`y;p^q9#JZEC^;-~6US6cp5nGPn&;W=ySytzXUhK4tyH5I
z&k!vpXN!S{8>r$d<vUL@jS6tMt_<$lUhx(jjz?1ISWAa+@<gA!B_!?LP(cs%r3wSY
zwRUbMPDw;NdL9Q9$~qMljhi2K{2ppNHe6ApYF*D(<=mTu!P8UT@gy4gEd+*hyPhf$
zN)s5XTs^^DuD_U0Rmqcqp;~bHO-?eW@VLh+cSYc_7kj>aP7iwW0@)jiiLJbd)_HVx
z&jPHoWj@o(`I$1o8Xax$NKlQqgoko+a%yW?6yJjtE&j7u0^&NE0eQZZT9Mk*b7nGm
zW~f)742KVfL^wgL6tEB&CI$)46uC9P9q^tjZiN3zn4iZ7+mB4>GY%3l<HAk(%7~ys
zbWd1Zi<b;{JuJHES&baC;}TM}?-r?5M;ZGR$h!zC(gNDB2<3g{#63>4X6x@eTdmC*
zsDP<nlTVac5Iu*z`nNJ&!*P*SN@?ukadR`y_NQPa62BN!8WIZGz=g?9TFR<do@VUT
zc-x1UG%UhBQ9kl8ycZ3Uc5kmKkS?)9V+ZJ-R0fY;Xs=Dblgr>!Snakm_?yYh)^&2L
zEXES0YLL~iCv`>=c$Q^9B~%_C6s*<Vrqw9ws`_3Qao)JmI*u@WVzA%Je0|QR*K3`l
zIV#mG&;l1PfDpHb?jCu2-g9h&CtTJJoXenAp1{uO{uZ?F*mavk+k2JDy5!8H{lxmE
zLitT4kdl3KI^~mmjQdrhB?{FdzgMHc$B&4hqha?w*_kirPHtm$zU4`K2L(0_kdZeZ
z*gt`7_5{Iau&v;<76b*o|FU7^xJD(45vZi5O4;?=g-WEkXZl;$Q-V%iZ~L4#@ToRP
zNU|j{c+bfAzMYn7{8P&u7xU;vx{~g}am3Q_<S2rhoZicvaPdStY67zcs<`}g#^HMC
z6o_9TjObGXXMon&*KE}=0^r=l<ol8gDK0AUEZI|cPx#$eqXEp@bf02xDDiH$p>fP;
z=VnqvK?JMjp!QT^Q*65G*m~&l#`Z0jNFapQzH-+;dbN?V>+5qxd5q}Y+pLN0jk6<R
zw#65!^Nf<>GS83!Mw_pdHmc(xSSJs=qbXznR#FnsIC8LsrDNxZseUqFCD$wtT5;_X
zCLJE=>l<1y&n)Bpl+84qFRQHg&Da#+&lnD~ZZeB{1i(3sZaBH+VZ|t|6#D=d(&+(B
zjzcgEokh$arpGHtCiS!A-pJV4?2Um=&{iRu9^OVDkujH>Z9qD}eK9<Jj>(H1G{B7u
zi*E(Fo`TMQjXg5z6jHPvF*Z>l_iQ^Q%U3S>4Kh{kUA7U-n~?Ak;r+Kx>^04M#_qeQ
z6=t9BovStyH67-Pp!q7Q1A2ghH-*<K&BojuL^Qqbi3`^*-0@QX;&Ws<jb^&@KM7cR
z(7WA}SAYiLXl>!~`XFb|dwIgmHB}k43J#uS!4zH(=jCN3lh9|K9b6*7ygTZL*(Tf$
z$^ag}SgO~phdmEz_IMbwQ0DK&M1cs@UBlFV!plZ$?d$T}@1rYf{pW<<Whb}u-|mW^
z!%afNiHLb4-E5BM%o}aE!~=0l?YCG^^a_b>u6t3kz#=dRY~1gAe{6bLfj3Lb5GmJ9
z;}TYC&CUet+;v4>6)LTQrV_pMD?DJ3jpgujr=NbZ>A8&Cwh<jEf*QHY=T?i6KX7}5
z<S^mz+a_AF>!BQ{`y+b-FjZ<(^87F4e>x=V)+YP^RQ0wkkRtI_0L(g7#^WR3UmWM%
z(yw|UGcMOrAU2933V7t*xrIE8gu+k7$}i{lX>EG_(B$^_oZ0E3+(r>Te5m9>@ziZh
z!Ers7z@i730R5gXs_=H=mGLu03uFjwVDYt&SicNAPmWI8)86)B@efw`vTEx~!;tx`
z3)J6khsfyr)-2L6xgcLIguwbf+gtJ4lU-gPVuY#YsHtq9i-m;4T&zSV(EUaltvyL)
zCnuj|l|0+q-Y$_`&|q+I!tz<PCSeavL$Zmjg54sgoUvzU8QP2oh^EQU(eY7|a;Lm!
zlw99-<A2vHe}ywA$ZCH&C)l^#<<9Glxc|*+>v)SI#qPSs*7h~^4T<w5GKr#AyY)6>
zInR@6XNYsmyRH}?9(?Gwwz?HuQnywKAbF6F9=cm8P75xy4Qs^WSk#B*A)k!KFq?tJ
zCwrol+I=jOTWINZcjd(|JL7jtAJu4)Wb)fE{J51z6|XL+A1V><%7s)wfJdyKrZGq}
zVPENwJaKM;<VQx&#ig|t3=gn6!V!#_-)P&m<wd1Er2#)xgTq(rtder`@`g0c)ANWF
z{MRA2Shng=kO~(9NzRj_Sk`(&(VSnf!vqb!T&8#c75Uc}0OrvHK<2ug9mY6y!h1FP
zshP;avGd){LriAHfDh1Q!Il0dv93Xaj0Ni9!e}iB2eF2PpCqP@tT7++G|GaHQJh~*
z9PMn!QE`Q$lTg;f{g7Qjo^R38S|r?ISbeI>uzHwV95^euC-}_6(^^+-!uvl-75OA7
zc(PTu7ZMLUuCBq;cr9Db)9nz0Yaf8NW=*lgi((*j0?=DKwj>XILJ#-`^MEYXKfgPc
zHkQ9bFeRmcm)!cv<^J5TX2=;2g_>#fH*2scRWWM-GC|Le>N_o=Za(9QX}zC3H}E9c
z+DlWuk3#COXNpvM=T>xIcQa;BMd1R2@#7l7x^#23iGo4Op1|ROdt$LJjJ>Sa>}xz0
z*D8@>sIU`<wI>D(L_aNwK{Rhs-xBY-pJXVS!IOFgh@=pue7gPlzWeBr<Mk$$XKv9Z
zBBG5Bq$SiJXY-Ipk-K^^1d32YvaLQBv%++vxST`g8;%#|JzsSw#R)L&e`F)Q72=EI
zXR9ySv7d-<sNjX|K6YR9SaLgoK|*p)#TRZ7q^$*vUBqQG+-@t$CJ}%8Y0L1@2d!lL
z*(m3=Op+`hZYi^-b(xyXH7RRb?vI%fiMjlBB{jd~pe!I%U5|6D__FQpFf50TuB2?s
z`*9`|UWQc2ZR@#>rNwn{gNl+>V|$V$SOKh}r34!_gKA8epgf^ew?&z1<DQ`5t^1~O
z+DG^-fff3&H=~Ud59uj2?lgJ*1_?ffZ_A9M4nQty3*G9!yya~5GwL`CNTFQNy2Jk5
z^(aR(C{s1H<Ur=CpZ=?Y<icnn=1geoqKe^ZyXdrM$<+#sC-SMp?lPlvTVci9TBPEA
zfKT!F)|oc7^q2e$or+;Wte>h(W4c1(_pc??^oiB2&2~qpkD;|nY1GuDzcrb+i$<%G
z5jSQ4hNCj&9ybJk=>XVocOoG~x_$m`cJKp8_#D65cFzFPI?tf)cNnXfEiNa;eHh3r
z+4QYqI7h#8g4-upZj9-nv$BVRTMGy9g9`?L9`O=hWu!&FZxBdb?vFa3-J2-=#wFgJ
zkr|tsI<JQ3SZAo7{HB)C`(tnLkv=SP7FJ+TecJT)B+c&hde~71m+!u}aWZ#H_V}IM
zC)Jy&b;eAH4saW%VQwuUEgm_5%6XaUbvveU>9#y<3b$I$)b=NDW@nwZaB`QPzI)^T
zC2S%vK)imMF`=t9u+QKr_-}t~jLaZ&qU%hptfJXcuY)JC`FcwF2FcQG(H)4!JO&Fd
z=aS&FLJB0Gf8P*i$G1h0mXn(!871cGBFCc~k-`2X)7||-0Uu|c{4=MH!LO$XkDQ)M
z@Xdnzpx@kdprHcj;vieb>=v6Nya=DEZ!6U27UHvgdc@$|XkDspyr^B;8(zF4Y~bM#
zJVsuz&AsNo`51c0snGs7(sx7mMR3?}Oq!ruj6y~d+b5{JNGuSHr*TWXq0UC#JKgJQ
z?WU?K=}oWQ_lA&0DO)_CjF9uFL9K97xCL~GoNYt*#b|Rp&vqmv#g$vH<>)PcskEFr
zj*+F!^!oTIO+$NY;VDCrs&c-?Az}#}Mp9Q#fm#q{19gE)&{O;CXiN6ek7e??;)yKp
zwF)#h+s{Gu4zYL1y5(t-?>2m@I!Bg!L#YNI_A=>5l57=(0#O@S`Cbb^J3DW8zK`?z
z8I7W^51Vh>pD=9Z=c7ryw}Xx*l30x25527vthQLWCJUdm2Sr=2cZzu1Ao18Gw4QhK
z+_Wi|w#mO<1+MKo*>c~kxZ;@%ALKaS1`{=lt$H0vYt{{uP>zg`t7mu(x0VeXw`<#`
zQ<%%+(OvPs=@DPjsjey+3J2fD;Mo?Um6U0zQn~bA%(=;?dJz0tNnC^`VocoViM!sL
zugvmxc7D1wZECyiY^bi5@&sV9!ZAYNu;}jv^;^!rKJ1f$Sc|whIiaS?v;#0j`JNiM
zclay3%3I?S4%v>u2N|@dw!>+RomS+ZAIzE#b_=ep5MqwfUEMGl+wUvhhOQ5`5(;Vs
zW<f)!*xO71(S_eB6Kz;%XslH^r+P4vezjBjfZf@Ma?-G@u`LEa5q}EnHP&T!@g5$}
z#F+lGvJrIT^csK9c#|d^j<QcO)xBPyKRnCJz~G?%G95Qo2gQLE)_${;!>8K4-ttgk
zs8v*Xo;SpWYJ>82=x^*>idfvMXM?S}D^#_K5iOVY7f2ssws+1(vP`@xh+FF`d=!4|
zg(^FJYGh*I(D0pFyv{l|SaI!?OyZ?a>u^()x~g{4rIfcS?Lpf#Im|pwnCYW49WY<}
z(0*nB)53H3D1E~k?j2xpYXaqYB;*&>zVT64TyK%@Mj-gggnd{&F@D%DlTE7oJ_Z$Y
zNmp#muITx>_>!m8?V8WD^qPCxGpoJewbtb^JSkIQuS2`u_c>v`)!?;DaLRR91UA$K
z#{Wl6H7}cXNh?IpRZb>q<{hW?cazsvQAC?X#&cY6o`pYjl6+LfCP25W2mI}nG!tj~
zD~7sGR=XpAP2@y6x4OGp`5cJ2RV$1BxM?qA`ar@FLuI|O=na5^09dK8CykEHMX>aJ
zU!2=62W!4Ad^`~ynSq#yS!%FN0tjQnUb;9+jBKI>sHiH<#<X^LJ+0enG&+3zFFl&G
z^tjL@*4-#84Z6DD%lp2)zI@MP5#~7D8R?i_IJeWfJ7qb{VkH7P=$wC`Zxv+#%u%qI
z*uxuq)351`o~}O(z6|b8ytQWaNQpG*G9j3DyLWPb#Kdk-yU^B_m9-Y`a|?%*`1Y@B
zof?H&y+hvn@xWZX$eB(0-+Ieh{vFbd5g%+vf?!K<UJo3;AJpm~ayw!em3FO#Vp~B5
z?~XM+L7XX&HcF>(;Mx1>cnyjBZZR{wKQ|>s!>V+A+@rPOQpT;jsiEoQHM*u8jlLhT
zz&d``me<5Z+q%v80xy>1ke-1wAjI(bC%?Ay+x;#?Y|Q{kHf-cRqxtfV-ppj#U8ut;
znR5n039ZylT8EzH?DR4M4AZ7Ok8JY|pCBBheA5mT!(?GmvD2l-KC<=a28_EMVzYqz
z8c(Hk*M`z`WcKDau;z7xAM0-PtvXQeM~WKS3waf~A#zz}nw&S@0B^3j3Dot95N5jm
zMO{Kd1&P6u=cyejA-Kn3WF&D`fX=!%f=dttStU7V7Hs~}Rn`2pRW%Ix!bdKdS!qgL
zpmvJu{qF$X_2lOLr@5j=h#7}5*1bVi^~|GsswBOSs+HK%a;r@2YnSm0)(JP=OzJ~W
zpD2$eHavYin+#ZP_o!A?GFT2NoqqE{Mj$5(qPySeCJpL#WLSqz9B1z2N9NSMf|jFp
zn#_Ik()b+@CBOHDY)5OTsbxV~tX|s=#b)m8rkT-R__7nY+|Ow<qSIH3hJl7N-=6c?
zXFn%XX#{pe{`io@sV)nG6A5OvV{^H;^ZUi*VpRspr2+Z1z3kdl=rl?4PAU}X7(i>N
zda?QD)txk7Tu`kQ-F4$|E$Fx=V~Y$rX(;PWbi8emxgR5ejvR8t5YS=t4DZ9auS#2P
z*j~M#FC3b7c2l%8LMx9mC*DfN{g3e7s~TH&FBW+pKn**0QF;YYnV#b!UEhz8DhgUY
zs^!#2R2P5LY}(`IEIUKzEL%f&cV6kpYs{Wc>~XKj=FqSAxv6&cWwAKK@A`gb)&dgS
zQzF%FzfY2BKX7LVKW5#<m&E7QwJf1a=b=7Zs}<peRHT}6EXyf+0_(~`U2u#JZ`)MV
zMfbjjgK;s6t47_VyIX6cj&I+E!*S|YZO&YY6B~)we-Q@-`nnkyFYwz|-)dKHl$5i)
zMHAz=y{fbc#B2D2l=5)=fB8NQ=%=lC9A%FR$EL+H>c)9UOEge(3d2&Ku$?&!m?uaA
z(e5{LpV836<!ACQi$zmsrOGo_N;!A38IiS!FbJw^PdV4$0b=GaDUbm{9L^Ve>U?&K
zt}6=<52QFA7fp-C*S%}2`%Z2<agIlUhc3gD0qOf)l1eEXnqLpfivf;j1%R&?WQpY6
zWCig>?AQGeRc7PZB~a6L=mgqIeL%4%`-lw|tl6TrtF?;Hev;<xx+6<is(a)&7$f$7
zB)UxYUEJtu2q|yf5i;7GZ(*<UYrTx?-O6I(NtF#MG1z}y&|o4%*ephkfe=U~>xS|9
zxIZCo_EAd0+@J7lm6r^B{_BmX7SiC!%H6_^jY%xcJOf`nwd)tVn}Oh3nQ*#$F(p60
zz9)=e;YV8p;_!tAS=_ng`#+S~tbWj}g-x)%W7`0neYw!6+gg6x>3HqQQo!VJ`>XRN
z5>>ek4}I#E*$Q%8@g*wjgKrHnkEyI`pt73V=qEEhqMEhIMIdWmTN-oJwHnm&`g-60
zQf<1SQ(}7_0t1#+^<$G~p{99*>QHtyzkJ%q$w!FpWI!IT)ac~NH+I|f%(4pZ<6>V#
zA1AcQ0vvlYM$qRwu5atc56eq^0c4_Sl=L@U1SRq8rCfrzk#)V@9!?D+_z#}9bXi|k
z>Nd10R$7cVhY%~w>)0kBPg}op&6>BE=^O=d<kGXRNy+Io&Mewk^mtLH@tl^kI+j+|
zS?NaX+}(1t3$)gK>*RWAebFgSIPaSswXbpEwYkmoeHC`UYqPC`Zt1_w9=-B?Qy_FZ
zf1{beL97V85C0}H=A|aET=!+#MpD{J1Ad1=eru(>RJLPmQAfQzX(9+==rRh6Pic+a
zIZl%j-%e^6%p1|!dB)o}<umAp6~vd-diNES&GW<}|5CkoVdgo#i%xYGh}?~1Po|f2
zbL2XNz|MD2U;NKAOyh|J8XBl{!7!nd6Nuw{uv&B8%1h#lv2E8i_8#B#@NY!fX@5Qx
ze>f~@wi_=8eYes*AAA_hc~e|1fh&8|xiTPf=D(jDkpm$w_Oaeve>#)$@rhyFE$4L;
zYO@^Qviw*tClPow(JHTSmvJql+3J?wl3!LE#l|gSc)sa2-g#B#B#(Dsg*iB!bQU}H
zOb?LYENdhu<hOI<BQYn#OK9J2GN|EP|MrT?%3SJjS7r0LEFH2bvmdRdT#Yk1d6q05
zKI%=~&oT7(MD;2-)w#@9ZEK0JOt5|Eut5u9(mgX?-m$gOau<w2KOU(q#|S|@+3a7A
zZ>zrdE6DpyRnbM+?)eNQseS3Mf}W(|>`trTKrP<>da||n>Ek7b9-7;8Q38VP=(HYT
z%;_~QahF+nW);Ft9fo7efmV`LKK+jMZ?_x~{gX{GH=WlF+qXnvZ61DNzsGu?S_QWD
zo2n0Abbs~zEVpi4a^<30+SzBUko*KnS-3NcU`{$``xA2hiyZ!Yyzd3c3_V?;&u;|_
z2WLGeNsO9RRA9T-K341>_!moVf!fJ~L)gu##mnG=&tVsxVMfQ~3L_9{290OQO-?T2
z9{vMRUd_}bfgRgBI|p{Nrl!_wwzcWe(Z8t7YpRhGr%)~{vR*IeFC>WzrP&E0xhkdA
zPZD5BevO1Va1p~3!A70rv??LQUv}eT+$smE*TQlvX7{`bW}&XQ23)r8FfGu+v$Yx!
zgkd6Ml43pYRcLMdP0mOY`s`}(jLEsmp`aLkw48Z&u*9y1NI0r!*nSJg^TCDO|K4GH
z@b#mG0@Febm9o#XecEj<DCW`P3@(|}$x%os9P?Z-yvcfrkU(!KV`AFH+)b9}W+m-<
zaFCe*oWN_YLOyX!3VU(xy&-A2qmD4L>FIpTYA&TBKzSZ#GGEDes8^t(r2J_Hg2=PA
z9nqKd!iJOVK!&D>K9Q41_xG>Du~inBwF_@_%yeo~s0F3yl&O7Ja{-A)5eoR2UyO>e
z4ZgwX1dAob*Gimbw#y?Y>*p3Hq1c3>C9`+xinn?+qf+Wd9^!?%OeJ5EzVb;aEY;~V
z!A688b~0uuc`<8WP9s?e>S?>YBP22oMoNr5))`vOIIg>|_~TjI1Y99TMXBo1k|nHv
z(*JO4E~O}zK0l}2l$ei~mE#>@O^<Az%35C~A|mp+Xy|v2xK-3GGS?IrBUm_{_U1-O
zkvW^iB(bi^-gr=7i)>j#-6a5$T~JqS^q(R)lSMGs$2d$|{SjC5<|3%0BPEW78!R~^
zU?L*nQBjVP&c~bV1rJwC{WM`q?^7iHbrhVmgq)hbtJTuAR{Z@93_`1Haev>U>7pO+
zMi|e}&kxZyGF^0i-V$8{<&QU9OX3#;8czh<`&q87adYfz@^*+|J)e4~+S8+##5iuq
z(Z-OTsefFjFto&#a<-4mp;zvYj1kK&5jbU2+%;k<D45>Ro}b9SdL<4iI!xE$CcNHv
zAuml7=L|iEe<tDfO1>`A$@sMwjLhb9w^)r$dFRDX$MKl6jyFB;NDPj;k@QH>Z{Xs4
zAb)UibHe5SE>j#nFd|}N!$4@+oo6F~t^<Tr<1xCv(fJMR1xgQpMf1y-l-HNR6_$J;
zA^Xp|2&b>$18JQXL3lRNt8JceKT*3;jCA3DN4{`Xx&8^1O&Y>>3ai<v<X)$FR9|QM
zq@Gd<dAgw6lW{pc0adU-UV|-c1I^c6x?PpT^-FqY=Y<2oXu4<A_33PmCe!@Pr!z}6
zPE1r9>WL)j)pSvG;4{TTJ7dp$l?ZeFb0_XoVlz|dF+`h`bTt|6h2?)g?W?J3R$WG?
z(t&juD#gZSdEz4DX5FF4wW&2d1%s@=_RtkaMO9p5dsQ>)r@A5+%Us+z!VG$=%;z3T
ziSxzN%w?#EW_ut_pUkMJ9(rsB$xQ8BO*I_e0$GEcQ@Zv9oKI#J6Za!YOzIg%bT`wk
z=9%90^cs}{Vf+x__$NAcT~Kll3O*AVyu&@mE;Njci2#?#2*5Vww1OPE>at|5q^L+z
z(f(Lm4s8fuxsE+o*Z@E?AO)dJy>lO9!RL3{k1h{;`?u!$FJ}Z8{9*v;V)sUXG`e<M
z==Sys?f2PJwTdK+*ncfXw16jS=TC%y2uc}NsK^t^Olx4B@Z%uIpGUlD(Jk1ImYF4A
zr{Qcho(K#fh+fC)6639H(&#~KkXn~o^|@b{en#wRCB*k#2@;Y3`qs}lUf@lcF|Owe
zUM~~1#xsOJh1qrrD*meO4@abZ@3&5cA{CMiG_jvFK;2F?WTa%A+0ly|ML=m$Ich*e
z1wCE-w`iDx#~|4b(Lf8PxNhMuTJzY1OX8OComIuvGC;i$P@d7H+kD{S0iRlU<fno9
z!ZKH5E|0@v6i}+)0T66E&O%_<<Q5hVei-sTDr>Mjg9HG1v_ke%E3`tH0XXqo?FO4+
zZQJPF+}!<Q*(Lzjc4&AQwMJh}Eq@7@)iPd>ih@ECka}l4WR7la@XKT`vGtHiXk-O|
z6SyV+NGI;UX6}C;)S`ij@cJ9d`WbTzntuZJ-vFZ@F6(bZ|H>+AGU-32%cR`ZjpmTr
z{N)uo%w#Kn+sxT~ER|r4c0h<A>d$_D-Wh73;A@w2IzFLO)IDhwykz6Q`XfOC;-m_0
z%&MeYkJ7Jx>8SW9bR?EVWo3%pJx*;z$oRAy!_!8x&VgKWx|fkotH&jyTI(8RkYTK|
z2})|~I{KoLe(@M)bhc3&QjnT7?XP~oueFsK7KW@C&`A`ln$v&8dg;pB-|DTj54{63
z)Y19*_%jl;QH!F4M~H8DULNuSPy@pvAtkM^8-zwix(vGl;b+ZilhDx&UTq;^VN(Ee
z^`rf!NQsW6WpR9B;xM4$oOpqf4i7vbiCn>Dm>BZYC2$CcG6%}F9~g8_`T#FPU8mC7
zIniH2fB)0O3bddwJ966f<|YAL-Lu&@mzUKpN04}=f3x#`TcPhDotd9-mo(0|Q#6h7
zqycpwcYc3gWDauTMXaiis>l@Z+8>W@P;<BXtfr3X?Q~tkcoK4t2O%-zo~v_a|LISH
zoN$TR*|Q~xT@+r8MWW9|RaN(`wWz1==YqKAxd;qIX-uR`zHC}PR6KC#Y_gfy7S5=z
z4G4f-=<xN`X4_D?`z7dq%@^>C;J3%!=`>19AK!l|z<;X2zds5DlSXH>7YN@B)P1u1
z_**N8T919rtL7RY-QphT#7E-gsK?Zu6aJSO0TkswF7eQBD1@oIzV<s!T7wPiIigxT
zUs}mG8?E#}-mdN{6mmO2+<*D=EUi@tqH{}edOiTYmEdnMqZd_Tcadh>UiD}_VNT)T
z|E~zfU$w{I#=llzJ2j!;9eI)2yIF#4TkgIi{9BLwYtd?H{A^ap@~oV4ug})>gZ*u$
z`!zWK7mEv+I&d%;ybbIgjsby$>-G5$2AWWR|2rpg@TOq6+}c{1=a&~}joru@_S?Y!
z#hrhHTt@i@Exy%+GC<;%+xeS-=HKS%|Ez-m6(#c-gE-6q5KodeGc%*&Lvwl2po~^m
zaHG#8oQU}U`!Bz6Ac^fti;AkcRg~A~;X?+5V{&uJy;A`U)`6abOMD<={%;k%o=p0!
zV8H+gU-9RUhfz6xMS(#?<g1qpF?ZBK+vj$>w)cMJaR=1tR<OWgWM))m+)m1WpXz7<
zXcC1<!N=c(E6gOtRYC0HFa$JqUy&}q{>Rnq3>8om%$VkLmH71ujU$`xY_y=W{f|2P
zrVe@ka)Lo=_IFA8hhSNNf${V6cY*t}i?3nM^kx5Z+x_1>PSQdG@cDInVs5s*LVm_2
z2BsAMHy`tlZ9hiwt#U@g;Pv%&(Vt9Mg*}OK<nQt&08KjSD<i+qcKR)uwRw)0MTnNJ
zcy@h4oOYx{bjGbRzgX;jgnT?f$sMPMJ{>AP=C3Gqbx=s5cgH*ZbS6VP*P$`$_|5MQ
z=n1HGK?od01uF5Xl960NkKrj>W|>z1b}0U%m+{XREk1yeIRsFNV*^AoSp%(q|GJZ4
zup<3Il0IrN$#n-t5=q1tOck+$XlQxl6*5%ns&f*nU8HTiW{dAAzLmzVGx|NcDOmhk
ztx(FAfWa<N)q4~0#bGN7#+MlZtRl&VU^6^q{2;U<`PZw<&uypd*})%h6iNaUbU^ln
z!?SMpQGeNif8C9L9d|;21>~{m;l~7mizEF?mifE7Ne>jb3xHX8aSXa9BB%i6uVpC;
zq9UVHst$XS1w{CfSi%&}AyZJohbLafexPBX$9j9m@2wMgT%wpWLv0%gwLpQ2i;@c!
zqr25@x_0|jw~n8Ohjt)hha!PX-`zd|Q!Le`<`$Fsca9P-X}~)WW^iGpg@4HZYO=Aw
z>n!z#Kp=Id`Jl<FX;}Q1=Vx+eW(6r}X<fOfmcP%vofqohVp@g#aw$R}LCI~3Y@3+H
z7Z?(&1Xoe)>tH@wFK5}hC+~F0m#dpAMbpuY!HKow@+C#>9?HAKHmjP_+D)BE5IuH%
zL?QDMBK!YKy#G3(e;NOT5txKQid0oqMMX!?ZQur&k$8A?`XlhD?CtGQF){OJQ#k0T
zKhx3Dnq2LURokp^d4H5MKQb(^0+l<wKI~aJQ&o?qvCB(IN&R%tcb-+9voC<KalvHL
zqkp<Pb9D@m{QGyD<b(W>P#~JD>1oO8egak?Y*((~DY6^_QT{|(gCdaX4Z4|2I4GA~
zruv%={f|%mDA52V+T!fyXAI<D;PE*oSIyfH>L^uGsnVTd;qlmHR^9gq%9cx$ep46%
zMIu_%Ut(Wg(ouft!O*m^f-YARjrsmpQuCh#3L1=q_j6WJ)|NkK$rJtq*Rrn@7ZsH_
zaDJd*Vv^4kQBsP%KAe?CuI2)KbHFfD!eKFftvn+WkBlE29DINEtL$W{fqlQr{(QZw
z8L_cvxy9Ai|K@`D?<VH&X8B)s?QgH+he5{1#c7|^0#Lc>q@2Pdpbe<VqN1Y9VY&(l
z0D>MZ1OWb%G%)z3<9#!$wVj-tyzjK^O!fJ*N`DklMVz#>bRG2+Yt({1z_+|m+7KBT
ziAiQBvPSHX`*$_=Kit6I?gw~U8~zTTup7WggZ!NU>@5^p82~R@PyuirQc_Z4qoavK
z+9D>W0A7aON}ytfFlKKuOIS%kf%xU=&Xw!*WE`NwEh`18oEqwz{*rI~=av!=>-<#&
z8q8qTFWgO7^0~1~j>5e+T=Bi6h^;>KRnoK5a6Nf_s)*0d{`hdewWFk`N0N}BI+Z6~
z_|yBA1Bh_Vel#C<l9U~brjVYKw6Lg*kB=|vGOlwvBP^;PnI-<HV(pp~vE(8tV3(|-
zuDb8?>@Re~ws?1OkwEA#pZGj#G9<lLywun81$&7k{@omzO|uN`4`~W&9vLaet3J@0
zeDN?Xd9HSR{2oS#?XQkiq=?Aa>Sxj-S_U*CeWE|{gYVwZ<nFIVx@Y$-<#9h}+LR(3
zX&7UAVRLeevz2DzEMn8@<-1j0muH+pc@3j&DyXlb$3c1G;Xu8NluCtLy6qj7w3Bzw
zo(}nrXdh|}Hj^lHHM!|4X@O7X^^uj+OWN9lilx=eLm}UWydua-pLMXjyj0=9=kaH;
zD&8Q-a|S9lJ-a_jwW*ol^&f6@n1BFQk!*54AD>mP`5XJ8V|Fi>iS>PONC1_jbrK(`
zkKkrp0iX7ji$-wU>Nx`XfqgaEQ<iFRnL|Yw8=dhoO?G><hy&Y?_^Yc5O?b@^NQq9;
zcV`GS<`Z*I`d$}-06O6S*WCR3U8vL6D>(v`!wB}(=&>|*cD3BG$S7P^sq*GS+J!dH
zhS79xkTv(q<4qha8s*@hbL#~X-@Sl%x<gt@DET^tU*t94dG!dxxXXfR670{!^(*j9
zy!1XUs}62B{oA;|Se0Ln$elW<nBk_CPJogy*6{cDFQZ51Y5o*Y6B!mZP4x;u32SBG
zuk2V;BXpi`ftTjyid5Is;0=!(|2Nge2w=E2OHB2K#YgvwTNan}f+qAUu8{IM>X7_M
zM8c*Eq5u$k>Y)jy!~{C_;^2NGlk0uI!;Na(p&^>+KNXBXZ&^vzG&6(UapsKjN2J}s
zW@qS|0K2K&1qZu5+E5~oA2tI_#1gb4A1H{)g@9a|!eg4j1yU(q$p+Xbo^UhX`20sj
zRW-)0m<_2`jq<*4*oCLsb#k!yaCv);C?3y2<0YkuvvVranl^rQQ4#0&*fi>-gX@Jb
zus`-mRTr8Tr+vQ2wU6)R^xGFgo&-8Y%ski;yRQo2I4&g^U6P!v?-De7s|q}WKi~M<
z-}<CIitBP~r`tA_f3mug3+1(sHXxW~R}A}HGRqRe7DMzvi_|Nr(Li4`mfZ>cQ+vtd
zdY{B~&AVa!4(yrH4oDl;xuBIsK`w?1SZ_8dS&0NAbLLOD+R!zo&A@l4!{QzBDJOi;
z3B^xiv@1Pvj-2V2M=2V_SPS17KdJ4~vz|dNiom7hTaiQ0WMHZnge#2&q6am|9Cyor
zN6l)^-qd1hYI@lTfwb=c0gV_BP+}gQ0Gfkca-9Rf`QkjOopxFP;GD$ETTYuP@A7D%
zP8+unahMIh5y#E|^yB*~*Q=gqvv>5~Pq!E%McrP3E93lc&mJ#JK;=Az-Jg8tOxv@Q
z?skfK21@0xm~ZTmi%;I`vYCrqNaLIUd&9(zGo~L||8aWNn)QoT^<VNPz$rQE9VzYB
zE4CKzNnceBDGUruG@3k*BENT_BQ-6p(yDlT0U{QF1@~#3L%6_Zp<2|_)@f+-hEYfv
z0w12AcJki`^M6|FUu4MVH*nFoJDdtd-~`~}JA%kU1GE%e;RHO2x3AmhY5*WCSw%;?
zfGoOxUSBxI@RFg7jQY+2pFA%*W*Mc=<t+ITZqx1JmC4Pa^+%g!1qM5MMw*0=JBGhQ
zUM!0f8u~&`)jVetOpDv3Xy_yo1{+^veGLjA#e20Zkfq)k)6_7IbI~vH>k#`hrZV~&
zl6XWH^D+_AY!IOr@>0xEGsU0(fFU7oB@qg5wC%$!Sv^iKLglTjP=ThC52ZbOWyPE2
zRF?qCVJQUMf0e32te<Dt8!h5x1%wW&7l~we7tl-?Neza0^*1A(GGPq+lZnIy;sldV
z=B?$wmP-w4IB>`h!-eHqDKQPn^Zx>!3xu+53{9!Sl8?asaBBaxsBysg48PD}5%%TB
zks9f{E=Z9NW~HlAv(>n$7UJM__4UU~k=v<V>~o=bR>i$kzAg9YluN^IO*r@`$n3?(
z?JaA{Z$}L~rm}kGSCTIhmg4-hbsH~z1xL&=I<JYltUPAqe#YUQm4-dFcfI);n1tWH
zAXt@ow4RIr)CYASN16W5CglS?Jw55Y5y@wOd5?~dZw^jm7XMwM&ZKJ%D%V}oS)VVE
zCn}NuLnT@3qEd2H(V+)8;tW7f=_P>G)kdPjlMhoHpzhg$bpM@z8<LnYSOOn3Su?>0
zkf{U?j1OJN{B>7w(Su#3@n`e7{y?5}iH)O_o%${Ye_e&`-)O(l9cTvn!VBOPd1v3V
ztOIS2c3g8a=`m#DTB1M$xrw#ofAhv7Dg9(Kc`JHIh1WwQq0v4ps&<0glN}cotO7k4
zU!UmY{ll;-`tnUF*Or?y_a8@1u!Ure!5u)c4XQJWzC+8^LPYE*#0VQ%RtZ=iTV~-P
zk`wch&Yth-+JcfqSNdZlkH<W3xlf+%i?(QIYNTc!;>Odmmn1bCRg{+Dp{Cn4v#z?r
zj3O?jz6@J?y^y6x`XUpjdgZs5oi(}1)i@9>a7>+j=3y;-g#46M?EDtrFr+oBcSeJj
zfHfi@`SQq}UQxfRolqg=J}kqbgrd$s@lKu|iT65MfLV~tZ(OF+d@bpIT_N*}RI8go
z%vI5S;Y3O_NBXXEED2xQYY-B_9*^GXET!)5pk^vfY{$rm62quk1{L3eRc`&0Mv-K*
zju(h`mji^UHnItrh4iRSAWppEWA1t|CCdNK|I>Gae%13m8Y5+8*wIXW{k0xSO3DvH
zDh+jAHISpr!b?k@j|T<LA(kPSSWJ3f`N@s@!>evt-p=QZ4;`ob)@P@%c|_{#x~9qT
zWjm48TI!%8<EZ2l2L~liBK*Mz`t`>W&n?gH1h>q4@YDU?`DkOa+x&dR?=;s^Q9*}_
zOy3AJCi?ere;u3no2Mf7sc==9SteH$$;@Y=)CB}W5ui%5pfz*`;dsnGAWw|?^L(}G
z$l;5C(WQG$KQSKM@p_j(*Kq>-PIB;H?B_q!&!YdkZg#wujUb%i5${kB0eU4*J$OXK
z87p}37{Xt@-nMNw3AfwHKU?+rfW9@x$MYWbk<~U$kCxU}r7)rk6CE!vcER?^Nn*iA
zpeDAEXJ37Y4yc8?;=3GVrR`niI{-21?P<4hiF%g#-NVQIqM)GQ5+R~28Z$umW?4F)
z1UNRziRAo~#N*BYaclMod2i_5KM@a{!7iB2s62gAnH1YpVNR-zFy1#yAlP}Eb{85N
z@!aLuxaz$+iyrDn9ClR2LrIV2yIQHb%Bm9Bs<$aVPN}N#-g>E#vTKPL3`Ub&p7$Uf
zokteJ$lGn!iG^6=!a8w*CmdeUofzM(Achu6^S72S0N7!n35y|M&5UcML`R2TgBdb~
zOX@lm!J9)wqL7DPn+UW_(SQv?5YY)u<VCEZb0Y8i7`N_8;PQ0RaP%Y!;wh^_+Sms2
z{gb$=?yA8}(9RfNv(JMN@UAz@NuT`jGVr<9GZwIS#Vp9z8T@X2h}@Q#cK=(7!xfS_
zsEa4|Vtc*_GV;r?wip17bDay7aoS6c4H*Tn$D{CgC#Do-2=N<n3;_y6`^-=YULLEy
zR}3iP#TbY}{`_~RXTK1V`P~0qRc)<K7|a;%7I`l8`}h0h>U0~#-AZ`U{|{qt85Y;J
zZHoda9D)aTcXxMp_XL;V?!gJ}1b26L2$CSdgS)%C^Jdn*=bp9p+3%hAtBU$&@zoq-
z%rSazy|vb5e>FsR-mRuMuK8#lUQ!T(BBlIJ7Yv6w-so9>TobV}Gi!JSi}|>7AsXP0
z^IgdS0QS^I#d(gFm{^c67a~%L@I9B+G*zd>>*-4SkufsY<_62Q$8M^51xL*WCOX}#
ze{|uU^q$m44_he$O#G_xcnW~mgN%QIzk`zU_3e6JoS6kQZ^+^ufb!R_H`6wf2(k&9
zM<Iw_Px>kWF@O%9-IjggJ?xb3XSI@8GojT~KVXosY<A>*<E7V#x^)jJZPTngoKFfF
zZSyk?BjLM)4A@<4OG>}pt?PxMll{jj&|N&xe7z1ZUN@UF=TqDyjx53=pkoPn(s2uc
z4*f%KNNcuUP7zgtJxc>J+q<T3nh)!Zc%K@8k*9%#gfvLH;6QtfnuFQGaqkhcI4Z&#
zMgqv;uBXcfO`n~e8-UbQiNB*!cBD@uY9=Q1^W)7?@c<K+A5g~4sU^9I&R6_)*6U&p
zs=HxnR28xAL|S&iToqz22L3%y^WH+fB+@AAoIHSF&*hnq;BK~kp`6F(b!`}2_}cF4
zl@M}7@ay(usk7@;chN2~ofvhk+0L+jbzt<Mo|Eq19%r2hFg)##{xebEbjxo!D$IX`
zV<<ElgZUno7F#v$Mq;yW&uAJpLNTCG$i>FSB4@q<h^zz6+%!HyGBZ~IaR&%W<3FyR
zkgpLDvs<L@dI)d<q5U%aC}GZqhJ>yAdB3j(I#_UI<sy|6NJG_1gbY);uh7}09i_a~
zk0<lXZ&$;lbqcE2YGfrM_Zew5K2M7`f0kB93-)PrN4){Yu!6FRs3C*Lr7UZ`Cy14z
z42aJE<kvB^Ow?a%KTs4Yb3&ED1ln9?+V{eG;-Xd8Y>FQIsX}0oKhRt|7Y2#_ka1Tk
zLFFluG12pb<@#1k*~r9=0M%fe0#=m-3IAcxy1LW#IE!rj_?~FO<=ZqumvVOb+3ucr
zcp_8#o?7Vvf8W8gHIyECfOzUz*0>l;@}Z60>x@K<qY3S=56T3jOLJ;4sU0=}0@D(R
z7=$;)ddf|9nDYR0_&c-o`r}dc9MW$P<jl&i-h5&arS=ftkdGImoNLo~8dZAK0I@Rz
z4Nc6y?d|o+WncY?pX}7|?P=}p(Cd9MMAR`>ZXvJ#)|ua%7q)<ROV?TFcD$^!ywl!T
z(l@O1IfJCfYQL9XR*+c?@)j1VobNdX0=Ixqthpby6B@sbv3>D!g}HjY9}qnBvMVrj
zTXFe=*`(8X`fLPa!hM*RB=jjD@b*-++ae6I{Bv4fJ`<cd6GlIv!;C34XF?AzLT1iO
zWHP}#R{`?6PMcTx3@&BcjthwwoK&_7W?T22Bu!9tdHF_T-wk*V@#XU_XEzGh7*h!I
zkm2hk<_X?A;}3eOt}*NT18=W)f;%U#qN@Fthz|4ocgy*G*-J<{c&Dmso=5avb*sLY
zLzFl7&~#Ouw>m3-Dv$IrWP?G_eFT8Ygff&sen-9fQ_@7%S)eRqr&`VT*Yi-p{hDKB
z65MfG_il1Z%A>7&H{j>M?cNhzHsJO*!yLT_&*tSlC`f3y(?s(b-4+gWo4ae}4!N=O
zd(us1vy4{=c!%M(vHAuyuTlJifL!ST$>i*fwO}(aE^2^WpAVbYwc_^;!Uc23&)4hU
ziftW7f{HJzEe`o?AIk8zOs^5MN!__7uvP~`-{Vgq`EC%4wx<dhBLt5V**!*%_X0&#
zjff<9eJNHw<vD$~l^HtW>e85h0*4l1UwpEljj7&3Slq6S-64Q}SXBYVUG}6glu5Br
zeWUyc@6Zr3jzfl6jj1B|zA^QQrStX$rDIbyOrsUFKc@Z{`Ro7Ys+H1Ux%oin?8NVr
z7tXj8BuwD`kO%5b=ff6vn-Pk09zgWjt-%Qa@!a@vQiiMUlOpHN?kE7H)4lI2kOlba
zI{+Pf4(V&E^L1ZjB@=icECWzh0zU*Ckgf|h{}8&aKGB813K&B-SF@xmSQ84eH>lqr
zV6$j>jbQP)*ZdC3Q8hbt_JjcLBMA^Msd=>=TvPU;5rGq~@j#g^RUAcg**#3loADCb
z*Y6S1H0JW(fM@5iabhnDz@Ave6;?l1MDG_*Q&HQjQRxDx8&?r*hU=o`RIy^V=N`<s
zee;TI`fY~=W=HCiB6^LTF<~!9V$VxSxiB8|ByPvi%ZZ(z6aTTpn!CO8-q-O4JG=1$
zkFp5{P=l9E13VOe68k~RS;#t^h?r(yZI{o}@Gr*h3P>;HB=$l@Wa||mdrfv9H4uD^
z4owCc3W?J*v5BxeJuF=rFWq46+7ppE%S#%#n{)t$*G6bJ_t@ril;6VB_v?X3v%JMX
z;r8Jw`>i544B5F2r{5L1Nm%W1!TfLoB0V@X^q1k=qb8+r0e7S$a)8nC&Fzw1x=AO8
z-Xy1cx!av55#kmV4AI66!S3nujlV>6DxX$*lYVpU+Tz)}b|sWEMz_7MuAh)O4V)*%
zqw!PTkmE$q!+F*-CvDGB4-eY<o{9QBc5!M_`kG$&cc^1BQ#w0dmhD%*dli=p%fX?L
zbd0ncq+n5c9o~hZkY1Zd6$@<W_#PCdEE~8{8CPXW5_t4emt`KXR^=C6FQC11>dJbw
zjCPX$2iQ(e`~`ZK>GX#WWwHXjJqQNoJ@fZqK+9_O9hxzEmzp+nXeS#*WOIm55n|v^
zvQapa5U&Bj`S+~l&-<J}lzp68c@Z_Py{Su<9m;ZzpErcGmZ4K*?dvu9#lw?`zp9RH
z{>uv>TC=q0Q_^M7J~Gv8rdaoeabZJ?lJ`uY2?qHOPm#*JJUxYMpFp~&bBrOu#9Y?)
z<fE(!Nt$WU#~d6(d>X1`h7}{1t`0iMZ%y~$qAos37#J$$ps%Egf||D{i*&)<q0X(1
z>CHp;P7F!=S)Dh&BQ;-D2qu2;7{q33&q+4|9y^*c%F3zU00Wl&LMyjJvOsn`Yb8lD
zjcjL>To)izRPvph55|)pB@V=Y1WIeaH^)v_NM~GI)8^r3wgxBjy~;dgOeXUhb?muK
zhb=IgY^$%&vU8?n)d%}b%K1R4#Kgh?ouZI0^8U!RuQ$(`|C>Evs4v@DOWpyII;2;O
zwysbQ)4(PpT90E&jB23>0o{$ZmVr1tqoP=f?H*;j!1)3nrx!Y>S4wx@#rf&I11a1+
zdXa}Az)oCTLOc@pH@2=b)hDyhK>gB!l7ROIhkFKM-9@K+bxr+3anEm<EjP2eE1uU*
zq3}B+dc7%zzSM-?=l-`OZa~uVYbV99ic)!<ADLkD^6F|uU6~Ov3*2E`OHEDf>{~m?
z-9K>ty%7(qA-I2fYITiQTi}4m^a?<YS?qtnio+gzXE2Za-ebB%`H_!!DqtUelhQrX
z8}KbkYQDu-WL>Gyu6J(k!5R7VvyZ3AuI+$ARw`s-e9iZ%(!|7MFp*l-1aQ>Vi41PV
zb&pEtv?B<&@W<RWA>s?dLfCsZ?#T4y!}|E=Zgi_rcFmI+^viw(miPg!Jsz<@`sWIk
zeq1t|MX$mjSX}_rKE>^jGjJMZe{5ski`**LtWE|fEHYj`L2mM-dVyM#4EFu~I2~{}
zb}`67zAra(JYq~8#(9RwA^x~rx%!%Y?4eG-Mn<OPHd@|^D7m8rVIjV>z1%J}N+FpN
zhh2rFSo5x)Hvf3~-Vk-we*|wA0z;0pQQYcFq`|Q%u?<cemVkzawsTxRK1-bKu)2;&
z&~p3f+npC+&`@#oo&X-`9g|mWspk~-9CD|oi(7>frnEPnU0t0$Kd<#d(0da-heh!I
z;*}}HS5(b9$Y1{C4v};DqrTgHhH!g}D-p|2FTAXe7d6B|3+E+=V>m~wtCD|;^}d<s
z+FzI!-MfjLc@22oGuS`Pk1p!-%Kam!@J~kl-U4?wV}>_z02zIYjNa195h7gkLQR(t
z%?=f|D+x~}0N$s{1<iMZjgMa$u?5SFfb&0;?-Oyb8O+|{$HVjF#fslZOp{FGQ&WhA
z!FwDRVT)y4Y@$Gqko#MtPtoz4mqrinGjACRlzeTWAS&?fL|MDUjFA_bG>b}9yyPMO
zm8Fc!*3(G-C!?>CUsHzbP^qc=K{dvaw>#F+OkY@S9|iRdwM;mv8R?Tny;RAV$kgOo
zX~^?}QeTc=N)-my{0`k7TOL9k@c%+(H50g%t)^PF<il*#&^|F+)j8#)NtMTCWI*6+
zc>OL~IoxReq_aLRSXyjCFcRl-^xi54hg9;XrCm~Y+m#VDJ*_61t+r18e5Y4p+Qe5S
zf`CoXj(LWlG+`)LT}_Rc+q;u010SKez#(n-Otyr{qU>)UdrityC)f}E;^utOg-}1N
zuQ`kj7suCfYa!937Esesr6=mB68rkdCy1l5iQJlhu=oWAzu?irInV|utK;#4&b<W0
z>;Q#aodR5MGa!~1)R_jMpzI<ZZ)8+PHX(+^M&8qtlZ&TthN7fl8HohR{N$(1Afhwu
zTE?@re;N0CRjqNiMsEEC$Vh6#g{by%%sxN^Ees@Sud9<5BBJWYczz8-D(9j=^s?Rp
zN?<xg{+q-PEZE9eyCO|?YqnoWl(Alf(^iNC`n=(_0Mn2IrRiNRP+|#T*6~N=PpMCz
zwu7-5Q@$-ZRN@Yx$jpyi3F$p7T2~Wm;|AFy8wtaNer1FiA{ulwN3JsR&ox}X2O?qJ
zD=`>rTO|1RwWNyy#S(g?$OWm=jX*y;-7yZLY0-Ua<Cga)dk8%xy#Az@TkK!HjZC+j
zj}zdJ;bswk3ez$h(KVp(Q=PTB5n%H9ZvEU2nA+QXvvfBL+PINyvETX#5|QdyeFNg%
z>35&`+0R(V`BX;&70w^S?zrhVIW_+j9U@5i05o)nvhA}m0gMYI{XMi@WsAh97dtz<
zIy^TD0sa~Ml`o4t+pL{?sbrXy+sn^AWUcj1D8(w|&NL5s?+=?9Yu;D#K9#+)1(en@
z*$xIUUN+g7;<^$!hoy)`|KMT?StEZJRl<tcFu=MS#5Y(E1Fv)FJ9`h7HNhG}2p-u9
zY`bRlt2luk?h{{p?l(d`g_Ib7$AS2IEJkLMI;8i~{vC(mK?M)P;yhU(Gmck?U(Unh
zj&%~s>&qu+qf&cT3!CVz6Y=4ruIj#A*HW)OTJa>4vhVIu(a@vAFfByIApjgB3S}DH
zdka{1o)p(+P1ofKvn)q~bk$<ARLaGI#UHp;)U}DlJwglfrinpf;HueD(cAdLiGg16
z<TORa-y8?GLciva-n8&W^A)W`M&hwEw+a!suhY<*Rg{#di40U(p;9PrZssLTFd2GS
zYLm_xcx9my+a@?{g;@C;J4lz}m}~6A67x-mfU{ig(N-r=r6(s-*VgLK6lmvEVFpMf
z3f@e|J#s<Kd@DIx!CjTYLmJ5?p!<dpa)%+um->}ZPKccY5Y*@WDM$*Hqt(FU(RN;u
z%^v!cD6g>|dP#eGi$mZWH0X39Y5?R`dp(rzoyGdg777FeP(Y%k*BPNyeU3F3`>C!U
zOU$6k3FTZYY)6ZUG_S7}$a^I|Fz8uieu!T2I_sSERpnrEdspq4g&-ol3@vI8H~v+g
z9j5K$IgceKXPPIn2Cf0v#bPVGZnQU-AV5^zAwmeWC<lUGo+0)`HdJDbK9`_c2)?V-
z2TC+$1dr41H{Xg3guM>qf%n)zm`p%8|0C`;@~q=3ntYh`AWSRd0)wwlRBwS`cJ}OD
z2jd+;u{u*D!V88$hEgs;;ap_xE#K>Yd$G$5n(KwZ+mN5YGI;lN6XhHxNzBsmcvvpq
z#GzfSUH=o6GYx72)BR>(IS+-r_cw8qd^hpF^PHWYan@rL3o^SWOUF3T^v`#0?t<=Z
zK%|N7(tcE5-1JT1AA#P9FxcIMmVI~l)A4&o`wl?Q>LTgj6g5Q57Zp6V1sy7#K%uRO
zylFDBt!y38PlO)AabZIEKln&IJpPJ)&th&DqlI>10Aol^STAp6d`_{<`jEm=Ucg7`
zh4%(??(kx6>dufu+LQmFm%Hxp%B^rW3~Opz_hBggv1Q?H-IBf41Whi>WhOI#Z}&bu
zW+nIPi7F1h*HBYa{qQBb>scxVphLLn90eX`bK4#=pLD%?rj1=rtDafp61xJVER&1P
zMxK@DKp0dGw^K^b&!HFi2pjF|D}W1|z}yaz#`V?J42e``&(2!?c-NUTo`>?!=|Bf+
zzVVNEmK~cpa6!a@<YZ*~>~DXqIxmzj17g3*!YfBz*Gfv23`Kg-xte(0Iiw&4D8Sva
zUhRuuFg}lnnX){c&VI8NBBOE-2%JB>nKPUtcJ6*U<vrOLcgJ+rY^pC5o@R62S6Z=w
zK?VHPh}ZnyI&T^F6})GcuL6;40P;Ui0cWpgVENZx$R2f7gq_F~fzPD<jl8TR+zoqU
z$E$nC0~d>;>oER=1PYGq?p3U2cO`Q`u_1x(oMwM4k_#ol0dQ~wnkwjDZLm9-@56(l
z<#%?f80@ANAAP{=Qcpi0&(~_OjLrQ%vSuM}sH+96Gdp3G*Eae><?DXq5YH~@tOJeN
zC5kylqc8Tud^(`zsLbsi5yuNwuW={eK_TK4RDaTYYT1pCkC($-hQnii?>c8*;B{E9
zPW;c1KPMA*T>wKlb@W>`ATsQMHemXbZeuETe4y8v&MB5u+`*9<5L*7y3%0EV*j?pb
z?K1xpp7b9RU+;xyRNF|NoAKJ0MFO)v;$s68KBr^n?Qfl@4B8%_oo{2$(#BoZ)Gkk!
zq9?qo2CS1Ps}E^*Mvua<l?#p*Z(6JY{9Y{NC(x7#ltD3CK`hjO+w1fPI3QCUt2lWW
zX)+el*X*{OGeElZOmpVEvHvUgIg$7-SW!hC)Fq&!p}&jF^%zP}Nl>HzhgKZ+g;H46
ziO=lqBF1m}Q<O^!t)Cyh1a@xXCv0r&#orqNkkO&0Jgg!?UBS?NL5m?b`;(#!ZTlph
zA6MTQwco9JjZ2dqo;-+zg)()9HJSEDt|r@15k6WY5FAu>zk1dmxkmY}`;)X!U|{Py
z89>_zMVeRC3J?>1YnOoTYw7=eV|7<zv1obZqT7W;MCM|CJBPW^azfm?vcs8Y+5z>A
zHOS+U?mKgkH?(X!7sf%QrK@sIr$Ho=er4n1ON8OG2+$4vz!|@-X=cJ#^>JB=pYNYw
zf{i>FQshIq1J7w;?Mj2>?qZvp?O~{_ui`s?6G@AJae*hfb^|xnWgAqA!oL7gZJ@X9
z^5-^}7(4uJsDCH1;E6+=bJ!7f<Nc_rvHWX#{iDTl7Aa`Xk@!6M1MeiTf};Pz759Ze
z$cH#2>?6!Ao{yqZrg%?BhHs0utJjODqgye83|i+*(fVT0lt`4>-gSIHEttpKMfDME
zgSb~rF@tLomD6YpGOrg{l%8_wDx4h!ONb)eZt$1u-h8kJ$1V*&IVff$TaS>Y)=fbn
zC%wHQ37vgaF+ZQc(2{<R9PLF@UJ{}6>_YI?v$J6yjCyRec>xFWPD=N4VL}Va98Qai
ztH3JLM}ogCP@vZP#X-m4Wd$ZL(D4heD;<nDG6qJW-7@oePYj}cW{khQD&i_ZEt}cZ
z-nbnde9S*$1mGn5u1pDr^Z{V%NOlq)|BG8AG(fVhs!TL%+;yJi-q6AINPtqBIEMtj
zSQ}Q$31B?~r2d<mMjltAoHr0iLC8;|Y3#D7XlU%wuP;y5ilG2k>*(5@<MVt@pZ%8D
zA9I{Oh-?5w;fcrSF#3+R1tfkuHy$Knth+WJk+t|=u7BTjq;>;>kK_UVYFZ6!zt;zI
zTHZ%QhuujIxv~w<o_qKs>#EjW3%AmlMZ2>*@D3djEO@V*8O@#Y>aNQ}z2j<O0IB9n
z?qRm;;N0YoadKndBA;UKY<)uJO0zEJevv3SQqGq+*d>Mm)XY^tl&Uup#0ZLw;kyjG
zonBlPsKfimf&o~yEoVP`*iKz)o!yb5p$M{sM5JK&q@m8p=53=}CZ`A3|8YIQHNv9>
zAsdacqc7Du+VUa&YlVG4E@|+Hx~zsTT?oKQH<*@uc@BfrSZM8J<W>lH11e_GrVwEi
zjm`%utpK941NfTME6fB{HlarQM*+s07ID)_ng*qv^qYz6ag#w1uKeQep3aSbPCw~C
z4odtE#ugSOnwt`G8m%~dLTTJYVa&YYsScQ9qo=_&{7-w)n$}Hg1ZRPO!O_rR9c-p8
zIa^&^YHF#|y5|kqhX%v+s+omOtJ~9+rJI`70j&1M(R5$Yk0)bA3Yk{q)mpV8ehSzQ
z`P@J)*@R;Wun_sQzf_S>@$GM6;rchCFBcyObOI(&?z-?-1GkukGb#TESIS0;s4y=y
zQ8ou8E+$)vbNo;uOgQ^OX-Gm{{z|z68R~L$x8_%fj*&DpK**SKc?pNXQzhdugp^c2
zPEgEeR*?+2BhxCzV%M1r@xUS?YM^DB(sbzj7gY*mP_lT+fZKc$|7D%2w5n|4<Q_Ws
z&_>y}*E=z+a9}-wT#!}!5|E#`q8N<vS%%((r86XiZ>qq;Atg*Ldtcn#C6v{{!5(}d
z-|>Ll#NDsH6V1;rpzD?@llhg%@l#U7IIr;I8n|>;x7Hl*Yt<1MrAxKimR`6lnL{sC
zX;}$6`(n~^gAZ!a<z7*d>@jShvzK^ksB;$szfplq@My##M)lRntI^jgyZelYf{qd`
z64b52eWB!n5yS22vjktCs4BlJ-fS70C?3rj%IBHQj+yLg9D7YojS^=;ABCAR#O)*g
zLx>>-?P|W_okQ1uu~rwOgbGKEjifT9CJi{{X_ckta!J59NEWPT%u7fsijtVAL<*KH
z;sP>Beqd|V8Ry5<4WgGV@*4@b_7qBg{=5=@yTM)egcVxD;?{0e+EhF1o&l0t=OO|7
zw8p)ck$-mg3X}n6uZTjG#(okt9gW-qG(MQqAry=w&hCdO)i5hL^quYPk|)2N15Isl
z@nDy-+ml?;8Mokwg<#i>jYF^gAGX~ut|{ny`lJ)R1sHs0r%TP_)S?<1$wFVC7~=p$
zIx}G(9h-UM=1;OnLdtAF9fxb%(o^cKd;A@I03cm8K%=-<fD|>o*8QRB6g|72R?ZGH
zQ>=aM?r^tuY=Gja<dKg(ptist#;x7}Vuc2`-kYPDZ$oCCo;UH`&pV8sDrjc|0|Z`j
zgz^dsAKW#9fj;aBj(`S6Ckr9&11@g)&nBmugINySWvX)lxO4%Zww5NKWwF-5Vq^JI
z-Kcy&*Zei^8Lrz)NXe9H_r|B0ZywcYJ{172>|8uCb8Ae$!a+PYc?NLA_OI+K(FhoU
zmJ}-7?&mpx^Gk|Cb*Qz$=|48xFU=r(!YHp#k=WGs*U314$yfePW)y-ZM@F6!kEbvw
z;4^uUl6OhEe|$J{dF??jCNLI($op~ddq7rBE)kAYla5x?HZdp&3!C3FCvCrf+suC?
z!z29jVuLOa+!R4Zza)6d?DpVkH=pJZC2IY@GrW)ibKnakgr>!x+X=7(g?)adzG_KH
zvi2q|sEo<h%tTOSPa2h~5Cb9y+_phk77~y&<))47Gb+i}Xh$Wa8yCzfRbsI{$|y4H
z3*u#UPB$hp0K<!6FAzx7{=W%c1*x3?w?=txOk+>CYMl6gC3vA^SON#niB!&Y&Wx5#
zO4p`S$(U}u3(+f3A!C(2dlW-N%g%Hm__gj)Yu5iRPhkGWVGU6+EYVC?yfC+pLK8E6
zt`b$#zhG$l(@O8HHMAjZW1Oh-PFE>m8PX#mA6vi4A8|q4_rsZTmwn5OCx9AQBJO;?
z3bTPB#)mAAoi6CtwQ!tx1oWcz*P;U$wOJm!*d73q2uX0gUU>mP4~@MJqDmHbwkh!{
zoLOHme*m;ES>O8&=#x?u7hm8)onvS!&K2hb9OM2$0O+R#Oi?E{s-s{=(b!;UqhgN%
z1FjGD0I#EY2Nu<UnApBAXcj1jR6n&k?#TGxNjHECC&7|uq@^8}rfSH)0hm8%^_plO
z^xN-wi|`P<mRyG{1)#KI8hY0%Nal-+i&s+Eiupuch-4KlPI?n|T#fNM0w<<*EtOcV
zyG`v!gpl)@y)3UPz*l!Jt+sj1R~K0ae~y)ptLwZMzRqHj1pmbb06$p(8c%r!wXxw+
zU$&^8$C6F+P;W4N<Hrvo!eInUy*g8N8Eb!xOWGm9DOT+OLz2eVWuC1_*6l=91<MGA
zBZpRf_sBWW8DMPB0UMNuyt3&QQk>-}6FK+m{@&fcB<-J3A3ZVHc$8M8^16l8zarrO
zTUi3$WF~&8HvBS8HSTY9+e2)xMgSsqu29MAo9{t0JySH?XZ<xe7&m8VNc6{!=L4$-
zm0c(^v;NLRE+0@FPCh>Nez;v?w~D{w)9&<4zbs%@gU5@Il~H$Zfs-xJQmyQumvC-g
zEU%(dJyDm@7A_O}d6V+|j+dN^WH#?>@zIE?s}`m?e)0(+L#!~Se9HG4WPakjzp>Ct
zdT2XHL||a;!jMT%b!&f?aeA4Ti6I@+&h!kc<_)*|jY^z6)GmGLLe1e*nk^ej21sZc
zUZjakC=WDAgY{=@a$pbp-bKBqflso*m+LT-CZB#1!#W={mv)z<vLxe;C0zEB9HdRl
z0*c>#c0Q#%d3TsAb%>$M0Fq3`5)KW|_kyCgjEhETn|~oUi=jfnsKF`J!bUZZBk#|S
znnoAxL!rs=DiF_#1+Z;C6m($Xqi`NhGrVMgq7jq%Rpcuzn>Bm{cF*e6Pk)%fFNK!;
z#(F#y_0R9=0m7XxBtUVHVWHKjcqi&CUX}rct}4VEm*ca&{HfX#O!LcxD3awQrkDqi
zS=e>H8gCA&CxYxgBlC%jgg)K>G4f{o!#oqJXmr0YqGt(`<PL)GdcOR1V?<M}c6VNa
zIk3C{EJACK&A?)Jcgvt=uIYDy^C$sw?!rM~aJi8y!K@+XGVZFMkwouz|IjLly2R#B
zv-rK>I*5#FamSvJ{O$w)n6X7&SSh@dyz)5*>?bXi@j$^?tRf9zKV|@@9Z~=~i%Qbd
z(V;=^-((+ff&H|?==UId#KmDR?+j3>x+N5#r{8z@Y%a2Y%H9~Aba!U+xVpS-aGyAC
z{)zMAyB#OlfK^laGB!T$_SgZzs!2=%s>u>@Z7z62{!=s7?S{TE`1AP8h{mxt-l>rK
z_CL*G^$+}$uwX$AzRYTz0TvjD0Eee5leqKW)Tw`wE!U~g=C2p7c<5L_(OCPRE|IKZ
zPL84eoeozXTfo8kusil5Hn&wG>#W5a6t>j3ZG!=|WXRH7VQ&R(IUF1)6F68swth1?
zG&Oa7Iu_GCW$ms#ZL=>B@p-j=&2nu(5nnSmOFeHa+j$jzMPazNFuqQSlKVyW$t-v^
z6!QnpPSRB3(*2{Ph5!t*ynyQ3>>bX<h*QCuWq5V<A=*e#+3bsIS<e6A!Vyp@sdT?8
z?3GtOXzY}$WU-)C+_p}(f#g~QoGP1aPb#87i?Lr`uBN&w(;Iw}XL)yhvc2C|rz{55
z7jUo{cs~b<l?`XYJ((~hEmC2)PR|*7-}#+5%MHJeP&_p&J@L#7*DmXr*tK=$S^c;`
z%56;weMFxPL2g@7>2<hRN}|Y1|9Q=AO>>xcCz$8BNpaUvv63khh-#=%nAX-Tx@ynt
z+vlLr7-kxmZXb`AZtHHH6M;_M(2e%c26sdn^}5>HsX~KylaelXvA0{J3$8Y629lyL
z4SUvO9DJ244g>f)dXT~dKjD8)*h)x*@V(w|EqWD7a~}OE*n73$0$dvPu?_>|@D;~j
z^q2i;iWX<#x1Ox5tc_rZJH+8ErgEKHq76`t@h}+gnQ=zg3HcCuMb{dKf13a_r7`2z
z+%sguP5?}U*vRE|svO^Dt`;{Qh+Df!3yeK}eL9;Hkvwm}Jru>Vh9M$GZcMlQoweJx
zqC{Zl-a2c3i`&+v^W^h!&vcE$r?&bH@FlfIIR?t+hn>(4J{vF4#0BL&5tRMa=M9IR
z`X8Skn!8`*cgHfzkDTvt-hdQ$YD?GMy0QCi($GB_kK^;V@2Yv_3*!S_fELpHB#lx&
zikklh*8nBk>y%q~ZGzIPyB0C-5-3<#cIu{mHE4iWVC;Ub`|eeU!nOEo@#*8*ZPR#5
zbhgi}HvMK)L_|I2?<EWCg*sCmrf{chPCJ86KDmErTKtPpzkEm8B3-sKS~6e%F6<dn
z($P^->cafSEJs95EuEdo5BkCE-NwiMx6~JKP*#O7bL{E*$?<_zsBe+33XRQXvDHkC
z01K<+$u=nQpP~pC_g$Ku3lsvxUsrJboD+s#8VG<Uf(1jNt*k)~mc@sRjY0?R7C(0T
zA;N|6=bB6AcEM@V;U!!t-CwGR21>~=3a8(<(%*)&)6*DgDG{blFiZ)i9@?(M;%Ij8
zDatfE#+siZ$lJO$oEYLAcjEqd`iH+aksf{)S9m!UyrR>$T^nXsQB|)L`3w+~<J8M4
zP`{RS-(QfDGm`5AhUEE6h)P+OHHPt-q_0--95u2fw@}*e#@Wj7+=bM*w=sXays32Q
zRZS(C%O^!Y$8AyqTrfMRi(L$CHj7vWm~k=u$@PO!fRP60kM=Wb(m|1&PS`4BE&pjR
z{jy7HHs<E(Ft9i`cj~8k4z3ev<n!CHKD4{~kJ*)211S+6;viI!eSl^c@#Tw*rji;c
z8~@1eOfgGw+FVo!T^t!51S-G;KgdKDfsiI5Chkn|n_V7h-CJEwhp=2<eXunfyRKId
ztRGv{Da|`fF0iZ2B_ZKl5==wymv^|t>{f}Vjlg<u&J6Kp0#d+ZS~g$#ip9mnr39p~
z9h8DTkIuv@OPLL0_vcXk9RPt@gpAMn$dWd3W@Tk%hu_ZI+dJ3jn>~cDyT+Gxi<TOO
zs10lwmyKEMZ53H4x7nMcxfE@pmYz&^Q`}R_qnUC_bq0rOLVSGsyWC3xP3iNtRA#kZ
zhc7;;r%}SafpuhIUgXS%hK2_p@W|%Uxm}eB8Rmtr)x(3x5AHO6Ef2T6d-raKIdbcJ
zhLl(N7EPJJazG!wx2vmbt}&j+ysMI}sWAu(T;dDL$A7(0d4Xg+{q%16HN7KRG<~<C
zIAH>CTi*JwC}_Dfo?X`ou>W@P|M^Z!<sXgf?6P`sVWBjHp{-f6GkIou9J#bFk)6S!
zml86bDpiiCtTbJ}4186#*#qY#73-w)CfaFkJqUJcvM&m6S&y1iKv@B~m!BQMD#ilz
z!ad`hvJ*?tWQ5=7<DTbi9A!G6v}JDcmItu_^F!jwK@-hHY}%UHrNUX?#@LSX>sKNM
z1AbqPSk#jr<Ni~dK>^qVIq=CxcV`N7V?ha(34v->2o`I-O5+RCRqZ&2N@oi3+o^H(
z`pLyyeLPqa18;xbRtXVk3RKHOnmjm^ed)ui%q|NW*c|jTD~q8ZWz4hfQj`=`&NY&S
z4V5oTvf7|{O7Y3D<M?arWWIn6Dl73kQ(}d=7rp>9Uzi6Ie6IyR9L#A=PAt}Y!sM$y
z#5Cj%#G!D6Dt~5CSbf(4%#q5sun{Prqxy1MH|un>JVK(>lMH>c!rw5%6_hojUs2Ik
z_~-n51ci%&mF>v1;(;Us6)QKb90W+e!!SWag8kcz(iboSnhT-Q-iGqI{plEMDr%aL
z;|%;EjTZA{vHpNdtA`MKO?7>$Zmzbu*nZ*I4~!>#IU6{Bw*e(bL|3077tSyJ^U?ht
zI|i#MmPRoXir68ZrEj1wiHCRKZ+>{bYqQ=_3tY|Z+5SxzB$O7^n}<^k7j+X9Ut~c_
zOCEI@getCL!Z!0+NwP%tXMBR2{D#5eM78h3;YNar|5UrQXeB`+;l`s*)VTJvIL=`{
zAMRhjKPgz~=1Op|>Pr6zrS)6e6kRj(0uQW+DdvLr4a`Pa4OP5RD`Ehy*+16o|5=9r
z{o=ob=+DQTUC@z5Yyvs3WCMTc{vVcYi3up0P|%hqAPlC}`!)rU1=OnCwiP0)^l5<6
zfJ3{=jP%m(yM76AchAHsS(X~L_lm|vg1X$R_~&Knl#SO1iB-hP)k!<Q*<pXJlHt-@
z1%@a2U(Hx3TN0h#lSRHA`_NnOm{H7DtF35{=j3T<`f^q?3-h*u5tnu@d&X0So8;jx
zApUjN{z6vh>Jfrc534rR-94Z(*W-LgLUG>-m_V<6x!e+G7sJ-O0sQ|k%YUEx@0tEW
zjSy}hn?%?G_0`s}mlEd!{_C;+@38?#1DTCr373{00M<qdsi_OwRC=_e{qKmUPC%uA
zO&%hf-6|Oze7hWAB^q~Q=<NU}E{?6|Woo(;TS@e|u~Dl*uc$q?u;3qix}hBC7(}u;
zXILF~W8i5?10a%L59g}Mf1NC0Dy*)qPB&Pp@_64f_1NGptDC~Rh#|u=zkgQayE@mN
zwEgh#@F1Neu0FO5X^`2}M@7vM=`G4L`QxQKE+MqqUOiKSJGC^g^KiP<MU}^46QsY`
zuq33#Cj8^F7qOOL7m8i7GnMh^>iS}^((5Kd&X!F$5EIzQa_Ue@Tpci!4U&<6V7%84
zY9ravab?sp+v<oTUHPQh4iVqxKVe{I<0Se&o|wOnB^asw07=enT+TL(G2{TRtLjxa
z^S?i1-vu$i2X6wue2a@C|LRNg*ANElnrme#F+|2FPJIjy3!AwFEa4T$1$dQbHFtzQ
ziakoc`9^9~EEmm)w)^{c>3AXHuo0E;-5$-wR2g*208nWGt!7nhdU`sMj@d9_SWKmE
zb23OO5t<m)!=CWu^u3W8g%1$u=@5p^bHUur-G&${wf7`Ck_R{*<588oFtvSf2qFn0
zF$OAD0EO!7)YKFe3(Hi20OMb4=R8J&NHVsEk*=BvrcC@<<&%$t<o`AddqiJ67)JQ1
z(Xv0+|BoT~v*|2L!>s3yudPMk;T><k%Yjn|+WEpq5v-{03MVORf6R$d(jGw(`@x69
zUB|26g+~b!KG*0-^Ku^NG+k#}Q%0eN#we8})ev(l#Nh1UfMQT=r?l4PQy4&sj+2m(
zK+VIG*4x)dj-njg)zuX*1uHJ;<>ghWS8q02qL9g>BWURmx4pkByKo?#n36z_fyW=1
z2Aj79>3D}kp{c0}bfk<cOL&AftOSq#Uml;oZJ=tFp!H-N!5!F047~E|-OZl=aN|mz
zpmiRcQ=mLCI7je$jvPif<ut0t6obDco9wffS*T-fZ;aR|>GZp}+>=&AXmqk<A12;N
zNeOur(6wBfetuUVO2yVI<lEm@`Ur=#Jp>T+Ve$${E4Aw-k^^x_6A6>_xor+1bP6@=
zQDU0%I)6rq9$X*%M#sUCsjaQ0Nf-U^Gy883_ka4(e+dLWg8#{PsHaDGjFh?Of@8s+
zPwqclDHARvkE!U0dYZvn$09v}Qz~lj6&@CmbH8mJLJ?#^dg%mN%EZYSiU1NfKDyCu
zD2{AEFJl-CTR5;(>0##OjqqG~0khG4WhejfW3YGkro(!!@N@381*25B!;t0n;Q{S0
z{carkJ{`pL!CS|=dTK+yjHW~OAcjm{1!`D_x>X>JQy%Eq8lokVVt8UZk<)e+Nvb6h
z<X%l|xL<Zcqh@DM@O?1l1=Nc0E`w5VFy}=K`ZzEcgYId354LUg#34<exv3J#@q^<{
zipbnNz1kz(lZm`|Was8>7C~XIQ<hh|-8+GfXR9{*#|u<&@2lviSoa6xm?{Mb$}%(X
zf~HIv{Exr->g(~D@G8afIcx^mKjGVfRQm%01B2Vo5fa!8{+F@-TW~}b2?k=h{t1%g
z$H6oIpXb&3d!Zb~h*f8XUA&va>2ww+7V2A11nzlmm2oqED#kacg{AqSXN?;jRUHkS
zmpZq?A)UGNOHy9pFUS18P~`mv6vQu7FrlgFKCg+=+*iT3?*`)A73qhE<chBo$>K5@
zBPtB<;}Al}y(OCVHczFsu`SUtF%)hU#tII1;84ls=m!kDKE}Uoc`5$#zCj9)C8B?i
zGacvc%|}H|9p!q$BhzU8q?FD<+&goNC?h46eA*O)&#Q>f%aH^cScd{f_agUyPtYMU
z5JOn3QTbe`vtwL8pdw-RL0nuviA=)I4(amRIls;21@<Ns>4@e^I9g6xI;Bsj`{`Ev
zmup65X5o>IQ^3~C-5O&Om1c!jZpaw%zlAXW+>rnN*B3}oqP5k?yB@iN=npjZsQ>jv
zB?6fHYwvG|3XkD@yvw=-qfY7nwZ93~!pISxi2M2CiU@jZbr06f{HXsOQjIfQ*U39e
zRafCrq+8!}>AA<bj(t_(s1Nn^V*ZD5VtlHIW<r&cvk05V%sGiUwE3m|Z7i8&Qg&v#
zz6D*DZ)2%&M08?mvcy6vwuv<(8DX#~%#=}m)l0)AAjdBDyg9V|Mc@k_kC2*{NCXpy
zooK(q@<Sry_ocd*C5hncrFfeob0nWPgw%|vFfK2z&4P-+aEY(65$b-r-E4feq5Od_
zFE6hoGQPEn-m=T(-5sh-xHOOqgG)OvH=iZay}MhsJity&O_jGadePI<D-a<cri7gt
z`jxUpO+u3F?PCoWpWkVpYEwO<`9P#1(yDw@zUUudEF%NQZao_boUVbnGO~(_m^+Bu
z@<~7c|IdKXC(ydQY$_RVNDy0mJdU<V)Rrp~?gq)|>S|Z-iWfH=ru9N^R2sqeCGhHW
zeB(eUM3b5G^Ye6@Jeg_SiwVBV^Gfjz$-Bv_nKkvV%%#Ez87!e`uBYW68tqp&38zxu
z@iy%ESrvR$!o^{`xezJ$^PZDfY;YFNbygsfZ-ha6QeVOI!Bsxbx87zVO&Q5atT|CP
z8^q^vMn0vZ#Kai~<WZJDmL5FC-SY)(x?G5)XA}~bRA~m;{bUAuP%}3B+I34p04SqS
zZe~sKY?P=L7qR&~D*3QuueDxL`P{7#0$=sFn5}3BQI7;h6YwjRYp9<*VVf5pUf+#J
z1xIXJH9RTd$onwl4a&E;IFOc|m`lzjT$S{-{1#81G3R+?FIt!MEyQirMz6j1m1#du
z8Tt93@^T*O&n0r><mB|5)9JT^_kx+~Xo#cT_AtlivL&U}D8BNO8!T4&=udNHKPXJw
zqSNHO=AMN(FA+|@rKtY$@_jO(4TO4BOp~`LfBDW#aiUSKq2Ja$_KSVFS*^J?>1ITf
z9VV&jk(n?%O5R0UM9f21x3(*w-(qNeN@ye6n@<-C5>i=9>stl%56K48%C3IZl<G(I
zlX+OjUBH=+8fZg*P8V!0)j3n8uZv6-OkxJ9oi7n(qG&#zRhdH|JBNtQxPax)3+Zom
z^0Z7{-h0&ZC-)GFgUR5kDID}3Gx?tz-CwDtf1M<l2;3X`)y+*|^Qx!p*cy;Ahdtox
zmR&NGSx=V;6Q$ojJ;|CP?ik}HsC=Uf;H?dWMj9Tfi~l^B#%?_Y=!FYJpoja!zcprp
zB?tqOEi$<_s-a)Y%X;CFkp;ltFh63J0?~C)^-iZ*^d(j$Z{I6y<D%>Bz(hy!-sXLm
z7=;%$q-=mh!-J%85z*D@r&N?HW9^x&Sz7P7o)9GsF7LNh(U;0Bw)YLPnq2KxkP*)}
z$rV#e4)GNc4KzuJi_<L79h_=1wBA0dld+Z2OCsSkQsTPf{5)SXL9_8Z4w59LBZ}dB
zdp5C}<kM<7t;p4<%nfNY-a~o3-@*{VpzYJjMKEfvJNwk}%g<9kUV|wSgSL4pPyFcD
zN3~`*w6hNWh%}B$&0`s%!q3b1DG~IV%8-lAc5;l}Z1P8^spf)cL3t62bsnId-0x<#
z3=GlYsCc-X@AD*xB_KJ}3HytA<JR{#H_6cVyvZMqMpC63+X~?%qxUIl-<NG^?!ZQ$
z325ua<JJb)`4Xred-`^4({w(m*<9M!=Z2nL<c=r*z|e(;WU0<58u^xBa)u_?81hOO
zOb=$+bUd^UEQ0uPab;y?imhHBVcRbM#IVS`!KlHt+Dlzf@aMZjath1cosksv4f!=6
zlKkC=2a!)KjCUb4MR6n;{wl#`UvxO^BzFS8m5ktUqde>qR&1oAZcBVCD;7z$xK-RN
zB~>i*y*bH&lZyWQgY@HxcE^31UI0poC(Q9$SJNS4xMcr-N^<{xCVaOE1KTw|f2WAt
zO`~XkeQ}Ws$nHdx0=L1E%>epuf4{ftBLF`B2ugI=tWpXN2oes2lFlm_hW_<CK39)F
zvz%QWYA4q=tOIBh<gcQts{SD~Qm7Pp{`HDet=fZEdtmfeiq0*TUfH9Y=O-$5o^}t5
z@&)-4C~Ao8<a?xOF0T3Cb%d`m%PabDxnLRVDkx+L_2#4pcWZYaXq;$ag@t{u4+1Dn
z&}6%ogy1n>4a#;i-YvyCWpdOhJV%eqsyCCs0lm;eg{m|;jQU|#@6fRzbGy5Xm!bLi
zBDqRQh~g0U*Zdb7Y{j-H6X}UhHEug!UzXDG7)7Dn%mVV~Er8=Xw!A!H(OW|l8N56`
zs;j(ssAVAXfVyjwncVPTAi^oBxw&1=YK0~UNYV<&n{d_|kFZ)>vB&G(q7EG-vyo2Q
zs|8oQ6#c#q^h;MO%Z;#?&o7^1SB=eBD!B!U81?Ub=E41>KcrfDG#oW|khIV^xKPV8
z+BVnT50adYS-Pd3>3R~ayQ`45m48&eER`=?V1ZZ6<PoRWX&`b6Fiv&(j`$w}>A%n6
z-(qkk2#haaAlmOf;H@a$Lcfl?;IO1D+rUU!0htF4r9ro^J`0;LONDB2w31OB%CM;d
z+sE%<I?cBFaidLEGcvKb2nkE#7$6T6K`gL9UPdZ=cQ3DB(xMIEV1UR>M)2i2fo|Zf
zi~?f7^_f^-EfjxIbqC7b{Ya-5Nu&LfDg{@XP450xvBeB!wPmS($eJXF2F#F7uAkC&
z;2q)2ppLz?&+|RxV#C81wc<b=-Ri6WvHfEua+Hfh9{p%q!<GR#zI&%6T+(G}-`CbS
z_peT!>@40%xZaQmFx!hiA`B93`6l&^jNoiuuk1FWIpn-!l|p&ktSEYg<f&^RLe%mY
zge<0UrM@eb(^@A<`w%wkdY`SLX@q7N1mT*OCk->_yBvj3RJt8c^qVYr0~OaulR8NP
zY<;5uW3749$1^`oi_s{oRr#g6MzQE`L^Yx<XSWy(M@aYr=J5tIA9m$#F_6SVlt&Gn
z8~gioyBOk%qHp8L20nEzTb?u(pw7q(bbfvQolw%2PwU~DrosS{#KgpGv)>T;`m-<i
z?||X|5)k{Bg@d_!)O2+44b7EYf+Xdpd;mp=<9AObpf`l%?d>faP?nW;L_k28HpdL_
z8)aLT?_*(MA)~HS$_)sbm{6jJXQ;{Dg=}}+2`A%K$QIDA6Wch&`K*l0v;fSWV8@lo
z3?5cYI7$m72=K2AcC^u75RsALS>Zn=A0A?+nXl4s4_)<pgT`Sk!p!7xx%l8o^HjzW
zZM!`?lB1DU^XAnSr`p62`OCL|IgcA6Mu10$)LkE)Vc2}kThr;F)oG8pbRV{{AEmE7
zO|x=(heAGbKrRYr%#n^%(iP2WL}F97@O=%O^XoIbp_;!kx*({8k%t=_W|<4x$V<d@
zQZn{%bF&I_4J?I96SV5P)D~~n>Z&*VbKpH&iCA&b8WpoNioSQtIgNbRuZS{u$8FNP
zhs2I5`+<y_J>1Jv*3b-yw1iAAFjK>By<ufc{pIoT7}v8^eP`k^)Bl&V_HQ}J|DBvN
zE{NeiS}u<;O^*OlC^(KHa-erh5uk|KFsN-(Qwy?^*3n5T%v0GwIUWP}t1=1-MSu-x
z#7^w~u9>}N=>1o;A}a}QZf@t3MfTF&l3@z+B)L||orPgc!2Ptdbgl&&&IQ$FmkNJD
zLu=#rWFZuy-?_Fn!NWU>aSEht9ng<~Y(dXBom)IP{<E%ZJ^qgU5r6y!qgPo98#io+
zY&Ao<u&;S5-3*0YcVl@I@A-#@W}@=O@bWvYQzlyj+vN_IZQ)4?ef^K|GpR1GQ5KtR
zTYqe{Ki&WSB3*B~x`wMc8N3DE;21qtHElT$vYM*p?7?Ub)avqOPh$wpEO>{jsj^*4
zs<TiRHf=c_u!x8!AK)Qp-Q^wQSTC=y!0}<J*r9keF(Fmhy4!QjD8(XwE7n1cvVpvH
z_B!wW7bf-dzQE%33PkRq)q}T5ZLXut@p5Y_pMU-Xy)IH}Ebfhdm0qiSw-yxv4vv^;
zh;z};sKCL#m887<t%JeIs|J%Hs8WOSYNn4u(77L%geY<=>TLCOl}6KwY{P}I>UU?S
z*;~@fWJ-Uu>}7B}QE>C{$QV5UW(EzOk1&ZYXPtKjsn>vJG%cfE_%k7&JCn=)gg+lY
ze{fzQtA3|v(pa{jA|UE2Vl^MzPjB0Cmy&`3>IjPQtC$RWQY{h(m4IQHBb~Okb^xeF
zDZB8;<WGQ<R08k_RUEh|C_<v~c`2ma1<@BNbPC}j=a-fy*M&1pVp;^ovtHsPY^RZo
ze;2(A%4RR$_o;R{LXJvoy-cxTv)m*qWm>4VYd3<8W;KtF1+|HWj!h-ghr);rZ3J|{
zat?5dz&!zR$m8{ILn`Xh^B2i#gUV8`yX5JbPecpwMvh`)2sUdDK>)qd93}1Gcjz!M
zSaD3kDm)5AA6-wT0-m3(rgnZgG(7KBn#h}?*!G>F+NKNp-d+YxIkUGpQ%8@%aNd+_
zoaEf!U$$!cqweyfJt~)Q#khw%fj@H7Gd;XMMX9X(-V6^Hb92M=T=(B#!QF}o3&YTA
z%n^Ra8}8MxxM@J2>3SkycHs@WY^r<nerD~w??rEg;hX`)<JC0fGC@sE9BdAoLROO<
z;4@`A;s*z*&J4$>fLyH#6=ec(sS%nT^{@mSe08%Uo^*U>9`p6J{hWJbVL|ygTfang
zplF+1&ykmxI~>Uwm0IrlVc@6FhbOfsd@$8LkA6aLdoq8aGCIaPsF%I1-aGIXs7S&!
zNsQmUzl%vNmzw$(>l$IIMD=<8WRlM&ap&-xTnoNIujs=y$#VKJRr<2=w!5{<x_H*}
zc2(qLzZG(cwDBCczt2T4>)DuGK`Ua-O{)0qT4HN+QqfSPA41Km_O%tN$|wl5tE1vg
z7Fp*TB-WgHUG3Uga`P?4)D33gEq72E@(HS=$=tyNwnyckchXYRF04Cx4=46)3Iy~w
zp4-(b?u5tuJl^gKMxv^#tK0DjE-z<A#G4n+s-{pRAe+8c?Qb<{=i6&<^%yoM*2|t2
zCGSmUrBrg&f#ROF&y5tz)u6t8TORrBczK;uaWtg1vZ}$r>*b+jrb4r0W}?FGP~~`g
zk+&^7iGI73?fAkwmZ<=XnMZ|WEG=97U7_;Fi{AT!8*1iF)Yh=eub3o5&Dx|3hE|_5
z==KixL|ZqtNAnfvwNIZH>FYW_BuJ`iSmCrn&gM<;m!rQfnI$+hr?aX9eU6@H68%K^
z$Re0G7!99^D;UuGuN>>d+oJS}`6i)<cg%NwM|J28kFp$#f)mSA^YTYI_TLB++M@N>
z7e8Vt2)Hl7X8hm>`&ZTCzc7Y>gfIX0q0l7EzP?(%NfIU3hfW@{A;z*u?o_eDzRbq%
z?(U4i#RkiSqV1B)(Z1<vHR%xHw$RW}GO@#7U!+P$aB@|4oV03TKyXGnXBVvSE;vpb
zk>UZy^4*Km9`pQl9dNZ^j=F)#_=B`LRT5-JEYAkgde5g(tvXNpzsfc6hsWdq+Fg+{
zq9P&v_;0~jof{kxKe|_~*M`U?x~Zx+{q0SI1Rew&>!fuqi$lFbF82(*dR0H0nc0bI
zTT#!)qnpLL@D{Hp<&`3vlB2<|4L8Nr7NeMFB^A2wg=J2BQ~ZzXe13??gms!snawFD
zlvwU{v5cbjIE-Xy?zCJd33=Mgx7EuTp5ODMyB!1wwD)e^1`y>`eCk`I(J8Y(&2V6|
zQgch-A)@hz;gE?f+Z}n)ip{UGde|DciQ7h@&n2455eC~RZZ;n11!Rr-&Y*z`Yw<0Z
zIwF|8cTfn(pa{fAhKBnB=>!nCagN?<w_kTM0Xn+LrkReZyN3sCfDW247>)w1Mnx=K
z56ziI9{>)(i!4eli~t-ta&W`7T|mm+a1=uxutgffM>0@Yy|uL^N)Pms|I`;U`CCzt
zUdq<A{I>9{oa{n4kjF|)xaG7H`)(|$_H4yP6UpXgwqik^zpXj`i9Qhw<3Wt};|FZP
zs%kRPS;Wg?2K_YEH{TO^8PLo{{_ZHw1Q1(W9w=cxuLnw&N^iC4;E)it<VFE*Jd+8E
zJ|wW>j}UjOzYRB+xEdHnJuT2ZJX)<6xCE9OEX9DHp&@__yQGkm#d1oh&F_&ZfsO9|
z!9%6pH8;q`{p2P%;NGP|DOFeci^^X8xEz~<WVAp!dpYA6>B_;(+=r<u{p2SExJxuH
zEHwe)FyEt5XxO6?1c!{ZoZ<T(Xu%Q_Y*!RAJ1tMoWU?OqyJNAhy5j_u<>)=Nw)%dL
z_kvF3!W!>e)(OMhi5wZ899VrGcI+PM61bX<t}R6ypOBNVvG!@l$mPkK7(1VnWGJqi
z&(l4CrQ;5tXIyV~v(5chyyF+{v}Kh<F50-3N){e$z^|K5sZGWeP{a4hyIaJxuP;A>
zjBAtYVLyL>%tO@>`)ICSlC~7$X{0_IgXE(82xTy<2N8mtSz~6vH*l+}bN(#b+sa>t
z0X_QATFFlAXKL7p$iokEy>ND9JV>Nyo@U3~PDwbl4En~nOypAX_UR+FU63R%rKZ({
z2iw<73DmQ)rTJl|1DTfDY5^A4&vw#AH|O>k{Xg+?9ka<}xRIOOPIzbpNUl)!GLiou
z#@;fht|&^k4esuKaEG9Q;O_1oJh;0BC%9X1cY?dS1b5fq?*4Xe-+pzw-|MQ&&s0%V
z1<u-Q&pE#Ft<dooNuuse!v&0I{Q5;5wk`#k<mLT2#GLeuoNe09)(o4wbrE%MfI$ix
z^6F}4BQRhqRTzv&d-Q-M5)4wt^l4`|ZoJ>5fu;|?!J9@V7DU9i25C5(<hYALIW0g=
zD)l#zH%xpgTSd-I3mMOlenDw9lscX+w4Q!wa`;^gsuqnx{>GvFUPqx#$NN(P<!Za<
zE5j3~ohU5dF_d(?S=KOw1;)M-(_1^+z6piO5@#Q`<>R<{zt4fG!{#YP3f0Pgx&VM_
zaKIrAe-XFa_b<WqM|6EZpyh`3)>O`QzmoJB{r8RY|9su20S6mr+lIkl6KN`5hJ%U(
zq-bFye#|Z4AWC7q={4)%9r0{_Xf?bN7U7N>uGw<W2HW)&6C*rPDQar!<$q$=)V(pr
zD(;DDK}d9?`~p_c9N3i#kEc|~kJ{-2rGpTLbG^2#wR@KB;)eR7Or)2153l>^iTJhD
z%p}qz;#}8~XJRf>WR45Y?)FieI&YKJ3&#r1M%Vb?78YBUZ#l{CMh{e#VU?L3*b3oY
z!Uw_dJ3W8Ok6z=t*k!$9vV{VR1#*+h$A=4WKJw!TYDh#gxFjXqDvJB*p_TCxc@Mm6
zg->ykypAFL74gCdf!ViG1SPzIr$w2#ZNIPQPCryBo!h>2K*a^H3gy?k3>s;%3svkF
z?t07=u%lSkYfG*uEcY&%(_%YlC91E;*rV58Q#N_IKV!u^xFY6@gyis926|?O#ZcFP
zT7q)ZZTwusvNpvuKwE%7#OJBX!#Na9B%@M<JN&!M+BEo|;|BP_oZK$QiJ+9z`0xZ=
zjNy9{pWC<*&eF&l&JsI{y7MKEf;o|r3ZLpq5Oi;jcqnk)U_;y+<o8(_b$9p>+*8{V
zuXkc$RY&(#<#~RN==2dH|6&GzR|^3nFS9R(di@RbtK;Tg<e84j0rf@DR#sLvj?Sm1
zCd3#cxJVw4Os)J5Yby&c#0RE-@9jllHd_bTa)?e9(!k3lL=n0&zgnFJc_z1kMD_O_
zH0%1!4VBfN_-&irrc~6L_2CVeRPxMX9cCyvMVJMyfTU_SCkKZJb})M3M$YTuk%i(4
zzYCqPSuj>cLXPX<*0=Wa!xJ@U!j}c}Z2r<X0wLT!S8g{Z=_=}LAqGO0yk7&kf6`r2
zC@S*^5g!9`;9V37%MOoByM;J%sJld@FigML@C$~bgjyW%#p+#jZ6+cj6w121L%)ws
zWVRI)l7C!oJJF3%Knh`*&ZDf>P(Y)9PNX&D=5BG!z-5DV{;gh#Kl96OJkdesBj+pZ
zyaJ)Iro^{$M3b#SGf3m4(BD=%eJp{GKb;Dxxw4`@6ONS#<dm0&v&>Xz`RXI@n-+~)
z7q2i@VznLJ9&<u1^4B2cFwk(e3mJZ93-%V_u{sNwI;5E6t1%F+Q99#Mj2O6w@R%Da
zE^>Z4zp!&(5H{U2e4$a!k5UZlZxIT%(5Rj+C0SHdRz+Nf<51FZ;FTsb5}E`s4#lJ(
zI<m0X#%SdDNOy~3rMoZhr%+0ZLVuUT&%B?ymBIyl^y`)78WCLj@xk5;o<#^~QkVzT
z?F8K_b%mPti120k{|LhtjPTY}mtK`AHe@GdNSCrWBx2&paS+T+3!7i0=h2=nKB*GX
zr9kZ~@8;8-rC$M6^Raw&P^B!4v_fTmyIK^V3tGIXgbuf<t8&3b{sW5npU;i|_q`O?
zKM(Dbg6N;5-kUll=!!#6HL@lk{2M=|2{h-i7+Pn@Lbf=px4K{tEdf&J++$<<kr<%R
zyGC=6_n%<9mD^^aB27`JOpMKJJXTuw{QO)w7jmC8_-Tm5FI8iIUs`-?bl~&z_XSBC
zOuI@x@q1)w;j-lKl(km#M%oQqF5slVd`Oq|<93_3bb{+R4kx(W%sfEnWV}96xYDG6
zVp>P#8C@7x(r;G(O?EI;;E|AM)3mIalFc^I?^oA{D*4+TE?;FVx|yIohGUhXqVQLz
zZ^a|{g%tf`cOk;$YrH2&=lurSjS*!LBUk77#Z%A09}DIh?rYS)J3;oyNpEIw4*?|n
zT;rl|S6Sv8`M?%W5^EBz?(cMUc8Ausu_}>%M><WI-OqT`AdF`oyGiuDGxo0(!_@YF
z;J&nSNocXs7~h@Gi<|jda~S{S*?CRQ!SYe3$raKXpP&Cp?EA=c<cX68C?`_{`tRrr
zyQ){o*BA*Te-G17SnG9|#$^;}qG9umd;oz!%YrW8jc^)x8I(;A{aW3MO~~s$MZwI%
z5@$d00XPSOc^1DX@Ww&`eho4>WJO)wcJ~@7Uoqx6U{yeFZ)ReGnn+l!%Mve;?Y;wd
zyxG;YL{)X|c?)Py)NfH6-Ypk70bir21c7d*W!iu!oz-SvYK=f&G)WhzZ_{s+JS-s4
z)O%@aLS1ir6ddY9SC^2oW=Izf&7|LUUE5OZqO+~Ze%(@0KWKD6zwV=wcFO-2=9)Z_
zFgJNcx0#XOcTG}r0Ur&mInVb!n7O_n=KU>|!aFw#IQJwMYw0jVy9|O(mH<;Iy&kCC
zIf&1zG4I1`-!~0XZJ0XiRW#cM{lj(phHC6N*kke|=KcAkAo+Hj?ZM*eBKchi(0{1w
z_<Emn<(jSNZP@eQ-1^+!vSnL(B$IJia>=kBWVGA_OIx(77Z`N81~&_Oa!mYzVv2Nw
zZQ6_q4hKzy_Jz3QCeb%p*r=+T?DT^Po305qLSES}^pQwA;ttMM>L3Vl`3Oe4h1ky`
zxy^e9jvY7{2?Xr#ucJz*Zel8L2DOsU-Q7Yvl1avXyci|HMbiXw`aNH9NJ$bg>ZYAE
zEtXd^&87RxxS}!}emoq1!8cT+|3>O~WyHY8e&WM;@X&B!by7u{E@n@p1Yg{YEthrO
z`gexVMB_A~8wI{V@hUQ+&2}Nc5bcE5W0XMI1C`c3iSH!0&E&7o19DD^!PBVX)M-~!
z=oQ-GRH<{_+73=kCI_m$(#&S@4^>TX4lOdCZ8GlX;P|LOD>$pf_N5ww1DP+QT=s(E
z{Vax{jC6fF90pC=bBsuX_U&fn7t(uf+zF1qw!M?tG0A7!<lr=vA_LR?WMq3g%Lbgo
zsC(keeqf~+j{{>=WAoOcow%WriTebIXN>ELq1CI>+t|csWSsctY`J;v5W5T|Znvx1
zrarF_U`k0UXPLTYdbDcl47hGV-Q}&g7_u#8$-5Z5yWZ0P_BUbFwmcgw;5zL11%9}>
zHsG=8abCg{lcaa+9XsTOB~~zr018#XVcq=y{tomz`V%CKkaa(A#H$vw_MM}k85}I^
z6f7eyDW>R_89Ql@<dhP5=n9!`Y)_-js#(%y{^&^`fJ%i+?F2}%gJD0bRh8D&)_w=J
zmDn$HO+8nu2>zG(FZ(~3vv>=TcwaTQ*}r5GSXSnQS)*2!V6~tff!OIZ1~(c`;>+zd
z+<5R4agqWI6)|Yi@u__0TW{Mg46!I<N$-*~?2|fu_P2%i#1o~YBB_I`^PQFzu1|)P
z;vbh<s-?(2jr!ibLQw6A7gRn@(i;IyBS)L9lb<Qn%J^Q^4rchu@gXtSw&ZVv4~nNk
z?nq`{F8IjSc-l&=8DAH7ckAym9$pWC@5W3Q@N4n+2JQHGrpPYKTeU-?5lBFAcW^z-
zeTN^7(5S{=GYJg|vD{T(mreaFBnD?9*|D8|37jZ6WMA^efk74JPa+3%b92Zf%YTCN
zg)`vD;3WNG^bG-<VX9H8TEBzNrJ_@KU1k{=1_2nId}cblu%$)<NtpB~aEuV}6gA<4
zztuQoM+Pz!VuEkWw-ns}1VN>>c|iYkm?k5~FdsF6a6qRskNJ~U9Y-(?Gcy%ZTVu><
zr+^xu?`IrGN7ZMCjSm+D3Ozz9`1|qhCPwN=K5D(`E4oIHhk2Ycp{WinOp3V2&ZmWJ
zar059>(qrrX6_Jj=kpkcf)IDjY4_fS+9OSCn}>XD2&$kX;F>ByFQ1_!C*%gFbA<Lf
z+OKXf#-+7ije3KIb~KN`Ml#WTgJ{w9iK>5IBnrOgP6RTu0*C8vDP?r5L0@TMeLUk!
z=ss~w84u<Bkl68EP@>e(<}w`xRbC9pELiM`Qv`H>+=N%Ml5ojpa48NlzP)Vqnc}yg
zJqf(ki^U70h2rOOI5}~|PIkvcbfz0urq17r6tmXzG81Vj%P^3|6WJ{x(<rZ30byhN
z2kT~o5o#236!^;uF%CW6k-kDIr0?86ge`+(f8~b`m($Kd@IrilNUqyE-^(=&t=aZg
z>k{+2wnLQ$<|1$pwfbN}dw+Ko0?m0v9E9Jd({n3+HFYsuFpYXWLJyN9;tXun->>n$
z4gZ<d@RbbejE~XHd4w<@sZ-BUeNaEU{kQBEW0Wx><<$3=LkqeqRe@3YmV@Gfz{(7J
z*Zgh*xb5FyqEQnKgkZDyeM;PmZm7J+S)Be#N@YPk0a5AJ0NGXfW?nnN_fFrvBc%jh
ztMF{tj^L(G)#+Jz6)5{zQJ80$AOQmdt%=oD;0zD7V%q_>4v^Q>my=^ymYF-DXSu?q
zWu?%6{_oj`A8L?WKM|aQQRBKNX$*`Sq~}M%fT(>|R+jMefD)aSAvjz?-$(*A!hGCj
z!Dt>nqq^gkU|$f8B<sN>0X2pio)u|oHb6wgk5bSCO5Ki+%a%g^<R=OmV@I``D%Lk0
z)Aq{n^#a9arBlG9$5}d0re+x_BF+>Gd0bkmy5}aXbUe2STMW5c=K$04_@f4qbg75=
zVEA=txR-?w*}$TSBujQ8=%_-UlN76b+qIgeNC@)gzl|n}9j9M+_^*-RlQGs@k)a)f
z6~6IRHfJiXjH5Ai(vNu`<HAt|UVL$xtO%p>2p~mnT3v#nTg^%3Fgrys3h;$QBAgP6
zH<?Sd4thpatxo>9O{YK#4kf@sJegxb&p6NKm;JmR%n)Z5!X=61DhxI<J6n=ijzya<
z=_@~?8z4;UHd7#_Y~uj*2U3l;0F@mn`TpS-X>8^U(TIy-z^DbTRwM_+^C*1{27f%C
zU@s5j&{2zMtOA{~Z0RSG9=>}5sq1G6-z#RCo~bCR4&C(IGqBAlw&Aw%`_)&WcOB*g
z;50Z{X=phmS-d9ViMH$ubTm4c_|wmCC?WT2AwPkdyq;GEt>U7(3!mTncVhJnrU&9G
zvTX??k#U)|J;WHDzGC6n@aJ`EEK+2b-0$Wig5ORzyE^>$$W<vE1R$L3KhumG>P6I=
zXTOYF-p7#-zR=JpmigRl_0(aXWN<n7Z&BeMkehFpaq_J{v-tg$Eud)7vX)GN6>Iq#
z&<qIyhin^VXkQmWA}PD@ISGpXGW*xBZOu<LsKy*kNPegJv8a7DD2v<nV3o2h0Ym&R
zPY2~{jz2|kaHw;0mgQOr9xy1FUjojme~XCN?;|btCz&=_;#KDhe6&|ieNJXvl}&&T
zixP4{Ty0k*jr&xn;?!3YzN=^hapTQ^Lx{g)I4l`or#hjnZRwenY-(QK6>T}9PX47f
z>f!6W^#F@j^sn6i6G$6y`SO1NX$rBIr@=B-drf7F=`*!6hbbN6;GF6?At@x=S(Oiu
zcsqSDWAPclYq`|)fr6HvfJr?GSMr*VrINha*FqUnCy0p?9AAnPr0l0i>q#;1*My`v
zafhAGm5mXt@|0gTTpy*bJIn^3M?S7PiW%<(fJw|zFA-C7U9IDu2j+oH1_?l<(Md(y
ztOQLhREGA4T8`{^RAo~*W^pG_%+rtna?>a4gTH^NvfnOW{}tEeHm_=jJT4)NiWltW
z;vc_<F&lJd;B#8jJWIusY>J7CYZH=Cv;KFa_kSGVCL)3rZiIPQjE~`_!BdtSlokSg
zDEOkYMRJ8Y3bI>(utS#y)+fJ|-Sv3xXGR7h6YUq<wUV+#8d1Gwy+FNI=bylq14Pw@
zm~aR@@Tg<0KWzXrN7-ivrCr^UQL@;iWV)e{pX#RC>GoO`<2{AHS3qHQUxI`qTJ$1*
z&cwf-d}+0Ti(d76*KR!<{F%S1m%tHV{Dw_5EF>%07k##tQ(4XrzBq9PEf_T_SU-Jm
zwA(0rSHubz&2%olqiH`D{hW&xZmeewIgPN|!O93AWhF0_i2|rzIo6zlu|!Gb>amyx
zem2l@8Mo=2vWY4SWojZ=4Y)>Lfr^m5##&mww%BTQE+DUJPfE*cKx~M1tcO9F27jQ7
zN^A&#Zi^FFZEhEhOW3+R55VGy+(?Uo0$qr(LN<Ur40BYw{(Ej7wn!gm&3u&<HbRoI
zk@u_1kv^WDAQXbAj_JS|H84r_KP*(G*j6SmaHUyow&<eZGV-`R%o;!^tTy<fORnl8
zW4PY>zVZ%jWZ*EAN{r#-_48-&%M1oFmZ8!-7;s_oo5T)k`ARopR011=%_g?<{#IOR
znpW_|`a9?^Da-vRM*?qyy_m!?0&-PlDNLES4{q*i%<a)%VESo~*nLm(ndl@g-*65X
zH%gTRA$%{PP%qkkMW}1s6cy8(4l%E)D21&6eaCXswTQwL&5?zfY3m)~HDFv_T~(*+
znO+^!Lxwsj7GRox6bysv!8qAIvq_sOhpj4$hQ~5%_SLGJyCo1lis^q>j?&F6$4Hhj
zt|TDHVo{`KX>neZ^s0W=*6>K9)o$k{1F;adxks*WewX-J3Wu4ADyPrUKD^wM1^{Bp
z;fEwoNUwpk8qM;YUlh7l_A~_&S%ZyyUCp4m7wxH033D|!Dy#&QNglS+BV&**fpA_Q
zvtX;Uyqt8-T86cBhi_CZ+l(pkd+B```k|*TgI)`+I5EHQeoYSX=u((fopxhl3~QMI
zDt=v^6J;C=(87eeSmSpfiKWoIHux4Fqab&5yauq|JG%*rdgsPV23u&KNJI;Yi^pF4
z_x4PbsPyUh1DkP)iJ9OcL0@(Z@n5Ls@YT2h5?iQ3HjbnZ%k6X|`ibN}dCmWk{rJ!2
z2|$*8n}8A+A6s*UkN#`rdc7xAY8E`gh>A?`#g+jUp4yZ}41HvH7*t|&h?Jl*s)%En
zmzTFEiaqm-!-}d-$Wph-Hglx^Bp3mwpciK4%Y{nA$oAP!L4LeB(}I`w0JUaPWX#l_
zc>|%mU=Z_Ut(S-_G<`XInV%&?AyQp`fwOhLRv9H#3q$~c43>zj=0nGUP-UsyCgao&
z9jn<yxp0(uq;9_y^?fg1cpIV6(FnBZcx>bPaCx$StP0_kc!QRHE|O|ukSPMzNT1FE
z=CWL;qIWAP)p&WlQ0DjfGNNmk#YkWXr=NA2TMw-<KQaOxUq$9ExNSMM5GYm!o>(b}
zNFy^QCqu#G=2!cGNT*cCC1B9*9tUhLs3-S9<N@vW59@ALcPWfIMFVO;u9p~1+VyRp
z?4B={DK9^t5)bUB%}PC~pPyfv!SYL%jXxckWb$gGO@eXlJ<18VqnPRP{-OJ}{1;7E
z64WhI*2o&SE}E1VV4%<3!S#m%1p)YI3Ju7ob#+l!>RyFt&&?slP38Ik#t3Z+(&>_O
ztIEjg>bNi{@IUVmV&xfnt(fLDrEAKzyOaDr@yD1YYyK5Z&*Ngb!pSA2g7+7T`XvUd
z5l#UE=hB(5DOID1<#r7f!u!|+V;dXd=+&c(q0>fPbU%^sW~AstT#lK-B1Z+y)HsEk
zrK^FnWH>5(FVRAb679g+luP174o$NX?eW(1?yALUa5~2yI)Hxy3x}zHigH_8Kl5X?
z0cjp~v}iQ%S)GomYC$Oujqxu01Z9FiULHBQcE2xjAQGK|st|WF-zNR*Y&1l$)PNYr
zY+js$UxdtWZ<OzqogL<SX;8ggmj>3AnrQ{q?^a3H=2r`1CMt5?zwP@3jp|EnMLb$j
zoK(5zX?2Bng&a;|3`!{QT!}c+?yH`J)*$d!l=fXKwHa>auN5u?ij#!IKcwp5OjX}^
zG)R*6uX-e1t`K2xCVsyOvk=;7G}UmxnHDh_G~_?){RSyVYOIY!yb-%D>hT55yffix
zJg_XKyuaSqr4_wr3Xm|KY;Ay(G<7`v{l$tf#GG~WtsCqC4mK{@>NCG<poBlb_YOOf
zl9D<<-&(*UA#q&MfC#qyu%bUTQa55W;t`PBw}HMLoJuvc@{<j3w_w&Cu#Ns<N3FTr
zZE|qV$M-)QDNKIM>FWuOpRg+|K;XF(lg4bSaiYpzz%W^ECKpiBZ@kJX5JgI?jkQ~q
z+G)3yfGb{9ag~;(wQ_R!U+Dr_w9A{De82*zK?S5+w0UoIKQk)!qn{sLl3D{Zy(2&w
zU63ykMNAxCqRymsDamTH!VZsskpFaZpmR#j#g*FXazb^%qV(-(rf{V_bO1hM7&h^f
zf0;93;<si~Wyp=q_V)I@C-8%))dAZ@hfSu(Yp(yA^Rh*O{Cttmt7p^??UA->e2OjM
z@&4*jy5TR&=b$9VATm&6EOBCK9S-|bijKzRo3N<dcR*36nSl$YBtCz0bydT~B>!qo
z`pw+V<GMp!jvS2UTv;>;Obo4T?nk0<sdgjg`MV2kROU;1>RP3|p16Dg5j{3KZ20fJ
zpz_}NtwQ1XugG}Rv!5N_&g;Q~M|p2I$fCA1ORnXpN=9r{H4eahRP0l1MsgVTwob{Y
z=57v)QT}StDOXvz_XK6L7NQm;%V6lYIwwtJM8!)-mn>Fj`K;6(G+UFAlj}4`xWx7k
zJZygCvj0hzS{_fuh~Ltbi>0?FT&JDv-OKcl0HOY??zL5D{-xhwnM6U8M>sKCQzMQg
zq~<o2Bg7i+^U?!D!k`LG0WD^)>SD_=cj1-1;^@lhvRN_O-9cHUw)A&F-@3duiAY>b
zZ$9Kx-flRS7zS%YFPSpli+)$<Sv{$s(sW<n^%Y70ULrAL3%WYe-afWMB9{}DG*<Cg
zfTlXy5UwgYR?F3B5@hbuvuCbX3b68%3CQPc)`>h!;z?S`@krR{6>F@$yu=0W8_9{o
zi(GSph$7@5>mBnE?MCbGv@N|ezxlaHw($4V`x4trpuw(NSe*jQ9UWVni(Q(ePgU;5
z`*KBi#wcQ;i{-r%jEt(%Fg-pxB-jJ;rNk*2z7cKD=%W!aA_>LiRU0VOB>Ko$3{9FU
zmV;vrVw1`jQgLzGZk611eWWU-DazF2mr_;v`^I<2yD;`zmj3#K%VCL0#Oto;+gxZT
z!vE<n0T%w<p12P;)<5zUiv!NBTHmPFT7SY@3v1(coto7$D+VR(_CQ@MgB?YUhi<){
zNX$re|FS2vMT=~f4qVsOwJ}3i-GxH`Ym%*+{QgM?#1{YV94$l|5rstKsL&@0e-`7x
z;TXf5$S51wlx+~wzc%q!;_8ezhw4bd5meYi{*-o|O>%_YHFt{>FDfjeHHgxYdbNP1
z@9im-wkOUikVD$*B;;Ml4+yn}?0Ve4hYPZ=HSMc6GuHxMV!ir0o&Sc8>`y~AjQ~Jx
z6CC*ED2vH(ta1$Yg{+`#&~{)vP{2Iu4oIU*VWW+Qq6`1I-CF^#E$_Nh%yv6H#_0BD
z*ZUpwwkc`Q?XJf9ztYN1m;f4xbJE3XgX&rncff}<;->Z74}7x)q=b7d{#WOcabLhy
zQ~*QgqZQ2tzJOYCxZAzLMaN1s35Se~EIcg`ZHp5?zCpbny<0VWHtO?VDbZIp)b0+J
zX1T5D;m5Pi6?ZPBke`UAif^pc4yC-YxHZ?GWu*;g;HyTyg|CG*(*-tf+#cC03=YEn
zxIH-ERgmialeJ;_#kz=bQ1>_gQCgZ=M*Bm#PG>)2tRoI1Yv!<KyE}`Pa?dO@Gnro{
z06b0liqV}p6T715MRd|65i0$?5b&MGNpfiRZfsy9Bq@Hdp%=9kCC&bd1V3Mw9Lt;(
zVm-3HI;oA8mX+IATV!8Z;)W3oPR!rHumB@9JJizY+@gnfUJPVhNDUfGdbXj8J^jmP
zq%pF%iAvE3?`-Wc(BmO{rZwUTg#fwTwt=p|vr{Em4yK00esR{O6bJr8LIm>09qrqU
zVUj6Ff5ZmRL#3IOeZ|U4MI|0Ttz-yT>Vl6AjR+1rmVjR#d>la>pbZGi5iJTsdR%Fu
zQCUPwyt=z%oU6_Xs<wln__NYrHI}m4Y?~BhUr}AXGh3`c?Y&)n8o}HNYQJQbS*_g%
z{mEbv=3FkUyLwfR=cn`B>}zQC_367pekkB^#a1^jA=qPHi(W|XBVj9|_IZD*^cg`a
z<VCd+ESkeuk`9>slYF$+QmTG;Vz+=z_GM*tHLko|$wr>u8zJuZ?=fwg;F@Gb)Kc<9
zlcb}cHFTBrhQBzY*s&B#jC&~?S{m#YQ|&t;uFzK11mu0RI@&IP!lNtyF%}=!IETKc
z?vTU?Q>)<F*}9-H9f@4@Z(1F-QVE{g^I@>FUNEQ_LiYVnSdi*`xvJ$R*gc-~O-p`n
zF14sFXaiVi3l(J}dGD{$KE>?}OiW4{5AFLMoO5c%#u&1#%0rasx#HRj_p8Yi>0G@k
zoaNN?$@ST-V1q9ocRUF)+H&ZxYTNZ;9dz1eq+za)ut1q>+4#y{2(Euw^e28_f5)bG
zJR%1a6cq3)v<DFd{-*-CpABWz7%>+lVL#6GlD{2dgM-{p5Aa*ALKHvA|6G!yRr154
z)6fkFl!&GHlBe5$aU-fR;Mc99`)gp|VC|8v0rp&^%H?akm%Uvnua+*+1dt>1=fMDT
zS1Qw})-TnN|A<sR9&Lp`UXNxf)y)UOqEzjHj8z6V-tDu!p{=7^1AEu|V~}w$rhv0(
z{&#;{nM?}2pL5k{vY2L<uaD<pZm5Y0P}NuGy{L|TR>o=eC!KN;=3)p?Y9{VgkJ^71
z-BQ0~-Q0|<bc{r!!3T3^JzT8LeoZ|Ex*iwWDX{b+oc`<c7S~@#LXd9=#6B9l?%B3K
z1D=Q#!P<<cR-|#IU26izsM|cX!wl^0)N=R7QpQ+E8KFAMR6lJ)`BQ=ekyUYU{LWW^
zKKRkSW${4=DSBfIVS-PEoHwaM&2=p0ewW_FJSVS3btu(drq|(^Bh7|l2OF?Gpb~0Q
zTMeSRZ@WON9L_dlLX3-}*6*ghL1K-sQpKMmsf<HX!}Ceail@L??|2)4EV@(CcrApj
z)XsNZZ{Q*WNd(+}ADJLpV@#O7FOkr%RTY&{>6c^7MI?Kc(qcF7thfL#NC_pzr=3t(
z7@-Crfax+qZX*itx3>qav}j=eZW5_Js4N<1I(~C&X?zFyRK%X_X&b7(Rw{4BsILln
zU{V+kX|xjr2c2SB66n<2as(IPay-W}nS2~msI)03#ey0uq{v{|)(zEI3#<sr03?Uc
zpPo|2^)Pn3S$Oq1Whr@-Zl|b_x7|dz>llXeM=fV;Y%~#@u1JmFc!mXtC%GUyeB;6M
z!M4(-IuK?Oelb4+;Z5KBNXF(6z>;Qmn$VSoU@%En8xR^+5*v1bq8oZVEv-Q(8>id_
zOWPPePW8SX-V3vo*%{WL@<&~*4uDGv$grXCB1JRd5%Y$eR#?|qxArUfVwrg5-FdmX
ziC`mRy$QruEcGIRpl`%4iHYnl=<HtbE@LyA(&0jtD5FVYnJ9^#WW&kp&Q<kl2BS&r
z$uUH1@~Va&7Y5X*k^rq5AC3)ww>OfJ!OPfXyWV?%e;Tnw9l_S{k*B*mC^Uf8b@ZxI
z%xvjG;{L4}TO;nJ7)3?tt7S+`vI9a~mqGyoYm2|&3~#}qIg-peBo-=RwccdmZ6rZ*
zxTdTVGJBT!OfTXC5jMhxNnS*ROsT51Z7o67Agn4LWRCvrVSbF|fiVpyK<&l@|KsAN
zrO=Bv&2G=YzxOwcbc{y+g6V}#B}eTzF%IWx4yro;2r+tp&X#g*IBwkABO;rf*`1i$
zezKvl-Y0iH>#wHTm#$TG8z!jL6o2KGZqd9K^^!3jmXFR2!YDUY?;y3qSO|>*viR?5
zuv-waGz`B!w*ClfIXXJ#zSep^yaN~EscgS@Df7vlx9(qMV~z+yvO!v8--TV!f(8WM
zA4T481G{1HN0CYR8M1;UMq;?{FE*>=gF_<`8LK{))MXfUVPT^IU@fsry)tr=-E>|K
z*qWHEuD20nzl@cg@ziAM^pxkt1oEJL`0ae%e$z-{(yPDuQCxf=fCjB^{$H}d{?dYi
z9()6Qw7v^k!bzXGWb^<_LKc-=It3gpDCI{66f5>z%~q8Vn)qiAeRWI9;{mv5ArjA~
zyvLP#huy&y#XAE9%b$c#5@b`pTe!!czgOr!9QVF4tugoQvmnBUv@C0}+MXFm3ula%
z9T5oD@jpf%bJ~c2&^@1Fw9A#Zk97Q=rSE?xNUT#qD@(2wA|xsa^3S2ru<<21I@OxS
zD}3`g{%S-fgog&ba}e2tXfqOo{u;sMp_nYZIqBOLr|nEaaRnyct+PCk5UQH!8J#KL
zfR7ukf#QF%n_V?SCD<Sg6*r&VDZiWsy(681_Avceys<DCL8f>}__4QoyRc%+ZgyV&
zcb?uE&m<3S_hmYLa|0`!{Xy~OZ+Ex-*U**4gKUAq(xJj4vs4-n#z*Hu`xxUTCLj-x
zU!2{kp(55N{iFV7PUT_d!fLa4h~!H%?iT~@68;^S69(1S5Tp|_y{Pn*y84VvT&c7g
z=-O(Hlov*<npEgu8QjLMuQ0m^t{fhf)rnbIOv4%>I3tSULA5c;w*zCT8U~E(_bPkR
zw{O6T48B(ROKy<5#5?Bsp+QTDDB&V<`==0p*{7=^5}oyj90o{7K15@m*Q=q1D>9_T
zP9VyFt}kqa-c@_n=f^x7Vt>K+b`*?LB$>ob(Yt>dw!L2O?NgBV&;g)`mg{zFCK<3(
z=wgserL!}LOCn+u870NcIx~+acHZS!J};G_-}fYEac-laNKvZ-7OP)!B*6<7Bw6AB
z2;71a8u?U`=qv7plAs_FXMIGnL2?|26&7tfKI8MfN5C&TTuHZ0Z$5?9&6JP!LfKXu
zdQ3vYRKk_^C%XunDlKD*NSE`uaU(nmVt&FRIo7+gS@o<N`*TEibc)Axj*115!Ji3e
ztRx44K#-<@m`{7ev!q;r<n<vT+m!p&>#5LUu0Tq!1u@_m=0bo@Do2vbhpIN#a~nm#
znruJ0MM;wA`C=&MSB9~OFu28$8}qDH^`BUq9Rp9#BJr<Cn8#^L7gIPDUJuwoJ~b4s
z+9e-!UVGcqjwFoXvel!>oUiw*E-NmOtKUwS^tCY(sE`sDu_?AZ8@xT1Pert0pyKpG
z5s%MYEa3(wTgAoPZyf)Q8AH3rCIoJ$w;A=h+?<l7bhPq=Zk%S(r3=34niylVUg-u|
zkrR+#DhO?zw_Pl#V?AgC<%79EtxEWY&x2k%mqT9jghA4iduYy@mL(QfFRUslq~i<*
zjpHl<X2ZVT=$I@gUYhYA&z0*t6|0f0WkDG_hyLk0u=$c%spKx#arbQH9cbI!Z{9+F
zjT2d_Y|c}R_5EtV!+XnB{NL-fGmtUBe$M1}64$AGx#;Rrd<R0t^{+ZVznueqM*i3f
z-L3PMc1E7n%X2w}Emfa)Ah&(HWE?a7`gEffk1ZUhw`|w-R+LAT>lqp(+74lC3<=l-
z#7JN$iEvW>e|G8J=-^xKTW|bXl~=q@I^JKAIN|~DWHh@lNf>`E@tEYiGKpU58Aw1-
zl%iwI1EY)rV4o(FlKTl6V`cObt5Eq~*@94=7#!Gw&p1VJ>JSQ6KIh){6n$nyG3h%9
z(WVyo4kd%u)5)@Z<YuvkVF#xM9*E+uI*DOBrSW=@WTd10boDVk_n`wC<FH;&BYtsj
zi3}XSy8RSrBvKQV=;V*l_C+eMsInst_V+>4Mdf{~)jaw!$HeC}6y>c$?&>hOH1DIo
z_(`>Otiv0*CRHka?}uWR3x!=2L`FLF6;l(vDduQ{(1GPgK!}V6)C^~sq2OB+VjG5`
z@8a;<d+q2XO5n;`^$~hjf4Xk|{dx?Pr&b&tI5a{cnGQ0;F2pajD<<0oRsU!&fR$a+
zxILhW+y@BWbVRuRez%RcXnhZlRt6pud-GltOY85G?VVDl>%FaaUX*c2``O+*#7`>A
zcAX7NbYO6%RcG(%mN6a%t;fzt=koSCdKqWyZ7G+In$=}5z^_`TG9;xNs8Nl30zvh<
zkTQ94#q<GKzpQS+m?%9^rnmW_Tr8hSar7Ak5=4F0pOWspU$F|R>DiKof$ve2@8<%*
z4iIx=nF5UrU0&hBk1)_%ABsQ$kXF&(iGg!}6`T=$inqn!Yk@!0QHGm(@T$8S9;UzT
z2^AQ&iLSXjS(SfhIP;?^uK-RSGbqat+{H#4iMh}4!PN3W5ib!%=m*<<ZByY`tMEy*
za^P!Z0E#3Z_3i#~&4Jx*V*MI7(9&3{$z19s=w;{f@_WrDl;q<0Md!_Lis&9W&gb6e
zKAT3ewxs&?ozb4mhaCURf;KN2h^ps(#^vfxlIBzWc6T2KIjmnOy;+WRL^y7G83>4w
zW;fxB)y42Q+!pcHaCv#5q2(ZWe9ZP+Q>DK#Q7;3JJkoAEBB9Pyuiro&8%`G=Bh7_=
zKrvs;T!W0$PikF;u4g~-yn7jDKe0AfJgU(g=YObZuW#5{=T-tW{C42k_4`Y5HSqDi
zucYV&SE#S?oL{9{#WHToGHJE#s#p>F2fp{IzpNuU{2A!{1fhi*9xsM>UnrBZL-Tn`
zBA!lYa9(HA*Xb@|=Fe^X0CQSFDb#6#pY3~$cH*kdWo+>tYZbRl*GJ$#V)H?T20l;`
zZk7ZX`048()IM~E7wQw?kMbL2>?_Rv)l0nEdFSICk-$cqnxU524X3Z#=K)9_<4UUd
z)c9tSRXuja!A8>uU;k`~`7^Hgc%wcV9u6fMOY=CtgmXu{^?kD<rDVw_C+FPTAYASM
zai8Lu0SGHG-t6lEJ{1m!N>SW38^YiVJt?h`MUxhw9wZC}VP>C$cyVr{V-*%E<9~ZN
zf>y4@YBHTnwO#>zafxDLBpS&lQAt*AOhu&&Vxj1dqhf)52X;|HFEB9u9g&9e+m{P3
zQ~oORB^2PVb)e>g;ep89T*AScXUug9W&(oGvp(@nL=SfnmynqTrkDAchr4AY2J*B2
zxa$Gwj~9AxQE(s$lyi3?SN)|qCcu$=t+)rMT{l#E(lNUh5YM3_&r#tWm+$mIZ!3=0
zbZ0w`X#!W0p7R|YlP4$e!nwBQ4MK-hO89rF!}YHf{qz8dM8H|_FSGu@*EGX<E=Is%
zNpUWs7rgRb^UJoHCcs!}ch>8C$}4wfaXJCtPOJwFei7BF8E}ZEwY7x6Bm=X~nXBEQ
zLb_t#*Cza-=9;K)Ky6jZ#jf-$)$tdr1zFFCo;F^mzR*FSUlsD&#@oByqjA6#;Ha;3
zF&WeVghjy`!TJM(T0ZQ62tsJV$Q&zHQ+>$4Fjp7~^Tr1TnecaW*8BTAx(rRL(aZ6J
zo6K1$yZdC1ufOLbEYV~Zmd(<|mD20KW43*B^SGIhmlxLdBsboR?flrzY#b|!{$c39
zM6fR>#XsEyxr_H?2m+aw9a1U^ihepYC|ky@06MC{&q5mUa^=}H^FwNS%^r`yon)Xu
z&n`DWU54sJiZ+#D8PEg&WmTKs{q2ZGg9KKo?Z2}b#k)(vAZh=(*+@Ov;1X0JTyU~m
zMmPtLV)LGq^I9C{JS-#ADNiEsHNDCpN?oinWXRPvR<xt-;|{vT(>?sB76fUJW$>@@
z-?#hr7Q~N}giBI?TJM2gg1h^3gA{F|5xWnsU%FPFDyzQa`=V?MrRiHKxf}jS^t2MF
za&6HWnp5i27;i`5V-H0rIWQZq;qBnZ=_T}KHpS4_cL;3X&jSpG|BPu+8UEVR6lk{K
z;BK9Z-EDF{C0Vb@+Q?c<A@+7d^B0AiZOa$WERQ=ln##5^(bsxsBZ+yc?W~TBWLRlE
zLj|TAn&fXF0|odNZ|<xOjD9?)#bTN!pBJ=r_9qw5i**SKZYT>+x0XX5*5h#dbz{Xp
zqMa>&vb%KS@p2Xpc6PqcG<j&<>=zhYjrd(6nCzYkZFCURqV=HJY>BxXOhBWf4>p@c
z-JN~9BW~Y10){(1of>lbw~BVavicf|V+}vK|I!GtDnIu%%qrmB^PBH!`}HXOHG+40
zM!>dk1b>tDGTHnO7GH*6t3Y=4&>x04=gWq>2r3`AN#lDV=dq}m*vLtyhaSUjUX@!1
z>`VcfzBZj-xdkXU1Mq)scz7ijxfgGK2%<wQBbeT*E4>h}k<-s}qZ*7iCHTq`yf0D1
zMN6Knmq)1qp9!18RT1xZzvS7h4(h`JoFdDiP<)hYp?<J!YO>zj4Y4x<I#Ded=$Z75
zEbn6s4_=XFlp@KHLzn~qkp$?UI2D~no3o3o{ShbS_DCY|u$H@nT@=GDb)^m^JxMjk
zIF$D19>+%tjOQ1_Ff9sN4#v2g<MwO$ul`+8$HZlw{JhSOgm-lIJV-m3bEu5VZ5K>f
z37`>nOA{2SnR?YhW&GhdmEsOsST+<TK}I_ytHk+gjAW8uYz8HPkvJxoRoA=)LkBAj
zCh2T$oj-e-j%j!tDI%%XZo-$UP-L!gXYTH{pS|9myHp+UeBYnwJa~Z(n7rEtTdZzP
zwz=uw?^T_QX9#6A%P~Hpll)HEiVAiV=Ur#vyj>}O^`Q=EJAmZ8ehJdxESth6^`e{~
zGML9%)EAuTiOk?6wYm3dVV_@NyTpB{qus|{b!b|czO)hekY5#3IIH$fRXa4@X5|RJ
zD(7_hQ?&XRz?+)jJs6i0VVSr;q*59yZb<Vs=QZzqNg`SE0oRM*66QpX-XTYkxVD&&
zA+&N=(Kf2rZESEWBIJQ7TdyV2<8IR+=UU-zQ4X94_(mt`-~6S@)|kGpfPR~5x7!1C
z=>0$RKgkr7U%9zq(Q{!uJX@t$s~mTu!?~#JGk_S=n2*KE9BFNqa#n|Vz_u?d8JT)k
zomyKO-m>%Mlvb{{wnA)3%%~Il1TBc!C_BjNsiK0A#W0ahG7_0xs6Oz9XfVWay|pp+
z4iF~NQme|T2jHCJLVl*L%(A*aT{d>;xILCV-WWF$k~e{*!vlNR+L*IH{n(?CXU3DT
zV38Q<nw2eEAG<XCfv?}OO@i+GTSjLim;ME(tinhnW-!nsZM;7sksgzrey%@C!tv3y
zjCMGR<M;tH<=64bU90d=PbM&z?j{QD2D%o%0}B+Y8)(pL&kOXLzzGs@y6^jP&bKz7
z7gx`NOt;%*$M<dE9S!@T!JS%1ZmbWc76FF|lZ5rXtT2fp57zS7SIhv0<lB$EU~@zF
z>mNQqtNDy^QYYcFT1bsQD)ekyN#owK=zI+}|J|I*^)AYr7xmi7Za$j#T*MRhk_ZYP
zg`UaD>c3uH#Vr#01i&&!#c!!wVH%hkg5tj|Cl*7xq2zxV+<52yN#%`)vwwbQyc=ah
z=@vSM?lBDS;^j8v%J+WRe8=a&)u%SHk03lSFp$C*aP5BNn`e25dyi{~(7U}oyMQ+u
z8XEpHEA;Y1)#kB|Ll|ZqzFb_zX&XXtBa$!xJxP-k7<ZRf92*Mh1pK{V{^*+jAWz>!
zi1FLWag8e7ICn7#f&)zHh!l@5&8p$uPvOUpJz0Qz_X=#y*(0O$?sc*2ol>fx_Q&HF
zmt$3Y;JH0AbOr>OP%dPIw(3j(qfZWXmV57B2hAuEw`0MSLsfMQ%iZa+3Y8Gv2726e
zVTyiyRhrWG{xGza_i}@#e`Uemd%VgoT>5wZ_m@I#4dz&|t)C#?UUcVzOGbfhWN~^8
zu2J^j)m)Jr!PB`GR<8ph){Do@U$lGDj#8H0_COcrkyHo5T?pT|_o(`R-MgGojrLj1
zct(Z3*8d-sR|V;h1FAPClZMz>amQ93diq)IOuD#e7#ZI7of9eE)17Ug)V*e0m7ubc
zLbdrbUO?y7^(UXQP;V=j^B`xM*q#a>T2JZ<W37t5c1oRLAg&4Cb2SiGNr{Jio?-=S
zwEk0%fR=P2aZLr=XCvCCxp}c5mQ#<?;`8aH0j5KqQKIuPyQL7)s%s%V&gAq_S7TbN
zMnoT4|DfleRVj@%JlYXV42R@Ad6MZhTO5t9yz7pR^#P4z{~56|pvy8TKBve;s$qO4
zRnR&p;-pCK1YT?fQHum#76g}A+|q<A@9*}Z<LYoO071jEZPelnFjnIKq=W@M`4Tas
zIA!}Yaa#GHzxf93-m6`HesPdIb!FF9Hr^fx8f)%KQOsRe^IZDT+H9!QSHkLe!`a8C
z3DWe{s0HN<l_LG_f&B>EV~{)Ws!ic_qbm>L1R7cgeJ)NX3rGWF-P$|*Mgfn{ueJT9
z6)!?wikSV4pN?>)13)oqK|Kv_tBp~RXv~6Tr9Dvf97zM=xC&|~5X^qLy-Rsw5T&Rd
zTiq58%xUU7hC8?r)8!sF&*{=x+#Z^nscmf$Ys7#pMbd2zm;%Jl-I|t56EbzKHrX*u
zCcQjlm;Ls^2^yG32%toa(4d?;$sWLj8*#gs&zG;%?eA0Ncft1yiC2yy8NgJV9vlh8
z7ifyH-7}k>kNPO$$~8gkGx_msNCxf@bR24>X;C5HM!L6mE+RE;J|gcex}{ZI`dvlV
z9+s6n`HV1gWT8ikGYua{ie(51;|HTSKT{G>TpT?ni47DSx}ox|g`@pVZpj;TVI>SP
zE|Z#IE+jmM8jY_oEmnbJES^yNKm+^(=n<EkX4pV>?wtvf;6=)jEKyAfWf9)M0Hut1
zBEt2)(TJ=%Jr(sQxqyH|T6Sux@cVmKtz0Zgjo;y_kltF|57@}}Z6o3!iC97<+x{@y
z+V?nejlDf&D$DYC!|Pfyy`S_hzW^{>of4PMgyF7Vw62vT0DS_8#p;p1IZ{UoTA*FR
z9x3$X;|yDxceaHp=K~MRl+aT3n4wBetd2L4@a31_d2gSP%6y)N^g0D9$_!08oCW^;
z$*S09gO^gwr3a7Y#bpvIW$8r!0u|CsCu)HHQ7lCJvHHCo!e5IVuN3PO9$Y`+5&-e^
z`+WCFGDY9%d<Kl&9Hi~r8~8!Ixcsa>K!a1mS5PA#pfaZ_;AN}>)jA!>djea>@q|jI
zE+EeV#8h~=Lmf7K9?}vaJm4&Se&>pWj@pmJQ#v9GGig4C#@K#5k6p&C#*&H@L|9>}
z+%c-sCPEtF!McISwAo_OwxOVcD1*d&2;04%9HrhxbwFv``37S8b#uNzScUKPvJXEF
z5mIpfuD_jk5DYxI7C4lpO>Oxcl=n&dIbo(z3phI}0Suzkyw4l?ZxX{@XlLisUxFux
zy3Q(o<TaqgzElAn{>Ikv?Jh_%0o+I^CT=va7`KGaXdILe$Wlug5>R)+!IaUoWdc*A
zL|TKxd65M*`yUNKt7+B6Sz9H{<pfpOP|zUB9dhT6ZQqXs1^$}WO+#d~0{QVP!w(UG
z(SJ?c$3P{FE}?*LyEjbvwQATd@(ZV|g8f{~12D;P^eX%MJhkHc(+TGu!fHrHX%||^
zZ8}eEXL(I&Gf9dN(hxOGXid$P&3N$YegMZna;DZ&g2d>}URH-Z`*_ST<G<-<X&Au)
zY3KDa(ZgHw$H1FYl7_u1{m)R`yU)clbY%T~pXNwq@=>+Wc3UxC>|Gw(OXtB`P;G<C
z0}Kg6oA9ap$2@uEIo3vs1U+imZH#5ROIR5hX=~Q(X)QbQCWy&jZ3lnoEamcDn^*d(
zEm2)vN%iVU$19%j7}}(Y6$K8vOO{Y<Ys4ixTO&OIRzN~;k>R>olW@HU@fPP89E0S}
zEvA$S=cp_mH~A8rtl7duUU)}X{o(YkM8>jU{SHryWp^<6hJbKZRB6Gb-fDJrtrvZZ
zK}~Ga+((#w>DSR!!S5A7K+jiC@cTMIWxO8Ea@z`iV)hndZP&^pjb<sC+15aZ@NgVU
z7NMloHXZHG?AR#u5kopP(WE-#PZif&ZJpA4TL%))E3oMLp~*~+-y<}r6I0j1;5k<D
zG36aqFb-D?BF1d)n20uDX&t33MX6H;STV^NwK#HTN=}!mZ%XmcSq3`8->?#JVZ{RI
z$ohbU6Zt%+kXg`))9J5d>+3zC+cD-<4$4E*G0rig?-~Xu4)uky`^I?inIO-At@3B3
zvo#>Yo*PmtQyvkj9l7|~EYIa+>-ejIFD4EqW<mPFB}v$)F!<3?m1XU_9#V3}WY~UU
zO<6eeg@gnJa?8)h#>?!IQ9sQGTJ$wtN7e9>_p%f0j4N@66Os%|Q=;BlADg}f7@Jx{
zo+qF+_o03gf~7+S{r2~Uy#|yAv#=y*yPb{`8Qhe<B+fv!43HM}{@e=mh)IQ?ELM}q
zW$|js=Lzzmg2RG{llnpNKVFs-6BFYxsY|+Z-+=zG5fn2eI10Jg+HcQpvY?Y(n~v~c
z2GwzaiWneUf<z;=Lmmt4cV>Y8YYHiZUUWqk$fuLGi_U+mQfbpxU|lh?;C8x1$}$v?
zHOKCCZyi<P0^m{(3Z3#3#W@P7Dnj5v^bWDuSkunuYb}oP@MSTeTtlB95V8U&K`bIY
zD63e|lw$w@JNEJcG{!~5?5~XRCZ+)jmw~~-QO9RLY03+Loxt2cU64Uxyj%d+7|}HE
zH&k2=45xr~02Kl1>AvR^xM+81Fd;c0;0i0o_bmXhYX{2y^nA3(drK!+fGH3tVK)*8
z;kf`>9#QWlZetw4$O}2OmD|T(XpbB{2w}?XDySQo&qua%VJ2;lMcCapl|&^Idm0CP
zp<QHYGRPn&x(O&GPG3HsvVkP&<3W;%06Uq;Wkhfbl%o=>SR(FY8Ikn7w_48A9o-?F
zz^jRzUMvlQ@OOCg5O@Fe{n%NqeMcE8Ci}9(TW2%?|0E=UNm?_J3OV==v9k@FGNr8?
za1jJ-$J-e{&Vro4AitRbJ)8oA5-Y%w(hzg6*)a{N{oll?G{%tjT`}gL)<Vf_GnVOg
zqno+KbJ$@aIV{AS-o2d8pXE<CDD-$zin>;7PRj)@*c|-yW?UqtB8xSKT$n5zm^9!a
z-G3#5Ga!idVdJh{Y7XxdD3j%MzDjVkE7D7!)g;ROZwT%DJ7m#B1kLpGK3uQv;nuI0
zRFLoDVh{;&_vq|(u$M(gS^~jY#(GeAzGBY!pCWG-2S^Tyej$^fHpQ+frbJ8v@kMfl
zQM1pq0W8MoP=;e^7&JVLfrOULisDA-YA{cq*?wj4^3j}lvZ~=&Mr!hF^#vYB<BPW7
zr3G+lMP>N3(>y7&2fy7HQ_#C+@MNMhi7I7*Bn}D+RlXH3B+{?NM-;0{M>dNx<$3P}
zOJ3V7NZzO56Ht$}JU@lSq&prepJ}Vw{btNGXcLRBTkcm%OiCBG^=}9|URHzuu&KkX
z1GAE)a`kl#vHo~`D2LissffYFc!#7^4w)b5H_Uqc4Mm|)p^|k7u^*rvlk<4lm*{@g
z%r<06@}Dk%Q)*BFt!Z(wQuN~|CWFX^boW&CB~X1sUB2~p@056bs6ljCzV0=L%Hp?L
zmUoSF*l(<=r5Z-yBp80yk=<uO-BB6rqq5C{^VWp*hUU}~W9*E%L1;WUc9kZc72AZ>
zl&Xpp<mZtK37O^9*axux3;q2P@rjBnX9AHmlNEJyOBz>HC^l?s5R0iOf;Bc4^9jk)
zT>1^qWh))`0qtXQBduFPE%WU|ifYVc(?5uhG)Roow3>`AK#h*6x!zK*%+AW{!P4do
z5Ctx*0ACA@b~@#1I%{r1N|?H_WD%fWsKT)R6egSIR0(^2zUGd$=dx6!g6Qave7;l<
zYjxQd3>#xl>jy0Qo2bb5>ux@aIeK?LYhg&d6}zHUClf{XLNtJ0xRDtv1Vpxo-Uh2h
z*CVazV-U!p2MR}%`!dTs=tmfDEl~0L)JO9EO{`W}jF&xfYDOIMC$Br9Xx6{#?+yq}
zQhZF|1N^}6c5lyj0g7Fp!+uA0Pm4ygeuM;jMR#{jL+kU9-UkZ7hAGYtUMjNnCtaGr
z36TnG{;H8BatgA?V#fUo#X`PetUK0+x<J^=XiPJtyM2esTvrov&Fp&>q1_$A9^`rH
zYJmt2*lE~rek?JjcB9>05ew>Ch<aVhwgML-4}kb^b^~UF?CaWbjnVyMmiCxGH=c=8
zX}?WuzW)94CR$U3*ei#-;pZ;Pp1X9F*8hTp5`fBW6b&nda>alcVCFq(xWB)DomA~T
zuoFhZ4=WV|(;et>HW%f2h(cJf_4Z|RzGF0>JSYP;Ci?Rwte0IA`5%G@MolO48*$N3
z-ixT<1gEm8p0C*aH{)!c>yH)D%KEln>%KV+nq!k~baNZ)J#MTHtfT7gIw_EY{T~%6
z{u@+3LUYFXvCe<d*q_?$oObCz{x0=A{re&jW^Cu@*u?%J>Eu}L_^mSfVx-%%3%b|(
z3Z?QfyKQV=d7GPr09NHM;eYfKJ*Nu(T`N@1>s2d`5m3=i#GT0%R{GLnNy$s6KYG&?
zMm|Gph<0XJwKbpH*{Scv(W7+sN(+{+lL6---F~=WB>37@Y`;!LX<v~PiI;Hq5%IgC
zkx#fo820~R>@CBpT-UB)MWiJ~q`OPH8|m)uZlqhJySt>jL%Ktd?oO$RG?R|+X6?P#
zqia9!_r4zdn82aJJ+JGGagK2gTJ40#?B31Esa|bu^3h&bbSN&BR%2cywg~i@<~O~5
zCapzzklIMEo5m`mr)=9qq<DTNSlvlQRbmyf1enuPU%I6|7Oqw)mCu#W*|{#+U^*_U
zbpb;BGngFV)R7Vd2+?WLwgMp`60(~rQadfrAGiwgo^l59b8arVsGQAM#$!A6u{_ol
zye3AGN&a<?r$vk~IEJW-j%|fUPcI9^4}>621dUizPB8;qh_GPOhai7Jh}s%%!wO7n
z2J9`B_HO8-;>9@&?sN(OPfCUk0(oGeFT%v><UUZY=7Sa*f8K0@er@l2NG0Thg*NE!
zC43!nKTH(d*)LTsFm6@|#>jAZVZIoUJ{g#+uVADJ*+;&A-z(E7yg~lfMF6S^!<K&K
zPZ7Aw=~|Ed+~!|$8F+~-o52B&-(TOZ?(0SI-WE~TL?V|8%!m5?2pC5rQkn-6cNr&g
z7!=klLiXnM=~lgqd<*-e4#rcUsgJH4)aiR}AELJmk8PFoW#2lWuXPrAyi-{Ov=HoR
z5Cqkp?Znvy*Wqk)s)`j0H6RA;w-$Mnws>HE!kkj9D!StRlJ@&B9*jN0p8TUQ%e%zK
z?_{CN^nE5`4C{Hnmqe8tajX__Y_VIC+?g^tHa!BzWMyO`(YxuR;X!yK>C$W5vA>%h
zc7_mqhV~im;k#IOC0czMi5cJ7wTyfAv#q@l{6%Gt=zM%NLp%P`28A_9|K!Wm(&gTY
zZrpc@HN_B7CKV^QD<M@}>5j6}$BnRKSU#u+|IS!a$=g9G_BVgs0^di8ulee3n&GNC
zt<wcC75ZsuTA+E7id3)I4<wQ$NQduCJzG?1mzg&MCvXmsl73W}CjFR~#1I#jieF8i
z$i!HBhw~0In}@Wa=)l1Bqdzk0Dl(x6&ApyqK)%%#ulOJy>4?lWrTh#}qkie-eKNO6
zyuT<{{ajCDIH5s*TA6=H(cJWUto&|P@h$8GSSqNPLw!>o4~H<djFu`P_%m>J<Km;M
zvs)#W>z!ibIkZaP5%-CEBTnjIWD~O`2=*(Ar@%y-(Bl1h4taLx5<KyeA>2F?(-aDX
z%K3c?g{^r=KX|3>@cj%uL3%8*x_tU5F$%herO=hsC*BV0oiCY;@jPNWDYlCtGj)ew
zeLV4oK%!$tWlw<hAE<k3@W5W=@dLBOB^HQ~7DS<mTD6D{wr9Q?0AdKc8w}+6MbOMb
zWmC9ad8x9{I+U#02_$qiI`^&hYOA`3g@2*2D<_vaLJrp!3i5^}eakOK^>RVE9%|zc
zrwi2;*o5vVR5+Q;U2jE$vGp4}*s+ATw(^k#+5H<4O-?wWd(^rRvOWD$P-+F&p<fz*
zO+nuH{%y<)K%`WZUC|LtkSV(Dv_rpBcU6cJGQ*oB!!IrkAgELpp1I$7d_GqA07z95
z6C%LQmyf9uWJc_xQ&Uq;tioQvn)`y#HG9C4xQ))P_xR%nCOids6O0mP)72BHMO=Nd
zc5E~<spz~sl7qX%j0|gO=&Lhd2+?2?zY)xvjFAOUH0*Ej^Cjw@Aw;8U4@<e*gr6aP
z$4eYK_Lr3dv{_}|Jg)kDqYpE0cCQwGIX`~$Ae6hc62uX^&O8y~|Bs#h2RWEuZdc;y
zAZDr1Z$9HYfJ0tCrW@!;Zd)LI&IV>_$Mojr*6}LL7DU`iV}J(vMSQ;D0s3K72&Y6V
zz@2qF1!Ht>>u0$dty_DML374U+|w*HCoFv^EizmKxCLCjD}_$W&kUCG;mWkQ;x<&S
zBVXLfsAPR7G?T7Jrc|Gq^$7||e>3=|HsOR!@Uq-fch1t<O>@Q)>F(j0XKmbi!;M$T
z`fZn;VuZ9PPPIMk#$Ncxq*A%{iL(jnr&(~#fRWS5UN-i*Y!q6j31>H4Dmf?0BqBW!
z1woMAIg5RGBUBea(l?1Zvnz#+)F1UnV|g7Z2|;3qio*YWTF*Hzdb(@z{wFzK3^blA
zzpfC$TgF!G&DUIjN9v{HHDD<VY03HZ4B7iKoN06%50=4Ri%Z*SM)~$NAvyQnGb*t-
zwLC$GFxSg>I}v3BI7ufapPJplsNn0cM|8F9%(Y*#IAC1_yS=w{yM)uRy>n{gc~YBv
z-xG{6@hIjXi0kT$@RofOFQ<0QQg#$$%Vog*+(XYl&-eTVh9NR&V<w^N2NlAxfRt3Y
z%+kjq&Ynx??9ysNiz6hfk35M87prERh?lF2yDKRaXopeEww|_xat%I+BaJH@KqPCK
z!ao3<pa18B-xlRVB!XRK<bgRHjz<{t9qI3>7<ldLEl9x4sRMg#khgF!frrvVl<TB1
zco)x3uLQL_90S_aDyEvxHbp?9ME<Y|g*q_!O^Y=1RwN`mET(_R0(W%bKtYEv0b1Ba
zIl^DW-&{6)f-+=NVWY4uf)1cs3Fk~H<Q1Gm|7^dFJaXCjW*Z;s1)aBW7*lWyg~@7J
za(NFEV{Gi5-CJ~<a0h2J-dpY7+PtZtP48@%>Y5<>y?0~3d3AMeZRSC``AET@8Y%L$
zXEOh2Tz}BRDPgUZe8n>XufxEl{Ssm!kNbjup8az3+-S`5xQK((Xu8RP#6&LC=2%Lm
z3No5-NYkix@z)#GOor4pX^Hr)_~3c76<JBNRy|hn{$Wam1XY4J#^{rq)`_xgWs~6U
zT!Z>`23f$s7Pia!YH;g8)bH5TXB~GB*wEV`xcuzhA|Uksvew*zlVqG6GIgbXmOauA
z>`~w!NZyTu!b>O^)^a3_Fvjp)s(e+1fN_dI{-LVtRgdUobp^rhxF<)er&*=vi}(g!
zev!Z7*_kyAr&`Cqnx&gw>n_V}Cxy}FNbB&;9k9^l=#r6;+Y^w4-M5l&KE5PsBXep)
z$j0Cv#tp+93ooE;wT5DHt?`SdO)jEQd)OLbO0(K4tmW{fWZjU9jGlT}k?Fm9;Ti4(
ze%yEn5JT1PlQr(yJu>CHOL;_G;#hBiieYTGZKThM`TgW{4hp`Q>vY}lemUz6ZC_Is
zeej1n-e1S)ggBbRr8xeV4*CAp*mO6SsB0ec-{luYrG^Y_n4N|-@?)t^fN`KH0?v$f
z9_oi?z|7V*R}&t%-0F=saj5LG68+(W8fw9aO3FVpG*kPO)eSR<eeEV~NWVCe^-CIg
zmbw0*s>cxauMO<t%EP3mq7;}D@;*AJ{&}HUIiX)^k4U|6nS!Uwf*b_LfXi;n#Ooh+
zGR}TF1V7Wf@(C!vR(MSZA-u{cX=V=#OQPo~1~lZMH|mhQT9u(>GYGb`w#C(y@{R_`
zhcEV`XZ1(L26a3$-$k-gZxDmtWYr0$Vp%fl;yBFFOl_UWj-m1IbpyJIN|ozwfGF@C
zFc_FSe^o7t`u-~<w-f2?Fz%4YW(X>KV4&!}8}m$p#<~6%NU_h5x9~4v3Lj6SeD*LZ
zXh%5@Xqq-dsg15rHrzv>IXl#qtqPg$pyEfyZNtog{s`>X^z(ZYxyAsh$>{Uw`S2Bn
z8?dP-ZtZcJdq<~b7J`kUakI<!)C3ub?6Z?%O2W$8(4wsYw$nC6(03vn=bnIyq2{Gm
zLyElCN~f8fTk``rrQdgXuQ(!*=FTfS9^JpmZSs7$Dk&~5&S(%wb|>CEtc#`UbiuPk
zV%{QU{P3hUc6i>u%vn3S6CpQu(hb)Gb^JW6I&M9WY)=xwWAz4jW;#D4sn5)Qx5Fj*
z5DmMIg*DgI@5#_Sj2ZRE_x?&j<hZ_xCfn8wI@XUA@<f7^9#|y_(1PEl6Mx0|6G{xL
zX%LKF3(PiGqxip(aVX={qT|Z)mM%ehOBod?fl%E0MI(5Awmbb>QADELc1Tak=MQ-?
z8sTc!0(bpJ3rAih)_HXBVK7O4*bNd36>TL+$Sby`&H52P-V>Q{U--J04{>c4osZRl
zQbG!LjKmjvt!PvI8^?#|fa<6B`h+Bf(>wef$t*f$Wwg_qSU~uA1a%&;hkCfe;shA2
zZM!j0Iy8=kNk}W`;A;LnA?GUd7EDM+h0-S(+JHsF!;x-lu6d=P>n%4duey_kNB((?
zf>kJ@5Y_*&1=tMY;fdoc2JtF|U(qXt<>6${h<YU{BzpV<_z7X{xIo)(A<1D~?fHp~
zYeSqsTwgBP{!s0>RlZqTdo*E50}SUAc-2vXopW((07Xe-+>9HAGhyy*RM^lL54}r&
zwbkuiB+%+s`8A@fUNsZj)Y)pJATp3A{m7RUjleRlk-e_2s*)Rf3DKx0b!+gY%N6{y
z(d(2)4bauH7<)8YP}hbD%ge{m_3hR(Reyb`#hg!ADc$)VL;NZXd;?(VUv}_iO<Z=~
z_&R;itTT&A04&Wd9=HPD=(Y%iuPi|cP((bR^S?iCzr1*Sz^6yE9=@s!^I~8e`0wz+
zP6&C~dY9+V-ks-q2W_4CP7}->9dt5YUjB$p3`kqgvrN6)dDk8`)7qV_*%FYYx*HDp
z_71)sa`$H2a4J)nDQ3EDc=E`shR(!(6J$HRd#*)pxtWKvA(JiWtRJkresPrI2?rEp
z?%NJ1R%&bupjn@fdTm?lR=Y3KD~-G{5Khh{?`N7-iBufM|MGEoUr*C(YHaW0ImwfC
zUrjk}Z)W2l>p5?ge$#%;fDXw?5Z}E36cS#UD8E`8*KunthN$5j$%hZHuGSC(MblQr
z^oZA912xmOx`I2Nq|CC3p&6CMYhvHl40;Tq#fPrL@;H6UnG?NtRGsr0if|Gp+ZViP
z@Nl9`J^i<3QmfQbEhO{Y*F0vA>z;^QMSzl}1ho+ucx=P#UVqVf%#Gq*?D9*0NS%jy
z0S$Pb|41}v&@nd7M{Kbc^wj4;7Eee@(!{GqIhuXny^56vFipiZL|ew`=;%g=*g}rI
zuUg13FU)p)q2oou-xI!m{n{HG8Wv_8kIF_g%pzR)bmjB3tBUAL*lJ5u$G%GJzjkEp
z7c>MQtLCyqCplN(N}sl#=&NOiD5(ri<z1iiw6$MV6^L(|Q|w7}R(|zYE{5FV#U~`}
z%k97@^O%m}qyXmi^KH%sv98C2>3zGemN)d@0+Z^j5R`L)yfBveKJP}+#{Ggc#}z%F
zb(CosC=7ZXnlx7Hvr<;eSsHPfqXlRoyAHFRh-2w0HzB2kh1SEhdc9TBXPRPHyPr2a
zS3lZ0*JqArX=EjF6*WvsWz!CpZ}55j+%(we^EG1?@7TX^f`6aMbumag>3y(!{hU)C
zr5!hFwIZ-dhyM7jHb;{5f2!ku#VCB=lRZ~hmwvI@xm+R2ppPO4bqel95lwQK=}e*}
zVGj8vdO<p#fJN@RU;3|JVKc<pHc4=UBTz9hh$9kaG%j|XfB-TWLM80@Toe^ojpBvK
zh`&vO<2$r=q_ov0T-?%^-XI+G0^_b658JL$px+^i)h-cBgWqhzgUeW@XGYAQiy{iy
zu>Yxw47RQ1XTosP$#m+QQrWq+=a%knTbet>=d`Jgn%zV26X~3S5G7YjOYe7h_IFC-
zllp`ds=0Jiv9v%lUjxDn>3L-@TQ4J1bA?2Jef<Vd`Foc)rF@gy$y|??DrqenLkCi|
z-^ATA93_OU>W+3#617oNk_j-G3dNLle3|2w%_c~Cql<Qnt;RDMg%Uo$#bata3XD4z
za{8kBjQ2~Lm=v(UTe*5~Q|nfb9>U&l4FHu(g;3MNc?y}YqA$OpdPV(ka(J;q!{Nt+
zWfG{YQ)5i$qbRWXX0ijxRo{|S%w;S4=?+^j3JS51^3i1n{ae*-@6y)Nh5`kt{<m>&
zRo(79%ZBMtPwrj0w@h`;qI;t<3q>i^ZWJjWjMjsa4k0kYfOk4Fw$tb7PPYkEQtC(@
zJWXKsJUgtLNBUA~>vf>15=GxWe|j}Vh4TW|KPvDuG9EhM5~A<68A1+;cd=f6ny6`0
z-EE%~A1@{?9Z{bH82PE~PvnaJz;#(BJnndEe+TSV$phd$uPyAgXux;`w)KZJz>}bB
z`iUy(Z{ma+T~t(5<!{7yw=f2o&QJjB@Wvk7U+-km*KSem)osw#;FJuPbo)g<y*eI|
zgG1EO6T?fz{Y%Pu0ja>~uH5(+NSVAFV6^Oxpf}hB9}|<w5i%iOeN0=yqY&#OK82h7
z8LUoz=5YcLwg*Sp*2?;F_#XCUje*YcHUN1VM%U}K4?|PGV9i68r)b;+nIy|$l;ids
z0Vxu>2^dkPLCBv07mya<wPenW)>Y#l3QE9Swx4Gle+TN1oR6KmnI08djuRg*K|G1P
znQoO@O$zWF445z<PQ5hSJ)0gM*Uy8Ut^zmKUWLyoTtpoc3KzpLAnH>b)t?+gxn2*u
zwhe#(KAw5$VaWR{?tfB&*!ncU)Z}lGUpFi4V*af=`K#Vc_lIQMrAvriIUw=6Ptma3
zg^7wMQ!V!w?UQtSd}l9QQZ<DlW4W!aPGwcUsPx4Y24^NR;I}doEHcn6EwQdfjmbo2
zsZYo$r%Y>UZLT7ieECM<EdfrQW(Yw>$SEo&KJ{viL>uK7yU7o@x6Ri7g79ws1K|a=
z^>dUNEt$G|&Pd=4^%$<Vj$Duagsks}Npal{uvoF-Xtn-klT~Zv%S$xPyeQkIUrYzo
zk>sQv@i@1xr3jgv0z-U1;;M?oR-$B+_a_L;QAD^rPTe%vLqE(Fv3X9Snp>1jc-jwZ
z*Gfh8@bL(}!0wMDm%TjrRr7=HoC}HDZ6g2!GVKHaLS|r?XOb)ga+u8Xgpo4dIo{a!
zn5x|{2#r-uiV63cn%U<LhU2<7XLVKscSBlgsj-|^r+84;vZlp}d-c?iad8fZ%?j#u
z<Vwz{1c@C8`7^XxYd9OP>l6IWOJpYk9qjK=V?oHsSh685z}D-a?M|-stfza^4o_D(
z|8*1tUMsq1XTy$6z$x2T4L*m_)!NUFk%~&9{eGMNAZZ^mb8Vbn5Ei-?omvHk8>gEf
z(mzSWb?<Z48>op*0KbO68I<+T`KSbAj6;*o;O}#_>QQMkwd8}`j=2dqo45&|=)D(?
zU|Y8H^IjO}Z;luc@OV7Ui|Rd4yXB2pd!?0ISXgK&K**bhjIoJshOBRJ*uP$W4pc))
zd_ett>j0~d+seN9CJWXTz1QQdnHf^odUpW46G|kRHK==uk~`=!4|lA!w4~(TyON+A
z;jKY8nx!dWOOz=tvbU}mc;=QX`1lN<bX5o~tpTwi@iQAO?Fbf8@;BAef8s1;FMkPa
z=wr3&J$@RnaqhPG?{fB45Wi&YS;PCR5+R4~+^>b%8mVc^3Ys;tsDTs=hUUKPThQw8
z-8-nPA4aMl?V5gh-m(<)%H?rmQ8DD9!dnm;Xu><J=CGa$Ca^)93Z|bKy)W(y4#2mn
zx}{xeldX@KHr7Yk_+;0kLb+70nh><-je^QaXBeD(It~r0FF~Hj9p#%UG3AsR8H}w9
zS<qmHwa-qe<Pc;IIn7Nl{XTtaSVvG@A?6lPW*L34ALq!HOfQ^dc3e@67O#qd6Pq`@
z!AVcWA|6!2dq0R+itqm;P~d&YC)aM_dCOsZFlY!-%<D$rpokhkTTnhHMdz~I8^T0D
z-V(orsg9^`Xejh@JIvDb;8E;o87R@_72tQ&h|E%(sH1<pmZzq1npg~yZs2V$h0Eh~
zNs#fdKoZ|RO7Py+u4h5t65YDed@y-erq~gu6Sq>nbsDL=+<@o5Lbq^TX%jIh0X%9i
zz-f%tQ1sTP9(E+`HbWcUQDuNPvJLU}cJ->gkcVffhmjb6c7DF-hg@M{S#49U&mDJ5
zi3^Q`fS8VddjNR@|E%680B>wM?Z@7JZllK^GF(=R1C%eF$=-Cm6OI757`V4Qj(gFU
z;m`sE!*$h2FD4chWqI;>a8vI)-Jka{1EZ7<*xM?&9mH%bZnrdhh&x!%u~$D{4KQtA
zI$vHvZ6n7L-d}e4K}$Ow1V1*|td#H=LWvB4tY}KBB^;FtxmtgDElgdq%+CdK@;vZV
z`FJ00E$$jlo>0IYhmaxE3=W`V(Yu-oe?R8;!;lTu_2cP<d^{Pl*g*-W<o4?}G+J*=
zrte>FTe_0dT5l|n{pr%c>XE@et386PgF=|ea(H+yatla1+B@Tn^|ID44s@S1Jos47
zS-jSlGkFs^g!T}SZm(rrOiER5Dliz>JPXbLIK+0XkiX`t8}SeaNAXIZ>ZcE#ac$SE
zWdA6Kp8o=}|L29|D*Tv!csBE$U}l|@=*g*fIo+hCqf4yAo;fL(t+{C70?S2nIXg%P
zb^w@2TT)ieecpZJ{;QR3bqdUN=Z8E-I|5YYhrhrCR95mt!fGyewcqB<!Fjqxso1^2
zRmj6=TbP#A1C%>RT{)SGnqG?57ddXRPnXatOP$~}ci#bk=L59@`KD}6aTnN0Fr)3%
zz%i$|RfP|rSdY>K?&GeQK0T7|v3IKXYD2tU?LGcNf;}@)2En)5=Z+LYB4)1Pw{KMN
zy!_Nut#c>)2mP^iXUi`;fMjp&MJI+NI?6eFI^kfZmUqh&1k<K1=JXRq-49Z1U5Ny_
z7_V2r%vdXmSoqV|lYJuth)TbnAf&nMOhO${WI#}mq@duJ%S?F<jm2zOyl4nMJOAB2
zz3y7X2rJAz?A1#U2vpZNtztxqB7&o{q>mh$kdUBmOiuOkI3Zb4ODp|dw4iY4n4GPq
zi!1IA9GRb2FR~<E9U(h_<)Rk8hAy)oTu=0H+i{3g>$nz==@v~*Oh6v>nFy5Lc}@6Z
zts66VS4r1+j#pfsc{h%QI9V>j?w={RPq-o(VJQ4y`&*{i{saX-6TU!t0+tPBwT}+)
zNF;w!67bE<?jinXV!l9qNeiXqwG<_`6)=MBAdFR+i_RXI?pCdYu`6My9P$oYq@N^o
zZmOt{YD5}uFx{*8XSs&}jy}qw!xl1n$)e7hwx)hLP8!W<Os!*6>EbtgOssbmivky$
zXtbQ&8I!-jMUT<P@0jq;2xOQaGQ1D!sr(%ytaL9!XZTPzCQeb0!ee5lFz!a+H&dgL
zgUK~7Cc=;B)H0I6sb_{6SxltzH<1W27b%K)RF(W5={QbDI16{15)YXK7cW<_MLomc
zad#``U%oB2Dd-}$oLH!F*}kI^26NQx*1KFV6NWpgsvJ0ek||(jX(XYv^cSX<jjG4D
z&hKP68TrWp8_l1EoNPB`IkaWfFpYmJ?9Ah)oE07-AVPB;l9%C~af#dnmUYNmK+_^w
zFh$$s|KnQy)kggNm50<9kdY_zk<cC|1aBZC+Z#0=+!xbv{`tJ4`BfotVyLVf{T0b*
zZc9+38c7&g<*`Z-OUWeoi~U_^NZp!m#wmA0nCO&2)JQioYqw{9&G!vUHfa8p)No)h
z+x^8yPCg<|fvYVkx$Jc1CuCXHCJQIbTZewqgHxh-JCyB$j&7&4_|6GcSyh|6xPO6n
zbNV{SVu`!9G4b+>7ZWh=ZQE~5iYqIVfDUsXZ`eJ`#hW9ECcbCMxioqKh11G;H1>6~
zkE>pn>xq=FVLv+jjQh%_wPQ%34y<UxM^f^V@dX`Po3f#+fPysl9tCaNtsdDuPN0^u
zr;s;Ni&qS4L!4>47kUmcUb1>mXI#e1Nm)riXMkGXO2ry~1Okh*r=P|$-bnC_`hN2f
zu{W$l+kNr(!~Ew9yHCiUnULAD`RiV|!tFi|4W0tJHYywL2NO3?$?o=X5;qkR&25Gj
z=f<ZHxG+%t={&=q5598(t%#l$+4P>^lzH0hG-qz52r|S5J&{S!Wk=bdSAe6IRAR>W
z_3T^<Xbf1wK+3={L1n8%G`QGvSMDwKlo@Do*feor+RwCIz~=xgkIX^zH67Jdf|)M5
zR)S4ewI1XZe;-S_V+JCYng=4-uzA!-W%GJ8i7{eQYPZ4m0*&|;en}>zBRkG*!2%9|
zG%2Vmm2fN0Qu{`VdKmh<G7HZHu*|Rk?n~kZpnWMYIVbH$g@GvfOu|wn4;Y!h;<=px
z%ru5=+z@W%ewV1ubr^3-Z&j`B+(x!Gx|=|c!POuMJItTI^&e30XW|$7#AQuQ>c<NR
z>`0OG&yMHO{UTX&;qC6w=`w|lS{3bB6>H&WxOlWE0D~YzW~Q<%o`I3}!Li9>M*G1e
zGX2kg9+<^QIG0bsz@cn%OcR!m=y>rO^c!$g*$2Q?F8`uN^6HTw?wOto0Lkj;WO}EZ
zm$|8m58l>8AVoIg`$sl_E2pfz4p^<X(k_G8j>iWt?6>mrgagKGYI%-%DG4J#SY`%T
zp9^M&PS8qd?{PKE=r(=IH!q1YX&d0`_~ODhnO&&KP*4LA1Q)gPOY$JRf$!!?j!0H{
zb`xxmP(4#yh+=>ZW~5KA+|9ZhTDr6$@!pf`aL9ZfoAB$RvY(97$FsNTJScI*yDYGq
zJG)#|EybOiTRThM%<kqH<(^qAEiT4s*V6wnmHPwV@{LP=(aP4XG1Ea!v~v79(%#;l
z(Xbx@lhG&`5y|9js@i8!x6%0q>olvyI`Knar)7V*OI|Wk(!q}y+IbjJXV0ojEG(=q
z$_c>0d+6t2-0Mw|&hGa!Gc#v{<XPVV-y6RMjs?c2=0|-ut8-#T3X`g3)`KNRP7XyG
zY;N@oq}U$t1^=g-wlyuJ-`@DnPLdCo%Lm3!fparIH52$N)kB~OKUpOv=Q)PRZIrCA
zY`g38wQgAympTjrTV%*>zKN!$wxVKV)52qnMzgJH(a&jr6T3X5j&)gEA(@zvDPFiK
z=oJYNGnyffjmf0Z*Pn<@O{LOwIf}6}4JXKB?uQKvpEW<6`9ShN<D?T<oZPV#x`nC!
z&_Z^dp)=l?p@$_Uu1X^#Svei@gM9IoB>|)NIsOriS2Z?jJw1I}&S9@~&}T};^W|+9
z&9|O?H)^ih3c<~rSeJvXwWINXta#6Rq{YlXV+RKUoA^;U6NM)AOm9;}yI^tQVDVsK
zY7ZZLmRQNEeJ1uCcOC-y6@>zR`J5l|rpb0KU0p7y;ROHIul@#OK4VAgKMD1a<Rg^9
z9=?WvyPlD$sf#Og)jm2VCZ%b*ec-cB;_*D|X)k#RmkP>=Mx#y)o>badO;e1)!6q_E
z+c`zgszpEx*7qmJZaOitj?Hr8gpQ{|L7HY-{;DGV9k-jtp6i%f`v(yrgDC)*qFl45
z3;pe<(IY^Gi3&{^UPua6fR+eDMGT~p4Q5wK`gubOeI@_q4V`+OSwZufxDt}x%#R>^
zn}lqkDWk<Yt8GxnM=C0dpPON0@v?j?)J&!_a#!jju?Z=JeWd81jT+R4X!U0TO^ruJ
z9zdXp+IsH10j|rx=ra^!dVkGt3^6K}NRCQ0Fgd^$A>zDcuOlh`W~`vb_N^58M^=a|
z)Vh_U3XRSTgb$y_MkmtYDMR@hN*RP!Tus#Q4J9)e=9QI6MfpNc5!mGYF=qNb4*m8T
z!4twR&=+GEqpCTp5;l&Oo<0d6XHv@&9S;G(D=|>HbB?kW;Gv_F0ypImMU~;%d{Rt|
z-GB#%ETXZxxLADE`_9@8R9t8T2F=VS1M0b?i;D~5OD9HUic<Re#5kM`gZz{~?kqqs
zsD>28-DrpH^dsn2{D#{m;mA&5+Q8D3lLH4#TXd7U{NgU8vj?W~j=W;?>gpuiMr7r`
zbXhn()e6Al&Q-1zAMmfMt&LOAC5eI#4#2MrX-DuvLS^gwPnnfUs|sz3X&1<0g=+HJ
z>-f`8{mSgi{o(9081``vrt@#lDdY{koC4x;m+7G$T)tQRnkqBgTu0!6;uZ@0D69cC
zFf`0>XyB=%Izl>qf%7NU{x|6U#|u3@w9h?)?1!IOh(D=2U#ihMIksp&d@@d^;U+hz
z@qLGaLa6(AmeiNsUD?I5{XA6Yq?&bebga{I7-4Cy?C%$$4He#~G5(QPP|#lz1bORk
zh6*(neHp>zYWJ)(bW#@(@GVoT7A%wv;47XmKl>*6Se$e_;M9@ia;}mA_hSd^PyDqJ
zHko|*muTK;cUw3IQG}|e=e>LsCMsy$fd3-kjsk}e0l@?j`lwpNQC=-s$io~#1?kFQ
zZ(uG7=BVo#vu<i?qC#kZgBfRaVUqF4tUT`I1uA@{U~|$=geqk8Sx%*uxvnbj@G#=p
zmt8y0w1MdPf71r~O`>7|??m<U?pGE7Yi=4T|Fz>vr3~O8O9hRD_p6p80+&lAs@~)3
zh!;EV)&Kp3c2=XlXEuvo22@Dyd~k^LRi@L&LQ00jw8@Pq$lQ2QZ!s`R?JR`A2Ed;>
z(HOnY>l-NWbhNZHU;4|+%JgO&Gf~*OE%UUOgS&@@Bygc<Sy+?<k?<?}5;8_Ar(UZ4
zSwI3Ii%05fef~psRqq~2h=P6&_KcsEL?#7OO@XAhd3*d!yk>6Baw#6kIV+p^N9}-w
zsNOyCsr>48l`vSIH((93z0=0+U-`N*EMvSm2MyhdMxXN$FsbmqX%eN&m@9yVrhTeP
zdV($(cr44lc91#I&y_%iD~>+4zCBtXt4Ggo)>d;(9&TNiSg1O4^WrsLeckN2*6`-G
zRoU&c)n&u?(F`spAJwOmm*!=qF-W@ZTCCPf`9j*Fef@)&ySgQ}t^)70?xZPKuTnf~
zZk_B!27)CcR(@H>UQY|S<DFn}0R7Fw2b?4D$qVcw2GK|y%EsL^R$3tt2+L@uBtpZE
z!{?ECq3!Ook?|Yln}`}?$qHdnE~j~07{=Tjq8YCe)$SS2Wt*ro=aizmt~b}0hfCn}
zo1ouf=szO*-=BVUfUt8e%Frun!%*wMV0UhRs~e(dosQ|Z&X8<uVp3vfDOBfz<e!$w
z;b2l_!ATDcQ>XxFsb=yLP|pUe=0S+LI?_;6*J5O$?iZcxDH>#Gk^Gi#U%(;=L+nbW
z(tCtneqX5F2`e2W?Nk1Uig^_8hBg*!LW&wLM_4Y;Ydoz~>@xQw>_F#4(?n}X4^|c8
z`;F=<4SL_u)>rqF;oRQXpvznT0Ph5A@+k}*I#~1l$)6U{fr}Q(o96^K{ka`e_3zd`
z1s&0o5vngofEC;cWQlTe`s&W9<Vl9plW>=JRUa=ZZRfUU@ttIMRB}El;%8TUtMrmo
z2#QQBE3U1-5)CHb_1=(-EfkL3G8tBc5C!t__MRKU>D$4bk+f}KO~@Qlt#m50I9=m9
z!~)>VXSLKIT_A-?BrUCTvtykknfrql(5BB4^-oU=i_1i+3VtU%+b{GmKK<z6<R;_?
zH>JJwwJ<3$k>X$ufAWDKrxVBuN_Vejr~es+{}Gh`_3572i&3bJ@5qbX!MH+PDwyv%
zHa0ef()yXj#l<JkDoRTgv1O%k$)b{%chemrM}r2!JME@%v2cu`xb4%aR1S*k6W!f!
zF;!Ckq*4LM!N(Uw{jyg+RP_}a99r5$K~#w15?Z0cq9T$8jydl*Qa?p~+wwCQ^b3;M
z$xGQRsl<pXmG34Z0z+UYnAvYGpO^JzIxm_tT1-<MaNFAjz7v|I%+4NIp+F~v&S&?D
zQntDELq=Ielf2xOFwh80b}rhJyK>**R^tFA+f#=ke#egDHJb_IM}_!NqENp|*puH}
zrp8+CuKw}$$&l&6++NV?de_9T;mz50Y;tliT|KbZl)^Tm)Y0gLFidB}c{CxVg0^C%
zpk$J`w|6xHR$i;2$j9I*%<LY|O5Khrs>+IrxlC+mB$-LW8EWr6=&K0diI>C4e=;6_
z%e?=?9eM#<ht~Ospc8x_4x{mE$Zu=8$)Wx$iq5;k%y)z~!W7kdtN=B^_dCkw0KoX9
zP($zFzAHdu{q_a3l@+VUWTx1_rczQ1w2j~}6n{~C8|;Af$IXc5e<C_L^U<9|bN2*y
z^rCDc+lJAn*AY(>jx@;47G$P8s3)y_wSB9~_rMmHALWpwMSh^8S-?X?)H5w)W_EYO
zgtTlvBk=ge(spViSNdV#_$IId9~HHvM_0%S=I%OT*Re%TG<i)PV{u5D&t&=jKFAUM
zt}(L8?&fEPs<fh))(yRGo9ff8q!UwFH)avGfuWn58yO{#WjM7J6o`mL!lMDWT6#s6
z%4CEV1luKd>b}(TSu;XuvkN-wl3G-|E+ja3{9%2^W3ECwHYOYLD|6TjZq3O*lJMV=
z=C>EkWaH!OVR$o6<#B~?yG1HPzrThKu6jvoCtS48FF?p`!2NW8zWK@N?IIzKlZr~B
z&R!~u<%LKFFGn~2MZowRK-zHU4%bK6?60e1c39NsRp}B>z5a2_H|Vna$Zs3_xHUQO
zvjcioTwSR6?d;p3yBkZHNo5E1KU(MU4p<uX8ezcbZ<-LYrv0TAI0U;IqNR~xK6KS*
zqgrpF=5m|-{_NGk>&&zvTfQ6e3<R2>?^O$>{(;uBIovee5K-2BD&Bg0zT50<IpT^Y
zd<~1e8JG8+bpu<~y^$i*W|6*5_D3xfHW++@%P_T9xlGspPZ3!X;$#&jD3DAF{25L@
zBP)yk<HwH*>gwhJxq<7a%?A~VfWgEyEe^bPqh0nWHBcC~d0gElxHvuY_Di1$d~ac>
zQ5tA~jpuY7_n%4;U_WywAQ1K2wmX;pqPvsI=`sA7K79T&bgCjT%z=(0;e%cIpAV)I
z2JnPd1oos&SMKx<{(c|+kFPtck@+2I=0C&BKLDF}ughJ!{b4`Ns+*d}Y;5+0Z3E+#
z!tH$f*)nxhboBg#4)Cm|_hF=Cjr9_%z}m@daI^tX#kT9B!H_8`C^%;F<kjou$6fpk
z56AqpyWnDu6gg5pQj=}hhEu|m$IXt%F0MLk{6~$#|3v;7x&ugib5G<$n17I&{|{F?
znjZr)H7(8Qf`*-adKIUoXz4i2`PY2*$Kb*Y=TvqaL`*iDbOI!k)+A<DRtu!?%RYjO
zI)=KB8Lyxb#njbP1{0s<<tC%)#Q~8qF)^I@*`-&<YxKYkI=dP3(b-j2Rn@eX3Fx)1
z?a1$oP&;tZeIg5pDC|xfW%>QbyYPSjR;?rgQjE(xw@+XGcq9I+2Kx7R$I)N<7Y4pV
z78Dg$MLZ}u<EIeXGY@{N@4P`Yo%X@i-e0boiAhkbaB832PWS<EX*j^(2Qb>OrNh}3
zsVv?VPz6xWN@V>Cu@m(tVMhZqqU5CNV9Q>*q#yh)RCrGT>8v6wX14huBpy{hs!rTU
zD#w*4A_vbhZig(&XtZ7FY_^RcvI@rOD3Ne$EFPdrnwOo;xXh`jNd~A*a(qgpb5TwL
z-H%t<twe#eu8v_`Bmh3atx)?C7LwchwF{Tq^10BK5|IXak3JB7$iFBD-@osNJ?sSB
z1p51z&}sY|@eEIQvyU1cONphh5Ejqk_*ilVmsg#m@jS@CY;T-&XRJ~#A3(t;E~hO=
zeFy8UQ-Abf<UfdKY}+-?!ucYXduq{c#RU&cQhFSv^cy<yAuPg)VsVALiP_Hlll1?G
zQi<U6i%Zk53x4DFo$xpjE+5NK;F+K*!{r>Hn1azGUQ8Z<K~=M0Fu1D(#NB(wx+!7=
zm>S9N3X!@~1r*5yON}4&XCc9_ew&o~$2Ce<gNPI>^#90i+?`V?Q9D2yQynrX=cFcG
zqO1|$S=~$`D{HqGf8L9kL<LR=x(C?;GbwHFCF^g`g-Jfe^xWFX6vqC2@E+t!6ceHJ
z71F6uT&YS@HlL|h4IVJ5#9(OOul!5raWONMu=Hp&s!c`OGUt?x0U5h}qe)^s{nm>a
zVj#`7UEOZ1!D@kV#ZUeCbd-KKHsF~(2<sqHq?-4WM*ZvE*wE1A7U2b3|45@jwnn99
zYXsftH1$SNP0>$bbLFczWHyy;{Ao8uTeXq{YtL&~uOlfL<RH|Kfgd^Y0m#oEr1ePn
z5B}}{_UT^u3uZT0O!$fy%=r)NFk_)GZ&p%(#jhh&RCII=ld{|!OL8@gRw1w9-@&k!
z>5cK;mElBS^gkOF?LaQId$nX0DVSyw`GB~c3cpJ<N&Nv+?L9$)B;k88`NX*2uxysl
zq5-5$RFdX|DmoQ-v^I(G=Z;snnDZp^z1mut9Z+>Jdf&Sat{fax%7>5;nn+<YX<r%M
z1|{_+?vRB@V^-XqH)Dfc3zjcTBVEN1uC##~a9kbeds&ixM?ckSwuH1hzJBdI&SqkI
z+RDHe4iZo4$tQB@5T-;5s~T^pg5D|Se?~ti<#b315$kP8Ey91iFXQH<qK|Ve8r_O1
zXoeEc;vFn0<WlefSj8ls{)(^!@c9*cRlSOvX5%M+0XzTy@k0PMnFs4__l7=D>Fc;{
zCoJ|5_4>~vl$MoEqlvPEfW3-v-GyE2#uHYF`{7&nwMK)egJWYD{+)pXh~YufP3h@4
zD@^Ow%Z;b(qL^wULQCD=NM-5{4S)Qvc4uf53-vPeHOPdSLb#KQzh-ucO=uEdVXIOw
zWFAv~>mFw-W2Q>JZLYbEOG+x#-Ql)eRaU6+F7NcqJ%Y~8wSG8o)Ld(pUb-%L*cjn*
zWb|5Qr=*nMs9LfbYmud@)=OrQWupICoW_;UsML;VZ&jN>t(uz0n+nD|zK2_V5DUr-
zR6|ku3K?ELa<~No@Zu-@J5r@EY%d%_M`rLZbN_jfwqf|)gPYy<vxa>^{H-8FFxM{Z
zpS9Wlnl(Q2y@bKZe$A|3a@W?0G9{{31$aJzlAb;-j;WMu%;XmiT&Au_=I7@R0(3zm
zV3i9l)(bq=dF~;_fnp>3nA6!$2P+rrW?g!JF=GENlVm>lR`2T2-?6n;m`s%TyNpP1
z!^9ZY_LAgF`opOnR#46{-EZKkN@{0F0=jpeZ4`MoJgYMaE2}yhEq0+*Plq-wmldLg
zZ<S)JUM_J!W0-HUn}&*wP86e@B_`rt;~((xAgH6^Xqk9p^u2(Xc{tiT%<`%C_^Y_k
z|6#cQ-yum&^Qd4@Ad7Gar2SZcp_*%>>#~h~XK9W*OEEKOCjPEB)?>{>qq1~;Yp%?t
zGngwz-#_CpV0{bChp4h|32*hqu1H;QT~_hU{9kya#b&e4>e-C<h@0Sl&07CE?~U_7
zz{px(h7vgbx`GgOl^Y%%P5l1-`&a6+ii$)4{1lUymmfdVOL?I;oXP6OuA;0gE+G-h
zBU!jHatfZ)oy#QQdYkzZ(?Qg8RAXb~w&%aQAT&t=t$>_SV20P}rx%8L67V00Q5qqq
zD-bG)MuS;#auPMaxmkzz-mVk@H<fIvz!;!D=%~rd6JzLl7I@z7>wu#dAWx}K^i)g&
z-zF)2FOVjEE^!9aTa+Z6E8{LsO+og^s4e0FU5HVkNoV)8o579}YW`DLEkJa(SDhL9
zUaTr9b*4{iC%mz#c@!PG>4zE@O>-nd>gdQalsRIV@cz^Pu8H%VVMF`l7XJ4${Oc>^
zNH2pv{q)5^Sj7R3@F}q0Pzl=xUqVSKo`j5y>X@i{$Wko%9RZP6{f})<kPGxG-YID4
zdC3hA88?T46bxQiSXlktkBY?%D`WUt`e+A{401mMXmJIl8XcYT78N*4#B?jkZTG*=
z_VWw9PE;5te@V%>vkyps29v$y!z8<V!k(Sns1?TvLn~LP`-d_?JP)g;`#sS)3x-?(
zU-XX@SJ2SN=bkSFYOVU#hfAoYjX-$ghuaKbir`9XS7vLbbftsW^-A}oYHjjY3@~c4
zY~3MC8nQ%H9r<hCG!x_;#^fz0nn~5`^p{Ypmi}j*BzRXoM<fQWn2I*Bd594+(JK{a
zcqKdPwAgQ{m8yZN%P4PJ^$sKr<ZTNJi=Uk@SCbt5hjD=Uy00(+4VCz$$#TwPTe12O
z?_&^iODUJsS~ih|u&GpBQCA$m+oP?&ITqLMYDNS{#-m{2k&2@wfh-c1vQ(ee%-9v;
zwy0z?J?s7b10_dRzvUM<+#!+S&waI$0*J1Yf1znK+Mv5Pey_ef++DeNl+VL79X2dI
zQ{>MoeI6wFs-_P6d9>_7)5V_->*wHbxBxnm5A5RIGff_-tQnnuscAnBGmU)*mYsc>
zH70{~Oyc*s#dCBS9nd^3DXo}{lsfV7U5oHFc;&SEDu8}h{I{F;;R8&kA2Byusw$8h
zu*xDLBEG2VV)au~Q0)C6yjxLQ7&Ig$w@zoNjBQ4}*%Ix*u$A;sWBVszh`<+3a2>Em
ztP~~ziL;X0G1J|7t%8=?<_ryx*}A<S4xY?>i6`~-5#4q(BE&RIKo8sW^!tzDyLZ9C
zFqjMm{(mX6ptzouSzmw5bT-qTO|KLTSytZ)Zl0Lv7J+21`0~0%zO6}edylbs9xACF
zj5m;<+SP`Ru;FajqY92-hS8}KR_AW#sy>z<7)K4p#-i#bTXgukei}jvj*LvC_u7|?
zjf*4R-`_{A=uQ>75B0bK2wJkDp6uIS?Ydrt@-LQEN^Y9-cFB~Ya^UIQd34+a4H%2<
zU}PnZ2hU&LR}~qevKNfBD#sRT7xo3BYd)^5>eA;Mhz!Tf%b%05o?9(Eb&s?$!?gfP
zqxUe7yiYe{KLCDKlzWMt%}Fl)gV;Br_(F#<9@Ro5JZ@Jdhyh^Eqy`jng-hN~cWX)5
zwymc{yPuffw4X-Ueg`0;3-A6YpL@fO0>0}mq~3kUp(6QQqp?gL&_>R;havjry&S~z
zrE0?<QoGjmFYxhfmmix)Y`xF1U&3R-ItKCU`XDtk6|PqJu@G}=sjDx1MghcEt^}hk
zz(c(Jo#$c)Lg}n$K#)O(_J<x&Jf;QdQhU4YhMmcG1u2ws!zi(;hy}P${Bf}XRR{h{
z7{hQ(fgBDbZlbsK4E|q_h6xz!(gwC-mY21B$K~NE6TYJSLo@}eoFiU&cKtpfy+}}T
zjzV81nKufc2dg?|xMFKdL}L<7m{Te!x{7_$^%6~Oqh&l_Vw31=2LPB9(Nqw&(R^9)
zrm_y1<_x#Q8NBf%I7xiF9U>&92=7&u;K+Y=0raM_$b&*9o!aKR%r~tqVgVtQLNVyj
z>p`36@V_a;p64oT{mCw~eejMg-AHU=VVlT!+wnVOFdsBYg&&f59YU41(Z5%56du_3
zBqSs50zxU&0@eazgWP=afO{Kx!(3dO#_CJ^B-%;tvsG8wZR)X9DtxdxkK_xTWMB_6
zFRoYDs)K?;>^ciDr+FrZ-(P;~sK;QEhIk17EFE0oodjWh-RD!+8&N*wVdK@MVa|SS
zuUAi;88m=2wJD-RqXF&!v5h}nJp|+82nB4;bi^~T4J)pakI4xR)aKDWJs9o<NCR(<
z3={+)r5s;Hi*lwFZ7w*p@!^?~bs0!wHjf3S7$9ipW(zdea$F3IU2+>Mg}Gz^TZm0c
zGIjC`;<S4M*#nlbg~tK#XY-N$=XGR&^+Ru}q%4U|^FG<b3-lZ(o{MoIo{4Som4VX}
z(7|z+_=8BgL6~174w1cQAfD%mKyi6FPalk3)9=ZM{L70=&66+WqVu0m0YR~zz0^c@
z5oTm+7UUm=Il)UV-?B0qYAu#-6`{^ur>4FX<ig%C8``s;9np=yDXs@2$QRiq8c^~D
zr8WJWqC|8&(#sN%`%>Xa->=n96O}<D8~t#)^Rvj?D-+=u3GrVKvbF!Ml|oTOawA>h
zo!Tme+Jr%h>vRjEU?5tQZhriP4%ea{;QeN<TNnld$#$t+I0OZhFKC#QNG)Je<izXV
zm7?&dp6UPbV<<7BAY*~-S$$aKq$S%qHiJ*%J2zGprTtrlMTQHS9dRyq2pC1!4Wi6t
z{|$%WktYzyqD$nyO221%37H63g^l7W@g;~D3-&@3BL7KwLp;HB>78v{ysi7RPbeW`
zh}6)u+fk_2!qxPQ#K}q%#Y#u@lX}0K%iV49aNKP-_%Wc(aaKu{hNVR(>DnGc{I=<d
z+5=A!Z@@~&)5BcN84!AoBf;VTe$@n@5bEaV)$HrsP6PGG<W7QuEZw_xyuiw|IX&Q)
zf=X8nZf(3#+g*^xNZco%5#=Ke5?xl^25hMS0eQ32<9=b*5YN@JVMZEcs|MCVSg>lY
zNJQ*2c^fIDYLSQ5?tXcfmmC%r7Q*B$d#X#r`PN@2LSVO4Z;+qpvquRglgZxN%liUS
zGBSmA_UKjq(S-kLvY|e_MBDyB1BiTuzKH(g6ad-Q2BlMk+243a&8JbznWsgoU#D4&
z$RMY#3Lz6CB7hQwU{o_c_=8da+Gpe%b+<g<_thtUZwgZ54_C=47jp9!id$JrnxWaO
zW-{^P2Et=c%nC1mzE5Hh9(Ij;ZcV$wo<&ef5B_`Z1wGU0G^Z2*L0o$FU4n#gXRBty
zoQQ6V%3;?;DYs}t(Z~$w3zhf~4jp>a9Vr#dAl5femrN(`>o{CS5x36>_#1CstlMnJ
zEh4ie#LRbG`q?U`tT%j7!N6qAqM(1v9#yT`v6$56{(39wwZY343WJ^Dluy8t#DlTT
z>0-qw2WD1s-&Nvu>$3QqD{oxK&%wPhD&8Ze)RF4T?^BpHa)L(3y_9WzCO`n&B7sYH
z5@Mig&q(}zEq{qi#{@>tCj{Ved5f&4m}a81LL9Do947#ZmHl5p#c;rx=b)F7$v(i+
zjsJ8#khxc)>D75oH0*6{fMv5#^YH}E#2IBT6rK8uGRn6l>+J*Rh%zQJv9Fd8UJpEb
z?yNNbC6%p!1y&Y`xw<wY%9lrJtC~{&FFn&W+B2)eN95narCS)=phZJz&Bht)JEYr;
zAa*6UFu1-&m1p77uNRVlatV~*a`G?X63#}JCbCXT`O54-W-UlS%?y<C=*$f+QO0A=
z-idH7FOj|TWI)`3)+eH|)0$E}qP9)T<Bd$_)AVp$zS{A)^_<duD!;od?Ty1D`~a*#
zT0w$@?6{q&<h*F|esIUFLCH)_r{ZRh3<wCo1u^(R-ZJ^hi8ivd6)Xy=+?t`;tM95y
zm+)!Y<lhlZ*qP<lF|!n{Et-Xl>4^Cn>hkZtC$S4f;iuRGT#jk6>cXBPU%$dz2Tpmo
zu&C${U;y~g>n}Q$b;@ntZRYgNI@ulhyPEeBxSoS;ATSUr?ybk-&@U4rUS1uK8KA|>
zM0AJ<az_^N7>LAGP~18$Z%dmxsKeTcxPsByUVn|2T^`jx?tOoKS_6z^zgh#ZC<zyr
zCeTt614~O*Kv;9Bz}CXqObU27xS!+MxlcZ<JN|FDJdeWp8#Mi{1oJa*@gUQ%T7CO_
zdx172?MsEj$$D2RDK8tq9XV*&<KW;>_n}*dy{sMMg{PuJWX;MP?%Bnw1V+S8cMd+S
z=Ydy>!M*lb4m4|9hA9rRjE1_uM|2VZg5=H%xC4FvF6I@n<~^{iOr7`#Ap2MUjPM>p
zoM8|ZeLr60n`FF{tcj6y(*2|-WvTgEo=}tO3XXePT3${?x2<(9xpY$htp=<z9uhFF
zb$>OnW&dMAvV+Jn(@VHSGVC6d7B`(u+?U%rBwQrjPNvK!`~Y3b`D^LtkMEgZ?<^HI
zpa}8OKV9zT+l{dnFVx6>la#?HW1??VU@i01$&yWR@ujOQr<mDgG43;=@M^scLJ~97
zj_|ym+-h!Z8YGslwvXj8D*<i2ZURL@=ee$#o(+QL`Y>^c>FN_rY~y+h5hu?nxEggQ
zV-<g<T2@S8r=P?F#8sM}AVf5)MA@`NLMNv;H5Lh|dqp>+S$xvgfp~J+6+tEUBK0wu
zrL3J977h#fKQupGh5p!5#@3`7Za9O&M2joB6S(dJ{G;ziGROx+^#J=TceM8#*j%-l
zt8&LyI6HBjr^vy$PKgM*_s}aJADQOFw>GR}Ki$4zG&}nC&^)4cE!hR{eBHAqezP<1
zFx0{sg6+^wcd3MrY@7RZ?4^3>o+kx6d2r4b%}#0)j(N%fenNv;_u4$g+t11XP{{Ne
z$mi6~0jOFpM1p)@L<PbK;J&}b{L(jofAwJFeZ3KM*0T06$~-XuWag&xQ7)%FWtiP?
zfe$ypf>q5#dOlA3MidPwH1@}fLcRoGjoE&XWkusA9M3estiTYLlw|4wZ9R)C4sbH*
zq|MBx*x;i2{I<TegJ}WiB(gn{@zpvfMt5u0!!Ogs4+s6&w(((f&EJ(K21q3nVRWhh
zL5>U{3#QEI$A_6ZYCfP7mzABnLM(WZT}a3-wC0RwW{KfQ6v3;HeC>4_rpv6oM~r9F
z1SoyL9!B(?;8o%%ZX#FRS8tASS-T0?g)^R2fL{(i87eC)pZ(B%R6usWTXq;j_beb#
zVGeX_J?Vx&`&B!ZO4C8ytN%<0ak_T!c)7U2bl!_5J74Q``*?ReC&*pZxDkkbagB+I
znP~b+=}S^9@Eh*lw)Z;P)wN1--Br_fK&$Gw<*&a6i0KcyxQV!eM#1Fz*X`RoJ0RxA
zb#JTF%|7oe$)7@X(6WaaJVlQEn5HnT9fEtNY|F%u-eZT`Yj>+xM!=#r&V%NIX|Sqc
zZkt-+apM-Eud3_3vZ}VRm-nINv!r&r8=gKMSdD$>l}X4OIH%^Cie!>8;&CurE{ZUN
z2M}D6vAso+<-6Xu4*;+fXWhd_&$A>Um18TL_a4g0bo83m6HxNkt1UPNa`&KndEG6o
z@sbHt?nnKZmG?ql95tPs;NZo6kzb!jr~R+X-uZ&WZZz+vrqC=ZoyW4hF;z=JOPM5Q
zLnejol*U}8I~Hae9bsEhL^{FUrLDE`=yiv3e?CH@9qH$EpY4(7?LQt;7ZlY$v)i~H
zK(8~UbX}WB^719)N(HbiN|me6fF*$uqF!m=!)%*`t}vcKk$!hdo@jCu`3ZwXw*(4Q
zlhGfDK$+)rJNND2(?Qgto;~$MPO+}8HsR7-J87|ysO0SQ!q8H#DnVrWT>!oKYQq~w
zn|^Lmy9)^smB`EiWZ4*giYws#we%%s4f)TEzf*EMo>FKUs#LYzZE1UQ@6!+8S3#sy
zR0<*Q&`3ErbVMR?h=6iQ^_?!WY7!fBBfwA+kfo=km7lHT%e(6`A>tnC6hbUFg-MR6
zA9e3B!S99pU{&VQK)I;yu@lFyivj~{y_U?nA3aWd?~qYG60@`a|IzkVQFXQJwq_v6
z#5K6P1P`tgcbDJ+LU4Bo5Zv9}-GWPy;DO-o?(QyU@b7(UueHvpR#$aJXru)unPZIa
z?Qic-50*tWIrywQtX6j|Iqgx<n&TRV#TCd!MnUHp`iWp+iGK5^3h>NV3HsgYb~)uV
z_XioFudu(Oaix@>X#v{C87-PW0-3~81pn91aYsZu0#Tc@%3B~pJ@b|L+?0<C=Ca46
zuQAHxg6D9K5vtC^sty5$*TUk0^rPPzyl{_@$UHD#ZrON0rePg{Rh>UM_<lYFV!t_*
zdbPJv%?f}rLImUm8JIr_vpzl?U&kPS^qUm~!M(p!!Y0D)0HSn~PEPghC*qkb<b{64
z=ly~&c0ugG8F26|8O0##pUpP5ri9kT5iG6mw*8@Fqp6AOSZs+g_|u0mWMM_n@67KP
zQgIbgf%H2!X{%3EdyhW1d$%30ZCFArI*iMVa|?3)x(O*fT&dOXC%I1dPa$w{x^L;{
zc1PkxmRy0MB~_(^oZ}NIycqG>h$*L~qw`I3w<lqb+YZ|oo1nU9-f2xjUM3HZ$Az<I
zpW6|k?q_1rU?9}15Hz|C^qBKx+yY+HYa2Nehc1(Q;1E@og*qD^!Ld_&`TDZ@I@zVG
z@@*%4bZ~sAnGL3Jb!5kE(2e3>R~SB<q(409bh=YLGRdF9_RkS}|6LvbFBQ)BooIO0
z$*ZdTD4z&jf=i#shad_{MzLJ-yxtstHo%CXo5@Wf<7Rv1oNRcpma{>SLC&}h-M?ub
zzt;q{O*&2)AzjC1cj8uaW4tO($bo-&a6r+);I9Yx<p^V&<>8Rp2Gb06)tX)LJbeWb
z4IeN{qDv<XY3H-(L(Fgu7jhy+tO8Rmziby9^;OXDkkG$gN9%a*+FUiEN(z6`R4bj~
z{o15T9~G6R-u4lp>b2o}gIC0stOlgQ_CHPx{J+<M_2;$_qr_$E6%&~zKf#gsyQCt@
z`7PohEHY(NJYmLT*%Xxa;fh3jTJgK$jp!^V@wFqVxqquW{UVOg$YBocU8li<uF%$h
z3<&F1NPk4|yYl$bK-?UZNr2Q=cqhM9QP>Va(KRy0r7ktbGqY$1>Ye=nLb(#&(F<*-
zdyWnwnvIXnh4(!XrelgvQjLq(Uwg&VezKa6nPGC>Q0Ux<K^D<K1mlyQcsyUvZUfQr
ziCL{#J&%fTWio!94$or?eT0K?CLG2(wlqpWaS7xDAZ`m`OK<7WH%JMVWTyv7B?f8k
zVPq#8No&bEPcttJlP&5ZSQgd*3lXxhhIRF{ZF!QA4=eXH4~;Wdu)IHb=qEDYM_=1N
zDn;_shyIcXxlF-XwuIMLlL~(UE<rZ`q^|t{<(_aYj6?EsXNI<Qb1!-<>DA?;O$P%o
zhQDDh?tz)AsQ2?(ByyD<K-+A!Mlrza@j)dLMhv|ET}v<&OcK+V?tKxL_4yQyPxGyc
zI1G0D6`+qg;zH@3$-|un`M{u2SORfack44&H{hiojz(y*4FZLxOhBrkuszV<MUGs@
z@AEjoVPY3-g~ziahsvSXsGM4XStrD}^kqg|`VF@UgD2qd8NapPkG9KA1O#v6i<)Pk
zcP0ypAu9jX3faGZ;%4(5WoYg*^@_eL+ft2jnAhphF07$3xwR<aPhT##xt|6#w(G)#
z7r5!2_<U#cLBPu!06-xoo+q|~w}2jUF#1Wr!6d^;9o8o6n*hICj|mi+>XOacC7bCO
z$unWsF5xK)AHl|>0pev~@eJsFl=F)I{h&tqD4~}LGot`6D()sPvck`^GmrrXUnxv2
z`7rKk-s^qV>-Z^#7Xqp{{wlV=bw3On-$*L+(GCu9lKQv9>F;xN=GoUh*x6i6E+QtS
z2I_ykf`LE34OH8&?fE8GcL&}f<UOP-SXsg2Ijvsoji0n@*{@~$-kdp{5$gXxICBWS
z!T6%lKmW1ike74xP7VL8Zf)g@tLw@)Fv84aCvw|juWv3+re(?NMl0omXsE5lE9n86
zt&TM!TTK0iDX;wS&w*n+T-WHhd*(Y1mWWwGS9TU6&9f*XR5}tq(g-LRbf0euZEGL!
zW{9XJwY4cSOP?j$!hh~zmPM3Zu>nvHIE{O2i>9A@s`SH9ZzCQ7J%o-n_^QEVl&A~=
zwE9MIF;&746?Gl!BpR77HI)(a|Jq~IL?!BB1d>B!Ar+<+DgFcqU2Xs)Mb<8<|1G2K
ztKot~#@R|oM^{dT3ZEKeTP~Y$2OJ_T0$%EOiD}!ubV8QFiw1~;ngAQi@%S4|zaEPf
zYzo)i&E4e1o-4U!An>OazsCf1%SWx<eGe|DI07sb^0GdF41<=4#+A!B<l5Zhr2S=;
zMuNt`!3vgi4Y=w<Ev-<yz`@X@1W*B}vEb+rLnJ!A2!U=sn?_Om-{7dxW|oMs2n^Z7
zp%o(T!iA#0am*$%>X!1gJid6t<PZt#<9F|lwSUve1CF@40xR!>2V^_W$f9gl-sVb2
zm(9Kiwq^4ME^c(DvQ8xm_d|~_g+I7gy&jLj{H5J&<cOz&T>)u|N2tOZ&o2N{Gy61$
zS;9Zx8%X3kdb)b{+!Cm3YSK0?JE!%cW!~w#?^7<{ND_gZVEfNuSG3M?*;l7MA8*V^
zsZRvY+L%|V*?MAjo-h6~9imQm?nJDTE-7sMf>EeMZA)dozGLV~CH8)@d)DmbH#Gqs
z+<h&mH+Y89MmT>#s&YjCj-naEhZ=HXA^Wu69u3*Q0>CK$&8Q6QY_d_{0Mo^PCEXG(
zKId`-kr|=)9-3j+8&MAr#u?rm$xtc;<T(4&j{3=2<FdZUc08PDt$sUrWa2C2WRdf(
zJWy^6RS@`0xn8O;-F)J`d5|!Okt>lKH|gZ9J=0#)j}Rp_2E?&Ko9G6fy1u)4&l`Dt
z>dG~wT*4(MFJih$!`?wSCl?LoN<Bw2#|ymggxtk06^-~@ltSEPXXJ&-YuFYDd-1#f
z|J4<u98?l0gqCI%GhjEdkQ*7ZwyX9WxPM-QmBHYl(atm<HX6fU)s|=TQ)yIJvtk#Q
z*F8DDc(^FvfSkf)0~+v!gutPcQ9Gc&cJ_I!?T{vhA&J*YxuY{>$&mXn!g1v;Ku50h
z4Kg0ys2f<+N<0U;L+3Ph8`9byF^n7~LCI78H*@m%Z0GLH5R^qWMbFpgWbDiojH(DO
zHxY)+BjiKdaAHkH8#iEh)7$_jd6yQ}px2on@#kHMxOYsh35P=@nEqp!zACQrd|GTM
zpw2_UF>U$){%qw6(c^*r(USYX;Eg=F0LFnCR|oXv5qLz(2w5GO4F@O#T)s=NKfE8O
zn-QSv6#*=ia$MnFV1<87Il&lNM_1D0{c=ex6K`^Hd$L@{@4b;j7)<}z^$*F<80g9f
zDiGo_7p4}$#5-ys)Z+(+p^n1_SElgaXe&?=>p+sXJqG2RMl|rvLN8aZ$8A0LvlE>&
z6@obl7-#_knRq-%AxJXKZIg&?uJs)E&~nA}y^@hh;3=;E0ziBkUkw@&Z~<KE?S8|}
zwbjZ0x{3gTao~5eC9dlWSWNH)kG?$r2Rp|{k7Dhg-RVC`!Hb9O*gtckX2m?^;+6?m
zluu=h=WetFJllMBeFf5<+oT;2+WI#E0)D$;K!`#{sko|Ry@+X|HZoX#?3oK=!tpIA
zSi(HZe6<@cGqWis+J9(2sSilb8<iLT>6i)r566s0(dP!sl#|Z#Ti4wrhXLU?OoBf*
z`4qjfed5QlXA@)N{c}_;ytFJ_jgP8_PGODXl$q|71Zr3b=`<Aw1K?o%vI~@h))LN-
z)7KmVPyPZfRMf#DA!OaT>B_pclEO}muUDTST-RCfbLS8Pg&=(U0sZNIJj#pWjmB}~
zKQXykBlxyxIwHbIQ;7bJmaf&t2p6JAq;5q-2@5GW5(8Y!-sqs6eH1pa;x9(Dw8xM(
zaoDc@yPW<afz({V6>H-tnVYu9?@+w^wDrFH@^M90ngjr)*HfgDI<2nN<+{JrJ+Kj}
z1bAoIg+W}>0q_!%Hm$!uY>4A<<VW_6jkxZM;E`4W(8vLU)-T^~1x%RwJy3jrIrc0R
z+w@GwWXKh{^ZsnTTdv`T&NO2VT|6D6wCE3q0i_2G4CYeI-8!~%9(Aq0*V7rTD=$QA
zzc7ai6|$_2joLEWIttN+>GAP_)R?^Rl!l(3b<J}msCs1)vcE#xPw@9QJ|08iJLF`=
zk>wOlzBqs<2|5-4_Mp$WeI~?N+)J-G-MiF^cOk>;UmV1}OdL3#&;Q*f<0<!UwzjFL
ztG?o9V{R5>&Gp|@u73{e{4&}96<6t*R3xulV72p?pabV>!yOvdGmn?`1pC>4lZh{V
ze;Vv_J#3lCq+iJ?;Bfo!V4+GT6^uLCCp-I`{IafFUC=CLs1kVi(t0A!pGnL4oU+*y
zf^l7#17|#)+v+CPTO_^KYA$ml)fN4br9YOC_<#`}9{x!fG4-DK^ofK=_J1qT)4Oey
zs%|DdFjUs5!{fRt)JWTE=()lQjX-=xr|-*lgzU0TSxatL?Ee#)OmUJZDv-Pb6`>1Z
zN$ZXqD0LpoqDApbzJu)lZR<bxy93Y>>NS#UM|fm{;Cra3BcSBjAtPz@i<QcM^)A|W
zC02=8)B6~ieziRxfJ?)Hr2_Vv(NH`Xp9pCwoPPF_<+E0j+b#!1Yk=~?vCE5#B|Uh0
z*e`@Q0R#aopZ`K&=ldIAmsF~cYA<YgJEfv<A0qne*Ebzba@kYh<oc1t$Ys%44ds#@
z1|@=X*)fhA$-Rd!5Sehn0EwSgwHF6<6PI@)T@hvIJ#^$;@!`>>`E9Xj-~O?YjTZ_D
z1=6>hTkQ3wW71~7Y0g~ZR#;b5q?vgeh(Xi~!jH!rs#~}D^I|?XUT82pWA5fFZ(%f@
z@8^K}(hV5vcmz|qU8Yg~{@YSByYY?S7I^3$SbSo&aFq2wON;;dYY#t!1}dH0<Atw3
zX-gK1Xe|o!L?u^$Mz+++>2V!yzj(7ZvC4Yt7Qc|>f6(iz+0mt>Je-B+<2vw)=bBjQ
zkZ-)MSgeb%Ss-3%6``J-4*byNkGptz5-0r;=i6}YPb<AYD%MnME4?n37C-H`r6*O1
zhu<>D(5GJcuEor-I4YVx=*$fqj}tt3#|kfkH!{UooDW>Wd!`5TlLvOfx=e4>ftTj0
zyP!|u8u*oU?WFI<H-Q79X@K2h7j`=dFd!j$L{4;o>Y5h$l>-9BXjvXY(71WXz6<*&
z7CyW{2iF27J+5syk|}mk^CW$*W@INsrm;R$Wn5#Rlc?bao^TIocnY7U|4sJNvUKVF
zps}aeEPe-#5)3T3Vl->N4FG8gCIDr1a1%?y_cWRHlHX>MCVmD3dy0pOCA?>BVt(Mb
zi-U%?u2I33L(s}+*iD~YJXGaJ#Nz{tW|T1uCtD2>bg{4yNpvjt_+rn8w)*~zWoG&@
z=oUL?3>bE0uOZxeZZ}*JvwppSBZJx-ZjD|mopySs^s>zUZJh*|SclrMD+^+*JN$5H
z=-2rE^Puws>IoFif9pQqvF?;m)Z=dMz$EIH-N`~lt4pTZWbP8dWI5|Jn~8#yS*}&D
zWcALSl8j7;FfBgm7xOk))Q!yYf=&T-92j>H-7bf(YaHd1RkzaVncA*0DX2ut&a?)2
zo@@?>&grfkBaYnM>MyqTK2$AIClBDT>AA&}CsEbMl<*VK<&atPg$<Tb^026FOp9kp
z1fV$-4}WY;RmHn5%;1o3uvujUAiD0l>oL^;6#&h@ypN{~0F~k$A}Fnp|F?^4{&8ip
z#Y?AKAjM@Sg{LPI%_a9Yh}VfS142OWu&(zI<6|l!xz?xM8Kq^R#eYm#gBb;tNsZs@
zr{hC1sejm7l1oHR5dytP&UgYB053${CghY@5S1}T9I}WE!bZenPCSTh-5-uXq$?e-
zqp^~IX}9Fg%XS#JXFkUXd3v_-0d&}h0L4G3k8hJMtK}Rs|2m)>AMc;t?`EB5A#jCi
zl0tFnG3zLhemn!ztGZbW*Zv>WeHK-14U7Dlz%eE9M|De!7Ln^31RNsi3!uOJy=a;}
zj#TRfp4-~fEGD2&3U%PE&`|_F(1t58-e&F5UeDbD`>G!rf9GpW4)0&RZ`$8imeN1E
z%bb#^m3~6wy;<=H>5C=8$iP&gwu()ek{bOkMK$0(5y!%BlqwZ29#MU}f)ENKBawvN
z&tBEsbpz(p^F5Mmk4KO6m6^8NHV^*8%I7z3+wQ2~K^@jJ%h}acc>~fQW=P|Lbnd%Z
zz8Pz4Y03${jvO<-q+*96(#ycI!{lTfZaz>Bz}6xK{E|uzA`t*^6e#qftLJcxT#EdU
zdKptW(Ao;|ZL{=13|wTz{@$4m4#dAznZJEz`VO+8>x0u>b_&!D87N3y7!J)quSF?B
zY4!MMKF>c^GG;E^5va?u&-th<Eg(P?pQItF-9Ug@x%}NftXaO!>serZfj-N+$)H@(
zpd^2@|1#gB-WfX-y0iKRnfQ|EcJIBTeK*<sbKS4Z?4vqNd*|Ey2}7{sN7}+BPwf(w
zQ&Lt$(5di=z>6x?ppdQO%~|Yq1A}`K896z-uhCsJcf6M&@4X8y)htBP;&#_?Lq#6G
zF(na+g$Ha+HCwbXGxJiK)!a{ThiIgJCkT;{CmstR*=c}W!t}kL>wBktr-EPK`50hC
zN1!#~p%v47LWi#)Tu^cAod1g=!fTQ9VsXbL`TU*nRn%4VpI?r-#5-%hH)%r<P+SV`
zFL(cn+iH7Kq7qz#(gi%VV)F%F?u;Hb!k9ozF+wqDl|LAoUjpcInvrl>MgO`3%(k*<
z{BaZAV8eq<xkFje(9qC)d*YpZJ?rtLMpZsa%7EP5Tnar!Qh(o-Z4Mb%_H6>jey1Nv
zF(<8;^4wNU=auxGXh;(i6QCZWbbJzoF2efe{ZY9~*0$1bl9Iu_H@2HAQ|d`>eqXEx
z`oeMZj73t2R#kSeh={B+r?<>dh3Eg{KiTJRz&kz6F4%9jpFNw!ckKS-%m2IwC_z^!
z1VW>c?wMFu9aVj}a7Ck6x9bXjTMUlVyt}je22@o{jXlk3mH762=4cY2#6FWs`m|>t
zmExGf3+LtK`BAV6SC5a32yvZXS}+l#=j`llPG+*Q+LwsHGFg4%6Y^av#-vv5ydPpy
zO-{&-RV9mO8iXpTW@bubRgqU29LU3*D*1)weh2-h85}a+Cr@LnQwnr>8g8^43mfBd
zx42mx($Ej)4PGeINh*-sBBQA$$A}_Zi;K1Q^oW+U=E(VzYkY#Vn5~=!g#kg-`~#ip
zWk4FjLk4neTIuBBzo-3$#Hy7#$2)nuE+(MS=GZNv>QCJ(6yI?;!G^+cj0kLfU`smU
zCogNLDqz5y^T6}wr4L1vZd2ne6)0la)Sl;wm1xx5Lg$ffhf;i|(dh!ZUNy)e8<*_E
zzAHf<L^KsKbGD(A{&BXN2S~Csvk!0Kl+aQ_RhBC#mbNkz&sLcvMm3T#jAI>L-Lm*q
z7yaQ;EgXE90{(*JlG8091I7x+IU8zO$^_ea21pFKVqsWlGp^i6bJa%nIOT+)35iDl
zq9ER(tMy~WU*)uxt?57w-3R8XN#$7x$+}R21)yC{E<;hUV{Prr!%mtFMI!JR6|5&K
zZld?ob}HD*y*SIA1ip=0jkN388kk{pqJFhXU(kHDy-mG{mdv$K{j#sw$ZUl~O`X%`
z84par(HKK60dIrIxHB&otKJWH8A$IT14G7EsZ`u`uxnnzxC_)hzWb-H<i9^Sf!~dK
z9Hd}C!UQgtx71luI-O-(n3zywiic_sgjZIYeV(6Fx=ME25DW;3MJdmDs=K3t&Gxj#
z4#kva-br+}q|ccDHNp3*&+%?;-f(j=%zlI*uU3L{`g0Nje&CM?KmP0XO_-d%u}JyK
zIiY!K4E!0i##m5O5R~E^PIua9P=~(s2VuDo;7TU|IUeIlJM4tVinKl7peRot+K2x&
z!a>8~`dM}t^_#XYT&8+B4JGt-NLP(Ai|rurcQ$z0^rk!}w&{AP_BEl>^>8M($9v&|
zr38*1=uNIpamc!hvhd?cElo>Ilmk@M6zPVAv6;a{BD@P4?s=ZcnmJ1L5tUYA@kn2i
z@mdik^V2=4sLDHwh->ZKvoV{~;71k<DNs)z9MJ=!O+D_4rHTV^v&afSpx?x|nbqS>
zPh?ys3!|q;N(<xQn5lC<CYlxvJU=g~5iD*HTHjb|&tny2S`U|MtI})IFI*R2kmmc<
z`4cV(3E4jx8<hM^J%YtpoMF0XvpVRmltCsprMEHTNiNC35%2u9c7P|Eng`u2uz3)o
zhu9L+>2M|j9UWa2D@cPG@@^Cn71?$uXW<QjF$T2Miv!+(f~zaXW^NwO2S+P5+*!z_
zm1>r^w|jwRQJpdG!*%|WkxYGEsOwE@%2VL09F;EA`1#OjR4Li{tKbZ#-C@;N<3rKx
zgnn=SjKPcW)o1pGwy7|cpiC`q%6V~N-$YH7{FqHx1+TbtVZ_lnvqSyD^lq!wHcL5M
zJ6zx$HHG2>Fq))iCrzO#xuf^8Lt!>PNb<cwQfJmD3e-9T>$^BmfeZn4bT0uR;XZ(D
z%m>ES%<OE~`aYnj((G1_1oL3}SU!XGB~nQ2JST`K*J`n0z=P$g+38Td<QoX|w)8!(
ziAS+os0+!>%cC5Jqw`?L4NeG^yaBwf!6tD9n8d_Y{P;p2F6w9X;zltPr=T=#|0Xg(
zT}y@A0Y?N2_?V<a&9xw6FOuSYpD{RDFrIFsHR17Uhd#|Z?8MQ0t+Bw2=gX6uw7h&J
zoUeNVaJjbe{8DYEtnzyWdPE)Hf;PLN(ZY6?=bd3rw)*^T7hfZy!yM#rC8KOBA}?{_
zBTw5O87nkv1BC<v79N59S)Frfguv7<LD=RCz>!k`fC5oD6v3EvqV7|THm0pCmwgY`
zEdxJoU?8a~8`a9x2Tm&h#^&TtgAL=zZ_Io$`=bT~7<{Y5JdVLam};Z<0I-^ec3Q^U
z`}MClmvtbeL(;!r&lOM*t)_l$@0PqbCJ%rTF3Fzv;(!5Z%a4u<sauYHg^2I_-Or^S
zMVrcfyG&*SUuThu(b@jnqj?dDC_IkctNUQ1JSY??9DEdMocFKIb^tW)KH5s})m(CM
zfmf;DXZBA4)~*Q$Lg)B2Q+R8)hlURZe$F)|mpEcaq~%e@K)nbK27y!X!msAowloAa
zP!hcuuG%u^Ug->8y_0=@^!l@LTl!r-z3&=mqA;$p=qZy{QmX8OUt#&$G<P}~RYbgQ
zrcSfZ2sZw52>UjdRdrSI{$}xH{J8zW2g-u0{%$6qAiQpY`}Po9E>9e<-2+_cw>YuG
z8lCIw=ef=9{N$?afHb-D5D|%-Q!L-9wu97LM<281+C1Xt^~|HP+MYpKIWmHLO~$2X
z)t^5&pdk}jRz@!7f?T3ZPtml$%%z5#56Ak=IfG#!V$WRasH*<vZgTyUvXiCG69);I
zNP2MuN7ARBqc!{kqh9fp_@%A6LS$EjgPmDOwuxT;3)(Xc3waFdWo;b~&1%aDR5P!;
z;*HxTKWV#5m-|)TMi-=%z(;zzczk()SNzF-gs^VCKR}Ck2krECq$<@3%W+SwYI8Bl
zwan*}W>wq=mjmg&)1H+IM<qUeq%=2t%6`Ja@FPU~>kD#xZG1fDefNbn^Xj9b*<h)f
zR-yR3)hF3Wk6Jqi;&_L}#v9HBmn*J&sDRMJ)_6;+<FC(y_Bl}d8`7TrqnMsAvYXbP
z(eO2+<B623ipFBx8KVR7qv47S0|NswX<D}Ufy3H1Ha3I9!wF2Y>+=|+*(9cP7c|1C
z0_*Ka_y(@H3e$%xZM;B%t^d#cFlWGwWdHnBw2$g~J*}~yprMyDHl`TzJe0!5?(6G?
z`9%HaFH?tQ4Q&zAE*H6N0r|ULQB?HfCFl}LlD-Z548I5Sdt|S+Ixez?%9q%sV%7{%
zVs~F7IV&}MiF4m~M;ig~bbPfc#<R4RM|a3P_5}_?`czyqa88vyART^CPjByd2nIC;
z80FS^R@WutDVh9-`y7Vp-y2}wm;`z~8BWuL1_4V0VvqB4>QB3`mA=7A5<;#$0!TOC
z0NMnjAke2-raI$S!yy?s*mfPkxgvQ-)9uOp(5n|lsomyY@5mm`y5ubafqZLIiV{r-
z{`39mynox1O9yw;$hs-1N?vZf)!JyX>DBwFx*xP9!v|Q-pincZ&&Kg*o}Vs94{PxV
ztB|S!5yxU@A@r0XX_5Vf`4kKUk%=7^+dMd*fuB>014>aSxR<5hEkwW?AdgiLprvCd
zeyZEjA`C6(a!FX+tv2dM7jW;cC6OGJGfTb&EL$=p?`ME%2}o<NYWyBb4~B#M2+ESP
zBJmncVUy7FYf3a3N(Q^;9K}cwjc3-{KGVIwPmcJ{nd2j*tN8EQmW}rf?!M$JcZYx-
zF~P|Q?dImju)BrH>3AXGtS~87N+ZFJ+(xQYH-Wrviv!}G<kLo{&g)tPEb@@aQj=W`
z!IpGGp#;g{lowC+iABYxe4cdzbwy%lj5s;-S=HsAB9C}gSRK}m1MhF_?mswIATTjK
zRybrT4evcimF=9Z@%6_OSe}E=y9YYE<+Q_Hk|YQD)D^B#D%d5o(0$Tuh$J|dx#Z>7
z6Sej8YfU1)rX{9p$V9an|0T6|aF{8yI}TshxH{F>=0d4#Fv`vN?iBvj1bd9B!+Od*
zig;Gvl8DQEe}<s?!wF~Ap~0NvVq8sF&A}Su<yo^xyiz<^KwjWe)hS^`>{@aEcgH9t
zOc#zwabyB9%5BQ{M32NHt6l`1<v^7JMZr1@#tNks`cHxIG6?%g$AX7xGBr6BBtnrb
zFY<%(7>vc|z9}R!g?;!-)hVholn-*ra&M!Op0cPIv|DaZHc9ivWutM0nF~MZqr=;1
zwIMvn<q&#AkRe%LhPox1ENxOqksR;+`mkBE^fVf*dAaS%NR(-xY1}JjPh{)k`Smbs
zix5W~jm2;8ci<{?CyPjBnX+Yi-~txv6mK@GAJR`Ee)q9_sknSH#LU|_mqrO_4=6dN
zq@=ufZ=48Bq$OkML`007hDw1!R!!34PyNK+`GA9O9iC62H0r0v*Gux5yH6a6)hsCW
zl*Q$1xOz5oiUJ-tAALY2I`{{Fxko^Ccu<a^b?&)5J4Fg<^s_T2FVJ>nf67(~Cwf1{
z<1odiwGYMDpIX=><I*jwm>j=M<sV)=edWpenW@tyuH@FKIVjlNm)~00P@3z|-^r>K
z-zrmlre1u+6A(ct=&(z@#e1aG@>x?{^YK-qh@}}FIAZ7sKuu9Wi}%Qovg3L!CZwFc
zFaGZ7{m|52AwYcm<_(it@;S)lMuWd~BDr`5mhI-j;z2u`hrH!xnGfzrAtGkSfU75I
ziw^bTXGgB=GH2V>gpBeUc)RSZc{ei--es;x>3HfKQpvK@7y2R-;UKh>!0LPh6=Z4}
z<%u;dejSFI&t5FKL8Q|>%U%T=0H(PD#0Z6_j*#<Lm~kQp*n4>M<tD+puRG5rJO`hr
z)FU5ub_s&N0+w4rig7g81EgoL6e^S?s_1oL-_&kOzeTAEHc)w~vY$FqRoISv<+{IV
z&iHT!+^!P(?EuH8S|vDLzv)HD{}X4itM3zhf!gII<f#4I0%jiwY{h$O@$?aYKl8c5
zf~{A7u8+Dm>_B^rRFwY2`RsmW=gH4Mv*U!0fl-#hsfq@yBCWcXn5myz(O{);M~f93
zdoGJu*PzrqiZ$qb^V%!CkRO`Nqka~0Z}NEoTS<x#Y+vS`z-kW5ITE<MJrlsFwxh;1
z42)3!df=GChgj0~EehI|m2y6sqLqFb1((c~n@0p9k)y(&{|=TTZDkKgGv3;i6LG?b
zVwL=Jh-7nb;0G5L_?J~CuyImZxhF6q1$>~(k7=L+g_1Anr&vNXk@QiMjCf)=Rc~C%
zLfhkjyL+va#;zZI{b9c5!C1wY`Fx-kYIbgS!+AXO^q^=Ci~j}L-to4e-2Z)ior#-@
ze3{%W`$h_ETKL-D-ac4Gz*TC)?yM|}*80AMBLayECE<4>8JD}bbAGV}Vow!+)>G6V
zLf9f-rd;*A;z;?&Ew#8xd7C-#FTtliiYN>uiFfcWjVr8R=d-S`tgzL^OQh5C#6*A?
zjf6p9(Fy7;dvTSa@ztChHwwA>{T{|pkubGBg)Zrk&vng5^OMDnWXRtm?okk=3fPaO
zWg<$-&!>6HcHR3GY+&%>yQC(rQm93h!|ohjXfDWT2)WF82A*GzD<dk}OsRG{aR0s~
z+T!y2ea(qVS!VX!Q0jo!gZ%W4uYf24vE`Q%RJ-p}wZZLC4?QM`t%-?8cL~<S{89G)
zJVy5Ftj#<vN<WGOHMQpz!BRdSCEDO~;$I$5jH#BRTGp-YZS6@{qd|kiTr%>NC$T~}
z9p1l4ke#zDgdxyi3WS?<yQz?l`n+3dB`L6Jc6H#@K-WE&&6-d(>n~1$FE)?6k2Qk4
zuo7s6N?KiZkn?DvF{VKrGlt}_ClxUQHCFXf_qR5Dr2R^pH|^gtRYN~w_)FJaBOxbU
zI@(`GA7A=!7%l8`!G|Bwaj}1hxBVJL!6iIit;6@8SpSyIX@5cteND&~%FYh3MMEWN
zk@SKCDB0Ll+I50ZNArLN<{Cs&Rl2j*kYSrv9oPW8DHV7@*So+_a*ow6wwfmU_bON%
z-C4!OH1qWFAzFFUH^PRVJBS~KGx<HF6Fyj)vX)c}?Aa~T6GFgdnZo}vh|&4BumHTw
zy(+cDrIA7PraUaDJn6rowKL8ms+#Jb3kX@w%@5a>Q@X65<QsVD`$p=S8+zr3S@C%U
zTFj{RETf^u-DBy83x7)iic}Lk>W^&U-I0v#XID#0%MZ$n2~ZFxGT@=^_E2uPsurgW
zFN8;iIpR+Ks^;|-?7R8-d9)?5O@StXKogR>-b?6{DhAvo&7gpQ0kS2d?oD+W{1Y<~
z5s`vqn3HQ26&3b?n4NTO-81t)cMNWXYw10;IFhb&zuwzbF$S8j9bx-!Eks*jALndD
zwF$NH?zDt2C-X$4aDsY&Bg}$ztJeF5)arY~j7LUBCOmxZ*&|sAcyGRBk8MQ%%gMl}
zP%OLhwqK6d{O?tuhq0?|*ClZ#Mki98SxU*2rz#()n*ov|;wmr*|KkP#UX4TO9RBVU
z2)l8;!O-4<M-)39NXF58WfQax0cQj5biX~(4N%pbWmzz90~Dc!+er(nZx7YpjFxN;
z+aauwLL`q{W(zOQi(EGRyf-8rBYqV3T=WLswM0VOFob^bTRSq860ZWwX--3B6_@-T
zkr)D&|J;alkU&GhnY2kMsaeV<_T+fwy!C-6dmfFzV>-_w*F^DXrv-z6iL;V~v#VX}
zl~S{@wlGvCAK8N5qI9acM*Vu~DR4BEnsal;`!!@Rc0C%`!R)a{%n=+-YEZh8sNcaV
z^?KGP2%P3|Tn^v+^OU}5FfB11Hd>faN`>2EAT8EkP|uGHF7#2v2ejBvN8xeq`y~~W
zSrk|n?u0m-SI%%W)OjB(PbVO%Y#Jeb#RfC;I~~NU7wUy~!zcmT;P)TmIqo8;cBqQg
zZeghRuId2`AXPJ<W}PZaA;;P;g5B~=xH+)m9*Ds#th9Ngd6N+NpqcuC;=lGNn~l)c
z*bvK~=$dFzaOt&vNtr87)Fy03+h(t~T6GFMf`kvf7nZ8YnHf80A?o{P1O>>5*^HpI
z*OweeS9Y9W*K5ynm|JajG<Z92#GK&3RBp{dWx=_s&LVbP4%{drD=$*eCHpKi(<O(K
zRO6P@J9`>|YxdTqsbuVQyv6qROSNl!HpbxOq`2^s9YoH>yU#TT7Yx(eeE(>&|D#!E
zb3l<G`tB+gG_3$5Y4T6*W+jFi0D@?ZwQeP1$-G{X(<S`ZCa#Rb2`*<L2Y_i=(b0*}
z1kk9!$4(C`Oj{i0r0H|H1zeZbgga0>D;qegUCXFCp2Ly8R(2bw-7yHphPgz`dIa>N
zO2%>*MJX=ziERjW9`2?V4^j-VS`zBg7SD3k>f}CMLFH_iru=|b8$2U*_?kA=jqgte
zX1RAEmTJ#<h>2)p+b-xEmtvWX^-W!Yv6Ap<>x(v#<g~wxinbV%5daUss;hK1_t0IM
zg(7O3NF4AP@wxfK#KpOIl%kqTQF6OEo+y5#v|14}-i@%~)LL8|XffBBCGo?Du;A4`
zaDP@!VCcRyVWTmdl#k;}csGEU&)T^5Zcql@Chvq#NRt{})h=TF4G_r_Sqjyw_WZ48
zkQ3z`=IE_*+VY8d!DSV9invY|A;x)wm-Ks=?Zx4EO8WQKuSlqy_VSeD``3&6-?ajz
z%7UfH2Udo~cJ7_oXqHJJ!vDfYd={44o7?z6Wu-=DE5u}vf|R>at|R@qRxI|+H}I+;
z+lR&9DB7DUA@cbNHbc-uo;@bVd-Y`N;M62GNc5>RV&i*V>%dfw3+KfVrgVX!+<6%X
z+62yOtqRTu<F87gTpS^XvK<{)@4pD3VMs*V+>RJ#R>r$sQDm$%#SMmq(q`)`XtKYc
zu(T_ZmX19ALe7i!Qt5HpP&~d?(_MVnfkio{PW$3j^s*$YTa_m4Tsg8e(OEQDEh^SX
z;th{C0s9iMcUR>dYmuEL`{*2nm7FLwJJau_MH-A!xaC&tve3e%WZ+H(CY{KIBNIuQ
zkMoxf`LNwXJwDGLRH|yRcaMw?r5cvd$uQ6tA%0s$*HO|Hf&m-MIfS$d`ykNqaDZ}7
ztd_X^5Kg?R-*k$I{hE^@0c<;!QF$IFi(^<Y(a<C{=kM#>F2P!LruFT-xLJbU@bxyQ
zbepDCM<>6ERKPyxcxB~HLa(=3#A?-2!8d@6naenyvw>vHG>9erojQ_we0KGTbVsF)
zPAG~9%`j6KS2i8xwEfrTRuThx9b%;X@jUmqs3=(D(E5*ht(h|wi$xJdJ05Glr50MQ
zndPzs;sX(}^7T4y4BwOZc|Do&TdjJDmQ_V@adVH=nfaNm{ixj9J_fp6kvHTH2y&=0
zWXoQbXkThy>)PGJdNO)#{`f*qZqMO!92G6@$YaudC91RWPPgU0Y_q+d535XL)1qN(
z8av^y?&2Rop}HhsD`avy#G=E*zxYUWYEebVxRQQb(9`ottHm*FMtwarJTM)WkjHhR
zel`--+LtFbspwbJs|EE78>e4nmL$4$H^;!esh=7~^G<5cCwoyuXz2St4T}xLSpD82
z?DhCr{K`7S-GSGbmF9kbMrOpn*e7yW^9XrARo9+p=pR79m*c=T*sim#qt9MEGe^p}
zy8dY05qO@GynzH;Ocmqc@fH$87&S?c{^eCDLRa2)tL)%lM4B)DJwC426rVx$__^Bf
zR}+WqDfRPn+g5!f{HkYTAh6sh3lHMfcUd+)m}XP<ib_ZjSzZr!Widk_6tJWyQ!}Gs
z)j8Is9a}!LpBjlbZ$D&U$8;lsBa#;s^@My-Uj6+tJ!PJ91Vp_g?Pr15iYyfg@jE8G
z)8^|f@wm_=^fa%RF69PA%clj3)z(ZmEj7L8VGmYwJ!E0B_R9oX)?7DJJ?oXI(yD`$
zQH=Xg(UJp_sb8McyJcLN>>uWpW;(7&Dh8|F$~c=sRRUqH>#GrB$?^Y@>nk99rqo8^
zKlIxSREsFo+#ZM)Xxa@6Fj#nS+MjZ0N5(a**V9#2r+Gs1{hPl3uZQ*jKDyUQLH)!A
zDL}5hA9PLA39z0}98e6DD=uV4r81a9oa*QW*^}!q)4cyd$m7Udk~dhH&z!w$3Xkt-
zHBA|EO>OzuY~KFo9PU&khTJ;d*jVg-%4uSm>RJd2iqy9I5y8K#sgT<m=XWn}a&G@?
z@7IqMHF3xqGQVpaZpL=tYmE9|R0?D)r$e-ZY*}Wj>#jSZK2y;1)ZZ3CG`5RI5*0$#
z-+*;#9LErOs&D8a2Wn{<6j66z1fH<n(9&-3Wl8>ujiyTeJ@JyJx3_gEV63GwGy7m>
zVx>meK_k-S$4SoBCAK!^y(H7_`>}XPE}Fs*+KtIL$atf;w5W^QVFv^$Tr54vX>}-U
zdv$r42Qa10kI!Jtte_;Qi52i(A5^}QgD~A4P~b>9GRHAJkD(r}Z~BXCrd&_1o6K4$
zNDmIlk<qi8)g)}gQw1{D3|q>x6=M;D_?<eWR8YWPh(r@nUhUhYaZe|PmZ%p)3{JP;
zur2<nuvCu3?=4Qb@L*wwQyfVHqagEPJ4---(sFrP-PLLj{ataFtU;UvC7ZBIgf2<q
zR(QfA1o4dIzq3X7*uzt!mVkw@UN}KMBqYl1atD<$U!#pqz>+hj<hOU`A|4x=ny+8Q
zxX`Ri7b!8s_dY~3!9zkqu^;XIUR01iE2*6`0eke1fTx$$X8nz_g<|HP-U<giCZV!@
zFBd^#zD6RWw*X2mCH)lOmkmqXrVHAH+SUT>dO3vGCx=E75^XQ-2X`<HWJ<Mcv<-Qe
zACz5L&<wJtQ^<+rGt~S+bw^v(Ho5&|#Ag04<2c!vcjH4#AJGW<BaZ>0dIKv?fLYIR
z7d4gDn7QrZKm#f_lTu{SOeN?~uJPZ7iN{lZt%9t|(IJe=xX@1@WY|~tMhN#aq1pcY
z{d@NqW#@4lnH!MBkZ04uj;_Tl1dIcFm!p~GtVlLsN8laT7jAIX9c8hf7nP`5;=s)&
zG^LtcjJoOfc}4|Q`2G8~`Xz&>q5sVSSWUJlM54sTmT=!MV5+BGaoqfT%=c5&wC%ZJ
zU?X!t6W!n%N+O_aX1qXBcf?QICPT<O#pa1$(ev)!4ISh)tIrvz_kG_1TvH*<qwbXD
zx#PU<)et8=c-f(lMI$v8fPWSWuQE}qUJZd3eYf)c(#uV5FYWzir{6Dxr=ZZoEq*tK
z{lEC={oEyyMoLN{y_X1_uP6e{+C;MsyY`X_wojh(hr(_nBVSF^Ynx{JqYf2-Xk2zb
zk%xX04r}a|EZr=d&;1Cds2WZsuY<2qm0pY%w`AWAltfeKOXKeu5!9>e8J3=?zKCOq
zFz*$i(+-<^q7T=<9&e^nDR)z1A?khc$Oi6BC_2&TB0H@+9mVst{d^Q>^CVDMsks^g
zo6iaU`_!gI<P#g7r)p~m-7GFg^;$iuvVqe0=`sH)kdI<nBx#32@uWJj?bYh0_u}3E
z<red=BEeWbh^89Oze2CGx+Oux7u{ckiHS)Q+Pe5}nG&9ZlT*PPZL9^+Pn1UoM@Whs
z=oB!#y}5x=#?(Qe`6-l7z~}n2JW2rA85uA2_GaIGtIngRVA~yHvA;w}D64L8B8kf0
zbFV<$5~s=k3J={oSfhLqfk(15J|FFu#u<Rz6ew?{t5fx2UW%9?)~1|iV#*Yet)#-M
zhQ;Ap7`{W*udHOv<A%^H#Y>%oO1ZP>birS@`PaL+l(o*uws8H{i{x*NQgVj$d<ZO@
zbZooQdt<Mu<i%nxCO>7Asw6ACN7%1bKHeEs74(AKa>X>6=s5bAJ>~C84ye=jQV`#>
zOQ6oigL{#;1f!cq;L$Ty>=n{VX>!Ve$C3G#IO@U33BPEAeB>7PWP(tGr4`4~z~d)-
zBRlm-)fE4h0+}CK6wr{}&cfF+HX*{(<4VOoo!N?T#zJ$=BK-k8-$KGSM+11G^~<59
zzW%|u{llS1@KI8Z+JcwY9^pvnD+eQ;4~15&kz!VN6N%}}v@HSHx`!*dEJ88#eKi`^
zr=}>yG##n?0Ta0v{O5^0yyj{y-lPc>g1E!$6ZDc8d^x;e(T=n%>~fo2Kbe)nnq0n1
zLxu>4j@@tx(AV`0eZh)tPAYT~Pyk7McWmQvLcT(J&}Wae>=i7y$cJ+wYyXR#=I(0c
z{izNc6tH0fl|<DICbt_V;p?!ZB5$=L(sjox2e;nc-MZsO<Mc!2*Vf4?7A?J{3n#5s
z265*jK01&u;r5j0_ocGv0CO!2RaCI`N3?_L>S`%rvH46MC-_7;p_ec$(f+x)NiA&c
z1|qW28*5gii}a!*QX=f6kB^EU7)r>Zh?dhby$(3k#A2C7DYEk3dE2mji>9C#xIN-)
z;eS!f`QsvAW<q<hgMa(?fusf;fbP$Lx@8$qLp1enn1Pj5@!K}2UNTzX{d>>+E<#rD
z2GIE#;av5DkC%6|;=>eD&P{Smip+{0(Nvj+KVPFz4?TTZHb9~yl+#)|(?%uEqWfbB
zVeh5L;cw7J61)C@&-bVJ%W^Ut=MLYGQj(!FNNJc1{xmu0ja#IA4%BnY9;fFG1eXc^
z+jc2x`Oj48K1;zj5>c60ySlX3N4TU>p7C5R`rp@)-4FH^@M`(u8uY!+>lAxGJyovp
z_>=-XmrP;1v4H_SbiLQ>1xWWR7QdDZsZDn(^~xo1lz_dTZI}h68V&=RX^}kP$0*8{
zz}VuIAB2eJrCcT|qu*k}YW;v`Y_Nx($H59i`ijRbnwIS-{=+v0^xHGr90dU{;mQvf
zKiuh6mB3vAbTrJ#{1*9&Zlk5@DYa=foK`2cO1k=!ab&-O+qDon(adiEFvPVk@~p|*
z^a&^<p{SCJSAnjbGQ~xWwN&)H8ZC<IW94NXpEaeMCA<sL{Z`khDmD8zMsWX6-_w`>
z`Zxahur>&O*9viTXjp|uyvg_-|MMn5TBFE8^B4Ob@3RDQX`IHzv{3a#C0|}z^6yfX
zkd~7x0Pt|?q~cl#^*qUXX!d|jL-_{%z)rita$F}^4+*OOYOcZ`Wk|1>Fw*VH0=Mdr
zxG7@sYTZ*c-iSogXO8QjDr*3PxoI??ijoTpL3v}uCUd%w<0a%YKh2CG4>_hyu)VON
zF(Uyf!fTJM#>I?jSph%TukSVfRNxpKvE=%F7@NwX+QGR<3579UwCY6Vw5ZM~Er55a
zkDeHugEkn(+=RLE?6ZIV6XV3`+1;5%llG6z;>)u>gG~<`O02>yO(~{7f@ixr7~6;5
zvPm-#oMOA(&7|mNP%Y~r9ymb*PE^@qOPTNTUUQ#UL&Y^9;biQ1<&MLJ_!UVGqi*-y
z`g%!R?{2HIblITE+V<FO1ETo-fCGyE>8JlHY}ZjWow@*jVNhfyZl6xa^{{FGq2TPi
zyZDxn({#T@bj{l18l%e0;(*JZ<oegG`ur#R3(1AYk~!IyuUy_jM}D1ccY(XBXj^j#
ztb_vAG}rBy;<&S~c8<5CS)gui=A9TOTI=UV;e;z{&kwjL_<UhJ2*NhJ^xZBrQ*zTz
z`UUp<tit{ixvbmB4@)td6A2uk94?7z?vjIjk!WQN{+k*{-iYrspXI$?#oSf`Bk&D{
zZTV`AQLdXGsqB^)l>MQ7$s==2RFjX0?$%RH{}#INeqXeTGhI23JFHK)T#t1>v0}0~
zDX;4As#D}`Rll*jl-t~I_QvaQ(Q{pQs5k}uqvCWtWSjTc0vMw8A1j9Vd{2`kh*{E;
zntUK2tokGKwAg9Z+b%A2FI?Ntp7i%3d0z_>G(($Oc*b)?&adt;h|LGxaNeKTuOH0C
zc7CYOyt}#4MuD#}%%_<0`QH3(n5Y7m*~fRSKkJDu*f2#)fXue~x%-w$8WL;j5V%;*
zlk_<!JWiiw8^boee{rFF`5Umf1~iR`)|y1+Kc1#hPCu{Bw46=cc9c*35JcifVV<fs
z3h{4d)VbpY7bx10i(lpLzM3i825x+F$_J;5pa@=6^1+S~LG@I%e;2Q`S^Hf%!S3MY
zwOM7+q^z+eUW~Ew`dd5of%K0*iJ<TRn*ZOE<!%e7l5+jB0<M{WOT1?{w`M70>EcfZ
zR()3ntRXF{-W~G#qG^o;`P+XRCr_5EsqULNu%1t|Y6PQ0#$Du2*5vRwRW_PUb}hF0
zvaqU(Pz3J8@ZlJDJDzvA-K<tTXC2pxJj<LjED}WX+w#_-X}1b6DGtL9Fck(k8_uV$
z)r$ItKf{&IYB%DY%%|DmoTUDjB$<swuBenQVlvzIeO}$xdGj#I>LXF`zsQyUx4T6p
z0n}P1-V;A6Vdo>;&-{fy4_)2ev?L@#<n)FM0Q*BY!<fa`#6(*M8WU%7axx%x6mI?H
zgkpOKFGP9|m@<{9j^9O-S<w0#+1fG#HNgY!-Y@q>1S;$;c%Vr03M3?jQ>|~p_H+ZI
z`A@ZWHN2=)+Ho19k`sR-l4pAnJ~)0Gm9`3vJXz6N>RU<Sam1yYbSt5j{S)!$BmL0i
zg4QCp;$w87Qb&!8!}w0L1D#Y@8E6V`)RH~cO4UoG`>eXV&SGN^P;EqOj^aWbPu8jf
zotHlz3kj(tX2n+KYJn&_dYl&XbF&iX5z(5IX5#Q!MBVJ*_6Ne{*pD)!+Nb|S>|I_3
z5~fb%*H)dUi)l`=ZvuDU>lY2YW;EO)b(?C*IX}q#hS3-CfRusQR*>2R3yL@R#7C)y
zxDh$#lU9CSKb)}=@X#F;kXh_-?b>Qd`hb52TiIklVy_P0_~$3ka%LPXNZJi_a4@J~
zhrAm3iCc?ufXcYf11<Vjh9wgvaQ|eM+R&J_2s^2mC_1Tjpe0TbI;mBK?xnrH$dhv#
zb_zcIlwbOS1FE(4S;B;wZ5k1lLWa@kcef|MXs`nCZ+|}EEr59iXllPI7JKZiza~d#
z3f=ks(vuODiEq2QNTSm9ytzNs!ecDChPl8F&e+)!pYnmHkThkkr%Ewh7lcK@+i|=y
z_2s}|A0?MSujh+i)S3X)6$wClX@YM?b699P|Is8!A2W%778*G{zupbEz#>FgZ28jQ
zSX&-xflskq_;YawFF04x^7~oUsp*#ZRYdEp<4GKt%nJVT<dI#AvvG-4FO1xf>Cda;
zraxr{w?;rQU^dlPCFRUz9C;=7W{oBFxMuxMoL5eXXgz9VNVYwuXfYj!9|NZ`bI5rV
zx2<SQ$TwF!MZ?DQY<6mT=T+MJSqi$~TBA~WyhOmA>(g^vdA;KF!8ED3;5JWhl<{Ir
zf&}XPFSnSsGU{e05H+=exBUe?s@uwxahGllq8rUA*B2f)f5+(qBh+XLwRS((P6*;@
zz3am*vpt3DygsFE^BT{dzgWxGsf?;NavjupeM^kHeh<zYnnD5QUZu}KqrHr+9LfgW
zQtBpjeY@x51kipC?K9`<ZFIOrHCytabSZ*&sd1?E?0h&Qcat+g!1`}{!G9e9e*eeL
zuucH#rv{uod2l30g^m04D2TCupP#>=%nTJFrw^oI>99NUAwQ^~>w|8p)aG=VhRjBu
zJzE95h_JBfM7~rk6vRY+R8-U)Dtj>p?X~!n81FlF>vSJf|8oG1^VM@2dvM-doP^w3
zBLQBldG`-LNocu0{^HD6O*q(6Sy=0$1nwqx8J9^(BQ_1(3y)E^i9H;xXo@cl^5Pfq
zfZB_3J6~$$*}c^BwL<C^zbXfztBr2yM!2Awdx-r{6RoFv_YIv$`btySle<$ztWD-Q
z;5`Ffvy!jF!IwI*=(xNgw8XW1!|qbcDLD1xO0JK`Q(EA{(V^_BXeL?VS_<3oRA8?A
z{u-xL!`R1qwO-_sfpKgpJzO@qgY8Z9{mj+OUfeJyvdq&OUW-W(Z#1MBhUB>A@daCx
zp8SDx`6N+v4=9@a%YoL9!vpdTZy~cJO#S-4h~VE=4az-yzaFD!R1S!Y_`ZG?4ApN2
z)3ZgTFMIUxg@v-#{9&sh2cJ(a8G7IQW&6S%@)@;;NYi0*7$g)J$D8l0=wj(SOpaZ8
zj^~O27IF6qfCl`LVFiy|k>e9*(+0HL=<x7BYcY7gQdgwj*)|E`S~QQ|tlOo+9s$W0
zZ|V$_Tfw3@?CA+WYlc>)Vg-;HRojMCa?)JTzCZ7a1s~f!T;)L3WMq--%*`(jns<WR
zwVa|yq<fpECe#(b-07*2?!;y3QxrM9w4U=~!^cZWsfBDNdA$5~Tx#;#*v23(i7h_q
zJz_FIyxpIkCoXeVrPXS6ecx%tRc;h~&RHeh>;9Dnl72+0DTgDocCW{FrSycX>%Cf?
z()vh7fBr8QSXf>>7QVnM_=?(Z5o2BwNgwCG+7S#nU2OSae)vGP)Zq~`NoiP}R#vM{
ze3GL*vF59l^6OVv@9Fyh{)6j%3^71F)sU+j6Q^<P9;8RgcdN*bjA323R!NC)niQ0u
z*IZNz_a>GO7Ay!XQ8BeT72?<^NUg-c4#tL*_J?eSUC-23RO@{<#N95ye?T~5PqaPN
zN{%yE_7=6p1(K3cBU-o*a3^d^krumKjEjCBgT3enLrYqFgb>99kvF{FZO*~vk`AIU
zy2&)ith6UdJ0O?>TJpvGA;67{zHf+R#1t?sY{FcSa&n;eAyplje)>vzZgRSUv7yPB
zW!+{BdA#f*tRrz8u&{5izOftv*!7{o^VzZZ0$-5}vgYJpbOQ&x%7N|Uj>#bnrUV8`
z@Tz;ayJ`o}{EfLQ_UwhAs*U{raVr1uKTqUTVh9?}jlA-Gmo3%NVN~mt*7<y(9pcvn
z5CEivvs<V$>zdv)iH$F&E0JSLP&ZIkMknNRRcuN+qO27b5n=Zw*HNT*u(izwngU}p
zGBTj7ju+}{K=*^8P$9t;-=IS6<wA;zb!j=o4d!HR<kTs2bkguS>=HERailOprvg|}
z+ki)IZmA|B;o_s_P?ZhU(#8&TQA`>M(E`_;O4cvy_^g^PGU-)s*(R}<6rl?XI)`&M
znynxIi?X+lit9_$wiALB!9BP;1Ofp96z=XGT!Oo6a00=C1$VdL?he7--CYakJ?WmF
z?qAQ$`uba|{-}brpsLQ<dp~kN_l2viFM84OE^rqyd8j5FE^Zp=*IAf{*~z6At-|^|
zhF)XRE=g}bhPFEUJ${XX?U6!7VWica`51g3uRkK=hG>r0meqZmnp>`>VNPPD4zHrw
zGOtZm6uW~T0)Nla9TuQ<n#Azbjm!lZvBvX0h1+7lOo_$XP0bEJWimzQI4Y70$jpW{
z8=%MxEkx|Y2#v5+Smw>jc3ebul9e*qCs3)^xJMRjD>}{SXo0sLgt1U<<P9z&Kf3BI
zqM&`6L*iLIPev!!jr&z}+Emj$1k<qaLm(9ymZMolpR}X*R5q7iO{tBL`+i#77VQ49
zB5y}!(B6JTZD10E2&+(5cmLF<Es*N_sqUc-K}ce$?^?kU&*7}`Z~F20oh_s0mvI&*
zL+H)6r<pf^Ow2Yso31lES5iWP#3K<;`6X6>vaAADMecgpz{-kpIdOK1S{Xih(D{Um
zsz1C1<YhpVFNc59K_!Pr6Wo3}S!t|QjL2cNfZBMvk~pE_5+|q~6fQH=IyadsRlts4
zpB!8a?4$na2|XLl=v^ONe%X;|2~aVVmk^K7txn%QB&hxPV)wn*DE`|Wfh3>&>HD{V
z=nekKOmSG-N)iHjt^(~ks2EZMqNr~LY)epc_*O^!`xT}dT+g8rXLY?zsR5ZmpzPZ?
z!z(2Q@vwT7n{P+di^blHHC5<sknODvEQW_d8pim|0{hEvO-)Uc0DGj`lHNjVp4eMU
zz_J?sU=%d{IC8{Nu;n+E#-!8#2{)ZAq^`qpjla>e0g0&|3-jHn;d@XsL7-snL3w4f
z@JKlYpYIa4Fly{f1(C6<TklG%Q;SjVPA}=-iv0f{m9)Pfq!RBl&}qAg@@X$~!$}>l
z_7n<1vn?Jjv|_k~gfjibVI9UbWS<VSQ!*LfWxRq<wv)6&4%OV=hV6_3hCbN4?=Dro
zp=gqdQ9$9)F~sO;l7n%2cFeV9PIVqqNW8F8q>3s4V!R4WCLaEjeEt2mSsH^0@dM{&
z<q9*axr`bI=d86%FIrP^;zARbwV@uiD|rYR{`SRPr$|`%VA%I9oG>g+lFN2AKBWa;
z!>Nae!$5;f-wgO%-h$T=Zr65x7RN|0o?@2X_#x^tJUu&#lhvQ(hJt$xRE+$DUllV{
zd6ogyteA|S=TpWT+Jff;w>%-w1j}A#ORL!96?`}oi7oWe(-b?a`AsvUYhtHU8zG<E
z-TOa=2p1$Y9%e{1Nb+x2w_?{>BK^rf3yE+)G6(&rJH<F@=`&v@(5=)A(=A0?68?<r
zVD}--f?n0S+^JtE*qln3nj)pN2E{8dRI?1;OS_x+{?O^8UFWMrr0>i+_L4y)`<R2x
ztzKL)ZSsBoiADDVCD?b_5xH+ad_zb88sT$f7_9hLT_{A^YkF@a;Ds0FHuGtDc*K<E
z2smofDfXtXPM|->YO$0Mu2M!Mcq=hZ7h0s1m#;U$U#~-X%$^vsvCGJg6jU_x2CjNH
zNum>s@9ZS^O<I(D$&f(7YAYi1xL;K}MwgyqPypcgRvmKVy!<aim+V^g%E3u)aC~wH
zvrL-o3f(eZ4@0=Yp#_yds2k99>=;-5E~%+nEzX_^jUXBs)u?B(;agFGtbT@8lqyqQ
z&JNC->d@<ucBh+_DIP)iI&bUsNkgR7=z)#T*3{mo(_U8MFJ?d*^S05o!*(^svPLn?
zQ1kx&K0y)~6XW0Ku6t`N>LTPJ5IO~+-%PlV9cubmrg_ld6|`HKjy_VrfJ=0LOgN7M
z`gX9u>iP2Xx$F_rCS~k}x^u2=M6R>&6`gNn2yiAX9j$j-4Z$I_q&e<4nJ31i*YC%O
z6G_`gK&6&Tqo^;G6&D}7UjzNeYlQz$;8hm;97ZP*`i51~8c03U5hxD)PAQ;aExyZE
z)A^`&MnjK5N8;CAfcbS|auOb2e-LvY&5Y_3opM?0nWsr*?OwIvBF%P&LZT?WX<omG
z9a{S5R$1@QZ@A^p)_5`5t!X%2>m~dIx3&}<O@@dhwk(b?Lj$wYJ;c8%_g76NWal^K
z9$}A4;XwDr`FIH!Y^>J7iAWQW&ia0H6Ae;KILsT1K1IaemEoN?@6V9om3_kneTPmL
zal@66eQ$lV%os!KNp`OYu^_^<ra|g1=`6v_M2-{D$>gEs-v33xSMLg^1Sy0l<wtW&
zX6BwM_6}&@mmLxYb7d>02pi_6nHG}M@TiK}Rx7vFHUmi_tw}4%Bj~zDcCuI8&+sg&
zwGtOonW=8*a$(1VGQr<+I@4c(^YRJeLz>GlH^!!x51t=;{=F!Z$Rcjy`_<*4S#9q~
zLy2S4rrA4P)b^vzV*Er68nKmC@(nhIc|hn=h{FaT%l*Mo?fzRdBBW5o7j^fCBAc?6
zK$>EAOG!y@@i`%%HHAYi$o>%DhCxw?&Ep+VpN%~Zr6{!P*Xw#ZcbW~K>3uRg=VB})
zL%^1voq4&S*BxJ|@lcLNEN^kH2mUFosc<L139F;tx4pw16OCz>598wUE7f<ep3a1(
zucwSP&pD~h7{U`&-e~(D$k-y<Bg_Oz^p_<nm#Q?UprOL`NO1!edjksfU*3Oej9Ut9
z+WBv_e)y^s4P11SAPtL2`Y3zic3_I@#amEL=#tXbHZjF$Ol74a9_KFd!r7+a;1Dwr
z%KX_x{faMPp>)B<BK-7&y@Ku-qp{r|#XhX#0i7}xf`~>UiKb454mq`w{gOUi|47ua
zWjCbntHkW&iAtDpBcRvUylYsxj7?88VHveJaSIK7YcKMoyG8IJB0ZgW*?x#IHYP@h
zUbQ3x09$36FDURbHP+XQtIf*q_cavg7_jcgV*E$P#orbUW6-N^_=-q>ug|E2$<B}l
znD|_3>H`ibi{wxsl~V0lva+_eE~EIA1;wvfV;-l9gJu~)JJfH=HBC589h?XHj5^3{
z8?ram>Tf21kbg0`QG;85A839)L<mf8WM}g+CJ@&bBja-`%XTp3N!37$Ih9sd6)lV0
z-d#ysNtC_zR*o_+ir+#rSN<?Trx~*3c{z-Ufsq{t0AfP`R8xL#aTveEHDEM66KXfy
za^8!t*;otuEJ9r}PsT^+?vkD9(<a7#e!P+x5oPSRDWaXPDzjyxHftOv8s>08VTO7T
zJX2e%>?V<@DpTa;8WL)rncakP-E`-c*eb6eDyHfwJn-<6V;yrE2i=!-q`Yvx9fLV%
zQS!UW#Z2zW+C5^X%_HB|#>~CdG<Ak_LSZ-U{wS?W`KQkH1H0uTa|1HLXx_&HkG!KL
zIRQT~qM&78^c#4(j9>MuvjAxmXr8`)13Q+&=}`Uba=akI_k5cj->OJ<zzsUAsH!Tp
z(;&&F<*4Ry4^VOnwPbU)Pkg(Mt&aA<EazZPo|h@^?v#jrA`ntCuvmPJHXsG_0X}br
z9;1;jA|mKeBteBzGyPI;ETc^GAu#<(CvYj`QoQ`8P=!4Vn3mJrCYWgA;Y~K7@J?il
z8)ziJC;%vFI;iGrs*Hjr%fIaSWRkgr>o1%#_Vywsw7IBI>`#M`RHk$Mp^zZmoWT5N
z%2J5)a$_KAK}?*k;&ITS^R;SRZjj_Srg2)D%C~D<Hk*MA{z3+_ENcMG-O3Ago!NWl
z9Mirs+{!s9R>7a8|3ozUkq%yUF(dG;DCC`p-Iq<%t#$=vvL*KX?KDacEjYY!t4}I#
zRfM?L>F~B&1Pu#*RY!TxKUWP%Yqvc1tD=&KY5Pzc1HKeEW5&6Zv3R;wbY^YvRRha?
z>4Q?C(C4T*`dz8hgQKhQPjXF%@bl?aP1JGNIEuZAN=CbT!bRGFBqE*4T&$EGIgbys
z#0lF6a!akHKL|Ka;vYcgTIK1Kryqb2lL9^hI72f4V^VngOEU>eM|=A$K=D2}G?d-h
zDJUsfq!Fkc-u0iyVeQ)juhJ6Y!VcIo*Y-$a`6PiqA(HQMx}u32%NaXeT^PzG6pSaX
z7n08Hg6wMouz*nUC!Sf5SmJb!$ET;`z+l8OxJ*zM(<IlLcnq1mW|R!Oj_=k{U^pNf
zxVoyMA}rELO$A&5Njx-w5zIbsrM>RPa^nR>>f;j20703++$^eLsYM@U@=ptNvlG~&
zG$SK%4J4KtWDWbtMg*J!(Vc|sB|t;18lt2`S!64~TpWgk&;A`qt!j$20VisVj`7J!
zB_%VFO~p*ml>AU=`0TqCcI4?8n^2bT&^UE^K6KzO(j1OQGZQCAD_u!sU%GS991RK;
z+%R+cZq`Lr=-75Qni07?9Aj+vwFSiDeMpwHw4P;UIe!IBL|EsQ`Q3tWX2MB14307c
zdQTyQFLx<)Qb+-GY)k<og4<{(g?8^fM4d5nbja^SbjwN4=X9T=pv9_>T~13Y!@~Tk
z9o;u0G@Je=-U?Er>?Nu73vj1ICs0xf@7~|ri=qp4cmFzDx+*rAkKg*`q{+nu%RZ^~
zeZTW?=~w~rC|E~Fr_fk~%=G$rG11d&(Zb0*jQ`uHR206KCwMEF)?H8!IKG;|<Xvan
zejFwlWd&*?-RFv-A#B6hyt@KsW(_kcE&}zy=ucg|=vD{Zmszvl12M4UyXj0EW*&!(
z7}ZxN%Y8NVfKnh5eg>9>K7u3SA&n>g!79SxCfP<+!jF8%2ckV$<6ynoiV+{5LmS@}
zS9AAN)pBbc$YP?6bQp1f$q?D|^|iL?!worh^3Gc<-jvZ#a`LN7K}g4DX_S){6|gvq
z^2-D~MI0^HGmwqej02lDbh80g<^pfA;&6V%l(LF=h-ncN=lwP%7D~P?iBb0MaJ8P9
z%A*|QHvl`{qh7<GN^uINeo$$STBD5pnR=Akuep?r9gEq2afXa0*imudRg|ww!WrO{
zhb{ocKu=3Wt>%(hpf1?sS3PIdufEW@h2OyNXe}_!`{9E^9?v6GfZrAjS9*dB*0!-D
zFGtv5X!yyxijVMoY;v^de!kp~V7XU?&U?_1d^)Q_0;j2Z{pAM*1#jfs6tJW~YUAX^
zb{IS)@c<WvX{bb_N|bk%lbajiqP$9;i!thb`Qe3jV8vV#%4_d5YhKHSFaM?^{g>jx
zzlcjq$zH*Tg^U)+6|31cKi?m28$}Xu3Vs<$iKZi%Lk;9UAQcJ{hZuf(r;a)pmx(w?
zAQnlK3)lppDdUch%+4kN(_gZ4dw#wQP8$LHK}=ITbOBHR^d$VK?aOGI;_;hgeO8m-
zW9(x9qoW{b^A|2!zvL&9{%~J(2&qe}NS~UItOzG8i-m-D-lsD8`o>3R1sW+Lt(vGt
znFh5V1Y%1N(&M`mO1e)8G}M!2saSxHH7jJDBT9^)`hK%!UWR1=7;vO9c(mmrRo+6M
zwZ<}H?domRisHL&9R39R`J>vGyD#70!@%)*a~waMx+wo7T|y7F=w4d8sr&c>o^NUZ
zU2LIpx!iuDv{{ro4v2hMaarOYX<gZo(fo*%uxzOFj89pzEZFCxC6nt0W6x{5N_dI0
zZm%9itC!d(J2*B$%)_fre%~)6jSa0z?lz#<R2v01p|fkzD=|C7W8I)?8?>k}(VGgr
z1k2+tRwFgnc6$vd!eQdJa~=2UT&^^bLKnHX(LXD9jpQ4vQ*dN4xE&Hn*b0LkuhxJ*
z=?-Ns`sZqHcU*Wgc_(Ny|57_(o*Hkul3(-p@88)%!LkbTxu>jNr*OzAIfi~yQzA6u
zzRWiraFOsTvvS=}U)L9$?d?(9hPzBhjubX>{S}iu7NzcY64;O-^Caqi>R6at^xqPP
z5^OLam~kI1)lu9}=I^ePMx(R8eKc@ox@)<fP8c1dPJhlrgO7<}-D;6*;j-);6pNsE
z>!(3Hzgb+qB;&ID)aXcztho3FGFmh#e$9z;a~w8#pTeyF%4*&{#QB(oW_Q_XmhGd{
zpk8TnUPxUXH_zqo<Ev2Hp6?HUrc6}f<r%gTuRkmv6Y=_K`ub<{)dkMgK%ZQHUU^I7
z*A<VKFZaiF!<uUHs?D2BN`-({$bI8<<2e%#DrY8xC>qfIKv&R<q2mLcftvVL&xd^M
zS+R_d3x!Hi^`|v?)alJ}0M6@!fd2UEYS^EKd}4XIu9D|u-kXo+Mm8GTiTO79<*hn}
z(FAs>huXh!u;az2Wxn&6P4H_r*as^+_S`{N=2CXmTn*P1|7nMAH@9kCfq5R5e0sd@
zX*CF;hoi|o#!Ks@V^?u7sCdl_@e?6pOOi?RPVCpnds1l;X|dW2C;kU|%U&K)2{G#{
zU)+`|xvEVY=%kz<>EK?>pAw9gN0R8?w^$ll8Oy|N@Tw*j<xg~d8ID<HI&6CpHXg9;
z|K3pTHBWZe`G!Tgg|W?>a!BPqnBzHfTA-s|i<o3eVOzJwwyh-6!<hd3M%y@WUB`KL
zFx`lo-U2^HUKQI%x#2)8Jh}c%Mx$q;S9Js*vgi7&<b08{p2oz(lPV}EXp{;hk_Sr-
zRgT)F2X_7c)^qs3`w?SYsPaohwvdGYKXSb{6{yzS=Y=B~gZgDxAjq`5>r^rLVA0Uf
zV|y?T8y>1ytvnAHGnG{ASnKeICvFj7ytuU+G6&zgTk#N)#lo)#&HNCFOqRQ)8IlBx
zbGLbGQYJHiTW_S^hT>971e`oaf7Cmn*Ieapb^lQ*M;vbk$6<r_G`6dm$h(0%kxIqa
zq&!qaL!Za@vU;uAm>HeJGc?fl0J=cj7mYY+{b<?IBv`2ME2KxXv?kSmhVde4up|&)
z77#9mCUS^*=M<&dvLWT-8<Pa&5|^wP8vw%Xsq3J^%5dFL)1<5PT@|HF)t?gdFZX`&
zqDC*fd=u@#h<$kaFAp{`(45zS28s=V7^<C=1>xB(%E<v66yo1-pw~fegKP1eHwh|q
z8kEr9ocTWjlJr3W)3((l(g#-O;V1_&;h`vQ2EL+Wtf!_M+@py`g!eaU7(F5}om^D5
ztw&e^Gpz{L@r>?EVE;1(*n|}l|Jv$6#N%?A*F`bY8lfa>MM<xpJl+P518Ay+jK})z
z!@}LAL`|)hjokQoQF6dJ6y$V_Zf<w;@^p1db;tKuAJ2Pl`b|Q|5FIdkK?k`D2=M;s
zzv?}NBsy}K90^hF`#d|4dfoL*Zqbx&?v0RE-{vP!nxV$=4=MuAh<RCz*v}V-RE^J#
z<Mxli#ElU|_lE>_>2?Z@^rBQdd-DE%CEgqI`S>jLO`i?*GB{d*UVpVgRAa3rXHG7Y
z%T|Ie`-ERpz7z{}2;eU8%qQ`#`xNS={H*YpBa3(UH71z?9~jKP0eN|LDhI=@!D@!X
z*Nxp@W^zgQem^0fe!1#{apHT<xp8PN>)YBIz?3izNTS@y8G#Y`T8fl>u%k2ksN!=H
zOTni?yrnAwrR+xcxYnh+cU*_qW?|TOMd>*OR><ewJ!*7%$T81JPp9VOoS)=DFzH9R
z*Qj!iq=+X&)@rmwSa#g}gzK|$p1gnFww#m7dVg*Vvz%Vus!6Lt+12^jgCI3>mHy%(
zo@PVB=l8h;aaT{K_OY7<*t%2qwM`~)JaA@|wds?mkGXJ}iW#zHzTsCt&Y*ULsRLFM
zY;OAqmr&SPIN@)@-R-k;-E8jf5Txb>E6y!qJTKjM%v9X2IZg)(+&Fa<i%OVVKfcN}
z{pm)->U6jBRA4U>t88}ptEA*R<~*7)31{WMdy@R$dF`LpVR|S^EP=jisZD4eE0DdG
zk5gLd=%mf@KMxD%zTq)4F_FX)om}}&Tc4&=ZK_aHL@00fxxyfDZjFs5v><+tB;cV2
zAPV#k3&#262B~&>X=@Kl7Ua>e&MVhu{3;k!DOk{WOD`E_+U4P*WNmMWg)@c|XrEts
z9|cnqU>|PMh-52uIUcEB=-HR>l0i<-JGC<-dsRx!5s$Sqv7b6ry^e=JfcD-sF3jvI
zcS)K&0wA>79mlX09}8UDO_MVzP2{CQSL#{?@z%ATS5P2imBo=*^fRH4J0IeUIuT3V
z7PMwo7I9oww@MSM>8jF|=Y5ceGmp6&Fk86()^IQo&Y3>~@?2r=kiRZP0VY`AQ<g1?
z8V8DK>fYNA*}X~3s^vUbJor|4?<r+R-yyA*H!`$<C0&dT{#7<y-YO>|SfezIbqK!R
zrQ&Ls5TBu8qEqeCK#U2LI>4}K%VYH@rVi7zR1f~$F7QFKlr>pKd)yp`462g~RLJbX
zp;qbO6mM7ap5n?*qhP2?Iq!f3T;pC9&oIms)vd;u9TakRXO&h~R_NBUu%o8U=QL0^
zohnx|JsT6m|JJ{7thtnn+DW%`N5$yg7j8ArY7trLLfPst;9{|cHT{RAZP9yiLw6P}
zRaGL!JFA$UiuXE6tZyxn6At*pvjyX9h>|wX#>Ltu(mTB>&4W)Rqt2pq?)s4LHzQLu
zacYKP=-lf@JpzA><X8mAPQNp1?fu!>!gYGJT4(-D*R5Vew9)S)Nn_@xoQG&3av#ot
zqoA|mmZ-gmcj!O_zNv%IynnBOL><|NcUj}(B_vN4kQiCWCt489S+wbQ-wqWT280=6
zm7>L?AKZ3dymP42?|)_}gSvh?Z&1PnF#p~h%XGEVHB(lJhmkqk1@I7NyCjW^mDhST
zErOKSe5cPw_6*Z(D2lW*8PYzy1>noG8@KWaKtrQ~sd3%++6w#q<Fasr;<`N-ZR*!l
zmM6FTi<A0G-K%Xi`fASX(j?Y{R}QFj7L_Gg(hG6TLaK>VW^d;;aZe44Ep|7Lq&_^i
z7@wc^`AlM>6&L$7Tt*Udivk&M{ZiM3>$Pyk`&k8^rmchjdu{#oi2SSo(u<ToCN|JN
z=5h-CAsslO*tKI}p<SAtP44FE3Q}`^Zy>ZN+L$sjFi@DaV9M*m!NJklH!vW9idaI+
z&7E9XS=k*_pwQFZ9PWl^2n!4Q*2U`%de$VKU2}NR_WnS)eWgdKF}v0Qkja^*kBVna
zTsk?psq1!I5)$_Fd=#$_x%qLDg`hY|t6M+C$Yi}@G0#Ks6-+J^NWUiRhp;+hehi&i
z;HCaczUhjL8;6=sdNlSjP>?hk?e&_`rk>n(AS{bvdXr7ouMa{w_&ez~A5_L!Ya87S
zeBZdk&n~+R!Vo{1aS}e5^-NdYsx~SvbqkBaDvqW_Z@9Fik_6|%W0g_tE7q~e;11f`
z@)5k-6MBH8m#FfTvkf<pI=n7Kw2sQo@`EWnu9vT4ZzQ%6_i-|N!#4Eur>x-mqCk;)
zUXIaBZlXjg5l?3iCno9CiR@T~VZO{@68ZYh4ujoWq-z|=k9kbubh6kj#U#T5SP1-u
zak&oKg}UGehrS3y#es?r!kG$EOnx}zBf366sGOB>C+$Xlj}#QZ{8X^vECmcVIdR~8
z3e&mK$BH-@PJHa1t_oi_%{HI<ggq8pV5Y37Ab9DMCY4K85=m>2{AXYotXlvK44)w?
z5&N6-U>*xN8d<b}0G|qZ^MmcC;E2%BA9^XD?6R)?I$8fVE%?7?Tz~!H8afm(jeB)a
zT&}3D{&Neo@HVp6Drl`=Ec(BMTX$$bZw4#`;l~5{p`V`8@?1DqAL&gO(5RZP5gTA{
zB_;+YxSwTf3N_h}_og8`2X805pG1BR4bmOR5EXf2e+FFD&fLZ(#4^nK00F9*e6T!y
zfYg`TAX4VG(Nss7D@4fwsXREJwz>sb{xTiMCpn`pR$|0Qt_iArv$`$na+clvp-TlJ
z;dGWX9d>|#q#Cdjx>HoGL0I?07W)bx!RQTg{SUP(W1(oTI?lHfbn_wzx!;cC`{T%E
zw@s>o?b7i6-kac`Bpo{rGTWMD4Bdz?&8+qk%T2bY@w;jADWl*p$eGhUlv^@w#I3cI
zLngA`I@*;PpOuZ;68%l(^)jw1WZmuQt@9}94~pRAg!$+(!n)^o{FeXgs6YK0iH@dV
z!h6E~CkT<%m>&>{2#@kYR$*(lMTOH(pUNMnf?)cCIlTFrYRwrnTdfb@lTO>n5yDC5
zH&@3fJM)S?_9iF>zwa`_iz%j|#XQ*HG&)?97MX{I>?s&p=TA2I;N%L*R4Ufn;uJwZ
z<Uu-O`L!?7xp%OTQ^34{(ec?69xxjhrDJ4_v3?C0M^o4lLCcGb5%4xA6sR#wImscY
zZHrzUKi(+?BzeDP)Tor$fSw+!th6s(o+=a)PN!Jz$zC;^3>rh>E5VX{JlQ%vX8hbp
z{KIKlo#(XCcQ62|rlpt_Yj-O;F1$uv7njrBUB1v&p=)qNG%vLoTtIOORsqFbI;$S%
zG`e`()1`iHR2?yF7rLb7UPn|3WsAeXRv2r4SA=?r&XN=x^HX|65D838`pvVa1*4Zc
zJ)ZQi;r32m#EsJp`eDfZysbRu>G~(PlHO-=Yk_A+-fMzX&Bk7%l}hv%{eO`d|Mf=y
z_g4kjuj%QPI;g2WsUl$E{B8HNH73(LJ(1K=(BE<zxW4EaMDY8q_h{GN>-9K@q_(qh
z_^YUpxWz!RI4dXi#``{1LPtyH>!;4%KR5XO$ZOPEJo9j~#jy_!+K0j<26ITUajsuW
zjtTpFM|?fq!ztm^Z0LSV#F^o9Q`6Pe<hQ38(mr)Nhp(9)?g_5@o1o7H;?U9e4=#uX
zx$WmmV~08*z3--$CE)+#0GXIbEgpRS(NP>_q3IMloNzKBw8zFoRFufgy-}ggT3=aS
zKIgguFoqPc{hiP)VkB5oU0t2>=(#xLJh=RLwclmbX1k4yfP#|W6^x=JEDVi>jXlV5
zjcU+(8}5t>VZ-Xl{jmo6VSI7Z;<u&_OfGpy8j#+P=^EfLDJx3I@>a4rTthMy1^l|D
zkmW1O`hQ1TcZOA68l^hBhO~Z6GxTuLK!KsgDbL`AtOynnT}+@5Cv1kn8d+H=8Lwbr
ziB3=-RQ>01;!m=#Jj6#bg)Q<_pOQAZX#ZA7DszQqiRe}c{#mBD4hmBN21amF?;ThP
zA8%&qiToQGekm5PY*SH8j<~d;b_Xsser&LG%9z>NGgUi1XJM6rC%iuSieF6!eG4{K
z3C>oC;dEmO)N#KHgS|#0PG87yUfLTJ${^wS)8CiZIe@pfy`&U7|D!d)GNBl#F7?M~
zSm1`g$dc!DyrjAwGBLK2!WkS|V_oF8t*(sM7m;{<=S(F0#aUoEdhcl75)cq>Uv0(I
zDdxIzLZzp2M@9pYzK95nl8$#K3CGTlrlu-}p&@$AlgS<%vlBNuY-nNQ{r!0s9zA{>
z30vi3epkR?;hVg^aGMaco&DYzQEZYq37aN@u|#ueerKnH2Ij-2eP|MA^ic}o_M0+g
zo#u~G;Vr4k2F)Z>G^Li76lmye$0X!bHY=rhLW$Jq{l!W&DqJ8o2?Y*gh(O`v9xkqA
zt)K+(dF&mL_V~@4(=K=V-M9UYaJjsH?&YVJ<a1q}5Rgu>BEaVi_*LO{mNx7+tML5)
z5D+nt+X@_w(!?0`$);w#C(Ev`7T$LFuf*OKi{up>84cEa!>4h#ir0}cKJ5Q27Mc=4
zpPj)>28V3=2Y<vOi-=54)@q@ekfmYjEM*Z7|K;pg0ICs`3Tng&)XZj?!a~|6IHO9@
zj|jRe;-ag@E*d4_psPYF%Vhe@TrHv@61e}<VOKWRx^%r3FK=SA_c}XQs;<A*^ox31
zCh;_fAU8MnTX^`)7;3qLs^V@tUGiNo_+2`)@1#4lbOW{PN}>|YvZYJvxlCTLpLKQH
z-I;1wX))f0;|wBwnyG2~`t_B-LbGT07T{IExefSW?&Xiz{qwW@>&U~u??8Icnw0-I
zd<UOMJv=-r(FCz)fWr5vVQpL^Qkg2JM;hioP9`!E_5=D*sQ{^7s6yGP>Qo1tf5w9H
zYS4%Qf^Y87fZ(8Al_{oMl#q5Did63K6diuzrzrQdYM^GJgz&J6F`Yg6L`d>thyS@^
zqQZ8uqow5!-ze9@RJXPw?_7Bm0LM-R$App@yC+VX4U0RK50hCj$!18)_kLV>e!Q$D
zxdaDnpF!gGRx$f_cWqzbJ)viR@3=w{qb7poXntBYStiu{iC;K{zfQr&=Dl&B4a);|
zN3e13+ij^YYDu<>y0nZRBB(|@)Pr(GcDJYgSU2>EKwZ<ZAnbWwZ~~4dlpbPV=oqoB
zs{`HO;3>u7#O$xn$nZVHGWX_W>rdWC87FK;x~?R285tXEN36Rd{-@tGUf|cND%NmZ
zR#8_ZhXlcQXD2=Hi|}D+IZXby1H;rBnoF14cZ85vfF0R+!%!~u%l8-|QDI?u{mhPV
zw$7VPxWp+0e2(vx5$Wh#q8^pl*2Qn`uQMt;4Jt8=BnnvLQ|$6DHaxi+^rMeZjC!gA
zHb3fJI0-gX{7~GC9Pq>{a$4ZzLgV$%TOq0X4DDMX?J8n=ibFFHzWQ`%!{XCja;K~u
zMZF2wPF3$G*QwzAU7kyV_RHyl;)N6<VZ2<m$eR<2-sKWRL}UTSVUKhmHuBuk?UKm4
z-BX_5958%O=M<{7$Q3R3ecgk8vmHfQ!-T|ew$Sbk-Q7(?TuF%)Ew?je99D`IKgv?T
z-$FfdC~t3X$4MEEf$u<qEiWkOSMe+UXPoQ#_P7{vE)X$I0Bj3MI259iT#-vG$l+`x
zz`CZ!8eDbTB@BDBPUNyTmO0hn@I~YKxNda<a6x38*_IZ~C<9gJ9cGj{SX;I<IP9Y9
z+;>7?S~(U%Yo^`musq$;{&^Sw(MMUmdF{&WKl=eZq^zvW+)-ggz@A3=zX(Uvn4sJw
z3a5C%KP%<ZsKich&_VR|6sR`G>+7n4JJ;_+;no};A{Do;?2Pa?_;X<b9R<Lkn3y*j
z@HmsZfZ~@WS|AQBb;l%6LDU{9@OqEwGtr!6rC}YZAuSVmII6YwMK}TX)0M=<8GOdk
z6($}1`>eg!uYatm|4fi+$SSM6B-2*V5p5+!^J_M8JT4vNv~-95{Q2|VALq(lXm>d&
zscalw&x(Dx4I*4$DnSyxIiW2=hwP){EcrPZotH+5(VG*2DdUxLzq!4lZLRrF>>+D=
zd`AKohc7q+?9#bc%ev-IY--&+mhT!wzEeT^KR9}hFYVw3Js3m3^JV|q&Nlm52-vd9
zAktEjk`y1%kOXd$0YAtia$4F#9q2y5LR)GZ?xXiXVg6n(KGJGaWtGY8Wj}eOe7<a|
zIG+#O?-)5=i3mXrFc_R-U}$It6iAE2g8;A=;~x`WDmTD%asm`FnJ1G?tCZJoUw;Ug
zYO)s&!HZ^aLBEGM$uEQ7e|ZLaKshb}-@kun7qab!wbn|3Y=g_d*nhcR?bE)mZoKu*
zu3&Jc+12_g-Qxaw#sBM-6_#&~)8by1tuIn18N+~PeR?hbyJ|^ZLq)k#$d*m9igJ*x
z6Ou?DYZFJ(7V(1VoSx3jd0T*AHi=*o?q{XV(vCk>X{p}j`>)@*8*1{8hp-3kG~g$4
zi|P)BUSh6+JKo6W_3PIrJoc4^Xs;5{io^yzy}VRng+w!)$ZXHE>~!vLbC*KqiOsfp
z5wLQVqv{jijvO)978?FuAs7CEufSt>7X!^=?6A1cr<+0Kx3-54{<=giDzQDVLlpA>
z%*Xl8eB%cQEVLg#R<Fb~nXY?OtfYp(*84Q2U}Ini@$&N4L|E`L0eLoty`h^MXKqf8
zyr*X~`x79lHCGo*ENg&|0B9}M06&TIS&r{XxXI;oW@iF3+T)}_tc)7S$#r~|W4Bf@
zpLET<KEg6xULH$!1<g)+g1!^;rS(P-(w`7B4JHg+TwW&IFrOs;Q_B1I$-RJAI?ulA
zyqI=WpLC#t-Y7wz!O|W98qhqL6oY@?1btP5`SpH(0$jN=SszpZYZZ)nuEw{<oq}}1
zT$!%7RkcnTgP|;$&ZaT~EqzK$T>j{pEy<AF8qh_CE5gVCJ%4R61O11>-OWu>Vv?c3
zK@sBPfP?SyLJW-LaO>~!+#({ZfgD0+eq}^iM_rgx(5#}e*$*)?U08r8Uva1KDc0fs
z7r`j^uWWfRL#}7$&w{#N-^dT9ye}U6Oowb%<)ss7xa_w;#wI3%){Tx4@s|Lo%)fP!
z?mXvuv3P5rl_45mp>=<k>1x{aPa*SahEmt!E)EN)XsWo3uM|xz3ECHcD=RoUI>ub}
zq%uP#Aoxx(zM$z&Vr_8Or;ME3&Kb=)tFjB$)W-a#AN(X+p$klHA4tY<ImtMtJXV%y
zrr?Uf<Xb!=msq6NOw$kXNzIGJM}4Wo#pJqU<GSsz{qRz>b-r-FZVwz#rVk)~yAMoE
z<%5D5&4`rN??9|O0lkWLZF876fT<>G2v7kRsJ312%-gH%<>i+SNGykQlh;n6{;cd@
zU2i^3XJiHonI613U1gf4Qqc_T>FJ@91je5<n;Xd5OMxzD<wJdaJr(t*2!gwpd2W>U
zf}*4F^s5#6OlYV~HGv{b0aTbktV07FZO7@FlCt8Hg&|#Sm*X;HC#(9hdOBwTfo`ZQ
zGD1NcQux9goM%YWrk5LQqJ*4yr;FpoO4I4gYBTOi>O+eIm87t605XTDui^5kfs$*@
z&2GlYIJ1}s$=ATG4~D&ar>{NpMa0AoPY-X#Ty6kd4S=8e`y;~(qg_a|o|r9-fY#P>
z^_1G<uaqDFJg{*{%m9PSox6CZMEPYD)`@^(+xztoF1s@R5_JXDlI{o?$=kEeN!ovS
z0lZrmF20N!aQE9QpCIiVT5J<ZklJINp<TUm$RCL0vr<67e=}tu8vV9TEw6b(Sh4~A
zLwtOEag-ZprS&q`Hz`6!-{^Jp$)?~~tfC&ZnpaSl^rsZ0<GAtdcHPyS=xDPN&zEB|
zvd7ROB2&elw(0@W;7b;b%k|=kVl^hIwUD0K#_n)gq>GF$RQ`fKi?RmMNH|h@k`NFw
z@(J_iCO_AE--|5E`Ib3SUPnS>J!KbqT9?h>aBL1((R^|BS%t<jA&b@81IzGKhG`<`
zh}MpA^yyur0oBb6fN)3P0j=Zn<kT@V4N&6He8mLk0PqSO0N*RqNZNiEMrK-EQvx_J
zaRhpxtNn2|UE3akMZz<pWYVneU#L4JIjX6M-!MMdtu;h5JsuV4%jz2k=x_h}AV7k0
z?e7JH_dx1iAKg3H|0hi&DUe@6ARd!wp}dDl!>pK+hD9f<2`Q>F%aiu^e0i<gV0Kp5
zn~2D_36>>U)#{;_u@E6PiGcR;*e*AZ)@rMV9GBBFy5B2k@JL8M0s?4w3a=n8Q!u9=
zNJ&XIiosm>_YV?g0-5Nl@e&HEwOgk=83*M*as;T8Oek3d0?k#ekl!)$H##4i=g!tO
zN21$wu3hJ6WVF+@0l_>x$Tp=4y}>~m^%h|Nk^ymxdr5ioMd$^?0V*~DhW{=J_xslX
z;Zj}WnYU_j&8iw58;`sC*{f=iZqbjYc&ZH!8O3niOU^8geI5iK)m|a;Dl=nUyM*)P
z^*R>RO2)cG1?_d>1F8#D-@*!^1Cu{Ejf{R?BwXfv4OIROV8u=9Fj^cc8IE))Q5}fl
z4_g&n0#x`}Cf6Sp1(}b4eS8fLmy7Xw9FbRFZEFym6>3lmEm*-D*rYa2Pjy#Kv>0?9
zypWfiZ2O}~liKp_sHmvSBTygMxAZ9kEczg?b`pA<!kTWhSdeCU?#H4ITMM5ezJH$r
zk2@QdeDJcC=4KFr0+!5wKf+1Z4iAe79WxkqW~bX?+4I=rN&k(62ykEyppmT~MIoe&
zh6yVtw>yMl>9G&qOjz;vA?Qq<SFMcA`zLY8qs(y4t&i8VpMv{DW<3E6T`D$5=ONth
zzCJA(nqs4yqw`AB@wbdYM>D0#j~A6yUw-j^kxsBme;@PI)AlKl((7<tt2zT6p&tko
zr<^wAyoS0iv+K~!Z}wB^0FF%MV191yzDOw{x3jw0(*7+piQqdf#{!}~U`B1L?FA@>
z?Qpd1-@e%eaYOrtq{ZaS5{Q`|$dsp12EutqcPk`F?SAud#M6Z&`d~Ecd9-=TBbT`k
z?0Z_lMSBrK_5DcER?Gy8))vuz@OZu{r;z-H-{meX&nM|#>|;al5?^i3H}?)cia(f~
z8Gv+h-fhLC285tK^1M7=vI+7D(OlmwMm$WFx86$<d7cSS6BQN~UI6?;m9Q1m=fQVi
z!8X8g^y2ve2_txx%GPtu7Y>??$u$G;{0g!@0P2eIx3{j7B`aClhI@-Be2*C@$D~Cl
z#JrZ3QyvchKUbkQlGujlou6NQU!T9=A6OtzOmk^_Nd29}HdMIs$K6Kf7ssln(wY3X
z4*(^*^}%`{=!n<63Ut82!WvwBfYq+kK7-FwFJTFKisZc)C-z$fT+fGTTLN9r{-AaF
z$Ba1wczt#fzd)ZB7n4%31{49^zBm96mu`PK%pnC-c;gs3IMmuse+o&ba;ezL2$Yy2
zX7;{ZroZ&#+cfL{NU22)UUok$od8A>@*QLS;YM(DTsvq9;e1{mR&(XjdEM<!QXEFc
z`}9n3w)MROAO<hbPpWr87nN@poHZ{Um|adj10eGu#=3sWgwJHRDT#K#Ms{84c4<=V
z0vtfmtv)VTyc;b|kQEOY{gY+f?lO)gTOlNcbznHd+;il3dpsW=gK95_brd{V3Q-61
z!*q}xRZq%Jp5opd8$JL8B8oqVz3+HzgZu75sCPC1-`MlvxQ<4#3qUy2>aEcQ37g(G
z3f62U^<KXgC;{}bDjd9h0O9*$m+xiXEFv5+Z}fJhWA1SBizg26^^}tAEXPEe_r2LN
z)j=l&dW9VCFZ*OQ^y}Z$A0oSfYp<DwHY4%RMfYE;&-Mz`?JOIAHYa>ciMG*eQI?pE
z{Z&j-*fmPC9!Uuy(r%DmBH&^Uy&PL9J4dUojK%ZT&b|W%2h?o**>gOQ4%#V28elPd
zFrBNCNjz-8cZdISS=BBJj8G5g?#w8*^4`TLl+P@RROW<^-vKv^bdtz^L}=eh@j5I7
zUt~mt<8wUI{dSBU{QWyNS1N%E`4;k%<SQ}zFLAgoGJI?@Gm5b^kn4Q&M|U?)?7|i+
zvy<M9<IOYGgOe1CBpbZ|=$`Az0g(qEXP#xczQ6~ciDTCXSaH*YP0d^xc0nkLu?l$U
zL>3VQ$ImSco!Pg<&u4H_^+q&vfsQvGnkm7*j)`AxgWF@0v;hry0dW>b$Q+&ls%Yo0
zcbn#UULIOh!))c8wdr*T1jl{?F|(7{5b2lu**2q#tpV8$(XGCQ*jP+Az;T>0GUA4P
zdD@H*B^tNe6ZLVvFVJ3(&-F}ixptX6-GbKxe=l-bp6JxKxE{@o1l7MEF-t*>^_qXm
zbvM<8>l=PF&Na{dUbdz*d_^MgRxZy9+@9}thj727_zF=2WzPh_gy*-!qcKYc!65(C
zuKA9p@G1$BKZnPpTnq;(sX&_7jYj_S$AE;wJ|~L>(Z;8zE;|Pw<RdFzM&Z=5P2nbH
z06~1?h{dr%P(~Xf*s(a>NUy(7=(40BL=oayPekH*-95a*C-+pjTTy2v*R~N#U)?9+
zfp@W?+4gj^xU7=^^zz0!HP!6M2iG$hK_H%M{MidX7=-Esjadll=GU=z1}i!(?wMRe
z(l7EhLid&sItvw(#q;iw_`s(B-st~488d~d-|gXHAlm6DzDH{iRU7d8%kTeoE?9kQ
z4>5C~AS;V$pCo1A;n8BE8BXVuy0{F>$;pw1e@C9%+$<<5H58{7N1#z>ovK&yPKOxv
z9yiQB-Sgs`4uS6%OxN!7EzWGl@Ki5OK+NrNT%&s1=(6girhT~Ihy5y|RtR1EWgTl^
z<?$Oj)lGb?M&#j#la~XVA6459ExM{v3a55(J&>9UqGuITQ_AXzk##R*U-Bdb2?7cj
z4+5Qj%|bVJ;1nBs4bM*kZMW)i+Cu$@9@Og6a=Q^$BaRYAT+e5_J3dMnD#g??g^u9`
z(Csho56dm|@lV3e&rqPjXGEY61mNfCK6`uns|_h2i1w<q@FhA3{yE~B``q^Oz}L~m
z{i{@~PV;)Ll>mVo37|VO_r5vDKy+%4*}A_z+^*k@h(Ta#mUq87D(neCbrk%0y<kzk
z4;Q?acv4a|GO_)K0+_hj&dXGPe^AVLjz^?-4;=K{?Y?gsWn2gRZBbF=IxGmle4Ql1
zNQj72I>e-~U9Kd`0rMg$d#vDF+zuSD#(RxQVZJ&02?=VmOq>zYQQ(|7xzQN|4Yb~F
zAn>&9PZh>sy9uBotm8oIGP^GN<4Ayxy#cFxb1Lz^TcEh2hH`iCZnhgk4y+H4y551j
z-44A8W5Lj!xdbGR(8rB<_lTtA%^x?odOstgB(1v(KkVVW!?nr2-rio2^@`NmaL`-m
z{dE594Ow>i0|PsNAQK7cQ>VFRVRIM|yPd6UaQXj2Ba*G?xqh>P`h8;|cs<E&D_X4N
z5Lt(b4=@lLMmv2S(0l@2(P+#1+_4KgOTR<9>UkONEw?_6I?KIc=qlX<3HfmKupUfo
zt=y(S%$t6@)PBZOWxFnTOo~NB`oYB2ujkrfJ5Fs7Fy=Q+a$1;~{u0~e0!2jB<?_0F
z^>SwzLs*v|4|@G92_+jMN?i>m`Iqp;)CB4$x!!Z2hyL#h8e2<~_L7Ky<Q4x&Fe2D}
z`vWMj;u|GlkqKx(+QHxS?Ct$DQMt0Pzxu}}grUZ%=3?`C*0iH-h%lV#cYqMc)k*xm
zh=2$yn8RS$rT=V`@gThpj1?0-^#U<*Nj!K*XegEKK*b*|Ld~8~CF`-<fFM9skjLdw
z(4aI$WFNoeX=aIbqy$-DALoF;uZHcRqZUYZxR75jRjmM3v<3WnT&w^a5GCRtzVcbC
zDVR11T&5Kg_5BuUrC(-GWlPA^U`e;Vi2!k3ukG<dszrB}*cGO`xD_@UUk5N0Rz(BB
z*vXxkqbdxia89x{jBM^t=4-jFDU5<KD}kg?0|@*7VA?eMjfC~@?(Q@{84E|#e22?K
zwO+7BO&5@dQC+OFnay+<b_=;tE&FWdHWvgM0ue;x1lf)-gYrKgigJOS@J}63p*p!!
zKZK~0mVtrO@Y(=JP~GEV2Wg#7hxrP@K(x8fB;pc)rkSnB7vk@ZtGOa~BZQfYeg>!o
zyJoNPF9Zu*rd8Au4K&*!04q@I>FeBZYC9Ut84>?yvxDUd!{8fvl+mbPz=*{j<MUKP
zf=b3~ZpLd)X6<$l&tbONPu~oNIYAuyt}mwmABG;2yG){ab(9B^g3Xx~36elLXF&8b
z@f^_y>QO(2-Z%Z;xCK(?y{N07`1S6bQ!q*AC_BGhUxvRp0k*T6{ol^^&b;3d5*|-!
zYCi?(p&8yx*#xlmeL*7q)iDxK*azv+vT4cf3%96glA3e$pkBJhon;ViF7xWGKWnH9
zYa*@hb&@0hmwS)IH=gS29iGllCcTxZ6X=NgioSsPXG~owA;YJC-*th5w)y&ukt?8T
z{}S-}t<FHh5cnAxS;q^QRyPBqGJ=E;Ma<L7S6ONBxxo!;rz<VjogV~46Gh~esOu<f
ztKmr~QZ-^*chfu~oL%O4;j1N}oP7;N>_!y!4OK)62?~o)12%6EzH!re>16}|oG|QF
zw+`x6Js!9%)p@~;3pWj(RIzyY3^nQlsDNaqs+_w$nNx?b<9i6Qp@8^4K)2H9>f{8$
z;2W;Nbfi;vdA!P`h0d3dkVva^lkR)N$Q;smv>~dr1~7@HP)s|D3BewXtlvjN@Q2+%
zT_iMtE?jfKR%|4zp%pSsV%hUV6_AFS*?F}7ixk_5?YkS07EJ(jtEcv#+5~2!4*=X+
zD+?TheEyDzS%}8KML$udb!VyeYWG#TR8ybaq)SLx#SEN3DmIz1ntwaiim?8fwK;Ue
z8I>vGsqfRhDA!JztK7QVFG{3Nesb%N#~Dn2P-80!cE@XYLHR;Q$=-%KCuOT=o(F}i
zG!B5iH_^o0@|?5l+P{ID7bUH%Dd?&}lwA5>Hxd$GRf?}3dL?S>0tD*GIG+s2g5f!+
zqRwdilI`EY`ca3URTC~PG|B2keF4VX7bw9uJh*Al4iKY^fk+V^=@dmJB`0*M1ONq?
z$vMpUmoV`UTipq&%4B%rG7Ffu-)mJ?QT=pXn3d&zj!nJRf_8J#G<02CSt-3%(`&81
z*V#$%dl{;dhY2E)Q3Fq6L<s)bzUEd?>*i$v2|teJ*CJcPQ9S-okyWt3s%`<P01QPu
zp*p*%s~573EFiweK#9PS04nWynFG@Kt`Mzkn%x|<v<8oqwg!w@h_$7A-%EIy2jmNv
z@Ht}o?~S-Z3*RoVj(igOgGBE;koBCIvm+<4lavg-$$`&11Hs#o|1LS6s<Vz|)ww4L
z5DKwyF~M&74w0AzgSHPxzW>C!Bm&WB4+nt68e2|XnSZ})e%r`eV$nfj?yu(Misi@#
z8eYP^_qzaMxNVEF>iB1ZwW_TV)aRvly@&fxY;LHU^Y1#pcaa<bwLq2u*+t`__?r55
zv{jsw-_N!g+69{F-d(I_UIB@>mRF~%x&W@PWHec$PdNQo?S7+msFR9|muO=?ZxcT8
z<Ufl_f8ge9AU$4~$mgH<`%g2b)wEV?0}>B14TT7)eb6qqXY2P=MC;Vw^U-49PF9DZ
z=W-gXhlMBE2r*2i!Uyub$iC%&GW#E^I3C0w^2v0Jq=M<7Hut%LiDE1T`b_Ip=UvAc
zcRN5|olBXndXK&*5AEqsR(h^nG&U<XL^t%drhS})dBfDn_xJ~JaY&#*i3cMGZzYb)
zego~0_dquI3;T`!I`jzknIB*lA?Ly632+OSv8>e0Kzw1>$gUIt0wJy=oV$BC0V!u0
zkU{!#Q#l7D!gn)r&j3_zC<Kih0PG4K+9nX|d<xgsHhF%$+Zj8?eqvs^IKurr8-BEl
z*BHruWFhHv4G*k=;&!x7R=HUVhnu?AO^bn1U$h^MH$9)j#DnEg$`=qV0-2lPY=fYx
z!sMO&j!^{Fgqq)G>PjURLqsPdnjkYPHgZ|gvE{|9w@ZQ<mTkx~P1p16IiuHwk#2vz
z0F>}QgPng_T@n$zhLS^Br)2?4{7g<Rjy%WI1Kc96x1eJd0gqPAlYQ-Vee}(P@a`>N
z3s*INX8Vy8PT5Y;Suhx&5dU?N)(XBt0CPJZnbI%o^NDAOz%RLOhO4TFGPT|cG8r|o
zn}YB73-qw1KD>;Mj=BsF8lvxwLDNYgl$_t)!XN|$iFJ8C5()+sO>~K6yVd?JV<UoZ
zSK<_8NC!&kTvHXx2qeuSLha5#NVY%r%S6A&(Aes++p2CkPbA_UQ|BDsI!+2tift!6
z3qYW5I4o<bb~(C7hOuA;-a*z4$(KPr9yl_<NX(vb!#}v8_h&;otMR(kWNOC%%*@xN
zZ-YzQHs*LKHt#N{sF{1bXhz8C)V1oe&pBTa8`iY=xcZR(5LQ1ooVQ*6(`vbAwcPzW
ziYGjH+uUJ62RJePBc}NiO}u^m8-uy6yM<Y2nl*%-OORng-|u_GqSfI{sh`9~AdXG}
z^@c0UXpH_wm2#j~LAkzSM1G+jP#eBjc3IsY;F<WJxAzRF{Y_Z@n66c6`4I~I$GERN
zgIxf<8JbBhXcg&CwbAPyU?KjXPWPNpQq7Cu52lcJzRh5JPrS`@ZVFG(@<h;97)Lx(
zecwg+=en8FL;vzV>qKDM!vTv#67%Vda2+xn>%I0mnl4UA@w%D60KkZ~aql@Ai2?OJ
zcC#Lk2Sxn>3j=tYD@}wM;k9pQE9(aq^(d@a@&T%UPQPxpfLq|0rp(ODye^#>gaD`%
z^#@Qfg73~ad&p<I7CrFXM&lmM%tE?9o5f6jz1`-=);~m6-p8{p_snjOuTI?HEgXFO
z!wSUCDSWi@KIsE!-phAQ#kfq-W&7bgwGe!-OQW>=aQWG@&bM9e`-YJ`RIYPFpz?|}
zAPs?N>S*#zk2?P4t~6zWK9k2h*|&QMyDJjvnGNzlVaqG7A9uu&qs-0EKNM>6aB*m@
z&;suV4BP_W9a(wHO_JDYWO!-%_P<`yKhHBb;XUj0>y%+cC2SpkKnL_mwwWaqTYVRH
zK4i)~A5i6*fa=UD&5NEr4@G;45~uf(H}cC#b8U?~O|sbOAE1s@4ok>HCnTgw<?bu&
z$pLM1GU;q=W>au-YB1GaeRA`2<kSxcpy-v*la7Ucy1zg{###NUSKJy>FN=<cMZY;(
zukMbBN6K1u8zbE9f}RuHN3mxmXwQ@gNCzjgroX;^<Cvs^=JNNqZB8k#^V2vLf>8GS
zT!*fu-#4_VcIGz^lTbSLG5OEB^@YXwiqqZ`hBI{P4dHe>Y1l2f0Pw@rH{65BDN>J{
z#4lrhqMP5CnVHA-pBH&m)gnVbap-qK(+>f+nWoSZ=+xsHjYBYH+k8(+LgJh3$x2Jp
z;eNKWWtN}7tKA3*3&-Dt<vW&jY`k!`3<kf6$`*2_Yk6$fzVe12PRFQ^d0REk7(<G_
zHI#5mNlQB>Eag<+U*SVpxHtoFMXdqbJ-<_0Aby}G>9scVCy5pPO97`;<W-Wu-fL1v
zOJD;#^z(!N{sBak+{MDe!qq+bbGXCL>0fK+!1HP^DBsL+#S<J7_!coKHwoV@!lg3q
z<0K-yMH#nKx@g@M59Rbzuu-M+@hLGTsY)Eyk2;^Q>@;4(RM^zCv{LHm%iU2$Qtyf}
zbt*f%XgWmIz_&1JW!NkZM$3&(=m}h!P~=^dc`hil^bFWoeC-Ny-Z->OBMH^U2v_Gh
zRl5?o07c02liZ`fA0-L1dhhQ~a_Eiul4f?9TgLy7v9Ey2s$I8LLQ+ynT0rR#q`MpG
zZjkP7>245^?oKIbN$KwH?oRK^-sj%^|9hWv#~Fh${1l0At@S=JpE>7)7j?Mr83ndD
znntpzsv>z00g;R0Y?Yz3$NH~Ik(HMFBXnn)(m|B&x2;$!FS`Q?Tt$r*n_TQHgq$Ow
z*h#(NliL``nHAy3rzi39(SX69BpNKy4;D`%MT}f&mk0iJvb<%)-uc_`H%1Na5qspJ
zAwGIVSo65xyHgyJP&+C7Ns`mD{(R=>uK0KyGY;zlkO=D%wECT_(2ZvVufuCMH^J07
zs^hVgf#d~K&!I&ln03;0_xJXW>ed}flM%(R+wVm2hQa<Q|FNRghfTn2`>An+mYRCt
zvRVV6h@Zv|;PMDnO7;Nue6Z9!@2SR7|Fs@fw~Uzm5rBKU_5=_D&dYvSVof5jt&3x?
zkmEh>uO`pQoktt@ii%B{f<G?{1R_oDPHWgnh1*P$e;)R0aGw0}Hs4%i-|j0LK|56k
zRX+f84LXBR^{(fFrPrDRtud!z>N`5f5w9<W2VkOUyLGVcb<3>5JK1YGdTJvnKt%+Z
zOy2Y1R3zU#TR2<}`RdcLFR@DEr^oK?Zp~KWqKgTud!xZrr`}j;cCiJISE;Y2enXyf
zedP`#;8Kh1sG)>S0-I*2P;5L;yc^OLmZ_Nj9(h0x@EX8_y{uOECV5{534>IfHspig
zVi$V|56g1d`gmw{xh8C5Q>la2YBK)5S!L^cLeGB`HA}EiLfsOHXHhCjaru5Bn{t_g
z5vLx)q2*{?bL0IXXSq2UbIHm=CY1_tn898;^_Z;RUFkgu)Ax4Yy^rqgg)@y_3p#5<
zBSl3eHq}$j<)6JZ_0EPv-NMBt5>Z$h^Wi6pl3nX*f|yK@JEi5ws-4trt<HZ6v1O~L
zl6touvtg}Os}PqUmN^F~7iJ8bTk-u+p#_d$i9F|+zMxwpdva^5iHV7Wu-ZR>7Vq^C
z465&~=q1rmb8y~kB}~Qn#9{(uW{ZDH^nb+CKk)B<yjAkRp4}G|yI-E%io0rJ)mi$m
zwodpiRdMfb8}u|owEONr%a#|FL;OWq97*xIN4&%kCXFz8%(L&HhqNiMqjBbF_$X>1
zecsD?R?YhK4VVf*!adhyw$DYF97-YI$OTyHXI4oFr3`2hrHbo+o|Mn;$Ju9*98oIa
zA^3x^)4|TNXYdl5-~wgs8Z<n0?KXtK1B+`U&MMp(<mf4Gel>uU3|6_{+R`u!q|OA+
zAYa`t|Iu=Bio|kG*k5jK9Z2JvN6S==uRkyVPL}*tjmItOZ8#R+>8DZZ_+Vc};=|^L
zGh}!=r+40=OnHO_iY}1U26*Fl8o=Tpz9iuEXip~K_i_U3mO`mVWw5tCmSqj*T>#-l
zc;UUVCz6)utzi<2RT^gKl1&f(oh~!yNWd*wyE14HcGVVwY&<UGT|ciX`x4y(d}(5u
zk&~5w;|};Z>;)d7K<o6yQ7Ey=cem6aP!P`md)567(BV(NTj`Dc&>x1wcrcr6(Ms|7
zbns)iIto42`vrP>-Sbq!%hQ@mZ-GWPu@SdCw}3ERAV>~X53l_*EDo{z^VY>K=VnQ9
zaWp^te9*@HE57o|!(tDI7eHR;PEsjJ71qS}0nU*U!dqgMYMx*yn{}|`?w}G2ySf)y
zm-Ky_HAk!0A5Z*%xmfx!eSc2AzlC-1_*(?EMOZBrYFkaT`zF*y#yeg23Az6HI-TI^
zQ;-*YhwT!fps04c<mKg$$)tw{cYb<0)dPH56NEyQj2TEVPd#03Es7Bx?@|~vYdsny
zDdAJO^r&60UQVW+?VOl-<V7VU)Hzcf<Hd_Vz;@_?6%&jBLJ~m)l^J6Hgbxamd0lk#
zFiBqtlSx=_>sliCIdCnBBkyu9%=JWgImckKeD53?>S2S!1FMYs{2u0xqKn{rmv6(x
z%BE`z4+BXRBiTy&Pv5Xkg|ah7w^a(fxK47$v2s6o+8%-=I^%7cN_(A#OiaX-hGx}x
zSo^l)mw*%?ja19Ky1F)Ca_UJz?^DOVml`X7-ZlqOi79A!GWTlL;PdAw4d+$=J44D}
za|nAiB5NPFE4mtxIPuzvBK#7BoiBYWUI*NJIUlzG)Vd}JJ~M35pE2O%7%ab?G*r7o
zZf6nDxB`pVi(pzFY6?!lE6k>Y02|y$->ZwfgXykf1_#2y;a?obO(d!84j?XQB%@%h
zZJMI!&P~5qEj`amwu}MLBfoY6%G9sW>_uxS-iMIu-;<vSe14gX=k3bReD{dOijZ4j
zt7a>ucpMrWbhvBrfgM*2f|Dsp<9B2+#6$6XF5~YQgNDz5XNSG<Jym(r7}`m9SC^_(
z{rQz?>ITwZo~jpc6R|J0GE_*~8{S+s@2i$c8AynUp>p2pcZTe|N!w7Xx6ah5S{tHQ
z;dH1s?8oH7=_YN%-us^Oe&g?P7}PpDqEK=ix#HV9w6^@MrytEWsLhOf#r>QYMu_L+
z5!&m2-9um!(*E4g!?0yn%Gc*3ea|lLCc*$sMM>#}!OJf9j0226k;CmTC^tl=Q@MS#
zC96{Rf(w`V_VolCE-WavQ=khC=gk^<4sdi8l#sKJ5f6>}y&{^#?p%~nF4}`&0=H^|
zMi@;rN_lWqYcXH#1S`+?<x3v5B7wRw>1V8$B;BP{gu}6IqwjUFVhP#gXsDeo`iUuf
zTDY_Y?o%3jPd{5*YY={@%qslgF)5*>vIn`$X&7@^%j8tIkxMgrZwP%)X4G#ay$znp
zj{(=Le8*eIPtxJp?WEIY^AlI&UiirEmV_FQ$F4QKlHib)ioD=w)^~WEe_ff#@UV3}
z#JO2nr$6k=Zdt$j$_3!PDeWJV8&F@vZ%5_-9FSj@ZEa4k*))^XMv1}7v|0@wjQ^Af
z2ACp)aJ122dGchz(>Ha?(RNBVwjap9Fa-e~V>u=XZB74j*ck<?U1ON!byf|SkB;}6
zHJY`6wb@GlU`O<bDhn(VD>NQd^_MtG639pHyB)bMZ7}YBF{3l`va%-N|LC{8RA-gm
zYiS|7OxOC5#ib8S9TvrVBJyhwl1%&M3AL^o4(_iQW_kiR2Orrgv|Fzn4<8xsPsrhq
zgOBi{SMGeAg#8{IKXG2XIxTM8hj>_xpS<Y6mv?^UUne^4II3M8{7J~^%U&m&jQ)>p
z8$(U?)>RDDHC6egC98vF(7w*a=9;ChT#N`Hn;hro4d)@@&0ph=8^NZ6{f~TyOx+X5
z4VqP*HmyM|tBg{A2O#s%+M3CZd{-IpuB){Q3!5*?b8~aaq)HpR`qM#=I=9H4hSDCZ
ze9{fu!HY?wMq1xni`!1cdt=<{(&OTcnZ)hU5b#x>lPti$Y7Q~hp3_@JNhvQ~vV_J;
zgcXK?V!#1n3AMYM;a`Cm1Z7?`bb18zE1Ij*cK0sx%1A8E9Hy>_<4<xSeeh%yAH}MW
zjr#Wvks=vk*J}Wq=FsA0tblWe2rR2#eLMG-I9OEb>iO(J%8=QJ!aU%Y+3g5cayGb8
ztPg*CfHXl%XBY2NR5|eR<;ZQS{)~1P7A?RrEvmDsbr=n~daPp<#w}1wFhhxcFB21U
zh9)-5Ma04AC^p>rrci+Z|Iy>&;+A+ZP&~89NPbCp(b6u!VH}@L-0LI?AJbL6AFQe?
zO+Kq;omP9);Q$Y*NCL05JI}7uX=4L=BX^5p)f8>XC^4PYC2sOv<%y`FYPg-~$rVC$
z(HVc;wkZ|vn`z}c?Xxu6y8YOB(tRu=nN~|G``DS8E7|xutFM?r%nBO2dAO4AKs;E1
zf`EXqH#S^|BoVACJ}D%5O_&+i=y+JfmEBlY?ELn_l>WPS?=Bib8ZX~CPw*O>TKjDa
zIRRY8fdt>7W1e7(3?-p~(GT@__D4Q9bSAhl-x|$JzrQ+;-$BQ-<K+#(D$D#<dv{_g
zNf@!U{bHJolig>zI~*6fz4=ZB5OmY}`6WYbUq2pXaZYs-saOpDG?Kpy|LF$mN!$yZ
zGUWb-vlUllIJi->+_H3=6yL9C`vrfGYR2#{oo~DVk>SFFo5=?#!49beFQ>J=4w*b9
zzx6~CmTSsBm$y%s<z8%3cwADJ41B-PH3R|>M=u=!fGzEvE#L9CVa-2ULS{)KOoBI$
zjlYiu7R3cs9*GiBDYEueoZA*)(YqcV+?!$jXtrckQkcL9Scsb%Q@66;S%=RxvxtYD
zQ>!oJET^bS!{^;P88wj#9KMsNpq|VrN8<iQIP|;jn#QR<8;TAx5jeVQqvM3c3T!wf
zL-!_+T;5<(8*ZWa(t?taSS8L>k$)Z{V@~g^uyDDQ8bu#Hc{0b}vzE{iB1L^>7HzTh
zsQ%z?vusFe(s7b+J?x29O$BhKn48}hAX)qaWz67)vQ9^k3GDH~A=VP;h96DL|AaLG
zDf^Zn&$Q%cNbbTUWFTf*mdnrn<+mm%tEHNawV%G*nr3r1rNB>|uYmIFt(~TxO3+$>
zvVLjdW~6XqV)pvvT)_Tf?8$_@tJ!t*GmiWJ&Ye9Xg!P!WOP<SZ?Y8bJMIR6p;ILX}
z+}zxVF1L7G#>QXbpmVBVdy{Z-jr|9tkd1P4BO<~oH+}j5mQ~*c*KMbJX}N_n5s*o7
z2f;Da*}hiyudq5gSa~04Bs^`W#cf(t_&yD^N299;1Gm>LPR=N9hP$m@JrXtNW(9JD
zR)mEmMMxaRXSxx}+L0ggUR(Z?AZCg-b2&;gcHQoe7Q>|A6R+HrH6Zng@snMMj81(g
zBDeZ<gVE`tTp=gI-+|h{fLi~6KxiSlZ=su5+9^aDF<JF0!0=`qLgau&u)x?W23AYd
z_&*vLEjUR$dNH(Yw9Oui;@pC26<5-W&uOUHhF#qlA3fWkR2v)%3%<^LteEFbjfk?T
z;QLXQ5E8?GiU1!Q<6}-{c@Ynf!Os5KMUk2-g@n81DPsLZg@S4zKBP(yKZch49UuHh
z$Nr(?C7TJmJBK?~QI`n8+l(M*O>GyUVEf3u54xvZq&yzUea9%QS1HzI3f~gMbqYwl
zGKvTvdEfHqSgM{?l_@tw#17f`l2Mm6Ql`J>XtAlDKHi`rm6^mUm^(i^`*yb0K`D5p
z8!UyBw?BKcYZr0$An}j7H3RNVUU_WFYeG@bL&v!9c~qS)+o`2UCIqwWo{W&q&M&%#
zo1Y?8{2NmG*S~r@ioJjkX<F$;ojQV!aJ0!PzK)(-%B-(v-M3dqFwt=cdya*F`}m9u
zQJ5;{Q1&~D{Pg-ffvA;tHn~Pw8lPJre>jz1Sv>B<TDe;~)v`!oT!2iC8Vz7kWVF<B
zy26hNC8H#^I_tI+94S<A9z8qyB2RmtM@8bCy2skh<-;krS+5Y_r*4~9qGczy57+aB
zf_>v&ROPHh#S?B5D@k&lx{Ew%-@lAD^hcw7+dp^v<4B|)O*BBziJ@06B_Y#4+=g=E
zlV74g<%9#TaZXVe0|6Duf8kNo5N<8?G9D~gMaMFPr*N>bePa;&8WIP1h1Br^txYsA
z%B`mNbva~edZ~YVvwwf@_`xsu<#FjEu$93W2#A}30d8>5wGJTYO|iM{e5}v!)Zv;1
zz+#C!AP!A&|JTp{*Qv{BM*Ui0weMYuR?PYK)tyuHVp1a+7mMaA^2l)5KN_Fqh}Z&u
zkTuea<R_nE6mpvMFGa<j8ii`}7Ob1p!*2?mDxaUejuLlp7vv(|E^Xp?1w}<{Ae4kg
z^`-aaCdODI+Y!g*$JACLyZkcXJFC(V!K!F<{`&J;kM>~@yhymceCw`=`JOe6G1F~U
z1LEf;9L42p^SIx%9#U1`_Z7vB&9M$K#^$GG+#ez1e^<##aw!QP{WH+0K=p-I8BXVW
z)kLVf8eOlssW-q){RbKMUzhHgpK%?Cm4eT|GqVL90dUq@Ov*CtR;{apSrRrjwuW<9
z5iS6eivf>MEA-AVRx8A9*ULRJTxRnqFz1i}zJ#<`goJeKJ&_4PL9nSnm#9!{KC2g^
zs-6-V99#)DR>plmHw5hXn3x#7Ttaqx(X+F&68-=Bb^l*<d@f0xJuB~{2FkrIzbjC#
z62AB1?$cKmQuLRfCbIOi(0=;1^lsrt2jdf}helLO$1ZjnRwSM*a!er{8MVs<wTJoM
zY|{-{{=;ubx(GMV8`#F$2LyX|!QiW_s@gKgzPihP<qL+V1GU>0MbF{A$eN7Ni;lj|
ze}LT2N$vmh;q55(g1rq`K=K(F9n`salNbm3`TYit`<MObk3dT^adHvF*WQu6*q`0Z
zi8;o7yMbPpMi7XI^X~EP@`us%JqoLID*L3kHX!1Zs8qJIZ~eW40T%(!0s>Z5Q$dZI
z3(ZwjQl+}7?u@IDRgSo~x7R1IE8w+6Oh;g-L2t~YD>swL82#nSG(i%*Zozlu_}+GZ
ziOE<SEi^nlazjImy<b)26x7tR_nUXvGK05wuKg9#vqfoo6cM2lE}<df_8xqEFWJ-6
z)63(&eJf<s%&}x)qE|jSd0PT<^6=yd%KT6&hr{>V*q;vZS8s4KIOW>qgwu)VTirx_
zNY*Zy0ZZ6ll_s{cMW2k0ODe<;8J<%R^9wtHYvYO!!Uo7n-+&+Z9<Ty8lbT!rld^x^
z;Q!%uwJwB8V3j&Jr<U`zQeXsI^KN{}<_Gd|aQ`=&SOAA5k~R<a^^J*3YinN%09UHG
zVV*x4@bK^{eMyjkSg3ZL|1qhpCWMG4mR&pErsMPUu3|AOpR{q#?h#NE2p|=Aaq-u%
zyTqfQrBGZtVT8)+T+_pdP~(DS_Ijf39i~HreS-iW5~uv|Xezz+VZHnHR8M9mpZLm7
z_PL-)Al0ftR*7b#)R!Ub;(gHdP2P@Jr=anaY5df#!^OiZ;X2fBdDSuQWNfw6<RZ?i
zN{)a@J+iwPZ}i(1LkX9F05yXBc*QZ*vX)Euk8n|3TO}}84$MDdeo(;ZcJ(E*26By9
z0|SGgS-F*h(^KUC#l>@hP~qUW|JbB+H0fnwjC~RjqzoVcL1AHWW8(rf(ep{-{MFs;
zoSaSzu={C_)Y(5Ua32eEY{i3tgF_uf=`Dgu&FtA`KQ!InS&`tbRkJ`;_MPiycwx<^
z{!|~c8!tT)5QIg(O+<PBzFQQiTn)Z#Q6h)zq7f423Weq7Zi*{73l28>#EH@?!x8r@
zE*WoTGKig>!Cx{A-QM39xqNR`P*Q?}3a3)Gj5}Qq+_^h3!0&U||CTYF>^NHcNX(d{
zFJ0$$ZMnHyIk9J?Dw}q7f{lVlp~c-|%c`H>d5uGpdz<9Cf4E-`9pP{4?!9`d2AdSW
z1#1;9j#8!r2!};<Nv`(*+){I}3;f%d?O$>IuVqTcAzB-IBm<43q|~7Y6kKlZk-yJ-
z#=0KNm(Gsf7RyH`akl2+Y1w3d4Gi8}WM6x+23oqfwGwlZp4%s1H5%Qgrzdgy8L6?c
zv1%CMAaoD+rb$Sh_y#subg5QTGq1Y~Sv2e&y5pAphtJr4u~&B$k<5~ffYg4+$5bs#
zcz$*@x+XN;v>1_2;ilwuaD{iamdVOF@ujwGGjhsCPA=vE;E0poj~5&3EX}~7D4lwb
z3%Zm4U&I2R_3lOsii}LSKW^17H-d(O+NnunKK@l%>1)XLpI>SOVQ6Tmw!mt&WMX?`
z9ZjuTrG`NHLF(;$_1c4IIP?I@$PmLS>s7hat1CGzT*%y#5`HwaECtwIv>NTQNUtXx
z2r;W9z=A2tSD7ji8~<mZfprSEg|*RCQ_E`t&m)kQT>VBa4|y+GV|QE>`EHF}%uwhj
zB8N@h!D55-U1ZWb?biDcxuBvy@h_OHwoQYN=LC?B#K-;7(9y}bxHSD6Ea&QpPCDy_
z!*<k<ZMwR<_iRc*o_d9dO*HfUbQOC$fks`4i}mQQHTVA%eVj>kQfzb<h07P62YS)}
zl@0%I6@ee~qDk;ug7WWA%EQrXF><p%J_z_HBSo#P$sPW(d3sQdN!QMS4uOUi>ico;
ziQnS7Q2&dv(>@wW`*45%AE815_?P~_P$BT!bi=o+OQ`5%^4<{4fyAM3sGD6ctDwFD
zYMgw#n8=K|ITp1_M!zJxTN)axlIZCw=P5G$x36tFIE?F@VmoP+xn2G-2{yd7<@bEA
zu8%S~1%dTYH1|i3JA1OS0nVcJxu16V<2SF62_$W@Jw+D({JP}*8_e+EJud~Ryt2{y
zgSl54_}kP|l_;MO*MtQR&W>0G)<ysG%<Kugh;8re#P02<i}SdzGT0un4~~o+dncSy
zT*RIw6b2&e9HhRUUNs`Yg2VvB+{yK|VwR{Ee$iXq0_Cy=<4L2lU*{xgRgCYtM@BxA
zxl>m()Pv)WUo~q!2p8uKBjRiv76$U1%dDJ|8nwS^a*b62+9##oV3tsAY}*m=dX8fw
zhD_qZ;MzE%-@zS)^PM}y-^c0y`8z-VONJ*Dk+~nv2drmsMKOv_HdKjhW<-=1T~thL
zbRN_&u|Oj7*W|>D4#!&o^TP_jB5C}L>Idr>1O!W+nESLy$YCh&?`~Fh>%=u*pbL+e
z&zUB2d&FTfgVCF9zB!7>+<pi5^ZQP)Tx_6-jPk4k1DjA^dEI$$08#hJL+jKk$U+EX
zgz&nU`Q41h;t$#Y_tR+;cN-fUcJs@zTnPuK*qE5=jB)wpWR7NFR@=}=qYlu!$w4_n
zE>>m)VI{!W{=d)YfAeDG7aX1h0p9xh`sNcbINBGte&_w^{W8+ildbc=|99&FltfmY
z7*b)fJ|iBF_u||X`FJdv+_$IlT%J~RsGEth`P-OVDp|rLmIp2xG3NI+t%)@7;hd$B
zaR~|q^rN1X8um%>&?{u|n~E`q$y8)6h956-((YKv7qrFU`*W*GASealf??yD2KZ+m
z9<>&)MohRaY<Oo-aj=&)eMl5o%@qmHlob@j4BQJgatOcCP~qR+M;?}p`|?AU+>J(x
z$18s#YIWarMlt&x_lAP1EGp;*MX`mK*{e=D(rjh|{3upVlto$HQmP!ucp1syvGv>C
zbBhM;GA~epxlNOLAdcp*`auOT>w@4G^X*&S^{Ejcu}yJ1eq?0q3c^j5KKW}t_@7?4
z(Y$mEGBwZ%GObHY6#e(>e;CPYny&zdfEfD|eXB1?e<*G-$?byZ3jvS3D`}3(ZW)O$
zFFoCQ1tz?nS>0Kc_^DibcZeLBu);mc{o!n4q4pN`Eioxm0LnB9{aePK_pOD)5-!eu
z<f!PAYd&(ZnvxB@k?1=jx>|)B1SLo|sg;b%V|7ORwH;Z$rDwnMJFN2sC7d-1p!}gl
zolDj^_cH%C;jdZ~;wni04QuV<buibzhY9ajs3&quug8&c#Q4O#4L0!O+Q;~DzI{}<
zBG1&XI!iGg)1(SN#G_SpJMS_dylr1VQ>`=4-=MMz^Ym_6ThGsnVkXXJD=Xs6Y6g8z
zG5yOYZnctnH;;hAZg%EdDG!mj4}#8Nf~}7bMUaSz_OZ(s+2rMd@KvFuuKJC_q8fFg
zi%!*M2SI2m0bT4(?B5dNLd*B+BH?>2_84yK|CWybyPyWrqOm#@kp9+?AY2qxRmBh&
z%}>pDEdA|>gX7M-4#(Mg!=^c7=9_Tid@Cvx506tiFg>sApI<h%S{Qv~isN=>A2a*?
zd_UoMtPxk~U`pLts1x0;+ZGv<9lwJyTfFVhoLuB_$+Z+$t9xY!1<ywpD!K^R@Yg@i
zyqeYX1qzI<j@xR@^WDu7jz)TJemG2W7eCadUxj9uIDG$)ZvDSI)`wqtg@pVunO)u7
zs9<oHzzy@g4$~z4x3>*$*iQV6M2L8(qRJit8agJ;ajCmZf{e8EH{iL6!%QuPL`VxF
zr_%n(NbGy0SQ_=K-+picK%Xp$Nvl!B_3;%9jJT?*KPjo8n67T{9Nlz}>&M-F8nCZW
z@$yao_fIB1O+rFs4J{cNFH*~my^=uZ5NyK2#H27)u1%+^sygLd6o)0Ek3!M@KV)?@
znW8_6tovc9ifGt)dLd$ZdRaO7`Td>5J-arWhm`hVW^(;u{lmk`kyNCla_3CzZ|QZu
zj^9`#E`f6A$6eq5rb&A_4CU_bUJcVjS@RyMIO65jPsHJWzvrN;CHeQ(;2bDao)r>^
zI5Fg#n;5o(lXf}vISN+?y(mFwp`j8rJzyt`k(j4vH1BUvTa(V$9VdK!!GptMS;39;
z`Zbz1#u<)FR(41HR|eUsvc>m|Mq!he7#Q(;?#8UNv~pmpYx(?ZB&2UZ{Gkfb<8r=5
zv1*X%=jXR`2-G3=+8<K6WZ>|qa&D~CZeXA#cy%hml5EmQ?PcP}*7$q-S&8PSABlY3
zu191}bh9{~)4l1xr+bG>oBu_<yZ8QU#e{XO_isHF$g{FWSiAq`;(UOpTxA&JD2z0~
z+7flOY?yQ)dEe<r&%hvjc7|ZM+(JG3lTi~;k*b4Gw~G{vjf1ey&){qFK~-Rk!&#r;
z5C;GF=n+porVRo482`IMJQ$lr?J~*s<RJ)UJWtb^otm7y;_e4X`m?QGt%;><-XBj^
zoUN6=3wBdj#e%$_$0>(dWHHsES=0<a+hm)BDP=iR!3QArIF>##*DN=to=tXcSOQ20
zh=Gd#RU|0zeKA#Z((a1d#Oj)xccsMFB1oeaKOq~JA4vvrasV+8WQmnb<`MCK>lf7g
zUcA?#zsJ1)qW7gXF=zET|G#_uue>g%ruO}+4OTY`Fu#F^#opBkQ_8Ng1^!<vfkg9v
zR08yecel5_c~Z&LNYefmFj`C8l#%cpCsZtUz}8;9X)@Log~#=y^EXbl^}YGJ^6{Is
zwKXW+q69$VZA^}f%YjZ!yIWe=ZFak!QnZ|{%Kcev`R#6HH1_Wtr+-iEAdr0K@CFpy
zIY#@8AE&3Mwt(}tcUh7_B>3jsFlZ0y;>ni$-@d4a+&dWZy_lXtmiyJXQI<jM+VMUe
zM*QYlDU|m*jAWEU<CJ*x+1DA8%)m}RA&KvI!$EHcYqxF0st$V|^=f&OMz{dkxG!h8
zfL2aRF0)<ezOZ7{Fh(nyES^pAqwN<$3JPlZECDhD>hhQjYcB^4+IT~ZEP~S5s36|n
ze(Jcv<>SdL@r`5rB~_nx2>YiMSPV?{$-oB;3`H~?LQ1yXK*N4<5tYN2AMD3>`7$FO
z3J4zy6kHS`&-xQ0V5$Nn#iFa$;DdvZWj7HF&Yj#YZvvza3nP6yAV={rmKyl`6mC1?
z$Tf#$(yi<o^q$Lue0{qY&*cFVEctVJ;Hq)Q`v?%h?AgirfdNU0g&lhznCFXhLiKVv
zgFKky$(GErJg!8MPSnsu>oqg?%T=@#CP^Q(SHY296>kn6#F37l%7j}Q(3&27NKM<4
z*wu&b{N)svs(3<#k-3$dnjT5L=JhD(SU)RYJEuKAZl+{kyTTcV?cD=CZdL=U0Q+6-
zd|qaaIIS3%zye`3<@02}2Fv>Xc4`5@W(6r=xoMTfJhKase=aaDf~D{{pG@Nt0~MEC
z_h}wc!siDhNxfasj3v^2T^)b+&H|bXUT|>m=rY#Lk}=(s*8QT^O;!3|Z~UR}3p`Wa
z8RK?^``Sp$9|?c`+&^EZ!R9!MPv&n)CsL7ZlHDn)sFCY>>#}owBo%*nd?5Qx_xb7z
zTc__;0}<jtKWhoJ&&=CmIezY-d!0?gcr=tOzt~(1wUMA|E?mZ%wo1EW6+Bbls1a;_
zO@TJ!0la%?*1RmOC9Q}%_h!TM>Bh~Qq~_fEj0poQI<l0LZnvNR*9$=Kt_^Onl<6Y7
zK0^}jO>r~pmxF=H#~?}A=!zZF@~{3bxe*nU6r&A<fp#He^b^|C{;tM{$!&mGTH>`*
zVD^SexhxJE0dpcgd|Pa#03`_5Azl#49@a5}JX*h-<&X7Vpted(PRcdm=@oLR^!01g
zxHbmMjd(P!0|*-C0j+aa2M?NRtTBr)KgV>UObT?vX^wNX0t_X9?vD__rr7pTe6*OW
ze&tk?lOy=d=H9mj!s3rEX9mr!R?97~;P3!*!ye#uKD2J@;UJVHXpF72Fy*uzd;M|S
z1w7g}SXlj~bxV5+7m;2M*=K$P<cp0?2|(G_x7HP!Iy9WfkS+X&*?dL^4liFOofhy<
zt7xCiUSL&5M8OnG?cVNlI(LmdK^PlYo(r5kbDClCDud<;?ia_7$@V||rCwlVh9g?T
zK~#swiySojn*CqgY;XN<ybFF*WcBmb6f;eNRm!pl)&p9wc&u>t^blHo$*WV4>SS!(
zs<uc*RFSHb2llyVSp@?k{%#SkBcpl$&{lES)#YsGO=EkQZ(Gk^jlbMwD~VnDj=0(P
zL(fn({>|36-*=mhIe+Rc*RXaHh1r{cyT{!P1#(1Rv7X{4>LpWZ0u<D}8C@U>)sa@Z
zZqfLf5MIanyR&Vo<A?&}EHUSZPS&s+RR0KaZ?Z9|$2`JRS79^0>_XOBGru^@c!{Yc
z_h4Cl21h|S>JB}8Eqsr-pfTl3^mASL$le}{dy=meZ%!-~2z^<7AbRei^wP2g+KAsx
zTl}FUue;9P-<45W>n4del&inTrI@ShOUu=|_gvMiu18Hmrv51(JdMwTG*xU(!U!zF
zcwIF)`CQWR%KReMH&2E(!%Kp@z*(N-@P2x{H#-h~jUVVTl9#!uan7R5Rd(shPQYXw
z)d{c)XlxmmC`(LJ$+U_J`VTh1Am%3?t2J+})v{%kXgaqC^*32rSsGevNoncYyNjd7
z<30d$nqTI!Inp*?$l=>kfA}Cm;C4{CRZt}`J^Dtg^pS06#Hy2lnKh`N7_H~i#ZGpl
zI3M3H2H~$Af31;O-$GGRQC)J86F`hD;YA96_&$~gG}AZt_xt&T$#OCReIQ4fsKD|F
zgFe9ct+#A`8cB0tWUNmLwaayHW3rMeV?vtaYR#Be^}3j~+a%$ieXFWl7~0MY+)rZC
zEj#QSZ<|{!ySA%tF7r)u7&G<J5;>fT5b<LuVaAXP39FyRGx)$-X+yMhlud<KX-$?*
zr(&0YUs6Y#k2vU#g1xN1makE6Hu!WD|7sHHdU|wJcdzjHyDlWI0xDxHF9NFZfzd%$
zXdd8gLYiIdbz$*DDHbzNit<dMLqI%iZY2+opZi`f-KzoI$qZdIP5U9`C~*1}-RbFB
zbV!k@jehPKtWtvEfsK1zQfY6xTgB&N{sq|i3cb1|y^ki^L;~FR44jNbP!Huamp4PM
z%M<7QSR5&5B<SrLB!bKXedSFoz&b_9?GdKdkYiK5(LRv7JH52{N_DgDvHH(+)s)GR
zJqiR6Sxt$;BOpLSypX8{1{N~;iP8`vsk~d)l$?ckLuEze2?9JV8w-S&9t0@yS>xhA
z#tnLsw~LOe8(POxsci7bq;89|(^3xQ>YZ{MsRz@PJXtl*SUkvAJ&Z*2d!72G65@L*
zwf}gSUUjPwgXSgqeTC65f%osxNw6>my7jt)DA5Mv;nVc-X(%Sm*t-T=&4wM6$+Ab|
zqxBH@p62?;r^)J<$P=)#uSeH_ag}b&<rNUe{)hk?4l1WbhXe<6$CH%+2InAi6W{z^
zZ%F)eA-_pWOYe0sBqM$Ij=wDoqNibbFz>_^*o`b^>qcDhzOefP)TUZq$SWK)A3w%G
z^jw{ES4RFThm5?0CF1<#$@p~yb^pR*$(JNet#i;0l>X1fuk^Y{TR4;FiVCQ_AAscc
zljj33fnT$zsAyZ6$g|@KQK#=BQ3f9911=5$Bb@|+_tyy|f~T=6@CsiM!BOiWL0Q2f
zs?^=vRdevb|7}BE=GY`lu!tJYzDd11WmRxCBfqo-72zQw9Y@=22G7}Wg(K*l-Cz#>
zJoqM)dxqpdjerO9T0ENL$u;=$*WI)PVV?-0hY`O12L=YUH1~GmqK?xnWTgVa37%h;
zKU4vn2L%oNJ5#_VCMjv&{IWsGeoU-K!nO{If`Y=V0+`AKwNN6)wwlH7Enl}Op|d)&
zKN2i@3i0K=$?;IkrYnO>W$*e;<HfGs;3T7P4aKK6;^!9S<MZzJcwV~?EM0R%Td4nL
zHNfD>dN7`!Oxxgg%|}65q}5bV%uWBauT5K9wfK;4q<~$lIdxjuaK7ckLB`5jF|_K7
zkywL~%;Qy?;@W4tm^wCQ%eH^eIx$z%?b$6Hen8hO-#Ar(JFP47hPAs(NL*6V?`dha
zra13I$6F!|G;nJ-I>jRVd&0s}m`SXe7CW63x=?$3D96I;Py48h_K(YQCA{R$3*d2h
zJS)s+t3<}ee_V3*%u58<$97x_GLUog0>Vdbb+zOWn^8#9<rJ3f(NB5%r{mV;3@)Zu
z(9nD5-rg^ZT5K<^KG$E#{V<!RZDwV&SrZhKkcgGd7KXzdvvrKyJC<;+f<r=@O1pmU
zDS_OT9e<6<uY>tjbQXhKgBYW_8+U9#X}-N1!BL$R#7%hH43P7@f3~_0T!`Uqd<T}#
zlfbmN{<cVeB#AA(co-yPQCq-9nH2EhAS~bSQ~$$LJTx`aJ9|@x$$IxnL_)AUmefk(
ze8^W#AJN<wfP}kH&t;T@%&k&*$Prkt{fNsct>G}KNV7HZqII9=v=jZ)oK+#z`HFwB
z4*Fp!SdP=WP-B7R4T#}AM^y!GCwnl0r%^EBP<s*?H9Rnvhgj$Tj>LTZ0HJd3^97l|
zhndbgEHpHBVq)U0{;xGJUf!>WgxnfDkGI{pRy+PoZrwXO#?8)OWb76Lzm81~v92RN
zPGp#|XRMmE%gb;n(i~Yt1De~|Cxpm(Ht*oa4}Cw^hsU$)Pjhie^Xc<bBZC&LV7<$i
zo)YW{Sv9cWB7+ltt>?4kI0p_R$b|n|jh<rd8EoJUZ7%WCxBtM*%<pnpjO6b!G%Ifk
z3tYL5N%J|m<k?v`O1Ga}VllJLXB$MehP`rT_pKt}wLK2y$vlHc6n`NYL=vQa&z^Ig
zMqMyWgmS{qJ2#^7svWXDF?O0xO$aG3?@0Ee`05sQa)R>nU@QsDe@U+w&aLc<RBIRG
zzFzF+TaGw*&q~mFC>*<bF}nF+>V1bWN@3tTYW<^V=R9CZY}|3Ll;CiLr>y)<iOcJ(
zI(q6J&YPyJ*Q!->yAnD4F^sQ-!#bmb<BgvedN=avjIao+&2qD{Xt`Eu4Y}1Fh1UVB
zK+!a|=YvhCfzft<3R`UT$SAQmVw71~8c7#fZcKDEmD#lA_%x2-0=>IqSfDs8F$3Xu
z9<Og`WSAzI9772S$^}AGwwEI+5uP{ZfGDL#>T+|UOJ<5ZQ7$jdCge8YU6%yf1#h6Q
zzkHsGySTXc_|JmkZQ2ZPKoBC}g(nq#z(_a~+D;HulgC4eZafy#6Y)SrntX}t8T0g?
zr7_A0ztpV9;@qMpQP4S%aXP$(j*!yn%>r@s2yW%&cYsdNysZxXv#?#pg>l_jFVY3c
zhRb4UkA^;_HFjHa$_Yn@{+hu#pMI+s(m^(QT?_yA;66{oqi%I|)m0NZ0`Kau*t5Q%
zWz(#G8kjfY3*$zRo$$)ry}b*+hP88d{v~L<AAsEl>>g#xkL#&$!P>v+>{`pkB7%3^
z3gtx%$GfB1fm$5xO<(>z1^h`4=O&K9F5@7HDpg*mi7Ncb4Rh4+$|}R!03x64s2eVj
zOec8%OHTy;B_@|X4azh$UYt2tEL|$_#_7>yh)Ltx8Pv&zOVb|m_u-e~tfs#@w8C%k
zSn`Gkd&3<5c3yZbpy=~!hl`7i25REj`?fQF1MkwQP_3Uof6jHlcvkPs)f6k4fcVl2
zEbh9-<-@V*n*!^9%r$YY1j0(jFn;`a5s3qCL|x~%=l(hNm8AW%R_^jcg;MYaXumhC
zr5`<sio6D;hHuZukfG^RwzVE9tnK+4yyk^Jlqc(dc~WvW=V@v%;Q4~wXdgVDwsxR(
z{XUG)b>OT5+5MMK*VL+_@?+j4bOeJw-RL1niS|&WmAZ#b9i)u&^`hHP2h;tj=BkJN
zPkUM$8AzjCy6q@5YM079+;wEQ?9~bKPQnDs!@D;sJOv6%t4gJFJE$FbgBBt>(5u*-
z&~p}3yX&SHtjt%8SDOhug)mN@V^X<!j=LuiA{^u02OwIQ2S0f}%|7B~GhEi%C-M2Z
z772ap5dXXbyV+<q%?BnkF-;HrhqqXvDq!HM5Sqeu!H?cKbu+*_z-qZb#1#w*&Cduz
zBGo6D(;tTJ?>olze_~STWx@xX*s9EgMn+B}aH!O`Lns2yBBt2WNeA+rJ~w81MUXn-
zOIwL^-N(bo7iDzVoTD>d8^&HFx{;9%5SfcT64ObMW{4ci4ZI<YQ(^-)SP~C2Jgk{w
z-><%|K=-ShI<Z}hQvv=l*uD5kF`c%5o&=+7w#Lxn$!?FOxjj`|A`y)xz#cch<-B?F
z*maV?ExDC%3V`llJ#;<rW-<hlg*iAM97ckaTVRN!Npism6<Xf3cC#dCp9k!vj`M<+
z0C7d$^5-TdzU!o?75uM_{qoi_0t1Ug)&*Fa#l`FeAe8tB<iE|`HdCrbyI1KhTR4~2
zvX>pWqV7N%amn`JoiBm@c5Wj4qTAWJ>1xhwQb0<-IuXgC&6>ym{`y(Kv0O)T7$ZR&
zjl=jwXSxcg9pSVp>Xtp#m)y^#_VN5oPKp)_<v--#yA8Z1Vij0)Bp^4#vezSYXs7pL
zJ?0EVhZt|$8O=5XB!N4wk0vvEY0pIay#n<s`-Amn-&jOgr08v6g`#Yi^qC5G>N|n+
z%1geTLm<mQ0Om9p;hBWTP3I9{SMMKCf~yC0fSOwPkv`!Ost-7OTuy#RPT{^;@l^|g
z!F={8wdA3o5F3t_#0QRD3drM2*-eMaB6!B+bn*!v^WW2be++Z0pZF}gY^SnQb4*>(
zAN#GIf6@Mt%;8iv0Gugy8w9z7u27~H$Jq(+GTQE`{5%~6f}Ey@e?C6EW?3N8?}?Zc
z!_vq&YF+SiYrWk{Hr)6f%|6VwouaSVdR6%dn5C0Qvch55tM*(1?ug};#Y&}slX2*_
zcMWowoKb<JV1~f*2^Rz%bN2~bH>5wTMdT-`#w2e2QjBFj>oqy$^i$0n(B14gsK{fD
zAu3N?2J$>)%KB)@6W0B!+I&X6a9<7(4sg*O@ys{1p~{%(o|&XS=zT@OToZl*0@ex0
zy|LWT9-9ug-(b?lmFC3dEjA7s^PCS$S9T~I?Tnp%aOn1DQN#lFJO?iIfHMVPG`i)7
z{1qV*?+Ec1JQr<dOJL)3USQD3D2n$Aq2_($2EN0Cg@XpS_bM89+iLtLw@KW-P)VCo
z&Bu<K2%%R7{GzA8wu?P(N?E%!x+mRPJu1KGHO){v$@})W4*0n1nhN?&G7*>WexJ+8
zI==0{n(s|-Z`b>IS-U+aWCaR*t4nkrc4uop-f+hYINmnT$JeD;OTdcop&cP~LFsZe
zaJlF<t`3ciy{W(Hp-TT0(*#VBd|A}-)|VL**&@vxMzb*XW|Zj;o*mHGBYTbd)|YuD
z1uNU&I@S<4)h~9(drVe`HnzV(?Y(<p^?`n!7>>ZonoBnm=iFslsJUTp-35(R4XUZB
z7%OkECBX@wXL`18V$v%8D=b{tVd;-}yqnyz0~*^Fa*uFKR@d7biO>1Oa@BwGF--#F
z0s9A!1M1}79r*Wzzg+iD20{)w4yvzFqlv00zbZWldr)dK!y1>(i6VS=UN2ofUDdS`
zyEP9ir1S1<J-bV}{nK3v;pL$guI99)q^FZQH6ouiG;vn(s)p0%!s^fMv~eG<l1Qc;
z85Fa}T^X;cPP41K(dT`yzd@mt3mqUV`h~ESi|0yn_}4z6pI_PTZ-mIOX-%ipE5ugI
zRJ%?{l04sn(<ybUQieRRZuIAI%Y8Kps*kjC$0M1a1xkF&pQn52d{mr+KTpShQlO&W
zL-z5(hOmvAl{bHhxty{VT7H%&)E&btWqScFtlA4Wx*K{Y{pk;TtVU-#W^;~<J<mQ<
zZEe`x+DBy^b_8qP%fJF}Ys4hf%`J#u7KR||2QFTQbHfqQlP~MA2IQ6POr2LA&{>>U
zftm5^>DQdn4R1ShP>A`>cU(0c_ooK+Tc16eTg^Bx;ik{P;oZM#5WulJeAuM(8g17c
zryDoY5P7}(<HM^wEtyBA?Vo=|1BkryP}&~fPsPyJwR_^XCNk$1Zc&6rxPC8K4}{?C
z3J^nj<x5Ea_Ix7COeTR&`{=s?K8au(+=rBmc{>lvfxgbvFT~boBe7&NJSw$#GnD(+
zC9y-JsfPB)3?B>bi73j+W2+%e&Yp^{bL$6GbJobTKGq(y?xs$t$E?TZN^UNuwP?01
z-P9a#Rp$#Y=OJ>7wL{`(_T4*{UfF-rzd@v+rl>wsrbO+(FJAf)QOQ^^Pc$j))JxSD
zyNTOk%O2<}TbNBs`%VjKE3dz(`n$|N^es&9MJCd(!H_{JQYs#aJNqM&Y<UrhVQET(
z^dhIr+Q};W#e{D`U#!nic9WvAhCM2e5PqGW#I4&umH1GnE^BI=+LvLVgXu)+4a_UH
z8fR7(^=~bgP4eH_5<P=mzcYUnp7MB13QMyovzNvvf~mFocAeHD^5DyFu!Z3jb7RT1
zxl+cYda@EOmzba*B3_=EZMYN6xEXYpb-#@6)SEc&Mdd5as;bBFL880NqRO$$=<G0y
zrR3qz#%Q7BJXc;^o1$+xK2qxfFT{CDu?}!ZGY*!jg_S%t9&;EtzaS<#hae`qHwb=k
zRMO4Qe$!z-=)8Wdt)@kt94a-v<ZE!lbV(9_$NgvJHZUivWTJ4drAH>JCHuXYi&&-m
zO?!v*_5h!XLP;3Ux}Mk(kEC8qgBYJ<-ob2>5@zdF+=dYcPqb+tUicyH<|3V{OB1`x
z9J$1b^K%cU?0DQevaN9s%{SNN!su`Y1bX>tT1(q;U_B=`+xdVP`{5u<f(n0)=VQ!f
zoV>8Qixl>zbTET$$LnpC-5HPy9Dq&1e(KnX?^KSMfMMSTYD^+_slT<0OQ7L>#3Ot8
z>DHFQ@68t;JjYEGdnQ{?Xaty9cP+}?4?F6&z=e^PEqR-sl2Y==&U9TPDOs1OqqMiV
zEWtI(x9gG22Q^%{L$)DyFK7Ll4`NiKwTuR$bPiUi#qzcaxQ;g2G|8M-&X?PLX_i-D
z$wtu;&a2`N=Z!(F>E#CtF1#&jEyCQ7_PM=!7WvX#TEWwDz)4)NhQ-@P9|o@5g2j0k
zbQXD73yedF#)fVOr*)fG^RyE^C=0-9afqi=9cK~=sy;z;tNzuphttnJqlUd}A_x4)
zxHK*fDl1r_s<q^rJ(xc-mr^;+)MeQ}hS+5T5Rb?f8$XCA!7DZ@`ipt}dBoU*Svb5Z
zaphrU{Tx`=^$Uj3J=;I=$Cp$hl7Q>UwSmL=>;CcKhvCDU&#$KU%rOEQz5W;k2S<Fq
z*4Nsjc#@oLGOWuuR#kQRJ#`RZwl*O@**Zws#94OlasSb9kj~_+8#nY)swV#xv1kgr
zgWu43CpyAp2b(7#4Ux0ijM39@4zkC6K)|A{Y5Fj?&yc1qA>Q{)F*UW>fLdg3&+?U5
z|LFXZ^E!oMEZ>SHSZSJS3C6j@eLZ|wv7UY#8rJENImNoUt4p}Ztn9NF7BOdIqgiw2
zwD)6!z&$zgxqQ0BG-&HhJnj#3@0uQwxzqJ~kg7lIJ_45wS<Q1dvz&SKlSfXcBc|Q?
z{N$@dXFxnNmrX}^-?o~SJ70QZ7^%FZ%wpyEbls+9<Z)G*5m2EG%LWq)AN-AEuT?%G
znKu35rchd*kk}!z@F`g7&!!UVQGUfu5WN?e8jrgS5R!al>Jfej8YU>Il3Pr7JNX`Y
zo;ZzTLlVJI?!&hsO5)v(5)=|L)>ZM_Yt}HK7r11kU|LjShry5>xBl_0TRna|{=Od&
zlTm-)8hUT!dzASF7mm3!=tsnz9<Iw(93m|G_hps1I+4*25nBp+XI-T4YnHJwV$S=;
z^PNHhBV_6Nl2E7!SqKysy}=bQjZn}!YMtDN04&*-?+K36{1vz7+l`ky+elb_KtX!H
z5i7F+#sFhl8}Fr4$bnNvnHJ2~Yu*y*jm=4`A-LhMDt_MU{&(0-ZG7f14ETPk^uQG8
zCH|Mz;ea0gi9?e?K`iTYn01DCjA4*kGuATP_B)@sq=Tx7?tE_G2uS|n0t&Q0rOi!)
zX<X{luv0onjOU04+Mc(Y-_ft?%xB+)Vy!!cLhd=`i}m3?u+nt5<3Vbz1Cl_Hx!MY}
zRWJ$xKVraX+Yh{fAfn1h?q$#W!zni?nQzu#yl<iR2${_jxncOQn&jK>GmH74;5zVN
zJbV*+LungCwOPIlu(sN6ieDxV=FjbuG?~3!eY>UP=uI+}wW2uU?B+*w0dm>+(yLW`
z^hY0h#D%tA2TT82>p@*}m1PKdzjNSzw**BjEYP}=gz}CH+t2-SHJ6cPO-8~UNs@(L
zx~cW#OZ}I@w~tFn`!ITjB$k2%6+WyuNK)2bku^MFxJ|zxr@0Yj7p>DHuOR{glUsl#
zn}^i;cU&G%_t#eG?D~v<etq(B>B$lby|{#=JHJ6(b?tFOL=L=h#})u8e+%<ghGT|l
z{1&4T+A{p0uv47C4=Sty-t@Qxii@h69^KnJAyj1}$LK8xCptLXbYK9){+hr@3fu9A
z!!*+0#WER%Q1l{g3&__~i3rs$-ujx5%q-`>jncwOiY4t*VMNvXQ4<-rBu^F7bUYOx
zTKRf?4dzBnq{A;I56B)HE@C<U*yYC)ly~}hrFg`42C(^2YzflEV{Kx2-q*U<&z+Kl
zu{ll6{ODYsUdB_K@AbvcBBkOxtcS;w!SM{aI9!ks?~_=7#~W5~=<(|kZGiFC*Kkfr
zVLr286r5TWupLDFWTMP3tuHnz<{B1F9DO$A6hY{fN9a^F`DJ>h?4!*JX{=_Hm-U$r
z&WPbx&ih$LrMuCkB-dY`?j(AaBKtyYBO!Xwhkx?>b6<@E!?E|2nLjSDnfTo&kU5`T
zB2^kFxW_D<3?px(*%kXs^hhO<k;t$~V1@2~&w`H3i}+nHJ?7R4r}pCZAbh)+PM`<*
z-IlxC>=izn>|Hp!tP>V-4J!NGq+Fyt&jvXk5j7F{jM$3va#ni$3X@7Yqt`n<bkag2
z9vp6m+7$YGewV8}gdBc<G%F-rPThtwbO(=`6S7`uCrqC(MW4Z^><{~S3vhVEot)QO
zfhp~}>&*vqMipV~mv}Dg-us4wRguZr#ZqPZr)!F~v$>2ltVm1eD?-Q+pJqThq&oN7
zzTul$Lh<8kmGz;)_A@Ah5P>Zoxcy`{M(s`FXUAy7%3nAG++)giM`c$(K}8UHo<!a8
z4cs=;0oV;;E-%f#>CVQ+$Cdqwf(+K$d9JF?+XJ>=>-O3L4P71|;#C&$h1n`c|3vKV
zaXqHV*l8R^A8y;A-6V1ow-T2Q%&(Ec{D|oLBQK#x*gcnD%$@J8sky2<iaHjD7M7)J
zVu)wV3;14K|0Zco@brjH4dE|g|1!XP`4kq5`{yR7!HS}8D7{qB2gT{<+fH-mS&Kt8
z=QwTynX!9)VdRndtSmW<2(y}nvkx$Iu$!jntnUy@e}4IV{CKUIDWsD3()wsp0&Y0&
z!*3A+Rh<}zpwreu8)4x9Rg)R--`6=5Bnw(F1s&BGC@cAXo;_^M`8rH$;gCzG8qhJ@
z={!=j%?1JT>a3!oK}tLuSJ6L)zf(IcpU0?uRaGaEkw+_QJThl{tlsl7`iylKOuuzw
zu4Q+~v(Q5LJ8*w049jOIKdtGPNt4d}pR3SIBd^Q7LGmmbqBiYNXPXzl$eV)rS74JF
zjk4}^TkkwZf<;b;#Xf|Oq)R!UGX`86w0$M`xPO7ZQP!v}7m9wgj1G%<+_aAN_><nS
zvdamz%uPeY%k4s{W=8&z&3wQ?r}gOIP>0`Oi7+-TS$#!mh1G70HL0k3&$J+$*_)*4
zhWlxTuv$dXeTx_#>`nbloVK<Jg>i+moNzU=miMG9AfHTa-Kj^0DKgkTx&UW)$+h3z
z9C06z)H56x?#8?W6J$+y-@dl(aDIZlYWZ^LB3%91cuCTk4;EjBZ8PreV!IXe4I<~&
zjJ_@KRNN7oe4CUAJP_h|4OKH&HV@VD-~Y&3`5L!*WNIDh;j3Trkt}KQ8dph=>L3np
zPOoMS_u#=T+`;D`q_dG15GpfYcU~hiV*8#P0*|SYtoK1dD;}c+L$ez{tcdwPuCWMO
z@w@25N+B{3^OLQ&5RRs_-0e}>HB23Xts)f8lhZ`D9aJ0~^OO*o861%l%U*w)G47`O
zG$K=h2TE@rv}`6SM448znp>;qPG(?r6db<<cGKpnE-6Wf;M=?PyRT?RKZ$-r76UJv
zz0VWB5js+!E<0lJ5#NEGQi58Er?$a0n9~h51et!}bzHD7wOx0~NX>jvkoc+3GZ6d?
zPz-)D!YZHoWNNS6Jlhbqs(PJvVM*)$B6bv1KbZ(JgYsb_DdRXFV66H2+CjI)e`LDb
z8h@?_u`)UT7GnuAs8_NXsCdU@yH;?}rs}M;<x9VW`ZhSLLcgsTmrI8nhrYN4Mh3RH
zU*4wS0Ov|n+66zoKoqp&YcTLC^CZ0Wx+;UL2+=bm9CITg_49l2GG?Th2tv++2!Fze
zk55oYs7vefLB^WAd+oOT8&oKc5QtWvjIZw$)e7KfNQsGauG@K*HNG4#4K7V2NBP+?
z9UNTTIyxR74b?5f#XEP9J(jmVQJxE2qHeQMfBF>vWgszg6}GE$vp=D~YLfz`55DLW
zd5V-lWb!9`q&<;sI~V&9f&+Kq`@a2aU_?ihu03!UzK>GT_A?-|iPu%phprw|ZvYGi
zW9%>}qpwOn0z1r=tG5Q?hQ<=jMxSk(z|NVMf8DfX3h{CQtJqDSGj>wlhlBuW<$H#S
ze1E8#`|Co2qp-GB;tOE<^-Y_3b)SdxWJOn%OAz-wp(c{<)8w?`9ztK$nVs4tY7lIA
zj#gU2?~t*oadI}2q=)8*f+R2cPwapE3DBAsns+vnwWD)H57MPMq+mKB%IX4<FOA0q
zx_z0FVqCs46IRj2Sp_W-z4<?Uon=&;-S+KUic{Q5fe_rGK#>-AmjWpcEfjYs?(XjH
z?(Xhh+=9D16u-~=zvs$1S3c!SMn;~DoxS#6YtH#IXJEGIhUxj$Mnl4g=X&+~FtU#l
zufa{C1c`9XfyZkwFyMYWlp^a-BI(1FOekdZOID-dXLJ>GNef@^op$WUL8Zu-uMM@4
z8cbo$vER)eqvX=c(k~;b#)?l#mK(IlXW&qFMDaQAkb$UVhggAMA_Vdz{Ax@$*R(}n
z5jR1BPGO?X>WZ#KU$b@*v9>PuJqjzq5li+b<Uuhf&012NykF!owm`Iyd_IxV=gp3f
zT^GSAXL%Dk%^k`O0jocrS$~g3-<eOPO<+6QvQ5+8&#-(=v5Mwtb%XP&ji3<rcWClG
z#XogeOXlm(hx#oXu>7J}xx7wMpGFc#SDXq`EgD=T%Z{Pom2=+Z_uh75|5>hS<P-cO
zSmD>Z1N35hLSJ<f=<sH%cDrj1ZC6#X8~jk2^qy*&V*-=;wzOJd8^I7q%4<EuQiN0#
z2Nnt2<oAX5!tNF-nE-bY)_k6=hVxxo!2an0Uf+kZtgE*)lRs09&_zC5vdBfEUR0ZB
zD`5F{6U__}{S*$k%~g|M%ZK<i%lA`$Gm^;s>&zt+u76vjWMnf+bW#0Ta-;y=vF<eI
z1kWIKuG`>kWKHbz-z_oR((~IIzZwcb6gV6{1->IHWwf?dDBJ~os&<+SC+}0BU6o!>
z|H|f0uILJm69ApIrQ=)uo`oP4DdvN$C*ZmBvB~3=CCQayH<pJAobLT8Aw!4Hn1If;
z-J2rh3(8KLOx9<FJdshoNcA{&i(}!}$8&3ICF6THA^y8Fe)rWd8x4X8r^v)aGCXE?
zl|Hk2@Km>4Dv#`tq;dC-N@FjA9Up~+pM#9cEEPZ0yyp++=%TN0O|=JD8HRcE0AD9j
zZ2HWpr<@LC;VroTnJv;OtoK{w0ZtR<2?(dycX81P2X|I+6L$3Vu`B1ZJygj6veetg
za>lnPJ_@Hv{Rg!BQNrEX?3)oVAzmUIX};m!xrenO8gFSAVyP?tFz6!BZ&xx$oa&KS
z!KeW*ja9gl2o>a9y>1m7pJNT_L^$Km#&q<ul#$^{3zm=9U-k`<FuSHOi7gxEd1H(@
zFQX4w7-Chk$J$)XJ-EY>aW&YM8F9FK`W%0rg34#4LaTUsZZPzee_dW*o3RAQ1vhPx
z?vYN3qij-q(rB;{cbbKKB|f}W)%+HplptB8W=PA;pW<A9B1j!0FGXpCTXDHTfE3bY
z7Al}6E`Uj7&9oss4rF-*xm2KDIuQpms_yseaw#ik{`K|~=MY=h73o}@ma<|Pu5;!u
zlw}x4id(a#6x}2aM``*C@V+>z_Ub=)`3Ju_RlC_1W0#|O4*(R-H_!sb^a)N$W4*TF
zszEagv4SV)9;jV7L1=pa$fH^v6t{$yfH=8gd-^&!ZH2fRLol+pQLy2A8tU(J0{h-T
zLf>*EA%xee1Ql0+h?}ipXE5M`)+UDzLHC1%h7>MzU+UxiIgg){@1rbK$=esXr#ZG7
zP*Ewu)iL(Fp05j<thKi(2hGHg*U6Bb_u=ap<?`T?U}KZV@mp7f*p)3+Ci9_NX#){7
zaUYQbb5!?yyl{#K!yZBvZl3nZj|Lor*AdwT^||05?!z1-#RXYgPdJVqMdH??md%&z
zjkm=h%n#L;YkWoF!A(A2-scJXLOL$^x=Ys*^===+Si$T|Y^jD|6LArd!K<#-R<<Ly
zLyn`GwtBAg|A0IdqQah+dOw=ps8k?^KR@0j_=@o?9FUv}SoG@p^Y(<b4o4tR@o;VY
z#7D=q;{F-&!T9^ypDeuD&$%0<ab>%h=U3M`-J3$rM+2M(owOw=E$jVV-hT|;l0ND0
zpL}e(Na63ukK_Jsk|s=CA)ihi_tBEjnb16BQA)HA4^mC(!7z8JweoDzY`rdP<I$BI
zLCfB9tNr2wMZDZCSsTL*nV7S0K^7J3+WqrTh)$80k-sQyD9s5CBmryMu37JVPTG;$
zaDJ@0$vCLdsXTXKvz%FS7r@w4w>!={Nx<cDBlF*tZ4+z!hL%%+Uy-1u1WRCfS|&U+
zJ)fcd;NB8?^!5DX5;*p47`)9^3;K&R29d)s1qNw`=HC(u>Dv#i!R-%s(|J%z!lS~F
zM{wxw&abF|1a!f%$<d{oefpf5DaBlROSkm4ZrQuFlJ;!jWsbv~K50B^XXhbjNg6n(
zKg^knaCWbuFPeAf^wklLLzhEr4pT23^QLa6GnOA@-3~l1cm8bet>$o^wtkmxiS(-L
z)}o#Hn|TfA$Fwk+BV;Zb8AD`j^`*>#``M%9m2pS_9Ky?Wbz+mU)M(6ErrDHKZ(gIV
z@(q!BIo|yuRr&m#Q>C#If6Hlx;B~Y9RLJJYhS{R_T6<dV1Ib~d-l0SQ2GO_q9(1*G
z(nJLLiHD3Z6f+vK_RGt(>NRE_{yH35xwlz(iYU_;tV>VH#h2c#1*O$Y5gT$uhqj*z
ztyej>WF>#~@C|B%`GuY<0u&67rt-@26&sBvO)lbYOnzbC(Tp8T%QN^k#R=VGTR4x@
zSZ~3bsLdhYh<!k;5B~kt<`@5i98F)GA(+#9;cutU6<p9CsZw98td|0#+nNT`?S9L4
zEoNo3_W5Fe_0{OUnjOcpX4_D!gsXy;`wEr4cavw!mfG<YLmcKp+bn%7D)5`TcO$Qv
za47D0zy9#xGB)_Y+u=)jD(O2utmv5!<~)S1diS=RPZ!*LQ~zMDWxXR~PGWnun^GSA
zDB*Hlb>~;?C+dcH7mtF+Lpw|7wfG@RSrtTpcYk{vlr;c)73g_q-YLopH9I;n*{Ie`
zvN1+W=m$U$%0XX}<Ky$HH7ifHBGyXl+8l?NuZO7lO&{4vTD3R5S%4G#m@f3p)ELpT
zv2;dKuoj*LBL4|435Z6gLP;<)=GZA_MHgV0(ZLrS_oJhg$bWE5@qf>)5Tz^?t+1+D
zf9)h3KGo6ywTTn6@Wt9&nO=*8)fz33W<HUK;CW(JLp<Fv^<GEJivtq(m5vt3tabLG
zgGs@#U9h`k5>%9%+DNBGm=*6&&(=T6%7-f(181^BEEuac_@1jLAVt<N#}T&s9Ui}+
z8SD@yG8Ool&M&6<GukN%xxzH!J}!0$Ge#Gt9*;__co@`GqJl<kT5s=x;H_BZ2HB7N
z>ww8_NF^&}Xy)x$J%*4c7$$bT(x4KE?>`X2Cy^D{s9-&UH@KP4<BClFYJW`A0xPsx
z_$_Dq3T6gwY|s#L!X4-d$O)$MID5%FOCCItC#K?9VwLFJ5PSOSl4zreme|<Z9#Z*;
z2SBjm49SAH6GjT<O8Lsdm21`d(zuK~oSIpFH*f1eeukTX5kBaS-{oeAHB?X6U>^lB
zJg#q~v^=<X_S(tQc4+jUbRSW@*4yxkVc7ZM;bcxrCLiz(;8iI!N@3J2o&Vfr4KVmP
z%!|`<b186R_dIQOG^5;wlWNJH{Y~%wfwTs&+_CH})ti^ph1}~=xNo}os%2nWR!pe-
z5&b8v)r8<Jk9^m8ILTeZP4IePiY<fGJ}L^1m1*W{wPHp%p(9V=CJO)i4?4PZYL2d7
z*nbUT$j)i&j5CBHeA|hBYscC(`93c>=<)A-gxO%25gc;ZUmvGtC&e?wk#`r9y{d!&
zjg`%Y&FFdcW=fVl7ClEOCs&Ak>M(eN^b%L_co1Va%z4=s`b0|LgjcGT8AVvtanMPX
z%=0^#!WkavX5hghNT>`QKB2!80l#v3fT7$llTTGsnF9C8l~4nh_F6Cee$O%t8t7Qa
zWAWT!S+usFG9+2(h>B4j<?-t5)h^M7bhh#r<)+=)TUpcha&wYb0|0Oka%s{*$Tl<V
z_>C{<&hMqs3p2;?eE;yb-~0BjK8A)ONZRaK(wkk*?2da{H%MVoFFl#|;d5+@^@_gU
z5av-*V?ZGY0ph{;8x*^eNYPA%ZudLtl2*Q~DT*MC12CnqINEU^K7R7|0Naxz%ehIn
zJGsb%l@@U+hXI2meCB(8;2U3eyoSgBl8cNN==N4z4Z_whp-i4FiSQ{gi=6sF|J|&b
zl#}eVqT@Cg->N7&k^r>YibIR$^kW<pU$Hu3D<9UXtsQ@xS!-B}NzODK=qB+_8=P6x
z+OYCf6R(R;6aPrdmHbp|qnXfG=7T0G;mW5GU%Dr@-$u-8$j@pmb3#^{v{2KvFXpwO
z9S?_mxMW<}PrP?88oI@2{>9kV3L(dn<U&-!Rr2x{BEM{GK9;?@75rv?Kc(B@o+i5z
zu+>Q0{bBfR$(nC)nxc%^B-x-?l<i7$nm24cwwm-JkYgA<9Gpmhi}O($myR0dbT004
z^>l^hV-sedmB)RyRa@)&7PUU(e2|_Rs0)*#9l`KrARn^+JSm=6QG<#3la(Zv#n$#p
z|1YOtI(!$V|5Y|wuS!xA{OemUJouY$yiJ(aS8FfH{^)1)aae-;>`N;SVYAr=yjM}E
zO_)evKYs2<J;n&+nOh!(lkfW62G=|4RfdMlk@G0HRr(|D)@?Gmc#JSZ8k)A5LeAR~
zsZ#cXcqBFls3Go&wiZG|1j`l<FCoa)wnHoPDK<)dHPPUo_(%}#i8mLMvg+`5X*`0b
zF6`zqP6ukrvGjqoLPN9kg|zy;ebZ669YcrAZs+!2U9Kr`QQ{W5kBN|vmW5pf$RwUO
zc_ex9#8=5Y4kxi^N^N7!nCV&6cCV1ovdIKxOrfkIyCL^ZX{8lMWm~lT^eIo>LNxSz
zLAolXanF5j;D?jtdP-d6Xxktf4Tf^UtOWal+6C-b+uc$H1nj$z><A{Iww+YfT#@D)
z$8$y|hRnf9l|LI9?m1Z2OxYmF+V)V7pO92|tNkYQ_WC#eRfWWE7hgK*Ma%l$9%Tia
z!jGGai)<upc*#1|r&~e4+39Ivx*cc7OxLW1yO@b|!&D6g=S@r#yv2lYOGdZ$qX^6Z
z`hZSgqD_YHE|1*c>Ff|*jMv*!wz5zae>4U#V3^!%UgasT;xQYIFsyFPO2g`MX~a?H
z?FE{lc(CHs4z`z)=63<hdH`4SA<UCkNXdz*XiV%G5Q0cG^n)vZPQn5)2?){>5|Q1=
z^eXYM8(C^AcC={amRVwmD$AcrZ2>AM0Q?+8s$QwqA2E~2#y#ObP0EU2sWFrf8&#dG
z*548Kh!f1RKAb5sng1Q)UTZX&J@bJ`QdyKxN|Gpzrb2%3-DnuBIFIQ<N`<qiXlw;)
z$<Wms5k<CX5}n4axt48?kqU_sE_jo)KdW_bb}mBSFx+e_*EpA87f{0;9(fTO<$Nh#
z!={qKAc+mHN($(&A6}}E$rvdPnEv;6!UwNpu{TFtf0ZUAfNd6W9vk4aDrys>N2%ua
z_>2M*4>}2S`p@`pkwqFKI)&eZ@NVF5{5N_6q`?Bo?~#$CDJ0xLdLMcv7y>&Lbku^Q
z`m0-YcwyJQosKZ+okmLQ=LE~@_Nm(6{$4wO1PfDbF}z|qxv1kdWeXjGx~$KFc=HCs
zmNJiF(Wq4i-5<77y@|Ya^D?ZqwAL8;2eOd^tYg>peI17q6Jm-`rK1*GpGr|U)Uy$v
z+73;h%imjSwo70URZa8o6e~Ns1*z6-^GaHYcm%9C;xqoiBtnpF)gtU)V&?nP{qSbc
z)6HK#H~yPek+B55&0T#e$?8{zw&!=(q9(jVt3?HKRL~Frhl79F947G;*`=w;ILx~c
zU~0}gsbtXj=2hTX4)Zi~0Ramx(8+GnlTdR*OtcQ`G(9DH-ia(L1KdJ0T|!XIRmX12
z`(8IiQQwDf?GTHI+YVV}O!98gvdyW3B3hM<@v3ud%!b?NLI4+&&gu48Gpp<}Lya$|
z<wqRC4gc-Ftcl99#hSYU)F(CWF*r1+)k@f0BjG``8pnLT-tW7(9ZaGjV-G{F{V1<!
zv9Ag7i-1I_k%m=Q=-1)uaxF#*?(K`aJJK4xY%76u?Y3+gr0~hd2-3xVIb=9R{j4lm
zbHs2u5NtoapOA^FYNYZ=FN$trOG^n<=zb#Ii{bARN=71;&!1dQ_6W?o>51>SJaGua
zrD|$Tn|{>=f7RQc)}UwYuUfc_wkQxqBBh1!G`wv7?vAJGI8fv3S6Ji0^>qBybwo<V
zQQL)ZVmy86rkqE^we}ocFM6qHZ$XS{dP};5L$LLCzkQ7~r_3YWFnGa0pQ1H5J-v?C
ziwFgzHbt=pliAS?SaCfUAgCth&@MSRjmurs>3)0TjD9fWK6*WHt+a8Bn?|Sc2JK{8
z_QgLd{VG8HyHj~?;-w;+S@9hzQnst0_q7qjjM|fH;l50<tHCgD3ey#Px07=_?*!Eg
zD+yM(YfG^6iY-c!Yan;qU8b214%kpIn&Y;GrZXdTWre2JK}9l=0S`r-$y<3rZ`e+m
zray*!N$$%BY0|c@Bfn>8B~vEj9}V=}9P4}Ru3iYRY4La9e&YN7YNQx&S5!=X(&{4W
zx7$4|Va}5kf+LuB)AY!fC!rsF`LgNL0&}6cs5%#yp(8OlS!9Db-5|`J1v({tRo7xo
ztwvW5%-YA-xWV|ugq1Q2e?uv11!&IEv5Ce6HXGq11SH#Ul25ibX%RQ^{kQjz4V?OE
zXlwcQI33TOJOP}u0yBo^C7Xl^Hnm)Ad3YQb%vbb;VF^MW$4|TfU?^{n;IQwFU79Np
zp-r)P3dq<J%588jP>vXYFr*y7Z#f0{+vw6S?DwVOh+!|z0g%D02xTPU1g_|2&u<JA
z!RskKb$j#rBB?5kz9sTu!5vH#ZG&7^$Xt}h4MXVHlN+Q&?@uAuqcTU2X5zO!QFdB^
zS8x8(&>#KX_$#yyn+`p!*=Q{c|G7Gr%r4#BJ~yAkKYv`5cz9)-_@B3FX2c)QVy{p7
zZr+6m<es^$tC@vdR_g*ym9PoO|8UaAr2W|pOUrR@cH~mINc9(H=YxTBus#+M=?R|&
zlnaRnB$NsB^Q;T9h895V)0rf5wN+Tr2Khm6j$fY6{H0>IQ1l~=m%E^UB1(tLrHp3Y
z*C@k)TqRWs99!QeuKAMb<=@9}PIG?vq6Q3uHSQN`Fq~W7>$|%f#_D_ry-|u6hH}Ky
zn=nG9ry{k3&RATwhg|yUvQ%rH;NW9+fg|?7kYPBkSY|dQ=?wmau-2%4D0c`HI%cgD
z=cV9GTBb%%A5`p=ayeAkRkk#X<W2rbqsBgEcL~oT7<c1XXw%rtWv1}u_ZjaNyWdy6
z<|PN~s>p$v_9Z<01fya<I<#e_g6KLe8oKZE>UHnuianP%FH7x?ekgfwHD$Y+Y;Ve0
z$o7ns2tD=VBi1oF5a#vUpai|QVl1<$PEAYe%@!0%>J#Ak?W;uzB`C3P_^26vw&dmu
zk9y2B!1_Z#MR0gg$slGRyvNUBajr_QF}_QsQH#kkb<8Kl<o@Pu8@Dbldc)putaJ7f
zLeqX3r(vLIVs*tz@Ok0zK?4_lg9UG9L^UD&hD;J~b~zcBZhNfZ<mABc2-&oFh^-O<
zbddhtm-FMr_eJ5zHq;W4QeTvJipI(mlSER23dU9h)8?Y|vlI#k2f$f$ScZx=i@xex
zi9{^up>}gKd^j>cZ=pc|6SX2i;knGXXOnUqy>3iSD(jt2MQ-86d}K;PL2J0gPTv)=
zH7147@fJBYwYB^kvR_rInXm*b7F!%;Erw{sdHGQr%E#YmAlUNe%Zza(@5s7`AgK*|
zz3&PwjcgT9>;QCFA-#|v%M+cez?{Uc5-xnbr8t~W7iR9zsP8WuwrfJ<=<+gObzK9F
zxIoeA&_<EV_hv%(1ZuG{(PCk}H=G9<M#va$Ld}*&mB+$a3dZj-b0zkaia5B|9~N7k
zl%ysG<B@AS5mBlh+-NLT9k*~d8%ULl+2G;SpbHzE1tNuF-ut1ZU)>1>n-RJ&)8Q$S
zKHtMS{bkSbPW|nbx5K9u7S{j~e{=QW7vzKHw<TNNGL<71rbv}GJEkGT8D`jEo6?Ty
zanK8X==#E7pD>I{tp4+JiH?Mg<v*8CQgTn1Ab?9X#NQ|czleVH7T}-TEHs{ZE|Ky`
z&N?jDnI`=13A3)XSW$0=`^PDV6VuuDDfR=kY_jsk&u-BgvQOP1bFEHSgZn~H|HuPy
z?&vhD1{(o~6(jcps`suR2ScUt-GlC`OghiKki*c=llfaGPxN@EmSfgMkJ1x}vbmPW
zdvKucL}b21>+K~NwAZ?L<*OLPP-3P(RasxSD+hT%bvXM6S|aO>@c?LW{*ZV)Wt9bO
zF5UuAv^c4<xC8vX|D2B;(!n^2^^u(BS$CMK*_D*EF&5}dPEHE36a*=l9+HtLgMUUe
z1}^|fXxsC_gD7@lF8&ogz(DisiJ%csad1dTESb3n=HI{=vN0B`>O)TUb}A@eZGTgz
zNzp!j5FI#~zMPK}uz~N`<^-YCRD2xU4BeS=w}^)n3H5cA)v+>XT;et;uQoTXRNaby
zbbTgP?5osU%j)*K`g&+PCUW3T`26g$laSYp>M)0G*q$4er6`|~-K!S>t9BXcNT4Y5
zw(BR(Ea9(rh>S_t%Tf?^VNB5K+*XbL&HPTi&F_jhvu_r=AIHyURgR3V3*TNM;Gd=+
zCEJ}Wg@clvd^phMGWh7Vq%&|2V;m(HG%?J9OFOuwEYP-}1)Py|067<MFDdu>oNYF1
zLcb{8N6_GM+xszR+x?q8UDE?6b;BEa($&v7fuk4{_!x7a>>KGIOy1Vd1onMC)eE*0
zD{?*vYT9(g&dKaG#Y5>|V&pU$PE;iGmm9eTH1D#yi;josou_xa2Mb3vBI9GdxKu!0
zEPU;sY1QLYmZ@Z2A(5GX9E1v*3n}+utkz5n9-4IHEkYmHpT!IHrBMzrdfVS2L`)w{
z7cE_MEeHnV1dNg9tFZcE<tOcAIDGka#xt4VwW%j6Bmcq8;ua@`OaaI@=4~XN#|E3T
z&UJ^ogFN?*4V=48eq`Pxuhtf^r^Xp;&z17^&ffA=&PQBs3R);%k;yk&aIh7=&`xKR
z(2Y+nE1Eb65tG>OyM&Br7cvY#GFX@Sobb928<6x0HhSVkv9_Jm3Fi_XE<lcG?c+kL
z@Anoe2zU52brKLaGw2#zHaOM!sJ&u_3l2lH>xHB_QB%(vSWf<0dIY(EsRd0K;w8bB
z-M=~}+le(Q*ApqA-l>Q-&17g>e-G|}RIHNOOvGlIoKx8-{6`?tE_Qfqd{d9y5sk~O
z^R|H=$nhu%cnAE+7siv=#J`^dzEg>YXoEUh=Jygcd%<I+L<1}^s7PMfW=FgQHR9NG
zqooVHLBcFX+cIIP3>Dy;XKN!uO#<>x#7{72LT@a5<^c!SD*)@21SIh-r34lwgfLy-
z(5El91}G&D0TooP9}0f31F80u3!diNl%^Lyx~$2Ey9W1MfEj!iN5+{w9*og9a~0G6
zl1fCAw>QM+6{@E4o@4=-t4g+J3L(O^Epf255-kQSaiIfF6{+cb*_ajo50aut;WWUM
zhlbzL+nZ+4`+VEr^E32w{sDyj!tCdFkOh?39QS||an1m6Qh#FnsQal=j-bq3qvVGt
z%h<O^ux~XB3~;*n=P~~EQs?#NFQVgWH!n^1P4YTor>?FpMHl8qbzrc>JRvANZn1?l
zp!*$^ohC0pHicv8R{6{792!iY!U6pNmSUN2{|U>o@wAuhPOOy-D~`r6D<^(Kb+q|Z
zu=FrVf$ZB=T6{0h-Jh_y!fj5D8bMzUXeA$VQ9gb@ww*<C^((>~g``?PE?2)w0lABU
zzhS$qI~z6hIbxr;mi<^uUkzup<c)koC~ZO6X&sBvi149lxtK&ZJH^;@5k1E{DKClp
z%aXFe)I`Dy5oaA_(3tshLM)W3u1zXDx6X)sUPY3r8+dQ%g0=iX&awZ^--TwjdYp@^
zt9p(4VkCz(Ua=Ge=8oz>_eb*<SqRvW#ydyW+d@2w`}a52LI>kA72D6dCHs7X31cZ5
z?fvd&ZD;11(C@Wq+auBo)JWlBsi{cA?0rsn4MhfashG$=ipNHnjzo^;)NtR8UY0ca
zAjlVIDp#j+S{Bvo#CV~dlri56p0m-B6xX-dg(wKNEC&~cfw&E{aMmiV@x4f>Ff#r}
z7Qi2kX?QysQH$QxM*S)2ym4_1xs$Lqx@Tz#naN;3fB59))7y*sNJm^!Df%B+g^2Z5
zA*hOF)%{^*9cpxP=Hl-=j=iynB93PGHsa?;VcwOIWcK!}@1f3cTc7mUea{#uMRSAt
zB_cfB(qs2ueAk<a(Z8{SMc|yYpGcLQ?hZ%pWMtMHN#ikY<A{TB#^T+4H(3+F3e{@T
z&RDTf#Y7upjYUk2h1BxJb<BJprLCzSCwR~*P7PGpt6U;O56^Jd0s4oaZLx*R9m4JU
z#zuigVt%ror-&^~F6ZmQeD|q3QxzENnZKlDc)Q{epfdJ$K-I=L`W6_i31!mEJIilj
zE`(o3=SZXLJW)ORqf_8dypiH=RHQjsioVin^%>;1;nGk08*(}EvD|zoR#flw?Ofk&
zcIqX6A&Y(G*Awn0=V+Z7M7m+Q?9#1Gt*FNKn*Un&nHY^b@ft<|RPS=tawwWI5AnM*
zrO>mpH=RyKJ&<D=c|-(g+WtwnmrNKhesx@f^Tr<x{M1%r=++2$K#BwFXFHC3s2Orr
z0LE57O^Vx1IjWS4!f0qnjax!UgtCBuj}*mVK0qcZl6As(zd=S=?qnT$+PH<5a-F>J
zPaq5hm+rAbDQvo!kMtD~pf<D*Fr7<h8bj~tn{`0ixMkuQXF_QR;7Q#otbs}ZRj!zZ
zLBf1c2CxP{15|Qa0q?5|K+O_4<T$4od}>v~2ZZIM+=&3UfE*1=K;k+-U(ns+a7I-a
z(OurO`;oPNxy8YfwmkciTQ|f|X4Z0)xW?T_*|=g&m0ux$98wo?0`Qgm9NvxuR6RI~
z`{D-SKl{_W)EH`EBv}IZgA0~RV|Bo&Ja%CvLehx#zsn~+c!i+9edhfnrgMfA?rcK_
z!k{w|6#S0gXP{%ak%c@QreNg@%mu@wiqe&9S;kei5Q*^1*JAzH&5OL_Ru2s^lvRdn
zTsJOpc6ZI>eqGx;@URrM@>w_Idd;OdPepl{L2Q?PH;Ifyl0kWvYg&(G7-<{r?sLJ6
zwz%*9!f1N%_Mi|p`qGY6Pb(pn7r)b}&F9c^jtNQO_NzYvhfwr_GP|FqidDTByY;_n
zst^u^Ng$p<rSny`Gi-$}F!{+}y!1WBl1qB3C9P1TBr7S^KcgYDn4ex(^~{tn=dqRn
zx^wT&rq$0nvZC#P%6q2W&85uQm4y$WewnX*dmBj_2M4PP8B->L>U{4{wPS8Mjzcm1
zd5<cC8yqHPLq7cb6xy%-jS<9LD<qU0JvnBj9DDOoGhR1MQB=eam}Y0Q8QvP%9lZm8
zqZMr_*IJI|WfyQGsImG!Dt3AD!^!#pwBT>EX{M8SIP&!J$aFZhSdHki)lpvhsS9&J
zk=FBVN^$awdp{^jc^2q~#qJ*B7e`r1n%Ax-{EjSF5_|~>G$Pd&N@q1FnsNVKd$Y7y
zuBDnc{GFXGFn<`&_0qN|A=k>OROM0GsicP2{i*hQt8@a#rvBYea~-(YlnaK9hdE4+
zpWQ#olHDG|lbYS(qp+`F_GHz*Puh;E255(2`U<(^XNccI2O8d+=Hv1^u}Y$lM<%F%
zhf*2UVWqNj+*g->&75$VfC}qF(Z!nciLge8hVZ2*LAffWGb%)wKijlFR^&anLQwT4
zQF|+bv4~2R&=T}unQ&lII4$EtqE+8}9F;ZfhcLHC(ot~@AOKKgXz&`%tot8+hS(z{
zWc=a@C=<CADaN3D&}{O}`%^LFM-`(-I*dOj2FRelh0q&gwm`X;QWrej!;ljyMrvvm
z=5A(}(LKFF@XCXXioxO)sv~;?22W**A%#Txgr0-a*sVsmqfe{4+DsqTe1}YtOGn)@
z4mD6KJNp7U;~6z_kBmc!q-?;GW%$KLU~RA7cT=&|xb#vw{1A1w1p^?}79Bxj_$Hil
z)zRl4@vXNvhz~i5RX=z)oX}UOty#;g^u_^}E*PEfFZdZi6kM(%+X0C8jOb&8_ouB_
za^1}%{-}hAtM%n=x9VZO2I%CaW1Z6Y$4Q3im?r!5xr4sV4nA}gh!&3SKG{?fkr>&Y
z4-`vpvZQE5Hpvs0Dl6I_f;00Ggs49~Pk6kLuM(HVP&5HNjX%A>^nvFgIxcSKlMVSH
zJv#GtQK{D8)tkHXh86o1SLQd0G~tXd>%#=6CE}qUvYb?UG?nTdFLb?4?Ml}KyDrik
zR!JRodTh@Du%6LiB&qrrh*-yL3qL~BWxC607NC`otfma~2J_DOLJHPCtjTh&P_)3o
zP>nYL!fR3O27feSDd!t!@mt~v73WQsaHR18fG~>@m<?Xp<h=mgi*iyotP~W!0>uVE
zv-sb1TE#wZPDQONg7{VM-<KcO?s`^7CL$E|rr!V-NNMlZ7FOtwl8Qy;RQHeoB7HFx
z2n`BW$ipTE=K(;DR#|k?K)?)?=N0wq^V>c=mg;Fn%{k-npuZbyK4h3_38rKz`E4SV
z50L~jWWuG<4w(Oz@~7nAmC4kJlzrjDbldjPKKRa+Uyrfxa?)XRf={yWnRDBpyY5+-
z`<UMCP||V3n@4pzpJ}+5c&j~_(}MH0H8gX0pFv`=q2sTPwRMB*P?PmNncnxNh$iH#
zOLK<Z0xN<dZhXxZ-lFA9Q+;RAm!TmU>W=&|*siK3vpeXQ5Syr~<D^DCb>$h#gyl#%
z!Eo4v$x-{V*QAGtCQ+)eq?g}Gu;TbCoOE=x5CWEx8dmFmy&upD87=)CS?Q4}<@Ri{
zvS0X+-AkY(3g8;n!zCdxeLKN4zSf`NImczn#hiQ9Zf<FbvuP`3E<s<j9-!I4x@2?1
zK_xJ|*Xl<NNJlh`kv#70Rh6{&f&Dp>eza|O<S>=Uk}$G)x60No<4xXgDNo6KbPivJ
zlFsN7D{1v~yL|KeG1fFM#RLP!<vQ>)WrH#9A&k|<`@AlLvE)CL3AOll=m>U2b3fGF
zW?O>Ln0<cuFZGAl{qQ+2Kv4-!sH)Gk=#@|Y%`V&KM&YfyVGyZ+uS(YgdEV>v+ESc-
zPtlSk>^zlX=`MM1uX!HNK0aKVk)czle@2GbXgX&$eT&)n`VzD>RwgUNZf}3elN$$O
zujXgeehR6N=nTY6Fy5Yup^h=1DsHw_)1i;L3Zmx!1Yv-4s#hAYTC`WQEzRCbtg3L%
z)|zKB4;xx?x3@3nS+fe|wl`vwc(CBOdb2Gr>Iyq4?~x`*$x>B75%pnvhE_=o5jQ+e
zeTB}mS#Wf0v=&2xm>peFiR~A5Vo$$&Nj-5DTzsSdkN59<kN$=cIxH)5|FS|i*YRkr
z9W;Tj98}Rjah*M;!#9L2_U!~xu=tVD(Gx;;!C!<9dSy-k0i_pUx{IQ#>+%DnM4oSO
zumvT4U*YG*D;!xyxSOs1OfYHzb*<EWf+=q&jfNJIwTTcrd+Vv`LkK2z<G)TIP2et4
zHx%w8o0lxN2ZU=L5IZAb6VdyAHPnS=0>Pq@@W}+A5l_whT^~d85EE|KYOyECIhy5*
zMK>Hvrj*nH@9;hp`Yn``!14@#kd#!=d$)mUO6eHji!OQI0FdA=QURJX*JBC=0o~o)
z-$7W9VIUbMPn}}UY4knavQ!W{s5x^Av5pHO9(ukGCq$);abba09(rN;nMO%Swu<BZ
zX^OQ6(j_I-URaihF7WR(;khfY6W)BAMN0@!fqZO?-0O<qf1#1I2IFj|gK|Zm2vA`t
zI$j=1@X}IJ=#i?pb`ul8b1MLtPW>xPBDTWk&$eY~b@HQHJGTTT;Zl>|AV3-_)sT<L
z8m7ke<3DYVU!B9Z+`POiyUuW<p&~LEKLr2&uJ!thD)=GQhbv)&MRzojMX^meisS}#
zE5P@E?n5D-?&g@#cPP_&&2@7>oLs#)ji)GJqA)oJ9S6I@_$hV=!Uzl8FnzraW+fl)
z&Y1C}3;yIKXw!`dMq%n->|h-Fj=+2XiCtg`TmHpTaAOZ-?u(9z>D&AzQpA6=UdBAK
zf#UNf{IwbtuNz(>+?HyLvMo9%2JB{MvFMkcdXCfP(ZIMNySCLB%VmBym(}nsWxak|
z(LY-6*!T#)l&w5XaG26g<O;EQYuH#_i>UDvVrSb$SVRXCsFg9H`6uV9>`C)oT$<Oz
zMmzs}>|)hu4PLiYj6v4t=deCl(Ln>oWfO~-5e7}^ATaBuE}H3@OC~fvFu_nmC8b1>
zCSe6EvU<JEb9rgXF!CAISW=!@n>r|(H5=xYC}fq?cB8K!8^t59JVA&2;;k51o{k&T
zrUYmFr+1k)w`>PaT+i!h^e$nUlCtl3RfzglL;2QQBn`d&j`*GfY3A_q{F0Ptdar#|
zCc?c{Dx@O9>(~q>il3ELrctbV^joC+YNA7iqt`Jci&U@;5DV0UT^4N#LU@8ZVQnUq
z<Ymcr;0b$+nBzz1Bs2y!;=Q08CdwX3a2;b6t*!}kYsB1WK^0}TCwQ-W8RSb)VvgDb
z$0~PhLB?_jy`ZzXuAOnM={)8VGosxm3<N;wjhXVBnHl}!<}&X3gp+xi8YR7YSzGWB
zX;_*EJe_izV#1jrrFxsU^Wb^^e8zbiV_xX)Rhx$cg1FbY9qjngN!ac|%c9sIzYqjr
zQ|=zxYMo~Zqu&&5-e@%PK~CkFTS{vbX!Z*>iYEfBn6uUqd+dIks9!~}xIYX%_&w^o
zagRLB-XpkawDt<!_7JH9!kfcv^6sBZ?}?XU@LZoLo}Z?VW{sujTWt4!GP>T(CLqs?
z&f(`dtbR!r(_WUBc2EX$aHNN4R2Fi1S3Yc_OmFkj90u6z3bR@MNlt#fRZ(v&e%t7v
zLRW4$VUQS2`0cLQF5Z;6TW>(M{1K6`?4SLR=ysCt{g(UH8e5@Kft8cR$2dukheg%~
zt8~};bK?_rm~8fO@!p>H7lSnD;j7a@-bAfwXIV^n76BWT(L5-YkmDHZ;pe@k<S=B1
zh#fur5L(*teEaTlDd(Yh$)@)<&7otmIO+KqCyQxH>U68sY2%(7Ry+QP`ynP;w@Z_L
z-SZ8eqg+~b^boNErAim#3@vQsk0$`}_y;hqS#0Tkv%@-2uuA%3n{V7aJfI=A?oFQg
zs4$uxZFv&qzP5^>KL@=PP6}YWvp9W=$?;1RLZ-jBm#lFZYfe&R)WkR%m{Xc_#JDjE
zJIqx*N7YtZO_$?fI?|>t2mMYaXj2*rX?SMSc%e@5Sw4yNXfKqRPE7ztD<*H>Zt04u
z$!<1iCD|kt-_Cy5$>0MDX@q!FL56!Wa7Lu!Tc=Z=HPS$22BQw!gtO{B0(^?Y0zMr`
zH->d1;Jw~v^L9=sJQQpJ({`oRCjIFF=y5wAgWFS)eQ50ORvbp^2yhDy{lI<y_z>oQ
zU>M4X6G@l?2+lC&uf2SuiRj2a3j02~xs!h!XqLwkS%ggo5(iW>q*Mm7TYqnJj(@=z
z`c(h-uOlR_Uepcf*j{(OL;q8yH&E*ctDM3S<)2o4sSL|3Y`0{gb~Q4&=LKSRQ#}f0
zI-e9LnH-Lzmz@wCtpNJjk`Cj|WUPp|@{u}YyKt>lUEI+hYZh7D0lH{kKp>%XUC2we
zEF0&jkt#pPO?8cbww#6kmWBHGhOjsgJW+i4;7<NNniYo$(hQht#xnSIiZhD2+|=Co
zZ-9Up4Y#y@9`M(m<tXi6Vmf%{8%;8^?<^r^|K6Jl6|lp6Gl1^@s8qVe9vm7PJ(~FB
z`bZZvYhL?xhg7}-Dv|&}2OVFZVu1%%n`{?D{x%-;<LmaPTymc_3NuuGmw{sG@ZsU$
z#Lm_^C(YHDiB^e67@MPSd)&EF4Eb^E)=#&Ttd=QUfj^1)i5WXxux1Lh_TF06xswJr
z8lSCY?XbWbteq42aiVaFjXW2fty*9+%aJ;to!&{$qT3+s;=f?X$w=dDS4}Z@tHaf2
z?^(JE&fO0!!PQ#7ilsb^*@H-4x$KN4qb`xJ_E*u*Xyf!(w>b-oER|Z!<LMN7Fe^$I
zWKYv^$&JQ39Ekdem!vDoR+$6s%WF4U{H}W*nMXkF&2-6`Q+M<7(g(};6T^*P_)n-f
z(V3U3ZV?`I%SGdM{Ka>t^2ix<)Zck%?pNYg^ouMEA80=ulGnP8q3eeOfn!4x9V&F_
zhc3s(gNhfkL7gfS78VxjxPZexR!6`DQy<pA{rsJusCtD1OUp|>I;g3y7FLsQ?JEBy
z8!Z;yi?I~UEUp`TF8}HhHs_(=(&*=?4;JUUn>A2U+%BjoSjLbbd9m`d%2@e^OBwko
zZTuCCi;p|J71k?W5&Gv6{Kju!fd6^c01Y>U<kJU<<Y575Dw}cOlHDL4vtM?0={z>Z
zCO~P^DYn39N_R5|4)t(b#jka~S<AaD3|yOQXY^6HNPdRG;4*3khXR(BR>fr%TYO9f
z3g2LY<9mF*EdG}T%AS6Y%x(D1)Fg9gqj>FIRXl9M#6Mbr`UuZ<;>K{l%@4;tug_p8
z-ZNFt-@R%1jQlxo-$KqteS4egVPT&)oKC~^AEOjAR7l)6gEaO(3Vvr(S5%~1ah$$V
z|NSGg11vuleQE~DC41vdll#7ROoOVe&|cb{(1Apnk!m#NVgO&3vayV5MBt_MaF~xn
z?Ro$nX@9_Oo}XSj-@x?VfX}fFwF*-or`;KARxhH%Qf1>JE5IUiG6&ws?(kj3s2ask
z=+Exwv+N0jAqsMXhbKhlSNCu+zLZbac!FP)2{b)AcwYsZOnFx6A{Oyr#q$0H{0_x-
zEW9t?EN`^Q|4u|PC(mE?1ahx8Vh4crbd0EPF<b$WmH~lb>KTd0HEf+ZVeyW*#`w70
zk{##@<La$RKDjt=`Ht|9ljM6=lJM!q3;E^TxVm?`Yuv9%v?F9B{e?^4cIqv71r#(s
z*Cctvele)s;R??<|D0E#u@}Vhx;;d0bZOqBf1O;nY&4!a5vI1yC(*`V<|ykg7!Kmy
zMVfXEEZzTNQ2JxN^VHi@B^fdF;wXYT{N`?LEXt&y7>x-3*$HWMKt9p#r9pM4+KgHr
z#MIBzO;w$lsqh49HnB$OBT}Q-4X!>MeFq6BC}^ROKYT2j0?ydRn|2e0T21Un1+wrf
zXqpadc6UeW?|0=5v%VttESw{}lS33<xg09s!wB(`#3F|l47)(GB3q6}ZdffvU%kA$
z0V=N<-$SvH+PI1fqQFX@8D?$1bLOdjD9O#NvP)bUz7&6WHHZ1qAUe^7#^c?ZM~!z;
zj^~c^M_3q;AaUVX2Lp*8)ypkRo)|MTd%2k0=3PTn;~M5F%joFhSV}O;=$Za7-4W(O
z`VzEJ=6e!&Nsi5Uxs+E=6S6GM8<x7#duAq?Hx$>;cg_bi<3GE?LRVIb0FvEhIuTQJ
z7)6G^?;B0pt<`Jb-VS@IDEi)%3M0Jpc`k|VySzj(!>Z3a{?;wu<W_<UnH~1!e*&1R
zt&YqlO7MMYt=16Ub)la2GS_aTbMWwJ7He*jvq8_cn#%Lb$Q&Vg==hgBovFSONaJli
z0q7xy1|i}Bm;G-AacE*TpUolTTCo8r_JtkvqTQEEzeSww9*C)+b?=x{5pa0}h$jt8
z=ezY_=S0KyxTdU*M-jKejZ%*Ocg5+tu6Snl-2m!aYAAij<uJXFXI`9Yz;!ecAN_Jc
zc=#uPt8<#*u+REyQBd(S*2TG})*K3AAuAB&SPPg<>~t^U%TB=xNn00(4z|V@4-@Qn
zGmb^s)SL#}27i)QOoxe}tveOd{%#%$_U`sgwt@;Dj8`w6loftaHf75;j<_4{aR26b
zEHxWh{UCKMg^HW%KuH;YZ(JdFjby;AMK!m{?~JAHG<FDijl`$m8XMoTmAkW%5Ckrb
zRO+i&Ud(&Eq(`07oT3)6Uo0k3*oG-Nvx9jFUn2x&Mr3&P)ZVjjtarL?U9g@e%+C0q
z@zqH(g~TF4de7F}yaec!^9REKL(`OZK|#^J%|L2Qlvu@@J1%8fAm)vlL_l%nSQT~@
zih*oSXe>n>!%*0Vty`UhX)i{PLB|@Ff{ZV+6SDh^P^F6L-OszR?%G+aviynIUbXNg
z7@uwj8Y_yG_b6@!U5f*8k9JuunN`ngP$y-h)-yqzuO}6CbR*7RkW~idd7rcX@`lb=
zP9cAUQ4oEa;9d({lRWy8FJVj*;T%gapk?D83XXESsoQC!i6$8Cj60s;)@DqA2DVnT
z)%(UXX^<oFEi@P^6u{D&U+uarEeOa=#l$EoP8|f0a4wVx^%tDoCk5M1{o=B!{6e6t
z(*<n`IT&kb$6=l=n|HJ`i$v%0M$Dt;Bm)h+|3IfN7yI_7bR66%FdhwLuE&mCnc1Cq
zRo9J)iz^9ROtjt}9H}idx7Ykx@}B$kOR4u%U3EP<%!3oK(LK2KpA%1O=S|?1P3>a#
z7wlqQ>OPrz)Ij29<}1)kns3}##_z;IZYr(Na3!^!3-Odr+tZSex-SLpgtei~0&2$1
zX6m25J|w121SbaG&a?`@c08GsY1xp|O}_HQ&EIy8l%4LYlvT^ejt>n@&%Cs@@eco%
z)|s@GAw0kD^ha&kUtA<Xaga;0-y^B^ZghD@otX0Sp{}LF;S22K>3H#9v_JZLTr+#U
zKH6X&nBi=*buevcJQDw`zJkc53tE3*KN+7#+*W?J`;$+)68<10gRjrIe`r9OTk`&n
z|5Jv$W|d@*fR2iZ2_EmmLW_`K-gS3obB5B5@-LLU=5no;?-cZVKVd&oz^ID60v^!3
zVXW?dPDnpQ!OZt>b_)835ntu<_?Lvbo1%qUw#9On$vNXy>Lm-R2FY;A*v9E4hXbWv
zlxA-s%W;tK(qDI6-2ZGg7_b82-czJAYs2aqMu<Idn3e$LJ&sK5Ej9-7*kD*E?8Jp5
zlNYxo`9%>~V%Gb^dT|R8Vk_=Y^p<lK{K2q&Y&?Rjg}?|ifpE6=34!$F%HVZKoIUfl
z(;FKaWf7JDx*A6y*qveoasw50N=2`ewCJrWlIxgMDNLE8YQl8$Pccs|FaS1?L?~kH
z!oN5Bh`ipUmsN70py8#9AGLbteEi)0WDIR&xd#BE1_nSXy=x-l(NBE+3tYmN&i!6*
zGEIc_u7<3ROoc{>od!M*&_i~BjIWij)S+4kyKBG1rbdYrC~nd|^HhoMSkKI<HEyAz
zBja0C_3SHj|CEvlb5Neul&8e}L(j#>mXENr^9xfMWkdU6uzak0r>f~ei!!C?Zcz&g
zrDXc~O>6)9g53MpUv9yns{As2WtHIlS)E#^M6{>p7RL=k%7wUj4vFHdldlRI8wN!D
zx&;x$`Pc{!*n#n=ed{lEmTPj+p8*+&+yz;M!EBr$#o=mOnnJM|ZTqb(4zupvNIks|
z^`Oi<_}_6%RRG8=Cu)>VNnHPOlZuKg8_w<skJNph5Gndc_FvXV5!&diwy)1E;n|f(
ztFc1?Ywf|v<DiCwS*q3LWhGF``Z|?&EiS#bCP~R36w}7n(@Apg?jGS@l!2OV$SCc`
zX8uM~Xdm=sl3X$RBvZse0b>;ln~}nU5KLS-oh_PahO*5!`i0FV@m(@41Wq#+up@Y7
z(jco0eaIn@tWoX?q3B*&33I*)&bB`h@;j=IfyG~xDyt;J5J;*voRBC&4sNP(ury1u
z-4`132@dUJKrh!K=B|%FZO>|K)*BE68jM8UB%rAoyq`}S1o^CUfS|VtBM?rszB%L#
zJ=YS5P@IlyX>QczpXDynNnRMEV691(qnEHMa8Emj{v*_hxbE!uR6I(_BMv!u_M7Ez
zWsgSCzs;xqt%(e*vdnfeg`^12!=n$7jyP}f*g0Mv9t!!&RScq8u%iYy;%8WIy%X?k
zr3L_{E1Y^GNLPwlovOAsiWqKiPlUO5a3l|I_&(=}`bpQ82gWMk^w7XgQfCq`Gk+;E
zFdCQmt}mH+vpr*|O^qVYOj{(VM7v$}=eji;OsD`Oc_w1j17mmaLSa3Gk_+g)rM^5}
z$t&Udse|Y^Rp4P{tZLx`kizR7&q4oKU3|5816*^&6f6`!6F(ltCtHLI1@K9~q){W@
z4CdfG_K7qm7hZ5Q{pSOE{+seIla$P=3X^DWG>KeGxuvBA#WKj^*O71;Dd;B%8`uVv
zk-WYWw@kk~bJfVJetgj+*Wy+wvf`z??&j3UE!i2iCt#}3X<R*2udm+u(%}XRay@e~
znJZ3vey^X)<E$@2P?S0oiNSTbI_UqI2!!%qk^(F*I}ZzN4NjXoQ#z<8UX04L0^RTk
z9+T)5P3a!wx8sU#(pmkoKZ>MBcAaShO57NkWTkI6h34qq9==4LV&N<R8C0W_L?c>A
ztFE^33#lX*!d(+CM)C1II5=P$DY4;P`JJbH_VjpWlvN9r$aNWf;Ngj^P&j@>f}0We
zO1LlUxA-O2d7BFtg>x^Pek#~Dq$syBF!<7TyWK+p5xA8oPGsfKoSthR&YU4HHM&ND
z2Rg%wt)#&-sl2VNMZ%6KO8{bhm#V^cZ@fAUXaqgGj<x>$?*j=1L<);U>hiYDugil;
zsZiIVT(A=5?BK1YHD8`6bHU8YNFr2~9MLxKKkl&qrnU$b=n;8i`fXU0U2G6`z~3p=
zNjX%Y4%3r+y*Nd^xZD{PwTXhM+l<}kjh+TuqfObrKFf~83vVT02!WSV-a`^cCW2qY
zuly7T+TLNj2jo5pB_(~?KHHP!wg+LI_Gu_6DCm8)p$OO2!`}Z#QOn7k5gjv43+{|i
zZ?KR9>hPb!sAqjwIk|R*h~aNc930vhglR?(*HuEItm2I$OpzCU-o1(cT~*tC^H&==
zxHXjL<KwsKLJsA~G*imfU%uadTEG+EyA>UuMH1#CdFx^B805vIC>Yt_ooBm~TV}7H
zOAJqp<zMH*2CuY)0f%idOiav=T~&Y=w|84?T6jF_zaC8Cn*|+ZsY}ybq{QE?8+FqV
zLf!uu{``A&06O7*o|nG<-&ne;eiCbdP|4Rn!O9T_<@Yi3tL8my>fNdorII7#qU@09
z@A)ooB-hFt%2PLrl$YieP(bPt_bR|J(mF1oFv$UsPYvuEK?=>f|8v}Q$Oa>N-=z5b
zXRJpai-?zylU&DP#4Wg{=BBE`T92ftH8DM1*3ZxHHw9H#cD6e5tgr_i6H}CLe`6yB
zAVI|2_<VVH7k>f%3{XrmGWP==BMH8>LrQ)mX*0M>Yc!zY6-Vq14h$&K@9o0t4+;&B
zk5gG%TH0U+hbttGPK@Sb3H}(BpTLodx!+c{k~6ER74{7HPQ#VX=kEIv!B6q~gBl$j
zL#A1kth8M02?_L)Td<0SZMs+hzMCA1Tlt@|p8xkEoRNps)YQzaL~xE^FBFT4`qn*!
zA0%49V+NGsAOQeky~Dx55s&$=RsX-v_Fg7rZ@NJ;9T1&#K?9PXX0rfaRVPl}7r7x1
zRoVp*!}v)X(nqZ=E=opYK=?H^Q+N1a^98Mx;UT}a8R@FyMUz=TP6}u@KS~ZE7l1-5
z7nhzRs96)1pgK+=kS9Aia`_h9UupF9Sx!{Jb|&eVlkfYNh!m;rzp1IB8s1NcM+;Tt
z!~jjel#_-=A{z9M0Bibai9ahV3y>P>n63l|2S=L|0}PS5rBWGTZSA;M)k4-ATkZdE
zQTW%MnMn$cjER}X@c)*@^4WAQRNMVtzo~qCYl~czxl|E^TkOsDfBk`HAh5CCcE2Pj
zb`T*099`x>XXnjx<qpE)PUWXUcK9hk4hH8`6$lUu86*RM>m9C0FK#pqVl-J`C^#dH
z%evd3P+~d;)Wbv|dJrUDsP;?eYr7qs;FoF|`9fi2b}<z}F&SCAY${opTomI-!W2h@
z$buGxonZ9i@t{|AV%mJHj!$2OY1O$Un6Y%WaB=Y!zYE46W6zNN{GekU6&Kj#(NSjO
zXk)`V3$e-J5J3B%s;~d|^7z+V7DPMM0=0gWA$Nm6QE@H#1!MomU-6&nQ<#DH`PM?n
zqTFKp;84)oaI;ph7FX&7NG#6_!lsszd@U_yxI90P^dJ`tjnwJc+1WwjoEfSGOyXhd
zT;@xk$HqQGWtp{_mFEr^1_PNa;yb=4ye}A?9w_`Xo2GsPlB6B5$J7)9EaMX1<jC(&
zzWSn36Xkcg1t@6$1X1QwMz-v4WsbiqQjNr4N!8MKzB>oSre(+?Ox=yxhlxm=3;Z8u
z$p6bj{A-09DIj(-)&YyaX+n2g#>z}VJOQESf63(j#}DQy0RB@!>(uBs8MKY<Es|LH
z6UHXHp`ig9;7uOr6ZtSPI0!DJ&~@1zCAk072#{>bh%R^b_F{kv3@!FG`_>Vl!$vnK
zS@7Q|d+WF;_ilX{2^qSjJ0&HgySqE3ksP|DK|oTvyHnDkrMo+%kp@Wx1m2tdob#Nm
z`#I<Hd;c6|X72gMifgTPU6{EL5S)~eJBx@5zwE>4^2ft{j-ine^+oD%$MG|Pnet=m
zgf!Qr&G9~@kinvD>LG5vCS?ml8uGSEIz4rLDt)7tfl#eV=>H#E%3%eos;WxI%&hpq
z6%fx=%^w&jamI6O2V?a0f#_g!j-Vr=qBK<gL6m|QKu-ZRKlbV#h}A?4jqEV`o^C#l
z9(_wndV0G0+a8~GYa=6Qr^ncP_?sHuxd9z+B=oJliClrF>q_{!Os#QRx?auXZU5q6
z>Ib<G8nunb6S*+N0$wxk)k~@8x`nN*=z9D6=XJ;P^YYB}fVyN^11G~Y`by5fy0-q-
zt@z*D@P|`f1Z{6`CuHV6D-=!H`dPEJeMGUMz9m%S*2`Q*IPuJFTRCN6Pnx5N`43}|
z<A#yKX~$u1zN0){^pF5_ujnhc3^I{GW2{vh@!kHqc+4-(N)wlg&d96oFr?+<wwbGR
zIX8<#1_BmDI0^DQ7IkbfQD`$k78W}07phx*?V@KjVRIFWVgUgGGj*0F74FAN$8kA4
zX3|Q$E_+lc1T!CRe>g}1J)?#tqMQ^!k%^v;E)R&-yRKZaK)6Fb5PYzsW8P{TUznHE
z+xaR=HV0W*ikqJhHRagsk==s>iX|3w`h+O+7C>x#Dv?v2c9`uk2c4doz936XN@ZoE
zZKiY$rygiI=;X$EM53^uoNNzG=E@ZG71x|@^>hZL5vW2;_Z_cdJv80)Cnp=E>=}__
zn&aG9+hR)@Qk;eU_Y3kjPtY7KY!#t=0Fb6@Go0s%!J`5GxQg`E3F%)^;O~2sC;>$u
zOGftX+c&u@@dmg~j59z@y>@7G6LTYu*P#4ip+=m^Zn1XuvIpz)z&X89IwyJX&(Eu^
z+3oiy?t$lbt8Lz;-ao$8uHIS77p%0tlZm^$beUfQ)MP5aewkuqbQTuhK!ra&Hcplj
zpCj+l{P20lPo0YC2?(c@xE_A1w^TxoB3Lw<OOB6cxya2I5s3mabdN=55?e|NiUK{m
z0-&o^0iBk~9#Uh_?D8`2?EuO&Y^Tcl$3#W@EW_=S4T*cnRdGO1AR#+lVP6ITyTzT*
zHNu+mE3t5|6VON)Sdn@(;mF#lLW24b`dbA4dp!Qzs}|4`=QcJ8iDFh(mTKqZpuM8v
z|E%xd0{fC=kpI8}FytUZA&zGzYOB%O(ZLl(DkOa(mZ+lhG<l}M$jn^CYRX&;%&`C}
z9SXz6n~#gGDb21n#UBwg+V=4m^G5KYRR98S8r>FZ>fK<>eA>cdOF6i{Z=*2cHy}IG
z<CdnTFnA5FQceWXog}6^nc3nYksFMv2ApsV#OT!2)UrF5%^rk(Xk9xE=po@w48*9Y
zpx`AlARrkSFSM-@a6W*Ly?!y-$<!e?W#;0-0VrWl1KQ}XTh)ci_?Tx&SK0o%+4%RP
z@gH8LP(qQTRUDTzRQ?s2yaXbXBK`|ZqTzp9Vqiv#3HCes^JxdbAbCl5Yu*Ej8XDyS
z*zdjHq9aW{CxO!N4r8IGZ!GoO?CE4X{jv6#+bd>=VI3nm-4Fa^6@a5V`0jwRRsbC<
zGc&XPcEd}z!KOm0L+G7{k&LZ=`@0}P-D^D~(k?5phQoscS)c(e)@}it<A}q_>4m2(
z7|K?a;I$J4ZSEZCJYN9DFq%LM&?BdMvt%<oc?Jj_0d<8?RGwz*s+j-RV-ZR@QK7@0
z#%_rkf&?d30b^V_*z|U~Xgr^qPV+xUcr(n<WKdn$80dQL?&W1B8eY!h0$X(SWz+zf
zfZXQ#>v?_p@X(}YgTgcleF2~l`N73qR$BU_eZE77Pl2+Ld=B3U9w7U;TFZ|OC=UKA
zB%o|m)<s4}PO8eiI6tRjV2F5XBfatGv7VvJ&GU#`=OwU*`GkUuTtFh=B|Y0qu|Y$C
zmPh7va6Ir)EwIExl(aBJWJ<m0Q()ZoVx6eZ*$953`t_W!ZN0?{SY<JzinmFz)_@Bs
zzcn7QS>cKvo}ZtWbeu|Ao4nifG|~k0GdB0ingsta)4$!FzyBXmwEySNTp_{1%94`L
zscC6}iHG9B-i=Cd$bUFnub^?U1AtBd1n4)<6*9QR(GQ#omftEVxi|aui4TnqC)*eQ
z00=gG@0$l)TwVnC8?;0Z_|np3C5ra|6yhJ?2Z)A-8DjU9T}H-P3ikHY_s2Xpd%`zO
zn@nV!E&=@yGZ{1jR+C_LSJ)d2w5+@9W2}Nf(>V0htSsj6XfXL`-+wy8|BG+K!|>SI
z(HhY4Sa8D3g1nIjb5Qi$ae`J>Z3qmocmmlj*y)(Kq8|90K5CNc$}~wdao%|R)A}5s
zLL0O+V)gVe$|{Y&urET||9Lh&Q=x<Pl&=(YbI2I3)S3&q9?VD<eYVD7{Q4?rgc}%I
zlhL*P%B$U6d3|<9<>%*+ih3o9PE=P{hhQ|(nKK0HqR@Z7Zo^w2$~1$MJNFdh9IQ0e
zsWZDcI)1b-K15Yr!TS3i{huBspgH&pplwkY`U+BFKU1P|Psz>8$A^?`WuK6)=MBqO
z56?hHS0dM6t9iS*b0A?qW<N8-p#0EaLm(m`<~4cLP-k7}V;}sF3q~LFrJuC=71QO#
zxSx#HEI?Mr=Cje2=yZ5=M1>Gp78~)Cz6t^nckZp20=jmj0Wt<mSBP|CUyR_bv~y+U
zkV!<S0)I=uFHn%&0Sr8<GO(L3Sy@&3&V>Hs!TQht=#LS=P~9BY)zvjHJsmIXRB?eA
z-QM0lQ>;X4z1rHO4hnz<9j!Du$AKa4r-n;4rlI<;*io+!%Bzdk*WZ}dk3L)<FNb(H
zSfxXN9!_OI#;On+LBGP-5%s+U4_zW4I+AK)YHBycF_Zad?-}#rL|=HcHR!G68hojO
zu-*aYioy|Be!)?}dtO@-+&^5iay2?0pIgN{W?n$SFZI69Ie~)ffIV=egv*p9vHji6
z^VCWR#6Oy-22wYdtY$37_ri&C^ZIm+1^69i|IV5J&%OPZ8#^Lb*4Jlj3Rpi1sJ1jl
zS{gQh-wXm~R{%9FVHfpnNf#s-u)BM)9CK4JjY66@*wv!m-yiDy{G9#*?TUbjp8f-X
zS}^J4d{_zNw<5i%Za$zV5PS!z(GFT+5!8}jgj;msc&&*^JWG~-7hFR2G?Mqbxmbs$
zgn}j)ocf<k|Nr5s0Wjb@=6fN$pI(JJ0j^*d<wtJsYepbr3!Ivoq7thEI@@Oe+7}+Y
z0hK@(i1jS}^lH%TTO|W3X6CVa<b`Ym1O%6ZnU}IkO374%VPT-s1JD#DC^nPVmA>%7
zN>>LaoIgIZB8uuudFhL9zX!8Vuk^KHTie?90sRczMywUyKlbi_u^E45ZpsR<U#?)>
zmF{Of11VqZzhKlB-h-?@wfg}zf0t#u&oXh8zwDRmfXqy{!?&$%TlI{P(>BNTa4zvf
zDBn?REII+ZMWp=UL~gf)1elSrra5JrK`#mV1LZ$fEk_drgo;`OaQ)P2E^qhY1vH02
zwQ>W2_)Kq=V>aG1HCX*NXu5*OHkT?$80N#R|A+G_xgF>0@04qwR=0_#GBdumy%ewz
zC?x%=O>g9hF;-=WJ+o!RrgvUdU83!AR3c+DXM@SZ(=xRPQ(j8Oo=cOy*$iy&I)yOQ
zj}`z5j3?R$m>`u)W4v<!``e8sHyH@r-!Qk+Ri94u!>=t|3aM-oh-@R-LTmM;z(`^~
zAer!Vlg)1dp=jnZSCE=AckL2rrtl(XDX8=f+~-v<hSzpW>V_=fuO%#+Mt25A-*<d}
z4_;=_U;#Np#qTReTU%lh5)!UPofro|!+(BYb54#wCKgsH&^n_Ujaf#$xH#*_gY@PI
zU!52U32AV4Hj#kK-j;>1AAp4a+;L?aP=#Sz^W4(rdte#gKMAK$Z*-22E434T!Oi^s
zfKE)T;Lv*ZeB<jgLP}*V3{cxI5yT_M{3D?2g&O<wgKK(K^IfP)|I1;xnn|q)cc-%o
z%ud$r^ShUjadi>S$l~c`!RdqYQh&en;lb*!%I7h7lJLo^x@x1~HsE2D(a^s*T!mp!
z(tn+9ZRMAd7Z-`WuWG-w)`902(2#6<2lzP-V4h6pdcQckh|r;4-`!js<<|u;C!=C!
zMzw!eo#uH^S_~p7UC%xE5&&b?8biuuPxRGw-hjSk<z%r=ijq5;;Pr>6u6BGO%Q2$b
z-Q1xf=v8A_Sm*{Hk{P%OTKN>=larH#j12j!kadvb$J>R|W^ij0+V4w+f)sG$Fk0-s
z=9&EK{{AI9d))~Z(QwdOcemKEDq+M64~Vj0`!I#5b*6RBGo`axA;SNBb-=mk{)nRh
z7rii(USs_}^yZoQE<k6Z*yeSW2T&eoJek$=@2Hf@mgwlD*VaX7*)g_UXB`AhH3f9p
zY%z8PBk_JV67&RMhZWg4!jF#&L&YGop|r-Wj&@-KxX#Jqox<%k`!Myaiha%|U%()h
zq=Q`cr$V~AyBWUngpqQ0eLoYk(~Th!paa0H=1KZ;1JjQ0HSe=lK)E4m#fmEO@{yVf
z#fq66jJfh!)3E(OE5ZaoBEYo#2#}Im0U({O5fKKU#@tLazF23ue>HC>^AKIqkvpqG
z+!}dNnQPp=RmuZf1sKcb%?}Jc_gg$^eD2KVW@a<`ruyuEEDD(9S?gARTXFMa#RYTO
zF)<Gv-DWR{WYZWd76tFiesOhGnC{S?D*S$AbhL10M*YTh8)zpRsa=i=65Y-b2`Zp~
zWy|FEoU&hipAxGRTZ&SyH9%c|zK&>@4fFf{{r4+jI|?XQNnpOsWEm)P7Nn_Nd>f^%
z!LVim>)Zo6C6hnTwuY(kXDrs5m?VYC(L45qOlly~kP_yC;0_`6NvGw3!4Q5JN^@@7
z8#3abw)~k4FB=EdCNt+K4U=@7$BBwYw$d4ND|BxV*)aEx+DYkhF0>IzS(Dv5gp@DW
z+UFCjU-yMP4R0$_LiP4uUS6vD1gF2GrtybEqReF#66#P-EfaqSbh^Rj8ER|eF=>Cw
zq1R9^i_|TC6%C&VbfqzuiRk_UPK@nA$ep!0pgV&mVmD=_y{7yP<e*u`?5(#xSE<L9
z`VJ6M3&kP=I;|LIxyficVWqsKIth%3TdnW-KV7GZUEx0qYrh0!$qeDa3ThD}SDx}K
z?!Wo3fZKpCe5dV{r$U`)Hggp^_p0EdwT=!dj=)c0Lgr*#Rk{tb$4N_~Z6Z7Hte8fk
zz^rK6=GImr66mTcS6u|-Suz?VpkJZIkO}iVIi1svjbZA|)_KG^ozgE)h==lzSQ4iQ
zAI{&t^4|_LhZDn}%@lxR%;J^v1C}td&JqJweva{-N>jkB!pNs_gactoL7e9>Xa*k^
z(Rpkt{Pm0T+!{3!g|3E@`g<X*)RjGqiKKUW*NLu$M>mq?b)3+a;@)K3%^q;d@z?Vc
zI;^NqUk&+*u3c+}urY4+Q~TM6;7_G$#j1*m(X0_-*N)Zxjn=~n#ig5@Qw4xX=4Y&j
zk%}i3>B|o|-!`Ga-jx+a-&L<J8jZ=7mv=?FMPsD?3EDM8L1h_}iG!RdM@k#{lrygZ
z;xst`Hzv@*aNS_&b?CTHTJQQY@@jp$SZNxVXWtw6NSTn7RAeq@Aod=4@;d4nI-y>@
z75VZ^JYjrX+#bN~L2;GWrCmjS>i22KfQNrqa_sW#XNb$AIs1N*{pX1<-#bw}7x@2N
z)|@fQi7Ks<qx>Zk+E*hnztTO`;=c)QPxr*XgXSL`9?$gBUySDO)qJ>Vw%NBf+KD)t
z7M%<5NKoT^V`6#0*O;$qSXj=qbdG)Hb>}_6snJ%(?|>h0Kmi^X_+h27p6Q>p5(Y~r
z_(V_w`<kp37Z1=XNCK{)aGQuQ9XCD00CyoUdiNY;l3SbLBUJXL(w1GxzHl?pc2QF}
z6r*8^hN}xmQE+jg!Eh+9tnXHo4T6-R1#|r4Ok5At0P;N8{@UBH7`BAozP_@YQB5W5
zis-=njt(IdyjQ}$$R^YNFm5>s;mwop^HE%{_ot;EL=y69-=CvTebVB5^-B4gc=<zG
zadGh_rzSD~MrDQNc-Ho}Z<>=9HjLT%V=#57fa5mUba2Q}Hi3^OyAus>%X_Zm06_&N
z>2xl>XinBf4~2Th2&!AGYJFadBIHW)$U836*0|MAbb}!OVbYXwV87euaUG_s`q&bq
zbQjjEss`U7@_!Gi^aN(gFx#!<<>l-5Z_-}dP@Q2!;CtE3mf@fPf^+ojfgIt<WP^i)
zw~TDaO;^Feu&HQhrOE-Y{%=A7YKf>g?NWCHm9oI+cr_afr`X<{l9+_~(96>kjamaL
zeFa411vUSu6bK(vLSdSEsU}geo0J3ScBcM$1l>XHt09@Xk~VCdB;}>Ia#@C263WIR
z7@j{NgD&nYTunym%JOiY66%cS&5$PL;)hO`TW$IsGwl`FX747|kD&7NfzZqK?=()!
z+zX+tu$>rJ+&o+q8mCD(@aFSNE=Vs5>YO)k$|fZmm^dDpm57;FHPN5(CvOEw;I%S5
ziNF<6tEsA50W%LpZ;1e!3mn*A%P6^F;V<TA-~~IfYO&nZF52ByBRXT2Tv*@DbRhVB
zg1A;s?N@%gSS^~k$?PL$gzayg*;1#%rnH&uX=#XD5Gn~L<GO9cr&_JyLBOqVJl(f$
z5L&?lwuS=_wn!;kabDj!3IzirxC02&N)iq&(F@ye`tsh~0WNm}xK!3bVn8(UB->FX
zAbcr|FPQShr!PiGGn&ZoMW^G*N)v1x?i>j)bpJA47Xr>LlFnV4TU*O<0Ni1`%<UD(
zqp_?);C3&c<B8s;F>lD^9@d7X&SG>*KYR_Km*j9e(oU4Hr&Y|5{uu=L{SirG!k&6S
zJx&Eta*wsAp9biauC*7~z)ER`XeSq=8#Xx=RuBTSJ6wwIXNAbx0RQU)E1JBze)}s3
zO^}R8E5DPPJ*>>p(eZL4lynN9O}D4add7<U2FW<GysG)btKv_n1;|+)PlJHB0Ogr_
z!sv_bR}c&|G_=p*Qalw}K7gz$=h?#3i7Ww%L$HhwfR5atPnhi<?g`mKfNAcde{rox
zqP4d8%r{T)Fw<xBhc`-sH&kB%Ns{0T`KXKBP?EeLc&7391MEN+M*ygNybPp`{yNOk
zArE$Tupny@{Pn%NP&x$Qfv0!PIvmbd3VMzbr}88XR_b*GaE&k^L=13vU0QjLpwGn|
zhtp=ojuQe;(vUh%M)7#J_E-cA+#pHFE&^jLvR}SPzYn&#J=bqARW$YWM+Z{rirJ_O
zyiLZR14z!&4rSwzlQ%~mlJwQ%+%aq3rvm9WQ4pYW(nvF^8Jzir^&k1y69K#PCW*R$
zsctrzP2Owx`6kCL$#jB^c4)LM54u2xec;E6)3cYzTaIO@h@>--yay}<lMxjexjw&t
z8V1qFB0tZ7P+R`XbrIwq*;uNx*mtap)VV%;gPnCC#OU7L4{!BWUVIpjEQUnJ<6<H6
zYyRQqaumtY7rJ6h+-Q_rvdEpvd3R?QGWEZ<mC|*j2-~_`V8{5IAf1~;3=}0~s|h!y
z-fV9kFi!9PYWFZHh}*;*;*O_GBoqm=omxrWMAgo!Q6%Q29E?zYFMiW{B$`@v?s?lh
zD4}=RJ=iN_BXz~FZ}vPKIoOT4sImh*Ii%?W`^4aKT=;&q*A(!~+s=Y7%7L~YaczAI
z7VjOw|K<WPg+1Vfj&h-oit1^3krK~5R`IAfrWwLg=i-wQ5h~>Q+%-Xk=j?GW-kK?c
zxI+z-C{urBkhTKXJgYv|#kvw^1^wv)a>G_ZHW9l{+b6$|Jpc?aR1n8Gtkp|#UIB8@
zj)-kKFh=3#kXwx<P7%ABQ^f_u=sv2c#^{vBWIyl~8meDd#a3-bdd{{B8YqEhu%2re
zdh1o>`h(#q@+M=SlZOF(8W~TD!ZO-ZpWlwe`1tTjTL4}uL(*`17ykNdvunH!m-4zM
zV#4j&;RR)dG?<=bM}&%l0VWVn+JcNXaHfb$11*>#%kRN6U67J=AkLxvrs!zd!2N3>
z3w<~GLJG&*xC|xW7H29nXJ?bP-Cr+r21_SC+o6$9AwzKV%A=o})fZnACP6|))$FZj
z+I#>`uPk%{@2Z8V7TgT?Y<pX!HR1m4R;Z6uHvDa)@HRUk?NUg<3aGX?H9#Cu6)4K$
z<8R`tT58YNah(cNJU^QyvA=y->{iN_ny+v}#t8MCt}@{BsYMQwza3#8AMmuvNQSrt
zXxq%$17SQ>z=UB3YqHSY5&M*PhFVm<V8$BRMc@GPW)<7(7c+XPf`=OB8V0wOi+Gp&
zL>7N^Ig|zY8;+ox^?ONxIZ%m=9$vql5^sO=1qOdbimZy_dGf5sK!C=~S13biVARq<
z^$Y{8L)ob(=z|wswRFpsz<A^^N$j>{<W_F>sildjk5JBv-)|>9;CX=X)SwFwYJ)})
zFN8-CZijO-PFcpEpLPbzcpaBB@PkRsP5TJdLjYpFA^328Ey+v6b6cz#{afuejDt%3
zvqDKrk*vr?43=e;EA!%SW$O|RSJjZ@h6u#uA=E}wDI^`Fot$6L5{Z1Lt<x4Y7%cp%
zYHB-yud}um0p`bG;mt+~m+N(F5&6ixM$<>i7Lv#Qj+a*x)ol8)sp=aW9-N0cJENH5
z-AKkd#TCb1T&F{@{YZ}J5CzGc0CK26^Z_5CU*BOwu%E4F70IVk$as-`=l}i%h7*WL
z-UIlhdKByxpmI40r1b^O<kAV>iQu5oW?*Va{A1|oO(5`{qR0tF3?^iIxxTUc!r;I*
zp!kwT*A1{QHdqU9i+xQb=gNE4mp>3y0wWs-00jAlZC;a4+S@X^WFi3*2qtrzy%BE#
zYB$xL<0r1SV~2%LA|}zqZF#Ga`0O0Da{(~$R<mUqQ|vF6g5SWZV{Awul{qT=1_y*8
z#=TG{t?3IqgMv??xFU}f6zf#NXwNZgay!<&VVzCXGJN?poD#(oEM#?g9>SX-OLBss
zRc)w1PEH=T4JXRjS1}N!yd3m_YK0b<02(E5MA@3hB4VXo_1q<nS^>fFCBV?&vGhe<
z(I@cv{(|VMi3(l57Yw?DPm~<l0z`pjKaZruSdrdCOUl~S=XvZem&ikC#$aXz`@*+c
zJTEMsP)B|@W#kYPVqSGhE`Yp)=^K7nlrnekiwk&<pzV?u+^m*B;DchfDpK<u5Y|fM
z-o!&D<g7?oDz=^IeDq%lyJ-gIL2oa{g?3m&%E-U*MYD#zheXqfb?lC&YZdweS0Nh!
z?+!-*rW}TO@mx?itLZ4_1-#j&6p5$!YnwWz>T$YI8|bWJFq1#wF;MRqywd6c28OZ$
z8fEH3vnxqLE6?At?Ju36612K6v)$~fZ8Y4_=_x6A09z#_Ph4VqHXieg+QJ+et<Ylw
zN-X_0^k!&AZSB07x8-9;sQF6h7?GKisSlt3iqRi8Btp1ISvR<}vMqpQk;EaMYL0eq
z#nWl)vCf^uUq$_f^s(@VBBrVgIYO?C!&HmE|ANX<Tc-QLSDh0@fvXQcK4%?Q6t51J
zE+~Hq#1`RIg$_WEi(M7-T1<GnYu_0iv*&D!{c^g`#_nL4K0an|aqY8v*Nr-Cr=g8N
zHruGHn}kbq+GjQ+r+PrHX2l3Z=YlM$!j_;C8S5DdD^B@69U6J4+uPfrZ~^&X`xjW3
z87abk<P%mU1!<e=wKeSbh8kK)Oc%Uf$f))(_4FD|$KG_><r4}Fvv5V|38*K}zRu8d
zb;G87xsiwRTPF3|BM(ebqz0{_%i?t`i-`xX{Ys3_qc?2|2FVy`eL0p7F_hp5rg@K!
ze&Qqz`L<C1HeTQ1kQ4&FIlBt`k<hTWw^tX3DBV0o=O{P~ak7Fp4LwShn)~1-`FfUs
zHz<06rR_2fo2}Fn4YJcIFB(pvg1h0sghE3m7?gup0dygl?di{=iF-d$l?2~PbiGc;
z<j!M^b6R;19;&rFlHxXyHzOATf!ui$*QXF1cL2e%f*f@63JoJ52N#8Wz{Tu?W2IaL
zpbQEiuya?1P;>PNEyUDxm13}j5hOxR01Q0|nlm9p8LcXrUgXPX8(^}V2)(7@@)HUm
zjl-bP0?@o905nRO<ddtPjJwtA;+Qy>HVZZOzQ`*1pw6Jb`UViZ%pdR*1gA@TJZ5`r
zA^>s|V=}F4kGJz31p^qS;?iDWmLJKi`gVy*OG?7*+ixtQDDys(Qwem<mLsU>e1d-v
z;dX6(JgEC{BMaiexIsAyg^*4bH};`)QbacuI#Oov2->8q!Sdl0k*whYd~7xR_8H|E
zU0-Vp&Fn_FEy*_<h}ff%vc20Ngn>30KQdCFu--t+`y;%1M)L(WMOX>zix0FRq%W~L
z>*Q1M@_YoA<C|jz2)U}vV|T!ija})f+E@M0nh*MmyF1&3#6#DY+4Zi5#{csP|MPJZ
zdayG+e79<wlJd2ki*RF7Ak)x62`YJAF{o!M(6lsQLCgsxqQi2zF~q>WTiuNV8|3MO
zb&FeplM3YbeCE*d>ltKFjv0n4C8&sF4)mR=pDGL7MS9*n>+!mU{VWu=_}#i1qGHs+
zQptcp+!q`>bsOx1j=0HPb0i(;ooR9j=pJ*HBj)B{ragy;=UQIVd`|Q$mh50Ef>5K)
z5744y3+8CtIC{&p@iPIUavb_fUWmmEUzT9!az5TGxA+6{dp7h4T^b_x;1AMZ++OjF
zhD(5B>unx?1L-E~&MyRGbBBVg2cmW7x1&_Bn<inVAIXA4q!-yl*306YxOzGBno5Iz
z2>ba`l5VQloR*eN8_0oR5+N!L;Wb2p@3ieV4aGCNwY9eT^otrCcel6ex$S3~0Lk2)
zU6epYYJ2tjP3NK&!;SNWDbM+jtmTcKgRsBt)!6fA`g&Wu1oMqky=S(_d6YhzqOC<m
zMZNU5GKg0*<cM2POb*tUQDhatvL4Vf*}C4%SW2%ty9}s(vguFXX=~1CWT1r(_7D92
zv44GsPb8G@%tUbzJlYgMI#yv$&QELz$UWC%bLRbe3fen<nIOiO<9x%R0Y_tj!R$OV
zb6TkxonCjJ2vKIucDI4S7aFO-RT7vV{eW?368n-iO&ZNiNh!uB9jsx;AhQ0PmV>)f
z#1>9UNS{S`1XL`}otepikjJ+J3j5x`pji=%I?t_XvspJr!qtT#1(27~D!l3qdO7qe
zkGfMs&L=m^X&=zEBCo2X9$6&YCk>oT7Naw=kqPN~{{;<Nc353mImdjzpM->@YNuOc
zLied#Y!QM=EclMQQ)7Zn#L9xnn6ae#bXvFRWaw~z{F$KK+!Qbr)nH5HAa`0#Uyz+F
zmf}bib_=i%XkgR<?F)KlR_1jh_N!L=528X2CAejcmMdTy3F*B?OhH1RAWuz7N_u?p
z0t+i&BM7Nrhv=nv++1JeucW?;*8>dyzFvP_j+|tK5^su?x~mBESuK6XkXDe8({|Xe
z0BEj!$bzKR-b=M2bo-Q#;M}UmXE1k9O@7@3>*0#pCHaQJ!cb3rB}f7RggF3*|FInu
z_Cinh9Ep<7Mjpuq9ylKP&K*QKi^85&Fdf=FN5CVcWy?hKacr`CyW8ZScQimyUbtzg
zg#4g4iXKf40`dXKW1O6{g%*ohx)0^o^=aRnZdMYT1c7{f8db#%3bDDD_|o%&GAe7p
z9l&q8^n*@%4|fojpq8^_KYm`*Pm*t$?W6fVxOW9=1tqcDSX1*wr9n#)Ab?hW%`sa%
zO!n(&p~m#Jmd!}HzUNNjIUG4H(dDY&qYu!ccJ$rx%@o4C=~iFVbWbF)eUB_$8xrlx
z>r;T`ilI<m2M>PboH6E^BI(z}iBL?IywS$KV76ELpRl=21j`FA8u<Dn9+u<1&Yg3D
z3zD`b(vyWtLbYsUB+R?L0ajR=hy#g|Bv;n{(C~?*E&;uy(~-tP?|kd-CGT=lcey<I
z83&t{pDUs{6+&nl9mhIuW+TUMV}}1_6#v_#1!Pg=M55+gbvOGcxz1!BZ(6_^7pw2R
zw6Swofz+f<Q)YedR)~9$lrh3ZN4MxYe@T<jiIv4}IW~jKr6-jM<Q{#Dr}}H(!E7Po
zB^BoI{m%FI-?mKuzAt-1uoSrRv|{EsiB#En&&32@`n9}2cy4W5Qhd8a@A=B_XZIC_
ztp*J+j;gc@|C)mX@hmwih3G61?c)YHi)&rj&VXKZLGzHc(>XZ*AWpTm;dB0N8n4sY
zRngM4x!Iu=%V&f8*3zQ-z=Lv|0m=H^gHtK<)Ww9>YpKQ4V56_ny`}gw%6hc@_`HtT
zv-9}h3kVVm%;VDOjN;N1pLLs<`{6Xf)n<6-2+a~AZxg?u8qWM>5pV0zQzlo^m>0({
z7F0sPm#sQy&q3(EcQjb*Yiz={7*PUsML{pDW{S1Q$0IA~W^&%#sVo)sTEXJo^I+sW
z-ZOL}`=m^RuO&rgsxvlJQmnbwCFMA1Ej&Z_<{?d*N~l_EZ>&o~r<LMYNMFB&D?IuY
zIWuKVJ$Cf!nGbhoBfaT4IvTGDG&<H6lftLQS=3WY==(%rF}o&C7e08cz=`j+RD4qT
z=(!*Llz0h$HYov)PM6$Yc^*{rZdOBU5}1=8)rT_nfO@tJRL#w;v~4axl^kDp-8MGR
z!iXGO0VF2vJJLxQP(Vq1kEz6e27A0%SNzqq|7v#Gp~J2Z<p&1(K7NlYf3P7q<xpN#
z606K!&H@Wu8x%X5Rw6%pJXV-yCYH_=g&<F!((5}M>fG$i_;q$}@h6dgjBI6_pNF3#
ziUWR}&a8k@68CA=yK|Wv{5eu~K^yd!TNlsg)fIoYAM5(${@!4H_$^~{s%c_zQh}~`
zS|!Yk7wUL0!^T}zq?#8zJUkXHufhY6yzdp_+M%+JL<i`H)8(K<^-`eT?hi8aKMNBa
z|4dl+a-;dvYT`HJwkuoD%>Rl2{(ab2sn<8RB*s>=ws8qx!Uc*RTM`ND(BYR2(|Ha{
zIT3ON<>o#E_>YrST@@;^;gS+HR7^JC0$o64!S`hq6$#OJ+8<h^$Wbe(Em_dW4J#6%
zrR23OPF7f8qj#|ReG6=1q9XEit*vcy(&E_c2pLF39@H7cWATdPi}_}8lcYbIyVkH0
zWuVxrj$al>!(YYCR}{0l8;X??ou6Yy4?jr2)jEH2;I!9RqckJKAy&#Q;ZYkPi-v)g
z2XTHRo2pQBW#3}Ae<<AEAr(h|RYY}EC=*egw{##|h9%lx=Cs9K^XTX2C*2q@VZ44h
zDJ9vCft4KYI}}2v3X<zB=U|aYQj=@yd~`|u0`P7Z*dP#y*1x}|xi@q1J_Pg7OspZy
zXl%a?eM7r~HJ<cka;{S%x?9;8@kc32q}E?9)G`&yclU{DY#ZqUJq*hAW+z!qTRVja
zpF)CsYUW_JeEeLxWmTXm|GOwaK~MlN@yX=FgU(;Qg{75*bT@E4Q5#@!nN)oP7`N&o
z%L=O>&-zK9`h5k<4Gw`;=-DCi3TD_eOFrWV&@NImyj%wEuI$0_cxPu2ym=4DcW=O!
zFWb=t{t*6JM=_-*hd@KaG<vpwxXvD9`dNO6dWx;1Zu!>H)Rw6*sV_=-9-WR-1pNt5
zoO<HNIW7Gd>YZ7f<y9upjhnF1^LvbNOZaR=Y9nN37cLrL!=i2dPL%`nDz`cYTVcfG
zfwT-LGq@|L`5oWmGT)wcsTo321EygZSM_Rd`W4<I^5h<DTHt(9#`S4bpI_p>^<Mpz
z62ie?f(i$LkBy0_=Ff0CyY#crk@OSdAQAd|a0-RRZ3$Z7<5R)Xmm6XzRpH;$(9>lO
z32$`m5-9BB&~e_Drtj^SQhuvLjf0(06aeGXE07eCLN*kaC%M9IY@)`*a1pV$Kzm4c
z9S66)_l<&9q2OW@-w7<<<Ced-thrJw0$L=?pd^zVS+PiqWt5kt?nnVygE<ErEsh1K
z`ZT24gD3|&XLXvXykOC&X4eJ?nd5hmHC|)0I+X2=N+zi}EcipL%CJzQ(G`+*v19Xl
zAvkDZ1Q%#Th3Mox74*CcoNkSAF;d{1qq@9T-H|cwZ$9mPR*}b>oj&`jXVo)v<I+r~
z#a4<N9rJ8s(y4<$%FC-cRZZSNqx6k28LgJXWU_$9cCm`^3RM{sL+tST3L|w5L$?4Z
z8ZiwB4<undqqnWqT(lk0JoKK4=SX{Q%Z>)jjPXkSg>~rG`hlFQ`QnnBL*>H45|X>o
zmQt)&r@6z``2AmAj#m_l*&l#Ig5EJ1wP)D39CPXrPZo~B1>|Q*SX<M#eeXiLoRVX~
z5D!Zcb9`~KiyozelxwqJ64nSn@KvvGR-DIQV{zq;UWXA@3WNpPaE&~^kq5?ebcHOv
z;hy6G6|av!l-@w^wyrA9dARQ4d2Km=0=TG~535?XKVgJaQesTMQH9=M9YX;@v+i1^
zUhWp{2)3OK0)^m;IZ|$Lj(G#K!)MDCbZtF3fKqd!mdjz4u_M1elAYnr)O0B|ds@~>
z^0MXMohkPtNSLtX#OD?11aMLhm;&K^EJbA!6B98EGi3})ms1~ZO)~M;v_D*s=Aket
z@!ve2N8^^X*BB0O;XEZn|7{ANGNUo(0I^daYfgU%4$}ViXT6ekrw*NmwAXq)*DpNP
ztY~|DudYy>goyNjT6|$dzD`IzM^ozM&1WZsWQm*ll~meqn2P49c4ER|$`cf7Nin({
zYVUIubvja2=Y|>U{HEI1Xg*`yHmiV;Gz9L?77#-vH541%U9NQN+|uk?lP!|2hV>pP
z^<LU@kW>@V-quNz3f+0**Xo*Adp@A$Wo3f+>@w=>aq=XBe`)TwoVKf#JEgYnbU3{=
zwV^d28g=^+1@wLmGp?S%J`2O)vRx34z-39=JqN&gIW+$7!gWbmp5O3~;bQ?O_j-98
zUw-`^nQ}E2cQbNW?$Ao`w@@Y`zt%hpMDivU99mzd;PnOzbD|!xYTvVnQjTNGGG=c3
zMx}QHx|I=K%)Ui~*JIq=ZiRlq0BKfpF!GM4dRnu_9iOQ$dTZ|!SRlI&z+J@v1EV&{
z1MsZN@^9cmofB{Gf-u2Ep?GM|Q9&(HgXD=|JGcP6o-k>UdwHB;EAY^-5-XWz&9K<`
z`T6VLHJl$BJ?d8K8k9M%KVw*lS${_1Gc-DyxG5Rj)D8f-`%zr06Q@c2us;-1OxFcO
ze;#Kk0;I5jA0pz@zf6!;T4NFQi6M9`Yw^UoIvOo!)JS<~cXlAHS9Y{`OSG5&Ng<0r
zwJ(ZL%4=RRl0_7xN1oAp^XvqSC&3FqVnEzUOkqG2^bk<|<%@9heo^|TW$Qr75=>-f
zo!a2*Q?3q&EN(}Nn_B`Dp$g84aQPLfa>uQe8czE#dOd>A4?qFQzzHZmX$l2p;#t?x
zA9zEVKEcuasKcV@Y(~zbuh~Rb=Zzu`Wf;(Mbmlhfem{{D1kX~?Hc3E|&poaP159n;
zd+)rWza)oePe)%KtLy5?QqT6PGaCMp-a}#SEyJF7d{ua+D5$Q$OojaG?Ym2ESqAC+
zF1Gl(kcfEp*@*ORuMKWM(o!C%R+^Yt<$|d=Ci<f8dSHv|Qm86EVquMSk=HghMq7;F
zNyy0H0}Yjo7k;j5JL<GVa;rY>Z7VV9@_;)lnoKr&5a01e9dJ?-bgX0i(MM=BXqV8v
z4WjY<<bqBiSsz1tespZNgBOWaX}*1WC{>leIiRc~;dvJW3LWqwPdfW}@4>?zUbBs<
z&$Z40BZUl!%2AM?Fp0zR`C<+o&z3UN`v73A(;q3Nw!6U#)ik!3n-VS)GgK=?hYF(7
z!}m_;nhzpj)`|jh>kadUl=7P!ZBa2X#mPp#I?eRQt8M9hF{Dab2Cj*m`{6(Ec6e9=
zE<Oso8rQll*mvfayxMTK)2oDyZi^PR6r$j2gCEb^9zRuS0bIr>J<iz7e8P~h6-tM(
z;xx?oH;{(rGK|mbNHg@a*r|Q_=8d(`yZu#{qz%6$&LcURBMSX~(9&~HJa!K^21dBE
zKBJisfd<NFd4LF#>Rg~SN?;MdK4tjfo($3qP&w7V5PEFA`BB_hM_NJljsrFrBI&!6
zsI~W0ALQQKAh-pZS!TN&cXxJD@g+039Yy(ggX<rT9sJ~k?l0r9({mLnx<}FXPg+ik
zfTqX5mX(QIF$B~UJDwqO>m<xLft&4k*s(n<6HcnIWir_Adzh}bTX++KE3}RZ9Zoy4
zqvV)B*xNpSL7mSHgL**@>+u&ll};k+7yACa>__UpaM)sDxk(GHzJ(XnWA#3qLhz?;
zKS;hh4KtlT94q<VVgZvE67A@Lw_Qjq1%-0S*2YDj?QziPGi1=I#sOuKtZ^_nc;E_%
zo)giI0II2=ZzHMsvuduFa&57gfo*rE9Y&IF-S?YM3|2wvx949QRudh!Hh4iiAIZM-
z?Aif^pYw~L3yl7+SO`B<!Au$m*<vf7yERC=lvh4)JrF8>8oI(nyCy&4rv2mA;6Qs!
zAk3#7Y~a7(b_@CDsf-K6jYL<T-z6`|+5SSn{>$iRsKHu9rO41aDNaO&vzPWMi!~KH
z4-9su7NMm}qKMY-TJ4hkFhXbjKySmaf03CzxYducbude~_boknVxyb(?cnB1b*3)<
z-JQfR<&M>aL=9nJLh31A9(w0MiZ(RP^5O&+Yuh)tP4fIZICq#OTO#0@sM*Vda;Gvw
z1y|zZN9ypt$mqo3y*+fDj^<`f`J{!9pOafEv<y!a!1HuxXB3tWO6L(#Ps!eB07HF2
z^b2NvY4C1P_m~8(0Tu1r4PlsPl-J}H#KF-xIDN`rQ+f>QETS@OdkYw8#+#j|RG`=W
zyfOfs#{(cp+@a#5Y0b~i-v`*b?B-a8Iz^;TzsyviTfPc#PVvvJ6-LC&^m+c#X27ak
z>Hve&aM&FQzr514camNE1EEHd_W&L{V1!&Xh(EL6bB0@ynZFe(KXPMgS?bXHw4Wj%
z+F$pj#$cui9gEu!M8xM7`8`k=EuIGaSoaMoj19f|Y8Q4_3<OG4%WF8K;Wljr00WEA
z@X&DdeMA#Medo~(9<_GCn{BMK*y$Ek_2=`PAX)=`{XHOfh-aAvkx+@YfT(SmDvdg_
z*1=)0j#T;t8&l7W2{FYZ0Mv>@0MLFv7Z9a0ZDqs?_EQqLN-%eevE2%I88*BMkhBM4
z35rK?t$>5x?eq0GGW3i1_-f59Z_cJRj(^)-2RvkcP7c{ix}GKkM{>g?1PXbg7FkG#
zH=xeGEvCrLLSCV^DWvgy7gitcj6{cKCiD&X;n$55Zj!Y@V#xB#46zn=SM!x(rEJc-
z_P}%j!`tAyHz2_lK9QeM@B`lk!pF~_5H$ev$^oieYAwmvKYq+NH+;J;JKp{y3Yk!Z
z9%{pw&xIJhTC%CHW5fLoI`|ig8_*6&sq}RhqpEo-@a!aiQ*m?TyzvCliqmSHyImzw
zNHug+tzrkFaz)A|E8@h*M%8<}QzRy7AgY*>!#%&1rtPV(*JnN3%inQWc9Z7j%9y#{
z-N8}Q)s1#BgQeCmN>p1Oq^+al<cyqAZHVEGj=t6v;8rDD$!G(|*1Kb$MC>HakcocN
zz<HsjV}a`F>51@pFiN!`?3F<Zc1SmDG)xsyO62I+SdyH)c-ei*USK+61})fmq|^`7
zKVo>4YmE^W;;D(2)7+f44qInAPEvly6OV8S2kq5AUqmDKW1hw??AA%wf=^44lpPUT
z|9)$v=R=v-NtS!Vrx_lhj=b8P+G`iyL>h;LL)V=}^|;H-#fQ0rvcRm5YCG0Cw~B!S
zHI$|0_q$m<B*9<DmVcZ^yNsHr0*(<58ojnO*ak9(S#_$edV*rD$D~J}e=244{L1$t
zeQg4;N)9iQbQ(f!5RSxBPh^>*h>s8Z7j>J)BH_?b$S;{P78rGcWPpj0uRueOW_7wR
z(CQ#(oY<bF8~O$*udlwo-r{(ZmuSobf-0rzdbt&9Wp{Njd%mQ<qnET?V+w!2Mfym_
zpJA5z$_+FNRw%huF<0kHI&IqV)ll3iFKo|xXzTO^4Wj$<F)+yC%qLl$0%m;*pPiao
zVz^&c&SxK~L9<Ap_0n#C{;EGmh%;gTWIW*E*X)mS(iq*){5>rrpTeet@^_4mzMYvE
zXpA~E5D(E`*2k?-evsNSM{QF?OJ#0JdM-bpiWeaWbfl>#Evhzzk0eDa81==u+HAdN
zpy;V9YxiBz_FE5t2mKIEvJ0GEdwg);_bq!~zVxNhw~gKO{lrbR-+g)OXU$_hW=Esw
z;F=Bg(eU5F1(!sqZ}#828eUbswF879c39vW8eSXNr602Y-30#&eDlYFwl)#%=xJ_d
zRg+sO*nkU7IFUXd<Rs)P6QZQ6scXo8&)G#wsb4P=93UBYb!@xCP41;Gvok+WNSk&n
zj(=p-U>yKr_^bh;){LM%u<fnk7%ZeOKFB3Ls%wz&cotmRCoY{2*3Y0LA}5mYIJC34
zQtz<F|7=2@`O6JywtG~C3gSeDOhglL886WH&~uiZ%HOZ%yATuG2c{2?h=_M(q!rT;
z`r0O5!YqGzt@$A;D$$^UgJ)iEYcI-o9ghuQcE_(G+SK6opfDqN@<(C%Fq<zQ-m_4B
zP&*{e?drBkGp?y|{gN#B`gMx<>8)rZs{M>r$&BUO!^&CLGg478hhM5m0u37~^!%5l
zn$?sHna89)3rl=J1wt&eH<1{hH2JAmvO>1Ly-g*?u;oQW9>)}-wA-gb5CdHm1n35x
z>*8$|UQ-31_QFU)`k3kHtTf>iy+8^m(O|=R8h#s1ndE>*M+3B7*D$$C>fpNf&Rm#P
z_dt7jCC=e2KSaw!9zfDng%L4cj^$=49&gO1vSy5qKO2+d<_$D5G0DT`ZrsI#hJo3+
zCp$S*uFlUkn27<#<^yL}U4EPnK^z|mF)^od$HCs(jew!#BVn$<LL<@j?W;livAWRz
z=ivx}8lhjGia9hCM~bz;VFVu`s#XpEo{a&inN_;K;X>Gy>`F;+ly!JGQ7bP!SijLW
z72CPfGem8T`U`Y_``zmI0igV#_-0SRD1O)<uWUq6xL>ffb{>`M-HGY8kVT?P82{z?
zU{}a|vvlqJ^B!U#GW#R(`&$+`QH&tG4(h)i7?8d}Ck`z+nRdWMi~jv+1BZ4(5E@*H
z$7&*ehv@wBUmwSP3d+#^;q5sB1eOCD5c+G$TIXx3j*nUcRcyW<alKJ(&ob}+R)+g~
z=K0qH?1G-{M8^~!^Ek=B!}}c$1WI=S7fDc};^g9l{|<NNK<eLUlm{oPcdA4pvKloD
zmM=st`Kh|a=CO;lQ6jz`6FUX{<758*+cU6W2?z+xI5-Fi3A=_LGPvmlLH}5qFP`#b
zuU^Ia0s+KD3KS{tzrdP$39_yJ;?hp#m%ixrlzg;k)+J01<+91wT(4(TCv%lvI;_D{
z`9>Y7>glKcWAXmB`T-ZA{%vgn<Q%TX#^gvu<Jq4xV-o&&Lx6MYm#S>H_)HJq(f-k7
zTf4A#0>4Vi8q<(bo|oaW=$*NwS5^uDeozKEIy!nO-a$dsh3$Nfp|q+tErWlhq`5$y
z+kR2SM}fHMr<dCCK3lD8ee!aZ@2a|*uE^EwYcon-r>h_NwIjB&hIje4?p@XP1)DR-
z<Y}dp07f68NF;IP`kVqoFo%jMentEyZpH->?*+qM`2bVw&I-(Z>FOJ@(@$hNC)-@<
zX5N&V2BHl(iQD)D;y8;p3AJwdi;(_R_cmLhjSeGKHPd*ac#ou*v>re0r4NMb&&4ta
zKF9aZklhM5(KuFc+w)(A?%-(Yi!?Me)B`ORW!2TR+$M9gvu}$>$~4ONfO)ri^Whgx
zuC9e;W%N2@<Kr=9<>fmloJ*`>*F1k6>|6S0Vj8TOx7RUkoUNCnSqBa65Xyh->faCF
z7!!1gyN=hHDr@h|0BZE^oZhe$Q1Acyp8)y1^qbpHZ)YZE=wPD-6H*-2K|gE<Cp$k%
zN=4@mEy+5$x={0xpL_dVbWmsQ?O8pc!=i$W5^&^i{tXVB2(NJe4IIXX&a0&>D=g}J
zUiR|kbYsmX#<o&}DD3{xv5aEYiMo+Cg@a&ugq%4Kp`Ko)5H2Z;4l3V&1c+&e9m}t!
zzJl@bdwx11-yq0fzv9<qZle?}l&%xm7OM|Gr_;LHGOXL`SMvwtRbKwp1NjM_nVDI2
z9YjuvdHx|H;_caHugmrT1_3bGHWC3~wZJUP?Ze%vxi>%`RLlSP=X(6MIREovf(JS!
zxl@jswXWw6i}#nKyJdf-^;e8m6d8z2fQ>E!!+%f5$sIjpGgMkdq8O~O{pK`>m;%<P
zQPip=De*=k;b%v6DF<aJk$&dj>YxgQB+VXo)-4~B8q7cu9D6;cs2Z8lWLG_BZ>(BY
za!B=Kk&jn-ZdFX(<EUW4fpXanQ)$uj3B@E`5^gHGef}YZOM{`9fCwE|;i224z^b-W
zxjITKO0U64Pg4Yk2TnaLOF>Y@cxlSjKgJ5tSS5Wx6GWxKqhZA47>|5Lfk{NP0S-^d
z&Q?NadVzy8S)`D@J$kv?*0&|W10vh_6{d^;4%+?$NB;dB{cWjULtCTDHJD&wVMQ#G
zu)b8wKlk{f`u*2ize+>dhe_X3&z%J}wCkD>vnVNzqh6u9_dVYzvSR5{=0c>EYQ21G
z{fon?*1aGql<S~QPd^l*5`8rSNw-@Lzo(d~qoZ05`xh9u_^F|nvj&FwLllaMt>wW!
zl9>Mjop_}5v7J&mOHW9niM%wudIM4R1QBQWLzkr@1t0m6{QU{7PL&FXo+&;kC<y!2
zCM20rM-(8wi_a|w<gpp{$4XdY2yGJLBYUFB#ojAhTbE(;9SrMK!NbF=xw$n0iHKc)
zU*Aw85N>%@pxLMVVc-64lK&MCJ+0DL2{JM=|A+JB4rPGjVl<sEMoiruSKB`HAMXZp
zA}qAr#kLXogXyvDgR6WyDfFGGU(d`c@9lZk+f9c$onFneU{mnJJXI9AaX7=!XF<KT
z6YqVuq9THoS)?F1C$w4{+u9l$l*1@^>(p}_>U**<&yjP)!f6LO7o!M*`OM<?Sllh+
z^xZMXK7wM1@wifDo#XdiZdDfDwgdOgN-FZ=w$*^D#*Ql<uM;ay5m8Q@8iMKyw{K_R
zHZh)P%e<fH7(n&1LrS&uI(F9|s;s=Mz&MD~ENri~mhB}o2i{nuK^V$ao&=H)ZK1<z
zDRF*#M$${o`o^AHfDT}%>S?&vNL()zq>&9!LKUrTyZ)ah?cawkKoL`To5`FlfF{!U
zO{Q&R`G0W!UlwW6ojPstDHbPt<+!Ql)ZV&b;uB>APk=uxuA|3!ULBygj0+^oZse7h
z$7AzrYRwNhp>!R8f<PjZm@{QV(XtB=u-*?jO{#Pzq-)9F{n%9z6@`{iXo@_Kb5m9R
zrM{S*xi?JKWy}ZhP*qtH*+`=6(&yu~@oD+#@v-hR?M<(ws)2dKxAna@APTOvcQ3)>
z#+F=YLka?lYRrZ*FA==o4*c8~UDsCXoOD#rNSE-Q`xODS49FK27EWnkY~=sT@c;Wa
z|L5}rL;@Lnu&=U1l4Tje>QukqwTWub0%9`cu9#og9@YL*rt5J}+t?&xE1SrTd^9Rc
z3f~<6a`oY}9^<?k-;wyjy3WTsE5(_2=dKr&Xi{jrnz7PK_P3@=u7k%}maqpl<)!V7
zABZvq3fCuk`TY4a^r_+a_@?bhvpj-4FqGOlJArn2LqwvBU=Iw6en||s+fdT$DHJZo
zyss@-Z-4#t(5b2|OS85<C@7g29aXqgkz&q*DNx1;9C|JmHNdW{phNG85}5=oXE_da
zZ1Bn5Elx3}VJETcZB3T7+;B*@8Pg3Ma_%}t9o<FpsoCOmNRxVOs;r2L*xt_*CTuSI
zG#7A1X+=SEnza)!K74-ev_bWj1ujz;zP0NQxA#Bh>Tfa2Ga9fW`j>Y}f@w(#^76J=
z(G`u2MMgwqGpRuMVREhj@dY2aLN{JVbC_MD1gAKq!gHzWoDABN1}SOtqh$HI*10)j
z`4vUp6Q=EaPQrM7qw4g+_*|9^^X2ZIQYFrgPbQWB;K3x9kql=eXF{tl5)N&#Yb|xv
zb7;ejPHdj#z50aj9S!P!eG1|GuL9adp>pN3eXf~nak4!DaGa?K7>SU|?mfKshZ3Dt
z%;IldlwR|_vstPuJ`L3~z;<W-%684k^Kd9=AcNz&Ga4;nF76>U<s4xcm+rUpla6?d
zufXkU=sfz&eHtj*S@=-nX667NKv>7W%I%IoN9c2pdFZk6T!E=3I=Q&mviJ=de|-&_
zXF6@w<WWg!O=krYJiK?H8s!j^9;ZgI>8c`w)>!_y(3&g`&bJ>rjg5WRk#=#dxJYPd
z#oOCvwE^Jsk%f>cm22Z6cC-y!PN*7;|H{i=s}uJ8JYaISS$6sr#>Le40U+yA0>KmG
z;?jz~E&gz)oqtiFnHy6L`<Iz@tBzvh<kY-QOh}lq@o_7l)Y8faeWrAUF#cX%{0|X$
zz(tg>hQ_R?^8g^czP-LKJkEcCTnS9a;n{Lr-=oh0iBZ>UGkz2z?$~wgKm<-I`A@U6
zvxDEQ?tYwdso9mey8vJiHXdFHXC?EG<7FwJ0@2Vs&gOi5w1|y~Nm0j|+6XWm3{&j>
zY77Dg;B%arcxKF+hX_!BFF}z7&s6f$Yl7M3rQo6`r<rNJX}Qkv@CKo!h*fBn(45X)
zaG8Y~)HReVmZ#4&;I(iOvpEel8F^BD6+uMgOD@Fg3>}t3bxwS!g-EY|ZRXK=Z6Gg-
zp1)^OS236fnH#GttC8DP9m&%<&sqO@d3>*wr3b&D6y4X|9rC^>gp1J5L;KLrAzfoV
zQc&bg9!P+Y5Npns(Q#AY<Pcg4*BiIleg?(qC|!-Kf!<y`w|=@bK{rG6W4nsWe9zrp
zRkb~i6J!1xS<b1T$AvIju>?p>L37H3!}8ioHEtPAg0XDEk0d?A3fbiATi?oS{GWfF
z?~W-8F3%T%(9cCAS4Kral52~9P4Tng9TX~K{7^rfJI1_mbD8PRreHA;S0u4lH&B&r
zymsp{R)KKb{wsRNQH)t|ySgY!n?n5X|1tJfL2-p|mv4du3l1T{-6aHT92yPoE+GVW
zcZWbAxVyUt_u%gC?(U5=oSpy7nVN6TS9Rv9t1tRySHJImWUb#K;MNe>*!tfDF0T*|
zHAOq~cN{Zw(b<1O!88#$k30c5;DrCBa5;lTP<S>9D<W?YN^n5GDRd9;Ywh+&+?DgL
z`C8BQoRY7it@t$~TUaGJU7lv%I_@kSVB=hASxvz<4BTPAJmq6ZaSpO>vIUQGCDeBv
zR(C4U1Z98<-c2G5as2wc2=XTAgdbi92t-#eS3vgF<P}+afG-yM;^rFmZbiq7JCD;5
z4lp|psv;4jok5Y15)>4Cz|b==$YwObfZF~y3a<a|K0g5Y#l_M&0@4F1I|}pE@9|Ep
z<$A@N=jZaQtgNGtU7~TZvDo26yb1r(vtFU+KD#|J?OBzTm1&Ms`<fLZLW>!2iC9pO
zr>EzVa`>>LzmVe4TdAcRKQ%Vvy*ff~x!g&92JCYHV-egh<?@%s#<R);pFdd3FJNon
zSZ#np%VnOVs2Os@?dS--SIF6yr7*FHO`Y|HbgCpJt@xl9Wk$3%Hl_)@elO*GbaUtr
zv(08+;;g)3fywl2{`C_*GA7{e`a0)un)!eW!S*uBXvcJ)w*P4{T7HScI<WfX^d^{Y
zf<KBnNH&}3)AF)vWoZ!1DuTJJr?(?25fdoK>KYmQfEi{w_?N<1*WpC}XfPIAMCh@J
zw!Ncm-ek04(VzMl9U|R9ImA!v>(4feMvjiPAFP{|0)0N<{unR?<SK6Ah^(Y=Udg=o
zD1L_A@R1~R4T_pLvsf!+7E(jCR%Nbm4`CQHxL4=(o<#*!q5@HBx;pg3iyPT>Y|ti%
ztC`Pw?Eg@!P*k-2-c<mxY&M>de7JJ%a+|VWDS;|->4?9(d;>@9KOire^Tw_`EZ;@6
z2*->w#FG$vC|74T(qlAYeR(<c>iYUHg7*v~yV0TuzyL%La)Ys{WujmtSXfw+(Ko-_
z*|9R|wQ8L8LutDx|FPHf^oYFxd-0!D0A}S@_Kg1jd%gYV|0C3o$Oj#nz5$dbu_b}Y
z@02p}K;NU1G`cCVsDA-@#Y_zVK#i7>QAUolsj+ba$don(ObfJYj0RmuWHV*?BO@{v
zi^guYCrP|66`E@g&5HW!vWU3hjyyFcV0E<*CewpfBo-kE^4Ob^Vx}i!dB64BY49rF
z&`a?zBp>MnBi-=$O?O?=TFk#)w6Ss%tGr)V=M6kAD(x6dM&ACN#Qh6C!ekS*6q{Lx
zrK45+*lh-$mC<&_^rj<THr1P~HR}6!@Kg9-%nHk}?Svsa5*85kD#orj!RyJ;lJIWb
z?#||p@bDJPA%|aXYHlj$AO9gwt911wAr~xLT)AWCu58v^(tvmHqKNl>Qufa8^RH6u
zH#al@p%U}Ip3CW%2VvuOsgaR4CehOmqF%i}zJ#kffiDV(#G9?I)PSUI=v3U!23}nh
zk!<rPBJ20P`nHmfxYYSE`Z91FAe2H;MNW%zvcu;CUXVY~tOa>|r}$6fwJu2}Bg!qJ
ziYhjeO21Scy{i%cyOmQc2LgfFH8Ye+14s9^)lQ!f$qZE|&AM)5<yAh$7nlrF5z<c5
zfK8W?{eD<!1~Kk`n;Zkm-aOdtjn1vN$eUe=oPatgeiDw5h^V-%OlEk!)(l(M<Fw9R
z5H12(yTwwh5TC*mRBiv?_F~*HpUFM9!?{d*sTlI)s>V?WF_9ln8`cvlK0b;F*lh*A
zFLefx41-^rCMFc1)-|`Gp~y?EZZ(>E5}XBc>GXykhEvD}17rI$--`0}1)$O$!nP+*
z4Ns#QZdo#K;6h{NC&%`m`rVFsP2u4CWOJUeJpw}(XopUUT@-_aC7w9QWvJ5#1Nz>d
z7oRoi0;T;U$ZxXKFkce0`}rp1Fgv9FXLzu2yQGdtsi^7k!dp9>gAbB!@orYC$8*r1
zeUH{wkpzY?p?~|A1q=Su7m7xNcMW2)c%|SAhNn5Aqf${)9=L>o&dlt253g-@v6#ak
zBOyLJ&RxZfHC6<?)%t<%YEQWzM&k^Ml;>;;a2UqZ^SwG`>tXSF``)qEvz-#VpDQOv
z`j85#?5cQ3s8`P3Y3p*cow1YA*Wwz2m9k5AA%SyMUvKc3iGNpNlaJ1vd&lhJ9}|qE
zNb^pk_51=t=xaj)5q8tk(+`2nLeAk=fI71K0+jp8_R(dcV^L%xv|L>3XWKsi|8@L-
znnWJCEX5>sS9f<QWu%eL8#h0ScSs207R416a&p8$fq|02s9aoJpU_6M7RUDf*{tQ1
zvR?qD!yzF5I<r)U)@PV}!+8+nMAuBttWBj4t0^N+Z1DlXqoz~er?0#qHK8NMFMBKI
z22M*e#i#LrY3jWxsYzN~V%9r*1Hddv%a$@mZpBQ<RVRdLwB|!bf8?CIKA2-L#|w9x
zC<u*!{<zrZPMu)KG4^RG>&=wuD*r?c()pa~*&Q5hqEO4%H#I^z#0P<m-!DuKb=pn|
zu$}v*%_$$aib65}R$%H=VL@Kp6*@`ojg?2>bogWeuI~3Qct)yMh#WtMY8@Q2veg;Y
z7VS03((I;umaGyAIZ3|+6pgSkYBX;BP`o<}P@&XuUy3yz&yc;mywp+zRTSjqnJzPx
z3#t73pPRRYg@&2}o0%nNX@;b@$P~eF7>ORFeL+FZ_g#%KagIE7ZZxVpACgqV^*|y&
z8AXl%R%uv~G|r}1w~A3y4`7QyL@nrkbiwaXtpt<=c_<w9ohk+5@fa}z<3g(SfIq)2
zrJhf;O9oh7&XMtXbsDkYIW4YsT(o;1Ozq{S@IHdvKR)z{hD3!MIV#D_7!p9A`b3pf
zg)xnO-BVjlqj}-hIHh4vq7;N(gxh^jBUW)`PnNS<Wm<_Xp>ti4)V$ki$nn`6nNdQ<
z=ZWv?XTr+F-v1z|&op~#>b(%O{R8(mix?v1PrddKLjIKjuPmRMdn|Z<kpNo9p^tPK
zpqJkJ9ZW3R2H2nIm@>zC*M?h#$3cI)p3kL$LUCu~Oe)?j$k7}~r0&M)3WiAIVU1PC
z#2&`goZHser}M9GZ*7eb2A~6AAOOm2HP>#`x78a<$IPq~ILDX`V09wiq21(DNf%56
z;YDC<ekG!1tMOfP_h3o~MVo1=&b1umeBH9q1-W@N0pk%eB0k3$0mz2-C%Ib9AnSp@
z8oWz1U9{UE1XO&<b^&5In!(yyJ}FQPIMchiX|}p6==kv%Zz^fBn*Ez^BA@@CKT<r=
zX=3^zw#$Rx7nQCsy>y)yWkN}?ggZOERdkf(zV=Ta2B3H3=a64Vl`+*#W<0l?HH#ve
z5*{v8EB|Bam#RKP+stN5;O*D%*Uz)NgJsvVUB?qyGUWixKe?bji=FNdiuL>LuZLS7
zeXuGF3v4UZ2+qIloh%xfEmR>co=K2EC(7=wcBccUoqb&+?acsi=ja_pF5AAJxvA2^
zk2)y?`#X!{Q_aQHCT(OwMQ6_i%E!lr#M9zFqa>kBK!Jbeu(u}%!VT@P0j4)wk5x*~
ztEJf!lh>xp1?ao1d=EXNDl{+c9hZITS1s7<(G^{q)%A0vD+pG*SX|)^EB37U1$&5z
z^H6)Acw3D!yc{9VNHx{Y;tAC<^en)XJ?PBFc}|01!ez(5OGEVOG${9nh*$c;Jf*dO
zRj&wUY%x1mvRola{4PbWQ;4vRVSGq1FaG=6u7=4Zump2KR~&5IAM2Wtj~yFIS7`6E
zSC0kBOw_qbin01tY)Hr7zEz=_3r3BI%FfwrMx5LNOi??H^_GkF1!CLex;n4LKj^Gg
z9yGRIlz$Oaheu7*A6}~xYaC8j8}e`4SDpvV1Do0ZrYrkD%3fP$?7z?P0*l97kJ~&e
z>?-~n)h*Nh@Zw~`DYiEQ!^gV8nP&nCWA%7^_8-LLwANaiF&^^HAZ2dt1DBEbA_0Z^
zRQI#0@skrl4axBV7#RM4nJQP9smWW;y&Om|#6|X2f6U==hE8K^;e6w6cC#=HTCkgd
z^pc-s&{5X!|D|P}<G#7p?x?3%bG${$L7IO_)@dDuHy6mh#9=l2L<NNi2=6SW(}^PP
zQLp*L#$UJ?z*VnA;i4QIFB4A!|F=#EE=rwM9n3z_@N)?aCfXW!!<0eClKB~$jzikx
zPw$2t{UZtEyx4Y#z9WCvC{gzx_k8IrCML!ii4YbRHmGQjvP<-!qaH2-(TMN-JTj^+
zEOw4Wt+gwF&UOa_|Bt7DmmL&#M!|yTUR<Y5B@|<nJ_I%74U@7oO#edu^?=I-X$eDR
z9C>$f<cgKrtab=Vcfs%6@rs9d%@^BAE;zRYI_*HmTAc4CU#g||qF$>$mQ+?yRSJ{g
zaPNcbq-!}8kcsWeTJ${Cht(MnXF*TN!Fg|#cin=5F+?*KJ<yacTywLy9p+iKK%uJ9
zHTAXFF#P8O3X4A8U@Rlcbq4r|0imQLIEFDfKfE4`edlslLGfP~iI42xB-v3@1pM0D
zUdN5e$AsBvLa!-BLka#klSFym-c}KR@uoy=vy2`Qpw_7<Ln7q$Xzym#@M))zG4_Cq
zP}gHk1&hFnnvQA>4bf)_@;L_(W<Ju;4n+2ahvjlRoU3cvKa@T(7XoUvlwEi@$V8DM
zYpvyBkmGu#9u_&bgK&lBrktf?!FZy6vp%94dFt&?!weoLI9;b*%jTzyeL9-LCJZ9~
z0WLisg+>A1q*?U$H@IZU-KNnPF3e337jT)fVLb_f!`|=wb?6;F*;e)Ro!>YH*@RB5
z=@)+J$WyJ6^nGLESSoKuYwL>XrvEP{WI`YyoxIs}laf0@x8*ksnWc`$sb}+{`1E}q
zK4XO4$pWZ(>uT|4Cv!dDYB?p$PIWPY8DLzXiAe-YW*2k#ZQsu8QbraQ70s0Vtp;ux
z@85WE;R&gTT&oj5m{sNyYw9zUqjQZSbBR1O|6djWKB!q8sCMs|wK9P*mwV`&it<f?
zgM%$9xaZp~vUJKXAr{Mj8|jR7-BC83y}emiJ;w7@bd?$A<WV|rzNWC7B|WzXED$}s
z6M@CWOPrj_SKfUA#-37shK?$qclU6oU!dS06%IhIwTRnSUOHOuk`t2o*>{-4%bmTk
zp;Ks~$BZU_T-aAzfaYn?0<&X5^78Z7I#1fSuuh-hq5(*hE9ua|=fjgd;ilq#v!PxF
zIw}Je)K7xCh=j*<AfAX&hZ@uI6rX5hhVVxUi3pta(Y-D49f$whewhUBo1~u`%Wjkb
zv&#udKdHnaDI80#L?pGKU@jX$mjZ#7E&lbzMOHk6`V^2rEeZ%JIGA)ACuB@#rwk&2
zMjA-j%CGsV4%TUy@%9;H8I+9M5(>=XPhYf?zzQKq6>V(wkA0%$x-{Y5{AK8JM<|4e
z&3vZz-d3{*G>byxDWSBpBc0cX*^k84-%Ovo9bcZ#kJ@$+VJzF3Z@iRVX};Arv}HN8
z&>>8??|cd}G|`vn>^9*nU0!@2(nh`Jl1pvPI6RU+L*i2qM^X=@Ol`A<p*Jyij$(Fk
z-1^g^AsMM=Xcbs37MGgo5V_3Pr8HtXk$oP9?uL}1R~zX|E0eTKV{@tD#VhPZK;v4i
zv3H3<CBGIe16z^>@{!a@dWBf%M+7}}hWov1XVv~-Gg~TqTkz>`fHcz5s0mqW@}DR)
zZ^G(HvBU&jom3PMF==|j4-igwh`xA<i_k<?)2F4~?ys9}^&M?ZPaRf&X4NE4z~a&(
z-foPKoNg>7p^;F}eM;Z;u0zF}tyYIdQ<u4G89BLqVuTC2LQgbBdcJ%qasd5^QQVo)
zqQT(ma$`H+P#lzO;%tIEOl*W1r>M$mwJ2KWb`-fykK7f9C-v6M(x+qWtLjUkk=O21
zpzG5Ft0*f=eEReNPSa-;EKS&c?k1_2?+J%6gX}5e>t7rd5+pQjHcuXo7&;~wwCB!8
zoK2nrYd*#ZgFN%|exPKpkv;euQepKyp7Ek<6CKz1bO2ARtM2lzA9n3!zt<EUrrZxn
zXA^MBP&nJ`ND4;^vDXfd>`I7tgC&1f(>L%9q+f7_G${YkJzaOb^#M;4_jD}D0P5j%
z6hvY4sZrf}-5QGl5c>~$wnk#)oh>^2_Qr{@ppiE=vl4jdVZtFGpl%qy6HMnvpJ_}#
zNgG(7)wkY@GXXSqEXP3}j`7(_2_##Bd8@b0O16$wwsHKi=I_A+y}yud-uOK(nU^p#
z#eszp33Xdx^IAa7f3WBO&~NhIY;?w|(6?jP{6P-V_NF*pOQ&_=<yo?Lu=R#+2DdGF
zd-iX5)F|mVY}m*c8Bui#>*x3V<gv$`zu$_CXhrLDVozHh4vKA_|7%*pD2X@!`nCkL
z$jgh=nG3rq4A;n@{!au}fI%8IvD8UnY_=<hx2Gg*T=G$ZpJ=^J>_s*pz%cxvqoP1-
ztuj6_(PH=VTS{!~g9!7I+<$K<{x5U(|9m;PhGV2KO*U?Re4hCA58(hGj={K<kJS^7
z=(4QjZ<SAvZb13n5gnghGH`RG0F{7K16Lfpfapgt1sKXji|VylSxxP2&5J7?SOw1)
z#sl$UVr_ZTpsDCQj!8-1poeuWMI}84NpJ?+BTsA5;J7MQ6uRAg4kGi)x~|#6Yt#E+
zpNY_sr&IG!##+Os{X;MEFF8b&;pP0JkF&fxl;D?6rzu)g&R^8QEKP}|-l9D1m;5z`
zc8=FM$@lHDww0gSA=YH>D+RxZje_J}V1va$EaYT)7i;RH>*x}gdR(?YS~ZU`I!+-S
z4YjR@k*m@#-G;@&GIGb)bui7ifnDNBMwB3I>&90kOt}f#u?t+Xw<gHdX;_(uCFyml
zfqHj{XmL=HmBzC(!IW_LlXtS23ye3{elCKOLu4|S|HgHvZIxb<7;l{^g#$w!4+6#y
zd$<J6Rf%-c=!}1TB`kC%g#Jj^!p&(eW`Epcs5`wY6S}zXwt3AVn$G%!ZMKp=KU5OH
zk|O-Hu2aqtaE;I<KpBX)eg#1ROH9x<<nHN7=Grt#RUE(CU0%_=nr?G{ewu$Rz)pRo
z(D^Djix+(y9jmU8hH<mBfZxHeX<Z_4KZ@)^N}&T{D#=^Hx{f4F%&x`E!QU_9p;6_A
zV)^%-6T3?NOcxg*WMpyQ{pz+RK9&yd@AwjwF|yDe*|*|c2U+1!sKo$Ld))@K(`|xx
zW!k&UkddA*k`JW6a-(|JJ|ehZkJc?skovYf?DZ~jrlFgReGV1DG`>mDewAu!qHY)i
zCbalkpMCr>!W$>jU6>2i^`SbzZ5v;4(`0A@<5gpg;Pvt_XZ(Fsf>=|`VgGk5c^@uA
z!8G6osU-t{EJpv@_KX!<!-VWNzneH7GnS}DRqcOXyZ*cc(e%yQkCu29bMNmNj18Wi
zmS3eG=D&o<I$ksR%&MQyJo>ymrBj32Zl*qsrja3_qhZc}srYl+<`J2C8=aISo*AY9
zsHUN^Y&1iM(=1v2ua2>dKK-Y|2VCgS(`D8+HjcY|3Wm4#oJi$tQq!u=!3m2-i|h+5
zKXr&?w#v{rCj7dbIi1<*Mt1(B>baM|)-};$n+p2ftoEHl2~%ZF+8M&<%OEYkgTqxG
zA%@#^NbSd@7i!<n^YY%?e?T|$eAwlzdA?s`(<=l>^LT%BJz2=Pd3cmuT^r34<U%kO
zIJcTX_XC{QFLvdO6&xvnwu+f(Z6@AKm^3SW^4={$e@fARUCvpEq1&vI&O0c_?%1Cm
z`>@tK8507nIJnkZh9NU8jj>y$u%N))?f-V=HsOP4ir>bD#gr>mlKEQ@VEg(91aMT7
z|3ux7;;@(txiF(P`1xX+bs%bb2)L%Ze#{?EQ)go>r2urI_Qv{%iJ7Duktcw|K5^xi
zzYQmM`miLkqoS-PX~a$QLj*(SE?<Q#%_uGjd%J7LyiZ^|kG@{FHIQL6`N#Q=IP7+~
zKYZYuS{(B^)dX{=Q&EsW=EY`-d13;fRMCRQ#O-yVHF6j~x5_h2&&C5L#a)xPr-ZsS
zYci7WOuC*$e(9d(XdjFC7AR?|T~}S%UP&+4b{`ZJA>aMQVor3oqiFuDG9RTkvY@+q
z<^dH1-rZIiOMj#Ty}6J-t-#3aGv4*;@!_E)-?d(~Q(KF^(-A61x+{@JG41C?S28jv
zz+vf%cf5n1N2^PgS@t_@d`qFK4<5lC%K?ijs-}tXu0NG8?(2Ox*%3tS4TmE$39zjY
z8G2sa$@?TQO6eQN%k<)>k@KZeVL0ep-A>+R&GwEN)^P5do{SQ!K%RTVPerrc$T~#v
zS@TNIrfL_A)+fs@D>5q~*?*fZ9`*(2#BYzESmq<PHzoAA0DIU33X7+`cp8}9qF~TX
z&LRt&LHF>wyrI2dT!5|FS<@N16-Mnh0#AXEdU|)mjtmq1%eEu|DTg>vU2TiF?lnfb
z07d=Fw#(pB-STKpIBkuggg@e;xntz-kdH;xD!05ffy($RoY7msqU;t9yF+eTH6$<l
zyjDaEshm(SFgz|uZp3^7!e?nKjLfU(10}^T8&*Klum4Vs$elf>F7J;7qoNZurrWN8
z3`COfiFx&i#+0)pTdubD6DH&<#F*`;n}L26MfJ(-YI_6f2}KxjG6QTe<|Mgn<^E_3
zUl#7LV1f%@SUn8tt!$Q7OH0ecK^p6Ve&Uvhi~DVw%^eg2SIH1TRKf!q9rIohw3oFl
zGB){U=v}_!D91G|HMPnaI^x9#AN|mSvljJ%FRs3pBSk1Z-9LzTj*h?q)QnW;7uh&$
z4!GRzkRhjgU*VmdLy57iO{8HQy)_|qW_@ArEnzrB8ie;BNeSKC=y-Uv)?mkgFz-EX
zM7!pIw#&B^wZJ`61Rd>i78ZV+K7RJ}?eBjlNBaLx8llN=-gCtrzKiH)XPZHfK;G>0
z^y-C6uc>)2_VX)upqO@@IWFM#S3_jCAC1@wCh?Byl8|1Ol1U<y;Si<AkbQi58vgZJ
zl^d`@$YmH1SlJ%o`}t#gq;M!W@np988xE>95&$PH&b?~U7Q<PK$|UkF`HjBc$_?Si
z{69z!xh&Y5imDNyhA2WE*)2Md5V@nX`t)I~O!==(bzPZo@*fOccU}3_G%*rIUpJhF
zq##Gi+V=_@@FL46j{us0f`la3ffTu0xQ-tw^U33^Ndo&xMZLj0jiYdQCy`KK{Vm0o
zY0|ei`almvkA+mEv+%Zf<j8c(x%li7DMUoRfx%%%w45ky-%LhrZ8ZbxM`cvf-!72a
zOLJxIj4>WLZT*&57(<$=3#$95SPc4&pgaK-L@~FWRCT)h-`k~XO(+boTL?gL&K_NJ
zUp1$6Cot{ah+&hq^3DEq8aZ8aaM7pdi*z6i3;B9y0AfUD!r{XHI+o7o=&giNHixf4
z-PB4VRzybU{FL+M(CNi%Xl|sy7i=ROTwG0y_Sx1~4{N8=r)oCF5lY9F!@k}h79V(4
zAyD{960qLWV@jro73Uh*@9e-~rIC!?0L%xEfJ(~3;zCx$aW3-<OO;uN&TcZ`JRqqv
z`(`6R9XoA!YC1J6Q<aD@7%hB)Q{s0>!G0#TbsIhf1xcWt7<jomSYmRsdsHx3i{eyA
zv%>&y)fOr?#cj3O^{Xr0y->|z3vT<~QcSGweP#LSM7hvkkjoi}PSRfp32jbNPEK51
zQvwtD&a&_fgidHF+pkCi-g2g%otrnGB|IT4YHq*nVA9%ju8;{&lB>zxGtWmUK|a{c
z%q$G_oOVg9j|H|j=$N+u(*%P(*6n1wF0kz?8LV7;G3A;xyxcDmQXh7>=E0nQl%iGb
zt>s-Po5C)`v+5ppuD$aL+4i=xQ5A1kZB_~GyM$_KTV%!3)a+nxw9}K3`KeXt&;>>s
z)l#gIf)#j&)gcQ(<SI`1pL*(iAdS5$an4cZV>-&E-7Zc}R66&-0xk(y%#p9&5a8nj
z_<1FPsyl$-JGIdnP+VK95+TUH3aRohS=Ud1v~>R8oiv#&BbbTD+4)p*?^_1HZ9pI}
z5@87hAF%`3R@{CaKL)Yf_tRZOZ`hO%YP!I&hKcRu)ZJ)AJfe6ywtgcKAt4jMriWcP
zRg%_(E+vi^l8J^{#AC(GC${^OCpRjqQuadi7sh--@ym!tw2g%gmMX0x-WAym{zpOh
zQYLCVlGv=GUhwIHUsa<~a?=i7U@#yiWZ#=B-6^g36MBV48Co@vi7D#68ovS?j^>-x
zQ&9;-yr?|IKg<c5n0IJ(8P!o0s;c%aVL^exy2kSC_qD;>RI@5Xw(x6<fvblrcwu}(
z7BartJ<rAOhUp7_tS<W=6H6FJK^uRy%rX37DYetPG3$x=e{X773=dT=GOGTnS}V_Q
z&C`v0?b1te-Y?zRBPhcyXC5squUuJUGFYe+@0IEq`MPA>Y}>1XbWTG^gqgEM;~w>X
z8O=q`VsMGOq*3z;4ct<4Ix(1wWH3aAEPUY5$U~mK)I6-EuBB%(eos#(!|(Rz8qA&M
z@u)Dp<jbhm+WLF{?H`uLZ&kf|*Rr3%v?kJtBG*b*Hct8D3k#nyu^u@ON$0fWr6vkl
zuD1)I>?U^_4_;Nk1UnEf0-n6zr~N9~)=VIqg?YZ)31(tIGWS}q2HgBxH~^+aYy&b#
zlX~!Y{2TonqduoBHVFLVaO=A#=|-W|Xb=Rk7y9gQkEmYvd9^5|Qfqs<Rb_nd-%E;u
zp`1yz6lV)Fr`+WS)xxw&W$W1Ey@AA14dc^wv6YIFE^x^G*vTBR9$Fr!V;wTH8}6WC
zb42<UnrRKmLXjAMoxaCnAkHPIBb)5ImoPEWJVURmYhv%^tM2;myXviii?npMH(Tnn
zHfl$f+jyf%Z3B~9R2tt<kgSUtxe9^#fJR!GM(0*H?{9TkStxU>ZJ?`bzLJ3FPY+r|
z8U_^efkigoi#MW%0e(8IumjzLs)$6&gBIV|QLDI_f}%cs5~opHX)!W3mJ;3uGMMuJ
zVsceLmNm4s8AxmySXl6UVo!Em+#`jy#s4$;HSzOp3qya1>`;Bqm=y~0Si?eBPOfm8
zu{}xS8{}|hZ-R>;<(0V9O{tHkpOQuIF0!{`vLezMFj+AAqcIrGvE?^dQeWa|)^R>i
z+9UE6O~v^N;Y-}UV=+_3$Ui+7A|hheFf*HXu-Ek{7Z9yb>@3ph#6p~fhJupo1Ne8Y
zI@6rh&-VOt#lv$fD%;dvUaprcDmAT$&>v*dK#DrK1i6Kt0B?26px;n!*q$2Ol*O<8
zhTHT!sYUB-h@ldvgXVGY9L3Y-CUHi;e^noH1^O=&?MH;S0i8k}fC{5n_}SW=;^kN!
zMnbyhpHDf$76?+uvzBmX|1p38*7Lvut1<XdbY&I?l6+Jlv<a*MqH=1NsA!&MekLX+
zt^|K==nh^Cm$0j@?+G;b`6`QgN>VD&>fDau6~EtbMm|k+79P5d-T_4sV@VV4X4aRv
zGZAHpu&%&y-qb)&|03SJNc4P<ui7dt?SXsMbSd-ABW&)yYTrcRheZ>o>y4*O#j{RP
ze6MTVuIdTM!%t<Bl{Y4W*BE5AcL{=Rq}0m<?myD_cMHs%s^-=|l!`^0F@Pm0IA$~j
z=g9(1nSvrxBrZ{`ajj*TjeB)kVNA~gNEEm3ZIt_7P>r9O|6sBkH>!DE*;r4`Rd11l
zHOPg1gY6eR%6RF!c58DFd*%tuZkW`+-VaRt%B6MKXCZIBCoE6i)_=(=zt6`7nbpw<
zSB1d&4Hb+&X_rsY3Ou1Qg-B?Zn^xD<c!68*yRPq%?u~PosR`c$p5H?MuIZEm`@!$I
ze^*j`&kqaN@yPNc0TRA0dBvyS)^Q)DRa8Fn-}~GH`9A`y_Q&f3S-kQqtFrs|kEmAi
zgd`uVO;@8yKTFAuMjI0Ffkb&szw4;$8}Zx&VB8jC-L|_U*zYmaLVF^uZYL1BO=mT7
zc<F&OUX!#P8UcC}ey2OW3G~+5KK4VBqs8VTWqtV$VteroL<C91fEM1<@kI$&GB+N#
z!Oyc}cVmvj3(KalNgL<Z{R3yjf(<U#7@(WALSqE1|0#tt>Ks)}+(-!t>?i~T#Y-+0
zN=iSU&mdRBR>lv1svss0S7u#eJ}q}#FzBJ3bRFeiDF}G&Q0R%J!otGh$9|Wz0r>M_
zRSrcc5CJeWUikRCufKozt8U}zwTNlx(nE{qUb0CbWc}v8nF&j~-ZGn|9g<W2y)_dl
z4HxDG`<(oIQ@m3y7E;apx{o)~x4D5Sqp1EGX-Tvy`*6pcjs<#@Z;bVnsEqmEy%q4v
zS~o9ZVZ9kUs0-3=kr>TV&P-k(zg0+F`KQG5iu(&#S4FS)$ImYg%+1XY0RC~pEnpBc
z1=Mo({0t1GA~5}cop|czaN1}Uf!Nj8y7jUTEi#`1_pJTN`cNQ3l0A~|DnxS@h+t3<
zFABvdKmoAKrXPfnBlZ%uyVHWPK;&O${ozr5q`m?JIYdSftKS{Q!RffLN8ik}k?n|_
zoLnHn(NeSe>0xzkgV##xeZO79J*1KFzb>JGLtdEaoq~LYlGh|2|Jn0+9)Jq4r&W;J
zicX>68i_N!{zVd{TG=RqlfZ}vz|zHPsZ5yo9$kS*_EX{T5u+Drc%N{Cl9%lEsL!&>
zL<s6mGxW@`V!H;9IR_IZ2857P`F@h`>(O>&Y`t^65M!e=d=jABIX==T3Chh>cdc?9
zsF_O$t4yprsmVyBfr}tG^8kNA!sqqR!IMes_w#!|i^zfu<4s1-^6%u#`hUDB6TyV_
zg<vs9$eE-OGWGB5?3yK0H9&Lwr!K<IaW@yBJI+RmA7<n5qV;<u>E+}}CDd8$fz4Mp
z-nuL+o7&W79gDK?6>+Im9T)c5?;$%Zr#O$Cx<^}g%dZ=z<(}GZW~t6oMFf>m`(7h4
zi%J_GIgQH7-XYAcp}DQixz2i1!6+^>F_o4c56sSf4OPnUy30)nb+Yg_dD5x=-b`)%
zY_P58zL$(X(g$xMLS@UooV^SI#;WACM*{eu3H6`0dab5k;NRh|g2>)K&sH)Q`aE~{
zkg-&1B#2>Gwq7;aq95~<-6!f><?64qjPXAh?x|?i7}wachQ&%KtEh-`bBi@oPykcF
zXH*b{bx&hu)7`kS^&Bmq;UjH$w&pIgr4VFE3+(D(QCzd{*Itgi*{Gq+lC~N6?eoC!
zPEQfb^b$|T#iavB=z5Kmtk1A^>2$o8QCHAmVJ#E8%>~S&OcVxPUR>IVRIE-Sk_J_k
z<>Hs64xbJTYZHxCpXZu65~08A7;W0;KT)Y0z5~IQ&tWXyN~QLi>go~zX2IBPj&lZ9
z%-nxY>(kC*`a^YkQc_3|XEg&CBonZ9b;WCYRAp0<LPmYzBbX*PpKIiWTy%|gJHx8-
zSuD2ts4s2BjULBU;%6^Cm=MMl=&XA#_bfeio->SA-*)i2?O4B{ptc({+h!6n1V&63
zk&iyxNVwefS^<Lhi3TK6EbJ9*-jt;$UJ30}XLVky+uXazkF4M^RSmuA5~#UZ6A*;b
zEwh5y5So@oSaZPXx*<`0b9s4a=eG^eS!!7~-T$Stm_t_ov;r86od6{&DykbmO5!Y?
zx^GXRyE(g@8Q}2X1zL|l-Lenqu|wm(UvUULK>k1A6aae?q-&p|=l($D4y~KteNMbx
z+|M8u<EpR3qjBDOH@d#APY@(v$=p?JU_Ykizwo!SQ}_(55Al1;0x%xl7^GN=;Z+F0
zderBl)$1i#V9~h3i91#~-{Z2359Q}(0$%aJ(ug#NY)d{{70)mjiCfL;YOCe3Qu0a#
z0!Hvng2}$wvc_cuBFD0|nc?nGJY29!yujlD#UoJ9&lrbEH|7K1a+hBG{bAhi7ES6-
z>(wymd7QSLAMgRqhAyOq_eZ?%rk!J88497(v@~Fr)z#L$DTU5b<twox-iz>Fdd+>i
zB-+EqT|05rX?-?Z8R|FkHuNGQ(tPDHB8FuA)O9Sx0jc4dOjq~_%8=oWM7znI39z3X
z2~O=L+GLwE7_6r{O@RAIbzP6rypU9q)hEh+?6ekNfiAqAP5fI-=FVVo=zF>`deBl>
zqc>ne9k)_RmQPA*_IU%Z=~u9LfKV57ud6{CtGoG0nBLxe@Ww|{u?X9l8fqOgo7A6d
z%x!XVXiBEv9=2P}3v0a4NIvAJWOcmU3NAHkePZkTSn<`Wp<WbX4I<s*0Qx!iolVt0
zkO9mBfhfBpm5L9|9)SxD7V1wc+1ke~ZBGEa6k*ln+-Qo)YA}Y5e8(c&(OwjK-oCzC
zmi#sLr@5O=$F(e*a8zz?0OIkIKrln2VF}#k4~ycvkvb)5us9yx_I~f5@UaYpgj32L
zq5?azZKDH|VJ|By20Mx&q5-Sb&f4<&r52wSL`?wHu}1!$D!#UXI?)j3l;+J_Qfeh_
zEKq$174sn6qk!M@v*)4b%#tLK$yoR0=%ujksx=ZRjR^+6Mbvew&;7E)FZ8a%Lf}0C
zul*IPUg_Ki8s(#-Qbgv+^sk)`FSMnz33&=e#@EL~W3`KFL?U9$@kCEQ`GOe>vKAw!
zf8F=Ml5A=GGh5icVE*Nx7mY|5TwT=-D}d|#y=#Na1eLQ{l+#`YB1YoLn*p8Nr<~^U
zE8W$|B6-QV3gL?uYOqRSUS3Er>!^?6zoe`=4jJ4G01pcgNdC?$QGrD7978eWVu!xL
z7-O$8*|q{SCZvv6|4%4{%idfqU8N0z2v#Jhi3jL#pIHDpjq3xy?>Re=1O5SY7t9s$
zzcW7l9DM(7%kwekQplw9)B!XGR=VsCvj$J}8?wCH?4galZw~<>?abD2s$DxFQb5EE
zWosE#U`6|Gg7ywGANMZ;upGa9R()&I2^2gqiVo&Myt=un$vE%GC#FYc>p8!20>9ap
z4CrIZ$&)1+u(H^-vOMjj6divJ$@JJLq6RY0vh&N|1Nz|Fk)UtGDFd?l`5Tg0s2?_~
zqQ8F_FM!&3=dH^sg1^mW1hNo4lNMlgy|0(pI5<8og@*iW2E30YztC91BGTgo8Mg{n
zUSt}zEy7iBlL)8yy8Vm3tk+tVd-@CwFJ@+O+l#ZL$$hopGVcyPn53bXSyp41&4-V3
zxS_$EYRQNw^H2?J;Dkn%41G&>vZdH1UKJM!y1*nWYazE5^~jDDHzb>`NL<VRxwN<C
zz_oc5axnu+^g=+#%2`t`kxESL7kE`eCY+pT<gJW9<@lvAT3DY#Sgv)H_wTgP9Z4A0
zqAGgHBNE=9O6N>Wyg9^jz1L+p=uOo6pa}k3fWB@Cq$6zf_5}{sQ_F-Drt?N>e2897
zKgEWTiT{Zfo)s8~Q%9HRveLd{+0sVP;zDD-j)3v@Xu4puBShhI-+6t@S!<rEpP{zr
z&1t;}(LA$6WC2pN5>60`NuNbUa-phr+tQ7jYVu>%PIs_a=!BZbEOS%q{hIWyhhf5E
z*UvQ~`yN||$wH%ef0*rcOwUa4dnCmosc*ra|9J-*X?xVTNc&M-b+>lW<+88-kqle5
zdl9MidiwL*Ag}H>u~sp=%8kM>P`G`@^zHTpjBRuQ^GScXWi~QA&djb4UhWz?6ai&5
z<2`VD)@x><eD<pm%W7{9w6A|zHNTHo3#fhmvwh6VWbJtMi&Fj47E$Ridc2O)!!V!n
z5{1sT*5#I}veTiM-Au&BaoFphueu-cU#k_EXygv0f|(9rZ1XPxB!4k}s)g>hJ0P9H
za?vZ&ia{C9;u^brRPaD7>v+Dhfkyypll$3XqX%wDItw@^r$l(b1@V7+pEW4nY=cL*
z^_^~2Yp+t`r#_BrH3`JJ^x~=y(BPB(5JfZ(c~7SI9_SW#hZDmvV*TvP8o8%i;$@P*
z1X(w3zWXGOe~aOc?*v2;B3f+~3sF9kM#aTZ&Oc<ff6bzur3Ll=;@wTy&ofL5Q-8B*
zWN7Fy_YQSFu;+X&0V=Wsf>z8AP>_NN(EB(^&DmvJUn<#OU0$cJTAHz19GP`*uCQ^K
zM1!4q6eCPbF?4NL^R=!KCs&l{hX*E|WxWqL?NKhUmlTh`;{-y>nb?ro$oFL?;q*DT
z96-R>MoiZ*Nxr<Zrqw@cb$AVm5U%5d#O>y0nrnA=msbtWD-h)h`Zc&DFpSHe2{?=B
zf*kfkV<|*EFb>JW8;!X)Jz)r54XWAi7lWA;O_veop3~91E_K4T#8s<06{LeZ-2J>C
zZdm9`m8B85@W3JFd7&#XrCZ`B!_SM9a-m5apEOq!q^4_-$d+!ADk4HN1v)y)JFbpQ
zwl?49egopmP!6+$D?a$p$b!K@EU5cMXQ|mL*Z36lUVrUq6W|$L^5O>(d)&BRayi%A
ziXq0asH>ZlTbn%bIj>M^c}f2M%8de!g8=gqB}vKQbzwWZ%~}Jf;DN#B%twrk+;I5p
zlGo>*(WU#&>g~O)#sGv^y2~U$)a&DYJBu*T-+$xfzuo+J)Kt4SU3ie*p#8F9O5|+2
zyDk444Gq$ck558oVPd=&R+w9wQg<`VLQ~uNa7`0JQzE<7rft)fgb~p~QQX)l^8ul9
z|K*%`vkH@JeK?Es(gmCtLHKpLKEv&ibMu|KXC;|^+x{6Y@R;NO^Fp(fU6nzVMg8L8
z<~a=2oa?>|g$)02HXAjQVg!9JmyFz7917-euSKzb=A-g`$|)-=yS_Pis7m(b_5*?+
z0ck-nHZ~U42+G9=>;oD&%TpQjt&c-By!_^o2i#h#Q`^V2w`&^3Lu(S@@3x)FOh%s9
z4r2Zx1~&L8eAizvF-1rYi)#=+pJNaZFyu}+=JW6JEs~N4I#L>-iR9PTve%i{mz8{h
za%SmsG0a4u%FD|GI-eMbE>#{;KCc>_RgTro<SLR?*P%VY^xbN}pSIyYJw><$`mKfU
zx`1zm+nI4W_1lzR@Ppk*XJ_YWxv?7Btpv~uiD9rUFAfu|-f~xQTJkNRzR)YB7=2oq
z_owJ-XJ$SPll15O7UO&V*0u*SF5cx9$?CY%dVbW%I*yc)4kdIk9x(}Ey8kb3U|Vl2
z-)X_KQoHcT#KVXt^lM)NB<uGV=5&Ck^&ghkJJ9#D()m?UB|7gdAOWa7x+!Au5vT}8
zF#!i=*CqTMX^Xy4DyBWfIDPqxBc-wH;^g++@1uNB)HFpm$zb|fR^zsIZl~g&q+m<A
zZ;;+({4M*j`nmbj4MY28_hF7;+3cUA<C4Rt4&7`k7iTK3bsl7VfpkF4{Izp;W?4TW
z0vVCXXx|j;?pe@d{jGklUAfPUhcFl`%Rfr={GDM*=Z1AZRpUHm#3_WTdODM+ur1C9
zi-v{8F3p<v%$d;TyKV2s&wWYXc_d*1DFfZloBdxO_RQ5BD(|G!r{beF2))&Ld3kS_
z7Z-K+md|fygW_~sgv{T|hvaJNH;O~!N{Cugeq!ZvVsuG46HT<})(5X?$}3lN$n1Vi
zVg1GI4WUs>`8j3pe!TWteTNA-$$TwvICIFbupECmvf9D>i-U@uCz&`B(7HW-iu@i$
z(L7cmjc?O*zZWMsbXwL=dk?m<J=dkh(ocVO(^HL2hN1{R<No@*G0*McXJyODy@|=@
z{h1naptF(A%@awJ=(+bD2VSpOVu0S+w^mD^8~7B5ds+Jao74)*=i1JEF2u;frKu0;
zRvd3jVlz%YV%s_mv6_s33!22^qdHag96NFfWh`Y&4Nc^+23c>$JgRqi|MY&&Whps^
z#Dwi*dn=g3O;&Tw-yx8kWC3qUe?d@)GIM2z{e65O$qBS>`2erORVwI7Yrkf^U3$Ju
zN1T-1-x4z3Poi)-QxUDLy*$IJ`fHgaPq-arfr!KVROYN#B&v8J#2I>OQ`xdh`FI&g
zl1r268uiM?5lGFdi1kA}FDUtkf-KIdl8_*|z@sTw)BSO{D#>C3;%-lOa2PFx;ro`&
z_XYZ|N5r#Zz7gE`<2(lqi^j|TJmjwz7t%L?%`0XpmBWIM|Ek}n<nxfG-3wP)S!H{3
z###F@@~!~EPXBA!V_km8uUg1rcy4<HZ0S~nP)%;K08g{un5@3|euTDoq|GY=M=fU~
z&G8>WPR{hcUZWz&E1_oqN4C84S2hex<K-N%Jd}_Z!z=EKJU`6wL&g9bVUTFQ@;6Bk
ze2`dlZj;{<1OWx{J-KJdXY;G?C3Is>^i0=vOLHpd>uzN;E6zu}WK0-vo`Jr_7m$Vy
z=%_@#6s!N=zoZz+?SV=xJ{q_g_gm#ND$T)L<Bu>@%&p`3U95O7F&6>x-Zwrf)!h$i
zr!fQFaw>E1N0Jt@Z@E+G`Sb9zOxyd}cdYVgsky}Sn6^wrecDe!g3Sb3`1u;bLKq+s
z49HYsyC?w2vL)jLPhJetWS(q2a`W+}Ww;M<+js-;-W#9Sdmm<6;oAoQ%b;GNKI)<w
zLc#ZRQd8@GYo2(+e`*>p#_PWw>GN!OxAa-JjY}W!!;}<tJnyo=86i)<Jnsu?w<t8v
zRAf6Xf)?=L`vD+iB9L*r0sb7|D(dYm0KF*`%wJm4Qa#7(fQU7p{24CeB((*Qd?h4Z
zKqduN+XZ+Z$VW)J+Xz6X_d~)KVU#4|b5)49+VX3q&c-%~LkfV|19+50U61IJHWwA}
z_l*VFZIS$UA2(Z@3C4)#LPA4BRZ?sK&=g$5!4kmjI85w#rXu2T3`t<om;0zp%3v<S
ztLL_h8@Z+`g!Tl~R^=<1$9xOqBz+@5M2(er=|v^5EZY5!sv(pGdmDgb7IP&fC3RpT
z`1C26c-TEmJu#H~`{zp7klz~!PlNK_IifOOzI-Y3-f|xvJ;fnyeAr7pyc%Y4`II;i
z775vyYpbflXwiKys$SG#E{vW2hIwtZ(!uNfvW?fVHe58$LV3g0bz*qS{khk<$6U(J
z?Yw^Fi#+DxXgl;kLNG^~r7do6EdBUPhOod-^AliL7RsnQqTJ$gx-^?xdIz9L!ONc`
zg=WMEDz*WW|L)S-jaKk>^C;w%XGD0d_S5|3x%WNq%j<%QZqQ?gKsdwDKP=+Rtr1m}
zFDWS^B8>n4`q&VGyJ!vDSK>SFdiK(|^Ti2Dl)lbiZHq}s!FLDj9Ike+Rm0hUky~%W
zrLiZO*LA`Nz}4vLVU2D(8}L<GuyymCIj%g`SQy!iX5z`#HEkGPlgvLht{r(gYfDH|
zctHkqRdijm!cY!kiC{lHjJ$%X8Tx-;-=BM4cKcUww%jE-EfBr#3_h8ir*vpoU2p%9
zwKud7;UHSQBGDD=Xiz=zS8quYH&_~F?=scj>|ZuJg}pl~k9s#Z7MSJI{@^gQUKNDb
z?4dUzo}B7^%_a6h)Vt^tjLpvKO=<^)R5FpkV^W4A-|4aIefa~4K4?yt2!vKQxYYHX
zfoKW2E4RL+8~*pWjn3zp{*lw4nb7Df0Z5V-0e<<Pk?lK!eT}2yaAUpLB=f%IAZU1H
z<89-Kn?aF-=kb@x%JA27`56s0vs+Xs-}BkKA+KYR^xsSPsby8VSy8%5CY4?($n_r7
zVN1K$)XZ)#j0~Ec;_8Vlb8pdntB}C-jFdc~{<-8T3w#L18bmvSJaRTptxtCs9t7n@
z2}?X;o^|BSNH<QcE&IpCUd>4E_|w`%>#NSt$8^Wxa>4CaTE>PLKa8S%r5P{wjwC$z
zdhLFGc<a}$*W7Y#bXuj1<h>rG`OEo4p41er1KxEg+w6>E%shKjbp$SIhv&XX=-*)X
z)k_AJ%7UpW`eV<48<QA<$$O9UC)nhQWT&U$VT*&3(vC_U>*MP;F<D=6%8H7z=hqjq
zY9Nj+PRGKfd^4|)$LWTXJQJ9ZI~U^Yw6w9;12F<SVqxm%-O7yW$Nf==FZn*Y&kZeL
z0oQD7nh*A>J$yocSta)(mz#e`T^AVN4?|M6bauKkA}s1!d1<ZfKU`z{%i_ySeBOMp
zl`ylU%RSrV3U}Mz;4r6g2}?w4<2a^VWFkz@auOE0EhOSCo*-!bG8@;~QOliJf^Gw*
z*ruhVkBBj0-j57YyKsh=1)Xzx1D-^o7YvgjF_-C{UHz;B#ZS+|{Y7k8Y=<|8zl4C4
zh5W+8(lG;8?HL03@oP_>TjbZ^EZJbF`(wvPipa5JGXe}Ok!%W@qVCat7dI)+tjq9T
zUeyQhx1Bhg?t8v-R6!^({(qDG{x<Drlp^w+(T8D3HSTA4m`>)1F$*P8lCu34C9U^!
ze8(XK^&#hB8$vilrL12|QnQ_@C>d>S_O4+jGAUr|rpBC5v2uL%QD%$u_z2f52tAaC
zJ6V~%wtYV?|8JYdMAf)fi}Zsjs!3>u?J0;e>lDBZt2(8IdY&DQ+%=N~9FdIq@it+)
zWhLB)+js^<^{uj-VdV9l13zZo5ziBI>wxsK;6!6na>uTOZ2v{-sb{EYglS<0h%;iq
zn5wcRiXa;CLFio@Fs;zJ`X;d*S`P*8%KW%EoUofh>;T3`Air%bpZ_fBpmxF8Wkja%
zSUl}hUwdUGti$iklpeNb0g|F|_9%i%AhUvb8_P_Hy!RHVbrrRz<@M$K^$ct+$`kb}
zG<L00=qBqXwH*;%v3^1j@|ScyWtWU-Adi%6DSQ|xo+D3xhVK9Sg}WtJ-xUzySfOIP
zx*Y6%Pz^g(Z`M5ek)h43#)HT>8PTI_j6eMZc>MqCLi=~Uc?rKcZ*|@4abV1lh4w{e
zW-TBvF^ziB*-Tt*?BcPcx%&1G!?ahFmXsXjEFG+owr*?%;~_gX{`nI_Pfy=WCD@!u
z_T=x|fEaiIwm(U_#3AJN$1e>nZfDHYIzkX9BBN!D`#z-{=V8_uR>44@t>s+2JjY%&
zZ!fd-(RndVF22bP4zFEgHtRF@cO4)_y6^e{vG8Y%{j44>PN)<4n=}{^k)ra>uf}}G
z6$EB0S3yIl*9=@O^gkW<cpSik*Tz%NHeQ-euItjJX0Or#5+V39al#+dIGF-gJANB+
z4afpKB|DzK%qiIiAceU^9vXS#;a56=2z-K6v+cgsGWv<H?k5%Lq|c*i$@w^>xw#a8
z{~3TP3l5QRyK)I`XVWn-B<sQ(UDgDW?C#>S2|Vb{uj?**y1hSZ&TjsQi8(X`-=aHE
z+FsVrh_Y`tSH|eP89zihA5b<FWkY<%x{_%3?Ze~k!+O^B7c~V#ZP?Yvsqod9FS+2H
zgTeUm;uCqFJGi#ybEBG~x9Eb7ljpPy-mN8t75NbnHK~KER4oUK>1(AdsIC<G{%^&E
zV)I9tx*&d8<qe42^8^iQrjQ$kj=>V0+nKp3p(YXmiR};GdUV|N>@yewAMuj~Vvj+>
z`HQJ^w0sF!zt?os<#63vG!LsYj-(^eOkeYDX<#(62xQc^Y^xE6$HtsFzlA`1J(?>~
zL&>#_;6mwvD7kAVT%`=s4Q05TFA0i6`Epd%xh!6OLhs%qMr8S3M9at!$`9hbiqEP)
zUUsXvn3f|qa3x#^hpq9WNaUr-nyGUO$}sBPqm(RN$H*_A%NiK`nx=&|7p6lOAiO1z
zkxzHjm3f$OaDLMSZ)vgRQrN#bO~r<$h`-4bqrEWe2KNJ=jISg<&#WB?60~1FNxFY7
zs?O%KB9(w%XTGYmq;lD)^?dPq|AP#Af@&lGZ(~TV#iZLD_it2Em*j8aRD=Mw>?8<C
zVGjv}EWqsWPG`j+-nUd)R5XcONrdC)&j|<>z_Oye^Cu7`{HD-6{T<C#0_6|M<9UUB
z5tawU0m!MFRPT6Hb;5!EWdrObPq>Q6P(m*2G@f_)l4*F~ewwJ$PU||&svdo;dbd{v
zOzfqFuK+G3L#Ha}{doF6T(OU(TN;q-Q!r4F0z&Nkm8kFB9=5GRM%*L9hn*v+kPxu>
zOvHcWDfrgl7~KaFAVw<k1cYxFu4O8;->n5bD-;GkW^>LI{?ZM30_?h~%i@v5vOpGH
z3qBVQQ~ke1Dey(RSOBc6YzWhO_AkYT?!!V>Rq@mB{U?_-HwpfI5hCo<sh-amf{K-#
zMVLqSm_WMTw@?!`3}IGlr&J)bGf&c8a-T_0@_6vwHP1wz*y@KglA=!lG+a5o1!!bx
z4X|}+KsKNA-l{2V!(CnjwB=gFhQ<#<;8_wb!#0dS9odwi@0-9fG^>w&FO*6;p%Ftg
z`jtWdA=Em8oWwlR?jwq`c@e;W_q7j-kSXxb^;l0yO$F?Zs^-s>)YSAa*~A1I-L2PS
zyyfms%ht5iIX0imqI2|q6Gi=IH8G>oC@KIes%qOT{pOefjFZwvVm=$<1Rujm1ohH+
zX~(`>2W+~}?~95JkN|}|1{~bm|MB7XR_yQdhLsQlK1|TICJss7CKQQ&&$S<!5a#r%
z1j)6yF80?s9h(l0X#+BUe*Ct-kPqgY<Z8;N*q0C6s@@o%hVS=FGSxqM#v$hQWy@I3
ztnv*qYcgn_VhOU2Bfg=LwH7U5bucOFVRDkY<rwE4|4pH614%ogeWBoWxow`VpC<is
zwh&$J9WXoCK7*u0?%l>g`^kFQSpn*vig#%Dk{xAQLfM=Mt3F3YmM+zI*3W+`vOA@n
zQ&9NDkq?JXR!ojaFiJbEUtW+u%iF8CkY)S-q3kQ8>g<v=33`wq!7UslxCD210t9!L
z;O_437Tn$4-3h@ZIKc_-!O6UQ-F@3;&AP)s;J`Y(?5bV$NL5e8{x`xuO7vy@0VJls
ze{nW+nwGmQe(2!Y_H5Lh)snFxa9!J7)H{CCpZzn_jQxkbFa}2)tSJ^GO;++5q1W!?
z6hHG}3Dsz>zm>(WoiOM5P11B7yMw!nwGPmt9TFVE^Aku)pJD|rdhB!tVhIfz_Kn}S
z1PaX^G1@lxRy$OIWNKLGH?i0kS18Ah2?r(IvX%3lK3K>|G0n@1T0ctPS&JeI<+SD{
z7!i&P$T0r(e|U(10I~Al^`hMI@(xoY3^a=qc`2d62$J|e7`SBR#-fpt$yf)5Q0^?i
zE)1xtLWH3b@l9lKCj6+@twwQa_u7dQ2l3myC1ZaQpq+u;ifvC<CwSaR_)NRd%~i?1
zay9AFg-%K*5tIgM0Y==s{K+A_o)Si(B1uq@tSB$vj^Re36y?z7TMpou6;OaCMp4_{
z-KA2Ud*A>iQW8lye~hhR=|wZs*Vujc=XOhnExJFcMr9ZZO%7ez4oQRqwN@ao-vB$*
z2yC*98(MzXJ4L^7H-P?G?JxvjS(FPzGqH`t=U^1TLm-K$v=JDCGV&U~UuN%Y7?H>M
zgy|;9I1Vps2RR{HKPMw9P=uPv1qYg4GW4x)1vPXw`n4fDa@$6CKdzlEx1|QRks|FA
zowoTAA&E$2oB`5SHL8HTC|k)tz=ZX(ZSb*~J*h+>7}J6vcjE<+2bFfDnU*oV?I9{@
zG>AO3xB>RQhmXMD{%WDWz9}d_EnTbberY4QUT(y{LRC_*tJK%WKTJwX32R05@&=IY
zIkh0E0*WJ<^l1jyeyCIh{KLK$Z1n$$p1%bVEZ&<AiVZ{lXSBr{Vh&`Mj|yFXHAW@~
zkc!pa8Sjc@b29#Pd>-WfO{Kam2c7viuemhtP~gAWW6|Zp&8v0(HY%zpv>=Y<pbU}9
zTsq#|`J2h3yW<kC)&s=}0S+`UT+T*Oqs*b>x+!><Mue`hIpyHGk&e~z<VyAfJmJ3C
z<HL(8e7B<U@L}|H^N-a}alLUE*jSU@9Oinvl8k~qs-Q%IC$-iB*|Zj4^KggK#;)+Q
z3py46S7?lJCm4TQL9Zh!n2R>2=B5>gFPz6Z9XL;>&PdAR9VxZ2zAQ~u&ybUWk|i(m
zbns_Yu(IRhO>=i=E>?6+5BB@_qY*<^9UH%@o7CjmPTO`XU{^;FgCAX|3q|R0nwpxX
z8yB*M5yLGwKSydHt#*1eYYg;}ywy=KS#{%WtjlwhP=aPvp8r@%;kz<DdRlK-8id*M
z8~`=%?dnO(x-eI-Va$xq@|>vQVx^C^TV-FCHr{>~q2yNJyR4~kPZ}*I#c6`Y+2U=@
zqP&Z#0A22(O8Bi<#2ZV<>t@iHTH8nglC#C9wlrV4P1wde=YjY6M>%diY`840%#CQF
zqwD-5{YjR?*-6<G?_}o$^h`pTj5Of~v4lSlcKnd{JPp)LR1aiqHK1QG3UiRgXs@xV
zhn@JenmazNR2UG@#=EpW>QE4{-zR_&Id_{WXyva&4wQ_=xR79v)E%)kUP>e#`)?o2
zv8!})aTYQK8D;T7O5h{GC>i`j&;>W4bVB!3a{UBX#E*)DYXyJ9pZ60k4|6gb#%1_z
z*pPYP&?0b#5NB;OtPnO5bvSved@>X!e+k6aDljrgMZDc|nqS6x4o(0G$_%mUoBkw_
z;m)RqYhl#iZiCKf<xt+hV}5BP>;e`UDrelodBMutZ4HD;eV8E=PdfmZA<l@z;%yW_
zt9o;DGn#-qk`$m1<wdyBMoUY3JcEfUek1fjA~$W-lsvF(pa10o1vAJY7d~1JeJ<ER
zFWP1xfCnLd6Ih{Jl<;=M85pyO)he&*+jP9vu3DOJu0X=qC8XAjf7auCGK6zAXT9^L
zbUI;^3re0lV$E;c{ha0Wcsa7}Wcj$1J`DRm0}AR5kMMQ?JI_klxt<cW)88=$BtmE*
zgFH&_K92A++fF1*@s_e5!9g#=HcoA_(-$VAzw5eR`U=aV_pp{<Vz9NgjKooG#UaSB
zfC#{cKGa;o{P^e6!o9j@N9I0$Z%h>IaB*{Nowk-19H^jYOZj0;OE6cSv^2L&;sg#h
zL{U=?^kGu1H+(xCvlq?u!=zS~4pKnB!7u1?&L0@Y<&Ki**loVJ+$7=H*3<__x|)(Q
zo;I{}l|^gqDAP~(iuW+gz6ORQ%1?kjLfx(C>uK8+0yTZ9l950x7<lGIqu)nHz?9}j
zU%pT`!ndF+m7zc7g?m_2@)vWYX<+oCMbHMNH#7IvMh|813MT~#ag-X%6<Su6HU35m
z#mf|+llC7FN4#_Gm)9x8>PVx`q=$LFGsX$Z>8e3vq$a%F?dk}gXxslXbAYN^x1Up%
z%`7J%r<d$}bZO$XiD$ljDfi_d%Tg+XP0-44RuMz8K66{pmR7s-&0zRj2uQW_Im8V$
zfgq-s6d;qKriO=|6o+nvUfIs{4miF{^(!SNUXi{+KLWaFHHr_y>b95_bbMV28<pFu
z&2ruW3zU?-ewHwz{FKAJUi26*4Q)9dU7IZ^3g~lH`d~60@B3Y7>=8Na2GZ=C#uzYU
zQE{=Nv~=Xd8`W5ReYM2HDB^6D1L3=wPYjLYRg(54vlG%coL3wZyr5|C-ICjz0Q*cf
zMR^8RR%LM-WkHK!kf}Wh*5*b$!I{8mu!Dh#=_ey2qw0$~n(yf?eqG46bW6Ca*%rb+
zyqUV0UshY}xFl?kkfBPe^YZ$_*`e^+tqE-Xx2v?<$EYi7R2)U1tKOW<ETuaOr_SLU
zkZZMnPWdPpr61`P$=P9JQBTUTMYvKm9(p_XMLWw9=I@2nKk6w(Ki`)Wcujd*9!wK~
zLyXsxy@5d@*TfzoHlCJ;wK9zaT;wy;n=b4#RVKRJL6!Ji%FXrRiZ^jW%a_9xDZi!;
zf(?H)$Z0SoqTT_>hyDlu79IA|O!y&#zxvWUNWZptQVeElMKlcId~~WvABxXeIl*<F
zecp1W9PMH#ChthgN$Sk=yXrYL(nh9dBzkkF!#8lS(o1G?W!}8Wtd78EKiwMqiKQbT
zX^gErZ(eKl{p&OEim}6R*2cHg-VfK(Is_HP!9(OK-DbO@Uq2R}s%frBL}1D62W7$*
z8u$Y{t6P3q37f$X-rbs~+1`j^5TF%FBulx~LS^*C>J=us`ePI2hJ#4RPUpd-Sk}i{
zIJA>|LKoY!rMwL?R0{7`+CEY74;dFKqSDA_?IdrMFy>1vum^;N$yHfeSQcF)VmVlO
zQ)`Pive+Atm+P}p&KRv-Fd;ZwG}HS)qvPV!l$91%Wr-OTD9CunEerX*b7E=?c}fLS
zvDt!Ffo;Jmn?BD+x|KCR)5J{Z=UbzO=#L&PM#HoCX4gI)KKh0D_fA5ub<7+EaD@Bu
z-+T@%%F<F;xp^q&e=fDRh}>786z+*)@~+t)j-e^+pD$NkF(y>8v-OHV5!x`v|C*Ti
zYCCUy@Ed`zTSH{%*bsVm(-h!Z6_UOVh<Y@Q#B8pdlaWv6VMW^*ybeCOFE~dylTlE(
z90V|gm6bpl@mTRT!XNmyasyHBkTp~eY!^Pl{dFRs0|$;@Znbw<{l_eTR5$O<=oQCr
zR>?XEU+s|3a|y;~wR{b2?~!R`?5VfB%*d&xXtAwx*2Yy&UV-z^uPaQyb2wI)w?D5p
zw6@#tyoT?;BD5c;KpSrFiMBWT8RcyWOdAS4|0+L&!H_USRv(^nbfAs%H%4sB_F+6?
zp$9^Bx;Bp>1He-j(8vTFQg>nSuh@uf87k$|vG#5-Zh_b$<9bM2ZstAiz~B>Ixl;VL
zH<2SHS(ehH_sbjl`%N9Z;N%eq6>n#b3}X`$?3%}NJ@@CEDEbR(#y_oxWgi;M=fyi}
zb}UtGZ9f82Qk~Q{NS&EM-@R|F8V4N^bhPecmVY{2r+nw*oAUi+>cz7?V_fzpWT7Iz
zKXd)JlFrk&?HCR{Ie8wxCdb6~qp)P94z3|+kxbd-<}(-yJ{6K%0rB=L9BdzJbm{go
zl@r58$r9sYy7bAzwBFNJ<DcRn-#}kccN~mRo>H#+5-ut+R2&shhUtM)>kSH0KDt$L
z@D2{@F&RmQsRfS8ounZU>>JnO5LH!z3Yx9<h4xMa_$!h~A)ky1G}|1hc!7QO+N&GL
z?2g{Q>$9oq)__e%<yyPuTi6(=*tBW_`xy?%&xfkrd4S5-V~rIRg~)9OjmfUxp`(9O
z4j~2Xo;ut?pMt)%*30r)gtLUlVDo#l(wDtkWt=mSWu8X(6#tJA+fGhST=%hSS>Z<z
zccw?DPn%DDm|R*eC?<+$&CkCehSq?^L?v3f>4PZ?X%v`>%$<S%nV~lQA=Yuv*TZjN
zJU`Ce!!l~QgHQg-Qv#^x@Q`xo{!F<g=nv4cR3iWA6FCY&0&caPZ>iB_g*FyjlV_(Z
zZ4`!{$`8)>R4HlM!jh2iOA5Qf=LtwlTEDKjUi58;Iq$<Er{R=xZ-x;ZXjL4O$#&hS
z6t^?VxX&5uJuX{R(Wln_N=Z+*Ag_JPt&GBr;<V(V*u&f5u5GeqEkwZ;n(8bm+rU|2
zYV*CG3F1@!F>+R^6Nk^*7tG+i$dog*me)R5=+7%zqz?}qaEQ44+F2_@0n;%mQjQ0h
z;Ii4xk~7C!s(ta-zriopUqDzGiuYzt@eodR1pN4lMkL0^=cT2jrj{lm>jL*t?#vEf
zGZcNxMZjxq)e6H0=px|*d1!G2!!EvRT3@t1VbZ9mK@R~`#>2Rc_w24=0!6mxjKb<w
zo1Sco;V?1{=Q5K2UMU+TgF%OYAnMAiH&}`No5>BzZzl-l@Ap^x<-hq~?zXRguS~?O
zxgW;5A#ZK*cqsNV%50rfNo!sGYHv47lDNI=I^EXRh{^0~z^|$@8BZ%L8-_g7eYwQe
z==Sau?SOrA8N&aRt6+X&f&U@<Kf`+twa0;FUHQWDEHMSgoG$VAzXt#RqypEd9u9IQ
z|FIOVM<J=KR)7CKl6h~LZ~Dq&rbYk@IVeBWXQ9^V1}z#hnp4vvuanFG595~`4uK{5
zDjG;rm6H=#T3QlrES;ej+(-m(nEoQefDMf1_+SO@hWHKMcp6%^oGdkqoTL7$Mz{s_
zSe>^y9sR=pc?bK7N;SN*Xr5OYFhk{Vzb+w>T=TpdpIiK;bQeUD?+kOiE*cA71I%kd
zDs$N{*TwWZL+9tV)gw_w)Oqx%R{r)xNJeA12E);WiZX&fr7`<@Ewc%Ax+;7=Rs{eX
zhUU!coHMOOuTd%K=~bvc>hQ+FjMpCMWR#Y{qd++qVQ!s7->^=kI|t}lnS4)XXwGA|
zUM<<9ish973bKzbaAZhACI6K*aX=gW@1Gjrd*w-qHUG+(|G-cFcI^jKLB9CO-dYI~
z$6?^%PM*eRM#Mz#aY<!xWMdMbQ_)*d)37xusIesUF2XcsXLleY&(6|~v!S+ZM{`&3
z%G)&L09=|L@rLQ4k}VQps@Y&WwAuxQ`D!bR!Km_>sG}2HxT7B$JO=-f3PRX-`)@_g
z?jsQ_#CDkxC(%QfRmRt-v)K>N0ezIthx=4aUW^w})gfs+HNfe}Fa!B6-d@jsrr8~e
zpl>Vrbc;g3p*Ls-nS;qV1_`j9DThbETJcrUd1SKE(NU>#@uG4QW*)aoBbq4W6p{9l
z5=ufVt3OBGFW(VXU|0kZ%?UIZXQfp&G|HSe_Z}j2pYq%!f&@Q40Sf@7Ci(yH<i-T(
z1M_xO=X1{FDjJwuSj5xM>yMJP-`i}t_kB-iTAj@(JIcw+6KZ7=_n6>&wEUDgWvL5n
zwdB1TV@4Pz0?YtEh-YaaR?CE^2O9<kMA~kCXpU1Rp9AGtg;%?U4*<Eb7zEnzBl%rM
zTC)#DYqtxQUC&w9$AA~wR%Qx6Q86*i@Get4+6KH8Zr>bTpU80yvv^&Xd1B9ZJo72z
zKSE{-9a5te?ckh;j=s!8NILpI;eX)5`#6C1cQ{CirqRQUpPccqX34YLSAc8jR4eD>
z_6J%J5<4^&gN`K~&))vNqO9zM?U8?jDk_dGv<7vCR96Wltr@KHneKeyL<=sv{7n2=
z$(;l_7goo8<pfJbSBl$riya~i*)Rf+Uk5ZLjYU0N>sIU0N}Ks#)DF^V94c#6{k(r<
zyMMEx;u$ZcSLrz2S86o5YfrvGV3#BVLQIFa2G};S>y8)pN~6=LewVX>zCa+$s`lKa
zQQ<6CamwVc4Cn{TX=;7~M+5~0P22c9YCbG<zlh3B1!!zzcb&sT1i}gBmRh^q+3tHm
zQ-|NKxe$2)0zauzG-K=KhA?vJlpNI8q)P>uGTDHYl?miB3L+FOx2F>V6>}nWL{A%V
z&>28qV?-q=gb578e<~!A1_rztmt_)pU84zly>rrXS#$a-v;%AiY%3o%8P@T<5cN-c
z56bMpD40g!yYuCHJZ6@Xl`R4$`;@sVsp;x|2Hq)Oc{@eNgTi!a2l8vf+IG^kf?<bT
zAeW)}v@wb+b&{-QA0|37s5T2bL#kD7$Rpf)0VoSdJAsxL`tl%8G{SVL&RB&nb9goF
zbW*UY<CRDoPh*veLl+U`p2<(`uHJlUz<+MP7{XVc2kULQdjM|Exeg})(?(m5g6*q`
zwT#x!K&NFn16C9YV89$;4Gf38cMoki-2FA34;N+2gX;B_>ECbIU|2}k(}AlZXGJ>b
z;aoeNU@e-4#Ljyn9O0_C8SsB)4>^#Q$EipeKTT?0e*U~a?douECO#G|z$a01aHyU1
zC)qeTu>v2Zq99rUJ-hSW<jlaBNv~4}b2Mwfi$hI>g&#+BUo(Yhj7jTiusP95P$2B3
z28`sIS5<EB0#LIuPc=s&o>9RUU=VGgj^AZ1Kd>%R83jYFCI*I%7B(7KyIJa_cL96h
znmPzc{SbUP<z1o&s8c=4x=>3Lsky(AO*kXO5D7=`!J6Ax6(ufV%T2&dmgEDNI%8u)
zgPn)ruR-jEGLA$-JiNY(N`&<DbGc{~d8^=eLx8KWv}3iD=PS>VCqjf|&Lt^8by5&m
z&7GPS`u2d$Z7gylVQ5~<h+kwhrdzx1m6bB{#6F%8zNK5Fhf!UFDpK5DsJ;dyps-#>
zX>(lW?@fkiR1Ot)Qw6CiIDR=L)8VTnr2VZ(2^)*rI++xfiS=U%6a;f}HKO7kjVCtG
zxv;HF24e)o9PUAFWbdFS2%yjHL;!1+dl$6eJ^&9Y^SeODTJKL}o=*3h6P-2@d7ca2
z@SrHHyL4@nHKk|z9x=FJ4#da5yCFbkBEm}kN~@mdUETRRP2q=TyK^N8u8=(PsXs6#
z4EAPrcZ(BecPk}xlT#-Fd{O1Q&s{Q@OMsJgFE}#b0W*Q7g}c(qJk%aa!7AGB{)i5D
zJN^?8=ECoM>TucAhNTX@OAYq^vqQnpnEya{3SZr&WJ_Hgz`pJ(+&Swf7wRGti*@19
zT&dYS1FUJa5Z(5|3RKH*i2T%nz3w<G^TQ7MBl-DzlYI@s@Cuyv<&&#$Od1gX?0FaB
zuADC3@^e4Yi(K3rkCjuPfJwebNNGi96!g8>scYwdhPZf4v#63^09Wk-J22y`TDA}#
z_Sn14;)v{?&7tnqr2kO|{+%}X#Q^DA-1mU64pZyBUAD6RbLK<$e`M9aN{yZzQeSKy
z+OK+X(3-T18$l?CRCfnnEJ$XJn=sRk;&A>XSUgUAo%6dwNzf6WKGqXtBJcWvN@ezE
zFSz(G{mDvioxD4%S8|W0F60h8fEn6zBvgmJ{xpYEUwIrj3&%8aLBZQto>^;7!}1bJ
z1W}r<Z()K4e;Juy90y^q@59U*QlGv8GeF{jVL%<v=RR%8z_!4;B3T0Uh3J+rGcd%|
z)zwuz`Sorpsiv7EWqVH~C9>@syp}}d87}zqi5yARK=XKm!1$9CqA)21XP*;BQnlUV
z%1cHe5B#wQl)<B~yiwI=ahlCCqmJ8wG`HK4uh2Khl8CcbX)ru1jbNiZjj8!()4rv$
zDfTd?Leb93X}FZ_)+>2?ZFe4?bckNAcc|}kSjx^K{*le|uI5WsneZQKK94GP<xd(w
zs=$E;6g6dUBe2$RvnU$PTuR+_ZN@LhYEl;>#k*dq_-lY@TJ(<fk1@AJ8ny3Yx_ub8
zZ?`B;tzyuptn|7m*DW+0jxL2EsYjYa3}S0ZSZ}gQ2QF-%>wF?AgCw_TN1QWUm!Dqj
zm>3w2RLw0dDW~0kykC4vM3eHbQZRiReghY0X-v9fhX)rWl29&6c-(1llkn21h3;dT
za*PMw?d7$d7ri@I^!2GB@|oN(O?mk^`ibSd4q%++bm#4Q`8sI@6v32Jn%(K<>5OYY
zvWJ^{cl*We(NWL9cci1Hlog++ZK79g*op<}_EBkZmcnVqI1gx>5MoEQ-L4kcI{5IT
zxvOv;KkmmV!8TNB6h6CiDfWqIX4X2x*h`B3T>kjLGVj}UI^IV7vQY5k;nSCPG+0So
zgye^oDin_Am)maDKs`c}J=PVyU?&aBai+D|jm}4x?nlDSv?k`c8^G9DCQK>rBVd-S
zvi0v}9rPO;v>tJ}yWSe)9d_?0=o|i5>VN$!@xcTHv`Fs-634e0(SJ+meuBaR4D>0Q
zffxOdU)M<@i4t)<41vL)5ejmC-^&28uqfYv5Q&zfU@Ihjc@4^-h~)*-;_`A?BI+jj
zC;ZiOeL=`Tp`BTTXmCQV7OkV{t@9U7xduV^5)M5^6f%(%Ym|ooS4t)l{zKm~C@d);
zgUj!PXwn^1kdv3OxVjDI5i3!m@&mI8c3~0EXeb%T21;v6lD^FBc|{Y@MPVc)3L>j0
zI5x}yI>QzccGwz=)3x%KoMjl8;j%J!6{CvHHUo85^3>7MvQ$UT_#<Ay!ovCM0rYaS
z^$s@z`o`6D!9ldIEN;ZCN(A|V6`W;H2^=;jRv5V1qx+Z8Nd&7R#MAH?D;d?xQG@I_
z5}9gB?`daGA#<f!Fy2b>zXDhv&q0CY(s_0Z{MFRdI*<HHjc1MYNe}mMj1HOb5Io6C
z>H@aV<(q7agn6fz!O<BK+t#jvyWA5_sw;C=nkAY>x<}%SfLO-d`joD9rV_r62B?2b
zARt|vfZe-!?(g|+Hw3U1Rt})wWPQrz35{_(mp+XWv?3%**&rpWw6xyq=Y~BGaOYVS
z-M;T+4|ajw35w?)DRd6LO|aV@DiwAeV&ku>`^1l9=UOE5`Lim0`9(#{ZStu^c$aws
zyX#G1m7*J=p7a(JV~2~7`nv&M8>F+CJ2{lI60cV0I3oJR7$Saas(0>+Ha@f0#cRMy
zf<wF^r;QWV)t|pf_*eb6|G=LAfj?c~h~8WcgM-oq(;5G3i#CP%#wI(aeUHGK(N*Q;
ze$uBZYc`i8`c@v`mAbDuDCw~Lw{v=Elm7K*fFhq5lrkXZsGfk&S}Sk!C}ryyf))|c
zhD_k_6V49RiTLetS$UPhqb=GGd<O>c{Syl}uI^^djyZqY(#PDZ`+LsENr`ew{yz{*
zNmHn}7#Jgn46+{>0U{Ba<H~oV<Sk-_nVH#WB`((J>e2MU^^eZ?u^hE65kYJzs06GE
z6P2h0+843Bf_h-Ik(PU71l%}5nZb6-v%(d)I_l&)@$5(5@JzdWh0rnYYaXuYJwo~3
zLR5e^{m)?g*GQVMg`QyX-)8W>Ky2hg$HguE(E>Sne#Nl%pIia(OY{~=KkDC~I65As
zucD{~8TDloq2tt!YdO*pu0J6(&T*}Y{dAaAR#IJ%u<7m;rK+ybYE?R^*1Scd`N(1V
zaE)YcYFe~ZKU|OB1{s9-TT^5CZb526x7%OG(~gdYaj4W0IV3@Aadou}6c5-O9lw3J
zT9R2s#^bandlgdTxR+q+`1j>gQ6?()5LA|V$*GFqoWN2snr%S>y4}LVC$F;89rb-h
zHEGBsq9sY7j>7tBu6O_i8BmgmiN}mpq4dnXq*Xi;qCwTSmQ)Uiu7WJ=N&CR`c?_qp
z$_SsUzOBw0`~)64$>3j)3<m*((Rn4TV(0m_Pi#CV_U>X%A&z-t903$olu}Bg%sWW*
zqA(H#72TrrKP~^iADF*?mhm1WkOIjcs?`&?;p(2DdJyzq*LX%R2s%jg73^6;DJE){
za*pM1Hymmz+NnXLUTHQ_G&ZJNv%d;z@DgV`cut~8rpnvi>=!-$%^A8T8&sm}>RPg#
z%}5&Y?wx_z{)CpYj;Cj2I0`&`QALH(=$J%N(H@q$HKckRDE!>x_c1Z$wXw0WI`nX4
z(1M)g?=N_~ZnfsR0&<{6Movab+BE7*X9WRJJ01vG*?8l#o-N0G(w;m3Sv1-$7r<XB
zyAvQr;YnhOyO5617cr;WF6C$)mxAv9A}V~r8~y?gOMGSDb%f>7>2s%PyoKBt){pHy
z!Ornm>&2_W%}Rv1htJh0BA5zA|MeLD{qbc4gL)8gLD9>B8zphEmH&J-5<YaFp^(|>
z;I^^{duLk=L8Z2GbFhp_K`xN`z@R&bH-CJ=DnkbL#58Es{-o_jLqB?VdI!R;N;ecs
zxZlyRd{MBn;@y4EC5BF3K+?KgU23K$+Rs)vhV!0JtdyOcJURyeDafg!a|;U4o|0DK
zW&gtEi>IdaFi~bmCE`iNhZNM+SqFz}g$!+TNbto(L{Pl}$WR64b3?O&+O<S^=84t#
z>I9p46|WFuK2vECWx7y4dgb-F)9##{ya>Fy17-O9drf=`rH2vMhUdWf?w&o*WNhtn
zh*y~H^^Z^kVc6WgE&o{;VcHFGi4vWMUYU7SpEMHUmvBO-)Op5QwtVBCcI&0qfbrqq
zu;>3ii^YtPFE1~ntgJk?e!n=5LD6rH&FMHeQqt1WWVdI@v;m^sZ!@~5B{iRtmMM@r
zW<ma9b98e(lX%wq4+MW22Y-@UWC{YxS9vQ=hKaCyXulCO{Y17wNy=~Q3KG#xxiUBz
z4*FP8qoMiB;X^tJ_~<hRrUNCE2oVUIaXSsXM^|kpS9+1W8~oJFRp0N&UJ886KH;|w
zc;GW`W?&%f-<MS61V<Yud!$>96h_E|17}R3t>MVk8V2*2;piO$n!hhM<m`kDMQpxy
z<To$P1tVtt)4)&HwyR6eLucP&B%}0b50iN<Ir|E^WBA&n09ujh%_VdK@jW7k4K27w
z7ma|o(Ce(TGLWSNT|}az9)Q40FJ;)rIf;1sJJJNG*W2X_=TC$QDE2rOekUIPEGVmB
z;5}4eeK2neh)!V%3y+A<o<SNU+~>p%r%PZ1(D|NJU*G)F@Mxd&E5W0~iyM@;8rlkR
z|2&}oevbc<2KYdF&!d~RHSD#hjXzj+;G^Z`<sAW6b$$E@W#P-4U~(ix;mXR&(UYa$
zCo5Lid-NUWLMnKYhrf@lR+^%KukFWw*%^rg5@T}9K<in~=_~zmI$g)#0}}9ZT#{j?
zA|pwWx-0|c;K^dUtt)XmxWPtEgcmnq!FB%GLAI%rz#}3-CBOoxD!~e@X<3;Y*@YlJ
zTJI4|Rx8OilFyg~l<5BXcFqsn$dKx2<`1pgN?|fLbV9Z)H77Q<1HU97@8P~Sx3_54
zWlPP)@IMp6kt*iRdq$HV|J;#sJ*ZOme(^qhA0LZ1`(fz~IhwQhAwgtqaw4PuOtF)f
z^&7uxe&}JzD}|*-i<*bGCjN$wo-K5I6sb8Mpoi&&HApN`ao7X+`Sc9x+r574&^Knm
zLW^I2CwsaPDRAI$7dL`4tK}B<`jYCZJ38Lzqr(4fH2(Ap_I}pTD*I!&Yl4VbQNk+}
z_kVr%|MkV5b0L8%D5vreo?b=(YZ;1hY0H_58p66v&@-DzWex!*s|ro>-ewqBr<rYS
zZ7o`9wBXKvK!Pl64+;+cox(s%JI0%Si~<QsmGF*|m`-KB!9_T0fi;-1)^Llnl=?YN
z8!G>JYciabR7_OC)4o9g*5b>hva%#E=C0Cp2|d<(!n{jj8(TG0Wrwc1{CVo`g-n7i
z_{lcg4uuelFZSE`K2NTp%_?c^a-b0o97>}Q)mGqnGbfvrA@|ccz3`nSJq~4ON~f)c
zb_|MBmo}zKve8<zVQ6U)t=nZ#$IO>?`NeWL**%<d)k3W<U-scG|5j;IMjS$uC<p4p
zX3()Kd$LepfYN1w9Vw-;fq%35hs^)=!+Xt7Nbev~e?YLK@-N0xaOB0AIs)TzcL7w+
z$*FO9a%3cDZcfQL080RjuVdQ_)9_^+kL=9g<mBZ2yf6YHVtWBQX*3bPY-6KrogXfW
z=)2lpalHqHVtdU`!kX1{Y2*yj^?2<r`M2h}Dn;)h)g6XVL$REHEYFD%b=D=1URtyf
z!1@^<+%Qv;Gxpu6h4^ESq^$g$$aNOK4d<*%HMXGy$JU?V1c`^#eOf%soywRkdMgJp
zzNS;~ps20ovwUqq=~&QIG2N#U_Yy3WZ@CPix(p8J&uIhQ@Y&F%DtqduDC*w-j9UNV
zu!kF1tJ=FG_M~T<PXjFu6LeEt+Z2S%2(PpfdBsFYX{5$8dPx5LHwLMkYt5`Ecef6x
z_W~murBvrX+WCKq0so!Ke*LUQ7=pg6(T|;DM>Qx0Sb6knlkqDs)c{5lz`()HzN$YY
zqJbiJPe0k#%ZnF4Cni2jtYi{$JIe_Q`Za(1um(XAo5<%cVCi?Vlv3QZ{sfQkwqR_@
zP)VU>&$7boH+j0MS<W)YnFBhNm3^KR$|VfQDoNBy+8Qx8QawM3WZR8>GVjlm8S`dK
zQ(yxQSMs;0H-0bSIZ(!BOu#fumheX|YSQQpDYV}Q>2OYLOUUTZ$ey%ULjoDpsIvkO
zm{+`ztj2HqAy+OO5-KP5nc`a5i_VA(D`HnP6KWSU2go}AzYf=5;X3634R!@Na1a2y
z<T$S3qxJOL67ZdxbMw@+w4{L%BG5lqfSmwyQ&Tx8-+!|R>n+bX&XcyF@z&KV_Lde~
z%Vs1SwAQTF6IU1SbaL_C&cI`}+AY9^9Q1rqRaohgxo_BNTEZYCl69cZ62RA4tsI5B
zM=KD=k%+O#Uf&e*2JWfYp}O#G&g}F8iD=GjECr`h2g?|P<ZyW{9Yt+KLVhL5(gbu$
zGp!8!R#5y7qY4G2{I>*RhEd;LYZ?;Z=9D79|MU%AOhHKtXI_<^#`8O3J9V;H3{o*;
zg)f_dBL)l%oSckXz5+fC&(ypqZD=~!)f~A0lmt;_W&Gcf;HNkusIEKzNas4a>@U0@
zNi-FD&OQEGmvuzVP?G!9S;(h6goFTJqwHT+X=`A#z=lq`JGweubv}6SN3CvbN4RUr
zD<(&KW8~-gp2;Le<vGBBtSW}wIY#HJZskWS3%d^?>ANBW!84|O*>;|Mq^{B`S1o?-
zTD@HgDx<85ZNam}6r3wA9kPXRW|m`juA-wseI%p4qa@1)ztIY>jS2L|qL1Z{nKc#q
z$QrXi-(zWHGvjj}aCn*g;RmdgzMasIR^>dDk=Jw3WU#Tu2`wt~XpIF_@Nh9lKe7pF
z54Rv+si|WQdm7_#AIxSNeJP2^Jx!D(O_Itbk-2K+8QpH=E);5M8rJf42)i%zt2Vr@
z*YlxrVu!W$61n8CWuJ4&>%58pU2%*o)rQ5*%`6U`=6-^I1RHG==)Z7eX$lre;axr$
z5d31(tMXUA;xx4~xSd(U86uy^X4`=7cXi1Q$wB(HzW)-*I|o%LIaY0#pGWCiJx|?L
z6oH~zdW1ggWku?m^(kw_&_tSrm9;?uzI}s!@u!pbZ{yCpJBTYs=7o?pA=fOJy%coF
z0I1TUhAjI#9YdE&WH!EEF1m*Uopxh)aTp1xxm65slMXmO$`vG<iHhqdp74X$b5vo8
zBMW$YS~xXAI;-5{C`5CD+n;s!O)>o3Xj9Ibmp5LXL{Q9&TV&%<4B1$CQur53a)n+#
z4oq)>GfWnzJ3n}4I(7<PJ0T0DmZ0!^`Sds`*cYUoOV4KNNA`|8(q?0CxINi^NV@QP
z<JGgO8?QP~*R_^(a)7gEF(#N|!T27}T*I}hQrW=~e|7C~N-m`TYCFS9hIsm7)x`%P
zN)jyY0QHmo4%gS_S2Wv8OGq=FQxf&hMK@JB89RFA{WHbK+n+wn<vR<rG}RTVkDtDd
z<s2VFdQX<^*g5!Hw;ez>>MAKsoN0_dkt|INW)|%2sW?5&e8QfZ{oE}B4_|wzCL%)F
z*u*vWs1A-P_l4++i6M}Ti;HV;In$wLaG^GX4H8$BGlk}lX`GRKNum2lrWMp$TSf#3
z!de=b-G1C-40+M;*D2nd1?I~XqJWU{em7x_s@23J+js}bvMrSUZftb(_O64GBl&mY
z;Q!SR2SY=uMf9O~3OsSC@`Z?8x&I8EnvyjLZizbO_3r-whvg=?=zH=r!=}B(dI6jE
z$7dc2Wx_roFBv$=DS9iLZGjBQGusc()89Sd4`WY*2T#YV&x#SdS%yh4Nyf)^ajB_5
z?<}(KrO|p<uimdI_7xP9iBdzr%b*ibeAGubB8ep-pRlR574$~kE~1kx9=ADGh330u
zszqVyIYz9T%Qcjy?)ViA43y<VpOJ{8{^{*ljwsI*p*%ZrI8yvwlv@u|w6Wo$ke6PB
zCzjBWmy5TFgW~i8%)E$3;GtQpjv~Q!MW4MRWZicG{Ssx!gsT<a{SqS6w3xo@iXR>M
zHou-Beer|a8+0{3?|DhEEx)M&wAO~ynqxD9C&idduFId+s6*=Z_zPS5$xiDw(GAw`
zlPR1UyXsfXbYB`Un;goK>sIbKzd<XU2V>t-zKc%k1wnA5(x9AB8rW;nj;rlC5>_Yp
zKE0_MeegL^K`1)i$3JjqMvkW#a3Gwp5L@s&DK1B0!fjrRw1*E74Wjg1)$S3tb0SX;
zd2(z21o)fawh8uOcRJ6FiKSzsYG)`T?=%(%_UED(Ej}EJf+NF9@kkpm_a|5=Tm2)O
zPw%yj#B(GiqH;g*Alu4HL-pe9!|uN^66a2DbFJV~JsoZ%g*DD%6+>%JKhngkwHnQ<
zRdMF^@l9#pUelskCpc0eg9F}PECUCv9NHLaRk`IrktS5Dx}gPm<QIc@51uOJ>u(KR
z(Yz&(6RoZtg?;7U2MBoG1n~&J!~>**y*pXPf#<rVoz9*X%lZeZQ+b@v;5wAVD1L5r
zw0glZm<#Xw%6jcGq3n8B9k+XS{E9n8zt6fy86MxDvFo}{p+{amu6F;p8b)*$xvm+}
zYuku$piFE&Wpg%vH?9#^YU{^U(tcwSEvD}Nes*{7jK)x?#-vVFLL~O#9FoY$w4e9O
za_fP4)q>RGpfri4eY@-f7u;sXhA`SQZQ&72lOpz&IF5AUFwd6kDXg2_dmjj<uVInP
zAKAC>e}UU87bd+lUmSXzqZi!V+X=&3e=nQS-<t6#Zm3&5DC}#MYmePFS+-wOp`%mU
zcr2KFYH#482gIIAam@)&ce;SEbF#J<gO@rW@7=JxhXwPA`!f*L0uq!znYn)EX52sj
zy8Mn^re|S+4=|8Z3*AkCe^rx`{WitjE;1%2H#Qdh0;8y+!esn~tbBVonsdeN`Gy9N
zY?>V&;-yaE4C&6nOhpqGHUQW)0t(8$r#e<Iqv0m2QhaBs*k_%w$=}Eb8*I&gK^hu2
z{hgVA;~$0>lrj!=X9Dl3dGQGGSmUXqx%kOO$HtV1I)U<)yPe$U|07#qLZWW=w1G#W
zqz3KO8rMxN<>XLh(%GW6wlfjOY=uuG3rT^|>`CI*B(cQlX=x>8W#PyK8={jPJozGz
z8vu)*glI_sw0wm#GYSuYdO$sCAPHJOThqWRs7HzXq_<`y^Q!cgUQ+P<jUQ~2$unBx
z&3tz1J}0~?ST=2EXy96{a0h!3T7vT2PXOi;a`{c2Fqr15kf|4;>88>$LJv+EjH)C?
zK3p=mX`o^fC`781kn?WGTF$H=CGZ_;t$*rN@<bp!zYl+!&!AD6iBJZGLIS<TH`a-u
z2R0QGA&mxRZ$}otUp-fW#&W^4J7O6DJSw*4hPy1Nssb30_l`?%nGa5en>5_y$U(Nt
z@#@bAWGFjut-~zbgMiJX^!v3568+2NQW;Swl$dCwF=F|b!J6=&lq%T$_YkfABlUf`
z^pojU%;ighH?o>|hQSV-mE*r~KI41>BM7D<kZHvJC}Nhhnx&~ClSKWBb#*`MBv6Z1
zmabQmA2VW;C0tLKfL%C!?T}d@lHm|*miqt#%;75_m2^$#D{1$mv+T5`wm|gZx-?3f
z^j>rI=i0CECSXhho((amqcaWxT;<^-I!ma4rzCf*Ef1!W;w?NsLA%<-`HqjUg0|4s
z;2!@e70-gvrV<tv?SRc?-$RNjVN`EDhtv+|V?EsMN@uU%;tBYIO#yv7DPyjX2Wb07
z7o(-uz4hGMhkY6L>vXcLY6O%9HzFm$Leogl>Zpi*{YNM^b;{fWuCqpkzwSON$9#fW
zJBIiai*M(ZOHfkp-v9$ej7}zA8GjIA=WD<1<~<ke{o4rKn0|$NKG>@20BLB9hatXJ
zS#4-@5XB5CV89vq#gU!zsGz2ew!pgVXJIqUok=El+vZUp)2fz$FHe68-$P(XI8fdD
zG4}Ihr+07}!kv&jgKxF!7)?ro48EnOoQv*}NVgvN<5w&tMW8I}zlUjRVPklh(Q@C8
zAu4y=%f45YsU3;B%gK$zglF6rx$H>o6R|~IzR@z<yP7Ak`nsg(N|ntmV?E%c=vX2Y
zH9sc_U-6D-$nf{em>~EK0J5IbarE5Eb-8T3gtgK{WQTpsa_RCJDSW}*kE$Pu0$XjZ
zM|hAV+OoDze+WQv7Wk@TJ=WM#baDI+6T52J-yv+f{Qc7L#Wn;HOa3s)p;WZoScx?G
z^SmNPIkEq>>O|mh?1-y*)e+ezw!~dU(}t_}Awq<a4svo3m>B0*0*Vm|x_~`U5Rly}
zsi;)WT@OdgC{V|2ZW<;kZ2vx4su;y7j~*TnnVMJ4F3%FoIRzPucO?4(QeCMkxy6tf
zJ^<Rw417dCsl>n<FYEARhUu-%Od<!MK6!`AdLmZQCHfN)B0TE5?Qnpr@u`errS>xN
zq{g=MS0+57wA=DTu$*Y_Y;uQ|dzbMJ8V}#2D?2+rShDahobSJoiGOp&0xz*0MFp0C
z!&XoB_lY)!&GiK#V&<X+ias^?t+oJdb?1t4gzV8ZSWHY@e0H(c5Ky^>uDc)6#SBPb
z1O{<ffhEYv$!B)HB>-#q8XfP>^}QsTphA5Q3|LH77$Z;@6_dbk1u~IfFO}83Z>x|!
zs3&=<v@n?DVVXR&_c>CWyvb!axCf;WnC8e-V&}+MV!LP5qu#>K3%7I!^>$KV4b|pU
zza7AkX?f$<Gci?to3+|o1(!LHA$$yb{lt(_81Ii!rfsmYD@qWmC@1j{i5V}wkR(Uy
z@1bb*ie`X8TsHh&GMix_+eIuLUgcI1QFZW=X&ugTR}|)GgZ>3kAY)4->-LS^t(ETK
zoUydQ2a#A7eQ{^(*&p*u^ayftE<C_Y*VVOY0RLa|pSpslF){yS)ZEGOv$GaOJr`xv
zttRvM@+psDQaKR4grgOIHPif(9;4j3>VzOfB7)JJ8s+dQ7p<4Y%C2o0=KlD(*tx_Z
zFD8HhGDsd(TL6{sDU}9Sxws!|M=Z8v$~r+BQGqzIN)G^ID4|kJwQQqIu?IQ!z6r$6
z?})W1J?}(8sVKx22tM>X!NW8*t5wb=^q%mnPFnQ0yg7h92{qZm3XSP%lBqs!)Z#h2
zKL^ouIkzd0z@#Ds8fe`v7uA}lG<{YflrvK9tj64!nxsM;o-wf|BQAh~j~kK13!yoK
zQI(xu>RdK>|G1Hw`J++EH75g$5e+@q&1mw02lMwJhk)Ro)~~m{Xagz^U6QG>IeV}z
z?Cjghq*gE2#>akI72l%3cv~HMr-3IrE`eXQ__fEA<UWlXKb_2}Tcyod&0Qn=vmCme
zg`IqTI9-41RsrT&u#Z}`B7Wv6nKxNez7m)TMks9p3KgHjz_yQx1{b}4?J@?evLyxn
z$B2c-EhY=W_v$fFvG_kXJ&MgVpX=P{BY-NFc|F;oLEYL#e~fOK_qsM<w?eLcfy4&;
zQmf53EG?^|+5xr7n3vv`!C%2nGvZ1e_6l~c&<-WD$LQcWJz4|WDw5(kBj}NyuVSj|
zu)Y~%X3!<eir2x-+(CD1vdc1lG}z);yKBf+w$a#zN=_;>#bUCJviv(7JlC3@B_h8^
z@|~Y--1FE&^qJ0Z3-r{YLzU9-Wpf1+$}Aw$>R9f+`4RDJUUfmyt5cEnVVs?R52f?^
zJL#yC@lE&bx{4D)ff&wuYePH4v99L@=aZlMM=t=nP5k<`XjOfil-UXZlZCzC_$hU`
z7>X}VT%wsQ#Kb?REB$zw$!`NSivCRGK8;=sl}uRdY%&QlNgk{FJ74m@04zW5piT)f
zs(A=4Qhj3HNi+MI6B&tw-AAk-h_(Yvn)^~1`(;Hswt|+%FexbwuMwDywj&W9<y3|n
zh07ca_<hCBy1qyFu?5$C|E|6ku1q8tOTe49#&g-HEg%4q3Csq$e!7}$FNs~mAeQG7
z5GZHQD|sf`_s}-LYp0(J>|G-y!>?w(jYTc^go6>1lLm)BUgqmQ-5H3vnR5!PZ;n<B
zyZekZ+>6XuE4R`&`B~X2NMZU#=6-H@wMfg|ob^NIgcstw4084@9EmS-wgDdE4R9h5
zGVzX+5niZ;P2FpfLUU%)&7F3Jd9-<p#N_R%JJb~pHYWB)_Haw+^o6Xw^2zhbRz61=
z%bQHtqq3(vVhwO)pFUgXKhEgr?ob)`C6Qm`^2AaK@Xe2=f;(C83lw>q;;_i*U7+L#
zqGO@h7t?IpH-8?hWYm77GqK3Emqf5f9-&x6BZx!cNZSz`5Ui#DDOWGDs)w(&WxjH8
zN=&Gv*}(4Old7-=ssAzjTZTr`xOC`|Jo>dG56BP9(MMt+<RxnhZB`u%FScwO<(CqA
zgd5y8ZlO}1?FWYbAUkWHdX8j3I-&|LUq&MszxINsVgG(YQBfghKadg7O5wlO^tfzG
zXj)DKEabj^ky|onRT<+4KLW1G<&Y4D*e&s>^!&8+(SkECeC;r<&J%Htn0_?LIO-L7
za;3EJmJ~SWdUr-8FSvezkIZL8CFt9|k_AppdNmh<mCvQKo%|Cz9DfYDpnK7<CU2z@
zHbN}~G#dq_egN+0y~e6-FJAE@`}URS?3L1~P!Fy>LMs>^)d{s9$8lsU3!Ic*UnmYR
zp}hc4ac7IOGb8RDfwOSbqcR>%zdsUEf5^Ls_rWXx@N5W16ee!t9+WINs?>j(Hy`9)
z|L#Q0o=01fBqWL}B447MErn<_Ka?{CBA;lQk@OrNdIVh^_cM4)EA1p`YOcC{MnZ^D
zIZ*tfD=p5iEy~c{8nOJ`M@hz|wQFVJE0h;NKv#v}0SLsC>;*fm*N_W;w-|jx8l9lm
zQ_wFYVchbf;^9eLQy@|qMt^6Z_FNme(bv}T#Ia^KY%HB;sbVzx^{dK_Lilx5)HrqI
z5!9J&TpX#|2Ya%U<?LCj?s#(goHPSI_WMVSr;y7CN=pCi@7Uarn5Z}dhp}{r-wE`#
z)~f>(9j#3e$JIR1F!zr2VSXE8;Jp|8Ag-<K91x%$ma!6?Y-;(J$C8Z&&_)3s%ZqmM
z_HE}HcVjgz+D4^?c>Z!#1AZR9uW1&C-=+tiw;8qDzbQxED@Eg$YW^<)V!vGAy3WHp
z!B>G6Z%K@fh)}F5A|)kVO45iW;Q_AtO2FPxMlVJ9>hM=q;lf@XOLzkl7s1e_MknjX
zk{TPEBN5B>c2%zXZYyFmsWG}A>*iH5nwU6X?dztGNHz?(Z04m&^od9zn7*r#Q}<n_
zbU+E^HnVjKFCiiDgV*k6Hgw*p=*~*kq}I|34=NLs7ozAc7WUmix%AgFjMV*R<y2_5
z4jRoTXR7kBrXc1&K9AmZ+-1k2#{R1ErCH!&vnpI6NV?+nIO5_<%^#c3B%ByB8GkNX
ziExx7bzt8>RKR+GP>t%Ud6|PBq>%9*`63i3Nq;H20$YZJO0f3UP&}Qxx3;Mx!SbVr
z=+{FEP}CZlhWuBR10fviK$&ebnbZJDc`!$s*|;NDq{A7aP&xf%vSv$Yh~F5fF0y^M
zzAQgW^W!=|eJURttZVPiK4-Kful)4V>IP(1`lkWZrKi|40%1xqPVE-xW&#aEZm>%T
z`xpf>x@m;1SoGC`un4=qAC{k>xM8WVSJ!iK_Kvt7G_&}`Un<<$j-Do3iFOYyq!-Zm
z+Z3ZThHsq9kA(S3&RX%6SPu|x7yXuQ_ei1F)_eQlcyB~A<*1^G&?`g7Td;1hh4CaS
z^-6CA-w!{-E&Ng=-xa(-S)kHVaxvNKSjpymsPwTkuERuM){`EnONYyZ^NYD!kJ^7X
zc66#TGAW0??^LFEwEdhK;Fw8SPC0D7`jyI`G}^*G*JIJTgLGm6TKp=5EZX?PT3qJg
z=|kF&K$Q%e&joG`J~?#%?361)!`=uIA6K<S`}gIQ`fDr01qNO|gXheHWn)?zII+uJ
zTN<sa%5%#6y$D>W8d>KRPD5ma#52)OOKE5<%yvhO!+!zdDlvV1;_I90$^t-aK>c@v
zra#Q=oZZeRiO|AK?#w_zEq*Ywj^i{Brml`o{tSZ#M`qL6ND=1u{StdN8@?g3Z@dL7
zoN~_^?kCBmjfJUr=G6BA`L-H&t?9qcvnsVg(W$AaU)!xbK_QZBz0Yr>!VE4AB1kx>
zFE95_q-`tmfsuJ~A`;iSF_?jWlW_dMIG6wVp1T;t5&d0nFlH|xO^TxLOlLAipi{3C
zDW!fjP+s3{$IvvQWP%POoWEvge{Od^$xCH6DeFHtIG~3f{_#Ua<>FTx#M+M^V&$sU
zMSvY;O(CFxMt93I1R^oA;YMs1!JK=U_ay7BTN^0biZ!mft1Q76woy#&eY*%7osUl`
zVy}EV-4D0MODwHtb9-R?tTD@6W&@&ly>wt)*EW|k=bX|4r*m%34?-XWR+;bRvGIDz
zB(3E3>g&m);d<o_t&@w`?Vd{&v*G4U#5Im&xM7*C46XLnW^S5XTHX(LNgnrkJDC+5
zV2rRW2T@MQZ}u`3LLXL5gnCZH!Yk9Dk*rS$gw9fnIuFal7p`3>;=*mc9Ya<fNGE%b
z>UT0`-H{$BzOijlUykm?GT%(;pYLXsqW>8n@`Vp3lNSOh`dU?z2tl4>T%>NakA0o>
z43osGr{*(MpwGP8hMUvB4XfF$><Qtt_t7HNWg3oTT03PTxQ_P->N8%8$fH1oqbC{)
zMSvt-N}|{IS|5jUed!s-;$X87Eqd@X1z{i95?Ql{JeWtbVfu`-Ed})(3Mn-dyA5P8
zj6YQwPQKjt%n}q_xx0UTgR2>{BEbi@Ov0V0Zzny;`he3E#fvI2-mo5QsCJ;LIXVDM
zc-=BsAIq?>5rerzz%e~>=r>(K@(m?aPRG*5V$TYnb>V$(ihQb)Vxmm$^aM&stah=D
zRiJ_)zUWY~y^7vX+1=KaS2Gs8r?zrl@#o2c<z;u35gTv^5h1UJP*@mgNl}yE&(gAa
zkD0G@k7lEZc89JS8t)pfw3Pnl?kwIOra1_sP??27S<TzBLpn%^S97uxDpN+52n6^n
z6>hjPUB6!9@D0%5&|)CtDmfhC>LsyECRfsm)+ZPk7zC@5I}27HOMEGsUp?Kbvw`Id
zc^jc0Z^m}?>WZ5HW9Z9yK@>oSPTKi}gO(;-|K=wAUzC|(kYkJhxVqAGI@Q^g{)q2>
zim%P)Cm$Z80W^SV$+Sjgv6#Ihp1=p@^E82?ZN2s?{q8_pMg|6X8XEwot4LqbInHp<
zAr7W2NFac0j?uW7N`F`6RKjks*};7qzn*BEES7+gp6UpVh=fohK?kh=gb~X`2_$HM
zI+T5rA*=Z*KOqz}gEmISe#jDfC1QJBFc%_fVAY$urn{9jg2ct&M4X#RZJBjwY2j2t
z+eN~1Q!FcEDIB1Yo_V4Wg}>z^V0uz1c;Rr|K;}%8mb;2d${&hp8^M>Q%@UvmmAqdB
z6T&$R4WfZt%CvO(Qnz_B!@5lAwN!|I%n=*LvNYo8VcygqiE?S1nPGbN%*lB4>(k;a
zYte9sn+)7lMxKmrz^g3SJI(Fp;>GeN`Q0;BezTj*jEbWtPCN9e6+Be>dWO#^g1NgA
zigm?-l*F+WqReiOGm0UW$VX;vo1=4b-b8MXy1zQ70p61i%`fUZUL}~qoVZuTSwsy&
z^_g7wdq3-*@Ki3x3R;jGCpK!pQkjW4-lCkC*V8l}m~o#C_rG&$BrnZknWugHj8F|m
zUsm_o%ZZJ4TbRuVdAM$Y`LYbjrR8(PDL;HvS=@BE?X?t)bK~>dyV%3zv+?|L3)yYr
zkA;hWHY=nKZ|v4H_L1$Lb|Xm`(wq*jDN?84uC7qzcEmD^^p4C4l~w?~Ss9A$doRbN
zPaW%SSK~4FnPb@mgb3|m#y(UNzU;$m6yEEMPfuyA>B{$}+?RI_9yuM=ubF(5zb1n1
z&%Rq%m3H?3VeBlU;)=E{9VEDGut0Ekf(3Uk+$}f+cL)&Ng1fuBI|SF@?(XhRAMTTW
z_x9`Vmp}Z-NRd%>YVWn?nrnV|7u8w{3fU<o)1+ktkn=4cXrE>pW@aNKBH-@A86t1-
zjmT{MxNlz?<v!&Yhyr!tPQ?FwX3PVQ1Rd(iFYGg?dwygnHeWz^Srv#xpa3bxTFWln
z+t(*rV*TZd><%tXb|Al^Vu9xO!jQx#9>ciqHh#TtF}17`W<d8`VJ~PTQ9|sa#fTER
zk{p{o7_8<e#$(E`jGY|1WJ6aPOa|JXI^d6n?5xaM<V+XM?{PTT8kjD(<%()ruh^<&
zlaS^?{ltR`IdX}M0FI<Jy4ci&5bB^K<kUY>-HLcuF#0ID^~kD}(OTxtk=O0U3DbHn
zfM~(mLLT@Xf0~sED+^zxXL}vDTZXgJU&>f)33lkzdwm`qD?eFZ&J6mBqnruFkzcm!
z#>6D6w6;J-cg*cg$ttVQ%;d58YlT^i-k~xd4`t=z47<`+aR_%@k2HIgP+r?jfaU`(
zIp@tC?p3~SzF_)iiqnT{o&lcKgs0VI3%QTHFGcpid^dEt(P9Oa>%59aAHRoR#^&13
z$W<S)?XJgZN8$4rG)|4EqQWCg9R5x>VjZXKPfjs+^BDJU%f?%uzmJ9*<HnGh_uZKw
zng6<Ep&<bdV*wtw<*%RM`X3)YTycx%5wtRusFUMNgdCe>hHE=hgxROp2rY$vLlbZ>
z7WLB4pW=iKavNh`irjZmj#PB5@|NXTY-}rIHJ=oGcX#%bHc4+<)M&{@q&fSCSkp2n
zZS#sr?LDEwH3I>Dv7rZ!M^2T^Z86UYDVl}Lk{Nnkq&no?-9j_NWZ}>sKPpH`(P(?U
zz`0%Y);V+|(ok}@{92z}lqMt~7%fjv;j~PVdX&%ERQd)J{imR*DXzF!(hLZBKIE}p
zs<)))H~XG1W!N9?iVzaJvXDQQQP1;p{SVlZi(C{14*FE{F&^QUqytjg|DpE?FiD1d
z_-3K+foLIJsV`^4IvCuhPAM(E@4%$0u6_`rfb3pXRizTLx?9IAnW+iMkDJ)~=ODc~
zyD+|3l1qYa#dzBn@WZJ}@Y@Wns7xzf@)FEhk>w;(=9eW8(h{lU*JSIQ&KhtfPv(<p
z=tJ^@z@t7`m7~u35j3*Mh=<CX%ZWoHD3H6TVE1nF#-?keXw4Y&TTSH$e{kzySc3Ac
zgkTSAJ~LLAx0S_jE|H5td4@=g8utZGTgo415CYfdCjB?3W^EshKRMrT;3ig^mL6Jz
z8|b0odn3bygWQfsU#|JRXHsm(fjRqPS0k%-X!1@{`A7?1gK>H%%u*fpo<vDsvL#zL
zFt)G%%Q8F_Qd18L%~@Ts^+B>7^t1b?*{GxM^3RBwEX#ItUH3q6T<UJNqrnl|57I;G
zoRh3tM?$?ngOMMnM}<#_PSYvauf(S^xatmxhd3J-;+BIN=X+%5dgsqZ*V|k4ypkUE
zbpn`45pu<1*7r*|-G(-+=poP2&Im8XM@sgP>CUw}43t#=BMZRi!q>f4rC|C6hlyGe
zTDyLC{^$hXk4xVr9?W}krLBq63a^+eP8QDvX*|G5`E$ioi#hlA+83?;=t6^j2iq`<
zkv7`2g8EhgXsQsV;?rK1qEQ&)J>@mEfxXO?BG7>Fvz*FFL6`3iSFl`tQ4PcP<x){q
zcF^Merg$=A#$xgj#vl_TN9>q&Br(U~5V)YAD=%W+h`n`geZEHMePM)eqMEw86pbpq
zqHw>8Qv*I0mZ0w2qNKUGRo3LB`C{7>3Y{9G41rj?pP$-d6N@UQyp~pxc;xAUKnMaX
zY&H%{wbo>Re}CaUiqlDI91!M@GgzGdHzmSRS#CNk_P=;+|3A9)AG5$;D%Oy?;D%xa
za?M|s|BizSo^<47QhD6#9Sa*9=i!9pbGbEZO`{weYip<BNXE5Sfk?`bVB6wDHg<MR
zY54?j!-6#!!;#NrSZ(s-r^pd5+MmUxG;pW@U3zDA{Ai?2yime{{J?NeqhLu8g;-_z
zYYO>@R8~`hbf)?+i?-w}{EqyxirT@1dFY>}<Gv);tyY9&R=zm;rlTJso3?|;^#*(G
zxQ8G{ly4qc(yH2v67>FDnJwO_S(u66q97s*in`O-CvS!Aj^)ybYD|4d2lB}!x_)rO
zC=`^$?W$^O+n-S^mvr${4}L3g#}3vIn4unl_Fnz%`>Ld>d`#N5{+vQerfrPXaz1M;
zwm8!d<<9M79-XIEa`ZV3)8ud9E*q4cs+3TQWc*jMs$oZe`wEFkA}Di(Ec!bot0xvD
z$#A8j{C?&vd}J1(zl;UljO@vfig!-84ju>gp+6tncXgm{nLO*<veV!GIy7b=kzHZ(
z?#GZ1E>IDrc$`|K?Q$}o-8CN<NliLds%rkM%^FkJi#%!@P_@5?R0-(e(R>46K4ilC
z`3&0g(5GEvm+>t=-XGy$8G-|j>0;)fV5hCw)SSPrXD<Cb2w{l>W0Lv$T%W8*PIj4E
z7<WZ1gAdXO84ftwX11W8rrbF8b`vKas_N2;q4XZ%;DQawMqS`SWpW#9i>4RVx`p*r
z;2DMs#`lHuLiYF8iZDvIj)vh2v$C(Y@K<gRrdZ5wk1v!Ir!r%)t}a8Um~0_uroWC?
z0nDMcYoJap+metVQ6i|T3#&DqaL7C6aQdN;a1ErIH%;)gh3mGuKw)B5fjf%vAR;0{
z&iwqhG`Ihkk>fx9&YJ}S%m(b-cm9hKeqgK5mgAgu0dDiV#e|YlkKIVQ_`*i4&1OST
z=aW5sPc{ojIbuJstY*5_?(se=DK0Npc|b!)Hyey5!;+}V%k$SRFgp5S?%q$}43dz5
z1x6~NLqkLJ${G+NqN0<z5;6OwHKWy&R%`7ma8iGqVf0X4aA}Y`59e2G%ycN!OA0ik
zt2;aYrfp>v{A}YX$MnPSHr*7@`{V0$x{@fSh+TlbY`6stF)^O8^6^OI43|9TPu#h%
zQ)gM+XFg9y!ZhbA>AXoOyPU6$KWDcE2u!R@Xoo>?k!nAotyokIH6(R8OSkvJ;LU5k
zwJ^q>hgWrhnD1BsdukEH=}Kh(96Hrqbf}7KUG>RRVM$jUuUh}h?AN==;M$ZGkFPUz
z`;_l8>$Ag+fQHkQwDPWqZn_lSYg@kpTX&OqO0xL7Qx2HK{W!8)%3~68Fj*dv4{5ZE
zT#?59OlcxQUO>wr&cTvITJl%>@5%V>mUO0!V$ayZo(U7xXoejxPyVjhwl_7f2_nxL
z1=~!yq=YqPbZfHoeo?sHT78owdg+YU;!a!ja)b6B@xfak!NiHjb8ozJQbjtFYkT<%
zzj^SzJ)hUjD1)m21kb%^AEQ)7B)r3HyHv}A7hYKP`=^w3VpboQc)LKBx4G^ZxBGoE
zf#ht4ZDh?$Vsgaz-ZT|#Y{%RUiNE5?*vZ*8iWYJ=V}-S+2Op+$Br|HD1x9X-^lPUh
zla{(WGv%lLh+q}N!3AvNA`8r7`%mz0%bPz5zvpSh!ZM#tlNp$u1>_WqFI(i(I;_g^
z%rMPgwD%N{R)p|d^>FCgtvEO$_q{;OPL3C!D#F~=$to6ElY5m`o|OF{KWZp;e=LQs
z{)YAjqQF2^UFJ%uZosOJwyAQg@YeW}u6$jmuCo64+n##Yv{5^~-654&A>;3ziJH8u
z|6zAm3HRB>;jg8P_E7<`hvu~2F<O^CFtf_$TJP{ZmBL9y3W`Exo=V?6KZAud>Oc@F
zy#X3ux|jk58HgnVdbz~LI-}`Zw;Pn5MgB=SIrNs+I+wQ{nbOyb=;_fpbxo<3p+E;Q
zCror+>drczvrCEEtrh$uj$PtNeu}C~j`CqdhST~oYer(^);o?d<WZ-knY}&2KQG(@
z24hVMmRAj>)lz*SVNx?J+c^=7gkJCMf)uBh4~^M8x?HJ>W=|cSRU!lgM5zbM3lQpK
zouVUx>$U1`T~geiv6L3StK`IvBnA2(N~1td46Dco3n!#NfI^eHNg$LCq-TBT4R^iT
zEy^gkx&*TE(J?S(e4orIza>*g?ArdinANnV0?)%i{@6c}BUX}uV;vyyYq{-dnocj-
zl5?f2NLq3-x1HyxP1V{DUX|9VyAq{rkPyNfImp+>17Rksh8}+m;0Kxu;O7FqZ?YN-
zv&R0iZ#r@xpCqZQq+^L0W^3^DQIG|`Lq2@*a6|Lf`?xuC*kLK(QyoP$QTol*CsRSi
zwluzS967rnO<(@AFfWQ$<)3m`bW1uUu5}@wy-{SODN3DIF#_P%-E9ypK>9n#eu3tr
zIu}<HUcyY;c$SWX9tycP^W{Ph;>`zYG8A6>q)M<Z<i*BRZEqhGNas~h&SjmyDC898
z9epJomI3pPciwE3F?oOMMSn!uOFNVe{d&6nD`re^Igv<u=L7o~Y@eK~ewh?z;@#J_
z=7eC?n&}6~PDsAO-j4y0g&YY8ysHN%93LcXU*nd=@E}mdVr*?VGAh_22lX5=!)Dn+
z>^%=ucbRbftv&k^dmX3n{MD4tiJrlzPLj{)4klMuj;?40!>sx?(t24hQk6sw!8Z1;
z)^tkyeA0!YkVxsc(bg9dWR&~}wBwuFo=dL&YJ;2I!_4i_9G!459(_#0p98j!7-cq^
z2Fk6CAKL?-xNi9?A+nI}pi%?vlU#~ngNYgrTo+TEP5@K;XvfNf{>RvZS}ua2r@M+d
zO_Afb{la8LfoABz&p;0M(F&$k8A1W$y3|i3PX%%Gdjl}7IikcQN#Di-)18j?Ss<+7
z_xTsFKHMNngFXh3eO`OSzO5-V1&s4R;PbtHdndB(A|u6yj?rRKVh)oEud4wc-E(Wq
zi0NpFDV|aZPm|x-5xyT&>r0vzTgO(in%xO2o3T9Msr6!gTU?IstP@Rtn%C10$JPEC
z1v1Y?^CU+6wDq(}!qI;E*Lm<BaV?rh&!B4l?C14`v}QG*&@<t5gPR(>^fjATy<Lx9
zQWni5Xr^(3Ce*($;SSWwv-o3Q0H>yZf0+KVrrC6^zmj6ARIs{z9Q;v&uBT3&+i@$6
z(oX}|Fa6vD6PwR!Mi(;;iu$9UJ$dPJR9@8(2$B5)#B3Uq#&n4crn;_HVUwG#(c(@A
zPRp=x6zWJg)OgrQGCJNQl5O{HrWePB-!j^cepM8UcMu-5v7;%76HSl1TTfzQ$RF=7
zs%jr;IBU1GG?%yKykcU)XA}8ILPyb)U4QuEjWPKorGxfrzstma*VdY_`oinU?tFU9
z+0g2q#Ik39>rfD#`mGwhXTVMfr|IzlWM;*?z{xqV)u|{J`K2OqNDARn{Sa$k?!iQX
zQoomLVNKtwC8}DEOi{!P2PZV7X!sm#vmITsKbwIw*knL^dyF$qSis}Ek-NVc4s(W>
zO{Pl)TeO^uNzz%*&`ouF;}Lz{q@b;g<AJn4)!zPgNS#K9ZH1d?U`*9KQT_K~$b}l=
z-<mxoGk!1D+C)cEOCF#|<E%#7$sWG1qQ6k}AU}cq|9^NVqyG6B>YL~c9w--JF}nI#
z1h9fKPgh#d2SR3PfxY;zR?Ff=MMcJgfUq4s7~HABLdo*_cvPVT0)gmosH583+h;aW
z!SV)xC@U#Pu@W4P>Is;hup{cD54Im9xg6_Ob4p^hGgoJq>%Cqid}zcXF(1PtqC@;l
zS-A7~tsZYfFGmI&0vpKXE96mGL6peezo9QbYVin)z^1JJpxXDohGAd!6((>)gCCH_
z>i`zvL=KLk^_ea-bYmb#oSnx%3Gko$YpM|dUsHeWl5hzHGnpGfeVdsl?mT9qpe#4R
zUv+k2miA*~{du?;(`Wq5f*F`pA3bEhCDN0($!tSfoUp5=wi#gBLd2{OUF(<FDythY
zPnTyJ?hqIf+wH?ze$wqCq*`PvI#hJm%HeCTlPLyK2}X87xq@DgFQg@^m5oYI99J6R
zf3TIe&k1-8=z#(!@yds_1e|avVNxG0uw40Hm#bNI>@P|gD0<3r)wwB*A8^5cwS&`a
zq|ro3VltxS-rT{&Zpl9Dzj6m|a;TQ@&5H;b_egfJZeGuU4=551s<RY2&(84ADyY!#
zV%rqKra$UH7hBfx)!x*SqWBCz&IpPaDjw9GSa3H`t|eM9=sSmyVn?JdX-2QeC#26q
zIj)jkJgNK;>Q%WRyrT|s^UZfmI4!^FVTglvFNE8Cfa~HeC#Vfv`=~|8-NQCxEvPC{
zU2%}Qe^jD+-&IpYpIGdc0!N54UCE(0aIIEkSJYv`=+wrRE2C9##J46z(&O4=O(@Mn
zBapjvzT+v89<P?dE@l*9ClRd(7c-FaR@V0&W;w-8b-TDj=H|D`&7cPz#oKR?xei6F
z6*S!U@`%O?8^n#3?deygDwiy2UIS2syk2=j-#1@=$v{Dp*vyONN!>LU=;cex)){v^
z$Xn&J6Vk}q4Y<!c{9pat&wK?X+?qjF0UM8ne=9k1Y8$2LSI1kvH2A^qq0iyQ(r4Kq
z{JfsSTO9lrqk2LhTW77F@w=hXSZQ^4IS@IOy4{Gnkb}nmclam<KDW>B0B{LA2OB%o
z;?eNv^}<KJvt#0NP3#aHXG|QaODg@G;QRgUL-NriJj5g}xo;_4ik`-}X}{M*+5+Wb
zA;p{ty{PF>%~J*`jChqZ7W;d8#QlHLe)m;qzo*88>{GD2xW(A+RgkdhVc8j}=kWpJ
zHM4|1%0Gh#5tkSfIpErjVB5JkA>}Fv_&8i#5SuU{Q;&^Atyz;TxK?XXT%eXN+TYy7
zKSV}WI$$C;Z{aFDpd@_uQmSWwi)_n*P`_<i9!oh+OQSTO6z9^F7r<<ZNDhNv3oB%}
z-IUmL!#J$iY`NBIJ;#q+u8$35Qh7fsOtm5LS9%1)<efuIBslY4U&CF<lhf57brxD&
zqD&ILY_B$TxZE}>t_CB<I-7^`N~Lw(hFf89tV<@b8?4PK$s23Rw8~=6MpK!N*InL`
zJq?&s(-gk)C`#GN8o!@Ie-OZ2?3xdYOAMEh`JVX;WYd_XDh@uxd;tvleD8e;5Qjcq
z{MNt+P}MaWZN89^l8%>Dw42v0x!mFNxUt^sPYC6|BVr~M<7P(i2VtgBfuuje>8jzd
zQKuEhxu}kgj-NW~O%pn$ZMQ9L>%%XG|8)GB^1<kpe+=*_I9)N=xz;EGEt?MS9v({a
z^72k9vx<k>a3T_C=b7j1d}?iNg-HSa*w`A&0nui$adBjW5%I1!{iYCBl{`E=WKC!>
z)<iNIB*KToj<GfXOA#M#*}WmxU-)UFk!H&<rXGf8_7S3?+5QxVj3RYI_MzbnNn?0+
z+jb=|0CoAfD|7Lx1=OcVk7!|z5OV=~?%w7Y0MqmjHE)COOCACzT!-}8qGnnMmvHjR
zLOIyp6t^*1OdX2bPsjm1T%ighn+S-07(^28*{$!Z4?gPV9{1Jqi`I<-P58A)P=cHw
zA@re!G(e2KxqM23wz7wU$A9i^U;ZF6A5vmNMiC2`3b;zyf!zDyav7`z7MWn~vWURu
zFf-ymv5UKfMAnEjD$1c+X$S<sqgb8Vwr%n%_Jk)t8knp}grkzC`IMsBreOyYKC0-A
zPfrh$OLo^G#Yt%0(LIb<i{I_=;I5O$ts(e}+R93i+LnHCoXJDLFnZ~&Q&dos<P;QX
zq@R=3KC~?VMi++MHxc>OR@XK7DrgM}1?A`wq0^i=w!7|d|GQkTYre@3ZLbo|Eu1i3
z-`^E|FbafNM*Ii12U01PI&fjGP#a0mXjB|OTtxBwLNA(=V?upNV~M@={2G)fMep}S
zTDAp0_@yi^w`#KzQ>IV(Z?>zr%uL5O6W+M{Rc&-jpP-&{(}$qlDK+ht7p*qu-z2-i
zJ61bqMz=a-EgqA59?_6xRZ+4e;jj1!=7Aji6t*sIGKQ#q-NPd<h(5;S!BMe!#{53x
zHl}WJf0CbT{NnSQWEyoWEl>CLjIH_llwxo}CK4{p=)1Q-vI{#e^%W-h=S%=~3xryI
zjXPUP07g+e&IGsgLhe&h)}Gn(QUy^lEktIa7AQlZ>ix2kKKeb0UoPi+`xOgWaE-Vy
zP>1~$NQS6F)0w=VTg2qe+Ffp8yYwZj(v>`~kFdy&s-5jHiX+>7MhvLutT%R;36(w}
zK77o*Ow(ymR#|ZG>{TMiz;7cFEFxm_O%2arJ8BT>u-e|I7SE)Yt=4tAC>WW1G5#HO
z0(BjP6%y5}M5IKt0{)ZAdCN*tf=PEgw{IN(X?|W!{iMpkM{7X<aqW?P*#_d~a3)kx
zNNDGd8%yxrz?m<TvJcdA2bm;$`i>Zo#09(}U=UaX8@Xp{!X{sz`+t~@u4)&~b)9{z
znotZKTYRG<EBDmmF1N@W?g^xF*_ZM8ktld^CX3a<gRSB`Q|IHhd&GODeHoG@?mx)A
zzn?HSQ^RUv0{O{1-0x2>wyrdb@krra<hj=y5qVc%7@pWWWgfxnek1UD#d&SeM*DRn
zgD(Ss(TgTwp5?=1C8oDHQY}S(0}{<LFf7OKbZ2TD4ivhyppOAgR>J3eCEQ#4z0o`X
zAE`_zlHvJC^*&+m`<u>_Vmz8k)%_l6m&R$|N6SFS2wsn3dhql|g-?Uo6NnYNeEQ%+
zac^vj9AN$Z+Zxg1WcuUE=gJ*kX7Jx1NdCYu{@agQLP#GUpZ$Y^jC>%$PO@UmMb62T
zVTFN;>dTKCw&%c)^^dsEE(LkP!JJi9b@<@6TRDaXiNHP__w?uPE;4y||E&hnAuf&0
zv5PblGI{Xgm@nEM2b(RT$y!qI+4@cz-iev)ArjMYS!&}FXeGY|!C;`GKPWZz>7Y_*
z4-2+YifxZ!6x%Ii)55s8WgE(n3ZhKVuAs2*%}-SP&OHo4vuu)S%nxXhu*eU>pPe)h
zErCzUs^`K@3Fj5R;o8`3`4VshEonH<Rqc)PV|d2hp#Nmu6xp`G4X?7l=1;Of8$yWr
zP1R7y)h4F`Wy52vMTDz>kB=ZldX_#9__lo`-EzciW$axcrjf3NYYH(^Pvs)amE}Rx
z+~oa-t$^C#wT)!YP|GxKl-bLkD@;wHQnvJo{hC)#xHC-37ONsrOU`tl9ylM7q8q6%
zt(NTvsVZTuPED)gWACu8ZI*q{8VM_FTZm#KgjL8n`S>~Q*zdB0s96{(gXB(vTSblF
z`!g20`j5RsYqBp2MqKu^Iw-Cy`*%ATq0YMQ7kJPOBf>oHx4A$xS{$$(u~k=z0E32m
zJYSu$^Vv^QD{wR7TR5M`>~UiZh^VhEYcj_~Hqxq4u6&W7LUoYX*bB{Tg*am45qGGx
zc==VXedclj)?YMEZpPU(_~ydGpZ<EOx`UeMB25^_&(2^onJzjp*wYyaR$kp@4HAZb
zWj`-LhZq|hyJqqE`59&jAh??XTHW=$L4*Wxl{z`E9^@h%ICi>oHTUDW|7$NybS5#o
zN_>KXz$O;8_^Qs?D)*DHxE%=``RjF|3%<r1R*`cr8wSVAks<~KO!()G?g4INAEort
zFWeMN;J^8yMKdeZw$U&#mCsOz?z-F(igoy@c$MVL(i6cTpg?+hdSz#X@h?6g-}Gfu
z40!j^bRMa5yS!58vsK)9P`-tg4+(jURm;iOg=ZlAO$u<FC}^8SznnCz(f32>hrB)a
zr*5y2B05w`;`%1++{|`nZfvlUfMaVrpvt8G?q%9L@W<9M9Z$7jaf&GUM}_d84a<He
z5JiF_7=S4_4IXlR60klmFb0i04DP*B5&?f_>C|OppxzeSFMA@FqqLD+sSxSEUf)1=
za&9dV>&YD0HyROBP9sp?X>4Z0*5+(E<0b0-qfVm{<Ajeapcxs7WDP~GDGEk&k)6RR
znlK{%;^(ppWHz)@erMN<h0u?e&9<(W@59kNc$0GUQ>`%kVVEH{H*6@10uII&pTKP{
zo^Igr@Ko;QbV4%Ry)NPZ44r3*6JVSQ*;r&mrP7G&?d{l?y={MLLV*xLdU0Bm9E^{+
zM7+rC?4on+I<1L@L1HEsZ_$1V1U0~)fr2j%2t<pTcwwG|udzb>1>00n;Aw`2DRcKI
zhoq!3mve=xlRK7K6)6$0rWWg3c7%`oU?C3Xs|*D`gytz^{cd!<@~px>3>BM&aTH-^
z3g!%qr(<dJ{Z2e0K}j^4$Rt=AYag|vpuh}FYJEX{6_IB}!S1s|ZY0EAd1&o{fzSXB
zF)|#VlX%J5;R+2>+<AeWl2%Xz?FHkvkS)>)Wn;g1&1(Q+qG0)|cdV;<#zNyU0e(@J
zn&bq@-o&8g+QeYS*MY~U>jRRdmBxwdrS+pzvGT6JPQm9&L=MbmrXwhlBjULu&$LN|
zUXeQVj|w{axj%A(4NDGvfho4UH>pKDCidVFK+%ou(|yHWy#Grqpd}l3!w;)y4Qg<>
zVJs?*i;JIZvb@+PM3e0{q06LOOPOZ6dEi{Ofoyg-5PZ+ydyYVy_W2mqA3>Oqj=diB
zfu8c>=l)y;VH*HXbO16OzqT^b55fQsA5}*ieR|H0pz^GE(b5`=MNv!|L=#kEyJ{#)
z_+->uORZ>iv$}q$?*Pu&P-67RmXeKIiir6Ye*8{>!fhwvK*bn-Nb&{viI;onzSqpA
z->zAlg%NNY)d%q_D4+@GFHD|~1`Wb}5{9FN4a?i~D5gT7wju&x$@&1WO-9}*%<)$u
zObtHrW@d9EAm>YH)G8$hJeeE0-<`&VvQAem9*GdGI~F$~Hg0&p1vr=GlXCz81nI49
zZF&84<Q%h}U-5iZrPiS9A_DAdp&`#@*Z>pt1O6WtMEF5mV(O{SeM27qQuVsStP@}W
z!2oMu==e*k4-blW;?xstAG`yoY1lHUN<_xbFs)zcVM9FAc=Fsq2Yu>|VfFU=q~ytC
zid8n)=4Lj8PyGzA4%>Hz2gbNoBJ!&%{c-qy?&67b{_Mle_l^26L1$M1ng&B(Tb1b-
z1W-(;>*fR)*Y#_Wz{8qv@0;ehD9VyF9c}HSLs_Q55nJ8oLqAdsRr_^0Om^BIRw~~S
z#cpYv%^#<KXKAB2crvG@EATif#)_>qH_>dg#YX01=HgPcIfh}zg(Gzx?<|r8vS~$f
zs!~teEk4J6lJp<mx9?(0uX(1_sy1X>ahRgbV%{PlPY>O1Si6N6`9_h<<BlOB5-{)_
zfEI}wJevA9k}&4=b+yYVK4(6)P_uzCBp4~?q27|4Mj3bGYolg^RrHSlyNMk7f@_1N
zLi-9Pg@*~9Ys?o1hnwuu9uL7Z=|=b2o4L-xFt|~&=$%GTLa50Hqcq-MnZ}6@%G;vC
zvcFUK`xPUm?l;f}^jJX}R@9u_&Et){21SB}@th0XL)WkJ5QT-cLGiHFxvSq^d<W&P
z&AKqz;f-!<6dtOiBgqtH@n=m+u+kgXzj8I+s2(yI;=2OJQ+DeQ*JIjgI<e8_klVM`
zTn(IX(@)?DI&MXxR(|lO(4SrS%eR&41bD93-d@=`xwsURlrRKPgDEyKxLU2HU_OP`
zP??1V|1@1-z+R)IqrN*If{MY@e$F0b`Po=XbHpF#Q>Nm|0>v!iPQ=00_z-0sVHQi*
z*VzYDFJ8Qmyl>C;UB+e%9nZ`HQ7BGRGVJoUwpB*)<eYsijEm*~_>HBFTga$u(&=nf
zX1-KiODh$t?YqCDh;3t=%B+@4(WC2H)qBm9X^_>QqyJC686Z@7$BTYgn|?eqC+DcY
z##z7Rq6G(WgM)ooy3qcPR{L2+0Yt47RB1G;0hcR2@7g$TV8IGL7|24&-c~7avz^cW
zMtuO~_#3{C5*&0{+rckhF4vvc<;W%7ywD07UmSXcmuNMBOhy3nJY~a)CCJYnVR2Oe
zTjCzj4wpcM8kYR+V5nKWyf~y6dL>0gLX`mC?4n4~B8!WPE*WkTZZw&m5s}g~Z$<M`
zZq0{#>Arr5E}SliSyjp*hXNC(6q_VXuOpx_1=5Cry(nmXCLS6X$m{80g@e0{BMeN?
zVh-@}MJ>;*X3invdX&s2i8WF3^y16<v%gJrB_;}`Xl3=KsmWhbVLP3t-_I>Oq7<8&
z`SkSEj)szQe6gaGl0=mu%Z^@UNm(Tp9#ho!xZukhhHGFCNN0$t<`oytPtZ^W?xPdl
zkFWH|Z#MEGc_2sH%*@Xul&%HAlrfZAq5y^3;>5eh1;C9!iy-IYZ-DcVar-~>ybQ|d
z88To@zzMtNiiOq>i+IugW#IU&)qG3j`$;Y-%WwHx8!Tjhw9mIg7IS9H7yT+)aOd~X
zVDK?vS1o#_&jLTLVUgm_jt(0^C<Mb{`N3Ah_3vlG?@vsEG%(oHk8k_@;L}1`A*>d&
zv`N-LMC~<DwwoGp{DG;3hwQnMR9E+WdCd@r>t2;ZfsZpH&?@(#t7Z^imB2I-F+AIr
z_2e;O?5q+2?TLQ!=EDZJ`55NU284s5hHTGZC(c1577F(C^}&hQBXa>+f4)a0!Ru;@
zUX_eO3jl;mdHhEO1>0BAPSoOHmjoV<M~9e}rT_)<>DsNWtukuoWW>UB=zaE4RD|-D
zjm2i(fJ=~9e@k{<H5eG!bdDG@7Z6BZuU1n3sI9F{MNTeCE&mlmE)_o2t8l&KsG!~{
zg{H0O6vE==Xsx5;S;Y^nu+BEX&rh7TiV=2C)vHajM6S0}o4Xu7miy<uP1)&&a#Q~D
zRx>g(a)D4F(#%7%^^XpZpFc?@@Tr>+ZB^GIdD+Q~wXpwpxA2dq0fY`N34k{ltyOOL
z^4Q`wS>Lr97MLFo<n4d2^GF<WYv;x1=RbJ|5Jyh&`;?kj5S1iq)6p=xtP#VU+gFI_
zS*eEo+2Q_L=+4!|DT$_O%R69_FM?@l#wgMRrSbN_yFey}4Q=P-h|#fSWJp_9{(Cb1
zQG2Z&f8Is1`0q@?a#7hXoL{^VHr-<sKK?OT@Wkq>Y;(MdD?R~%>CR9YGotMP^xPC9
z3P}_pVFVF>F&C{wqQ&fS^uzJ-F%>bfpe!ZT-E`sJ{bTR+;Hvi|l2w#r@R+>tFh`Vn
zG?r11Ki@%M!w_hrY3k8b;746Uv0gl|Q%ylFm&QeQ^;Y@f-t^|s{TAgx!ITb9FMlHP
z5HeJJB(kFz_Pgyz*6~w7#j2{j9iREAW9>;l0~seeD)pK*_Ofir)(l|>aZp2et=ASc
zU4=slomOD?d#jrM#`+md#1v>iXL~5fA7eY?aPdgSu~5&$llWJ5le82GAAay+=A9Nq
zZZv@A@1g%T<FP$;_#rwOzl6rNUm4U~CnNoIONI##NS#um#~{(1?l}{C9hBLo83;?)
z?hjtWe9k}j`HRH^z5Iz}TmZH4<#x$zvDVBuREz)q3BXWq6GOjLX3@W%G?0H>0xYW&
zzz#&ATt1+;Pw~Ay$Q`(0o^=fICq4s?ZnKBW$Ea>h+hIE}s6&qpe{2|1hE}-}|4$h|
zFN4*7D%EkoK8%+$U&}NF%(fKv38p+Q0>B4xAmla9kV_eB$WyKI3V0cdp3)_&mayHC
zq@3!3msZy+7`z{VRp1(ELx&h&e<j`mJKc(EYKhMQAXotP7JcsDeB<&#5jwE=fXdJ7
z@qj`d;r?$Lx2p1&yBx8I{CA!!q+r78`r~t&^XivWRViO7<5m`*`<qqwvkBntalX91
zp03{6-5t6Lw+;q^=7Vfxyh{ra;M)OsD@{tMAwN>LU<wc>uPl5jj|7)W=y{)|{tXET
zXMK|ZC#!6{9HQA_V(jios|GqTS9%2n1*O<ls3YG56%e-R;L|#gPyFRarPyazzxU4G
zHKWLO6-cd(7A|gf?nY!s!B|X7O;w6r-dg4XNaML)6>}z^xEv@~yxv}-wTdIw8mx8e
zp0qN;d4cp;Sy64kJ+IP1@d`wRi_eV=I9&8%Tg+8>{s1&eMr{Ds#R`0PYmRW%DBfPq
zybb`Za*n;kKM)a5^v?%B&9+W956kjJTbV6STn?Me>w(OnEnZ&dQ+%Gs{Tx3FaqHqS
zms7oC#{-shf9tlJ_=TIW#&`OpN?7xGswqsB!Wugg%Reau@4CXDJBU^Li_>768P%9F
zH2ksuP!IlHL|_Cb_zZU8!Jj80N<Bhl7PBonjIPHTJKXNXYL~Oak#hMdSL7!Q^<{SP
z5~Y@^Z)>4+M)_rlgL2?d$t^V@ISG>h%nU-$!AUDfk~K=Bc(Y{ln$t3H>}VkPQ40qL
zr&hlk$|DwG*i)N`omf!Lsx)3*_{Zxhx<amq$Kxy^?-WdEP{T+8Upb1QXrU5yH<RWR
zNn~;|HBDVZLxFsbsJf-z;dGHkE1hbj1{4w_c$ptRMVh1mg}^|-!og;#<M3#^<i@Z@
zGw*0;Z;BR#`(WW_Y};cl7Cd&|^OvP+dmHiydS8uFZL1()e#J!(9z!7)4@pqBE)a$x
zx#{(^w8pv_9WsaBeSVtBj<TfVaii=Lot(ZL^sSIEmpyX+&_GfGZJSq0@#JVp!8YD?
zrixcv&Sn}NN?AwKT^h;*pwhFNO_H(zD-0xbTwKZTN%P=l$obZaqH50*1-^z*%!EUS
z{r<#%+I2fTt1VHEW7T&RFXnUj+=N_HA*6tR_lpQB8b>@QKK~G`=tB4HF#!iSpyk(q
zxNPFVSfZ4J!7%Z_>`j38B9)-+goE^VWOz7K$Nhwj<uYODmmMX9LPlPZ1*!)GVAS*~
z&Y-picsFfNr!B@WMaVkEpNHGb@h%>(0=M$pk*_VmGz-6LgrlEy@moPIOhqpTv1%z2
z`GZ?ag`)LL0?d(WTnUs18=hbH=J4zuZ$ECNGQ`&Ed0zql09mB<jqO0F#Y-?ndZnAT
z)5)STng!ip7$v*jpAQm5wKLXQ!vO1q3=xMpcagJ)gP#>D3A?!7P4Pvj?dG6HM_ENT
z18%8HHt#C^Uj~V$2;ld-z4*wh1_BPH8pLyn8cnqSa%=sk;>8F~=l6j;wrYcqJyQ=H
zGYbgxmsItAS6R5vS{0icgq$-Czf1At`8N;$Wdy$wB(j_<i1l!&BO>opxK5ojT8Nc-
z%S$!r7_w3CY~q^R!<|+f)^zbUEflE*WuBJ?uLtce3vCt>xvIj~jR3Fkn_o=i1LPNJ
zhi8EOS_^;>4iww~dPsC`ptG<0X;Xi3b_UxwAoqtn4Dx0xf^Tv!!;3!Hl1N?$$OVs%
z{RoaeU;}zC3EkP=9vDmjw7O=)1W2A~WM%>w*~)iPwx7ticM{Yv&ntfw3Oe@<ut|vD
z2XTpx;K(n5b{Ywdh$}p&>(%zt8XOkRPZp&H071}VqX;Bfy*@uwFYo?MA=~8`r#S@X
z723G2h}5SgDrLm9q5>(PK?qxv@}4Z*K<BTYf(q&B=@o8J4H<t!3yUPC_XP6_bt3O!
zLXi#ES<DSdlv63@i)Uj`M(zPHnk)cooh0`rhB^pPaK+xYdq&f^rJ}K6sy?y6=rXo4
z0NuQB3ouF1a8KyD?|3SgWFpKhe~*$UArkCF+W7_B7i#OvA7p2v9_B=c=m8alN*&f1
zzA?&8Pakf>lkIU0|B0$@qIuJ3K~_5=Ws4VNX^_g%0XU9h%D0&Wk|;5R^wB9~W4A^9
zqM-M%=5T_-KpefF=aA2#^fBgm5#~mQ89GX}ok6tEfXGS~&H+tysX@{+)FpEdT|Q{r
z=K1z=SL=AB;wqbE9&|*o_bH^vC7e>IL)Yyf59$W*X5+QT1ESmB_+T<m;R|L+<R_L`
zJ=>RM+kS%UKM=@;#(!_?Zg6(arT@5g)qL1K0|3ZL=VAUFC|zUeJTym!H=-=25C5qw
z{bM4Y8I1bJIZh+h|BR8G<15o2ErS2s)62>L4ub3LA<+8ro%jrhO^!}6DoHf-0$8B5
zIS+}brc*FVxS<1)9wA%{+!imi!*Wr!8o~q+;iq64qnout8jWNSWH@4VyZAgK+Lh+8
z`2Y6nKg0amekZP?dhW$}-`@fSvA6=dxG+dpNiu{wV&^j{sfcHHi@#l4$WI#?1Y)A;
z9X%W97S9(qobnT7C9tZQ8GgI&__VY#%+7h*l@Vf8(qaHLX7O-{o5<_Y9FG~|76Q{~
zzbET6d2>|JK_4s~f&uJ=F$61yU<7xmvD)oNK3KyJm=Gy}l>mq9kUvH7m&jYE<9Pv_
z8+Zs<DPZ9k8_Ic<5v73kNc7wC0rd?h3RsqG0fJSLKzS;seSYe-54^=p{7}v<QTcb@
zEL|d&O?+Qgs3%~{o77h7a}b}nm~Iw+5Mqp3h*sd8tQI#T%1vdZ=t4S=yD5Ok*5KoJ
zsu8sj_DqF{q)~1I27%F%_i8;5M^gn6%Ug2V7n5+)B;#6l-iP3$7l4d!DH@_|Mr74x
z^LjB_u2r>_-1G4M%#aPDdiY7XMVjanv2O7O0$ITm?_eav{+Fjasf24A)e3SUqdwz%
z2xKUZw?iEs+f6@GyDlECY2=sZ=MjyvvNa;w?<4h(h|ar>bL-%E^Hl6NE;>J7ZszQk
z8&z`rn)B#tW=*teh%Pj4akjcVDkz+NZNiSy!~XR&w1TXJfm@R@XPJAnKAmmy{J%Rc
zl0Se+KkIk>jo;wo2N-HZ6dx>iHe5tAb4W5NIN}qwYlm!ThNTXE<_*e}<g^5%Oi~kU
zh~j{WW_A;Os7^><E`);GVK)Mim;OC3&qRQvmcs4@Jt>A#9!gp%-PF~!5l>|4+EA6T
z=Xz5HRejeb^mR+?f+=2%hsw?*P7VkN&>)|4L-@$|NnG2_E{FPlH^n--Q!g?QbX#lu
zDTA23*a4;c+HW#~?^TV=%sp~Ok4WG!INi;8o+wlUx9=z5G{rgD*vKlnQQv*X39~As
zOG3CxQ+a9F50_rD?X)+YK`bY@^#X!-WT-&6zc)<DKo~WFJBn5um7^lQkPHZC)cf^O
z^xHtr>}V17l#)9N1ZI=`OmO=;9%O)pn07ZziKp+lS=kzhw{FHdwh5q)?7Tn;76AV<
zC)*6FI@Q8&KKrJB52s8lb~wZT^<$udoc3X*bu;+bA1|1;^nd6Jz`KZpYIB902WOCE
zy77&Zqa`Y*gdz?vWPtK(Vw-P{I742fjsYbDowuaj)R!26zG%Uwic&_Zf`O6eKvYv`
z7(F}CSv=AZW8#2c$yaIO$Hzy>9rQ*hd~T;whZ1AXiv^^BL2W}w+^}Cc?s4D0yV}Mv
ztL4y?n|zGxL#uYaC3TOW78!I?>0AIl&|j$ID3$rwfj!&XhIGiw#k0mljRLTUk~Tz|
z0uyJz2M{S429orfR2O54JdGtLQmSNVIc8q0)c3_NVY^fp>PK|$nV6VRkU&oqL`4I(
ztTg>-G%d4I6%HU!k?70IaFq7+Bt0gXkynw+lI;8ueF$M<<MXxrNOacj0PX-Cjnc=m
zq=JHi-+g{sfQcBk*avt<lGucFK{{*sbw6b==a%olPRT5w?)HWlbu{->cf2i(jBHo{
zOeO;hi=s%%2>{BX>;M}fPPzXu25*s%p%9f%Q9PTs1|s*D+FwMt69pJKJI=`E9?RA%
zEzWZx`b>#CcgW(=vyZ=BG(BdixBtsj>>qXQco)pNJ6wuJY%hJW<~^j1{ePXC{d?uh
z$_B12rX?8%_$91ZL9&-$>}>4Fa&lNc-h86x`*3nhFxboTE5uGgI2ryX-3d=Q7KhU8
zPR@{)E<5{o@!)#?Dc)Q^4Dcd}J)S_BUnij}4Zf*n4O(yo@Hjhu#9bgSSHNFzqs}n`
z^Gt<eV{<dnr~XAtw;^6R7E{6}$2Zj3!qI!_UGPQn`$hNBBo9L^Ba8Q<2mPHWHRz8D
z^8eMGrNHsc{g$>&t;#2!L02b(ddX0yF#}N9D;?^>kbHt%cH&fr5QSwa_dOmD3LJo@
z%<Ya)xD`Nr#|9waWJlo~X$QxFyJ5-}TC93Lov7F;i)0b1?SJPCxU`E2u~8lk2pkU}
zX2_0TeDwQfV{Ij219>qrd$Sn(BJ$)|wcCn}5j9;+_(udM$Zg)7c?S!B@6XDLw((31
zh;F#ck&Rr?vdO)EWG&J_>PA#Ku+F~ZtbtB}d}wagdbxp!@~A>+#!CD4=D=S2aO>N@
zd<6XVUw)mD=WPakEwzYcS3S~V`0wsb{umOyJw3Y<$M$L;W^|{R5;>Fyk?X9>Ni^!g
zVNz9w7#~%6QM9HY8+F@uQts%qwtN2Vu`Y7HFIxIF#EgKR{WpzZSy3YzZ-N6uyu9Pp
z?TeC|&aDV4W^$c@7AMI#6lx(Q-ME|4*?zviCYRosAu+L1Jlu}nzZu>ZQNUdieuWyL
ze6Y8-|LcZ@g+&hg;~nc=U)e<~#LfK+{@|T40{Kxo@0a%%egfN(M5b$i7H+;h+KhzQ
z)7=}2Jq5s=*z8DFJ2J}=9i=r7gB^=>saT3z3&$1%9DYNa(dj?JezkZJNF}BsF4dB4
z5MIMw6t!4}Cc>am+#AD9AApF?-FYb*dR4z|JWY4q#cAFMz#AC|Yn=U+!iG7?2mke(
z>_6QR-r>O?uweDO*~wP}OWKLJc3oVR{^hNI|F$@|Kwc_@D_))|L;8>$PtTr>^rgD#
z`NjwMu|(ctZ}(kc$`lxXpCtlj(|?10t){I!-W*xhL$VQ5eiO)op-0-N52JYf(bWq}
zfZ<);<zQ)eE69T?8B(V26kcAfZlEt}!8&I7k9jqS1RT)#t^pXz5aJmEASdJjz(PeA
zmqyyTGEMg8%@7(>KtEuco%)OhOao=+^|V`@@;L2x$NgZ@Ne5BU#X#TvxU{q_fj%(V
z!nD=I`<Kyy;4@H*kRu~UG^-TtEY(>gU<GJuqp)f&WfJ)uecbB&JSQSn72l2w1c*}v
zSN%cWUIbc&Sy;(b-|TGSqRmezD0(#r%hPirZK!wO`mD?Vay4^%R{x`Cj&=QrO2@__
zE_Ep*il8pgXK6H8rR@gbqPLInK9%NAnwNNn1D1h*azZY`gS!Ow`Fw7zAsK<}zqQ+K
z%=mBK@p*ot7a*tR@*J~h@1t3j&+@ZS(K3j11>}t5f=Zy<p%&lzbn5DGti~)N;+StV
z{52{k2dEKL$W=R<nwnsCpnab~4t93AI4q(A!7-BxIUqf%gq_LB>RxE0kDMIy=$Gi6
z=;U!gDUex~-EH3N*`Ot1Bto`*d>~84>1s%EnSeJmFf$e?X@501Iw<hD<>BeyU8X)Z
z3&G3aFH~>RaAc)w6i?j8*6a$mMTW&F9;{fHiU}JKg{>pv*)g#(E&<CTuc?X>7}FFg
z^{R>SU#?ssq2ZiYL@!~_Xs^=L%!oUCwVkQru&|<36GoL1?ZRct)huSu=wn2OE|UV$
z2ReI2t|tH&<=$ZDLNGNX)UBXVu3#g01#4=7qyQ2f16xrKq@Rd_x>-@rMDO1;gkF(s
zEiz765j+F+qCX1~`NIMi8KNYaN;p7_yn{p7jXp6bsXaAhi-%-<0+kWV$Xv+5;VP&4
z8RMie4?OJ{zlUY@S~t?I%Sftj?BpK@KZp==UBd|=wb`X`JJYWKSt8Z<mHORWke%`o
zy+w)zKp>JX8Kshs-~R5dDE%hEr?b0Rt$ht@>g;kLE5S^;9T1de2Eqz!=(k1NsI!Yv
ziXEUXc*A)`L_~`ARo1#cIsvT$Stn8=e_3_jUtArTg~0em<a)~`QRh|Hg5$5t%5!n+
zLEwM|7IKrR91#V4V|HQkdM@86Sx1=#01TP~Mm&_^?_s><QXK-7^~O{AGE>>?Kjw)t
z<TZNyKQNkEb#F7{{mWT7js~pVq^~Bf7mE3I|2NNGtq^3_qg?bh7lo>|MC-5=ClH-x
z0(Z(Z^n;a%ax-VVw>Q{$>}%dfsK+4Kk#7PD-vnw*!m`nXsBk2Q44Z%v1XEN?a(SB*
zbyG9fRGg}8Jfs-P=cu(69zVd@@UCVnPW(y^*#Aug9UmRqP(Z{GFX=-vU}RE%f(qFW
z4o9#kXHP&|Z4UKOQb@Ml>Gv;_J$`CTQgLiT2D{tK%*zpci7wi~(U=FW4U#)S_wx2t
zW<oTy`0{K4XDuOW!p+I8h@o2%uxjjW*<sI;%XIxOv5wcIB66QaM46CK7zO72ymQs<
zhSGkMJ;YXCNa3&>9)7z-I+lJ&GIL<|#12cW`z0wA;zx5%Oij;tgMN^L{U*1&#}_8_
z!JGlW4MxXFCo+1+(`!p6n%38TgvSaxy7e(nO>`L@WACV^y}Du|8AnB>oI}OehG<rl
z*Z6s(A7WDId<_W>#{6_1p`@;39^XGf67=l;H@mf`OexxSnig?vEqREzro?N;&|L@v
zA8(3x+3x8!U8c{+VTij<q7;I$sf?Wvk`ORY{K>!sYjkS^qH1=|-!ZP{kTk7()DR2h
zJWGK6i3)3lLo#6k5c*n@Ld_}l0lkQs7=e0z=z6=2*W<C!)UtwN(bdh({DRtM&Eu{p
zbEeHM4l%C{sLUiKC7Fj4;^Rf-eU|r+j-(n^obUi}mb>x6C-iA{U|NuyqSJ_HZRIOS
z1{3~?Tj?4@LT>F;QI1Ch0tz8g9*{wu>ue9MW+}ArbZ&~Ib}Y-DK9Fh@R{c@F8Hge=
z8;Japt9l~*W^*c#+Is`GoW%&o4GcL*IfxOW>HB^iso`KOTLa>VqnahM2uS1;uqXNT
z1c2etB4cd5cTJnP?!V6T0p*B$_7PDbugvr4jLqUOS}|Xm$zFS9{`GLUWbeZx<M$pI
zP9zVmE+S@K`@d|_KOeUuHa!%ad1<dMnf~Q#0K$emM+$QW-OvN)aC2s#>;FEdfvyLI
z;}pp*^po^Qu{niXS#+k}$8|3Gd!GhKs{Y`~xmLk|TA|q*+kX?EEI)VyHAWHn{`Mvr
zY<M}Z!1lq9<jmTJipS$_KQ%+cN}DN7(l}9KVxQh^<Gf|3V-DKoi<^SqzqKy!u8765
zs)L^22X$!ZQ<Rhgs?lg!>p{!|d_NKkl;}JC(1T*kbsgwK!+&0(_v&zkr7mmlKo=_M
zwEn`xK(*DPI&45k*B}y9fdR)I2r{WxYRVq|<`nYo)bkIOr&df~snezAdvpv%6UN6b
zir&Y;6)bM^gl9;2_$?UBe3;FYT_?+&!6gF5^Sw}-lEa5pJu+E97VE{y#`bF*c5a`&
zJF<Kt(RVD99R&(^Zh?C$im`FM1!H~V>V2^|JeG`gkUSDc{L};i9+lOI($HV=n8aB4
z-u}#>Pf6vEolkvV&VkE!@-O=uEyZ~z(d8)j*?6&XNe^3-Z*)vdo@V{KM(=iWn8yZ8
z0{G1I0oB%v98!`Qy>_EH5Gixy-e|E34idRNy;<5#`tzehia6}>se*)pYt`7_lEKx%
zv@YS}PUL(z;zu*Ow)|@97<W@IOj02gWv|)+TyT)*59y}~dtH)>a&pJ2T;25C-)$#r
zZ9fogY|((HVH({V*c%81vb}~Bh>E<&{q7JVU-%n=g?aZ{+yuIk*XL=pC4mp8IRZqG
z!53u>tJ%P{{yQ@hx~@;ts!7DYKP^4os-AND{$gu!zZouJ_FbkkyW0H=%<;KUp%##D
z0k)~~PZmhj=^eMbQyI{oQW<%AZf;GIXr7nrDM2GooGh80UEJ-jD4pkJV9tx5APxf`
z4S}}k;IO1(7K0ca?eGpS2eC9AOb?nFC$=jG671~dZY{yw&E{n#PYN4+5becJfNDIt
zR())Dq<StOL4B9&bM3Cj`5;Bcz@3}48t=n)Os(yfXp{cLGEiLhHtdrnryR(n^a%RH
zLkV8?1f%cVAbb>y)B^0yCQbKN&-WLs0Ccx3l{#nbC^(krc*Xs!t@h`GodkHFV6l3Q
z@j(r{dLz@z>$~C-g`NfmhJJ_FZhOAmbrWRE9ysV9(%fs<h%6x4o6UkEBw*O{;EPtO
z(1w7B7-!X=lEbG(@lW5vKN-+qFWES)2`Yab>d+Aw^>??og~`asZ+^!gf89Q<QjjQ%
zwiv8$q63r)BF3M)aTwe#teD$|lXup<EBOIzH;?XxcR>;}kF|$6Z<7<+DJ8vc3&d`S
z8T?aLjSY*HTV79bvp-)|>RiH2Jt3Dr>Tl;IoMOBUE)AA471{%I7{a993vXDkgiJNK
z<R1#i1FN@Ybd{+T+$PSKL7yd%(ghqg)1=G?#|Hm#Pu6}02h4l}eTv*=9htvP6$%dx
zO&DNYF*W+*8Qx@~(Jz=_YOs5FA~ECIE{9Z^kq)RoTa{+b!*ur$PbxjMx!(;9a<?^y
zjU*;gI`_xF(B6U6V~yx*@w^^O7norDY(CNv8@=u)q37Zq#*};=A5>-@I+ok4(A;Ly
z(pAlV!yY<$+t#GZNZW51Dmdh>?eU9=A7nn4$W|XAB=i(<ie5JD0^KSGCJa5_NJWT$
zFXGa9?C=V*yH%36vQsso5YM*(To|A0^MPlYm}vpg5$l-`ELOErokcp<>%0?sHku<G
zb^jc&YcP|3ndoJYUhaa@AgD082hpwa{HVkd{WC}t{9(A_Ke7OnqVbe-#pa1vd<<la
zlyUChPtq%B3!Zz*sGDV<`s&X<Yp@xQ(F-N5t5HmIqLZBO39JKGfuBs#g?FN{3>b<l
zzmCNi)Q%7e%*86?<q9B*>sWFm-nl%TH2mGn%7nrE5&3XV$Ee>0+2nEcmmRViOWX)#
z31N#iwD7KUFDsFm^M16anMDXy%Cv!j;6$Si1KmJWAwo@V+K=&w$$h)<BbD!rWBMuu
zadEa_l2P~DD*k^l_7y;Nby>OzfndQcxO;$L!QI{6LU5O07k77ecXzko7Tn$4-FYW}
z&ztG~`_0U&x>Z2I<yM`u&)#dT&-5CtJ~o*HoG9CJnA|=;Sd1a5HG*@+V4uhPK3}u$
z5<>e1;PC-we{w(?D`^(u9NB=Mc##$ldgNDn2Lo9}xBaYu{V<l*$T`wLds&-l>~iQr
zm>=8|ld^cezkrHxh~!vFb?5isVAN37VI$>j*ny*^W%<Gt42h%!5!t{3f$O(AuX{Lq
zS42!3y0H|N2wGsg(hTHpGl5xs|DHKp%3P;H6ZPS5Wf?CnQYQ<TBxOef$eVZ>>k}@!
zV)?VzF*|p*ZX%9P3Aki#krF=x-yI}AN#b$g;5j~uDRX9>tE_A1FsmjG#d#+(7XS?c
zu_)5zoi)ngTZ`miqg`P-o<{GKf{&<~$@ARcv%~J3??WF@C(Jxkk1fo=`_sGo6cXm!
zXAnP~A@zfcc!@hjxGP_H$s?iQ1hs2CmTI;YcX*z=yidq58Z``jyM76h&XArWXJJ1+
zI1uM@NmTYdq7H$ocxaHxxEn)1bsc219oT`uRE(@Fn%yw6bk#t{(c*WGR>?Ss^{}=t
zGhqGj*Va(x<yoWB>1PP>AS;>M^bi2!_lu~Qf>AcX3uEHqCdA+o*Kq_06OE>%Dz1?g
zSs+2B!YQn+m6TR&gcj=gk>wh=Mn_IAl1#7XOR)U_E7bZ^QB{>_*h>%rLIjfUi=aD^
z(dF%JyeSeS0$yxP#=SCN%Y=%)CzR$~;$Y5)#rZJx(aj-cLwo{5LmA{18+6?~t5QZw
zkM4#oYf@`SKzDfZ49eP7)sCBE(8@^Yh7))f%m*MEIjQr$-a)oSg{Iy1p<=ugs4sxD
zmMZx!ls83ySB9U*WA!r0kjO1(>e2NESMW4S36<f}!4~$Ia4;C4n;0tPo;)XV`VD2J
z`7q{LGV8P|C#ML4pv?wbmh`EpMY8}HYPzX(Xn)2&^wTc61<KY}5A9;k`r9xI9;r}r
z^K61F*oLKpmbWow#=k(@G64Caj4gs-I-Iwyz`*T1Yh|v96Il!AMmTH)GO0;zAh&TP
zh)@O5dABvH^@Hkmu~3al&I%>h#*#0Yb9EcH{f;yuA-cP|wx2qRAro_Rb44eKmp^JO
z5=U?n&3tjW-p`6t*n{<@iNpecJcBG${Gz-Z`01eAbdOh%Sg^do^^H&M#~-MH>O;MC
z2HdT~S?*t~e>DWGj^6<=lDLo+BEn7nVHM{dRfM>T3tGkPqwV8QA3Masb@!*Le!Li`
zVutyg_79No1HG&Sfrr19HSB*YV6<M_A9O#`@Avz2O1a_hSLnF4JiZowU7efAz+^NO
zg%CoE;3}`6YrpsA^{r(pblQCMo-E$6ukv_v2d(fCA{)Xveu?+SdM=d98CewakOQDD
zX)4ko7(0(chHq|o5~XH`EQ&~geXWofUi~pk-#LKtj036kUuI}#TuCqA7qG0k#sFOZ
z0wkOpxA6drGz2%iVeTz<;SOG+x;kToJHlOkxq8ZsB=&u_fq#L{&&dVeopsK4qV&ub
zx!kEfbN~@+{@<X5?Ch9+)hSB(zZrLmgzto~y()BFcK21|QG|cLNnrNraWgkBts}t<
zK-0eed=U6?S(jWU{W!3@hAqG7rC`##N@egGlDj>_HrUpDcgNSC(0UAe%@n*ppg^T5
z)J)YvO2f3%R}FP$E?0SD2Vd}|PdWjv^z|N%Z=F%6ZMl}FA!3nV&w1i2pRCe1=TZAh
z9vT_^RSBzQx2E9NsnfYKx3bwPtHss|u{bn7?xvG^Dy3f``Jd3JW3&dpQ{*Jo;1$>L
zc+`Kg)cPntr_mnWE&X(WIkfnymPQcRX7z#X(Kni&#V`EDia%}0n(VK^(-$OJ6spIz
zN7imZu&((MI2g*Cs{JaJfi(l5*(^d$Ot1|N%@aah){8CO9hV{N8hU;}AyuRQ_D%E4
zELFUTmlt<*q{n(EbTXG2Y8=$vh<`LgQhZbr^<cO`R~l1bRJZ>P&~8$&6Lqw>1ZvuS
zw8e~N;br&XsLHqNR>sF!bk>&qsGHr8C+RkZ2aM12lFjQJ06I~T$J^`VZz6R1OXhjg
z0&i?fAE-u%n`~{^jsz}_wnO?M&dOSKI*tXl=zBsW642Du8iP+-4u=v}$d{ZQ8z}>=
z4=(a&*dCD&(iQHh40kG&C+cM*!ukSBBK8E9-URA8ws~RY)=a<#XZIbP*TLJ&pfzU8
zt;=>oS_F$-5wg3xd*|7o6nboy^`hPH0ll!%Kwn>R*dLmF9TF$2HPFiE@$=!w!P?5o
z@q9?S#;vfRps1N2mVH=+HQW~8gtT2@vt$U2(~-(ut2VGqElXgv;SL1MRv{Z{FSMYa
z;qke@1i9E_e(;sfl!S?<9-6sZ6#|U}r2$qnLLJ0dQ&yoE`UcC8_H6-2-Ub#R>o$SV
zk6=vkcdV0NWkQ(#G2Q&9=7=7OcjGO|C_M`hk__F+xDwZbAVfZWj&X~O=?8~E{cIf?
z0q5$e7l*8g?+IR%P&oI&4^7}cv)=H2zSdCnAeYSN9V(gcS0uj($AJ}Kil=qkt*#cX
z2h7Qqpl}dRL&N$Qs73~>(~9EcZ!J~D=D+K%I0NUA@}YE!*|(h@UB-q@Vj~@?TlkYr
zqg<gX@D07I_?JX%5*>V*iyUmK*Q+_LTixaPSG$us1(S<So#b2@f)s$RGqb(z`MN^-
zt4fUO%rovjqFF8+CMJc=<&e87x$3|IrfpjdP+r2~3-%7WuoJLzk^n2#_zWsGAzl__
zLeJLZ1PtPVkur$AWl(nk_HJP497r6-{6a<)yqzl}C|GGH1m`%-;eeB0wb?*LOq}ri
z(mF6P=+$fojf!H28Jn0$rrGx}WJN&1TKwGY4;qS)khDfcMHOY%b7ice2crplM@H{>
zvN$vO+twwNw}m(Jepwgr){!oMze1V$hNcW1zDFI#9Nvo#1hbk_Vb8DCeujq$X5$yD
z&YB&+oxoc({BsS3GijkbaUk-#d3-2|wB7oG@5+*){1QdH`pf*2N!5nbxf02{X5&8{
zf@ICjP5xRc3cyl<Yoev^14vIz%=)cTa_!8Ey{;x^Uk<x&!ha_(1UJMdZ2i{?_zTna
zT11q^OQ)~cA#kEpV$`aOGtaXt<yHp_jbfSS95;ZT$d(y@8Q*g|Fixxf6ZPvi^ZD=8
zP3oMUUM&!xxfc^?wM^@gq4oQJr?4>os=~6x`2{r{-uXy+hV<<lQ0)^%#whTPahsh!
z9^++MvpJrsvTc`CG#3s+h2x@i?|x2bBY5uYW%}Z>hr#cbpF8?{`&3If&FIyK9eM}j
zEeaMWI*qnjiGe4smgKLZeODeR+RxK|*qSX4j%pVx7qx%Uc}*c9|1t4-1mG3om0YW6
zKZy4c;*tnUbVHI(DuO6B1=zr1l0?FBqSoYSituz7c)0&VEm9fYd60pZl|DyDdN=;Q
zOUYh_YLxW{mmW&rChl^_8d`PVHnU7jp4l;(d2q>(zfFMuejx!w2YIT~6}8JEecd=&
zwWQJ+hTv!TAmc!#UN&4Yp>@Els*eVBFZfEWNem`{T9%PrPt%{J;CY#R$d5{i!N!%~
zl7@`gq8y<M748YoZ7gJEh)<B?HwB|vYf2R#8WE#PD?|x9WJ~@bphw9-5j`Zh8e>9k
zGQ2@!M+V#x5%Rkfer?)xhIS*TxZ!OzA0xS_tV8EwRvpSk#wI2CxE`UNpl{g}6|528
z@E3El>t4=JyD7&x0w;e?85?y;(`Z9zrfHfyzC+pAZOG}6Gju1rfjZ(NZjQ)I99_|G
zYmqt5hr2i`lCMQL!dS@o;hkf!*nDq)>12IPki=6%5EHqkuA`VzR+ZuW!o@E&FjIQa
zwQRn4egkP}bNKx+>@F%Gf~VK&!B2QZomY3|N%n9s=em1oEHb8q<9GXwE=+J>*7X$h
z^-c(atekcn^@ZgJ;c?HPnqEP7QW}>nN-WUe3@VEu7KE?RWYZM+ey3H(_!)J(tW@3b
z%Rbwj{GKsAVO)j;4~_G}?&sa*2XHp_7TL)tw_3d!7WH=NwBy3JdrT(lNz!c$WMNC~
zcCc>qpo@)@BW5&-GG5{j8&x(;PKSAsTY30A_Xu$bNhL<tIPBrh@EN?q0?=j8=cFZN
zpvRBn^TX)!`e$C-_*i@p3z)I4*YC>Ip3!%VGHTTGX@uHoHEU!txKjb@`u6VeF^Oir
zqT>u;zykg|k>1<+Hk1J03Ly(8RqW|DBNG@xG%aW@G3EY_MC9R{$01*a7lQGlv${xG
z5G!`U<%$<v^XO1(W~=k#ao4eG)Mbam`b@1U>O5@z@E~Nzxlu|1Xmx2b>Xc$#-M9`e
zhsk9t(&bRG4rLa+C7q9rk=^R=jR4c81~qtSJo=ov>#lCIT5Bz^J?c<JCsPiP1HMQ)
z7ujrH;0PnYW;>iIIdp^&p8^V#(x0Hwzseq7H$>}On8rx0NQ7R~Z!B-JR2XN~Xa*k-
z8P18=+uf@qJGR1`CTFez%K5g{FrX^hxya-LHqAi_bla1J4mnwp+jHxjg&L8GYJ(J#
zEF=<PprU`!*f~8V8s2CqE-X|vN0UFHr>2&Q{TW|;2XLnChy*Akg54G4v5WXy69TSr
zgg_?Hu_<<<xBVQIHP2sf;NbJ3v%!)O*3=C?`nYCb&o__*z^JT3u#FwcP&DmnHErk=
zU!h{Q_C+?~VHFB(lSuLm{<rTiP0o<=yG3q>FO`ngxiET^LJ_GV<PB~jdvFl8p*Qvh
z4)5(&fvM~};_+Q13h|JFQ~{o7tFr}EwktOFXOFAowlS?f9+DLS>}nZxr7-hbc<aBn
zcK?P((;{`Iq6UTqcg*cVhu38tZ*FEAyx*vzECmE2)ybEawkhRhDcQK?Ifmf7VXdh+
zz8q~_-jx^_m?8?0lFZbID3f8%_6I_5kB2(yu8{;N+^lzmFz1RWt@*i@M07)RFE1ME
zO-tL}s%XhPrrd07tVIGAJVk5zG^Jqi;Qg3BMzUj-+WKFyN~2-uFzlaP9u<<|y!A3w
z2(&nlk=5J`b<tP2%!)~Di*NZ~_;)_LExYZvSdg*QPC-gdEq+3PD!6bXFFf{rej$32
z%b<1JU(s2e*wo;#p0IZuhKy*(NBa@Ig#OEBGp+$<u0K3_xp3(IW56FBv;Nt>sPrgV
zb*_~x#md`i#Px_b)#ha8;7{ZE(1&W(?@ml!=Y=C8l9~PRn8eVLXWZ6hi9O}z;<=ag
zJ8omTTSar$D1$JxbsOx9lg$WNG|*mwjt=&W#H`#6KPm`PlQor#ZCBs_LdBX2`KZH`
z&^OYSzUsEmPK8n4lhXAVmO^_ZsFf1$F1cW0G*XO93YF3(A{lKn3l&cAgZBQ(V`N!(
zOVj^uU!>beTTG|b8vkUeaj0~(-bof{FbBi-u{C}0I1Hs5UzfP9Oh!}b4YdNO$KQWw
zo=TMvp5pRw(Taphi62>r{I>DqDIeP?=>`Sz*DrS_Cu@Y}AFm|Nk4X_G!|{jZAR=Oc
z{WeGZ*zM155EM&oF08*%w?`K+c)l#Be!d=L-~?TMcfLQHgL*J=p@F-<M$H{hVicMD
zIp!gb&2l<3`Q^hYySJXnEamXFdV~a{w5T_+B2L<e7C94P{xSpFj%VB8;NZzifM)ph
zmz;plpXE3{4dr{2L9*76s@awoa@ZQHr*CJ6?h9<?Qh9j>!x6t)&XPq){pH1_xkbv$
zN9EBx2BT-}rle{pzK)ADR|0(Um&*pgC!gZtlZd-O(80_4$igSJh>i{xHV%&9-$Bjx
zusMnQUy}f@(3(lEG>PvB3OqkV0((C}M2GILE8f7d>?Cs>+~aEmfwLjOGFJNaUB{o1
z=8+0rKP6ZNI=7gB_wUOkC_GkKOgGJaW|MZI7oI-aKNM06dK%D<otrx&K$k>Il^_8m
zTQ%<QP%$okN7^r5yP%<<5MvD2`G?Tep!7igHBkYCc!NjjDBGt*7cRPV=?UqIa_Zxu
zWzdHpAxeXjxA;j%4>F8aX0tzV|348)|2B>J3lgUQ2ari{s3n?T6LOKMkGCfhK!*6`
zb|+jNO&y$!j7;<6VM*_HDr{VAEF#oL>x}rsMB|&D=H}!91%T?jeR3k@_IQn?A1lhA
z0s?`2#VP<ar`uF5+}s(w+0UVXuiVF=w@IieHi~XEMAj1e5+403(?Q+GlD}<dp(G<F
zS5z>6FMleEF<@||*XN@hF2NRG@(9&HzD2+L+>ix#ZIUa57vd~wW=JW<hQMIJK&C=K
zX<=<SNpP!_ZUTHqEU$jg@1!UXX$q#@kaqB(Dj0hv`VBJ^+Hl(FWhjVYA2G;5rO4Mu
z-@B*<|6ceUw3hg(1@k3w<M<oqJ)6y6D_B{ysuXnWtZZ{lO`(hhP=dm-HaF+dJGPT!
z;xl}Rcf2E4NC!=O^2IaIw#1^L1qdgkIkI%Y;n-9`G4wC~6G{=SB!M;viqunhM6>P}
z<-*pft~Y7d3yh8`N4GuHmJ^%6;I<x^Ilh8rHRKXRFpQGPJD4&wHM+on9mtCLhaPey
zo}vf)ytS+dwlh;NcR_w28_71qa}hFQzL}O|Pq34xvh}w=q7jRj<GyGn07;W-Qd=yv
zwyo5il9J_{=z;^pdu-!PUp@x-F;9U2WJ+p|4CfwyiOtN22=ca<*%v0G)0{<wMl}dH
zR%7E7ZS8!U%nT!lCQ@eR6d0HgN(Q3DA3wTC-d`LPSmrOCIW=JgUFE$k7e!%bEjnH5
z2jdv28ha8{*hLv^P|Zw|N#lq{@Hn)ghuIE#A7d`E@gfpS?Yurj_}O&_?O8<gt`G&7
z?u0!Ys5h2-RgX~d=eTUIvm@agsk7|;qpYVyq@Y6+56bJ^OdFO!e$#aG9#Ck-?>_F$
zCNx0fzd;my;=I5a9T-4c6Ep$uV%?-`(ht2~;cJW@8VdE^-=_`=zaN!<czN;l&W`aJ
ziEy_42|M_kMlqTw3kDN$o%qPFnj7_&Lu+3oNtUw$HMmhIX|t`HTGT#Zlnf`EcI8RF
z%8AbAV9_UYKe5uN#I=9;w<lIEBpRwBk~J0e&;Xig+@@n;b+#s={ikYefmg~)_#i?=
zj++~7-!72cUm~$D7qTzs=LiXBK|9_!nA3XTY@efxX$B_P2mis4V21+h+cal?x#H0<
zXA(0@x2URbB>We?%D*rv{;H$*S)o{2S&gs0C3Y7lADBYw;V_%Vk}!E!21;QLgjqis
z4-=>qUHati@9dC5hX4`LwE)^=+9SH{<<&~>@#<P+n0@&1fu4j!usKz;-aLs!vY2U=
z1p!Q(KdhI6OyI5I8I9fcHgHz7Ql^sN`er5^L%LOtn8m&22K&)uOhz5+@O})APAsqQ
zh+JEyMfy0`mYxvi$#v=n&D!*<g2}J>lI@FZW_)>Rxws=e8U;oOfK3m&>OIrWOzkRm
z*zzSJCbKSEXlk{4+)H?iwQP*yR&U&W9ga;gn5FExxqY*^=P~P5=R7TQ!7#R1B@X<F
z)b`Q1pBZ8@MtWR=MGD0-wq;x|gk_*q%{%n2%N}KLW-29JtzM(AH!Mv!#g8E~&ujU9
zcdZ;1Tm*#>Q*c0p`#~w16jCx#O6Tpa%Jejv=EyjtpCA+~7<RDtw@>D-@$VlWKP61~
zHK|R;HE_$cT2HmP&CJ=E&!M~3-rH2>^mDHfK<5!4I6pwt6+anW?_EA+#JKfb-RF>7
zW_2&I7`vTv*&?r8k33z9ocNQkWhYoA73J0Cz0;3*dl>WcCb4=P{5>)flZ!OdPpjo^
z+;#7DS=rbaYuUad<lP)!9f05NpD%?=28CA+-jHq8(I!dC?6j8n4FO*|7f3R?&K9CB
zp`;1Np38W>*_Nu-X;}LfaO$xxRTg1sNoz=3w5R=;81Mfs7ISYbgTh_qw^rhZj;Aw5
zE&*#?&fEK^TDO+LGRmPaoP~sRms@lYF6T`}%03-SN8rBc?z*o0E%UCIrs+$PdRZiG
zHq%zF!}dC6sUO>4hXJn!AAw0f%tG9>^wExEsPn9Sbqz*&dI|dBU#;X<B1Ta_#H3_$
zU#8w<TM{2`R3qMh_4(oA%g6V~Ci7dWR{s#E3AO++2C<bl9B#IC=c6-g;wlS|+(c99
zbv%)2ZCt$$XJi-!Mc&qRD`JS>rr<5<@ySI~yR^LW_#Gd0v*0O9&zDV<{FXH~H&<&4
z?q8U7JijY@BK)nX{PzdtKONcB!QVS+eXK%C<!P!DEs>fQ1%{A*{{E)=LW-~kk$Dmc
z@(vDYn1X9KuC@SA6BeyVZ*s*Bz%b%No5>^-GjWOEeJs3O3$t^fFZ#pnM#H{4U6J_c
zGiX5u6@x;atl5*S)Cu|9yECA}{kyQGAhE2mrsMZA^Rb!1IDb2AqV9r8>EtMEq$Hha
z8SG7#0Xqu(KL5TUYmG;r!HvCkx7pC;z*k(>whVX@T)?Sa$PC?NTUh`8WWWl`hEcYV
zr`}Nl#nkO<Ba?E>-a$~m0nRieb<YR5-GeQ<yLb=j<CXF#?5K}%{b@XOaSLB{fyYVM
zvI4zh2V=p$P?aAfXZ2?aDjpZO)bc9g7X8WNc7zLH=!m`}{65uyZ}Na9CLdzF(YfC=
zCx%R({NmP&VF(0Z;Xb<I?il70iT;vXA>~uRtG&c;Jk-42AhvzF3?V<*n|aH-*pkfE
zF4TQFDxwOVn0Y!)qZ<T4@jTAA{CR)d;~~r9O@$&J(%NS;$&{nHH$JP@s#>fjq?d(S
zlZ<<<Z!glqP(mVYAdpg%kc>pdYYH6L?*yIli9n{}<Gh4$6qxU{m)5<(YXF-s@cHG=
ziQREj5GEoRW};GYXJ&P^xAto`;c1bah}tft654_efrKg2e{lZc2-d$S!d0<>9;0Jg
zSRMqg$s#gEvkWPwEy<PJu9j_wd+mNRW5}thzI%XX?gL%*DQIfeDt_;&!Lo_!!nIGJ
z^<n^Av?-tu0ZJ0(!=p3u?NokJ;9Yw=UN)Wr`@of~H+T^+Vt<eN%?2Ek-*teCBvSL)
zZSbaRmn3!`mzF{T>>I+`JKMY4ys88m)H5al<JmHV7)M#7OJu5*(^dD_=p+d~{`al`
z^qh_V!&O>(`}^DhSX5Q8CP@2>b~OphteyH7=s4MXIvQs3g*nCassI1Ao(%c^{Dz?Y
z{VM*qm{i59+L`UTuDsfej0`(wI28j~b>F3$qw<z;<x*8SDH}b2=M{Y)=yeDeV>wkI
zlfdiAg!%b1#d4v+z?XNTRsbGIOu<YAROAhbh^@l6gq)n3&6WO3ruDl5?`RVp$&O2_
zyaqZ&X;$W@B3{{FDoCU&Lm6L4Z5?mMFMAxq<7f-(0>2>!VvzK?Zp1fpJ8;ej-cBV@
z(o&OAC_4uYZrxhu^$IN_Qb8~-X(L9$^(xWA%#hTlBt*o^;Lo=oV!vd4vU+$`zye*&
zFyJ81+y<7<u$vSA_`PQ}5m}TlI4uTinI{BUd>UnQWjQTg_OgjfQ;GoaO!u!rsCd{S
zuW7^s3oCXWjYpN>MVZVr#SLOJh;E)P7aZCT{M-#Tq4*4mJ~=VVTc6A8WDcw&q07!8
z50wFaW%=yoY8&+RJ<6F1U<QIvK?JsHxAlduT1AFNQ5VMN8B&Rcr-SNd(-dx+IGb`2
z+{<PtmN5Dq3gUVh4ZO9(w;}=#wxru)4cR<!In2G{7Hg50bsv?9Ih~4}+}z|9p}SMu
zykbP~)X$G=)Q(4A88)^^H1oP-9oO0??0`{!S*XE!tF^%*V#${Zs=2{cSM&Nqm(3t@
zaLfS}34dFrf6&{0`|+y2iCwY*-gq=xEZs^q6B9|^E};x&$d<V^HCGT-Hs01RnqQRs
zw6xL=PFr^6g0d7N`+n~HM1^S*4FI@o;{X|*A#{%o-FL<P38xCNRQ1a{>X-vzy(R)E
ztb_3^oZyIvg3eRof!_X*XT27AH94_3B9J=<LvXJMG<HYqja1{NVUuxQ?$?Oao-Q~e
z3>GZ5BdR8+tlHeb%h9~a!F#Q)I0qv8qgkoOk<plt<>=^Web8(7zu-jwQ_nG8g(!O%
zw*Jm@c&;2OT%+Eco&y`86y#Uw^$$VU12UW`fXPjwmO`aqXqXR^d_s>|4**|TUnX_>
zM1+J)z(pix!huguit_{C#rJq7)cg@1dy&TB7$0M9m~@{hhBWY{(jD(6Ob}eqIKcXb
z^WHl-2i*h->Kvvv(B!3idxY`k(D&Czv3^y{*c;YPDIJam1|Ji7+-_O@J_esef{yQT
z){L}JmeRE4R72(-w1Z4Y6%iwxDTTO?_V9CECp3|uTP8GpqsRgs0(*QW^&{@UkRb@x
zSUOnS;x!&(Lz+y9Q`gkg)UvI7st;MU%rq24>So-zW+(d7-?L7q(Sb;vxunEIDvy**
z_dHF7yEA+Ny}s)l9gi}ioFAU6tEY>sPj_eeeq|8nTV;+IrZh5In^;q1no@6PaV>=|
zcgbh?dH$tmW6d`%#+SLjqCFXZ_Ca-hyd)D1w`#w^Jz3F6tHsSC_EaYhKRgm)Wnh@6
z`gP$7qO`ZQCL@2N7$&l3cepGenp8noQpv1UhMvx|pp?`Y9<%vJXZi6D2aJl22K`J(
zJ9>Tpk4pnaEb@u{nIA#O-X2D<RU#1sR+!zRU9+M#pi4tu6KuM?GwToUo^EkeNrLC+
za9`pz#NlF>ZvN0&Q(t|_336&2TBFbPF^BgiM!l_q`u(dnX*2|aDi1<Pk+MBY{0gQ}
z6OrO%Xf(tv>ziWa8g<W;+2aBDCG@Afu2yp@mUy|S`8~tj!B?D>s;Ec6CI>13Lf!_y
zBf$Ls(a!#d%;E1}a8cfmK<IXJ%C{(3*K(2qi80YbqHa&Oapr(CnF~yBq(J;aDPFfh
z9T98SOw#JRPl1^88VW|f#W@TV;?>M_U<(j+C}OS4t##7JTsM$uzl+sKkH(XH)L-k7
z2L{HBskKZPUt}$dZg8v73uNX3Bw(&?0vJk{)weo-=eU(<o~pH^_Km%TDAFG@yJlN&
zw5Iz@r-)d0z%9K_sn}M$eQ=z;I&~9%MI_)R2O`@^@lf;!B`-!w2s+kjQ91NOzkpTi
zn<a<1%sebqJ*KF)*oqf&)Ikgn4drN9zC_H%1))GrqC~6_(0hm$qFb(D(GB1$32Gst
z>&kYjcj!hakE*}ZM~)Q5G7B@gN^8K+JU=H`fQUqiz~PcQIABX=*ohq!@Exj(`D}Hg
z&3(6A(3N-1_jm-sQZV4vE+`T(N&VIq5*;%(@w?$!1JM*5^x*BqnPWb4XhCKC6M!+r
zN=$Zy*tYj^`K8^Je4R=#Ed<#im60sN{APl>zXjX;0So~dt3U5#I9hetpQ^JzT@{Zg
zf@5JJW)=4;06+Os&B1(UXswqeE{!Ce_#{TgJz5R1;O*qsPwf7~G|9ZNG!Es$!#A=+
z>qyJuJCDmUH54w|6lrqzRnZ-x-41)|RkvTYkwUJShj3?vP6h8Dko>I}8>3Ev(KGXo
zyBpiTX~h5gwNq;a{uKcNiQmc5zpk891?4+vvj=)3yt<-vFuG7x;ik7&X~=qXbktA{
zxc<4YrUP2)jBP_X25M#xY~?mkioAIh=n}t+h?q{ft5V!KE;VRKlgTjkbCO2}e--8H
z*VG0NE%uuLrLL(^CtWTqU$3kc?Wq#2`&D)Ez|bRS8Pdlh^$Mqey$B-s`NOeh(ldZn
zJjrJV{>$ci`AFX(cBS?j1#|W-$?d2ctLfru?<|LBHYo;2c&tg8nDua&nXD8)fVr3S
zg>9lC<|nP6HN5Wdn!9u(d4;^o<epji*GHHlJp%&e?<EywI&YA0n3FMvlK6y!t_W{0
zrjL6uA+@IB;zI+!f2&0cX*&;Ymn%q^=kp3I0a3IQ17QaT3wFQj#uU5tpBvvtuN#*f
z9nGGQnG+JaPxjuFCJ|Gz&ey8G>ly5LvEXidwnc+Ch6L$awbg|Nhm>dvEtz(!w-VlD
zlCXO3>z!>%q4{%~EtvPQLG~D%_)j;}<d4Hx{{xgm7vwF{E+M<w7Dh9&uzHj&eSOIx
z2ZX`{C(a57e_#P&6~$ONetvK6kWct8miBe5g7b&?eR6WzH!UuJ%uWrDMC9*)@4re|
z|M@4c@Q`=+Snyp(6i!SG%c}v!<ev}4nCil)zg7+jRpmX2Hgf;8v5ER3>#46+k)RS+
ztZHd#X(46f3`=0mPAq1Y7vj-~UT(!JqcYucS)(LVWDSD(S=}J5Z|7KU%VkyqA8y4B
zPUM1+>)W;)Y^C)CKZ`YjY?*G6lvT(p0TW)jU{M)gh2#bFEYYtZ|G}rHvyP5FtdL7v
zsPf_uT|`A@YlPeD+mc!ITn0(gF(LyLno8>GysELG-bbc@oE|y*@l*7H{evD632USy
zuXWghgq`XmFpO3<tyXi-=o~fdKP2F~VC}ueCPQfHgF^xzg`+AGx~*uv3|0)155xTQ
zvH7@qcv`pZwxazJPK(I^;4^o%6;xD^?`$WQR~;X7@>ze1CJ`z8p@uASI29>Z`rQ*4
ziJFS{%nq^C{zf8pHk+Y&G&W$i&54Q0u~R8F0Q9i&@lqieZ$u503jX7I5!&QG??OuC
z#RYo~rcC&47VHrEf@)8eu!U*Aa8~(ox=6=cutM79Z8EwTG?sg$f)zh1r9O+K1xqD<
z<%?u3Fa`m-8S;U&qgp+HTKgXluZIKp^78WQG2;3CUy8v0Yz_b4g|(MD(m3qHOmdTt
zzATvH{8HTwy_d0S3>*%ttc0|L#8j6vDHDx6#%C_)T8CUmwy=TwdnX#HA^}q*qVW<H
zx|6Te)Do~iGj9+@2iYY0U}Bz{#a_swa@xeQr`02l{hSkMhN%i|ITm~AMwGwNa8s|v
z;?HS#s-T&mWBNN_o8}J`pl$Mo5dNWm&MYQd_tK~@S8>(Hao>=%Qt;uKTYgAVw~Ft7
zWO8#_8X~<M*Zw+Z<@%`gOOu6bw!!tSh&u&cc}$o^2H(alc?~vvw0zoXS(3)e!fO*O
z1}xo?H*mJRjv>hixo&^{mtO5xFai<pYvbRy7OF);I<`-G>htQIzkm_dy!vW$pIZ8d
z;jQLbA6M(9=dB101ElGz^$)PMn=Ov`Q=4zjM!&(uMMNOWQtNodgAbB?zxl(JJeF0D
zERBDYkdPWvo1SZsQ5iM`>d!qBn5-FOv%vYPt;+hucO+tMfc8{~to15f;zn$yi+MxA
z$+aeajoH-`z1*ymW?Ar+Ml7h{ia)KC_D^~>7L##g{lOa7p?vz)f8N&rerx{wpLl!&
zkDXJn#;>dcd2gYqX!6ZzyU=(I0Io^a7%<+_va*POOjjD~m?#6h%92u3OVh>xdyR=M
zKUj!gdWl~k7sO*vmYW!}q^+#1k}yv5BXAj`BouWU6&1dWBM}SB>g(r<XE!#oo_sDZ
z9ZO})$+H3Oe&>UF^}_Zf>UQ5=g`3y4c({Z2^$d9{9hdDw&h@Ru+5GW-QfcuOXr<?<
z$jq9FZGMRiHBFMIXvThSq(!tT_Y{3H?3H21kS6Ryna{grY&rmwVY*z&g=mnIeA}pI
zl;z=Uw3iCQr5+fKJOC0-?4E{0po1g%HYSpnwy|IvWQhVp#SQBFBde-s#5Y!*_YU)v
zT{1Ntd=No1#B@<WpEa_##+Hhw(VC8^qawjsD`MCiG1#5)EN-KhFXrkQmCgxzlttsS
zSZ>8G`dKSxFe$R`e73Z<MADNs-{BJtpQ3mRCY0vka>Q|Y4L9Drx4Fy5S|H<I6NdL}
z9f!WA{Nb#vL$f(c_)R!;Ux1q%ue!vl?FAR}6Is_XX+mgz0A8~=6<4thIM9puAZQEm
zl(`0-wmG&3*Eg@Vf-=zGdbU^s*IL9-k&wQyurw4ye1NmKir@)1y8#S~LjB>H(<B5}
zfo>k$ajL#lBmzpk?a;tkk%IXn#DnR=y8B~N!CST#q)0fKi3!y4QUY&4MB=paM%Uv>
z1AZh-A{9!X{fv@=@j=7bq(}&!(!|WI0h^e<C}R`z4L(Sr?mC%hImch(ZgwE1?WHEU
z+7|170Z9J7=KflpOknSOuRcs5rB*gGs$oqS>xDG8v`AzV4FuPl16e`d1V6q?__wGa
z65mioJbog8DAR6JCuS^WdRGIwGQ{F}eOur_=`1Y1I_X#-cOig9tdETJ1d=<eVIkf(
zsNdz8LX;?JXqeT#lq#3lo6VSN)YacuX&ovbg$D<Jp`xN9ctYk!78NCUN|!W@cHLv!
zkUW(nBjkVvY2%)@?WNzaIFj9sfKH!Ar+y3pas;hC`eNCbGvGT5<=ND&`aS5<g?8cm
zf|1DBd(<HKh<F~&TgaE!X(}0wdQURl2&4+<BVBEibp2feaehtjPf)l7j@otw8ucX^
zs=E%)_J?zqIcHjVNBBsL{I51IJoYJw8=H^(8hv`{8o%7_tluunkWrU8uTwKTJUK7L
zlCgt2p070rr7bQq4;`vMKsq7h({k%bYlBx<!O><B7dzh-J%y`prFgVxls7+#rCD9)
zVqRW#yvUs8tm@E-bDKV-53HBg4gac5WB3AUEollp!JfWRIb*LsZGF0X+V&UGnH7t{
zNF{b+!>#+lNiaLBD3)3F@MKWdecbUnf2RLDGF3}~tXmC7o$7I0exwC9S)I)}xX>Ws
zH^$8uFwwrFa|SJ#*e-4dU-FY(5%*O4=^FZG?CS1W(*5dK+zk#6pHVIZ^C;X`w?3F2
z*WvEWL!q6;;^bCc?dia=+WOa^`iSFj1#KM1*&`2b^kamFvz)uf97CFW-vJ{yos*m3
zfa&vzNlBU7Roe6R;?LN7k4$)w+lxI9V(a%3WvkeyGpp<4ps(||CMX-(Q&T@l=;^i1
z>v<oh@U6yQ?yjz8UV4mj%B5E{3*B9?TB*A@wusQevFNtDe+SO!5kKCHd9-h-DZ0Ns
z8Err8okp&&6JVD3Mk6vN%dXDWhsxHfL5Lv3bhrxpr@vLAQ~Q(tM)EDQ4Cx(dlQuH5
zUd*#wa<QPyz5)kt)R|isAbyWb;B`ubh>S~Te`v*i3VQb8Cm~?fOa-jdWa&P?&d#zO
zGu->K$vaa>6-&UEl)`NmmX9wz60eTi8@>vFk?{WSul~q)vvXNZlcR_cx;%^1*X?dk
z;M(XK)svI*Ai!BVZasT22JaFb6_w(`rzY=5G%%n2Q>>_Vt7|X<vUm+((6v$gp)+)#
zXT!QsHV2SUO{u3pX^CWVc}McJKV-Hx-tv@N&p54>ZuV6lGCb&;9ce$|xjzv;xb_>#
zn^f3=`pit2;7s2?Y&77<s~aga%GU;2FGP5pH=-(`A7s;nWvvqNn^8s>E#2INfhEOX
z=EzjWkGjmxt@JA+Elw;}JHH5M2d-;62!5W<6wK)hRW96sLW!}ge{;KkJ7CA^9Snmv
zBMf)hNXItVBL6L<n4h{}sc{#Dei(;=QA_ce3B=KI<J!R)p;7X7#gbvq(RN!`uo7Md
zc^-T}i*jcymnFus*|!|Zbvbe}m$;o1-c(#Fh^JmJ3Ml*(ZkjySn%f+U`;1N-g@<6S
zH0=eJ1L-X_AL@@^cNx=8Ek^Pn0(S29Wa6}RDr~f-8uLr%&<<ZV)5`CP_ZINS^ya=V
zRsptVR*il1X0t)GgzH8b7E#pYtt#+%=AY=ps0g8$JRHYwUq1xs-y8~8B$Y9PW+ox^
zyZu+>HI`7Nu^xUq22d_de6wo0fnI1~SyJ3W*5$XpU&q&pU0&vQ8+GLdB!Aw>gTvGg
zVffjiC5=dWZ@p3;_Hisbl{6F-aX-gev}P;THmDGEbCi}<RaL3ZTA!NgRBK))EzTsg
zl!BxqlJ2Gq_u5Fo1>xf=Cw^WRb={1WoKK%>w#Ct#h>3|As#qn^>6|)@d_X36kGwAq
zmSdPo9(2gOxy?w*${=m7`+=0gHS-gfiPxu;T3HJW@!(6@Qw)6t1e|&O<>({*5$`-?
zdR94aNchvC@=Dr2|Kxvt?SFmGD$zBZC}V3ItSqqL(sWm{zWyC;lu^8^t1CA1mkuC3
z%x!FJOqvsB{8|$h7>L-)&(B|*T~k;n3YgVvbqU2()X^;BvD+1*D{b%Whyi%H*+N9f
z&!C_nXPoq|iFT&Ofk+B5942uhej?J2FEa4xyP^k3x)Lf8-D7hy$UjgNRgZO}lUr15
zLw+_lL(k3$gJG;)W~SN->wR8ZOJfu>Ev6zd*`#D|wOfq8q1wKP|2AvqYIKG0X;RZa
zFO?$Tu7EOXqhK*c&oRQ;X$TyX%OKwLXT|X=mbP`uD*<kq1wNW7H@8VCN%7Y$L}dKY
zWopP<b2KQL2y&lFz@!1iV7W2s@Jy;sUw?bZ5-l4O54UBQeR6j^i=M$mzS`G+aXW;r
zzA1=N<A_`^h&+u+9nq2<Fc+w<h9551dYbtF8RmUHJG6--m;snW0#gf-l8z(p=p>Nn
z1sj2ZK^WdpxH7kG*8;<Fmxz6Rn}-%jolw|Dg$5PN{YVQyEkTpl(I9ofOQyUDKa8(#
z&fC)70sQl9f)s0NYIewZ9)dLR@FL$qU(<mJQ&_G1z^8M1`KEEa<;N!JV%~*diC%Eo
zw=auukn8qX9hz+4e!Fd4@dd4*P5cM4w7kW%g!Z8`wCvqrlz^~=6vzwJ&{82Ck2;sA
z;^wUT_Sz4mL57HrPshf_#iAlACN_~KCM9Ljq|kr<Y4?EXe_K6Xv(So4N_FWQtnAnr
z7zNo1t8~!N&{WmAQbz)hp`913&iIc#vf+?kdKvFlhB+|N*(wFNd<zkEBO?4jD69@D
zJl@^J5Sz2NSo5ApWk=8iIL@Az;xpPlEHhhD6bsrP0U`T-MjIWU&7geaD+F6@cAWK%
zxFW}?qef3ZkErcxn?NwjH~%6l*b+eMs`STnTxIr;_z#-Ru_?R>*tN&spj7?BKDQyU
zVCm*8I4G{O{#aayuCwuDsy#pVjA%Bp;V1y#VlOLy0>6Ga)8c*%q_nm(67<U9K){Q7
z2Mt{I|Mum{0`?-ceh)Y|4gsQbaB1idU|>CK*r@q`-q#t3A|0($Xx)rkg{$M9Ex_TJ
zYpz4}bL?mhil3%o4)O9aJ;boK;qz64SErOrJE;xvayM8*R^q7bkx9-{a@@lst5+@g
znCTK!?79738_Ht*95DuXcpn1;1BE5i*G5ucd-w)sAC4uK>{6xgc2{+~{239aoRd*G
zSO8?CXexdITPc=Sqs+ClOWsXJ7u{y29s7~g@)J~0<U5VR&{XI8+zJnc=jRW3qq+gZ
znl~MQ$Rp4~%B20&1<*O68+GN-3MQdcv<aG0mng9w%NEhnqUr1u&8aDrbZLtOwdG2>
zet5aD5w(jg7T^L`(8}?R<3>itrZE6W`1P)J<#(|u@nUkq@zV=ty>e=#-T5-eMr8uA
z91@hHBk{6v9jsfPJz+8vCrUU&a}Qk~dy65>aFCf@14kRqUYMKPp;gk!Z-d2yK7SLW
zvb`j6d!TA?4<Luf5K#)d966HRvKN1*Bo`BVd|yOGA<sYlaYe-AM)CUxeuBa)_aR2B
zG-pxLhbLHrGnbOQ_ST`Yc3oJ*!&lUTleq`C@YX4Enl|1Dy{F-`edh?0pZ`B+`#9Kp
z--14N)Y+VM9AB`0bYA)-@JEjKU-TW9N1`qJ%~;bVHenNIxxfeNT^g%rZ&6h1OydZ?
zFay)SxRVM`Qc+KE(abdP=MMt8oOBApsjm5`MklCmo!@Q1!No3Hhx5wog@cZZ<L0Y0
z!MurAOr=xpfiP{|5($KYqw6ek8dMFZP;>!wL(3>*v_&ipVrxlpaez4@4h;u4qX9*j
z#_UifM8#)Nrv-~czcHfSAqI^z45YIOa=jPYnbjb0iYcX}{dpvDAE{bJjg(76#qUkj
z)uSd`N?tZ2l*gVCQPIr9HK~2>DVl~rKDnw&s9@QsDaoCSyV@?&Pys_>QvgK#0Ey_J
zO?a5t`y!Ou@73k?%Fh;j3?>JD!7*CUxFLDgGR>co7_>7)(hx0n&z3`03~!QN1q(t=
zM=Cydj<8C$HCdHS9y|wt|G5_b^Q)8NJ<pE$C%VK6b^Pqk2@dl7Xx<KT>#r6CtxjuF
zxSNqRXY+o#Wi`HP=CZ4E%~R=ZN6vhr+qdc_y4o%wUp=s)TQ3WAhC6?CFDAB7YP89}
zO^IewL%RZQKHeB%e?Hwgm>1X!6@i1uX_<mjbcrIzFpX}5k5FDiiHtQMK;`fVM|_>a
zlz*NHuCzj76`lA;tZ0?yX5WbHlZ|+!D&0;1BZ;kbw3&<39)>eTqT~-EllnN2U-gp*
zzUUB0g5)ccYF!R^#CfYz&vRTLV*kCyQAsNSKa^TQD;a-iVw<JUAQ?mvCUROTf&I6D
z+hix}Zsn5)oArJ09RqogyrRsWUq1r+)T$t<ps%BlldhyHlgP|g&Q%hOULT2A+2uOa
zgg(f!9o+dE8;|6J@O+Q9Hsy_U!6g|;)LZXkU|T7FF^oh{|Cq|<x3gHUVi{I^JRZ@z
zUvhG!0<jd6XWy%^Ap?mg@D(!JYBgbbaA#(maXujXA2>_B{n=Um*P7v6`W+t5M$<&A
zYjli4tr>JnTb~Pb{;dSqpEG~?;2<nr^N|!BKKWm6baUXlR;;elKPT5<(n4~Ox}c!o
zTx}_M05{ba<}SJJ>-NiZV`h9(r)$m#rWtxp^nwNpH*27PzWE#x+OSZC3{M1JJCxfJ
z>9p&r<?$Ghq1G~Oj-OR=bfoAJ9$RC0u7rnmr1aTDRpY28-f>B#)l~`qC@noyv17s=
z+hXLQV7NVk8?69lt?Wd!&1dVQn6$Jsw%LJeJrL}yC1z@Bx<`HFkHycw_*N;)V&|h2
z{Xgvez^`~K$Yhn2W=fvs;?hDwLSlgFrjBsvXF^?F-Rt%FIBPYGzaJeq)L?u_6N?gC
zne>c#*Rsi%+N!0Tq>BdU&_A!~A9qTNP+P<iD*eQj<jPM?|LnpfkN3=$<k~Jl@Krdd
zcvLgJdF<P@HNqf};zrU5slg`pegzk@zo1A_<qR6t7yB?|sYfVIqIiQn(Z$P|=2Znt
zbuuALHF={7G!cWiPbu6*6E!)=Qs_p85`{xLsW!ap3zf=2??h<Wl=fh;QK_YOHt0?7
z5!0;Jp3Lmrw&*xSZrbFD{NbX4Q#r+S+Ka2!#95*Ec7ld-h!0WnQoalhpr;&Wbo?gs
z(j{CR)@v)Skq#o*&_(_+ShYttae}A$md1T1%kzoXX(6+f`6I=IR+<7RTCv}u_uXxZ
z23-u`umDKbW4PPzHz6(;%}RRBJ>0h-<VzOs_juN3yl1k<=7u|EcR&mzq79gtf{6~j
z-m`7sl8rE&3u44x?fjiQPM$r|Ey`|=(_+6G-U`}Tusa+}U+!RoBO~tzkvT;{k#L`)
zE=R_4H#?op;=i3dQL(gt=+h~@LO*j72<mRR6PfTrp;Pi82Fo>HBj2R3dTyD@4`)F6
zbK{%{J$u7o>CB(uT>wu(gSXcgZCj9xH{>O@RjZso0zNH}`O|6+1SPxl;fba(nM7;a
z^rBT;t#N|@6Uf$jR?}&UB*1hrF+k~$!|MV-OPFhwB=M?8-j~YoslRQid7y3DMh*%O
zpIyVaU)`skRe4%bxv$Rn=RVWT=iThjbB2yPmR_<W>=z?Cv47h)IiW~?HwnTpHU#QK
zN<DwDKz5nrukz~`HLwZizE$!5EW#W4DXmc!zM$L@8Yd<?I=8x79&o$9QT~l?Z*1Tj
z?V!9=_Zbna>-Z)mwiDRl3Z$mJ`I#!Jn@jnif0_mlYxd9cIT^Pg^DSl*kx&pxrb6_p
zKL?yoe|2(XI)Ok4oPLN*zwLubvhChs4`mM54QM!<I4J?!Ea>r0e<>fKo4$Ei0*kAp
z7ZpzXCIWMp8{%Od`2(5af~u6sH`a^rm$PKP)>5aaoBMOGQE*OQ`J)Cc+nQxuYz@Z#
zR+!AINP|v6D+@YW++dQ?sBFxEa~*-3Y(a{}w5K)Dh9N`YmMC#C&(u{Pv?wMqunAek
zMEi@Io5wx_hA`ezT8VFV&|WAqoO0#Ohg2^l1xT#3)6=334)vUX3-h7d;8C=LDm1hm
zhS&T7Ph24iHU!5#?eC{cI!h@C-+qZrgEu9xtIB-4w{>`E96gyPzK_!F@*!{`^{vy2
zIxHuC;fa*G&;{bEo16=8yUZ)oFeQJgGFb3Y)~!!!txh&AEx{cJ9WN(V_Dz7DpIYU2
zuT>tW^Y1O-;d`k+!&99Pi<*yV8kUKM<7vzsbru!Yjd-4tLh-oNi%Uv&ZkMbasR2i$
zhF~eKz!<>!{7)2!4EICN$+MbK+DxejhvTUoG>#0<i=7&v5vIKwAdY}i9T&}{0e61<
zIUdh#fAlq$;s1I8IO2t}QBa7&z`*2IK;cw*E@3>atelY^k^j?XzwZH#c=743zmLM2
ziR9mo0WWUx%x7zVL3rut$yCKEp&qeHXTnlDgV*<NINxET&NC6wcGW<7p@C7+#9O`u
zpVB!;>KQ6z9p279h_P7(f%|_v8qBGg-N@do=<#MPSHZh<eR+Z4A7I~ULd@<xw#U|d
zfRSe;VQ1qzG#^6A9&-7w6Om93^i2_E>iquKkHwTi&aXrnImN=r=)dJ|?)P2uyAtWe
zhNunl(52${b|o@JI;7nEiVl!*7<uP18bAf1+<Q#WpLJ1OKzT46WnF-4Khor4?Gd|<
zGNF<m=_Ah2QUp%QEi8=q%;wd{hlR0G43C}n3|w3)hGXfOJwHjETP#<U>pU$~v>p5<
z+}(pvF%phmm`HsE)g>i!(S?&A8&9yne(sJ$rC2r(o`}Ftf0}qF2=T|<p!K{9_7ZSD
zx0muM^#fSro&aVh2|dJRanBaf(h~-E$kBS)nILa}t}$jV!UZ4rIlnh-AhG4p@`Yuy
z(2qT7V|)?P;2H=uyc>*(8@DM})OTMU#8OKID#;4u&n%Xyx9Rh%uUmX6<(1{d1!ZnY
zUv<5k-$Eu3?rN1khA=C`A|N=Tu&__NIRNy)<~vD818hda(2yNZK=q)t&I;fZDj9&2
zAV9hX)s)a_Rs96Yqa#SA;E<4=3Xc~v6-AKd+ytgJ*9#kK`C6d+H`c&mLgapC-++Ok
z;o&FD_wWh-biA*tB6cpKX*VMHjYom?>s`=RO8vcz*yjgZNKpw^=d*`ahA-B00=qKg
zc9)v!G~9S#V6=~#Zs4BOa8jFw)fGWcXgK59cR1cE7%h<<rIOo|;r!WtD)Jay7v0WJ
z-t-dFWShn<oVf4213eMD^tgOf?utl|?3&-6Rzd5Sc2~cZlD4CqF&J}O-XfBUbY)~5
z5r&EHmS592S~6HwfhEy~(j~>icE3aBW_}1dZ9=#{<$1kuDB%~9tbS4Cs&ww{Rq;FP
zLr1{uy3%uXZRPIwV3+w0_%w@KKQbmXR+W}Y0;afxh+w>mo)8|-_f<et9L=ZsMjO37
zYy&uwaX9eH4&@E8qqIYh08~ro*)|A#9%!t{!l`2+ljw`XJR0|g77TND)Q<D=KIh=6
zJcg$fzzdMDSI$Os$f1J{NpCEg5cV{_ZHzKP&$JY1!o6Na2mq9h!1fx@7=L}qgqtKx
zyg+@PnVoe;KN!Eb+!?M5w4AThWf!y$pfV95B*!b2+m({N1)Q#r5N8l+%C*}T%Vq&@
z=*I8{izTwV<)0Bp^T(YfdGt<!$CeVZ>0}%9*#4D^S~S*xu~WUEurN%b+`7}XV+~^~
zu$fq2Pka^8A@F27tu>jtzI)d`m7SeUVSNm1h4Uo(UsKWk_wS#DJ)4MHtMxie431bo
z;{=S`gO|$qIcSxY2L01o`O^z=Kru}>!3t-46O*d?m6X@diTXTRsZS~nj*P{6SM#e}
zv7RYvqomoxQx;Q99vG#%daqi}yYSL|n=2k9_5~rH=wcW4c%0uhI$eGSoh{+A)1k8k
zQ)6MMl(a9Bz$+PkcM1fD{3u?h9xL3WMjje{E#Mbj!AZP%KT@={y>;eLlFq#7>r057
z)1}&R(F-J^u^J4<R>>Ffa~0qg(UB1;8l}c_@>{7`EEQmc5*qsOCC;OBR64ZXnVWvf
zhaW4ed-u4S?BzE#iGfhSS%$XL<bc@8>;$9?H1>q8xn6~F0zS@`%)IkXw+lu`wHdG1
z1(#d+Z}TUd2%?z{h}Oy&5~oI|a}@^~-={@us100{?NpaPGkuTs{gjq}M744eUox6L
zPq}(ikIwoS@F{j+qCm{#Fo0{~%hI30paJ-wqT<)^6kt%vjR`2_rTf;7PLYpw3AZo$
z@$byrm%_E~3bidiHkdCEIe{2UpzL~K=wx7v_#IkSlxnN1C+o&=ky)|4(qD0K%6K?s
z{_8IOqy8vE^8E0jL~h+U@0Z)(pJP^dC|9d4*M*c8m0hU}I_7XJHpOUazW3kQ?4LD@
z6tYS_yntOl#2}N2<+aJLs=wvq-KexM)*2r#W1{rPNa5j%m#P$?8&*YFyaNw6<zXh*
z+0$u0M=g>gEO~qVh4FZQY_gTB99KmhwR!3TVxS~cODHKULet3XaP?Spax;hh6j?Lv
zp4X=A!YYWX_RvdvDM!WWkn5b+(=X;Xq}RGus+cY66e%h$j{IdGkJY+U$)Dr@F!t3^
zRds8>NXSM6HlT=fBVCfxAV>*HcY`zto9;$RQo2hTN$EzB?oN^J?mKzUcfO<Vx#!+9
z#{Ofw8SH^;%{AxqJiodQXpW?m(wIwm|NebK5WdjT*VPp4WgCc=7m2+=-o}k>C;=1s
zvEuw_C&3E0QT6QfUY1`mYqkp>-%u@9ty3<oaVA!=a*&l^peO}XPIFnJQ@JzNS~w!~
z0S^nyo8bFJOHE;=%}d{bi4%yY6$PI9D^yhGvTmJ+2FcEGd3?Wi=PNX#oZ8E4jnDJ*
zX_X^k^Dz^h$-vlcTM>JX9fOE>qVuiA4-UIEIYKcPz-5JJn$|Q~<D4V!L0QPUmtHij
z|IDKmh5D7LY5w>Z;P4xnlth155wy1E1hlD{wHcLv2fi5<)RH~2)*e$@BB}83@JBFX
z#4p=LnFR+9qpQv89t&vCpFdaNuy~8nN$8}~n_xANCX_%~oEQ=k!V#Q;j82eOg6il!
zTW&1NW>q@IQENs#&Zkx9uxoh;o1b*oPeF)qw70hp;O`<_w{_UpZ}`1brC5-F+Z2ww
zTtqTUU~&2NljZNt&qu*j3OLN=s_SV3$))ezb$Ss$AFaHybFA=1^n2!&(G)!%y?Geq
z6BUizMYS7F8N=@VIU|A7l!d(g1NurOG+1Neg09~Q%B@7(vNSSCo>iDH=HyWrS=M%c
z{dtl|JkR4;C#ee|ZW>apPcKvyXa~Dd$$2?4QkYjTvCf5k;5)QO8yZSQkIQBhWlOOH
zh2>P0EXK8{qzdvY-whpE#i?DfM@{jc-!B_ZCi8r0p|9;a_^g<{Yit`tDJ(tsT=Q;_
z>;XZMb<MmP#Fw%sX3_Xo=9K!dk}jLas!mi^mDZ-*^8Kd%)e<rilgiwaaEV0+rkZ4{
zZ4%cbGPl~Q=Tb?dp+qj~KjyPnM~I`ldtg|_?V;)9Mg_Z;+Q*zZFsmBPDSkSDQE^$K
zXt*7ZegPqHg!$bMu`rr>Z?6t}g#|=P&stGK=M!rj9Jk84q%j*h+Sq^zU?O^hX+xK<
z&H>1XjKtu7m&!E*VQ4@hxbr##+Fk4;1YQuV7-4z)IX5K|<g`}vUxT<32g0`DY!oz$
zjn403j@DNlOzxy?#(g7tJi~CjmqKx;0RmSols#%daFYZZQ>6-?yIDZKL-p?ba_fO|
z&YAdDFwVY<&;j@cip=Z`W4?aq%{F4O;`K#Ii2CFW^~2WcAB=U<yNMn~J#nPt8n&VC
z;nH|j&{n>~9=4_J6zDFYaJ-OpATO|NDJP+?EsKoAasn1tu(fSq*$647349!yPHfe9
zo^!S9amyxQsUFy7`E><{@Mgvte#N>M)c3b#RGZh}*bY|<M8?_U3OfPOO~<Z34ESBo
zN@sv8+WWNu(x@!e>VQuLX@<Gf0?1FaUCS1b>Oh_bOvN4&5sHlCIyW>lq|s1!b@1aD
zK?3TehPI^c3k&e<PfT___zu5Y0=-a0Bc0<DSRFfTx)?1n7%NoeSqGM(*PlLF?>3$H
zTK$Zce?91Q*T{_@n-NZHI?PfUr#R(EC-aPMJNuvEYUwv!pQxLa7hlI-GyryQroSnM
zLIl<Tr)zj~c>{}U*x}(J?A>L3J#SQDbxywuNvDIH`bEfYE8q$%1joo2zGBmOGcLn9
zJ3=Z{@;O}nkFEG!DBO-s=;BQjyts(ZpFaX;1lMaw{o(PnGX+zjo7R=<RlDl^Grgn3
zWBJw=Dp^*lRM-TR)ad8q4>AmlMOT*LTCN?!_o+VSzJ4{djz9dx4m0cW{Nfp=-m)mR
zZl1toy*MgC#9{|Kz8&`n$|2udjIcN8_gS)X`KmYYtFsP`UPp&>Y>%0I3w<fF>7A->
zL_~0kxZu=<TfbRhphEK8|D^*S%8?j6|AxzC+~nyS;UlHqw>hJ(8(G?NSrdA1?Wz)H
za{Ai`yJ0Km`6B8S&4XP`a^3++6pGyQFvH`*U{Em-V{sji$Q%Cr7SSt)-fs<3hJ8-z
z-#xBZeJMERrU0jl-@VW{HcS%cvxYWzd;?a9ON!<GgrjvkUqNpCNzr!v^Zxo@6SU^#
z&K4C9?#s-@RzYKhtXH;EAgfqdSU>OLT5z_66vk5cg$j>vZ{}}pgT@Qp1m{6`BopYn
zvT$(mNaJBwV^<TWyvQXUP%P&ha;6<rkMkeek|rjf!6<-Gf{{&+ClJpH+;k&-pyQ3a
zn+c&}lCB*+58Ng(_sP2pABMdkBqCz;xEM~IL5!e6=oW%}I3EU4Pwyg+$E;t@6FL3F
zEZIe#%WS$@VN!!rm6y-_;e=oJxu(*V3Zp8=qTh|c;dr%~R-t|M$22U!UKh%l0;C_I
z$V9ioq7U9Y+wgP{D?lUWukYAIUlIsB>|xho2yojp&d=sm(i%G$D_gAfI(;qc6ZeR$
z9ps+mPQtkL+5>SeK@5WEwdU~KRBMJ?P^s)W&!&fbwcn{fe9bV!e$DFESvi!#U)|n3
zGW}Md*U9paNkkeOV$bz6qNFyyt2gc}+tTv%QhzTfC<d?*OFjLWwIM9V?DYBE_zAqv
z)jC4QTvIMnEvHvweVujYhLT}2@Gr@QpZjfwM<3d6$xOUEaI&1g=+=z(Db=pHk%A*q
zrIJa=x+k5&tEzoD_pbRx1j{B_j>K{-qBEV>Qc=k()hS6zY3bPXT!F&6_|wt(EZ2F{
z25n`<fnUYbdiWio&*Wh5Y!iRL3_DGOOIf*gL>~~;VKHu!dAUo%Er|tQ&UxIrodb7A
zyKmEU#WljgM<fehZ!R_)oR1FuQCC6)w}9VNG@xV2xNs(MTBT@!C=xXiq+PE)C^Dv|
z`oolaizc8p&S02C(pn&?@`*!lrN>3IL_!LkKUI=-*i#9tohG*wb;AwEjMpXDYxQTI
zsmX2SA{}bI#%h<{!#xKfS;`=-C6{kF8Qh#a;qv>oaj-d??aJ|5UjxYXL#8R<AI%Dc
zk@28T$I&N^=Bn>(*zd%z<wcCxi-jzbw(H<x@cw8CfnZ&(9qziHz8H5wl#MkTFCJYI
z8VPq1s`r4}wY;FLCw5M7;`#-+Gox-kpS~9q*Gg)08udH_K7RAxz~+<Hz~5SzgITOw
zZ1|W<cm%1$yK|ZxF&zjK%Fr=GE@h8UQEe9PzkWA9JYXDxhGF4F)9NGwd0^!Y%}m$c
zlZHeP6&BU=PMd7nIJlxqPvcV0X*;sbd@&4m-|Yb&fL|~<$uLxel6cK0n8Bo^4E_9J
z-vSy@r;n7ibtx|}_A1^)Cqf-BRLv|g(Xa){+ZMmJhmUgUs%ykZgf$yozc#urEiD}x
zL&jgs={s_@ueRY{puGVc<ErZUyE8#^oUqY&fU%e`Fl7H}0JVyvqc1Z)kz&K-;6+IP
zpsf1=_BH=v9h`2(zLU_J{S_lzcsbR>x=ClV0Fyt8ngLb#n%j2N(|*S{3lpjt^#4{T
zcg4ZsP?zDF;(Q3RahTvmv7_?>{vXmzHyIJY_I&MQR0>h#o=<?W%1inb^#&rC8MP`m
zik-KhrbYI`%I5qds$ta>x=PB+Y0UzUR}}@)GB-ry?y@^0k8)}g4l#mkwr&5yOL!#V
z$fyJ73R99uT`!w%F9jG(y#pb0Pl^_k8Y+=6BQcw@b8|NjsECEJMWh4ezC&q~?S>@0
zT|QP#fbkcpW92Bx`?i9-yl;w#!b1Jb<y_|=ai>oBwwAS8ceP^pwe5;`-T>s@U3LTT
z9ZtS$UevxJrc*wgJJ^$pz<f!DcD?U909j&#95mB{oQHr6F)iF*&+>><wsfGnPrb+w
zT6_2iaEf?0JDq&7I56@BA!l3V{bZ{6zSdAZAqcV%sjmUlz=;i_yziZ^y>K>T+yB)!
z3S<)Dn5kF?5)R_<vM=GaG-P9rYdS9ad7B~opFa`S#&3hYBV<F&oI?!z7Jdq+$11;j
zbA1WpvU2qI4JCY`WVJ7=?)3FRg??@wKXMMLW4H(K40S<cL+cM=uD^whTL_nlK!Q#$
ztvoIh(HBGc$tbS7W9VS+j&AL%1WFnj^mo>P!Q{M7jUbD!ws8L}gU!B8U~lY$*@&wW
zFz~MUh`l(t|CKqFdiZGY;u^T)u0coVE<$%nec8H<(QNSowPfO)U7zUnFxBsQH!3Ys
zexWpzO=V&9ZSap9!kt>$Mfbm7{rifVm4LIQoI%#-&uQSYH`Xt#+r?JlSiw_`boGy(
z{*jecE85tjMopaKPBPlJ(I~(b_UFJi3>zNO70~er9Hz+dD(&rhM8z)jJh#Us9x))A
zew0$nH|<{Vv<h4W9#WVR-pno&;+1zIVp!kCl0NH}f32EHp2GuStIGh;+)K|Pa!A5=
zJ-r9Oq9rjlUPoKr<q)<bQsIVHeGN0CV{gd4$L-Ek6wKW%*rZxrK2I?TJ6R38AE}n<
z`I)J31-N_;!*y&a(2%;HPU4$WBjB^zev<Gt)n{Cypk{Eyr*vu$KJc_ped7JkwzH6$
z!RWRI3Q=|7MLi&qlAaY2c>cJUoIbCGjaW2~*|&$oe%hisUUM8rf3Dm(JOtR{&zGom
zL=;P#t^y}p`=A5q3&5qSSe5l9>vXe}RdMh@-}~Cr*JsJ`2qG@CW)LVGS~Hk{sl}J-
zeqoaAd)f*iSd<ySokQ3>4z&vuCuO}F40kv90{da#=8wi`lW79yHd&@0a1v%J8nkB@
z=r(Kx;b}O=A6JpO7JC|qr_SoyM>0YL7}Gbr6?U^un`|2=W2>=KdOUx0HAjf|W`<jt
zjaz)I-1>aTQ#8DTVP<jODRAT3(-0I$gkY0kkdo}ga?B$>H7bmFGKZprow>%Q_e(W@
zoSq9RSf0i)AU^j%#oo&zN-!L&S&zDYdVv$3o~unArBzT*XwXqlIH1(pf;U$X7eF63
zV$B;YWjnYi1TFO~s^t7$x_ZaYCg<l+!@x)`Z4=^ncoZ;&NjsrpXBX8xo#kX{W913E
z@95ojjlg@+Vmkw}&5HT1p6+_5tXwRyh{{kWS$psBAO;zyx>cnJG}onZ?yHJ-1zvvf
z^+hBc!q;tRdAuYRr<!DHHv7!D{z#XYw74N2^Lsj<mC-T3F<<y85xh8kYztjVZi{U)
zOM!U9Vp~9>!M5T6OlOj1Ni=W@xH3}j(XN>|%GN)<fcMgOadIjsU@)1z=Ju?Xw&H+o
zC@8abP7ht0vBrN~<RSu@D6jqVN`Rl9fz32oyR!o-LAB-V##jzFGZCRpNWUk_%1o?#
z8=HyxMQA`Zh=Dv}4*|`phMr!=x_6^HuU{&Z)p?U`NPVNcKzQd50*4?5cC+gP|4YTK
zQ)e%7%kEs6#2jk+y*?c(7%rT~XMMdIli?gA*>}1hAu>8>>7LJJ+oE*uM(t9KAl>3Q
zL3KM0I<&U=qD=yI^1}Q;pwa1V%H__}AXGvM&eu&6VrbIQ*vK*pT{e-*@#Dr_9br+w
zqlnG>q6_6#)so4Gl5(OIXUKkm!&;PRrs<a7&gAb9L4{8Qo%C`Wn@LzYs4)|R!!tu}
z*YE}tKVN>?wS8PAvuaBq>&O+m{82FHV8(av0|xJ&Cl0q>pb9R#|NKL!+ItYA%Y)LT
zwELWjxSGPc9(xbf@*(>No3R%KVUyOdZx)o+M`#C({M<%_`fXraa*Gs{^3KWh%R1qh
z5V%^zm^x%bG~a`GF?Tz*ytlQj%x%NqKWkPW<d5+msNVAokeg;MOiTjR<^>Wdb-O)K
zRhR~h@st|*FgJj_F#DjVb@1pHW)F$*?tWss1`BovR=5?DxV3NdK5!JCCW&ui^E~*K
z0xu5fSF6<u@8C0Ya7R~rucYVZff+W97dbtRZ!Y@75u;QIVzyofw+cNVq%T@h$a2V5
zed#skTxP#+qB**I*e{^n$Gu8Wy*W@`G!`~JygIhA$o)rav}Oq($0;-s=whN$@`S6i
zv$J-lN_|lW>S&4~z_EbBRdXobV^MG?k=T1AZ)TK|#pWbe5>F6cF;;apxa?R}>(BGK
zuqZlY%8tRV-gxoaxyGl>Uv9yXw`rdM|F=CrFqMqiwA1PBZr<bEOtBB;_LAm9fHk{T
zsvPK%Cez9A_4S6SS-X}hS%Ca_u=dAZhS~Mf&3&<luO9_8yrn%XzZf~2oV<~MBfYxw
z8NQbL2~yPTxT=7Q6yfVVU}HR>^=cs*^6T71=$4}M&8ay2@d;J9LgP)#hE+!yCievr
z#{<j_!kFuQi-kC_r#Q3R^R4xNwe5|{IFKF|x@v6qlr+Z1a<1O#V0!*$tRTuyi?_l^
zvkv42R8H(<1TzkqF^Zi56c052(d)yxKZtM7#JA-#R2OluNO)a=idTcEJOT|Pc3}>+
zRT$DxD6O8?X~s(Cq*_FoPEgM){Oy;Ff)T^K;-!iR>)6}W=0|4YT;Z3)bCz98wmO>X
zX4}_om%(ytdt-B-&{Bi@aEt3+?9_+^G**r2Ul&&X>=;Q%z5M-nq!{=FS>T_Vkvc_z
z5%C1)7TqPFv`H=E7LQ>*fQz!0w#H#l%Sz2TIuX-(9~~R}Yg?gw4>b>;l(8^Mq2F7-
zGh|RgF4)NMIMuJoyF2IOLj;j9qNTPd{O~_^Tu;Q>0M8PSG#oCDk#Py3DX}1#qzt66
zm~-TI98Bs;MZ>r9S|p9`H&_IinTR1f>q5GNrk2?`0gdjaj3Z~yHBOJBD<cKRv6|}%
zba(6h8b!VdVPloii7?r3Lsall?3nHuE6PuZ2>@qsY_5y5=_A49$1+U}u-$K}FYZ=P
zMY5owVfGz9bm8ZM9C+QwcdGG}!#u8-f`&%Ig{K|ik=rcP8=q+c_;JHj7VfBRB;S0L
zA3ExZ`W9480ilN`eCHjh_-rxY7@#6o;E|YT%*D#t0yz)H_OMja0p2lx7g-G^>qxI{
zMP*G`Vcm$~_UX|ooEC#|Ph9%tEf}k)^8*x=Bedg!sQJ5ul)tT5`}A9)tYx<FG8Z)$
zf^^5&WBZUwaocUXta%8G517emvXAkmI&aXNgVIi;)vVBD&S^DyO1_}_Bwp-~e$Oow
zj_3pH6yFR2*ktv^#Qb@|*r!)mVljx7x8*dG`1+OX+n#W=xj88BWTpMKnpJLn&Ryu0
z)^G%b^Gs|Zuu+$FRJ-TR{7=$h4bf}EEduJ_9y-8;G=k6OcA+#|e&E%NS>>|ACZ1wy
zc7zpCg!95R+ObT?FYn}yu$Z|n6`}5D8C5s$+mC`wRB#bqs?wbr9>*J_S}vD~^H-fQ
zVWq*(@20p(u>p$L<_PU?Ql<}a!8goR?^C}r^Kfn?H;=f(Ey7;I>H64sc#Q+(l@g$}
z!+ubS4M!-K8p_sulXh^{&3V5^H}Evi&D3onCm$26_q*|f3=JFgCag$0AAF}y48q6M
zEnpC4vD!paR8*X@CB8spF|sQ2LB;^&+7G|{kgD|;X=d<CihmAcr}}{Tfl~3;UwE??
zzWbI1&6r5&ggg{+*b7shDp2&dyuHpA&MD>2qXaB^zT*dw<+;(ZSa%Vf?Oq&ul?6#H
zka2Vq_MVbp(n~*XhvN`V)uFoW;*aGIXUhP=-)AP$YS3B;%uN{3wetUn5C^@pEyw8O
zWnX2mQqGo1;hj_*1+k=>mouclfy8&zATRxw3wtRgfaLU+TgP0(?&wX*&Zfe*4bjK7
zJZ{&CSOn~^0IOcF<XJ4B8Y23m4Rj5nP)n?*Kd0d?m3O$Fv0cp{&>l6_ec$w8f9%Lp
z-rCx?y}kV#$knN^#zHlXE0C!_!TMZO7@M~D58k1NfTC3qB1Q<7i$wg{{d^<=7y%X`
zC42VcrNZJjWKW1uf<j}zY!OJP&pnfVv65r>Hadb5cA{pZp!B_TJ*r)G6M8Hf|LA{d
zFH4=dYbUhmE1RymK6;8OmI0z@#2JU%E*_yoUA}bv^7=*5fx04DWYn@lpGw|uo`N{+
zVv!_WUKP8JC7Mp34m{tXwj~CfW9b^Eq=1gDu1&j;rpotoIKD8Xt6V7v;6Q&zp-xIm
zooh!3+?!ilhZ%N9)9@UT;k8>m*aZWXPZhnA0K>(!R^oKBuIQkUka1r=ZJ6d7aZqz?
z)!4@%dPeEOFGqH!Ry}-^UWOH4*vN_DN_mp;yxMldXTns~03C0lVq&L|)|zSFKeMl5
z7avNGNn;#X&MHfL;^9^E+2UP<Dp<A`s9qppRl{04@Ur=nmh<QM<_8feA@P?&wlm{Z
z)@1hrFgrRr-h-CEuIOuX5CWoJO_QIh2%q|?&FzYbQo1I{^;$JKUzhcmqVG-6A$Zk1
zOq8VJ=ser$MvV9lVvAO`UJfi^8H(Ek$wfJY5105ZKvwpaed7ysfPZ8offyQICGXr^
z(yVh3WC1$>pz@~C@<Gr1*mCB+sTtpxYuARYCpY#lb!gD*L=G7j>LU$Xkw?|Y#IABL
zxLa2DQ(SfiHO1RGAOyM~021VH)^U>u0j3qmQ+}IzdeRRDB}jAPx>B+9nEm!3EtGce
z{(Ox8?$coqLo)~F0fti7o!-SPhpOyd6Mc!CvVhNCD4|(pC0f76DLm;C92amr2?lQ}
zcMi;VQRCB>gNB5<FMmIfu0O#23aUY7KTOkNvgVzt^P#Q?QKg=yDx#~76AZy)msAe=
z{$5Dv(j$7i`-b30tv3Rm#}-$to6hv_-vZu;BK}V`ki{z?kBZ;6EVl7+G&^7zc3*u$
z5RgE>4+NpESZ_G9bh!(0>|>ZG$al1h(qQ0XvbtYAqhYdobe!%T5<)8kVWB6BFI7{M
z%c1(zhgUa2))wP9Sd0{=QuF;^tj`9W5FQ1kPc7;OGB)v>xGxq(^g4<~KUU>IP(DDg
zjfKimYLuSDY`F5P3~>Kv)@Pu$r$@Pa8yy->VW~>3eiwQ}sV104K6#0G5AME@F$`82
z9TT&TWR;a{KV`y07;IA%;{rmoBa+8t5EpC=mpenf{lu@n?SuO+CGLI(rfNrR;ZRx~
zn_k@dmWAu=2tf}D9YC;p;aP@^k?@SNE|#;6*?I}Xa9~Cq<~)%nPq}%m&A#$x?nzX!
zqq^(puAmJqY~G_UVrqzf{9Ne=(f7x!HE$NY+VEt(vI=r=?0F_{_SlFbK4ON>b)XkD
z$bP6kz25u6@KKKyu=S83u3)9}96kTg8bu&#w>J~$!WZaBlE7N!>U6j(Yg^1@ZX=6Y
zrgArcI`~F@a5srt5W+a^kov?3^IP^$8`zj-<ZD>ph15Tr1MZ66E{uV_a;qTK>2rs>
zjy0Ij0pd}iD~O3?wck=9yqO9dP}4)y&Blzp-f?Kcww|lDO8tRN0kjhf{*_N1M|>d%
zVC_L2Q$_J>R@sQiFl`E`w?H&Fw&So*8n*Q9Np;ir1a`BESLl6Qj5Q1J$zhE;mWwn~
zThhegodx7D;vfAjclpVg6}p318FKa2j=IG`d!xolHvV)y&x_ghfzf^jNd-@_v7@!?
z)qa=ZXucx+{`%HrxglUO6u-|2ftjIspxdmVan6v?DHRUrNkNcEowv|8rJGn9@6a0u
z)I$>2IsTh7{p*I~hFv#V5J@>qs5y4%w8<WFikK?SOAkqZhLgB|!w2R?di7f9PgzC#
z`)jjB3Zs8R`_ty3%yalQO+heEemZMk@z6U$mTdF>j&24-7Ju#`b}#YGUci(lA5Pw0
zG#S-Ge0==em+H9t{m@@DpOarS@b1s)eP3P{b+Y(sMk4Q@L{Gf6J}t0ObH9!7&zgT3
z(X^mDE2m!2$@rnNH-7*Y-hETA%<`N&+Ah=saNjW=L^!X+&~cH8nQ!<lf0=n+iSb=B
z6A2la){61?t(w~BRb@)b$C5vdl~JW{oEM={uX=+1ATb?~JS}{}QL)-VeteFMWGWkS
z3?WbBwG{-k-d`3_a-))IorD<gk%vLAUw`CD6mdc?i1NX&GVKpX5T|}67%1b{U;ODG
zET)<xVIbO7Bu5D@{rG>U^<s4Ez7IJk6@EhQ`jkkgZGyR^U6`_u7{J-RY$Uv1B!nen
z-J!$+T1;m~hU`I}((`vbq&w7a1tc^K&p9tRVb6KhJ3%C6WMb|<)*OCjM(V}?3XTYy
z^wq-<g^buU2`zCb&z6C5t;K*uvD+4+FUH`KSQKu?M(G0rbvm<dL=4Nq^7J{H7}fc>
zpBxr1rW<?7iXVmw#KU)SyfLQ2S`$D#*_oxQQ5LMxrH|9F8+>`OA^~?^Wj?tSKa(4_
zc)l0*VrSrVzh=DQcuY*U4hF61^2-%3Xu-!v3|G-_X*ihqYJ0r7T|JKzSgBN^RrJz-
z?^%G$mK0NiLX$LMO|@8qlKA6a1XZc72SGouiHVrKKZ!X8i|{cA5|V!NeFDN!A%-EJ
za&>!==N`GVF05aJ)N{;0rn1*aOuKvDfuBa10Y9Q~I$>n}I&**H6++j6?cQCa=Nke<
zzc_v2ia_wYJC*NOB$Ziz*+AQu__|;yx`bnJMgC^+L}(3uN&yJi8g*1#Z1voD;bA#p
z0HtIgdfug3_Oj{j9A~(1Zq+0uB{kbv(%d5-h;ok}F;&w7>aGn&m=|n;{RbHCdkEZs
z>sN95mfXF4bsV?7>rY9|8vVVVd;8w<XuK-JxrkvZcCFZcanj3%50}JvHAf?LGjtC0
zS+OxONgbz{fyr{6q?H8jx@szHDI_=QB5^XA{cWZeheu-4bA!marMN$fa0+X4l&!M`
ziN_a{vOza^ZIa<}_EiQJ8tJ}XuwI^D%d5NHt4;^|U9)`ZnocWNPMbyj3UReO+uKkr
zg4wNaBKn`L+_It;4Kbr+j>Gxq8gJ94%feH6wCC;k_j}HH9>VVESUZN2p8y%F7#Yy8
zWA=td>W;sT!+37?0To+@Uw*z%S=|G76LggU1-$kP`v|C}R7W@`WhCn+&=J*Pb=m+V
zLi+o|wc&8Q_gl<Ra5jo;VZ&r|)b#Cq0P3R(QpZ|LM#LL&n8rN3>Z>B+R5^&hvY3tC
zy;jM{y;1S|KvdN6;W&)8I>T@NT3lGX2Zy*xkY;ADVwziAwMxODFsAg)VaJ;kIzy9!
znZ9bJF@uMM-156hh8_ithxoUz<88&K?W?Z6t!^l7Y~8bOc7X8w*Qf9?f_^ZxIbyzt
zZS<gb!{wXORP~%sybDMF*4Rbi<=B@oyJ!ILO;=hYYn}4?$?d_Rk<M?HaL&3oS5408
z_n#E4sBh-7Ym1*Onrz=OI&qYRJ_fub(|^aw$*H{4aH_T4FqD<J4Zz}Tz8Okt>bmau
zQ&izH;B@wy$Z_G`w&tMPZn{W71svK6=?7Lr>4pj63V(KD#|4f>7~f$_8_7=HCtBGk
zmFY6Pi!c{{-U0Z<bk4)V{+}$n9fN)3O{?t4q>~oavpIfY3nuI%$g<v0LFYac>BO<C
zl*^(O6I7=Diyj-Zab;x>^uqeW%N(Y$Z2$xnt*Qj$Fqob^Z9n$wC-(iAa-S&$+SEFn
zzY6nm+DyH@GUj{IygD`Q5`vrqts<OLD@t`cdXhrf1rk^II$f&F2*Y9X3H{wuY#0P3
z6(d%KFZB9?8l6t?^_yo_KQ&!tpI8QQ7qD1+E4w(BJck$Gj4N_0-AO!{r~+Z?U4d`m
zFn1SPe2O}b_@^#F+FYg1qvQI0|I6J6y$_hZemhS*5vK&<PUCAl*iSe4zkjE3Uiogh
zdo5fE@VeH=mdzoLi#J$W_His9$es&L#HFT|@P3Tmp#Hk|2vb-FS0oT=GfJCk))xQi
z({*Q4DCgmsZl=K0jIY!C!@|zo7X<_{2e2_`n!N5$=Epv#tMREP;uHjIe{`P&F`lX#
zrIuykPjE_ma4sF47zYR{LGlTyVT<AykG9MFYSS&##Wrz<Zk@#Emt+#!w>c9(9vr_~
zxQA)W$J^uo@@>z$4#Wnz<Vj^^Wx~_GMI`qLy^LT#8IKhPEL46f;?{?)%*4-8dA@~z
zG;&<%t$*^Y$#GxLY0>YAoqNBB|7#u@Z*qM~<7u^(pdrQ}Hl~4VF@9p=z!&&0<JfYf
z2S^J^TSaDnrSs6cFA3G9usV`^x3ImjdhU3!{-DhTEn+!KBI@We*oj|QWmzp9h}8lo
z^t!t9q_hT~p%*oZe{kTqmHE-d3D;*m>hR@s?U}n*`del7^~c6$h88UP1|!)e8}Gm7
zZ(}i8xD<_$mt}5e;z2l%Pi<dx#1LsNkb+uEfCR2&AaKd|(ni#i^)$3=c>q)L>1ocM
z$_`DdnMr+3S0@k3PUhnE%<#fH_$v}Tk(zfisMTG}$ik{U_v(vI(-?iriGWdTF%CSZ
zZR&iAeJu~ujtMpv){)vsix2YgHGgsXPF2<3#w+5ml~uTLidOvPa^(I<=uTzFf(dbo
z1k01HZ^lnn79SxAYcEHXGHly($QoaST5m7-^$V#Bv?Xsdb?c*tmhQ!wxwv=QpzkKf
z-`c-)DfIbmouvf{s_%v;N*>Mf&Ctzz++I811aLnXgS&`E7U!Mx%?;nHNVQ=I$6vo|
zM?j)Cqa)dXsr7g`^*S$g6uDT)fGnaOSqjLKD=RB2Mq)E_+PwMsJxVjcjgP?3jD&E)
zE0Cq(UFwx<Cllq%>sQwe?S8efZhj_@xa>Wtga4dadyqk)1XMw6eLi?{P6l=#N)D)k
zEY=t8I3LEH>JB*ris6sDPW`a5prlcaX-<a)BRIuzk=NH^LeCu;lYEF}u>+p|WRVo%
zen0QtGcP;(PQigdB!wPK8Mm=84UojC_U^o!F0_^8wi!y(|0DW;1ZR(SfPO#q`6?Do
z&kWiA@+!?exljX3cM-90q9Wo7A31E)u8JLU&r>^)YkM*3R#a+)wN{5{df*V;z@_PZ
zpF;9y&0+lm0{o2zRQ%pNbu7*$S2IK8kV~&(c%nx?qN%@!sfkaEySz*M>)^5=g|m6Y
zOL&6p1H~vg!S$6YLU~Yzj?nK%$SzwJUF{6D$1RyNP%!{CgK@aSXNG#7q0jo~+|6w|
zgia*%OiZ$S8+ov*tFm`bgnLpR=_jx(k$#CKqA;VGjb4fU?Y@HjL#lc0x^!C}z6-XA
z*A^9jukGa(_|{5eF?v_hhh9$!4jf%RK-X0?S}`6|g*;9vW+M`^o*O3dZC`ryFv^kF
zZ9;qd=b6d->G~J#{o;P+W_eL)lk=}$JB1xA#Eoi4SkL^e`Lm!{*nC2Aj86I7YgH0L
zpr~SDp3J_2#cAYk;D)*zM&@%L4a-s3i<-ZuqelZ89H3&|rbqP4g_4r;qW(Lw4SBoe
zUIJv7i7K_yC2m-EE->I1Gls7NN)$$`B=!!RA+v+1OQ&f!YStHK@%!05BXiBtO+PS<
zU;SL5_*_Jb{ZnWb_})%MQT&SftNP#?LwwKQDDPzBD&dVR8=bahQ1)bJ`-Jfv>E)}R
zXQ*~B0{GqJ+-|FTQRS;0LeTzLiob&y;EXhdH!4Clqjx-}@yeuD<$WCR5s^B@G2^6<
z1rVe;1ZV=FnqZpuvUKbrs_EX%z3FNzZ8O#IOIyyqGd~<oy)@3ITiXZt;g=3c2o%2$
znY@b0OSfm60>iP`g%{qnO6nJ2&EPqK3BWN+>w-{-<IdOB4F+MXX6ATy+viE*T)gHH
zVG_F;FM}&qZ^3X|c9m`A4hfvK)K9FXt-kmecF@UxGch|ov8buNAwL~^tLQ{;*1ej^
z`z9ZqWUq>7ej?g{5D$&?f|ndEuJ-Gl1kNjkLN2OFzFS`Tm1Fl)R)fXa$n&X{*}1DU
zRnGOjfs>_&G?T}#tE;>2gGtMOdWB)Ys}Q&HK*!8W?~mjng*i%*aQQZ4+CNXv=(GDt
zY-ax6m*1>61d8PZJt=Hb^VCigoys`clSe&~o0-sNLJUj%?W@zqF(E-=pLiU_c*!0S
za37mbHZ8glqW^Q`<|I-0$OYsrO$cY_6z&B+=@=7<wC@ruY88}CPd9eitAe<I<i^?8
z=}FuH*icS23m{D`7WsKdzsuuf&{fXgf0)uW#<HN{b0BQ;@RI8J{LXBh4C`O$wRH~)
z!NryCaWydLRd~bgiqMwbSXHlnIU;BLDKgngYJW`mcs|L}A|&PywCm5sLZFOTYL8$;
z?i=Q&weapSHIao)&jsThHiI7g;e*Cy%8T^$bSy%`q9{zghol1+1uyTvto6U?@aq5f
z5hPa?qF67NY=FD{1YPt*$!mD;wu+jvBkS6oI0o}HE_iQ)wRXSvT(Aa2f6)(ZS~M}|
zs$Esf=E;9u&9p8ES3xkPL$4d(nAVOl#<7aJdEjr?`ER##;fxfnKXfcm9ZXB#l}~2n
z<m7ZX=p6j~UTixypiLzjznRt52ij^)8en`-?AD(w5k>VivdU_HXKHu%#pBAy*M#@F
z{v?hx`2PcaxR2;Z)1`5<wD}}0{C_rtGddf6N4da}@li=@(GUeXj4*!w#)h2REyy1=
z$bWh$Jw5kl0^PWHw~pbv?nYYy_|pLAHZU}lu(2uI;c9);pTI749}Um9Y>k)8>ftKb
z${7H<84aSPww*8$!oYOxtL>_!fk7sxaNR5;NH)(=Dc_D`(YM3vPGHvWWj&5U)Fw`K
zXMKwv^~WW<!0{SNYPb{D?^K|qZY^(88_o0JK}d>7V~SR5{`~L%ZFl_Ne|ANB+L%Kc
zh)!G@nlVeER2O&b%97ZHBDKo=_*`+{68`}4f=}XRPJ(AZ*-*(flwf%RiUJA}5<y~+
zOdHs?$eeqz!omBjm3>F@@kQ9*`k{dr5Q4Ll1|!0KDoatS5BQ1cdhq|nMHOTs_1qg7
zI6i-7?0S5B+@QTs15|!MJc<+exIq;#|6Bob5t*2{X<wU`CYba(_w3ST-1^t*>JPv*
z$*!-TDM~ulY4t@ZZUb3bbtjjbeTA5@rE@V10mnNfu3VOX3^DG;>;KKmD-3(@@DRIR
z$F0?888BN(9l;nwN<kso*U!&nP)|Z42wfQr>y~3W!BdP>0(j=v4^U7B5twLcBU@XA
z8QhQ51|n-faPW^ew=<eauC=aAy6NqH9p60{yzqp-HfVhLk<jXOD$7d1{$E_8KOgkF
zwJE5K<%ulrX!)FJcL%NRO9x|qL2a$to@q%;Obm)vMHuEQqBt^ry{_5^#Km0n;U33N
z07$KA@^4VXe{(JFHtRkt!FQ&(WSplc7-7kT%s(8$nqSn-MV6qul4hU0r732NBs<Qy
z^JVz$b;Nil#|5GHbUvLu(L*98Z`I$>!_ey<^6Q52i&-TD2t#@OUX|Qu+U`*V2qb8r
z3)ZJ*A}8B+j_e0Hd5Jf(K?m@RRlwW$(P3FFWoK7W514pZxVU-YEQ9R@>GxJ#4JN-B
zzTaCA0y5W7egWe?0tsNqr*-y*Nb9)he*fj(*exJqH;p>q(SXZ9W&2~PBX}iBmfxh(
z{RqSDJr}{)ubO!&2=LfAj!Y@V|KBI&KfP)2^Hg>4rWRL8-CvkchdZfuCwau)_U5$O
zA$j@kQ2Xa=%?vT}mj;<%ym~v+H>w*ijvzjh^odsetS?;R#Fxnaf#f8w{9kK41F$tv
zD+ZM_j&zAcL%%fk(YVuwXXe~_6wGX}@m^hB{RBj^PcMUU*0Y9RzmU<>)61%=QsS_h
zqmQDJ8JaFEq`y{3=1z@@BIihy>DkW==QqtCnZDbZ8ZS2JBxGf+Dz(V1?~u^hgGvRD
zw{IgAl$5%?5Rhl4mhb&>w|>8K|9UUDOW`>%0_Da#WPdU9?}F_k8Th}H`lVQhE5uNB
z(ImuzCp|EN$J7YoA<AT(YB0u5_E+O&z>(5R-$L>8$<>-_Dvc-gN*~WAJq;7nr@P!z
zkok4;5u&>Uq#c!lnA5;L(S|3v_z;RqR`T6ygH0Vmp|7tWu2%9r+(J;$v!F3{LwpT>
z6LA7KH~pvE^!w)x;c%^Qmkr4R&MByKpQk0-yU6TrGPsET0jPps0O~5~W}PvHll@lt
zcSgZ(_0TV0`F<_uCLL}%Z@^fHwFOM_tn8+DRWS}Yp0Q+><$PJw*B3|}!rNqXD)TEH
z@OAYU7Y`&Nr4VgmnS8D<sAWrZ$=tsTP)p@i4`5COBZR(GJ9HXz0o01MtKFvCM$7SX
zep~Ym88AQuE~$i_YRax5w_bbLb5t(ffOBIfzaV&Ls`dYVdCk3s>tp>(ro{a|%h%t3
zW9NdJDs1RQo&EO4_O<ctzn4z+&^<7z1<>ILw^@wi8x-_WmJ?Eyqy7CDA$=ps|A7&M
z@evRZG-VrvG`RO`i6t!zD-rzyBw;q6&n_;5fJEMf0GIM4l64>LXuOMb@XcF!HPXHf
zy#4*-h>sKRXnyoXRIC)hN^)+lXlc5?Me?{5anTkSOdLrp6~f-_8`>CE`Q~4BJnc?g
zK6^Af7b|kkGe3da2hD9GebW{IIk>|Li+6p0G&23mq~xd13h|n|$TtYf%J-%k$?>M^
z6^H0F`B24U8adaW!09O8!)=5M$XnzR5esZ|rD6GKKh5OyJ8BkZF{iU^Uk`61V+4L|
z*e${lxP^;R-j`q9Po+(-UiNSd+YukDMZ0jlI{N-L(p`{+cD(DDJv4>+lh#)`TH1Vr
z(fm-gkK7(N1`;y8k*&h~Dr+kThFJgqr>6#@gZ9m|yBGN{ON>8mL>d$Jt2+yl*P2Ws
zuj4XBWG;~qgZ}a0XEECbpCL`Q3k>|i(|a5Fz*tlDbE<0_jxfJ*sHS<uqGbKMaXmrE
z?U!+@p{0g16YNST^l@GxqtB;r2}`WwEcUGd?H@FQNG#r9Vm-p7>hsoPI4EGG9X)qt
zrulz(kN`C5&Vyt`0631A*4y*>*KdEua?tyrgCD~z9sGQAgd0K-L42OCWMz%t6wVWH
z640L*W@OlYwH~^nux4)NW;hvOC(v^a>~WT?P$Pv7yVkEppQbP6G0HD9$ZIhs9~|N{
zeKZ}_Qc_AmL`MFcKw~}Pd5-b_zls%t&0L>7GatlRIXn9=y!`h^Vl5GIV>7zCBM`T}
zc?`a5D*x@un*qlE*_YUU{k1QdS$862Oe+0)++BRzNS&?v6$_ft{!yqKBV%Qq%T}YL
zUZj<d%=aVoL?|S#sQxJ)-K$<XL!Tq=+h#cK8r_0NTXVUuFV~#$6>vBI0vJRHzl|>x
zM)|(9)i{@SW6_VKuy_4}BQr+RlD1wlnQ*af`1ox^B2zZ<djr8G>v0YWBhUPNmZPc?
ztXDusTR)j_LfE~z^zk!xd-P!;#*)lYTT;LRi%O+#7~O*}Szq?jhO92WEwl{2Ra2rt
z#=v=H^oukoSVa5X?>pOndS8T@r@SfASuw%F&5cyRr&m23<$JG<;qO=4j`E&#<3Bb$
zieB@waAjZ@QkQtTFOPl^J~H}jLmsF^)rLh&86Jzw<Xt*v&G&{~k2pQvP&FJHrA*=0
zu1>yLG%ixYVES+j%V!erR%H|MR4HlqDXkh?r7c19Ys{Br#?DtemF1flPn*JL@$f&;
zd;07tu}AUYD4kGtuIlt@%b5cA(YP8hVgj@6+{mI+h@FRG)$7s4+>Q4{CQSVNT0l)G
zU1m9-la;l`@m5~Gu7QE$zpx2Rri4CuLVZWx3&CX(_FhmB;hxh8+~|92==AsPbPWj+
zZv(HxYpmE&syxNYWFB(fb8gfHrBS25_Nk1`jCE*0L6xy2w`{jj-()i+jjI@&U6|wJ
z21-@B0`^q8H`^-H0X3LLoG8hT|MUVla2_-6+mzk_j(J)5Z!#wn>i;h%=f95Fe^yKt
z(#>2b`-<q?M+GZ|y#I}9(to%Vd?IjzeXh_3DHMX_*SXI-_cr3ICLjF$_W%1I@Si?$
zq=eHYFDx#84ayPRj43)ws(&v8!0!@_Bf=vf9EX#idHIULcYP2P{3iI6bu*WCq(T0D
zle1(Jdv<T_l5z0IJzaT9yKfRpPae@`Uyezdbk-W3hs7>Dfs&O)F%C{1RM%6%Dr3ay
zhCUzK$QMJko8V}suG2?iSMBo|aj3v?=q2QH|GVKQ%^acn!@d`h5fOt%&r}|rkCwPo
zl8c8$=cc-=RawqX{raMrY_l=)`3sPbgSs&4PVl2uAPbD0Kw88P&~qJ~1J;Iw{m#rf
zI}<jr{zP;hUQH`<+c9sv8#!iVW*(m+HF92jI39IBecZV9J4Z@zo&;_;l-W1Gv(aOI
zjl)Ia@8tx=0M<Q7We)|$bkMjKS!K*9);|npmNs{DMcFE`c$p=){^2kaE|QU%l~W;{
zG|IlTyh%=4HuyF+ncU=u@@CHKuO{)23=Jfb8<YrQ6j{wLC~U@fL>1n7F7=qBD4qwi
zp}(2|=ciUjx@$6%xm+O^A$kxVzv$}p=?$LdJfPZOyS&U6eTYx?nA<6`(KSZBN%p2g
zvG!)0sfirz7>(7g(||@oAnihf5f-Mlzkm427m019d8*{t=F0B$ko{$7YnoZ{d82}Y
z!uNbdd`0C=0BwJdOh}-7qIt&mS@HS;_{hMdK+p4}4o_duvnk1@^Wphgrq$7Yy;GDO
zw=Mtk=aQggrJ$$(OVE#mgygJoj}-Hce9L28ghewN<RKS0rz~&9zJK!1;seuILduGC
z_=S+p-a^X(ppl80b0nfG?gwjMWpqrHHlJ^5->Tj5oo{YJ1%gJ##=5KL-RZ*lPU7yI
z@>F7}@3imj{a+>Ys5J8nEZ^mQ+N#9(%8vbrTl%%iMHLo@e;pwG`n;g9CSYA%Wqmg_
zDrp`^9>B@Fn_p6APbS_Q5ty|r@pBF7%W4c=UBS~aAhj9*<OTroDxaztSJdUQv$Lzk
z1$sj-8MNwE#%&gwz3fp4m;i;~&VhvSZV2=v`xA%z?uM`B+3K%Et5{%8Qg$-`{19+N
zmArj?D1oBces_-HjuOM2UA>y(QhfE3TEIqXy2>I^YT-`N{sZKTf9@9mLY>Iu<n7o`
z$Y43$X~`=_!c(LLfMAspn2j799%kQ}jac8AjYRFzO_TjrDy|VD7Lw+(=sh5~?7HlG
z^S39KpbK$fCHtRNHJ>-4JqH=9zFAXhRhW5^`-V?$a+;LsTvY_AsX!=b3x42jY-Z)u
z^uR)r_ejh1l*wMHEBGS5^bIOcQwc^W2oFSYgHkQLa%n*zgYid8x#;^ze_edfa{kfY
z@sen^k(R_=QhIIDO8z!0`^g89<0jtK(z9uAgMlj>wItP&_MlSC!`#hfP&inwa`GK#
z@P`MLv@J%b&O3T36gYqRaxfzN{-Y=w<WqfphS9oIY!XRX*_*d!R)rvkQ~qeb#pk>>
ziTk#fllzO?r9H4mj2O%m|3_C9-S&CY@EeM4mX?$5Au8nUHPa{01qhh7XZT705>N%0
zs_qcot_#CMr8OL8VS25K6-vhwW%?@-;zTB~PvCVy=D9c}<UuK%B)Jz6d0JzlrqQfG
zWSm`#03ba$=U!;_Xi%@HYS(?JfKfj)^~K>N^Z13_r09XLF|Ah7b`Gra#i=OVWLy1H
z$s!~UD_6gxD|dQ>bK5PUIfy#t8Tezji4b<Q>sqa?CZae11r)~gv|u-0-E6#E8>FOJ
zE{O%yp7J^FrEN`D_bZ|i4KdU2FNguUzIZ5J_HN~X*SNNaCWsba*pO1*((t%GcIJKg
z^5wyR$PU?Uao(+CK_**0Z%OrXC|cLB8zSKLQlLIz9BCru1+I#3m44kM3Y}K=B>YZZ
z1g3jej5_Z4Y0YI#+Gqp<|2j78?%mT~N#FWZZW%G)DR(}9a@)P*t*I$TR{&a+cXamz
z1OynSSf{(|g(t6@Fep~)DY0<z3XcLL_aObj;ynV-<cP=Vtb7`~g9&{<!c6Zy)@$E_
z$ppv#X45A9FPk<LNEr=N@G%yVfQqyWb__En(L+K-_Q=wAVWz#}t8CkyArg^lD=nBA
z-w$S7QI6KCKYIwaGJmF}e=|pcAz|GEhw_H00!hT9x2*c`o6kNv5dlNCVT@#<5?OqF
z00pC^C&&|4%#T@Mqcp5hzep28P{>>Ayg-O{kg_%Jj@KtA^ZQs)Ur!)oQUL7fSjhFD
zbV8^En;>0r^JBu7hd~5M6xrOL^@0PVF7ickAl1nfaI*AZGF~FcJc#2nE<>MyPig>W
zSB1dAo5a#roZ9iNaPpmL4Z6p7q=hOu!<1r@kB1%eBgz5tZVo&Yr<)$NitEdpC5;GC
zFg3*+qRHzkr;WN&ebQ0!6r0rI+*+NI=w0pIvDXfSBe5%zgJBK^3unZyTAyNck2Uox
zUgr+g)j5`HVXgH7ZWyMA3m=+Cs?F^KADvEmwK!McO0i{cdO4<Uh2rZBBsx)dDr$LH
zWj3>K5Oe=N37XcEPx*IFChmaA^y>XnqAKPpU^(tpEg@S_Tx?IdI9E}JHbeC~DKBxd
z&cW&vD#2=RB6UPW#1twgQkb|0=Zm(2TmfWpVl>+$B=|UW;Ce6bfwAzy0&I?txK8{y
z!`%LbKX@&B!jUmAx<671_@?S+A$`_@fC?Q8a+M9amtG95%5P$Ne|CY~J%J=u_L^o=
zT}fgxJttSZZo>_i`3mu=+lFCp{)>uDsqa%iiN0j2Qic1r$3MyQ6Mf9VWcKOj&ehB^
zJ;n>kw1Q%vbnGXR(nAK7d+N_zl=!9xcS;FR>}b5!hr7OiF$_(2FMKQl-Cqjc5#Uwt
z51`%u)`oGbz>vUs6T!ZUPDmSBw|i5~{j(|<#q)A^S1sSl^5$~N^jPF_htV<}<all5
z507H__rApI=RHh$kT`kS1#|9JWi|f!8E-;g`{wIvGwe%t#9_{lv>^S;JhN#jD~B%}
zII`TpF6j;FN7R!nsT1WyNER|mb3t07q0vU${~GiZiq|ig&wC7PPjty9E0d-xX7r^3
zPd-9_9=8rP3GMW#nVat#UtbfGAHn#1y~MjM+;(8f{NUjn{K<B_?F#$4SwEgke%+@K
zrKCNY>uj9)akY8sSn^7~L|CB!)J8ezwsQo_b;H`nXc;dB6g!==h-`_X^vo_kJl@oF
zl6gw*DEicv$aWB98LT;x3O~S`uKV?pkpFTZ3>K=P2<CvorUgB;MQ?bY5))f}u%1SN
z-_t;}Ar}o|zN+y$ujM{bItJQ`wFeSzAW{X^RNWJ^eW(7eKj@~LVlxJ;R}I(wjsw6~
ztnCBx%i1W<%=}mAu0zlGkIcI`NLpePzHDBj2jg2HU{kuD*=Z^-R^{xPD6h=c$fr&D
zG!F_Gq&>tf7yU58b=MAEhc^R06NRG_9xvVUF3%SD+F0NK(oe7XK4kuAP)YXbj+9P~
z_<ltwKIa3iIrF<o@z0eX4fCAjTa{%yONJY(Cud{>!>K;Y!9?PJE4v4V5y8MYMY+x7
z-d|+y4nLq?qS?jwfz_}tTigq_Jxhl}bxP#0IH2X#06N=)dX_xJ&NCKW;4q?fn3a|F
zjV3oK;|X^N?IXDT_I02OV;m#Ku2-@qpaR&$w{Pq7<KzX5bZa<X`e$ixu%fuWKIQXu
zHY;gnG1+;!MEvODcCrq==2>xxOZKZ0GO|DtTD@Hcdzry^BPv5O;p^8@yFu$KsdK?B
z9gl{C#iCTO^miYN3JE?Ea<+2ctv~MV+v#il@(5}7x~wO0d_I11G9D-jq}+9r;}+ie
z<Q-z7!H9fMiO9oYicTh(Py&{F{QIL_kf_blhIyv+YpM9PjjM<f4~ZIg^I<AM+Plnn
zQ(D}P4p`PiaRi4C5=#b^cV=qplMdMCJNaULgWe_)4y1%Pq6!LecGFH<Dk%yrJWn-G
zPfu}nD3%R|Q7+#mvbWf*eI)W<)#9|#O5Q*eXX0e4t)GuM;3|Bj_S$d7NU{9B023n3
zcL6eKCG}{hko<0GZ1KJ-Y;L`eAY3NKN{W=r`Rp=&27+1{1*%}<benvQnWJ()wbUm_
zqA!_S25AuSOFq68P+*wY^2y38M`$V;*q+3oh0k~sX1YkG7N2?i`HDn(WApxJOrr+H
zbH)0pE~N;(QKeM>RSCCxGB!0U#ix(MjR)G>MIT#~@iC?-7xq5u<H6V+C-ee+gPDO?
zjYU1E+1AciQ**z)ns(t*e4!ynC!*CLWQao1b*H}(>yKmcK?!sA<Z?ZLLLY>6cOPPW
z)=92z@m9&(nkY_HES0E2`i!5KUmvKUekljwY$`4el#Lk(xwSJXobrHXtzCpI;<2J@
z`wYS_#5DS^fE)b2sxbi)#!g7+;NZY;-t2{-rb0Xrg}0fx02vj1rb`SYeJ!&ZA~bBY
zw32<ZxHJwMUGn417oqxy(@YA?i&M3X{s(+6ClvHbthD%8Si-ZluuL#&?e6Y=pJz({
zWqsyrxk82=jw}Hx!7T_q{O-gQfM=N{jdsk(yrDJU=(fU3tdU%>8^lli>z)_oBTXCE
z<JCI;R2c5gl#N!}42VN}xQbfz<M|PPp9^oePUGO<VPoSp`oo9O6gEAoJj=y%@%)_6
zEj5V$mYbo2aSuY`U6AVw>9vyFj^X;g?<h1_S@4}OypawUaYp=3LpIm!alZ0tDAbD|
zBWtLkq2c%qhc5J4=vI<#U;5hGyF`jtI-Nk@@cbF?BOIKmpNoMPq}E%_N|Gu!@k$co
zWuHvGWU5gh<K9DtLN>>v>Zk9UaqIUH^&*O+g+^gJI?rkB4{;0EH|M7XMcwTFw9AN9
zQZAVjy1C(3D_$QK<F-TV?qf_NcGt*`d9m5kvgB7Iq4+A;T-WP#zD~T}6-Ew4wW>*9
zkA|w@hD=#EYF21SGq!(ogL;XFZxm!FZ+IOp<)Cnu7a4Lk%^zE2+CQ;0>33cin(S0c
ze^l-9y<5zpgj<RKsEY2hMTtuOBTGk*+KrL=F%EH!ul*o4#M+b;E^-67VM^~d7_SeF
z=Y3K+%bU^G`=VCT`1zpi<(;OjT`!5_{g7hEVJzl5b3}Na@N7mlnbrNdek1w8#qCEN
zM?4>J_0RE%_*M*Ckz=c_xVtA7YM%Hub78lXJzphJe9-ZYihW<RSD^HRH{#d9lHqsz
z=14DfrQW(lodn>60B$cFpJqU07IX{<=Y}^VxpD($G91OJEaIi_A|zVu0r&X`NX|c#
zy$?PQxbs%2)lw8jeg)UE55Sg)Qvw_$)5$mO4CF{%Kmr>pc+lF=1GqYdGKZ`ExdQ`o
z!D@rWtVd|R%yDz&F>JQjx2GPr;+bNhkp?`90#w0~evua<7<^fn<;6`m&IueA3EgDX
zKvGBHsv}pY1)8ph%fx{uz(a)MrKqS%y||AKB1Ah+Jsf#wnRz_p;UXXxY3{%`0RdhC
z#n%qKm_)0_c)_(H{6GW1GDTmkQN!0@UA}_bM?DPzB^=ZGst*unuGn<J=al#HNYzi*
z3aN|w)RsbiZI(1q_3%A?`c2oG+>$Tc_r2W06+lWYJ^+;IHVRQv#|Ci7uui<<u}%c<
z<%J@Y0NA(4Rdavn!3Mm{IbY4ukktPn>#f4#iq<aOKyV4}R!DGn3GVLhZo%E%-2#N*
z?(QBO5?l*+3lQ9)S9U+=bnm}!>vGkabA9rTG2ls-U+*`W7UnMbRd@f5FFr@9xm`rl
z)#Uw?U3xpHIxX)k1B*<>==h^ub=)0lpf5?MNUz}j3OLJIT=OrL7Ah7>CVW$FwD`?R
zp&|gF^s^jntbm`r7x=M~WYzC}T~f7Fp%?%hb$(2NEP8<LS(C+Ye7{B=+@G|4A3}Az
z`#JpVYQRnkyDvwZy}fs_A-sS21-x&l`GI!xig0$R@+tQ8)9|?zKwtR+{+RTW4ujnQ
zkJ(@|A9fnbHYnq_$^Gkp#C9%=ewdQ?4Da)!-nhuh1p((6ddI0ScEMFEEHpylPl#FM
zf)Xy2#^^SL>!r!ZP3wYp+$R1s<ie~AE8(w$u;CHGfD)PqB6z{a5hEz#Q{X=UWft%*
zBEQaNe5aj|g{vtrZnw5b|BB4>R`ACa{9cQ<#8}8!r16uZh3#91Ii44E=xlwF-6STU
z4nVbvzV1_)bBm5Awsr0=MtJmqBj-{?36{YjAU8q@8XOe887A1Y9y^rBBh}ZlL34)$
z*_}+>o~||zVGy1P_0K4f)%iYR|Abv^wvDh5b^Iz`ZROlr-mrO@=|jUHs2={fc^oBl
zb;Yqqgf1uPF`S$8;cpp`B$g+Qs@3b?O+h2HJ&dMW!<6I!RNC$_eWHWFtZ5Gsqm68Y
z4~|nJuO7{+Sk?OL!niu;VL=R=&F0WT)nD_}ngo|?Bv5V3y1AOulZKy4N?6Qnt5k4d
zOcv~;JFXCPIc2g!id!Io$-mPW(Fb@>l>vV==kC?zW&Wx|ufDgzEXKx-7;p2DFxGGv
zq}q?$L5VaNGBha%r6r$(OiMM_YTe=&IOp8v^1Iu!a_-YE8^hchD((~b5Zc;qh66UC
zwvT{&a$@-7H^5>e*1qGIQd(=a)jFHx`N=i$7qO3==M37d7D3&`Tq%kl&?mU=#&Ow*
zvA#Z3PiQTLT!GN>)B5$0r7S?a!Sf|t>L^li34(8J;<-sEW@DNLUgCFl=WFdx1*}No
zL;vItIf}r!>=y6n?G^041KVPUN~J;U=fTDA7E)D^>1W3r5saEj5RanX1IsNL$Rgei
z2~*9pa;FMEAKeAc+1nA6XXID@=~ig6+!^i}Mx;H7ME*D=3KhUN8Ze_RpDddS;rZfo
zNF+4~>H!bPZwmT69A6);E{yDU1??0y2gyAFCwJm{@u_RD8L`N`(Ea)LlnOrd?kUdY
z5ukNHD=I3UQkwfc_=o&LBy03nP`kyuT`ZpRR@csg5f7cgjlFUr{2$-4EhNacfFW2y
zVaIy~uV7OZ6?8v9uLC}z<~RaEL&p~M05MCuFYZ7{JpX{qFczK0vTRFK1R|t)#+FiL
zRh{!EGs!P<5QBMnAY{3;-eQMJ+HtFi0?Vx5%=e7XWh*z$JZ??xKVZ+EGANy7T&_mh
zMw{>(2L3`oT|xiv6yR8)0noIdFX+)L1G66IjFm~rDg)g9?I67GZpz<^Q~#Xv4Z&uA
zN5<#<rETRVlW!b2#*|Qh80?!O65jAgE^z;3`a@9Y;js445UUVwF2fP7v;{Woro)+-
z&=1M^=yRs`oS2VGYf%pDLrW5!2WwjW_|~d~imVupMa<fIim{jlA5XOla?FYqLKOV~
zMVdI`|8z|CbiWx;Ec+jfGx_H4##_s(J)7DMTktkesxL|@^}apP`CSg-sH~$>0QsaL
zeIIXy61PD;Tao*Fd!u9N!NHJ{4YI++C$O2Hps1FCYf=%Au&~Cqqnd-Rj7>@z_ast>
zJTcqR+=QgjW5i*QaD_5VA*2y0s8M-^e?0-(-Tfa3smFlbEJM~iP=Qk%EYECGtvgRJ
z;LpIzth8zJ0gh&0F=)L|%K}Ro%Z7y?(O}4ErF4}1pzx4(A(YWdr2OCtr<DE<IE4w1
zT>%zt$ryS-|4fOD&n{I$I_0*cFDV&MnDlt_o+`5eywmc4U@rgeY*jWH2d*Bsk&MfP
z7>+i%TDP@Cma$!oyvF#&JD7Yj3h+h|CFj~9M&A#FA4aSa28r>sRY`O%hF=EWz@|z3
z7|DnTZiAVWY)bHlATQ=Tp*C1N<L=nR-Tb(~IUKbM?00pJWr$N!#>U22z1G^CfHZY4
z$FEK~#yuzqrOP`n5E~ik1MMgSJlC_bOxA})2j|}ybSa$%S#SmYyW+s5^viwkf4lo1
zpLP=jX94_{DuG4~*{Nq2H^eIPG?Mk^c?ieQwPLdjWm8eye$edzP<o^wlq-b}X5>S~
zT*I2}06*w**w$B9Pf<tMLdIj%Kr6NN0w<Y<kx^k7h<vYf1uWvUOWz*H3eYx;q5eBv
z5&r|kT8hbbo{p!>I0oU2u@B0rqk15$#^>z>Se3T?vRdQYY*t%wxHcSa_dmG8ztO_G
zJV~dMfA{JmH6PC}Swu==EUGHE919Qg&a~P|+H9Jp#%}aJ>0TipgYH)cZ^#pOoj;uy
z_*G)hUfQgxS1r0Nm~XC6B=Fww&y`5|OC&2fv1`yey4~kxuvv_;9`k9cq$vR=W41_P
z?nGkt!~&`5JqhUIhO&t9EAzJTR^n)WBdU%gIeVKujfAEKI*`S7&nXD;lv#}nY*2DR
zcH-8gpKG7T?Cr88e^KJ(duIli37QYqHjhR`y~KZ{R8bls-Xo8f6_+O6Cz8n%<@=^;
zT;dmoZaMjJp-$6?TKq0os(+??Fr*vN{A^RCT=z|BEUp1L`dF%lm~wxrTku8Lk1>~q
z8O@Z0V>xjvvTMC0`}1@1(}hI&6)uknDD3t^`h3G6wNWta&bKu~rh&oGEF9%rG$@<w
z*i*e(u9Yj}sD5CSuL(H~2UB@x2a9us`8Yb=c^u$KxBtdywPh%sYdiiPwE4P^Ah}@K
zl+A1m%I34q@Z3hHFo=!3{@g3orN$@G%Va=qz`de50FQ80sNFcMa^Gf!fZ`y!!ULU(
znk$m)_ZHD6aG=Y+e|AP=&?Psw^Yf=1<G}XfLro{W=0Qo38QkX_ES-%fnCZJzngMH|
z6P%}{2<+<q66O<6Sntgd_l;3k(dUk^$^iq}z(1Lrcp&1o;ONM`;ryd?#E@5=d>7oh
znyqf%%}>OUm|b*nBEIk_oN`8!u9YU|1&zz(Gm@+;Pa015uY%v1{S!U43F+6J5BITV
zgNj_eUec2DdW`PRl|uz+T`)Fjw4UoYIY+L0-`&Cd3B$3+lH`(iXy@a6O13i>duA+?
z0WC8m0acpn1oi+|Bx{LuLF0eFiog*h$I}u=Kwu#MP?9y7z8Tf+gA$E1|7}TWp}xiL
z;}GJw%iei|If2zk{6|{pE;Bo@i^I!9(0rpMySe#3kRcgh^Qr`lpd{fJPL+bL(YDE~
zo1<Hn-A@;liC5d&;xTcz=xU&~o9v$b^EduR++8gf1ln6_?K#>xoNoWtX=@SE>LteH
zu%LcyLQFd8F!zF1OUx0bdH<SM)&0y6y{kjG#-TIp^^i51x_r#sMB?@EJnnhRbUd}d
zxnxu1)rwq_0Z&d{B&jKEV=IogdZ#pN_+D<pVSfpU&orC1ZJ;DSUdHXC+hugVu`bpo
zNi26m$ZaHG_$Tce(Lu8QP#&~-mv0j5uV$bn_IU*Gfb6JF?Q!B$*VM2UzwI@SyupYb
zVqRK2pWlT{nP9^seZwN2#Kc|oU;3-N<Tmb^$zYz=Ho`}H?$POyA5RVo|A$Xm+g^Z3
zr#J4?%VTX@0Gm8D$i>#sA)44$0M-n8$MC$Lows8^Ye;!>v*YEUqNASU)~@agQ(z2l
z4%)y|ie(_lK1H$0K@F52T9)H4xVcwDQ&hsvPq@N<BXY@hjBgL-wBr-?)+A^jr+9ON
z!C|Vx?%36DkB9?b+@k(`0sXjhP@rlS*WNT@a_Ui=bNaKDn}IVpZzR@=I?kgfB>rg5
zx-ry@<#s|K!KX<Xqn1y>$1PHVL$03@lNDpkPpfaS6A;@+6D<VLX^V~DYx=#fOaYmy
zJ`<XbIiV30K77zgG#Tx0g#wKlVjaZ&$75E77)R!<b5rktus=hR?tEGm#*Jxa-!I_T
z{6q;_oNMCHjGz=`p@f_}fEh#4(r4%okq(ZZV?E3~!$Y15R8-Wws#-y$G*<-klc}fb
zdm*+aUH1_kgh=N`K(HC(K=W$|El409U&{WWFD8u@6<QeFz?oQ9BA01Gq<{Jb=){}9
zD9x*i36<$OfSaNW0$$yu%~URM0YL7vlS~qsGVZy<w!Mx6C^tw6y2>#ZdZ~R}2pn?7
zsrUL*=%>om>`4yNH3M_kTvH9frDJL3{Gkw3C~r1vnQO2fyrM1$^JiGIjqJX%E~@5b
z5REb-p=lRM2!nn{s?eGWOau8-^dpI{kd4}2$3H|3eL0a!8}&BNyZr0*!S5#fb>3<c
zP$wQ5z?qDE*ppFbIv2nHvqGLmniLPsHBLAryI(ueQr`nxfx<o9y5U_3O`}m9)CNCr
z82~t`uxtL|rgG{6zQ2Cb&SE6n$p#FrkokC<F1Q;r|0Edr@c<p4Zgb(N=}@gkgUG%m
z*cCEzskyoE`g|`-MzvOGiq6Tse8Z^6p{?61tTmW%c1z%r|4`Ep%~_{vf8x{~*xC+o
zcw;W=?=OX54c$V4-5=0VOC3|VI6e2?&RlRy+!rhV{f)y78kYDlW$Q^ic%6a7<sK5J
z->Xv{>P|>{!#zv#1+xqm<;(Q0v4I0fh1M2Mq`2Z#Z9V)RPcl1PzV$4JJ2QFF*MWe^
z1U!tC$5_aeY`s79IB&Y67vl?p3`T9csy-bOvu+pH@pJbTC8Ig7s<f*ZRami3-&zJ!
zDV@@d#w&+V$vWp%3<}aq+_*u$-fw4zn~7iK-LdaAl#bF(i%F^M2lKj?9vRP3Z(l$|
zC0mMWNu>t`_wfj8q_sPQfHF!})d*0DW$SmD(l0^6C-6W=T1S^lrP#}fy$=?<&sVVg
zRrFv^qB`3_!Z14@&vpng-f}#j0AqO7rY5E01}))Qs4y^9y7OazwxYjvX7?9G)jUTQ
zd}u^V@I3l#bz{Z?4pYsbEJk+_(u`mDv3PElCk>9vB(*aZ6KN{6gh!&-k6serpevPM
zZ6S_xb|>1by7tbrL>o=2STil4IHay^mG)d0&_d#W%=X)9)v-=yi(>|$B-{QfF+C~0
z0bS98hG*r|jjrAcj_*?)C@PbxBaxU)Dv*U`JJ@qEYs355rykO^xF-WC1k-D?J3abN
zZje(fJRC;(2S^fdh;;OR%7kum-q)xmlrmDK%*{Wm{P1K%l$)hHZ3Hz^R>u6aw+pN0
z0>(ClLi-ACO1k;o8i44*bQkqgC!Z3|)5{CagRWKO>ylK=BCji4ntk+CmNU${&nBOm
zvauWj32PA_|J{+giFl(IBqml++j6S|&Ucp;9(I?-0c^MTyHmvE!O{dMfowj>X>H3-
zCD&6V3>r^8<};L1QHvwU`>!uub~_;<FLrS8N1L)t>-5qYPwv2LE;<l#kM0(m*ZF=S
zf9YfI-Clha*!6fo;33ocoA%S;dLTso&sU{_Xq!5QVG`6WQH&`(oAfQu{j?OTS+O}c
zi*?@XiPsdTbA8_#D6h4^EVTa1=n1N^OG3VHmQs#guPrNAeEG1b4|k_aX(jSR!maCX
z9iUX=1uEUp=avhmd&F^svXiz<SIZ>nUh<yz-Q1ptU=#W&57Z|iol^>_NP>-*R28Td
zJ?%fK@bfK}n$4AVNhBoQ<`=Rpq}<_m=Mv->z0!$Lzs?(iJH;?g7=De;;&35}+I<*@
z7-yC)p)^<f(S25>-AJt?S=Eo=!@*))E0;SlxilL7&5IW;HF9q70^G4AFq3@KYphcQ
zXVi7lDnEo{X+eNa=m!OFxG$cw{q8~Z=wVeG4bN$f+kA#4o6`@`bXsZH<hgh3mwD!A
zvX~>*2_@+laC((hi658c&w1N*^rcxAf@okrIF!0RqmQeqn&Owmxm;P=R+;)VTu|P$
zBR=PfE0dm%npAJk`ww|KMw6K_Z5R9et6B7MUf1d1f6;h^;QB86US)`U6XVGl5f$A9
zqbd;Xw{#5^p-2?<RL$rx?uFE(AENf>HG7NTIG7(;<wKRM%M~{n{w45uiX<KtnC5<v
zUz%UaB+&@@Zmp>(Q{!V`e`|DALqs54|7a$*|HQ=#>7DLrb2U>Y-Hncx>bHy=^er$j
zXG=@lM6S)@kCTSxw=w7%$C0!1xt98@-6vphvBfU*VM+~jqeYOqImtJ5Q}w}IWIuC^
zHy6BwNEavs-H>Czk7^U}&;+GQ!5a(BSRC*;^r9ERjtZU4vIYG!mw$kzkBuF!bbEXI
zu3;rkGpAGNWHyCBJqVcKsM0PO=ai)=-LbRADkc%A^Bx2WQHSvo{Q{@4?+9sptjD@w
z5x#+f$AY;Z85hEC=8VM?6Q_5-xxH-$NuFF!<_a2;@0WWfj^w?-YYu`mIKw#Z?mukG
zzWTM`V~h@gMt%x~LQAiJg&f1aQzM;}L~p@y2%B@mJY5r9f)aKzM7-))kOzfM4-s#m
zcc9x~w%7W3kcve^)q91H*iX1p6@hEs{Jd@VQ|CbcJ<=gcDCS?k=@jSNu#;I!Kb}u)
zkpBs8{{PdQsXjuu)h1N0jvWb!Hbte0b$j2=5(`}lRcJhGFC|0>w_*0l^AoqR)W_n0
z?lkZK^BTn4%J>HSFYLu7CF59Tk$oZb2CjX7m5_OUeY58&_ZjWgZz3$I?4*KrXBPaz
z%j%v;kf5ol{7p%zik7KxdYN=@=R_jsjTDoA?+fqWO^<lBT_xf&`ja&LkizG2Sjh;4
z7&*{-zw_LkijzG|7~Ig<;s!)RFF)nF(5XPTVM%4cd5!@4$#APV?~V}nFNF;SrDUWy
zBHCSHPWrKlqMK|wHI~xWG24K7IN*aZRk$9|WvQxplSreZclDIpT$jf)9eHZ-*+bC~
zPczvgwL#TADMB$(?I;yx+0sz-^P{$_*;H?bb4ecCp|EZ42Ylb-6fn!E^s1=1cKN&n
zAx<L0t4N_8*t#t8Z+{7nyrUxW!l0;at4uKYDDm0TpmZ@65F!j+X$mi`_QNYy#0Q8N
zV5Szj>wJRLd3>nUneppoT!M=SjpL#b0yF#KiT8AD0qr2b_gRgcD;PD+_iv<Qda^L!
z-LkBX`lqX#zvwB~?R_}zR1t;WifoGPtS`t_2CJy_?;UBfC(P__VS=8t=AQrwa?zls
zGR>CLMFy3wHs|!E`E0%v`tMTc<3Y&g)zHSGcxq>#h{lV4Rp}vEV^AB2xPLp`gKiu_
zB-8&4jJ_ObPo-CbZ%RkwKrH9rH2SB=G;lUWCMLyD>7hQAbo^rWpLM?Q9G^QF23|>O
zoAb>8sh;JJD>eF^Mg%+LtaQmX!ou}~RIh(ou5K?e&mDOuUb?-9rBt?Wxw^_0;!Ia6
z4<YP&HER{nCuV1zFCiJ^V<e5vcy+O+6%Pd|qMD>6Gqd?nA~$DfPv%NvzFY_i_?@qu
z9@lhkiedlG@$#;bupi`!@%N1B3D!dViVxPPS|)=J=!3IK@t&=*vE7RlV2ykO&;(KO
znCnijY@dWL&d_lLd_s4dMc)$TMjEcmb-xyU@qqmJdUV!$USK^(GJPJ_)E^Bv6k^$&
z+I=q)(A!$}XqzgY<8U@Lm&PMnO&5DCKL+NZ^kdOVW?w(2;@o^|ac5JHTsUU-s24Fz
zB0@|s8*g~(iku^uN0AipY`oJAwe{)GC&vU=W~sSB@tmu%CSERFpw0)mB&)y`$y0xZ
zaf>HI71oVPlkuiwqA$5YUTrFyHgMXbgd5^6i3kH1ZaAY5&tBk%`yebxPUU^j?vX+j
z%CCVhmY)&|DEBXCf-*PlRw0*4Y%6t~pVuOK{4Ji1Ceo~$M8MKhxO%Ttu9RyhSchZG
z5}YLbijVlkoylKwEuoryykIEIjYPV;WKHf=&_{~eIIGq}2L|>d!P`T;#X67T8e+$6
zAX_OuI^nZo25lWH(FFggrq=wQ4RCTD5FcqtMe#HD&VffR`?)n;H?6v=Ex2N+T}?wz
z;WM<knvR;Vu(5w?c8=o4o5;d}SXXIn#8K_z^1db3*v(ECtF+b4Cpb!UD9JR#g_IU9
zSxz^0j?Jb(s1ZX#0v7HK{4LZi21henXDDXrDyeuS@1UKiBmk?ko>@dBYKHp64EY-g
z!XsCydL(U#D#2V|Uzx0n{voNdc3*_A+68DxfC4q|6C5thYd-hJE}iNiN3%l{bU*Sv
zberIZ6@+Mi-IlLOGI2^WU#W$m3tO^yKNay6!@=D*vswJg0|u6(_4r9sKh8+b+y5z1
zk|~+P0-;9Zm{Ds^OsGrMo`ga}Vr<C=^w8wW6?G2#eG`*tSn1&WGfwL{_sIw^pL#0W
z$p=N%r$?Eopa-s54(ju0t?WSG@$jC4ubw#Lt~k{6OaoB<>a()832KI4g86!AQS|8O
zRAZ8aPA0}#`BN&`oAukB%?mLIow}J>ixZ>S`IQ%v{6#b8(M%|N2>88kKwk#7)<*8D
z0Y`2fk37h7$`EymjY8a8yvw_%s`0CDKzsFn7wJ|uP=Bk!ebm2bZky(WIh^Eh&urjX
z{vd^q^ITR&i7bQJlW2CHDAV}@SMlPxJoHf<kbvnqMPOwt4oX#h2(z{M@^?4rBML@a
z`^d*&6^FqPh&AjVpT5=K3;u*XAf5j-vU#hW9j>phF8$u+l2Wn=YqGn%D)5cUsK_yG
zEfH!2U06o%{gGVfeX`@8?$|;n#t~HaxN6yaDWY$*c1DsC;gIMmh@704QNCbv%(1T#
zw}$(^<Qr2TxW;w2m=KDP2YdV7w~+!FGUf?)O+OuHA6<=Vz$bx)g1aS#t$ZIMCRwj>
zM`JJ0h27b7F{rv}J4Uj(9!m1IfYc=?X{2a`X9*9TFq;RZBd%9uF^c6PjCT)AqJY$k
zh1~sOjSzq0XVPoTWzZj#92%sP@O7PmPEog0JQ2fkf_Y7RAkAF9<t`1Sm`-62g2#AP
zS8<$IbZ0OIlf#&4cKiyFnvW$j4{A}Os2!1O6zg*_wz`LaZP8jS`Z;$VrB{QU(7SyD
z;sZ<D*Gbjc>gpavM~|!@zFH)o6L$4I42sfx{^s9@bz)((M20>Q!+Aa!d+l6S9)Gu$
zmr?if5_f$js<n3Oe&6W+$>0>K20cGwi-%90$N;DF{?-|?;qxvjywT`8292}2>HAtl
z;glojcOy;39UKbRI$O81!}{IjQ8hTy5Ogmp8e;WEg(6ct6!ftZ{+=sHB%4jMq&y%&
zz&Q<Jc4_nFvqs~4)fxE*w-LG;=62}?s+UghPBp3~_sdw*w!af2MXZ)fHAI6KHN6Mk
zgf$bl=M(Q*R}GH(I}$YIc-SM_oAC$()jXJF#!*obM+dqFGeFh^1=J&&OuQ2Ep9MOJ
zWRfH<=4nk@4l+HmQO9(HyCTOJl}LSjcIx<?fOD8LUUG7RtxX(5#sy4dU=n32>Nv=Q
zv>>xQ9CwM$z**{of{<@Ia+Cf#((ZBQHWl?ubX|1scdsvV_=8`p4B2xgj!OZjremIC
z?aST=#W@ynIU9p$p8Rm7XW<fC!5U#%`v5&XN%;{~EbFCKz96;I){hf!pM8xSIrxv`
zsLZ&X#$>=u0vy`4F;jDsNkqBtQt-Vwpzkp*emCT;GFLwG`&qomPy*(s2G3g03@T0_
z?qJ`t*61B{o$IRzo%y4Pp*E<QIvLcc+e@8r9mulYBdc$qn_i3jaQN08ZhP+#y3>Fh
z&XnX*|CeA;{&(z;$JYy(?l)XGZbIwm;r><LI~>2WdEl}SUoMo-?hP$?FPYANRqpXC
zZC<}8Y<=^NX<KU4=np6Jc-OwiNbNMHF6=G+qMSC6wL4OI+!v2LU%bhDh4QIbDE}xU
z#aNn=h+<83fcYCkfVM#=+b2riwQu8|>>P?P3mQWgPltI(J9p6ME5-#r;CeZ*Mf6BM
zKVvFv8j%b)WeC57Ytg*C<k-OKy4Vj)yxZHd7jd4?w4<x|sBp}$zVnG8Dfk~D<iMh&
zMB!1&)D^gRl)Gud^$~GsR`76bUeGoJW#~1vir>`JaHN9^v(Dcx&2Gb1&4G2^LBa>U
z5`4T-1-Ir168{VX-%IghbZlakJo`wLKhyc5D#w2ha~Up{PQk<Fi6rNiK$H+Q7W@ne
zD%v&{3<)YveqO6lKV&((=F*$V+kOx%G3tdijJ4Tt$D(m634-T1h}UTV`2f0y)}U8h
zFjXf<podhP_Qplts<1_X6h#eG4IiIj*x=E_X%;ZkL%x`?`B9vr`5e|!8K!_(fCEoW
z!<ZY!CPzV0q?r+MX(0o(`S5&&x0mgC@g%O|Q=w_)MJvAw<@nN~gRiBql7>r8g}h{|
z+i_!|o3nsK;D6n?c`T@XY`o`(PKF83#~lorwz0$u`3iEJeQ`l=!$gb)z0c=-#|nLA
zv|p%q!ud%_g;8nIp=o}~Aqnf7j>L1&Qbw}8kE5VNU|v;3P=5K*$3UvlQoj)2*N@z5
zvnR2~h=maJ7;!%q43f){(a6XwNFtc2-CamC5%Gvx6tDfzI2)K1fdYKqN$0L+G3ZC*
zBI%jN=f*o)?uzo_yPLdEFr-%RTIoNfNpZl}o`h6dqtY6eXEDIHWrr)Mu2?-MFvZk)
zLGnFsDdc~lv1kqRdVoe8Qn((>iFLg)^sHrRFf;dxieHN?+iiL+)y%GHzB5ra{aq=j
z`o2nm7#OMbJ&S3;_|<z+OWGf7j3^@A+-5}i+O9*l%b@n*7W;jdwH?t!>laVqt@Iua
zshZ&`)L2{7J5)Q`pP-bl0wRx}V2Xvx2y|9A100f1VxK(Q=rs2IAI+Pg+tD5ut5&2X
z6AnhnW@e1>Go=hARl^gACQ2nqFeudNoXMX)Ty4b@mB8C_l$89*a??#Wv^O~J-fA2I
z)<%zk#|0M}qh#E@jNLb1@ig9r=%FFd+?hWQgs(+D+@9V~|K{oq&I{vz-18NlT(w1u
zAVRhK$GOB@tS)t3X~wvcIX?b~YQV%KaOgf$k6VkB8ti^tyw|A)VbON(B{w!*!)sAH
zlh4k)KR`9|hR~{RGW6i!;jJ`$KX;nZd9E<HkzP48)H1NmnrrtsBx-D~=l{FaiM=Ng
zd$FL|y8x#ov#%VdYxnWX@1=nz-;sD|OnhU|rgjPe8VY1bGXnWecJpXbh?#PkIPek-
zM!NXzuIBRT+7+gSR9cy@L{XZ22amLX_zP$BnRa>WUXnC{f8L592F6Ag6zJ<#4-A%{
zT2RuUH0M!p=Cyr(?~xN4cAtLrBdPQJZ2cQWMVatqrqID(kx@X|%UiBXczC-9!Bo-U
z9>ebGgeL9Jjr-8jg{?W2o^v6#M4$W`LAX0+3}vV}iF9E@vI+1wtFVaFedSk!=~anr
zY_m0y<f(ax(@A1gGozP)E*Zb2Q?pb_+#2h%y$oP4pGM+#d^(f9%}nlCK^o`*G0wZ<
zq#x<pjgPX1(7*!801;HdI=4d;JGAh+S6`*C`z*y>IYE!p+5{Erg#<LK(_LtRrBrQN
zFc3<D9)ZdL5hDe;3V<scW;Wh&Q3n7=BbM;x3QiaT14C>)FaBRlr8gi?<!~;QskB4f
zA=QIR07O&3Vv+}<09|RMsWeARw_8ecJeHQ}gzX7Lv@5Km3XD`~*iKM(Fs0Fq%c62m
z+*x~IGpf`|;&ah*Mn5JO-QKIF@$0v6U*rI8#`TG>2r)b=KWzJcONHII_J@y*{TDql
z?TprU{h8Yb#QQxL^u6CRB_&Ko$Fa_p<Lva5j>J)z_XnG0yq<J<y3&Z_+sn10v`Eu8
z<B_5vV3xgKBp{Wd^;m3p4DGn3BP4JCp$>3u-kzM3Z-HNe)B1c17&uB@nXv_)7rC>z
zY{F#S#e_8&33<}D{{Zc-m~l&^jev|z&Ar1&6njyR?eVp5_CyBnb8iFZJyM4hyY?LK
z@8)a}&zI+Z`n7yh8u@q2DE-1?Gb=A6Rka?OvM4Z0b$qO*H@`N)O4UUPz%VZ0K7>ny
z$C9#@U41HbR9{z=7)UeqABH%kcLPT}702k>YE#<2V`nuuCh2QrkT0;<p`YTRd4)&)
z3cj#EV8qD8Ru4`^<FF`mU4>6C@}fBoX9!|9whNQ|MK_R-s{O;9?3&cD!|`2PTSvk^
zhZw4P_<`hiXsNyG)O-c_d4NP`nYRu|Hao_a7&0v`DTHZd&B>vhEg*EUu!s}C4y996
zoH9D5eQMTpC{#RPDyi1}&5eh3K0~e(6OOq1-c2?yt5_xkzfP4|qIbPxj)?hy8Kp$$
zi4F-!@qTuX!8!3eNS=k_o7kdwti(v=>y`c*C~VeZ(XVmO@?AA(d(ddHnvubpZ!z?{
z#nE>UUS4LIU2`xynj4XmFsSRh;;U6x68$h@Gh398NwBKihVMYWE<oPdn`?cAW=u`Z
z8A`)S0}dsyxqb`*|7HrWU*e&JB(NqTUo8hQ=roBSR`%rv*r(Q1EclDs;V@}SY9j2*
zYHH#*O);xci`Onx5c3W;6?E0rh2EX>mkphM{Jp&vGjHs3tDb_K06$u)bd2<g^F8Ny
z<oMj=NrAMcYrOsfttJ<OsC%#3b6J0B+}2_;2-B|_89N-Z_7q-I9q(saeKVG&x$G66
z9@COp8*KOfH(hp-GX7hLLf*XKJP)t$IrcBBh2saMMEP}Z{QKwB`Gak*jTd1A2i?J`
z7CF8uUIex=o3d@i_6U^|4mBIu5B=(=b{*+g7clsq1I3(|3u*gJ_frYh@4beq3DR8X
z*hWI)dfM|_W2~N@_kvBQ_a33>E(5WC7vbt^1{!4kK3!!~Wl>E>0VtJ}*2{Z{&DYka
z(T2^QK<5`Lv<u3kq5}+Hz;<Ga{(}@u1mx4`sMJiqro*>s=P~k&JXwDYtrz{(Q_k>W
z{eH*^O#TAV%FrM@Bmbc=`>+>pfT~2i(Q>L}bW}?Flgu=Zo?{Rue_4HjMIw;eK=~6k
z+$R^{pJ%j4At92<55)5Z;oP_-&j7dbMLp3FBWTEP&4`yksGNjnMA`FmF#ufKtOx4q
zqp~Zu7}vlbA`XWzOvZdOk$>f129!<|!;pfBwgJy)ToHMLEP;RF4`4(^eqE?nBM!)S
zlb^&rOq%{#EP+z2+Ra{Hx+m~!w7h#lo^n+(4huqk0^8Qk0IQzr_WWVKC9mrPYuf6&
zlS9w{S#7j~0-p_hQ#t5@$<?rKVaB|>zV?OOr_!i~X3ZotXL;>4QeA(#S964)2Aq?$
z^?@ZGG{7fM=i|4tFfhcuJ?x^`4G|GPO#yZVk4CP59s5dC`2|UYJRIgBaeYvM4E0n0
z-)T2m?Rv-4uXai#Y6m+Ol+H)+@k;zir~cvN7Hzi(tSPQYY}~l;(7$&64D1oD<$w{P
zrP=!Hv6|0Vr4}Kb3vTziDm$Y-XzCcr{rGsPoT*5_)-E-);C4!cS%O9Ln=Pl0nrYJ3
zF_>H`{EbM??vSz=zL<17<TA9lW`i0&emN}b#18RSv=c2#i({*`9hL~5Oy&f9Lo9gY
zZfo3aUb~D-q<W@T)F+rMjk~{mpze*8V1Cp_g<^nK)^dHTUtdB0&nt?5i6n843O0oH
zWm>vJ5`vsk&a?A2>(k{(z}JeolwZ7VHV!HFL}*wG=S3KV+XnZ48ex{avmscn&Cm%&
z!BA2ULKKaZd*u0TZED0MdQ89{Y2zgob8PljbH0`tN*!T0p2~JqLNJwnUTaIccW|Jh
z+8}D}I8a@44?+S^nc`t*2nYck?@s0vNZQd(Xy_KYOVu!+Kf`qZ*ruSVXRm|A;s>UV
z+lsu1O?M1Kd_FYPRr#`$HPK!=(%xbkybG(j!>xGxP4ipnnZ!fplqAC}sBZU~#A+{u
zYa%t0)DJ#)SKTBSM4oa-uOlbpwUlR-UFZwWG<3xwVZ)fa#S-3b<piLd-jA?9$lpXS
zI~glBF9n$j8B>O%#UX3<aEN8d&pU<PTPgU`liv+QeF9!WDyri{{J$WhP0E(9UdZ@?
zt0o*6*Iel6CYxTXVHmm7b)rsVlhjkOXIe-M3T}w#tfz+(bj*TQPsn}V8zXHav%60<
zWt<BYg;1L@qT}#rp3R#-Qp%<2wl!?@IM>Uo2H6dib^N;fZkduq4vZ}NNTGlSRk{yk
zOd|nyuevJG5;2$%o_0rz)mgE@JE(db|GPSfE}*x=J>Te8%Q3t*L1b|G2vhd~og^d2
zaV1dRQT;#DY<678zZ+27P`)LKxe7q|SDG6N9&3>}D&egVV2K8Qfn1A@Nh>UJb9eVG
zrc4;0?YnNhhMJf@fSoQ@`0l4^ejSY~n?rLh^mZsxr-bx0MA(L>{}Yex!d)6|JV_1E
zKj?n~;m?V(z_EXAMg`c1?v2jC&48sd*O>i)esdv|Bqq1-19OmPtjotxA@ceUukF@x
zaR%xDx;|d#tCiv9KhV+D_#A&j;F2Q&ql|41xF;trQ8(AN^cB@3hbnRY&r?o=sx%&F
zh3L{;(i$T_<4oQZloqHoc)U=VPC>YnKkMz5*KM)gpo2zOt?709XGIk|r0E$jf?<H8
z@;usXccHokJbWhYz^AgZ3AI3E1rDFVzNg{sd2<3~Rbg-;N2MZ>EEsIWTx9<i(vj`;
zS$b(HiJzLvjjK6^NQAMbq}Fvje3Jp3oB|*G15$NQB?id^Hsx)6>#d__QAblUO-X^3
zmEUWgdOfr4(*Ug1P~HtY&{;RVYJA_xb7Wy_%GD1pWE)I+$o(cAOpbrbc}5TZy9j9`
zD5RGa$_t{uyvK6(p?%Tq@r}u-t1en~$YOwVp>!rPh$i)2t!{*qvA<t?<{TQynzA-D
zOaa3@^?Hthbs_*;Di^Ul9XfaBkHhYhE23uhFUy}l6O}ZHW~Syk@J_*gI+8dGGa>z@
zBCRCBaV(gCQIWhj$l^y;0c8xk$0}Z>YVH5FK}&5gn5kE1i^c&ZG~0O{kH|hty2kRc
z@auLD0mVd}dq2CC(vPZqQiF`}@b6KXj_+N@yE*vYl0bGyd9hE<!zXJrji8s8VbTw2
za4KxfQBm+XOmgH!(WGk~KmsgOHEeD`j~Zg7kPGj<qe8z-Smn_^9cLveu6<=?LJSt`
z0;jcCu|=>c?7LK!Yhff(zC_zq)RI-78xA~VZd4tN2>wq|`_AMiJ%JDn{#zI<LRO56
zxDzLen&#R^J{5iYFWX8q!vVC~UczV$?PpH-zH@{K#~b40r^5Vg&sEZxd}ngtn@JpG
z8K`FB0OfE7uW4RI(X*v}E}R(LRCV6`uG8bCaBul`b$U1!8sf5!x--FNpdznJbANm4
zC|Rsl^x%A1!f}udCLd4ec4YK>-SOMoCr#&z{r|iGaD?oB@~ISq6pJr5O$#TF8P_yX
z1TR!{x{p3uX6-uz$I&S4!?{BpHJm+V{*E)C9i9UmV=R+S-<~g)&g1Gp$-wl022Sk+
zF5ZAtzx-%aVKqPMus<-P9tzUzF2``l1mPM|(9HcFxtMdEO4Z;hKrI>1LA&Q$!|0!d
z;V&!avB9Q(;0WFGJYv<d0#L|Rvc|Sunfbd{!avT$7HaDRiwvd?K<5X;jl#S>n1fb1
zEJN;b6EC+|pTY_3>y-NYy3yfGK;%Df5czNR_&FR3MugutMyICkvabN>ynM<YL&Ju!
zO)^B1AyV}S*`TukXhyGv09`77HvrQ=nekATIl#amB=GIv_OE-I5**|)<Al|ViYq4F
z+?)wq4r0vL8VcgM0iZcJRyMblaU1-%LRO#lV(f`HP%MUr+f#u+z_-m4hbQu;BKwFW
zo<FjYTQHChQ^NT2@-lfVl3A()H^hJ26W}3_0H9Q&Azv6x4Go4gr@^an--jhKuP;ka
z6n{gx(tmf2<%CNr?e3}iy#}vbHplBA6T7C8pyA?#H&6hHfKx7hpu-<Eld1bgMOxtX
zR?|ta93!W0a^m^FSAemB<Zyvok<T(~vgB)3@bS3Jm{UTIq1qT&=0({7PdMmLSdyNj
znhm!~t1KPx5m_RrgvO2zzumpblrqvvkY7e~I9#os4Z;4VuqvEPNl=naA6w@^+!Dx{
zWLZP$fXHqiTc6uNpC%QlGSnoPuKA7yBkm^i%j<7i&Ck3Xl72ZIp)t<CDp0H4YC3M+
zn(jE0PH&uUkv#}Gv??J_G&k(x48?@3XUO|%`}G_}v=O5<A&AJSO|%5T50i(OeCAz$
z5a)}M(`#p*+-RXR0HMo+r;kr`+M?f3^o{a-vn=eR$tSa6Ns{(t#_m7T)s>*Wu&~TJ
zKnXxnRFU`169HzD-y`D>mQ;wQ-eZ$zy@~Xq*JW51d+_eqxd5EEzyC&2WW2<yvRKpF
z8f47g%?<r;e&8Fk-Q<w_*kP75V{`a)T55ywaGhfSTFd;}FdB3%j7G?S{$njFL2*Hb
z7+q`*$55~AYzh0raYHsp@5FHDc%tlDg=9%-JJ<hBlRQ`<n>V@V**?q>dQM&gMWp=J
zD=ZX%6@q-VQu>FQlG0LBV{8Kfjql=q#?dJ)JyYJSOn%AMf%Mr&vKwiR@Wwle+1btm
zX>?DkTKi-WF}O49%cPPjq4O!$&C=`Cl2!zH6wq)*ivtgM>DHY8#qYMWR1CM5rt+Yh
z)W21qx=j{SJb^$V$r35mvw!~%B<wGz+bUjx#VHYyaJsiaQ0Q-YI!{OH6SH}_MseLN
zzF=LnadfaPzdqITjqE9hW{PEv?(F^0_Js9`O#AERIFtB;2}0Ddq^ZNR*4o^wd}n%>
zVw(BE5J|;bhds*Y^OBuly{kLKBI1GJu^sY~-!l~}b$hxDRgn6yNK{--KeFp5KmN3S
zKX6sio!=(d6IV}LNR~Qgl)A+-#|o{cVA#Eyk$Ibm%3GuTEO)<Hqo&MwPAcBA^TMh&
zG7QJA3za8#^KxCXiCtD8#J>;V)#(@&8Lk>ORBaMQ1>gU3{iK?Gwh_IAzmU}C3z)uB
z&s*=CC?9x$-M2SNcS?O2V4#(zWxDHfkJ2(a7HwNyz3pF7`|hG7TU%Z=zK5})30;1Z
z(JrWCh73W!T&4KTGG|Esu0ZKlpIV%te6Uz+V-=SI6gXS1qDFu!%@vT)j2nj(!HCQ?
zm`_lwpoCVg+IPx_>_w1#t<BXjVT0@QV}}a`v55SB0^(7~sgH~m_B&2%=GL4n&CDX9
ze?EdEZ)BFUdEE+tl<IUKFM>pxQ#2bc<PU7;<3Sb;J9}y#BkYB)QlHwrmQI)k#IJs8
zvK2t4B;AK+M@x#BxGDrSV1~VBZHiPzB7&KL)3KK<%N{m5IN0$ztmQVet#1U&il+w?
z5_k{X(Xt%;ZExq(`5_eA1-Z=B&^jrcME0W~Q#(&Q%yNzsGk=tWsa!=M(6-uFBLK)1
zw*pK-uRh|;1OCN%<*KDN*KU;>)w9EpB3ErryL*pF(2|LI+fm3xX4EZ;8O*|TrC77j
zH)1lVcmEKDCqQ!e+1UN%;ga3!%1r+}9C5L96Nt}96H~Z>fs*sx^nZW#czo@DjCA4(
z-+qLvC?5aI4@HB;I4q1bL`b`_y5l8VZXiNLVn6c#kZMn$Kxl(DlA%}1bG|ssuG2XY
zjP!*R3>Icdc}2PTPGq$`iFwlmx%>o&b#T$-fmP>^+H*KHM3bBt>Jkqxy?Y(}9<jHi
zSDj-2vw~(vRVe1|91rd!NU+CDDnUr0T+!;E5WY}wa5X-bo<_);70O6p-K5SEV#2~E
zhq;$>j(h#39YOIzHHwgQxv;$6vPehfurkg3QgZscr7AyMq@B;u_(R!@DD`%FIC)7y
zO+S~R0w`B34o}8zN6wF@%bZGmVW$Gh-X6$=D!%<Eytz4RZ7G6f2w@CNtJE4o8gN6U
z3%#YV*Vo7bt&uQkHz@dnn=VTodi+%ko<&6EZ_6QJQHW>O5bn>3L{AsbG^E|Y6{qY5
zGMwM~&uYkA^K&IAnnp*JBC@#9*7c>^liiz)hTv~?P;nMcAPXBZGkHYhsl|3aHEbl2
zuVAm_0gMJYxg_+y`(}?CzMy>|QUc-1h;guK1RMsBpkyL!^;le4mF1K|gM#FH`=axg
z{2%aS$ZM)}`*M<}0?vE5ZV7Dqq9&%~G^G8>)AQY(m$ySRPqyRts}8nB6*N!C=^LQb
z3K!eshFeZ?f~z$;dit4@h?tA-RewSe<rlb4y9^A5?`c<7ymrJL%P4s8+jCoLMmF9i
zV~N<QO_-Z+Yn}@dX!C!1c+P!#gn)1w@0^kv5_$i0cE&-)=z2hbQy<(*8S-rHwrg9f
zP@5O{y&};X0s;caAwjWzWMvbc_fuZ2r3oCvE(QnsD*X;r2_$#dTdN|Gl}gT)zwnbj
z?0TYp3~x?5uY4u{2~{t!UWe~iy+DUUVDZ%=3HsO~{l?D6HUB1Vl|cd(@RAm4h{WW3
zwOAupBY+*VTBEXiefvyH_iGU@KB^L1<)mb2{{E%2T)xyFbH?%ukd8R_G(}QhGhY6B
zR{3qZZVV?WqLoQ}_^t$EcPiypO(S(K$BoYJ<SWMcni~UXKH@4KI~iONUHIID0VRt<
zOIMyJdZ``!vTR`Ai5!QyHzebfpdybq#xu{zD`meb0TT&3w7cVf#cf`EpzQgT0IwD<
zK3mLBDgu(#;WS<}Y=5eYSFXzr5(<Flg_Y2QL=bb1g)NjqVf?N$BH5hB%BBX4CGvPk
zm6TIy;G=ScmG_8dHtSCPlMcdy1<=09j8wl4d~R39x{1Rz5_YUAucF;`DbT0y`K8$6
zr=a;5+j48SNwxOHqW4os=9U!{>j(>EDGQ{}{rP9#RD6>8_gKsiNw9m(2Va#0pn{ZW
zKA+?|EwnLv-Q2A@RO+{f1(U%gfUdV+7ymh#z+Ny2FG7|hRoH<PyuG|;fVfvi!3uQh
z-h6{LbWT>!>7OPTxT8r*)}a+7k#@|9*tvkOvp0}?x6e<ghqr5Lm$91(1aZ5$7XBIV
zV;eOm@w-7Y_J=DP{%4Woe}inYCgY?;Vwme_=gFgbKlVcG`~G^rqi^gZO+DBS?@TJN
z2!l>JT!VDcbJ2cC><vi9_PpRth|~yg!(AXNf+bu$sZoAztytzV#28intoT%xUEy&~
zThp`pbi>ERwY1|6jb6fmh9Of0^5tv_dhnYO#~Hf-^-KWr&mzD*avCriC`0qSb*YiC
zsYPC=s`*#f{+|VZ-adJtCDhRNz_rybiyS_jtPe_0h4<?KJ#kB#u_FhbMgR?;_e~iB
z0#{sd@?#X-7dTx0mm^Igli;jsCp2n0=HHM{O~)X7n}xQxh5WmpRcdikxEx1%!ko;M
ziFq>ApV*s<zdp!oM7jH9dt|9uiVgPP_TqA?CuWlEuJilRa95<u=fsChE$rOv$urDG
z32FDUXw%k-{%|d=u7wo)sOf>?r`A1imiP8KQmRh$v{eRYeihr-p<e%f*f%piAc<Vg
z43?oFCun{li=Aw@@02MC<)w`EO;VSuWl>%j3%fFY;V_nMvToAEgM@BeooC*3ui&S>
zu|6c`F#<xg8_U7g6_y3-q&!!Sg90<$3b{6^twOvtH20_)adR6nXBjxZEIOK&!B8!A
z?6n%36jEuck<#&Gu6h6=1yD0Io7!ZLSdo}<<5EsXARXJMiVvTy_$bMC9(<?K(SqJ$
z)mynEvM}M;0m{hoWUIR>r>n3W?0m$)t_rSO0{DF?ERADsMpKC_y`z7kf;Ojc?Inj)
z!)=H^X$S?%0;kuOb0wY(t3M_tXMWN;E@mE#X<;oX=_cxWTqt~7aKkKGmSy6Xt$eDi
z{W>;->~($|)!ywhWOarQ&C2Ft&OXUu%Sw?-b&JS$v(IHGGd;fUJBQ?#EWiBJcEt8o
zjw^+q{9`P<#na2(PsiVS-?J>4v}2gYSmJQd-iT}{1IQH1l|)0KN8HJ}V@wAD1r3cl
z8d}X*9%X(_<MQG@K0mM;iD_8xT<s;EpNB0XiV@5+59%o74}qlkrS6+6+~Gj;&F90t
zL5Z#J%>x_7jH+Nu8(zy2T#;y8J;epJ-NTNuPV1JiwEcX#Xj>JvCOZC7z#VGZp2c*{
z(1o_8llQygc8Si)VC8vHAnKfh>XpJS{46-Kvx4!|PAXK;ym&taT;b{vfYOhMZGR9J
zP5#qH7r=;sopWlIvJ`+3fw66eD=MM-mGwTNkc=+wsQXE(UYqlExqX5SBX=MmhL8gd
zV2-VpLCY-%0NGs5$?LpCHMsc}Hxo?5Q>u%PUb$#i)KFV?!Yh}%2X!=)T@9kSiu)d}
zS)EH_aDVMre+O5UjgzeWje3aVSYIW1yI{a#Xf<!ANlkx9M@q*jQdJ1vzqXS%R~LWF
zmKZnkAJ^H|FHjNZYpQm5mQ;v^-JMvzDHpYKrUV8yR=iL`W~v%<4%}B|o8F=FG0JES
z>^@#MXGhn0H$YU2I3hNEo#RB64Fe5LlJ)4El11%Bnc?Qt_bZ+`9Qvk^Q(fwMZBt}9
zzy<KQqOyjJzN4iDpa2cgD{uDIa6=gq@wabfhRUywkB?RGP(p<=+yLHD=Nae-i)Kmh
zj2D6ZsJ1B3+Mx@x%z~#qP#69MK&qUTeW@TmHMP&Kxhe-j+|%bs2#P|aVD48VKCK`?
z=k=Vew#u6S`Uv}L>XO>BmZ6BIk|u%Nv)sF?^@-(ZB;5C(0yVey$-VkH)Nd_BlwY}B
zc=53R5!y|H{-~9+%rp4K#?|0MKv_eDKdv!?xe~R6PHW6t!S7J0IUlxDclGSZRxVCI
zV%sX)6D~D0;T-k-1#CNGBp_v!OL%OyLtzULIx$Jzs_umyPn--)-r%{^PVwLW(0Z}!
zn#MkRy-h#%NAnx-0IKx=`_==d`b>~*t%KcFPwZb#D|+~wXaoA8aYiT4!OgM)W~K|6
z_IumB5GfO9;7m$57SNYaI#K+{NJsO)2&pQ25uPf@P(E7f%f7$Uwy$}Rvt%dG#~<x6
z^R5D6p>Qdi(<Y$*42W~;?vgpuTN6AsMI}PTvDNs6?YzH)Mk}@{G5(%HA8GDz;xj6B
zmt*{+{e*V=<z7PCp3rZOuj#n5v~0_&fqteUEk+6AL^fMeUn*!@|2V<Y5?nskegyES
za)T1WR#8X%3K}W^HidV2ibS_Y_rz;*Zp&&nEuJtFK(Z+x7JLKOy5Lv3DQ*Cf&&uHP
zPB{=2Fd$<aC8u@CbDQZMalEYm+VHipqAS&R)xGGg@w~R!bv<SKr>geJNgS<JJ;MYY
zh}s(vM=1-bg;My>m(*A(3nTL>fn}Z@8r2-sR;D%F3o`pkb`%fp(sOguWdd@4y~nx#
zVeU4&zPv<7;M@hIawIDp)X&Fut1V)XXect?N`k)6XPsf+SDu6Gtj1wAm*z_1inQ5A
zqEF57ez(8S_&G8BNcGi9eDxlET{7s5%kjH&sUK$(HOOt2yG0U8YbYpCp*?duLZ#L4
zO~5?oU5vz0P-k~GbJ+HOuHbF1v-Mz&BVN$V89@~A%h-6|vJ5WxOwYhDw_~2vvlH;P
zBJmFcQbrMUg=Tp88s+%fD0^;czHe>cb2w#4KNbb@6Nz)G?R)IJ&=~hk*LUYcCRkJr
zmzA9et2lH9w$!t;@w4AK_^coP8kl_cwbi*fOSuWS?_%)3mt)F;{OETa^n4h(S);)2
zHQrs3q1OBd+#KRawL`0sY)GlW7eJ-4izDqe#I@O`I&7P13ui>gZ3zIRgEr5ZJNpZU
zMWgPELpk5MayJ5|<|8a~+jBO2Pkk=0t_&G;e{i?fw0pB6<D$ymZ&1~gQbooA_Q>Dt
zJDkGR@CaE7T3t)ub`#!5H;<@@dv&Uc?&eOcV*9u@-{h4Tprz|1@2ys#95n|u{j!k#
z&dn_k5xLmjk`tfDCt9Z?NM2=>+y@`4se}MfS8jLsQ=-1t!Ew9m`WnvOBecmG1J~5F
z#|+ua;_Buc&mmIM;pBWdd0BG=0buE{IeLM>8a(eagq5=A)$TiF(OEO3`MEmp6lPth
zrdrS1`yTIR7_7+vuHVSKdSgp%wiG;j-9{OgS4bHH5lbWxNf`V*W3D<XivrPmRK4}P
zF{Y9TZ^Yp9r^bI>5y#`ZLr?XI`?|!{JCjGilrrMD*41hKIKZT8Zk-8|Y$-MN(6dw9
zD;kdT{cGWjvoz1Y$&gR3>#>X6@=)!bpLnicwkw5^k8|JD4r@oHtTuA3ic$$e?zLpJ
zd;CjBJC2DcA=ZBI^`U#C*A>f+-{S{GWzOxaXw!Bzw3;)0x=Cq{^mfP-?x$MrL*{DF
zSNs9?(^1p0RqG*wB^}8nTfuuP-hB&V%G^MslX;&y5XyH-r}xKg)dBBDl+q*zBZ7gZ
z?_>!G&Egs0iY@|wSyVIhxq1&LtcsXUHu%+f{>+^<o6n8g?mBB7(Y_@r+#{)<?fw^I
zZy6R>w(JilKtdBF5Zo<j2u^U<;BG;J1$S%Q-95OwySuwfaCdj--I=*_|7Yf$d*AzU
z^K?49_o~`!Rn<?pGrEZpvP8b@Ac0QpTBzcRFkg#*XVbRuf{r9s8}IJ=iH6kG+dB!6
zk@Xp5c12v0{C>a593J8(bI=<w73F}|Ci8HadvagWEeXn($G7oVQ>H|EN4FzH`dag(
z^Y{BaMI#v-3R`G~b6+2yNv$kz(gFHiV%7YBV|56zeQHfb5|Qe>ysVgj%RKb!i``h7
zZu58xLpfn9z0XVQy1%!nS5Q1j)>D94o&><ZGYk3k^88@FmcMSE$N{d^lv4?}JoTt0
zuT$(%gWN_f3XuAO%8n#6`IEP<Bexvx0`K=QWt!iXmY!a=!Epvw7^52goCsubto<5y
zTj4ZRfadX)vn7r19m*;+PI^<GzrIibz}VrT?S{7Hx5y|flTM}T9E_tOb1r*T4ty6q
zf<SpfbS+)2Tomu;3Q{jN0<LSgqt0gLsZZl%fZpC$f;RyuJK+&~ODWjd#0XHe2}4Lt
z!2`@&H?Pc^&Mc?WGD6>vh>^2Fv;xvU1{YS>`>*d%@rQQWKeKE<NK3ldr_(D(aRPFZ
z^q5;`Ca*dQtSAs{zY<&Pnn>St^`@{cm~#|*8Gt&$#6(0?EuFvTForWPSQ(=h!eQ@6
z>_JrDJ$~MYW@^^iwX3s(qD6E7rI_DC<^SG{_JiC%oLO31M~x=ta<n5s_6*Z6)~@S}
zma&2MgB&}(syO4`^!X(olZeI6ahP-zcL1ucq^~`po&ZgoO$pX48dP`kR@(!`pco&2
zW5XF4a^&kIo6NPc^^vB)QyE_vt-NK%s_vI33fo=#oR3HyBp2bVQpOTR-%elY;WJYF
zbh!5$t6Sh6pSbi`4Q)1<AZ|5~iP<8lI=q9ea?yvRNOaA;ZWj8@>y9K~IlpJ#6ua0T
zcn90vaZmnv?f{##m-iViU@upXHQ|+2rURd<7^25xFr@e8*j##rd8Qdyj8b|(hD>J1
z46>U@f7FYA;W?)ylZLdk%`S2ZeC@LG&Zo2Dt&*Ai2Hb%@k>^^Yi%ss?JF!j93ccEo
zgzFDDbX7FjkH+G@@>er@upJ0M{V#TZz>UhGS3}TobujCr;dEu^fJ^nM5b*tRfnEVm
zT6Mr00$Qg?E^IG^Yi2!O>kYP9CuqZy{?Y^k6p%=O#)0xF^l%cL;)h-BMxhBZeBjLb
zM#XBo$gle89?BIFst)!?Sd_w|<%3DXQ;o{Hs+(Gah|tG-5DreclEz)a2qF|;Fj7et
zZ-Lx(Unc%L)NWj(S?xwZ4kf{9N&d|9vvTBxS)D7^8sx*liG;S#83g8Am7^e<xCzua
zsmNA3=?OW?`1_TlFs^3_JQ@{|8}pRBokE|mpt!u{NQ2uo=$nB4JEM3dT=WB-^J{kQ
zu@{Ycg&BISN1hJoCuvHT(DjRvM(&9qnxB18J5u-(x8x5uE4Y`tI`{?ZXW9?p9~nI@
z0$uYrGUlhl6h7GyovsPDiYSfGH6P8WKn1U2Rp-#p*s?T+ZG6+vAk-*pG*)<g95niD
zf@{!ceNsJ(Zn*QU)m0s4Qx2oV5_zPF-}v4SUvd1(I(J|L8hy3(`MhZe(m5O*pSXzU
z-sSjibgx{vG;%MB6oJ^;Lfj%ac)%cJA0j&@yXt<Gn~}|tD&&|kmTUR(HEPU)q-!D3
z@w%Wvm-O0OW#_Tlfk;{2-3!@%tH!NNbE@lN`wy;9K@FoQE0{{?SaxwFn5I|OCqMl?
z$ll?qRi`)(vBd$(RARClRd+OoP+t!mrF>kzBQ25y3N7jr5xUpyQI;s(Z$z9<(kFrJ
z8eu<t4}&EW`{35dWyyGU)mz;}5Jp{p1Y_FD^}2MGhwbJl7q0LXq4l=Xb^t-}MsDHr
zD6P3Vkv(jOQP*nAIk-dprY`q*CeZ74p9s$?I-xSw;vLi%>Zg>Rp)aY0TiOt`Os<Vu
zqt`{6l1Sw_PFS6Ac0{lhfqH@S1tx)j0}eUEer>PRA@PV1qxd#s9BcU?wosZNfqTEY
z6O=z19S<H9FxcWb8|RddtPX49YmgOLfi(ez_PI7SbQDByl_1s2Y~|&fEVNYWejz8{
zPLht4-`cORt#PSJpQ1RJz}xu^i=9M%9iEwH17^bz0pCt_^I#PQNP}eON0M{wuWa*`
zwiI+J0Q!Q@f|j!+NoVs`C~nUQG<Icb=<1gE1KEYs>X1VK-49*ezA%OjQ~z_aOm##$
zRLsd=*U1!q7r6MumFVWtaT|YsVPSa8BepG)bBVSuX4gQFvE#lA0H;;xgZ;gno2#d|
z@v4r#7H3iy(W=#15MmZfdLIM;dLXKK#PQSSZ6F2YL2$UA%~OLdK~%Mgb-tIe9y&9_
z9i;c0;b@d#G%X_i@3Tay)av*}RG)HU%tx{ptC}OjbEUkrQ|N7-r(7kzp{J|n#g~){
zJ&o6DMYkMJKKNjF+E=vzHY(NCxr#3J77k#Gr_y;>{<o2{PbM<z=MAa9BkPL`XV?cN
z>M08VPZ(4&X_zfd<v9>h&FX~bPb^-zTps|?whR?0Yo{>Jj42o_qtG;0+@%^3t&qFe
zl~bgvC-9jM8m{(3aed#1_uu!s5i3Xs-P`O0+b;PC)8{kxW~F&ob#;F#s>C?{R=Ur`
zHVX%fC7?R1mrSCiS@5xq5N`#WbG$S!FIvOVAzeA7ez@T$*dtzea@0+_0I}fN11ej@
zhTP&%8Sm-xg8Pe}0+bq-rqj|z$5M#&H{{KNo(lUnXJ)@rv8%0dH*8P^$S<Ax@eg*x
zxMz$dW-VCs@W`<>EVm}3BNMbH^$}r=D?XJt`+hN7`~+il?@aJ*A28R98)F!C&6y5+
zE-=RGvn6=vdb9M-1?e-K_-N`G;?rH6LlZ_J8+9AzzLTRD(awQ6)x<o10ueLc)0qeK
z%49{MPO;!FgtUr)Msz+!D&_gU@yfs>%jkCuVt+5AqTK_8HD7ktU*~L4-90;+w|wm8
zbX?KA&*&PDvI?cy#z^oeb9HnYg)keBd%14aE(bjPDNeU|o&vDv<`TC=N4)8I1uv2m
z&Kk~!>B<u7<c)?lC8es>A=HT%(aPy&isD`MX`wLtTtBS@!g;7h2@fo3<_(EH@^xEk
z&-Tysqdf@w%x73J1lwJ13gs=AINU)FEb66Zg$~%!sERLeKk(L7ji6^0CA9iMaHu-Y
zatzEHD=zuo6H~ct*um0g1vB2}nk6a7O7!vry!->>imR4^+#2buBJwYvHrHw;aNm<-
z93$zh+)dL^Hm=o(sxikdvxdn&tI(jKO^GW?qwc!x;NYgpzR1~5Rhe%6a6QZ$HK(3p
zeyQ8|%2s7oD8DX{xNGh@kED8bTj)7tc5j+rrh2P8Rogtsg*LEy5fX{TVb;xzuj(9j
zQ>3X?8zP!+Q+7RDdYEGk@t1%SpqvEl#+;vZ=Y4|=`(`~UKVw8sjq@pA0)KLSVv0L8
zs{jkFeX8Dyy6tb!(SN`CjP`mczkpR1u0mn9q&!kjM)60!E4YAgb!&?xIv=8cc2+6;
z%VO4`VO?R3qG{D}ZEI_*Md}`n-eh{4|FlbQC@%8HS5d|+2ahuk76D^964<}K_=g!(
zmMiwC)DAxkzkmIH<@;V}Lp8w5$%IEA)APxl36w=HDDI<S421ALIIQqA89>?`AE19Q
z`UY?Lagn1bU&01|?RhMu!W-Kp&!9%Y8oeY1uqJYFNcS<`-+JF_Gk{Q;D6JI?KqHRL
zA@_F2)zZu2NY$0tC$t{JZT3F!y4>3!b+s#chT93$DN06|h2m1I$U8tlIA;xR`1{xJ
z*)q!%5pj>nORz6V_J$rAjHR*UQ#WaK;=!)R6UW%?Pif?#_Xe(rqKk@%MCr^RuUy)?
zs{vGV{lJirXtUbcVlP<qURV69D;8v5V`K6FA>mqdAlVIHp7~|B%4-@NuL2`nmMip9
zEzo1szFkMfy3&tuA|iWGgp!HGpPf<IVsQ^ZuHbQIc=Oo?SXf#sH;CI`Ce_)_;WASH
zfIx+v^|3}%H{so;-}l!Pz__b^Pg1)2in4zs^O0XT@AOnAvj`q-=XmQYFync5(^O)k
z3(Wh>im{8@9p#~H1zr%eJl)5HKHR;7;<DgWSDyxNo;upxWTBcK9Y|~muBSl2X`C%E
zTCW{c(46sYS?%x*`Vf#6N0DJEcF8=UX*r*U=hT2Uy!0_@V*Pl)V3zFMT;^YG+B!OV
z-(X;vkb4u0_!kj@KunT{(#~lT=jF_iw(OCdzt|fRIuV;<mHOJ<H*pAAb&zQ-(K;Kl
zOv(K3QTKO%z%Zr<plRp`NUr@BXp1D?J*F0jN`P%IXN4Sf(f_@#L3^|)jbu<G_x8Om
zb=l%)t6ElsIlJWTyo-4I_MS}vW57K$vOLMi9hM0eYE@{dv$Kfu&>%Ox2&P-|%MRk{
z4Ja+_hqI`(Wm4@r%zRSIczs|U3i0Yk2wY+K^mgXai0s)`E+AozS+Wht8g*sFrA!1o
ziI^$1Gv@(iFNhkn+D@omG<y*To?xCzzP2UypB=(Wgfmcevis*dc?CsjG7l?fLw^0;
z!$I_4T!cvCov^Dvmn8kaWBot&%s-F(s&63(SVj_=!!j~5`g(hX5eAC&;6jAke`jo4
zKmV(JnG}!LQ-+Tg`_3Z<zaq{vv`LxS97G!I!!l}@n+EeI3YAX6sa=vOhkR7wAWoXB
znQenjcBa5RQguuDR%-s_tyEz@Xp%;xX(2*F+cxb}V>i2>#1v)6$8{>2%Un4P+7^R!
zF{oQ6XUq&QU6YL9!MC*$1Ii`GDe?*`)D2`l_x+vhJe2zA`uMTxzI>d0(WqpLanN>$
zgz|hr-UqkuRH&(r;Re_vMd~RU^_~GmQ&|xaP_bJ5xjZ)gjo+WYJ}nd^kD@=>&W%^B
zL$Ont`^Y+a*P#~q|MO@hzd@;~sZsTeKncULfdBX^j|O7ewO<e3u;bs02}B^Vmv7}4
zc6gQ$-5-qgi@EfYO``^r9YIw@JEQ4x=8TKPKvh*H)W$HD+K|F7>3W(7JE{4?+<ZfV
zi%y*)#e85nawV^zLD?USn*9dCi*jwhA#mR2P_VmR*l^a|TvUY3{#YDPhL4Waw$eG-
z!xl$9#+#zH!$`;Ji!dwZWV*e--0R#Ff`|W&BYySQTls$vbjB|bKOwswQxhO{J#}=5
zN3H;_JWr5tT0?<oC=&WyN2jpigFg3IL^0`fCK~sx5XN`ybwWp@W#?R@<yP+BOPZ%g
zczS4^D)(^xW1>7Wv#@~e2_zG$-Fb)MAqV53a|TULOB$)Rv{dbfHEC`^TI_U1JRru(
z=>|Ixbdg_0AohKoZ(0GBubwVkwZ1_{PX$InDcaC)Y<fE8vT(Txg1>*XGZFZxZhc0P
z{Q2ek>2oqNvM4`4znam%6{-I*n*ZM))98@$W&+|xDs+GyMfN(YsHlo=VXNT}^z?rh
zx_^A!fEH@8iKFimi+{lYprZ6Cw|(EVDDd?3&7?U}5A=IOqaa$Y=jUhJgLjJM^>q_x
z1)?gFzCHjzs~G4ZLNQMR^>v=Pf|>>aA|9UP-kyYTM@UFWOdZ+BkF?MK*HuY62LUEv
z6AYsq{J89P(L^|AW@cUQLUSLrHW29lxwh_15HTcr@)o=PwwHU2?<+Q8tcZF1lU+Y$
zKR<BVCfYH?Z0pIKYo>~ssMb48oCV5$&Es%wO33I@BT&G9U-Ia?*yK#%cqkZMcgw%e
zbs;$*C6<=dRa|BGqIC|3fUH;GV|-dqkGmf(lc^si)kr=dwk&99>=toVdkvd2FhQh3
zGtU^oQmBWW*Lo_QF{J-we%~EMPRA8sXSQsd-1Sf3)&CNhxkwPAAE7k*PqjQZ3~f#w
z^8W34SvV4`VxtKXF8RsKH>~7ya0g{TSt4z(;fpJ5>1|Gvs^w{-$!PWPVy+lIl0?Up
zMOeK*j(F(xxz{l?BXxLNO&q696UhEz7yq(bQcd4{uvu@lAWANLUvu&iCWJuQw+lW!
zV~8=rE{RR5Nys>Nb52X8m54>d>8Kj8PZ0oY7ox9BG-|ybAzk!-zR>-1CH}{smec}j
zTfp2-<1s5LD*6~ViT)0c^*`k2XJn5^9pS!QQ)p9*ZWTXoq75!9+naF9tvA0S7kAh2
z`2a;bd36QB_yr{yK^bbFt5hD6Uzj!q!=nIcpO<jyZPY;NgiJtCB0KIvZM+(1Q{U1;
zDhDKgenyrwBDt8Ls&SB={1d(GquAH4<rdS6g>KCIGnGL$ez=&J`4wmXq*ebtFaGsv
zm688dmymMI&sHm2TfH~ElZUq#7XOw@fFjBFo7vHC!4>K&<u>1c>2I!~i}Vk+W^8D0
zB?f^BqCdP4Q4#4r2Lm+DXtBp9$Vt~vYY;q}r6on-4;C`TYT9I<pQ0}x3Lr4;GjJ6o
zvjGVz`8QkFHz(ppJ>A_hLPEZRSSM9#P)*Iv-;P(oy8jj~|KZ)o14$^Yrnbn##1v+f
zwhZdzK<hZnXmG%(B|X{dlhM&l1R#h;ku{B%So0r`EQtU3N=AFA5B4R-$Na0$e@KZ~
zs1gwbc&`(}eLD*)(5p)zDA!c*F^y64d7I5&Bve>xn`jCBNAj`g6o5~y)2CisBSnL_
zjxzd*3A!@wH#`^TbY_<L*62K}KGezz8m3EI4IwWT<&^A<WOsGri$ds3?f%-Fqz*if
zw3nHm*VM%=e)7z(s1j+&lYBm~X61_JPc+kLfr^`&jv+nIY8i)#5{^u5#eb@^DCbJJ
zK3*~|9|h2>{~^Nu;~#U;Aso@CF<6mtq)InNGl8Q0?{8L*$ycve%E;gCafye+euANY
z#uXkRC|#u;Sgh0t<uV$2BkMs&(15NGgZfpkXJS$O9L`9Xx?2Oq{`rXh`FEbV&GuVw
zp%rdAFW5(V3z4(@EzNwJ=Di24NO}?E6gz~zS_rfomo~=+1_m0eb@)`IEG>NS7TX`8
zAA0%6P5u2A|8d0$A<6+|N$NL!FaK}iFMqD6F_dU1E@5g7ZeBx1bYLYzANxnO;GH_@
zA4Az?&&Yq}O%p-lI|c;VfIe#=$A~ncd~C3bx(gp)b#@OYhaN3Z#Skdm1xE4}P|~0p
z7L#ZcaFNUWFw-R2IHe&W@tK&MtbW>yOA<pxjRBMcr2>P4r`B2jLrDG)3uWO*yt=(j
zsxAll2F#@cB-w-W>i9pUYygc`fj^UMe=H$2OFJ{rWNZJ&JbFo%x|({nC-KAwx0kl)
zZc2?o8d>1XPpPiR-!5ZLA7)WsTq>1K^JhXOqi+wIs;S}V>FO$Hogw^R<0iOmFNi1m
zRQjzpaZ~i#1{w|y<v5Eo%hsi!kFdrk2*6IgdVB3RoALK=4hegu8HSCoW9ISunB~#K
z!$Xr<+R^(4v+Ta^_WL&l3596|dMc%i`udrC?8zL7Oh7(ctb$-4=tz{2n@b2yU5~r!
zRSRm=>!6lyaYsx#;*V2~l(isl6)^*tn(EMXmw#<p|F6N~F^Tb7iEw1RK;aXs`CAO-
z_A^E<Oz`f%<;EC2;#?)*e0{u>=<MQ>pO+`n;BAIUydm>{KVBtCg2=Cg!f|-*bUior
zY%U#&B)r@$c9do==y~z4iEgs8HzVVw7>}$z0ss4$JE$t7f=dahzAnmXy>wF+ocH>`
zuBc#tRk^?)M{Ii8G(h!X!t$*1sCnJB_nkHMpTF2+65%yIKE9}^C=oL=bA8596{I`#
zKefI8=UW~lLVQ(@gb)7gMOO7g*y8f^lmHk?0G0wq6_5~Zo}QlM?CgzzO^fdksIJB;
zd+o?+(Em0`cYvy&iEQSB6_Re}TwCZ=4}*KtBB$<g$N2|UCtcysB*{`GhqRsr^H*`G
zRm)fL7pP2p{Xsv(GhVrI2PIh2{cJrIrlhI0(J_b!uvbNaNLl0TC;mA9LtL;QJD;Ar
zlT<^n?!hm@{*nif6&s|F%DX%@Gi}v_3Z1l6dJoZm3O05-S9{TpLMWunf{uCOcG`K3
zuMl(nLN=*C@s)(f9T9{p;}~be%TsP|zjUl<zw)`^p<&w8ZMGOdnKqQfDDZ;c2)@}9
zp-K0F;)5{E@|%kP`n+TBYi+Gh4--XC=&^Ig0BGTJ9=YyFCNb>Tr|2)DH&ja<2gA_5
zCT)XqWcC2G&gWZP*a5DM3@<P5Ned<(C-Qd)arZwz@blIGc+sXH_DYpBZcy+?r3(G-
z8H6y^7$+b=&uB14Kw;uNhv<uKXkd^Ag#RQ!d=<Bl*fW;myh4G;plxGbICunf=W_vM
z!R#lg<lp{JHcwZxQNuqb<<k*aGe+jCjTPv)-p0Fk8|2WH=U2qRjwHCh2_2uYQ0210
zi-%thtFIhK<?zTv6ky7tj?iJ+K1oNUTTao<_loNFTS<iO(XUi3QTEU=5~W`%*G+fE
zt~p}kNvu8D`)b~=hZ#ijgCIWh+p{SnOuF_r2w@%N;1x#+iI62C3r4nk5seVrn5mCk
zz3pEH_rmfdK{(i*QGK}Fp}~UCUQ5|CE!L|LpG_s)eBicnyH=u%K8GRy^|YK}oB=BW
z#?ASUY%M2s96yc*qXZ9;6g%JwG*zi$wv=RS^*G}{3suaCZ<<&{Eli7qtdrPxVDj(s
z85S2Y+h}vEv<OA}VT!+1DS;tdPo1Zf;+j|TwUaB^6C<-r&YlmtnqsoW;WS1>O)bv4
zVBOM|6rS2OlaIUYgZf_<>R*>|vjH_D78CBRR6{NUCY?4^2rhd~H*NVVX!B42^OE)(
z#HQ48j#^MyctHtGLkgOniA@jYb^=`BDCp?M4?f%n2Lup;@GXx3J?6`X5i-u8wnvXB
zCQBW!g|9x<*_&u)Vl<3UQZ~DyDPGf>FddOkmZK0vLY0OKW`ro$&ZKY2ZZdD{e&R9r
zl;BA#=kfbTbHbjC%OI&QIhUH0ULR^%DS$cHF^kfn!a_ZMRvuDKCoN~A+QOxfPvDK$
z$6{uAx1&jpBcDVUE9skM&s*>D?&sI5@H>$DOvTDXajJsi;v$=|--JqpDzhT$oYB#v
z9h>8!<o@+^s`v=#xuPipsl(X{w25;`<h1NC<A;RkRm7v&xO@YxKMANN%{G!7D#I~N
z)%R(mMhOsFELI+86%`ERs%`xG{vDPnYVemxdc+sPV4Lw0CNkanXv+ZY4PInS387zR
z4r_0wt2sgw<M<@UpT|vE&mYx<=u~jg0zYi{v{h8FfLDf_-*%Aw6)u0>)gP(&?-$L!
zulRrow}ihD*qFoZnFE*A%6lZ4oeY{wZvX|0UKfNJB2=+(bh#NNH4xWo|9TnsJuchk
z$%mt*##+H=)7qt+0PJK*vZo#Hmvq3>8H?cu+!El(P%-KQi$2lr1^qN*K2D%-6X;$!
z{xz3!r2or1V^K&mSgm}mZlbI!Hz_;6Ia==|$R7h-@LRu7WG5Z-G*x!#A1n2CxQb`7
zw}<N}p+e{3t@(&osRl`!z6&|Yw?PQoo4%ReWaQ?*_L!CNZ_lfCA|V~p=gRP1vlorf
z(b@b?FQ0TAyI?}kuFLIvUtzWv#;*0p%f@3_il9alO7CbimvG}@AhUrOgpi5cna@}n
ziPNz_MCx&uD@tK1>P8<Ff^fwo8HO$h!tsd{(u?Vyu5gwRY(`;ZBk~!O0pT1NV=<nD
zkQ=v<2Me$pFdG`cT_KkaHRHXHjM*v7rj@Nuq-9Zc3>yMwUkCiEj%!L=e`ZgeD(GjI
zZ$VvvCZb#Fl6=!c>Sjr)f#rdaF%)ZLPZXyX9Oh?)f`MgmbSt|Wa{GKZuV0emnPzd_
z1EEd)A-th%<NAk7+9L)z14Uu|Dlu;PYiG8=8}=tpA{5{{zjwXB>DGy;wKo*cU>ZBC
z>0RsB3z!%PIo;p1zDNK#vHQWLgqH0D<6Qv9p9?stI|8N?kJo_P-uDC!2YPsb5Tv15
zuKfm=+jY@gWkeUk<HPRPR4<<1#a~vxO*w2-JzLRl8^^yD)rL0Ko^Dyv|9-vy6;qc8
z5M%eeG~~qLFn->jb*8V&9_H#SiA|RpV)hR>3CE^R5sBD{i1?mCuOf)MLW@-t6i}bG
znOhBytb!iDnbivpK0M#FN;x>Bbk`pqnov|c{<b$QU2!}prm~n4c|)`If&1JI{6n~r
ztt=5SaCAe3y0OB^RlvSCG>x>fmz_vJ#smoZOIL`TNA)S%!!LXB)A1aMMShLKt9cOz
zzS4`Tnn{0dIvyGlX(C`f@BGY$_({Ka-hP5e3Rq`pwszV(DodE-tK~4dC>nS%$%Et(
z{SlK<6!zv3rws<zATqjmMsGwu<;;FBY{{?hLkl#Pze;i1y55K1<fLw}b0kt}M|R{l
zEG|H{7IX@ej%h&n51kg9yNH3!YGwHOA+_*UVkLgkdK@?3Xxw%70d$DnQMYI7Z{2rT
z$RJ9Ox_-^<ym7pC$*9|>OoN9?ji>m|DDth8+P?2F#v{zX00+<D#7oqDhUeE5U#K{5
zRjr+PMSV!6vdefY$*J_dBs<)U6I^u+1Isdo4O#?mgh2VdK4KCuxnFzlMqUVy%ND&o
zlKg4X!gCDIV<VD8%m9E0RvZIr_>zD?hKQ5jM9I14!~85c6H|<lvGJZT_kD!Y(uwO$
z<2n0a8n4$b;9zrk*1L>-0Z`tz(KdbqiAgP*)_k!I#xn#fhF4ymZzc%6m7twFpi~LR
zmQuYGeaDM`)#(d(exjy6W&(Ea<pRsjGcofIKkN<?2b1akHGb62pb!BfB@YO<T&u7b
z7H3VXOKCB0IeTD0bYOUx<PpQ2<_UzYF1-rVSTJC-2?`4@%g7*-Sj?MmUxz*~*Fnh;
z6%SR#PA%x{y+-!07L<7@yG28-><)c7zb`<$>%+iUj$6k~L3BhQw2+TQK@&sHXN58^
zE)1OztC-rNW^dT&F)+mxQ(ck4Cgc+sO$i-q5%3Gu9g9~Bb5|^MrlZq6eT5ajjdbi<
zVMsPT^@Zk@u%Pec=0T6_OBU3-_pmXeZiXtX$%8Z*>JJEVdJ5I%*2!$COr{V%KJyei
zCS2M0gC^rM8TFIh_-K&0gDeucqhOlY!j4Se+=){yuY7YpocJ#M^o(^`Hb<f$1RS&E
zm;$G4JbnQd>xZ_p^Xq+BDcLAcwpj?aXzWkjcXTR!3Jw}z@kRcStIsP^VwbPzeR^dw
zLG>C+W0C1h)CyqzU;?mu5%<c~sFTw&a`5B_c9C0nvky0waYg0)eIJ;Ail@8uDcGi9
ziH_XjW@eA_&<i>~BVcqvq|l2kBEBnUOeJom1|X@Dq-S@+njfJsnDnm$M+13-^=MT#
ze4xKOeXKvA%)d5i*dCX?O2_Sn$SlA7$lG=pYWmEcp}qt4UxzvmJifH_cHS9~AEG@|
z1j!U%=+BQ<(+W|I>7n;wnmlC8EtJAon3$qkS_rB&CZxs6<-FTkBh%8J4obM)-GULF
zTF9_HDGt;AUG2I!Mj0K8^npPkL_ytD_ZG4acGZ_}15T%Cr{sL^gV3d-j@WS`P_VH-
z-NQvCcGLQK%~gCHeX)0(ev2Q^lLkfb(_Q2>w}sk(^futB%Ql>}ch(ek4*v4%XWJG@
z8gkl$|2SRAYq95|0PMs?c=_bYWTTNIvzzc?q^ImUB-9IT2hqpR*WUJq_WVbA(x-cq
z(f6lRYcA((gf>ZE(JN}JGQXhfL5Q!4643%k>OIc#=9|sNuer@v3U?(&!qxWq#6-Mn
z?6fWVwR$bHot>S{T_OI|F{!Ci%2Cp>v9USj!J(lD4Q;;-cISU87OM&ZvRBgldyyME
zTsN$ul9D+U74-KT_%CxLrW*YrHoi*sZU`ltH)}?X%>ILfA9@)shZsf?lLpHEmRP|1
zhQR$K?N%M1uNRNTq6r1juM@ckd8<r$M&$tTLz;oI6TV}3%zNcQED%FML1A+^N9Wef
zQi=@aD@Zn3SEu#)8{!DY`=lFg2P|~%;Cr8*>b$6r=clsUD0t(ZL>9r4QR?0-J{ZLz
zJ`lN+g0msmBq{ji(&ID{&)22Q(_>AcwNwfG!1-%}VWc4}5&iWK*z&bSm8j-{b*PNq
zXkJKz`OUK`?P)(7j?6p1QZ%21csl)is5|IPH`xqLkBzFYvwdj%-8<t-tNwzge#aV=
z-9PWmEX@t`y$m{-GIzI_6(a_1uYAZEK@lm$cWeP~w1vM-7?g&OBJTY9Fq!AP!oFE>
zeeJ6&)#5uO(_tNnD0q*|;+rE*>h(Ekk!j1d+w1;@XwDGy4!3`Hz$`d@oUdyS>6oZ<
z7jXxsv(L&Eq=2h_!i4hRUVe_(Oy3>AT2bn}ccG3dIJGJT!eS87fkQH!@@8+s$aDiy
z4Bj+<>WUS-C#|mH^-i>(1nqT~Q!qyG6|mD}&0^ieArgtxiMT1Tg#B0T!&3-#ACmZK
zhYXEy)!e2rkBG)A>BlFMEQyN(prnE|Sg7GA`nb#*|8mtED`%?CiHi2_btWPO8oJWh
zTBk}v+qhZn2Mt83j*N^BZ^VhOFlXZx%ac-0-cig;jDm+5#wgfrR23~o_!lJJuezGx
zHB2ZeDf1c{5&)xlU8l$Q$h+jPO};n-a`GV003Ip|iU8N^%G3b;I+b8-5l-q(C{Kyi
zM|~oW{M+P=@vW>#7a9k9bnTDEHi1KhG{aew=F6X5&35M&Sq+z^IF6!|GxjSRn;u{$
z;xG7KE8w}M68Wx(yX<fYl4+vh_0Ea8gd12_il^x#yGKE|y^Qt<K~l-K5&S$ueQam2
zR+>v-GS2cxXni6Uuq_+jvg)UPgc$&~pOyaKPOWBhW$nh~vl<6?PjK;m@9}d|pD%MY
zW-TE~V+U3V>F3_=d;kO+VwVVt?37?}asj0Wz^-+@Rtp^#2NKKx__a22L%&``K;L@<
zRffQ3xh`;L|H^HWHdWh0hX%X>_Wzd?a~%Yz&6-$az_GZE4xmr|rXo@>b`7t>+5#0^
z15GJ0X&+6~sVCf%JH3yOkN4Ot*mh=>De_Hda`s$>s|TWW_Z+7-aa6lVK<Lj{A7`tI
zfl*nn(;u%YF+L~Em1jId#LPJHU9Zji_!2yx65ktF2xmIH%cqF#oq2ADunIV>!B`**
zT-VX*Gx>rf5awt-XDYks-{jeGp|Q^0SohXT2O4ZjRfveUE0AbOHy(|FFD8_((Xvy6
zy>~)Wn$`sILZtqShxzH^ie^#xR29Y;u`$$o6fOK4RUaHqxPW4iU?9gy>joNy)nN`{
z_3n?MJ}pN3?JTrAQ$6Q8Eo@wFhlXOJqlO<R+>){OifFQ#r<4Yv$5L-APi4uMN5|3`
z^48m&j*Lok(PGzy2w$0z4<oIM$6X$REOVK(--_b=r3FCkgC&<MW4mo<x_h-F*e4dZ
z!vG%^i)hoa8Z)7;UJxVapn>TsNz}VU)E%OXD1fc3?A1osWq^jSmd;|<%~t?h{ppx|
z&4IoTqPK^96oQlu-mot1Y8d9PQ>Q7C#q?}sVT&(S4T!>`O1N9DZkn(VBV>4z3#=I&
z6oi)8X=HGJNhdF(BC#_XC)es)E}I65ST9lUttzRggzZZDq&k!?D(K(rn80Z0jlxpk
zSU}Lkmmn@g_`N9hDpvxVcwuy~kaTG2v?B?g@J$&{M-LPm|M%O|wLc0XR<8N>Fq~5h
zZ^Y?mxO6;x$6dnVL1OP3z{vWM>fWo{VM(%0;hWH1qT4~Orq~qE=hpMC281B&;&JUs
zmDYfY;y~h0)n6KkW$a91P*@TKx<dM<?&KrRc<pTlU4VjZtP@nET+Ro+(HPg3Z@ulN
z0ljGYxm*=$#t<fdL)rI)1ChNv?r_`lig_@3oRH9Jwv(PC;Bk;^iaaD}Ks5mN5-Wq}
zYWNcGu>IzK0{dUXgEiuAT^-K9wOiWoUvJeT&6fSjamXIj+{25#2{Cu(r)s()_SR_A
z_NJ$b*4oiA_I<<XZST%|=s#Pg)d@;3`mJ?FqqPZmgjWApUr%U$HjF2V2oFz7?&(rf
z1?Qq}3$#H=Dx?rMeYcAW!NaS+jkFE(FPj9ncYIE_c{#<_ySK0;#icgHR8-M8%y3H>
z8rB+yI6JP<cVk<kHTRv8C!D&RNq%S&qSq0<Fk8ZPLU2@PPgLSbJ%Ue{`r<~47T0V~
zN1Sz~Ub{>%NYmtcuZIe+jVMPJI@uNS#;5zT<CA&RK}H7_-%zRB85hMS4o4Y2$<4_p
z{_jppCd|o~68_m-;}J*u@SYPTC@dKl1H|~U{AYsWS*NSB`U6iyDDjy-wH<cwRk^5W
z>pkbq>#TL;(%$HUyI*faBhs5s3<^f(^Bs7K2ib}Er0^r`Uzta{kgkwT+U_989o1jj
zt;DxuiNf<SsyH0#6u)QGKH*mMt~FB^F~~dfFP5q4pKsZLvYj_B5eQR~nu5(oGc*46
zS1|>}L!dv4r9#QAo0+s5@M7G5fmp60a&mOgjlL4cC$PndZB3FnPH@1pm}hc#{!5#;
zCP1-dk*X38{5?WkSil?LH7sm0P04MgxVgrlh!or})Z)i}4VoMC47XMmXLo&MA<WX?
z<@KQK0m>9Yh{4#;lU>3700x_w180wzeiystsAhrDasy}u=qXqKHtxE>$fg-IBpr(a
zVU%GWWUv;V%U3M*o)TVEv7wU980{U4Ol=-z3+ac<we6(&r^BkO&f$*LzbCbbLE<4d
z0K@xPNYgwYfZkH2v>mWCg>~lh3NOf|kX@yaLSVlC0!cAAGNSmkG;_J%i|a^%+#R{7
zlt&uoBw=U7!PW15nktWAnJ>flwpVP9mj-bHOB42imK&TM9B(yfk>(pX0qhq*F9-S$
zt+wUM3^u#cY!2riW1_*rQ-;O(CKZ@~SFD=7XYPGd)Ab8Cwhn#b@Oix)#IKoqSUXoG
z7lg+U<Yk`nJ5#{*)ygZ<9J8p|gCwImnahRk`?z%~m&>NLM|B4>ndB`h`os0~^bYv=
ztfPr}%)mMsmwAQ_ICwSu5a#N|#k5wk-njm23IA-k@EAkUGPlo1zLQ(x&@n3(dOv{A
zZbwCE;<H>PcILG5fEN=NcTic)XoiA3u)eNc5B8urL=@>L8@mPyFD2jn2}*yc4vz1#
zfwWVnV|kkHona(>ay<~jg6sQSUsMuO#WF$qP818xG|6bg$<%KC^>&N?Xb`>SnZEs`
zi|d_^yCS|y)_cA5Prd;{>6v5|S-VK-uQ#+gN9&cg%(&timNp0>xVN7!6p((X>~Nvo
z_>L{yEW1|XOh?1$coA916KaipHRh&F8UBQlLLamsNY<LXMKfL3m{X;)=-<HyQjW8a
z#_=NUD|l<HoJiCpR=pxu()lU#1GBbxNJplT=`ru9OW+Hy%7&k;%UVDhTy1%J0;NmG
z_sq=sO27F-nydzuRS~o><(A=hM@@5^{>1hj)l<3^QS4T<OhTlCXmENex*R7+;F`*>
z)FXfP8k7iMR}y;;)ks^xp7ctrv&Ve}n+ss^^&*yA5)qnGDxm1fI*iEd;Vz;f3lgrk
zwnX*F+~wmGd@fGowa%5D8Mv~lsQWRD;2^(MgE||Pt*LqceNd}{tS3qkY+^GrH4eQH
z8u<-OTq__P!3(w!$13*^l)_D`U`QDT)h^O2P~mOAdmsLW9_rc$Hd}jblyJUgFu?HZ
z*KFrnM7(eDomx?Z<w`|!1ZZ)@FhMgvq48L)1V#>|smC6Qk#2%n*S0i1%HQ<#mJqw&
z*a9k1fI}+Hn<?_`H>ZnL04TzJz?zVBOdYD@?QquXpqG!0gBoYArqQzHhN|DoJyw}J
z!V?;<O?smj87$!E>Arl@m|b9lky0n1VV2*FESy=ucKvqMu$gdMq^NJ6Z9!-TC((04
zfH=(zyWg1g-pm_@)}t`8?RPnmz-*4EQmlCNT(0PjIMtG#N~r9-g*v(-;f#LUiT|87
z&8yuPPI&2s|H$L3G3|uy*LGGts}Z%r+C-_gE&xOP^n`ZT`ts1q_+tp;4i^=v;QMc$
z-faoa&h-Au^ELAkP71Yxfx+|_YP&8k;v^CAWHyDsJ$YzlT2I;&eeQ>N(jmvq2w{*$
z*;S3ro@@u~H9+Q`1dM9))qQD?0?1O*T3j9mR+^^YI754_!kHd8q?Krl1u)KguQfh!
z-YjM&g!fX&<&0&9aZ#=iKfM9<KVOx)-93f+-5`uY&-h7iFRVP*%-(;PiB16s-h8`9
z_0~HdQYe~*ErK_e>{qgZW<~2gbv5Hm0-oEWW&KE&ULe%|n$y19^98<3jrhy`Y-=nZ
zM;RDkhU>k2{rYwO2M!7!R7EPV<7ynp9&Jr$=tPVsr+TrUG)0|yw)gk_cDeQGQ%>_<
zyNHedbr`+g@^Fl7-PWx!N;1G(1-(P+*!!_h$!^JZ_UlP0;{6^x;j#-ipbfKfH)3xv
zUu8&t-~rurL&Lqc{IcWrEG$6#^CNd5Futh0ek^e6bcRaZNi=H+AQk_)dd0!-99-WE
zh<IHs8STyVxBvovV!lSbq<q2fZo<JrnKPtZy*s0+aoDYafi|uBK_7528J^L&E`}In
zi;CEIQ`Q3?UVzryFGAi@qp+}lIrswov9!++KbhB@$Xfi?AIwTWuxRtbMsYSSQQLQF
z31iziJpoTS`*)|O%I(Fq)ahk1_4y;&*Onj^fS(>6g~!uI-7S+T)Zb07fEgtP2D|@m
z@ue$ix+q9m$sizOHt&(G-8)Na>Ol$ks}C=xAby;$PlfV!-8m1+bCZSW_V51QI850o
zo@t;fz~bZQGoY$(b-oEbBZZ9ei31dh%-6@2!Ntde4VNPA27(7M?2*<!@7oKf+<PFU
zRzI95A6{*sonOY1H<7>XETEn;7}m%$lQfPedaXsS5jTl7pn7~5qZLhqFaXX5;lMV(
zX{>8zBQ%iblZ+w`-1oW^no2smj>a-zCJY%)-RnVI(&rp|OD$7E*Tl_~1?DIn$S@-$
z=>M=>ZB?t5L8|%Vzh+ot;skp0NAf?*qwYh067tJq4=Y;DC`A0i<0bh8$U9U=^lML2
zW_|u9BDjaCTcOf5C~7FSGia>5*v&_=t->Ni^K)In?DP>+-fA5s{!no|$0w3BINf(&
zwSwhPc6FEfSS;NokkKPkJ-XBQOnY=)2JoAo3*X3sLb`6KDbb+XZKix^-piqwfc*Gn
zABQW6WLp!DhJNmQY)T3>`o?Ph8|>Nd9?PW-_*8Qh>a0)z>Ot(J`6lJk0=Z9}ce4y|
zOEzui3TIREg|R_@4W3uXnIODh!I%<!l2H;)J)$v1(bzRDPmzeWy)!jGK38h}bZ+zx
zLDWOXf1K~SWh0Mt^x>wlWY=o}2%pt`B3k1aDl8U@??H(@_H(7qTc0K_GF;`nG@!Di
zGGBuhq<e2_Mb$dZ6A_!+8<$@m++N<RypBI#-EE}y7$|Uaaic7)?zu8XbSw>VZ2xX-
ztH9;0hp4ufDYsV&7?AoupM|-JwBrfr9bqDOss4_{W&y_n(_q{KO65+EHffmt%bU`H
zg3J>p@RL{g7&HFXTEyA6m3uS=dHFsEFC$1{lAO*T`S?$}!k>>RC@BM7?*=tR35lSR
zTYRr_8;={rxTFe|O0OG&{k4?YCt!&bUQc-;qQF`zf15~L4=mS`7+iVqXaa1#72gr8
z1w(G1EGsmcs>|tF$h$n`ST0YeLefh6j>fe<$j=g*H37nf)A_SVM6&*T<8PZ7_Te@7
zzBwHeJbST7aYEiZiX3puJrB6&r^L0iG%!cETSJCLwY;UH5b!^x54$T`UIk}YTXy!t
zKF{1@BhR;0J_7Ep4=%^j!kp~fz?0ZY$l0&W)G-V3FsiM#EI4r1{rglknb7?tbDy1}
z#mTN&Hj^Q<Q9!+#K?D_$)??L*BQ^u2VBovnYSE11fQZ*dYfOIe{X`i};ryo2Bl+2%
zEC%Ssd7cu(aQLhW2Lp}ji~UFrZS?4QnSdo56LEs9HP5%{{Ya(R3!;Z}F7C(54I*gq
zU-qytt+2=#ay1GS7Ah*U31EX-!WJuo?@1j`_NOV;#l6)~IPSOYXC2f`@XtDfa+x2?
zF{2kthf8ofjE!iEDhlqJ^U;D%IH$3UKYfEM{z?;T+6$o=<m)KyyD;kVWk$)Em~pPz
ze!&R6fncp+jEg3@U{J`Z@^)s`#5HB=Y6K5nVW%(Y35gJpkQucwst}gzEL-TqW%4fa
z(>yl0P)q%@?^5ysBINjOg|PpNet=+=P^}nPp$J)+Y+4~Dr>~1pJ|d2{#((=HA61)J
z!e-zV<uC{Tbx=wxy!IKA^(SY0IpGy63GFzwagWUC23@ZBC{uY&1&NT3Pp~khL2oMq
z7CSyEP5eCAJAA&1bhfkeI1R@C+!P)i*gfR9_F4xhG!^9)VNX5`Yut8v3yYXc0eFcV
z^~O*bb1a?T^=b#Ux3Eb-x6zZQV%m+dRf@4S-6^F5M@ikn<8Efyysgyfa%T^eBeF*Y
zzqz#DwlLpMmgxJXQ+C$N3|zO2f+BeOqY@ZrGo7Fde{7lZoK^Rtm8F-deeam-+i@z3
z!((Rm2OS6{g4h1ogvU;RdWj*x0<f}1;OK(?K*Z@E+VZ$X^KiAh^Zw0#I>MpXdoF?^
zcpf<KYDgCLHhUfLdv8A$|6K?=@LO;D09bU02i!d}?z@0XaS$D@w+bz2acUc{IhP$w
zC9rUW#GJvo81^B4jjL?N^D4@?q+V#5Oh6UUg}3ZYScG}=6&f%fQgF-xTv#v@!i(B*
ze8*-6T26gv3_Pj4T>&}TFbZz&)a{{o;ue7OqD@s)-8Q)d?6|~*ysK|43B3Ifz1Cb;
z;os*7gp2450jhpk*LdwwTe+#Ol-*tiZh&yqITn=qspOt{^IIa3xg3ea&AC;*^K?JF
z$kC7neYKTpV{{i_hqsad9Y~7Sy)DnsSoPP3(0CJ5hvYd15E8}Ay-q^|EVa1an5}xd
zy1<X(9K(-ywxO&w5kmPe^K!Uh%qq3sD^N`EFY!3sT_f*0&~iZ+m@kqoYl0aB$Q?l3
z(-&U0EF@+Em}Q<U^=>cERe)SI<~e3kJ2uDZVdpB;7Vz(5t{2;N)_Ov)w-`e75hNuE
zzQfn7VS0d26Z20W2`F*6_`%C(cpLGL>*%d{@PM(WKsDI+`w>umP)=L>wKD9Yk0J>4
z+y?6`eZa#b9P$-ba6{YudB(M7{<_0p<HB?7sL!ic1=Uv__vxzB;UD{bB^0f28xBvi
zV@%ul%{Cooj{tO(kT`~U{T3P~eOql(>jm&!1&~?p7mn`cbi&5tS}sZUax@&$I|bfE
zJp+Ofld~<?Ouwi|OM&^DO$M300R+>Dlu0r?pTtTHxW(D7H$-w0DioM=42Z%LMR(^P
zZsP~ai)lLVA_N|7#3vCCU9ci))HhWGVqtM;Y$Gnu6S+e1_O%ZhMyzS6-o$9Hv0vDP
z+8xu#sHz^*G)_7wWSp?A;exoylW5NH17YzP*N`eX73I|^(RQ%s<+6t>l*If?NC{gE
zv>Hxz-&$LEm+Vfa`d4);Kk732d<o*^!%}@G^CWMmq$nbR6kj>xxbKaTcRb&lM`uJ^
zztJnBBaVeB>WN&@sP47d@#n)D+ki=0yruNPkdU{~EmX7NF)+e7?>dy)bnt^5{zc9w
z&HN=Gj*PpPoX@wRc`&VI&7?$$b+esb$?fo~+9R{W2+H0#-9sj`paUVe$>3WpUSvKr
zp0dCvB{MWUMZRvLp)Yh<q-UISJcDtgv3onInj~n=2@fkRPh~}Z-I(CIHmK{{vyB3k
zcbBf6zVC0|9px~!{m};Fc~81(mPgtIm$Q8rQAnAJH85J`G({>LteAWJxE23xDn{2p
zhZZ>Pha1NKIsL4Pdewr>cWHON`L&qT+x&L}DLW5lo$N8E^!-i|>J$k9pX_=qz~kt@
z->2t8<`?&u?!Q&H1pKzE94>y?)(>xJKA)p^e3JI+gD;(!*j}L~M7e}#2)gEaIAr*I
zX`XhJx%hZ@QN50cN=Zn-p+ihRWA66wjY3y8gVuz)<HnpMP(UwO_$3*~0r4AeIJDxg
zU%%*4n9jA7#dsf1b)mgLVlX%|XgN)4d@NfFUrLCh%g$?{30K8vn!Qa75j%J}-V)->
z_z_fj6AY&E)&-)&Z9wz_KJzLqwLp-YyC_@uPmiH<Fs);H5WtV(9s*@W9K@F_!YMC(
zQ9Uri)eT&EBDV+ezy_!LE6Hl7?IBFe5$qH~t<G*WA(gZy`MYZzuPat*oi?Y(<`b7u
z^Ph&`AKq(E!gUs?fw+7kO)LHrzIkRC#C#KlA(E%}{-dk_PC2+NC6}c`XT3n7P*<G;
zy`2$k+|5wHRS0yUWBDXa$~t!VTvDbmeh+?47jK&$La{aWUv7K32X<7ZWrQDbAz+<n
zR{K#ilu&c<++Zz7OPkIEofYZ)%!cO~ek`KnwD5@M!?{p+6bx(-|Gj$$di&ZL+E+``
zpEX|jXn)BUAC<tuo6uP$Eys>KgTqeZuCn#z>BJkIl-J^^#Lj^0em7I~43IoGGL%$n
zhT=<N5+EunQl3U#o}Irg%FB)Z%&`N9$+4=fY~=UI+oyFy^*w3GsNUjrslVu=vWASH
zoAWdG6glaOV-!R`4@&I4Xq-qP-V{EfizSnW3*Lmo8$ne?U=G?`Yv*ORoDAa)>309i
zt>)L(Q2y-rW&g$k)rQmAhLn9c_xr?_El>NB<rqar_n+y|2|%wb1b+P@qY_c)0&+na
zeQv}~{mMN`LgLtca3A)|yYUKo{w>xRxDgqDsiFGBJPi<z7D#g#qIWfITQUAO{zwVS
z!y_tIT9B7?Iu`c*#ri`!6Jwwne1}u@&sPn}@X_>Jifq*v>huXz>rE*i1j&tE?(Pe=
zyXC30=if@k&K^*Xh{?Z=QmG;KiOO)voQqzyWAeWa*Oc1o4bpXsrCkeAQByjC*I*1v
znr6COsZNdf3U0o$I6$iC?v|b}4$5n3iX>3!;)~W;%yTnO@U9~(l?S;9X#NoX7+=)U
z7$l;DL#VC8!#6L_I&z+rS&^XN-PR+N`d|GCHaV*l+1Sr%MKK3k8JI1j+GlWh;Ba4N
zH*i<`I?=X|a$6S>5}HdHqTg4BZ7*f<PVI%YPQ0~jtju*hax#TKt2mEiqVHAAusG_~
zdP~#AO5Ah1Z_n8I%o975S9jm|Ndc{?UBuV^&6n#!)1W5SWdI>?j*_miMpyFLiy5Sc
zD9u}x%LhS>p8`5-_#ht8YC!|&IDRhvRx8=~S&iSjC=>&HC)74k3z<&for9RvVXf^1
z?@5g@^W*myB6Jva!V)aAyM<CoBi!V6g%semT<}++;vW6FJjNEq+9FWwwDxv@<hbDV
ze#dV^tH*uY{$5^|eLY1giG|nD&~QR5O9Lk#^+Nz4rK^s-mH!AJRQB$W4`hBO+W5VB
zuy!BKZnb3u2@^ti^P&`Vh1@&&DvhFRfO&tcHA_PXgOTNZZ+KpuiSaMk{o(MPPk9xn
z$a{awKma%QdOOh{1NtNnY<CLRIY~HSv`BsdbUDhp>&}9!znD#V<drjZ?!fUKO-;$)
zIT#$(8;}0{b`W&&M_m2)e#v8x*k*6gG?kRCPx*bGm+z=d0M)tu{ghBJMmlP9G`4M<
z?7EPA0-cU;QIPZXYMxfpK5|cmxK(dx<eDC&Pq{-c9)*R#9j06fakH|;<TdB#1k5kG
zX|c6h7y6&OLP(KjMoC?%-gRM7J30&e%IX3a6tOKCRSSV9kzgCYAmJ^{en5VNWivJs
zR2DefKq8$Omr0=|XtBL(+JH(B*!`+3@+rL#KBq0kD@Q17N2*E>h0otE{t`;>W9H}6
z8}uNR63Q@XzAL?VrWzL3vkG~KGhuu~W63kSW3V`tUdz?xxBfH2Q6v^Msw9$swlCWh
zzP9~QzGg-QwR~)HosM9l3N#uhUlZ^y0@{p$9deOkt(F&kXn11NdJY;}@0)Len-JcA
zI9-i2KdoY3ofo8EA?orm=taXMTkr!<s3?(?rgMG+<Nr$SMj|XNygnR{&_!N()A>Lm
z+aDk|W&cRN7BM8EZ-0yo(MyTd04^cxsx}D#CH9xi-S%Lc_a#Le*2-!1NbY}viU&2D
zGJex*{ow=^ql=I75X7<3q?|kv`#CG)5{~{C)w*7GRrbYJHX*-npB>UZ))AnADL|dp
zegKWe4**zx)Pu5{o(SLw`QB-3AwdXlb~^c#w#i)KljlZq;+4`FHT_vkK_$8`>tsC8
z!{AtkNtCd?EBB6A&eSbCNnX$gs@(yS)zL}(W5t(mF5==BClbXG?mNuh{5|%ZMGS43
z_#C~azbXVBZ{?QXd@Ec@JSQ}gH6}v*NUhPNEL7lW&+E2c8M=(^?e6s!J`y{yEFYw%
z;7#=?xroQl*~Cnng|t4ON)dr`f1&SqVts!AJ|VQ|Vte1Teuu>|OEKvLfkXS<eIOP)
zy$V^KF95k5gBgGwcq;K~b~>$((xMIV&kqi2e)HG_lIN9q{If}iH;n3+<J#&QB~&bq
zxk^Huoq&J<dhCpr$jA>0T?hV%2kj^<+MMTOgi>7)F1>w9c(@T^qwcC+aJq}9;#hrk
z<-F!|Wm@N$J(Xelk|$6-scq%NIx{QSx&O?Q5AMq#Yf3#%ja3l(aj^uCC9?8QS>G{;
z0or`i18D!>I%cR>jSF&(yHW12{~u#-85LKyu8k&y;DN&33Bd{O5+FFi-62S@;4T3Q
zC>(-Aa0u@1?gV!T?(PJ?i*)zi-Fu&V&NoK=fWe?@)mn4D^OZ+j=)Sap^5>jP;$?04
zn}XnQg2N@f$*t;`SR;`pQwWnSNx#5~!M&o#VhJURlr&z^z=W~U)0ZCztQ*)stx6yK
z@(^f$3~_SKOTrpNBevFRs>H;=H1`ul1^^GT)eP2!=;`rH-4MvzqA<xp(~dL!yyJeL
z%#K7gu;nxTvJ^3I+CzaAy7Gw$Cw8HQu?ulHuCzZNF?ywkg|ahirza7xdteS*CGnd;
z&iWi}ql<w7=a&h>@#jblHlL~`mE(t*P%`wWQW-+~nVL9UxvzqrYi=*nr&{3W&M<Qm
z`W-M^YMHFH*b`8p-Jlzu9=id1eiIGYx}VTRF|KE_jj&jhqZaDk6S9ISl0AQZV*2Gs
zf26zZ70YjMlwb*&oCkk^1?tI!oT7w-a+d<!3>7bJ;=aB@{5IMW;p+JJ2<_;1wPs7F
zyT;SS+O*jGEET*5lL(O%ogp@P=pT9VJ)C7N?0Kl^jK5e6E9=r0Pn+KtT#_(bpe>z!
zbGT5lU(N+_hEe#|x!`HgHY;+O?<(2!_w}71yq=+I^qeIJ*D#ieLwje=Q?rjkJojj1
z6+f<m@_Pp&u8Qz-K}#i>iZF7YHgU^)TpP=9I-M-&#0|W~2xCkT!4Dl|bXaU<tq^NF
zHLCUuvdt)v2$?kdrpJ?LP;g7_cOhHqFmGFhwe{aQO<DsS&cP4-Sv>8<#q$Ppq-`<(
z1uQ5r-^rF=Sv)=M9ssCi<QBe?(zISl+|0}Ap(6EO+MliaN(9^_gk#jGcYS?5Hcr}1
ze&r~<t?Aq<oNI~GSp5VaJoP(j`o(a!ne^E;P~=6EiTki<{Nl-4kGVm&;9j*d@|v<g
zTf(r%q22Dp5$f9Zbct@To2hwn?`L7lj~OVClW1)-X)4&wW+<^iMh!O|CXO8|#LcZ|
zLJD5ry}VGvG>N~?>$<$w=yv<!f>&78^0L++G@_S>okOPk`M@SIqa<g{l{B-z0~PhT
zdr?8R$Gl}tpM(6p-S)hy=GFnOo#w$Y+g}syKaLuZ1=KI(Q0(R!;q95ma*X{Ho|y;Y
zhhx~fc(8U9kJDka{`0rj9abFyM6Ti=)J9pY;HG2R&fv6Kg~1SQ2#`;gBelcojpYfU
z=%MW#!3O;X=4JN0Np&atIh!f4Z`Mgc=>MSOvVl2CNSyF20pU_Xc+Qqu(iZuf)Kq2(
ztjLD*cQ^+oTO2<>?#ffKFcY&+9;*`xo5!_lqB)}{A>+|5++tYjZ%t^lIjpjpos)L<
zzuB#FVRc~o^fHnA2g!L^%{AYqxmWLXLY==vm6TJL_=Ni&93V-$dLV^8Hh)wU=Owr)
zoto>Cret){^Vobv>ah{o@Nw$i39z8$UzBXP;y6+{nC9@_{E<l48GgSLQ!`ab^JSuD
zcJW*W(O6+ASclTQ%j14dwszN*ba{~0bTM*%k)J`#Mb!vZUO;wuB@;`&>p_`$J&ubk
zvfW>IshG6RoVM3A97Cv!AA{fa`DDs0t>25)RIHV(i&s1Y!`c`e{&Euz19{x$IUo&J
zM;?wT-3TFQ50|W!A|_TN1m)DzyQb>b$k;xE80v-caE#wDU7D47w}c?+LW#3z0rJ8-
zxVEv$m_C8VDA5nJjtn(SG%<-5DKFoh&C(~E7YbLsP@;3nwJh%ZbBKlJ-M*IcSd)UO
zd$_!!?&9_#r8eI7su=x|_=4_hGMjr^w#{RHqrvkPVx4~f!TMkXC(Ad^*3k!$$2WWP
zaXZ151KilRsuw6tch!>phO;{r?Ry!1L6>eqlByq5FY22;?_EpIqVRRIL79OFVHPn<
zie1=9E`%-y8C0j8-=8IKSS*kpmPj=6UUP{uUHfs^68pyC4bq;B&Ch>!3wLVsd1>p5
zFZ4^l0u}2g=ukT0Da*t(ke%H6y;n(Qpz-$j>{!nY-_H8sG`SQL?>Ao@;L{V43T0OC
z&F`MmTPHp>+CT(Qa1NmtJ{tpZ1Av=ZZ5k43jE&{x{;X$5U%qYA#;>!~N3EcPCx8tu
zjVgT0GM&NhMBbCw_YE*-kh#4)K>QU;!h1KM`yk|MrN-0dWCDjsdOoI$SgS7&!Vf*4
zN|Zy^AtL>F_J(GB`Y6A0(O2Bu5K0lw*ro}nm9Co$Zcs#d;@0e*@%PWUJ{~`iVQ};A
zUm167Ww7{f9Rg#fh`p2>$Me*xsmA!-0lVK9{WnZA7L-~`+m*KSxmdjm%&70tvxYLO
z+7*~<Gs}3!=3f~Lk=ZR_NsSLTdmB=zC1de&ytn%mo_u_(J;4w6w^H(%G$moVSK(fF
znX1y#lksljHui&{#MxnTiVMQ4iDpB1Mx!kTjL}`iq{*EPzWTjBwc6B$!0A3!#coLi
zo9m_IT;lD`1GntfQJ&A?4@y$0j11ZBXRo6{*uq#R<b5xkehOKgykiIBWXYl0t&5iR
znq$yxO5rw&5J?Msm=3{ZP#&H}u%XZ?4eCccA6$AUVmn#!KRDkIJB;1}35Nj;+3%!b
z79as7eY%Ijv{E$$yf<OQ^iGltI;;R`l2db@EAYmGkX%mJ{%gBGe0Z|xiD3fVEdk4!
zeAyx+)^=9~3HC$PdG>ruL|MWUj0ds(HuL-$^>AXY^Z1gcW!lYz$wy46_i*^q`ZgN)
zxpFpo4zvbcl;tS3qK%zaHoT>_jVTNa-z+o*)soyI2wrp{yUM>2f^c7`xHuPq_%^pI
z>M4G{HEqrzTu~lX!}%57kbJ-^;#^?HJew=;%&BkqXSW*!_nfwoKoWhGzpQo(B0;9A
z&6X@sm!x2_Bn(1mH!y795XBt)^p+Gb*5ft$xE?ezkh6ZVF<>%q*51zSqT^*o{$4CT
zkKK*-A`lsqh?yqanVF&3Wo3G$G|*+7Rin(n_t+ChqO7b;2@hZLLz({fUuxgsFfGYz
zX5@TECd%5)U7C(h`F2xYmwTzoV_>Fo3zkt&_ZrUP4jaeMc)rMcXCc}_7WM;`X3XIu
z2BKb+Rju%ToAo#>BOiHB&I4|vY3$O&n3XogEzfDUnX(cQ6ZMp)`TYTR1VhhTKnw-9
z9dA|E3sF%$Y3b{ajr|9KBK6nI@BPu@&9J%Jp5n<iB~)?Z<~B%FbKMAlHbSmn4LYPd
zSu*T@uL*1bxDU(B=()wku|r79BhSncK)3Xo)zZZ%dZxnuNRcVXOD<c<1H5BHPT`;h
z=QbF?YPADuIFT)wq}SI3$=P5+tfgKl{A}~bICKamCgyp=(tVh_Fy!%e>2ZqpP&=RR
z{^I`j$~*^$1v)Wq{%t_}nGYK+!3uayvh47IptWEFa37=KFFbncvp!FsXo2;(sU+Hg
zosNdo6#1Vd^fcWjo}%p}Esfd@l22BQN7|52uzjm<C4ut*=n1C4=gxiS8%*}PTO*c|
zEg~c&pZ@Eq|G7{30-t@8S?1wm=WBCqY&~i9eqn!5HC>H2_iUv=*LmgTT!T{y_7+e~
z;z|m&AWG||rKNpY&PGk)xx>|(Cs#@+(T~G%WHL6sxhmb#Oc|b+eP+-k_=5_p{2<-3
zO%>~Wj|nfCvT-h^L<=1T(yP0beWQ5U6SohW(Y2eXf#BfGAH9L8OcrfB0AFRcy)msi
z>g&Wf+K5KOL{3?CRP<B4;=62we)@~LqnINvA!Tec(=mt4zTGPFsU&sJ6_>fvYnFP?
z&5zVsO6?-f{CBr4k5Ws&Ry}N;A8zhiP&h^d2QBIi`-D!os(WuJ%W8{|*7%cD#kYc!
zu(c<uiaCXZa}uTlW8G%aZqg;>GmgX?yZ5y5-qRu%r}vu2LV6BXQ*BQc^iLXhx5Y3L
zxwZX^FD=KGxOka_B5>H<!;W()pdFrj!X$y=N-U=L+V|FksLR14WwVV<q<MG!=O|PL
zS)eyUV7HTZ?eU~?ot$&!iTgh%*7M__Bz)EB!d|j|Amq?4FY=tIqSRz%>(1&^v^%6s
zCpv6CeoN}GF@X^)9_rzbirZ!7(3Tkb$Lu9uQ1dtD)z2AgB?dSB8*2URr)mYEIo1-h
ztEHNV%Y)%G7rPR2=bE7(^k`AS1u8I~8cEc^@8A0cj(qwc2?>wgNcEf}k8T7eo(A&S
z@}4a`?wrBp<-Cu?vJw)JE7Pm~A4oNop#83-vc96{h?wrmD=a%ZZt;_H7G|UeZz*Jg
zaO?4I6ikVk{HccJ;R)W*X?=*a@yIK${qiCEC_OT&Bo0a}m`@3uXSLHdOGG$p>^1kQ
z`m1S?z##31!=(?ivtrZ$N21g;_&qgv%=q_uJcofQ-Zg%gE<b4VP5Jt#z&<FG{qtma
z&Mj;^-*27_gUmD3RQ~&O#p`;&m18GTj3_b&RDB}};@pJ?#2-b2vK|0L!V`~?j-8e(
z>&g}kb%}k0O(w3J#9rjmd@|kgP~}&PY6(MzG4A$W$zx(-LVVcc7!97uSoTRea})sO
zQ7{$?TwA5=hS}Tz9>DjGJzIKLhd<AOp;5m+c?jSRFQ(LbLj>+|W+%ZC;WX177f5QJ
zKG$K3ii*0Q62rMFt`_Wm<y|F^#N$*P+XTo^UUNte)W)~E^UlD$qr(4Z=W!bu%JnDq
zrXaR5)6Y?do||6)GM$Rn;HwYg7Km^a(ca3c7z0;md3*RtThtlgWC|Wuc4iTvTRSiG
z_Vz}kKfjw)bXoe<&5^Z*3jQvds@Cc=gQkx;<0G{!cOubVz~cB0tmS$b;pAL5REcf+
zGXgK2WN1m|uo=CN%bF-*$bI!h!6^{N^EL;YQ9k3EnU|6OaSUPQ-J7of0Wd1KzehIZ
z`&c=G`u1`p`VYSs;vS8kU{@Td=PNzJ&$~GRHV0}kcgUC@M@o>StaIq&{e|v)p(pbm
z()}(9V?>8l<~xJIlQNH7tqFQ68cJsur0@6l8<=et&5D-f6m}=yw*Y%y{rLI%!+e^I
zuSJYssd+zuJrBuwDX}6Ny4Ni8(kU7y9q+XTO}ER3b*`N9el&L9n4uE686_E=V<#JJ
z<vI@tWRakyyh$dTsBZYafg*RqePe$xD-2dmQz37+T$@C-d#!tvN7-1BC|hzQj!sx?
z$m<2c^J^{ZBamdPNTuxXb4U1;OSb1d#b@SN%ToL&K~oj_xvB?!-L84BL2v|=n41!>
zpC;kyVhG%p`zW&?$Y!SW`KsHu<3s1>Z%-Il_ct2aQ$vV|QeEHjQYdBcNMDBKH`3r>
zZGuRrLxhf1Wf~j_Ge3=YkDTuqQZWv%{pkEyAu0Ry18D{wx3v-+f!No!1>Uf^F<aZI
ziO3@A$gka6vJNp_r_PQoTaR_}@Dj|Gm6{MX+5I^R=rFt9k7WveAl@lu-829uB5!1r
z{SDhdI&Sy#`SvJtmb#i+{4^5}kLIF+`MnYGtk``(7^Ra<*!gn!%RxOx%Kqmk0#7B9
zHv`#nzU88{Dd0!vuoYfyp?)Wb!*5ENuy0W8X;Ad*c79p88-s@T5~azTVSPXCMj`c8
zOI&WSf1yVr_PjRR!Q-nmmV5j`#~>U>^1A%s?e+xA=l7y(4rc&$DZUj`W*NZlM9F8C
znw|o_n^hpS9X?bci|M2T-N&0aq-!k|6;S}=RFe(M=^$_nf%V4eguM00HSxeRf8G53
z(TaeG=+G^p`DU`Dx_8_p?K4iJElEafiEt1=Sn_%HO23$t-D4*^?tIb+#}wQvYO2#H
z_5>?xDu!KK2P`ZUmLYBdJ(9=gRY1`fkoX1|Lmau$9}d*Gr)|ZpVw&>Y*v9SIJwv7M
zOpiB|`Nk>l`lb`_+hS?+)%m#Wz}Ab@o+o7dDKkNY;4+-A@K;8!>w&~K!t44nM}Skh
z;8+PEw>@Op1LFu#jX>O(OKn~T!=qDi*Sn+?woHw(J`CmBWa=(VKXG(RY=o6&=W18<
zl@o3X^X&*shErtXk6=2YA=qo8RBm3#dL$p4&xUy5bsYJBEx#zaMd*&NmHB%$>rI>b
zteM#G!<VDPU;IBC+b24X2+=LP8cG@1EZ|5_b|IM9*yFMEn%oL8ds<!4bZ=Cp7{lNg
z_rh@BbsGo-!)mv}`iQ<Z+xOXoGJ{&}?-1i*;D3J)AQ{(b(~#>%vf&|e6UF^P*Y)-*
zDT?h5>1trWZ@68h=BM|svhLa83eBmnW%=`bREZS=8KPpmb?729s4IEpOpUrVKe?U$
ztj3z61c!>*Y?rS|@frQ)E^8V51B^VJ*B$m8gZyAtoHV6jLPdSm<W8NbL`}`sOSJ0L
ztIt|r1b+nhjM0D%Ib}(DBhA&_SwR-8*n9Ka%MRvGWoqkC>*;YzDsk&&`{(K_)N?}b
zZ~2x&Y0HQE?;;{(JAY}7RbYqptK1#JD&*!34I5`g&2FX<7U-fs%qE#SYb0uM%1<-S
z5?ArPu_$W!N!&<}ZS0@(Dr(VmOr+(wzODOr-bW9;EA`=%aMhcT>{G*(M_tndGJqo5
z6#e$Bftl9gn6BUBk>^L8-&GgsRS6oI18i6DLg6D_x_{7SOP=La(@YS#P2rSIa*3cq
z!<b}7)ICb=$<?~}r873|uXAjr*oP0agf{F?qZM**?FPrbk?~q5=dZqyL&cRQ)OK2k
zGfARCwXw`VOX{x1XHEk<5SBk^4l%N5(RGjB2bPc1{|P-;WxW8x*ln6`(+4v<%ijTb
zFbN*V{fMQ|(ak3#)EN|`r-45pH1kbM5f^a2L-HyTG0lIqL_Xyn9kJi{CKbajoUNV5
zJ$4fwO^1{e+P4;wh>g@|q1qC^?Uv%^OPZt$gcryuKcBthdZMqkB@sa<>)qrC+y?@h
znN;s>?{6;9?Y?g?6DO0C#g~{?u=v(vl!R4!a0$QyTBh85fHZ)DDV#jjqGsbV8}UlP
z=f)FJYO79<6?Mf+z)k^8s9?>--!59<@p||ixExSt&UlV&4ws!s78z-x<&Sfreu*eb
ziS(6vhrO&BG@-Wl!B|x)Rf^Xjg#w$kis=-awFe-RC7Kn0j{ntIq}!tN@UtE$89#N0
z;3nf~n#Y{Xdq3cIyZH>St#kyy3&}&QNZs!aK6^>^?->D*WcUm-_P_5apbdr#wae2q
zhcjso9hO}8sdxaoK1vXB2F1nByO^wPs|$okd$#8%9ifJ6SM~Lit@G$mDCRdUfniM&
zGE-D12sxC718)VrIeK6J(YIZee4`f}m;pM`U6NSKy;DM-j8z#)t5c*l-*6>0X6=0m
zOKpbX^WLK_aaCdEenb?1+%8+JYowDC6>9GN=aP9Dn3a3|gBxEAGWJ7O_@fArFcEk3
zYu?O>;P+W@f%a2{HtoWm#WNu)uX*{{Aum^F&llY^x6O4MLRA2u?0{Yy`PO(c^DA$P
zerzn)#t)iw#w(=V)Gy<xR23Ac2fEHbUGlD2&zLHhMVWpM1<4{uq+G5fK;e&-<_6uK
zUR0LcM1{UQMrn85v%Csegu<bVZadd;Ki}Z`@q3TtK`%3*`iMwnfvPA1UnzOgRX#ds
z6w~W}ixq7rSX2$dSN<+snU2j_t*km(_QrJ%9MQz>6xWZuJu~}Y$!%i<<m+_SNDyvp
z11MD#@2EGj{id>T97x_ngiZ^jy3NpXhs$lg&9hCr1Su$~&a3d$H$GHH4NDhr^A{W|
zjt!cSugjsYe8eEvBxZ?RcHiBLG^&C~nCDCNeKBzJkEfojFIKXVmc~aJgy3&0!UZ1G
z&N{IH4r3Fm!HHzm^D=VigkvAb6<m7A$tj!jcQ8lS;al)$&%2Wz_*E&9S5knMiSxTo
zsn4}XIVrA^sgpbB+0G7Gz5~}>f*9<ORT8Ss)z_U~&ewB*z#ota@{g69o14S?s5Ndm
zGmLfvo|OgKVo<}-o1xC(Z%rofp`)E0m1j(x?SQw05W$Yxsp2(;JOH!mSc6u<?xLdx
zfN8dOgc*O0z(o4RZ@Hr2Rr}FAU|Q@6bE2+OZ%<7ROj%qRl~={wJ!9Uv5B`o*|JM58
zmU_0dcGB)-a=mNe`xh7ss9@pHo}&`+WPOi7GD>L2FBDTl%}S|N|6|#2Z$Ljyb#f=X
zg$hk0R}#l#hu)Yw=W5Y`ub`bjw2js*EMK$qqD}``c#!pB5x&dg_>tarmNQ<ex!E@z
zp?)=zMlHq0t$WvwRyM;a>ui`nhNVaeAC9YXEp&61s!NB(e_$a0%XP(J<6GewK(iai
zZmAV1DCuX^;SD{mKO5RJa#^y?zke-d4C%@@EozF6#sC`RsOgmzKoy|ez*zL+gH{!^
zQZ4^d*TB@5T-)6l4Xz;*sCREj8c%7*-4@=bJTywEeuzOiS97p!qBA>)+I_8}bRl*5
zD26DdUB2})hCY0#zrudyJSW9onP1u1bJd}#s6JnBTQJ<|F0rB^(0<W%@}fE{`Jlyl
zTHxauT!Xgl@<nz1syVRJwP2ujAD6ao6dq;$)ua;;;_`<k<(E?Ui%JTH#hRXAj^{w<
zyL#rWuepPR!zmu`fJ4mnWy$B7BAeX-2Z~p+=1-jO?S(o!dbLblNHpk!>(OEped1%E
ztS6bD^39caHtEdGSX?tjrfDAU<TKvX$7NUn5PtfuQS6b!N1@6m;I@=(Kz_<+E@vEY
z4v&S^DO(6($^ntvK2s6#5_9uG-rjCg?Sw=0mB%It1)y8Kv5~h~Nj?Yg$EiHl@RuUa
zunv60bNMe^ns=)Eq1y*)_#76e&L#mQB_E@QMks(e04x$s0kFKMfUk4&Q{NibUqcu6
zlk*Aq*W{92WJ=11ClGa|-2TJj8sK6OR&DijE<-m2+v5hYBgFIKDpPhXk(tkYi8+3t
zn%&CzJ=j@gaylIU6C`?NML}Ej-g_J{R-|o8&FA&dzQ;NLq>Lrzk<@HNV($rPnreg^
ze`#j7oTEq*29RfKP5N?6DE~R|N&{FP?V=nI{1Za9kEiRnwtEVmo*&XIt?LTDw1y;9
zY-m5x0EqDM@O)gS$xD)PCob!3fYr@F{JbYEa2;p+1WuuRBb6CxV*_92=;(U8nZD_f
z@)z=NG6_I<xLYp4!cnT1kRHPG(|Z|JDe6RChyRl~^yTv;xUB^u{7OMMOvB7P)-xn^
z@^&iM<7dqA(i5c@X}})YLI8_prr$U9&)$lRo;((3PrN?sv%pTlW5QyRuM~S9A@L3S
zfabO8&zJqOSKwmL-8`}FyK4k4)~G%zEJ0bg5-fdIW9c9@(1|oVqgHPA{jIEmyL&W<
z<Pv>jpbKggwtOfA*U-r2ZEjIfjzp9wT=?6n_RQd}0s>yajQgM<GuP{lDpt!moLL<m
z9X?Wv6a?XbKzgjo(%MOUq($vJdLJ0`{bNz+f!<y?73^d)>=e(Lr+~o!Tyw!1&wU!d
zJk#fuKz4a%frdSv0f=Z#7~I->U}5tLS5%6s4nO~1$Go7Jo;?(1>Hd3R9ODhc)p*U4
zs0TC8oIoNxlSb#GuU|xE@~UJi=`r<FCiDDx!K5SrH#p_t;&r+WaxbQUhRY5)`aZ)8
zeWE~OjCK~>+bdqz3jKMv+5c#B*`!PjZYAR$e%O6)dl+zq_^3UoNy2bp0%!81o8ba)
z_Y92QvfzJI`82}SVIU>xy1K6x3DRa;6a=Dh2@r)_Spq{{e(kqaP=MXM)!f}1kr0uY
zEXDX6a>GIUz|cx(CH}=u1B($iixt=$meCy<>K@6-xG<lg-N%qWj7@lHn6r4L=`6G~
zZTB?t&ko9Oxt%mSXsCP7g*qKqQA>B#hYdzA>Xw|2V9w1<0OW~#BomJR5|O}dL9_jZ
z!Bd}99E#3*9oGBl9Y%QIspQE;OUAURty$ri^b|8e@(A8!be*OkvKZqMJ!ZwbHO&tj
zw?t7}(xjOn^^}JZa*OjOD~to-kz8r7Vp&5c!l5{ZWKyi_MAHpPSvM5kQt|Hq<3P}S
z$|7p|d;_pY+nsFQg$>T`>+544#K9^q{SwrrxPd7evzI4^#p&9@LT7!x*=8b55)Z9#
z=oU~oO0A@64Jlvpq>9&esru<O^(Z$n<CYcB8{(xS8#>eqM$id8hW}>=;@`&#uwZKY
z;k7KGdUWr1Rc-m;l1fY2Ki2mzc{SfZgJ0JFvs3InAp7N!NcZ9Di`ehx;WpfJnF%Uh
zYy`i|;{~|zFruSS5CS{i0>&ybY6?MD*$YDVTcGDkgtyZ5LPvVgxZ>Ou4IN$B$jHd{
z6qb?dsUfVR!_fF<N^+PM9v*&d%@={x@2xppm!B(@SI?t#r2amMNI`x++9G!5y2FHT
zE{M@tE#a-c&p!4+hj|~M-bZ=VP9vln0C~Ke2FqRNX_fbMJ!M`yMKx1W>05JEse#8(
zqCsJo&OSDEya!@pSET2-fL7|{<m4C+bfaJ^EfVEPudfpvgh1cMMn0oaMynudQQ@%J
zjsHnVLC5zBBk2cC_Z-O)ZiZANaW5nF3AheGe^(#d#?$iZM)z@J1*@O$SjZ#aQwe*)
zRfKvHgo*cIr7*9&Bu=3lfpsgEt9+8KY2BcVsCnpV4_-6>C`%wU6`!u8Ys<VX%&b99
zWjkRzE8F%xM|}aues$sb|MrNO;q+dK`Q>&KmbISrJL_IE{Elx=75$$|Ahkj8dS78j
z$)F*eH2Ob*vM{UF1{et85k@QfThC-?XYVR~z(Otlu(7eZDLMTJ=p#fNgy6D>1|fxt
zk~iI7&YvH5pdi{9R1ONa<TskVwVV~AksKz8f_rC)M%M8c97H^lOi1%xVeQ90G$CRT
zJ=sF*4~``|KOfGX!$yEpWSU+*%F(X#P9zr`EfqVM))7!)dh%mD7hqcW_lk<?dRf%*
z23Vu6cKW-%Ihap<cebhX<_vI=ROTXT_(^k9E!jrK403GHiI#zcU(z^@%P3}<NE94f
z1wNFQ5B1#u5)07)FXMeeUS1wqrK4XXBlynnj~*g46wu93Q10eNAa*3bNWQ`_Dye1M
z?vRYXl))vcZ{BB(A$DWjzPEw>+b#RYCiwk}78i8%8E7GLrN5588U3H71F-B{CncU*
z;7`Y>Pa1N@I|%fJkf;N)ep=thuR`Jw*p&mDweC>7N`Oq?U!Tt_M3Xs`E1zk)KT|fg
zxANur3vll+{d))%?DLFW)fm-RD(ma=07O2YS5xqE#x%habT6C*_c>(Od3S=^=Pl>}
z@HZN`yxN}?KE~hz$eYy0;2Lph<CPyc8_U!RxQ%*;a}FUiGzITH%cyjP$8*9*htSb7
zjDAX!iW9I~e2FdDH8H`4cxL*+_9*lZ4PkpYUqa<yD%F*~4LG*KrG6i_Eqn1IlCrkL
zmz-DIr!1u<e^~74E4OY?$dzt5DS56F<}(hF_`c@d7XD;At$01E9DTKdl6|$B=G060
z*Sh=fn+W{H`aNi*q(V=I=IKNy6UCGF<adj$C0kr!s1L+tF&T&j=@jwMIh?N_Zu{T<
zeur~csDz!=iyOCP{6C&VDD(sa3xVHQu@Pifv<BmXRD_Mvj54ZBF`k4-$s>bw$qo*2
zWl=XwOiQ=gB7s-8$+c>Kx~6du<55p2@Fbn6U5{2aa<~3yl;kioPaeF6<<TY-VxT1y
zvTbgPz1CJhuUV?+jiFbpUeW!T34#!sff6@BUs7Nf0`!foEjyh%x%%m~xrI}nS{AWh
z%iiz7=XclWrauxbPZOILb|*EBc$$-i?GwIzqe~#MaMaMi16Z#b{>M{se$QAL8D&#3
zC(ePs^2b|TT-<jDIhmp4NL>HX2L2y!-3YsPVq#+9sV(+jS^(9ETJKa>;MTBPe)(xR
zc^kqPs@p(zX}4b;_G{*$z(@Vi-f8d1ysfr>&2AO^uXynL&40aq_Kr~JZH)hRNm(EH
zt~tgkPYsAmXn7jdJClv<(x4@Sm{icd6K*)zVRGFnH}hc)d!#QkMQ#vo9BGue`%5!`
z@s-8Jt*bPfq)~6tZQ&&CH&1IgOcbM4u}I@N`bHaG3pYx#+Zs%Yv|&8lEIP$VMHMqm
zhsE;Kc@4w$r0dEkLDTOG=zv^=6=@nD@0-Ts>(?>N0^D;fkF9|K-!na9w50>}X*_68
z!4oXh>7`EjCdTArBp-u6%#UPAb=v8H>Iptvav`I-^*`%tjJTkY8TN7r6OZ|B?&uCh
z&G>6vLH9c2pPpv+4eL0^vW^bALHN8u{6ACPuP_CE#A@&I_jkQ<w)4mMBt!up9I{6n
z{;OvbF1wFoNhayxma*P={Vg}3-_}N+?b=f1^QX|&-}ROL$E99N@tkwFbuQdCqz$S^
zifrwl?4hS9<DDXtwp3eZn_*HWCfTO*UI&Kjhl-?l(k9#S?UAPV?WM^`W8JhopiHu{
zi52<NYO<eBgEf%Ehu8V7;-*nx#L!zfq8Qaq%X#F{&Oq{y010zw;N~fWT9g!5zl&9U
zOtWmnV!R9?r=gLCBTtSdX@8gbn3H-5$N0JaQ_y*cX_dzI@d};7{r9XaIagQi>_1p^
zKqZLENSjTc%-Dd#{1Gnic;r7=be%XM83$SLhPmnWv2@5h@0Qi#@Fj-kB>NZ6{Vj$K
zoIpB?R?Si=0q?uyggpq~zd6smnKN@en_h~!j<RYLwswr_G6N`QZd8nW@q@!dL$T@A
zv@|s9wIIo)zs6X9*F5~sgA7=>B-T*YFi^vxDdO6q%+NY9QvZ-k`{Qv4%2F)nmt@Zc
z8OZ)JUx^$c!j$#+D%O{d7y9FNj@eJ|sagM9y<!Mc(b4gF7h+j@IT&oZ<5F5)?*Cnu
zSa=uiGZ@6#eruqm#hPcE-)x3*5KsT(K5x&@FFT{eeWh*GPDYo=VHuN|l2Rdv!0CYd
z`$a)#FeaA^Ml$mk8bB0;Z;D077tTDC&^>-RKNG0o`hdQEG(r2C;XXtuzr+V1Q@l;;
z)ngy^Th+>EIDv37g|)LJU|`0HWczL9lH5`x&=H-OIJ~FEOy%(<8{5}M#lS^p?B2^j
zZ(x_VRDKzn$S%7ehNG;k+$XmfZ(s3GZKD6*6<QhoY)b7|0ktntHDzuZIqom2<)1^}
z-%FE7=t(7k>+4-aD7G-UTf2S$P6%0LxhDQby#tRQkC$w%MdoOli;)(P@C-g4eAbO4
z6E14+f))YCi>w-<rJ!(F&K)Tq-d{PvMW*K<wR09+KB*{ZIzI(UdoUbnlkpGsS?vA-
z+hKv0{(`21d6WTHEL1XXF0O<RmH>W6_?!_sxRl`Bfk~@!u=ZE@Z`y|gz1>9*4Rv^*
z-FNZuusS#1HAU?4n&P;=>nj1#d6g!iFo@~gwb$of&sRdyTxZn*Mx5Zs+uM>RAx+}h
z!%tqF5LElSUpA6bQkgzJP?K~3LhFCYss0^)p(vJZ8du0FX6ekq(kZ;c#qJwhcH4!|
zaCI=dD2M8=^J|BJ_^O3@)yL8I)EN8gKdoKhscc9@)5k!2Z0v#9VM2vlSVAIMD~?N)
z?bJ0r1WXd^j;_4uiG|3_^BsN4sxlu=d~js|fK3XT*kD?ak90mgWAq|Xauqg%tA~Ac
z4iCfpJ1BrK9UT`p-8Oen!frA1R-KxhJo7%LA>F@YW!qn;7V*Ebl7C;%pHH|cNl->c
z=BU}*F@&F=Kjn#~IR-S^`pl~OsdV<+$_Ss;QT^*X{Ix35-k{;|Zm5`HK#9dwg!S8o
z2aWVQ+9noZq_V5mA9LXR_=p&uy<5&}^Fx#z+d~3uR-E~*$-GZpS7vg{&TZB5B>rzV
z=C3#XcY6BQEo+4?7J{-yfa-{R8K%1OqP1r5?>7|qzt))dt$O9+-sJ7_*d~YBZR1v%
z)+>Ew&GkN77i<_jrr(YUW~sm-TpxoWIsS=~`2{qTXrzV0LP)AuNX<z)!pmlJHgo2S
z7)1a5760>Uya%M8jShiO=_x2gnq8AyM@?D3b{VA4&CMaFv*I9)c^HZ9Ipr$;1w8v(
z<_JgT9n=^V-QYy{ZW)fJ>0Y~J@f5`?U%SJvA|8ZbV;D8Rp&a%^8u<6u{$G9p5-vUF
zgpa0XaD?d>dnZsm$H&%*oHk^yfxu&GnoGd?OelMHWJD0qp{)G8#J>|(&Q{8v6lx4i
zlpv!A)|{0F$5=MMj`g{%m%qg3$fhk8s#knma%|APlvhv?f<++$d?@HV<Ujm@i~ajW
zG2naOktg*5vC~S`7ers*N72YZMsNIKOxO@0TjW#qW&v~y+mLGhND7Lu38yhm8i5$$
zs%%VF(?g|xjXIrq)BvtHCbEeFEg2i?gihW*v`rEdndD=<-{-Q^Fs`(y<iAuPc68{v
zLnP97ce$AY?1JKgjfV)NfZRe!PL5_vJ^mXv0eia$=JXF^^vP+C5pAa*nV7WfBiCme
z<xNj`BUe8^qtgWgrU7;)6)+VQbzbx}P_}72nmV1VekvynApZ*3^ib2$g@h4s33YX~
z2WP+it#vUXby|RmG#aP4!14c*egP{`&>BvU4`xry+J9#4WtfeP4Xge32o}Y%&zM=&
zn8UQT7`a$j7QnPf)+&x&6f-a|Fx?r;Ht-%?$an=I6br@MP+f+5x0dX*C;{T4dBGZD
z@^E(z-UF$Y|9AXm;PCznmCs`U!-h~2B3cpi%|ZENwV0g5<vV5#%a7%(!<K&{^GQ`I
zA#pKdu|sh+Z$I{eNJR=`lLo9qbl!FqJoRyN*E^}1XNxjq5MRsS2)~-F`e-u)4@kb+
z=pq~_P6#dIprcc7el||z_n=c&o)nkQ(5?jB0RNCi!;A_3VWQ6Juxsi<=<6+hvfL)k
zSefgK4aDf&+_$7)dj%o)N{g+X9Nn1fCwVl;Yy9`AShH3tQ(OtDU%!%V*~BA$|Nh+!
zsz>menxBh{tDNs4;GenZ|CmJq`y<U9zLgY4ryq%CG%8%~W4qld008_1)KQiC9WX%M
zGGzsA(D4!xtFrbbxcm=s9rC%ECO3{JR8*zi)`yjs>+S_9#BubRfTHf%*_lzQ+vR@b
zBKOGX`ObK@Ne@=CEzEyy#Iz)M)_VM2B2+}xD~075IYm-l+9^fll}|y^7#Uq>PvK=+
zR5>zAY?S&%?y1G|S;I`D=9P>FuPS`xCkk`BlmS3tUWWvy&!FZ#QJAe()QMBbUIAEA
zh_8%<Ve#~hd|+oMKdYk!4M3ll8V;GAec9gO$*QcRGG1rbr4UkUKFxICDkN0-%}rTl
z3Q{+XGZ_*O>$;1H6&qyFuTBTd9P$a3-%2~jgLBcy#3~Es<X2^!tqb$>6}nzlwEiNc
zfMTC7`|maNKL#4;fG-*aLVF{xTvdF1##Q4gU2o1m0XiKI*@3vqnQvrMFoM;wTmg0L
zY}$U{_7_Oa**sAm#LdCP^Ysn|j<4XsiI+8;n1qBffJ9fhg}OR!kxr9FfvT=9V^?S|
zj({icZ?aSOzZAy)6)jsgNUUww3NQ><<=Y~QusMv_`t(U;_jl1;LUlU&XKRH`QIk3c
zqEZc6AtO_ZMsjV|?9&C`%qaez3d|BWQTKDWO^J!`h>i{?efC^c)=6%Bd_ZPOWr6#A
zm!j>=*wUz?BSh30*ssI`a6@C&fxa3fA`C=YISoviZv_dJ53jdWT_*n^hH`zhwJl%R
zb_9}zN#2+Jj26GFQB@iQ3wr+h^8X$#|8;A<i(fzUHq6voItAyk$HZbeSfXez;3>ts
z#zoz1;)8QQbPNCkS{4CUSXkJIlP$U}l+2#35ZEAowemWk$21S!20%=>vJkM{G5tg#
z8ctM{i~^v1f@n4IQ&l4VC0PFN&m%#DND@gD*PEHybM+mVrA1TMjO8UCedVKRqa{wk
z>Y@;L)}f2ZbOA<NI{-An))$+1G3kdfAQX<ih++tr)I<W;>0)6)7ZVq!XlYrrKoJ`e
zA!su6E!}C+MXZ{If%ii-%SJKJb|}YUn%iNWSgdcHNabTMd3di~Wn4mn1hLmXs`wKF
zax7{U(6jx>e<OAe;Qr5au4_|bVzN=SP8M~Tb`Y~2@WZ~2V!c~ok~rm`_O$(W6Rx`q
zFu1ds3>7-H%0Bpa7Z=i{C$RK<?NeghjLNq43AxS$>Oi|;f0(#sy{{>hNA>1JPyILN
zN5(jhxM&Qyk6FSbl>@GJn;|(NAzG*~x6zHr-md}F&A@tHmqDzD!D3(_=l^SDpNCHC
z>X<_yz&7y6?s2oWxOEgqBoDO(@zO|1OGmE?e<S9$7dL{n2kW81$ZZWJkM9aD-~g^Q
z$uG!mM&m{qY<>PKrj5uzTj+cA0x-PxQtI`>f{Y-c@Z}*60XlYdaCC8|@DU%mm_OGm
zkzjdw`O|HCZli~P_2%XXx0{v>4b(MuQ6(~-K}Q~gk8E8UIi7rg$~|>b;QZ)MgM)(B
zjajouDeoTlli~H0CTAa(D55-cftD#KwiJPiBsi#CMM*?Huc*4ZdP>8x=x60zNp)4#
zV|A)!Rgt4&p$2^_VlKqTr}kZ>hpx~UFg+rv8*_rhslYJq@Q>s^=<=x6v+6jv!`Y+H
z#;f1BhCOr*0Y!n)3joWSORNRdZDa47uW?YIqz!irzq>(4t(0+7IL(%Mq}&dt800%A
z14uAdRyCKk7D4zo1y$Q`d3lu%>)gC2Cb%c>BxA%+z5w~OWL&0=t?jqdo7A<*VS3$f
z^hxYTQMlubV+W^ah%fJPgz<VNRoymGv9YtkUm12X+ieWLnWSnP<)2DJQ3(EDujK$i
zIk|}J+m2?15=_qa3RviX8FAk>TF7ijN0m0jd3%Hu_q$LaAb=unsqoqyg<^)_X@a~c
zE$q?Y=kLm%yL>(BJPU`2sF<Xk@`KOfnSVgQ9wqR!F274hJ%f+<`%AC}9WGoda(e_W
zuYf_(M<DLhSdEl=HmWmSB>eKOe%Cgyh^l%MHvHGHz+>ZOEnN675EFOuhXR5<5-s7{
zZ6H+xp`pa;^HsTCn3cGKNJT|NdK+ENDr?>s&W;dW1LY_=#nh)`@Mnwl-be+YK@Qji
zjhR=+$K(9uCnW{8x;fvu<={afYE6ZPQ1n%|ziZ8@(oUUMG%P7yO?dWq%G}FO3Mwku
z)1d(<*y2HGgt0NIpN>M*2ugHYG~YkR$sJ%}xiw{s*w~nq#Ng71rMs59inm+NMIubp
zui~-a1|RkynG_=;NJi^TP@}&=o`w=*3CrtY`R85u`yKh$&tJTtW;A__hY5Z-dEV9R
zq1GvWmmc-$-rhEC(??qE251aPQXbWD<m;@^VcjHpo!xki;6lxs;)DRPTtR)u@CX*;
z!I2cv(z>gY9^wH&huwh?fq)I>LHM7~-x>>^;BI|#Dzq3n<hggs1u~xC0-Ug#DGu24
z_+$8s*rcRAhtMiCtf=qqK-zV4lb4e+b}@X8Ld4&ZF;S^mX&O2C5lGim=2DL1QfnSw
zX>T~U?hbFRCNLfrm8CD5g++|MdKG#)CUvCla@kpKWFAApEC<iYXNg7cDuqp6(%ej)
zRk^bj%E3Q%zw&T!Abo9K;*mBFkfjLTaRd3fH2#FF#Ev0x$|p3E=l|!67>Y6<=iBFV
zZj>-}b#<r`GDl$K@l{pF<-MCx<yOa8022hi?0FTS7qwBADeY$S#9F-k096tKh`3H&
z=c2rY`HITf-XY%Nd2jDTt6DsPZ~Of-0>LZz6p1g;;(vP$VR@H!a>|dr-{G+diQe3l
zkda70isx5HZmbq6@hj~f&ES1qTQOb0z<?TXT8@K;Nm{(C@kuTPZBN^(i4wscI<R0N
zkB_2VlMHE9WM+F*oo3y>=rriD%=PUcJ?PiLJYYosA=<Q!94iSG6_^E4p&&a_$@)8#
zTdyFgH#*0hLTW{>SU!pi<P|&aMvV5>?w2#w1BoMo_GA6t_r9@g;{H$$o%H#1Wa!v8
zva#gUKz^N9tSe_NsT%->-fOll$-U~QHMi$)m%;C71PS4tK_HNrtSpMQdMhAK&zV!q
z&1JqwOWx@@_pU&FPj;aBuwZvYGJkppschme{`7x`5kaUQ@Orw40kd(t%0vV!2QSk5
zL7PbUa&Rs%ZEHm}ivXjjF`a$<gPM~?<J&|ei!@TYL?&=e3b#Xkb0Z){w*d@7CO*0G
zSU~g*hn&qje~E<?O+rbGqxApRhg-A5e;iJw_v5*wE;E2|3%$P82=BRm=L<tkY7nEt
zu|gnV{#CWfn}snl%FV6|m5AnDI_Xz-&&mlPYZn)(6<k(JBBm`)wCz)0J2^HzWMX1c
z5fb*DOx%S6)NrOU+N~#h_?#Fc5;bx(++zAK4`6{VynH>u0SWU$JzI}``mmF`N6I(3
zm2bhpQuN`0+dv+$Qr|2UNKb0Tn<gaOA^jN6zk9+PSkDPy#{nVnorn<+rC*;0J0<{h
z^VdTGrJv-RMmHV8_5c`dWTgZsFbj#@U*t44^8O@#<f?%O2Lu$zt+H)h%A6j$@_H{r
zpm%sS7(Nv`4V+ZT1~pU{&VKW4H=w9rat_?*5xp-8i!Oh0BsJR>o;b;)C@N<SrU=*0
zEx@$Yrn_)ZHZdDZKaEEG9NC(tM?HI1J)ul+B&Tcf`(*IAIgbQ%@6>(21RVLoqEzD{
zcy_cLHQ#0dVlk(Hb3>E5NREor1UzO>I5A_*PsgP7_4VE-I$#UmDi7}^LwQAo!!;sf
zBMA^@Pc`EbC`L4(_;&0@=D3_Hi7t`R(a|rK5WOOwbI*CH0)&LKLmHy}xWDbI<vWUJ
zKT>Su;Gmi$mw%0lEeb4#;V=o2eCTZ72jFk9fS8Vk+fHlfEC+QMvA`ja2ywBOQGWQA
z`~K_kj6M=+Zs<GlKw>l@pa>wdpUhXThr901FW^g&9%LK-&lNlJ6T1I2Ou}8oKYE=Y
z_BhL#&pqw*LpW@0sSdNrl541$w_2@H98wC0q7O?)r@H*>S5`HUQ(K(eMg|qEE!r{}
zql$S685y~ZR@T>Wg=34zD8vkMD{*Vtg^iLyL6R5od(%g;sN^uar-Ot18hUCvIz>}z
zne@Z{%9CvU_+H7bU+9Hg#!<e8;$Q80-kb+cU+|?6Yxh@V<RtGbNdq!^==Gl7XcAKs
zoRfH;Yq2<QrdaL`o8zaWsWUHl!wAnH0w>E_01+Wh%!>tPm@ie(%q;)zI6z<mMYw+Q
z_6m?3bPSGaKCIvS2nhOpO-RVwTNC>VpnhLB|D*wsU9}fULcxTkU!b`Y1m|8aMP`+y
zPB*c$v-d_`d9AStnOX?odd{Q0wg{;{eL=W#fW~>*v`)0cvQi*v;Vg~7&TD=#tsFSx
z9Vb4RMoZy%Y(IOuTBOZ}bo=@_+V)H6;<`<|y3>BzdEW84ISqPg5n;$Z&|WFJZSA14
zMCD{qD;4}Mn_4{o8_YHAwRq;FYGU6euylXuWCUnEa_?e*V;tR<y<sO_aIg5lKGF2Z
zKeyahH>qt7r!qP%*aWC90*Fm|Z}Q7`n?uP3173g>abG04SmW-g53~l^ljB3|=BW1d
z3|td{Z=CdXNq6-st$`zO+iPstbJ*bg`)b%idA@JCA~-?sE_<j9CAJg?FH7Iu(}UQ^
zWYB?}p8F#zBql~C$r@0mI<w3#Df50A9szng_v(;-RM*0y@Q~Q(sO7O4^E;A&AWlWN
z;i)s_f1Fd^hZGStu0^cutofPmP?E5-uskkODm{q2#ZH@c6Ux6$FR@8@3^lrcz1)s(
zS$R?74$iQWTLWUCo6hy7!EAYz89k<{pP^3WHoZ2u(RJQkS^!1hE@bI+V_;hS;=r;D
z(pB~8an3yD`seRcQ`B$Sb1gLdg5cmH#nmiuk{IT0J?g+!tMDbMJ)o3>KRCl#BL*`P
z^Gi0I@>yFaNAt<6d*Pl0%9~|hl-&TFgNx%A@Vr9r-ZDAvtJUolHz>{6^Y@yXblPL1
z%L$CA8_Rmda+$U%#@3d#9YhBS6HB~*@G7D#k^y%cnc0x<61(m_zv$3Adlap#E}5F*
zX*@My)_^C-WTuqdPaCM(>YJ)I;zJ|xwhMmd*+TqQPcZ2-LK050{;%TcWd9=!0HtB#
zZr$#r1B79nRnfSCY;s9LPV3f0{%`y^vB%QWlTbb0FJO0%G~!#I7%KSe7NwhGxPbs5
zN^uDw-2?)#-bJ#<q3uVly-e~(_odHUc=(I5)2Q)m=COnEOv0b(1c170_j%`OF@6Z&
zKQhu*6X;TZZ{Zibm0<f4EY8)G(%K#rink4KM8TLWDypg`Uv*6G1fO+K;<B?1LZMuc
z8i)`Trlko6gp6SC5<_T0<(EyxkN+ddwyuT)chR5(G8DS;Cbi!8=+Xyp&_xwWOiLWr
ztG?zf4nOTwdp*>zh(>@#UA6H>c~bOK?p0x+`&RPR1NRc0$31XP1B`KL3!#Re7n@_;
z^FV*#{Gg|1!P8PU>A_=O;A(-#weYnRe`R+kult_5U+U}9OJQe0LlD=PE9~>T+>>Ac
zaCpPFEM4IVba)&vU?)0+Lm|6grt#DJdO~nBo1B1wR&SInKQ$ny6gNCUI3STW4o7hN
z%jRNhrbuLmf$L$Z#q|Oov@NIO60qI4o6%IhHM<ur-gLdBRw7ETb>4D{s;!{ds7r%<
z`-s0JH123J9YY-VHCgJl{(2Sja=)0-ye@<CnW~P@)7ia6_}p2Gj+WNkaS5mj=0=|(
zJjw2}&SlcGnJ@T<075S^BolknC8>7+CD%fD;8L0G7P<M#cX8R_gdH;j?-ma*>pjK;
zICY^<k`~LBW7GSQ1^aF!%@^Ezcnb`*%TPam0!<el?Pa*(IcrvL8CnE_;k$eX@RLi$
zkUK}=C_bFtqy6c6-_6mphwp8lkY0v0t;DPm{5#1@yF!1P$Y=Ma2@qkEd1ZJ>jPxNz
z3Ewdl7pwPy4zLa~F|_M|;70;FVEHe@#L1Vg0{nqb%oN8LQXl<$p7`|hvIQDWE;!_s
z<np$yN<N!(6Lf&sCmTcccf~0xYDzw}KEki>eQ*^@KPQ7lI`iw56_lgB*mHiANu+5*
zFW14XilS>jH+MZt%V<G95r&{530fZ~AGwPm6LNo4_QM_)xZjc0Scm&8<?LKuTRTHz
z;sag(^-Dp$$m!w*1jVBVKA2d~DCSUS%F4!2O(<5xM62+YyYAkoVE9lRqu_+Z+Fpc0
z-2IY(TK?)C`ExYRN4Uo0c0`|!=_k7b_=g7M+g;U`IU}9u6MTX0T?Q6p>|?^N=_fop
z=iTh~XlBtqAj;h#IgbuEZyBPK1LVq@!fAlPK~Vzw-am>xptKQ`f=+wh`GSK}j|kh3
ze)917wZ6W7PI6bR&03+Y8x@m<XnYQC01~dj&(b^sLPB~@y=GZ%tDp6gO6Y(hg8)XF
z41mpN5OCOyR!x|M!2f4Guq_JZ9R}jlur`ebzke;MCs*3+IISWsc}cO+#`GSIS&Sw;
zv>%X1`KkdAlgFkIu8ZtQ{tkIE>9<2sZ0!l~ZEW|7YEo1pI6sY1&<efigmSbYKg8F`
z1}spFNNa%;t%wz!!deBM3MH(2w?91bW706Zq?+me`p~pYx#ke&b*iLC@|%9i_P3tZ
z^)I<$NxjcPo)LZc;>6TI4!$I76-Mpwe>ILGYM<3I4o@J<QM0T!?BqPr_v3;$cU^O-
zS#_nMWJUAJe%cy=$zfONVDi-dVoni8HetKrbr1T%&Uod!RCG$|5m?^7s>u=0{%Gns
z#N?K0=aH9oHDZWos>3M(0ahTRLUP_wA~$VP(iDf}rpLn%PE%X0ON}dBgm;?t!+@~R
z4^#u)wX{xMfo2!D>9Cd;KnK3E`RaCRXV<*(h$*1D@rZ}}^S-jrn{KP{DwClD+yKje
ztm-sA=>0GRQb&uM>`J~S2jL_@4_LxY9zgEqtZ!{0iulEIV#WVjUCfas=0jY-=|Awd
zR#d}S4e<Ugy9iJ+2zQ?$l5645S6e1Y?4AK+0|&l<j`UkGI2dpV;J6wM;L)bgq;9Iu
zcEQ+xKdYa920BFjVFz({p#vADl<uFtpfM#@df+{Ohm463Ln?G29e?NnecaHxSJJ}Z
zbzk5luIuIG^GX5C2L?K<bGn#qzF~mq*p$)nwm3PUQU&7Kw#991J>y?ITL@Kfa8Jt8
zxpR<6z4R!dMykE>dI`JVyQ?eJ23RD;q#lx4#fvSgxk=tHX7h?V7UT_^xg5fxm2`%V
zzF-_*z3J}uw@QYBecDAF@CyK!nb~BBfKi_u+RF>zC?~!D*zO6OS#G>Do<L{#6fpjo
zLqs5;xEp@F3&(209R}ro0nHBco`pONtxPT>VdtQ8KD7v;BC(qXv>Yat>vI4;hlHeL
zkZK9eG|px<(9iey^o@Htqr7}f>C?qEK!a}9a^1;x9qwdpUqm2!<^p_7k=*JNv+-O9
zlIMHo^Ahpg`y9}(qj(aPj+lVapL??Xl8}|Hxs;Xra-{dvAMu#y(^z#QxYP|H4ZX+5
z`Sl}JU<qS~rPFumW~zp63;jDNeK^(qRHAKf*Bq`7DSa2nyUv}upBQ4X<A@XQDHuzC
z^z}umR~W-DDs~HV_OD#u0*saLJK*}djaYm+k@P!Zk#Lrk{T-ciH;EsA1*q~fcmg*_
z%F(g<OBc{?y<m%<6)wTVz%bPTvaX7`nwYrBk=X5_;WhxX^S;gd>iPu=FNyATzbbSp
z%fg$}!-gaNS%6#3*6>6yvjudm+0gk7hL7S}?y@~e`tmKLqycVP^X<<gc63a#PB$si
z;S=1)(Qr?SIBmy-6hxwwa>Rg9zFpq)5n+u|$n{VXhir>6RmIXgprl<gz|j25pyZ0>
z2DtuvUG)Y>`b5@>%fWejpDR}Wf|*++1O(<;SK_MDQn|Bkw_dA*1QwjT>tV0h=hasn
zr@)cgvR&Nv((BFfbw=dB+B;9dP!;rc$*HWkGqLQ`%UR4!2ZdA+)+(YvSnNJPg+O<6
zhMAaebg4iB8g0N(EbH@9v+eCc&E9*6_ZMz}{SI}KRnl~O*l+`j=C0qPsLHty^EvYJ
zWqeb}f3-@sKR~&pHqTmcdI6$f8MS4&G{)!5P{0v8P4?2u+{LQ~3UxgJ909aUR1|sX
zBz|uTy|XbK(DG~+a^=Q#QozaBUdbTGFe(=9N?(VA<3$;LbJtH>Z3l}AEKV4p;?7_4
zQ;0l5-LW57CIACR-ZzT3hTTZGfb?>OTL*u;Q}Y>NldK+g<E)?kWz%!}XZrKNSKNEu
z&q63H4n2zBxCdZmTbO4}c!hD`Sy0qw@Z(R)j`RlC6U>(?nid$WD-mHl=6~r3tHHDp
zf+5ZR%<kAvmVy5tV`l+XW!tT5L?jGSx;vzi?(Xg`5owTGfOIRJ(ka~`NOww?bcuAA
zlIL09|L^b9fA4+H8N=aN0s~>a@B7R-?>Xmne=lo1826*R{@8NvV8awF+5MLh4;lXi
z{NAe2+ID_Mf}PiCN<!3Eulu|*?)h%7K2Z-uq}y8GI=+x85~mu;A0oUHDA{kJPOb)y
z65LJ8{1@L$-EBdIfl$@-G=j|*phs`L+|Q>pn+Ga3&w2&##$-_~=rR}2XAH|Pv-d>Q
z<5Dike!w4pbXYN-TMKJ~F1|b=8QR@HT$0Ck%=pppsTvo5<6;J7CheA++0=LmmE@{X
zG3<$dJ(>wfq@$y=49Np3n3$L@i~L$2pcY&;-dCFTT9O*bE_}Ti&1${qtD9-BWr>Y!
zIc{ku$}Ja`d+bZGRM&Di81WVVa0AMIz7cQf^jtX&cSZ^Lih6)&b(p$uU?y*P;V8Se
z=lt=HYQ*;fy-k#z>!=w+G7_7Mh|69`aCS;X3XxuKrbL?@RP}ZshcphRCY=}`clzSF
z8q}hDvIN5vF__3S^Mv<05wMJAL83ij&G-60L;GKMwiCmHk}2MaBVOO*%m6RllbZ1)
z(<&x(E<#@n{5wiYk7bRHuB;g6{q=^ON|ZZIg?-(^31`f}e5(U>FzNfXp-fGrv)VXb
zGNmV6j!@oreHMboMTL}V3P*zKS8oS&#*;BgVrezCxCNJa8=YK)v9Y?=Tbov*+Z$sa
z`+<<mrFW<DZeT;B##J<g1~7d!nnPg^eNj8x*A1<nDi^F^q77r}n4)fFd53J1eD%9+
zy}!KA1rE{qmxs&cBR>(YNw*pq)+A~=Z*d&RuY9Pb`RLz*Z#Mu1%`%MpAwKp~K&(#p
zzH@T}tl~%M+bgTc7puX<mOrF6H#Syt_rXE*S<D2Y1h+g@Vd&4YN{M2Ch9*N`aJ2FZ
z4W5)vOy}qdkp<@ffxt*&GWg|>8_*EaDo5kf?wEaaVexu6wXidE{aiGy-1~MHw)c6<
zYZ3Tzom!bCuWOtArw=<`BAPgiNGyaL`W%sk9`zgk?7*g9#XDGLwD0Pf!%*Zi4#i(>
zN8WFPyZmt7b17TXX@K5y&i)lQTM%N=b&Z48wc<>0C>a*%<{N#?F{fkDvR-r1@InCL
zwe<qE!Lsx2bU&aHpIIS9W>suY<m;|UOtxEnxWsKTUAyKUhIsP<2y*hXrEBIUm)6^T
zyV6TSKCCjmFDi~*Rz6<GNjsL{o<5wRluhUZc&BVbRS0|6HDUSjWy>Z1?Jw5Tt-hu)
zVu1|s^S81=p`sU2k2jg?%^`l>*9ayiVf!OGyyowEj_P2HYg#XA%lpBw=b6=Iu;7hw
z1QCBxW8S5NcR-TlZ|e1^Hr&xI@v?s<{Dc7kZ}EEB&L%LB#3ImwGZpqDeo;~18Hw~0
z_Heg$%$2C#IN)L1GgD=#DbPIF^S$=;8($(iI6Qtu+9UQ6hL1ETFh*N!c9&KDxBuYp
zR>|l!V%vJuEX~cK_kA&Evd6N%ea|MkFT7^_WCB5)Po~oDXOIkT^S#K44_)b_D1Ln&
zs;|+&i@`1~PfFvTqtf8`CPEyR!af4M?eG)|o9sGp#_iw?K<^=fg;TcwXv9bRIpD$d
zBZ(V$J9DZtx*hVDECD`8j0mD!-x5+Ow;q4?Ucp3_w0cIyNdTOyH82)Z>^^Eg7ZGy?
z2b1o(PRh@PO#yTDKuLabxEru}Z3epiIzsTIv1ozDOmJDB!fDXM(eAL^Tsm8x!KoX?
zr=%2%ZYIACxma<#h61yP{SXHc36!znsWF*D3g2Bz2#CO#3L?UjW-h+qY;qFO<90pJ
zW1ta3v|>xJH3A$7bpqzEPfR45dcM*7gYKdT$pUN8+pn1Ecn(J1{d-Rq-<=M*mm@g?
z((R0_DeBScb#4+um+c)~L_y>X%$m%^A@Jih13ZX1Hi`ks2!hbq&(kNY=ksq5ibi~s
z9*RVWI$2|PXFuJGMtSI;al2=(LF3Xyjh294&M6l05%6wP5YmpmbZrs@H4BK@u@ThS
z%;yDqdtc8lC%Y9*KI1tiUcfi-KGhCX#caAm?douNd_lfHJ?3Vbfu6x0&=#~c6;Rl_
z{Gs~;wiVMQq#U^-F#dC7q?7KCu<MS^CB}oG6}&?ayg!;WV2kx#UEr!QP016FCIrcc
zaEijS84GN`O8HG4{F&BYXN}Fd6a<UIb}H8e;_Sx!9_Rn{T4;nC#*SjWH*yA}`}Hz3
zETs!t3`fDu0iOzcr<qhs(ZS*3xfK@~Q-5952wpDMFQ+`O6`|!a1K_0Ytw}tDO<#uU
zYMw|V0p=$IVe;svP)w@%vcFHAAi<^|?lJbkBhpW+&pU7iNS<3q`eMU*GvFFLM3g7x
zVpsmGQ?$!OyvBhertjjAQ+N$_lBGS$Iy>o(_O?gty(Jdj3{-AD6s8qRV_sGo@AKDs
z)}euTOmY^0h{*wbRXlqHQ9oSa9pH*|gJj)m6W7HdxA`Dj`~$smdVetFX}TcVdz_Ae
zgNm{{f)&T@7to#MJCcY%VZ<lVRf{C<o<PfU+Hz`wUqSXIA3vf(6ioxEOF6D21hw1h
z{o$3q1uEOs0r%SNXU}VweL_sfZV#MvWKe`G?1DsLer<onG3Zhe<cD66;!l_Qx<3}y
zjOhPp2>IFqYspdOci0jQGl&F@zR!aH_%zVud<|rcMguM08cndUm@o7_(tH}18lE1`
zrI&9`-CwwlsiJ<MRxA>qH65%)rm?Q0Ef&_Rt7W8=IoXI$alPhM<$8;z|N1s(Zb}WZ
zqwAJI2_LDLSP^10dn=u;<3y)OaGs88(sB-whvoN$=~&YDzCCxR`}VE-M}hw2D8`RI
z?kFKiBsfV9H#sLwPB-}7H?1}{%PU3EnWJxz-dmo~%uWkvWkAL7rw_c-@05Z<<a)yF
zhxD#_MOWYz-yFdqC`KG@)dBGJej!>q`tecc7ZcP)+(;ip!w-i-hsCIqM>5-r@1~co
zCAikWeA+$|y4)%n`kKVY<Cd|xma$>Twm&K|Y1u6<-$r}brSvjS2;7g6ua^SvPy&3$
zXXHZczt3-`CnZ^^2Wkp?!~2pwO|j3B2uFutp0Ohi-QfQ4ySQMvo!TvFD!U;tBCn#%
zV(G}h_y1P;X=Y|p_>GyVCorUv4!K%sAIoU(G}nAg;9&RDW7VpUlSoDRHFlB9kEY{U
z92S!Ru!W(UQ3p_{S`)$_of<1}AMGbqPmyB$QRa;f!5w*GS<zK<WVcnO7{Va`e(?Ww
zE~m+pa8RlYJbuxgDt}LEjEu`unNh#Xw`4)0;}pR4y+a#!t;kWfS=OyV&}jgj3mIoo
zlJl7poQ#-L!E++UsTplkmH5k2iBQGx>HX=}O3ls4q-e@Aow~g%E=5CZ0zOLGBujGD
zq25nD^h{;bzixuz-0^%t<uv)2IwV{mpo=Z*-hEDwn;0EzZb?E?r<x1`TLg493^hMJ
ziioKAR?Yq>LKYnP$Y?@+YThn+QImIb(DLF02=f}jRpNawAe>zfpuWWyP9aKPnio-7
zFS9=|juRm{Frkt$>eVX|qrUC%UuwNOXWF+YE4_R_L<O1i*R&>oZEZz-x6}C~p9M10
z1b`PqpO)Ev7&mRqzNlZcy*3LT$LS2g9ve&g5x{c<yZyqxOG01vaAr7_smCtdd1JE;
zQF{Nhjf%1!$6pDhcl)V<hB4$B89BLg1EmA`W5sm7LeW{_tr_(nyUk-^>xZ@bC2s4E
zPkgIxJ>T@$41Hm6w3YWR`Ll_vFAdYWxbEWytKquwW-sNphR(k_rkS!x6rXyfj-%hQ
zn6u&Vv2+v-rmASDeS!;CpOek0Zcr#vn3A#({)EMle8p(qjK$j#o1?=alZMWehaw%f
zq7)n;9vEU_zLQui@IuD&>!+}E4j~V($#wT^1T8bUC?Q2spCgycW$#w6D-6fKTxsbk
z3>1@IYzo5?QYsymR5Tzyj;I)4OhbHpjEIJp8o$W@vKJKTB)${qLIqX<T0t-sHIt|I
zkrq+u>1B_sq3w|kmX5gdo>O2sK_mF9UlERodEYp6mGC%5mN6RS_yg#!pD*r6_}<<9
z+B5@eVF~qUDT<7VvL3zG{T?P(SDfj%^7@eZGuKRlOaH0^=8)5{UnwXjVNz%o0jUSu
zE*t^~sL%1)$}<Gh3m!)29&S$5@EZ<8mT!TrLKL)!1=4rZOxsWf_V{Vwv%}cm-qV!@
z3LkcVZExeD(HcK4&cj4kkXrnms{Hk0lh3!~ouU-GBL`>G-B2?+Dh^2}wYk(?kI072
z*n0o*iUua5{6;69jdJd#9aqsQ@*({s5&n7L6@v3>JDP`E9^nA8?F(l0vtO~AuG@|#
zIyGwX)9&%desJ!v4+1`W0Jp3XVu?E-Aq>37eBs_P$%TNvg%0Z+FYlf2A9pDRQQ^bK
z!XYRNc2>tq3t#1?f`-!61R=oK0qnGUpkASNOq_z*C>pTL)369;sW<XcY-17)+_!6P
z&w@I_@i`wOe*^fm4ZysK2P(fF$=iTnZiq>MYyI@x-fVU0=qRd|u+Ij*$h+gUZgfn{
zsX4|{cW5hM9P!ap-ygFa5QDDkN0<I=OW2$5oi{gO$i9JjI!j~vanu<`-OnZJG{<;q
z>gpCu5&2KVBdew%c3tK~mj_lovblC%9_1kL1T+L;Yv6FW9!E_Blzs{G<hP&QJiQ0F
z)y<A(ynhIfTS#z6%qT6_CZ$D@>CCjlzQ0|pe?I`Xa63C>6fdcycXm1`DOeTOSS6*@
zWW13gcgg+pJ(Yu_g6df~I8??bV%6V(vY3TbgBS^EjE9MqRwE{MJ=fb?k<0Qc6(yws
zv4v+W+(sVZP7*l_i$v{qIj1hj+4FWNrNt{%1D|X)C>iZjcPDJJfr%kCx4p{VlJH^k
zbT^3vMtyey^3~=H1UNnQ?rD8^NeZp)135UjqWsdS2h~p)8y%4eK0tqP9a)$xvt`dq
z{a-ztEu_$#s^m2=9IP4Nlvx88>I9mQKfzmlfQ*HOmDf6Q-6&}o`M$t$)+|w5{g{7H
za{&hpZH&$#=Xk)_IS>7#s!i!;R^fw(@ZUZRTVC}=le@n|T)AP{j_CijK9#f%xL_;5
z6`(ww_25%!b`waCc0WT}KU2I7Q2Ihy?J?D*Go4|)KRP=d?KT3&+>(a@uetnQLHMNw
zXGmq^91q)5PtB3|+uyr5XST2qBc$C&?+&}$QKy=(&%f{eqwD|cdI*j8$|ZW4noCW8
zf5d8ka!!}(<QE`8-PcCTDP<2S5#RceVvYnCj(`l|V_$N-g#EG};Rd8Uu`jn5#b!%Q
zvbl;Gkm9?&Sq!HnTF!mYfXqFWzXmb4e{e8XG#D9)Lw$v^9OyL~f^t!9vs9?q*wnzY
zD5F$<3kr$9JG{R;v{wAE9xIfHVLuNSu_`Tk6PfQt6GrG1ND*#8;u|sg+SxBhg~GW*
zlY)=CQ5#q9I=zemFMyiE=5t-Izo}%8q}D+$3#YX8^veyudfMDKr})OmNKtLSq+qfP
z484Atc|!HVAylv_**U-lEA%2Kk<#GZvAAajRER7M=KsoIl(Y4{KlX<T|4ViAPiU5N
z-@vtz2i>JWm$9)ijTY&5K>cTzZZ(Ij`xvj&v9VQar-9pGtLf)Y2m{Y~DU9zb02LGy
z>$LN`1mmJn9}pUx-OP@7U9j;}^U19rw%pWO$S);9YV%N*dCYem0aV92@Fe}EMNAm6
z;F7E5+#pRyum5_v*ZB*5<j6>m%Y!M4CU~epL`q;(FxPRh;jLx$U6k(yn4YVgyT0Bt
ze0SV!xw!BJCCJHX>0%^V@Gu7Wyq!JP-@p7ZpJZ`|Y=jIcy}@lt7Qqp)TWWe;9^88M
z6?(}3{l}LLjd=<GnE$zz#K`)Dxn=j;-#+=Tukt05ZTt5$Scge&)>0`SXP%VPn}BpX
zC8dd~^0MJid`vyEZf>=Y5jb=P28w}ppyp;Tr&4x@e^%*rYr88@Tx=D;`8@xmfJH1Z
z$wgTiZOtA|dtW|;*}A3;Kd3XS$+=LRIvjeALXbtiH6Gb3hUh_Zed`hdxMcD0>^+!I
z1k%!_ZjT)LmJOWcd&d%5$-MCRHNtZ38LF|(Y$oZ}ZNce82mkV@)R_Yg@wwBrzVc=U
zVbXzz6$6XEE@xFdb}H1p8b0T#yqd#_jhl;=Kdod{jP=><jR?zNzmG&`8(r6@x9e8?
z^hWj&g~<a?kDlxS`Wx~GkSN`H`z%{9knd_CJTVaeqV}5|Xpx-&{LlOja9m8jzpZ)f
zAq=~kLt4{$Nyc|}yx=&}4@g5bbv;nQLWAo7ED6<W(9|8gxxc&Bz#}d72L6o$!Ngt#
z{Os9^xxvry^LF3u>MpA+Evv#UZ2+$V($me685BWn!k^M{adBEAe|Z|h4&zLOAg*Gf
z8&IJ|JYB7EK-nT*q6Uiqlz%B6DAC;9HrIAx8QV2<PxeTtMEh1A3{+F_d3Nkli+Epx
zF=1PP)R&zMsYN4#+ok8lD8C4E{0!pl4TDaNR11(6wr4Iu`BMnCIwXj-3>APK<cE!l
z=+Fj8Ij(5qi?Vu=)(kXZ7}6hrMoQ>QgRA`L_1BMMa(z~FYt|^<5hGWiA}MaY7iH!J
zK-6Pu_nJC8y9V-8gG!S?p|HpPFc=wibxZED-d;yuU7oIizRkxv@9&PeyWELMd%&7k
zF8{XC{yp%M`f%)?l#q}&W2nzUd?Ec?47a~SZM&2s_^I$7;WXK$VVD@cN%cQ(Rjz!*
z@1@>=$Z+g4<zAV8qq4Q@BUFn!xpMs8FDyU9ATKb~wvHO*LnmlYFT%r0nm)mjQ+?7S
z;dVZS;xs)FpJC~nLo10t$+`b<itC$o7nvh)TZ>6cW9XTGZ_&wyl*$0hx#$$T<ioK}
zUNQ&z24Bsp9p&YpJ&G7AV9u#Sw^zrs5H`_z=N&3Vym`ry%|@m5D|#DS+k!&GWW1(+
z?3KhP!!1gCK7HK@s*`F5eEbC!uPuz&#Ue+^-bgvChRrQ63>tfDOlJ);-_u~2mbx_`
zA(Uk+Qn}7mtAdBeI(DBy=35T?AnP~|K(SCb8VMo2KLLArEk5$_43$shD?;?@MxtRE
z3Zw%{MyV;-16}THtmIYW7$(nc*(>I>wp0A8?oP@(;7Yvl7C3@#k%f@2J{aD2u`<SI
zCDj4WV&1eU{AW>K;iv=O47p4Z?}^;Lqj`%uxf2m3_}1?M4qko$*l<){x2apC;@S(k
z_5wxho;IOEMyRF-JXcD_Lx_36rZ-3`mjdchgUf{jLOnR)AACpgI(p~^Z0ygj(K~p^
z@7SD=(tR|An<QG`BTG=94g*s=>{aXWyn{m3e7JN`-U%Mo!|`#I@>WfwA1}HBsHYP|
zTwK2kklfq>KcsR&|DW`x49>UbGlQJ1zvN}xQc_c`pRJC}7pwQd{h?6Q#J~iEYZ0#r
zQ{X&`D23~_+@$hF!!~fYUHYcoQmmhnoSw%wsJeRePp)WhfQlFq61`F(Rp>e+oiiup
zNOKr2CAx)!ib~^IMJ+oUN<cd_{|PI=(w~JzVY1q8+;t6yc4#OzIffON*|UlOViSnP
z+j88a<9Si4sjo+dT$_cK&BxUc=h_Qzt<|vLp0f@yOUiwgLGCamY`NZzG0a5ST}}F&
zU=KCFTEVR^iSz?@`H8zc$@{SP?`M`wD<0H>{S)DORxPW;Vx2{NtVSxQgc+D7E+#~y
zhqytPzU99LPfJZ(ZLK^#bn~P$OX2p&&U$*Ngd6fR@-C~J4Rm{H7OVACsF!Kc=(=9=
zu}sgXyE!|oO_)>YxN(a?cGfd)W{baSCsUhoA4>17;Hqdk$N>?0^{)fd<ZGL(Qx%_G
z8v0_Ryi4&gA>n;ML&n*QgGBf`)yEtH^F=J$p>R@}*N8?r9p94fuC4BLBd>nmZH?#@
znG*LJAb2hSf|gGG!{dl@)W<0NLVcIxvT2*QwV%G2GG4f)ml5rJp5m}uDiOU9q5lXf
zjn>u_fi@^+5q2!+7m@9NearpbbuFhXUl$xH&DSOa)c3-ZKLO)d;p+0xE<OkOstbb1
z@Kia@!k^U?wNx1AQC0$y!@jN^z!5dv^B&ZTf{iVCRnMM<WsgICx08PADfiB8_19O&
zo<s7Ks<y*a%c=YOd*#mtNGU{r?t{i#Z*sncKik!Oi)Z5n-}d#WrmX3&&vl0L6Q!$W
z<#vkmhwWZ=1rxIw53jFh1j;-GsGdb;e;kR|G_bJIOJ;3qy}Ld1E=D*sVAr0;HQ+nG
z^UGIXzI@d51X>wPlj*%Y+K8|U!0z=|1hdP>c-W_b`Q2kVl2(eL(>@uLI*xW1JS`>j
zymnuI0sHCnn=MJf@g)XQM0R)u@2iQ7?^T10)o>9P+}|b`nu)-dI`&-S@R5=Qx=MHl
zjgX3EznM?+X1fjV=KJkz^gZ>5na(&OiU{71LI&&D1$VWR+a>&hh)0aN;zk{2nzcnl
zVTslf|HT4$5$z)g`<&}4r{nMM;tQ;HILN=|y_e=J3ZD&<a9#;J8XcG*8~=ui_{8SG
zY|ZJW%G^u+@kMEDODEG9X_3F5Xt%m9Y5OY6+mlg^P&v88lXY&D)M{y0wjUQMx%RyR
zp$f9fu)Xi3Q|x_*UA>y*<?1a`*UjZmiW0f3qf!@AUPRbWd8>!#h7&V5?+~D)l?AW}
zs~Dz|Qd%~Vr|`pm)U{12#ZE`%qN46CWY*vwxE?Y{0+XW+Bk;I96rz@vX>@!`%7h9}
zNl#bWAFiGll{S}uU%}%)9DaJAM?KnqZ^VX(-@IrBQqw6>;F4F~81x-F0mmODBsO3V
zo%7?b?i}={@18fb;287~I;W_)%BrYrDbvPfh4m+oFId#Yv7k#Yvw@s2;~vL<YS>w=
zi?@G0KbWVTGQ3Yn>@QT0<oiaqJKiRl<ON8@Q!(I3TtwcOy`z>4`R@2@6*oX-xUX+C
zE8SBZ!qEKjDER>?E=K}Lb&}OP^Dut;lJhZ<1vu+I^%Q-jqpeMgns`+m5CDh!@=X+@
zpVHS1k_p4cvag+Z@Q!{$7+LQezIB`Ev%6S9YR&hm0n_LjeOLHszS*NrsD1`-7hpRg
zXkemW%+;P(f4Bf0&9`S;%7f&_Rz3S~(m=}$?Kz1?&t_(A#%jbc_WrR~Bp5bmXlQty
z;SeV*6w3M^qHh2U-_5!&6`xe_n+H03-=dLc6aHIqx3Y)vM#(Sk=p#ja-Y9IZd*Vr%
z)?v)ti9dP@j}#bGh^_ee+$!75t(QVTHWbYfSr!u0J7|*Wj*e_VQo&*|+;UDbK)+BW
z3qO)V+n!{+R#Kp1P#L$G7Q#&F<sj9JZk-q2(t*yU@q#IGYDxi9!Zrl!WkRCn3p<RQ
z_}(5wLb^sUacUEhppz|Q9jB(Irgdt)@5!wvc@8^c`R@?nBc9n{UpM*uP}BP`SZe%Z
z%FSZ}e0)6(Pw&u#uJ8hnhR^+`wxf&f{%f=w(pAmVOUEokJ$cY(wU8B}5WyqG;7xyA
zQUl!s%<Reuq{pN(^Oc?J{ml%w$ql7wVq|;F5$Uf`SKCcZU3H<CMZx^kaWwss@}LqV
zAH@4#mWSVXbM$m~dYZ345Nul3MNj`6w`?F_{kx`T?}g#RhRXGHYzcpL==i3my^;Fw
z#Qop7`I4g1{mv#ONgpY-i`Q9FzLcVt>UY{pY`PKNFvBHFOuq(Uw|F(Pil$7VjoQIR
z<dcVy-#w;8iRd@aUHL;t?uNjKB^+&eY_LX4?ha=l-aBY26dwOVa0*s(f<`JF0VP7~
zBN-tMPA<Q#k*X8Ohw_qZE?TmKp6zOsV@|^*K}!i=1Cf;@-OIrWre?Be3sd!i9b*;!
z$+No8#kQn0^b+Vy_0p~x_Xi^>fjtLB4zo;ugy=tdrb35QK1Y-GJrA<T2^^JHzBL*u
z4yXU;-IaUa<)-37CTS`2qz1cpw2#YSrm(_RMo8<h=<gB2KD6wzw3s3h?fG5a7s*YT
zByt*B_aB_yY?7$Y^fJk{E^~NhZV?^@OE)(voCm+lk2|29Tn`lM-g!H*+{T?)s5CvL
z(!?v-(W!=So`!6e=DA4VkdUyesSr$jJ(9u`mUbwMOMph+ZXE4iB2gRS93Zjv@(0?#
za)e#CgV}0X&S$b=u`uVYEf~E8qw{Vmswz|u^Ar;vmX}tfpLJq*Q`Ia1^8Q)<(NAA{
z9mE&GqYH?Ik5JfqQZ@iF>D6EY!w_FJ&OzzMcMtC-Xulea<tRCu1gFlO=XFKa>s*c8
ze%kYL5l%!|w3|b5f^5yj=(QS<H@<@<_*XsuKmMILgWl#9F`J*&RyorWmdf>?R|0|v
z7Z?;uP9Z1p^;ghIl=_P-Wd{{~or1^eeU_B=^e_6RFeiGyMpbN46!JKKEx!BwDRTRy
z@vucVc!QT{Yny4kgPTW?f=uHQ11qKE8aRrn?;=r#-*seToIyxsqC$@4y;qMb(Xp_}
z$F>XKzO^emBji+hLJ(Opp9>d($@+a~I~{e#{dsh`=f0JW(a*IHOgpJ1K!9j(aUR!1
zV#VKCM1M|D)cXuMGCDT+GhKOfx|`RuUe)GELI>e>7aCS}gi?QtOCBR0I43dT@nL)1
zPJdXmn?NA-0ko?d>YDnLz@O*2UT{#*K(2IbZdH{^;CRHiA|hF9MMXtY+gRALjsi6&
zJ%{Q>67;TXNE5m%GNe;>k4FzdC~VCblW{uu#k-`A0rm_A`fZqG+j}-^el{2P7`OhD
zLH;Q_f{$-vJ%HGD8Hd42iu!F5iMFx7YN@}HkN0ViaaIe-u`lL|ct^35cuB-2sUWs5
zFP1B%e~&wk6H6OzX`0JIqt?M8K<c~U*7du-3|aw2?@uV`B|HU-8504YgaOW4DIJq=
zRaxibmWD}J+@3Ug*$#<bt(_;^BDC-d0+aaM2z<9wG*IWMe*fNGFS+}p^lwUsF$G;u
z7c=Iya|Y6;f945>JY97gQ{Rp2U}%hMa|nQg=VTDIl9B0F*S9K?H84o$N|Rr{#^2eU
zOpUE!h6hKxW+_qK=bOx~Jmi=v)9W+O6y!fw2+|0DYU4aSjUyiZ^5qLFfbz}O*=6MB
z=5C3f1U<w59)xc@nock{I9Q9&3&?(8=TKR>1^?C6+4kG-eQ3hkUS2H+^Y+#Z)NG1>
z?HjFFquQ${_N}_!<<AEVdt64_;(vJf#|Y7%ZN^kyxUcER2Z-qeDJ}`_{rqGt92_4l
zE!FC4U2tI9$R$1I>rACMEXaM~B|p;CF^=P4<wrJreCj~`G`3>M+tyT3-;iHx$kF9q
zdf-~vXU1rwHvXi&a>&4Kb6nh1DsEElD*CY-&X%X{dxY@c4yw#+r009u`3U^kEs5}O
z@U+TVx`yTo^*Se<jEOz)BdWHNu*;vv3ygMl2X=@N@9lB$on}R7weCaP{BsT@L&^7V
zchAf{cR4b`?dI%s&#J&cV4=Tc+)M>3?ZO@st-i}vh~_V#GdGo8mU|h%`VqV}*_3pD
zP@GWNK;S0hT+khV0q<5kQ*>>mCh0#s{N%A3J)eaKKO!cnPM2|AqTxmQAt?20f_uTv
z+=u!71mn&iqz-L-wgufmS_X!pm;bu||Cn$5?*~d7%7d-zieS?YwMz)Qijz}~+(%|%
z6;;(oOKkQJnHPlg_0xdZCJNx3lh&pKUWbU>;N{ExB*1CxpergXn<ni6rsgIazo<wG
z2zXsep5n5KVMBf3tIP)96(2WXAO##~(}!Ot(m9y=O@`NN<7H2LA~mjPK`vm}?uzDF
z!i0-R8Y>*)c^lN5F#+3qbq0D4EI*Gt20DLGqi1&L6+!}rw3z*Wzb?B-0Ud)`9FzyD
zL>T1g6J7ecl;YQd@c;pWh4{!=I&|!6m7pZQg1PDD#9`oraf=SNn^-t4Em3)J`@mrK
zgf?{s{(ek%BcY1p7WpEUXQsZIS`!5&rL?q4ZhcYFCx~mrV<f`7)Uugv)XCYIA!X8n
zL1q0JSL_~XhXX96XE^lT9?8>&(iTZ7`FtE}zF8F^Qt@T+BpVJ6Yn!%e>3F*v`{qQ|
zUCCQkE2)DDyi3E_hLY@q@4CaKw{LGFHm|IaO@mOzvWiwep@nIb=~<iyc7Y}Srm~@K
zUzEF?STNFNQPuRr1};zIKe~ti?O6KPiRFbv!pDALQQ;lnSxCfWFQ=gJxhwF3x8qqG
z#=1DRJ_Wf%SQJzroy!SoMji)-gl~a+i;TT}g<Ui<KL;>0Jf^k}NR&F`x16MrRSQM#
z=<G~6?+jC*f+=S{z(XqFqa)>({p7Ns@9xtRLa}WD+p9ylrR!~y|Hw#foFvo-VZd==
zhdhSg_1j9q3IU=Qf4bA~@%)ede;#R}NXjUI*9`{W0|R>Lj5BqEZCxG(%Vg})8aTFW
ze5f{?_~FTFdL^!s(;>0BiCx65P@rypv4_+^j7Sh0yZ&l-nn0h!^?(Ai=ZkO<a{uW5
zbSZBUF^4P>t8~Yj2?Y<oy28PbI%$EVrSE#Qb4pxWrAUw-zdl~vrl_mFVW^yvX}8;O
zKJww{ZA3=1kV)*djN36%|6--Egx<SAEUusc$s+qnMk}Dp5fOXL9m_Q*3^RlWi=W&L
zW%Ol<HaczXR8_GS78Q+?R_pG3`1OB@6MugyO%Vne$)RoKX=U#d0v2U!j`+B^t)Wjq
z5b;clkEaCvp{v&<JYrkS0ne)O#omK8#%4+-KDU!x<hr01Q16<JW(w<2SlIbHiHP{o
zYgM#aZt4#29+0CdIS$~Ju)Lg>xr`I@M>n;lU$Bv<CT|#VBel1FdfbHdKmoFmRX^tb
zkXiU2>CHUUXI`7!*1R?#p!<!lDMatRSg?E33<7EDsd>V`_IgRpHU=6^l?&0&(v;E<
z_zm!tKQ%OH5Gvqu{yQ-roGkn+F?ZndD{(=+Z|`g&r&sd`bE2($wVI$Wv%)0;8_zYa
zB`;lAua;pPUKqo1^|+9MX?hcsdRYbQSGk23&n)Td_VimNkO-KtC8Y}DXxmL~)IY8G
zzJ#cL9T}O?Pq*OX%hb@;F8qPN;Vj^^6=l0T4heR#jqwtdkoI&)Z?kF@b&Kv2b$<C<
zY5X7Q^xyyVJ)nd^i8xw#6Oosee~>0wEXfNw%7pG-sNox&8`xYNE;FGrdu_`aj+6Cz
z-CnuHubTij`vfTmuqX<h$8(#S1xSl!`4@;(@-)`g3s7)Ho?Md1VYtCr!*=%Awew+~
zGWXXc#E(M;8|~2&|GeE4_7_M{6;p8y(q?%p^wABGl7v}mZ#6oR$uJ+wpDwJ{J%pZy
zM#-)H^4+pQg;DabH#BD#e4*(D)-HYwD`686kY0)MD4nMyCDG1fHCq>LL1PC6%}cSz
zoQLBxX2B6#jzVo7mPEElh)!G87BxTXF0F*~z6ey=1;Yi4_sz{1Dn*XH9H`i{rlp}_
z?lvb<<P(u9_EpUObS&U`ZPqMBl)$eRoHeYmp3ddak<ZTbpS`629x6aCmF(jn@*wzm
zbB8}U#}YWu;8j3;SaOn4RGi^_hyrX^JM0}1^`8}&mDy6+PCnWpK0CBx#C-gWw0{~H
zXF`{eyHUBuhdp7Bv&LAt7)7tdsAS^E^<?6LJ51xntEwqx4n01xg}jo;mvIsC4n+!$
zL9JcY-7kwDpL;y3nM~bV{9ch)%;g3~`h!eN?h%&*=cKH#dgva%vy{SgLfU7-C%^w1
z!wj&-p$_PocQgN8-@78hF9;0PnZ&`^RxfX;7jrXy8au^%Qk&o1H~9(^PX`GtK8i)j
z&DtrRw-yF%iPYF1A>Rrm(%D&y4fDmw<;1JymUkNtts<$zJV|U6;t7nmN-gK5yJp90
z>J87*%Xr<;(_6)3VzbY2Nh_4SS37Vu_@5KZouy;py?*^#N<}5+qDxCpucVpF<W8%2
zmf`T$`C^bQ53Ob1HlyYA{jG}2;RVEex!OEZQ-JCJ5yJnvQVqc{7lrmXLq?I8D-bGr
zV@tMS9Jt6H5Xo!JCH3s)KM%dC+tJg~qG4)2Qz_o5Qn^HX<Mgt5TAyX-XB-+U=@j{U
z_S@cKRBwNi>;7-wv#P$g;T1Z$ak$94Nse$nO(N}Il_z~LW|)euohME;7}7=W#%b5Q
zrzs+7=#TT(VEPj}A^Ns@99}eyX-sgRcjRG|ytsZn?R<B6;EX(Iu>bQrtc1b+JK2xZ
zVi5}t9|p<3E!&$>l3Ub|ZaDN_(-h_I56un8s4suKC+Ac1Fp$F+)Y&Prq@WOStJQ?<
zox9O;n2M7fPR4fj{%b**h9-J#O=YmtwBC}}eAr%EAwm^atZo6aj`>z7up?*@G&&2F
zSBr@~&)htLSv6cUNnjh=d7bUh*e{^Uj^92bjLF(9*L78M+51Kcs5LTb+**P@LBX>p
zC&}KN(}YJE2GTI)Ouwgw|I@=EwQ>fxvT*p0m1~6AfWTq7Sz`r<fPfy%8pU*ViQQhQ
zYiPK;orZ*m*BZ<K#R@tH3YX#m)&f;@b&L5zQsbWCbMyi2yu@AZj1Tq!W2B_Q*AfBa
zdae_}y%=eO7!C~y>SxoQoHQfMZkWBFipnHZ;$6GCDzq3V^q5~Y@HOrZDd2m{EI*-l
z$dL`)<yH1nk+B>&)AA&brC30t^OXtTv&s@~f9rT*t&UajVIVdBZB3Pu2q7seGnM?N
z;eu<N8VyUHphK>mw@r(N0Tq7sgmbk|!vF`T`NQ9iTi;=7r36>GwQAN}ip`1uYB!=x
zBsJS>e?Pw(R}aUF(wPFRkU(9R{uMViN-j3JR7~~p6%7Mq@(v26P}CP6PP_Hz&(g|^
z8YD{dcjC;u5glkAeD4YO0OOwq&~0H@@kn!t#FKh02G#tCgsKxdS~|K~+j<a+JbVa1
zC@QntNxGBs48bKG=mJ}ISv_wd46jO&|I#r2KKlQc7ofL9@|F!*?9y+vQWJ>)jSBBC
z?u6$@P5A!;Pe>4&n)XHj;lz;;504I22$_IOX}VN*<~2%W9&vi3uTb;JfcD|@4F!oE
zjOuf3L)W!Y<#seyI*X`-%AWnW?rV)5=CRiy{e?MZ)-s>PXvzcEW2(&@#|%^_vrb_s
zB?8!s?wc#jzZh9Jk~*<>eQ4n*T^3KMcUU~$H#qgBIY}@Ei~Kkg6Ic2)2m=vPqNe_K
z*n|ybibQ6$C`CN4KmGB0a(Td=Xq3nIz@HDPAYmE130sb7F5h?<twg^ocYoc(UEXRH
zbCv4$i(-F_#k&*1;1_hgwgp+`c4q#{u;pEvvkg;cHpUF1*<$98%bnu%JB_lN$)ZSP
zd3;qtCC`kZuU{uui_jQ(fLoM8D%UDIw!t4l&!0uw-=9kLfCIB~r37z<)`OkO(Yaom
znOUF^T_iqA=Z6B3_v6RXi7_xt^*cPspQl}49?oP9t#muI`8?2B<p!>#-0yx?4A<c?
zkL4gjD~I9ey7x4Zf$WKV^uFTrU;{J`P6JzNG*q52efN9KST<SRuGiAn+fmttkgw;D
z8o$GWMare;!PHOB(4V`!vJXKsJ_x#cy(aN}Q~l*~+cV`Qd^A>k4K4j~YerP*1HPo<
zPBnxViXSWnFutR0ELMu<T{&E4kcM0C1@);FD&iG3`n$^aw#O6hB!~YVT6lunTw5K>
zSK66M{8vhehz?i35TS&$TX{-Jg|sNh$i#p|55T9#cC!RLueQ!nr`0N;j@)nGzIEcQ
zX*~{({SJ2Wc+_6<(e`wAZ@;Z^<Vm|~tA|d}u4j8sdV|?~C+{qz%B#kUA3HFhHI;bu
zUF^SFQ|>3jr;~)!mJpa{YZ82uLB~%XKh7;HQ()2q?`AolNW!j1=Y;!_M5uG-;D*W)
z2|p<=>H&|4TUtP{6ulGJSW2pb9Mkb5=miG`7JZrCW?@F|5xeV;-Dp5=QtIF%qS<`~
zjaMG}nRmjs1qG0HehG2${^2y<^QKYkA0mIu9{ev)+7{P?J%rg(=tE}7LrN-aqY$|L
zjM93J^wlgtWY7WopP)oZ6l?ccoBkL|6|HX+XCjbYaQ5xcfmx}-reCi&1BpII4m$NB
z33cHZc!{Nww~#!my#3U22v?}N2%oU&`o4{YmVP+-ySQhNt_8*9QvT<w9(PK6r>&#0
z^wfy^52)jz!j-V3YpHj!W~!@1v_;&WeNNYU<o=z`ylfb3GozWPv6P6;i^>4cb&{@~
zc+Op{NI@VuBhzP4i&R!W`cJ&_fg2Wh5OP7H699u|PF{Zv@aMH{XechYqWY%i=jSRa
zDkhAzFwFe?ivxooiCxXAv!2bq#^raf!92MFt=xop+eZ1d^>t^W9`<wj;Mr4i+0_Wo
zHN+>%k_E2}c~!BY#Gwz*E7Se89G05g{8&Kwb?$yxR9rR=E26i)-2|+UEFMq?1ZwTB
z7V?J>g-5*wqdKpyFCM-<S69u=o2E_SJe*ly0AbEkAAnFu{7M`fUj4hG;<+D_%$PX`
zjDpNVLRiVk`382$&5<--X^&(A&|;Y}tUD-x*7r{Y{-Sflb>5twoH%*@Cr#&nEIdb9
zVC@-wZ|SS^r;6bsKzNOwS&aM(YY||1`Zv~MN{G_B442pIrarMA?bo+B0IbZuu!cn;
zs7aU26tD>3Vyf5ouva@iqbPWj4>$c>+DP3IC3yeK6U0a1X5D!yxyx)#Tx)NXh;t+6
z=1k|m@07?obK+nlTmcAooMQY;U+VbHYf*||&QKPXL$)DKs+U#T#5O~SN~9hBD5Yls
zNRiv+;&}&W{VEyEavjt63a|@A<=i&=iRXVj&yg@4oPzf^r*BV(ICq2FDpvf1#Z4hn
zPiIi!c?ggh0s?}?ARc-E9$rWVb_vlTZJg&|mk8SAWCaB@15E%4D>=EShkpPf+IbX$
zFLBrVqppyvp5Jveipaz+A$9?=_dWRJP$3PreWk_o8VC>KmtVlj<CoPS{F;xbCK4eW
zEbvXr*#ZH9J*bQxw^xgno?H?Dy)mU%JoV5f2MXda%+IH`$TAuB&0%$V6BKVZ*LiB{
zT&vm>j-S1obOEMw-fKpw6PubKbFGY_(+{o9opt~Ju$hFekw}UXSV9Or;@igL7E&vJ
z!P}7@^@KcQweBKC31YVB*~7P{LNT|NYA2`Q=zGJTD71K#!oMcL-hJfU8V!S)+`u-3
zwsm}=t$7$jNR5*E*@|$W45KR?hoZGgD1k_e92(dhvc}x?La3wD<J~Id<nhVNi%(RC
zA6qG`MliqdEV%g?H|Z|2qn#uW8sTm?xyW8m`Lj)z2e;(Tnbt0%%-1oOh0kE&p}EY_
z-HfNi2IX(^w~#A_Pd(ZNRB>h#^Z$A9{vo_@<}KbXH9fNYubW?|=jY>}WFH0Fc`Sxr
zA@~U(;*B8_ormX3sUCO?>o#lf=j8r4o)vk?BsByYTAurV4fS37VLGo+j@wqh9vaUc
zFdIymtu`AY8@Zh7CAyB(!H1_K&F`Jy>I$y!c}MCOpjG+cRC%V)5R`N+UeJ=x8(Pxs
zCJiei?8^!ITJA>yV992K`3O<}@bJZZ3L_vk{8l#pkB=Gn;HUuXw_ZQoUczRbl@NSx
zfN#a(BD1;ddUN^X!3f3OSL+_*>c{wymK2M-Ip*>dq=KWNa8hOW(YC72G)7yo-r55m
zB-a3$<`d*!%NV>3=kSs0nEf9-meE4!uf@-!m8JbBxy9pR)kBp`dXi+eetKUo*Zy!C
zn5B60m4TPeLy_?FK*NjGzI!DgWf*um<q4fh{T>Cl8sS7t!!+F~msDZ9Lb_f$%xFk^
z>X)A3bIM+nUm%j8dExF7Bi>ZpeSr#cRwga<z`$x*$lbl_<V=hD3HESQ_Xo{>c~1Em
z^XDQjLpY8s5k;GUALh;lU`1_JMMW6_=8E({V~eEE$2ioSU9z+4X2Y~!vx4aY>*wya
zn^_O98ts=uO><vzDq6}6ylOk^f4fqP={{^VT{5;=A?8fH<DF;V>=63cmyn9o(w1=}
zyi(ZBqr~;gc{4nna!&CA?Spe$2VVZAUQ^Ypow1n`-rNoiUb7{Al>X%V>wHfgoj7jW
zNoGPid?JeWr&fch1d2Z`)q?u|sQLfbi{}PcLGAz0U4Q^U7jW?KEXUfzaYYN*O%Y>%
zjF6G>;X57)i8$m4ikJ(QvvjS`qOv(Ww>^kKQlC_}@HKs-Bo*AL*oe=cZX)96R~o)P
zEjPEQ#B|gbLM}J7K1g0R<|vJLYK@p8@ZL&BUIo4LrnS8Ev3?w)y}Go~hJ!`OPH|Vh
ze7Pd_vtHZZ4?G=V63?$rx3_E*d>VLhQRREz1RVY?$(7puTC<+5am)Dn(JLAN`X~ik
zl{z|8rqvvO$UP4ssk1!~`H5Wc7j`~evnx_?i3)@2>CAZq5ySZYAz=C)lz;BIUagv~
zrrvTBUU_rqdaxip$F>IWdJT&W&XQ(e^*M&$`}6aIZ~0yCNp}$A_pHo!juD>W<%+71
zzkEsb`a=eLfALaVQet0!^OrTHOZ4Y>WESg^vij=b0b&79;38^&Rjw7$CZ@6zp(L)G
z>z8kCAR<S9``+@_XqSh7xa)<T+Re_V<x%CelERo;CV?zb^Thc0Z3ndXDZh&}|LX;F
zhRa-MLw>T_%~G)&w3C|N8HXJ)F$-lmtbtKct?jin6KHNX1H8S*IBhVC#DHur5M_RO
z@us}fX@m@Q<piR;4F;+hFPrR8iLN@nujcOyFt3~uCynbUa#=uPrNgE8Yz!GNr>AG6
zYv)gw&PyMnM4V@Y(yZ>Y(6p_`Ow|#Ujl9(Kw$VwO5ib`n?ll+xtpa<%1Z!&^J{gDk
z!97*}2|?$&3I(ZSZW+e&$um9O2y}X6!ek)kslPpYQ%S(%B%-3SR@wqBtrWZB6E&eK
zUU%v-GcH_&voj;5S{SzKNDb$0R?bRP-f>YpXLokCN^#3JiUA48(M#Qo<l&D^w3k>y
zM+Tx!$f+s#`q|2bFtPBn5RU@Vxv!^15%)lsiGqw<IVK1N%luK3rigW6`hn`&z`)wO
zLY{3jE0c)f9T{2%9!3Yx@t4)f?^$uV&4A$AEoE);UM(JwAICZebj_d*{;kmkEvbp$
z6R-d6bwdKoMSzjLPDpbW(Dup*>lT}rohIbx8rMLU8t)qYjvJ6Pmh45jc7WGRL3ouw
zgB=a0vMp!86Mq<1E-o$Tx|tgQVmMjbg05a|rOo{3q+I8qncl80Dqp-SP>N`1B&egL
zldTT<PpiW<cwsoGj@f=8ajR(aU;jC|ik>S#k%6@r7c|1>NA~XgQK+cX&n;-Y;|M!n
zJy~bvv8V`Q$-jT4?eVUWpqPGghW%W@H($cEj+QALQMtL$DDwG?J0BZ-anwTR8iJHs
zMQ`JqFDHx^oL{%sL5fp#=Ag3xIj!KXx>@OcTQz-3)Rkw|+V}iR!HB(dXh>qKjrY(}
z)01)i`zxpR+}YnkV5%eB$#iSh;Wp46n+^ObP_R&Oazz+8JrVRly{BX7ws3{;=#h>A
zE;jwgyi@Pf6mP4M_YIZ%#Pk&MTrk0azV~|Qb-DXsLaDkHrDEFE6+Fvr^VJSQLn0U_
zI4_E9C<s0*mqI9V10t5p!A`AZi=~&PC&Hj;Mp1hCBclGxBJ%-91MeA%bMDg<>A4)!
zJNOYkxmC$>{^Hn_CH<mDSyX~bp~9;V*o64MJujH{5)FPjZCp@YUEO^rlvX(M|COX{
zqBAQ{S8xV8fmQFdi`9P9wXV>sH%Pr6ht1TrwY3J_DV%m#0jwWFL!&`{HLzc|T*fiR
zH=v-3w!}q}epbt3+S7NmI@J72c!kSqn!cE)qremJaHrWZ(quDPxT*>}v6}EW)ZZ9B
z&Te-_E{`onFevI2G5p9XXJ3!Epd*Gj5>Z-vGXTrLA@=hPB6+@fSY5L1i#aA@;$=(y
z;3DQ}AfauG+N{2pwaF!`sa+J{n&YFtRG_RPKu;uvsxdl9q;_~bvL9GhXVGA#O(ild
z%6Lz$-6ozMBeL*T+g<#=_cH1Nixz63a(DuvcM6aIQ~WjcR>fVPkhP-7wc>dxoqtmP
zdyIl_iO7oX{8zl@bgGLIpVI5E0Yw}$T=*!FR3mkQA-Mam%Tng1WECQ)=|4B83p$Vw
z;Ky<HPirk*r;koBOa*=%v;EOfSt-1;_^is~(pEn#c=HXknK6n9N3ePv!?(IC^U8n;
za0o<q(uRn$pFIwb4ykcKUox+OD|Ci*XQAY>9-etG-wd%cbLp)~E@ggD*ncOE*TBUi
z+VLnuQ{>u+R`95-o-X1#1^pEITxU+ffzk=|j`_Sh0qK?sh{Lwdx_l*$my52l5)wgt
z*L&4|%V#4A;e@;zP+S2t?cw|NJ=QCq#ePNT3m7bj-#pK1fG)~hW#PBRCrQJWQusV;
z2Uy~K$#=*)+#AT6(8+I?SAMP7KO4t%OX`Lj>y9?~eh-5HB;^re`L$m9*_7yJWT1eE
z9GEM(N+WHe28KTp5yW<PqJ@JSF~B-n@a>ekrnFA-WB$CSu;Qj$9_Kq#KgM^%!a3$<
zsg;(^!`MT8lF?r*&W7d;46ZpgCiXA*s#0p(Ft+WP2qU6CDN-D0KQT2YxZ1cq?8lV(
z#>Grks!e>+^ULyUSiy5b88BA9zt)3Sr#cOM3qB?a>b_m^#Es{Y%FER^3T1xyFj-*u
zP3xgrdTU-<47Qdo**BFSm|D`RaySk4`y1y0p*?`7_*<6DREL9CXiz{>-|5;fidX&B
z*oB79Shk`h-QS`mIEz(4l#BF1A*M*RS55n4*vHdnm>pj<PB>a98O`I>Fx@;l?WQtI
z#9;XYV90nEz+;6DR$@8|X8I$&&T_EKr(3<flLWn6yl_~#xwX9o-hcS80o|av+ASXh
zuqa*YL0I&y$FTj_%ajf|e13$G1%{jNC<dKylKIlpL-)~bQ3ZMLBq5D(5&amgv`Fi=
zQzo6j-u>nIjCf(+*M4;N71q#!WU64pTOI814rtcm{?PYDd6NpLVi$iDc4V~!N=oLu
zaikHLFyQe7w&om21e-%C)KKV&?KSZ7R%|(mFRyW9w6QoUweysPM<JqTXJ<bFD_Y-*
zw*l|b^ES;42u@cXy^V+N9wfa6L5DXk`*UVU1cH}eM*35^9i1{-0aXQ#{td+_9xNbt
zm7a6g17PHL==z3L^7$MOs?%C^WHX4C*#_kHdjR=ZYxi6s_4i94iQ(fivUQpKT$$f#
z;3y)5oR3d$ZEcN$j!uREIXEsMVaI-|#Q@*a?&14kK$;Q_<a_em+JJ(BV$0=Qn|)(*
zv-7ukDA>%;fBF_~VOzB;jYk-d96gtXLPC+GO`XzrYG6<fTc@^BgGAw}+UnMdFAF!H
zLh3mqZE<m2%-q`z%CY%fIayWV=F5}mIyLK!R_7z~v<Q^&1TJSWI>pE8Wq8~hB~dEQ
zsr{&o_>uwSa#u7Ot2=skvw99p`WC|C^Ih@W@+iu@+rj8sZX#mM5?LNtvO=}q%C9wt
zgFXLQO=|n4Kr)J!{U`#p_xYxEoUdwG;+u{BF>Q4!&~T)9hLeNk`%I?qBegLLt%{~T
zV=ZQP_8Rl9{nt%i!6olQN|<&yF&M4WjDE(}o3~IdU-A@iCBY<!rIL?<f-w`A488Ko
zv=m^|q}ncgN;86O*naQ>Bn1BMZZ6#+Mxnr!MM^J9#CCpn_#4PgbMU!0#@vE5K7K0X
zUK#h@yxG9@cX635NTC|h+M%_LSl<qX{V*zYVfO-WW*VP01;@r_Q@6GH>Uh8I(=Hg}
zl?Bb2lVOjm<yg<boSdBIu5kMmm|kR1uum(^&dy>D{`~oq5k#I<RPuVgs#l@bvsK;6
zvgQ;dRf9k<_2BRZtAM;YgN_Z65l1@*BkkO`BB|z_2oBt0YY-GDhQ+TB@@M~Y%Mx}J
ze(eDXPB!}`#5d=GUp}Ej&CHRhu&}VNz}!5-yfcdL)kist5PYL&@FU?_jd!JMqqU4r
z)21rYkPx4LuvFO2Nz<<>#DxpznzKS>``lCg%H#TShOy$MrpVhw*+n01OVtI^XUc^Q
zI;K)DA4S~xutffIt2TTTnytKzX?6Gl%<Or8_7@wF6D{Ahs0aCxTPovZc7=xvkR~_d
zLANBCA3#i?@TEt7q0`?0dwFA+_pqj@<HKN<Xz&?(hmc5s53#Im>#a*6m<)*~D;WS=
ztk~!@SLKft=T<cCUHkjxM<9{UQ7N*HwRuLgW5^K<ubO6--yRO+x5}g(3#NN1Y{*PS
zvkAtzT`lQo?x>)MCLC&0v2>Qjv`i2u+<u7bWpOSC@1E~zq!1V@TE2hXndBQ<57!=6
zzJijT#M`+7^MI@YbaS^+r_#nYx38EZFmI3syuiBO4(b#tLzzzPKyeB{xsEn0f$8v@
zJ#)e8GWm{!qb%}k%Dh&#Gz1#OSkST=pF%||u6`7uny(Q5?VHwqm>+B}TQeS65O!C&
z&Bi0Ujh_U$`T2v;T@E&s9z2RnM5FMR#vO3Ct}xycD<MI!k}d529LJz@3dXmmQ8_xk
zJcxjv7sy-$Ip(N{+)X-o??21<RI9-53`~6~F_#OgJ|bJ;suv*$UXJY<g=|=`=>!%>
zMES@Bi5>fOJ^7~!*rI~%b@d`yb)Z!_EK|)EKc`4JSqiC<%DEW*M(t4*m(~|O-lXp?
zVT@FnO%d@wEI3>Y_{cxCHh}9EbD#PP=lu8~!M||M8|>qh=ZtkrXNXR4(sM^(<hxN^
zfpBTnc{4}STv}bd^fB?CO0X_t^BL@H9h0F#D$N-FtX8UoSip8S-GIM8;hNKQe@7tO
zE6@w2%hf78U;@3J49~%Re`8ZVIy!?V(-jsip!4R7;H_mZ76#hY>CvjSCV|(zJ*1_Z
zXgD0!AE6uNJWb@UgNeD1bV$XVWnBRKYMZR7>;o2qB~~_adMGM7dQe3qw7|CjVx_)(
zTPaZm-(9=i4KfD$%<=%!@;rq}9jk5<VmL7k+BSyMepOm|ZI$|_8gH#fC>9rw+V{|J
z?QEZ{m*>+aSUgAp-Ble9i^-s*WrD$$V^fmIP3&md8K;TfHQoqi8EQHn`g+|}J?Izm
z_KR;_5ZyZ4so>VieH7c8@5*!APCD{{$6W$N=uyG`Bw9$z@Mjwe-uQbM<lissd0-(V
z=pO2?Z2$sj`%UFu2`ZveR)K#57s0vqmr6$mr43S=%segP&9(jG^nY%j%sSM*<hTCM
z_jIW}gAKC@G8!pqxYYD&G0_Q#$f;3m;xk8?9Rgm4w%!SPn8O-~JGUG&U8hH(!Ul*V
z!lAwbElspiMB9*SjTxP~&l>l0I(2h8wd%#SpQry1VP^pqWw*9}M3A9NO1dqiJEf6Q
zLApb_q=ruEknU2HlI~6cQMwzXbLfu$p7)&Z9DUDs{@+?I*Mm!unR%YQ?|t9b^}Eb9
zi8e!2zJ_>*prJt|2=5rrCje{E2akH0o3-mUlGV8x|CBhSd6<j!+tr_wtIj6Tyu7gU
zCZ9FM=xrNr;!=Z}bMfw$LxpkK9l*83r6C0I2w~Rvj1l`i<EKY<(e<98{*n@jeC_m(
zBQNtFK8xF1f4DTkFP{IdPFC)<6S<G!S|2JNF78`_2n_Z)iWkc3#KxOv=Y>QvX6m&@
zCa{Fj0`4Edj1-^N29us?^Cf+sm)Fs4&6erf@+L%-Iz2D%r!W+^9%Z9yOc<+%?pvRO
zpzLr{HVt4bfkDXbt{CycouUOE6cyNrYZ+cmv~R^HB!kEo7a=-HSAbLlHvKn>trkmQ
zDcdq~J6}my`N`g|%>4Q<hTe$?6%XCd4M}7Dfb#i?v>H$RRGRZG6W&X!Ql;q9pFxYV
zbQ4cQ!W1*aeGD~4Oi1bW1ZfeNe}drS#}6DrZ<BrRgj(<I203?ET8t+nbEACo56|m&
zP4A!y>m+WoQ7=#bvQs+SHeA7Z+9Z$eKuSqjti!peZGXBOuU&zK?bGOb9L;GlCJlCh
zOl`D>lo#PJNQ~B=Z&E@6(M#SG)Rjn~3)AumbHDkrG=As!qaz2<qWHADx;kZmX<gcV
z4;Hy69=tCmDY<m}_LCyuQM%5n`+T+eRI^%D67Pz2bxbfP!a4?m+iK^(89_}@WM{a+
zZH=jRlo}hGeTpoAUZmSRmxORU9ys=*-6OIeI3f|7U@6l!Gxj*au&K%dnSMK^iy4h8
zwLit+XLu!Zq^yL#6Z;E6liZAvzn9zpxTpD$d^YpZf<qL!ut+VG7u4REH9S#y^FqB<
zMP_|W@qnF6+Q>b`p6Q&QjgGZ2VSBnl`(w04Bh9@O)HfJ-tXam@P3PuerzzVuW74;e
za%9zD(vO&*at%t#*SuQtV4VoUDlpHdcU;Fd8V^xSttuHV)QnDgs1SE`WsufA)g&mp
z5YF11sn*E;v6o(UELmo($+gKDR`gg6NOD*|c4r;TxgAzE;Vp5NWoK(e2y)GCxqsb%
zNMeo@UnTTpsAD;a-(4j$RrHDTR(9UF#9pR0t~W|DoC@e499Wi{`_SHNG+<dGsOJL1
z0BQMil!zu?(2jlCQSz0l)w}6wRavu>>LHh9$7r?_r()}D1y|)gA7kdL^5r6kK!uUk
zZLmfWjaLrz#p#A;$~8;B`F<5Lo=HbIYoj7tv!-8fM*b$3MLH(X){)gB6*b?u!o!Z$
z#qk%l=;rPKo3Yn8>NQ5|N6hc_wu_?YK<%_0+lob44Lq%a4_rr?X#86Cff08c9BdH-
zc}m)(y%4+RZ%(S&9M)eR6MBB9PcW4SrovS9hT(4oV{qScAFF`&)WATMb*g0uN*5Sr
z^*(*f_v)KN)g5TNHw!E)km8-cx;1Q!3)o827|&YffV(t_%PLv$bEwR2^R4H`Tx0#X
z8;5AfbK8KrS%H^hOzRy&oBq!ioWBvM@;Dlr0C@4cc1-SdU=F-PJrl~@^zcl_19P5y
z7aMf-)*|?KS<>eW(=5SoGeL^dLm9{QvSL^Pe@4kVa$y}5@J&x{0hBP6ZI?W#-4if@
zO(#s8`Fa)w0YXaGk#XzBFjDY~s6a^#K!#Ub19||t-{eo=pE&??JW`ueHxAU(Wx$5t
z_=avE{R16VB7C)oZME-OO-#CY?#%>%-szqfX2lIS5py1=vrGqMa1f<0_S|GC&ITCK
zy{2aC^pLJUopUoD{^A!pS=4awB1yodY}_Nb?|IGXa*X2USV1`o7I+mr$2VwM8PkBc
z`o;!gv)9qc0yxw=KRCy=l%%AC1)OIc6T&D2H4e2r&sX}cx0<*F`T+&6D(nGg&(@{S
z8Sxxj^UZ~Yb9L(Vm!oMyENtuqco6r68`2W+3`GFwR6zsiqga($rwo~}KsWPpl)qX&
z5lg<l4u<W6Wzi-&b9}6e>9=tS0xE|%0xaWfVHO`&f1ig-Jap~fd(J<Ol9_jLCU{Oc
zQPEK21m~FsS}8=8+CRLN^knGOlq)mbrOC@HV$GO3BBy@)@jF!HsB%G@zwu!5Fh%HW
zWOuXbG|zD4(^3`hu$(6?R6vhN+abiPsZ-9=^KDE+6}!nZHiI6$eW-ckv|O6TmO6&n
zUbkuQ*x_!yuK7?ZudZ8K^*QUrH&0vJAO#MC0d(vKV~8vFEgJMDP$e|ur%%N6Cd-Tu
zZZ2U3fhi)c?`3uX!_W(&r%5qKSy)s0xsiC1tA_rL7n1K!7(g-$KRm;^EwYa*HQt&I
z0AOIF0|Y_s_}cs?%fe)xGLz3}WPYM;^!b;zkG`u7=I@jO54{g<M$6g$(n{{9h<y7j
z9NX(<M&Vceq1LS_nn=rYQph+}Sr~J)9+<y)g60;qVTxWCF|ZBS$U+n;uk<s^%iR-8
z4G)64_ukgU;nuBs9>!LD{>C_3>cwMR<eI5)L)Twg#8!&A_YZ~{gDR=Q!~~lHny`U@
zI^E+$ogi+KWqEh&lxfKgOXrq~?nqvW7ix6Xe0wQe{^7B%U`_p2*|ksZe$(Y{fxUbh
zpJVj=?ak?9asSNWaVnaI?Xn+7o^bMcgF@H0Z{GnxZkIl&g5)KZ=u5e_#*--vF7@j8
zCl~h?)0<&;&2T715!6*wzN}nn*B91g*>ho6Rawn@kf9uqwJ1>`+4v9>w+wI#=-w0!
zkKMIfLMGDE!)~mCN(BNj`t~gP_=h}a*xd1)GaLeJGB$TtCocK!Df=5;3T|d+m($9{
zCZ8@DUBBE1G~z-0xauudy&K%SD_}#OgLwpQm7Mm$5A<!?)7DCtT9kJ+Z9KNOUH+I>
zNN4gQv3zO!$a^W|7Id4)mGdYb0QvuoK=|w06df_m6`N3zq~Vdui?|%op-wF-O~U3U
zuhQyVKNsu`Vxav%w-AKte*{r=(v0_TeKGG!$bF>dAZ=@G<wuIZy}+hWV4)6{c`TP|
zIp3rW2l*#(3lxQpv9FfNj?_a0il`_VvR(=^c-n?tEaWW>D_S5&@3r{~c>MH#JTxfO
z5ToUF9oaZ!N0I*K>-$bRa<xJe@#M}+8HY9H#=iUzwhfnUai0%^JGe&c0~||>U*yCL
zRh6O3%Q1mTB@X=IL3SBMSM42g75k#WG6t#4Pk+YM)JQMUuadc3?(~oTpqr9Zv(yUI
zW(5y-m$_hps?A_g>l6B?KcVGMnTuKQKjK$3FdRsQ;wG}2D1?r_4`F$Pjm^a3UOm<x
z!?1^fN_G#?rC=`BSKdC1g;m=%_1yo2%56~hv+dzpo$i}xeA{B0`jHUQSD8lr+;<Wz
zzK4B&rf;m=!+M{micV`x0&!jm5r_L%qt)uqq%zY%8cY{-Y&)n)NBtC2^~|sFPZ`2m
z4+GgsKvmM+P~TVx%g#xC7t&%uI)}d~h(qy<>LYr`-dxywE+{ru2cX2w=Z*^mZ7j^<
z-t*B^P}qUFow_jz5Psb43?h9+S=1Hs)0TX%Er4YPh}Q?U{H4)9GB;GW8!l_wG=A2(
zSxDNwI_#Gs=y~u{A7W*-(@ARM&=C%~4s*W#`BRSfctk0j`y@s=?EOBH!0hDyU67d-
z4_Tz{(5s<<w)?5$(wz*h=>k-6pEHtT{NZZvurt?)7of^)@<Qqs((vZ6JuqpcCx~?2
zvpoC~z5{5p3XIgPmj^p?p3>{8)YZe^S^kNZpV}akZHM4~2fiW?4Ld|s_<R{36Bh%P
zxK8A+zi>~%bbQ>le{rfL7flYgk5qJ^ptwl`CVYh6CgQFL6-H)$+Uc{_9soVB!tZ9i
z_~nTO+FOM>PguDu`t0?lI~{*rzUOX_d!o8|JOMzG#!sxpDN1~KNZLB#dXR1tEpEam
zfFLM5>_&O)d#58$MGqzNJ&1lDb$f6+^PMq6t7|%EM^V<=E>f=ngL%Kk3v^qLNZPKk
zifR~b>NXg1zOSBK0`6<6{ruu7#?-e)zkQ6RCxBX+NZMuzRX#THIUzYE_aveU<4Py;
zx0ZS!&^N`h?X*=){+EIBU*azjd(?%r2Zpo_r(2%(PmEmt{!~)=w98VlamhSxr^(*(
zW__)$^6*@}(wBe!XkvK|5qBZ~)I!ik?`06GIFz|{%ryz#SwtgaeQtv3QmB7mHs7QX
zMK?qhBqt{~GU~uX!TT;dzRMqFh;`8)$91AQ=4E#v>I=vt*6+SJHjum(X7Ziq-e!ee
zd&3SQq!e+P)U~+2n#Eoq3Fn)|bgjK_QZ5EN{@3;}XsP)72%wWVIMig09x8h`+<aZ;
zdi)l@2u3Uz*@nYjq~*e5`CzE1?p^d#-O}d_sZOc!)3xl=avT&Gp#Y-3KgA3on_cM_
zatliuDd1YfYixARRM42lZ=s`Y>s{3GC%W&ZXu!D+k_U*MOY=WKB~w6rL-1|Y*|8KU
zP?B$U@BZ5t-)?sL>@xYY2Gi2M8oQ12Us}~F#n-o*J>%e;oLmFg8?ZsgAs~6;G+NEn
z4CW!i;+Pxue4EBaagbr5yS9A_lH*w7(kfR~#y<#|Y!m@ov%}wMv2Sm&eFdPUDso6?
zZUEy1-yM-NXlBo@Sy$}gI_X=&V^AXA4i7Z@j9DF~d0uQdsY<+8fk65vK={DRJ0$*c
z#6&G65Y+U6!iRWf>ygv^d_z>P{c*6qRsk4gR&ErQpEurddki@S&C@5g;yQ`sULrgz
zn%sTx>Mx>N5ON2O>7grl4hcNvgDg@#^dG?Ued={@@v#ug5jt6pLRvm-SNak>z2C?Q
z$qYCvkQKvgr1qMEF0q{UzY%RAvTTdx2HJLw*;3XOllZ>!LX=wWaz?n5T1bT6jnhY(
zPOZO}Xo}guLQ&rEvXhcIrI}Up)ZSad7_w&7drd}F$lC8yc$Y%n4x4JGV%k;^$F9v*
zaBl?S$pWFqT_uIBLKee?Xy_WX*Zn`tj9v1jr+^h@bP*C6ymt~&7I+|%8_v0eQiOS$
z>!DI@J)1A8;4jr>ub;s<EpC5-siWs(f|;&G?OLh7xnI8rfGNZ8HEL8B>C1#H<TC8E
zi9d<SnPFO~`{c_n{pqOI2=yjs)|bVOD3nM#{yRofgcLVuGnU2<ckuPAXd5K2xXu*)
ztZWQ2+APVVb%o-Gk3N*O`K33rM1_=?CDuqt3(F<fF#59U2OC0~OI~B)b0p&UOyE$k
zeWj)p589JvHSY0skD~e?7Qp@EsvuPIl!#zl2+8947u8~&szldEtw@*+3VMjxF@X;w
zzrS(jV>ozO&8g^;2knui6JXOpjySon6GGCj^#I{(bV@>_(Ah_0GOat)<zdd@;@_Dc
zs=&e$ku=JT3Na{VRQpeNF_~#czhKi#-sc^WBkUc2z-=|hbobuTyB;uHmD(!p1^$<$
z?_b_6$uP_oxLaCQEIPAb6!!M-EK(2TC}!}*gs-DAh*4W-MzutVQ_*c^whSsIJF7h_
z{E{zfo-gP-Fr8I;pNArz*(W@@1y>TmfVsM6P=}&{H{Eee-8BfOa*ufY!{YVm10-dr
zb0xJ;6qcg@*kMiY_^WEC*O2Qj13KtNd4PR0z@zNwf2vwQE`E1R;_pkWC}NA&9~{mJ
zsngrz+aTnga>Y?0)j`;wJxAA!aIX=1VqLL9h2dw4j$WeIl$9NIuk^t#ZCKPo61E{D
zvFKaP`n7bo?V|E;oMO2=U@S#$So<wXfuZ~m>_|Kx1yZnls0F+XaIre#tn>@7$rfsl
z2)KXMv7EFg;@*3eOTcaJdwyqd3()v-vxfJ{Tk0PnMN9;8KPNtDDfoPOBgxnFBnYDz
zOsmPNl9{yYMsT^OBnNW9AVQ(>)5qePz|y_q+H1*19L_NlXdg@b#(Z<L5cct`bNGh6
zhZSquzk9r(u%Gfp=zI*t?yTn!ay0Rr`bcE?yQ%J<_5L@A<@M%l%VwJh%UR|?pTaWr
zQx1$6Dq@yjciWMIFNrBwSX_+yX}2FlWB^)puU9T*VpwP9NW9<peT%)a#r~_$Ff}%@
z^0)VT1qTwQZhlRf=VL1<>pBcR`r^gOW;JDUlh3udKuGf3s07z`EIx_PF@9C-0aC=6
zr6Bv;rz01(*SqgduIgc9uE$C2YZk=^RYLsFEw)xp_HeudUqc0b^k0+WkL@A&;e^8j
z1r$C~JTeGq7fURxVnno#41N<RvjCysOlLzyizKL)`hL<8>;doXsUdA1Y6ZS*9b3@9
zdKrMsvu6--iV#$|XN}fx2UYbB6y9Qjy*zgCKg8iA_c$7ydIP}&S+`GhJ&xmCiH;bB
zEH*h88}lR8<$T}EpLsv&2xkf7d|>#{r140f5}-$u2)<_tdaa%atqDcKC}6(C8G3ec
z#p<vFX=gV?2j&T1KpuVjEjZDiQ~+A?EPKB<5Y{pNfzrdLWpMV3O;fyplQ4?jM0Ee1
zPI(;n3wG#H#XX&4k7h3Hh8xYTvBH#H(UG;2Bb$ChbnJ}6N46c6=Z9Aj4qJn`*DdUN
zV!YKx&7}yoV4&rSz2tVcy`qAHBX3o4VIo#&`T`t*e%q0Ksu&P*NQsH`e+HatqLEEs
zkm|YZgtR2D98SOSnjrb@Zvu1{nooCMT8A{z=galQGOr(4k7g5?Jrwv~aowKc6CfCT
z#E2oG-tUzC^h8&tPY9KBPN6M4u=T}~N68fQ#n*feohrE-y(PPnvP`Xi1OncbnHb12
zV<1yWda7MF0ChNmAbFB<ZF8ivo#ZXx`t`1_YZOQDM1JU9Ss{2gX^bCs8r#q5PPi$f
z2+O0u1`(rnrVYgy<E|$=Pe!hYv}{9AnYnbI)h?rGV7XA`{_HJG^WGl%?1VR5?YZpd
zalZ1R7u)99UXNd}D0H|bn;NP&G!;T>Av<#85K0=w=5ax^J6s2Qw&pfh-2k&o>q#8=
zg0xWDy;BJZ&#>>~^#x>hXWThkKv~k!r<tzsvkXJh_#h&!Y?b>;S$!w(T6@lS6h$j8
zV1^5^YXNfmE5`eYfh7DLWI@`*=Xkz7qUN@q70B_Gl|i1x1#vKrK*#v)+fDwvqAN}g
z?H{S3wBkYf#G;D2wynq)t^BMVPQzd1@vEgd1}r)+@!O6l+_p<25?KezFjvI93R}gN
zK-b0w``UUil0wjRq&6V_e*Q<yut#6X^A)>MR`>4ja)p^~*6Z#h{zz-)JY{|63Py*=
z!w>rJ_-8i-?0>lg)uflRwDtTIPt`|bca$I@gaVlJoj%|~P^<d#a)il9JY@{$xMf@;
ze;&a6vLpp<=L4IpI2~pZg}9Zm`~U6b1eKqNCQb_!88*bHVitOD^4=dk1-K7DWDA!V
zdPDd9#>o%&NkEFCKZXFz!Ro7Sv!`T`+E;v$2?hnSrMP0)#uA<LH6dzv$cGO>wld_L
z%8x^2=>_;+AV(PU<7byuh;Vtl+FBgcc@Db7Zx7gh`rA-2ynjzGxvXZ^P$1sjZ__CK
z;zv(-SIA$*8}ELH;gLX(<Hpc;Xvd^c!N86@w?dSl`XwEsNpq5W{&8ZEYah>&X|JwX
zM?4O<HCI-ae$@?VDal7N%Jb=bOT^)++Y-LqX4RPYKGK=W_!bH}d^8POR7OOiGd@7I
z#$Q2kL*<jiZepHWZ@1LBAuJ0r`rtTz!qyKWfs8M;JqKvtfQ%m8GD?alLuqIsPF7u6
zO*{JvGI&$S)RAyDAJ9~WKC6=!BX{0(cu5@bp@+x0=TXiXrr-3Sv`ELj(pmZht&cE4
zl`~}QAjWj)$5h)k)Po7b$PLj*kz&lYb~vB@*J=Rj!^o~rp}|x~?=sLUbe7Svu}^z;
z6(0s->>WU;Q-oh7sUkBuAlRi>UR)r3!TI^iU0*+|ch0&RfJAwg?Y&<v0F6b)Gb)Q<
z^gEOmm>yndp15eU?>eqWaSLm&J3X912tdKO%jt1_M&(6AV%?$rU;O5OHHY}n?u6m*
zl{(oX=_~!YzWlY;tiMD$a5j=Q&|sddHmet>XEdMp!>)l<7fhEN_o^BS1R8mjOI|4Q
zYPY#cy>QVl-QQcmWt}7P3pXu!Xp#f%3E3=JA7lCsHI?HOZ8b=%nQ0RI;eRe4d*y2Y
z!cdxvay3EKf!Z|&uR3PmAO|8N|5bH>$n)cD9j({q3<ZzFh+<9I?-0`fA=9{Pos&dv
z&F0;7$|vDn-=^MGc}{2HEjfbb?hG_k<}`nP%;Zoric!Er&j2IFY&Td&ld@Wh;g0_c
z|1KiAo97)bGpOZgks?Ztj*c$Mz@Ex?|Bj+e(eV6-ZvS=$TMV@D5l?8y3E%bNUln@=
z5h7I8eI-uy$nRx0&Sjd{&G}HdiQ*0oA!h6JA_$tFmQ6^R!S-M1M7hVj20_PIe1POa
z%nY2`fNVivdkq=1L=ICEKLUr!AREX&+_oLj)#&|%i$wLS+M<zE2K9iz%)S0lCrck-
z;?{AisUI=eq1@zc5iJExeX0{b)gM6LlxuPgj1)3LAlbmX2-$eY`9o~1vJFXUInA6a
zdlEi$^;Jf(I&)OhhP<G)bu;d!Yex|7lmLTEhTASLe(8d&lx@iV4rt0OtdNxFc^LEl
zxiMfPZO;&1_@0`99i+XwO$h$T|Ncva9kQKRFKwQ0@iS)({a3^Xy*%Cp+(B)ty`nUo
z^X*!BN_TT-$LY%v*3Ch?wISxlA>5F<sS0*b9_VbG=&k;gc#HRF0`*eB(cFqhI9nY%
zyxU?6jGYrIb7AL`<wX4FvuiA7eukPiv(6Tm+$MeF3ZBZQKPIkPTd9ZYoo&*tTK%^G
zWmleOM{tVEi|ic98XR~{*!Dn-1sBD0?#sq?okmyQjXgXuS|3^;@0_#DOcpw}SC7%z
zr*F!9Md=>aoalboy{Yh!nxKKdG_qubHh?kWRuo=KwU77<=p_o#^q>PrK%^?0`68M;
z_|TsX1Y4DRKhju;!bKOmdVljCGBn;9LB2&N2&7DofJelRla<)~O$u1uHfymxe2L2&
ziQAy?Ja-rU#ruSV6_o%T8|{$`<0a;OXA~-k0txkm_r=@T{R^;^7lO7r)UetNXGn3_
zXvivypXYA(v#^>sKK~`q8GO@28|EgfX@B7{WtPJ`t6rk#a})6n4{JO7^XGGh$}?7^
ztUo0OpjU>&V-Q6$w^&L!Ll|C$`Nt>x7Z7NS7AI-oO`Bm19ZgfY=a6FUlx57yx(xTG
zUCx{zJ=e;^=RpIx3fl5#8@8xedHm1K+-eNx3??t^3ZVmE^Z`SX=wSYKOupKMW#9;k
z6@XE)VQu%R+10(jK63W5%5&bc<}lOK&GL{|YZjn>jR5S8k2s(kH^!*~hT;Pn>ix9?
z8CT1U7yUSli!E3TQvG~ePZ>!lj7{lm>2UU9DUKG1lV<vF=}GpXTJ!tSJZJ8xX!}?w
zA&6P5+S!MYLudLtui1mZhoOkLGANAGg7mzOTRh?~?5D7?LZcPLp2bcGEp<G6h&70(
z2(&Ej^AIhUmAC`oTghMRWbfno)VESEh%0J29<}q0NO#2I8pK*@bQO>@gv}r_JLj65
z-T;fZHj0m?DG?Eo>e>}({|@t+?IKlR`sE02u?~9(0oxq*BK=T^{OlSv3mmAu0-}HK
zYZ+=1civ~w;ulc4C<odq)k}ZR^ZI9DO34O+zeZ#Eu*dBYa0>|nDZH-s`+Vt6IYr#h
zrYwpd{g?*<kgjOkELDDs{LrI8sjY^2u~aCSa#&D!34^J^=kE`N&4#l1)FlB?G&s02
z3U@Qr(m>SyG8|Rg0tf4I>QPRr0S#@(1w(ar>2-Pwde-(eiT_Wi<RZb?tg4qw(x2LB
z9~|$scMVcYg7*!nU2QS^9~}PijKg<%eue?(pU4c`rtg*GiIRMD;`}APy-1e%(LeRE
zF@ob)S5FCKgVoa4$V%<$;vg!6P3e8u>|{i7h&HWHJT*e8ftgvJxP*jEhLFcHXvQTp
zfaC-Ps3g>=ZvA8E2s*ZgzxU#&NFnp2PIYutvbTsUwUu5d1L3(v?MAm#B#y4J9NU3I
z$IH6ru3vHac2ix}S_L{U4Vnw)VirnFWmxl4bkk@E&QWfiIMhx=m<DG9c#q?D3JB<U
zPy?sT-d;BLxxW7BHttF^%?`u;ep$5?m>_tcEgj&wAgL|U^s*ew&t9~|kcm6&%>ihu
zxIp#HyHKUcFcL>EFFr>876l;AY0>1I3rq)*VQ?|=G6-f<u?Yv5*)-ZVzs!N1S?eG1
zeqK@w67ca$0*E-v%aI&82UDp$ZZWEw{Z7))vI)=Fyl&j#L^!mx1><6Bzmg%e@1EdR
zL+5Fqt|CZidy-91()x*^!xx?C*?nk+I4Rs8w?zF8oC+{GM-A5C5jsBHf)Kve`yU5u
z?bmv^=iO-qU5^G%Uu=;yfIc^vaE}^TY3d{{9Cj5v!dw&*SvOM?>%YT5C=9ZpzHls7
zV{E!Dg>x?_TNJ%|P9~mpX1)Ks+tk0f6Ok@RH;U*qtrD;)w8aXRJOjE0;mB>F%WZb;
z0jD7u5H69Et|8TJ@xve#)-weRjmV*ypoz(Z^HcQUy5gSYA-BnNs^`*0QOz$jD+)w8
z0UHpn7JM^z(TeR!wbYsPjjT{l57rd8pC-~$1Cs82Uf##=t%36!g+q>ACmY>Px$w!V
z+vv+*{I)vzIDrh8JMMZ=l+P`tY3{7s|51K|rkMbn=mIezu0?~*`+R3fGPfQydgBFR
zRL)<WH9@9%Mfo2dE=`tJP>supk{uxojyS1DAc3MrF7f8(w0RtL4^aA=DZFi&;3LQS
z-MWHLT7;J}h=Ftnk-<200gS}2WH%wr=Z3BnYuQpx<h$F3j8BW|LrAR*D)QQyY%O!Y
zGU1OFR`n&DN8X2N8N}S3;;O!uPN-pHIOahkyZf<Ej&ARoy2Nfta<W9<5ABF*pmsT0
z_Gn2K;T+&#Hd1D?BH&H5T0qTod<XeeuX|IbGO^nPfp+a3`zFT4efE_KI%mmp03^&U
z6pFG%b=YCQuxeBmrVTjtB%lk8J$~{e-1+!1a9j@0Oe+dsD~n;$G6AjT{NMsp-`Jf}
zTBIbXaJw^y`<d-^%~p%2j*d>_+<lKju2bUl1url|g>)o9rqhy>AMg1FMNZq!Vhf#R
z^5>~v;v}ChA$O{rjm6%>TC)d2Fv{GASiYiiS|GMsN4RO+$9Bwq^`~8QDb<D#3dPG;
z<h!zvEl)s8=36WEb3>%Syne3|=#6(;gn20d)KaZoR>VXiM>El5sh(?VYi`#~i0r!5
z3`ixA$=RWMi>F}W{n}3@FrVQ(=fY;(b06@^`N{Ta({(LyDE~AHWY)sxL%t6#H*DE8
zh?n)=s3>9jrFF)4Av_dluntQ9a^kb{uln_$7n$^^%O;kwju}na8Jy)AF{6|Mg_o0C
z3Eh3gCOu=tb8+GJy2JhHmAc<=$meBVot(sPBW}_7w7)>OUG~=hHJ;JB)h*9GO9w<q
zxN?Y>0P&dQ`mXkTHN}x_<WwM1CUX=rGBQ`6+uR9Va7?+Z>5S`7WBhR47M@|s<)0Y9
zD5?8Hdq01K_>RC+=Z)qD1y#cB=#Pbm9ED{p0L$vJ>e!T3#%1{P72~G$_o8Bnu<laU
zv6&P5_$#H9_Tv@LLrKHrw>n@<$wj4i>-j0~;wE6)TF;<888g8=a%W6C1H?IvrA54h
z*ZOiPT!nL|cT?L%gX7uePiBv~MiiZ!zHGM-Pr=dV;8AlXA2TI_y?`(_0zD(&C@lwz
zf95W%dsnRF{b>%+m$;@$(Yu{&M*(%U6cxmOlFik20Y%&b)^HfnGMvRZ@4i=oitVvS
zykW7<FEBmpx>cya-{j)HRlc_4Y?pi34Rh;%E*)U;qr1Cglvi^k(76w8iv>O9)ojDA
zs*SjHd%eT6Emf)p_k4S-t@`Ex1*-l#2T11DI=dcTD~sA5V_(%hGoH`r!XvieiCvB%
zzDym(H@oOiB7exJPPuSAT($s6IhhLe>&#OX`XwHuPP&n9^J)E6p&au9@;lr`cW8{E
zH4fvETrC?QLr(>k!xK<jJUNSU>S@(Cm9fj`aVWBWHKL@r!M^j%@N{qtJ^%{LHMwwb
z{aI!C$4SSO@6OYAeyziN6`s#GHtrrZ->$3}%NJJ?$Ql?g>~~Qz1E-UcBKkT92J=sl
zY3Tb>2}I4=*y;rlNZ3Bfh>rf{pDIcY-RKhO+KHgpz+uM%Q(rMMz4r-L_;+RfO<E8T
z@1D?3Mo@b7MY+55RTioX&Hr;G@ULCCg78k5?lzL&Y;kK3JFQwP&!@V4jr_0@<jX{y
zps)qRg0YKdSSF2oyT5GkDk?8H^jZ)KAK(w|3@&V}*^=ChBVda_DfWf$K<%<X&-De6
zuTpKeO{TcIxCz~+Ef=~J_kF&H92lH<OERWBN`OFXFAWV-eskuf@Zd3NlEBLg9U=MY
z9~@S&(_yEyzB3t9^UK`F59wwEwj`yer0qUuShE1A@B)Mp2N#$6E(+F&^E-d(6M}Ox
znS{ufJy7o1Qo}%zhWkPKuTj%WSii@{#3<!JR$sMXA3lK)?I=Q3ay~qv7826=A-Wy(
zjqwI!@$2QuPC*XNmj{a-*wu?^Rf-ux56T`OzHWeNMj2R~FyZLPo88(9q0}(q&Jp)h
z2*?^>G2^t)PzuC|%1y_b5Ut?)3bL~g?@JR)*Z1}gr+U(A@k1ARAx9+E)?TkDu#7+$
zrGw|#DM=TvyYmfUY^C`0*WWs%z<Q48AuNQ)v#5QJ?RDmNv^%Rwi`YV9P*243<@4w7
z9l`jd%eopGf0^6oy?7jUXVhmuU)qaBzF<}J1f1)}O{ufH7$c-?ayY$d{MA`c$uG!|
zBgikd4A*{_NKKL4d15YJy)A?sv9m2}?zj7LVIA|_7LBaYt&J9s=KwWZn^&6#Z#dhb
z|MBEWU!|2(>ulHU3qH(xQ9*HQ=pxE%ZIZ;7S-pJS0e@fc{%sGqi*we5N=6B|;MxlT
z5^6X+0Z!g9X-0&_1IhwacxGT1j*x*wJf=D(?lOoaX?%wA1Q`sUM7!?NsvN?@sb3Ny
zg<W49<9p}!FHqy11L29|3X#g<=bRi1Cup0<#J#UHpZ;hW{c%2YqyMn~{cdOI(iYyR
zRie0qLc+n!*sYg}w0Hv@My+(z_W7?@A*9n=y{(@A{hRR9dOy5#)?x;sL9KA}p%o=*
z0G5ykUwV7-+C(A5@TNHdZyR}iaX1jr;BtF{Ww1=I6|wl~6V)PRh)(b-f<BVUS2b#o
z7JABuTuQ4o5()OOVcfnDL@8!*fxl@B{`IA)2~y8VQB)gdIlXm@`jAJPU)j#i6V1jz
z?XJ0^#jGEPRXsPAuxeK~%YVJw|9P>{P4!Y+yD%zsu?FXIM`r;-|MtzBINgiAk{VzQ
z-WdE8h(=-vqETyV)DA_z@dDuDY+#CluHC0Xoa4(W;AHlQNnHY}!XDsBtY{Q_U+RQr
z7x+iBAAIy0Ng~Zrd1Wpx0TWEgTkI7D{{HW!-x$YPmshRGROV=~prN5-NA-j}#^<Wg
zaK%)JYWOMo=-I<@!?2h(nzrnR#ma7JGweEtDoJHk?jLwReR_1of|6ToF)v<-^8Tf>
zM3U4NdN^eC9sL(iHOtqrO4w78@?i)0&0Q@<g*hK*Xa`GiqZ8ibUT=75<$u*J`|<Q0
zI^hxW&XlK~#a3iU<iOEm#klwaHmgkXY3ylO$k2=O3q`ueTr)woz7-0~=xoP^q<9ZL
zZd_w(RusHFNFW?*j0k{&xGN<trXRUX{TXmkt!*M?JL%T{+)YnZ9OXT5N2MyO-mfxO
zG|%rbzD+)*vl-<$L=p2ktTK1|`nx&fZyyQxJP-gsbE*;a<JG+`qoSe|*pMQ}fa38>
zI=Nkg`RL=6nU9)Yzq$#nyyO0UM~WaI;k`DX6Rwxu9wXdHj;D*0>>wf}_%hv5#QH1m
zD;Hvd`S-~r=GhDS<TxA7*RM9C2KHW(IEWGnN}kVd*^~Jg#^RC$JSf%Q^zM7C5yo=-
z{He>xha$<u^{63Vv_j^QphvH;J3PBHxEfN%i0~eKU1_>DNO7_nKozW{WXShUpRcYT
zDDXVOJ{D&bH*fS)*e<-D%y^T%a*46^c+d{_v9!2w-HFV|jhfHWLTTf1jeR7PX?$ya
zYD=`)_L}vJ&XHR=F1ctB>K((qJ3h2fBovg<lW7QfRC;-V$TT@`X>+_L+o!SV=EexI
zeerr6-nYeh1YzdJSAX&4tmImhk{OfiDb31N*qg5mQ!2mx_jSh`DS`}fV40eOQ>X;%
zi7f^?dW>NNuOy%I?pLDM%F1+cadCB#l-95ike?m%-0z-Dv*&d-I3&GRQDFf7i!z6e
z*C2|<z6Yty&$aLc2O}fn2b!P1Ggbex^cKFLnuMHl6?eyab~%j~T4AJ<%7#_9s?oA^
za0&5F)u?dj5Qp>M{$#q$wn)b1Q5ltfu23pYS{!Iw^4<`G%+8XjPRW1YpO|)qK5o^$
za+^Dy7{C5o(o%?qO~704;0s?dzX~liqoCF5W0%L~KPE4H<-G>5!5HDjHx;ii=WDK3
z8;#hT?x33%TBFFLK9ma$S{#9oluq>)+B?L(6zxAgUDjFFSIs|{><+@lSfldnI5unv
zvyzs!s<Rr8FQ;I#@(BDzV(A}Uqw^=W`(IoC9~UC+NGvb|OnVh_z~BRtLIMteltC35
zqq0sFbgL2^DZIQ2!lhMSFlDC_;`R>#advSaAd<VMeF+}upc(#ES9hzjU1s60_T}&2
z8R&&30jlDswG|Q7S!fUzCt{1itZP`cD1_P~EJ1Xlr@tyUad0)Tq~A3^aINiV$t@RR
zcl}G7E7aPqNU|$l5(8or2!5Mxq*kpy39J{&p1e3QzCVV>D$hEd&a^ZqDv~%ruK^-t
zt)`rORWd!6%=SfueZxF)u1k+?)T6Sxa!FmBih2i~aDF`)j|_cx%5S5X6|gtgFjLZ6
zdzb9ufnpS7KdrR%q)x6(mDi2jXHVR1w%*ZMm*VvI9reF$gYFRjmb>p+BfG?@&@p$^
z5WB$O48Sq>>#~8tJ4wi+&ehl<BPcS`8Edf-H%6J1+dB5@%KiA)1W12RtKb8=A7fCG
zB=6qOH8I&+XdSAwP!+6qhUuV@Z7p^f{dQypU2&f(YMfc#QU8>p4<R8Bf;WcLML+(c
z<NB=j_(w?PUF6I5Y;&7h2Y%PoW!NO$=SvX#!Z7Gxz?GHWOPp7?nMve+-!>GJnqlVb
z*t(g>;C+C`s&~zxuB5XEkFKuAO%F}s6jbl$kFS`rJEN<2e7?vR<mDH(>RxkUzq4ec
z&MO?PxoC8J6E8njxZ^zQ(BA!~Pn!}Aw8Gg=O9`G&+0Xo4knsC%{Xf?u^xo$L?l{II
z8CWZ=xLIFfqNC~9*j@uxC9-}#HMHSkv%t7BjHC?gU~3_T(ZdW4pos^PSFEr(8;)fd
z)3Uojd~TUL7)$l>dhrA98JqPCk03I4ViN`Jb)5cx-0Bq!K23(tKA6+m9x2Dm%=K~N
zJ)oeE)5ncw+e6YGARxnIh_d_sIyFJRPoigm-8vo!>?TVs<3TG*c7HCda8hvWf6cu8
zYl-;XnGsHdU`6rK>iJBr4jJj23l<XqWb{$RUH}nC;#xmJmek7U1RXq5zxs-bk?(-V
zxIu5-5p2_Zts)soQAi^bL`2HwUoQmEF=;HuAi3$j^EGDN%AXx`P(7G3A+}~MKDPau
zR}`Hp|05eVflmL7MxzG+(Uf#(zIz0u5Lk~&cGrl}EGcDw%ogcEv+wAz;#wlbAOBlp
z?)RVl_v@V?gbMGH{QUd~qK{JvOUaxTbgZne8d=*6X+>YrVyY-BlXhZUl8~UZe^{K*
z023ise++EwY8l5Wz)^b#v^Sy0kn>5Cj8RS9v^Kea6+HjE@KK@rkWu=|=~)UB4o_Q^
z=W&s$MN+{U@0zVag8B}jQAarE8;WB0|5`Ww@%?;GL=fgk^&v{(*H{D}rzl%`Q@9IS
zaMxzii9<s})3(8hsjtZ`2cW&N3uR@ut_N3r_TUMHxKF&bfTK54@IP-B6h!`}o0s*t
zgg|8z#rkd}_j{S~em$On0Kdwc_)wB#(0ha0`FC}eT{Y_b>daErrCO2rR^~Q{7Bf$q
z_bKql4HJJhok<3+Wb$*v5)uwc$z--Su0nJiBbHC-u4hoo_S^eE*OiE)Bsf`)QY4mO
zlLv~($jEeUJav2Ve*s(u7?5VD^9S_;iFhQ%#d#Jorz+x8QY@V5si|8honhiqQd`tB
z>K7rTV!a*Y0^ESDX$ca+AB<^WpZ#|J_{S<Xh3ivMN+dfL@GUx{Qo?Q2@C+$9Og8?p
z;`?Q5%|~hSx#pJCwho$O)mxw4y|RvkFO}i0o5$rmPdV5`CAFMOmE+?`vkcRhi{@!&
zrLYDMACkt6$ea{S=8hhLgsGAmOEBl$HLq3tzh2Z|kC8kB0(s^rVwIbZVfH>D*rioq
z-{5oWzFNRp<hkVK<$bN8k&pNdcvIjb3H!nB`$R-Jl-u=<g1?CE8sI02wX6I$1x7&0
z%_H$UQU-pz_&7;r*5!kBGUl6-%EL!@yArSOv)|;!w|y;)9w^Kx@6{+DD1d#xdnxmN
ze?d)0?dd2*<o)d_+E?F$U+cW2qp!WBe@LfR)~rq|v*B^%u4S$YntmFOLtkWH=4Rm~
z>mQIo@E6{&V*j`O;g3JhL`8zDvQg17W3u~Xh6*jJPhhS4L$b_oU?Ct?Fl~FLR_Wm2
zKsh(ab_5Uv<BGKFAK!!Ob+}Z+v9VO%@LC60FjU|6Ceu@}o1yfF^Hklt^J%(|ca2O2
zXdCH*D8V%I$@S%_v&o=Gt~g0q9Tp+O@7poBu3+^6Jt=mBj+cyAM@0*fVK}8PhJSja
z71W4Vqg=$j1vF}CZv}~`Tix}c1fFF__-OiL!RB4zatHKQL;1Kom^Yj?HiO=4$yfdR
z((zxf2ks+=5;4Vp7{EcrVms9AoN7doa$sX%kc6*&lw_A6D(~`ZL{1mM6BUT)mv3EN
zvfxFmz*VJGWR3uZrz8Q^84-bvs@T~3YdBVli7c(WC$m1eWo`a;|8YKSS)_ZZv|^VW
zScAKoT`L|eJ<n!A!F8OX{?qtd_^zC_9qmwQZrGnwivRYLGf5ysCDl7@(0~nDr7H-2
z#=;JUu#)5AE+#w&#!(QuM--iuq`u}3vO61&$21Wm!vNF8b&kned={u^3zhmhVMX@7
zsQ>Lh_&@)=P;>#-f31CSvSWc5i~QqcXL`CBrRzO95t<NKZ-?@f7=y#Z;|2y^PBwcr
z2NXPe^27q?zNl({BC8lPaZg`%HXTz!Ow6an{A&Wwjn4^J^z8p9fb?&tnty$n83#c^
zMn)9^9xyiBg_aX$+X}K5va-k-Umo~J04vOenK}8>-$P6OV~_m*z1jgjBpi>)rTyF%
zT&9XkoY6u*pUS`26D?6<3%P?zbYA@ok7hII4eoj1vZi$?=@SMejat2lBZ%f&MVu@<
z(?&(b<nCG-+F7^LIsbuv%F9ycwDUMhDlK#E$HA$&tF39`nBn8`3$Zqu&pk@|n_{lD
z!xTdUO@%hgibc@}*T~WQ&cUEx(Pj3jD`=ShaaQQI)_$<Rq`0h_aw-rOd@lRiU2wCo
zfCE?JPXc2L6Y0PA3!QPlEetd?E_v0hu@im)ftl>l#0sietonU6_!=5i10uqHBrFWz
z3|qe!r*|CkycZa_Y3Hz}@H$?XE`10{&ak4_pQU})Qw^|8-mg6|JlYYC_Rw^G@y6x7
zGGT&rKfWaKTpZ0?eeJm_Z9Kz+HLF?bM`HI(-6Y&j%$qiuNU-ki{_T1HU%v!(m<zc$
zR5HkXwm9YeqyPM9$b&_s#k2hbr2eNY3J%(#qrWWgr5};5#N}Bvu^Rlb!RqcS-bpWO
zrxT!h^9CmTc@4-|RMbJ#pV7VXv2lxKl4J^sw9I4i2d`*01EFPQUtjiTHFej}SuxK*
zaO~#Bsx9{4(ULul9TW@fNis=)1dP(7Y*~wguM->PT`8TbmUpxaFYx}V*F1aTbdCch
z=uJH@X|1-uMOW(ErEU3?usKh^*qAY?u`X;W1<Ih;T3Sz8Sy}5iKk3oxJx%CFqRoBE
zr0PS9^r0#vuM1m=nr@0+oxA{)Ph|~=YsCC^v-Q%oxX&e>LK1?`)b^K`NjwZIV|Ray
zyFY(BU^N~3LT<qQ{63E>>++pH)d~Mo&;I`Ap3!>q5)oIu?R@{A%gaC%DwtbRN9{j)
z{pxk*FA1QL#ibK%Au38(VFf82K8AEX%Rc9;<Kl;gphpdVu-Dx4aAgSJ+Bk2P9;?PK
z7pzHYW?1#7S07JW0hqh{$)w52OHkis^ME-Z+0V%exsQCGrC-CS6>hDrAL8J>W7!jN
zjN7jw&ae~@nHyJ1tbBu4cZ^?OiTU2&e|=M^o~f@d4y1xSJm+Vpe>xS!Lkom=oqp{G
zZd%%JjEi`c-+#!8!hNhUQ>m9%sPc}>lGB(LX-%}f-RN}aO?0_+IWJ}Q@mON3la@Jm
z>CU9P0`d&dNd8fv{cm6H$!7Na9G-w^?=29=rVF)n5aT~$W<J#P4xU#;?1~g#bF*8t
zi0{AE(PCtd{;e6cu!q+|g+ZA(8we?y@>lNcDF-m;JT?R2ZNmXVGvK6P!#I#rTT6Z%
zNeJ_}GMcQltU^PL%3PD<k2qg;9>U%}BK1nzR%27D!xpTpqVV^28l9iGaNjDn-yY83
zJ5E7-F1cq~+@CI$?87M8o2%)ckJUkCJpx;4aaLO6=}0Xu!u%0_G1MpYW^4XnFac8~
za$x*SL4HN&9Kf;ZX+Q0>DZ@1w)AL{!rz#8uYu|t;#9x9@=Co9JblxH<G@TuBSA)4^
zmm)yCQ&y}072dE%jlXz@^v$YEbhD!mzpTh5wf^9cafflTGpwgNyldu{cMm70QcrgQ
z9S@z{N#UjRV>I>@4a^_#){!^fI`GbF*?l9Z1M@xD4?q{b%iw3L0!CapWR4@R4nXFp
zEEwk#*iOdx@qk2zT3}o>0@}cXqhZC%LJFO3MZOI>5+2*kbT80VHttR4^gLvXLPDhX
zme6&cu?vJZrgfl;@7piPkfzpFSL?yS>@(QXE-n$9x%omIM?9VHH*GWi_E3miGJc4T
zrh%uLf&^e8IPE3kDOO#Z>Fu=%_J5wFuW)$GkM4h;FPE`2U0oPpS<){REgNHw-b+Lx
zNIVj7`nb(vAQiM5eHkA65Z~H$n8+qSm!S<R@s*Rdg9Gu$dS9NTk<wF=f>oIe{Qd;^
zkZl<7Pd?ozB<xAh^?U@HKy09mk(S!q)AKruN@Y+&N-DH#Y4DI38lRBx1Iz@U4(BK)
z;42Ee0#R#50K=19oSiNHLxR{QD7SxAipL@r0HD&x-t*Z}7>HLaS`)3k#Qys6qbNA3
zu7G&banF^N6*EB)-4_LT$S<FPB6J7k;A7FujMnxGkTOK^3A1`sBzwJ#seH9IVspOm
zq((gZ*kmb*kY=Dzlly$M*pnV~2wj_JoTjbrj0*t#Cmh|GdIcZR2SETaMg{40*X*<J
zw9m#@sru$PVUarWQglbLpNif3A*4&GM+*bF45(!Fk(ad&f;X<TTt7d2{e0`RX;GNw
z-?T*6G>=V}b!%33(_5ffKr$u^?#DZjR4{jYH>PgFS(jsMZ2VYG{CUtdgM4zfBk;F>
z0vUX8RiOg^4hNGPC`P}pB#ht8jryyc-N99Nb*-zpv`MK2hjDs<o*5b%G6J(Hc)r1;
zQk@_;w!$OI4_>s_mlN<PqzkC`30+zWMt)D%u6J@-S-FEcB86Z`eMz<;RN=dLao~L9
z5Jqa(OKkDh#6(sKm&Xa*O-GmSuYV6UGtEF^iS&~QRV$J3F}%Ern0WH{#RZZmBJGb_
zO-AvkQ8GQtxa||ZT+k*OzCms1{=gds3jCr6TxVe^$2`LJF{px#^22+dfT2g3hnT{+
zhXfXRPC}Z^_EfYEi)?GTwGS?Mz`->5MIb5xL8E?LzY?$MfC$`(jR&*N^WT9e;aH%D
zj*+n-6Zdj2Jt{FVS4Zpvwy31sm1t(rg<f|?Obji2h&kh4zEO;;CF&h?xWB(Yg(8Rc
zX%?t}rKa2cxf^slJ36{QN`yKL5wC%9x<es$n}nP-d=4^Qa_s@e@W;eD?*Ik~IcB9I
zLIS}Tb%ybbQOXe0cM1-Dh7oBJo{}I(#NVs75^cGP>0>>;@#*j+5`+bj76`7quCemD
zzk8LTL^qHYq|o?gCg^JV?W~3P>>T2*$d;L0(~i9-qgZ$gYt^`^%(`>FYr3VJ%PNp{
z^SpzQ+5co6>Vj&Ue$C6-=_EXep@aonnZfg3o@v*uUz&;ST%4f8>Oko{rw`r}Ch%Z5
z<&yvrdOIF$tdPle8-yk{S!CUX3hUN6<P9gpPqe!6?uLUN;djd0b*2NG;ETu#zNgGj
zM_fVh>jOuZrc=#NXzYil$t_^sW!&bETK8}d+)8o2zP>O{Y#o8$SCwg;mKhwOv4^%5
zbbriF|2o@Yy~u>Zu!6%BqlT_0f8{-ldv-0A*HZeA&IcV$Rk`{i;o}oxvv0K|eWR{D
zvhXg+A_K-_q=;8(ujxSNr2kWDCAC<<y3sub4wl6_c)n^b0-0DWB#MMV5Dt@E1B9;6
zcV9w1$k^Y8h2XJLF)=ZXy6<(E{>Tzap>(0r@oy!i6aT=2?PCC9osp>%2A>^dH3Ef!
zg6iJ$)PV0s5CXfoRi6)-26A9Pq3fodm6i2)ucB+F$_sI?18yHjN5Yq{1P^AH?99Z7
zt6Bt7vKW=&qHeEIX&1D=F!tx|b$da6=EBS17YgGQ(T!Wiv(3yOk~jTsM-F@3gZw`A
zxr*Dzu3E;n?Sx`S)f+3Q-Z$!Lg3TplQ?JQnlvBjL@e-aqnjdD1D<=e}VJry**xU2-
zbH@ve{^`9og!ap%;!IqMM$NXH%lTV0e^+qkjs+9zQu=($60C;mHuqu_v%NZK8tN;|
z!C#>F=1bRw(=_#fkg#<+yLeF$T&-7B`AmZxf{LVYQtqmnmi<^Ig(x6?@mR}gDP6R|
zPrrW3JYyJ6z|#a)j|(zD+7i<N_V)nNC3QR=5rk868rFqV1kW6xXneKMUH^NxB2yls
z)*o()0sDwzl0TL0!X^429fg4*q_VNmkT)0M&2nY&?(};LHN*a&0s@ON_1MiU?|D5A
zVU5A(DPpCOtlj~p5^Q$A)lHGX`vZo(TX@5AX?&yFKPRP31?3dP!XR!y4C@feaf-$-
z?{EzT!O0ChwTEJ{L1n}>Q{VL=xQi|w<Cool`?FBtCs0M1$WgUZztu^H8L=3Q=lGnZ
z7BnqY`)j7tQCsYBJHq#tQQMs{?i2`OWy2CP+r`N-DEwGnNzwYWKhG>P%Gf@uP;p<M
z_B1k}WHh^-N|Gn!mSp%Wqg9MwQ8Y6O<8iF|rVwF<jo3A?PA5YK4cKNMe-4@(XE(Us
z&PHAo(Tnn=UgP@k$RF2ZYfL`qe0h4k<|og2zI`3Ua#+^xAxI9ycfXn($P!CiCSf<9
z?@#l;%dd83h^aGRMu+q8&P=4$IoRBpSO4BJ0d{vP+YTtjq1Z%D%OEBF7e^jMP?N!I
zJ>CZXv5{wfhLCZ(hQPbc^{SrMqDhi6eeo-J6e*_p+@cZ~H==FXYo++cfw+RdcxvaR
zgV`1fxIOm2I8oCGor|c3B@W2BOE@bKD5{qRluOoz+gl)qHeZYubI8qgQF?v#djUb-
z_hIamPvMdQBu&ua;*S|loOy4O4t(fyyx9BH;z8ZcpboZhh4%}F6@}kKkq8X7(4zLx
zaBx=P@VEK(gJ8wwc5LAh+hMTVj|&;vhT>SUELR&ylhrfE&0co<dA5Y27B1n|0O=GN
zD{ULs97uRS0Q-9Z%794Gy<3d)<6^HubvtIgTVQx}qmoDpM4F2C-d`{+{HRwwYjwo+
z9fDrC;(6*bYZYU)*jL;;A8mk&8X1-S+~n251jEQA1l7G6(&EM~;Lfbuq%}{JVt)*k
zB4*L^ZfY*lX{`Hx%t;5dUS80(%6t7QH$R!oEhA8*pz{8V+aQa!8k%SU?Gf0_{j@x7
z(|o*DJ3Q}*oE+e}#P8dR&On&Y(fN`>XJfojbFJF)-Mcajc+NzzZgKkR-8|Az%ZuZ!
zob-n&J^1s;O}B8nSC_C)#k7Wt#wPFHc=KX=Ae^(~idfkn%&!Yvim~(pb-ykh=V80<
zO_z}Ih)cv3khi00@;ue%W{juPBQgjHh?G#znry6_`5ia2Y3!iitzOhzd^xJ+oG4ZJ
zV|(6{La^sMyA@o`q;e2A%XsZo`@i&`2X;~Y#l>HkLbHz^s6R3ALFwA;K?~-f=>$#q
zedV!$Q&RWNUf0x&S{bzRYTj|srZnS|#)xEF33Kkc3d4L&LP)KR65)8DheDl4t<V7W
zYz|8ffo>{y3Wj4ET3XJp91JTgkAm(nG87XsX)LEU14XE^1LO|v!E>Bo)CxfHz;t<!
z`qZC7Xd^qO0Vx9VE%3W!Z2evvI;S${h2f>XV3eK#E`DR;LKgWX(q3dZ5U`2d>|?_|
zH2G*9_j}#g6Fj4Wflh%jm^Av_H>AKbB|t>IR*1VH8lCIf(rFYAVON!@#<z~8$hjIS
zXcUUMr8{eJ>h+K-Yx11jau-8MyEl4c_3+2^Gm0hFGWlMC0%XmmSaDkGur2<%t3p(+
z+r+Qd!_P`s!NN@&gD`iupJxff!?{8==(NQP=sO)ng$?z4`C%ijCD#W(m{&@>D9R-q
zQqt3(HJ|s|IFw>CD16oT=><OCuP`z$rVoV#*0n?v6Yqe#K38P<y>k-0Hi^l3z`XJ3
z(IYT$8!X~HvI1RW*LAE{AkNOH9I4?N9s~~`xrA(3Qa4mDd8~uuhO@sqD45Dq!D$2h
ztNmw@*p^cjW(Pe_ir0laMG{X2#IRA@DC<cKUg09?=1%wCh1n6Ss<q#Mpur=Ys|B-J
zD`HAGGz}k8Hxn?h2A5ndxE*u)GjvTLwlO!b8<eVOX{E+kfgSat(J*TaR0)ojizkqX
z(k|e$rH2PUD0Md8Wt|4r*(V+sM|O-`iO3W@i^g-~@L2dQHPokY44@0Zm&B5EijOU*
zQ=r?jv9WQW3e0=mdNAwYh-v85C^FY9AZj+uF?GI$vtN#`;6g2Q|CuCe9CwgqzbSx1
ze7H#Q&6zM)8)&+Hv3KoRE(Rk#>7aeKY0~wFef)34&9~|S1mpNYiC(W2u@_wTS?ui2
z?RsPi*BB~mZ9WTRHTR(IZv{9KSp5D{mxXQ#v_}<iTF$T*_Q|imiSoPM))nuhyX_9z
zGp5@5j-UEn+#KZyZ>UYoGS|<?dQO+s<m?NOgKqePxRx(VynTIrDs#jp^@Wc-?)d?*
zi^@gKu1)sjd;JC9d3<?XmAcDLk3Sy7+(?9vwu^V$)qXAH<~8BT{a#}K<FIZz{{I;J
z>Zq!_b!$L`O_y|cN~m<VbV*4GNOw1gbc>|YB?w4&cS|=&cXxx|;=SkG^Lozx?zn&M
zF^Ij_{;enGGoLwOLoW|L^;|szpqiC`*c>%ig|k5(sG&kn&1t(tL_|7C60kR3+gV%j
zFb}BcGUQxy@BG4m>CTg<|2*yytoyQ0(+?dZCiW=Y7lG3?-nW|wg2+Z6CPgaS)Mfz)
zD4C(pmQ}k`CHd)WPW3V2u>3qO4<@8W0Jfb^i_cqXRGmkNMK@U>2S8q6c-yrdv`<PS
z!L}{JTZZr`@lKnUL}9)6tG-(H>nkbfWq~RzM@bGgT^$b^^tF>wyl3x!>$@CX7Bx4u
zGuou%5PTt1(uthhqsCu^eOoAgifvLj3})?=R8^ZjI6smec^9672#@xZ;^OExH7GDe
zAh7BL$Q(FUe;SmJoIXXb;=ex|gHbSVI*iUE73l+X@*!h1Q>0dW<io}$<2jdVqcP9Z
zS;I@W>Xs42BFm=0szhW^&Lpe>Jt2pM?^fQ)GBPqT>Uv(POCu;7)?*tEHorEPe-Il8
z#5(EWp7`BAmP%F-xgXaX<=fMlg4UvLp72e;TgF#XB6xy~;GA6xP3$q$qywu9HziUr
zQ*;#(s!beDu%bbtuHzKPT+&uL2dqHOo9x1x_uOLJGns;KJbx~PZOs7<CQf3c8SmK!
z^e~Z%?E?iv*BN)u>ME=3`es3*RqhX0ql*q70xVro$=)E3TWW1_P8&ccA3Dv}ky$^A
zy^Iq!%av<|W0S)?wb9!JWj*2>JG84=F!?{@Zx*nw@}X1LYo2$TKc90P_ZpMq++N{J
zGCp0_4H6n%^qK)IZC!8Rd|@=6r{vTmsttcY93IUo;gYnkXLxJby?9VJe|ui)u(>So
zw*vn!d4jHnMA5Rez~6?m<7%J+{$pkW0O<6ekoP~d3a!oohV%aUwe(V}T`qzo3X7(2
zs|2fIhcEkts(~@lc}-U^-mfadUS$3O<gW!HA}T^rN^1SYJ>dvKcr+4w*@?v3Bt4mg
zvbM7b>ayRadv#<#2;~K%Spq4NuR|mjnb&p)wVU~pnEoYIsZy3+rc(!V-tUw#@23H#
z)3S=N-vg{H!{jO#?+;uCJ8mhX_%bi$RCW!xAIGvD@l6!BlRoeLL!MCWH#D2S#MgU}
zI^h@?xesmI`;ZhVjlZ_`oQLd{Bj&7WuBpq97L1>rj)V*WycUh0DwR$x10PwAR8YR?
z3-HSm)~z3(*41p(?G~v-lPsXw)bDdNlic5B)I8kmrnvY$0uH)9_fFVV!eVY<b)(=4
zVc`jRpkH^h5EBcF!XjG<9WA<_5Zbw@EWAF>9w3rVi3?3H*4R;Um>+2bU+UfpSdO7p
zcAg8}!HN<eQ6WU_P)bI|S`^hvw8N}65{qy^%5^>V*}nh)q~#?s-+b%FP}<w}hR}a%
z0Td6E9$qARgLMTS3O0Z5uKKse#^2KATzmZ#(ZW)fo}#6a>Z50haKRTxq5Cbnw?J>;
z*kum6nzUacwj1PwX^(6-77%5vLu|A~b+c|bmS{GFX8iCd=dcb|H9jBwsxM$g`KSS@
zAyf8iJq3@w#{2Vj(g(#aWW-ayK`1p)M=|^gwg|c~$lCmf`+O0KaHk^Jkow5qv(KKh
zpW%nqmzW}7vbDLP5%avU70mQHL%L);coH7hf<$!8JcrJ*=nTUxp*Ig!rA@CMMuIl@
z;H#{(X`2=SrNx5IO?#;73CTElO+XDsAm5d>U79cx5?b!`iaXGHX*MUdJ8VDt^(fdf
z==CU;vN50(d4;N2EGS%vW8F#`O!ndS9OR{#;-(wvW))ZV4j`7&eAUTvc3mdNk-M0O
zHbk3Bi03^dn<k*cpWQ}DRfLc9#O^m(QW6}gvZ_C@O84rz^k006-nd}fj`9Ln+BM>m
zLlzr7s@0?pBdp8j{~p3k&0t*N1N93-?eLyPK9@^8{|{anAy#m3Q1_R2$FXtJveGua
zZ<}9d@)FvFty9m&m@DM?i+8<Fc<7dSNR=z|=_ZgPbw7Wqtow$^L#;46UwPH63mLCK
zmagioSMXB=sW-Dx?Lth=qho>M2*k`-JnVsaf`55u(1bSI691ArDe$>SU2QcWbqCd3
z%hsi%%F>OzUQ&cbuS3HsEP0fb<AHY1d%>pw6XYl4WK<fvKgS?U4$mK>`s}^wTf<u{
zoS405^fM~A^@~!bSt+B9yD9N)1}e#3e~mPRRDedzNm2a)X7F~Q@KvB<8#=r2ql(F7
zOy<wk`T$68=py>J>HQh}j1Y2Ie;01NwpO6zKUIy`+<n9qq>v65O(+1kHV&anv!3k(
zD^y}{VrUhdPoCB}fL4!3b6IJK8Sw__PaA<jG6R|4r{2)ErEP+Y9H3zmfboE1X6?6y
z`jMgJql=6GU?toL37-w+9@{?@Oz_%-+K+S(wKzvHV5Z&E{LqK@TM6~QlNWVl(m@b0
z+GeW)%B=ltu}Sf6p0ZIk8S?610C}A}NeL~u%@K81)DHL<GiN3TAZC~M0mY4c{B~Qx
z$2{!&2ec_<eLUn9DWG7I><4+aY1R0s8tOp+^8&9+cd`Y^tMYFGCQxk8+c32p1mUkD
z2~LTodC={N4CJcma5ioEUk5F_lPy$aOxr0?P;oTb1QU%&`e#=or5tIma0jigt@T9t
z+!+R~f;sw|t4mPZj%mi`;%hAf5tGGcFEvh^g~C;2hygjeoV4_bc_q+`fVlEmKzva~
z3Q$y{7I6WUrK$ncMDE2G+hg4YI+wzRH{rW&4u?1{t0b*n3V-yNzLPW`*q#VD%Ll`B
zPtpwD{LxfC#``#gGeVayk7NXLjA+2vp>K@h)jDx5ik9bxOAJY6KnM$tD?|xPIj!Q=
zTr5gBxes`;*LRxD#j75}Z~WQ#ch%b{WRA376nsP-5w9?}Okr7}&D&uOln+6Lyla}!
z^6*(G22%4hGIg|pW@2PsWFpmm6=m9x4-zD;A)BzF)_w9g5K9-~0rDUezMGt`FhQ*^
z$;Hf3zNAnIlR)ywCLKJ`{Hp~$BVo%ac(jp3r01TBb9He;o+cSAJ#E$V3Os}oQGv*-
zsHp7rtJ&~$Sg{7z&96vkLFuP1*P`m~FU^b*(6kmV-xSu2d=til6Q&nSDFL|kOsahq
zdV%n8P#xKsKLq=hV~-Wq2R-bDpvVoZHrj)Qy#g1dYOc`@@tMDtdg+F~iSoe>r9s5^
zSeVLxPJN!6^hQ0>1~iZnA8pc(Qr2LRA2mu?18A%w8kYX@)$`=G9RdvqZJ#!Q=5k>>
z#)^_>?h)Vg*FbR<wRzLI*83{3L3K~;-?Ty!nA^T_K{$2e^ZU}L>I;t+pGl1mIx5kS
zU-K<0(3;!iiD32pBU8_QYLP4#{Oo;y`)KoKbo%Y*+0u02-prd1unc2E34N)wQi|fy
z*UzL)FQgHERkn1{u|Do${y8Rgf;=;}iu1R=rxG;u6YI(~)!2R{I?2qwUWI0Q!_bdN
z%^;u&>eb=Xs*h{F_t|Y=VVjN~8$#G_7><iv{)34j`XDQ?Z!&6guCOj37fx1w^mTd`
z#s^OF-Fx_jFR1Gy-?MZ`Z)IT4F(6^wTWljL_QNkVysotv8|%u(gZEacs4mhadne7q
z9`$v=((j|>hZLHHT8(kky%o8wAMGn9{|~g1t_50P%;|3KpDV@`%B75)$-9ezzHISG
zM)_hQqS(%uBY3Q-QcSo|1`NK&v8WQ;D6@$Lg={DAM7ei!&_uZWYc5QVV&TgdXuVF!
zVv7aK4b&iaWa(#>U}23%>Yxcg8go)XK=K35mjXGn>XG5Pq&hrB_UhDR3#qT2(MT)t
zmK&-)-V>FquRy^x{AhEM%(?LJw$cs#?F>O%c>9q&8d~H7GKqke%2KdJ`yrB^Xx;gz
zPzUP_bD0amp)Me{PtC?Q;<hk4HkNX*^k9dSWS2?r<;<}5Cx^3w4VuZh?Dtsrbbh;=
zZHEjuT)FenjD|N}u)(|e#1m)indmdLh%S4J{=12cXbNLhAG!Cm_is8bF%^KVx3(SY
zD-o@WAgezTlaL2($!-$2ZKDAVQ+{Jz-N9JGo4sH$2(d*zpYG<AYyrwsE3Dg8Hr*<(
zx|X$qAGG^>DwPY*Nxi;nKIW1vNSXwtZ=?v+B~!y;%M$-na)=q#krz2S!9;KEI0M$r
zjjg7tcqt;0C?yuEI_@+x!lxDtF(`7CdrcJ_R<hV5F!sqXcp;nIQco^W@~hsZAXn7C
zZ+|QBQ*Ae~OY*5aEcuF2g3dS60go2H1z;MGc_<yxs5VgBGPaPXltsj5Xt;ZnK&s32
zqqTkm=++rLDr%tZJ|9YHT|FjwQai-%Olnor85XpIMYDWFvcqWWe^l6XTS<LO*mEv?
zHu-hPx4D+9zw-i3gx{0kg{x-3GH-B5$jJRoM+DcGq@;q3y|*fKJG+fayhh$vx7J$u
zi>}t>idB~xRxgLG3~z``QwIKITKo`CmoTT|qSFY71T2-{1jjp3XmTi4(^fL5Kw(_C
zg+=e%A53~p4TI8DoP0Hgg6pv=z%s5=^El{KBLzYIc+vATg17z=nhiuH&c9Z|@q3O3
zm(tnU2}~XhQ2drvgW;b`kQw}%Q!YRDqO_L%9NMb>+DRMjyZlaZx3E#r(40`14jCiG
z-$%Z_I5bO)+8q?n!@sb`fB%jUug|GVgWZ{fiGfR*<92P#uN3Us$3VsKJqAHZhpcru
z!=30?ZHySL0)~Rw7X)eosu3L?nbsoY+-ff$E=^~vU-alAYX6`>3`NB;d>ojok};5d
zX!yZPWz+*@Rctz>`xAGrGR&2MF-N8N;G<`f$>0P}kgk_+EFs$GWBz&>C5bA_FUMaB
z7TGZqCS@38`m$$Zf8?LN-uZ_%P4A3}f6~T{EUD<v#2;O*I<42}FX?quHOaR(<^QUG
zCIYB+&r{qszI?QG#Di}GYmEL&{^GWA-%wnATHlWY;SCCO2Lt5L=QO^bNLN+D5!i6V
zy~7pQ^aD#g^Kesn=C6NnCWADoFt&S2vI?~!Ux41?U(fDO>*&Ezy6udF#^`L1ox$SO
zm^$q_|5-?qTv1hb%aNUm=`GnSJ|Y}UT}H7yW)>czpXG9oZGK(?)WgE6&H(^_rWCua
zSw1Ave)zBtM!ZwQCB*lQP$WOd?K{pX!hc|U>+i7wrYt_MbK%{AOLI(d^Fy7kZWApT
z-y?~sv4M8wo`8bCfo1g<0m;T!gUOd!&%<0?d;%{WUG>js8BP<LYt5XSAm`&#w5$Q|
za8?BTldTVNdK_560wzlDFXbWM^9~q}zf?eY5xXbvQtcM`f&BUna{XLuxp8;y(O2m|
zO909MC>%-}YHF#=@q>?aD34FAs^$X?>CuZQDLUjHw(BDxezlc8a~akqZt$Ylg*Dt0
z53e=GuejyW<<)*%N%C4PCq_MS_|XdTQE5})W-E)wEpZqIHhk&}nZkEi?EUy7xkH&5
zFo2h~$czbq>Bd>=XZU+>8R-fGS$s-P0_#3akduYM8ZYx+BpHJx9<WHUqUv#2IAOX)
zr1-rP5$~b8-a8e3tCQ|KK}<H>>u@@xSics>oT1mHSTXF3iOHoX8TG2v|MjtiZePel
zDFopw+B%0^+H*=D`<!Xd*Znunja4>?uU~8AU0uw@#J=P64v@)5NI>y5j>EtSlmHa|
zU1kpb>i&pfHU;}Bo9F||pe?s?gprK}cEVDvT!C;jw${)R`$vkP(2)j^SjCD#r)&Eh
z6Eh)7-4T{p(wSNP2<4rw;;jxp3U{Qlad4>72C@lsW+&NrGul>c&qDcBa6?xsE`#>T
zy2NXqP(k22d*jh4<IKaR1WMtv5HGEwQtbK}Ylo`>pEeL90v|=vXr$FPO}@M4ukDDS
zF93nmb6tLV4|HmQCh_D`7BG4kO+7zc)B`g9%0RApR{y~4G)WI!vZW`F@WEh8vir_=
z0(PXsW(_=;LtEe3Y^fL`J4zA8$G!0tLXkV*tAx|Q$vGL%th4h>nC>0q6<W3Me9-OF
zsVB=64co-@&Uu?qr;g9hiQX~Q*{@4;1E|)K=mxZk{XlO0iAcy{OQaJaqIi^pTF0DX
zr|ZVP#&F7zdx&E$yGb*Up%Gyk2x=pP-1qA}P^9@-<DBD@u!c)L?yPmo6wsW&|A9m}
zzJo#M5UDp={Auxvyy_IG?H&BV8e1?}TrFy<0Pg2<dMhJNvN*zyTNWDBL9I2|oSCSF
z0(W3sFoCqX(CCqp;ImkU_lykosmM$4?j&)Twexg&hjH=9-WH=a8M)2d!+w-LP3|+N
zsJR*NZ6*E#sWbfmMPpy+B5WB}?qIa9MJoL;D2osl8LLQ1@P>TFmuJte@(UdTN2&xF
z(AGyc=+Hqzm1o+poHp;1*s2{qVx4Jpj9V+5vouE-b+;JcVqmUJ8Y9^eY9dgGJNv>l
z*lSXs%2$%+i2u1LQ|i2BYs|*=ldM2pb1W`SK~3qqDH1SWj6L~CLEkrT(ZHo9bHQnm
zd^)m`e0<3gCr&;3E11HITc|J?fk_sk-&T>HE(GvYN2Dm0qnju;(k{Qm;Xok_GY&zK
zYho}>miJ!ktiehp#26joY;KfKvW}{KR1ov6qEOUKUVVj)ld`r~y)Lh4n|Gb0Qr|WE
zyvDL$pyc`Ec|c;J77zsQ&r}|Fpx4uW-{q=Ug1j{N5M5U8w5#TJvz_aN+UZWwar*-2
z?&>A)(24-3_nqtJ5s(qcr?mEu2@&duKsUK2xbg3NUGnIgT*ZGkU1^cv{3OQmA+bW7
z^#0hq*Ll|i)$-~h-gFm~(P?Ua7Q%RkT^azzFz&v8o7RINvVJqLuR4}ijuk8VrZ&E6
z<Loy4<)CfdOPdA0dw#$qy@2hQ{$Yiu@NWy`&mlF7E^N4C2mD+HpCZuV6BX^}fS;-p
z#Wqkz7?CPS<@cyl*nI#+MDnM}qruY0T|zz$@(mj@E+FB6t?X{Z0S^iK1vaU_yf6w)
zC3t13m;zmIgHOU4BNTCYxiB!R@#h9w6D};P^YM#vA>^v%X3|}p6$zaNr+3g()pIT$
z#P9)$r!=q?QsZ}KCTaQldDR1{v|7d%pQoa%9L&4lLcDZzjQCy?(N&x8@X9y6Tg@2R
zC_n%4g`=JO&}CDo*=xw^w`VkLl7JfFGL_{oALDJc+lY%@Hdi>ixtBwHS*ue1=O4i+
zrIfZUN53Fk`za7@UpgnlN7`ro&S5CA@8k)<siJv!7b|yj^PN_)gGzkgN0s;+e)jS7
zbBKSyqcO@vA<&aD&4Ua@3k8ua*&z^ReICnkjT%~n*ABqIp~_A%_ur8!v)K>YaIvVJ
zstoA-_IfjGDEiJyPilMNTz3;y73WJ94{5Tc4bYX}sE8_=5AmawG18A;v$-F=zFqUe
z-~(03RTE|nK<d|lfc-?j570N*b^YYftfB?|PSWUnBgrNoj|CuS?bh|1TC8TUo9O72
zZRiJ+1Z}cfqOX|r9EOU?ZsLl6*>w{)N$GZ1k-DM<(OT_7|1xe9p$H~i4j|4Pd(`f^
zh_xnX^}m#J-RpAkKbrethDX{WO1%+S@(EcN=xC44Lf%yAus&Mf7y+pyp46KCs<|EQ
zgr9TM`x&n6RRU|(L(oMihpkPi&)BMse^96SB_|U_^aYmU@~s&P4DDB9S+(_Vr9GU{
z66a=+KCa}y&}sH=6dHh^^m#Z<TL*yQsl73b-O8iNTm61zrxQg!A*>%An$3NG!f!#3
zO=vywxQF|ovs83U7~f%$Lozub_qhDvfR&G-UY(VfI;Bm0vuchmznyiEK7u_t>1gb1
z8CqXO%-649ANG2953LWRcsSU+w&5EJ>IeQ-8_6#hc^zK9+;mAbNs#*jeDdt+_>u<f
zi_(9coXvUuFhk?mV2;3J`$(kYxADSAZg&y-40;hevVDQ<eX4*Lk8nq=XKh{Dn`TA>
z5g`Z!nw$*Q{{uQYj7T~k>`^kL{R$<OaK2APQ*|#a$@_lTc#(vp;`qZ{wiK3kVuu`m
zke<rZW83fiOe-1vy7PIvBKH^H;H&peOCysU<_A_=XNWfXlr(#>VE+8$LXbD`(5~1W
z<*0CEC3`%ZIH=2e+lMk=q<V=mc~}^O+PO{iq{(s7II-J!f;<UemEsWvQxd-9G+0eg
zx+=<YJ48mZ%(VoKm>gJ2hYQGE&v3^kr3%a4I_EYJv2T5cWBDwfO0K6WK>yZ_e{Vc~
zP9`jD)81P@BQ`fR>mvn$LoF5~hrO4M@q*Bd+4i&H3bve-dLgC$$+@$+W>wgA<M&Fw
zv$!NA?YE9uGD>U=ube25SVtr|sacuc7>Hd!eJ8O$b#Tc0>A&n~S&KLo_f=noR79Eb
zZW_3zxk2F$g)Ti|d3M8%wjljYK1I4aiga@rUL#e|C$-<O1u~TEiX(mvm^sJq<^a^%
zcfN8xuC0qU92gj=)@?>+rAw3E&KeI3fxE|O6_$mJW5aww=#CIQMmdy6fcJhi=|r*j
zb?*CiiHR$F-nk;r!>XS<mWS@1<CMAm`B4rH!)4TOLUB#0-0=O*{Q{)xK$kJ8zB<$W
zsAx@Dm{ijKG4F!jLuH|U;dzmPug%JLsk5ZIRe0KEQV@u*GUf+(ZejyGipr&>caa;g
zrHeqBOa}d%+3j(6W^<ammX!vD=POu$bT(#<k`GOHCo+-tPi-Oq{;Get&V@RE+16jn
z!S!_*u5<>pcfz*l(9xtjVgv?)(?Ei(WnpMp2i5Q;0Q`(GzAh||ya25)`e(2)6xD)n
zwZl4fgowZrgLnAll^G`Klbs+#WLLE`U_Y@;j(NGPs{an24POMVT5(0j^~QfnVcww)
z170lt9m*4#ds#&cud#-s<RIH6P}BIK6qi*fjqXAX$;res(aT_=UJ84mzj<U8+}#@}
zj}8g`9w6m&AopZXj(DetWn@=m)(-3|QP)rLH(AAsg6H9sPC#RBc6GGekj8A&{0fQQ
z?#E-TQ~|bDNiIRC#0w+Yzx*D2esbmkNSjO&;(}x?9p_b`G-~p;6<DcZY;V!^crJcl
zgUVKe4F3W>P^1Tt(EuR*vO(9tAnkswt#2!7oc<pd?XO#>SdFlx`;3$iZAE4EX{7oM
z&(d?zBsXJnV^cGBTDTO3KHIFK-RJTUO{IM)el?f?>&e5}uZ;BneOv!=b@vd&BqYkv
zhZ14Gr5c`;m2sar>Kbz(5xJ!s+%oqy#Y!(X)}Q!M>?nz&Ff#S1i{R`+(Q;gIqUKmq
ze>_7(BpZSf?2~!DB8=i+9%#3<+rRHNg|=qjBiQ7MecoWh6V%wnvv=o9Io~uJrX3d~
zdF#FT6#jDoVlHt}o7`r$iG8BEf8&9`E=`|mcTC1?lPgsy!R21ZoKmifEqW(u1#-vi
zRM3&p(Zfe*NmnS}B@F#TGDrU-j6moY$cZbyGjnrE{J&cZ;QI`T4S?#RkeloGmQ(Un
ztd}oehQ&_#eZjN+sNW(l`xvGa<6!N_Ry99usWx+8zp^8G7!k~@9-&^OnZh%p;)7|^
zoX>lC|Mjc_gA1p+c%l2!zCPfoTWn^7P<&V4T$4@BdE$N21&*(w*^-PVxh*z2m**Ah
z@)KW@gH1A7hc#$)Bk7m=nKYSxo1zei-C?MQ{(j@^ygJv{E8xU1pt<)BhJru%+SZ5f
zeGmGBCy-f$Elxm>YqcQskEv0Y=y>i~p|6a-!ydJ|Wu*bE%0eG!;tp!SRbfVkvP;MD
z+4Eo=J-2micQEa`;uWDYlw1xczkBp8`l+h^mH;c0j9GMzO_s?o&o2IiEI4Y$cK(P<
zLn&~R^CgRH=0|lI*1)a8LO2^w>RMFAqRiqakXIP&C_`FYoaD?M-3w%G9i<k2P$yvQ
zMC-cN?G|z@<eK@4a1ep7c$v41lkc}M>mwm~!9PcSw=D6>-=sUV;^gcWn5uIuVkIsc
zas-#B1nhAnFj~0-$kP!FnNHY)E!_HI>4|0^fKSCs*oF-$ugHeR_$oPimcKv8WUy!N
z3Fc2%xkqxUD170?`FeJeoRFE9h2^#0y-SxLmBOAxW}&w&j|!5V52lROFe8;`<qC#o
zZShMH@R~Ih#f%e8*R`%wvh%iur+kj^@6UHKR?8B4s@B<y`!;c&vtRbo0>lL(pWLI9
zFj30TkL|JD8--BXYUyl{b$uWDUS`sUVGLQ$n7xX%ef4&Kw|8!yZ+?4k&@0yV%70cj
zYWMk@1;V>_!f0zWr*!QMMCxA#YeHGcMXcF6Q~}QB?U_;+Ev8eTMn~Qr{#vFora7Nz
zPZQZ7x})MOO_0;s#mEx*)KPy(*swlo_S;I7vh`aycD2mcUU%*xt$2`UY}1fpV!T3r
zmjfaeHsF=3icGZ9%1uG>5#HicZhuffKxr=CUeF0$81ze5>pS3e9~wK=9RmHz{~cBV
zAIw$cyDRxVLrm!(d}r?$%g{f3($><?V7KZmPaWE@uk(~jNI=zsg%-%zx9kXY|6N0z
zMxg)Qu=@G%Ov6CaGtu7eDF+_fb0TVD9mDd*8ZW2T5Aj#`>bivnRRxRtd?`AaMs9Oa
z^`3l?dasAeA(`=S&oDvG-+?3&L$tSTY96$r7PxOc_6x&ni5>9A&wD7Nj=Yj*++a@h
z6I(ud@Wp<obC`4)w>dDeTkji90Qj9lkFKjhxd{pl-fkkl2gg33GrvAp;6HzcR4{P6
z{p!Gh+_VEPd~ghVNq{i**me=Qd@+(Qc(UpKLQ7gsu9G3jt5(nFJ`RjIhe#-$@EgSz
z$=^IOJR+RWICP@!U96jR62`9G%@&64e!b)Me-CN)y4cgynb*h^aIN+;832Awl%xnI
zR$q{|Ux1%d!_?h4*{Hb28|V&nX1L*DO>5q8{&_!Q=K3t)Qtb39bs_K+X#t;nu#!_&
z+V2WGRcs&Sj$CBozQiQN$se~H_SLQPh+c);*_P6+xtq>Z2)0SLF|(m@gje6J%^805
z6JYL>K%sQlvK_&>@XjXH^oj9-AGc1tz$%biozmL`tm=L7-@tgwzBzccll?i(pSPq>
zM#$pSHY$WI)!k~gV!b+NW=3=UNBt;}Y-tumBEY~wCba?{9j&M@%PP*nG$*k)*CcJ*
z$~^@BBjBVtXt1T2G!qGW^9@OhxFVi1iSpU9ysZcpjhQ)A!JYI#D@(anP3ewhTXRyj
z)*2u4fxf;gH0ImT(hW|$b+nx_KF!Y#_^ZnMXUQiNLGi%^&GQ`(ik+@+U3cd@QDJZB
zb;f9<QCE#qWtfh>SHXm}f(f^8-v3gyVo|(rY-pS~7v(~B8sE_i-H#7TVk8Y)7}A~=
zcQa*D)c>YW{bQ)1S?;adw4IU{lVY1x`GjaQcK_$E7sJKyZbzSxA0V{>IS+%$6G0&k
zuJYOdtthA9xQ0vw_%7s^0Wm3il|i`8{Cv{UNKlJT$h73@!|$;6V=AAF=bO;!|6ZXW
z&fi=aWcEZlbqKW-4GgO<zCo#$7h%U`u+}>qz8JT=@TtA}J~5=+)+D~6Ba_T*ackPr
z`BUXyPNjJ}=b3tZjf1ixsCalpp|JGP-{N1cL82{LJo8_|=cB^v!n0+-8!!eZNE_Jl
zKzC!-1Vu(gv6LafrL~|DExV0G9~Jh<e?uOR=oQ5~^sO0>)=!4hoz>s+kV_PUJ&fDJ
z>MA57>+EKtb8sZWj#kIiH8RWPDSnciaI^*S4nie1P`IV$hLaWZGf@sUE7dbA*4bOk
zS7pR0G-tV^Hmhzh>Kn5mvH`ZK(oQG|)y>nSo4m=bLeH#yA`A&re-I;dF=kqQ2YCtl
zzr*9w4mnge78rLkEN-siKOG9K1QHU4UC2##96m<2+o&1jZJ}RK$Xm|*m`~VP!L9*Y
z({f<J8KC6hb+RS(JV+1`9;ZJl>kzIxuCxUp@qNgFZ*}z6c{@qvYv`So8vDzPX7xux
zf;jW>Z7(%ri1v%Y7>jx4L0n%$9iH1YjsI#H{;QI?gqSK(M#|<gsx09R=V7m}=Y1M<
z!^x1&x_CmzeZaMzO|9f@&B1=i?<>ErE&Su=mypt&PYIOzknGI&cqv0y4KcxES%0G`
z?rK|zse+GQpRDu-`jnd{HxVk&tukV*Yt47`Y3{W#vf#2eS33;@OzY%jB&|;j`@T3h
zdd|REXARBI#Nv6q{i)fPF@J_^K3iSClY7!p3|I2crhq4qz}dWiKc}<PfxEdxu}_8M
z*6;t)6woV0B1YtP#4UT(jpXFvVbAhJKTY1sO2VYWVPK>5_~c*0#u+p#iznY5Z<GFU
z969O6y6M`O<Q1SM60)$_29}r{ouNf%Jy^3{g`u0^EwwILTUs&&A$JQ!L5QB`Cf$Kl
zDl~z)<=Sn(4qc6slQt(B)LfU-M_|LT!i~7k9m6kn;PLzIdc;)e>#{x`Dinl&Jpuo`
z$p5<4idhIkOIHAvRsk&JnO@jr<(i2tk~t?-ebfqCabybpVaUq><H6)!KdFr`fkzGc
zRn#)^=>8$IK*dG&2^{j$1VAPufoX3MC%z1_ygnJCpZmhX0^bv~a&%}+{UTfz&~(sb
zD1}h<$w5&_9LBzk{bfgh4a<>x*VTyN{Z?C9o)D(no|6LmZx1SXo4!0^>A#LNW9_y-
zV*b{7Gb<dHAj*lxg1FC-+;Arvo6xC^!%34??Jv8_bwfhU)0^q_+bfLzT^Sxt%(5Gj
z%(-GVZ1@aO9S_UPq^FUtx;*7xxJG)?IY$dRn)5*^s!HukY>bTbof?vD&31G~j2PMK
zicoHFS4z4fm>yd_vK9U~tHU!1bEie5J?kZl$DIXvn_gqwmK>A%o8Wd|s1~f{^NGz~
z^0II#a{FDT+hP~-(CQ!v#I>O7m)8%~h1gFVzt5{;AqmOs;^#ef9^WP=5<7;EBG=3o
z;4?A!NZfV=w)<>NE&K=kaJx$lyH6}dWShpYj?l|chd#MRb~1^czGUPi`~BCKmml2n
zJx)RCb`Cej#?^&dz(xW8IEb;)NWB=!eE8hhdh@K#jl#Onab@&hU+h0S^nZQjdAzU{
zDhNbMKQOthfr;^kmQc-;U@W$G{)(eOs1pG#JmV9$KeSk=u^nX<DVOaB^ezGlDP&ph
zav)qvkdzJ~er1YYX*L!Jf3uXc3V7eIs$??lA!|X7*?UDU`D`+{>j&RHXs`YzOBisq
zmtxV}3h&#F8)x`4rI|DPHtfl+SF$F}^WW#C77*%$FUaXaqx5QdAx`jDh85J$re=wS
zeIGB;5$x-Iol!UryZV7_t=%DB_nThL>!4;mDJvU1Ig+LYK7??77Ttw*xe!RHZaN=%
zUEU^5v5?O?0$W07uu0Y4s~tHm0y&h~igeFn?TfFj&YJ=kcX;!4Pit@K6hixAvV2@A
zNB5mnMZ{dy{c*c+DB<(nckH-z^k3J%UXOc`A|CU-^mtAGv9xov*~sBj`Nnvt@79;}
zKKbOGT3VUPDBbD`b!S%q^B(u>)_jHO15%PMuO7Mn^e*XV+wN*^k(_oy(>p*o{y3X6
zdpQ~d0|r<!aUm1LLt@~CDO1@o-lAmuMrVUsAQE57Yv$HO1ntTM?C2`0;%Mvoo90zl
zbMJdb$E{QPxP^dkex#d6!<r#VsO<*o?(o_F+l?lJHK&F)JzM&O9(bJimfE(0*86Bl
zIA5<>pp}pkZeh0CMxn<qCnpELGbI2@Mow<sm)2j8F@&7zJP?J@6^fCLE*QR&^>tiy
zw9@BaIkNZ&YmPNPDXibzdf52*?R*~|H~4pyhKshuW5lANG&QUMb5E0xi(+*zwX&=3
zC&&4xU?;0YbYsK5B!RuHD8XY)T^u$C`TOo&c=?n{O`yP3(o*-&5+PsiS!Jk8>Gk2-
z+y3_)xSZ<LpP5*9eqGK`WF?244CnQ4-=KQe4@@7h+SM*z%*k6_sfO_B#O95(!L7*Q
zT@vo|vWa1Tu(bmlf_Fj@2Ch9_<rK(hbFLgu3B8xp=1ShHnR~dpawWw4{wohn2rr!l
zs>fdO>D;T;G8|S(2dAdI{r-z?VCY-eEzZdGV)HBSDaK0S@7jM)q5rx~0Q~wZObJ7+
zGUMs_Vj+5(SGHg*_Jm;3YAgj;%wSOlDT#i2;W}aazP2w5g6yaG0s4@Dx)dO(7_gD7
z75G?KDxZI4%W6VuYLqg9NDsF^drEgi80pj9{t*eaonTo*kTQArcAw$YDgKr3jQ^SM
z#vb!sB==wWjxIX&?WGyIm?ncK=;q@w`6gBLWeMqugEqIW%1{PM{*muO4D9JR`Tf3L
z><^|APP9LxPT>=6%J)=uL}veQ2#jQ50YG5Q?)<DV{V5uy(Yw1ZPT{a6cvE1$a(t_B
zz@;;vac6jwI`{mZnd-M1#$IEo(0)={lH@-!9?xYnKU4ad^1YMFa>nvH#+(j0-J4YU
zxqqcRtRRt(xZbjXy!LAl5AAW<F8<5;_MwPiL?~+@9htq_9i^hIjA>-TsE{Z<{@8=Q
zt+pmE2K-;wV+!>Euj649a>@%)4fFf??{lAX{=y;aAZx}{qu<kX^U5|1CmXemtfWN$
z{W<;PT*rxFY-xN;DSoUMoWn>W<C%@=vXvCUCw@XjM()TAZoQ>I4pl(OeoYRKzrnHm
zL$vS&^345;Fs@!_+A5nG(ANG8wGJ>~Nz`9Tuc@i2;f;c?bW7sTjI7fa<(f;uo4GIN
zT$C<y-XI?SiVN_{Q^ICPULY<1tQ_t{bw?PaT!ks@{`Bc5lMkfp)Ktf(Z;TCIB>1^V
z{z`SZ7h(=V>BcS2OudxbESb<&ymxtM!LZib7b@x#&GKqK{rDs<fej5&eL2%%^d-HX
zoUX&^N%jGQqf-%2D)PidC#BMOjS1~Sq<f>EAKk+en{``L6C4VG?XwT4#5^U#N`j&W
zFmphpVr#+UFsHDPiN|3B*^PdA4e*Fvm6K9m<xXKxw=~@Us9spPIP<9^+WDBSTwU&c
z@2(>j|G%E@zm6IeVtN>X&MmT+Cy{Dir9Yg<wF?9fOSzeu2Vc`tQ7IZ5(-c>OtfHFI
zB@uUYdAW&pGO$2WYK_Bc@XPXO-dFgA)dq)CDidRnP@^`&Q(f-&Icoo1(LUb5I*AVe
z&mUG~8Dr7T7F~RvyEaz3cCadLE&ZxTq@y3cXbNfRKu>Pv1o6y-oLnsIF*O`f5k;uo
zx}R`xqPg(YJCITn31n1Ft-2${(MtY4lE|L(!^2odRHfSjS%F~PF@SuZg1$n95J#>I
zUV<<C>kSIpXL91VD$eFSVT3A!9nmhYz53*(vMQ!s*E>r;fQ(>jd8st_hUiV-f8~Sk
zQF<)Lo*|o!Kp5qs1foRAck&zX7yV1-dxBgs+)xNP)}nA|S2WSxG+ZilNU`GUlD&90
zUVO&+E670q{qz1$FX*J9+9Zhgk>rsq8g5&Gz3rDq-#Y;7INqF@p#t2D+CT6Bbc_K3
z0mn)!?@E4I2BDGCK*-q8*#RlwZLK|Z5R%`fM4`o8wN08lCf|#}uk2y`Lf}`@$li6N
zKie@K%|<}MWBo8TP0r39_u_?^qe)9atbebUY|c1K97tS$D>i)VB%uuW33=T<t4BRt
zVX=@~zh6#uulh*L<uqyBm|8Han_i`}u&{GOo=q}9XFfr5zN};Uz+3B#R9s(Et1Rs8
zTe{dZgoD4X9UCN}BR}PGG-uT192C-jU$qF}mg2R{8;x}Tn3DFz;x+2Ws9*XxQQ^?C
z2HfknV5^mFTW$zeEYWNlC}K^o3c`L)e4dw3huNr8tdPq0B~1?yY^<1zPn~!NGm*CJ
z%bxvTPPk=49?DPyufSIqO$`9ATU2fNpxq7<)NpwZIS)9}GoEYo;PlW!hCtH63~?;Q
zWx)(tdfOhIUWCug2BO0O;J;f-L*kEpKsX0)_j4W*Ou#|YWaudq3HJ~D&j3>SBdtKe
zf>m#^dguMj)6JoBMK(^(Y7N#SPtz)jU1y5cytt%+&XjMJOT$XOAGO0w(dVS!re(Qv
zDezD8m=_EeEy`auH!Oo^pp-t7G|`DhEQ0km=ia%o>3uI|N`>Z*v)GcUpSaq;g|EjL
z`p292>xH5}6p?a^6nUmMxz4KSn=~%FkD@`?+@JgLfu7r*9VG)p{%Z{69pIGgLS!Io
z<KK;9l}9-D6K>hS(z1~4gVDmbF_Xb$a%9B}tI|H|Po$GSP1ALaGo$1E|NZ}|!GMl8
z6KpXb!LrC6VE*SM=wAWlkM~&_2ldL6mC2$3z8eTHVG4lO<Jq%kV&2}~g~JVw+n7NG
zRhP4-zjKzz5}s>yg$@D%9z;~sjeAT?%;~tCtP_Y5oZqIT=P(VQ8x;-BNfVFum;0tN
zT{hU0uV=Xp5{=)7X%i9oVQNO*Yq!@v+cg;wd;&fNe}DHv#FS9Qmm?!1cZL36fC0mQ
zp5osw2lRj6lynYEq4&>C&sjG*7l<tSh2I++V+t6tLx?eoP|`lXm6k?arc|qhJ$dp~
zNmvmnOUc#xjPI)Q^V-|Cc6>sre@{P9SP&$nEMUE-1S%Xr21CFmS7d}-U0scbdP~#(
z3F7?m?*H-P4Xtl@c=(QGQ{S9~tGSq2;4p@M{^OxC&{CnO@j^$b5Pm1~W|`=h&vNIc
zH>b~NDY%!3M*ZVU88?L?tln3=cgRgdGXEH#EBG`(Tv=C*XWckQDZ~BB;q)xyu7L=I
z$)(k;@$Xom{TY57vh0GnPzKoWn=LhjS72(ltO1kMI^dRIcD&LFi*^->e4d?~dn!sp
zlg&Lh)ZXrAGP}O9Vb2b5k4&Iha18rupk?eja`qG7e;@7t`VIINgh6#hky-l>E5Syp
zPr2wZMpmUFitjTl=UH^RP^bJ65AyI~Dcr*|Vb+i5`-^=s*}p08T*t)j9!O#EOE5}q
zxvk}o_6SxTGalGZ73rYZQNFm?n-K*%agKnTh?gk}A<D|k4CQYDW3rR8vut{mZ_n!W
z-oK|pA_vP>HBDfeq?Ev{(=#+QMAJOo^*-zGkJbP5E&bPV3#HIP4MkkN+d~{=*WS6q
z=!gC@06#usJ6zB%3W7MC8}F%90F2@W&z`+xobtL>?!9l;;1nJZe&}rzYeZEDN9U*L
z5O#LvXkDd1)+N3Ld#GX9niQ{`HwROSYe+>9mZ0Ax6&JGrO^z6^rUho1|LY;ge7KnB
z@|d(F;59CEwQb;0c*1S|@4vf)>D#_5kRh_(I<l}c;jlbBEWK@7z70IMVU;Mw0!zU9
zNqE9dGXfUPa9<pwn={b~jY4W6pBT<C7(vtq>*`gQMlS>;3|{cMpV5Jb9^Z&Od>()(
z0YO1?YlKh#<C6S;j?`8a^Fs^9sxm|cB?f&$ecg-<{yFTw-EkcX^aUq6H~7HO?Ozr>
zKgWXR8}I2^7<B@2<PBLOiw<;S(-K6PnTy6Nx?iKJHkysmoFJQ~^D)*bYSdfM13b$}
zmuKj<_}Y!I_8Kl)MwhwP<9hVK;c0`;OTQ}&w78?QV55Y3>x?}a`U-uJ<4Cq7_a)K3
zVOemDg$UvDRC&f2agws^xX-~#hel>(otO3eu!E$8M^RpWx_QIG7}o!6E$_n9ldjN&
zw(c3WXow^ed0C_A$KKALs&2UhIUgH5<qfxY4hFZ?vWivqEthx@kr3&5>A#Hq=t5TR
z-cs1cW&RvxzIhhESc?h~_|?$xEQ_hA*zC7OO=Gyfn68b(z2ZSLP9VqLXzHb4gK6BV
zJLln>^NmjhE773tpH(;7=%h+I>D6*Rt-GWBx5NAY9Q#rtRGW(7os=XzmT#7!{Ab4h
z__aKC*m*ury7M+EbLXGuv5q%nwQjB|MfJ3m_<SiR4rO#Kv??LQDse|_!yAbd@Czci
z3J28c3M`dT38g-YF;(Wq+5+Tf=hs<t5&Q0&Jw30b6%=UwzjmDrT<AzIB})GcJfl8b
zB4Zfn&*E4O8qJ9@aZ5NTw^rUaDL8-mM&V~2D5e!j70kH}$aLONbS+K(RHfU8IXOE2
z=D>S_Kj-9OMT=}gZkUQGgp(gM>t0mUFb>o0pM|3kTbHtk>)BhcJMH2x!c$4kX~QBN
z$t?+fT!qO#wuCKc4rO=Jceht+Xz8H>Uod&<m#W*DASZv!ZCvh6<bCDLR6!K4Uclv`
z(rsR@HM6_vGGdbV*1gdmvtY9SIIn-E@TJ5L1qASIl1X9mJ<9(>^J-4(3s4p5X4lB}
zH?%~*QyTmTlx@r9V`HL4wxu@5Uue4F3~cy0I8_ch$ncZO`9{QQun7b<zz`7JicW8>
zPYH$G+V}91bxap+FJ)jZL!T*cw#!g7kW4z1S41bp3rBc3W$eYik`9YdKgaz9P!?%!
zEXjp@rb!lnlpIJ;Z|MkrXe6c3vza>2l*e@$*X$v|`6;tDSDkga>$vMmeKe3W&>@q5
zkCd>h=%Ht=K4oY%q}+Vae2}oPsM&Z^Q?4?m>cI`G@QL2Uz{zg(p7q85^{Ov@g5u-)
zD*9&1V(i=V`uLu~Dt}mqnuPbdPO$E11nLEm*Gok|EAyL2HUA!~9#h8r*6Ncnv*0~M
z#0hwr^+r}bH(4<PG%MXy66_~=y8P>G7z?PUH3ISl&J`1W(@K?^c{lnT4&1RLw@Lk6
z(o+sjN=DC}zKk&hLe=J3u@V(r*yioBCWzCS`=<p~)_FrN(MWK0uw!B@s#yj7si3-z
z{ci2O&lH+%-G0f3DNP-FD;2P8YE>!skN9n^@u&tJWMP_}T-smP`?^RqMhdh#YGyn6
z?Cr8&lCIDG;tG_%J9~MF=IL~ObY#opGPr|)X~Z}-TV>ThLCWu5@gj-d;g<jdQElS?
zA>%0WJ(dP5NaGnlK%0`SuIm;6Dr<=`>m-TIp)}fp-AEqCbbGpWVEnMs8wUswXzRtY
z=Kp*a|M8Tnb3^0&q=(y}9=+PaH)V44pH}iJqOwf}Bn~h-4kO)Bl(e=kGHf$lEvvzJ
ziYT`tq04FYQvDsX$-<&`m(nZ~+^gIPUxLg|#{JyR2s+$K`<Sd1xb8%`Ijd?t>+Tuv
zK=hLnUGy(se>PZ;{q7G)p0Lon=s_!RLo-?bX(j#kf4BvIM)<#iREsoJBy&YM(pqTC
zNS}oAf0S~*Z-tkDNXK}N4DQM4X%>(<4GjtTj(s05|DPH7fB5sDF7aJ~wBSQvBeNe`
zK^eYG_8STM?@!v}3v(1`Jw3h9$VeJaPR{-(x<9sS9pC)d`yYUvZ`f5aJ>>55uo0l%
zy9z!jkNKIzy}yGmB(Tii!&`_{>wcxU)2m1Kylc?UD!MV$xTeNK<zAliI51lfM@86r
zJ+Kntz@2fz!7euzYnP6by~;F*O7iiqD<Z-`6r9H7;ulLmlQR5WC0DwkIxGx{A5a;d
zVPFUY|6gumphDJhtLE4W_CCkJ2KW|O_di<>BIPM;GU|^XueQ-MpR0OqqgP`~PAuR#
zt*_bp42GKegKw)KSlee`;h{52>(@Gn*Rsw47{t-xQ*Tc5u!%|UDV(NJg})zz@2oJ?
z(8-lzMou$@Z6Wbu(%FB8v3KZyR=oJvpV48|DWSE|z|t+No12@GygVxZ^;(QL>m%8v
zB%=oo9v>L|V&4N<1k|e6@#uN3Fd1Hlx#@#At@0U|+`7{jk#dv=56j~_Rfj#D?L%J=
zH*{!x4NcQ->1w)VaR_M+?xQN3q@}Mp>f`U;B2zT0`E8G*xu_~LD*piYsM5D(y427N
zY*gnQn5(JbJT9j<=p}JjnS!n4WC4#0%kQv}ShVulK<NIs2?#sT{Y>SrANQjFiHgQ|
z1XXGM>+6e`FSmiXV(H8|*nV5}hzEnWVK5pn1p;0ibKMby>e)W<Xe6&-BMrO4Ge)u`
zPX$1ONLzxA1w&2FYBox>%Hz5gEx8rRdqCG~U0H<;n^JSZ&(BXUAdqSv)>2w^Q9qeV
zH){9CQ4`2Okr17poFLPZg0n8wi*x*oI79aL?6Q>DvNKUYUuMEZyx^3WK<k|1psi>h
zAVf?H)e0+y$QM(dXlS+A#P3l+|1G!_K{p0G+e@Fsa<FRnp5pI6`#PF17m;{{COWT?
zm?pZ-Hb=L*7pZ*N$Dd9gMp$aNchmg+8=|z1q?t?b+!;Y-D*J1<v<3+T;^M4|m?Rmk
zfLL6>Ifz8x0>>Nj8#M{7cDVI0)6GL_3|mz}YHoKl2MP2NbcYR{zb9vHE-x>uF*r9i
zHk858Ok7+XU#{9>YVe&VuojTU<>IhenBN)$Zf~YTsr(Xp3>47OI_1Vc>FDW07C;vp
znpY-2r9`5u>P0-h&9cJ4%N5*Dj@iw9HmPN!1emd^5<;lze~%^UJdo+;Q!w9j@<bZ_
z_8-wSod_0&@J9J0;MJ&%j%xMt4?0f9sQJeE_nJ?*wL=HT^x~NMrJzzZ9;JpqzRRQv
zEQy~5J#cmmYQhTk1UXJ`Ar;K=Z<S>!q?7Sx?Yf#>l{vMY+RrBUYRL&HuF09rjd4rs
zrA#;icTZ*brIcd5H>%6tDD8OJkFC(HA0Z-|3Puv3-4YVt%DNG$bTa^ULCb{X5^yC&
z{cU`EeH~p;!1%=XU6<|={LlclJ{SNRV(0+rL2fZ8@o`OU;v-gQ2P!%bAQZqY#x52H
zIBg~0znKiBcHIC5<2F#{12jVz-RG69qVJ6e`Q)4r=D#EfYwU;OaG?UQ2<FL?8O9(8
zQP^*e<r#(3k5`oy4PbeoZ%P>SZd+k2O>|9cGYqiISS@Z-z{T@{xW(qJqT(kA(fZyW
z*&`1Vrsj9YeI5q}mpSI&@S6N&p{?}Wp4=JsSoin*)CX7J`sNbg{_1rr<Ah$vK=G9F
z##4B_+Q<=zjJ<N~>wiwh>4K{{DTFF^a8vNvh#S&ExC%6yyO)WT<h;EF^grQ}=cj1e
z+Opb+)Ycz-R;(T5lJcIw>gkuwoYq^goi347bf6Sm@5z4=M##TgO_fH|SX;Cv=>2M^
zFjQ<bgPO_K@f6`(%OoY;_0~?lsoE^~80mo+8Xz1l8``im-@RBq<k<t^XY<qGg%N`R
zaa->r7a3bgHDssd9&SLlB%}fC6rRAFdAwAZ*Qhj)yEoPy8XV*}85<jmsG#z1iG#ee
zEnz73V?39v`p?V}O8M@$tj;cMWa7y7^0LxK0<kSGUsJ$8wE*-H6wp-J>Pu@_M5<I#
zd=W1B<b+WORmPhZ0k^(6|Eq+|bYI>aX=dboAU1vDPE7MybP8tGchN=iS2qf1xXTXj
zcHh3eOnWMRLhVQQ>Q(UPm@#_V?i0*PX4Y*`yCM2HctwkXg=|u<^NFt%*Bjw(EDKU7
z?K?^3<6-L}?q?&H6N^y0{qK@s%9O2P6!_R8L_|NDZXO10*B@H)V@#_bOq4ulCwjmg
zl%LlvH;yzkJ^`y4`}MM5FrM|ewfws2y#{2-g^rwjCL;k+p9(fVNl5cIbL^&#k`c*i
zz*w(#qwY>s=4Hy16!?~5mY0{=OVlfiWdN0wqaz$L2PviGBWh)gc_|8!Oq|(`E-(Ac
z0&9*4jjLWj$HRH9{iS}LlzV=f^SVcxQU^OE9MH~%t>J2GZWV=+lt6Gq+!_r;ujzx3
zJ##Ej`=Rm56z6x`(<fc1U^pQsARyqlHB8Q6;Wc|oMWY|vH9ue2&JIlF9cwHkBm$#t
z<O#n}%fiCKmZ;0QPVs?kfN;s6$>s_P4-QWEgGW=AmX_{yX3(cUBV5F2aBV@N5z$KM
zD)9lR*cK2qM7^{cPKSORz5-in2{2P<QkqD7KUQWWb0G!>NuryBaSt{eH){t6gPSQh
zJ@I+R(sXZ>rhK!CS_$(&|NdBH(bCN%ARr+b#&g+ZW@X9nMF#cCa<MEST=Ya!qIPy(
zSgD@z40?E?k_u?AoHjMw2VSZKcMK(St9;w7Ve%?6wN_61Gr-wO2m$151fx)4VDKVu
z!_&vd$Jqz0T~c}<jj&bOLAfdc^=W8tyfSs`uk{h|1Fe4WSR%^H>;4=KP(pb@p959#
z083Ud{hbe=_M^C>I(0vR^wMm|SWo*{5&=h8p&d;3g%_O4SXKNHiLocfeqC^j5_E{^
z)C76j-5nnWm#%>R5yfGu2hHe}-IJcVxpv#3u*L4HE18OWANcJU1+_d}25jCW!u=|X
zsc;VrEQiz=FA6j41~$vGDw2{Iy_%1xvAuf&I9VR_V-Qi+=KUmZFMj4(B?VKc0?kl8
zAPZKY?!kVvuk;>NWW_x6ww4PG(L88;6a7=~A0EPpT(OOi31?O0#B9}BobHS0Y%TeY
zsSi|j&G~Xje&>X`Ym^y3*4!)-`!bXRu@IskZ*1iRPX}aoM!7$K^t+E(%qT1*nr$#*
z0i<68X@%nHPnxRNgzx!B>r&kBD?KJ!)WR4^-a9*^$~DelE}Vo06r@9WZ|b>v$B&F+
zDR}3>Vant0UWAlA=+F%<Qrrr>S#vl4X!K5ng|W=~y9{I;4yI;P2cY|2H{W$$>(Qok
zzvEzf{`{vDLN5-?glJ1~r_(dG2Y&0jwYD#@Zp%>YTijs;7ikt_8AnRR7y>0oT8rPp
z>SY9kdz#N*FR;*Fzgjn<v9IfUP?<8n>3zOd+!4|A6E5#o9G4ycTYBHugg{XA=GDU<
z)U2Ws2zYYwz8scBhzbOiqg(Xw5FXYrxf>8KlYYF)0JZ_+vNPblXSb!w=V0#Fatvxj
zv_*%lhR;lutfSE_$3PdC5qP@?(89^5@Wd6|g2rN^V_h*RU+`+_i6L<+^EqB%5g}p!
zO6ze(5J{#*abtX^V;yw(51~Y$fxsu4$PO+U0jG5`b6dYu3=Q}^z>;;Qfz+3EAGluR
z0Gyui5Ka;GP>GC7^p`P-YqbH6BSi#{KKj)!AoQ9%`TKl#Dyq?zlCNln%>Nc_jv*`-
z%pCE1gH0JvZz0>@7e3ehdJz4QN}W2#kVg>~ku9t6`=#U;9<Y*v-dD@;Hz3lVGjqtu
z7P*0{jBBsl?a4*E*ACDQFdN)B1Mabdhe<6k;h-i}ZKI;&KL`*3{ZuY6d<|JyS#c#L
z>IceQhV4iOuYV$~J_-V_mUZ64>ysCu;dNDk{T<?@6?BLIC~&duiRV2}fBK^x%&=jY
z0ZSGpu`WA`L*RJ$4GdBV_kqN3N>>!Ajf1WMrN0NL7&mj2rekY1zFJJ*GWvTPKMsAy
z&=;0M95Q@<Kg=h9F>7P+Crl&YNNl$=mW!593-t0MPNzIAYf`~7syiqJ6MkO$l}fty
z&jVAxS}ln>ru#|WcIW}X=5KALbZ^0(vnB5C?tXa)ByzV_8kl6#T9?2G(V(=f2-)rC
z5^HgFzSg0iYHQ-W_umTpXOd8t$yZAP&mPAtt|i^!+#c=FEm)K!K$&D29N9*Y(XD-=
zT~LrU-_Z=AuBGG7c<=us>nwxfirOuWYjAfOOM(P<cemhf!9BRU2M7ro2<{Nv-66O;
zH15*4!<>9Gck0faKlBf(x(=r}`|Q2mwVvh4YuvfkwqCBop6+jTj`5$VSpf(#lB--S
zxo_*45{Q6Sa_nX%SL^ee8C5w}2zs7C6P9j_!@ue1xjSV83fLhZtT?_FN_^>%l-s_m
zHtBujaPEQPB;l26S6MO4SMXx{#fh4SfiKXb;rlSBY@^b=LoOoq?ZA9yzuN2(kHKlR
z#Z4F<PCMTDGXGf4mpt1M1WHcPTWhUXtqmYa*{`yF?s$7$*gkUnO+qH<{_CvW!$0=C
zQhA1a2WKkeDXr=ui?gD$^YxLz<VRQoAa^F-ug*Np-k9e}bwBH2;(po9k0;vNN}%>u
zi$AkJ+|#4i#MDaa6n*qOdaRNCslqw5?bqKMD$+)`g!U70>H2Aa1hJ$$Cl^+xWy1WW
zRVA}ivc>*C_L6Ei|F;*9M*xsGLhc}^%Z}h`LO2vI3R$c$;3waC1;4!((Vc3ygPfrs
zl#$f2g1kRfNXhdVOzfgm9xFT%^7G3!c_aMLlF?iLh1WVETQWR09=S3CGw5AGzO&Xu
zVxF;L(2OQ`3LKngy<kER&~o?2(g}E#p4&SCsNv#Ot`5WkA3ANO7^;WsBo9$xG|BWC
zI+xpX;Rzs`I;^YP>H0Xi?nEg!Iyxxt^Onsr!f}9WQ{h9#Z|5E`lSQ52LAmWFdNKG+
z2f&p!M*CiV@Cjy6%wmy(HObJ)FIo`+vm(?2K|TDW!y(<h?FI9jX@8Qo*BqnUhY#^S
zEfEy{+LHCM7M6r9=!|Xwls3KqO=dRK_86>h7omNbq-AIVqUsC34QDOTb7&5mC<1&>
z%XS0&)RA~&!7>I=PbLZ|u+Eq|zZCDF{r>HW$^0qq<0z@bv+C}gr3ZoJg+uzMkOGGl
zq1c-r`iKx*q;5S~h4{f7$EFU_-ySXGktB{yn+WYTwV{!?RO+Es5gt;tCZpp^UJF2%
zRENb4ukkvD^%duC`M0zbuYjxSP5$6JC7<3!YKcfpj~>~WCBX5SG4ck41jsTyc+j1~
zoo*iXvn)3&92(30+y_J!j=%l>|1^3Pa+uUUGynDG9+H_$4h`q0Em0O$)&xr|Qx=$G
zB>o^4#HQ}s+uOnfYUyc!DPu?6uTV(h*f!<)T~Y=*lu5)Obt)_^%~RHyR-6PN4L5ye
zT{474J^{Cdi>p(BUu<KK*D@6ukSMf&&XY-QSlyxh=68-vZWEpuYIlF;_{te(&B~=;
z5cS|FWQ+ul_2aQC$V#`-|Gke?C_zPcNTTQH{&1(GMl43KRIO;_;qme5Z12j&wk7b6
z?H~ArGk~GOoNZ?$MND#v4S)>Chk%x3lB2e+DV{~$A6Ap#%dMs=%B&ymIu-{D`4!v#
z(9G}ZO}H8!c8kV4byF~P0xlk025wRl6XlM%pOv0&$+U39sEUoiN;XT00Y7c9^QK=B
z=JGqVG>jS?-+Haph|-pn8Z`#P0jT;4$4Ze0V!GQ?(*J$I4z&O~AUttnU^`V%AtUY5
z)%8JOOQbma6lg!*fL8OY3G$#|1*xpT{kZiL|2VinZ(>Sf!?ve*HXddK&YQ&{;rX4F
zptAMJJ50APb`eDFpd58qHWZvjXHwwNI}U6yWtu*xU^dAii>x9!gQM{nkZ^E8cA*hG
zk=HEu&gboS_!kHJ@9=JCVCl-VDhmPQMolf8L}>5=7n0|OAm%nQ=2TK2OL$OF>JRTY
z|IIK0Z97C(vNrx6%Fl8#RnP0`f@|GoprcQ*O;|UZo^?a-2BD$JdYk}M^zV2aDyFu(
zKx0&L>dvP#{@Y8$30Gj_EQL2pJZgeu|HpnjgLi=NotSW?USk}9R<|Dd4&nehX7SBH
zi9G9n7!B>bCJ;@C`+_jZw}j9JVI4hLn1UsU{rrLK%C~c*Oh#_|<vufs;!f#!@;0>K
zPo71gcj7)XnQZ~D50+;nZ3?ddM``Oyih}+20f?F(0MxN9R%*|M*&a^d@dKDjIGFEk
zfIPZyrA}>lSPmpE%HKo*d9@4qbeUwFmz1Q9Blu&FmpBsOU{Mfyqm&6@!35(B^md_c
z8$*1xNtvJA<!a(OQY&G<)ppy`KB{CMi!{b=_uZj7h69wt-R-G;jJ{#r)krpDcxSfI
z*gUD&tw<Z5Gk{bd;xrNGLV<vQS!5GLCV=m-+LSP1o#6r$zmpjOB?U?KeY`MOM>Xan
z_s^oZy!zri;BLJA9e_q|&tbIg5BA#sJ>V4qCaQ~ZL8LPC)p8;XaaKjD-Bg`RNUEFQ
zIfv*4vMe_NPz3}p2v1pW)p0?dJB{*x7a2s55>o;@z=M7t$_G$Mu~3L%-`!%I0L4w)
zByLUdgS}Mbo+oG+;K#r>V3$G#D!5=NFfv>`w>1PzoRq?&Chj!kB7HU(L5_w2b+@jX
z-t=&CGEjz(eC~ClpOqEIveOHND#aRih<qxwFUq|C-o|2kVrVkEDG@zzf~Imp>cOwC
z$>5nN9K>Q422EB|#e<^joUh1D-ta0S?_(C0`+(aZ>d+s~Qn9)&e@Y4Ig5@UM8c?HG
zf63r|Q}&u3x8%`lII*0lfGqNv_`VUtEBJ?0Ji7^8ope^}7b7GFY8g5@#(bv;K)v9G
zCl3%84^fw)i}7e6o>V*x2A((0NT58d3m^xdLIk1OAm7ONlLh&Jcu^~7@&0sDS%Qea
z65r<bmc>nGMhdY!Z;ITT@BZFQmq;pJK%b13Io0u&Y923l7Uus63W?|-i|oKnkqjW!
ziQeA=F!SnS<lqlHTr3eT^Sh(+k>Bg?(QwGBJGnyX!c#GGez1m50yO}SyD3K3d!{Mp
zoo_;$YM(=f&?tB;CJ}P7{Ze)8LiVjg)0zIHk@1MA7l#Exz5%Cr2mJ4%L;2z&W}k-u
zelMCT&9ZpFcT29wXUb66GT_1b`oX513`TAiL)o1rvZ}5N%iLsngchOv<aoe6G;khA
z2?X~H;6W0`5J04TW|%#jh8SY<NHwHHp=I}7lgv)fC$$sbo_YXD{yQ%tPhXrB>Rlv{
zG|PB?zZ>_OD-P<S3PGqhl1Dk(e$GRx<=C%Xm5s>D`*Bd<%uObro1Ek}?{Frlnv5K$
zK8Rpkd<^x8XRBZ&#lpG+9kXIZU~|xyEPH%fAF%}kVioNIwOKe8z8w^a1N<nGB8w(7
z^FX?aefk;-k)pu*VW{jXCgY&L&!W%$4~E%|MUJz1O7?VQ3H3=E`E7I2DelM?Z#xb1
zD^;Cf1*)ImVd2P(BLoIj-<Gf}^gtt`WYBRFkmUYJLK`l4hE%_GtRKH^i!Iuo!c(~A
zGBK&R&4=&&zj8-VG-aTVaqXOE5H-2oX@Be^loNGaL>J(jfhh7@*c_2~3pi1^a=zn!
zg7j?+)lJV#aqVn&%L>a>7<Fc1=6){U!-iB+h=mlb>*R+N#h>K03$J+JOMsY-0*C|d
ze(IC2NRRt|4;CZA5fJ+1{lt63XY~%P<q-W6)kZ|x-J!7mT)<K7t{$hb`mVokai-4x
zFu-cj{_b<@ddScUbD$E%lJbg{ul%69ef?5V!ykpVbDc}bWnpTs&tanmnE%Az*ovB%
zcUyG*_Gy_G*Uz{}b$nzn{xPmKjPIIA45|OLWS-f8N7^!;BLBB-Kz6FQPizfdLZsD7
zSOt+AY{_A0-SgXeb{nalquS}*-Au<h=J42XJ|2aRfXQNG4Bz9o-*Uil`G?U9LZZ_x
zuH@-c?7UySNc)FsB+rw(lHnWw7d|3pFqgx!J+%YJ-F5^;^f)?~qvJwF8gbugk^lBD
zRh8_lUtVb<K6k%WOmzI&43Q2msiki<*@yHl=!b1cCOc8*D$gsmypXF+?M@`q1<GB|
z*9R~qULe~O9A=MJH$VP{g=4f9N}-Upy4n7*NWRM((p1!zaJjW>+j7b1c=aZm&}8}=
zSokhd#j)9((9H^*0gRRU2EAT=sa~E($Zu+_YfJKJqlCxB!(Fu)y|H>;#qxh<WJsw_
z?IW$vayc*(_n?U}`35Yne)4IsTP+Uqu6B<Z-`j1lM{FWbA01&R;Kdky+7@UttOo<-
z>~gY-TD6H7r70e?IHix0=q#mj{OZp_p1iRsyPn-KI@fXU0?Jr7pn6fQ6>KKMqmTiO
z-Gmj^aMp~Bc^}e)AFvQlTCyl=IBGF~s<mpgA<1*5F&duofT?Nxz5n_1x;}#2H*&#W
z|IYj5R2w(O01^3!@1bz0-g>>Vbef#}jKjj!$N_!uVI#zmWJ}70V*bxci2$|s8+mFY
z$l#YtWlKN^fH&=eX<2KHzr2Y&c5K6TbU&XD|9W*f>xG+#Am*>WVBhj$Qc85aX1&o>
z;rqw47##ldz1d;Pn9tn9vtB~YP^#dQ_p8BL>mASLau`zETfM<-_GiCcG^)%Fqq@I`
zH{ZbVf9dVmB_L?QuyZfYf}DYv%F=NI5JzP(v6^14k#uCow#Id~jOCKf_uWU1Fw4B<
zslG2ay1^dGmiUAR@*eBFncUlr7dwA>`b$w`$>*fKbRBaImn|pf?VreA4T2+$R$9-Q
za`!Xae`{eCJ{rB%ppg}hXe?lNPRta==iVNjf6^`}FrS<<D@wY1I6Z1Sb#-%-U&e#c
z!h?Pnef&4R={#7A^4Xvtik?p1^t0L9E552wTYFa-7D8KpsE7gO#*sZ9&z?D*#s~;+
zZ(qeklpJ*3ke-D^TDB|yT?!aUP(xLx0I6OKjCE306X<ZvdQ4(G%ROhrHodMVL^5o`
zr*0gOkXv_MB>LcVt)+6hmG<K8qFH>>Axk%^;cf;|Xs{<DO!r5D_sR2=2f>@Kqf<V(
zp>yE`BEBARJ;`Q9q*?gfrexvHG?5KQ3zZYcw>kL<$koK-)T_ch>=XmJ-=&7^2-l+o
zZf4aoxZWbJ(9hGC>um=Osm8Ws4A7tWyeC5LG$7AWDt(w*nqeBZZh^<shO3d=!A`hT
zB7_n-x~oG(N5U+R03moFXQrEMT@mCYL3}=L`~kKydGCtk;l6^BEi@!?xDJ5b5N}DX
zp+AOt{Dj0scWjXYAi&F8k{hwvgHfm7qQ$`2$hLzVIC(5Ka`?H=C;!hiv=jiK`mRcE
z!<JpZ3^Iszhm>*EMrNy0BgyG|%>al9*M!f^AeO+*f~d?n?IXD_5%koP>c}(Us{%zb
zKGjpwq(Jj+1ZR%_w!`kFcNAXaimuzKB3e&63BgGHwxikRmKO5_=aIA?8nLvBk|u(I
z$2Q|720CX0JhzS98bW*lr%~G=g_$^$ygs`r+XKRU(RyAH4<1k4>x}*py9GVPQqG$_
zTO3Qdm#z2n_S`^=5?pww>Q$Uz@mt?vo%N=4-7~oI7$|lUOXPE^+3oLVju9^CYhvee
zyUpSV;kzXn@QQ<r;}*K6x*KW3k*NIBdbj-yj{%muu*@AxFB3T3G<i96SZk3@Th4l#
zRR6_cojulpX&@5HBO7H+{_82z`@*$*(f?{Thmnhw?bCbRdX)FRqYVK8iQ+-qJAW65
z`jeT#QVVD&15Z7u1g{@9X%!W#BPcr3=#;9WA(NGW!lY7ZczTFHOa6Eze$FExm3TZ;
z1p9ImwiIs3y3<W55N!2z@7ol|Zs9&-TFRSI^)uSd*56(_W*VCBY4M~}dSNz167fPU
zT~ebc-Lv=3$w8i1aj(NMX@34rFHjM|#nYLHEx#jPeSc!B>U1iT>gnMnd(I9Cg?oym
zxYb>AB9qoK;|B<eGDZ?)0@z?zdM61&veEg7G(=_=y(Ll$-Ma!{7D<}?_4)qdgttq8
z-5}-TF*ZyTkYKnxOJ#~9D7EO7hyuVoPRV%$S9jomPV8|VI3sW2(3Eb}8z9&+1=Kr?
zgW|6nj<n;**9I{es9hbsy)8;wRhR#>o;hUleG3~NOEP{~w&kCR+-$dtYu1q<bUT}k
zE}TfU-05xIcz(dBnp_%EM}AJuj=R`Kn9PfBuau~2-WzjW`9q!R_~brzxb8!z8iEis
z;Qp+1cQBPK^!laQTeWk3NZNGZo2u*Ji8Gg%HXv+k8nP{8#hI+jXO+qdKgA?|R7MbR
z6ME=#-OD=`P5;eTuO6U`FdcIxq_J5*+PGA%lX~F;Z}MDLxjF_TVt^4x5U{_I<ox>V
z=*q=hsX=9{EhW`}&Gn|FEXe!28Lg$lCl>qP{4jFe$Kw;~mkWdaed<JgN=XTh{2<tt
zNmEWD(Kf;>t&eZWL2|T#cd*MWP4|FiNfMH+J=n!B(0%}M1`L0AL3s#tBf836C#<ZU
zzu@8mwNq0hZv>u)PE>2=dy`=Qjf|F&cmR~8O7}A4B!E_4PHrm-0|FP}fswiaHQ@|Y
z`dDBDEbFZ&9hIQ1fNYK?b6`F2f+gB~76I#<4}mL<5W_L6DAHoCBx+_=RMq+hiZiu>
zGS5frwMAv0LvdnI1z8&Y-yA_{i(4Vf^*C8(Odhcf#7fUwgbBChYi*o)YAPxol5_Tp
z_2C3-XR6^YEW|U;Q#5cCwYU+b6G!7=vA*PPS|uz?`Oq=cxsP+@=@1LDHi;+ilfN5L
zsOEg(`8nvQ)wB9Q!Y45#VqzGVXKRr(R*=fb$5leu3GF~-9B;`{VQXN=Dx>#)y{k%t
zAtnT-?pS6+J6S026YGB;P6Mt412`v)7>v=<A0-v*iPZ)Ib*6<G{;EMb_Im{Adl5R3
zIGbUtKr1!c_wY+b1%c}gXlx9}@pl;7p5H_1T>;T_JX+Qtjp{q0$1g$HqfcSd?ksT8
zd=pF91d?{MAe+_F_T|Aav0rr?xz(x>C8{G084J~5m55d!&xa4p5kiSSf6GoidDLKH
zufIWH%w|t9rkZgg4!Sh;K*7DyHpYAFSz0w!6LVv~;nU*;Ox(#?e)ym}Mg`c_j@!7q
zG@>;8z!_KTX;w=lrH~H-#cGS7jEg&T#9V%LvAQX8)Oebj@H{g(66&Ku|H#Ogt%i7~
zBDVz}EG->rvibKa=Z;_omHYa$a4!7Zyb%%-FlMEMbL)I@m$5W(et5nL$juS={>qzi
zhlr7x9~1R)w!$6`)g(Ch`7i`Nelq{BGD!d<m*dhP752%__O^8-8MC2+$wd5~lyc@b
z&Pw9LOu0l@@eise5qzMyJ~uX3D`os*!mu({=!Eb1+`$+EwFO0%B?MAfj4H_J=-C1O
z_k>r~=X7oQ9k0vnQd|Nlzj>UK-{M4eV5Z{HOKfmIBcJ+V*=^*UW?(<wKX{j<{Y}s(
z?<u)^yC7)UU+0cpb0T*=`yxod=i%^|v9{)GA_1(P$@%S@jv(<7%J5fmV{nvQRepc$
zhRXru<FGmmH7S3e3@vNcUVE%*^T++zx;(fZ;mrbm0p{*JYy_f{(`DPrT}B1h#SXvL
zYMssvDTLRvZF5sGF&Hqv@jUl<J7BkkyugYzsW+O;3%8+nb>YJTxbzU6LqbXs?es>l
zzn&Ljdw&yGS>D7SU0uns^u`k=H-h1>XLE^Q%4Z8}$A%_DoS&bEz!MRW*1)U3c3A<p
z<(F^{MEc!sUK=8~J}oE9^_*{U?nkp?FNUk)@dA$>Ufk4w;7{(!qN4eV1d=0aREXhU
zU7xgRqxBpkUA`kuRI+671HX+`%vaz2Sk;V;)k8w%Z@Jg*NwDSvel~4K5OX~k-9Vc@
z!GrF!oe&V5`G9UB&;~92q5FMkMl#oVzMkXL3SO^NFDwn*@_}$1kzWLXoUpLt&FA%G
zCIR7K-jm6kpKSsa{<fPStYBMZWsF@AO~h5%m2d_Qg+HViWE>GOK`pIRwtfA1-LLmP
zBaOu$ihZTYS<B5`V;LXDEfeYt`X5|j5V>+_56tEV0g7ZyFoq$|AqSX*ED{_@fV{N=
zoc$4rB2>O>`R#K=tZKqY6DSXE;pF`U95{gVn;00#E{fBqR8a4AwdbsD7Wo%)25knT
z>lqe_0?bXfRGJI^G!`Ze(kLioN<^AyYip<eQt^QeV5tbM{_$@(r0|m-lrNULPA=$8
zXgUzh<A1G1LTa!IFulCzHnCqs>X>UM@!-d{rO-VXCFz#CQWF{&ZjdL!j2)Pr0G~kZ
z)!d1yYNJ}3yg)?f^|btR$+u%DvClrRz&kAFf}c!wtfSm;!7S(=-Ki7Z<yJ4y-m?fH
zIq4%VCo0iYAy+Ls{%<YSmkz*!?)A0)L15NC@r%wcp_F`~kJSI&6hjF|9|M&+<@J1X
z$zlRTYN@{9lAE&N$W8>peuyNw$nCb<J9UD0^ylfZ69%F-+o)nl(zWFfr);AyT_m{V
zTntyDL#rOLDZjfO)CLbveclt}wY8WEdwF`39QV^Ue0m5@X7r4LkHVzw!TjO13C^-O
z|Mv4NAWrfdlI`!LOx^s_(b+HFH@7CCwC{2|b(sB!4lg`}HEiMIjyqqwAXc7hXtmLv
zJ)x1agJ3q}uV41@g$!SeY)oM&xCJ<<Mr)Tam7X6Q8-K)jd+|WRSIP`F2$$;$u$^=*
zpe-%)XTay=mfJ5E^Y7QQ4f7nnTpWe^WEB=rbeIZd&?_1>eb2WDqN`4QCwzc8Tacd*
zVDttPEi3#;h32NRnfR9Kti_4hnh@^@3@gumUA0`Yq*z_Q$?ig<=7@qmG@p0;CH;y=
z(s^&n8Sp(k8z_Xzl=`7r@u(3Nq4W1}>(zFeCiGY$4Hl7+{7JLoStH7I0OGK%{=v#~
zqtpR*!n#ohuGO>oZgHCeQ*62if_=0dpJiH&DZzvJ$YfySGu{b#w%f++&}-_5Bw&qH
zeY<`yUrdviEoZmXqTJ31t}vvd;Ih1;IC1QFWe8ZXU*^yVfQ8j2jTS>Ph>dT^(tI-r
zb92s1o!PfO>pefRix{cNL@c(uWgKyX5mFX-$Uy<QgszAbUsiVbuIB{Kbl~tY8aS}E
zk>H;<U$vfhunQ0?{o*Kz?80LIc>{h1QVL5PVY2U#LSQjsy$kC;K~--6L%_cQE1S;M
zEx?!y8Uy<MJ7)jQzf&i?#IW#y$i9(s;IZaL@B)5&$r4JWH`?-^cR$P6*17a<eW@wm
zH&lE;yVU5}Zfkp{%ESaok+Ni$IX7{yar9ww_l)eqVsw~$8iyTVY)K<QZE`lc>}xXm
zbGUQSI>ibDqFZc6BlwZsCs>k9JmOZxWd2WQI_Bd`(++`KN2N+|2BR4T4FcMcRKQc2
zIVF-I=yw#o>TRuZR(DU1;L9jLq5K&#(C|Jp)gr(1af0{}m_H6Y_PP{Zp40eiWqJA%
z3%>Rt4sb~$KUat?-cPQ2%o?i)tA4qM*d`uKY43*O>zJ9p>~@l+Yb-h<kxs2QIWJ6O
z46~cMty~{cqd9N0;{ABc^x3Zs#Ochs_kkQxH#!kuIjjKs=wCQfV0BR^g<d5|e=o{Y
zMns<OY9-zlP|N`O_?xV9$A}CLrREQLiT-L^2_<))F8b<RFO|fHA;rq%+XB`9>?_z|
zklfG`i0MR3r$OrkR^l?|b|nAW5m}mA^zC)T`VgwuW=qt(*b2zcyWmt6$N`87b30Jw
z@#W3GplLe<0(rRuH*SVoX128n;Ny!Om|N)T8{Do42$cWauO3TKL4SZ;B7xGWRf!t3
z@;4VDt0iMPSzWjx&WoA9bX^%m&yCcQ0sXsu3pn*{15Q6@9-U&wL1>}n=%-i6i-oy4
z5$OfltQ3P|r}Mht(@8Dq<FfDbp6%GleZRicH1OB|x4;b$AnI!Wl!>SQ-R7+0200g>
z6iwotw?*=qgSR(dL`olQ+|tIa0ZCu1r)Sql^v=$g+pT|lLVwKukf##0;j)ZjZW1xI
z?I7rzbD%-HO?KKXQDnA*%=b$X`WaUoi%q~(8x&snGBAmMj~A^QL!t^Tz(tkF8tMX4
z{Pokwn5BSLFYJpHHKzddM2zhIL=9rE1zAhkagU^dvgUbMZ_%11DRkd=i;%nCiC3F7
zhxO!Ni6R>@lM{wQ^E#D#Y#M2qY#x~xUyt%E&+4$ab17oLFAN6kU)d-E?s9-~gN?{n
zfrnXP>+YxcDgu`BUYCUp(Y1%G*`MsQ=ku)Ihr1Ix_mQW|ua^+@ZJsRuy)3RRsYF0)
zKi5dz1jHCaa=<1a-EP~QtmZ&!deR9n8X0AMpJ{1TCcbP^i>1xOi7#4`(R+hCaKf9g
z{Cd0Y1@LTcw&OFmD%Ls7t75ybK$akp(BIL#MiQ%$zMjjjJN7Q?Z4*_^k(-VScQIVk
zuy^3072t%e1`?YD)(1?T9v9-1#S3=e>y9z$n4bOfK)RBd>@GK#`-)m9%CTapQL$<L
z5aWNdRw3>&X1L8U6%ybE^(xr6wE;Oo<!b<`0I_rSv?_J*0l<^7wpU>UhE>3=aYV&u
z+^CXn;_mK}b3-8|37_M3>Q>8M0=njhHbcj}c=kcV;Yl~E><e1Su9B|^?VTGDR3@1q
z(?02yQ+B2;`$!Phv=BG9vZHAb&5`HsE^h|6<V$i_YhL@Nz~Fh)lF)-IeEZY5{&?`>
zsvQaUnMF`5uX0hqgE_NLZkR|d4@T@ik`yLx4`nKM3`xS>cq@1&mDTTWZ}0E0j3I_`
zr?$JbH;--oDf2NZrQe8^oh&DLjp7`_`xVF;!ZzyX#2}{(9uvwt#5cjWp21b4-$BPz
ze0)k?1jryG3g+7yFa4Jan_h4t8GqcNM$yPn=BBIZ0`IhZ5xjW_V7NlwcnL&D^mx8^
zE()pf)X5!tT?-jcDZnhYhr47e$N8+^4pXMMp*=AcGqqc=v@Sf)l{sw$Jnu(z(BGhq
zx2T1j;sRMi{{DPl7S*Hp5Qs&DvW^Z|sPvDajl~d!SQJh~w2hG#D2IA?3>B&}Sk0uO
z;&DK~>I1RN7#%wv=%n*mv>?Eom4Il0)zKq)y?x~|libh!Hg0g~H7Ox}UnPUNNh@?a
zR;SiNLyCRw^L|oA2+;DZwde*F2eDbIG!pjLd<7`X|3+H$Q_ks~AwV9i=*c)8|ALPx
zpKIgSVD*Zgq%cNeBiOSrh@F5iQ%~p_A}+Q=a(V!D{_dZBhGZi3c97=ye=Y!6T`vM>
zE&=+N)WVhX^g-LQcs9fsw5fPV7%`p)1L6aKea;#%<jEDoDy!hv1~}=|d_hK~xpoh2
zBxf;(s_ZeFzT6$Tp~F`R4b^VLi5f(JmH(~$C0|FPBF$R!9D%4L<-Tdm3nJjT>8c9q
zX?XM32%UNz6P~JCIoo}vv*(*i_$?`3hQCyTVDa4GjTH+BH@6LoKG(R9_BVG@%qw?9
zJ=QGIymnr^7ItkJfeRzAIEAXc774hsEE%hUOt2(5ih6{SYe_|8`gmKdEsPwwNmJLU
z{N${mQbT?5bc{wH`>@<e_C?%QO4OWPw-YU`$1{)_WkUBE>?<lh4a3^=Kl*P9;Kxwb
zm2ick&A9_ofV+t>(;%`ax&Sl+qMn3Ri?3Jm%ah06+69&6)t;Y}2IkH6@j?_l3mJdI
zhSSo(fQ=00b9uuqL&ITy^|!b<PKmUeW4*BJ50mv}H>8hSF&YCxw2B)7B>WAPC}C^g
zdXg-;DQG2v;qRY_HQ?Yiz7aN+??d;v+PdsGyKMHL(PHx)@u9fbzkh$=`$Q`ywYAIl
z+7M65`=hGjk5;8&MxXpHwKU^8%?($3UwcoJ^R}lkjF{{xG?XDu{ib<g?W9PHg88SL
zY~<ypm)n(CFj@IAm~!-Ucf0b-qh=7OL94zw-C~jYx@HNpV)5B0)IO{1c=KvP%cZ&|
z(`S!s_(w%Cn3A-zeP2`hB?th3oTHl*+lw>m`P<(3C;Tbj&l&Fpc$$)4-a}lLOOYRd
zS({zMAs!N;^tXe8@jI1Uswims)S@DOW)KhKc&6`>cv1S@nV^YX2%?;y!`ZUi>=5_+
z*L!N+un)Fn6$S*fLwEFBI@9`qg)o(BOX|w~clg~f(rzpv!e%*sJk>M15T*&gS?O_c
zskuntt|L3#hVG87!_&Ue?T5;4YMwG+lza44k3#B(<ly4<<Z3K#B-im>%Dbe|gJeDW
zYwhfLSV}shEoFrKlxBDB>-ZO)2RO_DdqA#Qo$P$QVb*PR|I;fqW^&1b^%+2*!ozqS
zYKrERY55H+#{PNiEiE#XYSA_n{q>}FLzaO5A7`)@U7!anV9MXZSf?G$6ioLJt1D^&
zWDT6I7j%iwO~Q}BSZ&rN9V5P-GCDbLveWaui6g}O586+53<{xgEw3m(c`96>BW3S5
zI~&`g3&7K^OR>MYJ(8n_a|e8?X#{PUTYicf>C}dJONf>WqJYhu;e<~_+g0LYclCx)
zTRx05>H7f~kibB55UaSt*9LB+Br>9P<@9zNF5CIh%~zyt!zs;7e+&|?(Sz}1CcS&^
z;i0CCz@MqZTy5fb|05TzAqs`#!!jOaiEseN=txkOyNhB4%YABbyjV>g;nD|fQUz1n
zc5O%NVimZ!s7>NbebjaGkF;H-A`(NCfH4(<js>_!&8UC%xmUNyQ}PSOVtnGC;nSNK
zQUk@*dp+Xg5sKbxsu<tg0^Htjf`5L_7Mri=GB`b(PYsf`kO-5)(oFzy1g6$&I%UU^
zjh9!ZI7@A+y4qV`t1hSSPHGE=!28M%_D^um5O6lQp8N&RoLq6Vi`Q{?RF{#VzdLt|
z_$o399j{59bSFuci$m3)vbQEVV>!y+Qqq17%F}C{m+Hua>u^MprSxQse|YqEi8P-L
za%y<=AU?KTI5iHUp5|U<DPD$;!%Ve`Q8gqaOS|Q>rVy&rkS~*wjo5Ur>&$Dr*nXOM
zxmz>#jCWN>@N#g#&-qb%N;}4U>@}GyX_gl?Q}hS6fDgx%v5ls$SuF!^&s<HATlvyz
zGPlWepn)RbIiXNFYy3tjm8Bb#$Fv5fXSS=so`GIQQb+)!E4?e}F*N0R?xPcjPv#kr
zMQAyjWn8ehX%mqy!p8pO>}j6g+bf><{)C5Ssp8s4b>2mJ!6?}rcugC$d}-GDP(cAH
zFP`8=daAhAv$Zg-;Qm-*rDxHdhtGKAM@i}X^aoKRm9-30$B~`6eq$=bQt5orgrCrS
z-9icQQqF3}@;lzVGyhWB_b`&lpFlvg6ncB!h(a^A`(4PIFaD%4ZQ;U0>1wTdrlHd3
zj;u&@!Ocu`HxSyu>UjQT&!9{owzHSTa(}GZWga|L#iCb<<A3D1pTw9i3-x=EOg=%7
z`08_ta+GpW+bRs_$6m=~&hN0QQ=%p>YkzAlk)H25-#FpoAg^t*QTSh7T<nSao}dLO
zBMII=-RivGUBpcUV(24CJLbA?N<Lu{pEaMmbEUJ-z%P3G(hlq0u7^W%^rMZx`?mH-
z<bv!6RCGrx6MuWIy1y};#Pno#&v)OpeS=$hk+0Isyfs*D|CoKMJuKfTVqMhG1MiBg
zn@9z`5cQehAQdK~sjSbRwgC&NGFDKMPB~(=fqg@~@N4Rz(2pNK4wwTTP<;Yt217jD
zFe49<2=-Ja_FMsH_4TKL&%#-tUU28ZmqVbs9sJ?=Lk<|nv<l^?FkpN(Q+uZ>NGTGM
zA`_|jk8_`Xib+T%!6kOJ#oq!TC+!=wu2I%~$oO0%fkRw}znWJ$oN{f@Uo~aH{#?Pt
z0H8rVnlz=^*LqrOOXF9I>(WsRI%RGc4=&gQsH<P%&++5n^u7B><HN8Berof&y7vy#
zaz`TVegtsJdH>ohfkmb-%IVwIs8eMnm>`arvs4C`TcNn(0C|9i0PuocJ(2qT`4x|W
zWwb$9$fgkE*-esj;!Jvr00PWu;89g;%}PW2E5F5*B)9(|tNtfafp|CViC^=rCF#oq
zvGyJSGk*RK9Ry1rh!suj#p3yO8pw0-0>lW@WPA$`Yh|THB!cr|)Nn|Wp!f9#$1A(A
z$VL#+ij!GqK)?-pCNWu}L^BfZk6l`ioEDZkykb;%3-rI`jcF+l4-Fw^-g-)!g-Y{C
zl>t(ga%n^3quEVArAwSg+;Pd5GTRCFcK0T$^v=0#bnoV1sQ=*no7&tEyHQteNx%Q}
zh}54YC`<Gae<Ic18$BB#mPzd0)lI=&<#0h+x_K3^v{%Avt+Q9PA_0Ce#iZ}C*Jry;
z`emd_4f$ldJ!Q4srK78f%uNa(&qcBOqeR>o8G>L*!nW`Bt950I>v+Z6qm_Z%89dH`
zQ%Zp0^162`CD!fgZoO5@hq|)`+rlx*_-Lrcg)zkM-pq#UZ6vehyT^rTw3k}-;U@zs
zjm7nJwC?eTt0;OqYeri7c%ysqHJK<wZvzW6uthZ<L2Y&Ueo$7HhLhQOvod#ti_}8p
z)k%uiq3jO%Vx&MY)297t<4UF3G)x;xoz+xu7$PRMSfUfq*hwVW2|!PQd*K-+WZH*h
z*zbrbAiAANN!x$<vT@#ou4OGmaPz9s+&7|6D3L7u_UuxvxUD@3;)r3=M<$ubl&8#S
ztb#xgxR?~04|xqK`05Y^-&PsZ?X{=&rR-nO<P=&i>({Ds=4t`Wl<joUs~8E<Wgv}R
zGa;Q<cmkJhF5{f>WfL*}vqY$5K3dM<CUw!Q{4Px|>JBi-(U!2ko7pXIVc1)!bR=sE
zhO8t2YBA9g2-INc7>kyIvp?&lfgMt$XU|g@BsWxyW~ynAlL&ACfQ6d-2z*j*r<V|U
zW+oTy7C5`=VYjdl{pr}sYtxm@^0?p=PWySA(r^s|HWCI#Wl($RlR=Nj>%-MPGVE_c
z(l=nuQKay@#_G0xM<>ujG7Mx8V~_FI&8|0`*NUj6wHJ`T7}ZH-L(q@qQqY+gz7BO8
z6saz{#XENxjflE>_fyZa4L_Oge52jjIumc2;knqA7?u^Xw_|n(j}-V4yKxR%E}_!I
zGAUv2+6kMU_+DDiXEDUDT(i-VX`keS0PDQih7An_a7jB48IbY|{M{6S#sN{b1xM}!
z5GBqk%3yVSt~S)D$jFVTe*l*v!1@~JezGVEndh;cXQU?Oh6}SecUM)N@1%z0@_3x-
zKLRA!B{k}!zECw!_Rz63_6RX?agFQbF#*jG$O2{#o+YNH4QT0KR4JiF2{=i428U|N
zAT2`HrKI;4Tih5r-}iW8!f7mve{pqnbyn0^Yyg~rmoL<Czl|S(YnlQkkvcRHRv@)P
zg-u@$q~zP&u}fEptDdVuYD4o9l6`2gs@~{UbcoO}De@mi`!s-r4nTG}rP;dgo&XP0
z+5Y{XXVD?6&`NTCcgFaI97bUA!=$0E<D(PWCVd?geic1lsI<KJNY#i&#MVc+Kl7BD
zVgaJ1;}fN9wwa^H*Ax4|15_=$T%gFO6oGj<RvcPmpJ1TrDjGR$=OO3wK&BROGz8(z
zE4xS<I|@Zy{N8x#Y5EYF>*>(*a1XQ#L9Xy`?N^&vMb-a5LasQ}UGC)0p%qNM?gkR3
z=VDkFmc?yfBqF8#o=!L)hWu$YG&i^jWZA!O9t7Qx-m7M^X6I=&5P}g1gnSkDjucvb
zc-%+MjllHJk-{!D16@;M#A_fySmjE7T?f5KieG?A;jQhKWBXpIXe>sU775qnV-&#$
z)-#2KHNa*w?DgQ)eEnt-%lLUOlUs-zE>6<@lNmyVti7&w_CmEplbv*Oo<v5bP={Po
zsxs=n@M*D3!QLh}5&-UHPK%e^Px<1tHww@9^_s)ytHguSZ{1P?5k$|0(NR)Pl9iuf
zF~A8_QMQ!9BW<&{g7qknyEdD05DXofibgW;K{zl|oc#l*+L<60e<N*NRYq0VC}!ca
zkFp!)ewPm&BO6;r92tYRB4JWG_T8!(nL@xr67!JI_0_-WHH`F(!>(NNjR1h@pzr&N
z-_u5un^C?ftPPx``;&k(^+(|ms_Bns*$|kUZbXV50t?Tac7P#dh7DtQM%5S7ewdPQ
zAKMDNr(zO;)@`kKL3uA7<_4Y9ZpT*PoXf+*!&@meO}GF2k2PFIv`+xJyW0v;Y_LBj
zhTscvm_}~-er9vrbRokf_Xpw1jp#87UQ;s2Ag3B$XFY_tq(2r@Ryph9GnUCXApBGw
z(B4KPTGAWet{yV#yUWOAS4*p_mnXO<PUaMn*|YE0J1(qh-&|fgc`F#SHgFAVNW%<<
zfMHi-Qv0v=Izq$dxHUJ4=Iq8LcJ|mxknw}^4SzMt0<rL*TsTAD3(4E65KFIjQY${o
zQ$BW!RY7^;2W~njLCZ=|<TxOiYb5pDWXKsh#$aQ~P1+bkdAcHz$J+p-!)%&RDSB;J
zb(7zX(0VMR8$SMy>f<5U)jcYC*B(4VQ*n*fDFqitoBJsYNM4F>00~xC02PgYu(|Gc
zG+Xjq{XXz3;6AONsL(iu_}&9&kD3G2+%}*b9%*F^F~|e^HkU>LJ4goOPTA8V>Okv$
zqkR<Ut1ehKvo}rvt$R@FLx5bxFogm0fUyd518<Gn@jMZg%(wF{dFu7;Y;wYZ0Lmd>
zfCTpNPztn>(ti#<1=A<?hT?mwm810T%t}-EsY}l3bivxE_Q5en-lw7s#`;V~vk92-
zZNU%d-fJc|lwR>^x43?c*@B>B#7R@?0^E2OR%^fjEydO5CiM1v#R!xQMnx$AvsU&7
z>L3>wa<m)cVlV0e4Ck|>stL#*fTiDng3sOm$ByUc<z3plLm9npRbG>BqYhI`iRMD;
zWSt`I{MnTJUh!8SP9H>}pg(@^LMJl5|No89i+CY#yy7g=tzJ>vYs@4z?%6DZXJ+Ub
z*<(;xMn03YG4Zi6v2}$M-i`+%k|0r$`PETkyX7z?mYn8%By~<`o5l$|U}mXPO(09J
zJNvTJFSQb`%E47Eq3K;(O+4TB6>*0(2A>&yl;Wjl=pZzt@6Ga@udA%M;Y{hg{in(g
zOz(3tIMMvb;J|hPlA~H7KcSbb#r}$k3hioCs%VtY`7-C2*t*!1$TT8A1<R)J@oL83
z)%51SiZZab;~wmmN?DwK<9xP`uP=zQuj13$Q41<5-FXE+sOKA*pNLS|Lq;s6-&+zj
z28{f&*^#1wtB+%2P@5TEk|Wp<3IcJO=ZTRe`-3*;E*}vzniuEZ2j?S)jMz72IoLb_
zNuSZ%zd$<1U&(-{N?3=X(j(wknl;srpdBkzEX6Vjf=MG=+cH@0UqdoDdrl?omzAe;
z{>aFKb<0Ice_o;G<#D0i{-D2O>8LoqI_mXqtRQ2MjeK;)6Y{Q;y8-@jWbo`8)IIlh
zH9k6mdUM1z@(WFROL65!QAo-qLJ|KiGUhB=$vQ~DAeFkYB9f`j>oz}<BYOMtxs_58
zmAL2T+Nl)`%j*|Kf0xg;UqM`;YclF(Q6rQ?IfA9NV9_Ji7b<i0h2x|W>A6YxQy3>W
zic<Oa8iz4BB*)pz;W6It5!W{`)MT%j7TF-HvVjEwCKHgvP7$?)(Co`JPbW)B1&WV^
ziX`VTi_fczDr<NvMIZgOQN>xcO2A^0jUVkMvp?ywXZha(YJqyf__)$mo_|tHPPA}J
z!Rzv$imT+Cdi>~~;p;waJgo)u^L4U1AA(ud*t3svegr#%x2I*oh{as??aal`j|DB{
zv+m6FA3h}a!@#uN^w&E*-O}ONO5_)4w6_`yzF&AI58>gG3dAZVf_8H_I>&j$R-p#E
zep>UF<5kJuslNeCzH1;Bb{ylJie=>sH?FCet#aO8s`}z>pGm7ulxKdHW6rkR-`P&2
zqq-~De#J1xbaQC$qEV-xyqEuZeRHnR$$@y6CRNyHL0wa0XUe_m9e%z89<!S{{c_=M
zb3<13uGtd$szcWL%^yYkuXMnrSn<KlzK}2xuVvi`s)FG#E$wR>I)wbRjWj9ZTQWVj
zkb||5UK#`XdRd6DtW}b2Kh)Y8896Gx%<h*d6Uy1%t@|*O@w=B3&s!1D(0cX&<946=
zBOnCM6s7U#m)}E3(ao+2gjegmFPIQ2eqCh1tC?S;1=ckHIUM$Q{p5%2I^-~+-2`zX
za=$?jkV3S^>A?(EL%DK6nV+g2-=!Y8%Y9skJ^Lkj_#=>eI{@xZ%DRNQk9H~7jdQX|
z(qOSs!-ly|mTsfFZw{H>IP6aK+_mRnuhcGpsA9<KjU5*yHM-gx%L7Jg&AO_dHqZ}q
z2Tg$=kY$Q((qpThfg+B7{Dir2ziR?};${=6_tz_V7{~m@%k`u2H;=a@D^Ne!)IZ(a
z<SA{0BF|95G0ZsDc4R$P4aXF8D2)hE@^u1};Bc^(D!%>4c#dL3GcvnxP}E&WEHMA|
zAtFwhy&hj>=Z&vS)(BM_1OavbIy8_u{)<XPL?lLAtbz@1YHGR@6a5-Q&W?T&a`+c1
zHOktai_YS^Xf8!^ax&c-?GWDUAQBSX0QeH~1#)C&q3ue-r&(b}x#gMb7QB5}M{la$
z>hLmpWOabI8*E@yX~?TWQHi026udd*$N%y3HM2G*&Y-?WeDd=GMj<pTlNj7^|EQ{Y
zw|%aLik{fZ6!DVENIoj=j>S(85tawIa1{53c2DaHVz_DZyl=DA%Qg`my&p^#=<LaM
zWT>a9*+`eGgMz83%-7V;ynf(!yd-Llvq5dq>AQ002O$-6kGS~}%Y-$qaU}@7`9@Ld
zYHgNJup5h5+PmGI!7;V@J&A69rPF3xJ#V+9e>p#W(EVi&b;cQsTYv2!v4T8T^~-Ly
z*sz9aXQ_IdvYiqag$b=R794O__l;br{Jr1(CUde*-HpEJJrd@QRB;$I^^2Rq$QMi*
zg>ov@I81tr`PJmJRWB6=LF+9{Rvf>yhPbZX6pZO1&W|69MyKa1!SWt!ypjWoosZa$
zmm>w?6ilM7Q>|5+`&lU|t%Y>u^zP2ibj1}*rj*CVSvu6y2gk+d&Q+Gm!F{BQ@g4c`
zsU;mMMoeqoBXG5DwhUeouk$}vb?<V6XAPEH>Y>PWZ_mNZNLdC2EBR^cmNq*36P5m?
z$HIN0X<gHhXQ-aWKM3_O-$_JO$`2Q30v68z>#OTr?y`v2=m+i^z_y9KN|@tNtT-=G
z0p&b%kjH$~Z|Cx&a0+x&$SGA&36RtqEHqtTE94mdrdd^&{%dv?$4@u2+8kqFTG%m|
z*>SnohH&_#sz&G+noCvT==bD~3oC*6u2!#goY<lQRMXUSWH_n#Jy)xI(IWY&<EhYk
z!L&Big(Re;<G)w{+J7gQ6Yr4h#4SZV2X0EW_oIovI7#}#O)0krW{Ce317#1dP462$
zgI1+A*0wd;0g)~4)%jSW*?Ufdx}4r>+1p6v<|w6MJw`+q?l1P2k({2S+ZH#U>$%C|
z1dRm`zku%_d3o0unJa<EMC24n;JIqNpd#tyz9BG3Ng%-OeBHp?zDtnY0r%!7%^%!-
zE2(T%%pt+H<lFX@m8vt-&G9AOUnbBD3A|AZAF{#rY;*4|NX`41*+z7neBYDZ%dA@V
z+a4}mmhPh@ecZi^80uaM8I~_?D=4m89&SN!r;)xBNfUhE{rn;~r@C^fzbxE-%rN}z
zrTZE!CvInW`LX{HczT`AkOFxu%YbSPS^CJiL<%?($(pHs*ayTTv-x*${Lhqy0DeXK
z;WgM1^U)D?et4eq6?oS+=)!?vY#zyt>$78#3E6{UtO+|rMZ7S<??ens|B4vGHKXCM
zf#`x935w;3228Sd!Yvs$_D@a}oCy9zS~jj(v>=u|C(D1Ax#<0(kvKLoQadVUyHJrN
z+*BL)jYBaRkXMT5EO~s{%N6H<IUq&(e4Nl0Pyt5uTu!u%7=<N94D7ysZYxrL-&*-z
z@3ApR&Q2j*RZj9UaAl)tfodqV%Zfg)z7MURy=__Mce`ZyS(0p!W|d@nHKc}SeC^k}
z9j#}Uzl7j7k*{-Et=y|lA#+<@x?ZZHUQNb>O<A95LPbIomTK((!E!b&$BtGUuO9$8
zDRItpiwn}@Ts&@q$rW1;dVEK)d2jNSOZ@@_l{fBO7iCM3Xj*+<?$^k1L^8<we^<x<
zy;ja+cI^-ez;2V_3j5d+>B&6<_#h-^5G7ThI@DKu!^DdoXW$HBBLUsUvL&hK=$Q}{
zgv8=?`9%>6nK?sSD|{)&?ps$g)uiL9`cc3VhfZv}Q!C2dh?Cd5kYE#?DC@$~Z!GsI
z>DE;85Acn-I+cEk_N~{+5@K(YNFl3ZIQ5T%%3pe$JnK&Fh!cgAyi-x&A10@xQ7$>K
zDI-I~>5M8rQU~9AJ;fBZFplWx31d5cekZ;X?^m7Cg3+q51zST4(RAnVFG87)v~K*Y
zo%ok5xU%b}`;I_|*7N!D)kXdDmq%kZ&r3Is?F3%k096n!pXIYHdi%W(qoUsi(Vy5o
zq(BKamjS{@`-_pSkOj`!KO`(H2IHHB*S#1NSQNnur6yipVHTypZlF`;`+(xkC_@Dy
z{c5Xz8P;tT6D7LP<xu_g;CbbA2*xk{Z+Z^Y`s@sMqamT*D}7NR{fGh{BX(cOXhh9N
zwCprQYiU<S_V?2xPjYfzf6$mEi#B2t1V~hD@}%DF2879HWX={UMm~Rh=ektCQDH!5
zN=_v*+RFvQka%;&p0JjXoamYnN0%;i6r6f}!ro}RD8_q|gJ?;aUf1|~mxnS;s~^Ik
zwLw|SnEJ+eh==9}BzksJ&XQl|3DipsC@X|s@6oo*Dh^wM{O(V=YsYTmJ2K1(Z7f)t
zpb*pk{u<HVDLHqBGOug*`Kc1tcY0X#mh)R}rZ6@Ujyz3!r1MAl7kWAFwLDmax4h(4
zjlVXx%(tCi-GVU&r6@Wspw;~pdZm4u>NSTW0c=J^Z4Bj&LQn&1t?$8P&SmdMq0FQB
zcAz!Snry%&`tbmrZ5I$~{%jVQm%jUV4q6UHzs93j(g;X^pAaDoy$8m+1zW-94~2#S
zFR|zKbd~LUpIJkm>AaLc*bBhOINav&QN%A^(2s1)3vK!?uMpxg5s*VW;dSw8v%xa8
zAr1;x#mH}$T(@P1Q#O!8zI<?a{C7m%=j{Qs?AI5?J0XeSKtAUlW2SZxZ0AddsAj~~
z)(CUvWQ7r>Zouu~_VR^LKzAvEbwhj;dM|{n_Uo>DFJHjZ*z9{6bmGN177Qw2<4LGt
zeB6HU+k?QW-%{8sX7Sv9hp*ypLclM*YsB?jz?Ww1+kKqEqhF~;5A?qc9}67h1qz3R
z^#JKETEW4N#i}_MKU!p}<V8Kh+&k{>@N1F@^Mqz1@edLW3+k_Va%CmuMg%i7EFV7X
zsng4res$BCZ}h7RYB(+>)k*1aHUz%2$q5sR7sU)7IIP;^el?R9LjkKbIINXo<=GvQ
zM9O<QO#dXg*@b)yJE!s-pT^0$_Oe0Adv{bJ3xRQn@Hkln1u*Rrp@Xxx03#}}S^Gh1
z8M~@I)3ES<48QG2&Cw+jkupL|5_eF=en;x1LG%yV?vc+~uE02=q{HmOTI#0DA@?In
zZax(^mxb_+Tgc?MtJwom>0giJWz4-M!1Wo!5&rwr|MQV8gk)S!N-By;c9A)^g-2SQ
zkc##%srpdcFy$m}{IG?}nSXF##e0QO+rgrSNm8Lz6`~8f3Sag64GAv1vEa?u`ix%I
zUPJqfw70!vux`?q-ZzCRp@To><>F8wPwW(aX@$biR7=P;MDr%QTfGy?Z?zQ&#lN)g
zZ)aSuX3qc4-L@l4`6Uf|6ZQqT+I<_IFCS?_W1w-58`r4V<o?ufwq^a2TWPi9I`hup
zJ4|KE+ebb<=j4-qNhHnB`ZD969JuUfg1O)14G@j!Wg`|BP#ADueQz1Xz{XCTege)E
z_0eYv2m75uuZk`6n)b;lNzr^6UkqP_Pm0csUb)wJNZ@FEh*|two<&QrK9ylDOuvIe
z{;rAZELpv9^WwX=G;ve*BlUiI#ArsX)-h@DV0Rl4%U{Jt!tbbwli^EM&6h(uS!1!+
z072i_=Mp>SHXdc_%nx_N2P?lgTQ!nxMw*&voMX?aR<by(tDMZL3w6mQ+Aan#IKDV>
zFD*bIBBGcjRD*)NPdH`6-<*hA?H)8+6fgrwNl&bURZROZ5Q29(7lfF4@9&Pvz|;JW
z!XKX4?6f^}J5JD?&oQ|bg5qob=-tJn9a!6F=m|07(&tDa2NOhwXN~$PB=_HzT}B(1
zqO`wtPh9Vj-2I(n&3nT3U!+ix3;_uv{j6U?r1<nB^y5zJ(J<C!(QvsQfqZRNDHUD_
zr6zcLBbGZLaRr`K8Y%cNdKc)SjjqMkn#*JwnIRD>fRt4J_^JHCOA3R!eZ|IhH)lR@
zsXKM7@?8bZpQWw-7;8YWVIy)#-LOH%5I*9CqOi*uH;(DX!(KJr7DcJe+r*Yys+|y$
zKOlMcDH<3%!8LQr-Cq6cbM(3GG7ijaDn1es(4P^<g5IA4CjUDa6z~b)c^5V128lJE
zTjJgy@L2ct3!Ojrg&qsz4DyaKFX{PH%#`PX%v}sZuKkKXzPlR(y5N<tNu1Aw@4H;R
zH(tx?T~_8_bks;5>++;$Xhli#ZS<K%3K8acl&A1-V|LvXfIb3~4`+s44%sSYP6;+i
zG5-Fl4P_M`#RLmrudC$wM&v)Fvk`&}Yj#<DZUd#k7isKXHHzQ+MU4@gNu855Q=Wp&
zb@a|9Rrq3K_!$!|sdqVF0vrXiZ%CdH=|>ltjgUBp9~Xxz@;=NmC%V%(6v135;1OZV
zLL0u;`GdWQ*WKX$#2G05FUrm`DvmZ=+qk=XI=B-cxVyU(B)DsE_W;2)xI^OvcXti$
z8X&>l1ALV^Ht)<F`ToITv8ubO_I|eBm&Jf#6X&|=Z<Y^!thUtq2^ruD?$~y*RW(H~
zsAWE0o5jq_8Drk|9=*!N8mt)8f3s%G3j`9wTS|$^-(hQ_-f?omD7ZOQ>7Z%tEO*BX
z>YS?Lh};94ePszN5fhGq8@7LlIQ}C$`}bU}8#WALkel^|X#nHHV<QzcwXBY(&GY!=
zBp&o|mn>VL8Ce_@sH4gqzf>A^_)BZNeffb5)MHKM9*^M<a%Fs|bp4_oLkZ8cg;FFD
zztA4sy4t!R1ZXw6u^M@t*IZ3-xF2YSZb#H_lF(~!;hW3;u2b^-A)DKJP69YJBl&GO
zLa|$=x!`A*I3K1;<~mt)+j8em0e<%PH^gIy^)~}=Ch|@g{H75&m!!Jk_Zpe?g;!rH
zh~8D7WYUBCFHN2EDWk2U!vj{_=}%{0+p?S$bJWX|?Xrtb#_$n2CK}i_z#RhqEJZwA
zF~w0PQVq3^Qk5}GNjy&P1KnP3GEz2_A;(^{tBzI!8FuDv+>qv5MSbht*4|z&v2Hu>
z_cWod=U3^sW!N`g@T5s;K(J-;+E3rAY!h8ocgdHf(Z~8dEPS{Ebh@;L1+|YD^b&db
zGKLEstv<{;-Ttg)(!D8=yj|!`fy7X?@7#lxRpfaq^ZwB#PTaaS)$m2~mat0IruP1x
z;yQNKfE<k58}Nnv=;H_fdnYP^+Z=S1^6t(S>%-US$mG@fA7n5T8e}0U8s!sCp~x3a
zn>rsG1tQlFBu0jEz|Ns2s5UNe%#QK+X4a!6yat;;AjHd7&pdS0)?oyfB<mk;xW*{o
zV%yCvd_G><EN$P4I#%2o_EvAQ);CV+WUIeeby%1hQWAU+CmHg$@@2ijUCgbk_jz!B
zP;;Gc?5{9wj!~46!F(z^+z50|8M*~pxn{*Mp%&=%5uLWH=FX(HAybbxM|-9y&!3Rh
z!8bpt^`r<}Rz-!*9pSZ9M!zdbw5vOzw*3APtMLBlbdi>UL91Nz1{V{AzR7W<q1#X<
ztAl@WBXFy%sRP(F<6XmH?DS>j>qP3$LRBy<XEQZ@l%qg6upK}l+M(odxTGxSn=XiA
z{B7gqX1J}_SFH>$^ayQ5l<$+lqpsQ&?q_3;^2$nUSb7TK!EC`FGAsTdow58X_wepp
zg&fuoeDDqO$&k;kZH<ERnU>^51;02Mn7cHd`P?-yIhm^|>&o9h&n!Fzb)xjTw&1V3
zzkawr+PNWudvuSlsNnb7opzr%9ZIpAuP4LC6Emm^>Oa_)>dY40-QSfhB`kfPcP38g
z{~UgFaM+_|bFpw#7B{8JZNUGVqTbfSz}&e24j%q*hcfpWCM_?nQVV?Q@CgF(l}n<n
z(r_I7@MMn;Sc<He{V6KqR$&IyKIAWl_+O9oKfg^fz;xTqTxA>^8}kkuP44XE<8{2X
zx3?D!9MGa|@{pw}V7HhIhrFq<E{k5^gbIEU=@lsK>gr;IM|7173TmjuH)&UG*KMwe
z3~*!JQC{T~dYPw3La<>%jCt+I#}7n-zZ)}v?7?aB<1s7N!bG($KN3~EJHIISx*>)z
z`USC#b2gsaq$vS4TI2|Az0^17ZBUX&_^pG1iKIbgCDZYk+xnxd)>>!_Pm<d%sOWgJ
zvSq!h(nqZb9_~^3=@xTlzIKaBS_2S4Q$v|Ai+Y41C)Lw)KbT2z{)BAy@ca}jo6K79
z8~+2zTo>?)QLaHhNxSF4!$g#DV#SbA#PM&htV~a5qmjucpJs`0vaw<0c-=-7qmk-j
zONV4|o!QhrD+A_0pDy;<4Zpus{vdmGrIFB%WyhygDL=e?Gj8Pb3s;IPTlw(7!sr~$
z1_06Zx;dmu#^1I^vJX!01u9ggZ6K=N2?hOOClIIG!Hh)fP8jlOfmG~FAT)eGtBQ5Q
z(H}{l<vI(S1CT$UX!Nw=WdbK`eKgM?*}4_#^>*zD4<A`8ph4R=wnMkf&S^v$`*^-w
zpuq;8S`XeVQigK~ftw?2yS={?P$f<-YXr4(g|;+vtK|rihIn}~ICaRyGw0?h51WfZ
z?DkA%twvt8W>LPLE;$Kf9XKiVpfAEVh!Y6uwOQBlF?S@Q6_Jv2;cGd&x)toIjU;6!
zOPY8g4A_V$R$ySu)?Tt5Xzx1_`ZLbnfBn+3D|vx(BnxYy80R2PL(epfnJ6O*Zm*Av
zysD!!`|ylIZFBfEkO_zTQ6RqK+czMS2)5k;<{_fj)jJN|-MLz<tF?@n`+<_5t7P}|
zL~Ib;I)k|r&-Vyd2W1JFdGTakEpxHJ8q8N}XP1HsflW1)K}cd*N4)=tNdNg|{+nUE
z6V1)d?WTPUib6(1E5<kQ5Q(a6#NIg4EBZd=DdyM?x|2rU0Plmiy&mrukukwEz0r=J
zzEbskV}07%-=lypKU#sSft0jGjfFT%3>!+aX}`y?^glb>#Uc?a;hHG8rkXPJfq1`#
zCj@Lbzjxl1)}f$wlF#6*loU0E=A6&~a`XUH1lpi>zla)g&a$FP7%3Ztpfzn~oDq>S
z7Yvw`TBJ|&%Z<<_;hYTOymRghw4P(ewRP?|k$c5H%J$;z_cZD?Szy;L#QDn)HW@!`
zqyi9Q_6b;frb*BZO#Ut+|8KtkN0=y#<|TxfKLCjEaD*Tbd4C{DwD2~!WNs;@<!lSh
z`s<|9jWwrzAJV}}i$UmAf#?+D61hIpVgr!)KaXG2H^sOzO+8dnbU*d;a%T1-EJX_U
zdSly7j6PV4<N^&Z-55agjkQHZEEqbfdmym;-{Ta`p{o3uOVxAiqE-_fPr~Gs<j4rN
zTjQ_{5F7PLVLn!(m(Y$8h|9oll|ub%s+giEX01B-seJG7jbMuB?>=(N?t8*r<)v7p
zt52o!yL5ES)bLVL4`RhL3C1dfh_KSr*##q1-gibnXm7q7=)jNeWeZB!XB#9rjTf#E
z<4niM(vOYE@4OjK6RU2IUtmg?TBey;Z!YI=|M$S>@3Wcz=H4~G!wm4Y4iEk~j<5rg
zcWi%mcjeinp&VD*h1k_@tBKh?GPzKTvE@5cdkcRThS{u)5y1C>e-{@QcN*W&$0^Si
z&jB7NVlRaY%WFrCd+MBB1Z`=H4ipW{gt~fTo}FzgNfb$_qVf;Z#IZRmswo=9M7_G~
z(bTT#<UMLLCw1ws3s|*)IAXePj9Szu4B0-Vpm@QCNMD+$-$CwT<4974J|t{uzcqM|
z>|8f8ur7u{GB!Lgk%e}$COl~zk@KZ3m2uJGSUqyJMvsC!CeyDCB#S5GOm%pUij=&k
zr?+l(-fv@d@Y4aze4g;X91Q=J`E8L4clY!Jo(C@@W1>@Y8^G{A`z-aFAYNSGT%pgE
zmk(jz&6n$m;gn%Sa@W)uzia$<a<yEyE9|7dIwI&>TP4BW6^(E%_zjbGau6_fg`n;v
zI<@pd(!ZTey3|l^rZkAr(?-+4H)CFtA0mq`3S<oiLot_x*5@ZGYcPgf8tbsadcdg<
zW;DWM$NUzhpqzF*-#r5B@&7b#ak^+)f#XBKhj@9ry-Tzl?<1xgVewI|BW990DJ@&p
zEC__iMu9_e;qwM_Hag+%46krNQ?z0FLka`7bu>tlUQ7prB>t54v1D}5%wqIWUC`iv
z33>mnOQA=CAl!pF8htnfGxWuztLeV7U-)O$Jn(~`uG{(Ehe2IQj+MvGiE^S!`>JL?
z;3ky5vDb_IuRBjf7TCfdUsbpr>E*g+O^+WLRWtSaC?EFOl}wR2X0o2mttiU9#{K&x
z$aut}I<do%OaJX0K51rVQ94D+sGr|YE7e4A42v_+B@&kD>sWDoqVk8e^D!;9@+|OO
z1xTG2q~Go#N;osK)v2p<`65t%&~&y-e<+sT;9Q2nLinG_{eNQ)|7kJIdN4^A>Qbz3
z14uFWr+)iP|Kx`PzaRw0>r1JC4QYYQL_+XXFvwJTcYg<X0PnTwad7WS2EX77OIc&j
zg+<CnQnH0ljZP(Ok2!dYmvQk%uoa1_s4!_EyU)Md+)@UzY&g=T#*{yf07W)#U?8c+
zyUs<0lmM{t0RR$*Lx)QuqTWAd@fTk}HAmF(9)I3S1`rmvdyk9%RZpLyz)Ya3_rx_`
zT8IH5F=kS+_RXm4&7LpcSZk^+S81yuNAqXPR2VcwQx>RalNDvvM=RdsL@E2p$=!oP
zdDwv>7wWEnHT}#|C6^F+A;<ATFS4B@s&o1h8R*s-hYvq!hga41Sup#R`jPYGbsPdx
zKS#0PvLnbz5Um82his^9n?J`h{Eq#v=lx$s^)K&uw>iwa!H_peBt{immh3K>@&Ejv
zfhiGxe9Q5YS;vqZ{`?=;V)kFI1!jH_lp{Pk%%i{)%ER_Do18Q3tgOq3&s_W$&+@^0
zWL$^s7cK_*NUX{_ytLLVRVcNwai~WR<M0GEzKA3veuxnMcG=_iNz@rLjy27;X73T_
z=Rw7yX4El`pn|gMqkbDIm6=+yYdWhlPNMf0MD%!e$#`kQX=R4QcW+Wynkm|(koSh_
z=Gbd-vql&S8Q@(@ns;5Cot!DPETo85%PCIqDJ8iu-SE2N*Yhop@^F~+lhLp4-uf$X
zMJn;U%{aeuPJG~#3K_n~5^)yq*vZlzyo<G0@EoAp-QJ-*ZzzF1avymCzg+y^{aCI&
zLicK_s*|`3HTMFl(B#D5H5>oksD;0X36Gm3h7A6yv6OLS#JA5ki5;Bj{wkvWwl_}G
z1*<GFRM~)$p%`K+VANx_cxib#(a<tP-HC+%ftQt{Dyn9!`Tm352f#pwg(x%iDEJZ_
zq#1ZW*q1F%FNd<ts+G#eVTzbD;*Z7+VeQb77ZX#RZ7Ot%REAg=G%;#XtCRT#_15!h
z`2NaK5%@I}$YfK9wVS4PuuFlE^6PUg`-23AM&UCZO{n#rP9z#Cr4+oktYET4{9DMR
zuh}Ay8$m8~!?A6NG1I${>)>b*MM`)lyhq#Yw{hDvGWYlTDQ6p;@>|X+mtSPThEJRc
z5D~uv4Nln%=D)b~|HQ#VP9Ar5#ve^kj6nlj#@w5EA%le|VG$9L2}17Ve|{7HmGfZc
zh1p6W5{i13<{0|=6|FadK;;|3FJluJ94G+LncM>m(3R2tvx5~D!0bjQknaNG&~Z^U
zxsZ#i+uJHFIg{4dym_Z`*t{vqW%PN;kiYYa6<PyF#NXUq3X$?Ue{JnD&Xdezc^;FB
zr-O*;)sCK7G9(qNPV2W*t4$NKEYJSt356QVYu}WSq&OO)Vij&w%u~=OE(>?p<1^<{
zDYp9kI{N-u#5p9NVmNXE#dDNWrjGt|aEGHiXjCUXvPqK#2c!>saXCf$#PlV-vdMZr
zGUkntJ>KG124GM*ZvG9h?#P<4-THs^sFoNoLBYWXK%Kk<;H@Wo{`|Qj5toD*W(Bz#
zi<;BG<0+{r{4aNWt5@Ws>7okGA-?RG8#DIGXNwV?IQ+3uIjg()b(etvx_T`z7ak5i
z5^kR~()neHVdHP(#tV>u<eim71YeAeTpY2HBXVWRx|D>fj7q7p`*nWBwVty}J<UOm
z4hH<#D81!Tj?hT^VGj9wT`U5P){4cTwQz2m8?ZA-A?3@hEr;Arz6wtPzvQlDlE#Ik
zSzISICnoZrp^X1LB>qR|7WhdV;xO9FB&dK46^;F$i%O1UAPj6g3U5y!^(_V0OTS!x
zxf&Upmm7TYx{t3@Hg@^sTr?LoXZ>Lp`&eX|=1Q8W+zcGWjf~sxJp797`Ov0j6eIJn
zsR({Urk!eANig&;uJQNN1%G#nzk|9Fg&^xFw6R7}Mr1GHTPT<PTUPQ9r7j4H?@0(t
z@uXCRRLb@$%vs}tZ&RtvsP`nAbI`8Qa?vVzRn7hIigIMC7aF=99Y&=m-ZoUE<gr1q
z#F7bCu~iq;LANyXVW(Jx+E~yE*ZyNG@1L&rcb^tDLRdl~S&Jo(RHx_L+v&a5e{riV
zp<wo_?zJ0@@g1bl+|blDjhtCfohjCo7R_nYYR&K()E`V9KPP%9sT+Xl+$M}_>zXKN
zdB|40<ip}2J&!{p3(Q_Z?1t1e{y)Oyk1&T(0l~q+jB1*ik})wc@{SekL3;n<l?cQO
zfWX1Qb|)!m><He&(vLhQ6{V6eOG-<T!!^^WTSan?obbxbPysE@t5OB^TUvp*=x0AO
zghUpo_$8;N{!jPjAO0q+j~QT1;Ri^sUJfC}xJtxb{figj`#8cqjJNXb2*0Y_JSi6o
zzVnSsaW{g4j7y=c{mw>%lseu&JE_0CF@L=(6CPwUxUsG-5g4oBUTIp&b{_f{Pv|2I
z3MK-|U2)VLiK<-k$n;1y2?;5<IX7ukZmbm4_O(`NuiW(i@47^gv|PQTV`GS?Wm9~x
zQZ6gY%V|i+$Vag6Asn5YO5Gp4I7UM$p?nJ-Rfo<MlhnS7b=iH;qfz%+^R*I|_qX0#
zjMU52Gh1#>;@0i*&ziW=6S%j&yhF*opX1hTn!0u7<Wf$Xp6-c<b0rY3gkFhD%}9-!
z7#}NyCH}eCP==SWIccEBpQ&G34?ch!%P5$@Yl9|gHbGNlrmXiZZLcT{w5e+0JyxU9
zQlh6DuHrF4mT|@U`N>n}twvJn@)|`F9n*LNkC25aOgb^7x0HpGuREW^<k)`q*yLok
zqkRs`V%2_k_^K@tjAHTE(;Vwk-SrlJ71+JnvG1Howa<k*B!4C${)Z>?*S|60LV~$^
zw~C3j@su2|FE8_7o}bh#EonVHJfsg~8X&2tsOsI%4E`_^Mbc-|TUuLZ02O~aZtkyZ
z>+21+u&}T=#Kdv{LUaZY2}eOG9AoKPW1Mt`wR;65iBhKVuUiv?vGoN!TGs|8KKK=j
zid-Y!p_gFlOR5^EFf&z!)^oQXAskLO!Y3nOY3L)wi1DK3tulA$lht?ybgXwAi93?4
zo1nBHITyx$Rw}?G>4Sm18X;5~b-VUuqGz&x7i9ADTa%i06XxTgS+o3c?C&V`QU2D{
z7+W2A3x;tS?Sj*%5MjOP)n%l-!%x&%mx|PCGlMzcbNPwjO-sJ|F=giqq`0So_QG&y
zMUvvB0SC301NBO4456?oFQpGn9C59mcu4i0lXcuatg454DR@WyUUktZUs2uubopIV
zcKM<ty!v`kJFQ?S8C~t8DT|X+MXrX!dVaDRBz)kybl_V?0Y8C(*N1pna`act_vibm
z^*8BIpBH=>Rt$C3@G@p58x*AQ(GTewm#bYZWadN)Ku25m%U5F=q8Fu06>m=96!XAu
zXUBJhBN>^w#X{2#T-c0=i%xazv+Zm4Pw^%72RCIl@}_rp4ro4Yg{jl8C@z1C!r~go
zr|c!K+}-+MNX4~@VYjZEdp?f1a{o}UkZ?r$hQouX;gD7K)Wr2AVC!o#mJ*^(SE7fG
zCfUX_RwNOpehOp+_JfljWyM3x%$-BcIP(P;uOa=YT<N<f99&bflD-T)m5ox<N?XgH
zMp#nfB(eGmPg*|3MLKY;N}aJmD|e~W-@0C66{+l-#*MGM0=T6d*J%45RKNPF>WRgu
zDn1&?e)(XMd`~jtgyEXy7)!7FgY7i-?w~(VK{q?xz@)T~ip%<l1D12jyZ6|u@Y2{Y
z>i5qfQ<hV+nvkxpl3hE0uxXvyk>C$H^Icaq`=7sgl9F4e7)cqR?R^6Ip+Bgp*u&Y~
z7b0P6Ir)+}KV`6WO><Q0N{}0$3mH&w<$NrlEO+uGq^sX6f2~V5NQKc;YBjvb<z^|6
z#>!?uPR0GHCOKmtID6*uI7~)JJY$96+To+AUzY0Wq(36PBI8@-m+3R$D&@c(6Y0zb
z1~KTLVrLpk7Qf??ogK1!Iwf@Cr^cEbxTUC?PcZiPUOmqoc$nU+<umOpj7CPSo@UN|
zac=YN<qNk-?P`bLS<%S!*40DqEJ?~56ZgD&id=XHPY@_63TR6RFI1!~q(>MUy1v$=
zeE#u&4W@tqBrqjN*w3$%BvC^)hADfC0ASU!va-&fL-S$FMgemRMF9TiJD^P@civ)W
z1qliH-fR@d*_jQK==uP}=LQV^5cOb&NDE-98cK$)udS({=j*uH%|;I*B_PU|V#XZt
z#0cy0Gr`^4P;f86(^`nox0zj6618B;hK~>yi>xfk)=Kyu+EuW*>${~&+QUG;KM*HR
zMsij&pFDuGnW3N+r3gD<aD6Kz14cT1Cye!}(f73i<lJwqQxV^<*8vUtwuZRjfJ+2R
zZYRYjH(3P|tZ~z|&4XmQC?+vd6s+t7BVxa#fA+nYg{<KC2fV_CD5i4!;yBV=?G7eE
z)gIU;qbyg;@k3wZ&AkiBC-%zMdp{Yn^2$tEcph21L<>h^T&C0*=2P8touHn`HdIrA
zVB`7x$sz@Obi<aZ%mG!0$x}g`6;IlSF!w@Ns5c##pzsLmryDc9_TM9Xl#!ym=x?`>
zoYS(yOQw*qR5sIIrMguenzIX7ru!_E%`XjPf>aN(jr~OxsyO?;Eycl!+H@V|#QzL4
z>$nvy!u<&~nbmN%Zk9qK;KJ)l;G3vJa_J4*RIoAorsSUL&5Vi&-YhYKyW|o%y0io6
zIB3h=_*HU+^;JUWdN+@0&SW$=A!@<?d$NnmkwbzdxEkN6o_N|OGm4pMl)Z0(t(xiR
zSBaUS$gis}?=Tm5W80!{5wOg3*H)|npo!VCbs9ZIoR-6BXC7y&tMkow{P|vylc%(J
zgw@*|)8s9LH4Vcon6!;y$I2d_;7=+JXhG7|qleX2kNhb{Q@Na+q(2{>-I5d59-ALS
zoNQfle7cNOF!IC(T22_Geam0m%g5DHpTX5Qi=<yIr1?<a`0^eOG?ZvG#V2LCg>(8}
z<XD&08bHyE9i?=l;lhoO?Y~6;pS~E;>&6A0<-5LFFR3gKXfp(-Ofi5fBNtMdrEc*T
zp(UI(5u4q%dB5Au2qEt6r21AQc#Qm8y6Q;wHo)Cq-p|woCLI})#@!!@*cm+wcN1-f
z(@)q;VjlODRIg)%A^(kM$PFd@MN~>wb9ycM;yQb1a3UY<O*$Rd&D`mmf!*5QlIzD?
zf?UIhl4(z=sxtPv1&ssAK(N#u8Vk(YBj|fqT4AjMcqLJQYToEsz)Ell9CB*FHn!F2
zT1&k}tQA(y1n&EfgMQDC(@afkqKJrye}G<u3nZkZ3V<eG5x~?Ly#^L-!ghW{(?Anx
zcE?8rKti3z+<q5BR{@sAe<dmjS}k04=K>Odu0Nu=um%yFI=Wqd_<Xx+*!+pyxu*1&
z>>}_AI&dO`OAQ!ME()UXTH8Sch~YTSZ0xY#n0V3v9d(LDfC~%;b~R?EIETYbhGL4S
z<WfLw=8k3pu7~OhHx~e*D=8_7^62v7;;j!YgiI~9oSa-iW@e_fPVSb+H=P`?pmQR7
zh^|JdGG4H2sru*_xtPQwj^|Zo^*&iSxnJ_6Ytxc&QdoL|eSWLA#7t|~Y6=SPy>*WQ
z7HZK)N@8Yah4|NhJqH>a=s4vOymO?C4ba@(Y;2>94LqJdTPgWf&E<e~upjKIJQO^W
zly(2<_A;>_w}=ETfdYq+2^Wqp`uQ{9J!B5QA39K_(dYjpKstD@-6-^HpQrw~=wRn}
z1qPD6XHu)TS;GlB=B}IszszP+_Na@j@37C|7G9;i{^}gkA(Ry7EB&G{_|pwq98z>Q
zoP9j}`emf#(ljp5&yVq-Cv(cQ^4>!Rf#hbft`*RBYa`EAF+N9v@?-=hZ@W<*w>=4+
z*RS~?44k)!e9zV1>6|`~EPXE`uyr7Ig}9?kSUT`!Gqj9KTnAiaYhHlW!5|N9Yc)5u
zh0RSCf3psl(7up7Px%*v-eS`!dzEC7BsiMvi+*Kt6H0D&Sbd)RZzbbEUMGGUhi5U`
zrIVDyqQL16SVSB3hJD8uI%kU04>Cvlaz#@9B4JS^KFO5U?wF(QI;BrVt$Gbe;^IyQ
zDIoY4rbIn{-(i}HV9EC07CiP#FW&ln;xY``W{{j)*AAo(ONykmpFow5v<>xbYSZpR
zsYIp;#1NV~u>f?h*_&^#A`nL$H!31Nr=k~fLiH;_^fpY;?`qAJ)y9Q<*K}(Mopf>#
z7a2N4d@&cHJB-1C9dvzCTrAZ1PSG<NO4{|5VDd=>7FzG@^1$XbJ5}6m^pnD&%EZWI
z&@t@5HTGf7^LRQB#W`1N=jS^DrdSD^pVp1a>h<qkqurdZKuXiuO4{CO12l|bxr1%b
zpMQ==3TF{4l6<WLWy1|!r*0?wW*3!kYeV^w!(l6YFG0L)g{Zr+0tM1X!@1)!D?vZY
zf1kJWg;V$#6@Lg<I_Y-DYxqxH9SC*5`yh1x=<9lYcIY*gkoReS^)tB?^a?+Nao_Ny
zi6-KRJZFLoaZTd!yrituZ%Y9%B8xu6y-bEl2=zp_5U{tclJ<NXC2Cq-#$mx<lwe#t
z&Ei3vURD>kG4?m)++nC~v7(Q!VsWUkvk`WN);AoQ-89Ywo>GRQf+te5foHaArVbUI
zjvaqKNjrjkHh+s|tc;`pBRzdWzj$HbF+dHn!lD^OJQQ`z<g_D-CKJ%*yy(YP`p&WV
zwW>|hj#HdO+7!d?`<>zZA2QIG1xA#^@n%;JfVV44*u5NOs7{)qf0XvfQ-v7<*hAAH
zh}fo=fV{bMX=&+W1&KLK1$n?XHdnGOZuJnOa@ff$82+Co8LV*O7SC6qTOOUaPy9l9
z%}@W36JP{F_$ONExSRkpMK%vGQa<2&U^}z4y?qU35^!T9fe{(@tuhHDfPm-t%(tNB
zIN35bX66_`i^d|w;_h_a`CT95jIkNumXZ<@j4{2Ps@yO`aKDnXi|VuHs+!qIsp5X?
zCgSxUs;2sVXlxYZlV|I_!-;DfFXzDJaN@Dz>*1bwebGJ2QuM)S{;M-8>dm`m!qD`!
zz^-w4CZtb_)179YG%#Cig>0z@^qhlH+*_|xtYL=2H;Q9FgQ_ZWo^l<{d`0(RWh&3c
zX%NeRCl-phSNY>xIi(Tp?cyPO+<Gn)o!(mS&dYsw#TlFGU3Hb+VWhRl*hvWeZu9GS
zs&D8a9)hCd)k+-P<(KJ3E>q$Z*ZCp^uFa1v>tN`rP%fWKmWeD+uiu;R4_}n19;Qn)
z;AON!R;}gu81<TalN;Db+zU=K7?O_pO$lk?s2yI#sK%(meSu9yKSmsQ{Bn(hM^2~b
z*q~kR?90ly#x3LaQb$-qY;h%m;R0o!*>as70-^gwexw6#?NvCK{Ll~9W^I06p)+@B
zr#y~`sBAdu8y{7Iq+5?lQZ+Q|sKT{UhU`}Tuw}OK1$>Grx$~6|PjT}n2ov;RC1j4-
zi}E8~Y~klPjCc-YTtqXgQLR9|R8=|E8WGR%ivu8>rW2ufw7!!L+#RdSMymNLc3p`E
z7~$dhw(2UXwiFTqJMshkpXNyUWnEF|M{H}<i-)>Y(Ky`AkLA`JO~j6{u2n7>KFl5(
z<=Xg|baO%%(>RS!KNk<~H|E)*{JDqnIFa1Pfe6F;f?G0ra^PLw3sNt*@+ZA?cghei
zLU6D>2kNgMok5LXLY?bs`(1^~a%H|XCv1I9BXL-wVX9;P?)f{b{@}|0$k-aK>=Sy+
zRwNOOiJ9YSR?R8Awb1W$I4bn=N6&u`20ju)f#la*7xh=#{1u9}-u@YAPY{>(6_k>a
zvYszXrsP8*dLK^axr?dkItSgqJt!f}k8f3st|cj{^rTF|rJ01Qb{g-Rl%aZO;f=q^
znXnda9sB#jBay$0ME?cF6(2@wY5{tf#w$rZd#*7V8ZaG4mA8M$4c3cQ`dLkcXECTo
zK=%_>C3?d3`f&cs`I^dywv>a7jSchN!I>FVUbkZcDr!vyq7W{IP^zQ@qKqv9LPENn
zhMEgNehb)JBf2GiuF$F5y%pZtN!F6zgt3KtBp(N#2YnqXukO^Pfnkho;>Fz`$LD~;
z_)5rb9_8W3F9)=?S#d&Jz>qu97Jq4oTjId9x}1==1o^){bNOC8;4|fHg~OZ6ITwh+
z(MKK}9N>_VF~hU-^YbGJHXDIBcg)_vxvQn@N~VEcIOe3VG&V!)qp<qFY9`CdfWjV-
z^C8EVd(y&O$t3NdRxLBWyzlSPxDm`dEwpuMn%=d|vreL!`@W!o<*zRI>?|KEH?lfk
zDF0oiSxA$!{mStW+lm|vVpgG5IN{OFk|v-?%7Jqy5uFx&rk9GVb9=KPX0xMNZf&g>
z_Rx?I$qEhbpgsDztu&-qG6T8o=6SQBq5d`rhp|#>H5*4?26Q>o!g_)+9bbjzKU$0Y
z=~wkqvUS6B3dm>x>8|Fv%3HT_n_?|;#TaBMj@BZJH7BeJt%Hf=RMQRKNIz1i#in;I
zD7ypv3}p}IQG9T95{y)`=BAlR10qKhHaw@Q_F{akjdGfeWsr$)Q%mWn1Zs9MM{@l(
zP4rs$u=BU6SOlsTv;u`uqCZ)BaJjWsO^=iN$36Z--ferGrfTk&8yKl$rRIRpK$0RF
zKwf9mKV>xUvA!537^2Ab>24}5o>;?2MKNsIEkL<qxXo<ffv81gPigs~#4*;pguh8N
z6pKPS0EDt?3`*-k<#-1}h)Ox%%T8l9t&eP&_qM5vu1}!a=j%eJp#<f88!6m&?Kjk?
zDV1i6Q(&E^uT`=6bEEH_ya|_$+OzUWpJ33o*P`bdsj4Su`w$gV(3a(_<a<$S*Vura
zvg|dm0}_lF7?vwkB<o7Oms5dbhAThOaiTL%Bz;f-^^P-+Rsf1T1j+IQ2_Gmoq?ehB
zXtolzsBD%33Hf5RGq7c-3X}g-pWjb9B*Qe_oYC~<`vEo58G*EpRZCKin!Ms9+V1h8
zbP?6wj-TP%>?`_Rfq}`Mm`gTfvmBrbJN6rvTxfh_+F(CXY;?!asEUs4hC!@DrK9&(
zcZxcF1!Kv~T<vPOTT*<wSV=-&zmn))%OiWk=$M>jE;E8~#9qtKYzho&TUJ^wKVX*y
zNJK**o13{^4{=09N`YbWOFk$B=<1GJqIE#spizCylOXVu<ktOT)4<I)`DQS4QT@c5
zw0Za<-==N?LM_Kbh?Cb#`ixDAae6EUI~IQfNnCT1{I!A%#zbPX4oaG6wjX|PU#rx>
z>wBLpr=I#IHbjVvRH~AI(!VYxl(OFVWR+mV!tAVCB!2GfdA{jGWoPr!HHudi@y*qg
z5O%m1hD^X$Q4`{9_Kzv6!Q5cxUI`BAF8~);EXf?hRvExZG6$^`7UANhXK!Lw4~jBg
zz2D_^Jen@}T!EF3jjG^C!sATYvx<k)khZ0LmEGqq5{e)5trd#|pGlW;3OcIf&pHkV
z*I;RsFclQ{DI7W(V>NVh@x#*-dry2U+F!E>Y7vOd>x<K?g$!yZjv;ER22A2WWO_5N
zrfEl&y{#=!;_dNrLG5`h8iJm{uJs{~fy6s?33y~@G(WGlgM^Gd>&G+~ubrczhQcGM
zjoebP(qSwSHgLoix9_k^5N}~o^eO8gBfTJ1CsB`+bJvK=d~T`6L&(^#s>-%$+HJ)J
zgShuLwG59+c?|FdRw=MBQ!hd1+y=CX9qs2-GFx*N1e-tE#G-f`52f$v7=WT5RuIJs
z9|c0%C{C$-<zhYK<U|6D)NbIIwZsd8y@NAkq(^gd<9iI4F}W{Po(Rke#Jxmy3TJVa
zm0y;vKG&ZQU<J(NuoXO~QLB^S_OQNdO;v!Ank%7+>^-U65KdBuyXi==RgSs>Q@V*A
zuncuqR;j#h4{FkFAIvk|cutY<<+jA%A=xu%;NBc?gkC99*-)xf=eqr=mrN)2Ht@}z
z@`sfF`mQJza&(3|S9}JeP;|bOoh(XtrL8c}rM;q(x3;VT?hfiEq{X595Gip@RPGAP
z+}+oTlK2EgX_4?A)YII8FflT(X5Y{eOwocQVNRRE+0^swq3o^3vi0&?9NLxE^GVg3
z?_({$k_hL<<HWJ9O$>>;>j^LYnn@ii6cZ|B&PVi7!89rB(#J(JX<}X{asEXfo^ToZ
zn7K}O2(v=dFE!dM%mtdHP~bvvRHi-&?DA?%BNM9tdg*VK4*A4%J%LPcMST#zj~*;*
zZB!$pASfgJkdS_u&SIozT4cd{Up(7dm)SceB41U-|M#P5i{J4_fMCm)SpACyA%%w!
z*8IUU6cdaN^>rM<nL<y#?;Rc1CiGmZN|yVkFIP)j+ZZJ+%=3>oy$aQ|1t=k(fpA=^
zwFY_wvv8=ekTQ83FzaayTBhN`U0mwRJTr<azms|}`;%WaSIhLgP-MF<dXj5ajDGI?
zGEN}MG#Nrn%<0SS;sx6%&T7w}&>#N|)TYlB>b8Z|SM^+RBu9rZWf2pCq@(YeYH41B
z@38EF^<utl3)8QTdA1kEKkk&9J2V%xJxU)vJ&oQ5{P;#U6^x85utD?}OZn5^wX}vg
zM}v+Js;_^)eC;Xc=;G|0AdBkQ2QfA_mN>4^LjGd3kW&j#5R^+4vuJsFbz8%_r68p5
zO&X0fHB&~-oBN}<C6f9XX8<(Q3=lC-z=@(D8$iSl!HhsehP~VKBYYF={KeTUGqw%U
z1OpE_^hsOWTCz;9%%3mOEv~%I>N_3%`$)aeRxP{RCXn`n=l!THX0L*6jZ!#D@ON$X
zWi;|zYOR*x0WW`%ezjf6Yj#c^&HXbvJ#q#r*<JS9qcB6M)Z6!%AC>V&<8(ZAa47UT
zB@v2BgsX)g&#q|>wx`JQ>voiu7sNi4<_=$PPpr@DQ}AVDFlXkyfEm^1=GBXbbu7{Q
z#Xg`iXC&hSK_Q!#!z@pjtBq+j`F0o{v#*G?HA1bjSOa1M^Vg1FsTmI8lufjYeFMfh
z-F6OQ#0X-ba3VszrbB&F;=NKOJ^d9IXRgu$QGpuDuE+6*po;fAZ6u}wKSw{Ur3lh#
z4G(|ey)LF%A&RHJ@vIDWvTac}z>m62!o#;LE08>B9Q4#|EtY(V>f^IxlB^OG(cQ?r
z?$gzNGpry)F5?;wr2J*G7e5cxT>bEVO)Aadw%ywiJ%3NV{2feuoG1!eJ-g%&k}<|=
z+7%<TkMvg_fnJ_xXwITc5W&QYOi9^iTucA3n)4OWc9%$h9+Et};S<VURF(JJ<U*e~
zO((SCq3XrqVv$}~j<s;ZC^+&qULmLB<NFKPyb8^Q3S|%2rs<U_zIDfbJrZK&U=-Y{
z`aJq0>Pa0N<~a@cHHMK%ZJ|#0=*WF4itoli|KzT?Kg$Ydoll-wV@R0$8u=!F{0Gl2
z^BmrVZAMCx3@N-sTw*gbK7LZVI*y1V4t?~fGux%vOVF{gjHSyRrnr=dBO^1$)MN5t
z^zf0oOq93)xJg4EBJ_)4@9mG;vP`vy1cK5-)QIcE!+0yiv>n!I&KqNml+>sI4j4ds
zt}32zyYT`bl@$Ry?r8vR+D;n=hz>ihRhdqJ#(edyBKlnn00$%!xZet9+XOZ%e-)(~
z%#1n$W`PG25>!x|kohP?{D5qnS3B#}RrWEF@snDks;7(~54U%mf5}+d))FQ769q6L
z8495%(&Vt2{YS6pXW4zYMHm_>FGdoTiHXUPzM%rlQ2H&}Ab*lhhGiZNNA{N>ib18^
z5Z~)x({S#eq9Z8mRvU`|_8AeqdzoFu6xQ>gV2}tbHn!HGG3_RRxLoP-?=o8M?iM}-
z^a)A19Rt|d*lf#)5^dkzhO{1ip}B><_1DwWYxt?2!8;w0Ms&#k?obs_P(;jLddFEZ
ziR~+hkP0CeHDL6580+pUIQDK3(Md0N4M5dcyP`YjbiQ41TKnNkDJZzH|KmmP>E!5$
zL1ssJq%yYc@$tIlZOsnvKQ=o*U_e;F`Ush67|LqMBO9O*vW1*?pY82Y`InW0xR`Zn
z#VbdtE@_Vd<Siw4nQL=x@0fX^V|9(yEOnX8HYUr5(Of)25)ye}sk;~exE=**eY!V4
zSqyn|oSb2pOxbnQ+i?A}T#$wap62n_X{_1GliWsiaUm^sf0uh|dwJ0H*6wGp)GGZA
zH&YLJ?uz(zbM}v4>D!B=Bso?0A+?v4*svBTS#(!{Bv-vkEZ>c`dx`e94@ExNdqnUv
zB$t^Mo*D*##=4m}8MQDB&HcGDYLO=`d5Y1~L{jfsGKGKjU&fO9TUwQe99jSV2oiy!
zS&9^3uq?Xg=vbC%swrEa?G<o8F{jb{xj_X-EWbPJBceKwt*6&6PcH~ADFhAGw5pN@
zj%e%(Y2ns{Szpx-`Li9f=tbKD3zmKLpQ2Gt-zkF+P~TTj-|b@R-c9?4S^dP)N#zvb
z4(=gs;DCOZR-|p^LBvXD+TVUtRVqmS`fZ(IBC^FJ9bpWNZ{K@l5)(u#@VH%Ffv2#1
zL38rlap+~jVZwwM3Gu}?)IxDSp^bi7A@g;#B8!HqSEGZ?21X#c%J8x2K++4!YNHg#
zx0Vu`x++8IL`sk1ZW-)9IlsnwW_S@wAYYNb?4Vf_uPICh*MkYyOPj>NRN40{qo4It
zqFH@o=Wff0?h@Pgy-S^toOsfWd-fB<i!>dq;Z^2rKQ={7!rA@~`FYF@n{f#_M;HSj
zOO~;%A-T(eP4ax7qDZntj_bXh-Acz)_yaUC&sT*H)Vi#{@87Y!s$-F;Se1Nhnx2H^
zNYuRUe@&NeLS2!mioyg#L(zoNQ^+%EO!s-ug!XE=x_iKL7L_qN6E0JTud%%28896}
z%T5Vo7F$&wy-gH#ogNX-#F<)fyLE%XUm%xmdzDQ<iYZ&W5G!`Jem*DrbTa=;tZ-Ku
zplOigUu<<IQ>N73{tmO-dlR5E%K{Q<DwV|Cj$6WZJLJRY1m8JpaTzo*{A{Cy)yTKr
z9VVImhZX>~K;()NJL%9<SGwYZl{c-+7AcP4C1#y{ea1EKHoTnv4OZ6DV~dWL0z+q(
zJj_sjMS(gs4n@XXe@l8|eadf`mT3m(kgo`4hG%!Z)F)hAe-3&kvOqu&dD<*hpL#x3
z!$RafgU{WbV{uB^$)KjY@FUQfUa?Lj0G19cfhcz7rtI>2Ag{>R-@mV>_SipL_oWn(
z+Y{1pPXbzK!k4{u<ABJUnX94CMJS2;_r++p<UEH_j`|G=jzNh->sbCv1XKW8pKzeA
zBOlqDJN*ji=3Dhww4JtoDV9&muN~g2x0*!|S^@}0O2G1IqS0??);|nzs%D`D6NJTC
zkWZey0GUV3CzlGMY|;BzA^FYqz)b)LTsj}!4QP`A0HQN0jMi(o#h-6{&LNGu4pDuz
zn;rA`1%-e2vj6x~#jJBG0=7?vpR?oQgn@cK6^WXcgk!Vl)Ar{#09(3iUaK-x#M~QL
zKrYQveqA6Q6$!iodJ5B0W9JzTopgvv-8<<vRe1nxRLmGoHLv#i+T{<VS#BscgF4>m
zgWtm*K6|@xn7YR{cgJB_xw=!iT$JlXj*ww7Ktq*O#F(*w6FDED$*FK76MhFXM0=Z7
z>GpiHi0#Kc88{6nM9Feb)ntWx-*11Wicp_-2h<_Q>;jN^I{<RScVw1!VbD3@asVXs
zF94*@hRrV`*zD1?e@WsY_-Ahb&>mdIm(Q-HR3%5hh16p&=+e@23U&Jpu-gE=%~<)q
zr?3|fNnhZd;{_zzropS~Iez7l?>Zx{N&&9y3Ln~xBbit(tVa&F(TjmWjvzF&JcLaN
zUnk}rAoVg<1%a<eb0}7!zS=AI4?$fnHO%?AC-*^(5A{%;<vg*eLXoaCk)HSg;^$v@
zg1Ud`n1${W0Uizx4vd8&9hk&^zrMeH2#V3k@}Px>@DS;#;B80vKy*0BDB$xR!ibHL
zQNA-kWE%4jebe`jbZ<X>4uxsVK>7&89@GxMs#9vY(BP_Nhy6qCN4?`GSW#awL~#j%
z$AaN#?J1Vg5{V4_Y1Cf*#(0G{{9;ePE+1K{fjU9F|MY&&L9IdRh_6ul7y^4xfr_sJ
zAv_zx+_13Z6^gAwW$2i##BL934&&N@F3}o1di%2Yp(EC=QUxD(%do97!P>*@n7Krz
zYnf-!0z!<0#+zAT1Rkv*6O$&ygsiO7g7{@P!z~6!3FLCH$a-CVyLxkl3(inz#I-e|
zOcUZA5=V(`X;j2>B@Lv=-tl$3fVl)orUIZV;?v-AbshV?RXfRKmC+98I|HMx+QHmV
zFoLb=si+l>eX-GG5WykP^KmJuxGX+f1qB7^8yf)w2iQnOi3rx&k)WuTH|woS<Q6}w
z@eq^6&B#O{7sI!}Ga1H&(<V_1;};#pvFpk#u$b73auVmWZ2IDmndK2jeuck`*mpI>
z=s1MIWIy1!CLhv<4!SR=e)acEpvE9&_sn%5+<|E64>e5gUS6`5Ul}dGyX7r?jjvau
z=MD?MLOGci*HeEEWGgKSMIh%pR}HJXEbK<?m*)hwLNFX19i*~*9*k#1=~_J6)aG)_
zX{}~OOLg_Bv;7&w+pR={xkU#)y;Zk0V&2(6<?}0ynoPk@bjV;1`3>rqx+asmDDO-;
z*b6+N^O0s4mF1?Na~h-N7;#bL<>9qrN%Yuo!9Oh#5Lh38*mZoo80s?BL8)kNZ4HOq
z#(Ky+IX$J{Xqhovskfpy*y_Py-7-#Z-aS61OyZL@%c6CEthW*sR#u+xrW#dBe=ojp
z#yqJHE)&*(Kctq`fTd>)9}*^A4UO#vRGlehAcq2&;HFSU{{Yzu`@IG9jE$ivaJ<~k
zHY#g@l?R|~bL>JN?dDee6WLooQ^n$Vz@6yB#Ps~<wIJTHW7r{LH>ik8-(jInH7t@7
zQvG4}eDu9y+qwqYpMRTp@5TsZH5rt?fEp8zBIO5|yv`NEN*=S=u}MwT8hHJjwA?=g
z=4XT{p$<?Fy;wT$^UZ4KU5h9YopXvxZ*NXYxyRbA^>eCdxDOG7>8l&4!p%Tyf#H@`
z(tS%~fC8Pw-P)&EO2&iL`tev-UoQZ5c~DxCov=B@bOrSUaC^R6<oHSgDP@x+<*Y-O
z8KJ;3x)tp!&_N+Mr9jXLs0h0t9s9|nfj;P#?e}O^Cs<$*M<pT(opwFRcP5^c7AWq~
zhsrhl1JP8b!|3+`;KA4^#LHZgG5|?2%Kn3hGHI<L^2giLwlh^}>2UgDrf;#rD=?6%
zCugl&MH;4<%61gGU9U9;vz`#!=$Y^yKcPex@zm_{HbEdFyOJ{aT|np5qD-TXO1cmf
z*c&P^M|cAVi5=%Z@3&AQat$NSZ_`}*k{6}o*?)BPQ9mtGYMt9Ym)pt;q!A2?__1)=
z%%AG_L;K}&jAh`-?dI%u35|pgbQLs=vQt(2cuP3stYD7XmOko8^cS5d2#SvkP#*h(
z-W(|&aDvqcF<&Kqot?4p#XvIg>-{Jgi00a$wdgl8&tMzFuLl;FMwaF1N#9VtJ3<d5
z`~rx<X2>Qy_yK2#^=bJunYqS}845(u?mbYrve{#v3&<WPNHr!BKEz%AU~eyJ50}hQ
z$0z4PsYg3Zx9ajS5y^VY_35Qi*3p(!eQ(g#StyT)`nHk{m!6L0t(LbI5|+K$hlHLY
zFvsfMPrXq-4PSGLaGMvqGK8`+em(dzooh)BGa&)YnqDL)G1Ojg>!j<lvYq|!W6Wh-
zl$Yj*P-Vw)h`bGskgY-QKLa4??q}e62`l|3*hmw2h6u<Mvr4)ro&EBo))Tuj3f*%O
zn84glxMVT(GIFSVGK>JX*WbKF$oMrWVMkQQdf`HjeC;P~7L4T!3ry?AHi)h$OME;w
zRM)b_x`oLBS@r?bhi*tk2`l65VAPxJmu4eQ47@u=Ho8V_a|kOgpp^=q8h^ExX~XNx
z56xh6)Wk4NUPi`>iYHxvY*R;gFIyLBXtpm_-W5;DQBa$5+7?e!(H8L?0!y(t#>bo9
z30~rwL`)ezbcYg0lSPuR`H<lo3#T-!a`RE6dj&7NV`V?9tIL>i<m+tV%32%&;rbWH
z%@w9o37&%p)a4{i{L|>ZGfv;FQ|^89gB^XjdIZZwW~bw?8ClCM#WOEnSLPy_mE`wj
z9>5G`bZ9_%iBK|9kfSs_>vj=sYAwV37}E~{=vC><oovI6IDN!39^K9{?zRW%`O`l$
zH8(ErF^@I;*MIvA&o5>`@rtX;bbc+&oeW)~<QYLZGy00bX(akax61&d7&~?(|L*w{
z5iTCC92A9gBq8B)Z--&Nq@&9x>_YPkXd}%1qa(WTxFQ^^W16vvG!t@dK;>K-1wj*G
z0M|mtU_LfbtGTr=08<Z>K8ONNAZ?BIZ3pd(j+Z0YuHdGsJP!mjK!8Cp*Fd%>QlkKj
zC|G2BhG|G!LnqA=lLlVfUC~~3tBL@C4HdPGloL|JCtfpBJ?1{D78<+L;17;8Ob*!~
zBF@iyq~+F&6!m=ABpD_&ju}yZcJ&cNL3bka0G`v;`Em@H+8~$lYVO(ux+U{C&lMsN
zJ4s&D-2^>cn?4jnq~{d@PVg8W?_wa>NN`?lzg1K)KG+(Sb3-9`f!~<&V$^*ErbB?8
zc30W3w`;j5;)485bD?YDwM%3Y_Tr?VGNW4Q96{e-#ToVqluU8C!luxyM}VAS@qD=!
zcG5wvBm5H}4o<a?aD;pF@-XFZP031Y_Cp7CO2ZPH-cwm3<QI(kdG2onXiQvab!FfF
zI)O%b?rxk?bffDBAU|Kc#Y|$<s?wvQkv8%vHth0aL-jmu{(&|Vi<!rdLMctq?#!g$
zs*a=+@HNbxDC&XMnPToXHxdE22M`Waq^L4_0{Rss*k|omF_QKnL8POQ*tRT<#6Q$%
z;hj+HZLGNW-%Y|KOOgzE3>|EAv{7E>`CcOrvBp6A%t9G-V@{QEY@02|0JBG5UiiC1
zK*#>q+j^7G^PG*?Pxu>ixy3OjJ=$+<fgB#F&U@B4IA!*@vJLLk^xt*@2#VTR?pvcJ
zcR;1Q%xz8No8!af9+uQG^qfuUEgdrFxlkOjQ@inRr@k;$=N!>_j3GY9=f$oUswtNF
z<CbgUo9*A~yOMeqpqHRKVp>t-jO{?QA@t#X%hh4q6ZTu|D%kTf_otI4ITp`w=x=vR
ztg}x-<y=H>$DRJ#`bLcicx*(U?z@WI3XjG03SNO4j_}CKd~cPI2@5uGyk_a~NDF)4
zwsGDY{@Jg+P~<?&!7(s*P5Rf5ZCwbKvac#(oJ?Z}R|eAC8@y~LR#Z+!pKNB2U+;JC
z@xGPj`Dw5#DG`FJk`XR(4LZ-UEUo;KtK={@n`Sgh%*YyIo?~)&C)IuAw1YmvLFwOK
zh}AnR>y`Hl#5LBc?i5`nDOuL<rxRIgzMN>zl!jEAX9V*m^XXe`*EVx^J$~jdf`|x0
z71^-?b511vNVt<-9Kq}uRJ|Ly8#_6Bf9tlLKi8;JVxBu!19c-?=Vmj!sw~sk<f)l}
zlE=Hhb!^<=`6R2sMlsKZGdd<6f9PH%$}vyTEzS%_M{m94A_7csI)6<J6jtnKg(BDS
zMJ-Ek%vxQ78{jpo+Mw3ZZZMdw<^EZpVmr~$WKu-zVOqb(-@{QZ-|YW+X8}{>o!s&_
zb(=m~h-86d_G4tQgn7|1`{=?iC*~l>f(qf!C6RqtroE4+N=XejB%d(8iml_p^=58J
zc%>^7!}eg}O&_T`t^XDeV;S`CHXn**8CJMMi%zi5?1Sax9x}3nm!}5Ttwgpln)V6N
zO7C={6e$%6q9izIFJeYZI`-c%Fu1;XkZ>tJCo8a7J1Y{+BA}1)nkhle7|<aIq!#O*
z;QHFGw^oEjcbaGxv`fG^*FicUp!Fu!TQUA?Qej0!vod`lZ=07Ku;>MUfR-#fg}{dd
zJ6LBNP|A&O9cQMVnZ>X|OD)8z{Q0L5%90V{%|I?lD6d!r1n1YL=BC(55H3KmRskC+
z!idtY`8|b6<F1fGYGxq!OAbibJTfrX_(E|(2a805ryez!zObMmSlM_ab?-CE0rQcN
zAHN}*xzR^yp^s6JY_!KUtWc5&TONT%jWlo(tMyiDOvEu3&FUcuXh~m^<hrd1d4e#3
z%?Enft5Vvln)3x^SAB*N9_Am1EA5F=^IX+I*ZU7)Y95CH3wAV9ADPDgZE5N73q<FH
z;N!0X7`7}njLj`sf<kJH{Bv7y5{?Gh7?rei<ZrkJ_B}7$hplu1ap5S~?kzO8`7#YQ
zy;ULF$!&}B?H1^+@$oX5PfMI~Ty<b{O8ThKx%t7^H`Ta-`Pt-9fP+nLbl7A@GzGEI
zsS?ax3TFaRwm5?X$UE0?Go%O_-Sl*HGOd#u2L!=^mz-;4eecK$5MqXr`@SNhZ1yl7
zN%HGKFx>E9K;|iypwMT5w15Ldq%)^Gw82_#Pel$x>moSM5X5f$ru-tvY%E1)CuKC&
z<r-Hu`u<=DrmEvsSLUObLHp;eWfejMpCxmQzK<X!B21F_Feiq>@^4{%pV7xmh+x<V
zaIljhS*|s<L)j!fN`JfR98N*US#76irvXk)ux!jT_pn==csSilm2sv<ApEnDxA2B~
z)smBZFBRu4mvqc83cZ=~2t{rdr|iCW2PciI_Op&_br!LdFTOxTb=e%3Ms)C|5%tM1
zt2`niqTch$Tqb;Ai2~-s|6}YcgW?L)H50V)#)C_OYjAf7?oOHz+&wr1cXtUI+=9D1
z!QEYgyW5`3-Pye}ckk}<gDR?<s&hVl<&mpz<<EVOh@<Qc9dP?<jYa*}P&o_$A|Sfo
z94KO3jid$~PMTQaj=J+V67+*2-T$3vlvRn|@u4tyR;^2C54&>$gRrIJ{{CJH7yaEA
zKRWYk<pSa(rM|@u7`UD@Umsjs9Tc=z7yT|->XzwEScpP?O>IVE#%Y|pz)Vx{v45vr
zZK#Ibdl&?L%{_gV=YUKIvjYml`?Noq&0%I8h$9K{*aUUj>Pix}^;Tv;^Ae*}v0?1l
zLg9KL{^5zVKfR2Z%4UBmji=?}nqWKY+vmlA$(6*47X><ucQa`ZpKrsTvc^pwyiI!#
z=VTH{60*f4O&#rTIX-Z8&D2)qq^r<so*Eg{r8HS^1IX*d52bhYWe=Ym>lmefZgO$y
zm9?lcFZJF-&3%~#u*hAX^J03R&)Y}~juWI%ePub<`)~(1b1?7yYYR}5mZ`Dm_foL^
zkTjzW$KYcXU(BYCR4m`<?k<`KG;I-!eR<z~pNm{>A91uzcCK{)Xc7@?8QL8r@vdBL
z#AryIV{z>FC#!Pnfp0*6Zf-G1daLlU_)|FP11-`q-*osN_4-5M-;Gp-$J|Lq@@}!D
zxRfE6cXS6IcgUom#5|S!3MM1rKKO5G&a8#4A9&rBI`3T5m=CCKoVcpw#yH+GJSPV(
zzvO>t>JM*;M68m3Cj!R_=rC;h@s>MLYP1iyB_{H5Y9;Qoc;VC@1AbV1l0YCA(XoMo
zWMv^j*!^GusUjWeo;*??6c%Iu_}2A`w#mIs^NYH7f6*4r`53z+vUwyA;P3Z7Hds?#
zozY;2d+Q6+AzY&pp00{U@ZO(HZwOtkb;~&m9zYKQn?D^IrTS49TmZtT<WiBUJDirx
za*iF%1OsO8-b|sH8VKP-e}9Js;B4v96=|v75o&BpAZu4>R*E!PH*d$v{3$LekA;CJ
zG<Y}t*UXR|H#G73oaeo*09h6lS0c7CyUZM2k8^7EW*YLc9k1*BOU4ZSj~xjB)xO>$
z^v00sxjO5BEq;wsfuprTI0bzBn2PL2F(i~#^)!oCEBM3+qw;~r5=mE@31aES)WI_;
zgjE`)ZwccsXc6f7CWi)8P^Mj5l{jL~H(<pa-E_4rq4p+DB}+GGkDuBdAFoaUfLrkN
zMF~;E7GWCiOXJ&-miUYZITM2UKaTp_0_Fc0`ZZS}oLV-^OQ6zU=&(1c{8?2YQq}eR
zGfa8l^&_kqX_WplVtKG|sU@Pt(dC=HJc>s2rGR4<0|(Lo086rH{N)Nj>B-FPBRYc#
z(fc$>kzKP!twY`q<jxl;5?jhbrzio>!23tW(y~-lQe4jtS#<wQ_c6lC6TmE}vCbrN
zjoCgq9?dIdph@%-A<pED&ERi<{=Hm<fZlQI!MC=l^=@oxkG&JUVS@tmBwyc6T)aU>
z1x`69rf9+XP1j;~n-VvFHo7$U!72A?&mf(gS^H*%8q&*65Dm}pn{)P|=!iBzo{4h{
z*ZaNw`-eCxtkf15GK7P8K`R!L0jtuNx}R>WvEP&@A7HT<rf-FW4*70479StowQ<87
zha7D+%(rhA7rM81p>Y$N8m?#XD?x1E(kMh$P=^fV%QLipV>h9te(Os3MIk&aUtp>V
zG53(0ptb1qiS^aR>{POh;@0n<HY-HiOa;-=41W}#JtOhYWYBv}V)VRn_kDB#$D!Ih
zNi__WHo^G~7pMw(cJp#HAnKy5lsG82MMlF<=9j_UP7EzWcd3qB?lXSM7{d1jl^&Rz
z$>be`c(K<5Q5tcQ>Dl_7<0Z<(?DgB|LtQ=(b|}vH@pu|>mD=*eP<mA|ICCadKVI8H
z!Y)2vZO#MZO~S>SV^+35vl@oH{N*mevn|dhxiu+25=qs>gx##BY{-eUuWR*rVYT)r
zJ-IQS7aeO4@K=5@1N(9$Sjh0!OEo!@?&LS>S9005mWrf!tf_$#n_Tuw!Mr0CvnuBU
zEt9)xoxf@wLp=J*AHQL2Gj0cwUTS@0j&oQPgOY!B=X7m&#0beOX@*BhcZpEXB<IZ8
z1kjeUv@CEicOY1VsckakGs{IRrcD|D3pgw%-QIQMtal(HI$hT?Y-k<gu9;aZVK!cg
z=5It8KdZiOa4;$si=vXO`T>GI=zbEE%8_X<vq3|V1qB6;3-CsGe12V?YX>tWJ9X!R
z5*-+CuRTgOKhAS|zj)Nr&d9IFUQ8(nCiLUNtxHDWQ}A<{rf_wD(hERbuBxp;@z{nO
zOX{leII(_VxZE!4G}0V8CJp+)dIhAI6v^Qe2>^Av9C4b>R2+Tqn@$vIQ$^oyR?6uE
z!0?AA0Y5w5)JnHAs~Cp_cJhZZjQ`_ekxIePo=KrHe$3cGv#_lsAvQKe0;vxT7Foh%
z6TalHTI+ZfT2Ioh&feM>VH&jjX)1=xj)aPsB0D1RlTcO-+YUM5`9oU?0&8$kaaN2^
z7O2~Sy00RO7NAe2;^95`UVyJn5vMZYJARRkLAR7>y~po<Ze)ojDm&IofG<x-2na}N
zYxkXo7shz+*JWaWL0D<k0MW$XOc0@+yb_xUJmMThacT4eA>R;;)+Z;wE92$zq7TWu
z-mg|C`wtPS|IPjNF&4@Kh&F7ylOM0<hT2EHeRJKo;UZnQG`>AtnPJDH-7JPOW<es)
zp)BsRDt@ao6nZQ5{ay<&9UJqOw^lzL5MWb6e(8qjo<XUB)PCWKnkWaU6H&7=#jWZo
zi~Gx<Ta%>ymN(QWVyZ<y`D754>dg$AMGvEYOeP!90JMCXTxLW5m}`yQw|JS3)K6Ql
zV^2odik<%c)1i0yGfc-4Qx{TyV(_4dx#$Y|!S!p<QbpL>zYDumv%$m~WO2m7uF>f`
zP>5XqJ)yJAO3ThiJ3*$^eTOCc#<dL}RD6=axZ?K}PVu45$v6#zTvvzIFEot-4tE-1
z^W6dS17#6-Mk?CS0Jpsio1bi1{SnC?j4ZZzEXY@pS6lN&S2ZaKOKR?zRIqcUis1u4
zzxvylR%FiKf>l8{Xq=6>IRS{`dQRnRuN;dpdWVb{#_82Xyh&<)%XA-Np%znaWaxyq
zd0XtVhjXd^@H8~2(FK9rvjw0_xS|lo?4ix?G^i=jzSp4I7mj<EkePIU=yYP!EqSax
zkp*}rSj+lZiuP<T^WNnQCyx&0s+qlYwfoME`cC_g9MMgbzAX_5ZvheD`|sa1fD(CQ
z!(<^|y^3*@A|=l0CyHKiM?Sku{o5Za%Lwhlm?lGx3Ttmt)|ft|haz3>KPC~!oI^8a
zGL|FkY||geFE)>ud%hF9e|gMf^Li4}I%)Hk&lTBN#D@`&CSYZ$3P=^tc_+I<gQa3`
z3LrSUtZW-qEyNaoIO_`UQ?cwce+DS4?@Wg=rFj^;P}aa&Ya89LlX--zJ7-_RIt68|
zEe3?O7QnB~Szu}aQtsC?PwhcB9!D?}=(~J&P*O2@IhK~87KDt~1tSTI$~0yHL%0IN
z-8wlGaCo>|brI_!W$Wn3?kQ+m?q%Ej7s;wm`X;GJLOo5!JeS3mBHZK+U%v<u)Is1~
zCqP}HOhDbBz4fREBny<++C1~f$?9OmdVm7w5J_;l;&>XTO@?Y}$zh%E6MSAPz=1I{
z>}#6Uk0+r`AId7{1}uqc%^So7<FzvcM76ZK<>bW)+%CRac|vuf(?%!4NQO&l@j?iy
z+T93C13s3|Chz%>#~v(cG!$}yug^*bv#Jog1-_qwhJosVnafH4yq*DuIKvFV1mm#j
z8iy)iWbB(&8Y!w0R`*&VlWA3v;PCINHGq6o#@=}|peJV5{eYs{dt!E1hyPPzM|w!x
z$c0-qKNC9um*9HSUrQ!26vgFEgXxW1t>kn7E{a7UuHmr1uYUAT#-2|WPIWzZKQX2J
zGb<Epe1BlUbopPw;Ng<SpMG(VJc>D_Wx@id{f<oM%R$$bbR^O$BS^YUQDl%8KPvwq
z`n6r*fLBYLfRV_NQ4WPQy&%RGJE3Ou=NDgxys5l;QyqKDG3k-d`nExDXO@xck2$4&
zr?q&7;0PoM8Pp-LVCu4UUzPuIP#}!4yTg5_c6}}@-jz^awT!t}aoF8W;H{pf|LI@?
z(=(Ri>E})vL-dD(GO&5%ud|FKjCj%npeRY;1A_ovG|5|IURO5cm)ES9tT@AVOyKD;
z6*#8cwFoE^yUV&NBBj9}{gkoBhR66xekDva{k~&cKr*k}vtAh)Hsp7#P|3xQF&VH(
zvs{zLl7DO1+C<j~Iw<@guh9@z$!e`iq4@b5lZV=&cFBp_ZDjhD7=r+FRRPY+>&+;1
zTPW@07FFx5G-5QAk5C8Hr<nX2HJE12UpeJQE1#X5UK2kb9=vF*)Yhxnoud^}lakXK
z?UPQ5B9KMA+5dU_(BA&o5a-HtO2Nbw@FBh1goU+!?KDjz@G;F{`mKKjSfraa6ggvD
z6=Jg}D)fg4-^y;_tO4;YX{oBm*tZ}etxKO-xu;?G+O1ImuJ>Nu9is1tV@<|NdtMPw
zo#D_>U!W!NTlaX~`Id<>|HwkUh$O%J!5ml|@Ta1#Ng6cv+3-@$h=R@XX-8Y*jGP5%
zdJpl(h_ngot0udr+OtGj?9fRg7Oh_)l(nQ4oTa}5(_2#>?$4LY85Z#`TaKnU&?F?P
zPx>Pus48od;RGV}Kow^`wMPD$0j}$r#on*@Fp+mC2PY>Y*a>Qz0wwDHw5%R4hKAdU
zw!bpLpKz2VB<iqOzkWm_CPZ&S2^-J9b<^JR=ztl;7+<^GYN|ARygi*ep(D#OGJx{*
z5fYWVWItWs_8QIKUbk$RvnZtzG%;9@OnHO(1!@;WI?XOZFZxDPSJzVY10SDm=)tPn
zVVU|IayaevdK};(oSNZzqvZ=P`(&*FcN&}oaijSgrlvNi?9|o<ot*(R6L9-8mFcF$
zQ=jA&J)h9mLHDmZ$K-mh#;QgW8I36S$!Hf%-B-6HyM2Ca6v{pLY8LH+%?2&ASNbE5
z>wwbx(e&-xlb!gYxiLb8__vZ%w*|%SZAW%1t#_MYj{QW=rWR?*yyfh+ta|}h9{Syv
zhETHK5t!dncEBXR!Tgg3leN(WE#o3|dd&$ry(cELX*rjmA?NeBV<zi?u@1KL3%8v<
zEBqePLCQ8AlqH03Jw*DwC*n*^<1<Ao(|W%^i|4v-%KntY-xiam(C-9=88YOzIHJG4
za~KYQCk5FX0OI?MSmp{EHYEN_5G&g6)@qP`DNN+!q}%9IiNAAs>sLP9eqCANRbe*o
z3y+7dQ@G?+5X=Z7K0wqQoqq@+L~!j?OMHqcS)N$rio<zWSA_a-r@3vWr(~5Jd9@~H
zYX1Vg>v+Et#gil4X>oK1i`6UxtJ**8p0ey&H4rcGw)`o6Wik%O-zRDLg>&(BWGz6W
znH-ToAmFPw(Yw_oaFtV_lX|A`rrUS2_|g&u(tET|S>xH5HDno!^>z0yuRNg{wyk{a
z>x=znYgKMTylpzuwFTp3Tc+~~a2q(gDNd$w>J{}wSjNN{6&8(HOTtIojt@{gZLXDu
zSk4PXA{_=G10UPU-L4p&R3@>ieO?U^S_G$bjPUY~^JMlZ3RHc5ADr~cMZ(z`m)>qf
z`<@dX9MP)Kp;&{h!iJO6I)y`C!MNV*DU)&QPqOrH?fP-_PE4&TJA^Bg<=qm$jY@~5
zUX5UT<=eE}*aCiC$MQn*K9EJy4a#G0YI6Dp_32li6g)JUFFu_-YnOndD0Q!c`AEFS
zENUz!SgRs4K~DS+b+~E2tzOl6Pe$M&*-Fz)UOC7chbv5}zF#HHrf38_!%4Sm3}2qN
zbg*4F7wHbOvKTkJ_O)*pa8|3?v3r&O9MShYK{}O`J5aJ2Mc$R%N@;ef7Sj)t>Ed3q
zt8HU)1WT+vw9J0nJt3(vn1c2{v_5XK!pN-PmRgc4aa!UQaoJ+6{6MD#a&M2Xz*~*G
z8%D;xB>vV5y{Ks)X*m_ye37Nfr~5Xl5DXD<d56WT?E(Kx+uUP<1EEV!yDQh&MF$)A
za0?nmxs=hW*7bT$E-L)VA;_#tjtVzKZ*yz7d+PTlk7|Bo&mCh7u7Wm5?L95y=t+^y
zA^`R;+erwA*L{qV&DP#%!H+ej7-FrM>>(?ia}v?UaOB3!Z%f_&Y|b`<TErVg=)2kp
zuP@yiwH%5YXE#n&8ABS!M!`4f>4d$$`JFO|tAePgHy8EfJrP3y3M80MR&FHL^)3Qd
zr`0WJ8E|M2+h8zB(=240P7(B`WYBBV@<*^F_4n`AwQI-4#Wlftkx}0jl<n{r0!ZX2
zSiX?t+EsyTr1C2ASAD3~cp)p-at?d=4Sw_ttg(Ov-o`=e!=cMDpu0;2oJF!(YEU~n
zJ68Y_MaMe$9lPD8Skp!z0W}MY@@%&snr4A!Q_X$$ygI>AXNvpH5t-#Lz`-Py*O^f+
zg+-k2%Qk(l#aR#N)OL0efF#z8kApRZzZ>C;JOOl>*h9M6x}u@u)m9y%A;k``X@*6&
zC#W3vx&ymq{~Fuk(DRKX`HyRXj^{N%eDo(XPCt0A9MZZ-8}EYh%Qy&rO&du(iqE2j
zbCW-+F)j51!z|VM&{eWOLUHb_3(=1h%XbQefW!1qv*9+7)2&tIolgJIHE=osFZIu(
zN=Sk9jn8{8$*qjP?y>xO>mbvHn2s-%T2<FT^(!j$;R(nRlw@U*H-fy|y`Di`;!kID
zYt!rd+`&}WaG$87Mq-8Eq$DSs(ljgl6dnG<)S}vXlY#O(d0bF9V+)GMe&`o94d(EZ
zt3~G$Akwx#4u9<RaAqR0ukgC262BtMq^W29S^9lI5QXH1mAQGB5u4GSsyVoeHoe~1
zMU-^<#=wC%={3YJdU?J$z-4fu^NfVIZ03~C6?|=Y0$~U+ZorFdeqtosc9E1nJwrQ<
z%LIKyMsqy-!@d)vpd-t>zo(#$O<!9$E+Jxa#eI;tM}OnXTsTP3K7K)msDR|NYmU$S
zAWd^p`N2(U<$^-^X)ev`6;PeewRVLdeuInrAv1pkC%oBaRB;ej$|Jw>fGr-?E`JdQ
z&e<?HL?+i#m0!7GZv+~@+X1YG0{-9U&$N6G%NVM0GYN2Y9}CpO${zdqXojq6qp?$x
zUq{C>vSdy?)B<%RT#nC?UKYNVUX!QSuF505WfODqLKn?TQk?$C9vmRo-IA8L&#(vP
z{L0Gi@`eAZb)&kQP2q<qTkuG%&%|m4q%Ph{tqDVS6Q4KEtK;jBr)hpHMwp`pRMDVt
zT&UfMNsD728$Ha^xIIID5Tr5%-#>aGh%=4SV(-j+Vb-a6w|5twu_koIV;z$tnK9$G
z^k`<;y^7SzJIwaxGj~s}pf`QbRmA|~rpbzA+UiHZk5?Ii@cKE;e)YPydXs&vg6Zqc
zyE!d6EwV-zJg>uKI!F7{sO=3B38k%av+HW4wQQ74XJ`V<Kk`tT!9CC#2V@ltYm975
z&o>ES;gbvrI=2BE)jE1@*=;fO2^tZpzcn@`;yd>c`Pj5so^Uu#=+rGgN<(V?P#yD8
zP>Aye4#Y$t)QG=9^49bS+UOLQ3ABwrs5dh+E6V$tJ__T8?b8&x`=|lX>x&uK+oJX(
z2j>@%Y?{CN?ZYOmOmN<I{=Jk<ncn&*ey+Fvv0UEvVBQ2ck{V)aru{*JlH`y2i!}pU
zcH(D>2<YU5qNF)E=`zVk&lU$t=vH#6Y*H2%04~9l%vvlB3|(h*z?s}e*fL2Liqpq-
zcGOM#@Z{j+aWGADpN4U${sqb=Va00K#cB5)eJk3Tdt>z~eEZV{(qCNi#Vx0p>ntMS
z$FZX$OW(71b8!CQAW188Fs%+ttH#J%Xt?Au5`28~qNb63BD~w-6xLcVPU~fA!Q2}E
zYWS6n0AgQ7j{gWT{<(?AiD0r$RV?N-WvWgi<#{J1&CO{yjE7=3iaP#!u1-!)YGZXq
z>;Rx?DJ`v$SJx6;&K#@lG;Irg%r{p3kwi6Ldl9G1Jx}-;mw%o4A?^M#^GmjCIQtI&
zn`tC&vvZbmCGnS{-rVZwQyvH{d<egnOS{^)3d&6yL?KgxjHJ{s*#D0Cg+d1hvxTqA
z*4kV$prEoJM?eDa9#1>5B(4O<{;gA_2}wcgeqyWoK|f*?=V#-l^QG-Fd5ty4@P1B)
z**mdx?3`>_rv*GR=0*ji&XNjvrG6i58^ylzga^awezzN|h?QLdhGDcEb{9jx0u~p9
z<;F9Fj}luJ8v{`!%9BlF;Vqa&Azw0r=2{f`IiEA7CvP4a9rrCNu7eL7?(r>bGGRr2
zwQNoGQ=om0y8v%!)_YxnI-xUTv?fTp6f+lX&O$?O^^U|^NlT^N9Qhh9^dvH7u3qur
zD>ZvlR3ugq^HR=T>41CjLET())EBq$_2rOpe?tCq{X-?kwE9$$ryv3Q7qEnY)PiK4
z`RRMLH&*FbJI+k55DNCwYlmqP&Lq=UC6li4TWezvmlZlhc_r&fR2t-73uLC!{Cuv|
z{4{>fdt~;e)v{y)zC&&v0=^#7pDk@|X5LyMX*EB+x*2C8$vl=@@3<MnDig_2w-0Ij
zZQAKQlr!n0bPh|zH`Fn%T5PSH0y-Z*v@{(o&FSsA5UFr5eDnsKjy}B-nZ_D<nD-uP
zxNJtBrKT_(Ha-T#dcSU5XpZ$XD8;cl{Wy4>BsmNvc|7%YG}#=NZT#t!IoVdB_wiwP
z+Cc<#bzQMGTSV@?C47#D$*i#cXCgN~`pcb_bsJ0p%UjAU5UDvdPL6(OXQv~8QYfUi
ziVC<Dd^wL=ysxub*=p51j7Ccq!bLBfLm*s%f=@XWUv9tek<IJyKlInQObnZq&*;SB
zd0@0h3boK`k7z1f#{rkjRQLKBNIpnvo^-@;#wuJHqOW$!6Tp-FBg7VZlMP8?(4nlS
zt7xf$jR$z&W@g}}Yh#@%!;tj7eiCoX?Ke;kU8zA3Qgt1j5;--dRRRvn<iv8+tJ{7E
z1VXE|bm*;T7SaSwui5#_8d~8vKQS)uecaR2(_imB&XGi@?lHmFboFvwsbm8Uf)^VR
z*FyhXWS0q6c4pU?`@NmyUy+8^kbI|7ew(nQ+T%aJi*7sT^t|PESK-~@$$s1md=FL+
zxcF-o3=sLH1?gRpnQ}oSQFFI8-j8Xr-4?b-$s4cboe!C>PX%?6x%l6?&H*5odVz%d
z^jiDc*%$hQw6sf#Bwdl0mqe0acJuL}xX4JIR|xCgXL|s8Cy`xJMwqD9JH7X&@B7?P
z`i2+c=>)gKZjB57aKawjza0@cZ<ncPBS=o#k)ssq)eZ@F4V2!d0YAu2-$@2R*lN1E
z^xbM(2yL^-oO>neWwC;Ve!jljatJWt4{20W4=&p1p6gQL%kf(w9~xRDiJs#==U+c8
zx^9N}Io|R*<H;RfzA}EWoSpY05%?lkss6i^|5xHKEeqJZ`>P-YF9oj*FDw#tg@By^
zNBYC$Cxz6yMVcb|eB3sV3_>x}(NE|s&O+;Nic8CWF30lmFo<cK!7ZfzKqnVcfdE1j
z>|>=uL!o`8=NRgGDpG=NZ2guNAf2Y2XLuu!hD(iKe@R!kpQ>7{O<hZ)7zk;}pzf-1
z$1iAcDnM$1QhM#2!RV<<IZ*BfH6&JqGI)h_z3PLm2$!10U8>`3_Eh8zLiS#h_p+?K
zH3W;4FY~MQnY{^3>0wN!0J){rLiWt*5V$;XsI!@bBY12bdwPaf5tLF@s2V(e=9ad&
z`1->nb=qq0%Ugv=X8(yB?CgB>oOk51zc=D~y`w|GCtr7D{U33N{Y4G@3vU{d^-?YS
zmr4AkPD&5=_B1Lu=fn&0$oQJe$QD^|pM>TuKZ3$WLc$no)oA#jbbe#`>d6?9+56j$
zjBskUBvy8Xl?AyRD=4}`;MhSE)!Y^eYr6*}HJI(?7!V_kqAA9OO!Ul+d2lTLMhzLV
z(={p>Vm=l;))J?x6>o6vFy<&^@#>Xp7Q1jca{4@L*<`kv?~Fpsa<xzJ;@bRDGqSZE
z5$0b2F&J~oPmm`8XG(pw_zjjOO!KRzyO+dogFauC;Bt~#L$RtIyqC?&h542BHj2&?
zh$S^8*MabuxAiYn=FF;oMFJfi{X$>LzqIYB>Nm(N_~lJWadA#>818R_mu?t0UY}xL
z<BED>eO$%P>>Y-DEc^3gEV~62mKDx#w0ZR2nsm@(Vcj@S)L!teiVdImpU#ns8F{jI
z>eV%{FF*uEs6`L5mo7Cu>Zm-6-d8g=vCh*U7DRW)yz`!(Wpwr<s)5U%YYo)lmyY-m
zS-~F62B>GKhdu)a;F17LJ~+_u{vt6mQ`?w{>w7K;biA%~zT&)=2Ve~+Mt|_`;12-G
z5+wm!65F(`REJyrQ5MyH^G6|68CeWEb)RBL7JDi$qMrd#oWUTe_0Nm~0vYRXs~Mu~
z0|Ek4qmKe`A*8kvnbKmQis&<zkY0M1%6`Iefs=qhG!jM<T_s}j>x|V}Vdu`b^TM)$
zYmw0Ks6V3w9zMBEiT<&9>T9{*O=DMjueo_^Y?87Gn~m4yBl=XZXCxyy+lEFuekj{d
zVrsL|6;J~hi{3xHTvvGK$)#}&q8!>`Qp!eu<)$~yp)Y4QD&zztbX@rjh|tJ(y&v|e
ze5qY8wg(;WcakiSvWp|VD$u+mZy!ir&fr~b-bAH0a57W5P0!U|H@x2h4!6uaY64Hu
z?;*EKXo63qYl02LA5Y7fe`%nFWqY=uReFVjw}NSX*fn*d&R|MfAb|k^gTJ;ue<Ze!
z`(FhRAUaupBKr>Ca^|jL#Sd98gy7RNf2p2f)?ZFHsO~%4ewTr&ssPef3Hp6S2qnHF
zUc)fR5k&xIF$SF@a?~ZltPg^HvrcMGPB2%8NxxLne?6Q(BBQj&BFEDyEyq^~BXG~C
z$s<yO&*@6f)tND?KRyhQRP(nuv2*}ummU-SSX`lh$%TW`lTl~vfy|fIQ~F9uTk;RO
zP1erEHPo;t7H{%(%}ybU=<}YFJRP&U82j(Z8Ql&0DWVbR9Kx)(Vs~k9P>y4Q{QdpM
zZ;qGTyA)lJWwSKELNGz6?XMZefc0xXFCa_SWo&*X4L$ar=>8RcisL>VAzcQ_3Hx3-
z`p*I9_vLOTHeRfXfeGy<$-CagkErRb-9H<YDBJ?|3_sXfmX#N8+10J(_qoxIn65c%
zNIu?zEHbJ!dQ5S+ig5#Oft~dUN=iz~9|ejZ<VY&pZEQ{reXea&2TV&eDXD4(MyA)p
zKF(C<=7c-oF&ZCvjUIeOy6ZOpZqNMHxwHnrk155C>Q~)Luu?mvdXMYZ7&&J^eC^qv
z{V_O9EM`ly*Pc(DS&%a7&Uuk7SkIu~{Y=k+NHHG(FiId9h1>S!!)>g|Ftr+{E>r9U
zbHUjyP-S|EjE;^fPrK~>aK_+h)n5h7VO+ioWm+G8e0fzKLqg^6Knf@0sh(L!nMl2T
zJLGip_y%eOD7Z@rla<Q_BLS(1SaNbR3yAdfsz7iMKH2uOh$g&3yjwT>+jBa|dzEe*
zFA$u`a57o-FOB|UdcwR82U8Pm$v%_<riVEMa#<BJO1?^RLuV5L|Fyq7mQ&%Dq>APf
zo~D~ci+vw>;&GUk2I7R2%bVg0m$AQL|33re4wzDk?~jh}h<|mSzChmF)_n8Tjr_Y{
z$EOf_!rL?8<XT7a^}GB`G(gZ+__AoFY{oCYC#P~4M60)Z#}ez@%!%4=+z#jrmKqqn
zJw7h**1Q%F^08XG?Ln4!cC>-Xx_Sr28)c}RTSC&v>n2@MHDOSZUGrlNv7(wxRqwNK
z#PwG)CATzeG>PDVU#V3h+~262ZT4euT;;xYj!g7^rZX`yQ6RJ1D*Qkd5Xu@ga8drY
zt&6FW=$e2vHgt-msQ8yZ9E2lMIq8+Y)pQ*W6Uhp7l~`hj771}siQa?Dy-DS>5j*==
z{pxZEWAHpLkK+7z%4T-Tv+9Sg$?hCu`JARuX<BJ+eQGL|5d0z9@CTqf!bd@siG@~<
zJ%|BVLaXZNQ2k!du46TkHgZ#pK3%~1L|@m0sI=tra8QD>IWOr})G2~1Qr0OWSlX)l
z>kG63*%@=!EGy{CTfD%-iCF#47a#;mKpF|2{$lRx>N@F;goCz_EaZ&d(M>s&nwlDg
zVm2~Y-Ih*kbKJ&dh7u6@$j}%Do;vH9SJcs0W#5|{8<26~7IQf`IzGkUnZYtqmKt)q
z2x(0>|6Nr`eQ%QcG<#6&yQ-8l)IB-;11846y)^fEFZkYH;ko(_QkuQYpIKjE!T1{{
zS%?#?xM4P-X0f(0ps{w%)psi3U|ba5M&gNAbN(kcN_qpehc{n@n(yol+1g~@kG<!a
z$@z~s&s;imK~=}KK+$6`x)qER7!>q-ZKoK8d2ncmJeYXq)F2_~83@@-_D29wA^DO5
z2otE6)ZF8^cFwfp`&(^+gKW90pz$uScoENl3fu&~zY^HI2t1d+18_;nmfC@gY@oki
zQZ2zf-1GV2`mYN%rhkx|%5ierZgKdKhI>N!&4b&+9NaxPmh6cGCVah!v&Q*sT^O%z
zaoQ&^uTA!FYgt#z!exI6h}ZYBG6^2`k8XWl9%gP!NTPTGC6&VWINR?dkh#kzEBmiu
z#}2?EsrW4}n-9JPYEy?$tFS<|OpT^XoL?o8OVY(|88e(jaJ5h`95(|869eOCf!LH+
zSxQ=4cn14omDBROOM@tW3BW1p=aqGl$aS`ytsAiIO(%a!rFJL@!aY~!&57#uISw~O
zc4Cq%yO^+<xR8i^2yOatpJG<dByaG)>rB9fEC~AYjF9%=Y0han{^h<skDa|N$W1`-
z?2P^&HUG~Fq~A9A@Y#0M(|8tJw_(X_pJwu#_C)jSoZBVZHtaa$u06n97quo+c@qY7
zBOd0Ba!~!no4Sj4H@?KYOvLXn|CGQ?`-XZ&8CYt5QgkOYP|3DuI0r?v#~+x}QX8IW
z7MC#QhIU!<#I<EUkq6@Exx?MyiX@uzG+dx8s4mwu({Q>{T@$#`bmo@$#f6ogZtpU5
z&5}fu9m)j2Z~Df!Ry_^4TmNhk9o)vop@)g2qOrUJr9i5WNjo25M2rkhIXz328o!f$
zblla%=WYtQp)01gRE3%eZLMxj1CMhliVA<g4t<e7W(65-?tP}f<8p5pwBPJuzV2bm
z^`ex+Cx?yf4wC%sp{J)%8LcHr*6F3H_8Bloxd@PL--^`Q%&%9X*W_0D`n4Few8PL6
zL5Qh;#2Byt8=Q)kAp%ZBn}sl*9YNc@$FW*6&_p)3`EgTY1Nd63cd`I3#0zYPErL-Y
zA=yf~5`(Zp^xLP4wP67Bc+{N{Im-sa7L8b1^i-FO%K7VvifZ(oTv*8B0+PZVxQuhU
zZa~zxH7*ETLV)yMt#kIE2^J;$u33F3hsq19E5+}(YVEgUt7DQMLJbH$rtZB7$M~eU
z#z5Uv0sMU)Av@vRoscYc1Fxb2UxY?dLPEMSp$IfKnU3CuE5bt0ytB7gPYoA^zYZUH
z))EY!J^omO5@Y7-+9+<b2znp6X2%Tb9Y$bTnldqo?`?(cgYlshx&PYDK0RZM!lct@
z%eV&Lz-X5V=Or0MoY2K@vHKka57I-8p*yI(Z4G;vn3!+`01YGWv)P}&)yPWrMcj+%
zhTZzqo^C`&;$GXeZoR%Wx3JJ@>5qYbOK~y(FZV^VkR+(1Td?IyQe1q{U6yZs%Bx<G
z2=DEj(SIy#9vYmBFa?t85V7;34`~NKm=Z8FTE)vD$7tOX=r+`?Aq;x%t@|_P?xoE*
z{0sq7R!MA(N;(T|uy9+89(}+er9ig6OCSsBdL&<+ia>GdvM|7d?T?_4B-5NOm{U(w
zc1r1#A?sVE_NTL6^|93_gN+2f)SOeO_c>KwAp4_gY=Uh0YUd)G3`_L@lXftAfQfj$
zkf;lzJ38tc&N$5uRre`-xv#>sHm~TRKUgEuADR)-V$W!4TD~FJgx<(UPLEH2(nnBX
z_sPvI0cU~~(28~Cq*9VqQ0`N%;$mV%J4J?*({!kD_$^F_le3lAHUBmSwbEKoToK1&
zB1JxFDJzrtTSx|IM8a(BkP8PRq2$QY55y-Vm|a>j;es}Po%PSUBaj-hb8t}F3V;iT
zc>xMofA8KMDI%e3u9lC1ioqc{vCO8#nMIlP_`o5>R~JQkjEoOf>^hH<-ha{}{$9^t
zP~HaTuJ50DFjMqcjOmi$TgWMbloqo^;n0qc%`_5fCBPxSy64?uJKZ4wm9`#j5Fb*9
ze4yKgX4%O2v4444w{d}GZM4vv@nK|m_(=U@e(L*jXUpAT<)+4}bYL3(bBM4={+*rL
z(iTkK%3THDUl(mB@Soy`|M+H>0gNp)+|;REI0}-FIdIxox!TsavDt3eoRaqVjgSc+
zgI8ZHGrx*e745PaD7-(bo1docqZ#TxBJ3IYc@}PJp1&h|Ipg|DV=yS}qBgAA+^VLa
zZ8tZXGo8ty)Oz+{I=VZSDfK(aCf{sIVxm}WsmD<)+45suqeFm+wB6H+vrZno<W$oc
z2wDO6Odu{k{%0#O_1y3qS?xVvW;c*ZtKF7_YVG2@U+zp{11a$QKV&=JJ942kuB<nn
z|1ohWVrf4l$#Af}&PPYHP9VnO-E6IlQ?hjcBA9;^SN>%{{`tq%7pNh>Er1^T6W$Iv
zfuHMU9XCAa-v$r(?yp3lVR8NVCeE;F;%himG@Mn4_@_TjaE)Ul)EF71{#mhv1A_}b
z2j=1f@?@If;b{3emgomfH4+)3w)@+gVmsn+KKft$>*<$B5AY9=gtJWbhTfb@rf0QA
zQwuJjK1eLp&RkdVOX5muF*)RteW)pDPvgSfl&T?nxV>^<HE%yRB)@;)Rw`>IYIJXk
zPD^5Kd~8s*c8j5}x7?9fFp+S@;dbW=DY!eLHaDd9yd0r)lq1e5{ozNX-}2|f*H2l5
z8cOoqd3gmfX$7pVca1|HR~7zgsF9;pkkT)%mUA=<IPBbtYAKzMN&3qXst^@vceG=S
zRpt%XDvI__19EC3g+!kyQwqnd3PNus^F!iEWTFebzvURAJ<P%ZZZUDmHmdf!1-A9j
zr2Rj8b534VlnfHGFL79$>bUtS*Z5}2=?ee25C8kwh<($-c@O~`>4xty{I9DQn1DY4
zFdn}Ag&!)?ry+7=9~LtYiVp?`N2E@kMfeKa%9TLG1V!tH2myU}Qc*#*YS-I;jy{Pp
zBE;?$dOv9TP}(|Tl8g4Ix*-w}l8T2h=I{qoz#}7}`*yn()0QP1b0dDFSoE1k-^mU5
zqv)pLSd(;(YBdxsN?<SLPZ(s&Omm5(kc3wob)HQWjQ>%-LdcnRv;^EG*3A{DKuG;K
z@|)Q|kC=r+xvu1;C*<ZhpktzUMJthxSA}Bf5<8u=#s53{z49*_J^>NZq81_Y)^*h)
z%Y&T#%Bq)gwf^wF6&%4~67qhY&Nsx&6I6W)+ogd6?*ACvdQ7gy4WsjWJu;CdE|5(V
zWLi;WHqXG+yfB*;K1t~$LtMm?k>dRGA_?c{e;KpC8A7M-O!=EP?+B&DgjN6NHV|4P
zeIrT8!p4ph>tESXY12~9hxD(7H2~aT0Ohl>8sEf}_LcF7>J|}}k5e7-)GtHiOK@vF
z7%>)%MvnaLn>Ja17?O{HC}skVYBX;PI^r|JsNGhugV9MFV^?l2{EX^s$dd#uP6qL_
zNNbO4S!Z*0L#LSgO=Q<rPT}4*EuUEEMRDtcwkZEhM(aDYzU&LRB_@W#_+!<ix!^j&
zfbUg-Lx^-mdf~4NcJCenf(Fin-&SdXFs}mzrthYoqyyef$p_=<4+PC)UiQkd+@PWc
zI?j|ASMX^T+tv4uLHvLBJ*E5aNr#uHf<AuqQlP@&I?#JB@b?mTN0?T_nGDH%nY8+0
zT<%`9^spKE&oklwcv}47h53b=i)^7zZ>!4o?-|(N1)2wQ;h!X$yjWtEE=>!DAQKgF
z)r*`Q22cru$Trl#-@bUJVzCxqfFCv_(Bbq~vnDo_{aq~gXw<}hTg2WbiV%WMgMeSW
zKRhH(W=K5UKdBsJ8z<oTC+DOdD9lWpl2KnF*cYgDrF|%6Ygaxw@5pG=BQ%gNe$Gi}
z!HXpzYrftwG&(Qf*82s%RND&2M<+itBH|qGt|4K!wz$jIOQsDo7-QBu`nOo%Ki?An
zG63{o+wYQy`q$UwP${|Zkq8-Vc~0YUb8{*DYHDgOGhm_rcLMs4|KtDh-5`N3;Qmor
zO^yBDtzrC6vQm6ZrZ8-yNnzl@&e?GQXJ>IB+=at!Zr6oKN`6lO0>Xr<l9F6)*VNat
zGkY$(O^~#_fD|`gz~qvFVl)#VSf%V&80A4lC0Sfllm`HE(}DgL^v)iEh`65filG)0
zXZ@$TQ-GqqBqr#xcyd=!V8pYCgnSm$Z|Zz=bY4Z|>`a1)jQl}CL4gMVs3asND!U3t
z&=<TyqZm(VDN#%&1S{6ssH$to=M|6)s|DFtaMj3io=^d2-GUpfQmvl@J7q%uKQ`ij
zJ4*j+$b9M$zO=%owYIh{&-)oH4L892*Be$6GdYzx;BVJxFiAH1pvioQW|R__N+Xrc
zlAIl+5jKh{&*Ht^fmE22@0)n~G;1pGR>bnp=B5}XWq4Lql{AgCqk}{C8ovjTn%bNq
z1oDxBGJmqcuG>g}R`jRKx=^SRZ=oNGuXu7rMFCi3R_W8POv}9ljkf504c(9G!4w4I
znWI%J)2e=F=xEx2W6-ByniU!jjzno`Y5%h-UlvwYBYvQe`M=)jf1-Z=ZKD6<1Rt+Q
z=rDuJu@PPeF-6{Zx;OFh{`(=4EVM@T2HjvYM2r?lQCebkhiHd$-c-D?cebO_bJnA=
zSG}*ju4VY{ANVj8j1I<9|1=hkhsTXYFBU?Phwb>_=!5nCWYJ0WHyXluoWdx8;zCq1
z^qtKpPD<1H1h8GVk1SpC<!f^h-Q1cm#S*~WIiF`xd%}r{i6{LGw6s!?dA}2A{##q|
zA26o>!wdOb`n~awU>3s>Z7{!CckyaD;gk9I_jzFUNoX&Pu6`Wr8yoB#^*JCw(Jvx8
zA}Y+T6i#cTEx-UPH&s@K06M`HvEer*8i3z<qzljJcwbk5;DE<Z;q*e;+G>w`;}kaU
z7ul}L`g(YPJ0W-D!&AHrPg2TU-0ta~Q@VF_B>Vh$o3v3H7aL0rDE!*n+pBW6nEdCQ
z^Z)St{{(1l!Ngx8`4{z7u4D=Or7`cNrXC0gIAuWGL8NSi^b8DT{4)*o|GqMfLF;hH
z`D<J62$qjZ_#-P_-QCm7^0@z@unyp{cw8?G9mq+pU7+;!^?@jO#%hZYaGE-z<K}K$
zdf5KIpPT=D)-QBE>+4_K_Vbbe)NH8k=g&qpOgHPMbaLhW|7F2(Ny0=D^GgF#?)0{N
zl246Gqh#wRC#&2jc69%J`0&q9fLR(E8WP~+y;M<&6p8)~C3zXnm4GlW+ad1{gWP_?
zZf|>?^CWkwv@_VsQQwRGA5lpMpU<79hTC4srxe%c)2X6gJ>bw8-F^67*a?(s4;t3y
z#FM8?%-vAUPt~~tuBWlBxvV?o?taA%k($(VPJ@g-6IizUt=q%`zJ&aK1FH)WlY*@Y
z#quOaP4bOKz(R6^eT#;MCas`wifynX3^W)2yM_3#pI9Jp@$d|dPgAdrkB>jXM53Ys
zik?TZYHDh;qYH)Ut*!ix4Gr_EB-Tua2L~UxawYD6${=uYb4{RZ*?>LgC+dEdIg+or
z*@fo%y$3LIiR91^ae#Rap^3gL8N<@KQ&Pl&_b|hDoNb=v>ojMSla}B^U`5lb_W)-D
zNgmO%_>#I;_88Azzq7z?#yg$l39i&s{C&TEo7~jmO9g#v7?JehhG+Cp6897{ma_XR
zC!RWYnJ`CrE^p9>4?W}CgYN-sVDQ-r{NqIlN{zeoBzM62#)ib}UB929jg1LgWO}-Y
z+exEB#AMUO_DBIaO;sjqLLz4kt#!{k)B^R1+-F~-djjK!i8(=RE$$l1D(7?3u|Ia(
zf3RhXPRA;%AbVI2SD>uqAoaK(tsB=GWsAIAC8DdWZz*kwF+m6j*~d%unf)*>2mf3g
z|Bs{1Ge*eMvvqn;crU1|-~AunJQKN+f4zA+Wf0&{{0N2?7qxjD|A3EInv?Je2pHNR
zU`qK6z7%k-4ha;}2`?rlrWv4@fpZ8btHlSR5J<GOwWW5zcmhbP3E<Dd($e9tpGW@?
zLRm9fvsrCBF1+gr0dNzK_W={toB}fC^5qiHMdc+YEIzrd)$jqsE+RJ?9$#SDRTJJ_
zuc%RN?JkRq`l{HzCKFTH67sp_5T@-ff97w|T&K=L#$!z(hePA+6^*e2_6?S*z{45B
z`TgmdZ<JYAwf8+I5m)rr)a8>)Ns`u(eAza|k|3s$rzeadt{73tDC6;=1f8ARDD|u`
zREXO-1YfXi$H|VK`!XGgu(f5`^pox@4(lli-X!^mGL%?sOiX9&PNhLgVyKpEyL}ZJ
z3NmN#6ON~bX=VD*{F4PYb^=>;W)w94r4W#eIH0q06fMu*!ggUY!9<p4iw?NY)6?=l
z860Bse4O(JXqF9?Uk)WzuMRPaE3gbIYLCgH<O%UPdx7i%jnuYgJmtvq{Xl@dor4%7
zahqz?7(6epd0|Q3pUOGK#Zem|+sw8qEXf|v2K*!B5!J8>hUVhgy}d-}_j%SaQuIE@
zGMSj1{`s(k9`XBzsK@3Y@IiZmc+#TgB|7j$&0UF=O6jvW1va4^nWP=btfC4X-v*E3
zGCONgeuHXV#A8veo|lc7T}LwakI8nW+@`p?KBwLGW@;cT(eOk2f8;d(Tz8|eZ@GM`
zFfAa`X!BdJk${^ao9TEKPAM~j%hwhFc}oMd+i;j5vf!L#Z6TpIBR_bP07D4b>YwxI
zo8mH1{Qya467a0nnf4pN@cj*l?BQ_LWlcF?oMgJTQ(Bi|gteMA7OBoDDg@-2G+9Rb
zY@L$xO5!efb?%}ymu9X`pEZe}MmuK--(m6E(+5b@dMI4y-#gxDaxy)}!=bioavTzY
zW#3bd9vm^cIk`VSz=G_WD?cqP`+Iouk5JU}qO4*7!a3mw_YZC%r`e!X0V}K(r#<Ye
zD^?ODJI_?5lu<rF6}ynq+CN#4sUjE=5!p9dG-%Y5da|pFMZ4{5HOJ2WltlfPd?RhH
zhMhz+$IBKomfP7SNY>HOjVGhv^^&4ieRg)ps*WXiQ}d6s%!{GcTYfJEP-FAL)H5gS
z#G_1EiAKyh(hRmqOq|WTfYCdLdPKq>P;f)%oHKKZCyR5vl?lbNR<i&yJ6TANa(#VM
zI&!oei^=N}K(fSz6)>sc?1j*9D&>N?61VZ&O1dN=^5qa8Ri$_%)tB`l&JP(uBwoot
zOH6X%Ch&%wDV1jG$BL&RFCcGO<rz$MSd4<^oXxMn<h_tt-CRGcaol)+A6-(x=^79;
znPOlzecGk3yzXMY2O+bi&lRp_%9UWfwK5kVI$oQ!Se<R?`|x2L5EwTFdYp-=>yH0_
z$G?v?>GxmL<9os+ph|-%TrOV(7-FCu8=sOQ)!W;9!3QXvx_F1i$JshK<nB)uOr^40
zgoDZBuWRQZC9a-)4!g*Cd3l3%9v&Xll#~*oA0lXf@TUN}3cxhsvvG5$R8>`d;0h)n
zYwBs3Z^{s=)%>**SEchUp0;IF(<0_=OqFRq$n1GJX-rF}40`8i;5By1=y@pau`r*s
z7TT(|!hAC^(<t~L-jjDxqmn?{Mstz=D*du!ir$t@zs-BgybBH~D#FAk7a=oq?j*-6
z`z_1NQorA35NdosHug*xw9TbEJwN}_Pvd@t+hdu;2>;L*KVOeQC6~;L3;Tll)hGVe
zmp*0f)+UQpo2i1RS-97`%vH=B%x<ol9tRIa9UV!V_U8zWP$UUd^ZE{@63gz+V6Kg_
z*|oDvqvIQv;<D<K=DW4uqvNNiAWAAp-c-T4HFKZ$fywRn{D^6nu~^(qk`S>3s@p~8
ziyI9)4E;)dr#!HMHm8D?&nu7x+CspE17jaFPQMhF(dQjhLD}2dqx<&Y+dE#yclEfD
zNgziO$XMsds;InANz{n;y4!&FoqLE^6?In=`GD}zK=FurA<}#eFp<M2I2cfQ>XUE>
z0M1o{2^EVDj!xN>c2im!pG93Cqd-0ed<(qnYv0tdae!`D?NzLvwzf2tLPosW%$?=2
z_ubisDg?sV7RMKHgNKJ#^<38%@YoGNSxd~$GX5{st^btCt`nkv|AkIa<2ruKUcvSw
z_igQrm75!n=fxluOL<+}(fL+C0#qL$XZJbuugApI!iCFpp;BtY`PoKyjnkoeE(<&=
zVKj3%MsG-N?t5VQ4Q@9z@jUFN*%bc#$vw^76RA^Ysqd3Z)4<46fvtbK`h33ft@h-2
zx2&}eeiE&wq`WMk6;6&E-dRtp^~=;_9fyHRD@BEXu?l~A4~!en+tz4C4i4SG(!OLB
zW%&se1@Gy+?$@*2Q~!n)(k5GsuJHDk9mbLBP3ZR4{NFH<`uaZhkh`1{v&}w6SZkxL
zs5PrIP}nAu_ZLs<2{`n)hafo$wp)8WL=31w|4!@pWL+b*ir&X0m3F#}1Y$SnzLf<l
zC`t58?Z}Fv?Ac;Fdoo~8jxs?tO7ZUaD{R1xtqKPtqO2Z0MrFuR-IitppnK7_=cvVx
z7^<!*G%xFKnJtIDQm%+KHrHYDaSeU*PgYuM;}ck_D|M*zR(oCVGCEK^37b@i@e5<!
zIp!rFlVOn`d<NUKC#2DJ8D+AwljuBZTxuMroGjtbRXKJ$x0&$^{QpMz5U6n((%9<I
z`DNfTdB?mgpIQwBCPRaR*=J|AG=^7aXIY`4h+0_IwCGLv>RMV0BFogQJtQ?Y=731@
zw0{gh8{@#>EUwx;DB@dnP8WLZc)=nub9ufhJ62dz;O^apWq1!4{xdn+RBKtre@KOc
zi#)O%{WU&8HDNNaXY_V-6I)Q!NqDD7r)I01>+AyQ=OE|uRL*`}KkB59TwjK)QsL`(
z44d&RiYi3+6Knyi;b-?saNA*jh1t|x=6LuLNj6f!Xg=Ke#;>i%-WsbNTnVeOwo@tl
z>$9Bg6&)H*)&R=S&YZpBgzsA(r<MC+TCemr^3G+yokFkzouy1PIEQ3;gqmkPtk}Gr
zHZifJr)=CcGfuRceJ9cI_`=9L1=)NlhkqzQ2SS7(<kM^dejN|nm13O^=m}VCOzR~#
zJXP&yRVAiEPXT~?-;Dd9s+D|$n*gl1n9@lI)?%f3r8LK)B&vMY$M!}a@-2zz0=@6=
zP7$Pe8^UHi&&w4%(q5O@&9iXR*PR-G7M9~gfFBL>xMXBQO^t74L3%zm`LKQHypDmB
z)AiMGHOW*z2|roOYhYY+a~ODjEa&xUPqKQ3N}=sLW2+-fZ=XbTHCWQv&~R#(0sc=x
z=C@kv(~}eF_UB_=27Z>V^;$H9C;_*)#7I99uXzABK@~nJBKo|4P(l@Q+VU1_{q%h~
zKQE6HZDu5eNhr59`bJqA>_c%*S{f3ACbLdPxmI;GEWAG)AYn_x;=Mn49iORJTD;iO
zeppU7Fg7MLtMG~0Lw#$z?QvI8ODk{ITGaD>>wV(=Eh%CI;a3nDM0Zh$8`epi-vTx9
zS(P3(lG^<;!Al*9FwMWe>f%ZdB=W7Ip=j2z*XSS7^=J8xdT+iN4UJ&iF{e#VT?X-}
z*1*YcUNU*)Y_*bK{1X}ZJ3`$v{sIN^`-weO-MFr9ZYW(E`Xlt6oY-MuU=)><VmyLN
zc@B8aTk$^iz85JhE|wPH!ot81p^{IJM)S_jE-7!4u7f_kkx8V_1~fK-QY#%@+&+Lg
zir;ggW}u)5m>k1sbnb*YZ`6|*kmPxgd<K9d_1yd}iNgvJwmCb$lPosn*s}f8Owzhh
zekipiuJ#G<O85!YM0`yj`7i0{KU3I$N!i9n05lCcDxzBQ0Wp)UWmr^6Nr^g)ucVQt
zsVK7be5W70T9w-4{Jf?Xs<a|~Q>BxjkDc9?*=_*qh@+*X;E4szx@e~s?#NHF4N;xx
z5Tvm8mP5sd#m!>tfAIK)zfCC8bQL;Ra?y)`rt+6vDpF(X#^eQ!)z`VcZrYe0C0y3n
zAFLNYz6ME*G$cNVvtKsuI*%zCX(1dh{gTFx^Zn#c5#IWR@IJsl&hHMagoDqXEHT!S
zA>eB4gC$gawOZHivN*H7u|>6O|3lnoYna!IDIh0#X+n>~TqXV6p(xv7xuE&p!JAUJ
z&uqeHIznNPCnBQ7I&~u_7s2cNM{0WGLU77#GB(#}@@sIq!hQ;0HB`R^iEBpRSmTT-
zVVm%Cj|HE4e*0sPYrMC#6nc2*b!yyOXp#MHG-6y46sp{hLH>7BS;8@ny*7Q5M<p3p
z<ag!(4nqFrdGPjXXze6P+<2trXFvyfSLYnWJva~*@5?kYjNcXjm|4(}&*~@k4g&9L
z;r)*tia)=vXphy^Z$E(dXS7=c>lf^KyG^p>du(`C=@rIj6(5flmOSR2evw<hPR-?C
zr<V7-=H|aIq!hbafWt}K1T6YwBv(I`x0rBAlj->E=f0B@_oXi1Wj|Rxc7e6AOq7sC
z8=KX{-K+QNT!|}G){^ze`gX%2t)+dTvG)IKPnLT%E}pxXdne1$Am6&{|LqD2K5i*0
ziRs}qX#6}8bnx5N&J9--n~!%DTu2R30*)?SF7f~PAiz1-R5s>k+nM9vxm~(}{lg;u
z{;viVE7}hf-q}(3Nv1v^Oj6EDTgRkBWg?s7lKJ!J*HrO67mqEOxMu#;sj8PhfBN*~
zaJokGZ2wf?&co?X7cE-!q&W+C?2OTA6WPCx4JR>YudpWIf`5Vz8CeqF{_`K+CVW8o
SWBMuvAn<hcb6Mw<&;$VWcPHNf

literal 0
HcmV?d00001

diff --git a/docs/codeql/images/codeql-for-visual-studio-code/codeql-extension-icon.png b/docs/codeql/images/codeql-for-visual-studio-code/codeql-extension-icon.png
new file mode 100644
index 0000000000000000000000000000000000000000..c8ffd6e1dce336935c32f8f4d2abfa9a5c57a181
GIT binary patch
literal 4070
zcmX|EWl$6hv|W1XMLH#=mXelQ0a;p>5EPK58-$fcq|>EqQR%K_5fOzYq@_EQkPwjW
zhKKLH`R>fQ=gggR|J|88Cq_>fN>0K=0ssKWHPlu0?^x;%5<tSc-iGX(1OUh&jw&j8
z8Y(L6dY<lfjxM$UfO<@tF_DQuFI~22aw5bb1gK7oCC1gqRVU8tWM^k}3Fn6JaS(>a
zV!;9p-k4x=b6VJIq2Or{3=9s%ij<b}ZRQJmuj-Jje?telH@oj#o#u$&$|839u|9xd
zrxguu*-|OM*Ckv>Z4(d|zih-~f822#V!dGIn#KJ?p33!gAfOL^d3ta{2wB-S;{7_Q
zbb0GMLIpfL2e6NTN{A26zk==)0?><Eg#-Z5YSZdCZVXF1$x)#wB$~d@Bl4bck4M(M
z`+CzIoi!Y8gb<yu?i4#f?hJ*W8ix{|lf%j5El#@V4uFFg`^nJ205#+T35K;U2?Cz7
zFMd;!vM)VQ$DzX}Vht2r%ja`y%Ma9`aKE@k#owBHB5cAGUEmWvsgd11Yh;Jsf^rFh
z-Atg<*fGum_Q{Adta@%u6ho2CkMGNAC#7OaIphe!bx<SFx6LdX$w5K8rm9wYR`(jl
zM`YEYJnWc{tIN_s2oj<D6V*}fQm=VvW!OAC`<nlK(bCXiAxVp;1*Of*J~-`WQ=0=?
zl;B8b+r^`-9Wq_6mkJ`rJm?rapTU@=4Xo#Dd#~go4e7WN7D$#D@?^m3WeK#!S}N9t
zCp=%z!wx&^?P6t;1OjW=#f8mK_bX9D1|5`Zp`S@RE6*OYS_bKNESlkeUj(iG!q_W&
z1XgOUVGG&$)MV*O)IIZ!P8uRad9?>kAzRrN3>8dqyfm!@W#iprJOm>iKV<gv!Sk68
zw(@5rAe?D-2GL-$Nr^<F+ThZvFV*z(`~k{1l<JQOLAboM;xe4D5w6H76FvN!V0GX@
zR2Koie?%_mz#`IQb%MB1(4Ul+tG10g8i7N<(i(uWO7-nA#q}j)98qdIgs-;yBH(GK
zw*f(k*IhO2)Ol7mVQh>q!qPiHR-$4b7&Pm;k+0tVqE85(f|$&`da$D)li+?5&Kpkg
zUFEx%GVkvbn~}f`N?1I>M?EFOw79xmM95Ew4y8QsH0-Y)W682wE3r>hkcltgXbb0g
zy?~qFGX^DxTUWvb1@bi3nTU7EQAv2c-b(S~uZNEq^pn;uF0c5kb(nuh2b8WsZ?|@9
zMS_J+p;|6t-azLzU2FQ9WfN97yrjmzl2(qRTcu(XW93Ee9|!A5A@@?f-IG4ESw;2x
zlzDG>oL6oMf^<__3UK6}J~S8j(F2CpEYd&jS&Tj(<YI6Wc5?&tw21tenqvO8)EF`>
z60}U`LfE>y*V@{OacB906RcA7>T=<#Yi2MM9Ww^_AhOn17@<j#VFBC|$|LZ};t(ZB
zZ>1RQCilg)00EU-89)R}kcXN01w-MRW+cU-C^#D*VG*3bgj6b22rf5Gei9OvOTj`^
z(kA<gxGrpSQP@mjZjoRe&%KQo|FJrdHjg7Rn$Zd=!|4X3-iInD0=Wq_)bx|cRNwU^
zqIz%(X`V;8sMd2B^`LuTD-xbK8xS`xb9KrCrt@g4Qo{16tX!#e_0*VJJz=IOT~+a6
zeg~>=AoIv-sNe|JLCBv88~ze1H$v~AL@4U@E*@pA%Rp^y4KpE0kJrG=m=HgUG_sO3
z!3!KT#^_ekUj|cqFb%eTTqL3BUiMH_B*;OEbV@HZ?!RbaY>D;x{pQRVHw~`+iu(*C
z6V9znXep4Fsi!urA)_oqda5t|TPR7rklHoo<tvc~)SsfoqqSn*M_<MuJ1Ca8tdwF@
zA9BkkU#Y{m*~)?qwPzu-T92N5Q~vt^YiwXFZh$Z#HPV7nR}2^n8vHEq*58huHTeA0
z#<f;*CW_?=U1CW}Mv6}&b5BO^+{#lL)>xs=gnQ85{QiQ<l5xF3{T<kRX+?!;X+TAS
z0e#t!kp(&ka^2*gaY00GPEJH#--S<(>UxMYXF@W4k(}2nGh}vRmyCD;F;}a~&(2fK
zZJsK0eB|sYL6C)z=#zAoL_0K(b2>kF#?(D<q;*VlWF7rhIZ>fASwCXud{}4ioZ)<b
zqPc7itup2@5i{C5@x1&KbS-pH+&sA&=@wlL@yXlqo)iC;;J`4D+*Q2qNa`TxVDC8R
zuc~0G5dSj$W!bzURtl^5#{7-XHU72Z#p(s`k=zEuT;yQh+Hl4g<*56x5`{Qp7t;fl
zdK;608o~B?Mlxxj1c)h>VN1HfZEqyelEEs|wPCboaIcxlZ3Qkd=ukdlSMW&<+kPB*
zNwG#L!Wi`GjMaL4x=p6bH*(*5`Pp(1wLyv~bxbc|iueO;@#`_j7<f#wm{%vD-@)$2
zj`NeGT}gko_z@#mjlx=?05xLo=ECMCEWThjZ+FxCeUfwDs<|^L?lPT5tJwD2DpTKs
zK1D(C3d}R{s`9EGlawmdBx-WA(zJ46W_p%;7F=8Q$<NLi-iHyYt*Xb`LqC(&ytguT
z^cl!@7^)kpU$9x&34Y`&WAi9g&dghtRe|+M{CgHTHISNb0w|%B#bZpPJ!aK#-Eez+
zRof^2Rrapg+LdSF-Oor8gx0^i`n&WydAYWIwYs8ulVR$-n!Fl4$MWmUZPjf`4F-*f
z&k`>W8W;3|`s7{Ootm;qBw*O$<g?_Pef|A36`bV*nkt+0u>wtQ505iP`iuGx=ka&h
zcV*|hu}WvY7c^%qN9SWxz0yB@5_Uh0)E7h)_`C~RvH#tD`18-y#?ao=<AuKqjBvJA
z(o!;C1_wqy;4j9rRNJ8+R@=5%GEd@ULRMn`?i0%)D``UOHp@1iHdl^s9Qz#1Ds15|
z!tKJJMV&<Wg%1Fo$#}yN?Z%M{E19p(J_zV8FrdXgbx9y38!*3+zoMups79kBG3(P}
z*2W1~dPi3N_{un3*oV>y*lB@lL5b>pW+)52LUrJ;6o#oxl$a2vZn_r}V71Ui&?%JA
z$m~up66dZtteKgpm$oM?CgWjbWk1?e_*^3+8JYZ~_n5yhH9Ykr|Mjv;7n*fJq0L%(
zKb)D`l~?z@uVwN`;Rg-g2hKWwbQDuH)pfMzQZ7*RofRv`B_5*!qZel`H;-;eALqi6
zxzKf9GoHY#os4FI>*tXcU4P$Y_Xqda_P?Yut%Ds22+BKaO*U?oZkf;E$;QZDA|^Zy
z5DBqfoij^+<j0yE{aEioH86#U*rC+V1{Z~98-sz|Z>@sfgs@#Dxu?za1|@sZUeKr0
zH|J!D9uG@=bX;<*8e=UMLEY5x)vaeRo{`<WD@OehUmMuU>dgA=D)ms#)q9MkPnLA;
z^$_{{#sD_kmnTgNe;WHOByZ6KF{Dg%S>O+idm~RRm5k_}>9pe9g%8Z@Y{i;Q>Ka^o
zOL>^n1BIwk&A?v#LW0*#sVzrKL)A*?TR-^oi`x3t>^^BUdo>8%fO!aC-7$Jp5&KNx
zg@U)&Hd9wtvgF&Uk4-1asDPPtuT-yEuaBEtlT+?Bvo%)jYe*C`I)f-}7cE+CqQCE!
z0v}5o2zl>ZpXtIsci>Usuvz75`O`_zRiLk)`U}0=+gdJ5XrD;GMY%WAHhAvbHpAC=
zZ6|YX!04rsQNX)XFj}p`c0wV5cguBwz6ssjRc7}y=;CG+Z!vhQ_0YoLE!HD3pk@Pf
zs5fA_*-i^}fNDA=&2D^t<Aw72c-(u;3hicbb=q^4@$5gJu3rAr-S>1o$0R7()AM(4
zh{2PR3uYc9wnSW4$tmmC>r?Gfl=HxH*3UuDp=>33{~c}8iq&zymcwq5Gcy_gBtOhf
z@><dCvxG^m7QZX+!hug!C$&?n7v8%kk?|v}yl8wg**B7Bf4@3^aL%ZPzT9n~db>P1
zKrAiiPVA=8_z`hA@$tJ{&dwkf+F<NyaTzp&w@j4Q^7FR2W$e?Ts_`r1&GzXipZojw
zvA!Q}&k(2IdB=HepAKX{Q$PfGH}Te$T%Vt<&53Y}C?3<@<{d&iwHh;`Zpp4beHJN0
zU#1;Rv~Cu;lPzpr^j)KiZ`N;!+z|^w{>BIMd)GUZ{gguYsg)G3C62{64lhJbESQ=-
zTjrU2SQ!%c3gtV|07Aj6Y>L)RbAVn7PHx*Fqixf{RS948L4P@9QOR<Z5eAdTDGfnh
zNoUUiTX9TWar2~HR$KNwLIA9iPNfvt6Etg@ejMKst&?!sZ&?2&vpp49wroq>Wj9@q
z(Og@?b_>AqC@_qL{PA6I0JzwiXxQoK00izd5P*-v1R%ImICoIQVg666;qU?Q{&$WG
z07N+g@c-YVd&mDO@ecoX{*Q5UasP8j<>LLPCH`5L%TmAJ5%DYa=Li6Rj^`h6H1xUm
z007)^4b{hn4g}j-<hpnqpoofnwQba__-CKLsBv^J*O+l`%@1Lz<jO1Z_JG4kbBX5d
z)61bb()3gMmDdGFFs_rTKf09ObzcNB`c~_YkNxNN<pte~4CUDp<gyt_xu4X9?}jjx
zLmafcG~sWqUO%Fp2#~Q}J3N1y7-}O_urp}Vt0!AE%k@PqhwK2X@4Y(ukSZl9tg?5z
zzTgsnKJ2N|sj^1d`UrqKX<DC$lExQUm%(zP+K=Q&O_|=F+*unhyN8Ie*LTv`i;WfX
zsGnq_^f$tMhE#nX$}z0uk-6=7kuQ-l&?k`Y#-^1&z^m-e?S!p*p}19v%*kA6{tf2*
zlS@OBw8E)#?piZjQnaJnd9Uo39q3*8ii;Z3i$9W+!f;A>G|^81_Z`+nqF!z82^cC6
zI?32BJnQzjT9($F_%1NQ2<|6v7tHl|(_?@gZQZi7icjH_;JBFM&=2XE)FXZe9>+NY
zeQt(xmD7BHf-5O%1cARn-&6u8cZ)eXKqx;lv-Oci*B4)EwZMVcb5mj5D26X&3Y=`x
z`k<xh9&d3mh>T29*lX_U#{A%JStPQ$F<KT9y`cznq)I63%|tWnkldQvYqJ;8P_R?Q
zh|*~Z@*B%uz!!ckP!}M-G}2g$K?0=rb*9#RsPSm1<XI>-PK7R*q8cvVO{6vmF&z~M
z(z2=uJyAC<0<W0a;tppOH@j=yLOYz88$2a{QX$%-aioe@fP0cTaf2oUzrl#x4m(&r
zEmXgMNM*a==iflBMpYLr5H=uS7?Fci1(#&XtrLiT&vv&at>zSiY=p|;F5b%ljY5^G
zePEf5mqh8lrh5@zJ4ftnOi9Y(1Jc|?eL75nHD!rLX0%;*D!(S{!&1J6m3~DzJ?z=d
zp;`#D$^sV^{rOU<wLvdN8)K=eDIkQ1l6u56GkIP-dFaw2fU%FW&weXoEgrVrc0%B>
W^0;!?<GbL$<JWkit6HrL5B(ptnxVY_

literal 0
HcmV?d00001

diff --git a/docs/codeql/images/codeql-for-visual-studio-code/database-selected.png b/docs/codeql/images/codeql-for-visual-studio-code/database-selected.png
new file mode 100644
index 0000000000000000000000000000000000000000..bae8ecaed94f4b939117b28c97f58fc4adb306f7
GIT binary patch
literal 39246
zcmeFY1y@|#wl0dh27)_50>MIXw*bN2Ex5b8LkJSwA-KD{1b26r!rk@F-23)kS!<p5
z2VOhXs#?ufI_DUD^xi)ip|aAV$Ow1{U|?X#;$p(`U|^8DU|`^wa4^6tdAT15z`&6B
zO@)MH#f5}OWbLetOf3w-z{Eo1RA5yV2C&jKqNDgteBs34Tj3$(A;jQ+_K=VeS_Hh~
zrzVB*`_}q_ropMw2U+W_oCBTDJeu5x4}Pr-1qIZHS@cdjQV4rZ<sQ~;)+bN58O*O7
z_9w%w&S2wa+v4vy3RuA!Hz7<VRnf@ba|8;wK}>_g%lhC~te;;}l<e)nfeq<C-d^0m
z@NXY0Q8mu;J-(Vxpu=6>gON<2<-=dxH=+^4fR(RH<UoU=?X>JnLxd7^BV6S$@`qp#
z*#^B)>9<XOLo7T0tEYn03Wi_Gzc0oJEOP<H^)o3Sq?yT$z!4c%$S*JxCX$=6kr533
zRD?>xnjich=8W?^^JC80Mruf<h#2(YXhB)jW}R6c;waV+uSpTFT6XpZ{=62tGySna
zef=P$OD9^cNZLL;wA*h}WZ5LMfp@K9nH9k}xdww>TX8o9One#0_Aq;B&2TQAnjzt&
zC~rZ+p9}749OS5BzcvVtn`S{s6a0cfW5C)C{#9gA_vP}dV%zwl!~2xn&9TcIgmya}
zRD*@{4{<MtlBA-!k)~LNy%d6yzVk)0v1ss>l)pyr7b-R5M)tBKowhT>6|u-8*AO;w
zezJcMD~x=bCn2P-ctg>6?|<1-XY`Hz2aQJs2{XNB5^+h=n8GhqkY6ogPsyDCp`Mrg
zuXRnRu64AX<w|2gTaS`2pw=7`>dzcl`C@iiN;eIGj8u}N8vIA;Iyl96VN{qM(1p`|
zQxwn>wu9{FSszvtO$@p35YWKqNpKi_kY+zc!B+Vcl-8GFufBH|1V<GUfI)+xddtjC
zCO1JIG^Z*H_2MH2cM;qR{oXAw6YWALNOflhK8Mx~@hy2(Cq{@pIQDjjd(zifmwpWh
z7bM&XzLrbfoo*L<-MHIVcdw}D-U<?opI;69iE!2Z<A0%jWn@al`BKvtZsWa-9qBX2
zuexGGdBVdUX?+tw6@bzu)a58hwQ*xG;jxb@7Xh6n%cmF@R&#3ayTmVr$_;nxe;|vS
zzxBBT-Z|Jy)dlS82wbg>#>!P0htK5I5@wADIgW54@OyOd56A&0zKCgu@hcqpAE1ZF
zCu)5u{6RMN0+8tI(P<Tf58bV(gawlmoO!3TK6b^HDxt1!euZ1fTQ1T*q2j~Jua3xW
zVRFA>kR63z&)Dt^c9Mpj3!V0D?@Nwo(WGPAv%$G!K5Een_J7c=SjQIVUk|w-CC9O%
zx3U83Z)X^so5OF~Z1x>z@Y=$%fay3r>*(mHv?izr_Yumqd0czyT^RK%51j%_WdIH3
z1b#tD(1AOn`w8uwOv(ry-+?mPhwK8Og9azqfrAFU$^S7CDtj#8P!l1~FG-h(8YWj4
zS{0Gik4~3s9{I-CKNE!jHoud@2ENAsaGhS0XJs9F57N4m3Q9l>?(I*~pb*@z;p}8q
za2V&Jf>ChqV8lPm|3DJ{-XE3J50QhZ7HA<{N2=6c-Y>WP$qsy<--=vI4D|x<KICfw
zOi^%hChMM9Y-p7%JzlW1F!T6(6Z9rDt)Mbd+KE;ZIyb!50BupO32YNS7)HnM5lQ;e
zI2ii+a;gaN5#p5#s_@D|N?%!2Aw5P_Dy2)XAAK-v@kTq+))7$pwrqKMp)<l6de}Cb
z&(&LS+rK$)c;2Z%#OX@fyt_kV4|pdCqet^IQTFq^IJ+P_;;lT}2Hg*_91P1)Z5swk
zjOq~P5Q)%~kjK#QUnra8U-?3XKfdFLeiD;=M^xyeD7nbLD8VVxBzQpCs-mF6tYEKz
zs3akWQ9PnTtFV;qB!B#EQK44Gz_N;EA(%h}D=I%GA;vihzdvDMWm^W5@EcuE<Qvg}
ztl{jE{At-y`4hR-g5qM00{7xb1?<8xC7p6F{^u6Aga=q;Eo4~ax?U*cq~4F=T6p1j
z^(?Ehg^KuQBrJjI{92z&v(kU^X12}cm~xuieS%K5|1`v6&QfmDHce)(W?orCY5LYQ
z&XjPnsbr>DYPN2|$o#U#*gV0Uc&4pzrCeyrb|!RkU`DN|S`_3r%B&S#7H$<%#_#;|
z#A$`ODbfUIB)T{6+!WD-%f#4p#Z8z;gC{~eUb}FWx0SV(*Hg>W`5Efj^kL_L>WXV0
zXC-L#Culrj3U$(YoDYQ=w-=9+pw2*bq=L446&HyO?h_hbEY1;IgVotYlpfC4M9YTB
ziqW$+bgOOMPopM96Gqw9pIf`HgC0>ps0_GXHg|;j)AOC|y)HrLPFu=bUKk27j2NK<
zFfq)Ot$7Yp{8JyMSn{Z(+=oq!UW~}9S&Z_B)0wYuKYT{f=gCf*Ft)NFvZ7~RGg>uz
z8R(iNTm9PB;}!N8k13I7*tCN;L^;Gu%UoQk%v@SjdZHRrnlzg<dsw1TvbHe4_-^q-
zRbjQOk-6?rC0$i%U8}KZEn-E=R~1v|k#v)>nz6bygS8VMP8W6q&R8x@Ct*S!LXn6R
z0<O<!pIsu+A`1v?r^LHMcNF&&kEeGeog-}0Pc=bLb~!-J_(3aL_x<T$b0d1Is(Yub
zxa<&T?!FAUtbB!F`Oa#`YVNa~XkbJ#bCK6Ht+S}}&qt$M4Wdtxl|*6O$=q!&ZmwT=
z%(>lLN?PPwX<Dp4UMEfr=MG=4LY<PFa;)~X^4+;SVBQg2-A~O8uq`=9o>ouPWd~+E
zfA`up-srnr+MU}UJCnIyJ6OZjCF(#dKytw`!KH><#=VO*92@+4Y}krq2OkYX2=CT+
zqc`@I4Mx9HualzFlC+8RoD^S(C_p{HC_p**CeSrt1kN0ZD!{&5C1`Cs(dI6dMtTjW
zoT<9^lRZmA<#PCPFggnQWJplu-aM1ON@OdxDdGEwk}wFl)Pfng+ic71d|_gIQ37n9
zGLPjLoVmm#Cc4U+`GHFJuWP-~J#>-H_}17AVb)*9za&P<#+}hKvD+$rHJ<FxQ4>#y
z4v!WYxPG4#8xWiJ{&`ENx14Z|r&C|>JOCfVl1e(oMK5|HCsmw^(p+j+iZ}L)n3Uv7
z%tI1(Px1D3zU?H<<inlC3+D@>K&EbZrsy7(CWS}xNkSXVvs#c&@4@%<VV~iuVQqAc
z8o4VPT5fZR+2*5yBdrBUj!=$A`x!e0`^ayOJqw$=+*2*4u7qzy#Vd2{zm3J#Dm>(9
z?vHxB^Zx4P=}YwV!#ZwZz$@DE?E`i^c3Va=<MsHbG}BGf(ka3`hNPDo>YBX-+&iR~
z?|DhP%%G8@<eubOOV*EEmQGUyLmY@8hcV=oW_Kb(?VFah-R5B(me+FVP((be<PWLM
zXA?4dd`j5nSQ25@^cPw+hD>d$H4T;n1r+%49(3rjnjakB)6qV+#I|2;j+OD1zq;zG
zJyg~0qz|!`la!&AH&lMq-8oU>EdHj<qt4^xc#PMZ9L?fgn$~h7nB=|??-=V?<(PIz
zK09Y!u~_l78x)>|U!DLPcUsO^rYe7K6{9;9H{zROUYBU`e&xcp*yOO(Qg6wO){<tZ
z4x=91%DakOPjrZ3Sf|Jd@A$*Yy<vij3g{$pWkg9^Ny+{D?T7Nu#fCFH?o>yXYuGL2
zZM}s?OI{BzlaT8^M;(_s3f`@@QSKG{XqU1hdWYR_MNLG%nEhDXul00Ha!k7(xF!_s
zBd|0(vt+j$zMn7K+U*;X*~?J%ing=c81PjP$$!A72ye}2mgX}{UUs;ZoJ=ww*-Bm-
zwHr(4!*)B7L@eH!c5T1xW4O~~cl+U5c@hoET~v;oC2x0qa>^O0F1@Lm+j($0y$On#
zAfzgX(&X@DxjSeyPc=^{6V*O#K=<C79f4=#vWB<fX->0$oJs5A$~YNq6>U(l(|Pn-
zfZT$OYhQY8YoDsV6jrfOIqaSfb|yY2Zgok0y|cgVqMD{Mlo?4^=COBoYN4vhf4;v1
ztuVY};JwCr{dp<cBhj1?{EGBcUCU5d{up;P({Y$<jkI?3F!WrW_p<i_Yi+;g<)(76
zdiH#RI*dw3jKRnI{OOu`|MG$1MhCCWu6-51pAaYNEQh<N91MmwIUS|rPzy{p20XL#
z64$Wh;whgx<YKspf1OWn2Ukvx8@#|b{E01n1+D{J)e_<-tHn<HnXNAvA&Xf7O8N{Y
z=!+|9mwm^qE=N<V+otB3kX$-Pd)Q+iR=?6pXXJ4^nCX>=KLN4;035(93{}OAq@=)T
zfMYl?C~!P5Xy6DOc<_Sb|M&PaI5imL|9Kq(3@q3b4C?>=j5P54`xXT}et+lxK0{<e
z{O1#pyP1&xIR?l4{n5+!e!9RDyp5QeJs21k#qS5Wxcs{_Ffe{FabW>P7x1Gr_y(z&
z*WLtKObRlC!BnP?Mj_Fp@>g@^0iQpKnSM+_kP7-zNc}#}tNlxi5vI7&K-7B$f7iU>
zmq)EW=at&q1<<nnn8T^#+BG-mq;;-^&pqQY)w%Taq0C}uFplphj+hVBzwgn4>*GKD
z%bcX`wa)$ihxf%u3ZbZnW4@(?{{VxJ`p4ZT1uU>J1-AU(Kl{I5`}bh~?@0bDzJMY5
z7{@r4##PS=O0~~|iDfpHR?6fDk0Te2C^!@=_iH#+J>hA67;zH+*LZee^q(Qrx}0wo
zc|JN7X*Sv&)J#Ea!HGr?$fdAa$}<~16&Q^qzr8_0#Nw8zwR8_JQZ6m>V@&Yj#A0|+
z@_g9OH|vWad}A3wJy)#4U{6QY7fGz*etV*%QD>nvl`o@mI9HyKld1pu@;t3(oc0#e
zS~Qb5l83cF;v)zdpH-1g{nMO3Jmn<ELYrsv!^5Gq;HrDRG+W`9IGX*dftdD+u#41x
zU$8%V|9BTcSB-ujzJHW}ZUVKOpn#8ZiK<*UF`u>oqr1@c!HiP9m6lSS#X^g?dd^&t
zV`!0Db&%U}EtA<mG({PAquq}3{l$)b&w$9w)4fume6He3ljHR6h{iM`Lrdn((E|Cv
zu4;}LI&-2f8996B^YwvayHz*Cqbn#a|MYoM;*iU-y@2H8*rpS@$6;-P7xG{0n!lGa
zN-xkg5aI22>fp0f9`}fcdr-!Vj`wr!mjwFKvgWc@8s(BizXsl|@66M*<t>|JT2%({
zGp+7ygwC74;A?d|Ay}MGxNFU3Xy|s$XNq#^8*}ooMx9q2^YK0!6qGF~4Ge_YZuJ&+
z2SaYw>vsAT+3kE${{$M0lXy$-(dPDaE@0N-<7)<ty;slm@XN){kmpnc5f2`w_nIe9
zIQ3ecWeW4<b9FMCbvlu5fmU;!A4xDfY_R)DqXy6G6QY14<G+&`i9K3>Mc32Kk~K3F
z6K#vrvATUL@V6`udkP1@i*uVz!09d;Jaza&Qp(((tc=_zGU*dmU-#@j%;|V5-923l
zF&sp2S<Rh0uP$gI6WkRH=x2OTt5PK7bm$kBO5;?@SaVvkbkkkGnvzj*Uh_<FyIBB9
z5<MEMG}SioaM4e@jwG|xu7BnfzTb-E+o*!MdpIngsbBLdhJ~!qZu7Xmh)D9P4LL-e
zq2Ky<yiW%62RXbb=SiBzQOOWVZC8)++K1ZVPc@&mnG2f_#nVZ?F&gSYA|#u|+M$fG
zud>+?WU*Yl<wPK3E6rO=6xV5W3#Uh&avIL-!%Jpsmshd9JJY*fw(lN(UbybEcx?ow
zGgBUoq_EY;xJpC3<Ny0TDiqE@Oi#O9+tdGS$-12xv>M|Ni&{jL?jny&%&VCaCh?G)
zz#64+eGiHmX<UO3Xb*rvmLC+?H0xv1?@jy=j?eZHG?Ch&!JWE7I-Jo?l4Hs}2@G<+
z@sq9BMqqB1`cOm_(m(%|A7WpEL@2o`!`q8g3fjExIkjn_zs_o<=&Vv`qbu;5LUJjR
zkjsb)I!)gQ4}$oxXNprlVsIR0c)4=)*$<H(u80_2Oz7DQ{1B8IX+uL5abPj!*=`r2
z(d?Agm24l&@px1{bF$JbWN66!&sAXH0x_?35U*k7^l8%edXx)ey2|jSt?73b;dDO9
zIW_JIaP~`e9SZN_Q_Yu7yN+L|Xy~=u{f_f7hcUQcc)rEeUU7JogG%=0w4F^vk?6Ps
zQ)@B2ASw=CqyDEyfoHFE!v;)Xq)vzWt%{DP6qP`tglaXVE*Zm|mnfHvFU0-(;b#)2
zh`*;0k}0&k@r~E-Z*76xrS$p&>G6mnM?c%k?!EnEwe4P3v{0VHQ5`gz_I}v&ePBq<
zEiLK~3X7UpJ`eUDJ&gv4O<NxKo1=}YKuL@~n~lM4<`$i(DzTv-<hjrOu&>ucC*P`1
z8AKyuc^0*jTm=3e0zgDW{e(B@$F)za(C1=g5|^PBcuzc7v#g;rktO0V-RAk&B95*l
z!38AI>yg)44eLS<``w4Ug&$nbCm$0G2V>>JumahtJDg14IGrrN&*zT*M?b-z_wK9{
zmKaar=62PcVVkGJV};caH4fczKJVz~MXs|)5auqI)6sO^#-<uiX_V8^Jo;?Sav5s%
z;U>7(<IS;?yfDaSo^q$&Qo`M}8C^p&fj+H?G1w)c!d&HBK>|C`KUWnAGrDS<hpSk%
z!y|9}2emhHyd`p{OZDYipM=tl#mbMuu;?Z$)~8GCb_Vr29rwlsR@|*oXBuqvW2{e>
zUGqG`@vu`|+GCm=50m#?FClg$g`ueE)N?G9Sj}fk;JyTmLQpy2DDoEo34CbkK?GZC
z`>2|i-}?*4;esA3upk}Nut!gUyjC=JAN==;2Fe|YJ$ips7r|ph7~752N)xB_!o`Dp
zsq9Zbv&EWFKa*OXXa<eC;iGfU$K(3oWgP<Tc`nB$@wxEYRa)heGfOH(gXf29rNh}$
z$B)D7-mlNMvTEcJ*tXs$jUY}+g8D=|T9vZt)s+cjB;l()+sMHbwvL@XV&h~FZc^|!
zB!9p6YeE5G4FGOp&#NDlNkEzI6W&1Qv8R__iSps;CY436$Rk)Cq2QmENxf@p6HXE(
za#gja4QfKG@KpO<o`g_&OzNn*@dCvJJN-a~Lk!jjHJ;^aQ$BXtqLC3fE=8_w_q!St
z<}2niO~Q^xF4?QS$hV*DwlAAJPL><r!cd^;cJW#+e)1gU`*)H^isY{Yrs%O5aSZHs
zvesP1FeOVURj}r(2J^xxKJyAg8~c}1je7cmKDJetY_sWtpR`1e5gCrNYGn<D3i(OC
zVB$W9&p`b48}^e+_E)ap&I-D8OE84nC1tx$*&<sX-!5a|=teoPw;rxMqVxEW*v?xM
zZUAXMf!fpKsIo8C+0y-VwN(iy(3<y8^ln!TbE=egxy=7qy}u{*1qy|bbFb)=5T|zx
zQ3N5EGK=}Fq?V%+Z5*u%J)NClxec6pVnqAJVDZ74_j5f~3cGC<*3t2zmicg-r5wuT
zt#}M&;r%7HSj;YU-W6pRr!P()7&v#S3{Zarjvk?>^~Nq9ch1AQ+YTUMc@KvBot2e}
z6leX>v<2vQstgfX-Pmn68{S=t{d;kD!W-=2+Uo@`oWG&?#znazQai5I?$x?jV;Ylg
z8P8ov$b_g>V<Ja4PFnQ(bSVR!Z;H#K%b#U15bgHJe&x7SS325itsKd7Q^0vS%zVB0
z01gRbx675yCw3G0&*+wZb2gf2jG#A~k1Yw7cL0RQ6nqS&X9?B^xb$mO`W~ErMj(mr
z6(zr3`l^i2am+u`1{l17DTKBjQ42qZ#MZ{hzu%7Hw}Y2Wq)K4ZApd(<|DPzw21l^R
zM$!H!xB>p;f4}z6qWHf<@~_zY|HF{@5|q*Y4-4R3EPv0pw==bK+WLzfEM4E;(n=Gl
z9Bff#cw|LB#SlQu6e%gRzdV@R;a%25mufa%P;uL~y!+P@3n2$b-y-WGFMWuS;Z?%i
z`!V^AS7)ita)xEDMhQTAiV_L*VQpD(5=5L1<8d)v%Ypvbe<pdgv<~1D4wFYD-=Tgh
z6P_GlckJ6r+iZ?*04>xV&j9%ErpZ^oFM>iO)jiPl1_BxZ>B}-*mC@f)2vETuuJ+Sv
zQ1ovw{lYe;DSU1V^}2(Y)^v6Acv6_0BO3*kGvVj62+;G>oRW()>dVxdZ=7o#59<Qt
zIGv6PimgTyn{CeigcT&k7&v?{QsL`BlPE>~&80pjUQMmU(CcB}_>G&lTB{x0zA*B|
z`oe(Q)zx-tyz}VN*mqrU*>Y{I-?`p;Zuok$r@ct4*(vGJCEdk%c>jqm-9ZieZ)+|G
z1AHk-)l3U*Ld-TDuW)Y)gJN)kocl081BLxtSX*#q+;@@KA)fWb^h1#GSULuN0DF8M
zV<fqxvdG^O{Js=Pbdp!d=Mej(+Q^zQT)p_IB^9_|z?AMi3g8(<PmEoq%H4dk+n4Ad
zSaF9f)X8qqVkJi^>F1Yycbc+BxVa)kxDRxs4{_SIn7jKTypZ)NbQ-KcX?b7kdTDfh
z+WtzJo4-F{ByaUS{I68X5A)6^$qpT4y088DjXarj>oe*v*g9ef)R@x_et}HS{UzWG
z!ojXnOm7gZ-y5R_xSV3o6@+yun*{O>f?=}f8&PcDdI-)Dh=t~?P9FgM(9>oZgYxaN
zeZBQsB+xkB953b1mTKhlKA1#TlXw?f^Kw=FZjt(<NI7X_(z(?wcz@$T_i3KHb;z<G
z)XfpHAON_?;j>!UP^<wUt>{bKAc7@niDu&$WV}ye8IRBV%Z)K+%MFzS?cT3mF~@i3
zTfd2dh)dsEvy1J42-VfElY(jAahNoBMpEXcgY8b+9<>XOIC+gnQ;Sr}AC&-r{+lq!
zC5c6kAmGTVvs^0c{f@h}EUL>Vl4f%;HeacKG!zBmd*#*uP|;`{k!4ERmp_|rcrp^c
zT?|FfCY6+A{&Ocr^79H2nqRbjaMM1zt)E}Z`qusFtXgklL(G%J>ki}FNKrs{nHg|s
zj;lVO+Fh*MzJHS4^yF({-j6;Bzg<;mDJQL=@G;M^$d#;$z?DzTaJS+mr+Mbz9!ijT
z%b=|pruL!V`)0xTEtExp%?Qg})4>ox$aL{Ku8wSlVYPO|F(`UEwS-uQBD$Ox>j%(n
z(kfDykAqg4oh4Z3DorM`%A8sq(>-q%4!RH-6s3|s$^GuPM$)+ElvdjcG#jgE<a0s@
zbITewzg2X#*lb+R0BK<Vz+VyUT(iam{d!(MvM3aTs%VTa<AeCa-f=PQL=!)uQ%J5<
zGg10q#hkwdp1=P-wAiKI|3O%hGV4U4QQDQ)D~pTKy-{$Cl3eFwPca>Y!WOZ#OR&V{
zY#6KM#;MfU!Q4d|9IR%rMh5E5XoL8?E<+lBuZu?{a}Fb_L}!d@s~Zb|fyatqi9Pyb
zqV3f3rH^C7VvK!4)iyAwq@i+q-b~b(VkA%}G@U_wCw`6B4B}bzj7~Dg>`&)uK3KTa
zo+(rSMeUTgJsf0yLK2Rp(@-u|tEQwzMo%26hh|;m^SG-R{6QXUh2c6L3AB4fK<ic@
zmBLC&lNUu~**mR=Mfsn6+5ZvB;4`xvvqxyrt)eGCTKe6w6>QQq5|tPQa(j0Sg?1~M
z?8ArWxI>eOf^LRPsYaFdtM7QQ-~<Qhn={7kzHe%9Ph2x~3X#9h^FomfDhv@1JO^Oz
zqS-T=-;C0T$`_{P1B6%;N@Auce%s>-7abgvy~hAWLO~dPQNbt&h(LkRD7C!3&HrKT
zm6y@hPCiQ*K4CA`C1e=}8Lt57`M<>CF?|iNyK!WjW8Yt@k8BJYcyK?J`ZUL`R%;e_
z_%KLY?w~a!(&~0ihP6w`wVD&AcSE>y(y-+e2=evuQYluZ+qN&%Y>XZSJ=>44Sk9bn
zkhe@EXOGwc#h^&1{pHK>K9|E@=3>3I@!-bOPJ(EP`QvX8Gg|WS=oHJ*=jI4+!k}&W
zCGBs>F;yLkB;5jhyS2GySl%tLwZ6<n^D&gakd3Gdd6Vl$m(D|S33<GHfIil#S0;~Z
zMi>0$^rA?H91-{!i?%-*X&{G@5v^judI=p-vC&w1n)<89R0=?lj8(k=9lqJo{G8{d
z@S8@jXBcu}5i!2&X<4N~TUpAVu9sMCUCUmssDzw3(D@;!@pKvu0r$U2vNQO%01c=A
zu#o`z&O9oM0~h5ZfE;211t*tiEn4+ibFiD+d$vUF;OP>P0}^#kqK0+r7N61A5X`8N
z;)7PxwA!Jzh>mipx>A-_-w;FlvLlb_WZ&ml@(q7fUfG?Y1O*C-`00BKfn%CI&75A*
zi@s{9!Whv%%AM~#9KX$cdz#P;CG$)4iLo@j=>!pg9?tc-WU58v%&x-{MR2dUNOCrr
zyOY$HqSNESq26O0gfu;+qi=R483z|J#JilT+nzeUbL^9t4l<Ka_0?GCK^UGC<&yQk
z6*~}4Irpf`4{QpR;d_?Ui*E+XrQ0m4Vw>#wNV3*Xk$V73%>bks293t_IV22{gDVo>
zVF~jLG`1$1qE0v-izI<jJvP0jNf}W3EhTHE43MaBLMo)jblmn09gpUj6t-&T@`kxn
z`r)K?8+C&@?4NFznh%PKCF>wzQ5s-q7)?n0p#YW(qR-B$;iTzi(KeNk&7fZv#Isk%
zClt(UNG0N!PGtFcMh=VYKkJLc_k$o9b7<YV*pOv*YRFDaEMkI+5i6+&<CG~PJG$z|
zVDJ|qKDqj7Vj7)K=Rbd?uiTm()DHcsrf*&qP76*!kG$pDYK3jKY+;5Y%b9TcbiA~N
zj{dmnl-(+wq<uZ@GunN1?+fc@Y8$aFW<1K!-cneN(iC%({xZxwR>b%EG^OBvlz`S^
zKKoQwq>MZam;D(|)x8(L!hUDa5HIDUVbKFX3&tj<2np+hZKPPYvABNaFkP%EeBWk1
zNALNH&t^3pu@of>ETb5rlN_yP^XtXi%TX>Fr7}&Cu^Ne&g=$d2@lyRzF2|;JMTBNo
zG=;?U!Ax<jiX*#?P{YFks{r%M<?e{WZyFX;!Nh(zajr)9H!Y}MWAdYp1`ebtgP^Yq
zC4unNwLPFy;QewhO4U;>)n11q`d2Rz`ffdqNxHPu#ORGeF>~~lm~lrg{nLv~SiaNK
zY*0tI2(`r0jT{ulfm9e;9B6aLQYYIAR}3tpX4?9eY0`dK$Oy^Q)A`6fKo?r25E2q=
z^%mh2IX!T@cBt=g8EfK#U^|30Djka!a#^P4)aczUrhH;HV_hE}uSWy<C~=5tYPY=$
zz;Dg0wz|I+ZlsGP-<MUt0IGKv#c(BEGT~yKlx+YEDXIWmpV54Z#;irRzAJYCM;%Ue
z>(8O#r%1jRlK>8*>kTbJjn+WKx`n2+)5lZq@um0$TRX1>!-Pho*PV1==^ckWb~M?$
z{>VX!&^_Nt(4ld!BRprk?aSA0Z8{j`YBuk)1&9k2^KYnfYh`KeN*#XCh%-PF6j8Lb
zm{%6%{ih_R2_@{)MAoe-OdchCmubN*lyx9NOgc=`OR}l3DBc6@9KZ&;)!^#NG93(Z
zKdakml~xE$A0{i{nLyV;nDc>?UZ|6%L6eIx*Pxbg<Bn*6g<ri@xXTU1y%_ZTscoG$
zsr;d@qKn|I&^(|^X!2Z*`xkz@9HKWbv1)4!L*D_YALkFA615*@zb}E0P9BjQ7NZ9z
z*_}H@)XvqK!*bVR(<)1j6%lj0jMFFYUIN`z^PtD|%-n<9V$JC_e_&$6mTv^XeG9F1
z4))odcAW*Tu|bvf_>B#qfUwQzp4z$&<V&R(1#rw}%$4itJU?BIQ8GwVO1g-S8Ep|6
zbaajSv~}ZwFHQ11?CB#&uYN@a+Qbr1BiFwY78tlY468iZy)_)W;Of0s5nnrb=|>A*
zbo4u^y|hv!4MyQComY|h{?k!3ktqVY>%2x?JOqAKUpeZ_%TJ1NS0$ml<fqb~PC0b@
zGyCZ3J+jt#G(yO=9wKi)uAZVC+`^PAL8W_U@PdOZ_axqVcJPSt--`{3y@*AkKO1+j
zYK-x)eJEkK28f|cnFFk2FeK)k^LcsN+7usqPA-d;rV-69{FX!;@{isxPer1U?hbAM
z`z*y9G73aWQ6yi4Wlo9h*5^Fw)D8kIzYsf36`;q@5+XWnKJ`iqdeIMhE-F?}Qgc39
zTP@e&V{tjtRUo?m#eq*|OLu!fSklqz7RWK^aW(PoxpQbCO9WA==_;@YP({jEE(_{`
zmNM=Nb?3;(a}mgx2BJxqbQ*Pu_8g(2De~Bnf8wN0s5ea2!OFs#6oQ$V(uI6?5t|qo
zjI|M`i!SY6R1drXpUKkwrwND9pZ&n<1L+PVYN!)Bq1$iQi~>Chld6|IMb*m3BLgF~
zSjqGvAQ**$*uC#Ig8hs}E05<b>sRtbI7pT>^cTW=9$R8};s_m=m>Yr4n_W-{uTEWv
z?-^qFR3Cj8?Rj%w>i~5IE42d1OKQNmN>;%T)?2NZZB}4{rSIvu8rBRZFl0pBMjYvl
zw9vi$c(3@V8jMm&WH!RC&FZQK>5o;Kiu)>^$A@<K6QV8#pUcUjU_0u(vIe(Gp7IZ9
z0m$e~A(7Acw5!xz@EI<(6t`&Q50k~|E~~+oS(a<4EwfZK{fnN3e5K6$E~r1zkDWhX
z1x@3QWskr$4Yb|V>3gfRm^Q>ah+kqnL}MK?ebtKynk~~hOl0N*y#b+F&l}^9jxs8o
zurcGAQ#}s~efTO>4V74%?G3jV<IJjcaZiZ&mL`Yi2S6B)F>uT@0F8cLa^I*=?de89
zW17mS<>|@%5I2B9j5Mlg%NjJRa^0ZtEmT+y2Qkxb^HMnR@@;X@Tz2AAqzD<G`yTA4
zBU?AoWr>(Uj0usfIie{OH*q_Er4f>9bTshT0<SPt@z}HAex#a>x`=SlbEa2-3xaS6
zE7Om<N4$ZOlC)PvZq$&=x8jW~?r#)UXKavz-FT_Z$Kto{doMlDZ{ACF5d>~D4AYL1
z4l*Hp9lLVF|JKI>MarF`<7WCyf(il(1e??+i}~>#IOM~j_Pb5Qn1~oo$Ah9|7KJ)_
z^QpY>WPp*RmC3=rKAf{R^t_(Iw55f2UQOD(Z;{XSVP+MV0CH!g@ir4&C4ir_j)3Cl
zz>(IC<y_u=vdT>4+T^hRHQATS4ShEeJi%L%y$nEJdRk3TN3B+4(fZ{Vs=^!xQjx4X
zUM_zz3BDzQBy!d6WKS3@66PsM`gP3cdEIuXp<fN!_3y$7BOmz*C#{>kQmNz_-Ik&c
zRgEWe(_M%<)oY}3u7d`xt6|oJTY{a4r#=kJ;ZSa&flztxeEh_I-Pc*ZKWsjR*|c4)
zJtTBfCaSLW0#EO;WU}BA6nX*J0S<qdlb4a?>uR^d((_)Z7QJp5Ie2@Qufa(zP$hjC
zyq-at$@+lGdF=y1wjNL_owjHO=mL~0ysjI8AV8fOCGBs$wRCp`W|xbQ;k(Wwj*HI#
zk6`E<is2HrS=YHz4VAtvR8{>UW^Ngm<UTi#<`=`E_>`7ajFJrR(^lu!i3dFGgAHLc
z(sauMguiJ79cVt|K2c(^su-j(1rN65Xv1iq?{r}lp&Uvq7dKf~zvu97=o5w5laVo~
z+Zx|4m8p#C?~q*^++>dsol3IP_tTC+gPgR_Zf4_5Sb>XjKsXF_ziDBZcxJv{+8h_=
zq_SaWwOP;pBH609tJUOS8nXikqXJn3p^4W$>MjeLNLg?5&b{0NQU*PwxAneEe#h<1
zA~0R^dJIS3ZRou*_!+<<c_<V}$mLXkPX0OBz#_&7c7bvvqMM_Rw)tYvh!gJvptS$w
zef6liQRef0@koH~;sB*)pPj>~ewIvR?8HBALb*;odfwLSL>pt(B3y_5gBjuPf(uba
zM^7#YBGH}r%%9ku!>;QVadX5nsx4r63%fap)pdi!Ae@qBln}N<aQ#KckP#dbagXW*
zni&0i9om(-!XSxM!{bhj)6?W8y76U%sAp(N_pDJNkB)2mIB_fnl?|(N4k__w7Z2pN
zL@CcUJa!h=?gmXb3tg=K$3pBZJhF2@d9|PA_ujEHfH~c(W7n)QD8xkM98Kq0sy$`p
zj@QR8mldefsGiz*)`FPyzSC>cY>Hq+7j4&zhy<gucoRX)N1ERznwWpO+^9gO^OCaK
zr}+S0X<lC4M*<XGcUr(yP#(@Gs-FEhyoRyw9zaW&1nVnKOQm_<AqhS=UiUlL$4@eg
z@ik(RtL~DYQ-0ip-~W*?h@cE4Ds3D|#~^i_XVos&)<<#2N~g2X&3{~ZANEMZOnOK8
zlK81s1xC|FRJ>r%HK>$RN8=iWeErZE=fkPzcRIqbUr7XcoqvVvDfBq0GEIyY3GPc&
zMC|l3{eW2%F+G@Ow(qk0hRpNTaw6PWyeyZ90NuLX*(uqR=+M4jxlHr^tZ3XS9F))P
z+v0jjbM&e`c<vIp;0kvk{D>kJ$trUXJAnV+MIMsmGhFeRQy(X^0(q`bHL&ptd$S8G
zdt<R?YO?v&Nr#LhSoIA^6Yc9q4YLe?NSAla^Us3Kld$FUD7V_Khj26A%jPA1;~MoX
zq8kq&I(?l!_0=+3IuPrc*rSzw{AoDSK~Apac6g0c;Voc!vMY+j+@&XI`J2$?3+C&B
zfP~(Pwsu}J=cO!P4u`}=H*3HD8WN8oJ!+6YEZC>+{9(sZZ>Llgs*;TtcdkyXCL?(G
zfD9$WMj+j|fZM6{=Y=o^!*QOH$rp{v_yjlU>n+kq#<8fpqx=V<_2)lbR0c#4WS_q7
zS0<MCWtU9@Q;&D*l=EuBCC|Ju{eT<kfS&)+p58GppIVf7ye-6@8`Wcc&Sk`E$aCnq
z_mUb5wz5SCcb_nnDn)oUZsq)ehx!L{h1Fk86>w$!sZdoSHFck&-5-rc`ZzVhs*bPG
zyP!8|+DN^guWuwCUQZ{F%yx&9R<|8mgD#Cq@cXd3;r8hUp?imu`1WsMd4EE9A|5dY
z9*U((4;?j4Q}qddv#UXOVaWDQIJ4?A2NOKukn1y>DdLFeW>D-2!@hj(C|4`d5D7kb
ztkf6P68~iAyz#e%3kLry!za<NuPK82g(s|}cX;)+|KuZ6qrvX7hPzqbrWf;UDAvv@
zuTkJ(ae14%ma~>_hvW(NXuW8JhxYGoB5Tu&TUg<yf!Q$d&*ta%@wx;U^W6j|W()#p
zKZd>`DV@Q}7AV8}<mez*@$m-SHXTXs1mF~gp9>iOrOa&#gXOK<<%nd$N)AGrKkRTz
zujsK5L1cK|G)9;L{6v@WAdggvL~<2A=HK;E-(P6`M|tZ>t*@c3MJ3mY<g&G9O0|F}
zma`l`7n|0_{eFG{?vKp%9{~Xh&L!~P6iVnXX!Y0SM0o+GyQxSXjsKEEe}t)s-e|(V
z+)%)}pZoz9=*rn;JoVS_{AJ?M8+HEw_|7epjOd+3@;?PSF_J^{`D)|H!@T#yTI_$)
zlmGqsPzswxQ>!gUgv(zSM#uks`LBa@GJd_2u1>_i#pM6J5;1ykgv;#<BlEvL{oj*a
zCyN58<-ka&<SIn?e`)r=MO1hwcKvjyev3cZ`2Sp<AbN%I(2ro|-JfDi>HoSaAE-C{
zK3&}4vT79n!<-0z0p63BAN~XH{`dUgN!H))o@k9=jFS}qH);JbEpN`Kz<!Lf?7mpw
zNc<0T3Qr2)=6ps}e-3~r=DhCzL9S<)h9?e?#qzMIM3M(1%XUL_2fyheKv60F?YD|q
zbmGQ41X9&t24DMPgRTF=L2>z(oZ&oYMJ~kZfKV_>;7FhF-^bSXyA*H*!<W8$jVDcq
zic@(~|A&gMG9D|lC+2dJe11G_KgiGUl7D?ZeZ6X|PyQ(sTtL8KR{;2aih(li7Bk`q
zv^4}w&Sik;(Qq(Vp22Cm86aLQ^V{?C+xwE8?)89MYY&p<T1Z93yGo?dX=_<*b}nza
z9Br2LFr#`)tE>o+5Gp_}PyjrA5v$8DdlT7ak2i#7*9S@m;cUJ42pxEUX&10G6akhe
zQ<SB8YiE{P!y&BSmN5|XTz!iHy?RZ7*+f=j8<Y;*<zacd_6%Tyi*Vo1O(5)SmaBRs
zl8B}L38?I%`JPYbRN~mTr5ZZ9uvma0<OiePD&WtUDbwO|Ty=%MdJIenWCZMD%@5DF
zYcsz>F=o<v+&%6YqyHWmfH!RY`~3h&u~ePqx}O{spUH}k7w(GN^@3fnD$s1Tr4f(i
zAeRJPwZTR&j?39fsYI1Y3-(tY8$TF;^+tqs>;@>z06X69BJXd;rVO=<C-%%wtPGGM
z=!2RLrwg;8E43om?q^i$<$ik*u(q5yVXzRed3C&j<e3YD?8YrdkU*m(A7&TZ{fxz+
zy<8@!lYO+}yp~H6|9ad0+BmtBCEyQZXQrxLD8Dd0*Y3^7Gmd7q4iPw^V%qMok0`~H
zw<+mi2k`jC#_6t$6?N9o$}m0Ov@-dS@idEI{jliN4UEO-E-9seo(UQMfR`K4@P8ZZ
zn6C5reIbe*4`)aD$N3JjBPk2F`Xc)jb(G(GoHX7mrm(7TL2|&du(iL6s|7-z#{4yM
zA34D}z3tP{goQJBTf?b?ah?DIYq~^@uQ-X>TOROFvN10)a_s$P$%~XE=Bl--jl$bL
zKTsr0JLC>P8*LtsH`tOtPNoXQ3S5!te&(D;Juok8?2YY&hjKOpXFdmd$4^-V%*Oyp
z2skpw#+fT7u@=1n=Vofs;$@d|qx-ED1+nVedBG-t44Xk_TVB`DhM|t~UZ^q@aP0uw
z<fVm4?E4L2=;hihmsnY>SGk{40kh>#-4!37PD~`~&P9@JC{-TCGEH&sQJ&l7#AfK9
zIt8+%N>v8$LCtR~3PKtuKgbGH8>tjsj`8WlQOix@))c2fpCs1*;h#uK;E&H>3LbC+
z{A}N4dyceES3UhC`$#b}+{_BJ6~6baG};@p7>{bkpc<Wgbt6h_Ovk=bCRs(n)^hma
zX*znmU{KP2gP7REpwpI0TPT_I(GA(IfaRRpU(Fldi+QmE$>r(1PYEzteZok*X}?)C
zm;dERz~|NSu$yA7WvdG7xnx;i_#0yO>DWtYTmzF(1SFB6IMjG(IBf+NE({n+qv6D#
zfWyg5G~)t<^RBCe9RlV{x`$nbdZS(LVOwXT`5YIfFl`s0vu0Duq?f$hgNQvnX`UBa
z-4pD&un#mATU@6K9n9fd696L(yFV_4jNQ_kgu1eps-&)uI4#DiCtd%|-@pMHF@%~|
zFM)Y1(_si0`gFUuH+h}quSB(zrTUCF6Jbf`Kpq-1=sao~#@Y%l)<LT_7x#zj?ZZF9
zy#+|L&XkgJ02`RXVEp=y>)F)=lKtthKiNwIc9``%Jj}$%WHL@-&)|621dAa!LwC-|
z3^X%ywKxgv?wR1W(1=){x-J1%WsF5zA0X?<qO#sm=8=B1UTqoe5P!>K4|rpB$4MtQ
z6FYl9FvcVEqvf;c%7T8&imGltwf7qkstczBdlThQp?0ybpgC>)Y&uSxaAQ>S5F1h~
z7#!*XfCB8!Y;is9s(m|F1NetHhRAr8t=pgL^an1Cxr=#o5B=T_=ZMEl2f$-Y1KzMr
zyK)!rF?RBVuI68V8zjEpgVX{ThJz?m>nwlMOztuyqrphHMMUmLa&*#z@pQ$3c*1X>
z9?P_vufB5z5ClZSIZi8-X>u@w`4A6aYvUw>2e>|hGGv@s04bIPd3Vs}YzI4;#XK*Y
zDUs3R4(@tZW2<(rZSx!LG$7j_s0eep#smOUIA}U<yVmCEM#wX3BgzHIrPsw(B$w?|
z=ml8Xnqj~z=+(Q97VNjD9Rs%5*q!}Jj#irM@wi<oXn7{X+^!Fb0D78349)+zM6LR_
z0T{1}25z70^r(!a<QQz~5nJ13BI1H4IPe$18y##$d|!XuP1*9C`?Ul~tB@}}<9Sv3
zWUvj`YZU=?=c+n55d2pY+pjLLbWo+Rpc6I!ic2{v0ej|BmFGL|$0O!40qAX!)Bso_
z7g@_i%$4uX1*g8#BiVeuwdQjVRE+U|Wh5~YA@u&qE&`M_gF1pNcYviU<RwVN)Nf^&
zZ4va)55mY>gkx-MJF4pCBywcXZkeBkHMV-A?d4kIcG76<$Q#0@k=R}HQc^uStyVd@
z!k{~gkcA8G2faz~T%=eSt&I`kxZy>)>Ez8Q3pTa~Fst=C7;RY-Z2BQ$Au@36jDDB&
zT$&!X$ey7N%`#5uo&LcE6WKbmW3Y#D8)*ba$ENU!8^;UP`6vGM1nFD{+`oNN9YJh_
z)w8I4Pf^wjgK@NnAZ)7}0?!~3=#w>k#wC~2R-PIvPj^qAi+CEPL4#ly89H75y`RBE
zc1Db2tcRn=A1fJM4hr*AU!Wv^9&=8}sJd~V@iQ3n@6lDKlDglVy-IhTR~_D_>i~vt
zBU30Ck0Wq~?VfeKba*GO4*MRkg*>U0>qjyydevUrt#GzI-%m$)K8_EoKBpr}Dz%dn
zYu>M|Nojr0tY*`)sF)kg&QEvnwfcQdwNA&JttV?5sAWu16FCEhMPfg)MmvTVA|UI!
zrIQHF00~TBh%@K6e=qga#*imOrDEOHZO(rrrGD=is+9{<_kI6P0-IyoW8aMXX=}c7
zbVsv4s7kj}u+<-GHeqNK_O#`)%r;r2*~!vzLga0&@hc#+enCCT)OtGYtnyv+()hVl
zQ@`WiBMNlfad${yAbKs%!?JSK%8z9EF?Jb$QwgCk;9ey-*<atkRjB+5ZO><#H1G%{
z%34NIy^>2Ty_arOJ`=r&yNBz;W?`z~0`zqf<ik?Z5K?vn<N|4jm&{Zs_QwmvIjy->
zVej*vga?m{Z3Y09Lr*>%Nt4R2Zx9kKpLgR`Cjt8o_J%9GH&qb=(goPUb2p%N56Hg!
z_RFaN?m&q>b2w^M{5xp4N5J$uVi6ofxA+^!(-}QqxNnijTj(LjxZZ)!0}ad8QMvCf
z63iKi_vMHdf$x1?Aw<L}k+(<GJ|E22JeiEL9)fgKqr6T=#g0tmx}KQFzI8};A=$1C
zVquiYhnwTAkR@1T_Y~Y!45S92OI$rW4^qVeinBr}b+9A&D)Si-{)x;uGvkRh-OcTH
zxIWmfaP`t@obOd*NY;6lYu+>7VVI%yFIk_mz&IhiML-f>Fx7RLk|InKC?a#JY5PnN
zAKP-jo3eNS`2i7=T?TPif}!-3b{H_6x>u!PJn#tQo>{C`Zb|jxW`A<nO`;&cqQHFO
zd;*#oM`WyZ4!@!O{0#bq+IzMS47%?zY&O|eayFopS?ibW!psYyBzrG+xK!5qQaS90
zUvamC_pm4{%zPX}p^%73GKr%_S4Dp5!$ST74aBHuIBbt)e6$I2@nBpBc6?SQcJlj7
z2Xe*^8kM0Eaf|5@`E<4aw~c>?#^PJUkQm-n_+4fEhP@3)W+7Y+c7}r%DbLwh)iz{#
zjN}yH)y5yqTY&8VgyEiT=utt$hi^zQDI`;FT2q@M$W}=cbBIcq6Bas~B0AvSu8T=t
z=wVeB>VJ9dLL4i$-CDIt{m%1qy#(3w8_TleTv{H&(i?C;R+TbM&XL3MVN7;c2+~#;
z+m3s}2Tq%He(U(CIlxT8cDP?D`hX$BU09)vJ9<@Nh0lEP@e(1}<;H^ENV$iW7Y6kN
z&=Xo$03Z5L+V!P1yY{$y3g~FgH$7s`E5s`RSR9MzR<GY##YOqjU3b-3eiO|>?ta<a
z@T!mW;Qrv1Kmh2Tf%%hHyu;<ZdVl@$cxuk{xZ<oZohjgdb;R%xoC|{%2d4^CWw%2!
zcjHyD$4|i9rC}V=O`LcZMlGs?&F~^Zr(QE&6KNd6vrf_POz?c|-bbp6&RC6H8EP}5
zR65e^)5!(5{g&2iN+XJt(C@7T^wBs#jK^d>1+1R015K23i7i$^cQERqMPg;$oJqGC
z<mfxd({*?rS^v{ZVs8tF)oPzxPmg>(^et?XLBQgZRnPi#J=gQaDdcR(yzi&h)2m?n
znbxmc%u_CiRh=twD4r912|j~EE~J7DJYrQ6#=j&2fNS_nl1cQnn0zWeK8a$P-;8Xc
zO+3-<3;Ux*J;uA?psnDKM#b;=#fDHdhl|L8#%m@dXoxUonr#)1-IzupuSU8LPrLnj
zNY4)?Mga;=gzM?y@J*`{J`_B6+argv(Chjyl-;qfD3P49Fx9DdPk^asg7O03>n6Vr
zS&`S;tAgul)eR>KejiD_k9lvz<rgCW9kXZu(c{j>c=lRprTy#Z>I#~=4OF~(lzaE^
zWf(&Q!e9gl8Kla{)?4kn&k;{XBDQABtJ~2*A^?Br7mBgwY!qZI7@z4w0Re|rYoof0
zY~8{nUEUsC@b(aV`@JIdPTE4lgg35G0=*W&)bZdd%?OJJNxwS=qCc?ThQps_OR{wp
zgPr23{k2(IROpvX3hPJ;#m1b=T!pB!&n47lDkIp`Z(5qIgJbmejC%?d=?dzXC2ODA
z&n9Mjp0%9LL2%}2xJwWN<GJhQ?t~@(wD<Eh8zqrH&Fz|ZyO%StL1^p4b7JWfTBMp2
zl!Xwr;aOYfF9LsF9878eD%um80Ak^+Q6`us1(D-=bHu4aokjlp;VTB6lb2EQv6tt^
zRO9PB^p}vZPd>yjMF#xnJAfYqG+dN0;SY<0=5x;j^X;s0-7jlV^X2YbUp-cI5#{nv
zRxN-kDmRcrI0dRcDeu<<@o|!rJ0YdrmMBj^V+c=(v8@x#k8gCdXuuAHLgS1IO3Xta
zbjFzP=1@s1Q`ob_OW&WTWLBhCZ9E4kSRAdM8i+n_vlSZ*zW?P~uHAYiNp&$(ASaYU
zGPDjJftKGLglsQa^%$fX>=mZ(7N*7mpLia_i5C3mdESG4%?pZ#rJRg5LL?WzC1PrR
zJ*plv4R#kh1U7J7l^C*Do7lvvxt8O$YVjFSkPf4h(2FDvHTxKcfwr+3ACIYqN$U*j
z2=j)|(oeAsKCiHb_I<C08a8@>4zXJ@Z)QV1@MnyS^VMQVr{$j1&%?deXGHLm@>>qm
zq&mC<c2NXbAowe)+C`CzN<T|)YC&O#s3zK|6w1#~44coPs21r`;`pgU#47-`NNqS%
z9}UKQiDF)Y83CK#V(~NQ;%zZdeIXz}0_YsrW)#~AMi^hn-yfEXxOwa&fSwdyzeUdR
zde$AOnMGh&5x(hp3vA^X0bqGqpzAwFCe%O375*!zsv5?%N^%hgz1I5#9hh13{Gch;
z_tyw)?BRa%A{~+(fF$3DPC`kF_D=T(adb^rJ~D~b-Tb3_yxIlqFRwuhQ=q7%9Z#rB
zR2_!k+Hcn{*&Eu>k2@zCN%*i^0{D3~lF*Q;`nI8Zw#j_XDw<+1#Oo0{M7@OJ#!ZW1
zr{wvwk65MgzJoyspDGzxwU;VZrVijEkp+wp&LPWa3%<T62J;nqLj4|fTP$$IP}APC
z;vn}`V{?^&PgiU1uT=>=7lH)(&u$GqHzX%#R`dQ$iJjMofRV#0pgpJiqMJ5CUytOv
zivePIgS3BQ>^t82r_!%IVGewq1asJ$vcnG8o(ZSmP>;C@+6N!#2Ff$iTKwm~pn>mh
zMb9a&r|M$02nK$0lNE&F`Sr1DG`I@bqca1EgSOo2wo>l-Wxa9Z(FzqNi{Qa&H>uI_
zEnv(@(2C>evv6k*OP?v8OKdUa5YTz{FemXkUFAU;gD`@ZRzEP*{(~Cwt-%1=;^lP5
zK=ORC?m+DLk7^sw3n*tn5yWeWEP+13d-1r6NpuNMjE#YeeUX<yReWE<BhrDYpBU*T
zwACA~2_b3J*LrV*+!<0jWx!LdLu5^m>b?OPtgLDs;iU&d{Ctam5E}?zX-R+Tu%rfR
z>a>+-nVO^J9<~#?`rL$~{J`#Xq^eYHq)TiAHvw=z9G+V521q0K6bisbSAE<gC|u^~
zA8m!6brIxD#vHmPur|+*em&OKGuZU+Ad`Paa&Ga)o|w?6gW~eNY?M+6B!+zVHLM13
z)Fpec3#_frfic&+#8+0?DG~KRt9B2l7YHD=(||@&@};^6#Y;-x>9R%`Qhn{^HJ=?T
z`&#hG_u9Cc)BHwAQ+LhA<wNlMXVZMcIqA)_S7<I~U49V2Ik75J`?kTZay-7ug%o*a
z3-Ji84J&VNbO)Ev-oA&SBOSH}-PAAJfOg;h8S5p#V?BezKJVrWlCN)V0V6RM!>^wm
zU5X3o@4Jy2*>s(ds>AOl!qv3l*F102QV+-peuSc#@3|nfpLHQRa;M6WuHu(99nfF|
zI`B;dFK{REST0lrN+fn8;R@pK)_E}-%5xAn(P=eFu0d|<9-vUktTLKTzT5h-l(Op_
z&QkRz%N7S3)(WVwQ+^eNTQw+<kX{=JI#?+t=O3)dN-*3@>)3Z7Qy^hqCLrMw-=n;Z
z+D)Sq)pmcZ2TWxqeWpJT&ccHCKejmQgF*VU{wV3j)<d9$R#QhuguEJZN@jJvFgSja
zCdeXf1=9Zku*s{_v?&nS5h#_Cn+<6b9h3{!?0o7(Q2%`BLdS6Qkp6{=si4AeNcnh%
zV98q`amWW}Rzp827z!zU9%Vc#!Z#9dZy%l#4Q2qeV)P0@r|EEFrCS{?<*N-E_L;~J
zz`?1{xY2sM>e%L=5?;-MS?8&pIQYhe?3L;%ISTv}dz}8C9IP0(?+3c!b4WbC$&Gi2
zWaek<RM$638x`F(8b%_d5P-HAq6%j}?Fy*w2meodZy8qA+O`W*5`vVJNJ@8!bR&o$
zjdTl$NK1D~DIo}x4yB~KVFD7uBm|@z0m(^En(yX$-?jAlwtx2jy?)JgjDz9GdtBF9
z*9&*P<G#q|Ud4~BIpe#%FkzT&Gjb4mMGcut2p?By<-;%$92&{6NT!v!W@?@#paw=B
z5Qo_`_d{$1n?E3xlSMmxV+e3*%4Z{NTerO%ghlPW8_;ldw&_AB+H-zOR2x$hCtH#z
z<Tn2+w6R7y$^;ZbU|q}>$`VDZ%TN$ur?@~tcl~VZVdQ%%jm)Xw{ZAG^r>U{E;Jl3g
z?z8tApp<|i1<VfWkS(OI7zW?!0h}Z0sNo(le*8i>RQOyL&7Hqn&oLOFcS5Kb)b+`2
zR7b~1$!TG_2ajy0UM{|a=L;Gbl$+(G^|P-_{=D&;ik(g0Tc|5Fk-BEU=m|xBq)UZ*
zaF+XwYy9~`GR$C;>z{Ed)tz5~WHs%YCC{e&mFs1=cz4TzyLioyw^d18#wN2DJF{N&
z5&xw(L?aaB2yn5A_)<Ptjs`(R06&=lIwibr8F##8*}hebmKpEC!lf=uk@g+I))7p2
z=_hqkI0<d=%U0c!8r#xGxgADv?v3K9k)ba!{cTE{yXeg~Ik9d$v;=PmndAk1D-qf%
zg_HH8%VH5opdQFbnmk%n*d~uE;D*HN#W0{Rc*2_z=oX=Tl{dnt<-MW>Y)KS$D*7;m
zR)b|s_&SiIzLc*YuuyS_`L{<l2$-0x<s`}pQBBVeQ>|^k3FE)_M9QOz3suThJhh`f
zshMN;vjTNvg=`;Ko#;=nY}{o^fpGN&mN1nN;lvU)){-U%v&K7u<IK?JROv4vgJG)3
z;@I3BxX!LRRi7c{jm6Rn0S1A!cO2SyiS3~X^l5nY%kMMQ(WkA~RHF|JEi-NN{2E<v
zp(7R^4%=gOY}d}0xT*aD$Utp9q*T9Fxx78L7szDtibEZmEh4=NqArX(UVC|RS;SoJ
z{{cPbp#;PmFXXk)$~xk4Gu2utmZy=zavZ<HXulGq)`<b^WFUFF?-{m37uw*AFY;<d
z1$Eiy(5bkY`_cSOzS1WZeVlP$Qj=;_VD<CgtTKEovw1$TE_PG<JxoudEtzv)c5#_?
z8DB5{!R_y_tBQFH{Jt|6zuwAJxWgbFUyaaNOjxNEp+;K^M4U|km$Vc@Qu>8~Lzann
zUAm#eI|D4|11^5f(evI1?;pVv&lr_cUnXEJP`Y28#(MgrnqAdQ+qoP+@MHX$iN0|o
zh3SXlq^<*Di8jCWu<T%a?W-TX3e?3`Hnep>E5X&DynNrj$#j6{N#KRR?5LUq6AqPW
z*~)i$j4#0XJw1b}v{(MH1NS>Gz64f2b^>WxRsQqhWY!fO*BOV7I|G*zwh4+8+u!P&
zpOYJ{mp`Wz!J7y)-k0;Lnx}1Au6TUUa(I!0db6?P7OaA<CkhiRWVbyB$4l<~lxhK7
z<dpkaXzdYj3kz)pUHdFG2cts2Xceyen&cXw6tOQbP$8c;DB>4lj)t}@C(%hZ83T>8
zT#*+B#%FK#ZeEMtSA|q3IQ~bHA6d01Yyt~iKH@J<EcN4(X<`SzR<5@!X~Phq9{kgx
zIxI({m{Nhw`nvl^tv&T+5V<3Fz#ReSDC!?Na0*V7J_g9h0~0YpbfgOuSuUj+3!j4d
zW20ZupF0fhwX+z+h(f*xm9;C)biKdt5}TLqsfW!0v0lDA5h+|oU0tgjMjE!@9t_|~
z$g9=C4EupkLIHyQ-ENp8s-^&x+o)fAyYAHqqq20rwDc(NIw`K5bJYr}J`X|{D*+S`
z3x{|4TYXp`16}&PukYqxKdO6A#?!7#vggl9jsHq3CtoN#Dwa+@*+wXU={!})`1=x`
z8P+!Rkes^J|K1s3C>}Ahkf4{9#LV7WD5j<sc|F(km<zdl`KR~UA$2PM#`uO;w+Ont
z(~0QeP)7;>%m;~Nx&-Xk^DX^J)tvc=>6Xi5k<_-BWjS_pOFh{#<4cGA=QXc|m{?Mj
zjjEU}Sb~0rlDfe1JAU3bn)W*Um4#vOB6p(nPLW!7CWU3oqUd(Im*=lGZc+Jr5dV?t
z5Nr)JF3Vk>vY|{V88I)v?dox1LqXHCw^t@U=ZEVfj^wreSIcwUg0!eat}8&}@@(ju
z`~u#Qi7I`g{=o=xn=8J*?dkrfZ$3siV1XrLv@g|3h@0;r2pNd7-b3pykAq>}nrBpc
z2T(O1`Kmik{blHDny-LCgi%knJbX8GB71g_C7Gk=qDJjNGmpy(cJf`e);g{thum_O
zhNSF01d@~dj!A`k6T^N7+$RCPtq<L<Pu;dA9K)55m~m@j)ReZHL!zid$->!9T*(H0
z(4QRLikgsn@2Ozl&v^PX?A-rWTbXGGL$AwMzM#5eFKUzHD^SNn+@R5P$CcD#XT<aS
zFV91%eN_?j^K73LB+kYv*L<cFGK?>Ov9t35U1#^C^VwC5GWI76|LO}+8y@&v8T+2*
z1TITpAy+!ot50FwKQ0A0<qN3)Qxjd8h343MTX*h{iNN8bWzWpHWhle~xsIz4=(|1u
zwl^Ha&!#{{a$beu))Q0LT^>(69r&8;f@*hVXg<-Hin6NY{(QJ@rLXYh^9W}7dpKi@
zh85$1p`J`zUS$YPM4#WuF2Q!Cl;D#|RE%Sr%}54C^<(G6hd9Sj^`4!`c_)l-gLHpZ
zXfMzzfc;9`iJwR}ElHeI$+hnzn@y^`?OfC3q`Bua9V_dkqug@F8qcFwQ?IG{ns-;<
zi*+qi8u=U%+a_aU2Z-$aB8P8i6ysU8xt9Qg`_NpOsogfy^9$B?S3QRZp-BT;h0ig<
zwOV;yDT*kE9-*MMZhw9zFSm=KKk*~qvD~${#<WAO+vaNc;rLw+)c6hrvi?gc$m8BS
zwITdhkiBl4+IbpzwAzwd!mpm5!JyzguQC4o#8m7Y8zbO&L5==M{sRWzoX!<;o+r>H
z9Bc;}i#bez6*c5xqbi8-?34Ps?9+kZCYXQx`ugqmG)<3uG*xkmyhOPYN)VF!^H{Wa
zWKtZR+?BMj&vvW7t=<6|X-Mo3wk1vNMixAzF-^MgqXzJ4m;oD+9OJ69ULcRu4qr`a
zd|BxLqr#&WUm9)vMn4~$!L8y%IzjRK0>AJ8R$M@X>t20)BI>VKtzM&0IX=eNVo?*5
zgay^r11)o^eowAF>U1>EpGZv%wBU)q4NRpoFS%`}Ksk-5+dj4=cF?32y7L(o83K)D
z4!tK@)B9i59!-EoERxm#{*CoWZtD?=gAUjIZQ*4cSH&%5LQLp4vazZTwfplaC&<@_
zBZE~;Uef{k7q6_I{l)_&QNH6ZkRQCvFUR?P7XKcZtOB&LD>ZjZE${`;AN|xno`Nt8
zAY*V>eL?x>{{HtjJ_Fds+*VHZm)(910$L4G<_g@u?ehcJ7QdkL?hjhyA92Hy6rlI1
zh;%XjvQJqBu<fY>yWC&Y2YWP<rc`(lML~brXEr_9#vn-Y7jJZcJANj2G{)nx|1%0g
z5=D&=Y$K$I{1bfn-|HqRim3|e4tlWpXKnt!zXO<o7h4`Hs`Iy0?Vq!ILPG^~FUwM~
zF8^Nt-#;Yd!M0Cm-DZEg)OaXFt9zL}!hhT6Q?N}f(ER`Y_61O=C4fH*3zr1&gI2j&
z=O}O+j>=O%<8`?Kfq?U?yIwrY$nWybjb$Y+0T!p8^Hk_EzZmd#c`28_KH>f7{a9#V
z*aP$%z!{i+!yo~ICox&ft0tM(B7#jtu32*a#_`mM02YHU5?3d5pIrH^FIhG7GhdCD
zG~2;J*`W@6A4+=Dt};od%@y#VwLeck_Aa;usl?7*v63l|inTz5%xLTN)h6NUvt$ET
zbqL!LK#U76&k^0_KYG3Zp~1(E;hajg1He_T60YVbCO%gY-K*;bPPT7uUH9^=$W7;p
zCW&ts5dgN>bcdELBc4TLjQe!6RAS^Y#OfHq%GN5;<o5fK4GRHJD*NFF%^Lf8@hBu%
zRsyGCw)pAK5&G(6{*-TVOwo$*)Iv_OU~Sa}oa4Z)&&I7Sa`730j?%VMRk|Fy6{8=S
z=!^}#_c|NAeu<z{@+#Jyu5x~H-y?j5*fHDyaLEAsY*bxF(q(hRiCj|bA5Smzu|F^h
z)0rD-7CwLG#tx``qE#$kS?-*~vN!AM{J;xT|L}%9_)<9_tY~a5cRe5ie<~2?HB#^}
zorptEGZAns`s9ka_Q#4`&6;U9_C=sm$xG#yAf78c^bwg5{{4!*FhY5AmEe&<>6MOz
z0t7A(t9=jp1y*OoS&YTYb|@SpNx25zWK-A_3<@se_$UG<xV?oxJ&!H`c4d@9C;aHy
z?>90j9V}QrRJ4{qL4wjvSW_X8oEMr5q$a4=J6TxC9Vvl6flJClMP&P-OWQ3{!Hn!E
zp&hE`sG|(OD+R@)g4K{+R<-Qlkz=)LphnJ1n=MF)#R09j7T{d7z=M~f2Ler0uNg8B
zkYDGlMoo2=HIB>F8-P_menefnnJT2wLYS56w*vEMum*C3f?I-bgZPA+v>hsHzzRAV
zQ8&yJrw5WrZqiPSojpD;r-?W$`0D}XMxcjh9jK2`<AA|KBE`A&F6PN?V%A@XMF9M&
z93)>m%-^aa?Q7f^H@2skTLZ7cmzjEJk*({|K0@{7<zm!<i5or}Xmqm1N{uth0w7f_
z+H=19e=5&t4hWy9(Iz3NvUfbPq(eZUm1t?-O|k`tPMPYg55n;F<~xQS@)@9DVtn%X
zYW~_VucUEDIL&2up>3n<zP+Zy9GY4rw+U487Ech;-r+(J9y26Iu|e743b;75-cwyh
zEE~MekzMzEi*xUFi6ct6nB$U{Fs@Dd`Ozl)sr>nkrKK|K17_RtVkmV%Y3r3<c3{-5
zr0-^N?W@q&t`AZxfp_y+GtfG@Rtc$W`XmJsq)KkhJ9ckxfOIG~o({=xfcW?BKLZ63
z!!6nnua@Pgl9uA8vkkV5RObOT5K^N7vM$CwKs~0G<~HY1a>3QK8(80UU_Vh7aA5s%
z$sur!3l2S8=Nkp@{;OeAPG6ARB4m>tnIf2)c@23V>MUYUCVHZvm8*1*<I3~MQ&I#H
z6eo)2o(~^o>0|*Cn|{siD1lest;Z{^2C4X+em+U86c#ar9RY3#2#Oi4FHQuG8iN8*
zXW$@|g=`dY!^bu>2a#Bxa%Q$wwG`fEY$^tSb?O%4e9Gx>mB=ZOat>7hkHn9Dfq9BU
z@eVZK8}s5vZT0lH!b}&(PU1w7CK2oCbHY282Wx}cbaL<FnVsJq&o-{5H;x<{C82vr
z|9%1J9eVMfoaT7-&Zz$sFuNWK%{;y>If_Q`e!DE)eF+P6I>y>7uBSH$VWnS)!TRwn
z*&6Lk1>xR16oQhV`;rGWqp|SR@iE8g7M*M%<&7@w1}_uoO*I#Lm}*HW<fH?#xca~L
zDFD$C1+qu0;>A;POY-t+-5X;zpnS7{@S0QM3^I1^M6A4m(vH9FiHeSTb&zqL-|U50
zmqHaWtn2x%9OtYMN4K=?{LPAbPgLED5eT;2py-t=bN*Mg)+1e}9_<8)cMZR(W1OMJ
zM(Mh?`XhgqdryAKur3waP35KZ{yrkNG|}Ay&uwRBJ=u^H-F<aX{9I`W36Gr3;KW-@
z$6-)R>~JCU4GqV9$jdn`xJg1)<R^hUW4Ay;6HbJ@(P1SZY&L*<LbD?@S~A`~A9yU&
z84!%w#Z%Qbn^KX$p3wLqB!j{*oQaG6SyWhp)lQ<sheOpBdMaD3eAT&fl!hn7Eb6j;
zp^N$^AXTm;;GXp+ct?ijLxE#mnNrkU6$qjXh?()ps;0_Jn=8GSwU2;W_UX}T*!A68
zw|{DbOfffhkpyNO3SbjgN&~qDQ911-+f7cL5g$w32Ecmz#}es?qN@j)9;8~G#@rmY
zADWhzq7eXs0l3C{>I3f3?WyWQauL@eLs+Vefw`P>Ti~s;ZqB0cm2S4CFOg*JIEO%Q
z%mTqrWYN%zWP=4ScMAp208Rl88G?W3+YUm%GknxXAdzeAE3^>qxi(;!yA7;Y<Z4m(
zn(Lj{HXhO3=IO)E3UmNbNFu9sB0soVFU)$gjlunV^Z;FA40KUyUd=%E(MQzewtUr>
z$W?0fRstjfXgo?j=MA9~3}EiQgrx|mm_9n2aXzqC3u&P-c|@6jY81Urph+3O@{K8D
zH1PQP3Vy8#+V?kS`D$E3O*NYbK!9S+=Lmaa{O0>(PZK08_XLex@4N#jp9o6u(1?nJ
zg{+VgJWna<3x;7C+ynGVhX;1k$FDA<E>4!C8&WSZP(b%Hu(H~p0uM{GV7!;DE-N%w
zFEH<|A;HHU3%vCq?T=nEUuRq!P}9SB&N+i_&G}5`ASY$b1IguT3&?oWDjZ|D4M#<%
zFqy-}jx}obR3I4VnQ^0?a;pY_rE=@w5S$eq*J0k>67%}XYpBY&SC@Bpw*xN;agS;Z
zXz7@$ZKqu?4fDa5**D`Rst==Z&U4dNV@y0?UHB&Q<M2A@2BKYi>tx~u+~Ullt>8JH
z;UxKSda`G4jU6#MSNM{(yKw@LhHLdJF2vo=U#~@Rgs<R!*L<jUClZ=<4g_hno=1^s
zaA}J*Q4{3g9$+~CECI5$oX}5mH@x>T5~%POLvbmGuSJ}H_OK{?0pjU15G;~2;Qw9l
z?%>_u1qV$45(w+reCE&WbNIbm2?yqVW2@MhZ_T*k0WykbKR{SRkkXVI(rOhrW<I_-
zb*!%++_gd>(4so`_O~w~qNms(?+^cy?q1*;z^>H>C9VUnvbKno@sH*Nt57RVu((=9
z^{@%*(*cBkgXL;9x&kQT*IaW-!)8e%gKo-B-@DoNkjPQzK{2c0)j{KhBEyoOke_%%
zj{Pad1+ox%FXP;OOck1_ZI>a)o*xkEP?&0J%nus6%@$C3e0B@24jFiRPt4nO`{})1
zol48<N*GP2jZiwzS705oN{#@zj}(VW|Dil7NQOMha%Xm^=L$lwNd^1JsYcf)xMo!#
zbOi8kzzR-u*kb5m!DmR~Ck}u<^IHK&gQd;K$$Z=~&%*14(ICyFP0cOd1F4g_RB)`h
z>U1&q$OCL^{CsM^i*P>f!w)2@5TQ_Ai8(HN%p*g|mY4HdCr>3MXYp6b%J$AV-@xZ)
zVUo+u9($c?4HQ@YVsjZ_UDIq8A^Qs9UZkXZ`m8IC3IFgo;Wf8usMfRb61QIzAPF%n
zlDk`k_?y?twlV#9nuyz@Y;X9SzY2DdMYrVgJ*%JUAW=qR+`#$$!D|WJFPz+xF4A1p
zx~;xxHJI%*OE)YGd>mjSE3d0-ALLWiRLVfb+T=053Zv70r%FhwvL4a9p2ueG!TkMD
z^t7YR91rP|p^c@3+H-*h1yXQvx<-T?q|4FD4aC+oYEj<!F@$rVe4y)Pz?FxD$yCwx
zz?xga7Vs<uOv&FP-Bl06vWLDS8!M+Xv8|>wnTkM)`vKP1Nrf{Cmuyj(wsx_e?eJY6
z<CmDLWi`x+U7>i?c4+2c5n~YUpjg~hYKI0y_ZA45LCwK8=Zw4$hr4i{bk2Lk55LDq
zdBJKU`e;N)Bs!X-_q$wwa=`Wi&Fe)CT1_$_!syW1H<@kW(Cn;`99|*YXvE)aWIYNM
zF@qujyAt@Pcz2hPHnGuQ-sTJ6xcpOmN<Uy+kt~?tAt%t!!Q+1RVanqS^dP`j?a>#I
zvncG#*rEms#rk&taloX%5l~EQ8N#u2Kfkk?1h9X7{TEP`TXPCcBADQ#ziTNlUM5J+
zXZfyX;sjJL{ECiFSaE0XVEr>_D!&^knsBrWVkttA7`5c779aT`*yqDLxlM!s`ee;3
zp@S7)O6NRfd0;z`TJNh{h19-97znF6vpfv1y0u?nq3Gj;md))Pg2bcV%Y%3fg?)OR
za;wtow5|AVu>^$WCWY0oay`6->mgq0u`lu^(cmg~UqS#@YtuSGsO}RiP;F@e(+AEO
zR9_G!z56k#R{Yj#m{(OI1q5yFD;0B~Adr5R-%h|M!<Y0~48*xGsSn0M_c-`uOOP@5
z@VpU8YK>Idht$kN`*LcpYtay&&qr5osXxdDVyXyLztakUFuB&3lvZ49_<g}KNh3T`
zEo&g`#RYv_9CHI}iCZ-QSwQExJE}LniS9c}6ScqqQZ#Qk_x+taWP)d4h1-ni60tbf
z@K?b@|NTJH1Q3CilSvoIRx(&LMXez99~T5<!XLthPD4I0pjxKkOPyrhXT7*YFs7kZ
zI+eQZs#@S1=REC|Y};RH4S~HHbd7|RJ^lu;S($_*#V3b8S^YVRGI$Rs+P|e|9dFw3
zF4Mf@!RAC(MqG%S75IB=73PY{u!PcmeP=uY!f2PjUmC^*A16PwUSb#e1^?Q*tYd=1
z+sCBDxQ4cb9mIpFQ$xTC)%VFq`hIKkcChLIuFQWfk<3wd6i`cVtg0)`KMQs-!?xMe
zHeuM*xYx7awLEo|uJz@oz0|Tc=cMDlH}|hK1n1&4f#u*{o8)_e;HiWms;bxksz!Fp
zCEG$=g`oUIcfpYVLTjGTN}Bq92${zlCsImUff@IBct!K~U_un)@OxABhDVl}C6+X7
zM5=X{Mti&YD1FM$QDZj{ZNpe-pWDiH^iaL;np~a&QR+KYIm(y!&F)5>0*k`0FUP}*
zT>Rr%MFKIjLh~V2&4szk1nI$KBSSgM9)8D_QDrs?eT=BGi|A+_E^<ZcO&(x{HOr15
zZiJ@xDbyX~QsLm3<XY^iZLIv!UMgFl2q~|mDE2jjc2D$$s~1PHm_AX3|40AJ^zs@K
zzQt3@Zuu<VDiRiToy2ySu%#^B9mr)zdOzlF+1469wl#>{?v%pN)qm%*OemeipxAKJ
zj!AntB!^ai@s+aNid_|`q_WGTjm?FVDM9sKhh;l>6`ap%=q+=9V(}_oro;yMG2Hq^
zhCVL$LpVymPSS`LD()sTD~d*C)x4A;uZyU!JK>P@rl(DC<Nt8xcWP1o4SmfrOBy=j
zPNOw;=5_Fvue!$STO!caaF7pMA@MTq&mOp<P1Ch6CS$&__k1;Ol|iXvx7g40oHT5{
zS;Rf}62_;&F4ttSa)n26(w*|v=JylbGYkwjzWaL_Zbkty63LyWBo!d`D?-<c-ahKG
zquFj&xaD!#fPO0N_C$Gy0N#U6uZA?_^lSzotbeQ=6gAO{iCh`7JNMq-_C2?Gq-xd6
z?=gWulFT_iH(f546zo2iIJz!2mHW+=+>)h}hyvm8b#IhoaiLA-Y}9_6jgSWCg<*4i
zI6_Uyzq~jJGuFL!vDhAn?WZbT5j$?LnEXFPZST{EP4XzE*jj$zl;8b`c)axUr61{V
z!!tv6_?Id!`PQUYkcnj<$+GcN#d|_y`LRneJfp(CUJLTQ-w04m2wzKJ-dmiF^Ic@V
zRs>D}0}<gR=hG+;?0DhzPbho7a44{*ZgXUp^5mmN?_%y#ekZ;7)47$&3{z=A+bw&?
z-!O+%+FyfJ#_^=t<FaHiK)?N&!0gXPUy5mg@L$L0S!^p7{rP~Blwy3)H?956?ed5c
z=4k@gQ$G#BDWA$yv1c)h0?*u=W9(KLc*=XRI)<+YEuWR)1bnL#Zd3QE+%ppi#^-dW
zL3GrwEquF*@mfQwAZ*|4fq}c5LKLrPGby*8!AYq+ewubqAL*Y36|W5w?zX(Uk9Z5}
z?|1ubKrHSD+4!nNRhhc9unAgsf%Poqvd5WjNT{fH#5@nVA1{<kaL|sq5!-&-NB1_q
z*fBi*(0w@v6uMHgg}~2JN$q7$87=ii6@he<!{w&xQM5uTaaSkG-|IsR!JODScGMCQ
zUgc_q#iz6=TSVCrjktTwoNAN1qYJQ;G=2A!aF-3t$hd_+Rj9}B9)mwUqJX)ED!IS=
z2d$|aj`VD@IPZOR{e%V}gw_Y5r&_DZY=#!p>3-f|Q?g}R>{~2K<%^=YxGgk{Abjdx
z^AUaxa!~ziP-B0D%$n8UO%r&a1`Ajk?cEb}@SlskC-J%y=C$+{L44dH_v`yI6{zeu
zX3>?R?(>6DTUA|n>p<zh{Kfb1m-d^CA%Vj^Q1YvSLL{hNSbfXGcCgMDNV;-gi|+Jk
zlB}XFfoV(}CEN$&z`)WS=>c6N*;)IcZS4H9tEJav1C9OeLIH*4<Su=b?I#eQxy(jp
zK>T$PW%{WURBA?Q<|aI>RYOM@sV~@ddrF9}0huStw*IG(+|)ygBU30E@*wtHiB<oZ
zZfhRC1aM}JTQ3{{`_kq?g9~aOr2|2)O~ZiuK3?$l!C>?#yd9*-2~HOoE<t()c+4nQ
z_p*+SYd81OyZ1}7IR){9CdE<EKa>%ZQdEB<#NApJci)XWYjj=DIjUypRgvf)?UNyY
z`0`iN2+RDMeamSVrjKFP8s4$B1Y+i5z|H#YGKNXURms$IE^6PCtU_5icf=NM+qrkK
zUNwaxWNQP2K8-4sC5l`{YnB?#o}!5k2Nk@wuuL3G*nS8QQl`*7?b|^@6Fk|vm29bS
zO_RP(iK{2~kSh8XDfA0gdSW%;lz5vTg<W248luLy0?>)Lgnj=H4X5ODI`G-p4>#|B
z18nn$;!9@xHmx`(wBeUopRgwGk_S>exD%N7ICAyOd_1Ij<?<YF_b94qX0HacLi}lz
zmQ^Q`5XAb3b~i{W(AIOWdG$j*k`MNJx^jAWpw7`A-L@^{-T`1od#xK=If3a!HzZmB
zdI3a$63&miJ&j9xy*Y0jL${bM`!6jA=G~X?aP)3v0}8OXqb8)?cZ}@yuhDhJ%UIEc
zcS*|d*JYo(m&1?~=9<r6nqm{6#Vy>otCRBEI{TgoyZ{qw1ZjRC;W%oyRjF0cJ;SbX
z`_bhd$<@WdH%rAT(AKB?1Q|XM0Ilh0nV=J+)ZJwKbPt4{11puErt%UfW4?z1!^tab
z+|-T$9U$>MJlLA4$Id?FeZQ7|e|6VSwso-VL0k8I5_X-;n>NnAs{ZY`C+uA)YpcUz
zb|zc~+&<VHL8h{V6HvY6&5P*R8vp?3%zRA<q{6l%g&6zmbbI*+(A%G^WuV@MXBk8H
z$(j<gro7hD+_F90E~d=>;CfP7(O&lY?kkv$+5YT_z0C)iL&8wINu7P~Dm&<S*X{5Z
zkMoWj%J=t^tS~cAR7+~wA?f~95Xg7n2{+-<mG`jczp>3!ZhwC<f6wPaRqhM`&P~rY
zZ6F6xWIV$b32gUh+ZQB@?B{)3DkHzoB~oKlvE=p&Qj2>B*Wm81-on^w6Lr~m_`>;C
zJbWZCIz9Fvp=0V5j`Tu0e$#qbWybp6a@*i-k1g@3(^y7i#+I8Xs<C18nzlH1itjt%
z-_E6SUyu@mE<LL(y&TvRZFJpU)j?tBZP(w=+JX9rZ%+v{yq@G0#-6i}$0LPe3{Jy+
zg3a5df~fG$(kCd?&pE&Dmn<du0ee=-ar2<#-clz>7f$rXsOKgNOu9*sz@U{(M%yC3
zLEci_9xr_-NoB&l|41nt#xv%|^#RfQkYo`neG%Z9U&d2pg7bo*Uc7cQg68|_A4mkx
z0R~Bg-kmBiMo%f>t7JQMSewjETUFOJ7B`Z2z0j1x(kSjf4V;cYfL2AMo9Mt#gXhn}
zJ@W2<O!)D}hPpWDu!vARybEYov?|X*ml7=uX6keb^xuZlYMl|7m30syE<idgSD#aJ
zz%I}MtsSH*ec|6-l*>WCbphevRR5fx&J)Zasn^uhfn~_jU4Pg2iMgcoaZ$}CLL~aA
z<zgdV5O$oU!krTmE;csc*$Mf1M78)8;POqLj6aO<w)zu$Y+%B`f;PM^PbI%~RZMC8
zc<TDeS%}qJ1aTk*s?uBok4^N^7N%kXyGw!%&QURmM-1ua@qaROF#2fAzM@7oE?h%5
zKS67=AIf&^mzX7?z&`I?VjZRTo~QCz;mWJpMMa2ti$Iet=f!so*F;WM-1@*r{or^L
zAlBn*Cse1mcDI1UM!9{M7>8!@9HS7gNjs}XRR%d;=9J&&d7+B<spfb<8uKpBm<Wl$
z975e{f%=akC>t%4e_K++HKpsDGp1mXqOz<%q$^s}I~yxD3<T%bGJ{|EMi56Oo3Nvn
z_UcgTL;R3MiscYi>hMpMsus({cyT6}sj|03`HGluiC^;_-@;xE?OnZ(*M_YaEgPaU
zr-dW?nIzjMW80HQb<u_QWnQT8ASOJ$);<fZULeEgJv>7&yb9=ULs!Bwg6f|1^8O*S
zeZhe8&|>hZN(v&G0c!%c&-cvwdBO{5%6~b?1KueCj*w1*^7uX4k|a{@FH9Z%^aP8$
zjxUq7elu<Vaj45m-iS{+h+M(U0`igJoW2LpPImg3Q%vY*@=fn@TjRQ25KZ@sV|_v2
zpVo#@5ab+IS}dnb<w@%K@V*1XEa0vV3($ZftZ27C=no$Jp5cLcvxP1|I{twP|IcrH
zV&u{Tf#eGLkl2vl{pW9TQ2d4*?1-)Y{~hVg|4M4!kb~`A(tq16^$j_=*rWHieX`z=
zgQn)Rzi;!ulw}wm;BQYHUU2+vpTuBWepxyGZv^z;qxu>OSTS$G3X;F=GXiYWoX`pT
zgUR~m1eavMy%DF-#s14aWdYkI%KDmJ_W!tOk|=wiucD%kDhm0_KC^)XpNja=A0c@E
zFxNBzCpX+Kp8VLK;QT)~MU9~6P5T8X`m}(uFnq&O_iqQxOCF%a0Hf`JH`j(HbDN@c
zddPXjP5kl3{KNR>W4_>0&4gy=Kh2fNg12T^>e<e>G&`q1y9o*Xx)=PH1LqaKN%U=K
zfLI5g24mS5nsr9h3sZAj=Lxz=E&dq<^FMJ4l5ZJ-J70+RjlGI1XIV*8iM=)miCexu
z*z@jLCO8GpOpEhl+Z%Ip(!kh%xLZ_e6sA!i^UVShV$0zV9_k>;HjlbmYqDbHO(jUV
z&jQZakA>K$2W#2@Jl6oIulkKwA8;zqHFA|4SH9(w{_+B#<r_rH#lGSZkj%XpEnzG+
z218Rcx2M_&<qK}iYPK_VJl3|;cPv&By)Afuq?saN$tu%yU_0w-@3<*`l576F3d>??
zq)vH9HJ<y-<|CJ}_)Vm4L$F62V`3W7>eJ@)9j_a=wnFPi0DKn!qg&(DB~T3-v^N23
z>_#{fmG)$%mB8tM;PRmo9V~^vQ96LX{oOr2nAnSzIG{cwX9PYCs|L&iz)4!HAVLv;
zXqC$GZ-&xjQ$)=HCE01d+NX;T%Jp?1!%+~0J5;aXP52oQg{st__dOAa2eU^KnI)Wl
zh5<)#rCzOFT44&1A@OHl0B`-Pk=%YTq$a0C^xo+bFw~CC%FOfpiqUQF7jRSSj7(Go
ziaK?!=0hjTb=R+#ur0V&-F={L&go4PNz^MdF>S!{4Bosy^7}odX~uf-(sb^VJf5+*
zu0lMjBv4yD3<Y5_s*v**g1yLKmgZnUV}GHQdE1*K1aeFcuBSyv-BZ47M-MKmTsbl%
zO4EWQ{hd23*#hgOc6M-SmguJ$M)7W3tRJ<x9O<%CB8;S2va{8VSfceQWP1zSSH2ir
zj@!RB->x4wvYGZua~YUCyq_^BZnMo#ZBqhIw#ndMC39BNsCc1piW_<LUSLl1B`3n}
z6Yq@BD#ZNrR}ccq%dT5D2}TgTiV|GHtaO9V$td$k5S?j#nNuq@5{rwAGY1I7(@s%h
z=G=d!6Bo2tFN)2m9+rB85CK0j#Z&4Ed6NCd84m4OcG#ffS=^ZxseaYDnzlSaYV7Se
z#IgcWGz2YG{b$fCP9=6-O4B=(A=s3znGGANzV#cL15fAkFnW(yzt<qa6U-MmX1F;N
zn;*SyJ@o*A3{9bQ*SL{0SWKgjrfcC2M!e2<W|F`}jJHn{*iAtO0pRtY#6DOB`MfUT
z-GV!H)16LLV77<S7YP$1W+UJ?b{uFPF9N*2(BL2j`=@)r$ZP>%LB@n)kWtE1ZG7NS
zd+KwObxmS9@7p-{dZzBX*I7>sDI19&ePEy;F`FyIOT4b0`UyT6ZrjhHQv4U&z!ol{
z8XNpZM_omDo&KPY%gcLqB{oXD79?O+0zV!q;!tzANS9CG6l4fHA}(Dsq2ncn`ez*=
z=aMh|AY(%pdb&Rhz`jkfw^s($8;()fM~k@UcX&A#CB2(mXvp+I_$Uk*(qN$4KCq=>
z9PwSTwKDY!RX1unxqiA8)^3MAsPcP}#ke0(NAiJzLxp&2yC5$;qUxhOwNI7D#onU&
z8n8aU*jWag=nL*aoyThnxa5aVK78;5Ar%ls&U)DjTnfP<1D79K=xr$rC0Og@rL6(H
zr~&(<&F5)L2_@?v7A_{iD|C-%=^j(vMC)P9=)pn|>MVRBpaPK6kxn?y=|Fmz5)*X*
zRItO<Z(ltis`(aY%nxiiQB+T-9-w#tpfb+r3qk5O=nVw`jXe07S1@MX<@7nB1AebB
zm_-EvGlHfqB8teEJ%FOod-e>7>{(DB-yWYS(6E|M28lXy>|S6v%R`Xw^-&a5Kfx@(
zq$qs_7PFblsB^#$^`{Q5@9=CbT-i{c05ZKF#Fosysfz^d4*-0B^@2^Amt|dab!pn@
zxD+Np<igoIPw6(pg1m}Pj~9q}v^~`sG@J&+xvL<%gfM5M#0oIrmcVO+)wZ$q#${Z7
z-l*YCLCQnB8J%?zGC}Ck@vrY<1=|uAWeOX|xOy-4*%yM7j<whmb*f%otld68WB0cT
z#T{<|Rhov1tyxL)@zm!l9MThz>p3BMpmZV5KvdNNi1tZbxGSNfF<#Il$mN6$Wpy0J
zG~Ss;G`KVheezvNj}iIvn;wc2aFSw|V4yzKv=0<M@>Bt{zTZQox3!Q0(4Ia_=<r+!
zz)%9?J?=73t~9<`U(&gbQhrj~D*5f0^<{FD6VTW20nV29#?L`f^U23X+zUJBM*`SW
z5;kWYRQ%_Tx%k6COQ38lwHzx#%q};KWJ>wS2Q-OEo&I>JLtb8`3u>(XON4~UO`5qv
zMgL&~;ce;#Y$BP|aW*m>kekg0179hNA*ix8XG8VK8{?5Tk;}&|tCh8N)EEs+|HDj=
zIhAH!0$Git&eaZc;@!I+s&T6@o(dOj`353?1_a|d!?(;1V5G1~_p&Rpk9Xe=1$ra%
zKo`S%3+WPPzvvWDMFn+3Zm(FBW$M@Jzu1+zAM>peKeyBqqw=t6!gFN7&;h6*7%AnA
zswy8xlH|&U6I%AfWC{Lc1CieZZ1n;JYd5LsIC?l#qV%-7r|XYs9j{5Bjd0*@iXr+k
zls#4J!2%)FYHcNiDtw+QmFd^(kJrTTG*Mjoxr|P;@Ho3(RnH#I)XsCYdM5_wF<q-~
z2!Z+34>7q(yIvFEo1F(II{+UQavc1RTz*wTTV+chR`Ngf)*}<G!A_xW;z9!>`D*4j
z?rs*;!8qV%3A^8v-aQvcAS$q1pi`cWqi#D<Hiu<Ur;fts*-YaQy)h~zwOVODM2r9#
z47~%HHZ1G4He)}NK@U!U=y&ct!}PmY3S^AYiV!L?bEiFiD#ad&j<D^Ss@{BY%FNu;
zpOV43skv-HwNrM(cL8>^sMcejvX`Gd8Jm=oh>hMzPvG?gjdj?Ul3slFA?LLLJ_p(o
zqf2+S5)-U$Fs8hI+OE;i=&h-BD<I}SH`x*7Z?5N=$L52!l1ZT>W2|`4?W0purZ32L
zal&N|DchG;3%C)qM~Uo2@1w9|q)NQh9!wWAWB_p>EsiDEbm5*pUH7cWWZ_*$;~;p2
zy(5nC*>LuN<m1)x6%u80jHf~+Ye2&zP$rki;{3VE<P!(J&d8$B!h1-%+z$m^bR068
z+uJ~V^$O(waIODx12WT(moqc`ON_XRZfU|UF96eBm&j+;!sLOUM2V7PGn5%>m_t#5
z;IkU|AVpf_HJAO^xqcqRn`9lvMvI?4>7De;M3QEacc=#`Dkk6?xymS0pqWGAW4AR?
z?lj2#I2&kY(fcy9E{L@a(mz8w&Po8&?J{|U_9|<>+&t7FbRYdO&LuJ`u7iDOXb)In
zvK|xG6r_ig`BVdNK)Eqe(YO<eTyh_Qv!8Lj<v3{kBZ=2x+)!-h>Rs3Yh_t+W>&{@i
zbzU0dWxd)bIbNNki-YCaiep@Zaau41DSkdEP2`#bac2bzw7GB55%#_DwOeLc$KCI}
zj6|7nM@xB&n?P34fQhLGi|d@nT74_3AX1{U0jfA4T)!0Jo0lo}J+yX;@IcJ!%-0N3
zYV0WXjozLK1(Lgn_Ck*c5{}g|HSpD^@1z(ZUHHC$Q}B|YTPDB38~FI`xI?-~E*`nA
z4^Jjh5g}ekdx9&x610YmidIA6=gn`8O0);4XHHZ9%`)IG@l_-j4)U#rfhujw?9V4u
znl8pZLTEKyX4r6;oq0lEO3oxy-E&Y3(I9|o*HU(J2v#<uE>j<J0Xu^aiXyk6X*F(e
z@sdt`wt$MyYCrY}u?y?u+TRXy13=|qNCvOB$&Oi+QpCvWEuNnN`-o8|*3)JL*#K&-
z$;Z45D%yxJ-wYAAl6o)|@7Z(>X&?U^u-4DK8R<`cZQ{`x$@SuUcIRq&H<j}Uz@mP^
z3`;iaej?(`IrP)5G<op64DD8|cNVUu4>C>n;NL%meo{?kA9o&kCXn0+-$}BxZJS)k
zem|%p(TO4Yy!fmu$r3+WFUkwY;%K)+v5pu(Au_{ar|0w2<jnN=FqYcsP;sD}leW^6
zaZ`|ovP*PQg#TiiZ3Ic>_5ipliSNu{(a5bc!iQYrJpS|~mg3XShU(|->V@som4h|E
zjj`ofDdWbYv1y8xO;Uxxz?*T7f~Ybo;bypfLNjOITbl?E*=Yc|7NLWMKYFK=0`-ya
zpfspFX0P7)9(=v4@>J*o+3PR^faLOLxad4UBv1PdTNYa~t2XgP5VlCuD<D&%*X3;7
zs(3==d|2@2>|+fZj3mf;*R}0z>%M@meUwN^#PTJQjZ0Mh$x;od_;`3}FgH&J(nORB
z)a3=KQ2FDCoG;`|IfY)V^!j}x2~s9|*Oqw~J;!zXtoAMu&!fj?+f)1>y01_fE)eqw
zg^MU4xa=8?gIFm=@j)l_65t(|TI(Q8tT5g@sR_)S>Lns~7cz~xts%D%!0WQ1$+2V?
ziwlC2Dsci$Sy6SM4bdm4?o<vLEWf{$suO60msxbL-lN;gAPHy<X=vT)Q&KIfeM5Y%
zd6XCTmb3;8d}6c+$=Q!nS-Oo=q~{w5eN$H9b?f%$+cOGUEaT=A?T;y*ipX*x_8Hzw
zl-afOlUKZ+bed0uX&ZSwUM;7KZqYQSMyXW=!xg+>3vEFb^H)K_YE)cPAXWc;O8oqI
z$X%b)l|-zk_37SV!beHF`>2}y`eM=KgN3B0*H?&NC5@f_-5_|LW1goU>T2W4CnRFt
zeTIiJIf7+&`@Lar&xJKCt-JeqZ|vsJIP<<Xsl7JOVX1xaxHrDz$6MW=j`-q9^0L7$
zC_SX<SgTm#2MH=VJ`VfD)A|G{3JiB+Nt4qqXj}#$;)|0p_DJwe@K96;;Rl~jE9}o3
z>nd9>_StyxgCPX)W&w@l@T>9M{_FZ@T}bF?Pm2*}CZ^hL20obXCe#`hG-VCTBH|L4
z@f7ZaK5($sx}tj;xlQqogGddcy_1;s0m%SQ(nS$;$eS280fF&%RAOEC43Zf3c;()a
zEvB-qzK#At^w78{{lplDwT%xYh__r2{}Wi4g+|XA(^I_uxNCxF542(6>h~$g3uSPd
z23oq+y4Q1sVQzW0gJ*<6my!QYNfRqm`h=w0-5Q75V=&Hc`RUZfX~wAq!7WS@z9&O{
zIrdU(nZ-0*`o~(TkII#433{Jsb<dKb^wF`K;MdJgKW7!HyT)VB0XnUxWw~nzm&MVr
zS8%46d2)|J^=ojIPF6VHnM0-v15X<O{p350F(!<;gR$D~d22jOsMgmEk4Q?0O6*J*
zRRt3VGqXiA8&#t0-G)hwfW$y?Z=OKEFUbPu7L(MVw9(m@d5@;<A=1%j#(A;s2Mgy*
zosqL0kS~i&n`1tkZaPtuBezHSXt|ve=ofSW^`aqdQ#Lxk+Fx$&=ZeDk#blue0_h|V
z%B>kKzJDJQyh4u3Z;BQaHz%c})T;JfJOX~E9}=L!yl)iH9TYK7Lp(eOO5Oek)8GO8
zVX>Dd@lol?GU@N8ikThdG!rua;SGoCKr@$nGS)%wCH)5GmhW0wbXzCi6O(!^EYH)R
zkO7qi-rE6$!6y1rC<t}Tncn8_Z9%;Y?w4nK0f8%h+Gv*5#j{_OCZ1x=$neEpv~X6f
z6qW{JkiYKyR-<a=bmugdG=isSffci14WXuT>!-~SjW1p`MU50HgMO_Y@n+s?=ji|_
zfUSC^jMq-EqcFOBb`G)ngE(fUc*s!Os@~H`Rh`iUR8!3n<JWPWD-2b}B(`k0QNhbw
zFIMOgF%2z^7)6x&<+v4)cH#T<$IiJCuT<w=3sF5BsxXy-^<kjC5zY@<M`^&JnVHmz
zkzdA>EWl#}fe+tnf3^7Vl+td0>Ipvmg|E|fnT~PDUqx!BKegh2fbq0$9*M{dT{5sq
zi$3;`Q2b1Qf0RJzJR34j9_!;JYo}8aOk7UApg!<guN=XPx;$xuX>NB?yy)?}ZXEAV
zc+Ztz(^oUCnn9_>?ET^P1^$#-Ek;DpJO+s*=CGzh&*$>6XZ|2E(N}n0D_)Ii?QKOk
z)EflsxJZ8l3KExA3=ex6nKn`Eq$91`Me7|wxogSr{j)7EO80j5Cz$&*VQk-oK)a9<
z;U9!QohG)r7ejZ6y2soeL0L3d(gAOI2^A1I4l+bPhm7Es7hgF+Pd^PN`HtH*v~nb8
z=>L8kdhAgie-cMFI?2-UnjImqrHrT>xCc%z%EY)J{%!tr;SuPXb=~4>jt!=0`ZUzD
zE-}jH_==Ruf|omadR~?Ep|>@lM!sx7*)(QvFORjDy+AR`Dgkj`by^!UW_N~ygK27C
z)W%pbwU%P%$qWH;bm1czj^mRZD_s@-p_q&kxcg#gBv;Wy!I=8^W=|i<_k5RPm&0<%
zv^Sdo%25bujpHgo>slB8%TZ==i3wNA;~LtR;g5czYP*omgJ!h$WiQ-gy^w`%E~D;+
z!c0V@7E$15-^-Ij!n93ze<ajQ%1r-TGr?E2+_EzxRWC;h#HdRB;~0UD8GccN7~KXJ
zV0b{EsOQCVI$@Cng&-61@C;(T&2XnkkIgU|dkllavC_UO)0oIVAV&<gfF6!jq^#b0
z(ue_p?#Og)NBOzHchDVMeISTOU1PO@vd8N-Jlq-EDeizbUM@v#9^Vxi-UB`SMMV$K
z`*b@i$<Hr8g1~}JyJ2A3+Hk^oUQn%kXova0ZnKa5!F>!CB9KE_BWvHi|AJM`C~<6k
zcB%v@4T|D7Zb#XuYCi{@8xzT63dIMfSn*D2+VDiGP9A0$zRvvvXMCs~TRbbQZF}lS
z4htpUTIYe%<F%a!=>h#pBQDr2Q^to7yKO7l5sM7~Iviaz993#|bQ*o?nLfCveh1{%
z<L;7OnI0F%(CCDbV%Gc<yKbqTw=H?LhjxWK(QJ!izF>A_53T#4JIAD_-{OE>V>#WG
zyi_<Rb^+(1@0!*)qV8y(i!}OQm?%cl^==PoCq-iFQ=!2}ITYKEgDqg+k8Wo_n&yPo
zNN@CSBE(3Zup~HvF-|7~)ZP2fzP#D&D>F8fKZmV{NasFHs4dp(240iZ0SvhzE`81L
zuaRy5l-j1Bl&@L_;ZNThCUtNX7<xB{g`4$tVC6ei+B;1LxZ3r{dbX{Xu4ykqmvU`<
zrdN3C7V<_XJ@y;$Z0OL|+NKVDoe;BbNqfr~iFgU=eX>Kwpv!#caXjfq)>?7@QIT7r
zhJXh%7sMP_x7o8gg{mru0i_w0jO=Au-e(#!KgJK^EfLNI*u3eatv2J;KOLKW*`!BH
z45xLYn?oMn57LwxM|wWnFq`_u1JYOO$hg30tDjVv1!v%QzYZ8t7U3_Lr$frZ9XshH
zmeh2?-0^y+8?{V+HI00(QlMV$TXQ|?F_n)kJ_Tl{c(*h@p8_)$5DiYw<G)Ppej9EV
zGU@Q^*&3fA^$Ha&_$p?Bb_(85H{FfxN$u=ho_hka1Q%pku9b-zZ^kHb`TmCwN6VXj
zRA)x#PJ!YrmE?Z-UH*kNO;I_Hn{JcNmuZe7ADst%Y^qJB9-Vn048LLvFHpZA1@SeU
z>t0dlo%)poyIe3g!U?yILcrd)p)r@AC|2!LpCr*2BqSVq1z9Q0t60^`FoMA+DMOE{
z9HIUgFra^;f5kI)Qq55U!d;#F<Qxs{ELdDKDHc7;U}{Oc78FMPY0RtTJwtWrz<<jS
zZv@Q$LM!nQE0hNxLGVZH*YYC0`&Pxv=yw8}Zxgcib|eB&>7&VO)gAnpSHD0mVji~(
zQaYCHbPfMU*3NiG_P!hh&#cA+Rcdr4nmS`J6zfew?wRZv%h;+NfNnnr3<65cf?7jC
zGcY^XMz}`xH4sNK`Yc9rB?$Hv@xL)x8GQ56MRp8V&u_M*yD=lNC8A*=s(4HThyGcH
zxZ!h(Ar=aqZl47x@_rG&t!FYj;zpI8L^WJAxjxYFV{gp^cw<Yl;kHaI=4r>g7FS!M
ziqyi6NUpt=ue_R-(nW=`bRHcx2czp6KaFR$E~#IA<*3kYGUnJ#$z=1Elx1JyLto8>
z4bRLn$k>WB^IZxrhk6!1zlFB}Jx8}&`-Q;l36oMfY-_?4B`=e`-{isBv@2~bvC(Ny
z+az$Pd%cn<R>GueG|*k~M@glFwy(w0{dhffpJt^gGx0Gt%6p*^u(T6kf6$BFY65h9
z;!)PN`TCCevzN?2RfjWotAOr6+|>g%xdjq1_w=e_txoreS3k!o$8R}&>coh+Nf%ln
zOF#`=nrt{a%}#Brum!bQ+`(G?S{EZn+pWk`5Ky<3+E^N2toG?`TQ{47U$<vR&CjET
zt%i%^@+)p4Rh|Az_BHdacaDhxBl`eJDCwyAh*r^VA_FAMJ@O-M_Y#y#`E^D<O_=%T
zSPdFwPe=#&PhWo2He#V}^sTa3fMRURSZ}K&Km4Y4F&NVleDwxcE&96kf%QAL!8rif
z(6$)qObl41sDncYZ#&#Hecc1mo0}tf_RKkKTt39MQ1Y?e1^;+9?SXqS8#IVYpL1L%
zoXf-VZgi0gc*2zdn2IuA-3z9eFx%)W(q>46>EZRct9qbG9Ejsh4k5fbALB|{gUsCQ
z-3X2l5^SXKuUdsIj$>8bgx22z>yTXM)!00pl+Dc?nR*2kgm@(=okxMbH|a2CS^Lp1
zva<*1k_$(1aT>DewxaVj&^vx0sL;;1cBJl4Ko>i}+u5QPSrU+_Gb*<|bsx4qS|Cf1
zCx7%B5^!sT4HN%I>$TWi$3WzQIAUV1`P$_MWPZa1rgCW~1z6m^trxTM=45wqVATH<
zYs|Bh_SMD79(n|%p?caDswgzP_hF04VGZb@bprKER)YxNBAEdb!d^A!+vXA)#pDLo
z<qMg&IK*%ydn1Eowo;`J4{h`8)LKA@FghyBoD)R<y%eUw-LEN8=Eq{QwS)6hR<+*;
zqW4)b_rYu(zfXM&>yED-=K$yr0co3@sO&c)*Lm?BD`1JBQ1S0n=*8TKGF+o6|7>$g
z&i|#4^Gu*Ok8ro`@^~{EQ^_4bluTkwk3vz!u)$}((z2P$d3}3r)Qh@2p48X=0v*T}
zP!z9$?(PFV4Vbsy3F6nLw%I%>)}(j8wgq8q(z>OLw<IdJI;kWq;zGLfe7?pzu`|52
zCbe(cvox_i_TC3C*)8-^*;_Xa(9F#CW|-L&CeamWzI*EZuEnlWutO-u50@hE#_d!i
z5InmmN&hg8;O)|trU4V`^sc7l#UJ83i`({jn6gJ&8k5XKgyMuZn+zuLb-NtA&B3=@
zb%-`-78WoSVr}$>_~<yA3U!|~0qq7!C+s;dt|n7au=`%fuqhj%YyEBFUXkZh=3mXi
z5~q~1n}B3y%CWeVwU-W^{!Ra@M&H)UCZj~-G*28Z#7hm({&sd!9Vj>VLROFL2)^Pt
zTbn9Wuc3M!tgN}|WGo85tFN8+sr{}tCXhRO^=2x>>+RL;5TIQ!dQ>)LE-vyDFyc<R
zHljcEIreF|;?r($y?qm5v|M-SN3uP<i+IEN-eFM)SOTqYWA2BpG395x@&ods{JYOC
zLRGg2rjh3!ins;B$>-a+TKhP*S};f*WH&;8Nuum<<*L!->j@(W2Mqx1pM%T1zOG~p
zJ%|vG_Qljb$<G1k)DlB1tE%Pb+6$lGD-}LJ@~`BYpN(vdKD^V#lqALNIwbveDnsH#
zf-uDaya3)i3<Me6AEG{7cHpJph?}BuZI%gIvU)U^Xs&f&i^sQX2J8j)=H30pp8s02
zJ1Z3`oo*cHRpais+b~?iw%;Ct&HD<S$jIIEXX4MCQZt$*Nx~Y5=_9ku2X?kK8tQN>
znfZen{5i%jwV0BNZF^FM=Q!xOPUf|n9S0FPC<ls<Y;Pl`6O6Y_oBufGTLCCqu<s_!
zYZ*R|By2wJGiL&ybPpqnE40Gnz$~_=vcTuHqAP*q49Zto!Tp|LW&GxeR!p1$G>=~|
zv^OWof7j!Jf>=a#X1Gd|uUI4m?P>L&p%h?2i75l?SCW)co*1%e;Ax>i&X7r6iFK}m
zmNZ^c{ZS71qwULOsuCSE@e4H!JA@d55r>*5KeYR@3nBcmk|YHFW+C-sIyGD$O{`hj
z6+$Oa;)61fas_C*WOD-xM0G6jq>w;n$tJ8=1vf0oIt}*6B19jPEE$0Ar#MTL`{AE)
z0RPGdVxU<n(EAs~k_n0;hvoaXe-|kK2nC+dP$09eF4mP3{Y@z#?H}PmPp12aH|yVB
z2h&M*ic$z9{2qz-8{mF|smc?LM#uI$5a9PV2ef=h=yI3(?|by`TZ@kc4kgy)1;gLA
zMIjL%ILzoo{Dt3tKno6q@Lkd0xc_#7Of#ye`-;EI-hVHWBt1A3`M}tZ|DMzDACiJ7
zny?N>bC%!t|F@PS7#zwI?h3-cY{QfXS4_~3{l5q1{?GZu;)6rMl6(F~!}9NmE`lqD
z*Zn@{H(mYv1`&cop=;}T`nPTW@8<o!XTNXk|GRnr*Kc0HHHP3PqJhJ>IVckNPvNn$
KY>Bi<;Qt4-Fu(Qy

literal 0
HcmV?d00001

diff --git a/docs/codeql/reusables/setup-to-run-queries.rst b/docs/codeql/reusables/setup-to-run-queries.rst
new file mode 100644
index 00000000000..4e6ecf8daf2
--- /dev/null
+++ b/docs/codeql/reusables/setup-to-run-queries.rst
@@ -0,0 +1 @@
+For information about installing the CodeQL extension for Visual Studio code, see ":ref:`Setting up CodeQL in Visual Studio Code <setting-up-codeql-in-visual-studio-code>`."
\ No newline at end of file

From 229c3e6e8ff3df214249d57bcb4064cd38d636b3 Mon Sep 17 00:00:00 2001
From: Felicity Chapman <felicitymay@github.com>
Date: Mon, 28 Nov 2022 11:13:51 +0000
Subject: [PATCH 0746/1420] Update for James' review comments

(cherry picked from commit 174fbf672fe9cb1ee6d07869ce5944478b44caed)
---
 .../basic-query-for-cpp-code.rst              |  56 ++++++++++++------
 .../basic-cpp-query-results-1.png             | Bin 311380 -> 322101 bytes
 .../basic-cpp-query-results-2.png             | Bin 550586 -> 395451 bytes
 .../quick-query-tab.png                       | Bin 0 -> 71870 bytes
 4 files changed, 38 insertions(+), 18 deletions(-)
 create mode 100644 docs/codeql/images/codeql-for-visual-studio-code/quick-query-tab.png

diff --git a/docs/codeql/codeql-language-guides/basic-query-for-cpp-code.rst b/docs/codeql/codeql-language-guides/basic-query-for-cpp-code.rst
index 0f43a737b9a..bfdfda6ffb5 100644
--- a/docs/codeql/codeql-language-guides/basic-query-for-cpp-code.rst
+++ b/docs/codeql/codeql-language-guides/basic-query-for-cpp-code.rst
@@ -19,49 +19,45 @@ The query we're going to run performs a basic search of the code for ``if`` stat
 Finding a CodeQL database to experiment with
 --------------------------------------------
 
-Before you start writing queries, you need a CodeQL database to run them against. The simplest way to do this is to download a database directly from GitHub.com.
+Before you start writing queries for C or C++ code, you need a CodeQL database to run them against. The simplest way to do this is to download a database for a repository that uses C or C++ directly from GitHub.com.
 
 #. In Visual Studio Code, click the **QL** icon |codeql-ext-icon| in the left sidebar to display the CodeQL extension. 
 
 #. Click **From GitHub** or the GitHub logo |github-db| at the top of the CodeQL extension to open an entry field.
 
-#. Copy the URL for the repository into the field and press the keyboard **Enter** key.
+#. Copy the URL for the repository into the field and press the keyboard **Enter** key. For example, https://github.com/protocolbuffers/protobuf.
 
-#. Optionally, if the repository has more than one CodeQL database available, choose which language to download.
+#. Optionally, if the repository has more than one CodeQL database available, select ``cpp`` to download the database created from the C and/or C++ code. 
 
-Information about the progress of the database download is shown in the bottom right corner of Visual Studio Code. When the download is complete, the database is shown with a check mark in the **Databases** section of the CodeQL extension.
+Information about the download progress for the database is shown in the bottom right corner of Visual Studio Code. When the download is complete, the database is shown with a check mark in the **Databases** section of the CodeQL extension.
 
 .. image:: ../images/codeql-for-visual-studio-code/database-selected.png
        :align: center
        :width: 500
 
-Running the query
------------------
+Running a quick query
+---------------------
 
-#. In Visual Studio Code, create a new folder to store your experimental queries for C and C++ CodeQL databases. For example, ``cpp-experiments``.
+The CodeQL extension for Visual Studio Code adds several **CodeQL:** commands to the command palette including **Quick Query**, which you can use to run a query without any set up.
 
-#. Create a ``qlpack.yml`` file in your experiments folder with the contents shown below. This tells the CodeQL extension that any queries you create in the folder are intended to run on C or C++ CodeQL databases.
+#. From the command palette in Visual Studio Code, select **CodeQL: Quick Query**.
 
-   .. code-block:: yaml
+#. After a momment, a new tab *quick-query.ql* is opened, ready for you to write a query for your currently selected CodeQL database (here a ``cpp`` database).
 
-      name: github-owner/cpp-experiments
-      version: 0.0.1
-      dependencies:
-         codeql/cpp-all: ^0.1.2
+   .. image:: ../images/codeql-for-visual-studio-code/quick-query-tab.png
+       :align: center
 
-#. Create a second new file in your experiements folder with the ``.ql`` file extension. You will write your first query in this file.
-
-#. Copy the following query into the new file and save the file:
+#. In the quick query tab, delete ``select ""`` and paste the following query beneath the import statement ``import cpp``.
 
    .. code-block:: ql
 
-      import cpp
-
       from IfStmt ifstmt, BlockStmt block
       where ifstmt.getThen() = block and
         block.getNumStmt() = 0
       select ifstmt, "This 'if' statement is redundant."
 
+#. Save the query in its default location (a temporary "Quick Queries" directory under the workspace for ``GitHub.vscode-codeql/quick-queries``).
+
 #. Right-click in the query window and select **CodeQL: Run Query**. (Alternatively, run the command from the Command Palette.)
 
    The query will take a few moments to return results. When the query completes, the results are displayed in a CodeQL Query Results window, alongside the query window.
@@ -76,6 +72,12 @@ If any matching code is found, click a link in the ``ifstmt`` column to open the
 .. image:: ../images/codeql-for-visual-studio-code/basic-cpp-query-results-2.png
     :align: center
 
+.. pull-quote::
+
+   Note
+
+   If you want to move your experimental query somewhere more permanent, you need to move the whole ``Quick Queries`` directory. The directory is a CodeQL pack with a ``qlpack.yml`` file that defines the content as queries for C/C++ CodeQL databases. For more information about CodeQL packs, see ":ref:`Working with CodeQL packs in Visual Studio Code <working-with-codeql-packs-in-visual-studio-code>`."
+
 About the query structure
 ~~~~~~~~~~~~~~~~~~~~~~~~~
 
@@ -143,6 +145,24 @@ To exclude ``if`` statements that have an ``else`` branch:
 
    There are now fewer results because ``if`` statements with an ``else`` branch are no longer reported.
 
+Saving your quick query for future development
+----------------------------------------------
+
+
+#. In Visual Studio Code, create a new folder to store your experimental queries for C and C++ CodeQL databases. For example, ``cpp-experiments``.
+
+#. Create a ``qlpack.yml`` file in your experiments folder with the contents shown below. This tells the CodeQL extension that any queries you create in the folder are intended to run on C or C++ CodeQL databases.
+
+   .. code-block:: yaml
+
+      name: github-owner/cpp-experiments
+      version: 0.0.1
+      dependencies:
+         codeql/cpp-all: ^0.1.2
+
+#. Create a second new file in your experiements folder with the ``.ql`` file extension. You will write your first query in this file.
+
+
 Further reading
 ---------------
 
diff --git a/docs/codeql/images/codeql-for-visual-studio-code/basic-cpp-query-results-1.png b/docs/codeql/images/codeql-for-visual-studio-code/basic-cpp-query-results-1.png
index f9abcb1c328d747ee423961d847104be9d0d4cd1..3751e6ff0a1efed9e7d87bb7eda12a95a78522fd 100644
GIT binary patch
literal 322101
zcmbq)1yCH_)-4c%1q~3~g1ftWa7%C}xVu|$5AGH`xZB|F?!h6ryT9iC@7^!p`)}3z
zg{rA(rq1+qpR>>2Yp=CBL|#@L0S+4u3=9lG;**FX7}z^iFt9g5Fi^lJ9Vp?*U|{e9
zrozJV62iiS@^;onrWS@^V4p(bRiIUs20mnH#C#Vp@rC&W+X4%r2=NIvyN8ev&%&QX
zfPx6>TWAXnRfAKd4}uoDf&;D3JhB1}&9@f%!a|CJA9POJGH|<1<sR0p*2j-GnanSo
z_Q%65&S2waTM{Ikg=}Dr8xW?_s>sBYoB@Jv5YynW@;*2fYiAdvCA+&YU_-hOH|N(-
z0$WF4$Qx(*A70ESP+%_Zzz8Rh3t-Rh8j%U0z{=O8a^Hd>Z-cg{AwqDw;4X6+1cEV!
zYy;n`^xLMqCy<}-?x`TMf)bGN>x(r4%UVEm6(iz*V`g$Kc=+){a5tC<BjNSf$Ox)H
z8eAn_O|$^boN>NqLF^g(NDYw;KD_}9_0A6pvyLAg5{TCKFUgTFT6Xqd{rD_&XZqs;
z`}%j_FPx~kqp16^k#9n$KIRb42HduM%Bl#$%=<dnxfy?5$jG0GU=Ov6+zjK=p&1-O
zgowT)B35`?<DftRt=}LtZu$d47PlJ;nf}A?pzfa*b&?nQpIgTl9Vk=tHpVV;;o9tU
zkiIUQ(ZoL=NE3<YMVWpu>?IYF_MQJJABPNEN!C4jw@|4WKeGEn+G#5*;`0aMs8zTP
z%xn&tPeoDa`BK6LpRY+9@BA)$>Wo4;qNzM82$|_LlL<<a$CSE}cD~iV>nXVv#MARq
z>|WD^>|8_M{#9u#Wb08PxzmzMNFm1gq2QC<k1y8^0Sx5QqZ$H-89JE7*kR;o?Qe^w
z`=&_WPS_4|oc*9#Nis3yxrIXppC`m*@PVIY`3_y>Q&?JGhOt8FE(DJBNe~Jdf*hTh
z<D<d^ap0V)Jmj;_Cz$h~-nW!)0a?iBI)SR&GqAbTZtu{Et2$7F?ZGj&+TD}&<6QbR
zAY9<FCip=Yy4zhY_PX&mFYaF7pL#0@QM2{G`r%`#`z3TE>oYK>VM^BYMc8=%!ie&j
z6Hr~YAv@;fh_b%+C-+C}6z+5sB45A$I^nU0q!9TwU7r7Qd|1tiz3-BM3=$8_jo-dJ
zR>7uNJFIh%m#Pcc<srCQ9hH@<GA6&tizU=5FG4)tLO^&-Q1qJtC;rH3hw)2H#ps>;
zherwn8Jt0O_re|Vm&21PdLP;waVZN%Cm8b%Sp$rUO;tQy-GU0Y5_E2&KH=hnN_|HJ
zw=jk7SOiCrms9rJuiMGP&P7gpws$3m)X1{2Z8_lFa!guOgZ(tR6>AuR{cFK@qr{k2
zbXHbi{cZGvb8|RN8_mAs^j@1EETGy?PTSktE3I+s!F`1DY#vr0dlyE(m4{4$rP1#U
z<pxM1ChEYP(q_MPP9b7=o6wFp+K1o*p@R$~)Q*Y#c0+(E2{LEQ|3DKi|68&yJ_S^s
z?pxJ&Y~N^gx#tnCef_c!aiI%3IBj5S{0`RWG<lcT-tNA!?jVO0`~-uZO%xc6r60lZ
z(Fz9jOkC(Y3<;Ekm|`@%NO=GE<bH@;G_?Q=kvgI;{pI}%TP$|qdjeL(TAz^4vG0QQ
z3!#1nrDU<~eu@jJlBdHCk`-Ydr!+xnLe>f_6Q`bNF`;$CZt>R^=bpeY;fG>y43A7U
zki|qbFi=p1ONf-HTu_Bo4*a6es`|!bRHah31mnR6)fRiSJ$(%hv2W9skMC_}1bq+t
zM)R3E2&*mBdEN6?1tMNo+J@v7nZut%2uhDCJ4s$_UV=l2<K2xS`#Np(r(9Ia5N#WJ
zGSuo|=3uFi)ZmAZh;GCUVtxJ)5hfDOn8!~FB=|)>pQRTC7NxjEn}qhsT2z!&n3e36
z-hGi$KrJ3op;lVTaZ)@AT~w--`)XOmx)6jb`r&&)Y+|hQcbxvjf#oeZG`vvSo~ZZY
z13!jyN(!dsM-`71Rtk%YH45E}qm(d;#=hv3dkH*&+!F7h5wsAX5$bv&5t4hEBDAn0
zu<Kb@<cmJzm=UrDs0(O`mHx=c=F4iG%QfXPw_|ymV$U+fYR+12(mMUoT+O_)hRhV*
zG~N_%vZ-XISZ20v!pQuh#@Ia3oM5K4Xt`W?%62AXa$rX7XSMjww^3%Tn6e0~;4%T{
z>|>{8=B6kU%#oPh{4>*cCfp{*rps<3yc)cb+6mf4D|{_%EqtC@p3YB@Pp0?V_vDw{
zdzj0CquD#-iBm|E*5mw$%vinHWVm%-RYxkQyH>E^*<o0avEwig*&D1*C%)@p>L*z?
zOjeAZwxU>V>9UNP{G2e#sTOPLx(a+i+(Dwp^0K+bGnk(5;OKP;JagJq-t<CMie*3z
z8GwpqCTq!em=c(xnPSZ+mvJ99F?u%oSj}owFr2}BiA5uZXuzA3JYj5Qfp0~}ylS*!
z^gPfx`*B6TwZ|*$ApuP)->_*Ldx&g^kD9r-Qkl8*XX&wOY-#dr^6Wv0M#<{J{36LB
zO;u5~tC6|xP$g|uX<du4c<sB2RDBgw=aCGPv6`{E)vv3^K3pywU%BGAHJwE8c=1Fd
zQ*pV)ki}f0kfRE5ZKou<LbgBeem<JsmUfP`$vDy6d9=#~YDP4*cwPA8{>FODW>wdA
zS#j9`=G<KwLRtAT?yp;`ZL2vk1@VB$6y~2^)6~x5&e;z}HyZdXQI+^%JSjY_E^e-p
zyyiUapc0T`3l+$U=_+YrIB)o31@eUOgma~@h5y#&9_<$Q@@{HwfPKk1>ZE$2E+-(z
zIoxZ@c)jmp>G#~;*s0vr>i#O0E`IyFLU<QU6D$gtUs$(shGT>JM}{r%cCax}c(87L
z*Lq|6>`(?BdL5)4mPAcNXGA!{`2OntM*hk{*8#5nBQWOh<o@<uDuJt8NjA4>RI;m>
z<&4$6EcUDomA@i>1)(6KOa=#5?#?qBs6@43nBq}JmV`klq!rF6+~ip16o?Suh~r}L
zmU;Y&#hgn@W~8mGnIEWh*I(^@+d~`GjAM;KA7(8%E}8UQKK_)Bk;C?jzVT##u9`$*
zOhk<6z!ha~oPS(8<<q8cZ#mv7Z-;@<nLiGyCAn;>i(bq`Zkhx+nYqkw8NN8lPcqWW
zvG>UsJ;hsB1-6q^llQk4&s@*%1haG_vcz}EHAy{EjuTs{p40+$diTRKhJA*shP6>N
zY7{Q1sCmq#W}6QS549HFaE5R`*w5H0*++#s_AG4t=9vPSy5hYTm#ECO4;_oERl3jB
z+#B^E@z(e9^u>RSwvJyI@QQInzsE?xXw6JvxEg0kH{CETox;nfPkyeUsM$@#x`lrZ
z&rkl%yfbo`(vwna$;QNO=`@8q#QAQ=VGJR)*&W|d`x><RyLniL^`-o6$UE#0DKu%#
zrxS8|{9iE4KS+gH)17P87&5l1)-+fS6q4d3c+jH6Y0@}S(o#Qx;@U1Z#>)81UtD$7
z?yKsyGltm93Cobn8!DM}w~xPY6^APGs`ENI9%1*U#ISmorh~49lHC^)9OE3T9Mcbo
zXXmUd7Ay3-b|R8-$`hgEPs$m}R29#xVs)qDM|@Mw>yj)em(OjBO%6&e^_I-2Evbg;
zQ0p<QysL=y#E0mIb$&WwAJHt|878`@>>MX8k9^Vo^2I&;hNfJs*l>o|o&3;p6$4b>
z+FN9_<aPf%`DV@Mu>C?u$-Bk&yL-hR@`e0}-a!|-xQV!=S@hywt*2wMWBS#=6`pt>
zuBF+jC5PSc-F(^R@4g|q-Aq-l7(2W50beE2f_og&h?W9oS$?yWUk*3YlgZ{In<-19
zc4Ha*7;eYX?~1plUE41D=x;SS+@f78k7IW77L}uBiQ8NsopML2ORuZuw(p%zt^*?{
z@W{&{H90+5Z}%I`)65gg#I;WvP`o#1M_}2xtzoTro73$dX3{&kGml4G#2ZxXbRN7G
z-fTk0w=KQ2woO%Eh^W}89CXbGITM@_w78_b+}huCl24Nx%8g_w^V+*RfyiqLp6+gU
zmg!08`K~^^WM7E)NHr%0y}&<K*U}f2Kg3_ov>)VI!>=CR4?UIVKkq(6TidUCxv8A5
zoIV{R4I|MKpz`xQv0O3lUEI@O>tMIqwXNXv<6(Y3&E@GS2ZN$c$v|vB&;pZ>1<&fZ
zz%m4#KNe5~pAY{OSmW2*#!^t=0Wb88cx2C5hG_>^wS>rKv)FDswe<zVV>K&8%$Pyj
zk#r^Mv~Qo)<!owk+t54}R><IN3w!AM(Enw*BkHIP%=FU34;MiYXdJ*S3{@qJWMsgo
zfMXaiNN{Yhx4;oN@Ztl<`PZ=+I0e|7e|!!B1{P!r2Kj%-$O7-Lf8T-E>v#U+9U=?j
zpCjI>X1)36@f)Gnp}!jGuYfmLn@?)?U|=6eUti!7iX^9CU;<zgB7&b?zz@@*L7#gT
zg2-Juu6q)6-zl(!zO8f?RX{oP5!3JZ5HT-RB5~NeLLJ<~j;8S5J*<VgF1R~GwZaFJ
zdaZu!yV}@tv-`<$i#zq$!^08p&Tw)v^Ti>j``GZ~PI_hp9`|*h^NK6ErcKA&^(i@i
z1oZ>t+w-A;QhU8}Dsb3O0ub-N`#_Qq`oh6@+$`6lceDL`{qHv^!^Lnl%gNhet^YgV
zA7hy@eFHGGDP~=MHP|w%j+B-GW5HqLq}rd8>?E+{{u-J^`##BerEGm%7ztsy*%_&N
zl*@c~x=86!em3*z(D+Ucp8T|r!24^C#6K_Kk8Ala9`4#eewWHg7L(?kl4jn1JBurq
z&c%vvpYfDpI+gFp0jB)vuj~2m{)#{XSf|-x5P?_lw|$53IWv}-;8GN|Ib;c>S^4qT
zd;ZtN{dW$1BPGF59B0E=uS7nlL(bw>6TF>G`=6f<9M<781WZXRDfEnlgO(Di;f#XM
zGOVp5o1NsA^8e!A#XtHuad8%ieNFeDQ7VufG5^U;RMs0`OZMNn*T0X=B7XnrhnfGh
zN4|8jqLfK`nsRl-;QrP|6LDvS?0-by-@ou*TCnzT8N%YkUQX7GV%Uf0hm#9k7;%r%
zcCM&yy#Lt(0oMRrX+LLvWME+ml8{-6{m!T@x8-6DCLa)EG8n4liF0Qq-v8qO09K3;
zf>Xv(`*TErnaJ#b0qe{brVOjlfvkk*vhTk2m;c3?w_ph~B3Fv+H_R@l4y#4w)6>3?
z)6b?)4tSV3|1VApT(C=_m_T}(QgzgN54Nz93@%MzE-GU;|NnT|d?2|n!9}JAsvr(1
zmGU9^T&jLgQ8re|MlVbLmzMoCU;U?O+5H5GEK7beb2v9W-Mx<zSiMhDCZ>V+c9zmk
z{F|=Uzxl>L^4@<s&wu`u1cLwh)&NbBJZc8_LQprt*}QXMETr6gLsoM4f4R-RV|NL&
z-tU$4nWcRpE+gY{t041%N%?oT_n$B8-(?`*$WMfOd1vwwN!SRE=h`x!oCG~HE)~Ba
zq5lgf{VA%u)();$J;GM3>{NT+cu>~d)gMi49^m?)XZt^D#yt!P(rmY&^oT7R{K-sk
z+1+$5%$4CT=l_56#YutLUbXwa>8fA#(ol|3GfF1yrDlINO0~q^q^_cSS04TE7mNw=
zRC_s3D$yqk8;_L$zS40q3cn;I>;GRxvali97EN**hWGK^57m^NR5Wc}!|TWR9(o-R
zNU`}mROd}{p4}>~VB&U2|LyJWBPW^WCqrbC6!sc8&LXRc`#P?NSmf4KwOvk11(7Cd
zR#Ej}v0G`nY{#qoj7d!Xcgyo%2sYqrmYD(tvgr^_rXW?~sth(u^%Zm0PBW1?|JrwR
zGrVq>g((dw<&lpJqO&M|e@jK<bg;wRCm_8@&fg{u3*^#C$Ye4p)4P|Y(Wi55&yE~N
zHB<TqCu@F4hy-4@da+?=LHv(Ib<upcYkoGPoI5O>{LCi25MGI;eJj*bf7^*O<m1Xq
zPc#INPdBS7ZJiPQ(O*L6G^|@VU><vMto@x=J?l{#KPUM68bhUG`CARmHrnr~ib3_T
z!V2j6A+QB^!e*dmV95NfCMDSd2`k?-Y@&DDZ({T}uBF7{%Y>gJ7nVUyC4U%QlZmQP
zvf)o{D$&^)VXlLc>fY3%$_+Fw4&>hNt)<SrXo{)!qnrlv1_#<nnSFocqHWZ9+k*5?
zC{K0@enG+Eus|fF`iQ1d!Wv704A1KYJz#wz19<MXV!LEHp=4^ag@Xdiw3-9UTkj=(
z9hLOz?CyU*(-~*D{;uf5clX!p3j9JtwhLewU9#IQB>rE6aUjs&Ht4uEOijEK|E8|z
z{UvO;8dH8x1J#?-m!}i&E&$=+_D162thnx^D|bjPOma}Y=^7!bFtTyIno&XGb-#wM
z9%hoVSW-}fN^5&KZl?I`d05%EZ%K}b%fayYxWkX6<8da6$!sKDUGee7aaN7o;bevP
zh1ZsdC+19x_vP_oy$3@ld{wI&Eep@6ssCe`f9;%h^Vfkr>WvJyixKv&t$|pnUUPc#
z1TCip)#=9HDaFgMB^VkOm8Y36kK`UtS99p=8J2Ymo!{QkVfIE5=qPXz|GD;AIjC7$
za_-S=d`B8}HO1by>p=~28c7$dltLPBtELsDdVVO(=d(0G!(+-9goc(J5K?l3jk#)A
zaZ=E<-frAQqFK@L>^^N0MEL`=0a^hyIXxN9>xY5sEf~7@$VQ?i^Ju%7T43_JIouvr
zk15)CNj1Ge;$iSkb7~l9dpsY~6rUxxZEtOjENOe(9@D#CFqV@Dv!d*q5GPQ&#Kl8+
zdboMlcH2X5mi}@%CD*0pysTAqEF5S-kf80h=i)V-)HWk|;QQB#32Z~QzC1Udj?Aro
z&N%g^^t#QqbXTWRW^AED&(T+vLg6?8UD#P>KkGGaC%g-8G-Z!BFfXlDZrF;E(qFPY
zUF%qXg}~&=wtve|zF27j8YVY4`!m#TErvX-=D07bFHbs;kH6X5LOPeB2|O5Z@`MlR
zL8qPIwk)Vd?;;o=SBB`@JS@mxqk~kmc)7_jY|}S5E46D@(|)94(X1GKBn8|KmzO9;
z#~^~W^J-3qAYet5cudz<y5VJ;-dn9|Htiq-wWPfHxM>~Om`KFpku+HKEtzZ2S*^im
zjfqP!L}mH(fwZV|ZFl*gXZZ{{GQ3<{ThUp|J&jtLKemiz0GOpl@7i6Kpv;lZbtU#Q
zniCxI>?{psZ?OU$whxRyqv&irs;Dk#*=cE3qQB%R;Db5^A&Iu#0BIMxiYAJ6Q)e&>
znDgorlIRKdxvJ}Sd}k<i88WbkMO^N-6U|984HMMfRELHw@LUX|;@lON)|uVz=0xS(
zwCHE#VW{f*KKjYiWGd>#9kstf3ZA3*5G2O#sAE6EYB$GMA349K(zgF$X!MHpufpP+
zkIKP*GumS;#zcmb;k0NvK|QS(gvUnwWx1&i9709M(-HTxp~Uh#dJw~5<4y)bnUH^C
zwG@2|iyNo=nlE%`ae3<^l$k!t-&gTkAggxiiMq5#5sjQoIsD6piOEKHh%dUVZMUDe
zF?{sd<HZ<3Pcx;L`|1W{m_(f^Zu0#mZV1vt_z=<fHczGu+XBfNZG9g3jG`DWE~x=B
zkEdKow+Pl$XbtX3!)D}q(?QugR5IyL62E@KFofJcoV1Nq3w#DEC!y1|@a+Fiw7zIw
ze)L_tJyBIZ#N}n<va}So<V-W70Xv)Jo2kg`s@H?%b2C+4m$lM+6=H01q`&9XLMb0M
zup@lF8q15${WNIvk`eccGL5|apz#W5>6>5S8q(2@-SV>p*ohLFGQtl7<e6}CJZB=e
zH*GI?iDFA;#k6m#$5AAvc8&ISOK3r-LY#8O&3%MiIvMWAji;AWWB#_Ay`l<iL+Rx;
zlc8sU%l2cuov`F-m=~kJqp#_k534kVy_@=2xWwJAHMzVBSTJ`oy<2U7oaRp)$-zYD
zm@)aa-euA2sCKSO@a~CHY2S_cm-oxl`3-zJT@?Sbh|BL};|;&sL8@XAJ=Txr3BgP5
zCoP=|#+k8WV}HZ+pZ&mMMe7%gQq8^^;=eCUYA253dGEAfm?)r8qSNNJ4y3dGTF+}b
z$|`NgnJ-=2i8}baDa*jg6uxVf%^ifkGluvpnEp|hzmWKRuXH|Hxx;O{-3X%?9D$SP
z44L~1`p66u*6s$J8Nr}0a-_h#oIAYMvSB^2QhORas&P)!UM8K9ooDM~Q%@>;V8JH)
zsz<df$fXMFc}<U-y37c4KC59}IwhNK-Fm0*Es4!Sz+xhg$*3>F99Q^cbO-DLF}cG4
z*0l_6>z1pHdD_iNm=mdp@(=k}4P20|&-VuuKgAeEs(bB~Gy79^5;?k`_KVByisfE%
zEXwC*C@UNP1R7bM$O6(4fmc9c33uB7!k*h<Z<4f*5&*E9r@(4UW2n|g?SC$h6L5XL
z+c5|XEur27BC>6ayj|)7sORzgUYil@ogw5IXim$Ha}+VhGv>)0u?cFG1FB+N3&AKD
zL5bRKlz6>}<Xq|69%nrjOIFRjr@Ysg*pWQvg&t{#qrgwUZv{%3$2gFZ2yVPz9#+MD
z+1Veo-H)(jd9P|-$1GX5eQ_e619Ajrz*Mfd=4;X0Hl{{)n$vO)03wY%wCPOM$D}RC
z;fDhMUlCp-3SmFYDW1ey-zni4s8V#uZQyB(;~u$fsg@UjE|=kTzt<3FVsP<OnJb~K
zry7AkIl%R#<>qI+W9&uIz{s^004N}+n;F()0!^i`G*vBwB%*<2FY5wS!2|dvw$C3D
z@Qh6L61=RA-Kh~qnZL{7B!qO9S^|OTG7lu_92>Ws2sXH#40o$}0P-BfMGRD{Y$>yL
zx?>&X-TTj%YLS=I{|)2S$Uu}X9QWZc|1b>?`N96nMws@bHDq2%ju%~3#u1q6NI{OR
zB01d%Lab;i167xA`K#Y-hwQ@7$oU4s95_v@Y#Z2)q{Hi6oF3_LqCEG7aj*^A@9q!E
z>8Vm=I}d<#Ogp|31ndIK53W7kBah^^J4`SVK&1Wt!Gnd__H@0}1%PaW5ae-Y$|SF}
z-wgM`ztf#p=E<IcTKVSaUJ^bbxUca>y;&~kA=y1!E|aekE{wj_MFK!V`w`!LA8?|1
zZoX*LC(zMLBYz=ZXVEwJp9;t*iQNIZt1`LZ<ykBZzCZU73p@BCSB=5T^G#bH<5jxT
zBIRkB_YiG;_ZMB0@;L^9R4$m5W&ulDZ=j%f61Uxr{J6u~brAa6GqaGUiftBvo)E>H
z%)VIYeH_@#n$hci1(ZVc8x&$=V8EpZJrYlaiK_S0mA)|c`dca2cykvegQ9W(0?{~(
zxl$J7{45&sxH_oU1My_Q%5ooFs&DLnrsGOdEql7%jEdU8=4qOl3rU!4jQ^{JG{N;<
zb|%1P+iezX36bMj_doq)wH@=j;w^?IL#Q;$p;5%m*0S>|Z!5+|PiP><N!|dahoL|$
zxGLE;I<tRYN#yz6PUg-^sY<`N9@9F2O7Nm?<_)5_q!O6Gf}r!a)F?>53Lu`$vA|Jd
zC2eY@g@nWN=o_ayDqH0xR4dh?Tb{jlJnO*-LSUQEQpSnH>IlMjGx6C`5SPi+9O#x7
zX`IhbwZf(Ya6^OlFk_#{?=!*+V_-(Z4T*P8yO7GONtoZvVQ4uh;KJwP4%}J+?M>xw
zeB=1L1z%`<Ohk?~A58S}^{t_s_(>#82EsJ&=R03gJ4R4~=jDXBZQJSC?b)UQj&H|G
z2Cw^vj52!=kaB_mqL8;PXi{P@v=E1pxfq7%+{jhsxH6%RJkx_|MGB_y&TCi2=gWH^
z`!Q{x+Ml&%3x8w6&>$_$8#=oBe=4eI7VFYejY4b$HtWyGV8(QVhcWMGW<sajBWaC@
zYn~sACF@BAa<W+|i*tLpM-;f2%bqvOl!c>C07Q<`Un6lLgD_AG7tE_1<qBZ}htW4R
zW&&q3hhZ}{wtEtivefE)t*i4v3Yg@0u}IoE^($@%^D6~oewD_Hl_RD$Vl0sz(Psnq
zWp~$0*3kD~P1+2kpGV<JOjq;2M5$F4Rb=|G0B~6JcEsAN%Zg(s&3-=|W0ZM}r!rl7
zp-Sw|h9Q8kZoCfIYV&g4&Vy9)mx8$u{tRWpsW|z7LX6Jb5Q}l$0ZkxM>00R$0h@F9
zt4;O&UZ3B~lc{uzL@1^U0Cqyhr1!0f(%d#-pGLV)O0Lq+pH6x8ka#cUb!Ya4y1Lj<
zJ1c>dNgqlAxA`^d21t*OUm-eOM|V*>cZXi_=mwuR6|FU&Uc3{s5^>V+8>k>8mxY}S
zNklMJtrUh)nGBxBLa=5@QAV6UH)D-EL=8c#6;~~(DKpdTShHifcFT|XCRB3M+~H4R
zT@;?X9s(xc!vnDp%u4BeXH;HH*PekwUy8HtO~i5>$$fll(~D)ig>A(jq6T2nQjZkw
zW6ao9`Z_-!?ge%8r#QL*)|wHzgW6Fpe%kd}`6m4xl%m|oT;oj7vR(M6xZ@#u@}0yn
z^{>&#u4kfLCx4J7Sq8`g6%X}oPqc2rbR{S&(O6*mKL`@AjVQITk!6<9GM4iN^Ex>|
zsboXP1q@KUC=3Ocl(<MjaR)$D!+1Vi%XC~>VKEGa7AN=5tJ<<+2!#*TzH?=`<?*;Z
zRp0&r8mNK~ok@0CI6d?l+^k!&3iBHX(4-gw&=sCo6n^@T-}MVj4AFLX+XZqTN5uP&
z+PT%7YBSJ!oq(n(YQyZBz;&zO8l|ttB7`&n2B>+aw6?5g6x44vZdTl_z1GTAwZgU+
zaP{DYPAa+(D?PixE|QHiuuix+v^=k7Z0+bg&{Wu=Jul+^N;Cjvk`mkgF^ne0T4i$^
zE2;@$L56)9jaQp-;PRlntqi@z-D;8*zcSW@%{_+gWKxPAFQ9qhv}O!anQYc*sW&ah
zQ|f{Gpo24SzzS<s=({>a85!cn*U19Lia5lvfjzhBytuABv`pIYB!P$tFWR(le7Vne
zNX27h?l;TM2R3p$RT|2Ml5ci6%m?e9sy(3=o-FPa*SiHhnt|XJt+Zi7csSKG&5PG3
z5Ls`GBmaf`38PsqMmO`h@a}hNIYXGsu%zO^&m%B6qY#ZI_Q_go4QtSs%{yGV)eynK
zSc7|Uj!afeQfg@>8Xg?}boyVj8079{jN7yzW!6ZnAo0&57h;*%-^`BR@g1V}HtMgG
z7TbDW{K;zxh!Y9mK$9C<Of~bPen(LzaGKY%J*Pg}<KWWy2|lTyi#F?*SG3P8GFuKh
zm-JLH>bD10%esVJdk*{kc6E*Fy5g#-7<0P9K(!j>_u=+@-%mNX<*xDAbGmhO)v#Vy
z#X9IRqnzjTMm#)4;loX`ND7?kp8(k9qzlV2IUa22%KlHV;TtLE(@_DGO3E8VMp~c<
z&8*L;=uoShYWF+O>wV&JzM7efyZkX(y)&uT{~hm#4H^=UOX!3dDhKh-`b|k%VKtxm
zZcA-z%~iU=THK9DxU(EcjfkwLczUhFZ<BjhKa5sc=ffBNAh47N<SutKL;a19hC*Or
z?J2&(AVKmd={&fOHDzVZ2<Kb?EYyC!gz7r0>3*M&xeA-ncxu(NhL#cP;;jvINI1g<
zj3}opaUe0~_U?;I`OzVi6)$9%i%~@O{RSXdF<Kz~Mru$_J-Wfr5iGIiU+(AHI)Pn|
zwfbbLO8^uL$H`4r9xUyGedYw~04cK^W`U8Gz&;cIML#Hn(2UlDp&Zh&b<@}0L_vOp
zX$T%-6Bb@hB6#-fHg53?tr}f9=^v2C_cx)BZrsf(puqfA9%&?cttO)M!Vd;Zmh~Y!
z!8ZVQ{SXn9_+^99_B;^B%0YDaW1M>Na^{ux$e`jjrh#Bjub+udHH0Fzac4CHez|F;
z9nv_TctxnnS02bIZ5c66MU51O#o%Ag!5NKXCOdQNfq_0rPG6g@0pbf)+uhR58~teQ
zm~)+dM-@F(Vxpubz_4!yAR@vrl}9rHx{s!eK}vH_dmoFEyxeXhH{__BRva?(Ja>!)
zcJ$7RN+R`~;#X(%Y7oi%?^ai!cYPy$8@Vo{k@<|&8Cpq%G}v=XL9J(q=Rff*tDTIZ
z$h_A!e#^(WxZVSb>5Gkc?8^0XAecZ(D51PE>U7`efzvAS8pdSlH1qEaU!RogG}E8?
z5MFRz-E!P?pwH=|j7&LY?Fa;MAB7tIZ_7Lo8cj&adbhnS0Y)$17$fRqtjd8)=iiw2
zLZ9~V$rnKlo```-#4OLQTRwxQqNlE;Q+UdXvNbP8vp}%UHzm_mbIFCG&OkMDyMKAy
z>H4wr?oA_NI{02wzzz=AGXNY6+^}PN!b$6H(U`IKyMlDk<Ve@yp&d+EzAkV8d<u^!
z_cZok*Tp|sf*O7Z4eO^RP#*zk=5d=|9IX^`V}A=P_(>Rvx5R|!e0Rlj-31Y)5aOUI
z$z;4H&;=Dq!sUCXDpig5%k!Ney?@0kY<AfQArGZXR<Hjs1FP4l!=qvl2Ro)}YDZ|u
z2{3#=bW_BLP!Ss2Fa@ZLXbgtlcfjlGxmfc7G*_4?EjK)U?*Jm_)^`TGt$v3jR5DG1
zo)H8Y{}J*+-JlMm?rqFBh49ME-$Tx{7=0dJ`zkWc7eIfE_;!a$bP)v3npDMOna#*B
zn#F;ioAg<IUb`~~Q`roRHI<+`8`YVtgvlk53|4*xVElSIu35m6WtP+*X!@D~5WPc|
zpoz-%%ce^eUStCr&q2QRu=ERCIrX1`Z}xuPZb&d&qka!j3)6y{ts~}uDCKyzR0G8F
zAdYMMbwdAppU^v6v@y&2<+>3nLK<}+C**ncBQLTDvIhX2PFdyDJ>6doA<chu>*;c2
z0?`q7F1sC+Zm!WD^#MX8#|dRpjj4R%^==X)e<|XSzmCXkH>F{XL2SL=qLtbin_)Hq
z_!-rk!IGqI5lb3wI+gieT1VPW6sjr2KE)+Ae3q%q5>(Re&28)-XCxIF=4FjPKUNso
zxi?v#vW*PN4%}w!<w!iCUdo`Ms-hCCKgFwPV?8)2y47_TjEvk2%$sIU5Jca@QRyip
z$yFMN>`GI~C5YVPvgfT7dB=H`;8=qg4GGe-Z0XN5ZLAZ{=hNlJyVGG&$+~eVpdrk?
zoRK{+)HNursW2eS(!dDIWDVAXi(!Z0x|BTX{~2Vjtt>@id-(KA#{+-n^mTrEa<7qT
zRK;ote<_h9#mzfr?Iogi8Nc<$QpSWyfH!b9Bz<{)*qf6`=QkuB6p>`MKak4AkLk3O
zlyYKaW!|<27SH<pA<wDms<>!RlPYEXkDrnu5fBb?Zt3+>6fT<7F9Cq#9SMMM?X)%1
zAxsU{EgMK_VKo|mV;QGKW2hJp`M@M}e1<ZYYMI(p;G!<$16t}-nldp4A8|JLXd7kC
z^ueH=-7QM$fG-A1_13E%Y{06Eyq*h%F%#gO_ZTh*5bQoM^9ZA(s-WHg<$Z)4i_5{p
zD--Y7kEPuefb`Q`Du;xyH=KR#=4R~$4K7^V#|@j4*&2UhI$(<MQUuIvA7XDmG{nP%
zhk0VbxG+LSso6S)hJ9y&RW7oAZ)?W~>m-qiu2N9rB3_WLIvDeYh(~*hK;EQ8GyWdB
zY9*`ss=T||zK&*r2d-SB)S$Zp)4(G*WvG^<kkm_G(`r%itZEepb>JO>pvU_orn8pM
znbQC%D=)5@elAoPp>QHJ!KhstJ8?6KsR6Jn_NXFtBi^U|GW^g_5=GW;#s+{yYr*$m
zHl6Cld!JJk2;<cqjKXQG+SS!^vy#d?v;S~Z3Mxe$hWHzI5%K<0r`e*h$B!hgf+!j6
zIfquVw>1vDs&KH*8?=Tl<3Gnt;44KEl~cfmnAS%k)y5+#<M^6uR6Xx#8rC4rE&;0h
zAWZpOvk9@fB@BzXJ=1M}Prtw{!1MV|ZYZ--WC`E`RS!JY1yj=HTpFeN(0{L2{*xCz
zifRXNA3RV*l&sD-YGN{ci)Mg=k9w+^e!VFh&F_MN&-68jLb~O8(LAi1VK)m9QE)EP
zk82wlS?C54CV#Q**M-I!L6?Ri*u)TZYOQ!{bQ++}X#fR!L8SSpZo^Su-lZVjNpfP}
z0xL^cGo9zl6F}jHXotKb{;1A(){Xkk&m520!~<yYx+}KSQs00?6Pcjm=2Q(L6bo?B
zTW8hHx2Gl|0UAo{yw8-p`I1@NJCwHC9bioIb{*?r3go!<ayjOM#S2O>n(>@}G4>XK
zdjU-Ktb_(;#cAhM%j~9QD!Oav!tO-Qo6eg${ou~C;hroOzYL&1QP<Q?VY>#9^{)SM
z-MOe5;$IQxONQETHLK9*bpQRA&(gHblni_P@X7swb+C3xNV^v$F%pj^GtpHbj@S8$
zI@NPH=8F2!bIHxzw3rpVw@8shQi`$?Rl*q1(%`iy*jq)5et-oi8Es8dN*U!c>k`-r
z%k!j+k<=OqA8D*ARJZCglV&|NL5I5M0cI;UnWCpx4$GSgw*CTqq#_nKm=QTLk+HjN
zTUGgUx?{s<*+oU$n56WJ7Pl)ZY|B|S<B0XR#FImSc`8SbYW2GZ$q}c?8hpQ$F?^t}
zdV;-_VC^*mHe-81Tr|Ds`#5GbrF|K%@a;~&nTOL4QO1tSa0ZG38r5~m+Wz+~?l+Mu
z#j#Tm87lX6_^w;g@}=(0rJhI$;(y6lS$D9*Fi!-HMxQK}2!G~Bbg_k$n3`8bRhCLX
zk3>BeP+tPmE!s1~ueH#UkNhfd2;Uqp3#VA>m})!VN4KVpV*0;Ggewk|Tzn?uid4LZ
zMIFqn&6qT<Ux+Lg#jsS>jez0CVlMd?@ofYT5e!t^%L*v!p~>>?Zg&8Oc4j_b7C>Dv
z3k{*FT2%IIh^leb#K9!Mzy~u`){xT3Xy-`}5G&@*8LqJ+w8qp;3&8t11!Tm)mDdh4
z4Q=_I`oxv+(M!^|-s;c1oeg<6$G`PmSdmfEN($lI#{_yqmWEf9xch`n2h$iERL$ZO
zQSdWx5vs;_vfb132HnpH{&Rugz2df6$Z5Q?I;AF%5Gs!XDhLEwhooL9d|L=+N3J!W
zH<E6vW+6;&2!F*EIPB*zupj)&y{7%AR36<Z;%sQNuYhsAFelQAAp=D{qy3dWd=v!~
zf+prH4}rJb!FjQUEo221H6w7AQzW{*Q!z8-NhA3(XA5K<v=21|4{@rMAs3jNJ;8=p
zs6%zWDDAK4VTzdbl>K0YBUSv(0JbN#pyPW;C7tfZZOqZ!7@0H<#v?YjcifOG1K9d9
zJjxGL*UN@ILzHbbqCUg^7XFJ14}M<3)0tf-pA91T@=6#ocw)f_)^7?Ga?A{ur`?EW
zUj>|;hD=Z)bf)8+7W-`M>Zki?$t$@TD(QE)HF@WDZGa9#5aRX2`*D*X8f;^~q`&Ex
z1T?MBnA9H$u!b0dS?C4&LM*n=Y>~G{ViMYy^(dPJR3<@nm~fAntd@#rVO@0KmY$F5
z0&MI~N$OHe>wJK<f#QOdS^!AqbaTitj8`$ORpADp>bEA#(Wc5PI?u1%zV#lcRRNMF
z*-=8v(Q2Cx-|=P?f5xiyFk*yU_d1PS?M5hdHzH&Pjzv*k0$khEk+Lm;b(}*WP5m#s
zvm``%E@GCyR?YV}k<I#B41X!Q)`p2>?<bk1i@>S*L6UNr8O`k7X(c&?*X|7WaxB68
z@%9Y-MEz=EN{$_*DDAmd>_~?I8KdLr*DO7{<?&uj#qFtjjE|dNb>zI!rLs5G@x7pq
z*WEUPkwi`lFIMLrby>qlL?b}+I9iYLel$1?7NCgQp%j@-wQhCA4F^~`PfMKI0{XeC
zKYb%v5y&Q`PTo%6ER@5S&}gn;jSsl{SP!^$_BGGF(g)M7B-1<RnM{V0RGfII4_pdk
z?#F<%e^*isf8qOOB^z&S9xt$=S<~0iZd|0Pm&5g=R<_~NWuEGkct_Ah1bVAtA0Q_1
zd09)Ji#d$Un^zTNxKSM`gL)1aE$_cd)6D~9>;};{8y+%@(DYPA>vL>?>&I2eljXRT
zyd(OkW7~tClkbBba&Ryuv2A&5sX<A<0T`oP^o`MtTk9RhD#tke=PXdP*{`+DtulW9
z$tU~Hl6~)uPBuwlnXakCvNo1_@V7*GOFMIG6)8#hsRtP>PF<GUeK~@Cg@gZq4d>Wv
z2-RgTFY$cvY1#QjnB%;k*dC#Nz!9#h`@NL^)$9Rk7lD_{eYhGT@>g;>b3jEjmvykw
zq+m11gnIZ+wA6RWqD-A`Ia0L|j8!oZOAZa{VVyxXB}UYBtxmVEE_#)Fl1TBe94Huy
zy;nVNLbTzgCiSCu6y5GF@)P<l|A1OVbQp`+Qh^^CjK;rrNb*R<pJR@!DS0YqVx~9`
zONKiefgZmb-=rlLJKJRhU>kr6m|g1D195smVv)F5$dg7b&b*JOU9OC_oO1#eEdyk!
z-GzXD=SIQm8`Dt}Sb~<wlBJ%MadQO-`MtViwrq1gxUmXnZaun$mMD<30E{vK(fLi!
z>3DnUP3+@Ni5cmJ3s&6o<gSNMz}6ppofHE1hzjmi6G|ZsIa5p*c}4@r=RT@Yy0jW`
z9`kGjy68FV3hV42ZdiY90|5JH;h|=YtYRN|@$8fV=rJ1Cl4bEl4cv|~x5O$mmJ&W{
zjN^DfR(3Qr>fMwvFMk1Fpha_QYfauge$^f@U&}TJrS%`Q>$VuLbO26!Q<v$A9&NTt
z(blZ1+6_ZHP_J86jfu>Hy}mL<^L$z>yi47@6#cY4g7@LDdcCxMCDfDL6d6x}YBRW}
zL_RBH1MMJDHw_Pkx>KdDD-c0yqPR7{QNQhckh+hJ^GN{nhZB#c$`HU?h3po!6#-qD
zFYN5VPX+69f$0(GGl*5<tBvHfBv`Oi%Q`hc-olwQyjZ&A{r%>-URX!eUQKCGBZA2`
zYJELb0^(OQ%+Kl{&eyU1DQ9LIlTiizP1u(s!hh7o92CIrw}`)B>%NFRa7VYE4o6&r
z27^rq-_CYPlrhT&bE>s$H$+>>0KZG%wwnzuH@kpik?!awp3NAIOdpQN&8FjG1v)6t
zTmd5+$qvGQudHSm5908V4Vh8aV8!(~6|9_)76J(+8fY~?GtDhjYacH@{08MA43IaT
zcD}oKkXdMaICeizr=czfDb8CpTjuQga-}=YE-;!KDG}54?RL8WD)2_@p9UJP58zPS
zF^v66!<di5ZX$!d68eTvqM=xR;_--3y!X3uu@6v)xT-Wu4I;ZhSAcR_mj)GDje_Oh
zeA4>RdE9)0{|vZ3`jn=#ZD8juQtYk?JWe}2SU@{*Re6cpO}j;hxx*|r>X^0wilc=O
z?R%A8`O-Spf7bvJN^BGbO$kL13rz|6TkXu&(@=LDC&yAj@++@yyU%@<$+bPuu^C-z
zj_|s@s$@W8Q*QF)BAb*JimCsqN_7PxjnzM;w0zh8n{(&=cL7uwLPhCL4Jc)`+FCwh
z#8^wUjzrsP61$!~WP+0EZrxE*J+=plI2o*%!e$^k7YB0X=E}O?u^JLC=SsxRM;Q13
zBA?|iIqz4a(EPC|D13@|aO~?5iAx?3G@iLEBbA1Vj@Xw*Om=$B1hx!@Tf#30vT<Gy
zORK-bV$iculhCsh^hX^-)z0TfRE;;}X|$EP8tNx&k(H;Q1^M3x=9HK%0aRPE^K|bG
zd{;?c)#scQ6Np_5JsK{~rVaIl2X^lDZxY8n@MJQKHK^OFoZGbInRc7wDskO2;T?(R
zvLl|uoEzii;@FdBe<U5?)-54GQy8r;sJ#tzM_gnpc6@FXvJqp8YAz(cO_2B=r`Z*N
z6(tB=S(R^8WEBvH^>^Ol$qehuvE$*f1AC}E7M!^lL+xwyc=OGoE#)5Iq2cV!&M^c`
zDCOut<4F)){b>Hy2yv9_V0c*JNQ)~y5UGt~4%xf>I%F6He+J-I@DqTRha5n#MM&I-
z;~Yxffb@;%F&QIu7yPm$SR;hrV-bL^41=NVB3P-!XaRuJ5oehA@GaQCGL3J=>hnVY
zpXV%fYIg{E8Zz&P`1C9h5uP?esvbn{!-{s@DZoaM88z~?lca70+Q{h?vWF1!tnQcH
z5SMnYEYKG`x;v7owKTs{*Bl$c#QJFfK<0O2cr^%_=QW=7;s~oNz*wsXB#5+w9;)2l
zZG465PZDvt-z(T56T;U_$}KT~qH*OfKnZ0()OUPER5@TE)j*iISj&nIC{y+}Lz`+q
zbidm?9DNmiUr8EFhe65$NacJ=&1a1AWq`kM2?y+2JCK8unA|tN?CoQDor5Lln|6PI
zl9En^gx5yRWP&5lvf|;RWB@Q98k8d*h3FDGS~u71c<>>TYrhb!rKcW%<cNuyb`qC^
zj$^zxEW7b3Csv7CP9fhcKtHN4PsX!_rRs9jK|<Q{f2AT|H<(O80vsa}8f2(x?PszH
zriD0wEXk|$d_S|{%S8=gSWB#|ECe|O$N!2p%?*8T*=0D4G%1(b+UIe;DNibXP(~ia
z-ZLRjU=o=OR>JZ=m@1HS+070z6U`g0Sx6EXYQVQ#_{xFu<0(=BYO&(dTX*^d$Ofb3
z%3nB8lDuLQ7+lsVxn-KPts1vC{B8Z`FsXl4$+bZ_E_1TOa$s2=9s1jJp7ln2!Y3|g
zf#rhQdM0F`!yS^|xm`)77~$A+TCz;ECv<e=ieF_S;&WYW1)9*D#EZuPIHz6iEFIs6
zk0FCaNb56f$2#|pm`iz9zq;ah)eH_sJTq}28H%z_8+8Nd_q#9R?~5DAHlDx66^+{%
z`LN&hs$$P=r@$PZ31ya4Zp-YYHf>||n1bIBbnXR$6p5?IWZ!?S-e#wLSel+@O4j~!
zPVoT85Lh^ypxIKvncC=#%}3FFiugMG5vjF}FnUBlpBZ8O!5;bM;1|DXFWU_&-iP4g
zDfp+($qF8}h;2bXD5wPT&MLh3EVF7q4*_=vwY0jFro7Ah38-`#Io>M=flmr%P9A38
zG4ic<lai0c@m)Wo$<S0wkIhGaHwwVWe_9yJ=Lf_c0`Ig0UI(4Ot}H7AvdJNtbC^rx
z4qsK#uP`Jr;-e)9f^k031QXD;=LA2u0LCiOavAv6gnuA6L}|Nc0JBE;v4PsE9w}FH
zlKWMP80UKg$lqjuGL=5?$SKhc4(J-cS7A=FoB5(L;|>cI9SD#0-l}OY|8^y;p02wJ
zm%Ue2jVxsH?1zlI{#Ji<<*`eY&?n77%ufco5wPj-Hh{ijxxN)E7x_jD9+~KouGWEG
z-wCQ63&xlsw1afNJ*KWk4_QR%LwKFE!GZX_9N!&DojvB7)X){vZv52`8J^Zv01AIw
z=1?6Gu*Rmz)qbVs@dHmAy4Ns<*6hXzf!3<H^t|&ZN$}l^FNR<IuX6XJT9uVlb<ZB%
z7}}3cAUOqRP-6>F8Lvps(*8+${70_z{ghR^_@wCpJkp`pgRU}MPAB4?>BMcB2G|}r
zxQK*khW14lDt~m&$RwwQLYpk^*SwgdK3`<MgdhC^Y_CkG5~E?r{gZ4my<g21H`7ig
za>Or%9sr@O=Zw93=G9FQs_u|lCgYa&G7QM73O2*t29P<^l%-{&sch!KVSDDg8L5Pk
z3bM)vKRiSG<B<&POw;Ja2A}jqOGs>F^%iK4oXJjRjl=uUWwGhe307=A;k)f&2$GEa
zl=P5`!#EBQ(-F*`kGm%m&K(lbYel_}-Brr=&WnpCScTmdn2t<(0GJ#g3?TO_WVI_%
z+KhUd^Ui6|Wi!#9h<+&*y})MMU$0Qc*D<bNx*t{c;h*ts;kTQ+z0YK?TZzLc^SJeD
z5Z|M|1vv8@6)WY=A6}T7qXUJ+vEVi^?bZG}4$6)O(kXTmFR_z(EZbIlT@sr!mm@qt
zk~_oyQ4&FG-8g4OvGQuK9O|8C_Y_sLKFFISlbiiTJsrmL>bRt8`jeG>pOg(V4z=zV
z8E31`hdcFqt&2~uhW-ci0aj>ad?_4w0-~|JXLf*B`hli8!-}*6&-f{A0k|AA8Ugk*
z%kHjEHgO<ga;I#Xh3{U{f_ZsMwIKS*N&V_GdVvJ2i6#;b8;ujkguL94qD<1MMA<Px
zKu#1N727Tnhwe)nbO*6HY$vb*YvLmQU>$v_kQ?>~sk<yWQEVG~o6TzB6&Su5Kn<u`
zRoghCt%SIi)7H^YZWuu=Htj%BayuX6^2(8)OvOco_?5(U3Mi2F>dqxG8vKC%3Uzs!
z)J<-__0-4z%!u>ZF7tl<iqqBE=mlu05Q7t_Sw&{xrHL!@h(dQtw_s_udq{@$SAsZR
zcKBa7Pt;Nb^+2}95gl_Zg-Hm;-VaChQI;4yGG|&(fZZf2v(v>Tu&kU`5wmTc5&vfu
ze*QaNhUh@>#jhSOanuO7Q!8sLAMw&KL2~#FO4v|7SUz7FD)TG>ARgiOvnFIxacVnm
z9a#Q%09~h161%Z)7mW1>)dSQK9|7~ahep0w8x(P3svgWSN$qq4f!|1P%B7v?G+9HO
z$f(iQOB2D>7hOHz5Kv6BgG_t7lPG=_$Yo--sH$%eCeRtdgj1rTIyJIwsslqN$j;y*
zU`JtOl&~QeVUnb<-b?}RG5ew^#<c6hLF#f%Yh28HC%YCDd-6T+My5IbZhu{o+-cNx
z_j5EY8eVD%-iu*oM_Hm@qG%)Cy71Xf=O*bNyQo5JlrS~!HOc_9?=A{13g?sPrSItg
zc6gG_3R=#n$H~G&FkjklCjTZI37Y$x69SdO4Y!C=c1Hoos8d`62=GiHVUCDkZu4-t
zO$nSXbB<W#DzR0#C;oVBPwgUtC|mOk?hJEfGIL2+YFhEiTM5jF@#Z+cYW=<7FhUJm
zM@Fu|KkWF!{g5twa=l43n*;uNHgz>RIm9|2t8yf=6d`_n0${T?n&ebNo<gEkmEDC9
zOvm|_19GM1&#dfU2W+hP>9E7?;uP)1zZ%$c1Rg;bqwikr&|5yI!m)qp>Lz>;Aa161
z`Qw6VIPwTeA_x;GiYYL0wx}`w7aq4CMy3n;y=(9pE~lzr=08Yf<V@*GtUs`t#xe$f
zF@c|F8vmR`-v{4%budTYmTN7kfyo|FE&3@H%EeUk16*pgEzY8GMJx#Jz+e6bpzjb%
z9FztzcSRe93Dsu%!|V$(z1;XXhJpq5p{*BbdiDp;hvG`di=Ejr^-C@=h7TDEQ(JmD
zchX`xxjk=QJ&8zxwn%7**u=U70QbMfN5!&1EKUC<<FNMKl=5a$htYoblTHyY(5hE1
ztC(_a{%OS)fMBNcowc|TPG_41T;4bVS$Sm1lXRlU!~5mZxO7Gw6#6qoLQw;I*fnp|
zOpB5jCD7@I7ucxI8t5{@t5My<YGF~VUi;2FCzEUJZg0Q{zY!|jvzV;uhi;73CG~{1
za2fCroEj@od#Xv=*R!vn<2L9tK$_Uygl0#TfT(9z6kl<AKXR+1$A?S&S+qubaJM?k
z+RwIA$d6PuUv<K)(;v20*1k+}2(G)4Jyv{A@?t={neW&IPEHy*$++bkkWeqDY`oE%
z>l;1@-2xu}LRlT;)iFOLKGg#2Z%sCI)cvEg^h5coS}3X)CGqEo%k$?(<x6p%_k>|j
zfh=+4rlD6lY;mLiQYByMv)z73yOBAQ8m!ygYgseud>fHj{vlVC=V&pEp{oz0Kdlfy
z!9#7Dh6TD6jea|Hq>jjx(HP)kP-WxBLTE~;p>Iq36_a?O{%7N0g60c^W}U(wm)%Fu
z`#eK^tR(3pDxUYHRfANO`vXf#jEJw+?Mn-P_AE0Qj@+|8T@1fK_*16#Y31;1UBG6u
zG1&lrnwzJMg1%XVy#yFyLfytTaJBtUZTvCQJIeL_+PkTZZ1mK0K<*tWC&i5V>-w&!
zy>RR<y880Tu!ZI&m10GOmCp#Yu)j(*>UTRrxT;tzQ%Krl#^FsAgB+sbLGsZ2jKCwB
z4yV}ay#MMI#=T%I>K5{C0}||37p4f6NzcwI+?OnKmgsZYRL@_1>j`E+owuxTDAgcY
zoQDbCNivAsbqKn4+J8e)|FuLpK-{92lw39qlYB1Wy|2+lZu(uA&f~{n);Z1fS5xW7
zWjlZu$ihno*%F`Argf)9Xjo*{l;8)Dn}?rQt7BTuy*{K6IMIvG=i%aI!v$5hmbulD
za?QDl>bF(Xg2K+cmsX`OEz~FM>M3^rO4qotO?%M~2el$ijxr6=DA<gU>`S(lck)#C
zT^3&+EwMupjkf_$B2^V=ShiJO{dV76`G#@xnKIg5ucraulP5TMkC>7yjZRu=l##mY
zj6cK<Emd=3{yf3{==y!%bJF#>jGFAf=7-Q%AJU}!2oNA_^Yj)6Ye-dHlW1l87#5FI
zWfXP#h+qETWB+j|APRXZ9S7o3i97X<29i%tFG(>w!Z%3BC6C3F^|x3kb_SN`TLbHW
z<JJ7LT?66Z?<w5CK5M9jiYZy{(iN#VW{x2+27-UuO8y}jA4Rt(F?xsftXNc!3{rVD
zcJ9Y50Ob))g&fmL!yk;A@XR!n2-1^$XQD|_I4vxxSy9mWnoD|-cH58}r+k_ZLYXfh
zP-O>jJ@U|0v_oV|CDPgU(3A1k1a`po>G$w(MPaj2m0^lvp={FukC)hPI2PG`{JJxR
znRAlUxOj2NO(MvB)zjsoQQ142>PA>nHr;@qQC4i(12Qu%2d2*G!sZV|{n|hALevx^
z%M<5|@uzpsfDY^<Ef>p)^lOdm>$Kxrs{RfqUwN@@*piA)IKA;K!EC@#ZJWSM`hQ4!
z>#(?%bYD0~kl+vqZoyqca1ty?Ah<gOcRIL5ke~sA6N0;I@ZbdZ;O_3)@Kw(_Gqd-c
zea|;{?qB^pJoM`BwW{8F>t`h<G&fQ}UFFr^nEuCqC#Li37C<c`3AaTDZ)?PDA>o<-
zQ6@_-SE-u9I2nZVbXm4nw?db_hgGd9pt$X`uA7p9%dlidWXdJVIteZUUrfor+O_&D
z5TpEv9eLja8>CJ2g_U}x%!ZX;v_hZ7_rj7te)ivFir*O#k+8@~fk3R@i-3i!9uSwS
z5p!Suxw`zfKFP%e9$m^8C=zX(5-X>!Dy4OR%&QIPg1)i~v~I&B%f7qe|9bTp#Rpwu
zJr<*Hg|(lyNU4Nv)&)c(TKuulz^?vA82)0x*Vpi!wdYBYsxbW5HJ*37zd@_c-Y&7y
z6;Z<C$lU1zII~s&#=O+Fx&rD+=Zsj-;><@t)@7h+k@gAZWzd%4TKOXi4jvoq;zJ6k
z@_^s~L=Q_@>K17AJ}+Ad<y-!b??43iaWqdDUvlgRr#H`-MP77iqC<E_OCs5yMlS4a
z`O=2JOO5;^)XDwnzqwJPlRhtP=(c50xAqzY4VeK6wV~3V1fc(=k+86X&yWhU+Lw!O
z{_|b(C;BXgtNpZCfxHMuvtn>tTCdIpl{ZDuH9Q}5yrEzJpw#{ENAa&y^nX07|Ne)!
zgzzZ&oYjS|Qdr!}6y94m=(;Xr$=dvnAM_XB_W$rnV$w8`rz36!ohoOQmZQeJ{GCxl
zi7N_Ql;4gb{`{-{>qq||F7u}^+%FXI`|nu*z;}-+^`PH{OJa=FT$H<?M@1;?unx~^
z*XDi9P|<(-3E-;X5{AEG7?lLWV6Ms3)eZsoAH`{{yu6O1U$*W3U#ziX)P8ngu3_fm
zsKU(mb}BTjR?mBatL+{?`!R19UjEE{zF$fIUsRC){tfp-{6+7VW92gHRwiW;7A~;U
zm}nwmI}bSnfGdf|=_XFcI06znL#h~_G4OQVynbb?{LfPV?>~e8ssu$i@xW_2MzeC6
zfVI5MkUJ1u#2-l2upgtQUsEOf=9`ATJ8dWlUvbChXGX0b4`-bRtA3v~ME=K*We9j#
z4S})e1!TG_1A=Q%Q6z(-o&74T{t>k`y5dB?Wi;LEM*s>i)%TxIp5(Is&wtq(>f#UL
zHYEtIx^th1dK-nrgzX%*7JV9o-z)`qT3h|#5RR3A407VON$_7Q!(Vz~|LO_0gvvai
z0+yZAPA&6sUS1__G66FLb9spg?SG;(|6P>+-D}3<pimZfI`dN4Y>(wpp%(Dd2|X(0
z|9{F$Foo~2=2ghY(QppUO*9F$&4EP_d?>a1kAF7svO~5XQ+-cU0PzMBgfqECQjY!M
z|1U`i8MtD6P~bF`*mF77O{pA{vC&ge!AnOJWGoY8Lf`qL+VcNyi1+<Q#8%5ll9CUr
zu?lxoC6gTg;V?i|t8OT4vOquaCwTAw=5}zS!y%4&MRi#*g?D>^GQ*i{OHcj1W#X>}
z$)8H!|M?$4ti`b4*}ahF(^4t<lm_h_0X+Q=%sUetYzqE~y@}ih>r53_f3e#An*(c{
zJ~En3T5;U1K+2+@fQ&ahe~K<*Vt3LZ5<cG`rj8$GUrLjXAXn0baW8c^iBzkAp0Eti
z?N|Pf$Fc<$qEq6w1xl{tYN$`5H~JSy9Gl*8>rP^3Yq+`2;vk@@a7*5I*U_Roo}CPe
zF5t!;6aU3isHFVc&g5aqde&dxzTJo;@;|IQ7MAcKtks(1Z2W^lC%{riq>#Wx%U--r
zn8vGLgriqcL=~A5TN#V1#awLHV?S>Fhn@SsyUzaYdwk!+eHEUEqrB2VEO(RKhOIMc
zI;Yb$L~#89*5B!DM(Ioa$G0vX4wdF$%%&ptBd9C9?pPBkK|GM{F&m+azjo^X^^N(L
zzq%0qE!AN$8luq8*=mKJ2Eo;FT}CYar_|<O-th0-4ze#|$GTxb#2aHO+48~0JE|H3
z&TNlLRlffLO#8o^v*1%<7uA0~=b$hLGu8J4>pqpiT*BK##?OTrJ65>=qo4dYCjo45
z2~ficshr5bk_Jp<EM7kcD?^I%YB)-(z<)XpK!q0*5;pr4!%*J&fw#*BN1J|$cLu1z
zKP6^15hVS`izVn`UOhNEZ4bt4`-qD7w^sP|>(`I9o>nT{^f*Ek+~ydWiUg@qc4+?k
z{`wOoJdpeSKl<MPaj&S@vlYk-j#R_avO3FGn0OhAMuXiZ{v^Qu!|aL_tEc4v4$x09
z!5s_OYb_mhQDA{+3CW&1o62D+f0((d4eXuq8lT04?*4((`^#@RH1J>f4ZyyK22wb5
z3Q^OoM1qQkRdN(Dwykw_tpB1Q{B2l@-OvpIm;jdYzzYO~q-E3?XE%`jS$>wvp_fM$
zKmrg5?6=f_jYi%hd7l;c|5Jt~Q5Iu}sdzhmz%3qolaVE*`I?Xd>;?pW)Urjzz4(`J
zF^vyLEcQEwQ6;f)7T}SJghFl(Ho9|eD`7?>nKG}N)|KU0@jcGA@lSxEUgtQhp3YoX
z5eYB>&LB&G!dQ4ac!Et~coRBz;Pb?sbiuKUY{}sMS|f@50+=KS8vDY@h3m%Y#ZGQP
z^g-ir-=={ZkWCP$G*#iAZ;jGZvUnf&(6@n|&Gf4A;mi<F-o_8YyuczrFhaLsiBu&1
zop`}aPGrU95(e%o=|TZD@d=bzQ7>SCJ8NC3Io`@i4JR*wNiE~azd$@I)-RzYofix9
z&$adcx2CHlRLqa_D^2CwP`I`b-Wv-Hhc_y1sV+`Ze#T_9L;9$PVy=UzWQ2s!^(1@k
zOyVNPeuBLCCx72teiz3P!=5fNXf6e2=XP2z<r}254UmRHq7T$v4uInCfLdvI0oz2_
zfyHY5*@RA@9NUk~p1AMiGKRu$`{EBl9snQzU@Q81qIGd8uz-Gokufm4??4MJCPp`V
z^DP&Uo86;C2%l>fgm|O%>J1zLuP=$Zu44xwq>IcIU7Et%g}+Ce74u-$>q+zVc!}|h
z*I2Gn(JyEm2*fyHd)_=O)O5XFP<p1`Z0mA8@hZsA3Ftq=;^x7VS+?(l(WP|wYp`sQ
z+t<|5fG^VYheTUc+bw7N#IZs{Rpx>0LBI>J<x9X385V8+i>lk(130_`KpYrzcFz40
z%wR)rnG`%q+I;^SdN+ekibnmHQ{(RwRg5N5{mwLG!mo@}WE1U@<E_H;8(vZe<!CW+
z#8{vmD+L@keprC9FAS8~t69JV3O4IYK)rqL>_r+7w4ZbUcJ=n}_czV=A?Zs%d`1t`
znvk%Px(rcd9A>B+A|U%hcTksrwyX%>`W|{Q=>BPksFvWolVqh8%q+Z%5a^UqAe9l2
zlJs;*Gem|41_D7-1(gTP$vv7EH3J6rQ&@7x;D&S^pkInjy%ad$mO-om3XBSi2TJgh
zL8keK^zxTHp@f{&8WDWktByw<Pq#nfqrvPEZ9w6xzN2bVqQ#7d^^Y}33=Iba0?@Xy
z)$ih(M-k}brkw%whybX9i%P)&Sf6h!#$azeRW_=mBg^T0l3;p~6l2LvzrWDzJ6~b9
zlokI4#<~Z>As|T%Ujw;foaaIE8^WU36g6=NR4+0cU=Fua!jKKka2&0gSZKWUj@Jof
zh2Eul%yh`=*wX$&o_EJizhCitR;r`=ixyZMKzYY_FueE2%pKryc&t^!=U+AGbWQjF
z6XEpcv)G6nz2bQ2mmDn1sNck2AQ&I8f+TrSc_a+?e{B2;`4H04fkyt#8=Ds7>il-t
z&dZtbw8tRiC{_0XgT}f=M>DO(<L5(PHD>)X>n8!UIFLshMw+%&YA5h!t#O*^(%<{=
z=oRFLt!$rw$UE&x);?zthl3KrQvPZ)T1WO8Y}-P5w<dm3IuBKt4+8iM&GhBV-yo!B
z8($L;23||Ricz8#5CccO2^_$b8({~z4!|BB2y;Fvbl4hcS*P@oMoLd4I`!L#?EeFv
z_m8FYi(3XcDs=bZ(lY_$B8ROqB<7%y_cn5~5)O`{5ObNnN<KUXgG9Z^4Q2#~l}TM{
z3qTjE_1660x`vfMbzr9TI(INOrjAB7PcVz^Mze1sJlKFaPWJUKX8#u1lA2v~u;}dx
z?E6?JU_d9MPfhg7UBwp)0OKQv%jVE?B0tY7fM;2MO+UG{;kS5Gpj%(Xb`8+Nc2Bdc
zuj-Egy{BrCf3ZE0A2?}SkEnf2v{6H{a&Kf}1IjfgQ2|LMpLIm@{a#qv+W!i^RJy`z
z1+s3+@(%>i9*l=(P15kb^DL=cv)4h4)v=p$n6}JWM<hayWBHw5P^`Q$8zskv^N?eT
zq*@_U3bC+8KegeIF3AfdPA!2PfIg(JvxBjWH?tg`M!>e-kNWN%Ljuf;S>hc2Vz7fi
zhb5Fkv}u4J{;)U&U)C9V(0ngam%5QixCXRcd#zw1YkZ~6(OF3>qrUrlg%yLx$6eHW
zWaR9@egiD?Z7_po6bFl07ZW8ixtn1;EItSu?^+)yP6dvXZ)Iyzeec{Kcd92A^DeLK
z!Ll39h}1#PoLIQ@!vzR)dIm>8CW78dd$Ub)b%Ub#lO<12Zp3(?6AGcWZYWlX03!Fs
zMzxH&*bA_*VS4eP@;re{JzA%}QEA#cySUFGuBHFqi<>i^m`O{ZqZ3a8O1_Hb2t}qX
z#wV)x6Cx;-G+F?A-f?p;t~_<SX;X1Yi%*a8+6U4ihTV>6?r%-8+EzUc4xhXZ37)$h
zPAmb-cyaU|up6n$2_;igl1j-(o-qZzS%1=eDft<<#`k)3>B>ZCAB5$cU75V=3?l(H
zvo;LALP#>Ex`Fpu`NIjY@OaC27Cs!=tDY$yE}-y_@r0??t{P8wf4J0{7VY`L>3rlK
zcwV7Sh>YSFg%V^EYjzJr0k~knV8(0%a%8gV*<;|b+cj|b`RPb^i6Zv2@$PyVKDto4
zz)HWO6rKE^lgA3rFiI=Y<r(PeVL?=n@n5e5pBGjPJc3zhnv5#jFa<w?6}x#_GM`U$
zp6V#KZ)4&9&h?Z~&;I?}=cpB?D8onbp@c<4FooKz;4wa&5pU-WP?DEWkOP@tYpxo<
z6yl)la~@@*6Tmd9#~c6<^`vw&JtP1CESbwPftB1AH4dqZSvTMrvhGY*rX{dk_46%!
z1j|XuMCf`s7XwbPlP-XsjR5G11+xY$3<Atvw%zWV;kN>VyW_aCw<2cSF^5w*spBL$
z#Pmlm2a!vry{6wgHs5V)G=IL>X}&uvp{vR((4&}kk&iTNMcrF99(1iLNjSFd-+2Bt
zZI<=o`Jgbf_RqYLg=D7^6&8Kav`on?cl=UjDlFTQU7Jj7koy{Z2y;ZtBcm)_k=e^l
zBsP18L7U?*%ibfd0gZ~Bh|bov-T%5R!oYcDLKS+&75+1xSjPofM)NiK?j&{sp7sr;
zUyiBJU>KpJqZ??cNYplcpwB|}BVg)(hog=-9wsc@#*=}1_ZN=15~(gD!D*fs`&U9Y
zXFCR}hG83<rhr=1dyGksb0$S{Rzh1UW%@HGh6?iqi~g^-AWh5fyC9Jxj<^ZB7_7|x
z$a3zbDBSS(xIOA}Mvyv@DhXyZkf7@L<)5>^OA`RY+F<=OrxxJSl#jJ_5LvW952WPo
z$h!oi$Tx>gj)1ELt;<4-^W8JD8;m2FqXPH-n4EuZw1#vM<6Yu+LG5|u7R6?UGJQDK
z04#`|QrHIpDBq$l9e|+~7V#9)6CrfmolXr?Ao8E?PH}hggU<29HWyH=g6M=C(79Nr
zMKVEao^}v2lv4^)peC$BhmkV+U`wW?u{E)y+p4~y|HEZ7Y~<Ld1oU^Xb$OJd2ls_X
zzHfDd<vqyRGOq=6;>(35Z<8UQ(@~c*3^Pn|eS_F3O$JewRkxOVzHEL;5v`MwH3WP{
zARZ<(T3Gs4DMRWL_zXr8(hJ4sOCN_o>fLj=FQ}<HV6j{DrVuyu2H)osEIIGMF-Zu<
z_PdGPn1f6aOkkx{D7rX}L0&Ln<UAm@F2s2@=Q4WBtMU!y^woueos)?QD=J4ICK>Sr
zr~nM}cQXrj6Js{L3Jbh^sEfzUY$bemo(D}&0@fuK`_1Gdv%I5hrH}d+jjn+b_YvqE
zbsJ7WGecMm+)!SeAk<~-GPx0W#E%jNQ@eK^A`E9&gnWCtqfz@SQ}2M?ID7Fn_6D-p
z;_uk{LWHB{1H*k@&bLQjA1(ES^mGu~E`#P>;JzLgf%&om7ARJ2x%BAO7_3+AeLVqn
zE}Q|oK7_$H<<-}uD?hwz=H7*LNVE@_MjFSOq1*=uMV{RB*z-4(r<mM^4|hsA^fMuA
zmMxqZn_0+fI*YEzfBrdwxF_2iKa%Ce^g4B!FP0C=EB~<-qyXp@_%f{Z)7-<BZSrtZ
zelC#@q%kKq&BIb89jGj~>@rdd3}@@Uic9xLk8{SJc~U$()3OU&Xi_bay=NZ@?7G30
zx~D<c&|1s6W4|VaX}I6I$Eqa!sRjDpi1S_a80KCeU1$V0<dAS?4Q+Zlez0m)b4~#-
zC;`2odSc+w3=&*(Z}pLI<%M!7m)XWZN*jn)dUAIZ;k#N;v7KMg+4O4qAe5e`1II*U
zRBCs~wIz^~_*zYoe=X*DXJr32U-Q*#P2jd!iGQ?odJj_wPBGZNqv)c|GuQ#eIBbAy
z+QvvH*U)xt-g@vt4b5B4c9~0bhexHDR1{5Ap`h{DE{P%e(`F>1o2dEim-~>=trOoU
zj!;g_@T)PG?rGOW*)Vc%&*CMB;XuX|g)u8LzShNF{foyMir;S4Y5_xAps*eEG`ugk
zT6$Gj5M}@zuGdHt^8o7BZUYkgQ8#4;{p=%=xVMO_PkD`yU%0<JJiR?(?`CcEHflhc
z0)cnAtA4iLas8h?g1WwYaL$-Uzdrtnp1C|Mh+2sA;qi$VbjrM{@uzLoc<d1^;gVE2
zo&s?0sGH3YPZrAl?3eg&e950E`~e=OyFoj)#MjXu0rVZf*hCEzo*m6aUML9=mBl={
znYxe)kIw2;6;PP5nKpI=9?|AaD(((Noe{|1G%u-BH<ePih5{MG3>-3P<P(h*$E#Mf
zkP_pl;^^w2;OL{f6z>xGrB5?}g%Gp>0@yF8vu>`ELIGKI*|tX00n0-PlF}xe^KPwk
zz`2sa;R$RoRpknk;;()!DwUlwDpaFS$zy-PS74LhIO1pmr6B-MQHaw6PGQLg=Y(pT
z`7KJ%1=yrA40yuq(vo=$=veJN(U4RTZ{rmpFu(Vdbg!K34hjdQS0m?Ah}+BFja(rX
zT8t`pA%6Zt-Vv?lljW%6^xKuub7n|0^`->M;OZo>HIEBAQmy>}6Lk_~hh5w4w!0!N
zz#_A}=0<r9{Ua~Gf52qAYRCq^LN;kG+u1Tncv5%p2pD^D1S_zAyAH}P4(KOAc^nf5
zij?<`Y=|3<Pwq2@uqR*vEL1n1Duqp-wi2CYbqAlPThP5X1dM`u#^?AE&Pzv7mDYVP
znEMOM8Y*_>gnOr+ukGfPkBU}+u$HX0+t`gy3y%9AU?F)iH=a8E=0B=@Zv2Mg??a{z
z0yZ8+EPk5M9dufP2*v&Zxe)WD^2_iWqwg@?<Z-NIT!RS@eL_>l-8T`&r|H3LI=^bH
zs#2!6eT1n|4sTugyk`owx0+xoP$2WYJ%U_M5}~zRz2KrNuc$Mbh(|XVxRiPJ+Inxa
zE6PRjdFk-W)#2$2eb43+fn)E}3I$%HZ&`d;Cq+CoeL{ojX(}6A;py4XL&&AwvZqli
z+GOCMJ`sNQ>jaT!Q(v?+YbK~78`Qa_S^|#(0F@M`NGoj?swU|VdB>3s`MjgnOY4W6
z4{M*4sCU3do_#R|i?f3<Cz)9Dx_-Lz`{Cu${i8;Y*B3+bcj!{)4=3CXOt1x}fOdys
z9@w65Ly-7bULJz+M=xnP@=VYzAUEK8v_;qSi==TAK$4xbuCR!CI7B4+1a_vJ6E?2|
zXuXbma$12}DG~ETXS;P|smJZAEomA{^cLG36Bq1LlExF#ZoxEJ6=K={64gOlCmmYL
z;KAp0(tiZYI}FlK9%)OC&@>HPD?rAYuj@{TJSjh~X>iC)oMiFfMEFO`A@&u;We{bb
zPCow4yJGomafVQ;0D1VGa_(G?WiWJa8VFB;SRD)21GKELrMJVpRF4XA7^r4%M^o=q
z?e`lr_M1Usz^z+q$0%Z0gA<E;1Dzc$0;@c>yuKq&wR%*w>W@Q@D_C?XJBp;=84zW4
z)*ae?Yw%wANw8$OBq4Szi5<LDbqz$H7(xBfljCmb?WrK8kW)0Wqn_vDfqpSg{Zm;9
z!>~wF_9glh7v-iS`5W5c0?U&{oFJ}2&|Z|85SNg6NxMlE1+*kCn?D4;dxitBQmUoD
z9Y?#{Y{P1Mn`EPHAFwv>diGX%m1gkWG0LFjK3~(*X$OwZ5Fv2L4l(@OeaR*R^pc~P
zEtqb`EL}*bD<);YnT~GE9Oke&{iZ;QgjL(sn{fDsMR8xQVI;GBcs@%naMIkzq;}!x
z*DUG8>>y_|n%6>Uho@VbhLO<b)1VHKzPSpwhP=T`yQtd4o4Bu8m*iL8D^uCNlr!&2
z*h{QZ3eLF)4kp1mP3#+Y>Fts8h5SrL+QTOTxDQG<F}~fWe$~`j?YH;ZrdTF7Gz|C1
z_Vl}e|3<s)U>~F1L+O~iUeR|TZ4Eu=J-;_zZh015aJ84V5VgQ_eN}2D+RLf(Cxy)S
z6kG;#-I^5jeq*`sb2#7GgYXeK)t_asi&=}n7d}e3p8WC1`|5OWR5TX73r@?CH<8#y
z>XfhYNd^{4#z9`GXa(z}KRy`_cDi`$(o5;`a0dfO=D|~)IIVg%oY>#{(;TCHqc>L-
z8`#=|(~zFhH_ayEHD~vv^9_z&hvUr#eNv7F@M=$61O-eGw)9dQ^D0LW3SMICM~A(s
zVop-3z%_JO4&@#Ql0*5r(?eWhj>1QXD5aZ%FQidlYTs})s13j4zOkphg9`$n-0uh-
z;SpLI3^{6(KjOOmDge)($X<&RHJxDhi!^x;TH#T7KbniU@t2<;kT-f$=G+f|2FkLD
zhS77AH<;!rtaLUekg(_rAU(lDX@QTBu?#Sh9i)7g3Wgyoh_@TsG(s!+MB#nv_*vOJ
zgfcm6GGq#@@TtC3MeDpFdc7R~KpNk$!pn4v`=EsN^3Gp?5YuZxP3K@t6)o)fWnqGh
zB?y4i0%?$P#18=o6Fgsl(?0B21wgvMYxSI;c+c=QI7YB2M1=O^Zp?uaZ19>+WG~n$
zjEml%_aF_UkvlG$eLingkn3O#V2z$4M8+GeHM3lwQ-a$(cL9JHC7L>yR&fC9y^wfo
zo6jaj>B&d#T2!Qsf1ZPEv#@1}_K8^vH~ZHMGRG*r4-f4UTP-y}bNRY#DW%C?(_Aos
zghf>t$4$B`n)kiS^eZn4*5N5d!6M$!XBxO@5ddq`1;UvtW6A&tl=#@j{#1)~vIdzf
znXQuMJC6qY5n7xJZX@Fe;cUflv#np(h!d3u7Eg`k^`D=OsU*3SEaH4Zg(I}}rhDjM
zZ{kL^t}jWM^sUA%UDh}8hQA4H)_`PXd3h<*L5v#Jj6e0Pv(1rn2c$8G#G4Zs*>W`)
za1(iho?q?-Yjx2Cclhr(8DYZKMF0fQ`?9NQ6YW!tq=FDZrCh~SglO5~y6yb(3agNY
z8ekIgy3$JLg@)sGi@<Ndb_Sh4xgmM?!V<aX6|?`f2_t-AcE@oU>s>sO2WASR!Jkqs
zEFuu4!ie#^GGTTWw#L(ubIpgnEdH3{54>M#lZD|^=%f!;wY6AFNR}^Kslzp_gbQx3
zMnOV@GKhtsHGDT`CB9@KvqSCBYIXMOIZje-7ao6zbZyD>G*mh4_;#U015?<?RqawM
zXUn6GBIh**-a-St*U6D+TZEBz{8?N`;E%Xjo^J=L+|HWDHzaMBIspMP_a3>#aeP>)
zV^ons8r&kSwLZiea_Kt?nXeGyA<85}Z&4|SgrTS0@ZS!xwVrk}n1L=&;kRWD*^1u|
z2$LKsT(<fZ8H=H~Ci7u<%Pqmo=h!YxI*I2&C~}@D4@-r9v5H%k&f8YAy#c`-PcK;N
z>dEBVEeIqmA7+|1ux}Lk;eVuZ{9%8p9eQ(LS;@=2d${^R_^<`x$^ylz{C$|qGKdR8
z1*x`$RWz~!U9lSk2aD*xR`zm<CqU09_2VCoLw}+Wv14u7B4(Uh>gV#E5)JE>G^^{x
zZe$9}+q=Bdp@cXOn}R$?<$v#9RW^fu3u!)rb6K6Km`=~5W_^ytzGRK~TUxZ)r#;3(
zP92FgLVc$4<?Wa!t$fq`n(xX@1qNe1K==#B)OVzds{!|mPV8TF;FJZUSk{B-9_6G@
zCJo61#3|ujq|WlUs&cw|ZW!V9E?dehwcAE6q&#b*zu~hyL!X&}h>&BGRu*RXs!Xcd
zE{0LC^yzPm$h$2PZTPg-Lm1oY-EkkT%$)(W8dlwRVC2nJZwi1~tEOv{TQVSJ<}9hX
zsDk}aQf_xR90B#h#t;qb(4Gev7=E1mG-q;$zTe|fP5~XjICUQW#41gc^(>Un95PL9
zFEpOH;49<;QWS$bKqA44ES^yBnftC?_}@CM#A9DhM-xHE<@WSJ{Ehr8mgv+!3K;y)
z<sbMXMQdS!EI|Rh;2GyemU=+s`3In6`p92Tfq1%s^kEfW3i_l1#fr^O1&_OBgL;Uh
z(kg<O^jd9*Uwm&|&<M+QN>UujJ1Jb^LtyU?DQHeO9OO8^<!#l;z(S!A;TQ5cT@5-s
zj~8#1+bG7pyZNaYu1rAYU>9#0%RlV}Wih;=iTpSg8pidlos*(6!Ryp;PNaEKbNgte
zYa<p<L>T4>RWf~TxJ0RRFmD|Q+sn%*@-TW77fZ+wYw}o5&BfeBEBa_xrz9xWDk^s3
z?g106tI+DFr$l@kAj15yR9GGBLtd-;0f9#AED|0I!@GEE8s;vQap3a9&QS4r%VSsG
z)9ENj$vqtZqHBbxCnyfzz#(}%5y@3WcU#+r@kqz+2k+s}Uda6&v@Jb^4L6Q`FgC>t
zOX$#VHtJ}!H||(o2dVCx@7*UCO=}&SbzR<KtsQFef6&VQOnBW2o8sMS#k6TON6~&Y
zvz1>v!MfCOEOS_?+vg@-GAK@Gc^H}`(JB9`0Z@7&X5)sMxDF@eTET&9g*o;@MbF0F
zTwkYz?$X<*eY&Ef(p8sF4f{|tKlZynV6tWbz}>f&gfVsRK36WjN6Vh`>k8#@$6GoB
zgxix#5$s#)(*8%KC&BrpA2`Sl#$CiJjunkOOCH7LMt9tzv0$?`rx!=oDzxLmp={L5
zZ`aTc#A0R_Z+Ws$D9AA4beVS?FgEa4$1tMmGpghrT!GU#N-mDw#1-G0B3`;BzJ<3-
zTl(Y%HiHc4#gI_?rLh;OKKGZxD;JsZM>i@~k{QNFy{OiC8-z=zAnYBl<Id${j>jNS
z&cpp=Q4e1fagVcS5W$l@d^I1XUS#go7tg7*_=_taCc`fFHN4j*?`O`#yQhCOD2t9V
zk}%dERkWt9vzh{hb}_3l)&nR|F6Hymnn*90P3DHYWy+oQJ(f8s1oU>5>-Gk*a#{CJ
zDj)^+PN+xuXDsF=TTOpts`F+1e4cc=xYrb!RyA0~rg5-On}$kryVu1>`?X%Oy36|_
zdUMND=A>qih}31rd=>F07xs`yL(>ihZEi#Q?&Y_up%M+t>CbF2A$^(Zzhr%%OcqEj
zSn->QIS&hOB!@N8Cr9&Se|z4SaUVE7lRp(P@F)zHfDh12EO@-{a%WZe1@zu7ZZGb@
zR#m+0?%j2APZH;YYd5!VA!p6_z4f!D*`>C-+;g*M%kGPOkp~DHLH%ZV3vmZDVQP={
zLp<4t)-1aduRU9SBkT9&xpGR2oQjUn_uPMS`h5yWRD;z3_1TPFA#)4&&4t2Ke({C&
zUm2l9kFzC1KKcY7e7&a{W92XJeo`7N_}ZOdBui&|zTmV;cFlRl3z0zA`QQ!rj_wh>
zN^=rv=UlB^{ITuaQCQx>JzoRA)5XvUmTTZZg)4?z`F{02)zVyjgiWbKiut|SCYO25
zVcTj%+eNhKua4BFV{>s-^KCBAc=zIDlO$b=D_1;G6qV+i@-&*Nft4?w6Yg>7D$NOx
zo03is%1d+rJ*FKhHllyb)+;C@&{>9cK(=*{zhNZ;J*}9P8-K#8{+wM^4<3E}X}QR1
z<cFQ0LM^E{T4N%M4rhorxm&&#lm73DSnsPT(7lxBEPrQMV|m-)$0KPN<|c^oJm*$U
zFXV{|Qmh3{O!=-KHMyJSORwLhXe-A{nOY$C+=_M%tOzGq1_Dak*C-An=s}P9>N`##
z$3FcC{mMgvyBstWw9Ev*knijRJKF&JqDwft=%`XWWw<W&PX)niO0gUjE+k^&?Lt|{
ziq;>>#_f-5@@8m0XDh|B+Gky5d%e<-33Oh9U_<E2xX5l$0(#4K&qSf8qfSv{B=mwr
z(XNMZ2-^lS0j>rg^QK%K*~C_=m3u!sSymk84VEuEHHjmJq8OHGnWyj;0`tOA+eNG3
z1=vPvjKh@_9^yvS!_d^|egEt2X@UW>1B_{%tU?h-(>$Iq4E7p%jJ4GE@%EK@R>=Kw
zo(O87+*-nPtq{p<pr&`TIr_X~V`Z{do)<Ifpp)gmM*P=QY)zBOtmqa2K}|=PKUdS`
zPLU=9D=UUmGYTrI#H3%<S^y0l-EaohU>JAswDgp=*|7sDkeEqy>(yW;JY6(LS{AN#
zNJB;Q{aVnm+<48bc>=0{SMwPWLWn$JuZSWmbS7@C^<p4Lr1#FCualXyyZ4((v-Y5q
zQPV&91VFNU&qIW1x)19YpvAGy93LMS7I!kW@y)rYG_(V49qEh?>FNHQ;O&;8@8_k$
zkLrEB+kh=db&h=J5Zd-xrO@jWRc)3pa)xO1c+n$U0C|SuWm($OXB-4q-veF{8<w*B
zSa*V80|S;F8!ATuclO%&OF37!gz*UDd`*Qd!mogqh@KxXEy&~BvZw`+MjWHq!(?`9
z&cWyl4iUII+#LX9(vy=cjJp13Gp33i-q#P$=RFU!C)W{=V8;XqK-+@u0pD95e-6WZ
zX1U&_ethR;9|H@Ei`al2D}gC`dsu65N#BcYPBcq#MznGcPOPv=c}9?KoLmKb=K4xw
zsP(HuX-&7kgll@)>e~+lJP#rX_6uj#cJ+k;N^D#o)AV#7BYZ1W7XInT=z;^t;E@>S
z>RS5^>I}uDVIbK%%`v0H2HG#IOS6Gqd{g)jQM=05rU7heY=AtC73#9}ZJm&canRH#
ziJ)nd?2@hAn?yVivuKna3NYnohd<-J^lHoXO@4RwIr$Rb$ZKeqxHLLddo_dAS8*)a
zwAp(4Vk~u>7;Vqq_eQ6Iolv9Y$dFTRkl1?)hK+|tjbvS-Oei<pn;!_Z6f%@Q^ZH1I
z!H@hRT>``&zv3{D<1MQ*9w@NB(;MARbRKYj9bb{2&c+n~B8G;jhbUlo!9FY}Z)Wsj
z0E4^j!G_Ra<D6bzL345belcLFiV!Nvd{WVjs_x2tf$^25&@j%@Q;ZlK1d@;ElXkEM
ze98Fg7~@T9-J>yRywmp69=7Zb^d+YidVn#MxiKbUA1XzuFdVM7xIA2P0)#C6DO~h3
z=r==xJ(HsyT-(QHO7sblccK8qb&!958-<h}cjrw@dKNDto{A;eJOrAQU{{ONoh_&l
zZZBBr@UF|E<@6|ho|&=Fn7_(i`+S@56$AdP=0?sfy^Nid-8yy<D<VTMvasvU^}CA*
zr^N^OW2Z*8!0uJ7Vsxf8fhU#vIS5&2FKX(bsT6Yt$0XHp1kmC~0Gt$C{w8utkZ>Y?
ztmat2H=|I!eZ$^kuUzYtEyr=m951Y$?d2B6lA^Er%6eurP<Acxwdv7EMblrAJ6Zid
zYw&|btuHgUpeHkH5mk~8T~A4?=MGUge57vLBV4KHH7t_G!${Ym7aegQramQL#M)fS
zRghkyJZ5?{mn>GkP6xOmO1`ICpv!VXF!4zqnGQVNDLCcO%#<sOruSXUtra@NeTe#T
zs$?qu-Z(|!7TCcUmOfFZJilvsjvuaN?3D?QR@qHaz-2@KeOQLUh#+|W+eAVQiz*r%
z9e^;9BFe<c&YM}1@6o>Ti7`$qo@6<BNpdQj$`FMRKEUs9FGQ4L^o_)1s$0a5h^%N|
z5KL4qSLe^RdTPrMS)t~#aSyYrm|!D)MMsA>szbDnc|0a--1;_Vb*tdZj{9#e?3Vg>
z)d(U!+I0u1f@;&rNnVm_W`y$MUjx6IT^0}je6;Ua;1?rheh=_9CKqC`1Rde7DI%R-
zVltp5kwr2^+*uF%7rG2K?hl3+xwOS?IA}-on8=KqH90ae!&0EX$mK-OmpDtpBVuY}
z$uWsKZZHh=m&ko&E%FF0f3(ncit(mv>`m;?_~%jK9-*DgiZdhmE3;@wR+!+;lN09R
zrRq`q1vXa*k!z^U@+ZraYnz{q6SA|GRL0Hd<~B`HFb?c32Qv`fHu-Ap-9Y%0HjL}8
zW@C1o>IgNTi??8NAfm(l*NgvgV9N_+GMX;38vQ<5XOuK}Tn^b<tGoJ&``1g+lDsTB
z3v&@kHU=v%b#HnNCZfZ~QbZoS>c_sJw1Ay4u>IAkH{U`)UqSQ<Vyn%~^c&(vSf_d#
z5y=-c33ItT|1s07z?B;>IS1{tCY-zWIYkiL4BbI9N*6%XzZL<wY!^qOVyG#uV@!jL
z*!3)-4!sSG45=L^3yLLNaFUIU2pBdQsRIgKyzc02WXCIjg5c;m3hjIF*ktSML(1{{
z7TLvcH?(0!$B&s+h3^I3Lw2mYFmQPgcP)G^UmDN*M~EUS?e!kLul0C&CGq7t*w1h$
zDV4o@LL_eiD^L(|xK?Ihv6o2)`!G-ESH>$fOc|ZQqKzH`on>>KoQfZ8{q_PnuWIie
znGz!(b4NeTRU9raUaNY3`-(Y*!(+gu_2z;m>D<rRV&>(-4uDPxXTD(v$UJsD^V`|@
z@n9;hhuqOSs_1UF*>qRt<``P{fRmU?vO}43F@C2GknN;LdUI3PM+u9#aeNqxdP73F
zNp`_q`Jb_OAX!Kh8W<b)_}q}*EH(?`sTkpY>3pXwBbVMQ<xgGBwLA2oT0KwS6d46Z
z-s*B#$FQVcIhWCEar&mSq#S3B*;Li5lod~TnQL)DK8Dmtb~JGKWROLC2@u5ht|`#W
z%C;H5x6-P4o7G2hW<{v)nm=w&PZsVzk5fDTx@Mdh5_>K!%G@mE81%T0EN8&3Ua~{h
zPABiJ$(F<Hi85pJ=I7q9daNj`vzhMNpE<PcRUeK&`BjsJKDC%hGkNq2jg`gHj9Wpc
zX=tk5sqH(+zNU>T)Y^wz+s>WVkuea!f{4h2Gbf(ZoQ+a&E+-vga|IDdkh*ULMPb#s
z9^mxlPIHESc&Y0sR~g{{RIq+`g!?D0-T6}rJgYpBWS-FGHIG|3ZX~X+y8R>hP16(<
z1;c9#sBNK=RZZSE9}%tJRs&PjuzML9_uE31+u_pJi9GLmXEr(6e_Shlw@a|&Yv<?g
z&-ldmkC^}`{s1u^su;*grU==YfRN?7wC4{Kb<`6FD6fGylTCs2+i({Y3r8t>V_oU8
ze4_S_VCRgC<N<->Zp3yQ)H#Mcu`%U`7y>Eo5uL1f;=J!Mh2(2|yadiwA&;XD!6rQA
zI<TqvgMBitYbE!PB6snJUj`$OX_sx(wT}kB^oV>$iySKhiB)=(SZ}Sobn@P#B0NW@
zOpE_1_AsD)ztpI0R$@|qbmCCtC~A$ZH%j+4`6f?L{bXYE$n>>YTPiw^uz~JXSirCo
z2}GKa32#*GW6%dH`D&zWm&go-m(m#9l(}@n&#unFMh&gmC6vdqz#>WcOZkyvK;X9=
zp-B_E7*e0hrF~)-83nbgb7X}x?d9szxJ@zg)g{wRlh}S1H0C{l;>=C?-g^D|&QX^!
z;W=BGWwHxWDvIg#>?Hbcd@L!SmF`thDCaJT+2-m<_wI);9cM76&cC)hbM7ZD&&sB=
zb!A!G{dbA}`-|8!6b`!G2%L;fe$#I3$<(%sYqt8wWZ-}qp@jAqJ(@k^*eBpv6zfU*
z2gBv|3r%*j@dvK0ks7q!w1QpVUwnAk%DOU{lk6lr0Tm9l94$$MBA-SK=lE}*fD=e)
zfpSBEutp&^$7Yu5;ho?c?+It|&r+r6p)C)?;e8mCoWle-=S1VqQKJp6wU^#(ZcAlO
zR+uYFS7t=8=VL20vq1+57wYBD70ejit(zZ0pQU;o2UAXqH6xmZG^~zvJ$AKIM^Sa+
zt#!aijuWBU?+1DRyXh|qGb4!6(~$yz)uI!9(q6!7jA1h3m(|v3+=(~l54`tpvpcJz
z*{@F-`A)+e58h05#1FO9IO-a(UZrDFc1x!gEIj#m`Eb>eR>S!qj|3&;O&~w=1^k+I
zP!2<&Nv`|o{T#^4DIEYwryKiqM;ANlAchXqsz$csZ^bW)*T4BOo}q@e$jMCR3XYn$
zuxr4?fO<qPAEtPs+DnZuLyq~QX%0<BdO@7fqCyXoEmLL2SryGR!k&t8=o)YrI(bV>
zKMAL#-e_?!`3l!5!%%>LjOk*GH1?3Lz(KglKP{XJhkiiS@QV+l13lK5lKSCOJ(Sr+
ze6_C=mE9zlM_%7W9I@zMC$2VF((6EF4zu@+csbQ&zq6<881Du;&jJkMW#jsFu4~<N
zE5M_dM~o!vLCD|K-e3~npzReXcOQch1<kb1M_4s{?rfS*am0+YZKn>NLTY~Rl`ly1
zzvqRcvSj`_9f9)WIs#&CcFq^k+v-U1FrObkbAQ4+OQ{A=uT=eJfs%PW3~xla7wy&X
zUWEHI8jV5XyC4=)(T`ec$~k%zma{9S8<R`F?|<b6UZ9RuPfnt}M!<a*pnV1|*1etO
zoT<JeoGJM|C~W&3ID0+Iqk_zID)dyHV8X>#=Ne@w{P=@?-htqDr+U|fh3LtE(4MIg
zf7E7S>BwMqN?In);u31l^?S4d*GI~`J95%8sUfEdAnYY4s)&MT*!ghrT&DkKcT|)L
z1#4@nVuPj@gXBC5994(6Bs~HGg<|o45<6A+G&sQP-vwYoS(bE3ZEEJu!wCmO@Y6jn
z?EI%yh9e%`0zeM)*?ty<G32xk`eGV-p_uFr^Z+Ft-zeaJu$i|RvYA4d_7{Ja)W&(Z
zwk~27BBNi1)Tg4qJ3d}bz28V(F&GINq+AB<M1c&gjr&m@kZq^v$b92oqIvg+o+>~L
z^=V7{GXdAl#r2f{vtOGH>MM<*w8%#pD?w%pZ^+iYu|Dvu<8{4JR~27N=&@EBb*;|z
zEH{}Kg|yCs!zDC7zLF6Vn5C2-%|rh(LGNr;2MFWXo!T7d*KzMmN*4hK!CWnFFls2*
z#no%=#8&*UHN82RHpShg(x@S>TsK*C2$8>^Zy#<urRn|q1FQ+JP$`V`XJk2-S9rJ?
zOR^wMfs4%My9sCUs7UmQa=<3a8nSx+^)K&qZc&nx;JDcea5mLE&bJB~Ym*T1sqY`+
z%QLKY94Eh%K^=Wu+zwMDrb4;*+QUymoL6Q-%LiJJ@RajJu~{-Y#YoA1e_C+*kTI`7
z7BpZPTdxLTK^l)|z$wy^q|R~pP9^~jx<>2~DBeql%Dg2J7k=CFfcI^w`S<8&dSP{O
z;ltHjD1J&8(H*1s=_4}SGaP1GT~Lt^^2bTGLc-F;ZZ`$-SJBhF-qkTT@}cJj!H;76
zP4S2}Gt!`jVhM1ExoM|rBM^7-YHwPoZs_tFMVy4*`DlgrpBgzhampu%l%Kb2u%h7r
zw{p$FKd-m-RAoeKQ|XuB=|x@|%`P)W1y-73v#k<NBgp^car?rW{{sl_K04>zf3Ac!
z4N>EKb_BvByqC+1w^t`AOzhqqzrlH+Df!Q+A5C9q%R3Rdi?@%t;K;iHUqRbtBr+8S
zkY(Pnq34(PIQUbNPf{ELa#r9yZ*aO5Ijv^F=EFN51Ewyej6qqA6REw(TZSc)<jp4@
zK;w&xIGb*1>Wr?XjA6VAy6F7CaMR#L5@>6Tdw0?_A3oBxb6|tAdgVcg$UF5Dm2&fJ
zV~Ec+iu%xCo)o#(QkaMp`b+!rChev+#(UY$ah`CI>&-V)#0u!qk1BPK8`0)LF?PG&
zqbyT?n~R2R`1O^XNAlC~$4O|_QxjV@C3223u4w*5LSq)@Z}I}&6trG2yp-7@rb{Y{
zsyw?>YD(7}#cGQ<m&7<OnV^6$=bif<Z$!{rUIz{3Izl~s+C8vKVW*|e#y>Va%sm4~
z0J<#yi0a$qduq!|=gx8Dw}D;D9p2Fncb$+CKmzGVMHD0KbarWlhwjYs{o;|D;dVPT
zjB~y2+)8RsJ?WT3qx&LpfVH)%{3Pf=N9${&OYhfIz8Q9J#5bPmI?uQf-d8=TRt}R&
zl=!ljS;H22)m&^)WVBUjpJh0YX!+v+!nUgpEsiqyCcqUsnLha`E&V*^q9l@Ew2APV
zHRZ0cP@9XJQr3Vf*N_i&EH}ry&WA++op4wFW>qSIce!lHascb+Z~gD_7<nWG<4#YW
zY6fn`q>@eR)gp$9mJQyJtjyPSV5~sX;RO+SW_Yj-{mzq}2QXr*YI9Y4#y`gr&<Rhl
za(`p1+cehLbjT39mSe<c!%BQrOh?N8@H)Mfa}_IyJ7GF4kO1?WmC*g#o4MaUhcD6v
z2q_GELW#0&yA@CCh<-PLR=6#<Z{lnZdLep<)dsb1hO*7l_k*s!i%i^MiMF2)sn31O
zKWI5MRjWEbeIxMV0+r%olqlsR>z4ENM$Mn5gDkN>I1!Ln9(VcaM=RcLtve<Lbf!xX
zQZnx*{-LgjiPE7IJU_ZiN3o4EQTLKpeuT&Zj^mWdoj6j8qEMHd@|PPLj)-=}()5Zi
zvopDc@K#nL;HY_3g;e|T_*7*mPmLSuVZj7cFA~F_(V<_jvzz5HF*J#Ocz!2XaFFv0
zIr6tlg7QM@3%pn%Nt{m#b5UH~Idw5AzysI{hb8JQFhNz~Y$vckzUd<I5XO3iH^$xZ
z$vetEOML6HgU7C9vh;1oPm0IJl3YdI0CiiVt~tq`Rkem8Sm?<1!wU;3d>X6BPfDq;
z-`1sL|9Y9<x)UhLPp2}9pO)*2J|=<D%D$H3u{g;nnvA*cV4xK6Gnc|eK1VtAd^Big
zgG3=Lm~L1A8PgFWzhZ-a7B9eI)QT9lrvB3~-Z*qw*~LMVzNqxQf5bzhDmKUF<!KhA
zCu(L=M~qvx?s+S;-g?8QP8~C;4di@j?{6vrm?fc@bQ~|jfE3SxltQ^99d_>DMEb2q
zfRY?TMH|$uD(@dcPcnW#c1@PiV`F1I`D4!w+lx9$`W@+`mvN-(7Hy^91{1#2B7(kW
zGJcRYPOo82PDzj<i%!Ho{_9<&CFDKh0`aMtL~|-{ze^1h^$WM|t!vxNBdTNJ(;;yW
z&2$|#&j8QG=z=qv$l-+A&sWjq<EgCP`Hrhrx0}vyyp~bg>tv}HVq!v60}`vJVWG$^
z?k!}qTzjMAr%|@h@((Zh+J|#rY)>@FsjY+uED^qt+7ngsz3zulyJSOG5|N-9B0sd}
zw4gFK!767Fb3mIT**%`Qbb$f0-Y_V$ZDnMoYP?3x_0XMt_QVESn=r98(!^Grbj}(s
z3e<X&AI})=gfgD@$<8#>Oz)hmRQ){*0AV{VpI7>1C+^;Eu8!7irRyUm9dl_IF|(d=
z=0QZ;<&uT;8?|s^@6J2u(AUfKr8n9UQ3a?7jQV?krpM?R-|jpI2@>dCQe5~{N4?I)
zdwreS=UyzfqI`%<Yb6`^_<cmt?~EThcLo?id0uuInh#$_;C7F1^Ihb`nN3x`yi3V{
zU0`sw{;7cRaUbzlv10Z6sRiMu1q6c*fxLI<1wM6>yq*($ikn8YDWcc?4$W53XG=|c
zF%*cWDY2}gzPiEhQaR0Lr`ER=u6ml*G8?EDo8Ppr;W+V7SoM{9Y^1p2>9>F`G~(m?
z=T57+wKT~ja*ny>q?jN?!d{HhhtAUNm&4fY6VqET|15Zd1j)h1?I~nOy5OFx%ua9E
z1uEeNXG}1+Iow<uA=QukAzOqo8B2t0^J1mq9>Ay%d*RM7Qou=USnenNHM2(`FPE;*
zMewM-Ign!9sKqew<i&d+h0~dBI*8l%IVJ90PTpGYZzcLWVg$A$k&ob14HEWB$ZoOO
zfsIIRQfmO$8oSaBD<mIvai5*GoBxgYn-6Zil!#We*kM%59bbxhy~<e;xyRtZabY?a
z<mgvl#>EK{)1F4&=D+9O#*nR(k0sw{p!wbkKOC)41csZ4CUmVwRSEZ&GHaASr+w5U
zLU;nwG<>8W&4++dhnPz7#Z`Upm4++F`ZUL(v88YfM)woMDpi`_PYk?<^TJQke%-LA
zR5eV#JU698d|8J}rbNLmW8(Mdlkxz@kFO`kCSqYb{w`hKUAIoH`HBLs#F4i_*7eHr
z7fi>>(8KWXbjj>>Ja)C=?An78`N1!Cm#ptme~%v*WRc8%NgKt~m2UwGWSMxk2gNaJ
zF+cOTV?+h2s`_Z<0^o#$ZrXE32_cv<OmFHx2_;xzGioKGKS*PG`9tiA;4Ah%CxY0R
z$^8ts!qKxtwzE>R-q_+s>etgqNS@_C7GlH)u&7dAu&L^HlbqpEb0K(Yf6KU9bTi58
zs(f9^s2hU0-jPSl`6};omsj)+9=M5Sc`CalzR-fC=WUs9r^SE8ic-x!WLj!2FI>q-
ziLr9v8eg*%n(nY+ebSJJmYlTlV35GpnMy|7OA1KY(@<hMHQy16pM`NrdZ&p7)$L+s
z-k8x7A<=5Z@tMxV?KyK2vE|K<7WL+haEShEAEkkKiJ57S5%M(O^7^S%sKde|58Xta
zkJw|I$TDwp@p8)Vpf~kC(yd~|*#{xx1?d4Ex$IInXB&iPdQdjiEQ68sLGFP~0~XXO
z9Z}nB!ODn8sA+UJBw19e84GbzwNuu`0T0{zd#a*Z;g-(#61<H2(&s15%--dh6j*j}
z?F+ZJUJLv?-l>`iOcB^wkWV)1OQSuzcfrwLUNXv^)|j2JDqN#@(r{m2GTxuA4fBZ`
ze6>HVQhu@`-&2jf`;&Ko(m4ugYqTUTc<sF{8>FtX1PwjP=#lzqmx@%bXXV%F!5Gwc
zSvb|1(+Iz0%Y8K6WJ9rxPL)R4-o$Nf$euM&HXMg8%5Bm3&U%Y?KUGLb<QNmhcg##>
z+SkIKq>$B3jZBdjPC8FI;<{GwX2UxQsnFei$+H($w5x<nS(L-oN%PBNJVf=1@xaGg
zgB7DfGta|`cAH};Rq(6u+76^(vP5<_P)F#B`JThb_b6sbxzSx?D*dHoo^C<H)7SP&
zWl^emqa&XR-c*H;+0|>jBo*#1P|ww-pfxYJ|Lnd34{tF1Rq<Z4Mrxu+pADaBO-}#2
zpRKwG&f-+gqlpIgp@0*+o+c6Y--Es9lDS^`)ob}YID`VH6^6lMgXIDp;K&!^zI-T8
zQ7upkM;*$UNmDfHr*W{&0*MRm2I<auO*0wAj{dB)l}%>Lm$=L2;~Yn#T}5zGrIL?V
zC5KL#+IJ8aDnjupKQr6%YDU%adTIH*LfBkad;RS{5$FIhOX@@5g8Y$%SmpfqjL4uz
zz{5`DBg~$XTjA-OVIr-D`iA692OI|a&uG_jd2|Riif^RgRuI?-n%AyoW{ZP>Z=tb;
zh2w9*#(_-Z$37@8h}Pb_ghoirJ5q(bR9^jn{a%ZSizm}^%rPB_Dj5!0V1-inrS^JG
zC*%m{7epGPoU7ddWqH;ACg)-ZOK!uP4$(=}uG|}?)P;Jar@w|{RW+5e;HcJ4Ky@7W
zXb?0+C}oaKu4MIEmD@_!^t9E=y)RU64E++Z^YhW4m-6KKROWov(DrdgP)n^CWXW&+
zvg_rD0O@HZ*cd=WdAttk(GfVgx(e9F&OdWRa;G?hAhi>6NLKam{ffbLfnCeXwXBcz
z^ZG3FK3;P!=Owm=M*7lon2Kx86cvf78%yq{GmoRA<800X?-klt^5f3$3m}?d2ifrh
zWeh}5Ve(>DbDQ&nwJtLRD}#0Pr^3C*Eh;ZaEQK!k-g`^i<TN5MBaz?!L~iALmAv)f
zLw2f_&ICj^?#T505YU51D<w&Er7_vz^F2rb<WWab4^EvaCmt^0*fGYM8SVR<{k(Jc
zfzi8*t<kQpa7cYFLwym_Q?la=%Ym$Ubq!QAO*W|^BA8qIIXZEpuLu9MbilUBQ<RG(
zR*$8*#(8jL8JJHVVkv(y4e5=*<wliWQ0Ahh@Mi76@wyWEXxPuk8f{Q!3VIT3k_>i^
z;(NGzo4$jJ46IMVmwBNL@BN#XpDb;uyfOo<;7f+PcSA3bKY3#oYGzCM>N#d#j`GDn
zVjjzsvr4Zqc!zEK>aEwxXhi5RGCAwbX%)@Riky0QR0{L<e#t4}nYfr_Pxq;`1nR^`
zdV8gl-mH8>={5&>-Cvw*dL0VOtsOts-WO5uMGNQ=Om<XdD{pR)TlliTWA>nwImUm@
z){&_~&ilm;RZ2#F&)u1cNVjwH!D2wdTRk?Sn)CF)DoHj$;cecl={w<Io#8N^=%VC2
z==VzDyln*N<Z0Nj!f10bb2eRXN!`sFf84u()7zb~Q-}_EFS(|_7SpI_DpTlHk+k92
z$kfscpJ-dtrOSx66;;8HYC2UevHNs3Xm9CDd>>X!Dpu!{XMSRW_+(%j-7-}r$<;qq
zF6mUFD*3FMKmSIZJqfSV#Js=!2Wr<H-1fxVwI^`j>KnLER#N;~P39|eWb5cIb~PwD
zM7cqwXJ|$d+cc6Q?)@mf|H`$LJ&t)Ad!vuGnPBpttjIG_#LM6Qmnc+tX1&Xy2jr^7
zE9k~_DJe=2IFWRqU@xLhd7Fqtp<{K|R97ZXOZIy>+%Q~;8=RY?lQL2jV7`;Ha<GET
zPc$yiD*z4ISsX64`5Bz0xJ4MIUqGR7u_dpDPY5xQYXY8-XE_37jn9x&H3?M5S<~;@
zb4<vL-DkZKoR3|BKaYkC<@55(M60IM=90VI`1Dn5S15X|L$g-rDBo;J-8Pdedrzvp
zF2$t0mW0xCm8T*fMFi-%X~o}q6uY#3=mlW}qj!>mF{Av_`5dz(stPL(0e;`CdbGC3
zfZuuVaY@EnIHsxU;&}R<N1+ZzSL_RVI{Cw}$GpGzCDvdO^_FvCvEl;9RByL`ym@Za
z`tn)8u^=AK@;0u|D)Z;8Z-HK4Cp`+?$BIhcwJUc!PG){sSd=CDObm&6f!U!4l?nM;
z8^y?bbuqXwdD&shZ=f~dcnHT%cfpZHH%F_78aVxEP-Z!Y_>^%!@o131e!2Yp1E!JT
zpL(V35nu7gZf~|0D0~gta3jjo2I(R67)ZKA91-~%H(QrC{~u*<9aVL^t_v$7At{Iw
zQqtXxG?LQY-60*)jdZs((%mWDpmcXgch~pKb=Kbdeb-*=8|VDRU<{aJ&iQ-dzOVa=
zE}H(v=FB;sQlgaYEN$2a_b~~>orz6_li|_-d5r&<am~DWeY{*CUm_IOU&91{17NYR
zFad3n4?6uG=b3-5W&$>%gzkuMtU~T=qRx$16T%n>weRZOFw97Z$MHAHyb^~w20ny8
zxu@>BMfwed2)9)YO0;I(^u3uM%OC&Ey=j|zcwy0Zi{H{(X@)}Ec5h1->h0yt>){nS
z1Q5JKXg7s?k+XUrMB6RJae_l(ZBMfwl&W+jUA*4R-T!^n%fv8yhIXYPM9JFzL2jR<
z1TkpXY%=9-X>?I<LG5HpF-nt}?EOHUr|55Zj^r(ThF9b23i&xpR!z362Eli$4UU^=
z+X<-c$gHl=)t|G5*KikJ7ZA$B@_yf(i$7_NzS>moG#ptFa(ws{;idV1hNJ(5yhDDo
zV1>(A8A6f69H=B$)hGAoWA-HuZDdSiq_%be?ssJN;S@53LLIizIo*gJ@mC!(&Y?^n
zol^0w+`KZYhXb*`!IBR}(~6VyBSzD-8T52D84R|QgseBkkil&NeR{Nf*{2p?^SsVT
zx6C(QlrQQl&hd5|fuu4$-EaPf9lR}RfB?d`c6)LLa&K=tN?*i&6n|LF_%{ON13CTs
zAT#ar7Dl6BKr4{`b*|T^LB=E3nG;@mH2A%-aSGp9UFpP7SnT>jP>Tp#_C%Z)8pdpV
z7t({1#W+o^hID1x4D~1+0`59b{p}5G)5(nsLK&Sw6IRbTO{wx6E)M=_iIfTlLfI%Z
zz+HW#M{uPzxCdPKI-d8M7{HzNj|i*Gy`89)=twO88R3d(6suUO3M(j|mfbwHZu0#B
z16n1XX~bkY@r$7P7K)dN$}WWjryOa18~GOo7gaL)tKCTnUs8*ZrUZEJnD?=UxZ9kB
z$G}42$&pfqoF9<?)n0q`b3#lNG!JDP2|Y^VX_j2IM0f6GXhmj2F5?}&PQ%=RBpRD}
zA#eO~y!ANSautj3V<s&b&IHZjV}gO^5~^joPr{B}lx=ij*tmW6y#1~%Ga!omrKy43
zOeDcSAx0CVKPXEwee2eXa$QH@n{24+UK5OCILVwV_~40Wx&<2OyV0e&Y$YA0gtv++
zsHh$s0p+QLXlXqUDlh%AxLd>tQkvN$+5OFulwkp!o$M*`&h^!+Py(L#_><4}Ad9QP
zTnCLCy?Up&8^mt5V6+mNqQmaX7j%v}$;<T+8<6-^$t9GUVSH}W?+wqCuY}*y^+H?H
zy~sCk=V+BH^K1(lgmOoYm1t#<4~~%8lHu+B<22G`+s--<xt(6ZR9p9xPTlS9+B{6!
zIK(kCSzZOj1mA3CSI@r~$=w#jy#?gC_@$PwO_Q7y@}aWVMe2pGxTbwkMHoZWF=RV$
zDSsCzl(RIq<!VdJ<LwGEVwhv#XDu^pUYLyl8piQizXz=$-MF#n`NHh`ai@{%MAd%6
za)W^{{F5#ruP`9cf385TS*4Z3F1(z&LNPIm+9e`Wg~{4ehr1_Pn=F|sXN^fZgYGGg
z6S6OD3dg_!-PM~i;|OPsJP%tz%pONpd}wFuP7@qc<LVM`jbXba{aTFHo5QbI9A@WR
zzM+~0e<d*dV~<)y!|^ryI2RKW2B}7B6N(73b`h980P2i{%R~N(K#qc~!@y5dSH_?G
zkC+5v!lhD74QTK^u&Xl_`nWvgj#&$cx|WakH^5vt!f!*8^L3Nc(f89-M1o%@KQ?w_
zy@|ee5z@9PZ0w3wqjBUAz4m{uU?LY)luahs5a6uA#-1F<4Ye}x6V?GHH6{u_CM}6G
z@YFu<idEHhx3o|=Ck5GCbv>>-zBa^GtYw7Mdb0*EyLh41{VOb?uW^9_e||53UGP2c
zv79r~lx=H{+9>wV?l~cYs3xh8V^Zw~(>*%RFE)Yd+WtiR^d^C7X+a()2<uwj)}eB*
zuPaSVC6<H~!*H(E!1lXjr`4ZYy7_HA&gmpEO)0XE2>O31wIK(Yf$uXazMVqWf<7x*
zf4PtEmY2+e-gZG^vT(OkCx+k2i3;xnscodXOCQ<gO)w;Z?{IzxIJF?BK@3wwOb~D@
zXMVRz`e8;#6~}y5+p;gD{(R5wTP~JvIZ>}Xr#(%XD5Ra-^G)P-xSx0fIL<I~<5Eff
z(C2ATg+Kf497%9?c9uP&iVraj)zwJPz~X#t$bO)7vpapzj;{qM8S%%osW^*M;Wpk+
zv$BkC=R%T<zj$8X4o0gk7zAsS59dlHY&eiKE&anJ*E=ryOTpJUCA7q^ewpF;#z3*?
zo@y7|5NG&x#n^SNE7%qwDg(NKxTJ##bWU2a9BniP4g!c#sQ66Ve;x=CV?#5Rz=)7O
zr*!Nc=bNfC5b*9#C^H+*G^gF-bRJAnRUgdQFya5lrIO<7ERSH;cJ2D9_fLFt<^Je?
zf9RcWie}>TzSeZC`XyIwvXq<CPOI_5*E}*Yv~OI#eJXC4ymeLRDidbghHm&enNB%}
z+T_so=`1ZvcHfza->c&JcN^{(aTX<a*E@H*{%?otV)H&@Ta%X07-Ij+(G>7=E9fW4
z5ILIQmOYoOlXtW05-Y<Jct05A^Nv@6aOfX*IJpG$?fK5SLL4Nx>kIup@Ohyfq_&vY
z*83HR@kWO3D+n%;*Ft#FpZ^*{N?FyB9e~?1g){K-n%qSES()+I3l9^@(8r6?Da!(4
zZ-Bu;W}q9CWYc4yS;LOTDn8PhToCZNM%ax{%mtUz9u=-t79dFIn?UCp3A`879YOM2
zzEcOow?Q}x9aJHRU?i5Z4L(XAInkih5g=KC%YSxz48)a?B#lttFq{fJW;+7;&O0&r
zPV$BnMX>HK6daK2A~94e;M>FU<(x3d!*Jo43*RpRt1lUh<hU`^?BlSnl3Fq~o5>Rj
zC-Lh*^V(j*nCD>uk04t`9M;TWiY?ggTGnz&84VFubT(h3Lw|#&CV^Grx!==%QX_U4
zU>09iVa>vEZ41IzrX{SrE8LbHD_r~Jrcj$5k5Jn%v7=E&<%(<5E4dMr0`1k<BIWq2
z@y7`vivEO?QcfuLRaN!pGX=GS=azjSx_T2R%P6z@P;N$)1EyG0Z1aj7azC8-B5iEq
zSdkY-;*>P;=yKvpx<fIe+f-}a*d#e;ceMkO{+$;5oz1H|u*Ceje0?njv}i{o|J)qZ
zyAjYI#9W}ao7Ei9eE#~@z13U_=YU&g*O8MC#Zc{4+zzMuRZJu9C4A?ul&@t(BsR?}
z;T)x*8{xD?$Jry^MoW+JgWT227ijnFe5OsEzoiEqjgewTdQoWCtdVippqf)C8s^&2
zNR-B{#vIXUkAC^0#EQj`_RC9uKJA=q{a;5cCR7R{)DZn}UbbV*bAk{A{^x8s7z@-=
zhO+-><@x;Nx!aGSmkA!Dr@S*tBFdmdNb0S|4B$J2Q_&p36_jZITfLcK@ET}ixi)|w
zhwXA|zPo@kguVIl)D(CDkR(BoH+X$%-xZIvkbTht<{b+Linq9gJXN;eqh}cVFTkjS
zOp?9_Fh`k1jy-@E(aT9$xaHQy9Y_=_Fl(7EkS8;puPq@8;M*s$-r$wjXQb^if!hIA
z_6fk+NdeNti--o~z#G{V{&2;E%LbD36s`^I_5%<%@0g=KQ6CdE8~m(w16Oa5F!23{
z{O~F@LU(9#B7D0chC?k>R%JsYAr2YuEj5ML99CIZKmmz?7N5dmPU^}lQy!obtj27(
z0-)Bo2%cL}f@W**@?&kDPpLtN8v3a=p0O()zlGoRmo^<z3I-tB2&o>XluE*R=jXsL
z+1voG%)SF4<g7ktjRjc9Tbo$Pu)CLev1D+$YP5g_CIVoOALo11qj9QZhKkgOzSiqK
zVF)Pm)uu!`BAAESrDKWznB9T3+nlfGm}nxcdIJJFG#d<TnK$2L7xSrIAt4g7%D*Ed
zfDpk-M`V`>m9s}Q=9K0Ro?oT0=DD10*#eF-dppz|<ph96cZhW>pY;q_t9`oP_Ak@;
zj)*X4IEVTLR({t6*p7Ab$jl+8-=|aKE~nX}_GQxKK4g6!tA&ko-o-I|uiqS4iNyl9
zPTs&|>TkRTWVuwRDPlN)wIDPaXF5B$iG}vD4mSY>`qfr=oT@f2b=cR`eZ~ok(KAp*
z92jgJ_ZoCBoRlIJPGyuZ@4CA2B`(nooiE@&Qc3)HLdEMnsOI_O*l&GaPMu0moUe?L
zBh}Qp>H^1m(`k;L_4(=Cs9@32x*$?nxOQ$^tw60TjQainUA5**vV!G|R`QXHw}NGP
zO$d|cggLy;fzG;!*EViXRf&NAD=U1qIk}~zo7G-A6cnTlfw}a5vmyR@T5h5~=kz9%
z{=U!2{7wEPMd0i*fvTQP(DPqA<3Fq;&y2sy!Ti{nF#hQiZV!VeKAtC)hK-Cp^!;NK
zv$UZpEF9)i5{7SB!vWP^V=7kV+qu7O6CFFD6)=o<gyvTi`t&h2-P%pi8p!lo<?B&S
z4uNlwO>g8Upx5mA6@jZDb%Q+GML?bX-gQD&q=5$oF6%xExN}+89~I<(T{z)=x{($^
z^+QC~y#@q=7zw%-W?B<*HYL#yG^IE`@Hc++d-LBgsNQcw`)EzbjDI@7Vr2Bg2>NzE
zk@yBNQzp)CGL1&OsJJq)l6E_Q4^yP?lWv^iwJpOfUcJ&AQwC>d>((2iC}KkOLjKcB
zq&0#f(ad86LR=PG?Wk1de)GJ|PF@lFC&0b7E9^l1)oucc2{?@UhjP?bAVXW_itFcj
z^@qHQN$h7jc?KCIf?)#~+e~*>*SV3U+w@>rUC<6lX*3WskV<7l<FQOc?%1tqdE=mC
zT?5UaM7X5*HK+_~rM6u)fA58IeF{#m9E1*LCo$h`l;$HtBF*C~&MQM6a&!1{UuAj~
zln@-}`1Kgn!2`g9aGg|?uR2_d$i;9|+Ed^eu|v(;0E6EqaPN|6ay(d&Uf+4Et01~D
zi|OLezF4SOG*cVM+<ymZeyYMxhv|Wr(#j&gj6a~Og0M5{chm`uE9qn@l?j7PUA%P%
z33SkTNG&Wffg>@W79S58mAD85&LoWNJe_$6M6_du<{L)uOv@*h58+HJ2Tc#(A#vZd
z3>wac3i(_P2#*`?dqzYd_qP6-DD02e>W^r%=(z%PV-R-M+IC=_3U_?pOCVPyiZsf>
za(}Y^P!s7<!c)ug7pC4{8LZC*Gg3eBiO{Fr=jUV)=qYhSQCq`nA*xtP_WV3jY-j92
zq>g26z}Apygd+0*bcMSf=*dq>%AH(Q^R*0h?uMEPOoCGae{Y#AO5q^6v_5jwM{}+G
zUc&z8m4mcrY3P@-4gNaHGBS}XQX2Q)fyDk7u3SJe8XNoN;v~f5#MZ?}X9s5|D;X(D
zeKLA-S$cfAH{G7#6FUApaE3tdYaL-2<_+>jO;fCyjDVp)g)%?C#||)u#Jc!@Nq%?X
z`v;Z*)ra-%MehM1VMVK3x3F9;Ebs;ugZw9PmEcijug~#xW8rgv4JhyfxZmZ9-uyg^
zk>;_{?V~d6V;cz(XN&ok4Fgy^6>KB-Znt+fy4hB!g5WO=`TbeVB706eLD`t4RpBi1
zV&~&;%Zavn{Q-#mtTwbnX%sgkhD118^hzTZ|5zzblb3MJYr!4VR%D9Mt-#8}|875h
zbeXKhqJqSV)gjrrLF=8V&^+c-Vm}=D8<DcOQ;F{<A=rh(PuIP?8cSIxf7WGRKGxga
zS^chmbh)=ZI=a)XG(`z2+rF?l9yi3tFqx<?Xv5a(jKp6!!RK+S=j7^kMUJOdT_ZK|
z!(-rzoZ2BGw3r|dT)|<%5BzgRiT(EU97Mn>6Ce4lKb~lW6j5D6JXlVF*oL@-%CEnc
z_Bzp6{xT>XtkK?I%iGCAti({BeG}4Fktb!Tq%W&P$cFpA@g3aOO^?L)<7;3kY+M{E
z*t|A!KdYB?y%SJvVyp-+QE$=6L%yjSdf3^lH>upel4ZQ~Z|mOjt<H15$HzKb_CD>M
zn+!gA8XCo?IKAj?tf3ugbO=6535K8j9U$OUt0guSBu~{a=NVzJi8Pl<<MZhh1zT3@
z9I%?3GEbXl)16M%x?Z);zR-L2-*okV9J#R)&`PD$`}?#BNmY`6olE|WgCzx5KEY)~
z)w2PeEzAmy=p6?AToj`Os#|&@ZdIJm%U8%-fGS4@aSUstioHmyrBU9;9~Hj8oE=I-
z1KY-G;|I70!@I)PYNcgD5VYg1!f@E)<7w0z&Hdlx3!MR_JJ+Vdo8$-p{^h6&3}d>r
zhm<E_iZ58s*E+}&xF;~Ty@aYRtY_SrCzHFq5!y`tiYsC=^+jVH^jQbU4N3!W5DzyH
zP@%c-2#BUfwInw`3<E2}pbk<w?8F&ws>e71!N}mJ*K=BGXxE@3%)*~EYSpMp$S-1|
zsizlWSS{y759Vq#8#3H-8hL32Js<h=Kj0<ic2K>uV4=MriQ!Bebhw$utQ)<MOUGul
zAZIcf`m!-kUcpX_C;lCz2sjEc&pi{p$LSDn`j}BXhAbbyM*1mZCZdw*6IO(LGbvI~
zKV}TS3{-C)*TIWT@9pr~>=CA3-a`~i=E6hC5yB^%82#w9fKxt>jA8Lh$??-vORgBp
zS)$PfZoz2Hss?LkXv%3bQpLTxD9V~w$|$Ne8&0YWM{KGMCTasilgnE&rZt|c;vcf{
zxn#iYZ?{S{X+j)l&Jx8kxHUM?&Ge1Lcu$N{senY$>?tXbU?~|RWMZ&(6Z*N*b8-rO
z;V7V0TBx~b9@j@Lj8j0`NxuBH&h2=e^q-c){|5B_x~9rG2%ZHao?^9GSj<)$=2mvR
zH4yRG{4FD}nNX5RnOef%Hxe70cGy7hbXYwuMa$mR0frJ#IfCT=zpg=#mG|`)4MF+)
zAaX}U{~LR|mtJ2P%_j1TqxlOMaVtFl;}nN2VUH3Sajp#%{7u?6y6&E$bwH~Yb5zZL
zDN*%t#Yd(%Tt0g`WD(e~*iTa&1j3r`M_!GorA6I!Lc@5>suYUBB!l^!>bkM|KenyV
zsP#M$BoulL4VC3sfVn^ioxFOJZ3T6D3;VdqTMr^(ui7A1^d)8kGljzkn#cD{gw&(N
z$82Lw7PDY8{8Q8L|MsKrm3MYH=Kw|4A*kFl=~ux>K3-AnZ9gbj0Ak|^s>x$Lh;`QC
z{67^YKYP5r3gxK^k};kU$O{(tM3fwE7ZhLg*qFvk{L3i$@AuUI-){tL&>(6S6Rk+h
z6gWhl0#3(fe111%gMY^JmP+GnFc&g>-|Y&SU;y!kcNoHR5*Z>Xq)cpE76Wq+Oh5CB
zLHVS;ust-Iy1#e3|F^%zQbSQG6-R;tbux+uVu&97*$w?Oq;rVR`<yZWOqf{<sZzO|
zN)-y^gtvxM$bb!E49GdERXF2yyZ$0FquO9=Sn%Cgkd(*u+yslsD0Hv`umf8OtMs;6
zp~aEBEA)HC7aJW&CYkhpX9??SLd<~0Y3Sn13CkNk$j}=X4}prI>3(u>+q#r~#$ns*
zS;xee9}MX_NEO&ntOn-yb>Ir3drV|B{011ZF&%^1vjO}%Cu<})TV0My|MJBXyZ~pZ
zMijpZg4w^|ME|`%aL}O+=Ifkh{h9UtI=21$j^cCS%g}6cB#95Zz1SOs^ujdiwXwUC
zMF<AwEFy)-L6fM(glgOEty{+b`9=Qzl3s-6y03p3iue1sjjAB`KE^+&)tKcDeMu|f
z98AU-^zqL8R%xW@4SmX0>3BgYm%yv?iUm_>peULSN$rR{#3($$U;b0mIpuUQZ5;4p
zLTpo`R4RParA|Y&MI-9Mb4INS4bms;7&RT;<dr6<XSwtX{?qC4vnTYKftg~lQZ$Qt
z-=z6eag;c}whEpnd*XlkkAM9rI&iUc(3tz)DkX0}DqR`O7qaa3?}{ttd>-vIxapYX
zFZaqpYUdPnTAX8Px2~a1<OFZFfYK$dD4@TZHz$1v^CYHvq3SE&kQT<ZqT_s&bSqjw
zMcSCivkp6ce!fsTqAG??MyNTde?|NL=P5!zKQPu$Nl4f}<@3Z5fVn5oTp#hkgLO{+
zzyAmp&d{+!CG#4#3MEoR1z6+?WvZ&Es71=+S~b}I(B>26FMKZW_ofCGPL{>Ho5kg7
zl(LT%%$3Wc%#e1){l(k)<oU{{EHQsNf&(aHf#?eWiNwONSvCOYITD!o#oyhl!65zH
zL&<yW6W`5Pp~7%{dZEhtQQzeAeopCx7^(wF)!YBujSB|Pgpo9}u50B&-8&_Xxa9I}
z?rf-)kL%Kg`vMO8s%;)|krmon&JvUxim?MMg@ZW}t&vLZPEPZFeE*<#Z@%@Gm;R^-
zk^zrS0e>n2tG#hyiDEGE-?fH(svk05O{JpivGlg46e@E?*Hl&vGWt5w{>%RR&qtki
zrHIZzP~8~MP9uxC;o4n#!*SzhuF99p;8a5j_zA%!?uVv`%7NGIAdq_PDD)k+-dWXY
z9;Ga4)tF7@WMmMu{CsPc&6lBGXVqa{R8kv_L8a6e#<uk5&;}%^K)-ZWdI20|=M4`R
z8aT93y22pkty--G1@OKqzds+B=ExPp0|<smLJzQOCI#lfLliC1p&H=$;#d!5S`gm_
z)~`u!0L(Kbk^cAq#x=AcmC0$~&Q!RPFXcTH5JJSlAYu0bekv)%#3o5g8&d9U<d8_j
z1E8Hd`g9?VQqk5Dx~s^7dfHgr!=sg2yOldd-g?Xi2zb9tkBlU<NPv&lAlIh!aTye}
zWI#bnb8$8c57rL>7xXEPV=U=M=_tdtC*rDBmk&)sA1Zb&7DWmtX2q50(n!ucUC7qV
z12=J>vyb0T6~ikzBJ@p?D;K4l7C7J(?~y{S&kg;p+y2iF<G&ZB&brXE%4y&S^a1FP
z2YXze=O*p}x|-HpjrlgrD8%ujdenYKH?SXQYBu5O6^oP{P6#de!&?B0w(^774|iJx
zl|ncT5JC%;Ib8?NM=qZWNN2vY&`@;-!TdLY=kKwvVT~tH9QOeX>0nI@IMLaHmfkQf
z{FB*oYYPPY!3Aj*xf-vF&8JIoDgSf|izVnF(MC!^P#{2QFKPx<5!VL8O8;t)lkRsC
z;A?(Ay9Kz&6ftLWVrZ|u$_G9sG8s!Hp%*^^{~WR5WEMl<8xfpzdltm%+bD@uqF5CF
zm6Teoy6^L=dhlBQ+k%YQw5h=7vl1ls!W)LIPZlW;0)qrY;1$Z~e7s^HD|qFL%-Q$3
zI3t|@)(5p#ryUCGqiZ!t+NP;An=GW?-)ii9C{V8}H6I-G(OE23Wtx6F-U?WuSC!5u
zYr`0>O;&;#8brUgj=$!LA8g6hjX#&8Hx8x#es4H(V>x%G&~M$?Qmnx~3pd4)t$GQc
zuf{T}-#6(x1T8_L6hn1+cHE^ePp|a>QtAS~=OWqcfUnQDZ^7M0F&Ix{S0$08%jx-e
z|9Lg~0Q>)`{Lx_&$pDEb;h1pnGsWak<Ztu~`mBGeBxrjy>;oY^{0L&XVCZ@sFydv8
z(~?L1>}8V84(woF0Lmz+?&APQDbTE3ynIFP{y~G5Ry}TBW2Awhmxf|ty!+W2<%V*)
zOpKKVLY*lA#DAULmc{T0$nEKDWvg)thf2T4CV&tf(dkl62)rDPKwJMas$^2TPVzlq
zN5Q^N7h9ZRWB`bS5~Im4f}NR)Yz?PHhgPTh2&hLeDxd=$1Ki@w>OCOd#{eFKCU|~i
z4Zzzs_0&m#fD7(5#5*b%X!yeE9D#ei|6#-a0@!6%r-(<|l4!bFDM{dDi?xP+jN~0~
zf}wFT40txG?A)ENLe-DW7HUj=1bxp6zq1SMo8Xz4XM3=ol_MfC4PVc6CkppOe~2NI
zu1)H;$w*51H|L}32N}Y$O8bR7zm+|CgSiMngOee6)jWgW|LNIeutU3E?o;Gj6*7p1
zQszaKAiUOfORUgC+}yE;SlLD&E;cn~Al8Ef_ED+d)u0Wl1V<a!rfg3hVRL4<Wvvb2
z3YD@Q$};fn^Fx3TP&UC{wYwlk?>_Sr`Tz^jwi8{lSTAYdxu5?ID#P`8mZKzE3J$ac
zpw4ZR<m0EnVmSkTsCkkj#$*)fa2cP%P8lvi7s7sF!TST)W@iv77vUJ5_u_j(PQChm
z>>yr&_*U>HHo;Xvlcgt_78n%9KmnV(4r)Gj7V~<k$oj-zFZembuO(7)Hq3yL;8!rN
z8ml&yp9QL~v^6JiAae0i(arcFx5x*pE9I>49BV{$axmDtis*d4^8g_YO?Umfu;kxT
zz!lDSBcRhkWh@$lN7jFulx@(zQ8u8wMa_nT_<Zh*b2oS34S%Vl-!9*zT6!+I2A59_
zV;LKWDduLNLrCLvc%?1GC<aqwuEnhKit_L!MNBny@&9^k7E5r)C;n!?AuX(zN~J+?
zGx&5VG~{uG8xn(funl{3D%{g>Q(9vAN<X3$iWL-<Xtaro;%QFZEdIh7`o|L{$Azw4
z$ShMRT9nE2c=FzOd9-V;M4P}1b!s@7d|@zL2&KyN<m9ww35!Qcl|UPVf$&zs!?#hc
z;gf?Zz0Eg;SAEzBo+)Tu>Llg}O5*EjjrHp{`W|*CYS#0Lui|N<-l|&@Ibd5;bS}I1
zBS~5|ef3OYwTdm)sNi;f(j-lDJ$LLy7x9SslF5~BlUl4&tpM))NE>VS{rjmBcqJ_)
zm_~M|kdICMv6-E@i;pd11EY^*n&eMk*Rf{z`uG{oa|NL0=U9q1BM4f|Sj+}S9*|?K
zd7MGHpBNp9!bJ~_%yX@?GgXrELJ#CVodWzlFe4TCr*)tmW3GSmg+)Pr80ZX-uI(Ef
zN@Cgs><tIAseIk!VEK53_dHMcc8i}I4fiz$p@c4g16yyfqbc-6IUpI}iBuXn7{WOg
zXK2XvV6sydV7|C>TCfSERw@69n=SLo1zG>X2u_dl`sn=u9SyX?@ApvM0CQI-M!v|;
zQ50>EhLE+R?2<ZNp~1pbUsYCud5vbvvfF`~BeC0zm!QbA&y9oU-3BJ-;X1-n5dZfN
zSU|Q*Bv{vU*eC&Rqn2Y#J(eRx$wu8&9dP?cL2Q`Mw_UPEcR1{}`T#GKx=5+y)x#Yq
zkx1=Veww|J&0akEmFa7jH~fKT!-9nr{#bGj+zGh-cc6)k`SIOVyv0%-1`cA|1i9lH
ztO*WBA-)id>_urE;Bsc<&(ImcOuC-(PZFvqPl1PO&K4}4vZnmL*^I8oy>2sl_QFE4
zo<5`q9JYs0EX&Q3_W({=J^eUzuU4Ta%&s1SrS7(Js+XAqidG2eooziasn_V=)QmYH
z&vr$~momO&En{}oNL|~%Ubyc#u-R>qtFTo}x|_dZT${bv)l0!gbL{^6zZ?4VX>Gcx
zGJcJ=s5yJA)Y&yLopCf)t#b^UFk29hr%R>bZF7$p94MC6H`weTk!#aeS7kN~*kCIr
zQ->z*Y%YxR)yCLy+wiEgxa3x4b!z3Bx}PpyR-sfZpj0fHj!i=E6<yXJjkH-ti5ZwY
zT`XJvS!M7zv{R`wW$#pca&Ji=Pl7=9*-1(rf2Q~KPmV-}HL`-)>L}&~BXd<&V=c9t
z{xa41s3K#@>+alX^Pggsm!s_!>4EO#NVOI;mQH_6q0IxsA1I(K=c=QCD128JD#;P#
zYC8Hz@7@g3`5Q_^40gWlm?~DS+VF<Oiv-17Bey|;#%3lcKWKSFNjw2hse8*ZLDLbw
zH)9#(+xVUG8NgjbhFip(;aBt4ye<G7ouzs0yC9Jsb4iy5vOa7f^rGtCP%I+yT*l*w
zjG17v@8rO6Tr@b<$xa-agcFgm1dZIb!DGT27+b3+(d+u8Y(z?^9kV6Ae_p3Mk*||A
zHV}tJ0=t8s>+r^QJWN8B2-(mKBsDO)yRI^Eq@fEcS<hDH7LiSaRWiSEU-ig%+XPCD
zQ0a$+wtJFdV^pOlkQh1u>S0XEm&U0X@4Puf=N`s#B{l(h%E2t?yVIEFp*JOVb~HCA
z9CCEC@c;zqNVy}~mr)`*P2RTPIq?1ppW1|uslwt=_~G^<O$T0&gj+psCic*!;i^Qf
z#`eMwW8aQ}gjL=+pR4t^mP{G_@k#$={qOJ$jR#<U9w^w$dkR10etT|nc&~|391iq2
zHg{ks@tz}L@@;;IMuIl1LkE&Bq37L(*+L%^x&WT%z0H-yN(+gy4~t=f@i54N{kD-{
z6A4BYO>WWe=*8-ACu^f?^*}11L7Rqp<Beely2_WMd<n>ckHmw*pj3<jv{2aP8y7ix
zYk^-V<sPSEt`xCu`81SD(E}_gVp<-S6p2h)fH1CgN>=e^5EqJj-uY^^_YQ7ZEwMGF
zo(@)PjO{H^8F}Z)Po;JLRX~@rLpk*EfdbR|=8R*xfC@<%3Eq>eZr{%dJ$gOwOwXeJ
z9csX512<8mJW7M}2fZjHq^jXM+lTEeLHE%1oz$I!U4uoF)W7se85$qT_4+kbS*-&m
zEGE>p!k?6|YiIjk7f%;c!@(d-$JAomn@|-&z1%aj+Zr5OHkPQlb;vQQB4xDRx0a)k
zsn)7#CXi{?A_@61Y~SlzaRD{CTUf%?cMhLzI8q%f*W&om6fa*@`sPBUV7xr37!D4$
zNa;;qasT=v!x~3qMyx^wt;~2SDyp&)ohI$)CMz6b97L0suci<!Y?e09-a;E3-B#M3
zL|326SIEVAnN|wCil>gIZGtg4Aiz~DFI_AzpiX5H++{P(oUJP%T!E1WX(JP;@O@t*
z)970tP&hUse?{1;<0ZI@oLoR$jS{8j#e}?UbP?lB=ls?}gU`j^-hrM>-!}r-u@kEl
zVcS~#q<-JOjzHH;K$iN&CnU^k2I5Zwrf_-kC3ql1J%6ADQmpg#v<-g~@xs`4vw|j`
zaawZe6^6cgfz1B%K>nykv;MGgZv!yv((MAD-9T9Q?rZ${5E~i6Xj(jT-)-!T0rK_=
z5K@&{cmO~wQV`JMD<Sfvf^`I<s1nSb?zubsz1ZPrdE=rW<K*e!QB(H0D#(x>*fG01
zh|dUo6F$+}3vv~}+;r>uY@~4oGBr~x(*suL+Bbm%tm2Q*T2uu>$J;9(X!du!`vAFm
ztMuLrwMfWiVKq1d^$~bM+9uZ8(3W1b!{SSFNfmklm*h4?Y-aLINmP&34*yf|ZE@`|
z8GutF29Vd86ga2sjz{dlyMZ?(P0DNyt^6q7W2W&gXB}K$Y}9SLKh*u;qycpR(v5I7
z&>Y}fE(6=9_>~cUv4s#&Msjr<DLPEW+yg!Wp_uAombz#gI1yUb5h!kg={J&GzZLRM
ze-D;rBmAll_<1yF7`b)>tntNeH<smjx$qTGFgJql(OTtF`Q`H5+gBJU+LJ3_l~{hR
zaQ_B0t7exojh3J@iOsELY0<f63G()IXL1HAReX$5;MliNa=cO}yE43s7ujpdwHDfs
z5X&|uLxkrXX%tIPX34Sx=>@S#bc-ynfIZpz+z9k&-*blrYr2`~>*IdldGpH;GifWK
z4<wbu;n01s6ml7m3*#j`1Mr0fG~9+_5s~^uoA|Ed3>{%zNRKCV3~#+$@+G@4_8~XD
zioaQjo0G&gy=1Tc_qg5Rrh#t_>l@p>$cT#%X;PkFRZmkasK97w@DJH5W%qW^BAx_T
z)5j9gWb8UQj~AxDuWSqEZ9E-p=O+iZ`h2vPqD<45{;ZKY=dt${si||~J$)mJM7LN=
z*&e*tUXps<*$ie*s0A*yCsysO#7eN1oVBtPDt51%$@fBDzN7zoX~Aax4JE`rth^ce
zxZH>X+2~ZanOx^nr6c{!{~pHY@I7OJCsEFp;e(w6yb86PGj3tDl;Y_*ubh*I!KYb+
zvQgT9?e%98Q4=q=H+oO1$eJvkZdbEC(WKG($+FWunN};~UlQ**m`}fS+wS-h6Zl3d
zOA_wQd$-#TL3k;<JSlr$S;PQ6?Y0LuAKt=L@`FP6rxj0!X-nB*$F9VcW{gwHf%7N#
zy@gq6GG4j``%H!W#BI?Hp@l4gZi1GMz5GOFF^_BZ6Hd*w%Q{seRFV$JV3QEfIL$#x
zv?oU+?*mRil*JDX!e_rfzpNX>eGy=y`hIqdEGJ7!eJo&%)j$>Zoro?j8debp==S$Y
zQN+vkz-mo^gm>9Nk4KO6ZY6)0?m81o<>5f>HtVaFCAyat!6hlqL26JOmhN5d1#FZ@
zTM#Q1a1hp`i(vW|jk?P-DAy)HuY^wKhb}?(cTjhhS_r{6l2<K(W~9PBNn`u9$otjr
z+cthua3kW*Q+5@bjfsfAN;SEbIS$;ryUDE4W_urE<)wlZgL2C*0gCa(&nBpGXXbdd
zGws6{u@ZY^ikPpjjU$60JOO3W*qMUWMB?Yc%&v>qcIgChf_!03v~U&VHX>ow>|`5?
za8JMQ;GVw`uw3Avc&g@z#aA4iKDTRmm!GEXvKd#g?XLk0Ep1%Z?j?;H00f2}w2@4A
z+B~iGwZWC~%L<=^l=<HDdi^%^hUtJC<r&!={YeMgu8vJ!DoMx9)vUH`JK4V6ay!Br
zPuHnI*Vfv|-ts7T89KMEu5RBi_&-L59_Aoj*f+ML&#ep|9h3;S)MpPty{|qLKWpEB
zN^=v#q<Jw%dVP|0x8wKwJj;e-iUDtNl(el&_#nj*UB5Eivn@6I0fMaxdL5lzdb(>A
zvZzU?Dw&wo&8s(7{~?vgbHfNw<gLw@XtLBYtP8s%a(|cCaSM+-LMYQuYfpFX1nc>z
zm>)}r3)6}ko$1~tK8YiqUD_)#T+-M-^G+(3<t2jK(agg)MRStKq94tk{!vBxQFG<t
zw-#QK!*#8AOa<S>5;<4j@`{u%mCt^D+RvBV^Gz74l7tg7y{uv|`hbMPIz&?;7>LJ*
z)z67TJjfc}x?y-1ty0@Cd|+W8N*_}}ec-3V%8kG4MoygKtr~yRf3D%imqpHCIAGv%
zwRpuC_T9!=tDYhzN%FMsn)vNsC|(03P|Xoz6~kQP8~y%5FX5(AiYCn#KJC^mwf1d}
z;&Exj52tH&wS4L<$uZsjXyDL}rrN5LSG{ymzLHX$CHZjZp7c15YC3!I%(Pb1TI5?I
z<C^7-`}sD!Y4xE?;)Y^>!cB|_%wY0p>|3sVBBZ$ka)2{O-^6@^*=Z)DiXV~)TE|x?
z&=OJGuaB58{ViKKWk&E4!MMM}RNp`xHG-R@s+n>!*I`sZIAn*{eSdAzydjKv-jS|g
zyg8;=qmhrGT=M2pQ)KNI5aLim`ym$_b;eg-X!#Ft0U>bR(PH$0tA^bCtM(P8L9LIu
zT21kCO@?P)IdX(D#HmE%t+!fv?l+nprn|N9hX{q<dp_2O%1bd@ADv>27HebFXp;Lo
zg5@`_tVJ4~;iDe8P4KBVzb9xbZryX!s&IOgRxf>3Hf?q%Q*AP<8N&J~Me1?ROOe<{
zPg~gVceFnC15{kmbU-daiR*jP7!f{N<Q@e~WngUgL#v8W<&>3OtHGdkP<YR>NxZ$1
zWbA`XW+{5UJc{QP37bdd!Qq49T)nI}`}rx~uxpb2?(cbA>GwBbA=5cx4}4gq0>6|S
z=U!L3Ud%DbJWs`r9Cd_`uhT}0d{+zihK4uB<;(~sr>gLIW|3q0#&xoex`d3ef7gq4
zcz;!v*y72{kE?Ds%Q&NbS|Z5NnRFj_Qx%gM)xwf1?b<pwQc$#_T$q5kHt62<v+t2_
zoLq(6BwxF$;+My7V{W}3jE6B78>*k@Yg6c;xDKjgi1aC-#`8WSObQdq%d$=q)QzNT
zt4L1_*KXo_YqhxgC*6a>q2ocrk>C{9dBt_Ic??@xkOIp=x2ODupU+oxc!vGeG-?q;
zPk|JeyQ<X8YLwc^hav=HbwINV@c6So?|<XV6&alQIMm_{ni)X{-Jr?ho-qD7KwTkw
ziLtY`--Rx1f0g(J;>5xYJQ@#MLB^(t4B6IW_7}<TgbJTZ9QbNC)MQK_006bfgt11m
zA-rb0$kU#DG7MU9E@EXtiw({^$)q&}Bf@C`HG_pXk5P~d$<9q;)>?QNM&ze(->=-}
z@sMLY`hBcG{s+CA*b(2cP{}QXF{OcWO%z#*!)ozI>SaHNrVq`uhFrj_%IKnocMx<6
z5sOiXoQzxgXTVqfmJ9f)4SYlMdwS6%V5%QQrM?gdh|-*G0K=cs+y;0<C$-=jFk&)1
zfs8Bx*8eLGeT@<}fPTaOF2s9PQCSn?JG!vPo1)ij`-@F=`+(;pb&&A2zeS35m3aJX
zRC@Z+97T%~=|YtD0O~e0?|?I7_V;{oHVs0!HtvMr5d0YIL<PacGX|;n?~PTB->`G;
zED&>zS^QKO8Ayp`0vQHs%eD|j#F4Dtpko4$pABdhqr(TEmk6nit=h^gT8-)h9}E+0
zyNL0}gjI2TH%1?NOvdxMn&0tHz*;Y@o5Bvbh5nZpfVHzxrchbWN5$}Wme2za#n2sh
z?=E7QUGn5cOcEppO<t@n(d&BI!nuT-cl^|#Nw}8_Zx1~M94;!rQ3Nd!Du0IIlewVn
z1>jm4Tn6<To@~&Ow8@H?mM?1O7!7LXj7&Xzs1QH;65{2&xSCHUV0$rE0AxZDbmHyB
z;4g|aa{$FQ$ISPVc9h0d`vdwig#}miX1-pWn$I`KxVd4?NHP9vmuxMGw+jn{&!L*n
z#vISqZ+_Z|&D*&f_xt)EjP_B$-h>ZB(FuxskUpc6Bw@h8<P$~Ub8hcqN2&5u{nTmE
zNyPW#8B>ev)gg&n;vYojS1fc~Lw#RY{WEONwA`4dL2;T!b?s)d;5dJ<t6?x0XxHNE
z;QOs|WEeSDqigo3cQ1TZR0WPzJ%g#p9C*At1Ft160hYgGBi7w03j<cb@rqzk!$hg(
ze4K=q9-!Zl0ZJ)S>}$Lbl2b;aV{oTC;=f;6apJT4z#|oag8%wHptomwsGNJ4=kDAo
za77{zRf5amps~uX3COoPQRu?Z7a6(EKun$e2*6d<l47b+*mXRwbcG*iXna`kO{uFU
zGC<&_e^n}h%4iakGRQ<Bcmnx7=sa#&n6nlC13X$_!~I&l2Rq6d`<*<L@^dV;;9mIt
zm&<DCZEhs(!M*_pjex!qLAj<?C;Y?f{Fm~sWzFY5%GO1+;pYs-9d()NfjqrjB#pvt
zPDp(N>MwIvFPNs_myM=7H}`(f#`ur-`q|hA+8r^k*#0p4Va0+|6aDGntLXg4N6O{<
zt3t2(kK!$8wKopffj6`&%<5`S7f;Y=HELlnG&vqc2RY)yu8fy4KNe4cIa09a1a93+
zc@c9tlFE|h)|!3S)dIN&qYJ-tGwYgMi&=fx*{wgm8!dLF$PdX5%UYaxYS*7->;`+r
z+!E3R+SG<q`jo!f$82do5oj--sN@^uKd<GuUE$-;@L`_Kl;G>LLPJ%ZqJn1rGov(z
zKOw@?bW5AW>k<8_qU3+RFEH)p!y@>Vc@$jfdZTwW(mXkGCmsf){xW7oNwj@Ur(k~N
zAtpHR{nPoaB`q7v9$UP)VxjotE{ow-7sJ@q43ojaRcDTEjoZ~8+c9+#uU#W`BFiG~
z9tk4mFRnjyCFBlf(~&+HR4*_ZXP?^?iSy0e@cfa`-Vd6B#j7u>Hk<9bq0??<RM~ZN
zDWCgeD^l#e|Eyi;uI?W!;u?Zm^@{uC8r%lg9zX2`o3iI*FS~YFte&=Y@x^^<)FtL|
zU4bW3xVqJ{Na2*lis)34GIf;r^UV1n)Z^C~LpQIALy-zPjKMwdQZE}jrnrW>FvXG$
z85+1C9x@I*_%kb^1>6=Eio_TxlvERs@MDKse+cpurwE8X00Ff`fYh8yq<aVui?MuJ
zqU~u)0=vv5PWwMHP8Oaga3Do<$%Q-#yA;}>&Ef#iW+e$|?b<+z{5^7Js70TeD~=y=
zYe{bdgd`jy_zLC(TEO>XOTp%Ju|tt;-T_Au`!#!PtSnl?mmQS5BdGF<^t&L^6dArB
zm3)+a9WiVxC@yvnB<O07AgyJ4N-0>yS#;#Q)K<jNqv%=!lUH8JvK%Lqi2kzDfc6<`
z{keY(Byx$mY6uZ4tFXWQ7GEOu1aG~mQ*xf@kc}G(@w-nrTej3uOcG&tHXNdN9KB>E
zU#>cmUIX@~)Mzly-9nQfGDp`-@7N+6!WUHAK6ZSrirEXOR}jX%OTha_07^IY+hKpI
zOIiv6;t4|H3#ND!3N;t3i8L_WnoW~9%iI1<BfgAzapi+RD`V^eW_62A#22qqSMCf1
z$^#NIVS+j2*O#ag;L%Qi0AgGUiZ-+i4Vht?E&U5Jnb2S)e!#7011$O+bKmJK=G7Un
zyrS)ZodxLc;+a3QsUW$8I8<QjXcsamG=qyFpaXvyxE@$s<;eZilz|StQo{GE6%0)m
z3|OByS=_{|Jns(J65bmIUhxiSYRsogc(i}tBXxKF41u;}-gr|wsEI!ugnz-?Q=&`I
zPJaw3R^?g7ElXr0lyUJ8;lw)&Rj^*FG1-u_EttOH>$g_BE^Tq!62&@mqxX)&D2Jj-
zWYgM$G1#+|x)TC2o`l9UlxPZkO`P-eF6r+@Dh&bl_wy1R4ti}ZHl@_pHRt~Pi~aj_
z=FqWhpSenp2=?{AkX5|mW}o=o5IfGR_4eGy`A<AFP*^C4PN5P{#9EZ})-KY+9Y;f8
zg_m@XuuUiuG<_QZ?nWI4Afxs9$@Obpm)Lv;oN(35q5bpq+f`@XB|wGMs8=dcYgBb?
zZEG71{XAyA)a-IS_UEojTGf!0kghTZ_bM7Etn&mQKbUU$TCY*-UnoYd2rBbR-oTlR
z<y3sdY5_#vg)z3@*Bk2EoHu-=5swjjyz8Oko55swPJTNkZXb=ds**=)myJ?rb=4BI
z@!FW9dUPeUE*1b9eA&W!>(1lY01L^-YLa@G+3ffeYqFFY5%SSDJf=yLgIxMusKARV
zo*P+fTNb0Iv81zvw)a@I!wq>299?DVb>S&tTsl9sqie-dULZS${S!A&A%#N7d;D-l
z`nckO@Z%x*w{R)K#70mVOoJ=nzeuI2E!OVVdPE8=&P-X&jl32Hy#k?p+Y{g0Va&Z|
zLX9i#)gG@6^==f}$zA5?QW0$|VDJ;6ce$42pH}R5#B=OwL+J_65Q0~I<d90Fe5Tpr
z_IPxNEmPi8JCo%zPm4H~ezBLZDh-P?Rjl#0vEXUpWDkCW);8SJL5(FrYdRG_x=1$e
z`{@l_68E_|1ge*4u?^cuYl$p+f+Nk$Qv2vIQ&;I|m>G@UwSNGE7tieEFkk&;V>g#+
zyRR!E@TK2wKP|Q2o|ZD~3wA|HvM_VJe}3?P{>b&>J8lJfgke4h*C-;KvR8dmgKvl6
zfC1*KqYT$#<I;EeN_DffP1LDe@>`NA<m0^&@mt=>7XXdSmFhIA{6O%rOidOQ&$?=u
z6{-TINP|QAEsYlG_>a*zu^1zmuC~UJv^L?8_?J1MikWSAf>{B6d~KW2BoZCR`P8>L
z!tQl+DwU#*`*XdoiDb&Ps?2gHtY#G6jwBIYq*TMLD;Ft>a!%~^Wb1Vcw1?719#~Al
z@u~UF<Uq!q&;pcp3xpn=Qob*8*r08OSb3lm>%B7%Rnhd<Bp>-I(0%h?!dEaKfJ|XA
z@~`9rS!myO{GNT}{UC+&O{36dCbgD)`?m0x>j6)NJcjlpomEj6(mlZt)70KPz~{Du
zF7oy7gp7F+iI>>*$jzqABC952t4Ax!nu{J$b62HxxYOf)v{yvm5~AG#UkLh%1VYXD
zc>YHv+nVpduWUQ#AOKZuYHPWd{iXFpd_&-UEbxEDQtl<#0)M`ZdC#9Zg;A!siOIX$
z$kSO5@u*slUIIoZYorE$UWHyW1jDJfy176#%yGbY7L#|lcl{ivqZ>IHZIe9mA8pTE
zFy$@CgGV8sD=olRM;djgvrrY)l79k9k3oPIY#+A(P16KNNeNnUmCJ~HnY|Cx%~}8M
zPHJj1<)}WG?h+ni*I6xI9E}Zd>B>RBI@h2(DR{!X`WF25Sh12}4ndLQYW-|Mwh3@9
zLXHhg5R!&6Vc3L+Jr5oCraq@FzU5u2%SX2u^xaI>CW+r8E<XM8IUZIpgPTyMMRipO
z>y-JV#4})H_rm2~um?#>yUX6adH>4HqT%tuWI=)~aKr4g&0=yK<Kt$G;ncARFawnq
z?Jo3>S)0(V!=O@j+So00Q0MpoUzTdMVfOMzs+Eh?nZD0!b?4mOo-@9?7b_sAh4{(8
zo?8nY*RB!z9ZJq?qEE5Ttj~k&lVss#D{a<$ItE|i&l};ucmu-0Vw6wKPumEUWXs(N
z)6y5vj8t?Z*JoVYsa3uSqjT-Oowu|2L#M(v*iXRmy}y86qzuN;V)=5x4uws9#7Q6D
zw#4ICR>rC)@r|y-+x$jc`(NHt9BL8kwdDFtX9{5vlv-Nb!zo9iO%u;48MoV31D>F#
zU9IxhGHvc@@O8{$jkQ+Z^a5taggbO^0gV82@6TkEANk(Tg$}+RY4X}}VjIbS+#<RF
zG!BOYUo9fs61Sh!+FGd9SYfG+-^^8fdoDm+4Wf~F8!0fr$%0wVP*>;!`9=GueDm=m
zwgv@^h`Q=rGJiy=!yGv#Z`hRD!0@bL8{r1%qSWcLd8$aVSf}=C-To<=u)u>Gx^+<D
z!^GR7trfrEth~CB{^7p*^!1usmD8!v{^J&<=}hgH$kU=;x>(`1hy>j5dX;3yCCy#t
zc}`Q;svb9z<rZhnKg+F7<;^RHFH$=k<`-f5W~8ULa|b>4xQsnqo^+F#@5AV|KusK9
za>d!x!sWE<S$TiGOOvU+fc$NI@ZAt%Y$aVBM#y#m|2g&-zSqB$a}PaFB*2Vwl27$(
zvD?+yg>LHD%#O`cux=$$y36ODRu*DzBUp#M@W6wZl`VX}Qasz8FhZ;*@q^^bBV54!
z%Mh5UefrM0+c4d&UAY*+wVsl`F{qA*oYwf>AyU5Q(<-+Ae!8|Z)p-@}--bHgW5PNc
zIIpAO-FGp3yt8%Wh%V2#t{U}+yMNGe=QLSy8Se^Blc5me+}$2r$GP={TfRRRRz?oW
z*M@$W#efpf(RF@DagD=fl{}wYHg_d*5FYm$>*r~=14P~zwp$AUUQ@{X4J3y&Uku10
z`fVyk<MVioH|#C<u^rhH+kSLheQJhrs5;mRc_#6bC@&kPU>77CI0TY6RaTZ_>-*af
zi(k}P-U$E1pAV5Q9Ae(ij}_4C!6Xw3lkZnZ%8Rpdo)93MffyC(zELox1B5Ug#zA`#
zA4Nv81FGF@;H&6>Iprvh^1Lt7W(!^Qp_Z7I+A0#ALL~Hsype3lBe1<leRTjND(|Cs
zRW%%>m0EvDr4{l+pAfTrZ!!x?>c(<uCs&rt6VOeBm*uXjVE>SJ2KU$sF7z*oCctcy
zW~M8Na(xX}H~v;OzQ<1QR|fxKEJ!o-#Ua{y<o^Q0)w7)4!`^y|G9yC6IT9;+5M$|n
z!lCdZW)?`vQ&+lg&Ql8x314-B*`=Kg;gGF#cKl8Y-+Pp7&2bEgEYqxxQK5KtUr|Zb
z9LcP69;*d*WoZy0BQGKo5fT%Q^Q}`Q58Aw*Qd!eMv9HtlPiEjki_~_iAEDLWREg%7
zYup|3wkJ^R*zV*e1pHWWPg(}49@{~aI-R@6Hdj=ku?8Y9ud|kT+VPf@G&qEVwUNde
zqz-i|KLL_p>h#W!^g|{1AEorF#ELiL)dQ|6<{nAaeCm4$7jYLXGdGCdr=fgddH$))
zr}g%`Y!#}Sfc;*qLN6AZ{~jkF8aGa-#jIaaRUUQpwI<IQuqzp&%+PROK#;4^S|#qY
zp+k!9MsFiW<8BjsH(NORgkf`qyA|g8dF%e#=g8nL*YDY=WPRds-t6{WxD)N-TEGc%
zLa&qynaW+&D8W$2dpe|b;qZjYku(IcprH(jOEg*R?K<XZqMyC9K;4Aa8Y%z-GL0n`
zV7G2%{ByRS?zeBhuwDWkvhQX~K;Wv1ExZp)PiX6EXGrv!Ltc7bQ5q^RmeF2JipXHk
zUaPTgbMSe`6jR{UKR{!1k21|JN6X~9gJ?QcT+r#4uvU*%oO%uB<#6%sV*Ac{;Z<Ey
z={#SXnls@>BrMN6<+#ve+<&2Bt#Q${fQ&d>Q%hRU1Pxmo(b7By5KQg)E(soa1l)Pi
z=db#DX8^J60|eDddDwf;n%U-$;8H<;zmmdncJ=wsfcTZ1(dc)Kk^Ju*c1ppi#oBGH
z9cSNAYQcc7SZJ(T=)dS%-j$!8*|O9cY;{HIwEVde*bF17BIWdP=oVLuF*4ssaU!`6
zyE|7kZ5dn*cl)ik?T!XFh4e`LC0lPhrbtZZ-uMY=4VM(qoyB6LnlL2Fx3aN6Tn`xT
zk+DaQq{8>ZvK-SPnExtBn=p}^srYEU-}Pa`?9}V-$;yqu)G-g`iI7+s-DES1gz@ko
zB6mFM?q%UBMsBy2W*WAm2GlaowT92xpLfggm#~*MCu&!-!*EmZe`dV@+Bh4A@*U$9
zZJ3QTKV^6hJS{nYy5zKtM0DSgO~8uHe1d};oiv+>O}oP-U3NSEHk889eZyi3Wtt(t
z7p{6B`n$#TfLy;<D$Z(=lM~Is7Y0mLIUUTP-Ib_bFs^+cY5NprX4RzEO}V{PWo+!!
z?0ljo;+KX0UN*$wVO#`}`xlaZ%jH57tviXE9iK<`*4_HMkKqAz>%$1%V5-Wt>O)AD
z^(pj5JnTIR7NcL-?57~F@aag09z?r}kC!t<{JC%R768vSULxAG*Pk2oiFX`O&!PxK
zApL82Jv>%Ib3XsRUa|aS;N)U0NyJYuhSWn>tXWkVB@Rd3BJ3!PL|>og3>Y>;25Qm(
z5c-N&cqH<$ehQ`9MdpzXc!R%9gu@9X8F@-~51?fx7e08ufECTiHI%(D`-q|ufn?g;
z$$k4Lo3KCmDj8z>hwmOF`9W}VnoRJnaBX65?eOIla<_TVS!DgBiZ`L=*`&XGjqc+|
zg-6Nr_el!~r^uu#l};b;^OZxpJ2Qi@-GV`o0J{cKv-{oUbGGc3RNDaxDU8%@7R)M6
zaZ;ED-0>?f`?U`<&OoFWAf%?$xROu`i38Nd{qa4^2Uj`ZVNz3co=o{}yYc>Xa1%&$
z95td#>ZCS`u2<y_n5Nzvi$nEBV3dY1X>#~{0eq~t0}X{{f|dC6I$n3)Y(kHq-<gZs
zSsSB4c+xm4!la}qqdv9R20|B7=+l(9r&ka|J#!^$@#G61uOSUm=sg{hxk98@^FtU_
z(`A(@%=%*7pox6vVdhy(b6+~4zo=CBTeR@&x7po8YlN-P|Bte_j;cCpzkNyR?hX;@
zl<tyFY3c43LApaqx*O^4?(S}pZX`q+?((hkd+)ht+<X7p!{Jb3uf4uc%=wuYXttf$
z7*oUcHg|WAmb%jrTz}}%eevQit;T%k3L=K~0b56gqcp#gy!u`E#2CYToc5LkI`?rI
zdvB8R86R`t*pEm;nMt6&0_EqP#9t{RN&rBjn{pG)={r#)qn{kq0M`1~_KvkuqL0{B
z^I**SVO@S{hN6&JmX|(e8ya;<h$7vmi%sv|uM18reTx;wnOCyT>E>X1T`_mbYveZ&
zXk$)bQ~4|6?<Z>o-Cro_6psGQcVglZU$cpfz5y%q0ops24eVBznLJ(Lgl3@4Mu^nm
zbwm(b-|LM_a@TcztEE$QIXVmuuzsM9ypDtSd3VUpS7t=M!zR+X;SX9&_zs=PtSdQU
z4-r+e30W>r!N_;qN(bI*nO}}*3+b}#+QtRergE}|L2&byAa)!rkx4klZlg>>2||Wp
z%6G%fe|rV|P{Mo_oiuApx=ahs+Z&bUO;1a3Cdx&#rSQyYq$-&-V}D*tW*ZfjOed7g
zBR-YP72$Pojo)97POWdGuy;5tcm^39I_UbZ-Q3*lE8JGVH?Q1m#5`QDROnM*B_(YP
z)6vI;c<WOA$j{Lavg2s9AwGNH8#S9uP?N=kV<X=md#I0jr{8S$NvP@c|K^W1fVs3@
zaNRi~z(Rz>_CSFbr+Ssn&>qdJX0>4bZ}}C$o>Q0a4@g=gd!C1~*HEIP-H_90*Zp*7
zx~=Y4@4Kxc1)!C`ojHvR!@<dV-+W79-)|MvK`A`@B1gu9=o&G38;CrIq>QOviih5K
zyueIlUz%o%;%9?#3r0LxxuQ~PK}th{9XYN*1WP&fmvyq;9BRdi>pc7>DbNcMD26ql
zq}lkTX-})5YNOsbAr85fpnlo;CP|%+(|^4+aED2`B+@Kw02Ja*W2}QstW-V)Mr?~f
z!Y$cWux84Zn0nG9)vE}1ebSUwa<?^@>^bMM#(OkTeaX1>$Z5(oltMH1L8x0ErOkcf
zukc*~TYmkzId9PMMr3x=`#^BhD=K<J&_esr=EHigs`p_&3Cea-bCG__AbKJ2S8_Ll
zf+r&;Jxg-n8DurHxPy%h*4)ah^vAII>4$F&O#7lDALrLPf$1rK%gxbJSVbLD@C?Kk
zXC$fm@kPDHN}{%ld1SqXD^WQkc6z)*FdrT%N|bMy9)9cKRnfGCXvmh<KyQNZh<@`o
zh}AzVb=_&qbXa2YP3K7C#i-fv?wAT2@LXU@LKu}-IN_9Cs;MlT4N2xZjenPj{a9}i
z%<z0V8{b*LK9luMZ3kvAh83!Ak$?a9Q}RAG7U`2YnYVj~*nl~00Q}hFOcJBn)|(HI
zOvPpABH<;Kv9v@SR@e{SN-F!cE?XD|mU#6boK4qklF5@mmCI)oZXFa&%o=)k%o^$k
zz6Cm0oA2FoUPH1m35~?Qu=Sn@=w?FK<V|!OueT<(-I;C0&X;TBlw7N%#EuUY1VC>G
z>;bVZlHSiO2NF`CGyArv_cg0}2vfoeWL_?;Q+_mi`@`!-0Ep(c%W%GdgkJ)~V1b71
zs32La!!Tfu(pXQZ?4Xm$zxDZ30WBDw>(v<}O!$V1$_2hXAQT>+QbGg+TLe7;O&NXE
zT;zlVvYNs*Jp9%#G(0>=C=?2c5};rxD1@a%rC$5J2s*dLHMh3!Fd<NMJv@7R@OhbK
zt+#`;=sg1Qt=C+M5u$_Vcl%j|-(E`|@po_oub1>+{25U-!IDvNzT-B3>46{m6FAb%
z^4?2r?zJ4Ub6U+)74pfaPhHSA^b*+Yq_+yGzw67b+NEO#$296#`Fbyf%0D)$?2|IX
zlIyl=>#-cHw{m^@^+Vq0L}IzA;zA{?MZJ7PTV@;ds?#s#Yp(*UQAqCJNk~f8E*7>I
zK6Dj|R&@0(kH6}K+Kdsyg@J(-5k^OcsS(uE)HKPIb|&{X?U+nMtu>2X)jFa@vl0m#
zRC8*B7XC)KbBbwNo9Oe3b#+2T!K|DO15+;y)0n?hSwy$BO8d|X=hN)g4atI?KC!eU
z34W@(%2v%>i)_3zjY-;tLt)=CJsMTkWa&hhMAxtsk57j#5_%^&IXpa+zwbX^g#9S9
zsd2v-sEicDSh?xGy)OTTQzk2^ntf|5Nz>+uQ%}X$Cv4FF_2Gl)mgUzW410_`V;Z&^
zWZNHYi<D>*T2R#83!gs=@n)nOeS?^tzqz!UADR9x@1e$vy6;(CU5HSsZN#p2e=e}1
zddcTbIZcVnLv4UdBdoG)8U_Kspaj(2#j(7CF(vnZPD}e(v%L}O71Z7OZ!tTr1BBnW
zT2ge;Ws;Y%`AvY5Sf(Byt+$l{nSN{{g?(_*$SH#qrmjLaBPg8(HHeji#xK>l1fL!X
zLE~gb9AZ)v-psI9lVQMxm3pWRHp1_3*YF#>Kf8wztie$&<lMmmb0+N^AG`=|g5R>w
zCkPZY>-2V8x*wM}&TVeqLE;>P50HHHS7Q~J_~4vpn=OP3PISI@j{J~V0c1D(wWjIP
zvOVsa#(ng@rM6V}brH*rI0`1d9`2DlV40W?elc}`tGef6@fG6c*4*R<>j6czrXaCT
z_>-RY@C!{`BJgHV>=T<s%6V%ezp)*F`>FK#)z*bjlxyzf@vxHjWTt>x-SH06BL8E$
zsGIj?*B`Ao^3izOyprDV%d(jhZ68-}VmSR@KX-m+9sp%DrB>d$(%#<oyU`051-Yom
z6v585W?SYT<_3E(p^sK^@vq@^P~oX0?ek;8$BQgjkJChyia6fKbNnzN)mOR;{=PV_
zn_tvUj)jSfGK8t?G<tyR5T&AclAj&=1shvygK;6rw>-{6C1r(6`EDUvlfL<tQby~G
zWZGNTT6Hwp#eU(8FZ<DGmYv*8Oi*sm+4_Dczm%8q(EMK<_$BX}5gUd0i5(o%Z1wrz
z7i^ZlDe}mBpRm?`)mNSJTdlX&@W!S$bqf;)ezJFm1UrWu)(bnyShZgqe+Y*TUL*G#
zW;VAwZd12x2D{P`o2HE}XU`4*&XaL@LDCPkL*X6{goUW+)^0jlz3>xcx*Bq!USa-z
zln~d=*E+z6J#W^y7P(C7dC<*Z!f<V3?w+C>eR=Lk=!4ibbltyOQkq&!hhg6^Y%@6Y
z&0f2fRp`Thp<(Z<qXJuCoHdIjUQgbA0ekx*&L-+t%OuSHZWoXu>+=r!fK<fZ;11U5
zMHBk2%t#jO*b}GESLZXoLAzRvfJ1IwOJS?3itT}e@X>>xTlmChFU7nJuUbW+mW9V%
zkEILAT~#%akRmC}bxUk$Do3$6rP+D!u{igUVYmN;fv>G*G$eW=gO^8@Pk3$clQE&-
z!Df13P=fLz5;d>5<RE$lUM5Wd-0b@28#T1=z?4@~P(8->bD({;{+N;O7MOt-td_Zd
z99P<x!oM`#Ok@g}j|U6bF%C8+0YB5BcEsg2Y?;>sQITj+IBs`GJO_7Nh1nF-#|An1
zvg%Q6Y;245UKE5IGjVY(4t9R(y&~;b<JYE*PP-#>)y8ngKZHsXvwFlMX^vOA-L=}k
zL~47ZPu4N%@|KnWWmd@-;obnPW`IhneIAUOJz1{B5h1(Y>U=9mYK66`nz84LDTw{f
zaz?XrYU}xM<3*_C1ek3~-z3CKdjIQwgz=L_fZS&avf`O5s%2Mia+P=He0`iJae;m;
z7AaB1IbX&;Q=@7!)<$4Cyz-Hs+nOyO^&Ro>g_eoU>n0^`XqkkmQz=C!^|%EL9&R?9
zA^QEY4%D=_Z;m2VJ+^*pm1d3MDwX7;mk}T@BmL(_^d)!rhH?A6ZjM0Tls-PD#7JvI
z%T?^%bUi*fsV!}`{<x8$-DE7ugNV#v#~9GDMCeIp<ps^5A+1}~a~>IiVq$%JN3=DT
zG6984jwZSU9iX+^V7qPedp|46KAre{7Ta7I8#Sq&Jmw?J-yui=^@u3{qK-4lcskDq
zgd5?MOVDY}ZX*bM`K<)SD4IOXxB{Dnwy}8OMH+n3vW5>oW;_rvZPE!4TUsw(fBa>d
zX*bgN!I-y_luP1%cQom^`WTpqx{BfJ#?^S{X#L!n2w+%9-+eyQso#7t2f3&vr}(`S
z^xcH8fVUP}b<ci=6_ItZq^kfSa)J<tbGv*>D<D;Al&^j;aM$w(q?CT#{vwaf@RNod
z*-aFJg@r{alJ?%8zztea@KAG^2rC$9QH;{Oes=j;F<?L`X`138_UgR7*Uv;=ButYY
z*{fPRF*Y)qvwFj==YVtaT$%jtO#bfRqra>_igDF#bg-f40v>b-)Lrds*F64+QZWG{
z<Jl^pD5Eho+r8K-1dW@_Cb9H%mT$JMf=)g#nHASr5J~l0K;Ms51Up2O_WB}Kls~e?
z+}vdjB>(9NLb_6Y7l<ZwfAE@v!U90-!ioH?p-#;OQKBF{AqH0JMb8-#N7^iz8-v1b
zng;v8QR^b{%RfNrs}XoZ$5nWnakYkdrv-D^#inex2|pwyueABx{RivQIb*K^&q_np
zm7g@62EG5M>KJ%BT$RL$bXPo5MC4M1oO(Vjp75y)l-c#r&BH<?8XmLSdfRIF9S!AS
zt8!ZMI>PybXVTN>{)@7S3KY!Gj_5z_Ro#M}$RO<SGiMKeQKDqFKHqL4;}te9FNSM*
z*)*ph^t*d4r)8ip{Gw2=`m1x-&^Y*7bJiUYg56D+ay(aDj<A4)%b)~f9SD{ID`EU=
zO^&Z&O7ReAk^+{Hw=C+dCScTejIYFhoXn51I-?&x|9UYi-eEU?&Z5-p4RGUoW879n
zO+{6N$||@eqU$!D>%-80tk1A(HyOTA0!8LSNlE#8P`HgdO}#vI8x~PqvsHm-W^32z
z@fP9tlJSe0795&)%v5pXN8AyHv~{->R)iVN+!MeCSIeJiuw5;>f<`{axaxSg|0upW
zoUS$w<+UAY*z!a^mv<F~cE&BF6g_13opR`A@6wk18?^c3OTG2y_RRTvpuy6l+AZYx
zLv7}^`TNf{tyI&J4kI)E&)wwV`Q+*FW8_<nVwL4o)v3gzh4Q@f?wS<2D)0S_#(7!x
zMA@xf4o8yrl4Q#ASK@o0Z5vC;nA^X7)50>~CS~RYpOk2h<!mUpVu44Hb^40A@m2^f
zadXpjJ|yk9!us@`TTe>0XBH5y9`TB}rLg5Juvy+5rF5rrayOL(NvQSM9D{rH$Ki7D
z6}-+lgb5NnysFGW@|&*@E7zvzlUYEHQiP|*u4rLF@QL^~bQp^VJsQt`045x2PZGiV
zPK=KmrOF7nN?Q<_m2>k|G|`YokI*RvIOT}_=wOAAL=N_9h<CB4z1!-VnT&@&4eNnA
z@gLV=(;7Mrsga^T6RxTXnUzcr>#l+zL3uBfteJrQr|eyLns3*rUw9{`&Dpl)Z<?=Q
zu-VJ1niNUG3Y_GLiuMBI>1Cy-J32qY1O=&BdFIYi+`+xF@VUH*Te0O8&TOdNdL!!M
z5FXOT>&N}?+xMSE>LrR_tTJO+%{k*p>a>Ly8cO+$?-rWvr+E82k?%}L`sx0?bSl~^
z#08nZghJi}o+108Djh>CRQWG;NmuQoAaz!cS!<Qt`OXLnhk$y-aRR!JJmHv%eJY-1
z&M(dCu!B>U7E<H|nZs2zxH-DhgEZXP+!@vIi{@qa>9_9_Z4fAk8@S28704=?MDD4M
zQQE%lkP9PE_#<u<n;;a2$tYo?sdQmPr{7;S<HAO(l@MvalF%cTK(^Zr6@FLhbnDTW
z#i5jFna}4qQZiR_9!p_&D#Cqq(Ky6Fu<%(<Q@ONUdAG+>F~YbjVRZZ4tJ?8sl{duM
zqlt6?8b1^V72KWNpN>@Px2UxPk1v2FOe0V`g22!-Ea=O*Ex|~&QX_8bJM^D8y3;Fb
z@c5gp&%oU99Y@}=+!tOwCb*h0w7kkNJ*rY9W>gr$JV1C3<a{mDKghyEMo54LLO0Ud
z5E<oY;5*onOMAFSNWtyQKvvU6EN}Xti4TI|=v;ZeVQ;Xd$}aGRSE#wNzW;jR0&gbr
zDRDlv8KUfVOxy^y74r|!l2j1p^(_feA2cCyh`=U0vJNf)Luk#wR1W&%lo%Rqf+rR;
z`p+Dzs23{!Mlj4H#ffA~KGAEm)BS`Zvb_9GuE)299eFpv0HycV0iYD-cwmNaz%osF
z^AQ?@F<laWU`8OU*71w|P4Y?4_B@&QZO$9wdHsaRyNj$nUdO=gsqdS;A@s}xpF}jd
zP{M!W3&AaRts+3Dlj)$~pTR}^YRTkN2*H86^}!>CbwF#Y2SAgL{9)#5P6qeDwx|X5
zasOd^8QZ@OkO|?|0r0)V3mC^p1wanF9ghQ9?h}iS^_?X?)?l;0-(2)@x0*Z=mdI3y
zzkC{}ydq3DJ5tF8`RumOtNl=v!C;5Sq%H@6+8j@vT6`Zk^U*f*n1R_(J$C}9ckK|1
zVe8EkwjRxba@u~oi#{Al^d2HVokSoI7i{KRBfm#t@hZP}B8Jm?pj2&L<nH}-!tZ4w
zkWlhNfmS@JY{p-KMCUL*dyNAcp2}LE;qaU=yy;#qp};jOtnT_abD@^j8WU72)*ILL
z5^GGA>N^4r&mN6ilcqHXQ#>mI+nsag-8{HjeEy=xYjV5V{KAqN-n)sCP>66)a%BTo
z2$Ra*iT)Om``C|5^p+pE5lbC=rv>9~Jt<bL7mQ;sm`pNMTydfJYf&lqKA(++4|Ugj
zJ#bq6c(h6wp?aI^j70g?4w0s>X45oKE&cP!QjWifRNLQG@?b1L1Ynuvbqn8`rU|{+
zyYiljTn24^H#T~mxF-Tf`l-GyG}jfzdWV43DF6DBN2WlGkI%)Tk`w*Q1qNEJsQGy6
z>D4I22<PcHNzw(q4+O-0CS!<!yYIe|1zLE<TdmZE_521loOx#G76&xcHtfqREI~7`
z$BVbTZ_L~#(zvqpe4aS2;pPiu@vOg}a;2W26c}e-z+v9TDWXm@>!fkn=YV1J`u)LO
z2a`UY=MMmZjXoxLt~GxViF<4Qt#LZh51LGgIoyJbcjr+>Jx3H*8J`UK(#pLXf^1qd
z=n*IiW|(!G243#1nE*lU?NRE0EaFhNqoX6P@?-MKZ9n>HNDr@Ioi4ofdP@SeMqatc
zpA+@{s`rtp;SkZzp&rO&l!i@%IhRp?wger$HeoODgOlhp50~qY%kQ<jsF2%sM86T<
zFi6dklQvq-&)gfd$nEx{B@#G2W@XhTQm&VsoysK8Y0K_&sBb3Qe)WK|4c?SMl_lme
zdz<kAe@l<yBd1RBm>2=^&AS!TMh0BHAvU%NO){F?1gPuhCpgt+o~LX*8#lkc7qm=C
zZl*TjEeSMRsA0lM+qSVS;%#GORqk_9cn&*FyRa*sdc`f+e_qcpem$YW4k=~b;<a8B
zn+frFbe{VYyn<_)QG8`_@eIEX%ny98qGEURT+p#(U4#XBJ)efQt>+OQYNP6PX78IR
zHACL3eUI}<e_$;r<#CYkh&4KqUZuc2?3<8L4OQ(nXAJ7C-Iu0wJ*1NR_oL_^Pb6|5
z44M!16o%Icu^97ZyO!+nL>%$u%Q|=L6ZtcTSRwJ@K)k&S<u4nf|Ap@EW8X}E+}olr
zak$ucUP{H<4_X_SR-Da=DhgS-@%iHZ8}q1IaYrlzaq)!W#fJo{?K=4LH2R5{47qh#
z^KXF!E8Pey7F0d%iqr*DTF0##K~*Yr9m&__xcOG7`<KUROof+sAH{8KludgW*y=jf
z6k9I!)$(E`!Ue4{%D!ru7SiT&JTA?Ye-Wv9FW8XnYt(Qm@-g}&)d`_`tC}}G88Vf%
zXBIRh(Jl`29)4G3xJ%vZS#8_N3etgq;{>lwVX)a1E2#B;x-St?R#vu>5c6!!WHk=v
zz@1U`>U>YtfnW?P8lkL%Xy$Eyqt3sl!p&sAx&-vW8FSdO(|*g`=NaCQw-;X+psafE
zJubu#{I~Z0?pfr+n!k#A@vBF@kkFJ~H3^EFE;&?)yuxdJhtb7tnkDF^x-BBym%I!p
zQ3V6pEYD+f{ZhU!1&>w0{1R-}a!4(q)A#ZNWL4!H_4!Z^EIW8r$Dj{P$o0^MR+D3G
zuk<Ce4y5EXpg@^`m2f<bx_8}$3O)38rRFA{agI_4oEGVp0=_kjA1M*?O;xiD+>HMY
zDnIzfT!Z*7MH~rt{glS79*cV4J-+>`4TlwYJns!h7c!q9zV?|1;PLCVt>3qb#(%x0
z@cS6sTYp`Bgdu%0J?K7Sf^tk-FQku+th5PN`>tqmysjrjEKrJn)hme>OT^YExb(3b
z*%f4am`w|iY-|Iuta^wE)^%tlPw<r=3Zt}j2_0ETnLjc1#*yh@pl2JpEu<~-?L&Ts
z$amqCQ#t=F*ToZ@%N-Xc;tR)<&KgAdZs2?MGQqh)2f|iPDoPJurr1H{U)6nhSH!!6
zUIQq6tVLz68PM2|5$0R{4(p<Y+$4KZP7V#Wt_5J5du`|Tj*Cv;7tF^>gI)BW{;YNm
z{(!$=5>}|DEDtO4gGzau*uaxG+0ce~FyfeOpRmaoO2rP@`1m$DC=#DlRGwEjD|+z3
zc~vhy1gH9rI6#A(8VuUb;PW%rBpuVtlr;1BiY%%PN)~_d@wRNy^L{emft6S&2&HbP
z&3D2Tnye3;WhMHgG@iL_u~D{<kZ(<+on*TfN6F}4U+L<!Y7=hb+E~IxlS?|^?!ney
zk@3EevEH`G<~8b$75++QN@}t#PRe1S<zU_O+)uxh@DttU-m7@x))a+P{Y+cIur_Y^
z?C1b<yywnlv>v;&mu%+!Xkj?NldX5}3bh^4Sxzo4wb9KM0u)j;yD7V5DvLPY)>JOn
zfVrooJuP1UI~Ri~$AB*kM0!%q0Ra<aHfL+@;g1NP2ct;J6xss}bZfuo)gssANvlfm
z;`7S#6QP*s&vM!<6@_lNrHF<s+EG)k+<>~iILhbla@WOmN5mYTh<D)NUG5e9Oc`^q
zRv*xh$9x$4a<S#}2}5bXl%4OGc(3Iz*oCpCX}ectcO(JZ>_^+wRka_t9WX3-rvC~;
z!c%_u!&T%wTV)8n(lpIVpQeu(^Cv+=Z=NiMn_2JnyZl4c{dH?nK>8mr9Z~gm372=`
zc$><7L4S<_!AxDY7uhs4RA#-`1?i!}W@f`_H5c>MX|?likH%|#2Q~mmXTz)9YdT-_
zgg^gSmX!#I@M4WebSN(<C@8_p9*!$KxPrNS{Mn7B4GQv)H-=hX@Z=`}2J)(XDuxzT
zw9=I`j&7__hJ+1P^HwB!H6{pZaC)xKx5iPZKuko2;h?`*1-~v=^`2X`($I}!m%r(U
zdZnJR7u8Xz-q3|;Fq&kQ-MXEcp#!uAY6#g4?^z+GL^x)A<6RJvqm8t5VVN_>u;q8g
z!QDDIZ(tyGR+0U+e1-Z+4q%Z~nTu{&AbL8*-ehmN`+uTl)T*H>+<NoBnu!y18eC0(
zQTq9U+uqgdYLWRC6O;JMw37K0TppM-{R`pnBKLZgL%y_c1reKM=%S`2-1najhY{5E
z2Sl=`VD|&I<*Z^$gt*_8Ze*eLx8Pv3(jr9%d)XBT_-L0lroRnL4*Qyfoa6HKosl_*
zy`7}TKHm+q)#uafIMR(H{-R!teldUAGFR;W)3ren7`5XWH4?AOeEf|c<}MUl|LS=D
z^)iG5Whs4;2=$3T)|NMtZ6@x}<~<>7h{l4q=l&&H74_3cFN5D<%l@J=u|5{uZ!-Dc
z4~M-ib~8XvK#a~0+-Akb*O^gi6ckHI9O^m@<lc=A4OQLd4huuY5e~89P(F+yS2Ia1
zFhYUiz%G-8djQV~)e^L<P>l=o3B{i6+uPY;7rHm=DoGP6(W0X0b>EmLR4U)E7<?s<
zWX<o3SKXBqpglAn%AvB2WX!nvs4ZUNtx!l;@7*NGl(ZVa7M&@VFN3>Dv<s^pXjP<!
zcXRW>Ly(j*Bx|*MQ%7-G<qh^Gp~(fMPVos64iq_V6d{KU(zNiw7I5o)u<c7mUb{Vu
zh{UNtnum0=KvtEmGzs8kM&411ki9b^Z%r*FHa<B30qDOqVMZqH{W(Hy_#1-4S@(Ja
z%Yj$Ns$a3skAdDQMR;rGU4({+To_J)h#e=wZ%@@I$MUiZHq^;+QqRzr=bO&(pNM{x
z5x-FIS%huP+{r^l3s&Bt%Zj)K7GWcc3YU$I9kP(ZIh`k%kVpB~O&G~^;iZ*6fhlLI
z+t((5>!ZzmD?Wan4s<0c>Zn{-{`kC3J5uaY81*?tYmN5$33yntW5aLK@n00b-{Nw^
z0g~ZtzJ9B7Xd8ZXI*TC`UfjOGb73af;7HW<SLdGo-Pe3*=2nPt)eS-yae{K?R>vQD
z+LM9Rfp3D~#_PaW-M-6&#;qvD@ipK25?RaERQM$uccKlGrfb`6nSXQq0-ukIhltxX
zX6r&nl1Fp=4!FPfcD_V+&`;2xbv|;^*llY=C=)JnQ$rg#bHubdqAth4?Knj&LQA%~
zZu<-*U`HW9+-5=QBTX7FdZLRMvr1HqrU_7wY<hNek@URaABAWVF*Ke^=*6rrvp5R>
zEsahvmTm?|u~jPs{l<vVwIfShy?bdln`=|ziQ6+p>3Cq&$A<z1UX-?eNXYcBFlSTE
zw;7ia$eT}6eRwa!kHfr+|J5n{_fJ3V>!?FCm4F8y<x|M+))tguJ`OuH676>bVzd+8
zQmr?Q6smcHZ|QQ?E14~>@N~<nn=JMNw_1zff2M?+7v4p@4@lOG4EvZqaF1)^rBp*;
z(q1HK@PTI~ENRi7Mg3Ajm%p@({3wB!7(SVdhw^p%Tasj%UTSI50yZA3MGUFdDo)#q
z4<2g_qe+!Yb}oNnV`Jlq$e0Y8NZr(F;4@r-nL?2yA|>{Figyf^0D)jQKY%|id|fb3
zjJ@KYzYt$tnsSYa0Hmwa-y%WV?$Jpb_8lp?jrN@xR=e(#VLFk!)?=n0D>_y#3`D)C
zyAwuT){UtjfwiqLz~iQaeU+1f!ePhbcq&JXx3UzvWW#2!#@v(f=UQrplfqX4Gq+WO
zXFg%|kWJGQ5GB&E?xs#}rd^w2;@ZZrL@+d;tb1s=eR&z~r^Q7*;9G^}#4nhCed>|K
z@tXfD&E%lb9xeRM??WN&I0(UlmnZugY7OW1WE+U9o6iiJ2wZv$BJYDm<X7r&87q|a
z`18i_K(fNyBHm|~p?N8ISX3JA-kzS3A_4C)b7H+YN9O7rZ>C8q<s`;q@&z&>?=kSx
zc_v%1I`6#{BanxnE>8;fhbTA`ysnr`djcN49r23ynFQ?K)0256Y9#FL?X<Ep|60ZA
zxWSyKhd9C7^NV1SA@d-6oT2I5;_9Yw)HU6pAo40|zM{y#e#+xO=i7TyY~5UX`sK14
z;_s3MC!{Kl34@J9SNyo9u>^qhGD#aka<}h2tQ$_n$OH7@Wd*%s|2&-@kl`Vr=B5dK
z$&iVkOy$=cqin9b{pC|Mnyew9uHRzy#>&$k&6+7a?*)54heOTEJwYbRlOZa~etnnK
zeie_bAZEw`C;FZ*g1BVX?)mKVDQ?Jr?Gd|zB!8-o*@dsR`bC}UNMFD;Xj;vO&|VCo
zo<^@W`YDj{Nfkzu<@Ozv3I6C9FST53DZp;^!F$u6mHoQ4VXC4&@uka-x6K)=T;Ia$
z^~YwZ2Ud}b-<E?np9JYVH>0YhM#yFDdGN(nQAr9&LX0i1{47>Jzl-Ah6}_4NW%43K
zk%|V^n#A!(_g$3cg-3K|_IxYq44t*{%gTC)<wK69c7qpL`G!aG(&V)>FH_R-wi6HW
zp<%kuQ)X{TMdU-&)QUjJ?+XX+#@_nO?J((k?wXEUXT}<4WOxGx^gu#Rct{ZvtXEKI
zp&B-z{11m2_Fl$QfMH?kgRxXJ_6Vxo)haitAro~VxpaFykeY2W5`2N>Y!lgQnk4|m
z?`jg&pUNXQ|9SQ_lC5o+ndK_gt|IH0nAfEUGqi^2W6u&#Umi=8O{!MrA?IxJb+TQ4
z_opDX(*avQBvn^9G}5y8_;I$)fopEtm3IQJ{TD-A&U<nN4&#QID+3pMKk6fi%@Yl`
zMlY7qEae(g28g)!uU%~2=%9BDV|+v+KH0t==~;RN;+Nd`a@|pgZv;^0-~E{jMYNRK
zNVy%d%gHG!P|}e!ykU-Der^68`h-8~kp5z23g?bv?{X}{GR`0$Xd&DVa9G^lsWT&-
zjdUxb5aU@o)2!a&P+hy@br68#R!5&cz076oA`RcrRO`ZnzVUVRU8yT=Zs_IsF=4;Q
zy6$SJ+pEJW_LwX2HQtFmKJyg$1uGf7!D&~f)gs!^OgD4lE!#FesmBRxfr;&BepXi2
zqx*p;d%{dbrSw<b8ysXu@42_+MR_i_xi4M<ueMUruwXQsNi6Ta_z?|wFM5VTcN5+q
zQR`Qy96Es-9QN87f8^@ZE^>mhH;f-W3?zEdXHOrY{$G!yr=cH=8mImgd(rGJxi)g+
z7<f4^U0>z7I6c^KIIhXXJGo%lrmdy1eQ=8n8C`8ut9%R1>hZvJQ{<#O>s#gJx&FD%
zbjCLRn`aL#;UE<IizIjVFp1C1^sYXQz48l0$@=Q%p4+m%C(Lb|p-ystF~)!=AHU*l
z%2qVIg3CqP*$*f|{61lhxq9P+%-6ptsKeMeI5>X6${+|*IBdbZEPuQHR>A~Oile2E
zs5m;3DjHBsiFJnHcUGFihB9xt1cVLg&nMaMzb>0<Cc^Y3Co<NWrKXfjMx}OfKv=d?
zcpL()hFTgb3o&^gWxKmB(ey}IgU{WrI0<s>1!Loy9N-VByNj&2gJJydp8)}%2sPkV
zY|Wc|sO4_gfW*G-H-sR3k1!_(-!$D+FPfRkWY$Zg%KZRq`~4C9Z$RAqA|)@Ak^K7R
z*T$qmqkx$}t%x#y@TC|74uA4-vzp(&4|>R-R#KrV<KB=$kS02*w<>THKnGEQa@Ctw
zSYYOQx>Am?rb8~+b(zH!B9fCbu7S+053Hhdaxx6M0j{{}NQj7aXB+ocVI&5qJ_Rxf
zpPZ*%JJ5vNIsjy*OzXSh(b@$EJR9N3&u(bma;7dP;e-~u^)CyOGqI^%_9Z+H+H-L+
zF-4)a<O)K7jZ<*xdlme!o<8TtZ}G880?OZ=Qc3I$MB3ZcW_D}xkq?Be4s{9ATW0({
zIgePlxS6HPO=enK|59lT>BF$lqIvOai21;Tzp=qT=@~&uDphO$PS4S{i?P~U`g!{)
zF!D4|;)f>duIZn>QPTXQKhZwL*td`2um@~$QDpgfeCZDz9*K`~%8d4TTipf4;>&a{
zv(6i>yR!293J)6YH>A1rS2NYNXNxZDT{mh+yd=+JOG~H~cLAJF8|EkDSKjOShpH9D
z1u*EiGTj)4bGyBZWzh;L>KjL8dOc4O1-bjfQ*gzz?O5|?3)A;(w&PoW=u6@%o{r#7
z8=PrWZU%d4*cme(8Pr4?`ovgWOy*zx8Tn5y@Q*S(8v<QQu%;Tqs=8xa0#AxVL+?!j
zu_(624?nyUjDWI$>U`@8$Dfg`R52+A<PC;x{z2X>d%mog)jeN*o1N%Gzjmwu`>^~H
zQ=(xRwDB8qUqhuAkbpHW4|x|o$UzRz?r5}-oU1?;MT`NF!_4;p>M{7VQa^F{&Abz2
zV_#QGhmMn;<}xtIj;b>BhZtygJY$VAjcws!{BygItm`fX9m~L}_^O6pYVN0@fetDb
zmatphYq6F@$OMC;LP@Rdu_iOW@k{}a-^qFkw$6-b&v<%n-AtOanEUxM>9aCj4X~>)
z{y)<`LW|%a_OL|YY%lv=+>r3OTIi_ekE3PLM?i|@;0IrAqiEqT8T7jQ_OLv^X4#v_
zCr>+4MbC6zno^%bAcYzjtmS*rNh)N+$eeBNdSM$n0BvcldSb=<pF0LP4jl^~f5tEy
zoy+0+9Cly_5ne(xpYSG4_-5*@f1Er5+;g=X8cD)A=^3ofs7=>vu0{5J^L~>*U^+6x
zsy^d;$#%=og*u6lZe1tDwKsmZ<HQOH6aMF?@XwCHJ7^(jx)aYc?(*ir@Ub#Cv~FIV
zyrzbWtZx~c#J()i_vcxm$5@L9l}kSl(+%Flo<u|w<Z`3$8$-UIh)esEYwNkOMd17E
z$OtHZeiHaa>~Mo=G%KApLo$?DX-S|ZLP!~oMO=KV%{HHanP8H8@SjIs@qRc>_owiW
zIx~U23!19Ah^v>KdJXPqV?@$R{L3jj+a+t1-jmA0ha(G3>MR8VBvZR9yQ`encC7{^
zt`?gXJ=E&l7zPt0_p)OjdS7^mwlG5WV}#&v7X(Pn4zRnYswbm#QuGIXzbu{Sz6Kl4
z?AZzRg7EF=_^0L5QjO@D>FMc-4AwTcpAt}X0|%ad{Nv#RWqRW&z^hZqo8P2d6{zqP
zmr)g)SHzXfaHYQWN0`)V+ugiQ{3@w<8bG*DuQfZbZ}G#H0smlCju@v=pM%76U@qs%
zB$?7!o144vU@VGPBQ)Hfk8oP`7XM}e)b8M}cKB|7F~4Nv?d-r$9B;ipGCL|jV%Bqm
z)Nf>x^;`L%wS4{dlsE0MaId&6y=PoVIKRFZWwQ(0Cw1?{!DR{~*jeMdTp}IYOs%0i
zp#~BAp4U_Lyd8CMC4TlJ07Dfg!Phd?p)eo2S#~#%(W{#+H#<UG7ty&<=B*}#rPM9z
zF0O>r8DU&hs)SFwu_A*N<8Ts#BMq~YUcA?$u9pjch<W4SSCyCNmuf-ega*B)Cx-fq
z5-U(N2Yjh`yci@q3V<AOs9P7&<9dm%q2J(`IOBDdH{MrNRIEi(H%#_~^8ch1V_f4m
z7>G&nPc@iQHvG;Xp-y2UEr<jh#-pcFQ)O!oB+~_1+OfX#HJ%$5dOw-{!?$L~n6j`f
z*g<NxCf|Z<hvo-w$_mtGgIi7cK63`(dj5vsIKIM^n6s(a8uyeezg&2J%*3(NXKutG
z7;h-`Z@ZPQiib+_dLo`bT*?|zZJ;*L_KHI?O<7>ut0nWuAiOyiskgJNybqUnQqIbo
zkSj%N-k<d0SMPNBy+3zUERuhD%X2R|boFa>`*3NGg!GC;uOkYo%yepWp>kKeLa@b<
zh|%4=ZP4@IKi2=$x^?x78w^AcELi!o+oTy_>eymQ8RUpU<TBaF#hbqrR1GfmjWVw)
zD(H85x2vGHV@HXtB=f<LC#y}B?EDlLu3pjTZDd7%Qys?h8e&&hLrrfV`;Xwcq0?ws
zw~wUV0Oz#2bAkRt;;s+Pz|`r$bbB#E;M+K?P5I1|83T}f70J5by{P+n8f45Q=w5y$
zgoCPTZh0@l^=b{~T*h-ZF*}3buQ!P^Pp~L$ztQkgOkvN~gQ91MKN3JZ_EgLIfJCLs
z9VVMN!;|3#OJjBmZHF&$pKX@W=sMGrSp$*56F!@4^kqG{so$vL=SDS=heVB_%WWtJ
z`+>zKU-%VcPuZJH4AdDSQUkmdIiqYYb|_{SkBYiWJZ3!`MrfzbmeALfK*Lzm{RKDm
zEdxv3qH0CZh;Jzf2U%6|v&$cf1GnYWG>Csma_#k-Ai%N$x)w2jZ`Qcbq(<1RFq?=F
zYa?;TL+mIs18iK~bohm20=S-cc2a!1+7)O=2x*+Q>Vv*jX5*>Tz(LBb{mbY1&ODWU
zU-5Kuc$2(=SEXFDnyqlh?xHs&x+;-@uzW%z1oc#40#&!su6=?CM@_y}m*nqiQY3jC
z37WI8{0)@|%wU<WVlek}9Q*7~V=N*;)Cj`eRU`~SI)eeuqd^-bd%fU09~d$bO?M$?
z{Ol*dIE5n%*48@)vV3*+FFaMw`x6Ug^N=U)G!J0CR8?U<n4dg0h8!L#@ICQNT3)`|
ztUB>?i(<2%8#jpnVX0X&ClD;PcU|=b*VU;OaE@Dw_z#wS@E)QdW&Tm9@TS-U?d~hy
zB&E8e;F#z0;}vuKJ$vGQ_n0P)e!yJh@vHpvzise(0ISR8j`YNLYBUQ)NbXyoo(j55
z_;24F2bi>b{<VB(!i3U1l27z_z0$bFRe$G1_=o8ws4AtwXZKg&c%9hsJ|=h?_FP@Q
zXpImghJO+tFQsLFol({2{=UWB)GS}?`jq7>w@$h!{X$MmO#&^gtI!+qU-`A_WYm0o
zIIYoU(Fd8jvBcX7q-!NB>Bc>tQVtVGvi8Z3wJV|{2?bT!%Hb>-7Q;vbzl6m1*+}wT
zTT6_%PO}M~f|V?;>97gaQnp;r^7_Q4U8OU6l=geL1SyL&#YBk2e;I#tReB%3KWw4^
z8!Gu<3!}e^*MIzUL(oudEBN9rmnBxIA!btQ|Ioq$trraBd2AP}UpR-l_)T!0Qy6jT
zyIKhJgW1C95>t@omvk-j9TuWM^&c0Oupb4)4+2iyS)&S?K#A@TI}YdQPdL)!6yj<I
zD8CCRoweZ6w}hkK&6|4Bj;7U-_oRxiFD+@>*GQ*&ibIG?#V~>t&%&V^U~9_G5zCrr
z2nP7h?};!Xlw(zWdsgJH0}LXOvXZPrL|b&V(eLtdbLVQ<%3RtF10KqBUCOE>5Rgp;
zZhsmqTGjjX1YU&ae?3MDw9>QM0m|c9sxtsS=(lVp$hd0*0A);Gn$EfTG_KDKpF{lH
zDNv7JrGNIt7WBGz*;3dBmXf_x@jFL7k$0~MNN;N1S}!ojLK2Ux+f-Le;wTKEiI%O8
z>C!~45(s8Hu6uTz%(x?_33xQ57Kgi`Cp-5X0?PNIxP5H~ScDFaEmBf@%Vpe`e{`<w
z;6>tVlzI&zyRHM@YXvP=F(7vhgxSNzsi6MmdFo94rc`|f$ikGu+oa`MwZY*(8f;rr
z##%y%terR#O<gj|wac~DthMr`3i-doVZ8yL+X8>U=PXYdB1tF_$P6Oad$}B~JR$(C
zXv=k$N;;idiG^9`PdgzYpL*<X>&{H?>LN;n1O+$!8^!4U_12@qFiF6$%_w~MjXP;I
z<~rztYjOgeHfM(C(;So`_$9sS&g#Mg4U<#<RL%*JL_4*0m)5IXcIJPo^Zv(;E({?`
zt@#Njk?52B-!AW;3(*R07(pQZ0=H8+VJYClnjZo(Ytt4>4D=roNSe&N4M@r#L*HI|
zF$+8Wd-j42bKV)LhS`M|;LicSut$1v9$=&UyZUYLROq*k;%3|(Wf7EQgevlNzu#Xd
z$^oVvk$4W0GLvgmRA=aqPO+(C>N{yNUhFY4kCV=oUq|@wEYJb>z95v}{SteTYUBk7
zhK`nD$+>$u?SGX0sSqkd9uHLSTP-%)aQ*mM{*O+FXOK0k!ZS#&pcS$kBNeb)bOd|v
zoOO_y5K6sw)O8gFMC?2y=H6b|MwG|kaZoo?W4+FEXFhh@Pyfli2)ftzZ+5_$x($eX
zISeLRDRy{N1`2J7!evw1m|C!%(%GIc{PqpQWm4dC?V{~u+?%Q9(~Zu~kNjrYo?u!2
z&i(QQ-o$NIxW!bI|1!@zzmdJo1!R-;@*eGHWh7yZF}}K;HLHCsrBR|92FUnb(rbUr
zCroHr8!Wy_lzf&=4uObkvumXK0DwUPi5<49oX3VioVe9yuRd3W-ulroZhTFjrs8j1
zfYcdDWE_>gCVfHEZE>k?m^cbbeyyUSg0q~8laoU|>3W%O9Q%I0M6Fnk0IoV^yNZn4
zf&4Gi@Hdd(CU@U$bzCo0*zL|0fA}~a|GsZJFX|x_Yg5l}Gp{=JT|Y(*-al`c|D3je
zor(W`sbGN-6%~c2&$rv?$nbu;UZg)c*md~VKHcdngt{&%2-ErEz0-g^{CSrGos_hq
zA_e@`XF%g!!4I($3hRgDE4<b5#>J>t(Zyz*3oqM+Rt4RG9Ksu?X-KZ*)qZ$FX^Ka|
zoo0|`n|9VDFf<*e43MXsZFCAPiYw_BMM59VlWW$xQ*Jo5oiGzaDHQ~Lxd1?=0y@jt
z?~y9Zue5OTWpt)Ae;h~geX)SGr0N@t1&3pW6PaWS(D3Q5jTKmYo;OZhR$f1XSc_@H
z<Z1&+i;m4;B9~N<JSWk5N(}Ni(kR_1Q4t3>JlWOW^u}JI335wexQfJPa9_yYKi#C%
znU3O0XjgnFL<J!qD&vVeL~elC6i<e@(6pCg)8X+M*KfJviRbTbGj<^ANe+b76=VQ-
zGKaN&;C(>LS<3>9=yB%@6EzK6qvh<vO2sV9G>`LM(bbqK5ao>bWJgk(i;dp_U4~Nr
z4cH<Udw#cix6gV5`usw!4dUXF&fUZ`Mx0ZbI+J0QYaf+LJpmw5dApfMWHXvrZl=DQ
z$?Zrf0CI;$B42U<51`~8IE6~7{pxJo896Lx#C4O>3CPZInf1o>>L(drb-`mP2rDqF
zm0*k95$||1*uw3ef$iC~)P!WenfdeISurWPx0OGnI&9ZdJeirE7&qDUv}BnFQ)ade
zis_X~K@I$v>$S)=aB{570d_tP37OB#Dep$Dd1Zl}u5ABjpw`03&q3A$Scjwa2ZiHD
zGmPnG)U{5fj^Itw-g+1(4&<e~2fm@p)y7{+hPQq)JlOThdY#@kbY&N0zSa#u$(rhN
zDs#C2yVLEr9WWv|w9C!;xcKR8O)DWZ1Vq<Q(8VMZZ&p#NcMw^2`v>8<6ol{-r<&mW
ze>u}kG*IZ1Uyh0knJh?Dn*KSO?b;3N0@F75v}E$1j8I@hc+FXyj|KiWW(@A;ZN(mH
zYIq$fn6A#ASG!i{tO+XhZ@fpKipX`G(_eyYq`VVQREXl0MQorc>LkA6;?lCqMsf=s
zK`H?>X1O|7WLTJT{^TRg$B`itDA2Z(0-G{YD!x{=QNK+>nMf3|pr?340+6+Zt<*cy
zP;FB~d|RCm)(dvxWu|x)+gX|;Kum^*m$ZG|W0_rr<j)ZAh(^qv9qt9}7dVET<m6o{
zXDHcxzfMepjGeh+ltj!X(4c9PZNb%WGB!_2HHm;FSO^wZ%F%Z>r>l|x$g534f5t<@
zv|7wmsn?zgR$9XfyS_U7HcLdmfrz<Ss9|VGs>g}``)0Zym2Dvt${NeI3-C?Q3BfnY
zwR~dS4nPxR35fStuGv*@-UcT0SM-$ZN05+sX&EA{4`3+z>FWs6D{|GF6Za50tT;3`
zC@2j~Eay2&!X)F$S-=m5wGxGL801)J_u#4rH&(67?YUuLUGsH*L4npyH><1!ujscD
zI8<U2frtsZShkTsm3MI|r$-Q*Brw)Rn!O7Zx`luC(5Oj;H&-Sn_2om|PpSv!pwR|l
zYfGUALxypba#4|x8Y`v;;jx(9s4*`K3Ja%GIkfsrX{?fHu}VT;lxEMS^Fk63Wu~=e
zV`pYmECJJaDAPXp&-Riqn|W@t)@_#0gyTbHw-1=L$*a~-%cp9KzkCmr#?Kuy1iG<*
zm0_b8kZr$9-qy}<ppOc{OlbX*USR-xZ^5@qUlIO?NdA93hX3s)`j@5XKQBu77!dXm
zcV^Vxgy|{~pZskiZ*zmHFDh(%AblT)=}O7fIW4BTIJ7b!f!w=J%Fk4d077c6^a{qj
z!(_l6pW}!zmERrFl(wz~FC#u)9DtZJBsxgGS7O|#Mxi@5P{gGP6mSeLf)F(qSu;#)
zJm%*`#ve=uK*j9Bf*rD)?T<9`c5YeV8%A~y5X<R&0sH_Qp7<-HXreSm_E`^q1Zw&!
zM%|W(426eU^Y*ur!sP_vLpH9qAizn$>vFgd1{PAI*HL)d<M+XhZeBduJ~EYM>#^b0
z9^-F-pgOefLLCH&DIe)pw{5QS&R~&nr(!4+-BpJqS2NwVq-9fhR<_-t96yi5+cVT3
zQ^cpI+jtN+_Zt9B`d_8oa^{Oxt=aUX&`a6z=-Akl9k-Ej^z<N^j~uz7z7#a;GeBXf
z<3t??;}n2FtGRCHRZTfzzRLjezCCEk><;~Yfg<zJ1@(dj`kTkyrRfo=)2In7L?gIr
z500U!Jo(|jp`AXR)K=S-Og6nuWVpNW)a3@@8iejFhfs?uU%s?dOq`|8e%mK`Bo0_)
z^7?X5(Bp1K%ncYc(lRJs;D`|C-;ke*HE-C+UTpP$YWt5a*l!fak0<Xed--+CY)jTg
zs}9;lF7aaGVeLU-M|3IU>`~gS5&J!g@}0WpV?FaSRr!ByivDvv{*NaJ)*qtDY^*Vm
zh@b5w#R7%v;j4Ijr3=$6rCo!CcS0JSnP1&Ph|JMqrQ(tS`FD{VEO86I*wn^;DEN3S
zAZQ(z0(UlA`N#c=^dsApX6dA4H#)B6iXwinxKV9&W%PG?hfKE(P6TCo<>)vFy)i3Z
z<gA`^?S&s11;mNQH&pxAO@q;7h4Gs?O9B>C0q%?w`;STmgYJy#V;hu=gHxamXzR#&
zO-We<tS~a}Zi7)7cKO@sgwWTHb12Y`M2OoR+F*WPtW{e|Lqjt}`G=I8CjUWO!H!i}
za1HIPLLUZvL&qapZoAUY;H^3mt#u+|P~b@b`-_@15YKz9-qWknRL&)fNbQHja+!Lh
zy<!go)wOtWak0zE66-4GQUVS!vE1&61l<WH7S?HOQ;=Uo<S_~s^a(Xwlj%9@&x+Q2
zO?nPhwLUAo_wc7>N;&?N&f7Zf#zW9LEEj!A);(!8ZzBKkwnRW+KlcB3ee|zCF%d&O
z>JF~;MxsCqw1p56smo!vdSW!~rCQI0r@?*-Y$HC4BH=?UktzN^^m(8P1Lol(@EK{i
z=nxMM3HcCBDuDf&g`8YC%*Edx_Uh(F!#i}--|h6*)b{U!+pkHuba^0R=!3WgdLD2$
zh;c6g)sB*kO!y=UG=$PQqkc!*ga_-;e2bH#$yW%e{G|$*fLM+OB+I5}k(nUBJ}*{e
zakV0z{Q=>k{=|=8qoXIU#KYHHKVvntY5x7)(>U!9ocpAty~tG{p@DE6x0<iU!XevZ
z0#a9aGr}tq(qTU;yo<zst+!4xjTqy<DslRdGzirmD$M8A-l3CF*<SQM_J3I?|KAVt
z|8_AtNRS(Z6Z$Hl824K_^mR##aj!)!$wDM<^?&^Uj$Zx9J1zp4V=%d--C`VSR5~3S
zb~smp2TBf35x`t|_;V_Qk@f_NTqbjv>@VF7X5)meV2(e83mM|{iHJVZ_{&5X*4r9+
z=5PPoSN=bK*!+bJMIq?(0fct2TpGl16o7lIDM<go7YMXJfYfSizikkAtnAUsTP<U&
zCmw$?@|*euJWvY>Ijl74F(qd~(9=Gvtlmlp4mLUZ-f2liMI;2ptMu5ly-C?s-Bl-w
zr=N}3X5DYn#n5Ag-(%9d!GM1$&b96m_pu)dkBMqCu&J98@*m%@P6NES-g<QSEl%F7
z<bv|dW_{AB<KAx9)aSq)G{gd{lj`blj=1t}_CG>NNvVi5%!Ftv`opnr)FKZeM8;dd
zhw&(TN;x={1AbPi4j8D4zEpF2-Pcj-1UN=TnMp~(ONfipIC1d0{*~K@nKZLwVL0la
z{Ub!}9vwVBG+O&9;7vjxo+VRsypHB*Q(3o@PGV)#|9{+HN=4}B;-Y0L1>ua{glqm_
z3E@YlT9h5N4LqTft~e@X*?+mdScyb%hT8zVGW6&6SL-jqp4k1L9G)PDNx|}0(>5w_
zIT96turq9Y{Gu6Ov}#~Qya!qvXR4Y%XX|OgKcm9KRXmX#Xu9f`fZ<0zlb>hs(P9jI
zh038($tYq+O3eU=zga;afSYozWb-_W$2l04Oi=D>Z#?hs2;fjtN1*E(B%Z1bh8PDx
zGMD{+1PGxL*Ooojr!M!uPA;6^RaGo+7T}<G1MmJO{AjoHKFs@Gg_kem>aT-9PO9|J
z`083@Aee2C(xDv{phQLz=nHRIn-m;K!GusFmG@K0pl5UB-^{mSc_Mf_9vdM0Ts8_j
zF4d^i3lG#UQKkJ9X~eMyv_sQ>9TT?z<X!0zArD;$Vn09hhvUqD3axRB{7IN5<kO)j
zkw~NL|KrOsqkLv~SXd5l8a${57xn>%KxRFn3$*CNUq^%Du#4Nv^ApYlc|NmVo2G6p
zFB_aB*bmHkAz<R4aR~+kO!1FI1C-cg^fG4%wcLL+d`%JPMNZqLM;1}#PwMasq!aY?
zny(4hOm4?nep`1dt0OL;GBt$6B1*IHnwX9z&X<EHOvVwmJ<yO(rNB%R1}lh|nB=c;
zv!Y^>yRo%-3OC>1UTkN^N;Q!?Xi=h*c!{^qWe1?;mVp`^1qx&fsl9YoS64f&yFn)>
zS%T)1>spy!Kwy28IQGBg)&H56{Xg`w<dyKkU6C5Y4X=0nmw15E%D;z|2)hb&DC2sC
zUN>j!IETq<7wMD&Zo-+teys*8AQ9q3+(m+T1hyJ~^>3pIKjIobK>i(oG~iNYyLbH!
z!i{@g6?}~8to>M>C|y2;rou^djxXfhhS{{uaw3u%RWr0E=jjcSrpGN#gN1(ptVrDu
zsig0iO0Ai^+8<zIKG^U%4eE(818|2D!HKT|D?!H4n=ZhR_72R4*tJ`){L7iB@KDn`
z!MmNf(r91l91wppoLwhq&;?Ow5$|^ePx)?yfZweOi(-hjI-2w+qEnUo)0XGTIuXtN
z-+lICb_(g))Ra<B_)3<~GtXaVNO;mu;}7u;loQqNzjBac4y%D{SPp?>i}zx|LH8&A
zvat3fT0oO7P@AbKbGxF?3Fx-!ke%tv9r<nw!Nx(g)r$lG$~$_Bi7_h9BR87zLNnIi
z_UNC5Fyv>T$l-T6h)E?5^`^b;hu@BrUOazz?O{l*m50@nfmrtm48X(J;JEa#)yp(<
zc#XkY{rma30}NjZNi(61^H>E;HLsxH588G&AV7fiBlAvHSn7j;)JN}nsVGEy-x2@X
zG6O?OUjB{E-=*CD`G)?lzk>~dz;^BCsbY`8&v8OFl2CY6e+1ZhG=5F#GpQHkGRFOO
z_^QRr!6-!U+bCI8Gq}LW=@x}N1mt|j3yTNe5=-@!1&+B_!?_bs>EL5KfzwjzhKpV)
zMnL|5arPEqac*1EFc91wf`<^?65K706Fj&}aCdhL?(XgccY=HH1a}&D|2OCUcjnHW
zJMzu*a85YT=>y&GyY^aDwW>tp>Av{40*=2C1Q_5oynSVVy#p8}bd?&TNPDp<!nbmS
zKQTarU@<qLO!d#*wRTjhN#N5gRVcd`x<x9pw23!l<tjtz&q|2v=!JCBb~YjYq!t(h
z7C$LfKHnce{4j4JX1QjYMxmyUEs7lXi5My0>(`M(_SqTDI(xqe$@wY9MH7kZU39r0
zsT+uNYZ#Qu<n?}oO~NAGw}}Z*P@VOuE4<LHi$rDG7G(}GGo@d-{9ebS^_Zj}1k#AU
z#hM{6W5c``f$wdw<dEKfcI*V1t!!jUfc08KXv+sJmWddj*R$|HIFU;whrpRv-ek)_
z*}Xx;mkaGuUJBNfO~7(@zLw!hdVyMJ=ObfgT_90A3=TviJa@}neo58}CS{m^+q+;u
zgyt6-j~CX2We}}MPcLp(G9FQB*J238*B{O+0+}%8M7$$k>%NV<+jsZ$jDyY8sUZ&A
zRZs&;IqS!bg##9U52+NW`9uExjDNrI{{QRmzxtzo7SU0xqH)%Y5%t_B^l6Akgw3FR
zN-JZaWQfO*f|0k`F9BC}u-fqFCW;zhxb;)gX@=PXD7Ed5gdXp*e=l>_7>$cI$fC>V
zfzhIT(o5?O*rd^mBKE~m)Fd(3i=~A3Pf_FvK3uIy?ap$yN()}UEtK||MS5i_{m3Wt
z!rx2JJNBox5pi^JM~fq<A^mE(wSY=t*XzTKtpjD!#Nxrz5e=IiRT->*OGjIXpdwtz
zWWr}|08cZy<V12kMNDn2c1Y=u#W&eIegqmB0Fo}O0DcR@L0YLw-%{yMIwrF}VEEyL
zBf)2}Ix<0iFd%P*?Ss59xwrZkK6*p2dfx}EB<r!qfzD8}o>MxF|5F0v_o%4OIkQU)
zfwS+EP8_k3`)@qo4#9Wck$c>AXuK<V0P6E!R8T3!%<7F}XFDpZ7WIOe=3#q?I4G7Q
z5^M@J@l0Ry4p^vpU#NrZx$UP+p)0SU)aaE(J^t4#P%{im<vbh1bY$I(YUO#_QP9*<
z373A)Ew<p((hkJf?w?`sYdQBY{kykD!&}eW@ok)pHgEUmH^Hn|z|dh2aZvx7fS=eP
zNBa|M9pEEWs}0ax%r3Vv-+%bP5W5G~w<lA0Y>X}-bHT1*iLMD#L5YdY-4SLluxbDO
ziU0S-LWv4S2HpP+D=NcxQNP6gQG3s`gFj!RIVz*<!AY5lIBM_2Jw(OIMxF)ss*@aV
z7cAO%B8ww2-p)InZdzg44l?~P;v%8It9AndTB&stU$IYD018>53f3wWU`EGu(x#AO
z>!|&bFU5=ZD?|NL4xsdCdb+y{*eOa_<5G;<J)t2vV0A?yx|j#k*SHMD+m*sM86M7p
zuy3vmJl#`jFs}zlIK#|gDxcl;cD41y9nmwPB^Dch{#H}kKX%ax&fz;mq<{;}*Tqt6
zRydp!jedhdsVgJlPqm>m+x&2tP4^6%BiENa2`h13cu)BuSO~z`o_+~*Gk<Fi;+THP
zy@em;)HY)0zt4%Fk;wh6f$@CVC`~-{#CfJzKnxdHXvZ4j88OFr!%2<PPA#1#VQg${
z-*1fv|NH896_MbbOxtBo#&7g2S9^c!=gE+XPk-wN<6&Ulg}}+m%+2GH7)utN*pzI_
z%Ise-kY(+nG0%A3!KB<iU##gUcSNF>Eqsp0qSBGP?)3RfP9Qm)uVU_Zu!%4=&9C4N
zr}zF5M1p_YUh>omW97HO@<;me;D?1U^s7r8g{`v^7nS#;mf!y?^kUgSNii@Kzn2)h
z*7yr^w$YBE1ytkU&_tX<EMKkfnKTj!%ahvgRf?UvGK7b7Rsp9$cf#69z^Lq*nr!yF
zUbYbCWoK-RF?Q4?WNs~v06LG7vsk@}8rBPcU11i))7!HD$`>(*zb1iku!o;uLd<6U
z?uJ1wSQ0H_MGPOc2P`XdyXK%70X!=qF#tE`xHFMUBH7W=QS<;J;P+US5V)yjKETuc
ztZCLUjoT<DP7qOW23{LH1{^(z9#<;}@7V2!*$svWlQ_+iD4`lOo>APaIqR&llx;vD
zfX^8-{t!l#`>VEE9OHx&r+e5&chl<)2XS=I9ER0fYPalEilbz(bwO`;0B|)^c)o^A
z7>(S|c=@b+7`SE6rI%q|nQ4OCVZ)kGsM-sde!Se-O7~ENWs-2c0(F!pQOTv?i|&Ls
zO%up>RhUa#eWmt9UV4c`LqBH76wNyk#uo1Ji!f@>xXwRr?a60uXayTRkn=ilMo)*@
zOW=1}O*I+P`^mTZ%S9aK3~Sm|3;epd_sCg338Q;uk79N`@0Nw~aX`VsRWkQAitx=d
z548N8u7lCkpAn2TfxkBBtS*;uTkcSTcW>g}IoeAIhb&za?57<Qau7Fq1>YdZ?Do6W
zT!%0ljL)M**=Bcm&^=aiERA_JytGYe$wpLYbVrOey{5pU+s%*8`MICzR-H!kxNKQ8
zWz&qjbRlWM>qfQLP>d7u@+)k8IxHmz@$V8fv`&taF|3l;KF5uFWs}vttbFERw7P-w
z#(016zpps|_{en{7z#8{5w^}i|LLf}C~pdudq31>)hRt6p@G@?72b{-WiR#CjM^Z(
z0AL?H3MeNgfE`en1tq2sH#HSonXJIP8h~9P0HM3sUodSeT)qc9(6*&CdWrH#o%_AB
zJ$+=0rzg|~0#fp)4c-nXguo4n3jg5RPpkV=#qp-rTtd-5JGfqh;*z9)z3N|d8Ty<J
zvD?A|73`3$*Rs(@_V)D9<(fvzN7QheOQ1tV63);R0};-%EVhrQ6+qljTncb=`%iX+
zeUl}QrO(t!sCS6F4JIuGd&7u7PzXJOBt3KbZJ8INBf^eFU~BC&%qp+^pMBJ<@F%C=
z;Lh5M0fzF~SA%xS%E}2p&A}NQJoCi7c+)$8xk2vQ{#8ViqW^`i95gi*6b1=#Cj|A9
z4OQ;|xU20p?oWJ9_^U7U!-B^2+xyKC<V{%}IQe^IqLx>#i=JuwmzO?$9~IuqjKFl=
zSKgElBhmTXZJ%w@0@ZQ~UY0&5z|{!ZT|7<2QAu1IPvdov&MnnklA^=+T3|2x;kYv(
z-!w|~E{Ah%MQZk#Cf0Z?6=v`)P;-5biTln`89M3DHKeLdWxgkYeo<fk`$2`?VPE*i
zReJ@IeEE_sZ=G{hID=eHfqh7q3+$M*R*%V-t3;(1EtonFti!?PWx8=$s0Jb`Q^L4g
zsD}C4NtX^{O1%FIdeV*;&<;dXNXb7qL71CGG;b~&(vZxzi|O{_?P(_QhH)zL?9iuO
zN^`Kb*wbV*Q<f?R1JcaO@sRMSMu3yD9N@JS>?lmUw@nO{?MUEtcEPZ^A2sU_$b^t0
zrSh`X_H))xJ+-DY(@r`%IyDPZ+VmF5db%^V_7A{HT&egjX=66m4s8(W>&)5WjaM6s
zVxiot*xyor<`@yW)iBRRV7*lx0H7KUU-^gX#~xxAH02FQCzMCL;*lvIVQ~SpjIFG4
z<>Hk4<Gn-YX7LJ<KQ=ecc_!h0KkIX-V33rT(07n@D*xVo1q8Q8gm2nwVR&<(&a4KI
zyBAD4S_>=O0!<f9fq@Q;SLz7|;vR)rm$2`aY4?{zZ04uFKv?^2hUykpl3Hq<WuT6d
zR95%BI30HtS*+Pa@@GX;$;?`dfy+Fx{f6*d&*7Z?Y=+jHEA`W{{>(Ae)SAz>e_Zm%
zsl~l`UtaruC59Q~y<tUa+MMVowV`8j7t+s5liSgm@yJJ<KJw+LPtA%Cw;Lp%?#nE2
z`$@kbMF&DP6dx5O%LJ1n-+zerkV107|E_r)6?fu5K<_g3CvL#OgDs@q#tRDZ7lm?m
zo1Z{h7ordO&w**b_Z>uGrXX2W!vwbE2(&(Yc6ByhK6+UHK7#$d1<nx0Z2$1Bc_x9p
z5+z5c@a^A~B>!SIewv$^d0-`A*y^zs=fTKd7F!-Usz6G(`vce$e=%tR-F-HQLMR-r
zy~ClAq7`L|`MzHQ&OdrW`u@D4bahqqF0KiHFjUWkHLJI|yOBC<kG<Hpw-Zh!SjTs@
zC<R!mY0U?rj|CFW?;f5~Fm+X%0#hn#2W?(-3Mct*oRvQ37Fi(%n|uP^RW&T|?+m{W
zXs5fLd}<9M2M|W7sx}x3H45c#Cz#oosFC==MlC&}ucbN5$RWs7+A+mgKL=Rvm?Rg^
zM`xohu-U7PpUh%jgXZsY@MNrFPV2wc>~#dh8ehwS!Yap0xBLE?z9pacd4`CO{Pk5L
zU`>HHujxDs`d_aeGaM|8XtAs#PA@$!ST&lgqibQJv`H~>-VOSL`@;@@s%eWDxzJUz
zm0Su>9Bp2RRzB86Yoyrr+dW1j`uEgH=^mL_V$D}=o>B6Pa$$ls%j%>Syy1*QV&j9<
z2_gfjww8GMIo-v)oy3=xFO?B|6>DQk8H#IYLL2`e^ODQ#Z$|Q(%tZJwDjed?V~9H6
z6e<@v-beFFkhH$^6r_$WUfD#uN8yinjfADm`a!z?lJ`Uaf%jtb&Fd#Da&~sswLHH9
zpAdgD!B|mwfo323pDqqhVcRok=v980E8+PHZL#weB69m<Z1^s%E<o7-LYM-UtZC9r
ze1E@?{!3J)3e$6f4YJ-Jt$~vuQuS@IxnTeSd#mYi9>-G{Rir^ePVu>#I~YVaBco*-
zZH-$_uHu-!s#!Z<h?a7({}R!fZ*pK6PUV}SvyzvOx!5|}$IVe7`H=WV-!=_G0u=0W
zdWzIt!k-9{M;DWR%sPM7(3m(bI_&T7pTpOU+Orb47Oeo2cX92+2`E^<M-=Mt3~_?2
zLGG4pEX>Rj=*v?jcT=*3E4EArB+z1=Xn9=TeBZcMCFFS%Qm{$aQofSF=xGI=P%OuN
zC54&b>ue7WQe*HB5B?)ym}J1YGj$$b1zduPPL~Ct@{!^34pI(CQ)Nm1I<RpmK^g<^
zulw<w7Pj>9_1zNcwCq$N0Z}D^o%^EaDo)i7pqEj7^^vEsKS*u3L1)G_8#g;7zUbqt
zk^Bwr#dN;pPve6E($hSx4=(geyDwlO`7>-^eHP~)QlV=WaoFeV|HC_GDQwmR_Mh>r
zzYWXNfHhnnQG4b4vhJdJ5@wertoCjuY9$|eG@%<7R%$IiLa5gG)N&ry>=DSvY@b$;
zGU-|>hWroc%-`Qp3L&iRxoR2_eR%SNM76M!m7h>=0Y*^>L>Jd8xiPQ)hp{Oh8s;jm
zk4n`794T-=xjqphQh>i%t3dL;0VpYQDNVguVWJSb_k~;GcyPM)m4S$HySThHt4e>6
zzU_JvtibQ<>uZoMcf9^K%UYz-(irTg!#clZA~S3-7{opNxrdI9E~RIUOotG>8IuEx
zKm#sI-$uq(|JE_2RJ;ylQ^003l%9`*f?|R9h%{-K;0@0S|Kr^$JwqAB_sG*OKu^7|
zM^Bi&1G=)?w>NdBU7-2KjU>|B1$}gJ(6f&SqCC6K0RH@4wc-k3C|N%-+4%*Rq0)?R
zFv@hKARTlCAwMSX5#YP_!KdpTEq$B-aI-IR10;Fh=%{qV{;$$h?2x}0952ye;UHuc
zSW{ZT1r-BT%G|Wyh6J&D6_oBhxI53`aM4h6CpauB{wS~T(pGtysrP@F#!lrkB@Sp`
z^M7Nf?6Z(M;m2Wp^(EXa`>gw=lvP>UcjPcznTZ#pdZ%A*<9BRV`vhQqE4}wX)V(_r
zlR$Gh`>}H2a8zoe`ANe@M<pB{t%_M<D6~uB)9b&#yZ>;%f<l&o3*1J@I6g+k#l4q}
zLly_Ep~B=7QKY<U4bJ%Z&diU*{{xr;_8g94+g*X^hp!OEM>*Ic%AV8t%&4>k#c%C}
zn7@piT$B_t$8S*AKa>t3aLMQ2p6}(atr$%e#h&<ltFqmZ%jf1B1&l~xH!Ws-Qc}@;
zutjbeyf@=l&`iwj)CHWdMB4(IYZu=F-V>G09->@oi#GCPJgh_AKfRAqH-{e+5s8F^
zgo}lh`ROVxxD5DThQnaZeRTmiN}*nV6#eznF)&-HyJ&EpfX*=O0ce5G*H}RSD^{v?
z8d}!x2F%P3Kqu@z{{it+&H$5*?c_PgeZmd^#-u>>ed1|j?015Mr>Q_2+Kd5+xw5NF
zxN46kw_SEZz%7X+y96FG1O)j9JAjG749CEE<!IdjY?$+^bQpC;Qh4U@URwRFEU3bI
zGq5X~@wreZzLCS>uVZ^<zy=o=bV7J&`qolUJ@r+Ft$xwep3VLb8{Bh@44oHPwwpDl
z)yLo77pYs5#(`!;I0HSn;KNFo3#NRYHgu)}N5}1Kl7*eKboh5`71+IX<x!IP$q!s#
zeDg)A_&>lNsXc%r8?pGk)&%}d8tZ{amWR{o71HNVk}n=f#G5>kSaGlieJs1iUjLMP
z{;yC|Tzgo+bd)S=4v9e5Jby+ERtP{I9iJWI)fheOUZ*=}uG>G3DF3M+74CR3R;4el
zt|A3%;Hv4m;zz(<z6!K;iovaoP+ibdh5&gNwk2aX`fi;pB=f<)@hpb!3oSo?N@r&$
zZsH8p90<4nq7OYDKLs}SBpd+BQV0M)aKI~KHfCy>8RkW?GN3NxuH9fcEVn~9QSqX}
zS}~&_&r!Izn6_%|nI&FFqA$gZRKUmoq?&Jx8{S=`K=R7iGojcOUH+~xh=nn=M<(E0
zkb{^GcoBTml{;#yrY91b9cw0<MotKKPQ*GOiu)TN?Af(DVVOtlF|37PKMQAEObJti
z;Hw`T$3)1Zz$@)$Cm-*aNFNyUM2xvB>Dt*Ah*ncj`N{!0Sv`9GhR<#{Cusen*5YW{
zbD3VSGbUPXFl-%Wed+-&x3hWE^1@SeKL{Wj<p8)&$IdRFyP<14Nc%S$4-tk8i&m~C
z;ftE;ojZ+?%TxbhFi$t|(aIyuIw|F%cUmgDD0NB3ch_?wmX>LS)sJI4ue!%9weZhs
zeLZlgIKQ=ME8eQsloi^w)uq`50$}IX>~zno=wlk=^}a}SZ@b8lu|@1xp9@qXnnU4u
zXA>0SCQC{~#^ej-{zYrZ1q)_S@*k||PdG@e*@7a|D?R4PzT^K%E$GES0IdOy!H-lh
z;rs?OOa!7e&ih@l`b!0nRyIf_PY$dAGAnN+m9Mzy1^zMEcB12|Cz;jaiM0YR^cSF5
zR#5$JC-QqF924!8S<W*nzfa@z)q@xxbHDM~L$vZ2+`9v@KHFhpwPO$T@L+W|U}{!w
zxWZKiAUgowPF_JqSff(M&#acBw@bp$TI$J#EO!^J83C0r18G*~<K`aH)(Q|UEi=}+
zeBY|nH!zR`SpJ_0;n&W<XhzkHcxLL!TXrH58dQdSFpYY*6TnnHg4DUm@fR;%$OEb7
zMsLHVt%sHl%+)*YI3SNoC8v-1_S^oV=|BWAV3iLQc3WEL{uf73>0>zG!PrWBd~6<Y
znuB_s7WBJby7`4N%h$TlsOad}VCs2vZ;laC)LvfW395}a^1pSS?_i^{x#T|f7|7Qs
zvtA?kslGM1?N=7rsJ?-+@7?*Fz&VMFMyu}}yCClsuFeyL{%~LSHR%pHaN(qhQaQW1
z0{#aB-rmvs@K2IKO^<m)XOldNb~i@T!MGif=d>K=<z{K$t>@PCl0U(4z&Mt<b6&7@
z=DaCT5~~EBNoNiTqoJ+zioA5eYI7`aGY5yc5O|dV?K@sQGbW;3r57|=(%@Pwf&9-6
zC7^$nDJdzUKeA9>$<_Y1tc*+_CX`nU(ok9PTB0Nzk{zJFlGdTEHvmj+LTzP}yhJHE
zQTSDqp<Vuh<J9Y8Cp=jIjp<UW07zFCqbJgf0gzJ~0KPZq8qf{ju;M0Ft~LM{>#bDY
z+33z=kU%d+5!02ye+RsE=CRf7MEqZJ%@WPA)K5~y`mmcDQe4Bs!xzzhaU+3NK4_Il
zd_#|}_d>Bm5&HV-*_(-atF@ZW6Tkx16xrHOok8ZlXwKB5gKi=(+6VH~4HWGQJzhtk
zJJ`iAC`sY;Sl#2rtUQGAmSack9e^C8?52apK{GLKhK4l_pMf7-7eJU)pm!Akg<n#E
zc5cZ$nruz=Hvx$s+LL=`<EK~jd}&L(%gtS*lphh|f~?ULA3}e@)?Q+u{|IBzDFpnw
zN(a*cBoX(sG=Em7xP0BAL%sfh{?k|}*9E4B3{VVWlQ`}w_wuykvtNBMEQQEq4b+lN
z#+OVF=%&1N41l_6+aA=a!skqb4P@nf*UW5mZo=9Oyn7_KZQEI0FjK7=X(*pOcmAou
zw{Lht$roR5>;YyrzUxK*>;LqK|G=<$3ky<cVJBpEni^(iW}bm0AK6NsaQ*$v_xwPz
z-;^VzP5rz<)DJm0qrqsLGN1iOm=sWHbpSr7iUyJKy!#IzO1E~w)^qj_$i#{$zJJkh
z-g(to<i0oybRLD^=cV8IA}#Q)j7s$?lL`@(+L%(xr%0DV05#F0Audq7NEb}4rl)$d
zj{j9b1^Qm=yc@J8M!6P<gh^X4OKG>4hvi>SJsvMT=Ft!WZzZt3fx?_rkEPx!toeE~
z+0wbjw5;KMq2f#EGV&T=y?YA41Dw8H)`HZwqfV58)X7nh+HuAK<+po(d%4F5_<8~X
zkhu};`3Lwg=a!g%U~~uCLt8Rh_i7OV;`KcU1h7Mj>$XR+!khm3Tyq_a#eix~nl($q
zVMA;3B9?CxnFmE0<B237*|3UmAzgP`?-1}8fPk}H(dGKDfqq%;-T!E@7yblo_CMiT
z9kEhK1L|y^!c}$EljD1Zj)lRvYMFHJ*!RVHryrMNP_K7?pL4+Z&g6uC8L!#!Xh~Uh
zJMJ#KkNZ3Y$q1anTi{Mpcrw=LB%6ti43XJU-7i$OB<wLu{A9>BA<tnL6@fD$w!@b-
zCtz#6!1zPAbnFHTneppFyul|`0@x#00hf!C`LTFE;${Phc~PN|^tNEF{isWCmt+pp
z_stSWME<XsS&PO01!eCw2<L@P%DXLge9=`hLh-jD{NFg`|J2vkf5S4Gq8GQqgq2Ww
z*5C*#H?UpK$(op$KrHqZI%<Db_9>Pe2IEQ2ZSAAi3=}`PsAxKfh~-y`4VEjS?@CGm
z=twE^!(vGT=L0$kx3J6Q!Ib_?***otvo|s-DywTw7HHy#1YPS#+N{>zn~Z1q&2xt}
zEY%p}fPE`b1TVd(4wB)-($TS=^41$SBz83OW&wD%q)vy+&lfAPbpC`F5&CkR)a8WH
z39M%kV!2pmvphjE%vT2Fw&S0~HO}WIWz?FN6c3{P2|?Q+9F-)DOh6SYbuf;p_^6iy
z`WccN;IpL8eL^P7HHBbAo>RF;x1);MNOfzexqvMIS^b0G4U?P#72vq?FC*wSlb)ds
z6bFpXc=7yNG7sVe5F9fB)J8lW8X<6n79|>LEWAIOW)jS`5`ZAiNk|}sxh6)QRVb2|
zy_UJ~MZ&RtE+aeo>C-*9?v-Fof5qb9H!h!s6I(RPB7h7Lhk3KDE5JnqH#w^W%w;rS
z8$fbEM<Nuc!74#nFEf)=B>cBs5?Ux&Iq8G!dPz3gl5x^tezo!?2V2`7CEMM0YvkY(
zaV$yaFCRBd`RmqgCGbU>3`VVLET&IkCpd6R2RRQuMdEkNN0VwCk;RtH$wpQe+dmia
z(&nIbA6<$e^9Y1_xhu0_Ki!>t>bp@d+2%<9v-rrjC4@tSs27>9^4KuT#xV6Hz9~;g
z;ovF?nZXRJ%3-uGiMz&Q#1s~rw?y$U2)Fth|0{@wusigt0*TaQy4775g_OH>GUzjM
zEee^_Q+#v6kJCLN1T@qdw|r4W^)S~Ra@5;LnQOu5o_lhy;3g0Ysg|$^*|(wh-kFuo
zpR`!g$^29IRPT$~9_3c@-RqL{g|en7jdT+Ie=e{8P(0PNV1b4|-vsLQGywN=7vyq3
z?<jhHOeXar)Mo{j#Tsts3bn5zn*c@ZJ3NxX`;^GMNBgVC&PUnQkRrdTh<sH9wr8{d
zsO1-xvd=OK+y;2>C1amO3i8<<03BfiR)B0k;crwAFzr>I8nq`PO*{3}IiK$a6NV4e
zeVbdY9Jvc5<T5AWFq@ah3d+=b;(UvS8Hr&jq>IKW`nKLeaSopJsMne({ID^PTHGIi
z`NaF;g~*5fx$1z5xj9g;q`<OHE2ZV_?JdK(VG5tpGZCU0K58UfU$0-o-cdACDSeTL
zzU)B4gZun>Va%k}eM0ne{#qxHd~w!+K)!9Hgxwg98Sq!%5Kjnm`{0=9JusCIJoG=W
zG?;90rGzj4o|E`o_bX3~UVR@I9RoK5=aN~Dej2=sg`1?hsT0EIJTG5q&?)e}Q%<Y#
z?W)n87m&YPB##-e(+jypN-j<ntcpW_j6Q$dBRY&-qLfRYJ;Hg%{um+U{_W4@{BSsS
z95Pq(-tkYf>r~MJF1Z{lT6?8$w?LvKa1rE!FH=agzk)mX3b>8F_keNxda&eegk}w#
z5&4W}8cL|R=Ej1)R%m%qD%sF*a&3G}>-1@#QsT-M@j1w^)D@~T=;UPJM~ja8=Mxkz
z6pA_;z+;M2$g!A88{c8f!{urI+e-xz=Gqe~u;g1_a+lg=ivQFx_aZS2TmJAqnVqOM
zQBmvh@o_MrPMn|P_wdXzK9HW^t@`FGKwoAHV<KvME$hjmvGn)!7>D{mcZ*Z3n7m?{
z?OGt^<C#ispyXjb$RwNPJ3vH0U??6wD%p^B^p;ybE%PJjnhr(h=7~GY)E^+7M`p>x
z=t9zFoBZ}JnkT}wq`iVbtMoNR#204C2pFZ;0D`G$w+d}-?KD@C7IR?k+v(P*p<&%E
zAjfwcqkTur#v=WnWii$N)G}JDF`f)n4v0Rzbw)LZ`}DVa0xl4AH+-#a>8lP88;Yi%
zA^7uxwHUc13kUf5FpR4wW$EO((F=x?bD`|{>~tTv#_Rf9=-7IWmyGXScze2Rc%7pa
z96Uq?%Hk63gVBdQLh7V%F;WMIb_oh?6<fga>g7Om*J$Or&^9jE->2QULf<#+9gmGZ
zv+8EFq7HdE+;MF&32aG}J7-kfWPE+zwq9Q5@66up92r<JJ5@`&ZuG3G1aHv>{*tIO
z;99N6kf+LW&9zBX+{%7;T8t>(8>mhKdv{Mdc&nB&f2z1wr9U!=4^DY1Q{(9J6UBn{
ze@im?>wu$;L45mxAQby;CjS))kwTT;C%_~&{X!ws_<3}E2}o9+^(dqNbOK_+reJAB
z`8EKBF~)<|C~>g_Z#-oyI7OeDn8-EcT}Q`HY9${T{%Y*nH-d#htlxG&O}cyl7l7Po
z>^4x`hQMZWj$xY9dxa;!<s9u;bSCHo;K!0rn@u^thLgF9-Tl;CC^)K5IB<QUqoN>D
z8>WQ6YWIMIoFe^jsZA5BNiuiMwUiOV&o7{{*;?T5UH}1;V7!+{qL>LM6X3<jy^h0U
zpw<A<L-GyQ`rZXAKf{QP!2sNfXN{Ea?|liBb?@{CVq|+sad2#q$R#`2N!@ruW!pDL
zQpJI5KV3p_F8*J?fAiZ6fP^BWmKMqR_@*QtY}?51@rMp**!@7(yf;^m$c20IT?nAH
z+a0QT8?ghSyo34tM9k6C3mhZr=NOb$XvHtiRLD)Ke%WtoRh&a-A(4EIFFQX1q_frD
zOtI@jwoOKOia7;sQ_}<M1j^nMI1v+xlfCkeM*GA}c!#4gF1Np$Xm^fyBlOjnv9<>{
z<1;m9fZ`@NI5?}lU6`Y_9Iv?4kXCU_>+!MLfy`1x!Ggp?&q4<Ct*{7IPm7Xysf3x)
zU>ql-_@KQar<tJ`L-NC9m3o~-^&5_1#>;juN-<&Ki^Z$9Q74{&TlDWOcc~GVEu(W=
zu7?c-OPBYlTeZetG+VM#Potn*N;%OW!%5HHPUq=iB0yt8{r$tJ6qbaPv}e?I;7=(e
z7G`yK+PU^M%fEmB-yZn4PYOuAfH1!(7&O=l_F}}KR8t6!;59mMAtov-{~=s8A;WN~
z-pp<Y&}eZkeDMHy{sD8;mvnSNKq9a}sLnAcI6HU)wAO&^W2OD;|Kc@|MawXf-Mp?_
zTU;_lKUC22g%w|KE446@w&~`XnOG{byCSaP;bi}9Ye7v>;*W1AuSVlyWkj57{79&#
z{5)+<+9^#M##1Jhm6=G1EXl|@H_^xUCOCG}q+vIQ8e-wmNwlm6K*v^{5Z=8hskPdD
zyuP;}a`$`a=De-21BiXUEMUz`cemZ05O2U};u%rBq-fV9{-BBc%Ra(V`Nx4$aA+uY
zo$K+DCBfbsDk^1&^<tBQ5a80)4Y>BI0|F2vlkI~D*YYI4vdb!pR+CxiqJ}%5s$2KJ
z%PJmDe$2YM$~%UckD5`?RiinBhM|Ch+2Vud<Kt@tR7B7yNu9-#6b;Z;Emdkgfbae5
zk1+_68i@X4w_1JsdZfkWa>Alb!S%yDrjMcYFv-cui7(Bn|8{nrSyjB&Lu-_no}Qjr
zvT^Ns&Q<f<TfeK*eiz%~mW)zMooDc<z*3VYB(ahL6&h9;3RXDd7_lA}m3j-^t*?4U
zU+-{S#Wp3!sf?Lvz^qv$Bi{t)y9bSmgu1FK{qFIjpZ>Dzh;9c5zp^+z_e>xZN^x$!
z$z(8C4x&OVku0nUy#m=(K^{_785!TtVD<pPH|_}y?{yAbM<p5>!XA%+e_P2Wo^>Nu
z9}W#=DC~49FPxE3p<TM=0t-sjSYa+=3DBB-difp|N9^%X2-2>P>E)G*i}O&JpNFaZ
z<IL{WAzX?G_^F{_iTt733LAHeiUS3dZDzqfn4g~?hlHUK-e14fUk`cu_5SfALj$S8
zND<i(G~P=YFs2WTvd9Twzhu{r?0kIoXr;?9UeJ6G(0`>7)L#{dMMOk&1VIZ@YNC-K
zvG=0=@@RWJ`|GGLE6&qpYa{~e8Zi3mN5*TD?rXzvna(!y0`Abwcb+W@;*lIK6>)8H
z!)-|~%mh&)?M{h!-%nyAR@C2sWTYx?d3>dE<>Shp=IJ;`&?pBJ@6J}P%@gknsV<x)
zO}VC|riOJ-H8WfdCF%u-g|QKB30(fpC9}SxSbyW{ruun%Zn8o*wRdFoI1an4)fwIn
zvMrvNs8VAxwHx;aViHlETV8A;jSKg;m&ruJbLrb~!fPKjb@g}Z7phf;qiIAxe31Y3
zW%k$Q7xsaImp7@it819|4)ke56T56)ZKwS1zmNWG0H{hnU2;bJ>m6yydKEaLosFwG
zIIM5Zj885u@_=NxfkP6-#`qoV?6vsEkAZWc7l%t0asIG>y<}yuRauXjoQn4Hicw2y
z0Y+A8*M^<_BUACgRjYI~<}9xc)I<yiQPU!s6bp29v{l)2$<$t|(hYnr(ly=Ew8K|A
z?I03Bhx8=DO@V*Cn|hNv`E5jqKfy{JNq(c@#uZD6t!r$I4CYlEmVbL=S#i<sO^frn
zJX~j2#3b+oDPEmeCS8(}lA=sXPW})faFJuZ!ZOHyX%m1hs1peEXv1y=@7IXgjWVbi
zZ8D>xCKPEZ%+dA+wsl^>{B>K(l*8sprG5r?KAzbLiz^ik%@<3{3KjA@_$N-&VCUmM
z)yjYTPa{_tM#`r!VB(gwp`jt_oga-je?Y#^v6oh2JKtfmF3+<<iZKbqZwqyjw|0kS
z!+Pw5@Q9wEwFwu#IbI5ih{Iofa1OgND*2vHBr;A+W>IpWsxEYQFJQr}7s<h=pzBrp
zFmz2qKvsfA1X1jT!ZD$MvDy6n8PYM&4*An`*nF&J#_P~coF)t=RRx-_b;|ByW4R$K
zG>P@gprU_Gsh^*mjD|oU-Tcxio>1cIN7S6EH;pDbuG?f!w~?v<^o1hjGmFM#ZmX=&
zq||G}mm$HyLlcqzRmu97UmxR!RaPEeEX*xPBDMTHIyF(v5mGW&XFSQRE6P&p2^CVz
z<Wz28b>8fRLgebt%*>qhp`AG<HB~HMsz(mk%!l1T7F&pUczJ<%;KT6l$#CbQ&voCx
z04TDPG3lBz*%zY<32-&;?xZ~j0asU!14Bc+N_eq{tE&>wfWgiaaKH0464O`IW<P7@
zwLilfT3y4Tr7K)<H*f#>Q*}71JS?}J`9@#sFmem|;^Knni;%UI)vE`dd^W=o^$$zb
zmos4Njh>M)N4FPMXhT1V9D5=RlwVq2-uL&mo~@yaWN-8`f)D1ZrRU;M@pT;b=iikC
zBqV(4CSx<jE@~vGPi-uj+70!Yscvf{=i%lyg5a=Qq|<G!>&};flLQXlJ})%X7Toq0
ztRilbGqF3|SbsaLjsC!1N#emgT@nA=58*+I_NCL)j<jNxx5KL@(<&z&UT`ySM)UL~
zkg~s-z(8u}qw14-Yjt`CoJrH-<7otLA<<dGZI2HD=%mQmD%Iu`7s#~FSdIb%qibBR
z5e#&83ct{RUM>3FIG8ObH{zwU0WKeu?1dB0=p=^IoQ8ev$~KhhLhR>%A#+VB<^sH3
za)GQ_?Uv{AW8zy->&H6%Fp9W|8I!<%ci~6fl}kX`na2Rvym)}6X2&|{B=&bM*zIwS
z0p4FfYOcZKvDJ2%Ln*SUDOpxSL<HJwsnrMEL^Rp9&kJ{&^;&jQt~0Gc=;9b0K`5)v
zPwz`0gH3h6-N&dl&~RK)IRQtu&RPI@-Q6iHOUoHaLqmg{lvLSI$4H|!5CD}0aN*~*
zKO8Hy%`7Q3A76;Uj{_xs*uc?wyy^0ihr`6~lxBe|IXSr*(~<-u`V4~o?dV@}p=lbF
z+m(Pr0v!$a1i{mxQ{eA+S!mjcF$sr4Ki$1OPB4b2q?Q*Hupc(xKQNF793~PdUuK6+
z=;t^bYILsGx}9ymPLu%V@<qygj8K}bcW!1aBd>}1P+}U)z8pJA9>5(`<eA#dRn622
z(c-N-)NQo1@2!CKZ^ctB-R1TN+w&>5n!Rt$Y2u$h8($s>yr1bW$YOqD^6Mj5rn1)Y
zYDOIbu6<%>0Dl>zvMbx4PZqfSNmR-(^#b*8E!SyqdoOwN<33M0lvdS$a}@mZx5hdV
zD-cYlMXbkAN>ot#RN3*r+6cl<GeJ5zrz{z8l&ZH(F0|CsJLVg8RH`!O<ogEQj#u}m
znG(pHw*|p!@T>QK_V$(>*CbZLW(qu+J9Uh|WR?yYu(Vz-@@dwjfB#M!b^Wu5zE2&s
zY6uvNi{Ma)M$2YbM@L6vCRbI&`>p3?eu%()VG_?(CAcJVddFwA>WGYt{0p|;A|zQY
zU31cDXD@BA^>l<MOLNj1vU6EAm}dgBL-OKbdh4sobF%k}im|8B5IvPLO$DcsA9Z!u
z2RCzNjN9eUL(T}8UE4pVFzi**x=rLD5e-%Y)uE|=755<Ll`7B=JzL-1)rnzwS#7wK
z5o8_ES1_K~vxdQ6;o16d!#59HU1Z5Vtn&`_^|7C9GB#9XfSe~k15vlKh1Qn%dIEeV
z=l6lLJYiyz2Y&M<3iq{d&XkYm^TM=0L`dw+vBj9T*wx*1QB7VCbwWVb1o)npZbu!D
zXDaV6JfZJ{S`?GvTbY5h3UBokLr_^ehN)M1N;N7}U&UNl!zTNuZKTb{Ua%^A!zi=5
zH+%V=dVg<zi?Tyup)oEVo*7le*1&H93)~gnuRk7`n)4!_v#Bn)jw#lV5)ga<t86c?
zQzjhxMuY0i1Zes1d^e2+QXHQ_m2<Re&Q0>UXl_YT-H|{0>j?kH6YYQVxzRAJvguDz
z6ZCJ@=HGpARc(mKNq%_ce6Hva$Abk~rcA@95U6Tw&_9+qSk)TSFjj105)ep3g1BG5
z{^S_Daa=(=xwI5vUaw8<_HeC~r|>T2-GnO}2|poqw;v-VzuP=T9N^mcVhd_P#|ds{
zNsu=(*{qI$7|H08XP~_Xa*>6l1<pzI4Gq6Y4AD8?pX+DsBak;MrKsRG0K<4~Lj!|g
zwzg1mA;qBLhNb&k3?nxP*6Jdt1z0FjJVPl?9J%?1W8koPo1&=<#pCgi`Z;tUYw+=5
z;T>qY*mb&PO3kHTd*B;MC0f6}2Ua~r=4P9@^h#Zb$jG=lL*NNbbmt45tnES6p+90J
zt&-v4bY-Pg_hR!NQ5>_|R~)vci5la0nahJ0Sq-raLb)|Hw%Ru2va+u`Pi=pgcZe<z
zKOai;D<GLYWkbNv7rdD5`m6>P^>dI?AF)h>1sJN^;|JAj$KSq?|I=U-Uy$#yf<O~e
zY-4k}-R|XM3o^uF_qVq*Kts6+;sV3!4M=&f#%3$CYxg)M)JDZwQcb8U3@|n(URE#a
zHkzoh<q(`gAS4~B0!>ej5249^Yxef`I;Brl?#5)GY*(XTU)60RcII6hfN7@q?fC+Q
z=ozoJWR#T)ZqN~r@&TizUb+REd-jMa7Y>$VW1?!2`BVK2<xzg}3(I?8#8lkqEEZh+
zl2Qt}4%B0veJg=hPOwdYKXZ7w^!Q7uICgj@LLe#KRDCMXO2hE(x3#_fo1&3psnk0<
zDyjr9MzT0sLoa?@-v6T!v#|xggfefdu>AT23*Wx`TQ$7P;g9O-sj?4|KTRrbFrbw-
zw`j<LJS_*L3@FwjJo}FW!9NZM|MlmpY|zuml_L?gsS|V5=_(67QZ{p5xnWY-Q%NdX
z<{M8#rh+mEJ~-SOYH-zG-QBH|Rk~ticHghfElLCuV`H7Y$L%ziO(fZkzQ`^=B`u9#
zd0vwm?$;b_qh+nFq_pfc0kk7r{UI!^l-+45?W?0;$89n@Lhvmks{YC@@TmU;ZV+tm
z-o8HCY;#cV`q;xz)U0}Pi+<CjyHdYxd!xNI@~2yLp+A}h*G8-IDaGnlHE@Y1?hYG3
z($)^xX}J`Xa{_vm3D|@`z7A$mdeU`rTIvf<g+GgpEBX?9w%=4Bm|uMRlP_)YIz8FE
zF%2A^c!}zJHrCd`oBCYuaN?8@XH;ZTpOiRy5p%BGyu3y17el7blFSY3lq>!5D5-*}
zTI_-vUqI(D%}=pJJzu|Dw4?V)YdDb++5Mm)zM#HdIVP3`yc$u|fH6q_yiG(*{2|@#
zB6oQLi27vx;l>%!<Ft>KMJ95<#lW!eYdH)`TA(%oU?p!A-@c_Xn>`BPj5qA&)t8<I
z+Og@MtqV0pj@xZ_Ro5-;aHdU)PHWEsR#&klwT7D<N0O|z?f?@ZRcffg1s0Q#XhPZ{
zj}I;ge>@%qys<*YXG*SRgF^IqoD7bee~+~r1IG|-jRQa_tIFzum1KExn7!RH2A;B{
zl)10<xJuPpf`Sh<7YK9jarkacMP2w-Z?CdKsEubX9I6fGs#`9&Qh~iv&wF?l7HKmv
zcnkQ-ti=|WV6<n9!dz(X?yZzTw`*ZYcjQp`nl>I}WCux?7ssm&hN>7=e;vnvhhqLW
z6%{<jhzV9%X4q?#lN0`MYC@O8rPM%xE*~Xgx>SE6p|=64LfLsF<?8^3&sbxTDr3p!
zNuKuMqFd5zy)%s2WFtpdd`!&5MDAgN0t$wZHq{Y0o@Yx?X~2xIB%wCE<90*nTlVeo
zsB84I+OXC0MaMO!S0^!PHTsJUBM>v?Mc3YlbXIJo!A1c6eG%2>;!;Xv903cMt3w)|
zOCBD6;25lzEE`?@RZxK3;UG2|aw}-h_&ZP_-|A}F=aFuuJl~K{Ooz=`U$zldJg%8e
z(#~L|5m%p&hlgIIf?mel^>o<5VAW(~6`=@KM8s=Ceru|@Edzv*1c|YfZNi*19*ZUW
zEynr*ZcOQQoIYs2Lt%R%e`e(hAQ}aGs<pr3jfqg&c#aHUTk2Kgbj$xhGSi+tR_b7k
z#KE|r&x91~C+;se$k^J3238rmTsSYPJqyX$xW^(-r)WN`&W8v+%)V{5^4jY2O6RdQ
zjM-6}O}=+nx~FJ%EdTmL#8Eun<4Pq%LuFYLO3UIA?55^RCf6axU0+{kIa*rI7z~$I
z@w_1Yzm%CGanEyOlAL^#!rN$7Cc3&!R|X&arbfwZHSt#zJyX_q@R@c~lzYGlKpbDm
z5MOCD`G;^1@%%?=X@WEdrt_|}RDDFWeP+q*Q?Lpew)!TEU_o*7bwUfQp`l?2JsBBU
zl}YUgNEKJy0P`@o!2*MLUPWEy=~>K?kgzMYLpYMfL`Ab^>0VG$vp^cIz<LPRiTR(g
z)72Ngex$FT2fY}88O_OIqtvmmVBud^Wt@E*1i@2=zi<{b|4mrk)zkA1cV(}``^#jz
z4ZrJEfpJyfY0HaeAt_)skaaXaSZqngL>uH6H+0&suBz%mCluGOx1gis9G(fOVpu?x
znQM`WuQlOC7q`+takX4NS5p})F9sl@DkDC*#ZiJ8T{M?^UpwXICef@o2g2eGSa;bQ
z_HVG?ch>3Pu}HDBwth1>+Siu@PF%v=>VQkPTU28R(!$8dG;R7zi2B`D`pom()1;f@
zUQKz`tr6$}|G%KPf9`Pq<<$BQUn~uSGR@P|!s6&X55QGL!I*|;s$&edF@2@gkHe8)
z8E+!q0fwqU!1_+e9m9(kfBx=tW>mk+MN2C)=j<b}sfr9>bliSdoC>YVDhjwR*U1{w
znYt<+gB@p<PJpJe55^-!MvhNV(b4ZuG05lk{QODR#QPrHN4+w!TKu345#?z>O0kps
zv^r`uN}RzY&^NIH&cd*Y4;X`4Zuid=@uovT6ERGDBTXN4OZ-}gkV%;}ebN0E&H1Rq
zg$^7x1M&XV)zz3&HvGK2s?^D;pv(_X=)sihUf7Rx3=V#wCQfB&BG|1`4C5`J%F-OQ
zvWi8?nPX@|Rd0m-G`a1%D_<h3M$ThJDf*7#)Uy<sJ@ZAmw7q?J&oIvO=g&KnIb3Su
zi22XD^jUtziOR=x_;77~>S%2xagmH~Dm~j_95FcNK+x3Gbi@Dlf2w~9u*%|nA3l8w
z8ndY6l+UYNPI}hM6G-@W+WTFxd*RStjs6OVEc2WB?Y}5)u?AH<%QVJ)Kjpy^i)1b7
zQdRZlcMxPw5#A|#z|n?V$w6>qG+~of?;I+|hmMw(O8mp8ATNQfN{ZS%?X{o7HIB#P
z^KMm|NNEjdtw53g)NLByoDGI1k+K))MEjhHev{AOms3B8+g0Q$ZFK9aRsCaM{N(^L
zSG9{<Y>>Elt0akhukukn*>W?qL%iAePfQGMtllSDbp;POSIuZisv<VR|JRG~>G5Nt
zh#$jJ!otuh>s5cM{OCvEtBf(`WYjdf#-7Hv)=#obU<?HwK81#0A`>tiDNQomjp*4%
zJ^niMzESj4?a$TfZjnII#Wq&f&*!A1*^phreCc#*2M4ZIQUq{B#X464`~!dZIIN2-
zxR`jB_^{pU{+-oD9`W<%`jsX!G8vzRY_}^aB1m}hCU_kVa=;Uy39yhobFnWQs;*B@
z?_lGON5LpR`Z#2Tu7G4?W@d)!N3<ME?(F2`)EUB&4#F*u;kSFn^yK8Q?+-nS-}=tX
z24Zy?|E_-xCN0VdV4Nik#uZ60!%!}kYm!@S#)Dg%e&N^mbID1bk-gc)MGd{&oE%kp
zIb&7zX_MTr-8Vp#TBP&v;6A{~ah6uY(4@(0hs;`<xB90Mj^XR!uqrj@)O_^)ppBJP
zrF|(Rl)q@Oc{fE}4Rx=tro_j`=kvh8fLt9rphI$v?c**rz{#ybhW#HP<o~)${0|Sy
z;K0&qAvG193#r9b*=td%ZcoDS5!#z(w;9TngOSrSQ}t|7uI@|fnaYFt#@r-|qa+Sp
zXZ*)M{D;{>oMXOc?igr_VqHPys4CVa5hBYBMkCb16fO3(?iv{h|NUF-T?zeRxvNj2
zKj>`>sah=MU&Rr7dBH<-EQNyUg0i-t;G?6`W?)3b56sax0xn+Q=o@7)+Uf<QQ$(>E
z>8EmGNrWxVen~lmS&-bs-a)Uec2T+K$S5Jc#-^qW(V-(?G1@`QKZnX^OA|jyu`X}7
z>2YX?alT^3!TD^QCeUx_4T!4yn1qX|g^6ZpxJCH-3)}$OCc{jKaoU3hw;la7d((iU
z`gD<T*F5I1sJ3>dGDgbE-a-eXCiV7~<<${Z;y2ri(_*!ZVdCd{V>1@$rqbadqdPnP
zVMGT92RG{`3nyf3rI?t@<xx_pZ}`RKy$$LciPH3M*z2x^;7?j5Bx)d}3pMDg|EGIL
z4ymF`aoVklIs${P%s~BxDGyHtnwOn;OJ^;Kg97E=CUqGnqnv5u<>IwLH5$^+d+;*L
z?>HY9eJ<(bwxyNWkV<!d4zy^BJ-Ns2&rp7aeTg-i0+mxy))0UC<NzK$PdC<&xy2UQ
z$(d-^Kwp1Q&&q(Mk3`v)-{V0|dr#BbrwLK}9Hj5W<bN9}A9dQfom|Mw1U6V1&^J`t
zOIE$5pQ+4t-|;XrYs9PsU`5QaSA0x4C3=&>|C}yq%N?KDbxcPI@IeSnUoVoli?E-4
zEpi1JZeu`NAqplP?{_bbcP5dFRL#xPD(3bos;i?bbakW(?*>9$4ifVT2j7H;ql3M3
zuKoh*^|D$14D4do-A2U*;|HHEug7iWRr^hes=lr3Me9LE@Y6Qh?~8T?VBmeaLnx}^
zVJ)7kw)mxlcLDBJV7w(W`|4G0w@p+gPl*5zzM%NwA;9JjUrn+)pTXH~rP_3B_wUt|
zmzN*4TBu3~UnHjIqP_T?zPQ&`B4iISGL~~~UJ+D4V*L-d&;Rx=!^74ZULZ*K5CLL6
zg2fUQrM@I-y4KBV{h9VsO!z!`5zlwiV08M`thgi>Y1Hv1=5|(8YK_`%2Rp|J%018?
zauorj*nYweVD9+*{r0epFE*i}@uhC$TBYtv(sD%;rXREF87=Vqk(#eIB)8kerRYw3
zc!0NPfP`HGN8khw^%5r|gVFNlF94l8$OF*n2OQcoMVJ9{4>fTmbq@7kO+YJHpxGv<
zO5W55D%Mb@!(kd_1Y9JbN@8Vi!NwX7lj>O@A#ubp02K4V9&bFDB-pjDDWY^fmw`C@
zWQ9LB3GpT+$X%@It=*76fBqQFR=oICn%v>TI%;^n%Mxk=potvlXE#AL#1<)qPLp<6
zI+pkez%92U>u9pT%Q+Aj^Lr@=0)e3fDc{Y+q%;e*>F)NpZs+O6dOrc36)Q?cqQ0c)
zw{IkH2o6(4vy);Ne?GY0I|&^7#J?+%>l<*rQnmgrF)L`fOp#uM$|&Q0F-KE#^N8hQ
zd@z~M6-L6N7F71-%cRlPh`K_ZHeEHdY3u^<+LO;(0{qYfphW}W)*>TivzkT)Z==YZ
z)}br4y|~_27+$G2UC5}aCe_6ugm5syU3lErN+Q)Uh1qS7b*!(fl$Exq$0R3bm$qcS
zCz&a|ohneZQFgh3_VXjn1nXNymvwky&uzT8s}bDY!-4kJCnvxWKWJ-fYp)o2VW0?Y
zIKc|eZ1IlZ-G^RGmuo|d3s-5YF_i0f-Uog&6qjB1$JNCEUj7A`Ls@SDHzft78B~e?
zQ#*1D3#5oS##}=A#OBRjz`^;|SrR|pj^(dBZMUCwj_#%QFbs->zLT**B@Cywe`bZ1
zD<E4lkuWfKJ=*g^C@_*e&3XFtAwYfTk`(BaiMhbbJxd&<rJoAyC5K-g6UU^QL9~-j
zRqE*k#;WQQFfQV5C&b0y+Tja3JJ)3&uk|8F?gL>fyT#;YT6!BmBVWYDx}78nD7T%C
z+}3Dy@XK<sR<Ipw6Y1!#Z3B#j{d3t~b0|?Y=89AG_k<SZuP1u<Q%Xxwg}sNRUmx>;
z3#`oTg~sX&cHN&FNgvOwr+9_FJ6<BVK+Fr;MX$lGWGu*#Lwdn{eqk;huPG==awB-1
z)OJ2??Iu?X0sCAEi1jM4!@Wa^N+De}C*&UAu=zB&Q{l?qfDuzO34c^YWo~_ay&x$1
zkI~6GN>3(B->C~gl%}L{w@*j(XY@<07l64dCNa*efyGgCrKiBBC71G!FWlvmmy5T7
zo5M|FC59KfBLT+Tj;x`;H_K&G4=*A(7(cCup_m-sUb%^!v*_d-dq8bIxs16vbE$fh
zR0$t`Y&CZhh8rydpEz)fnWCZN6KeCEHRUOXp8OskFWrpJ<mc@zYNkG~G`|F1Bjw^+
z-9nZeuuuEHWn2F3k-|1KmiK5glR(9}b2=(WW6EIKc$`Pv^WE$lYHM+6(k(1&tN+V(
z$~|DarwYlavJLSgW{vb~1Z#+un}wXCB?K4YO?v&w20Qxtx%8zqH4;x$Qce}ZT6L0=
z_GJ5_r;5?nM4Gh-LDf%SVZVIB<pRv7!o*zWlo$49L;xQOJOyopdD5#@FsftPj1COE
z88m#&gz^ErHypKJMKufRPK%bchSnf+$l;(3t2~-kmz^GCL&*UveJm$uy4uNbzZlI8
zM4F9T02Zht%k46@p|v7s<h>sJaITAmH=wy*h84a$xHkxN2EZ#W#`b+W<2SOIARH{v
zE{BNHma}N_8n~s^TssS%^ik?WvV_!}d+nX_tFVK(8dC+utr7Tf{&EWd!qYM{W6uD4
zqW%&>7jO5qupc$IR5P^Y)R&^_)ATMDOQ7F~zWwEhM#^IyqgZwqqfBc~ltAFJ_^|AQ
zm#6Z6CQ85?ut!|odz$14hnZs9XAifV=X;G8Mb%|zx`pAxGe<v`IDrkPzrBUL<!bHd
z-a0rUOV1jrb$i?9H^V<>-}=t*mG5wv(i40-wF&ir6K>;7BwoUC-JjLv{C{HG{{H^g
z7{EYqqo3_{0tZsD^5&c1Ko776Bx=M&IX_5KESSl;NP0I?#cJJ`@emUgMR{szt_Q=(
z86Ngq_npHNU+XMA4ZKe&F0}s0cl7oKq&e@t9v47?5xRwlYd1ADA+a<tc83M=<RV$4
z?3o2lPfvG7bGW38jE>I0*5wa(7b)2N)NoOu?N2K^hk5Ttda(#uTVvwCsxmwPL!p~}
zY+Z42@zL_IcVAy$fyrn~*=do9%w2}|=&IR*vkbudFnv$1if~|_@kLfwhy3Iz>-SBC
zz|Af#X%YuSW9C<F*EX(|kC0p^*&UDw^YHM@JBM+YE=*6y#W8a@@_{40p8Ac)j864n
zT+93Bm(&~_3Qa6&IQo$NeXycMQB_riz1Yd*r2J!6nFD99N>N=+ja_=ZPV}4loB;g{
z+b9DMPohcJB50)?e;A5bfBTlwBZ(T9w?HzTwo{+Lh0q$o2)F69S6cmUI^Dy3niD1k
zcNEJ#?Z{?p==mwyvntZE-t+7%9d_AEa>}``F0oVJ1N!=@t)zIjRa7uD-5^m>rI_4D
zcccDI9r5p7M+Op7-{`k9!@BEb7Wef;Gr=pRLrhf`FK`!|hGV}WGV{J`U<+95jo?yE
z-$wk`_)ZZeCJBj}f_>NtzkmQ35_gj7%Gm%{jf}PkAQ_{TmniS}fF&bN<$?7SO>y6H
zZ{z#nY)jLZ?P(=E6@AV<!LgF`Wo5xkF3JM7+m;INOj3KZjPQ+5WRqn`E7?P67;t3L
zily<#st}fw{2ND#iyp4TTrXHhK1hn$+D@WWpPZuj_U<Nyw=`~CCxK(Ku*MOr*2^z;
z_yokLllu4#LY!JMpKdIafl)k@rnK|@yqp}9WN*3iPg7ONUGr?DMrLU!u8%4w2Ilj1
zx!fMlClfULl!>1Gf1I6lT$JC|_60!@q@<(;rAt~G5m36jyGxp(I|Za$>FyF3KndyY
z2I+9<j(2;`6Tjm*?{nVg{cmO%KA)Mn_r2HJYhCMmjsExV^#7Qefwz4wMDCW}*lYU?
z#)?k>BVgn$hJXl|<x+WDRg}@Hu1qRMPuWIcd8WnKIa%tMl7xrMP6Q8TB@_*3ppfz^
z{r~mG`=58<xFDRfRnI$c$a`H~Z}AcIF%lD+>qMLy9A^|<D^%F^*fobH8rYu?6Fzp_
ze)=*`Sx!y}bRtUa!;-N7W4ljtLHMnNNCOIo!KSa8DHTvj-lKi)Fs)gn=-Tvbnom!^
zMy+Dpm>0etwGe81F`UVB0uyIySu`>>WV8^wxx&vC6;YiDgQn8sZm!F#i<`%<4^H*#
zE0*O(zrmMtc1O9r7+fXPN8VuzxQa}c((&>&%JoEU*YB&R-@5qKYB`RM!X@Af=V0=w
zx<23jhiRYLk6rqLnu6)q&``rS*kTITItvA_*iz9wt~}Gl{5RhqwhZh4G(U-$5lO)h
zi^@!qq!bOrP2Q{!4vx$YH(fGSp|iRst2sPgH`$g>US3`NSmu3$#u8w?<SqQ}er`Ul
z{ms(9IY<q^M3}8Hf6Gv0f-z~8n2_+Pw6yd!povFwS}(rr>U86@sx|+lpQVUdA@!V^
zIyfuaP{hRb!oDvs8U>y)O$apKK8ztS{rDKD${h>5XQG>$ctyp;l-1FbOB01+sCF){
zb~$FrPC4U}la;eW0R)k-s=hv(Px^h}->YwO_XsyPHwChp0&DyG(&*^us{{Dw-v!A#
zhzjm*&vo~0U5$YA47|q4E?dTxmRG9*MX(iY&r1iT1fs(hulCHX4D;?-EKE(ecG-HF
zWJ=wNet(VD!MFA-Pta%<0p+XX)0wY4#k=-(H4#<VgK{^m*IONp(n@K%diG`vZ8a`H
z5%gWSS5l^0Ew2STHA|K|SU*uqI$ii$(Old<5@E8Q;m*fBGL0rxezW1H{wY(1vz;>~
z%!kQQ1v1z{DwuO+@jjdOs-(wbp4TZyK5B@oSV2Wg_|lvp4ma`r53h^JBL#-?6`z=g
zJ(E2Zk42V3BK<w9vDI8ic_a9mT)rp_WD7?kPC9vzzQUj`cmD4G*4ZPARM~$f@|15&
zz%{P!t3g~+aJF-l@syAr$uN}pGWdkk5Tw_mdkB-H0wfcBLmgtmde+Vp(SNCC{)=mF
zCxEGEJ3)NWkAzxkybQbIwj-Pa|3||VzWfAUTGFSJ22|~5YW#&@&xhL(1TOSMYuzsn
z+M|k<(E~NOd{0hJG^C@sO3dyt|GsGuh6n*BEa30YlsI`+ukY+g09-3Mz?Th!xw-z{
znhgX?O~{VtHaz79W4FYY5)uDlK5he9%MABi2ZsqhX<pX`<rHQ%Esy3L^TR!Yr#T%H
zHztDgoNpdyvQfwqOjJ%ftLvV0VXuw1q|5WXn^n_{N%cnh(6sZkHzYKBtO-3OekDL3
z)h6!@`nKR@YqVG6I(fM94sRv67=6U<PYAL*COo8B2h;LO#@VuZ3M#I2Vb~^vxsRt7
zXlK2*^A6)uFf|ibREupCPt;3&<MFGUoQqEGR!@ig);@>6*zRCX-C8ykOycmgJH;q!
zk!_Vb+8LQBk&=`xh}wj+eY(wS86;HcwHPbhyg00-@%`9`Uzzu-8x0P=mRIc6b^g<T
zztOSN!z-u_=oDSj(9&Y*l*}YhSk_rDLmSn#xt=`w$58Yc5o?)C_4njE8Cm)5s1Owh
z(egl~c3?4J+o0z2o9Fi1G#WKUc_C<Lv64t#JsjHXcm%WEy4aX-vaG-z|2W1cnrP7~
zLH;(M<!vXC)7eYU9hf$2^3yY={g`R*iwDZi$5~S}3nEITtQ>~Zp7nJ09H=?iXMys2
zXZ*9Zm05M#Jo2BZ5{zKu$hZjT=E6Ozs}#NBvZe3&f;qOn(<_BykS2>_T{{E0WEXXG
zY?4&yHM(UJ@@#Z^^^31pmlnJHLQis1HwO3_DN-)H#)G#8aHk?*J(DyQUB^P+ox4*4
zo<{{SKd!OH%BU@g+Lzj{_8*u2+eCdF363^v19qiuHehOLX-UV(h?`N&o%xVgrJefj
z^bN7~AK?Z>05EAGmda(znd+jZ_U!WNYScJUo9f8@WXoRXaY;J=EpBW__C3wD2j}Yj
zoUBK8o3ObhgqN;&AbSDkNfkTf<~+iu@1Tcero3uFzyHt&{UIc@3f%8CD;cH*QrAL4
zK^N&rG<(IhICkIkdik6*s4~wt2XsA!JjP$TUO7MQ9LiwyZ)l`iCM>WT_04u%j^z+5
z4c2jceA?_D_8v8Zbx}&sTB!k7?10ZK5Fb|&{@=9`3pn8LlpXZoIDl$*z!Xn?Zf1sd
zr8e?Q0gXTYKOKC1EuJoCJ}zRYP~BZ!H8^Aw1`VWmTuYAa^k6LsXBis<fs8k|<IOkM
zy6-zL+m-oV+`XoJr{rptKwv}C7%h8_ML}4(Prm{;mw#<{w9k=}HtUqrd?FGy^EE+%
zB9edT17bb8cA+7xa_!etq}5&;4K;Vrr~$g-UdvLg)=!t_#f6}!km*5*kmuC0g7W3h
z>60ny%fFO##Nx1e;kh|)zq?HCaWv>N)zHX!rl<(5KyJET$1nQD@Ao9bmHW#khoUkM
zk^TK%Zb<_|%*IT1@j>)J%$787M8`yy(52+w*}_!;rswXp!zt|fQR%+bz*V34`#i-t
z=c21`u|GbgZ(#A7-(&5tn>=$1LXf}edB$_J@4kBVMOB81)Z5*Nfkf?;1cY{?S<Ylb
z=_{r5sc#KtlkimzcI+19)Gs3IJdR`JQzBl!{yJRqHL91U7Go=GulSd@&WzRG&8a4j
z)1Hq!;XAGQxsh>Ryic}?q-(R2;bEw#G+b<vGJDs-b@vS^Rbz?~J6ayco>|1yk4{NT
zj`9}okk^e(i(ZFswR-QG<C1xdJVDvxh?XJY7g|hjRLC5`S9I23wZ7RS2}7BaR$V+#
zGh>#Nyk2itrP-0|gsRU8C~ppQhp4rxKQ7U}_1N(=YA)k7PsN>e-WTEgh#rTVDn$G4
z1x*;gVWPK?s(L<y*DpSs*R`m>q<*E}_VjjzT`U?f&)M^ysi+JXxDyTVdUlV88tv;*
zA4Qcfyx)Vi)D1nf$tiZ$m6SbSgbFLQ-lQ#~QLrB5MP*xh#mgU&jBEZJNoK9NUg)fc
zPWQ)TrpT-a-o7Ciu^+eG$X#1#;$6?p8Hur-3}r8~y6U&w+w@Iq3z00(Z!x4&gxo)u
z_!yq`f|qlo4yM|(=gwbUzZ*I=l>J%2Ka|S~XU#<MCKL>EEhMfk@~fJ@@eCUNES{+N
zZr^QnaWV0zYLu3oF3n4`HckQCU`Tm^M$mEk^$y2}Pw&IItD>B5O`6re6}+PO7Xk6F
z;d0pT@q2v^@6937;!~Ysb)Nxyfp&i<)RyjNJpWiI5ITO@X4`OL+ncgUvumrgKs`tW
z!d&$uUJMpIxO}nwdYX!}#{@Fp3{AqW@-eKx$U7{J1_V8dc~0HviWu!uPku6VPny#|
z_Cr~4p-W5ln_;=4J*Qg9LgkR_4(pM`6>RKB!E;{ab)?8NnSGv96?^p-&jY<)Ny+D?
z%>L)rsxYCW9abMssQn9E{58UO+x`&$Ci=j^B&$hER9fk=@DE3EZL_m=tEDaP5>e#q
z)ZbD)=GbOt<{o&jw{YFq7w}p^km+28q_Evb2L%6JBTSa2%WD*tZ5YP0j&7&zF{6vx
zFdf%1{+)-|GeRH%%7wQ)KO-@_P-@qRU%#Bsi;P!y*HH;dZcEv%s!;cO|6=aoXjdv7
zg8o^4%ybMp@ieh#l}~>|tE#S&L*nQAC6>gb+-<~3!}69$5C2A@$i6Wy9~+20qH!)&
zY*XSJtNF<vQNP^x*)%)`kb6f07Ktt9@@ITf-uS)4_fNDZMF~&bWjkrMKnc___8{Sd
zzbzcwBFFhK1Lz(Xj0Vg{3GlYU&n^$NsvMj+d!1ox@4VWt6k)qexoD^v9KFR1--Y+>
zhxp%H_rY8i`M#}Mpx1hm+ARpIpL5Jz4WF*EToqKD!tX|#WB1UrPZvCK*dA`hUw=s%
zYx%By_NQrp?2_D-@h?NAv{YH?TfSwur3y1z#B;K;u3uk56PnPT6^162f3C;Z63tb%
zDpQCrGQV&{&%2atrJz>*8L39n6g0XVUY^6K>-~OLg`sjfC9;%cz<q~ghugqUUSMge
z+0Agdqi=hT3va}Gx0SQEoPiYtQnQU0k{#8do5=P~#yQdG|Chm$zpvh5Lgcvk_{VUy
zcMwl=2U4UnJMF_#OUopVjlZt$zde?gYMYr!1`eJt7VQq@3=Azd-c*GK>lXj|d3O5-
z-6kW8DLgiP_7Wu(ae^}NvS?r}cJr*8$8i!>SW8<)LFB7>e&`UBPC9!`nSTrohu*Rg
zW!c6;JFUiCCnERS%vX$=raElHXZCZuHE!DjMc&YF-*-n>g+EO48P!)-;jQjuHA~U;
zi&JO#$Je4cZE>d<oZAemS}LWAj^(>3y9$AEowvu)mduNL)O!ME?09E*jBnkQI#YIs
z%kvMY(%tzaOjO;=#Jvev4&&=$@vz?7c#(9dk?=jq7+{l4r}|O%OIWIRRRSW-r<0T{
zeL7*9>(Bj8>|}*M1<8_HzW3enk(Hroi@ea1h>Td#!5zaGyzo^BPxGU%jGlVTBUgHs
zu!7KH{9>oHn6%GsMf}31eG-Mx$@=;YG|f4(@^Xs3ihZJ<fof<4l*gHB%J~tmz$!8>
zu97QOnZ!kMV)`4(PSLf=LCxJIiI8H{;}0Ad(*zyxmUvs}nVhklUUxRoQ*+K3vG*0D
z&2XA?gdJN9S|(V>K67Qt{O@iWMQ5Bi8l@VALW?i2s7YQIg$5iKcn;aDeJ*uMMBg{R
zImQ^ha+6JQ>NNOiA5JE>{nb=~hJ#N+6V>?p7%ytnzE(uwR8d9fx8wAK(HCnfzw8A*
z{B#E1m-Na-zqjt^?tQIm(}UVI>v+TR{h=>R(E}C5-}t`YOsx8(V4O<G@QRs{4$sNW
z0eR^@P@P*TI!2UFmY&G+h)f_l>u!E=ZRjB>Z+J1tTd)_iFYgR6Mi@-aFt(++1g}YN
zZAbR=6ibxTVC|4Z@A3@6ugTjuE))@I92n<b-}pNn44Uh{QZUkHIG5ahFNuOI-M+E<
zy!?dJR(OqNV9q&W1CiH<2O%(orOC}bb)q`1jkKw}*`>036^*KIW9ai3b(98O82dk^
zG5?qonH?giy&qWGPvQ~z^xcAJ|C&m@tLvt?2~W^l>YoZ5gz;@)+_WRL1jtHbKzDct
zjBKTXVXd;&(uvncb4V5zzU@r;!{Hkt7vC}y2;HJp0*hV|Yw^==Zwc1i2U9AkXej7Z
zp&^>@;~C`^yoL;HwAp&O+`!;^r9v?6@k-H}E{!dA$t31gf`{efTu*FcsCCt97z3y9
znQp|eyLnJzb~DSDIv7VgkW^yRtC8FuomwjRI@#+8?7Mmf5_3knt&&<S@dikshDD4j
z`+flR9d-LqVY?nbF}x2O`FUg83&Aw@OZpN#u2RU{(z_FNf}Xq#Yl}zYL>=FE3Sq6!
zt5~ysZVkQD#q!(jQ*EId^|(44=F@{^U2Q2Yc}wrFpDVj&>l~c9jMI)!Lu$++41VKN
zZp;3eg@#iZDQd0VGz&GPKZ3Q`-$G>6LQ4#r>PEwU*l^HofL!M4Bga`#Kcb4DOB5Z~
zdR?&DcPE#yi~OO%{P6%37AT#OLB+vU;kLghs3Kz|qJHn&3hhHe*55c5gi#|=<D*PA
zpGf#RX<xGw2xp7>Q+<3XAoVte%0u8}CaNPNeV5XVtod}bnb%?2ba+FwT;6?+7Rxr<
zjqTZWzo+p0{`BBmYz&Og4c_OWe3z_yEn${JKY8x@GFc_l)SoRHUUiC@Cs1&rpRpgV
z2TELcc<g67ZXJ_FhE1NiwMFjfUY1%E&&3^%yG%a8TDn~{jd$Nr!DY{`X;6FIf4PWH
zBqGrV)U8o$uT#!e!i``X5{t7A;B5YT>#saM^*Hw>qS+Z{V!=H_h91O58s%F@Z?QNM
zbANTigyff7Cb`~fOK6d}tiEDQ<<g#ynzt#Bi490f6>Lubu<LIEzkByH51grNKP@+2
znZnuPeBBN;j!XXJI;j8g>k(e#UYTf?mbg4Ql;vE32b;)k(4FR=_V7Ql7{>Sq-uP|4
zg2ATD6U47011A`&HvEq-Dp+uEjSofx5JpD_+4W&tgnt|*>kuv?<1;fe)lb3j%kXTi
zWuXW*7ll%$kiIkF{_QWySQJy*omP~Q&!&20RZezT#-Bd!%dJ|-=*eavd3(fmE#7|V
zhOvHVOm5>5WK&-|l=Kq&bf9L9X-l+7zL`gj><cPsUoey#5DDgV-J+<P4=Sj1*!#bY
zR5Ln3T_avk&sp7gUk4`6t=^z8*POCIBR<5?Lh{!!C@${0Y0e9@Kk3pSB<|Ty4c4w#
zl`>K%);(f|X$f-9Pe0_&H_p!=J|k1DRxc;#Vw0{-j8Bl-=efW}?Yz`kiBA3`f}XC`
zJ<_>st%YkN8dRHJdUT*gHfF#);XL?gXfxl16nqbxRHz(G<BnEZ=d5O{Xs#wy4BoPQ
zSdTJf1MP9%szq7HHu%`O<K=sulOw)V(5q+MwYJn@#Fx(eB-+QtovYHPeBF{Vsy}<A
zWk&c^t_cEW*2%OsUgjbDIypg|in|Dh^<+;Jv<4OqZV!iKGshY%H$paN8j3fEukN8L
zn^+Z7W&|qyo{5cQ-1`TDM1e@=XGZ&5J2G#eNZ_hxa-Pep#|wBFl*Kfpu&L2Nk7(P)
zo+uCdv1|ujvR@`#i^}MGkwU$$aU>)os^y-F|FI_id^+rod~lvftoB}8!{Q=dX6{J$
z{kr4eCLf-b<~M(i7jOR5rh=(mJuGu!VR%X^Dg_ghJlE<@MmGp#3}E$oMn)=~(K7RE
zDemsB(%4)MQRIwQ&u+`C%-77}x4#qnR}76TXi^nBnA?A;k_<Zv)Gl(XP54s6x0I*V
z!8oQl%FWCzeN23f5a?Mu**{hiAIX8J^(rK<`Mmk5`{dMo7%JU#LcA^0aCpOz#iAwm
z^w(z{g{Kp?l4hIZBexbwKg*&1R12@7(iY~5YJyn9I4X0Wj53Yz+4Qv;0Lt>mLDs^~
zjG4FB8`Qe^I^&?)?W+dD*-S^)osA;(aP;L~Zp*K41Lgh}FWryPjU``j(FVH4!XcU3
z`ajUvsNJ1aPjNhHI_)hB)z9_(>@t!n3+`4(Ss4(|?sHBYf3A67Kgd3GO)P;zKPu5@
zJ@=uqk!HAqxyeh@kkijvutdRJAl*M+8^2xsIAFk+OT{RS+j=t2i};Ql8hJD`#~;iv
zp#Bi`yCwEjWO`P|L@s6LN$;LGrs~wAmpgwHDgJm`^BR6s90wzfUro~9sq(BZja5xk
zGaPn{c2{alH~8lje*n)xb#Oc+2#{*GBD$WZxTRWOKgp!MCZDx)cFqGs!cz^<<FCRh
z-+LTnmcD8S{x|^V_we=bBUaJI((Gb&FLUw0<r*pM1pDFeGReNq{K>jA6DLgtct{cY
z{h^Dr+3m|)kKGqF$EC_0@Je^XKK_yZ{Af+EN%wSxLK!{A&T-1dnyMr1<#}dzjN<=f
z0i0jrecYdwAn18)Fw0rzoYHUz=k7ef<bIgw&wf538(_K}q?d)S*yp5^h2N5ZT4KGo
zN0@ajX3cgkMVFf%f=Bup`z#>zwDs2@b-^q8cM;iRTVK|e<y~YKm`Lb3ZPv^TEF^sc
z7l`+2S|465FMiDqGZFbg-$eBYA~QVH?h;-3U`jz#`iPIF=;C=*$vo3Uu6Qbc1XrTn
zhEmRq9BVB7-Jq+hs+M52AIJNO$qYE+4{UUN{kz4~KU5;xn-o>!jSWp@CpjPK5QuMl
zw^BYJ4#F{aV6iEeTq55r@cnmsM>7(H3kaUTnoC}uP6>B92A=v`y#<~!Zj(Q>s$ftw
z&P)fwWj!kb6qg1fdp)x~+c(FPnsa^f$$A<~8Kn+^LRC4hR5Nq;J_-Aq?r^G1(n%9M
z@~k9xpInwt?xvB)wPq9pxkTq(b#Ptlk$`o>runB;(<mYDDu5}hH{YQx66-@;pz|Un
zVqSdpk<;^1K)ie;;``vY&_=XoA5u+dvW-?v&E59ag=!M6s)U!T(me@R6fm3?T){is
z#p8IE>Gh?ztW+PSL7uV!=~JNT;j&sYGqk=LNrk3{)9J(+US8&+DCr+K84isTYw=#m
zWfGMYWYyTK81iG($O6|a+}#q2fs3!jVVs3AnTFG8hCImJUXUM+_xzh^csJh|gR}hj
z#>zzaxcUz0pAg3^md!X@PG!hatZfpC+_375Ie-lQ>foaBo$l0Z+4O6<u{ycGO|t$E
z%`6QRxV!$$*0If@of&_QAD8{YmbA?q4#{UEvGI47kqNACBC!84N<KhH;q?V@Bn}Z~
zW@h8|f)pWjbMXnpn)zmSe|$Zrt!0zs()8*kvv=-$xLD1|@NTr*j#PU|Su16sC0K;P
zLh9<YrT0sgCtGnkHCBs`vz2F{IoI<v{TPYk_J?eC^tWt6(^s4F%-oMn$E~zIc9|$9
zAf?VnR>iZEL}$Mq!7g(HMX!u{1+-c4Ov(C&n6pvhMee-pxo;1<!(Rr@lPAi&EFWH$
zkWkHt*z{#dbtdW044&lVl)y|+*08^guv8K3(peu$u>EEKp}N_N&-0;@e__5XEiWUB
zOlZ~uzo(MBbY$GcGk2Q}#G2dui7dJy`^8k<$r^&Vzd|Jbj1C~}_QiYW(;ADtSlA~z
z!8vQX#*k<7g=5n``lD*elMy_wcTb-E(+|l32Z2C11iTc3<h&6+jL8&t&3iDSqL66u
ziza7j`BU2~!v#H$cIVTGsc`zBRJRySMqFdwA&Z`pC3~AjH1?6-D`b)Z5|+_y@I27^
z{;ksjWG%3_thb`F*tJVZxlG{LVs`U46Amz~nqOxCI_DL!MC5GMm|L1j)MR|%rz{kf
znquAH-mn;*ihV34@_-3dJ1fiSHTk6YY}vg2Bv;(>Qm*~cRRbOe8m*Ax`qrx!3z%P^
z%Vh5h&)N*6B76#ZBGlF=pZm(0t7$WkKyN4&tyOXBL3~02X0erIm%24JkXV%$bq)ny
zJ{p>^$-pHoJl%KNk!ShXk%WE4FtA(u&9X63*L2@s#}H#%46!(bc<vNG-eQs4%fpl<
zH(@ArF12!bhR%W<_0J#gk43E^0C#uii?Lk^B&NjE;T%YJHo9K#<eOwyMA=;7{_#}w
z!1p-OM@Pt7;u~n=1Fc`tCv0r&c(m+a2&}7g&CE#XP5mWrGNbj4tSvD!O(?}u*6Ys#
zI44zbSgj4>DY`$ty`p=vO-<iiS}ZcqEz1@%R=U5>o>6yI@~ApBYv@s`6dIwx5sXTC
zcCklvCQqz)JIoSy7`jTBl2AP4s(l4Kj9;S>zm_8gjF;je{fUCoGW;mzb;WjiZz`is
zs)7$BNayl(g)z<)8kC5-tTHpBTdy0K4?Ww-U(BjSL#P<E@UnHLq;fge$tDXsKD=c{
z;TjnGq4-fuuA^L2<P!)wk>ethS8}>T{>^Jj6D68H<yAzZW?`G(hI>>~rOijtj+JH)
z`Mv4qKE))a(|%fj@+i@I$w<C(&8>5=%hGv4oy@^;kwrkqxHD{HTpeR~R1k6;6dZ2C
z{Hiw=i%66AgCj@Cjj@LDrVA{Swqr6)@TiK2#<eY^H;m%n4T5MO!ky_cLX~$BCm9-<
zMu_78z65YC!ule`|A_7ERB(&6zaesCzxg-7Zj;)@#pUo(ACLq4`T1=DSS%%;x<mKi
zU|utye|~Qlv7zNJdS-s#(VtJ?+3?FB?C?9abS)j6O==&TE!_9M8$XG%)+*e~W1YY8
zq}5w{?xYqEVXq%SNV;-NL{H#Po^+gN2>Rvl6W4L3mvVe})_iTTF#D-JPp$2{Y|>0w
zQs29*8NUdI)pmv9aOrn^9!T5}OPz0h-gtcqmsjsC!vuB>=O@g6j(&|AVOzR=hri@O
zHp9zPNC$3;k+?Zhg~M!~%328qE`xTA!koTe?rFcHip7qy28W#V?>_0qaDUiW=aVn!
zw~(+G%YNT*+}A1DjV}#89CNv5GttuI#2Hc#?DPagbSw70fD5mJ3^Xg1KtN~IXj8#{
z;KS2c+EdrKf-Y-}X3xCFAG6NeB5z?(bxv_4!E5;$tF_!5#gh#Zib&`WS)DWXZJ4K~
z={rK!d#c8ZNb1NPWnAuq?ejPYl_<{P&PaTtG(mY7SI4nloAs1J)AFFQ&8pnP0{;=5
zp@(ODo<Fm4cWir;=xx9J@_!euzGk_)?U_2M!kxYK0wOBlz13(pK{jqW-nm9HEK01R
zGFkKs!<Jd)Oj@=@^oDp@uk_Y4scB8|gR?FDYUK(NE!cRckBm=I&n<Sxm!*GxCxYeC
zZwS)v*bCe<62Dqe(70*0A$00wP|xjkFp+p#s;*JFXybYJ_CtX|_Ph8<@_&j?f9wn?
z+;DeKG6Tnnr#E1yzXRNv!9ZPv<x)GhS!m~ghr~0|f2?FbKxP+&&&bGNx0!E{K<cvn
zK3S@%YA(QPA-jCg=(6oM$AOhbrH1<Kb@C08mXxVvILEilZ<Y-8#NK9XmCu?A-)_av
zUWh$mCwc^FAZc7SiT66HFRk%jucy;d^$(2a&(mc<w+Z*|4HJAa986N~SrA1yL+!mJ
z!C#(E*Q|Pdvi~M_$z5!{I?18k&s4d&C8BHZIItEeGGOon`Xp!F$!r%g0q$n*aoK0k
zb{8|}h@7^_Y;ACLeTqtP39!dQ2D3E!FY6QIorBJ73vZHRFx?^)R<nEhn4{CQ_|1M5
zXFfyw`9=Jj*x^;kc%AGeo5d+h&`#aTLO$=IKJCHP(%B8Kl7^ZQt!57HCjM}!E~k8V
z?jwu?{<4OUi{)t0yZ7ch@vFErUJ5HWTa`o&<rhJcZuWtvj>ush$o5^FyDqfmrRC~*
z?xBLq;SX~FSrI6)`MZv_cS>fC?j)d$l$7YEC6<>f)Rqod@2=Jds-^xI+sxbU$fyDZ
zOO?}|D?UAWw?--<Q#kG@$jvcsDttpM2OCV@b0TphY3Si?(sfj(*lm||ZuQNZqK$9D
zLA7Kp3<DBFOVCS%Q$iN;`6(T*bn`Q|KINHs*#+_7`x%;5dHp8Zs{@_i-J|Kb6TkW?
zWad$Zii9sx*LLT-lu^9}Jf>8ZmiDK-jw1~I=R2Tgk4**?CAEuol@9Io<K8z)C<N?b
zdwV2--H;h@JfAIc_;*7r!xG?tna5DG0gIl_=0FlScF_Vt@xUpS)js8)FjdW-6Be{T
z%Xena;2F|n-oKaQ)nq(<3Wn8zf{_w1m^FHBpysngas(FxW=?)59p*HeP@WmntnKo3
z2U@}7h=MMdb#6n-HUHU<AC3n<xFQ-&D~W@vP0@Hiq1C-#1wn$%_-j?z2fAvwNQXm!
z9BA%GQqoY8qUO3W-bmJ9E|ZCh$Q2~>3>>8}=qI9)U2*nmy>~N+F*CP6<us9W&I<jI
z^I@K%w1iJSL)yJuIunqjd5iE_Gm1Yg9+$L~XmJ{^FB+Y?<vA-&llJxv%Jnd;B^c_7
zVO`(nPHjlZU&a&IE;!(l%v6Skp&WG}3B<?8PGw2ee_XGPHZ7x{ie<1ZgzlUbmh%Fy
zKhHRs%reYtLgR4`3TD4RXEmvG&^W_twfRz8&p18_sR>l*5)T%*k3qK}{eoKkA%d-7
zmEaozgU;RlU1wZk8ddM%EoJ9O|9SMrSNEx-2`cMnS<Qpq&}(y^O0Vk1AQjHZB7r5_
zm{wc1V$BJTUP<w6Xv$XV!zkl%!{Y#LT~HXdnscy4h0Te6-PC|QQn@<p<#17Pf%SQ~
z;XRy$vQHih-JOuR+^*AOJpNLBk*aW~PluW=2)Walz1;oE)wX7AJX~C__1;t_9cO<l
z@9q3Yfo2C7M~&e=z6DzMCS2mm0ABe#U+B~9sNG_k>vP$qto8GOocVso_`GwI%nTga
zm8QBPKF*U{O@q5bY!|sV8Tt!Ijxb4}pvac@6!~L=`}65%4otZvb+e_-17=mp@`<#;
zB?27FrLl_Plzq;-^rj5Pk!GsXT@nde+6^5ijfc?*uYyZT_7Yx6MPU6U$y(;41~cw<
z8Q4IEpPEW^xB^rSA_@Q+6qk{~<XoGQC?@e1v%<-d5~G#W2)6o$;BX}_mblo-kRiw_
z#7k2+^~{E8ZFVF$&9gaRi}l*^sc|Q@g1rq|^Uu0~(7MkoJYU`9<Y3>%b&iD>#IEhA
zSm@FWKK`P{GpWlv0QR2G+%7g<0bs4!hf7t!nMr26OcRsawLyM1)XYB0+#9oqU#mrM
z4iU*BRiuQLp3|4rV3j@UCJ2pu!X}3h@sO|JQO*&CN0jq6Z@};VGH4mg-G<fD%;ZJl
zI{o7IX*?m2+BSW<b&+8$_I=xdV|#f`So<1-dg=48xD1?k&B-qqS$=6vL}LIAW&h)?
z*0q%{AGAnsIzQf21p}$%Ewb<~<ttavfb2GFzNhcirQr6OKN8EFlq6((_(!t&x2I-h
z2!8&%FjcKf)uQr-RiIf$p#bG|@(PnLwTtSwa}?6ZB^;ejtpb>8T<fboZH=_s*|vY#
z9ej75f)^We<j{X#qCs1Dpev-h^9lRyN3%7^3*&3`)jRu-f`{Bgcucja2a|4cIPkm2
z%M^xT|6B<HuP8q)ko9!}UfgCtxGAi+zr6fBjbICL(yChV;bMSI_T$ppCG^q{R^142
zn6G7#rP6ugZ*FfnY|naXOa{&^CV!LFfYqVJVRel`=Y7HWnyIz&w?~}t4<FXrKl!q}
zY?GDGVcC*>U}wloc=O<Q(tEl$6MF%70T5fG0C7m<YIHir7j?T+T#gr6s@s}jU^sKU
zdP&j@owM{FHbF)P%Kl<Z6L!RygyymoKm053IsWU|^}6-(0g~*Ew;92r$Fa2eZ>{UU
zD++@*NQ?PE6_4c=6ev0-CTE!kd)WmXqD@n&h$wj;fiZJu1mJ=q0dya6nVGgPD@eI)
ztiHCTY#k4^eojkE6C=B(Ow<C71q(*wu#xO{KmrFa!(TeXGbz2cdh~2<rwkA#e_LaF
z2}4SrU4g7&9cOUYVXEv~n7D_BRxEOf=2at4IX)&8SXBS@VS&o9(TU9}%ovt>Gj_DH
zvLelj?uhc2H~iN-|LK7{{L$3UX?@JyC&p>%gA)22iKcU6*JZ`(h_<%2D9FgqLBb4R
zPFTW2{ryrB5)xTSNl7LgDo-|Us1BwLqb#_R(12z(3*Z8_Z-PeJsy9u2b+mv!St>L%
z6i`%*$BzM5ArGj}mI2u;=WX!!h+g*1_rQCi^T2hFfz*~(|7=fv)}aa8*eGX=7sg;q
z+g^6|8hptji>z2`S*myMkiZa;ZEVO?F(J{>Uw0`DCO9v__SWctfBH`U{lom_PXm!Y
z@$tBopHrY}05z9yucyzkdwyZYNm@ceOk7~Q)UpPH*>;RhOvGO-p8(F}Y^%3m<uV~0
zLQ2Yma#i%QGA3|W9dtf>rRTFl&cF}>U=O0Wi9w~MjNH7u;WUtGz|U#wcq_M2AK(Bi
zjXGZe{Ep^#yNPE26(eqAW3!4OV~MR+ALNwF6o;4%oW@rL5qo-QG1WAe{a^m~n*6WD
z`EMThPKtgmDUm`hR+kz;3NH@)tZ{5H;6|+Gy1;-ixn}`6*%}dkuRURWaB`BvV%Rkd
zj9Eev<B-8mvx(&U+omJ*?rhGscan&lJSg+?M$JPc^qSZ9we>C#ARxt8<Z(Yq^0KH%
zjTVyBRo%Nx_r{`NWeo$%aVp^D2*;nf?jNVFfBBT1-?s_YqKRBkI;%z-HNi(0RY&Rw
zh}^^VOCFM7$qu~L<F{KDqAWAPbyZTr>Fn&3cXs9kLcEx$C=4gqqPA2BG!&hPGXk)b
zM^_Qzq+1y@&XA|y+C-5qaA0hxr>MR96c!$C$xePYzO%O{0){-eiu-smf&8^5`-QQQ
z5sGXX7^3B{xYr6)7n%c1u2R@j;MhKL)$<y#&W3d6{r&tp20Yffv8oS?{iwk3IQ{eI
zLa%t8=n`Zy1*}IQx1!e8^k;r)JWjm^?R9m|bo?wV@-y)SdmNe2)#FBhAIl902<Q#d
zklHkrZ}qw@sHpG(NH8|~_RHpt4-O8r6coaHb}aNck`2p#s7h8~mGssbRbZxOhBiYs
z01J;}(N19k+IBl(T&h7>ZcbRf+156=wzXAI8TFz?=Vq^592f|aAR-|tT3FDDzI(?t
zz2u)#R-DrRg{8NuVRmuRmyeH+Fq`-9xXgcf7yJ(|4y3e&ti0F~>3G~bUXxX#xjX#j
zq0>}NVWPHk^04|TY$@|&AlVqgq;-lj>0bOSm~B8a0IciZlF3y-k^CLeJ5qs@)QdCc
z0Y4Tzv8oEpFQ-@s0B{JfXJMhYz$L22bVw(K3&sRC6#3Y7Q2_LkcfVX$?eFMP)pnxP
zc3Y3n+5@$9*(q%o5~uA^(GYp=!%*rBCCgyZ3JigZ2dDdUs_T6+zz66ptmQgmI`sKi
zLpl(~>WFnFi;jUbH?YFZq3vfBGi&eW9k3OlSWj0osX90V<@4XVS))%gZon|_w{>t*
z=!@gyV{_m?^xH%sbz&tTWw6iSMf}SuGss}toZ0t)$720z2S6jeG!`XzXQbkAdE^p;
zSjo4^?O?;zw;2F@6lCY;nk!d7@@|B&0*gmHu($}~b?dB>!;VkMICkLopXH8DFYhu>
zwds0WPt1DhuDk3_#{hc^9RvFYfrE<~-m^_myv-GWfnO#Yz+F+WV7KRjLgDy=#bx5=
z=Clj0Kc$NR8Z>qb7)D~R>c<xlBqt}IY^2&+>~1#*sLz1liOE^M52kF3P5^;CthOEA
zE(7)!gWrtvtfS-QNL}GYGu1h~i`rOiqx)(8YBB>--;k*r^Q$5CYLh+&dr|?9X9F4h
znw7E1l$4Ywpujf_fhlWIC!4xwyteo2x)%Ez6wL~Fx10b=^4`Bg(FDD9A}8Z_F#pC`
z{Fk@-|Ma3zHKpAthbk(Xj=X%#vlqKb>i9i8>;g6|>n8ToHTr>01H{3TyE*Do^baAY
z6M#FylL^2VG+@J3BN+6BYP{8Bl&fjP$20G3^D|K-XWp#bT+HBySO`ybo`84+WV0pZ
z-aklO%obhgCzIsgF#esE#?XG6;c@g>qv1flmI-L^jq5tumW;0K#-zDM0Y>>mycYnQ
zCOh(~*?nEHz*41(XNnZ?bhi{<zK#&-XN}^&mjS6uqtmX~kU&!sn0Plzcs=E)BNjh|
zrSHppZb_&%?zvw(WpQp%hv~h0Oo{I{xhbx>(ZiO%YppKhy|HUwW|=i)8Y56W67FCO
z;kyG%&zxb%f?|dFZ?H61K88Az@+qLWLU_jSUX#l}PWpQQYWruD>hCmXptsv8DIvjR
zZ9tuM+42r#J4ugEzkWd{@d((0+}$(<hG=u@#6rGsTE@fLd;QEwA=f$pmEL*U|C5-_
zB;umeZ%WrYyNar_9KT}9Vyw**jeu1oWJnjX@04xTBbyP)+V_H0HiKJT$3b$vI96Ak
ze^CyYG`UKb=;no93gUnFJktRK=3>qEt7|>)fuUeI=2{;on8h>)t`HPgpczKA-otvs
zN6hCMUFRIqa<PhP@TD~>ifd+OCY)k_4r1=-(k|x1sCoBP=gL^yZNuvk2B|QhIEg%k
z;4QU!x1NQ=$ybGpBokCpI|+DrdUiev0PG{{<35%{Nt~NZG|y#A9Ku=uPqB(Mri+=Y
zDK0xWpRF_Oad$cC=st1UE*jL_ou2CZ|K~8v|Fi=Cc#n`aa>b<7P6vR|(OXTvseCjB
zii6YYG@I3Dg~B}=iKM%7s?1*ez+NSu(Y^&oty)zxqoB~Ixc5=?%qlVhB4Q}ZyLUf^
zL1+vdb^{w4yT^sy3it2X(FK511O{nj>S;vf%xABffj`^|Zqlh20CHyS8AkCJbxbf=
z-CV==YYcy&OCL;&h8WGTaV))N=!Sxk&47X!(c2+Da4csY0$z*&CHVn(%Ox-k-hAkx
zjE!$dnWBZ5ZVIT)_vs|6+x4#eHpUqrXD2tpc|406ZjH~RRnSoY&?v(jt&yy(qvm_l
zm8$}J@)m$EdoX?jh+@4(Da*|p#|rVq`V|c+o7I+6Oa`!FFwchk<z-ahLrA@e?4rjw
z2OqF~6;AS)P*#<PEkZ>dz*hIMi(YgZ%q9b$IC4JO;GiHBUoOyYi6pwmG=BQ@X=gH-
zJ9F#Jr>CmN$3{Q91Upk!Pk~>ynLU)bX-}b23@F5@cD8jdlG|5z($a{n@0zv&Mwo7{
zr$;=r*lhqbR28(?1O){L{4YB}{Y=fCzZ`l-$mUxc92`ujYD`-8^$F6V)%SVzfIdGB
z9SjEI`uh5*j-{b7uvwRP<!}`>;#)MS;4``l6V*f2iWwekx*c=;jLy{k+=%hyNe(cs
zeP3#NCeZ46?Mz;?4$%izSF2v6e6AJKjt2nVUi3H8S`-N{RR+?`4EJi|Z`7LqBeYSk
zycLD3%gx#=i`pvH(yJVe-J-n6<BjLGwq)}A-%**BhTvo>>Rm7$mfZkWfRNH^LmIVe
z5IBEspD&?VYA)5k$=R0)3`AVz0jmaOrHaAO(6D%RnM5^jaS#g5D?=0d8iyz&9snZG
z0lU{W2jD_Skd4g5y#}^*A9-!4O*g}I@s=Zohci}}ufqcuuZD9aqn|xQEdoqTlk7;8
zn@r$yfMlM^CA<a9w}w^y(f*%~0Dt5Jr(!;}CVSEG9C8v;rQ0mrc4=ekFU;GSdH9u~
zXrDRJD$Od3<mB`)KOQcVgSk7U-CjfcL(m{9rE&s500WGYa6EpdNjQi<u(F8Xc-*KK
zAM+@m|7`ka@55Rt(-Gh@<tZ8``eiRSC2*8j?dB2?iMBfNb)Vz8R@<H84Xj^}=Js_k
zAu7T#gjY+0_zpPzA7v>RbnnVA<9aUuXj*zo%K=R~(<?Bkeg3P<u(r!U>`X^Sv|GBv
zbdw7iqk5Id`u-v`7+7zJ%kmutyl>jdLKR0TvE*f*aOFV5<F0<D{phUicK9uZ`RcH*
zfdC*vQ1c&k3;#y985lf0jLFa;*NO^x{l;|gSs5-@|5TFbkB=W^iZXL@M5--W4Z9o-
z^l5{qr`56#4^zNih`|pST@;!8w;E5?9H`1;k;pu{t)SYjD=*~}b-nH`P1oapBZH8|
zN`Y^W&u?b^fjo}&Gw+AKCjkggKVg2tbcaE?uqq#f8NlI+Vxjt}VIg)N(dr?|W96vH
zi@YgP+J+{|J=K6Gj~3?fwawr*v4z<%e?|3udC(%5ke=RhKL_pG6F8Rn*~N;1FmeUs
z4Ka+jo^N=AXnoc&spG1jggIi;!;T!eIe4pxeA5~?Ma!pNZ#gA{+<#w9YYEd4>hjYm
zR&#m~)JR^@1q&U49{h%QPO+7xf|Niwq1{_AYIhUt7@wxlJGOwTsp_z|3`HpEc0Dog
zF<Qu6m2vpV2SL|^SXN1p^`eOCMOya8>`I&#KZi(Fwe{yK=F5z3kJ*FWf~h&C9a4jO
z`fDK=Aff4~oqxliEi6zjFMyw!#e_A&<i*FM<KtNE*LKUF=M9e@h@2+z`H<b#)P&bK
zY%(R|VH@&ZlG7CxUEDCC%Ad>gxG?#`!^4-k7r9_zi@Nv1L@&?%N_+#j_Iy(s2(bk}
zl7z>2JL*lqNpT{hp~aJ~Yz}35*9N!+JE{qPSLaTKt8Qt7U##==@IXF)C}7G-)rOGt
z09y}U3Ya;<{V$#f>0`@LSZqb>4_g@c3rOr^>7v}@=F)z7e)V8PU+0lL9uLM?VqbBD
zQwqER$<U9^*arbFuom9IJck3~W-q9E2nwuItPWTp5!rJby+JOq0;WVM4H}*LU^19@
z6r15YrUtL!0cQjOdIg}^6NDiGUo2H}90B@c8v7hR%=^HAfbQp1xPZs0BWej54?V(^
zBIUs;?bL-G3%_l0fz@HE7I#rgC4F8<^!4?nYn<NOoh&UrH9py@uc<&0YVZPCvD?=A
zI;ChKopfs^=YU#2#+MRS*UP%Pp4e7AQt!-!R2{8I59ySofT;_=#YU%8C;9ygkgX0s
zEAFnTVMqN|d2~`bI<dG2wJV(}DiSQ`4_JDI+;O^Up}evD&3}}h>*FCw<YNS}M>g*E
zwY}9Knr-(G|2WvQ@f0ld=(P0?Jh(mXV{Vmrb6=ufZN5EfT$Or(1yBq+8j0j0!7DDq
zS2xRt8Z#gRGs4VRz#8o7N%(Q#7inmP&-AizZ<cgw5v)}Tglh*;-MehJ<GW9!)6xW5
z?6&u>yF}nP)ZzU0U@fV1B1iY5S)$=)z!FC|DT5&#7^6z|nHK%H5u`$DQ{?VAJ?OqW
zol?wcBjS$Z@^G+0XZhbOgTF4Fvh)Xz3e(F;_!=C!;$p;7<`G}sIzZ1h%1R$Whbw?B
zCJr!wssCP4@rqGeS0<btdD%$b*46d(<@L4XA&E%SK?o{y-So-#_x^ORi;y3u@g|!6
zq*Ze=1?;@>JZVd}>CbOGw;!wK7T$uBz4EYuZvIDgt0w!ORN?GS53mIJrdJ!~4TR$p
zmUNgM7n@w77WOcyzxOeejR7x3zj{Mg_@H+h(?G7YK47H;$A_;ucPhYKQ}20=zH741
z(xPW~zsfhiu#nqEoDmrwzTGMaU{zMrjIKk0E5`-eO$j(ZcG*^mUG`oHcq8ADxo?pt
zlTd7eGg*S&Er`Mzv-P%_3qx3laXw@jVTYa8MrK4=>Mz=%pBd<SU0HpgkQI$G<p~oV
zh!*O!UPH$I%-KFTk>`J8{VJa=CfsccS?cH_tyk6ZP=N%xY+A6Az%R$stIiH+YCW}M
zPUm*$%Hrj9`GvEXMic@I3>yuvk?25p5S#CSZ!uF97>K{i<0OSGwJc8PckTC#uR0T)
z*t51kS*`#uFj>*3whn(%-8KBszhDe}J~zAUdjpPu@gqrA(Md^W>4A7mT4q>@>FJE>
z2uQ&pJt{hQ<{tlMUywsMXo-q^T(CJI<@c|44xeg-&u9S!gb=G?jJHyyXCeM?%2n4$
zO8^Ee>v0;nPr$R;?qy?TSnhPju$(TQj#-oAwlJ_2i=|L;#p&uX#E_?N_7XNT-$zr@
zMG6j2Xe(4aLrgx%De3Pvd^NhvGSy8%A%(I0+=Sozu2~+Bz~!n&{2+>`2si;cAFET3
z7pv-qgG<tiSBJg@m3@nY;@_Y&Q)$RTw>5m{o{7&>X&O~}pzI{W>@xw0P}vr({oxq}
zduSXbz!M$8xz0^|xiiJ(9aKbocCpG{<*+#@ZreeJ1|%5cp^F|4aUq$Md|6Rn9-$Ey
z7+GTs-C|C(XJrp8cGo^peOOpnI4M8N(lWoYPaFi}d{OPftkqX*G5*m>D_ab$wg5y?
zMk^8@A&q2yjIN|;y`huy<fp`QeVSUU`?nv{`OKg47-j`ted{s`1YG)=Q;Ugy($N^C
z)~Ht@)u<Ns_W5YxIxSXDZ;CB(lKuRoNOx8WXSclCYV)X6pWWuYm9l1!dCqZ~wfC^u
zrTYK-UPeiMa3UiSoBRFBaJ_=ynnIQ3O-L^O0*CFQ7K&7Sy*YsL6{%NKIqgl$J9Pey
zGCZ*N&EE_wgX<Vu_65mhbY|%V)~ly5+*X~9sTYQC%A5)na;4bFJ~%L&i+9SK6|@M|
z$jm-2U?$=1;bJHB963i?;uRy}JNh1-*O4*k=y-R7crq#plCYr2lx2eT5l)eIKwVAQ
zSl5`C%abO;eF<3{k6G!OM;+8I*7!m4WO^j8Z#2-&>uPBBTN$o6CxjF_U|@=mf?if|
zY7ICUtb5zrg|~Ide9=wayM}Xh`x-i?4+#jUd|RBjvxhqS`c5FB@z3|vHB!VGNH8(=
zVnr8BCm(<Gs#i<=Y52d0i+|k^lYFufK8N~oDsH2EG4;c@gz8|Mml=&Z@@T-EdXQv0
z4$g}B%Ed%Qu{d8exgKU=GTXe8s0y(h%?aJW#mi!J4GK(RWMq`CL$sYaaDVdrz-*z>
z$?^)6VK{7O@!}8P#9$$#vYnZIM4u>DmEBF`m#xrvRQw<T-G55eH81GFa0dQvbhMuO
z(?yk)FVph=T#G8D8ohg94Sxak69T+a9cT((D}d+|ECL`j9zL$JC@SyMhQ-Z5fi~3R
zLPaW!rb$l)(i$w=wQY@iL?dmy^OaLp52OMJ*)?@0u?I9IYb;-O%rw)JYWD}nBj(Hc
zrA7Z&>IlxDmIb)6lC;3ejg-rBQt8*>64;4qDx8Gk>p%WrX=rR}>dOJ%;e^JOL@ta|
zMGF#6k9nPwpmguV#I_U|{7-i#CMeKJSX*@WZkaxRUbH*~7^j*>rOyRr{1YuBq?v^=
z?`J^6w)FE8DjZr~*MsMvL!x+>RBtuom%yM-H`w%1>SK5~+X+f(FW!a#HFfIz{CuZv
zN&bRGUxHJtc~VJR*FR=GVSYmC7Qar`Q}aww&e3?qHe&~3lS{9UrS64xTp-*$q>0i|
zP#f=clHCs;{r~u{|F`T(t_oS`H5xxTCvs_J@JAd%d9(gF2ibtYq4_LTwYRrWn*|;o
zVA7MJqe1Sc4Rr_f@chloP^A*J7&@hb=f@A)fR6q##rL%}BVo<ypU<4&(E9=9g-*4O
zc_TjgqLoPIvvA;%!UNlJyI88o+AZxSXG{He@a}L_0bybr8yk6Uq0&-P?7b8}?HttS
z5*Vput3%2)rx+0G2UUUJ9zozPI~A2!5GXX|AQ=+}1O;jIheZ>V-A&b6;uG?m5Rl_}
z35PTFACJ=2qOe<x57TuyhA<~YM`ODAICS^)j2waPdXL>qm2vHB&j+g(2Q3+oR@j~_
zdY9)XX?mk${s4Xti5Xt*As2%z;a+pKmc_=!3Y{;rWW~iR_414x2p{M=LDllNVS&J9
zRh@d%%>%3hr_P-pqGXxL$>I&9dP&m;Lxfy5S(N+Jm2XjZAG*V}3XtkkvWvN1J3Cyi
z+U<Xl6~iMSFvpROrwi<Lb*-*HV<;6^vY069gFK?}ng%7L^*gZ}m%HX3hgyrd0%;5k
z3<B%3F6+4PpZ|HyFyo7rVhPU(#L*y8pGS?$U`zg7sIU;8Nb|O>q4kZGpPS?6U&F-Z
z(tnXjMMYf2Wn3*ee&s(nx=$<eXImmf@bH9g{fr9gEtSvSp*+eFgk-ZSqti-y3FIE*
zsQz3#BkhTHo8vsp^WwjeT)W(u*e=81e*rtc4vOldPt~8beyIBypZeCkdctaQ@s+o{
z*rd&j__fXPAs0VBL+>4q=v;1JW8ad}P2DP2Lgc@Svj4E#JixAa`Jj~Q3A}}wU~V*_
zfkh>449DmfMy6cW7g;oD=`+o4Y>Yb1YGIk=0V<DR9S2O%59<<sYRrO)6tZh?)z@h!
z8;KF-+}{-OSEf2~3$)lHEIZ#0aJ`#hSF5)nu^7vX#4EoiuI=W7|4qhH07NK#>F9FN
zu(mndR!ZCF9klY<0@{J`n@&y<`~kHRdR7an@vyt=Yjd4B@~f%Trw`vc-T?jCPOMP_
z*olPIZeP{{qg2;ko7`Od4L9?64aDVdgrrNQ)*T@$Deq@z!;e7Lf}w}GoHaE0D5fFi
z^%T!iEphub^OODN^Nd5ubyXd=WRw1jH#YHf${&ijwV0Q@1>*tei-<hBmJxEa_PDfV
zd_0`>304uPmpmck{vaY*kN=Eg2Q9L)_u;n-havuabjE;r4I@%tOQ?!`ZAyV38F98l
zRCstIf7_+N{mn5awD9j??oHQEE^%hDDbq*ArkNx~QJ+>ob+iZfv7OHnI&^9itj8J0
z3kwl&$gnDdNS(=NU5}3|rDi2XAhd7V7;I1sat9wZd3kt9O(jbQB8IeCV7@x}B8H|}
zDGf;IHOD;e<J{l8;TqdT|F$+eKmGRAGi&pK`vB<K+Le2T_S<pZYSt*FQ!&E3E>x;q
z<*TEm1`APy(sT0dA6>djwe&*TJxjH+1tPB<h!!r#i^mI&(*xWqIDUOdY<GH{GSZog
z6F6l-!{svc{hIe>`B`|@K=YLYbhNpduRx^~xk#OjZ-@$*$4Yw-Tn}%TI+%`$n0R}W
zS<Ket%@cC6mp8|mW_Qw5s=gBpD=|u0<~=SyzC5!!-3WIi=T_Z-94G6!zGx^c5wBl7
z^0FO0waFhURtf)zqmrF5pz_tkGk>>n5pn#S@azuP`p5cI)9tF9H^HH1*zeVyfLg3f
z+}Ppy?@ys}d&o5Tjl(H#l+bQdag<PFI8H1j`nELY-O*v=n8HE9!II^pTV&1BKVK5p
z`uIFxwA9i{!{bB&4XiL=g-RU@>a3Afc3N22z}@x{6p-G58x|dp+ff|O)^CbKQ^-oF
zR%kNGKApfhkWMOsdQ@)6Rd&=JHD5~km($%TMbM{v^ZXeB0eP|i`2whD&nZQ6t~@4~
z+ZwSA6MxW0%gLD_$F-NA>6HgaPTdD!iAe&(!&vKvrlxQQ@Cm!}@TVHc^QA7uHWcrr
zQ`nP-spq@5eu6&XTL7TU0i^~xaNZGz!MT0&Lo7<Ny4DzyEM|y$AX4@^6Er+xTU%R~
zCo(Li$`~b=JzDPE!$h|M?N%-vk4kn0%xB=N=zxDGLVWaS6mYp|2S*$+G;rwF{J9;x
zsFCf-M+57xLb0j4EiC|paa7SYQ@}GI*mw+eIvk(bA~QRC;k7e^7&3_zGxMR_EvSfm
zXS;WIOF!Eh@waK(=TyhNC;=wLLE!E$RE~N~bxDBGo9T5G+KlJ?YyJ)RGPz*aH_x(^
zq5{npX|IXt9NoU!uwEvu2BF?m7Agc_FDvK>>cxlJUhnHTjC*kixqfN8@z<M=X}AaJ
zHl6)Gaiuk6%!Lkk2pWEhd}=l4s3ankvjHP}uKL{P0l|6EBI<1#w*x~MZm{K0*4xI1
zva-zXz&zNj=TmNg_+u<AEXN-t{GC<>qpXRG*!6TlL(f`cF}b+R^p2>!FDg9ky~M<V
z8U*Ioopgb>6?Y->)N<`Jz6dZKp)@%A+a1&Bo}~wIDexe#?AIx1H4m`e*Vg<nPX4{k
zQbs=LVwouZKZLzyRFz%3Hmrnzq|#l|DM&X+NH<8QbPFsNC5@y=N(xAKcb9-PEV{c}
zq`&FC-)HZA??2x!2SbOj^t$Fe&m&XlzOOjYaMLQ2AfrL{QT>r@wB0nHr9}#fH<)B;
zp7BkX)ps74DnoEuPBxD#2Xd-ffAma<u>9IX-)9WtMi+2Sqb7&u6AR6>rPyw+N-t&B
z*T3z;W7539_k~Z^#C`qCh_2GhW4k$Pz99E!_A<ds=G!kRo<X$tNh`{}xx;+Y)EW6Q
z>0~)OyGU?WXCqPZF8OCKQ>`vjj~OZr)I6TGZU*Fw-OkIM%sNj0^K<|I0Xs&{^v}_8
z11Du|OFCtno<+lY6pi!=$jKDt2?H%X2)iww<8&K;+KfmNC~M?9oI@cI@zD!ATpiQ!
zaGjclu63g%3troJ$91iOFhtR?B+A+##~SJA`HkGNC)1tzDh^+3Laa7s>l{S5Y-dD2
zl&R%m7zec9fUb%}CscgaIJmWRA%{dBDnW()7KK6iwYKB73@I$;J#?~Skv}W&W54O&
z*Xq<*2M*1dn3z~DHMcQmm0dP7Gjj3*!0Z#w%dYU67`lD1NXt5vwC;SRkwcg#!y(aA
zSu%|lJYzRjdp4Ye4i~*RJxCGfdpR}zLzM7}UvTm2c-heYhI=g0X?<xznh)mzKz)Iq
znzEY{9EH${-pJU)g236(`kQp3*~5j!11uprGxVQqu(EWJzujK!vha8dr!EsaM0{Pg
zxPeG_PCJ)m`4qE1iQX%Jj>{PO84-SSo6o3SlrUufVm-PK^`Y$Neghczz^ACSUz8QO
zWAEbE5r~S4O7Q3M-29ut=pup>VxuJRwCIVCuYZ8VD>kao^db8*4Du-26Lt=H{&7Qr
zfub4}1Fw(-CM4qw)V~9-J*f1qx*mSbXv2mvO%-@>(ut`QQ(spBe!Q!%CkP^HO)$_C
z@Zm4Cx9|&rJz)nn^vbLG+eqw4i6sh1h?SCdv-_GRqae8NXc5OV-Cd7;(eY^*BXK=~
zCbqrSZcM$zI!R$$x3-x2k+#p}OC<5t?2qF`&tJ5qKP2De?}C=C+&+D|=^RzJC{t{-
zwv<?zE;95ij#Ab)E9p=0v<>f9+>7-@XN=+tr;PnBHCUTX{|99R@Zl$H0^Ze6*`&OV
z#{cU#{@+BiAOknbFV?4u6`+Z&!)%%O+<NrwX5Klo<swbP0ytEqOG`_~V;E9LD{(QN
zA{WGe&^F9|sTt5PupZVv^a1Ku9UZNd&O_cj%lPci*U`k5+4{Kdb3gnAfTgDa9*$Y4
zd~akG#42}IT_WAk6Allx6!+*i#?@`Rgyu;{dA);v)|~cZL{q9bc~v5)S_G+i1gD|Z
z&o6mFeK6WHX}D8Zl(EIHB+8&%u=Gd_W)G}G1L*Nhq^akd+%rxp?@)wJyD5eQ$_GNo
zUwK)Hr`nkz3bA=P5q!Hj6P*K{=sENaa*4xpEddb7MY_P1(r!O-A5`M{Z@)Hl4FeUm
ziazn{S8<U2%hz(!iK=R3H;Hs_0ljv9@SfbBzFNP#J_n?Dw$)6zai@)IsPH=<D{(=L
z<M|WXVxDZ_-H8{y+kB7{HPAYQ%+RdGsrx1P?4<T?N-GwqDfC0Xg6T`6A*Ao%?m?!*
z;^C-i-SW=~et{~@U{2I33Q-2?-dIYygwIuHjb72o5@=xa*js98a?8-+oNsWU^FHlK
zyx7Tx&q1;o^x1muu)M!<pBpW${g~G5bN_7D)eB55cqU%eh)$Q_gBFL&Im}EuAMTcU
z3n`@pKgW8y1+gT<!FeT{;u8+a1$JjDOfSGnJ6{6gWFwQ?`Gtfc9rfp{a^w<Y5)<oE
zzh}{szxSP<WlGT!44elbaN-I5k^uyVjqV6|?rD*Wu(3z51!HuT<bk95s}^VKKbsxB
z6GHho92r^u)HB%y6vq%b1iu|S8<Z5zEqsFFd-NmQ_ZD-j%{?LQQKVxgs`}LmA$V-b
z6s>uBJrcttP}8_gSy}FHa+cjc#c*rV+pcQX$>v;ow9hj%`add7JLAwJ%w5_*Mvo*A
zJ(G%EKf(X&jP3D%l3vhu+Dm-q!MP+!-^Hj7g0>62q64m;Nm_x*ns}z*HT|ck#o=eM
zE4BYVqT5R(o+QUdkqXFe=K=0n)fB#k<c;vC^DY-BOx-^qASm|`W%mas(CD;=bPA~Q
z()A>L0EYlf(l)BX`UVhSGOewx&bY4Cpt<FhmIdfg6%><jDVisBU!Z&ec0AdVm6GA?
z@?pc>x$l{(P{wXC?Z|yB;_(eUJeA7<nhIveE@%x3Rm++Q)}9y%I>@w25Bka4Cd_R+
z^QBOe3k8356>`2c<QD$Ma#Zvjjf9+>P147W)37fvE^cyP+q1ur$PgJ+u_dM%G&s{J
zd^3UWqK>qvsHm(-I@114X64}IL_O@L2o9p#|NdQ6R*utqRySPZ+#1cm)5%m!IUhf8
zZ?N6dMMfsS`IJKO<CYIltYicDmSHled|}L`4R$_$wag#EhIN6`sRL2x^*H-+kl`wv
zZMu+A-?lnSAQB;IoOF%gfCYMH#NYZRuW;#kd*Dg=o_t${27MyIMl9YB{$t%6L2jl7
zID!|kh)X=ScphKyvyP3s4B|Xaq!mE^{RX~ZcRfs8vnwn$v^l{B*Y_fhMOQPd<xoFw
z4;oxf&C1#;dO#`L+jTstej-GR_z;z9qGIT&kiz|U{uwM?ixwjgUM??}6{q*^$Q*fj
zwE*;htb^jVEgy!62#5DY7Ru_koJb9#34KAbZyX!tOYF$R{E;Guzt65{KlP`!o*7$|
zmE#W2;}$JiqbxKs<n|LDDFbW^v)q?=hL=&f8t>MAm*$3VD{gqw#;_b`avUvvT<sR-
zcmF7$VKtj#z4$wjx$Z7jx__vNBxuq~X)~Kh#a<ClKXg%UtjITuDUofqq$wf<Q^R^R
z=#FWc_PE_~Kt@>Z9UZ3X!Pa$Ltg&yZMujHvS&4QKhZ^>7cdcaB;geZ6$Fy4Y#$w`}
z^vE3QBHzsF^E}(R-=)g$w^+0q@EUG4zj&~9A7!rV;)gBko(C$W_#;MGy6GA|k1DoT
zgYN!fqi5=ZOy%Y-daA`khs+2a+MX0nA8`{#3DC|Q%$H8ZQ#Bj0eLHP%D~8LFjn6%T
z&&b=0od05o7;D7ELi1UXd`bH8o-aU=e73A|pe6f|@;odf4@=OhtJ8+(2VUJ(cKEyP
z-Gu^zy_sW_Q+Io-x#}Groy&RkM!OZ%$@=rOI3~^J_acwdIsy&}%ps4@=W;bWxDW(|
z7JFo0)v2vZO?4-AhGURK;9lMEpI$9UzCIo81~oX6CU@4iCz!q|VEq3^#GOyutKQMs
zbw(2wB}_?MUXml^88vsYciMN1C5}3A9&>Y<O;07Lz4g8Z8uG_;=I(mipiw@<`yoZa
z!#nV$HmH%CAZ;;#(Y+6(rt-I%yULyV=95$rn!r5!_G)1wDw(T<M)S}K+czL1_g(CE
zSljmD<9&$mvb!N&p+1wUyd#U!HrtQ!%z!?tt>PXNRf8}|Pu_fe0rBGcaoL9<eyi~e
zlV57@N$P&wTo#6f<nvWK_(nj!3rOD`Iy~M!xjabKN)cR?Q&E*=<vMnMqJp7Y6m0P3
zJX_}5W1S@aPNb5efL<-Hh1d0MkNRsp$6xY!756$S+Yd@=C0nHZ6LqQ0c|5Fl@xLAP
zz8y2P2V9<%DHK_<By-0k45i08d~+7doV<SMPzM{|84B``4Ht`@?hgIxySy@nOYw&h
z%A!dJMTMqCiA<H6pKR=b<7%u}t$lb(kLtH%Drxl=J1LW`$EIf|=i5g)>qu^euNtIv
zdP1!^n$7$5!e*PMs9L@w35%@}l`VhsVwCz4;_&^?{lJg7KiMBwH=gph*aWQ}!}*k*
zcp?c@{^mI=#oD?!CZ9tq97`Sb+52XS)8^aq=YC!(%`la9f3a;tAZ(UbDfn6hz`L?!
zPcNBO+N24H(<O>ppsN8E&bB;ke>2(_N4IzOdZ?BpaiqIkj4clRkjN-_kJ@FE0WAp&
z6FK`yJ)Vh1@>5h>IgZ<9OJ2cfvCOb7>mbaQ_}CX@GBXecQ@`?LV#U*tK24AOzaWmE
zKQ;lEHBOD)Jj@<(lmVTTe^S{L?r^C4Gj`5WPd=PrU6P;&$54jIGX49#v@aMX=|Tau
zo1pMACYj08!#?N_=mC&U-vVl|SD5#Fm_XswY!Mb0MJRH!L+w4TKv=3dbm7&;u81+m
zBuM_r4U1op;6is)XU!vJPQsBzP#a$=wx<XKLed+F))k4o`X&$tdq!C{5b`EeXf}-P
zDY6roP2KeQkyYLZKl&TMM}_9BuaAV<oXY!w$~=}2NPITaPy>&e5ORr7&k8;pp!;>I
zmC4-h!#sVsPssYxX^W5nc&-ntVXli{3!csb({EM~DT-))@m1iV457stU`C#cdH86K
z?!Px=d-ziI`%S4*9X>0@bh_*E$;rb^1;M^$Qy<Xd)X8^Y@(cP3nA96ijE|G_>zEga
zzWq-Yz<0qUvyOi*{`x5tAOn`5YG0168^1EC!MNY_NW8qrX+Z@TBViotzG97o=Xm!!
z<W`Dun6Bett@^gx#Go!NIhH{pBiDg=Q7bf=)vyw`@R_Eatiq9RfNVp8hGd{j2?u4X
z_57{n;K;G+S_P?2vaoW^Vao=-jzm~F=htE7^N{5+I@D8FoFLetX!sImo0oL3_2I4B
zr6R3y1EbMPy}E41lH1W<!ZOqtcYj&NIPd5_gIB(ks@1h6gIg*KDyC1Z`fk&|j~3RH
zge%L$Cp)X5Bsy0Dc>op#MuuRtUeKtX!vijpiuPsWWR`^p^!!LF?wh@VSkKsR<>d+?
z-8aT&0l$R`G}tCwe>m)y<{8o<4~`j{d#962>=vvYA8h7M34;@_u<ZNomoH~;Hun>I
z_E^Yta63AlP8OJ&&b8d;Yg01F_Oj_zzk^tpUwqfgkwsP@cr4b=`S~hI6ZdVP)(?CA
zl(A#q;+IUzcbQq64;>GS-4WO0cuu@KGnp|8dOmPADR3BXMM>_vE>!Tmp9E-@?2Vti
zFeC`;Y;v=cEo(h1m;Cmf!naU^GxexGo2%vO0j+{Ra<gT&R3E;vN{e_l`^S&)H!CkD
zt_t_4W@_*~$aX|}mFuItI&cSMoVYqqx1Gyf2HePgj-J(7uH*zcBs`&IYv%VRyiULz
zS7e~zl~-)nKJWXO%wv^`XGriAIh!1EP0dI{Cd1fuC1bWoJGpffV$~}!GO^^^TLf)L
zV331fzWKUWeUue8AVljGh+N?sTY5F>fGs`N>+4e?QwRD!iq<!Op#6}T5qeB{oE_X#
z_nJUj!lBwu;5I+GRc+`$RB!1Ds5ZVSa^{E@Rx?t^R&C3i-DOa`e`ttv&e_6jQP?a>
zYJ=Z6{_<xiZ25SGKxG*pgY*AU?De?FlVyg6>A9B>zy~yPv{H;DJGj|9Qoz$`l<(~9
zn9!BC&R(Bi|C`41+ka>DE9v!QmL%#dLbW;8F&VF;D1Skascxw3>K`ns9cgm!$t<R%
z3!tXVkbTPdl6`ot!ZajxbS__oy7RfX;~RJ<?l*rEwrlC5;dx)FuUYTB|Nc4P0nMNy
z<&71UR!s<Y2WVq{s~8+496Xfpq&d2)pN1BD`8k}8E*xTXhik|_PVna~EcLGMtE$Ed
zW-Mn*AD>k)ePAtme}Ki&nN9K*21w8~n*6%vcSY(2S$;sI9=o(@&rjeb4n}1hIXD*G
z<OgN3ZCL3h{`a0U2}Y^3vy+oA>FNXV=hz|}rIi*~v-9Ukh7pa!`o{n4uP+hG#h>;P
z5G<G?Cg}FB+|MrN30{Xx_g_`RcPg+|$DG<$A0lvu7M1A@=eUStrKP0NAlR@3(vN6B
zL!)e+@JaQrnk0#FvxwBHLV7Kowxf?TC;t$v_VCMx4O27*TSBMsl{Oe4tomRF`RywQ
zb75dofUF6>3k}eY)RVQkq*mUp&7;rS)aStPR^V+0W6{ga>#l%&>4vaL=qQ3eASybE
zZOLb<!#Zua;ts|2cJxb|(Y7y_j~)|{k72nen)YM{$us<$ckg8dz4e%$W5Qs+Cm(%A
zyQfZc&|kP0(rXF7@n_U1lFR7{;KENcdbvqzhv~5%P3YMfkZ295&?NgnS=!1>c98Zt
zGQnRq&Te{JMF9Xcc3FxRc4t2l-#Bpz${f$SL@)v<iD@R#dd)hUe=z<$*CDr=>LHy|
zU+ZM8+1IzY7&XhbdwIStJ1HqertPs+w#ekLaS><bm?;{ByNN!1n(O%S;$1~!jK^BX
z<;{G#C(p#j=sMl7a_8);RV#kg;;1#+TY<Zt+uhG}B9k{^qT9ofR+Gf=HN21}VW%_Z
zpkVdydsAIMc5X_>qJi6I37?5_*1(q@*@=tHo>cIoe`PlxtjJ<*eSe=Of#g6kmUd`r
zZyE_&%~>I)cfi0&?491+N%%goCqRbz>9%;h|G-9kji?pGGGeNMgbUfbJkHygkXAud
zFD)%z>~&M!*QP{>Fm0>u3D%3HwDl;mxTST}Y@vld%vNr(BF5E?*Vl{K+I(RHA?kR`
z)aE-C6|q(e5{C?Y9nMs6&(X0nDw2)-;-8)f#W`|lCZLz922ixaP<v{E(cs{hAHEV*
zx9R7;qUj#%3xLjCJ~$`~j?inlJA6w|Nqg6S8p5D(7u<f=gFtx~wc?(6KiXe?;foon
zy}pcS;rmFmaGph5+8UQ8W`Sw<vPc4=g7~_DzTS;^R`{{+zd1zhm!G5=2?9HzYNtI@
zx^=B({{`6mON)i`>}lw`3e}frCgY$R_&x8dprtb)9Ezjb2d15ZhDiZ3fMnnH+&+yZ
zz+KzL6sh)-J^?(73SbsM)cLY^U1U2E+#W#D`ad@7_6+c8ztH{$tchTe$2Xz*!@jFR
zz=S!J^jd=EJRJq+`O{|nj$n5c_GZ&AS9CU5J*$S`S|HMX%4kpxuhlQxle06b`tx8h
z`N*N4?7DEA3^V^Q7Cd31V0AK611U2fPqSvvmm{q+<{922czJnMFLPdyq}M01aQ?o~
ztQ?N;9Q^y~>8}weii6vUYCX<BtZHz{dFCshjj%p));pSz|J_*(HoMM-^e6`otj@g-
z$WrbSUD(Ew`%MZeP@Oo27VF?#p{t&J^+EW`a(*?aTn9qpTU}4w*D=e+gRpOF_~ASE
zRR*O+zL*nV_`LhkmYee)Deh_?UM_dMBGT8oztlcmJtyAdvn6Jm=yM0BJoyntrQFBd
zX3_WfBR1DIZr-U`a~Cu`4wTino`Vn8v(It<+)s?@G#tUF=aEHYOhg?bCJf*Cmv>Nn
z1mFl2;nJUxvTDdp9*6BkMpGV-ST}k={mo%(Zip=-TlW-cp!>l=(V88u;plI5kApU^
zO!73|>Xcv<%;9(&?l13_n|~9KF14lyM`TD&5!H-$Ps=bzaGO&r-c4sqqx%2E$Md|4
zz`FIJC$C=l6C-V(Ef#$xK03NYbYG7{L+vzt%*67x)6Z|y@^^9Fk3WA3I@~9geao^B
zY-5qODopdNF44)n@H?`(Y=6xhGqAF%$Tg+=p<w&wBBH_uX$Rt*a+bFvVmlon@i383
z;*f5~SZU{l6o-hLU~c<`Jl7J}edxtfeMjZ5nb!ff-Ls6Q_N9>gn+xeq)1ckkC!J@6
zBFzkgu7~53{%MQ>-kU~M^f&Dl^4?#&R)0+D6|S%)cwtlRcXCI-uU>blpduqXzA5Uu
zUh#Oim*!V#tZy@}(RIrbTW^iG^~3-yIov*yR5E!XTZ+(UJRo1XtT;wB1yGY7+s~_^
zqG&5C<Trbha@bmVd9-5|61SEH$1xb0e?IYuWN)~f^8T7gzgzJvoLabGe_SZgCVDhe
z^51^wtmM3%p7>mXx_gm6l_e|p)b;R4N!6^#^R2HCeYJsfj75%d)$rYem<%bEphlN7
zhpN?7VgLi(#G7xqdO69Hd#BNx7FIJ@(j5P}w}Vjf-`U@2(4E#Hr#E$8oJu8qsRO&h
zSqrsblkvfEXh*Cz5HV~XbEfa6i#U);@T)G-V<xcn?ltq$6=wx$c$0Dg1<iXr|L43X
zpOV&~M1mneY2GBNAb2q<0U%=$ynJSSlmCHB|3O9Dh5Z0<_b$5S=P3ZpbVG|?Am!B#
zCbH$t+c%+yOoGJrWImT%v~>|keQ<|OWlcTNX((V1(`>WBs~=ifZjtUGCGgkY!_qw^
z(+=6coHon@3|2pX<HucR1-Si6^T7f42H>{|HWlF&>?S~6uLD}8Rf67)w-WniWKToe
zDP@*H-5?De-F8eB<W+q2gMpGYBqYd&VBI?+hO!)X91~?4TB7gd$Vo)@9EcjFAkl?v
zK~ucO)Lm$yEV{KaMpC;Z?&~O`Cq92pjAu{4-s0eeR4+;E2#>sC%;=MP?pYt&PyX=m
z&`tKnzCFYlKDj*rdiQ#-7?^d&!f=^3$iG%pyf)!_hPNp&_~rbcIjR)@uetB1pO%i!
z91EWnCndB9N4smHI?p$hHp>3vagn(4mSP`lB&Rz`|D~^}nNY)sj4+d+hGFHkj0w-k
z^Z@m1&P|e>Zpm0fOLXURMvEAcY6B!jPp+ery$t5=sh`LWF#M6UFG~{lOkGXffnR_3
zwdP$FS7K>pN6Ee4#c8qT_8+%)^VGvGvBMMBZmB0C{8AT&HQo@%s9+rFz@+Y1Q-H*?
z<*Q`KxsQ5Uiy5<G4(%CHE0wdLC=KrEdus!?53;HaA_ZO{!cKH_<J^4PSar^in>iJ*
zwWyt8#WbpS2dk^On<`I5MA)n+e_l|$Fi0s8VyAocYHUDbzCd^SgNa)+Q;ofTqGril
zW*GkN!@(>n5CfC;_cy#9)UwTPI<{uI)hJN?zV*3LDFZ|N;~MKapf^f_>WO0Zr;jNo
z@o_ekVq!YZ(m9~4K{xUBM4N!zrmIC*t)P-QCyRpEprScWWx0_KjCKwqC}s@Bz}dv1
zoVeti_t!3K4NvBcpjtd3Smv{a$;}Apu$FlZe(=uuTomK**c-o=4nEhA@KZmWSAy~x
zLQZeW7)fLUENrzkp~>L;JNbG&aM#q|3p2!(!t%MYm=A{YhGI=xeb22>owzs*UKWwa
zd)kCb5~jeP);#{|CNHptpV(75NfkNWZR!?Ev5CFZp)%nfs?xn1Eqt$P6p8lqh3nz-
z;<W4gu0U$RlOV~mn|Ih+>%6;@VgMc^MtrUWv;7ZTYwrqoIA5372RisnKILoQ`%oRN
zhL9(mV$tufui~Qr2A(5TadCe%2@)abh2=F*>OeR`^T{LlGdn<w_Vv2>(PqAuMeNP@
zz(q#V<F@i{?j=Kh8^{X`CC8YU7(B^SVVtZ`;M!iIGVmP*qBSB8vrujHK4&;XD3l*4
zF_M5HywE)4iWl;2VjdV^<YtUS9`C9^Ht9GWaWLhV-e7kMENNa-a<3CVueNYdU@qa5
zYcTxJ_4&WK^8U6OO6DN35EC;<LJ8OyvG#{1Ce-$rG06n;qic~(4+2iHx`&_vKAdmf
zs7vMK=E}aP0YVKB-elKH!^l#058C0W==#K&Z#QC<#sO$w?S!><)Hqlz%d*!_fXXB@
zM{MeSwdfwK&~Xg|<%evS`2(>$99a)w>WCJ8_+uLGE=`b8_<9UDuIzZD0z-kLG^Vlz
zsFPFiSUC6;I1WCAc5AC2|3X~-i&uOY0pUZS_S{A??XXPq1SmWrqDPcI7j`Inlu8jT
z=^IOEL&{q{tX6(Fb*%^Yf}?}b7-IBk_8D*y1rmQPfxP&{vpkl)%xI9dw#4oyPRs6d
zhY(_&%6p0(a^{r#RqRQd+}>(4r%*3BD2BCn%|+fe|K}+6BNlzKRP<L~rQ4{Xg(t(?
zEJ;nOU4znN|6WvBEJpm}qGGrfoXv5OLFouNPx{+$SS|0Fvf*~$S>&`gsuRj}Fut80
z7|^n!pPvk_)k12>(O1B<V?Vh>FBNAv{f!ualrZP}qGawAy)esPz2+WXwX#G~&+hyz
zhlEkT_KimZr^hGQxSaAzGnPgX(zE!&>6}}`n@^e#H+GrGtmmDMn*-)7eEWs&wi8{b
zYF;0bt^5fEE%9?S^1r7unY~B;q>=IaNQgE8R+Ix`$M0`cbY@0IQiQ+#X@*#4m+DLy
zpv1;hyo)93kuqulpdZW~m)B`6;(1s|<|db)YZ`xyj@SK-2Kq>q?fVIfP|qrZ7JAAg
z-mG{PzZx3_Y|hEozqf~Jz%*4<WVI{io%}qJ#WY<nBf-8kSG|$?_Q3Ys3=Px$bQULT
z0wvTXYz}t!dMFoFKnrNkBTDtE9=Mi|pLQ50YcoJ^`BQ#ly{K|0*05Pfmi>&BbdriW
zGB@CLr_ffyusssyg-DDf#QlK-tnFVl);#Sx)!f65YyI`H3k^LESB3Z~vdBE11t!xX
z>fh@to9hK_TX}B%I?ix6s@EJUNE-zD{nVuze?-{xXUG4=pR6R%jyAYhye=5IsQW|~
zShMmzXP2&{V-~U4^XljV_>?Str}LX<O#7{oV}L?O4hw$2L@eN$Dsp6-dkMP9G0+hO
zQE<24%1NWA*HYqqvf#4mI_vq%)v)=4vSa%+W?CrsSGM!W8+hZlKr^v%wt$teeqCcg
zVWjpgbhNFTM^?+}L>Qe;d!}6m<+*xei%@vcVazJz-@;L4UW8ovZ{jm&mHG7N0+GOf
zu5G3f%f>=gf<dttWNxO-FYb3`%f&rrV^pYKKqX{qDp(6LrQynIvwNAahCmKoUb5z7
zp{GfXs^QH+)yNr%sTeyt+Z;4thGdhSwwgO4hu`ghe#vt(`zic0%YJBHd!et++SDf>
zl3YyPZMD9zOn%t$<st5mwwp%#t@4-3>n_ifB0@S8PrEE~#=CV{=AS+cJp&iZ+a}{m
zw!~bGka32I?5Fw#K1eD7XK&3*g}?lK!Q(1L)$k(>e_%WN^UJ`iVmU-z)!!dXe{OgE
z_fqp;+smhKPd@0G_P$0d!tU<tOTl)?1cg?WCl{$wrS=Bu!j*nF+Q9dk{{lHQpRJ3`
zM@)UMaD|U@j(Gsa5he=#%F?x9I}w1tkAx_UOI?%obk(({yycTcgHaQl4chmT78T;D
z^&^{?ca$t(r^;s5A!*h&ZBqT2u3Gb~)WxVTtgXN)v1t=N2v6wtMXeqsS%}uWhhd9c
zh`TNQ1)1J37b<xb=Xe>+0k3h(tRTcu@)k|PBd-;rayj<0=l$yExu4e4QIlETUV=RV
zoz`;|Dirlu5KR?%W>(g*TskYOEeo2XqYs!ktMN?M9!2UXW1YX@UcA6XM}$>We0W;N
zm=Y7i5&&C9VkEtF!IwAS!79~S45&TgdPx0ZKO*iwVEOJ8W$UK;=Sz}$W-^>k)Rvkw
z0o-g!jfnixAXK7!^`W~KG^eT<eO^zUaEt<-l&Hfc=4k!FMincq35zcudsC$c4~#&-
zd(2{)IQz9Ga@GdI{4ya@QB}&2oIIKJobMYC6k}I|tu+&0lTVy&zS=Bs!ONv`TE5hv
z&CQVh&Si3X#P~nYCrwcM&E-A{lR^hYt!D1k@CTe|nzYpyM9&<i_Z&tLQSq=4y0AFA
zst61csL|6iDd#k^4pvr-pxbHg)y`OGMpkys`G<2gMM)8}^0|?u0-De`w~hC321lI%
z-(G5U`Av2Pp>9?o3nq%TK%V+8dtX_}c@&*ThK5p9=M2MlhWb9<C;pWQ0fBSueTUpS
z(7wt!Oq|F^+5x-DU!dzf-JU-__h!lbH(VmhLQQ`w>9;UO2eD>@B9|>8pw9WvmHy8z
zIxY2NJ=~xLY87wfwHaYNMM3jQ7<!Q}sS+U+*I~>mC<`t|?ZN0bg16mCh(#Ahf*M#|
z1jtd4RT|>^Wq_1vqW5YWdYuOK5TGt)yoT+LW(IKg?oF4G_w@GaTo{jj7fY^(f;<mr
zD(2K%6Wib2*h*NmeF<!a=|}bJ7(?0BFh|N~z<e(SI9%tu&!4NX;7rGv<=L#+SnpZ7
z)z~Hr9ZQN%D-Dd$)9W#uN+=dJc&k_^gTr;r9hss**G^)~uA?GB&qgTzi{DG838y$F
zHcE|ay5I6uZJZc8hpr0HKhn6-jP>}pO)}Wa*Ngn?!-FsMh@VEho<uWgmI0Qy3eC*q
z*)U|ZrI_HHT6>teU96&{T2Q{!2EL{mN4|Dd{DNU?oI(ybWFhkxn4BW)eD2*d#JlG3
zV;RLiSK2DmTXha%9(^Xj;|&mxLz;Jf^^0%y{m-({#XJtSd_OWg6MMbWN@egpQ9b4U
z0eP;@7;*9b7rkn_86^a*KsEO7Qi~#PiSAII=q&F)P3)B36J)VFPK(*k$JY>?7a77T
zwRL=)E!j1A>6C_K$s&e7Q}2{<ly4a@J6r3o=P7jdyOrNh-%Pun-k0*>XfXj(OQU6W
zmR2R4-|ZuLq7kcBQ(;qf5Azvf94Cq~TX>&&!=ExNbU1v$gO8IG&z+^(zZ$kA9?IYR
z>>nNvgZ@csuC{rBh@5|njx$uBWTGwcL8lP!*nMi^4V4!>T+JUeeKMBu&rjYiJcwnA
zmmkWGc;BG5Tscb9$!=%hwmFp`dCQwGC@g7LvKo9puV|vDX7FR(PCiPpCcPO9o0QPW
z)&aApi)#}!diJ!}n_=+!9io)?8t;F<X=&|18jnI;3^uQE0Yc4me<V(Gz>UyBG;}M?
zKI5<#K@Q;I;mrvHfm22t#KA}@&w*i67RyA!Eb>&O_fEDR{diJV=84!D&$3r`*jO@`
z%?>d0<bYjjKoFRHa_W|#azN&~v)tBpfH{8ZOzuiQ-|8)3H&+d;E9VM?h{pZ~pV)yi
z<Zu@8Ozf`27Q|^HILvF$5j}f~*gb_saWG#OO@XK7w)KmUFfS@?R)DecgHsKsIv?A=
zU$lB3ge9L_JBB4mRM08=V<L}qTE5ft49F1Z1&})S9v`km!lTw&3OFKi*efRHPMEnU
zC_WiLcWL<EyKWA|!`_qd_wsH5jGDHXpp54N(^ObnULMWZHrEzN7|&9ttmEj*$W4vW
z5GB%fGB_fbUPs-WbYX516iY=CO=}pH1nyh=vv;>!F3*L@`Ig*jkVHA96}UrH-+H?u
z>eEz9k#LhV$$Go4wz4%+qMeMw$$Eh`)ET7j7V0%rY8P_H{oYW|+p(ogcAL}Nc^(Ke
zarvyTsD&}?+W3t1|GJ;rhonVY*n7SebQFxeH_`JCfhU+*Du&y4k*<B`SJR~A!Ke>Q
z6CBjaT1aK46gLo6vAcOG2r|$DWd!-Y;R7gPL-JQ>Vz!gj=e&M8desjiXUlArLehhC
z8`v3<)CsXM;^sp4JC!FJUY0#*(qVBsg7b-w3Nvv2UHR{(n+i5bF~9is$eyLbF-Zdg
zp?ACt+kkCsJD<O-E#pN9%8TF3oSeE4E-Y-MkK!iY29M4kC~Jg;X=wqOd%moAb2*JW
zcRGZ_>$261WrFZi?Pjm2Auiqi_eXE)VVC>iH$*-)nT7F-srHp|j$e*eKfD~H%OeQi
zOe<B_dSdXpxQs`?Qh}Y5Q;qe?K32IMd6RIivEH4ps_$b9kIlYU6j{dSNLXb8>KpGz
zn-^N}t(!wj!|PF`lV4X)iQ2wF9Cz~uv&|jZ%RR<OZp`m&F3zsP3rrvy*Y{Hn-M1I>
z-8>}4l#jNVmjX6xdr9c$mXG7d%+KTTn0V;@Y9u?kNX&9mW5ESR)A4hm+u=3we?Nsr
zw4d4-R>aV94Sk4wV+&}CE>8=8K>Nc?n<0I-GIw^lwx?@7Ky!Cu@G|)G%wH4c)s&Xu
zyXd)mHVzI|$?XP*nexm8jE?FWF?#e7s}qC}m(E+Y<|n}#g=R!u9RagIm20CP2SzYS
zpv(OMjF?+|7?lh=W^a9{Z1A)MP~xio!{q$e4dl1~b_Lk!<Cqq|LqkLVlCUAV{t%*A
zop|a(u-U}|d5DDy8PgL6wKeO|RIoicFxd7Y{QWj5g_<Rd886!I&IX<RnP?OFZ9pPc
z<qNHBjC%r`KaQ7D9eM(S2J^(GtFv5arm_*cqweO~b~`cBWGW#&CWhlTx;UdJ3!)yy
zn!{7&eXbE#L8FvSRM?+=X*$?-`I(vJp?+QPFI*+&_63?X%YGJ1zH8`Z<2{V$3~PHi
z7WC7QIkwRP&$EgfuG{I~x5)|~)swO;7-#y_u4zP22Ob){)-N(m&QOi?6f0kDDCg9k
zuuQsYWK{G|B(iPOtI-1eN6^R7qf?SYXJaPA@9|w(QRvbZ4RP9@djAYPDhrkFH@<9(
zhsM{Kk5bQz2O)p30`0U8ApS!|QD2juRjgOe#%{o>=Y=j-Y_K=1)C-n>9qsP4C^S7E
znda$yK1bXAQsnL=KoTE_@5KHt%aW=5GVk8S!r2%aDpjEAy&o8;yzo-ak<A~lu2`;P
z(-bJx;gUxcAXdigQZBWfCGLWK6YlNp4G)RUHSgM+j(&;x)=r3)S1qH;qYeZGVs@4y
zW4>U;(HZj)=F0wseeF(Ge=YcQ{i?uA##}Z+z}SzwSW4)S_hE(-nD|CL(@F`99Xxom
z)TDnc_jhPmYim(Q2Xtmv{|UtIt7eCr{YJR4wfYX1Q8IKnPIawr@*4LkY~=ABjL+jw
zz?+-In$B=n!q+MrK65otO45bO-mDgXvOikfWy6j}vsc_xe>6CR-BThI-~OQMwPHH=
zh{w#X?vBOFIZgTbKMtlOl*s}$=_r*K+4!pabg~Y!l|6bZ);mBW==|OsxL$VqiPqtp
zM-6MNaZ7aThEF^`rKF_PcE9PwLL~SGHCO>5U~#tCd2i=scE++p6!@vUycLQBSC3o%
z#tE#x(Nt84DlBIV^I^^`+W_wVF>-^ta-kTm@S-we=hCEq+fsNXpA^kqfXt!<zZD#8
z!PoC6UNGs_GK-BC_fni7+%LK(U@$00PZsPkE&wT^aq)Ng5~+(N&*T0n|1Xc=*ZB3<
z@qIBuy&^ZSzqg__+cH)0^r~XJUYat;bv&0Qa1pBtL#ZAc8$-aHpJ5-Xt$+V+|2T3Z
zulMH+Qy=f2=GVrA#79rN<uGACC)aC_aD3;^{O%$T9DVFo#SmB(LyJgjx)+?Qg{#QS
z4V@l>k{7wXdVZa6v0>RgYSP0;%?$OT{QL0-(%A(B_LaU5W=T_FgiGc1^}KxhbM(tY
zFOi(4Hy7m83#*wVtKYPUM$K1+vC@*{EgZ<7l^UI`1f2t#utZt$_8?P1y=7gZvQ%d=
z<NM`ubhU1o97BcU#HO6v1gQeArzPig5bVp^UZLIX*eX{qoZh6CwjKXm9dW$FW3EQB
z#rx?>d$$yY2!Ya^e|Cd1i|^m<3TJn2S~t1AdG6Ore3Ty1JfmD$kG}d*)|Q@!i;lv;
zCfKbp8g&UA2qr!9?t&2v3TXmdxu3CpD_&R>-I)*6hrJ{0oj%x|_~3w9V;vMu)48ru
zVNzjO;oOAvwK~?D@J2pE5E15)wq27d|Es{ZkmyJX_f8+t0l#DMHQS|Sl?~H5!aZV<
zYH1E}uz5wQK)Ms3_3myE+u0G{4o&jqQaGNz<xEAMU@vFq%)J2f_yrQw*v(AnHkO&9
zyEQIWq11dp6;kp{y>}?Ux$+n0TFc!X1Mm1N;bB=NY)pEW%OT}dEK6yajqIQFhQl#@
z%hL-bmT{*~jf3@`%2L*q3dzE2CTAWuyInCCKT|ULclwsElY1|0B%u}c!fl+!cSj88
z7-)3z4`akW8PDfmn!0~po@+9z(a^cf6+&&Twxnt<*sZD#-GKkkSXM{i7aEG(>HLem
z<!6K4d@a#uVecEuRSZ)8pX{_M5~3vsLp;lIgYVaa7;Az1d=PzCn+l{5U0(pmtKi^l
zvyJ}~`)xs9x@t(UXLEgzrxJv(%Hn6X!2z|Bk1G{s!fddGH3a0<C+_uh6idQ({yIxG
z!wjJ+l1@8JSAPF~i56rLfOT0340G{$5!>CsA(xXa9nBvo`Z;py)i~%7=!6XXR8>=B
z$vTXL2g49epI&|w)OCBAbCqOrK=|gFN`_Aa*WX0gN@MNFiZ8q$ei1N`gwWYXOtb&)
z4zAE~cIIF)Y)$<D3b-_{nC~oZgVP4-Dt}z^WK1wjntA!K>tUa$M+$LYE@ADe>anCF
z#obuJJ~o!<CW;@58f(F7Y_vdZgMDCeF>@CS>r@adcbY}dsfNFR!(eT<+lb1+v`n3m
z`2T@3|2tTs?)g(1Mzw&kKk)k-1sMV#7$yaXTMCrF{OBfsVPY4XSm7LRtqK@=EI~OY
zCcwpa61nC@jd;s}sk=C<%*xm7&>=3?Lj|Uy5ZYw(k&M0vRyba1;6r8q#MO7xLgB7t
zTz0(GIr8RWRm3wVZ_in5%gI61kwA#st#V6$1t`(nl$f*xLw~l!QBT;^?Y(O56&58E
z_HjGMm+FkPb{YTCki1=Yd+VA>DFMX}oI0H6`BAXk^5IIIqBNb$^Rs-&&ztRx-q6n*
zAC#&fmJ<ywrtkawuYV^l2spMg8-#pnu$oBj8Hl|cP7ASW!;0-<)WUd4#$-U{>wDg^
zySuB1DLfPDlffC)nqmE0mJ$_b+*fV;)d0ZAEKDVCk@z+C+dT&c?`HY5cFH#2DaO0L
zItOl@9S{|S;ed67Q_FQQ8Lo4=$5zBb(|n3abcOD56BpYTQdc&p1xbYpi)~%vFJnsd
zj${D~BSXG3&Z>a812J9_ZDu?CWzj_9m%Oq9^yN<!MAwVrhfQWvsRcJC9D?U9#>vxr
zN6~`PEg7UNg32k~zw*lfbh4AypqsCM?8j{$N#zEF{GQYIOtBPmWc*IGD%^SNUlqy5
z2PT`&`OfI^Uqw?k+j{{aIKHZa99wbww*X>#fyGyhWeY!$0GG>F^ehqDl1{DkxYB7I
zw*QZ!13*N|CMbfyV)w>&hP?r>6Osa$xFIb|rr*Ls+__sw1tH3;$Aa!hdc;a*nVFeq
zi2Mm{n(IcJ-*l#)Dmh3IkDs2wUMM-{>rO>GOI=c8Tozo!;Y_?0gUqW2pGrBsMy7W=
zUSa_iR;8@08PBf*{`V`kqDeanLW-auzO1^U4;YxGq?qn!Oaq-%fbi7J*~BD^Bz$%-
ze9E7s#${U`!-68T_Z6&@<DLLj+%j7MyivLMLF<5tCCdbH5`+Dfqh*Xhs7x)t)x%h@
zIheA<m0z7TmstI<B%^pUf?@iBWS@to8k8~LOS(`C?8@uzWg?J0Gjc=tz^~T~QSmIW
zQqwBZ>V|5Y+hw7$z)|f(qp|GDAIGak=hnjhK{Wn#DfOg^u8ol<e_=knvl<xc|0*Qh
z;)$zKJS!W_W;l==@q;tSjkamaTb49fF`;v>y-=ZG{wFz#UAt^Ua$f+01xbo=hG8EV
zbBgADZ$BlA+(q?=yEgf#YuKKQ>krgK1kLcbHKxAveF*2nQE7@Xj!A6&=J2BJZ2H*p
zfrnhDo6l2O2ND$Yq{6DsbHnX@MAvGj-f;zy$rj@B9otAD4@<H{$+4HR;1?#zd#PqR
z9u1@4x73!m&Q*ClxL{2q9{T`=(t7i_3ZwgsZ;1VV@JT~SsSL;G{5e1WM{GHQFg)Kh
zL`of~&#tdM#<nxW-a;iqDV<T4QsZ~Y_wspbM4%Vd5X(dg+DxS9Y^doMr_!|1FBx0p
zri~f3&2H<K(`7~E$!W+SjVdL{tE%#mE`eftrOccYAKMDoJLev2|G>4}>mfJ9yJq@%
z!|j~Ew;(NS^yYLpyW+fbI8DZBwDn=#Q@;NC6=me<F|lyeO)I;mmqYwGS@L>o`uXPy
ztrzzV_ovqc(2u{gI0|*LH81YA+xpo{=M$R%W&JDTjFPME(7^fpBFov2@?w}=ccVLe
zeC<~Cy^iclmNctfKSHa1lv9p}T0aw9KI6k1LB=|{+4p$Mk{n|lk3IyPalLn~Dq;N+
zMX*e==oZTz!ugIpvs&zVJk`r#%y3~3EZW<TP@lp(1$up$ey-ub@E5D$$z7QxZ`3^H
zY|ox5CF2>M9U<|DXYqj+%~7f3+y8mp97_<Io0~UOTl1w`uq3tFc)7!Pk{5#AV?bC@
zJh3K~6$si~1Zoiz4r6omcK~<G22@Xm&-EsL=gXM^&}XO!E+Nej#HDpf)|-{XLzb)i
z+Z5UXKGjSgz5{=Vm&=bx|1FjDVwI)zzD9r8(B}Vravf7e!QX1NQ13M7vc{m6JNlJ|
z*5Y;4<QWKv9B_JZMoUA}|2dzJj}}Q#YV)<??tERDytt2aNqM@rPILu(x(iIX5BPUj
zc#vI)xvbw_EqStu<wuz+DJl6Q+3&w=w#>7Ae|{_H4T5C6TMl$?JX>zmN%nfUg3wK%
z&CBgBaJYG;JT-}G2^G~EPCThUK_<aQ@rPe%<yW0!Il0=f!RZU5^~UsA%dVUc$NO^#
zTEqVb&<5K4@8m^0T{Oq?B*&+-J3~5Kf4psKPG%*Dt1EP6n@dJ#{YT;lb@*_Vcdg6T
zDngJ(eCaTL#0or4&3!8Wn-(u8DEXQ=BB;4=nCaQ!-uzeywyE1#*vK;#=LKUHB5{8F
zRYbgCezw#Zr4x1??JY)xk*MUNG$c-}cT7!GWOp0p44*CN87PN;sS7HPf&$I7u$(dj
zuTL-66*n}{?@wpvtJk&};+$SfPMWtVAWtiN(5y0OC32U{bL@fte)nsP`|@%}5|2^1
zt=8wpim*k%zES&#MPVJG;$)9Y!0Pm?LLpI%{TZZGGPE6A$wx-ymo~lRRA^rpVM{$f
z3rp;SeyfIIH|^cRdB*6?r6;mo;r<M5Y#Ork`TqHCSK-`(-ubri(EdV$+1}zd`dqnj
z8B7GZ=yGkZyW1@JYMMwRZDD_YY`To2;A4%}snji>xEcESIjh3re3FnQ@ur4TnV^cw
zvmQJ7#}pk%teE<}WJ8<tr2qvJb(-cqw}uaEPN^{S+cpl>SgX5Oq4Soq822mRaH~08
z3Hr-UK9%Tee$nJ5)=jes0nBRJmO9Ut`kS4jp^GDUy8~E-S?~5*Q?5u3O^UGGWXU6I
zqvIA1=|Z#4@{c66tX3r%=0yt(YV4>sGCt8J+9sj9;>c;c@BtFupSZD5Zh6ljj;}*h
zJ~XAnvO-Fa-uK0+-~9`V%XGs{;iDM!4=)!#&({UlKHQaR@(6xdZ$gNTsD0oVPQ}IN
z{10B?r~9Ryb3{-Ah?%3kI!YAD{hxLl?@yOygyn*?V#`zd#6)9_#lJ}Smt$b4pQ;2I
zk9xsC?A*P)^NoXqkgy=f&}Ic>=2kvO?u(aTl-_&m8=rUp;*_qlmh%^YgOSznPUQBW
zN~)h@I32m&{wdN+ieiA=!GGsP{cp_VA7HCq5u~aISgmz`p6i|jK;&4n$2p0;9bj!u
z;)ilML^Q`e&id(UUWc~G0%vc5f=^JNg=f(rg)sYQwK&a^SUa|h@q4j8ZK=a-ha_86
zu}f?v!A$e9XcRU*c9HdGF4Rr1cNMb8w(51l!!Zwg=gYs0FAqo?twM{YUM~@wz%$`)
zR|2^VlXlhxh$f`i)M?>u-v#=YlU_3)lwd-%ii!#k_aT9}{74tMU(lw+T#Op{ov#qS
zKg)ivWJhYfp2oTdP`NH5y~S7BPGM<7V_+z_HedbtpJD#LZcF72gvv^JHq`KD>V>DY
zMq=$j&2ZxVWvb|u988kCo#AfQ;>`L3jLk@_ctfAz6IDw$bYFk<3Mf)l{6Lgrh-H^9
zq^QN3lJKE+*l;{bE*$B(3c8M}@+RZP?!FQVUDWs~yuhwk^X{h4JAsV-DZ|j<)e3%w
z{#UtVS4T!5D<R!$XS`-U+=H9=rK$mhJD)Wn>^ujXZg{*SppQX#>2&k-thhPp)mo+j
z$PCOE3$R{$8XvA5!<>#m!mG%@U^QJ6k|WnJ`dh>%CPbHk-&ru+p4>Ja$9U4wQkhVP
zt14JN`O4vC<lRo3N^J@)#+7?Z?P5Qmf)4fTeo-1<)}(q7@?aJ&{oo3cn#zg|`8~Rt
zMvStQPs-)4<WR`iY#yRs@D6`C^@pivEnd?x6|exEVYeZj=tTDOPM=>%j|>5r5;~&D
z@2Y(FtY;^d7sQ^3qR@ReSlPKkHdSMTlxwAwl{uh@m>&5UAOH}WR>*HNK97B367>iy
zF1R0Rf;6=tka`JMF01jtC68^=Z}?>6l~oE%`JgN}cnPwOP6)(A4!b1-jh#TS9Cy@w
zuIMqMkRhD*aJ@|)&U~U5X<lv&b(k^)RUQTSyTJN~?+t2=@HQ#FNRc$hihYU9$%!9I
z<%<RB`Z*M0Y;fdnEWd26q94DD3>*cKowXOq!Hs`en7(N8#3^xRmF(c%V?A#XjTF~?
zSkB}9NHzZpLGyhfvo2kp1e6e9PkS|D-m2lv<6Jg;DplKW_kUE^DM3$qUul>0b#+x!
zZ6C~5p`>I#dtGz(HnIXCin7wJn>}}TswnYSqwk{+bT=o_Hq0A1)7M(W;R$^YW?pwW
zeNmu%0Th>pSk2Ds9w@yZrE-rw0p5*HYTckpKM(;(Gh$OAFb_LN1f7EDV_>qUycnBX
znI$sO=f(6{@k27>=$$#=PSO0Kps1J&5*J6a2sD}hYP{cM-f9_oOQPa2kDle9?f@oW
z2UtYL)?OrW+2A1}ApESSlnAyo6?=<Q-Bwv?azoy`7G%B>j9bX4QTXZ@-pl?^ahx`3
z-$`$jQ@xEbmkz<@che-v$Pi2@5bZ+SNqH1Sg_Pe|kI-ac^X;Y3{48T0BANR%a2r>V
zzvt-1FU0M^W4<+W)tSvkF~4w|EgaVMuX**qzHpR4(fex|+i=TH4*EirUVOP!?4Ul+
zla;3T`dRc+t)@LsR?FA9UhvQZ?b7y>jyGuO`R7%@9^dK4Nu0j=RyreYK2mT*Z}t9e
z{djm(cO+PO%8}>!KQg4>bRuZP1h1MB(_Dh2yrGA&I}RHSct2PcmIbs}m}SP`;`{pt
zzI*Q{4wg{hn&leCi93dNgcs?{^D55RSBt3+b?y->q|N`A583al_><0$1kJomPFzv(
zAza9*r$=Kyfd}%tM`LiGbu&c2R$g9SPW}f_<Bg%RHGjuV5pXZX3*NbjRT7Rl<^-8=
z_JCsG_?xdpf!sc5*DTXF=rRMu&^68;h!oB{uo7ZpD#^ER5sdroFAxpJPZV+44&!%7
z*iJ7yO_7T!Z-S*uL43^wP~vPjFQ1;CPF9#o?@boO!m1wxu{?luj)jGhF>EF6sO|9~
z8^{#+m{Ug?SN=~Jj1gQ<@Ta^yI`8|-Y49&vv<xCBbRkACcWz2bKXyO$S)e#7`dsv)
z4j9wz?tYx@T!9b>+D$H^Q@}bUn3C}D@D%Dd)#6BkXL1C*v$UPh#ghIM1Xe@(KHUXb
zB`p;8YLDidykzdxc6<nbjn``@Wy&1dQPGImt3}HH@ryoOB2YMB2`Wp_V;nL8(Apf!
z)Aa7M#^;q9;`KKW)Q}mX^$7q`S#PQnN?(DP%4q~xl2L?{{>P8iBz3seZBez}oEu&B
zBpF<9`e!K0d$~eJ2$;0JZ-?pv_YI-t!mfL9cPnAz0bHzEAiKjF6E8v-L6D#w9$v7$
z{I!;Q)-buTw|>g2ePrJ<j_Q>uT6I`WocuuR$8UOaiBzjAGCF#yc#D@~-1{cIeQ=B=
zSXJ<>n~!Ic^>Av;p5?>g7<vCX0C4c(4muj^y<RS0f_o+`tX+=nG7oy0WeG0%waj@<
z5Ri>$g2V<QE#4Js@yNQ_0DImVUwBSpQ`R0^-T!E|;soIa#v**8*}0pO)I5J1>7NPD
z`(GppY3r)0u{E-o+C@{i^~!l52N`;eH8)0_aYQDrV4=@fov!z(mFUzQ&<y?o>0NUW
z-GC>=gAz<-T2i<xG=D(gWRG@db76=OCXC(?IJR#<)xqYVSN07SQpKOp7u2?a^CvgI
z0m8aDOAg5gG3fPoK4a65Kx!&$TqkS~^5qfAmL%<<lpZQqLGu>>Ce&#@w}bFzDWE!S
z>(cN2p%Gdb4=Bs%a{g#=1fGJk_CpLQoH@i)lZpQQD+8f+PE1I|QnN>uN~LisHCeF=
zmMJsjB-m&!eRFGTAl~aD)|4_BR(5Bqj+fq?;d#V2zVGPNY8^z8%`w`UrNnL_sC@-0
zPgaa|9SDd`I@yZ9-%m|zrFP0f3<<nD-|m4NlrgZh=SJQ;35maIvmB#JX7}+QrNl=3
zgM_S5f%R(LpIJ75pPVyis@U!V5fj-dVDI)>8BDuz(6OPZ{RZQ6k&1f;-d`4fe0+U!
zt0Z#L`r?^?IT4<!B82D6?Iiq(zkT)4{~+xDQsXaNAlwaJE5C(ELapBV>iik$yEv{?
z+8t>)2J}^THx8cG@`cvZ42u6fa)~<8DOZ?C&PqZK$5X;W=(d{C)<E@H@s&@>+4?=r
zctk>Fa2^Nb6{ikpQEdd#Ki1TxQY{d+!sWq$qQ_Npf$j-tnFAx~Ccrclv@vuZ*9>!x
z=W67h7qjWrf6uBGLRiv<LO~h;-m$4hFu)}Bp{8oy63xQJXQ%1^8~FfWoZnZ8_Sv@G
zv>^utIB|2EE?E%}8I15ZVUqtHndz@f@Zbp0luC(7--f-$qy5&&P*IbK5s}T#0E0$w
znf9U)fw1<)Q?h195ujDZTeF^wJ`bWhy14ilzBP(Bu3W~^qN&+q?10nexGL^{<-p6L
znQNgu`cT+t|NDM(VepM7%$DIIB$(*H@zDEnQ|oLph09K=$~RSk)r2pP3B-4QsfxTD
zxF$wKPTL>P3IFI9#qFeaI9nBBVrsf+Ym?u3TAmFeGsj7V&Q{)@JP~jEm?*axvLl-V
zlNp}QMK6%P?DD3kzU8PPuTmLYu9K96X4m!4PllXFji*NT@>FQ9ShsIZLK`cur1vfJ
zqGkhX)arRT|MkE1;)M|=OcEhI1?UF9&tUD$*HH`cpSYc!o>uQnfD5YHWRn|k(X$vL
z-BtOYF#p%0>lptDN|?J$9f8g^IZ5{aarV|>QGV<Gup$ToN)OT{(j_HQ3L+vYNW;)w
z(hNh0fFL6vBHi8H-Q6JF-QE3L?6dcI_ul9Go^!5qUHmaP3=YpcYpwgfKc!>-O~xdA
zMOyR=Sl({G1Dx|qne8paP1jAQ;Mj(%OG__5Q3>dZiAButw>CGARqH#Z<7P>z;FNy|
zVLYhynIqnH8ekL8)~K-g1U%a!C{}|a*2gxg_he9wRGrcg%Rvaw0@TfgJ%-N||MVU}
ziC<rWhX#DVAuMWgZ{K?1qwh{vg@HZNVVi(o#WO7}jg+oopRHA8>_>C=$Z*4?HIQyJ
zS5Z?mZoGRJY@X9K_jG$WPb=<Ma4-XKaW*yZKj0(r;UE#P(E{TtQ?r~d!s5D-WBg@n
z9e6&pz{UHhRcJR4_KVD}v;5{;-Aj$wm9|CURM21lGW!V62X+=i&BIRjD3NEqRFOI<
z%fV=!OQ#|m<Uin&>pD3(VRz2!coi}U=`e=x-c*=ecH~GgRQ@(Qucu<{7iEI)*+oKn
z+2*7s&xc#q|Dv)0fA8yk+PyZ4EHo1GcZ%6-vNtzEz((AppxV)4f1B&{$G@)tB)l(a
zt7QBRFEz<`c?t+pQ&LhS#1&C8I2jne1BvQ}-AA-eM59F55ZUs-ZiL`}|NRmvy!m^G
zy<g{?B5@WHpBc6e#mmq2<GO>0<5qt|pL!W(?X-KylQ7jcmr=?ww0w^vO`euFx3wrZ
zy)750wHeQ*YxPqBW=R~6vJFget_eY7SAto#0pRISN+eKrA&5ASb;3*H2~~o{zx;4q
zsw>XcXiP2JL*KD;kHRJjiFW($5Lccq+snW8b`qxCobms2NhB!0_^?`Af45<JbiFL}
z59z|cQKkOkwcr-+R~5}8#UY}q`L3MzQPY{oXU}cobVy$<LlA!QAx}~a<?&2<NK0E=
zR{T6P?n&7SWW}_CD^E;K2-Tz3V7+aXM4sV3W|nb{z@@ejZT7Fc1dFW5v!DO=Dg0k-
zh5^7{@2#<R5Yjam%&nAb@93Bo#1@!5n497qaE9J<X-gjByjp{0a@MY#r$Bg+2Z@mn
z4GK#5`t5RS%RB?0SBhC%|BEA0Bxf~FMHmCE*;C$AGz<Pv`TB|Sr~kYI{FhSdFRs(S
zQ$+4w)8c=xd5C?hAcWNd_Y=)jsfBvv3j=iEau?hAn?W>JZ2BBTN*$b>gii16?<f4m
zzg#c`d=%J=Z?3h!Wj?ibv3EfA`Ph^%G<~ybrap8r<3XDHt67Y;4az72OUM6pjsM@?
zBYh~c28gP<#^v|2wY5zNSKCfXOf=r&*GmblXh#_V={6wm=FUiK;}1iX91RUkNwJp~
zG7IwqqVF<~vRwr=)&uALJH)qiD6U<9xM@<bHObuifVWmJ{W=~bJmEti?*NOqAF$pN
zVm<;#mkcokWZ?`Q(8vFXoIcCr{w;fN_CAXmSK6IXV|3lEkk1ox0sW7RfEol;Dq_H#
zG|2Lj7g$BznH#k$Xkhi9x?Nv%>|Eb@hk=2`!o)DiNFFc`*%(U8Gq;*=^tJ<e93&&9
zwF$pmG}rq)|Fic%k9s{@n>xELe8Yabtukiu+4X<<A^zjX&^^B#XtN~$9P})CUJeNX
zRh25w$IMR*8D^|D9`-IS0u1wZpFgt?XR9ipJ;$2({2D+r&p*=Q=6L(CW~8n8S(Quk
zC81fJ4j#4nwk~a&yt=jui%Tv+4NjN;QWYx5C+Nd!xMJD{L(!jv8O(7#mlHvof*G+f
zD(8}d>?ReoY<~L<Cq->(F8E2H9bmGMxV;1GFBz1~D#cZx%f#^DHVmw$F$}D?sC&U%
zR!I9!dm2QpBAJZ=tGi)_slm%k#VivkAmvbfhP3(1O>=sX5IaubzrD|S2|N;Q8m$%H
zECv5#Zv1cex!0v>Fsd0^Hk)SUvl<ne?6)ImRn!U}C)S73fVM0^L_|cNcLQ*&-@JKa
zcd#V!L0Xy?OlV=G<dzUw8ghdphh-P8k0~P;^i}hYyLmFp)!h>Z4VsN;Q8Oc3b+4O@
z$os{|A9s~*r`k03e3%0oB|H(RGRQ;Y1rasXQO8_}78nc;2kIwV8ymD>PGFW}IPho{
zs`d{rfI8k8CrvzMy;KPe4FM2}&_*q5EoA&BJ!p&k;>o^~M1eR3+4~SC9|ieAl#7F|
zybmAB$aah*s&nV8YvohqsNM^|xf2bXY4Fkfw^!;PcgbHY$~i;YcvyDrMg#Fz)0cKV
zJw3Eexk~G3Rh9T9jcP9FfZcYNee|oUs>9PxTbojcvk>eGYE=$70z`--uj#$f#}XA{
z#RDEuW(-Njh?gIO^}g{8@JzCZ#{<&(LA0w&wW_vjjPNz+5zSb@B*F)j^{(40D0h1d
z6be1SCNK5DgteZ)MGRO|FZ=uD#*4hXymTi-7cEP`>;-rrE=$Em0rjwaUKW6l{rZ{%
zflO0H+rnkshWY>aN0&Xl|57;Qd2%bZlIVMXmRGML-_>&cs<hh{xyw5Qu4q5ALMzay
z3=9kg4wkzzB!ZvglaiX3(SgvGpSoM1dYlvpd(p9c<XkDA;cpSC*xkQ-s@j5o)xUi7
zu#$Sh5VYoV7dYvPS)oej3oVF}d?C4{clO(Rw_7o&+5{~lZCF2N;2>S1KkDd-{M*-W
zUDL-1f_yHHRE2Qhd1Fi`4}}OYzM|Y;k1y^wqkIN_7NwTYHl_xyUT*T!>vq7vD6P-R
z$ZBWix^Fy&-?8+iwY{7iC5XA};@FzCiaT|&s7K=>@(2~mi^Rla1fhrjLss2?{Q(b%
zRD5dcyA90ozu6i4mUK&oF{c>RvEBI_*%-6x>Gl1&qfvr+F8Y%v&)wbK*9Rh7{wyyq
z+kx>BSVlP|RcXPa*yB|Bxh20|J&%=vYPR9FL$#2$sLE_tWj?8>ycG{5PubYmc%?X;
zqs}`&Kjx2%>!9*`nE(y+<JjtOMtYEj{TsiKaVbv$ks6`;ngpcTOynj2kKq9s50h_d
z0b>{zp!>EH?jtO$(X-mH_6CNUh71gC3@j`;p*UR39RmYrA6r&iBl%vvG8q6`U$rr%
zFM=!LVqy|~U0}|Z20lo2)tuHMqeZ~K{*E<_K2ZY?6eE{e<pc7(4<I11vB7QIZ67F;
zGlvVnOo7FmrCwy~&Pw(CGYEds4V<<wn8-!RO{20Mj&<8}3GnlKrmU>|3MhQ`&tKtD
z96DcLUD1Pm287Ek&!W1Ci7KdQt|}@V-M9bxZz)IryKlLu?^CVnxzfT545PqNeY`&8
zBXqN-2ci(`{#+3$BK*fJMKgg>GxEL?8<Rv5PY2Vw-BP$SL7o}ac&IVnNICLds=7Zf
zG%O@nqv97RvSrF<g`z+zUGX=SA05GG-h|L%Y?9keE#-a!WeuuBp~G%YE)cB*a`=LD
zKLxlf1&Mzb%P?pDTC-aV&oJtXRjZW3zSRfo1keJ-QL)HBeJqT<gQ)pe?jcg^Zk!W-
zNP<jCA9ClhXEBp?Yl-`jj=CZ3jgw-C+B5)<X^N?Cp<=Gd0(LMb2pI`a-cNjRa&a@P
zj3Ko!{6@1arE|P!6)QyDD&`G{kxO{Q330szv|3<qhhWKst;Upn2a#_p;AxYfUL0_Y
zlY`w>!P=T*+F_D8Vl}61=6CMNG0NTicKc`FEkMy*c%%@E_u|~SQAe^>nKs<CBtf#I
z;Pq*pBOapZxb@m-cMJpav^Pa)JHjY76(~w8)Rtr6J1J?g&hq?p%v&`(m7677cO)0H
z+z8f|CbeWVP(=)y<<&f28KQD6hOA&2@x)Goz}3M80B<PpIjY?2UA$AgGhf681u<;$
z5XOxztIa*!e5DNdlNdIi*>8yE^D80YtB-l7()~RjfFz@2607QudTF>YT5Ps_*skCr
zOx|SWl4F4Y6PT69XnaW;3?B!1R_lNt3eK|HTH9TaK9o09JxKia-am!=g2(Zy*lWbA
zB38n><-3=o(-OaxRrHFqit?T$o8Y<7)7JP|Mn;))QsBP+x7YpEw`x51Pn51x`)Lbp
zl^g~$w*Ze%KJ4^IzmH8Uu;sOxdu>)Ygz8Rxu>F3CV4%2(@dMSk(om@lbR?J1ypVlD
zqrFScX$H_!711=~5-V(1BR>y@)oqtfdhyOs2HRcVN2K(4momn52?8c6mr<{0<f&bW
z+M8vL*`hNQD=;M>la7A*ks`%=dV1P>?C2pCc3xr#)9s%H#dz_+9TBuEEj*l}4|;ud
zfQy<44%$I5-xPDP-pt8e91Igw2uG=%%B?6!zs$_aO-xMGWw;qhV`4SUlU2|ONj)LW
z!^(2G5R41tjKOn#g*b}vzw!Jy+;$x&04vmnsrh=<DGk`<ZOq-|k44sGsB=Qm*g=e#
znS{K+&Dmn$5RfE(0EW2v?MW+C?(Ca2d`u5rdbOO_#V`_tl<{$KnZ;%ur>xWP3$i*l
zZCL&o<&K=3HVOFGxX#*-YAUUAp4x(ptEH8dcX`zZnH#k&Zgce>gJvZ#q_W{UcXtM%
zINn`?VEq=^ZE4(FJ~<Q9zJZNs^)4&f${ZWU*hx_QLY<a(Mec|v#JxbS*yMv1g|?;W
zHgibr4TkCMWdeJvsBqR*Z_4ViM4rG)0WBX)B4(jY>gFlO)aYo9S9WVZRjLc6wQ3+M
z6+A#aIv(KTQ?)k;6`SIP++?*dFml>P3SFDRa#*!$HGV$|ik&=X!H<X_Is!bi&g?7L
z^6suU5U=5p&pP6<y+y;qqM@Usn{N;Z201y>s82|_A}%u@Z@u}CyDGi{d++FR{5n=|
z@U-g9^5pMgqpWF7TkF$gRW?`FT8xMpwk3nuc(&N;p&jR5rB<_*S`l)g8#}vEL$!jr
z>7rrg2|h_=qzA6eNd5AenVFO73BB^C#5obX<mhR8a&(N0e5zUHkt9>_<mjEpkAIz~
zX)a05vUFJ$yK#;Boe6z#-yPSu{O;!QKkm7&^>F3-#LrZ}4<f8d&Bj!GI!MyaFD`z0
zc20$py<D~5#(}zC&eBfdRq;wIXG(rQaT(^aPg24|0-Vo-v#|pGyD|y?6&8h%lv5+w
zGdjCZpPt=eKtfl0qQN#BU&IEtbi%#8n4jQ}daO{n?o6R_TXVy`pmlB!fB-_mi7_CE
zTJ=P#XW<QGX~y-`Jq1-4LMXJ~j92JfVl+R`zgtbScyRCoONXu2>Fe{{l}&TtcUbrs
za#}cQ0EsRHE*YLSwui<b$MhilR;OSaxDj)4Fd|rit)@5%$~l+K()*3+sxne{7nkaz
zKUaWHVPde!$(oZ-b|0dA=mdgXMYhN$Mn}c{^eWiQx27WnVTU7faDd{Zu%Bz)UJ%~J
zzABxLs9Rw``Chmj8UM0t>5EMR;V9H7Gtu>{HZ6Y3FJzsazfB$b%ww<#<bBTq2=Uw4
z5F43&7h(?Ga)DWeR1NCY_Pf*|zH8yDh7MgtNU7y`p`x$Ysc8rE6Qu>ySX<!QoFQOz
zR~3+Vvn7IQTIV4Q#NDZ(Wsi$i;JQv8e9oy3CnO+{*qJP|N&^j8=XrgjwULn#)s5S?
zor+cR9NCN47Na7rs~b&N!qg~L0?MktyB1e$Ta}>D1a1mirOT_?+v&WXyU;nEriWA$
zJwc<5U`V~}vI7ur4ZFSbRV`zKV-LWmg*naD-#>@RX=qUQk%TSU4wYGH?Pq?ITw9F`
zTSE*p-9^<%2Cf)IDj#P=uP#`W_25I#1*QECVM~1iP=SNHTtDFvMp1xc++~;&iv}1q
za9g=-v#1^vVH?q9ZcW7A?#<c_Nz1oqQ^RBqAf%*HcM;isp_g}djeRV~%N{f_F`7%&
zMr=D<CegeGS42d(xQtli!7lpxzdzu{cDk0ZhZ%6#8yKXN%Y6HOxSgIN_U@gZO%RvU
z9(KXKc{~>KztwxjkB~t$*V+PtEw>~~QBhI1p@X+%<&AC^<s9DA5Bsi<tz;ym#y-(`
zltiWRdOL2IaP-IfK1GzTU=NrrJu{`N6?Z~##9<+sK}atz;fUS*kl)ef<?iglSR5SN
z>nVgrW&`fI6Ra~%M@hgVv9>n$sNo8=`IHCul#y<&q2f?+kZ<zPaapw}wSP%MwB^)+
zZkwNWcGSR#uwTo47jL%74F_S+VnwFZJw2^BmGrRVvfdL_A$!UAiXPr8VUZ(4ye|Eb
zELuO5&Am5^B}+=ZD#hynL-tpmBfqo01DfltxX|~KvYg(^<DIudmeEoTB2qhRORp7m
zISk&J@~~X3iGL92--Dkip<+Hj`mYu6zy6D{J@VN&5eY_y>TYXmuWE?(tF(fh4^H_?
z13AW8zux_(L@skR<f(0sY#G*YlyGK38mabaTv%u$hihy;!$<+M22m{GtDi3HF7w_=
z>qUJ+c(L(WB?64~*0!rc$*_2(eP-6J@gd63a|o}RPepQ({w;BmVK*Wme>oeUzwq-h
z2$f9)XP_wb<qDDt#3-uGS`fsUti}{O&cKw>KMd~!MdW%XQ(kfxYZPM}yV-~ZXvDV}
zBP{D&OIO}FUY;O>Am6Z(V!)|?gjJxq4(NbE){AX{G_?7-yXD25+nD+75iM(-V-HS&
z=LQ>cE@AtAckH#5^PC4CW5o>o#Jo%0t@dMiY`Bw((>8ZBQ*L-42O>aIbGq1J%r^I&
zuL6icyo?*QR`}em$|Y`{WGrTD{Q*}>D8jAj@n|r&2RGe;Km|Y>Sym>?t@R94Z&p|1
z+()W^QSdwbSm}#nQ>rRX0JGM10p?_bpwdDRI-f}ivZ}Py#sunZw{xp@La7yH^b+<#
z+V3;u8!Jf<Zg`<#5K|wUZIM08=h}<jVbB?jV~+NKJJLAZb``V8uxD_Evo8wNmXe{1
z?%{%calkx5s+SCs<PJiOpD*aL6rts_Uv8H@#vp#_2Bg-5UDw?aWu4|Ab=VBwgS(Fb
zz7k?y9B``v;QYw)%JlS~^78V{6ee^FC^XE5U{ahU$yW0zTHRCI=hj#@{BzKf?Sa03
zIE_0(S#Ajrer9z4B_cu9#r14&5+b;N$k}~fT>R;ruYLPyYh3iV37z+pfKLFqAY)gC
zL%EPpn1JKZ(2$rr=GQHUZPH{^3#f{mii+_71d&xis^z|=T2)>?MvVm@Fw`rZVnyVF
zbjqc2Rc0aB!L##ovya#~cR7*$QjhkK7@+!!QTwy+pQ7O}8w_2<{Xn!|1jKyEC5PS{
zl0p->?6z2tW*|!zUwuS4YgMAm9DQ=g8C%qq8i0*pbPq{1cfHTcYh*pE(@sc2k}CU(
zPRGcI?qYUS*4I002eN&5S{F~L6=~BUxBo2|zu>I*qNbgD^he6NGRcl(Zp{wEJ{iYo
zVs2|d{%Z7}krmO~CqW%_vazX-gv7fPfQ!GMNLuOsj=iFyG(}YzWe|Q_l&4`~&y!Xx
z^q^{J8*A#>F4L#F=;kY5-}TqFu{EAh*n;b;{7IXE)J}xp|D0@I{17SIYGGC1JUdty
zHP}4cLqTUoGN`0|@>R|p+CV7p_ew3vB?D|bZl`#$Mg=^0?zi&F2Kw!syMEWH*|n9L
zALEM0;zH8*`e7Frgs4z%XiCL5JTlUhoW;AI(FOz^+$I0*-vH@UBDfddL%BMGONDAm
z+2JHgS;Qwh(?-;}O3P!S+rY59`N1~jdWvexp%B-fIh@kO#IJykpC<cDCpWmuapRAw
zx>&;_=Fdta_=^jbj=M7!;Fa4o2c1kJ+I!#eFCIR8n7L+HWQ0}UN$z^YLGb5<Swk3<
zYDW*Zc6L~W1<pkWr-ZKmREBHCh1Ix3O#%mAEAkXFt<N5BoO&o`z~p9hq2~eELaLwV
zDwzP-K>o7}P&0SZpB!08Yg=rp8Lw$5UZ-31HCpjNd^cN$GrJo+QB#yHmzSdmvA1Sw
z#A(gokQDF)<2<m(NCupMM<1o4HTagcw=ER!Wgo<K2_m+JkFBqq{Pv75awHsYu6I@C
zUC8k8ScKtD_tD_#mP4sI-KXHxMbGnlsKbv)stA~G68EjPNa5WCO+)a-nRe5+<AXza
z+WgZ)b;}Ad@&gS;B(oFap6&hCnQ2(T_rmmadR^HAa}XKCks-UxXTR~x^>`SGAy>(I
z<m4*i3e4QhB(A&-K&2@kKUQH&SWvFxS|sSMmWK1UsRt9X(?@hRN)Fx=?Z*#1A~Qc+
ztZ%1rVO!Tce50K+U>tG(=7t-7^2zylcx5}mZKli77^qt^O(%-zzAI%<G1dt?Y!i#o
zh#%q1HbtwiNaPP}#>QwcwD-M9Wt~-#QXD?H-a8&h)Tq3CH$Og}@L1D5Ln{kc1@2TC
z<(q}avzt)E|3p6TW;$IwuJ=H^8BP%;=BUA`eC4E~=gFM-_lo$hx~;!=Wbw;*+BvvZ
z*~5BzIrtcvs=FP;uL=6B8$C<je4jq>u`od1>bS@Y%aBgXuzO|mBLwqAyhH*jk%o1n
z?|y&D93KhjmLaiU6<e5bKY{DoZYr%^W6%W&nbw~z$@*x1c{&><J^1GhC>HQL&Mq!Y
zV*?c@B2JtW4rgjYMLsIVdiyiyuWYh^Kzll_#|-Dw&l@+t%PeM9QGB;OZd*{neOz8%
z<K;!R($lGTqphQZ6X;pPcYyjNZ^M|i73vY<PcEp2B7G7Y8+#DmCmzNc^WA&Pd68ph
zOvm+#`K)dw(oEk0!smW8;M06)b$#);*b2-eR)a9;?+e3GR<O*?S}o|FtDQb?9sT+O
zvZBVRJ}M%*l3C)=z39Zc*V=kG9!mS{88$}txbx|bg`##$G&7`Pj2&v%fMmu4;mCv5
zsC|o?6n1gVFQD51(7(*L<J-^C2gbdzy*+|rMWd#)`71WeZ_A#)Q?|F^7vMc^rQRAG
z#I<oe#YXU9#$LY^q@nQ~<FDaf?0a4tdtPZMdp@$YH{Z<Zmvt`L&O00K_tVL;XwJFy
z2T`FKIZYqx)4L6-m<#D@yv3^H3urN-g^{0YaLF-KYP{v<9;s`JGs6uCc%o~qk-YWJ
z+M4LvY$ECT!nl^(__LYNBW_K%^Y;bitmhhzWdjp+w~!_z+1$PHQ_ij2)1{1|qs>T>
zO1mFeDCiyzflkU3uIW=d2R(d?OH6GYvt;FgQM}LkQS)4AtEw(e{g2kF;q)(_|CsO-
zdq5~nCM{W~J`?Tpwf29}_IRS@D}5)sEqwP=P^AbeTeoT_WEd0tfTGwTxN+@I&!6Wu
z_%W8kzQ{zE-<ZdWB`y&%ba|;m%p>1o?2$4uN>L)VBvd1~0~?}S$!&8~^^+U2__Rnz
z1Zp#1n3$|LBbh<{v9YmV^YQU9W{kL=?g$nixnBN&YL~RTBY|04>Ko7IX#CbhIS5B#
z`6pHRK@Ngqv)Mn33o={ddg|=GNGi0H27v>m&Fv14Q*k)=eW>6mN)C(uyy@{hu7Tu&
z%*Z3r<0D4T`yQVVyKR>=n$@yfTK!4?XtVgj2a6&VOo<wFsqP_+RX_E$!pv2ztqXFV
zo$K_@^s2UZe|0r81p8vUM#)G3Oar)_71P(St01oE>XA$gwhG208DzUg2G3qqfw(^d
zT)2v5E|QtO+gMXZNkwy<xMV0Z2N5;Krfi%L?TuXt0d(V1{&Z)Wo|ab3Nkdp_>sozR
za5_2uB|T%IkQJcdq|{G<<nU@=0Ye;aj2IYsRryPV7{xa+yy*05lPE#~2j&ie&V};i
z<S|osAlWbwaOZo3h2>d4@s*VNKlX=68jmx#Cgc9*Ec$8%S;pSJgrus{{sXqz<j#Y_
z=j%IP9u1{$&S3z#T7EjS;5y|twCo4&4cGOKc8)cwI32P5at{7L1uu$NGdh(4e`nu^
zBuz87l*fq2B9dmy*)8YZUIX4kw=BUQ&;jF0R;wg52WlM@L}fRuNGN}5Inb;-8pDsb
zUbTCJkAW+i5#`&}$A*LWb5pEVmY0|2wAf0&G05jPQFfYEeWm-#j@`TV%9Ln%CDJ*}
z(bhJ>{dRJ1I*1A5(SERfA?5iD98j%=X=#H25x@es?W-v&YJsk%Ij5mi;`yOFk3^aM
z=Xr0}mY0dmt_BGz+NF)ulYcUrS{xH7t+m3bYVj<8uJ7#Ra+!_b6G4j%QKvs&i!IFj
z@xgT<4V@_x57-hLy5UxH$~cM7nS9c3mPa)E^M$b-?|Bn8A++RG!&?m&rmNLB3OAJ`
z;otL7R<ZOu-j6Zl;77g#gH}}*=mje3;~kL-N3Bt<-kxPsFM<H1)*>>b$pst4-WcPM
zs^*~epK)77wVqv+DzdElO-<vu{4~yeUa}xQ|C7>izir}0(<L<K@u@P37##ymnp&J)
z>t3P(ioA9YQJU<51vk>>8yeQ1daLlCva?rltqqf-2<k+B<2D*LVoZ;ccMtxxA^D4m
zzQ@S>FC|{tsEUc;%AsbcFRao>x55b^<k{*pNKAUTNb5szLR_*d5Bhx6lKsv1X@cJ3
z>dO0+!wo%h@$UqlG54kLw187Y7LBaPacDgfohgKB!yISs`@}&{El071S^3lP#q1Zg
zzEM%b&sYAOh6tNSBCNHJt_x^+40o%qJUZ4}T4?QeZU$58`cJkWaal}oQT^UcfmyDU
zs&WBwl&1)N!EXpFew^6t*iS0aPe09J3agk#t7_?!8pE$Fjp9qYDmdEGghw45wzCZs
zL~bV_4&jd92)|zKy3e9D^b<6C76;?=J8nH?Yi8W%0(pe%MBpPMM8M3>PcthkJF8#8
z%n`h7%ujhOqpy&3O0-#mPMj>WEv5(vmKTnXc5FB#S$ZfR{e46liQ=&%+BVRvek;3)
zu=<Qj1>F&Qz!v*1Z&oP8W{9LOs-h^1q{q#G%DcsJbYk(fwhGrVsgTD*=~x+x-iq(0
z=2z3ZQ|`!`w_}sd$7}xHg9U=9{bQRu$#iK%5Z8^N9B<D?y|o!|PBe7vwZ^0zYUST8
zADVYZiER{B<4bV3{#$lU0iAgKXFlI9Bt7!EJ&waUTupi(jDBb+G8Le24}0b4hdmqi
zaHy!y^$oL(66EO`O-tQ|%Jw<@8RF})lAN45RlbaL7nLxT(8-Zql4KfY8kUfX?&#_9
zx^iH`*w~X#ii+S=bX|N*h>=iSh3!RXinKYWtpx@mwH$%5g1Rk}Vn|$uVN&ED$jNh$
zj)vm8s9y5%8H;{LaQYdSw5uTv<&m2;Dj1OQHI`GVw5+3yC~Fzer|p`3&ZjuWb~SiY
zi9qOhP{hSy35Sa+LyyC=QxjI-9@9Rn51P`zJRPtnP_`xG$9hU=g0*I%k({+*^&O5{
z@VUNeh&}Y{6*XSMwI)_i{|Z)M&uCv2?Gqf=zk^jChhOV~kg#{+B|z7mMkYi=@0y$c
z`t`Z=QNE=g?}+~X;hPcBLKy`UZdKv*!RDdT6`HRCOz|r0F}2<@h@Q}KI*wvR;(dP!
zN@nIML;L9}kUF+CU&7itqXp8%mp&j13kyd<vqeQk^-EkD#x`prG4gq50D{?B2r5qk
zs3BHI{<$z2KXG-R^%cNP3=Vo@s*24yI0n?lVqYr+A};%Zr6mBqN+!sb-$dc%z$%p}
zL`Kky$}2K{2qQ~MN~Z8aXJ(x@yHid51_uWL2s88Z_>h!D(3wj*{4)*=2J0x7WQ~xz
zv&aPW57-p2+RkAEp(Z1ZEB6&=1Y!dtnBaMaU7el3;P6`$a6+X4>mmo!@x(;xl6=^g
zniov`cI_9(jpQK~MDQFXAb}DB9mA^WjtSWrUHw<1lZQE8BP;8r0q2o$a9E}&o18dM
z;NnsX#vM|e@9ll&NV7@-f-2b?>oUc*h=uc_jYI_NU|~VodUrQ7BNG$e!uAVd_WHeu
zRD*Q!FDQRXrCcBW4kZ?(p6En4-64#|0m$zHNEzzXZD!A;QLcDlfD|F}-o&*)(w6kW
zg}$(dFYCh~6GI#7<<t~8{ZXN%oo&h7*crRgN#XuQ<)gB?Le8b=<3Ym6@<_2i9hbOE
z>Jf==qqa#&Q{G>MrU}Pmkym#lrmpQ=uZ^q<4=juiIa~xiSP=gjJc!4G(G+8Lewj^x
z@6jLLdo=6l{@cRl3d>4Bh9r!+-zdZJC1w5OTMgHRx1~;c;?M1Ikxbm(*>pJySV#mb
zu>`Mv?my<<VmUwi&TL9SOj$!$lzv(uZk0$9C_o2EC8}jAG6v;kl3Ga2EAQao;G`=m
zgTB~jEU^zHBut*SZF~{bn-#iz!SJ+pC9+__f~QMSK6v}wCzeKh(Cd9w%~b&%GqYT2
zi=H9d?A7$=J<3JbLbo59uf+X!Z8eP#SFRn7t(sb=Mc!JL`{>}5#l=y%ob5fzOlNn?
z-LENR(VJmTHY{bnGVJQ^#yfqtGZ@7k=P1+H*_qb*l1}4RtO@ga>9b8{L7a<uV2E-o
zZk`uEOY@vXx~SaZY*KF&uj~y(M^@`4)-4NcEx~82$C6u1&UgPpf<HE4nTWj_ORN>W
z?Li}BCsT)*(^I2E?A5g7_BmCJcXJf~A8c%Fh+OUBwfO9B)h#G+|K;m-5-vTiRjy#%
z4?&f~B5t0V`p7ufeNMiSNb5?^e%&}(4fYYpJ4(uWEhlq(eDcst7H78x6xZT%u&~T@
z;7H8%`U&il^&St_%4Xfl=vTJ3n5%t=s(AtZRxLRTt#+*20?cL>6bH)M*MRT*5NNvf
zW5vkZT3b5>wSI%)cJO>>=ZEz-<HN&>)f1I9)hanKe{#+h5vrGK&&2pCT#pKvC&L$i
z5vZN}2y)&6#wdj0$^(~}m~jz?d10&c@gu`xOf=?9XE(+npW%$O3A4-2SV7X>&rL&H
z8E%J56cm(&sayIoadOz(>L=A%=DNU$Wg^-)fX8=D)i=e+aE5TD>u|X}h-L+tH$#5?
zl0u<^MD$P-zfkVU9K2auTV!Hn^j&=rH=EDi)C6~}L_b~Eb28wj*d5b3Voe`}<q_^}
zF7kCRXd66w)OygPvy<VrA1f?5QMOA7E!)WoEai8(%OUi$_k2nZm`5u4yC7pwY;ud%
z_15hYnRA4A$!t<PZ5=S=!w|Sf=U@^@Cltsmyn6)e#XmXWL5Ci}&LtngR}B}<2p-<;
zqAWpQ-1afqT+q?c6InGY`$2M7hO0wavvopW>7%RtmZ)YD^(Y>T^_xKVq&Z&|hT<JT
zQ`~KpYs7Y=Ln^X(YY?uja%jjP25$frM55>%xg-r$Nb{XcZ|<LhUAcoNm<f&MNlw2G
zHEzQb+)1I=+djodo`ihqMDQ|l_a@DWf}DHs)!M~lE3fj2H#hNnbzwJwr7UG`fqGd1
z6AQcNyCD;f9W98_;2D~ONvl~=&8oMmEWNWqyEUt(5v`}6z=HK~V)|iSFg@2Wy*_Sa
z*jX9pvH*#+-o$uerK7_zeXZ4$_&(rF`{qG2d2Cjenbd-TA;~SXT5+Uh1?(5TO3~;_
z5mo-pep<;<DfZs1(_)L=;$uAhKDX;_wn*Mxv&sd(AiK8hu&x`RLh#$QS(Y#FUNC@g
zaApz4-j=D{lmGCD|H;tBah36KCi1ywPzjaL`BIwNQFlZbHoVvnzR)2{FF1X2UBLL8
z85uZVT}9)!v7K#j5cMqI&BxZy;rp_EUFGvl@PX6WywtmOtmEYS5#N<kf;m6WhX6k=
z`JNUkLt(D?z8YfB(c#2dJ8%E%-ZwS5^f$hJ$Mo}D@RHi~6DEV<wgA#JT@E(qqjly$
z(FxR#x*w-^m<--rJ@~7`@?VcnmM`~&c@<>5US`Km(<gAZ?YFiqtfxQ4v0}$I{)X&y
zAau~)bab{T8-5hvohkYab6_DGmOYG{gA6#Q@07JHoUq-2A{~AAt2&FoCt={L8cEnV
z@ivP&mV*~EQm7K@-ISRJC?Z@P4$C1!$$Q^uFfcHr2UWD&b=4p#LT7WN&O3ZfO-3OZ
zAg_K<kA<R0+>kckvfDbNwEL7<ibBAN9bjM`&(;B5XyEPO3iP*v{4ejeY3=g{P5`~C
zm089}jH_F5yRsBW=+cmp0tG&L_IcATz+Vzj$;0(N9zMXjqG0G-0|R#bA%!xrH#iN4
zw7^Np?F=Aj!4L!4=$E;VvJnVLeFEmhQxNE&W7cSL=s@mvMinV|>A;|(WMV18?gmT)
zGezeGr|IbjsLdX6+2z^{o8G_2#<K=|_FBe<hB$p|091B+7<b#RZdGG2NCTy3w^>3X
zYHNI|uBWX8U|;^4!``ar%i_TLqK`#<<j)_pT}Ko(XWMYNn$g=i5S{~C0BH8P8n6)z
z6N&&dDM{dE6KV}c<+(@XJ>*&EwyDX<UU!O~Wuv?c1cW6~wdjUr5$VALl4toR`y9Tt
zpeO(?*&w;>F+|yx4mKs|Y)42=b85Ue_hrV`!N#Ugg80c@zZg%8J-4fORiOcevU+*O
z+6)k}k<Zup-?15hYg;4;zEE$J>lf#L^vSP`pWd3Akk9o3pT%W|ymIwA&fsxUUhFVE
z(x&z3t@!2ug;s6G_bk3bN+$mi){Eb*P<Yi<tl&xH<oYEqrihZv?yEDAg9FZ~Ed5l{
z0&Hd5*azw(o&HUw%$4Hqk%GHSrc5iG?#h=79sDMz7Y3z;qfE8#?oE^LRpzn@m2D0B
z1P=LFH1^7eo!P3)y_`6G5mLZ$&hvYDBn=2ar4egoW)JW~4~lle^f#DgQ4<^0atzvP
z`pwV;fVfd!rD3Jb@sh6mF`L=iXDqI#mZDRDTUY$@<N}}rrF>Ymvb)u;c`C-HD*c@^
zN#X%(EM=&x8gvj|^3*gGJqVOHm7#BzIn!{(g~DM=rP4gHyj;q~N|?bd+msGMPQ2qo
zoVER0ILQe%O7+0AawH~Hkp*Q$qqlF;;{e@kL(RMAir;Z3dq@`?*-}yV<5Ad8&GAi`
zJdV5JxdaH#=(Rr`pphJ+7zp8&9mvGM+)rwL(8`xe`_Bb#kJp#LFeA?ON0s;gVlC(R
z)Ss_3MD~#i*U6J-g#>HP92U8a#21_ld2j}uQ9MNI3AqP%a^9&hGU<ur7Ksl3z}yc2
zRNv^isnrs*(UFbw(TQ?k%HmybRfc_W{IfAE4C?&xPmzq@H$9MC3fKtEU*&jCYA=Cc
zuOt74f;N5yV|_rJA^|Wio<SbkOq*-DUkg{xf7>)T>*e2#zq!8b;2BGr2Q|B|Sg`q3
zKJ4ZSOJC*s5FkJ}r{CFBb{2<Zg=wo1IgmVsUVJ@@4_o(D$Jy$h3NCWDmVc@#*;ZZZ
zTm(V9IW8{+belh~Cj@ovInB7c*GlYz#9-gik61sgiwviqLmzF60hE^x;w2L+po-2a
zjn383kSI2bhheRnOhQgB1L6z)q7}g9{}tQFR<-qFUZ=v-Ji<GBLttVuBsp2HxzUkF
zNQ*gnqTD(-I*pl}OxUejN>3<DDd*QbAggu?-WGxRD2q8$J<>7&+@yQG0mBZhZ`joY
zoWYU#g8clGBGr~ztgbGiD~zMTadCMyE0KiAR~MUkg9@t+o<91VhpT;rjp1p_F61xt
z^N%nAr0mS_mgJRPc*k+I`S=Uz{G8n+bSx4csct@D*mRMcf1curNZt>WHfOUZwz9Kv
zfWj;v8{g(nLKl(W9w{vDe7pe+$|FovRU?=?W3SF_zw|UU#Q+CSDx!UgLj+qa{o*+V
z#Eh%Cu<%98Dzy0MU<RPlFn=4@E!X1(1RYnhX>j3Uo7S^tt^j$BUg$PpT(LnY?1EvS
ztY13=vE}F1e>)p`BJQy<UfyZ3W<^|u&uv`?lO^y;%~iBpsm<K7P_mD)-%nVaPqT1a
zQz$BiN(K%>ZyxH{ii&Sh5a%iu>|FK%v*YZWl?M#@D~t7ePYGB~IYgf3n4b&BmJS!x
zz~k!WDzAr87WggHRhNRr4F_-Plqc1va$N!%gIO^w#*e6V6kpQN$TG{(2SWoDqbD4<
ziBrA;HwxyOlMVM~Eb<N1CrvXQ9hBwEvqF`QfjFlg58o6j<=^)J=tN9zt?7?5*45X%
zvs?uoC?hQ`4;%6)Y)27(n6pHZAAacS0?)M%IONIWzk)f}4w%TFpNI&$X}IGB04vxO
zU^zM9I4dMpWaTdA;$v0K`~7za(Tr}h>q~~W)h+>&T|dZE&TD=BQD*&3WCFfbblQi8
z#$+lFD=L1gwboH4<Oq}+6&=lzQCtIyM6sc$)W~YM^Gv*PEdb|_<Ij12sIc30)E-om
z+Wpxl7-`H8XuTro$$u{Q)!6z<d+DlhSz(czX`H{6X#e@#e?G_oVjY<l_;O8T9BpCn
z$C)!2dK<6~W3)B%_OLE7M`B=Lz{kOP1E?o9oD`2S_U~x6hsIR_<4jzLa8>iJ#$g02
zF&nR|POS<!<8UyrhN6vTYp+ExO`Pb*fk)DUKgtM}&`V{deW2%;xX*!scaB5~M9Nb~
z$F^sHOGN-}atME0gt`e}TWIlhJ~Ig+Astke%;=X77NA?bLlBZwFJ&};3y>VvGjj(l
z35I8eY$MeXlK^yOZYjAq12uxEbGiZB2s3frPNms$>H)hE^tge%Dymb3UKkL*<m0;&
z(*OZ@y+s4|LV4RpD;Bn*YHxgc1Gt5FNIO9`totsN%c1H^hR_C(oxJSB-gdfcg<k_O
zpxG5w>45PrK6us%kSg3^;JmI6$!A5e1esBGE}Y<vk0Y`)ZaYJmxC1xt-@mV`)A0Df
z1?qnNxDXbb##SdFyXXG8*XU%UH|ow$%U|gB3gggt`wVPng9;@%2a{!VDjHazGB<gE
zeg6b{b4PosXp6(pYyA-vC4>bB9ZW?b*jFVy>?cdB=MvK}l@%3n5W&Of8GvJ&6{nE-
z1b(u0Uzm~c!w4VXS24`+{?@Y|G~p<dF<D>~b(y|3=*x9+9V0#k(rCpzK8@4Zc;ve-
zi|fh#8-bOcDJLp&wwIM4rgeEk>E;s6OcVLwg^UWBoPo)Ae3dF^CspY@v*a-Md}bSY
z7iFL|O%~htE5to73$9Z>L;e<??9=)ba%-(WIAihL<b?cXRb_<!HW(fxVPxy+Jw}jL
zBy5o`M!i3JT;v2wnqszSavaOKrunrsxtU>8khS2?n7=}y7<y9}#2WQVgqhloa5nA&
z;G5EAD%o2U9yTyo3XhCl^vCM0m6gO4+xW~(wQ7_V)C!^tn1_??2ltIB1`#)5BagEo
z+363X(9_=%72ildeR_JC?&f&c=t2wE)TTm%5E$-h76M%zyv|WOGXo)|+uUgVn}Z_8
zKR;?m2U%q2vD$N`RacCkt2tJ?2(0&3l(jELXA4|x`v@D1H4V|*_4T}18AYf5*E;t<
z7tlXH$nm--tZtwXn+fZSI?(O8^9_4D^37oF-Kszi^8IfEYG|Z_&cC7XZEoGb#ubOP
zeyVxCi8FNbkX|g)kbN^BGfs$X(W%ODy)uAa?-%utgwieE2^p)uURdGnj^DnVAIv-l
z)EZxu66Qis5EI*6fIyJ$;HCYUnoF;+<<a!`dU^eN-HGL{u%W36tPaFDcxgZvF=}p<
zF#B(S0cQ=Wm%*Uqi=Zc_8~Ow-Sv|lKI*UJ&GK1!(r@!~>fJvFJtdph*r=`iL-qsJE
zevFIjV(RMZN&;=_@4-RLyi}$A>Qx7j9WD#JXX5ZXqtey`bG*-8dZS@cdlymhkJ1%|
zawpk)36qV?2q*{%nLGvRDqJjDUCvz8qXGdqa|E2C)imgwpBPm_KrcHE=Z7!<(Mnrc
z4XR<PJ06)-602u6)he?j>xnw`LqU>JC^Z?<Is*HjMBV{o!0FTo7?X*e!!C@8EZ3%r
zjG(Gq&fn04e1L8{bxOlcvvPkz7l*SC>@4SRoi=&>O3$VaMQ~4kb;49WZ37!3oQd~T
zmw@GJ0ucA-Ig##=h-VWowW+QEkA_kx@AsZ}om4T-*XR%9vj;Xw#%=EijDE;S3sMQR
z<v~V$Kc+XXvIz^z7GEcgsk_a@6v*q}P0T$EKYZ~Xz2c4Zw`z6rcmxi#bb6N3S5J?5
zb7RWKEir9vc+d=FV~eZf<c{MmRxf`AM?9VA8B#Y$SeP<r(HMR0e`Z-vqP{z@u+7=T
znrTK*vU0k|4kZZ**?{|+;9Q@ox%$;^S=HT&8BI9s3T3j*(9Z+x0y5iyIjd?k?O>Ah
z$0Q5)m`r_}FRoHp9<FYn=mHwn>!YDpm5Tw&>#b3-LpyaMqSqwDQN<;@Nf&NeH(Vz|
zf|E`;cHg-PA}1$9;{qF!Ud=kk7F*w%SZS`DQ`68aljxqYaGaP|&s8Uc#sp<44p_an
zI)G4{2@&QA9(zD`S1hZaa1L$W!V(mH|802lSKo3eAYB+KT`|W69!KG-6<Kz_@hf=z
zb<6M-sokavT|Vp(vfwXx3N)Z-)&?kdLCK7a*@)}0V0NpMr--j$n1E7o@kLM-6$M4!
z#3TZLY@;P{WMkn3RE&=!nxT)*zv{9zt&{@6?Sg*|ug|yAF!IJR&NAGo@YPX@qR+p0
zt*os4{QQ0qzQE|R@Yf8<*)6xMyMChR-Ejkkrq5=67qo{6D%!>YCk+N*^NTKWOd-UW
zH&OKd$OCnyz3DCm$fGw{r9T6CsmSnJ-JoQwFHShlDXRyZGOicgB?dtz-8Z$DJHa#Y
z=kuj$X+GF2X^#f%BbUr_kWMfy0t=p=Er)4^s-8#hyBIVuv*EKFH9?DOsxf092mcBf
zSE#{P2F&%_M{HKC_#jidMNL9NLTQyuStZQO<B(TBx3D~xmmCkSRO)bT4s5KQ6b>T<
zms8S={&czldM0Ew1Z5h?jRvb+tvL>*3oCs++L}jxRv7J8zbMwftpln9Fn#%)-*8B+
zC0;7U(mrQbyK;7+lQ%5DV|D`4T+|RF3o3F}J>j%ko6JZ{ec9F3E*5TNLgs6EwWJ8t
zoJW(#u<j;c$U!@Eb#=9*G1qthaI>izGvJPF5TAnE&lYdv=qSASH8b>8?_t60%zY{)
zpY1hsYzCzmo&D(HMkQ)V1bVw7S_;|n0wWXA+uyjhVM`=pzoR*MS-czhiDt_2h=;z*
z<DIJJ#fPdul<Mpboer!hB#NLH8Y|U1L8I&IS>NO(bYgpcRcESS@6|_~K_%)wOKY)n
z43y_H*U!?UkFHwV+Ky0|&UbeU?8mgolGh#f1}0bYnGyAhe5n!5yRs$G<Z}CR7O)}d
zdg)L)z7g@Z|LXe8eBwKvs-2wElp)B)nXVK=>~6w)4GD>Ba-{hs*JIsH{U4VJS(%y@
z=bX8A50B3w;`7_f$BIf{*h|1SbIOX9d&U(4cCXp$u593i6WvLKQv5HUHZNwm&AyH>
zc}G>^9-pT~PM*z;|E~kizgi>3B1l)v!DYnz5S<a`eOqaQHaJg-aFy(?8kITb`WB8h
z)y~QGWK{ASNNZtxVA(~upzivQA5sfBLamJ!C-*dz&DP3I%>sorRHnMrHMha=(4J**
z?HqLS$!#0&^3LMW&!YjeVJy4W{q{y}0%$W!@&)g^wf8p8rWStdR)qYH>)7CrJ3cPt
zHS!cUa@~q(0_91>X(5kJ2@EP^*f(0uol-#A51n^+y=)*~hI!uM{;$oR*JB`u%yY^H
z8IxVkwZBAo6r0cpgjB&h&ju4+5O%I!2WUNCx4_Q*XurUo%IJ;5D-=6leBM2a4z_2&
z-r<L?er}$tIbqJkRW}z)w+Eij>4(4}(j6glmm1`eiuE>wsHvTm+1jN0gtB;FEyXJr
zk8cMMB2E@vP}gI{J6DiUji~p<@$qkOJ~s%<H#ZlLcBbFUBR)Mjk@I<exwM42G2Hc;
z)%nO5$LeWjm2WiDCqzwo&c)cI)$QxWw&O72;wigD<S4~Yek~^ErCxt>b7gqCcoZ8O
z9xz1KPfSiun{xVL(Y@m1Q|lQT3(D*P4ryMl1`8GpSE4E;rW6{dwGMt9&NVZz`0N57
zdzlR;CWbKRNJx2Qa`|tF+gZ{Gp<y=iNC<)A#BsdA|4J2sbN`sM^G$U~c+2occuD97
zm7b>Me9!*(jsNlL-WMLAtu$t_9LxWRLGz!bNxuzRK7CK9@(fT=t!KoEH!aAkpR4s6
z4=4zFJRz&XMI>c0b(O4n;N>NkE<B88*~Xknv>j5QXRfWPX4w7Xj=X&f4^avf`dR3X
z+Hy?(EQz&t8LGB7Rdb=g@X|n{sw_QzYInN)>+@MdC(rJ76HeoELMv4Q8~8cO$B)oZ
z2~{)H+1eLj3zv^+KwE~68JNIOM3EXd3m;Ka3Z@``>3QRWW`^?O#X<9=+f@qcnoMKV
zL4zlQT4`2prQB7%j^<glsXdZ(#0#mF8rKtp5)h#FM?+IHX*dgOX_W->sPNwK__#zh
zZ8N3U$Z7_QhMJlT3C~snXoY=w*@)hrj2svl5w;tz;1Cf}&qV)DFj%yX{vI4U-g__5
zsP%`$(Rx}P4t%22@WI2UVi)|5YPAJkUCAlS#$x=A0qpB#q5bV1-=c%{G8FMi=B4h}
zK510vf>Y$*`s8tV{#e}&<2Hf{sEz8(TDOtu28{2jMiD;b{kA;~`{{hV&6qV&J!40;
zcg8?dQW2I9bJXMVdG$Yk)bXl#b4J(9>7c3kpr1o}yT{27(L6M~W-ursCw_(cx4C-U
zYrv!@MTVoZ0#B^-2aRZd|Fv@h&)9((1=UWp2$<3>?O5(zZOqTV0k*nHz%teJZR7?E
zv)Ti+XnUlsj~BN>H~tz^n6V)=l}CwPH;3h0sI$hmXT1s~Cnl$r25J}fSamW<snZ|c
zh!l56Wd?KJP3-LoTPc5R3tr$7yPZp`RTPZQywQ9Z5Zb0FvQ}d_K&M8GS}6N$pjO(w
z^CcbCL-(yoe|+L0)vm?)ZE;Smv)?N&wIT?9g}G^XDuM!6ro((HY>m9NtS~ym++y9T
z?$9&zY9#8GV6=}C9rGw*eW-0Phx56a$;y2Q@~-et=A@=3&$VgCT^cQ|q}L-oJz^vK
z*NH}J!GWuhgrfn$KrA)SJ5w&{7q`ji;I@5iRXn_{W?<+6)OIEueS&Zj>)SDvC6`sQ
zFf$W>0_}n`Mdg5m6iI0E<xW-PU87Gv^jP>oLH*_R>26q~gJs@ZCq5b3zLJTf`}50c
zL>S|jC)<CPVzWtXWQ3slPsP>uAC^t#J^7?rX6D|Ma`Qq<@z~_zT-K9vCikm@A&}?2
zq<#K;q6RP`$5m~&$06?5RiQdZUI~AUv>jnn@Yjx&3l|b<6S9>qYR~>+`1a3@#NFfm
zPPBYaE{M`0=bM>7oLncSIRa|7V+kStBuyqLz<kGVsp%bgCosBFZ}4SD#?F6sCmviM
zwmIFI5cJv}D-iX4>jGk1L_<R;A0n%vdGrZgN;z*Zv9MTB3BKdKJGSeEkX(WZ0Aj_f
zPWytBb6v`P*CIsB<?#6&A?~}rt7=j7_({H(rZLksJC2OqJkHNYaP2(EvfL9SI4LM+
z=bkKWt;hr$3DWcS{@PpZi%i>y++b9z*b^iMaLhsL&EO;jPHYmzFYbbN^>M4X>dZ%R
ziln=Q0;gKePV;KO9h3@-!o70WGsW&hcJm4a%EWgH<S~_Ki@arn==iu9SR`xJq4juN
zM4!7<pcY4eb8uOW{rVvo-}{tW3BM)Oz-AM8QU(k<qjF^-(7CMkmX?lZGGstH)pm4l
zgcY2X#c2<j$y1fmRIrtQZmZc@{zUzxg|KVQuS>k6bdmqtP+Hv6ma+5m7Q2=@@&d(A
zh*g(Ik9?M&7QZj54;0Q#Q7x0EI!WyzuTnkhUKOcBugz_=EP9?z{=!EB54FpmGo9x+
zBF<$);W|O$Y;Az+l{Ix#V<S?>(2zgWZQUXG2%~Mv!e;6z>SI1Spc6`K+r^|cO5?F>
zGH^RuQ8qg1?{y`g>GO1{d2DMqUP=ARpl)%q^{GwpNRSOz$PKhC=HZjN*S%%@D^unJ
zGnuozax#XoVgi3>X#IB^OFTEOb`ZC4l!8@~VFNcnj%@Ahe($%^73KupYyCt0D4%y0
zn9WI9lJJ-t2kE^|dow46ywU>~>%DU^${ooDv(CuwQ&6l9M`C@a?2mr5*BAk~1E$%^
z(Y&h#iB{m|TqX3lx^jtnuo9Io9mO*sD}1fbiG`~M@lZ&^Ow`;t-mnr*F4XmORIe#_
z9{S~d)S_@(V5ZFm_y$ibG-bIJL!O_@Mr6DiM;wo`O{KvK4RuOzm2JoS$m66pYs**z
za+ukY=)CSZUv{?0f9iT%LLiJuZ+$GW|DYj2QBrz>m-H%$nP5T7c5-hh>`v(Q!@<Tn
zDJssnPXI9z`av$MdbptE`ug_t$@STg+P-T;ds2G(Z=oyWM+SyOZ{t3^%wdZQR(P+#
z2KT+WFv}ZZ#qa|Lol{dHYFCG^TseY2!(g=2uMWi~3YWh;@8#*Bd?FLe<+Q`otZp-Z
zrVPD~qdJds?`i94yTc46NUo9|2W~FIv=np_=6iUYw=Nup1NpBiUl?RQE?IR732ZBI
zmi~GqlXGwgWm}Mu?n$V+y?hRwXyoErs9jdwp?Gm7@Z>Sg*-)`ocj}{SrE}TMl~PC=
zMRx8Bc<*=CDzVQ&*s4V^cyW@o=nrTQ%Zm+a@^BpHz;a18x9AK>6S4*@E%n!%N>@3W
zbf%wNSlu}I&bt2L1)x>!2XWCpdX_hskNUqLdr5tX$=omEbb~hbjh%(_J~<qD&dhjX
zCvDGtyfNc#V`HPni7*rdobv_4X<@r3|Dp>Ge{EoZ@_G$z&&&g8fV`BIWqZ_xXO#&E
z<0xi#@5*C|MIVY@SsmzWpZ6OaE=UH?DR_KSyxZ1Oi{tm6`t9;Y%U~3oHsoy5({WeG
z^mxB*QP7BMkk^iJcFM#5P}E*o0V10bS2&(xrRKsex0vT=PV&yqteWs?1)i!dVYlWM
z`}kPF#b&0OiT(mTBD=ZQ=mm0Bd_?g4ooW7ng~cY5%@I$#J?#&{j%<|m>iLh7e0{a|
zX>dNu%U3!{_F6O2v-?&?RX;GQ@Nlr0lxviY=@_nHA(O~Re#D7qw*BUkQe5rOpt`%r
z$>9F<t-NW@xw^A%8|wi6EX%i(-B(iLSlriFX6x1c?spuAmxRdOgf#mF6K4$p&T~oR
zM@}$U48k(8r|50GR-M}dJW9u7b=>$D1$80!Xc^<Xw{K$~V;VpBmn-`BVvh-oVeR2N
zPNnnBEiK$?!ESDD&3zR#)YR=gJ<{me<M0w(HCxf_2R|=)p2cRXI@Uhp{AZrUKUjU6
z$Y%s^fMDIGDE2`?PQ*QoXyt3G8&wkB5dambyRs~fQ7z<DsH;X;Q;8d=*WoMM#;Iy+
zMiuk}_jNp*ESA{{nXKI0pqavPy_4}5Cr3Rb@CzY|t>nGX>jUwKqcO6CyRyk`=Kqm)
z7C>=kS-cMx+=IIlGz52d4ek)!-JPHb?!h5waCdiicXxN^eVLuv-I>|l_o`l1SE?a&
z_xJU^_uO-j{Qd~BDkkm>?aQp-;xtOrdHd_Llj__*Iv-<#S^rY%!8eJz26+XbPPYyZ
zNzg$ExUA8)S-I7!{^`*E@#LDM?bg&{Aj+3xr?wC9!@t&!VyC@7uM`ckM)%?$R4K|1
z!<m@{&?^7A=gRjj(yzR|qP)BeY^%1+VhvubHr71OwIuz>j9DsBxl0=g)Kq_MOW@r_
zw!WE5asAna1NYaFz)t>EJO)%3s3-$sQts+49uRSHacWGcC@2D-KjUp_OlWGtSvyGp
zWXk8q(UlF&5E&xSKdJ&F+wwn=h&OY0H(_}t4}3*+d~FVY-MQJHTx{Yvb^+w4Hl&NC
zAIT+(8UA<$H^_E%62uHmiBah^O@a1HuiZfZaMWi=<<Gs&p?+-*^XW1UNPoRXV8W<V
z`1-t|*W(AeC<ABR&m%C*s@Wo3jvG>kR~Q`+xfn6g{(KH?n<quW!xIJ~{1yFQz6dO|
zcs9ZX1qFQqN?;6uB4K|3!AsnEmv@gUw_!Ftd3Wcs0La5}#6H5()%o1vCIbZ2bk}#k
zg#ms=0;ZA9Zf<JW(O+;(q;>J$y%YM?VR3)#0!YPe&}Jo8&><o^*Q@p`cOS*Q12xxh
zKtlZG3hferRF4HQPtnvEZJq%d%qBoD>BXEcfw~>(--hA$H38vU++luQmdV}U-7U^i
z+BI!x7<V<^E4i1KJ_9VXOzD5s8U17avlW5^Q7z_Ak#1xR&V*cC0wF55lE&5gCPgdY
zR8&-5%_SkqJdBKju=YNaMPCc0KQgcR?83T3O)mlnnd=~9T3n<xSwIALY+<t-6bOV&
zhySA$1o)gqa2bVGujhOK`iiaw0LGaC%_ibMcIq}5kQu2<Wi2h~raKYW66Ny(s8w0^
zGhcbVLhwJDmw|8Y-ydrh$Sx=K^o9yDGU4yA4`fG1!ehUG{|2#cd<dR__vah)HR5ku
zUe-Dk_44vXzqz=W>NuLmo&nB*K6SF`D;qqsi9lT-P&cBey9`X)kakisvQH8cFmVY9
z8rjp#KP(qnwzjto<wL7Mb~`|DZUt8{0M<l|*ZM!MXYGkRG9{%5L`<4HGhlx5I+DmQ
z=Z#EA6>{I;Ac-gU`uh4<*Sv0k$!`WP9lFdWiCg)y897KcjY~W{JbWQ-0g6Kp^`iw;
z(dh2iFXeuJ4|?#~6U!+n(R#gM^_*Kuc?fFxQx({+=z;<e_MmYemXD7!beZNRsAN-7
zb8?D@(OU(DDjPH39^kdSnHn9PB`pRb*iGNuYQ=GXD@y=wV9kTDOuttq<TDUe46Y?`
zs12?~`=qWe^5Et|gqjk*@FU>25<@m`=(0RBmhE!&*V-=_SpyD&=yq#h%DSC@8kBz@
zpuasIK>+azK0G)e#({-_VKJ?$s)}7&UheDdRrJvSntC_y@2!M|bHuT5nRr2ghWZVl
zLX){tbYx(F3I-aQ2*8Y@MvN5P(va)xGjOL{XQh$@(&#X7aKz|FwU&$FFtD(ctgI?q
z!|0<=vZiWyczBdtTpb1ZH00#!E@eE@%*@jr3OBZDfscKjN<EkKK>X4T7EqSVSX(0;
zKb08h>&rl;kXK^a-=<|@i3cK_**k>X+*)o2B_$=}7cOpY-*_P9<>WHZdqHk6^Lo_f
z<ptE#RJn9Pp&<WpDw%3&KDS2QTs!4`x&`|qlL$}N)?m8bp46;5J2ln!h=XwHJ%EdV
z%O!-rv4i`^AN}L?|Lb2HCn$&Gg*ZKZcs=z?^xjY`eSESA(NIjf+ao3O{^%U#OTvnK
zq`k?!S`V>OH$^Qi;ogY!3_v?M(S=-PA7K3?<&A7@y;~2k50bjLy2=1rJk?{N;ovfW
zzG|ZHJV0KbLe8v!|LJIVH*Y%YK=~1<_WPMZUUo8;$-V!ph;9!k68w?gT-}5VRNsI(
z9?eAoP}^VjaH`qe85P+X;9Fe-D9)Ku9ohSPhzgopdSc?GY<wPF2EPl5fiEX$)XM5x
z{J$mEfVoQv^hU7*s8}7KlDr#9jhb@qACrD6<V{HaJ-&o%;SM+b+Ij$&NBWP%F*Q!E
z=Ofs6SjZwLB|R#VrdWSo-2c;IGjRYt3aD%80acy5=WhelWq~?bwL@Js@G+pscORLX
z;asfP^;p~ipxGd)6xz}J28TW~vpjIr%CXn^MTG{cf`bwqAt2m;`&3^yRNZkLdbSM+
zi4VVDh6x<#QFBt*sn%37a%@?W@JtezdDO5kBLzOYM010)X=u$S$UpBUz=Caa6<7l>
zsR<<8Dht1dtNyu=u!G+4)_y{CQ~Z8AP#L~(2}XeMYn7?ffnZ=@B&Y7qqE@oAv8fIN
z6%f|U_<(xs8`!P;rGlXQ2kk+~2jU-1O`0N=kS5LN#@-?#fiyTsNV@Wn?g>V|j!H_^
zS1mnh^RaS#)9u^$r{9wFskB>bXXrf}v^9sX6KmUhKYw2TLH||2K+CF<en)@0*7w8j
z*N)4RA_kO719J-=^Y^JbmJdF~jkt<&?ulw`aj_D3J?qg2Y98+YfA4ep!^EX<gL*%e
zYq9_dE1ZU{XvwNTpx>8OT8znbLP*-6+0*^Y*@}ziU=ZIRS()24_WV5v*n@(JNj^*D
z(Gf0CN0Q|<<eQN}7^9yC`Sa(`k0aybzCGc1g~Q0`&}Fx#=xg*^4<Sf8wK;(NN^<Ng
za9lf9&rncR6$7eTF*f$FvDs`01N{BJPjz-2z~it$t!wZA6r0Il<W6b-nf7*mdEI93
zSC9=_a`Gg%tG&$Wc0KmA!#~EoOqh_7aZ(v&<5!pfcx3Q{Pjx7uD^r(O^9*g6u|O5U
z<DSv~ZRG#B^}m>KAOPhCLhF8|q>ZiSQhW>4rG<PZL?T#?Qhm~tmnYtlfPcP8UWeBY
zlLmnJ)vryTGT|*(ngVjA80bLPY5)RfPF+&xQhG`XE-FJ^VIeg|`#<N??@uz+fIWh_
zbz0Q5SUFXHyxM5M@0u01H3N<M^_OF4Zu<Xvslb&paf39sH53&|nSc23K@RrPPn)c1
zh8UTR9_rn@ck;TrJ}k-ruMiuk1YTErAdQQUmseIs#{*^%Ks!)R3w&EghmK3R`JpzC
ztI^iO$*D#n{t+mqNA;~1Cr0?&btfXp-Ez>BSuNHSAEEW0gBnX46mzNC3wZRhK@}zU
z_Y1QA?Il32g%{lFr#@fn?}PJ?AzIT!l|yvBa!0t#)z%qsudc7FOF5*=@&wY8Zb*Cc
zm5>0(YB1W3ei~?+WOBQr#2OV)H+&j%p2+@sQI?V615^U$N0(V|ga1-F0c!UckXbJy
z)sBYj{c8b3x<BrAyx<r{+%+o%QC-G7s_&&K`HA$ei=mC3B!f%kk{gbm)DQ?dR2@Z}
z=~+hVXpj@V{j-DfxBc^9cbNeV1r8Y`cB%@%K+QzH8cmlk*lVv$b?Tx;cpj3=efq=?
zAaOE)3b-s*W@^Ekv$G6<3Jr~D@kD3-m%{}x8-18TkGlAlRW9|6$VzHl%wx~=j@!^E
z>7f8t2JZj!oZ#C;wz0J>aW({O#5G;W7upy;VPP@=DZW~9$<OZ#kaz@u>W?n`(d!=2
zr?Ih{*rcR_2ocP`-SQd%C{4+Z^nUJq2y-h@aKOw1>!l4oWE|Gjzi$7JZw6Ziu;@Vp
zgM&XSDk|3FGT$bHdvrF+Ed}qR?_)i(PMjaNYIKo&*^5@Q2gFok!%r5ZaL~P#C`dhf
zrE})e!1^gZ#O@J@s_O9Av&Lay%>2YRDB%R5XT?Yws|}&~9<L&Hc#A(xRqr5&Xy@dR
zagY>qwVA7>?jZ<PA`{M}|3s)ZT&i(9J|4Q{rn0{`7G8qo>id*wHhdx^F<{Xm5E-?s
z|5MiDJMQ7cu={%k?%oqyR)Z9T<AsT_5{7qJTawx(bQQx(8}bis!%oS^z5aKTvA)ZO
z4<p%%>ebZaM%tu4fa7P=-)6OSx-SDMYcQS*)|;d-o1~>95<Hrn_UZV2X?7@j2>?WV
z$U8;yCYL^%RTA-h>eW%yRw|a|q3@`9AxGRt5&jI)65UP!4Vj;j{nWJP%MTFH=0tS?
zFvWUUL+ZQ!zyPe4AiI9x5E25}K+(UrnEWFvt9k(Fr<WW^Ru&P-MUUV+ByU^E2asyj
z{4-OE3d+hgOKi~)Z&1lKNt={$bTsiWG35%|0A5Xko&BMAdY)shFNj|P+d7KO^VnG1
zgB<Q($N7k;t>Yjm3H$!&+i8xfZt-d%2U|KA#b38VV9XC>b%ErS!+HQlbZcv?=JEjZ
zIXs3ttQ#=3_JIoC>rz~@Vw5wu@LZqoJm{u*GBZr(zSV`YNY(ZZnFSRB1ytOP8(ZxP
zB}5d)Dlp%It2K0w*Y<?$TQ!AOK-$rZxILe6v~-X0Fa=g#+7;EbB@+9MML)RFEmZla
zNebnsV`#C|1r0?-=~xh#wV1hBAEOz$`Cj|nK{dE8wW*s`r(Lbk<Cx5rGhH}1qJPox
zi`<k`SM~#+u^QR<{K^Y@zVu_lh_(!Wiv62guS2BG4Z&zpOj|?C=F!@zw5$$mlqLj4
zvy$S>6jfO`x?YcODzPCl-C_#FjPDA*9TDFrHHh<>sUCAa4)D7^qY7Bb{ECL$pUD=s
z*XhUhKOmWuXy9z^oqh!K=|B}->lXRn+kc0cd2$_Ff|$Wugf#PJZBa`Y1F~wy<}Hg4
z$sY5OY43Kd@1!^gUuyVtEe$J3V8BQ8K?gcN!2XOo2V2R`CUu?5ku*l5CAc9c#~%+z
zX7h%stFNB~LgZ3!o6KkF7-Yly+0b>VOU<bi0J;#&w|aXC*upjljH^sQU*H%24Gj(L
z=N|cLAq40{;9Ep|DIlw^2plH>pyLCn|DUY!uRT*7s!YM`MzvUI`iY$IMsxU9IVG1h
z$lSUvk(i{T@0kFR{Xyt&uX+P+fx3oM#BRSM2lNTkeze7Q&-fM*5d?JS%5;+0MVw>^
z7Pd@L9k3m6gy3k?mSaH#j=BXcu-D6tjDs&!td$#0F&=8wZ=B>Y*<Qad=i{W_4t~db
zi3mp)5O(_2rH7F~?s2X}Q9(%@QRc{~Ss@J9oo>Nmi%3;*m!hfjp{`NAEB$@P;_@2z
zz0`f=iVOIQeZP&grk1iAneZ|*a~`E=@VG`uv%};&J6os7jpyA~t?{i+7^E*J3D$|k
zi}x1YM(Q=sd@;526WDBvyV*JC{N5TEAVaq^jyw$5NG8SLK>0vbX8D>@B2U_CECeSn
zbZl&_*m^mj$NDw{K>tkv*v9?wrS9%4o^WB1#Kc_u5q6o=^`t{Ue7>~E`g|k3+AWzQ
zGDd%&nUj(-*ab*v<NzKxiz9{{?_Vvt7!fn?p~3Fdla$Uf<IhL(=Dr1Ao%$FT(ywlg
zr=SjhKb1HV+MG7unr)c1Kud~=WdNwzz98jP4#yt=LPpgExj^u`PaW2GqKS#4;zfg2
zbm^=RVC%&=h5C^BE+4)Srf0}WNX;1}nvmq`uV#MSzS>t{G8VvKNT=o2nWy}=XD_xU
zXNF!pufM-+B~*)fFF4+>kZ1bbl7-GKHDKW}?jfuMZ^;u&v&az}Z#iyc{x$!UZ9as4
zk)hq|WLHuH79kW2+yX_{`p|dfq>5sGPifr9i1c@73-G#s#Q|_ke~$x9bU;A#xX_~b
zUIy|BbRb}JxkP>yOKL7YH?jhlYRnNo^n0V<llPp(6NhwFVz$FVxFGxH<?X6jph^FA
zTlXOYX-StCFauh!glF@nF6GvT7S@?kYiPnS|8`vQRfn!?Xn?T>G6MKs-TPS)JXH9q
zc#{J(S`CUkcN;h#F`<|sL3LVfbW$7FcMM%}JgpXNg9{I(PM6TwlA<I}UmMzgfPry}
zNXT}eDNQR+(!wwa2pKxUH{VPqiRAxuRr!=|>sDWH!n<P0Yxlzy5vdu>SA_U%x}Z2r
z5w!s1A15Z?89^T%;UcM1*SY@wx?nbHYDvTPmH^Z>hzB=DUKV$p>Y=2V7{S)p7O8JV
z&CSh#OI$#A^X3^SwnKGqVyRtjbXEXj*}|ftF)N$ZFRav;Uf*ZidnG(FCPox{Eb=Sn
z0Jd1p?QvNd0y(Iyr;g(D@25N;A5U<p*O~>DxAp(n(?^U!J*+zg%vcZ#AMMDhtVmLn
zB~iWgaI;&mz0KkH{_aH2iLWJ@myF}n(5jZT327D=u&v@F)ISD&8j2k38!iQ7Z+w(<
zbY+OcFjVMi35#{yqvvp}5Xmf`dlbFR%?N+)YZT-H_J`abS3(0^XRL;JD;80;w!{l^
zLE0G6Izp@$Fkv|{({YL}8%U{h^<TbKhNqT8mqud3oG^WFTI`KVmW5J^-wEL%$jNT?
z%KoOeNo~yyN<vw6Xj9x$gAo4l2n$mjPgJ|G+n#XO1azBV)fi<q5=?gW4K}-FpfFl5
z;>nLxbFa$a-QZxlW|KC5Q}v{*m`b=t*v#wJ6IYRt-L~l4^sIr4k1=dKP$8!>o29KG
zPXZmm5DREI-HNfv!i_U8GRX<FKLDsoacD>~q;%SKhSL!aE_vrME*|Z|pai>sdF!j<
zAm{pydtYa7`c2WR-&^U1Bo2ook$q9bi4Es;atamaB#%X0U{A~$+7i;Ubv6CmLbDjj
zQr$CJ>60FW1AmMy-K@_MnOuol?(_Hv&-uQz>*9$qsgIEN02$4U-&AA6R$`R8B6wD`
z3XRtw>~K;%9`WiXQam6B&4H9#)NOmDue7<Tr6d<&);PseualCFiO*?R1F9&_5gIYq
zw9~Cnkcx&nkGF<kDty$@XY@Jvr2O5{rZ`<V!Vhn>*kA6~4StRvg;Y1sXAmByI{Vle
zLs3ybm1Y~{QUVg=IY*k|A5E3{-nw~W?5m(nOZ{3y^`QXlAUcYqDKl^EE3V{eSWTTB
zH;uvU;s9Qd#mF*#RA!fB_c!}3nulR~&%*Dui>R~^XQ&TOM6xQz3yHB3Bn{p2y$HT`
zX>{tXF)2dxgF#n6_H=pGdUvU7<<t!0T5#0s=qx`bzXxj^tiZV;L#B@}+g-5OV;|?x
zi0}ytVGKLKGXC^Y&BbyxHN^_q8vj#5y|H!;Pw%IVl<QMWBJYo{wwp3`NZL{lj&KR~
z9CNdPN}Ghqd<~f0Nz&}7{`MiM_D}!<$V#k+qD0W7oyq(S5RkWeS~S)U=RNGXIuO(9
z5cF3q2>Y&JdbK+uxHB&m-h1^8!+ue1s9v+sv)(|L)y`y5d8YePHL*b%Mq<#^wS%91
z^)cl9{Au_-O`J8ZF8yZBP=6+#mIJ@>0XDLLSDKZ>nhSdIviW@v_~iu;ehHIilQ2<>
zC(^m&@aC2|`zMc@OHDeI^!Gb6D7%gKm^N^~qR}@fs!eysg=&`F8pEM|Mv`l@I>oEr
zg$UO3K+KUzd#Tmwm_uzy%|jFc3M$rH;qv0*YxlHq1rYrOVg*mNb<)W-Nf|zy;kfKn
ztO$!0WRhmyha)e~kioSJp}pn$y$JQTJU7_A)`J{mD^=isAQ;@CXn+$v_k1Me?+)dN
z7$0=8>v_JLVB|_=^*fzQUI`n|9_%QPzdD?Jd?<iCN9hs}h8qKd=OgY^<s_wfWnM9~
zY<F_T??1?_)}}dmy#5e&<AkI*V6>!z=)r38Erio<XLvW`-h^aio$D_=I!iU8Y<RTX
zcpo_7bC^c1lCB#=-11qA(rhfpVQ-XvuP^Xa3Sjyq*C0%JPFT#d0<~$kJ|8YZj)(@W
zUr$_#5LPK;!1U=d>X20qD+kId^U{U6dYN<EIA~fR!y4>zg%|h5AuVBw+~M%(y9agx
zG`X8;H)iP`{42r<nEN?AN4O3+tqR0b61*edar9neNpXv6OP#KIr^cV)Vd{ONr?~Lb
zMwdP;&L*4{(&c_ASj<mFDmuKpf9ssFhyUy^wi=a^qGf2insMWB`jm5ZH7&SpE4VOq
z3uN^nUEL=RYqdne1r+l_A%ba$J?=tuD9IKHHC0TTjFFeKU$m}2eH=P`POzx)(5fEj
zBkshoZt&Mkg@;8}<bsHPrzwlK<Y(n(NmO3Dx1)QFMPa{B?*DbC2h@Be7VvPH01SP4
zrLpyQp>d*@0&~07l~s+K1mUz(8ZFtwTP$8!H{n{0jg2(&`};N(sO#ZPHHV)VCYQJ_
z_A}e)hV{*`8y(qv?&}AZ=$C!kC7KMd9K#rpWhPf?KeMv)HCEX|_C#-wC?RG_X|<)9
zDZ;FC>fBri?40aAU?~V?l)fvn^K8QO4eK7JDQG?2?0zWt$zxeTsl#A!zVA|w*`8)z
zNwnLQJ$cQhn|WTH1-F`b)qM;2>Pos=>GgS~tu5<bw(HoN@Os*p#?fiE-&+y22!-w<
zJnjqMO%*z+LV1;b7u<1m7k18&44{13K7Fm?&_<sdO=O8*fR2j!m_{G-=$JFqp@(Kz
z-s<JR%l@jmHVTV2bet6Rc4y_JM1HGuV!B#hTa6aI^A6^-bCU!yK2AiIsG_^u<!-fl
z6HHk~5-*~MQ0jooNJMK!jHXG(#?Y<4TkmA?CS;;0Y69K_SyFC9osYI^RrF1c!S^lG
zub0aPZ`giMYx<It%DqQF&B@K3X@v0mKEGC6yb{MG&%e!F5>+6`{0}FO_B-Eb8h6zS
z0k2oe#U(Aqyg8Ny_|no6fYDZ#RMKOo{b$|~34ChN#ig`Kr7}DzHLqWq2GmfxT1q96
z|IfMZU%Pvo7wE~!$wzy2b!;HGG6|52x2a|B(OT;3>#K}M@gD%quxcEpM{_GzcF&GR
zvkgG5K}J6Fj7Q66gOI(!HCon0^gWMJdl54Z$0dB?i0L#MS*)i^NRzFh^^A<w%DZ>G
zKyOa-XaU=zx~K6sdk5RR^~%+pnq#<9UAke(tS0@&zVT^=DrUK!UL6;(I1D3&g|un(
zY52Mq)Aj3xHSXBnq=bqDi3<5HOb#U2szvsCvD4)OUH%0kqMDU#g!lQAg!}hRxfQW?
zF;1rExP9VFMs`bMeodj9u}LOZ!OJ`~Av=!C%FCk8);aknB1D>swJjA=N`~w?_$+8W
z@$YsL6(>FS*rYXwSMuy+aAS@u**Hn5(we}&{0uwG{mF_hO>xZNb_j#<!v=DlIoZ3A
zt!6eB(mk)naGoMMIABV1X1Y_-XmC^t4Zq5>e|}oJ=9pvxwqhc`e4%POK_r6JcEiwa
zY)@LPP!2i=G0#wPwD>47i5rx&%3P8)0*6nQu1Ztaj*>Zq*xx21tQpVQg8tov)12Qc
zcGlNI`;dU$*(r+w`uBNqy!7uSjMj<W>#V3abKJeJP4`=CZsHFZM_Lid&C^2Fd<wf}
zjuId1Mi}k2%N<YG)FT`eGT(bIHYx|R#nmN2BnC}Z?z=dFK)5w3?3TS6pK`Tj6-=<c
zL`k^`z=8{af(VpOAcMav&kUjb7UnoT-KwhmN!2}}x~RDrUZ|Y#8=8=iA`(c>Ew)>b
z|5fD3Ym2d+)rpjmJUOFj)9U5Y(&V7E)!>kO%c2w>?3tG_Gt_sLqd8-8{<3fM<m>IO
zF)==N%XFfjDZ{BPgQDfP`Q*QmVr%=5kaWP&cNE7$U8@Tg!De1Y6xQthkOvw$)&^i7
zDqrh_2sZ)^jdll;QX#Y3*zn!3^b~MUk(^g;&($uHV8`Ddv~{|L^uSM@7k1~Vdb~M3
zT@Oq!uUaOgQC$nu(lC51>Z?~v92JU~o%F1*rP1J4a%M!wqzoc3WZLU5R}qOp8}ZsI
zxQx@~pl{_vz}cm|VF<&Ku!$UASD)%cB3-rCY^~zw3Lhm%=LDasbK+)m@?W|>nLTis
z*|xDD(z=|p(!4~#?)6~JLO{pi^EsmK6hIFywAHqnvsa~s8nedtfdmkACG_jGFZ;G6
z(ze&<Q*iSpE`+_HpqiURq|U}?0*IZ}Fe_DvSk@o=`bIuob}}P*;5R>bB(iODZey(~
zaaM1;I5RsP9(N_onkRTNMuCg@{OMta?8{=g@I9-0)*%h5h=c?uq#Cc1|LyO8)h58_
zO>t=aWCd+(Hm5%cYp?BfZ+P8I+ckTm6HCiGpt|rm@=tH~>ve7LAW%O)BS~-pBD6ca
znqnbgVM>dDX2n)!5Po!5mk{Z!n)!s64|^@M&hzZmN)c)&u|C<{*~pOv!}2IY_q2Fm
zpKEts#NbbXM&kuHua}Q|I|&eJMOlq0WSkhIu~+);DarXZO^al&AG@a)z3%0lXrBix
zNIn$#raYJa47}YW?3BF5vojbZKuD`ht~xgSR#-V1V=zDU^-D8La808oo3`D@Zvnk$
zVwTquo-fZjRLD*P?Z*`lgT@X@=|>SK(vd1X5g!-5c7ot@Rg4+O-<NHdu7W4m?0PNH
z)cEkR*Er`jF|V7Y9@(v$yV&YfYP%}FBymn=YFY$YP1LCs391{JRR}iTwmddh1)mZ_
zxYi@=BgCZ;i{2i`VpuisVY5cW1@Wlm+r=Q9CK$hZh4U>vU$Hu6I^7as^lg;per0`d
z!2TkewFp;!AzeBm=edPLy<6-wY0el5adi!M9B<t^=eoTZP~p+2_2JOkqy1{fQa`p2
z0aQcGJk?!PO$-0Wg!2ieIbO}+ho*BgU+S)D=N2sws~@0EjUDDrCFjBkrEr&UAGBrR
zsUs3BWOwc_lPtf$8(q(ESx+n9n_er&X{YhF7OxUX)*dMfU&46ox|T!`(FCq*v#vi|
zlhPKd5{5biQ$^%v6PaLh$!j#r%Qil$lZgfN-ELc>Cv9s&Ovvu^(I3`O+vZjFadEMU
zt+Z@Pkevjv+84GpeAHb3s!8CUe1jil+^R_kA-szn&gpU#Kym0BxObIoh$G=*8AN$=
zF6;fyWz*~NhI+c{2A7)%(Thn`02FM?4|+DA$pzv?KW2H-+3<1dXu#b{d53Y_)3t%u
z2+B4+@xD^c^I%yed8K(+2m?emoEu|UkqR0=**2|};n8{0oxQ}B1YY(^Jn)Pl@D48_
zC8vW;wrmf4*3$A!>UEA8BcFcr(?|p5cGBl&V9DhL8sD%B<G+mWkOZ#Pg}_?hHfUKN
zMUdtVK2Nr=mK5HYLzR@*hE=s5uXpgI8VtyKCoNwwpiB5b!oiY}d-JRgJ!-s`d<j52
zf!poG2$}6$iqnwL)M)Hs#(<jttdcf8c})CvYxZh$d71m3XwwprWpf33aAa7){e=hw
zh48;T@_9g&MWK+CNvx#(%GBK}YdBxpYipSP_V>Pa$WRCfED#K~wzd+QsYyvxtw5p)
z0CtE~R33v?0YsBQ?%O4W5*Bm&%*epuq4hj${Nz+x#(f_?zGDkK(WU%om<v0D?NAD7
zTV|AXJh#E7+hHnNcP-sOZuq$`9oeqNjW$r5Ro@E7jjW6cj&zu1nGt2D!oG1S9lmhr
z*n}Vq42-7PAgPdKl@aQ&yqx9YE-TZBeWXr#>nrkUe22!lgt~vN?Ix_kt30(-Z4B0z
zr14m98dVhGyN(y`a;0Fk$471@m~Y_q$nYf1V;a{?wi8GOpZ#tX3k`R73LTC-4I$x5
z2h?f8cnG<k4K2@I@zqvOhFdG1JCh4)`~r9NjHxNP$XbhKKRh_c+jAydaUqoUB~?!+
zSMSn3l#uu2^?tK`99a8|5vV_;rWtnS*ocUYpE-$q_013y)I69YwR_qG7vEY1-L+?C
z^Fky~9WzOP=={Fa3oukBIK7LatwkRiu~sUZv1WXiMUP=E<>9OkA7E8ejkv8z;ACeO
zs1_*}eiqm(MAR4DJ}{OP=#Nf6MKe~!=Fhr?uftq*ejB#y=<|a=m=JMg7rmqIJgijG
z3}bSs45V;U?fp(k)~AfTIl4Atsfe_)UR{R`y|;N>FR7SD|Jro9iK3tx=H<0oH~B7F
zlsVL9?;-j{Yv`_#myWp;YKX;u{ktEhM(b{*ddiyFIt)7Vp1I_q(aGs#^}36*vusbZ
zhEA!cGo-y}`aUTi=${^P_RwpraiO7b2^ta-6{29HeSHq|_z&W;vI$E|nh^_zWWUWc
z-v;3~_(kRI?#wN-LAz$DZ`+xr-0N%H%StpZcP;+1(}=a@0U{~igyr{u8Uw+P0Ax-<
zl^Gz}0b(Q0-~vZLRh8*-Lp7jd)SIVYFw(<_dMmlf(maLq5Rpuyu_GJRrDcu>K3UR(
zfjJ{b)~Vq*I*y7bB--O$jG%;FbF_zaODf;$s!^$KBZRu|*zMQtiGGcNq)tO=wp36^
zdaP|e18s_w(~(Gl;M$#BGjD?jjl0+?sqV-lIJ|R{VBCjz%1eKU{!Dov$ZDpeE)%~T
zLis?+#C89GQ#epr`3)jHPiDS5FZ24iH<`Xy9%C^uPu{o^#%z6@sk|?y(7yg#S2Y`&
zj;dosNPJ=7m3&%g^SG06PkTi;cw4K|B%kk_m$Y%?L1%BPNG;K$FM7SvD`60j3tLj1
z`VJ18ZzraZ&LOe!M?M$B%T6qSTD*{<<LxzlJHmPQweR`)c}r&dYu(+;rUP~K4Q*1q
z$pRHk020RLm+$f#{O#{aq`~p)s+DSFs}z)WbMft!P74p`Do0T92L~(e_Q;K*tO8kg
zl%;J;%LxP@?w~)ONPf^<-AH0acX8-hd}CA8#&X1+eKW)R-CJTu{JQ3ic>`;wvg~EU
za#4yV8Rl$nzD!WBCuY}JFMR3NNX?9@g|B@Lleu2X;PXOlv{4u_=||!rm+jotm>s{%
zmDK5Lz?3y5%KUjo@qs!fwsi!AH1RY8G;x5KuG73iheP_CdCS)Tud00KQV>|D-U}PL
zid9{P%_uTw1XX6<1jts4<;kRy{_5{8(V`X?Z+Ruk>k(XkBmQSMrXcJM7q#j!z$|8c
zJs05MQUy8_bpTPToNqwgN~H{J(JlR}ww`-LtlJ9<bVz7a%Pd#PPHJizDWvjfLaJno
z+)ApF-gtUsU?4^>@pe@Dr&8Bl{+T0`^^7yUPg-Ax?8sFiX84iA29FrCKb0F>g^u&K
z(S;9w1fQvj2H%l!{p6PJ{__q?M`$V{G};{BMch(t|9yqky5{}K@vE4Zl}!J)IH~^O
z8h2!2Ms=ywWFUNimex&1C<p2%IK=dJKz2=4LYyd7iK_tO%eM8nXTNJ<&492cXQ6rL
z9%CaciwoL{p$pW@R&AUT@sT5M!zAPG<f?MNpT1~*|Ly6RL|J>`<@gp;r^YFVT7zN4
zY<pYdWnYUH9Ee%@*t`-2i(p0)MY#5|Rva}g{Ettb^c7g3hc9>=64WR1M`qUph22xi
zr56ywAzW21Q#hV_kxH&s@i5(@iPN@6?6MF7dlf}WF(O7$GUeT)@J2rr2n+cAQB+wg
zU4orzBf<4{0zbFZI~(rSd0p~bjVGg6^fWJ-T?-zq98JnBtWM|+3(m#usV6{xRK}EQ
zI>OywX}FWd;23SFZ8e)rlE*DM>~%kv!Xo}JdmXR`+6WU85w$B-h?<TObt*7}PoL=(
z3(qK@P9tgQ+n=I$WR-X-m;!7S6coMJkFJ1ysc^rwny)gA+1f^P_dAy!wTSzxo2rT0
z#;f^|POGx=v({o>52k2yLjuF1{v`7zd&e+uP)Ff3`eru*!^JaD)J)YzD7y;BDXa>Q
zOJv6TH3@g+s*(L?MwuSJywL^-dxc|S;x1KWoX4D!UBJYbZ(K%M6XnO=Slaowaq6oF
z%^ZZ;Eov;c2IbBMj8P!soVHRg?vwX+&-&J44vR8@CgU$K#bd#Nb~~#jaW5EQai^>I
z5j6KV`lS;Sg#*Q54HA_*jGA7c_W^OJW$~>PQTweWk-$FHFTH!6kWYO6IdXlx%6`!3
zBK?p)-oNwfMOWS>oNwtewX5)gk=iI!(W<>zTGDyUlE(|5De^oYGw3>F$LqtQ-2LO3
z*T?(Id%F+)w(C*G&0jTn@`Ij=y;YR(cF*IVMU@u!DUL%J-FkZ^%sat8NWo?)b#?M8
zpC1tEBTzfVdg-tw$zMF24mbxCGI0x8Uwy49xLBIfFCFkyB5*I+**Um$qQgK|KT5>K
zUm2`e?)ieO>LQk*##AacWkLQ9q6p9pX&UGWOMgo>1&&VG1_MWbTrzafzs&v`RXCd9
zB%Id5prW};)Hf62NVm5v-th%2hsoDbi+3e8k>PLV<zM^Png(b<kG1q&F+nS{u3w!x
zbOC(nOrKwSr(-daYNuZ{i&QRvqCmmJqXp`O6iPQ{T$f_rKu7-jgHH*$?ThTwWPnm}
z2@Q9%sy`Y!`c8pZs>C2elM?;w-Dk1_OU%hndhV$d<61#frK4UoeEYWh+`yp&g<Xks
zW=L$wdW84+j%WU5(Sh-#kS~yEYsSf7@FRQO3kDvoeR_<oz_UWwtGFPxP@LL}18t;>
zO=*+IA?2ndl=uFaaT#2LLyE%@r_hrnNRLsBq_w-yOA4bP%u)(#9yRMo<M+0PWytN5
z+m@)nb)pH1mYkH;#;htcGo45f-xV}J_kp2q^KaB2w(LQX*kw~5QrloHYwJv|6CGG@
z>hJ|<Ja)+hx7s6iTnur&4`-#T!A7@Hb3I7jV|B0WMU6Lo@_%1;BN7COqA+BHK$_FH
z+xqx2R}juKEIw1gr-bibGPc!-jH)q+&(KtVXg<X{$PzrARbQQAe<x;lZm;JeRxY-v
zUeY4mWGOAG+8T$ln^_qEj_#dslCo=xtG73n!Dl<mQZipcGjN7d+CBXkPBG|5FcKxe
zefI-q_sWFgvpfx(^R$d(HoN<H(5)BtpU37;<FrilhKRXEfBK8rq4nz+4N0>yRFRe^
z>6r<)%^DwBS>V{imUu6LrsnkLzrBk~2%m(+Hzw;9&9hN7<*EbkCWl7`1_llnby_%X
z#{#)%M2k<0f%Bz<Wt=N9V?E;=yVfyh<h1am<L>Vgo>FMu)AZ3xL@=wlVpB2!s_Mm<
z3;Fen<P+gXOqaw-)hwOc@LR^lVtiu$Q`Rdp`JntUy8<}J+l@`0vo&^iTs0+kT9%lP
zn>sWx!9CJpql-G~PDk(ES&Hr0$%^X>j8hbp4AXArD-0#;uV*xdKW|uSDCEg7Z^9{t
zzwxhbEm|z8VO;3xdsay)#6DW#NCG_^$h@v&@y{wmxhaJIG6tOgsF4VJSWHz*Se^&j
zN{LqB5GuTt>J0`@P&UjQCa4PTjv-Gts@=+FwVjva0!-c!tH+v;&z)p0YN=W0sEDSY
z^k~l*Z<J^&<*D4vU2ePF;>kt<TZSS=aTfMqjbHD;w3fPZO})+FGW!%I&6K5vQ^W|%
zS17voBQq;I%gQ%|V6z4(Sz#So5#k|3smUix1$XrpJwK+&x~AD~i?o+h58WBHqc)rQ
zRm&QB)E?6>Ceshn45anH|J73e%a6=(LLEyhJYNL$It}W>&h>u0RcM8t{lWfAJPYXF
z8%C}*85a-<#msC{PyPz`rxgv%8lMR0p>*EWqt8ck<wmNIXWrjxfTEcFHPc#Ip0fEA
z`)0TBA8NEN2-XV{*j0PF@%9K)m(=c-HZl*;O0+a6ddJZ#xKYrh^8xqu1)7?xQJ|v>
zCqqi<6gQUg-Il&YD6^+12}++3?@wq(kxV-Ua9HeBvSo4!q{{FiOLz&SxSqRgnY~?_
z5TNWv$CD$ujw>AxXC@k*t?fB)H5=c|CF|>JIDsxA;3^0Rb*%{}DnEmNl-UuJFjB66
z8=aV(HP9YoX{s!DHNYMF)t)FjoR#Z)uSh)Yj?4%pzKWE={EvO^-lJQ@V9oI$&ca}}
zNi7_XW{!s`Pko)0(JuA8Tz_i2Bc<-|DmWnsRbe<QDv(+ysS%l|!o6le=+b0tW9JKj
z0c89#rZXZ$V}Zh~RIZ^qQ+buu`6?aIL8wZcAS~YPb471UXHxaDio}iBMlX6`RCZ^#
z{oJS!8H^wZz`590v|QibGNQ+h{cFVj?4<#}KR^ee%?>P6=Ts8JZXxM1VswhLZBW{-
z0zgOP07O0>&|;DVH2$Wt*BDMh8Ap&@BGfC5!m@L6l<w>1i2iH|+V+Ll^3uJc4@(+l
ziuIZSa{Tn`djR7nk5tldKxMkx(hLKLtM^UhNFFk!;Hz-ayaeXEJa%B&aedBVm{sWE
zP4SvwD@m@}bE-+=1O)i-mXF&$KiAR^j&ZIinSzyg1DpMA0q*=oklNdh!@J5J35SGA
zgZZjQ((5rN#!>djD)&@>;hubN2gv283JZ-7(iPDW`FiuFUjx}H<z%q5<7$V}skB5_
za=WGlt-UprJzuK!m2mXKEhZH<f;7qCHL4QQ)9^OOhI<HBV)JjF!B_GcHSfG7#G1|L
zRSL9#POP5W__PGs=;Kx|nn&ef$NWMPwf-QoIxkdc2Jo5hi!aQ);=r+cq-6RL+S;3f
zzn!RJt@5@10AiJT$LnojiJypAub1G|k`3<BeAU7+SH#ggUFrj(!o73TM?oVlUh(kb
z#he8@ji1q2)8ocuL7EhWf>4iFbx{|G4|pHl??uFit3n`g0)zU(NZ#h#<Djlqyqct@
zcuS{FH9ChY4YjJ(@ZX?AM-hQ@H@drj4TVzZ<cW{gJ~)dY&nv8uhWEWTG<IU;YCA!q
zMW|NxPuMt0@!0Oh78vry+cfA7_mr1&k!ZlwwmEI|sH?79{4lV)wL@)tFlKdZa9rY7
z@p%;J4>M7@nMvW@iqjA&ED|l{&{?^+{rXgIS*rG~<8T~E)V9eKZv(NS*i>Nwg-Rbt
z--EqLj-d-L@)-^#yqlhK6*T=7&nth99zp<wj$4bU=~~jn{)pJ$S3^(J_9K!%RijX!
zl95vdKk3Dfy@(#8H13=PvhWb6#5=<4qe?}XK1T17|EC-GOtrc9Ww$OBZ3@gyEjr#-
zyooP^Fx5>*O)GeYHVG^;In)HH_m9|E3$)tI4!5g;{hb7_gh4XdFkRCzuRIe?BAmBX
zn~_@I!yKSmXHR)ZIT7YD6ttE~LmJ50X3w3PSa45Q(ij&>d>dp4$%?OxBN}+TM<V`{
zEo|ciC(Q1#PFPqM07@^x-@cXbirR$QVsGd<lWFC#hCrPMDyNTDTXkH&nN9V*xQzkI
zvRFJGbr!2FS^#3ytYQD=-e(TvFKfwE^v!F+Pzt+3N%M{Rwd|~A?J_waW2J(7#rru}
zDxF75u7)m|_Jbnvk45oSb9{x#p;7MlFCgtZyjfyP)dunBx3L4W-XCQ#iIauX#UDS<
zVsHCp&!XMpymqZnK)BA69UO9;+$?%Mi|LJGX8KRUhn8QxK6(%R@Rs(LlQ~+>-$3FK
zb;h9z({PN7eEZ36rr4U&*Wt5Q8W9R2%OPLru?3QV^~*l@zT3DZRbl5@D=f=UEmP_A
zj8hHWo!r~!OEULo`_PA;T+7!3*NXF?T8Aq6M{)++i#E~LIt!8pX;D{O{x69M)-DO2
zx&|tYC#Hmyq>4#BHBsg#-k&T@W_bz6*4b3gCyV5}CwRS|0^#bPM9ypHNoxdI?{BAE
zcWfqNP`CT3A(L#aA-IlFLz;^N>D5e#cdrj9SyNft$iA76o{-E{SuVH>k&jlj!oNw=
z68r)R{)N-x9wHz*K__Fv!L_TE*}sLkoh#K?8q;042MPNfB^X>LBMa^((tDC&GXk2s
zL2O#&7mIN-vNoZfIilvNT-fIdt468&eObJ?(pOE2S%gXg5@#I_sjr387~fxRSP2cb
zx8nC!i!7jr)auoG;0}mh0(<A(Mba(%kzKuJ=p~Q}QGsY>e-YW?*0*-<I7*!76~iGk
z0hQqX;#&u;yo$$P3ufn=2l<Q}8a!(_R9vl9V~1h&2yJqI=wk`%rOeJ&zjW#Fhs_nX
zo1q>LTo?Bf6xaRq1PK?h$SVs}lG9bkxCXCG4Hu7@T#Wa7cc(bc1DKn2of}}m1$okS
zGn%*=gLRAE_r2=ulSt2<gqkg7&J<`p=P*Rhs%4w51s|!;Ay;ZJti(Q`t5hlcI7zT-
zsnXQvPD{!}H(k5z`JRUD9HpnvIAR)#w#!;_t1J_TnLAjZ<k-}Bl=2nu`gw?ua5bO2
zlVv${v;K7m_-8=N1{;M9PYb)#oVg{hD{%GFvgb7BZbUwB{X-d1`|x6n`P1iUAS?=t
zK^F^zp!O$nLXrrV8~_a|aXme~Sk}X?E<JiIW-kF;!apw<zGC7tK+sJRfWR)f9Tp$F
zB0p8;(9+Y(u6SHZ-vi9b0OJM^%N2@aby}h@jbK_zMd?l|7P_HP=B{a-{_s^^d-iVs
zRb#P<lj@1bfgsWkMVSvl)9S5+^r9%J%2+G;h>b<1sF(H?2II-E#=%ttkq^U*RGHNy
zoQ6d_H48cf+=Rss;jtsT&kAvVqGqpcdLW8cM&EE3bZ<qhii6Ht;_S%`UzPVgr#mGw
z!k7+SCL@lcP#=%<thU&3nrvS0*F6J2Ji3{_TU2xHbfVh~V{5WanEmitQ8X5?wp2e7
zJ}sHUKe>Z~`R+%Bg)hHR6sUgA?FB(=WT|##$k{Ml9^Xhmjq84Vl-)jFghV6bh@yab
z9x>UEfEft5yYS8rhsN5m2HExKeC`tz4?ydZDrM+hx;J`=5OV2PrvcL_zeWahGZPUI
z$uSyj^_Jl~?c63Kw5gobp?EOy_b8KfzRw)G!KZ|6lQoZG(NCjD3<6s!s6&&k>b)f`
zG1L-eAFJbko}BeG2jysJRz1+zL{xq&Tn~77PLGH7zsSMj;^95t=c+d|q2EVB%@G<s
z85n&rk70s>kBagPJIop<0H3(qK+*oWOS4K^-&4IcP&pzuUHp`?_&9)+p2pNQmvD7T
zg-q0*a|6hl0l|{6z=T70dQOdlpal#l{<Bhe{PNjjc2ZF-mqR+HmB<X~bp4s~{j$sY
zE%Ef3&8~Xx(99wa?h#;FHH1^R^A6g7QoAnR<s5L^oTDz3Rk;s`(^_RsIb7Goe4R<K
z8w@ZW7%Q=yE;ny($$ZL0HT~$kjUH5B;<+((x|LZ@lC5CD7>8jH{P3CD`AB6Kk4wL?
zqEp0OVdwSzD-(K^YU@$2Dn3h-K`Vn-Xn|2GB8r11LE(ty;pX&o_v<o2LP0I8CP!Iv
zL2fS$@^xvTv0KXKhe~)fRM+#vRfCSb&lAga@oh{vDJrF2tzut?)}J*Ziu02Mn+hVF
zciDBN0<6+Vu3YLVKv42IK(S2UE6rlL|Ho)eekFJYb6|T6bJq+<XtPs>GCd33i(<?A
z&qCwc5qX8~zATY2c|8a?fR)D{4K%W6_yq(8N&sR~*=mfB3FCcT7@0t2X56o4oi2Fh
z`H4G;%A}`r8;gHm*TUeylI!n)_a&E3qHHI7L7Z=Lt;A)sX_M}6hzWh|EK=ShAYPZ&
z5Ett-lGk-{91%O!t%Lo81+YZF-+P1AG2>y*Q2QCGYTc8A=A&}OBnlaj@@N~Zrl+NB
zDrd47*9Psx!6H5(iMI7f-!e#{R7p5%SZ>QN>`ituP^mwRFZ5Gar~KHEQ*|^axF*cW
zNv(iDZV~^iF)Qw+-T%66zW;8zj2DnwHeIOt3A3s6Sw+(}U=Uz4U*Z<(A0bWESfRiF
z6ez0V;>VqoLidOgLq@h~;0PDwiH;on)q-$5>`*f6Oir9d=mauG9s*QW2g`p6NwcH!
zG+eOPaP{0k$5H9Wa%9^ZQyjeav~cC#@@~1f5)!B`DK|MvqUkLu5v+?P2l}NIK!K~z
zPES3GHEt`?_szL^Z!Te1Z~9_OTrjQ8Bv^FoqD9aAp^FAuphGGk@N;{G(=9)l&x~u!
z!e$s4o_^NUeSJHoxhqCXTNeAsp|1WA(pb7!DHg1eNB7T)W3#AQ$A}Ls&j<2H*UCWe
z?|@VP1M_#j)fP`OvYZ2<?uTCCCfXYEq|4V#X4_C))IZzL-;VK9ETC#?d84<E0KCTz
z(9;tGlr6|;Xojvd!%l_Ho|DlvI<p*8kyQ`DP-0HTvx2}O(A)<GMn>YV4`*jhe8C`Q
z9#FT^{>@3sAV<w;YasXLP~v6TC8&|j^KL3kV{tDM2S0-t1R}w4vvQ$_0QEEm5ag&O
zhmX?#XO1nu8@#B)OiD1M@O@cHH-Q;hpp0)d3D@qcAf7!I$$tt>p82=!Uvbid&j7mE
z(EuE8e3cO#9GtRrdhW1RSzqU=L`gP(rj6qfK<fbLJ~h{pnNC;)gm{4HJP1gjzb7KP
zQ9(Q8I{8Z^`}ea`1~K^A^OqMp2<xFF4o5TLf=ZhI@csSuhzoqFe9S0gGVoW{UYIZ|
zm?}U=D=xmS&Mt6RFtD;JDN?VNK&RKH0SE|U^5{SW49LBtbpd^oy#5FO^-8$Ffl6N^
zx9AjR^Z2dZ-Gn^s!T<2Nzm4Z#ey_*~5?pxRqaIvXzFy0dJe)gmH5O?V<Hn(Wd(#_1
zkf7srFU;Y5LIZ$;6=ER$0g#UbFaZn!ur{zI1KM;WSW*A!ZSO+cfFY!wGx>M3@IRhc
zhrHoZ()Sy~cK7!7-mX^<DPh3ze};Q@JWf)B5QSx3259=Rt6q=NK%d?4LKqHfy!{Bf
zXoJ&n!P<AMzl9P0(-r;YzW@ElDREFFIYHH8|0yH|9Gt73xlY2S8h&3-4oog3dd)hy
zjm^y*$ppGw&QstBEFmQodSL_~G5hySF32d9e_)`Sa#ZzSPS;YPcgrHLPFbCE=A#^L
z5d<Dcx&QH7`^QDaroZu@E(6FlKUGF;6f7-100YF0yD_(zGecE)^4jhXpd1VUFsL0s
zQnK#=n%h4b^dap}=0yPKjHLbl?=J%$)J8ocU`pKr{u48h_S6TPGbJmVA+S_dj{j92
z51_Z{fZkyawT+F9t)|P7n0Q)^B-8)zPxS&-*R)LiimohZU|BgIi($@tys)5t<^WB=
zX2a+8a&J7}=v>Oa4YZo>1G3a`_*|-YZsw@4VE<!I{onsf?hu-f^LW?z_7i+Nv(WSh
zsN(W=i$1ngTA+;`=&mLM&{{Ft&2Hi@E_EH_MQV&#40`?+D@|%nCrdw<eA7o#*qr~G
z&bJ}=sRbMV%lJ1*^1WK=FO!7A^PcQAzm!w3vCTDt>6-u7E0pVnUTduW@&%N6(8uSE
zeGQT}3E~&?WaL~d@NfcNy4I(Q5C_2hU8uD#jop7Ul_iP@VFpCXw}k$h(fjY8AP6;8
zxJwb{u0`K2y)bx=ra;E(s`52z`VuxWaxV>KqNx$wpIO0B#^UaWQ2hld(~;fJJII-Y
z&}K=}USXYW)2t@LFUd~PW#7G`(;YSCYe%WAnd3=(sVK(sWC^f7==!LG-vAiyMB=y$
zxGf+|6luHJ^FGfRfHyh07TjgSabc_gY2^tZdV0T?6=AU16GryXzBmR6kDbj#8Wj~a
z@O3rzy@EunJ}9(eET1$xA{B>~?4V$q)8#NLY?nD8Hy8y3=Uf*Q<7Pr4A`$@32j4Z&
zk0d27Apr=_%wzp#ihZ1+*Lc7??K6PJHJIJ)?ZnU7@1w3wPukRd$GtN|R)O@Bfsv5}
z(8J_d0X;0G`?pxwUk36I%dd>mmTW;G^_}qSO+@YTiudbtwH-cgm6*$7C7IdSGK{e9
zrc=e^Wg%|a)FonU-C&-WSmlY4n|9Bqb0J;46|)Q>L~nuWm>PTE`Lt5dJeUj8gCcjO
z%lh|_TU+JPUu1Qzhn-{zKmoLS6R@b2T{-}Mcoq;D)tTnpO|dsvYxAXg0yKEV+}zyi
z7n7MxqZ`lxQFS0ZJx2tKes{ApaT(y(4D6q?xV!nEvJ8N18x;?b&94U_+QVGn0s;bC
z08KU$Xs%D%N77J-m^oQsq5i-JY6Ycu?Yd@!sT9AI!4JlMyJWBAjifP)?#t|8&>4iN
zvZ>wT!45H_<kVG0@@wLs0cB)G*NdAOIDr}1w`9QujvNzkh%?Nq0oMTEU`m2tCjt$>
z5Qr600ofeKJH?C3OT3NHe>c7V<M|X1D2A3p6v{}uBw8^75}T6h0qKvoEBk~cBOFx{
zGWa)b3P#-CU-8eY4yaA1gQ63>>ZZJ!qY~})^0F;nl(C(#XvcTC$r^cZNP6g>S4@&D
zBYni*5Pz11vwk}ZYA$=wSOCTlQVOq*v?r4yysa*@S>g?)TfA`q)W7{QHiEX!mYnY{
z^tN)7t)c;IAP)GnO*aeX+7@c0baW%{61@TS><Xu2_0k%hS?o*l(gHTb1MJsHSDpy2
zi(tOP8n0)!dq5dM*7#it=danQ`27u2y9-^HGZ>Pp#;psBP*b0u<M1nm#r8nl7c~Fl
z#ah<sbu@B$k$}BDlXi2~vI{vJO|Q*q`bOu|8S%d*!2Zi7H}w$|Anab8bs_>=mX_Ik
zAN$e-l)=%9RyeJv(iiM*$%z9*$#?Ky_w{ovy}iG`+saNn{{~L%{;Xw@DXkcnt)xID
zUoCGK@p{cmR)%0UC4%kLq6l3=Jxxd*<AVwU6|nwu)a+~u1JKNiCS>XF>nk%VJo5#E
zl*o3CKI?#`@2j)jH24L^IV^2;n-B^(;G+Q}f?oj?PUkC)smtvwEQ&k;Q1%QB8bG+H
zPQ3Acz4f-+=z?Y}0XtckxnEg91Z?{nH0B1OHEa>X>Msli(dkls4CvuUo~D6|f`iM9
z(ESgM=*T`J@aO>Z-`A1$VTnx<h0r&N|IKKVx?)&2)q*{98rr#LUi$H`*{I)U7zT=X
zY(7);zECyb^8BFmmlp$U<ATe6kcb7dat6l6oY{;5|8KTa&K;_4l8WnT-I*T~+|Q;e
zd$Zb@9QP-quR<W?VfHjxcVvU6jR7Z`|E`&A_jDk(Lef>EaCJ<*b>h1%qk|pKmeElz
zy7}H(37bioiR@Pwm?BS^r>jHVr@M19a;;V`&-*n$M8yYSSKazbkw*EcM+5p-4zvLd
z5Gz;aL>g$bK`g@tXSQxS4`l8qf;%UM`{JOoVYXFoj^oONLK()Vln$8_7U253<+o`-
zYOBO)!STt!9{qx(q3_3UQ+#Pb%q;jhOeqRbMTrD7cVO}7KAW1F9;`b68y*?Hjgqg#
zOFOkX;9VV*5i<f^Y20lDJV%eS97=X~MgJqK`_F(5@I>ydFCdwntY`N07OMOj0G+=-
zQ<Ny&1V5PfCLERI-Z~c&OmaeN^^sHJH5{zPuiZ55R?He*%S9C9b76!IHX(A|PaEx?
zWGKUjb`c=t;n8m9_W%ge5>*@GI1LC)q%L6XfR_$2a>2zMY`j+d;s22K6<|?rUE45%
zl!PdtG>D=!BHd+@!Z0)<(j7ymq#|H}goH@Wz|b``h$vk{BPHG4@b5Y2fAgI0yuRP(
zb;-pw;4|a%?7i1o_qy+Uv9o8&Da*K@d!(!k*X!&p%_WuV>qQxe6Oocqg^h5EsaWfE
z7>@~6y|V{{m5{cd^MHxN12E_7eFuU43u%wdv@ME<5skN=g7?4->Wj*~3J-q=rf(1B
z8wZxRxMAE)o71Ai+veuGKcmoDJ$EFNT9ODl0z(W*l3qJj<r>xg5Y>~EpDYS)2IG8p
zzkiaSsU@G(L7KM4EROEP%pFml<GPLu5pClZ71dc6os!^gRU_Dnc=hV?JZ6*|aWj{J
zzB5)B<=0gM{UUMIS#j80=l8@y99QDfqPYaJj<&%nEN^2u$U9-O4Luw;DVqhVaLOxJ
z=J{eWloN=BM$6Y<7rU()hI*@BbDy8bAU~k5E(+n`=Lyxfljf;?`ip$?pU>bvQpi5H
z!|G_oZQx*u=4a`UySQG2|EPJRRdato+5W*)%Pq>D;-cc3MF9diQn54T{Q8Mt&+)x7
z@t+^4Uswn?v~>(_g<eG=WDZe^JvQ^_5S52twcqwD<snc*<k%xn;pRJb)fnIp&B-D_
zTem|q^))le^WjJQ7%<wdyys;~TQtm2C$+Y675%6~VoQl2(}SW;=I4uD4i5bwYP_dC
zfZP^Z!)%cxHRfx_ty8FA=rKdJ0CYtX>;5OBy}>NB$)E;$Dd*tT%-}Z9l`i0jDb-1N
zk29=j1R#q$!BRKL>X$%A3bAU0J_OS|P*p&s{3X^?X}!&-U2tHYt7Hvi(xV_XNv(ER
zQVM%N*O_eJLAN0M!~L_q_eK*sY}m+iA^kaNh;LUd235H#Rsmd7=%udxlqWm`$KU(?
zHWp7`V7RS$N&4)#=<tHN^v#>!Y=l@?WRrXkEwA^~EMz471eyzB$%m;F^z2d~$UYo5
z(JI8_5Wm6owPE85Ajp&w7hu5b15N?6HojhoNmH#-JjA91j&RsMf3n}nlF?@J+3`JE
zL94X8fyKa+xP|_zLc=9?mG>Y@#aR+gh%^ddz~GVP*LD%F7{s-Bz$Bp1X~@cSY=Wd$
zX-Ss+ek*US<{ZwQr`i|hTDCW8%-U%MeGSgf5l3DltebpudU~`5n|t5U><fy%#d4Pt
zcU(EKzJ;;MvPO@vCde?dwuF0*FLEUm%nJrS1q_SR=ptay1#gF(Lwejc)8|d{JN2*@
zfQ%*1LRRQzWq+^CZzlTJ+~B-evLS)rD`%Z%tg+FVq56&{*)L<e-#c~$4Y#g8msnIj
zJbZmq?Yt?ciCUrwbQ(C>F?_*jo0bE^{1VFWsl^rwGlPFmx&M@ao27$?&ETUXcds;I
z1eZ)UIxJpFXnrmLWc6L4C90LNZMDwX`R!I^egV<cYJ(?<$<a51J#@@Gq4=A(Bfn)s
zDz6m#f(#C!w<`}}yyy->RyyeJXOz=M$b5V*94Bu>LjFZ7FyvgwZLPqri>#v{;SnRe
zqki6_E3yg<oq*t4C@PUyer$^Nq_=n!y7R-}sN-OD*cE1!DPIfe=2Sp+&@)p9*Ii+S
z*>;$^i0yWG2#-1hO6*Srg6{iGI(m980K~loCcxzCrX9{b3!dcsWf*2KFur@y+gm91
zLs9<7@cADi(q?T}2pk0$<#CRei#l7<9=!VrR-p@E^D;em4|~gU2VU9|Nfe(7qVW$|
z{RpYL^Cs0`j7%F3XG?3&{N=6{5kKD=5powJ3%XY&<-?Zu7o7vc1^~_0N&7xd_X!B*
zACcMnz@i-=V*S2|_ONC?HT+pa5K;fL(0sF$=7rY_m+R?sGN#viBJr<i=TF$In?+c^
z;q(IIHs1>=N6CH&=wb}Nm7?ct{w*-8QZbzRdWSsymPo&&a?#7(?ih9xo^WNIgVotO
z7wlsdVIZ1_k1`jr2q~B#r$e=u$FMSZ(b-uXK3}oE@BXc+@sbv8ef%BEREY;mzAP?3
z&~Rj0T3Qy{=<@n{#DG%W1YGReHF?TQm!MVmq8P0NM?j?4tSXjX4~jS}e`9qHuS&}l
zI0h0&s?7Z}B=r|*e~KN2f2h*%g8anK4er9NcimPEwt0!Bgn71aE8Gg`b&lUY<ox!4
zSNg&<!CoC<rT^B?i%0gOGkMF^Z`q@4W4h)A*lre9@6nn*Vw*Szv3*tcPJR!Uykwn+
zB!UpH!PwaNp$(C0i}w2C7;ro(O^{ND>`tiD4wHpl0|vKNJJc>=)RVGT7>io1yAotR
zh6}ac=IZeH`R1M`zq>{V4na~x$)0Jhb@z&9nymqWSD0o=it~>ukIg0;qnlb!{43--
z1pvz?J)ypQGLCx6B21Q_X5NrlD5Sm@B}6C+W|^PQ4D>ra$Xp~zwIh`4b_E8A(XIqy
zAL9hfTbTTgKUKL!G1}Hf^5~T+`R-2=VA?>?g*!hyCUX?LV4_`Y@uu#`4P<niBBTL=
zUy1maR?5av5;F18;Sh??a$VbFZsXs<;GuNjnD8(*+>wQxPU2oioWMQ4NRZ!fYzVkW
zQ%D#%Hc^o!d9!@WTaM+k3qw+KX{XEvev;E31IA{8i(4Jys!~VG0^i%(awzgrZ^10)
zkXtx`b^HX})R7~#r-!Y5;JU{f6_Z<m^>m^VswU)7o94+rrBhKRc+GfHUbbEClU04C
z9$RJypcxchO0qL?wFanQ#YWhV0J$FNI+=S24%>Iv?nM%6%Z)~OOqVxEI4D^LGSd&x
zT#2jzQ))QxB~qlAj53J3YBu;8{O};3lq|0Y4n(L(CVgHtxAlqom)Gw&iLlomE^^K-
zK7PaB*jQO3w6HV|WVAm4;T5)$B;uH=aHRD6QRSeFv*%sCPqIfidM<x*===iV2t_x!
zH7a34#maiR{wl<L8$YTK3Cq(GRvr_!<0`i_Q5#;DdA^N%?tE;XT3v+Dty>SO-{R(p
z)Ug?_D)i5jkc-{4797=Imx+@4Rm2VChj9P8Y{+-zp(VaI$2spQEy?gl6^;X!BkNu#
zI(s7%9@nUL2r5idXb)_WYbK#psi^mBG<Ibmj1>N-5LPShZQwtU*JG-bC<e7uWPZ&Z
z6>-IQk3Oo9f|5znQxh6Ee^o5%>~ycTg|n2Cyd=FOsvvrR`8YUG1_`W4qVM+}P+95?
z1WY_8;dEOWzOIp>)UC4#ZWgEdqTqo3=RsNT3!f1EUxDvqc41eWNYtgP6yb6bB)tu`
zRQ#to+68i}HAi+=Z$Arr_?++RNqS}`vb4CIA+D>x-0G}!#7+a=EiJ(!-$twlre#t-
zlV2uc;hY72m2)qVO)6POKi{cxY)C9Nh_Zgk*CKCTPkq&CFn8^ON*Aqcm%X6<E25R^
z!$l-G?l%C~*b>fLbF)iQR$&C#ex%zY2ziS&)VDAmDa`?$)Xf1>F)m_3OZ%fwDAdNC
zJ0-;)`E=}GD4uf;%gzP*goP5a3y|3lhK0O#a_1<xlL2tqLRUPL5(S~qT56)0e>&HZ
z2pTP%o|8D#+<?MN(QPd+x%AOt`Du;ztBDq7g;3|-;^I4S-v+NzAugadYG^nQ1BWs1
zTI?sJvlP2yJ6xsLWa9VptWFYlbYP<`R8r`K8fUciefcnj&e3E*6Ni=Sxc-dO`V*vm
zDuuX7aHQ|e#&+80*05<A+D(VgfuG10t?KU#e_48_f0ePLz*Fgi;?=4}e9rOw#mFfu
zSYPbjU#pHl=KqA`)+vM7*|WzbxZhhjcJD6GjOGu2t&e<=!Ue&?7`IUUrYvF-F7vNn
z>W+(`whUHshu;9BMDfeAKS20;Z*H?}T~yDKDnzJT()=XxJa5a{@tib9p9O^qla(M|
zn;e{=8W}Qci#5IhU+8JN@PQpiT?8+kFYF$OU%D_a%w5_aDr+swA4734R-gtJWZ;&&
z^Kv)$Jns(*bmK&TPD0t&_a8qlGo$)f8Uu?;!Mu;f6xF>NDf0aFdJy=CWMxn*0R)U)
zvd-k6w!u#|>3=M+-0$r#w$z~dVs1_aTk;MIo5T!%IL|N&#>E+=lDJz8oZqMgV^ND!
z$V@<!6MmI&d8grGV#eOk(9o=h751O3Ki47!aDMJPhFvO#B6-uhzhg-pia2}x`k}cA
zHM|psHod8H4|g6%wz#J>G#Vf6?ha5ZDk{d6OuW$@S87vugyZ2JEDI`>Xh7biL2fbE
zmD1WxXh&q?kBZrYo=zb^95ixrd$C=>KTV4M>_tvoz1Xop_MT1E8+t{EJNmB;M%`rY
zr(J#qO&+X#$llRm#egeP>1^5+^ySN!o7Dt{Wn`)W=~ssrMk|UqAORcKKj^bk{E*vs
z2cT3Bq8}j<=D{+2frv;wDM$KvU491Fb7QKhMZS=81DSa#XwNiEe3G7@m9;_kqYc%!
zn9P$JpQHFD=6EJir?jhXR1Uj$a$DKh*yd9zLSGZn1t|mbA~UogPUmPBzD~QI$@2j?
z?7V8na7(3{%!fUfwbm^h*4yrZZl*vCu`adR;&7opMKn-`$*=}Yvsa$<v7EbA^%17o
zw`O%=wa39*yJ-PU-@!iL?_dKaTQ58dfLYphy|1`k9BPsRLISFgp(n+%@gM{rXOQ`H
z;G{x)fJ4kIl<ey7EvWS{oK<7@8%>fI_s)OW2|0f;WT=m68n=|g1~?;IsU6B{@4bk&
z1yQ0;{exHaVSD_-L;VQvs>iH+d|g~G=`P~^aIeOX_@`FbU*sLX{iua?g6Z)xH=0lQ
zbIz1hD{tGa)e-5mK@()B*t15q2^L&;Hdj+BDq_FAF}Ic_N1z>tIy<1;hD<+XliJF<
zA0Eslx7G&|7{Fo3o{0_D&7a>N4xZZ({gR}+?y<ja8~|IdaGvwL!(K&tT2H`)Eg!OX
zC9S?FUPs<rR7n&gD(&IAeY?lh)iUymf!59I-FhYsPjO)9d7GfNH4@~^H=M7_h2RWw
zFozOs7hagVh1U;;_udX){ZTz~L7X6kp>j6f`s2H5>H)@%){zuwBbbqPqYUG^GCZU8
zgwzfs$$3vxn)>YMoZhH+^H*9tfABkI!3YownlG4g-iCaNdnCw<_Xb0hmaOl+o_y4}
zB)Pu+Y)3Alypn*!&7|J?*+)s(QlV!PIpcXO_6d&q+#b<IM+enkKCRTmi7wBk#hu$D
zArx$cGGv)AjBu2q79I1YDYG6zz{r4NnR1VrXc$5`UH%vn=v*VvDWP%x!WCxF3jL@z
zb{`s9a@$9?7jkhamfr*mw6-)B+mSP7z7e(=<h%af^?De_G;wdem}EmJNPbw22?BSw
z4l2J2u~BUszOj85i12w50?h3Q-%Vcb9?-hf{4+un*6i_wDyF^>&DrQdIQvaiRh3s=
zfdupL*%hMnnF<c0Xv_47b^}8Phy1F8*#xpVo|Y*Iux7W;B~4rYeg_4^aqfI|kF4L(
z4bLfAy|O2#-&#N={Qx?-FX?l?i0oos%*}R{k0PH8&EJ3~o-Y6FFQNljq(FuU;t|)B
zq;wKU7yT^{frn&Ysmht+heFSmL-7#dV3_9;9vv4Cj|%X4%~tqE;bs+80Kk1DYSJTj
z92g?TN%^3MCr+p#n*bkr1aim4YXIHxSUX)r=CzE?l?)hKzeJYVkMjU4{z5k3`?*u^
z@b%SIvnp0xcTPqThZMvnSgYT_lhJ&$D0NE@+_KykS~DIv7o{Sb!9bysvu5d2^;OFp
zouaQ?BN@tc0?YLCKdLL8AHOJv^4YiN7}eGYE=Kdw2Ty$rgs%)kMK@e9d>!&ISCAXT
zL#!<N4BaP#DQ&SJ<;!g3q0;Z=YZfD<d`?!IlwVLtLXShXq`?0^uT|s8H}b~bmZilj
z9EK!sUcXjb&6W63x*_%g)Hy^=7|h0tLe*bAiL*}dHo2dg>D}KU%CV((EQ2eRB=ece
zKxWwU0j%Qzu;v-`66#$}4j1%dk_qQw>GtNHw&e9m9nZ;z;M>LxcyU6u@uFeC0xZ_p
zx^B^SF#ZRCzo>#`=0T$XTMtfy`cUh@^dx{{WJoJV+xSL(tGjZ3{OudCs;cjq936pJ
zFqEZnBVGJc5mI!rDyZ2k){uSzp>Nszin>_PqN@%Hy%i-gV%qeW5|(FZJG(pI-3a!%
zZmG?}$F!-y^Q5<X#{ta>aMvAzo{W9SkUTyrBrjFQZbkSToK<o6m<C4lv!KatT1S1o
zg0ck&2LDNKhO(Uz&6Jf=xp6ey#NQ&}*YgY+ND}4EHWhy4dBsxU#*ToA8w}UEN|V!U
z&eVyyQf=OEkr2K)WZ-#w+-CB&!0p8qyKZ{K2Q3)Q1-l+ud{wGhx*ZZ1r;1(E9eWaM
z4$@(xn^%uw9(26GYZf96kX2Y>c}il*b!%jn)?iL-R^To~ij@z(s0kdK-ve=6#axot
z`w2xi{7)o5EKpz~VS=7l)T6K_-l}!E8SV`*?wNa%$P?hUp2Hbg`t1JaE*xGB(;=r9
zNhzY=?ZT_)6bc#{W`-~dn7xXO8Ptmd4aEut-^Y*NQZmVUkK`Fii%!21cn07XvYC_>
zkKG}2%swA^Se1_@Ml_?)-9v0`QH*?|y8?u)htJO2w}}uWu7FK(nfoqCx6f=D{ji;T
zYHr=Etu4@kgC_On!daF>KUlcM#KdG&$=*{`B&vd5vlBFO&yjZe8HWBkq2DmrA-2SI
zFdZeGGu8rJ9l`vyFD%OU93m~l!@@u+gl%>t7#rco3tG>XTIw?a;ofzSTyZ-lp>w}n
z_^o!2AhhVjtQ+PAV`6K3`wLl~Ru5iVC8<2#Y^@&VV(iPY^#zWRhPKHOzkb?$tie-B
z<amFaqfihm^k!myl}8p&F!F;C%n!90zg-J0t(9)0cr+Xwb>GILJDhU3Wp!-xTf_Ia
zRU4c|iG_=c&+FTlpB9hy`G{qY9`zi4@I0lIUe%MwW8_f38!j%*c)cR~sJ)bKuUsph
zG%jsw(l(^!lxbCP>k2cj5v6|?CB%S`*2sH9F;3JuqfQ<Oi^d%qNi*C=f%EJGPfs*&
z=u~g%2hb4zVBi|JI6a$SuhsC_JugJtz0M!^w(qff(HUrZBpBl{-?s1jwyJaX<{sn4
zpP-x3yPXuy_a(LKoa9!U07SWcwml&oWN;6y&ut*YM@p<e#8H6(!&m|g7pS~Ta`E$$
zeRkvYfi*M2C(QN(mriOaI7+XA(@@`~TQOrxflwUTfUs7YnVk84j9ik~2jf?tfeF5l
z0=|w$>}*!wqZQ%n9T6{Hs84yPHQv5`Tgg#yYW?<EpN4AoG$bj}@#AFdR}W%G!N{c^
z8vp_<O4K<XVNYbQwQ6>ULZYZ;3K*C@UtGM%I5&A*zS+VFJ;6e>-1JxwfR^OzSo$NH
zGTZ6>5M~C~R_?MaejdXrZ87*F8z`%>tj#hwX98~2q&8mwY50}j`uRoXQ3r7{dV4*O
zc(a`^CNF?_#cW`@d7e#K&Trux{t_psuYB#vC(_-F{NeJD2E<q(JTbNX`#<B=fBk*m
zRmcJnNt${T@;V>u*RE>>R}4RH(a%y3PhAjLrMbd$8ghm12ciUDc<oalWq)cEm{*a5
z&axn}WV4`&sWGV;hW%8vJRwj};B+jpBcCoH&S`vlG|xq3*WY_VKn7BCgAXf?-k%JO
z?!uSrc<^pn&d<8mJwjaKxZi99%%7kXx3aINaJPDs2{*h68nj~8Z@GY9-eo%>;I3^~
zwQ+X_3X04;t(ltR%|`)ymhPs2T~Hz7)g3%wm{wW%`Cb%<EEisBmNX!El=y%hxCzek
zEDkV%v%1cD6`w{wMJf~Ej>JOddKFITls;maN34bhCLH9vs<V0qbGTKBjV4=q_SNY@
zmFxFO?Ux2~LY&t@S1JDnQI(M&_}q)`3U|Th>NDfU`&27le;aQ&uX;Crk!H$f&Y8(@
zWv2mRoe)iGa`7Gj&7xs;^jjcCXeE>w5WXvUJsf`uK*g590+Z;0)rpBG^`cpw^6vu)
zX>(rB*^YqD`X+OfYe5Qx4zE964;+P<gY2W=W)I>VLDJs{RduWBv`I*ooRCS+h_Wm&
zIM1H!_5}}LF^%-TROu_;fNoNON&V!U^?OS5AHQPm%Xp<X*hd!YD%DNh(#<iJOiwM=
z$Ru`o7`$gGP7@1nc={5*S&Sck<o&%>1d&Q1qt}GFucUvP)FKXj&H2DuTEqAxGY5T>
zrr#-rhsQExurgIk_sqkRfX!r24)e_L(D?I-5q-R>?p6WI%}%K01I}@`Zzeytnbnf4
z(`u5Q6Dr(7wdsD1U*qusv+bNf`{5hNy`%G+bP0R__fdu@1eU97+P*1b!%&9gw<JSt
zN~{)Vu}ZXn-7xnsXkk<f*l@Q5hFX{hW)ABVncX695L1o1gvB3-7cHZD(HC~XEUedl
zXGh~^Z;>97yMrbV!z^ukY46SeAA6(Oj>ILW<*qHP4j{>ERkVl+ulNa(G3<oZAfeKG
z&T)Qo@W@K3-%&4$X3WjQeW9?!%WZ4B$zuY=JI7xye|U~uf;p6o!Kvf%9GgPV`t}9>
zyrL7(MTP{_Mqh17S@YPMy@gwXnr@>sTyPxCNK1P!vN!qt5cCQLppSkoz3Pc1Pn>(%
z`1AWaEII7@aFYjNfhaYJMNtQ7^I>k;503Sk+>wEq{MWejEV`khb4yOEJ-KlGh^vgJ
zlLm~ecCeV&ub=pa#1c@m{C{!MOCpOrOqbepQjiGhdsxB<z#|=rX*_b6LGP9ewK78?
zHX!u$3n38+iH3U4&-#c0iSzJ%0DR`0j|!E^`G(|-iP7>h($j!Ro$Cnvr>ZN(1`IzK
zGNpM+^vB#RifEo`AlECXVDcWk`rZ{i%RIL|cZwWs6T)rKpC7IL>|xTiK1hJfPFj(Z
zm#^kmE|rB)v8r`;8j1Zt_pKW;WJ%m-+RxS=HMRXF&8I}{B#`^S><U~}cG<vUFUZX7
zGX6s(o$w(8Q3L}s{?M&LpBB*$Xe(8o(%H^2MBzfHT}M)7D~6xsjsFKiP;V1f&99D>
zsZMa0qjc5OUT>y`n^)!PmBmnGp%a9Y2tH+k{yRn3%|z0bh6F){Pa~za&YWLeP@(1R
zX7A3E(%wu|v5aT+mI6~E5ajNoA@jxPT(Pg3hK5P`*{Cg?P9tDt@NL~9Qjwg(VEPJo
z>$*M>`S$vIvdL|L$FxFK%SaNhM(QnZ*m!RKe2_TP>mwuMUu->~($Lt5iRItjq@BH>
zIw-=#Lg-df_o>PjT1+o7H0`HovHmf5sr;_yj5dduYYdi>d=<~Cp}G=rUqMmvd-dKA
zP7p~hO0d^E)OL@*U`8>(Mz(1j?{BB;@ct-2c;djPKhesW|8+@myKZSyzKB<v;P))@
zKb`^DUr>_*d>Rrqj}s-!(WNy?MrnO!5h<v4k4Bofqo8NEVanLfJPKv>B#09B`NxZr
z<Z`5;89MXivoXw>yGWjz8JG8xf7T^E17Y`y;DM=^x;hOHiUEUV_@xlCMgD!_`}dk=
z24Qvv9^yPjspKS@&9T7!{GBCizyqhAK|%}G$J`K-MVr8WKJltV0j#8+ZW|!o5{uN%
zyTzz`47wcAr8ucM)<Nl4&tplY6U8hzV|P#o+Lr_IABQa|i@&>z)(x?P8p7~dkRr6m
z=wb_WaSg~-3e{1poIww*Km4t)|IfYl|LOaQ$hwW0wfn|~F)XOk2cK7AXwKQ4?Hkp3
zFxy%4#MfUiOdi!fLihi@R?fVJyHY@le#W&ZOHX3@K5N+h8txqog+2@vcb2^wv*tZu
zNYsueo<O}a7Bp!YDe1sY1_*p)m)IfsYYf=mxGV1AIA1XL{QOh|X$0r(Hpmfcxfx@n
zCM4l+ztspMj~i>HSRTi&m2wIEk%Yx@SH>%+R4gpy8^ADs8r$~<ycApki~+#w07FRS
z&jB;!$LFv!qK5SZ_}#;h;%=)p$}xaegY6Up>^N0{A@upL5|MtZdao0v*~D?nMqFTj
zQcrq4UzStU!^Y&gE@!2c+GmjmL&v#4&FSB~k_>M})lvR&ozAePRB6x|B0i~pjY&@C
z#l^+txbQ~s!h%qFA&SG98fO0N*?mAV+*BAVv4&ZK9AFvjdeFwgyavrK)?D3^w?H7~
z9EK*Nd}?A6t+yJ@35!4YZ#b9!WkmD_hw)_zE+dAs0aVW;{#a*C7(gi0|4zXzp!KvO
zL>d#06hlTT$3ED!>*!ZI&#CCt`c}Iv^($kUha58ZZK*WG%K(L)46A3`2KC_fb5dNP
zzG>?L6r86+<iA)9f11d};xVU$<kMy_Kxr;tzW?M&%B`wWOR7?x)_b__N&V*?cL3O+
z=>ovFw{dZ|D4tl)l<{QlslE7oj54Uye2b!EV#=FZSXe;c-23Ar`R`s)d+txI)mTx4
zc_0|n-^F>2)QirFb;3F@i<X*^(GDQK$rLK=H*P%C*Z&C4xCdZBN(=b&7Ssvf!BKjh
zn_HO%=EYqY;-FWyqUL|`kAdgEd*vo;3WJ9H{oE#?;gGoUrC*56YOh}r?o-OCOh}3=
zSfvB|Qv40g3fGSLr?~f@(8fP*v-=a<*HWrA^~_Ph7@>sr?I$Y)0VN&z)MkGn0ROdj
zS){~8I$IH<K>8=Enk$GAdZrmou!P3@;QV*C|DS=?|F}y)<)Wjb^H(Yt=2V`WH`M?N
zK*%?jov0=6uwtHZ`+qtrfBALzdmM#6K9S7+sl}=)3Fp$&)6<sl5=!mHaKZlu+5MAy
z4TRSmfKFLrHw*@E^c2WGTM2!x8({!5b};<!*6JVrFPXyFIjHFgAq3W8*#)6px+Hl8
zyj)zDrE_bfsvRA7|Bsi4$N6un7_cEqhio1yk$x(1)r#P2Bgg+#{8uFRKi%*D{-TV*
zbsXFhFq~kgcl{}8;KcA{ZF$FBfkloB9pV4ig?$63xo=pn1p0)u8}92{(;{C(8mDXP
z;|XxGKbL#_+QJ487W){pjUOu5x`W02h}0Z&zcHkI<&fqQ8}D?O%LdGJKlK0h;lW$5
z;f7_g6o&*_xfh2RlfMzH(k8&e3(HMn>KpLoc<1-0%j>^*F$G2GpFgbivs%|HCuG1X
z4D|*jp$ps|8$00!igg~p4&eOz6a6jlzxGe`-_;~#5mfRj=znVc^GG&0SD}Ab?D)~Y
zry~FD%7n*&-Pxt4C(K<OvOcVpmz2!!fzC%2-NRx3W5D~vKEb}5+H)C@<a+Mp?P@_&
zaV}X&;2!sn<(x@hFSfiVTD8m|8uwo9X&Xq^*(6Fo1eJ-%L$1ZsnYy+VV3K2Q!jgh+
zNPZ3D&Z<dUJ~k*+UFK4yifRqI3y(Q;Ja=7qI`-q>W?=J5J}c3FybO?IJp;@EL;|3e
z$s530N6bMBZzhD!?sZTQp2rRb)~eUOG{c-z0U9OO0iF(6<~|_&`n-^O{`@(%)8O>=
zs`>qA&(g5D0v7j+zS)dNnRPQD-icAuWi%;<9AK5${v_0>%Dn){iduRz5XFWdmj#41
z9(5mI04BVRjnz&+DH8boTwSB||F8&7it9Om&h1$Ji9N_z=(r#}=VI!wK5&^aHk^yS
zz&VTu5Wb_a><T6g@F%)_4OD<{0iMy{{$ik8N6^9#_2oiBni<V#aiUF<(6DiaZz;2-
z-%fK#IXW{gDZ%&4wE%dakokkr;La>p6`Mr!(m7;Zb_3*v=o~J_TcySKyM+GZ^#x?j
z&?=zj0M-Cag7Wvf9CsFg1mN3fg)=m9t5bUXvbNuPJ;7U02d<Vfdauh8fwttpPf$R$
zRC&}$mI3G4a%Z4sg7BA@@|%492H0lMZL9+-GOtG0Jlh9EaY{pBAkbG@8!Y%7ST}4i
zVupVnn5PCHq{v4vd~SJ5cgKRc+^#NvFt?O22dK#GBfWqh%w=uZ(8b0`?0&0r!&|4n
z;3!xHYa}KnRx%cxqR<%ukmeoY%d9GYDp~uJuoocqU;+SoT8x)U*g2FaCjoDtIA{Qj
z07+8%D5Cx%cZtnkOeEX$=^4xDSfB2NxCua!AFS2CO@?xWjoNxjN+*1Y@K%{&I<bEF
zGlR)huV3#f`=zo+J%>7!L({~TJ{wzwmW%iKeFyinwroQ2F5|jC+xdcaSpbe(lG$qr
z6=;=m3ShM^qM7LFm-&JU4*?Y@w21>H<$GMd44QqPNPlO_KLZ@*9zf(1b({)11`BfM
zX)7zJ^xgmj3R)s+-Or^1P%79+o^^!BJD5)MQv;Lc1I@@f02yFd;{>hyzqQ2)a1LCt
z##%kqS>DC5=L<-oHOwjbMr+CEt%}nvC}eUgbu4<v@@r`C^<QgoizpLLM6Vvgw_}~;
z<er1xk0F?@ny#8GMG5%pRX1w@ka^o~R3rdqt=rE2x^NmMT0W0Y6lueL@6@~Yi~lv<
z9pT>onjfmfg{^Bk134CW@jI33kcN0fn*5_P^Y%^4{RyVLTLEx~>C&FGqbm>Y-~nCO
z`VA~izI(`uB1S<$A&V_c1pux&LmX9pXQz~wNo*1T^mS?^75)aCR7_8g50dVve-fkk
zF2naOAz?{vEy2D<J#`AG730L<2zf?U_oaZ++Ow0jx9{JleV+XR79lP#0ayb!*6}W=
zzXsw)NzZMyYd;E12=Mz&y<I7^VIeR;0yk9(9V!Wv0ooRfg=2e09h%z5ft~|2@FJM~
z6_qKpriUo#k^-VrhS#lfX(Z|!OIY&1o=Y?EFt~QNL-x<l?cY!DfBx!EL!=M*TV~dI
zwWsK|1mVtC(>vR1U}6c#g0q>lH--;E8?UF$JY^OrX5yo+Fs6^`I6U);#_z-=y+lSZ
z^`;-hm1Vm=-aBRq_J~_WZ+QZd4F7krQXRR^==<9fe(FzF;0-qGOlSM|hzKcGI%4_d
z(*cG10i*jw0HtYFbiNgaqh1SozWYL(&J)s$?SQE>?|MboflL<7=_ts7wjQzl+{PTh
z3W54CQb_!*An{McNy248^*;wGXn{Lv$Qse>)lkTO^SfV+5}>0Mf#b_&JKVSG;||*H
zWK&jcg1}f{qC$7%HH*B<>myy2l%(X^cv+Q2*(h_${;JA-f{^S(c0_%k%amB<z+zq4
zEM*^a|Fj1P2AYBa0AP3kt`jX>*Ro66y*E)Gh|ie8X|n!}wDtS<Y&C%{OdU`@j`eR9
z+gb;%e;mx#V8@oSc=-4_MH~$MwtGtholCYR4($oTuw?bU)v@b$?i4pnH<^bQfboju
zIV8N@=1CqIBi^uRz%%w4{gfF0#8V<#lKkTwgm?GJ2olCS$3@j_-UA3uQ62Sw2|$#D
z%+DhW6tM%Xj2=MJa54&4BbZ}BiMsc`U=Qge+}VhO_F=i|M^8L{3m*YbA?|kzt+P~z
z@G*DkEh%6o0utJETHAcu`VlPuNZkMAeEX-Z47#8|cEF*#UurXS`@^MSK);V$&5r$Q
z;~&6rZGwh^wR%+tc_?1B4;3w5wk5LdR}?#&rVHg)aII9rQqjdG!~Mhn72UFLLry>(
zKCot1j(}u~`%#Im@nZ}c$>v(SshBjO1E5#Up@cJa+5Pz{INCk0;n4b<&jAYcw?=Yl
zE}(*Nw%8gnPlmGEysrSg6oyTTI3Tj3G?#P8B9)`zijnmK!!E@t^u65K!0gJQKta6v
zBC{bHfnxxNZjL&4-cp|howU_1JAkM@1HC<t6(AgNnvM{T2OMA_lJ}JU`&$LgjPHQ>
zf-@kBhnQs_%wqj{v{pOtfaBEw##&xGifD^g(zCeZu~%3OyUNF#Kuzs-zq6x5YbQhL
zmM=*i7E%3R=$S2F0U{Tn&>*0)^Ymt_x_t|!*>2^jRB|ja!-CE?RFm|l1VXhB0?C&L
z_+N>GLKIU*+ych+-iVSq%z9>O`h9<6+VtnQH)K=VY0?Kj-#x8%(>p>f$C5FKu?-k{
z<p!$JcV2X_42GX3trtdWgd#U3>Ym^Jm>k>LE<Db~TfO~OY?Y5X?PSH?ueb3r2`!`N
zJPXz(HZBB*I-@;FQZJ`DQXco3(-?f<JGNJ_r<xeLyAcOkSp#C(UrqsuTy3syxWpRY
zr}DN>Ri1vuW8Nb+mcMxcBnqS3gvY%<Q<F~&dI3vPs3EBK;ibckdLogJVBuWM8Gw`S
ze3us?bDiFPt>y?NFOFgrDNXiVyakv;j#*LGji9%N5hS^gGy6T(vD$s5WFV)Vkeb<o
z2P6Yd0|suQKmWh-XCetFiQ93kxxr@nV(7vgx3s*0twi_mr7__~`d?nYK6qdNFE7?Y
zVFb&-cY<hjzNFCVwjv1d+<BE;SwiK3M9smtB>Hsvt84vI1a-~Ijhjg{<Eq-GAHPn}
zG4rse`KBz+6@1`oUl}15we7lP6NOjx5T~Ju#{eBWWp#(_6EQWa>hy4_2k22lPnn-}
zo90}l5R(fM_uh9P2)NP0oCi{`=Sv=nk_T3f(_rjs?pPdzmTi%Lp;}({5#Drud}V2_
zseW*$_?iSZ%cQ!7%(?^!c_DR!9CzS6CbqpEN@b%?;gqc6;Yf9$RMiG@Q>W|C`fc9}
zn$LL?#^s?G5unFk9NKyQso`8ri8hhx#N;t(WARL?(?OmPKI30|#8dGFkj*_QzDR>m
z*TTs^rG;FM#SU-{YVI&B=XZOx6DhvRSLr-!3=r{_mVp_#=v-$%&0N52RH@^rY~NbT
zdWGzlk>LmW5rx|8{wB@ny1L=>Nfpfbr97`>q-Ke5_W+mIo_m#||H8*8(@;6Zi|xvD
z3t|^9UfcxQitwUx+L^=cg=<)q6ly9zR0It|FWHpE<+=g~K-{@GSt5`B2rt!!u)}e5
zNp#+Zuh}u!I)2M>=6h`7T<%e~*H}iR^Y0`guq?jxY0qbpb~+y#zPR)A>X`v8#QG0b
zh5u8){Fs4vLn-!2$1%`y-f6r5M2$N4gj+Lix#sm6*u`I?(9c}ay?Ny4qoRC6T0Hmo
z-R+=HvZPO;2W|4Mszblg$ieSFa96S?vh1n%iYUBJxsDqE`l&NeT1Kl$18PGk3k4ZD
zIgC}`{c#Q004>W0;QXO-4-Bq<Bq(ug2STOi-YPff0avFmg&B42UW<}=Z03cQ0qyIc
z;9#JZeW~J9X;knucrzse0{9EhDU}%|+|^!$yqO)nt2lhu$5wdE<=w4s9|g=Ky$=^M
zAI2V@EsqiSYhs4JZn%BWi7`OmdBb6#Aoh|njGOjRj(WkKMc<dh>&!xZgArp2O?H<b
zU0zoIJox!}%1ve{#jTzZNF|B)*2fwB)wT|<5i`28EuY3}=hlk3(~Pe^tKzpscKS37
z%H6wCWO=v{CWb(B!$Y6Tm(>tY3^}N?5)nbcC$0Lh$*&LiG$`p{G!+|^!Wq0!3M5@a
zZ?8XE2G$J)Ky6&HI0l+<AL*vRPP73?9DHk%_$O$hCX>LdgTJnipPddA=Rz_NcTtw0
z*+^2v5w?VsMMsvNetuYsSVb;Q0`G(Loz<}s715c?!aOT^3A=QFu;ByhrhdRHqVd)8
z*JA0tq$<%3y|C*O(;Vxf6rBCTbBS9+&{+^4DJWDTPX@Sl-kT5fDqU?~RE>6AKW2yK
zog<ZJnZQbKlgbX^<j_~U%AF*^uXpydvssG~*OoSz0HxVde{;YY8#s1BKshoP!>2|p
zuZ#dbz+C?lJm=&*8NJ0A8oq_pxQ+41&eq)lUJKS}ht;}s<SvtTiDit_pz~Nchh*}H
zOnUmM_d2WG@NB>7kMeOFu@#0LjMy_tR|6f#=$2M%rgFk;k~FYZa+%{2&{>3MtXFW<
zH<!JA<pK6jz1KTmei>z|ogJxkY(N&CVZx)3!3kI)nFoDFQuKjCNe#ii=^_hlexz0&
znbA<?iSG~u7yCPZ^(E^fg!nmp;W33i6lWeh2Db>2Jcb>%Qk#x4($={zAAJowUdpvT
z6}s=l{y0-T|8D(Ci`7!u`JCQsaoy4@120cyb~0LMiJKKu?&AilbV?oBfF#Lrq&-fc
zIhY<0C3I*siOzIo)EQ28%kXI)SkOTu4FF4FME{d{@C_)b9<<;RG>aQC4w%@PSs4DM
z&CN}lmiL1LCjd?+=H3#IPP4C#f_#wD#_GwvKm~ci;RSlM2IcxxaTsu0Oqjga13+jS
z85`K|y9{~Blo^A3oYzofB~`w%s&J<6t|`0cvo|)t{W#r$!G32EgW_ef8)yN`>ALY5
zu_tn2ACMwk0zAhCra#N<f{bJNd5&0fAi2~azDkMIXz>~-L=D^xTd9;VCJbbgNPEdu
z-|AW52e$q|_Q-)Via%Q#D!n^tH8#L&JPNeuC?|A7Gve+s$XKGkJvw<`oW2O3X#S*z
zYUl#|Lf<zD9ObBH<rT0Eih)eNu6-#PWb4B<AhAi=tk@+d$l3A4n0(GqtKx__%9u-R
zI2pcyQLeXws_iM~<$?AyTCF^0Ar;?%Vj@9qyC&PybN}Pz(t%)lFgzq`oXrfe?gE%f
zV@uGy&WqRX;w@3}4K$sD8TpjxWsuNO;^&kUmYZndNSq4h?Tzl6)-%V-Vpqp~jtS)H
zQZ?pG&VLqjxm@c}l&?{@Fr!<j-+x#=VEr*D%3z3n9PZ2VLLa2FOyJ*M6xu0@NiLFz
z&6|%qhL0fB?-tU+wkJgyAx+e3uLnYrCn{(M#pq;=rboF*JAq#Dia+kTr>@;%&~PZB
zX7A#tx5K@;6d7dRmF3O_pkZ;H%XWsAquG=v)mJhTAm2BXp|L(A;F+G-6l4$wbE+XS
z*0T`N&1J@oA^73mJ9AI!`>#Uxp{AP-8u>cO%~qZ~U~i1yg;r6yz_un`q>UI&bZfjl
zl*)%0ZXQN)h#d8U3|=~+#}Z*gK)l@?iiFDn?ksT!r}`CL*@bM4Oth_L;*ZeY;yQw&
zox$KnOpSbS7?rlFY3~-Go~_<;30q&1!Swp{;^RwcW)^^7@TE(9bnKO2l-aUzT0%_*
zJKEWNT&`yem`NMqCK=ZmoZC7^f4lKFqy2w)!RzBQ4(Yozg?&yB!-KcOZ*>#*cbD!g
zetOLCBJn>z0IM5aH9lT2c<<SUCPqku;V|1wLHyX^8ax5-yoczBTt|Haar}3^T2_(A
zY?awFxq7st=H~+tY$+|JFNVPptuJU&J#O~wSvlXM)Rp7g_>?~Ldr^MJpTVc(7XtM-
z&Fv&%`=s%lVZhUaS_p`Xj|2xp6+NfEyjYchvWTkhmlU&)eUc~8$kK$?0uY8m<76cC
zQTWK7q1OtP4WjG#;ywC{qpEi<8Cee73z&SpAWf%4W!0l>qKm$>;gtyKC*D2mv|rIT
zG})wT2*kBbj1zaW%g-vOA;uGb?{p(N?;QR&O<M_d5?DNJXG5W#Zk`_`@S#ViX>$eS
z6*N0yiJ%-nLXxt^H?=cbRwf<LYZ`g%27M`WT4rV$Mm7kJm4vS`S=rKw8h~CynH#Co
zpQ=a#ThY%GG{8&AmNpc5#rPvT&4g^NRRTiD>@Tx`x9yR#XX+EPuq8XLe$waH+%;!<
z=Sg)_PwLq{`M*3(v1hF-9&WG^(8H{zJe>qdwz4oS#5mxUTFHDn-2eas=8rQXkb%>R
zg|z3l+L+Zac$#lS)HUFBZ;OGy&k%s=%zX~G9V-_kkAg0#I0y%`K?M)8Gm{Drw&p&h
zjc`<~Kw$=^KqFOoB=I;}0lK^kt%M#N0jh2hcAIOO*n{!x25w{Ueko5`^#}5OiVR)S
zJi{44p}eZqw_Ag7JQk`!*dIIjNvq%Q&kIkE8Hl~?soDpIxxcn>eE1=K6F$M|@-^B2
zxtWwiE*z9HzQ;F$S6dBfvUb+SrL{kBWuZtfKb2Z3?tO0C>UEbY{ZY?lialGvXZJ1b
za+z(5dvLDbi4OQ@3alG1$}wCnNJ%r{N#)dH@yCG>zL$|n4n+s^`frR&7b|To5Nj`;
zS%7;Ee)Jb#WRz*t1nUVH-I=or_W|o_5YW>!dsP#*ID_jlBCMZRTbcHg&T@L*kTe-7
zXf#30J32_<aXfwk9PV8~Ry_i|OY{Y0{cND$PB3}CrdSC}AakJ+j3E<HUW>3v!{rQv
z3MbRHTUk@Z5EQ_8?UmNq%|5faX<F`WG&2c9qreFt9CX<VAhx;OdRm8wW8&vW84sfn
z4T<v^wwLK6q<L%YJyeiWu`Scb9MkX#q^s5O3q}}sYiFlhW~K+!DAJx732oNuD}R^U
z+R{=80D!N66mnS;(O-(rSCHb=vN@u9xoFW4dl8(e@f<08R>4_26`2WABilZ#^riiq
z_jTiM_hYsKb2FseKhpf={lebpT7LvF$NS9W0vMgNZ`GJfukwr^vuDmlh==uu^K<G*
zmFXunsphu}%NWG{3>M_yP)XWFhRW#RV-sX__6ndky8>n7Fj&S*Jg?RF6{$?3L}z0Q
z88dqJU=tpFS?a49o!KC>8F6f8FbBY*qsdZV_B#f@;|(EDTRe^00X8!ZEG#Q26nmgH
zwE-3}M7uCGpSD>3`jfY9-oQA9M+xDx9e4PZ&i?(gz4tbHRLz=(?7DCA&IPaUc;~?K
zk`fj@V51ppnl-lulXF1i<{UyisYptG5zq6Mb8Q#M87snt`s@KxGp5M!BC;FECltb0
zQUb{e0Ux#kj?~I6q_Zpkq{f6zqy>}*aY?|f#l_=Llu7nL-?GTf=DFV+Y$D~7D{Cng
zk5UOg_1nJtpLe%amj9^;f;pCaZhme#uVOZy*0c1ZmIvWa)Cl$6wr@YOCD2?@rjo)^
z{G2T(LhTR4ZxRvJbst5Ymscy-Tm!72!BC_|W+a&8Qaqfjw~wc3d<aN5ML=2E$q1m_
zCm0Y>uC|4mH(){<TPs}_rdB!l(wIF(^mC~Q=pAI-x6-zN8(DDw$(r98NzBedFMDiW
zTO8tchJxYD!sCm1f#95|WEsfS8+hm><!LZGJB#)KRHTIM;&9K7`2$3M`9^7HwZpw8
zBJ<EP-VSe(D?fmxNm?bFcqWT{2;R{#xG?W!RKKDRaZYAoFlTw@rpR^#SW$g<a8HCG
z_(+4-y2gw1?V&kv)S>>v@xtqelM1*?@w<c0Qh&9Fu{)fCvK;KKTtLXTdx7vEqZ8sP
zj?uv*Cb7}2Wz~+w<XH1DNx#G7B$Qln2r=#Brr*wqeq*cb#b8e=ek^7@S(LiF)BN4;
zM|->7&_{c8beiqj{?(oMk&bg6#X)m4+<pD|)4u&KQ6}7yZ*|@_7IH&ODX}8M<#ZtU
zyT|D9CD^bb@z#8y%}^-`sdtJ%l`=d|`eeIz%wtiXTzolSu2IX>VB9-vbR4#SPx({I
zvwGEB7>=Iowu1(I0#G|cXqwu9ZxQ|;$o==8{OAM@Tz#8cBtOD|x03zRcx|l_l@cJ$
z+GE8M5e(w}&`vU~G>eSe&Bc;=JxNZc)npk;aZ@2Va~)uY)H{dY63?hy#_{#7HE{Gh
zj&N#zocHPnYPWfW0{ikEv>H_kCSKT{QJ-Rt+U8^~r>KK?ocqH8J_&U>U!s@>{*upU
z=;rhY@MySteE8rPy{<?Gkf|smTYyDbelne@egf?3REE<Tld%}U;qFR;3!N7Bm=#a;
zuaVDQ5Ra&VEr@53Xx@|WM_8?lk6*(VVap+*->3Pjf&sgStm5mq%SN99%MwDBN0Xn5
zI;F(RnUcDhpaAR1X12Lx*nAv$J>{vXM>j|RRd|BVE>AUOlDAebPyb0<ft^9C4^N@}
z>X^VG!NGIlkGg}CSzbByD0~d}T(xs9cibJZd2_F$L((F*AC2vH+EUHD9J|F?)0ye_
zZ1$Xgl<Jl&=^`zn#-*KJ+iLR*&sQqe_U7!I!q7(%Vk_nXMin=;n=e4JFROif{7EMG
z4wL%?t{13Im8o7ra}Pm1UIGUAl{fMlRt;+9878)TN-JLDt=Vr-5t+nudxg!(U572%
zy?~0#z+b<9M*8favwp(}$c~;E3bcOUbsMn;fKQ%qZZf~gT{THJP=bKc*r6-Y?T01y
zpt+S_4UoE_jplp2hZcisl{ah_o6A5v#++_`s2#-OP=~v?gX~G}4IQF$^fXdv;9|4_
z$_|$@;Gi`G#{MmbU5g}a*kJP6ezV4t-rGW};aK(1c`ABGtZPYGb{+(c*yo#wG!$a-
z(ha5j{#?BgKq9^pgc!)tF#&Q!5*5{e<q^Bec1d2%p$hfSckPT4!w>tMKWAmsXjbcX
z>YXfp!@@O1X6?73&tT=c^-G#}s-;{Et+1Y(r1T<Pr$^&w=ndp><@15>@rHC`Xexa|
z_+&5*nm>|GxC8CBW_OPP{vN*AcWVe`YKS6Ha;XpEh*+vz1+67hgwrb1CGG*QEV&>8
z2A9_cu0y67;TJ4_I~njX**>p_LvwcyK6{)9;|fBHBg@m^F8HMXX}M8kSwe^xng~oH
zK?q`1)qo27gynoA)zO*8*E(HivhLrz+-fs8++&3)<xX%i>8LPVvZZ3NHtlyaULGw8
z542re?E%N+xTlO#ou}84Rr9OmM5Pl%?(w9pF!y(9MTT0}Km+~q;XPO$bUfA{ej;@4
zm;*V2FyiY33yInt_$TOFXyejUheloDPwirXT7o*1iL1Cuj9aZsT{u`EdQ82pH&mi=
z?vw3hJ5pi%TW8yu(iMutiAiohJW!C&&)cm)Wt_7ENLl!S;Fi$9>icsC52FyfRvxLP
z7Tv5g`mj2!`c$9KR6cO8jV78Ekaf6K&O3wI%rU6VQpQa1$i~N}jx@sbO>)DubWAuR
zVU``Wg@y#ci}4PAFjy_>G(VtOhuElFw(c=6DB``pzRr3CAPWO#z0P}rK4&k_$TCuD
zlM-GGgV4FM3**zK!TnOZ3$3ns@b1P7SMJ{1!7V#t%fNBPtAmpsrB{A1VC5b+d$yH)
zHVBfgWgf!sAaUtc5pN$mc11YwAom|``ugZ(01FvluSG1CT#cO_wUQc6%oEnr6fAWo
zYx*XT6sP=__-QLeTdhq7V&2^U;v=kqBYu+2DK^Y)KJTeX`=3%7X0;-`W2Og>oU{(*
zIdT_Cf;biJhpMu>`~yvi`l*IRzCWkxJ-d`++2z`aJ(QCVLuODqKUYz)yD^{?(=DGb
zA{a%tAJExu1hJ1*oq?mps`7B940@!$(J1aa@KiNi?DT8&mJO!u3|-?iz?DzcYjR|?
zjhW7HL~@UMGOm)HE%QN|JkB&7x`a=@c&5hWBtL5feSmocrUMMf2sUc)S#$@1<Xxi2
zY}_seW)uvI_LP!XT|d|-J296l+&El$C;(N|Ik9@q(fzdyoY9r=;Ttu#iX}X^Ei~|r
z$B#weXMh|4|Foz;L!umi=T?T8Yw8xQkWDPf(~zSJol92`udo7;cu3j?H#>VX$Zt#m
zYVk^^L~?2U>qhg|(y_^V3m?SSpHbQTL31auFQ;e9B9d=x4hUttGqBwbXNp?o{N}xo
z{$Us(pZXRhhh1BbFh8kgBkTbbR|1OI4*b)`C6^>@;}Gev@}XG|!BHJq=`_<Km*)d5
ztN|p2W0Wjhy|yk{&pX+-I>VPvnl!Hx=p}4Ho4H=dH_<Q@lpG%xp5l%-G<P{0d|Ctq
z@q(@z^lMoYEeiwg)ACc_a%sN{(mNyj*+!@ZW#O@B$pDON7)a?q1H|@vlXBz6^Sz3M
zcYedPY$516Wtw-{3qD%)R)Rie2c2`p^K>iJJ_p{chg%Fl>jbA;S8XE6F|1yBWZ%S;
zc#ZWRC4`zp0KiEu+sl{A{cEiTitV#T4|jye*mg66^p4-Mx~Z&gJJmdh+$6D@eOC{q
zxm1#+s#D3nJ5pqALM#_ba`vuY0?C9Wv0A4uT(6u{Vt@M;x>VHOz+Ig$&xdOFN1>?W
zesPwMIJr*)ZSmO1=0IM){VLs+ZJoDqh4j+gl8vb|BgD{Ep6?q&)B%OWS<mf&&6N#s
zbI!1;7c4O~Gt&j_!7;a*TN)W`q{?5DYdKE9+_n+$*P1x+tME=G@SLfvLm~!l5IZ-o
zO|Kn2Y#?R^PD@{SdG26L(q8r-Mgm=rrpA16p`Pih>~h2Og6y0DSs-43FAsJv4&>RR
z=VgVN#5flvwyO)l_?A_VPZPz4wM|2vd)Y0mo<CZOS(7z9x#6p$L)*1Qmzf6!!$({?
zJV}=Xg`H>Hh))FH10c8JEVuk=(@QxT+<8gX?k4IcN#0Uyrfe1O?|ULovpw(Ja@OE4
zWxqZ2xsyX09-Tv^4T}g(_J?EK>964beSgbzL-2CKca6FK{t7lJRMQG@$k+7&5DmH3
zQTFM?XFA-a!k4g>6L680=FsjH5lHUd5fbEtF(mg@kG<CBiycb(H7)vDa_p;l8Q0K;
z>l+58>sx*qQ+(Smuvh&1QUKc)6qqz}!=<*?=-2lHtOS`*{XPcz8E5A|_#P$}t?)*5
zj2JtJsQ)LB6r1zB<ji01J+jqU6?^n3N_(q@oyx83w*A1<&LRV*1JPF7Zko?6qf89{
zc=zAFo4@Bt4CyNz1QMKU>QvT(M$0m?OWX4qtL#3bw5PveK-i1_70MGJBQv>pur@Za
zx_0}g6B3#!o6iFkC|N4WkMTO|hM!IAH5%+JYchoU{#M`o?NR{@516IF>6Fvk+e^X$
zy_ZR>do)p!fv{izteCCHpA8lNv}gW)%l_@-Gpn%%q>ooWg~z)T-`6rh_Lf)Y>h0UU
z*yUaL8Yf;-W;$N;tiqal7@;%$5G_7(?O(6McF_ToT^544_9l!(1L;&ku6=ZHUsty{
z?3aQ*_P$V(w4JR-e&Kwa@6ukys|28we|o$CsyQIODYL?<g?wDXp|g~cQCDIF%V*Q=
zh!6Rfb@1>1sek>H|M+R2CN4BztHeqWKL>L;Un^e>+`ru3!~4bFB}aZ`_-Ft4&Hv^*
zK{Xj!D?ysnNUa>Lt>~N*C1E$eR_gRT63Rh4&R<&se^?+^DgJVOHBWbdo<T_%TA&5D
z<{r57HU_l~_av3@Q6c)nKlt0K_^Tfb-bj&wKeOJkGAhu8BB@aQPO$o6&3ZB05tX*z
zg7|;)zy9qx398Fr5L;VYpk|!Qe2KA=vdP`Kn4WL&Z8&%8x9-JXeH@vTMIzt^39FXn
zXZ`mLf~b&DQBe_;4(uT{VzDyKGKloFrm68P;n2R<)6?@g{FbqSnBnffo&W!7qy6?_
z0v4H5I4}sq+$SX*u%((>%j0-h_<Zv7*Cn(68L0ZRRVUMaSuNcv80oXKsGJ~#UvHII
zAlLtfTTkeo@Sy%Rd@<K$3xGCr>{I|m+f4{ye~;HXBmZTU|Jhal<TW)xyq?}(WdJc0
z?6O#MYiQ)_ezG1*ebkfF*bxUc>6;OGSr~#8e9tK9sSVsnTO2iAg8$?)|I_C9`@@fB
z$p`*TG&x$ay24B-EvU6ox9(QA{|>cyxzTjX6_b`o9mYv3X%V@8!{@jDb-(`7+hO!%
zSgeDQf>1&0c4TS^xsf%k$KuOKA^RT^NBN$~)@}3H`g`IOTW)}sO8v=HN7nM*WGK_B
z5bT>LsK=VdqE~)pz5n}qNO?(|<y69<wKN-up+(GMSP$=gUy2`o&ovP7zdKKE-p@TQ
zCcb@S)&KZ~f`0LEPb10X|7J~sNQ>}qz##Nj5{N~Qo|ME`8vHC4pVeNCKj^QH8GrS^
zxyvB%ZsB=jtf;cF&?W+IBwS*_u+(m5xgfZ<EPCzVH{37XPiD5)NrtZzw60qR=VI>U
zf#X>B3$&apy2AC5#&Hyrk|o(RfnmJQ5W!z=`~M*vx+>v95go0qMS!28$41FNwkMoy
z-@j>rzhp6@+ks}yas~a=-rQo_-Q^)5=}qfd?eP7DZ6qke%zgN%U3^EheeuqU&7&I6
zJ||ckkBgS&!qpf|;Rn-|s!-ED+sRTLse@p-5h`=p&#U)zbB9T7Rz_8AO`e-jWkyZe
zX=LgMBS)<KXXdyHpuOWft9CY_GQlL<fC&cbdtRFRSYdLYm0#1<`+x(u@?Jxw0H{ib
zq)#`Zrk3CSKi1wmuE}g`{~k~*K@pXR1q8c*fG7xpG!-4CDhV9|BE2e2dJ`Ez!3NT+
zw1fZxp@nWi=`HjsLk$6xUIM>$JI_4l%*>g`dC%wlZ=AtQxXa#qUF&;Y>xC7jWF{d{
zARCm44v1$pgXdc}ehAXAyC7}NP||fF7lwCq6g$sag7E5>XUM>K0-eg6>H8vxoZAh4
zrH+fEQG1`_lR6<x)4U%B>X?!7jdWyb*~;aXB{2g0tqriXgvKGev&fzG{)SfhMXR4-
z-uX>J!;0HCRah+s#J~MIOz!ew3I{Xmu!Psuk`NIcqLhUFnEvwe^7gXElj0|9e*739
zOLq5-Q_*+fut|dLsYp5@L$9QZX;=!zd#u7y-y4685z0)9y2Zkdrv(d2(U$dNd+%I}
zRU_n)B#d7fkvfiP#N<1^4LPZ=n@N+gDBN(!h^6H8F|Wu|YC{#B+t$=y7f#u!*XPfd
zv9Y)%Pjt+YhqfUzg)+=>HyV}z#>$4OyNZ?vBMLgpy*Kr)K}?Jxk~r+>glHU;G}S7w
zOxZx7XVzk$Jk6peb{dGUNq~(}AD!Pr#0^k`J#@(B?19kJTK#C_?Ck7G5W;hy?qaGz
z=k3^<{&JpkvU~^Qjm^9(4$toHN9RHL^2o8AVQaw<Ppz6RV;dm4B&244x(c6jTwm9q
zVL!`5SpME9m8++#HFo6#97xvWZ*jYNh{rj4LJe6lKLS=%@QhSC*ZjlF>`mLAdJd_g
ze)YLOXayR8Wf2JEH7h_p!|!hLKx7uHsV`r_RrYe{+vW1WJC&4+%qKfm{E|{%g{#$Q
z9e&^|QJcM8S)(t)?=y?0b&aS%tPx+zlegD;gR?`+3j2(uUDI!-hG=itKlIwnwnsn_
zJmcD|Sps$Ij~BiggkGgqTZE%l(vHS^prm?UMe^WzemcaWE(n4sSf3B&$Y+-tUf`{g
zFo|{uC0TX1ArU8#t*U%+!4gUvGWT66NXqmu@{lMR9>;=aO^ae75T2JKoh=XuO6d#Q
z2wz5M`gDL7sSuVKSJp@QG^nfb0aDaTuDaC*!@BF0<5UcbHiJd~#~@Da36(_ye@^3-
zakL*4AFj8OfAr=*Q-}i-wSX9H<3bT+0U%+l;Owhr`mB|2O<R9f1Uhx3kG)gRz3bT-
z8hU=4+v=A;c`Q#_*I4#6g}T$P#y>YAO|YMdT>q45)$);o^fZLW?eKEhkwv<piu<uI
zbZc^HF9Z+UGf-<klC=_hfia+-bNE!h?fv%Cr_;G_6pW8HQz?YeeQ6r~u%f*q^scQf
z&ocA#)%k!F(2HO$iyjEV_&Pao4=s`Vsn0ps?1WZJU_B8?PjB!!73+4+IC?5KSgm7$
zw##$LmmgQ!)4wzM^9sv_)1%?CzFWe18TfW!`WP&tZGsO=_WWW}7a>>fA`z^sSptu3
zR&<MjgUFsSh>|^I1txhYw-T$K#vk>Pp|HZ@AnNYlg6a33?``+b5V=`*U8&42XgEXH
zv^O7Hm~qgg{Pd5X(fh1R&`g+yc1cDlgfXgyeO6Cu&IawfWqo>My@6@kO+&8646Cg#
zpX)Q9oyqKfgq}(j9{<%CTUeAkI5GCJGJ-{{eLly!Z#0j`DSBFJxMj^j-tyfGGc{Ol
zEs92$H>ax#ln!wY0A?m=-@Nmna8}h}*INEqV6~AJs9zpWCKD`&Psi16DKZ=+6&DwW
zU7462fOk1ib6;uVOhN?X_~S~7*6VZ|V&V~%S2A*CECC0ZslWYh9nUwj#i?a!)#08H
zpOHLh@3&^Q%u9<C$8Zvz&uhihf3!!Y8Zd6!%3^QwMx_@PrGtAj+5!*&8wuRVR|HqA
z0#?BcwjW|#wMHMFDM>0k-I%QHaxJghbGTI~X(}aGBBRTt_K6GsnZ$L0B-$f7YpSg`
zOg$;${UnusJCxz{9C7h0(7_=|kpm^3kn40};yN~yGDq0@Iik!o<&C@l>dO$1I$ida
zvDdvdIm@NM(rQn+TSW0|<=O@#U@|`+AL0F#c0(lPrp3fI0bWjtLud76n&%%c@KD3n
zW|im|zmY1{wszUI!qk8gOV@?T17+2{?S|PPF&9=jz1F?CaPiHwDy)LlD|+b1SJQ#*
zOI}R;Qp#=?3q(D6w%05rdQXI<P5j|wB_`uSd}e%gVe&3J@~$J>d=|F`5x419s#gE7
zeaom{C1rgT_vWX-ha$=ce|T}j837R%X8HxF+NinB5P}qK&&h{RmT`F#<RH0WCt7e~
z!?ip#h|5T`&M{}<)TKk`2Og2>_4cZ&=n3acJ=UDkREc>B&i(0nt3#(M+~n%g!|Cy)
z{pV^qGi2@0)SQ&U-tr$2+xALBM)uVqo8l(Fz3w71Oc-P-Ljb<ISZV3x28+y+HrOtA
zvER8kRWNj?ZM+`RpiS88TUYaKP^AciKd;`rXvJjOst)6Xrt1}Ra&l;CDJVVdSdW!7
zz;Ja1UR|`*sIX|TNq;sXFIe*H6lAq@2tagES@nx~PD_>dPgW>zAzqs8p>u9wW!J_^
zd)Xv3RCg@EF+P{aYdms<9%jG033>oy>V;{SYmhMw%e*}v!$7r7LQ`UUy>?9lWOqY<
z>)qN(YZqwhMp&DR2L*9i!wQnk2|dSpkzyTo{_*ysU%2f2LXdt*{x|}$x$Gc$im6Be
zcSRn2bjT9c2*)-}lTO*KoNRl8>OOydt8HEQ0a{vnr0$-@wF&X-6g1Ac?b!MOU3?JG
zJb2ITD(>AJLQir;q<w1l?g63dSD(9{D=o2;HlC}IBGx?}Pp^$WsN8;P^D)(*m%h~q
z=0m{amKx#2(eRj;kSS(g`)wu~(Cxk;I6H)m`mMCvO#$b?Y;*AZ23T;4+Pz9MpK@G;
zRj_O*c6!A+<?Cv4dqB)}=6z>u(c{RKDr$d)%N&Ow%bwYDO@6GXRx>W$hXYp}x~?}|
z!BKFFFGVEtuRqyuz^|S6q!Ty26G9SwT^nA=7K9krx|B73@EJ^IW-YFP__7}7hwbNs
zk@`hNL#Cex`WT)zl-05kl9FQV&he=$22_fpAK76059=M35+=4#GA*xr64r#9500)J
z!!z=kqblETt=u#9zOtIVLn~fu(+zpSB{LKGZgItPMY%uIj$7;z%;+!VhGguV)(fM<
z$NNtE$<MY4Wb;R&D&uyFbG@oO)+EAc#9jcBELf_nW#we%QxyX6<-C^NaBK|oefaLo
zAR3i(`k}<#PtU@<lJlC1Aojf*8c#Z30@|c{_H$*-4XJE+^eL0h+zQ0SrcYm8ee{}E
zwy`d7CjFU(SZkUU+dgc$#u4@YFZo|<M4sZD!12}ra2&HAfkedb;kx&J_rmM4H905U
zK<QIuJ<9JYtoc=+U6i^?&BuzV8}u#dI~4>&=b<+U(o(`~Nek*fEkQ_A9$!X5rN?S_
z|Hp>}lAiYizZdk;ywGK}HlZ}eMOZub?aff@&u-EHQdq|`b)az1nO`Ee$6EB@!^nM-
z>tE$RP|LaG-D^7h35HwPN)oFSkMu3slJZ*QP^jM6`_(*O$%U)_hh0*6^f^n<Ugoo(
zL^x0Z$ccZrY8Ed#Go(;tVDDFdq-TxpGCxsxHb+3?7aKfF=3>HCS~Xv$J+_s;f9(RQ
zi+Ts8oBk}_tQV?u6Z{NkSy{|hmkg>TKS!53F6qGRf@NO5ROiJk4p`MXnl`%?h`aTn
z)Tk2Cee(0`#KpNWBdey^bC30eG*q=AV0V@4Q=j)P4#5hx|GO0Oj^K+6@WmHQ5KQ)A
zHQ$c#wnm-TF1w4ba~V19beU7hh38;#P)AWAS9e12w0+G5D;?FfmrvJaOC0HH)~oY@
zC)qvA?)TlN3#y(W8`;!YHWx;@CQEFtR@VpGo`fZ+6{1LZ0Rnd}V<og79Sr2Lw@V=?
zGS9UU2k%evqOr()O5ojOrD${1bub~c+H?5nVPrL?`#)GAu>ylS^MxfBAn%SmfhY7B
z<CD|9p7I`Aov7hc&v-JPaNOPB3G*{$>p3`yTe(6DF)Cz-eFjRO1-gvT-55KAF;E{g
z^^-*lt8M$)z)%F+HLobE#H8yE2ihnEaImYoovQ7vGG78M3N2uDtYF^g0&Mo(uylRF
zJ8?N+Dptn;QL;wZa_R_FKi_%_XULTl^Mmie%wURN2Qt?}{hk(s#Zy&-HfZj0r*1xA
z&l-JeKbBnt>Ct}-=CT3#<$i_EQ+cYrYU4QA7e${Yf>I-}mi`m*oFroQGUQ$6eFiI>
zSr1AFU=7zPH(@;{0@h5ICR(=qR1(ljm=j#I$GI?Cen}axxAowo7&{lGapzSCz<Iw`
z>AyB#F#c6lRpdT4rp+FKqY)r=nR+o{^x<LGetT~}z1O8_)l1j8+<)Z_u_%LBZ*350
z)+Syl08Tfsf+bDtl3FT<47t16m;&ul;%G?yl?I-Ewr%aJfe|rw2pT;ulK4~6M<lU=
zeQmM3N*P`JI<jkSyrp;c`ZRl&69C-xw=>U|oP^)TvufJ<#DN^%;?>2I5D5+SNeBE=
z)D>M|BIDOJzw1BGG-P6#*Xi1^8!H}Z4Gg`xO8KAm1wJAqo)<|&vai};u9TC{O4_sR
zJe$(x<aFIE=^w3p7zPF=UALv{NBHTxu`t6JTc9Z2u0;6AsC_|ms=83<)U()}?8fY{
zoiBRQLORcC<lOt5iy%t(6XWkOrMH+<97BroE&DJ{R|XzzW0RMOSM^JEZ*&4KJ2`GX
zF<5Hi+ac7aeJPv|^ks)1SP{4(={B&}8YM}PrXTgj-#LX>(Z*~X)V>$#Q`VCFp>)db
z{(az!>Hp%3T^B45iI~5_86o@zb5hKMFOTb$1`V08z%*UYSA?LR$cY?2k0`D9tknPI
zi<hA-Hwl|j9s+sGp-xgCK%sdLx*23O-h%Md4Wz=i#&P08o}rDgs-@SwE&U|XcPSSS
z+m<sd01;F)Kj@h|4Uzr`V{B3zHdvW8h^oRTq*wK3wiidSJ-FQ{)l+S#Ffk23%u-1y
z+JGgrlhdik03wi_j-<mWpg`sRjpA128`|*Xd2qN`&R?2oI8mlk;UH;kj#5DeWO#(Q
zM$PYEsvcdDLbGV_DP&e%Q)C#Cm_AcbaAOgz)dzFHbVN*hm5o%hx^O$<hiW54YVO<F
z)#1eA0{2xiSon>(w|ETNHQT9=5(0Pc5n*b=5?!I*oSJtA=g`*3@ycgeuLUfBX3J`0
z`M{ZT+4F1Wjgrxig3Mbgb|8<1%x#8}loi~O?Hk{Gq-t`NHi+Dk5jjd-vJSfOg0EI?
z69o;8tX96I?9%#^zW-Of5aY?fRK-@^QU{c-8g!_(Gv1+WoVn=xjrEtiG&cK}WgePm
zaZTred&S>MZa2d;`H#ZWqCEhcEvk~@amtT{{fx%I)I>t)7hxtXH!Aq{VjWb8<Szky
zI!2a?1iM-9!_mHs#L_!i(x<SuKz_;TE#%eFeSt8>{?ufA$5$EzPBQOvnC_Dd6Rdx7
zc~I)%o0-&I>i&!KSQ056()9<i6~#WYsJKVn5PiSzt~=X7?8ad7#1N{8kj9u}Gc1yf
z=2LtBkl?<7ADGkzSK6B8&6G3`&ap~=*t(Q{X1L!Ehqn<E-!z|Q<U~TwoR};9ma<RS
zqOF#{-H@F{o$S}-$#zr?OT}C;`T$RuC!6>~-rUvXnKGLdz0`m)^Ml%AI<)*-<$XA@
zFRz!!;p2ST&EQ|P*H}QEFl7y55dBM-*^MfWobyiKtDT!C1_ZY?kA`jN?OoStHSuNE
zyq@`?ZMY*z{AX<6XB_GEWT4i)kL#dm?9C8hVe9^1Iru+U+A4~h*+#w@ob{u#nX7ha
zd8ZA&^G94*mWT`>a`Dik@SEO0_xhk>#ILQdpwlj4p1a$0WzjkgXewH&Dh>OU1ah3_
zb9&(Yb*So;utuI`ILVw+jm@L@@#9%^F{;vVf{N_E$}j{6m>#xb?94r|?#j`$h;2Nz
zghpeqkPz<D-|tl}KsBy#tib!Z=Mhfc)dydiZkr-C4Si9ry-F-w?*_I&xkC4?o4e=&
zjK`M6y>;)^BNn=0tb0qt7FDKjd(~7k*m5eq%{<|?<LfwNJuGq(tE=3K`P`ZRMep=L
zz93B);gemk1?PU}lNB3|i1@XzHL8b9Pfkv9$EmeaF@6H_2Pc$;AKk5)TifQ}LU%;f
zjVEl8%s+SjJpGO;)~p|qJfshu$9lT3*pD}#Fm_Im0D(xfq|ctg%Nn(@I&{L77-C=h
zIH=~_cm3|g_ObJ|?6wQByHHwG$$r6hlWTK}842k0#6#`xlb?}xX|=zf9g6x<jUIOw
z8l?RXhMo#Z@O*NDkvj$YjbL}x{ZOkcwS3(8(A4AuMnD;{fqhZryyl-S*z`C~YH30!
zvs#yz*jbRj5O$eaeUn12lt(A9&bpK#7|~dW#h-PB#9ngb%Iz6@NFrJQ{jq9Vi#A30
zLX>)`<8|twlzK<YRw;G?9aB7N9ZrFv6U7L1<us@QtfDWfBx&Nbb&75LJJ?pkt>s9d
zejeAM5mrv>Xjb~cJ<#3pEH&-sJ-K{LDGM8iJlkcppTs!0)tTmKA|*=btSK;GW~F(c
zk84I=a?Xy1h5WPHYv;mDTfLs3wGSL!dVXRrkqKz0c52knvTFqFwn!;Nr^jBckryAi
z>YlX&Ig`PqDH>2dVo~DHr_UKPVRw6RUNgMZs3tE~ji>WS$HD*m+y?(Ob)6BVi)^>M
zlzw$8Th%?=P#eUT<vcVo@N3KYY~SU8m>bNT5*&FM|3fPeK-$FFUYH*>a#?V_1AhiV
zCA&ezFajxYK9E4Ohv4O8Rw~3Hm?NjFi@UH<ZAH)nq4>GoQL`Qm;-yK!yqe^RCX@|<
z=lC0ySuoI8E`J;D9zU{djy<xd=zSbJsAS)A0d+DHlrEc?Y%?r}s&ka3Q85eKg<1Zl
zA-qv3s$>K>vLVr3$)(>+vbcp+TZ<ZvL(XZpcDx`W*sA2(%)1M=1LbkINqLkH+$g20
zvJAfA_hP5NFY`wj+@-(8o4W_kgb?VXai0CbZ<3O<bCVt7Su}pwR@#PfVxZr3he(Vb
zGvozi(%Tc=0!aI?2TH?Jh0;K7Vg00?PkdoU6o1OM^SI6p2|<(YFkUMej{V-KJxD2`
zASzN4%mr`q1&HWewAh4tpL%DKCnf5(Y~qbx1GWbq6KN?uiWD0(xAa76Vmcgnr{W+W
z-kw56ZWFsJ>#1n_7t4)bkz<qGRe(%(0<la-R{N>fcdt<b&?m93lW(gg0SQ#T;i&vM
z4|`8x*dYPEEUr?Z&`<@}yJ&noC01{;B~0wzoh+gc{d3o0*U9IW*sLCDCtoIQlY`)n
zC`+wfba)=EXJ-yIHkq7y>{f~k=Sg#bd%Z-=F*AYeMPUOA-8O=)RnQ3-SJ+Ey`0bUi
z-mT)L#U3#3xk0{3X_^j&gIRLJk+KZ^8)FlR)dvKw%l%E`<X?+GHBKK6f*B}0UIq^H
z!s85V_yr1nt_m2e<@mF9#|hsU+n%cwNL)I3_{e6*<K942cfkQ>mjqamb+H=JWZo*I
zvvN%+wQ>%I5lupL$y->{FNx)Q&{vpd2M=r%qV<xOA*~+Rw;fQLH&+gt6FZ<?*SkWa
zCvrQwwJ_Z%MTF`GwTWE(6Q1Yl&Xt(=)B!lcJ6>sHGXLyT|G54JB?3#*tiy3UGbJa)
zoOdb3i$HvPQ-)fUtz#u;pvDp$(YIP4N>puC0|@sgJ)V=x0I%Cz1JZ@}<w5g{yjd~T
zBZStJZ~K2ImrI;hrf;p!R;lN<35u9TTl3;*>t)Fdwm(Fcy~@D|K8;tt@dYLUDjn=v
ze#f=Wst;?kV3>(<6}qF?z{vJnxT5&h*{|mvA{<F4OO)Sgb^7_nj33Z!GhH+UbqS|A
zCph<&taWR3<tbH|_Qg2gvOaj-s_gFI28~ntcD|<lWQx{^5|e>~r-JCyp#1fWE9v(Z
z6VDLUXkpkMS?&-<#2qdPpt2*>4q9%uDhy#T2WP8)LtWj@5kmKq$}i%|*vz(3RX2c(
zw6cC4q}a~Naxb&NiSz8w*thQ#j|><FOI|2GZ7gM31iIaa^p<Gg3d4P_n{V2(BMUOo
z$jdX*s6;972WQ+|0Ey+0UdW5(YL1qL;+w9OK%T0|nTSX_VV+*Rg%~?rEwN0JYirus
zcOQd|?+!LB*ao#gxM`oA=Q3}ef0MoB1YRvVAYeXlA3v(}l(}Wu3U+Q*JVV!Gc{nsA
z1f8EdkP+oZfav$woyqJvwz6kq@!?S19H(go2Y-Av2CT`c-!Nq_ud-CF>7f<tH)*9f
zp1VY6Pw8x<z>IaC0!GuVwu5Yc;9dU1f~>!FPa~HS`nIa+HHs3K$C807xIq-r%<O`C
zlZ>aXbKJYi%G#{VBn=9l#52~E2n88W`Gy8f^XHSvYAM5qw~N;Fq$SeC?Q^x;?Hgt-
zSB{nC`IJ?#TlS4SlQ=`Rl69z&8?w$t_tPbQ1D2_|r?({zXYe}Dl%)<`S8Zwg`bsD?
z=DAf};?~Idx!s}UiBp~$-D#sY+V0Gt!A5A>xRN4@@*nnj8ZH~h!Niu0kx}>lC^1#=
z4w>4f>URfAkb>-SpG7K^cpuu*HC2PIXLMvB0mTw4V~M@84S*0^w5C2M=n=DKz;0!P
z*mcgv0f5XO*8b%3$kRjYn6@&g%@wF1{-ZGslwzqxHkKk7dp8NeKzV?jX}|%97G@Z9
zW53?~)-Y&;#F8NYq7y1tOPIo5NbTOLkGMD`!0&U(?#-6pvjB89P~9FtRZl_XD}D&F
zuQ~63IwC8!4k$P@>V_4Jo~DWEC0(4ZcHu0BNu+rj>#LEKl`fnUm;I4i7B=*|&~Ldv
z=!UCv2E*b7&-Jx|IgAm4Ry#E?V;$9g)<SpAi(?D48mI|fAO`-bx7DSu4+`fgiEeOH
z=*T(x5h6t_)LN&K^itZZz=blpfS{_A0vt=wW$e`uo|@_<pQ33uObh6u1RjdR!LxTi
z%)Bv#R#qe@>=JD-5bDipsDmHxBR;m&NM1@Az;+9uH*N`j%=@e#rVdV#Qmf`b1<Hki
z-mmAgCK3Iwbw7i9-&h&@SQ*1o;EFKzlNS5Sak|Kh(8G^oY+d|f<`58J3pT=cB{sGZ
zvk{+|tH`x~kU+oLy=(PH5RD9FpGv`Zag=1!-$x(BcwgW$XAai!yjlXof_?RGKH!{{
zNG^{EpVl0Txk3bur|HuDYq?(bdONNz2z2x2C%0#?6Yuo4eru=iu~an~jj3?!)m{0p
zIXyo=)A7k&kqh&LJmZfN)><z-1H?V9(L)7vXsay`DjBFn#MNc2T8dnze$0W*xA|w5
zhJw3)*?p{MmE;qpu5*iZZWouj!G7!#vEB;KAp(=Bw#kfAs0S<0OqPmsdm$BKuijl)
zo%C3HEW2{k5D->io3Q<uN`5bdz?kBth+d8L64R5s9giebD0=+Lt@dA^GrmQ2m~SA3
zb2rTE(7~G15}89VBI+Ue=&J|8cuoGWC<?jl>?==jF#)R~BFSGKgp9cHQ5~}G4P8_H
zFan0Ka;6#tr&c97^j0cnR!}p@0>z&&^c9f9Z5yr=5uYI0PxN-9w5Gl$1I=}+u!>WC
zaB``AJpj$;!^~Xi9_paSeh)0O6qkj`@t9d;Z~}bN#q(TmSOnVzlQ^LEPsaBaJyXt<
z-4JheM9J3Nq*jyNH|UG9M&`OI@sW&eeRZDG^Htan&Wvq(z6grJO1~Fpn$<P>d|p=p
zo$k=GnionAXiG-5b$bxwF89n0-`sS%j{j15^W^kmlRru7({FhEe=elHpPN*2nArB+
z?)Vkluz7$Fvx{re8L;U6SkerfA^37*n6Q{~y4GylTfb4dZN5Nvw$V%6?JwgKn$t|H
ztyUy{+e!9}i1nahqVD7r?@yd8>K22|f?ST&Jj-g5(aRWz+4Wc&jX;~oJ1{1iPie|>
zx}klmszF<_zpehjXi=?p&e^UFPs1YIg|FkLahKWwURr-1=FrnAw3$u3Q%`l~y=ckn
zljeg~mDHE~8*q4`!PvuGWcg6}Dz)L^UctoP@o@Xz%HHo-^i{)eERWklR^qgsFmjzR
zc!bPq?1qClZCfhlh<It*Z5s4J?&7&8Be_zhs5uI&%K<GOhZIjK$5_I6;tlpQH|_P>
zb?l!0#ztF=BF>&ZFqAzsY=E8w3^1*>E*uUW5Q}K?Qz$(lo`Fj-%bx!_v~Bt&UdXSC
z)1!3BkiDwL=8&|aV+?{vOQ@}dVUD<WWEte?SNJSpr$o}8<(8i3sXf%+_h4wJYPqy!
zvX#B1`z}?luKWk`*rfJZN0<`rr?-l~OK&e*r%Y>^mf&u+&c4f(|22+z@}yFfMk=m^
z1%09Y17oRQgJQ!x;_kw@cP~!oxA^V2-@2$mTAKGD->rGKdi-Dx?;4?~_;SzVE=b(+
ztx_3{4`ls~H0$2%mSnzhm`c!C%_6m>IEYPr=6AMW*ILx#>S#`q&!_3u+pRp_-49aD
zOApf}s~3u($<i`<T3j|5URic0gqj!|7g1KySm;mWjPfZ2!gNC$CXch~d+Y5x{FEw&
zpwgJ03b8$ZkngfKp_ZgG{8J*@6+LIZs@74HtF3b*_!`SRJ=xEurJir)+C{;e8%bcd
zoXJd1P{7~rfD~f(%c^nyk7SN|=gw)h%@;Q$PzV-eRP*dc4u222uT+gz1YO+U$m#sk
zlO@jDS!Xp4MDv*UJ6@-^WNS|wMP5kH9Zy_fo>rS&{*9hSTLxzK=uZ0P9AO;hZp35x
zRMEZAwhzZMwYMg71medgBw{?COLBZUGZ8iKuA+I+kBClqVl$ymNvHJhl3sfz{NzAc
z>=bo28}JN)6je;}&%w%|ee?=p?rF!jR9lA#C4X@V`Irnwik0=Go1gHe8G(n{irVb#
zT^0NJu-<wh&GV8LpfP^vYFH#Zi;T&Sm>`=aF#o!iH+-=U=551SR}=K(o-p}uoVP~P
z+q3k7Q4dcQmB(MIIyfaCGC5y{Mk@vHf=)rg(W*U%*=M1F<h~hSY2qYjCSudqBTzDT
zyBpeoy@ET&=&G@UC^dqaUaW(Fe(%?@l>A>aG+B3Ql;I2*sIXb>b2%?4Q2(8C_?9B*
zVN{rXl4D7r=0SkO6wT^7I9o2K|J$ua0c=gEOf293uk$}twI`X!g2l}T(?%RxxSZB7
zvqihJGCntKInUVkHrU2_OS+-!$YDk~=G^`E;k4G#*0JC#*WW$f=s6{>sKb*zrgyXS
zLW!e0b;UopCrEzXsf?d<!}PO+!LC1aYxN}<CA7*{ps>yXYD60(_}&kf1Qa-TYVg4s
zj=m@=Dwv;}>qBVDH~eJ&hrjtZ6^!F)?-RK77HE8FXt}&UIDJpYFWR-GG^NlGc&q#*
zoV2Dv)v(MT)=$JToMcYF?NixmzQXiVubcNKe))Fg-G#Bonk9dzGJY4gHZ!8s1=q*+
zIh8F-v1=1+w^S5i>aI>)$UjMMxYsM_wjrKlI&b->&ywk6!X$w~a&66LBRc7sLqPy3
zD9-4)DSaZF>*?WtzZHM;yRxRnGxDXB8izlX&~S;qrbaf<*50Ub;*o5r{YbMMh681p
z<8vbY>(Hyif%Shl00ZzXgT-S@#QFK_df74@y(dhu7DQE5KdNcDi@d$>9Ovgpc0Vo>
z;UT%o7${9nx!V2OXvkr<>|F1k!PjBIIBpVSo0JN%oRn!A{rvf0==I!+P=2Pz)Nfpj
zlK+G&|EnB;y<V=Kp$70VMJsVOo;r6*a9Te<x;Jm)N!arrh>d^!u<y?T&z>1sb8Mzs
zht{HlDkO9?zdMnkD!irWpIn2#-W^_Dz__s)3s%sF+V}YCnr?nQQ@Zbo+W+pmiC|=~
z1b2iBcEEXClqt0Qa=U}qO7X}3<Nx#snP+=7DDqt)+L9u^$9DvtzDHv(I<e;aSN;4?
z-xed}9TgSDd*SG#zy2&mQKoPla+L|X<UF~fyVVP|YV2nXEcl(02=05xMbXEH{<{kq
za4e3MbiW0L+-GQ!rU)t|X6*IX7SWY$yB)5T7m2;G{Oecw!>j$De<_M4fORaRDd=pq
zmUDF}7Dx*ZJ34!J@*n)&zy65KbH-{#zN<u3ThZ|7=vE4W9;9`6drBrf0HcgmBIhdl
zs<q^vp}$&Kn)LtA-{-HN`R_kRQI?^kIjA;jsTw`Urgr&fI9!VeKAk#wr6%oC9pr>{
zgKjj)au1-<*UKv6@sJahT}xMp77s!78L7S5^iLMeKRqb;QZL5V(oZ>p7~(USv_|qB
zaCo1RrRpvY7^JQL%n>SvD^rZlr$apSV>{-b!D)C|%=5f<sf~_~k{KzbKa+gGPfT2m
zxb{9SJirvob62sT=;+~lLEis<3I6X3^!tAW7;VNc4gF@pz(P9H!5pQ1J-6|7e#S5H
ze0OQSZRmTK{+kblud&2SG1$(P9(47nEECn9DV-iL^Rf0%_LV=qD}VP#ksI7PQCi*>
zOa#iSl!fpKdt&M*RGY~5FuQ+b@A;E%;XMJb$2`cuXTW@dO<y>+C`Zu!sax=F!2kD)
z2Y&-BEq*B!Ocadbepd(P^}@9EG%O*MaEE5DMF<f2C->TW;^?!`P;35$OWoO#4kW+W
zjg~gSNKMl*Af(kY9k>Yj@-_rr&(X09Ig_t5H?XGUFK0}<W;FuuUdRf`k;>j#V}dq$
zecR?`ubZevqjlVH2K_^*vU_4HJ?j{_Yxkek_X2Y76XytEd3M;J0$q{0*4+n8q72TP
z)aN21X#qK8)e+UE1En59sJQ~eGzpL-zx@*!ymbgFMI;yuhBMp&|8ovPJU2R?k%@c5
zh#huNX}<T`aTNf|ZkW(C;J5*Gtrbj6Pom*3FMbcK0RCwz3;?Mo{JKTCmxCKBzP~rs
z>M{%#v5{(M3nn}|7d#GSIyFbT8dKiZIBlEzu^9lP3lW18oxo{Lu7}}o325bh%7E$E
zcnSS$`;Ikc%`&u2w5t~wIYc;Q^8|CDbELpy80{~`xl?@+6*`)siNSk0ywmkGqItN!
zq?#<}=KHSS7RfQ1J!wJeKif|K7$V(S<mb03Hck8jeM*cGIt7_>M>7O)kCj$H9L<Mv
zyoF}hD7%%3fr<c;;B(iVEPb?#%Nk<(+aRh3bi#-dx}!Nx8+DJb=OW@D+~1QAB4OJ?
zzo)0uBBFUf;K2&kIwCrn=F<*E0!t_ih88)gADup}ztx!a=c6i3nZC#0rDlDAS?R(h
zHmN+H5bhaDY?HH7;4+Q!a`2Nh6k~<D;@LqY^8R&Xo1Y^}!#@Qqd8M$}6W{zu4uPP8
z2(QXkkmz?Pk>S{1ap^o3$E{_T{z-P~+|r9M+xf28(p-|X@|pXwSNU3+kF`xTYWLtj
z;GSgnh%oQ9Qp>1m6O6X5DRuuGF}GGilAcssU2nR=uXU5C6D(`8E%m5{8REb6^>Q#<
zP|gizJd<V}E#c%S8v&@=dk%Bgs>4Ee9)gD$!b{#l{Mh@s=jqd7PpiMy!z@=D=)dQK
z4BKs$->ViR8TmairO$b^PzpNkCm?ght#AR?BF?9rNt0x^h~OMmz2J>tgu2Ji-}`bE
zi7=~aJK&0}I1*uAc-2)El7LvNNtO?#G@BF~Y<fj1&MC`eYf9k%{nnSW2-psIZv|+%
z*U{E*!hMC$q}WE<^8uM+*8F)Nefs(3Q>taOn2PKhi!51+hXQb#q8&owEqBVpLvQ7W
zYv&H+Y<)+#Exs{(YO%n}Av#)IqeU`^l+;u%veWw;n~I7CI{KZW>`O=`BFpi1<byIe
zV=lS@BNfqFY7tCG7-96ij|VP5oU|)sP26me13X+dyr-upjIQTAjArMB1|CTgv`QhW
z{dIJny9DG3T7my?-TJIzn^TtT#fCM&^e$i-)#g87Hm8HAKYr~JL_{&RbvsY8WeEhT
z1Cg6&C!U^hjS>1_4v7@k3k+2AxpE;4blCPVu1qCQ7ojkG(!}ZVqBI^`TDx4XH}2Mn
zYxUfJ+W-FgM{hP1M6PzmuFsuv+Dsp`hsJnlbaZs(v1SL}&5*EX8JK`hdPx#j6enZx
zI=Wr94s(K2d9!_<_Vo0XuY0?r@&!5vtKFUZx^QPkU-N|a7L!RFbEg>Fh6NP-0Y!2-
zvf0lu7N&pYuR#w1Nhd>hB^U2g2s>M0Pe@JXeyZhGt`#2va__P6vu*=A-g8$6&1qrj
z({G})8NG>&Xu9}MhyQ1HsKtb7b()cE%e6M#W%{YF(i}U@iF3F)uOA;6&5O#xl5Pc|
zF;l`wJjZ1Na)igaMD=n~Qv3asqI;BvB&p#diD?6pdAq}^VCF+qvwRs(s+KN!y*{)v
z%OS17mveWjsW(#TX6ltxCk@12?niVoY?y$&s{S=acFL<a%QJPLsJ)m{>neT6$@?i0
zr-rzy!QcEyJ;b?hQBuF$>;AO1Z#Rgly@t84CcT>QIU$*MFjBzlW-I1|3rL4bMN&;t
zMw~A_`_f_|H0(k3iuf<m?AW)jtzxCzzo-|kx+p-f&@FtsKD3CfAgn*x%t+Y1y&DkR
zbi2{|4<3TeQlKwOra+oO(!spL$7q>V>2HX_h63Y49pA5GxsIRt#WB~IK39=>S&O>W
z)!qE9|G?SRYR|yb4!NB)rCE^I^Vo52O$d-0;n5}XZLRryc6vk7%br61wIyrqnPurS
zWI3m9+MN2G`urQgiHf2k*!Y;`%1$9_U{Ol})y9`XF!p4tRd21uYfeYfM-Dm_T+?OA
z{(zHI`(NCc4eK-2MIsPTsVtZo8))Golhq<cZS)jkVP(%@Hn50%$0BhC;D03UTOcZ}
zG0>(ue+{;_j50v_mOp%m7#SUntbFqooj%XJMX&^8EA$TFvb#u>EVB{x2}nY8M;O-*
zs+nTGC4f?nBjF}ns9<VAc;m`gL|p^DUrC^LNEFMu23ZvO(1@i7-k)9Rbm<qKu6i>o
z4jt4rUQw*+GQ#abD9QUX{g4mcZPS`+RmNxw3t=bB*F2EZ3(3kBMQKkDOLp1cx?PZl
zDw4V~e9(G!v>_i>!?%rw8Cl;9gVDvoW<3P;OvhFKO~VNCGJZKVDvCp5V{Mk!cxBhq
z?N#Q>z(^q>V}n<=%o=gF_%Ja~zImw>uswiJCUcs3a8~fC`q@v73UZ|^Q$<vP#g*3O
zD2SAFgjK0%H2P7ZQQ2zmw9j*%<8ClNS_?pUU!#c6U?ziBNnK?_blA=WCnc%nyAtb5
zL%xBXxq5V}kSADBpc6h-2HN|S$XT=I<4%+Ma;6`p`(dK%w4SI3g)g)Ci@@PVyJ<ib
z$=dCpft7VBV)=C%YOb<tjvd`x!ZIJx<Qi_{QYtyucxBzXIW49eVaI`G;WhRw5mg93
z_o2k(Gk4F;^Ts7Oh^CPov{qo}e(*Z{yh#^;<fCEpzr_Upd?s$uwM3LkPUY1inBf~X
zmv~YoOp8`e6?y&mFw%OLfgW!U^5zuV{B;adfhk3uo1cHqX^Kd}w>0N7?b;iyNz{6K
zr2K04!`C7cE?MNreCx+n)w=AEXFFR+VDB1P^D!qsb&|-v9Q0Y1^)%7TC$N|7w2P5<
z;(7%d>y03hNT`#L?kcyuSZ(UgIXxol6j)cd_BPH@#lb*^z}%1dv{r40U?(yBxSQq7
zs?f4o?W1^!gN6kss1n7B3CsO!BchIAft5&nu+=XJeOB!gC4b3k?Y`nrl|6(w6>;Bp
zE70nOsKzQJ1tzSaf);JJ=E4-NEH?NMn!fXywi%VhU#nQO36;x@@mH9!t!gqj2F+;1
z8LBr{%=SwebiH)2cR2Zas>PFGI$6=c+o0Xn;!aQJL9O1gugY~ZUtYbXO-X;B4f{q%
z@)w5zIwe2G2{nJp+@*)@ixn4pMq6HW_;}&o(sJ&eDo8aPWNaH`K9;LDn)cHo!pqK#
z2+j6!uNQLUG_^_e)n(4Ewr1k`txM+B0(YrfkfBN52@R}Kr^n&E90=0-@nIs#JBAsF
z4rkV@nq)0XRLNr;b?IBRn;{rwjE3~Je2G<0I$*cvygIa$Hr>*1^1TRnrX#bVC^OyS
zG7UC^De4_5U4=J`+I83GP6)2oNjkqy|8d=cPx0biS+=c#zKdm3f*fV`>VAjY-ccV^
zCs%JVVN=Ml^F=(iB`ynMtK)R-9;xL+YNvYh8w19;I?o@<a|~?fKb`tY*EABP@hoS_
zmC%mQG!miRX1G4Yy6u%-9At_l<D2m+go$iC9`6O8Gq1BvJ>=B}Bp_KX{)CVYX$R9I
zR#g4^VLCw{1XEe0L_0=|i=p17P7^YU%*piSozU$x1VV!Z)74hwZlvJc=R*i_#GTe<
zbVo3TWgb2)oW8IB`i&Jw&i{$VIwygom(Z!Wjr$C02clr76PP(~+Q`kmk0J#5PIuUY
z)b?XyO{&+H{w}yU%oMhvzY8uNMBuf56kJU3y6vW#gv0t{=4TMU554F;Kqy~6Cea;Q
zJXVU=e|@Q({ySfMSs9X`5(xVzSNVg5#=}tRCG&0C$>t;GD795wso1a2u1rGoPA<u!
zJ@ive@Y~}pm=YG@EyM4Do;G#qLxz<m2Q-zAJIAwTAC?xuK2&qKE4hB<(GH=f^6M@^
zwb2so$fTMw0=fKhNQpc2H>Z1CN`grJV2ea-0v--Glf?x^umlfy@f6XYcU_v1VV`Pq
zrV2sqbe3!B3Pb9bygpp(T-3|QdgoDb7X7`B-F4XY1t5$Ci^h&F7E`{#6vD#MhDtx?
z-itK~p)S!pZW%Xcz7mfc#z?ul%=Ep%?NCvbb1zX&1CvFq;_`Rzul_3IN^OhNZbgS#
z_P1lRm41Z8e$iu64kh%dj(-qY9K(oeJ&j3Dj%z>yv?Y}v-eTv;GO{bR(vUi399bNN
z_6z-B`RrGvH%f{6Pkp*WC~Y=7HBzphOZ5J#m1i{jgS_G~OE_RWUtJ9;qgz$T?J3Hv
ze!G5Wzh4YG0wZFH{h)-2Z(DqB>H_gy$F-tt!+F`2!uPBe;qt9@<BdE<U(C@KZw)kW
z<uj>|GJ{rk9L@-;q2kr_+j7Pv7zp11^{IZ2NrU5}h?Izt$Cs+KVSFoLCOu-8HCY0v
z&coP7cd-9D1Y&q}s<ca7NYontZqhdhh`Z5I=F?{`zK+1cae9mMOQ)Y9GhxZxg!-=l
zr#O165_gHxkmz~#nD+Zjs`DEDSC%HUgUPr|XTL_Y+wUZ?G9}o(Kx?rKkV7)G<rPC(
z(51IUz90crSM?@R-ta>#wls_1ee|RHy1Mzm9?W-=7&_;Py0#Te)_NOm0R1iiAh0>4
z0SrR=#CF2rLn3}(ux34?lGAgN3f*stcr<8&j~d_3t#lRKOJw$=mI`P!GBK3$T%C@@
zr}#JAFmToV^cMb)ONw`rQOfNQc~hb{zrrDO=W3Q7gPrcB0Z$=0_6x^R8W#Rvf;7F$
zmfDN^?1o-5`RZ>$PQ;Kk?Vd-Kcx+udep#xde<E~Bx?}C;4^5w5GKzZ(z(48R*sxQy
zN2Nt6c=m?3%(dQR*-S`qL6E%9xP0P4qvM2oa$GS(M^r2sn4H}Ux~AVSYhji(6+`?3
zTiA@hTEP?!k2Xb;66Fq>k&-JeiuG7f^j5<ObqKlw8;`^ZqB8_;s6N1~jwj39cT+_h
z_dE8xJ4tJ&r(GUIy~6Wc!kZ6&wSq0V;wX-OQ6tOY8rlOJeyNAea)IHL<ZHKrE}KN&
zKH!CyZHr<BgN4A_dFiAMjfIVV9UbM4=oYbx<H8gmPgjQCQN-f`x?~y+IlY4zH`kh`
z+Is=7l&K$KBNaxh65z;KprVhe=}U$vHb5~_n9_KpGIJAFc~Oy_Z7Cq>H&D2#@O@eS
zvICxD8fP(ROTq~X`jII}W4%nwSgTp6YO<CSksQ5mZ$B+coS?YuY8&;MqK-(nyJd(c
z^o0~8|G1PFxiygWj^#X8@-2-(UQdy)w*)rq0$Q#1*hjq1;s2H6OnO{+@jRc;F>ugo
z^%W&mxEr&k-ekmEMy4WhN7(afDkng~a+@E%+HD@r_*iOgwMu%u3628$5wi&Mfd)Xb
zI;|<zg_Xr9D`OKAa#j}pXXPldrsx#j<EKz%p$o^c?wYZ__?2D=*$bQKm(tPdDP8Qc
z$kbQ$8wnQs^2>lnLip0n7LUjS=Z%*-_3<iitq-;|Cq3?`B3Ur)TVr$WoS%MH-?nQ@
zu7feO1S=8%0cM?4sSZad)RU^DuUGkX%=9Q#dqr&Gs^YE(9~KZM{{ItE9J7n|VUo2(
z6>i0JgZuYe(Tv=R1}1j_{J7oGHTvb*-NYR@w0hB%w?E8=<yM*B%w~>|Yy(@8QCO%7
z<SB=aAH%<3JP>c*6e*fP%oVckDi9ZQJWen`BJi+^GU&&9Ni-(>(4sS(iix-~55xhI
zf7AQJUL~=LUbYt)%CAW0eWW3ltIUE#_M~9dJAqc1s+2@6r{2lW>>^h8Bje0Vz@U~S
zo(cR<2XsA65EBFaHU8yhiRCIe0%QwLS#Q6<yl)x*vBHOV{s%e5ap@XIaZFzB5427>
z!A@wi$YGRO-9TSm+?A)e57WK{B@_!#aYf#+WMV+`2{Y6$s~4QV-Idlh6$j(M8wQKQ
zom^5q2bRtPo*JN`(k#T@geH8K2?BWH7OjVq=li$0ed@w(OVlSx@i`>gI|#{kerJRK
z+8p|qx`2-@2eN94H`)BxmCi-zf3k~j$6~Om1&RhjB20^FnSJ{#9hjF*{P%R^-cz(K
zC7q*gnMF&!jCo7z7!<<JiHRL%MDv`5ijO^8>g)TxMCj?u%4nePd(IPZok$!6B)<vM
zd1W1}p%HaHdI-+CR)C`fr=1}Nw4e%*Sxk<fPrN?9<NZkqCu~;<SPk!ZH0gP3`Sm)e
z7HBd|HVeC}tt9K;&W_9FJ;*0k<Y+Y^sFD_7`0biexY|c5w@#rdx^1sW35!w2Jie5p
zpY3Nt5Ha=MDec!GAx3~An$}vVck^bA;w(TG%n0ImasZa()F#Fiy*F^77VT9Fw5I!4
z+-BL2nDx0+zka43<gfhvqXnXz<y0f!rUOyC#K*W>_%&7a$AToLYzau11+q)Mw5tBb
zDZ_0;YaTdbK}jpN#avs+GaSv--uL7&474sP2fjo>l!OFr23`90Gcuk*ahg(H2n4WD
z6^APA0GrHVF!zwtR%igY(+Y-ya*!BMyFY{$$5KIc-u;k({!+R;5^44M#fggba~$W5
z6>Q6npGSP;h)zxW*5J9`0%XY37n3nBtdPiO>Q%mP4skN!F~J)ReeOT~jE$yqd1@F-
z$lEj%j`DJDzI7+?<ifZ76Cd}vi<s}x-jnq{?xX1wN%K38MeYQ?wRp9koO&87^TxN;
zFNxoXd2Q5b2ARiUX(-V@Tl!AYj#?O-cF%J$9A27&v>2yhD=<FqP@@6B-WWVR2cg^^
zYL8c4JWiU|MPTWfVlZ^RS2s6)2tc6*<Jz$2V~zXPr4H!H_Va;;Fl7wqzIyB8uOIiU
zBH6f6W)CD*zBgM)f^iL!5K|Nftqfi6#N@y%5ox2z*r_bnDbIq1>owc{^^E`hKcyaH
zWLlPZ_e+{4zl9a%>3OFu>CB>l7?8I5Y--1sL&5<qgFJQL+Z=}#h2<P{OI^Yce!`b<
za1KTveaD92d~~*ho@MaP$D?3x#s!X;GN_b_$fzwmzZ?c|sRH<ieR`5+{Tr269{6qF
zdvdeWRu+!^a~3(O>K|WyBJk>(e{qPz&8XDW*Ryyqyty<Q*KQ;$>#a=!p!<d>5AEX6
zChO0<Qm;=%MbDMr*!R$P5Fpr}vqLqr?Z9S@$*Kc$)vcpC#G6y7bafMEb=%DPp)4EZ
z&~XGcmLTaKdwbrTJvFGW{nETcpm4M1b@ks8F8{7Q^!?)QR2)De_2C?!(b`f3gYFb%
zCF!qL5wm#y6o@*i6Bo`{E-`+Hob`EGYnh`CH}-DcxS=9>XTHdJy`0LmXly1)Z>aT*
zMbqMbzMibgwz`e-1kb|Y&f;7vdVr?YYQfZkm0Ys6oR(&lvQ=}N7R^1Es6F%8N)Npl
z6+E&nVqUC+O#pX(R-{`kmvq$MSa&lo|5+s6f3g;2kU)W=PXU2}zU~l@3=prX>8-l0
z;=bsKTceXX4S7go;OSD+buRu}+qFU*+-KwOd-g}BHYfPR0^|EF5YBKr#%C2PtokvW
zOLHyCi%#+i^O|Gbuv!g~D}+Tw+p$iVR6B@cN636;e+=mk2-XS)s!x^C-so=`^=grZ
zyfuXEQC;oKO_F*@{=GpCG=91TU@pd<l(UYL8nXt!;vhk{V%7%GD`Z~7;tB^C;Ct`a
z@C$V#!Pyx%?Q3frIk8@91w}A)DcPJ-#AOZYkKU4X$Q-ySC;ANMbg)cRU&u`EcbzT?
zbBB_WQsJsp>oXP&$;lTlUi=zJ12IcbC=+jzYtt_^E-=3ycXI=oF9JWQexn^?ceZh7
zkx^shq`sQ@i*adFgylf>qeY2x|Dca%YRU+^j!-X*jfZq*)+`X3g5|YCjL6T+!HAvU
zJ&p~H=>3>2KBxR(B%HXITRK`g8A`iXo^)Y2#-ORJY<elN*myx~(AuKQ{W^fhHaHu?
zN$I_lDe1`lr!Cs`@>`6oY7WPQI<8&g+1)+5mY;r4E6?G{)K{v1P!_*4v#)#pA-7Nm
z@i}v+GUv=Imi1+VJ42gf<HVWR@R-voM<$>=Y(OUDd<Tz92Yi?jU3F@PPc1zQ))Mtm
z6}&?~u)yKbu&Yk(N4*7&ycvW(PIhi}+huj2ylvM!H&**)anUe8vS6N42B`rGHBe`C
z$GJ>FG_0-$Mm8P^H-U)ri>msruxsV3DoaxQ)Jawe$@HbR5?7~H7+q!osCImJ{;pyv
z0J9xoXD4$vLtD!R8D&U@c6>KfK*$PiCwqc+y`nzClq8b;?E!XV&4TI>*B<H92-P*o
zx+$)hH;sT_fy!yTvc)9o-ZhmvXBb!}Tc9<XDw8LGX_-|DiAI*hJW8Qytc&%lHv4!l
z#<s3?B%OdhpXo`04Jm>*8+zgc4i5j5k*w<wf}9%ul#z^jL(skd`GoZol<6X^yB&#=
zhHMx0Y(*#MQh~EgOndQB8E02vmZTZvBMTNZx|R6z3O_)ihS2Id1`x&EH9VA!boJxn
zx1ClXPUcEEf$ALDrydyKsMCr!dj7V3{bNZXavs<@Tzv75xYggBMjSQuX`&l%FZkBy
z&KXCi-x?C`*3)6lX*e0Zg=z6n%4oq^$BK{WisDI@O}-vVDe*!OyO~FMgg;D#WMujX
zzbNsObP}gD(QGSw#=@#a^F0-Xa`BW|m9kIS5-cn$_N=Ma-iSF`Ksa3`&ZiADW5vf;
zcz?2kyZSl|7i)ZaEHyH7U%FSyF6T!LSE#3Z4qBsb<L_rhTux!vdl1jOiKiod0TzpH
zX!}w<zLZ|^XMu|2b>Z?l7nVj@yJ`i(w?ILLmlaIKB8(C6rAQf_)|}Uc0L9?L@#l1(
zYZ54S2IF3Y^;g9s_n(qZYFRx^yQCL#aihzHGqtPGr!x4`w_ljU(~izVK-Q4;;B2GC
z+0t{%puy4@J6)vkJYgJMN@|U`hPtcY_oZ&W{pqN-uaJ40X+yzd6BM1yVlEH6a3Y3v
z$x$>*JAcobg~%mkIx<3Hp(S>`RhJdU-J2mfN95&s%%F}M{y2^T+5To19?S$anAk`{
zYF&$;uQ`kb-6mk)=+0E-aQL^3TTaGObAYH^GSw*NTm=j9RJNq7dB0zNtmjS!F|K{F
zp}V!d3rWbg;S;#Gr=oas&CT?vyVv?AH#W;hI3CzH=WbG0+fLMfci&0WrY#ai&{&Lo
zQ=YP`$wOO_&^W27mGxM-+b$P-9o1HAS4XVM%nDPII6bLda(UMEp1q~03uj2hoo`oh
z>mL%49OTvYOFf+HomQLIl;6B|tVAU)jS%R|s~!=S(w|3^BZNO=3A)*LZ#>4`ZU4GY
zP|p(f><o7ZvR-E;3-1h;aFg;#SwDZY^8wu@Bplq$sH6BjR&EeYk)xgL@Fnsx5>fIb
z%_qyoBdSOm+R^Oz1#}8sJVGhv(#7AxkYTY0;CJ!Bl!Y{eAwz>Y48o8R7Ha`CkZ$lE
z8tw}*;?%pi{=g&L^T{6m%nYGrL-QSjrCh4c#cM@hTduBarHJcoeO&vcDsdHc4jdK3
z$P9@Pjdb_1<s|cOsM(MC$OM*;h-qSDuErq-saGHkdGy0?X~@w0+=HYcv*1p%PLDM3
zd&I75M65Wh2^UYow2Yj`drxhlE*ZIS!jc%B9LVIx%yp%~!4D69W0gDFx}V~N_;NG$
zdFpsd7k>{zrY@z$W{xAXF_7@?%J#TWPZ){;LC8im`<x6Oj<kF~WjStJ>dBQ-t#s$7
zxaN$A2CQQ$9O=SdrCGxxBX`v08L92lYt7p7R|c|vCuX2w{E8>bff{<Q-GB)x75@d8
zcvmwoNk{poOi+`hCzsMziqf*ViG!#e2hP1`QZS#`LFZxv`?9X8|F2@(TAjVG@jSIE
zH+p&I#0zT(Kz2Qmhf0_Be${H(trj*t{ZWBLtnBN~r!A$8hxs*0Bw2N@&Q+zGz22>s
zd$A$8N8*x4%l+Q|kRj2VH%MbP#;;R*bTc;P>|w+nk3$t9ZT7PI4D*Veq@<J-Z5X!Q
z>r@PN_wOOd6Qh%&);*?31~SbF_MCg(>ex(0wvnLzkNt}w53wKa!RzVa_&DwGF>G$z
zVhc1(U|k{gnj0z%&*PscT9vRsXd7b24t@F35XnH6tTz&I&zyw5nycPvF-h>7+_xHC
zB;XT}4CIqY1~LMX(5KHZeG*ytb|E@P@108>GR16<?tn_4JJ!AgsTVegVXt4Se>wV7
z$@SJ>HF(7x+YsW`TuY{GJ)YTRj($!;LLya%xOk85B<j8;EiHk>tU-M@4Nb6P`noN_
zn6U?&)35Be{};D8k^U0{ReZJa?Dt&0-*1&EH{;5cAgu@ZQft&X<VNkzvgY39_M!z6
zU^YMM+}4^UlXAtwg!U+Al(G5c)PC0J(DXJf&MW3oF@~EwB%5e1<Ni)v*~%Mgoc;!}
z|Mp~XdzD)si}RXClGchI++g36Htus6OKiiiho+fDBm|Wm)OG(8(fT(4!X&H4!dD!z
zfV=--($#cYTx{!pd9s1DQx$Jl?#EEi1>2{buQ&a%>f5PX&MrLTZ62K&aNx8l(I_H$
zN$E<}z}g?4(cdq@zdyG~eVGaYnDQU{$1YIMPTaJJYRXL@r_QXHDRy-pKISo)r#&;W
zUtN-1DPiy@IL><ykbH!*B#2HxqtTkj_dMoNBQEd8tG~`N-0}zL{ck8zZ<(n%Pwi`j
zn0=ou4G!=ZX|89dRb)?$y~&?6CZv?=GaU-;EGnGFRvqa$^@q>P(nh7;CRwAjEI<Su
z;zSe5cIh(9bx!=EtUn!kGfMamKm0fU^I=wvZ|k_~w`!F1Y=b6~<UhlCaT83xMU=7Q
z1q1~0a&vRJA8>x<nZ!$9a=rR*Z~ot0)jwTi<c|}N0OVtbD^>767@u>*HDMixKO?|@
zc&7g55rN=`E9l?pz5e!dB7VeU5#u%5qL>}^%>Vow{p;~?v|+#{iKh=BV+4+;>PIJd
zk#MYf;ZpzPO8(^wH$K~3`5_Hm00D1`&gQXcN==Ns8lrFfqyIZ>?<yne7CSq;_N`mb
z2^zHauW|&D-ra=@@?k%wp&eAXA%~46DB#E+-xsh7lrh1ogDF#v^GQ^Hpr!aB4aCmL
z6+b^eS==mJxl+>}?Aw2!z5eBQho@~P_IJXK)Y^&>rMUI7Wh*rWNIj*6e%tlmUC{E)
z0RaIz)>`OvbaER;)`F|JtreT)u~-s(up`Y*{6Bq*AO1U;bT5Ju-91%&&*Or#z?GJ2
zkXFo}?~;nqhcv{u+IGACo9BqtRE80yvKm0ixa}ZpN#t!aN9n8@S=Y1U6s=`a>eK$u
zQvPqh@>@o{K8=9o(<df-k$fm}a&p$;q1PQP^Ae-xgQPZo{2ctJPu?m2hwyL_We5*%
z{WQ3b==fi<;s<koOAcQ!g^b7V$>DYF!oxFHu6M3q*>b^jn-a@^bwyR;#P<;Oh$^JY
zwxUct1)fl_7V>KFnU!ob%9{T9x&E8g?oStBr<P2`L_)$*c6{4o{2fw6Wt)Hwr*6y_
z)pqOc|78~YP7TPGHcEXb%9X43NjxF<9~AEYVU1)p{e)~PE^wDo7{~}8FLsAMh{W?>
zB2(pm3}iu-SI;bL{^}0@))=D$MAvS-;NiDE#m*-__MARJIkz}w6HZ&qX`OVmjuvT&
z;d`s+Y%DzOS}dYuVGeU{Ew%S@5H78ro)$k~wW8rz6|a_S7D9}qt2v7rN^UmS(FZaL
zaodt@t6_+#>4y&=h7Z4k0h^Px=NobnL;t2-msF-`co#XWK=E9&JP~UA1;p(MsR!~L
zM<peDS;Pi@qPAzoB8e+V<`np-Y#+~udCSN#O;l6k5{5D+S774$_riRj3u%k1CM%>(
zW|-TPfvV^N>}Nb^8Dyib2{3@oEphx7r!m3wDpIXL>xhMjd+>aPd9S*3f**R>hp_X9
z=0`6X_dNxmVpn4yOhAxGK1>s)q^NdVRdv0os%TsA!jWf{EjnvP{vT&=9uMXI|Nozq
zqchqgZD=ohB`LBcDIsEJ>`V4tF@%id&_U5=i7e^ZX3W^P8M~yiFEe(MtYaxVWB5KV
z=bZQc{`L92|Kq0HO|H4F*Y#W;kNZQ;MeniF+xIr~x!)g&WcT39S1O(erJdctIAIvj
z#rJ5ne8P&={k?pZK+G;KXzb*>=ilXB-g!LF!{TF^6^=KWH7U!M-|I<COiV;C{)!Bq
z*SC3Yj}G4b4e9ykKs_hWm0_w_xZn=!4c)6(13;iqhoD;y$dz~+>#yDileGmh0`a@U
z2k6-Iwyme!*AOi&D0?JzlGGuNvIj;_bRhDXlvITGKfq;qa~x<?I20(aR=Vx^mbdRM
zC4up?O?v#a`z3!8<3^b$@EY8p!=>C|P>*b2?DzWQd<Yp6=xuWKjk()GxILjrk4jE5
z$-PUXXi_M8iyc2?fwyvR@E?FpixIisz9Y;30j}`(u`-pe{4lBC@+!ri{DO7TTTXN^
z!UU?kda@s`Ti-}X?s83ansa5=tx$b#&V2GKJ3Ff)^Ezg%iPy@vpQ9IML21hAgC39a
zKD1-=sbdDOU^f(Z$i(o~#BPUd2mR6X;VWI*u13J1H843Lt365FbD}GbEu-HV2TV+$
zMxM5uGiQeArlO`^1H71?c!Q?~Mv{o|8?|6hhneXi^VQ}XVjW*Uz971;ZFR6hkD_;{
z`vnY@O2;(-t$-oQ_Zo<=#gL&(6=xp~fpSC}_+^DCjF2iRx`HOE!Ar88kPAikce1B>
zPg5$C|FuZ`4@X{n2&d~v<Kexgczg->o;^P=3`hf4^0&AumXu(|omGy!=@(StVx^n<
zESlNztFJolIG=W!SCq^6LSpzaxkq#MFNz17=ek9wtxop`*;8&X$jjq+o(y%Trk<!N
z?;=ivspf4Rdwnl#VE0EWobTp32VjlB=tKe@-tb$*+*rqNgujf$zS_5J;S2ccmZ7?6
zD@YV~v~bgejHxKi2TAeqhb*axEYCko8aHMhDz|#C_H556Y@AL5U3Y5DzAj3l+`I33
zo>OTNAsJa3fy$OvMcAgpxDRR%W67^@8tlpt9VqWYr$^y=U*3@tCM&bSFx>eqz&#I}
z7>4pm27urQrwp$kZ^>C-Tkq|3cOeOHW%|msG@X0Af3X1W`BTJQuRi>*Rp4Jg(0(G1
z2=90eUFsw-=>9U3WLH}y6EA@Oj-{&v9A=rE)tkF(h$fTm3#68L-0fs$+4AF7l;ZU6
zD3tVh=iUsS#&(3GvxVQP@!QFaA7P`@L`#^wp8=dMc&8be`T492@H?)8jTYe{D+b~S
zw(lYOQ#C)zw&WIWMd>`Mp&K5*>yO_24g4E!-=}v~G5(w{askfo3IF3ol|lVw@e^%X
zG<oV*lrC|pF_&lprWv(dShMRg=+fj#QmPqd_QLWnVF>&#Av*Ji6=<u1FBEc{-s<Jq
z>oz90l(FwmEZ8k<ke}0hGOELp|Hk#YyItuqOScjiv^uu7DTTgjvdl?5Z)25ukvGj*
zaj+pV%gjW2li<<DY^$3!wY53WDsS2l_Gw(X>(p#dzLT+j(Y;KNmbr)ZsO^aA0Oq0p
ze80E^kPdE8Vzz(PcJ1ru75w~GRSm#c0^KD-Ow<(CyVMDNat(M3MAyDfAHeRUK}0MB
zd3i?5`II>H7U^c!^dJOz%3c*SFqGd2oS?W(*urQ%7Zg9o4UBI4jXX9)<hrBxfr<NU
zWQT-QL#P$jnB%)2#$O$MnLgt%)|&b~SOoSwGI@l^5{Nm|r{t`}DH2e9g)UYLounth
zT}Ph%CM`Kw1{X8KAn?VOy2kUKqWSRRv22KqnN0|4JaL@jDa$CDTTO1eqNHc>-ryN4
zTNEiz<<sO>huHMPBlub5*7nZa4|%U^d39}z`H3`$1OTaBp_pH$BK%FWyG>OR7=9r?
z9IVah%fAtpV7G%k2xH;n>1Fvt$De~vWj2*sY73wM>F=gB_SyM3>4{MjUR>0KcN#S{
zU9dISs8FZpZtiQNM;r_XgKwIR>8bSr9#i^M&9^=MQCF+8Jezk*;H*RZ<o(&Xu9ScV
zG0lCdS7A;Ly-~a1J20P4eP?VyM4_-P$CH<55MI%jd!@^?bbHvBOrGpyT`mq4`kKl@
zpDRd-yN`{`iH|P>kTAD3{!1WlItiZp_Q|3db;Jhqgs*rYcNmMYUh(HKa(3q~C`N+2
zjx4xL2hQ`RX{abOX_*ixIf+l|O(&Ew5RQ@8z!S+8VK31C)^gy_X?e??Ko6}mM{u-#
zAOSN3df*Vzndy%@gUs>EJ?vJ2hhzt0;vC~DHRQ}`QB$jK`d&GaEXPVk5~I(AJ_{Gx
z>;txluzR)Ko+WT-b&Dcff`z@d%-PvllYCf%WFk%o|C|QtsY}vdemiO)-<_TTARp>r
zxc+lXPdA(@Wyg&MWy3?Cqf4ZbA_a+|mLuLWDu4e*U9Du>*Q6b#^}_(0O=JQ4E(eN~
zf+p);1Qz>P^>9C^a+@ixqq}OglpDllfD}6YF><M28srHC1O;}cfpfyRp%6|^i6UFo
zHL!BHr*B{%tq$QmkX_sNy<q|L<AvXuOP-_=kKcbP5NuwXbT4&D7brDo0b?F@*digA
z$93n!ynW}aHEJ0eJe-S!)qd})g}H8e`tN{;;ycsD@K#omor^v0=S-}PoWtK?kn#iE
z%_u*WQxQd8jB+jNPg(D&_^Gh$aB^PPd+$BoQ|g(VA)`*p+ovW<+H5v@hpK(Yb{_9m
z<ZjS*E-X3c{jKTmo$!DDDt?tS2X-<sziy`qY|4i#zg~<9-lngKcdIpgW};|P%&Sd7
zW@L$FJY~Qr(C2_svr4Uy!&UVu-VKZdwZc4-vz84JQ<GKkq{hMPd&p_)mR@D;nltSJ
zZ0O_8fUDL8E&fAb_Yzfudi}Wb=6I-!150rxp$#M$_wSfY(R_QGEvi$!23S~@i1<z5
zC%tDwl~2C+tH^Des99j0>sTF#IN9Z%HNjee5a(8Zf9|_a+%<HxH<<Ywcn2F-H?*C@
zcfhdT%<TPRft_SJg`jf3`%ZNS>}2$Na3ZU(SMJMg<)BL3R2W*^K{CdMJ^|5h`Q$g*
z`3@_7gi~c!LF+Wy@L7&EdeaRNp@iaR-$pv;h70XT*T{O9^xXkl{kzI24D2zg1$xy_
zpS<@3I>n|(X(`wYQ-kWMldIo}A#J{L;qxM9{N#`W&%HqU`vlaxGTx7FjjTcu{kX5T
z2jPdQZm=WqI7-dKUe}B|o>fzkZMNK77AkIO+RYoISg^z-G?V|t3Ad6EoG_3=-FS{I
zo>|0k<+N3CQFIRLLgXSPEI7E&sKG;~Z7z1twh24quzfDN=Pg8Tx^1gPW{Ymh8;Y$c
z3lk#?G!V-utw~x0aiZ;FOO;+$%saJ91pY2m?;3X7(02KDvKVuHv+y5^nZHeftS_+1
z%KuJ?fJeW<P@>lPC#A4U>q0=#I~ZEL4{#Zx_Pw$<l4u!{#XXe%&L`(_cv*S+w?VO$
z#&B>IMPrL_ic6XaJ~}sRI(B~UF1oL`lu!I3A({T#RM%@u#w@0oc&}l6n=gTTq_>!g
zNDa^_Xk3S56G9m7=;#o&PgVJZY>jFzjcmt%+c=~2Jx31xGWMcNlE6U^;0Z;CylqSn
z6eZqv^XP&}yx|2bQ<&%tnj^P~+%^hLTTS=y0rdHKS_EhY4`c@ijY}83xl9mk-yO3=
z*LUiGLVGyPJl+KzYqj{TA2h_`RzwsPr7X0C5TE(52X%m$+Dvvr-4z@e>w;3i3L;dU
z|6mMHc!3;`4sXtyy1HE8cG8i&5^OPqu)7t7BBY~vcvVt+gn`aJRqx-&O~$nBMYOeA
zb5jWKtU-r8O+wvY7f~87aPBI9-{;PC6^-jdHVOa)u?AI=JHi;Qan(v1g_>3T$y;c=
z))~XHm1})#OrJAh_qjjx(Eu_`z+43Ejl1lA!b2J%hdd8Lt;SgVvJGU3r$3G8DtNf2
z-NulwY;;j?5Rh?_V~&e!Ray6aO|Mo9jf)~YBTnZe5l;C)M5(lojPmU3Mzg8tvsh2V
z<?~>yVuDiCAn~q4@~3Zz7|_^21Xd`~6c#~m4p_i)`X%=ZKi=whjLDD1N^O@(zOQx2
zU`ou^v)&t#8n-<zk+bav`$z=mDsyfi8P!{(hQ#emF1=mgbdbLL^_o>`+bg3N2zvdC
zWPZ?NT@UHC-miUY7_xy4@RvfnrlKV5RL0}>t#|r??A>1Ovo3PW{Zq0>XD_~K*dXEa
z-QbGxmX+Ff)YRC*<-1977AZH>_$@c3F`AE7==|qX?{7DEJ8px2W-HfA%`ynryz=|E
zR#@*il&%bl`N<`{Pp@Wq9?B?gN6|$e@3U@7$~`_*l?EE&fmzFPU>jPpv!W)st|$(m
zbR=zG4+-L&`Y;A92x|D{-%!K-75;!42FdZ4%R;CR;mN?x5Bc<653BG6c&-I?T%PpR
zRoDws3GIP`t>Jk-Pe?^-<$b!@w~ZGl*G}SN`;3+50m^!{ibH4^%6aIkGmOpQhDiX}
zFu3UcfDI#fTDpL+u&b5@e%F)hrkeg%wENCoJ%Ot;Ah~T%_hH#dkHq_R3$wq#6@m4#
z0AUU90oJhfTIphySa+UOiQr+OTEcmYPh317Fzs3jn3w^C88THg6Qa+zs@w$$5_JDz
z31c29fh`Bf&S`?5JiA$U=LUcO>E*-uehjx+^D0<q$cGF_OyFqdBNq^w3Q3*>nwZI{
zmj*k<CXy3Klz(6i%NhU08it)3{@I_bVU*URjdWBCBU4lB!P0z}yFvHwOq2*eV8Y1z
zb0)D?f3b$)jW{cGVzpv}Va^VK6N5rHk2CH?ELF<b@bS}>QR&|axOC&v-eOs_OqZnL
z-d*#}{#ygt=z66^W|;S4s}iXT-HRUhEvoA~m0g@8UcaqvnT<1yN?y?QIg=+k;u6uY
zNVMKH6;${y<E4N9R-VQEZG#<fx584iw`!r~s~_((L&)O9_|$AW5QR6#g`}5SHGB{f
z+VRnTpS@m=2d*)FRJ}hbhIUHpY*gE9|3yBw!9Dk2kLTx{+js4aqVfHPQXZzo$E5xv
zzTlY)(p9S=Q^o|b`}A9uyYE|E`3KZ6JzX>fRZv0Wwn2s3O801UOP7GYPBfC1@6;D>
z92@eda(Jwg*6-krcBq39jqyFrMy#{ZhE``Lm<kNoZR)hFwVB%`(frs(LpAP5ZzAE$
z;NW1@uSC`=y1XMFV9|??x#~nFE}j!y(!%$Tpq?_%LkKOz#-LP?_2Xm-q2-ad6)dpt
z%*?fe^%ZaC{~MY{k&3RkgO~#X6;m!#od8Ii#EH89RNaj85s@W@YG-mPuUwL&rN=L>
zQ-&jI?4b3SoJ1f7R@JIPQbUnX3fHL)8Uh=N7pM&xBR)qPna;B+^byx+W*Appo7&9L
zPOrsE@-1bvA7_unhoAr~TKG)hnky(Bbry$P&}X!0zc^7R&M#EALW)u(n<C+zN>?%a
zkq&9Wdn#|NU5rSkTuvPx<E^zAOi}85MQ?6EnJ>e?>|NmQ-61Z3qy!qAGPVN~_7j?y
zl9R+52UC+HH#<)#2#mG9ValtKemu{nSTE^x`sL_XuU?U#&w(szNKoDfAPwZpcN4zZ
zS=`j1MQ~4Q)24u_5$SwaNn8=E7{3I(X<X4%=H>3b*&3LBZlVo#l_66<YxxJ^v_=FZ
zB_$*ICsWSm%O+Qn2=9L<Fao0lFETN`oa`&hVKJCthP>|?wBOCvim)NH_a)61muqS~
zWP$i}!9MVED|{=-X-g%%#-3}9v)=M?Xmn}kwq)kqtY@>*R!>LRtTH>miBke$Gc<Rz
zq|Uh5jfg+HcIAq@Yi6vG6Xhp)N&hw0_vgiQK_K5&Tkx%SR#oh?9wQYr#}?}kQp;<r
z;#a0R#*}j|FA@rZ_ya_Ka0r7+oFeoM(Pne~cI(0kke?r=uRwp(69UbGB%^HO_8de!
zfj`sIqaA-|sNS}z3w53zRgp)M4(+*+txJ01xACY(_yfURCvCa6qDoh$Ysh1F08-d9
zsckwBNM~2ci5ulDR<R!MK{!Ia@`#9?(f&T46zzET%}xIX?)h2Y1_W+Nc*uy@BiI5B
z_b5J9foIzisyM9U=F0j0pjObAAv!GJ52_TjW9QTgG9HQ(ZB;3I4{2(JeTj0U0nimw
z%kiONIPtXZ1$i=R#9|#Q%y+@rBx4LTjDGn0Rv__kg9MCs4dg6lNri`p`-s?3<Fc_2
z3)fr+!<vY5CL;Mrv<0FsZst9%qtSHcWIKEI`qdLW72j~V*hezRF_|+UPr0&Hpbwin
zANMSZ-|%GOL#ie2pV#*Pp`eRj-F#|M+_d7?Tb1_+d&jy!1neC#>L{Gyz*zn~u5~N>
zAzsaWzkdktHvP7BNwI{0Gjw`Uj-WLP64)OZ6=i$$>f;RQsiGF}Zfd_!B!rudV!60(
zdxJgF9`GP%sx_)?M5y3K5?ZO5CFCGtt!RQW(>b@|GD?EMvwxSNJ(tV3Ta%|YPe!Ap
z2q^c2Xu9TU4}d-4=WL_tRcFvuAL;KI@}_6|cFB;VhKY^DQiymi^*r69yY*Zox2uZ&
zo;2+nG0pG8?U7Nc48V)eLuNUUh3S8hh3!ULF9@&SlCK|>@Qfxc*!RpX4G%9hT(%${
zr3_fToA9Il`zij{xarR=j(qVRjSNHyFnLgWLc2T*MEa%@A|fJ9g0)?Bn@}_En6nPA
zn-b{tvIf_w&Moz4XzOfiiDReX4celH=&#*cHI+M{w^2Q8$8My3W*)kLv^P!KeWtU8
zvj}87n$RaGkB1-|on-ZxZiTshNvK|=2KprPTinXmlS7KtVED;HxSoJ&^P8}^;MiU8
z8LuQovA%A4Ykg{k`@+LN_9asAwq7Si0&c$y;0ce9+e;$Z5;qR$)n-9c%D%uoev=M#
zy;AewhfAx42Wl5fT7ZAMs7t-?GgSL(QX-jm0{EMg2_aXc=lYHhMDV(`o6?JxLX3+V
zt2X8LxakLaUjp4>{W-k;<T~r5mHeRO=2$6D!HVl!t_9XDp3u=!j#I9rhAOVO3Ubez
zyRJXJ6UW%0*}jb!lc@;d_4;-MNbqwFlzjVUN5@Opln}CT_WYk@;iR60XZ^MA%D(=b
zJjg1-1ZmWOExa$~u00V$+Ryb!P_-2Nq=*!(15zFKzwQFPwjaLWMOyrAu%CC^e%b`N
z9p_INkk}E@hrSVA4t2XaAIhjBk+f2uwRq#`7|PkCD@N$iTf5UY8a_@!n6tmm*0^jV
z(8t9vGdvu}I>|Z1k7Lt8FD-E+Cp8R|z|NJoEb$=nEN@0g#;is4;rf^Xt3oDt73EK_
z!9gRmlN|n*jX~?UAGSPp>1XCus5<vYJ@A?8E+JjmpA>>$y|R%Ooxg|j6o^<P7xgB&
zD1{%dg7!xtl4w5y4K)PA<~Q#I1moRdgz)nWIE?w%uU=PP+E#VhV)Rrzf8R&z;)vY+
z&PfvWg8ODwuh-=aF<+ajQIs~WG#N*PI3+qT+Ul%}lNpYE7%tWTJ~PgcY@=HpYMvh$
z!m<kQy{o)e+%mc8`;aTYg~)QO$&>wBG@17S(lo(uAC88u=T0IuI#F=1Y$RJG#8~`d
z$<4*JiM34E)G-)N9istg(LAufAxc6hGWnZr!O|f@g+ijgE_WFQJ?^Zvc@b)mZ4E)A
zkJRAvn~JocWP_4eNHC~`UkN#%5Z4r$e^uGE6)}pSKb8RNwKABHX#9uv_oM-6f6=a(
z78hk&<nG)vX73BCG3dt12E@`{NaGg7_%AIcnUoT)oV0_|$2}Mc^$sMUvC37;fZ>QH
zgb{4)`#C4OYe(d;Mjna49$2QHY57Chd#1*97(xI<*QLF7ZK5FUU9{d3Xq0?i^7gu@
z_rT^6>dU(=6Z+=^@k0Vvi+hqpKH&Ofa%+9gUzxp{eyi<=oi!p4N6-$lyC+czJs<%?
zw2f5Mn`OT-2+T4E9t4H>E5XGW5y_4DZEgD1MNnTptTyQUpx!ZJuElt!amChV{rQ~9
zWVwOxTt2rqb@&kuX~B5!Qnz9LwW=)2c#31;N^!KX({kxU*2`Ry@fipeJgrwwQNm*o
z?VemzR9>uAiMc?kF8w^Ey6`5S6+2@O2h*`*>Lh^9iQTLdP4RPI+HM34J`5W@q~Xto
z(iMy+$`639n#T*qCu-b5xHGj#lISL>IlGMj<V>kJ+BQy>U0ZRH2IXmw0w^%=+w~R|
zGVO2a+(Xp6AR9lmw-J!^`)6sIABvQMdBf&FHK*4y4ZDS(<BZ3IgbAuo@m2lMx*#)a
zBv})&?W?TAh9#Y1r}UtYp8$wvt~a#Uj(xH}5gVGa>!oTYj7__c(Pq!|%!~uH^78}y
zYZo?G`%Hg42^+j@Eqyb=P^?8gHP46xlA&HBJl~{@45LSs#(r49#i_+!>VV<(NX1e~
z)C|lKdKOOj;0b4aDz{1&4Eqa83msz_<s6|JC8Mwm4?{g<eD1|N;^76UNFB)9l%k=|
z-N8*pEH*aLSkG5R{K>EH26e51$~lbc{25X(+|8N_V4D%`+UJR%DjW{sd?Q-$nN9LN
zbajo8L2RbXi+edY-XT7kN2SPfSK`WlbtGu70Ry)k&;<{xL5I|i_@j)1Jyp|7mTe(`
za-Pf=J^@{f@6U%n6SebgqDE!&U453jx$_d^Kb&pR^79ZinMk*{+hJ9I{l^N0!yDLL
zVG1{NSrnzaHf|;7lHVvurrLL$#U`G{%PzPZ`)+l4uOEz0*4I<7w&uGip(jr{{qs>`
zW&J0TfQ?!LI!#|+bM=!+%;S01L%iFg@;~*#&uaH1u?P-}^A3Lsge9!DBLd-ditxC)
zAL~esb(`Esi$XkwoezYKREU!@IHjRbPb7ElL@2^&c65KfY(8Yp(EWM2>$T&xH{9f(
z-Vzr<k3MUmaxZ)|V$Xf&Y}l;2A+CQyGsWcE1Po~<(Q%maDv-)Yq$Cgt#Zhr7B%RC(
z_S@VUw0X*o>-nIn|A<bcpHDBE4obBp3pz1ea1fR|xu>)gl$n%9tCf|p0^>h#n|!!!
z!2XQu^9M(?EKfI0%qOLj;@F?m_L+b6+oNy7T662*BpLo(6U2<0|4jw8e3DaGC>~j|
zPzMBG^R9I^)YNc_3U8ir!7?eonZa$Jg=`&$S3sSvmhY@}x`QLNat2BAMW8ooXsY<x
zv)xKwtGJXou7}}a;b<HaCQ5#vS}F0DCE3%8qf3}$bEDCM^}93X_aoh`FK;RRY54xk
zXDsOs<rh5qrn4MUlRgg5W8A;u>6fG{G2||L0Tm;y@~C9a9|?BOX>VZH$1lKekFb-#
z-*@ijoA?@0s&N1G;#{Gz@}>mtB)>hA%vXI4T_wd|%_gw|b`<>NqDk0zi1fy4{1BzX
zNx%O+_avFE5$vIsL-^Hr{k-CWGR#eU=NwDU!htxKCB1!t*tKlkPE8=?4DgVRZyy*g
z9d^?#Fx7QkTYJ*M8oPe;>c&BK$KJ8P?N!19^^=F=FJ0FaF=!NPViNPVr|<4H&RWt+
zR?od5TKEp$xY7$P6a5aZTUgCyaC+E-Uf1HDW+Joy&dL2R+^^-NHFL1=is+Z#u(~kV
zERHwU&$GW%^Cv)<Q>@73Pk``Ea6{$9q+gh5YjTB}eLlKx<wRuIND&^^^wdL^_u~3X
z&f{UjKK?|q_u7SdSR;1qzIn+MF-1Bb#03Q<d`z6uPZ(IXh&rLqCl~VVJWV3$TR~+5
zkI(q@y(Qd0^2hpYkQILn;fB@8HGYsO14!%~OhMEHkC9Xw5LGeK{jjf8TIwlR<6#wG
z@SxLaw^J%%*0YxkXvKFh@=cpFtj{-Z@H3yujWG`Y&=1|rdd0_B92mi+WE6_-`6hDT
z(UWX^uirmutP8(}mofZsNZFrG`x3#NdtSHQ>4kMI;amFHH0sVtTUfCC!lxMXNc8d_
z&ZKd!MlYglu)2)%&6-cD!J_Ss{OWq<!>dbb(yS!xc!Kn**%O#{zMb%V(Z+oRbXC&%
z<bYlnoF8?s3UMRF^{dP(7;JqcvLK2>$B_wIE$Exefx%I>jJCGEI8v&>(U89r8#S10
z@L;8~6i&1KQ|TDL0i?%36h@@SD}P9j5B#I_*jqD+qSv7wwt+~1WThS?|41+Z4{xQ(
z;bEd}-*~d=FXvQj?7a*ZujhE;qKJozzsgBh8up7jybgD$VqfalRWR;y#I}2N)ti`R
zobD8G=pvt7smqd@aH`U$caA^W{)-c4a+Q3rR8z$^CrAIB?G9`qwVT6AX%j(yome4A
z0WZ^8G^b;V2#8?NO*D5{fm&Am`s{|Zl{dfYjT<hecK)XZqUVXWbd*0Hh9%c4Bfocz
z;*aghw5*FNY^Z5ItK@kfNdtA?g6_tQ<mBl)JWee#3d>9-wfUC#r0&WRjAA5kSQO75
z6d{g!B?>kYZ&4n$aPo)>x4Gd<2}Nncq@-m>ipPv4<Q^o0#)eMBirIlK;6V0!quwMJ
z%yIi-KJLvoU40cj7SK&|FFjh;FxnSnWDCd(zeOFqp;TQDUOo-UO=G|pR=b`9$;;$|
zFDOQHVsMQ(BinK=K*VjT#<(NRpGdl}e1?a0XQy4;+3F+vU-p{(ScX$Jc__Xy*zw$^
zPrKSnNbS=}vUVaItF=+Hms+_l^p=p!6F-;(z^V`HtL~O&-j($GU;zX%>WeR>nny=m
zEX}HJ3)vlG_lm=ueG@@P{*8Lieow71eY6PKT1e<ZDhs6kg$Yy~L+B;&LdMSKqet?{
z+`4H`&V;oQRU0=6wbEe}B8^TXTWf9Be`DJt*uu37b9_F^k?=FgSRz%m<s#Ot>(fE8
zA~hQx`ImEiJA1byPH7YOoz`4x8ca~pyXXy?w?DDsH)mI>%5%k)<l0Bsh`5{;Q4$)v
zD(=qR0J0pm3#vbyZ@^B*$rl~BR+q=^7!*J}O21vIWxM6=TzqzSX3%+3W_LPYdgj1g
zM5pt&(KJ+toFfURz*EfF2!dcjJkEB2i_v+$I?5`UYHV~Za836?z~fu=!e7*|6U89k
z$^%?j7RKu0j}CTNgm2{0DDbS}$S=sY_bN*#-SKR(l^eL`rf(<l^}hRSi>cLedwtDZ
z{udknxoDvJ$pi7sPXl*s*Bw(^c9M6dt#OZ30{7f*_N|4v)=d=v!82EjI+vN2CX7f9
z0N)Xbe}5Z^4@)+$kh96MtlQu6f52yf<h=7$x}Ik+U-<K;?&c_5W}Q$nR!GG&n4IVK
z{st!JP9f~gO>_BzWB!@HNqqstQbBc+eC~7$!GshY#ny(`eHT&a_}c}r59EOu;}skI
zJ9P4OQRjQ^SY*<5scxh?7$@%$HP~A!xUfDD{>RVY@1MqBU%9#Xa>sQWnz1e2C^`La
zm}9h1d_`-C9u5!}Cb<=DD1AGRE1cdJ83f+T6BBB`Oha;kKCF#vWPXEz4@Z|Ozy?q#
z)Td$*q5nneDc`e4<EdVqf67}AGYS42`lTM%KK3-4%_)(SC#$bQNG*I8zo=gy&Nu(K
z3t7`3M!0YhePNJSWMyZQ45@C2EmG@<AqhZvZXXUmLXi9RFpnvh9r@=^{)Z!z^$ChR
zYmdfno!GSbB~vwYF(oDC!!0c>kp!P}Zx5eClS8&+8{*{pz+Y?%=lzq5Rdvyl`Vf)G
zX>>FCeBFGnmlLBSJ6T`3+-_nR)-Z|BagX=^5j6Mz{fYeRPg6?Sy7HYQEkbDbt8BSl
zFe7?1w3|)5BKDgR1f0U4ZA=@Ca2=X|zka-e_I+4SL&F5rh?&r-bRTcXy(A=56R>69
zuK(NJ@UOpHK0X$;s6s>CA}$HiW$j6W0xG6V?y*r1iYdfSBK^hQ*AE}kkeHjvh~#Ye
zTp(`jZiX$i1tieYlzabAl4sC-b0uH`r0&ls*bNenZcX&W!Q2C~dLZGB8--0yPVU;k
zanJ--GwxlvaKgj%<;#2<=z>~Se<;$|@L~h>C!yHS#r&U6C**ms-T|6c5dIgM<g(Ey
zQ%+I}aYXf|m}|!pt`|E%V)*Hv)|dO^&X`>-Y&b3<LE8q~fP5CzX^gyR*xvfJ#K0a=
z561pA#d4Vc#d_dN5s2^3sh|;zNEicyamP=Gm>vRS)(YN^5S5M!D22=01?ySo(wvY7
zTx3Uj+ACOXbb$PH9MjOykPn=wpQGI-yDviP@z>-1Zy)G?|AFuF$*0ese?cUbq@;tn
zL;ge^s>j?^t4c@#jNZy?k-#Ny+}X2d?LU|KPJXTA<RZ&{ez4JCaICxAfC&~f66o=C
zEUJRI739DJ^gsV6;sxOXOl+i~utWjuI1x*n8d~<Bn>y$I_=1p-&|V7R=A$l9^CDU;
zWLg^eG?#$M2h9gb%4hZd%yrk&2{?<q+cxWPaJl~f`1Ai7F{k9iQ~(t0Hh1o1GK7@J
zE8C*3uAn5m!vVsY16vIh-n@*AM)(yx_OJxmHw(Xd*DUSTS&JY6)t(Y>FP^N})20tM
z>HxP0*%+UP;I0E8Big7(aka^CxF<(=_&>?keV4`JzqAr`NYUFdjI>s4@Cd(unjHlP
z6qe>k-Edc^mg$*}<m8;om-By9NlT`!!J6A1+P~wM=_qXk<cAo~d2%qHJ0GRBw6yqr
z_phXvtNw4#=hP;y-!XU!$dDBz>|(AQ`;tHlzx9GU4Mv8H=e<-y%4ysMt`ZQ*nM8o%
zK>>sSS+Nj9NF}P!ftt4vi~tws0m)g&LgoXJaWI~otz>SuZ2q6_ThHV1&bfkECOk6-
zHxVUn)*R`N&oa)WBthmfNg%D80LDzIU)ku$n;cmev+TPI&a@kY-p?N4TX^GgCSkzZ
zQ^d}>C-Px$f1Y#yWi9kL%-q<sVdHsVc4lVAPj;RD^VdD{4^_>7f1cnUr^F!+*R!p%
z24D-AWE$YE2#mjc`EtK>B`A~XUAw{%YaVPGe*w?6F*4c}MRcq%amjx8kj-6AT)YK2
zV`@HpIPFhFlcY4^rRQ;4zw1=Wg#LY#u7*EYc>gyi!QbC_bIN7INnvjw6F|*df}Kpe
z^|D}Iyyvy&^vw%DLEUMq4>iPrLUkmid0Tw~aBg6FjJ7S1(ph4L<SqQ-ivDO+c-LY@
zu>0>x8~@kq0Uf>PvG{IRQ`0v#gxbs`*&7qtmCvrdJ0f*5?j4zPIC-oI?w7=EN(`V6
z^pYat;-=_O=#aPaU22~LGOi8EkT^XHVfM&N9gw?ew-!cu2yAYEQdlu;!T-2`|ChxG
z@-6bRAz&Q!Ol{Fbbv3oENwOxSGF%L&j{A6flQxcWiG)ozLZk%wV?cOQ>k_<2O3KLn
z2^4qQZ=B}<q|`mXtQ<xh2JBCF^546_|MID9RhBRPl?qQrfXiiS$1B7GF%iJ(&gvYu
zsF7twI~d6%|0@6XrM6wOO}xbD>9Xd#oyu*m?1V~}tpevhiND2_z7Tod+e)uzmF1<S
z_FgvBby&ztGJK?8{yr?va)>dwkB@OkLx>Hm<hjp|DpSl5&_j7cYJ}BkSj1)m540Ng
zBxdeCIIPF{)NtHOkwVD*O@j^3JWxhE0G)N?;7Mryu0Gjsfh6N$NP30BpJ3Q$d|Sry
zkcOr&Wm+m_q(F#@*VBtKy#Kw*aRwRpK^|Mpr%A%qe66cUlG>f>`w%oKEGe0P^)H+_
z!Ke&N+QyU8o97TM{d6dmzez>Kq^+9%R(bnEqJ)@O!&aX!?*fsct>6<~C6aOD8a#Ur
z@P8c=GCT?4e(xaBG!#i3)`1?yk_n@1gN`Ya6F+<`Q`*>owVQ@8n&~+<TG)*1KIfoN
zB-KTpsRWuvsg8nzLa}UVkIlC_Pku{YALlUX!N=!|?ccvW`R+Ad<yenr+^YFGgC4m^
z;|x=eL^gUIh2PrH$2GgFAxhVYok=9u&pTAnzdvnqT+nY5&0DcJzA=u5v!ACjHzPRH
zq&V4hYtRd|A=4G-Xx=;Tb}E!D^RF#F0)$jaH}!zH<zs>LH{*}+VJoD3!a{E1j{J(4
zPft&6nd}1Yq5UI1&lD;W+SdiSnv*<*siN;Szfk}+TE0>|-&q5>W#-In=i~k4cOe4q
zWBaZ?sY42bQEx>x+GWH(fgsij<XE#>Y;=kF$Nfk~jQreYAZP8!C7>A?ZSAkJ5v>b{
z?dFd5&*J8`B;NLdXN$O0=IW8x%HyzRN?dC{1M&6;fCE0tN!A072*Si5@1FzOv1<7!
z(i4$ITcuDY`F3sfhnEIycqf$2-u%e!B+ue$>{EiY$_)$omESt7@eoNg0h{r2tWLmR
zF!d4E?>+8ioOb*(2Qi#E?>36?34`K0--q+QQ?DmFzOXiZ`|>xO%-EiM>nf}5`sD!@
zff!=5N3@Go*I25U4iUfBK;iW!db2)g?jdc%BvzZO!_F=Az-JAxbBny2IZw7{9n-_0
zXArJ&)?t7{pP>pf+7XC@YJn$stB>Qi%5;>NZPWI57X{EG)OFD$-R$>>z6skOTgQD8
zN%iZIg@F{iR;Hrf-3{C>X@colvB4je%b)jXen$53JRem73=r!*-_i5zfeW%R6BLPW
zFzDgRp=-0ptjAvDn#~=R^)(zlivAuD%p-QbN3aXDMu^jaOf*6Yiu?mHZ!fn}!f3Eh
z92LYu_VkUQ!M`8p|M9C<{tf74jOhsp)=u1~mja@Pl1l{ybtX8^A!`}8FM%h2Mia*x
z_D$lC8ZsxS^F7Rb-K#{Sy!#c3$A7v@*}^%bR$`UH?Ihr1(PL6+o!rytA|gS35}iBy
zf(Z+&+_fHMcj^P&)fzs!CmcwU`vHHa5ypl>5ffYr1g<@Q@nXPIz&s1;gKxLn`odI|
z?^z++(HJ;>&bv<<Af_T@@0GrQA5{M0llr-DZ8e{h+kLF{BcI3DXS=E~{c?Ty`Ruq3
z@K3RNOrq@j%2DX<rSk1~6T+r6+hE$xj7hL(9rzA{@f&57$JOc^7>3^oqiqWNk}JQ!
zD`qO)*0bRR;@`Ni?%%j7-{-}hhS4%s>+_jowR5B&mGz$pKmXKc)?yJdX73n3K)CDp
zUSgUS*qi*A&9YESKGLEu3;*aP=evA3{wEdC1b3UvEi|n$OV_d!Z$$j;hb>r!6`+Ja
zW7cI3lp0Agus$lkD}~cCVa_|`UDDH((yg(kb&1>>9QzbNd~2g>C-;TNQI4_azIhjF
z<^?bL(=d;tflV}~J|iv9+adH>=`j<-!HV&3U@H^#jc=R;Lv{BG@LoHwhVmKSjv++7
zF&0`V)iFXdg&pKjpHiwg(&h@|gPosC@L#|llF<Zm@NrNbd!OasAg0lhzR}0vPgvx5
zJ)5i!DVSEF1UV1$JoPqXx7${OjTAR(>3FUzexEPr;4dIHpkt&UjU%yEf)>#Sg;F~L
z(?;}k%+&M%+onc7{rYvR>3=VWe5X+>UwEY1vh>yf6pRJw@yskE4>Znq!sNMgq=61C
z5shg8SIBtE)jS;dIAmXp&ogxga_sY2QF<wdVx%pUX=6FB=fiu`v=STqw(d-^@kQ(?
zAdK;|eL%f?-@imT<lw02!;Uak%8@sEN<K{nZw}-_e2=8s>`jXW-rfi{8OmPk4^IzI
zV!117+;XQDWMJnk*q8r4$=I*aEC=dET?_`}|A@%>`dnUZZSAjJ1eICHfP5}`GpC6h
z@=<OoCyoMOc5`%?8d}Oi8e*V-rP9o@;9<p#NwkA)3lS!&wscxktR0c<AOy=sFpIBs
z!3cZU1(y4Q6817zJB>nhmGr^L(PWmfZku^fXq+~!V9TFJcbA=;>)W*APW{btd78eJ
zTNJ=iu5W*In3hc*k1zFi8)+<$$-&d+fl{TmIiB!)HLtrtg+*;zG@C%`tMlKcKRP<s
z$QIRv<Ch;;<TC8M;#gCW8}d6Bu7H67oicoBVJ31gvBxH}E%ad(W5|2QtQ{fSagu5&
zw^A%^Fe4M1!EL<qHfdYkogFC|52jBNHWdRpoLw%T{P`1TTF0a8$eHk7sv4iU>9hO-
z5bZG_UXZeUHEDpOp#jle_QnZSl=3uo9;!7dIjVsc`jmF$xsr#uY~^A_83VU}=KhAb
z9}G^-z)~o*V+s&SHi+~vI{$VRN*ea^euE$X@No1uz=5$q2S*N8p(&kks6aLwiCU1W
znLGOInzJ!DIAYp<Ir(~ru$J<hLGVIky%Q^S>d2~cSol^c?Zf^ViDrb5Q&~$UJo_E4
zT8Q^UWrgBLh>rtzM7=~&|MTNF#^L-H{2nQkwi4<yeviMU0K|q<d2M3X7w3UkvW{+q
zK|&US4GRGje5ApPp-_;OBI)Ilfv+aVB4;^y<d#0(y#4SCN>>Ij?q`OL_oYYr;(d}&
z7;}KjFWJj`?0!A$lc``U>6uYiY$`%BiuWd5t^j97F0B7VB9qmjR7QZ2d+?L*(smTj
zAiy1UnK|tR;vxL2`Sj`)SPac(tEeKXtA+iM&}2!w1#%~dugrKuIW>tJXj@t+U7J`(
zv?DaZ8pQm<Lro?4Gdy069O3jfZe?hs@AJ|0Ki@nv0T6euTKuk_CKo2yaxy?B``$i%
zApq9a1q;IaeuaBBZ6O$3iPA*}TG%)DTGYS3I8QWY30hwKW3Z)yS_GfLSBLJ~;ylA0
z0d?&3LbZ^&$@WiC=1GMrbb)1!MjnkH!!;TkH$hSh-zGz@wC`%BT<lHTAlE(er>DmC
zIg^NOILqZ}AC~C&GE4kkflGhA(ZG8f>8Y1*+wP|y?a}jJBBm7_Dm|#LJt4@>i0H^m
zAUP(B%*zsN-RpaIq}<-X&I8k_1HTe;y)15Nv(LkAmI+*&s)J_?L{1mUD=7Or&)KoT
zj*s4y1!_@56r$T7M3?O@fc%wj{lW)z=FO&CBDoda&xJVO$ea2m6}T+7(!YJ3o^-We
zBbkmK(fLO&hbja-`*I$Ubm%-+6vePIH*ddwGUn^UTD+<5@WE08g`pO8Y0{MfJ*L(L
ztZDC}*&`CVe+85iVw#%z8@$=galO?CT~q^SZXH^Mgm*V|Agi6_ime8&x*X4?kn{?Y
zOPh{Z;n!V0DUrh-r^Q<X7f>QWqswz&_`AmL@!s=+{9kGR<=ql8j;QbN9}#oOMlU=k
ze-%5uc}kIoC}09>T$+bq8H?J-5-svn?K|*JF2W46yc*&@Q?qg&m~d{eu+zI=pvOSE
zut^BGExlf=-9G};dG@}2tjjVyqNOW$d5Y#|z9ge8gq+F4#c~{_A+>Ww&0cydGla8d
zA#zSW2j%9NvkR}*r^3g0PKCTr;=gA`V121~A14pX<trP-S^C_YJt{qwCpk_EoaqkO
zc|6m@MJ?pRu78`-{Y$e6<56gF+)v*_S7{e0zY*s@+kBZ-cMduVe`6#p*~D9F?xsmg
z(7yS(N@;@ng3OeJ)@M&v(SrSVYJR~BfzGUwm6P0C1Ck^eU+E3Tl()CsmL$m(2}#mo
zXO!zfb0E>BQDU-AZXzhegM^Mu$PsKMP|`%rHRX}HnCP!Wuye2`oN6vjBN}tU&%`7c
zV0~i(uB{8Y!|}B2`m?;sQ~jL_;Cav=T3tacbNhj?4QaFE!d#c(0WLsw>h<S!Il8?0
zh|C5210=-o{M;S+c?%OoGxeNouMi9q3zD5(%eD8dAW8<0SfshjNC{a2*n1}z!gV)Q
zW2btXNE|%amgOul_I;qb3mFW~Cu`(C{QVQ^$=)*+u=_QGcTg50K7!gr2CN+~wbbt@
zuE6YW0*I|{ENAv<#cdbg`4e;H%@*M>u+zhC&_W+=I|q{pP&vI*(_YjJ!=rn!v`RUU
z#2kR!DkSIF(V){v(qREHC?jP7LN@BRVz=f#D+AHpul)`f%*GM+z6eR3+Ju-zQ=<x_
z9@6$lcOteSFNoG~fQ1V8^xXs4Z*gOuyw-bB8xRZlY!Sr0-&Es%>)kSQ`LMYR-j=YL
zH1@%BMHyPt{Shm32Xzaa-}skGj<Rv0=jR<japG8LRNbl0Q#?1?QY}UfPp!WJ$t=Z?
zJew5s^$|b5fVrAHLpQtMsK8M;OyqyS*6-;9YGU;ho^_`lkR9d>Z<Vi^PrzS+YtR>o
zlduc-S``LhdrWq%Ie0oMh6$Va`vlJp0d$mON^QC7Ckb?G8}nrp{+a)}u~H+iY<@&A
ze~rNzoq4F?EMzeyD%y1wB({gA8(8Uc22c1#l-!MTPc$ykpTDEC@rSddlx#NHoP-Ss
zc+LOQ7Y<_ClgsB&YXUlNAM7LHQTBZpbA5Vk=)U{?NkzM6Zey<9J^8%pl1{>BH;3H1
zK8`f4Bcn}a_sqIVNCkNT6?b+5UiD22&^Cwjz-E}=3!*#258t7ubn~qjHKe?x6dNzT
z<)0|Hc6kAP(G9?Jj?XSPpwtNa^9Z+35;PbH?;XaOC!=DVjo_VB7rB#3fuXb5nFc3=
zXWmQ)u7cS(O~ls-K|g(BS%`hezXttGS1ryMWCm;Yy+yn<F5tcU`wmp6F8wR-o%MM{
z>_STFt%8tzu;1p3@jJF<!8rRw_aD4>V4MAo_YPxC3c`B_!JezHmdJKV2WiXNy}*0F
z|0nOgGoR1B)WF-najuXQ?_GediUfa^+<d=nPaIg}5vm~$c<-_pi7z*0mwvx&)Ok}$
zA6L9><pS3y^j->BOB?QLvA4|?q>AWdlmUM8c3YbqlDz;;oRz|$ivvH{$L9#uSJmF!
zL+@WugTs}XtB#XoC!!U4B#TQR4Swu$e^het9#@42PN*hk(%5Lf%dK`Jp1TK~%QoP{
zB2z1n<j2W5Lff!Jo55~jY?%Sib^{p6IL3<FU*pQ4S4@ZK_Gt|m&v-UGiR0PwaND{7
z__A+xbwh?nVVC{AHNN?pfdroHtBQ2bP?o1=EX$_bswucEXyT)LQZ%z}m$%IiJ8<CN
zs2w_3rj?<j=6e`zrJbnC?mPtZ+aV#YSx|_)XYc6Vvf4pnzm=`eF>IV;qlWlAG*|0w
zUxNNg!uwvxBl$vhuCH_bwx!Pm+X&OyQG(kek_EcItShnG)N)n-V8hG)oekgM1+S9s
zbv8Wt8nEHJ{>FxfOUvIU(gqVXb`=@~0OU?Df+=IfBs_ifAZUEwqDl#>e2%E|%q=fs
zZ^#-<v}tlXvG>sKU+7sN-d2S{VBjxU>PDqCO?In3Se*}2X;P%gHeWW@_kP<L4WvVu
zQQ-=}Xn4Xv$&nYGj2-Eg<gcZh@od8~2T?nPGK^w?4G)zK_1)ju@F_>~quv8Ikco2@
z{XXS@e<fJWY}317FcDF6qu()i8?V%2$C;L(kc*aPnH;VBf3W~2*H?|&Dxag-3+b0m
zR*K3vK1ft@GdTDXB<CzjeqQAxR~M#1X=d4x<<L#5V{cS=1E2hGQQ<2kxMMB9Q9vuH
zAm|mo0L2`cM;r$1#N1V6O!VS}+BETWj~duLNDsxux^u+89;{7!quxJM^!eJeG&&|S
z?f{G@<qdafSae-+fbj-7Dzn#^+u%DbVmFECfjYL_I3<Sv&M7_m`-^Td&Qs<^)=dfK
z(KPB3YDO^URan?yMFrsqse$iLm^^0wnAhxxDJpC%;Vsm>@3q(F`<tgH5t00M4BC1X
z;G~?BC&%7lqvjd+q2Dh#pvo;sS2O!mr?z6040NF4{)Pp@{uk*x__mBN>tVF&r#o1z
zai~51dCb^--cyZ4+krs6g61MZ=t<jN`OtD?&-U=6Cm-{vmreS*4_WYY;JiNfjCP^S
zLG=Y@E8{wk#7JRSZ0w{}^-5OY`|uPSAE{)>n>eO-P&^%Ge&o(VBRk4wc`ctJ=e;sT
zno89Nd&AcoF!{kvc}{(nUN{GfS2n4WGYV5p%dZ<<<3vg0q+gnXGv3BUJp0CdCrp}4
z|3|$Tz#_Ed--J2CTu*h;u@OsCKpWHewP9JsTbrECMExE>P;%;`WYP}><&(FE@P4%4
zGYeAGwoTg4E@%n~Y4DcTA#_haj_up<YVy8SP#i*(F#?x|n3RfeVclJ&HpNsQ7$|l^
z?B3AjI2fO6XLeyHFoRPF3IiIUFqIfAyywS(0O5yp5h;!Osk~JV=b&3PQHS}LT7Gj>
zy6wTzko2(wa(#U_xt`C}d`U)2obd16oeT54V^M~r8Nv)M{sHcYu{XzbzfDZH5|5$w
z(8W(iVR4UOnVc3aoI>X2x-H8{%YKL>QUERwo-KgOLyg-fawbOHO1=3(Zuczf*3Yu4
zhPOEqYg0xdZ**`6uixgM1R7H`gK`~u-}w{fcva(qm+!Y$DT+iV3F-4rIOTI0zIrjD
znEkriRN_aqA7F$~$2e~s-=C2lp6aY=X=#~&j?6#s3zt*RzIvzEv4(b5vCk<pK$ZW~
z(Qqg}*a+y`QqgD30ys++6$zIoeL487eVAQ+4-aJ-WB8N79g-zpf1#2q3GNt&T7i@=
zIc#J^6i!_{X=%F8UE5{>`fCYv=sY(eZ0oHQ4=7&pJaL1>X`x@gMhE?6193jLTC|df
zzDNo-BLvM5pR_3yoV}M&jh+EMSodfuzt7?5J*VO^{Q5Qn>UpYtJP26lz{R`fJHYQv
z$+#lx;UVqgpCB7`+7hlod_U@n91--WbA`h*EfkZh4%G`mym1ygNuPPn8EmQlA(7ur
z*%yi7QI{G$=03*#i--TltJJp#hV3y0XCzImUpE~YX>&a(VK<x^JT1f@ls0<D<<cfM
zwER>bB^8mPA-*MPFsG;;wlh9M2N3gErmc$?dn`bTP2IKTy8O0DeNewR$i?U`%sv1~
zo5ka;S~qi%saJR9rQz2uCEGb(3A|$gAK@eH6S(cgDnY6$P+<J59@r!Xk=k9SMnDOl
zjy0dL)y)?TNhPS~K#Pou99?Sv{rYZ6+6=kK0lL|80&4!G9oUF(=ADX6AGS&Wb2Du%
zs1mSEJxT|pj7ssWZYAEpkeKl{wU7&6HX}OiE_0Y>yMgZ~yuBK6Myu|gi11h+ndTnb
zK{A<GlPr~8o9($JX?O`UE_%$Ci&y8IKFR+hIV&~sjf>8YZ$OnzT$E=1>ol&~>zMm0
zGhI101N4?Y4K(g)o);(A*QqT>lPq)7Bp$ziCB2dEAH7+pt#f0!uN~S1v<z;bwJzke
zTw%I^`zIH2A~Dry8VA;Y6sg{UUttaW0Fw+R(rK}rt2z8CW?K8;kLVHhj(xIE`~+eE
zdBp1$i5NgYDR&(6>a^+Q(@wCRS13I%jk8b<EFv@~o-pEo@XkAm_4W06L9auNBG}p4
z9lN09J0>&H94qcwLddnwoN*B=dOQ7Vb|oVsnSWcr_PwVMjh^^eZv*?|^7FuPQVw*+
z!DKA=5wViH+poNFeNTJJ@Q_}yo?2hxtVeRH?4#K}_SVqVQisshI8Ghr_LSy@54V1N
z{qVnxIK6Qyo(n&av#Q|<%#7oge1Q_(!8(ivRiHtnGq2^O(K;1=cm3a~@PPd^OYJ!B
z7yCpjI}Nv{MbZuBA4y;M9<687wH%h+Ie({TqAMt&^tRzws|Y(i`gg79oZNZEh9@CM
z%a@d@yV8aauTQRzKQ|%|WCD@(Fam=2>i6dvfAfeh3*_?E<F}?piP)*4#xf2mGYsLR
zd%Y~v-aS^T4W?R@cPVJyHc5WLg$0(s;`H@BE3K5}Zmk_M-G9*Ew}S_S2O%acbXdj3
zPf3HI6!TS3ItuB+K#cQ+hrI<p?GEIihvzbj7|Sc1lBDhsk}913DfTXqTR~LR9{}rg
z&<({nFCv*+p(MV(Z|mrHM{oZiNLDet-Br0=t{WXFn)#WzkMI+Tp68(NuGzhi?e`Ie
z{5-QnLbmH@^XJQ#&>6B9^p4Aw7y`pR$wj60>sNhsb?{%d)QFW{8o^?dK`nLNom4%%
zmhH~(d<*TqR_!C4EliyiEyji!9p9y-xNGiAc=etqJtnQ~ahrtCr1+Qx?)0j3<hn6l
zoS>8N;E-T3XR}wI;pfu6?AV%^j#m@e)Ny=0L!w(c|Fzeo7h!T?bqM;Z+!Al*iS7Vy
zWCcazP8pKjI9q&GiGb58lR7@k3>zX2Y8Qr_@{So1oFH&kzxrn_+`sQR<Slj<fKE{D
zO)SVB7yw)7fp-5qa03ukIpVbuwMO({?v!OkLSFLWjFZU(U5q+6qg78$_^ncU!J*M7
zRGrXlBOD`&-}RZdS6kU@x%a~u#g>X~)!jC@u3=2R!E`S!&$DweKJMZC+yTpR_xR|Z
zOvg9I+9Njj>h$nknXCryYC>Czg@}viN`L>(JTq2rFlW@9bdTQF(oeiZe6pfLZw(Lk
za)JGC^4B+UWdUX0_dU!j+G63rU#HB=!W2CXUejbIG(4S9N~zpUxeH}&dP&v`b*Ya}
z`X6$NW`G#D6B?^2wy!8rW7xWuFB*Z-%*03>wo)!#cF5@|Ns5zpchrz^hoPM42g0{u
z@K!h?z;J;K8OVSG`^xKJ*}M3r!<t%hCAqL(N4B5spd2#<%Lx;~-vQQ!!PX6DQj9lv
zOeXVi49o#3*AxUYu5e)$5^v{vj^p%<%mg1}@2D3Q8F6?Pk4kI7`ARZW*DwleMWel8
z*F-0vg`@{xYCY7L1Ch*ng2<@AQ*WsJDTwU^rl@@rL>En<&3|ocjUa&egb91UcA154
zGl;}=M?5E(Z&Lfz(znM%bcSJ#Y@ig%Lw3whjA^~xMe41yog;LSh07_RaBqBa2a>Fj
z9kTRLq*<*`scMeT^>7B;Zo|`W#`_SkG<YoXQa=^?sOA_<y`k(d1E7!_Xkoh2bhB0N
zUYl1!Hgd1Z_-0Dk;v4u3KO}dNUzY(W_aZi5?+P~8KRqecobB~`|MefF1Ap7`Yv0+x
zdNzy9R}Y`zjvH&we2YA59@;rEgtGy}fT51x*wHE`mE-QD>wPW4BqJdrrZ`}tBWxdT
zHCKOvv{_e%6vAm{<*2*QUW=#{XHue0+@QIE@o=6NlDcoJ8kkKYSs~GT2IE#jjNdwP
z@{s3QG{+7}K@-E|xt~fu+2)S()QbDbXR-6$|E9pRf1dVgpx9W5aTlx?$GuKnpD<QX
z?%}G}c2r*Xnegj${ehxiU25=g3+9sIy?FO`q9Dm6yAwETW=J@pP(gcw5+}BtPFh?-
zSoG8P96;BFu;@v$;@dx_ju5*LgF&dwd}NmrEft9n0K3VZ{j&E9s8#dHI||?H?I9Jt
z*WR1{<+YDT@itJU*`QEz(;tqC77;b(URlMCuA}IkXGfa)mFD3fE0E8N4Yfs`s1AS(
z)*B6V_Z-ICGaY@{{ct<w$L)-1i~|z3TuyDfM6^;2(kr2=FBmSW=%@Hc`;Y=6Y*yi*
z%te9}07f4h>xfv*s7n(Fj6O5$D{J|=YALuW7;Rz;GadS3NLx=iweT<nI=D?dQX>~o
zA&g6Z2nP!RVGB^plBtoTsdFWx2_3cqG!Z4N3B!l0@y9LNC&74B6x2H*sb6f0^1PXD
zTHN(8BCOJ{%R-&nLFOv9S|DFKx+T0yH^ORQ6DPgFLsCa8zpl)rw;?ThDapdosDF|i
zH<t&{0lk7R!LW$$>5z69e0j3FXe~M3JJ&GA&5P(wj$_64<u<mggp|5e?&`WQrPziY
z8j7=Ly&hS`s(RL*bIcu-i+e<^ltW*QKdrlqox@v8{<zVN)|&}~U@n2ELqm#dD$`@$
zIZmn<3})5{2`IJL_)#^lEWeMzpl$1}Cv8sH*QtV^WPv7>q>_`V7I#B0+2J-o>X(oI
zjNUO{7pk=YfWyhlw3075eOFsR&!U8`4skbnd-cg(g<9vhevi4gp9+w%rGWf?5OQ=`
zLYeHsBjVr2ZO+?!e*PXl#^>=D(oK5g${C4(Z$<oCrcf?tw%l9oJh3m`@1AAmK$AE7
zD>3T$SunNe#?r<V8^q8ru#u8^$TnmimY|d}y?ZhBGl;5!o6MTlx#6wca!1m>{poOS
zx(Xc%%+x-K21ZkyzI|Nzwu|EU19Dr_sgQh!B<Pl($H#zC?%GX2SM8Avh-IMAVtP5J
z8cHZn70fW!h9dI?tN4O-Mt#>}sxf&~O|r)v80@;;ZSnMmSQ+ViTR<ITO4;nYKKa|R
zE5%Y&hqTcCO{9vQ<boLzP7j~CO0@!&+vJT7*o|HG64wt0-RT6YSwFmbQ0E`sWn4-o
z!}YvM9j_h!MXVik>hqd2U+l8n^r@He9%?MLFm{_TY`o9fs;J2=j8#gI8sc&hAS#A;
z-HAG9b9*Dlwj8+76z3>GQN)@tc%E;Y!5wz(+_Z&6Es^8TEm0a`_Z*xGgf5M}Y}Lz?
zwzIpZc{<&jd%ibY8ozk1)LS}krGVxj{w^y&J>O}H@8GQN%U912mg=bx24B+av<j)G
zs;%@lslYu>0jg0RxR;{{>{xnuc(^4*J2>~vAW2K7&+YSCCCuu-y}A{MdBFl(_II^T
zK@RQ|TROq$fLJXrHMDd}=oezeJhIyVa!E_(D#4mGl_G9cf6iaMh8k8KiDIA+Mo)Y4
znwy&!7_X*iC5KQ)6nJDu?ue#<W2D3iqCP+87?t{WG%OGW*V*;L2)iDXkR7vqx~Qio
zDW@Ak#V^q=G9=R4x<M@@+{?bLf8vIVQJ=$HUl2HF8(eli=so)Bu5hA<(X2ll?8g*=
zUY|)&my>pUC(o?>t(SZ^x3_Z6TRFe5MzY<QKk})U@di7?JF_EiL-&K?=F&lb#)}8I
z{@3lOzm0L@@3U{#iAa}I{zt`t?<cVx+b|4!NKoV;vR*#G4f=?VZ23h8`=t6+cG@Bv
zX&Z|ualko`^V&@ocIvfFuPy20h2Sw8T-w6%7lv(eYDJadK1=dvw<-QJ!d^aX=eG@v
zHP(cJ+wyNllWWDJ6@0AH^XzHE>Fwrk`EHd-RUKLWf3&@KSX1d1_B|k2f{KM=L+nxn
zRHO(}ELf>R2!v`uBy{OrKrAR=1L+`2O9%mx8agUUm6FiA5C~Nu^uW8eGv~b1&T-!J
zUEe=*DT9z?@BKW_TI;@lH^1#Xvr#cvqwn0GZmqvv$sTUjS)P}p<}_W>E;uh@-a0#*
zb!T$xF}(vcs|;^iPGCkhF@xJE;7ZNuLGFLQX=L1=be%Oj@D$uqfSKqy+k@**Vv<}P
zEGb_Nci5$H=#jhT7hESBg+7%H{S!}sdRlR66)|htcW3*3k^2VMDCSfV=fo{m8gCrM
z&E>zTrM^<K4sxVqTxmW?{?h^R+u9^7@Q8nCWHA@^ZRXA5c|Nc|MtQ0JkV@FCO!K@H
z3FqHEdH>lFuxX3V6thx0L*v5Zw^C{08(Lea{S9Z$uXsrkugU7kGL<UZ^V=nBV$>Jb
z#9sJAi4%*0&Kc1rGXZegrjWom4`A`^Q^$KU#C$(w>Xj+{vtNHOZTf}R`3|*#sOl?)
z$Nyr=__A5OpAKf(oCp$*xPShu!)1w%%1hUNP0RS(Yx}2>+3)}AT_M`-+X#yDw9K*L
zgbHe2{90qhF2mps@2Q`g_y79KyoE$#_hjNRi&@|?e|&D=a;n~|JD<~DOQw0n81EJT
zNALgN$Ex41kfI5fIt6ExjD;3Hrn^<ljyuI`{&7j_dj}J??#REshCke$zkjd4`yXP6
z)cqFvi_9sKA4;Fxe_7xB{!j6kfBWjSv|0KSGTyz@|A;fnZ8c3s=VC>+JkmKQF7H8f
z`T49{y^ake^+K&rxBUe<znEVP3;N8woj}Dp0WBgp0~+z#QQ_e`ls$?ep^lZRq+z1>
zhuiNzt8aey*4Z{Sn?hs)RYX4)q;DN#?(dbS1X~r?S^WIP{`t!M(9i0!yQg6(cn3(E
z%er`A3wIWEGBVcTvWY}@{{MDu4#(0P^8{~?3ZZG=lF&)mDU>!rP%o-?YxDmMJrCAW
zWTC^3LtCB9ov?iJ=ICQ>VGATB;xew-?B^}rzq|0FIwJRBjEhN^(a*%9i4H~$4<+l@
zZ}`Ip{U2_=zg)AV6xKpO`!|B~Vt|&ZsuG;CA3JyjOO9Xqsi64pUfNo%<48(`J62wY
z@6kCQ6jczVv&h{O5cd16>7Tz)p%;od(wVGH$YoF)6{iSdPqPnKOsCn2{_QXS&+F=s
z+h>!S;$AxRR&^a6vmhoS8)701erXfC`6Ji;?{2XF`Zaj^{1Pczkuu=NsWvq+$xU8P
zHY~^^T#t&A#b5uQoEA_K5+DRkUJ6M?kiSjr&l9}KS9f1Nz(DtywAf#+-CwS;cf~<<
zBGzAG#4e9w(cYr1=KA4ylh|iFAIjCMA_XpDSGvX(uMjC!mKkGY+LQ$*l%3(WR0B-}
zb3Gm}E7`tXgrgo@juGK1dAh`qRY%;~aBb4GsM4`dj%#1$DngUf0*L6M_a;HFog1So
zHnInvVoM}Fz8c(UV?`^=rDNLkw&XiK(6hgZoYauPK_N6sPL*H0awP+4*1Cd}K46E$
zJ0N;BgN|_0qMVh@Ur1fUaE%h5lWjJ}c@(6}4!W6$hYaBEZM}}@ghdC?!+S!wJo$z^
z^ux12Gjm){e$9_fLcqWq9)(%mx8vR@od*a}VtK5CEYjQ16z}Hj`tyCH!U$2zz5_Py
z8BRc`$fqOtlCNzU*XGwXj@dkvkQ>}0b$7=G*_P7phm|%YU>Q58GdZ>)og>A@F4T}<
z?Z~?hqmsVF`H3R3r)2fYo<T8PaW_X3-3BB5vAo*$w8kt_#m+fpYWh$%eQi4gCTc^W
zvM*)=Kth&abBJymhYvFo%#7rDC>>iRtvmGxms9g6FB5b#5`ey51A|d>e)p&CO(6<E
zGrWZWGPXULg3};kQq5h&=-c{5IZ$;=WU2?nzX4DoYk@Jmrjk2r{hE}m48D=#^{ngI
zDi$1`8gDbn$^p?LP>CMo_6b@Pkl0c{jbvW-fYYfD>Ef)@dDS9*|3_*NZ1WB{eth7$
zeWJ?Xz9d<U()PEiUo!vsGOgai2F}%Q%Qo2NDH*V6t<~Y>A>?Pby;$kWjo4TyAf#U~
znkbm%;c`sKM4Mn$%~@0uHQFi|q(>d-zoak)GvK!S+etdi-Q_w{Mh4a#(I-3aTxL7W
z%-I!-TL*OeNDwGz1KmE7**B`mlN$_mbk0|0izI!P@TG8sYR`b02l4o5kPpyhac{2X
z+rfZW59D$d%ms!cL{f%aue}8v?G0xJ^15$>E+xLz%Vap^L_tNbgL=ynVRBv{0O<+p
z-O$<}jeli`ui%Q5MZ6j}Sv*!WZE@^)#ylY{(+cNm%^2R-T1*m{)M#e;>57(A%nEa{
zJKR^NcE$-M(G#@Qzls)l>R_^1^>{pSgu-p+W*cN$TdjB3+D%M{Fnvtyb}z?|w&ud9
z;$_%*k7eU$Pd-__%GCVCZPK*GlDt4z)GwAHo^~U2F`Yzh4B|GnZ1>*w8_izpEeW0w
zt7kq3p@3aSa-4$f)#{8CX$~tu^vRCCZ?GuwVMnBz+=-9(jrIv|hT+xu(OI|!$Z2<w
z>D{Bl(GRhSviP*oHgF4E0E=l<(N1N!n=I5T#KGPnfo7%Fw!LyJ#?lCn0~#TATCF(m
zZh7ikLldTqK)1b40q44D$ny%w0yryM%Ixd%fY<x(Dt_Gb)ydE#ky6TH?y*9dl`+9*
z%EtvSsrmSSk3EL^+3E%lItU(<iZ@#4_VY{y>mvc8tl6f%{z!M#htX<12@v~1oFx6*
zEp%>PP7gh@2(Q=2Ld*5c5}mJiG_hiI9QFt=aL63hk*mZ>4&4e^6RlP(Gt`S7|AiLg
z<r)1VRWCbL4oD1E^9aNq5hO-iUN$cQp|^QnFnX#bG$kb^>8y~H9Z*Ovh;VdiIBTeQ
zPdoSEh*ui3sdbw^tHq`mt(gz-bNF?0(&A=ePp0TUlu3m66i%#pnAKR}a@{{LZEHz*
zJDv=d@yKxnG0Y4&U@#Is6>f!;J6^pf&HL0o%9l?cTGYFYyWi$jR)z8JP_uPvpPM?S
zX)cw~C?n$EwqbFv`T(n|5t{p3{hX46U*Q_g-4-xiJyPc~XHiuXCHuHBh*c5?SqI8F
zMz)I^odgIllnKSxC&b75VS=4IXMt+pb#+|N7vv3LZcjiCacyX5NNG1|cN;?JDmt{e
z?KI+%fkyYbrgAIN;z0yOpB&>40_DpKG7sf=(dn-&p<8hSle@U!7X&LZxjb9xah%7-
zWT7R%5GglI-hLKYtPk>tj@kUuLSC~Ncv<8rOR$Wj-zSz|9M^TN@^AGQABfxSi(q+J
z*zT}T^QoOSXYP9_8q%N=!;7~f_J^OJKCRo#x!L%qRi<~vflaA4Oi=J>CukC;Y0tML
zn;F!u)JM_iE1l-%hk`Pu4|NbbF4dlkaw`~HxsjKgjAA@*5`Bn`>57tx+Q_MGtvjuI
z)JR)Ag4g|e_5FZ54+s(BA(@&nM+j%_cCq;%iG5lD4WYr(N2s?+f=NK5aV5j5YB^LN
zui;?`3L8fNv*lSrIO)A4hdet7XC&Js+z}}h{G1Qo+NLh(zAyEjQQ?l(Fao}%MjIm5
ze4#c_n1ukK$bEsb`T};1N$pM1T{^G7^BTF=br|H{i8lZwiDxj!z=vVk<~=dn8H5`Y
zXmX>kOh*W<U4}cjt<!Z_r0DafAbx9<@j`;j55PQh$d`nq(6@DC><UrYM!7f2H^Nw8
z)@O=3iNK$b1n;6p5z7Ex7w>4a-^HiUj>vvxfw~=O?mYj_q;doVgOyXDPj-iYmIuCu
z6_17+Nz5|uNzkdbY>;X<2G@8t!0_6@IlnpB9AIG)9qv=rfIxmSvDbJ0dEg~py`lMS
z8~ufEG9aO)8NPMru0(0WlA70H@7(!56QNlsdSZsAu+p-O(3z>Rr&mesi0T9ND%TIl
zJfIz6>E3#z;YqZqtExO8el#k}oK#PJKPL+akT=o1bb!nQ`9&_@tZ@n2#odOhpdlTF
zj4p9eMSU^j@CzLJW-A%kx~W0fckgfyA;`eIrk6&fA)xxTPaW@6;;E=H<2Sh1Er$Op
z@49;dznmA7G?WX=4n}Wkp!&^B(_#(e>UOw=tS==>-=Hq~dAb~Iw`cKj3WE#>*`Nv6
zfgiVJFHmvuD~9p2o*uQ0D&tMq)OoIsbzVn5jQhv`^c1VuzeW9Xl7T9_xdi*2B*RgG
znJ6#MRCOW?=E|21cG%3A#C0`s*th3>B);=D4MpxutLe=8<Y;R7xJYBmt6P@3*W4WY
z@1Gua-2Lps{yGWPgS<J=hlDNEDz!CcT*ZY8?Tu~*RbGN;dc?veM~hoZhzR+?hMhdz
zUmI1iiL;}K3G6dB(Ie-Wr2bI(>t$ws3{E$nhb*tr^?hc8*iLA>b8rZM+c6xQmc;rA
zmAk-04lqhJ8_7d*Q@|e*by%Nhi4LAa4lD@FIBys`auPtr^i>y^3w^56_hO4wd-VNW
zZuoZe$j@|ndC3AJ@eN?)jbf@-=E@aDkOZHur2#1oSZ6VN3}4@5SGl2gsr)Uf9j=?J
z)^8Yj$T(nsa0HJ@yHWLI{P4{8E1!mo`LB3XHa{TTxc_apl%MmBG71PZw+PsKwVEY<
z92*$p2R~fGU5B~SwZyOKhzz3@w)-7U3L?|1JtNmiRq4LATPx*N1Y4<SRSE~s^$2{~
zaDjj!nT{vub2})kE(-9O$qPNhD|`Tlb%HG+Ldd;*j6}<i9(GmZcmN(_+fVvWRZb6Y
zjapR+H-a}_Aa?ee!P+-_GQ+(%DQ>wO7+Ok@fZwQ8lK;g>@t>hav{bxp7<FrQJICVo
zX}!znEObq%_FCBHq|N8Ka$R*o=DHrQ+I#M;)=rg<qwV^0;x+SSt^qP49W!khcg!5~
zvP<PC;g-(%sm>5;lAYkJveVj^sYoCUqJT|3L&R4KttH;I0V=D0^VQ&&D>K<e+|FN-
z(C-9X8jh~U9dB9_X@<H03DsW``UKu5p-S<g2F+Ozm&#j%j$zLPbyzb<3i~8AB}~{Y
zwOX1nMxBt>q{XW=B%A-{3|{`}Jc3_?2&wTOi1-OpAV`2<L(cT|e?r6qL1P4H^(5Jl
zGaaaV_;K%5Yq0QYEdd-k14RPNw><{%PW*PtV~c}8dN)H9zQY3`J)Z8!ogkM|a68H%
zf8siRxdY~c7+Wlhd4T3MDu-y!9xKsH*R=e?4LulWfJVFn0C6R|orEZ{LB%COs?)jb
zL?9e9$rBl@?@@|O$n&w*I%vc`c}3<>fZj<wC?kraf@;)CaA+)MkwWq`LE>{QJMuCw
z8d}lzEx$-<^1lC?78$MS+KEst6a4E6zZeBY>{gIK@5l6;sep{>IudI&)ns?BcAeZz
zA;^deL_IWvzpE)Q8__~do**>Ih8=m1aw!a6NE3sAqwsqzr6bI>o5?oWHF~weQ4gXu
z3k5f&&hkpg(SYV?-e7*7#Xf)xc3RQ7@$8@|A!jkE%#(HlIkccovG?P^fQ*VaG<8*3
zhE?@ZM~DCMTWIImag}8zlC}Ip4&vEF)O(fa#q*<zKEU&JF<XAoVM?V-oZ%9y_rXhJ
zO88e1{eP{pgAHOqa3-1(Kc&UM`Q5!8tY};-TG^f^O+WW8+wyb95u7iZ6F!l`K^@VT
z6Al#{4y%g%ngeM<_$Hg+yxEaXG!@~#b6r+^t?8HK@zn{=^1pH4eF9LQc@p?Movr$v
zEeU(RR|E@pSfS(yMS9i+6!gbH%xlS_Wr?g(Np>&OYJblT>$WVB+T&eD8VfUv0yaaw
z!4M&p2FAd7^b9Bha@FaO_R>4TC9kdSP#33U6#=LnDfBi0$4Kn!w4~AuoP5sc*taEd
zv-$&MNOBp0vja>lm8svMMjKg}>~SP&*@zpicr7%<v={!yeFwsPSDs>4X*B8`eHSMr
zi6NrIj)e(@R;Q}aW1^=>{a|2qxYlgrcLS|K?Hg+{H&m^V5xmWB6@TmyL&|Za83Dg9
zI6U@Ro{FKS8p!g-$swQ%fm{JYdSa4@E@_p*M!784-E*|(MycI-yQL)9laNsr&~9s7
z*Sq)I`6ZXJnEMTRY*b+xXtS;@$hpKP@ZKE>F~fa5{oqo#Mp~=U`qyWxpkO~PE?#XU
z9s8IE4&;7=9u1y7cJ+1`IMQ$Km0+(!6WxFYFvf6UGMd&z43$1jdnIb|kT;FG(T^{q
z)H9uQsetxLlw)<t`X3TueHIVHp~dLJputj+j#;VEZiU+Re(|1|?uTtVIevaTyL_PA
zS4Souga$=hqP8bq#j-w|zJD6i($=(k%0%u(rlqw+#mjI;<-)`+PVX}u`Oq0Sozpu0
z_UmiW>l&K<J*6ku*Ln=MWs_nYG>PQN3Sk2i3zgaago@fi!LM}T)r%(hIQN>9v>ZEh
zPM&~Dj|Q5vNd=vLqYXKF9HG~}xp34dbh}?Ew*Xqxxe>HRiwpQxEEUMX6L@385*K#$
zvQf~?tQEQ_bOOIzra~#_w#R6)-|D(-t_)+HAQWct2ju;SGWV_O3#QChKhAVe06%5@
zRtWu$irUqh?D1gY7#$<X6p-3e*Z~P)Tls_XZgs6j0k!$?qK_ndf3F8g)6cPsYk5|M
zmrFn=F(Dnn!0%)qVfyX&42v0SPT%hwbsxS|kPn0Hp)t4@+r<LIc^s-VWbJ;~AY+?>
zBr`0oI9`TZuu6!K_hr6&c&pT?)!*ZU<Il-3Gb}8A1@1Yw;MnTIYPeV|c=W^ZO%EF@
zh~3F&O{|TKR$qAH_0T|eX1A<F!L!j;ZO?1tbNg=!vgWeBIII?U1?)^%^Okq<1h%9-
zkMZmSO^rdGCW<O7eQyF~D!B5|6B^?!!SRAsgs-<;UGoSxnIQfkqrPrEtZL8wywA_*
zvD+BFFvTVj@7V<M8KKBs8{vtEB4Ke&gy0FU51TKr&GuD)&<>wztBR1SMLyGTd(CDu
z*bz!5C!Pq|2{-SwikCQqHVA6c`qGkJYADd1EjD%{jI_$+qt*s_Lk>(hhVk85rFO3b
zdR9x(2wezVNS|&GPm(73q!=zqp>x|7k%p=Lpz3WKV!U;ajMf9ayk~kc{=GFYe`Yf@
zG#QCBMR20Wg_M(l|E$?Ctit=tV8TR^f?-?}R-=5^c+Qbu8&lzTJ70hec06AG=4e+U
zV?Lqwa>qWU;Sl1_p9T*-<8Pmzm8?58QM{_;l=#|v?D)iSB2R&=-4$naSj~86?rbxq
zVOHBhq~Wy9Q8v`xSpN^-u^PUm05ioCT-yO$*AyjG1qlG@V+n;^r}z{+^O5?mvu7sR
z1n-Q*PURT~mC{gd3&pg_{z?^eNtf#|@p_bI+5HWcAdCPn;m#(nbeTsPnmPL%z%{9y
zy@Z9vRd4DH+M_S^NN;KVju)b<A2w;l=cMQz2gT%*j~si2b$B*DC9t}lRv~G!rz}nn
zZMDd==_xgqcN_qHdxoa!$%Brz$sM!YH5_fPi$c$~t$_V!os(Xg@##{~>>_3^)9$jy
zb+Y~$aY;7<8`ysp?ZP-(Z18F*R;u6?S<#_p_Snky<nddA^rpk4$Ij~|f8JT15oBR+
z;-YG5`hA2B+NfrqX`0F5G&fp8x3OUI_7Zp9S}hJf*<D$p!?rf3*eb4eg9Gts$MkN#
zW%LY8(U5Sj4%>1*Dip=<c3r(1C;>)t&4&yyRb>Fw<s9Ex?!?To5IrlwJE<3f9mfG`
zs>!&GHqp}5x%hej4%@AOf{hDAzm!GooKGk}kIw1qcpu>N1?unVh{KlH&E;A<4(shE
zt@5jKe>|Im3nQH&%>&VEvD!D875511IlN_5Q@e6%r(T?cggNy+9LYbg=G?tY3s23;
z+jg#GsJY2OH;SYDS7oG*VpqU)Zens_!)?PD+dR^^8bE|rvpZot^>%^7y@a>0H}K3a
za8|ly>tw3%v#v`L8!Pn83~hK&F?E|R9(bDRV12NGF0u1K>ye?#vf%d_S)+WK^_*2K
zn*>a~5vr`cCS-LG5!M8PAJY8Xig_XjEvE{Xmj@N{S!)sB3psg#$odVOg-?)>Q-@9@
z`=MYF$wPb1IRl2BPWM4)#NG*ME0v(L-8v#x21h+f=!9)Y3u}jJjY8`x)2YiNTY!An
zq|IMCp<bpAsz!l}3A7t<fNh_CB3>gfZKfP0Bhjo~vV0DKJ1D;w(iw{(m-xh((y7Fq
z<fIR?aG)JBw4>jK9a_z~2Sgd)TM-u>W0<zw>nC~$2|b;h2J5_<bc6F^#;-Z5?(FXU
zID=h%zLXu$1}OUM!xNMXR%Yyr7tCxtoI}11kUkTP6F=GfZ1@!WgpF&hd3#Q}Y%8LI
zK}G%eZ23^)7wRj;jQQ62k;`seK4BHIUwu0}kC>swY?oJ2lq)?sRVbxKBlrgBk+hOk
zG297<l|zjYxrrPUy(PIrO}xFC=Uif->6Tl~y>SQF0H8b)-gxrcrtHF4FRl-Pmf+Pu
z@xXBx4qmlk{>KxX4daKd@{oKXvmtjcv>e#>GD{<U@e%}FMtG6*o=(qsIaBvgBD9Ua
zJ7$*N%jg>mtu2Ln=a5btY>n_>CxCn~{c$@JTKfVzp3n{$Scj?9@MheUJZ}4?G2R+x
z^dqdx85hRmQF_CLRttggdj8AbccQhPR8=X@iXU9q7dCj9SBT!co%g2|(0XrxI2_)#
zmO@yCy0vBPNN4(9oflBe9OakQ%&^6nH!hwaL_d=n40|4K#h6v7!DTP{^)LC!J7OxW
zjf!lmKN+--M0d2@a&w&j=oijozjTp!=;VzR-*}0t4L8m^go}5|j6Tryh1PQ>T_R4~
zc8&K<)G5%7&48r5#lWc}nATJiY^|GZWnkmne`$u2kd{-UNg;T_V1jls09F?EN-o0<
zQZZ8++XRY^5{{q7`}0|$Sm5OTy+=u7>RJP|!7dORqM)mfb#$y*)KEoSj0|X$RzFzL
z*v3E{ap-p>@>t#k{%zGOS}1B#Xl&gpNSor0qD;4INDMe5Yx7t-ntK}bxNsS*?EL&e
z#XEV5EYwUAs(XZJINR~?A8bC3@+C>92<+=^nZmOf=o^b4#qP+HZnSb^^pRfPu`71t
z6<@NUS3lQc{3C>I>Pxs8JZ+_^2%P=9Vd6Tc>+DG1TZwJjLn!hBm3Dd#!}VTti{~3s
zk|+pARgb=hFs6Es`GzmZX$<z?Dxjydbzhl*W|C=-n0U`<=+BmBZ~WfaVrAdex#)+l
zj_6*8voUeU;Tl~YJ>%Nwj*tS&0HxzQ^r{Eed>TDWymrCdYtlJ8^?UI%Nm`H5z|u4M
zS=!soG=}wx*>=l21ijQyn>WOjWrfoU?4!d{DJ@5&o`mGuKKfNKTYE`Gue`x9{bl2N
z^YDhgrNqFjssM%69#SLoZsv{?!DF7Ik+F;*>wyiG>^nivD2NicnS3{uH2{fA83lQ&
zI9fnElMYP{@wN7;*vtxKP~(3=v@I2>y^y980NUkd^$9@MA%LP`0`cE2P1SO)o`$~q
znyGM&&+T3b2FPfE0a{Z|JPl`fO~b^;DsSkJ+fe)~i%(CsQ;VScF_zQUdmqDO;ejM7
zQz8s193f<<8OqzCg&CG+BzQ$tfob1VRGJmzwVX?avXe4xzPYCz;?vzXPrs@Po7@3{
zHh;U$euj)QxF!*N`@h)i03JYkJ-PtAF_7-U*mZ(T3gIP7%b~-Hpjp{5btX89`?<D~
zV}UAnDs@VxD8Y!gZdkFlE&WD$D<lTq1YP_I^i51o9%u{aM-4|DTs<OfO4nJfz}dLj
zKzaiFU^(fx+d-6du{k@s%OLNY;aUgi&Ey_a1wJQ|OL$?I?L8Rh9qTDPXz<#<C(rnd
z6dLaZYp^BMU?n%=o^~T(_T%;dW{0RI&w}{3gCjw|um)dN<i!t(Uy$NY)lO;^Yxr{h
zWvRB=um^GI+!pr4vgA9KFK&}PMkBY2{cIWGQtJj^G|KU<tAk>RG7D=2&BJ(uYqW&~
z{e9J!{fPryPiy>J_rLkr2_$w298D|T%A!RN!`{}|PBJ}eL{KV9y6bRy5m$cEb(Llj
zE`nA_OHi6WT-29HH5)6X6e<K9-j$Y0!N(YxNJKDD17WB4w6G##RYaC6%9XT-7K|BK
z%`7WNuRYK02^9*52N(nUO2bf-0^LJrqkE?69RUVn>HN$CGUQI%WI(~1P%DiNMg)-^
zj$-)}KFJI3Cl$fh7DF)JIi`qq%RFVM2fbj94?@NSCgR(0a)TTheKc-#s@0qnh9AIB
zW|dxolbv05^YS6J=#euq>6I^Ri+&TyTK^`J#W(+G=XP5GQd5~ib>NUHSPiU;q6fTT
zcq0Yq%8kt@aU%*{vY*t|uL>H*x-6qegbg32XQa7l8ODyj92^kUYH!GEYd_jbfl2RB
z^b|5K>L{%)(k`n!u>u=+3k;WT<68|fZmG=fm?oViV%B1{v6$9Ta7nKf(j4|db#SH4
zSV0I52kIrg881zm`jw;o4K>&P{&?ep{F?!<gXhLOaDu4)i+=w|mJxhW(fc`gGjqkU
z5H$cNE7F!I18(_X_4wNywQkR2UX8ZASS+_K$`NQ#nNnCQNuu1b?rs)qm!`>8w!W+H
zK>s4ME0tO*VWjYl3essa^F+D60VXUngi&1P?h&bMm6O-T<Fb|lV=~Q>Ep??!9KteP
zTvS*1&pQ-3(lt+dPbz0yjDCCYhH9ILTYK+u+d-K=o6ZkwG_GfFu-<C;>h?S`Y(&r?
zun#LSEyy#JV_L^%5%oQ^)$WmnXWX6JzkmA1*Gm+hIqlV{!EI6=#6Nx}G~HvgIlYXi
z={MM%a5)nRvrG0#v-XV4gXgI$VrGgvktrGO3BAb~ua#M^k~n7?BfE%M&3>%R<325O
z3bfA_;D6C>Plr}XHMI6Fks*oFx9|4(y*6FFd`+Z=6LkyCw)bW)QA11nHYyk`rE~Q4
zX9q+blBvC!zi|tnu%j~msXPR&FT&n+9h2Mi_Dnr~I_0Rfg&W8~RajQi!m{epyC8p-
zH+E+60~Rk-5S<Ot7N4hDF$af>mKh|^rc=XA|0VEq8Jv26<kBXnMujID6>Q{|Z2HJr
z=vS*!%K+X$INo}3ndt}`*+3ML@G*6^?I3n{=i$y!bdM3GpSw4(Y1*Sn;l2!~!9B$v
z)z@e4uWqDH=(y!zH9Mv~2^?LG(^r0>-0=)C4k~n~qvGHo{cX&^dqoa5c!Xl?vFWgD
zp8`z(I=&2@=ydK2@QCwaB&aNo)l#*(6FJWQUnPNni8o*dUfv0^fAB|P{wAKU{C16{
z4HNt>OZ;xrYxp~~S^~6P*cWC&gL=rs;eMg3rV`O2vEnXJys@#^%MQablaC|m6bXIy
zq4@E!4NiXLS3v;T7Mv@QFA&;P=*BhESs<meEu|{#i*;94`6=V=#MLdSd^;^_a?X~K
zA>a1^I6<D{LSBeHB(@t2`ey89jo<SX;53@t9U!m>MMSa*N1osZ>9U<*JD6nC+8UKz
z$VpAoDDxw7$33y6V<;)ys3<u%$I_#>Mm+OK#?M66uYMIMQhv5O20Rqx8%e!cXA=86
zDsCwIF@yqDV6B*DUI~7RuG8n06G$V_Zl6}^5=MI)2G?^(QrWG3NMq9?qO-&4<RQq5
zVB+7ZYHDgC108KJHA>wIC`ePGr8K1(2BGeilZ#)cd2l<(qTe-n2@6H;-l^Z@c1|}i
zKIw+38=M@sv2yohkW&tXOIp(LOeC0^$?6?QnDr{~!qHbz!_U93U#Z<v{m;~gdk*X5
zyS*aDEJsR=Osyew*yae@<eNHmUViqdlyZC;9lO=#P^(n@c|P7$s^@TmT-5DZ)>pi<
zb9Cv>TpnjdNyXTg>|FFl;yWpHE}GICm*wO0g6;%UD5X)VB}sjzHPf7<9rIexNHDuN
zpz^lw<TlM~1^#E%4N0rm$F$P(l2oqY{O}IKs+ylwf}1PzlEa5!%>39vC(6!tR)orO
zR<_@X<=pA<&9ALO5pM|o<z2Dcn`+b+AAA2$$qCF<1PjG~`0`JbtWOn<8BLtcV=0y=
zd*}}(q$lpN=>;$Me)3Rrin?X3XKG&P5;x7M81#qnlOi{lx)pXW4xLO@;k`8UN}%+b
zxkznp%vE+5X_KGTiO7T&#RDkx{zNJAhKSwvkI-ray$RKW?fb40k|pR~slz7o7rdm}
zq6|uRxA6T@FQLeaS0zUHP*blus0L#F@De2B%<y-V%`wG}SLS}g_WJE7#j#0Nxp&m>
zuup?7A@O{HWR?eIR%7_eqAJ!mE9=@P;gA9oKTF*c>F>#je=K@qFLMYe8WgxXn09lZ
zg>M=_mt&7JqR$f&`S|5eGT*=Ld_N5;t`HlmGPN8^ZOyZPK6L*7E)_onS^@?v{3&38
zbmS(Kp$TXTc2*)_FfIHaP!j%dd45}Kg3-mi3EEFv9}t=O)Z}Em13=MThAaF_TtG{R
zJ?L!xFBZVh&Ov{9FNzeN2{gV8^(W<?Fg^d%l|Q|uzX;F%cs>861@#x&B&td*24OU=
zLUU2s!C!ksm^%fk*P9Z!Mw`RwpwpEKm<_7=k_{%a1>N7EaDRDWe_Un%q{&l<VD~uf
zjVEPg+t4X9T!ptYIgA(m7E9lQPqE}Ef<~<>uYufPX&tW4!#baTG^_vX5B$^5NB*iM
z_#c#hqd4pXVfi(BT4`ZO(FN6YdlGcjEj#mF)?JV`t=VPXRahYV1&&5~aHtxAf#u~K
zIpLpn2d;BiKo8|Q=hM2s=tC9#c-4zrX$k0$SZ|08KvP=9n%;3)4mLD%&!?0ICxL@a
zckG-cfbp}8OMHwSKxOOea_eWm@n0A0_um&wUnk&|(hhwSVRd4%4^`fom|RK~#Ol-`
z({Cb(&#Xe((WDt#9N^jS8NejZoPrNF`pEV7_rmXg^k07+KJ+d@m1&nGv*i(6FaZfe
z_$Z^aQ^?FfBVx7wOFCuw6m+|{qd(@s<a+U3yp@9I|8}#uvZB-%{VDPah`<u1zlOz}
zJ(THRFY7+UXhgP6c3ftuHfiPpCng=#K%(drx%Ha=Wa<0UyMwob(p<z*dhTYPX#%XU
zRaB+6dAyn)=ER#``0=#YiZcMgVH$vQ)a~w;BR5z7FQ1uE!Cjw5T!lblLPB2hyG9{x
zqDda8Z7yW{H-q599J&mSXN7SLoR>V*)tNBda>96Inl*ePUH_l-uIP)3dvQkT*dL}@
zEQOe<-@p}5%1n!s2uOyjQj!M81=?lnH5{muTlGF-J+wbeiF_MM+y4K&4#5M*rK#vm
z2SK+Mk?O%s&^~SIM=)SFKS&Jzkb0X46-CIiXFd1P?Qma2mZDSOzB9o;`JV*0-uQ#D
zXR6@}iC!d%W0J5cE;!!Q8r_&)%_b`q_W29R6R8H|)o%o?7`QI)E&V9n#e~A->!T8(
z|6~{b(@LW5!1i+gZ_xsNDf_w8T^-;tg|nxK^Gg}0F$=8rbDoV_gyW9LR30q)2Zx?}
z{B%_CH#d$k|7O_7DFlFy#$sogDv8~8l+7I)9|!&GAwxpNn{LzauHFiacnC7F1>WCf
zviZXQvcP+z1b$=&pmYg>S4Mm(d8GM=+S+fQrk7G+eg8VAd@##FxH{o77&{UZ$wE|E
zHiWCkhB*G_HUDWvh+WTyM_)<5wW>D#$sq&F`B$9HGnp<cGkPKiDY$I<jZD4itQ`(B
zl`Xdli3<Z=A9on^MVIRxAf{S|t|X7@ylOYPQggetgPz4_5vHfzk{4#pW1c^9Pf>U6
z`fW#x?{DOzZ*+jFh*!|79_hJERf((Q20)J^<fBdB?z7vUgFC$)d4`aXaFrN&xmw2s
z?ipC|bjLdjh#GIsXMto3CK`)>Q7<1FfuhZZtOm`F1m&=+?Wq;^MbM6Ifdu0Iz<Gd*
zwShdfVtQ`ZukB=e_GzYCt{FOgX0N%3re+#87m{^Uhv<>sLmbKSPu(L<m_3KNO;wjj
zuo*OMEJ1ypDuzxs%(1!ltg!o4#hyX7pM97W`g<Uwq(-`LJz`Twl4Y14cR)ok_R1O|
zGb6&U3U}pQX>+U$8U9-$UM}&&vA15RO7^ASh?BYU=&dg8MNGvy%q%Lz)XGpJ<*q})
zOi@}^QSKK;h80!zwAYvLmJGL7nWyYu4tvt>^IHy2=6l!P<cshm1QtWj6rEyp$_vI#
zBgE{^JL-^nyOxz2B)^aZ<oV>Uci&tHa{TyR#(vNkVV^j4UK%sMve(K__J`KQchM0D
zZEX`hWgQ)a)VvB+`T3hg6)KFD*WC_~=IzrDO8x+p&SAQ2v-ftkEo)yghWC^lt+22K
zlDzWxP8@J47L|)#fk{!413l6!tW=YKL8$MrY0c@D;QW#uG;><n@pgFZV%%4}%_vCk
zU7{jia}{DdSSYcLFu_o#_uv?W;;e;KXzWo^bQ>Ud<TjWe>x6!)h1R;t!Zesb*m_?3
z*T-Ck{)<XBPzdtwMwL1&bK;>rN^)jB>F{xqPwTO-SO5xRJ^$Uj?VSa#aPfnluE@db
zmO(i!MC?388a!X8I&a12SuBR1%yL|KOiiM#V9EQf)A@IwEWNYbYlJV46=y4DpYV@^
zL3R+xqhB&7+hE-1#CS|ceH9SiV#Ut4NGFg2Q2>-LXyu;bn0=NsJ|P)@(hFLIfCC&w
zsP+hLG2~X$SW`Cwvt0nMKQH1~{Z$|hpayNMA-f!}a0DMs^SC!stM`vUwT?sDo?m2c
zK&xLd7KIwL!*p$6(nzdLV6IGfeE0pSEuFEa0_qzYI$oVnSZ#1DG$o-B6fnJc817-9
z`LZ4TB6EoOv*lEAe(ifG|Hh#0j0wKHzq!zZjARX=`L+5R5$CBw%FIYh14I@^cP9>4
zn!ewanZ~+v!1HFM{FimrQuLd`%ZoPA9rX9xw;hRaZ2F}w^UXxCgD;=mt?&)fl~>Ir
zY#)0r^cF(fy+&+tM3px!wI$70LVm(o@5NSxFCG3HUpiUQ2;xxM_c1LNApED4(6I#L
zn^03-Tb_3N1{FtOxwgW-UipoeO)FS^dl+DRlX?(7y(lTJ)*k{~58$H42JK3-5ojm4
z7_eSap@-o1jeTkAIbUfMF2o|t_VUTyOnFYqwC<&1nUytaEW^*8gW<+r$+$LJcp&!i
zD#~=UO0lbv>$h#fa4<c<Vw8*R>gP(*{*0}DkZO>7+r#_FIHHj^wgFi}c7NpyCkknS
zdTe@1WFd&%AUHWD;-`g&V*gfYXlVP|WO{bY_zR~V1siummk^@6#>8LdJ`Lap^9V_9
zu_wceH^be%p?T2eAL(EJ2wQzVszV5!Dr%J@b2z|kal`zJVbi|2S_>yC_1pttM!zns
z#aU?aBX7(&&E=<S*;1|;gl?>r?t5}-EoxLA!j`S(VZ}9u3albS#Y`j=f=!0BwN*;C
zXExu>WIchj;<s)rTT{b*F$jwEz()(J&4R+4=5!I+b@6YdTCpLE2d9=NwuEkzPQUm;
zi6C+?-)7v(L>2?>2Pbrn0`52gQ!aa-l`1s!(<6g-#o?pQ6W!f!Q}gKfB%4g_q-_nb
zV)9zpK_)f(RMiNXm2&kCA!xKcC#CtYhI!E{qH6%wYQ>>n{j_U!b}pJ=-q=!GPtO#Z
zaY@_HY9bQ5>pVPwK9BV-Bh2Ur8~JefqXy3h#8O&v?M$ELeOKZ@e-_gaw(9Cx);g`h
zyEHxC)m2|#UrM-qYJ73`QDepASz-w^$UVo7$$&OMWdHs*pZh2`2<foHmUm##af~aB
zN7VAR<hM5_Yh@Xlo5T6lE*Y&!r^S`Nd^ZXTh7lnrqX8sWIo;3~*5Gt-lQf?Y2}(H9
z3<C><uJ7k5Rxj_$N0&>4eeUCqtlj%ZN#!X?AaE6>A8X!?Y&Ux_iaj{5XOSU;i;<8B
zQ%F_v)GureAz>32`>E3<Z^i6zaEoMc3u_<nI3jaDkdk(-EY{yamyP_w^ZKqoZS{Zs
zYaE-qx{BA)4q(bO%6OSVPKqa$x#3t&nX(`E#Y-yL@~>3v`t;;&Q<&5J%#ga22M!8-
z{Yl59WV&^JrAf<qsWvVwjhz@=h%jb+Vvhj@kwk{=@`YPP3lXyVOws)o{ckT+(!cIn
z<GqhV;9<(;udtJB@GQ|U;W80Vg*aG_qFVfv*HRz9=slt($e}-<D*quVk`~uLs&+aQ
zj!n7Cl2+}ZrZG!AH^FM_e$j&6oZZLB{n+gF`-q0m3a0D475QU%!*O{?{$Bwkxm&e>
zUTqW^Jy4M?3)I?v3W&@yw{|!G0CfQ6qX5qwh;vEoZszj4mg@5PU(^gkpvAf@$`gPe
zP*yXKpUpwqy`xfA?VUy}+kl+G1dTR_^(~M*=9A5O=Dzoh!T{z8mLxQ|5WLpUz6?>H
zBLu1emnv>;&*{4M*<%5EMLe&WOxpW}P&v0O1Bizhn_7TDRrdZs>3yHM%nIbo%b#q&
zfvBa&2Fwof0egjc6I7VvZ+v<emLYaP>|B(WZT{qXNz>E1g&Sd9wQ+W#aUNJZxsEWC
zSkvY5e#C2;=H;_j=s?Qj`quuXcNcO@OiWsaNkvvYG*#z<0X0NT4ukbK{swq2xdE|)
z>8m3HB}~BdH=sGABrU^b9n<!m0FgFGiX2Hhi|7a-wsybVEcA=Lavd1MO|yg!ElMdP
z|B2HxzdPn|w@PgF<fG5efJE;+W9xWebQ@^D3o;>Z7w1(V1<Jd!0@E*h+Wp0E6&SSx
zp{U17nRk!#D@3gh4BTCr(Xu~UE#KMQDY%01VL5CUVY)zTmT7w0-&0cXU_5qdcZG3s
z;RgU^$w)t!*Q&t#1;rB%-zb_0rbtWwl+kiP%@~Xvsdh{jMy&5ff4A7p`_Hpgau>fw
zyL;m(cOE<EK3mo&=3y_7shvE$!-GMu+gp6DZN8sDUT&?vWockZKAyes(L}Pk{e8Qm
zDNVc0@+<S<aaqwdXJVyUQKB=0b^F(12%LVJz?25W9ApEAD>)EmZx*RI`}qW-dN%UQ
zpAw2qwtSxowG%SU=FW}F<dm}NDwK22Nh*HF|03qR<+i-O$7>gq9xcoaZ&mSP5R6&?
zeH!(Qb8^m-TSmKBXD_DfdiM89i2%L^_ylP_pF!PbsRv^mWMrxTRCktwlA$#-P{(8J
z>o3`6NTO&$RXg2AY^3$MYe4n!4VKSOukRMJzLT+L#+@5+5!~d}pdyuv|IjMmepx0V
zTFx!6+tz~HDvJEc6<}DaA3SEP)m}QK`PH?kpi6Wno#OIpX1I8fU@bSU_42r3Ltnxs
zYjP-LTvFIMe}ziV+D_M9fNTgv(cOe_rJFzwn(xw>FZIx)>W$>WJaDClm*gGjjp=$;
zxgW2CARJD0o{mrnEE>cmpe}Ikl0Le&aX#2pRNt}1MAUio)kjtC3hi$FS~stao;$;a
zUE<4+&$yr?kCjJfD+I<Y$TK~D?L$0bUvf(j?dGU8=k&;Kn7l|}hBuE@4T=RlA|GK&
zK&F_2KFrn;1hNp*_rRb=dHpd^|BMv=A^`a!28WviKK@;=@AqFz;{^NL+lXb+WFb7h
zG+F2o9*-}=7}}JuQ$auDbbeuHFARxuIivW_Zs4%cJ6Yzr?UkNGUU`dkC~H#$k8&En
zLSBnyNWl$F=cy%{U9^}P1Dk7^wfs^~P<Dmyc?P6+@~1df7KU`@T)DGRk+k;Z^ShlF
z&}b|-4sD=~Mssh1N->M02mgE$QH8SxAwI$|d<i~T0X@g;dBC4y-BsuaG2-M|b3Y!+
zENH<sjlDd5kz_&;<ygS+*Hfc(2m+Lpx!+R|C)(_MIy|7fJE-rP<^AikXJ$tMt+MgB
zI0D{hf(*!Uo_jl-le}!M#k@ZI03lAhz$iS&=6z`_%3NrvZxx}ZJBR8=(C~sm=?sKa
zlb5;Z+E2Ak$L&3PUk7?|7NC$oa^TxQNUqNq+o~#EvcVQ$elu_q&YMSo)0}dR0GvK^
zV-9p^5U*s6$9)S=fLiq^!6yeL@KF-IfOarKbFRP$pXfB+=?Kn&Tw61*j`v-F_P-8P
zmN4PYBzz_6tI$o?3c<u2|B}M4dIUFJ5&VPx^e^1BHN?ueLG+0Q6md$EcVv0L$J{K~
zcw)T=KORGh9&#a!pTch&jfmz&?H&HEsi|}ueSzAi0Q#whoNpxB=iZNxM*;mdNzUUq
zqSextJzliZNo*R{Swyht9^;e4FOE@Ml83J6f=;MQ>lp&ocIvT;%HG|FZ0~YL%<pJh
zy>T&|Yt5H)r0wiqGp(U5XfV-b%`aOp827k+O1sjuI=nwxAumUbc0^p4?vOB%Tj={K
zEAEL42(e1sUU(i;RN-bY<l~W3t5iQf(i8JuVxM*)8JVbS-0~nbdU#FoX57vtyEi40
zrpAw-H0QROK{Av)v#Jtg66B>R)9g`q9m4AD{+P`A*X_UJoT9?3WdzvBo{kKD&gi0U
zeU$XO4g!g-<j}>%r^TS*$-2=|nzY%}QZL3-w{i8lv2!>oCsiQFz|eBBmSy<mMXaiE
ze%@$H0U;mZPk+V$e;Uc3f>L21OApxH94F<W=okIk0&QFO*;!$)sfhN+2kec4Z(ve%
zdb9<nQ@*~%Un2-P=A$wTgPb+}>^R!EavoI&L7gP=2Tl1xWF9mEmV{vcqv_}9bB9ro
z{CPyJk1(7&n&uk0*!=ktLkL$%|CW@$nMm>(LmU8lZ!h=Abi!-UH<E8p4bB@BFkC^o
z5{Bj$+O=X0Rf2+8TR7#WpK^eh98npOi<8^-Ob5;ILC!TSHR<xc44nsO=jeJtWFwM`
z-&gLJ4Bqp(!6#Q<ehLM?8ULb9<`|N|4KHms=A^;A5PJVIq*wWWi}&<zea?`X=u;QK
zTpI)>R?%k_2J>Q2L~ESV<94OnW2!X@UG7r>h}Q|Y)1!aKomP1l0l<^ku?RyWS*J1k
z*ES*zN*sB6ilsnGuF065I4NjB;yAg5$?9L)fT9VWOKnON{Whh-VrOv51`x7&N_lB}
z4U4hD9J06Ai*Fdc0N}L2KzZ?x_VJ#=yJs2~^qXiQqC5>^VsptWM;e@h?{MmvZz>$}
zeS1o8q*n7KO-EYtXU)Zz(RY{c;$uT0sy2K%bOBIZ>?Os{ZD}dEb#JMydPl(Go_9xf
zeuU^o&^TYeQ-?~G=$GW#_(ai@6*akFli8*E`YhU0o1%l>Evn3ck%c4p-2za`lvrUC
zap}RYhwRFw*s<J=>oKoAK_{u4-Fw3CLK#bav%HpH%bFB;9#@(v^PLz0eebIheiuA)
zWbzx5G~Vd@nTlvKO#QTOL<lY6kGtduHZLI)deM=$wC9|dMN6%ZdZ(SxO0zxoL}B8w
zp;scMaN^cS+sxFG5q00)OruvRX750DJ6(RC;2;Ve50t8);Wq4PGwuv6w5i-iRN{R4
zf^pVvvQ18_Q_`k%yo~VM=#+$A;hvcXvIIlNg)<1QdDeNc#TX%UsQj+fnYKawXs=}#
zj6|o{lxD%LK7;qPCSXmE0pHNPF3!(rmxKsC^o`@duR!p0_UUDUUXEhsit<#9^=8XW
z%k|nLZ@BF)7>vH<G?4HJeQDaDhWRPCEcVVi`(bMJv^ag4GZDX(EEEPstJCYE)f;xO
zDL9dgiqHqIt~{Vr94u+!QrdHsppoW6%_`VSGrqRH`lh83|1QDjb)k11VoQ{jwgOz*
z*%DU#u>x(%FX*`%j8R}VF+}j`;Mt-DhBp`}YYr)gb_+?1>ApKqXSLXV$IpfPT=nPA
zHZ0fB&!Pd(E~|#V7|81>GIj}xv*8j#Q^rBCbRLb+rAuc3WEg9#={Eq)tHEy1{IKTB
z4W1FXcC>{SV|=Y)$B6_9^Ijw6-c{7Xytj^`#AEZQo|3zs(d%fBP;RdkE%=oRVyc?F
z-(AN`?k4#OR}&VT^9MFeZ$r53sTJAL<?_xkUBmV;PQJ83hj7O&f854ZPLMy5rY#-A
zBf1)&{?VMSMteK{f;|(7JIB#niGp*aWQFLJ-8<SYfb5*C@N49<KQMJD3r8A6U?Aq9
zM#*2<Rp)-7F2bpfQ#W7E9{nObRlAYm++SxeQCA;-rK2|BW%>7$hko`P9k`%)tuVs6
z@FbiwkH?Qah`{qgLJQTe<^-uC;=7R8{n=}UlN@gcv>wk`&en*)qMt~1v_b`LzeM_h
z2ZYO`)ay))Rdg7Uhx7h(IK$V%I@zZ!nC4u6>2PkundkWMCEzdQMP3*wTx?~Ur{;b_
z4hg&qPtNU2@b3UW?qoLJsR#<Bk1|Av2yE$ES#|=mQ`B&gPSl5%FAAbq3cwhh9%tyL
zea1*^<XJlP246TY!EaSzy|XCw{inBI-SV>lXX^a;McxrG1VFICywKT!vId!4Fr^h0
z+r2ChQkWg@QfQXcP&e2q@WCApGi%yHW|VVK?$;Ky72Bnl&o9M+?l1oyi+OIqZn@U&
zb4MNGJbOjN=%Ia#lH)%%#kh5YcIr|qVM!b|_Im?68=wo{;C{|&$tR94ZaPc*bL$%7
z6%xkv%wIRYKg^K4@uEj>etsGo*Nf;j?h*RmK<@owKJ=2ttP|ziwJD?ch57N;+>?8f
zqP2h6s9rV}ly3}5PAM<>zDeMUH$XgF{ZiBrG%_d?Hf_@OYd3-rEJsM7XbC-b!vZp!
zO-`m<RS1!PWgiGOxpy0&NWi~)FQh8m?K;=<pbarYN^Od`t%!e*u=B&uv=s`Tdz(hK
zLP-hVHHhRH(>(q5+-WoP32htu%8+kHu~$LIzN@X-qoU7YQ_a)lQrG;1rq@-OhLl$~
zB1&<K*DI~tA5oJ-2SGKuh0#jM!r!ACnJ>h1{b-~re%z{lw{_+Dg8|BP$N3mLSFt9i
z#D{9vF!?>=`;ZUzzxKIfZ?Zy17$q|Yb`szD=Iv-DgG^j-@>M*ZlWy7p_3}3I_F2MH
zMQVsdNsBf~*Rv<7@kv2>O=q6uwyol8wH&=cXBBFN8*R(Z?t-HFM;7GQ$7hb>x4E_3
zmXA)YN9_sPDOJ-kJ#Pnx%{EAQGKL<TBMpJPBBiV)q?P%}H~o-@VuU|1Az!2n%#C~_
zr0%b9RNT@oR#Am;1fc$MAS14h8OYP&F`0d9p$DHD_AoXC94eou-BaL<9YJ@&G)uZn
zelu=>XKeLUx;QNF{su2;h0!tJ!wVyV9T$OW2iR$PHu#AUPj$|N!S-Cc_I{+jUP@U2
z1LFp%Z$o`>Bz8)$l{MarJl%@9Yv+tJMIWx?O{O|2!>LzUlb1~W2hgA-3)Y?=3154=
z8VE4xOOwwxN_!e6bnt1egY~v!5^t{MM!7Mj3s{CzEZI^jN4>j?`-RdV$abf!V+x1X
zB0dlCECAN{)o{+`#cup+CZxJGe}1-q6mZ9=Jbq~#<D>l1>o7Yvij707giI(-@fm~+
zB<)>LVf0jQt%3RGfbJ|j?ov8bAU_%xo-!4x2<>$VPPn3*zcEDAfPP<}pe-U?F+b>#
z{Fu@RYiM7>_vJ6+C*RNr*f{@MzjdbNvbQ`dOG_qT-g>zGMBPcSZ5(N)Az^UQkl&jt
zoEBZhliD3!)%R5jJ}mVxHuq~dk5`k|%oRuu_?yI#IKRSt2NTwA{h!^5zp$V)r&WU0
z^fGb%<L6bN@V(hkn@<=z+yNm>T+nDhs~I=VFiI{ZN)7D*Wx`vjp<C6fBh8XCCs)f6
z5^w4B86L(KY%F>odHi-d8SA;Y5Fj4zXqVyUXc}RqWX8^?km;z|W?ig%vhSgt=gB@|
z(|2`q_wMf@TP_J#Tx;R+-m>l#G*V~anAZyOzFlmF?hjD;a9houS;ap%Jv<vfwB0na
zr$&?J`t8|;f$e!h!wUmv`<DwjnF5<$3d|*22CuvN117B#<MJq6ew9ZXh;x}1M?tU|
zklgyF72pjiUMtHbG71e~Pei24Bao)-K*?ZE-c+fyQ)YMJo{g*=cIXzC9)|5P%IOo|
zGORc4HwfiYOG^!6-bsR5r*Mr)rxtg6&h?~TwvXmk5Su94RS#aO*(>|f+oB-sB>nMa
z_Z3h}pw8Iijfvy_>7#f;>Kz&vS%0?wn;x{_mn@DJjJ&J#nZH>*0?*YtGPTbRUJ4Si
zxz(x+VTr^Fp$2{E6K*-{0TI?kvj6T+y)Yf5{nI1KFWwc0CgAx(ki_Pwg17PUEuf{e
zM#?!4a6-<2hB{nGaG8!NdIxg;HHphqJ!|L$YZ)MYaJ}C%o;UrK@f`EKb8&X|{|n-|
zH+K9MQ#D(=jC5yq*h!{wpuk-tEpR*AbHUiB@n^hIW{|E_fV6nRgt!P;26Spnk%j7k
zQSP07d5>dNkkeptILiLH>?`m=7w?d?xV=zy^{#$NKM1&`jREZZ%GaejMK8O?k~9w;
zyUzEXkn(++(T*62_kg7VK5R0QD3?$?gDBiTY_$_zNW!R*KUvbtvqA6I2F(H92x;56
z;kGr#PzBk}w&0h+(jc=4n|r$@^o1qu2i0XkXX$IR1Xq|&zCwThn-JL<5f{2@Zo(GP
z>qHL=kS^2lczH-ac6!zdPTei{@KV;D766oAr>f>Xf_Q$}>$O^P0Z3wH6!mza(QbcH
zLZMaxww3@c`C_Ezi2x2m@;-2aqYMwf8DhMix{9=MEx~v`0}YG3?}S#ePt&7t!<`*@
z{h(8au2bGI)zG6QuE0A%>`Blm60A!-Xqd{OY+rIuC;&>L>aj&4K60`ATqR>SKDHYI
z8b>B8#j?Tt5j>Y;|3fUq!{X67*V~BF7uF&k$%H~d@0{?``QZK!Cpmw*kri_+eGl?_
z52I)-OholRe@l83c)X)m!mm+FBKZDY5V?6ag-^>>!${#Bj$+;%Z4jn$^#3Q0Gk6K<
zrygjr(-z0bVzrYVX5K!5d4iG2zXY*H%YWN0&uRI_#yn@}%xiFN)k0)b;{FSP_UL$S
z3vDFSaOCc)jW#Z^kX4<7%Ch=cyOM+>g_N5MYp2+hIIvp;AHJ$&)L{q#w%}1LZx_X@
zcI3O*VO;cr8jyjnNS1=%X9?=N+x-#=rOw>6C0J3?>}aZ*>T}O7?6&POU{03*cak&r
zbd#O9VS|$ddmi_Cs?sm%Bo7032>*EFOb)pncBUVi#&NQ8H13T}BJE4&68XwgP{yYs
zCaW=@P0TG7NaV4Vrz~3f724vUOHtv01|%PCfl<kHpP?c~^2eeT1$*$Yp_lk=lnM0d
zli~dJAd`BRq(gLD82PT!Rry}kdzh=}so>9!*L%R{rFHT<3<uu9K(QIx6d^P&M!6<>
zRYA}Foog|)y5t;=(%?9-#|N9nmb{Z5p0tQGE?GD^zS^9gwS8OFVwi(?*ZZn!;r0$j
zMrW2y4weJsZcEb3mUT-cMo!*~m|fv|Ps$=RSXpP*GBUcR$ULs$UEiIobgu8Dc?>R8
zv@g9N#%%3a@xK%l_KBFaM4Pg4noF!$J6Mn&o6sF=4H6koNnChR%(==$)hIfi0(gQG
ziTjqKlM3xmF&FN3HXK$7=gLgYaRQ-uOwf33(B3*{rsKyjeB207)y(kccD6yz%^1}z
zqB-H~B#bIlxbJyP^))hw8WPFsnI!4a>^h|U(V(RFMKvKc@+R?iQ)feF((y5KQo$|M
z(@&Bf)Id0dA&sC+{GQ>7PwC~*&%MEA?eXr@x1i)>_h`&e)DM07r>Q2%FV1`)#2@no
zjR}8tZ!vk*0^FL(6m5Q2&*bp@(){#M*tIf|s4({BvSIsZr0Gbo8GTibXw(DAp!GOK
z@<6{UoUXsZ1fT*>`<JlqG@droe9NV*9tQ{?C8|W9IyqQQY8ajX`1(<UBi(v)+gwwH
zwF)4-=+q+p%<2H$*AAJ@eG7{{%S*?W8m;>hJ#!PJI_zH{X<oKQzE}mfnUU^e?ddlj
z4DDn4*UfXL5to++S&3y`X7(&$@??B}e%)A|+Nx7<%FKe&uf1SCyNVssZWiOSt2k>|
zey0!;cv}n*B~<Rgh(E~&xh@p1^qe|H$+uc43yi@TN}+k)q7A*lR!zQpNjK{Ca$1rk
zNG{&V+|1>>;H5Z9A-s~XYHtRp^5&(NuDKf?uEOYe1CE^dXPook|0B*>^<Z}7#A%EE
zvAA6^mYW5V?+Oh<W?3tbsQzs{kG`%R1iLc^>&iUJ8%#B&zrE->NvO95^E}cvO*nen
zLbC|r190TyT`lvEI*rIL7m^O7Y^whQ&N&fq&QIKqX+}pq&yPLzNlOPX@UF120O>RZ
zsz2>SRlWu#&b*-?NM{p(Sb^!O#H_%RBO_)UQz9v6ZGsJ{6)Xq=Mb^l&>=l+f{}!y<
zfqp5&nOB-Cixg+o1nDrde<V69@yWI!Lui=t8m;6&w7qf+5e%+(9yHMcInl#R{Vost
zqE<kSje!J4VOg4G_?_q5Gv)h@`AUs>{$1Y0mZCPLrKWLiSoM2JmiOg-2+aAVI|6fF
zQE)S5F-3<he}8c8;r6_PFQ4)})q0vnHmS~B#b#g|jNY`fsg!l6o~~@MjsYX6Bgx)(
zk6_f<zLjM|cTQSouG2ux(T@`z@-gDpO|u8uyIcY}52}8>Uz`^@GRIb_XdLy+`j$-s
z#;lBu1)VsDyykUpy*y$q4^)j1B@`00-YK)2w^=_KcJ0A%w#JP|e-64fxRrI&-Cx-D
z{KB$U@fY}G@$R#Vti!M|>q6I`=srI=_K~Z=_|1yxlvwl?eUU3)=;Eu~)*s_R{r3I8
z`=@{V$A@Q)>!gC3v#N)Q=Pu(Z7GA26JLX@Yhwom|FV_>-Ztmreu89FQ^q*hFc}1{K
zC&$OAs;D^h;!a9DrQyPQ-*JsoTjS?e{lnjVS5Z;1mp&h}(Q!ydE;aMHiSTNZd2T_2
z!Vt<>eYt}It<1Z|&CxSJspt<M!7pqx2UxeL!@E75c?wgRKZ{$JT2L&5=5{ZMW_y@<
z2Kku&_Pze`tIzkQS@g<kXSEiFglm7S_&=n5cRba9|Mxd3NrNM48Oe&IsAN+_w(Omi
zO~%17BPwKNWseY!&9M(<WQ8JoWoKt^?$@X9eciwB^}Vk9zIt4DfAr|lqmFaV=RIDp
z=kxh`K9x-#&r<r!rmAJnhNky@2oH4cxRax0fHiWBn{_ij_V<tUm2muRpEEZ6gZc&2
z#jon4rgchj8TWFE0v0^a{Lj<+4{w9+#)03?@e{Ru!|pdM&i(zrjk6uX<b-pRp=<SV
zpGmU9-nXQziCsMU_jmGJANJS!Nw`ZM^h*8SEL5#LOr1lvxC#wc9bMD(M=3G9v!f?G
zal*g()%~B<_&=X7D1m2<eX(;$9~Yw}shQ<6^--OeLhtwA+rRu|UrvwE&@)qb^?Rm~
ze9FxgJ?axzAL;HK&khy*|9RD`hkVjf5>Hua8?$MlS%$EF({V;>|Md&P0xp|IzD`{n
zVW-57bXY|;kCM+fMM`Gh-})|@Z3scV<u?%Xmh|sWU+A#|Q&4blUOD^a`jrSvSYfaj
zU}lw#RGF1680~vp>Dh1nh<{%6|9EoD*@TZCJ&LhZ*UmI-muF?4tLvMfQ28U1<oEW@
zKVIgqFaC@v7qT&?@O>m14B6q0SlotjmSYBoYvSm?tn6PW+5fDazrM=f{?=nuT!_w$
zIFq7DBK(@k&^t6NR!uk4l6%%(AEN%<yZGDx|G#Y(M*<rew!qH53Kg?3%vaos8C&q}
z|DT;zLjLm}@_>5OO)T0K%_KiQM_UULs?z++Q~j59{(t!pv;?R}&9=B=c;afNrWvwj
z989^VY+n8TH}@}}oH><n9M|WZ5niHhLY(aySFM<yJJEOH`EPz>|K=yl#Sl9V7T)@X
zQfWRD@$e~|WZ0;BB#rB8aPv=h&~pBG=k;H2tUn0t%?R41k$88Bi0c-hH*K}WEf-?)
zaLci?rdRXu%TC4Gw?kh3_ivu`<uj3Q?a~p<^3@ouGMwT}83E&1DZN=moYKAjuT!=J
z^^+P~(`T}nrjC($nk4~+5Nq}cRm$I43m#I0yGHI?S+~fe1{vRp_?*G^Ex531;C<Nk
zrqB0R*x09*Mu=ZEG{J2Y7vj}5(rs{>u@vOmZHnxXubbFpi{7NL_LY?m_oUv{XXp^i
zM>lmDTTaZ_=VzUlv{+jWd}Hx||Ja$k9$=-^0||*g_;wL!T5LN6+M+%Ll|i(^h~(+R
z)B;iHvq{7t5Wg|hk2I4A^1yz)n!~WEN0^Ap08zM^c4qVfVQvXJCObJ9LV{8TImOoJ
z1FeGZ=Ow~e3=#W`m2=w=*o4?o+w_Shej5gFk$LbdwAV-Ih9an6?nM$k|8->x4Uq;}
zs<%B`ew>A18L7^pquK^=f~e@QcGRytIlfBpFH8F092^NhNR44uMhnCnMQs8*Zz)x+
z21>qyjjq*czMs$7)bf*mNQFllNG7<vyPr8Jyr+q8SGw45l@oWqGgYLqUHPE!JzJLY
zEUkNUncy`pg4yLAyQ03AgEQM|oU<JXRlB~sr51jjbN2qTZYvpEMY<24d^B?Nm#%U?
z<pDHxJuKGPu_NvP@~<z|)0EpI7LQ1TNuAj1bGksONS9SXYoGxgQ<m`aqX00U*jeq^
z<uBfKg4WLzfi!Qlg+M+Sz$7E>NGqge_f=Flk`A1b)<JrpG0_zE+{K5jhG162mFVOv
zA=*P8o&u*)Qtv+Gvnpj6AaU3iW$zUYias8!bam#P%dHux0FMkY!mcCswKtGU#$)#~
zExzy$aTdkQ0nzF*j#A4^u}%R`aM2pQKX=T@`!{yf@pvJyEy@IaPwN#W$2+JEq@$t6
zjFUNota%<Fz0;KB>`jFG191~`ruLN_5}L7jKaKixnJMEqBtr}P#7@}jvmI<<`t$AO
z!^b8?M^Y&Y%sa<}l}jhCD(^J(TdX(pvn|iMYuicFkRCfGP9Jj-LLV`-xvkPWju!Oh
zjaFvg(t^v0YJHm+G8>!dpPlr>MzCo-0g0u*>6^60GzrYxlFd=S!RC9cD%pjgaGBI?
z1M`{g(;|}qq#zK`q{%^DRzbzM66ut%^;i{C&eW%iR)vTm5!gB5!E?iz<9OF8Sa7r|
zgvpWX?Ap$Ig(6)}%B$70iaFJ-oyTr@{>B$YD_2W=$)@45eI11g;phy2^^klSg0x&+
zWoR?(qZHp283Y<bqycl#y<8t<)pMfDT_|R^Xe>Uh7Rj>Hx2zM_M#zw5`I6RZTY;#*
zNZQQPPKK_tFV-l1x>GA;LQpU^B(+@8Vfu6+w+A|s<z$wPUr6kCrwE?pn}mAD#F?+1
z&esiTNQRwuU6LRKEM>g?v^2F3R*=L(y{S0o?3OtGe#A_aQtL_YOD_(adnKUVOLKzZ
zg*bB7ZmdchY<}-F4u)~vehm=VnnPlkz<Dp9?Ncn{*2%D>8D&3g$GB>fWa6}4mxS+_
zbzLLu>YXdsno#;OC48qj(UFVp3+PR``j1nv(B=;LuU}MvMdo|-5PN1<L8!x{tjLGP
z^YOE1QdtzpPW(>!A!L0efkp<gz<PyUQ`-Pgmdi8}r5q1t8P{_Vr4&e+M8ZOtqX_q3
zJLYQdOFp@o9B<KU>aV33hqYzR4!Cqz8Q)<Dkz7^oM*VkkHU_7hOVE3d`b+FG!m_>&
zWY9e2CYW_$s+>Cc6hK=ebvyXT^I(aI-cm@F$^&%twnA)0(>X577!y|JmA-R$P4YY3
zj4rV0Yt-beeJBl4$@Sza*lY5`EH$)26vz(Ek0LSr^D^|{_kQLe#b%A8)YvIGNb;)f
zy4tk5khO8<Zsy-wy??vFdN_|=g5<uBr&GZ%<THKtS#MZ3LyR&pKb|#QNu$(QJn!YZ
z#3GqoQfHxtztQa{h0Tjk36*e|SCKv+IqPQA|8z}9Kb%FUSwbl-q~Fq*$b*0>7vMJ@
z_6AI%Sn!W>*hI>(yS3C`QZ}3S6<!tF6IZ#S0W-YS_NDW@1Bt4)E&9HVhZRXha*QNt
z1?*IUA94JYtC<bbkME>`%L4LiY|C^Qq57M`*)A4afIU1irB2*DcDt{WduvQ)@63^v
zmEO)3T6?x-J@z8FOMKXDOy)xnNOMo)y-e%E{pI7sDUy^5s^`KXUz>{8{+3qY8~oXH
zX=D)83B-O;SQ9gv>8KRfaE0cU7+apBYnPE8`Eh--_5S&`l`ktXmEY+;;<D>mWIJgN
z5~f&DzttErpCY`#H8fJEY6f-<R;cUKAksza2`SwLF9YOglU0rIOcJJLfbiGyU0$xp
zlwm>B=1+VUCb!j9pL6O2L_JP9%M^7dvI64CEr-*VGf@;5XvogwM6aMp+0z>OdUaH@
zs1FZ3rMP0Nwm<84<o2yGA=-MvWWiF9QNU=EGeM})6cQPU<UE3#P2kK5xS!?0*a7ci
z8-V&wijgQ4Ep!;Uk;ES}(%a#nf*D*Ze$sLwK2|YJ_5(HtM1f+Rva+(plsW^}meT@D
zAl&7VpL}+Rx0PQ<jSenjmkx%5&9T$v0He4BGtBU&1&NC6nP!57nn*`O4o&>=U?u*b
z$NgYuIAIN_?ioTsf%~I0f=rl6WRAc!n1n&S60rUj=aF@9P+ArufQxGJGJDw%I>cbu
zm4fn@ldW{B^)0uaeQ-G`k9bqPBR+v3yC5Gl=$k^ZB5n}besJH_7M@;vq@XG%U^^*w
zk<T#~T*^OQuiVr_EU}Yn^Uj|?k7!8y#~VXx6o^O5dESFUJTjm@S58w83+5Gl2m|~&
z<f69lm|QY#+hOYt+u*Jhgd*PGTXfe5V^JC~4|M>{{3vIL_$Da8aexpqH7JPGM+P(^
zam6fxF)$>-i9{Qtr=r_b4tOSk=HZVIyXpes?g8!_y48f`U{}Tw##%$O2u?oO=&GD#
zThaPp?bHx45HD5@#VS;4j)0(d(E9u$0|{|%=L7c3UPl~wPT^G!p6cXTQ}qLZo)1a^
zF<duJ7jW2xD2AiDuxQcv5;%aX2j6N7{nP~faiWV%$%F7$nOMt^FpGCTB-WPcl-*vC
zdMB*Zh9V6`H(PR|(d*xy3;$dS+3OSNE_!f2`7B=Y22zKK3`OfS3~yYfTO!__NL2S`
zcqFlqrZAdw!;OSBSe-}s;qKgVY5QZD#ZRsk%xiFrsx;LPu+5(BkMFmCCCqw<n}tR!
z$?Vu1k4Lm+Sz{EJ6}8K4A%2OsbnLmPe$d`>nv$|tE63(Otf3>b45a2yB8<v-mk&at
z9^e~n=f3v&UDU4&bEBRau6IqVa6GFKm$v9=QG-EJj>$<R$1gMs>&X+pX0Ta1t5HA2
z`kJjAwD1-%Tozf|nZcS<i;!wC?}nD(@zV-v+ej1<(+vsYRu-9UW@rt2%ca~ywV+?M
zw_X4`=LbI6PHlqk;PcfC)*x2EG)d9AEW1jQvdiatrREi3ZQl?rfF?yyLNn`T?E~9i
zOy_0WCRXEf<V$<C3st*!Pw%SEXuQUk@H~;Qta?~`ku_VH-)EYkOc3Hx^rK5x!L9IX
zm*nC<ya0?)s`b7Lx7YLPsm*`^L=V_Et)AHBBUgTX#`vV}$~0I&^4=`aR(*9F^RgSq
z95?v1=47j1S^V>yD~WjR)Gy7)eWVOgXs}o}ccxn5=|W4B_<_N-<zx(1^js5pmWK-h
z{5jJdGD%%K@jgPgy4$J_-@xOzy+k?BPj<%a#cwPJU#3GC;n0K!i0kbRDE>#UE5_$;
zoIU$&i?4d{`G*%N3g%s}6b1|~#;!aOaf~&copLkut126wu;?$mv*j(~rpm6Bn2oK{
zUGf_5pRjH@DaokeG+(5gsvg3(5V=4bR7{A_omiC|dur1OE#-U0#9qx|tW&k&%gMm&
zaT)Rc0AYgpz9{7yQ(!w>qSoEN?C@^|WOppnUJLAP>;pNN)TriKWb7UcOdxX=Wv0ui
z*Ao5tE;=tZ!*TCBL&xO$@}flY%n^R1#YB{X0b%Eiv)Y&KpuT2N${3$yJ6(<vlRS}u
z6F)<rmnRixkAK*3H4$6<EAQrD-<d01WDuy%#lxrWegJW>CDdUBP-C|sHe*xxolpgP
zO)(@<bO(-1O)h|>R|dJ4%4<70T1J4veX8S=28!a9yKEk~$*VWPe!z8%$2Ihvl4mN6
z^ZXM2fHjaqwPuT?VIRF^J0-)dK%{r_iDyU%d$o$_ltY<xh?gDEGEv2slxDDJ_py{H
z<>rnuDV-8WC^V33l6!RG!qiV$w^*X67XjQ<3Ott3OAvJwyy05vcI(&=X}nm<C(HV+
zp#Ad8OQV~!=f2)dbX}BYSN&13%E&&Z<F*Cf(AoBIT^54!b$ir>c+U^Lth@)sOD`y$
zrLQq8K;@}vLdBC>@sM;Oo&x<Dv58H!eL!H>QVvY3%;w^3{R`BPU$i-B$QCxguHCbM
z5ylzS8NLqgE#Twp?i9y-R-+!;!!_z0goCjh;(fK3t(r%taA5EYBM^E*u)ihQZFOMd
zTiO17>^NHXDS;XPCF2!;4hOMQztsc}20ruR2Yo|av?G)vb1+9@7hiljM?^4#8ZrF4
z#-!QY!0Z@UCm%u^Y)jy7S<r%=e1PkZ%41Q`R`e$Hd1J_OgdsXy=H%!Rs@_Xv{*sTi
zk_=3y(s$bC`;R*ve@*0(d`#Sqg$zfz4XjQ#eW4rN5HZxE1ic1xudW0f%Xlch3tezY
zp-9`zB3uV(?YuEe+Q|!_e2gs{qr9pV-am-nC}XOf+}gKkFSfe!F@;jO70T#1w`~(0
z14Pe2o)QNaO+ajIeOY`<BxikR@E_ugS+W(}53jK-Wqu|p)}mXUg6kZzEVk7U#dx?^
z;{_{l=E`Pgw^T{=ieB1Y?06q&hFzK<R?}1Nh5k8)RzpvgSPl0H$p?p_4{{ai{dYyh
zgZ9znZLB&vkwNF~%#EmOhvJ4^OGiiPT|>Oqb({UT)2pBdWhPZ&<+mOcK?bWcq4AUv
z=?C9-CW%&J_O%d&=A4xeZTEMS>pcX+T`Ik1`>Z&K(|~w(-=-^$$DOX2vh_)?Au#iq
z#;;2eOztcWFWH3f1Q~BZx)OQ_rfycQ(&^&d&)>WMIqG&Zi1^I+>ki=yNzbZEiY!Xc
zSDUrxVb^91y&M@YmsOy1)CxYu#)H<uSx%b$g%@VJ?u8?P*==$AR@6>iTu9mEr^zEB
zw14*c*2F*DQjEwVwa<nmsCV0H8M#(2KT`Z^W$jG&JGJt&50(;-p<{0CNKVyBymthN
zy(X94nFzhA@CoxFl=PbU@(JJhUcyHm8AtypvQ(w6CE>|u(0|X>6q+AK;^g@0xllWy
z!0yi)A<g-V5A8}ocoh*kHDVxDebx%(Y#Z{F8Hiq|m9waNu$O*viBTB4ac*v9Ty*P=
z<aKMaFc{TjTuQ5WX%?a~r;7N-d1k_B>(M0xI+VBMGx`w6Z+_Ss3%rWO1b9a<YM!ZO
zh>7^)wmD)^M{D}VSaI*A^icg?v+VMRIkue1WTT^trF|P&a?~++@BnBKTe<ytaYcw-
zpw<_Qqa|*@pM?2)vFCF4roo4>w6LPXxvixM$le#t-IXMMSgj}Hfg-ibrm^vi@&ll>
zi8DEdG2S@qHrYXPWJn`@^6Xiaoo!Ul4yBk&9Lz5boQrv{YmH;4%#n`1Q)&P!)74(_
zZ3nm5ZN@{taF|lMgox?n=q^{OZe4GuJ1f;@-er{Uw~6jBRCD1q{Uxsa$yfb{+e!5G
zGcWCB&#Q-|!Dl*_(hRfy%_@1wIV}}THd$7v<r(s;*UbsiC+r=6p7GAQczn^Zr^tG$
zC#5~3x9D{>x$|PL7$LST-~-5@MwQhnT}nH_)1O!wF=Oxy&y?CLgrR(;;18Q#<T5vi
ztr%Ql1l`?~r5&&wgGTgyQj(Ik8%aq2gn70PgDWvF#~nwz2d?J|*Y4!k#+KDj8@|iE
z%l%$G5fKY^1R3v_j0KRiFVW@2rMkvOavE(Llg?CTN^i_U*K=fR<kiA3YW)Q~D*Bw+
zC8@X=Ji|`Xvz++;8-i_zi5tgH3dDKyw>0lK@^###580F=aK&tO`I%@t#&=>^*r&KD
z*6O40C-EJ)P-<kaG&(bPHlv5emHPUD(09GX^6h52egZsM`K=|CQ|q^_R9mU&IL<vs
zpH^H<EB8>z_%Aj<sP)+0#c%FD8EY;XX846b?Z@+D=^1I&B9u!pCnYU@@0s|0h~c)K
z1Ec0#@F3*;`RLqP@#*>w*s}d)a1}6S7dj{^6)IPoAAcj%SQtB$RBWZK5_Dh8ALrW9
znkSj6<jZp9kVle;5Vg;knv8cf%pBWj2ZCPTy*rlga~#M(EERN6aUg-gB1SrnHS@}t
zWk=_FDu)v1kXn9}v(v{Z07Rs;KSB#~Flj2SgjL2tKt&(4ALIi&Hl6ZP?{dXvz!N39
zC^J(XXKL+-R~atx=KlN{%RO!Q%#o43?uf+}hWZD$n0lUSi2b!)7y8pbdLvsEh%@_f
zW|WG1&|G;snj1jMygdj8>Yq%h^*P^_ExLce@p48s>ef}=g5ClnrZcL3{YdV{Imesm
z>VVNR<94mqWwd`%BsSt74x)#hGrDjCW@&3ulX$iF8J@?#30eOxgmD9a5~d&1-_j9G
zrsV>cr8!_Jw|$-=sX`k020klqGSEg-TDX!tUH&Cv^Wj29X7Q_G$Px93?v}l(xz?AJ
z$9%`m(0f3>U9?v;+$CkVAx?qxSo3{L@KB!vW9C9Q?)wqlnP-f0T;Od08$({<K-by@
zMh4$mk6#d{ey?N?np@sPJ3e9aB;v-7?Am_RF^qyU@i%l}NQoN3+<<C{tWO}E>6eNx
zVkX0Hs10FO`h7=Zmi1b^t*O0m`pdc0ZFbbYrA=$sD9qXu81gflP`ImUyP1>WX_@A|
z`Rff=0!3oWGq5XCQ_-!b5742W>O^CI77FVKhdR7c@!WJeZO#1MY{@8#tWqL}%fwuH
z>e1gV6x=Q%6LJG*d3T@&B#eLBHq)`5H!n`9L!i;MxN4xDZyt6}!?-78J^Xd7ElVNs
zP4IMo^#Sfvspw3&eC<Jl%uNQn9ffbup92V7L#Uv!O1CRV#|rU$>>uA#CRhe{^}1g%
zqcG&+8oObMKM|T43qwyHB~DN!t;1K{0}>d|Nxe+~%n7GsM8>m907uDggaiaLWD(o6
z^Xbf-t>d2PyhpOk_r>;2K)uaGQ|V7|G!b_?4_&31Truckg!%5YLm}LgDK(w@SU^)X
zPp|GNhwLa)Fi*ws^h04`KJzWzdZ!a}uI-fI?oS~hkT08phq`#G00Pn1-_mwo{zWJy
zJUzC_uFOrgro*0$Nd)Gkv~b^8ay3<YL@HkX7f|w_h^RT9L&SRHbqf7p+#Q}<Gn-w0
zo%tfzUXwEAPoa7)pg7;BQpA1WxlO-ts?DTrkTcUomi`8qw>yKe2omsCZfIa|mvH$K
zGNGvFeLpTm5DD9YJ&!p4l5}+eDoaZpKyQ<pmUF8inWzkU?4;VxCc*Kb`)3TyP<r)!
zz$%<EXl!<r&rRZZ?^v<?Mpih62tb6V3No^?r$x3KGli#8`0h0CHXmB*Gem#>;TWcr
zp?FnWLGnQiRk7~bNL}_#K$ae=+5(mtpn=Hqk8Ht=i7}%!?yf{`Ts$Lt=AYE$c+9i7
zcl3o_Dn!Zg>v34LmQrQ)nS&=ft>y2J{MI^5l70-c^j%4!BuGL7*iQ3iH>7~AM;Az0
zib?l^ctDk#glB%DLQ7a=rAhHxA+;}H>`KEi(I#c9C!Kw9W(*yiB>V~zDQXjYG6l;g
z%hYO5s;6}Z7%N-2PULq+m;H$EFOJ$PZ82h^c*5moT6!V4G~UQCV}TURwJ$_kdB5P#
zlxSAS1O`K1l%6&yo-htGdH$FAF{Hl9^q{CE2|j~q0HInmm({7!at#qZ>nw#KEHZH;
z)p6RneJ#mGr;$XSVYgA@Gs{R&h2BePo<!)UUlb&b>ZX>tf9iuiHkS0^76^p%fh_u@
zeA7oBIE|4CgJB5XjBHxrd3R$flqzQ+8<*R97-JVc-4o0;>3HYqccEgdi6i_jyWocW
zO(`Nxm3mTNy4nrnBVzywc-Eqbg57Z_W2Hua4?2|CS2BmqEC<U(7rJlS!zi0N{E}J-
zFxX^x3GlH&MhD~sNMSIs^3W1`X_+1vpIU0|@bYIy;E&vwq(KSlI?`Vv<n8!X)Z0{@
zbj90Lec#Ur9#cG5`F-)Siz?%9JWaXJ#GvW!a@*fBn(fJZw-am!HqVS-+hOZZxry^n
zzSW-t6Z~V$yRgU${4a7HHKB99?g5dimKvPlYNk$TR*iDBCMi4|vy*L3oncCX3B}Ux
zGv6Cduki9cWwBk<Uo2R4wRbGm+})xovKiG77VO2XQ8ah;U4GDCvF#8aX7{#pldQ9F
z-g%+nl}eEv_WZPUmn2i~Wao-!CANsW-W0vK*gkRP-Yka3;B51eFdre>)5PKiS3R-`
z{Q)eC#{;#-c)D&`*%cY~_LRX3y))ZgFa@9CcZdknavLG$l(IE@fv{HHL@o+2W#Uuq
zL+m$dDS{g+B*LiT)<CxRKw%3;WC#{ZeI>84uziVj7&1Yc8<6Mq4wA@1+-1qAlHdmj
zYIFTI)16}l{j2SU6mcc~k97bUiU4LAUSrRj2gGr#2-p{msn*!}9{s?RwM$5e`$fm?
z!ErO0#-B|sWhAqFj-UV^q!gq-+l5J^q=KuS6B%+q$~m7EJl7OllD**n@_eGPxuWu1
z(wIzKEW?{{G5gr}D3#fg)+WRut@SX@9nyHD+ROnBif+6DtvgaEXJE3M?c8GAwx_fA
zlvK1Pv@ZcS#6F;T%L<<y(O~DoWl=UJn$~>1{Bz3^;GOyKQvCq(7;V3iaEl~-=A?Ts
zny=G+xseGG@;#0hzvT#hez~o@j&&(0NRd8y>o(OkLY(FHlLh6f4`C@xL(<e!cY?@O
z#IoO|YooK|j{KGe!ednAJK#tKL^Lj6Ty3=D_$C_J<HUr0WRPZZw9u|A-;c1Xb@y9F
zA$PNcO4`M*S0a4x1`VM)^_^m4<1`c`A_5)rvMn{b*@<UD2eHzm>?-f?hkoEGFEV`#
z8mDg%Hv2kI>urdjn!irQJqxDn^*s{-T@Q4r6O~JFSQgHml!?G&m+>c(00t8Dm<G{%
zt^0cp$M$N*nj#al!+T>bKp`qK$84Rt%7b!r3N~`o%79*><Y~AoOmulXEdVEI`>&#u
z+#X-ljAAEd@JpXAF3g@pk-%2gj$FVj_hEM(*P*q(E1XGKWIBv@b}070#NCcbQI3ZF
z)jfV&C9as^0b~Zf?AP0Y>*h7N>!-;nv9jFB&=ZjCQ=HrS9Qu(+zB>qjEK>qh0aZvb
z+CsO3+Ytt-UKB_T<$!lP#(^&*0jfqz5|uY!1cM)|5zHfF?$!*g0sI>(*_!7oR7n?X
zRmPlr-T~%;1hP1Mb^u%LLT~A|SK8uKtu!zN>?|*<T@DbD84uAOCd~;Y>=)Lw+{Xw~
zT*uTd5{f?h-1UJAw~R?&9l2e^*Lo$lbrvt=4g$Re8KE|wb{VskR7yqqTzfh*_Kfw!
z91+!A!V9-eRdWw>T=?rDWF!2+{laxhX_J4;ZXfr5Rw2}cO(1mMS&Ua>W*PD0yC%`|
zeEtF9y|^T{OB<4#tcz`e#al6#UYb3bCsoDjmX=YO4=xUit>rmw*DGg@87gPEurWP5
z<%d<W?hUNTdQxmgS3TEK<TBUHZHjH0SYNnQs76laJoPRAf_rn+R?$LnTb4`Bee>o%
z(V{1l2cqbz-R_9Y0RgQm)ywTgE}s?T4e8fU5a=d8Ornr<9F^{FcRZU-eqA<H&~4Wd
z;S}Z|^O?hkx5nwLf1dGIIt0{j?6B2VbsSon9H%<_iM79TX+nM-@UZBW<JZ^=bvwGx
z(3`peOjy%<{kkk}`A1gHjZpTgF^1Pa_oF~`&{$Bo;Ec+6VS$wEaFzE-vg60|$FgRD
zpeYh?-A4Qf2=+(zJAbCXkF%-%ibN+6>(%HR7#NgbBv&up!T7A6wbIl{y&;d8<Eyq<
zHj^2_ybPoiwCAXB8SJ_7m1kv)PyCkhT+H}oSBPDeG0w8RVLqBO>`VV4yo9eyVDtN7
z2dO6BazfLgTgc)yhlqv%e(;RH&KsUm(LP%erm_xtha>fIEX^TnfK*RZsI$iYxGNq?
zV@V!ZL*+0q^2riZAm2)OPOovi<oo38f!=idk~dWDU^R8M5)we<E!OC2knGm_mxNtD
zli|#Q<=o9RRoP+N5|VRk_bm|9HsJg0y5+O3th*>uAx*}II0>P)h_blZ3z-phq3h9a
zH>cWAI_`UG@koti^>Ir|=}R3Y>s<n;ccgz6`3T7~J^N6Wws?7x=$`}?a|?vKfwLoW
z))pv&P53>}Gjh;%@3UakGq)TVxl*!wB9J;>`cPSszrT_5vG!XxzOV*$f(v^IJkIOp
zJ1`Ju0Z<_3E5GX*P68kp)C-1&d4lu!#M=&r*Q`}k^X<6%i!iPO9K@jqp*_w!GP=4Y
zdde2F@ylK*-MqjMYZ`XM3)~vGHocksT8EB-Zu7OvG2Sj)hxX?RWCR$Y1gHvRXg5Kn
z4Dn!-A4x@%NL+P=we8kkbD?Jx9Reku=s8he(<&<jIbJJ$((Bu6{ZNi|4@2T;jM!ig
zk54<Q!6|VT>U5Nn?aq57#rXtgApA#Ru5|Tx&p3tr3Y(f#C|&s78_Dzeq9k<~KV}Df
zos(({TNYxMokq#D#qx5c+gIxF=S-I<r5Sa2I?05{l|qDo41G4Y*+OGfSEjA%)H}iv
zr;j-aQe~Wb8uADBuPCx-FUSYkUQN5r3D_q9<-XN;UMrQ*l45Wx>_fWC1*@{Q>Fx9#
z{{^ddIo9hPXnZa32y0Unn3aJk;^XR%2NUlTtwb{>JL>i#^BZ5b+sG}BSU~Z__T%#T
z(|={mxfyd!6ebU1TCACF{WBp1x(_eH)pr5cF0o`w3$7y1_gE%*(zUZkj%B`c(AOr;
zeCNz?#AA;5+l-UHl7)kI?Zb8D==ECR;HQ%7{>upuB&LsdWp+nozX!ro4+zf?B7FPb
zYGV&$0_Ug?Wq^pKMnr(KR!l;lPx_Tn(@4Uu?E|jq^ygMLz3Mu@{#a(}gb=L`WyNcJ
zls;Mb?`3J912O+bUiJ^k^Isq&p^xOM+hgR)rAo4rSHmoo)Z;B#KjAfLL(+!!UAS7i
zUQ-m!MNl3$kUHw|m;VKSlp7#!F!AsL!IxRc2lXUVSO0s49Cd>Zm5QozjO?9=@Fp0g
zQlG7*H+xh6)0qsh`5x}z-=S9Ei}eKIqvVUdrHMhy?@>f+1%N(J?$AGK?kqH=Vn>f%
zyWomdt98EfFY-dneW81%K3EDk8d~ZA=bmXt>97jk)~|WcUt+EQy`9JEh0K6oZD+aP
zL*v16hs8m|vd_N-d;USV?C~Mv>LLh8{I8{$8?tJd(DdgT=n1^eFKFgan(5DIykaq1
zR##-%s=`b1>hCgAp*Yf?ao7pGx~C~I*3h^4(W3K@n^?K)Ev<s?^;6!OmI8ahkGbOz
zqUL)4%cYrdhd4enGm_}`s1;bBHNCaJ)n5udK7Hk9eerz~^Saro1B1RBf5)a8Xb=gc
zAI__DC>r-b0(9nw%c?3L?Mvy3<!EPK;(fs<LYbP&!$;$jt}pss!pu$7Fkoa0_1{YZ
z-!Rb*7V@b`s<OdZ9UXREs}BY!X4+XKxktY&bY)wxMg+&Z>*4R4UBkS%E>UgRBIdcM
z>c_Rw!;}1bpZMRj+#X5NADpv5MLuepg8#0L>3dXW&;23l&QS3O6#&%<TSQw%G1v!>
zwZ5&RR{pl8|IPmR=SBaIe<0LKoSd9o@?hD3Du7kN(=39$4oA0Tfs8(1NMgoh2SlAC
z{`<H8_v7QAu8O~I)`T9iAWJ8xlUnt08=CXDZ_6-+AT52H>0|hI8LdcHImv|T5*Kx*
zLj-?4-+%i(k;Xq0>1>yllwz~$l#skXFVY$8687+EY{sO7an1ilLHmzS|L1pdMw9@w
z1ftgJpNao^V*YPU&fx23gx~tA|I}>yzEAT!)AL&e`@jEIJVqrxkYFc1s`rCz<M3jq
zTT4^mu`CD2?DZxy9r0rx2E@tl-)n$TY!;Nujdv2YFQb?hQeQ)_!aURB=lNC!M9v6H
z13DZn2YHrPH_spb*Z2JIfAl~7ts_CZq*=(9K1@cykF<$2b!*tp?aJ?+jucU<@0>bz
zIf&vAu^m{9E_T6yFsoX=ft(W20614zd`ojc(y)Zx?%IIwoEm`tT3wz;Nalh6J4sny
z5>OAO26PPv;3+i^jozttS^nF6uZ$?R7Rnb9oz%$;gHFrd{0Y#4NkMwaP4M$8NstB_
z5qzu!gq=ofAHtyO7uxwN6fBCM2w6Dk2q<nJ;y|}GS~6l$JZK8jq1J|A>z)t37z~zp
zNE!c9X3yUcHch`UxU-y~4I6acmv#H-v>1)+=T8At7n3P^&2rQMwG*t@A~3Up9F$zd
zfzEYf&<bGHwO&h^C=D4T2nq_w`$<uXnW|qQGMSGT>;j|+W^=Q2s)mp-c!Z=GbNYI^
zfVfye(-vT2?mO0_ggekK4tlqA6VvE4l~1Qen=g$Dx>%EHJ54hLW2nw0gI*?L(8cov
z-G3u@KEq4Up5`=<?Ut1^0OROsA;;M5c$MKIUy62cH1r+ZR+AGTy9>qU+-J_V6QSE9
zy7WE3p`~is_oe`ldm8HNr;JOPwVe~q5e_Xg-+C_>p4vz(*<M1224qoQSHRFUKjdA5
zcFvU-n5=mK5eq;i+Jk1z%a=(82bze5fh{43lqo~7_%vOJJhQ<nraubWSnJjyS`s1i
z!S1P7{NU3D6I+KaKen7lDK=kTHf1PhT~HET!GjLyxu0-}oY@=keMlh61HzygjB96n
zf&QoLG%Ar!D&bRjX;HPO-UqK2|4?;)*7!BBPeW8p&yNoN@Y<@B(tRs^SI7D$dCv1w
zGkWi1Y$Oa~4i#CCJy5X#b3p{2Cz8&Fk*`+`+mp0e;y~xk=hmDe3D7OwJb(ruX(s5m
zkE*|%zX^_HKdVirkK#j2v*hlXai3R?s}7y!H0u3k!s$Cc<GeOQv81<~+)p31x&&fr
z1701R(#0x<4#s|&^v7T?B`)&XU71#@<@iHz=>zZRi}@Lk44UZ&@Y^$PmTo-qur^ZC
zO0_W)6!O!69D@z8#q$d2Tt)j{A8YrfxT;Z<sfF%Tk{>nA64NvA9vatj`tWSl)h40_
z%0iL#y#%k(nV)|w@4B|}JBYR1)Qr>8^xOwnfHrL%Hd!x##GZC=fLy8GIx4IlEZ}-Q
zkmm(B3!7*ZnfqkiC-^Up3y)FJ$Ka0c5!C0G#gL(_X}D~_Ch4Dcf{o#gTBy{hu|?jb
zXgf;1*=b|J0)cYPaeA@g^&`*^_W(iVU=j<AsDrDxM||ePOayooQPL?gSF4R)iC$mp
z9)9bU$rR_9g#PhGAgu%Ha>Th4Hm8HIwze2Jnd#?LESnBkQnG7b;?jwPe$MxpEsf0t
zoBFL{#9io?j+Nf{Jb>xN07(Mj)2SIwSgyYKIg(Qg&=#~O#(8T(Wx!{$!<*s-{+1a6
zjX&pK{UXOj<&(ki%&IFhQZnMI0wW#D$_P<#`AkEPHov?VU(m|a0m79ZA;_uVN#etS
zU<0ARqtg1mB%A`?Djy2NZ!n=V2WFxE=3+!>J53#HQ5`s5UUvUXcvnS-7y-NOW!qmR
z&XDC>BAf-UkT2TQ=@Va_AaX6cHAMDQF-+Jp{z!$B&wdciOE_*i3=c0s%C%~(t6w<k
z*k7@L-@3@)?yU=X7Sr)!Elxeft26(bVq?a^@?-uVWo}(7<71k_@|z*znp9SnDD`@B
zy?U&M<}x_!(zF)j*QS)>AS;+-v~!aN0cj@F{PY9)8Jn7OD`*d9b-H^Y=5E@n2$HD_
zU@W~2ES=7EE<#I<3TvIMg+&~zs+qLXV*x-n@yn1B%~5p={ZG5*#lr$U%30vk74e5!
zl9m-9%5MY9a={wydZxnrfcavbX85o!Kne(#-MFGvCPKpmKE&cTs4(WB3|uUPQ>!1O
zaf3yRmHwKgO?qk|B~cK{l7PkSm%(W@#MiAngsmB{yV-shxX5-)xOTolIvxPL$O=z~
znQx7_zzs3iP1iLz*SIgQ!%Lr2!Z~kP3aiJ>QeM|Qm%IV;4Iw`E%MP2Pn{a?0U3>M{
z;^i+V!vFJ+auvkl_usyGGkW%_Ym!$d2XPj@hbKjmULnlo1y)|%eLRsz`3Aqs=F<*F
ztIp&4{L1xR?8)hrJ-P25;LT7+H)hb0E8n9#JOb~IKINT?v8B`NL$7}oJ7|_)L4qqg
z-M@PfNzu)!mV+Kpia-m=pCmaY60f3IbDr~wh_rNE23|UnqYlvshQOGug;__ce<QC=
z56EGBp61Jqf%3}df=;!QyS$vodPkVb{uLX(HT!<JJt>p~xqQH$@n#0{cy;qMl}126
z!ol98tWKE*v^H~8=pOhu%CFJeoz}?YnrmiXv;dW7AgFwAr4>0Y(QM6V@t=G3U#(M7
z&u6zf;HtKD8py3tu2V{V`f{9yV=(tee(n<**6{UFQ$ZT`Y-RjYtvV$K+1zx6_kDXC
zf{(j3S7e#;yP~QN_IHxQ-M|YI8BLkxqZqbr!{2e=-%ak@k^qV9x_pS9V3z`p{hM&H
z-82W2kaFCqLO30Ifjo8z<2#9XX&c2@I}HecNcM1ZL&GbLv+M-`3knx?G0QgSh8S;v
zP0k5ETFG3^Y|YYyCSbi|Ri<dK5Cy}%I2FsM9g_QnR~wU50lKO>9y?>2Gc;f+c1N#P
z67I@-(E_ec<2_r~N8C<an7HvMM|&{s?0$uR(=Kb`nA%VZXfz6QRu~sL)V$%oRaIOH
z6nsFE4G_2)a=bZG4!3n;;Tj*b>+qMiK>S+LZv9t9xG(!5_Ox)zGK0o9mWejXvt!2@
z^6d%Ch#%s%9(a3*4q<Va5N6I`WA!cPj1THAAPYN7rZ!ANrlu28*svXR|5V;eD{mX(
zpo&sq2V2E=GCY8y*vUBnnlH?!Jr2D6X~Hg+9IbNuO5#jdXqNBeoJ=cBMEK$kP!nh#
z&4)>gaEx>rcIM~|V`Re{di#ATSd;jyS>55JU~Fqdu{2kYn#SHogkoEzTkk@afpPdO
z-Qi_{fc&8Iy&^rklDeWvXKaBQwCXEtgnAB1hj`_DrKY>tLN&cz=5pos+q>3}s$te3
z&K$hn4dk?uC@JayQ1USLr~vDicU_AodcB-0?*PbP7mj1NRKV%3l@x`s>j*H1lz<yR
z?|*yPMnAh1+J32NTu!yG<xz?Rw>+**McbEUJL^U;z!_0ubk?|deRGVtvrbOQi;nkg
zxo~(617kiX(gj&|G9}-hpI*?V)O=b=t^&@_{G})r>`HEgEtR5Lq)53gt5%ufT{Zeq
zFpG|e1?1Y2{GDpvD#(h-9OB?cG0?ocoKqFh!bOG|@SzV*4{`ne;Ue9=mH4q%H7)Uq
zYr4gJwlMl~$49#$8zms4s8DZA*WA!UsuUV^;cjPOQ+HkSB9>g1?=t9JeF0Tc8d!tG
z;XbH!{n9E!Nhy7DZvHo&-})s2u&Y9snV3+eFeoxhXHsgj+EHiX<&=F?bq$0^`;<Hi
z`y@rmn0n!kwrB|20iBc?xl{ha5I$N9#z`0x)A>}`)eD)sU(tt#ol`lxPIxJ&W_xYJ
zr%Aie*jkZ?og4_heAsulEhCWmrGec{j)|E)kiz4DJ7TlMfy)#kQBQpMV^(_VD=fgt
zkkaFwVoCZXpvCFskiC_5{SVaGY%-*Zlp_KQs3WbAx>k`K;{~67rNFiHa)x|NE!;ik
zIe60}4AN1zthKwJzm`ijY(AS9+6#PVQhOsk$W=@(@;lj8XCPS&1}$2H7a1$t!2;W2
zSuWu3$jRT@Z)o&>nB{Eq*B?|yne)y}(0HI29%XhNicod(e^T_LoXNaqIWqDnYw)9{
zrfxH%iP=J2JH@*1w@5=tw=LOJr$z%stB#IG&5DIe1(k*VtWOv^=)2MFW<|NaYrOrF
zXi4+B(9<@9r%zrE8YYCeVFTEs=o&sK^SR3&*w6KRoj#xJ>IjV3vU3LUPK5FU9n$WI
z#CWHft1#u{l3La-0Zm>F62{V*p~UIh>8x^_AoA#C{XlwTjL*|EXDS^D)fgF<Vh@%{
zO_&Usy9<105xGoHBKd`zdR}ZA;kK@l`TFvIf{@Gc&sJpiBGS}lbW`HPTiZ!8UHOzK
zNHjF5PK()deVJ<-TT{EVg4|&uUEmIOAVp`kcV!ZKD|?u2&epDQ>=tQ-dJ0Y(9!t}%
zOkJ=e!a)PA1}lMT=;TEX^YI3GWo(y>N7iw0wK(^^`{NW_aJ>O0;#73NSCKoQJ=h40
z5t;B=Udvs9wzM>4G*m&xK5=G-Mz)u@KnF7s#_WOH|Hvdzu7|P|+<d(2e(Tf)yZc_&
zSgq+Htv`@3iH4{uyS-O?6e_E?`7@otoU=4=l1H=5F7lz`ymWm%V972VEan4_M*I}l
zRC8%F2AJrb+<}tNS_WP-4{i;eGfST<d0y4~rOkuHB&myAPh?@g<C^xtpYp7~Es+1|
z)^nZ7zAVahYdOU3<iD>_MtTEcN?Ni($nj(k;k<OfAj8c73|l;1)hwSe02##nkAe;e
zS#EO=%uo*upHwV*pdY<Ea8>?!YI1lUqY?fLnaU!~xRrMKT@`{^iIe4Od-@A@dzo*y
z<$-n;-5;oInW5(SfUYv><kP5PF8Iz_^(l3j|K$gW6Yw<CkWt<Pn=Y}KH+$W;xnU54
zz+(-H@7c=CSaY4jM5pYk_U-_$iUgF<xQ13ug^LWJ9AqLn7?$hCUOqQL;zCaG&fSQp
z1bTE1apiA1^H5gSA<7F;=xl+|&kuz}%NPq05)dCdvx*6NeBnqqo6)l}%ZAn4D}$m3
z=nsd82v_!@(;-!*>>;ZWLK^Gkm(OlxI$@9r<|p5H)4HnmT-7pI(mt?euNd*HM#U38
zX^XSi7~-X0j_2hS?dr<`mfI&wv$P$P-70e<=JPHnp(uGrUtRIcKpgC~oGsk@b9LX5
zUo?~I1=95*!?UpWk9{=pFhJ9`#}wM`q?!T61fx|ooZ{=9T6cA;z0&No>FFn3L7lFt
zvQ5;#zf){&?Njf(u@ELVmnoqeT+%Musqk^FdvUW(xW)SO+xYqCr|l~TE1{cph6-;U
zd>?ORsVQe`a#Joe#Us-%r+CsNztlZsiZuY4P(3(6_tDCd?LFt5`=~Ajtx9wnk3b%X
z{vPXOspj$7nCr~=&Hd7rl5mWQ=xqe<7o7Pkwezpb>v7war(ll#z>R2zYWHarg$Iz^
zVwET-ozybaRO8p+n4Z;{&So(Bi&EkWow(wGD(c8nsL-9UtKyN+#9Iyp7Fi1KvX6Z-
zTU?PyPFCL=Td;2wbaU*xlhd-N^4vAP*ZX3)bn(R4aG|Ni{*#jdRrQSgwlQwWpR><T
zkT#GV!WgvpPp6Qx|2evuZ&P+Q$IWtioLQ>ug{s)oUVpHDr3G;+dN6R0&OWKqmb1;E
zPZJ(gSAy{2_qY<M-a|~@*u_GIVVQHvg$kI-3LYM-rysPJ&3qeCk<WW}L!>g3`=$pN
z<=5cpSK!`+86SLj2_3^PEGEe3+3FkZ#f+UCN>xcCW~z7XEVA;t@}w&DmBHVD5|;97
zV!2Y}s*Lv2kE9-A$PcF+*T!Ej04=~bAM8Xa4|{E=9@21&68p`5OV?M?8EnH)xdGFB
zI1|(~Cq{i=Q}3xMZbPl{S^}bYtKRJ&dgopn>twpxKjGt5EKfCmPY={1@@5@IujzM(
z2Bi-Y+THg}c%i}`VDhgv12vaEZML!-oovU*o!+{&CwT$)tx#Wwt?M68Ee%Y~gMbed
zG|#@%rMTdkNzab%l;w>a><t^k<*OB>Rcd3%yZYt6=Pk1TaEFshCcwB}@NoMA4){_7
zlvI6}QW;EyW>;=J#({#&8MO8>oEHyxUv0a9b>W*C_Mvm*^E@6(oDcdv*<bW5`z-d%
z$#*}Q$*mS3BE;ywMCY62#2ArOy3jUA-g$)W5LM35JgMS3QXI(8Zyqtrw&|2M`_8=c
zfifQ5rnL}wik4JT=$@|DaJ5E{bvPm82nS7s0<Hp)mv*dnE+D>K7MQO_%C3%LrrRjt
z9y?crfR_e)ZDfk;rJttess0L3pJ41i9--`kxT~20&9{Hf`QF|9{yYnS6}Tvh`R34K
zDyS1!D+^!=S4jTA2*}->eyW0@SjEUm<rcg?<^e8x<tv2{U-|PFXykDT_4AYlLsEF9
zd?KYf>q19*(=`^l*`F5}a@UilRl#gv?atk^(vQKYUB<u_Gz@R~_9dRiMp%8u=D=_{
z-?B-}{pTJqST59Y_H4yb@8DN_#?aSmj9fz!p#}x-+L1P`ZUurB)+bjMajV_;DJi0z
zI+ZS%(8pXEH{N_Xyw}Wrz;vfSWdglZxw8<cake!yVqV9c>LO;-cq;!kl4<q8>!X7g
zcHVvo<cQTWz*BKq;nCIro%Ft8kQ@;7Tzi2yGr#Lvg(-;#DYnrt1)v+UVQz)!su0n`
z9y8^38MC)E<uy!)OxFV#LwCB;-9LQbmd$&|HH!2<AVrP@%Y{5hOb-|H-u27YT60#9
zDl4mD=&l_@sHoZc`Z^5#iN-csw;`te)6>(+AhYL1=IOu!Y^~1gi1>GqC-jfL5}OuL
zE>b5~p>ON#zmxq?k!^OjVey4CdU|XoGj0WEF`O?jyNyvTGaN)Ut8(;0jZ@gCb)ef!
zN1b)^*f_%>VsCxvs^QrSOh{}S0?-sm#HFO{{VWUOo4w^1fbvO5iTp}Qf{M&u<1k@N
z)_G;*vmKxk!FSAy7%mu6>gc<F0xgea8EO5~_T7crtlO2F&diAZGQ;uL_w@?cZ<($3
zN;!CSOhZ+O&0`Im)y|t|P|Dg-SysLOg!FAHTAghGQqL|cYR+Q>*1jo_vDbIFavWPb
z>(1xrYNmh&AFKh5c%HlX>BpUd-}DZyAazx+d+y2APSgui8Y{oOLfPt5bVqnT?Fu?6
zf|5#I9Z=N*(?{dY5B#0FVK(6GZCRh#HB6GK^%?{#tju)?fUlOnqxHG-x3f`wRZF#<
zC<DpyxXg#gvWws0!&oDz$=<||hx{j>4O-f#P&^P-2_wGw<F2>XH$oDYb%L`Ye^Cvl
z+GI&pM0Cba928+7gh3Q0r+Ek^lIJ#qT{>otl*TERg3&}{`-J8Wg*WX}?K_q))5`3;
z@tIO7PNmvJCoju=AzYm><(6zF;rA^hEW6%~EjF8a*3I0Yt0g0)P8fOVGeiEsI@N+~
z<|=vy5QnJBH$f4TJ6+usD`i$KwmJB97#oHXec?!QOsm$8vaMg|>rJ<DhBC>B>%`5j
z_@^aU+vWP$?W@NprwXuB!gK25$K=iXas4AfH;OcOlA)n5<ssVWHKIXM_^w_%5h5Te
zb0sDC;ktVA9iG$ZmUMupvQx8Mlh^x<xN!rYx!>!{(fnHX_M}0|imiI+z%MIt?M_QF
z2a^$B)Rz?b$1%F5y3ac_)O1H+>VLb9_<-h&wjJAL^Bxz>-9X2EvLNF!&`~29dWJhc
zo#2A)1AF3V6AozY103&CKZYVHH$w?qrhh~8Vf_RM<gN@6E<7bNFS*9FG~a(9rK-gw
z)B`>D7~v-;<BcwCx1oJATk*C*^$i=#iKc4Lg{OQ)1({8H-DEPe<miLVdZn&%2lfso
z&t1XY>b+S{TJ|xNzLDYbA3@~KpqoR&And_=fx+d+F3c!PkDBfoJ<0U$z7(+I#E!p3
zH_AVHJibr?Xqu4=dj0jO&t?7t3MO}r_(!n^qR8SNXteYI#PxWE3Y@YnQ1eBlH^O~4
z=hcTA3S}+6?-HGkI=>}Do1z$n+nG}3YE8<a&i5YXx17eQtNW1*`CKSh$0|riOKGPW
zRk}S?#3=i)v;+|Qs<gF6=X^X$#Ym>cZ&uhF%vBy07ENvFzPoCU%1R^fsJ@&q{BDA{
z3<O#q(Td$V-2EW73Yy*+$sI&@Ysq+J@xZ%qDQT$Nfe858NYo{#j>VDfvf^zL-ihT2
zHSc8+=9}r2dZc$;gTJ?MIaGZ92|dAs$`h`|<c32aSsgJ&Sg#!ran3I5RapkXb#e+t
zPrr}U7@Q_d^n~tUb2_ls%+-mPx<_l}yTfgw1?+?`yG`QiX~daBDO2?(i#y<y*@GRj
zi@V2#pw)cNZm`qT{=zt9+Uz7EABTTjkuY2AWPP$9#EXNJHToN+wM}gT<zqal7|HjE
z>$+cy7x0L2q3zInb`2Vb0c-hDRqi!p;@BMIP9v9}Z)Ufej8uEuw{lO35Z9&XVxam=
z>WaUp{gM8DuqWSXYL}nF4sNFWh^BK8{Dc=uI_yH3`~$gsysSz_j+%W*@MyD1yu}Dz
zN}P9KY})bQ+F`JF-|!CnS&H4qwLv>Q-!mh;4RIz<%g%DIb@VKKrdb5%YwIch9Ds%v
zOUA_OhYp|S``*N&l0E0A#jF)oX+Q&$&OWnt)H5-}W@dI3bu-_Rc=lKm^>^0$tsDX_
z)y$(U-tuAc%b)lN_t<b6X|b;!*~*<hLf9tC6AOWpESgf6e(gXM=@*<%w~2RO1*Mr*
z{o3dBsZ2%wG?v60E*`R9j4Gc<GE-GveJIEF5qEIu1?A(HqCHLbAIIjDGgwZc#!W#3
zla44n`JYZF>J3$F1>4=<_#^X$*d=QbgM&Rir%j*RKBhn|&|KFz{Rc?FZ}Qh30N4o;
zqi=d<<foyhVPc6jrz^LIEBtZ3mYTgQLx((gT!f@Qfnr0Y+G%+*la1AR`C+U^jr0(<
zt`yAi7ie<enHRu;W!QO(x%^<C$kQ=D7(oaNJ7K(b`GpQ=hr77MYPNgOYZ}3!J^icl
zI=y*_nShiA2k@S`4TmRl4Kf}P{XcJB54{K9VSU?Gmp%+(WWePkb7O0(<w|tm!lU>7
z`-8ai`l1FteZlb#gc70R;2^3qlp&cscZPc5+Q4~MH4b&ck^*|SOq+stS|7vLBq5t+
zZHaY4e_`^rpZQLgbod+fPZ@=GPkEpP@>6HEm}o~vq5ino8EnVwblwmo<7D-Z@zT`>
zR=Q+<Z3@gDeznm{d_-8O3*NBI8n@Ty%}@%AX4(VHVurdQj-R6ALr%N8nWtgA*yM*t
zc$P*1qf6F;gcIvE9u$@2<7<l_;ro1V78jPyWG@q;Wv`Yn_=-wH=WsXWxmAt*?;oFQ
zS=*ZhutfxI0Y?9NzAptC?A}Q7yYAb5#7nKY22+vaE1AIVk-2~+qOy}q-Dh}38HnT<
zAU>K(l`z#Ech7S{wWF_%XZ9LaF42=8@fWxoE>>|T53|%>8Q<d?O*7>&l~YOM^dr%W
zI-H>);uTk%n6*zTdhW;DZjwLp>>(=w98}CJyRIH8UKRHF%=wBxe5`Y0z$Mb^oojMV
zpjX{sWx(naKqhlBMDYSTiM3yW@;Yr)S`tv~zP}RBIO0wh!mPn=u*vN;>r)!QidX&e
zUY2HK^cnlcnk~mv57c-rKXz74?)|FP8={_NNB@$Enib#blrfmMk`Y)9JAP$VZ~CXd
z6jyO>0*}3Rqc66mdcH^CRyOr`UJUu$I~Gpkm-U<!@8cO#quoJ^uURP&OD6l6$};)o
zP!G}YQ|_gT%d{igFbx#N6+4j-fw(2y`A;KBXKs1Gr@A3_U!rFM2|!%=Dy6IX4gRom
zIk#0L?I{Px{#)~qxS<hr*+ku9G-0>d6L-s%2gCD>h3K)Uai+6mFT&Fm+d6fsZWP>4
zALs4EMV)t-%3ntJYpAcKmUoe5T@Gp^q|XjlF~OvTSqf<@F_2!@sjOIedQG+oFb}Pw
zg1Z1(9k#}8hrHCm(_dLa{Ph<BRj5o`gfP^b{rfK7khxu!a|(n4O-2kS);#_BjGMv1
zW|Z)Y4IR_h+-pUFF{|@Do3m|5=-ewTApWj9ZSMPHUWs~7hcHvzAD?t*Ye~mB-hNW$
zwg+^kk1)e-Xu}#9I5^<Fy~kL1fnk51m`omYnA7JK{fxl(XNNT_paN+X?ne|6wXevK
z7%bk!LHKIR%yyu>6|JP_Z>p=I^2GW4!wY~NMFq>tqeR_yv+7_+P(h0rJK?XHSX+uJ
zkT78Lc$E22lPxEBnL0Zn5kcJ$_nqj7J~M@K#K{7|6hVPsyi#_J-&Z6RnuemW?>jAi
z+$K`QnX7ZOR+AjW*xOtPR$<0o@zc}RAc9;w+xpbOcsC}&MEr_!`Xh!8>m3+T5;bwM
zdu?2WvBt$Yj8m!YR6)a&it(um2nN^qz8_!TJrA2^z~$~su)j;!oXYD1gDURPm>i6p
zpdg)kgp_(Nf=qD#5o#;$Q;xHo9|MZ2e5^B&J+NO}GfQ7a%C1#0OTCjj+#JGdR(9uM
zU|dBTlfr8mmct(ZV>9@{1GBT7d7)QCeA*_61-fiFroe}osGHICrcf%Sie2m*Hl4}=
z@7-T&CXY<wA8`p&q=Or19fdwC)AW+h_!sYqWR+GUvy+4N#cyOqYbtyGxEFPyX7bqw
z&bFT>8JE5%vHU02REX>{<T*co%vfO5c4{;)ICrxQP!t&{a*daEAIUduca-}}=+w_u
zG3XnnRv0`9S1+=Wldhhx&Ohl+oH<cfCQ_@g0TVYAU5e)@3Di(ux<lAY$KQOokIfEg
zcSn*!WCH1|4jOxI*3UUUyoa9PwqF{p%Z`L`aoM5V2?~v*v6vnJd!p>tAY!^_yz%Q4
zuqm^g6I-Wj|IfU540i{$^W04x1E_$b$WxlG6u{UCqIZaotYSBD<1lg6n@V@#<_L9E
zp7id&PPTPrDb4Fwv{f??;_KyzjL*1w^S^BN(WuyGSPeJX?YAs%A)X2A+7G7H=%Ybq
z#Ua{^XMz8b1<|QXKWbM@S#>kk(W+iKm3!UvirFP1KiawKoFv;|jZrVV&DC{E%+3x3
z@-4qwiMhU%S3%|u>YrB5;vV`M$-VJ!%d>nxSAv*T^nL(DwsVbAq9l8dF`CmTVCBpr
zDp+va^H;(wQp_|z+R6Q(K85X$dw6D%KL?v1!0WT4#8f3+ZF<1r^{IUenRjM7uA<J)
z_QU%R06d&SHdcQ|(T8{WU0SM0$NJZHq)0~CPhnfzKnAsyEk$69=llNGQSoQ>aUlSM
zMlO3kB>i(Cc@ZW@gSBBBJqP~Q<f6U=Yh2PjiZcuyhgBd6e$Zdj+JeJd``P@IA8CIG
z?QeOggbBgun&)+T0SN<L**G|VWEA~(2j2>%+jKtfwQ5l%L&n9?doos`=_X3Y|M$2!
z{dm|HcJpOT*0wed47JQBdfHVa$b<%+*fh?jOeg1EUf_-6K@~a$esq&Yj4U+Xcd=Nb
zWu!*saUG1pHkpki1zfJ)mzfylO9)dqe8eWQ__~gsI7e!LS!@&jq(g?;3^Q8Jeb_T6
zD#H_AQPS5POld_tXs8{tFowDL9#AO}AMBt|u;B9dxhxPT3q<AUy2TTrR_kF(JOP>m
zK~)vLn}uG#TsY9<vD!(tR@!f~Tq$Av+s5Y=gKC>>#}X&Vv!w2OwH?ODZZLXO)S@|B
z*sf)-qYM8RX>S2lWxMA8Bcg)TmhMudOGLUslx~pj?sC&5Eg;e$-QC?C5+dE5Te|yq
zbKaTx&zU(h=gj)A#d;U`im;#kJokNH*Y*8=zA;ngiA<53P|sq&uJLA###ehW<9P}_
z#$tY)N%o5R7=Jb0=-}%;w?9b&v}ipJolLqJQ@L{Tu};x*K83?{Jq*PFe&QF&4`JDo
ziD2eE<$|GS{;z5HUP%a$@B{V<FE4LeYPNWEl8}n?ZD%m4_n6(dkEmte6pbC)8)WKo
z!;XHP%(0W5YQx)dGARUj(I79L+3pH(OL19u|IUh{RqAg%UxzwIQwgTy-kxob_DFN@
zzP$!|)}&sJ8#{^gvj&Og&PEK&9j%vTrH#rD8HH9!N8gBKZW3mz9uAzZXrm|h!I<;C
z^ZnV%Z-Z+-pd<6m#~6Ib=M?19dNnaxS;7kZwxp;+LBUm~(m!LmS|&c~Fz8yVZbqrt
zACa{CBHd!gbAPt_7X2p#UeH(L{n0VcH=P0QhObFlQ=^TI;XSOw0@n{F7U{Uc)v1uV
z3N9INBf}cKdSL8KM<+zMI62pRj(i_K<meZG<{sZHu!<*c;0%wYOpF2PIJ8U7*~S0C
zCN8yECB(0#`jx~gYLqiz_Ah~~_uPwvVZ!=Y(^0k=r2Lm!MYrxEB*jUsTq93-J`3YY
z7O2WhJYl8H_*cXdUGZKBZx^_;M07D<O9nP*1Q|Di9{*1<q>vZh^5oVdv+PB5mC*nt
zqtKd?pq%$>qpcOv8|KA>(NpmUVZ6+80hqyHztVic6E=kXu@nke9Q9HZADyK<9#Ycp
zZZ6BDJ~y0%vM-nj`=i*V%LGB!%4S`6V>b6edw6&O$cQwG3P7v=A!A()pqAj#o9cF`
zvm+Ln`hf~DYgR8`gtAFxHFw}cyX$G_;JGQ2)zNlgdt*YR$o`=PILsfGAG0w%c=UT$
z4x>E=LO|pB!4Nmg7Tm<c|M|}pOK#$a+~VgLEWlcHDLCI4)|=rVEeUUH9h7{j2*6bX
zU*OGc2{~+1^_RNFnuiVAfgwMhFYhl5_B7_NCfOA;Pnj_Zj)jaWt>=m!!6m7Qn|nqs
ziT&0MvvcuG|7<q{ZGG7j#18_iMZhD>mq3H!3jOiMP(0i2jgu$*?7JdV9JzAIIx?+a
z5mEBoJ!r#ushe$32=#}D;HL5iWD^*h|7je$DqAP70iENsPD~jDAp`AdZhrt}s{&Qf
z?5k`L>ZCM=v1Y3VKM8&aXGyS}-}I|B({rG_U~Qsa<5iS+^-As-NS7=wkLFz0V<B^i
zJn%n}KQ~G_z9I_MjI~aT)s_39pjBAHJoI?Gx3O!sr2lw@wQJp-bHYgsHDTi0cq3+X
z7KnTSxgLc;lj)sfHa;Fgxl&=bK2##xX-9$jw`rK4i~v*L)<TYX4W^>l?|uc1MAsdp
zMIvO+{(=8hq4V!*Ux8%^Vn|jZNIJH`&^@d|uv0yJS!y_6t|LeJQyB^HU}&P7?f(?P
z?3se;x13o?5S*d~rk0b7>mG8thykndbwt%Uo-1gC?d~x9Eok{XP+Ddzk3439SB)D;
zWh_A<?PNcyf<45sisA}F93zuqez;mDS`LM-V?bAC2o8;?Ga<_$g~=C?8o}*luP0v>
z@#_{8*u5W*-SX72z!HGW(0eQ(^oBV6LA99{)?n};b`(@Xy2hLaled&y>fXsi{9&+A
zU6*i30xVopW!m9G_>$I6AiERjGOZZS%83yh0u_vtA<$%00|<ce&MJ^tewJKy68OvJ
zibeZq{yH;d0@?I=bj;;uZmTaF1x#pO2IYZk`OhvU)+2a;4?{Gv1$=-+9?WhvP;3A%
zs1c(&$#akuL!|EKz(Q8)d@IeOmv@rySDpUdl>5nq`WrB?n+eld5~4f+imYj2bY24t
z#h-MA4=4a-AUGFFQqe+ZL?2D@xXJ@I=~;htQW6KxhjHJb&8vuso))rK5x-i!A7^xq
zn>|oe0~$W!F#&x?b~)h8^7VrIMias`@IfwKfk(@^FN<u*_wsnNfhLwtWyr3aBq{dJ
znffL=eCpKLaR4d@@NeAvfKt~NSkZAB85H2R3~0(yQ?Eu60ABS)r85}Gy$LE99UVQ^
z)YujEY7_aZD<&Y1;IN3~nI@pUfvByZw1F`3@$^0AKfh!T%Df+59tN7FI^OD8jjF)%
z$}}4M3<YngQ9Vxwq?pC`_feA|R9mXz)4wX}MiX@Z_98fQ+{CJiOVcE)-w?+ohCbSA
z{G7jomW^wQ;+fRH8^BKz1~pHHch#lTrRf_EC8A4AT^;LtSBjb5EQ()~n2oESS4NG!
z;lz)rhfGnzgMLSF6X-WQBo%R5`z#MRglaXrZH7G6`h{Oy(a_0My98e&U33b#Ps495
zohME=MA!Kk9(|KM&l72viI(tUAa|KsBffYT+!~8^ovwVV0X)=UF<%=%t*v&1g_+9%
zzQjY|gJ694Ta#a{59>D}n_1Lx^6v359sK~OVGmu6Ib-3m&e2+*RX>-LKN>N?=c@-&
z(QM63%kru<5C#=Di*&gt2Ume;^mgZ<Ft92+d&P_wei{XKhh`w}b06mchBpn9JGbx8
z%$@tfs|c-X+bXl6I39gzLVnNV^KSs8a3Csn5+5jMRN5J<JRj2KAD~?ATv!ix_mlz>
zv}C+K2Bwu-DFWE+45H{MR}SJHiF}`4R0B!xm&kw3r-Fq950p#D8zbQPk3^K_uZ{uq
zpa-@bkU}`EUmdbVTu=k{rj^9sCLJ*?jjB15)BJl}zw_CvVsJytT>{W5Zy9f?kA&S$
ztoK8u@y$-dNi0I|-_4o*@ibB-1>W!I(Q~uibV8Mzjf(GR6$C9Hh#}E_Uig{F#6fX%
zkvxC?q8jl~O*d~!=~d5yX{dA~fBshlgri6=kr)hCF!-7zaX*m*QG^8zPbc%0ep&(J
z_AIC*=MR8#CZOn3#cTeY?<MZ{fFEp?r1o%$b{mg}Sdl2#*;KV`0TF6X=LWQAr~>KA
z^}2$|+`*xL7G&L9fYJr!C|f3FZw2GoLub)xOinDmx!GnXFJ}fQ@^!#L2yv(TeY>`u
z$y90D1EB9UxufdAL*o6j+XpJZ{qTZwtC(D+=M6a#jetp-AJAf|%F>q*H>4lU2;NUY
zWaSitRZFjF-zjEN2Wm#WrWFl7SwL#?CxJ)6xY)NIn*Ou9OZhprL1OvbjW01NDLyIw
zc5h&A{fvD$f4Cc92=d=K>@R38fMTEWPj}S-D5<nWRm1EHr0x!$Z}`}o6MY3yl0+(O
zC}})Ad5cc7mhwP|-ImD9cXy%R*3{j^>wJ`H0qj?eJZ@CKlLZ_}{c{N}mp>8<Efz|~
z`gw%7FrTr!mc`j)`ZBp(3P6g9T`R66oy#T<`jX=A<tMlrI@z<20W|wf#smMj3i`;h
zdF{Id!XlL|>hhbWR)ll-<0pIJN(W)kfi%2(aDIt+iaLi}-9AndBLV+P0RA%6YeGt$
zZ49x4toHqsANo7u_(eu$V513XDJs!KQc0qZMfl+LFMN<$LjW$s?*<%I?ZBXtc327Y
zZyIze2s`-?5<b$^BA}HdQmm^vM#g<t%9LF;;Y_scU)2jy={rIE#PNFJKu=Rznt0ZH
zgGM<o3qP#nxAOPcFxK!2Ze08jEQXiVxK7Y{gDUhj8Rb*4*xXls86ojq*d=q~(j+rx
zBt0sY=Kdi{*^k*UpFY;5Isi8hqDaRKxBdOyZPU(|t#zO{JqaF`c>$JhYzqjlkgN-U
z{p1dMp!Vv2Hsb))8fOqxrKlVz4Z3sW>q-xkAKE=I%Z~x-a_WE(i1Mso(ZNgzlxnuZ
zI2>athFVT22|c`ds`>Uz9UlmhxSlNJVPaxNZ(7b#1%51>My0T;WW$J2w>%0^VV+D;
zUnOH;kRrpn19#?=g&`mVqW~wzl9|FuZx+On%5g9s%0igl3TK9X={9168i_4Bl!Mua
zN)oy*Gs5jz8T$Sy5)zVh&IUDFy4}|f(2LFILl<O!SFl}X7Ag$wkD{>yU97w=3|m`U
zJ206oklOSOurDol{XV(PIlX$FKT&Hs@$uuwBLF_n*8@YrtPMF$u>dsUu^$=XbySZq
z$h__2;T%TeG7dj&+SQH0lXvQNd?v(O$$)raaL-YgU&r!F9=LoLBRmQQ89py%s_9A&
zbh-bv`=SNY>(>+ifShKOc3$Y)G3TPoB^C(DBPz)_olql=c7!Eewb^ObJ=gs3GWJ!X
z--Vau&q>wzyCfOqijwdrynW3*A{A&{$ClHoB6&K;1Ls(c<HWfmlV7{yhAQgbQZ?8|
zFg3r=-ux*H%idAAT`*SioLRQCGgu|fFI1puSo`HNd~{BaM{dGyao#eShIX;}gM2AG
ztdmO&gu!!{A1Z~FTu@5H^n%KiiQDPVK|+q)BAC*zgH<W=2{I1H1g=SD)%*l(WPNM+
zx%Te(rO!0L<*9>4Jmm~#QPo#WD(T#}Yh{EYKfy^W5+sJOeyqWK@iUf5CEW}vSpCqv
zTL&a|_Kc)rWD+-W>Z%x1)KvpFv^x+jC;r0#=gfKu*cXmK*QF0MjCj76>st<5l*r_4
zyRJo%6u;Z%8hL82TGL0W#Z}_I-%0A+&Vu$MZhF>NA2B|~?daoloqdkVn|^_NpB%eD
z=iM{Fy!Z)Fu+dA43I4Fol`7EGoBvu}@kPaD%=O|xH@rCj6XZ*+mC3daNoglGNmjgh
znR>j{#I_5Lkl*}}aTA;!2)dVnF5;ysed?gvvnwu<ap37V<ibV9FRgu)?ikmk<!-?s
zGnsbI6}|w2{sFQ!>`NebAnqaiJz1n~ydVrE>;aKiNZ;U)zIi3WiH!Y{(vKkA&?Q=}
z5Dm%?g=XsRF&H%FFVVktXdG%Yd%*aUY;d5kuqmrdqb{T!2M3sFTXy!-HVDjl5OeZ6
z)veg6Aq+p<r2p~ZU5Yu?<f=Xe(|H1xu)q7TVZ{7}K2+rTrEFO+eBtF+)Z{0oPh#Pc
zCk1sdXgVH?Oo2AoOC`hR+#C?)1t0Et0FUUaY6$cdVekcRwt^N00tnAVv14$WVm?IC
zy(deRzRHSSy_6FT?u#GI8#3*#gSe*fuF~@j?#$I|wnSl!bBSLC377x5MGIRu#to`|
zrtX=ROQDyG*2weOScPizBUu!}l3)!8Dkyh8HuA1n@-bs!Vfmda_wtnZL1oV;8hHi_
z$kB#s^Emy96F@Ozk9siQQbPSqW<CyB@{5t0%d|sCDXFMnCMCRkFL=~eueX6k2O)iQ
zu6oWSvZc{SH&T5SZqe6lvY6rU@X&1JF%I7npRw_U)+YeX9%mx^(S32c$)m~m#cHcY
zhoFzouS^lBcTPQV5Y|i@TKvts@w(%{&&=RpusNtH6gUQFdg<E|=+-atlKtGcmlV@6
z0<%Lm4_6st3J<*&1N(OtfJg11BE+?j7fuM7S3a}7KrQ|Sl(xew9q1(lWoo%kCa4J)
z(!fHvvTlPMx9g}DUPWcuRFf?#4kzth70uQ0pWig+Xt*a6&Zk4An*aGv!RJr>;7Ar)
z3&EQy_$~DuQ9q-#K6TD{6PDUK6OXL_k?c1@zJtem+R7$vq|DgH`Sz)lun(BedpadT
zsBrS@od#XRoQ7{XC{D{U{?pC#x4Vcs7r;{X0N_%wKv`;KWkr&O4d+xx4&TGtx0PVy
z_ak$I+E#%=lou76y??N9i{BxrS!o>>6Pq-|r~C_h;a~eD*(QS1@SQ;ayB5voVz`k<
zMSD?A$YL9fvi#z?zxEzQ)7@SOP9F~&d;Dml|1U2bd^!E%R~T~T%g2qJk4OsBa{PM<
z{B5w%N=?%oot|vI<!wQXS(dv7_JRKG^&_|c`ttt2N98}BnZG{qc9SGqRm}erclN#B
zM?C53!}1h{ZcD<}3ihkA)%!e`YDpJm=V3J0tiu1c=MTMr2R%8}qAz0*1;Rv}Pmdpo
zOflYgKj)Tzy8K4V_`wQTC7Qn=u;Y!$(}LLcxQ=my^1uA_|M^SAAFX%M{NffumbP8d
zF;l<UUOAp0wIU-eeT{p=w$^&Izoyu4#aV9Z0%!b&?r%#ASY7_(LqHjUtk6FzCx`CY
zxN^z(FNIY+SKK$E@;aecIuK@I3m|eacSLD(w8Ecx)S+cvH;yy$x5LkWzv}<sPrjWa
z{)sy@>LiFR-z9B(|MI`R2t<ZQyKw|UW(?I6x|wZDBQt&<5bQb%^^9D;4ux{Ja((=7
zm-1iQIRE;tr8%<HCPnoUW#j@)#@OvPuIKRPNjifA%>U`-|HpOszkGuA3SN1045A^d
zit3xJW}dJ4!Rwj1$XW~)%m;y&Uqd2f!ZK4&k1|g-Prf&y!D2+{lbOZafB8Q9Zx;#N
zk-Y^7sqsU-y|ROJ@|l6tlDm}zKIS!RGau4xXVw%_AFF81Qf9WBp%z@Wr0@2%+@)vK
z{@tqokN(a7@kR%K*_%fgj=~JjVH9j@%FClUGKspKf?h=k69;;sQYo2s$1>h8;fBX&
z%ulg|5u1!Bi@#~S?DuOWFjRS4EgMbvy}JzZ|LgSvpa31};9C@}Lh@XHT=T$uN1hdp
z-dy(RM9=5+-oZi9V^s|5mCTtGTUpfB=Ztmj2VwK+N`&!^AzFpV7E~*K5&!i46kvQo
ztyXEmI6h$Z5AL$mB@7P0#A$2d2%wXYkx{8Pg_ioa&eR9A67=-@vSH|Q2)rs<!uYjN
zKpu!zWeSSbFxgnrydw+@j7;^K;%+DhU51z^LjXGIknMP^*32giOuBy1=rLUBq~T-?
zf3imMXyNCazP7BH)$hy*KswdX9GWUy9e-BYTwSbbjUD@w5{!tVMMGk?wgUGuGBUE1
z3UGb{BQT9pe&(NrCb8zr4epY6Z>{D&*f7M+0%FHn2-Ew#CY5d;ypg(NQTaMM%IOx*
z7RlrrR}u@|wZtggjdz~cTA5p^_h3hr2bRE>U^6X;9?HkFnOEoEmH%XnKqH>%Tl5@`
z*d8^0pZ~Ei;9p*@|83DmKv+sr3&~HL{GD8|Tu1<KZh_eFEn;N{0vTQvRV-XP(`x!W
zSzKC$Whkr@T3@-uWfAR{x8%CF{Tj576|)u{CwJdiOi^(bZ<qh%k_f_}TwCjV`@GOz
zlJzt4QqzFu-IKI4@H<NUjIr`Q1;SGb5G}P~2s|m5w7>*5t?@#&r@On~>(OxDr8s*&
z(8g-P!+@IM17J7hR^+;CXlOLQPz98os-0+(zCJ8fSYq6)ePWBdObz?oH8^I7FE%%g
z!L%JTAzt7Y^iySDm=YBQ#c*i3%`ye26TLkV>}D?VpWa!2{}<Mz;32XdoNOXvYWzjS
zio!NUqZ++l2t~C+iLo8Z>rnz-A~mfp!+Qrvh4wSujkb56D)77U(!mY9M&S+eN<Pvm
ziARCtoBmksu%WJ)AB0Mu_dQYqYOj8!b(DkX-|&zC#5vmHZkQk%36B9i8RvEcQwfPc
zqgLjJ7vqh<YO^tJ<Wg0j-*fi6Sd$R@e%e^u1@XA)&1MIp=atqgCRka|-7uEQ>h)o>
zdtbTJ?v-a^E7P-xM%==X|J(a7Bn20imzL!J>B$5{S(px9s_IC`($SK5=Y46TeMsx?
zF68xKam`H8f_HD6Cz&pfR>Z<?#6eR!UzyD9_O#Z`8P(z~5*8Lb5Cea|xLEm~oGj?=
zh+t&~T;qdkSLdW;;9+73cWk9CCgHzxjc3u1k?zO620^71hHsrl(z`Cx2TcrsqdQBh
zsXo66)Fsq_T@GGirWKAdIS40FREkY-(Ev2IC#OjQlb%bhf|rLqDS-6obacLGztyDX
zyPW)gd&Ngcj}Y^8#YHSlM0M0mLOCoroR-l=CxT_X??xM|)D^28M%qiYjs3)}tfzHL
zs8O(qIBWzKT&-2{#El{zw##odNLWl-l5CLVf~3yz50a9Fxkn&_q%-UC0V-=!?KxkM
zdRcV&q`K+ur0IjETag;uV7_vR)+%}N1kz~sE#;KSKiGBu%d!6Nzr2hDWyOp>8;@E?
zX~6l;$%z9E*imW^p1r8_kx141f-vmrwEMlO`>8kEPNyw3JtLzs!0j73XvJF0)qVu)
zjF6l~Sbu9=o@$v7&_T>HUZ0cp$~mX;;QIpXbH9APqUm&_a|IEn-P@=x<4-uXip3fq
z`(v4?`ueU7H-|LCRw@gh=V`YTcXoC4<tv%5ootVOG90v30}6;NFbL`={IfBrKBgB*
zgqtAsXrkHvWJ|7Vt1~Ea`p0@a3VH!5;e^V$)AbqgP8C8jrw?~<SXd13f#qRyfawVG
zl!R55c#ybPi0#hUK3RI9d{%iUSQ3C(R*BSGmR-^REaN_!MnNq)l<PouGyK!OM5;a)
zIl16?NWIhE+%|OguCk2=eS?1v^Q#}Y4}bPWdY@wFyr~EgZaFdZLvCncT2ea|XVi9X
zd;8<~QS;hZuAJr|?v_0W06QATVkL3M0>L?H^gXEk#ad1IEa5R2Us<3GXq_votEl0l
zjt0ZYO=e$bhf&W}OV2iSHu2qJ#tJ{pA8cq0Y`Lln&y?))oY*S6%WNW@lPrc*Jyb3_
zVP^oSfiW-(#v*9fn`&VM{gMA*zxrR!NlQfJaPtHwM9jNo1Vj00K|+m3I-!qW>1AL`
z!ee93lVrt;wz@h}BMH5_^t_)Gt|XI=ZTh^=htGF|T(?`Di26uflk&Uk$q1EWIZ#iK
z31g|qhmrC#%J824z_&(iyxNhFPZwz<;*Oym<{4d-+?l(is9TRA96vl*erd4%+t7#r
z9`fUK%eDn<R=xTIIz)nA>=si!kAjNG7eMHkG3D#m@5hg4ts}wS*hk`c<?6+91L*W0
zB43B{&N!`fA^{uqk0?gXemhHTyvb?}?D>2pWYGV2Rl1n9_WTAmtNhYa8PFSCPj=mt
zmjmm2=s+^>WJ2NVsJ;2NtTeItxGzhTXFyGHiczm+KNxKX20!_BOKcDQHYFh!UR*#r
zoV5d7NW{*9(!1Md7bp4GE%!}Xd#If`?pG%Ymlao|nIB(nPwYwug)><h39FOukg(`Q
zq2Rv}2zs~NcYe9~EWz0hqct<+dbCvcG5ULI%;Zt9y7faADV>!Lhqz0SzjR!mQ4%_L
z;~DbgUKO*gf--b{RHo%XLMMN?A|}Km#BNs~mBRTe8{&GAa<zpI3c-m_un(?&DZrRE
zU3&ZSeQC}_b^ik(E^lTug~amQU0nR>HEKV+55Jpvc?Y5@-t^m*JQsp*@9=LbI1(_K
zE0|OuxujFfB}3<fmZ)5h6oZa1!L4<zOc_+V`veS|sDPzBt)744sqS8zsuO|4gxe=S
zaOBWExo<!%gW`u<)Z&tQTm((3Lcyg5LhTq@rf#oD2;uDmz=U>qHT+yo`)R^EOL~xK
zFrR@&Z!*$2!mjOhNO`&B`<ds8K_r(8okM+7=j7C8;2CIxDC`z07v+x_ef7m4vGi%Z
z0_gVBKH?M_Jc-g!Le`!cpm3&vn5|04?Jo@D*=w?!j-<znO~;A#gx?Ep3~Q$j)!dbZ
zQ4TC>HY^y?Q`ih|LsVN%eis;>3G@iv-wi`g%{xsA-)<SQv2W>@q8lZTZ0e)ia$G5Z
z0;X`p?!+YcE5T{BPIH-BX$tw>8LzqKGRkT*P`i7~1{6O_k-M@t10vK7jnj?9lKf#r
zsLTGMr`M2`+h*?{iHke$)#up#t|ydV^UfFVKQO?v$Qb-DPuxHJUu5YBORW&;*JV9V
ziSbdcL@A5kIdI59-Y>(s5+JQbJ?xK4FBsIEgQMUXa4E`+leb}%^unAFI^OF)3fZa(
z$aapza&miJ@N#nT@KQ<H=Xen2B$XcX{X&jvf5)p)ne#IY=7wV&WvxW;E^vCA43PRh
z91QMYCHR6N1#*i3t!OYd-znVd2Zj3XE!^@&`|HOgqd+F;{~U5m7#ZpgmW%?3h@s6P
zR?<t<^K3z17jc8^;~id}@8-acUx2|ev%j7$D&c@r_orN9pp@-by`#jj3sAxvOWC0a
zi=YVRDQSd$%_W>XxH-O+d@Vh>qnb+^0Tu-@0=6TpRM;pPh386;Sk$>Oan5-?Dv&ou
zgTd{9ghr?v#8O`pL9bpT@H$E42X%o)UAd2INPUq}(`OKK{tcOlXAw(9{h0i#xxefJ
zWAS@}FQdd<l?pzxMCKLY62#%|X+nEt1*>FFcPC52S2es{)hdio9o^#;e$Y>`xC1(6
zujie89?eu$45}6+O53K*dBUWnLuWi^7*lJ-3=1y&*OtTt%U39@thpwzCSml43GZ-%
zN<h-kh-vfLass+6>6e>YV{oK6Nq~_hKm8oIn^Y*3sBCny(iLwXV&rw_Qx5L%J*9UW
zBf#~gz_7!De94~b43H?2K^0ZCGs#SGWvR19OcJECqrOST4$gS4fQmE>UbzFk_|9}i
zz*XVsW!dCpcxe-Fpf9Jp|3yEH@A3N89m=G$P~C7b?}P&{`t&Ak(lhsMFw~c~t`nFt
zi`!4}<g?d}W((E*Kh|2_y)V4>p3IoSvQJ6H4T}6oT}bP)%d$VbFj<&ka9XIC9Ywax
z+(FMKLHtOr><i}p_*%la&pWFRa;MAmxhZ)HRm+5!MW4A3-QQ||2E40sF4AOq)>%b$
zwHm9eFN=5@=sY$hu>qQ{S>Tc}i&zZDCl};M#=ma4IV#{yT<ke0MT%fR@g-i!8{rEK
z1Q~R6;Qap`bQiBQwaD=I8}_a8)T)BHo@i+q4<@_>BXYUj?Xhh)%7druP!WKxiwF}H
zwt335^fR_33Vdgt`Bas8c&j>q<!k46h8=vrn*Yr2lH>_6DG9b<-p<k??L9T6DqK7B
z6HA7K2P(TUl*9xuFmLyCCDxlNE0?#q$IiAg&=cX8BB@3V+TcHXKJ4Cd#_E&_qKn?O
zm<v7%^74%dsXdPydxny(!;d_IT|;0!H=50EoE^Tl$e$Xad6RXYL{pjC<>kZr`0oc|
zftHJwsRzP`OQ$S}6gX1s{WyRFCxe&1M7u@M87?4pwn%+G*?)wI+3I8ynS)8AR@K?n
zda}4`WI<Wn0JWqa((Q3wG6_o)UX(x88-d%y=PLwCSa&7<jmMUdF(IPjCX5c&KaI}F
zC?(slEa&6w_lwp!8!t3oe#rsq7sZtPv$il(Xno7t_Yfugy~FB(+MJLvD4-QqVMM<y
zGoMs{qV-FqNUiAT>iXF^hCeKxb(8d?_>9Gwj0PRT6kt4!8mw5?NnZlLD}!~@X|njv
z{I#uP$r6M6iAjx$?L02nW-Tex_eWMAv6Zx5U%2kOrw(<9Gg>bHK$q=7Wp`k?9vz7H
zq?1{O4C~Wte4ZbtEfNjc=tr)wYOo?~yza0WUMgC!+R9P&@`efWcX4#h`FVVSW@gBM
z0kRIK-CFLggFSisLX)fEba}M@=6TYFDw-2L3gKB0`D-R}$Vtb~cNPP2WoA|)cqHXj
zetOA*_w7bWIiRl9r~hJN?Y0-AtY-!_+*|b25g<8sBrJ0EyiPv-VdD?>6Rjmjl10{f
zhr0Jlezu_=PdjQ4CV#0M)WujdK7k9#0m!q={-$Mr7{bD0SuFx`h@1QCD|Phaf8JC0
z`^pbN8g2&7<V)&HA1m}87hzMxjwlJ4z{qcMV)<BiG&Trlf1bCrs!htJ$!Dcrg7LX<
z<u{aeQ094PBB9EWAtXRX(D2{LE<NIskBL*2b1r`GZZZlO*Sf()Wb^=U*5|Kt^=Z8b
zV}%A<e0#mm88+zKqY15_(2}N-ypVb=b2raY(h{Mfc}mI(+Zxf2mQ@x5=OUG$L;!@%
z%Mhv#fGE29`E9u^wZ^W4u}8k!Tmd*~^`{ClQ48Ylkb*-OICT<w_3czmE=0{YoKHm>
zOcu|Jd!d9^)oy}X?65cE`Z+>7_h+N|o|2Y3wMcG+?+{k~J>RsZmixN^6ue)HIk?K<
z!M8jDiz6$a1ADcd4RbN@U|cy;*FO(h=Tw5m$SoQH?0dapxY>c;9c;hZ2iW+armzYm
zlA)97=kPCmE9=cR<Qs>PE;lDU)gAgVUj{h+1t_b(P{DxRntG(UU+0?DYzz$1rKvu{
zoC3Dzagbj%Ur;FMpr>7cR)&&R-Qo1(v<t9nXLe5l1Dn!|9GM)#b7cL!LJWME-6_c}
zNeH42<PAC=b7x~p;yX%wlI0w{#%DCktO(_h5%ZEQPW(~GM>9fByRQINu1{}KyH{_%
z)=$Tzl9C7R>hS}E>vZWeSL+s%0ah@wk4-Qxwab@InlaNbm;{zLh&~gIX@%H3`l!;L
zw30UI6sPkDplgP%Bb~d!d6#IJl)7J|0l~-qfRjx8QA2`jE6Hu1ZpW3@ZIzwjIXwPX
z_kmSu|4TT%J8*u>UjwTha(C|8QP{o&WC&o*H>Gn5nt?egqv^K~F*0OYzoY$$rE05}
z^N3m64`XJTrkf*kyMrZiCBJL?&-pLdKRB292b=-(g}lejA+9+lJlgf_IXojrFXq9t
zAL>H?L&@QKYM&G{?{R<k_zm=c&PcmMwX3#W4_y@qYRl<-w*RjMr!EB?F{E?+7jj!_
ze3@D93n%gyNR>VxQ@dIg3S@GUzPq~c5JiNDXo~8kXQh*uPx!zDXaRFDE&etq<#pVO
z8F3Kb^%cw-zrC-Gi}ueoVBo|#O2#pdV5uZVyk7#$A*?_emQpez`*ILLKu94QSb#d7
zs|$&`yWDiZMmv+4E=S4^#1`U!l2;Qp8oV=+T|6l@lR-bL{Zt{zxZ3S*99-b&40$88
z_FR`0<=p8|&l>$_pgo4lD$&8^zURJ(EMvnT40NUm$bjB=-@%j?f!&I$jIOEP$Kj1G
zc4M2Mq?e6;&{}Wh6746xb95aP6@<J>M{58<#P=vn?In5F;L0hvmUF#VZ@Du2p)vz%
zSt)NegyJ^5t704#*l{>0rXay*TZdl3`PwbXu{zjD5M8cQ&P>5LRBoVg2&h#PCGaHk
z@i%D%O&qhiRs}|cqB}JJb{s6UZd`Wfm)i%G7DBSSE~MVv+p$!iVByQ*@^jxUd=jf&
ze^E@Jo02E7kcbMbp}KbDaoAGVy2T`MD2scXoS=&*!-=hWJ&woE>gUQ=>Y+jd7|a+$
z>bwd1EJ*LDI_3&+t6ot$KkqNPG#<K{1!u6;<@M`9c5S6wMdYfYZAAUAVc=BFt418)
zO8><ySx|rZqgF`4X_vsaJ8(}E_$=cpDgr&JBgQ!&;!+Wo6FEN)ZDuwJ`vRKmm<IjQ
zs>A#LYdh^r5FC+)PzXX&4$h~SXismc90aE3Xv;ibD$(9!QG<e(E)V9t#3`Q*GaJbd
zm0ZBC4Ui~M5o7SLtRZgK45X@(olYj%Sp|oU1W`tfErwhX3LZLiu&u-oli1Wfr?ag(
z3*)q!t9fHSVd47DTXrvu+v+&D<~{wVa><}2$YkcnY%g{?TiQnW$%0sC;)x?4)Q6m9
zo+^j!?{<e>Ndx-CUX!0JA+=mcg#hkTTmjv^zclu4TXhm1Q&R;Ej%D)Fy|HchXwt~(
zD4Nm6p(-(xh?kw6U_q^>Dp&>mc0#R8VXD&VH`?W$>Kb9<BgtSeZtJ?uxIV>*n7pgU
zYrx}vRT<oaK#GaE3bj&>(8*~!ojC@KiT<xgls6!2J0!k`KtSEW)h%c<!gIZUTwEvA
z1`OEYF;rCwRUhThc*J4;u-Kh(-046gbptqO)(Qmf?4tHRjxe{7wq-*O&<}B60=f#(
zYU@Sai6l)pd%`Q<NZmi?-c{;4cL5638bQeCZcEAMqfxT;&_lg$iXfG*cjeN|R7{%n
z8lg|LaTkC=hSl_;_Makw)26atjMVS<W$n(3Ommmke~Y0{u6T@6{Bv@Xk;imZf)WQ$
zF;{j0NwByR0JT8<h2_Qu6nFbdq=(TYVNlqODFZ(nn-WstX{?<&!QV|k|I1qBjY+LY
zE#6<*sIK>OB6{sf%FjIEk6M0M!L$^%L4%aVdI~i1g+BfEHeJvXw>yz2GlwRuFh=s8
z>Y<po0rfXD9g93=>jWRl`YkDMq2)xM_@@^~<H8Xrq*H-o@Hfb0Kb71YmElM2ZPNyP
zQ_$zP^4HInIs)uW(Z=0+p&P4vAQB<4CN8E0{o1$5y2WE3H%Nxv9$=-WfMe)_R%<!?
zZgsFTC4L*_n?NbTQ9lP_^{sbuKutS8Kq2gWx&m%v!|6Ah#+BYNgnKtoK2H!no@)kr
z{e(=$5zECX>wi5iUt-|i@_{C+f<Nlwv*^^BUtK1*=x^VM>qte2nJjN+{qBEN%iC+E
z)*^kEe5WFk;MCTYl;zZPl@3FzlxIi~5j&;y5se3(yKl5gw9nMsWH0HI#1%Kwq@0G6
z?{IRT{$Sav6vTrW034H&kb2Hr;%9By)m)Bd+o`R-RZO$xhU&dfCZg#Yp4{Xf*Taer
zm8$TqEo<;i5y-So4C876%9RP!Z8s`j8uCHY5iKC$xLZ4-$@LsxOHe^+YLZm)i`pC-
zOCyu-H%?w&VWfKZb);9#-<SJ{H}-~`VO?wjwLw9I=?<>^Kf~n6EXy}|od($1EAdHu
z4)q`LWO2vOA6E_OpNgQ{wlMkPnpjquUG8J!o>!QRa5$PNpJU!WoAm0!n=nUolI)1A
zsRljp?bJy=8q<(6vec~L02>~NcU5Gpy=EIYUP`q=v&69-9g?TS^!U7LP8XU;RaOx~
z7!%%_X1;^-3fKo{qP~-D)+VTlF3(j*xglNSZ$}aN@7DVhpraYxN^sg9S*JOc5)n}x
zaySK+!PIiuLDsly=4V%LH0*_h@F^i@(Nw<=FEkD*T_!EtHqBn4-VRL8ZNX4+BP>W^
z6kyu+k3JwBK>|;<#|vVwcJW%)d5#BIKj{G*R4AC?C+(z}%gcX1R31IA7#QyCeL<}S
z)1&cRz|3#odgEwtTszB4%cRJmmcMus->GC`)}6vvt>W`S6}MzU5Q7Onx1Y1#G~tt0
zExa+Sw8SN{OTmf^@d7#3nKLq9hZ6fw-p`0A#9WH$8IM0tyaW2KcrM3$`0+Y><87ex
ze;$s{+MV-~oGKqABq`b3g17mr@jRiyOyxlsgL@MYiABrs^*JO@fc)?6vA$i&LO_$W
z1MD>Cx46UcEa$Pb(cARMdJ+Y#Gb+<0PY%5hh!90wh&bMor^`XBKLhq?J{NiQ5EDEM
zEI=R&UL$>m*YnQpdEv_$b5;C@!R?m-xJuh!sk-RCRx&WI1AISd><}CaVtb{JsDNuE
zT2<|p|Lh#U^v&Bl!Y2bRU+c+ACmeAR(m@J?QtXR<mfuCQ#NrOXOUH;V0?2YoLW1ER
zX4|?$7Yg<*KT+7>VMlWs|KN$=s2G}>!V?xrGD5^~NB-)bZ1L*mY}SCX^nEe_%!q(v
z6uY^k88ek&mU!t6(t1+`R^q;I+_nAaP_m<^fM`8x8s6w#c|};{FD>JZ3uMc>wrHcK
zA)CQx2h|HDi^z8C(XkSMt{AoSsixZP(#{T6#EwsbF+;FWw5TlPkfdCd@5&-A-p_Iz
z@=f~KlXRi%ySjecJ#09UGZICv@w7)WN7-mybdiRC^?w?OKY!;9%-Z5en>V%semvp4
zXK@-2@U|#$N=npydIaZfk<1#ke~=3%Nf*VUc6#UKt%O>+rLVNkzH{xjrZcTO^zXI)
zL_GLf>6^HAu#=Lhm_hjJ@Tl$k$?2fp%>}Uz&44ugCrq0b7B(1<bRH_fTjnPd(%WsF
zrn(Z$n^&%A3)!KY-A;1OKu1F6RmB%R1;&v;PB5OKrfukI@O-)LK{f^;8<D~RXnjEP
zirfCZ3(9Kas9<mh7Fm4j=Z+o<_8;g5d;I*qtGwzK<a<AuJ&VW#_-{L?oj@cO3)+)y
zG5x}SJwKj^Cd1<we1XHdMPg$qef>#{egSu>2FV{@c(vj!2#z=>@m%gWsWy%5aKIL5
z&nmiKYGi)MrZRO+7-bRpl_egncy9sJJIYIaZ}F}#R+qcYeYprqP|ec&LFJ3&yjO=C
z9iXYX0Q$CuzfxmQb*o(ii$KpO?FghC^+4UfS6tM;4>g;PSr3tLYdjA31H^0=gfL3Q
zy4!2?-rtyx)zQWgkJ9_c##Z~yX}^qvCnBTF=K|jG>1z;IxM^ft&5d*^{evT|QFT@8
zsvJ--{Rdpxc0gkzb~;6_gvt6RFdL{y_4oE39BJ(q6r}~8J6g-V>n3Yd=~!angMgYY
zG@h4E=2$uW7exHZ{6d!7<L1i_=BIfXw`NXFVQ?xWsTp~u3uIF-v@MH2Rrp7ASkfsM
z{uXRGJAnN8xuhiOX>^Sd`d$o|WeOUb%3JH2^X2tx`Qt}C^gw((Y}OI39d{3$(h{OA
zx2bAX`P~KajFEkjo+`NhETO3Wb+71raUHd-;alg>JMgMpONR0XY{H+65$8KUU8rm8
zkHs~2d)MKX_3R2i{rS)36eP^o&)@webo=|F89d?O!$1tK1^aw|anWY$H+4fHEwOdj
zLl#Xy>QD)0JWV=6m}N4}^+qEdOP2Xh?=EeZablIaD*PIc3(@ZpPGdZ1ufF{{YFVM(
zxl6ieO&^BmWD|3ayuXx1D%2OBjFLw!QSpHhVfRLUY<&+Wqzm1wAP}K+VL?g`A>wu#
zNGNQ75HkiNzg_{prEeg*1b=w$`x*$MM#&EJ8fs&G&tqQE5@ZJu58{OyVDrG|w98b9
z2a0OuRp3p~<r(HRA%S_7lsmfQo`WuTv&&DaMtXlWoluzN@5~?&jV+Z(T{^U}u^y$8
z*(3NawqwmrBvll-#)+JdFBu-@=CC-W2qYMdqHqa9Zv35}b^h3**w@Wn$&dP0;aIE}
zZB(#1M|+)V6wMm*PaL-WIUH8Fy>cASgS?SWJd0IffjD<{ce`}Gq+r;M3a+_-nai4S
zJgbtq^H%#BoMR+byHS<iG-iXFZJLfw#1tfa`C?=-f({f|ad#u0-De7#)Y+|@tv;*6
zMLC4xuM+5GS}$rH9sLyMJ$h>A<+4<TJyELbF08oafgRa|qD?WGA*L`;X!x_<6YtH-
zJ5+(vEd!{Og74E)MR_p8L6{_FRBwa^Et9w3%1|IwL4?}hSxgy7TTG9m>hcsnIVYw2
zicZS+$5A}-T~XtT9Y&eQ?fcc{x3Z!Fh*y)^tc}6KuHsRFDu>dRM_lAzUc_CKH!qeO
zCaUBC>f^iBhjxMgEmCGyRvzhV8_S>|Z1-fnq7FWzlaKE)i7f%wBcC)CZ2(C+eex;l
zPNL6RkveM$%M?qK+vW4^nN#KQWKaskQ)sz9KJ|He^R3+7RfnHh*Q$eGfQBYsUm+I!
zC|2Sq;1`J3r5E@W6BoBdy*6wm7tF^$<^F2(@%;ONg8Lg*ZObHX?N>E(b{XPAEx+N-
z83M)He`ozX%?rE6VMyS7UU<se_R-sA1$|vr;1=?0mLcj`5;nnLI8iu#M*E7KyzS<w
z7R=mOd8ty!jmS~{dI<i(e+A-@T1RPlZnljjASlUv?lU~qDxQOElfAs>a~a8(WT-93
z?aL@BIWr&E?^qVlpgM;iQc#1Wax;D})p4oXR@ts*S<LR`{}{8hrvzHI;VYq}Z^;St
zRFRY77IjbMtLHngR09Z@e?~rF=0o5&8UP4Is0&Pd-aiE<<Y+3z7a%MG(<0&xPlN9=
zYpWULcOwA(PEdz4C(pN$efW%_@^VmR`a?zpkd;yJqLrH=kN(^Kw4_1dweRH;K~zlG
zf-Ml>|HOhhQ}i$Zu50DTrTyye=U!f3611OAtGk-Q?Y5^oRYsgZew&2h82{ouocq~!
z&b4X=&%<-6*wYJqMC##hi9q<L<)eGJr*c`<pexoc$2?OonejVKm^)+W-TTC!TYon0
z2Jp}M&GDeZ0nL_oqrhXIeskXPIpGo>Rp4!*iu72X!t7xJ@FtOr`W7@9Mf8#VI}5<A
z;KL}b)A%JB5r9}LjODGC)wpal!HSE;vCO2z@X~vL1YN-r80YJFr}tMsMrOx3H+*hc
zbm-ZCMQuG-8&UTA5{*W?`G+$ayt4N$*v+=b(QOth1x8mpiHJb={5Q{aH(>*H$seQ6
z7H@FkWcSQORqVB3qKjMYA%SgIZILlDPC$1@JqK6FmQcpdb|sW^mY%@?oOTv=@-XdY
z@kRKG>`Gj(t?&0O^26-R=M<Oxn#o&{rul|N;|b*bgBc&<QHU)JeFUUb1V@tHgH!su
zO@@LC#mU`alG{<MgH*RcHkJ4hWx=bND%b#YcYgjWGd!RKDN{I@Yvgt;C!>S@sPck~
zd2U%#Hjet#to7-F=h50n);iE^HiB;dF7!-o*h)tpr$9OW;`taa<LVltG3A*VCoyvU
zaN2^=VB_YhEbyPt*+s^Rkw7c<XU~z2%Ok(PX&O}T(M<)nxi<<md^2Ce!8-9GFW6Xq
z4h-{!7TT?g@3>0M*Y5?0a3#C`<D)UzBN=%1IU8S^Y;b<BX}zWvv1|TYaG7UK3cGdk
zp}PI&<4<2p?D0~>kg$T~QMuh;9V|MXVs}NG)60p@S&Q>DZcq^um)%Bq!sz82eXxQ`
zu*zIMy#P}<0nk;6#x>wE?#&ZCdB|?c)2Oox3;sP!x=cm|866HPx9h~Tn4WO*QUZoJ
z1TE83b(f-TP9#`4*nqK*%10O*gK*Cgt%DIa2J35UfP~;3f64Bo8c-9P&Q=!<JGkD-
zR(?F^)=<}Co=^S}_V~K0)tP*Xi#I?-i|4a7u;SFWKs&_9l)Da|FP7<xwehi|pyAC{
zn!bz+zex(Qkp|Pu@zZu&J!XH`FNa>PIJr+oHw0ih9)Dda_D8!_1dFF+#oa7#EjT6;
zk+qL*ZXx8V7=Z|n5NpW30DN%5P9lKeRvt;$n~Y$rN=RCA?l+?OUle2xXAArpFE_N0
zUMM0IY3V{GKM<#cHiAi?WcW`$WSb9OfzEy34f8cnl5<k_7>+lY-p*7BR8?5cPIU9z
z?=gKp$mO!%SVYS*c)!dhPU?0Lak6t7NAMM5lre9=c^4T^<Mk_wrsXFHaZDSkz24)F
zj>FK>48dixax*nIwmD{KY$vh-!~RnlG}X3@GqBs{Yn_gPX}Y)S*d)=TwB>q7!l)iw
z#MY;1e@coUB^QzpfHsO-2E(4pGu<Pkvnv~2NVQNV;)p{i!T5MpGEclwpdEW|>D}Y-
z8D7^j*#Jnx`Oaz7WyYoqzZCNwi;4ctV@QTpEHJ?xzcC)-S${&Pr4B|>o0M9k>rWd%
zx?#A$&2yRlxG#WFWqf7~9qqo&lkd6}hPxU9TPCT6l3+@JXW$(Dom}#y?J)C@jf^e;
zHN3sL_VM}&n&*WCbX)uoiVlf$pC=(>`BrlQ?=004)5k$M8Grs!<qIkGQar&##inq#
zd0TctonQzzl~jV+4eNwp=ppbu;NR{$XM_(bxR--z`+GIl<DN%z&j!e6zDN3!j&6ym
z1p;#IJsS?$TP6EP9&4@XXi)orv|-QFaSlyG0oR)hf0*F?7aP2rnHp>JFwxFWe$8Nv
z#_|)yDFn?K(nH}CVhc*mA|tnEc*sS(ZHAvgy0mS(4D+ji@hD`6@OWcTWue{{eXp^i
zz?stXhGiZ_1&F=<6ciLf*@+Bp_3<~(`P`FbZyoM#{LHk(_<tX}0ztx8!t<n0)h*sX
z!k$3QCnxIcsq`6x<Zp@Wkv9&&TCl|mhMqF50Jo8K@3H6f_WrVGv&*_gYGP3C^w~AO
z9!|U0mDLKY0(RKrDh|4aSd@SGFFS9q<Ob#eurVq@47eY8@ZYSljpHi5za#%gRWm51
z4=B7AEvTe_P``Zt^+4P{*lYDMlr@QW_BzyB`Vv2u8zEhzO#XhkF8^rFxx?VTefU+e
zhA_xwo+Lq~oj%}dd+Lk3W7%?Y@?m&~tU2tu#&nIdni6L0^(h+DLQVWPO5U%$6t1Q(
zBQcL9-ak>t8h!~J6|EI9<ih^cwiL;s?acQiTn@d^pT|02SQ;Qk2>1^=JTg}KM{_O(
z*9_$oC_uPai(#y`s1<7b5|n@n>%_b+V+p*o%o|Qoew*dW9TmHB8FTu`$9KR=k|7d*
zdsWwyJcJyv@p-W>1$+5&5DfCuBcmc;=adhkd_s_A+-X;jYm+5Rwgk{7m7QaW9&lP2
za)VK?kadq)`WWv4zN)aXl51cLKvu{x8JpUuz6Gg!$Mq4Hz^KDY#HYDxdj|v|OjA0!
z&ra2MiyQX70}iXQZB_UFT%E!KbQQJ46|L+D;Dr?@0GmhC2Hmz<N%jGZ>kR7ksIX<=
zdS?Ie>!!y|IvDezoBaSqDb(7%RJPUhl%D<4rMeZaoW>!d!hd@b`IVSkSp^e|>DWMm
z?E5O*9H6LXh!{MSr-#+2u~`n=zw_B@yMh0B-U45w9msE3h!pEmYIYD#Slx0609iEb
zXy(BTXa`VgE+@!Q;e716?Fc0|Tr1#vl=OAFg0cPmb-#t3O~LM(4f-&~J(2>;d^{@6
zCmBzP_u`F{5AEnduU3AXDJhvyc+$(h6tRs9?T}v4^>osab9bZ$Jnq&U;Swhtq{l-*
zojCU6$x~(I?7=uD;Dj|}=>El^#J=ebHp)EML2v8hzt&wbcs0zR{n)Dpx^`w><Awvn
zck>qq4Ip2qLL+Zi_3_JNVsFxxzMJycSi<|W+51QpE&NyD7gf+xg<^MQqu%0ZR|0JT
zj+*eC8)zYC{#f3{Cce*3ELKV6!}W#J)~SRl_88ZI%%&IJu@E=s!u%n>IHbgJ*|XjV
z?N1qQ{_Iwg-vPyJ{KB~NRv!%^;y}v+Tk48uI_3aY5{YuCBt`kF9k&Ub?{fzeq(UN#
zY`K7A2I?Jat_mJA6uF}e!~~~{gBL03XJAnF3$n^<Uig8bM47Q&pY2^kDCvC@#>d&!
z$DG|w<L$~nY7F}1OGc|w36W~=O>jE{m~SF4&Sv-HeJa0vK@b+$yF{nBi+?H%<KNy{
zBf4?EzYYJ&^m`bwF<N-ea(|ebAo2*f0~u&&XgG6e4iv&kq*yu+Y{hwy&{v(9R+m`7
zfMQ21R6qh)WdhtzMr<gd&lI3;-9|O*KUMl`7VmVz-+5Ffo4a5#Dr8sIpF?W-4!_L$
z^3I%r0wvT_L`zn`+~U*uZQ~Gc=D-oNO5+(IYm}jZ4)^_)x&M)TxW^ueHACp(ggmbK
zUJDRWQ>wDRyg|_^)VphU0ysvOBtO@)1=l@NVuzI=OsaACr-9zOkY4=?0uF=<p$WD3
zPRlk!4|=BP!Ni(e&gXMwxgt#TW!1=+l{Iz)$6X<~3VqYg0X>`I<>ZY$6lgYM^p4XX
zKx0@2Metmgc>SC&M_(7jHg!+kgzs3_zNW`%H^LtC*Gq1T6PMu5!eLml$4VSOz(4OM
z+;_R%ii;eEm|t$%aTE*}cXkH9CUAQ;q70VeajFv*o^jYPH*pW||6phEN^Avf1eDD;
z{DdvUMqCBG!GnN-k=Mz8p&1?1gLDH+BPgQBTF0>$PxCzIOVH|FcVb?BIZemaT&%8>
z<S_>=__MvLwY?n1;cgNBV~{yn8#^op!|`6&+p*TW;)du2XeZ&0*_)e_LyI483PEQ1
z4m&aZ6^h)A%5loc!pF&++9+@lad!PHf&RJ|kQnkiQy@oI=4#aXxGFnNsYJvRuG)sP
zqwdkWFgIdP(Cq64c;tKMn~joDG8{k9weekafiYlP8fP8rS<5tlGj}v}IzcR8xfjr2
z80E|KL{~XaVYD+IQd}hq4Ja%%<75W@ffIdX;OW4fG;)7x#gG9gI^C=e*5SPnxE7FK
zFaBd5aQ;eG$O8kYFCXw2Ka?zwJ`9^CE_q)AQ{g!^<})38pckT}`rHwKuCncYbVPfy
zh^QHMd*`Q5v{f(r4v*W^>Q~{#1(b3{l)sFy5(_fFdbu6PqW`C_JMmKq4r1Z1e|<^)
z4(+<sOmcQO+v9m@;{D1VHdQH7AP3S2icfk=dVm&QhZw^C$N%n&LxZ46co!Dr?)nYA
zffvxQwk4puleiNjBPRogVwH_R4(!Iel9T)0bQY}s-|VJIaC|+bCe)M+!qu;H`kOm?
zvdro*<SX=$Xf%1Gm)nR)s&;?resX+O?$d04yCHIPbxuH6p~Ik76Qo*I&#3vC8Cw{R
z*I{e6+*l@iQd)DUOh2!iUqTxX86ItmI-D0l2T%y=%V;fYVyWL!uE!mQPl<^O_(y)V
zUD3tI-@`@>tn_!x24^4@AP!kqVthIWd=02&v$CH6Yk#Qt?1O#cg7Isaq^kh(R)_nz
z0H$CkU3;UUKf(`(LRz{CzH?4UCg?tV3Q}^9h97Q*2z0!x9GAuU{aW&3@N0E!_$r7{
z6?Rsr%300?ELOaQdj7Mc9rq2%jeZ`g2_wIlRv;{KElqiA8caD({DaFef#yz_v@~Rp
zOh@cqkiVSpXjSc3zz_Q4tH%8-1rKu~k$#A~QA|YqbMz4aYG*E~rU)4F-1xfB<%oMc
zzBiE2D4ZjcBEO=aQ|8YX+J$y-V_x<3tHZJEy{yjrDfj}^;eK$Gc!MJX^&DE#fObzT
zs9NUqKlmj2B6A2%)jbPO*1SBs$t7zRjia78L1y(d^rUUeb-Lg7gHSzE!<kC{@n=O%
z8i<z>d=Ep#?<3g*&4$E}C%!@snolQOyTv`M$(gRGufAiRgZ$FxjXkp^*!Hb}>Q~t4
zsSZ2Do^T(c(ahOy;zeKS;3Qr0kOI^12yPEV;Tgc!(|=b0bTvlM>2hqNDU~HQ;Xw4Z
zmfI_4b`L}7OYH`yrpY`mYh`^bs&xZ;9g^FXkO*<Oy>U1Rk)h3aR`E(y^lhh(%}s!-
ze64If!zCllC+vVfWgat8`yrs{ICp>e^*N7$b;<2i-tL2EmFJVY6F_?_l(lijeXdNC
z(M|T(U5Mv%kC9&apS1I!#YXZ5q%y23LNPOIXP&Z<5+{GqdYRZgms(w6JU9GIzGmpn
zs*|M4%zXh%@}g)@!=i|bp3GSb>$SFx4yVi?^&;uOj|WZ$n5rKKq~Mn+;c|4K5)2}-
z2X4p_l^zp_WiNSXuJv&>9U^Fo-#ddlMlsou9C03q&}rd)aG@G#od?;bJjep^)A%@>
z5A9>K(H2-o1)#Mj7UF!Eo_GM`7(LIRl1VN^7)R$l`3BqwlN<Ihz?p~>QVrx7c?z}l
zU#?5D!u(w+i1j?Jpc)|Y=-OC$78wDNnVt}S1LP9tTP(UAhteV^CsYk4aZl3UgDW~V
z(mh+q9lv5$`6wiE$&tW1_*eSpKznkdaSHk4HP6QomDTAD5Yc1J@zGV;xo2Y7?3;h}
z@&yn8$!&w)cA5(&yL3R{3CK-3q<({C>BCHPPPj;H6JFMqSpF`sWEnu^5t-aQ$gXWd
zA6GuQ!U`-HvA(}pMRx`^_Hn2v!5;2jB96+c$4YZMH}BDo@%Tg0ysWWD@k8$cwZzj+
z+4vPmR(ixc`N4?Aksmf*V7!4Y1}ELayx6MF);OZC(Yjhq(zB&b%<XiNOW<R}Q2ah6
z5tP^jOu#=Kbi@}r02Z!tfEY}?bpwz*pXT5vR7-xFQ0A|!u(-+?><@|LClmTwvEF`k
zT+&Q&zfAwlJ;Q++S7TMebJdn|)ayFBc3QI8-`huL*qhsu)uZ0>v&Pd}HYNJvkIk*!
zS{xCLQg<Cz_l7IH1TIq)9j#-;hJP!8`YX#}tD0KwDK2tqkXWZO9y<!8UwL{DBkN)-
zP__>7g-j${Mx=qJ{CoVa@tyzI+F8d{nXd0%5d=g+L_r!Ul@gS01OaL377&o`77z&m
z6_7?!x<k4<1Obum?rs5rbFZ26JD)wy%-*xlIrEpSS!=<1*YiHl9oPN6S|~-w;w~TW
zyG(3rIHoo)bZm)SBX!!=Cz<fQj@wQ^XBrX~IXcMM&C6b=9PAGzZ<)`MhwRrb5$aFB
z)rBraDC&1eBcpUV9JxE&fm}*GG&7_7p2?>ev#S-kYCmEYEGtiVNU}J|aV|%+htb`l
z3zDF-=;xSZJm~YTTV*Q|xJoBiOv2;XhGS9bt<Qz!GByk9SG64CX8udk&;z>iNVr^R
zoZs=Xw=W||hA65I@ghgNJ2$jOcGUyxFACY1OmgZ}Juzqv&|C<-GVqfNA@Sx~vdQD+
zI{6wTh1B$gz(nODW?=e{H|P^?IdpzGBG0TEDFgRDKi0qH^8=SisXWnQrZr%0?s@Sm
zq4VprSr^a@3UrzcY;CVa4~@9q9N~Z7X0k$71ufxQPP1VVI=;(2?1iw86)|qYYQAQ=
z^-%MZkkfv>KUWXC>+oWHAfBnTfgvD6E_EJZ$AI6i!I|ugE#C~e!5ba(Opt|sjITpQ
zc&=wu=kbHLTyh@OgEK&UvNYBpL4Aq5qV=*&7vQO7&(Xj-YS=2*X!vu~u;gC-+Etqi
z$max?SdA5wPtCjIc>R;|Y))?_9goGl^KO0{afR(?(8avnA2EeYc<A<V1>I&UDjwaq
zTXyCC1Q-PNhQoPQuAE0#x6?L_e5NP#DBii!kF2isrp5C<A$c?v7prqIGDLrW*qajv
z<MVy&sTy^d;J=(z-aq)#th3|qr$b{NAa@zGWi+buGP0lk(8=Qnyvm1lr8V@S{P*C&
zkJDnP(zg<~6a5%M@l708_)M&x<1Lru^WnDnUuf#Xk(=ebV+u0r7InV}g6>v6<?ip9
zN}Vs|^_1o{?1%LYSgP8MQSamMCh?%5P2Z>lw<7~Sccil`RdP4uDzi0LIX5VbOInwm
zFWps-zf_;%cF7D{z%PL~$@RrDVb4=-%?7X>ckF@g$R6{t^C7XMnVi#}jVuqprSbKq
z#A7E;uhH4oK=ux}cP5$uK`L|uRflDzarbhl{ys6*bgKN(mL%q*Q=FPdU#~!P8wK4?
z3m>;B_jYd9-0klYOp34d!|HcX7qJK*wrL<2>oi`Ty|qKy$gH_g_yVoLYEnl`lpuy2
z$0uRZ_|uE)?Vdx92WygsYIMrEp%5zcI=ZPm;uST8{s(Y8_%CjMF6o`LENk(|B|E%%
zDsV_mf<4W(L1YU0^Y+!x(v7YyypG34hq~1C)(~3xNV83tkIRn}2@AyJ@#f7EAgy-A
za?@FS<G@OTy;{3nuPFCYT-SCCW}+p*O@;*5k*Qb>A|5IAJak<bjl2+cyBN>KQpXbi
zW+#GpPgLvyk&GI%c@&vJ71^ohXC=3gEKeevVoU;UGCi$+my|>yyPdgI<K0zLoAJL9
z=CA+0nbRlEY&7nX^@!zj&V$1+YbsVL(yBzivH(TNP|uc?sP9pWEDEpC)|h!znAD48
z@6jj)U%|>#LT^oJuwnHYPv^$-ac`JPVOBw?C-T#dd9V{Decu$!vo=OdCQ}_|jz2@p
zx`^wcEMz{DR@5~`vnlXy1U|UdZU+alp=#8bA#)ZF&I@k8qCzg(G$W_-O#zK7Ryt)@
z&x268!%xfORgTK7l1djf-E(Pa52-nw+)LuTPmMg~<DM<njxCKI9C#XWEMEF~X>Cq!
zWCY7MS?9-_r+G7_sV7%v<G;szO{!_{-{!o9v9#zMR>;_0(=F~kpg&#s9463?ziqlg
zT<|kD`GVmd>!5z|1>cz!q%jIdqhItl|L4bY>AD*c%jxu|Ub~}qls#>|tq)?cM4H2c
z-_4c}hKp%1t+v%710UwOf7ZUDfNfdFH>|n`_harI={YJT<p4MFwRJH?j>Tln@qO*h
zZAnog<QyDhwfIX2ioIjy{KHu41m313rHdJ-a|L>>ACXo8DRS4Nm^Uy_Z`}-k87I)#
zs+jfs)x}HC!NBESCZNv(kWA1P*DWF=0eOmhDkSjU@a3IJ<1M~`MYpZnnAl%Og!)sV
z5AEceWp@N%y)aT<=k!KUYr(rpV+`_*&0fGDTbnV~z(AfGIo{v3=Ry9o2XRBP+v)KN
zU!7B!xe4^l`ZCHKplrg3eOuQzyJxXMA7{gTuSZm?xpB7arb^@6VmA6auabBOc+AzC
z`?;`@4-hgT;+rkYcWeTgPrz9(vi0DC<FqOn@dOM-jfC`DC79XMd;K;lD1dbFny()t
zy@TekLawp4jIMuKUt&R@{4JIrS?<p}x;$Cz+=4YmbHmH9Hb$95uL=^P3|!pqRE~;(
zIb0YpQAWZMD=`^-43??n^BtA7@6wWqA1JXiw&g`M*@LP`_|*lTltvRSdL~96zY9o8
zf`4R#{BekoD(DeXuC6(D+#Q-zuT6H9h5V1EGTj_estzB@kgsGHQny?!7kM@<WN3yo
zp@r$eDqQI3GrP*rRxy4j4G4uRI1SB+3KMyi_m)*_K-D6$R4Mm2-li&?M4=*dk1dFR
zGI#{KKe9@oJH|HUc?^8oZ9HLVirqSXZ}>vViUs+zhYF0teO<%p1Y5lRg#!7y4I{P1
zVE}PpeRM&yD-hhOa6fl@FhTgLkq|9A=Vm5b{c1%>eMljjJN}iWpY<D!oLJ;b-t3OF
zh0Y(}99q%#cIz;wQiS_NSX6x=j*HPzeJ}6GiJewQc=`yVCdaJRu_5vD9)oXeaeY=%
z33TFD6Iw~<KVkQQ@{e+2IRWf=UT^y_`(Wy+4=$Qyql_4&Io}ff?F!-$c(`efN>q<1
zHs4Te`?+zAjEEXrt6w<o+%z@WFy@2P>VYqv-4RQM>up7r!DbYtYc>dtmjDO4?b?tQ
zBUC&Kue_WlVb)D{`ubaIoa5RHDB><}yB+O>Nvjh4{#$<edj91{Ropwo%I%W;HY<_0
z0&J%w)eOeHXIXel9#@cL2O@u_yb#zVeKTG52Q;d0I`W!NRF&VuA~mo83|a9fdNdiR
zCDL*`Y}jTpYByt&@~8l|J5e|uC;rh|21<OT!=}<iC9U+=<Mpl@#xfw8?trcM6FAZ(
zv8!u#F5?EeB;^1E_%#EagqWD6WY-F2TmbF!Yqv7lbeLa-sPew$PI*Jg7&ChT$%OVA
z3v!*(#Ul`f#IL95#0Whb|Ew?ZU~{3fX0oD2xA{srm<fNa`h<nNW1!cUgKtA#WgNCy
zT1`t$eT1jtsSb_a8<!YTA3L3?C72zQYApN?o7j>fFA>wJ|CuwXn}A>6m!Tq*c!kKq
zu#JO``+)3*vQ1;PUF$&S++yddYeWkkZks1EB(*7AjtS@Q=IbT=#6l1wuIeRa%IX`#
zvp)mPgb8t<QU5@_tWDGVUHS`H{5)S9+76Cct9r^>m*{HnhM*8;mrzDl*TF%g-}p;1
z)#Ulm59B6f+%{C?e1b>aP8c^GYq-9SynN>{=k0Le?-dZgH-A;oW5l_QNgv<1YwSZw
za_4!*=)IBvTW%FHbm8DS38v~~<bl!&=d3>9$l=x2Ju(N%EDSUs?0}Kh7ZCbT4rd1q
zBF<_LU(i)rgiFVA-No*$z;%pyJR*Xxne6pl`n5{zV9lE}P2W<AkpZ9GPkFCUt$d>?
z>abd}^=CLo!Pk}et%spGTF7)P`&c;sD4xGb*L$lAd3_@<c^@@%AloFTB_~6#l@!Tb
zJ6!Q&p3UtW@rt7_Q$T{y4xZOj%=RDfXRpp;&R&X}{om(>)7w`!mGo*_4CBv!+T60>
zx^oksvh`{2^YahaXI6;G=z3Zr2w}%!N0LuFqZoQ|c1@+$&9iE|h5Jmu>ruJ&ET8+)
z{1T5aIgixQUN2LF{Cx>(4<4askO8;Q^(j3c{RnkCjDI68`Tf!kp~pyf?mbuIC@JFQ
z)NNIg8A%H?EV-+T`Amc=NCFu^VFo;#s;S1nI<C-wUFM0`RjafE0vOyW)iBmv%9N6l
z3X@BEoPjxEK|x*%Zh6U1!tP}TLwA;La~#U#)stZ`u@jqG<_ww94n$KOXQxpCU+XN_
zh6>yw3_H;*nn}29W#wR4&l~QX=8rLS(^W&MvL3#39Iw#GP744DXY3BWx*x8$z)g{P
z7Y6NmuZ|+lz+zD+5_Oc_fhJt)Co0&FaJ32z-V@r~$%bMV4DhS9S~FwCu0hPkiqZ$Z
z;>@<37LH-e)^lRb&@gNHeTroc>*C9W3>0R=uJ+tZ8J|z<m^qz)h7$9KeIl-p<9%!U
zAw9|cjC#4npZPy6(LbmZUPTL3h<si1@8I<)?zp{CQsQ^$hulStFdPko3_xt7VwG|K
z@^cMto>m$vD!e;ax9E9Yk8Ke;$9DwG4OJyTM2yxk5pYp2YN60blP0-=vW<Yj1HDYF
z49Jp-&i3x)O(mnRQ82!ygB@P<^w`z8FgDKZE7TEU?>xcnFOvqJL9GvO`NRg(@j<!U
zrD`qWDO)Wi*UP6jls-QfPm^yZvnrYOQx#ULo?<r{_-fb%cPdvZ!l2CHC$u=Kn);{E
z>YX{HTy!uEN$8^yM1U)V9+;I_UuZ+ZJ3K9<!rdCvI`YYGwl96@m_OlH?pWS?;3K+v
zXTG0n<=YBtaD|1oV5OTD_TQ9c|4QzJEH(A@OXEU0GrC=8J}-`XNexxe5{>s;XAIsX
z|0eN_7IyJ%LVVwCuL-xz=XSYW#Oft+SK@d>7_HeJiJla9=ej8uSU(;;r(@P1)0GSq
zdVkO|xJH#iG*0e)Mbw1~RF)0mQxJDY^dyOPoSz-?7hs@L)bTiOC8(al9sbqQ4MTuF
zVAbnzg)X<OA?rv<rUEBVO$tM<o|cXo=E1i7%~*Y3S=1aEn1qTBwHLt|PHM!#0q%Cm
zX+*mpbYR3F3<wM9`TN*S>0m!2r}Y`osn4XYNN})^hLYqxW8x@nxyZxS_|0MJ{qPrH
zFsRyDOrwmCoCk-5DBAn_gAL=l-94|<E!_2v08-w}U?2uCNl#=pP8YaA{ulgV`pi^h
zl(DStM^%YxJfABSBV*UiRlXudYu~`Y!}i`nLz%oXSy9lD*BgE)<A34V%dzi-dmW)Y
znIb0NI<n|^zTqGHl%DZ1qmlfhjmp$09@kc<9qU8s#~MXD=9pJ=_0nV{wjV{E6U1FI
zb@cl`k?eo|M-cVJs+(M=KisTtFwhnFNs;Wfgk~_XRtCr$>5uYKt-jHI&hyT}WlH#Y
zf7V23V*l6#!=WVE?Ketp7U3b|<y?BED5V7JeILxY+BaR5_K7l$GRD_w{q8+gXeXjJ
zCma`%CK)yl*GwIbeLCGxvr<+@Q8aNDU8>Uc72*M}pbNs`I7>p`e!%wL4v7}!mh4rF
zegq-$?$Vec$8||@ade%|4-CeD;zqR0G7+tLL4e4F?r32aSVF!v52nj(L=T~f_Tb$G
z;e`~5O5Rm|sFJ<jgPkU7!seQf3f>I3COe6M&owG=(Tc%I^|5)yGL7hVW-j^NyW*%R
zATrqjFm>BlxsBqm+JzIy$vVKxBB%Y$kUcnx8cV=l3FWjlX#VT_&n|wA(hJA$5-=|Y
zG+(`jgZX<;z;kwh*!MOLh90r*r$!hqq=piI7}QbdtZEJxUIND((M@%7+G62%+<Ml}
zG&OwdwvprWRu1nn!c#7~(HhrELe!;F0HWr;1iLf@FmC<>$;=AC*7WV1zZnsbA<jvz
zbHE8IW1vF)=F`Y)dv>6~8xAi`?yr>N3)umTwAczZS)lA(Du-S{3QU;sb$1#e@%ZS~
zBeOYX0wG`$6!8oTyjJBJJ1~l$QQ+%xJZ97V1terPY7D=D_B@aT$+<?TdGjpp#(o@>
z9rP^6!x+r>Ww>_*L$8}qox&=X<+gMz&nK4c|7L>#8lXUXi_y~xRb{_`JkzBQZwauH
zWn2>Os@?6iF;TF!YJ6*_DlXIc($m(o*}&jTH%!e1EgJ}+v=uW?FxtISOd~T7Jbr%3
zJiEQ^2X@jOk6f~mR&^ECR;m1QzKvadAb>PYb6>X!ZF#b`7PnlWZMZZ~eaRvRpVV-A
znw@_XJUl~(uFXiIJ)zj@yDhV7M*+IHj%+y=aGIAdQ!O!7Er&}Vs=N%Ojm(!|K9f^-
zVymDKs*nwXi}}SjFXUDGI(&u+fO~@U$R!--4H!%cqcZ%b$yHBhW1w>>GR2A?S4#01
zy1^kMYx4{mWwL&J>)X>DT{&z=jdYQ#ojF!P;o&q}Lp-KK_o>Hn6f%PAM!DFsbgp6%
zb9^JD-f}xdO#hzwdO=zVT~2f%ckS2uXhoAQo4krlO~VHT?f~Vp(eVJ#tWSY&669^)
zvsEATFM`nIWxW9_T1auw2;n(I!R=<H<1||%Bt%4X1fI^sx5<RRJ@YP-9fe~;vb#@3
z)&mpCq%#K+PUDv=&eK+LNG4LAAXM_Oi4{mQ=ug%>^*5dvw2-Wi$!Yvy?&Do3*TPQk
z$5ONQ?eB!zzdk;tL4F}mA-~XYI_#cH@6jIL$pat>BGbnuHWLnnofA16nEC{uJG$HU
zKHQDb4SRsn%C*yWoMC-Dq-BS8u?S}H+fH}+6^%gM|HUIk8;};T&9o_J8>7Z*1`z6Q
z3NU0H%aDyzw6e)4i^NF}n}wdg5#2@&f5(PApQbS8;oZpl-O<t<XUnjwclWNZfbi1u
z0iFR{?QMkS8gNR&2vQ2GOcIvk*Y)ATG<vn7HZ_fJIwqB|Bgvc`DJYuDwX_XMYha-q
ziq@+&@Fj#+k&s7t6f@4a7Gysjs5)j9u^d|E)+tjw>sD%u^={A!-vQorl$`Y7J~&F>
zqev~5G$Eh`QK$xubj;Gw0Tiw}(&duoiU+kGtO}Bkf4gI3lc}7hvq?8TfwjsxZ5#rW
z(X+(WgEtXfCX*)>U6$`IY1<8tB4aN@>=gpeEW;svkzQhiad8w2#h?>7rNQ~39z}t@
z5(hqKxU#D@YxL7$q^Ad4(~VksWO3Q?P7AkOGnFf(+cMpk9@1hV*uOB!?ilvg3ax<i
zCdP|GEu!ON0HjlG)#P*x9_0sJB&JY%Gu&&(r@cL36EkuZ`+SQLTQDKSY^<!O>P;CI
zy->pMfma!N=si-su8!kfG_7p*b-vrJG8K#c>FEtmmkOSu8=CM8$fpwKkpjDm|7aff
zVgwyygt0;KAC93Zevk3WOYWE%=P3_p{}g4saw{_*2Y4rT|30aX>DJm~;0FVJJ_(uT
zLxqrIhS$7exBb>tF-i}y>vx{>DCC`gBW`rDE7~Ei)_am#)-e*^(9=u>+ECW^tFs!8
z{2>pb8iXG7pgp%U-zVY=PgER{X!+9k`K+*Op!X-%V)B`goXD1eDO2~jn{wAXDjXyv
zP|@FX>=`dHi>_0*6fBO6B$yY$pWGhE)m){P-M1V6!AC$slG8MRBR7IM-w@3z{0YjU
zyLVfP;@{{2_6)AG0%=L%cf9E{DjJ$ht|=>`UwNIiQ|PxyI}4UBCYtQ^tX-X?oAw}$
z`%V!vQDK**y|`>WEr@q|)8!>Quhoo~^p#c8nF=si7Xz0c#poV;cg(@7GD8G`I9}ZU
z8`@bP!h5Fd#i5CTVs{I{?7XSTbO;yx=&gX(kF@~20&tU;uw8#UKOd)=Z2JY*c!GZI
z-fj7tX5q}WdErI!%PW;Ky%jf7WMR&!dtl`(;pO>i9-fNm3KnOd4RA*u(I@@k7ALp3
zCML0aX2oVv9F+5`ipk@r)CKHjodMp4A@b+nfZi$hEVg#j!9FLgZX^T;Wgw2n5swq;
zM%N~TzS`NKWw4p=b$-6?A#NA{t9EY_6K7N00;4jA=A6jd&b;H_R9p%FQ+>cm*GeJT
z{1WoO$&9*$Q1g?gY0fC(-5hl4SG)T&T6>diqSdTheqfrn%$R-8)&lJ8aCu?Vw@Sg}
z4b0VF|JuKiU?G5oqR7FE?(~MzWD!DgjCaTP27HUFOtUH#HJ4kl+s~RQDV3P$ew}^t
zcrBS=IW1)Ua6Xw{vs6^ce1vYk9WTUigG+{V_4`vsQ#C~m?{SMC*8LSbSB5RBNMAkv
zw^gctDT5$xpegYSGb_~(v_qOCP$iCb<ANwn+{4}#CB;Pvy_~zJq=h@elm2A<bWz}1
zqYK;nKcT>YNvc&*8&c*Ueofi-9aU57lPFw~6wB#`;13@t7)-*$EKoI=<mBXL{NDyf
z6u!ZluX-H*%U|$se?$qYn`XUEm1@i2=g&ahL!I@-&y}vxIgB|at7E#KU;Ma$*V?or
zJAa_L;a30@h^u9n)>Jc|mXzTkfD>6(>oD&mm$(A7eRMYB$}Lo)KYyOTq}2TWU|m$*
z1m`9vtrrEGT`SUGf;)LH`le489A{IM_#7G&9BgUC#>Fv;_~Tu}KO=wrUwtiqbx}~F
zE_n4bMo4HT9;jd%_Ty+$l1|?tCjapN;f-G%C}2{sO1cyb=$a&p3VP=}z<W+m#rAhn
z<A3`2D_=rF<JDB}fp3bHOVuA^z5cX*{>}CN^Z!anxc<r<%#y%`jv~FKV8U`;O?kb+
zqa(#0?fV~glRv-oKR%KmfcwgvaK_j%&qx3H^T-Bc;z!Tdg>K{iW0qWyGCDE88&4kF
z`}JRM;oo+IHd^Gw#Kcf@LaprLHbSfWXjz}KS{4Gn(Bd~61pih3`-d9Bzkh<jePkd`
zCwcYb$m{jOXDA*Z&ADd($ugEeQiSKfC073FQte#2=$lQE+d_I-W?<_DCIYtV@1Xi1
z9q(`DrhhrS`4<m*AU(Ozl`&mF7=2*;UZOv7^$xMXbE!WQasT3_f4|F;d%Ttwz{r@c
zCe$?{*7HmyRLA30!QW%7Tm650V{qijm@ZdSfBe{|OoP!i{d;KL$UB`sU9SIjC0@C6
z(J^NrE)%XWGx8wx!0{D^EY1EuTm?yi)znX)e98!Y?q7XvqJoDv$n~^&>%Ypd{%YCb
z-ADQcau-)Mr|f~atm1IOxGWvml|omIbD9{RU3KLALtOS(8`*z&LIRqA0_OO`roJtu
z_j(+eN{Pmlq((Rzl|j)+CI^K7bnp4=H3Mto0+O+*(&<Ctf%{Dq#NJnBpZ(7?&j0l{
znUH|{t-;taza=~_&fGa~VDOz|graNC_5T7l+(w0ik55Z09n<#i*_}ajynA@mH%55L
zMLPN;#%=h+ucNX#7iY*ST)V54l7g4lCzLo#N9e@%rKTBh`Mb1<riIbXH{^w|EI!_)
z#Wvqr3{BX@W0;hEqOeJx7O)-yo(C8e#BpMf&weX0Q|E+Ah9WD>__zsRok18(i71T#
z$x;qsJ!Z+?Z+P^ra}PWTfN{wPioXcx?YPXp_w)MzrE+l?@`u?hL1+QcAoMuOe2;?!
z5`LT7FB-332n6zE9Is1eFF>lO;i*?j(tYEUp=McrFk+$@3uUkmrzeM^MQ%#JpISI-
zNL$kHF@;Rlz#J#Lrgg@J!mIzjm!_Hr$;gW8KQ6P*@gf0SDm3l9wtDx~=S;5Atya8e
zJ`*1nUL~NRJ@v++e<2pCa-{g~nw*tRUphhfCow#`Pd(`Zz6A+Q0qwYgYnT!bAEPBa
zy!%=#Y~nJ(<sXaVjeIdKi_-cVSFd)L4n$RVZ=7%%#=EFgop3vh>A)|u)ygynq@xC^
z6PUV<-ZG5Qfzdmw`F*my)xo?{PMd`x;0KMnH!Y||y(_z(J}_fy;@I+RP^Ouy)9lRa
z?d@YpvCL--$9(bBx#sxEhNjx;R33K4skKG3?ho3F3yr2L1zooNiHB;t3FBCsSZfVC
zWJ+wLr0Wf<j#J0=-n@#_0|O54xGg9=t%1j_{XW#2ZlL{^rGbE6-D8x9%QoF;_X&8p
zn1bE*!A9k_raG>b#8~;WdZZA7F?G0wv%&Ly!xr3;2TCop<L4Xt`V?rZa-o19<Ob%!
zB52t*Cfw-)$VlZlcb4sfI_^KAFNgMT>Y@)lC+AW6H5G^D@6-f`piK0xt7zIF;Cc<l
zZaDl%xUv!|4DuQvJK{U6S@IqP+{C)|(eLhYzZok2kGB~-{g;0xyu;;y)oC_W=TYw-
zx4_yt-S`GIQBYg@d|53|i<dV41HQb|Gf5el!(lIK$%Gh^w!+rSyykCllsA7Y*Out@
zXY;H!wbMrgJ#URaeAS_LxbN68R70awper?6tn<O_r+sk0@rir*z)2q4=JGCmN3~kP
zfuJ5vkmx|7N|sU%l82q#N^2(N`jaX^bKUHs{KPio#ZX(b?}Bqv*(9kG3Oo%`D&}UQ
zc=uXD5DrcNe>Lq*l{%R6#J;K5VF2YpyV@{g+waNZY_QmM&1$n*m13%PD)BoAxfg64
zkvA$g`AWqNprm%tPM1flrPt>JSHbe#wXKGguU{n(-3SiU7_5rBZdBy>`ak;*SL=7r
zv-aB_S8m)J0^X$wm|xuewzpApVjhwv6vd;0kli^chY=J&x-b3pDcCfeEb^Zl!8c~-
zF_J91eSPTj4?Xq$<wr^dN;c{z@oCn!vMJ&RtO_k_1+iw68?RjkFxi#zc3HzUG6E#j
zPUrQev&&kPU71_Zv*`v*4T@!!^@u(r4-z2zhrIG?*jXZGGou3doxjBQT?^>DO`GDM
zFQ>&@C*Pok`%Z44*4<sb!ZxEC<|9Rn5@qeGRA?wEDHA8=zJ$c4m%+k205@~dxn*I}
zl4?!6e#H`)r*J3qDlaC%yR+b1lS?jBhl|qu=ouu^>g>?V!>7#eS{xC7=E_m^#F=F7
z0m<jU+epwsvP|lKK;*G6XFE***1DF$I9mZ3)X4|BCS-?1aeG=Z$-<ix$G!xdp0EDA
z1pjO#Co73OXQVi@0?e7gL}X9g!K2+J^F8-8aFDb90#*8AAX4{-Gij6JnShoDF=*nK
zz1o+d2Vkm&2iq58gWnT#<WCM5IE8j~-WxEU{ybM+kv_9RKd7%%J4&X(tsdd7b8@)x
zHK$TnX0meDP~zOFCS|}(zt!%X5(<*ElAZ-@zG6iPF*Y{`j3E`mTul>ZANXTPiHb)#
z@DVWNhx;yAxSy!!HiC^Z`gc9QEJfzh5*xG7t7ybjvfo!PZ2iwldR|*8&P~F`lr8<_
z$rT<I+Vr4qG<=$WVxT85^@7$CW?L@nu7DUNsw&WYD4$}`$Zmav)lwGGNqy{_rDz0o
zs{^PfqwYhKZj4-duI;ugBSjD9i|zqM5mJ?u<1`iBqbIp%sZY1at97JH23K|zSJb_Y
z-~01m-xEqmMt2N6Z=T+gN!&yTD0w8w0*pN0n?kq4+qmVe1)If0j7fE335mIEwpxkl
zGTYHo2S&3|%{nNb)U8T$tN^kyshK1%&Ds1^ULJ$jR#W{wLuseX4(>RjL%FMG=UAq<
za~M0qiTgEh(Q;65Ph+lG%M>Qu$YSTa?4<Tkf)cX@&7Q3GB)z#yk0~K7UD7Mf-3dhe
zYgME3>{$IhTzxOW?kG%qJMyUFab}*0k_ugWB*rM}JOyGSBaaps;w)zC5LaOci5oG=
z3<;GZW-1!i+`&ispX>i`d<yG6hzOk1LRCh=WyX(oha|E|Cn_o`cMKGfxP?DsIBl}Q
zW0o<mNca&ms{K1^8mcsv6T!mq?7^3OBTDZ3G7>q1?b0>Q*2sQpW{hkkEKZ-ac2?}J
z9XZAJaV)b79t@E2Va!n97_N9I@%22bwrnFaeyC%>byrf{PKqDr&clm-3Ulbk$sy8L
z_=<BEH(?^*6qG{do=?hpz>jAVnz)Nq{NPo@9Wy@zf-(CUNp!4g@wLRfE9up6d5`Ci
zyq!xVBnj8+)m~4DhkRy#fRN%HfP{xbZUNlXZuD&U(Z;=iN@Ixx^gd%XZ8}*6-OSBU
zQFeUAejY{C{%kfL$X>3ZK2F4aEfaaa{?zU0;c2+jcHnosL%r`+j1^0_wfnqr8P1nw
z+&@F<`EfD`97g+z_|Lv6Uw~Qc7x-F^I>P0AuE&vB!%cqI*I}69ZCeEX-dm=cAuCM7
zY>o2ou>aN&4{GSn8^(Qc3osgkv(je2F>w>3p^3-u2y~X0LHmu#J_KEAd?3mkgX`rw
zyadDHRui^^B*K|;@^r)DnvfOxk~SFi`5xhWE8lOEO{N;G2bl88K-$8CXLT1`!0B<^
zHEsINIw<?FAJcr;f-WjO0|SGYys-A+x64Ia)z{_7R{@!qR|M#kuMH;3>#HAY&yH7n
znmu=+E7OtVF<fX^S>yRmwrO$`j4LfyTMVV*c!teLzf~W$Q3jS(fwcF;6u(`)Y@<UZ
znm#$Um#gpNcJw_3@k4dN2{Jp2Nt<q7U=lR?9y_yrjpv`_Eo>q;6}eRyhYtr6I=kM;
ztEqATcr_uS7~hxDzn#S7Y!|DQj}2{puuIflYVUPX5?ael7W(s!_{*scPvAI4hdJ`|
zVwkH-5||<ARJ#2U16q?L(6M@to&aJq!Q%#R3{Q>^!PK(38cVg6*v?su5kc#A^rauD
zXu`W0=nS0qL)_NCA8u$^oUqup&|mLvdS_;0>TXa{I!;I%kKdj9f(Yr2lt4o>%xs~|
z7_;8-@UN-^eBl6G3H%;WUEPw1qx?uY6e`<Lv{Hy{t|3Xqrx|WRi&y(a;DDAuA%J*%
zt-Me=+$8zl-67!evwt3`KKkh%b5iYbf1c^yQcr-~LsY*2>igks{pz;2;&bmiOTxf?
z_4V7LZ?hCjz)R2`268wk3cK`=Iyt$tg%%L5x`3iH6OW-|wy*^-81CTV`Y8JwQ8V;C
zYA}d(KN+1|h>SqqPI~;_TFb9rc?iov5*ovH4YMzp#y(cIIQL4iql}B}qOo8--sw1;
zcP(EsAqupcI?6H|cfj3mWzl5!b4+UPzejiR<3{Y(Wlu{Y=QqK1T=WX^H4Aqy9>$;l
zT(sQwEi=S%WfH~Xa-1nY;?Yh6(Z#`F?OA^!yl@aErcX{L&o{D!y>LYl5t|Tk4pIgF
zWlX|3ufc0KglKW~B`kAKCc5hl-<EIC@%AQeW+lGkbe^aoBRgh0<)rv6NNb|uOr)N@
zaDkX#Tv$+HDt^$}{CJYy?DkITV$O9{IzjHs%>T$xRR4V)OmNC)%YSz-^5M;KgXzrX
z5x(~%q#k>AyJizVO!Inka$^l}VG-z5obGL3%ANi?K6+(BF#LXzQ1Rp3pI!aKai1}?
z%6~jb&5Je+BeKsA9ihFcom7PE!GXgu?R7my*~lq9%t6&jF-)KgTAk8ffXy7)3XYF;
zJs763$Y*iN2!AsP%5+sQtjpG}bxU=lQd1ZOt%IRkC(02V2BmQQhC%D{x@hb+VuIm|
zXUQ5kBUvYYfrF2;C;xlm=pD(?%*}OB6k#GqLHJh)-0&X1mrYZdS-I9TGjMis7o;Co
z?GLEOa;WLb`ms{49lY+(x72XbvFJmjO{egU*sqKCF;HY6i@^MPA#D2yD=~y^T0V?Y
zaBq%BXgOyP%|P?bTs~FOY8z6HA3CF|hOzTa{ZGCT@EtEv%B!MF?h|F)r>1W9Q>AVS
z6SzAvx2!zjI?t;S{Yjd4U*Y5wV2v#)$6N}VKyAqfZbbuFD6BPg<9=Hy{ozlSYf0+q
zTG`A@vws&eY=UI2Q-emQxP^xMaLi^M4CIPo!~xGgB1@x<e_IWe&_`GwH2)9AOPvEh
zw7#&YV4@Nl*bn(aSyV;2dJO)z%c)j=wHqJE+<*2U>?pPS&GLf`Ei7ynyX=nCS~CZW
zO_WWBKc{pDNTfS`naeo_|KR&hRQ!uEHZf)Dy92BnaOzfSpI)Fs8{8F1b&-}VGN2Mr
z9uJY>8+JN7m``eqwx}5%FMTrD!adFpRCX(yn-2>5xI%tt#7!mT+}G18dLg%E`W^q$
z^PTj(#ZZJ1Hsc)jZ>x7sN}v{9i#^BT)@h0Oi=4@e@wr7*H~KsT|H;<&N?-yRq0yl=
zm(KvE>j=8TPOhN2I4(y%f3LlT+RdK%iM>wF@3*haSqCc=I0sQq+Zzq%dLpfQC0|i}
zy)De0@2+ix>Fq`lM0?RsI<Inr3(RvI=3#*?2nR4#?*;d!JOrdz_c7ltd+nDAs!ujf
z0T8d}bObM{CW<>XhAXeBkQ%!Z6*OGDbh+tCKokwO&+ejV?g=P+7Q}YLFnUY!DC<-3
zl^9_+Cv{n4j@L(6=3bBJpe)P=;oAY&R}R7C)KpjX8xizZiLDt(JAHK9*<UeA$HfQ8
z{6wj3`2nS-8O-CIRSTO_c}Z27W)#RBY`z{)?}cZaf1niQ60GjBbERr?+xbEp8>DFS
zb3f009XYKXJ9-5)41Io!VT?MNxppdEc_nt^t~E2bpClHkKDiG0>q#2ROaxY!sVyQJ
z;E33Gj#G0+&xsP@SBTLpv5q$|Q;hYKgQ`7@fQyo{k+xj6!A_HX82U@=EkqW!R;Ndk
z=Vyx(u5dU{e^=nA&mVB!Cw%BPGjB8&y}|8wqDV6Vi<T$drT2IQ%rvii(@90&ETX83
z7T%kf<K^X{^-C%KFpFRN!<z~B+7lkYQ#+Mv74rdFl5|euS#Ia0xCl13CR~*)A;DJq
zY3;p_gAdrb7zmKB{kEO?iVH+n?M0_d+M{PTewvW8%{4TC&GOH-I-IuXSID-AB*B|X
z%o%K_cXI_c<fO>UpRPaq8MPe!+EHAT#esC^aa8Ejq~yvpel)zuS6)?G8tZglY;t(`
zJLa6q$Z440mO^xUl8zBZYf*sfagXOCL-yc@gnpN+2R6<y)HKe+s_d7Ap@$oo8Ha@)
zoFt_cSzT;CJ|c>N_XLkoFhg=i&WSFt1X2cM@re_gAj|u=v1@lEN!ie&sf~k|wRUEV
zwI6F$QQJm1Sycq$w?=}UBOXPrJ&FG52UJ4~n4LK6Df8LZLdD&KQ;_u&2tZJF{i%Jz
zWu5C^qvXD;>Xmr4(1}rKx85*g9M5#E0C{!$;W$6U7+-os97)<-D%j2L1ig70)pGNu
z@(IgFiM_(k#V<Bh+9o<y#ohQ!ewF%wN!$8zO-HAdST5@NZ<qZJ?nT~{>U1^j$32_5
zajkAiLGEPYPwTe=tv@&?;r^*=@E3Qn2a9Ba!{!9yz%IM>1kV9rw9&$>D#O%43K>fG
z%d3~)2zLqUqKh1Cj1cdIhN_JoY>eT=T=%H^AS|GDsy7UKaV)zYy3*dV-KHz2l4^>0
z(2_{4`;SJlu|kLAy=Cd=RS*x1Ws=w}<L*8wiu(9*rKw@(Hm}J5J-dvPSOB#f!wS{B
zt7_s?r_)?0ns^;rFflT`7)^_{SCdspJc8heoFnjt-@(K64tlMsAyH4+V`>t@ULVYY
zcspDbiJ?^#*-Q-$y&cj9&x<7QeuBBR;8Q{NE66we3H%nhf?h~YwCJf0^;T5{wz6~!
z3?@M3K{_(~Wa#bKu38$<l<l?Z^orGqjdsRJB~a7$lMmU))o<KWK&uE=HnJd8r<Zs6
zC=a?FJ$=z+z@2tGaSy8X(p>Pasm&+g)yT-#!y2UiJu4KUOqdipWn3zi>~`W!I<--I
zZ4w`mjKr7pLQ@XopX4<H!_?ov%&&60g=idkpR51`{zYTLD*6!(1?+`$L8VKlF7}~>
zuUuV9P+VzK6fkCl$t{zw1&Pk6gvTdvRdm5*yg8giMc|@ZNsoS$srIL}gBaD_yf2Vq
z#^h*}vsA3eIk+vxI*fq$U`{w5cehQi^l*fsdlJNXsZz0A#bUdVErgFlbu&CX{HEg)
z!_!A{VL$EUtfAsFc1@9Lrq6{nK<q2mww7yB@2M00hwSdRSZ_@vajRQDk5@XhJ_#^U
z;~Dgr(AV7#bNl)>jkO#~KNORk{?$DECrmHXg|s%saG4Lm9(~gOty)5U^duF|;Q@%f
zj$Q;<f;V{imF#9S@W2W1z?WZqK_2MU5WpFj+J-2XUGPA{{pLedt4c?oAD*vP8{%BT
zZC1<@_Ua!VO;jFmLk<T~JbHcpvfpsg@N48XRo_Au@n@59>-AN*bP88ys7b`d`1%|i
zC8>F_jy(m$aS8Zdmc0jM=|Xq>CJ)+i%{;{+Bws1KXFp~=aE2F2-b1|*V;#bS`+i2H
zro*_*C{8iqb#|c9^|p_>BU5>uM)JN>-~nl73U+Y16O?&Mtn_-ScO=j@q;69=O$XSe
zzw=7!+1;^w`+x_xRe^Yy?!DbqvjL%d_G)Gk6uH=Wo9A6QM*@^c)U;;17?>b_(Q=$d
zSp{;@REC;<ae?qlHVeMJ8~!h(V;&*yZGq)$-?-mN*18-w_zN)=DUHR`-jzeW3>o)d
z-1)yg`UXub(jL%)C^IXxagGh(t$q3k#W&0d$;H7GZ6QLX;4u!<vY7SCr<w;2H#PB8
zzt5)fqY*QDL_IM4h@}d_-8u-fiXMPv2i4~TQaz^fx!}h2)V@`TEgmq#b7(ussriVg
zi>N`oF+TK>-NHOV(>_WnhNGZPZyl6lPCW&}V=&QLo1<OJm(Jva7$dOMifn^~J|<GZ
zj>^`3HK+87JTIeuU=#C=L177N5;6YNlL81`8T(w7Wic%HdQardQ{S5$MQwB=fOOmL
z%|J^iH}Ca1HUWUrXy3K0O;DOPJt@(uc2)(Nq2>fghS$NIytAhTFkmZ@EvB!8f8SVH
zk#OZ)0{h(_eH5xTG=A{GYY=@yMhWR3Udv(RmBBoVK%O13sU!I~0r0OtiqrEIXz6;S
z+cekrF@<fnDfAK2YV|T&w#2&7H>(U>6&Ra)51!>z>EX&Ms!$!uf%Tfgl{>ScL7K|{
zbL$Zihh+lq(Oih&u4aWT`pmSimtesf=q5o_@)bghhe8@T?+Uy5xRr{DjlScFjJg9B
zi#!9u8o{cEl%nmCy4&}p8L11fU_@crM*|GAXzA&eeiSo4U}4eN2Ho478bh8-3pZMh
z-0Zhat+G$AeG41sF>tXl8o{ioPa|uNEe%*?yy;1YkDbP`)s2mf$C~@y9*C4_&-_-i
z3F5!#Y9-Jui=MeJonmu(bD0hqSB)-?9L3(8N#n>t5d9x5LjAX|c&?qzlAWV@i9i^h
zSPktEeUsp?G}=ff_GVb^$$gx6eMLo|t`rqH$DXKLr^E<#H_a(zjc>4I4Xj;tb?2(c
zoL3ygm(CgeE`q(*{gA}F;ODVSuEyYsLk*1yG4nzM>x40Fj6R|wi!OfSN-u*xg{2Cz
zmfMkj^h2Xy_^9&rH29MVUW`QSq$4k;P-6McUtGznIW}gO=`4nmlGBH=yJDg$eJuW@
zdqm=ANc5JxehO+Z4zKAB)>x^<q~%j#jl|m)Q0O`6As@@v@!VZW_W};2D%gCz<{=Z8
zkSK&)dE87g_;Afp-6-HLzm`a>i&4%cCY*t4C}2cJHj)7ova)2v@n+4r+u4z!vR2{@
zge7z7E?u09985i&ELb#cmx{9CO>cIn?}M<-CI9(03e;TeC!jgZqY@uAPt899vP*-H
z^7I%c8<`+@OlkuqJk*yRUbCSr7*z0;j@w7ufvU0eb~0k?;4naUl<9Z#3_R4$F|53<
zY>1v0Qnhj%nbOqsTgC1_?H|Nc<QF?<1NqGX&B7=$Axte@38{cCi(0K)HJmK02BdzX
z>>ig;KUYQQI~7RhDzrW&DtgNq1v#l&mPu+^)vTLUVdt$;>W<yvvjo$^w=F9DslyWt
z%2n<WIq|&AZ5?^JOp$8mc=+ShMo}{NEF+cA=W&Cx_g^_M6uhK1iR_=LN^>6G=;Xg_
zHn=*}O}J0I(3Qo`-w`fZ!`ViO<l%@L)b=z{fH$ysc>ZWHp55tAc<Bn9m=lOZuR<Hj
zY!J~i#69ve83h4xv8LP6d~P5h5_+K2W(2ZlkLy7aWiLAzN|8@x;&?cH={_6v(kN?f
zyKI!VhSoZ6&(yhW05K&-MFHs(f`6#xx~~}W?4+nyy0C+>V`NV*=VNBe!{XT-;4s_6
zwCxZitQ#W-NJH+YtJ-W(3ZtE>S<S6ngL}*ld}6qBpk8iYkAjap^8@%*U)k{o^NU&(
zaI{3C9AT~Gu%my1GuhZkRmjQdX@v4VY{F_#J6VIn2u-*jk()yvjNBVSeo~K0W_#$(
z!)?;|amAR?SpM*_R%*#ywc26MM03k~B10%Vu{u4EC{t@#b&MQ%vp|htr9!c~ACWn;
zyE(Z;Y;m#oj=UIVaiQ#!VjrJt;eeqFL~&Qswnt>3%4v5jlhnR~E%HU97f%}hR^6oo
zV3tQ##hjQV+VVc4CRl^{jB&S<^%77!HEu*)MikIOsgZD1B_8E8MpvmxJj<cHTNToR
zPww?knhcioxItTzaEC#VmJcP&AHBrWARNX~Sxk6pk6ZHcJg$Fv%Oy)T=R=qTy#?xl
zzOZDjb<!hJitBU=R=R8NNLF97gb@~D&nObw1;DG6m2ZT|n|vGzGdnud#J{;9qjegQ
zH&W-9<>~@O6JHz^WuviSL)8=?5>Jk6Xid>|*JXI7g&QZhcR}!JV|y373;0ti0eeYz
z1%*UOa1EbSQhKD}JNYbrV!<u-krHa>Kidvu6i@7h)z6jp9ha>`%XyjF1ZdnRbFM&A
zh(T44u-Xc&I=IIho}*bgfIhgdey67=N|n^rZb<?QVhBscx!B{f*#MikQoC5^gSF*=
zr30$lgDMgYPfR3HrWHevA_lm=wXmRjLvg`~b|Net1{lva(7GR)SVAy0O@*K?Tz|gm
z7AhV|%pe{9P5aP*o(O1ISxh?lY!`*|T%GdrpkkAq`6i4;u6#fTg#F{ZOjcz9`A5Zs
z((*r{V^&C)SM}Wtt!JSM#Lwl85g~7E3j7bKHg~aUe?qA^Td#F((y;p&R(^i8Mb`ul
zIMNh8OY%JaV5zZN_j}3ogpMpKN>v-J9am{p^YNzc84g)qmh?A2Jm`x3+TQ$&?Z!jT
z<CPcV=lqC!{F^F9d`wCzLpuc{<T)>p8{!gSr>{w!4u4%l;52RR)XdK0%+!`Uk}QF9
z_(2L|;`6(8lkw#R?@bjIjhv=p?X$-D_3kmfRRg}&nKKzTJH^~5BNP_#(Y5ZA$_$8|
z#ib-WKSzSk+DzY6+bkMiq@?yB8a>sjV}Lm34fk|6^P@U<M&3O1lf{g7v1Hs1YZKbi
zJt*CBS`@>``q%9kC3gg^3{kf~=wzR4TFL!pG;Q@}ah7PO`)I6Xwc`eLsOa!woJ-f7
zAKOTghp5xN>t?tNGBF%IbAm(BWNBTsrw8h^nFpk4uD84)M+w*pATiMbA+eRvSIg+>
zvXKvl8m{$%NZ(&Tg`^bbA4Z}4PWgF9kA#tUJidE(@Q#vORm<E-A3=i^f9mV49sQ(6
zm7j_<q^smN3zxQ+G=vslvT_)Lee360nB&?zG)&AEMN%+G2It^BardQ88<0D6H5TVx
z?|iDY+`kDm80&0Tr_VL(C8IAD7Zo3JeDVKLE>e0c>m3tO7ZJ0rS7#(M<%`xuBNEs)
zl2SX7CK_Cqv?9`-k9OucSBxn=Tj+Z#=qt3{NzJ<trypszyy4TF23htRv>bfPFNYz<
zBTxq|p=**Vh4%Y;AihmLUewfob}MVK0PED?sK{D1{vJm{M7LqQ>i|%IEz{WwaH;dn
zMn6SN;I2n@{p%W%MMDBUJEO3X|F1=P0Uh)o=XL0B{8zWm>yy5b=`dA#ufN?9<?{g1
z2B(L(_<IGdd-|ZrxR=4WjEW@6<6({NXTM@rNKcXRT3q0?vG37L?$*@xV7lS6YVJmH
zK@B_V1HOFzk{=KADj1H>Ix^Xo4WcU9Mq_FnFh}Sm=PZwzB7*1-%{X}+@KfE}g{Cag
z+dR!71~wc1tWRT6uiwAd>;=JU`C--3?&9LTkMH7Yc}}5AI$^&yq=W1EIC{ivyrTGe
zRlAEBJ+p%?iTegGddFLY35lz9fb5_cY0iE?1wyN^R8*Anuth;uOGHOrZIzsrwO^WJ
z8aWHP%tpPQSelDJB{#zWs8LnPL=`h|%pk@)nTu>uVbNSfwRtxO;9+WIc~N2lxdr%r
z4-Ip4a>_wWt&)w2g<_VKKM%7NvuB-UPz@%IzOeW1&X)o_`?b(Fuwl!7N8Z~H1d5Y-
zqYtK(HrY3efVk-ilVW^L?!W;EZ;yAHHn2VHOd0>RKSHdEjH5!PI_TN+$IL`OP(Vc`
zXV}S#6>0UeLk<QDCGr5uC*fOYP4NOrg=ePwT-vM1-wR1OS?Rtm=dh9{iDk<+OIO?Z
zm^kk*29A8pBMlT~F9K)Xe|_7jND6X~;u@Ub@bCq;W--}yk^UXyb#`Q<kib!&4TmJM
z2VRkP{>c^uZ<}xddElo@%zDR=5hDCBe=~U_;qf+J#^5~Hpsc|$jrz&{j~Sy-rGH(F
zh$c`Sdd7T;+UpgF$2qYFpk2A4@!BMX_6O3|Z^`W+|KPva{oo1Y!LOS7>G-P#so6MA
zWx`bojGudO#DwK(bO)>+pbqZrIQVdF4qGkx(EJjy5f>uQ#i$V)pU-o|t_GE<i3Yc&
zU-*ZK4CIv3NJI<LCH}?I`N^S#N(GNUu50X?bqO^`KK*3y5g`<TO;S%iLYk>1+~~@$
zbq-;H+s4aj^95XM*<5$Oh-Wd}jX`7i!?*L-ANKc0t#MV3mM5)gTJGwf_~%LeIg@Rc
z5tuP{%00l!gm#i4=&wp4Z61u;!F_44?I82^A2gHyF60OxMuJ8Bun&B@#xQcjQYppn
zt$BHQQ5yEWL;m$c{`zJA{YMfYMspl5LcD7SUWB+MgGA8G2yF%4*}pE=zkl^#{;hZP
zkdvb)Djo86Rn~cxT^NdalskfhgTI#N9z0oNX?eB$|M1?H$W)o(=4!gePFVxx#ERT<
zc1jgHRAtgnjgSY%SpToDu7D~n`NiUZd^fe*CQ;vGrqoc9>stQNMI_EZ2EjsL-zR3q
zKP{p<ISF!J-qUmv7rDzD-u*ieRz7&p3p1jcV{fy=;;4(H?>sr_^Z3h)_>bf*mVG!u
zzG`p02Ck$eg(n#|Q)h?YWvHji5BwO#Ec>TF=b!%`5pwd2cDm4(4N}ux@w{!~&El7H
aP8Mn|z`eA{F@6F56Bm&d&J}w0`hNi{D0XN7

literal 311380
zcmeFZWmp~A)-FnLm*5T|xVr^SaCdii2<{d%ND|x$PH+wG?(XjHuD9sk-Rb_$-sj$Z
z`}{n49<mCkRclt&oMXIJgvd&ZAi(0lf`EV^h>3oX2VNLJK)^mgLjphH8C>lH0fFZ?
zd;eZm?EQNp*^f5HW|l@EAfh2LDp0Bly%?z)-@fph`a+AsG{S(&gNnj@?<69^xBT>$
zpMn_DFSL<{s>Z3z2SE#6&Vklv23d}V#;=h+FOOnBgU)GF3U;Ti#KWe^=IG%%jrp0=
z{%D}l8DzwKL+mYQ9vevQ8mO71Dl!QrXMlhk=)@}+Ss&cemD6+5!kryxkbd3!>$59J
z{*6N=^4clB`)7+$6zKC?5Ta4!T$r=lT4X{<kdhUNEC>+f&4$eh&=9<K*o!O%{$R|0
zyTI2fJ$8w&31w$GI!lSIA^D~JyQ7Rj(q|D}g^BsV%uTNZ4&Gn{cYv5O5?u`s4x;iW
z!<OM!e&wf`Hp%hKjXGr?tR$8qpf`Y~-p-&fZ_V%!L$tYjPKbEc`e<+H&ughW*%KYu
z-LnmU?nKQUN!^Wud>uOeCX;9?;HFVDy)+0b+pw=~J?1KpkuMFw9&!h{9@?c<GdP?W
z5q<lEaNbR&gB%5vevROWSq7*yUI!#HJ;qj0#}CVD@pFB}rja=Z%B1YI;qxrm=8rl^
zhO?(MF;DxF#3I>|W*A0Yq=J&ZGe2abkzvZnI)-j%%QRyKcQPcMHqyftF-RhpVb`#}
zbI^$9N22FQyf;w1BCWmkKkuwI4(0et<xxt+OsAPZSeP)Z(1En=R|VHucq4$X=Oy2<
zq6yx%g1os<W+G_kQ7FFMm_<Y(%!!dJ`Y}W4swRMeTyjW*{~%Qds{rRSIa&)u{zUgU
zDa5E<AIE71%~HIn(YqU1<X1C9SPVY!Q!HPg%6;;ReimacQMwDhLJ}2#L<S{CXXbb#
zH%byXttt!t<Rc1w7Sshn=@yWVe5Mnqx;Y7xMePQMPEy{A8f^axbECyQK|k81M+4La
z9($Cp;aqpK-Njxv=K9&)>&s(TDG};-eM5f&Y<2(G4rF}>#$+t<%I<Jm?*+_ApJ{&8
zMO(5X9*#(xt54*g5Zm6jISP`mUKx&h>>|lUK%~g>DaL%RJhu0p=a)iy2Yv0oCySlC
zF5Cj+9OR|y0&;QiO0Am8+Ep2g&-B>}a+wDq27fjn>|4-RuwEy=hzW<03oQAs+jsX5
z6b4ebeeCXe+ak{g$K~`swAUgMmW)o&7Om0-n5FBg_`15erEZ1j+{E4Q3--(O9TD6<
z%XLH{IDU9OVZSllOc-#^ciOePEj*w`mX2!9e8nxpq(#-&L!(=|f+^6m5_~&Ef@Mu-
zZ4J`XOy4&>ja#=??>j>8wT@v4*>Zf+($Z39gZJ~5&--lK`{jqO*&)A@ka3V?`tAO#
z0CB`P9q1F<?-0(3#0(IzEr>(i2ri&H$k2i<SjZ4-{7muSnZuv<HDPo75_AbDAhUHL
zRN>hCXmz<~5Uzav(-HBYa$7lVVJiLiSLif(7FQs4z-(H{!39L2(Z3T124m}obG)&J
zMm-e~`~v+JQcPI>EBuGBo-YYKpjl{Y0hS-CiIsXvdgL}(KEB%Jw<ggNMLNT|4c5<t
z{1KFx&bA{O9a1h!hZ7|Ifq8_|6r~PXE3jCEdbH7$)(xleleP%=D5fbNB!gpEM1p}d
z7OH`PoGNT=gjm_EDvWZVl0K^{n8%PxnRFrMy$`A#&QMFr3M^vxx*absL|Qm~C;M9c
zsd@u;bExyG=Zy+zjIN~Z+Z$w#Pj3Yw^{Bqb%L>nkaR_q2UCXnt(tZ`qLbVFfwxuUS
ztq5igmIz4-z7GlSKwKly=L`A3^p^A6gQ(nFf_xuE$vOTx2`-^J!9B7@6$KS$1$zZJ
zB?&pyf<YB(h51Y;`NPmTg(?|Ct8&)aAUq+AFS${1QO;j*d*XT*H)PQ8LuorBUyJl+
z3}hDOPRI_)AIUA{6%=UXxfet#VCD}i>6Cc!KQ_3<-9aH}AwVHicYz}$bTNf%;e_M-
zWL=WYSHv|ZVhvE|*AgzuNd3;6-ZY(M#%1x51tQU&rJvP;wZyb(;*EuxMOh`88M;}F
z8U9#Z;bei-RQ0H_#d)QPMVtlUWK;fP$@_7;$&j($NwpspBHMmL%v#@y!>xmh`JKNX
zIW02RMVev_e(TCPHG?zdHZ?I@bo;=g!4sh!tDV2Z+sM|)>#61G{0RPNcDH#)e!;zq
zwHP?`eS0Ks9BIsEgb$G!y9<X5ui8*`u#~!e2^*drngtmr8tZ_)#`<LRiyoGKyj9Iu
z>Cj0NiuHyr%aG}hQRB=C;l}pMz<b1PBzkNw+Z%j?iJ4Z8E|<Vlr*-9ZFI0sn2Go#V
z$S7vA#vF%n{&AXd)*Nyv_W@JmC*wC2tj4(msmvGHG{T4mJedijCf1e&)^yCv#!JRe
zy=_x(mh_uCy*}T^qDkZ!)otSRllAjbGZ&O8GZ+0RI#P`)N|;KR+Aq{7T%Mhodpk!{
zo?qc=Y@yp<Mq6G~-Do0G1y`D+uVUsrm})v)Ib6MLxP0Wp<-%de70s>b^Z}m-Unn98
zk6Rd7*d-D<G7rygT&z80Q*lS}aAH%^Il?yeSabW~V;0aezEX=+hdu1At$tfCZ{I8~
zDBj1KzAZ*5E?LA|xUt@}o)(r935ZB!{^2!2?JVN_{oeRmgMcNnjNtRT#CJ_DZm!}y
z7Vq2}3LE4bsT!=AF5^cBvIowWz>kTJIhVQ{`EFe9&~ET9ZpWv4+2@@jk1Iy2GXpZ6
z!@M?3R=dyVx2AW8Ph>8a_m;7B30mOt;9amxu_>Szuy3M`hWqpnjT+%U!hD0ohjHt^
z(i_%ihcsx_Yb9;9BCaDoCB}VE@JaoX@h9b=s{q$egU}Z6<e%)@RRWhc;%#q|sic>&
zN*F7;SnOGA$`-;Gf>01q#)1ROc4in2R3aNO&G0EB3O|F&CFf1bU1wTl=6)c=6~V*g
zDfU>1!kUgxV5BXpoarrd*I({}=%kIT$F;$v|7;^ZA|C%mHs*wmk;6_&-(;*OOHC~9
zTlhDj-b>1?=ugopl#lE0yGrnvd0GtwPe0+JT9Hd9x#)cx%}N#{C$o^+lH!dP7nPD+
zjJiv}>@3*0%(WY%8oRr(eBye76G+z$PZ!xC*Ch2wJc?_gdQ=P4>DmiR9q<__AJ9h8
zsFb^)qJC!~F;#z%cc3*3#u>tSZ$J4_!9Ft7v2%89>)m*RnJfNl5wWr?`_SR&Duuf&
z&D|l7x8C|*p1uSRUu|M$d%eCnqTgZ0Vm75EGF*<Zq?oOl6^-NP&?h`qQdI85Vc)<%
zh2<n{F>enZBz7iNS+Oy3TRDy6^>e~)I}9Tv)w>fIX<s!gZ`BXzus)YSguvloB+?|;
zpNz`r@hM?iU`Twnp*z#6G-7O0t*o)?%_GH)^`J$G)}(Qyq@{jrh;F`E8!qN6d3M!R
zyDP8WOzmecAu2{LsVQU9-8@p_DhO5PQRi`TJjCfr{Ko2Cl+th|nBYDe>lp1=?wGPq
zGBs^eI#;USz8#)`TM`Eqb6mnutSWzM9i=-SGw7RSQ5|ndxp-z*V7gyqr8jR*ZAH~z
zjrtSQ+Pj=YPo$rIK<9@O&LPd>tx=qd%JxzG;-HeYl9GGaHBE_dfzc$7JNbdtGG;?b
zQ&+z6yw}~+7}$!>LCd+0f_J0c7x&U#<a60Uz5RA{5mOOy^RIKeRi2IsjwzSDm-r&x
zcvj{oRvaG(ZfA<ux4QdfcG6V6zJ2_-+Uu(zlzWFu8s3=8EX`-0xZrRtIhJ5CxSlva
z^l><q57X^P60Tr#!nOIloBl?V!|khU+0nP{>^bGgDUxQ_2dAvTilVFX>CHQ*<Ey}k
zQGD_ea7|86)|<Uri)4$qViE1*8WivKsX-WaZW|bDp86E~`^l6x?zE$!Mv)qok2?2W
zvta8`G0pSOP0iyK=O0vTRrcFwf}9CY2^(FKpKt81+sG%#jbsK>m3i#lof^n1b02SS
zwioH&((_(oJbynI>6ECC3wnlssHmdPFS(Dom~7e4wt-(hxa)r`$$8p&g0it+_Ht7>
zTRM3>LK;A#B}C=pePp?0-aWsgztX{J`q;dL+k=nw<s|D}X9)--bz&-F%f1$fY}Bjt
z)^lv5hO>uUir}+>AN(tPdYjmCa_?T{`G!BRr!GRbyi&CS{my2&*?eN>3xdyTo`;w^
ziMB27O5A4OGNsE|*XXvUdGcN^m9zQteK$sr(qe1mVKa!?g@->Lf&f4qKrD?^#f+t-
zK&XIiXb|vMI3N(f)+^wP_Z9A++rqCXK)`<cIVcE7kQoU0zxI&^USIxw0lr?|^ZP4k
zI_MvJATXqZ{jm-9;bqqzTQ7d#1;$oX%^m~<gY@O=m6-h76A%!75U~#eiY~7X7NKg;
zCLe1~!Diesxt-8(ox&l6I{o}+(97Z;4nodk4iH#zEDlsNyXbJj8!hxh8imR-<XREg
zI<A_JiA|F0ot=-5mKvp&&fmqQq;T3BZ&d^&%%1Zs(>>l@-rq*a@WRAip<uBe^<T}F
zYAEr)f<Tk~?Z5O0&}C2drih~1Xi!*+5hh>C+~gld2sPEfcj-RA{})x$0tz=k2q7GS
z#~C8wa`W47vcVgk<;A;hf9>{bD;vBnR(-|ekI(q^Y5&z$dNwE|LzUvlCHn6}{jc8q
zYv=SVpI4HkW}1JT&97npS6j5`3_khUe#IsKx+wqEn}6+03IVT6CAJRw&#sMWKL0eG
zR$XN!!nDe-GyVUy6$<O{c)OkUna(!nFSq>Hfd9X5jmY~J(^|Fs!`sF0D-Wtw@31Rx
zo^bxpZalv)2F!2grZM3|P5lpV|NouR|8XMxpPJIZGNna#@cd^hgMv~QL_rJ(^Uvb-
zABX+F`vt!QuuRSK)A#?`wBZ-??G>l9^ZiE)D=NOF#TQKQ`RP$(Gw-<Jyx6uKfxS|E
z9=}!&ES~GEV7-a*AI$B_1dvt<FepU$_3p?L(<B8cR;5A}v&W}L_K-{RDk3tlcq%t;
zHL*YY#eZL8R;KAnR|9ba3B7KJ4;rs+sJSNk>FQag=AD-x*W3n+9G-5s0}$8`*n5ri
z_D)_&O3>9B?#x!0*q7)C^@~K{VQahXW{2*n|C2EQqgJOI`3@G3p<!882SG0&<c{Va
z|Hl9MFVp0t04?4ig0l^tc|i8O%=6*2Tkl||jJ0U_r_J(6k;YF3^NGBZIg66X31N+*
ziA<5m(k>i}PmBg#pWKgXbBoyao#q5|1JISBD~7l%u-L6NU4TQ(>me;<{q6S4*7Lh-
zZ^zB=@8%@Yd0bAaZ2qX6EeE<T6Q1*e-FJyNy4C7=Yd9pH3)uo2_fX25;Q9Nb`eSuZ
z4cgh3%5iDju1G>cFW}IzEbDd6Z+!LI10j~0k@y~LYc8iWyoE%zzW?Q<e$9-LQwT0g
zka0mcTC`Yo^ZYtEoDN04vHaXruBC;dD*Nq?C>a9o*mB<8NiKy1yDseYqbaw8lwH+D
zl|L3_dIb#ptXb}eb7K?h@fE~&8lg3ToxRjPeZ>HiU1NfAVtzXm!{zZZpRF|S{Xs?0
zXr@RIrjAEhj)7Bl1U)|pDt<MYWc&!#D@pJ}yCSKPB^ka)MRaI<lwDmBq7<ROO)(0x
zk<{ti+eba!V3NppOocy}-1HL7a$vOTox-R22|X|58giP>`l#Fek$B^EvIlc!e_B<~
zl37Q#giS%~z7gGP0YeI#Uv)0;B}=+tW^O+9yxojjjn%M*$xZ$!KAT=FLEp$Sz&!kJ
zwdm&(tow1JbHU93&-KD;X*(jE=iNoGHaXkH<MlF>cEM_UP*6X8bHm>LwDRmM;@D2z
zelhOTNf2N30`3tm%7Oj;;m;r>-kWs8#-VcEla*FG73_uF3J8WnV8_)V?&HEc#})gs
zmn8s9?W~Fh$)nuA&4}OcQA>$pdOIWoZCS_bugRmOSd@iROu8*TWCb`K6Q8oyu+InC
zb+A}W&r5eQK6eostA53O0#=k>d-%RcTl3RpNx9V^@4cm7#USJ-qgXXAr&!4tv-R6;
zonSs|kGtJmGpDN_Hz<4u*{gR_Bb*U(9o=EK6i-;^!1%I+qzI6>4@PFpN_zbk;IG#6
zG9!itZ;if<?%rR{6Gdn~^)Ddv-flz%;&wX6yt``kcZPmhq?%syR?j^pdzF8l4L>!s
zWc-QN%~g_(h4t<IF}I4X=O9#~#_4vN_YjZ0yzd^kvbO6czes$7Nh&9#s1i=chm*0r
zf)WC-_#MsbS(7xSpL!O5t+_34iAPY1&wtKa*W0dzkaz9Jz2g#)T&#DF^xiLN_NqB3
z@5k{n;iA&nRAFqqnzIP{Oy5*9YU94!0&TeFX1kr@jQBnf9_IeI*}FIWi;{{KD<t|L
z>$IlXWgRbp$4RSR^Wzou9GQO&@;k?iQIVkK$0KLo<u5Q<<)3c2x7I$>Yk%`IYJiI1
zSPMRxF^CMX`ngzbxH#10b1gEQ%41N9d%PK;2(7(#ZxpBH1fyZo==k8-^zCu|-084t
zIuO8Be9G*>`L9{`|J|CbjO7nP&=rT06yfrV-;-McrXfEFVkc3~o)FB+tk?ZvVqp)0
zx3$abymkaFuVl(8J*!!xI0T^Fh(r-On|@(a*0c*KeK>1uhrraFF}%3W&q?HB2=y#u
z>Zhpy7w%CviiyD$jvz!GdUrk`OT+w{-Q<=yf3B?w-(kep4!3hE1z0m{WhG5_<_Pn=
z)Q}FF`-9BG4R*^K``z&m)yc|#7JKN`!a#ebCz?$NEWKEJ4`D*D-R!tN6{mbqBk(1U
z^FfB~WP8YBS7kM$n3E1v8MH>S0d|2cdcU}yr4G>{9gkBXud?yKHC%qOk)`Qd_k%JK
zj)#->ipN#<Qj=6yGKRb*P&gW7s7HxrJ(P~|dgtT7)(5u!J?E>CLH6Z$$zFH6v&Zfa
zP7;tyUr9u|EchUK42k&4_s_T&fZ2mz!SmDcO9xQYaH<zR_J<`6$PNRG!XqUo&FgNY
zK&9lsc@5h*o_N9YdhyiJZ8Jut+%Xw?6_`m8-o1VxtPeMh(dBdI1p(YgH6&kV>$RI#
zbFCadiSX7NvKWl?M_{yk*dq0dyU}_|v?vY{kQ_9s-10(jRNG#3UJjp4;_|Dw|5b2*
zZ87Y^I^2NdxHYjXWNiskwbH%xp7%n}4CTtO+G~M_>ydmYA~SB!kJs%l<+*xBUpC%(
z$<+XPELuSt8(5(Y!iRLFEf0DnjaOmkH+t*4xoL<pytl_U>yQF6)WtRWs(JyN>qxlG
zkB3WoGo`4YR+!WeD~x(=*LEl=OKz9yOiej2oxL5}***~HadoRfStM;LI-W|Fm+_Q8
zCL&QD;^kBkIdq>7c+O9|3E2(h-Dn=}m!Bi}ItnYt#1T@Cl;OY`S4)R^pD~9x)(6_i
zJc@tuApRg!ELL;HmEjBkH$nT6;L^VmGt_?*ybBx(DVxdN?lBse30o42`u@6=4$Yc6
ze=GH-`5*}fK)V|$#Adp(tlQ0z^74PPKYZ-{e19{K0(N&;vmUV;N?qIo$e*apLmUPi
zo6!p8E7`+*&+jZNM}?)BnvqZJfFj&2sfb6N;N~*qgKj0)gBXpZz2@A2?=(Z~alPmq
z&elA@)c+~Tx{eZZ9r=qr&<>!y_A4IVoaFL7Qr0~%nXFB$wEE+E`SXw=k9=ss@wH-K
zuzjz`n)WlJ1&YuE**_LqG@}_Ta^A8+3NJZt#`yM0+!3bctv$xI9?jpT_8%9fGME2y
z*L2R_Mx(}xOC}p-R9*p`k+y0=em6go6x?avYT6P;EwH%hZjVDByHzr*+^G$QoDH0m
z2X&vO@j_m2&MbFukGX7G+udlGzQNX|X5*X0I>j+6nItrQ!--(~xkOthrp~v?S@&a|
zJrm|<_EVr<bvmjZH{Bn>nWS9CozyQs^1i#A7%%HWQ;<Y?I)3)js8PRqIQ+TXH<cUy
zprfZde%4P<2o|N9u#yeT3$_KvX|2_YVO}_3y_n%;@9ktphKx_FK6XSBV*CLE_<gTX
z<Mq0*_1Un5v1l(vMm#mptE*Q0;JW0zI8}-&M~FWSL4$u{2(`-&xSS!Fwf&)1qIh2^
zq7jxikp8Mj2`jtS{rbp`J75~MsA_P6PTFBlcLj2ZdD7Ur({wceGa_>~hfU-BYlNPr
z`^k(PtbpY6!!{q7zu-x#mg{EB=cebG?d69p_Of<Ve`TzO2{~<n>-WEAly3y}3v@6^
zaa48+zX47)&=(Af4Mtn=h~E2Ff@8%8jHzS!sruqrQ85u{l={jW2<!_CPl!r`jug||
zNtWee4PHZRs-57|M*D>o(yGpjj_XynwMv{%(XK(u;4n*67$B`S#<(^Ob{GsDr)Y>y
zs@B}JT25OD&G2-hBWMEn0j(02{>$LKc`>lppjSX?xTrjeTv%SYi%+MA6fCT^mC4s>
z_Bw5pKdief_6CYjAW#5!En*F*l+-^iaGcieh+e-F$0t9Zck{k|uxh-V^3@fumhyQG
z)`^C(RTjoIVU(huw%B(0*ERUZq@zgZw}6wB$ButZCLoE%1tvexfrc&qRB_S<7x02O
z>7IdQO<?m8qrhWQNhM&ZG43<phGmUjv+a5~d#Aaf4uG-})-Hfi<EMH*-Rc)~uaw^(
z>*TFMMLDiXnQ@6J+mplquB)Gh!>G`jg@hBCUxd0m+l=mG4VSNSZt~f7My4OLJV)j*
zJ^*J=MUoNNW{93Z#=afa75~BshoC?cQ`xE4UM@#SX0TLs*;p0nn=;!K95UH$U~Y$J
zW-;G;(X2>>!zkufLqZL6)bs+-^?gLtzqVrSxU}D1B-u127_+;*{o)0*bNB!O`DKrD
zsTTwcmRY$4M}j)czU;v$F@$ZB{8a}nmoq5WKwgg=8dTAAe=Er*0^2&NP<0dDFNh6T
z&R7mHNHuFN$F<w3438J%P{Q&#ws<xTr^3lO70Pw7+(2)`DX)|cK0kjRq4O0&<6=fP
zzTKTF(s(CajBq~Rb>DcsMC}$fZ}n3PzA~fe1zARDCxI5ncRM*PI!?P-wK)YL5o(`R
z<=Eq<)Xg|Ye6KCv`%%ypA#>nNWqA&Ct57v-1t?C)1l_FtYC27Cl#UNRud&_i3@0oI
zDD(XZUg?0-^PF~|&X!j%sr=0Sb*p_qQ$*5vO3qa@?K<Jjd%h6AFqYZ#wh#^LT2ef(
zn^i^%(^S_j7zvuP4>!Z!Pvdzw)8&R`tL%jy#2mqwy=#g;@LX1W_0l}A%p4YnS-F~r
z?G9%(iB~>>M7QmGKpt|R^^mNyI_u$TE@zitFS&PHY+f{+d?g|)C(!bKygbEmuicD=
z(`<gaS&s}*+P}lwegSsXy_c+Ao7J}f2Ji4;E;p9z5x2jZHR(2cTD@!VettT2Ezxca
z)gE6TJoZI9;y&TpfIA-o!1qXn$?(I0%cD1dasu=auCrm`O8AT`J3Wz)@KJPyRv*iH
z-hBS_bJ>e~N#q7VjiC3+g%?MQ+)Kl{vj&ko7?CBajp|!p%U;S>L_v8<n|#0BIArtj
z)1i&`XYB=M(SY@)^$2c#TivHr#1h6Pw5y<d<^ZFSbb-~2ahb@9X8_c9v~t4jZ=~5b
zQ$p-BrtL=8Cc7){5}@_}Sk#%yH^F8$mV_T8;fJw@B-r#EF!>^Qf_bjm<@q6&@g(f;
z4CY^&rEdfggP4)-8ky^z!6#a-tn4-^5oSix@UF;$;yQJ<b%5IS=D?A^kh%z-s~X$A
z{M^7G`xF5coyRyrcI(E=>b6N79&&!Fn1{$WX4>|VnA$FS%0@+1Qv*2`2`iAC_*|4S
zJeLlmgcS1i>s_AMsldv*acG5bH_SZE-sGkF6NX5tgMwEw%-QIjyoPl^n*-qG=Tv4y
zf_EH+<$YA)esQWnD>&tZD6$_+V%yq!Dn0M7tR_MzCjnk(wnkA9kRS+?{Cxw=d5lXz
zhR0D?2bP<)Ectxn1>#1iY98Fk<HqnZxv^%pVjMwb!jJ0(8|A<3{Zv82m$Da|l(skG
zYtR~KsT453#n~-dDz7ItpMlt~a3bHd)bo|3BKLO4dUhZXrkp3cT0SWL;jGO}`+8DY
zgI0TdD{fR6XOMGH<}hd5>Q>ZeDKnB6hg-#tr)o@`T4>qhWDI}`I{tBUXF_%wf9=Gw
zQ6Si%^88>a&uJcKy~gvi<^@Ii!i42_Xo%(0xiV>3cnVkzA2Kb2e1*j!-W-<q)2*ia
zBbt8%R>GY$_aRzOv|_O>kC<?l{`9S8$yb5US4w9AM2QX$;KB<4R=@2O%Ej*Rv*3lD
z&H;mjr%*3RWp)OtKw)hVp%;g()|}?;d73wN<rj<Thbm8AA2M&kH_OIN(q6pd;0lZ&
z62Oh<$8s<p=DCIkpFoQ>9Avv~WPzaH+;6<wD>$VDlc8(87`qjkz0h_)jFCcJP#zXU
zmcz+<duU_cJhe`ii3OH?!tME;dS2HSr<{FT;>nRxlYFv&cvvQPGaxeHI`FLj{94U?
zcG*MYGI5JLq)@!1`N<8w_zg(dFq60B__eRm1fxs7_Fi@7UrWlruAnTEuTCJt4-pIe
zhHw^j<^07B;U%E7DVm?Y<@O%pB#$`iG}XQxEeiFu1*<$EGrc}qG?)ZFpza{pL{Z<6
z1@!w)a&PeEBt~^Bg{p&-p+miXfKjDRA;UKnoS1OjhF#-JfG#N&x@EfBG+sJQaYjZY
zzYvAYO<uX*d55o<f^IKq96W%371}wwWLEpAOQ7kSAH?OLx$qBa)>mo{09Xi5-*lrt
z>elE+JBzGZZtx(GCJjv)TxYr|=CGBIkRmJ1cUW02vb^AGH5)^%8qf5FiRm1m^LWe{
zc8#rhEe=iT2JrY%#q~#Zg{+{C^5kSgV!e3%J#}G;eQx%{JkIa<v<$*oaT<@3m&=pe
z>=wPBAMHMw44J^V>3z^1vcM+t@x@D|cG#P->&CB;7T58*HF5!Z`Wgr__~MA1|GAl8
za!pr;!iS=OFhQQDIP5q?hA^l8oe6L)JIUnnTmcC4MdAF*o`@JOFgpa_LEvOjF;sPZ
zO95uvWdW;=Bz*bU&G$5#g)KQNQ>-&{`~ZUOF!RPXgv*8JX2oA>$^<tb&8b7|e4M0&
z2Y*qX*d0Y$^ZDeCDZ~1sq~ja_qpZLgPqjBM*Lj4<IhXD^HY=E_w!P}C{)BU{Ak0yS
zD12WL0^F)Q5FT@yrMEO{ZbQ?v{;)b+CcnE%udJ;K>5{{yX)Do!y3U$<YN*6j+g)pW
z8!C$;2BCH&WncUW7Vh|kdUM<_hV1h*9oc$zw-CUqwy~nBc}7_GP_*k%9dyfy;K!tP
z@&9<i;KmxOOKo@iC4{lS1+#Qr1qX8gdKmg_b**sYX&0^m5$wKwWAEj@&hy<g|HxGR
zaT9KmE`O*Z)olvRBq_CRT`YM!%l%v;=_0BgZVY%rw&(4``S3aqW~%*jgvDem2B<|(
za589y%d+ir1pn)!@0Mkq7^fA|kVcSvl*a8At&K!pCJp<=_4+yMl{)Yn@#UsbD4)YL
z170d?XvNK74F3<eSjQ<fa(BW_unPc}c|WWZuJe#xoxhMTfDqUcwIgc>5xAMI5X>jr
z4`DYumo%L9xe-WbR^PyXOben>01y5O^SL#IV!>N1JM)14{(ULIeSEn}wh!x5+MAj1
zSJCpyIhD_UsnEYP0?9g1{LSldF)AOkG0*y{gP!rcJwS0R&i@Vo8sg&XRwzQ{O5XYJ
z=UQ{tLe!g7o;RyOc8|dC7}>Am#DvwhOH{v)uL0^0GUn(iGdkB>HkC6+;}k~>u=qqU
z``X`uSX6L}vW8WH<J^kKdOIR_!_HUKhG;Hl1|El<XKM9GHn$5^B07?u4v?H2N$|F;
z^otycd22*pzBp|+Gd3n#UtDlf1Z<|a5rUGohywU#hPp$(fSNL|n&y+hqR*I;z#+2;
z@a%S=wGwi(jDGcd1xax`Ans5t)@lP!V+(My?g&yt><na=4=qx)f{=L=qX0B(3c)V~
zBsM&-Ozd&7z#&R-kkMLyw<@&i7}$I9bVVvWsMh!3UX%3<R1B@EXpoF6j%}%a+-U_`
z&Wo&0RQmS^xR<c~HFoRz-56X|8*s1W9FSKpH>>)Zwez)cN?+Aq5Qz4}67IGLLy^Iz
zq*~V>#tl?EyveM<P^;mRzdfiJZUgkj*HfDIgO;|iT&+Bp6AH5?86<}#_Zh#6B!4!j
zKcp4GR*Lf)h`C`k$5y;SXtB8LSi|`cZX6?UGeppeL~z05Wvc<K0u~=iQ8n$z>o1li
z-|It^Z(SzB^pr)z03P$@J7o+ogD4=0G+)5foXv||)s640>14AGF#q0S7?=p+8&dRQ
zmEOA#_t|}b!jXa?{}HH(EN;W)^zDHNpIeE+W%0cqPEVU4tTv%wJph;`!Mbe7EAU~z
z=%;paTCr!6;*WLs;!}myRH5vEeKXJiiiN0r5s>kx`(r|=^zTxjwKb_S0iGnEmHNts
zWYx<+$oA}Q{B)U)=r{U<QAj|K0SWYhpFAHCY&OfCtD$614Z7_G5|@*?Hs_3eTPNej
z3NXNDF_krE(sVzpI%Qq`IxPM4q@tW3fx4TDcHioW*W_FiB&W*N_muOv_JoSv2BZB3
zIkK(n0MJ@}-I;$8%U>k!6~s4wkz3D9i#cLKbPCdus{M|iVr7W#*;Bp4GW#;|BR6F3
zKqGZ)`xJr?wu`JLA;x~*Uo<SWt?zB7Rn0wX*lg+ja1)Y(-G3<abVHV8dG=9BE9cJ}
zI1&m9?q*A;x~~I^X0}VmbVs?JeA~9ubZf~?SsKh`D9!c!aQ-5yeF56>^q|S-!IHRT
z;j##Uuqlc92Ug66jw^X6?i@fk+av34fo=jHVaT}1lgliRV4Nt)VOZg>Q%*OK-lO<t
z<Ii6#e#O}=O*(E^FAi~y))2kLSZ<v^O*y&x)e+7=ZtSDqq<nAW+~7OE+_ADKvHV)W
z6&%u8On{!V2s*7YrTtY51>n9`dSmf9cJ!MVb5NHtu3M4vM|rHUw}cJRd&uviKm|FL
z(B8J5p^0|X-L7O;((P}S=#4*Ih)!w4`XY9M9wBlclv?V3^I*%2CQWoKfH~?l5$Hq0
z5alkCgJ%0~>z(z@;-C`g_8$3Gx2m!swtG@VheyMz#pl(mLn6^i7|naMqtDTIwCBMj
z5vH#jqUS^f)bZG{7tf6VVX7}R^+lX>U`1`<dw#lZHt`1dpUA?thcP8ng#9yBOe~&r
zU5SvaGL9u#mBbh9gcdgdGBC`HkFeBh5pvHzRa3{}{#!FUJ(xeqL|1=<a7?C3iIVlB
z(i|^);O9kt>3+}T8v|IrF^A)&MlwV%S-r;#FbVr`K*!fCg9U;?@?%a|2#u<>4`==D
zs50-=Eafs?0jlGAl}zZI>UmXr;93^qK`ts%Nkz8t?)QF3CglsLfy4(5=h6t7TTf^r
z<Fwhfo#-l%O!RW`bV|^n*za7rInF3ZEYuTWAD&kH-!EU@v1!S!Cd1)?dcOD}0ac$>
zNJg?0mESP!WJTa7*JJF1e=s499mNiS7kPosnUWtUZvu*#Gw9W<DZ=KYOvuXpfr(VW
zh)m^J7>rJJL+(hY58^MsJ>fvKO0UB~cr^dBfx8>{ETpc<v+dzcKO0_vZ_#k8dAZXj
zNM|OELv}fQqNJfT4Zd|?!R7pDm`PRhx<l#52nsAxF(;;$!{|Xxe)9{Sm^39>E-O&g
zP>|*{ViR|+-4A;qQ@B-)s@zsQk=LU*7KJDx0b~+%)1PY2m$rCx4)4p0u9px0Vlc{z
zujC{NcUZFWJzf~p9M$cMD_LM6uO$W+V$FALO2$!D3h*$60p+tQ`-jxn`TRZ?pAj!4
zAK#2f6+I-joxCz$@n;Ei$X+56OrsRXDVRv!JJW%V0Y~EOg*w9)EyqbEgT@EG1sTy-
zyoN?gfU17>xnh?xC;pA}wtw|mcUp7AkTMnHS3-wu+m<h{3o1?7u5~FiZN7zvv>H%R
z-lk{EU-MC!k?REQKPy%*I<0N<@yJ9{8lc_R18z}JH-S41ZD^z>eXcusIL5<q?~6XL
z=uQ0o3UI8Vlr$`gs@7N_0gU;PtvL~<-0EEA$H)=TBrt%fom(g_5s`FdyP}QhfAZz<
z05Fq6ya$a6hn&(8$hqd8z6pihcV0A$3b<Z$>&j*T$`danT{UrJlKk&*_OI0qZKvh8
z2G53|s}3NOITn|Eu;!-}^J(74i;5AT(=&`qGEY`6hwXITg}t59T-|cGBhHRZ8hdDo
zn|i)kmr0!0oZY+~@`a<F@BmT3X^jx3ezeOvK&+Ad*T;CFgFe{413J0Im8!PKX=mtO
z<HH&CYNYprLB*lkcTb2uM~~HaQ9~3Cir=FInns9C{SnxLw<~E%vXF0vck1(_VDZ1b
z7=<_8PS6B;Z;i`ISyg7p_7%?XV-htYH#O<A>`&z{&+&D~TEHeq!4&eD+%9(Npcpo}
z4Ij7In<=YyExo*&D-sY;H~nl?uK;r+fB<1yu;wIAQXz+?7&oz>q4O@^12A38%6kn+
zOKhTI)XgA|Ei|!tu)#oMchZIU#{p*nbNL?JI_BIWTdP9tFOXH8rbQP8pjj>zha<g@
zC+(4@)dbiE5%13OjQ7>PA3}76VMkdxytuLLK}f@?D$Jt*-z(%g{w%)<KuVSB;6pic
zHFk?Ey*G>0x&#7>B7~kSQKWFq<EQS^00_Z8CeI2rY^?>nwz2W@$lC)s&GDa3w}8GX
z*oV;xLT`xlBWnX{frg!5jMPdFs{X+ye^9Lg@m_<*hmsKQL!$?AOVB-xrpfj)VL$Cp
zO(&hLtt1P=_-z2kTCh+cT{G7-<sz$AjZ1THI_GwFHv&Mk%c)kS-IEg1bM?4~Bocn%
zy+NtGU$r^@P5J21)T)@soX$XT?N%a(E#fo#A<#Kbp<%Sw9z6k@2@-VI{C2PrQIYNY
zpB?T`)=x3g3eMGcjBAC_(y=q=kWt~l>uZwc$yQj}c6OR$2M95J5i?Z)(PlL?Ph@`g
z`~X*mN-A={5%p}X>K#zyb-dIcGiX@ZM^#|R-zl6ij1e2ZGi~E<DfSeUYH5s)>hSjM
zP3VwwKm9Uy7#8CjTq(;C(pYFfe-g3`hlg?KlgP{)&p!d~RGz+s@~_-kUT#b6b}}m6
zk1_?6`_sXn%M<p_ebq5Y^6CH!sE`ylBjqZ507RwJhi@$z9*>Ga-MMLATwi>Hqy@tq
zlDT4K(@+AS5OB~^-S+ZZf(HiC{lryECaT4YhHIHq0{ddFm%W=8*4Q*+`Knpu?aRWM
zL0S71R^-aKHn&D$^1Giwzqokr?zFcMIGAVH7F}9UJERi3gtU^%pS(V%<iclk<4CE%
zs!g6=2_a8q2;QB(f;@5gS7PpEHJd{CUeyf^n-IJ#t^JRNn~)zVFe}@-`inHo)%psf
zoth>tX$7bZ^~qdF(f#7(d!g>LT(b$zo1wN5BqnWkJs_>cuzhOi<;_48fG$`e6}4EG
zoqeJ$PHDkpZnqq`S%nxZ8kmvdyu=AfLkq|NzP?|t7VL))ke|-tnhnP%rQvbeXf(ZU
zH)qWOGVAdW9*qqzDcH5=!5}9QnN;1=!s2qW;v%^)Eq-m)bJPGN2)c>z$~Auq@oPG*
zkdgsdjA;h3RRSFE8*8$qgqf{$j#?KFMfn3thoZG?^6Q{I%fBqPUnj0Els*U=4}Ft9
za(e`%6fCZE+2%|$WnB~+XJZOSs6YWv#shxgd(<MJLZQ5vrVQ2#aZ=Ttk?i}0<K#o$
zJKuvUHp9reBMBD5mH{udjj<aK_obUzx+dzPowfRtN5FR?z5Q^jq;MmrA0@>WQeb<|
z@!T%XdbqLw8oUZnu)E|2ZirXDNzjFSz9sf2#Hz7tTK2jRbOut4OQj~O0D4cfX*2tC
z^uBBuHvp}`2}hgnN{UQM(hI~Ew~n>%nLzPRPg6W=eE@%p^3dk$Km|Tf0%!ocW>F$s
zlmOLx4nD_LN<e%c*2F!?GTz||K4NRFL&uGVp9;N^228pNIrk*XybgFK5G^2{LK@4K
zBE_Jvr~83lB7Y^vBPb)MNHY0-sbpCjr+b+nw=kOU2pwjJqUEFb_GlTTjNdSaGHCo*
z3zUOoroWs$DIcsuzNBnr8IZGNnN}>IH|f}a!CsK`UzI)!P@bji$RnfTr}ngTx~ED?
z4myrmT;e-}{Z;B3`3^C+&y_Yn4|F)oO5!A%=|149Sg93wJ>Efp(gGc_>FI9&RGpzH
z8tF*ve9VCNJ;OBwg{DZ3{BB)7Z{+PI_QWTmui|iE_rK8z0?29G0AK0{vThrbXz!=<
zG)4(T;m<VXqRHKShCXJ8AAt;#VL}cTOJ*rNJ{QXufzXew5SX6;Rg8U!Ud+E4S@Z(n
zsA$C)Y4-07x+AR03uinDy})vh!kCA!2;<a@6Ug=_ExOc9QetM00sZ_%f`+juX>_to
zO)q<R%!#!=2b5$OKpWF!S%2yWI5&ZRsC@k;hxHthX(*pp<W^HFAd8_NGoB=a)SnOY
z@xkM9Fj%p<(>NaIGVHrn3*wWhmp41kc*NTeaT);LNza-4&5P%@!@7NGLI6yCj%-QE
z+rp2RGf4CQHeZ^K;ai-)u1QNhU5=O%SCc=zpwkqkKs#@jatCvwzUZ<ZUM66@WuKWQ
zDQPxgi&0oLmB{!d$jthp8Sq*py97-t3rd>Eq$`F-z6W&>!j2(<EvRY(j(mG7)HCmX
zkC<|%cptzwr$$2TQv$7yF`X7p;|R50bZ~KHo9ZEe(58gHsa^}EW(m`-(jpoOHQ;)@
zU|zd>aQP~{WRO(}WEz@hor-={`jdSOU4}q34n>!&+lY7IuChD9Um<OYu%1_g2(8f?
zKHzhaDyqLsgZRb32u{ORvFvXsQ3~XkT-gIaKEP~JIMP9L4hWa66XM64QyPYeXKS7y
z2rzcS`U>Pn??nsde%B|pY3pe!QX8WfYUq0Sit<^oMVWNE5&q~4Q^V^A<sX$-cF}Xz
zi88iIeGMPF=|Q7H@d=OVxvK3X8zPkfY$rS&o6ke|w^XO^6~@ZlJBaF&Bn)h+KJ?;!
zz_33k9b}vT1O#)q`it9Hxdc?BS-yyrImxe}_7ebhg=&DOsM^=QB8e7}vbH<3`IrUN
zo}aB=%&IT}>+}PbACwoD8r{1OIA78(s(`i#DxkCb1c|LP_h!EzIB234JF2Phh*A?n
zJRG*y4GDDMJvCs3J1TE}4<hKxN$4?&BlDLkV*)53W)i-97bR%&xA&u=w8_0yj&sUs
zyq=(~@(cFq50@q0R(ktVDtv&YSZ?8=z1`-nXr{Agx9|Yj?^y=;&fn#7&Mq`)+~Wu-
zDkgZcr{IbD;grgoZ|`VRww%pDqg)Vd$?M0+(>%tq)PA@1@TaPNX+VG38d(C3Lf@C2
zSmNHi;!Xu@m3K1?`g0iwd>?2qD-aJWhMzl$2)u4qj2&P<t&2nhp`Pa6SMPwb>Wk=T
zQCusGx9bt7<rLv~b4n8Kk*Zt=IK*I?t}#?VPgTzsI)w^7A8t-xg^F>Om;wS`DWKk+
zuxUY_SF`LI(V#I;%g?wt%yg$<$llq)rhMyR%;mT@Y9!A|D<a8&K$>gobmg(^d2PRO
zD%lS6N8L?#@_j^_;k($akna55;RB2fs$v~8Az`k@o3+olN@;-42%7L-K}_J?u1DhS
zVx6PJ=L!)}hn-Ifg(H-qM1+t8HNafO4X+XR<f_VYJQv{WoYN-|P%`|GF|xbY21jq{
zkSY$9{1OXs(q4PG9Tg!AcPw}eLKH~0VeWb5OJjKW_?zdI5YE2DVN7q%a_%kD<CiF$
zMphuVrx>$0#+iAdPC}b`E{rql_INoRDWIMIUgbvxKo`61y;JRZ-t$Y-1|Vut?!TVZ
z8s|qIpr_GfMp@~)|JsTozgqWMm+9dC`gr+m0b|ODxMQlgRpk~*tAwHUTBF1^Z$!~T
zBP7@8m&4d;pCM)svL24E`_{imNB~kpgRR_l<ZWdz8+libM+k(GR)OK#uhMl%Rsx2e
z5Jsh-@SKP2t69f5&5ylUhCt(gAVnOAv-t!spkY;|l-zlVHZ7XZ00KE(1D*#+kerP3
z(&}C7056%{(SGlRJ+8@Tzu430pBceLg=as&82-byNDO({vSJVe>T=zUBZee`<BhE*
z+LiAB-%CKsW9Ss6=EDd^_6dP#pEf#X^%|e1#B0sia*3A+#%W!23t1mfmC*f5UR+Zb
zdJ>4BvanWG0CbCzRkV2`g7Q%SS*ws%mf5yI7*H2+Bhf9#?Q8y{^97*p>H+kkrvxXr
zS33oCsODH8wphInV0ReIpH7=Z1vKzvEWjB~pE|<_R`763IPX)%i@FEzQ`gf+o|^8T
z&TwhZYea;cK7#I?H4knbk8XfHs|L0Cuyr1g)6qWDUr$q5My0nt>?`a)#V+e_N?@Y}
zS&A=!t+B3ps?&*nF`6KD$rp(vIQ{DGNy$)gMysLlH#YW%S9b>^sob1nxjRkA;Bj-}
zqTmI1;-M+fyDo9UEZf~^@)M{H7XYur$kt_H<}$Tzx^4L)Y&Psnkp)IVQUOSX<5E-f
z(_h1rP91jKfwWpXAb(;)hf*oaZ};f;_YLCmxH$lrhy<7E-QmoLK)Ff-qmKDRB@pCi
zGuzuvJNz^a-iiH3SLdgOm1OLU*4s17DRzPD1P!Fpu9Xx5eRKxQ(UUO=`p$?~VQ3O2
z*=Q|-P+1cRA?Ipb`nIWJTV$Z0p!c>H5=XsMfK-rWW1G|%wl4?~Y|3i_*Nv|XA2)h#
zl82NiT>|Z$uCi+dPhfln9DIo9cV1ZT^txv13QmNtG#=VeOmB<2#drUHs)EATD#z0$
zItTEVfC2LXtU3xbKeS3l1bC8L+hvuXXbdO<nEs~Ff#TgMdmDsy<Z!6IT6l0J<1a3Y
zw&&%fOHq5B!$8JLSGhXeG`Z$Ja>G=k`}GWbi6bu@8uP9PlkG}NO|n6*0@i#EfN^=s
zNN`g=?Yw)R%a#mXmtkEiS7QKH^nmo_5y1;Y#b(3`7cMpC(1j()f<s!!xx7}-0bMk^
z^MB~*2`?$zX8^}Rza+rm#r1-&=53l?@a?w}Ou8&&i@TwPUp(V-c#a8b_)y}L5O`rj
zZn7_dx)~@W!W{<<ns8@vknFXE#OWjuawAhC-`}tMkkXjQ!a;J@0#VL2R<u?LT&qfy
zN%7c9t0R#EAnSRG^UYHa8KwO7S1t0#B^8%tA4v`%7pmLN&*-Ut4>*Lu*YF%(exfx&
z{0txZ*pi+6_8-ysqqjB*YnN>SWV~g<n$Yza!F^=P)I0+ZS_GXZmhc(o^*RAeLVj;c
z2P@lAKmd@RvLT~gcTrf?Zto>e!*h|UF<~|xNxyN|Q`f$60U|@47EX}FtGvhpobYV#
zeXyp7z`e6AT#nE;{0(5|&5v$lRJ5^|O&W5?c#s#)k5jhh@{Dhfy{_wBN<y#Y06N&F
zZc!8i;XLWKuyCLFv5#`S5gXv7Jkmax=e_9;fDB@ConFKK4Yr%ZdZC7+hb%1!;LDuJ
z4r5|=$Z1v6+T4&hYw{8=Mma{hFauU|<O>|KD@{<p{u%p7QH?k|QtSOe_RX=)RaLEE
z3R*`;U8UWNqWv?m|8KzHj|FPV>Pv^fp6@l3t7cO~YXt;)Pa)s7k}aUw6f0^p*ItR!
z=0>5j&npo7<j?}bzfSe$)?PWSHNguNK_D?2#^;tBv-=WZo^P*3iu-+?fX^7Y=Yxrq
z@CX&VpdzVNwNMI>nxvvBZ2`4I<Ep*}B5SO8_d9_o`w?L&G`D4|fVN<}aZ>HVxDfcS
z{E7pGFJMP4>s<xuLi+_#(I)rD!upj|hAT#X4Wcw0CMF_r<Q4B9C-EhB@achaL+<(N
z=PKX$U;yi<w**9r3AtAoq@ZxP#A9H~a}fiiX>KjW46Vg|WgMV;F^Ak?G^wV^W>re+
z_I@xp9n3uZP?E6$ysNTvp?vi7ZqJvnF^~wOE$B0?b4a9Aa?u)3hjA$Gb3dQ^k`N;;
zv?;!n=myBV?+<#~E|IWRsVT#>rJxcOp@ZuH5;#77Q!~W14-Psc|2+zRwnAPHe0xHV
zX0V^{ELEag5Q;+BP1*<m-C>B}(v0fPjd0VG;B%*Q8{yQmh-oU?pT)Tr700xHFars^
zY_Y!qxpYWh2#k2X;uy%Dyze1(MPon)3lH2E`Jr0v=#CkmW>&uja$UW=)K*G_NHX6Y
zVuD=M0I-1QHCZ7EzVhTN62}MYzJ+bY11H^tn;te)rTb~+l}kdAZJRC#s$3(iWk1Mz
zE)|=+^;5SP<uk+>GD~L*Z4BDpYfCvZ;xC&(MsmPUCQ;)UkeR}-c|#|;ff0gUONpa<
zX^=yQ3+le^PKIsveSIUOE1lnV|H+36l3XmnouHw+rkL!#J!!yz!mZ>od{<9(0j(h~
z*T$FkYv$m~S^&QmN+OE?49|<UL~r<3JR7jxTOwLoJ_2tA-?KxaM+Z%nzbav&f9^@=
zHX}-CN8)?e|5i99x-)55s?Q^KY7t0Tv;z`Cd}^17Ha+C!_lde@yG^c#_sDOK&&?|+
zPU}4^!0BC|vk~ckNc{!y{SNB+gU~qu6uS1f3dFH8Gdvp($|VeV_O_3)W7TWtt|Y3)
zXSbY-$ab<S@RRT7xj-9Cgu~s~UvQsYho$uw<$K<>9L7vV#x<<S6k->c!PE8bZfV!w
z(sbS=B25HfrC7b;N!uJFWh1|k$%q$dvPKi&!J<D;QoB%kcNmh^0m16^T74k55OyH3
zBBPfMHEY^Kq3-fZf@dg!^I4j-nNENb@UFC70MjY4viFv<RUUrg3zBw5iU)4~;zf@u
z{k<v&EMxz!PX{XqewsQ?!w2^RT>m#{+6txk5w}2!F-v_^5E)s3IUps&MLH<uqX462
z<Y;K`C&d~owyv@=o3M#w`p&(rILst6W<{^Y2aANgakD@~Mzn?VR*3<F4Kv|tx_8QR
zq_{@_*b}YFAZ<R(Kv(C8^2{($tG!mtmpXB!z2=HhAO73(iVVBZmDi5E)4PV(#7Rig
zGo7&0?+q`Fbie7hN))~~CIn>-)v~bX>0vc3TOpkyHGoz7H0DThPGK3h@`mX?OWsAt
z_g0gSc}Ki#;AdqoPuR=b`q?0n2=IU`&rHU?0=W*>hCUFL9vbe;DX8Twy26RtH}!Mn
zz&MIwQOT1a%hM0gCGeYqop0R(#4ekUB}B`R&Av=7WY=b}aNWZ^zCa%Hr`*Zw%O5=2
zQ=Hce_O8JJ_Zn5;^kpBP0Ep+N-{1ToK_u&j^jbB3*j#DfE(*c|h=H9tPw7;%*o9iz
zm4pp!+^&$uep~&lThKPJf>jabq(JE?*}3%$greXcj{1GL@;8=$Rvp=x7i33zU@GD^
zbg-#)4@l5XI{&*zv3%X29d@TnmWMm7qo*@ZJ#Z(D6@OHFd1*{aCi&*$(C+^V98t(>
zrjr=yQZ)q~vd38phuw&qK!LJCBbpa8;G6;u0Xnzdh#d8@T*fy?z)u|F&}W)2FkaNR
z0+P)eb{F~){zDW+C?}mx*rSO<^bQ32wmuX2=71M7AnZyv&=S3@Q*O<8$A~Wp>+gMb
z87jq`$g=;9ICj0gL6tmKe_xp?aykm7275OVz7p_2<a#GLp4vu>&tuH|<+6KEgve7a
za4MF7dVybnVXWI%!j~_}4SJGwChng62L$s0Eg~KH%EVAL#W*!bhaC+wlJFACmhA)x
z7&4S&UQXkzaS|;JkmzMRKLyYQK2%QLTc3daX<$OX`>mt!N2o(at;}&7MZMYi!N8DJ
zyRNIngb?K#-1fx01KFwpUL#whZPe1-29jP=ityBG7S1{a&EtL*R)VUQ)k`LPf;<}|
zKlP?u$p*;T8C?fYCm4_sh3p@i!(L;n##y*P60Vkfo30(Rvi!N|w3-zq9XcrzhJ}Lo
z?xaOr#cI;6ih#X&p1%H|eDw1*+I0{WrDfzb;k7>&bgnA04(TD<)anylLM7Hl&dg&e
z(4cL(Q*LXob-2z8wwwNLJOY=5-yZbw-sbf&p|V?ZNRv#o`5q9t99#v&H8X1!FQtA2
zUGo~0J_^-*hB`HkSiAKm%l^Sy+CK;(pqi=+wSeR(>s5_H`icWjt}#tbY1rTca4fav
zGjLf=Ch_N~IN8ABaj0i~bIO8-f2odWdCI^$%{vPtK?GR9+2wjZQ~^(rb?io5AibhA
ztV^}7+g-Cp0Awg*t3A<s)!ruLETK}w?$#AnL&_gc{Bh#d2KW$tFfPy8$r1g3IqdJS
ze`T78A6enI$LnNw-m~OG(7)nj94Jr{wNm^8gZ#k{#1woAHD1D$c<AoHz$2hvLZ=1b
z^iqj!1XX{gTYnSb`9)A?UgBnf23MagRw7h;x+(z!3W|wSp=V<up%1uf1U;bDOK$r{
z0;)hCOly@$*%flo`F9YAE4;<(=Of99Nq!peh~#BOCFx%->Tjo$(IPKFiyjL+C?~lN
zaC%t4)pNgE_>+wP;Xip<f$}|^yuUeVN8*0a^8_fbZ}X7q%Vc@6oGhpLfTy->dx(P!
zhg1HoA_g3Xs~i{t{_UjQ^53qbub8IpKs=+~#m=bQ>bMNwAqx(m`XK<%6e2BqKYQK)
z*&MJ;;-6c2LzY3(`dW1kFqy*Pdo0pNd4IoZz@<~9I{~^mI1>+Q%>_X6KLHPTaY)89
zd_RLM%>Os`#!IKH%mfB?7<`=bKdxRMTmz6<T?LY&bUOK9bdT4~&-gbM1#J}5)0*~D
z8dgJx|7*+ThCTouvO6qQV*gK{HX)L3;h9*5{y%TR-!91im^uIE+w^>3&{9&#FWEcH
z?I7T<p8fu}0RERD{fCqOH~Trh1|CtD{=)X};(Whk!vEJTsh4M8&DZe$*$L)F0q5uF
zSBd@44r5Bipf;|CZy_B=rzQB)dQsgfSH0p;dEN~7*V9S=X|n!r?nrtRw8IQY&i}*Q
zTZUELt?S!>Af*V>Eh60@-5_1k-7TSXgLH^=x6<7y-Hn8lgmg*gB>!VR$9~p&*0I;x
zYrlJac|YMHsM9%rV~qR0uj@L8Vzzi-4~{ndW2UEg%vo|=%V2=bF&9DjUk=27^0EE7
zmi~vo+dv6pdtUL`S#F{p3b{mtb@k#6INZCyvRE|x=^*;|)8+s0D_ImcVvdi<w{<8+
z1ia4H(1>Xlh*7?#Y2GBs{%>pPpFAV~^53+fWY$czDeQfU(cP_|o2y-KYY2=Vn&(ir
zUaGUm|Lv{#^WB<P%Mvv=c&Ck0|92D4zkLq>*-Jgg0gw37*Sdc&!T+-#{GWd>89bZ#
zftdgE5B<CEzI_k-C~24BoyWiX!T<Sx8ikD49;e9l&$QeB`49fXcmMzO#`q5GE*d!O
zJMBzRIPOiCHojwLdOuQUwM3(?^5-M*KP;es`6C9;u`R0q+p29?cH2t-k5{db?<yP+
z$<LspHU1YNg$yViGGlzFvf9>zHverM2_ZheI{0=>Z1H~KpPU1~W~hGMCF(C*?PC1J
zIrHboRm$+aww5#Meddci5MkUjuN|!EkSXnam;E0-Mk)-<nqZ48(krB(L+_5OVyVp`
zp831p{(smag?uBJzMq5S?!lGE4#{82`al08{~unjP(If7Jk8~N`hT=(3;D{EeXj)x
z`E(<RMXCSnT-o-7(*^mat<n0KgUbJC<3w>p@hwX?V)~C?Q5?YCI1MI_{AX`cmID%A
z`xLhx)uqxu-?J%Md~Fw-<cuVKulz4Q)LShC%9~n}q`usLQHMBk_=1c*y)|f141tdX
z6-Yt4cs!041ESji0HAXZe5S!bgQ9GPY^GA|HT}!A{g-d}USNS;p8tIDuMncYK5a*W
zzF_#tm-e9(*$|o-bXWpvY!wHzuKXh!4)xq{f%G2K%d6x}jQhX%e^P%Zfm_7UG>Oh`
z126Pqw(h4jI#}Y!JbzjH-**rIcp+Hc=Lt#s8((4n$ARF8=ZU&A1f_3PjgY}{5AHK)
z+8oHyKCU2Os{LK*XURN3NBp5@f;lw3C-_~P>T&%JHJ+58K$F1$mijVgkk+0$y96P?
z-f*TLt*@=$Ps(vVZE-&jJNyDHrbY9V^EKW;cQgu0Ez|u5bvo3`)$jMts~G_E4_a|a
zm2?uw{B%Ln6z9F>Aiq}u>^y-p`ab-i*x$=MJmPN#q>ApbaWLB?g$5mtzza-VI0V6o
zmkS`Z;Cu58yaL%<!CMd<E#7e$7U!8XPaZo21`k5eqO}}>KNk$fsm(dDsDJF*MYu`8
z8NVhC4T+x9efx7R`j>a=?_0#%H|<Yk#ongn3Q0USc(q8v?;Zf<LcDLgtCMps<p<0L
z#7*)4ItzZOGgSa5R1jzh8^5j*0fYvgfTydN6IHHsacP|v-vYGV1{S5$*oiMQcN)N7
z+Q$s$e7*9gpqoHZ;5&Y^Sg$ztI8nnWw4xJ*E+B*7BM6nT;e{t~$Ddo@tN&D!a3HLj
zl>c(*?qzk+`U`k`N62l<-0#3A&IHXl+wuF6@}ArT!+e(Gn0s}wXO?P%1B{|`N9Qy8
z>R!WT-?`zD3{rp>&{zlzNf(sQ<;!cQwOE)#geXU$Tn>FF!uYcGyCh(`=-GujF?u?j
z(k2&xrtS+P?&mhU1uzDs6C)f&Gsyx&&2>=c&VmnIP$bW8fq364=D*+3d?P3T-lor;
zpJ#oEzJ9?T*e34Fw_90G=*b<R-usna!uKdpI>xv=BpFD49(Wwq8fol{j*~rEX&^hz
z)(nR6kasJf6Vm<7HDh7MrVt_Mt&wGH&`R{79oDcg*Bzlw%x%9mdIg%Ho9wxtv+L`q
z%$6w1BxS#bwwB=>{UI%m@c8^q5R4rK-u<arMatSfcXi$KdZW})05gQFLqk+gJ~1{~
zBstGpJ|fnjhPHrRAyt_Hs7%cjD_nX*yZNCjT}-mErlh1EzmGpa$NxpjdmM!9e}50M
z(h;EY5_1ohvPumu{I&*`1)Z<`9NYXmQb5TAK_o0&u;VZTLPiA`hX(@5dyHOZ<O@6f
zp@l6br6+FdUEW0pQ|m+PIoq&G`+SiqPuEtZDy(%gE$qSCFxOf*ONb@tyPrWvL&XRz
z(G>53@Xe48+aA1oI%FXJWN#B-DB<X=o*E3+&y45a(Yu_f_unc1Ws~~nn=1h-*nDTZ
z%*Ei%GTid$uk!m>+mUL*M+djdzzP!K0u+r$z5=;}A7LL6)^dVy0irk`;}e4vj{`S?
zA9O$TyuDGLOP@A5?-Kx)!UjD|2n3{RG#0j?YgN_iOwv5slNVx1I}vRH>^4sTs08_s
zpf`ZGaA*lW<fxbH83LE!;1~*s?=cXzPqo~ntpM@Xs^(cCtY7$MhDTWthH2yzsNVsE
zWqY%Ca1N}r%8#NsPI4)J4%e^!jpgxO5q|soybi}xxMK#Cn!I*wbsY?-*J~D|Wx+|*
z>Oi#CM(}z&+jndXz=^t`V>JIHTKs~q^ZU2+yDqQlt4I0hj?8HojzB=L?-v?t1jf<$
z!UJxuw*5fPi*|m%6>Xwj+B1sETy*})@R$WCr7li_o(Iv2{hhip_@K4XDV;Dl(5f4c
zo^}JvR}>mA+bonKGbkpX`^NOw!{G0G&0l^c!~hP{A73|lC=e2Kos&Nd(ok`lDDX6x
zqyzn{aG)xKA2(81{G5c_Dc$M%HHw}zAqm$9At+8{66*K#l1`4&_yX;L0F(jMAMsGb
z{!Wf_v1WjkC!4;i|K$ppGFw!I<C_EzBEGD=L&l^GfF6Rju{^)~fX+w?Y>7KZz;?r0
zES3xQxUa;{rhhK(EPP)uhYtp6`@Cc=Mzt&_g#HvQdWUy=wzV6j52u+A;l$@4yL^h*
z4Fw~q$Jx|xXdf&vY)?1pwL!xoN9KxI&td(N@FasgUIQI9LRc0+cI+%ZzsQrm=;Oge
zaMcA*00H;^qQ2${1#M9Jdf>}#({V9eo0!~!`9%=N+At=Bj)`iE&Ca2jXgn@a%9rAF
zdPbocAoXuPoDkb#0p|QDGrBHb987Y<f)BT!{TwDd{d~PoQ<vezOXWAf1O*jJL2@S`
zeYgUKu`!9y1lac%^~Kd&vf)JBRpX~%Lv0&BJu?9r^ir;mmN)w@A;r-nq36!vaElV}
zHf@7i#A3>2%JpRO<T%`km<_6-(OCABK1`z11X7<{JFc_uT~LGtHhANHs2P6G8mT@{
z5&(nb>Mckpm?!3cagaNfCxS$K?lq3wUi`hNq7;K=HDj##E>bDVwp9!<xRT}r`JD(?
zv|Di4VeezfIV+4t>w`ef*C81jf0!%KTyUDbyaPN6!hV5?3D*6Z$zIu#nmcG=W4G2@
zTQksb4-J4_5dzKgwpb<``*kNoptX90L;DJ3pVow61@Etn5v=Z&0)0^$)Sx+R%p&0A
z1==bhYpMJ&{7@s$3~YP?P_g;VGJo+akI}P6@?U6pKA;i2rv42iRo@qR?=FfL?u|!0
z(gl}zUDcJfuDv%~hPLANO2B}tylAGV@y=SVezPt;VT^h0iQ#S`rJ0@7DGKR;<bs+n
zu8xB}(?=WcqYlI`6Jx5S%lSL!8@xFrb6pniK{`D2Q7E)FbMk6i*H46Mq2BrSnJd8N
zU|T&C>}4_Fg1*Q0OB&E_)&x!;l&umku6<r2upIZ_RX{UW=-u5}Y{a=L9!rWN-ZR&l
z&=81dBnkiO!_E&+%Dp>H@Gm5<J=B`~f>Jn&xzCDr>$c4CtD#4(xBd@%+g_`lhsb96
zb3EokTCRVK=>t3<Z~#)dB@dic0~=8=DiaY23CKUCT)6u`osQJ>z{7UGI{NhPoqs$S
zDXZXA#KJ|$^Bo7w;*+sAbv(Wcd(0dSp~mKs88@Uyps@km194c{+wY_Lg{(kqwH6Hf
z@#PU(dXADCC@YOBFvfNq$H5i~=9(;)cGZ!NZy_^n_dmWT+eZY!l$KUsJ3h(U?-a?S
z;W^GZ0gYo|Zh{uA0MrmV`CB{^lrpy2TbzrpU!v+6b$}<H6wt@UfzXWF?M@_7IFY6R
z62m`bZLSOcEUiH;4MjmX|1xU>iJJMKk9YY5#BjndgNf`Vf1^up-3Z<vM}GE;y*}T=
zy*}HS+`f&J?}qw3`GVJUnDx03@4HATA8$E$EBqP&g(ZGol2KR*LAn)F)Am;(jzR#!
z2!ckcZ3R^g?m_8FfTS~!2&x9A3`B=}_gTZ>9xIqpQRHjMz`Lf61no{Ru}U{nz3p$L
zPj=g0PhleJ0)enjP&{U4>K?!LfA+yPMKHKG<p~Yc<-m0@Yiz6yHEcEjxWVdce`FBR
z?G7&>QfLwwcpoRf32GmkG$-I24WP<!ec8rk`yMD&m8V`yAv2LBg}~z^75gy|N{h(p
zc#iaY4pj8jXkD+pr!~!c+VS9gkluYQ{URF7G0&)g^b4eLK0HYqWO{WKx(CYCZw!LG
zsg#mob;u1b@u;zzp|0#8Uy}Rj?Yraz^_zZ=*voNXi^6AP0gh_76+o6KtV=Et@Wtod
zuTjRdy0`(zlTW@dfgQ38Zi2YpqkvHrf2EfMlJ8YstF<d^-R7k!S=A-JFEP)Z>8e7j
zs(}}~9Lhm6-TMc6#bcPA<u;#-MQIP$HsB&#0dN(jInUbV{K7B$bw3&PPPf`bXGzkJ
z0KTP@64u)@|44InKKbDh3hJ_x=OwGFOzY9&(4}PIn0c!$#U$IvYvm^aE2n8p@K08|
zFZaPTd|}-q;4lLCrZ~#%yD=oXALvf@*jhmG6Rg+b-ZOWb*=5e4{|<sS=tHT%vy)Q+
zjDBX~HDk_Kg7yiTW}&H_IBQ0M=McU2IAe>lsgs8{4mN7v(k`*Kkon3QR>L&WCxLNZ
z-$q$%FaMHIn4>oCHH>`Yjo6Pm?IF++kR1x%KU-&)N8t1;fV5SsFgvkln)(F-$4bL2
z-xjI5o}1~s%0&aP$8d1>83|UbHU~a%?kT>zqX(q2m16;lEi(xcH<NK)LxC;bG%I4S
zvvIlIDSKOvl9dP8QC>)yVMP%`-R#SoR?3e%AOMLBypi^NKJ=IP8%uP{s91h{ZZ-`6
z{^+Oi)pzHKFIu@pBl|GK;1ii%2tKaJB!q(bbgl9)rxVZvy7l&?7)l3I{pMbM4&Zqq
zv)pW|X`o(RMe5mcbN>z6$dvH880hBpo15Holb78D^<CNv1G;6{V_@2~oYFM^)vnKq
zuUd`FYPca|h}d5fE+1a_z2ik@bl5Li9&Mb2&QW)5YnB43zVC)z@<@)7Yli`t^7PhU
zcenN{M~Yk~u>U-vebsPY{36HZ`49sk*YB^28fAD7C`jTRWPci12@sYl7|)U8UT_6j
zXG3BH4|9#(ms`CE5ttM?osdlLpjPpp-tU6tzrj~VY0~H`{j`4g_y`Tj@txdF#_qVK
zPpVB_X!`18voy(^I$RKnf1*aB;)4rV@UxnYF?A<SM`YC0q^|Au5rJ8hWu_pl@OwRf
z(k|b9hee-CFg;-s;tfI_7DfU1Tla;^wnbyc-r7%W+pSbB(#qAX@ee-(S4*4J(eu5P
z3g8szYp2fGLQR&~{w*t>)VXHZ23B5U17DlGOdb@&fEUnb)e256^G9!|CMf%~hg0t4
zh5ck0=eR!ERP|QOUpi<ddTlrW7{j;jF%$1)%fw5k${B9`^7$S2Ce?5I5pOg17Cp_c
zY7|^C-!?jk8i-aZ4PDY?KJqi`=hD3*?!4%?760(0g9j2LAh^TQ7Ct7h>_n6FsxACb
zPaqR0Tne#c2CaG&lfMsr5lJ-8JU))WlkD6i7!M@g-hBI@S)~4ZcA`qF&40pqjxuw{
zNE{-hRuYEoSFWTTZ(>t){t#;P({_i?Pydfj8dL?m-aa29-nuTm9pYe?>!>tYDau86
z6)}*H3<{Tc(l9xp1eT6NIH>n1(YoXG)@n$J$UAJ{&v7!^rcN|R+xku?Ej<=e>6{~a
zypQHqiRgSD7)#anjb#LeEZZiHD{b;k!N-t4?NB{6?Kmlii$t)dXKE;=nRK;8=h>p9
z3wNbVhWh27vPb@*MWLoTl5tP6uhp48fP)g>xPV=;^U&Mnt>~{o5<4H-k?tCh=Id5$
z!EZTN@ZsUU1wCTv%`x-f0YDwiedo3}3L@hW3eNO=oD2Hu$KFTs8=&g{lpT{litkAB
z;`=UmKjc-l&Y=DxlRdT~y1p^$3($QVq>V{7#>b6tlH&0ei~{HAQ*vA;Y&Oo^b8v2l
zekG4`pbuwFMagcQAPdHDQ_fG2<J@0<<$#&4?|t*LW%8Y`4QK-qd|zaPfd)Ar`26ft
z+{A_7mwo?Y2dYq7EwHiPW3+;DqM;<?Cw&u(`QL^;=|Ufe>1m89)87s}7Zt}rNiXMS
z$_5c_Uf=cr6{NZ>2fjduRVb<h;H4fcxy*l)@J?P@YzqxHlBF9D6aX8tRJzjuYqvK&
zAhNL}1)pp5lBVZcrVeMqS48~?7~OIdpm5y<531F~>%D4HlXx;K41dIm@-#%Y%ngwA
z^56o@o-U9@Pbtyo^0(%I!tQViP60x+M^^PWp^bfO=Df+&eWwtl^J3zZ<f-_h$G0(s
z@$x@Sf>v+6a^uy)=0q*Nv7^AMr*SIxd$zOV%;=f4QLJI7SFn&zN>!Gil}Jcf>j~<8
zgQD<e-U0EIo>tR!5lL1uJ#gp4XkA}8J|<hyFDc?O%cMj={|7CKNr!DS>CT(6Jqc!*
zAy<9$x9#^c#pEnAPjvjz&&1I&lau<BROG(+`&^d*(Uq)~)J=clI3<g2Y0J@($|B%5
zLtt+1;nvjgHIQXP4z-7oU8RJveiJ6=^-rjlD?O{%y4aW!eBe&=p0_krFI`WmvVJr|
zFFO|n;fo!Q*i)$b68$t}CPrdu`5E7l(6kb$MVljNs@Z%AJ=GxAN4nA+R03<w^;a4A
zVDMAdqJ-%wc(T~<tt1Zm2SI<&(JT4Yn~;mEgH`WdU6&sMlEd$PZhqq34mkHKja)ij
z>r|9NXGc=Mu${EEv`&cQ>OMd7eb!ue`ykcZq;k;qaQ{7@tiYGYv-ch(l=H>rj0GwZ
ze=}{MOz)pRyeYg}eGsTJIn@N*L{+1YCY9k{xzkK(krW-TYsAEfMv>pq{GI`gAKsWT
z(r;)4e)Yks)_c<mLLb{mZyLA$V9!c(qALVLxBRHNoO|Z$5;U(*Y}O(;bSs#2@N~8F
zVbYV-aKt-mG3}Dt>B=YJ;k^~Z{<&sZUnBk&57xc@D^ZdMg*;ikW@lh>xRS-?#a;cD
z&<QaUaAg@iBmJ|1{FgI`EFs{MfQyQ_jYIRx&v1VyiavQri)OUiXUg+&d_3q^uBVV<
zOXN9dC~UCWU-uDJbIx~z30De#zCUSt<F=5HM8}yiclOt5@{gh8%Uhs;wDzExoCGt}
z7zE~MiZFw`P4QaOH|IthVB@q#Vr;6I{W?3qE;wk-1C$K?_uB>Rc5jZ2(wQq8Kv9_*
zelHyie-C0G@j+<*9z7AlTNxg<c>GO{TPQqpwykc*^vXcFlywDQ)3w$ahg30^w7*I2
zHU2QZr@_R|8gmSjJ82Omh2LpT0hKgtD-XUR=i}{Xj(KXeFUFg|XOmXcCo#IyUpL^k
z4;@heLq#c9rh}}X#B4Ai7tuJcrvsL4*KDORVd)s=bPK@LRh=sN9U$Kim=iYvvB%f|
z>s(Vl>M6e1wreWf2Msk1i&O*5=`ZLi3g#+hG+g?5kB+m1{lgv$Vb_UODDd=cH1jNz
zrK1(sh?*PjejrJKYe)G><2ef9=o2OrLhV!8ww4XvoO0tBDeohPWrH7mi&Oxa%)H0a
zm&rKgdHzBC#Zz&|_WW!f*vEl^mpveVtf<;&?l<bH{}#!4m4^x2FN^CS{UPy-8E7D_
zu-f0WKMUNSVByDx+jCvUFzB`t+WhQ}z+Cy1$K}-fWr!sxxSvp^J1WgPR!71wj@zY+
zP`Nj6XDO^Stpl_a8nknGGS%(@`s~lJx|JdanF+0#$ZrN*61E6Z_mm=nFJJgR0^<gU
znh{`yjb*SacIx7?8(CZmgylM!+efnRND^W}=@5g!<Y~1jSh8X3Eo1RXG1HW@B!9cQ
zr?B`EQw26)v*dUS|ExHb?S(P(s4@J&->$WfnKAgH{Y0;H(x%ZJ6W|^}(3-%ZzxF`(
z+oMHBrq%!Crt|)J#o(o4YdEQ(fOq}z!xPx}p8E%xKKZOSgC{ZX$pshn9u(Fuzs$bQ
zWcLeny}Npdd_Y8|Ev@_Tp7u_#y`3}Z`IWL27y@b=y<l9<?IZQ^Yz}_Yo2?~Nn`wIQ
zv#}6z*#UNgWK-)coq%6;fRo&FxNz&mdr`UszW*Q__&XWmo0UXKZ3|3SA*vi;NE$Y#
zt(3Y`$uBr`&cjLP`FXO^PB4CqbPK!Zz}UVl+OHDQ`p*M8f0;aegd0J2v?=o&;!S{o
zWd_l?!b*SQ<fQHJw?!o_7g|rr%g{nQWPtlDU+t-$5h)7qDa+UQt-wUaG?xqx)RtMu
z=M6_A=|IKGQ_Yl#+jpe+ZhZO&4Qr!UXZJUx{dGg(zK?wHclh<&Vs@OScQEAzAPSm&
zdAB@w*EUi7xu?j)vNVoUl7SI!jvr{~L6F3h=sdOkt5INtlVct~m_Ld}1}TQ@Db5?G
zp3lDjd-P2j`NQa&kCKgoRo3gM#P`T=zlyR3`ocJaxB<PzR#9<TSi0Tm-gmMKFc?Pb
zBXW?%X^zv+7@JlpS)+2=vDU{^Q4o4N|7^5+=S?P)qjjD!bFNPQt<T+_zUGmVx0m0F
z@=YLd$m#jXB$!J}cuJd}dLAhi`6KuW#Yz9nVNAxOCNdXrr5Uxp3LdS7*Zc7;YM&w=
zc=1g-WGqSih0rx(QG{)JP=wWgnA!B3Tk!*VC*`$F6g<8O^^=RJwmRu@!t_wo<t})H
zKfr_hnle<^4IQixIX3yj1g1qCT5<KQ;Owsk+aSf`;H*<NpTG|ELOq$KG0#>on!TM;
zxsaSr^6U-4dXb=7(DkO&w$?V~P;iN~_P)|v236DTq(i2#1=_ma$QwOCfwDE!Q`cT8
zo|Xki9trI+pjqbkrgSaILH871;SK#Y-YN2(_|SN%7{2F+*2&GF5G9Q(O>LhY_KmmX
zkoL)J%wg88^AN&qG&?gkEB>a;pl5HhXHcVO`mLkKonZ8GuykJWooz|Z$VHhls30#H
zw#4C^aF%|qlHgy$)3{>aJbX5Vj3JH{-_c`o^?7lkJY;VAC$0_$`5>LG68VqWJ0xRH
z^7N3L-po&DZn&qV9z#9UGg!PeT#@bXP<*9nQVr9_kDfg;&z;brtW_D4_;&|PQVqgz
z`xLUi506H={a_|E$JlB@nFnaf<i8h~jX24hW8DfH$F27|-p+nG%#NgtD3JRZo&qID
zo2MoN)@CQrmoPK8co)YN-(`R1ctS3|koKe0)CeG#tZU{sQ=biIZ1Eb8Tjn*|x5Fa#
z(*73AUbO`rMok<laRLB{6<rIdD<s}!xqe5>r_h&jnABk(Q9E0(&AH^N+(q5W*@H$H
zF5U871obhG;>KmV^E009_Mq_`sssIbJ@;D>-Y4KO;!DloaHpT{s3Q4kU4xPNH_d9F
zTF87DI8Sqa1K6Luw7DbCEZbWcUvmC?TxNL~MS-JMjjpsk#Y|aD$3ZH(Z9rI#Rn4vT
zt~^<OxUV0u=GnD>lJ;Pyrw+1fT&AoHb!l$!Ggx%+f*2v)-fA(6{tjcWI|U|bjD-z<
z7FK@{p#D-Jf6wiYo8uIgo}Jfph1sn?7IWAhDO_nRoxVADVDyPWZK}HQQmoR8l3bA%
z5{_v}64~rS-Hh0PCWWse2+&_wX%Lf%)jQG60C2FDiQ)6E_72`ciOE7{1b#dyY|-(W
z42*-?)#bp|TsC65|8C$00%kW%_;_Ny#c`iMUE-(D?Wt<5s_hB<2{M^(a&O2Y`@Xk{
zqZga_4Y7m&bDURj#Dhr(E&UJA%;!ga<^j;KPQ|pARnOQXU*wHeb(H!6ht^mnbd<dl
zew~s9AWq7eVHVT_Q`PI_%*+mtq%36V$cMX!&exgCMu9@ot>t?x-(_0w5<C%eohzjL
zYjfNn5^%Bobv+MW3myZAt@i*P5vpoQF8E!>`|kB(#)CqR7xj7nB{M!Eep-+NN)^iw
zB_tyfRujqLU)>%_;f{!$o)K0foo~#@Mvbq0?g4(<dfY`zMsTRvdx3nd`9(UR9TNk#
zz+T$v+g*s}!H;6~`8SfVTyx<I-Jo$!_u#Or0!&KZ!vp)kUoBvi&Z1^nK4#xCI&zgE
zRSrH6$|PP>#a9NQ;kku59v$#a*u3TP=br!G#}WgE>r!81`6t}KXkHYJyFm(MxP_ra
zPyij=%uNV?sr6Lm9?@gkIABtRW6oslH9jdmGP{$8Wlh!!vS3jCtB;|-3P3`-R<Sy_
zPK-*HhyA<MR}~1@f2+i9@gBg}Ah4lvMr@Ax0XbtVfvpncB{@-E8|fA9PewB>Yx*}q
zM9j0M$U-7mKvYRll=5STX8dbbM-FmM;jN#5YrnM#{^1xKwK@c=zZq3ZnS_Ghv#L!i
zZGV)Na2(a7F~PnD7&fgc8aNWDUlk9jn_Ig!&>DV2x)AMbV_Irx&=isE6f-?^M`yHh
z!namMidaQ+l>2ph_7FBvKT4EfBBPq%vTb8T`34Uuu2p@E8-!kw(6+&_x){rhSduPB
zR%6G_A#!&8(O61#4!>W%63iq;qR#UmG-3jM-ubWOT+sQ2=I~3g?=YI^MT_P3H|fth
z$&{5EXNoj<2U5@`a^X(GO4Yf_DGs;ned!^W>fX#@o%`xH&AGNeY|F`iDB!Dw?N0(F
z8+#gztQ$hY)uH7~s{*O}_LnRC6$g=(44C~>2@WQ>DbNC!nYBe~)K46~+Qq>+5Y2hu
zL`lruIvr+HNC{t#=38+PhS4t+G0OwW$hWE0qOJNfUh1|E`v<|wa07N(JF>U0iOo?A
z$gPNcpKVCzmP_3`=#&9CVHXPm6Nbj1i?Lzdmv^9&#MmNe_CfAkTbc!tWGy+&O2!+p
z7sQ8mpiHTyb`5=Obw_^+AwQjdJt?bv%rbRao%YPVjN=pe!!qZk=IFAEtY*~wb#>Z<
zb<O%h_>;g56yFI?c{hgBxje2*$&P*aaIHVbORxy{f*xD2wqj1TD`JPlmVQ`bV(9eL
z(r*<jKQV;07;_S^*LCX~bM}^L7#(6`l5-ddi>drJ=wj4`huyi$bkU!#7+Xl59NW;-
z*mE0AuG{1MHnOz$a|oRo{t2vT`@j6+YmLqfr_4dEs>Dfs2hd=G%966wv`<Jpn=8J(
zPDq@fvBYN6j(Vq6XN~`Opll)M8JXPuSNCn|m4HAWESl3rOPrn-9g|G2$9WXYJ%Jlc
z2iZq+6^5eq)eN>SOO3J^bffxbB(qsl$H3p)Bmw&Pr0s)sYL6wmzVt7+aXw%MEQZ@k
z%e0b7tj<Q$66D*RRuaKw9AjAj*H>Mjf^;Q47k*jM@5}l@<t_6PU=S$TvZ<{HdxX%2
z&(UUIxedn&FdqdTd#7df7r8}x=p`RiMt_u6@^+QaaLtJLmAhi%ki&On`jW<$UfGv-
z%nQLML<*E$fz?+X;>e!CmaZB$BFA1}R*?V%0mfITCb4C&IHfy%`}-av+u?M@-0phS
z{?6K&y6NHDRLb~-|6WN0WSeMy%U-@GWqornV9bX4)aBmqEa175dU&=zC5oj2P3kc3
z6Fla2jO&__uOx=ZP{RmzzfY5}q|$tC$;pC(c8te^!17Tt{ez*Uxf3en<TSyGFiz&W
za^dT#aFk|6XZOwb%dW>Ps*3Fj12P)a;Hm$nG`}Nqat1W8MrWPUunhv7>Dr`hKRz{C
zEBoY$mBhjhf5hNJ-MgLHj}W?v#8<fmL*71_Smi#M?kNL2reZcY8~JqZW#^KIR6jP1
z!bd7H`jh-CUbwR0WR0keyUDfGWs?~o;lTxc{Nsx%0_>&&-WGHI2S7~i8NE|YXs)rG
z6u$?vm~U?NVC2NIc4=-ZRi8`l0`EElgwKN0kn@>A=ENuu#^JtQ@n1k%b8&xV?cAf|
zKM0FR^oyP%TjC5{(Xg|RA_!FkJ0s<6lMe3zJ5$lt7>`3>_h<e4hU8wrj@{*;EjsGn
z#2|CH0ORPKQz-RMy6JP{2~w-Hdm+7-ttp+ll#}p{*EBwK5c~D)W;i+>xIoID8lc$%
zs}Dka?%;xcWu6BRB%9nmfZJ9(txbUCC=TRF)n?ImfVY3NS7u<LA~~v!L!&B${#Q6s
zRv-6=UqV|4Koe$^_8P`3+=3y0Jgm-!$m{%D<4_8seD?fg(c<Zy^5*fKQ`HH}tK~1B
z$-;Boc1<#^E@FR-tL<_ffgK0+yne<yj_#$)j~w@r`6^G#<_KA_90R95#cFQ@l^l;b
z%09L>Z%v%B<f^9FIF9=~T}1euMTxvfV%q99AGT6$kA`coDkpclTB%vs46!L#g!MX4
zl=2owQRQI#BLFu6G4}D#rfkwBK)A%yyV#pyQjuSw{8rxzd?PCk@^wp1k$_jVxzYld
z9okUg?T9Ba7JytRdm!m9WiMfO{DHWlsjzr(y&{G~wcfXE8SjhByYbRfX!~GQ=aj__
z^s65TP;4WB<>kn|{bRZ)941b@Bd2l%U>B1^`Lx@0a;ej++PX%Ut0Mg}@Xb7{PuNVT
z{_Cmv<BN(2d_~9_UD?+c?jU5{B<5#f4^*A4Bb<as6`pGf!<FqpF{iuFO9r-k;l^KY
zKZchTH+#8tCH-Ba(ZDVnZ#8&Nn=&-0G(q+2<(*Xsid{?&_2&~7LaG<&eqolC)QrUL
zk)isOkxtK{yr*diO;Y4FARE~U#`RXd_I=3`yR9=*sy)LH_0>~3<mwes$)}v^?r265
ztlL86oX_@&q3h9DYGfPux%aP*8JwWq?SSU=<)=XHX$*0qs)E`k+`5Y4=vPp)8fl>^
zi!IiC#zcliYNreL@&UM=DDXSS+l#jZS3j5Uae9eeRx#5iHpoVq?6R$+OPS66<8g7E
zQaEf<EYhER;!6%dm}?NDS)NY~QVi#i>>6~;5m3ZQM%?*PoJh`G82E1D7^u|dC@($p
zx#(*$`|&h!(5Pjk^}dqQP`ZU~*9uPG(|mfB%jMf2R#00U7wo2!Q;cZmlzbIm)5{A*
zo+0e<r4=*ho&3~oDep6yGVP^};|^$u=@lW!_vtnwY_rbQa7wO<e`RM(WOI0=JY1=%
zLx8vZZqc;)7(lE74)JB)oo<eNIyJlehfVhk2^cLHSGa=Zm>l`^@G<Y9Xak)|0dUH0
zJb-HoXpLDJ<ivzNy1gBw>~yKcND715)xzrrP@x_B5u#)TgU)vj)n+3Ld=tAbnV~67
zIH`8rP0ZWIQZRTLD;>D9eLLSf;jS75Qh4MgeRVq$bA-iDz`~|gAAY0@TG~n{-&)$X
zWhl(zRi;yph3=R8>JAQjAo>QG%oTjIE~j(w>G8Y)BkkR)PJ;Iw@RUmfP;OYgb6+!+
z!+R(ouI>X?5AiE}$>FAq#{(q9Z|4O#7)-K-W5Xn1;3#eI4vnV@6y3`0He>BM6#0+Z
zAL%YcDSqv2X5p!@CPGvU0$v^}xs+Ex=1qYDbap8=Qtp%Ld|AibvE58;V4p7o0X}2=
z0~}92I{7!Jy-f~(iVyS5(}DQr6$veMGGg`dHKrw>D>8bIfp<akr@rtK<o#4-WX+s=
z#nk&r<#*FoyPcYqp2_3~!?*THvNzj?nyfzVODpQ^kxr>jF&Dgg=&w8i=~LKSl`xau
zO}{7GI~42|UNG@b-<V9TkJ*r+wS6>GbYZJ*?!Ly}tY#iYe~^Z81vorJp*z6s;5-<E
zo}$6W7!N#{2Id<ymWJt}2$`>Ie%hLnBBYQ!{xO-CoA-XIz-0qqfIdizHSEnCK6ArJ
zO8RIhl-n6m{k|2Fpcm8!lmzZoY)-spaLa)j0LUS(I6SO_{nI{?8e3Q=Z1ZR4YbX&w
zDWjTBN#_>5Mg=)k*K{gu;`^5|Y2b+L-0pDyp5?!AV=@uckw^M~tN%*jJ2R3S7_@g)
z++xN_fDh2!r8vp%+HSV-A5I?(SV{*K;ZqQla`<GnFnM$Th7hwKT`Wqo+H9c0uxrrN
z4Zx>pT*_a*XEwyouaRkrpN;)&|2X!uY<TvoL(B`*5!4ltYjfF*2!qaU^Rz29?K`>0
zp7k0iA($bUMM5K+uuyYkT6N5V=o~&P+M#c=zi?}(32WHUt%j$WF9OXOKMitls4bEe
zBqmW3b=kB@@zKgxBx39k9F571Z>TcQ1ft(8;wWWwP$FBkW%wDBDakINNcHVrq?X-Q
z4&{cmZW-0*(?<xUxq=|tf(WzI=ZjCS6BxYIhf!}USvxyXH^!;-ESl=)%m{a;3S+gA
z25Vq)yuV6p+E2l;Egwc1WOv>MU9gRt3mAU9U}MzhIYd9#9_FAXa6Y>RYPbW=T0iR5
z<OSK8oZYPW9qzosn=ZQb6bK##Q>8M?I>iG&)^q2|+iM5$9wfGzreUKpl)K$v(z5wq
zl80=0gK8(GLjdL-NaXlkn2`VnDHcg;cuW{4mCw!Ins}HpJ#gA|o@k<d!65Cs%ec2#
zu8MKB1)q-cXtLF`Toj)6xcp1{`P9GF3V-bSaU`&tJ}S2k;I3;>boM`krGJqLpaY|9
z4pMW}ja#^}5I9(@O0SdWga~X38}EC&iJqrs78Ja!Yr}{UC@zsG*?mznlU!n|lE+su
zPI!twJSGSR6Y(^b2>H2H@pO_wJG*|%GdEj-FwrAA)?_Q?mfoKNJvbVKs{H7mFUp2B
z>TO=lm3*$v2R*c)^9W}u*Rb3V(U06KnDSg56lrc3+wOvdeT%?POGCJ_mgHtOT^=EL
z?^=%xMz6ZqsczRMwJLdN)DGw{JAE1tA7uv!-lt_Lbfh>s%K5P~^r~A^a{=ba>{Fw)
zPHn<NU*hfqql=arUEpx4t!7>*Ql&FoTjDzTIUnLu=T@dzA8O6Dz4Wo6#*&-qN6}0a
zkKDXWs*M7gH`PFZI#Z%0Y2TiC;;A(!EgJ0m`<&I6wMi$!S?&TE!wMUsFtJ_cX?A&O
zz;j4J!DKm_?f<MLa&;5<oDOBB?IVTj+Q{ipmlRK)A0#;%Y-wRX{?$a@yfn1gu<UJW
zwmVhYmKwga#^vd{D__*~=<}iY*v>E{I>VyXd^m{=+?kWj6A!&~hi_{g+-#Dsv)2RI
ziY57s!yv;xqMMC{r+OgNftX7fCw_Z1X9_!+vjcx=C#VlwG;5b96Uoo^m!=|%mAt(n
zG*l=;_MqaFRxmv$NT=gvFv@{Sl13N`%0^KdiI<w<jK;?>@}n!v7-~dw@^CMVIO~p=
zv<B@auVRg$o{}@WRrWP4crgw7oHv0|ZWIJ!nUGZE?&!1^JwPub-yPAt`NsZroydIO
z2=LAwAY=-yPD!&c4h^AIY$EtZGYeeYVEEeE5Wmn9!1O8P77DeqUuu8;NlTI}hdMLB
zUu;gK^!XRbvQ9?R6w;QyW8hn`OYo{piha{Wox^u(Q#6R=-5g~JMdlo-k)f{i^fJh*
zL{OQhxdrjv9Qv5wbye9{1_oj}qlBY;B9S&YE^Wh}$e37qO9j3732SexTkd8*_I0vH
z|0`;_7xZYA?U>lRWV{oV?N5%W^^Z&QnW-=sE)6;lQlvW3Txq917YGfX-q1g|wc13H
ziq~!3GgfP4=P|y#_j-!@bqz=vgA5JW6ABiyfh2CEpcDwNaLu1?Kz;g+^=7P=QS@5*
zcq`+KWdEsQuN2E3>uKctvnso&n8`a=%`8)rNN<T!amZLTKNElpbA_{R(v?}<)^K_g
z7G82EytCfy`?4jyYToP&#&-=rsax@Ur7)`gq3q8U`vs`)iQv{mF8dyUZqk|Wr*{-J
zU=aD}M#3Sts@~5xrUkDlta;w%q1a?bvJI+y1u|xcL%el_-zvi%KDdafjm%CMnKs&-
zf~*2oUiJB=WC1G3UVEuZJF8iiT5r(m>Ke#v-*}z%K@GwsCrJb2ZT{^3Ks{cx2}*op
z(T~-ea!a((5y<|Mo{7RHM8*0^(xoxEs|}|lq7CWc9w=-b2+J_2QZtr;Z`*dV)+oQD
zvp5Z@LZF)m+tknH5OpKyT$>|J<OLj?4=R2t<lXIysAYg{({VX?sH~g;{4AVNUQs2Z
zY5|V<NvCJ4luHdxl+(ca@Z5^aS`PwTJUQs46#>2O^-`>G^Os*^-_i^Fh=iI${o=nL
zTlR!m$)O?+@h>8_#fj*p@EX?0dR;mvU-hz|?Da+VPassQnSD!f#QRWLv%HeV{xpa-
zGcy;}JNEFwt7w?$GRE`aH;tKB;q$if6D{X>uF8a(AO1plx_ED4CVcyWnK-V>{{T2(
zaM7G4?`A7Asm%O*IR{_R0&&_y=)2n+rXgadiVeXmW%U(E2*!pB^CqOhZkcN$?!b1J
zE`d?M^&KMJ(;>mHFdeqHz$+Sm3uZ$oh+foYS2=Y3Iy?oZcMhX{qm194AiZZpa=V9A
z5#NBS{xQ@S#r%<%!}(J6q^ECC@WD+N&js&o0@XO5+M6^@%8@kuKRZLP+rPzvPf`(O
zVNW+`>7#0fqOok@@C50Dc2=KLP9r|S`$ZW@CUgtDvW^|BOUg3D8f+rtUhDnQwom$v
zs6O!(6{Ir~=X&<SQ({K_PU<^|j#{mZ$il&Xfe!T#Xi}_zD|hS%&jJRnu%Dx>DPg_W
z+zw2FGeqim?N!%lLc5OLX=?XG`7$T|^3j~(q}<S<ZMNZQsUL#I>IQMeEVL`&k%6Tq
zhXy1<V<9=I1H7#W)J##Nu7~TPM=#(DOi6lw_2|4XUGZ=J()~GJ^)um~pe%>-Qrvo1
zPIZD9N7+Ye@x}=Rr$M4ivLa!;an>!&8mw~b2<gt1Z(BeE!lvLcS>qfS0S>=K`PgQe
zCAQcDjld25YHHCmEy~KX_?#!Y7H$Vvzqu}ebAh{Lng026&Xt$+kBd4zl=NZ_65;A|
z8dw+0b-zVS73-_vvNdirCL~)gY_0|!I&iGRsQ1IuKfgJj(}$tY;is_PMRnRLsUEdQ
z{S@c33T)6>KcfO1Pl*o?H&fygf#4xB3J6NUs0rHlXZeB%IH?l6UttdCGF?KdQ{u2}
z&jg%4Jryf>6eSRXSyG|VEzVr?W1URObK(uKY^T@a;}p1N#_e+{#RkQ{C(OBb;1+q2
z{nVfp{w1==GCl>Wh>B__9$xiT?x|wn8D?V+`v8MYKultVh(E}f!x_Z1c^*tYez~*c
z)%4*9>9kuIMdOs|?jVph555LzJQ?2rr;5|3v>I3e!`CUTMl+_poYW#@)VzwllB5p4
zQ>OcCZV?FQp1I$fhDVd<IYbJ~_(TaG7h?FSJ`YVj16vkOFv6iC14WSt0_qnng|*vR
z{(l&0`L2?+i)Z2Ld=Nf{tBLxfiP3n9w7r0Sy3YjeXtPE+BTNo{0OnxhMU~Ce;mhJ5
zt3@VWg{;O};Wesx_B}e;(+HcYtGgmJ*IuiB)W$L4Fji`}v`R_&QzP-N5*k@uTFod;
zA>ew`VuK$UwXz(Xo`3{(R!Kbb7G8sGLhj7+nb}xIdW`bsd}Ulf#R|cO_zX@1qFu=O
z+Z=^VfrA2{8ev2d*DO7rm{;y4v~g@_hI79&*)6B%HM12v1ot$FFwVRH0D{%)cf>Y^
zj_XR`L7Gz&puGvcC!UG>xc`z49?zU5XqEq1K-0zbOtJcT9Deh=3AeH095o>$kpw1P
zYJEY+Ec&F@ccM}Ukv{v<n)S=ce%O>bPMMe{)0gBX2i;-&f;#ILi6QMJ@AWagDdP!Y
z$(dCTE|qDNE<q`e@MN$4M0$wueK@-JTt5Jy6Vo@B6C8CzxPgIt)i(H2p35+vX6MMP
za{ycrLVWWETgjL-uQAkKGViR=MSx?Xk(k9O;K&%))j9kSi+aAYn07F(iLfSUgLE=*
z=i4XVG0xG3ir*Q3E$@p7VX+#>0`oCLP^1k+G<96~{L#A@MQN$svn5B-L}jO;K)VjS
z%cqyn3*wwjFc~X|I>vBS=PwRbr?_L4!^sp0g6X@)a5F^ThRVBN+uojrVp0tP&kHpu
zW@=L7-c)AltGrd~)2;J6p^LSk#wFM2UfDuLS!)7oDAQpnUW>f53e|*Kzdw`K@#d1-
z94;X}A1PG~hEfG0hR|cS942$-RyJb|*HNZQoxu!|xz#WT)d~tU2#RlHcm47w3*Z?x
z4ijE|F*~)Sth9*|ClQ(DRqV)pwc}RYG7uEHqg|;9n^TRDQE4?&{VaM+c0iG_=Iwp8
z{_I3D4NEJ7tVB4*C^}eQ#q}NpM8w~lJLyU<R7neUkBbW5-6&M>>eq=ZePW2(Er_%`
zPi}xh=qreSG@RNfWO^KM1CMP5Ijpcr=b(a0fy~@<tgB6+-+fE(VZ<@ekex;_71Rky
zna91lbl`?YkN#-fiIOpT9+z}qB^Xg(qMNQdHyESA8RgdPpDEvZcDzq>YV`d1Lh!fF
zC>h0d!p$r@A8k~H%669}ZhW(*h2WQ!O^<-6YTzf}`Lvb$iYZz^(#ATdiw}K6lck?y
z-%DL<?P~<KsD0^B9QV2C9W1AJ>#Osjp0c5-NE`;O27%a`x4pOad6s@xiMC~Oi@Cfw
zN{NM}Qy#rmabC`C>-i$f{YmkyY_z!qsbXs@DUNS(?^p=FU8MZA&#0h$*?vjC>?^G{
z#u16$a(oHmE9U&m;<LlbM^B@Q+Zr6d{4UsOw`W3$%zfVb6a4^!_KOf)0xgCN58InJ
zJX0ww&Ow-PWw}Ot`pAKUk0#fE#g|)U6DBmWaVrd+`Kt~KV!MVwrsvoEc1m;&^~-o8
zR5?M@42Wy1Wr6vyj|rV8Axq>~Gg7LvSRe$u(@YOG{Yk50N0!Fw3=0PYL7QW}U+rqz
zoQ?VRI(5?IM1Rmzkt2E8L=^a@2lGozq}v3j7z12lYNF$8MZ$RpB`6IKGI@II1ql;2
zQoOO+=QKWZ<1d-3BqjRavU=aTZc$$Ix$l?D>|85Peb$S0-o;Pl9XH$38q*;B)xv`K
z{9M~Y^T+EvUYzXof%-AI#IgqS#)RSq<}f#=)TSsIPc8W!Ow|3GLYW$5>voB@9y66j
zq<to@*EWuI-g7GGf>X%5UW}=)STDX3jV~!H&?(_LjOSP4D+*YJ7<>-o#-8Q{4cq0;
z;R`>ga%g)H#lGu_EDH(ewv^efKa!bu6_nbq-xQ6Ucd1mw3>dX$p%uRoOE))WyoSFH
zvhF3gGJMj(w-0K&{pneDra2<iQeJPO;X*d`aDzE&+9r9~R_GmC_FgdF8i%>*dEUqO
zHG1RsZxt}ETejU<?*>4oXPrJ~<uRSSfN!WkHMm`x&)(@42nx<y_oRDX)@Ot62o3gn
z{Xrj-uXjEB;CejGz3*k5GGyG7znSZ1*asZ=V<fS*#fuZyNB8Ppmpe9yw0gLI;691*
zXfSG&b-$r3tRD@U08<q|?H@U(dJl1xE_NAu@1|^DIBAzL4dIMNi&azhhi%AAdT2mu
zv_8)(<x6=KD%O9Y&*0Zg7*5TI7hG0c+|<p{Iwz<)swb_En7Pb!)T_3|ESzl4rcW27
zll+;J)uNlQ{(8gv^Ze6C^iA;IdGHVj`-W!Ir`_6J#M$>z)onS<$j_{cRf`!>%{&PW
zVs)=$JF9QNL<Bx>;fQr6NGR}SdjJz}+DS3BCb6BG$`U=v-%mk}Q;dEyI3>j++#h5c
z1<bx{f@=c2k5~r$e^>UAj7~iNWF3{7^g)b88<*&VzYqNybMg@Umn8?P4${Fh+WW?(
zwF0;C?1%7E3xe#iMl(N*Vm=Lg10|V2u}4^enpiS14M&<KK?Wk;nx2<|o(8I0%dmDY
zXT%IEUh+{cIf*1x4Di~;OoN+k-+Mc*a8FBX<gB$Y<CppA$E_!u^fuu<?}@Prd82V>
zVAtJ;bSZ0HZP4CX$|S%cb@=SEm3LWii~7T|{SbrwdbC6kX3uVrBa3CYDT1U$D|7U4
zHMsU@nBfIvOcK@7>z6O$MDPC1@tCHofiG&Yu|@!O9h6)e0n@jd7|9MXjlKW_NU7pC
zdXjG9WPZpV&e+B)Be*9|lNt1B*lip0P{nRV;*T9ZV_tf@<?9*Ag{1%R%=K7emzIkg
zFIfMXF%eNIWDl-*ZD?9gWSD@Dj=LnJu!_NX6Y1?<fJhH##7`*=V{{zUJU)$0OMkWq
z;7Vmr{a);$4l>cBR1WD8`6AcXV9?)ZZU4Fyu0i;{FkqDW-n93b;4%j_8k68cg98#l
z9D*089jYyTo>1@CW}%`_&s|V<s9uk_hszi@d7Rl8K)_Viq@_QFvDtA<at*{We_b<3
zmVqE`uvOyZIeUNv{uk05Qd1o`J&5!dr{p>kBbGsadX8e|i!24P#vlZ-ZXYVhl&N6p
zePgdwrW6r<l=#n=I1iN*-Dbjp(qvA_j%+v`^Mt5_S_+bwCLDvrt}))EOmYrijH|g8
zUjN>Xb{}*_Uhxv|lTf^Lw)wjn6eOf7^3e`2p#@+4#+bDg76iPGyX6${x}d{d`OvY;
zK0FN5X^<(URvU<IECJ!cL7IST2g56W6CV(Q&I^B-y+Ry1>IdPzorSBb6FEs8Pj#`$
zj!W!RbF8B8CC8O+k9mQ}b+}+&5(dW)B$~|IO0sCdt-*RUOXDXIKNh(<s(3nGE`g&^
zXLJBi>B#|TQGf7?L<0R;J4I2$@Qv^a?s!Gz%dz^`oq5tZsV*VRiAg3qD8<K3+=vbu
z$tCmIcwr)z`5)h`qdKTS^*?0|aagS1z!1;0EG4`Jy1NpYd_e{2kJnxp=Hr_nsOvaQ
zdUat!5^u#pb~5yQBbXIOwM0H~7C;1buE+p)q4lSVAGe$jnm_B<H^Z)|f~y^)(-d$!
z&5~wu5Apq(*N4x~xlxuBn>!LAhD(9vTykC$Piv1Nnco-SAQxPMP{W5g|6iG`qRDUY
z=lc*44MgX!1Z19bEOazgKj=vkp0a_gI*ochdz#K^?tK-vQgFv`y{y0BrsaS_8g`85
zUgh<q<MHQWC#5|Y8wp2m**&Ivi@w{}mH7Rj$4!{PS&6tD7ALn`C)+%AMWnW?M(eKU
z3R^_l52>rxdDvj`u|sK_*ZUAz!^%0PCFWQby%l215um*p7iFOx5NJ{I^2))xL82qm
z9*2S);uOje=3bV=(Ah`Z@_f~vp%`5;Ir9vm%CD6a>tT#*?a4#sr_AfEM027XEAv~J
z0@22cMy;TjYxK_Ur>mD_JA>Fs{`LB0w~jbBX|K`1-3Yl)VMTjV&MbVg?gTFJn3y?)
zW^+D|Y@y$dQz{G85IJN5ht3A|KwxV!#036j2MAU@b1CzQLpb_qy;|=u3|lEqFym98
zA2CJB;de5GVCr|qdPzzpWkX~YUV?gUBQzxl>Ah~!ml)t}F!`38OiJnY*lLq8ndy`h
zZ-S@)CJRmJzVaQAFrx}Bc^$?NjSu2n!oEBEI;2(fu3Wm=*~T1Hwszo!x)T#Sum%rP
z9<I~T{*u<lCDvZWu_w5DH=)J6j&u7wpQ*;?EFN5Mxomv5Iq!|Zarl`fxo%$r{~Ndq
zdhq;d4eBo;w+Ix&UsNgTl3T-L<}o6B@~=H7M0G{lwSOWx^*Jz`(Z3<sN&M<3IL)}@
zgTCn)-`<@PUB+p^Pa}UTw>?|aj!Vy4SOIoqZkR(Iife&vFLq<E-gR0jW7unpCEW!L
zn6}1NwqBX2kL}o2;&!Q2-@U8csBA5|+ytdWNJmrZnM#CrzL}N2Iam4+Yvq0{%7gdQ
z5v5fOZ)S37y$VMN&ni(R*2$fuhII(m**89y8&g2?Q3ncSrOkYRvajt|KT~aLO{_b^
zx1fOhlyhzA^2wcVL!F&G%K7}|Xd#@0!G<Dn$@e>JtSjfmn8;$a1SRCek8kBtY-%L7
zBV#E}^M}^!ZKHOK)occJHnUP3=hvhyD|bjuAu(<zbERInr|o+=c3b<o?jt;gcn;p~
z+TKLYzNl2q$!k(;@?NGbi;ON1_41)a#u$C^WrkRZrJ{PJ2ryEObE+4V(YoN#csFH<
zCD66p9Gblmyfqe|i)t2hc^Av!n_H}=O-!iOzlwiv=5r$mfy93@om+LwI5kl2>R>|2
zDRsjXj4CJP?etJ{p3l-%*r}M*&lUbQqMX5y28q2rxnG2>8_QX!|1|LeoWm2p-hCnX
z%LwETsl5H2&_}T;&w$VY$IedH1ozc9$Xl{-)swifMzV0MECJmN-a^t+C<<$mTJ$qp
z<2?v1hos3NroKT^G!u`dkc=Loz)Qu@=+ZYG8{5gbXo$@5S#~heWNdrkFb6#&J)l&c
zTMP?S`e4G!Ae|6)ZF(F;suq{@%UBV<jR$t9+cAdOHzb~%@<5Z?V!9+*o4Va+V*RD1
zoYsfqwNP!>%S?a5Fyb6S`t!S^h??80gY&c=$wB(Vcmxt8?%#~KoQ6f-Roq{Pb&;Z}
zl!=<3EmA~CIpB0sf10EHzOI~c_qq~hII?QUgkeRoehr7-(<gaU=CgL*72S|S#pgOw
zdhdz`;l;0delAKaFG(Ra`B&L3Z><KYd5*HZ#gIQXs0#0prB{4=B{=VFv!`)HQ`7ur
zEr42TzOZk~JRs1V16TM3b1o*%2lRPH=kaWL8VJ>7gfpZ@STQij(Q?vUz%t6Ehp|i1
z&^JL$ZoVTY{nP0_l?ny}fq5Oc^o3PXY=CWyZ!IoZL$Vn#Iu_8Pw*cSN=!_n|nk%9L
zX}B}3JT88lWkr}}mo<klAU$_y(sHX-pm#s2RBE7>aq?dLC-GC6$a(WvG%TdTuBi<p
zrfF=YM9uZU?tt%TZ=YEpp7DQ0kCH#ZPp#ZeDgHiMkfS`T%<264uj6l8vX7mbfO$4Z
zfluKf$u;aD=0X+R-*x*W%vn+R3${Iq^fwLE%Ps4q?6seR>PM>JVkq9I&$P2=;yvn7
z=kW^X+$bN0L&Xq$Jn2}M{hzOZwx84~W|AETZS~~I<6j+@A$bas1iq_SE#+f(#%YB8
zGSswv$ZHn;jMV3QTm&wyN)F&=wV`P84_ylk#`X)8HgJBtwezECx;6Ai3%H$4;JR()
ze&p*kZW<2nU#UcjI%jTV5*#kRuP~{o%d(H8^ybdGaT)Z7*<(0VozE9PL^jGJ$<Jv;
zpBzg-Qh6}2SH)>k4|z8$y^be)ZqB6~T6qtY^OKA}qg*M~lhwQxP#NGT3x{~K+qOtt
zrNbe7=Yl2VnDLFmpcr4ta8-2vjABW?KO8K?5kgzG6<cmWBsJ4La&w0KdN;xKfrL6y
zSuctFQf$bI^7bh9Goj#b*@HV55lug&!kyzTG6nQai~2c}0o*~Z&R*JKs%}W%(^owW
z?jJqowfb$M^4~s*2ur|3LgeW?oI!|7$TrdJd|`dka|>fSfV(URKhaQAc%w5^6j>a!
zLW<4SlK7rC`<{Dqa%=b7po%=wvddcLDLrlS38|C5;*59GEpQ0Io~(cZQj<}t!Q5DE
z-fLa}Taf4>Z3_Tdij@=8(|$aY=%uSc)ZmD$uJKDvcb+dK(hR)Gf&Kd8PCQOhh~MOP
zHMac7KkEN6_SSJ#et){R5=w}4x70>TkdSWamhJ{Ak#0edluqexq?=7i_ok#JHV8<A
zG(3wr&&>JGoZrkje~K@~jq6_bTG!{g-j@<e{#3TrLch}$##KU5G#fW;-sm$%PE>WX
zhF;Da$o``6L+l8{_eLZI(emrJdd7JWn7MK4e@>Fro;d8yCh>ApR{MGiI&_{o!n@A>
zN|D6r@4?E-S6=G5E3t1@;m$O<zhC#aHdDvlM>s7rnPxSf4>o#&l!n^|-#mwYUk9b5
z#rt-uWR;8@pYnROGI-@?$wBxBb)u)Stjn2fKZdRzdxW8Re6lS;n)vNh0j^|@#vhgX
z@`lf^O?5L=*m8cT?q7>RlT$U1hG@4^P#nF#7rjy{7i*ODw(!+Q<%#zjWH$XcgPeOH
zeQW77b)Hi3ot|t>js*Qz5?4ZFm59)R{KAv9=~KsjIhfDN*Nkhs*5#8ZU#-i$q)G@w
z{E}klMZ#gxfvvJd>?aW;pF)}0$E)3j!XC^5N_^T-=j@xSBN~`*A36fVbe>0pAmWfb
z5C4|d31i%QSe8pv$4JoV)x=<`xjll7^scRA;8fXymM@Wp0cNph`IG7iY^6M`z$w4-
zPgK*6=S+xelOI!#Ja)dMPQRaeiQfKJf9}^OYFLq)@EHLGsmnYol_5qPdxHZTQzFar
z14}m?@9whpn%du&eIG}uW$O04JjV+(F{_lNwD@)?u%PdG><b&ZXzn-_)+s1x!x7{Z
zv)`3c>tnVuQ5oA2F2itdxOVH^ew||;!+j9dn0eLF4<+$1&$_D&hA_-?yE7o?itZW>
z+6=*VpX*Zx$GSh)HFc~d%4}m5X*XxFnEmfN-G5m3W+;%9xxbeUrpdp^DbtlV?&9RL
z*0H*fFQ{_=j(*YfrB95fWnq&h+J;K=u+)lr=~7EztxZg?<UPU+v#%6kN6m;-Haz8H
zssrx;_t#B(e1vF%_{Pc|`>PtU`AHMqtQRcX1Vykd+Ur6{4L%NLUe+5EWp2j)28=;^
z+r=#BzAl1TnE|HI)(wHDenEe6Nfgb6U~k1LP5adG2nU?_R(barZ~K9zC}q<A=XTdu
zp`k+78lW&pNOjA*>HletSi@>pmCJVFRlH<e;7l^HEpSu|R(T`}aY}JrQuq7M+i3~a
zqfURv=LBYkK4<C;+YbyDF;(2bSgq_|g#pLSzPm=NK?me`H?DvjV2O;EFC~2nK{1)o
zg9EV;9bcwOH39(==*}E`{0uI~jVQ{foq#ayu!x=GADcw=CpWqG3ju`iSmCkp6FOe$
zKU!>qn#%ID<=-rO|7iU*4|ZMae8GIl5|l+$zCi~~>8A-B-@r&yPDFCRQ=<-l<%Wk}
z_eadLs`&>`txlnoH4&Z32NMRjI_GTTO6mZdt2y{GLtZiIeaLYcj=1vtLovl7zkk{%
zWC%>`TR7vN(~1qcK@JZpgAc1q4=65Hz7TA0Qh(8R?hRNpkUlM_ktyLIHXJA4^iXv5
zjf}q_Nrs=ovJ4^VD`k7-yu8Tbu2%<19x-o*@bl1BF`PK3R18rG^KJ1?6Iy>fA<;_e
zlN|!nj@`9i`js&_VG|%;Rw73LG+iS0F70vUj}u@5w|D#%(eQ{MTss{Bt`vA)499#C
z_HyqthU}VAP*)S$%3l(p%U}uVy8+BgO}Vp1>Ln6j0)e@|ChrW-%%oh#maU#L#dD$l
z%3i1zG2&hMLWEeXDYLbvGsgZ`!ORyb@}p-=KY$T9We6d)aofUH$B;3%71u7jsJ(XK
z7kUAt_~coTGv4$%_gKI?|3i$(94@DqSIh2&vRG>rsY9=l<h7A8@vb~pv{FOui==pS
z!Si=ACR;|O2vZ;_$~}D?DChOuAb$1@wcRf%?Hr*P2mR}T!ZOu^O70+|CM084DW34-
zEtl|#Q7m5}AJ)6$7~3IrA>*x`U^o17bSyRJIO1~jxi50UV#(2}31mo)GP{_!G#bf2
zwV2bD4Xs*g6^-e_6l$paUlsT-cD=rm+9{gB7nVoiiI>|9w~{M1J?)FPocHP{`1bZ@
zqIVG}7REl=6w#RTA}HNc=8NOp)lW8=mc;Xp%kw8RkJ6kc`e2!TF|gZHf{%)%A`77j
z3|F)}w00PF3~$mw70mM*+qIuoxnIRBwfHReF=DCg{Lv1Q+0j!GuipGVah6&Ji`FX6
zYBtwYvG>gcJHro5IyMzwcOF~30WE}vR>O?R$jP@QRx9~?RC_#oWVhU=JpgLe<jA^#
z6T<M`_{pMG4Zrzs8^*YeRlqilVhQH^n`4;u-CRIi8$omJ)0EO>PDF_jv1;E7Bl2^W
zU+oNMeKD^d)H!!g#l|pWsMGE#*OXk~@wXxRydPukN_5SS5e_h^^{(35pRT-^Z*aU%
zHky1q{~GE<RkkVDAvdd8WBtPXOYI9s)5r4}AR9hhN61G2ndWy2?O%;@kh(H}<=)!q
zt>{{L7B{?S4|g=Eu#<kSU2?2wGi^hm1JU8MG3n6OPE^m>yswsJ%l9q)YI@6gpz;?(
z=wxWiymywZe{C)<UnXfU|7_-SzC~LB%r?#+<~gW!3C|7IxOB@)=NCVQ{W&m5FhmR&
z3Aa>;?M<&wa9z07rb05Fwm$k3S~ZhHbtqzRb=%iqHZO%a6kyn%;91U%*3YYnl9&z*
zS@d@GLIwq`sdKQ!lE8#?Mi11S*<lBR7<l-WY}}dKM~{GaQx*$GxJiakv<wW)w)*+w
zkmy!Uzd=h5cw39!H<J2YIP+Vsoklw&{o?#ujGMdD;}V5ZQkUQ4u}K6s95dRHIu{F3
ztZe0o;qoIqbC%`?kqM{{dZfKc&Z;dcx^ox(4B#_FJepnUZKDO+V{8HGA7&OFbmk{d
z50IHuoantF?Z^isdCn+PQ(s!0RkVQa`OmS+|M9EJda91+KFl}S!?|d-%&yhZX0gPN
z3FK4=er+A>6K>(s;m0#7Jo8tj5)rg`{7qk2ebv8bOWv$oHLs`ZKb>@^P_iHgOtU#<
zp>^3pK38wx9Ii&1$B42)5EZc(_rSxLj*PEB8CDCq%B~Ey1@2x(B>MP1EWB&wkLsPC
z5MP<6VWr+m<}Y3y?FGSUkW4T)@RnXZ$$5^}uSFp>Kz#g2L%3g4D1am9rCQESm@4xM
zD@vkX6_pb}(iB3LHgT2GD3{DLE|g=Z9ONRg>_Q0h-$8{{U~+>rNX&TFxd@670UAit
zTU2>1e`OEQv3<t*Hw0GuviVq%s<{|O`v&+7O%=1rVs+S&k#+F#sHwM#vdTgb_`>#n
zKh1viOomobnknq3EW+o?9-dFJj8iW}(pKcpD|Oc6E~VFhb$*5eT*C*0%lfZ0ua2<t
z74c?r(e55R&uT?|7-297mravd4f`Rz!JvJi2s=qE%9$R|8`Ye!UTnJb-#1UjR7MLi
zl+8_+w?IuzI*!na0#<-~WDpAe3Jh_k{HA(<*CPNgAgi{5p!;MbsW){b=Eg`}5>;$t
z3y}Q?`}L#ol*tOxjASa5RgMdx!h@Q4Hh3eK6VM`&iixY-bLC`BxbKdzT^ia!qAM1%
z*P`-0o|;Rp)F7o<chR^aXvnp>0sL@Rw3}#F<%_4eMMg^^=3pA{sk0xl#$jAKo|tW`
zG?yI-ixeFWSG(FYNJEbG9(upn@+ptlM>wxeYwwvc9JaM4WH?Z-2PgHdxGO?$U3Ye&
zUU+4_oAX9Biuy#1>;(mLyu@{_)x~ML?9C_0Z(Tc+8rl%dQ|jo)$qZp?p9;y0r-xUv
z&;!VCnOuUnlYzBK0!F!=#(w+EMIG7i?oF8MyY(rd2pR<J9)@W#>A=dhSvHIYEve=7
z6~b4~X$^XxMqp4on=$$F2bjMgpS-*qU^0$n`0)4IZAJf-%#Uvq$&K#iS|mGz5A6oc
z{NMwLahW<;oLlVYMFdo4fGz$zknEPv&?A_r5!r=4^#_c*F|Lxr5|mzA>Y<^A`x2*7
ziNyGYSo&T|l5VZbr5VWyoYuwDm8D)CEJ;F-9WD-6BbCd}i<~wnImnVv_ZE0)UpXph
zziR@ap6=>i!7J;Kl8ewdld1H^4++j=ujz_<o8+4NTADzJxw}tGZ&>oT_~mm^_oxUL
z?};<CLF9w@i<~aOdCE15vhHLWO8<!ONR($|UZ2xSOdt0LYNe_l^&!M_4aWH<CG4bI
zFV0ca9ni789Bz=hUKX1~&o-n>s+YMfQ|Qyd(6sx(E=)CG#&lBXi_KR)ZIv)xbGSJe
zM{Js*NDXJca7i1!yHnV99rh!ODYzZ=OR&xqAi*j8=0FxL$sg~tHFmX0cX=mVDjkGg
z;78-c;6oPuAp=$HJN@q7vEOlz&$UFZ^K5hy)MqnqJZyZ8SIumZCRjEqZV(!p>U<||
zfJBdwc{6kN7}Z*RDU}EAltPN-+f3o@cgQI{Tan~}RPZTzt~H!F`LDSVowa9l=4-Rd
z*lMWhMA^|}|KIp?e}*y1L(5d8+DCe-rwv%yMCmtD3qSugyL;w_;qj-BkQHVAFNtb{
zq@~oL&i1PjYO0$35A`&Dt5!Q+Zi9IZ_Rp5$f>)s46WWC@Fzp(6J5l7R`SN*-D<}{0
zQJ2NI{&8df7hxFxI@HH_r#}<a2y;~CO*-dk-H<v)e_(0pqf|PvoHYT6C@U&+o)91b
zmNM}YeE;WmODFydoP1@d*{mi0%zr(mhc%zQ45G#3nyVtu?|T@C><9?t^q0ssW7&AC
z+&;tG;dA}-TlnJ!4GLmlI9HN<P9Eu^C`|b{_8^LUUnO#ju<+SIi-KEZJ`ujF`K<SE
zL1}X6an>^1X+P^h2@$IQCvOR4y0`ds0@<^k@0cEW?op};eHjn<f$dyL^eM}`Saxdv
z?J(tx;lF_tqHnU!I}})+|85hDg3zjFVBrNyApzWzQIL2jQHdUzOZVABOGa$cDKFZd
zmay2n0sTyKuOH1{lnhk;K#_@(Rg<pU>8$155x@tb;NRU|3woZSu#NHUmVJcdyy$(X
zscKeXLSOy*i~);Co$46kA#>m;VQtvH<b#fM=jD&I8J9FAyg?f8#5k)(titF54GC^c
zXw5syQQl>`OM-=k_NMHrlqY4M?#Cr@l7*Pe+n1i9`V>g*Wb2T^ygZQ*@u9&!tHel*
z^Hz~6D#wpkrC2nIbmy_#M_|`lkRzE|S%L8_&%ny;#O70qKC!_PN<~<cVFtRL<;Ojz
zI9P4{O7NepB;v!YKa7{eJ??cmanG6T+CLyViVY0zJVlS=+mzWs+?E0ZPG6aDhwZlu
zhA`wR(WMK!$QI%o6+bH;?Ed)Z!gukDqSq8sCY|5N^O96it;7E!*J6+`T!u&9uE7HM
z+l6QTB6gwCa`t|XK<*@Xj3_OQm0pd%{1}I4GwqFIPWb1)@-l;sXA3y}wz39m!~yEu
z($X*a_Nj%n>?A@oQ8jlWX->khxVBHMp2jO@d-P!hCPScs!Rio}QeVSxO8jL++DR~3
zI9tJ>wV+!cujol|fR!SZTQz>8*x%B1%Q61A7gtJ+1%J`{wCo)tuVVSFIq8!#ye>?H
zjA&Y)Y%-juunK*Cp0`h*mVIY`p6l>{jUmTLtc>4CViPWt-}-@B%&h3l{7A@gh4P^t
zkQ_aJC%q@Xis&3ofo(6Z9#MxrET)2sJ>naNh8=4aRV7(`IkT<+8`avd+o;XdSB6Sf
z{a0$f6uvS|RMamNh?`1AN)}8$k1KTl)h!b+q!t$Nvv)UCqMDb#|0Cn3T{w63c-BH)
zxY(ZRMxL09_Dvbd!m+K2QI)kZ7LRI+wx!$fnZxR-BjX0$+5Pp{!C(Zt_>%d^l|ug8
zy)R6Z<<XRets+owBfrbP+qh!Ku~)iPwxPo}?~_}~mKxKOGP5X8U@KV)ZfB~ldR5FF
zTegJznB9Zx@jH!wN{p|o56-|i7ilB^*y&-?$|QVqE`Mo$+QzZl!m}1o=_M(VWr5vY
zo%PQ!#D84HHC`k9`PLJd$O<dp+`yyr#1qo$FjqZIbr__77lu=bth$X245g-fl7vnw
zwXfKbN?sr^PgRF#gv8G6^z)$qX8tqboBOPrHFUC2iA`IzEE7UpOYk8EtEj{!#S`5F
z6&VrlIW-%+#nd7utJdhB{{#ps0`S<0+BQPGMbX3_69pNBaK7j2Jb%=LD(QizLT!Ag
zhMow8vG^)W1f_Kd5Qb$BYm2;D4Hold%|Yw9@JGUCfPCxKrV^#b?&)?8m_}5ee`hWW
zZI6W>^nZRSSb)xxWGN(53d$C$$Aper<ZO~<2Iosq%J*}m@G<~!%&#GppY&r<4;piM
zQ9yZnxW`nx!8KA*kx5hYYASJ17r@=^mIp*as~wv;RcG9z;srmb=35CL)54IE*bbu-
zEms_xoyx-LP*2((0K0O88sf_JXF;CH@1)fI6Pm#MH|l_r&bo_g<-JOWU&j6-Lkz9<
zRJNkBTUCjqhYGdQOUEDlJ_L2l9k;4m;cu2fsmpUXQV!{fGNjcsG?xQ)uOyb~jnaF}
z`0=ec#2asA4dsYPT$G}vmLx_g6ZmIW|K<pjmQk+0%k_+x)49s&r+Wf+^R+)bgmyA@
zg#7ccH0@){;_+2A;*Qr>*ev+t-euP8Io&#||KRoUqn9(ABJGdBXVhX1!);F!yBnb8
zi;`P1xe1u2E2Ekyj3VKB>AHxE@%lZNMCR+H!124Q#HUq_x#v}H2pD9Od)U_LQRs(N
z7>nn|3J)?rO0;}8Be~aRA4TPV`J<TDIK$tRtXN=&%~OH$`H>#7jhL2Y3+NOka|{(C
zDh+b9RtEXFzO;)Wi(%B6yPvT_EEVa~3PT^1bn_*+_F8@u=F-wC5bmW3&rm(HYwuv6
zg=%!eQRet6>@5F`HuLT>YstMkk|~i{XMp{<s#V(1yzeRECrR`><x%KQ=m<R1g34gs
zT+JBVzF8aPciGusPCr(}Vop;%fQ80>ymjPWe=~@*PWp;LFWpd)P~%iv)o?Eg**(+I
zJic<R7a`x%a-x=Sx0z@=|Bq>Tm}4t&%nl*Gh?On>Qhv(0j=d{9ZIj?L$r!`9V|_Qp
zo^780yM`B6_?ZKjRZFo^3gd4sb9{fspCUPGE8}1NRK3jkN|DcowRyfBrQiQdA3I@|
zxWptJ%b<19wTE!MpFVN0^by+HI>%kChz5U6G=bp#?~GZ81^u-}4a~Ljh1%SyqFJr?
zGZ-O?E~GLw_FhRr#GInF;-V+JW`Cn-^5GW2PqwDbJ|i9^@(P1Sc0(abvXz7$CqG7~
zc(~u$H<usSc?joDeR07FF%mapH&^DXTXI7gPi2P`hK}JYhAvPs`c}uU!>MV|B|Z4^
zs7O|UE8mmgf1U~c{R$>BE%j-@*4HNX)#Jg@P<k6mgrIm!Jkg)U;A~Meh?4awF)vUf
z<wSjAyWTg4Bk748Dat$NbO^yt3Z8QqepHa@|C+rkdm>dP1|ZP1xYx{m4h7#R??tpC
zHXfY-T~F3jao8;6Gk|Xeb&a0LYRF=6-R%Izr3;$>pMb9wPXf_=ql2hIMe>Xb-K95D
zkb*>zdTNX4@Xx76C_M%xvP6$C5pcKP(fy`9#!;Do9{PNV)vNl^P=v(W&w$d?lPy~}
zVVT11C1y;TgYW<qi0(M;6RuEI9qg^He0gxJ2r~}Kd2N<%5)u`o^C<+K5Do*zuu(xV
zYaU?flOfDsf5Yf(iqFj`8w>o!^VrGmiaudD$&E_$IcrIBA)Yb;hJ);Ia=AxMAuk`F
z2u=3*=kN_)#`_FXolW?$$%IWfS{H|St0+x=eX5)+>EB$<*iwQ__~Emy<M9APpD58X
zqTEhiEaX(Q`B=dDw=y+F-A9CNhw&`Y{a_q{#9x)}gc!KhLG{J)+q5z-^nWcMgvXW{
zvTu<y1jSD`9_F0i9P3H*i#PfT<sQ+VHL1Aag9Pl~0Uk$3rYhEb?c#m9I+>KK7AsFH
znkst0+n#Oaj<_+wmMUM9&k&f?*6i$(jio(vbF|JjxU!SuK1=39jp=eg%<)Oite4M2
zU$JA|GD?sbme~=G>tbN8vkxJy@BweD^*c#IecJ9X7*6X|;D)l3TPt;AEQ7bp*%ZNB
z$3lJhPz7v9Ch%^JetpfhH_Y+z`?Sl`I$w90JsSHCnwRhQqAg|iNX8y~ep(2)V`%04
z6P%8FaSqdBR%tE21)06yx0x?GftFFa$lV;@?cHRiarPU)xS{meZ`#TkB@>PCR*S-h
z>Utl?dS+1uUbFzE=1oJi(==aN^MJGbPHCNAuV00!ziL~JyvM+~2RlrzZLRHUqs@D=
zhW=WY!%ZhyFhpWbc8S3MEH|N=)?fa$u)joL1M;Nvu$DrI+f}k<K+ANVJ-Xd4B5aiM
zzK-L|hWKs0pqXf3N3Hk3i_U75G-gAB`w_ye`kOX<4q<t>%fb_JbPdsr`BQ1?S6mBL
zJl5yIljI&Htz#GbHBcY*0-q1<weve#TUjcFzFnBw90!^ycLVFkyOv5#PHwM93~y&r
z%e-YNpz`b0H@R24w#*na>O)%aOz|%z(^Ou^x_T%!>uo!n&h-EOZ2r%h$v-mCHUtO&
z-4y%K9Sdu4Fq}vqo-HHOv47^@h25`VDVA`ioahB?OGt8pvIZ}n;q57B$T#Tn{m28o
z&0-*w^1Ok+os!1|4`&1zQ<GJ+zv=C=o<P2CzJ!qG#HXEpj?Nxz{C1$X4*BAxo=3|p
zO$agTy>%bG)hpLp#S|5Nhl(mBBa12wA&w&DsTg*oyE`9JYc|_dvw#I@_P=K73kp;r
zzRh`65`c^l*M+TYgGQpNr`sVYv4HN9I)okM%sgwX{^i5F${W~sL*XWXqUdQ@>^uR6
zT7z^t9V}GxcSmtz3n{j@-$$W+ev+qqr=c>pbm!}M7q_ooUh|rL2IedI2fF^pTgVIv
zHSvStiP}0l`sUE!)-Cm2RNelOK;(~@3NrNsU*u}5`Wy+De#1GOO{x+L5+@;$sAM!%
z^z)8BwXaQw7fJ9f2Sai1Z!J>Wr}q>mDUu?c$7EI9ZjK}2IkrgEDLSunN5IvhW^fvw
z_o0%A+pIr&yqS0=jtWW_8tKr1EN3UPru*WIrG&m|?5}S&SfQ;owv!oAEn<_UrpmV!
zLkt);pEJQ$j!~oC0PkJ(D2ThV8!U5Ovp@PXfI8~5VL7g(VR*JzX*Dy3bFSN*HSBqk
zqrGlEm&1$d_<euD+)PS!0($QOGhfkF?U&o|Z)Lflo6}+Qt+G9Z-(L5hDrHI!*pxrn
zm0s|*l#YrsNVqC*Ugaz=)2iCJW`4w5zVN%-Lro}d#g8av^V~xD3B6?7oXZoWu!b{*
zFCl-b{?$9;e_DqkJyZ{HSTtc=FcgxGdc=Rlpxtv=zEOmaFYW)wB1$B=37itra#|>d
zfMpwhU*ce8i>zn<LE^YoJ~m@;WWF_84X`P5&l2$idYDvOfgYGXM=5UO2}6i-CDO~Y
z(lX1V4dRXFwA;;x5<{2W_i-cF$lfMApT-!Bb36uUJl-6lF@W1(eLyX*rQyRV_(woy
za+?)1dQzFlcDc0)eL=HJo{*Rpa+Aeel<2;;STpHUg%lBQHC<yl_R(Br9Wa8`2i*a)
zAG%x-Z3^NBONuv+F_(!JLV!&FhN0>l)K2K-45yFsp`D2*v=z#y;E-y-9=;2scjk}m
zuz8hpz&)sF3F>NlnPO`GR)%G2k9PO@MCHpDhEr-gHnI5hEay-cEaCK~8PgR9>Mh^P
zM~3qQs;G|E-daz=NANN0BX@H~TaIUBJ|zDD`V&qcAjj@P@283m1w5+(Ek)8HXcn44
zGoPuK7hU~LL7>O>;r4iYS{_;bl=v3_!XCy|z0H`Ucu2YKKjlsJg@f{hj~c`MuM+*9
z1FEtINVua7whI?zeWf0@g#$YD^Yjvz;lnR(0X@SdR2xzYG4e>Z^W^xMW_jnaktw}t
zSZ0+s&ZE3rjZ{{0m5(G0oxu*mXX2~+^Ui1SM2LF5kd*1l_q26tFR2$-&=(-)BjeHP
z!TBwtIH9=6uZ`7p>8RZMaweG*`a9;}_Q7VpRM57jPwz7;achzgtbp&Fb_ys4gMghw
z?vnWNYY!JWz%e{$e6C>tar`orSI<9cSm5Q$-@!{T_%T6jnb;#TG84k^-k*84)@&Ub
zeY)c%O)_bYdq4lnqNlot!*55cc*R1k*q}6W%BCrsIr&cEOPOX|0qLpXwnfnJ&Hl93
z`57XUgpBI<>9^VU9%>q~?i$QVL6hwmAwv3}*Li?|gc#TQz2LgjTe4JrC1FBh%As5$
z2cN^?y><q0+Cs`3gqC^rp=KH0Jf~(UuUES}tR{}fy@JzO<2Bl%P`~Fgp!<?D2xGSY
zxP8y_o@s=8UR~#$m%7rkHuBwfZOxe#zmSMFo5G@o_}wCxqWEB9RtxXT*2C9~tO!jL
z{b8gHK^FgTGX76b-GBU^vILScRzTXPGrG8UNcD>!<r-+t0IQC%337j#T@;YyH#S<z
zjqpJCA9*xrB`dGh_#vCwp!H{ynkoVzz+IX0cA*Sr&AqJ3J`6o354!-%P%k-BF`X}H
zONK$VXpJ}Q%u$SwO6(Tc@E9%GX-9ovZN+MZ%~Fs(I>rJp?iU{LYGi81Y0r5c7ytF4
z^=_O|;=Ae~Xe427F1-Pj4)6{{%xAe?5B+i{&J0?%Dn~=1%j+n-NU=IqKl=I^L?pT&
z@^MQngNxt>N9m&n+oceU#XnaLlR5@Aj8MRD#REF!y1lz!Jn0U{@d(dAScuka=wLFt
zX_v0nawzUjV4_XDr}{GJ3lhXfA(i<EzE{gtvFx8lCJSinn!?LW2wiCoyN0FrDmnEx
z!+YW_nX@-LtSdImKPL!i=4xXudvVX6YUAy`*6Qybq!3FvSrAkI5FD80Bgsitp<DMJ
ze~r{<xlk$dF!6g9`Leu|s<igkC!|smEZ_!alPPz_ks#Rrl)gv&ksSF$&CYe=Axo76
zOB9?mx85-#skUu^o_YRJxuJ}i$o#cx6k)ZD4Yxf}-*zM73pZE;>UmvTHtQ#Gp#Vd2
zC)jzBmDiwCrfur(HF%;j^`lP<`Fv;IoT6l>urmsWEdMCpBRpVzxIB$)7165S6zsO+
zW!kPm-Y!kB^BjS>1^eF_2Vdza5H#|C;N;KIPRHzlj-0=hO2I{*pjW8yZ0I^bB;pVn
zFG9Ix4ak@%4qLKRn1a1&cwWrWBm5@=!sPs}5i$vZc@;l{wHG6Hz1CaJ;|$KEu1idR
z&DB`$+VS_ks1&pCK3W_E#)n<%bGfhc+bmgizpL6gmp<@pS@s;8`<rJpn2J}d6j+8y
z(ygfE{w>|4-c%wc75c_=`P$8(&?8BrJ$rrn1FUGhgx%)-=`<~!lG+gTE2-O+_;1_6
zq6PEOiwVY!{4B|s-t?<4_8jTV8LuUMFAqhDUz>Spzd2#pYITisRjskVDS(hHhndTz
z^)OVBx}qFM8wG{d)^5Mn(y{Z%^Q<!seP9QLeyTG9HqL*cs{XfMERsf2_Vocr_?`wN
z<(MPQzm1VXS5|;wsE>rs_eVOTJge3lz;Xsa#GOez__>RQ5r~orU4kfKT9IwC-Oo+?
zGnz+DREjB-FQ{a9LcYrvg&8gOUCF(J5IP3H=;6VXXkS!}`&{BNv0atNXrW@4#=+$D
zj)SfL)^h<06G6QYzYM6ndySlO;l0@CxcXXJSLlfV)gN3X0d{9xL6sqdMpL)DqKgfd
zd*VQ>o<LU&9Fup-w0ZU>qKuOjM=I@iTy_C3_w7N^eYPrnVmW9K=UFMHDaw8orcOYK
zZb<wW03R3&heLEjuzK)d1#o0KUqj<}>z!c%`-#F%oAPb?#(mGp`F`lk{c6kYh}g*0
zDn3BJcZ92!ryP-m#){$bWT*hJ-Yk238&^5B1)Sb96;YGDps+*mCZ%{e?@&AO7J-rV
z<p$-h&6HBRE#bHCRsxQ*4=nZ~tnXtgvF%_YaaK*n`+CKb?1@$&n8B;;Xyn@oYsI@f
z$Vjsk0$>_;ms>V^Bu<K9O;aKtu~zR8Bo~So|9TG{7PBG!$k+g&2;nfC@|Kcu!%^d|
zuVRDmIi>BGZm$2=`%y;99O5NJVFTm!!8gAH8)FP;Lnzgofr841!wj5@E>e#)<tR@1
zd9vPF$77&4E={jL)S5G{lh%EFdI?BOb>KM4Z^P$ktWob3!B3?`W8?@fS&4El*1tS7
z&yd*|l|x96`qIFG#+R2(#&mQd7cu`>B;-8e^(e{!i|->~|IYN{iD;QRR*DaC2GF(y
z8*vXyEtdSTT}mv6Q{CYPwCyN#PDL03_j{S%1Dk0DA*o(BS&(g{S5WDkH-K&8=a=x$
zkHsW5R<#wxICcYi&n|0c><AW!Suy#f{ViHou{$`DGN_3GsAzt&)Ea*=GMV(_LU&c}
zFgsCo_JCH3^V`RvihT%CU<D_ad#|J@&4<}AfT-ZE#0wuHk1x1BgwPuA$x>rmKq>P4
z#^H<VFfW6KFxmI)!KB*cRkza+kMX=w@D1An5_OO9hl#Ac0+{t!Y4?KKaue4p`gecH
zDVOy;RBH@gYda(zZ*+LFG|PhH=a*5!;R{!|hmpDK$CRGV_tQ4ANj@51N5uO&Wv<EZ
zUI;2t;@>RC%wwF~kDhlA|82D&`byTxutQ;@7M@|A`U#{`<Puq~+J<G$)H(6X*d_BP
zJawNE6b^DPNc(6gaPxW=oxX8w^rD<DnU?lpW=gAj+14aL1u>8Hz#XbAUurCO{%tt(
z<;r)5+t9H2d9&fn(yE?z;VjjCOnTBI|8I0ClL7yn9{)e>4@DwK^`Jg1UO!HyUyN55
zl?XpMUY0cBrGIv9QhC<1zrn&~^XvqE5T9(bADH0`5By}S1nPwkBl>W$N5~yepX<T<
zyK`adiJYLUN2RickY&+GWe>1Q%z+ihHK{P&^;=C5yU7m}|I+}~LY+0`b599gEVw7$
zPilFUNaec?p&7@YUk&g#eaxNDC<SxeFG0M&@whlF1jrZ7tso}ADuDNt-);X-t8ty#
z&r0J7s%j_{jK0&m7-iFbIUTf}4<4>|ldlH1ip0Wd`;hrSe5)Z`U^|fL17M5sF^O!D
znyZ(^(hh*J3)SbRn6B>G<2N9GIS9CSbWU5NE*`-|IgU>4Se-B&mv4ttIZ6O5#L}>c
zgA*`cXT$K&m=jKbE{{djPZ(AYlzK-EaASm{9@Adn>$(e<ba(*7Qd6}&Z`Q4p3Q>=2
zV6~ntf_l9N?@m#!UR!6$)1S%~-g3+!N+MM+8no|jXcQ(%)i0^TTJ=IC6UA5^KZ^15
z#PQKyLkR=|%a<d3%)fX@K~1&#G+({ULz&)vERT{$EAj>Ah4@cwO1US{59NVxQN#mJ
z2ARI2XrvZpLVL(r#4p%54Sh*sM{jS&3si*M06A=Y9`S59Mv6k_$Us_95w+-3I3Npl
zCK%7hf<~!XMz=}e{p`k63?<<x)ae-NgApC1SBYK!-Gc)+QygH%X(?CqU7_w_nF$0s
zBH3fFn1ncZ3<*YDf*m|{{LA>tCq@@Mx(~;J%Dvtn_2seP_V_v)s90hIvMZ-*(Pf};
zo38T;&zR<6+uC*tU10NaTXISA;%Qy6y~4UlrKRa`HyzL7K-TZAIrWKG==a15uF?q`
z_Y<Li`9%bh<@05H_zkiclA{<x!9F>l5mGyfFPJDG`Veh^RQ5XNyx-2VeWI4jvnnEM
z78j!0+f%wz^avVaN<m=pM2HE2UjO=x`MfV7`rQrmh5kGgY|I~qQLBgp-f^2M?g;om
z2tt1ggAON(b9<sKSp7a=8yK%hdJ>_R2!MfOHBfn4fFCa3>NS;>4=CBHU_KfhU_f9u
zK+OhI>g%`);O9vla~GZbP02W!mva2pBS+ulPsasnY}q}_uj|PZ)oJn%(|;T77V1g#
z2V)MRf!f3ThezoC#>vu}Yv4V>n9oO&KtJ+!tXJz4z3Yw$il;%%*^dr>0gRAqqe=xz
zxJ@q)$~wn9-rl79?B!{nqxCAq_G-(sV;aZ9y&j7va}mhLK9)j{4HkMHZl2TZS08pH
zp*aWN?s(=ww%9-+TzK?vU+dLkWHAb}A%~$a*<ZqK&vC(h(eAVQnEk$6P5P)-E-E}^
zf)j#~m<L8m`2IEM64aPZlJrN;Dn3|BC(+s{G5;<OaB7~%3!2?#M+a&Tae=%MZib+l
z1p2Ry+*Beg=sqJCYnL5YV=Af+>0c3<l)R*8g=Z4BO*0cb)P$4fzb;7cF82k_WD+P+
zGK6ng2)E<ERsDsElsS*F&_C=D{PgE=0{t$qZ8{$hDr@#%td>gaw%@<vh$w$ZQ4h2l
zn$I+Rm;2iMHGlhxU$$j$3@uYiiC`pS<5;KAT57xc;46pAsUU~nAfalm0j_mj4>qiJ
zmvwX~EmI2h;8j~$bg08Jl|u9LXc8BargN=a#kgN>0+e~y%{2&;SA%9j@)TUOJ|F(p
z8X-k=yn7W$@E`Y(e~3~4lX_K3_!#fv-Oq$%{rEXY-B5xnTRTB9ZZUS0ftl*ZW~k~n
zQr6+*>ndG3pfxKUFs*-Ku_@<uH^<3LOFYUKa>bOwP6Tmjlk)_q@{9m@AdyQ+A#P&B
zz;?ODi_``2zzULJCi`uF1|DdAE4b9{M+sCy$xho1@bEi_9Yz-@qb&ip-s0G~oQ`+t
z%exxev8v`rooLL;1bIT29`s~*Br0Z8o}0m6W2t}8;i;);eIfddE?Xw^gQAQnyJH}7
z3(HU$Z-WqD`Uzx_@P!tX`g^M`5}gblUM@n4C|&c309s|M@UhJ0CnLD-3blM$3N2i-
zdjuY$$~#j|<$UNHJ4g^%0!ogklCr|r5?yhbB(Pk)VUbTp`M*fSm5Pvvtx|-$Pc<}t
zlu6b~zXG)PcdYJLvOA;)Xp2|p2M4~8wH)`a${N%!Ty~}y|N5+bxqD3KSBKLr7+4>`
zsj`Ji*<<CaatXRbm~iRkQ5?XD>s3}D?#@f$UJNbl^(}O}Uf!*=b!qLpTd|!gN=51|
zt>s40FNBQlVT8sQVfe1dRO_l=ovJSjPf-^!hH+j4o8n+WGb{L}B(|7L{Q0L!(NuCN
z*IUNQ3IrJ@O2)i09Ll{+9fWQYRN)X~(CXMMr&u+gqIa$L;(UnWN62q4nc3jR9}9*r
z5NgMw^)C#v6h$|G5#ldiYCOpub80HM&DIl*G#;)5^35Q~%7M)Jn~1`@tJ(IehQQ-)
zcQKYqYwa^~YvPjw^%<vm-F_nP8h_yxqKRXLd17&}Y38%u&us*Ks3CSTxgBRH<#<c&
zD=iT{K!nL&|L|?bXG#vC?%z)bBK!a$(qMCID2>+%X*cNQ4-e2&#|v{S<n&=#6-SHw
zTSuZOBz3GfS4jEzzR}@vIpxHmoVHs?Ts21I4FR(j)>|dM&XinPJ;8BHGV0Nn{-IEe
zbEpvphm5;$#H6=e%CBDcFLx1lv5t|xD;KNdmaj7)^@sY2BU+!J{tk2r-Ydj;_R@*b
zhgc{pH{Ql&s7EZCp}Stx-t6`xJZ*XY$DLkMIcDN+lXoWA7r^%i0z#wDLO9F`oT|{K
z%-eNMmp(dm*0OD+GDKoPi8W)Qaw08#Z*w>o+?A{;ure<s%{Lnf5miTh7#lR1b(z;G
zgk_s4?*pdZS4MIg_(`3Y#c9<1I}1S05l_!(_4k5hJSU!yPV??|rXU>);;zK5tw-Lq
zr0KV-Wqpp5RCT0T^YAS&)gF7ZE3cKX^Xiw$`N{1_>P0rE)yhIUe%e#ooR|jQF3mHY
zGxC_??JvbHn3%s_IsS0LZa+$r+f;~ij3Rrv6zMaH-LG?cV;Ws?Z1>B-@J`brQa2&^
zV*HPNHp)9T&POK>|Id<#G6|A0fl*Zor7Q$8d}NxW7*DEVCNhzT?1J~|wanxhcg&Y^
zKG}6{{XE~3dewGG{^H3-^FtfzI#N!Tz9+lR(UH0bG>z)TOGW;iR&9}-R+F+j^;QHF
zXHDdC;g4nve-gLn_~wr&z@L-T8N?f3q<;w5Z`DrRR8!=o^G;M8uylbRf`qsW!DD56
z)2DE~vS;NLoSJ5>LaWqq0qolWA=xcjxvzq8u=6SbNuz^NG55_|uLz^dZU)ZAROCC+
zpX1g2{Ac(%padrTa1NPJ?-xwR$k`^{?MfX#evukFzID~*<p-!8gE1zXBdJ^c{E%-_
zw?_D=aM^gLnBPua;zvRiV+8`)dLhU$+mnUCGTHZ<M`LFX^&opUlIv@p^R?EIzx?wH
z#E^Tu2F>*5I|KM|l7!as1s@daG?+DKI%K;zfn@RO;EN5?8b%_bJA;ZbSs)JQ*$=`M
zJJn|Ib59^SLIhoAs%kTWc|OMhg{WIUmaq(dA=bLl$B_5isS;5<<hA2k;iPbs6KUJi
zBLs8v-Vl|?G#TySN;M$`AGG3q+KJ&~=^5b^w@(452**)j9-y&ayOpF{XjC?P;!uaP
z9xP4-@q_tY!#mwR!`^6&-(1`{Es80coZtTT$xx|Rsf-HG+}cRz=xSUd>@vBDq>FhI
zP7<^k-k9Se^PM*UHE*#9iw!BG@mSYNaOPtD!<6#{d|7yQi>yle5##F$mYfJtGXA@Z
zbyN1f_JYqRMMjR{?0A<^1#zbzGPg=lBK^u9QA6NrvoKWIS%}&?_se+k`GKN~Hxj$b
zQ+CwmXP~1X7Bu0|&)}~OHl!c1kJXLQEz6sa^^HWKw}(V!`x*SLUAyP{I>AxEcr^Jt
z^Lj7Y&+yjqbSUJYS9tcqQHg{|YFwk|jB=Rg@EH&EV)b$hN-9ioPsS7B<nDmWpm^HW
z=me6^h|%#>6OutkkM>G3H5Y$j+QbR*(lgpkylRRpP+7V#mROH)T5p-%+K$vZ%N@x{
z>qFfe1VHQ9*N;=q6Rn3)oBAo8aD?9+rhld@Xyh0qdeWtmX09a78u65v@GbJ6-)>YL
zQhlO7;)-trwD4zV-;=~GXJ$qgk=_JgYvgc}xhTyAE2D`T^!VL3juq}(X~{@+^^_1H
zp!VE<Q5T-5-MP&JlwhYbxnvb#J<}ipoA(ozI~k6+2b}vJs(jOIeZO16t_CcaKfxvZ
zZX|WU0SgPG>Ug7}J1>-@^9=!dnd6%2LFRhmY2L0Ex(wT@8ybo~ik+O^^*+VCAup0e
zq?b0d)#0E+Z2W#uaFSGxa5z@R!GOU~kW)I5HLbkCG?K||d1Gv2SL(??*EW2p|8y(^
zrA#QDaGi~)1!>jyc3hO>x@C4quuo_5JEic;%#}7TqY3MeJ5CN6G-sV9rT9!s7aExw
zf?tJoC1E<$HBdi&sLzg;wgAIfYT{u5)GJutbGJa6ifN-T>7G7r1zMbzkSAH=8|xTF
zPVYot1|XJ<#11+ZqMsIi^1GpZaOdig#m6>swAL_symQj>r2obcDj%x0kkKf>ntW6q
z;pMDsG_YNRC#)A;h<e{r`=_l;i_7xeX!a5W4PhFA`*+xHkvs^sE|oU*;q?JrShnWa
zD)OKH8DQb@mksR5ku*m?PJqZH;{6NBY6b;K>jOIBQh-yS4Z+D7@z#~;(@STVMVxQ7
z*@VD$^~fEE-wdZ1I>8Ns<g5t0$z^qZr$gv)+F?GYeGBwP2+p5!x75elNFnuyAx@Zx
zhP+`#C-F&G71!tVSl&pV!#U@PxtbT$<ADF4v(K5vsEx%FO-mOce^<J5!m8h#2bsu?
z55i#%SQ`g|5}^f#`8r#>ygn5srA7{Je8m(3E}B3z(~O1+vlTz+X*sC0Q|Llm%i8}W
z1cu*D;44GCl8kb0hHqmybW3^R2w_eBUGt#%Vcm6UlilVDl0bt&!ucVQ?&lGS=)mj9
zN58;YnL+u)%fBKnom-JbTkP{emFi-9xvizfH_*g0P0T0Oa9*bj#`%7#Ut74p$3ZVy
z3u*UfRc_5ifY>4E;~?8AgPd3X71x98WjlZ8?^e_N$(TWY83pirKO3dD=u>Ui%Gg(V
z;=24ev6#6I#ZjZlcc|m>)u@Py@o~y3FC~zLDavr7@14>7BZfeq@=mMhlxpc?h^Cr-
zG^p;LBoDuw1;#Z?UjO6JV;-d0FoH7cXC$2cl5)Ce>`2C2_dr5>^N~E+OjX$>qxxn&
zeLTrDJBS+>rr&(N{xsa>)s4S4j)5=vXK#s%rYT(?wkg8+#+nf?YQWkia*I5}b^W~+
z(&eGLoa>8T-Zyc0+-46(S~d+wW7m-SJ5qCeCfY!9^+pE858WKtV#KqKpIfSqqh3+n
zQAIFS(FaDm&OaSQybZ3;-8c643rbYK61@_hXEromQA$kQ@?IdmfzNN@_?a_$2@wF9
zY=&$**E;iJCiLZQ(u?mAHr6fMuc=Xcu~F97@}Ie&;hi#uPbpos$gkHoet0=4xI-~x
zNNg(VocH|`ifYjY|7IT4pM71Z*Hvq3pkDqJMPB6V(IELhx<L5J6kGW2Y+UH|)=M!}
zo;Qz~4tp@R3u3WkEHAbqMqGIB&-_js^ccP62YvM)SH#r{<YPc-%Lb>=OHPN&$cO9O
z)YJJgnK=5M*q!4Mr2;5V(rGnzI6%E{CdD}L&C>gE?Q$h}?%G0JzBxzlaP9WTdQ6&6
z3?Fga&pJMSMlnQ>AY1;VJa5a|fu9H0u>CDilOJ#8yiM;_E!2LhU1b)-oQ6Nlg_M|B
z9RqMDGJCyyd2iF7RBxPriso*x6%r<G&v#X;@eO~JS^s$TeFgJ3L3S$Q1iRxn)@2<G
zU75YN<p}3$X4^N!+i8hjUnEQBzv^zm8}y7izmn9EKG}AlY#qV>H}Z-vgQM|W+ah*R
zN(<qM@&EhrM+GIT_S1_<3iQwhgGmiokz&?|7AsK^Jsn!`$(d<hiH4z}$p4XlbK4S?
z_jW`_wZXCURf)M=qHJ5@NS<f8ku@U~>o&Wy5yKY|e5pq-P+Gi8vy#g;=<rPbF1Z={
zY{c)BAb2p!SEj!~Qih5v+mF6&s*;ML$cC}XYB@f%+D3N-s`|1AaXu8WAfP_#?3#R-
z?|?CdTOfw(ry24lufKm7Z>Ts@HliLS=Oz!Z>2{8R>vl%@37#9|srWC(#4NMt)PaV@
z$oZps`21W7c{S11VbxUaswihf=$0s9*D@P)8J6O$0gJ~IQk1K$V#o*v=5%FZ&mwBF
zl%IWaXSke^!mEBAV~AF6dI?PuJ5E5=L^05s>sLoB?`!H!+Mo!!uuWKt>ymae9Ke&Y
zuLqsrhuAYzAF*M3x_`muK;ICQIBgqZdzomd;04lGzD#m+lip?4Qe_E{)!LlnC)g?M
zE)`<L0gIgu3fMc#0BoXs`sd%)HJp!o=7;#;aG?@w?JexWNf1Wat4%-5on|sa{_3Hh
z+592dYQ`PH1f|QioqUJAFU@54R<eQAclnqcedBr*?eh8YB)Q<&)VW2f!Di&N$s3n@
zpkGA3HJ{af@hLx_cU@|Tj5s|%>U0!{p8A_gEDn#k+Sr&eSfYbo%ie#@WF&VSqo#t(
zis|5BRbIep<Th_fum-{!c>Ah*oDjw4XD?}cZtxxhXd3=w3G}Z2wol<d&piCYB&ZBI
zCZlpyS?J3frk6QZbCX`})~aT=+ddsIget0cT<;7RciP8s<+*l0Ii4(~$)Eh>yRQ}F
zQQrs>IWIndX<KljeaIFN&royuZ%-%5{i8`CgFV`7sN@SW`4U-@;RLD;_WDWnw)oqX
ziCF}=u^jn%kPK7Qf}dTHyFj#VsVNfwiTLDMG(e3g|D3x53U?gPNxxk3f$=*$C!F<V
z339N>R$td^q?b$xpouJ`=1Wix#FTjh_=`%*2I`yv^HGFOG|RBv*I1T{;C};u0gfoG
z8}!ueZqhpECV=|T{Bfg^d!2wsPLx_bVs`+yr&+{RR)=IVQ~-<*c&Pq6l4yMa?EkY9
z{~tfUA`_H|d!yu<=30}UV=B1$Mt&YMvthHmuQ!}UyUNzXUH+rZIfj2p;G-Gt%KBUm
z$2AERbUDC|jH>a@9ixhh|5)hvwJ)+qG7B`v7=NOXihMSP&ReWqQ}E|OV#5N?3VU~h
zVO(iENEI~}lOq2fr`xC?GiUKsiMpI3FC4F}_JNAJ@u>s+^cj7wPGf)s%WtR^;C?o(
z>4egm21pPc^C2Q2`>$7D6&uvU^<dNZH>YqG5z26epe`s!*$J3;nbk*D4GX1?Mt!`A
z&f0n?#^dnHa+GW#ni|*W?;`jE8cYZl{?>I}4l$(vl`Zi<X+Rx2Vp$;W_Yr7<!4u+W
zO+bcTa#^UiGY1fa=b0?p)e`@P{-0MYd5!?&<vKa$gLBXU%O=~!*0d2jeuZtUm?6*v
zS$&I`!sk*FLHzoy=h+UNg3EqU>pB0QSAfsmw*iV6VnJ+5T&M0mJi{3KJ(y`?)gWL?
zPE;_VJ>EgE+j?jsR#73K%K&#KxpY1kv)%||4sgx!IGvCR$FWzX0+}NM>F96*7TJ%g
z@B?uq3Lg8kp{E+_^3VLau>C=}^zAn;8+t8yd7Sw1I#zFhvzHnD1O0cWOmqO4a0^g*
zuW(tzB)Gvy9q^CcR5KQWsIh_{ooGbxC$o)zRbE@1YlBf&+8*hpuopypdgHM36DDa!
zO^TpS=Kmf5gBQ@~O-riBWxj*Ddsvnz;<?Sw%Iv99O{GK@-A#ILa35sYh%q!@z}`Dw
z*?MRGn`Q66>TKdhV5IOR@ZbMg|5W5eP_f2)EbjYx+u=h=!BV4_*+1>8Hy_S;4k=tV
z8bRh|;K$0!8qYE7%zMy!lIL^%*O>c(Y8~C-3{TLM&3*f|%W_QMB%&378dhD@-!y@0
z=Co>DYjRMZJs{1UK#uPE-QqU6ZVfofa(-<Dz#ob<y0lx}tH^*DU2W7E5YVlF_Q<3M
zm_7DTFn2Z!Qte|wm$NA7(b4C<zd1Rp-z9t?tjRX8QqYep{+C1XKc2XMTf0W(l3BKA
z*<lu$>3P7@z2z#jJ6BU!2Ih&d0tHh4j(53lF)Wu;C6V{feou%$C})eV`-|GntNCFT
zOR@jNMg9MaS0q6^>!Al@pn_qLz9k*<b)n1<4s$@|{#QGJRt?rq04@UVE4d_AjB<Ms
z>7xO;*OsGYA2;&3cJ1Jqq#^0iNm$GQcrU&7>NKSdOvFdPn7AcxgANv+keFoX%S*TY
z;Mdc|&E&L>^#+gXYR&uUl7URXMLnGVzkT=)tRiNVcQOdL^nKdOpIVVZ83{XeCc%Ja
zKSW;3j^kf!URm!@DyzCcdott0-g%w<tD0M`obN2(G}9mExa$wgar$0I9QM)U`)q9j
zr=F!?@luvdlcj6-zj}jYaiaVIyDsBnar@41&#Onc7xDzar<_%-*vr|W>Yz`02^LUf
z#-_`neaqg)l$w%@Z&l#=!(>%kbdaf%Ob~-oNRLXsSY&V>+#i<U4;AVSOI6?<0V~&S
zi1%{+zaEG>cHU-f?kI{>965l7a9Ep{oADL|pFSA4vR+IUD8yZ!Y_+U(1)=8y7mI4U
zug|&7Ty=gKfMaCC>0ISa13bVm{TSf6td###s{h}&MI)s5vlV+Ga#{gr<?TE6?Z{F_
zkINiUY~5g3#VRco^7pH_m%k>$XB%&{zx<13S`>kD1N7H8f5fL>WIi9Nlxl!o&MY*7
zLQv=GbQ@R5)TsvyUYT0!<4Qh%x~EtH)1_A2<x)+yCeSF_<+20bQIZd?v)1mR>2&}W
zNb8|H>+`&Lh{dx$RNc1iMQS}eDd)%+s73$xt^B{8TWa7UsDJ4|GPVX4pmC$={K3jB
zI<@_KR%f7Na3BB~z3bYu>$$bl=CEUu@ZCl3!~V+WvO^2dV9+VhOtQ2Bg5Qg@C*TZM
zvHZvC|2(ORETeEbEbHA}^a&SWB^^Jv#W-nnK0-*jnua8mYU8#Wbbqv*`xgrmEaCSk
zB1ZF|oNkdmB#-<UM<X8W2F4Hjxf$q7z~+{exL7`z{hk>?#tYM5Fq{_6vYD-5tpZ&g
zXe_qyZ=N$r-$BiMbgT2MzS{uP_tsdOR~{{vHEG~R_PXc3{qBrSyV<$;p$O=wgjCRo
zFtujNKk1zR+#LVo{iQsIRfL07K*IIDk$g1STfK802Fh!wqLZuf7fl>dIVLr9?dZTF
zbv3Bk2_y;~=rr>CuX`}H@*@N-ZPijaP*xHLF1t!sfA^Ryd}Pe#VkM6UUTYG5s_^)4
za(-dq9S`+4V0UPmD$}mFod=sUF}H29QRgP0Y$pL50vm1lAJ8)qfSd`8koY{<1Uds)
zR^wUzoVGv5gU0wAg}O-2FnAWRbcCD1dln8(Q9}$xt+!;p7pum^bkPs5LGa}A6M|wZ
z@+2Hq>r{5rw}XN$AyP&Ut^^PuOz^rGV94wb!KN8pVmtc^X1c2NE51Ob@oriKb-4RP
zgbXJUj-;)<O)Q&jKo#w=!wZL3(S|$Q%A>Ec5(+*S{(3=oAANF+9a2;~5f~Fy#%g;a
zQ+la=f(`nV1kJ#Jn>A?y#F6{wFFzLj#P~nfZ_zLc=U#Koly!3kbINu2&EM(p1m5Dr
zdNh$NS*+yBSg?b-MszI-;tr>6(P&wK|Ec)v@h#I#8BQ8@_-C`8E8}Wx@U+SFylo{h
z=@$D5b^#{NP0*PBc4w-1ojIZELSuU4!57&=8A*9x(|QUUqEix*9f%+BW>}HS5DEXs
zlcYh45TR)~ma&KT4VW7(lb)l<+mv$JFG=b+@2j(3PeO@VPJC0}?fZ7S%*55F+A_!y
z498r)E|lGZUO!#2<udE)``(|&{#~YT*-NG+gMaYYT+aOFDO-O$+lnG;?g{s`+z8(p
zydkr1@J3rLzuTfkW(b2DvtKP7e69D%YAZAP7A@1!l=b*KK3ixi=U!#il-;5#!SI!&
zg#sDFI-*}5qs;pmYpV2yxiP^E&P|uC?;d>=F#AdJJnL)wYO8(uOS(!SuDjf%0Eanv
z&gIl$$t?5rvURPZ)OK_Cs^<cE;r-!*Fl0X1W}^2FlN){eryr>`R8-0uR@DX!i~5_2
zm+JJ;^H6#3^YwVhHy6}pxdR2s#HTA8V^HS3hB>`?yJ<BNH!Fr3-!v*UA(Gvje0Lp>
zs?}wFxsfXu_$(VV!DF&OZY%vtcGqCZY;KM2csFTfFzP#$2HiIme`|XGpR9Hxl>d*b
zuMUbjTK|>?=?3ZU7U@Pw0i{7oKuWq>kd*EQLAqJGyGy!Ty1U^$-gxi5znL9ohyP%|
zd(QKGGWLa!BM%YzWpXhUwlLvQ&xjoUa00GRmi5xRVYs4#bMKV(&r275kKb(%1c3(3
zxnKp7G-)*}`sImN*L<pst<sBtO%9(W-WVBAW}l^@aet-farMD*xvG{qkw=Q(;gI6J
zb{W$zJ-7Li&ad;<>Pa_;+Yr+=4^2Vubcg-QUyV<;2Z0Rri)WKmMr#N4RvveU<ugl_
zn{qG^>7POJizGEGvOTSQT5o16z14Q->`&^?M!d<QNYDgzmp$%u@s}Yvaz<}4bejXh
zj0SbC63_!hn7C*o6lDT+iiHr%Z~MTg%J?_;dGPgqz~3B4s$%)%*ZolhPC)E%jne(M
z3w>78q>vHucHi8B>h$kih^(h7ys!5@<xL!gL_i%k1$0)iAlR`C5^-(EL6^te*UI6J
z{H>uR?D%%wW;g%+9o|HC1K*}6H_Zh?xAGWC*z!-+fK88eU(S?3P{00#u0hlUZklXB
zwI7XL&gikNct3kiYPy7lcY;O!cv_$0Pbw(7UaPFbp3ekfz-_x?i$G7$pl}83b#p+Y
zX4HH+ZBI?<Km!6b@oQ^Bx=TJG3Pj$O0yR=(ERW-!N<FA#`nVpV`>h|K151`?XU_*|
z2rjs9uX_~f3$i1{p^-2Uo4?bOh^b(_t?<xTJI<rTJGh&}#YMhiogN(x(D_hKrJpII
z?1s*bD(#~JLRAHLD(BoQd4w=lg+}cw8!NdgD_a|R>iM{i`JAAzkN!$KCimGQOVC=S
zD9UB!<tIlOVHJ%vB_;jvLI7+rhP7w#9szn@7`TO_V`7xm?0ru5AI?V;rc1Qtq@{zl
z5T2POy>1?SV|c#1T!OapD66H0-BGOYQ+MpvXOrP%n!gP+wYl87XqoHaN-p+V@w&HU
zh)7eNGem&qg?-67is6C$nZVE`mkB$_;_6^->M2blX&X~~9o(}^D78a}ph=kGhDZ-n
zU^hGF&)?a%2SoXAqe8_U#>d7|dq3UgdAVwnv73!kKQ=;nTdV-%pbrKl>ka61+Xc6v
z*XY(rn#E&y@8f#qw%N_Yhx|Pm|6XcQ=>L8>CVY!{eJCIXo#K@6a3T3Jaqo!8arT|s
zHk^EWdwYBxq6)dLR-=<;H54HQPO1s*XCz5^8^IH@NAr!6D74iV0l#c_epC4FnD(^8
z2ci?F+h73sV_x`J4ypUWhr>m`%1gjAo%56OCU$lb717K4+l>lcyWn<*k+>&092Vm3
zGq|q@GeDe=b$f;B-n%J@lxb>e4ve{$7?R|P3w{SnQM#RQw~VQ2zSCaEX`}l!DQIDA
zZhE{D2p3NR{Y^j!9)T~P{;mILsd1?xkjrT-t98;M%Ftc89+W9@dejY$A+#j6iB(lB
zH!J>D)%Ci?ovSH1=-1{Qq*G|pop}an%Z_BZ&z%)Q=R;BRw-KY(mPm;hrzkNnQBj!j
z=fr3ORaHxFcAo)D=2mgGR;Q=?9aj3=KVCnNu-g7?f#&Z|&Im4vQt%Z~m{)Z=T90fs
z#!m@WZ+U~vC$#5LTJlv~H?~M<O1BHJma{?}S)1OPRGV^2jlYRw_B9nbc<##6_3W45
zV`-N~Q7!W+(|(+O9F6fmUZNrtkdxBssdf*mSKpgryHy7ru1&AaW~8v-b?8I#-hb@K
zk5lu$N^2`OwOFiADj47ExUZ7#2YHcmpD5QGgEO>n8oaLVv8EalR97b3@wSDI$&9&K
z^naMn$lk4Rh<SYfevpvx8?ORuAurIO-X-?IW<z4S{tKOB0@^Q~XD-;@cXFRvb*Jki
z>j=y^b|izf>ptNLK8NRf7Z=;l?%JKstt+>tcU|lh!zyxo)O##5VTMTfRuOT_d%5qt
zoonP6!?Bn9uZK-31oqVp{6Nd3q?v7p^rH|L;~FdpIXN}IE*z9}oGO>zw7Q~Zy}}vS
zm5krrNPN9z0_?j2xPHcRWf*V0%d;2-{M1a?J$GvNYhBN;0mQ_ZEU1qU-6HfF(Y3`f
z%52RFZ<tf)TA+OH9Oq|)Av~^m*?9+(y}4<gMNc}Bp_1xt-)m$s(0y>f&geZ$+f2}6
zP34pr<sBCMc7gsbQSD+jlgr%@L19=LEzzw>qBeZ5NolApBOcL$!)^vr_|Ta#de@Da
z(*wJEd*uKaF-1HKe+wQSSV~Ohfxye%38`TTk20>;yT1HSFzdk^b6|+GSb92cZA1{O
zP;i+;QpxHE8hEXcTMjxu{cq`n5%Ts!6P^J6+bZv=sUzL0GDzHb_k|sM=NvSA)Re-E
z!F9c=D#VnQlZ$!0zuxar$ijT^N)&X3TnhfA<m7e5W*0kvF$i@%X5<9186ARfJYaMz
zODTtQ{LSVk;Uc#Bx9c~K=|W6^pi34B38@t3l8c{ze*U_K%cu`yKUSy7&nq$$#s1#u
zJ0kp$P05U|`+Jj`$_$=+#4jON>8a!d{)q^hr{IV-=O#<}l3ZsAc6oWv<EyLL-Uq(<
zmeU?0JD`}+Bpf^l<9O%M^D8Usp!-hu#JMd9Lh5<(q4vDm_C+`-K?){92yNfhWIn#T
zSu*za2BC#37EVwxNH0FA5#944wiYt&6%U;Ut?aIT#O%D+{s4vDWsSks-ZpyviZ`Hb
z2h6cEE#3lLTzDR6r;8mY2lA=BW2ubxA#DYS)8?FF>jJ&tcFbO2)@hg=co$$YA6hYl
z<{JI)FX=zOs{i=8$LkZVs_E$P6T@_s%!#0jo|{4!vcd@aA<;(k4<i9FCq~cjaAqjp
z2B1k6U>=M1e2u|L@p2UC9vvOh5_H|_V>RHzwRp4F*Vi4$6fif*arTy*Q>M5nxma`$
zNO#9lC5?nG0{dS`TG(+47TJ_{{N|x;ASY%VeHX?r$6l}RT$qJQtir)Db_ch;mo0-H
zhlSbQTRS<TKG}OC`0IF;z_P6INQ=Aus`@Wll&>{#5S1!_QO~Nwul=~>ek`OFX-q32
z>-h5}yPEwYxQ61~6jSGkS&V}wxs3;~@htA^I6mOw;}_|{z+cSx)(=Q3L#|bc?i1w+
zK&#5p9k{7$X>|+TSR_R|B}J{Q!hi5y8Rulxt6nDeiZ}Lzb^a-?e8)gxkiNBbA+W1a
zr??D*6#3%six*RRrR7~Y29{cDX6wMaNwH(~KT>P$&@__s)ZmjM*A?H&2_@Nku8S{y
z0mGsoIPt#C=nmC#{@wAH<E5OpQUnsFl}=i}C$G;K&dy`-3ybA%a~oj&xTBWwMNCOd
zj<neBovjmAX-lZ7bE{u9W~9Ep;<&x6ulN{w_#onAwrJI7tQF*UJX+5fqT=Ng0Q)8!
zv-Mrr)V0^lb1h-vb8IzDl445LanUm!Z(;_Ed(DGk!}!7yksPd+6<whV1|Aum1Zm5Z
zd04Tu`?Td4=1!*;w>o9+7ygD8)pkRK^&CoESW4GhMiR%?IV7E&mW(nyVMpZ;ch9b6
zRqUubudNP$;5CTwy*JVI)p$9VL2ml$>^BSN;}3y9kw4ZIsi3gP|NY9>fp)!jlDkUR
zxoc!?u@L_haXg1`ZlCk}ii8j1>5G$(B0p#5u9`cdf)s=pv-*VtV)FO}Nr^D&rJbE>
zPcC%-d{lA7aDJ!iG|jWxq49R^RCJAD2&{jAT<SnimF3|I7T%QnnF{rTZ__84xrPs9
z&H$joz(LWJ(D#=uRzaUbzuK;Ye3OkLhrw>q+i2i(ACF696hEuHQZ*I4VJ#aMmN{yX
z-(A!T&QuYhg;6$DQSO&spuyzGp;}0}U%R@Y`1TbkLg*@S<g0JvyElG7ks=BsN{f78
z$cn%glev47X@9X?fMgV0{1y>jgHWPeWC)Y6Gxax+rRbx{S&n(XM@}q{B=JEEqiDq9
z>}-1%PF#RLpJM-4nC}nAoQqmZ155sN_NLYy)Y9#e2d1Cb)0D_voumq$^-=jAD8z9L
zSreUhiaf{O1Vm23osY1?wtcELk1N)$RX|ob@z7Twv>+kJ0$kBR!x5-aGKX_vDN5h2
z2Se;G<paqhh?u<;hE-4We(fV&kq)!Xt}v9gF$c#LRCH3i%<3VIka+G5YI7Y(h)s-)
z5IOI@bu#3oW^K2&pKm7U#e;zNKCGim)&o#SH163LE*TPQ^VruXofe1mD52rctk7rW
z$1#ga7*77uhhh+W%f<O{KBtm{;)bOs-1XwG1K<o4oy@09-w3BC{SegK>d=tbVA+p<
zbcUC7brESw%6owh<xR25F!=Bor=-)Y??NhAQe5FWU2<@4y3F=zW}yM~6U_Gc*_j}l
z`kJA;sP-b$^ykEDgi*?))4xqa`=d`@q8R=a>q)Gmz+*=&*Yrp88jRz$KTZT%v$E)m
zFrEK3n*7(PC;bx*D}Mqy7YtpnBQylWEz+2}6Y#xocm9U3BW#lR;*-%A7Z=GbIQK>5
zP(du@bsT8qO;Vs3SScn!pb8u9a})rR_s;X}!6Ht-t(dPpO_Kdxs)ssNWX(^PA317!
zGit8i3P`@~aM%q#L!&VeQ0BQ}leSeD@gT-D@zuW<GIH|$)lZO`+viYaGOEiG)Nb+u
zP4CllFdeD-wVQGQvs^AqjS~Vvx(V+DO0WGWNePLW!rY6{NaW(Ri>ue{ZSH4aR(DJ1
z--@8H@c?$ui(>@)%Ak|D#Ke5!x%xflci3hVxnWL>pM76+G(x&Q=SFl^zr`y7(ADnX
znsZ7pvHH}$1cote2FBx5&+%qqcnNE*z~$sb@s1+^RI{*dSn>xuH)sDn)xAT?E>6qy
z<3D%E@Deky8z?zeuX`3*Y0?Y{a?|6K!N4W0S#5Qu|1j}x*Y+uGylO%e$zpoi!kb|q
zuWwwDta_xDh+hp0K75QY84Er%>e61eXZ$ua8l}*}%R?Cp-_x+#g6rn9nLC6D+Prt7
zcW^~d$TH1-UaTiO^};A_ch{<aaNbgt<N6!4kqX2_mH%;MG`pp&bpWMWH{R<iaVqzX
z)7_$n|J30R^p^Nbt}mLsvtmxUXxnJcOqFD!O|SQl82Dd`3_OZ|H|{z|m;L@iM26S1
zy!gSiL08}0+VIMm<w<Hw<S~~ob_73cJSi<Q6NxZg&6Bf}znA1cM;W=#JVhj==kn3R
za8J$Cr&^>{r|D+W6KZcSqScW|v<8a<xA54v5W>2`KR6YkP2<SE9mBKuW4y+CtmQFF
zTpcgRpKFP0TKtp#=<AAuOEas(s7s_4i%+$>-|ryjiV1CG_qc?kbc)NFmBr%Oa1uS!
zS(G!Llh(hL;-B}tGOX~o+il;zKyIo~x&f=t_;r|nFL=hLk&mtq=BNN}J{huUi*?T9
z;$*>pvTh6az`n@5H4yp&X|5{#U8RXehdr<7or5P)B23pqO+_4&y7{R;-&V~R#MN6@
zP+97bOEW>`he}J8!oalvAYZf7=p^l)V_c&i&feVg2|QmCLt1SDNi5Jmmc{x`1Sr~m
zeO=nSyAKmb3?e^jC#HcQ8d$<@RW=j$*mk1w>`Ww{vnq-I`4NhWdg6{AaB$v3e#W&<
z6M73G?s)Ppu0Rv)c&n7H4S0GJu-L^yeJVQ1y&xt$5?j<m7KR>R)%x518$aM?jgRx!
zW^@K>7<O7tU^-|Jl{w0SIVgDxg_JSsUU8sodG$t+mANLODTq8e)ZcEUTvBizPvyQ(
zWN)`*PAAM1EJIZQ&}$1R8wB4Kex?dJF_HsuADz)0V?WLWqeN^K?jFpS#d{d@OThG-
zEVSGRn6uMnt+=lOs;;CIvfnKM@IBonhymkuUvhsf;eiJnB5r)3s`%pa^gu#M3r{;J
zjUt_C^lv}pS>cJ`zh;DgP7440NvsUJH?`U5Bi&5^%V0Aw6+ppKBLoQz?ouV1`J7>l
zjrj6qG!k}cjU*3-wtT9~cP#%!h9IlJK6U4n!vT1s2)FO_E>2PvLLu?N(wnZvqjuTl
z&YbQ}l<rkb?mE0e3)S{|yunomHlc1@8}!`U6mCiEYp(z?*XvMt2V4buCPMSoOfu>|
z7)asL)&YnjV6;uUYygh(O~_!+K(S`4)_ZV#e&s=E<nxhNEr$@#W5hci&Ue4&v#J3O
ziaZ)!Un;Vsa&l_-tGVrq`-|Ta=tZVq68`FdnQ4DXWhh%2F&3SDsELXCKzSsu;3SkH
zHOE36wU(Qkt1<IlfpxC-Wl{OxoQgu3++e%SI2z>0qTi?~|N0k+rqO;wkuLY_*DkiD
zq>5pcvyG!Dis8{dJq)qRdoy&aBo!}ZaE=|&m=?l}Cyo2Zs3AB($!x=VLdD2cJ$5TG
z9A<Hzk3`>=#!t=Z6l*WXQfobtWuPEpo-yQL_T8&)$=##t;+2oGO@7$)&-Mc<WfHUX
zru8(s;yDjPo)ClF{bw|0N=xCNwKFwxy3c)wi+hSDTA%aOItNVlrxOwW8y!%kTqVLO
z<g^NqX*77oYmJmXMYSsC3@TKY_Je)PJ)<3T7FNACul-r8HUT>zEPkSAnY>R6XF59x
zh5y*Dz5a`(fQ->sx&7Iykl<h?pN1^zCfi7_H1DVWf!;-}qo(tZ)zUX#H_=6;SQxE}
zq1|YT{QI98Si?DZ{8nXv;}4=6q@$uinJi9AYe>b~sv1V~ZlvW%Sco>X=);C|+9}co
zq1Wv&)>yHBDcb2reHZ0425xd@ElVmDylGQ2p&juFl3MDYNct@pb0U!?2xT>va$8=&
z<WHyB>ecLs=5t}{nDWgt+`8R&00FOakq8=7?Lu{0P*+u2%<o%0gJ4MCYv{}$6<3D~
z`!9a-BCH{B_Ww3df3X!~XlUrz+qdN_FZk}$ABSr1$9=tca>OJL0MMv!Jrp%ZEH~>s
z;oQW<v+5KoUhdC~Ci6%+u{F9N;gY8(a$Cetg<+~|z>x|7biI|^`w=MKkfvo+x-ekz
zd_`w};4&4{_Pv1nt~99J<aY*+pbi>wwR=RwU9+pvomd9tMFm4kL`nG`!MCLEs{GG`
zgM+QsX<{>*bp$z0f0N^Azxg`LZs9$iEdzd?+IH;WQKOGBpSUfGKe>v2fozM9BIY@W
z{rGcvXYALdz0Y+QxVV<t3|-JH#v?WRf)ak$_V@T(d;&-vzq^|2{;MIE!ZX2F?P;DR
zLAzydYWqt4E*UXc2qjiWAt)=xgIvW7!9hXvWv@nK{;@3l|AT;-7Ft;NvYV~gAC`Nc
z_VQ5{Vn-G~ct44~68UAEz9#S`B~j7SagkoZ;N7GJx!C(gX;GtKk;;!GDiFKQckglX
zNX<(#|9JnFb!y-1<$zM>P2op;Vb&f-4i~P;n`S=oTf|Q;D0RHbOqnEXkjvl2Qa8i1
z5fPjx&A7%$$M--A!K5%k*TjRt+5B)OH{bt~ZWdI&QUgBh=aK1h)2;cLy|2@vD|R-w
z_3|RBK-T5zW>V%BY+QT)?7^J<Q0anGR}ese2r$Flt_}(!Mg{G&Jszu>u#&Z59A9jw
z2TS`0nSn5e0ux*zJYIP{Z_mP`GR2G-hl|#axXn0iQCHL2)(lbx5*!MeyuODs;;?iZ
zHoBEx!V=Oyb=NLAr6g;#G|Yb%m+b!$VO@~cyij}mdqj^!ta7NRQDOaB9C*McjfTC%
zss!B`uU@{M$*?T%<@(+ye^soSe%L<nl-hK+X92NV;vY44Ljh-WfSVK1002)NR{Bc)
zIjz-5;9XizK5cJq7WR*$#&4`FRGUMHee1fqO57krqy{ClWwy*$+|EbV{2`y5oNBaR
z&+RQTWp&)%-fFi>6;9wUME~>S6xE^D&#E;1`cClA-H1kZpnE>KqV;~kvA#k8iZp`V
zb$yz6tfP_8kDy~(R2bRR_g-Ngm(IK@3Yr2dC1HHh3w0XC9<Q>gYG<r>=mODP^j0g}
zCqDL%j<CPqpL`>jnZupVo#AbAsQ$%df6+gukZweWoP>>6A_1Y7Umzc%>@3&b^0l@`
zBecQfkT!U4T!AGO)lQ%n=6@%Z-%pcFe?%4H2fqAaVo@NV2&2?SY|-2PlCyg}IP8u#
z)B7y%t%gp{OR4pWQ6$z|shrwclP*u!E$yqu8$}No=*#`83T$KRGX)vNxdO0(^@b7_
zdgNZxFjqzW+1g}!)+jtfx-ZaI8jM{Lkwb#MEBN~6k*38sR5&9hrtBe{Z@@Z*s*f6r
zfFK`VAf-*a5Anq_01PKCXaKad`3Jc)Rww0?*Wo|FC37h5uTxDKaruRD)E7HU?oRa(
zv@Rzy+NbuYyT%8fCeJ-@UnQLc5$U#=Hc-D!<HDDuBf9R8ZtNH$`uy}*0tMO*t*4*H
zATYKswq(;#vY;Am+6vGH&BI@8DMe|*`;s;8^z6Po(G&aX7itCAt92Bqn?{qZ_l*v_
zS>0kgCgCiJS<QNgKO%Jy148AOQPx*Uh1_-~Txuf2c0drwrP@--BI_iGQxPe)ztKiL
zjh=WYD1bdB*{Ujk>a@a`ORTr6a^BkjxTgw~0NVsKI;?m#5k$v82<q#ThlzK(5N|=A
zG%U1OC`rfbAwmJd>Bz3Gt{r8J<b%cfi2|+a0aCXeib1wp!0rKD_jX0GZE`UpFCX<g
z2Q;mqR9$a!6%h4I?V)Lw9RyS)ZqJ&91vXo$W=NeAlN7j`2kpt%yf!-Z#rU0KP}~=L
z4KgEKiq_*Dhb(B)|NkET&o{g%upZP-zlX7wOu*>Mgo(C!xI`VivP6RlO_ek3T2^3-
z(?5^iBYjoseUX@a)u@n++8~p_=3dkIa#_obM5dUZ?AKm__m%PPMA}r(WovOg!zVVU
z-z->;9lV>B*IeDc++1dID+wg_>67=<NT*RZT%>V9rQ33AK3_FCE>+CzpNeGVCzaLt
zViRZv^#o<+!(8QjHxLRTl%Any<6BfhR(Ep2)xI>=$9S5T(?R2^g0dX~;jwiF*D{@L
z(fTNXXO%|x#Zok$ON!&?@x~3^r7P)i*>G{^VJ@G31opD~@H6TAD#Jm;%z`Vbh$WH!
zSjf-tB^n)-nkb{~%fx|SYUkT)e%t{lJOu@2Tji5@$D@Euq6Jp6Z(eE`)kx5<5w$Qr
zFbE0hgshUgv{xDtH}4=~p3C#Q@lt~Xi=2Bheup4g1mVs@t<%#|dz+&<F2^~h_EXsJ
zF&DrV9|xLebq;Ob{-L#orfod0U`8OK%mZ?q!2!NkEPQ-?SA%LU&yUw4<*@QX?pHS0
z?5G4voUWDnV!Qr9b%<Hc?Q5uOLut;-3^8<yr6<*gxWF0v>z8P|j3rNb8jp2)(^c{{
z{V|5Wj{Pt!izuX42Ot4WC%%pLlU~aQRO0iv>JN>v6ZjsWpURnpWC7zRp~MAeXa)24
zPKaJ>%U!cn4<j9vvLgYx`9l5&6V0eGc09qE#H!wEJT~30sK@<uc^a*w@)QH1OK$s?
z(Xp{cXiU|YSA6*@biD?f!znyufzHF)wEx6*d<wD4krSCKBC*H`D+g3?UeOIM)b<w4
z4*c+Y#ssjosjbSdKHef$KShQ3l=RQI2yeS&)gafchxb1!B{Wg@ek+&`ewjAq#44)U
z`RqMlRfJv{(^xB6K1Dwtx7MG^wXoQn^kv2}MR`%JmCjsjzkP9BL8ulaH~bq~0&nt3
zp*EGj5@0X`u%A(47m7jYb8eGoV;os?`oVIYWY)s<MDG^m+E~T<N@4TCVwKjo)7LS=
z@b!78C`*gy`11TO(RmLsaE!Ab2d2aB2)w+o>4#=&eT=>s%V}u^ybO&k=3+G<i%&`_
z@x0v<e7HY3>|6<cJK)mpZGqxt?w*SXix=rZ(=?yJkamwg(K0T9fS%vKD4rI@KxLUA
z*%b@RiHvBLwTDx9KRkK8#4Z}kRy(2)leDlE4=eri6)eaH&et~d3OjF^df`gU(=Euk
z_59Z}{PKfFm1&d*NG|cc9UK6#?9<az1CnG@54kU+A|kFHvxj&}wZ%+wu9fyfSTmUK
z9SOJajzMll?fE8&Xg-vL_PvMETSz#?H+qyg|AXmzdz1YWa3Mmjgq+)8lD@9;ba-&L
zptq4La3+NaE+iT@{zT4VX<TyI2)mN#^`wIB=%2?xp)A7jQz@sBi{DAW?A;M(6Zso)
zmbQdUNkIn{hRI`qih?5k>OnX(BxK@PPgXWKV`7koI3(&8)koYwL)#EPDDwaStTXKr
zn0=MS@*h<_Nl#G-#!`~D1KLnNzY)|!#%C>dI8hF5<P2z~xgpkPM#R}S0w~LG!bYWS
zpjJI&)bF_ejE_72)>GjT68gXJ_0KEBF4TI7EX4-MB-}$Mc6O(6hRl3)^eWuRFQW5`
z`vl9)Ex{V$%hc~@4SP4z4}EmhO%rohv~FY_xwOq}>f)I;bAlkT?Oga$$MbITT3tMc
zhlaet=&-rybJT&RP^Cs2HP*71U-qL8fB(B*v*}t*es6XyS{xe#Cd5qlV{)eQw`J4B
zYYK0ol&Q(H!W>6fVJlzOOF(zS?i~z;E)lB4*Zrbh>94AKZP6~0%1^{&Ros6xr_Kl4
z;JE)K_{ZuE5Z0LSu}DgN?zo3<CnOdPa=8Rx-M$l(T3ZsIM#3-aMrA-GW~!}}fu$1I
z!($pqC0PMWU=jUVX~sWtq@TRUrw$R`06|hd2m?+^)5s{>D+w{`>gwuLR0(c7J8xrh
z@*0nOAeGHJL`HW*nhQ;CB3BAMVGnQn(2#SxB2Do2gDcR?UEEL9+td9m7gl-mQ3r%}
z!G-HLDW=175Z+0~vLdz#qIPr$9MvsVu%s@yJg@Ftd?DcCbl}q=LYpMAO3bG#J%~Zd
zC$hG`k@%yMZeaKKE>2io#ppFvn=&{7cV^LPtmGh%VLR{IO)HQ+#@ZZtpMjfnS9$Y&
zQ$qLP#bH%gSXi7vr@~ksd1$A-ArG@cn>!ZivW5s71{N(1&Hgr=hrSIn;Evzk329gD
zu=V!icsRWa7nGRE5OS{>(e;B_JO)b7OISEzcYpuAkm>X#i0e7t>6`koasvrM&Ob(R
zI%P>%<^K6^(clV)Nj1y$eP*Q1prD@ixE3`-NPcBeR!<1<@x2vTAMOewO}&FMd1lB%
zQO$T1zuoy20W03;a(S@o2?Q|(58#33AD=r}%iE^~2yW)4V6UHIZ#c;$bokO45Zqco
z5toLn2oVzQLcR=ZdA`5zK;eZnI_@)u5%EkvuAOrM!EJM^(;<KRAA+!dJ<#EN&_{ZF
z7l#IG2AW?uU%O5-2x{o#-opEvLB$9WO|*MlcjM%qwLe7bL$~-CONkHn=g(8VurHZk
zyz{Ta3tN2!cVAiLQ1HFJv>W}Z=j~o&B!_iUELvgyy@Hy?gAnHSgSan)zMXFu=YIyo
zd@*RI7T4uwklo&C^m#1vdxOW6b6MTnq}20%BCE>@09ie;U_0oq4Mi-Cq<p{J|26gb
zt6q}uBl;$Gah^x+Q4|f&*V)XXj%^c>i0)Jkn^1k@EB{%M$3JJD$xkA#XJ}~@)#WaW
zccdrYzGs@#>PcD&&wIja4eJZ|i<GK+cZ@%1z~8?*OZ{S{9x1<<Z^iIjNSN5!zkX!^
z_Nw!fqUzVaND4JB_W-J*--BrB=RnOn$iHu?Kxki;80aq+8kc%N+}69-XV?o1<F60z
zoxx-d=%@nj=VQX1GSC{V#<R>xo(bJW-ouWt%cp2E!e?n+zlm2waPAw&0jtP;jcSVm
zA)U%LAU!=BWSi0XjD|axz-aFBobGWZQ#LhBOxcwJFp`pFdlEAw@85_Ww8bVaC+!G1
zKYw<q?^SoMV>_j%&m}0qohNM~9VwL+j{fpQ#oTHDIz*jj1z67xcI&WeD)5N-sE<V!
zeVOw9jB<1I(tg0p-wxKgTMOSPspA!f^}gs|jd)R6gvgVIRRhw81+)K#8o>L&6j7Jn
zO6F56PWl{X4+&7*8FkmvK3?}|6MSG>F%qsqv|&E)>`S9Nu+XR(jo(BuC-W?=G*OE6
zYveYtHoix8anfP*i%jyfRsls@FY4*X<)cf;ea0w_Ks`0R>|Fy{_GVE3{0!Ncan-MH
z3|W<!3b+MVdhvTJx~nU7anw7^Dy8E~gLws^av}p_ah?pt!|dHBjA`uy%K`V)t6`#P
zxa<@b;T45n(l`#88s4gi7*bGBd`Vd7l>8|Xcr_g--$h*XGc@gR!C51`!0B*a3p$t2
ze#;aJJNXJg0Pj;Ls*B_-Uz$*5!HDs~8oV2fKZ3@r;@WyoYzywbBt}mAEoV3Hp3o$%
zHb0nD=YcL5DQe=hzAo5pPRPc?)xz<-*{6vtA<1Ws@Yjto_!~f>3ipQJFpejX3sy-v
zuZ0zxPPc4d*YnZ^XzyJ8e@%%E8Q_zbXjZ-p;U}L59N;%E@3x=L$IFZo6TCECu8MjH
zBGAy#e=-AUH8%n$Y>yV}-PT_nqjQqXRcdOYhB%X3HG+V`;wua@A1>lVfWD4@2y5E{
ziB%sde=ev@m#Hj`kD!bq`I+Hz1bsR=tJ-7VnJP*kIK?7PcNuAGbv@^$nJ1z@T&SJ6
zb_OA0+R(WS%IUwM6M(WvepNqkjZa>7KIghQc=Mv4(@XTlOm?tbxk(v(0C={8vCg@x
z@%Ig59d~|<88_UOjZnhJV`4_}$EbiEXc3Phu?P4T7+TPXhZ`MjH+l^0`e_pOOgbhz
z->{eae;yOZ!omVvjIb@X>Y67kKC>J9*7kN8m#e`zRECA1qEqJznLNSlTU}FZylIUU
zge+&mOzQde50;7Ka`8gRDM`fLyz(UHnvx5EX5Bq|7v}32P=0a}U6q_4f$x_TbY${`
zC(dqsCr(BwJk3E%Os{YEVNLO0C(a3~9UdXYcvHoqyn4?}>P7TW>{C09cf@<4uaB?d
z9wL&PXD-tQyp~(6@x0~-_XeI?bPBMRnqx>6lpL}T6zx2pONMTsJ36V^s0K@9V7zf3
zTW0N?@=|naS-NBtwif977)LJ0rwiNu2dy{9CUBi1IoswT>+8q=#9%Mtu6=F7i4R9F
zGKG|v#uVax_wnjrK6kXcOOl?<NvN9s@|$jzppmp9z``1V&{&#W9QYN2OY!lhrEkm6
zHk;1j_s_+|p4=94-xsqUZx5+%{yPg`p*BW%WPm>##@k?x)mN6{MWW84pMMnwQL4xl
zv)KxlZp%~O{bw60-HsQbKVRP0kttSY^zw}wj@}7^X_~hIiCk$G2=Fi8%V!8b?z9kw
zKPA$ABTr!;()&zWm<12@qkqxQN#WcZ5yur^sJpCOoSc6Ea#L)2-9Wn4z^;c}iST_A
z&iJ9tV-6Ubvn*Cya^;iO)rjo#dIY=Q=Mpb;bxH1HWaa(%(KP}j3mlXTi`V#i9tM}n
z%V@q-!XN=e4Y+%lnx%*MHM>cS+B+V24{{Q88RIewe=O~N`BH+sB`6j4O0|$lkPER1
zsbcKrbb|!O-tCPzh8!2dk4tzawc?ZFkC_{Lf)TXZxU7ElpYBtc25dsBp@2%e=xO8*
zXrZ&}-l2LDF<B^FfemL2ns%}o;Lj>;v;DbA)!ke#zn|;_(Qf9qe#*}O{usf(Cl%Hs
zwr@LX9T~5`XS6KZa{*5irf;5K@8wmFY^4}CnaxiFrP$X*2QQmGl(Wf9w>bL{GurGD
zoLzm54n?iZIalR+JEJ_KsC!ZKQe2H6vAd<jdmv!6RPD)1{TnCOO$SVUbj6dD*`h%<
zZ1+|4-4lf!{b<Wbr_?K^Q#@uK<D7=kXh*Kxi0G1tF4V^e+#BZI2z;ZNCiRjDzWyTE
z;(5IXAJrZbEc%ddgH#{Y!l)cZj=q*7hnU;*UhU7~H_mKv&p9JO8GYiYG3bP^)IM@r
zYN#H#osgTUWP6e_dWT38c?d_S5Zb<G3c*MUM&?Zz5xV}wlK(BgUDDO}XU}X|>&Tl%
zD{U$}-|{Zr0>C}eV$iQ?dB$RN%Cz|@kh&T{1fOmU8%TTj9Ck1sIXeowL+}TkS3Jw^
z?HWyK&`X=IUKRNZRpR=I^b~~A%NY|w`hc@mnvbi|EcY+oibYeOM{_al)!~Pvra~wA
z1o90NiVLM#L@cJu7&|6l<_mZ|ZfxQ{KEW`#;d5RR<ncmo7ab;s<3)`@Vi-u0Tp0kq
z48u!n$4^avIZ=&~6_8vf2DCSl#QqhZTsLv;0L8p_WkV_qVv-t+Cvs`TiGy+rEv5{<
zg$mGyOrMXo{)C(rk9D?lJ%RUq0Kv%4FcT3GiMyr$gz?DC&HcXhV5|*;Vnmy^Vs9DP
z(>z&Dv3eR@&uJe?Ypl|K!hLZ;KP9{e$x@d&CxlY*oT2y`*fDASp)eh!1e`Qtu`on@
zXY%`+-}*2yrz1ZgWoROXk{|3Y)J6<t=wXQ+9#oF9;<4fO55yH+m<YV7Npjd7S52UT
z!4k$M;6fSO?g=N+X4YjKN1?C_4GsN0RuMV(GQ%v?;&N}QA?y)>_!?nqJxHf9+5tYN
zL|Z3B@W3(k%2ubToEN6m`{Ww&+8@y@v8gSQ{4*!Ex=TcqCR&Ifx!~&$8>zIpsinRD
z9?W=25rL4ywrTihkcLjUe|V2iOtW*IDi3eZrBD|m{W4N`aP5z?AO4DJVyH*t;tG~p
zThr0*VMogqve3EZH@q?{2TwwDRXHI{JuM=0nmD*Phs<aelU2bjo8q`pt>wNxFy=9s
z_y5}8!5Zyjm?o-klaI%CIREF23ysh|4(kEOL@)WeQnIH|`iIaRxUV@30~pCvJ&}+t
zsp}bwwyq8f1{AmR9_wvw-^Z?$mW?PZH)|8gD9jZ-I5Et(2JpLt5ebMV<mKD*hKGiJ
zXlaO>Ckt4W!(eYOZP;Tx#7}u+nJkPJf#Qh$W>@^_?=J82607YYNJv{6E~VlX5-}z;
zEdj-rcr#q;1u?;s6=f$f%DLP!=b7jqqiJ2<V0yv(OF>e8hkRAP+w~s=u&;qNy~%Nj
zt@UC2&fR)m!t^sUO^$<&wEYOHJ_K1~$Tg3}S3(z1Sa&#E(?bts$~t+Rp-Zp~T}>oi
zG~8wcWLvlTb*;%qWaokGO~)E+r{HNu^lhbdp;}fnGU|As@_kJi6K#+~<a%o`iuNbg
zvtO?AWA~IR>EZcx9S>r`GLZe!<gbteI42gURCVB<zLu4_0u@+6{XB{g`X_S?Rr)q!
z_NUy$r_)cv>4!~TuuB{DVyh~G+Zgn|&5xC+P)V4{Yt5Na|A#6dga(*gwr;1W=V?_A
z86dodf+BC}n>M6RBfeVvFgGHaEOxgQc^l1pE)wt3@8Cr*qFnR*5L89_n8o@s^oV+{
zF+OENZ2=&0HPbD187loS@!rL7^7QD|A{{Kq%D-kwKdzvQnNIP~8Iv{gIP$(!(ahAp
z-Th0PC_6r1wNg7)48$(n+bMUkAi2=|ZsRR#n&uU!J3$vg(Uv6UBmUBghBrBZ#s;+k
z+od{)Juxd)16H1W_AaU{9zO&dT8jH%4#e;wd+SuO)(1|x5GJMVSml6$1#9cEDQqmQ
zeU>g*CyF3e6_NQGOQxVz`0t55R?iQW;>bnhi#s59fQG+frv2uq<({-2tdwy#RP+4)
zZ){XH{3q8i(#g-TBpKp3jN%%$l9ANlNj=hm?WU_DbcnSl^k#rqz%s*ii;$)#x$rHu
zt!+i}96*gXRi;XY7K!{colc_*{I1=P7FR&#c+92y-|ZK-x<78<H}AoRYvAmt?E>-(
zV(*DuPv!(2rve7Mg;!EeYHIN*F8wNQ_lM3^?8xh6F<~#alV3BqeyOosuqte{><uHz
z^J7n28aO}z@sNp^iz<Ool&{w|hrf)bQ-KuO7Gcy1WlPDJGbc;sa1$005k-?tH;^G%
za*ecJRa8b=MqHk`XRkr|u?rRfR(`;-6r%5_o)n3fQd&iY?@K+q-Yr*rwz~T6?v;)B
z^GRof8ef+;&x%K-mlJs+Cp2v=l?65mGNn9`ptW2)vuaWj>-ai@q@FgU%P|e?PRa?H
zsCCJ9#2c02qcIVRLSkF=bWjtZ<7v|UQcviE-<vp&6ZgxhnMH^vxSQ)4<&=G45fCia
zaQtL3CfDF7;^o>Lq=9!*JxQ*D^<VThF+S|8JD%wB*{kRZ`!vVaz5$#?YF)C0N>&oa
zKIM_0f^pD`dRbU*GR^QUA6?3+?cT$*lAA3qUN)DJ(<yt-FjU<Y7o@?s-d|qAbjm)l
z<rlOZK4zCPuZ_75B|&cK;?h)*vV?|tc%|RY+P=L$6-;3NT>kZT>hT_AY}15jI+e}+
znUf^Dhli7OS#X(aq!{CmD3;G;N#5Of?2o(m?%nef`0sTpj#8;LGb7n}C}z<!X}tcK
z{cw<rFj4$hvh2Hg*5DwsQjZKBBQQ!gSnI98M<>OVJbWZH&$NV`t#PXfpRx>GlazU=
z_-L)hro|NbV&a-Us}07F4bauTo#EQd)iF1(xvFko`2vl+Mv16ll#wU15|abLtn(#O
z-GkRm`uDC+35~&#s2{Fiuc%P#JH+x=%q<M(^AggbPdYuJG&&UbnYAwKap7J}UxZ*Q
z36mHiDDhLnh?!IDHKz2*VXY1!*`ejIGfFH)pPqt3_+wRdgnm#@>el`+U*%tw!e1MN
z7W%grK8X36A0!sk82iXkpb6Z2(tcch&}|0t1Z8z7WkfggdG=$}@8ySo1^+&T!`$qO
zKbX}t++ScSdkD4+azk3qliaRYy2KKZ11L0Tw{(g=PkE9aS_uEOJ>mX2H?|<Cqie$O
zn<_^5>$WST)^7lDnT}r=C-}Bfhwrdr*F3+|qe0OPLcrntDWtQ_^<rlXnj)hD-0Po?
zv&ukjXKQYv_J81re_R8d^5pqu3F}OF{ZAw`78*-|AE@tZSo3Y6lz)8@Djs}|h?4Nz
zFQ&w>a-#f0fAYe+_l<E_?6?dWq6!1Al$$4=R%%-R=vxK6MnsGWV*RxQE5DXDGJP5H
z61{(!dnL}?f-QfBUDU)^eD3LRnK#(TQd=4-hJ^UK8O!vWchEkh9rFc3i061=O^-#Y
z=?>YPgK1#Gx21ylY#9fCHmiuLjoVbwhZj)T=~O|V$vI!K|7<-X8hz^U54jLdm9vTN
z;0rY6VHZTF<&UZjRRRtWJCt8f7rPS`6)3&5TsV@55yE>9QqYvNlKVdAxR<LhB&TsV
zU_0?B(?Q&u7RYV0iUXm@j;Qx&sh|4BKcjr`kSC+>e58DZMO@N@v4j+0?*tXhcU=EA
zJ{8CSWKHBc>H)_N-EEUO!;y)`n>>n_MefRFRO0&$2_7>XlRe1<>bQi5jy!c!0h;#V
zh#k$FcTg&nV9mvq7uBFo+IWZ+@B74JKM<-WyITi5txA`%!ni-X=wZ$wjUwL#nvTj7
z|4gsPcTef8cm{q2_hytX4;TbA6+?^s3>iV|Rp<)EU+>!aiJ~8G1x~w`8`vZ>Ap&iA
z3Z6@+uM!i*-qFgp`33US?9Kkt=<e#$n0W{HX{DgGPddTI^7`mC&nectXdka(kG#)n
zKbIlSNGCaIr;(`Y0hs=5u-P(!wdqdFn50prwTwmUbuA~0YL0ge#Xo?5-X_=+=Xs;Y
zuDJK#VC9`^tPZjIe-UdwGIE}VH&hK^^PY|e{)ynRie3!G@j)zDY0aqN*A&_Jo)&g`
z^LU$71(axcO{DBku1U`$hj#2DQm^1)<(`=`s#~<JQw4@gbl#JQDs7TsF+j<-#j@Lk
ze$~7Bg=1tgt#Yj<!q+%KV|(QhOg69h3Ld^M2%j`|h0Iga_`O|l;464I>4-tL$VAe#
z&4p8E&BFtMOqS0%`#HaiyQTKL$uF1CJiD)K`DX0KuLh2|i4Lcht`L?z(}o%>ei-E)
zjm?np->U6D6h^dGUjZ2TKPQ)xJFGAO)C%%A!>E`TP&7rWrS&{(i^@D)2E84hb!)sl
ztIlli7|CwP7-KwzB8sK$9p^G7XtG?4EIK$IzLgVlEp{KDOm$eJKa)U)i0(mF#!%_9
z*Xa{Vts&{ZqzP>m()s{!o3>P??i~9m_Psci??zid2FdD;_43zC11EMxH-HrHOB8!1
zavJ~OQ!OYtHU1o4-^7iR*!$Oa4eC!>qk;GkT4j0LMF=tBJ^7%YA1pUdQ%6O5y|4o1
zj)`VKs5l#-s<`!j+`5hOJwWCS70~AF^j%$DlPkCHzC-5K|15&7(s5OMG7Zd}Xj&Rk
zPH_e2AQNE65ltWExiZgksX-O6BNn*i=g^*e0LzF^;xchls|*MJWq1oRkD|}qr-GC*
zIMbG^0@*wqOH>hpSzHPRBa4E1s)S{=e9nUCz-g2E0NQIeose@~S~+-ZKueAmG;Oh1
zy9XD_=xgYT@&BV14M*|$xf2Zw&sRXxVm>-%lvf-d9gCQ5Qe<~P753R3kLMz4+9ct+
zH9i7X>vK``J}z!YuU<S_w$fGc%_l%k$ohVEm+^eY;EN4>7V`iU1pU&7tz5mFlW+D)
znD#ksw1*+iA=GqJt}KF#e`w3zysxA2;Y6xaJ512r>`Q%(tzE~Tbuv|D*tc7HKncg2
z4GyKYbRil{bAAU?wxDEXOnYNn+o=njI&w=MNilZGd7p1cnlbtq&~q7FlBvEDoSd8=
z-`7p6XJI7RV>upbhS;Fk2WQDXxlnw@&;@b@`F!ivbQ7V_$C6svEJd*{`yN87Y+w;?
zU?J8<7kVwjSN|#e%jgwvPhA>HMg~ajlL#imYe)-M$Bfh0c#VuH{T2m#p!JDg+oZ5V
zXbH^1cEH2#YWd@Uzh@QY@=K9g2}FS~kmL^i<A-^J^y3oM`Wxb&W7lVW6BNp<=lfRM
zt>3mG`(m))O*&b%B+Q-Z7V2zcXd*ecqhy9AGBruyb5}}r8vFc^u&Zp4Hj0bzFjm<}
z_#GxUVC{)}dwMiGyJv^DUv%VxQKqPSY3;6=YxHMQ&}@rmit5as=plL0$NMXiDwn~a
zPWcO7ccD*oTwHR<&E)b8oAD`dzG6+*H%$v~V@v}p;0oV1m4n3oy^?KoNt({V6wBH2
zv4sN8K@PQ`azWHhP0geqCVmT)E~9RLA)CM4qdP45k6vd{#m?(EkTE~Z7@$#0iHuzg
zFEytSvP_k8PB_CK-q2a_jMo%;DDxnN*X&)!R~*G6DJNm&B8NuOhfiYMQaAJ1SSvT+
zc75EFvhB%m>N$e9(x&v+ucUB4N|!UgX?z%862f%lEo*G8f5>*sm^sPSK<KC9Lb%X!
zfuPBEj%%-RczE{gMLV`6AS>#U2>Z@|@MN1zi7*eX;8@rHhqA=dGZe1SO3E6@vHj4Q
zeW;ligo76xq19#nbxt57S*N!I?|n0`4B94szQdmuwX|ZAeu%}X$TY|Q2&c^>L~R~|
z3+-<Rrn++PtnjCsVvG*x(;ZZLZ*+r-vwhZvslA_dlkRKf4oD{sRro*+jd({&Q0q(i
zDvM6@rS~y-NYT}Fs*&BhkuQC53GvG!xIQ}9FG;54mNG1tlY93I*eHdyNxiB)i4nbQ
zKKX_vNTL){wDxQ8!wRm!dvT%yx4`VoyO!YdFe12}26xES{#o(*aWPa&X`9S&hXjqM
zclZ$zvbG^r$3?~NXqf@bQUsERiXIC@*r=#Bj~B+wZ{XeDYtm17K6e>M`W0-=>8~t2
z9Q?j2ESL0J+;MFN7r0+SYb#sz7?v8ke3iF5ok}}F_{X5zW-HZ3n*Te6zEjj^^z^T4
z)tl`@z-k;AvpMpXYW~WWa8=Bvi#4(E)j9P{7?b(l-!KoS3P68+B?jk*N4uJ*<M4If
z-73TT$(3mX+m8za*0mDQL4~(pHnl%a1Mg`WG;L6NSc&F_XA};nrkEgH=IaB%2q>Lz
zjI?9E_r5x;v)wQPZNv?T;w358EpsgF`9S?~jd}4h$wj{o9-1n-8aY=nW*4#7W%Q&)
z|L{kiH0lt$_Yn^9K7e7~EV(X?Bysg(v0ol8%oKe?+NZ;y#|k)*+cZ8E$50UD!cd$m
zp-q=sw0`Tc>k_cBp_7z@aWHAGFe}WO=NWW)AogYrc?n`1vT7e2uXcKDX&Sg~19(Zd
zbbMb%!E2Z4A&+N}J+%KCHva#vun4dodyUgyR@KhAYTTL)Tg&6`JjB#?FLQK><`lA7
zo>h<&m2d#ZI?{oY4H22TMpmPF8(s5&t$nz6SUBgu=h!ygi|PZvMYhr4)Y}(;O&p3I
zDA%SE?~<9@gO(Y~VKo1fL>KyMNPIXYftPZS=xveOsajliwvh#y0Epe2Mq}X3U0wXn
z+i&!TV=h7dyJn@=6f~^|?P|8bsige+=ck%Jj{Sbn_PyxGNV^cdJKEwu;S7@A0VC8p
z8#1`42MqhG{z1wSf@kGUpWElQhx_5BAWLRN0VTxWwN)=NL|!9|hOD{rtdsK&FdBk@
zo7{`NDP{8McI2_fcs4yXD|~_&9vBnFqN8KFnBBGuFs38rVvNpmZU6c6XNR-Nxi4tb
z$hztDUBNo&E_x@gRvsH0`*EAZYNBwX>jj+@FiEl2|G_FEbz;}$t%*WHJT`XJtasG)
zhbjLniSACB9V{3GX)SU{iFXCc!u<Pqv>I7iSt`>)-a4K@&u2CK``RBrykev=?ZWN^
z+<Q!PCmJ+PFXP-8qnW*GSK*{Mo=X4bv8%yz%*<BUbkf*dj2kC)FE4j;5*5V2!QJW>
zi7p~RDT{uyr)4igb@lzn9<v&RmA|**N5#LRRp-*|h8vOeLGi8IOfDWq#{o*kxA968
zWR^k5AMW!m9(u_RZ3kOyw!`Hnc|1k;Iu&Kf+@$jk+;RIMA*?tXUtw!}p`84uc+cBd
zM(37NLaJBuy`=($Z4pB{`^N2!&rwc!p)ozSj4yoejy`HT<*$D85IGgwb(=Fav+u!p
z)Pbb`h%OVS+>!e{w!4+#b?tV0tJq56X<aYNVy=3*-`FCOIh>&=A6KQi-(0g$Z&QEc
z|2n!a+;Xu?j^Vi&goWq2S@vT8XV?;j=9c?u8!{683la-2RUJzi=Z|z>E`2FP(2Icn
zN9HP>gkKJulbi4y`78A$@>#Zz7D1DUXGGPWQ`W)z`O?ZaVu%^P52^cym+9*7E13<N
z%t8*);!ttCh8|s^qSbAbwB82F?I%k2tB7ac$tq=FU{e$%-LpU`-#vZGNnnf4U8A`3
zkk~BpH|>v2X%XmpyYGY=`x~k3re_UnbwN}oPn7K1l%xn`ajfU{B>wXC6zlUdY<fBA
zNby-*z!1s{m8AE3#gQ6i-n98*gXifpD+b4!_Y1_--x<~tGuL}Jw57JhAG5sk_6Y!Q
zu=r0sBXI_7=r_15r29`fbf`mwilFZ>8QYI{8_3x%iocL7RE~-!8g}ui!7ZRkiYSU4
z4txqH{{;Xyh;Yb|V9x+{IQe;4J?#<Pd2eFx#g{8rOYFt*0#-l%o~GdZ$R!gH88OZO
zVu()|l#t|V)-TwP@JX>Y>`>~UpO*o0z=8ovp*~IJC$ukbGM`RRZ)ATSGuJWEmOtPd
zj8#2XeGo3(;60v2-%-2c$z52aGa!bSANBMf9HZX2RsvRGnIFzaOVepu(?oNwJu-6#
z*b8b4Q%qpswpxl~NClSDr4S3)ts`6?AkcZQD)<|^iEC=Pp-B^}(emD>(5`sxr$<fl
zYxbx8T}s__Uk#Vmt-l13AMO_on8e2mwTeKn{6pu}|4RDXFexL`AOj6{`Y~wHway`q
zUssTR92to?EYA35!{oqpH~5LCzyD$MJYvjPgoP!E(+?~;1wSj7XCmEdK(n7$&zt^*
zX59y>1sTbNF|9V752>C7<>XQjtnIi39fiGyb$&(}(U@@EeS{u|E4Oeu={AL*Vybv*
za{~D#kAMCc$-#bmyJ=H8Su=;fEO8?)&;*O&x%GqTsU*$m!-ptFY}ubq!g1U$c_$8%
z)FW;CCn7C#iUxGQUta?VPAd=i<W0a43F4w6Xfy}`3mSgmXD1oxtNeQc*wf5#*P3EB
zkmn5K{}f_U1vCQhw*itbHSh0K&a%Xjs5c&)1FCnVO4F4lib*_W7i6K}QTWJL;LSNa
zu+-p3RcaoB_o!;+Ir<W$&;<#e4^7-Xz5=2-+~C2=<+Dv1%=GmQZMXEA@J0uQ+s<mQ
zW{WYZStFBe(@fkfZdb0<@4x#d4#slSiZwEcr)U&Djy5RtVsKJw;rr<Zu~wUoQRbOj
z8E;)9LUfacYyp8V67_L;79{Tc31MrQjH;2J1N#jt_%JuOPJ+Gy>CDSZ!A8lvz)8x$
z$;sCwam;LN>RG=G7lre_e6tD7%g!!59|MU=>Le5+hzRHB=MFX0%J`I(6^6Z93ZAKf
zqF+~99`7mxuUcAi()NR-uX>2A_wv<(^aG`hDJTf?WPJ+KiGoT&(vZX@p?v(sg@ZjG
z%TOg6T4(sJ(3%4S)oa0g%GrNy72%}Ni9fsdU241Dt|02hRj?qp;x!%AT$WkGu{9pv
z+~c<oridw3op?JVL)hQaTzni`MK&rMICCifS=HHh;lm#ylAQf(IFQ?dPAtk6BH~zN
zL~9u-eo2zYypWJgzasJx68W>ZVR<CSTJKly!J)_dc>IFn`RAtV951-HQnD^7E-cam
z^Xb%t+Rpj@MXY0q6Wq$`r3q!MjhY==+zEg}05IAIh!ZuRsv}b;_qOnbFF7(cr>K~8
z9Js)Vhe}AKQWv^i|2r>1AG2>IBa@S!dzw%Ry%0%OJ{104mu9c9uq@&qe0n&(q`Uhn
zGXe}8X4DQ!Y9^ugc98Mz84*!&%4F%SBcoGv6txbzI3JnYatPP;-bQ{t?Yz_vlnr+E
zX_~0tKVNvJmO<FXe)^%vXZl=LM<Qv)J011^-bTl{-yFV0*<@Ny(EbUbs=wc-_$J=i
z%y^Hr2hRwFwbcT#JHOy4jVWqzZ{VcB4d#0XPycD<|FQNKU{$W!`>-HLScIZ90@5Yj
z-Q6vn(j_GbC<2Ofw;&*$f*>tQgLDfD(w$1kxAvJiGe>9UH)qcOyRLJtYpbyLe&6?b
z*0a{V?seZogEusUy7%Q9E%=w%ZVSkn#AaZgey4B7DQEmnXDn2;;EQ$hT$=?^&Xhj2
zYRJ(otALwb*RM3`C;kno@}GNtF5sF;!%b*7>0DAzLVirxCwN@QL5iu;3P6vXR^ewH
zlv8%iIKO2C1qxTu5fw%BW6$<n8((i~azp8KsqrH>ZjUV^PlOcQ>t<d*#1w^Bf|e_e
z$FLgybwlrU4jcQcE<X@0xnXxtKJa{r#K5Imx|guq2(m?PaVa|!#2vd9g4a!Gf=kwr
zbD$HL&vRnAw?#I;^8xwL?vjm5ifxl067M(4-rH1EwWw-t`3N&ez4xa_`xOT^_t093
zzJ2pJ6}Z|glv=LzS(j=u;fLU>v^ENBZFiLWH@R3}-C9k+c*6%uRunw!2FZU%E&pB<
z3uCu~-7^)b^^iX5n(lG^`5UAd_BuOfW%VsD^y8Tc%^RMZP;&L{KExu$u=;Y;IP&Sr
z@v%E&Jk|R^tRHJLDtbs)BFvXft$kO{<6N7RTR9Gr^{^a0bMV%DP`s!1Y4l0Lof~w<
zBmQgb);F(ZbMJG$&#t<~coaitiUjl4G#IIit_SFG<EfO6EW!_F=Ogm-Zi!l%+-P~3
zlQW_|x|SP&LdNcwaEppcm(P$|$yZ#0tG1|n1X0CG^@!XScW&t#Bs+lm7&#uwHHCD^
zm$!0ju{xVQQKViu5uNV#VfHb-ev|LHyP#<}*JgM(KaAGnbU#lQ<<a8BD^|E)mwNfm
zOhaCRXG?>s^^AhI?W0F`!)(?@)$f<$D$;zXP{lUBQf$Ws!Qgm}4WG>-lu2+g1t;ib
zJ;^66bWbu)wqDU=&x)A}OXi9KHl@TzLqpekFxGEzJ9U1ra8FCVKSq8ORa52JxVG3e
z3A$688XwXxx^bXC?wn(X85Wx_O@h5EEKLH*me^N%A+)|4D)ru{GuB#pS#+*H|K7U@
z#=c;X1|82t(KLK>_d@iQgPD?p==PS!R{Gf3*hzOqMQwb%)^!hMlAxg0{c@Z8^PTTT
z)v$zU&}zT)S_;ig1Yu!g&lv$Nj&5L>mY1H8=opLB=XBrolxv~MA9<hey_Sh-at#4V
zPWrwErCyzo;={$37J^k3GqX2%UPL*!wpst4M>%$5A*Rk{3h1e+=pT<+Ps*P1S_sED
zQH;~RMJ?&n{Sdbvpk==9r~9hL)Ypz@hK`S5g!;Fd`ZpkWF1)E>UO}2L-{o10kY<#E
zx{TM;@LMKywC;Cg^<TGM)>PDdVjz5PWqqo2VEqBm9(OF?N}V#Razw?VqhAn-nkG9^
zc}Hiy>K-Rx7@bhARqZkz**-E<ubW`TD=XjZ6QYq5HWj8IP{A>}OVqcrUi`kki*tQw
zU4;~xX6W5W0uQI2+D0X#^;g$8^S@nD8!u8fBSEsz!-jFU$tQt<)=pPhJDPwtAtoTT
zs@d`R9DXpCcqs!yeiCJslI)5X_}#f_yp8BI+wrIAK(XIj+eAR^nU`WrNr)2T=~&aB
z3&$atuDfmMd+rGPJ20dBJaT&1eLA}_Ipd>?{YUi&zz-Te3b^SLd`ZDdP36(jN*Le9
z$KhM|MeY-MTfBODpw{mN@JbXy2dR4noGGiy%@N#7UTM6Aq;-oC_6*z4ErADW0kf|>
zNK2VsfCBNoUbYcND@wXKz9a#^1z1C~BSAcG0J`rf?%gvZ_84!jE77?+n|Lb^>cP-m
zQ1I#RYX$W(@@OgrIu4xB@$Qhh@A(&>^dUr5ZJraFw(K52x-}a3+3C_BQ)o&@eO&H{
z3O&rL^V0QC{BeeNab&cRb9^SJaYfnJ-Jf?F42?vp-7nt`DeyZY?u$rmd>h4;(1}Hb
z%CTyFWx8sd?~F<CAX3v(ps1WBwJ4ye_IOZiGKHK`N?vpSso61e_^WN6v$KVfvUkmC
z8f=w*82)F;SL@aEbzYF!9#yK_nQ3EcioUG3v7qT!?cj~lcPqJ!`{b$NoQL(u8Sgm9
zrbczu^Dka<(Vybq#%}we)M3A>K&CRQ@NYu7!h^2#CH7UTnfdm8wqaVST6^(Df8!T#
ztF0J^Yc5R2DV^)j+-R8ms%|?`nTHsxl2ti-YWfZ=>}0V-+Q-1R)8YPfRqzG3{o%RS
zV(sFk0WKdq$nLjPSfEh6nu{4;UaOGO=^Y5Xc!S5yJhmsjQJ4o`X>?yITu@5z+pL(+
z#_{GuW!j;;ibA%a|H#xPuOyvo-`EFufv%61WgEIgMAB69yPCQmjWFsYviEYQRixei
z(VE<>7tGwY%Q4r_k8q%vQm6B4$2aR#-y6QS3KMXz?+we63hlJNTS<H)!nY?MNTrZD
zA0@}c8I)axMPc&b+g(=sDQ-{bMoz6Xji159%e_c^-%a@h$LDS&nQ?4={Azq2{UoDO
z3$)zZ0(P@a{($n`wrf1up|7UXFgNmLe!(_p``Z0dF4&r-u1VM*qp7>9m{O;W>G2iy
zI4RhzZ#G7&HHx8GqVg1nhdgHMz4^kokLx4;z{$zUe(9D@W%6C+dC$v^{#nz5TQ$oc
zUp%5?Qca)ZiQ}fxk}wEN$h-TticU;dOoWr&ba@${S5FT_W?ury&0Z%_87-QHCg>wN
zE;)y_Wg3s_R$@8fhhSS*D5cGgX;)qRWQa#waG2a3&$s?@Lh2vk2Ju1)ndhx6+PZV0
zc8_T6RJ3L^ii!8AnZw$%-wwcxD_Esy)~=lkVLX`#y&9KMD#y9&TKb>4y->suj&6HA
z-L&ysC83^r=m}Ry_-WGc<5)@vad0w^cd8WUKq2c!U8u3|X23-z7P#X=(B&3>V0y{r
z18B4N2VuF~YF`I^#Ej7(BijV(Ambn30&f_6JU$@B;x|qWx>Ja>_2Gg~9h?Y91}dbx
zgRpH&ITpkHYTIqi$_Wz%d+vYjjJ0oOx+U0r{HRdj{+)=t&C2&DnbekjUbBM0+qoOc
zprN>rKp6yrQlp~CFXAz5t%+8PkZM~#T3iGXg;<b<!VouYKgSL-S*HzIw?2gr7sxFv
zC|I_Cd@P*IVun?IaZ;YRZyms=yyKRsf?S&X+CGZn!0&g>x?1X%WT;bLE__SJEo5%?
z9t9^kd;zaYgSURQ9*r|ztBh+TPVc;f-OxQ8w$qvb6tVBQOS+BZeD2qPK@(LZB=`zN
zT!|J_aA3jEL2f4?FRI2m4Cgz0)Q5FRY4sAhdYn#~yEduMmfeepx_ct__Jy7))nCBD
znKAsLSkuP4S)*3!5dV_VQz=vNCUwKDvVqTM4G}{U4ss(SsH%n-`2_CVVkR*jn40Py
z%H>sWO7iyCN($%1zUxH2_6&PmNkWc&_wHHSVy;8%l)%Pn|9SFBnYOOGHrmMtjRtXz
zFInl9FDb|ha~#VogCS6D_0fRqtik{pi|7E?31yIT1!ZNAa>(*3fsM}GEDsI~%1WUh
z#(8n^Yrz+c92IZL%4r1R)#5S>&BpAy+Ir@7e$l1!YnO2xAtS)LWZiMg!2c#nCMx$Z
zVkRWTFKb$y%`w6AnJj9VjF(sKS0k}TK-meCRi8M&B;>kaSrl!02ptek4fO>)_hx^$
zOb;|g6Z8Zl$2tNe+?0=yzhtw)$nFjt2p!cky&n|?xG^WeRS*=3vC&OuA3tiA(TNP!
zsCC8{+Uh2}b0d>QqYXhMg9%D{S@bWbqa9FMGqt}$4bq2}c%{)ibaJt{`_V4ld}VN2
zgm57y-9NVdz-~9e{@%#%{!+8d5v+4-m2qH9y776BPz-)(@L7MIM;A40HZAm+6<8Ro
z4xb*J9;1AT+wBul3J3^rjUFx-9ZOz01uafJsgo8Y->V2y(W4_!10E#r67*4wLg>dW
z4zNGLJp(+HCCE!p<ARYHQBne>@B&lt4A%0cXadVrx16s_u5XRDn<1|$`~qGFG%qZC
zZe!_X6W4s>AAUTZeyfgDM&|91C6k!>m5X?03z!(R*yucWuj(YjKqCG0TldjiHr4?-
zfyHDlhseh$qm=Josbp0?BIy5srLt~#Rx4cJxG(GWypNfct9c9mT?NWE&ZRXng8--+
zGrgqZ7|kAwK12{jES}FGIaa<?xw?(httOs*vEcjp!ypEygsJBG&+gO9xo>^ln>rfI
zLcHUUgRkCQ$eKu{gG4(!>uu5|Qt~g8!v7c<{^yIP&*Zb1t<(WLq}^y<6X4p+fQ{V?
zv#GJPSfZqoP4nYg=HYjg9J(j@`2(aTdb(}KyVj21D82Q=Xo-e&^jcrfcl3=L%u0{Y
z(Oh!wi?N7y_fPaN<&?)KpCZ^(m}VFKV-g>=dG383Pqz-T%T-KeK*IfmMzJAUmG#ap
z;e4u~Pwi+|11OJpJx3iOH1Z`uBG}$x@1`&Wlex6_M>i8ILwQ2lx_SDFqGvlR6g9$~
zW?+nMB(dDl5bK4f#k%NBf|d^u0a5T@tULwnMWuV6PKa!{wI2!pQ7{P6Ss_F@DE=WC
zpq@i%b~S&rNhyie>59R9wlAdK_y>{o)@^Ill=d_@?%%AMqjIfish1rvY*%y%SI2!P
z3)|jvu`6QuDPo^}*d8$XMv<m5<P>Rpv_k;B;1x~Eye=VNo@$Y{H|#m(Z4kWQFYjDA
zMtkO<9CK|=so&hwo2x6Qq&S{)QE9kMrJhOcOL14>(OAa>yPhb{lUhWwkb>@^MZ`TU
z*ln)O9@b5w&3&aAHFLV@Gg6S4LSjg-32QQ0et7O~K~C{|UpmQI5P}`hNeJD_fFR3@
z8(lquMM_4msPiOP`Vrb&))O+!sOoFGSZImehD&|4Mcf}uAG>)UZZIBt-f@e#bs<ci
zTdmq|GAHQx+nkb>2xdwOQxIEB(QTD{*X%E(Sf0WR>bMvBpO*pQGkKcM?z5He={{GC
z%Pw!pI(F<b$N`NUKJ6o7z3};~HS{YYVLDNu+Jt)oWCf*pNJ&Q(=cyEu+Tpla(nQ<D
z7ng3&nYW%j05W7}QT3<%$+;TVzPNg(BjFe-CB0Ik7b}Mx*L#-lt<S!9BXex->WJ93
z?u?<9OU=J>9z71kFZ8FWTYV&FEt#THQZgU&_b+_31OHSa#&74{`AxGVQ?m_Ws|O)w
zUW@ECu97iK*Yhcui##33%m(FQ+0!(pA#$=k&#hS`Ifi-H%jlhCMlCnE$I8vS_D6o4
zk8D)rF@NQCmB6Zb8QjeGXOP*-W?e5&k+wd=A`T3adS&UF*_(zMRMlatp&Y?17axcI
zC;~g*X^w@lP>hpCe5K`vFdJtmEikV@1oGK50b3~P;RWn?Y-dO}mvc$wPK%p28;bAV
z#bukWb<>Kbn||G1R)}%YJALZ!wTZuJ?71I?Lo;-)*Ah(knXaDsT+chpVknqDn_m#f
z>p1&bROT4;bII(75@w9t&M88l-qapR(N)q)K&dQ-!ZK>x-Qdv4U!4<{YuL&ZAcECJ
zVN5mlVsVTm4jP$yVn^%MGli!sYd7%@1YvqXqobpvKQV<R$db#9K~ysx+TIh-_8SHh
z<TQ3@N~_B@z13a#E5oPJ`;@WC3zOJ)(=wEfIp|$3qx;x5e78XG=TQB11ZuwUBe#OP
z`?RJco%b065*QIPDy}CVk6&9asCC$=FFd?p!fTe{1<{=mJMq*@`|UX-E%S68KAYo)
z`pun#o;N)s2BhPSy@JQK^#->X85I!p0HO7&&7n_4$X9=9o!?7oIxtL+$P`0+*%6|(
zbV+Oh8O>$T{Fpg9d&{Un;l#AJwu<)QDF`_pM!)(r_wq%jtl1^I>K~3JI8tuAbVjN;
zG~;{wmj@m!rQ-CTiZW)fu9r>6e+#lbb9*|!!GtkT(x-LHQ)DD(X3t0XCF*2Fx$90?
zy-kCbPI~e6nc15%hKKdH4F)a`h0EVoo?xB3Z!NecXpMzs@l+!!M~u#8cr_}YRo1QX
zg=>zHx;Sxt(YzP#bg&SNW4Y-zp`f9*UI#z&;b%R!^o7j`&93Iru1?id=(>{Ty?sQH
zL3Lc5cZbB`bk@fMw6?#3N%hB;i)Kzvtm15<;yKHMjZVDlnitSwv03o9BlJ)wky;gU
zHZmo$vv$S;=^vhK=N4rjPJ{gEG)@MYX>UPELk>N~vy0-_0sBeE<HW!7q@J1^Yq2{q
zi<Q0JlzHU%{vvQX0<(L)>HThg96R~m`;Y<iB0bYJ@v0ZikI-~l$a2e0VE$}pK#sZV
z>~w~kQI>tQ4e!vuknPE{Q=)_IG?B-TrIph9-sNi)XlUku212~yKu-#h*RvbU{XXG@
zTvh7c`h?@9usj|bu+@F$_vM;$pQ-1a3m-gwEN@8q@Fb-7(mao^i@wH%bf1GnoRRFV
zu`<(XaowAIteUr}>|<drM$>QsQuhUCujHg8D&~f7nK(Xo=QZZ%M>3wGVWr(7*WF!k
z%10xWtE+Ug$?Vju)QmXoNEX=(3<+s!5@wXut+Lh0%bz_4k%+uY*73TVw?3hvXGd^g
zG`1-`q4J&sM`S6)*q_AgO2%2(%}BzD^|3NFFt^=R?S1%w>LXXHNOSXZb$2G?>k|-U
z<hFdrguE5|QhY9rab0m=;~QqC;m+_)_sI@)nl)nJ^KQg*Ez&L<xTd2Q{AKnfXm{bZ
z20QkQ<hTAle!zVN<K$a{+&3ShPhLfzc2@ctaO?6-4Da4|(MT%0{Buj-clPcO4{}0D
zOF<?=YLZ9uwI#Q1X_IFI7z52{xFl@yR+WUbKu@pLhD-A0BOXr_BsW%XN&MX1>x}ON
zK!zoEpxVKZxE;&IdUdp9bk`_>-ksIVIX}z;8$Tic9?%milX{alx+Y3OQsLCq*viN7
zhF?N00kVx;#1o$H2z}#mfd$fncU9fJUEDe&yH*YtRE8yP+<mzix7|%PcrAc};%2!T
z6`Qx7!*Rmd`vP7~%?m8ufxwqdG`}x&Z|D_k-!A3PmnLk7LlZ^pk{*}ZD8%ebN1^I-
zCaD?`OO94PxF_*$B29DQeKel@^*RC+cD%+?ZQ8MTI<$k_6;6CYi#%UBYAqIGyz3+}
zb`>NVqS@4~T$GXoC=%_>De`Wo#Bob)LvD7@%(~p&SK_@r$EEfOF3>o|$#IrHoD}tM
z>KwfC)w1*Hs5;rD88ROA*|m#fZ;$lG-+Dd4<KegzrfS*~anen!Oe0hOL?rDl9_bAb
zFJL}!4tw85ft3FFUC@o;{ZKK-bNJL)DH_4TD0ln^$+w<1glMOP2}Wv81Y=`;HT%Bv
z_4<0I<chiZdO@Ub*jL3bb932tlbiwFQY>a26Q#zci7M7%nk0;RRqEqfwRyI8J|nkH
z?tFcyXT4^#la{0Cqwp+v*0y0Kf16|6E$~QGlcTQWG9hOKw4p`3j-L9afeI)k6O&>D
zkLBsnW!@~sKqg&%jPVLbyPJ<y+9Nb{9z|DM_L1OVVUg)o+vA#j%eNKMF!#Ivjel*t
zLJK1vhravrVemHjqid{Gw~o{`E-B7}C&Ee&!bW6nKbiA+|M=smsHmyOf*LhxYJ}n#
z&tRIiu8v>iasE?5KCBB8Qe6FO<>hp7inxhMTXp6Z79*XO+btJw9o>6@svpdP_Kq7k
z`T1;3pX>93fhBB&lb6X)H^97#$UKG3(aFS!f1gzSXMoRGz_|G^+~=839Ts<+ZCSXM
zw6t{3)c^q!CuBgPH2sTNuS{~w<9RcX<swJ{O=YseMX?dd_O&uIpI*vDyMC;D=T>q!
z?Vf&{&i`gsri)gP=>zlxgmB-gobhQZxDU8+GkFi`&w&omb@Y#0#D)ASohmMBL{_QP
z=TycK=RY@a8+;KW^{J$6XwrY+%Lya5VIrX?;Pm?FOe;nf9&eG4H|}oTyL>Oe^w}Uu
z%&RnXv&?`e@`UuqRc9Kw)3y6ZNNRn0aVzC7g$yF@?&{l^Ow&Q0cg>$S)xV=oEI92E
zx)2t@=RkBiz)>gswPVrg+ME0@vER9KX8}j|lFOU-awG3+)Toex*|&H}Y(b<(7OUd5
zro;6<A#oO#;Fn>KMJ@%{ifi0K*WAj_Hx8(-O?MN|rekK+@SH24J6|a#nU{al*HH7T
zdrl1=3TrBF4f)esgxD!NiWgLL?Fh<AW8-CdmXCsMUz^Ki4$_vGYj3H<+IX&)B2%;U
zb_yC=iT#p3BS6%D`R^5hKQzd+pIj!)A!NQ=tL_Vje7>7{vnG`v{es6zln2H;DPb{F
zn8{~<JB5cUoFOq5Moibj{v73A<hk+`@JW_2d;!?_YmeLa6@I$gl#UEITNiC^-P%6A
z&0rk-nDWwabwYA^xn`?e8@bRYwRP-QyU0}HhX?`g*xMZ$etsBN#3}4WMnZN9!7L%*
z5*KKw592e*pSrD%EQcyC05h074uecK>kjvfHKj5(a&foZd36oayFPts0@tlS@cslH
z{IMDJ$Jfe>7?ln)23r9V5)#AtKzqS!X=&Me&1paNs@iQCt^6W>GE9$;f2~Ro1_=36
z)|+SH;&!;gBeyZ*?<KPy{}YdfTj_5aFKpG)G4No_XXG+TXI~T}+h$c5ur#Hf3a8?+
z41>Lp)FH-|D<cmgFwT!BfEq4JqA;1gC?^$qR7B+M+qWewZ*=tb;-M!+5L2?SC`0vI
z8IAqrwpn`FWM?eBIpkso<QvgVcNAt{Mk|(YY(lwPiC}@6V>fN8P#8>9JEQ~6a@1U7
zk>}q$+kf-42T`yXt~V<R6jcS%Cb+ZNT+2~P-|+lS;Tzg5IvbUiX0TW;M(o6W@7ydd
z4h}hDYWeQXD{YRKa1#LJCX-9fg)i-ix1I2FI-7xqF~2!Y?)~Gt=-n66nB}VXwq-dc
z_x*inqpH0h5p^rXr^IkX)y-b!iKuvM!ECZxw4~hdWv_;AJMxq-e!SN)9%TyS+a*%L
zI;+Et3GbWJ%vv>B0Dbo}CZU(VZwf(IQH^K1TN%-z7mmdza_(yn+5LdQb?F&z%@IKd
zF*6>FAx!@}rax}OfOl+nx4h@kvgN(61Z#U^6n-;r5oh1fkh;HLh$b7#$>}L7`E)=4
z@@ZmWqQUq@#EC|PkNo|+r_@4A9o^3d9Q@N93RdA|iy0GA=I+1*#)Iva0Nsf)Da2@S
zRAi*nn0<G5St9B|(0WT9)~~<&&kFr-IY84Lxr|=S1YY+I+iWYeQ_$(?Tp2Ey{uI2m
z<;d6?931ROe|X<drVcK``t!i&l=*E=k{Gonbv)v<KW=1hU3BFp*UCCIBI=(%v8iA3
zoC_h#G2XF<3j9EQvIZ$Ls=S6}Tik!$7jBP)AJyKubg0tW*7i0e9!6I*K@$%T3eMOX
zmql4&VZX<Lfe2-JUt`k9&k?fYKV<)=wf)vGRO-LJ`=9@T*OD2%7zvqKS=rE)7`dFA
zlhZknEmvfkn>sb6-%L+S+p)~v_0QAhkJ7Dw>2(;Ezn9cfZCJd-h3sfWUKvXz(Lh)~
z2qB1TczC=cmbZSs#lI(WzdqVO^Y_BjRLYhp@<>QX1C0+KT7&x-)ss+JgpUnEtkW)l
zi1`1%&+^kkb`xzH0`Ut*gMeU+`?F0*h!-J}KL_YPhQ<H&wc{QR_ZMjTl9Gb!TlnKA
zPwqVp3=AxH{4Cnh-OcZn=RE)GV^@|xr(@yc<J0jESAhTVnT6>gUk=+#1yxfuSRzHn
z40=`as%mOQrW?OLkEVX{b0*oKYAY9Xh4`gPmZWM)8ofPA0LK~-cYd7gDvg8vVZW;!
z5&d7h=jzXzu&=YchI0hc!XiTLdau{E)3w9A3s-)9Ln1pAKtTBE-xd0-fkyi78r1uU
zxX$W*V0&!6@!#RSf4jCImdplYBqVV;FoEG-c@q^CRVO$T{@Yt2pOKLv3<Y^1TQ^Mh
zug+dZ9IMqs;Hf)aW*THWR{GhhK_V>m=ZOBN9}S)OY%qEPIR!<wRte%}WT7QOFQF@r
zvEZYhPROrsy29$8%ICgv<^W;=i=6Vo@Uu~7TeHozbr5T=vD9FHLHhLu{`zeH{rxDD
z&G_`Wp-l2Qfy_*UPd0cW9u45*<0IB1Egc>2l-TF}U*kr`2Mh$|{|l`F>kR<mp2Ln`
zdH3<7vRXIeU-}MkS`4CGDe&v)>r=XL=_Xl2LjwU-!;ka7YXRJY!L06NE+yy$dB}?`
z^!&n#jqsyJy5O`$*<$+pN$!7Uxyj%3l4eIx-;DB+UsOB|4~+;C_9e2XpNy~gE#@UO
zJx-Tpxs{_PZ=`u?X*m@M_X+ML8f4k9D4^248*S7rsJ6_p9B;qy$t!KVxLDso>#$pM
zzvKs&-#HYrb4cjI=aB#Jm-Cv)QVLC!&*XAb?<djfR=zT?d3feaZ!iHAFMD&j#$Vn<
z94lftyUr8$?D8b&>xdIk|KIQa?>^ptN_O@YtZNP%i_REYQyv)TZ4V_C`eZv<#aQi}
zZTQPOnxMNbeQds(%;#Rb*>?U<T+uI|+1`T^mgHyssm{{^Jf`EmLJ86hatkhOqoz3y
zP_S?o>AvQ-IFggP^@rOPp$Qs@qg>P}jsZQzXF*sj*|C)0f4LREe9phQ;bghk-1m^F
zbo8K3PY-RC>xyUYvre&cKu5xe_d47#e{z*HESUE3RgphlvLi}o9HR{k#@Z;EM;<`i
z%}Ismk6-N%-}3)@S(7IGiQjXF=(Xa;ctsnyLF~O6mXb)66K=V^I3LeJMfB71z>>-E
z*#5Errh9Mu&kTaDl5&ELDm(C~!{l4>fBMP)>ofmx8Duwb+Y4?iIbumO`hR{m^Sp!H
zMm{*fq!jB9zYX~&H;9ULgJy-v&etwWT2S4XDAawua+6AQ^nbqKS#8RQGwn5YA4O86
zkQlHry{_B7*{FnmnVQ8Lmm6Rr1?ZIaJh{Bu0~2&BTvZSZa=-!Z(|6-tVD%-z@qFYY
zH5eTcG5b0zFi)ePs^|dpQaGWf{me=<k=48#A+NtOTH=6tgUR+oIH?0fq3e-UZ_{3_
zBeaL?KEZg59dtO;?k0N;O=vVc;2C_qDpAz{yzmcjhONCCCN89*4lghg+7d%-N#PMJ
z8tu}I)38w$`?aw$3!rQ04BosK_$PPmAJ(4PE&mhGo%xQIl|0^DY^&k?Y)kVzEvt&4
zOZfMw<i829hc&G!WXQ$uD&(nVcY`kw1&aLoWcqfzUq`~>%vm)Y5N#@(($KtD2q&4Q
zSV?8GRDA502iIpY+Z5!}bwO7Dm2xu?g%K}U?uKf2J;!JJKoY($#9=eClUS%<LoSCR
z&*P&{ylNW!1955X_mIIovN|r_%pVkYTSF|sSW9P`VI}A<TpEV|39QB5sHb`Ci`Wq!
z)-VY1;&Qx)HH@phaH?S}b(lHke<AO?i8_S804fxHcGF#&r?fyHee7WktxJoZBo2%1
zFYmF}*G5Z9m<<Nl?DkhUEIx#$>;^c3&86MLq5B~f&QISiB$4FE#^zge#r0S$eZ1i!
zTcI}9n<7}OI;Dam`rG4rg4>?VRZ_E*`Ai<(&~AJ%SBVRlF`ZjpG+6&7!v5h|{r)mS
z4Sl|k_HuTrj#7qJ$+x)pu<P4V#iDZ`p0B^BF{rzVoFh*X2VZ{ICgObnkbJs@+|!Uz
zF%vQ+o=vFf1lKO-B=-RHd)GCL8!ooL$_0`Qp3M5<NN`r<ye%8Uf_8<d-3>WsilunU
z?F;&EK~pNd2?Wd>WaF9a=s(rC<o3HifXHV;K)$^L7JsHK82=`K{nx{T6B#|hdGdPC
z%O86i)036=hUs$lfVN1)78h^At0bI*`%166*su-sNEVMDrSZDmJI;ms-sSWq8@7C+
zXdvdeV0Yqf?#vB-9XYbx@Pfi@srBEYh%#t4kp?^-ffjGvLy~obed0L4qpmEA{|GYw
z?aTdsv(NeKOPoVeE3QpR9K;WSz#I0ufpS~*a6^DKcR)C=d`q=@L&jot#Ll8WQ^Eq4
zjsF;hHzB*#tj-dx2}tP>L~}WOs>@N$mi?5QIbLpF0LGGu<51c~UR034#8A)IELs`%
zX+jw86j;hVb-BT8Fr{8%Fg@Q9-3IQ^d^xAvn4N3B8hNVkS@o)HYjj@U)2Op}$yX=r
z|57TZSRsL4IU|F#&Z384hO|%ZjiWI{AtOe#<-pH?EwsrI5HNM|D<rYsf$ZrHn?-l1
zOqR!U9vwYxC}1MZ1LySt!8=(3KFs$YEa8t85uUijSIbApo~h+IbxdERqZTmbxV`?-
zLs9yb1+d7tD;|8u%vyD$6zu;RN2~Thw{+}{Qx*bC%fT2?<txsd?BMw=;1f-vs2-o*
zw;jwp{GV^RBLkMSDjLzn`t0yLs*m{^UCP^0m_P)#%I}h6dUQV@Na%~UQT<s`$uiMY
z$zazyevMwUyDukR1lk^^X&zrXZr<sGgTa=m;hRbF{f`+U3&5dc=eRdiYH}6z%1y_{
z$R#mF@@PSy4OXB>9n9H1KD30+-2&(qA!4?hNL7jyDe-)I7ljJ=kDg3EVKk^4+glwK
zA~)D~Um5DJE}kR5ZTlS>tKHC+Tn#V@1B{miA^JwEk*_X31!1xW$Tmg*L7oOXx<^g;
z);yr)k-g@2x<8r-oG7+{L=<y`+Vyv6n3_KI+<yN;G5~k~`_ZaHaEMkDv@~sH;~1=~
z9A@mj4(j@IK!^}k4G5aSdkD#rhsCQiRd$4%gCkd?rAB9-`=>u7nTtJrN@`eUBH_|T
zTum5K5}>#q@0NQwqf{5y{6^#v$sLHdmE?&q#@}^`=v(PS1xPWiKu&UlS_tBDkA~J=
z>-Rjq8H?k!ZUvse`>o$*XTG_1oD5mkDZwO!tHXEDa$@AWPg$z^5bWZW<R?c9b!@uA
z@Z7T(43q=&hzs5YHQMYfDjgj~%uHYWGM?4O;VU%Hvp=M{0BpeR@tSs+0Z)K8>8U$$
z9&mGZ>Td&eiNU$)9%;XYlmrFvp#sK#1yj3Fj@ue&$TH>;X!!<u{5@+zLVow;^2L<T
zf8m4^CR@Jjsx3_RSh&QXEG|B#5O#t^%i|d_=a&LBG{F&DG`cidQRX49pdv_%Fv|dG
z9|v*s<`a-**(>ab2@k%SCLMZ>(adSP)BWu9d^ZpnEj5evtsm`v?OMzf3&%M`K}cVA
zgXj2-OFO4vqrBfrB*2d}BFN^och&dJF8jTqkGK<4*tc+;oyzrHVDTnHA(k9ON@8_|
zn0G#N?au4dr|l0O<6>B;J5)wnt-uf&7nq_|f5|thoBI;h%)RLDwDD>yV<!6|iJL%}
zt3tpwPIHKY^2wJ@wPO&X{!+%j7UC%A*nF_msq9T@5yer;Lj3}0Bk3e~=I?btp*RDd
zbB&P=S~Lml_C)p*m9#Ack)|0oKS~}7;8Q$S69HNLfa@C5UN+41I4*&?3kK3%+QU9K
z`y|>rbcewc7mqh>xEDnD63Hc=CNw`v57ByQJ)9r=y7pSCup3NPv^;&A=IiAsUOBfI
zh8_7Z^$oYXdg<E*<7G7*Qs(rFT6d{a)!QoQwEEN`8Tj-LI#gV{i+$l(r8Tw1FlXT{
z^Z=xdLGDB#$FwbM;oBVUdmo_k+<{=v1@d5y?~kPfsKbOBLcuD%%97UhNn}&8Y;0!^
zn3|`3EqDz%0{%ju(4u50j}RNle=l185!!z(2k_+~(qA~=qwu~1q=?V=+qXx&z-Kae
zTAT&u?3`8|QP~#V33oK5U5}RS1mu`<b-S1`FowIq@z=-zm@G?$2m0icI_-&IDSjQ*
z<B9G`{K@e_ecuh{j?Dg&#xM>zp?4Y9hf2w>>1aj;iv+}jr}R7BkC9(<5RSZY>tQ&=
zbugUAX*-zHbMQ(il`nnuS-jb;1!(P7yGip?6o}xswgc1G&0_9@f(1-R9q2!#w5S2A
zI-jy2@yn(kPD~(5*!FVIT^a->|H(73lGc_JBlX#fOy^=e-C@gZqS%f)+J*6~n>t){
zcWYy=r@vx!F7Kt3Q$Kn+DgeGwn%`VN{4W8({)sQ_8vuD5odRK!6PSOcanS%qTB52y
z{rH-QW5qk!0<xh4n&x&uVK<(|YZmE#&BnKDi}|4T_I~c<st;JOjNSQd9`Zr65KgCb
zU8QN;m69`D0hM+JA>A*8)CL0y-m68`Ya9jYc~O@B1<}?sKQ4I-AjZRPB1JRU@~CL=
zUsUMD90jnE;jkl`I(eZ-sccT9r4UYj&oB8R3jmw!O<vohbZ36)R(P-})MVp+i%;`*
zscNHJ&;0$(Pjg!7a2WpBJli;Et0>HUPRut_XxP~N=^~<9CGG=N>gvn}=naqd5$+Aa
zIg<u^GyTA`)aUq$_jHWX=t7K|;+<Mw(2q4|(MvjUXgpPX`awe%b5wh6eD^|MzW#Rb
zT5Xuuf=tTynX@0GH>g&4T)%`|x19iPjMt&)`Mz{Yk^-%ghJH&ZRnu-dyNV~46H%27
ze5&`Z-yR>C({Bnd(JV^pU#uL|^={#1c>K+1>pw2e|9XrjO2X>RdC_Bl3gKvy(+bjD
z+ItBDZMe+Ym7&)(V&us~+(|rUMTFkN%t?=u(5daw;ijd;Mawi`Zv)XI?RM6wFTtXU
zHq0$OxG2k{pNa5Dom2~9GBcMErQ`{r2lv94U=S`<lpx#^VN-G%<Ow1OMHyteM&#RS
zt_htr!0>V_-2i9z@_@_kKY$0A1oD*KuIoqclR<<IYu3Oi!MkB+*3qWpm&ot=)DtLO
zCvQS<sS__;UP(qee_^aNjJWTPVpGhB@Atsmj}+LEtp>dv0YlIOU&oMEtU5(_^mIdy
zZ#8r9K}_IHA5I5FoF|OhEHj0A@g7C$rNw390&T=vttFQ06C8I&=QE$xdc|3VRa--G
zMba<$JP(#pqM*;w*f$b^+GG}_XmSq4qrDnFi@H>o-f_;79|-PzgGLcZS0{k-({M#v
zbQ`<PNOw-8vIIHJBC!7E>e6T&>o&s=tO}>^Pp)f*W^!YAN``*x#{GEtHB{>+_a>`~
zsArEjcnj<t#_BU3TN4*REPK7bL?GQnX{<L^?+7|~M{_!J3xPMH(u7P(ws&VAT^%c<
zC>!1Sy!ri0>Qb2WH+EO6Oe19{Tx!Ki%?bNApS_azfS=KWg%tfkUG{^9>#?dcQ<s}!
zT_xb~6}IE7Y8k>J6e1QcL<4`TRA+u1aBWTiI>4mT?mqSwZ6xuw9G>1q7aToMV(JSk
z(J0XL>MIp8-GQ`n_(`4;Z1M6;st^thLnv1HS4|fu7Y*bkk^g7N;-5*i8JT|_zBZnO
zxf(JK#s0?hYKc;21Z_=D)xF_?oac&c#w{o=m9276X>2jnUV3UD@cIFpy?)e3u@U!{
zl!;pBubl}r7<MT@Hahg#j=DIw{W%Ct_ZjOBpPceeZfl3GqCav-oFbHH#J3EbzndFN
zkfYQ@-Il90@-9@q)j!b*ZnoVZsz!{RiyNDFf;dP3M?ainduy0)^&u1=I%rzoVSL-i
zSfR%GtG;6u52qDb0Y}Kjk7H6tgEJcAu{zJ)HBU(C1w^F3nQj+Vx4d@-q<E(*DmLHh
zaHp%pL(|>9GCjjXW?4~?M`er>=_5cxSrtc%;Q05ZZwwU#VA(`J&M|1zc({i`fO0Ra
z-HGOt)xJ%Qq^Vptztf${H>w*uP{TkglW}9Am6684*&1x((QHEG7NG(TuSwUhU2}{H
z?wKY9;D@cG{-E|d$kuj)(B-m#R*+Xq)p}JT$368!3B&&NIF2ePl16pE9YIdYZ)517
zx1BKHwl+q~Tl28k^0Q4zy#=Em4CIW)eFdtk?E`3CmveA6;{Kjq{nyy?FF)W<q(F9}
za7r|Nn}C#ZwpEUaL8U#WE*Mc`Gu1qdLC*wp;UAtB-e8||({%a6FpsBm)W<BRIY}n&
zFW=z&5l?v=eY79l%76<JLje?Fkd(c~)4sOEa41eGy+BDri2(SfV#*(rQ};`XiU#a=
zMLjPR>;TqH%MGeAza~<hPo7^wsL2c2%<ng<pMsIk`6B5Z*#{L~`}YWyp$sx?ij5(+
z@hQJIrw`Aq8|HEecWDjk-Y8_Qs+1Vqjh_<A4_C{5awtUeDmr-SIhO%fdExEPF`aU~
zJpNOFJ^S?QyLt`RLyECv<V{j{gYp4}%l1a#Ug&VCSLQo*yuHXlkFZ6AR;m<--Neu#
zngHzbi)oVIz^(dgI-i`DuQ2D%o8yz&=JRRj+gS;5wDJK=7`Wzn^b>Xyl^rKPyyw~E
z@H+Qw<DwnQ;Zyp@3ndB=wujiC3Dgkk&!n1Jl9y+~(f)UQ;CGlz*aAzqDF$D?LM0K0
zL4q%^qf<43Q1E2B)Tqy-?c>L-ZcP0e)`nS;IKPyO6&_jKI&g`@`5LdA(XNuP<Dj&<
z6lmVYbVi_SfGH9(>&Sb&dm<B%KVGre+WOWnW1o_`7X2v~_&<D!%2`SnKUJl$=nZ9V
z$HbHmzzbI$`X(<=i4<8#$K&3^As|22rqiHWEBQRC_(fN4mN==gJ!JHfBXuciJ|Jq$
z1um<HEi=0eUIJzWT=r|3r&;23I7J;j>FH()T}oT=md6L;UHtu@dE@t~bylP34IAnN
zB+o)%V_6nTj$+^cRB4SX<gq-E-5@l9dyQ;3PmP*)B8{)vP}^)vu)t7gid;{-A&YpS
zxDT=k(YB~Gsqzmm!%^(|?cs|1MGp9B>|Fxh7>VlK$JE7eal#R**`m{k68B|Fqxjze
z%-_SHe<-D&A1#Ho#k=xa_f3+Ce1rOy#|rfV#%cu#dvp|OuQL-`@vmViF+_>HC(Sl#
zL1pfbUF=D=%9e`LN$E=FI-X8aT$`P^x#>Y!Ahx|@F8O8x$2Po`-#Gm|8qPSqJqXm~
z*>`FgK4<qinzH*4o<4i=se15A98E4jTisC9U01OOQpxG={6<NZ3-e3+!lTPdFQ~%~
zx)yrdf1sAQVJ6=nisHF-*SV!*o?xypMIu+{?foKB^&02fGn@P!!_}5bnIG9W$Q87h
zr2ZfB>bzSKLL4D7$-C&%H*X;gfCn%I0rLyh%}@0`5x2x_-!QNS>evvlnk}i^V9pZ(
zf58wdhpm^!@1Fdy{&*Bjnh<IUz)6mJo~mSAEM!u+qnK)enA8)hW_dDr_f=QS6c&cm
za3zcom^+m37kj{Col)q)z{`#iA-f4zp+d>$D-A-o)4Dg}C&=hU>9vY4*@ab{%Wh|p
zQ|Q1b$Gk>^rE4LHBJ29vWl_;4P^JwMms=E1FEfhaIj4d43SsV@kr!fUE*mwe@*z04
zZO2e=xZat0cvg>aJ`-^GbaJgR1^zgFDCMpHW63e~nGN8vc0*8Jw?wsGmh01gu4hGN
zvNB}-Lq}AUV}^7cTD$(F><$LsPE}!#3n^4mTe(?-X?=fxoQnLcAyOjGLFVdI<HK}X
z^;eFMB}$jrJ5u9mRQTB^bhcIJ;~2~0lAm6aDHq1O>$iH=oBB30i~BF&qrYdG5id~6
z(-Y$_t&;?X_~G7>7>qEIA*Tw7&qP&}rQeRi<(63NS=%i)59iwWdbCulC|Hw73JdPi
zOgfH|@@$50Pz~hciE#K%yaF`k$?Y;@91)4PkkuWDTqdBzC^~6s<VU~{f;#B{6ou?>
zPQM-1MH`TL|MdDCCUY<Es=P}VBbT>H%Brp4X-7L`ev+O^oOU?Zqde#exUSQwmr}31
z19J1JtM|d$>mLEA7mtiZ!i&p1EOVkurHiE_$(`ENB}W_0yYSddTG0_Q!ihQ+QQ{oX
z#oR8)HxN*H346W@-NHAZk^jr;2RT>$Ed%X34<}dG^2KHRf_~H>9YJVVh4*_z6zJDD
zyW*YI=~P7foDJov`8@oHd#xSy-Pd^Kk2SPvQ9G7FWs4KpS>ACm;3R!B#ia3VTP7PN
zCFM5}W77<?4soQ^^d;u-RtHo}%1`kdBq56L{)UJBezSj%&3_8c_75e8_>m=TvFjX#
zd&it>J4$(>FMa0H&5uG)?mfD&uYlOxTN#dRSLHvjIenoNIsgxKPH0T*_oXg2qmh>4
zCApGNp*t>j#xrl${ZMJSPCXl9Um)iSdVvJ-?yDox&uA5;$yEA)*}Yo+tqoSJS4;M4
z4<H8{I$pfPSNs0<G|c>$D+d*yVR9^hh|!*ebibw_O#j{+l$*`ul;R61ZE0ohUmkD~
zbl=cVzPrzVw3P8N6DotVZcz6z6^f<Pz*N9xR-Q8-E9L5ey=Bp|Q><M!)mIC3)@uB4
zipl$@I%j|)pMLX5gXjD`6ht%1q2m6kNby+J*N8Q3FHGY)<3%lJoZY~EAE-Jx4NhaV
zStn9m2V@pP*(Sz~LcRx>lo;uj)q+b%fXE2+cfFwswObW(ob|Kxw|bUN#TP2jcqh#g
z*4%-*W`ZlT#9QcqPENsvA7t4OuIH=gnE<wZo!B;oM)8ExZsHnl$q@m^)9Y&YSB5&2
z-nv?U@mWEe_5V|k?N?agx8y0J8D+=P(eqmTa}4QL$^zN)x|oz?7Gu#k9Rtj&0&q=T
zC~G6(Kuq`@?wrZe`+*DZYi19`FgP<F=7L;rqw`l;Hq#H6HUoc1YPxO%a%24=^!xiz
zLayGSS1Ru+ZAN=3Db*_^+P%8L@rzh31x2=;=w;vO;Z>F_sWT(WbIRk+2;Y(A{;aqA
zhbwLc*8Q0^MOluYTMS4ik}P^~7^P(#w_yE@yKeNsG^p(m6^7{02PqPKD<J$)SKMFM
zg)ExTurOl}ntQI}w$sb&@rK&0Bq7p6=?DZegjUwOPLT_Att)tj(zOgcImi!FcpfIj
zG2$}bo%S$QQp*&_VDsEDQ!Ccz8O)Z8S2mUqN5Xg9*=|d}iE)=QAQF8((elFN9Z08K
zZI<&vN-ixhL%e?=jF|6aHDMqhkZ}`AhUmflBdC|U9U7lk%&C({!oN;%ZzHT>iyEP<
z0oVjM@<E&7i;?G+AnAK;Y7FDH3o!6@hnTnWP(lHLJ;C^?T-}<}yFoThjU}jvptlv0
zNr16|kO-^*oe(zn4Su~vpw{2JaM`OhY;mMWsUoiDL)hssa3Pur`|RqK22M|)DE%Jr
zs`LU(*^CgnnAdq*hXQHjZN1hb%^|@b-{yjC$Boxe3E9m%uMO6Dy7ZOn3c{LO)TRPB
zwYo17FoFd5e`4OG7B1CDbG0v;x@38zD7oz$Aw~ZrT#y4yOE7Gv$yVZ3Kk$rFX5w{e
z3rpo!u|mo^GP_&^;VuVAkeuUyCdfN`W_5ib`hQ3jb<xR;WG}uZO0fjkplTmPu5g&$
zHa}5xdA~uFm(X-jtM_s{4zZ6gc=Pc4SFOxPYOX)PbWSfaqLl&Xi7TMuz5$6>0aZRa
zBsI!pq@?Wu-$(v3kxbNB=$8}vfYR$`Lqk<CqNR!H%IhvT`c&JDmez`~W0=i$Ob>x(
zZ48l^`!B<VAFgaT?1H{o*Anh}9D|Mt5cPp6y>~#LSsD=yTVxQ^%`A|%8)p#u+t%;t
zn+w6T?2NxEwL645%?Oony7umR2utxnbZ`a3V*3|$3m%Mq&|VOvKNq!xz>YxfrnofS
zDD_@fhDi8@N2>E@;MK$LKZJju!J7YcH~p+KeW}~f_j{}gu`{D?<yKZ3WLC%T_z51B
zw^O`O9xZ-Yoo>XtUt-w!LlQY}sCF+@W0=Eh&&mc{-dBfhwLdGUK5YX()9GkPP09OY
zvusXBvtuvhJ~aGTVKUp^we+Fj!ygZ9tZ5B?bVTR2PF;m{@|}2#zr0~T{p@5kj8Er0
z-)dpS8g;_L)@LzE(P9>AmFN%tDDM6Cqs6I`b1dEKpXw*WdOY?4i}toA;4^l^zVL5@
z&YwDM$VmL_w#m`^>QN|7qHgD~aJgD}cxX>_Uy8mS587fQ?c|D;FyEMF`F+WM$w-OF
zx&11iBbf@#7c_BCO2sISD3<=9!g1;LFAQ`N=KGIX`tUL8%|beAtk&Bh{@YM$W8^ql
z-=<MMf!RoX<yNPW!tu1&49gxkLdaX($jdqb-gG!RSif<vh^pumb1viP3bCvSug4bK
z$b`D9?*4Y;*=hR+TBVP)XArI}8SBIs0Ub}iZj-0v+`o-^(O^(4s0Ed`ne)OReWMHX
zvslkxm~sF-ay{TA3(=4ct641;)C^vb@<=P?M4kIOx?lJCNm`nD9&LkgN4Cn3R$oD5
zMz)$Q==<xIe5l@`UTl>b<+J7QjOrJ=DnR6tj>1E<Y#`mI9lKu!L!#nCq&+ahZ++m2
zOLZY8LoO~0fqh>>ran+@1--o<LWerzwudY)R+8AQ%j3_MjY{`(-Pf|s^xvy{JwA8$
z9rSRfY^UDz6Y9wv#&Hd-apQB^CRp0pOIXngo$f_P1}j^q^0_W$=+t|~;tTROpj&_K
zyq@;HEWNJGv&p<-&TDr;VPQ~7%0si#B%RGyl>c9f^FO~9Sc8R0`gl8y>rukH2$12n
z_9Z>7*M(wy-N)<uK5$s4aTiWD(n;-<;N<L?Z4MDdsV_W3oDx*+JMzy7IQX|)NGcpZ
zlUG>wrCqYoZFulKl;KV+vtcic(R5*Iw}`84)5Q$qV-QpJqGK`zESvkh5)FJhg8ZC8
zE_=b3UZ?z}jI?xVz<G>n)rmvc;bT9n8VlQADF8%Jhp0ua>x)0r%-nsm3wS`%m-o*I
zbrvvit!i8oJ!7sX-y6>NT&GzG3DES+%+a95q06pRsI?#{!C{gKzR@G8nE^9N#ClU8
z@zi4)E`X<7IY6@xIZijs$Qch_W6~dk46kjzCwY{?ppJV;RNKm!_L6*`Hls@BV_KkB
zTxWYvm}}2}gC=4I_fw$^?lF|YdaJgR)z3D+C`TG;yH~s$duBh1L7igs$dxpZXS)tm
zJZy)6zE|{7@i4tG*jm5HfSA7B<tt744l{t155NJN^NoBWtK_Kgq2b;e*YDg2et`5<
zq*KjzBEMISe}8(yA8;LAc$%|Lj;wqqh`)|XxwyTVlF9%gy_B25-QADQy2(wy{?0Gy
ziGL_rgb)Shi_jDq;kbl(*xnL3h1ZyGODT)S0}x6bPub&yL%eM6>of30m0VJ{!lJ03
zno+TZMyFJ!NY0@#szB-4XPmyJXx(ba6NW50w)WoMUoRJpxWxRe1lg?z&<~vIZ+MKl
z-<%-0?VZwYOW&mIGEV$Dz@~Y7j5kVd)#FMWy-2)Zo*RTXiE5rSM_S&yTl$CT;_lW?
z<>EP4ul)5RtEr#L&u`fZx6fi<rgiUl6Sus`gEskdCJ&Z0mp|<OBlA$=<K(|Y`uYQx
zp}h!YXJI6)za$2?y*Msj_0xG(QL;s>S8BOoc58?}FXSK2itnsxe@6+dsgz5NM6&+M
zl{psTG$9X`d3~)gZiJ-50*^u4NRQKHq0n|rGzrCj4_Et*;|p5YGKqIgCCdX9QhA4=
z3Yh@LAoIAZ_<{j4SbnlO)bGc20NDg8X1RRcBbee(MwDm3sm!4x4f%~3MP`bwp0C~k
zeaZG1X2Va2jeuYq;5}ISc<b1fM98;Jr_xI0gSsT`{~lTViG<0NU;zAz!&vDpG<FVm
zPN&JL^_mLPJ<NYT>e&SHQuoa?)BMH`w<;Kw{Gf9;G~OP-n+0fyJ-?yA{rk=Q`{$=O
z!9-S(kVlLmsa?!$*v={<l@wx5n-W88hrCZqGy?UbA7q_v%VSBN&i~&%VlwG-7v)6=
zzWu@xGdqV=&;AC$!wSf=E8JE!)m}<ts}*Q6+QiD>CBo>V1%kc>Ey`4+*D5H#e7`>d
zjgWcc0v1<aa<%BuPn*>FraxpF?@z$(@J>-0k4sLT@{53)t(J>+`oKuQW_hnn{!3i=
z>DT`~LhnrBUsqG6wukZ0TaI`WVNGmq$64X2eDhcYzlpN}5EZ9EY@|PbT>SoV?FuMZ
zEMId9WDI}*o8PvKzpVlpXh2ed`f1hk4vf@tH)^Y&nSy^VA&EuVSw-djm)|sF@&^i2
z5~2?c9MZ!`ZD9E<Xi6{tg;i=RN_GZoszOH1>cY<t(|<|==x$7s$&!F6e?aVw%_&e@
z>w%HgQ<uMR)cQ}!lRdQGAoBV7xsyd`pit^V*{LeO4^=!HEP`wvcsTMzNPppSrliSA
z4D$cY5rPx(dJ=d*z~dN60CrarY_@SsKm!~QT9qzSPHpD4fiZs}cWlprN0j|<9udDk
zOz*ZZvp@WCk^^HZIq<M@tokz-KpBXGLNat~Zu>7FA<p!$o?n~pUHoM|-zRs3xrN<#
zSA`OQfHP*%fuj~lE>W(AYkl$Ohx%t$IGGxhK%LhLufYi5AHO46N)t?&oCbrKz>)7?
zS^%=pm$k1i|K;nq$Dv?er<<>)hg;P^di5`S;c6TRDS9OgrvX33g!0G2${E+D{ScHt
z$eNCtZAJ>WPyb4*rzZB?q|f3A{VzOj|13peyx1Sx;SUo4@Jj-W;wDB6Kx`JjE$Apf
zE}rif7z2%l3$g{?6}y+BKi$yZLXjf1GH6Ssd_tW_M?!&0APy;8`Tq*5M2x@{48yZt
z`5A%<!$(GBiq?SmO#S$c3QoksYR`}TSN4!N;xW}G?V<j(%Gy<taj1$6>L(CK<vg_F
zDj9*2!h!&5fcq+C#qa-DJ`2&Rw||?t_j7lrofR2}#RodjRX=cU%ii>PdY#_l3aOwi
z;8A7>y@V@7+!5yMStkE-JAZoqKZWGqlSxfPE9m-A9`4T<w~vB&ZhOuDC6WAjNBr$T
z3Ufm|k$r68vs<&+|H6@G16}h(Yw(qE_Z_R-{*b%?%~s#3{yl(7J=U#^A#=AYIGv9U
z@0qIEB~Mb$k;iudGC&eQ1<8N}CWG{4G7RNNyzD5ZzIP0~ynD%r5#QvmUGbKqIV7*|
zBT5X{b+5>xO~3%|z%U8lJvTJ^&W<^{v8yNl`xE)c1(rvhL(VCDsWgq%PK8qI$}<x~
zr_s6gsh$spr5aB0A7UhgdY+v=OooAaqJ2E~jj3@ks1eBg1m2|L=n25EGQM!-!5FNQ
zJ|(SxAwF-uD_hIcsfg<{gNjav+^BPTZbh3!Xpi`(hw_K)^S{1qH$W+W?w9xA`wlRW
z>2l0EqH?s$Of;p-AcH|bb`{`8w<hs?1m;eTfQf|LInTvr*~<bt4BzkckXP`PSc)ju
zRl>+d1rSIpfW#l1f4sj6tRuv-(=0JC1;P`4Bo$ve$TbadD%r(z)91diDPI08P+gG3
zsK=T7Ld>w6wnx#4&*kWiY;hK-9~bj%ylJt3=8F#b6}e)&*8jY;xHU0c*C&S63p9I*
z!+pUbw~g+?(dB<UieJ{T8J7QC7+>!S>wv00jAJPHBcpZ$^feeYy+Et_G8ibeT1mT$
zBcb(P`>fDF=K=vC!G%ymvl_oVC|+`a;+g}j0_?d0xJpUVKx#_L1dwDSz({gLkj@E8
zoIwdktSP4BMi#L9eJ{gpVn^6<J>1|wGGTzp7J=BnS1^V?PQ>r=QDQOJ6bfQHzR?oH
zbc%^p0^m*BAd*rSP`J~lHtM`Q*LgR$)b!DX%kpXbo-i>&h{Y0!M1JW%J?M5f6grK3
zGg$tXqgeKD*Et&>0+`7G@J>nUY6FmSPPYoT^j-TUa^Qg;1R|rz>o}pl`gt?|bFuKG
z`*F(h&V{mtE(m51bGt4@95yU@6|~)CH47F9AMHZS&FTY<EC*DwpoU{TxT}T{@f*+v
zx|GmJX!X!J-MYy1rU?ufV-JW;Lo(FQAVzl=>Qr>YKJJ0hxRc7ZOsUPyG+<9vtwN7R
zxXG0r&0pOVEQxBb)7{qEMBtY|bF>8TSc<|Q845jaPV}X&zM9R3<6cjSFc=Fz=mQ<?
zxVct2*wt)-nAgjF64(}%8ks%H<AfDSwaWFWo;^X3&j4@k)=e0?@}E|QFc~416|inz
z+rLz(2~f0&DEERT{lkdGH{6di5ws9;&9^~JDFN8R%|8eCf8H`I$Y>}-`>7P6IUi#6
zLR=g%yt6!%7i|sjaSgN;#EQtFQ{06aYKB6#WG0aZY|(`mK_sl86aDl%03reX4MLFj
zA~?jXKmy)=H?MMvBPPS;41%7Mm$RWrz83i;ni837+BG^gc^X*L2=-GHxpN4!93zYM
zxz5h0Dac5B0ORO^xZe#q=kp7-_AxMY+F`}ADhZ<*vEQLF<D4RVD?T)qVf6_^-B6J?
z5a(=?4_SX?sxy;y3`hfEr5o~A)14LnSHy>~q?Ty;s&(Zk@$GUHk+0KgA8ra6fh_sG
z>n~{o^Nta;M$LL&Xsab0w9!*n9A`7*-T4=i`4D72qFuky%p3kjGpD#+hBw7tjF9Am
z7(vWzZS^Ki0!ZfD-M9WpGOvM>GYRz~-k7DHe5SDQmQ)LXW5{>P3@}pn<cF??f{<m7
z?#INb`iu#H3rzJ02{X4-B9wdDiN5Z9r4KERPdm+XIzq}Kl|E99OX902w9CG)pPh46
zilV4h4ps|iwrngf!LSP2f6ScxZIv?M5UF|&`1*6Jf`#6%!0Why-5YWTsNgJ+x>V6X
zJ1yKVMC3n|K>oI}!kc(P-)0{nrhTdcy&CVsI0{fr&nh>kSEeoT(<24N$g>`v%#mUX
z^iwGzM4gB2{y)OrGOWw4Tlc;}PzgaAq?GQGPC>f6yBp~a1*Ac`yIZ=uyFo(YPq%c#
zo;<PMXRo#H{T>G&)I$a3y5=0?9KZ7%6ar^J9+0ky+b4CKyt{PcdjLU?tUy}}sd$%j
zOIm9SA#EX~=|Z0j=r4+PAa+A;d@hg^P0|=Eh3SVR>qVg<6#Hs!$g0WKA9RB^qRT$2
zDHUlpRO<AC+zM-e9`B|<k5Da_o9Baxfxq9z23so-M#d!r>&mtv;uDA^838$YU>7Nn
zq-{_PD;vPV8mS8Xp8L@~Jyw%Zyt8gJnchHGupUC+9@H9()!>w>%-gR1nT4xn-R^Vu
zP(d6imd@)uFNB3<gXZd8{pkX*XUV|k-T1!g)7eh8@4dY%i8z?TcrP;WXoCBK5QToq
z8MsW(OZV$V;WWVT1MLiGY>gQS2H<8M2K#|=iFtpuxYymR1rQE{q*KCZ5vamL71Iy4
z&=<M(|DxijOp0>c*q@_pp4~VR12>S6&!zgxo?t42s}I5WGe}Lp7*OID!sEVdI)#XH
z`i&Ais)D!M>E6qHa~C#?wP9Cg`vC*l`^UZQV|)=6R66k)V6?au&SibohOJe<K))}2
z+?MV_t5qNF`;tfBe73|)hzT5E@i^>%^q!J-LRvKHj=WC6CtuWboQYLVS%2l02D+vN
z`g8D)hxPUJ2DfC1j)D8_`L5SBkSdJ&!eNy6j(<B}1)1G}Qrl{N0#Y`;giyp#W8irG
z$NBK%Jc}})=~B!4G#)q2^{j)FX$6f$i?W7ZlWn4!p-ljk8f$yqU|^wxWhiPUZp}?<
z3UPFi2?OYxz$LK%?cPAWZyDsNMHSg@ss#Suwc>vqUEqh6EKs!VLt=qw4s;&N&3|0)
zb=ChLRZt}{RLk~nFq2xW2C0s&$C4|0Z(!?d%?TX9@aOVj1>BSKSJiBmzjU)N=pMj{
zwigob1(N^Iz!<Hu<g(=id<*CLlUgRVzjVMdLX*M8?9G;1obBN61MQo!Q}jEcY%`EB
zl=<X=6gJi3?hG=>kFOn9Ih<aTB(iY~dd8{taH!?N1;=aFhs*DXJ&<pvr6_v8PM`_a
zyb>XLy-mU$j5$aljm(pnfy@5o8Obk~u#WgQlTQ*>5$LxZ)GaE#hJ&B)akawN{!zv`
zosZ54mWCrgz-t@~u0~S8H@4&b3jO8|%iQ@NKfb%+oe93{wb7{pxzBgGD6}Q=%`|f<
zz)JGmqHY1Yu$MwcVUb?NL_8dIykOasd}0~|T^;={UM#Jr!alCAH((gO(MsW>;@)xI
z{U)LnL97+6+bsA+AMCR*&A)Wso$N7i{e`yX@fPLqpA`N~9-#13hu?kYfTPbfCHOai
zPxAjm;9HywV5B9vf1ovBv9xS#%wEs=)e3ZFB0(Fv(uG38kCpXoU^GI<zD2R`UfGC#
zsHg(&$ddZ~-TYS~f?Qrl*eEx1K_T`cuuT>OalE7_C#PaR-M13)xfz!}$k1H1V)PE&
zDi1`FhWZ78$QCA0Ce?mpQxT4(ij@MO+`%q*pHNV?CwE+bHQ!J!|6<$%XmefUk0U>{
z!DPT*%##2s<OPgTkU$e~u*|C`+PnUiyI{6i?gXq#)|)6Jn!+tCTJ?h{LA)N(xc2jB
zJqzO+aC=K=@sDP)r>JqTsbz9tmN){6qGpq2Q}+>&MGXm32wAjkaycP7TaVxq3VqV`
z`hPsXOy7K}RQbSMwT*q`<FjEZ?N!$U3{=FVxwhgyw|djGaVVv&I{El*@To<Z!amfl
zqx$jqOUu0}0IA$xl*Ggo*C1`qEY-6rPxTrm?i${h10>X}2vSsBR%yRtHYiE<Hysw<
zXBcUo3&p30eXwPaN}!npktyyy@w?}AE&Et--?4TDAYZ}ldg^eDV7=^-fS+>DgpXc>
z8=)3%n<{P?drmPDD~;9*1+`s+g8LF+PE2TW(yw?g7&L_4$J(XbU?frbQ|$&Rg*U&C
z9PT|>jQE;+DXYg~P%8^olQ*EXoKb%!2Zs>6r!!kavl>eL)IxF&HpgJ~H%QbD)Vts4
zJzP-HC6%T>MB3itrv{v*NM(R4zV-!3aIArsf?Ja2Ybl-RQpyVO^E2Q2j%&?O-uCEb
zD#Fs5vz!7<3tAo%cjrePQ+3CltuA7nUv<3kEdT<(&68uUiV{q~?#8e4PtO9cOLfNi
z_-Ew##wA-|9^3-NceNgvyj?C%G@LbnKfA6t+oKqO8EweY&$C+Ibi`R@yG}-p{w0yr
zI8s2#KvTNuuW+2R5Fk=lvAoK^`}9x_1oax`^9d2chLW@l>WhDv6|#F+F1DZZTPv*<
z8yzUA1!Xlh3{%D83eLsK-8Ujd4zPNk{lD*6ElopknG6g1sO5H>OegfKbUUCeI105}
z+>}4%3PQNer>|Ha_GT;&<aA<WxKHYVm-EbUx?sYIQDz+kL{A-Fw1VU60Q&~K@s_Qt
zgj&e7J0KvgYyU~`&VK_!+6u1hum-SkW=Q*EqWHmcRrsG)1x(D;0;)8Bvbqc^#{7DT
z4Wf?V;TPfwr1rs;>`q`$Ya^KuUUU=IB&YJ-72#@4(+~XO+ixoW_9)E#e;x(zYhQtX
zX94`nuK=&+K%e5YVCKXvaY8G%0t{UH+i%>Kkns~M@BkYEfP;V*>%n}BY{K{d!>C}6
z5Px0kaf4=A3%G+mZzPHg+04#b<h?#nq(cw_NZ=h@!N}7LY_I9Az%SvFgHf8)pja^|
z|9r6rr;NQZxiO~GPX9R$IlI*Hx!razt38b(=e3V17Y<9hJbP}(=c`PbvJT|NdeeAp
z{$TDz)2vfwX}8>7X5UE&6lE04Wj9*+f)$z9eSAcIKDSV6jpvlh5KsIwP%po%TKjuu
z?FSunQd1j<m$$-6T6eafhi|&wE4HfNTJ>E6s(96!dhrD3kCa)FBM{_eLswOuuDpiI
zVD|L^<W!BDg-+ccf>qp>Lc$%QBUga+7$UReAxfYdF8ANLJ8Bv;edO6Wm+t@|wHelv
z?;5{1&|eQFV2lQ1;9e#J&2rxL1guA%LY@=;ilyz6=}k8V9&by&Q}64wfGsd_k7iRN
zhl=7wWe~EFOt2KD2LKBpoAiB*GSqbB-g|<-Y4IBTeU|HZ0gvQ4cLyY^(A~IYsJZXL
zs0;%fFA(W6mjjd^pDV14gzPO=mi!`TK40l$a}{9EeMuR%oQq^%d5z9<j2%aZop-Zn
zlIGfLO_zHWn@i{d%B8U6ZN+3?qavN8kWjXOTi{5C3AuV$*x3Vb6U!vSj+WZCV*Zw$
z(st(O0L`DC0owL8kfJM{uC1Uk&V3p{qYx$w&z6HOQ-jaDTIAs##4#Vb&(KK=bDq<c
zr)*^d6>l%=pjWfdtUR3&*QHXj9sQt55Nd#fa^2yC1>3>a0obY2eY&}jxq(Sdj)&QZ
zKL<z(PI&!E1E5O6Z~T~oY5qLmuUbzLBz>;Cjm#wn2BS25qUs^V<-$pQ1QH(CqSzoB
z{)qwX*=+V)6-1CE@d`##=l~p1?#dRHj>iBzt7bbmuFUD04w#OiPXFmB*`?L~4ao|l
zxv39W-WX6AR*>P@>;qoH0cKNKz{xSRe|J1^3AcsLtG*nf=k_NE3M9F-lg7*e%fYQ>
zJZviu$H0?f2v{|3tkkV_P{M`rCbN;lbz#yZfB+H+O&Z0H#@^c~uA_P)FCNfF1T~Oh
zX-&_F)_<r2noHoNnWR)2_kb4%g?5}dgcjR8<$TxPdDw+(JEbaihST$gy;yzWL{>)>
zjHwubBfIJZ6%RJuS-si8y3_Au6xV)Q^?CEd!*4v&4ID<uN10D-)9?v~L1IP5VdbV+
z$J(-u)!|B%k(-LOFp_R$0lyKLo_2bxdPflG5i4%aMGkuQo-scI5&d!yln`=lcZKFo
z0GIw9NeUg2$^+QvXT=xauxZ*v4>%YJzfNGzlV>Wk%r(0wM#=W-2JZV#g@kfe(AHj*
zm<`;@5u9DMIkTvfECUnh1K3_Pau+GrsZcxzb^`C>kQ&u5rF)Y->c+6kWU=JutTfmM
zB(hpHN>v#S=({667RqJkIX@t|W)%t<cYVLOe3gp1J`;B~x__Xil!SJYx|l73tkX=Q
zw+YsfhkCsqFi-Pp-g{L*lO)zcc!*A4=k>rzjX515T=AoZ;^EKKL&kpSf18;6$L#0_
z3XI{J_F3-4s1+V2KHb+Sd(aA0Xj_RoE?U*iyINvxhbLvnj^_hDO4)L~({Wlo2D3bs
zoeG<raR#`D47Rg?@_-pCK3ncO{fxMb4vCOYb031ROGAK+Ibj}F^QU1Rb}eK#XwZ7h
zm1@jcYv$cpu+<T2g>%gryHnaO{1GQ2@gxxyFARh`kr&^Idigi6y%@~-=xHQtR6KiM
zLx!x_F_guNY+{a<SG4(8N#G4HX>1U|A+(jg*yWKMsoQ&yZE;S)+}<K4jhVzNba!TL
zr19qiiG~BCnc{qJX@3H<c+yBd$BJow!{lXJ4Fz2HIZ~;;c}U9b;leg#X(D&xCUQ$N
zwwE!6Zvl2lT*5tjXlU>(W`xc}03jFJUfS0cjEIkzw+e#nohQEC=%bRMWgrCqp~U$#
zPa{rW3l=?OBq$G{gH5XIfGy3RXIEQ^d`q+-mB8>pxH*Rzb%Ff~<l)>wNU`$PyO5F3
zVPI^2F=BbhzMASjvzU+w5wruv36dwy6F_##ud=)>noKbt{wf6};0X0ZT1?V}v=P;l
z82L<17B5yhFbwc4{H6oO7e~O2{c`_-TqTeMT91ZROZ(~0OnVS7;d6E?0@noyJ(E&(
z3|jT+BvM2wL#@ubWq7P1*eNo2KF#p%b+B>~73VEG*Ug5YUUZriAQ6zd1>FeU4{UXs
zH}sv3mds#z03UDUd)|XhrW^cEFOCz5bIeb1X+Fho5Yl)NJ}*P1LA65j@r+isQR7C_
zCyEIbVA3Hn9IX5ta5;;f+j{TFCw3kE@LMl?dkn~0RtiSv5`5#;Z_5a=wHi~7d&t!p
zC(lZyl53Um(0}u(S=t=|XLyyi8rhV{7>t@z6b3og_T<ZmckYB<*Xe=VKu(}7Wm>wU
zG{m?ZHIMdlkw&EGh?ewtsWq0y<}w>Az93}HLk;Yg*rByvLC4=9WISVl%GrF_8MHX&
zhmmCLfBk<qfd3(uPKtgyi%F7*k4_k9SUt+tTT3!=LfEaG-M|bJ0Xy1g$1U)8hChxm
zgZTP7+e*tE4rg+=$?r<Qo_&61)}ehiuP!qlp8RZ%w0+(fQ4?4VRG+!(dXW+QHc%!#
zcHTYfQ{aj;VD_e#P@qz=D2&&%3wopAIcmnJ;n?71n&t#VaVNBf=T5p-#Qs3tKDvfP
zO?h$~^cJj1^va2L>b_r^0vlZoR7C7Vg5px%Q<4&q#k0~XCr4Slvi%$R9wa-OBK-lE
zQ{C(HBhz18YXc_}OPOeUJNT0sQ(K~TR4T`YI-nt)m5-7*h8X_R2m3gkTBnUgHwi~<
z_q5b^rKcZ(;(JSK>c#Aaq%<4C96t}-P=OqZICfv`3#b&%+NGPBLFg8>@g&#JB=;7u
zTK$0R!Oi=!`E2xzmgok<<cG+Cb=!jz*Q=5n&0Q1Juo{wgn6_CJ2b0U^4qQVplKj*p
zOfxm0<gR}x0E!JE*6{YL?=B9uiq9^SFek~WH}B;_U$&O~+(APp@I&X9#Y6>PWOf@n
z`tMKx<lI5$fpXg)J^|395j&Qb&0Y^Aj6;5KZ2@_aqSBbE%+^aox0!ICp?w9i)T;FT
zvFSnxmKH8#)|o$i=%6_%x#*7ybH6rQ6GP5oARpqIpaY8DZJwl<TmP$l6)wl8B0?a#
z)k4$N{lt=tS9)AMBd&joV;SK@8#8rLpi*9jkq)~))3+M0$si4l=t(&wCV1Y9TaFvn
z_S^`ZlVTooQnjG<n=vZtFzHF(kcz_DH)5p}%MpuV9CkW9o7_xFUJgZU&#8`!NUw9G
zC4+_E7z~u!T%W$fB>>eClfKEh)L0EF8dX&H44CtJq>{CW9OyYtqAa4F<}D|4Dy}ry
zJJ>7=+2IaQX&pBiLBdGr&rZcQFP>zrxF1VI&D8X{B5If#4R%I?r@(RXKo6w=!FEKL
zXzbfO*Wv{5|330#By1@Fpl4o+4P%k%PJVM62lk?|O7@d(crY5t>Y(_4^p%rBt9Qq3
zY`6VppDEOM-?5m-Xn8on)&YNeax%@<NXz3GopsX}{2H_5(|%gb`tfE^Th5mAEm%t1
z-=Q*!Y3AIRk%vY(lGZWMcZ>nk-PZP9&*FsmSpjGbYt5`1HZj3c@`~j08=S{eP1_!f
zS{}|BNMmxyOvBbZOF5Tr`(LRGSTB|!O{2$+`*hyfqPfxagAHI7rePrmY=sGLCJ_)(
z>33oODzz02-Avi4!HC0*mq$T^<W`T9{@nyQiag^gn+17yc|X?H4>X>n>6CAarJ{iE
zUK}^;D)s52-20}2Y7yuBhmL*j0ygCWWf>R=IJL^Z3$JcHE`F0~-MCAZeI?^d#~#r5
zJR#yxY_U1qlAQ?$9?M&3ve=1wTLX<4W*Fc=tkWsk3S%L^1q$OYj#-A!SY8msKcYGr
zmkn2cdMGWWS(~caO0`CrprXlcEoO?0$S+74e*7hnm1UZbKUBRQZ-1h_;e5h57#u7a
z*^u1PV<y5JBz!LS8~9*{Kg@D!B8R8055}IrA}`pEG`Ju`=QBC%E>)=46wMX~Z0AWO
zYkmQX9gAj^+euiAL2n5Xn{f3f{a~3bfAu4SuQnXmb^$H55-#Vz&rb^#-Hkg6l0CXz
z6&!{Syb4i1n)G5Bis?rEiLd9!jDQ4r%1<XEO6COAr@b20vX?^M4s*8ztbM4DSkO9L
zBr~g_)HY~jYK@9oFVhM?dB&JL-rsD2+@~;<1v7rdEEbO3pzWwC>3n)Jwf#wCc%HdV
z&1UxxAW)?wZRaQWYOnd#CBwE!KG~H4{C^bJHdNXC6|rOb!=a6L6+h~E&c!RKpTonK
zeRl*J75cdt3}XES6~!mngdc7zNWaQ}m%|e(dUEGZP8yP5-8fU+<?RC|;Ny2*quUX3
zv0xUF<zEAQFW;Au-&vTKw_1?CpY3!W-|f>+khKBMG3}?&2cEZ*5rltJxd2{B`0cny
z@nXN^?2nY_eo^}iyN)kdgehY&31apqNzu+n0Pp>HE66nxF*rb^0Pf4l7LZ;rO9V`m
z*A`YiJw05kW>L)Bbo}zwQyvE?9QFrEMYkk!v5Wl`AP$GMVe1Q_>qg{GiPM8Vu#F1u
zb1k$}RV_sdN(RO=g>Y~FBRc7SOt$g%VGM;t<JLAwCZ7i=@}YvqMPO}S)gxEh^PcQs
z_lqM>WsJRU2{*P!P#G|zN|^Z;BG5OFPnW1o#SusTU=5tyk}R}!D_6#q5(<fDes!=V
z8%t)1q=cCa8OfxINZATyF)6O)A}2-yy{3KsJS1Ui0rw3pINp;;<|GbBp@W>*qib;e
zcl|vRTZ%w!6Dh_RB)Y*oQI6FRZJ!hq-#|x>7#Ob%AxnHQWo=4Xvxi<z)A=#Yr>TOe
zbt79%zaBPs2NPhYeJ}C36RIh4{BsYsmIUS^7jo&p9zdq!bluOF;OtQ~cO*nkP!)1!
zJuhZNfpG%eem6JXO`w{rRY1*ABIa48S&sjs@(+DZ#{o34p5ELRy5e6Pj{K*?l-kxP
z&+ji<2$DF7@35L@Gh>aS+g&gVQF{c*-Ajkp;oPME__YMBID6kSP9#lDUuCs6ooCZd
zd{fTq7c-zQwZ1ya>ABR!(VNRPo#^)WP-6<+2Bp**T(P)_YNVanI;}_k`8;HB?Vs^b
z|J#-Qo&^RlbI0WvF#h7!@#3+$Qpnk<tesPhUuW@*f_4G5Q;o3q%u(EcS%E(0K&(!(
zOaqJfO$`O%RyExRl}3l%pF0T*<iYZS04M|#fYlNqv$AGj3sg?XaW$$d-UEXvNErw4
z%s#=<e$0Nc9+dEw-iX<3@NXK2Pef2^T5TYN>mZ2LY7b<Rrd~<Hf!e_QGZ|Z7!OaZY
zvI{Yp#ra(mlix(S4j<p|XD}TknHjx&^Um;%_YRM14J9pf-YQ<X&e!cib(V?#pic0}
zG=`OZvo8>*@8V8Uh&2{^h}DC~Q5+Y!jXl`1Q+Ln4F-r6idlN~DuSRVf_xYI+I0xTc
z93c(+*AmWPICzKf!i`e>g(!W<F<5UhOKKrgxsd&}yyq)eH97K}YPaG~QzF?J&ii#R
z7R@;yp;!(1^)^I}$@XMIgmzSPv+z~u@OV#Er()(e6Qpi?H`)B@+o;K*B#=2*8#QOj
zZ+W!jI!pMF4`=|dXODWR_d@lqmulF%8BcF<?!@2pHT(#!|J@V0M5G0lr65j!Z2x`7
z39?Pz?9woLIVH+_fP@Sy=&%Y9T$5lwcDO;0t^I``E1P~5crO>3N0QSaSY%axCn*|V
z5JRw3uCjH(E2Jj|`JQW1(o4(ymeJ8XN+|<~k6#l+ZGivx-pBQ<^ElpR1!0h)SYp&a
zQEa#f`0LP}rdi&gL1EBqcghglcK|z%=2U~d33Vm7GjeM>bGAcLO0Zr!LtP;B!;AsP
zSaZ)+=d!b9WPL6cjcR{y4;n)6i0I$bL|+j}WJ}dqnmQ7K5rYGtGacq80X?u%E`_{V
zZJ!S#KKceI2i!Ls(N12<xS3|3g*`W_>Hf^9=p;VFZKQzzJ`xnj0~bo;)Oa@LV2u-w
z%{sM_{JXlJWoN{(h0M>LJ~Y{(<z5PAO_gs5CS#!#K;<j<dxQT6qW53t8_wrXXK8gy
zb|JKq$BKOSf4ZLY#3-pWj~9^fIj2|r%uXOZTcG(u9-&@m88v(Hkl{j!U3R0aW;EH<
zGHIVPTX^tO>P#su`SXm&o)p{f7|RLq^(|SYy!z(H+kIt&40fFIaS{6pCQh)loeyO9
zd9NHS)KJgcMF<;8Ti9Sn(_k<Ryz_OUnA&I{+ji{eN)aSOr9YfUv!?9a<NzBkB*BGx
zSV%VtKuFIDA7~bz^9h8N#t*-BXUdE!@BM~&LGmQeGW_u6@e1KoL9~qZR)ADGZ`W0R
zH}O~BML8J(A7K4qB}<;ps<b1j12{&43)U))Z-YI4&F2-zxreEjET-e*q1Y#C3=3C7
zFli~hyHRb!!viGgiv#6gj_2g@oyQOeR+9FUV&wBe)!=QNii?hXsD%A~A8C{c{&F%h
z;j7Y;+<`*m4iFPGrj4r&#!v2{k0A2~ctxk6vsyQ*hcfmMYU!)?Vy_Lm15qxs=@(zV
zLG2-Xwu<)oRq+Dsy4G-!r1c%W9zsZmJ3k+y{5qIUXYa$gJMFuco@DG7Z@Y8Pl_b(2
zk#bU&b!p1J$HG7M<AzUXBBk_p!gimqa@>Z4gUf_|=5ZECDtj@laKz?R*6Wo^7nUJ6
z*muNYK}PClrVSu-e9@i9bnj!MbzPNd7E9rd>gd0i<RAbBQX5cB+gJq07VDp4aF4#U
zR%PxfNnw2_xJx2Sm08JAVdkk&BH$X$=AA{l4!d%1$x5plWjWw4j?Q-1A{O`g6%twU
zk!qNw<ML+SD5cf#<p}Pu$>&#j@SiV)X(gkbwv#GjQ6-n#N+h1nCvc6IyLA+lkb)w3
zzZ%c!=mp2|@m4~*0*325Y!ZC$^tY*q&<K84?U~fFZoZplb+5B#n_7Ng)`~sj7VT6i
zS9)cCD>Ua4&DM+PzA9|5s{_Fkkq^FZbt_#+mY!QeiPqgxwK1u<(g}qd8}!j99ZD#^
z<uOS9Gn9Xvz=7s9Jh&yx_Rksq`!3Mg{a&0d)nLnO2Ff81nIsgQCay3ntmJ}j5!i9D
z1@eUIaN}XOMQY-*VGqENbZQCYZaIyRyG_-)B=eZjDedP_s#T5Sd3+(@)lMwZAfoQE
zIOM0Rhf=n~^_uS%Igyd=&M~jqC57Z>yFeBE2bBIFnDzTPG}CA71K>A@OIgb*-XP0J
zfOaC_>$t}T=xHsUQJrif#Eoz+{W(62!pe0VbU11aqk-!%7?C9MFt!z(IJSnLt9a(z
znUTvT&h`cT6S1L&rUa_9MRfJ6(2F)IY0R(-h{Yi6N*OygrS^TprIDc~cncj?subIE
zdPOsUr0lIa#Da<{mXP`N1NlBDDyEo24C=NZI$e2{18S-YTM!ILwv5mw6KO}6qO=%e
zdHE7?$A$nHJOjUrzMcd)5+BVlB$yBflE`iw)c^^mwj2fr*kM>p5F=(B_<c|onPNdv
zX#VU&dL8B@niKlbm_eEvq>~7ZAhKt=juVromb5lfRVXV0Xy$X=m%r9KN}MVVZ}-dV
z^xUr5p%jFH9j~)J$WNzI73dW8p9&ZOQIt<F5L^pgZ8<M*57Ie)(YJv%?>Fd@=uupO
zcH0;zR2SHf$T<PY@*}(@ay_5m-%4{o3ZuM9bAKH3COAJ_q%X@YObFHX=?!tRn<iR)
z_FqLi_XKaY`j~;5wf42=8Yam4yY2E5o47bXUKv~RIHOg5y8#Jy`BnnvJq-%SIGl^%
z%!yvEDB?_Mm)7Tf5Dlsw2R->a;(dv|a?B8rY>GO;%yT@(PHd|p@!%6Q_v#<MVeYC>
zdZ7)QmDZM)TKH)Jn{jhF@IIr2y-5M{mqKBE+KYLPhqv}wwW|?CSmoP+Xb@7Sq4f(_
z?}DErn-di-C*8J~h!Vv*Tt0j5$_C}qsSC!-%{M4QV%P^>KY@*qohTgbA7e#Pk_@b*
zCBDns)SLbCzBHdq`D~=TiIt=CwvS7{C={zV7%6p&yytI(JAH{88gxRL5L%@l{ZFIa
zwQ<yE^ZbYOVI`Ms);YCCnH}la7tv|7r`reukO`O;Rmwk7_sKAxi9G6F9wV&?3PJ}6
zkOn8dNYnM4yOk0#_xj##B9vOTR?4YkUNmcAj^x(XCQq!}=(Jj#$G=~t$@pm7)0~Jy
zr%R<-T~Dc#`<>%pq=F_rzA=pV{(J6ZG=^hdUJz-qGPBj)?|0Fg<6bshK2jRPwHOw|
z>BOxcn^^rK)~HHlSYd-nf@ysHH|RAf7U2?#QYQxSyyf56k0(cn*7#7Sj=eackgpAW
zcrv~lWZ_p#+~QLo^NmibyXX$Fvf>LrJE}M=e9NH3QCLx^Nj~tc-Z%3Nb!D<o;WQk^
zgIAeG>uad!Ce?q28o%#DqX1|g{W6@jC>Hv;pT9*a+4E|ru4a%Eb(wvU4CvOR=cP%e
zS_);r6SP%1MECLOX3TpS7+xL@z!ue@CgQ?$3Rr@Xp5ix2)N>Q1_POtip99>|CGCgj
z2RKlo7yMi(xwLQ=p#N9=?8g+GDG+!?2r7<!ceG|e2IR;+$U&Bnt2-yyY5)4-usNUU
znbcWwSq~eq?#*$X2%&52k0bPmzY@i0be4{YITAhT04=p|@tZ>VeZ}u3pE(fZP<^yO
z5LF%k)@CV!wo;7Lie%Dx8HM^jo}(<ir6yD0d@(t-?4X=_bf8A3Ysd3rQcA!VcvNo5
zKn`fqCOuuf!vOwJ4CT7W(4f4XH2ne>lmZB@h>{T3#6<bAThmA2K7Hg+r{5z^3?-S&
zTKW*b4+h}T2VD#$^NmLfJ*9w}QqDR5x5qr#?zw8EwHNyWP9jENFsi+H^~C-)N>Kb6
zy$B_E@Wp87IOzqOXieSDcdV<<|C_s9J=#8a8mkldsWE95n$IVPgsmpC5*M!fiC>I>
z>8{~ynb!VAOIRJnY_ANT-G=B&I?BT-f<!MdO3*Da0t2v$U%I4PKZnoR7w`ez&Rp<_
z!~T&OApg~RY|Fo<cC@GBL1f9MB-jAb%-h>Kj3)Q#Wr_!ItqTia(H@vFp8S`uJo`6F
zZg8n4hunt}e?Dh?1@#Lsj=0ytb8G=SlwXWhF0pe-b2;uAV$@MdczE42p5#t}$L6L-
zqTQ8*9BSNtjK`v{6GZEc0G<$Xc>Ze{D_pDuhZc!TJ~3EkOjXJ2fx=d&40Y)_YiYK6
z1HjGbhhfJmBfx0<>tw0%!fdv3{#Qkt`h+f+mJ=UsKf{n%g7d?2-qr6l8y#?twci<>
zuM6nosL9zM0TRMV+kF_xfIf@=Ycz;nOalLfgLjPAEs;Ai(Dl!=m4|k*>ZrHXB%77H
z@Alp0A(_2l$-h<sb=SC)kd3|zFuB_G*5@fmbunWC0r^BM4VihoH0AJ&SCHrhO$-Zz
zb2(ti`e@WDNqCeZv49ltsf;A!$^IKX{BGTJ#nveXh2cBxFUe2tUSqXyj2DvxtETs{
zNLpkaX>2Kv)WoSY_xhhAFu6WVOn%{J?VBqENr306ZB{qtI;z!16P1CMH_gXK;bVvl
zLW86aPY0+Q1Mzb)1s++Hwqhn#M!WD;dl9>IRFGeLwcZJKZ}t;jG+iZ)mA7ya(N#%T
zW{sYo=URt20ia;caHvtqc(K>9w!i1&N3Z5|*PgJgVQMs~48G+S-}!nsSGT0}tY$Si
zli+ukDp}A%A>A!)%#Wnkg<i@QAD@Z|htIEsyU}?(uU~_1QED%-($S(fXJ8i!=Y;#m
z>nhub?x3A=n}(I(E~aD&X%~Y2N%=_BTn}`s$JyUck7qCb%eL~P5XKs8M$~9!9R{ky
zScx}?mo>h>KAA0t-2|C>)3=0fJDKRm+(k9nAfa|~>^X|f9&FhD#iU+sss{=g4{MNf
zDQqDCxBM~~XS2E^hDO{hQq#Uty;wX*!JS2?#PK^=?6Y{IMQbV21Rl7#>2jTwvaptG
z{raAMmykabM!8#fYx3r%k(hs@+=!56gzbS0rvuzGm%GEd5umzzZG>vW!v&L!Pc&uO
zF->Q3j1#MgfsmD?8IPR@XEmBh_dLC`AMkTr8+O4FCX@qYqMPZ}qnY28vTJueojs+w
zPXvKWpCOrseY@DXAXOpBlsvA(xhHE~!7feytBUwSa@1|Oa?(BJ;jamES+~8345uT}
z7wT+L+C=hCEEDCpWcB+=)By&wZ&gA3F-Fw@QBajQs^tK1)Q&vQZxF>Rbd<wLP@@ur
z5Lf|8Se>p5^$y|T4*7M>Ba8bbo{ZG|FS0rPaNf#Q#}!Xct6$IK2f{LtkZA!PIuNc7
z{PkVmTZ~G7!gSSCt$;V@Xy*6IRxGq~x+%GB`#+eblw~g=bWFQb@RNleMm4=j@&&W2
z4xtcKollOo^84c5#MF|FAOodo!ArB5eaJ4{iDsB4zo!AfZe#F14(0nHYE5Xu$Fc>r
zi0{r#i;_YAO_+FjIQG*(Y<(9P_wyeFvCaWOax;caYskswbq}-shG%a`Ckq44ztQQT
z=>Z0<$Q#fybz@b!F5>qfd4@_Sq<WM{6*N{nYud=}JRmV&uXv9AdDAV=;}tkCGWb1L
z-YNa`T!1=FbzXk+Qs{bnEZwH9dwnyV+f{t{;Rk-Nwjen)`RyYI(6{5_$*s=xPp>Nw
zFoz?4p-e^m;YPi9*(Y7?Sf{Jb^I0NxGUUWn5=6BhngAJ-aV$kQjrfKIlN3D~qXC5d
zFSu)5IggvMoj9-HA4Oc~;(0xnD}78*4@l49?GZ*Wwa28?v#hRXq(_+*f99T&T=|gr
zwh~MJ(BR`Q#h*{A%{b8>9+RmFs9#z{jeB0?Y|!p0^427do%TJ-B#+2tk@8KRRX47u
zgZCLaXGXy|Y14q*b&jl@QY*Vi>`(XW$}&F*B8DzBqJx#Tv4daDjFf*~w<?U@G^Imk
z+}#pj6?$*BU4RgRZ!w$9qG0UG7jc&GO(^1H54F;tUU!J~O%0EQVKOESV<Vxj^+1H!
zoaB|EH9Ery_iOEw(2H_)cJfaBMKi53rkm#Y{Qnv=;dw%b;gXka7Z}sBa?JrMayyL6
z#%+XU?$^k#>a+qOFDnR!LsFF^UA<2mn1n^I2E|vqih-B-@F<TiHC(-TJUl<?Dt@&P
zG$<WAvTdx<Q9fe(NdRO>0pPf*MfP(5??hRK9he9<O>kGF%uZLEWz6amfVe;GV%Y^4
z5D}`)TFUB%0G|M;Z<DSIk$pY(zah{*y}v^pPuUpH{CtSF@l@rE`A1H3k&w^U*%?(-
zz-RSHouYbNJ{z94{E>d<YR|e{SZl={L%gNBIz|9NNIj<>rjA4~sA=dattoMS{=m8t
zCF-qLz!;NB*_gAlan;8wXXJ=eK+(KU+qNtOBaR<rGHEm+_CKM*o2OIAd=bv@4uG9-
z3K#)$Tz0{;p7)A?LGx|=vDNb~%~JyMxwVF?Ln9Alm4<*pH&lfy*#>Xz;o##;yBm;;
zJm6k{_cmZ^o}Hox1k8|lZt@`sboTX~wN)cX;In`EM49#SFIhCduCHv8BXx6ejNA6!
zmP_RHNu^8so7J=7@%v5~Rhw)XO$n#QCnxm{4J@vme*(Vo1zO(A@@uG&LE5BA+XWK9
zXjN>6tW8Co%jqB?aQHlnRqVD#Um#MSg{2WqW!|RQ$aeAt@)CVE9%cHATtpGhHBr$m
zqLV*D0K~AyKoNOajCI|cKLJp|oF4|gp}Xcdxt@>BC-G1raFX*Kz5#+U8FOZ9oypTX
ztl}J)#b03FVe%zb&Jx5o?E5G`+%8yz<nEZ9ZiwwQbQ!FMoJ8=^#YYyriwN511H>Ft
z6ngnVzLA!qqTsVp`yP5Vz&Nir!&7E|Pg1A2+F&|vE}WE}K7s&DuW#Dv*x5ysN$-qo
zF-0OErtIn;S;(w-@9w>pLDS;^Hm`~4;d-l4^j_Q`JcrR_Kipju&t2{1YBVGh!k819
zQ(aVRc#Q$C4@V>DWGP4lu_(m{#s&sZsCIk04^5?pG8^nOY15U$dAHWrKZA6iXq{^A
z@4dsSO2BY(Jbr(}CaP4k#%>{0T||58F_l+U-a=;c`?fAL={d+8H}H2oJtlpHd~-$3
zMU~0Gc9Cs*+|ft-@cYf<WBQ_<)`05|U-b2}5P8hXQh}^e2%T41DGwQ|;m`m%1FAt&
zO7NdBY|Ah2KdO{BI6M;XfO8phVzoCY;5ZGEG7A@=Rv(j`EP^K%;xDak;o&*G)$t1I
z?O$Kd{QnXGWrWzhZ<_zWc5%bCUr|7st4qjU`k3@WZA&+Ok7}Udx~_~;u2J>bL$0`8
zm4*t+Kv0+vrc_XTNzY2rSKqtA%1u|;>f5sXg0i)|SLAtCD<ZF2wLyf}clotl2Q{Q8
zl+vf$&o}092<aJL)S6pcks!HoK3oz;V+UN4cf1<L<8DhvSn}!A#)H+`AIWjx5)k2?
zyYMxU8`qM9KSP5r^B*4!VxLf`PFh?_u|?GQV_*fF$CD`6O{G*cZT*KKfzr#%%ct|w
z*4AZ!f+qYzeYqZSTab2-w+qO+_%T7?HK)azUN_<LKu+ip0AaK>ZZa(=onOS=!|J#v
ze6U2oJD(pI`1%&;d7G-LF+F2CWsQ4OH}8}8Pwe3iUmOBI(~uYfUKpSn_)pU~>7jcC
ziote;K%oV)qTgl_zGyNj?3r6&$Kin3D^QI_MMGV4AS1$j`s;5#GA!P%?i>OSLMvi_
zJ2B*@505fUNGvaOd+5wVw&xkkN&;JUDkZ=%sB|1r6!b1&JH&39xaYaDc14cf_B+!T
z1;jh+b8QT`b0?0g*cUPs{5&q<bn!Ma8jTKxZpbW5O!9O@J@ywI{m?6)H}5KGUh1#A
zClB&W1F{xPBz^lX-=i&Ndw~fnO=A?{^U3`eBWw1RkIJDDUytcOI%}5%Z!?_<sB#Cy
z9rM}CzRpdP@0+9@L*BZZ;En^JPuz3DDn$1!&7}FE3+-VO@t|7J4%`JdTx&75jGxH~
z3T^=Pl(fE$b?A$ih#6@-j-7vLONA<Z*$P$BRFH;l<zG=GL9n-~7IBl4vvp^lqFs26
zgoH_cTzskuf==HPw0e+u@)q7?iW(Wgrh<TDDk`dlLzkP*_Q(XVR<K(rN3w_mH-tZF
zFEo4f4{RVk>lSY@o+kwbg{rpTwf<bxSy<Q3#oOZZ3Rz!&jW_~#jfmnxgRPJc5kdac
zB~+XA>AhJP_7^wz8)saUltJ+D@WU8f#k<^Q34})t4Gr*->YTRI)DnF*1MSy5>tod3
z4JW>Ry;f%%o1_xF(Nd%&cyINau_RfCjOuAZiU0#gp!WUg$1442%$z^IqrCzs(Qj(r
zSAY}2%XCm@)#EYYE`=)Hgo{gKu)p6D!yWVC58>OMo?*6$Pa{jynNF7`5l`69y)qu4
z`1Z=|?;pQ^|Ni=ee5=qgX}UeoXR|GRdn7?Hx{5*o&Dpib<`}m(60KYZ+oEnZG}v-?
zy2i`*GvMoA0A+b9efg2B-JAXt*`pS~&f|c%r15;j^}A|n5<+ZBI7t1ysdp=g^uGKj
z`!4yhs@Tlt?TP@bSs%rn-^nrCRXYWI;Ed1{_sQHG(>H}r2cqzMT;VA#zJ)Y=(NT5f
z87T_iBNgh=uG-Vkmu#S2{RE>+TRz4bk}GJR@{7-(HTAQg_uYvglZU@min0Bc;wfO*
z5}akpS>uX>VU(7WAjbAXX8JEG`r*8F+_>Osg;Vy0yEX}4v=7bxK82M9eqIeiSZgzi
zgqmbdqs%PS@`6%!=MM4EdBl7tC%d$cL)KK{BR}B0JPl0m*PX?l{#+IBj9+~(4%oNA
zaiiTWCm~LjeyY*3%9sm<Go&ZtOr3WR?CgtppPnE($d@P?(0UhZd2mQ^REe{JgG1)0
zLRo!0bzIn3qB(0Nk#4?i^@Xlp4`rT<6Q^2M{)Y%|>q7*8Qsw&2fjHLh+aHw@FUW>T
z$W>0#UPDdQ>a;0M&Cj>)adCPYrt`l$u6J{pD$yXw$tYOf*xHl;G=jQ%f=J($W#-5b
zUp~a6%bjfsYl(Qs_IJP6XUg|kSWVSWV@it3C0MalqK5%>X)&(%E8_@T@)51RyXR}3
z8-&ZzkUpt=NVBDS(>cC4_s?j$rfs!(?MTtP&FpvzMt*PW+FF^KGb9I(b+-vW^5Zz3
zwEIJug}VXgmo1AN9Fqq!+L2~7?=&m^@cVikN*^4UO&=%CGX;%F@ropWeAEm;V9Zb%
z`%;PFiIHn4JGzDz(;u0dBzIF)PoWPHJw3wUCqT(Gw6c)$u(pjUm@aJ!YfQU7Z`nY@
z6{^wy8o4>QV)Da=G^@C0I7xst{F3S6S8z@D#GJZ2&#JIn@R@qh^cH;?^%5Jdy>VP{
zMZxKxN~J+M*f+c6E`qXO*;llD?{icux!KagAFIE^N68l+H-`+g>CnV(ZcJp_s0=cf
zEve1<N*sBl^lEeJgg@<43(L1vV97q6eC(%Zjsn>PyW_Kt=X1#EgZEpH?q(M#IA1Am
z{%E`1l?^3R(+x>CY#{}Q5{lCVmQc{<Rj<D?+aE07Xjs&I5qZ*O+CR;KPE$rs;Ki?~
z93z7hB(hs4vy!nCitf9Y$@s97b`>{NEj1L6Ef@~zu17&DJl-i};=36qSU6c^+Fj=Z
zw`VwM#*)Fb_53#0O1g6G!CA=hOh+Rj6eh%B!_(17kHm|00z=Amd}-;Is$}=r3$;Md
zfi}7yY6hr$*fhbvf7^H>p0U7s<3%UJYd#oGzyl;8?>7F(NMe!6><C_}^fx$$rcT!%
z&H+|SLyk%@0A}(Hp-bK0sD-$5H%@pU&k4t;+Rah3E<^e>UKz`(*ga!HHO0xSWqo(#
zGHK``g}<rGi5Kp{7J$i}##6AEekvcL=V6k}G>}o%_w|wgZ*Qk6I2zTTKF?T7NI-|Z
zIDMPu)j`yD5}i)#5{0RVLYOC*wF*z9s{VC8=KZKJYR{??zrDzJHvCa)kGtB@)e?`v
zcN@xH%jhV!HWYHkUHSyL_>tw$o9;ae?gccg`d^h4dhKhU!JHTPe-R%0A}6I=wA)+U
zw9@hQxgNJ%nF3!-B?2#5kBq1&gZX+V0)339Szi~F2(SziN2_ybTe+w1E;9KX>Ekhq
zpfFTWfPJYnhUS(uF>-^p1R<2VTJeAJ{aDA?82x_YAG-21>-CZbh1keA4JEzjW9d6y
zodfo7QWB-5eKU&Q9w<g9h;8cT_kW73!rH#5dAikxu2k{3hmwy|J%APBlD7Uu&iQ*9
zke>{qxB~-GoV1ivabrcK)U>siXC*u@F&$XKV{%8>ww?XQwAU+62+@Lq#KNLSj>ZzR
zlNko0Woa;epWY0@A6FUC===TSgnrE|^@#@i1Hzw`<n49Gk4}Rgl@<03-_RK?<M`FB
zA==T<c|Hk|(-zG~FZta%U%qqS*U%?wvqt4*Tiv6^Bn~7H)_8R0!^qnwpAm{^`|c)H
zzmS29`5CrPCaYi~exjBXSwW~m+Xt89R{j*}*hF!;d`^~XXy`qbj@CH^+Y`YCE=%An
zZEJWD_2{y5NyjJ219rE1xuqo>VGbHa(-dtb`8@apOTQnQjAI21JyuSOQICU_XNWM8
z4`pezJ+BsQUHx7utY);zw;OJkpusf+ycDbGJ-*^0@0*I_P3C!z0593}NS7V-y@qAR
z7*>+N>npQe+{p+{xavH6OG!byXnVJjD*N;`L70swjL<m_i4c0k2!ScX>A;ya2GJ`n
zU*_dqzDI#<=29QCP7DM}3Z_|IO<sPz>OcNZ@^aR!uGcU7Z?&O5INTLW>?Tr+$OXNX
zuc)b&QELc!*v84#Pzws^fn;1(^Tv<m)DOK`c{N6miOy?{-7}mf?#+9KX^YOR&`Z=d
z@zfl9@LLnHlBe@Cg<<!nJ?D#_YPX50m#$k*s;^m2=I;iI*F0qAn-zlN>pd*WUum+n
zt~DF$Sn%XW%pHmAQ0oRan8H{5l(ZNo{i3Tw#StxK-O)HkphFCO+c!a9$16FLyE#2S
z_k!TKCL%a!?1f0t=PUHAj2-@Lf6*OOH}{E6MGG=>U-e8_q!5&2k97+>r!(dPjHQp^
z-=*6^Sv}5BO7D-UU%C#4m!|Uk{?pAhZ8B|0DrSAtY;3!+N@>5-)Dr=(x5@VMX3Ocj
zWRu_4!#;+q6~w^LWdM&d$M?Ayc<o>W-TWF&V|^Q1oU>eYKBl5Rh*0y)*IT<=!h(iL
z9VkeeLW;?wyye{kkrApH)2fR7MA?8q7{U;C#ZW9g;n89>Djr!6_)Q}X#JGTs;LHVX
zI&Tma<90T}ws|IJMR0d-`4v_YSOoLYMa|A!5t~sd%SX)zK})W8^OKvERrz5=-`pc_
zkLb<c6vN;c$}o8CaL&V(R=oTR48TO2SEoSZEIP=eYK4>5HR6hgQAldMTXE9trJb`2
z1_YTue!TUitAEofW4=eQ2ii+R2jW&j%RMi;h<M@;C-+*VCnt6{Ah}>j_k}pYRS!RW
zJwZf3sjXISN#Qx*_9D~M2?1Cj@dh!+Xnf&>%G2p`R@t2)l_#P0a*U8u+e|{uG0Y#j
zB*y?n!Pb_sp|Nq$lnW12G7&u{GV(*VPj!vW^m79RCGk2Gn^BXt*7Xc?Cg25h-fMOa
zj)8#nv@`;um>la)#wRGFJ!C$Gi^!K?0R;5>@dg-nXu_wLYlKO7dgmV1(>xaa6Td|W
zI77Tag_Se*EjMY<4nyp6U<-=|+pFtLzFAR4K`7UCw_8JH<;#a}wu;^>w!V74CIt}E
z$ChN`g|ae=59xs}c3;lo46tkdu&6)vLf3egc6H`0?1|f<prn<QSmn4B7M1*<k~j^D
z=ur0{e|3o?LfNEZQS4YSmX&jkf9sEQe|Le2qK&r!Qx}?g_olaVA{>24W}5yF3VTLG
z==T`+k{f?G^+_FmyQIm~3D#plriK8R!3w)>irUVp-HnaS4?XW_w7<NClni$2o0s#3
zz0}hanC#FZf{w1D!GE8HKEHsAa8fN5i@q_qBP6b_D%o7pmCkQ1VS%?PYT<+=Ezo=(
zddorAKl(OO8A;Ali}og{^`R@PU;N&}@)c`2sWTy8;sGvA*09_DeKlG@L6HC<Y(Ax)
zkeV&jjG{_pQ(fE6ih6K7)sVOlOg^+e6dHoAur_nVtk+4}K|ar|r3W5<g$=Dh%VOZ`
z0!tc1{mAhQf0aV5bk!REi^V-bDg5l<`0EG0s^gz;*J2`d(oOBq(;eqN@g<!vJ)H03
zN8md4=%)pZ?GRJM8gI%TO$eT-6+}l4s{S%KHm9&;GSB(&HNyEc<ca8N{8OTx`JwT`
z*-H5gq_l<L%L_5wM>297<oP&v)t}sC%LC%<;w(u8^NuXNY$ZmdCxi&~=EX%uT9`Vg
zH)D~dRPe!p5mO7Z-vvaF^1At0oo_FE`i3E-;RU^sL)Z6^*CI5SkR2g}G_Ul>tDTX-
z%o?+y?X};>j~UwD;s|Gy7uQhWyS^acb`d!jBqq?D;7k@)TXsEJP~Nn1CkKzt;oFyN
zyB8RU8B3GJ?k}fn7>ZZb6wxNfqX3sp*ZQ5V=?*8c2YQt4I7MQY966aPnE7Ar_s%3t
zS?j_VTLhz@VcEEpyLq)b-VZhClpO5rvYMJH_lG^5<k~q!lm?NgZOtt$lvLtaHBngX
zX6Cls+8kAs>$i2kop2lK>)-MnZv?Ct78ahWnc9zes44c)%gD$yj1$Liudnt@B~@;0
z7~<p(O5ca=uC0A|A{!XBUJ?2$X^+tL`ThBuj}f$MFg^&>DP?R`DG<Celk&8}NBZ;}
zUM>zb3KH@uiHHRD*uk2%UqwD-+_gYHGix%P-2Mx{`DaX3RaG<c-qse`aptL~qJsX1
z+zLP#58gD+&d#Evp%MFkrs*}OYwrS_exS~hj)w=g?azSqzKG&853sc@+ac5XCc$_#
zrSK@(PBo{SzLk6^#3D8(1{>Yt(B;j$-5mUf)1g#mpUb1T?3q7O?nre#y==!fMuXQc
zYMhU?71TsuJPR>Z0zPfizg&!Zdv(Z6az8V>Nu#aurNkV6<b4}X(nGD+`A;RGkrxV+
zuEHnCsxKVByBKHj^@sKw;{dNaS)L67;w{-F*ry+NciwJY@1djA3*h=DMgm6hmId6s
zJ^c5~E#8T%%jKBXWl@Oy-Y$@_yf^UPe>%$U3`Mg`C-;v~{bO?qA4Y6V&0tMqM6gV9
z7W1Tvp8GmEkLSAdZ3ep-$^c=x))?(%%pEVeJC@985Z*XYq4p~67H${3WA&!4`;Lg(
zyciWV<cxllVVZtX#a4_-qJ(`zgRPq>=xWWIdn}nT%=2n@_>owiVxnH#;%=(8OQ7(L
z3=J73-N@~#YogMR7;$gz^C)!Yk(&*rM9lHFy1><H--T=$t0&rvl@^mUb)$*J6$O_R
zy>nugst&!#ueGC|gpZOPJa?}dHDmeR*4>)<4!$+Wb9X;R;(Jee6Sf9v%`7#06h6Up
znewLG+*COi8X41h_>k#%CNJrno~OnnXJQo>`oH6#v2=q>W-?u@v=Lao)ts3yuzxAG
z)@9FkOe$icvPYUVOaYx&dpU3V8ow5o!-)B$xIzg|Pp)%vvpX_qp+_+0td)op1y{#+
zmhYBoGo6$6s<c~b6i((hagT!Za+*NO$3Xcf*3e}x2*HE<*gEIs5MgE6DIr3+n+~Ve
zJWErJqeBMelb0+8CcehWD^ib&rHto-W2t{xrd44vIE^Fdc7;LZ=-9)%aK2yO9CmFw
zIH)z)CuGc%vc04f4JDpH?~B8P2>lP=Cfu8l{dWinoOf>R2HRI>Eq7(P-G2C|vg}zC
zzUif;?jJrK@OTh$G`XXSfJ;ECVarLWImYe&eT!>f?y1Ly(_MHPRgZi##nf=}5gRJQ
zn-q2l4El=Kk^AQ5ur%Gxj}>f%4CGbwdf{yc!bzTY*_E17N~E-{7y5(Z95a?Y=>L@K
z{`z_(?c=>zx7DDptxa%J%u`xjtthN%E|m-m3rnlL7IUZ9p{xKYo(+X{{9BdmFPKJh
zC~X*!*&Cbc^abyb^23MBo`<UbT@VXPTh{jgl+e<ii=^WAZv}ZJHS1PIBUPy;p0!*%
zJC`?G905xZv1O^kjmfF0O{yIlA|J;$&@>cWwh%uLppgHxK!nf!>#Gx4`yAP0O1XAR
z<3QZa2a0$Df0~0O@}DMS1cjD1g^j6%Bxmrc_pUcU8QcLN5%-neDi|lgd|KuHz~Fi7
z&_Ki}Lt#F$k#`285Q0=y$sXb4{gfr#+&!~TX}f5rgt$3HoOXbxWz=L6ZmHBGQJE7c
zSmAxM&lK?#^3Jnxk6PL_(+hU@^xH=!HS+MHcrP=r?@J3@ySK7?sS=AL^eyz+DHH}y
zrzcryQ+-nj0oM7zf1bDIO#7aTT!gggcP;E2BBb!LPJzE_zkLssW!a3CA8$9iwBDxE
zAn>*ro{^~g3t>)*!yKDGWGeW~-t_ErY~D(Rns!<ygJy8b^HMFaM^57xyuHJ=Pjs<+
z)8%69yQ+#h1!DA?zIyh-sFn~qJC)l@&mxzg#VrbPu4Sz(Cp6Cq^cj;rwz7CCcKr?=
zgA>&Fwet~r&-OC4^)u%M>WBg>{M#cHKnlt?RF%Cln!g!*TfodEa*G!!=5d{)6ICct
z#k>%+@Jr2sJt~Pv8)AKZ|Lb%Lt5O6LU8-4teB5gPE&E=iembvflN+zyLI<tI%xh6;
zYXbCn8S+nxgMiQe94tY|=T!XFCFrAS;Q0Vr-NdDm8&r}y|GH$$rL<DBqMEia{R%Ta
zg!Bzz{omah|MS;N$;S_g7#QI(>1;{JkQP~thp}-uL#EW`d)L~Sn3yQo*y5vgwF3VV
z$#w-mMB{iM1NvK2Z)lKTkR%jFr(Ke+X(0!TzBdVT?H)9<L0eN)1Wbm0^OIh(1pg>~
zGd$tCdwZkG%gZg%BhMBh4uhmtm=_a@Z4%VU9LJ7}%Gr$sd=%B9WRS|VH#XMFNs1Ri
z88=g2I7#ayN1eq)sXX_?X7PQL{Nz}!m6}sppvNh8g-g~p?0O(^2Zgbf#b=<p%Z~r>
z0?MzL@z9f(+=6*?Y1w#HDO#kr<-tKgW3vFQGJRJ0kJPse4SU^$=Dn_~DZI@pJcD8?
zzlpM0tsXY1^%*DTtIa<c%SxVD2zFESs2;R$t!`wIq*iH!GdNub%*d;nA8!d9>2;v<
z*k^^FqVZT%{%VA`m0J|jKl<>MDm&*wLrKS0d~D-w$Td4^Vn|zE6iwYS5ApOv*UD4T
zEv;>dmDTRIIl}lud!F!S2bX!ODk+EAiwx!aQMnRf!El4(!s+}O)@!FX`V6_2Cf3gP
zwZjE>ZC>{=WZH#jbg+WwOoKL3-$DX6x_di&zLhv+leyr1Xu0h_A5ZX#ana3J|DIh_
zfw5_Xf>5Sz@T}Oq4dmtecNRcy>Ozvao7tn{ytc)H0RF$qn|~cz{~k8{uRk@F%+P>O
zi19^)hnMe>P;z9gK2gO{V!z10-ANRD=z;HZl5WhJ(brdZrBlPmm-k$@&9X$HD-q_4
z6gNZG`0t;{G}x!5g$Ee8r7<}?Z<&pZjailOTxs9S#@JTQPtq-aFi))Xm^vsPgwORE
z7#)zJEoQG_apM<BO{gEq!(f?V4dk*sz>A^U-l#3hiwmcF(rP_ONu~IrO9)TM7W#i!
z`wF1Awq@-TLPCJx7CgASJHZBbcMb0D0YY%M;Do{5U6SDLuEE`5aQ>Zl-qHKcz3)~1
zRa7y|rkKrMt9x~S{q@&SorxqNv)tUH!Jam;#CccTUo|5>NTAS6nT-RHfQi~7<mNrd
z<zC{&9QMX8mPnn;73+HU-9~Xyc6cn(;TJ%tNzy&J@Gw%8Mpco2n@!U|BH%-xs`kvV
zGtE$cZp*sFo`LZJw_uNtu2eO@n{H^*_Z|c+g;1Z^HR4)%8oU|(R>mrk-~?$66NO6j
zH*?Kz;5vAT{ioJmNSGI`pazZTVS=c-4Ld(FB+@jK*QY!16^!fXxeGcY_>_{%oN@`N
zs#TUu<cEJ!{9O8!ae6V+?kn~}D_WnV?3q>Wi`!S`^LuktxAxaT5anvCL;T)u)t=(j
z@X8Yjy4i4Wa8kpYdaNnmH-}3VRmqyYFaPbT{&lGbUa4!T9xT#e;NeLFO`JK|+-mbW
zbE!U5xN@7VWm&h;3Z#ki7;9v@Q*)9KL%p27mTTN#@^)!e?{Xps>&!lwZ34dVH-F7@
zv)G`oIf5f1B1$yn<plwOC`G-r{Leu_LDErCQEIUj)}KCby^F0&Ne}Z`^N}$rWS6?M
zq;`%;C@FD1j!XF_+xos-R|GoteRKiUDBmIwaY@cqg|W9^JS%P6mjE8Py;%mIP*)0J
z<e^KnW~c@Dl3Z!(;JnZM$9zc5Q8AKuh(~9S&GC-(SU}HcM`n5cK7lv*!QSk8U+2M7
zv0TpTsjXQs?2=e=FGK}*G6wo}u+qacHzILUoS~OZa#e~$y8L*5_emli$WO7PsPp1d
zs?XM9;20OAYUl`$n00N*U|!VlP8XzuBz`_O?mK*u$=4B9`3;%JI=>}n)Oe-;8b9rt
z-)JHHML4aHk<l|S6%E}u=)F=ln?0AStw61tyLshaeK!?VFNST*(L=-Sml=@-4+FqD
zh5s+sDgWxtaH70o^U3u5d`en+x=foJ>Rb3EvG6xUdN4&`bL%-q$s$CHA1E5Tozh@J
z^5R)3Ep@D}zhR)mYEX4`w{Pno?jZSqf?RPqAoEb9t}U{GFpSG4Nn7ztb+Dk0wM_M9
z{~7ZnbL3H5QMvPh4(~=8s=ZjMYulX(*G;_hYH;W`;o#5u_`+FbWr;oyE5#S1gKZaE
z_(|i_7<!8C5-|s9FA$zn=!h^0_qYt|4}*0jnX4wj&IlIG;=;JjeRDlh)>`|VZadlS
zQ>v=wafO^Z0+>m^Ow2F@z`b{2Z#|(ey_tc}d6jEOpCQy{-#Qr2o*BOHM}&JUxW4}-
z;(AyO8Wh-g3mK`%+w{c4C~bSkyMJJFd%liFifLj|v3M~NN&~K;$|ga|{DrMGS5{V&
znUBZzwe{n!qeep1Y2-}1g*gi)(m&=~|9Wzg!|s^QBo7|pg!uXSq2u64(#ktHI+9>A
zv6<jGn|q7eQWs3gz?m0WIl5n>#D%nEhal3DQA^mCai0Bs1&p9_b90qdOgO1@zI}^J
zJ3KhppqFDV1D+%U8R0@58s*T$(|bpxJ<&jHif|lfr}G$dmE0F%?&5Fz`4UB*J--!4
zcNvx?kD-j)C@pc05t7EV*zO$OsZK}wwzj1hNrv2>*m?s^=XUG8$MHU;WWn}=mAlSS
zsrqnso`+Q{uNA(gX5{A#=Yzw;O~z}@>x&7wdPp>_#fUB%QwRxjay8D7^Aa6tG<8^b
zIi0o|P4HRxYw*32hhNBeU0jl^h=zu8Hff)=fkR5u$XHg5bs_c;XRW`9>URYVi}L}(
z(Vumi$ImdfU_D#k@S*{l6!UM43)%aAd7-tXA-ygs_g4-)>mJAi9MOoj3;K4ie%J?0
zKD30RPjPHc!p9KD(79i;)6o~vGLQh7i34N|q&!}SwX8)r#Kdybz%C_XO-&IAy@`uT
z^igHH=uLl?JPQxV#VTh$1xNF7m<64~5VcZ2bRo5Q$Nct3DMe~wgw<~;zB*LC9PU%;
zR3(X^?Y}PZ-`=4k8?8Yt$StjPbcca~X{5f{83R-C@@fM*$!H9l(;nlQo6i?STXF~@
zo7I<`W{HVMGAvN>{^b;u)(7N<FMcXYdU*r0(k)KI!(VH>-&L%Xhbmcmg`TqqhPiyh
zv{110;WLV{Q9hb0x=99e|M3y5D*H6L;~2Vyq%ksYNqZ>KlX2CaW%?O!`t?BfH{FxT
zkh7W_(~jeC{*i9`nwlYD-*Tm5&Q}TnTmup_?P>;<w~$fon=5f!sZ2l;Gv`|X%m5Z>
z?1*-s%iDk6`AFe>=3_Rxw^RM<ms5-MZrSBiQntdGKr|q*@ejJ9;J2NHi+%lqK?BC=
zJIV0A=O%3xbG2KPs#BNAkOojkb26NInQXnkBM1%*masf@=A#@KR!Mb6vNVTwss$t_
zh8qZ8XW9pjy~)@03`%jaQkz)&UbQBqG2Ou-9~w3p8j;rWdP&5}6J)x_<6!~T&i;Zm
zs4{_y=2FDZgH3@n;Ejo{%c!^5!)gGW+#4HtXk*E}?BX8B%kGMUogrXTJ*n20L>4*E
z-W~u5@c;6w=CfcDCZkL;v#6NvH~~g^m8OP<`B{R3m1yd~t)j|<#%Dp3Z6Vg3_rx>$
zhjy#KqRW5&+fFD@CO6penMJ8z5BG4z9^Nk%%A!M%QIcQkUNJc5fTn%2Z__s$f?g`j
z?hx$_%ulN#cB#I?tJy8{%OkO`aayEh4{bj}O?l{}nS>OD^^)+aV@Pn`xlhc3jz|Fn
zziKYjpLi{aY9f?N?BN{K;S@`uRODl2wR!s3_8c#P^#az)EhFFM1A9u_Dgid1XdiqO
zt{@8*f7ZdcLBwYX87n)*Nb&-SYFpor*)UOG62(LnaVti5!};m(QWTi#SAT)Sn+3If
z?|z-zFhHM^e9SL=^u@2rN=B4y6OYSWSx$lyIVL{7K!Da`kLTF%rqT84lH60xH1|z{
z@%u2!_aP3M3j|*0yq9?Ap>X*>Tp8pCj`W(eFXyNR`tpI8*aQb8kb1fmm%|4+)J`*-
zO`n;#=!(Lfw6ri?i6tyxr2%1{9xlaYo60JNWk&3O10c#6*YaR;(b&CT=2xA%FF%k_
z=s<RG_gwq02W)a?zpQU4#KYT<XE@WO@Mh--H=FQ-jJ!@J*w6)BxNm|)`;uyF`5mUB
zYz4q|jt}d$D0(onR-KTJ(sEiNEF^};Oa~`{O_MxHy_@6n?PFCiy-f4b(@rc8VbUdM
zCJ8e_iWd{#`MNBQXCH!O0(pHPm#Ntt?(N8e%!oHBSeQ)%Hu-NJ;oto@3jJ*9pnx3C
z>3yP3hvaZ=Z7ne6ib_&aGCMXF)p<O4Y*s9^&+Mov!7Acxp2SZSs5Ft>-fdo)Az1%;
zi~ah#hQ%*{W(CZ|5hk%^DC9P~ijB@~#yvHo8U}lLyAo;+yC2den{I8N6mlAYW5xP9
za+KL?42tbx!`65FC!PXX*sHMn0?D1&3|lZXcqvyjGe4~+Fn)w{P2u|#cdN}NC8h_r
zvy%G0<uX2H#4uzkEJGEtFtFRppQ%^5A}F4N7Z6d3-`aHbv5KbNcF`U-mw-n<dU_n6
z2L|MDc|nAUcT!xJr^#xN3y0Lun%zP>-)xXOm&YQD|0S)4^bBG5-LOrD)BZpvcD%Q~
z1w+8Y)vUR7=8)*LO;jbDO@{z~;x&K|o<Gev9?M&sBotaDtLo^!>+#h9F=6c!f4*$n
zfLg=SQm`N|bzgPgJ@@r|yknDbKYa(F!!b(T@=<-@!m_;Xx0-Xi?R84K*y$DGrIdL5
zBhO!U#>CZAR2JCX;>ra#)hfnki|`cF)6A%v&tvsmZL`=)F`-9MJl;x$knmw-$g1tv
zUV41ZF7+ZhG4#WX@*H>c7{hn1vRc-$&^z38+PD<t+475{&whqx3Sjp58Vft3AR7ML
z`nt~&Pj@qf;5Kkx|M@%zssEP1Wtrwt9EA-yKx?}Hq4PNp)$Xdz-k2++eNB$2Ekm3_
zwEEW^_4Ee0+aVexs^+~qMlCN)0pB3{hId%r<_EdwA$n{o38k2<HhK^E2x+WghM&U8
zJYguPvOUgaz0oOa9XbEq=KC9JtpCi99^WsdX9P{6&UQr>=rB~)*0xe@F~;yLL}m!o
zu<Ny^CBCf)ZOw^@$m0I1`}}$%CK$5(t*7*I1Q&6wKHV^pz}MS5T~XBP@{%n?%*I|7
z)!GZ93ea0(-Dw9EI;9qmW7r5M9yh}f_D+qR>TYi}*>v#B_JX}~wbR?uG=I=?51lHW
zA-H2B71R}_$d)aep=(Ic==KXF2mx3q>Snq)yG<5R;KI$r@^-N3o7ySbI`d_8mn!29
zt-^4vyeT$P>IE^Gy1WrF8TFQ83^-Ob30y8wE!CUZNo=oAwPY7QYkoS)s@hrP74nkU
z&sn%DA+{cuge+5Dj>B56I<i4^W#FRFD)Mrseouw`8$6ohz^YCD_>nlpW##t7tHM$q
zfU15-pPRqm#rhK4dP!j!8tt$`y%1n+$d=3t(qQsa@*hi(OJb7)pk>-sSg=@vDA_0M
zh%y;k#M{GV(*jx^xy1EzDHKAc6=)Q9^Pc8R4h!M>fy{H2CkQG2lXL4Wf#$+|!R3t?
z&*hz-m~*N}RKLTSSv|5!<*9l%zgN)3!oJ7Xh=<FA1!fOr6?4Z-z9siE{PMHp;+eEN
z$+oJ5=hOEy3NryspDg)ZAEu;`#ED|=WzCTpDx=K+0kMfIl_7ZPfl#=eP27Bi>D{<0
z{GlJn_2639qqbO}G@|(MnsVkjeTQLp5~g(SV2;r|b<xvZZ2iuX=az!GL0d{*M0cVu
zc|_#VwbGCgXrY~I3xJ;BRpNK~AqJHX=7V^Z4QT&{>Gv-j3(a?5EdbHmOD?YN;<mc%
zQkOzz>v>inT2@*B#E`JaC{i;y$>5t_qDA<qml}l_SsIB3cs9hfma<t3Xo#z@&4<`y
z)>LeYX2;gaRZ&q>*JZJwKl^iv>sKa|RaKR3iG&R1VSt_GYK$=zw{@_)%<-=QE61i2
zbE=bn+&lV;x2V%c$N51U$}6|v3+KaYj9e2%XLI=MW+zv1d@rxzqYU&pTgsadN=a3r
zw=v0X@v%t9WSIO;6n8W2kD`Ezh%!<L1PRYf3!SF6l74HpnLEzaiImHuNeKv++#_LC
zLc72l=M&9pNJQUjzGTP0rWTjQK-tuEd+PUJw&Sb#MNt@q9|XQd0<U}4jqY~b(U#AK
z#;U4LqmP*)i*_O9-j}@QuG?pLZlLHW!_D2SIO0bFFaZ+JMsiTY$j+ISQj0%%0i_dq
zNkI%RcCV<Dwll+TWOpqpx<^MxIv3)MC3VPexSc35(47`nK1ps28uduSn=Uxe7Qp|f
z#Kz7Cbq5uS9G8iSf|WHM=)-!)&(FWdqoAT93g~;s6rWNf?MzBX7)?QNijc5#C76z1
zdT@_|I3T(D3@`ygFLK#xb|!?KC`%{bE-gl?%&Qg&T<11gg-sCYSG~c2^Z!#!=41ec
z%;@}s14j72>Ok}&tAO6L+VMjgzjq3tU0+Af%KiGqf8z;F<j*#5f?Wpq+u!Q%r5w-A
zy}^K%HVvSjhyL^O|4*-X#G$6~=aLKCw6(R(fT_={#=XeSP+^M0%gY%+hWrkY*k<cj
z>W?lZnSzN@c1?BA#<McJc?eKGRdiRuPf(fer_P|SyO_g&pyD2FEF_=goy*_B{k5k3
zH}4AkILiA>OH1qQ>Pi(J(3{>bLW21#Ao4FJ@%I8imM7Yd^0T<0AQ(U`%}-lLN2R~T
zP~Y9XQJYO(!pYI`XE#t>b8~ZS&dO~Unuf+MB=v+I7e%m+y{Ssza4_3m&Ki6wXPZCc
zD-&DWkZjov%`xUr9tQ8Y!ua<D<hN?Ydsq<=Xn@)4cpJ!L&Zex$eyd~rPmlAjn9*<P
z6DG73&pu_z$6w5LM!#(A6oeTnYiUWrAmU{KHO->JLLyvTT)0=SvizRI^fSA-xUd57
zGB74CVo<HydJ|vfvR{^E;hK@7w$rkmwD1utmDy}8{8d$DUH0d<1H_E>CUdUch_(3t
zc+%y;;_-WZ26`4vxX}v#569tut>03LV7{n690CGa<k!w_nqwP4xnDMew=gtLeKbBJ
zLl#g(0r&SyY7F=Fg*0SL?=8KC)VfDJFtFzrOTbeE7Ce@`^HFT+gcUgMSDZ+7)Eswp
zv?e0_KQ8+}?~5i9KiROalYs1D!Zsi~1_1GDOEcUU7#Q)<(Qm<Q_8uZ4&}3v}yJ4K}
z`w#D1S|tD;k1e7M;i}X*#mCW2lIMkGWf_ZUPH$W?sB@0%(#`WQWL)5HrzidYqc8Z^
z?fnn$Y$N=<$Ih{M^nt-aW$idE>o(L{2|Ba=lBPsX&$zIHmLgS5XZs3;E~%;7%No$D
zH1$#A%GwIsum#a~|FA9p*PHM69l1je%}oat2L^*fD_UB#FJ-t?R8)TMLw0udyec}`
zW&<xqx)c<mfh1Uz2|`$RWgR6D+MP#SeKGzLFIW8i(&6qLp{(X2`Cq)$zsBIdzvG1W
z%vJ6<a{o2ouhh2RFZ}(*S1!q{g16;T5iJwMj4H~?1#cG@7nN7y*Vonzbz78`-WP@T
z)da=~nRp~1)9GBV(R+Bz!Fv42S7KdXX)dTJ5!=$??OZX|i3_3ISupk{{j(SS`)B>h
z!T#q<f*cg1<|v;X92|P5rc~A<f`hYaYFMiaJTG>>Y?+vv7PmR|JBA!+zn&O8;9A%x
z=G;tFRx&p!)hq%wRc!S@q3=gr4K0)x9^CTp-{q#*PXA~#_+Q!|zS!4^*4-`?9;>%I
zul|FzG%-FC(YJ7OWM*NRs;6RPj5ahfn({8~a332Rvrv?j4Be|XQnAv#HkOw^NTZqz
ziG||BGn;-Zz~<>DhqQ;Aho+REHl;zXYhkcrVQTkxm;2AQ_aA<9m6!PE(*ugER3sz;
z{{H@?N5Dvv*!FgT+`K$RfIP*;!!z)3a$<LRxaw2}uDxwp7a;=INW6a-d6Wjjn1W&w
zf~zhrFj{whNM#q4wPnQjN^9HCvA0(ATL~jzR~>J`{eN^M!$wf)<obqNKzCpsl~P_b
zU?*Pi_xJa~dU++;+5W&_C}|)!{WLcRD<brfR7K(wmzd|ugZC#zN1ELm_pyy5W2s1&
zX$$PgmW#7cr5Z!Ex|Hdh4sVBlJXrqk7W~VzYG`hiugV%45<k5zfJ`ar>u1fq+uGii
zs#Ma@NVZQ-fvb{Sk-Q`VN1RLNSn=r!#$_(OyQ-UJB^^(<Dk(K{HAG2JVM7&5E-03%
zl6*?t6aD{sf9F5%ud`#VR}xT){W3Z#51eXm2?+_YV?w$lH#axq<Ksol&CR!>1UDur
zY)Px+zvi$it0;kJ-&>SUQP`SUt4#h3cK*M7`JI3IP@0gSlEgVXIjOv+R$M}wUK0D1
zbsJ1oTC_YaS;a6$@lVnD>LSr-eiBLRx%y|klTB9&MO}l4xo<1{BT;3ae@NuB6q$YN
z=zBjv^!z_q=HD$O%N?rj^73*hi5o_8l2Au>14Cwmz{dro<&<KqXIhU{gZTFVberzk
zNVIzB8=uNo^;#ep)i$Zxsf2Ahcqt^_?2)%PzH<>(*AQD?+0CxNL{%~^Pne&m3_8wI
zQrZ%qN$dACmJ1+p)?9oEmq7@<xTLdl+Ostf@US+(R^xhn>Ui{Z#fvojyZ=F9K~9~-
zDJtRYx42Cwz36sY-!3PH+oSq>$0N5?oRfG<oBWLDV)DB0slA_Wjbt#``kPljiB6hs
z7=tfV2;0R#u8$`1%gM0zB;?}_jqn@DZMTr;%4wMs$sN1#ZPo|)g)4(R!6hYB?sst1
z;ym+I>w@|JOHT;=+BV0t1smsUn6|e#b-}&En+JHR&QxQ5xu*HnHE@4@Vxx4gu5WM0
z1F>{xH!77?RK|Xaj2kDPb4}2&M*82$M8AqGc|eCEhv$FIB-}mz0hYz2uU4<cwDJQL
zEqTTfz_g_@9CuMtqT>f2(&|^CqHT8=uA6XZ<jX0FYJ}7cRIj;;WtwgZrkGE5b%lKY
zejkEW$mMZSGdB*zYuQ@1$wure+THuMUc&n`$3zSa95~FRs+c@>jHhX6j6*4_@A!lc
zHm?PqxJDL#6z%#RQGU7qu6cG=@ukNGDaWLJTS*6^4kJ#mzFL?hFX$#$R77c6`JoVU
z0*j6_A!m}y=@se9_6$vr@TO}E1KB|r?(+ejHYKM|tg-xOA3P{>38<(4aM=Fo0CZw~
zrbR<j9C>tpaH$q6TeB@75@2KFi-H!G)NmLZUd`cC^ZKt(*KQci&dG_?)O4FXs-v&3
zu+PibUl4@S@EB6Ba;m6e!ev613DgrTs0aJ3AVk+eps{S%#6Fi9T5o`gb`jxn47LwQ
zA2VHNa_W3!n~}~f-j+$w(eYej0m!qKRSO?}VQ_G^zPaq_>FF@`+}2zpsejQ=G&4Ot
z;i>mti}n7=J5v~m_Vrs+3d^QTY5|WY%Yi+O$!jj{osnaKJc5T$y(D&!)BMNv_h}uV
zfG__FME{#3-wFDemTr2zmc}=UY<ydk%jU#hz7}u9Qt=Yq!I-4Cx)y{PX1}Fdznb+h
z8Wc7*wz9Iau~QA6AM8u0Ly5Nldd1!7+iX?E$uY2&$Atr{Wg`aH>efon9n_VeaFRw+
z;R&(dn_`(XTO<*?Aktm^bc|xX;L=O^loed(RHpT$PH_gAenG5Po%^|{h_0FNYUS8*
z_vq%)*wj*VX5{qKhr%BL6|NnU0L&*|&X3H<X7}yoU!4$;BCW0r^LbvOqlEGSd?+x0
zVJ)^Iy#c}ebuIrCtR6}WayWw1aSt!HI8i57%A-{d$dn10a%DOyB_9L!qUddva0~vv
z6?{-<t4)z|b8^x$VWPlC@=!glw&XswoxJx@xn_a;H8nO;x9{f4g!PY?*E`F*uNL-Z
zdWVM-scDJ<p0<ER+7jIrVFQ&QU*xtx1@CutYaPCarpo9o=~Gexq7R`__SqkeHZ8RN
zhj3(=5Nf?U0w}dJxPSfj?Hiz*tVvBn!veJmP&GfwDr_7b(Ua6xpM+p>&9}IRDQJ-X
zWz_|xVBOr@Mx%)WhEx}-OlW|3^Yai#(l_4@F%gl^gJmTpoh#MkeQ!~Id#YKv&`tRt
z3jO@i339C|ii1Ox33+2X2WbbcgE4|i$Di_UHxQIZ3@P9I6%PdL>_ZoHHbro7!*^!H
zM+q{nA@~N5@Xx|7k!A6j4#5txhfI4te2k&~x8Wq21%Ap}IubX1FuT{8dH`k`p`bzb
zZMZK&=vIy#=*DxngwH?wPD?G$C)vm2^JUNBym<ZP1%b@bvlwNCG%0|z9T!ksf51~Q
z@}{cNHEXTJnEPg%LpdcW&neeN$GgK=W29nvW9NuwV2gq<Yob{-q?g^<qVdY%lP+Tt
zl&1(TTm9B~ePPw2+u3U@Jmy2x&;t(TY5U6))qSxGY>}juyR;@f(rnI$HW3jH8{_F|
zcGkmB&6FOaW@jf;utJhyaFh?7MDsOXu(_GMR`MO%z7O5fBpeKS0ag3$kMd&vYn>+z
z&se>>F_eMcIWBVv)*qpPo!+(pXls3c<m>beA<S$vC#;|@?^E658JYE?dEvaO<()FF
zS-|?ifjGw^BS4Ng5Vf(PciJ#x2FBb3!of?K&9mY|<OFo+J_>a!%(^j8V5muFKYQ?0
zh$8SK7LrH67swD2cxp)o=6Ra17U9~aQIX3u_FY_GQ?flJYP}D`$htiCwU)tey_t5k
z@bTn+_l}>{bXXmSJBNddi)*w{Y4>9JPC!vitZdH4Z7@lXKW5DXlC`Q&*gwFKX9SX)
z*p~7IFKVv`JKNi%IQ<ADF>xw@ENjU!F&P;8LU%#-B~(<VoObL`TQ8>}%5-jQCeJ;1
z`VRcFHTwq(ZHfvMmLcsJ;s8dj%{NdC@Q3iy(#*$Ov<e{=up0+QR3p3A#cjDA3+!)B
z&7z>?p7c|kHiytLapi25eUv{teo~A)%6HcD7VNs=8gfCw76|_&oi6-Mp|!7rA-F&E
zjEdxx^5JS1ch5OzP7DVwJhk})6tPENYkK>WxCD%=hGuP_gU#a_3xPn$A{23N-;$h{
zuZq0F7FE9-pV02zOzOSv>M_k@n-Ndr4UfYmg7qnc5VA|i65jB%#u5_m?pA#L$kM{j
z!DVOsd%l$hf$okX1l83wfqH>)7MSg(aAa|nMm^E3t*sZ3W4Wxfw5=x_o?`<j!FrOc
z;H3EHVId(X@PP*^E}QJUylH>}s9AJ3Pew+Dn7R00qCmfCWIKC%%#klnBf-*Bu1-#j
zRQjPIA$dQ$J*a`UYQ@aT>+9<j>lr`~H;cgKkGLzV7TU=*Q%mbkyMO{({1T>}l>7F1
zj2^FsJ4mTji!vtebAicz36DPxQ)NDHQc37U0l!>{NLsq!B^#YuRwg_rquAf$QO*Tu
zkBCf)<_cGr{D9(R+bSMhPf%#{Dq)rMcwJ^Vw6veSQNc*K*6aBb#A7L<=j0RJuC}>N
zI7URldLu-v*ZrX0c~y?eP@3w7;0e#j#xxh72ii??99en=?j5cz=CfCkF~s=*@00al
z-ZY-J(HSW?d$n!d{PH~MO%4QyBPyF>@1vIFC)rWfL}HMR<U%4Zt%&lRq-wKOK0`xL
z%g0w)m4}*lXeMdg<D42tat&TYFCgJ8{qUjTWIj}?N;)Q_`fIR{khUkZIXI%E=@uv<
zO4cR@g!U6S534J|B1#&CYP!QH8d8GULO7(`sOD&~;c@TC$?lJir=>_}@bxuDtrtL3
ze@R31Rf!f+7|>~IEl_%@F?jw1=805IEnWW8!mHO8c_C;o6@<Q1DT;^{tJ&sn7<ar9
zjEQ-7F<<N&+9&-9DV6y9bF;npFEs~25f?|zYi*yp%Q84rq^WDha&{JB*CQw-(h;7a
zg+=k-T_^-FF$Tnt+>N(FTCEkG*i8D7Jx=sya3)V7knH8kAFPgBlpc?PWHt8SAB|it
zR=!PU(`N2=FJ6#2JvdJwL?+KgpqZ4VK;k6~-e4hK)RLHjEH%n=*T~9hj>Q{G2A&X(
zR~`sPD>+ZT$<4$9Z4Vx4%YI)bZ4X}j>>(YOJLb#Js}Jh<4laJYVFt=s0_|S-yFisH
zBEy@G&V7rXyTPQiugvQ3VD}Tn@)v$EIqpVv7PEM8@=Lj7;T1Zc__~MNh<9y`>BWRz
zDsVhpnSn~}UKg>A*>sYG4pT-#BCOvF5PjP}B4oT9TQARR7x0!3HK`4}&wd$qhOeoj
zI+=YeKx3(e<1!StfmYc5viF$iG(7>3W2nQu{v(XmPy9vBe*%uRsMvYUH*$7weH}bq
zTwJW;&H2`jA7xeL03RQJN|@iV`vk&gdT~rxzExk}5tb>P#`!I4?sA{w&4KG=WO;d1
z!^{_fX`uQ#Uuk3ta*p!(!<v49))f4J1zr`Uk`BqRva(WnrUaiNqVR`>n6ddCG3YCf
zR=lM$f|&|S;wt7y@^kv*`maW9_QDU4NQjo{fIiI5ChqU=M@2ew4K5(+&Q4WjT`?)P
zyC4Q}5T3yuPaM2y?YKn4uZqN#bI?CkZ2kNufdm><tCC<SbZy79yQC_{xyN*G$X#oa
z{Eo0qA;4^hO|H<~Js(Nl{(WrlcXVnB=jwtGQ3>1?-PxS1-tJ+)PlKL9bxKMa)Wj0G
zsQIVHc2(oBMDen>+IH}w;SK6XXX@2*2RWhH+V1yw&pP^8K8P({;FNlLw^2^`wDU$;
zt%(0<h3WNiKWi(__hC+EuIpa-DAOLcBc01U_pMJ9g9V_MD%jkb*K&gNEv)KWE|RHr
z*9xR)W2rGOz5GcibJX;zP-vXA%%NemSH>S3tlqCNEx*AAX{=F7OMXPhWSE+o9#7s_
zSFHGo@w2%ZgRvHrDHc%i_QwO{NUci>@7eBGKM}ZBC)ouB`YJ8PMc8t3YPUNbz9E)@
zM~+<z!H9&iiPn`nArlO#Jbuh9j=*^62n)2-deZ3nq~=8=*i$lF+jQT1w<2{FIp2sv
zjFRC`GO66s?4I14uT4xbfSw&B2N##<^;Sp*jrk9ON9)nU9EpIPF_4Y?1gEBwqy^>+
zm>WeWrvh{~zSC={6yLKKk{G*r;ayUf#1>a$MpVjFk(GJ^_=K*mSegxXn7}NjsJx=F
zi%M?xwB)orQ=_Vikj}GyZUFbjGOEc&_T@n%n@_y>sqt<`X7fl7h?RrprwjAg!%#I^
zlvOljC19I-$GQ@}ch&|{blW>+hbw_hE?8s|RGYmB^d3enEglXgMcfZh;lqeCvl#91
zE5R@1+T})cSR&!7BPgJj>6VQ|zxKu)UUSE%r_k=d6zfKYPpc84ttCMlMv!Y0e&`vB
z<^t%h7yU95Lt^DDz!6HSg`yH&T36%`$08?Rc#UXqjtZsyNbuu0(B8F0&QiBYGAHFx
z*K8M}_rwJ$Sj$Z*a_Hx-(-GltBGMyTMhM5HyX*1&!!Sqj{62gTtQFVM!B0ro&2E1A
za&MwhP**qOdPR~B9tL_C3yOC1$BrZ-A|e2((-R}(KH3;mW;!s)8#rtYVsqQCktU>u
zB$mck8(Ugiiyj@_t~6-(0Bpu<uS2tSd$XRkjU2tvTyT&7;~%!V>P7K&#9vX#8S*7r
z)V%Ph9`DY;z<||m^_Lr0l4A~&d^w7+?b!s27(m_RXNThNw|gkMdXK_bi^Wv)r#FAS
ziiv7xKL*-cozi%Cc<3U1;?%6S!3TuI`oF6Vw;JA11yL4^a5|i#jM=6#tx$UB1h;HF
z7t7tZu-qw!9A{PCzfRuXIg&!d@}{Mjc0`94einy;(6GU;5h;qe!0#D-ri55*?GXe4
zqnzu-JKyO!wD<ao4_O{ij-^K4KMF`L)@cvbIosv+#v~Qp$rAXW^WPIU>Zz!Tr}Ary
zB#`mONSRhD+2j<AIre>1d8N@gZPy}MIBlKOdfK3AKY!^uc5&lce7BXxmf0?IZ)imH
zP2j0s^LD}KArZ(<5q48=N5<w7)JeO#*K#Sg5!on#@2A8~N-6=Il6_XzzLMU{ZPhz)
zl3a;`u3@i4fEusKGzf_<3(d1`+`61TR~KmGT_Yd1isCn+pu4ucz4&1`9(m*?$L}o`
zZ2nj(OVD)G1izDqYnp6*7}8^_+$FWbu%Q3;`|0_44nrb8Q5RqRB5$f{$t*De-ma>k
z@9nPKBs-wEY`7LIZ6(L|Q2ALfp?E7@X1lgaZ=ydz%LI#8!g3BWBJl$QBx-mHpBZFz
zu;O~myX!bl66GVZP=_CTcfV4g@UU~UZIif};j>3havG;tQCAmf(|BnjDLtu!q~1`w
zQQc$QN);FMrb21&gq>ENftx#4{mW3*ECXd3nI3}{m0?vwY~Twc!;dFoX~Kyq_4UEj
z%fsC<6S@sH#0eqisdP4-B2BxEPvQXE&`GZu_H&tsAcK|GU6*IgZCux0%%ILiP59T&
zOe}iHSOEMauggo>wA|37{!sXxAs%`_{LY>qzOu~sK!$pdDNV4~J>rm%!AH6^C?ctk
z%e?PmPk^2@l6OYeW$Q#$a;`RX9O<4ag%zE$OXdz>0CIuCXF>pA2ib)E^FbZiiZ87)
z9BNGBY|%iN`8p4Wl5?PJ$sRVU6p5{uXj>9Fj}Y-6d79a)>zkV*&xC|q2}>^lVWy>Q
zT4V+)-U`0<R~2r@Q3BJ+d}exj0s*|3m=6yS_5jwulI8?~Ok4a5FffS4!lg6#$E4dk
zIIvL4$H74s!*{JL7I4tg)Np?k<qpNap3R{g&QhiPu3YrrAuiAm1=JPdfigqqUeV^p
z)|S}2ckdibXmkUC@!f?NfS|B~y}f;XXSBCh5;~)O4ykGRTNN+XlPZ|5kJcc`#aoh1
z^24N_qa|?WVj|Z25OFCsG2U3$`|RoM!O(0x>V8gHf^SS4t83=+{0%E^Rkq?hr`u{T
z*U0F5$39CsC>meDmor8pcA=HMrbu+;>KaF~Vnt@K_mDBc#$UM(RQza|zg!>-w?g!h
zT=NtaYpp8AFuN(C79kL^DNE;t^xj+Uul6o8)x#swY<n?a(x0ME;EOA9{Zmw}_v7{|
zU!5GvZO-K0j{}OkYXvmv=4!f38i$X`ru;y`E3Lt4_gGPTV`C#LQ2`GL39E8XhoNym
zAqWSA+&@g8g@6kgoum>Dc_9QAyUdNig-}oNIHx8gl!qp{y`7q3tFd{oN%1~?!&MfI
zEWj2!o|_a&frSN1ZZqt9|NIn{!e+@sP^4f0i&&0fZ;V7fLn-uHLe=6rYC)}2DlI-S
zkwkY69cQmxtbIID%}c=c;jsLnr$1o>(|V%1DEC7Mjl1WpqVAW|%OX((3%KKj`lyzc
z7FH^m<`xfE&xQHi<DxY(o4b=bgtast@)yEDYPP{ZOlp#wX5m<mHy2V`RWd2q(rGTx
za!HDiY2S!We2K#u8u$7jTkA4=B8sqi3b^{hva={Ulh;1=9X=S}ey-j7G-<N>$u7Ao
zW(9M_qmt8ffkRPa{3<iNNfkBHTATWXbjvaR*i6ZX!k@c+$K(gr!fAwF;TqX8gE)^Q
zSH4SJW^gC;pKx>~Xgqwb*rJHRv(r<Bu=pgk;P&<O&9?ILFBK9J+Y$~fqrbfVc?Nm;
z%Hf(*($OUV7>$Us4iXCX9H`~B@4~6=LO}s#NPbR^h?wb2bx~6L3t)Vq37@6?aY04J
z2Y{eL#ly3(y13>EWnl1wTx}>SG!(tvd{1;^)q>lbTa<moXrq$48$xwcp96HZ1O^3#
z1&=)%E+!Z{Sma$FX5^uxK?n{COh+;{*4OE7%Q4_{jC;kE?o;)c+D3M_DSRkyaYJjb
zxeXuH6Xs`s&o%*A$BFdWp)J=@l5fXpcIuxh_&d^2x7c{;TyPf%f1GQ-9$`x#1yxls
zy#d9}_{>aOI}zSz`qL#EhW>&d(u@a*^9X(K$Fihd=lb|7mH5!xGXkjGw<R6UkBLNN
zjHaAKzi!MU=TaSCyknEwHzr*9vXtPX@h%aaQDXrcPDp(+=d;|#FLU`#<W3!(Hn>{p
zqk$A2%`jq$3VAoMH=t>+5>``}{UgG{txG)Dgm{rcSOo9s5Li<7EB1|p!Z7`utxRFr
z3}m{~9NaBT)TN}dmM78qlSAKm(a}-#Pq!WqA`ShYc4T=G$y&2(L{zt5$)}sQwGmX^
zRaHqo_lsc83xGj0-x*!*FKdd3nvpSFgGNG9^YA{^F=UQCE1a^%_<@v!&C8iL@ai)n
zzU&$iwz_1ft~wgt0T}KxKs@@A7#4MGe#Uut=zL7%+kJZ(mi_T#oCSW@T#E*Um-3Z+
zYMc_~3uz#|hfSL2?W(V@R@J7aoAAw>6oF4GqHdiX>r-gq2*gybs_0#h+6NbEsOK()
zJzREBh*=*koD}1nQqr=w4Q)5O>KEu5SDS_@_@+fW*>POru!fd&b#g@BcgK7|cRU}L
zNulc>K;3kq>Z6;dciZy@xa^`xtNZho_1ZbQa+;ITfq`7NF|Hy44p)fNAvU;eSn+#x
z#164smVJ=SV!eiW>G`%=pl1$%F@(S7eEo{~8<zJq_-l>%gmfsedhj<0Jq~UdR{RAR
z6g372>)>F0<A3F(1qA?2@x+9izZ8p-&cw$nhekxOHCFM3d91BFhe6^K62?;4n%ZZU
z7PZX>KLb8h-_14*oOQW3B}E@z<q09EGz*f|?u>CuaEWhAum%|H7-|@dfghpc*wZPB
z&KkMxRt0Nmd5DOJ(DCtQ_GilTdwa!CJzFxrU4A$=0){$dvRluS9yw$7Hu1KdoG=Es
zxB+pVCO!##-gMbRN5N~<KLWg8pt+;I0_aL7ONmGdzqiLW0u<jLkoN~bQi8?n1oJQ8
zCjd$ca*)UaY^8e(tEs7}i~aKU@%x+e&F2r@G`ei`zVydx2^gW`qPfQVt3v#Iw^GlP
z?Al@Xh}=P)QY(EOnI*W;qH{f$*%Y-|cKvY7waw$@rQ@RV3fVH0FBYLZDCymU_9<)&
zLL%@?M+AZC9GHEqk$IB^O^eP>Gvz|~Z#d?aQP?8DjHktI=_K9-_-Q7l$F~@)W@lDZ
zf^U3&V04yi5)H2v&<eEP(WcMdxi&{-$yUd@s<>+i-+2&8IOn3ufKVQ4?vQCM<U`7o
z6|=*~Dl`*=bBz1f);tROY;1;E^#vK6SK`s$Wa%L+Df@u(OpG^hoYgcnzvOXo?|}^i
zgLb<-V`6SGvZlUAqy-260!Zp?7`F;a7AoqNH7~Qb5m4T=4E4>Fqc1Vchq&OgKJc6G
zvt9+<A5P{BT6ud~tZ^MohN#qXg=!iNNJuHhK@n%GwAadtGdwsacM0dw3ef1tAnsv<
zLST6|+Dco4;q;3=k>G}R1_}b{oX~;u6LNw;>Z<2UJ;?r;QCY!N-KG7J)3vvyr%&`%
zQVKH-&H4A{M6W0N8e#UwqayR`$jK|M#FfXM0&7D4-$IwKjZz=LH5EHqwTY>z6Z1s{
zFi=3DFmjsJ!2gjynF`rU7Z@EQBI4<ggGLdKb<L=fU&yMfURdcSL3Mm|Bn$L4#D~#S
zna|TjnH<bk3VGFvmCWiD4*CDNvBwS(d9^ncsN?1WIXa4WpS++i;%h?T-x*~)pP&J<
z*(Y0SMA+ZV>sP8kmL;mbfs(8&;>{iWk4U%c5wyVm0gPv2GkA`cAeCsBG%xVWSddwX
z74ch_oW<!W<(P=zw9YZ&7NPaYEl1gu$UFs8L&a9j!Wg6DgR;D|#f$X4R7W5a`#cZ}
zMO&Sm@|p||9lj0-aEkhvemHDoHBF29GL2~lQFxzz_jcMjzGS_-0!f5?{O<3c)vMlg
zIF%bu_fZ;eC`YV>e^Fst#ch6ehx}eeZ6<~HLX!xY$wXJz#)27S&RrU!pYz@<&3XaR
z{EB;~w1^qA<uh(fadBKqt%dWsQ2ob`N*3;=N-8R)OSQ8jz0)&c`@3fLeAe%5<<duU
zWOueLZrWXHfP4x_pz9h$b^8FPI)RyFTc)3mtzhDu;A5B)mrCES?r6=HP_E6<APqEp
z^<`t^c3CumgmXw`?I2f569a4}lbx8Hw6SMrNSOYVTDR>SZC|#_tv%NC;ZqVtZ+L7b
zWq>waaPeX}ZC`%N#)GnMw2X6Y(|O*^wL5b;)ejx1wkIomoM9%JN$$f2OKL6p`HAVE
z-<NjO8`jO;J%z6!<<rW#*OR|q9xX+Wo56FX&FGg<OX<I?tgNp*-gEe@pNlq9$ZHne
zHK&ohF)x)}r0E|VB#oTzgeN#vWr~dKgd%_Bvnum0W58lDTO&xRlgYI{OeCSB>ON%S
zf4Pi=fPiMiMI<6UL}=;Sx>Csa{dX_?3-mAs)E(p)3q@F|(~ifL=&NHORyXW#C-o@P
z&yDqFc;~O>Ho)-#r~Pv;EUY9O8vTB*#-EV+l2>o{att6PSWwrb80@90IJwi<iISYw
z>Wo5CL?c<ylwC8F89lz}^z#T`;A-5(ozpAE#V{n1Drss7K1k;)kQE{328Mr<sSNKj
zdrp_W^>K&!G`>nzZQeOp+)MLTgdk2&9eqgWg4O$OzGM4>i8`PjW9?-rRUD+oJXB9X
zfeboC=yN{G9;JKB<=G^BLd~v(1oqyMUh36Y{Yse{q&d!UOPb)tOOF9z56BW>VTm+h
zVIfJR<9?fBQ~eikh5?<P&Zs8ujHAP-%q%S}Go6^_fPD)f4Lf;#KCSEtFxgmLj~4Sn
zYbfPHtR@>`i}U%{lGt&S)*TX$G9~!SFfT7Abe^U@zU)~737FH9oED@Ep`^MA5y-u~
z7>!qeSKm2Mf8g^z-xIzViSh-1ILSD>b?)+J7<COJtgHy!3InvkfTm>$-zSlvnfsZn
z*oa`>f>)nkGtXBjDa4bsKXLYFQaK{8bp0v3VibML#~0vpyK9=vX4q+W>gt(wQC;oW
z3Adz`Lx_PPdV2bhGXh^-qFJkXdyNDwC@81@^a#DCW@h#Z0h?K5Xw?&zMh%DFtpgs{
z+!}Jk2gKpzaR&!h=0Li$XDfn9V1JQwfA4j>nUo;3Xe@)J;}lcZWR)oj8qzQ@AOeI<
z$%#G|eL*1+E7)#Uj9Qp&ac2R@B|llA5rhK6g1zX-s|+usgOCV`d;sCqP)p$!#dN2!
zZMDL?zmyZXGX*6ji{3zYN~J%^>I1`Z{(A>%Lggh5j3<8h-DG~d@OIP&nwRgg7<YSf
zvsSBFr}Rt7I?p6gmvn=yEcb{Mzo7ZuQ}ph$R#1#-Fg>@@yFHXzE3LG(64KfxPyP74
zOqu+a)o`n2psqJ4gC~&s;HtVnORf&&$;=LYYENx?_+rNQ@>8}4W?-_p&|VpQgVMu^
zk&!5$#~afCKr;J$5V5g9oZ_pat1CGSj3?M3Cgz)%d79mhd{xSFwQ0d#{iK0Gkm1!8
zeuwJrNUXJkL!Krrf1A;;Os(*b11@E9a<knxFJNlY<gDWPEhgGXmKb6Y!u-Abzt{BU
z5aNJSbNYFbLwdr`5}>Uob3VN4Na##pZjs?}S6@O14_ELmT_-Gi@-ogRwWuzTEIAw6
z0$K^%lr&wX9QPUY`q-D-Ar?g#-<9f6SjvAkA?2(PJh=z%g5e1??kW}H2#E5cmJ0OY
zQTrV(4aKnt*DWPL-V}BEy_COGI7VN<0<)wlTX?;V$@KJE-!v8UI+4oc64U`pLq~y(
zhDL`eGA3$QT2>ZA{0)P~hsdYWEF|#Vp#d((BNdqQ6ngq_;SzEfUl$h_m+KY+(KzT-
z*r@G}+4yJH-KZ+mrvcddTDD0TVvm>Wzi9#dje+EMp7x=(mMvN9l9iQJxlF%5nA87L
zqr=n4vik>+g0sPO4kQB^RZ{%bvm6d{C`F)>`GHjd`W{08xq^n+u*Y8qT>%>2-(Nh2
zTwE!7S@;!cv=GiN-;YekndJ1P1M=p+JYR@Ax#JxlWGQ)Q_~_xN5dKwlY`H>Z4Y;^A
zg6@SgAz2=}s|S(^xtNlI4}IgU1=awC7+!5}Jlc08g)kp9QN7Zm&tfp`8MZZgK%t;X
zL))xoank?eNyi4t8}d%6A<wAX;8p<~Yl}jr2t;|A7u$%33cTRid0dE193EDw`VQfw
zP>9<5oED=q#GYHfV{4-yy<>Jb{3Suidot<V;rvft0g7yIzXsv3ovDoP_1>H-D66ZJ
z9+p@MKiD3N0LqMLfC&~CQ`#>FCSx&U!&O$!i;4pC-^gn9d*vUBhVL99OgL<N>`VuP
zpyNE>M=s0BkK<eBH8HR+)C|uG-IZX@E~^sUv?La5v&*YekPg0FX4RTUZDLvRU(FiD
zo(x^Lf^GF&>NZ7{I|x!h#k#3r7UdwH4v~}>4hq|m`|*WnefDYz#?^J*qT#eo)U>@6
zT0EW>^F@4fT$~E;GQ{FL@f+OS6guAH*vsj<Bwh$qiSH(n*vI}-q_IHXdCU?(=;r@;
zz4biZLDp`?B~ms%E=Dz5Iz1*iQAnVLE0esvLD^VN=Yoq4Zy{jPkk;ATaqZq0(Btrt
zk)SKv^m=?U-i^j{R=m~o%->;e=rQAN-8D)lN^u!$N#srz|04|lK=AC+bo|=wkQ{n1
zLOnKa|45A1gEJc1Pm&}$B}L4~XZ{#=acRjM5YiLU1`-ZYpbg3C)DXI|hehhekyPsq
zY)@EdC~1`J{ILKk8k+Mbqi@-5^_1ywfBK9+k$irBuprl~H+tSmk;9|Ve+|`sf!^cs
zGoQ$lfWHJO07J!lyShYIS9O$u;;keg1+8|1$7g{(7CCN!5Z)VBH`fdkbbSuf$+cT`
zBy{~TEJ(yh^eLxDFS|3?SCr#msc^qDurniOL*HmyFoI|K-NSot2|hv(&~Vx4&G=(x
z;ad)+3l!>*{O`ANW2c?Q$7@8JOLDHf4`AZ5qR|gilMNE;JRXkc*eNFm%^P!X<tx88
z8yI<<B#eBt3t}nP<t&Wf1%<-FV?<GudM?tt^EF1LE!OaO?a$PUG!=E<UrgvF1PZQq
zBW8gJuw`hqf!UMK>7Mp9z)A+E<3&>oB3xmgeeMm2YOQgzCr!tcpB~di2vdE0wfbhF
z(geyef+__Iq>>Vq<9M0UIZ@tilU8B|k;~wW=4TF*Ffbgp?gC5%H1gNk&X!mcGXt3u
znHi$v12g1dJ|(&J;N<m(!9B-*ofQ1-b9kF^+h)Zf3ropOVCaCNh{(r2kd;*l)l!N|
ze#aq6LC>p*BqmEsTo1ETW<b{w-CG2YM?SBDf<&}>bV$m>*Uh+(8m=i9jm->I=$_yU
zqOa|EFz;NzILnF^iK*+*o1<j}vqv?pct|XtWm0i!$hB+vP~uUwAxgW^87<Dktdy})
zF$%oBZ~Dtci7=msBpY15ToEl{Y=EGX%>v^RN{lHw<Yim?#p3;Tt}eXVd<{NVSQ;;G
zFe`j2cZ7Q+FI2c^p(0KScB9V^+y0U1;JOqi0-<O17btv;Np&ReW2)7JSv*CYf2->G
z-3oryytU)?x@N>-GUQxx-xgQ2ogb|<0_|#SxY!r8mep8clkYj=GBA|iet>m^einwd
zdJL_>n?new-x}rtG*KLOs{&-Uxw+(HQT28`+0?3#SRed{nlC;v|4driLLIe%wXl);
zRc`UOoB1!tP5JHv);%;dbTC-thcEU_xn4fd#)3^##&Xja(~}T5uR&F*tQ<|Th3RR5
zbW?vowAK}P6CdZXWa!A>_~ZE=&p8W`_L=2!;LD+>47b;a({)$<oVzn532vgq9ArpD
zJw84GO){D}r{A3x)Gg@o4@~;!r)5Ed$}#pA3;d5`ns63N3IbX=+jMt26uyv@@*RkY
z?cPRmYDG*-$_dmHeZUbasIq4C6Q5NfAAO~|*+f;n<l*h;bnT?$2DC(uzKqd!8#!X*
zx4oI|@k*WcK8djOV#C3M1MORjn`2g^rtatc4V4ceNL<G6x1xdcByEzbT)Q#h_VQ5t
z+qY-2LF`z!c2r@kHgF@-2NB|kd+D*8yf=8**itiPWQyzEJ^;ilecZyQM31`t?78WF
zPBF>p*}%Z=g01db3JMsDsj5O`n#vDh&%^3BqEm|-^)_pAhXtPO19USm1QD-PSvPHL
zZ|zk4C3GOWdy={YICqb;sj^*pJT}aQPbrEafq6z5+R_l-)6k1HlhRiq*KN9Yk6|V$
zHv>WNyMBS0!5&}mJxA9GA8FUTmiV26rq}0>^;#sBUam+X4$}jwGlF40H)^kNt#cq!
zT*kTi<5$N{e6Q>^G!0vN33)eR6)x+V3E%R=ou4}`hi&*sbNM#gk<)2IqL3|Lu(t<(
z;^pkgGNn+ujosJgYYNo7$RwTH5TVU$eK_4*^YxEt1s5oO&LrvIxJ~5FTsnK<+yXHl
z!_QoZ%Ak3K=_59jiU|0l<h_UZ45$DwlScwzOxxVYLtkQtEA#*$Ak^o7cGcfz)PrdF
zB`Y&CGty0d3D-85)$Iho#$*6f;)61XP;3fK4Das__rLL*EM4ReFnJ!Q%to=l$DO~v
zP!U}P#?y-ht))vL5%7uw7!ikNK0OAhHgAbE#p8hwSqAcB{aPtGUt3PJIH=$>vmPP0
z5<O;Mv$`pqPyWEm7EXt!QmL@#J6Ww86%E&?vU_WFN)iZ_=Z!qXnl{60lk}nSf=Dtf
zOupzu$eE@u3>N0-ynD*AlYp5P!;0)(OyRfbWjh^AqP`z_PS%N-<8kFm7KUkwg*7x4
znl16@Xrh^ejZv}dWr@=W4^<Z?x92?!loTvFdjr>>X<tu3A3~+CJ)PMUVIF?2!mTJY
zDnj6>L37YBdN}Do^l(1q0D}EoJ42>nJx{q&!i5^$?(uO}g67F}nbb#e?`DTEWICW6
zggCjDTT-Gu-?$&#BoT65(zBAZtS5^WMWxq6MvdLaSliZ=!A<X~rJUm}bLmb-mOHl7
zoSEPL#1EeR^&jWrieSI5Q#+DPn_4fpOQPx9JkuEFaMGm-`ON9oFh7dlT0@ZadMe>O
zBV&spd)!*umaaZ+R`IBvdxYc36RCHgFON@v0joT$*2#9jKPfGoRg>9UJsH9_@?)}1
zz^uz3M7b^&I~jGwJ({U!@Q$CZsXRZjo*j7PXOjjVmu<RYce8b8!n>{Sc};T7pJs|y
z!fdpozQ6}Pjbp1m=u)&t^<r>7+}z(KSUQa6^hmlz#O|kf(8r2Y`<A<<IE>d2b7{21
zC&dWe@%u`@5^NNB*jJ^n{s7jd&zxfKN?(!!`FN@9rt<NhTJ{kylL*jFt8Rv2Kl@|1
zkwVd?QQEGK+}+$HRNn}?TMO|Z7sx<6IG*Qhult&<cdvB01|~7+<%Nfbqblit(-#!f
z5AiboBTo5y3}H>C&t}{kohl(AQ9JdhY3u6Y(Z@h+`H;i-=U~~-1N4@Gp?-O&u?F^h
z4N6Z>uMaI07tjJlK9(FD(fNc)96ycJPc8X1RJ-MQA6VgYP4GfW6&Zs(c8G%V=Omr6
z$cVc7syZ^)r}rDn6<in_?-i~P%m+W3{Z~jUV@+KVQ+61AwN&^nPT#==lHFMxgYNwZ
zo!hBbEHhEyq@@wxL6D@V#AcY=RX&`h+d2<d`TgrVM@f8vw_ic?fsHS2t{Wz%iea68
z2(fnc<j2qF)nQZ>5VO{x)Y=kC0+Pf|o07cg0)#TVy9vz!%@MU2_*yHWX?P{OicSOw
z>0dDLaSY$gevQ2H!Xgi4KakG7vF&+Nq-uJ0{b;jrhj?~kEpCc<z$nq69MiV|1fF5T
zd{m4%7&`C*GAI;}D9iEEhZ8`NIYnwY1Ik}(JYs)l=WLgR?WnbPs+`JQ{0V7xA2m#e
z=KLutB~>fn{r5X1i@_JWzM~k<C~JU!sEz+X`~Num3a}{Gt!+UN6p;o+S~^9fQ@Xo5
zr9rw&N?N)>x}>|2M!FlMr5R!fiT~kz-`U%}&-uRpKmT=kc?~neFf;G-tY@uz-Rr(J
z71P;=5JC{wnR+fiI60N(F!|5sp#7YyE;_w@Q(Z-kO=ob}j@RDNK{r>L!(l%6wpU(j
za^7>MF(e|QHi6geW268OUIbF6(xmgX)}_vYR549<X*?e4>vpLZ7Y$@b@mmp0h%v&t
z7e{&=Y5hQco|?PSycNTAp$^SqdrWBi<6$!J)uk~t->#pSpBE9s!NwLn+&2|ZYR*Ik
zuw(sU9T7Eka5y0^@y^VQ>Nt>OjJ?8}t+nPQqoCMb_YYvn10Xl0%ih^`1aA$MX?Q3e
zJHIRWv_(tDcI(}3a*58gRp&^91I-hpaV`uycCXfYgC6PdU{rK;$^E(N=;&48PX1`y
zA}2Z!?w^1tSghU~kKrCYlC8B`j0r#EEuw;VMH3N0h?+v$T|eFuylpa}TyU7CBuj3!
z(}&@K{pT<8?Y~0B$5+Y<ttpn9YJ2{dGy=3|^B=-F+wi-)H?i%s*_%Nyt>l%(L)i+=
z&}kL*WhBk4C6$;Rl|mIrwdQdm4sb-2LRB<+C~0ZsJ0-Xfut{xnWyFpA>*@?wv*;1D
z4Lu;M%r=S}Tp^@~T8Hiqsn}fDe1pjxpKAl@a<X6G;0&dW@g>CTe2CV*AgZC3Dvm3^
zxaBD~mWU10`W!D{i~_O-mq&wxLzw(D*cy`)pA(-;xhp#8j-vZXC`sY3{WtL+e4@{Z
ziDK>_WRYUqI~c@2J{~lFUd=`fl>holJu3aXh-8@%**F_z50{$lL)l%9Nwr$sh1Sd4
zg3=QwiRtOJ#c+=$7wYXOINYEqGi+4c+*$=1vyota3tixJZ#J5Qge3crw}OhZ@t6gb
zn(_6U-#Ze&-!?;rK};|klz<obn~>9gJ;{vP$K|A3VZMgA%5gt^EWA^Ml7T_z*z*T}
z2#ySeu`z-kv~>5buwZlgWn;@PI{%B;WL%Y`0T+CKC5ARgwt=FhXCBGAx7~;PTYht8
z@1;W`{N^LrSSfEIU)ntzM@QuVeHdal3H^8XQ(aNRXiFQnR}Na%#wiqTeQO*GD$^yn
zr7|yBuDjKg(4(Tnty;#uynDFXp@{N8NuTo3Uq<MEi*@;O0H-XJV?YS~x6jBAgKOei
zq|7hi9Zcrb#%nUDh>eYX6T7}{uU@WS872HLrI;D4PXO`_7L)38VmB$%nX-(i;mDV)
z@(yG7g<Z@)T0I3oe3XNP6dS1!-q&{6cqk<@>-**RSjs1lA1jYdV)X&nDeZJHJXzQe
z7y3WVugW4lR-NWg)_e2ME%4VsKS2pA65%g_<Wzx`YzUFp(?hddwn^w-tmUH;_}91m
z1crfup(|!#fs5>5ZLPTT1ZXRXlaqi*)tMZh@2g!Q$UZFvv|Nfc?mi3pu=)j(Ik>S8
z5rjG(EC@wL#&6JWxC6Bp4yOaWjm=GJ7d$<fOuW<msFO+KOE)C;(yuI6c59A+VUd-e
zZvt$7q8ibRtLZr4@4t~h{wdPH2&7*=-B2oueEvte^<@a74EK#;uhebS(+pR{>^x(|
z;WjW8|N8=^6(wSjIY+QVattfEzyFIe8sNr|djW%-W7{l=czr4chF0ZS6oWt3uNeW1
z3vtlZfDMncPnr8B8zB%BV75jt%WsEk03~xlfzlRCAn&v-A__`r*?#QkyYbw2v7>ZX
z_e~QYYKk8}bY)svJflR&X~f0q-_dHnq4>Z_L$ixcLSlDSrl<uaaX2COA{fPTR4ep4
z{hfXFg&6hubH2p}2Zawu#=ZEQj?|_SLI(}zF=JR>TU9n|hvK+s|BPKea{@#h9EHL!
z%r&yU`Y`@iR{8h;WkVhxp|IK5^sVN1jeBqZ{o#Kgo=SY)tUN(MK~(3WxaFTq5VCEZ
zl)nXBr6o|$;3xgrX?%c~Alf!M8aY>Moj1Ybbijp$iAiay@ap#Vc8uHuS<t~FA~hH4
z<ND{{ki`a(;X8?+?LXi0Z@cO*yZe8=KVJ`S2IKvQ4`upF_V!ilUF=d~$+(Z7JjwL-
z4#-s&;r{c*DRE$SZL9fT{dv#-`(OE=p84A60oUuq2alD0Us3<@?JpdU4ULQx-oMY4
z!vLvSXk4uF=cp)2;8ymi2ykL>2SmvKT<8fB4`9jdf-?SS1OB!N{@4xw*BgqAK46G>
zuHG)bOC;=5ouE6>pTELqgkDxMFf_{g=O6v^!T+zn=FN9Qu4`#zq}2LY7y9Q4_ybY@
z|Gg0_+;+7&m>fIB&hek9c>Z5jK>jk^*WL3|Mz{aV^Zutr@o(<;`A({94nBY4O_ufl
z+pGFKLH{|vRr3U@>v{sbSrfEhF#i#N{>KH@1_wLEYQ6L}1Gn&hx?&SbK*3VE3R1aQ
zwVRCnwxU&}V0>?GN^RnofeWQe-CT@1j{kprh1%dOe15As{`>uXIeyH>!6E<d9SrDS
zDcyp?!7pgIS)wG3#~ymfYr0&zoMbfVi^NMd{K$vH(rSq|cX&%Cw<*OU^?FD8X$qLo
zIUGr?7?U?S+qEm2#|yRAgC!uKSJZTme)Gm`%E5TWbgZB0VZPF*te?<jg`DBDfi6w6
ziIKFgWO+-6Jo5>;t<Q~2?aVa2_P*gIKbWkGhkx|PSmcBOY{B-6GiPYR-xQqwWqnUb
z0|l1Jp=o60--8|adM99Ei#2L<K^FTtFOOn&#srkbI5-OY{IDQDl|UDq*oRlazX~II
zsi9HfWY40}hB;M?GRw&p>l}-(wP2RwU2xLY*vm^91JKM}fA7BG;b`C<KuJLnk(s$F
z(Ijl!{oPuJ$k;fHh@6}}=>4!7HO_WQ>%}!y0k4zT4;6qywqz<OYX!kPY#1335s8kE
ze_8&)|6zy<pnL!93_?`DTvQJJ^oh|VEhGek*>sF=qV)suoG!kEv9i6SHHro<>w-i=
z*J}1f_D6ZCfj*jC?mI)-I|8eT(qtO{N9?kKirNL1W(FC7@toXm?mW%#Fh!-usx>tg
zCBb1(Ww54mx)pa*Z6jXx;?MJR=PAq*Dcrv<g}=!Me6fe!&cRV}p@NfC3dei+JDKbL
zi$#FF*H<koD??YPt^w0v$S;8=wsk7b>)3>*7cV$lekB0YZ=sNpXWaREAH?F`+Xoh6
zlOD~j22z0vZet5)WJK>I47!jXnND&GfjZ_LELvxPUV}!ar|f6m+4=d{-qMm#vO_N6
zRL=OOCDq=0B&>FEO1ok@F3sZr$(LL@h3yl0C?V;0aw%;=a6CTRReMvJY0z@)?0uBm
z$<o|1P)8|cd19{9i3AgE!bI`8o7+WAOLKQ^$y57uXDqMx+vvN*km@kzOV-mIF{T4z
z6d6|ayAI`?r+=K!psIKR3v!yGV7<=g*L&*G0`FbTq*zdD{#c^_(++-4^Z+IrhO+lx
z2&BQNKj&*pNwoDNBvw{dFkil;>BOVeHXF_KKN^ycWZZF`*WxwnBF-Z4fPu~BIQls3
zx~J_6o165ux-S}mW|a(D*Qp)nc*rgcf%Hu@I50I7JGqH@|I~_>EGeU#it;V+;a(Kv
zeN5$V|I;u|%tN?q6RA{U&!fP=+}PHxJR|fgNi=XK5oc)O)<9$E66_gY!uN{y`a-zK
zlO6BOK*$b#)__SMloy^-ggovO_MZhA+5P)88yf%M(ciw72{I7RY9=a-Bp7o(euTZJ
zq62+cDg{Hv@ug-rVqN)9MDjX_Z_U;vEawA8w#Orx9ltw;?Yy!ufQ+5KupZs$w+Sxx
zx^)TVxj9wY8OtGaajv5V=EiSaVo+vh#i_}uXn#@lecf(4n{>E3p3IH<68IC+=Xu(&
z9$P@~_XAt1Z&BdYj<}d~j=v1O+)`!bn@ZF51kTR4hj^UNVRIXfJ{mmxk3Omr{{z@u
z>TjX%{ubqTkbD50=QEI>NH_rADmkyTqh6G;WwyY#c7L028W6yo%izS4IEmnJi-BG@
zrId&WDLx6_+_%or2n@?=8<{c$63=~%a`xNnyj8n_45Y;THU$QAbF<_7Yq<*J%J>EE
z#y1Tu4Fp)x^|#m42CKX}3gzc_aOOlmf>v%?q{Rnxq2w0VK-)J}A6ag$HnUSx@lC(S
zWK0woPy#>9kxL{wkb%N%C-rA@9{i+kxY|rEj){-g$<&|`vv~uCv35pyVv?B6MK9s~
z?IEj5SNpX$WN^Y<L$4wha!!feh$<>8bL#C56^_}_@jX(fN*0TwDRd6GHdAH|{9lXa
zeT)?BkCQSz`eDV-R$(zK{C${Vq`+mjxVXUWTmuOHq_<q#X30ZG1UmZ0$HSoeoMNv;
zPNTTem~(r3Rj)3hb$a{yd~VN=v@kK(WmHN!$6s1|Qb5LB@s6QWpOp3W(H%M^#JA+v
zdn1u{vOmeBa-;x?ujPC-lH7MfPiIUcLqnSF%yxbCtCeAK*WS+>1yaen98UD&GZR}i
z&tjsYq?e1Ye5F%^vnkT?MD|HXRVrf6yKq{?T;gMDHt-d;f3)_d-f+i!C1lB=v{4{w
zL@^RQXF_wc!6kLEDWrkTZ6tpxm)m;KC>0D$3w}M_DT#rvHQ|RogT`3@AW)zthK2o)
zRuK^qB43*y(!WGvQ0;);^{KL|swf&-?5m;jFZD`ev5hhhlkO(5^%*1ZuF3RdYl+Xt
zzN--ADg3(qTuEo!;shnxaoG|~ZE=T9l2x6a|5-Dt@N;c;jgtMKP`W<FWU`oHvGs?6
z?FZYq%FbEPuG5#B_|jMTGq#-D{(C5yDq`0O)Dn}l(2sD|m=Pk+=Z)e4xl~x+DMS;7
zJfNj*Xx5=1c8?T#t5HjknNO)z$_Dxurw36ze!U`=Zn6qqxNpm7ihmiQc#s5ntpC{B
zqVnUjRp+TB0(|ft&@GkYZv*r9k`&T{h{Hm}#6F#CMcgk7=8M*V@$HvJk#j7y-KqTy
z0Khmfme*#danFC^s`fU$_VDeUniB3|@$#}Zn=YyEb+WI*vBZ6Ql*tg!EwFZ=K{Uoi
z$isGV<r-XB;6)xf9a^B%s<Rw^rN#l9TW)ZL!6aw5J`D|<z7y%|+m6D=wLzP|TWYK{
z*{h4EWM)=4Ra;^_Lw<tfh^hwf&q_v|e7X7^gvjF$)fvLb%$jGvO2f8)jO4akU@zY^
z-ub=pAH@iW3e0Pa+T6|Yh@Uz=gt5fWLH+H#_%~_gzp0GyVdo|dIA%rv7AC=uF@fIE
z(ZaG(2??SE1O!n|u`E%>vG>~!V<{msD{FhE++bt7VX8(Cf)W_|Qq2DBTI|?-A@n-Q
zPgEbxJn8tjr^-ZAM(%yk<7Y{y3E-H4e49j~pkk%*P4cULMZt<<djidxO}`aKI+${%
zl#h6^P(vf-wPsEhvLDuHpB5Yva-ZxpUB8U<tqhUZR_`487L<1R{-w(m{3o-#bIUAi
z>>=9XAT^_O4-OeLhVsDl@jQm;*4B8`j^0%=0en~2hOr8UH1d}(!{T3K_m!O!V)NT@
z4z-@Ad14Z#OVZ-5wq=q+ACU&e(UFxhK^@y^kRyto#WVC2MvGrJpL=Ca7QN-qsFw-P
z>q&Rkp(+~atu}w$$xl|Jg6*c&n#K<l1KM9=Ao<mC5w8R!pt#xT`(O}`=S5@#|Bgk{
z6DT2@(2_Q;o<x>#%ldwCkWQ1cl=G)3P9U)ul|?pm&9S+K6BQBB2&@JzXJ=ia5b|iZ
ztIx1Y2YVx%O(qL1GmFW(?d{5mjYS5lKPOo&)S!14zA2%=dIE#tre}t;DVW!8r<j8k
zGL*s|4WJMUWeOQCh+n7F?%DUR-FHfkA0|FER8-oEdJb}BPdjxcyvr1pcBE$)OY391
zU^&7zzW%rP)Bmz)C{rK6N#>lqqxyT9mmuWrFOH|m#pJlBDrT>nRb_0W&=G)K;IKP&
zPZgGz4&T7OqVb&=5k0-cI9>VbhP8W;cJ}6sz@rt_Y~iMpzYk-aHs@;-8nz&E!V&Li
z%B2_N6f>C3Q8v4{*wSQ4B{_(jm%Y(NzLb+<)F-USA)vwQTcEh>c@o1m=#c^}xXdZ{
zn?l-1A5+W+dz&m{WeW^_D*8L8d4|)qd6}1m>LpFY0#;bCcvg5=9;vxfZVKpXSRpOs
zG6a$+fG<_G49_5?1pEu9_j6^)7~}C~#?eDUXWT|Rn1n~W!w^W{N%@dA^=Ho7#eJXj
zdq546MgUgqtkYmU6`XM!OJq_ZeW$}@Qx;F`5h4C4Nr^IKRx<U91EN~t9Nd%g)&;G;
zo_##v%=**quhVU!plZhuwvdmHp8X_Q#h_StXK>K0^{M08tw%tOHLv9Mwpym--7rn*
zSJ{g919j0eoall6rS6tvTu4YEKTAf3gIF|bY31Pbox)v(o8m35_vvhHY_f+^+c9Aj
zgnHJ$eT1#nj@HL`(s{9Y8x%a4SN0zFn~dx$w~!|Zst<6VKR1aJgF>NL*suFwTbr8P
zjrJ(C6UdiJk4Yov8H!lPvtOKldZQzz8StN$*s?4zgDj0k(*nr<Qm^{FL7bVJi>j{P
zWDLPstaQEyhn+P!Jg@84gUD1)fdYpx$ln>VY8#ZA%pex2k8iFZG(gY|O>$w(z*}0)
z1;f&9`5iQTDAQ%VpyU3$n+X|n3L#KwIIuhP6;F9pdy2;g=naBPXFny#Iwdqe+#czi
zuB;gd;v0AYMWgNd*hWmqn9s7ZhGJ9aTKLPNjcSw8Cqhk~Mti9gpnl3C`xqFA<goXg
z`goQpQoX4&F({~@$}OUsGa)sV?rd*1SC9~^&-w6%Fm}@}y-6lWMOhH~s4J5UyUM1{
zmP|Tjb{;JxfX&&ZKA7na<QS8f9%l_v?}w#QIRi%xm=1Gwyj;TKyw1Lo@;#ORPKPBX
z(XZGbF4l)?GZeiqEiR4WLQjv2VlBS$L>QNO0+GHxSwaO_ht&w#<~C~6BWxG`%Jdga
zQ7YAjNH|^wp#E2eH#Hp(3e*I0(*RYkgY4|j@kQH3Zp%ZMn3)jL^D_}%S$Y0o%~Y;t
z?ijXvSoJ^p*ZsKdVYCek<-f#-O2qtTI-3qZKe!cBu>(JxHJPNhL3sH11!B?U>%d*l
zrFIk%W1YhRk`kLHP6e43m!#WVePK4&@M?B$R^lU!x!BhX2#I25X3z^5V!GHQue%bg
z{@z50N;?$=Q)-IlB9>32CiYlKGG5L;O?6sAj3frhRFrO5m&5`u0<`J0Kae4LWUPt0
zr3Lq!pra#!R?Ank^?WxryUjNa`*Y%{WUKpg{**2R1SO}pZV?h6Im2XqMeW`*@Y?FG
z45e}RY#90vTbLUf(t^o~Cvu<&r^(4R^XJ4O;46K&`6@6oQ-4K`nnr`BCbH`t2=2Db
z#AdEX-=<AZfAYL_l=NC@7Na+mllbuAfyeb|^y#;;bTSmBUmKZE(oas1VtI~9OI7eD
zTrORbxQxX#4f=kV<e_QWrq|bRG~QJx?c?oj?DoA;_5?iCP7$R?oMKhvfgnHBXIy?5
z5ssyXwnaZ4=}S?d#2JSAnaMK87VclR(Z4yoe|wHk#bXnd!WgaE@8&bJvvPooW%8rV
z2aHB3Y^)jZ{r1Fvyv*xB@0P6ytwzV~w+ytjm`e%k1K!>b*wyofXSZ3O4lyuOY4@F*
zFGvQ(vyOc+waYQ(xA#L=5m9aH{Ps<3tw4+(332p^Cw)3QiE*;Sd!G<m?bQG}j&qix
z=7QMN6g<JnfdLC&DRfd9@c{naslgZvR#xMk5n@HxO{?2wG?G*SzdF&9iIL^w;T78J
zmA0>7UYP<#iE3-%u4(JTR)s1RE33|n5Fsf%JpBDwF7^t~8|@?zNReM~L}*7gY2tG^
z3qxi)Yj}BfwJWj{C|mhxbg3_71{7t#Kv26_`t->;IbY5ShNKvvS8?$tnU&Dkaaz6j
zYKfDcpBh+yGZAyOU4V<CY7tRM`ZJl)>CG(XjDnmTn#V=AtzK?myl{4JP*qF=13y-D
zH{svEy8q>b1P|pC`QSE7?R|OY3+e|k$#U!Ema(C+`0as2Ch+EFUFtsCiP-)9CCk`+
zfM{i3Q5f(D{_I2s{Z5KtZEbyjHQ-&?A8n~9e!-Hda~9W6EQ)-zo0zn{mkW{XJe%E(
z&XE0_2WjgdNS}DO$nuI^PRmd^#s7_(Db+glU{A+%dN=P4%gqIJ{Qa4nvJuFG_RV}k
z8jz9bfYk&8D_L^$TOpn1l5Aw5+sm!58GBDQQhD&j7#YPT@*^3}>WiC&g!rxk#2AEv
zh>#M+F`xHQe)bdE^AAQr5bHd?*@5rGv$V7{S?|@ZdLLFIIx5OaZfG7BYZ)_~)IDd5
z!NFAjz1n&IoF?pL9HwpJn4Bm^u{RaDoSRJYSj|@sfb$y;{UU8W)UNxG@ztuIcFXM(
z_l}FJi|p2ccIIu8HH*As?q>6V)-eHj;5uo?A+s&}(0>%iz>{%dnbq4m2@=-ZIPn7g
z{7?^NJy$y)gXyf;kPm+cfPHWUh<JH*j(@IFHaR?hBfg*0_w8Nd(X#AfL)6xKAr^MQ
z*82Kp0qI()9}VPKSbnvXO3LG5vb-68-<B{1YuHvyCV%k<-<M=P!V1xG`$E6GKgVHW
z$niji3cF-vFGe4p9?Kx~PA&N~JZlM*K3EhtMv0@hFRz~T;4-$>>V|bg(`S$@DM>=+
zJ>7M2G4mJSsi09=jagsvpdf_|ri(XFzasRi2w!r(@oGmJ|EhNW9A90fO`#&GsK}si
zKzyLDzdvu8<sc6s_bFDEUjR#C=V)Q>?nO52cJody=~Ow1b;PlY)03ldPba&*P`z?}
z7voCZZ?I3EJ!2`l><q%7Vy@QDB!PZ3S~C=wx(k9|)5kE`%54tD4@)*{-XhbIkvm5F
z`;p*NNUFQLF66oRUNre9rrg*{X+C9XcA)A@1Si{PdxFxp`(V%_@lDCKP~xapvSn^{
zDuzq-i&t}tY?a}`NEL$z9Vw5N_IsjZtMPMm=H9`-m^)+|*na46k6iPSkAQwEE|c&H
zL5=A+d2n!WRLFO(llMk|ahgdkl{8Yj>?x5alTKeLWu)|Tru>yu8doB{R)b)=2Q=}U
z-bG{8!D6F=s%iqIPUU;#R9>$oT`j|p-UV=GV;;JNgIL8*%O2;Ez%t9Z^~ZVG9J*Q2
zVzocR-XD`nU^ACJg;~UskK3-4chifI<aRwp1+!^yHr7=gZ6tGWBZmG4u<vmB0Jj-p
z-Bsil&aWPMpanEG3iEXkQ8)Cq)U?^395b5$j~}+zSt+4WAr|YxF6?TyF}Q)%SyiMR
zX}%>QI`TWr=HrPZ;qjWE*H%j)xlz%HB@-LH)gi|D26vGprTdn?{bah-QGy~APzyAV
zukL3yu0JP@NO+9C^;G?A(T=g~q`^d@zX&vTsJpxUMa9mpmYUN!K3?hP-M6@?<_xc|
z7sdgHfN)>m?5XXeoD3$jDjyGq^-jONGf_)xOG}N48ta{&2E&YdW>q0yX~Sx1OMV<4
zO4-;naJhR_!?I<is@DBDTCofE?(3Q@^OoG~5SX7g@8ZU05z1=}4t;^I!uKs~zi+nO
zy)-YcQTW3CRq-d=<6wuq!s4K8KTI>cY&0sy`J7VE0;bq0{I^JaY)sc*p&lZ6=;*(1
z?dp#Y+-_2sjKiJ7w~)osTs9Nc^;kpUV90+=dyu=-Ow#tYQUxWTKXd=`uzQH^Ge7yY
z;1pDyp~7%iksc;`xi})qDesqm0_8@hS*i{7tCg`Tih7n^i4x))%ANS_SVp+})@nW(
z8~}=ieGyPt=I0g`G+htsw*(up>C{KOVIB%{k&}1R!i?w3W#xkqp1BX^C``bd$@_VI
zY2O|Kw@`iofiCs@t#mK#ylpTF*<~CDl(I*=LU2rhl`hA|E8$Q|z2(_TV=S2QkqiOT
z-p|CDgTPn(lNyn?Hx*pr70>Ig-0xpITK6F-E*S0E*`$SZu;kT?pl@2;eem6#?k~+W
zzClu1b2!PsXZV@--Gh*j5TX~)pNo2WdfJ17GdMK#Yofg#)?dpqzUEhLoUg%bsLntm
z@HM@+N5Ovt`VY!u-Eh?6{v7CfGJ^MMb>6wP%KP=56{(i6q#*mvFjBH*S<-_j$G~2w
zN8o7U!v@}g@0KLt_%T@%2J3Kh<yQ)1gOM76;bbp0!oH9~=8RI`9N4XQB>9`&bW3OL
z)9|8mKHpW0LI?RcB{$hS-bTSBZhHK?6DQ)}it5U|#6wRRiT6(#<RX|ZM96Mrlh}U#
z_r!n+tHaLgtLqbF@e}U{gk}@HWx9LUmz31Bv?LlDFL%7$C|nPl(?xZzNu3OhjV0jW
z{cYv9+}8qxue)y8*k)et3*<#=uZ9@C{OP}yhp2HH9J5|+9wgpmJ{@O&eIZ0PxSAJ$
z+#Fk#L!v->2$W{8rGkP2xGzHSW+h(i@H<z5^hV#HdfKi?St<t}4YIQ;9;9M8(0un^
z9F`opKMh~&=MS4=-7;DOU)cS=A!WN80&erm#oF12pphbMuNp_EIRpm85CwpPi-3Z0
z7>+=94_VY)zq~Gn*YWX`bF73|Lx#fp;IRDPJM^-4h({kywEZ;aPE-cVvE#hGiD6l*
z6UR<Idz!r2c_q|jUrCu>k%=PfIG}f9W|X_X0G!X!RYK?MWnH0#*Ml^xPOa}UP@u6*
zA`X#$k{*;N!BaF=iI1`XRf#W^<U>DQE#jfbrnGqTN<_Wo<Qd&$M8ohH$djw1Sv-$p
zTaxK-nw47@1_z}?niOSai7XMZ@+#8`jr!xBNZbw;SHMdGQHkLDk>mK5Wp3@ci9vd|
zpBaJqfc<a3){U&*U|%r1zpLRJd{nse>q|>Bi-SuGErAglrH%j??jV4We@6U$V-v}?
z>^l_sXz=rYoZ%(~?q1-u#~+*(vTgOe5p51}VNM7n{##Jx<3s)Q>62`l+Ke0RohSvu
zEksWGWN2u*L@PRE=i22MiBMM8F3h=qb}@R>^Rn^H7Jd=0+-d*`;LTz4T76KX=#v<$
zbFu#HB};kFj5j-!wu#&lgSOujhEZCM6RS|A*6_)z6l5BlhKj_`cX?F5bh5X9B*(_L
zDRcUe32**PmQR!>a+8;~E(x;v#C21nW0fi=le*&StUd;k&Q_%N;W=_Ti;j}|?a#dQ
z+rp#gtd0-3k9$q@SLD-q@J%jNhH>{3x+IE}tuZ!ed9EOV{u4EppXAeV_RkKN#ZJq&
z&ue4dZ+bUqY{aL=a%4oO?FD>EXmg@`dWTX)K5>i1Vh^QF1`l*ExN(BIC3puJ*Lid+
zeUQ~{V5~c;KY_x|#i`F=qWKqH`#4rSKpG@C%Vjb%1RDC4au$(LC~X|puU(4EOgFQf
z6yoXWXcjRPgu1UUe!*?Kjt%JE3f%4##JuoY@j{N}kZ7gRn8{OQVQeRn@swdctF!NW
zv-BBy$U)obY4M&<_hG~NEig?p5TMm|g;w{(nja1q2b98K<OQ1jevu~yy`AKBs!Y%T
z-4A&+$IKP^^;aWA(%X|4Ice8E^5G@f>sd7RoYhe*_>eKKldT-V5q}2P(Mc&8`8of=
zhBHY~_-7ODfl*GcqAE)8-((1N6=527D_mVlWoCK9AO(FjA8h%GmCoe~PUsQh4`(|{
z;t~=xHkepgRA<ibnmqBLN%}!$HfzFjKxq_mE`8W^5>D1YTOHBPKbR{Y0QZXPcB4Pu
zbZaQJ$~=Cv(W1U`D3!BcuDoE*?=gnS!9u<L=}$Sb^k(@!VhRe8aOJr~ZXpP{wfm9v
ztGH*)Zs*t@=X<l`V_MUFx76)Lg@?Wzm#`BZVvtRbd#2420v9*;E-}31Z(UBlHdG(=
zGbutZm~V}VCpehbM|6knyK8H&7Pu?x?vIb}`tJlVgbDr{!5<(hlEW-regKR+{VaHF
zzo+;did<PoIA>-uoYz@-xAZ}=rYa8SgW3t3p5>9CDU8V=YJuU#G}o%9RIq83mp2x<
z-zq=-?fi2!DM_8fjH=CttcgxGb*_wvG0(v$W7DazbkeD*_T6y}FVW#oW0l!q#Zbt3
zd#fAOt$5v-aQIhGk7vzCH#+Nkn_{2||JHi;Fq7_1m9}<xnCT`^Ybo-gvL0i*ptSah
z+f~FJVJdrFbmkC2bRg|C&}ffuQNQIJOz_Mz;kB~xS`~Pfn8?1qvqMVZFhrwbmE-Bb
zDGw@X&^#LnlrTnO#0*KE*^R<`dc#K_U#xkFu;@0t-|i-_8bV&Ry1TVbVp`k(w83d0
zM7*J@mvz}HgMxt2pi11<wxQ}ZQ9u%_H7OjQj>qLwKpc?ZM<3LtwO~Rjr^UbE*`J`2
z#9LsklwEF2sdZem(*O0;A2fKxQW8YNUjBN#GR|o|JW;@+`@<r&iVPj=#fh*wT54mA
zM6Dl(eB*11<CB`4PRx#_+KC#D84bDC11l05`f|S04EoZ2$RW>NB7yrJ4`dFd(d_{w
z<5~H1$vEMzQ&A-<!f(ZTK0KUywV4n@%LNHL2geih%UThrEK#2MH%wg;L`t|Pc2=?r
zIsvRi<>wPt`O%(wNQ<;n^rtEuuZdTGU`Y;zH3TJ@8hbKl_-_<0u+^q5XoL}I7+W7B
z;tQItXwXfwyMo4UJ~JH9BN1@_83<Akj60pJ*I<6QkoMg(ufV%e5yEX09aGa=&Gv62
z)(8~RDMUO^;h~CTfpi)*y>h8`KvFDf=sUHC9aRnq2@w%m{?4xlBYz9SI{@A*Ojl<S
zSz<RjKUlOsUKcYJ(HzXg)qdWqBmESQO}0*<#7N;|{qK<g+;;f%!1`+&FM46RiXjZ#
z-Gj?thph^RhKBe_HropIwpWNk>C@L`W(MYYis8-naoXu$v6d*|ACd63+`QetTCw}y
zKXs$0q+`;t`h{#fP(gVPc@*iMgQV$nkN)->=ixs0p=6*)#$K9F4L?};;tVXrV-{LO
zU2nN=^QP=#7Q}3*LcGySgvT~F4ykJ-z4mG96K$u`AL2Z}@=-S>67syzLuhWecxh@p
zO4~KHu;6}We)#yxV4gU~OkF(}J^s~rZmZaG$@;EBrE}1Wf-VU)wfZW%X|#IRAUkPk
z0;zNeHa?HL_I8#a8OEEb(q)O+**U^NWE<y$O9s*m*`%?TKo@%niXXT=l3_=(EXzr+
zTON(K&cPaTXU9y6Md>2%WvhB}LN6{lqRDBS=6-0KH0xe=YOK$on&Yn)(JF(0l1A<+
zwQlotG9I{2Ro95e-KZ$>oSc0L>OVt1GulZAm}`LwHTA~P!@Fv4DD}x|u^$HYA@`~m
z4zF~?1|^B&U-fGzv|Q^lV`2XcuD@Wev%h`P%=Ihv&EYtQ-$R8zYdRke0o~J|qrs|F
z^z`8b;ESn<2@K$P_!y%A1MaJ3)p9GQVP~A1wACO2wPpWWvzV!7xTxbE8Z~_{Hr=Ae
zQ+g2;lYev_b1;t1&T=%Yn`37<4TK(+sy#tM$_mHlRL*Y&^VxdAa~&~MHM4~*M-8?c
z!QaSdXOqqq=@omBmFdaG7Z+3S{gJ|OnW=M>FN5o34w8Gy?0@jMRPKS=j`HREWTr>8
zAR;!7)-+wR%nunWJPi4%QENpv2mk0%(wt--K`qGFn@{mup<b=h{?wAHJ3Oxq-?$y?
z-*#_qA09HWRU{1e^&LI34!AmlLa`4Y4n*#khPO>~x8fw)Evigdp`f6At86;Aaj__Q
zR`VR=Pp%5zm-p!ZV22JSU3Fc9${>3&hMAM^1eW*momSY`?5x@xRy_v9_Y<BoqnM&%
z%!d%#Lur!u$tpWnS79lp$I!pD*t}=q0AF;_N<jzr2!-rgh=(_il$2CfSop@{(Fe!#
z?C=|5(U0El9MxVgHw;busbX!o>s&77K{vH`u_qm5)X62<Y-G*P%rZo`vsf&!g)>rJ
zpTH;#bTQdqp0-9IP-!s=Y;!A0QMnNVen&w8Zu!`%im_~|wq+MH>xYpP`7lJpqexFh
zYvP;y9eNi|=`Tn)nN&PHITI|Cax)c13fny!uN!R1(f~GOk%J_nshN@uk03=!*{f4#
z#ImxY0v1U<N3IT;LCLSzesi_<QG%wd1^cO6`J!adH->Ex9gXOaO6D$dOxf0760UEV
zCUR>wFA=Wf@-*h<H6>wFd0e&8dt$A(j^{YMX8ucXN%jWL5Uui_D64t_u*IQ3_K>tf
zFUPVrMOXk;#`2uxC8;;JpRISft*kJgR1)0rsHPq5RSpLW6(zG;=VH+)f1>BP`0=pM
z*USKokg2;ae&#qdkcCJ#5l%DtEQ9<NFQ$N|njP;3X$pDz5Q@C7c4gSJ<gz;tah{qn
zlX}m0M;Gb6qpYFF<0WG`hr-)9Dy|KX&$Yc$=nRXr-}8{t&)@F4rHZpYdk8KiAP`q0
z<o-I0UwUX~8#*`M=w$7B+(#jF32+4pIPxa;3iY~9f}oZgs0Q$1i<joTPBhpMAN;j>
zd-H4i=6rdY%6h4Z9kPWaBO`;)aIm*;0`!17)7b|ehhWo@VC$A~qi`L0OOMCvcqW1u
zpy0WS09z>L-qm(}Yb#GdCRJCuCxQ@1&1umAhmq#l`Jz+$?6M6vq!VMJ(pUx`<}t4q
z@Swt&PfaU<sPa1OD1tdlzvn$8>DA`bV-dW!`Ir#bQXFk(A6Qse`{&1xY;fo`Q9X)U
zBi3q;)!*bq-;p#4TeSN<=9s0W21-E<&S4Yq7Kg_h{Xse^H*KZ(I)vrr<(bcPc!8I)
zIP<OMZTCy-ksOJ5lQwUd(-8p_DiW8HPRHxxeuh)vK}KUafp$A+vee`<QDv&&P-D_F
z{ZuFKYGsghIUCG!LK?U)e)#IUV{`YV&)46c?M`n41-samwP_30E|<;YRhFv^>O)_f
zwQe**JZySR(P#>pdmU$^H1}2^K|xA#Y0!%h4#z97)3Vi*lziHJGQ?@WKgXO?!qLvp
z0$u9nCvf;NI1x{;MQy1MEvS3sEVc0}f{Uc^=)JK!-6>FFS_o9gm860!bvUHC?obhn
zt{R^~)_Q2plek!iwtl%>9IbQ?yX@>HcKPp}?H{dlm{rEq6*y9mlaFOZ@Dx_9eQItN
zV%aGDrxpM=_s!|}sz;~rT$9W*cS5@x6>S%x>u{>AlX@-|Cg1ZVw}_;-rkMxgK_}Nh
z!;J2LfehpK=Dm+NnQWvKEp^B1Fpm5;t|gf~FDQ8>j{~)r<USG-UHX0iFj&4`M?kwo
zba`MT^&7N~zl0aSiZg({?kKqGiE$16STU}!-PS#+6hO2ljE+Cs(z3ADrSq7A$IKPX
znp8LkSsJ}VM}T50D(k+JwnW`1D+`V&e4?htZoj8m2j*4=b_k52yVEAqtaRCg62&HC
zsY_M1zBc8`%T^`)O`R;m9^*$SZIj%D65(FlERi)OcjHl7nGC<d+&*R`AJ%)(=F0RQ
zrgG*%eyU5o*HuL=LxiC*-)~o7w=&Y|9=<DNF?yl5_JbI7@EBMR4AmxSa=18e{ZL=4
z&CWzC@F9E;=T@d#`=S6?@mB(0?veFep?75Dd#kG?*uN@|MCnZA7>-qX>K|g4l<|2_
zQ*I+@H+E)XLwAl38V`4HUP|@9<a{~zRgFN0J1xcdtAK}|pQa2QV$?}!sv1$p$0ujq
zW42oKYiDZxada3T@vy@Z3@}0%0sQnrD23#_-?*k3R5bVA(ukv<Xyp}#b+ppgu8j7o
z1O550E;Zv>JrkIWp8+!2==OLXyTs!P%1=TP!@PIyLG0za`_<Fh82qoWEw&M$=$#~t
zEoq*=_E}T)Sy@?KcZ+N7;bd&#t$O&Gu$_VaiTDt<aU#upjbR_UZz)2nFzt}BkAhXn
z<~fXjT|6g!v1Cbyv5UnGTOOSUVLmr4<i_Y{!<r3yne#UIpi`u$w-utHLOKh9x7{C`
zx<_UlddyKS(_%|unynl<g}Zn1T?*#=?F<gw7XcVp6e5(;rBC}tpE2^*q3>hu@!a6_
zF~GH~jvCfndZ&jZ7@A4_Tq^W7s%M`+tk*HvTenU5JvZE8@p;qo?JIY5tLs_ejMzt~
zmyxX&x+;x(`muyu&LU`+dNt62CvktHY~HU`J~7yn&9J;0O97MpIbML9y&6NwxEw<%
zp|5g=*aI;nRAf)BJC(kGUKp5Ha3x(^3Ns^2!r~5<cN{5VbO8y<Dz#+te@QoGo8f>1
zt9J7vU3=7gLs(YnTfS|yd9oEbB(t}t_>Ai9-%zO5qPnw0<s75>u-UHssT?ZTn3p(X
zLaBq-^ZgX0k>>z4NN9oaDdL0?Y*X5&E>55lp9vsBbfoy14y2F|s)}uC$`i1;W2zrG
z)gDwh>?+?o?j6C7m+J7YIQZlItUM=#9<`IaP=IxV>RD4JCMM=8=D{OjBM$S^#;u&m
z<Egf_Ya6iTv#J<G2rSgHuaX`3ZoLW-btV9fm98IPMg#N25baS&nCj<m1nEF5hXM>p
zq#w~Txt^LF@Rz;c#B=tD$9q4Jkbx*PbFu}ps%+%i)t}ILYYJ#e*KUiuhlhV&5@22g
zy{G;0!yOyDe8zXHW66Rof7-u%5Y!-<$GDJ&^2J6cBpcN8<pKo?x$ck1Q2MT=kW=5i
zMaSVZ?sgU^dRJQcMMLD)faSd+nAbHVaK=8l*`Ti-6Z=&GyrjESnF>)&`a`6a8q0a|
zp}oc6ef<>#I|FI163-vz;alC>aS7W1{PZ6QX*MsP@!QuQ=HG(}^et#Q?O|lrdU5W<
z#WEbNqXQMT2kjWhT;DWG2$~TDeOgc1{jkD#5_nW$ASEO)oxCS--?#f<YnwT(<E2%9
zfR2v-6Kp8V>9;y|9#^MSE5#BuJyFIj!m5Tfpx(E+d22Glw;<r&d}2N@z21Ss`}Jwx
zG)Ks$AppM|Ws+H>>JKhF0(v&g1BLwDBPuCap(CB`63|cYDHF_?kd7{z+vevr78vN%
zt58ev-9imY-{Y-UX4riGT~0vu{PDyK7>riMCXC02DcuJ_m+urDm-|sZU%&eWntYfq
zUQqF1PT$01GyUF4_^+m6e$iisyRLmdUmLIw1KWsHAm6L0k{99fZ^^vRiDYBah1^x=
z&9H^-V%tO6zRQHYk!?Js)i5T^;kR0aC)19NTrey)w$LzMF2ut%0IxD32TQB3E7uRo
z!PplSWgA7ME$Er>*sNveq|g)vb=^oGTB{WY(FN^it=Gp$KurJ~^sAin;Bt@XcqP`%
zPV^9ZNxCQCs&=-E057;PKYu=2s}YpD>l2i)m#osfjRU8k#~H&xiyP(7)5Nn2$Y7^n
z5h7*4x{<B6Em;kv^Ok-}V~f~d;d0Qmd5mP0Fd0juVltX3B+iJGUFQWA?C=r7uJ8`p
zwf)?z2yt4w^02!E^MhE{?6jw9<@)f(A#MCP*nwpu{_p~{+4|r7GuqnU^01X@4M38u
zTjW|ImVvpg$JKV8xB@m4M0L+Js1yx5rFS)v(V!dg9k$AQ;-P36o`R~iU0H5pY`+)i
zuWcTBBCGx&Ie!VXrtVXnwA8vLr6Of_^lysVwjOpvu?~d2EJx<o6ACh;AVpfIwb@+e
zpQ%Jg@Vr@eUPCS~XU|jnS><x_9-y97pxSt{^bp}0smrT}(7DcYc7zsd&;iK#U>G5?
zR~$PZxA9KYUe<@VsXMY%?ozwi{jvhptXR8QeF5kAh7^U-X0_9Hey}M4e%X9>c9wr4
zE;g2|Ve`BlBtAf-nWn4yyLMVAyq(3S3mG{%dPvTCn?WD!TXq!V-w)L*v9<<!>15sq
zhYR)57a5wKssPHokbqfY_I6@@_g`!7FaP_@iU0Un{$V@theek=&`DQS6`Xg%%e6VD
zll_kRXCe3-c<}(n?(qzpDZHdVJL`a@Rpb?G$no}jn~b0RQ&_O%A$&p<M6$z=%Mt|W
zw4-dwSjpL|KmZQM<t}P|Uj9h{n*WMbSB8HN;@6y*K&>4$KUG!PbP&A1vru0d?xM-!
zb?eS3!;_3L^DA^f6uiPOUE<HQq-$YCgUGZqKiagjCRWMn(*YX&7=<n6{jg>L?63?r
zL*EANwQR^6<zjU*94ce%tPej9_h&1^@#bnQX+*YXjnkD@ZT+?e_(`AbZHPf@Ud8us
z9k$+StD#VAX*Jl3K^D4J3knfqJqV9H3K+CkUCLjFc3I=8o_4J=IOxhn@5P3kOrF1W
zd$`)>kmhz!kB+B?+Dnr8{Tb+~0k(WpkAAYVo#V5LpQ7O^omL0&+%}M3Xh=1Nkf`UP
zR~_dskQmvI+!D)ohwzexj4ysi`yapxBhKLVm7dLBf9~XbRc4z`_@%k2sWWAU+w|`C
zrV9tX>0#iNUg4AsF2-N3+dnQyJ`SAcr4b6`8!zeQFE_E_CM)}G`LCw}3ZBggyySlf
z;r-6`k*$ZDAczPq6l?2bYEny(P==OdLlKqgnM4lnv6)0~Vi|6(<%ERiMsqwo>M(gx
z1vvFKYmYY8*AXKqX>)ZWxb`lMK(*a25V40ZTB=qoSz(d^4wrUEY`ic$_9$SIL)7%}
z1$umpQxxr~>D1T6nV2Nj-1jAW$RWOr@BGWl>r(fO0@r{l5UZ*Z_P6Krh#GW?@=k4~
z+@%6*%*K0@!n{Y_^R}{X$EIW1K`ByuSiQ2JyF_Sp>o?*wI_Fq#T(6U!Kd}e_h7_|+
zPl5Wlw$U=e-u`!4-3U$FAD6gp9vd9M%?b2TSu7}5Y3IbGrIn8-(V!#1>;uywPH2sm
zlEdZLFo=g;2in`|?~c;h-5u;2S2Yh*W7^x>JDCTjd35Z6uxc>3duxGzh^8z-a_qCe
z^|`rW9hBQhhohawW}4ktnXQ*Jxn{~K$Zx+af++$sK$iGm{MGYA%>2sV%&z`%C74qm
z+<n5tiKh)uvZC4hO<(!XjhxR7XOY5%We|c?t^Fl-fI1j+!#J{<RJX$MC_fVoBqQE@
zTI9NtWkhaQjK&9h%qEc4u1;7i?U2sQCu*u_K)CweHxV>*lgEw1zBYm}_mywC0)fxk
zdAz*58h#x#c75Zg!ydoBSc~8wd96UvzFWIFlqvxf_~kprb8F~|)8^Kmxy9%WGv&b7
z_)dQ=@VC%hj^cky;M>JwOW99e(lg+4V&(8-87@?-bh13i$!H0I7IPehc2B;wrC7b1
zghw2yf-+L)A=IMl+l(7bJh1mdv`JET@4k$CYL*ezuzY<Tl{}&L{Q&HyK;bal96S8N
z9(o$9@Ij+9|KG<seXgY18h9kronS!EhsbesphSD44J81a^=LXoGxPKPvuuAGs`^{e
z^Oqm_n#p8S^3EvrEO!+x@htY3k-|cdDhdZ5J^jap3P99sa+X6hxKG5#&L=QXQHj1U
zfn=QeB*36oSYo63YNx0Z!L3X_#Bjz}4kSkRReK)j6(lp`A%(=zX$S*GfNZBkQ%i`D
z00`n_2}$Gix45sd+n;mP$)rUPXN0n^C921FvD&^iMA^c^#tx>&8}9A>Tr@pn=dgf4
z`#i??`s&4Mp99ds4r1jk9rQU235IJq&~}FiC9&CLhC2t9GH)u+Un=?`&;6c2E26+?
zoOQ^ZCCEBt9Y3URWVBkSE1${XcVx!H#3a@1tZ<tG5>m>k@1FlnWc6=jRe$}_?72_-
zo?#csOA!=m`g{TgN#&aG_VD%r!7c*9``MB&xv0J0zh{DDJlJ=ds64?KV1@cx==Va3
zb}I!Yp!vbvwQf5PPPWIZz7I<)ae3U?&i3cyRXaNg^k<^S*88HR4!rJ3Y1;)5Xb)_#
z(~^q_V)g{SJCM~5?!j~LRD&4wgi|TayvNp2a?%|Zb8jv~AmZUYYI`_o8P(NY`u&%8
z7uQ~Fu)j4PFakHfT8rS7ObWSTK7vA7<^uX9AuXNfT*F$tz1nG~C;iEr?ETZyE_;qn
zPI(|t4qj0^Is=EpC>Vwj8USw)-(x!`-kwV%2==d3XdiJBT`jp-PqJC1f<^5{$1qS+
zNXyB|eP_Ft9WB;i-C1m81q}|G%TIq<ZT~U|_?JidJV;~{a<HDxvbib^PZV49epg>J
zdS@wf_S{$QzMKLRZZ0k^Rc_~2NuY=XUS<3R3po-vWZEhuO-sQ-sL|w7=u1(~+Iw<+
zz~}G>rrLToq3hXBj-dy@oB-#w$*~`k_)|t$ql>ROw5h|VOPQIhv$GRX!P&};fnUiq
zome{#ua)}1*X!;^g|Qw)2l0g%Q6N!~-#uN#$cT!Bh77N5Pyh{{1n7*wWbg9wvaYAl
z8yfv{z=nv)INzVASjq!OoF>rIAQ7S2r?q~oWBTxm!Jkp=fseWX->yRSRD#6|fs>OH
zU?TYHUatB+%xGpG3v_~f@#o%brTz98Sz!b$LqDo8!(Xbm2e4<c4_N&3OG~*ne-~hv
zeF1mj^yISk3Hy+-_J?d9X9}YmA<<Yplz$A!gWd-r=%G{*B;a`@D_E`0Mq$J|?m3xH
z1zMywQJuBFZ%~UVRp^=Oir`XznltdzHzpoELxJ4#T*pkKWba3@mZU~PYWDn+pQ2EA
zZH*ntd6}MKLM&gR+%K^!V~h4r`2f<E)j=%#U<_Q?SM9ELCW|DTz1h8Pn?8Q*dRxs-
ztJ9LQx4*v))R#`zqh-)}oqB!JdFAEhW5P0B=;H7uAXCK}{j=ZI=(26>>=ceSdO?-2
zk^imodaonR7MImZvMI5e13<s1NRl)C;}Zo64uVFS5%7XQQ=ZYq*%=XS3W$$S4APK!
z9xSi}BprjmdS(stWCCTF`#fd!@m4`z8Z{%s%~fu0|EiH0?~d!F10g8|g@T@5hBLBD
zr7e^m&>w87O((L&FkIKdSp6u-S_pMqHn8Lf(9npvvLI(Y8xcHL`9pSZOJ6pD9LM2G
zo&tEai|uiT&I2u}y3RTPzLGI8^gn66ylf?LtPFh1{`~5uM5opBdxKbgS`L_Hu+h~9
zB_+<u$YHX7Fz{K-0*rxi@WCClQEnPUe~;M{$gnj#2<;7wWGC+<!DtDm(?K@K<m3S8
z>8D}fDGJojo1I7Gyb5%+hx3152EXSu|L%5m1fRBTwtiK#mzy|ut(;gt+94F9uXWfx
z(jNIhLWOlOHY7W?kY&RC*tMd@F87iA0f2brJm-{hnkH)QCT*=|v<uRU7`)}hLj|eX
zJfrm_dg}|iIYqAzy6o3ZIbJ;^ehIcI4?3IuPt-+^^F@826exp3@&ek@+5SX3`>yv@
z1f?pA747A10p`?4Q80ai>dVH?J_=YrfEeJJ334DLYY7ydi!Z1skhiL@v!T)$FA8pW
z+qFNxA5N1(Kq0_Pi>n(3H3cFgN^L5m!K2H|%TX|s*mYIB(h-Oh`8fUs5^YM9KgoS3
zk<oZ5UtN2vOFLEdOZ#dVP_;$mJU?8P+2anL{#35Z4?VKKJT@}uP<`t)n8e(<^g*?(
z3pN>r_xkhg^@$AeN7IRXv_-eWW|DM-!GVFQ1m~b%G$A<CjI4^&9&I1fK)#%oE15{*
z$4Gm%Ivp4B^(*bpXchwUOBTsb@y^oj#eI5{g-R2();g=ZiQEAmr=ueJi$o#)uIC3*
zfS1=eCT*3)L&)hUDRzIN@;|5s>SpELpZ)m+0-nl!r+cB7Vd%2I=@5xQE{VEX))stN
z3ph$a=fwaUAGfSsd@rUD+j8L`kA!r|yz&bIHbp1@YwSr#!z6fd4Tw4xDk>jslHl(-
za{fG=#bt-S2TBuXZz7X%r+_4A@MGaMNg({8+Vj6h=zlyqK>@o5`2;TlC6MZ+D$Dv-
z(D?QsbDi_bNp=;l+zttKm5hB{ZAXAkm%6xkp}Qa>cR0DrKgQwgbBg6yedZcxVW$GU
zj~0>cn;;HqAHEyn50F)%C%{gjX*(33GwxypMe`6)Ew5&)shjn?p17{~<M`$K3bCGS
znfn#(h#fW1c#OihDd@e!2ysxY8p)F(wE3#jnx-mPVLnYyOrjt0Iy^l5t>?9~P45jh
zCMKe_jOKevpv5kL#(sHq^@KrUZ{PpdN}E18wq`lbD{L|QpCj+^t~|<(sh|OhSi}qr
z5kUPwgti0>ab>l&@#!-NyXQYV(F6=!j-qx*g>$U2_f8YaeL_U+s`m}G^w7Wth45-+
z+3PN6f4-Jx7C;r9A6Y#IFB=RaBrqtX6~D8$Py2!7+&RqtNj99D;+lE9zX{&VOANyM
zK|AWscRNkN-7X99+OA@sJO-*c>FA`kZh{lHk&0D+Z0_%C$uUV(8S8B&FdB4n_nseX
zIV}oh35TIC^%&Y<EVtU~+7SPK_4pPkzMP?{Kit9vv&su}DmA8iHbI1noDMtLOfh@i
ziWC@+e>;!<QpNuDejko^-cGlh-cp3So&9R9<TeU+`@y@lb)v=xtUw>F(3K-rQq)j$
zf!vJUIdJDw<a%yjPfJ#^&?QOY^<lhi4I56jPS!wwBQqqFO*~?zKtWqwqdrqYRt9ab
z#W6t?oiP!En!|G}!$_YkP3IVLIQRnhp3_?B?R|Zh97w(E#TN2zUDpEta|5q~=Av@y
z@C`RWR!%`agN|f*DgcB$C=G^R$33}PEBZw@DDBXE+&Qc8-5`Qnn30i@O!cIWmOp{r
zjvSxeHe2u<37ZzR{qdPOX^+}xNbB8AL<xWyGM6tdoLxb$C<vYxZ=GcaMm46wabJC<
zKy+xjw1?p1Ovf`fcVOAW>6V+wY##R}94KeruG?N#Qx>J{?&{dlVy@IflGtwAZc@43
z;?kT~AKy1?rOUZ;rE|42t2lCx#&)H};v7BHu6Sfm<a@9T6eAg0ucLtDy~Pp1`mXuL
z_t?|TWa~n8lgvH;kS@!B5+vxeP7)@Up#beQ8Qz;1=>EKlzGh8)Pw1yll#JxY`CD1x
zMKt|uK)&*=4#q}#@>Uy(AXGNzApMu2G@<*E59+l|lCSHK8Rw*pl+>V(L;972YVXC8
z+acQWcmQlfHBdQ{>%94@fe;ZNz(x!N#Q&Mz?%=}Eh{<^|QBf6i4~00r1t=7JDrjhR
zB6vwWA1o2!bljuV?D&2IiAUnnR;ojkmKpvW*!4Sq=K-7<oljHKg1R~9(^@W=B}O^?
z3k1}^jcE8BqkYCfDHz7v^2N#TGY&slIXKX6@fj%;#sD&FG!W?}B`jwZ>t}mvU&tTb
zYz-xuyt07xY2a%cEyaRgKKD%!zb;Yv**$wkmTP2WDPl-Q=SW9g@10IFKhr2H=cydz
zm?EdHA+j8Y$#p9-N-vGeIoUSzh;y=^_V8jMEH<q9)JqvXIFTxCj0r{z^hjL!fYGs!
zdW{7YPeeMem$pd0>~t<L_IkC#PRYTMq?)2D{v#}hn~Td22V1~=;-Zq`q_Vaa$GrOK
zV+rw>f$2VVmha#HAHu#mtm%JmUlB!6LJ$K9krI#wkp@vZlo;Jzqq|i^Q9`;ykcQD6
zA}YNRGIAgy3>a((3)qO?$MZbjbH1MQ{I2s4*DjR7w)guL_v^mz7k7Qo=#$;Oz4w3%
z(bLal=|6wkD^FL7Cn`+ccY|vMRoF(~c$2Ncz-}`9KpzMn)j;@|&0&O`wLeQ8`cf1Z
zSOIKjr3<}gS8pDSwg9tTy$aYPct0F9Vg;|c=wIo)B?-QVw&|e-_I8cf6-V3x)L4L=
zt?20Ji2jF&;OY!C>9#>HTgl%C4x>EQTS&Y8P(iCVOhVRt%T2@JFJSdK6up9R)j0*a
z29l#4ZPQjq`YYv+_LOlO=l*pL6bm~j6+apvAc|v5R*~!`+M#r{CQa7Vf6%T{brc26
ze`GfVsb3Qua=MtQfizywWVfCSKaVSr@z;C@kZtNXqm$H8gMIuje17OorZv+VH=y)L
zR2wAm;Ff~hva&Ie(*<#t>XdXUK0dkl|J7byxcIHf->l_=d-dc!85tR%vf}_m9}Y%}
zOX|-p*7s_`X+_nvl$1pP<CiW`fFi=ixb3sdoxj=c{MU4*7|ui2xx+PdY0A~dbvB<l
z%=C%n-WLs3+tu$ntR85_)z6sVb3Z<4@Fbl5=Uw^t2ZgQ|4XUDETa>rB&FHlKGSr;`
ztmO}^XS&OD^6mtfxW4`<=mo^zNAmLW8i8G6E5Q8scaiTuAJZsm^N+UiuUq(!7LtZx
z*L5=cAxY=1NdJK^#m3e|4cFc~B|qe8J_qc=*{i{ObUVv+!}mBX&^NTl76N&6d(YhA
z*Pg;$gOvhqnvFyyhkeR68JWp(!J5bYv#H|qf!unVKWkZc2K%7tR8(&^W}fq;9mS~t
zHM#Trch>hgfEn+H!GoVZfi6yN$_ylbZhn6Ld0)O~f>ye`fmUgVI;(~CZxz9IBBPjC
z=#xk0$wSH@`}~&s@NcAaIx5%ikI^~_wxd7a-Xq$;o))jhiernOA{OHI7&7cOU@2Er
zQ15}@Kp!pB*~-o)dA-9+Aett>S1(1Y%DV-dwv;k2d8s6I)SVbXc*o>aFn>EjmuU%i
z?Ok)&!g6YgRiR+*b#J@Vl+b3dN_==X`E!o}sJ^SCPWSg{_5W%30XLcU*G{|~VVBxt
zsEebbFKrHItEb6dIkjvY8vc56x{aW)W}cpYxngHnWzt};o-VN9gXy->68lmbvviJ}
z`JzBfGWq2ax{I8CY8Q{oV!&~m4-BR*qq_-$Bgxb5{>Q$xvc+@L8m7&Lp`Hy(b24j7
z!2tmRS;u%a8#wn|uPZ1eap25F;MkG<#}~RA(T<mdfq~}`kiT7JN9yW?Z^{Hz9}15E
zRfgMQOKBPa&4~iLi}W{n0p7@*xQvV$FuK2MVq&7hcIl6&Qw%?keSQFw-G95>sQ?Vl
zMFY|1y{%6D^XF}oLp3wxi>us?L8g=M&uLxpR;Op4e;P+)ulY2>x?dqhr&I0ICl1aE
zC#&9bTI@wOqN^W-xLP!Q7*UyRFH~rSzi<bn&AzbbmCY0iZ6W7QnqamA^;H*faP_3*
zO1ZSn*#?4YRiieKI8?JDH7C;0XQp19m0R0m;D&n{ELX9f?#h^S1ebk&^ujDUd&#l5
zS!U|iRqMFRwEkqqB%eJqzo^YRB^S|3-9X=^s+OG!{iuo_<eVHk2;FsH|GF-Bv8J%D
z<m(xIPyTzt-qu2mZ_o?L=d@nePjEYD_!cT+;or2y(h;4XvuyB=NOc=;b$!~otpv6W
z<Y#KXmyBI+FVm*vzs{o+Znp`$ha%No$iyBOexS%C25S1909v4&#{zsGua={_J9<-K
zvSBYuxDC2^YFbXf>>q!w+Li%^4s?ozk14lL*5!Ex<gLSl)$7P(zNncz1*bqET}@B$
zkT9c$^d4^8aCTnm-~ai{e|(vLsi;V%#RLL2XNydyrq*a?2$s?(YnLkl0{I%xn~S~6
ze!%|hA)vkIyni1q3$IiMkc{MaPk&Lj0y2oC++5~gJl{&va{W#>Hk?Br@B*vifU(O^
zhd-)167!QymgUB^zyI1oB{C*!K<%?fx&gS-M0k$8JfYlPXfuXK940q<pV|oqJY&{z
zx@7)fuX2F%L3OdcyE*5+<%#d5+#+Nu^aQb-yQ`OllL;WgskzNddhL)7k`Y{aR!g{4
zKa|WPjX0{c^pw~TozmB=5(Amqetb}y)tW7C@26Lwc9GX@i}@-~4?5)*B+S1{D#%Py
z3bEY1Ct6gIoGdz2_sP=Z10r<JWl}`;^NUq<@M<HsLX9BEdaGx%EXzCpbereUZ)J;{
zt+AP!ZUb4;d?>u!!u1ii)RM0Yz3`6@V)MKPjpI<Q5XO}lO%q?|2JJq3>rM3EU;V${
z{@Y$;+N{=-yU7<`VV{SYK2_&urM@Bj@$k%CtwrZgU_6)F&>)Je29TD=B!JU-mzS5<
z(G1}PEDtMn)rVMi=YD_c&(6)_1`t=?FLamz{pdZ@CN;myOn+SD@k}zNCF45l=r;b|
z5H_nwg~?K@>fN2z<q*ia_qp?XVu8aiJ(s-_CNYEiAC%QH_cLQE$wqpz1iaOG8zLrX
z4UIrkQ<2;Djip^(T3~taI-E?%8U{PP{V?znopC3JMUQ1q(Xdtm)BM2Ef~Jc}dswHB
zT^cS2FCKBXrm*}`glXrOx6J{_B|f{Bv;<;)8K`KYWv-#%*Cz^(nCJV7g{Eg~uBG3&
z#Wm8pT^n!<^nV7TKZ8>fIGUSQ*hPYiTF7Ne_$gqd?`+8F0US~8@t-t8S&VSD`7)a_
z2Av0e<ORtoDGqx-hmuoM?e9<6eH|DeRe$<ctV%n<r;YX$1EjIyjD;;=gez^I+@Eh-
zIdDijFg>J7x%H3H=ki>eOk+UGTH@r{X5XhH7Y&fSj{@SvNZSkT@w<9?xNOhZ_)fwQ
z16#O}0~rH}Ae!by6&Dv?3u#d1@Vj~~V^A3rfw-vZIu~0G3l50e-Z(Ow|3tlDhNl#j
zA!kzm-fIQ*EaC9J@qgaWKaNjyI^X!uv!%e;H-~l&5Ev}qm_5rGUdWgxZfsyN<qz-?
zCY#-i_WP&_J*L6x=XB857#X>Kw_MaR?Kv;g(*b@Iu>1xMPQUW^NDv)Gl?$M?&>&#1
zY-!^n{Q7%(y$`SzCk^|sK+43plpoLAeT1DL+m?sjC6GLRhYwuS^qg2$F7@L9b$7y9
zdS)g;sZRJv{<MMyv7?|8QD(z0twwk^pb-Wun&kZeNxgPm1CMWR2p@7v&gp4~D+g}P
zt0q(EB+r76IYn!$uC6<o_%7YeS?}RE-%iRsE@lYT7*68I8&F~|a+Kn(&%i1WkvhGC
zzhi;P0w@G4@l#0)Dd>Z3@2&QE<>8h-oD5N@orJK+Q6#2P^5mncFHv8T9C->#+RVL$
z_96PO9P^;lKRu_AC1RDfqHIKQ$;%pHGX@i943r{je{O4LeDIZjS0JCq%k?<zRDN7U
z)KsT?>l*S#UW)#hkC(G^+ONr0aFUd#9MV1X$C{*?pZT+UrvWX@0mJ7fyHB6YHG9X8
z5@C7t*RF7tooqR(Z_OFu-A#m;mWE+aQPO>TEvMap7CJT-V4*HH{b_iIrhQPRv*K0_
zCSA?ZavEvn62kRmWVb1mPva8YGsPlH%8-a)QG#Ee%M}hOoKq0FKVLlz6-uJ+6x9Mi
zYZD0!MjoUuG=r2?C1|Hb@LG(1v#mLkg1A6XOZQE@;h>PZeU8Eb|49P6x^6j+JSn#c
z=aLdsk$(Boc%MHhFKcdZEH1vmF|=a<tJnE?s6@#{$I98c&IE0P>x4a($p9~zIGlQ+
z4j3r#qBCY0I#1~xEPOi~eH{AHm#ea8Ky&%^%Tg`fPx7i*RiE3U@rOT}r!71CLqEJ?
zt%Bf~W6bv9Zs9%t2tjiz3G09#vwidoR|GZh?<5t!#HXDg7{>gi_ZPV69d|<ED;ysJ
zeY&K+UMhg4oQvr>?QRgXs~mG-h|QWh1g~*V2)_pgCokoBz`Y%Us)3g?>{PH-4GY(*
zwq_dyIxDfEf#25V_m^7b6Q`<??qR3-df=TSC_$5x^MUbK9LA=0^Cwg!xko`)-lA^a
zymM(_#&>#V=nTqqV~GodU;8=Ik#}=%^V4*4VBH=@9&?QCMz_5?cJNB91^L5h;1bRH
zJ;n|2P_e{;fp}(Xi-i@qL@Nww9&z8h`~~^>EW1sAcS%xngTiUyk>>=HZ+BuVR2Q=R
zb~{X8M7PS`aOTs)XAbk3N}?rBMz0fJr%o?SIzZzp8Be<iiEk2;IBNK!&UJ9T?y1Ge
z;+ngbLOf^Oqy|ECe}QX$g%IQ^SULU-eg7UE$1Tri%YH1W0|;#?$;tFLWrONseamru
z9LE>-va`Xfh_ILpzZ_ou(o9!vJRV5f@6T3Z{b00Ov#55}f2AVe5gAuu@51GqqMt8k
z6ch-VMpwu+^{86isaVyi@u~C{9V8D5s5t^%>&3zNP|uY=*<;(qIO~@mB>Lwilhn4#
zD?q!OJSO7%`Aq$~tTM!3w;O!pwAv1IUccHu(t8W7c+Ry`H|4N%U1<0vCX50mO&&8?
zr(Y}L>r2Zx&1Lu_lv<J`6t>UGABO8T$(wb0i<Q|TBa}Ky$#VB-^x`EPqj>#4dP%K!
z@mIa=cALs}J*U;rqbp%^8<Tg(*0u@@%Q}oq?(rxdD80TE*85g&<#J+=4y8J`+BZ)u
z=S^>{`rc=ZPyl>@JD|qL++was`AOPI*D*<!OiLennnrFGEle#mSL5pwxG5Kw%lPb4
zTHWr&DTGu-&f>vO3LoV8l(E&9Z(S0n^3f@_c0X6F@_38jvGAQzw%r-p&1L+L*am;k
z$HJqQWdtHSPXDV>7i|Zr8B8E4)OZC3-$TV7oCeRqIPWZ?mS0tqEi=86wwv^7-!3wG
zRK?Q#0#vYXkWmDuIPJ~>sz1lpXP=U<U9p}-Zeud??{s%^&+3a25cIZVVG@si%~C86
zxAOBZUsA!N9b*Djg4`jr(q>8zFcH)eZRehZP|Jo)n;7D!e|^PjN}Me>>M?z?CcQUf
zNLw9EiP_D2DGGkDdV?X`hqjiznU{l@b7o4pu?J8Ei#p-Xt0tuH*3l*UZe`8Rkw3%+
zG2y35SJ<g*5ZLW|PF5D>uuP_qMrw&gk!dQ@;r_h)pzjZn%@En~+d#*7)64;8xPbq5
z!@3gIY~+v>;`bIc(=T!Y?Wo1c4SD2d)A86<CoSv<h1-+4;pv!~Iwm?^cD1t1b#~^0
zW1#3z)TIJs)!CLDn4IOa8pT8eHblyQk!~&}&n?ifz1M#Df$y<Pl+N?0rJeW1{G)co
zceGwXEj@cdG}o?~*-Sw}UanEy8rVgw?8`F$6xHRNRqVngCgVxM^9QKRfGM|#t;}fd
zK_^1+GMl7pl(`5_7z3UNr)66-6O?s*dt|qcZ16#W6Fp2<acFNc*}vz;|EQONf}7<M
zIp@cco+?mHGT@ftZS-_<Af!rjWN4^DFL-E4VUUPd1Ke#L8o&tY{pgRAlX{^Ngg^VC
zM#|ift%}lyYMt+$m>##5U~-@DZLG>bZ5wP-VQ)5_g7>uID0(MCpD}4AzE~W6)yiWp
zEin_<QQLM~7hjv>6fra9s%7)8K3UxQ+1m%J+yyH<Rs&TvLQQt5%)w)koOj!P%=|nW
z%}Z_%u6UvH+1O57{P<i#w*ieKCM|EIx6-GLGGo!j(4(?Eq6nGY?jQ5>gJ(0esMGlj
zA5e5x$U9)#B9W&2quA%iPm(XNI@Ts8e+rvxb*Y$wT)K(69wZCics`0)upb}}$LS!5
zGy%0^TM6CXb7AVYK!-~EO+|KN@{eOE90sIe-_<PxN(XFSYRmUg3Z-RasDH(eIfhXy
z_-o&~U2l>6p}%Muxx*rn+T?N=Mk>PAJv3qmO_u@ciMg&%Q_5BRhBJ8ZGAEP4WH`rr
znXIt}{B|9mqJR4CD>boz+~$Z#qK-?oNL7wzF~RL7U0JZKS4fUeAI+Vbh4vW()`{Ei
zKuwgCG|3~nnYRPG_FU3dX3%OG`EZKWW|!vt6GSz6GTTnNZ-Vb9O_EQ|FqaHo1GJ>1
z{u*QdP=V?4IF+{c^l&u_3SKKci8~%7goi`-2PDjLHDsB*>ie}!O<Z%T8lE`TVzxj~
zExs~WOCg;|4xyt(D)reFE^688g=V9c9fZ*9`lq6ICFaa8nW}$5h~F0XM1aaP&#|*q
zBenVIYIdpa-kaOF*)@(D2Fnl}M)2VzuKr5f6gmb6!@f<Ihpg94Y;I7~hj&@0bypmq
zDrF8TfB3_MbQr1CT}FiNCO^K_qFLcD_qOE|b4a&a&{l_jLXv9O3u!;L8alXuJlwoD
zpiQ|y+_d}NeC1@xKtlZ1T~qB*Ff~h~Adp;TdGKMV&;kdG5wwP8fAyIHOWNjUqIqaD
zOJgm{Qz5dFl9MqbbyyH3QAt3ou9nyZy&4FexX8cj+lV`Hkfe6n+=swAFQj6--M$77
zjCdA=Ettdb0U;hPy*u^r5ZHo^#eRQvxcF$<*@9A6rmNGt$vuJ@9!m~nfdOl>HHCOQ
zL9@z0rgQ&CO5X0|(zdJ#*l>I@D!*sI?MYQfso}S#&E*|aYS%Ku*FuoO@!WzQib`04
zU?!iWoY;s#z`lPj+^3tA-ARHlNEEXFmyF3uPIk>&Z}i~c;6jdyiV8gF?dYhMNt5$C
zKy*IS#=`$+U93o@l_x!Y6TCi}1@$qr+?b4f?;G-Fsbi)>-ab%;t3*S!sv{{7B_9^Y
zU^(v;^J=~O=sK@ZReAL!`(0z2-XBU68d|){2}#t;U4reKIo-5RkpulY$MFo7ru&Ec
z4ZldOxppree;F3(4Te`PF@OzCI&=acM0oL@J^+g3?dmC^<qucpavouJN{h<bc`OBD
zg46m~Ys!DtR*K`+CA9}#P7|6NcE>t*EOLHEz|wJh<I`nQ13jdE2OYyZWm9f8(}`Ab
zOWXLwL?aC~=gbn%x!Z{rk<o~q{RnJ*n%!8~hVI^~DkRiBL)tp?Gf!CvcFoBtn3?dE
zXE_BN9;@c!{Z6%aK*y36?~b@l&@SNqWud<YKaFsJqZgXB(e3te&OuwyK)z>B`V(`x
zm%DJe;$Jf@^_?eU-KvGhv9VSXcB#fzKYxIy*n$nEjZgP^+*g+%wIj6Mq_m@^mODxG
z?lI#h;bU{_%G*rV6E~g_2I~FILPM!NWW5o=%`_F$_S<J(zs!g@4q9{54}@=Vn&K)3
zD~}Kc+AuNkw)c~%3WoVxzWJwSO)A*ZF$<54l=D?<Q!!P?^36gSwJ8`Q57C9|k}Da+
zx6RLF=CR6z8HMA7pUmZ#zdQH7yoTR~O*}4hdCV1P_yHLa_>MBn`PF(~V2@ABesfZ2
z-4l7M2KWn}E@krxmj1P0D5%7WRL$2l8exgghWsvbGfQy-ooo4$3MrGy5Q%Pd(~q|x
zTj^0M|E~T120p_9algHc425eo+_-~gWcJj27mvPU*KYKq7cs-97Li4pQ<e9ZYs<?G
zrpHA*WFoC{sDpL3>$gG+z~?Q{5yz2GH0%UTRwkV`wP{x*Ka-!>FJ7+6PqT?SvckZ;
zD?K+umxe%G&EcRrogDcd^f!*th8`X9Zxxt@fT>~E$R4k3O5V)?^f)p`HPQQ%rjS|M
z7x@PUMLLPWos1hde-xYMgfD(=Th2@4msB9+<9bYgeX%C8hK>y}PE+YJ%c$ia`qhe!
z8uPy@XPp;+6*S}4nCGvMBWxgUY-}+#(|>FEUUK3(q*71G(-~6xUP;6Q$tuz?pHx`u
zxj7T+AIY=qYRG?C>gspFyL@o{qW^X?*Utkzw~rfmzDa#ckEJ3IvqT@Z(SHZM+Ln<a
zV8#t7z<>>Unf{3bqJOmN-xC#0O|$*b=D$1+fk_Wt&AkOy(?{kFzS(o2FYK7~UeC^r
zu}*5)6Q3zVQ}es~R^9!SLM~+>NmJa=l<2SPgiMc+xB1-s3gMIYW(bK%yLUIG+kl2w
zS~oCAJ<%k!Kw#lo*d3SHJn%!6yc!Kn(tUw|m$zhhG@OD@_#<%_g*M|FCh1L1R(kV1
z<`*6!ORgeQCGS-njW;6N!*_fp%<NhbIeedPXLYvbMDmPlTnoJq5$k6j9ZT2a-=$}!
zza!%9Uv(KVyYD{uiw3kGjePdL^wR$9J_2lbzM)@jzN{|+b{&$|$df3Z!|4~dSAN$P
zV>A<5bHTQi1+>P30hxjXtpqJF2t;{eb7kU^sq&QT(`k$A@lugBbj8{b3CwOXUTCgK
z8N*bwW^$H0(D_rib<M2ka^-f3(w$ICG!AFc^89)XT<T=M29~#*%&H6Nye?nhM0S^W
zF#GO!?GP3*`MAtuUjK?c!qf25)R{Lu6m#K3W|wK!8es-IL)!*3<$-Uj<Xg=yFsX3@
z-j})D4K{P=u*M=>bdw-W?H=*K^TU+?LDCWwcaUz_Jjh}>8Q;W|0;1Q{ew7l9NRfS5
zkU~MYKQOW77!af`<M(zzfv9uhkDGH0*FXOCd0<&;g^R@wx<~D^)}+qOnR)g4s>pT)
z!^;PW1xE*=PA1ovTAvv?=`gJrjPDz}$Qc80ZhJ5RWk*fD75YYg*=1<@R1U#ZOV~Qm
zffJ%^D=xl16fLAZOYVC80RUd_+^RqS$AS7Yfi&Iy4TAqBYyp_%(btWMV%3_n+|-XJ
z{tcGl_5y^IGWx{be%idXmY$@7dhH*fiTBH-R(^EaPj5SM+O66qDkcj(uPc8rRWqHg
zlJA{z_yp3Jhdb*P_y#31eq3iclGlOv#-nabJyt0YEA|;xUX4)!MOaJrAfF_j(SPKg
zJg1=G>r`y;+=qKg<=SMcM{53a)vU&Le4o);f7vOoX3vSSMzyPk_8b+hfkEH6$Z)lW
zI1`BPK@#e+iKXQgwb$DQ-rZ9C#=Dw|{2oD)HS;!-HG}WG%jsVuj0!>n5A1><SEWt|
zCrasc?U*~|_iYNO&f+jxHyoc)O6GdM9nJ34x{t2CxGnzS=|CM_mi_rOy&ra56I4Sn
zCX5|TA57Acwo8j{Q(q8o`oc=(a-M=>2%^oEH{2W9b;6f?f}pRuT(-i{>2gK~xki(b
zmY!}Fe#ca47^p+^6B){9O68D>%aSwANO|3wHbXO1&g7Rl`%FXaa;Ntv7W&@Qb2GYa
zI70G$>Q<aa!u1-plId-%=|qeBh>kDjL>U$td7`Ah14S%n0(FcF-kbL7wJhOx;qmjw
zrXo5yFXQp1hRt0Iw)~^zkhyHr>!@bgo=9DFG&2XK$WwZI!v|B2qzzP02OJI|Y(aA(
z{tFgoTBV3P#X;UdH>w+<t|c6X%-o-ew4G=>KoGhR9}-3bIBfo{<QFehOu{LB19&`{
z%IU_8Ry}}j@~dpv8+mw3!BWaM5gyIh?{u#<HUw7%kKSZ?0%?D)$E(Ht08Oo*HyBQT
z#T&%<Ou1m2x&e=pKJX%J@r|rZq_LSo8YW>hfl<6bp9~k_kTwFPPfA^g1%(|PMKM~x
zH)K56$Rat6dY5S?85*|hKTI|c8acNfa67Q~-r*KU7VcpALrHnvRs!`lFJJkQN`OqY
zfq~b!R3+$Z^0+W1>c$GT{(G+?@uZT?ATU;JoAx^?^7B^fk$s=5l*^*^{*u?%l9l(8
zHF1p-m0tVHLP!eE2l~g`^T_OsUh~^xP?@FNBVgF_*wZx4Sr?Shg*&D{jF?_miJjPb
z#FKc-_Pi|L^G7`wDC<v_Je&;~s2ye_ug4glEu}mca>z8i`Q{DaqoikSZbCUm!{5$d
zpUO)0bbjUS*BkmgR|jWG&(VF1S#QI4>FPdLX>QK9;N$b$3V5!^9|<l8_m<4wV6fH*
zFnmxcSYBbnZZ%`>KTxX~sbsU}k6MCkJh?0Unb^6AkbZ1nU^gOV{2d*T9v+juowfpc
zhA9;*8{BOg)`-VT6T*}74txSxO~I&{&P4svf6QC{08ai410aFl=q#uPSg`!}9y0m@
zl~&IEu?p@^_c>8ue~{<*D`qhCm-Fp=tBt*BC;E_UHKrwuX-)ob)srGrt?q_%7YJxB
zhdv6Z$z07f2r^ish}aiv89`4gJV1pBFb~eJRdwowuf+1nZ|ZEiMK)F5^{DYa4bQnI
zgHq;@mKu3X!CwV?katf_$FXBkCcM&|h>TR%C{P03y**g|=qrHu6<BaG=t%1>h5o?o
zAv%R5D$^k|*^nL;mL?XK>XPaeM)1*E$gelS4fazySrMPe)upj3Ctg)|2EMZn?GZF}
z-{Cq%e?o*JZO=RNRk|LAnzvN-ew-YWS@VQM@EK{zX?1XY&OYZ-r<M`9-&p)J*=}IO
z0@z2(LTW%MymEsz(y*}umBcsf1}bQ}MQ(kzor3>Uq8+hRBipb~C5J^;ly>VdR))D@
zN;)<e<$4lo13Rh2oc5fw5T>1U>qWkPvpc^B<QuspLUa#4EH4LwTnO#V1o+FQrbX2)
zEkjiHu5S`9`rfapP0p0Lh;(06yR@bU6afBo)CVs7&6RHtUC|o$ODNA?>q@MQL4^j)
za2YAFYaeS<7JrlTDNBDz=^1^q-lgubptpZq<bQ|Yq7>b(JNuvIK2G}7_dIPmb8)`l
z%zEPAf5gM=J3t%_(Afo~(0=I)BM*xVJvPfSz+y#dZRm4c{#eRnQS4p)=DT+}wN!E=
zo^M;?@>1ETlz%$7`#Sp&z-i4^JsYy%${1PxyAG|0s)!^OO@&rAc!*VIhRZ`2V)Wsw
z*%DJ=XWuRR?b$oDmj2n~ChRR|?RZ93%B=348(`t>V=saWJksf156B|*Rq44J@)omy
z*R&ogW!dX2TYA^Faq;FtYpfQF*pm=$5IHOE+%8g!l@}7(I5<;_m3SBR@)bBFAl;cU
z&8Ay#)K_$|V}_tiy?R9a#^Lbw5}Ww&hQcj{QD#+sPm9x0nFa;e{_=&+fCO(ct$2~|
z__xPUn-<K15M<1S=vF25)la7(O@MrFe*dw)p0@Eo_YSy<DeIUO2c;ePZ1HZSJCCr3
zt{xUP_j}}Uak$%p$LPT@0x}Yyvt*Pcbm!i;(ESSv@Vch}er^!x9uC7#Cs*@11q8XE
zmhNT!I-<~X)IAxe(O1Ey+^x9mcPOpniw!o4p4##i|1a^JZdbQ(=$sayy7qDOIr=rA
z2{=3i1KV+VfpH16Bl{YlCVAvJ4>0-H8e#HPF23+T%UOYkg>EyzS<7@@2WCzj0Pn^9
z%D!uYI<WFU9ga6#Z`nRpUE4tACl4N6rKF;Hw;?E3U8$Ng)}%p2t7hUdRCMy~f^PFD
zm5Pf;)F9NNN)7}?Q$ss4e~LTJEypB3lckJ*^-jlvWZdaj2gaS=uCn+ryj*X#5I_v8
z&X*im^g~AmuTs2zt=p83vECH%Dsi{0|A^$BD{w*689d$WL#o6tnk<WiVmH{0Ed0~N
ze(!1=0$vG9*0IQjjLG~kY{=C2)^u6tVi?qWJ*t07@1n58+m@wJH(|RzqQ`n^^c$X9
z8C~qTlM0I;N79a70uVQ9Rlm!S1D;U~$fJ_pa#AUT+Yp4Q0zU~nf4|dJ%YVW3uCg*;
zhehi_9F_jG$Aa<kn24jlFJwom0^F-eki^cr4IhFLomSkJHymE7X~tzp$V?tH2_hAv
z8Q#{SCB8}VHO$)?8gNp*%S<rr*9~ZHat*8<pbFQ8&p0EUmwg+Q&6i?X7aRAG4Mx3|
z##~(`5V=4@QOxnJeQ%3e!fbiMx*SyQM63WR5y{g|GFJKj2k!p?`IgDFPlgHrxUSw4
zSoC>X)B=pcdz^k2OG-)2g@snt0)|tGi2@rBe?QN|`^xHnc>(-0)SKpiJb&H%yVe#U
z$Mi`zq2nKHnzY#%@7p)hmw9qEZ&u&7liI6g-*SV_fE4I+b=@%=@t$7%@`si8mD*ME
zX=w&weJT)do;RSEm9>XVV!kM<#$Yw$7g(mqN|=Sef`yd@f6K!s^LJL0s}@SM@fc%F
z4^5bYLdcKytkAJTw=bpRyIU-`7%F<~O8<wok-OkMU`X!H<O^o5dT2d{_uE&B3@<T^
zavl>(3aopAN3!j@-8p<5<0w<}Sx=u|fZrEH*t=q|<!1O@LmQBur==N5LC}=VvB~$#
zjE;_r*y&k{J3tw`%Kig&q#Qe~Q1@;ELCPC5rI(KK**R|uy;Sq003j$JklVenzeHjh
zmi4Ql*+{?3(l5KbAl`NpJ&lwvzfjop!LK$XzCb*nE_6!8#Il#apP5IT)7TG;E;Y=$
z@PWI%Gk49_=*wd(2n5I!n@5B*PGu^V<uDw&s=+Xcakk{o%lEfB>wm*@R3uq`0sX#b
zL5SxX@C1_dBqD9Z62*)MKw#eS>r{TC!}D(hl}lG|0Nj?WG*EaD;Iv`({c=u#1_!iV
zTgA#RgA;$tliJ|diVihDS4n&lxIaPUd6hOaUz?S|gou6)U45OgBw#_owjv8ZPkldL
zcAp^X@pY8xoKDA1kG3WjdUO(ez(|{2&taSL$TPsJa<P)C$u;0{3^TP5i~r6leM+h$
zzG_xdtpj^gfFbf1ZC1!WN~gEG?x;WV4Xg4(5<?_cI8OmjT3V{Kn(cDE&!V=Fdh3e*
zwngP4+u*zd@lN#_{bdelN?my+n`~`^KL2Lh$uAS1ecwihZAzyH>q<&}qDQY>M7@sQ
zt>42+&vx0`G&?ng?wdLx{As)ShPsJT13n<}y@$SU=LXBhxoOIjQcg*T7@uFM-tW_d
zwy#}hVK*v}o$G38_5`vuo)3NQ_U=yzECr>jU>ahQ=CEC=^agPMee_W4F%E}4ZpZT#
z5JDUH;5?>hOT~DoGj!gi!62a&H4XYtjBPu_H@s#)T9$rF3AkKe*><#fRDm9=vH-m6
zGCsYJTV<B0E-+*%D|7z%z5@@;JEW`pF0;%a#AmT6{lwJk;G^L9vpfX(W&z28OtjP?
zDYuP4iS@BF4~@>;FO|z`2wJ5PGf+TvbgwP0a?Tqvsw-#wP6w(H{-uk-ztmavL-upN
ztk<7(9^_pw*nW|T&F(yDDwb=(MbtTXrf*JGI%KexDMT6`k>B?pRm_qt*;}3+i&HsR
z#Yw%%Ej~g!smd^pV4MACxOikR6Ht}dYw(@wi}IVw)F52zC({5Kha<ZEd}{@8B?<1;
zEjiupYyMwSPqyaAeSYSgplh#Rr=7Al_#&adNmVA@A^!2jG&h757pJp{*i8;#IaHeH
zOe+K)bOv<ik0y2OwlE-vq@=Dnu*L$qwVxlOhlgp$g!3G4igMo5v(+OGwOu-O|0={Q
zeYdZOMNWRS<5y=Eyu&B)aLoyw>TlJ1=Qy!va9-YArNFn*&|xi6&(!>hLu4XLxUBL1
zmrKdgTS5AUyzuOi7n&z%ciie5F;3qRpZy@zvqVmZ*{Af&zU7pXEZ)<-T6Zg|ON^iO
z^C=j3Ql#ZRH@@`vaIRr*s?2^veI^rqcEIvZ$kcvK#a1%uMwLRSCC%yDIYyFhJ-!tj
zu+Xy00H7##`2Gusz|AF1aPW$6!GPMP+!OSvdv{~)=gI`1ks;;00i4Cf#8;`Gzb*N!
zj1h8jSS25bkFH8*5;nC^Qnl3$Kjh%2mc$I^VEEc^bfx0l%OSS><Ii)PlKjf(2LxfH
zx1GSZKrNELCrr8DMEo6t3T^5pj}}(ldqTwSv1fo;y+i9Fj_AJsgg@oci`ck`LJLo>
z4-R_fdalIn9o(-@g?o)`_fg^DutpOei^M*T{(k%Sj2ja<ma7zR;vSP0cTVL=6UTMK
zd;C^H;%6x=yqDe;kBu#D>~p!TW$7a4Y1ekzHGcwQtlD?WCVjlr9Gh+IeT>UveuZ`A
z!v|1kZ4B)?B(;&2&4%pB@2=Y|eo(<F0!^;t_XS<eoOOtxmvY)u)BmM1a9ktd7|r->
zvMyc0YV@Z_6dP@}ofe^KYY(^+RVbe@trFRQF)8`LTZ<efmdC3fpdHU+zK9;bGs+u?
z_ui4BaQhMS8){)aSlgs$xgy9B8kkWQ8QK$kI%(5v`wr2<T#0v3$ZrgLp6g)|$b_C6
zpY)xvvi}q)VQASv2;X1$BI@!aJGi{BkYV7m=txNS`t_^o2CA@`if*fLOta}XqY?Os
zNI&WI%Tm_1AAY^-9g;FIa$VdZT<Um?%6l`ky{FW_mPmvXLR<C2k;aIK=#HhTTLu5E
z^`0+Q{KzK^=#%w`_#Kputn>J72HQOx+flRbIUT^v13$~d#q}5vY|U`8(eK`PMe#>|
zP&`MjBm3)-6UL;`QEFtz#b)_yjGmtH&BaOK#AA|`iTb<hQ=*{>Y3+@?Ivf^kxGsOH
z%Fo=iTs?EVNXoc&eK_B6`He;UAX2GXhvgI%d8z@7>I9@qJJUkLMZP8qE#Bdmk64`3
zsk+<VuPL1&pb-9D{zYS#|B31zLccfV`P`;XflOCwPLGLbE9k|CTx#=6b22m8`_mp_
zF(u|X_njwdrPp9ed{t_Oz5a7W!}`;n><!=*f}TOp_#7way~TDK4NZ-ou>`AklIVh!
zYC`jqpxr20ueG5D#}mo-q=Ttp4gN~oERP!6hi<+K$k>i*`Q@|4#J3f8vuQJaCJT%0
zY3y&~^3w@rjOTy3={elbZf<s)m}@P?v4iM_me)@{hCuts=6XDP4~09?5H|3PVhZB^
z&Js^+&q2{f?1tIHDok((5>3<Hu8mj_C+zJBbZWIJB8xCE^sXK>nk@Kxp3vjx&JxW4
zUF9D=;={{KYLyk;r>j(lUP~HC>5DWCCpvYt=MkRp#Wlyg?%o9$x)HP7@QLO0*r#V3
zrr?ZkCRKGtj!+42GUIZaHruywPNx>7jClZ^%n*N2e&2AN%3&TNLRj2(z|81{fAzEC
zSsIuMo@udcod9JZOKcN~$2aYzhzr|E+1=qla=_Pb`Cwd(_i?UlMv$B;wov_^7BY4G
zehtPGO=!!@lG>X%GQ<n6TP8+KH8$Gg@Nzo6ESA~5;2hO)=-l`5PlBi**l0fLZP`ra
zlAmC!>}gM9J1MMbD#G2W3i>kk+V-It1>TZNH{z%}m}Q=SyWLf7$f9US>T3}-CX%FS
z;@F)rt8L*|OYG<%)Chg9<#vFLEkTcG2mEq<Cw9VXS`+mPPzVw;*4UxBD{^kt`;Q*-
zj}!dA%_TfCu;9LjX)rLwN-+(J&Dh)9<CK=3zv&B51b;i%)FX=+GeYp&yp)ub(ECfI
z4g5Y576@;J$K>WN!lnJ!<NwvAMsYkbHvZLTS@t|8K!EP%%}wtUhrTQHK*f6JNAibn
zl^UrT_1ZpDt)_ifPM_UnUwQX_I^{P<>^6_`9>L>!&E&UK0a<CwA04=ix(z5u&9(LC
z4uUTxI4gp>!m!x3CVb~`eS2wx&=WyDt|6(Rw#hDcA%U)j%+Tw$RY0{B?*d5ZU9v6A
z+Js+D&S_q#YxmhKW4UH^-Lw=km*eqc4-|7=3ibDA7eJHA44gxiYVW7D@b+uN@VEEo
z3XE<hT>9>JV=GCK@WL3F+j8a=b8wANz1x}15MU~Ft}Iom02oqQ4%z-PgkgBMiME76
z+N#Qn7>$Bd^37{({3M@!2V@Vk{)dX;m+`Xzefa(lY!3DbfGaSCh%(J>xpsqyrZbQW
zZB6s=mTr<Zt|2?2X6EC#rN!g^cL1rW+CP+J+_4;mR;Rx{{q&mWJp0_C_Gx1WX!KTQ
zw!LM+NOe2$*1hRCb7BYDdCcUTYgW4eN0O^qOKPZ$>{`!^LwA}<Q5eZG0|&3rFH0Bo
zU!QnIMqG;^5sbq6lsQ;i=9SO0P!&QfI$P#FjHCbcq5bEhZ;yZXuuCf+03qMt<OfZM
z**cra-pEKG^a4}_lb*2lw>LyS6~|2h!O;P58Hivh{s4XyRq;VyZ1i8yR-qsndFIyp
zX?!b=MwsQnM~bHlCymgXl~ECc`+!6~u(Ht^*UVE8M$i0LVFPe_(chC<2Wf=n`nX8>
zXY`+EnjJyOGqdr$RMgaIdR1{%JqgYio32HV4+g1A9hve93B0pVkQL-QKWA9Vx>%p`
zxg;T_JoOztGb`8Jt)Ap<?PbthZA-%UaW!>j|DHK_OtNIPQ27wVBjZAiE|YIP`T1Cl
z^)20!yR8kbcF$>sp%-tDgU<u4_u8jRLgGlssbwp$RG?P?yG#Oi{ZiSSuF8-Fc<1Z;
zIuV$~!CPCf=NT3OS%CP?^0yIYfhq>rl&O_3YjS~x*%=O4=8QD>tZ5W1OumllB@@{6
z|BlJM)q&v3Ft_aqvRD?vh8H(C!KE?qA0x8=0{WO#Z<lz}=pR3A@<~RBcQpa_Ui)5i
z4Gzfwql(FE%Q_rY0x3P6&~BY6Ouip#bsS@61{R!tbD2EyKS8C&OIq3DLx++Hz~Yc#
zK<1SbuA}uw`x<s>BQ^>qjk*VzktJ4`m!4XP%E&B)-94xuU`>$=#UCuavm`ftrP#_5
z!DFFfVeP1IY016N+c9J3xKdvsde9J9^Ih-l6x&t$r;s!H!&iFW{rojmBRruqCw6)s
z8Km7zw?MkM`7JQ+GhPM+?+Q`Zr|$Q@qFBgy@o3vgAtgmex&kUDaQCio9|z)TzpQ?l
zj>N!hhre4MnU+&QcnfprcD>^=;1Oyl*jD%>e8x|_k4<vX>-nLmGvR2*1~9l{zjEcu
zx>Lq<mC*=rmTV!S1gBi@mq%Mhy?Yx|Fvq#GrTV&ZhC1?x_Khci?O8e?Pz-e+IY(Z}
za1o0t><A{Wv{D!-@8x+B8#@B1Xw9^vhU73<EEXh&QIvzceg4neG44bDn<Q7n<uNfa
zp>t+PKAf5xSl^iG$)~QNK~FO4z%8`nC^iAJTs0k?gzonCR%I=ww+)Fq^=E1SKzIKE
z5=1-Fjk`_}i&Q<toS?v-$7ILM^U8lO#}z%u%5r_;%tLpYq1Wj)@WklewzdZo)>FXC
z;gUr7rBI4Z2i${mjJuP?Mx2VTc4p9Omt*F1AFO<6NPakkII8&xCe=fys1s2xpENsG
z*ApF$dkOc$KQsuOb}GL#J6pQJ%D~xz5h?XC$m4<100*C&9J{<QIXSr%CW!Bym=0Ej
zu#j2gd4DT^3II~ZZiZ@@VE?UeLmXWtR<%ub12l;+Lu!EPSFfd}=Dc@CA25JftE{RO
zeNXiK0Hg@Qq{nPO0AS4L>H-_c7egUVuUc(X!8xIlpGQa`ZaEKg4fQYPdVQkwS@a&r
zItBXxLUn^fW@r7kLn8mW45mGbYW~xSOukzZ=i|i-OO_9wW;n)XZZ*&@{Qcef-%m-K
zcNf4&<CdKNp6JGX&NmUGUS@2!L>z~h09N!H6v4pu1-G755nyK}YsdzB`@xSl+J@Yr
zX6P%<>SQv#q2GwY&aYE5u8q{P$wgk@p}TtLiUl!elXbRJ1=Q<RnwpUYcO!P|bc}2V
z3ftxV1ZSB+?7sPzz0b8sZnsVUOe<$GsnemFeu7kUI|)-)vtXHHjc&PJ$e7af@O|Kv
z&{G;<n+k&1&Vl);2k7q!g1C?)s0`-S1#dll{d0OA7SC1ZyI`uMCf7-a3=7AH>Wxk?
zxL}#fnFa8h>q6IRuB{<xSY<c-){sb<5$)zeFd(21j<sq9TNG1dCdd<=U&qHwSlxLX
zRe^V^XSa-wVEGnt-+h9K94l4<I7EnI&Jpvkv9ak!RY=Hsk6!tUng$riyn<MToD&vQ
z{*OrV&uj2k$9R_U0W#M&_ZMq8_UR$;rsobYnTG&ATU@-nLt%GAfF&4vfUZ*-WujQf
zMR}ENFtw(@@Wq=h<aE7n_EdA^bS#cW$p0;dLqv`{+iu6~{*;vC?Q5ddzr;UYrN1eZ
zN1>CVg^~q6$MF+#OTf=)A}6pDFdcZzPvw#WXfl}}czp~_Q3<Y2bMmWJY<~a#j+lXq
z%k=o>v-6i8dG^c$#+!L)!gA!YNr2GRt5+Y;<_wSAjEcF>MYl1dl=ErT{_i)kFiue|
zjaB;Z-})URogYOH4i2iwGR6J_srw&vt}vW(<NCy$m5P%PsypJ<X!sPZ)Rr9}mM{=1
zOk<*FU>LgqFbwb)e^UeG#)mZti@u3->wxH=^P@fILGd)DF=OU7D7CTQvU)$fi;=lu
zp@$JO_vUOn3~^sq<INt|gL@i3DDoaf@!sCL{7jKVKVCpd#G!aDT^CG!338{RqDnq{
z?n0(U0>IU+BK&ft5}w9xJ6~J?15k0(bvZPm=)+3`>&Z%0V6$S%Z{u!2KP&gudE;D-
z9}psie&=r3uo<;f57exH!{gR{_oUI$QE3((0-Lm7d9`KtJhBHczj_yaj$#<ts>{j2
z(GRgxee_5TC<e8;Du^LlzD2OpI7a@@JrPGtU6l7-t7oDi6~CLP_wV0paS2%==K$e=
zT?OMD_R!x7)05ytaA5>>3;Oi}VjhVR%(oB(VPirWRBOIT@LwJe9{BPli>@5hUIjz7
z$@{j9{hd#I`_YL1<iCF^{{%_@`iJP2dxdP$&HPM9z|34;*HFRFUGmuaHZ>q|pj#l^
z*bKy{IEGYNNgM423Z&ICKvL1Fr%QIjE@kq!L#A4eM<NIFgJHqdkWHn<!niZ~O7LsE
z^?dT@n@nsFx$(Xwjf|FYo8hT|n}hxN5X!9!SSf2^^7-<QfbFcnRH=5#?yeW|vc!0?
z;SIo^bqBloEJA8#G>egO1K@gboE{7)$ie}`1*?-Iq=F{kqk@w+JUry5ek2DRjJ>5$
z|4WhceV0i{MuIg{9h@#UBCC(LEY}wFTjyQsQxYn}G6R-wJ={m;!~)I_O`U+h2FwH>
zxI*YX?RIWkU`d}8dNTgx0PsRsCl{*i*y57{suMYyP$1R6S!(LW&%5pYcq1f@k_g&s
z?LF4+2*jXmjP>+v$yh?%TVu0dzA(7p?|%q5(~1u0_liLu^h>n}{;pqYJJHe;A76Gl
zI5~{~a&tjqS4b<M>=-a-W7-Y^tYp>_Baey!<Cq6IJIlSxvY6kSKLDwW5;l8M7${n<
zo)S@z5q?OQZD8=C+rcW_%rmX2NjxzEq08?qw?8VzdQ4PQ#xo`9y#YLbmt{d>)YNkx
zfOpb*`)s>!8N#8quOmoGrsEpfq4dEaEK)FJDgf9~GPssuB}kNRgzdk)1r}x(2@UBz
z_#*UkR1B61hzdJL7E!)|GZulbFZhKuQ!;SBV%2=^f^G@=W!nz;=prnj4Lx50Ws0NJ
zR(bI#YIo5WRzsgU=>hIN4#*OBNuFD8n$q#DwIVHIC9097C}3UthPRyC?p8DfYtmMP
zQ3b4Phhdx`8!i{mDmQPC(@eto=jP`NiaCzbb-!G!k@p4t-ua_7X+G16KSnB?ip0YA
zX9%x}<YkM#b~pcuvWkT`D)LR*nEyISQY;j>bkCyWTiBB)3il2sHH8jkr}O1PrH|3H
zk<xkhZjV1Cmu{=P=f6Sc?#TFaYhPll@cS?oOAox0^icY%#-ktBQ~uUSTS8@&01{(v
z|CNf0GGpVL$k|&NfRwCohl)9H(R<zLEI?0!f%rR*(1E>TedL6>&gX2VLlX$`wmslJ
zy}6K&>pw)74$M4x^U`2za$DmG)6y?6{s3LSEsyco89?LEXHsP7>^;p8-4|3(FsCQF
z337Pj#NA{t1O>p2b`iCcPZI7EGE4hWv;-nxm7G(TfJVs+As+9jzP(}d6@Dfj(bd{W
z!Y$FX&xUvO%2O<@a9Ke57^#b$?~ZoP4NQzrTAdP&em`T?K<I8Cg|@MVvM_o#xppRL
z=F4@fdro=&>GD`-z(6Qjl{NS?$D)mAA!$>dX&(4Ho6CKtyk3E}>ya*=Ik~y_e($~=
z2;2JMz&1cyVl^WnU<LBv?V0G%d(G41>4e~|wt4Zc5*tB)>{L7DrlD-LwSy2hE?$ub
zz5$kW{dSk3sRBAC*Sod8w)9o51pyg2nTA9-eDV({=+3i5F-7h9Ti}6(VoQK><?y#N
zHQ+>T7)*nc6;~^_k*m=_g7HUN(oTWn6XCL<?b0%#a(^RqdzcmO@$=5(gM9-2Ucda6
zasT+9VmujOcG}$txc#(4MK4`!x)6=nw@MwAC@}6TK0ArTs*a@wLW30>;3u$q*Vjr(
z;Y?T50RV2F=KSm2gfjv^cgimcZ+bnoh}A^5#PQuZ%am^eoC<0x=QE1^GQjvU*|YZ;
z1nh5KYZws}V`n~&I`NDonH4YwhdtFQkVjA=!hnxr4{+_y`5yPOM6mrQJwwO%mI712
zM4a476JP{0;re@l`-wZ4>_JEv^@#KC!v%%YL*2Q~K!}NDD>$!xMxp6P5^Ja63Kv2b
zrrJ+EkG)|^>G~y(QPgqtMmu&=^8?`B%<WzhEkJE~1O&V^U}5sGLHY!h#C*@;`YpTK
z5p>*x-V+=o&ubX4TUrC+RJuiHK$b}JaQubmKq}VW(BhYLnJP2^sy*##ZtBpDLuWem
z9GQ|2zHlnp0J_KgPs0JWRVg3z*8rR6Gv*GR*7m(&{@;r$)^DH{wxdR_TZOR~gzdd9
zDJjYP{`$g__-qmTRS#1E)hb1or1kf21Vy>$A;?p}(G>OGg=zj^ruSrx{B09iJi3fK
zq{p@9EIYyzNYw9FLnQMWFQkb(LuP&f&gc%m#g;S036Om~j!x6eUdyG`15z8WB?W#q
zB%gS+1^Wr4dvRDE=xFjjfXFjgPC6h|3e38p;%z02!&plQ8xF3RX-S&LX14=HQ65T%
zpXL}7c`BAbWOjZ6Gx|QZz4$6}1Em6)0bJ&ddQMM5_j6qh?{qKWq<S_>b4F1kta^}k
z!151bxes66MCn^e&SS&ZYg(5?8KF(@Q}TWF^pe{nYTMVD#9HKPNlVL8sEkciX!J`N
zNZSvpo8rz%!D#W_cAyFHRjU+gcQE<qP!!-ToGrx@a(%!4d0tbffSRpPJrUOTui~E0
zS(l8s!sdYvwSebDTpalgV$88=xaz9p@{`4L6|w~|3tLA?<whtPDa@)W7fMj3G9opV
z*10$7n9*9Dcb&>MeWj1gFUD{Ea1XX7XgEnFU7{e=dcV9BuLI0Yf0qhd{Dlfarz^CP
zbkrlW+Rp_bU3+nq0?utpRXlS5&CH_<BVlhHYX*l{dGfW)E_9s`QQRBF(>6^&j5h_?
zRhpsx@dVRpRnL?A)b$$zVq#Nsk73%%H<z@P>C5s%Dgy&+5`m!d$mv$iD?5sCK+(<v
z7_B6!vW0&mXWSlF1zJH$mDwU5gp`~d0xLz)a82C&ee|v4EH}XZ%4fl&RjNuNb$?1%
zVW{8)%QIEReo5wI$$~4tpx}K1ku*M>W_X(40hnBBWvT)zRue%P^$WRDzK{C#fo8XX
z@-pCr;}12)-^X`fn8KE7BR|-1g(pZ{eeZz>wh_~31X~{$q5Nx24^=&xOaUjBg_!G>
z&SZQY)k?W;kZ#a*?WrgzVDY~(s@#9ChfJ%ZUY>#}zag;`z&uQvUDGPIOHi>iER}(!
zhbRY6s|-?U2+OSRIPyTU_b^^{LmNQoFElo7?ne%=1itD?Xx@}K1bkMqkY>tS(gVQm
zuPm?J+L@2<d!WrgqdX`Sd8j$?w5oXvcB(6fGf3lm>=>(ZR9s#@D0_-`^9Ksn^~0Hu
zIUu39#6-dk?PXmiQ4A1Db7rzn2r|thBO_u1GlVyiOF_zx&|H_=Y4Iv)L;o5<U-<sy
zOt(x|MYKjY+U0MDj$G;gjGTXTGEGirYwlP_zA{j_STTJbfR=!K7*+Ap8r1kCHSMZK
zu*vJ2GU9yoChH#yfmWo2Tzqr|0H>VF(#*C?6&Sw37Y*Nv-!8IY4xDn8V**X&^saCb
zP6S-$Xofa&zb3L_02}KvrQ344-4M;GEwPq&GF|p;%Fh)8lB$7aBmu3<1SZRg(zCpQ
zK|}H%0Z$%JzyLv*wpla-Qi^nn&Dh2<9eGiF1>9w&LeqR9Hdj5En!G96f&B%W?!`93
zm{Mf55~qhLi&npG&pc2_VP1fNAEBw|4|MV3qpPW~q9Ato8ErSf)M2{)p7Y`xj=!Ii
z*w}SpcH7a2XKKKdS}h0c3%I?3yuVRd_vGt0>T{eF*+~5UGeMA6z)?3VHe_dZrcO}O
zekr8Z)B$AW$u!&0uZeF1%CM^D&Fk+C0uj>=P<;L03-^y1XBacXD#l~~c(4DDo^t1*
zVy}yNZ@Yy8bGde}zeR6!-b=;MYZv1ytAh-D3L6?!3$=&iXf?co-jb^tfnHEynQs7$
z+xdhjh=yDUFzfU1)e&W9?=z_dE1kP%I`oMDy)zeg&0wSR#2p6Eq=u?#MM;e~_4F)b
z`0rRIg{p4+2|yB}$Sr<zz2$u!9i4RfaAKy0v1=t`UK3M#%N7~qbo>X>+_bCshR?i9
z+2NuAKf<}ON;TLsHEm7iW7P`32h;b7sMNp(AdgM0<%a@AYhFYR)z7LgpFd}UkK6qK
ztW-Xdd;0ckNU86{F~W{GUt3SiCi)jbxU4*We15Idn(yfkgLFRyTB@DL>gwtuBTVxX
zR9ZdRppA|nar|L5uBr0WS2sy9fm0EkpR#IwDF8+25^?^9sQoKH^x|A__iw>=mX4Q~
zSDLj^`1&?;()qs-R3PGYkzW)Jj^3sFXTA9c-uGA61iXo{Q4z-Yl~}fG$A$SVz!WRX
zjPxKBN*}#-{^6Y;xoIE19725xuLC`)b`)=koqJ)dqb$%AKPTJV+?0n6*J4+F9VGI8
zySOa^NoL*Y6|iOlAeq)a`3(&PpB@v|x(Q2Fju`k9z-09t0i3@b04Gq#Nn+#FA+o>|
z%=B%N>cMZPd3V6d56bgFDd(n`<6xWjYHpog9_<f1ia<tzngoB`v=M2xvOyDBG!5>8
z6_u2{r?Os4$5~B^Y<nfMerS=}yzh!;shr`Ho3?<&OIfij7r;{?=Vb1#=f_^?+;)3P
zl6Y0znw<?&pDKm@KhoYhpvrXn9#;lb4vHusDiQ_=D4~K#W6&XW0BNNgq&pN*l$LHJ
z58a&xN_QVZIuG6P+h^`)W}JIxuJile|A2GgygcvoK6~%A*IN5Nu(6(GGL<LX0H;db
zTKx^oaX5nxK9=nSIN7SV7;82us~275w^aAsC_WhM(QZDt<ZJxHl4ZGKl=2pOUflV!
z>h+Iz{PvZbHFfOp;$g3*?;GbkRfX7GD%x@7o3+_w<Q1F(g7@bpImz)n1vwks)J_nl
zZN-{Dd8+oW1?G<xbi;y~a8lD<T<WWGsj4dk&qVg4K@d||HM-2WX<NUZHYr=UyWJ6U
za80R3G>x!N!sQj`_t#g)-&~JoIm%Qv9OH26+&(sC`WASdYm_EqMMg!%2&Ifv*#8=%
zIS>>yZ(N`hoE4GTv)X3mre|I7n4+P_F~5cI^2~D+lZoNaZlUT<U-W!>+>RYv(BX5b
z<hCL|b>FUvcfo0(p+e0DD#7Hv?_^a=pjs$MGO0wpE+8XsCjNcL#oFOAxWt=AFJB=2
z{bzr(3yDso@Y~uJZ)Y28X$i1s9_(#D2j0waOTv?{_{GlA)enq`GxwsL6N3E0Kj3)?
zhCY3}x^cH|>D?PRS~}_cLPD-%-C#;)TFyc4pAZSo!R_G7kO!ud`{U)S&4E2?4jEs@
z@?QmE?awOo=g?(EkuWaddE>3RQ0ij&*KMMrO6bqScVX_$o408x8_7ozrxf-0>(N8t
z<^IOU$J%DQAf2zL&loJ}<Bz6KnkaFIWRdYuRrJioXXNu&60(kC=Wh@@%JQ9RaoQU7
zbe5jA@QaBtMX}IayCzrWo4K026Hqz1K3EZ<I`OTns?wL76C)YL8OC71S$V9I(r*0B
zHk9a(eA6U;k%VX-BBXsI&z<kLjRfnbcjYJp3)`8So&tZjhX03&xCLL2rONF(&1HZ`
zYYd#TAjr2{7)|3FPq^uj&^5Q137+<TXA}HON$X|0M<8;dNI{HWI*)DGEGfihgGgz2
z{!Ym(Ds3FRLZ4elusn6o8<al>#!}b75HcJ8ram5-F-)F#4->YwxCJm?!liA}LKG85
zyCW}7%Yzu^>tM`MKpD#4i9bsA{(U#Q(BNPl8}{9OfS{T#v5tIixJE?0HqjM2cI>;=
z5@hR~vXngb`FZm#wP01!sACTa$+LFqXI4$Bq~J@e#>+m}Uy#;v@XGS8)(}7~7OxI~
z5ZAc-o<c2GL9aJAHR4$1k3etAk)yPkzx;3#{;-CBphkM^I9MA~us)4gRjsfu7<}Hq
zxG*`$A&t97N@tE2dZl!2vm#>Mdq2l1SvX`=S4>K{>vZBP!RsPD%OPTqzE`7mdvdcD
ziTtIupZ4#_X&8Lns)_S&*B-Y!J20ikC?REautx35Uv>_V3FpfI?z0xjN^&H6eTKY0
zikE9-%rZaMLqXlCD{>05KGj49?^o2YKvR)m9qgZ{qM|Z?^E3r#=aWLR!TaH0xn4F<
zQZ@RDJW^X7G@pVI^7Yt>89@@(m?7gGPMbxe2iimAdal!OT=>Bm{w7+JI$ZUsXp3sv
z$d&;V_?}^b%?&+v+x>MhmHp*=9IrO-Hm!34uIUFt|2t74fwbS?$SqH%)t5J006&+z
z!C1sH&l%i6b)Lk$@T9aCUVD3LP~xKy*qGYba5O0Gi`=l+@7Q;$*udJ!EH8VL?{%A#
z-!|PeY*MgFf!nI)SaB?h*tFVxpEuUx-hB2)M@o?wUKjVc7xFt$+*G_au|J#?T?BHD
zs?uqErzC%}xnY;4JQ<-n-11zT>8R@y<`dp&P(Nt5n^$W+Jy8h&{xg@6jtU=b-2T$)
zns@8X^nzC8G#46%%_#>6zG*TCb!wWjogUkf@L$L5^{Z(!Tt8Luofx0+ZNQ>D#w$5l
z6mUOXCyCvDasexHeP+>`%KGhlQEWH$CX!yg8=iV6lpu@onuUpqhXNZ+&Ka-T6g`gM
zEJ*O*sE%|w*q+SKs@PB>R@@psJkYJ>zL>JLVCpjGSH3FQwfR_A`-bAz=H|QiFJ`=6
zgNX1AJ1Ym+S!`XwndK{@Gi@JWfEl#fux%p?!MW}Xi(uerF}m!HQBA-Mi(5g#YoVoB
zc1m88Rgda*$Qa_gp1wMH;R?3V)hU057K##luRZugVyo_33x0m`R_zSZ7p1UJU=zpm
za)Etk_S28!P^~^^;LcE2FRIdvBu*Q1@7GsMfPPzm4xUlIOo;q~64?7BBqi0uR+@ep
zoZsF8#=LX)9;`?7Od|KAyR!5%As*OAyBye+K$;@%Hw_8>TgUzNp2=Y7Ov0e8yC5zu
z(vN_F+!klCuEXMCw*}VhyS<)bk7!5e4aCQN1gKHThikEz;XaS9uHjQS@0%YwWq{ZA
zI-sGLFfS!Q(9&C^0`ngJa&FCWjtc|3{q3u!eEn)sbyF&*HGjMP>GhN;G>Jsa^|IMe
zN_BP5%a<?b!V&xg>`A9FN*9gVnM1PE<YD|klU%*A*S4AX??-}L@Kt`-)Cq2~M%<sp
zrEp>Xs?W}!UZ0^9;)AS_o6>==)zqZtbYDA>o+-}fZ3l^w6wN8MvwcqaEgilyw}xhX
zXL-AybbDk=qQz~$Exudi{c^QhuA_2;SK9LnBl8Xa$fn@|v@@FBaxcXsXzEfRXY`Rk
z^;x5r{JUpb5kB@EM|_-*sK2;wziLwI{YqBJ!T~!a?w1GFi5~_`$};L_^m=#UJogo<
zlIL&d4}4|C`p6O+#0FrC&|kdL*7~)@<-mgY+MCy}{a}N24$i;On>fc~0@%j_lkYB6
zd5X@f5yPRpr}*F;&#3=^RLR$;n*r3IY!IAWCpj*{SqutC{p=|Ke^(Yw0_r?GJZQOB
zU~rzOqGBjMqpEeEc09XH$7=K~%~xe<H4O!JUAnH5jug`^)8Hya%aYKO^vZK>63wcW
zIAy|~@p{9PZ|^?fGcI9sGB55}7uO95X5nWb5?cIiI`-L!SRv--iDDMC9R{#)QN6l%
zA8ROb*bW1T^4PxU4Iw)P-*!<0pq+SgXj|MoWvymbgEz^Rl7*$tE3a*48D^Gz!Jme~
zC!AwDsP4&ht)su+)!3#JxCLQ%Mj!oU4EQ4&@E>tAz+F?Woa<kU_^5v(|B>5Du8gkI
z#6(a7X;e^8h69)GaXzw*tjw)yQ?2j(zAOP1yNh-$B2Pr(?26}h>*h@?)Qerxw6YEd
z0cBf!pI(s1)7=B7!PDd+q0rBf85RN$#jW&DQMhczt+uTW<c)Zgo@^>SK@CQ;r%=5a
zg;i<jAd<A*C$Xi*gJZ=-Z8@euGmuTqfvPy#%fe-8<bIxHk$$>7dT@Pf(XKmR)oC&p
zikmR#fu$yVH_o7i8Yr-Vxk?3)2Zf2HqQU2H@g<8l^Fr88#K$GVu!py3T`CRmI8Ms-
zKIWWnm(|02DzO~;0`Wm!^OF^5i0stRC#z~<DQ#ALL8tVlgR*Y--cU=)rafkPetmI&
zu*EyGC-&<p_Cacp#b&eHEUw!^Zb6!1Q~<M-lGVvj<P8<l5(8Uf6THC=eNKdn79GYH
zcdbS$ozY{ZQ<}_%0xTKM2~XKENj)L*3Z-K{T;&R33@R5*R@Z6plqiI6ko2uCX`_NF
z^1lae7IUgoSisnE<d;su-Oy4MG_=u|3%h5Zu7?#xf0STHYcWXMQOQPuF`=4lh4@rr
z6VLI@=T4L9_XRUt)3Rn}`=??Q_R0bE?P2}Hr!IDZz%umzI8Fn69p~&{ac~4x2^Y1}
z-)8*%Z~!4EDc#MRDOTinf7~C~xKrl3??%5_!89kqC$2R-mpimZ-mGu@SYxo*JbpNm
zA|+`!AS<Kv^e~<QC6+MIbb~02Rq>emMrPQjU|-XqciN`NFe%SishmoA^?I>1XIFK0
zLWFlf?)N>0U40>mUBPRF0hdEsZtogzkKg^K$k{P<%U~`Yvt>UR>t}Z39#Uy)NzT~f
z8F-83^SD97=>k-O+jfrNor`ooWjymvR#rAq$d{59H+~e?MM+OD1;&?zGu(tIl9BuN
zU_RA(HYF&~5l;*?KR(;4X;=_hUe4XN6q*G+U}mS?4YoAa6YXbtZ;)NMpg&1MOst9X
zY@o<=^Mvmfr|*~P)w(p^G1jR${w%SKuL)JeSul8xHFWH;n55*njCR!JyXY3K_i_Wb
zEDy1zG=D!t4a0%*wr(t9PzjYwR)=BnE!xZ;2dKUDraN}oGUr&SCvFh+pVzcF`TOd-
z1=GOM92RpLN4#kdmxcRx(Ifwd6GR#YB!YzQe*zQa&X^q!u}p+i@P*h0&(S0XOJmfF
zBeD_poE#T$m4d4MW~hW8g&YJ_S>&W2V78A&IJAtJhJ3me5{h^%cE}?l`qt4i7U%Be
zV?XqEf5<@GjzM1Hr1awS$D=<zL9mBTEF-?r_VhUmPHD8DNCJ|So`|tn^Sa1+^XLl(
z1G+9(%SldHe)+d;^{;QKj{r*w$F-5@2juE6kdlABnt#`A58VI+;Nv>|6_N)I{7EtP
zYgE_huBjkyvx|PoEyB4?`{J*Eo4<qLCF?%XyPsoX*x%2P))*jj32FcCIMaF=nAn;L
z`7A{uk3V3oAQ_|R9nO_slTjN=&@?yu{SN+q_F|XuL?ocV)lcr6{rx`v>F)jc5;H_&
zxA>Ecw%1yYMyz(XEFyXpPrm%?_q!3FKnzN~`<qw)$r55edO^bVh^&Ld7Y_BmzWTqs
zQ9taC|NB>Q==fdfU3*VLCiqW3`9I&s??6ml-8mF(-c0tV75s<S@Z0WmJAxq6Kv3U(
z_%lh%f4$b$ApnmGigY7ae^zV$*K4JA#kqX+(%ZP-F79vN>~;+Qk)YsRJs0cW`v?E=
zJFz?`u$=>eC|c4`rOu8Tt^at(f8LqDe~X?nJZ}BntKa(mya)gD#{Bn%ipO>51l#<0
z+E4%6^*|%`1TL5v6-DKZivRs(|C8MS{;jwLDSa##{-;e%q$i7WpMuj;Pxkt!Z~xO8
zx$-xhIl%xbWsbb3wEsWX_uo#b)+Ai_{?0zL+yCRAiN|j5l;jux+dl?<0QfT*Q-OIf
zJn#Q~vEhEb%>T#tD@B_6T72F$pDLO9dQlq9p*u24p{m-uBTJHJ`;7A+T{|5zk}doV
z%`LQ2*qo88YD{rI?o7MgG>1-JI;pA1lV!JlYyH-ptuti8kcfQiTM8qYS~O_Q>BaIA
zghfRIESghoPwzs@A3%Rb=MT7ec;B*I_6@PsY57tuL9XNW^Qukb`BOsP7ipj^nq$<P
zeV@{0&pgHx1DKk4<UQ$QC(mniS1o@b&$VAS_;=1LK)%e7$xrS-7-m-zGt5{uVXSQY
z0S7RLC1vxuD)h4zb(6mWymERnRZIVqm+ncy0G(^Bod~h<@vo3~Xg5c4tgQE_7X{pT
z8oq#}Hve95mOcIZFWVFHuj%)9J$dLJXqJk^5U7X5W>422_`SBr3q5;X<?8YW=37tW
z8)=voD6`%K$J<K=Oy_^NR@%~*JF##hT#tnCEkwloBME_$0YI(pwnO3J;oa8!axzaH
z#_>%+Nzc{*xp9iD>kKeR0zde0*3Ub1NU(ncx{BIVNvF2wTxOXhmc<1ep7%gz?b7T4
zpkT8-M^i{dOe_#e)o(y{1u@xsS;^GfRWLe>^Jo(BV{Yjri3ptyY>QWbQSZdoRUogq
z@mUzu8^h5<ZQl&O#{vHSmosRp$D=o~+|{P?h?SD@-aj4^Mp+1S4UTG|q(6&LtZuII
z(#6mbrnz#Zc5FI|%jR4KmemCe@9WqB<8}6w)UCO=^*54b7nOKB2gdSUI7Sm!+OK>Y
z-l@3Mdn@ZX6<^2$uEcQQNmS0QR*Bl#g~d2@yX2wO(O37Gxav`qY~6_46!dlxRjG$H
zy>RQ53ab4sKNMg8P#XQH#CP*^Ddoc=)AX?|t_@)Cfk8Zzyj4Z`uwg|{-KS5sFGIZE
zzSZu@RLzB|Ls##V@mvdk|Jqbk5+MuBLvIM{0Q)<bOv7wF*?yh?psEmH%81I#2Xn7{
zz3OfL^{&&qSGIUNR;@`fudS`0U!?3JN>O`=ow74NIazq;sN^5P7n)Z`Y1J9leilgi
zBZ%R-xm}YG8%u3r0z-HvKUTnaw|J_22?+_({f!mC*51f-wj%IYah2k$hp4E?=x^j4
zsNdW@$2-OGnXu;UP>Ju%jYbvb2(>c)d{J2^rJ}I|74yh+?|`cP<ef|L&ATL13&D|H
zRHDiElZESZT!O4xlt~|^TO?j~<=-XlEi{hMd;P6UKuAc;%q)AR`}8M=<Mv=LQ*M*m
zGlnHUzSLTSAror0acXrb4U#l8q!_D8oU7Og@G6eWpC_k+q5V=jmaX~aojE15a-sNQ
z@fhJ$PDLy-bv}tSI=oar5j#3O?CD*j-qz`(NzhCXGcrm~xo|Y8Kc?x|^_1G}%N8&s
zY8_66Zl~$c@iiVsCMKUFvWB+bL$Cg}=b+Zb5kJbWbK+-brJl2!MKg!c{8D?l-RdL0
zlk*3yt1t11$4|R#y}-ZaeUS~deZBD{QHo&fxJK}NxJ6b=!Bg{!$b(2WsvfR#lA)5K
zN7huPK0y`VDW*c*6u&C1XX3MXJo+MLR5eE9uyEb&eDJM<n2KFjUs&6F2V!nS_Coe#
zxQTRL^=~L`ZN1!8v#)G0#Yd~&pO38Ixl8g`Ku&TQSKxF`3?BUz_cfn2wFlIXD-Z8|
zoYx67y8A6)WxFa`TQ_<CaCIom%A&<_6B?eM#WkSKl_X>f+{(}b<ALs`O5l`aq~LJu
z_$<N9SPvU@tt=#m2;&y|)0|O%zJ8KW!nu=n-c)?N?F@w$Q<5%~ID@RX@uaUet%w$i
z6`|evM_M47#NYk+ZBS#*9fKc!`p4@(enoBI2BVD!Gt$UkQrS<(8L^)@gwwqcoI{Ev
zJrJZS0!b-0&0Z%+h}}LVJU<Y&Hdb4FJY^Fv+7Nv}ORnp?nml$Z$9P+7AkQ#j4rMT>
zwmcoc3x&=*{LW0(0TLBS5fS<&{~MPo;B<<pZNUQp4Tr(z;vTX|Omb*<w+k37?`*jT
z3bny!{HYn|_xh4X7+H>**_DGvzr~Xqg#!J_8yUQaGW{5ooYmLMo{DgPS1KHgVPJ31
zrJ@XES}=K8^ataeOuOo%$BP#(vg#2n=v<!D--Y4BiY3n-4hN`mA6!x=>9!)$|B9NV
zIgIqlQ>(CVmVR2<+1V*v_WE8HOxj(v;P)Bwz4S;W=Y;NTd5^BNbMvmdk8)ST_=P#E
zOAVoK{rpt_aL0Ym;#T2O6P)dK=VxMDB7SN<9N8psb9UYXAVG1M6awGjQb^7bx9?Y^
zO8TU`w?17*o1OFFZ7IwOe_B9DsbS??&ZPDFls%7zeM-j8<Sk_`ZLO~>gKBd6>+D7M
zjK|K3wdFQ){N@EPT**{~Byf2m_{vyys{r}!Bs0>WoiUF=DPCJ^o_^1{7oM*79B#nV
zRe}!mLw7-xFc=|Z^}*PvhujSE>3Ua%bev3_SDV;3AU=8AH0{exL_@1X9^}9Z6>Z8X
z210-|z49gxsai@_prMy>#SVopd_l-bx0=WDvH9NE$(}BY79L$-{4bYUwY2c=rXMN=
zp^_w{X4M>ayWc7@u&9DI!TQq~p_jPAa$&ll1G;NDEwx(7r)oRu(OqU^>T)uC8uTy@
zdOK*F;R5Log8J=jc#pAk%QWcEy?zQ_^G(q_0}EW!amFv)7$pp23=k<mmK~OGIHV)8
zTK-H{w)r(8S=W0L0_oj~tWgO}l)GL-2(!)H$&0LC85A<-vkGC1sl$ldaigJfyKd<G
zb#NrI1oW`_z<B3gE=>7Y6T(h@OLJ+YraM6-&~Lk6a;kAItBUfrIy0r?(tX1&RM59)
z)viY~T|A=Q<0AMDwmxE^CFPRmiB(R{6?><CAzm&gZ024S?|8TXJd7Mzk{+dey-}*<
z%%T#Dshtm8z=EIuMEv+92XlcGpKz>b8bq%3o>P)^Uz28y5i7U@(63m4#_Wmam1N?x
zXT_&#{e>uJGCu-egHL&#J>!ExCgR$R(n3#Gj6+L4F{YPQy=N8wdZY&Mu<<!!NSWli
z*pXh|ozE^56~#akX#o6R=6QucGE&~Rc$`8$OU)RjrR4y<dV7`aOhc&l()0&kC14lr
zJLyMnZl{h_Etbv=u1{oD<NkIayYh#fjm41-voGUN{K+{|pXq86=>UCA<GrorGiNOC
z#Fz-mcX;P<px4fuYwBDf5^{U_se(P)z61Y_-JY|)Mnw6m@b@xJ44p&68HJjk*UIIY
z111LKB`tO(gc(dz*SXG#P|cGZ#jOwK2cDg(9(B2>OrmJeyw{D)Y!h^;hbyk>%4tbM
z8axFO25B}bbR?Bgf7Js<MCy359cd_u7QU(4VNGSZ-RPWs){FZw8eNGR)L)g^lXda5
zqU|Ox1ghGulQSB^h~WyzTAgV^_TGs+J?X(l@(G_Z<V$=`k?HWzIz@U4aiyBs;An$f
zfe^+GM`u)`%Otbvz`lcXw21(ZKHn0ESspJ#@-sJp+OSy?8~lK!W+@=JVFpaPaslR=
z))r2aN%Ts?xk#zjF4`~ol-a|&Hew2ubBc<05Q)G3WhNtyr5Ac(l((bJh)q>_rV4Ks
zNB0y>;w7(_W@o(^;Yc!+iOX0TldCd7Fh@PFr|)YPW0VyZ?@2EI7~#%_<&Echgyct~
zp6sv295&{(jIafD6xVu}A5>@tmbp74dhj-r*GbOFex+--OSPcwHlI^*o(NJ<2`XM%
zp1D_UQMb#L601pw`8W`>85tN=6si0Bjdp8i^s75`e{%b@ntBqK^}BtS>PSHJ_YZb4
zG^-;Q*nZz7e^UXEEAz82rpmb4$gX-)Ifr7LvXA2I%4qDb6&ZC5KECrpC?jKZn9BU&
zlXY}pp`Dt%fIoVm`w>q$!Ya2`tY2fGK7E!#+EhjOhRJE%WSKciy@BAz^a(t9<hVq1
zX*gggW7Q?ayEA<il2MF!4ULBYNv(9s2pqD$ivHIFLJC)LsA1@34wi(CM~_vzC|C)w
zPv3}*MKFU1;$8k*qgA;+A*45ix&Y%R2^X+Ub%GAMn;&My4G`JsPXgENsM6&=cs=a5
zafS<u@evyK@3g#xc!A|{GM$K<y$!Ir&E=DLx7T=Pp(R?FRdvvh4CVlp3)(t2xTGIO
zH4f$-l#B<6?Zv)c?AU=0i4o9Nt)U%L%o65)9|D+lTpm!)Ta1&Bcuw9>Ovv{15$ZDP
zgbA^W(d)in9Dy&lh4E*QmH=@c@^jk(Ot+j5M%zI;J1c`yBN-xjF0%`yfWcllnpt-O
zCbKDT_v@TG1ys&kHN4y7#G4c{T{&9uNi6NaszK);v~k3t_|-;4knXhNp(7}~)Y70Y
zi6fqa;|b0mBbqrVB2YKKS%MycY1(SYZmMMU@t91CD5+Uz{5k@2y}w7moWj;=?%w(V
z>S7xV5gl}xisD0b(w8SBS!pF2C_!A#g}_>JBrtM<@pRO#0pcSX#={=iC3`)LaXBdA
zN+#9d21@;vV?%>qJhptB{edJ9dN9<wEenby8{Qem9*1;`6(F#$J9L(0wnmceeZv$p
zmrh?fEbo|lx6@VffhaE19Qj<<gBFh&d4^Hut#u<RJE6rL6ey*0iBKLbR>*$7hh&po
zjlR165m-q72Zy+U`e7DF9PbqK4CAKrXICQGnW`iA9{m3LkEzq|zmrQJ8$nV*{&+oY
ze26)AE{O~MdhZLl>3fOuKBb=!^O6Gw_Sa|?mV7Tets=w*vcI}eEIfMtS?K`9CEv1<
zJjRiuxiCaUA(5%b6|LGq22oh%sK<E{0~jXh<MI+wSPsNxru<m57w(O4SJy&>!lk}e
z6BISZ@C_SdGT4FIEUTE}a(KY>I+jWUn>ti{F5$(_GD;H4m$-b62g=wf(|Cs{5|b0A
zFi^1~%5E}jG;h_>X+EcJXO50_9M6gNakLRO^$21lm0LnxG9D`LgG^__Gde%#%Lluf
zB(paR?OzQ>Ydx^>*d+%?roW1zErnid6fZPCGh882ba<e4Gh+g)qdY`Q-j4w{LA^pl
zL@C{+_}I5N4-qo-W@l3ALz6tiztGfSsS2kBB_i*&MLTUgagp_q?hIi#oW3MI@`<1Y
zOQm7*OAI3Ygrx*mMKymMxi!aSkZ>gMZmUDA>)WDXfw$-SV9=MU_H{<nfx?VvmABmu
z%6xn+0#+2Znyn6wP$p}qy+*nEqVA;5?7KiD7k4&5aC(!oH)E#>D)fnI!mlSgLHF3C
z1a;Srw89dt;<VmX`N4T<@5O0evw=zE{jUq@M-Ef^!<(fsN~+MsCNP-6oK__pS|7JE
z2PI4$w~1Y9eOM+N@|kRkF*MjsdUkF)0z=Js{Hy<>inrW_M)HTwU(&~vfDb}{bAoMs
z0<X2)j{AqaP{K`yRD<E&Qh?1xqGv1DZ2umv{1p+3UBjPNKz}qP?3A88_5efswcV!k
z(ixmK{A-Der&tnA)v3^e9_8|17Fip515NPXd<#|yJ0g2|HJ1ywKEbv25(FF1Sj2sp
z-c#-XV+M|sU0VtkuqTwiCBy&V=_RD>aySG2jP%8DvVgXnOF+cG3$s2Cv-9U+AFruT
z={`_HAp&J(iG=Up#;cdxrmK>0JH>|dM!X6s-^YSENesO97`d<;G9Alyqco-^?o<eE
zP<eiA+QAao8CPP~Rb{69-LIn3Klp`(+c1YGnU+8=*@KlL&t2HKKi?b~?LL}3;)Naa
zLRGpv*%HCtf?SlLQy)#W&5y4nv{VI(5bHo3-T5Rx-|z?Oqr(HF1~SM@z>V56K5W(!
zu%uq}3-2yj?^e#^n5~d`J-xTuVlzkD#Rm^UAeGw6PHU+1{<?w!x{-h)RmMMw;I_$v
zLR?~Gc;+3vTgn9n6Pcco&1HM<IFc(ve=s<3#T7-mrb0*SpbW(q8noA9+QCd0Y5V<+
z$({XCVbY{ML@w`7qT6S6{;GHkdMPD>$Lg0{90^9Hd^2`dXJ8>NlJ&kl^k;d1i%_Rl
zT-Mv<1y_lb+wC@r54IZ-`fgrQ9xnOwprx$$;!hCe;oJZmZ5y}1VBwV6&Yh36Sb{k;
z)oe(mNs^=lD3Q)>Hph|E%cx&GjODMWGvu3Li=3PrW(f``aQ;+QprDf}zSjLht~D80
zJuvu~ZPPEUR?Gk)H=eA|l~wPP1VZ1JuOl2TpI^U_ikDW08!}g+;3{&I5?O$6isBwC
z(4dI{?8YHa6-j+4pixUeMW5fEsmdjbj9p6Fye8A3xE6J{O3i<Rw5c3>#~1|+P+uq5
zC`=_WSw)holT8&O1Hf7w%zwZIhIH#w$FIx9rP2K&jsW5XFHdh`M7Lwsl|Y^8i&Cy4
z87y_GInM+JASj?Y(k;}dA`cFhl@gA~-qhUKsJrvSijU$X!Wc5{d;9+9_YyrvZYTYq
z1^7#dJJyJRu9_9FMj~8vtOIDfO4P0RAl3|Kl>%j?=knYVj$1CZ-+LuAUn9@Vz}}4Q
zW9$k3ChTa^r}tmkL+Tv3*Ptk;QKn9=cCS6TZ4495t%k3XNQp>F-t}N8*MPWvLnSdD
zWI7WzMW0Rf0TQZ463_PLd?1ftP>hDmY%wl2xRw=WA0hDF1RRJEqJw51Pj#1A=<=nL
zEEJYxBztkG$$BJ0C1%fjmDlhRcqTMjpY*u!NR|pQV9S_wOP?pq^LVHnDMRwAmHOay
zh4(#f?$1UgYBEQ5p?R;|akXgD<Lo-697^t6MtFy=+qq2TqGq(k`I9jdg@=m4crQe2
z7Ow6qIz08>1^l1@($ANXo;8)L;ms|ftNmmRf2?7BA^(AMe7upe`Pv^C;9q|w<%LIL
zU=Q<{_pfr#Bn0m1(-P5%;W$_?X3+VEMwYe^@}xR;dw+4THb(1e#%e-Hr4FbD<$(%|
z4h#}Lr<R)RyuV}8_wY0iNs+-l|1XM)tJuP+;~{Cf`{fHr7AzeVA{J#HoYD8x(e#RI
zV5rawY~w}G5V;9~xHuT(tbM1cr5VaOs@zg{7Jo`5kvd{}I^x_H5A5TXynC*A3$3<y
zbf6i+p|r~@vd?iEBI|L(d7-vCR3#j(qzlBBLcjt|*UxUJ&&5+qOra@k2A=|sYAtLl
zG8H~3TKf3DQSZ6ma{!Iu6Z89mRi-=13jZ}h!2Uw)S3GPDjm<^(8>6^-(A4Cq9guXk
zS$>E$*+>KKegZPolRuSAc(|~e?@I!r%cv#ON!Ek@a)~>+&`xmIfo&*uKYP8chIsyK
znDGw?_+HD6Rc){tbbdXR1II(AOdE{WR#16$Y4si!>9tRp+3mzue$X|yLEb=K77Tjd
z3_{VA&EY)V$7yOjY5g%cB);4$uL*?lY?h$h-zK$iUtJB4zOC(5<@F_fsjJci6`8Oq
zK<c{YSc6A4KX;i_=@1IoH40T^Dv6`41C$8!fsc9L%qqHL?gPiqVo<OlKD9EzP_2$~
zsGQ;P=&GhuhUP|dl;RiF0t4h+XKLV_np@UXv_msi3=`-XelS_G+RXKkLAeBP?+<eX
zSN=2jQf{fQHToETc-;ST>yc2oL7i7Zu4qMU2rS*_mqH(i4Ka@&PdhnYe3XEQ&I4yg
zdGpw-0EW(9cA-!|E&Ml6s=i&k)KYojWCd38UqUcHSkgf&5w3+5z<GlaiTbwRL&D``
zv4&6a0&i7Le2=tfHt!0sR6(W4!DyA&o++XdqYEIxUem=&Py1@c5Ya-!xXYD!+guHi
zQh3*qL(;3YbBmvO4|Kt1!vvSJP=hqimheV^!qW{Z-?<SO%f8|{2w=SnXZRZc=S#aR
zD<?^g$slutCGN*-Ak*Pu9w{|}293<z`M%CMtwA39wWTtU5@n&M-jk`VoXgj1tBtss
ztBdz1!m2QJCK$eQ-cLV0#PriGNiFa8hWL6onJ_1yw1A`;oUyT*NetOpC1X~be|*P{
z|H)YpX&2$hdh|11rLv!7-cZmVLL20B^_>l<*Hyk=B14hZHN!2I+Q%@E+xT81bHL!m
z`)~)-B#Gfd+Fjn2P+7kN;)X<}^^Ihu2^|+{eRppAXSX1|Wjl&zqvo=2rC=vAOkX>Y
z{v>bj38Lfu_y**zWtvXFQp-aoN}qU!F10!sg(;r`k-Q_WzwB)fJz^1-O%x?HEj)CD
zZMW0mPg{QE)#Afd1~t4Mh~YsFsSJ++oPKKNA0h8L4Gp5Aq9OYR%XiCqRr?zebAol5
zUb6oEph=tkl3*^tnJGN*=ngY;mfpsh%I3;a!tP8}Ly#hv+yjnkin=P@y-J981E2?F
z*0lqOd-tuJ2T}r4^UG;&4HV@$BLr0x(AI07T<*XUS+fe9VD{mI;2D7sCe?I7@7hz&
zz_al)Kkh3%TC!vf=b|#OYd-3d)f-}*0u-R{aCK4kzJTfn)a<!ShM$7Mu>A9Xbw{Nb
zaC4nA=?FdJ`2?@--@j<w1LhY+&?gcs<DC0h6X6I>r7O5|#1%u*k||nEz+A4OS?5y#
zWmVt7*4SyARm~V)r@aUPtGp3VQ-3#Y!Nt)Q(U|JrJ{V2vp3@+A-feYRkm#H@E9~N$
z72M2yuH&cwO^Dt0?QP6S$=u+nO4BzJ3`*$6l2tW~rapPdR)Yn4qosghv8P7erLHuc
z+-LuSodikt;g`D8MP3rQs2Ayxtc~3*w#-?SPkfHxXbX=(jh_t+=Fb#>$Eh13zNPF0
zxRaKO9K!A2WaHgq*_}$R%ElE3DEk}9F%b!gg3*tj1CToy1DN(9t&mlt`pBU}AkM>@
zS=Q2)21As)CEBW|4{(*K%D4J4!_K=I3sr{)CP89MC7-}GLQ~yoJqU}N<6TfHY`o09
zJ0(dPx#E5W%Vqv%2cf{3<~q`91&5)+VbgkS4?HHsyFPT*h3Q7mDA-~ttn8gvoUpv|
z)Qdhi%D0hp^8mEjY<^^e9)={>0xP@vi{4!Aw~VT#`K@09LlkaOETqlx54R0Fu1au$
z>Ry#dB#ybF$leHD+C|8>XT}BhVZS=6nJtUHv$Mj%#)dcTSuc37Xdi;&QeyNr(vW8|
zRC8~k+}OPZin3*OO6%UI)}KigdbgIxR0SCE+^*nV+&_h2fySumCvFo8Y|l^?gHW8Y
z$1?192Y2Sw4-G&Xr=wVQB77)$gd=_P(a}V8=k3oVxUwmdHA!#-db5;}a8?%MA>NMo
z_0jyc^<4Si<Cx>Kkb-1cQ#w^9aYeT=^vpzD&Yx#@{#!5o*Ke~GMgZ<90*IvritI@f
z$<C&_p;KQSdTwtXhFrR9r1(|Bre;F?s#HIo+_JFShn23|rb?!*^xsG24J=>tRXwQi
zImoB2N2X$G#fBQa!gfy_3w=J&JwR(!mF}c7FH)2t=DegMw64;6a09niHt6D|2d?xC
zR`L&G=T9_--Kldv+_xdCZacMw<uE(EB+#n>_}rs~NjeKF3df3yc83yLo4na|@DyGg
zkMpy&CB5qLkyKAcQ7Fy>+hFAxayfKTxF8gCi}Z?&Kq!KgK@k>c@Z$gmv;-;>;*4)Q
zv2uph2a;GchE&B;J#6Dc5=$VC0@gc+K*Vysw{7i&Dfkw&<Xn{5D#dfEfZhu^OunO6
zL1wCO7`Dc`rF!{O*3h<qrsVp)wCWB!yU*=_JQA*5#YF`tRQsXK=-(#@+3wCH$IJtj
ze_a>k%4iZ>S-hK3A^mlIx-kpPJujQ_k=NQCNQUI3C8jdn^$dXLZRtB=56vO7(b$o4
zcgeJ2fT=q?oL0CNq3C_(sP^q9w_c*FG6ZJ=&PJnw8@+Z=`<59>^*qOVaPXbK1x)Zm
z%uUrQHQ8dnKc)jn?chC_i#=Dfd`{5z8+ov^-3w+^^s$z|48cFpI{c`PqVJ)|P2pkH
z>^SvqRD%88Y)CDZ&F-vt>yl^BXEAC`U%u#fJZ1a(61eKRxZMO#=)K4yro_z*6FZGa
z&kC;GRppwnYUqucRLk6-5il)u7%I?DHGaZEZ)m@Y0As(Z%MBI--O4#K9ajg(3lsUm
zwO@s<bRhZ<!>QEF&@)@zl1_K{RP&f{PJFu0AH-Fj#6VTTwqJxcL=-<VsM*I$elc)t
z%8;rEZ5;tnR6R*PzA1Fu%^Kt`BxNhv9@gwn-fbSS&k;|PsYfcPV(ANcW`-Dtjvxg!
zePE?G7w(oVmNwvBcOS6pKxnA|iy0I<0Y<y30P<s7B1srygQ2@Mgdq2XxS^VO#ngGr
z9z~RZ;6iPY46#}xlS+1G)ApTfd+>*2iUu8+SClf>Kelk-30N9I_PS|3#b@XOLJ!N~
zhh$7D(=9zOdvw1xW|Ng<5PK{1F7AbtM5%i?QQ%g%cN}Qo5Mw28aHpBRv!$#W0syfA
z>X~DOU&G}{nLGxrM3JEg6a2z#8vTdHAeZf~ge<~n-=KWfVsY>*^6HB^;z&Zm);WdM
z+MYI!GY!R7ClQxX50GYuvkxVK<6TU!H&dXr6#7E*grsgp*t)4%%;+55*DYuXglEnO
zOE@{fDQ@Dwu{z`+SN?AN)9+YXY(D-qE!x>T-RVzcwd$;9Q<Hag58%pjoz85KP2P%o
zUI`TM#fB1Rfy*+o5BNAZ(o#BI4pyne#2R*}#I9yUba3x8yl6jABfq2bj{V8CmWaE?
zOac43vOgp?-|4e0rhIIzh1CDFEBV9DESXRucny_Kqhlv|43&IQ(EPg)k!u+XEs$IL
z0XF5~&Rxn9L3m!89n9-w@*Rh!IZ($fDzw9S_Y_h*hIG|DDqPWWeh*ILjO{0;C1Z*l
z=C3niww((#MTHyFCH?&D^5z!j*_R9_5>|qYZ2G&62J{6@2IN!FU&1%ZCkmDQ`!-*l
za1t8S?`>4v?J>dTOb0f1?_Be5S(57|vW0N3&CkDir$E2sixX80o1uK+$bJ1QdcE0k
zX_xZBVMO-c<?tkoau*6|fmFPL{*Z);2IJPsaz@2$>Sx*4ik#Qj{R+_#c<8y$rFH?<
z63%YAc#gh0*LtB}IPJ4lbY%yMAq6EzPn{$sYjQcE_M!@_TFzPlbJj1&Jd}D>W!Z+@
z1<{&FJtfGqB!WJZ1izi=@7jP0rGWH?{1&N4{7g~o9EsK-JR;9~vNK=kWsSP~C=4Vg
zB`HCBWpF=obo3UZ>=wNYbw10E4%KgWfd2{E>y2IW^2pqF-sM?u=igw`-^-?dXE?b%
zyAn%2;S9bB&u(9Q<;K5!wl~K<ctM44SjHef+h9TR&3TRbUSf{oaS9R1Q5wb;<AI9{
zxz3hyq<(kzpWxRI=sHJhE)08PT4rUoXMC-|3(g2Zw-+lapdClA_d&=xywY^y+<6(j
zDTo3MEldx)Pn~}F^5)*^XCTl>_<rxSB#vWX`dlV3M%oa%F<}+Eq>zA;x1;cME{~<=
z(~xRiSiPt&*+9^qg=(5TgGrh#@@E(^xWv%}n(~=Hn(5TMI8XRu&c#$t<NfWw`r`|t
zud7$^ZA$%<Aajy2DDY`W36w!86>KDzRLVOqyDs#Rs*-vXpY)OZ>jk9N0Sd&ej-1QC
zhwk6=$Nvn^i3%EZvtfnXo6Czw<~GZ(GaXmLe4V>_In_~TJsGcXwCMEr_UlnU9O6Ix
z3H~;MYuB$`BXMG0`{Aem<-=$sH6|2%drgq{MTK)etsspa_fKBodG!v>W&E*m(|CVP
zTIa$AfqpWszm~kZZQ)<jecygqljXR*a*LjphURlV1^Lg@-V@YP{kZK#Sw*BVr{4}d
z&DdHQEnXK8`fXeO`GSe~+{U-8kZU}EJ)yCpHxvU%WV3K=?g1EygLy&m*K6_TKk~QB
zAr*{wmUM%j(HM)EYuCSTWLUvtzMAzb2}P9PRNa5I%KX_USM#0`W_p+1!h6AvFpA+*
zLN}nfo0l5+st$H;j3z3M^!_^W{ofz5A9vngZ>WF$h8v69cy>?X_rwR{YJRD5mxzx4
zPZ!INPbz#fZcOI~2H9WVkiT8aUtf^I0Wx2ZEBl+ve__%0&;Ov53|@fPZ1n~9pFK10
zdE5X^3aWT9`T7qm?BAD-ZWKpOgJIN^`r}`3<bSy2vG)jwG#HvOgqjckUvC=rlVV>I
zT&uI#yB=)|d=9Noo!ZZzcT24gCO?h|-H7wXX2%f_V;TqY{?UQ)_iOrynW*Q8EU+Zk
zt~O{(FgLz$VBlaf=*f)I-vzb(crhWtzpv9@!mxk)ug03;e!r+8Dkk=}1V?szWr7jR
z7%0}8qqsDAciz7z!9v2Sul1p<yM^&Q_4haDpL{5_sax@}P%O=?%m&l!Aa|yF8i=R#
zj_;$RO+XkZ{gN#{0-Lv#k}BuxJq7PovBt4Cne5$vE%5lKx7&!|TJXZhsp<di+GFYP
zPOy+BGVT7PZ}hk8{Ob#`@34Ds?D`SUA9^1D@R0lAiRG6DsQ`nh>c$Vo&HoR7<pP;7
z(^y^0=pS9OzdsA5;&JPd>H6!w<?XkvlLx#o(RphW<ayqFsSl88?I~}OsNuE%8HT<u
zc7aA??pb*mAwBOBo|9%sCg%+rq$PV7qV<(m`xE#Z<|rLAX=sD;tnzpZ^P6rU@|o{q
zmlU8k-TmE78zL&lB{yu!W$^yfr$=R=n@)$iasyiF{lLQcFjSbWFyEf|_SAWn>dEFP
zLr9oyKcS0^`r1pa=5(-)t%hNc{YP+E=zOvYd&8fP^Ld8zwRIz&Dh9j+@&I%zX(4bj
zdH-HsrcPDH@xt}rPbU6RP$@B7659B)O6f0Fghnp*`9%Fj^)IKvhcAH39q`2d*0_ga
z(`_vCxzw#A%so#QB=-m7bhPGk5(6m-Ip*IRc+a~Y#poUjL2a!P2g+)K=i^}mn>?n~
zE$nIh#75oYtnJ+!s5b^phtH782VJOw*{6BKoLMQQPpcrz;^0bh&RoO77^^(((3vkD
z@xLn<nhXMa6DlCgHY@zfTFwK=q}bRLY$fJ;nCC2dn&{kJj-9%wm7!czII>k?Vp6d#
zF9zVwIYy;kfB@%#+p=-4WD2n4KBkJbc0W6K;NDVca4vr$UU*3?Y1V+LI&@YpwbcJw
zTFy^>-OX10IEVLDwN+q1&11V5a5yMKw>9Yf5m~cAYzlvC%%^8pl<$wD?6VMXmzV9B
z&*T5T%73#<=YKis5hPboZ3s+(by_>YSX+da);xuR*-lFd<70=R)65GZ!}<|q&c+cT
zj#V}hbjdO(c5|@Bs5BeQNXnLzE)s|#%z1J97x5r+DxEGR$}t8ZQmdGGDgf}4tHJ$G
z4~p@I&5_$z9GNB^u7{D&_sOos*wvV0-EiS-3)HO|9fM@hK-g9vkU}iQ5<Ebot9Bu`
z-wsCIl<hp41oF%Q@N%8pae*3h0gEWt$($z+QFkukiiXSX`*_;(l`VnhVWKe=-ZFx3
zSTy2PovbB}%kIE%Iv7ia4O872^c4V*Ep?hx^M|UQMi5r%ja}M#x}U8QNnthgV+<iu
zGR~uO`Eb4DG`86v>kOR?H@Q$|)8~abWKPI>`AJJG1Kr;=P-tJ+WWPYt(3{7l6{V-n
z%HtfWY_%KCQE1n87>`cppG!1WdOGL4Uu{r`F>La2sZQc^kel4<Ajp3VPo!G_eXN%V
zuyGpi+9D;_P_(nJww9{fAui+@6F0nbIousiqLzf7+B`7(e6-27`vq&R7A%dmaU&%z
zg5?(hjYKHR{k*;IL@_cKte0$(f%K^H?#9AFI&8?D4gt2yML+{BMz@6BNpAf`9IR3D
zfdJP8{UUr8fo0lrpKc8G+$Zt;$Uwu-Pa5ZQ@B4{Oj@Xubz`8CTO**^u<<_I$>QZV#
z5Cna96({>+=l%6pQhT`I&btt9m}&mYK!rom%&RHr9iFRlyL|<>7T4NXS@$hp1A@$h
zF&DuWzMXe>Z$r9qG!en3tQhn~6<yhVu##ETVk@5hZT|7mq;W5{48e#oBh^XsR>%hC
z@yh`o#FB=29g9=r{raojet{chJeo#QZ-|VRR$n&I*VoUy;dC9}6f3mnxl#a3&95>0
z&`{gysCfgA^%nEn`UZ^a8yOlR%v`M8s5#4z|AwCg^{s(RI)8B<{rD~j659MD;6$7c
zM^wpG3XbOqcI<>9ZV#u3#Paxc@MyE(u1`u#?w082n0+-gbfK7&_%dO)8bD=iqa^R)
z7jEq9D;8r3XP~xNEO?w`asoqM)a^9)ty^tK3pttu_xYAx%Cq#<?+2(WFt?R-LH>V6
z;nb^Ogp8XA(iaZlNtBGhe9DnK$QjXHc`6TdehYLMJ9*^rX{#g#sO-l5GrhzUjG-gF
z@FjCfFT#E8IHj$I8+U;dD4a8(0%@~W)|w;5Qi5G!O)L*MD5gN%K6Qz7vZ2NIOeYH2
z;6#`Y6hPJkr#8!>G?{<Vfy?aIXPaf6>e`=Ou(-LOed_l|iGPNqcehF<xOr?W<)?{~
zn-Naww_<QqFgeK8ZkUI5Lk{5PGz0dH{IT~Ca)x&A3OE-I2U~S2oPpGP3%xOC|Aviw
z=ZoLyU9RPrB+vf#7OH$c=SydDxr@lU26XU3VWff9Oc-g*_x{_rjXL(2GX!;PQ$<%7
zgZ=#UE?jW<&WX$U@Q7PGz1j9e2u$drAUn${6FUVkeLlFKzPyz0PK2q9K)Nl0K0N<8
zl_QIm9gtrZK;Hj6F8Jk3T$eBgP9Nx>eer2h-?~$DqyyV4L6~c4IrD;t<-qzn*sWmU
zhJ9zYIOmF_93Uw@UYr24l8U}U?S^wMoc(XeP0QPSIA`hjwlWrg0}K_E_3lE^0CZx|
znM`H#x95QK@YUoo;O-p{je%m4)LPs_!hHd}h5?UfS<Q3K`jrJ7$<eXEb$&WP|M|+$
z0GgG@Wbj@Q*LD;*CJkkx^KhiGv*zft&lp|AU@6J=>K_NNW@$FgSbJ2g=V*%w*t%jF
znN|I-PLU7p^4ct_z{z=_!<kGXxY7@h@I02t$3E=X5kb0=zElT>xj>m>BM8e{kh?#Z
z7@~#<%OdmT*$Bk~JX+@6PjpLqZWFvR!8T#03PAhhvb$%$O@55_yB!6z7dhZ=F%}Iz
z!)hyLI9GivT4V3ub=WX+u_RM5bK5<jq%>-GV2A%ux!g9V%Eat@_D8}y3pcn~v7QH5
zHtmbFoeoaE!)0F=MPR|At!%$s(A7#iNV398Fvx`43;L5EQ*B1;UmwcRuk?{<D79X=
z_?-8K-WHfVbX4vxa#anFJi0lyQK(QX(}Th>1yhhABO40PX4hjQbq5EDQO>(3$FRm5
zYy^?R;hVrwELEM`TIYz{eEkDxd>3z{>GARR5{5n(f0hw@xw)FScY41tD19Rt6smXP
z{WZ6j{6UE?U#3S$5&yD!g+lC^jC?_ka6|1BjY5h}suiJGUJ+x=#mak3Sw&1S-*-gB
zC3EV%34Q)`LL@53LR@2FB~qh-&V{HoG=)ku9!OE2e~&-3lx0PtVh7U`C4!_ZEu6FU
z4-o})2>~%lBZ1+yT%%2Me7zy;%#NxUD>FNmYLb(<c5{<!=@@aWx#RkD+tq933F`&v
zKt0=l7VIu*n7fl;zphyc!xj4U5B!gpiu0r9xh$tgb_nG=@zt4oJ;|OgPwG2V93KU|
zO2JIvDTzmIZA1~3NAP0FRJ7kxKzG*x*5;fnSmp%ndA0WE$WNT$lCuDLOjm=SJoL#O
zzQ4Ktpq63?(Jwhbmrp!YZXvBHdoKZ4CC({z%0<AQ+yI7?=ez5CYD3PoF%^|;d|L-I
zR!`NB*Hmhyf$^+!N|lDJt;o~NCHS;9j>OiGUwOcYO%G3C0Xq-!-;anKbRTQbSE;db
zcXC)Qz+gQ-kndI|?dE1w6pk>o+x3BFCbTZYVjJt?x$pXL%OPb<%1`QP1+a(g9-6ld
zZLM%kY9NdKC=Rx-TrU%zyZr|m27I;oeG#vA8zW$;{aZx%k8k}XMu2+2hSBN8YK*|i
zJIt6uhgzx~SN?#ty}Rk)-W}Wgs)Fg=1oDFw=0klLZPY1|Y^+AQemSw*crL4KqJ`R@
z@2VuRa<DdDXs2r8K4ET?ST5@Ir&Nd1`$ybl=wgq!)^cGpc_*Ow$d^3VCdZ}(qtnNn
zocLbL`CmW#8N%bf-$yL|>;UG4DrN$gQ-PGw;=v@hFZ7fQIsYapL%nJU`4HB`f;Fw|
zh|fk=_B#dSN}MNUE+9u`3sa3@V;CV)Pq|z4e4{kR>0{Ex_a%0vXi~t5ri+kwO9R^q
z%z$13lTku-ushiyFyoBc6GSp|-!XKi0RK>-S*4@K>mINp3#cT+*bIX~z%wMDt~k0Q
z7etQt0#cT-2fC=igrwLfSg}nPty4(HGTm#C`snL7qN>O6q~+es!XcJLkVyqIE||W?
zX)8?yh%vp{Qf(zD203LLFLY!;Cs9cdO}CV!;rW2h02Ta!K?>0x>9o<;{Akr`4|H2?
z35Ez`?)6St=W1b6z5FO~%ko_L;zt8OTl?B+YTFS?Dkl>}6IBNu)!EpL!IBr{;w>hq
zR*<b%QM>zQ!%AA^xY{tMWJMLEWQX%pF)r4aC<f=$eQ<5D8l{miq^Kz3Y#~vR@wm-1
zx94Ak^OSS5%d+_-(A@bja^};}_p<V_KTXp4mc-VAoa{SasflIfEXEJ0W8D?WDA9yf
zRm}28%?tGUgjK4=A}Al;=)-8+%*U$i20M{<n2Jpmk2^@q_FHKI5zR3-GK*{17uLxg
zeXJXI%uhI-qk~a<pUIRV6GA&AS0|%}P|{BHbPcS(?NO->Ec}3Yyfo#hte(`hrsB6h
zp8UA`XX16YcA8l7i|dBV2Bl{<Aza>6J^r=r{S!AH7>(m&MR4;n{bzRJf&9UyRozD%
z(wQ>GE=|Tabay(IBYP|D3x`!p>aF&HFa_o@ig+Z?iosD={ON@(`d;kBgVI*_+Eb|L
zapZ%QZhRN{U%9`)AVL}~ciTZ|L~jxxJ*DRcOY*SR!$aRyVvt=zzIqW4ZrXz-X!G!+
zx+Ez<TUp`nSV>7t)YKg85zGN6>h+jMrOV#3Pz1MKE)Ou#nNmhPc)^-&-2IH&v<Nx&
z;BQ*BdCw7N_6CP|hv}}%fnyo?F7AIuOzeT|%h^NR<7WAhz;5I~fnkV)yyCOT#`(i2
znM8>!`*-fVD5fzsk4}<k&e4~|gFJfJa624Q<g=Ns5l(4vF{D=1-nU}67fUW@Ft?jC
zEct?}=d-8FANSDR*~DOQ7?c$5M*=^geV`G~66-eXatV?52*INNOT}@-W4m1}Cl_l1
znVB0H3<3<b$C(0i6B#ivQ}LyQ<+rAJDksAYA3QKsqIJN_>s&iH4MRmNDbi*lFTp5H
zhpP1`bxm%Fiz@dd8%Pz`oIhzm<hE`TAlvrAQaNg(u~GOdMnYUn%mPzolhF)p)U|^f
zOG&c=Y=+&PX8TDkf$s0hK*_kM1Uo4rZvfgb14X>dg1(f-n9AKuE`<nf`Q-Z43Ef6c
zCe_WFr6imnPRx&1vLtq{Gf=CUSFKUcDjpCKy1XS(n}yV7Yu>S{o62N+AL;LCQ+w<`
zj>;cU7i{e+m5#euxodKm)B(J&B1LcS8fqyOT=%0%YYTIm-?BFnF!}FzW`g}fjV2hn
z`mSrnLidbL6$fE~`%!GDE%kYW$n~gkHB_$O1G<uek$pjgFx@-i^n(uuJofKjO?qfq
z-o$cYur7oLPxZsx`Eyw9=vxD2I~-!E!*H}ufo4j-;L_BM^7tfIIhOKq<0VMw%Ifc+
zL_gH4_=o$n5HQ;{knTxoh<9ms3cfo(3QS;9L1{CI`{Z~fB)4VffE8KgQ>!s5QJ22k
zM|f}KhyumU^UjFOT}Tvn;>b-aYcHb)k-+&Oi(Hu`o3M~pKVHi8g0!q$Q<_D5l${L^
zUA`1hq!LGq*DH5QT%zln99m4G%e6DV8SI7pnxsjq*P>C+rKInA1i>47e4E+Px~VPH
zQCys!$W-ADybDD>>k!d5OTTTT&xubxh909zP}0Acz{=Mfe?Sqbsinq`(q>)CsqZ=$
zlEk;M7W=c71b^QdES@++_O(lngSwr0BZT6V4~bhOUOlp3d6~{>V5pvw!&I78Y-7IP
zM1&rBGj(OiOG==F*g@b3mV(;hvKeyo$#<$sGVx{IN1;-#0zu+(X9R*m<@|N)-_vKd
z2QUDYSwvqS(Pay6wBVx61;@5A#FRzFs~%#{cov}udGhugqYBN<FjRctA7o!8Z+9lA
zowYZ`B@E~kyRHwl3QASH&s}>6(&(!{xXRgLaTLBA_cnlqwzY~RrIV38A|eqN1j&4>
z94TEnz3|yo{hR%~y}AkO2tzgOJqf;204ecKo>e(VMb(ffj0stz&A{?GmEtIn8eW~h
zQGI7tuaxUoDvXLZkaVsnJ@rxU5iGM_0J_x0gY|A0(v)>W!HMC#N~gQxmwAjI{%<8U
z0CKgsUN9@^z)SY^n<bgv3)Nyjy!KaxRK2UKi4NdMVrc)Q<m3S$jVd1V34i#A`mWn}
z=j_3&G8^Od<T0KcF5@%;7DzA8VKTAJJkhvn=oMd~48l@-u?!&|kb5uc9FC7`DMSgA
zdUe7W(@6$WZwjuvRb`CUbG{eud?Dl*CsL3Wej(dB4Qj6Er|}Bpj_N`mK2t{A`FK`r
z6QoZD(05+`D7uXnN?1qMd@)4%SV4v5@GHGntsr6qu~Vt2DB)x~dTrqj@Ovqc=7`fQ
z^oju;+e)Eh$iue$_;SMXSVgl-2<va34H4g`{gq{dSlKF$2QeU@cW{8P%M3iOlFXC<
z0aPxcJHXGX9A7^(Q^A;SK39r7a?6&|eqV4kGUk?09$)t#jtF#RINx@jQTZkj1(Iob
z3AwEOyxC)m1A{E@VnVQ9jngJ_>%n#{L(kE#=g}uiEN5f}^7R9Y5G^O(<GZ1`*mvu~
z<TB&wh4Yz}WVX}Ey*K9vbD2w%AH%Jq7IFg``V(L-L0;tyI!j+a242)gifcU<Qo`~u
zJrwSIGf)0(Sp#*};sbHcA&5;|HH1iZtV`oFtT!umR1~u4-3AfKO?z0)hl4-^z8ndL
z{Uv@r44*!=mt!o33Q@tNsi|kZ-5LBJT=nl}o-QBZvFGp>N!p=AO+>I`_D#+2?=qnl
zHa}ZYQ)NwT9L($^PZ%@==k8NHm_h@Lie{THnR(I^{@``#klgyaKPnwp{&L)a^*X9Q
zOu_yRYo}|%0gP$mbQU0_NkWnm?7oDM?J!cZn?&+J1<a9A?}#g!$lo8#w>KtQpYEKW
zg(LoELI!=$+W5(WuP62?h%G)rcYYZJPbHoVJd{?Q($-MkDS{*uO$5Y8ZQW?QBxuv4
zicfM(n!~h}zBMVsq4JXTg@GO)j>+>KHnhms(lj(kn>U3s4vKIpbRFC^8Po$oSyodd
z#~rQJwhzD36CX|rtbWHri3$-w0H${>$clJi#Hnt{ZQpGtt)#@A^$U6mI;5;n^hb<2
zK)SI2?u%YtGME}5C99Gq0b)5(>>Vs1>m<@s?!!}Vhm5YBs@o}z9m@ozHkF#p$Q;&C
zct7+7S-M=cJ{VhH4$62&abw_zvy{l2{~7Cz9Kzo+vVV(sfByFUDK}N+o~`3bna?C#
zIHQR{_>$!L|FL%7@l^MH{4b?(6e^-3+D4%v*`p*P!m+pPy*E)(DoNQh<HWJo!LcHe
zz4uD?CVL!y?{D{gU3K5TtE>C>xPE^%)YsSde7>L0d%RxHw-TEaW&Py_a8l8eCqKll
zI)h^eG&+HuAcp*624Xs|wdOb-tr8F7<<-Gg`5*k`MdO7$QF5>oJ@ukiJ0!|%Guzjz
zzS1Z{S9?@VdMQl5^ll0Eb{{D_2B~%jLa?x)JG-EVUXqphaL!MZXAgB{BHPBx3Y$5Y
zLb!1g254mR)7F+jF|WsvOWg`}nel0m42fL1A(->aS|MyHe!4(%C6j)T4}y@*lnW9e
zLwxU%gG@lPI@%QF-1yUm<||-%e_NC2XV1f52L)-V#9(jaLpZl7AE`lhHvZ%jybDkV
z=AUW{=XJ78=}seeZ({I0xsNTb&D2C$zV5SYP;haFdUE+?%)@4U|CY8>liiafnG{Ra
zL>mFK?%X-$?jo)!t}1QiX@=~!zEA`0gb%X5TW_k+S;wdEWvPa4r@bU8x>lXEDuDDZ
zdE7}@az7xwffY;OTy`>js0m76x!O#!YTq4@HHv6)JxvhX3R0v_@Oa)%;h~Uko6Kk&
z8xRmMa>=qku7C=L>8+e6jD8^)qOr2`qfSR2?K$}E{24x{L8-VfIFCBMmOsDQhPbI2
z3uI$%AEaX1fJCF%cNj&U;23}v80VenFLwL<E!zGaN(Ks^?6mpVFDeeh{+)P)afj5`
zYl|T`%%GLW9gGfp9Vq`cf4`!My6RqV_@*x|S_6a*cgE*NDc*Wqs|2fjJhsn?c+lGQ
zvnpk2%VMFLCT-zfq^g57d{S@44x{J}0yO4LX9$)*Av%yqu&c;!wr?2(qFzbuFt#dD
zG1L4}|3nV`AgP+sYwS&0$jpw8A3wmEMy)<(#>D<|077ZIibF-r#FX`%qck#iCi%B3
zH~E6s@`Qf0gBf~ZoA$f=<1c=SOa5ci5zGA0lV>IIs;3Jk#Z2!Ff~h8<J#sq7h~ktq
zwsy+~{=ov+2q|nAi`x@!T>HXJkGs#&E6nVrW6#KlyxEd`=*Da!!A6!dflyATEWIYy
z#%48>%DS9EJ4v<nU3Qls{m7>;c3L6dj%TYz<vgm(?fIL?G;D1q_R+-%^PJ=eE~daf
z1pun)NC;4B)WIZ3yAISlhO{}5HR9P`5m6!pZOL!5ZhG6Bi&Oy*pMiD_|Ik-R45=*@
zf;w#(GL(9>G9K)(Nl@^ZVL)nT$jRb%%W9-%{ynrpOrh|Wi6qS|;?XXKN}4CL6I1Y2
z6K%;xSkh)NC2>PSqx!k5U-0oW=!L8azJ7PpD<rJ-eJPV6Dm7kAR!b`y*&JyfEvHW0
zhl+1hIHbU?p6?5a=x&ekVH7iD6k-iqv27QxYQ%`CV!PNKzCAE%iGNLUpYcT;MvQ;p
zT~ZJi!78SpK&x{Fq~q49gD?fa5WyIceClyo>0O2-Ft-ABMcDaG+o1GDrPgHOvZkX;
zzE+R<Fo4V-qQc9Rvw3zP_FI`T#A1&F!pwTNL-+2;M}my1li$q<wA^i;n~sZP140rd
zOC&~06(=ThFNg<eph6QEHR2{s02n#5-nbS&$l{GzsZ8X;5GJ`~#}En#%W7PdpNE7b
z-&!n*k3l%J-a24eri%WM@(M5>{fx~~^Ct7X`TM1X<fdc9wkE36L?V=i*Rs72a*On&
zi4EQ)toa{5`Bl;=+PQTPOTkcWQqSBM-yJfh-HzR|>zVzKe&850y=7dL1UFJ!G-fZ$
z8(1^!#B6>6d8Uql2B-ruUh)zmtxl)WbB$c6_iu+VRl=x!4*ouXbyzm`ikaX8QiSnm
zXS9HHl&B`H=TqcFTd^Mvw-Y~g*z>lmjc`ePON%U0Ug`bV{fsF`zZm=CSOQW#k$rbZ
zV&Hu>OMVS{_`bQY#JjWT{sO>-s@#bNS~4_8WYYBD3>wIMK7=R?RPBeLd4vNZLVklE
z(~j{&#$2YUT2kh&f|!MG-a7po-?*qji`bf~-cS6*+LVb0w7N2%#VTgl(cO4R*{2Z7
z`Dh#yi^IT4GurSYSXAr^LxF)4u?Ga=!$-$ELzmmo*;mk8Of?t{xun6qG|iizNBx;Z
z;5%Vs<)CNzB}ph)E)8ML&m3>bc7|~gop4P<c@+y!x`srV_dfmdv4$pFLP(|H-_=zy
zI4%=750n0uKTOW>@S!VX*b@O!^3NTa-E_LQKlP0#1p~$Mi{sXw`}d54{B1s(m2;U0
zmEP$aVRoa@gwp^Y$Xw*|DRer*&Q!tp#OPK#Qg<_*bc-a1mV!wkW#aYi=b=4Wt8N(b
z@1L;x+UWe)>Q>OEk}F<UbvOCbM*@!Pef5tEwz`wqp0>-*pOLOM2-n~*vB`RM!Zf!8
z29H1+%AnIW&t=0lM|_e(uG(O#%gsD2FPW-Z0V5u)wQDb_wZCj>vJOII&IhaMG<aBR
za2v{|dFB6B;Ce7*Wtk5MEsQvDE5J0uMB|tbuas6TYh@S^4{D0^YqdnrRA`d+cLD}V
zf-<r+^iv9bl`xg+12z6WE-0V&FU$@1Ircfva^|Ye6*gKD3nPtcko_*mtwd%Q!ywyG
zCgoc2TSulo3tLB}yzS;{v?pGn3?n^xbFL%n9#VB(;OH<j=jqF0@<>>JU1~ZYF&c<v
zh6wen^XtUYICJIL1))}V*>|5$h@6!{FH4udpL1nbTUy(gE!LZqxmw_2$n{>EB;|-{
z@`Psk3*`zn`#BByXH3qKmX45ot1ex6dH2$dCts{DYRmb~m+YmxrrOMzy}iXTxe@&d
zV-)fuECto}VFZW$0xA`6x6WL`h~yeHk7#jSdGZrfQecq?tmIE!b=q$Iv5x+=qMj;!
z$k$|AO)}uMzWRCvepw_L&1$;P0A15&R=tYEartkpmiRRmwZSO5-Q*oPM3j>!HTE8`
z??0&3xY})8%Q~xbLP|)BvwBm}1q9rLJ+8@N3Mqcmo!RW&wjr;(aS1kEO8F%G=G~Xp
zS8bKA5_+F*d^XZeA{Z4vt7Hr=N$6c8l^kY2A8_WO!1$3nqN3^0@y?qa1Tl2YQDX)P
zk)HVbXN-Ds(@ESJ!pJ3<<x|3tE-hM95hye`iN#(SS4-L9*gGYD#wUn%_4}~_nb22~
zvA-w{Cov`)bQzbV$zyNyFu$LWIW7aqlZt@xcvBqA4Zl-ypL!vB-a9VR#esILKvwuX
zL1GgkwO|j<#w;X}hB2oqPbIoNz5Kp)dEv|&qdiGtFR2yWNNpuCaS;5JJZJ)2Nm0r`
zDRpk$ikLrBUW48$dx{R~jxg%+(cAqXDflB}jk4cQuF+L7yLTtXWphshKzRS%MHP65
zXg(-z+y1BK<H3=Adjhi>pq5f{ZWdhK*YVQqK&DM_<mRN_E%sI*-+ep1r7PKF@>|07
zNp-z)lPL+G!jBU)&Jl@o*9hZhjO~<$$Yp!>-1>zWQcA-;DN>So&a`9apSSW0VZ`?v
zeS6+rc+k|sOC~|^LSm32CF99Ui0Y<wK)k)xul~tlHSfJ#E`Qk=Cf^I9RSN+O$sdp6
zKUd$Mo7(rqC>HXe&Ht(~p=LW*lY@7lDEB~dV<U&6mZkT!0!M$_<~KE!_1GhSeI*7*
z_o3)nkCQ+4$-nts)LGQUVEf4FzU<b+hy5-x#(7Wo<>lQWJEOgFPnnybx}p7T@^_L|
zat-fDcHW=TnE%XEetH_9T>9SH=gVU@)mGc=O#54vYT2rdu;d@><L^F{pT5I?eQT*U
zL_C>o7dH62D)yf%^shb^dLKmA@Ki$nAKeX@|A@qOrfEm*|B?RfX$;VSZ)i3DmO}XJ
z#{y4D2ch;VI#qD0{q-vP&-M7r74((Cm!_g<4E48<4|${vz5?J5C&}VH@oR~j)Y08I
zlWw^r(l;pa@`-7U{}5gL*C+e?KfYyw#~n9G7}Edc-TyCNV332)-n+HCMB{(?*S~yh
zP<h@RB-XxB+4#2~%kLH#6um+Fn3(gZ<eyyzkGvNtD{o?c6vTdc>%aa&lmhJLOmb#>
zAN{k-SR<EFoxLFPlLz|${e>4uKTQ8YHmQ$v&p*4&IC2?$pQO(}Q<H0*^HoW@{qcWW
zHuUmPnmsNz+HlvnKB5;lQW0ppQung6O;Rkukn)5zuElY$qV$?K&S4-Br!&8ufoM9*
zEED8n2;-*NOT|Tcz!s=BdP8(6wewx%xw8S85(|8ps-f}}`s&6n;8C_DE4Sa{=bgMd
z1y!pIXyyyQgfaB`NXM1kw5LPOX_`Isvi9wk?xV}zF#9zFA+v$XP7fxJsFd|`nDzC5
zXu=R8wqj*I$3=ZaPyOGbPK4(5|3}m*@C90%=|e*W+x@Zpn{$r}0c~>b%TsDCMT+?5
zC9y<Tjkbep$AV8`(EWTTOQll8b{REpo7}yq?l8MK)DlD_ZbO=1YG}(>@A<4v!by8}
z%Ud5S{pL)PW#)`rUU?%<zouNcg(M$Z4Sw|IAdFB3_wqO17ASCaAO>liQ7=9lln);z
z0ONU4eJ2JW5#NO+I4J+(ppeGauU%Qc2kGl&8@5&fhsqS}bjqJGFikNA9WPY^!Z=;X
z*3%(*yZFFiwy!Yrr5OODTpxZP5CUKY3)4{W^@d*5-*@W_2+Zh1E>jM30nitt4Is#L
zh+Y*$_p=dK6hiEE`07lwGi&D$*}lL$#htc5`5&q5uU-^zn}WnnqIG|?0e%far)$zl
znP$7MEZc@23fi(V9psZ-8;E<+Yk;$v&%v2=zH-WWW{Fj4y$u81TIDxaPF8>JI5HfN
zo{F<<+SO(#uu?N|-|NAiV4sXjB*oq?ddA@5I;Ru`Www;{`>tfC&y<d8xvso}M4i8J
z*`+~nuOd|CuO?0oZz-NADuAHy)Ic0klY`2jF(}ns+d&~be+dc;_lI_30NAju?TA2x
zpx3{pfYR3b^1&S-gGZE$T?=_Z2J4w#EnWD^!@hiji=ox*)-moIo+6Y)t(=QcJLrOi
zS{<~*3%J7n-ag4i>4W*NoK9!^A<FoxV;%lZEK~rhY@0W`@HUC#d-}t=N<B%el**iU
zFXw%jn2o&J{U&0~E#G*${)|w?8{Y?v>`J)~-0ij5#4+o^*lXoY#}^Bjjrb==yW8UU
z%QBujn`IhRi*;X{Jd@ak%W0jpcvb7bo~d<bBppVtgD~-;Vn!K-7Rn5C%DC9rvmDAC
zWnOz7o0^(RIi8I#fj4<f=n6szgEG-2jLVQ-%;I8FJ^s#$WrD{LsAndHM2}p!cc60`
zvY;t|3k9khfA&4KWn?B)Vw{>#Dsvy$hFo(WcBygzbB1|w2Oz_G5xT+ot3=`s#i7LW
z-YYh~D~)NlMadgpO&}msAbLg`fQaM52ie1YH$FZ6;}Mn#(sPo!G!XysM1OhQrqvTe
zQJ3HC0Ae!+A9#yf?QWuTqVz5sj>_}H9}jt{6gkScZDBeGwMkjyTJ%jRPn?`s&Yo{~
z+t_$fQMTUSXZJ4wr&6M}$>1zqMU3(~lv}jUv%xmge5L>az;xkECUw=JkSQnYPD30M
z;W&{nH}iZdn<|Nv>_Ngu5T)md#MV7Jl?nr~MU={IXL`o#<)4N=0m=D%5ot6n)qju!
z1S%=+$aaPQNE?6kv%R%-=dzht^~%*MN4bUU-!1k=Kuel)+x-6x?n=r%#dh~Q-u1%y
z^IhN*H-r6^sbQ<2>VCf6XsV$asPy_%>)->%nJ7jkaCLmKb|ou<0-P-*zsi7jUC1|x
zm^6y)%2{Wa!nk0iTTgk>Xd&2>m6>c8P)J+#;6RjQI_2ntLpC3zlboZPCZ?a&ZNzKR
z4-P42dDB_9jfG4X%@k#YcEQ-o2_b=-R$O(kyKstluE8d8X8QEk0@$_i^*cEYH#efk
z|AOth;(5vChXaX1(tYTTj@R>1sbjy7L&@_6K=|1EY5m;VW*-fWQ>yVZfdLX(Q`@)f
zeDk6?gPt+<nbV273dxW5D)gR7B^gf=Ox-I^mW}S`(KUMi;(%gA_j9J?t&yYeO;ohT
zyW59xh6AkCpVN{_ig8TA194&!cts(hf6j7Us;N&X<fl*mFPdwU-CN*ccaw6BMb*@o
z9^f8)akb|LGDeo<NhbROSksp(;>FM)RkcYibeR;sNEws@j&E*Y_6QN3UFXXNL+c69
zXu^J1xnwoqNu>lQLT}cJB;r6P%LaBsJM@5uFI^#)l%>ps#__2qK;l3IkU6taUbusM
zaMzMuun8V$Xc!V)jD+0dpR*Qq6pEA(AD;y+sxb&SL;JXiy8~F&XW9^Q960Vf)lFdK
zAijtW5V9q~I2(+WnC9730~(Myr31R7;$O;55ECT>S^LyNc6ePd6kT~A6shs7etFb}
zMKiAuZ2rHoT+IOmvkcIfAq5k(;B~Z_jPHdGjAW!KGVIwrfIrzt<-b9$R=~2$6YxuE
zg$J_cW@TT2S;I#Frfc_PQ{3IpYf0ws0PO`WEZ5?aX9}ODP1K8=9rB^%-#dB-`oJ9B
z*0gY_cfnvcEvPMi8#Ou|aJl*mbhWZUO}nwt#521fQ{jflBqyuY-G4OO-LITWGjrvN
z5<g^>_S;yTX7{4eu%VjgE`oQyYa=0d(B~>^k1WlnN^0`Ycj-@A%)WfzXD#%#4@Gk*
zhs^khg@cB!v>1D$l#?5WUWNC#`?>kh9-L(eVn!{9Yn!Dm_8H#~M^f@1EZ2$uV7byb
z&7I%=k|if?F8uB=dZDp)tpr10Zi)64a}8M`+!73!8(E^8st%<pN?GBeUfeIIirV8*
zU}NPdColp)kIS8&^2LoAAk_Wd3zWC4tPi62B&BduFzkzk!NucFU<gp{FY)FYm?W;C
zEfVjaUp&d6akNi%dIVG=cKy3P20FZ>_Y8nxskncsIFXhcRm;CsoSfk{Ft81Z{e=e%
zpna7N+8G9Adr@WsZsJ0UuKi{aiJz`JubLx`1iFd&HZ=7VjEN^ZCYk#zCnds4`KU_$
zr1FACv!iN9yWkv6Gke0HI?i$6_*dGh8Pa-|S-Vtm7ceR;ymH$-0~eo62x&#8a?)%Z
zP?O<&$=vgKvY-2U9`o3Hb5(OUB}vW8o-eFto^TNNY0>7?4a=)Jl%t=K&_()u<hG-z
zI)GECpy?Aaj|{1+WO3$I`;nKvz30xeMOD+}&_MIs&FwAk&fW(}m{5BJ!8r*h>F1Y0
z$Y?K4tC0@qh|ao}7f<cCC_AV4e<5AHGA8mbm@E_|d7sYDNq)9I$JA1ZVl{YV!kme<
zyH#j$Dmj;zJWMRvDau5dFV1(l#uP$`B-AyNt`_voHHdqrU{|_I97u8W{yvd+9<UYg
zXbDH$QR}KBdFTvL?R7XnsbX)ekHx6AQuaorKJ;KJFz(5{+{BVmE2BdPdd>`;yEvWK
zx;-!mkwrWv?FCRH!9%Yr(KhOmCjF9$v|QR<x+2E>QHak?v@9t9Ij9~>*#twhl~4YJ
z=oof&5l;SY*fpk^s>48CZpy7#tzuH?cWy>;Tg9^SoU88uXj*e13a$Yyr)C9>)eDk0
zjMTFEwkA|upxIjKu|=8d7kLPyoEToj8D2L;kbd>+BHBgJr`TM%;~x)A&mpE!{cRYa
zU|T%{10ZE=7}2aKGZbgScl3fW_OK0*xpEh7mmHzZ?1J%Y8j;T5o+Wn0PAFWtFGFnr
zbTw0@?XfT^G(GEFER*1o^Wx^M9<se+gVJ+1O)aI1p;jH{BY_Thz-2WePPNDd*0i3r
z_ZEz@ai|-HjgFoxN2VvEb4d$|Y{DGf&@c6&xinL_P)A2RL7^ty%#|U{eu+4Lk)XEo
zJZH7?Nsx0=JZWBWW)%P+?qAYe4-tCj!DfPA5aExFS`Z!0@6!%{6R75x&>vH0<2eHB
zbZch5j@zX!UOk)}b!g(a{5cM^zVw_lW#j2={fZ>i-SvwNWFljZ29TpT&B|WBhpufY
z7`;RIDb$TxM4XL;*~=n-hI79v76cQmFIlh?2m63`kArqogkyPp&lm8~mLdbb?QT9W
z=WO0bq2~^UL5WvoL#QpbW{%Xftb@-t+Z*qll}{Q@#cMAaBjN+@wyhbvK$UbHKZJjv
zJxF{gbO2=LNmJ~^%4&||=ctsVas^x8AfeeMpVcH^cPi6h7=_&3r)*IZbQzN-g>Zbx
z-vO>^8KPRp=T<HNLwzstvzAkk-t$UnH>@Z#kbLN_PVuNCTHh@$)IkTqNSLP3{gzQ?
z3ZAX4AaQC{Bdk&rXt240oYROWgvxlmE^dM)LkY%O9)y9g>PZjZE~koJGejxc?>wKJ
zID$@)Rygh4ujKmiAjfK}3B}^E%UX|h^D$A+OHZl!stPg@vz%rpZeEmX&K+7s1bQX$
z01)ef*@=@docPVU^e|oc8C014Kro1Sdx>SUGCXb|?faZ&2WlQ&PsP(fi*@hYMXXXl
zU;#C;ZhZt{d#ZPD7{xH5V!ofUinj3X8!UxCrb9}W?fBia^1f%Ej#Da^`E{h1!ymP8
zZX51C)7GI~E+u<woYp`jfA9wBj9b4K&&R30zH}#@RF??(fbj738YjK$`F+l#qfFce
zj)1aX8d54ybKSZX!92k;=K_S-R<wL4q&NhIm85@DV(Hio-&RUW2)+lGOYZD9>{J{d
zn88{QA`pivI@DR1HJk%_yB1$oK~2#C<86B~x)bS#<m8^X$(l%1#PiD|@^23%)`B??
zZr07UAr6Zw#`kaW{onjN>)3nC1mEGNri^n8U5*xkE9*KSd+n02RWcTrUh^3hL(F1|
zy1RxkS=$jp_Y>SwV44DIFx>ri%fE3_xGP=wvP&HAD`{us27=&e_&}_vrpA3H@xExg
zly=nyn+jW1g*!K+uA^dgj7ivr%|2r(JUnV0<kHUdOG`IjDm=9lBj#|VgMo-$TtL&u
z+`e))f@$}fh83W~RD3^3K3__jB`;#6f5+y7O<2W<2|2br9=Um?D{$woJ-M^@T#K(w
zS23q9vL0~^2*j3Bv{USs_7!)(g60#;VoZC7!QLO3^HZ-MYmAXVJ1_PnT#--05Ecf`
z@vD}Qd0ufw*MmsBPZAYDdArdfb~beVUV?9M7kG+}*I3oEx9|SwDzK46Fa7EyuZsVB
z^VQ1wm{IsFF7NAIozK**we-(lRFxk{c#!4IM`o>d8{7@*s3(k@7)(PT8Ef7l&uxa5
zSgZ;{vN;jAQVQ72gLfnrUeIu6JdNpN_I!%WCE!pOCS0}nT1H<ml=F@ciKtTW!DI+0
z_DOY<Su${9zlPKSCl+ktGj(2Hee!RutMuTgfAUN}gi@jf&98QtKY}QMWb%0BoRn_K
z-bMlp&-IR1h$0EGv54`wi@H2cIs|gseKS&O%nv(6cW+%FPqEL+^CJ?U5EFDwiEA;@
zAMlnc5QR$#7!YfrCmQi!oTW&DGM35CI*kV{0x+5eI#4C(Tla&6C>><igx~1{4z|@j
z`e<SRE2Yv{YhvJJK9L9_oI}oy6fUVGb5R33X~9TneJewEtLJ74iZy{z>h+yw%c3fu
zCvcL?1wG#&e}Oxe=$TmY`2C+e*k`7|gH_J;lLTTWL0_Jd!T!+kxq&mDa*iuACRh|j
z?_xxm;ly)Lu{oA2$@2^{t@AYGQ6wgu4m9iP|JtX{FA0pi&8TVcFqta63x`6$p23g1
zunp+fJI@n)!$64ReX%Fn?A2e3p0Orn_z)`>L8z;#$pZgdC+$bBWt$qC>8@52k?k@R
zn?I($1a<7E>MXq&)buI#vHq^T5T%RivF$dQDXk+WIeP1H;AWrUCJa*25uvqtdm<Yk
za-9%aOkP-cA&`9NPPP8=smXxNFpV3XyFwQ-E@iWQc&o&^Ts~YmL)Hz3xrs|sDjI^C
zPi`Tj6pTUWl*kwr{UuX~l20KW+Sc+3`lXNeKTE+?)$)T8O<p1%z+Ne4kPM}3`*42Z
zrD%~3LLjJzPNmt~2?_2;=TCu%iCoUxuG4Qsrku84R?}d0ZeUBNMsFzwxPHRR?|2^R
zcRfknjlE}_Dj6a&(zx?H+LLL<{-FG=rf-${lny5u7>@Q*OreU4fe&_#SIm&_ZTyM=
z#|0_onM{FZ$d!jn4F=|dKLzTM?Da35tgWslDYpJN+&ZiMink3MZ$~X?j&>^SKXZ88
zYJZ~U&qEgjIxaEo_`O~PoA8i@hybUAw@TFUK3cTooC%b(Tz&O+8~T3;c-hS)7K_o7
z?J9cT+UxjkK0u<=zisbzq)J<MSZesTrxb!^X!LhP${rYmV=tQc<VfPHVfL8-Wz);N
zvL#G3e)oxEK($kWgy7)k5fBQMNz;c(IXI9t?j1OXcDS$4aN)xHrv|5)S136MS5T#8
zj{5lJ3vyDQSd}B{QT?k&6Zww^Mn=x+HqL=lbaM*5oOh*e7x5mKg<18BlC^I_LybTc
zHlHb9trt$EW56|oOmyHLek*gj^e$K1kX)}zmDb0MKi=*gME+;ercbyG8%HMpC=&c?
zPoQLp%8$2$k<uo5jnTpZ;k4Z3hl;vg7m3p-`$Vrl6reoxxnA+u;@M=^Bi$JZmRPp9
z*mgU@XZ2#9F|u9AE`UDNVD}7$lH`g&iBu(M6cG?14rZ1KCoe2zAq?b2$5qG8R6s-k
zWd!ifc0ycWiimeTgJcm9EU*i+a@+ZV=x)?yZIsPV%z#)4sC-eWUm%}9$Tae}!pzJb
z<m4q6Co)Ur{d;9OMJt|zE@rLfYJJiai+}g>8(3#GF((c)tYVhIyH>7xiGB0rHM72g
z4nljDJ(hJmti4EtLw%Uh(b+)VD3Xva6XMDNrFH->jb2av&<=HY!${Zlgvy%|JKuvI
z<WzKqf9QvwEc^RpeRog>G3^Uz{oNB4Xg$;chSg~Z$L(GLf1aW{9SkC@LExRw&<KK2
zyl(_tmvJAYlnA>1nUjnL0e<+Uh@^on*?W2&Oc1R}Wqg3Fcp4}KI7BcM0il=12xvxl
zsZ$ttK_$`Z)Kg$IwxaJgxh6zQgQ{L@CR*rTqX|s&ICz^E95KSBcY}k2Ej$BD(Jwbq
z=n_$XyA}!@mPul#Bm1;+uD8^c4XWxyo}9=R3mRX`o(Tp*u6g1>#nm*BO>>0$w0|uX
zz%m_8WV}O>;vLt2G+hb22wE>$nsYN2ouI&3g5%%bv|8aD{&?3_2r6C#4NqR?IpLpP
zL;+~7-5~v4gD&b53E&bh<lbF}Bvu#7)65z5__<}f;tf@{El|ntdvZ)5>iYg6vkp1;
z1lQ_h|7!0kw*lIX6E??;YaQuK7!7Qmi{CSAs8U+w?ww$tRePW`FuiqGMUJG!sAyWN
zYcq^exII1mvQDR~VfX<fe06$Tnw4f$dRpo=XtL5@jQUaseU(urR$8dM4v3oCuP=_5
z-0(EOejiWXTf_&I7h!A@!|rq_|7omz`}R$XbY-HInR<3_sbB~ciPjoR7GR(}^?{1x
zb2|^9tL7<FOBdG2@mL;2!v|MX*clBY-)oSFyP5BN4B|01z1n4m4)bmWxzYG~tZR8!
zszP<yRZ}Om`J^+B5mj7d;5jsafomz;AU8UICGp&72RJVxa1I{^sb0HA6Fjrtw7y3$
zawu;?v!twar{}ACfR>+&e>wnQR(!kC77&A<1!1Tl9QT68P*I5)@%ySKGxVJWiGjQ^
zTY#}EKs72xB(U0Oo3GLcc!=J4_s~gAoLH>sK+&hL;MYI)5q2Ss$!TxHvXrzVKmPI;
zzY~}zLinagK(G4H307k#RK~_;gi=U$L7L#k4Jd9E;+@HwV5Ant?xZNz#n4M-?!KN9
zMmr^SJCqN%{+{DeyK9s~q)bxnmOMW2Aju<fl0JNoB+~&xtYS`cUs?-Sa2wuyDrxkI
zVqXYx$>QNaLcdBd_u~GMde!VDk3o&H<vmro1Rt+n?O<-xWYUbqLFG%6UhTLXVGPK4
zE*)M46WdgfwvUCAa~<bskkA!6DmiuOG$E>SNDtTCKZTkdC2SrzFZakD$eJOg^v8}J
zvxS~p2U6HWXs(GkYp_ofpE^POq_ovQx4v(A`wT!|fmPfEO5*V%WrJ{a=XuX*AgbK^
z(qmPh4aXboU@p1{8dLCzX|MPG`mK8L5=J_TJdl@4)Ir#YD#}m5z9EaJu_!x~5()Ja
zH-Nroy*zU7#;N$ZSYM|rUEn^`!aj-l5Fk#8+JMc~_}frrTak+sXsZT$?3Z*1>q|5F
z`VLD*PHJ(T_jJPduJ@(P&H;V&w&tfB<rM2pPKhG6wz%oSl|DprPVCN2YgEM8at(xC
zc07}xh{<>teF<QZyzW_zsLc@UKw6mk`Ar^!rr0mTP+B!WoZp48iKRpbfb)vzWeJfE
zH4MU{66-aa?ytNMIfYAk=wFwEjD>MArL}GlJetC%{DkGGqU`J&SIIRDLVX2jO5b<t
z>ukTOUGK1mc1S9yqD4t4)?Me3)AnD-ldm(#1S&c7p8sNz{rL~2_7j0s0|yafD2sP1
z?S_rll7gM0dd7oisutyx{tY*;KNDyrmnuI)>@#tlu|U62wKyo;ut9T0!<lg1<&oyW
z7K4^H&%n*kHKjI>cZr|7G#Oagp*hJ#f*Vp^_AuKV%Z;eU6V~6&$v(2pKceA%H$0d;
zo|gzQn<D&LVsq=ATTnBbJ=sVUVg@Ft#+by`NiZxR=>peEq3F9%=G30!DhFrFAoqR#
zm=u}$K=qyRN=#h7WRF;Tb;2O9ZSZ_5dk6z%RhC;R^m%5m)m}-KZ`NW*S1z7<4;CLh
ziUqs;wf!A}cSU-fB%+HT7hZg7s;H<~E_c&AA}1*o4zjT#btV<``+KzV2W8PO7WZ*X
zue{{wqdtiq8JKqP*WKmsaPkG{P(9TssGIB@J^kPU(7Vcl7n7g55ax`@e376`1FZPh
zCdT(+hsE0;`uq#-+6!>k3Iy(ozwB{x00+}gsYp?;m?zV4PLP}Drb$K<)G~D?%0~Tb
zq94hja@pa?P3pavQQ#4dxI23}<E_@>V|+5eq1gHK&>0W&H+Aa$6fChn^hqtw?k4O)
zMq5Q0Ucdd!pA%aPjzw;7>TL|Yk?avpZ=?uG;Z9QrOU32)BK7q~yO|`SH14L2dt3^I
zPx!Gq)#H)pL5x0Blez_?BiQx=r(4vOta!^NE4ehz`a%`Xc?<q7UNfcqhPL`O`^h={
zIh^fC@fl2DR#IfT;Cq)Ijk;2^TGUPPXIUAhZsi;?y(3v}%omD-K4XGmsHPu%R26Me
zLY0W9#CHEoC=pA#lD*5oz+A?_yi!GWyP6TyPuPh~qLoceQ$jISY{RY5Idp1fqJ#tW
z@*$dNvAnV9=f)6n9W_aw#+FvWQKApKrt0g~?O|3oi;`z^maYo!FA($h(TfUF4+>%U
zTDDP2-Y1IH`wP{NIijShK<PcfM7cKKxR4;^%QO}LRmNJTA00dbP$*K|5njo~^-b$-
zHDfdU$Sb}P3W~-ekO_9Ave>t+BTW8470YL};oKb5sXL2npT54&Di(6#WNLgXG3#Bf
zqN)v^eNLWUkLn)pK}O*M&snI(N~)qg=(6?{s5<vuO1F_h=TewHw^51b@-@}^vclQs
zv<Xdx4#=U^9^_A?;s7-@g?&9h*iYugJ(iPb(YP=c#2`_eP4*q@YES5T5;g-QCHX?}
z)Yj4snwgvS_LE`C+XqvxI-Vpx1{F!QW=`5f1Lbv93}&fd`8Xx3Hs@v1KeSEp21JaW
z&(=Kv5!#YPz+T_Tw4KHqHp_E)|G7sz6tEyV!7*}_<JtUwEiE1LIVv*GNcJQz7O92$
z<83jZ?$_x!{#*|2&b!?4(fY#d1NPqUTvn`BbNG67qRn_y`Erkyq@Da6GBOMF12Srf
zy1e^jo!r-x9hCx)s9SENFMbTYXw-E=c$x8Bb{dzU*g$zo=ySCXslm+?*VAepI)ww8
zpZWzP_h)$7a2g~jn~DzL<SROCYy5A&yg0p_9r88{@43ydOzn4vjfb+8SnV{NS>*BZ
zsS$|$0nn^`E{?Ci2uhsR?=LD$q`3w@Xh5?@1OOxshHY8&=V+;ZXS2c#hm;MLqs$7@
zO}2|C?o_7$FM#6Y^HxL%vEKI{v!lAopIN&$pv7YSUSd@gRyyuskdVYVPv5FUt9g5W
zU1iuTvW(j6kc_8}7yU$<?Lq`%iImZ~>^UrEHDkC2F?=vKhp8qoNiM+EZmgjs{393H
zS6;7b?cys}t|SRQ+7l2MD1Vj*V}Rl>M?DUxz$xziV~3aOCjLrr4ZC;&_IW=RU2c$b
zxoiIEdVeU8jp%)n`&hVs2ne7h+<J$eMnyWu#lCWH;O5nx7{f(OKy>2npwo?2S3gkX
z>8iol*ero|8TCxZT71`&I2n_fM7`URDQWE{d(}-OHo~TucnIIh1aUet&Qz!66}%LH
z|Nj>mQL9uGmN=;CjZO#f(2bxbpK)CtJN-aMr?Z}aTLr75xbKhk_fw|--)aW;kh5v4
zg(pynY=s)fxEIqMFWF|iWY&{ior!BTGM2FAtTWLYzYw#J6`gzI#9v;Ao|6bPCrjha
z6%-oS35nqc%}q^+l>%LuxcFNY1q9yiD9X>Oe6?+aZ#ed@H8vye#oM79RSA@M-sFPX
zqCh1vCDraA_6oV}Ybm8U6?^_VRR7maK#M>X$pH4Tp#wRdyZ$cwftOD<{zFs!46ZiR
zGKmfSAi?HDXF!1sCBD$3_Jqk&7RN=S3584#4^;0_=D)^Ox)1F?d+q~8UpUMiQ<9UD
zvzLt{<A4sk<MNc^I3WtjIe)z3zxbW(Irq(jinyT|<u`3{=OX+3vrN)Y{k698PJ}?y
zE^%hLq_pzqR2R(120NrdaKE3ee4y;&|MIPVc{gX7d_%^FYJMut{o-bSd4=y^C}S3Q
z$f(9R@>7EK-wW=4S(A?e(|At&(_gOo|NX}#PX)QFeO%E0vIzg?t_~li|L~UW7|GxN
z<iGo>KmpPCeBEc~-`>7}4$08akgP3L$KTD!I?EtHjM-fhMEf^4{?~8He|#QasqRRK
ziav8Q9r-Uy!(YDX|M6e{>*|Ne?_6SFxT9gK`;YX}@Gan;Ub@Ns^BX#X{Ai-a`$zr}
z>=U^m3gkz7Y9*)p&zAMh-G||xjF&?=AvI4lS)S^=9h9hBR6O<DR`K5~E`j0wvGRSG
z#JYfmg#{DHwh-jVWLLIP>o_&<KhxHRkhF~Lkb$%>2`KMvV7sb@a`KB82dZmpv%|t@
z5P==Sw}C3au>w!fN?hU9|LyAj+g(M9kBI%shZZOzO!gJ#Gk&1xMZAe%bhM3OuSXsk
zwB@ct&_1T<@Q;|Opkb$ozYn;NMeA;G9VSC@*di0U<JS~)p~eK^0M$xH&2KxPt?Kkw
zuQpp+T4J|-()MQGj=HC7Wt2bb3GsS=fb&}X@MsES#;n283FR14Cxu5imrKcNyOgg^
zYAatIT{yj9Vs=X@T->O2_7+F?H^$VCk%Fn|OVXI}<h^0K2?jRCt&4US&3gT=BtQ3r
zs=Pb+_&bp7l^*JCdLR*fcH$g6dn-%vrX?~QiWkhD*TJTn8+d8<*h+^s8TVvTrZGf*
zwxEoxP;mh@pE0n}kjcy(1PI>KK>1c47WjH!8MBms-6Q)Am9{mg%vc+NL1&|&Vf40*
zL2Gt@YkA;LXXx8k0x$QoA@VVBhSM2=Z-*YS2`NKk6jASGWM*FC;Ao#{Pc?&<3>#su
zH`G-Xl$1h3-MnaRzf+Hj)+d;iGcjXsJqP8g{&poGhbDxp{e&628IKY8kwaN(TKbQI
zOM9ASu@J^!<<4tnyLlNclV)|#N*i^~p3QkfOzi1KwY{41ls2V3_R$j8<jc}8(lHv&
zhK{!rh{R1+Hr`|(yHUU<p4H(RzG|FS<b7PfNr&I4XPVxq$>k|wvuT_%`&b)9a;*Xa
z+v+Y*eK^-6qe>V1<#k9Yj~9*Q(-RT=ZmvQ*F`zN119{Nb0Hj<z9s367I)gt%Iad!k
zqw)K2Tg!HiwXKa>XqGi00VY5aue+>U!!TF7&9f`cFw&@-4(19!wScLjF60_qK+2d#
z?99!;YO=NCMVHkS2t-l4KZx90Zhgie2B6VXFgZLMBzK+Qu}sGA4k{(6;fxit$L*T>
z6t06~_}?#`l+JF$TMtG31EW9Q#cO-doX&tmVc!(UAQhm?wQ(wiZUSoFS9;xVNtB#V
z9)+Il5ZU2Fh6TUb>Z5e`F(e^kStaOOow2<$h!}~XVH$~;xl@YP4MV{tU&aGBUA2#b
z!gx~5e$`DopLRuoT&>HmxUsF4(9?El)v^1E1!=1hK8A$VU^(x|?T}Jw%HEMew>Q&r
z)Eb5z7LrCy(*p9G*yx<fbr?lph?>GrroeQ+(Z}5K<bzh12mC2mqRg$Xz@|e;0`ppT
zuc>u0#V1m)KzK18Kw&upz!=26voNwvBcbXF{*<*a4u)TLKo4Z}`aCpLx?m!EwT%@d
zd_~=naDh%$JK-nx)iyWTAz+^O=Ib-uw?F^&ZukDp5e}Hw+E6<Ciuk%=3xhIfP7dR$
ze)5iD@d7XRu}uU0PjEO6Mih6$M00UFiB7fZ>gr5J8B7OcEWLE6C>~eU)Lipd-GT%c
zmvf`}x2?61{qcA|GS+b|E<&Lche(g67i~}f0h=5fLhT%UvrK4u>E=@%lF#gYpU-|v
zW8UrL#RBSU{iy3^8Ryiu&uFD0P3f57d!{ON-y%)cGb<EI0%{K}lx;*eYv$k;Ig)}j
zCr4Z;XSH-fSk0ynD=!V+Fe<9P-?o-^|N7Ev0?9_CI>si04PHFSovItK?T4HWH-o_%
zFiR|N9#7B5l}6!`Ie41+sZ|+BrzB;_-@~!648@I4d9verGIMt>Il5iDhkk>2*QvxD
zAt%1Zq>rzw%mIZ(C{|dQqj#<|2O9eP3Yztnlg;m6DQ~|xcD0K4gEdm-g;wfCe*VZE
zGBmSViUocyC(F{gYorhEmOUiK;nzO;kgwS~W*?Dw>z9`?f7aUs4)4agJQQ_Pfh5yK
zfYQvKQ6b7)z>cz!wsn)tkzgUjAG_p*`mNr*<-ks~+yqRw?LO8kq1K8z%Bn^)6;^r|
zsWs+H<v{{zi+GBI{15b0|G@&dtnD#=fL;o{`}%NF#u}aRK`P;u1lP>ElK58sLiEI(
zG+{(F`F=%V4_?l7+c2%}!GR=(o(LlG@!;BI#aA~?&;zaraCUkB_c^d4)-u$Jl%6e5
z$mmQtIXN3M-&PyB$T#5pTCLCMviBBn;^COG!-yo|x=r(mV_-&Bt;P)=-_Xz#1xXC4
z8oLg(Fd!QSJL*;V&qu!dX`%$-PqLYZ;H@BYO!{!2$3JkBXnj|i;9lCHDpsSsxeQR(
zE@b{x)BHuY!Y=Ry=3nny{tBg{=lfU<JeaN{`&)0VI+YPA*mZ*<ckaf%6wo9--~X+R
z<=dnE{2Z(YNY`-RD&}3;80#mGIva&9;N<oh^ev>t8ozl7ow(`4`mI?1MAB#@uc|KV
z<_E;FHiJVMNvSZeRMbUwtShH8Q*Wc>>8QDW0_b98m-ONMVws{%cek{ECnm3ygS+1+
zF-dd7JjyBluz0jY^(=Irfl8aCql_~iUr!meSH6Aw$u#UDI^SBp0hBxknw6jOJ5iyj
z1$B=UXs5b!QWscF`E4>SX}M7g34VqJ$zX1ovC;@swYA{je`S~VEljeakcsk~Wlvys
zKQe<dqRZAm$zWY2WIFA@AG_{Dfm(`=Wp$Rsfh}-f)PT%~jvNYBM_1IwDmD=2ZPDgr
zMGt_HA0RVz6QbXU1p!2+V==}OOl=maZ;t(TUob?CMOPt)-a4Qn)FCalAX;Q*5^U@j
zN3PvI4T~_un!5o{w?ft)K3-32)_E7xMd}o8G)<O!CHi^ztIg2yceuG2?x}V&ZMv01
zB!pSv<_P6o;(3Y-7mL%r%1A2<x+jMd64;p!u(D5F$(=J>O^}mHJC~rUp$#p*tHgEu
z+s@pJ4L8qt+(s?(K&Y|Y=QJxk1zg+IB78PcFO-rE!I~mcwis^PRk`&ousB!hc?$bC
z33q*$dTM^Y^f^7zofzl>1q;y-dq%zzp|N<}-Ey^_M;jshgxb^(%yLY0!v@{E3P05D
z1%MmzQTy0^0eMUoC?WexH5pYC*?}bs1EeO60VHFJhSM~H7KlEF5_zGs0Ik||?TXv7
zIkIy@&^EyV8#jM4d(#7&Q!`v_$=oWh#W3UJ-7I#^bC35Q>CyVe4cbNmQ%|PQB`Q_x
z*MPJ&otQ=1s*dV0-N@!<=X_Bmw_yvoupPhzF#%%*N*CdKIrZz+g&7pD)tZS{ye+*`
zgebGsT-S7*KpR4cf2!xnj|jK{D`-__f9X9+2~jDR*%#&l-VTvc*C9AT>r@@gY)%mY
zw6QaV`{b!4TB=i-H^XWczCbgWowo%M&~a}}WlD?&_t!&Dwgaj;G}g1wKF)$80CVTz
z-Pv9+8y&Z}x}fo{)Ex$sHfN=bH8c!WzCoD6sQTjvCTX@8BDam9ZEZU`0F{6B*!9p6
zq>H0UFFJ~Km02BZpAG$F)PKzc>8Ra^puDz;P<o+Rpp(`+Ct$EX9SA_%(Kke9fEjSj
z${(?W>e9@4Qm!YZ$=6&0N+5PH4!>EE^9kX6nYMPhx!fD$jsB@le$U;cSPMI_<uywb
z#hSfNwqyPp!G38VE-C5a2B32Xk2bscHc(miQ|SKmzy3PQ5m=(?0LkYg676Cblc(VY
zh?%b}w!Gj~Im1$QP*-DzI}?NNVQj`*zl^2REiDbX3aa-cy5-)TX<MAjU0j#A7=vcz
zVA7i(nv0D+sK**Hg!2zkt3Pf_?VB~70cDo>JR)Qm@jLf1CQ%4n(-5F5@sUy|I?}4g
ztgG!jsFWVJZ30G&0e^$PC(G4Si9%X5c5O0(qVJih>&Ae|8q|u{+Xu!6cDx~zU0oA%
zlrtYfkQQjhkASg_F#zXMHUz9J@t-OBbd#2zyiYvsSIULoVlGfuy0;8KIg4&m`Icu9
ztOW<@EawNa3i=+6&G})NbEDb3g)|#$Q$^mz0p9uY>4I2?>>_v)?JjPz`_9v-HCc1Q
z>t<jJ<9#P|ZZ#jwrnCRz{?yznQn1?Kn5S)YDF4w`4$qs`5}~v2BXeN?T821Mc=5s^
z*5ZgUy<(G>WW{cds(qt^_R1M(eP&1gY*lv8K#CD>w7+P@TOsvtKBlNPh8`+fwI*k1
z+gS;Qe(fnGFsG;wIFxoT4`$Es!~2n<^_FgQv^hOxhiuZIbg`mXw;63UYvH0_;$bSn
zNke{$v$6`QPAfA-%rl)Utc`pkZgRJhvgU*>Y#SHme<<`oS7e-jPME!?7*sTS3e{j>
z0b7zg2p$lFoiVhmX725DjV@A1j7??YNWeFNludJhZVUhBp=(3JIKLE}rGHnPfRlEe
zWX#N~XuNK^c%yfA3i_Qdb0_m=_NAPlpAhOrdRz5%SBYAMG{(y=<0eM!P>)2omD^)Z
zTDz!ij`v@j3|#3o@57sLEcEn|>SWCvtI61MgPF6p{Pwi5b{*Gf8aY0d7MiS_mhFAV
z?|Qv1e8W8`h8<CJbs&30CSP)>+9B=OJaQkFhGIbUXvqyd6Ta-cI!AB4km^RLR<j=<
zrc$|oX9D`}c2r}D>#s^#upLJvo9)Qa?9y?c?L&xeC>57pL8-+fx*i;$usL|NKOI;}
za+9^VGkFhC%fngxD2{joTI}v6&|`Ex+_`J&#nrkrWXSKVG|HIKejeDz-M|5vVycc8
zdf5fN-jN!19w-;^=GnsjwO8;7Fgw1F480q0(W3i1Ko?<?{TrYgoU&i0^}Hu<7Qdww
ziC0#O9{S6?AO$*leWiGNnrW2Ad9DQTxdtI3{d;3lxtrIWKM42l?{^rbHR{GClSGU;
zUQq?$iFXKgI3D%Z<J$W$OYf_V_S4&wsl_RR?G#=1WAD5?9=<khOCEj@P4LeyJ*Q*}
zb4D*0KgZVNQ$T5LO|uP&5)uLh`-qsR6Z~GM9zB{GIIA69Pib*-l~134X$zSUzudpQ
z)m~_aU5&E^GhyDG-xKy%eaf_YD3%1F;0T+|&&uv>v>S$8x(HVKOK!7`2lRW3tXiDd
z9(?u<a_7h~=iG`}xLq*`uiZe3YD*E8>9vntVFdz|;V#}hZ&T9?;aJ>6PTTthnbDUa
ze0qop7VwOe;aT<AA<W<?#7gGf%iRb0E4uXv5lwpTrQxGtRz6Epoy~=IC}%{+o9s7n
zS5xuHAE&>2*9EEMUE%}W#_^8Qx#M0AfK}^xb%@|Q&wp!iFvDSC#Iy~J0U)`%c4bpL
zV26ytTg|^N5&!ujU{fC!??XE^6uY@K6FW6ZP_2%eJ;Uouxv6jF&Jn2`Cu$YesKyvq
ztFl)}H%$<$)+y(Ayd=3@#wqn)uv()oEUwvO-~p+z!j@H99@jzTy&n%C8+06H!*-6k
zO)DCc_QDK>D_H&doFyx2(pQ$ZQeNoW!YzL02VaWiYk(vVsNIEv&2QB#V=)tKhU<0n
z;GtQoJja)aeRXpFx~IaT0uZ~?o-RwgdohMN!GlZ{XpG6(SkEaYn6SNK`nnob56(a%
zto|CzKg36Qq*`X#PAgHpn0t5OQUT2N;9ya>Kk%^h97>#lf*m|hNO0g$i5iCBn8Oxn
z_*$&jjqDN+kvD0^NX#f|J~L?c-r8<qZ&x|;xP@}@zRj_IKEk4mjQs?Xe!IVW&Vpy?
z2#BoUXAZ)6g{;S=`SoeL=*c2>1C?_uE75aw67uTkH4!q;fK7HIWP&(JyuKQ-1xvx4
zP;n5+m@`na1^Fp-8Ck?rR|Ezai`7)OmqF8=S9MQm03iH_lQ`5;HQaaaVFE?9YJ=0}
zdwv4r=|zk|hCJI{iP>!lj@}1cuUf6eeW3YW*pIrL@Cw1ml2jPriJosc-t1l7By(H6
z`Q-+%>#3%W@j6<+7L!rJ@hGdQML2B}^0<uJE;etZeh9@<tr?vlTwijK4sZp`Z(q0(
z<P>$Lu!ozrt{2!Nv&SK*v8gZ|EuD}p&%U*uL}+rLBQ;}^N*Ijz$=ryv8rFr9GGgNl
z)-}JnDHyDo@9*pB>3NFAe)HSXc6TL*N7FZBdSHD3XE`jkaz>ut6g+8mc2s)^K`WOE
zPP&cm<bSF6n`KHKA3?NLs<hPS6=;2^H`J_XoQ1ljpVaH%iIJI*RFX3`?wKsu@M{Lj
zltB}Dql?Gg%ZN*XgmqByS!xtbKnIi<P#}X4GsL$VG+=4kJ~P4Iiz68ei2*^jQ@rJK
zrmNTlgw%U3+nn+Y@mXtv^y-sJEL6fI^!d)lxEzBFVxw<p<!&<tbmZRz67iM;AQa`t
zD1|wpaG{Gr?S8Xe9$YGQbk=P<KanTK=%Z{fvt0Am+MHix$`>ypZ7fU7GVIzLq9vK7
z45*axjo1|Bh4wfgrEvs_Xr_%}T;#|_(Kpew7inBk^&1e!?S6NHUu}RKJ=4VQfVy`s
z2EFJIwQxlxy?XY|vgCI@ud{unq<p;S&g<x1GR+bV=zsBfuhoOYL9Of$KCdwFdEp<L
ziBurohFQKx)>C8Da&e~*2FCSwwIg~wGtB4Ax~sJOFbCZn9pcSB1H#nTFWHEGG!5K+
zkxv=?>jzBu(gj^KN%sa(T>r*@XYtXMO}bszlDKu_3yiFvit-<@sqjSF%}7?QyZK6(
zFt>DxM)%vG{qL&l?h_ZHo^O{*aNMHdw0yue0RcS+FJcAz65R}yG@l(Z^ko7jhvS<y
zl*?l_!%X~n{Y=tyn)lpIZ2#PJ+%$2Y{}f*uFT`n_MCnXR`m>-fAfJjQ!|Xnzb%5bR
zwAgv<)96s<#M7^c>akg|Vj@^sX_*iq_M+%|I8Ze})0UJdmEiJ{l7(^FH3z0j0F7XR
zNwZS6#LDepAQ9!WYnMh7TgUKMh+DMT(fIo$UOgWdbacu|=hi2iDZbnnV8UNgFXEx5
zoY?>=0X5L;qZDfUDOCEE?RstGWzbP$7<$npOp*TD+;#0*d9^=e+tZLKm*`KMS<I$J
zCIHROwE<~SKe0I&&BRu2i0?}~y-OTLQH~e%__Tr2n~=Zp6!h9{d5!sYW}u!`G%uRY
zYQDEqSV>9gwT8UGI!%)Aj}L9<?&#fqhc%kQ&n?C<t-m6=@6tJQmk{5=wHT)$v3>c2
zo1z(vO%~oZZz21H*ju6mAE`VQwX2a*Z&{?HTYMy8cdwC*l1}3rzXtoOHp$<0HQXmy
zqw<@)ly4MJoJ5R|oy9QReI=)CuH1RRf%<k7h9p+++Cf{31<cgHrQWI!84F$CJTMEH
zhF14M3I!-v))Yzyoocj&J+d40p(gkaeqP>Q^aW|p)7g-A=ZOgqR=kq5&PJPVfi0|8
zHclGKAr#k;Iaa+l1uykpa|E*wpn;>q+ijHB`7kG>HqxY{C!ewxrw}hlw5B5|>h_h9
z%=Ll9-p6{M>+8viFE*#)20n@^H7>8mIy^W@t0C<l@ztmO+f*u!PBQWH!iT-(rGy5X
zM_URl_QV#83<(KhAt8OcRMq3<RP05Y5pg5x{diAG{83exO0x@XPReS8HiyI=TB|n}
zyI+oSzUHgQ<Qw@>Z;3BN`rrvQ@udRuJ#n$IIYK+n`+r_?Q;||s>tEcZs3Y@HVqrog
zs|&KjN3eP5L2xr8qPki~m8@)*|3=o<c9`I$&@U44M@;bZ2mW(>8#P6Qzw2BeLB&2X
z`vm_%lB(zv{^6BAo6B@Wt@kw+KAE@|XK@8%=<n-fW#N@suk~eEbZ77MZzRJ3cwyfy
z5^<Q`d5>@H0itq5C;*4h&RscXfRBgSG-;|JP!h%l-%3ry7R%)-x2qetIW3MI+RbfE
z+YaRnJ;=dQd##%#mH{yQsgQZybqOkfw{ypzw4nx|>tCr_ABVaeXHb;kr;f`#p)h&A
z9fd7Jy<F9)Uf^^doc+3fR)+ZNwO(~P`3M(=SsU~x2YR}GF~{x2tqE@D)pem_6%)rc
z3p+T&_qI!|yR_$F$fN5x(7Z7}vP*j3i|!`<W6bu?@%c|r>KLr=a-Z@3;udA#0(CCC
z#FlV2VBc><9msSYn-H;tV^7t790XowH4<KTQw@(1zjJ<0dTVW-=Z9_cSDEMGRglT|
zs8+Nh_RNajwYhSP1#8)heX>^W1xv+yoP6aJ2=N(2;t4iaRQRtatDju-LO!%8EW#az
zR6o~?Y2S45_LePz3W4&uDwT~y^ZpBA8lbjHW>RIb;a}txBg;k#)%Qhcbr7T`qj?PK
zGB!4Lf@L0ela%x9KGtN#%ul9y!$(2apj7r1nXQuFXjAt2h8j$#xEy2zQgh4>IUNr4
zy{7r-P>V^$3SkL@N**!_ON2&@z~<*+-_~AkQ#LCXP5?K<Re4H`pJ{1|!Mv<`6KAT+
zE7PJXnZ?znA{L`!7!^kIIFMr1@r(Q3Dai5<c=)d;TTLeC+?K^LnW!uNsc3?Zl>Kh$
z!Qcd@+9RaY2@evt2R&SGEP~{C%n-Cc;&#$O$_fq%xpUHN3)_3L3buDW7LqRa_wiBl
zY5!f5P%4|)Iz5J^OQu=%lTErw5@sHs5FNroeQ}0#Ej>VohKOBQLuT1qLw@4Hb+RXK
zIDP#>OdaDrccCk%c6B3TCcjcj!8lvK)ekU2i{}IcN@*RS3_W(B{jK{S=31h=TTXta
zY%mGBIw+r7^^oY*gC}`z1c54a_R?XsCU$kyhH>iJWI^ddf@EG^o~bMhw)*&n$)=<K
zj`Gexh4YnTDi>3~^_X6%djuLQt}#n+AwC+g-xC1rdEMrDCD?BT%f5ybkK-|R6D^D*
z#@thBH*4l~jwuGXBJ_+B3^M6`g)^@I#=wXfJ>5z9zK{QnFrM0GQr~|a>l#a!agI0S
zx{2YsA6=1535@;o=(7b6gzPg>3A=`daL%s>Sq<{$UbW3RK03(uiwf?Khu$hJKs5nQ
zRPK~ny!`?!aGyLn2(+Edn?FLDQ6A>?dS8pR`=-=GMrbCa+vUvh7&bwVEU()lAVh63
zx&?B9Zqi-#xEFG~-Ymu8I@toZpU;$7#sTFxVETP)WmbTTWZHREvb0jN$5C|OlZL}L
z7HY0eBSGgYpae(ntAd1^{Kdk~NR3<UC+tCz+~W#kRt7=AK9=uq$~TRKv~*cevLODL
zKb3KpZR#f#JEF`SP}s%yHsyrcEEwm7brtc}2`Ac<6t7Y-J&zFF8I8<qN4lh46%Ved
zYl>~8Fx^P+g6MkauSM)&F#axLhmzZ?Y2c_gs%F-CmSiKxkfP6VcBY^$$lvod3->|^
zUj6ln<74<TK=ABc@Y*X&5N$t$HCR&^-GU5Ir#3Xu4B*d~?iPO>Ray<XTWp4GsO4OH
z35yv#8}&PvG$CI0$zvj>q}-&rZmjTn<;)1tiyy*^_+=txGkIBJTg0t|!HUjbi`%mC
zy2egu6sTU$r<#H$&`kBz=GuY@sQ>4a>O3R%9H1tzNvyhySKjwqpt_;Y2c*J@zawe4
zV-{>}yim}+Zaby00R>ZIFd5l4iCzdU-j&C4v}N<!Zo`-lPbjZG>NRahiA-J{h%7PU
zZ_r)2n)K1vsJ9x^OO_G5UC<$E>Ho%-bCmXOV)utGDj&l9{LPCTM#}VQu{s2?<5`oF
zdoS4y<F<C6xl1iIjL9%Ao@^vj7-UgSd{pB$n~HP()^Qm3=`4hHCPdgBRxrB>-&+K%
zQdNxs2omiyPZBe+<PG^f9E#k&xW0BwJZaA^2#qWRkE3rPc+Y9b-ZN8+)~kA>))D=>
z4=p#oaCNC&-30s@B`0fxE}x;EfhnV^Ks<(yb!1-XeWUQ>GtlP=9R(j@24IFmu^$&<
z!kQ1?`q-BZg*3l-cjycf3%-Udq;n|AWZl;n%atJZmdOZ#$D7h+xvG-kCR6ge5Z$q?
zeF*2(^zB#ACd7JJb>7du1Dyh{&U5Dp^n`S43KV?npz`;v^1|MC=g{ko*=ED7xKVV-
zv}~J0)a)1nZ4QU|Wh{3V+l#ka5t{MJ=ejx^s1ftnUX+?3{vLxgCrN%n79vr{3@UOc
zy1@gQg4l`OlavfdEdU15e;uWkW<Kx%D(8;^x!PG_(Ax=q*Mk4U-g^gP+4ukdrCda!
za#C5Pl#!80HWjkxX>TE$>>VYdXxK6;^R)LSR6<tvPWG0)PJXYW`)*wKeO-6=_jCXI
z`;XMw={%0({eHb)ujljeOikuQ8W}GWb-maR-}aR3TR_C_J}mjpxM_A3kmy(yEyzQi
zKZI&s5!l2Ss8=@CfD*#7G0E~~=Dv7uX;?XRtp|*u0|Bi?>Quk^ESVo?I4{O?a)w}0
z47UR_A@*iNef^z)samg!_!*Y{TVG%DGEMr<!Mnb-rKg~&*l_`SqLbKg=!$u_E@DZT
zlH~X=ZqvIg!EFPb_D9oMZqETR9|ZXJA`WuPQ%5$22?#`t^bg{2s>1qzhx{sLDDAmn
z!2*q~EQLMgiAPo~9_zZQ2ka>dZNVm+qqn{P=>EiKp{orX8$%ADmGA2<*4b#a;SaOl
zChE25n-Hb?<Jb?ee96lk>XPxB<e!<GUWwVY@ew2`O{@VeqK1@YDI`$e-Ache7F?j`
z^tsUc#l6n^*sny-03^jO2sr9{mwj%Mp5lfa5v?aTx~!sY-k+QwR(Vy=tZoI>2h0T~
zV14b|T}cuwwkZ*nLTM_6h@myxNhM0=3i@UdM#h3X>>tuWlZm>`NNb<J<eIise^INC
zSd80}IHHjyWJV|%2$r@|ERgc#uUh%!5(S9U(bBzHn^=9_<p!5eTHZoM3T-c1MQhAb
zKW;>UOG<?<#k%d%ON@|9(5t9WmD7`8yRmt`GV6;iD~XX0sjSbP+N%Au=DIrFaWqy1
zLy6Mjmk4QB&$}%jqvbH8kfq4w*D?{`G=?Z20{PceOJN%5eODVaKi+fiF`Z;mw|;hC
z<KE-PD~Is6264E11x>tU?IgIgnRx7NNvT-TY)<{;G@kc7CayF-MdEqIZKjmWE~KEu
zt`$}y+pbGH`R}K-eESD{u+Ry)m!cq)mIzEJnfa2bGelk(M!76Q+m?K9Z;KiYG0Rdl
zW2XvTud8^<vO_LaRz|7RNA=ECZhW$eEnwc%*ej?Q4e-U@UN5s*b<?=KJY;#*YCykX
zYpmRF3j7tu=KY3(TtyDMDu8IFO;797*{a00?qatFavz#UIv*7}eF%pDvr$k^LCSRa
zOB7Chwz|#o{leohVlze1^0Gk41ZJVHqADbBM~*XODr*kq?^+8=MrLxjM{t-tBZ4Fg
zw8F!J&^m8i!db`!4BRZALK02?A*AneV#wogobRXQiqMAO!c_B-%%P=*``ejv{utoV
zJ+*3Gc8BN=#O@Q$C?LYMswGV7eqp8W>+;6xjmnAEHmsXRndcE!at|vGE#arg4C$3f
zz|L${ZYLKsj}#44VYZ4l!YS8ZP<=UsLzYi_*xtvtW}9S?t5FdK0vj7dR$Towf@%J`
zP<>=+*tLC4n3gCxBW$OLV)5zIry^HOl(IQ<c_>IV5nTWNvaNk+&-_LhAJMrypU>Ax
z(k3mm8g_n_F4<=_SA$Z~9A=ak$yAhqCpj!tdz_aF<nu)w?!aV*BQ;xe+q-<vJ=d9a
zkyYu5UlxeCal&{?D3x$Q?wWkm6~jxDy!C88@X2i$@J4K3qQbuBXk9(Wv)7y7=W+8w
z$;IVg>Um@^Z}|~Q?3Xk@3m^DO=<%^da;bla>CZ2LnEtxs)uax-{aCCd*M_8W+rWno
z|I!T>HSEpz4tBK*$ZQQjUZX5`u`or0N*-&)ex>mWN%9g-M7pb5X6~Rh_Qm>Ie!-XR
zF8>v7y8J-YpfV^j$jk5QTu$mV(bc$ONUkPxRzm&CYqac)``XpQ{xZjmT$G~D<Kn=%
zZ%X>X_7xYOs+7h<zDWgL7ZC4P<MD4gdf1piM-N5+Q{C&*y(5U43XTxcdIUblznFm5
zD;pRmMT{34!dO{z{3=}QWdkuUNI^({>tzc*FdH8s(R<&d^juc+j8>+RTiU3M5RmZM
zxtk(Pem`cIa8g~*-qMK~`SO*qagA}Auf-<CUusKw2fCIb{RhkA-9aYyc<TIAiMCvW
zi0?BAb>+6aGB`R2^+FX=$mLor%_>=$Us-b0jdsG?*-o?8704Bulb5$ByEt&;^>ME?
z81$w6f^arH)SkTWdD0y0%G+M#%`{VX7Xm@IQ_MQH8|3N1U*~lGP4HpEf}eRha;;#`
zWK<7d{pH%;6|z7rdY0k~nyC`wNaar?g9hJq&}@y=3v<53b))hkl&zuVPC3$^yKm#|
zt!nRO7AhZ*aYV%=?z+?Ty&&g37?OA7?*!KLxk4@xU2?c8al8j7TLE+9*hQSMzM2dH
zfMet1C8ZZ{85@_Dsw6KR`|VEl?Z{4xJ1$-H-X-R1B<Jm}W_H3<+OdnV)ZEu`%Op~V
zy46>>tJ0mT@VJg^WA+&+BggZ9JBkV!;>RbEhT3MPNRN4>UaK35oNn;=<uLqr^?tji
z*KC5IYG<COTJE5jdQy#5Zfp#HMzv!>&3+X%Qx|?{{P!ul?Wy}%1rhz*|N8Bn2;DjO
ziI9NcSuS0{pV``f{ntS`C!t&ATi7!$-4puknUTrrsh;u2GmLqAxKUia^(mRXnM3@>
z?^h3_OdIR}vdM8XQOJdz>wUqm-Hx9-%fEaTw}o$BuV%PBh?V@r!?$-&<9Pw|FLJm)
zeJ*wX5Cac(cK>S1|Mw63uP(r!{;ZwRs~txoqYK0JBKm(4Iztj%N?renZ|Bwj>ev03
z-~J!pdiBx?-A!>QADU(Ui(BVU@BHts*|!ft90eM8CCe+nbpQYRfBgMp1W6A(ilu{A
zYh-`dy86ps;$Qx<S3E)d1$#5|!~gQ<|NbrgJs~3_qm!XV@;~a+fBQ?OzCtoGG9kV4
zjBMzX!h22s@niV@oBZAH4jy29wvM#*=jA`!em~}I|NT{rlK^TlM!^d2Pin1yd+Wb@
z!8jx2Wz-ffxc+a{;t=GrB@7<n`QKiq5qX*1LD{wc4Soz!@pn@s%Bk%Bx0i`TUdE_A
zcJ^nA_}^XCKdlu1atojlFiMCE@8nOx*Z<{ZI3?j_8eIf?DE|IV{oUn;X9p83<PtJX
z^xxe!UdM1hU5->s^_u7nWsb6VS18*({@Bd_W2|y!wqe1H)kzD7+`N*A0?YZN0*_r4
zk@3DkzjmIJo#tUfr9C+wZjA-z^*w{MhLMA1&ElcY)N4DNw%%Mx*HB2b&jyv~=@zir
zZDSV-Jsu#GWki=>Bo9Q;IYjRYXK{pZWd<;u>-`O(>yO|Zl-nl5+X$*s!ytjJ+aEg|
z5tm}G8EYTN83tAm!X989scp4IX-P7L&|uM<vsIhmg)ZthS>E!sSc;AWbeD$;xz5(l
zeG(i42gB=YpXUGWu@*v+6@e+7`Rv)V^VA-2EMI$1VfB_@@G>nhmy}(#Zc953xCna)
z>-m}VkgtoGSIE3}=v*BQW6rm%u^4H)EP>KB&7Z*SEZdu6k;*fzC+zD~5x!33&|iDX
zf!ds?lv;OLTQJGHpxPAF%RKm$U|x6laK`sse@B16CI$DMcnwRChUc8Q{-9_W<{fmT
zx~Hy~heOY?o7wdpN~Ih66VcW>$J9O}or(E@(mv3^%tE~LW7QQz1&1hMpaW^~{?W-b
zAo$*p5(Gx5|B4mZ?1b-5!Nfcr0Yg|uxXu^X-V(lkni`RVeqBkSod65Wr8!#=ew%~d
zP+1E{YS@ESr=qNPrIdC^vh$~nLXHzWSLnudA8;rB=Q~`8n_$vgcR*NR5b1@$37R}$
zlTkQMx9<w!wVFMOKAZ0A!cHl=wlRjyd)0Ty+)FJYuKG@M%zv(yjC8N7w951LX0~Bb
z+v*AR;Hxi*<t)l_X`lBIPQ+SZ`<o>y*+Xya^D<>_fkBuGmcBKb-tTL1_#_X9r*ry+
zL5l^De{@3AwtCuy&a+cg)(R-lH=LkMl`a5e5F$m-nxf`+IT#8m!PLclfL4w67GNL|
za9$dXV;#H11|Z2k0G=>2F*Q(wTxv<x@UgboH@$KDB-g9Zxfj*13B0CHlt9PC0<^LD
zQg;V_Zu5SyrZ9vOjQs9NjT1d|QKR4^nuXpZNvTJOn3JXRqPV|F2y@oXj96pADEY3{
z^YopCwx<K);)n;d#D+qpF^}6omK|-vC~d~I!m82roU<>7+(R)EeXi_d;;N*@+)81Z
zP4n5bxhE7B?=SnHt`n?>z;2x{s|$&Ia7eWSL&i6$b}J&)Zg~zSmhzh^+LZt{WjWUd
zEMHgXfl1~E-XN=Q9@<hPpW*$0%;Dgsj3lH(qH2$(QUMNVacg^_vM|cBgu!VJPbs9H
z3+;rNOq7r(xR;82qWuS?pu*3AlSlYRd^U@{fr|kuInDRx7Km(>@b;tcpF*bTlr6^U
za6t~Sp?$dm1%8+?#Yv#XIC$&I&+7hfZnO|4Ymg&Z6&?WEY!U>KH8uh?plGhC`7pjx
zsL<|%iyBK)T9>$V3Qdx9cY0%oSnQorv~yWPdpzPax*}=zPNrQxc|c9DeE1)7Yw`7a
z77(#>&LGzujv|=wHwdG`<whZJt2)4@IVGwCcnD>Agbz&(57A_!O1BwWMj_zHEt7u0
z0QFz5X=SEdaskW3>kFk_Fd;eo-q_d}k;7#1Bad0%4Dp}D{c$dY@yZMHZLYsv>S2(F
zA^lt<3397!8jp>avrL9W_)6YFrs~nUsZpKGM;;ufx(y7otPhc~7Y^3co%o=(6K&BG
zJaVPODe3yNY;okIlrI$r`RD~8F;s`AyuNHAB_*W*y8DPzqCQVRhud^{{4HiYA<3%L
za}`F92J^BqO`Xk3(uav_UliYeinJ|3#?c2OK%HvMgs6CX(}7-5XRdU`5R3z;Ign{|
zb!yj=>s-D{c0<AK*6LNQ=C4=K*jZ>IYe0Uj!&ervOR=E~py=;N$(`HVK5KOIOTZEj
zvA(@pN7<-OzefR#-MPVm{q*TkGt{M8;4bvLANe4U&3u$Nq8%&pkaFE{t`HMemzy_X
z1M=#V1?I<p6hmMIG2h13;M^9={M};*PGWL=mD^jjg1hp=eFg{cgGJ)>Ca~!vPl-#=
zAKl07`m$#6%r1StXjZ<Ea5UAz@dJI^b&DR)`P`7_?{7%4PKmspue5o-+<7r;hbUDd
zGJhutMXI{i-<&S5=af<vc<&+|T?YX{LGYe~>RAXz;PHYvKp&)?f-V|!a|PNsy})5V
zG5j<l!o=XcIktZXq^<_Y)ZnchZfqvVdd*<H9-dH=V3Y0$L==BfY-h3;lQN%?GQIiM
z2L`lSVRdsg4lfKt1`4R%SLDq)Fz75TB0kXBR+*tOkq|rXI@gs>4$~I9I=ZlKf$iDj
zM`6+%v$;I+4WkBjBl|vXm}SiQoei|E*^PZ2$Wy-}=L)(w3xK70JY#UW12cRzXc?Y8
z43@z;aKt#w9C5wfW34M$qn;GWs2UAK)~XWDIH7j#i5DY-uNM!lu7mZAqdc=!dLi1|
zB7mILVfoRCOVzN2o%o1wHYk7u3ClwR0!`*gBo$qf#yY{Ie{OGgVQ=RjvS<ieMi$<)
z@6EWWE`Q6009iEj6VpH(dOjexiKoFr=Vg-h<T%V-@{yRbP!_FI7h{uEvUG2sj+m%I
zrlu~*0{|mI%ou9Ga=M3Y-@F1&xH!k87#9o`$j6S>CY(pKbqJ9QY-xIIR!&0yWJdP`
zAJ3GSZ&Aoei7m}mv$h(BDKkwqmz%D>zPZZPXbW^pU`97}JeT3AD>qhuIK=h1Yts#u
z#Xf4+*`qdmOq$6UE9hZceAh>3LQ@u*EX>=UV`gp)azG6sL`tp!yXO$&eDOr4*QXV=
zKVTQhw4d$1q#E{qvsrd-FCk2Ox+zolk6%perXfOO{XB8XM{{%krS$x_Z{<P&DRO(F
znn235L^WhuGSJ%-lO-fET|g*{wU(H6nAbU_Zsb}Ts+{?-!>TwpirKNQeXddaOq*?}
zjLnR+c&gb+i*4l(S5z6`=4J7!x`$WVB4pQ*fP@?(S{Yc`{r4Tx8Kt4_lp@HWS9)bC
z@F&ePffPZ`4X#S;V!=+)q%(HLy5)kVJp(2F(lQw^K|dm*@SK1QkJlz!yBrX{823z)
z)?MMmbv+_no9gX^isS{D<puOP6upvJaU1p!lU3}X2BlTF2p77vcs8d&YWW5i4S~Y#
zDWvQHkBN3Vvf0}TGyCXP57SA9wLu8(ZJ<H5HTZQxo>?iZaRDHQd>*RUBKb0Ua$KvU
z5Gj9n>?TR>yX=$^+#3Mh_EGG^D_@tVi{nj(H+Kp+S@_br#@wmz2VIJOz7;q>L~Oy@
zPpZu`9&X@I85Sva=2CR*H`((Jpp96dA?=1ST1Bd>Zi@%aDPOiw7Ndm=>(cWCTMU}y
z+Ogw`s#0fOtJWsqSS8FA29CjfSdV@fFdw^CL&IBf%0g|MvYe<=U{CW!bS$Wgzh6+H
zMzZcE&#JT@-sZvI6<hmoz@Q+1cM+u9xUl2MMIX#bthi-nT%mJ<ueYvuZ_To6)lf&^
z_KcB5I(-heu}FWZVr56?;xn=jY9;wDV*P|+ZI39fRi!-YELCs%B0iR9qzuQrd~_U?
zMj5B-5qKl?Z4(%Z;<Nm&T_r%h0Jzj8rlq$_pY90kTY>?4H*A+*yh-sWt?#Cmydqpd
z$;tVIfz{=$y2w)-%<OB7=uB58D?4+iU**mi>n}8D{db+s+tvxE(3GD_jvrz*aqp$^
zp=i&e!Ms{RRFS9eV;bz>4B*2?`a$kp5-_QH1c241qBag*Lx+Ys^>I@|vWwQuTN5zc
zBl4!L+*t~6U#!AI>O5W~sUlpeDh`1Twe$cNY&=x)?)4GWMTPF`+phr#O>xB>{;8OI
z1(+W0AwX!DFB_<Ei_I(yRaQnJ^3ZUMWQvQto#F@ax#zM1Htvcc$>2z7qv9fnxgFa9
z8L$+tuykv6oJZF_dl*@L6ZA=rHCtk}_c1t|Z=Pcg!k+1xq5cG;k)lK3@j+Uq*V3--
zQWCrjU4%^3l}6lh#82zE13yKl-~<9px3%x#y1mE?JdeI!+44$^D2HJ^>H6U2h?p0T
zPgpxgP@0moWK{-eKHlPnk6yHLp6pgpJTVVsKH@-LG$j~Tg8DC|?;C*}2%5`_<76zg
zo_3E$$H#jS$z)(GOfySI#A|^HP4(P!XN2Y+^R%kU?It|WV{_{?yNkY{bDnrqkZK@y
z=34X!h?EJW3A8b^>S<(Fv1mQ<SX?kNI!-hI-Eee}7yYR1F>U*fZQ2~$Pr(PY<DuKI
zxp2w#x6bHy_#gynu)E;EsU?*Zuz4F_Nz4n7GKpfQF4(y3&6!Zu!D;8J87I6?mo*ON
zj<f7>pO6_Bny=UKZcH#PI1DU3IO|F<#gW{*#taZEeC3zA4aa5qhOZHVz}@8&%=Yh1
zW&c6SzBn8TgN)KKtQ%-BN*FHM!MU#V^ffR8&cPkF`drd&7f@lAE^qrt^;->KC#|9-
zz+vbo8GyUOjCc6{@mFG2>#J~{qWt)}<q7eY8(i=!CZEog!nsCMu1bYlz0fjRI#z%m
zpWj4pRcxeMdiWSR{%HqPQFAagKXRVwbi!)tvB#0u$OPWRJ9oH+F#6EF>Pnx2o7q`z
zKvXyuoKfnpwG>-KhDmU>NKYs{k?;yom9FC8Z*OPi764I%Fxxb&n|a7&QB_IryoF>4
zTvdAOFEy88*s!2=TJkcJ-(~%`e!ARLzQgXyR~eP>iW5%q%e{G*=?MBUBs00RUM6xd
z*I1Un7{u_gf=?&>d5GO;R;Uq?b^#=O3fA*8eSSSHW$Lmg_V|?HlA>aZ34m3Rh=-zj
z?dcIHVCIl{dmB2xPG#kjvn}EU2*kYM0qAPs>>49}aY)E84O*k^(sXkN=x2)JI*~~5
zCPGhvP3aeR>KPK|3(J(oq$VO6vl-e$qoe1P)0?Xy(WnMat0RGEv@>G{-6!L@F0e04
z>oE-FG1CYw|Ee2Jj)p_L>BM%^FChKDKF<riyj!_X;Y7*htI&P__=&v$H++ff7Mei3
zYMhU$`<WF(%2ene#ONlJ9Wp2NI(0sdP3&sfsG}^(8_7~x&ykH4V7d7@>7C0Fl}idj
z*YqgSieIHe?yn>tYV^I8$9mw8!&xw?<?UvcE?uf;y4Usa@CQk>p1&E~HPD)lV5Fhz
zCGD0|>_|og!Nx#MO=J{sS@@G4_}WP*glu2Oc<wq2GB_!p5UG9YeHN4U`u`2i43*Vn
zwW5cch=9sBZ7@$+JXW4f3besK6(IS2Our-c@;rLX1$1Qt^yTDm_n8WrMjDTPcq&4<
zs?Bi24ubBBHW{a50X6=|FkL0l>J%71>^d6VCU0`7v{<WcrLQvPDQUJjC!RK1pC1_5
zl<T(%yBQnMM>g_HXa32){pSM@{O%l+9D-94*Q)awLwL^K*c}GAq}n%0F#q5%yU-9U
z*)k_s)>QAB6Dob(MXqZC$`73)HiL|pv+Bv13-+9!hlCg+D>h1=G*M238tt(O#k8gm
zwGI`%stG5x+->0w#tzb}-@NhwYP9a~()W>+C`~2UvYYSkiR3W(LVXAABrfgce<Lz<
z8STJ<RBpAJ{l2<+jjGI={O9?!7Rqs?2o{qu(sqhtCx@y-+}z&DN`rh?RXQZ9om72l
zptLZBQO>T-^;l{OD*+qbG|Eit>!Z}kWucA?Al!{ENpEZPZ_i9X?r8u`9+g9P6%kWj
z?wzrET{kBoR0$*dn|Ptt_7ugMD7%_d3ry@L_nY?PhPT(}4gud3IggbZsMb~l7Q=z5
zWNtE6b${Zg6>iltzXF189EzX8BmVtd3FI<hf7H%ufJk*!wvVuzYn=w8nNSv;;Dr-1
zYj4KO%q5u*LtK4;yNz?scFh_n5?u&M$yMbL1uiHn`#@u0N{}3%loa)Uge^Y=%4Gl6
z`U1`UkS|&V@tdS_>(Z!DurJT+ymwO;M9z}8XzDNfC0fv%kMw~6ck`P77o7|OTx*eY
zmC^nl86TE~gtI3TXDDkHtN=JK9rP@cm~NUMe7;^$`9;k*(wh0EA%sajHO6%5l^ku=
z!U>B@&dv~HXIWIX<qp!6-YmTu+Q1rG3MRc9wC*f=oKlGR@1Li{Hwqz7l73%Z<%<iE
zpPZr9<V2IuXE0v3VAs<*x`?B3#WI!tX=Kc>*aa+i`g|wh<3jU#nXQ7J(@@08J$nPb
zbxk&-osF+#S}93DhP3Pj%63Ga=~cSb{IoVitl4&bD5Uz#Ni-W`vqF?xxj=nCmv<63
zKs1Qj0z4&-B%m@hCm<Rd9VNXaeQON*9FN1bgu_*d8{@GLQNa&Yg}KY|hi>sHdvdS{
z3JzIF*UWULGbJ&r^qVq{@X6`6aP95BTWaS6bz*^0<0(Pcd^eVv{OG^HEn~)_B$B>A
z)n4i>2yU6#S9ksUAN}~uetvr2zKUDJe*qPBRg(a6`ecJ!RW~#?mtFT}>d@N)bIc1y
zDTb+4Ey1NOR^qK1q-O|Icc6eE;)i+pOl^Mhac-zu(!pJs5dgh3+Yo<H$>n1{jVY`f
zfTb_dR~@=@vtYg{gri8*H7N|qYY7QxNU8VF&_L=Dr$tGAZ!8WeVkvpbwh8TI3Z;(^
zUEld!mWkwG2-k8~-oWHUF<zK*lE*#GAL~3G5i*c)r_Y1E`GAkJQiwzqS3XjZ4}w>#
zXpQclgk?hx=9p<oo{9X0)<zX)e`=lHu3lr$+2F(>qz~eO-70QmT3m%%s~0gfFUcvs
znR-BB>6dIic7BogM+LtR2PJWc;yVifb?(Wjiqh-27WaP3Ti%C*78N4r2fXs9Rbyz}
zt-*7o6j9N7^dQFjCuzAYA(%r_e85Gv)7q0U>9RQrt`NPN?#TPcYam1DGYr!*0*%$m
zUaljJu7c83-}|9MY=^nea-R)nyPJFvMXLO@hLTM`FjapmfIIz!s;&BQ|3hkaL`?MW
z(JCsq@=8Mc>xAzdsd?kJ{NgKV2S5LH*=h0h;)1zpiHY{i)c5oGF&_6q&|kA(<pY4D
zgygMBQuH{6ZfZkGJ_Q77mx$44k|q&r9d0h*7Qbo^CjgtL7NzZPKNQ7yHDxI<vRc_N
z0g)FFiPVy1&<20_`fiD_Y4^Ad6(U(aaR)iPPdS}Ow6e-=n~^FfZld4mbK*X%MrVWH
z5M`DhS8evu$LEDwu+2KSXeL+TQ?m0+f{l;$c2`Dp?8R(j+=^dWLpM(sCmV|D{ghJv
z-B7On`5RCTQXCGOmfVkf9RDCrM3jS)E~YcfolQ`mcAI?LEPu{m)q(f@GX;$3#ZLk4
zryi$O4H~PeV~-Sv8t(N2JjC=~-WIQAVq<?1-@1SUdlEhNf{J)yNhysnXWxo~iFfqM
zTYZo;n&S}6m#ut~%vkyaPRu)0yDL*|_nZmZf+qmY*j#MjKKfMb4mv>|Uw^DVq-xmk
z)~&ZMK&>drHY9uh9tWgDF6G{vkYp)77aqtteBcBoc!WvYr%MB*uC6JJvaqN)I6aM0
zzB>t4V<hvh(eBa1+t75i9hmG!+b}A_ZW>PU{5@)>NZ;akb6K?WyWF5jdx;qy)ogtq
zLnEV-VY`Jv{$v(XY8?Q`&4I7TAruJwW?8oZ8f2-yPz9myTB}*QdTTd;%z+q5@tgg_
zV?a^vnm)G;3xBp0D*zRYR;N**d0lrPGwjDa8IP*AZJh(RUIE}6MVnbdyLR25sXzpU
z{=6b8)$TC{qv4cxNyX^=j|WM}hvdU%@hbuwdP*ex<!>6o|NOy|N+ECqds7fjK)fiN
z3qE)r2&I)fgj<ld!GCpn<-BXpw8_FBnb;fHa+&<|<(W3DW=41s<CTsfI>A(1;@N9S
zm4<a_jK;`pajy2MTPMxN@fwx~)|&G%3ppxTyW=6;T$Fg19j?f~-PNGJRE;UDPdSn^
znp<k#(QGxFCWfS|(;eG@1KAv$#_h%22AwA&uCZe(;&pv2KUD%C73Z<zP$PEzva0Hl
z^PL%5W(4<Oi|qr!@+_!Q3lT{uTH_S^t(zn{^1Aez(c@5b@3`JTKgodR*fz)jwG!y&
zmVuL+1IQ6>FDUJYPH~#vLMYAlQ0CyC>@93Q%eS2r;jJh@e+N>|B3>9bMxvDND4;LU
z$RS2HiV4rXZ5_o``c)fH^WvgnAT1{PiK9LuM>D-jU|y&6G7DCYc8`r=JhQ>FVk&ri
zEi3+j=r|XREM4L3$7aUbK2yng83%A(wB1+Hyl_Ivz5HGrQb7ha_z@W=CeP*VQL%$w
zywM1jxgAow90gMKyAfqEjpt4_gJvh3M0iJ^T=$;axiUNf?jt-_FsFHzf=|=}Hq0MX
z=08Nj5ho%6za`ZWWXWkQ5U5VM0J+tByVM?xz>yUcAvfB#Nd<gYW9Z|+UMCpgtxM1`
zg$2sTwl@Y1+Hh&rxU6%55x+zWzP$kR8G#F(zmx(0vZejwTQ7psB)cdN3@iFBSMYWE
zqx;c(3ZIirqi3T!qvoh`gHAE85ss^vec}x7yb+=<t>skLoEB3aWPO*R(gJ&Bs&sVr
zvYBh5MfhHNELE4S{B|Z8fo#X^0-F7aMeS;byz0-!EiMDiX&mQj$^Jcr_z-k^fBHI@
zvf-If$prnT36l3pXiskkQ7zn69gD)|eFe-alb<1P#TwC;lB!QaJ?dHpbJYy?Ca{`*
zxpo7Cub8gRiR38s*DOE;LV6<BR4r`{Otlfj+??j!Eof``eDXOlX}$Bf83=`f{Mlr0
ze(KcG0RVf47<0x?+6Qd8z{BnUt>CC?G!nH2)7S{iiK(NOJoDhHX68%%(8jyWD212c
zOa)kQUY3<tZ=PVR8G_@*?4qvPyh6rARkQHXN8ngt?j|fNpu%MMSKD=q&)dl)(>@)1
zJ(=il%HxQ-p$ILZSl9bq2r`2Z&u0Q<uZ|rAUoOk6Vv9|tTJHHT3;$#=cVy~RCf9t-
zFZYhV@WR@=^bdPx8uyjfE4N!tBLZg<%TKE_QPn;O1^=Jd&Yv~wwdn14g35s;e^<DC
zzvztFNFH7~JWVn}m2U)XjrOOODCzSaDSve6mId)2!TIhQZ0QddXVO|+jxxRbsz31P
zkY#$_78PyvO^-IzbDf+ti<9$X{tufsdgh&HdT|Rp){ME^X2|+_BWT1fHd|>_>Obzp
zE2(=-SaG@G$R$)fDt~WmNMNp{?JH>JJG|{0OYl#_845kWD2*0ag7sh{@vdYV*`SUS
zPnm^N#hMNDp}LWTAK|FU0_SC;La7iv|5TB6nn5d%k;9oP;U+*{hE2o*IP^eX_CV{6
zJ(Fa~hTO%mUMzEA{}=D$!*e@%I48-qonAJ^3JP|4gk4nAhZcG{!{Y1l!b6S#Uhd8|
z&`O{c6m;Q7<16@3q22r~Pn9yZX@b#9Sg>{G#zHge`og=WP&4eLt&H$dsy;+3I`3^f
zX9bD64xlsbd%<n%y&1XaF8cA2%hMsAuTCO!EKU(ao9O;7;cg~As>A0wzJje4iFnf2
zzQ<Duc>{*)03f~{@Iu@jPp*i$)A{AJ5JAMILEtL&3?4}ZNMtp!re)KYGZ)B*M-IvQ
z;!SRMlug>($&ecL^ZemMf_}+Z=DB(%2@KF5aCcYKncY4PU%H=U+xc<R*eSMkhW^6_
zv@gOlrc|Zfu@i!OHUW9DT!V363@=_7|55a#q)#*O%E#urZ7%scXpW6L!J4dM`MzH0
zm%{ghq;5lKqcgMqzrZ$yjvm};ygqC!J@b;HeJ3|@H5mq7M_mlsau{3EHMrVXoiAXf
zRLVP))Z#8)!72#CsZByVPW^RL=h|qOrkJEa@qn_lJCjP1cwJA&p=UW(4g;ave|V(7
zP{@B^(a`<GjJNTFRi7!5V}3!>BZofbrg>NUM->M19HvHk+g+AWei-e!Ug13_|7KCC
zox}+g4<SOQVbI_Jrqgw2H!y${d*h)V#(`re<4y}CbxIB2cTzVs#SlJ8RY#|}wy*Rk
zdVrZB9~xw}heJoZf+`M}^sUZxMO7PQBZI;;<k<2Q=OTz}{qohXO-x<30E3wn8beB=
zn9NW~qF_VBLY-N?f{yI+!l-dVbfA_i=5T_p3|~56<r3@l2^vu2y&Y>n@F@TmEgs6}
z%T!_V45?v1Fd?nGvNG;DWe&dzROw4fO40y+&P7mOba7@FeuFHNi4D#EkcB4C;(YZG
zkO@A%Kk<h6L@V+BL_Xc{UxW!6NZ@>GVL;W7Nix&}Lfpsj@xnOFX|$KB==P-Urcjor
z_?%$epLml4N9rkc*|oTHxV_P94*+6p92F{+&27-kSeHS&HjvkBuk4svl~LVh)l3b!
zf$ts9-gztI^p`_vAv$t;v;B!LVr5fDtq6SoJ2>uBoPhKFvqtd?IbjK$lP8L^?rSH+
zcNFlH(k!f1j0)BqVhwq684|?*V(~hSs9ldS%Xt2-5<=>v-~(Qb4T-%aL+?wUUYT>$
zxF*^^8pm{zApv8d2EtBRSKc%3pAP+XQ59S!WLoDaO#I*cKd0rWaYNl~DlPg-T5}Xd
zLN)V4Et*wTUim)Fw+Kj&*$PdMWbeJmlzL-Zf8wuS@5xojNqCr>c;Uw){ujUd_s^p~
zL})w_U9izsdhE*hyV#+ytcuCM;aDHL@Z?2N#v}xve%~DaFJCc60VTM8Ezq{?uiyQD
zu1SCV^qd?hyl}Fo2>vhc;rsjdsy`2^wVd)1O4h%=aKEXLzrUM9kbxI0WM1;SLg+uf
z*SMTR@u6b}sG+V*h>s^V@q>|ZE;7-)xvgvPKYipR^e==Wj<7M51xKnU`l?>FFZkUX
z^}2Ql0!Xvv`m&GyhYuz=MkqoC4~|mdjPxn!boGvB&z?!h`v2BY{r%qiei{D!vBbT>
zG30r(0&^EUJPzy6LXwh_wqA)47>>7Ga~wgLrI<eN1+19Ve)`{<SN`+$L*D-pws-n<
z_4W0a!{ZGr7|L$ktutHv89DO(0{=hUszOuv=fY$PSAK~aKzcR*udfs$4EML8Qy91C
z|8(gk#NlNas@ncHx$^)2X8!K_g$SR{XQw<@``Z~E+yO!&N0SxGD>(Tlk2Um$ngmpO
zd}8Oyth2w(&|#{PPBxGx+LjUeOu44><JQN{kGt$$F1%4s6%tA~d$(^D_U6#kb{9M%
z;_ZvS*+8-2T0)nklpWGGRQSj~ARv$R3W5cJ#=Jhlpd*39P(fo1Kd)u*=qSW(U{ced
z-MNO8j3BW3GFVWgG7C;WqLb`zjR3C)+)cTU0|>bW<XI+w^-0y(1rcO7bk_|s8l=G9
zO)uFcTxP&B?E=9;4>)hPyup^Y3_V`@R6kSH5WqU}vkyd1?bRM1AOEH2xa;o~+x1>T
zV1S!T%WcX5N4_c$P%lEo1@b2YP?=-{g|Gj-RJh!cK<_ikMqWnc8CefpW53|%<P`LI
zH_r!rzM0xqU2@o&iML3JDLnQ?q;~Q?#Wrov{PP3Nbw`df=Lnv!I5C?Ue||b|&M?1^
z#?+o?C0|E}_jP=UUM2KSj~v_`+S~SYfa5i(Q#?R+9jeY+B(uqaF>pWta(PtZ_O(Ix
z&kDT3_I-oaHAD{e4BVcM1CNev)WQfa9gqTK)RhZHz-2~KHoya$i{QLK&bL5bJb@%8
zvJ`#x_H%~Dp(0?1r;}gLLIR3i1DvNVk;DJnk}{#wtX?;C@SGo?m0z}J9Rs<}L<J3^
zWUQCG%fL6EAQ=`KWpiQLJ%Q%O8sL?4_DN(&2--pPdGk$t^|5<3v_F3K=VkQABI_q9
z)Nu$2Qvv&+`dd)8c5(5qfk?_RH^)+G5VE4)@&HWuBmVt8UQeg3=KTeNyD6v3^7w57
z(xa9W(xdjIy?kSp3qyb;T*E!`Afj4<ZeZNQsdO%aN*B{}$1}BUmjp<{@!Pld;A6dl
z3-AMCGiZ%@;i+h@U!&WyeFG+c1nJm2H4!vv(~+UYOIwy_KckG0tYLV^lm#lR0USwm
zD8tk~McDM_stH-`ut8M3o#$m<oOqOQ^*jqCc02Mhsbu7B&j%d-N>;ne)GOfs1?66W
z=AZ~n8a;SKaK{?Xz&dLawHGM_+=|k*N()AL44QwgyJMoK^Z6br>AZkXVfsM{RO7&y
z-W5E(LPHLH(PtAS7yqt@`F)r2s;6stB|_*5hjM0a?jEWQz>b>3$Q5D3skFwy6P8G$
z+z;9a#KoHnt;F~{`)%^ZM0Hy|Y3eFYa<t_XSmeJO+BvJ=FJ6}tI+*o3s?eq<^9uHz
z0kfIw;9fMp{zx);dQeeAV^5yjgY>BF%H#yPWp;x(eT~hAK4s7K*XfN%Yb@%Im*>{T
zs<B6Bt3aE&4F?k*Pw=oc9eN930{UV!^I&5Udo8jUM2eHr1gl#*ds|@)ey^K}5fRwS
zHTfrxN%<541gIMoJK_;}w48!n!UurXnV`CmHkBeiZ^_i<AS-BSE<UGQyU67pqtIrY
z{^bZ86#(ayAw>!-ZRg&Q)|RT0X2Q*DLwO`M_`rVmBp%R+3=HkZO1G820F8JRMJ>tq
zbD!5i{P<AcdeJQu$xwCWkuMXQ6VT{Z_dP<@FKKc8Ze7FgcU<5KnUiR50R&|h;L-()
z#PkqQ-7^n4K&c7|{@Z9zG{<LA-lnJ=`YihqiKumXnId`@w~p!jLq_Q_YuYbsBs-=H
zbJdw$i`>&UOw6;IZ%AEio|oO9*gn0QKA3U9+;GhX0R%4{DuYRMqL>{8q)KnPK7=SZ
z%Dy5SgB8YiOVHJ6S9zrlnA;h~ou0Sr{2*OuJFDCWNrCrzkjI*hDyF;4*>*7}zRdeb
zc(NSM!-^w}q||tS@_7^=d}e?(70bw%un~m`gO>9xB4M3&z??=*++LwMxf8YleO`4~
z43{*+aDU#vfBltQ@xdckKi~a)7ajd(uTVtL77nUp8K&0l@?x7Jd}rl64(2eiZH8t$
zyo|lLXp5cw{KSgM!?{-W{HXK5&VspysEp5(t>~beH)HL<aTX#O2hi9Io|^~-iC8m)
z3gxX#7yoLOwQ`@L$33OR-a=rg56Fu0`CgY4NqG~G5ks=;&?&S$^bg1}b_wpOL0>F;
zjgk5G^$=Zx-aIS<KE`}_+gkt`UzW2jfrSaspaq4W{5e^RN{E|R1(C?eT*2E;ri_`>
zo%_H7KfSZe(*#hQcOYO@fpfEJsULSHOhM)s-T*p-dgp`iN0g*>Vv{SHk@17GPP@%a
zg+z4obSYapn*ocIp!v_wTJ93A!;WB>;mXDiYvOGuNDW@G(w43yd&T+%_*-_Vh!_ge
ziG#bQKmK*r%+K}IOXA#TD@J8&2Dh_T;kuv$scNY1|9r~)<3SucdbuR*na<%2&m!u?
zO1oDUs(kMprfe!W1veu7wEHMm9YOP2m9*YXGxYe8YRphTNwh7FRFq0%{>NE=*+Uj;
zY6WZS&FR_>PASTL0-?dd=4xtv$9WF&Kwz&wgLSJ2c@NApXupwwp*wu^j1g72H;F;*
zxKi9U@FnK}wDM4>6)RrYe<y%2{~R41ZUaoa^v{X~<~a^BsBT=Y+}8%P1?e+KuyU(!
zya2a^#D7ouzO0ePZY5?*zqs03-k)dkJk|o%PvXRp=%VpRvoyzr!3>FnA<+<L7*7}=
z-BW~$(}>U_=3rR2mRd9c?bX2*IiS7d!O~tYJwrnf(+@jXC-g>UD_40B+j}Af#6U%j
zmu*C1;(XD7bQ|36w%gB#F4a;VpVc@{a6`*wDk1TWXpu>otiWdcl>1{#NU^N!-^|vn
z!r2B@v0j&!V>H|$OsW=8D9pQextoLFw`l5x!il;<XoU0v%F+^u6qs1l*R(}n?-jrU
zKMc>DQxcv5f5+qSOmaXg#34*-7B^2stJKA=c>6;kkYH+@eHKEPlEa2nHn^X5Rl&f`
z$R%0J6T9jFs{PXKeOMbLSsilux^$h4qwPaes!i>(#1{qtj$k<4yjmsNa~wAMN)w&d
zmoGs{UIn*i#UiFEuc;Zq6XXiGZxzifLMQs;s{6H>e!w@eJc&262cmWr@%asdHaDuM
zP{{2%`^Bwu{W&5$T7!WF9`?Zng3Feb<rR2S>gdnRbad~UuV~dG$!_rUL^Qp$X8IUz
zxCpu58c{8q>CV79zTcN0sN;EIg}U|oCbj<{W73;It4r|rpuKcz=gzw(4D04_D#3GN
z?kP!8Jx_)=3qij}1fIY_M8|lqqSjVYN3zus*iH}3r3exugyJq9I_HA{Y4%wE{Yc74
za<jBL23|(Hx9Zd}Ve09D30%`(j4U))t~<$BCvshkoZXU;k<N`|UXxa>w1e;jluDdV
zr3VYg=L3zqH_h6U^$^M@;rR_`mm_$F)m%Gf5#CHtkUmK{=5N_V%r&R;lFUbm;1j8v
z!ty%5PvI)ocYA5Mdd4TIrlDqkqV;L|GLJM9TroudGt*aSb;C(~##9YKX@K^ZV7{4P
z{iK=a@EFD~J}Yp3j({et;5ini;$vF~16Z52-<P;}!?{;`LD<eoyun^J0*Hb>B3zX;
zKA{LQ&u{TrXU8rWSN4;KDtu!A-$B3Sfvna!kWzy#RvE$ykb2;3HI)ahMUn++??cO7
z&Gv56BPIZFM&1jT$)~q5F4HM~UrFCGmB{Y(uBUemughizZ1do+(`on=>}<c>1)Uq6
zPcg(usEbYf83gPC%7sG0-qA5KY8~wng3ROdea&4JtVN%3$TOCgcU*Y7P<Q?9wF{t}
zX&LD(-T^6ZF{4fE!pp$x!q<FOL7V&8_e%_RgMeq;8eQZ^wYy2nTB<t3{xhN}?#rRs
z4RL>V2lK7Z8c(JrJvO%3Ga03#dF=1xD!p=sM)-Uf@ea@L;ay|LTZmq}Oje3alYc<t
zeg?T_E<~nB?v{R`3)9q}>nn6*+oD@4^T3uZ)!Doq6V|PJD_^kGwVr!VEIMtVHK^ze
z>(<Uf!E_<<fZh9&1REMrmyxEbl9|23$8awn<H+{VlesHC(9vxutHC9h<bTt<BnixY
z$#-!G_R*Iu!<4WORDdQRl+8n`8j?T(3QdpAF+^JX>MFosy;~aLL9=p&8JMQE$e9#S
zqSyGaC}G9)$kDS8lhW1m>(STM3N5wxQcL#*u4QID@+LP$x-TFv|0vxYeyN6kh6Zyr
zUV;f1w6(lcLDfX2y}pdX*rf*60@(a}BaCCF1h^PR<KBdNle1Rt<Ur1^aYoJ~#`a_+
z$-YUmZP@=Ru<q4JWFiFIOCAGsl=O;9EauK@UAfnyk2NQyVtatV2jyvGYHxg&Z=jg)
zxqR!Jk_O7S)a99`m>a8b8Y$hbMU-{qqb=;|wh;W=_l!=m-(}cy<8A{?t@IJD?v!s4
zickKtbZwdmr@OWiiXPVl85(`gjSt*|-1ox{DJ}0|e0b{MBPB1<zPcN=sUylo5D6d6
z+tqGm*A|XaQV5}ou7w=uT!i?OxGaw~(_~-jsQ$9*KYwAci_V5>qr(1$i{~D2h<jkx
zxBvpy9R-9}uLT%Cb+Lu?rpvftN-w3Fc|1qcg~FTMIioM16@7%?gve?^eiHq9@Br?r
zKJH-u`*$0}?n5n`TL4SzQPFW98&pKoecH@e-+&^|p(|`bVWJ<Tk~+yYW}YPi_5;aN
z3m*|kFyjjV`v<Cp^xN%fx_y0@VKrp6!992>wffmE8GXMq42p{vR3nq#B+U;iz1~t#
z4K?|GNP+?{xM$z<`u;6e@2|=_OIEQMwkdLfl?18E_&8R&<%#C?0O#K#HYMoUY{#V>
z4F;(k`-d&tDfpbSVD4vkd=BbUYW}D${9qHWISsDv@sM0*20G>w#_xMYEVbFrHa%qI
zJoSf}r6xOPxXkF=M8nEI2GA)zSHq1EL@0gQ-D`(ITaZ3Av|Pc^y#${@NsD(i5hiAo
z>CC46t5_8K;yTAv?mN)t9!*<<0d{Fz5T+)14x~D3Q%SLZG%QESp=tQPSP*1SzC2xE
z#dF1n{Z-VpV`5bHN-ML`6}t^OyT{UA`(G89Tm~~*1S1T|KAdGq{(PMVv9VO)(}38Q
zz(+Rv)aJr5A4$@1IeG~}rF7k5E1>*>9}Cg4m8ub_ZR~sAiS8@0Pjyvhqjeclw}ySP
zbo)I=I=r2RjkV2**r;knkl4l(9!9o!VI2>uy)@lOYSU9;)e<g2C<1w8@Jwh_MBcO4
za_2F6J$343%QNEU$;(MiRGhdrq%YQ`_eWb*Y@R>iTYWJbM@n61!3*S>mAS^v;B87Q
zeo_$%kKDY=9cFFTN)O=}$!VTN10ehY+ldnhzlQ%H{8kF&&hRL=ac_dEzGz)zozV0V
zC{C@1uQIFX%6Ap_f<AT*(YjM6Nkx3|=7&MOU513B<vsl!-+7<*?S;$^gq5+b<Hdz$
z#lWU@!)nV_A=qX{KuXIDY-x55P%$}fcMSzVzI``L{RWDA&zJI`wbM@<blOan5c_hW
zlG~ks#eJSGzIbdhKvWO5WP?^bBloQJblBdj$i)Qzi#^#5XUouaKrT$BEwgA3CiL@v
zRF-w>3E-f#PE+dE_vc}hjySrGlQs0lKpcm{*@*`W3McWSAt%)5s9gA2O6?`Q#Cqn6
zl$@5PNC74ojNY%lI-F?AFK~_uf?Uen)gsr<oP3-D_MoHJ+t_iv?9yCVZYr*xv?4vi
zy6H}jKYH&L9M+d}M?93BM5JFn21)M1XXK;{O7_w)%tut})CQs$QdvApc>;0Z>X7nn
zyLQ^`X<Yr#0g>6dR6bR&q5{=~&vByh6gL=@T_GgeyXCP?hP7X2f5K-aT6J+9yb_ig
zRO!y8sSQ#O&`me`hV9((i6qrsZdAF@W`@>8xA8#GF`7jTy)R%jrsT2zR~mv;AOjDj
zH*vY+$+s1cH0w!|8}{>bf{WslmKA|H{BS{~D<ZQqkx|+?+7b6;?hw~6Z2|nZ$LOD<
z!a;aGSK(*!1~<K8lvsf#4ecXdDG|qN58J|>F?;Nt-?p^l?i`vNuLSbXL9X$suz^*k
zHCV{+a2@JQRcXe4*+Q%|<*w_9E|s<G@#7H5N3YY<aL}f+$xgw=He!ZBH(bq!O6n9o
znW{-NQlVZR<Nsp|IRKm`NmU36wA|g<tP)0M^x;ir*Y=a4+2ut@(fSG^F`)M-m5{{P
z#k)o`N+>43S6L|r;RjNkz?!iAk;*L1T3j!v6b9Jy0<7pe&r)L0M3T&zLL%DkCcHZ7
zqQYTtw0ftBUJp*$oR)88np)ONOI!?z#Ni{jDN+b61l-(egRXM33ef7NDW@tkb7{N`
zL9oQIuaq#{JeF#5u~(qqIBnJ6OdGj+q5AoV8#vd#%(=YMBLQ+jw#C7OmlCCXTMQKr
zy57l8j(4A#5|B<Uh}gBc=?qIXR14>Qp)AZG!e*6KtZ&R9eYGm<6$9eo&#%ZxjXqW#
ziTI^4b6O(qBX0N#UHzWv-S-%UhKLC6N(?FInw!oRqm+k^OXuD&33fm4P;}Ps#R~WD
zS}GvXX5LXe_O`FIeWN_+_Fno@-{CrJs$Mzh0p0{(6}?kl5@()7YI9v}ve4i<*!D1{
zJ2blrH(VjLL)@-w#TV*Xxzm{hk19UN3Ln`_jIzvuW5Ez^tfHc#mOZV`%iB;tt-;}-
zmv^B|@rhPwojqg;N%uj2);!jI&1OWgWfE|%4#Wdd2?ST63dq4FBqMd&DG@V=wjx+e
z3QwmgeU5(HeOgmQvLhSXV6RS?&4nk}B=<_MTp}I!$ft6B{6c|7;6*$gFU9lDr_OeF
z#n;Qn>?_D7oH{)D($8fcpdlp;x?aWN$zodJebr^OONmZedO;Y@Z2flH5SXC}`ZU5M
zh7XDg%q3gT77*;N=18YKg5Bj?!M<PCd~&HaSFrPEH#fNqC)=zs^p!8>{H9J7z4<Dg
zpc`86Q)Xhy6rmp@?=L5jpJ$R^zk(f@5}e?PI>Rba5L%qE_-uSer5ONyQtM13E^}5l
zIys2E>d$3aG?aX{R>UX~Cm!d2s=zrRIx?rxd7;D%o{RklmryOn4-pkBjzFqPW}s>z
z%;j0)U^5FkST*H`s_zMaGNIM7V$(<wmkCX^BpsUyfo_Jf{Hsb{f|nUoSD<Rs01-5B
zfiY#1@Msj)r*1u6;H@;)QLD>*jeX~GyEss+;aDqa#aHG|Cyr*{CmiLL1A(68+jI53
zwkDc*1c$fAhbmQL)WyyuPtLSiX{g264<b<!4iGybazD&2qmEe_m0ho2WAk&49vt{4
zP<ADu&GSa)mUlL|UjA4n&~UF?5YjP4=`U60#kn^}^M)}>QTzSwh{pI(2y}klXW=X&
zdv9v;5cb0>Mh+k$L;hb!ilQ&Y_N%8(TEn>PoqI<q4I~^^&!Vp}J`UBS8?Z06$L4&R
zj1hq5oR=GJXQqx7tQ2Xklb5eA43^KqnKchFdCkGmLH9zm-LuEk{5(V0U|%0N{;~77
z1611#!j<x<?tD1ILYeUcox6+O))*+^?${-blY4V*e~LB5Wur$OzzF4I%9uh-5i`;;
zd_AOZ80Qk}#d&n>_*^=j<>l3BGY|Omd+dA_BX@fqTWt%xPHoL#7h+JpefBt54r`OM
z<!eKPo6DJL@DFb8PIU##bP<#*bC~25PuvP>j}1K}@!fm-0?Har`lYmt8YqV}b9gkr
zx6Fk2a10sWv{$%qe^%k-*Z@{W<Txr}N;1a^GaJv^inQ8te~(p{I2}hp?GFEObnK(e
zGzzR6q1D91*GEDk<lQBD&ej0w?<#zhAK=~fF!H8^4CD$`dqK@ED+upGNcbSqlL4XC
zQ&&pckCz;(aLJ1rp>*COII2sa@iB(K51jC46nz+c9@z;hgBUdpPW;eU4)pZguz1Bp
zYvKWn-yMBdpakFX3CnACs+Jtah<f;97;{0z#FYq{d>cIpyJgTffh?q4!j=y=1V2Vk
zk~O4Wt$pG*^BF8_+0c-FOXLcx&O_ce@kC^-+U5jg({5-v6W~-7AJGwhTc%#bs0=zc
z1ItQa*^lNsznp-b6e=eCEiBkW`iGKr-^U(jXP8QSL;kC2;?V5P_23-eig1Q3Qp?CB
z;!F|e8=i;eq4}d(`HX}bukHJF_<2SC{FPh<?uyx5MT))<<O=RI_)RFvaKHQ1wwJc`
z%-vuLqE*j^F5`IBpMG+ZfGvUR(ayp~)mP&^eb4AMU-cUPpu*Aiey#-Nl%8&fDUX5#
zu3paWbK%`}1?sHjRe@0^go<7%^w=b&6icGgm|OO}ROX@l%E;iDgzPF3+6gA@`AgQH
z-z?H{VL<|lw@jMI(2UUJZEH7SVm4YbBoU%ly`Kb~y~0e{)C1~vXrppd#;1VV2gJjN
zp-&_W9t^sZoalNJXjWy|BRcDG09ZFeQbo09gS}u6cxY}TGr6e~$6MWe7^q4ypWm8-
z^QrVNCBt$zSs>_?XaW>hdC-^_A#Uuwh1UgoK51iaNU+h}1oz!^;wm-Y#^-xvyLxua
zavPH`Y?}^s63b4C5h=AwO83>4tf9Z=gS>vY(Vs8fBY=H=F`q1zryVj5jj}VUXo>k;
z@pc#PzPE-bz_<Mg-u@+`ctodyXRv<7`!9cQ+wVVEUoI2@ecnX{_`Rr-D?U%lzmV3s
zy3*olE{95l1a7j4`5y8g&)J`^>W_hUu$~u^_k*yZ9q+|>2z>=_dmfDQ```mGg98^A
z)_Z%{m&Q`7#O_d_et(fo6~}RWrSo3W4URkOE2kRQ3dRKYn7W3!dKRS2TG#*Js<iaI
zZZTfTLf9!k7C+GJI-~%C^6?&9Pv^u+3vEs==&}}gB%Eq2*%I$7)30^%j@XnU&EIpV
z<ulLk8&|@M;2KueSgV<Ib1?vQgVL4#=)2sTqt6HQQja~tA>4ZLk}U`ag;)xOmNGrZ
zcDGMnyoh)F2MHG}U~|x0%7Lz(XGZTQIP6$Ki@;6{PUoIC?pGLp3_nU4J>OOW=_s>^
zcPb<_PgXkh)YD%0N2XwUxPtcWfq9n{D$POps1b<Kh2=&OEF*WSEX^@c7NZ}2D%VGr
zSl&P8bUI!m(==Wno!%pmeOTfv<v<XS{K+_K_HH9cbmuU`Qjr{WxZq-<ro0~tsgTf`
z_R^ET;4qF3$A)#<#|bqf)<J<TrV|KMyw`JgnPwd-i+e~ij*lLxr6STpzE^{k>j=;$
z!!(@n0YAVD5a><#HD83M4D&)(6*<=KtFHPG)>|d1H3RIR1cYauD5MG2PlE@M-bDUv
zFGrYXi!Mlo>k>qzFz6=CNDtYpI7&{u4lF$vId}n0wJhDG2XeV7F*<<7yE<AW4+^61
zETdCFxo!m8a`4dopIe?60i)b`9H}khgTt&bL+<O*;BClKt%Diuyuf|4BusTYYy55(
zoqzsWhu;F!3>A<hMQg5HFq*y{c;N(-kqGMSNXz@^{QakJLgaO49vHG%E2V3jr4G8q
zh9AsVcOV|`x?Q0IN>xmL6r>r&s^xB00NHk@V70G(BX=lmE~3DpNyWoKvsq-WQZ$#U
zRx?$^5l6}<CHELkh?p*nU=n>1DY8!0asF3Po$^-`_zDq=aN^x3nRa#~kGaNqC<i=O
zVXM9IQ3dxLI$KFq?98j{IjK6+Ux8rJMoKGxdlb?rY=w_uPpl$+C2EfgnEqE-D8L(=
z{hgHYu@GUE8kMy8oUtgGF$hzX%n-Z+w)sZOlBx6S)C|cP5OA3_0pWE1F<P{lh2}k9
zs?Wms@5T00EA#;>_FI0g_j%iGh#}DMR|ztJZDDK+VB3lBU|YLc1Z)dyp&2lwl6hHC
zFTM^_R|Ym6LgOw8zMY?#QR`zOX@|fgE{$f7-poSN4o1bX%rE8yMkt4Vq%hlXO{kY|
z?RZUEfy5!(9O;>ptdc<&b_|JYHNf*y2K^J8Z&_IT%R$77i$&nJ7jON{ONpxnF^$jJ
z9{VmWt!iz9R^Rb2M_5fNdz04E6N%p<O~tmIAHv38&Ivz;-^iaa`rh^Ux(8cW0iwkp
zxO>9A9XiEa19?th>pQ0H|9;p$;@F4Y3g#2C%AJ8zFCx@<Lw!04jox!-ySOwFRd!I!
zojNMI6vet}8E?_t|3#Z+ciKj<kKam-zq#|{PPepin#QeEk0_FCKG3WC=l8AMd2Tj=
zZ6?)cyvby`C%MZ<O*KUGT>Ik9t~7`{K13oX_l^s_`61KCvtM;DCa7ac{X)O26V==Z
zCN(1mCU9z^qM{jEmXPki+{W{+W9d}s8V$9v#|+Bo;`0l#1;DYc{YJBWh*6!+4e?0h
zDM3aTELV>XHpw#KziRme0^*O&%YCfC=0F$7e->kQDIRACW_MY+t(ZVN^r{OnKUlo=
zJDS++*(z<ILNW$z5YC|>o!W&9Tl_)V^Igl!SX-ykMc3D31pctYag3MS^bUb`L@FfR
zV-M?C$-DkSMQ1o<N#g=_=3+&4+pqyXO;jht{LE>$-3Qx5LAA1}wBZ;UhFP)!I}gZ@
zL;7OnAFz|f)fU-JglIg7ArTDx4zop+$;+@AG;|~xZMd8AWEv1=9=AxRF=PE$WPcdi
zg88X8Q021R(6VyRaEW-IKt_Gtsf5h{c(yS8x}??SoF63Ev{{y%Jr$YwLye5D<mMF*
zCcs+|CsWoQs8sptr4H?)p~mW%&DSsQ=-8>TOWyT`n5jJ>C&=tx-nk}6d%!QdE#J)1
z?P*|kxY{pOOE94qv&NOM02}t3-}{K)Zm_trLmL!{)y<Ke*SU^wBHCr0t4U}+FW9tk
z1>3{?UbkhArjFS!Ytg=ck}QBxO3?>Vb3Ty9dZ9SFr-LJ_w6}6kNR2FcuqeR(<WeZb
zm;SF@-Al29A2|EtM;Sx0xm%(6%<Duu>fFT=M12+Z*E8lg&Q@BqQP>v@G<oz{aIIr0
zEH;C)FRf?iM)=I>Y)i{XHyn|%V6t{HH8#-ahTV<ND=&`&5m@w3*to~|9l4?ue^$BU
z8_0pgulmqe4);NfVp3pgb&h#Yj%L(kZqm+Za=m!AH(l`+g2t8#G_x_V<PsNE)06>l
z^tm<zb&#Rab!=w?qmnuQUI|(P<Rplk<%ZMSOqKrTuTH4M=1*lu?6jvVgxoL008aNK
z4WpmE6sEox26^QAZ4S8Q4*Bjdq0u~T0ozq}3H?)Nk&}gi$Po^=<Uzp5X}gN9Wciwb
z+>`E)%_49VvT<I%YvtPh`E=83;3QD%DmV|q*n<ZZBG-`_9dZllKi^|d-x4HJYAWEM
z0K0E{lGTr^<@E)DC2BsK#rrwbg|GZbLDZc0);G+}x=!%8uD@OC?M$Gu<v9kA2*>T<
z&pI?!GMDR#^<_=sMeQ!t9inhbt+C7z-HsXl|A>3*xGL8zY**1~fPzQ~h_FPE5|C6H
zm5@-n8%YVJ8v#*3N~Bv#y1PLU>FyS#OS(DZb??1&?Y-P<owLvH`~DIYCUd^?na}%-
zG4A`iX}H8~7x;#Pv4L)zeZ1orDoI>LG6-w*DvzjLj0Js0FHH6|v=0LK?-xBGCE>7O
zJZL=q^GW*mr~8K|iM(*Y+WMA_wj_5LnWjan;!$JYNK`U@oZWXnGi`@-gx`i5duIL5
zCDmvrMOdr5OU(782{j5}Afr^C=>F<+98Y&hc;ji>5BL5mjOhDQaS?VoFX~h%D}A)6
zTgbC&`Wi!YM)s9kR>7BUmZ9=hYvsc(Vv25zKUY~FbGe5Rs07s1#X*E5H*NziR3fpE
z^?St(s8HNTe;G*n{aDGDP`&@~P`An1VTA4A<_I*(1nB8p<N>SH??tV>xK;ErTt_E}
z4{PD#e_Xro%?FXYWCbi7vN5TZfq{WvO4TbJN^Yo@vS{9wRG-U(VoNSj1W(?b`m&)&
zKi{wP&p&rDj=3<=eOH?7)!aBsJW=kqB%+{>%r}49Hh$L(dg4$O0L%w#2kJBy-mvWH
zCoxFOM(u7Q`LEydKm4{oe^E4V_)=sw8qtI7pp-li?NN~p{n@4Y`|tm==k(|QCb5r}
zh_4aOtmkV9>If1^5Q2OoRXo0V3+U)*=`E>${!_mn_5b2G0%$S?6$-McsgD3i#}Iw^
z(9gQOu5=U;Qh_;_4Z>NqMi@B%){^}5D*_kI<+6(u24jl7d#HoIC;Q1?e&65v51ME`
zvpUXezQ0h!|Bd(P`?oZD@ukRV(9oXo{>#Hk<4Z&o*;LO*Nb#p@>H9m7NR<ty5UB-j
z>%Im6PL@nF{c&IWu~+`xuc%JBd`VAF*XloC_IH2eSKnubacw%f?(+Y%vO$Sub28vf
zK!BIt!v)medaHi@UU*y-Zf$Jz3a=CW|KT~k(qsRhpU|fp;F~NuYyRt}{HtsG^H0Qv
zf>8$#=UUm1-t6D`u|FJ*;qhFC!31L#!T3L}ATLB{ev?1<e*^Ab_;kZR+#dhGUzs-n
zQC0t90U+<FOXF|;pnSx%0PSed<g?q2=t#@HjmVOBtk85!x2ej$x6oMe&3rN3HIz4W
z_Y~~jaNkHYv{YuFHdp3db}s218u0!?Gb?Ahg)?lJ=4AW6&~&6YPuwfN{7~(kf|MDa
zGUq(`P^rn&*PC@8;RDDALZ-#%IA(`05GWNJ?2W~e0dL+c<~GsiLGyGFY4^bV+<bTl
zf6EI|a700fJR8J?+Jgv5d#MuC8jy#HHQ$}`Mwv&q`4Z9xZ?+8c<SR$hndR`XZWd5o
zhL&a_fZ~d)2zJXP)s$>WtZl#PME=-+>&U^mVsm)_<JY^yKfXB-#|0VKv~tYT0o*WX
z=U5krn~f0`0`!;q!2#dY@S3r?k)}Plo<h#rFOqmQFZZsPXq6q6Yn(`iZm-G8Ja~|%
ze0Nf2-O(9Y2amMUs@ezv%DY-GZ?%y1JjpPhqusD@R-1K*#K?S%E9<$PW)TR1ublL~
z_4&;FSe3KO%T(ugP;53E_vL5{fl4PULJeqvE@<D`rifO`7(`r#NCrCwSFo$m69}k6
z#Gyt|jUwc*dq#FGtbLGP+mjAnST;yu-UAKV)nKg4w;21j0W?T-GW2jYq^ci;a>Hz(
zG+<P0zu+N6*3rk$rA^ad39b~e`pDp5-KG$RqScEU=zjK~&iSf4OtGVu`_maQml`gq
zQ6+=-UwVo}_+sU=)T{s`9BQ(P!9IeU9`S<Ie&Hs<Wjp``7AAu(kqZ;0e}Oia;@er?
z>B7tF`WMt12ZJ?<ryO;N37m?wBW}G*?KYXH6;*QlR$rtj*9%z{bo+*)Jj5m>FV-6}
zuN0_T`KJ_R#H<NSSbq$L3z~@nTqV2wL2~Tr*Lai5TKrpYH(ovF{kDk=v6KMRmzOsG
z^{9x=&K9PYS8GKf1hW8~f<qt*xnfa)3>$*s&O-a`m^3tb-EJZf=}ll^oz$lG^+ZZa
zREK<qk`A=$o;+R1y|WxorH05?*NG(?Fds}vy7O6L&I(<HnUs9P$y+MF@1!mYuzhHy
zF#b>!{rd*<&)u6Qvii4|m$gz&0Kf`e^a7yZ)mg-6nGp4!uV`p!V0-lGg7xHb!u>Zi
zk;hNV+&mfVxRx-m*}QOMT!1&`=gpOzfC~|&tt~^jW=Snq9KBLRq&1cDoQl3I==CfY
zYSt9F4+yvv4U{^0W<(uE_bhR>hi_K2=$8Ad-n_P_U;r0z=j2pdj4Ap}fg)%+ox;Pl
zyz5{QdmVg|c5m)fAoD&|;Ur*1Zvs#o-;fkFK*h{FZK|4H{Rt!}rhq3Y1#mBXfU(Pv
zLe#Afg#B+uAfgeXy56SBRHoEQ-)EQglByFe0NDVZ{j(IkwrE5z{f6*(QdCuhz&DX~
z%j~syO`lb=*kxrTI??&`I(r5biy)VNPh5ZLUwv1QOJC3sImV>=7ssh*e6#3aw&<@T
zP=^q~%7aa1#H@eyRN{Ciq#J&nQZ;L!u!78OLAq%anvMXOc^8fHzU`Nt`FgnmlgGRU
zkDW=>XI7+?DhlN)Y^{s3SgZDF`}M9;%8A=IAtTPdA`TMFJl3j;7!Q+KIJh*1R)^ly
z7W1320$rve;IT)H4)#hD&~Bp(aszm#V<e>iF)Fnu?u24EV!khZnG~;l>kF&X{`O4W
z(gtjdt~;PAKLZ*<4Lw8}ZN+v47!N;=%zQie!t`VB_11sva=-Yhx)p^)vB^AE0Hzg8
z5H~@W%Fqvvkp-(H^^Gmfq^RX6)(cdeXbse|t~ExgMO2~mGxst!4_w82_c`c8AAI=m
zQQ(cyUawDP+91i^^*GU8xQ&QVwr6YJ9fG6ujT<*IJ_%*c`G5>A7xwrv;k~t>_(Ee^
zg`V>6Zjvf>ZqRFo*5^IdZXJ`kaqeNg%I%mi&^Q#Hz`Ru*&TbmrrsS@i;Al8D7hfE)
znIa+!;+dGVV#W4@$9pgz|59QM?9bu;jmxHp+zUBs8$+I6o(=meg@;4S&~KAVZ1i>B
z5=!^4CaAL{`9PGLYTLk@HEGnD;At)s%D~Od-Ak|4ng%H;dz@rKK2<E?t@Z~u{wavI
z_vON{Cn3;nPSg~Q`Ednxq&4c<`*Uye2)h5c=D+v~S1}eaLNz=H&+k-M2M#j2nx(v7
z0Q<%8AvC^)vT7fn6j6=UjTr4+O%@uyHRXN#J==|g0ip%Y4@9IE0w4OrH%K8R^2Wik
zTcOr!vd7n*isYV&Cq=ikTO68(^O>q-UpXtv1sjL1CH6F8GW6*8FqfGr<?84dGaNeg
z1MXLb!v)!uz^_7p%_1cbN1*P|0l95&&iDcSW+++mwln+2zy$QEy%i7>OBsMCk<Svp
zyHG}~p%4<==|e1^{ZHDj1=9V7W>MHd5o6N>u5b6)eL*kR3Ahj3n@QKBZLZp6h{ysw
z-_3q;D}%rtV84hD-{tg`OW$F?(3%*4R;4DQk~)Y4VILd#64@7zp00NYMO-li$wEO#
zywILN(s+Xp`=~zLrF<Bho1631oez2zITzj<zjwJI{y4@kRfE-LWn5z{T!L&4fDh)&
zk~S_M_n`TvnBMl>ZW-4|dR%oLnJ5|drV|=fBBWn1vw-ZTX?Jt+F~>WE^gC$-Dy+qr
zqy2Z^RnPU1@@Nbjz8C18Em{!*4))r{XQVIY7#!qI^CH#RJ-YU71fqFfDqnk`ocrj0
zwj+Oq>-oDlp5>SiIA*VP-Gx*%lRTIwjKHjo;PSi7A{gzQisytx<Y6q#d#5At=~eV$
zT3K~NA)8Ero$D=GL~0TBCma(<rOE+8_AM^j&<7$SX4AEZ+&}X@U_F`TH`p`GVTxAD
z7m(S5%=0Sr20eM%TKYB|0K@}wn~|%ndhQsq8;h`KVeFoN2p|Hdy;Rw>L1^_(ANnRU
zWtf)whTKrrMaE=Ms&}_pwYd}KokPU9kKy*6&Cs&u%xk%i$cM`+UGYMHoPCpJ&=S|W
zjt6;#y8Wr``==X}ODF!BqtqSXi>+SvHBng?XYc8}K=lgkegmfo*G3oov2)Pb&c?}^
z6qwH;m!WyRXmF~IGt)E5SU$3eoqnfdksb`-iR_C?k!8B-aF4l<g7*L9of93hA&~l{
z35zxdW-ZKjC>`E7+bGde7spB52Uo*YS9YbO1KRF5e-Zxhtm*_ZQH!+$+B4%3G1KZo
zyf58&CQ?Nw_$1cZI<oNmZDHgjZq@M{_6@LA`EbL?pPwSc)%(8YId@jv4`)e3KE~!C
za=6UpCjwD38?}=@YDs*hps{R@i{K$pv;7*xug_gR{L&RysdVB6F&qt)9`5Z8jU7(8
zDxudr2iY<GJ3z7yz;QDn1Umy<VpcGSpF(FapfG+H8*+!UqovHy2+md6V3#=g_DWSI
zPZ1Ba+ps5r^*cXzyGmzb!(l9(Ai8({b0uc&bZF-N-*wH2+J4+@eYPo<xEH%NsFxvd
zujS}q?C2{zIJa!xE^IH+dNC7^X|kRQ5bqow<TR-A^SaO1?seIrzoLHh#aXPzG))gR
ziq2^g)dc%{dD=w+ZXS}Cyw<pl=Zb25Z<qS5@UTXOsIJ?U|4?lvhoW)rI5W~t@te#1
z*#G|gD{#=j;rzOFSG2Dk499cew8TUCEEQuL-%<K)OdB(rj-*CUV4u-qGZrY7NiufS
zm#puq>~4@3n#es6cx_A^QqR3$=wntZI;b%j5IINk)Ko=`)&w2(u9J9KlbAr9K8ZUI
z5h|ynft<&xM*_@n+(`djyoSPE0Jl~$8Hu3qQha?qIHYjxxIcW(#t@Dt5P)I$1_WT@
z9|Yh*flON<02@+)@UX3buGbskcDozk21{B}vZ54%8QOO2Ni${Qz3vWL^TQL0@vT2y
zYI!*|jtTlsTVWzSIw0SezjF!wQS#?5#5;kIh|}mmkx;Ks&<X%xn8sSS?bgFglk_AZ
z9BtU8@tTn%Bplp6*FHi&g<x;oTSsjs&lg3ZT@KIEcwKvi<BDva<PbPW?0b1xroJZ`
z_{n(Af&R=q$UNWK5x;v6NtcfJ2mW_$V(Vysn%BfA^&;de>Xobs#$a1E8zO0y2yB?X
zIB8CSNmBaKECBwVcJ03WK5BBgE_*f{6r;0>F}$qwDBdrW*EfhqSaeAuQt28jfSN)-
zV~GGb*B(wvC5zxa>Hc@AvaHVxg5z9{;&sMNmIiR;{3nr~eB6aOfD>adHYkp+wwGij
zF%HAQjwI4L_0~G5X-mzOj(;4ju&+N?UgGoW8!3knM6MXY=PZ-cnTXwFq4j#yvYnsh
z1GOhLD1JW>;)k!*#JKt*yZQN6&Vwk)Dh_MhtKF=bA||Qr3FC=0adn2@d=>G6*Nb9d
zFu!Cs+n*C}zbtd}fou!H{&fodAz6|5hJ=IcZ-tWou-5+A-+uZkwiCkvWZ+2=oIQxX
z2~m*Epr0<K20eodwp^(uqe=mp)^7|KsP3W-F|mbSX-MgDmDI^pHX=-$K9w~YC7dxz
zreL|2tL`>??}3rpH|2I!!;Kfn03NDbO%$${L^6enr({hqlJV<~k82{akpR=~FGKEk
zPVo${g4nHW@!%9Fb(5&+SZr1_2=0AnATbMbA<4eX|Bxc*Ak<DAlnbtjhY85ve4;Em
z?|0-`@9t*5$AlTa{-@K95ODDb8Erv0Wg805At)Z)lmiICt^Exf$gcnzPA_Rmpx6?|
zT)zb3MvWXaslh6mj%4ab6DP!!<XfCyNGl*pWGCRtqk4>S*9l>wty`89`>OUg^inFu
z1hODBf}C(y1G{7c6*C7!d8*NkDCWULb1yrkR%{Ld0sGG6C1SNjKB+xR@1Gci_kj?I
zNZC=X?^kZpUdE#Z)y(=8s`1ZToYqS!dtlg6)wzCS8RRz6DzEyQvef;j14=RXF98S`
zsEdUl#o=xG9R&Omi`3*h2pHrIn;?NNYg8lBhItB-`EAkk4-l}W`G8Ic$`=vdS3q=*
z$xxK+1v5_CT3#7r@#*9$IVdL<U6sD)k<;&Qd?~vHssIdb6Wf%=uuN9Rcaq7*Py?Fu
z?J94Bn!aRNfJ0vPD@0-X-<&Uov$rm~=uT3l!?BjONy6XzX|ZPL*W_E@PbL4W^!WXM
ze!52@{}#)1HeIQJrdaVId(hlRLH9QfUFVw+cSKoDTU(d8P1K4*5_a+@H0oJSG_kM<
zxuC|ky2ee}Fe=Yn?hZd0D)Lo4R{A7O=(F0(6Dt9{T(a7$##t4ct8Z+1UZ!25CYzw0
z+deOIUl{M9Ov|-V(DN3ibMN_ke=LB{o8Y;JO_>npU>*4%g5*>Onf9dW7vZUb?(apN
zcwxMopY|-i?~h{SMjJTG9mI_*YT~k@gk%)!i;#ZE!$EilNyYZglH|Dx8>V7Tr7doM
zJ=}rQ)cHH?PNPWZccbcVWQ2!YXP--E)67bMuV@XU`&c*b?&<^uJNX_dI_plVN;pAf
zlI(e5@%eKwOb>}ib3w-rLfBne7t~fA4a5+Ly8Y~3A-lJ;ao);%vikR({c!u?0mia2
znNc@;){E$})-uVoH}|G~yer3`rcTMx{mG>BZ|}zMe@)g$D-DzUjp87+)PzbFFA207
zWf2696eyBB6S0jdhs<#t&{9%f$h67N2t*TOYHJ)ex-a`!sragljy=OIHSiqpxF`hK
z<!`xT5S)r)(a$EYCT#W&Z`X5!Gi-?$)$V?*7gy^3DwLST=-ibY65YCAR}=4GfL7<J
zw*2@^a=dRY5(zDP+6#}KdVzn=ToG(%=|BKm`c2-wsb>{k=1ULU*8mZW02n{2^t{yQ
z)=S67q;U_KugH?mil(lPPi5;657KkMkY5GYRAS6xDjJI64i1k)LVF{auyj+=aYxpp
zKNu2;!a*2g0q?Q;w`SVe`QJIg^$~r0^L++Gg&8sVh;dXLIKf(VUK&m|ckoJExz?Ij
z(zT-GV)X%mTC$n4Q+f3b{u~h$j<1!oZq;Xy>dinKj`OAE(tIQw?^PMEsG9yldJGLt
z+%pV+`BBkAPhPD(&pxaHU4kNvo3m7wlkujdx0k_ulON4(U#e(Fa%gE=b*1f$jD<_!
zdTGsXCT+u)#ID<EDStdA+KS0Y@vg42gsWrnEib%3V`#Q0e22ss*UM3<ryxi~b!qJ$
z=xC^ACfxAAqgRLssel89p4-G!vIN57MVfvjD%vLtG~ZU>L@#{_hrBLtP;p*8iNEYZ
zMfDW6$N?nA1W>{wY*ibzc-AtKf<bz#kBNlVrdrHN?mj)$(Ji#iJl*;+;aejYM|Fb6
zeYNSw1`fJ68s@(vgf-;14;EqLn|-am_V!-I=~Sb{;Jz`m8_FeSiF^B`m@x)UPYa(&
zP?wK+dwZ{lva700^1!x@NI<ZsH8WdR!zBH0PUjKh{}|SjX`Bqbb@u1>_V0`Q54XEB
z%}@-T!n$Gv{gWcK3OhxlPYAGEHv3H@dyv))GsL8oK2w62!o;T&eAs6&jK*@~<L;Rm
zmKu*Kar~APn0lL?$aJjqH!iLucqd(?2%x3$0^{RlAT##9dl(aI7JsTY-$1%(0l{j*
zVDM|IuGE|x!}u|zdLl@=jRd4Yy~lq>1<xB3@=fMD;$Mz{1AG&jMD-PVs8`@_&N;)5
zs^1t8t@#ag+kv&Y*m`%`3)F%>{nz9!2+}5tyt%`hbB7$8lPZY-eQZ0pFZ59=Uu5w7
znt`He;!~1O^+o%mycJallA=fMVE5}c#XbSa@YXU!(!2@BM~{)`Sq0^({sKnT7{B-7
zj-T|pPbOQnjeY3a4F^rFLDs)97if%r=2USA>d>ctGaaB<WJpHKhJ34;x^lr-sWXpE
zRIo4Wi4<_aNKiy1W9sAU5+_B*E0jpfJ@+cWpid$FPWyz!#1h6fF!gF9B(l3kW0e(Y
zG6~NtY)zr)jGuiAQ}4%|Ak9{NBI-gc>mf;z2&E?X()$JAHC&JYr@Idl9D)r0JQjhy
zSr@DI;Dc*ac_^2yS@w&M>Br;@*c~^!cjD0b?07)1DPk{N*XxW3hXFb~_v{4blSzos
zm|k?l;_;YQs9oj<xx(78VAJQ6%7n*i^;bq5g5J&SxI1QOZ%#kZ{0It+MY8gQ>OQD=
z3}V1FdLg~rF`j+Q!Tg?1TCH!;;!kT3ddRmgt9j|2_(}f$(`x*~3T=#dW^%O>0(OSu
zO~)#2F^@otj1dg>>YHHh0zJEbiKdVSRiaWw=k0aqWQw$=<X*V)aQ55_HDnp?qY!~G
z)E{B0P_D6=efgyE70v(*p_x=T=F_c~zj+{Geh{&o(*Dj%<UA3Jhph+tZGj>;Ob)8h
z4X^}Hqcg|?0y=X=Dt&L1g;I7@Qo27iJs-C9(zi4HwX)AI-mX+os~d2>n(4MOy#`ct
zeEn_6!FoDB@6bYfE+JJ5PDl49QWcO^LP0nypbe(><C^Iji{Fpg13yr7%UVP;^9iy;
zZtHl8(XI&mG^OQ3Yhe7VUL`msR5bwR-kT^&fXGo6pkwE4D~+JKA0u{r++Fuoq|}eg
zd*X2B1Ma8c{CG6!f)|V0nc4$Y{pxAPq-jM%H-iJESo=6qScw$fD%!FE9cgxBXrOSA
zEaMQAzRc|OZ54h|&D0`C4YHjXOH1{NEo>EH+KI?Eqj?-<t!6h%A#ZC?{p|RJfC-1n
z{ZFSI%rayi=yCx(aY=y`5{*=34RBo*O3ZYgTq7hTy!mcphql!HJ093e%_v00?0%;0
z1R>9}w<5PIKg-&b@NA{@K=gAfY^NX}&N$W~{g7J+&NbnP&=;9=mv-c&eU?cFJv$>i
zr4McI)4D;*Xj{%TFFn$Z`M_SwY^^$UBqI9#EL0j2s#IK+$ovTK%L{a-(4g1oXbxi@
z$scut;H$DZ&6?VUv+jPaw<f(;(miIWrIU*L1}mM94zZio<DlE0WSChufE!8ESS<Tn
z3%mPt+z@ofjKC4=9j!{2b+C6W3wn<qhTqZ1%@WDV7Of~~XEuxdzJa*F)NIXM0PnNJ
ztuw#><FC$xWQEV1ZaQ`*++X^5XJla)ObBJfa#fJ>VVyUuez;1&Ih*jt)rS`Z%Hw@|
zZee237&-YJ8{GMS1sh!A@14p(t?)KtodGN~e3K*A=0^wT@Ppkvp=ldlOEx<@%ck|=
zj6IT}1^p=Vo?uAUy7=4(_Y%7NyPbnAlA|k<cnP$b#kK2Uq7(H06&fsao4G1!JP^wZ
zvHep{!z=(56e-iwa9ZXR=H;1>J7Y(OeKOo4jx)?Lt~iF^Xl%_&(^6)GF`zW-WmMs#
zREd5Bg^n~Mk>EC8-a{L9b&^a77ssblkT7ywZcbw)3Hq+>1$42YUbL;Q)yG>6xVxS9
zY4u2oC2Wb=<i5AAo*AB1SrdPogbdi$6!G38@n(ClRftdI!ZBnJYWj;t(?w@_A4YTC
zwkbI}+#7;Zo)HqegI9oi(hE=j92-^b2k_BJ%{-mohI{UUoqV-O-w>eJhQ~7QVsUpv
z{2k`w5Wc_02A{+XQ~lwB`2ce^>IYPEKkXoY*h>Gk1G}u=Ko|=Bu(RtU`RgEL+nPVj
zahf=SjUo?n)G8fF>EeZA&!DB+BvecGa15|#un%!gMH}Y#GlZ&V-0#y+!jUy(wVa^f
z&9mF&sr`qBH(@y-uMH9LY91E-Q^c!8#U&d*;B+$dvy>jiNg6*Sa6l{u54XDG{5Eul
z<LvKY=vM%5`KFy!i5<7u7vZvRABk0y@4k(AoY`<T^99x&S=#utOGs!veLIi_?qGn~
z&&m$~-%YX~p=bS2#X}fR6S|wa?;_2-?6(h~QQecTe&baS&+ZKQ+HddReJe$$Pu+|=
zNTzO1sP2Ig!2D=D?9$;^I*dVlZ!34#ORXpwk@9LGf=Fr=Sr9CNCOs_0>-Ck1q{&L?
z;nwDPaaAy9)mlh|_tk*mZ1N5R`nlPcXK_V3$x9K?2haY>dyP%lm&Cx*THR@z;w1{i
ze#2}P9FFTUuZ5Q(ok@T-sti3Y1qz8a?%MebwTeM^x7sx?jtnO#@^uL|sb`8|Qi1br
zOGLMWpB6Pd2RHF<&8b1PnpT_#w`x?~N`sNOSz;D_|MQ?5J;Oe`yCFVt=Le{dua2N!
zl05%2DXq|7GSh+-_^P(E)JfXrb+twqQ`M=fpnXY`bMd7b{mI<I)9;%>vkS=RZA&@*
z3Xh=AHaR9APZr4mJ04r}TGgyq1A}63;khldx(|B$MqA~Ui)hNcdwG$wmamK#oBhax
zr;9Swa|Gv4jC}cs8Vl2T8H(QNHFyM;aI2BoZMppwL;g}-)sq*5pFN|o-cF(+-C;c_
z8(~MOXcep+g5=fs{aOK*queDRpit}Mj6ip2AvlFe>}kQw;rqQ7)5wVpbmj~Z>JT-%
z6okzmm(i0&lTLLmlP08NF<9B;X^rQKm6MW-Hz@SmVK5o<xC+Uogtpu$?zZIG(DSXV
z|6mC_9=-yWFwYv4IsYeE!m<-m|IQM|{+%TZjJAGR^7r*P(U@56TWPi(^D~iDh+r4}
zx70hbHb--JA0QkLjQ!aHrR~u7+S^A9Bc~m3dj{*jy}4lbW|Z@ctJKLlvz*vIFD>~6
zcP#>eK&|&L(D6T<nkjgDweQ72YL*tmGqgC@b>C;}qpM3tADEjTur-+EmKjv7JsqHi
z3Ea+-So4Fa+kVa*@wy+Y4%yr+aX)Q?2k??=*K4oM4S?(q${J3$us7HcHhAj%tN+U<
zi6ea0(e{3yK3OJ}EER<<8cZd{MqB%Fev(q0z1UyrsO+kgr1*z>VXO^C@ynO{%i+DE
zSji>U;`6d8Qi-3>%iZ%+bFS(V9&Ml@>QNR5L!oPR2p@c-BFa!D|Av6|c*t&<j&kj-
zWC-fMBYXDjrjB7glX$CRi&XlygNNeY9%q<>l+@jUvv>T66P8=|k5$oxP|1!ijON_#
zvQqLNDbz_VVi9j8)+<uJGPqTGX3w`@UqjPmD@#{OBoO_;nGN?Ew)TolEJicfy>DKS
zkgG?I5o7fTRf>8gmI}KY+(^2ZkO1^r^2r?*3c&2?R&}o#fJDDF-_vO;P#s=I^Zw2n
z`KjPXgP)4{#$56jVW04Jt-l&XBbyou{keWwbd4Qo_>s$s&M_T4K%iLhbh79dq$S=|
zc2Shxn+%HJ`7&)8Yb1y4)qT-Scc~e#hfC$@ipMu=p$9j$6r?Rez3>QP8<%u&y>zQ=
zGv0(a!S*qx_P!J|uHwbopt`Yop^>6=rGsrAlvrYY#l6(q)KYx<T$|#=zrTA=2|PBp
zCLi6#t`4M|rQ5uFOd6k&?nm#RN(SvDBVMZCtJWVk9Oz~Kc5&r2eaaBMO#_O)#2PIW
zz2jy0tIUhlxW4#V$C6g$!oY1Uj3&-t(-oN6*=?kHbA--jGC)}NVs3gXc2TI~;AS>q
z^r6G1ex9D51=iK;3Ct{i3i#yv4UbCyxLC^Jf~b3UpvlkU?O%*q;mJj!f*sAujB|_@
z3zIAg@SmD+o0(IH$TI~EMH<LwZktinh`tU}`19ZQ7Dw2Ud<(BMx=Zs9EA>zBsBoMU
z4y`Vft%~q*c6v0FW!|iMcF3=4Lh0p*2CO8ep}to3`NPn0^*WZHJ`4Z4^zZ_3wOm-3
z81X(o^vnD^FU_CN1y3D|xy;(+=G)|}Z<JEw2J*DE(YAEOc9#})N0ygE3%csvbvtoN
z8HoOz!R7MhYyyR;{KDUZ4x_)R&dhk+vdXX|t`rjDydlxKS?Bw&<HR4&vShYsDfXKS
z_eV$n@VWo#wf=QQ^N(-FrFH2BQL&a~^<}z0ziNN?k*+;_b}Z?OV&2~ZH~;y|g16l(
ziq9~IQw#IbA7AjV7R0X#+5k$vW73_;1HX{A|IOD_hrFcETVduO{y$vVAHU<8IN1#Y
zdo7{Ad=S1XNF^OmkKcd!zr6f_8~&xxPJgug=HRCm)K5~BUw&5q?LYW#Vhf)S(lSfF
z{3B!K-@fJV{q>sivvXn%_<GKN`3nEr<KdFK<ZD@^qgExL3oAvoC-Cm4RpKFl<Xw0q
za#;RV3-jNWO6;Yx2}wYtj(`7E;{WB3{@Wvwg`w>PxTL`5{;|R$JG?auu_TqvLnV8u
zB0v>%i7^YRxzP3e)tdYp{}DjxAG~l*49?$dc6foGmtVPtsqjhj&ypVe4-X0h5Jrpy
z%Cxn{ToxGXqv4g~a#^96!P0(Po%s%G?*rHW^uc#mBx40h5A}ikN`Px9`rU7OIyC1F
z68-+SwIJh?|Hy(a?O7~b-u{uYtw-w=#aJj=)QL2fEFORda41CC{!f?sf(JhtQ0gdN
z%;m^i*6`Kb*jt~~US)pLFh+`^MY*N3WF6uK^6c(4{o-cw<Kz9sj}JM3ERB>c(mLB!
zt6?)HJt|2}YSomFSRW~CUR{o1D=W-s`ydr3Mj@T!bX~gg0jG4Fg>9bG(!D&VL-w$_
zulcd}8qAUe_soq8WV=2_jBv6|=iiU+?c-Xx^F}EyL6Lb)J5PIZm8;+%3SMY)iNQ6X
z`vBD}a`1^4ye}@!io{79bSJ+i1b6{Jy6n1#K9*^LU8NcE?jj^aq`B+S!v46o`7*##
zlK_xnb%4a%gDGyy!&1?MFCPsB3f{st+YD<!H-;JZqz=Ro?3PF>h-fZaYko`oNssjn
zTiE7Ql7<zzrE-`Lx|D|hd|R?)e638+mTPxgcI(X_B+FlHOeOdbl2KUlHCS0Jj7g^%
zs>NoQX~pO$+da#Hu22%pP$_TRn0%PdX|=$J;2RJVCrD>RgNJg_T<)FeKIl82WVg3w
z)HOS6-yGnH<-V9?@pV_XN_6Zjie7d-_+3&^i|jG!C}&kYLlO&Hs!;u~oyV)M)a*UO
zlZU^kCrRbSi-XLtCB2Vcq}xQF;P^>&mul*Fky@az`VeXlkX<%nn}qXt&E`Oc9AE?W
z2(I+8E-<tjlv*ts7Lh=acze0rJEqKvAMLONN@{Tc0C-m&nXsQYjmZKRmldW^tjv0?
zEJ)Uovd-8;&?Jeuu^)kaLhYC|h=`i+Uyph;KMMV0-G%@P%^_wtJ~_08O3d6jq1@od
zjN1t1Es$Py5QdkHxWUILovY+CRTTAiqte@g4t}gZ+{-S{Pcx#hWRLTsU!u_$IOuF5
zeeyMiUjHDG_pd&L{+!3TFN{DiQ#|%pa~fDzOz&S}waLhbg$91*BgD4bS~4bm(wuUm
zm;3^|%ldkS_|Cf{#leMUz4Gxy?y|xN2(!6KOmI|e9YOU@WVx&T6hq3cE7oZulqf|h
z-M)p#Z8F?ynYT4HNoINRMpMc6mfvh*^TleQFI2%>3@(tH*7V%9ZFQl<XN|M<9)5P7
z+S%&?J)AUX0WNP5FUTi~1l78R04>)565b7`TBGJ!v&f9}QmPm3oo0kS?}x+8M9gxy
z_`0iK8r0N3-+T&)yunH6Tlv_|yj>w1waHiS9{lu5e#L>-knQrr&nFQ9U<3fJDcAS3
zOJPQyJOHxE&sKs>KQ5KKAend-84Vh*qyYQ;fxEY$(|Kgv@?UPr7x>5&(TMIJAj&m6
zGLCSmx3I5Dq+?hpRXJ7cfJ@!SH6-vgf7pfYDZrm;Lf-l7$rJS*3vW2i+#}Ck7^=UE
z<+j8$TV@^pmDd-2=o$rUOJK%mE&WigVQ|>a=UGa}wxw*2j#d_qZ)(bx^K%2bleMIA
zBXkcptc(;)diU9CWQ@B;Sa_Z$haJj<NE}&zO%VsEx=Sr}toQw0XVdJNqc#eW!0cBW
zd=88n278-}HR5KhN5CB<Mt$yvDh6pHml%=<`v6V+BG;80(!B|y3>Dp{zH5e+zTlyx
z%a|<ZWa5n^YjOd8ZQ231yNcO+;-50W4p6v*<i>D6n}zC?1zdWCiY#X}8h50dU&-fY
zxkdWDAadvDYl{a;$lJ~7XHH2Fwh(kIsdlBNL+D>yIN4b=1J846B6p4^OEH)j>w?~V
z{EOQq6(d?BSL`@Ui&GXxD~14s@jk+@y8{T;y)e@mkOfb12oe-uZWu4*$A+}EspT^x
zQxtOIZUa!U8K#cq8)9Vs!Y)zDy`cgzIwuKGThd7)+NK?)ygZ*QSERyH#l`DRMHwqQ
zAML*A(`BNRd%5}USW>>3tawmxeFW><$ylg<zTqIjWZr5uam^mPN2QHWwwu5i?qd4I
z5L=z-j>-Vpb$d@QC!w?W++Be^u^mV<y8HpCa@Ud$aKQ4hri=6S>*6!ds}%kV^RdDc
zPZ@u#Lx_XAPsZAH5&y?${a0TJh>e3qeA6`u`IsQU@jOt}82PP&T4Sph>12=QQwCD-
z^NVFhKK)2&5@3CDRh}%+r6GufIJmSSbS&)!+Dnz4y&~(8M^dBg^wE#3mOp*EAXU)g
zd4J$KC;u^*&lJFUJRd=FFAR50DKI4mCW3-t{;Qp8R>#E#HgX;{1VBpn+LUeA;aTT)
zDK#cW>iO4Byi#(hHUtGJg#~`_hb@Fa4umk(d{D|iKu{iepY9D7!qY4SB~l?(vYI0Q
z+UJx-PC)nMxe1ny-RpVPXL%vT8DY~OHo6j}bZ4p#anOW5bi=r(jC3QNG4l<&J{EhY
zb(j!m*>NlfrBDU0@njv0g4`!v&m?Pdc>T7TTK<nak;FD?bF_qRzrGgxSJ&~!#aBc}
z5^rG&-serkO4Gz)B7od=Jugx$EP%YC85wQREFZueF2_Z}&LbOQqejgrF9_%Jebp5T
zo6^&btY=o|88TAi8R=dcZtCV-oyt~aU)s#>5Y=fQzzVIR<R&fTDGPH{(mBa!tX$T<
zfUe^pVt7_H4KZ1yK6eeFVY^)m0{QUub?*C%Xy7Y!iKBi3Yb_kq={$7p!pFI_KYHJU
zHCIJ-;j<4r6H~h*WVKC!>~|%L4ThPFKqq*4-Vhvi-+GP5Do41E_SZJ8F-<jbaRyL~
z(BJH)^0-^o6zQ<qP*?zwU^U$UJWAJD?8DnIhRxK<3XB#eIRl`LV<%bs0P}yNQj1xw
z{Tivp<~+~`F@s<Vi2@vw0lJSEP_y5Ma|7bpM~$XYZl_a}!FC?c#tdu;5%3PXJM}KJ
z4i`KQfoa5;@z9~S%r1AUPQ46y_#rG%WBXM^ty^Bm`gT0_ac0R!DvkH*-D5CE7@RRb
z9}MmCp=eU1yI93MYSwgvZ73-XZk`-_C2b(6+6NIP8^=497Y}<R{r3=AAQDAbbicpM
zl@}zTk3j5pxlm<@+N~Ffge_EIMvf7PQlq8S65IuYwqZMNCV@9(V(P%%TMluat8DAy
z*VZ^7{Q$#TjRpz%9(ZUORWga(WPF?$tdUH$oABK1l8(_kS|KVTMQBW=5p6nw0+6@>
z?;KG$hh-|<d|uYhl@dn9KpQ>n_Gb_B1<T|b?0pxP)OQ?3BUTaTg*yv?tozQ6uxB{O
zpu|^vp2K?SvK3ES1!$7{9pFS}Qlz<DGF$YRuO^6t7k6c<a#BAka}uG_x|}#o6m|D7
zAcCi99B?!&K918x!9YosE;Jyia(Xbs9QR{+<32nNEswS~ZhD~%hGd`}vgdeTxfnvy
zC7gM3T>w5nNuwdVDy#vod@R;P)J5FbBg{H*BYyn+pL|t<zYPjQ?<;&hls5M{4Ms`}
ziV(eqZC8ya96kF5>=?5^dQj8TOzwZd1y?;dF)+}ZuS{kvSC~`$Mh^R3p@fY?9RnSj
zh+NjqyjO*E5p(K6`LiuePC0ub;<Uyz-Mowjdpb}pOIV<MZ%<t!X1UNDkU;i@*rd4T
z6y>(xC@IyX^SHVtZt*HaYZ9Vv&RZXImfS-(l=K&&6L5J*gFbo|zsUKhayVB*m3>)#
z8B1gJ^vRM^#R}RdUwDsp{ANKZuCNj?_c$v0t}V!`D!j!G9R&@$s?-Qy<EF<yyK?l@
zfODY8c&K-2C`R(SLR%FU!I#g$2KJ7pYQ`xt<j1{SC2?`_=`y3d@Myy!a)g%7=Duam
zD7hb(mRln3$w@4=PCM@F<{;Dy7aq7xE1UXA(EE~ROuVG3bBER76gchH7z(?VRAk0*
zFL%cByNR_OQEeZ>(emv4LprrEtKBxVBGZ;#Uf!1aJ&u)S(L(e=vzV8g(+ucpQjGEm
z>0%(JU#D2s=wKE@U&4Shmm1vBjbp{-Ob!oqdKjEZjw(mY3P5CHN~|&+T!Mg>kKxUh
zg8}1y=3a*R4h(4W6hFJh0BG6e`L1um^s$4w4TfHxy%Qt{izTz^3&VD!KMp)zg~td(
zy*8(bx8l2eUP8madI83an(88~9JR0yH$OkS91iMcuFp=(mG&Mfz++G?vY2Jsqu^DL
zRF@F+vHPgJUq^uRUho<$kNhI~GEa~x*NlF6VwpQ+vN2cHGF)Qb4A!X@SdGJ!Rv$cJ
zGT0aqb90j29;ZfmrR{m;m-ED%{?j=oBX(U?&PN&r**m}8U1EX?p`ZyGvR8IpZT0%?
z*v-Lt_o6cUimo2(XMq?V`BK?U(KXgSmBkj`oiEaY<SyHya4%U9XDit=t)BhZ{kiT{
z%gO{+1YnKqB9b4@Dbwj}E)2Zw5PIQm97lYNK-EH0Kf&LPd8E4YlK{^32j?7bUYYh`
z`aITeI;oy%uwi+)kJA0<t=<B(B^{yTPc8SSLxK@cm2REa%4`1oa=kX%g)@}lav+M3
zH+E*4+J+kAm!}%9)N0@+;dZ^9b-6DO6P0C3=88QbEK{%%29tyTz#nzygQ7;=myqUg
zMbejOew(b~WxOWJ>YF|9br)k|24_i#<pnG1b6J&bE!hungumPn?);FHNO)XqP<3bU
zbg0iO=3I|!23rfKpve~d4DA?hIkRT%Nf0-Wg`(rpT;dLStEajC><|$a-Xwo`%?sxE
z!x*KuuoK;FyHc(d<0s)C7#-5S#?W{euR)-*;F*-JTGq>RdcxV4ylfHoS^Op*U3@i0
z5GcRfd8*<KxZ5VYm@sEc-YB?+<Y)K_)tsj>yc-sa2(!%r1s4uJ(|#7HMNbh^YlylK
zAU2dX4XQkErtV}17-jdWbRBx%LV&^qk#S-nyQ<=C?fNl|X7SarV0`J1W!5o~l8jY^
z+R><&5@kPQ^Ck8(R;N@<kV`!(jtZv-5$X>#--hUo^z&cZIeKP6AvCiSfLD0_h?l-v
zppD-Vj0u}z*HO__<KiwP;c}9NmvvmE$XXC4mUzBO{SgRJ4Lb3oa3GCf9nE{4GokQ}
zr>}f{#`s0!q9+rz9&PF=ZRj#m!N8kFPv9MYcEY<=Xi@zj;B^x|en!Z=cKWhsF{TQs
zMdYr7Gh~yj0iSKC?Eztxj4v`{EKe}#>Cj7C6LS%5lt{9U;$4+PXw!I6%us=CwQ}lQ
zMuZ6&@jNF`a{}l#dBpYKNLAT6)W>Y6Nf7?=K%0!Br$yyF^Ae<|R#XntTehAD6{q}x
zoc(v$^vrZKNTUpxBdOy7HXVk*rY(D9t;S5M4!898()G@4<nh%+K?DX1oNIDpqR@Ck
z;OH2!?(Dp}?Djix8V-KH`6sCpZM>pExkR2UwdU<{+IeMBsUKF^ygt{{<&;th{!ONl
zb%_f;CWp!084=i@aEIRwKDE5svzCQnG9QCg7&Bs})K~nJ+@5?K_KhNSwVq&C7Yprb
zpFqGcM%_)RnYUF>8a`a7XdB6IXBzp^m_jA-X`=yUDKMC%R#CCxI-e#pQ2+Sue5zaq
zk(|ImPfPUpC&JVOZK(@`aQ@O<s&Y>5@FBx<oB%i^M%=bgSkQi=ctr2!l!RQofj()e
zVl2a<+v%~Xkz3}*+s4C8TbY#&^B~_YARidEn?IHZm42BLdjwQv6RCr^<8a`3$)0s~
z<WW0;sWs-~?l^$ov87`&|2P}|=U2~861^1Ev(^D7j0sa$8E^4@XJ=1V2^wiPIzF-x
zG<z!(wxQl;c4`U{`x^`W+0FE8`1fv0<~mqrO$Fms*>^QW_Lmw47nKFz8QOJ;AvfI;
zJc$c#rxGmNgp*0QAFlvTdvN+J?r?04rYdDZ`er=YiLJ;_fJ!p@h%dhdAKD@po<_|0
z&bN0@uOWKZo`Fi*G(WWtd{oX%fo=<tDGo`5E0e1L|3%OnV$iofJ$#PyU}cVq+!teA
z62hURlS08{Fno%pIMxr=QGfLrg7pL+=r<UI*q(Q%Tp#vAqr}Bc9Lqzb6d7_7zD#<C
z<4Sla#o}X>Tbu)}QJjk$+*_M_%V9^ntQytFh@0a@(AU4|jqk%VUsz*7Xq=8okj|0$
zZBvJM;~>78r9!5g0Yy8@Y}FP8XVB|xI3Yv#=6mGN@27>h2CJ-iM;mmM#K-YPre%$C
z>gS+YAf(MKQgq!0!(#@Hr_iI#7U!%x5NjB5pyKh3%zN`+=jvCZljo~9_+!3-)|3E$
zJ;^dxUL)9x=Lo3!{qqWI9M=KJrn+ZK>v7+a>u`IrVyq1>J9%D32fW2oUbLAjmqA5o
za>8EF?+VE`McOjS$ismg?Ux7pBL#3gQ`y_09T#s?M#UWOYI{?@uH0rdt2C6W^Qr)G
zkZ@l-D8Iz(<S=7f%)U@EcXWuu)vd6bKG|uxj5R95m)L5L{!^bd1@)Rw9Rtfl>R&8?
z-1Rz1h7qbKU7#mx&M6y|8!DD(8T!&sh1U#zSRDjFxQt<Ab?t`o5^-tH1!bazg+b9N
z4%El>#j-8Y%ubcPCb+Fn#<0RZhc#l<c&Sd1)&gh#Ye@Zzo(4ZcpYXS@UG{54cRMpR
zNGr<X7%BiR<$Z55`0LjSSRR{6QgSt-hlN2Ub0E7qGav8l_@E0t)PB9Af_-V!af^Gh
zQsc35A}gj-PUT!G?fX_upGTif48P{{_WqYq8sE2z?a9lT#V;{N%8y23?vs_d%<m5|
z`tb1+tej?C94uv1FD=vSvwBmh7cyequu6#KFfA(7PYt6w!s96OZMTqN7i#lYw2gFu
z(%<xMN<Di{e5ud)oe?*>TnFvoI7N{$zr8g-(_9}|_i%f;GrFovIUZEhO9eW9B;0We
zQ6WY@Y3A~X=nQ*r+&CT{$`~F{g%e30Vb{oHG8drX;2|jg(mP**>s;LryYsS~?J~Nc
zq-3lQuYVdyE!9X+Zm3tjiY~%5MC0-`4_`MTJVMk+@di5P)37q!TS49dGxL0XiAP&T
z)?yqysHzmIcJa0|yRV{ONga!zrRNNr3OX+=U<qWqBr)H{WB9Yo1;lmVNKt91D)ku$
z#D=k`X0cRkuFz#WTjW~++RIHl>FVI40h&dzzObg=r0JGij%BS`^UEpvKYabMXV4R7
zLxx?Ya2*olvx~{DZMjRui|K!O{#nK%FCI+bg7Ms65@!To4N6Rf>A$LsTwkyiP_Xp5
z^R|Paa%W1Jn98h?`dz3m$=2wH0odG{0UT{8bmi<2qc1a2&_qGsM**V_pY4kViBgKZ
zyEEEWJx+TCOhl3b2bOit%yX|8D8s=e+2xBLzu|M2e36<_kbEYYYA@i3$Zn&jkIAv5
z0PoGdA8(VtRR+UraM0Cm-l-8lX9VM8VpQJ@Khd{oI5FjrtDYm-eWto}2whZjpCjFt
zyIAKjnlcl+Ycpp~JsZ2LZpIqW0)-Yn(b<Ib+Y`@m?q*F^aByU0l}ydGdvKAf;%F{|
z${5pUzoU;{y1JA4odxsD%Vr)$6@n`rq-d5W_;tFIJKoBCWFIg%Fo)7OOxdL2Onc|1
zNW`Mopwn7Q(J<Zef9~WzCRBW(&#s_Z@{19DQy~u)0wICSH+<UpV<?w6GKt*%QE#EL
z!iAQF*9+Q1dFE-<lBIFflA5N1$&a>NU@phkf$b5PA|zB~^G$1+EKN3TN?eci?J@iV
zwb(JNK+pSxw(HIAu0esb!eJs_B9an5O*7`8Z4X0wzG9$uy7D+-JYe`rk<+vx5Xf7e
zQ%G}T#Z4>9<f12kGE^UI)k%|#ZAy6;O_Y;L9NDMihc36ui#4hKZk!emwL-;5qX0(8
zuQyh=Dxee_HPb<P$*^3?_KL0;fNnE6&-Em|XIJqy1cvsu2vgL`gDG}7+6!<~EFhIk
zIeoHaZp|_XC<9ZJi_C)I9cyBCn>VB+Uu1&tPEZLiL<gO!v+b2ehuP7Z$sr#LyYL;Z
z-HgYG=}B-*(_(4fu8Y|-Q$O3tc|0z7I;ky_`=?ss0<v@o#GI@7v+v|i<)N#2<vXL8
zs8!R{>Jn9)4=mZnAFa>aoPrwoQ;#O8^>Eeq;}}8*VAgHUlPr4r+4K5yod!w#n8O3p
zZ-Q6DSRV&>JO*k0+heZ}Dy$F>&GS=?v#+d8&`NR36UXs_8s5C??*q-YPF0{mn2E%;
zn^v^LDz$k%386tsfg1ZGuxRVC)QU#1WfXkEPpptNoN<-F1nEz<iTCB5=j>VDccF<<
z)uQ%A@R~tyddh)Wx+Q-XD5dG?o*4}08-!IRr#{tDH&YK~&5F4(=trD*m)r(1GV21a
zWC~yma(K$F<m<&>?c|A<@}wFcqc{>15?;85ZjO4-bbeKTYw_`@Ai_WfFHy)kewhW*
zDNnsKcus^8*>UdW-Wqn^FViCWFIB^ZGdS&cONja(2w?G)Vt2f!ao1hX&Y(5<;K<&_
ziRLa#ma)L2)@Qxkygig!MCOT8W^Gh>Tnviu>rb;5U`K(fqcMn<{7Sehn$``ZFG0v=
z6zUialb06V>t=1dbl_bshbG4qoH%_72GHb>GKxmg&+89&V0x#uQn$~5VX%M!Wk`L(
zHyWh~_UvXy`Pddn>Jo>+Q@KWBD6wa@i}SeF`Si3J&pg_>m$@S+{eBCsd7JlGeLf$H
zATnVmayNm4$otmzIX^VfTn_cg0rf@R@PJSA)hMr>y|>d&Up{-GJza0iq!JDH;&Fr6
zi=o+cs3=yUh%BrzK>u=I=B%!|*`DY6z{j+)QWLyqGrU+MPVu&WiESPELL|ReTrQt!
z{pXxxd8;n13$TaUHlV1ehXRt^2t!;q*3y<62A83Z9ZbIuv)5cgeXWsYumEbig|L|n
zKjJyucD`vm3W=84yMA1&9&po8{{{{VB2;y89K+V`McGSU7`aa!Ws@l6arZwTX-mTy
zOAMO3##W^ALd&oyy`9<A-$6nd>Bz(5PY&De#B{;EnxJ%Px4#d35n<DZR`XUO3dD$`
z_4|W&2$8<@QA;4U1%$)8e1nx8RPLJds@Va`mzt+6z6LpZ3+4<!Z&Ed=-GjoJf~B~1
z2pe%d{@A?!_?3h{3I>3a8x_!}8MSy)%Nt&Kn0b#smg>yHXk`bd_eF{(+pdOaDoL72
z{z>j3b_)Bx1%!$6NlpWPE=kDmir{e`qLp5Cpcm+!khubWlWaZKeM|JN_3;|F764?L
z1lEWszEtUmEkRPy06op6eWG}HReuyufyHV;!5ng?>}y1czR0!ZQI*Nc4fw?w4C%<3
zS@x(Ug!Ina<kJ(@9eJxI9O{Q*-095Eb-`Z`AnkLBW;UyHbb8GtE5t8RGv8&btTGCm
zdN8a^K^N{UhFWI{Ws$Jr2d`J>>ml_1pBKQN7tP)|zAffpsN$5{Yn7FN`2Y+xbX|i^
zho=ny-*o^;j7Q0A67k*R*DL76^TR?*t+)qOY$n_{Um-q>K!Xn#rXzdGcx7`<@b`D;
zy**?%5})*>_PkwSw_LDuJl^?<7Faxf3cOhumhWMf(CXXYytnLpq3isqL{%$+`eZSl
z!?@T`s64xy#^axnvD3Vq1NZ=ASMv44#k`1K@vurqQxAnYQenKDJNOug|D*lPt<!do
zA@6Ox-6tlbr8BXq8QdL&jh{ChgJa^0B)xG!(~2=vt6HRqaTM0ElfEFF$znX%tXpfg
zHc&xoF4mXb!+U^xr9J=2#GN%TQrS{BgT9uq^tF|8KN}RV=OXl=?*C=;0k-9Bx7Yh8
z5>fLzZV~J37tqlJ_%-U2s><I}VK+J@hzajVN{I#+l#P@a$T}@VJ0kM50dymPymBGH
zW!X{-gZSgFz~VPrwmqX`#`Vt;ORn)d#`JDxvZdP>4wkwq?5)j#U<@5Q13pz9DJiQE
z{U!+A(;HqBMvs+v=8l%Iud~1XE$NOs`k{cN_+HEoH0RX4(Xv;|sLTUe2}t}#E!A*?
z0-ERf+ALtW+H$J0;bDzAsly7tOyKT0#NiyX1x2D#@Q}VL%Rq=l%Y46E-4U1K6IGL`
zwZUbPAesR>!@;8H#qar;$XISrwqwl^_BT@nUD`5N=btW+us>hwo(>ED;&gv{F2n3s
zugV2oyg*!)E9V@{jB$ImV8rO|8hV9Iq~@|QCFKZR@l4#SW>7*mpTOd}WWEwWXPH-n
z=lHrQlTIn0%E&T`gRn+S6JwG^y28%Ve0TPpkb_Q<I!ZRm=CkK!VqkL{59dcJk555h
zczCW8&}o*4y`^{f&3T|ZMB69)%@CZ|qd2X7w;Nl0E^SOg>x2>g%QphY2^s&_XoE<f
zTg_&|miQK4ONfaxr=qxgX8FVZR6=GajEJqalcpRc7A=Py;k_Y_TZ&Pz-gLiws(&xV
z+jIye-#HWf)UD?o9P<0VyYD9;|8SV*=lk`4j6GdE&_MRT8H^ZCG@T!s(a!Z|JXR_+
zGSCaU$>&@jPbPtT(#k|_kwmb;Otxb7(SwA9B*F@r{o}F?3n%uF==L}~P^Xsdz`RNf
zMhCUg_MOl21TvaqczIdQtZ1`o+$U6#0lTC2`sIfS7n?m2IFQ(M`Hj~?R~m53WinMt
zl3hdA>BO>=AHo)!_sX2}$&>6Bn`Q>Z+z)K=dcIe~K4_EPF2HV}eP^tt7~?%(eH1AH
zMmw$9X!bKjt$pdPp|~EQvfuRTKnx@K!4OOozQtS&7$f5oC9_)~f?r;=16KIvw9JaF
zBubgGbcT@e=gRG(u=qN`o5;|E8qrkZb5iIgq$;GtJPK9GEk`@kM$8U27W`rmA9auF
zV7^Xmr4txs=5=phOR01SpBun)#NG&zN)*}E!}yS2Nu}oSO<<EEUW2i7``eLEf16%3
zAzm>0knHZ)kd#pZl_I*TF}!l-C*x$CyW(;&VU?F?o`{4cuA|tq>YSsKGZqf{Amyev
zdt|4Jb5DNeh0k94gWHM9NfD}mZn6B(b}xQSEOI-sikkBV0g7Gnr^WrB?`q`9b&Z(4
zz3@}d%Rr{iWXuFLJf~ra9K1!`U3U0n5(+4*9kkF!IaBN%#yeO(@+MaKDNfa4l&m+_
z?xs-CcC!><l{N=vyvF`Q&?}5Nlxi|yXiu8dB7Q2Ve4z?ax7d}Li+xQJqG9D%=nF%r
zfAl3^F0OqfHtp|&Ax7lcM*xl(Wg-}#yg~H{2btG$w?Z`4qehYVv7p1lJ=0~6{Wedk
z?4cmwkQPIl<x#m3gg;b#HTevWVetlgY$T6ymm~wuyJ2(b3OTj(NVe{I8VtGiH7bV6
z?YJ;tFm&9cj4!TnvRr6%#Ys5_3F4dg54<c?UKe`mDn3x_$j459quy5oH@OzjqZnDk
zIZ&bt8rm9tVgSu+Q8um6xdAI_E~9UJf@b#|;z^0%ZdN7?Z)etllBUG@HG77hZ(xV0
zz>rYs=Eh~Yp44yW_j{ezI!%uXrkn*^N&4Yb@%XB$n~9^^=t$e~jS2s|n4bNCrxNAH
zr{OdoKD*{od>rFP?;X8@FZ?K^d;eB=`6)63`;fR>yt^@^dy&96g_Bxw$<CA$8_pXf
zmyY+jB^*$k!;rB(mH#AE@r}~Yd`uXNB`@rU8P!^Cw~56IPOzhZvr+upg%lID5HMP{
z?(ds_BzUi(4AXM?Cz8HvyPXz*6({t;#Yq8UYLCPAgpi;MOXdv5A(+Fy>Y8t4vgLBT
z1iKbVj|bCht8|8JbgM4b%nts;jVxz(6B8Cj7*JuRWnw>}uiXB8+3oauHZR7!r;{(*
z33il5!$Cx2qaIt~ek7J}QlZ`-S9LVX>8jlCWdwb6+ukIW*3?F*!$~=&-oF>j*qMqj
z^=2~q@9S3oByt#O9~-=qFT1gY@8iS+r;YfU0l>#|ObXKWjp^jtU0@AAkT~t)N||lB
zaXCx$>wF=5nqK*0OPQw<2?N_k8D?(Y9t-bav+bTzQKRky!>%=L={Ol%X@>muqMP+$
z#*Yc?=JSSnWogulq9Ry^4o8PbO*PqY8ixZz4%oSkpQm(RBj@}S_i%|NEy=e@*EIbO
zv`r~v&oM%4G?RM)#u<aB=p10rXA2cNj@PH|Tp_f&ITYsXWJilp^E{eUip+=UDmOT7
zrr>s0*hV$0_y)|uVX&?D$G4kvfWUvn_ft$mE*##bz<Y6%C_#>&%TT%tY20o=IZPxC
zDKPDP1voy@Z*C)#)UllMQzvljHs7PXh9UApuyybq#ziT)>pGsD8s&)hxIT7sL#+L9
zZ`rh!_sC({_A>X&An&W3s8=$nG7T)4sDAwmraFtA%y;3~!Om^BzTz4jIIGtYC-8J$
z?txm#fTWY^>D`JwcLFs==pg5}-9xg2reI=_p9Lev2n4is>OEDl_*Z!CtC$blE|NH|
zcWgTJ-rk2@KO7045afT^SZoLEmPhE_YiyX}Vi2$s(Ni#5WU9V~L{90w0hJZe&E$q5
zGAta9(c#TKX!V{w|IEpAqzo<HqQVgll$*O9JIRv|?sZIm$@NWfRDHRN$qFI5?Q2fF
z#3;VGFgC|AGsU#PkxiJa-M?q8kMsKpDE8RdM_-f~_(&RQ{NG!GQ!-Oc(m96HI`h2N
z+}P2S7{A!=)uaxxb@w9}r?Z&IydDmpX^O(o=nN@?x;PZpc-RTde%|%O!(&4WKoxA}
zToz+2FkC#Z(cuNkFWa&n0v!3=#_h>U|6;qEzygz!Q3AkFL7kZ{K>pMLx+I&T?FR2G
zi<S-VvfnU6cj!!}Jv>G^^1=V1nipC;Y%Dn*;^(e#eHy*xS<KYvZq^s_bjw|3vrom`
zvj5Dry~U8H(o~I<<Z{Xdh6R%C0kj;v!)M4$!t6~)9Zb1zn8y>8ZY-(t>i`L<GKw2q
z-(sMg8%b^V$=VpTNH}Yp#!zwiTJEE-BZZV~@P8E%W1}EPSbhzbN(9)x2CArMHFdVC
zbDd9c>%Xhwm%KnlgT~38m3v%BCzXZi>;FUATZcuNw|(P^4k(DIfCz}N27)vwNP`F{
zT@sRt1Jd0wgo%_$k2DM-DcvC|N{8e~NY{YWkORMS_IdB!`}y6w_rAyR{>QPa2-kJZ
z^*zr|&bz#D*QI4VKgq>ooS!C?`%)uno`};G+^RX!ND^C!?X%I`Pa<HJ2a$rDTkTw-
z^WyotJjQOzd^$O(Q-_t*vow$Uk6$A8Q>Mj`*smX|B~e``KikW`*da_TYG#xAiWFfG
zbGQG+tDN3|+Q^9@i3i4Z#vxQ>o^5w$8FgSqb2~NpH3fHhJ!!<O-YLrJ>=+KuX&Ic^
zhBqu#K92&w-7{`bZ5~U_5o;b#O`Y+8hfTr>JiUV*?;tczF5g7mq@!kYgwfz__%>8D
zV8>p=r?@@x+P!8{E(?3hnmySjamY_QNEK6^nT$d+5nUsT3Pjh)VHpu2S}{Q6*uE+>
zEd}wXZY+<E2A>!1PK@zXX+vz5i-=skUSB4WX3~WxKPCd10*lvbsw{NefR&Vss~gu_
zx4v(?n|t^pK{7v5_*$&ELfm)YSI>5EV@qiUh`peLR%-pLL<J(aXipH~B9FtKH!Q#Z
z!ZWh#qst<W|1seEU%V84|50fAxeH%mqH6_YO@KHnNh>LoyzgT2#8-cuZRzYxp_&wS
zznjCbQEzNpv!N|o<+32i*y;qTgaOI#!3-Npx_&QfJLjGSa1i^H-?&a57djJE#(Vv=
z5?!_=`R6J&T{)rKU&5H}Fsh^2+S*S1T#qPrcssB_OI?VP{9y%Tblw_FUn<BSi&077
zfzA1`?&zhAW1$=6&?08+tjVSk^b@Q;&*WMM(f)Takgk)9(zLrTWVfz2x6#b;vq7Gi
zkEX+u{c>z(LgSA4y`-uCw&PYG{V{qb0Ci-QLkzSK_+^E>Jk&7sWmyXbz=YpX7i)3!
z40m{~`SK`xPtT@``J(%BeZ;=!2UpAC)?hLyaCl6AHh6MKk8jSS2taAks=cbK!w+|B
zeTFX<`L-Vn0>c^;SAz0A1G*g>!_NxJ`^c+8oI4F{FW93a`U&}4Gw#mbC}j`6XhTh4
zdLvlI4zMWK11cSzy@P{x%TvQS^IMw}`Dw0pP;{~e5*c~|_bE<>ui6V*SB<V@*Jk^m
zB#W|R&_t6OkLxKUQsemjmfIa9M8BLF0043E%)BOkly868&0uJcrTS$+-QFWhoxm#`
zMInjw>JHc~x8&qV5LMD6uQ^`PT?V_85O9fQN2IDmmJEG#Sb`G89d;cS3`83`#L7o{
zomz&gP@)IsX&dA;ME&Zelk3@d4DcTU`g3u-sBf0WU41XVw2VfhhEON=O*IqTjmh@c
z`s<8QD2PA|VBdXxFnGO8WhSPOgAzt5uGNvKr-}_W4Clmjud5aE(^UB0cGNNBL3)!f
z=@5D)Kz`I=Qsg>Pk`<Q|+Gc$9aRSzN;T#cuBda}G%AWcBg6CH=9;XESW`kq`T7n~d
z1>U{K7!M8OnraS450HDc?`okU<4=%-#>YRhlPAk-+2~nle^Tz{3(uET6W-$^_qBO+
zK)A|8UOUKmJ@qtSA)`+^u*-63Ugc+Un613>m}<z%dJEmX-YKI%{JBhLaj>e3iPF}M
zi#2d%2zi^_s>q>}7n~8txnP+dc>2<XqO{-26&O+;0-QXZ{zio#I@K}y=kfb6cg92Z
zLXW;HP{~h27*crxe0E13A1Tnv0x8@yj36fzKYMLY>6{xLaF_zb$K{P+RcNR{d_=D+
zd8+65%hw|x<{ZoMLkqzH`Gwc^OCvpZ61^TWzeKjib{SophZXm!t;Avt>E14-naO<D
zgty%Wyu@f-al!O!IYe10ZU+GJW;jzNT<;tIBBiQrGs|&gBre4GXD`tGE-)B|l@Atd
z0uwywyy%`>wg`1X>$UH^07cm9KqaoV%W!oIzvCe^4`g(M{L2ZVK0WAbij@XGL3oX;
z@=!!V2rA*)g84T(W2IuO>`tcLC}VIpbCu&~TJextZ_WR+Q?TrlKq<{DR9f->&lWo-
zo-?!mHqC9byYY5>UzL}|6DNf(>dw*Z_06P5v>_4s5xtFW-{$3|v8ol0Q;R0v@H>|n
zq5;+2h8Oe43&GrveK3;8CS{Wi+6b+_F}0>>-K{Q`qMiO4)UFE-lOBCNMY1%0eK?MJ
zOef)c#8g{i0@`q+U~{pQOFu2j!e{WPKI&&vVB7qh-4h!|oD$d$@tQpf&q*>}o6d{T
z+Kj$~;4)eHWaqi=6n_JK?C7_R^LKd*QfAL*eb5VJxc=CLMk!_N$zugjXe&eC6|P7)
zTN^1RIX<dV=hdtl+WeM=z2K9v<jvgDC@%Sq(XAxD)&8C}X-_j*Ss$KbaRM7v89V6>
z{<JKZ7)g^)qX+IP@?bV3OwG8c)%p6MU*GkG`BnaV2Pqh(TdqSy9q9*)D&2fToBU-`
z1|=_;xhfvC^a>LBA!1|<pJ8Lg{3DY~3Cj#7`qD`aRt5_+EVS$_*E>%X{rPf~m14<F
zW(p*UG&uAILy&DDG^p&meD=7X_L_}av(8s&kVh*%bp5GhnVhAf^hLv}3%DC8$){@8
zrzADhN!d`KjRFaVkRUFv+dO-g;sc3MB>#P(GX{sE4e58}(?TD)m`b~Vh|1i^=Y|+Z
z7*<;^?HLtnpv`PMPb$OMH_q~;81E(J;vH9DU9NJ8J4Z9MOpu2Fm+0k&4dPc6|5dNX
zsFcp*r=V#7agqh%-tZZDuvU@avA6PCZZOF}J$?zwXa_p@h%oes<HCC0*fnHeP-!re
zXrBS7X^dPDnn=3($$S4+w)7YB?5}Blq<4Ev9Brj4!~~nBkI}gMb8#H->g#j}BD2eQ
zd$9@Be17ac9qra(m$JvM*hCJO-WW<iV(*crmmE9_Xm*v?%W1{!_r7i6j*{*9-KHsa
z82L*blRB<ukgUwv^gcO!k>nYTGe0OXb>mNDGoE;MOn<v0IFYK^mUrR~_OfT3Z`mHO
zeAG2)B^=y$i!`>gFffFp*EF85!y+)KL-U;OgMv|6*uY~N3P`d;+`l3)(99ItzL`Us
z&~90QjduI<P*1%Q9v}RgvGCHGxv7RY$}gg&G(A|6dqE>T8M8RV!@WR^I?b!wf2PKY
z(I021p4@|#+SIJA`R#ZqU}|{^1G|Q9!?c3=^ge@Xf)^0E<*9zZA@~u2G1r5}Ab#Ai
zgmbjSCtU|LHHAM|%Wus@GgfFU0Lft^AAhWmLurkgwHiG)9TxENe(^Da!*8dm*B9~y
zlz27o+lIjalr@bj6OenbR+iGCb7_9-Rr?Wy*k{MUJO0}HjO<e_F%$^Pgn7F^+syys
zj{S~Hym(Xpk&0{}y1C!RuK8)<#Vcu%Y?|M+th_>pd&fJL1gqR`w~s{z*A`IyacTY-
z?1|s=MUoU7g`MTz{T8Gm_e2Et2ZE2i{2TMwWI(Ke_<=}S@aCuEY;1Fob=xY)5rN$W
z&&N1x;|OXOx2g6l@vvZ3gyiF|_cYX676*%Lc(t_$6AXqIM>ZGlb~w85K31hq4md0Z
zEJ3rQ*Fn&Fj@v|jw8ao=aevO_^I{(&tWh$*^&Uh_*Tg}Nny!6xoll6pfbEZ)klC@h
zOJ^RhqB{D<LeG_gI5z=YXe&99GjDO3DuE0VxivA@_D%7sRY5#;VtvX(o5ZLg>k&!n
z9}+j0^Z(h1^n}9Nh_5k+K=7$5=(@Z4G+(LHfN*IS{k^!`3>)upx=7;6<Fe~e;`Qf?
z;?J*+pS^P&5uCmo7%Sp3Pt$KmdPF8b`tDF%OY!9Bhk*DWiiee7^Yd)X^)%JJOwcx@
zJCuQVPkkc1xwuP`A^>aYP%R#?J5un#)LuO$)^5<zxCe5mG)pY+q4g|Q#;>GovwmS#
zS_RUC9y$3fkL{8g%%g2kfkYJkwE_iIl-*uwKn^7GTPsMO?Kz|h@b2UlDb68VXq##(
zw(RYOS-6Gm9rQdQ%^;;#PTG{_|J;7I`^3YC<38D^u0MwZ;#Y{<^^~oXsQzLjhJof9
ztNZx?0Mmvi_Jp{T&o18sdGjmtH-n{9`>tCM$6=-)76p=1v7-vn*_QLJb5<G}3bCJ!
z#Y|l7R2N6f883M0v-xG^Y+E(Am@T}I`+OuW?Jwgklg}MXr+s3o<@cHdz2`4au1ikJ
zwY|$=gU>MOV?{9z*`>3vp_nk2C|ct;GP_!gX>znbJd_1HkYQChi0Xw&d4ZNPiu^>*
z#!Ecc6&F=57T0=jJEqb7W0MGZW_>%CRqMxt;n&6OJUfdc>9|)+f4$vFtsd>x(9nn|
zE3?L@`&~xRAnEKQ+op4_v5-L3UJ?nIn*Xwq>93!iKcAxi^Of4EqZ$;qt{O1Y)Whw&
zil)8W<C!%(jJR1*c~nIB_<seM|JP^vKY&X3zij0s2-YKSlI|Q<gxIYWo>dIgzT2#8
zsGrg-NF+&E|2OsX|9&3+<H!6<zD#PLB7F))_i#a)ms-<WUz714f1tnmA^-Sq5$xg7
ziHWwvi(Sznwya1W&-Q=!bNt<<R{Mp}pzx)e`|U43#{bvfn?~Ee_+zwBR>7^FKU*aJ
z=2!h%B?Z&j>c}y!zrUbrpNQUNjpWeq6H18riRAw(m;1Zl?T;Hm!$tJ8DaY|&QObeY
z{lQx6-~Y>h{H6c$N2I!F?<lLP@>I&xO}s_~W)lTorW9I#ZQK8wtMJDy{R2p^ld@D$
z2tr9L^}OciMI3oLUfW}EeE?+Fnx}T7UdcS5{_6wkKflpm{yFkssr#v3XHJ-O??b&L
zGIID`@}rv?V-X~=0ar9e16@`{j7u!rss$VH|8~<StLj&$Uai(pIse`9`gi|2IYvr@
zB$nnK&52Wv^kEUFFGteWw3JVd5H`Ng>@A|}c$EH&((4~@D3L%obD{q7Im8k6J8b9J
zXe{)k{W;kNQ^<qJ{@={aEJ7q%6@zR-Sej@*7Np^PPo}Ev$=5c2+@!y}w*T~hSy;m3
z6B94!M#kzPNMW}5W@f6;dSP|seLxOPb$YGFKmGmxe(_nBNi00<E|#99xtx9|1t5wc
zN_d4a=^t^(!I4C*FBv&lCu07e{s}fbi3K}5`(628WEAYlF9ZJh{=lcG>v(!p?nBG-
z--(kCHYagCXRyY{2SceCnfIu<7iZGkCsH5DcCX#q;8)aO@$7S@4afW8_X~5fx~Dny
zZE$vW@#3OolSJdPj*VC1-Md^Cf~|zs#UJHjsx}|^;B}=2c`8nQdi0Wwz;que0ul8)
zbq!6;Hdu|Vh^rQn4-<e{`dwLw+h;ruizcQEwI+!6i$QGsX|x>_NX$WUCsFx;+kxy*
zG(`Q&<+R)aN|EhOzjU!ryHyQ{1Nx!Zv2DM)vm@lA2Dw!o#Va1dpGWnJFsb{Vo|WIi
zSTI}8N!tH-mHh`0;DbgID-4LFr0e3q0|3kVtQqGZc~uxd4cw^qOdHx<F7$kyjgR(4
za1=5m<O}XDCap;Mda}K+m~snyipzWSxe{X$)~{@tMeY@o`MWbYBru=<o~Xg2z?XeW
zUPwEy<MG!<f2nDvtenQ&>bcbRvCNb8F%NNEdn!E!Nn+QVnA{9n4Tno@(DXO$lZW#_
z=!bzwLsw4-Cgel#CV-u2`o*Qt0xTZ#uM7Y*;@i9uO-T$N?y2^0DgxW4z~j#30%c+r
z)~=``k<o(t+y-vBv!(kG^VR;n4x0FeDNIB_Y}X1zs9hO76ga#_Ap9R6jqqW*-IIB{
zugfV?WEwb4G{{WRAJ5cJE^h)xNv>Q+y{*?R_{WhX)j;z#1`dKZsk58!eVSA-t_hVG
z?cquX(E$rhR&-X%KTR|KA1@}8rEZ)ml#A@hde;teUURUYjo-^vYoMbU=R%VBKO#?G
z9@cx@*==HBKYxeEo!w{iWRXXgn^{Zu-3CkH_Lv;4QLx60uO3vjq-QRFb3j*X>+(6g
zv+$ieowBITB;&7S*or|I&y?IPl|STv>slv7eWD3$eM?rnGwzY@CDb;?CvT1&0>XYn
z&9!C`)koT|lcUSW>23k-F=pGVQ*wv<^NOtpyNhyw(*1ZO7JLbl8^r8)KFv%O7sHn=
zyF@oAgP`@}zC1%KumGKo5q#x%$zw$U@1hnd`Fz~fn*74OQ}5bSfG_@J{iFOt`Dy#=
zKVRmjk9J?=G*v%Mb29~-<v?lRcpJBWJZNW&;5K~mpGGLQaPTAh{2FVJqq;4xIsc55
zw0d``s*M<(tL!q*5`NwPo}`3LYocMwfopsn%2&d>j{S<#+%;ufA<k+#c6*{-pt(B|
zt+5#^%0Hwh+F@<9s%abl!ULUv){dnVkmQZJpI|-jT+`C(`&%U6W#=52#@T#H04NUK
zI<Q8ZiD6U!7%=O<Wg->E&+#RVs38-)gMsMyX;7yJ%fsCL!Aj>#N9CQvmmv6C0Q`q3
zlnOflX*CWB|EfPyvrTLtAu_aRH|l1EsUUu_E0t`T--(o!n*g!1jEt9w7-9hF>~dyD
zd8hU)rayBG_Di?R%Y=MnNe)&cV{#5B2q!05>`2HS(tNNrISaKc|1%+kyZc}Fc^PK*
z=))(sr{b3tq~c->`Z5lll7wh;>Yt4<%rZpqX5ofXbgG9!6lWg)Qww8~6!hS<LMo^k
z@dXjH1a4$D8GrQVy^=Q&(q33G8KGERmqE-xB(iI>55&kxwz&$d7Va1AWk0{@n)Y2H
zq<V_c%qMbTETj8ge5~Wf$wHgl1Ds8M+askM!UPjzeWZ5Y`>Y>(x<&gPVQ)U@<6$;O
zD4Bp(2Kb5!xU?brb$N~ewxDk#CTHW`zrG|->XuaCK`=@^bK+}vA-MboV=#fAnPUln
zA0l+HL}tUQMF>LQlm+~yREVJij`LItfAY?d8DdY7?ig5OkMiqUuZ2%<=}<BIn+b+T
z*Kd4JBuUj8VjlQbyGHe|OZqo67(#svs=(L4mds;pOAHgx&NoUx>U02o!Q(y$Do<Yc
za0P8iIYd(ykobF_xx=O2ja_RGsbKz5_^`;d+O@A^rxUI6<x@0Lvo$e6e=+Y`$xUwh
zsz=Oln6w^+7GK+w5?dx|i@_dT3^zSN+<yapvkpx!Zl}nA98-1+3k#zSfXUr^_Fr=8
z^ZQ~f<4{A!SK}=ZPRw9F0egvOmsVI-=#Un6NWS{jkQU}WoW}8>_5Jjtx)kE^ouaYC
z-g3O*GB_!^mcbh0DvBhuDtF<*_kQDw;t~OcvK@NaB)C#}^5TZ<VD)5DuR|Yfs$f*k
zhh6n`{EPA&I6uJmetymBkbA=Bjvh^mM^e8phgY1KlNS>RWKT;TI!n}3{m;`$qv(H~
zBsOS&W~q>eeT;47Gt$s;_p8+|(DJ2SAyJb1u@)Gm?JN0hSDbhIayJEl&J}=99iM4a
zZFHwkm-{~Xd8gJc=#?9S&fXi-jZ_CQbqNoapK6#K5cHqhYL^xHpl~HCUr>z|EPFq&
z=1I*d=n|$|LcM4#<2<<ddI9+>d(a2L3*@~P%naXhkZdJx$Rh7;^0l1>yC=QuUj>Lf
z+U&Hx;V$n-5D?uDuZl0OrG4U*pPZmGXh_j?0ei!_XV--2EQ@<dT^H0c^J)2v!-MqG
z|2c`VutKQBdS}f(RU47_?{$TI<H9()T7uwSqJ<VCkby_ZwI2WYe0>&QKHM0vLKm0I
zVIFHqW@Kr3!Bu9!XyJm;_t}iXRjhp5Xk9f8(NG=Kc3`8ktXns*I8@16^?t>eu2Nfw
zXX}gB2?S4+ox3~Rn%?`ns-x5ggwBiLGZ6JB`rP1>@jdXDYreA%irwGMjIC(~6^_#x
zG5o%^^KSm|8(+8f0hYZLV6s~%$>FP<GHHcOHLJ}Wc(>33O2=3Sy@)-Osw?^jkqCzn
z(_;iqB_TLkOAYtH#)XEXq5K-201}VY>8LDA0Ly>~$&LH*$fOdgpV~lx&u~^MwN(rv
zMEGI4DFa?2aJT~*V`vunx!btXZTW&{EvCwF9VmxbV0b*TY2EpujHy$A-sR(o4bcIx
zq+4TsscaUY6tQ?nOPw?u(sJExtZp4vCld5YuTf8Th~*w}cj_kQiZo5YwbEjpK+NRU
zdZ*Ta^#;MJ*=%Qu+0u^+;!Gho6DgUNxw8TmxVVG;&AJi6{o@GKI?NSBgt~43Z(Ns2
zq^TaX+*pGm##l&$z?xHX*Q{$)p%CKWsD@vP2PU!2SXvHkcWl%Al+7&q&a{htyYS4p
z8m*<u1@7P7v5?Z|*_5?l)BaZ2XqmfwjHCxdDFtg997Hb~pkrpyoO<KE8>(#K%7a*%
zuM<2l+zUaM&o5Z|H-a<TpEjNpZ8drhMMVynMZ5Rl4n;ABr(116J=Izwl|vI|sxncP
z*b)UIo`N;KhNsOtf)EaESGWK2$2!&~zpiZ*9Od|#JK*d8@laH%k?3a)|4oL7NYzZm
ze^pLG{(?}8Sde14+gQZyZf8vpQ#=<prtX=L{IMn`>mFZZ3P{ssa$OM~7&-{<T+x|T
zbV&^w(mwPCKSdJnSe4Ihc(M%L_fEa0o{V>6(IczofqI><xBzNDpi?<y*~x3bTBjZn
zDvp0F+WiesvEwG!#**$y<3@ga?kvb8Qd~6bwTp9Wv^_Sn*--=6B^GVBWVI*s&UvDl
zxjr48>oy|HX8kD%*2J^#53wTNT3*Khmc&RB%bypyC$ULB<PkMolKi?`MUtRJ;nt^@
zi3VAGEO0F|+wv#t6er`tN&j;Y_K!V^QHp!WsuX*Q;m&f{yV4$+RuB{<Zc5o|F{&T;
zzkEDBeaYw7cje6V>0dLbQ9)ssqT6%L7^Mv#n-ZIr%o#25-xkVpV$F`k665)h3&jHZ
z(S(R_LMI!1@R<D}=Jz86QnB?Mj^QyLA-WUgq$T$K&K``a5qd18{5gi?sHVwY1sKzO
zPtD;bRy*3eM6Yol>1kIxq*PE&*xj6oMl4i%ppwHR7a}BCzV^1w8y@B-f2WqLUhvqE
zIN#28rP)Y@2FN{}dlSG%<hXfmejcsefzD>eHJEsZl3&B~Hq^U6vDx46Y@bkwXH#P<
zH*kr<VZe%G23hQ&OQMJP6FQpo<P7ORQltngB8OO@C<yrr`VFadib-Be6?kt?@CY<&
z!*tjs23Z>q4y)z`lxil&kcfQ=Wm-6kb(?u#OUW!DHa?TmF-xqLA-9JvBlIwL_lK%y
zMfx-Iv%@&io4MOSu=3l>_Uojtwdd;m>IRqnl3C*j?PW|dPss=P*cZ5v=X{&5))eG0
zELu8$49k0cq7GB|eqwXgZaGwWNyIMxy2ZG$O(rcThUF518quMMsGcev6^Tjmn2vif
zlMvdNAPPrV6=kavQ;SVf5x+go3^~)c7W%KlhefRz;aDE1S4>rV^SmKWgr5DG4yUTY
zAx#JS*12;oYksguuAIKPyC|RpZ;V?)<U+A9xd}^zbSp%Y0O%d%)~GJoqMc`eG;7}z
z$nniLig}9Q$u+EM57nj7&N|e=#@08iix&4<eyoHjZz;8Ueql)XI=|*sQNm&o&l5x~
z?Ru?zPhEhk5fa69dH-N-kNb3+p3I*j{y#o*EOsPGz6|=Vt|7Im(#gEXa}xIB2YF|D
z)W*~)G?$+|C|%&FL;bLRi+-*CXfwK3omnN0fxZE1u3CbE7n#)U&SwVc`}k`jt(H^|
zX}&eEAoU;TB&NwMdqa%FG?6+dH_&)Shxp0%ZmgLj{{)3ebGrhz;!rrG&<zALOOEU-
zLn}a7v7XMlUv1$5TjQ&MN2%=1i)lG>kX{#rsjL8xh_%^oh!!@{H$f!2+WGBU9?KnC
zX~8m<qS0elN-`%Lq%Vt{M5?Rvx`TTk=Wy+qj5HJZSG6yhKnx9g!|^Ft)M}BLfMLxk
zX}x!r$H;ngLp9&1rdsMXwCwbF;|I-&OUN{|nDE0SRZdy@&ZwrcO=}Hgb3-_q`V{{&
zw7TggR7_!ogYU{&t}17D5Dgxi^z78VpI%bi*oO}-ccugyX8KVgV>IxoChFmDnnA^A
zv5VnUhqU;Y;&wmytO(#<cmyZF!Ju?_6jKWV!*=c)ymFjw>G>O!vLd{RouYWV<!0Lq
zU-n-zwvOGtfwD7iLzVTSAML<Z#7gDA;;#Ifh?<Y#rvQ_PLa|W;;kIbfi-mfeep6P5
z&fp6;1I#2v-S*kebs>1NLUU-mb%7WqhHlX#{?%@!0m-UF0>x`4f&Zk>%4a(K+dkob
z&^sy(RvMtjxAUBCOPeupO3$dm%!9j;zGj&8q5T`A(tA~XugFUlrrV;ns>?4QCtt4a
z>7d8y%!CFUa|z*igC?!KH<rPlDtoO9uZP;~>j;1YU}zzOSfpB{`Q;|^hNi>vYkVXB
zAES$ZDi0(}b{zy$`##Y`C0d8(d%d?nnOt34Dg5<X=1lFH_m75HzK-W|5_4xOEebw)
zZw^y!4^X>?NOhf=9axdl{O}M_WYup=5_@K^YkoSz);Y_1r26xT^X^`s82c(KW}3$u
z+~QppQmY!4O1~{{2A*s_Mxr4JBcE_x74^nGwp1MA7wjnX>l~*PWV!vaSQ2!E4Jl9u
zHD9U;_@g})YYi!q<=%8Li;6oY+lCkCTl|Cm+$jJ3t5Z+wmzdBYMp+if>Y*w@ZXwY=
zuJ!4(ggYEMZP}GJy_|L;anvAo6dk*NzheH|j~gJ~_P=;7nS~Tl(wZoa6}^QhC5rzA
zA4@k-HYcVlDGkyh=*!2ViG7neLjo~B+{|tf8b&B@Kkm;<*ajo;k9q6SB=_;-X*$KS
z(wv^TdPQHbxBaEaZI4AmNLm+oDTEt73%5fX@dq$pQdUSYBTM&Si3SCe_@g7Vkx_SK
z2W`#T-_9Y#E#h|4ko&1)XDDxF)xU=sKNig8SpD2X>?Qe1*RPQm+8<VWpFLiv#jbmC
zptNrk^6ZUD&m(q-F*x_FUy&HnoKKaaL!4j_S2#@fI*6nP2!y)HEhu(y_g8No*#54m
z>Vdv?PIgxVb0y&t`Avrg0nmL!|Boe^I5=TdW>OAfX-}PH_q)qDE1>50%F6BM$ERj}
zIeLOcZ~DqCdll?T|CcG*;b5Q87I8)K$Hm>eL(E8RjjkC<=UKH&lC%gBqMp(0(~Hw7
z{!R<`mm#0*OS%7v$dbGL6+wAuVyKmq)|X32tKL#!<f%f+$)C(f{T|`@yx#4#8LSi+
zWpeVuM?+OxIv}!q^LDv-^k(mCvI-(fY(}aF1#^?0E?2LGddy|SELObdRMm?j`jYPh
zIX62P;bP=86hk4kc9#E7!bgo0am?h}II~w(C_R;pY68FTPx<>C>&VQT#QlT5QuwrQ
zV8%@*$tFnkeQKO+(Nn|z4Sa=RFB%j@n#pOKv4QudGd`ZJP7f`!C`!UXCQo~O$!6GT
z*WV5%(NfYP`Kc9W0f~6k30B5Wy{|^Ej5psk{r6|{k8OzMl)V2L<R<CwX5mmS`BAN%
zB_>Ei<9-tnZ`OV7R6R}2`5ULDSUCR2E^Hu<G!+54BhH%WzGCs$r<*gRH#Sf|^*q2K
zQu#A2@=SL&8x7s%G*cqT&<11uBvW)B@nt*W%}Kqgp&gqOMB-0#2jj<&ln5$eGm(+i
zO9R(*UIH|vG9p*H%rjdJUI&GCAb2V^$oJIL<RD;rG4+FKQ{}ypssMH83+(o{<6LMS
zVG5y=z{>@Ce#exnprwoCHPIqbB(@!xWWZEYw=<t@)ES~L0iJSnMK*Brg6_>+s*_%+
z`9}<6AY+CpjHHofGA%Wkhpze&-IM(;r^C(7H=t#q>Q2&A3KI=M7TR6_0ZmxteYD9h
zR&I^IvZ=XE5b#)i#N+-AC*!jNjx1|e0XpY&CE56P#k$_Sfat<&mF+Yy1_2865`W|}
z^0|8^2mjgej~CnFqnE=mJo?-<Y?oyflU*Z7g0!F1auR4g;ql)6?k%PW#H$kEx42n$
z3OeqSRdY}u9XV9$v1V4fzqd`X7}K#hU*)nBksVCO;PS8`;HkRZOes}uHZxf3ODq~7
zuy!Kk;pv>1evgp-u4L(&PPX&+f^DDW7}x!luPj$n<NIv(99Wi4Gf11du+?l7avu5Z
z;*D!-Ag&!ms|uJeG2P|T7<T8(*35LBCDp;H&9BhnX~P7aEE^NZVAlO0*AmS|g*-PD
z)noQxVWXhV_S`IK+k7wTd2UNf@D9dGNk|;z5j1PUP~Xb5AZ*_L<Hd|2w6ZU5r%c=<
zUw2PJdwg)g!ssIGoF-DbAn>{=3Y+BhA(3nelUUj_D<n)C^7W18w}p-)C8LE%3Q^Ba
za8CaWc{_#AUMqH(kaMkR7Y<o{quC|=zR(pnWR1dP<6s^i=n9TBRMm5P$j%^ZHR^+Y
zZYy<wM4cop>%C!6=PUQ#lW?N5Lvffhn5+Fz{J*jQbR1@!jC|WKFZ@_zcDg<jRp)yV
zV_I`Ibxvk&S{e7w7D{zGoG-{1iM#yg)c*T~<iAJr%Uo<ILG`eb$o{$^R!Jd?{7cg5
zYm$ZoLNI&V`rnE3biTbKTFS8_YOf-Ta{E!~l1)Ho1h5+&Lr$ts$K==T51Gw64Ej4-
zf`dz^^P}%B^2E6;zcdg5$3d-KyBS#!jX?y~R3ljx25nr?jh)>Z1KR5J)H>-VjpBrs
z!nC<JDkALT(@S<whK$q4J1$HZ=XV$#Rw5sJxn8DnFgikr^9Ia+>_%FS)a#)A>73L$
zLx}YnV&hONm=$=b^_>pE`+1%=EB7(covc=xeMgqQ!k}x#Y-77pL^*zuX`loyv+IWd
z*ZqCbRVSh5&Zw`4Sj8{#`s_IOi!U3t7|OA7eZP@>h&9R`Uj@s2$_xX(WTv3qC&7s*
zGTZHv6hZCzzq%idmar22cZ1LCqumi38CSa7^`dqChg|sOsN<raEGoXd8NsT|fCji=
z027Zd%O8sc_jMHVY`E>P%5?xedKqnGu=B6JgQ8U??NK$H{_ELw!giI4F^z37#xXD`
zUz{L)q5t7Q<Co5N=MRpD2=a|`6)wZD7vl5P$Od{BM~d6?G(s49Wh^i}W&Vt|aU(8i
z3N{ezH5+?GcMn%?F<d;`GZWN#hs$P>@<f?|kP@sHbUPm_!h{!cdT<Y!n!abz8wbFg
z6VW+)lWB3)mq2>^#0kwR8|(#>1p|~%os#rjfW+|UqK0o1>}6S-9aq<T;=&+rl`$lM
zY8|-=lEoXa^-vD`y?-Rs+s1^OS*o%VTEdLMP-3>NM-1B#v?-FC?&6!&g7#&1r@fT}
zeD{;=T72B=dlOCq)&qpnm*3u?PKMO4X{fZxmehh94`be;C^Hw^D1S8KHOXY6ucs2m
zF9kd{algsfmf=uqZEh)yG}*U=3{;MZ3QcW(yLw;_Jz;_Gc79%iW_B4l>64ag;1D{V
zASy1fp)5@+qT`&qtyo|z@=S&bx9Fkrb}MRo88x~pI5$F|0fV98;(qnhl;a38NMvi0
z+aMr6y?8ET6ZPw?#m={@%tdRJwm{}A=l0yTwKhEBQ6XU}&Ry2=cm#d@C2qzDVgnVq
zD>~16+si$Z=;ui=^~{3a5!I9=+Md=Z9lT>U&I@u7YdUTVt$~31f}M}8?*)j^8}SJ}
zw~`J$NFWk<m$JF`XrMs;R{yt)RbjBLKiTQ&8A)F|s8&DJ114j0ktBmAn$|QYBV_wq
z4_gPe-o23|SxE2AetmZrPoHK|p|B$?;=89motea1Av;oaaG$8-Yy)Iz!Z3~8q;e)P
z#c22lm9-sIH=V$`**$ptus?4Y5>VNR29gaPK?u8vpR4@Nuk-9gMTb$NtprbhfK}Sv
zHv{eBOg*$Z29{dR!({p9T*P3=TX}Sk`LB}?EKGxKREX?+Co5*H+4gNc3eM;sGXmaQ
zYP-)*B7f^SKpU(iDH3+63TNP+-l$pA-Egh}i+nNVeJAXkc;@JpJ(svYn+*Op%N)V3
zmbxf0vV>n88dtvR^>8z^jr9giedK+S)yAoBOH{j%ZupTa{9b)P0R2NQA^=82wQ&Lz
zJNj7x*9=TPgYDY}lL{CBZ=V^30pU0`>wxtwVlt#p&nPRbD9*dxqbsyZAhaqkU@3S^
zb*m$17$!apNcxQmG>WliI;!+;2I|i;h-hD%oVSi7Jb*EC=bXJ)t_?j8urc_SrTYHr
zn#rLziL~G5y?fVqzHvjt`1<CKNmmicen%M`F>?8fL0<cJlB8klvgyt7J^OeH%pi+J
zxA(`27Kb|8L{P~QsNFk9%E5<j{?_4{FsRTQ+hq=Fo#I0?I)qC;d;W3Q`j2ykGX%%-
zjGRC3V~fD-zvZix-#yaE{G!9gi$ONkxQ>w@b|G=(4ru6o@vLeE1pgzu&$~UDnPI3B
z*&)%d^%iEdcA9)`7=Rum%jpnZwqE|}gn9}Br)RdY26mOs!awS679VJdE~COn?x{sn
zZpivjo(&o6E}W{JuHAk1B*6JSsZNs^s_ll)EvhHW%=qMDhOWo_HJ*lM{S|Tq<2*vo
zP9bAfI%bKI^=0w?G<x?LN#=d?p)#fWB}4rZpO}8M<8)khHtW7o7_IiB`KRdY@B^k*
zo&dB1g6=+3&x~qa%@4Yn+d%-JWgV{Ym5rH$!78eo>_Nq06Q2w302Ih_QCd1UR(gu2
zF+upbCf|&oXKJjt)6EXQ)WqfoA9ZAJYpp9KPbN>kbqd|Z*Y(Zg;^qbu5(b%EV~l;y
zXJ%GazTd$<h#7<m?B0cQ04UB>=<U~Tm|qr7$&7?Tc4a>QW0oq|(P|F?#&^j)0)ZLM
zb8kBU@wuLvICOP-;JbwAQn_hO^2<7ePMgyZ&Pp7~#(C!!C0n`tuC}V-@#wMgNIu1x
z+v@{{1Zc1ugcy}#=9}Zw3x>FBu@jv#R43c<iQ^H}N9jJ)@2b7mn&gYm$sJOj+EX&C
zN-euGGV>_UYsp&!Z96Jg#_W25tp8PBe#iYporGD}H&quV&o6+p1fy=B)*b@2UKRRw
zy&I{Pt&WJRbMBSjDQHe`7*;LKbnN5G-derFN^E47Ryohn^pxhM!H{3t);uG$I`d?$
zZzY{2c6Llhr_N`$riSMe&x_+m-HwPkCTN-$Jl5OWU&W|zZ)7i0E*9m~P!iYrVW!mB
z=4jKzP-|k6(@5pc%6#QUY8Z!5UBSp2gQ|T+)k#_7Yy&1HMYj=;SDWkEm3&PRwKR1L
zd7=;Ze??%I&pa(@EB+e^;jzmXfz}eKyDw+vff5;}&e&|O?Q-wOhs-U-@57|xZ-5}$
z3yzpR0}rKmq>J+HVUYi0k>Cuu^P_G;E=TQ?<PX>*Mvk0c7HT%3JrU7G;34vO9sn}b
zkj+l-84A8`Q#a|VJ0RFCFK3YLpk#Vvv}muVKTnlIvvy;$)9QXBdqwi#qtW{`+;NJ?
z<9WtvJq>kFpNGh=5sCY%o^|*KDc&#KvNCsjOV+Tf^<$r6?YrE9|5pILxr%YB@{J-q
z8tfuVza!Luu*e_fnbUov@349I^Rs_z9&inlYENja%0zi`-S$`6H7BFy(mNj~n{ld&
zvjDU3J<A5$P0a)Jq&fP-ox>c>=TdnXoQpO}`tcjJM?LzMHT9T)5O^%fk^TAWYhxl7
zd(MaNd#=7tPa)FDOJ)U5J76{T+l})<_$R3N#B7$iG?1)rIb;2Tjh&Qs=PTQ{{gTrv
zVjs$4mUdD5o-3^Dh!7GP8kW>T&kY71^tX=bFiA6aRqWjO@a54#Qq4KcCip_XimiT?
zoVXD+<Be1t^jcoL`f`>zr#WxEg~zmdy*7#%;#zHE`=IFd)S%iKT1XN0?t$30D$Kt0
z?y#F=EM$ZYt*p;Fyr4|(-dB4T3sqj1Fl2F-ZyAMbR|_91LyPjR%QGtG2SgluA&-+;
z=9%{_j}vu+R58Ruer!AGW7m~hL1}MK0nI+h%@5t?RtMKwA`9=(KI(FKKT+?)hcVsG
zOp^18%i8~y7*Uj8hB{f`fBjy~q9*xQuQ7l5TUGr%uZr!WDn21x+3n#X3zpUf_&qyG
z`0ndZHzf5oZe9mT*r81P%wsnG>29BN1C8f+@R!`=P_JdCQ$x2x7zP{MhU}oJd!suw
zUkHZiA{Th{?1`BK19OWLj@9(yJ33w}&I_e=G1Fq$`wcoGlFo_mXARWq$eVj&qR0ze
zX54=rzxDo2j?J|h^Fl0Ah}-|*iqo)S@?a-yS3VQSdduO;sLdw{Bc-AEu6OFASPSHA
zH=PHx#`oZh0&cprTS8%}nK=cyuU`E8hExJuy-fcYoMs-z-Uqf}yRxsM2lk_wR0-LS
zgPX^q;^HjwouI-kz_72v=_-0i>?U{ba_0l)nnApCjvQS{_6ds}N0q^TP_vn$qG!+d
zdUN&jc>wL=Vf<ri??Ye71PK8Gq2~=-SO+s5EBIy^Ks+C_Z3?z~=%$=%zBkg5K)}Up
zkw5IdaYtJBfFKY!xYkkkC{UD^H#3<#3Lu;&NPuZo;b?rLaBU{QW~}2NV{HI^-9q7G
z(>?p(r#BM5R)jwu714G+&+%#)M%e}AUc5yIA7LcLDhyvjvhmTEm34@0<L}lK=i`e5
z#of#Aoh#m(_2Y-%Jk8QF6BZ4HQ0m=@2SkDe?1k`jT@NIsEaVx!lxmU)F3`bUFH?LC
z4VQjtaa<5FJwKIyGQEk<ch7x!Ib{O31JnJDt8eWC<^Xykh{j$pd#9uTZ(7@rIA(C6
zV(ynLTBFF5-JxFC+E1&%UueX=u_KoHZBqaGzz1Qf((kdf-X&G9mQbB5sk?mZz6}Vv
z#iie9br0smsGO;S3N_e&DHF{+0><92cg1CFWde8Whu6lV5u+uo;-C0$N_yU(sV)_-
zEaz11T6;stv2kru;h*RecZC3l(&2@~U|_4ds+J!{)?Aer*l+`zORea|qI-p=Nbx`B
zgTqJ9oc{WqCnYk1tKgCPPcq&LiFv^nZ8sxx@<<r>SHceCF-|2ZQZJ#sdT3X^hY5fD
z2AF}1=|j(Qw~o~M;4SQ+wDa)-;0z0LLP6QBv3xD07bwr!=Vuw!#Mk`PHx4MzEIIEw
zkn-NF1t4E!?ZG~os5ok$#H+Eq{j}SW>fMV!JLXgDnh#~5_OjUC$q3a{DVYyFqmn#7
zkFY#ZAT+u#jR%hGD&c$NMA-6N*iRsPKlroRJ|i)r5i1_`HT;o7;?>`_#GU=Jn{L!=
z`A8yx6kGeFj^G+OH+o>ZD;u?gTF7;i(bQdF1x*L)tAzB`o8@ijvRHs#v4rek4zR;)
z;B_Xc)qf}x$m<=NqzXdD)+=Tbr^rr$4Wzw#wRvHG{3Z2OY<)Qe_np00*HKdjti^UT
z$r)#SI63_0i#lp~sU!wQNjKQ;+-k7lmSV3Qgy3XZ&K`&K6UJaBEyng@lsOoy&(;_j
zB|$ZzWteJA!2Ox#f(OQ)4O*K+Yq#TKX|BIZE-&DJ+=;pvDy$<fv{1DQ4D8_8l}$Yx
z_H$~|x*}yT#whWaeiL_H2|!Tb0Ld4vKEyhaAfzYg-j%yBqWOV154cwSD5v%alh9tR
zT)NV2rpuI&@5$a6{(FwhO5zQxQhn=D+MILZ`N?@?<Sd?BKbzXdKMzVP=1nl%c#k!a
z^yzciuGxH6E;~Z^+IR@p$(J!<v0Q`way}n8QnJ!(TVD-d5lHvncGCHhN23MI^AZGX
zhL{0Q%qMUn$)h#uhvD_lQ1hOUGnNmZQUSBLJaO)|@b+cMS8dD}aGAfpJku67{fsg1
zgQ<=h&>yHrP4E2VYt{um(ISq`SDxd{dP~vZdOab}RCQN)=N!3cUTTw$ZW6UP-5DI}
zb5In_lo!^+ZV<e?@gviS_wS1zcU|nl5WQ7@3F|Ft`!g{*kvvm~$+j)c58DeB;R@uq
zHx$|Y)tA-EUd&<+twNj^yvd0n1YR#Dh48(gs&#@=lEJh1Q50%<+3&NYANyB60MHnZ
zt`OtKQCEG2XH&vF?_^!TXVy8%(TOkeRGtSmXFmt#B?*YCwqZSU?2PLun*ZjUe*(js
zfZQMjy>j~$5XXdUbdM%)l=V2r@a6}cml0_Xgyac#s^Hr1C#yipb)1aX;^`H|Xm_eW
zTZ=GC#1Z(cT{ByweQ{3P+1TGJHY-{PNM&aq@pt9Piq|G2=HI35{Uk<s;~Azpwwx|9
zp_*K&NWzxT9e-X7uS6+)nUB|qYs?nc(w;d!1E*gWN3riKd%sl2CyKo)CTj-4SK)`z
z644esOPJu%jU>p#2}L>pAn9cAtGQ}<zkilCpSYT0+?FR6ALeErVvZW4#DV>OZTj}v
z7@NzEwtK2D>#oy5eAS!NI4l3!%kcL1|AIWF!TNSg(w-2t7W?jAHU?!{9q=qt_G%?t
zi%gZP4K9Yct3_k`#|Kj~)P~zA(>NJVMI1Senx9IN1nNW4BmrwT@#EnENXvfXYf!ZP
z`StZ^>{`1h)>mvgHtk{|FZ)1~IBqh=Sgz{ccrC}FTe62m0njW92(XN_$uO)EwAF52
z-uc)V1@TB1r*-=reyz3~Y3tQ7PfBV|r#)MLxusy6yjWA}sRF=CZ^%tN@q={16h@Aw
zy>uSrpSE^Kc|H^YcS=otDir~;tCQl>&SDF%1ZfeYYz3DpAxAXRNV}M@7!w0=eW6Bg
zXJ)jl--t{0d@vmPwP&=s`bk0NX+Y(LS%%Y0)#*PMj!Wff<r@u?66O?Db)31}`kjP2
zYIH!QwL8uy%9t2%XFN(ht#&goCcq`qe;y=}g@@(1PhBfF=-Cmz@wgM)RfID~9DYCR
zO-0Hx7&mf2)4J88TDKLqPZRuZEbF%7wV7Ma%%4{VUX46U{pB&+dGKnxLJ~as%P)1&
z)sh8TzXDf+KI+mR`Rh*!OE|hdv`ttjIVQWe+geZJN@?Y${fFkZlLB#5R<SqgP-ca$
zwy)m3(fd%EHMDcH=)p)BSW_0CtM1UQ>gsGX_kHzX`yQ&yv3HL;;ZDXuF#nWtlwcE@
zXk(^yI>?kfc6o>kj%E|8Q#T>6srtF=1@i;#Ehq(PI;y4w{u`an(Xm%f9-u439Z}QC
zH^Pa(U3vDRZgk$45#h%+aOaBqfwa9RNCHBCJ4V{Ag}<=JXb8{>qd3QSQB}YEW+>Z4
zFT4~lM)T;Gwvxuq9&RFMWdzjvljCszFA$^9i)-oZ&PFH}F28>9POF|7L`#-OVvBLj
zH?MTeI)dDFE6&~)8iHbRL3v5DGu72+Y_96sxh0U1M`-?v!9M`F(AqV{VdCQQ-EN=j
z#J<j&vO6=Tz_Q>v&0Aw1!1tmm-UIeFcxyK=APgc@tH;dblvHDR8`!*J`<4fbGTri3
z9@RnA=f;J+1fMXCPeJV7o#Mx{g0bSx_hjs6EbVU+snt!lMTG`Egdi?peX<u!j8#ls
zAslKeAnXxRjN#t6P$|aw5OuqMO5l(CDD~|W%Ms0Q17Upn>iND$L{$&V&RxsPZ{Kyf
z(Rh|pIZJ<dk%{M>`QpHe?;%Zm8`k*qdIrk7#Cq_f*-{rB)6R448195UPwp*Q0pDGl
zoS4Gh%T-DZ3}NE<<QTkXDxEvu7mE7W)70+cLTAiVjcOLJTFkbbL!Kk&Xx>TFDS&`>
ziRqjo6{_~2xW3YZ%{u0RZElW8iAmSSszNaI^@w0{wajK;@)95a-t!K(sW!V%ZqhRG
zDPwPE53v%Cc&$!m`4VPdCZR6iJl_8F`KdP4a<NzVqF<JL81!FQLIjoE?R<un3gUu7
z9cecI^72YESh*;!`?0&9XFJB8qlCs+iPx@EZ2-Uf<lYL&`q^jgRAvvmlvlR73Y`Yc
zQu`?{pq1mVhZ<Q+b|i{lb>6StojzJd*!S9#I)QxC)e{2`!fip6?_|u&l#l~q0b1->
z<+i9K1*%G;W@*YyJGO;<+%tJ4gjw=8=U5RGjrTjLbihC2fz;`&nkLwO3Eu7{U4rHd
zacA+i#XcJpYOvg4f-pCG+)%$!0WUE)hV0F@t}8#8owicJ;}zJlvCgu2G^L=PQ^&14
zon6rHZqnuo|M6*8akqu?&9RlY%`TXm7rX#EXzDmRE0#J+M&&D+HP$}sy1FLpPB@WQ
z1}p$$J<Xou&GNT@25A4GSoqx%ko@krwV`kev&MEMQ(Jsi(pJ*&?T}D&bmjA5Ye{X(
zk;c}8b-A*y=Xks{TAU>L!O0&B;U{r+iH}Ni6P9^8T!tmB?!D{p%CEa3a;Vw(jQPdS
z`;5#7<yoDRCfKbAJJQ(RHzQ#^r;AQYnW)li0UTJptEBP)ou|Z09<lwUr8d2ud^jET
znO2yJ0W{wO3+4{|kmi%%^Ue}bt(xbO61IT7iZA=dcj1=_zpHXDbmQ4f*xZvka`c2H
z<s%Vul?!<SfCQ&)ZgyJ8*$^8%AlGKW2n6RCK;)-ko?TnQJ~mgm`SU2_qg3Qd5J{#%
z@>g)4A}7Tl*aKVJr>=b!@osk6srf|)OXlxsFoS8|pOdf}Jj)y`nvgspV07@Um08Ta
zKwa?sa8vprH1vdjA%?;W9+RW`E(Q@di{2%~WK$9fBMmPPk1Q46mL(A?=eicuJ}@Q_
zsE74Zp;^!H$&T6QhRu<T*qJhd;w=olp)=ySz}1r`Pn9;Ix0yraucslShM$~UbTV9~
zdN(QbSHIK3(b2%eio~WKN<X3`*@icY#2;!*XmgBAddMS{Tz?GJ7PX7CgvuV)78!+&
z*EU}t6x`{;>z#{U1?1KRD8Y0B%?Zx$5?$Lj9ma2`N%0Pwr+7Uh=0!~uYWG6l65Hd5
zKRp?0g@~{9TDLasLgEMYn9cTAs<!vh`8|bE&o4NnTMS}y9egsoEvoBDO0uqU&oT?|
z$SVbsZd|NXCrtp29hQ{a!sDWB+#@K+HeGJXkSMK86m;m69>ysW*wkbOpI}tlJZ`B}
zyKYc%Z59VXz}%PYvm$i>;yT!cyK%5}Hb!aZIws!4oKRY6ek;62F6Ni@pmFh#@P^0u
z%bE!nTnAMsHfc`ztB_GwA&~(nwyP_1$<oe!?|^}6qbQpTHbmcT6Uk58Nquft%2?<T
zw`sJxKIo*}^1!}jbkfBR$sr@uha8dL$vIX6&IG7(kn8j0dqAvFu)eJEna2j?wJ(J7
z+zA}VI-}-#%%P45!u6)z{Vfa^y%9E(rFH=vnGey;+j;}o3>zhUCEfZUQxC#LT<w%{
zb*l9P*xzyqscO<8ppz@(={254PVeHe%hi&{f`jyi5#Q$wG)*k4`K`3~c+x>=2B*UJ
ze0~Snq&K2&OUG=q<7N!hSuCnkm5_NbwEj?@-cD?;I5q6<AckLel2w&y$(^0C6nPa|
z<lZm0`6$ad^m*;yZL?ZOBUkPmmiM}6W8Ew?dwxjkv)u0PT1#)6M{K%Tbd~|w5h}=O
zs|5oND^=t!^syWBRJG+8ine~)t}7orUXwY5s*w7n^_g^+x;`>oB<j?F(@`Q`wrt+n
zcwxh>s*ZrO!_#sldrmYxmsH}bv{fhMw8{cqQ-sRC*V)!4WKNbx+EfL&Mr`ttVQiWo
zD`H{RZsR$VYpf3}zVdR?mmvwVSo(Hllia4#Tabj|r-ph1IeYV>pGJY-eoI<qrz*LS
zbI#7uQeL(}iM(9n>?K^9N`lCsj<bF<XNL8iIkrlw2@Kk{u;CuEIdWym!_p-3^PPN?
zE?3y`Y8v#|RcEH6l*p>q#Lhvp8l|UtefWikxnmb<Qd?sAOj}{qoa=yy{37*wG`=EK
z5z+qE2S2#)s5~3n8CX~nmime$-FflaDP`Hg*md$~cvJ_*lE<pGGNZ06!k%2(AhFG~
z3AqE8@^tuLoh;Vy(}z7ygUPIQhkS8w!T7+kLpq@aJfVEVwD~rP=>T*9s$a+cw?Cb;
z$&(b1X3Z28zERr`hLel9&rSAp@OoC9*<0Lk^r;egx|>Ly?%c{JA7_;}w;=u?BcAX)
zY^PUp-bLWU{^2<62Z@KD`iZ+vp<clHQ-6+~GcrPv#y%UgzR|2@oQsA&<-WzXzRjTV
zz=dp8(o2q5eF=Vh_4{NdE+7y6`gM^_bMTqv4Brx^gL5hv@0~eb)D4_5Ez;DHzW5`_
z**)6WulMSiGApzd93G_l91Y8)scLoE&}#26X{<t3Ikwl0mAisY@!)gS*~hgCh5bj6
z6jcO#Rn1jqADnoImCq+kUzR3z*R(!sx)f`>nor2PHSvWKH@UOHxERxG>$^WfvALO^
zlViBe*lwF^=p0%DDV9wHy*b}!)6v_OW&GX3e@rlcZf;Vq&)C!VQ4^N>d!3eLEltn0
zCSEzU<tuE}-~Pge%2#E|Yj&gOIo7qM?=kJ^;7JjEVZ8F25+^jF+_AOAw$x{|*4BTJ
zcNe`lxACg2lHORBv%|(v=flIEz{N=nA}wSkAa+$#1J+2MgVJG(UG30aRo_YsH_5Sd
z>3YJRwvGousn6$9-Y2hFgMykdXZztX?-DnV!^Z<p)X&xl0gXRH?qgbc5%*GesY=n<
zn}Hh<aoU*3?7YfmPJ?pZFZT)8j-`O0bDGGtTI@qf-v@u{2A@d`ZMXv@jCxUtCNTFb
z!A+~KqZ+kku6{2!EYfh2CX)Zr*Hh@MuWey@nJ1*13(|sByJSsu%;JfGZp&9IRh+$S
zE3kAPTsnkVQx*S<L#2RSR7~%=l?Wl5X`FB+{qe$1(_3pde(nUv(r^4$Ci2o<_QnjV
z6}NS5c8z70_AQ=_I@X<7Kt!g2I_r6IehUcka1T%d9kF_(dW|9`0Q)hN0!gM39*3Rg
z?IGeu#I2H#U|Buy^d<P$b2YNEt2dd>Cokx%r7q0I-f{lXV5-?eeoO1wdy`$LuvZn|
zh@{-=F^?LnY~VYZS!88)AUR;>%!J^V0FjK`j58GUjQZ~88m7CBppt@P9;md+{L8th
z5D%?C3PTsTe#1h%++L>0>>M5UO*VI@)s?2r^)la2FJ22;Y4Dzdfl#K6-h8h&pISTx
zb-e~4C)d(K>+{Z?{@_OQbXN_`dNjlCXZHQwvQt|`DoS^b*-b$pH&}X`z4_Pox`QLf
z^HWVQ+=hiou6>m*9Lvmael{qBitk%dTMho&M2Ki<yawy@C_qNt>F>TDfcG7tkwW1`
zlJFI4!tELM#}6jtJhTh^6^UT8INy|7Rb}nvt<eMD)}kx`tan_-kpUV{VJ_L(&`9_y
zaZ(WLFynfD_NI39r6|y*V}@*M``nsb1{6H+D;7>@2+||svS2=LZjGl+9K?XS#VBNv
z-(mcbP~42ywbH=_RyW_Xcvp+YHx)~WhE*>hb(E1JhW$qj^?^(^-5s*ZuUXv4H}6PO
zhMZU2FMvuH#jnhs6R_6B_q<t8=Z-n8+8+UB8uuoUh1rIpqOZbgIbXHcM(U&AT%9rS
zf{e41>EzkWtxL4a-pBQMqMUxKtkDXq;YWT%CA8v1sKuY{`NH7V5p49Y_=Eq=v}(|n
zLzL56?-Q^0s9Nn*ev+pw1-^JTfsG386fQf%8<&;}J88#T4TPMYWDRbdsVcTyNHp7s
z47+G)d;fah-hRYpndtJij-IHg-B{AW93^Jmh_<cWhVfEg&-3a&E}iV$Z#m%vCPF3s
zpuZMh$RyvTsC}JKub!OvtwcBK{7sfZZ&KAMKF+h3{G<*aW8-D*T7?vg!4oVMz5SHy
zORPI4;)D>5L78z{MCWWqT|Tj8i!=_lO)gew>)hFnOVXE1B(~Ab-qS@wzUMSdn?-Fx
z;5sln882j)*ySTwL5sM`UVlYEphqkBe(%UaTB(7$;9FulnAykIN&6?oyzthN1>m|W
zM3GkPbS;yg=~3Lwe>@DeCbxA~me%Nz#$a9)g4w04g|@!X5xM7ey<KD>C)PDU0Mb)-
z#+qX1VvIb$0lxAMg<zjs9)!oSNbfxj3nm#;;74CVjEnnh)t;1JkN%->(dfZK=9-v0
ztii!XFQWlaYn#om)`sB3vYAAF8H-l<am(iJWvVcxwLYw@<8)tw_fLg`PXFjU?Rr}3
z2B?KCiQ?YC?dz(8DIXOsV(}p0WvCgCdeoH52hCM)N(Vtlq{qYbeCfQll(sJW3%-M`
zi7+{y;Xusp+&asu$*<Tv!{&9&SZ0A=XMqDBF}VAG9*Sglibv&A;o~**!4iff%#^+z
zvr`J|=0g8pb8j70W!kn63%U(j1r(7O5u~I;LIEYD8$_f8HXYI-Z6GazbVwtxX^;j*
zP*OlT1?gtf`8)T#?~Km86VJDvf4*6+H5=XBZ0@+O^E}QYgt{G516420=7Eq?!ecXl
zjC0Wrs8IVw9RR8DP`TgWnmWS(IV3B+&1ScGGYQFghFs@9YmId2rtNiC*bj~-1o7q@
zcRZ}PoB1T1>}ocMAm2Z*uHze-f53{c+Q?&cZi^9g_R}$1u9`SCT3_)<+e-vBL$#`x
zs+JS2S6D@UU@OCKXH0cJJrQ}hIe2d{thz;sEd(211?nBLEq`*&Z|z4wUHo`-$`S-(
z-u_q81nl~*joZGZ8WLLDppC*FfA8m=HpK0;G~}$OienMK8+c)ev?!9-%DuXQP4B&E
zjXN9LhlHK!C-a&*p)CnD)Gql43;66sDGy^7b~Hi;Ny-&RS^yCGD#tkesPfTwM|b|*
zQ<mntx90&YWZxP+3fVg41u-h;1s$}g<4A+ZdFyh|^K_KiwzY?kt&QFKY(>ZCR+stc
z?bqCdzT#_6T7*G&x^NWySui+hiT5B`Z0>AcLRmCb%M%irS(G7)J|o~q!T*Ea`0Fc$
z$A}W<1Y`-S&E5B5_h$MN%ey_O#Wz4Zw1Jp9&DVqF-Gf{C-C<ZJ!wFG|LoPec@+BS{
zdWF(wE5oQP=dR>6;>=k2G^uczbf(-sqs=Ilhf_p$)1`=NJLFRzab%+B8{HKp>zjy0
znK=G#;I7}glK0EKYo#WLI~j{Zl+_h38>Se~@P2j6I_a_v<uA>|2FU@^Kr%1HcYkrA
zQsv75-FUc60#tPhD-i{rvlp9~oEY9&0O781p4N5A)Gdy%N%VDFXwy4xHN@?*J^W5?
zO9b<rAU@Q))x`m0wCQyMztt5AYl!z$Q95g-uEB%vmD_GKtE^%R<0NNmRx~``9;rZ#
ztV6(n?o#z$wXZ|?nPk8=51f~f%K-tgcTXV*#4ZdAj+EQa&-8Di@p&KUuiL$Vsfv?)
zj8l&*qqxDqeS{z+@l;u|-J>pIw@NE;qNfRMYUR~gPCZd`?Fu5-k{CuJObcB)#FeY7
zjR}3_I|rj{lT7Bvf(s@w9y6D%g?X2$B9m#N%eKdH_wlZt#jPalN;|-)421<WH3Gx1
z81HQkJ0`sI;%$nwh5pE5131fF`-gjW5Qe!sHaGQ&hL9IzpGk3BJJUMb8j4pKX;(z%
zDINNLDVYL2m$_5~3kWoHNwqfn)2kc{-L3(}=5(QXzm3Q0T(_Ayn?{+9VJjqd8*4jH
z+IvLNmBZuKT>F*oq4rxU;s?{-Ie>_XFW+0DdWqC%tb-$dcRati%t~MX0!mi1VEGFM
zZ%|DUtVS@t6|CtMIy^0Jv8e7Ft+0|%{rKzoFuM`E#qtC)&Z$!0`<TgMgay684VH^1
zzA=`uP8Q|bFNr6-%Iu?abtkQNC|hh^yeZUsv-nk$bL`-awZiPY+*8-$)-Pb({GIPK
zalkz71^BcbiQ%zEy0L6OwM&=V+udjgBwv<)E}L-x;E_er@lDIh)%!x9K<qE3mo>#N
z-}?*V<=o?%nIv>o`bm7hj9lFwuuQLQ>uUFzLCa2uGQq;bWjiH$l0VIc<(<Q@t9$Ux
z3&PnO0(QRm$GW@T^V{PP;@P^b#aDQuJOJ!T*?PLu7n#s;isI|AE2Ekl#9z@|iNC6z
zsU&8*kS{@g5VUfzCG>p+OZsPd>u+TaX3TKn1Sx*aAeYdDg>tpFgmMYetkB-D&4=Lp
zy_=bgsm*Has#|=msEY4{&s$K7e1u4uw<2m7BlG{;2YOxk1=ImA`|$Cu$Rxt5Jq2J2
zhtU4Ys}B4*oF_9QRWY&@IlIx*mh|d9sW8BF;e8RY!NIG_;kKu3S$(*x>8hMtU_EnE
z_rmtM;fR77`eUCW3wXxv@_w2}>KSHq$S(Htwz-zJx$;JsF*}FreW+f?_8}<f_YT|L
ztlnE%?b+)9Bi-(bC|4cV!t#Q(42Y@i1#KWtF5Lvn5ojA*p?E83hH<=kaw3f(ZKg_Q
z=wc&6=_xmxVUvnSNr5s0(JU+lXl!|@L0x(T_eUlh^)E_;B{>$<Jylzq=+1*f^W&;^
zT`s|t&z<x?w>i=BUY9PRw-yyS)`aZN)=(Y{*xaD<YPlDkc`T*c?Z`5M%34_679^$H
zWYGY<P_Qm;b2}tB%y#x`IuzrpDXau|pCVpY`7()ae;(sQ!2g9Z7&hm^#x>B{7!30}
z4E1XE45z(Rufh4!!5*=cl<0SOU>|g_K#`!la7$SsM&K4?l#!e#j`(!Zp5S03w_pBS
z#mam1!lT@=5YRXd=r@CpasKM&V18Y2lO3Qhvkxfw*2t6bR6)&IGW;vB5H;sO`!FJ5
zK7K%YQc%u7@Woe#g?X<6osBvB0E#9|ZA(cG?p*#=4s+2kk1*Q(us@e&wLeQI8{Ibx
z>5&Zv-_cA5d~fCtWO=owZ<5WbFGo`8gYI9qU9l<)lBv5udmkcXcI`0DtR0p&V-L$&
zqkG|u;TBY|->zX_t8fwO-P}5!Vs~I)=Zbnhc0M>ru;BTYE%OKMJH+qO%3)JM5pKng
z>dPO@Gu)LzqY^4``VO`yjtYeww?-=BE_`?KK0*&{)VYph<6u{z+cb0DxNAeenKE*7
zfv?0%yDEtLT3i@~X!gY2{wrE#=(fTA`Sb$P!_gzRCDPR&@~=N`Ojl|140nhN4};rf
zCt+@|D=}&|g?H;(ro&pH(y&i1XR6flq@hQ&MUTwE4WTThze%_B%M+f0l!ptvVpeA<
zdG9o**FImadezSDU}cZUrU$Ppx7~eOBpZ&P^X}|4%@jD1^SZM^lEi`qIR6^bD7bcr
z@ovpc=^|`r?5CnU3Ug;%blmwkuDnuOx7l(AD~2iXIxqH;#>wc!uZOvRtXmnsOK;#P
zP?(X{YSro7n;3QK7{#z>uI}|J?~jP16VoOx=&9>Gd3Og<Nwp*qFF&`f9AYAcm!Iu1
zF6r0r!R&a<kfi(rP;wf}874xtI}BIGwgSCFlo*o5-Ih<)XT$;J|0CBlc3P2eo#~|r
zY#$Zkh0Vh~svQgZJSP5kO!2QQs9zj0WOcyOHcoNManLgn^cDlzs@IU$Qr9%YR>2~B
z$wRL9N!uHYUgE$N<W85Wyu~IwzQ6PkHweUGX}7pv=K}~xUgMq3NBtiKSSsqX*G63L
zn2)Kfdjn=F(Ul^pFHj*KIOkBq;Q76L-m(C#^y{$M9>`~$yS5y?RVwWhGwfIQ%Gh#G
z;jF8SiKC}l&GUl2d9=om)|GFkIieU&%SRcjBo#6udOM1+XV=jpBBAA!<z`7)>674@
zA9{hUxS>^Q+YORVN6J|T$E4zLo1~^Vb`j*@rXLEdTcOi!1zi9NLg3P7(O`}RKMVmE
z%xXQKFK%3i-lb22qcOh6V>+%*9D?bgen<M;;a>E^w%gzg3H9)T6;kwsC&QOM1RH|$
z<lK$k{L~2*F%cUSbYKlJS3N&Ful&uu`5BjaXNkQ~StCR$oQKR+m8YU4N4`4$L{G~=
zS$B5S+Dna_b*@As38Nl#d6!iG??R1Pyc2zK4Tx7)*(<LiUbEac=v}Dv=)J1>>Btnt
z+Ut0z`AOpruip_mK_0A5^sO%H6dC8^XDd+O&ZCc<9(Fu3E3q1-jI}6Kq4#M9o%gqP
zLS$JVWC2F}lAI95Wnv@a8ESc2yT;wed8y39Ig0kyYHzP-UZ5{x<dosQ6HNF68ZK!O
z`?A|knX?wY7pfeq3-9npAMBJ(YZvv$4Yf9-ur|>BMjryaMaD@CPr;7O%Uba%$d~c{
z7KGH4Xjok#J#j0e23&JnkjGyvX?BBj!DN{DF)_2Ay-)Lpv~F?hs&=9F{s`3J$~T$-
z%PIAj6);C_CV8B+QDjk<<j@$LU`*_JHuw8_oSTnRrAr68H&@3BFzOeP`5Ey8DzzUy
zv4ZQjmxrPXg_448dnK&htp~2R&%5nyTJTt#ehy7#R}H6_dT}j2zwwc^-jxZPjpukf
zUji<&b4)${Y7=LB{}4`-Z8yzG4X{gq8g8BIu}rAv{-Q{}N3Av0#+|N0OGBe#|9XEh
z)7nKl+|aTmlVO#%i7|Wg={6w5vWwMB$Kt+}<`RmU7x{9f^f26Q3fMomH{(kzhfO1H
zZuY%8OyqZL`}{TyEs&c;eH(FB%qpRvib1-s$i$<b>)YJY0Ex4?xVp;gY#@F(W4+1u
zXz4E7Yi3Pu1vbRFs_294`5EZf^^RxXW^&?G=DYA9<};;h)8%w(RX&8jdC>y=xD6u#
zRu6IAE2V~Brce2!`pQD8a+4d$5BSUzQ9-Vb_TC5O&Mpa@M)4Zuc2RMu2^KWsj~7{c
zmN}Qog&vK6_niRV;c7|z0REoFEbsdhzm>s%Txh972)!s`)MGyC5VHA8Y_hJ8(c+t}
zW=L4*XsYeU2P-O({8h05>0RZ*K<IHX%(<7Jlo4E5AH>R8`1p;vX4Of2ncSLK6?%*5
z?wM_!#>ht_S&356P0K=>@B)50K*XFeJP4ml?_Dz=lohm|d=pa;jzzQk?AuCl!L;cx
z$fIMRTXw<{M5Bu>?^S@MJvZ!gTmuA%?3Cz0`fS2hCgrq%UU?ejG8@`LgU=kx4buy?
z#D)tuCc_r=MR?!Or>*5B1z<eexti+FQtY2s6S^T!7L3^w!>&sVUPI3$X6PR5%b6tz
zu77dkX|4y|WmSv(!32+DrV?$%^0=x(n%_zMxk2*>{I{lBHFbSD!aj~e1WaBQ!-p=W
z+)B#a7b#Or6%ib!V5-uOv;iiEqA{DeQsA_HDtICf86c4Z#|oj-9z|v97m4{#@eDpM
z=%%MmqW0%VV4!)uP&_>F`~~S^JAh33K2gLO=hXgZ^)#$_UqW+(HEKS-M}AU}U^Ah~
zPEQ9C`!dA*k(&eAx?l3lT4AjA5L231He4?qBHOi{fSGwougt;Yce``s=EDI2cwJBm
zEem$r+r6lwOnZ2?3WYK(mz%%*p!#uHZ)4{ZkA|5W>OEYDLi4^n_HvUwJ|O3EM=s>6
z1FyU5t*SKndR77!OKn4Ov#SmEs(ae3VAlrIf@2aUs9B5EvGLZuN+)d_@}~Pg2qnM1
zD#LlVT<WtN-6KtyZw>#;f`MpRN#px*hA$9vlTz^HT1D|LN@g-x=poh8EAtpcS$y^J
zH~-|Dw}h>?MK)C}{*9%Td1%VS&G8KLDhC@wNQU;o$u!i3maw3t7U>Cha{aH4BBX}W
ziYNW|i4nRoks*#ffq6W|ODU4d?@4L7<$2GxN3t_z+M^3YIWQt!0ii6>uUcg`;TOIZ
zFh0~yqOyBcgsrpA7+^D-dSPJfLU9f=Gax7NlWOaYj}aX+;cZFTcV=%8g!a=>Bm*Z0
z^7WqdXjDHILy;NSm|e|1$h7|-s+D1d%^>o+^i+BJh7w<JvAamv`)W#h&uh#yO4bWF
zx0NsgIAc$VJWK2QyxS=@6!;}1AdqC;IdGmD=y-%ux1_}orDGQIOP$fA$>zdg-Xy+`
z_+On#m#Iirr!FjfGRFVwhw-mB8BCk-Dd8BF%nq7Str(XBS1EtM`lRNS6U3g@wOCrM
zBd(=DzxrA-SOj7nG^|b1^_%%;!QJKtc9Ug_j09uT38=0Azy3sMYKB3l+_f}%DgeIu
z_6Y+1j0zY}`W(<U@vvKukslh-VLBf+FCgo0lMRB$1F_mu=Re&||IwErNG$BgPCPls
z(<z#|Bb7U#&Mhk$1h!OK#a_yuW|>WDKeXii<@PZeCFW6}VW|VvI*DXyM6chR5mcu<
zD|&NZN6~M!%_HRF1wUdSy_RV1iayKZ$0ewFu@C~~W+O8lH4Qm$$LP9;;o=SPGyf6t
z{QDFC^ZUHK&(cF@k(*7zgu_aosQXOAM)PwEvyKgK(DmOzZ=yc^6Qr#1rH$rH<e+W+
z=>()GQ!_C&J6w1SZn9ufvo^||qYm27PCmh1saL|iC@r|B%{srvu#=IImE=N2L}TGL
zm7WX_?Dus3pP1u+{;+*Ch%ki|`tTO85F<%lWh4EIuJVsppBg2sxaVUw<W=xbx5Z;G
zysi3M9t7uq`W^n^Ise1&`t$pQvCbF}D+qA;{Ovpbvwx^RZ2%b>j7U1pKc9i0FVY`>
z)4%-vyu67%eQIiA^mQ;k{vW*kpWfno_LFba2fTkh<A3=%em`)c=Lrtn42oz;C0+0d
zltg_t{jW|ru^Sc#8_9uN{pr7fD}MjM|M;=!OR!I{kql}z*8X>g*~J{@|3{xDO3cGI
zfaqV(0sSRxa2)4_d|;MKK6=Ei*}_pc+%g9~d(qi(0xjcII$Q!J*@5}=S}4EFp^U7|
zdo`~Zv`UgR1kmJ#4x3x-8*9;u<uVB63N%^Cz}l)0W(0!1Pn$YvzbVjb5XPdfCQFVi
z$<c{b(##HkCjdId-dOt{4bpL7n(#nCp4>%R8k!G7P7{G?KrqGV@_5eE$=r1s_D1y;
zo2mcmeniHJ1P!SRW6=(1Mx*Z#@YNT=G=v3=$V*$p7?f|%bDZ}QMfi0(hs;DOgU65a
zbQCNy1M^Q&<R4Rsdmml6pwsXp_ELcjbEyJoa(;e%|LWlsW<Qsqo*R#eXORV4-xk;c
zT7b_^?zo;FYvacUoKo3Wbh73LK#PlllNf_B+QblWW;hXEb~s!&*7=pQ&`~ALFh@q#
z@dk_A>6Dn#6mC7Ga`uuAKiDCQngrhFTaOv;G|N)|D%~V8<ZLAG{w9uDk}3L*Z1`)5
z=(jmR95pqz+IsePDqyR_J0T~yDhgWC#%b3S%@Xr`FNyn#b%Ge<DvOpFURE6}ne;e^
zXg=W8E|kM*NasVhEX<?g6i**v!s=we$y?TX9~A>?t`GFS<uHXs0>=&6m#1g>(hV~~
zX&nU<D_`gH*W}iZM;@+4)I^?_yHUsD0ah=q7=q&58kUz6_UtXf@jx0av~)P5q1??4
z6=g6T0brIx`2qN`&A;m^)|ox^`;C`4bDF4D#cmTp^KZMe7uV^TXEPYx;mnIQ=WsxY
z`^`_*x!jj0qp-VU2l$2TXti4_u;jc|BgGS~5d{S{1B7x%e5I3+OX3sZu-IqX)4ns3
zop5B^#(zdGJg27~Y%O<V+n3mIUNbImY&9Pubyz(!l_rkMbibD9Yf*eUd~FfNZym(o
z=;Z^U#TwP8B1mksS{!LcaApY<dX|Zy7;GyXoq41R#r72^6JV_)G1e83^?HabwHh5M
zRY69*C(tz=sVqCtl0JTs!@w7A)&QZ`-jVOd{g@Uuv+ox-3GNyj5Lt;7>2wa<{m8WI
z#AL!_F8}S!WiaoUnn@1cboXfCz>qREz}x(ry?FDFW$~l9=drYhg;^KD2<o5j)|4xW
z*D}GC^Z=5Et|={5ZE4%qVx8)H3)~$pxJe5%2mw|x1jl*<4o*&4NXu=3Y)oTt67v>~
zP9eZXT*;g9Xm{fESz^-=D2@3jR72c>%nXoGu2wS>u<BYHZ7t%JW7nu~5dSK<ey3{!
zjvS*d!#h8H7&c?d&^=gUnXkdUqpu8#nY8{@!l*N>m!|?fB%~|~I6y`(k7X!xA1Ko;
zV@#@V4KTp|^!&5!8P8OpT{mREY6$?n>KA&Vbj4)xscv;0*|ZmrbCPRm!e<sc1Px`&
zSKi}VD0HrT`@r4IilLyUHwKa$g<WSXH_t*^njJgFVJayqq5=jU3B|xH^eE4x``(kU
zFEO~kKHG&W=qVY+4(Oq2q4Bxeuq|zwk4(eUA|sl20>^)IzpNsdiB<!#GTgl%g7gD^
zJJZ6KPMp@2I?kc>&u5<6vv!F@VG0Xe^T3^pKom<7EH%(V62WpBuZQsK%HM2bc!0K3
zEvs4FCY|+yTSK-yzLNdtFlM=G+4sJ&8ex0AC+@2@36J8vBJhsBJi(?rW~UIaLay1d
zR2%O5kxhXWgC%Nmm&Z$^f?kkld*J9cWh;D8u^Md7UMul|X_;$$Env|W>wYW%2EXfQ
zw-1Ml`|e8tH6uD;S4zEOnU-;vg0>todUM5d^9sP0V7Cw+_wye7H}VaeNsnkWXxwn<
z&Jo?+at^5t$@s(k?c+V_<cq;^Z~ooW`plXAMJo@qPdFxB1H&PHa6E`Wa78$onvP@`
z?=qftr=a1}i+naIbQXMv+Y`fAmrpNfW3e88#WdJ+-R{+nd+s*`L0N&#ngVas>#Ys6
zL`>XZ0q2vi#*Jm+q;~uwx`gKyR`Lsc=mqrOiq)_d!J~QdR(hwlC9uQ-^JStq4#$C|
zv(r`gLidXjBUxnF#tei;=4)hnFJ7oG;?T;p*iif;X5ld3(^?&NhOS0z9`b+cc>HDh
z%5e;O`!?c@6&0!qywk=rH$Xu8a1$sBq7~PRToCq@Pw*9@<R_`D1m+>unS!JRD0@%y
z=x$E~kl&?!3XpE9qpia)eot>GH&&s<cKDW*DI8%=oSnWamv)tN%3xRThclNK7~P{=
z4L=XvDuG<_e<||vur)L^FouKRu&CXnEXpgq)R+IEXAiFAo%vvJ*IHlb?_yCFr^CUX
zJ(n@CcDie>Xko%>AjX4}{DM5&M!6315~aIsJyG<*WP&(rI6_Cr{B;oJ#eBh1!tMdX
zQ*0I*H+vUWIBumDJ5A4(Yb49qvpQwkpefT-GVxx87c=GDN#q1|Srj%VVQd!q0#Wc)
zchPp=F@$m4if^DAb$!S${bVzMP#RK#kkfY(o@pMq$Aj@r8C2hf)tJMkgB+{%+H@rF
zKw_USL$KXk{{mhGmv^;5kTFtH3|ymOO!h&N;l{jQ0}pt&>^%bf)v^R*?I;vCQxA$M
za{_?{w)1$em5`JOr!8<-%+{*t;jsrsP|Pj2T~RLA0h4sd&K+^v(gN#dYL7B(d7#1F
z>dMo*vwS~6KV!5GW6(E9fK2IJeiRkOS6X4R3z-pxi=UT4biFy)^TgW+RX)d<>=~%r
z;iLoZ+Q|o(w16ji$MrGuy}a7PHmCWV(r6HJ?RCR8p}(~URDc#tM5&!j8D7HMl$JQ4
zHN@|<dmK*Wo{v>nX#{g)6R1H*V=a1>zw84JbB<kyD*o}BWLJrWW=!0C0B2iXg5i|+
zqN)+NQumlae9^A4w0qT%OWl@T{3(zb1a(MH0$jp-LCfxChjZHE*L;tOK;CGK^EA~6
z;=%)6IljrT$l5e8Hi|h#=~R2mx;FQ6<c%@U<1P5SLqzAfxFAdg4g1SU(<zy`?aIZH
zL78C6n+x~Wt)J-XCYru&!!V7HhjNX8|H$X|jHwb?bg{+#9!PBQozPf3Kqnk=L3^ez
z*XWgL(6FecZk^huil_`{(Hdyw;SY|uu89O=2Le~T9o)(n1`W(UKnNJ&!o55iy#?M-
zeQCu9<#IFoKV?iTL}44~4sdP>Xa@dOwe{ogYAI<~pbWS;>=}J`B~({Mo|klv8x~N7
zEQm$jMyJchOv!^AuO4m~j)4aBN_%u)18OVt4mqW!4Q5VjQpQGTpx!d*xLOIAbtOHj
z6Ele!d1sux$V5|^o%z+crf5T20*WacM9{5W<2~D({L)H*__bo3vyY$m)}+D<J2SG9
z%a8NG83O(SINpGqT32xo$5b&y%H0n;LFK_Qduy#;k33dh)_bfsC?M!s7w6;&#Qbwv
zChPAQy`uz$y^1JALzzaoUvL3?x`P0jx?3Lxa9PyFuOjB@6R*9~x-Y*8)7v7qQ=D_6
zy||la@uoT+=j6H(f!M~d$st*n81Yo>LT`}wYuL$0e8*_JRbAx;SD)a&Rw9yNbCPT(
z`EI{dHXRLFv#L}yfL*D!0C|Yw?9ewx<C{6jiE%UIL1KZjb-w@@8FX4(=>Vtz(H;l$
zI%g+72dmp9EEUdcCiv{hC*bZ1p5CO@L|Bv^ygBq1tCPl=!f9^0O0`JiED?bj2OTTQ
z3y{DFGQD_KhrB2Jc~QD?x}%oW1BZJcPxP4|5>%IOEXPiKAJnYUkfXl?_kF&`c+%FJ
zk~>~cc1z`9=N(d5s36yIZ@i3W7ht^7PPn@8evacO?#=fz-vvXHzFUxMKKXGE{LQO-
zUNDla6sEO9Cp3E|KAX77P$evo%6`J;>^%--h{nbq8|z9&ph?FxnWk+=hDUU_$77T9
z(j1-F%>ys}n|e*A+xu3Gs9y@v$et%BMV?~Itnk~|<er~4GCC`%yk!T?JFS8+)-jxs
z9bgW%ZjE|afyJ=_OXbRK@+ZmU>yWlQ@FhS{j~FP1`BZjjkE1OQ2y+@O@nXUW<p=LD
z^Dj@q<FHSR%=H`tU??U13O%_x33u(uJ(D*{n3HR9!!Zu#%sSOWa`FkchO6g2nr@`X
zFztXBfy)3Tf;S@r-_Sc+(7B)=Op{u6rW33%c33`v#CfT;{uraU|FJs^;P{#WhIx)X
z54vEf?25S#67yoJ*d$@=15}CA>cheGf+2dg3}Ex|%*aH=s1O@t{F-8lCF>~Rr(DTA
z;Zwvlg?0So_TJs7jA~$d#PCf=>Ida}T^^WzYuj%a5e2wZACLEuEfxz<p}8>5;~1ir
z*EJj`W!>lA3M%UYi3P$8AyW{&Q$iP=yLbeNMO-HS-aPScn;Js3cgc*4;$@1e3VN0!
z?puLbuK0oYg+L82siuOI2`9*C6xX<8FZk9YP+FWt^Inp6$HCRzGPbtky`?3}ds~1@
zbJQGc#tb_)ZKo!A@`J@kM$l$X5GUfp?3QiS{I=6nlu>qIkQ>Qj1<2!CgqFgJ=U~Ms
z3K}?N%F8^~ihAIA)a9H!v5_2n3qvdL8BTAKN}15w+s1IRrz7S$!XIVbj7#9RQn8D3
z2CAsVGfqRhP988i3`&5-x^r`J7r*)%Khp4CXR&Zy9I)InO~9IO*b!&@0Z1V&LKmb(
zG}3-U47_g2L!ExpDxvV>Z^h%^+`rTzNwq?UtAt15wFw@F{UdjyAHK>C5|+ZQD6!(w
zRBPo)m5SIH>@Tr=88_X2*E&h&<9+v5S?RRxuG!eW%6-S03Xbr(?JgNiN%|Rw-uD|O
z=D05V1&%pp@6q=mC0<EfkYqWpROwD^Fy^g^1a%i@$-8pQ?u5Ut=x`C1@A62DY1Q?%
z4J|VLb*UnHU$I;;ZQ02(9wZJst3`ZuHKJyp*2N({Ay{DPMokdM_&ebQaCM8p7|oyb
zrB|p!xMf2k_DS(~iPv%}q3;uDxB3*LU>%B0M@$TZSmv%=9U+f=Z<{baOhR!9n%LkQ
zcBG2BA#_ihT6O1?)9Mdn%MUgOE!ct?8NOVL^s<F~dGR`Bj20dLV)@+Lto>^9WUnIz
zHd$7ZK<PTEfkqr0MNGs(YrUb6(@~dAplX!Iy3&_W+;}i_Dm3@>n`0z`#Kme$Zt}$B
z(QCszOp&zAo{~()RP;_w#R9-{1ngKPreCso3u?8h{?Lqwtb~NE_xyxI7r{js>4W1V
zVs)R+6+!;?Q=-Swq4;#ZU(n|_cb*R%<WSQE=7Xk>=Z0Lfz4n}-x<>xPrx>gH$Bke|
z&{rGpakMwe9+kF$gV+|bh}o<WP!C^J-P6IcYSLCo77z3tQKE2!=V!63#H5Rke5^$8
z0|>lP7ko|;^4xibm)~d#{E92P`0k(DBa5~8mwoDDa5BC=lK-h&raq4SZ*?L-)b)sU
zu2o25A0V;g9EJNndb{bXD1>aCI3DR>u3e=mUTM~-_Nv(I`C^64$AJn%JUakxX{Ckh
zE@Nb;_Dw_MejK=ys@@s_#MEzeV|5ivC=ppR;l{v-J4oVM^fus115YzCJlSUA(<zHz
zUETc(+HWN5u7sN1@e*bU$p+V7ONaN%INFMeo+@lkpSdy0#VFwJ^aVGykf;^8u{eFc
zu0AHgrfUx6pykUWlrAv|V&KH_GU!Ub_bRg8v+LktB9avAuOr?kR@3%4uos$XxUO#P
z+dPz7n`syJ{uZH~w)iPllZqlY9Cu~K#28%d0?x`KhK$7^fu%gEV#3&pv~c{pV)j6!
zYPcw2cno(i-60iwKfycv0enog#zC-iU6csyrudK<q&esUI;lalES4sGu#GHqi=mnF
z>oliEE%%0nfhmd~rMVXy0F6&G*?w$Ue+MX@K07m9QHrrMT0A%WE;EM8{yYo9EA*;D
z+C#a9WQrIY4%ZY{az~3%Ah+e1OQ|<~J{`Wq{)Gzrbl7FDJeivV<xtG+k!PCUb|yjO
z(Z71ZQAU6M6~`JT&haD@L)T017-=a*g}~+++sSbCfl;sOohkB)9KAZ)&z6qhGb{_P
z=;n0Sq8O8373gKw<7W8wM)cTfI1ta+bV^=(s-~JoP7-mGvAlDx`x{o}($=j5%8X-~
zGX<bc^iZ>20FmM9G!v7;J<O~#E+;XZfP(*`A;OOZ=js`zOa48Cn`COaiBlv~&WVZS
z6s~%yki~Ooj^O+_Sc6gmlH+hnrcO<DoZ6QlIA0{-=kWmt2UZokDqoi9WsX=A4K|`2
z>c$+~WSESnflTah2Z-!u9yh?AHt5WP6tczL=hubpf7ehVTA+v#pQie4mHlx={`3l_
zGZ=gG^~J$nmd?P(;CId2G$kyOm~zJ8b?%f^XWJtA!K|J9!ca-aNjAgRS<y?VS-6-|
ziM2p{x?S32xO+zHqR|wl9Hw+#U{8)Y;N;}AaJUlj#u&gJ%q*Q9?6Cq19af_bfI<^_
zur)dgF{mF2?t6)2{Hxp;6r{<l!TQ{Ql=)uBa-dRTAjc$qRw}MqlOxS9OeYGB83cO3
zP3)`^lhNyjH|D$@gL(QA4y3iQ(Vyir2`|K^sI6UkHTOx7-&0b<Wt<`x!Kb~EaF?M4
zU5oHTG`^{2abz~F#(uQkltV8a?YAic<?5nc<rwXCaO+D|w2p3De9zd?AMrp)Z?7b=
zAqTBSsCSz3IcijN1kE`mI*?58J9<<b&qNe&=Fq;O+x+jR^`aL@nxX(%7@ld642Mm5
z0J<K!G)hh)`ZL%9rKm05WV<MwL%Z^8Qp@3P$*ZUw^3GxI15A)!84gAljRAVav2KA|
z<%^6#=*7qr*IGE+Q?8TC)gQyzzEk6V&;lOe7GZT#UKA+$iVkr1H$B|Q_2@sw!YlOB
z5kU(1L7G$0#IO295MQo#+jEE+X4KwH79DVi3V)zw*o@<9QdT0-+^IOU95TmbE*L%S
z9l}-R?$*{mZWq8Bb<3gAInh%@9b;akLV*wwOGvOBzB#GYI1HE23Il#YX-#2fgWG(i
zB)u;$?#Jd`AwfOOyF1(^RP`fp;_qM}vHOWI_ea)xV!5w?!9tY*2pzRk8e7JQ?uzLS
zK1)5EORZXvXnIm4ASE8PRx-Fq{(3oRY4$wa#h+AlVQZKQSJ%#G1-pT?28?tq4Ghd3
zsz7!a1vULJFybo8N|Y~?LQ+63bnsA=V|w05j43?5uO!*SFiFXNt#j7_1m*%n$!Jgc
z*i&p~h`MFQ>@d(7;Iv5@^Iz1x<*;xs`B?U_Rv4dTqkoCSGCzxyl;pH?B6TU?)`PXY
zvP@1(@B?LimG*SOQh*0n876fTsAR(z20ER5xfa1JEX~U6`vyYk{7X<2_c5E!>0s%&
zoc{3XB~9Rfs-ows!?^P;=7twmgnrtsa3nqPWS*XoF8pzB|N51}J_4NPjN-xc_(;3~
zcqq{rENk29qNb-X3-%x{Y9-=zrox8=xoJ_rC6gnh*b*7z^b=X(XHhG90q777%DhMn
zdb|&v$)>shG{XC{p&ab6`J=(3xZji3&{~l}9Tl4i)y@o^xRIz*Dr7%w+i$q4*{vu&
z#UVL|qm6^)w!t@*!C>oD5UxChT;ALQ%j7<G`dZqSs}#ra(2SqlyB<;QgWA>M)4=Qf
zlf%r~m3^qJ32tqoSJ-DK!gbZM0iu4U)>T7+Q=Y=H1hkW#4?Cb#Sg>ybGh75t3G+gd
zC+p8Xn&+rJUrhYnp7LYrclxXX(i78U*L+@wo`VOY2fky<f$J4Yn@0l}d$rp9N+8<u
zGHPJ$uCm!^my9@aK{nHnv73FPT+5)T*OI)#opRpv=^D4KWtuGAab?DX2o~kKuXA?g
znFHh2sdT;+Lbl*?5KIaW1}-MuVId0;8g^2^kJqNlj!}7tv&T4ro@~JZ6KUbjRyueB
zA(H)|3_JxekY_po;!E<&fU6u9#bA66P!IZBH%G1BeLLyFZ+<(<KqZVJUGfzjyDEfL
zJe*d=_(_C|sVf}o0GDVzpU&dIS$dYc(t{}G8+xfwggMCIye1q(<=LN$iil9ZVj<ew
zuQgrgN5X^|#4K22pv5l0=V#vZGwT78=T(exq+hf#G~b1%d$DM<4i;{c!siHewUrLY
zQo0;FDQ|WF&(_ZT^SC`ogW=^iB{m;(d^<r9Z>HD(CWvq9;&}&xUGn(%PbvtE@dniO
z#56t=Z#%=*`EemQZ}*4fi-`UZyFZwT@o=z?^zT-MA9p!|F7evY5vVRXU`SMIG52E4
z<^CRR#DjAKjo{YU`sK}?I}z;Xy~gSCoIm1ud?F#Y<6)w6oAGcsZ@(op%Edn?x0ioE
zi>5VzFxSD~d@99_g#szHtlGh~J|*W~mfm0Bf~pZLwbx4Z!{;xPEHpH1bJ~w8lcBeT
z3tW0*$3!{R*});i`NNUk>tNtRkKBVc+cnygqc-+Y1DQi1ROM#JN#Tl0legG@5jhnF
zOs}46J1Zah=F@BPF3Mn_wv(MRTUQYFHE<t;*QR?x|7(_t1r9Jh)2|=_V+U@)_|T=s
zkT!d02mNR(P<Ks%Wi1e6B57e-4v>9Go2t5&A%wZ;hf$=#?mq>n8;`T$6OCfia4LEm
zh$AB7%aXrvH6>fF>0J2BmwIq0{Zf%dCRdf`1Qad(MhS~XPSNZ%9zy#2_|4N#7KoWK
zG=Q#_X1r7xt)_vE`P`alfFPqVYIDN-N@)q;tv*@!e7hUH=2wH<r>&S5R1j{5cUk^V
z_R7&}uty}c*ge%emP5t_eBX)4@sh`Qy1VnI{CWf+umHRU4Dno{%4&gDUys-hh=|W)
zpsMDlQ)ti0+5+2~Z7O>dv_u=5TONpd3j42$bj%r_b$)sJLZ#v6<8A9?T}~3jz1hbg
zoNr&)NuE#~)Ve6P$ub`~(CZuter1?gWB0v9-sEF<5j;21Eu0O8Ii_C{y$-h2^#Y#r
z{MeoSf`AkwW~9S*?x$t-FJWW)E7)*x%B$+W;-^ET(i9|0*;46`KzfzTG35XpPQR?$
z&A?`hTE((CS=p!0v~Kez+e}y<?)%|yZKZSPtB0TDar)ev{nfh0_gLCckNv#Le&Hxa
zcU{gW^uN06k0<#CACxKbf-ApL`Z;XZpju#{2595dcHnR02zD@)X9RgG``Ka~)B~`e
zJV;B1Dc(o(pn|<h7~-5ohhs@%$>Q`V5_O!FxU8qsWWZ-VCQQy{1Kv=5!sihF&=c=$
zPF_-+A}!7uTg_Vo03^l?Ro1|wwDOAM9X(TU!MhAdr1m;R$>un0A2BSURc^=bB6b0>
ziFc8W+Qs3`V>Px)ZwYO;4b?&rnDr;7VuBH8NSFtfVCG44gK2WMvNCj5*D?N76G{cr
z6Uf<8^p)%GU=E>SGN`5K*#$(khZqdQ^#P-G17hnPKR;a<$=yBra{A<GY;Tv%1(OT2
z!?G3SfbQ@#?W=~+hCj;HD5M*ANu|!35oR(}%7P(;2tj{IYHb^5yI@zm4}ZjlRVE;H
z-IzpncTa6_V?A*HP*A*s8}(yxr)S3|qeV*h5&hdm7N(}cE*DV|lRq8Iq6cc$6GGFa
z?$%mqXFuf%_n;Q^)#nWjCuNLEU)c(tnx8BU=I$!6+Rjm^un=VnH8c7=<Av-E%GsP4
zr;2whT-@v7Mz;)*>GaQ9%wLG=_P`6i7e82zdKf<SeBiS^+MNUEVUxUM@e!?uWpIhr
zY_8S!bhEiDo-i3B&KQ@{7V;Qwcj;Dd2+li~E0>p`O9AsYfT*DpjDpm!k6f9F$m_~+
z-i)gas7;@VmK<#keKG-uY>*83ThN6Yn?<!G2#r3l>kvb(&vdZ2g2Hx@$NI{<_!u>6
zU+>p2WIc~|?Mo8#H%F2q_A}nudsEQUPeR4W-K6qe%B~8NgaF+A330N7B>x7KFtK5e
z-N8G4RNRakWz|r(Eqd71x@xSt!v^6uWc>jjGr2{TAE7pZ#HAb7Zwf&E;bYnQd8T^|
z7{xJS5J&D*=`Zgr-YS2Y7FpTG-z2{r9HS=AW+<eZr)k%*nz|r`Q|-^v^gea0ByZw&
zzZbE=RKr<|x9wo7ThzKqJe=E*bqk|7oMBls>P@><KUkt0XFQKlCt^YsK-jCuL(g{O
z1|OI;C-b;Q#ZX<oW6dAM&J?ox?Ku?>fBHmtZgtb4o8n-WZS;>B90<Xrz#5*(461%w
z4{84yQj}%{nsD|Czv#24KVT-|cx><|`CLdq@~5?7jdjd25~teiKI^c|_Yv-#h<Ix`
z24`$omAPGP9LoLTLvzn9PgU3j`nbd9zlEccQCQl)_da-mddl5BU4wn~AQCIQiC(|5
zaV{o1E}wTL%SJrP4_pWX+2>8fE$3h74!0H6%;;B)4Cx)T_?@|Pd+?JPvfv<VIH09K
zd+cl5<5TjJ+;p#D(Ej<n!s`ZzD;*qdOqYo|cS%7}siYi+zL<(vyp9-0?rsXuIT|q3
zHl!YK7M)udcZZeTZB(XG@@hjP!?8KPmK00^6||1ti8&k2=LbxxBui(X|NAN%5=NCg
z{kPD$;uC4+>3UJ!IA4N~;ATCWYp^>IH|-T9ZD`P0^CBIrlZYc<-Obc2MS%+N1^&Y>
zmktq0=i)aTnnlKX$2+0Ej!@sg){Jj@S6l_$-j-gz2SmqvSG6I0oP3?kEyyeiJLNt0
zZQLZQfuA1V``D=fLcGh)^SDf!qxX8K0}3*mt?Qc4e!D^olE6Aylyr@;5c{dr1D?o<
z;}KtTfpG36y%cvW&2A}teG76JcUx!AVx1^J4Cw58q&?2*K~5w+LJnver39vaW_OGl
z*o!mb6qI#ZqAs-6bRtq2I4KG<jX#m4fBiC~K=|3-2lb}w9lw2&zkJ*8-x_w&t1MyI
zvNZLfPg|OI1PKF0s$Cgl8nUs=LLDtJB(b8z|7G?s31z_FFi3erSpMUz{KG4+hje+5
zK3^?#X*%jx<h}XLt0<tl<6CJY+%w4Lw;ITg^;=z?*W&*AvkHI1HFym@$cpQmQ~$bN
zV$L?b12$UXmac>4s4)ynEHLPcgQb>E#$ZUXZI%X~p0CF4d`yFZA&IFD*WU;!X3u|W
z8ON<zH|aY6dpG?LXY}J;-Mutb<kE$$6pMPaINn`N9lO67Z@`i7>Zq^(&A<NjRsH>P
z{eFU6qoGW29iTLF{ZTsnX(jkizPy_ZhcT&7WBQNI>)&1AO)lWNZWi5a+x++T`5%74
z5OEA;)>l^jAKvqS&%~eKykLTP@=RP~7k_^8{)8d@`<K*#*ij}6{-}RFi(X+T7*#St
zI(L61y#0QG{_wGC<Eit2?sla(%0QP<sluo3uiy3$H`vdIQz!tY3Zur}tDK)u<DXWU
zfB)rveRJa7Gq7r<IGpnN?+#;tIZVOkHO>Eu3kz;4)Sj7l7YR=OcZd0mIgG)ge96iG
z@HG78iSxRGK_g!dP~iP{hY7_T=JP;;IsSjLiu`<$|8S#=Nx{JBO0mF2y#MMjw9;^x
z&|;zfOaIm5?iVJEe0d4~Kf7(f+?=CXowv9`3kmZ{6SV;Mj|)TPJZbK;1*$SnPio2R
zl<!4%x~j6xPX}<2PaO~|v*wbK88*et?d^A~Y2Ms%D>U0nt5lOTafT)>T8YfCr96tJ
zWpl${+0;KA7C$eTCq&j9a_?Q*gkZqvGTUjofKccuQPsPqn3ffd$p!@+g0|99M128b
z()oa{(h36LR$xtC9C!>JtSmTugFCXt!djirsTg=rpY|BiVZXouW_Hs9+g5I|alyNG
zEtx$669Jqu0Fy0l-0lq=R|4{*zd!55j|_GCi?D#<G`#%R^z_7wXE4mz2hdNZ0jP@v
zJO$%S<S(!bU{W*y8U2__=POEUa7Mfh>{ufE3yor6J{3LNmENcofjCY4On7n0O}3bz
zpZB|wvxrQyyAxwl3`aP5B&kuA5y$4+FixSu$4Xc-#f0xVzs}gi<I~;eK3t65#4&mM
z@Rg5DD)OdGD(Ul>GO7pn?^b<b2G-swFN_%+5R5oS?+k-r4-?e4;DVv|0Kp+FPWzp;
zUNv?kq?=sD*u+&V$?^^xfS5k%aWJhA6DFk+6RnAavpEH1uz-6TfPt0N6mpsMv>cAG
zKdkrlodl{$5ZNe{eEY}J;NWfRbKT7-G*r;!8VW>rMH68}e&}qCX(`~!+<4jTXF+ig
zpKDtK%`GO;FYO)hc!AwJc>Jl?4|>|w>+pni+GYFx+v53AQJ7bBp3cBf?Nip}NA+hh
zQI_oX7>3t6KPL1Fa1i7z2tliie#nQ7pbrV}Qd862Z7&Oycj+P2ZW<_SHILo$=`XUj
z`;~5*+4%`WHyzJi;s&+exd)s(rqb2UpNh)!o=4m?^<WK|Wh>NcbNtNP5Dn~;Y{WpR
zl~rN&cSo9n+bI7Xi#r>*Z{tMwM!>5{7Ho4X7hKA8%#tHOw9WUw#M9OBkC@Cf_g?6&
zHm*besXYTJL5B`lI$$sGl8o0f7DGD)vp2x&S^!IJ1vFQSNcQy%kJ75tma{^VV?AZb
zqhEv6gWiCp!F!05awj~mYx|>Mcn|vsj<O!*zbz_ZH?VF>R>8Ob$~MIyXSN?n)VEbP
zh&RE>sjnSl8N*99Z!(REN5sflc7VxrP%cBQ5Q*LF;ocFcB~W=(5))p7AF%LN#YDNp
z1y{go{w*1Dv%=_-p@~!)*Nxry1qZcu4)P28p)%)pw2k(j(ISV7<YmJhs$>t6m$<uh
zwm6<S4N8d|gXz02Bx}79D*TOIDq?r%u^lE)om3P^&GP0UGBAj30hCdZNOo!fvVi(~
z%kw;6VyFYLpnT(@H~IeQ<=Mpri2OX92CMAo!-KuOgyAOzN@YoS@=vwG7~aAFs3aze
z(}>jRSl2JlFF$+>j8X&fW6C40UCs>euGeTc@x0Z|hYTA`_d7XE#!a+xV%;hQCZ_%K
zo+uMA>89~~LGz<-uEim$t@rxFn*LXdJ*{>kG-^{2H^ed76ka$8ibT2Om>a{>Y@W(;
zd>`9-WF29cU%mqlt2A#J3Wb+Psun8&az0y2{N}@Rpq1u37i$R4b$nsjeB1Lip=N2T
z{S|>Wqh?iE=9jz}3$w-Vga<rb?D;Np5<H#^g}3pQi@Vv8i&P&vJFdG?dkUXDe-Ydz
z0oMV1rFLez+^^s&shV&Qb}~RD{WD9ri-qp2iZ2L0bymU<;mE_)=z@|e>BrUXs>y&^
zdu9t!$+PxPe4`_il%gm@XMagud&6OW`}PT){kx3U>ABt$GMXiNC%zXAVQ@L~ctKJJ
zk4)mE=-t!lU$e=Y>Z0i~S8JZT4NcqSZrv$lIKs6w^2n~*;;*S_Up+DH5wV-Nz@;1s
ztgi3#y}3DhuU@@Ui$a`RkvP^~hwDtS?f?AXsxbD?e-e1GdebRxC11ljNBtlDIXbbq
z(69d@TwFpTwWvrX{-*1c?HJ(CS6Nu(HfZKUl`Efs-;L$zCkku^21ze#kGwpat6Fd-
zT6JjD`1-uBaSvWvdzjb7$SV46@@{UW8(Qf)$wq6?(|e(2A;-=zb71G^=NEu;mWV?`
zS#<Mc==!=Ha2`LzPIW~kuNR6XKDw^OkKXI%S5C2I<`6UGY%ah4MPEfF47|Qo4JXdn
z$t1deTJb5%Z+J{TC7SjYxL!E%tKQrJ5WD8zp3lzC&ggLYIJfT%7+WMa&|bZIg1=?z
z`6`^P2*YNKozUeprcX}_iFkB+y-M%BY{lJoi@O%zpYKRLg-b}d#q+ecB%De8?cT8)
zR}O>q`nKL(Kol-dU*au@@VeGR@bUHwzA*b6&raO+{O!*e`YIb*sIMKp@1*wgiT|h9
ziKoXdd>0T92w(X`b*^&1ud6G0XlbNszKepD{1iGVrTs;p2(}23ugszLIa?1U8p^}{
z<jPA&vJb17UgvT$nHOGNFeZAeJ28BHt&x@2;-FAf&_pO>$wPaeMLG8{w$=V{FD<wG
z^K-57C{k9jtA?^Qj~7E>s?m1DAN%seUEPkeH|%CY42+BhpNN0D`*mP|5w`xq)q9{n
z9je?Jbt|l>(7b>DzWG6BW~P#|GEGNE2hYpX1r)`lrCCM<gU5tO;%Gm|c+LWYwE!OW
zS=Vm@{S}V6(X+r6Eimn79LxqQ&62rKD&4)k>2ofYDz`t^s%UGofclLG>kNk&J|UsB
zn_HEPj7)}o%R<;&z1;*DO=J<y!7$}@P!PdzYW?^%x!92HZ71>%nVAe^moKZ>#t5?Y
z5SzaV;M4o0Yd=<tWoAiCZOXvFpg8)n-^(ditAcJ@JMP&s!TXYzFV9XYtE$qzeEIVA
zAbPqz_01cRXV0D)0O;?1(-65Xdf9Pl=p_J08u~5R^;F&6-JxM&20U5YtFZ$;JxDW&
z)ckzK&d$y->*{y!?&T16ykaPKUi<zc_LkfIhK7dhRXJ^<V<y^8&#u$c=RI~KxpL*o
z*A1^j6pE$H`kQwv$s=Gnnrowc0P{a{t8d!g-d;&X<tlvCIl&G!O-&|3O2NDyR%Yg~
zp`izZ)uPkM62adW`U~fb`N$Ec`$MYmZ&P;d?(I#EfAmMbQhi2*=lTmLr}9U~m9e_5
zf||N%m_15`JaIy!(K%ECZ0-2H=(ackLlAG59N<0rr9f-A#$)t;FY}XgrIb{pq;wL&
zl&V{2O9yjeR2xdu<r5f3CMG7-1aRKe<DHytPl%|m7d2xkn%%qhPDMo}W4_r&*Xy^N
z8}4#l#k1QtgedYdh|mU-zu)!$_~I6i*T{%AALLC6kJHxsMX1HZ#B>|!>eiZVW9WhP
z(!k-~ockbtZky=D>vu?P!R|>~7NHs)(}2|rulD?Nzc=^UO>S-(*9dJ9b{^R*sB<r$
zbBuh_=&>i#GnN7mmcM^35SYS@YoqMXU<VcyaC~lRD!^jbS>tWC_O?bOoijk!HSeV9
zx%=LyRyxyQcarY3ZfsgFZ*QlCoQ@Xn(_6?MT4kaXH#dr3LdxuBLp|d-_waW^U%i@y
z3PO!8LieHf#p4h0Pd{ow-)8o81MJ$=LYaPPopZur^A|J1>f@(dVxO7whKGk^Q>B|I
z5{XJT22+*3h#2$VfvkEOK0ZFF6Z(D;UkK&)ww5DcFMDIk8Qe%CD=WJUZ+h~G$W^3h
zf~%DzUnJ7UNP!}KQ;hVAufLt(*f)bDw@0x#?dx4;$*s)ELG#BRqWV!jAD$C_;HK_!
z#moN|{p3cIbG*wH--xxfwUNPynNw8th!Hs-YdrA5bvonz32DDH#Ft<e-5ZwsE;e9&
zcdATe=G3D&KB|4{=qH~(4OYiW5A`*JnS;8<c<kyo!SxX@`mQ1ceFv0Y+lvBL2RWgh
gpD*(*dF&(X7hx%vZiF&z9fSWQ#pFa$w{^Y$A490WfB*mh

diff --git a/docs/codeql/images/codeql-for-visual-studio-code/basic-cpp-query-results-2.png b/docs/codeql/images/codeql-for-visual-studio-code/basic-cpp-query-results-2.png
index dd8e33df9fe25de4a296f94d4029513e1b6d9b1d..cdbe5941701b961a6c5b926ad7f2ce99895769a5 100644
GIT binary patch
literal 395451
zcmbq*1yo$iwk;4eI3zg1AwhyP?j(%`3n2su?hqV;dvJHx0KwheT|;nf++7?0n{(g0
z?;g2N&d(S<x<|9ScI{PFtLB_*Rs!D3ilaXzdI|#rgDxon{s04mDhLAuSBs1Ye1jR=
zw+91*CT#rn?R&|$Z^_?VTNoId>chZD1jHyIDJ%5hrK(1T3mbVNOQ1BNz<q#|K>6N9
zPEKm-O)dPA0`Xg56C-`CU6}{E`g8fOOdiu%@{Ek%nwWEQU+!kSwp*8Zx>aA|V$p1I
zaC?~sdf>4+7;LhK`T1o{lA0%%6Q*tj&RAL*i|Q4RkBAf8I4sJ058~3L<5QZ#tu17j
z0j-<MlM6)QwS7gpx=Ep%2a{23<kKq{@=>fDl#{DEEHXrxk|n7u1Q@LK#`STy0FsWU
zXIU)5{`dn{zBo#~R*5)d@25MvN-4|{g=M^Yq6}ctXD}SaD1@GTF}e`hqr~&?gfU_z
zzZe-B!WB+_T1HwKA<Q^snC+Sqb<8zXNg?xsSr?gMGvno#whR|Z42$cBgwO|dYa2Z;
zK~t@X-e}*R-c7VqI|jZmh8`lU%fK<pO!7$|Xp=;GsUN`)z5e#qn2TIip)_<G#4W4_
zWQR62{}2j{=bK=$TxjK2`IksKwQqhJXTZslbRuFg<8AnL=9^Z(JJtEv{B!o}tE3+*
zBd1wUTdXxP^=6J4WA1mQDa3z-8RO}9)4Y-PoX&qAjfGN1+c|tSQ>GR(w3Q)kx0W9A
z5sxYi@^ppZJ2#_5UfA<&skgcxFKFtnyiU8S4Fb6%=v_+5L9f*k$O;oi6gn|Czg3}j
z6+%TwwcS2+E~&w{FJZ0Eml?jXaw&Yb*_1{8Qj7;LN5VQo@uJp;g-&`{Rd_E|lc0bo
zi0)Y{Lf&}K7!AUxRX_J}2IFG9kv>24DHiNBIRT3Y+9Z28Qn^QNQB5)a;w$Gju$U4e
zh*)rR&q3Uj@}pF~Q_An*?>!`tPyD(OUOD-sW1VRFDz8tVWHC6QKBp>g!}Yg;#b0Z6
zPSA;V=v9StKqDL#YCP3i?{Kiuin)Anb_>7jE+xnPuA}Gmg7C9fY$uiu3u`jLyULyr
zOZR#FFpnu=<poRH0|D+Ziwkc$Z;bZ0?Y3{|mM`>1UA8ghLlIKm3w?|UsywvuoD-J8
z<VU{r+Idfyvntk#V(;gs>;QAN2dh#|Z|?YsK*;F93=txL9z#0g6CCLm@ubgAD0KYm
z&ohD#5u4XHw=Z>Ni2J#mb2r5w_72OLJ(w=VrA%4vkWJcTb@5AAl}WX<a!Q>FpYu`l
zye-%*)3HT&3X<=PLbnA!9C1PQ))NNp^X#^*t_t@Uuw<iJGGY1T*wpF!dl|J#m+(b;
zm;A4WsR+zpo14S*wlMckO%d0xG<g1Gc3Z_WMQlAhYHe*TvmmK~^?3Wk@&<C-Jv02R
zBw!3CnR#;{%jX?NoF?)S({}{>L<$y!*j9|;9&`sdO)TU$tpr#IE5dB?@R=jtyJ}Cf
zza?nBc!~H!3qcu`^Ba>E-!%G#r&l@#2~tiQk0nZ_*Y475HGzdCgsmqQZFKM=63EZL
zQ~3H5>V$Apnj_;Li@ym+rbd($`w)Q!4(<(4=!MIArs87?uBK4zE$NkCW4DIg7B;6+
zm%uzBy7Je_Ma=h0Oy}H^hz=-!|C-2877Y6N$_Tq2OWn6voME)dh{=hl$y-C5Zxr81
z2$97$I5a_5mH<~*S6=yPY^Y?}j55k6Uqu}b<tHw~N@cQz_%|N7Rz$<CDN9c=dRDCj
z1rgFhn7g=E8je3V61D`|FS|mO;9|6-Evcbc+}_l05Vh&Q$G;bwmgIiJje7ZkYndrR
zA`90nK*N%m7PrD5<S!MF<bM+o(uuJ`r6UvoW~1hbyp@orev#+#QF>N*R*F}&{>=_;
zlahiGNWn${RZ&VFw_r$#L18Y_?!$iItU{HXo>@7^j30?8UU*JaT$Ft{ac^AT!kXMO
z(m<xJFdXr|jKR#pobmU=9}eUfa|;SobDayq6!7y#6g5lSgzp-i;;xa<)zOjAtGnUR
z6S~<#)QLifYB(0(=Y1spLeAmySy)}HC?oZ|V0!aZmNBo1H9JD04f_Cx2}g-h^Ejo6
zib+`|t?_f?7-Q03^@S4!GLzM#1}3MKh9+?)WE0JK3ng#ItR@0}^-ZYcSBP(Z8wROI
z7KfPo7Yo~eKd@T>)rT1o3`KTl9~+|@@fjH!FF1h(R0TpcVm0y>1)DgV1YOl#?eF04
zjIY<P>CX7J2^M^Zzi<AG8^io%@lyx`MA%J4OH!?;JXFfiu}Fx<h0Kmc6iu+lRcn4U
z8m>*C6K_`gt91CN8QXkKi+$KAf7BqeLaeFd-1i1!6O)<H%@RtgJ3igU-R<CeY`6Mp
z)eTo6iUl{I4>1Zv+m!uvOn8iOj3b*)#(B`l;NF0;g2NzZFcox0$S8)PE0CEmYG`iy
z!u&M|Vz6j%-`74#xv10J<rZ`k`%EfZzkZ!)fObHT0aQ@-2~?C{bf6qnlrWhvxm&1O
z2$`9lrJiLh&#Q1WFwq()V=6DIZZZ_FLM=_wQ8Kn4N;Mj(9I1xrK@L249k}&)qxsbA
zz@!4CqM=D7d}3H)4q;efxg=I&k{to-AGbd4kFQJHhgzl{s%_p{X90Ug1cP{W@a@jZ
za^z}x$9i!=@h-vCRWW*T$pXnd)O_81N=#ndCo~b1?>5e0FK+++#^6%*1$$W8iy;0)
z{$>X!$9DoI{LYPqjUSrm8_n6y<3|U744y8+ACe#PEcP@BK^?B2K}pW8#-{qX=Ip}`
zD@Lm`eKPHX-PR13drs#zrnX0p<jx^G5JIgNt*E(Z4g^MoFOla7q0#yy{W|;lO=#9A
zk%*)yPCXaeBRX7&x^3ERG;L-S^%Tbx#BX1CfA%);{^WPz<LEtvY=TDTZPTIT3t5Y|
zgeKF=LI_G&E4tZjIBLu0L+1UkF|dF6`<87@v+62^HQ^hRz6vc2f|F0qoshrGG|S8Z
zlM#!P;0qMH%tsMS#V4>bl~qpnl{xD`x)HjV!WxJz@R@@w-u-+RAO1e(=rt?1m7<Q}
zuih*b$+*anNYTFYS6R{C(J8O)R^N7)kU|97bl)6%6XTlE$tF2yM~-GCOVZJr$ZW_6
zM!%DgkzR<pPQdRfSUb<L`bGci8ftpadyguTt`(9lzD1`-<C1s~*Gzw>;;Y%c6P!Be
zF<3sRfvs98e@4&1Zz46>u$Q~1KJ$bpfak_$!dk&5EYP-VW@UqatkKw!6h~aLEXyWv
zB)UrBI!kSP*oE3%$IaFA#chN|%uJtKr0w%-{8;?vv_zKkpX@2dE5=1*q}j{~_mwXz
zx8ew)X!pU{2^*lzp}oYe#40mRHa;`EF_Hlu)XlFW=t&LEFZ4Ao8X+4EgPI%<B?tki
zM0kme$qh%Na@s<Q_$GK#K^Cu1)GPH_o0ThT&H8d_h+|!tu%p!&ZC^1l+%-nGoUM!$
z3za-LYN=e8SFfiIaFvi3W0lmFv1zRzDDoBreiHaBU}w8e)SVc~;a-%|c=0B|c_!92
z+P2&_WtVDl%A$0(RHtJzB!Rdj4k_lagr!*d!?Agk)>zDtXOc;Eyy>fj6RQHF-6AvX
zxi1W6^aItnHTdT4<y6|@1I&Y(`F2G6j0;!#aSlqG2k{F-iW-WF&cT<AC1M5o69Ue3
zdu9;)#**glJcBv6>-%3%mOS=aPc;?Xo2<f}OSiF3-w$c;c03n15`Xt4Vs^XA)i%L4
z<-G5lRJ@18?8}iExAoxFbn)s&&w$)knzCD@we@nJr-EqCH8D*{Qw~U0=u6`K*GuVN
z2_{3UiF3o&BdJ38P6yJc1?%IEEvG%qP&IC+2*<L6$ju+KpTZ`oS{!ffvW6;(F3P9Y
zuk8*md_zY`=}O?$cw9N4J9Q?>CUM2$8i%#m?yHkSC|rCNDCPnUDK<9~DeZh|2g6O`
zwMy2SH*PaeR*_;_<{p|`#wt$1N|s8y9n*gHWXEJp4#^Kto6B~(aXNjuq0~<THqLg9
zbd@=GSJ2G`W@=`^bG(P|r{Y~w4RL-CXtxzr%y}g@F=rF4yFV<@AbZyXcO}{PTlYv7
zHV`)_rIW>@y93NYOeQj1A;CNLbI|tbHS>igQL}Z+B5^M%LHJP?e^&_%B12*-M(eIR
z%=;+V^tMw%{l=5qoR|J5gZaWsLfY$u^78z!xt<}nT&WAlt+2{waNjvi*ISOPJYh&V
zzT{%0PCVOu=Sb0R(>kfeQ{UvYqIUFFK9#2>=%xp+S8<^&Y`+D@_{_zN1YHCm4lt(r
z%8~{$GBEVOXJi<7SRxn%;1ewH5`-oG=Vvk4moQI$`yLJk#?KfA{y(mf1>PV3g#)k0
z-~8hpE*<VauRs+{fAXK7;c6c*Z7cnl54@pRN~qYtz~Iq5zF;LkP#?j-2*XH%MLs&f
z?xi3l(}>p9nDmkJyu*luk9{d`jfjFOafb7eEs!!B6Sib(;M__6+q+?&&186#NE(!<
z62p<F#mF~93h(_AQx8CNLkS5Bn+uS=?J@Pdv|^0SBKH;!oweQwT`yW#6bY?xl;9Tv
zwAEUJ@uObzI0bPY@V@k(l5{Dixtv3GlEQE};U4hR<iM4{M*<c&n-Kve#+$O97sRE!
zjLN_L)t3wQ&Y<H4I^*=)MgMX=@R5j)<#Z6_he9N0{_ZdS{GToV{zrfQc7cw?Zco`~
zWTD4A<X?OAKmG1^*9up_2Seu>S;wS)|5*QrM%3xjkLq@Ni{Ae(F8_xHaExL-+BXdX
z5;XpH3tPOfJ|pVl=03lBxc?fZ|G76nAf5?wNe!O;{T8NBUb-CcS~EodU+(+6YZGaJ
zP^#!;12gW=<Nd$tSiP+9vdvV4>i56f0QFBaPi!hNc%P9WEKt$kZ^af)w<lB)I&Zu4
z>E%CG%KtnDe|l<mnO6T187h$1-|vSR+|#rMnfdF#8Bc0*&um~=&505S|9%VRxbLC!
zW-F6){~v(>hIOoW@IR8y-w5T`s8)Y$3SffLTJ1*uDbSCZ?0?f}A}x!ZDKaic$^hEG
zyS}xQn&r!QwsvL+CsBB{rt3M!^6lveS$H|q$N%9T!otfHcmL557BF(~Rzi?AV+oD%
zAMS+c0h6&QpDE@unkmlp@meoR25*cb(JeEi8E=fi%^bNT;J+U!qez%*dY=)QH=w$I
zOsn)L_*fN#gwiotKA-KJG(l<ZW$$G#OhM!@{u2rA+oO&SaWdEOzI;Zh-#q}q2ufkg
z{q-{B;og4Q^-_R{((0s-uInr0YS>=4`JRo`^-Ny-?tBWgW8<Da|N6fjdtoVfWO^PE
zDV`x};5sdSYL;W~C~sz2F8g@*YMOS&vEk>mNqT|D;olnOCE;%ND&(M}VQ$Y1lC8Rr
z4jK-9@iiPM0@GSfVoJPM!-NDGYnQ&I6b_gF_ksBHfTNkfy`@|^4F(N8%TBcJj}>XY
zzusL=v0pUidC<~JcG}77*eNJ^@jeaWuo|-5bh&8KKq&RPPA}fPemleAAl3Q6xPc#)
zfFJI~K%1^+p<^}S1}Xz{y=1)cEKfVTW;|=~)>Yh`>R}7f3x|`9qgLD+Z+jsZ5M<3d
z2!12kX1Mfn(Ya@yF4aK?ItRI*)RA1D!QkCWXX&Gk@=mg7=25eo(O(a!FSV-};zS)_
zZgFuqsM~CJzngOJGO^FME2^4&%6HgkGi}jw*Z#U;PiJitzFY2(TP(pxIM4{cO>4<a
ze$(|%!Sa3$#GJ!fU(jvyVOR4Ze|~WY9an~3URgJU18$5-@OmqAIl(ZM@MtGNB=FjQ
zOEB7OC4er}tdp)-5(W<1y48|Qm&}~_Z!*+1l?U@z3FNezMW=$&{``WAsm1>NoMe}G
zwLAR`3^kZt=-g+`&@SfgYzmL&+mnGg^9>v+M(pf(oxqpj3eb7ZVG*WQU7lR1?s}9o
zyNa?|08@K8Y9TICX#QvReSCwb1tIg4j5SM6%i*Y(`R_KaX_3iqAzuoLbV7T`+#6Th
zHy@y35B~Ziz$1Inx}<)|&sz~}ez?C`?h(4TazUXL|Js4h1-7~f<vSp_m^CS}oYwYR
zPim+hyxRt55=PCuwUmM_+frlC3uo`lFhSm6LQr;IBW>&-Qi$hwDJ{QLNS;Yi)29J+
z{_IWrl`eesdF%V=$3+n)LbCykpGQ2NIG4_6H^Y{beum{XBr-HPp}Vi|7ANFptEY8>
zx_G0~E5^`;)tcI$GI)#PtFudU&gf}>LlI1wK8}(T3~1@V4qvpJGqdel$`lKE3Z+|g
zIUNdxW)ECMoG9%d->iB`_5^%|5^;ZWzZ%eNzq^D$dYC_anuL~{FFJ0bGn6!1uOHwD
zBSf$Wf($T;52~RnK|Sj6cC*HQDMya?SAba24Ap@yd0{5<q6IGxa?Y79lRZGi6|STi
z|8n^r@pw{DxX=>y_>s9m9SaiGh;||vujfdq)Xv0v_i?sfd%mJgp?5K9dI-i&B`!*U
z<&=R7!BIA^TVF}vQ&dt{<f-kcHmg~v=2V_Fnn`(AGyXx!XEl`XHH*=8k%cP*Mm*;S
z&L;`Tsg7-au+!@H3sn)O*%5yXy|(a@<^vI~;BC6C(1AEv6<LG>fMt)l3`g-hE?+qt
zJYPGM(!BogY@BUuvDN@UtM<Z`$$->+Uxu;F!5o9D3=4Uq_-uh^Bc3WS0-FxgyQuQl
zJFD!1@^WnN971d*HLEVmNfkp;SUZ*3W3vTmfePJW?$zL!h9OSxwSuDR&&i^DK#DJs
z=9}j_dLwufB$3+8AB{E&+9XJGzaC2?dI4FvUDNkqc3DQXvVSIo`6Kg->R+TLg4ggr
z=P*!~Ppx`h;6sVif{jwS53r&azK+SPjukhQ;1Ha^PpWSa|H#-BPix`gzZ?<oD6nY3
zqD}kS&$7y1;a6v%@p6!3?9E%ZG}EP@lt=5#?mV1Z5#lfM=2$Xb53vm}+K!=(cLRgP
zJ@2$zq&>tjg+`Zb`DWTUC#9X#eqO$Ymr|D0aV^3M#_4Qpba`Ast|)2oPvDxR5&8Du
z2!e2rIPkb{yd;u7UtMzB{t?%%YSHvOJHa54r2`GriQH={emfBC?Ej_bc}H65qSNk#
z0iEuHru*GFwCCh(OpXj|m=bQ&0$6{+AoxXlh^xA&FfqQ0Uc~1VXzQ3&;@4l2y2Lyh
z1Q2^*O<Haw82Tz{x>m*Z_+S~@Q5#9KdG8;+%eVwc4v3{<hR`rs{z}KSpN~Wc|FhBe
zY4-pu!Ex^qu#?zXum>RpXvNS)`#gASPx34{K8cO}k4f>jy})x484YFG#zcl}u?|=;
zDVD%9VH~EEp5qW8p|}`Nc6DUfluVn9bi15s*RBlXc0f`a3Z|~l^ix&vP#9bsz0M}&
zP|l=0JS7TS@>s@}@D#Kz;;JF<lB9(fz$St_xtZ;}yM?&2yxUo&x+Bru_6v$`FUXw)
zSNy5k>vxNZGv~2ru1DPOZKA3Y)qc0vK6dZDER5$eeL>-ex!!?xfBi9w%}VX7^*Bs0
zwiq<%$nm%f9}`m$sx`}RDugX_a+7@59xrkXgc<X&=~AP_l`?}-N10Mn7mVn3d)#xA
zwHuS?rRgt`5|paxu<T>G?1S&SQW(;>)ilI82gYW8vk1I1k~r^`k(%}$F$d!RI&68k
z7vy`BrU7gWlziR?$SXI_b<J`V#YRCeZoHkt$O$}C+#@>yX*}+dZ$A&u012;d`Q@k?
z$N1nM5X^6LUyFp=Bkb$9@1>g3IeuQni)0aKh_kc_dXcTq+_?>bJ#fXdxcK`Cj|B2s
zd}_q@gKy+=c&g(@LI;rZ@Tr);R+w38C-P;`|FrlJ9b_=e0)T>^YEadRF!2-6=`f!~
zyzQili5Kn@^_=w@F%P2=(T3&b3I@@UEZ6H8@%9<6yXyENT?k?6=O(&0w@S??F|pUY
zQ{m{G)8vC3Q);9p3JeI?w#EQ{!5nzqU>YntW=fbWw1<S9gf(OLi{L9c5%v`Oz6~51
zfN}uzv(Pc2q)A$GN|)whz2}#f1N|DXdfWiHd;LNa(aj&DXsb@5@9+;{@D=jR%SqrJ
zmi9KP+ObH#tpzj7W@x&Vq`F?rxPnKpnt{hyJ)8y;3xNeX4!@1S3#|gFK&c>8BefD;
zv*#P?YXT~n9NQt64_tz8?~lkPK`xYiVUqCrlq&e5BWrTswy4>CXT*rjK9+2SnrEi;
z89{(aJtclNc%h`>_(Mqx>%zTmJyuGE?>?Y~%>4)sl@Tk<rsDb1O{=)j^gYLHNI2QD
zDceO}|Lly#Fw!vU^|ocHc}<)RdKu`B1VTw^1V1b)6_FaXmB7C?@fQgVn6;m&TKDWz
z6ho^fLrXhC`MedKlHZ)~mA=J9x1V<tZ=z<h=vY3hDsg3c8hrXDo)WtZKLTtSr~_`6
z?tbRNt=AJwh%3u~+*w&aMYqCC;w5b(Ryn8#)`#vWwGg#v*bH$j_tB+EC#}%E(SZNv
zUux5lclU?~0c^yN#ZfP>OBRqG0lxs`7W>-GRA-{0MF!GgYm(`%YHaoOZeojI+2(TB
z4pwRE_rXTbF$K=vmsnr53%7kXDSAG&3d1Ot-&z;OU8c-MnCgCiWw{=sgqYnt5YmPY
zpGhEJt)#5&qp{MB`ns098WmR1ZYM7XF*}i=V!>{X>8Tu{8qYm+bs+NWvp8Qsv;0>K
zAwcw4zTPdtoU>?g6}AksIjbC#-Hn-I284|5&M3d_oNJwuKu!0{AC?bMX_(Y!v)rwk
z7eL>I(*}^x>MUFCF6MqiElaZz#7~$Xk%?N@vp6|{^N-N`%NDYczUWX9=3?EJt09YD
z`3{0?9JFE|v*I+}>Z+MEp#a>$E}=M^dW02_ag(}fjO%L(KayW2?*r~?fh|`DUc31F
zxoN|GHR{b_i+c&IaIw#nhO^n40<(qtT<yif$iuDNBUCVvBy_0VD<5bNb34nNtv`13
z6s!O)^Z{tVrB&d(f-Db>Sm?X4HEVUj%FP$(QpG9rm-!iQ!bV6I?EjE;SK&N?J)Nnr
z>LRDPA^+|w%?smc&HQbidj`D>!>(bHS@q}Ypx5;;uT@PLo}#)x+(0ssu^~)t)X3>a
z08~4F=R+2WKNR#$*Ci-S@Y;y1MJko>fs%588f-w^{1iU#5e1!O{TM)2oKmwH5^SSB
zl3ddKai2j0LEk-AT_Ve8>!;{HiB&Zx^qB`Ycjp8N8IYq7_hCL2zg0Nj>9qHGPwM{c
z5t*Hzyjn6@;?^EyQw%;Bx|ZRbp?(^vA_!2URVytXLRi?Be%0$@H~!hlsQzOY0HEO%
zL*0yD8S5!Yy++y1MM@)<HpVq$0M#ns`5qEsJLCjckGZq%y!y;=BSYx_wFbCFF9RlL
zyBjXgZGJ)Vj;%D0;87PqDzd|GMXkCFAFv}5%P`P{v}bBt4JB857M%|lcIQ|4=M2+a
zS2%A!LUSWI<`$z%6w-okSVBFw5{?nNBexX#AOV_jwx+sjer9W<f4x3usaUAJNA~yM
zIM-PvF2lTb#wDYe|D<ZBxDD<u3s}c!)iL>yc$QGT>3FhUc?a+VC*v%vU$USf_EGJ?
ztz&>L%Bs){S@myZ7?K1P1*Yb~iyIsm$vvl95{(`_^XWTr9f&&>@r;fg;g^XZoa2JH
zoC?Z*nbZaEcE554$ctP3O2xw|8#V=<r%fud$mRzrrsqn>0W1wh;2H^ify;TDt|8av
zRW({1nFI=d07Dd+VC#LT(>GS15`Y8Ao^GRJIEKhILbbv`4^b|PO0k6C-W&v(7;6nn
zGv1AO-F9F*J@r85P;n~rJVa}CT_twSRKiW!08+C#;}cfaZmk)BwGqZ)e|}iOZ}A_v
zawoQEwA$|qpe`P+*&J}>bLe}rY<=vq!8bOn;d0z{EE>q~-aN<?Jv`(hu!;7Bw$Y;$
zNYk51L>e1Du|l`Ym{q5|`g$IrCPGhakO%qn)f(y`TK*#eu`K|*m|{xR1$&#!c9iJ~
zANdlS=O!7FbF$@vTeRPYH@5~6Nhb|>yw0#gB*gAKee)CGmwZ?<rP6;`H8=!eC|KA$
zS0fJFoR>nMwA;ibK7I+F39wEwOm)nF6mOM~qq|ADup#52WV~m;eFkL@6uW_<r|mGB
z%R!C{Ry3Ikh|}O<>5ME6+&kmqZ}UtU5Jx5SH`7=sEfMdLcRmAfpaXJ$QNu6U6Bno9
zwEZ~&-tDDziP<1tJnK_z9<!_>Xbdv1=MP;CwNPTA8)mtv5<|i?A-BAFrI=r>HVOK%
z0dKZ5n7LylldxXPv35OsrMizxAppW&!QG6<ZL2qWMS!$>{Qc{%Bh_PZVg-oAdQCk9
z%wp(1;LxV`-3KoaRtI2XwI3Br+>&c2INhqlOLCg-RGQeYsz1%nX)Y9*iuVSm6MBM}
zKT{ur^nchU2SGnR7pQqN&HslT_P05o&iqJH1W){_I!47w7iw&0h$x?;d4~{j<kLEJ
zf4`pA4MPBzg0U!YU?U<ED2tMOe`4m4`c5-i;I62G!?;lcQeF1SdM3??WM}48Bs;M)
zj4Hoyo7jwkWbJ1C6khbujnaJhy7y@}x4&kXcXu2-0{-OyUH0p!7!f3%d&`cMJZR~K
z8lg1+FalSUHU}bpKs?}r8*PfJjqDv4HRRF{A>k?ir03plHTzA1kMNr?BHrUv;}#%~
zVA)cg{YlBPI-Vwu@s7#)biqBltJsy&S0=--SPG36Yv0c%*aUBrLiRrG{w$}-d&Kd{
zb`P3cGJuohrw2K`3tkcNWo!Xj4tMjk)mntOufWALRcv3YYQm9Y52=0ObGeU6VoWJq
zU<;v#+tbx^TR>O{QYd8eZ+E-Do@&7my6TgA7bLw&gYDfnQrBPC<v45`z6)nIl6f45
z_pzK!y?~&T`YBFCWHYeoh+#ALIr4Z`HvysvO<j^|SL=edAL*wcr}4BUo*0c-a{$7J
zj?HAVFI=y=oi!c0GHbl$0@%$<w+**;R&pJ5?7e}E>#qf_lT^QBo5AkzSk@;WHUMlj
zf6BML_fDR!0?({rpA#Ev`{-2+VYBeB<CX0h!?ZE0?>Z_e9cBv_&IaMUm756DPMlb7
z^Zc`*=0-6zGB|h9ReO#WlPHf!iAJ!$SiA&TtA$_qGf4lA0Jg2gPJm8Quw7yG?3Znm
zXIiVLZ<nNmR%td>3{$GAn`%AWVOk{eiOKX6k1@#l_yxY1RxjUhU#&%%!16?5dYwE{
zah<Xl$g%NzI<YyV&(L5jZWXGPv*=jl2}!lVV`Ewi`b;Q_crm7Ar&J3CIkGf&_fdCE
zr>SQlgYH|xO4KrXUBtdLY4t{EN(RAdLBmQQL!b=u=^2R}qbPQmChr*;^OG#M=n;+S
zVYiaTlYR~jXxVYu>QpyffCs(^hoBi8>DSM_DY|WGeO9Y#Z6m`RG@=8;nQoXd7r!pl
zZU=e9;f;dzT|)g+6`pO?wmtmSe$WboO`v(Z@%9Zgm>Y9bvj#olb?C=nPAmj?BracF
z%uSj%#q1&K^DM0o6y>zvki?QKw`h<AFdz+w&3s}Ow4@jgB$a(U8m2@#Yy24q?QM2c
zRvYs4_W<~~NVJQvBNx+qpFZY0O+3ow3&q%^!>|h0^%)})w<C&fWlf~?>IA3Vi3@od
z&%nT9n0t?LSMY4qb;R%GmAq#*-X$Ehi&9AO3>%XZ5_lnZ@>8SJlO&0MR<!A4ev%Y!
zOm@b(U+RnNVMp^5y(bGqh!X_C%S6J|8$cqV`qalGowWeKE&+^Bqe_I*&H%4_m*o93
z!DzUzH;z(r?9yNM>-mI|_$d7o7qkQH@4hCh0D?>|?~<d$(^h;UVx`;Ver69p*B5^u
zvCFi{>ctAq5?b<j@-BygW`rhA4JUqujd1k9@%yU#!=?LbKEMZRXqG_<*ql_ivfTp|
z;IEWU0=`F3K;n~3QoX09XPa7+CGe`4$LEe+;4J<wz1~mfRqCHwXJLKky5xyezd*7Z
z^*foP+XfEcQz|29T4}?Jozgt|%qQQFSwSG5AM1CQLgcUUA2NgMHWC?%7tI^YkUmZ;
z6*||tkTD9G3wo)l=q(sPf5heWoo;1@`2s3Xd2GtdE+}C_8A=+$J=QJYWD#4W=5z&U
zVaIx$rpCZcC$1d$7-XCu?1BG^m-#+Y?W2t9BmjzE(sx-@Y$TfaKB6)_(PuMyqG>Xp
zH7^2$2w6ENL&(vt3IqM?i8)-VB%#4%wYcquw-tF1tQ5ku&upO}Sb_Mqrycl8v@Qn3
zZkPsY9ds$g+s8qc{86nukWhD~E59V|h&cJG;IzagguatwPrC~~1b%Hz8~16=hwCW^
zX>R7Nq&ra#x&1HarvTjwQ87kpHyjpn*%2kC-<R2cGcCPl2p-w?c>*3O96*?R)s*&E
z`+*iYaxkWwjY}mk&86R3##eo5JWfj<8H$cTWb5@RWeG@CAdHsu9_9aKJj?k$4g5vI
zx0f{_b&OXKo2|I4o5)I05k4kkE8*3Xx#vHYwd6uwNkX_+gT$WsTe$A3%5y8vPYz$s
zI|gSywv^x>6wuxX2%9~MB&vwSf!+0Nqo8g74-vIE`kZ0c!CSoN@|0?qhLY4W^#GAb
zmwTY*-2nh39+m!?QtVuV_)^iO#;(Flbd=nj;ev3<wEM%|6L-b#)(*j&JzOpjiw&Sm
zol8Ed1{HBzJT!nV1!@;TB7N3^^NMsCWY>;D=M6ano3#V7VU31Y*CV<yOZUB>4?c#2
zd(tDin%G&zh|WUMZa`jUr1r#S)Mj>A5H}*hCPpL+kW^S%{3n802_k}06*Mx$>6Sqe
zx+k8g(b+R2XK?6KF^_m>$e`qh5J0|H*(?mveUIuUvGD(xTC^IeS(M%8sRI$5K<$un
zFYi*kxBl@!o1eio$dUm|gZGrhdXqeiD8_wBzuhSSH<uD+f9(2<=k9E*N7N;uZi~mP
zW!aZ_C1@MUd$QGcb<aihls3_}yfL`4cr4BTBkS$X5Y!l}K09|Zz^cJaDnq&d)oIEy
zU3ZTRwW-FpP35={R;=61mrk-~Z-qljlkddPl7mi8VJKhaiu6xyZCVd7;orP{7uHKe
zrr^dHz@9uJI~{PB{Q}N=txf1C?~?0A?~7rLke{k^!%)v(7Smd5#bAUM!?6Sp>!wn*
zV@9&?zaX5vqD#Xm?x(b2|BNV)AIYkyp0MmKRvVWAivF>^R=>9NW02mHDZ+n%WH*l#
z`D=i0BFPZ4&p`GOSUOp5DE?$KjoTv%hFdhl!1;iEWUL}sfe#Y4a`CBoa~(TH4-h$B
z1N$;#mzJ1t1%=MX6<kk#JV&luh84>Alyhgm2REt*_TC@)07gn)kw#KB0Q+bM3Y%?V
zIqau2N4(8W+8N6|@|t)@aw%Qcw}kRU11%hz^rgx~)vK_x$X_Q3Ev4az*UDk(S4u6{
zij9-lth8Z~RUH_7;nW!S(I`Hv-GL7T!3BXv)__Jb<voHNJm5W|IBJ)Ram?Os82nNK
z9AVylvMqV)!qdP`o?t<i7PlSd_rl3287Dr@=b-U)m|y`}L;ysMRrK!nxsLiL6C6;`
zkx%yA095bdo1~+{is4ZCG-Lb$#qPs*8E@s-N5RW`6?18KIr*u}jcyRKdlrC1er7ss
zXB8(SecimZl6|__?8AR;Re`W9F4-KdHm<^mL`DhpOZYi*8g|bwE*68Ge74R~{dU6>
zT6ZQh3BeE@p4*FVYb%rHhrUDQL8Xfnl_ya#L!oiiwmYDq9e@A$tr34~;xe_p!JwU#
z()k>P4XNx<c0T<5_4wzmqG;*kL6gDhJfh=bTP|JCmBtfOUAEzm$c051e0zDCq%~vH
ztP@@_;hWY}K%)J~Uc7)hVp*?B>1A_wOZq0FS6x_#v_eLB-enmE>r)Ctfcf}c!PPmJ
z6lw1FVCc6>Wh;OQo1sH~-baq57_Qd0D+Gl&IlnkN)xq3bzBE00?q>N@c*(1MBC_>s
zmajLo!^!Q_@oP>6!WiG21?lN44E!+bTaItGUjc2(Wd+?cTG*#@l2P|gRiN2`6aBN7
zzbOz#@Wf^xQk9FkV>pv^7-Lbbhxt6a?--TrJa{HqUpiCbCA?Hsqq(K98)u-(ujUS!
z5x8585}ZS{MtB3%4+Oaf0j1Nb^!rTx2{OoWF<<2AHKlxS0J)6&W>@$#kyq%Q6G8E*
zQxVKmM<wOA>)-TaRkGO$Bc=<`M)x(G_n&j&vev6C+f0!E@WNW}Bup3BEA4>8ZVmW6
z0z=S)L~)iYpV<zO&lgyI5a+|Db%feazt>BJ{ZPoe3%GPY<cE5|+#I?KUw^*p8>m5g
z0X^;CHwP+obz$h5k_E9N)#B01^aBW`eRRBXa##U+P@w|Gk)#~SH_DR~F5O59BS)+&
z4BhS#H^tc5oH+5G<)>RMj)dnsW`@LWW7OmN?x*-iyD<aO8h!l+!qRg@ciyD!yLxwJ
zw4@;9SkeZykIDT~X;26jCsq3J4U${c8rcT#L_YRMD*QqPgOeMo-sY{0AgAXG2X0gu
zi+~QFVUb)ujd_oZ*Y0K=0^Sq&=wkRbujz~nJQ7?-?nFy~?z_c<FLcRO{d3pjTJ-l1
z{SU-YDXiskoP-I~5d!Fv31s>9&+stDa#X}Fxfi;hOND+U2}&vFm{g`(>SY#V73oZ(
z#QZp+D7T~*V@N)^$!~3FQT7@UeL5A>_u1I^joamd{S+cRmNVrb^|cKSozU6Ox98;z
zX7RWLr=xz$A@-UWV{+$?>`=n&L=HwCNd9s&o%zn};(qm<xi+9!?JAPpB?=+p`Hv^3
z;Wpt^A0x<{5FuxvgI#H_Z34XkiJy)`-KjpCBc-el?MYi^A8qhhAGQFXCAEZ&b`!o7
zJ#%@uyX<kjZ^LxMDv3xkEtec=x~=3EwwqG74;ka1=lKIWUS;s43gf0Eai6zhI=n|B
ztH$HN6EY}QqfVNvI#C%hl(!(ZotV?8ViFCKH7k1h)1x*9e;m7sc0hB{+~C15_3AWX
z(Aqa|Ue<jDBmv8arOrj~GHiIF%h@KYe87;elLF^o+N3B#e^a{_DJAwD)CQ0Bc9R);
zy5d$K7QM9Q{v8ecFlSmJ!-(;n6Wce4a?S1{sXP>*U8S8kQk|~-uHpU-kEEI#wDKw^
z`Il5MWaqvr$s)HBe-s2~NEwF<_FIj;CK)h&i#0^|ZR^v`=Z3~X=HKz5|1c|b)4)9<
zm`a%YdNXe4fW06P*5((*@u2%`xxtixE>{U`g23H^W-3`(dDfFxqxrv-iduH^3)<sa
zZr52x3?n3f@?M3<TQ+=j+_sfL&`2SD#)uR6r}2&;WlH1OFDchwrIhx$akN`1DqS=(
z%*um)HbSB~g1|mw6563tZ`ZOK->n@uM$iUo-|WIuWyBju@1hFh|7Gz!tD~%sT$DFf
zKOvV2C4Zp0!Q2vA&H0c}J89x_U-9a*lo_tr!>-p+&1QdB^66l?g!1wLv3G^VwONTv
zk=qQgpiNW=O@+gggRTPdZw55)%VV<@P=T4KNuH14MTDG+EvSIstu+Twvx%>Y0Bq9I
zPc3mfFQ_sbS2qY^Zg!a2sWk^mBPC`HfM#kk@cL^k%##Z7Gc?l@z_3t8b^r*T6haz<
z^ra($H=Vn@cfQU;T!3s!0GnIERQ9LZ5P>P&AhjY#(ztMSh(ravee2Q0i7E#^V%$WC
z1@jeKKzK0ZJTE6TpQdQDV~~m_rxgo4E%S+)`P(?#!0B(QZ#yb8qtvJR&^t{)vCbq*
zx?_H-aoj@Q-1R8+Lz76vjO|1wAI?kM*L8)_A;y8G>fNxKSl9(+fJ8>e50FgO49k<}
zs|xzDd29?%dlZP2pP@f6u6%&cb9rGqF5g8>dLs+J)_KpMdG)RqAdX)I9lObRc@8{<
zQVD1M+k-V7o6aXufoW%Krpa3diT0dM6zUe>4&B4wgohkET2zjT0sHAl@kA2dFDq%t
znBmE8&SA=}X--p$5t3`L|8y|(s696Crq0*cC@7&eyYa(Wj?gQ&19+E#Kbt5dv>Ity
z+Mtb>+$d2)fUIC#Hbo~}_iVp%$~To+60ElVwQE!<rbhYG^*s=mtgg~lIMngjQ-tI?
z?)oW!WF%4nY+#H`{2GAx>bN#zp+j5{e!0mrHrZ3Xx>KPdsWe4-@e`2<dRE7YbP*!0
z^w2eaxpUj=)5lUZW2A1FC80Q*7_ns*r_QTLPFJch<;cw<-eyOlxCXhUfVdZEm_lQ!
zV7^DmeMo7M!NoPEspAB-2!G>dMMrzIP6@eysabT|ZU3&FYw}hy-qn}cHmeM5F6rtk
zX#Z0L=^RHup$|}>7b5EWpVk3F_{tZ`@t>Cp-b9p8N=vgzf<YbOtih8zEtvE{2hYs@
zPoIr{%w_|)yR3Te%_g$tAvfTt$lOXWfyxSurLeK6upjUtU(_91?mrInTQ`@$?Ylpl
zWsH1bR@$ijyEg0BV^t@IWQjC}Y0}#=f?j{dP0J>%>P@D^je8yqKV~YWV>}z)IeC8a
z>FRY~+HIfW{aAT*X{bvd#DB>a-~jtEXIGnPVQwV1EDXi9I?r5i3As_^9lr~@=QS&B
zV7O6SvySGoesfyt7)E#JH(SFz-UEtG_|5m{B~y`0W5Y~g!Kz)!PW_CcwcT;4+|fTw
z>`B`<KH`f=9OcnyPCvoq|7m{gdV+gIeU-bN!!pQJ^#k`tM!^4!8Svy-0?v`i{JtBD
zgHyWrHwkT7qy_j6w9GXT7aQAi>a_k+I0CpIbLbO6ckyOfZHH2+`7kW|)qS^rN#k57
z9;NGsy?QC`?dT}td)1YSt>^nMvebGT0RKd%5rty{_qcVBNppyPhBq}s(3ij`1u9aZ
zUr(4C_R3vJ;tC<agLS+?WqOty^%7Q8DpXEz1emUg$`Qz9qJ}oC7EOoTQwlTwpn(g=
z6x+!FZ1Mj7ZMnu^kR4DPW*Q)}&bb84KpHy))NFgj4F^OIk;)a7rEZ@#G6X4;vvUUl
zFONl9GMXNiS@zcW-KNlkic|xTCp(P@s-6p=lGO0enl%rtx6uiYZ`ME#`HD8)*f8Qw
zYB)8N?h^?;&HOY=RoJ*it6iLcw`1gGBQCfJ9>p5O%t}AAZ@Ez~>emhB$-X!dYZjzQ
zKYV~Z+-Wj7efXT_PMORU1k*u2Pn%@=LFyW~Yh86Rv!yxqalMhMS(T#lm%JY<Ul1Qo
zY(ir~DvOk}A<np3;i3MkYEy)rRDmEkD825HeM!^B)5qdZqgWcSLu&(dui|$Hf3ort
z_`+Y@FD@>(2fh9R4U;HKVe|Itb5LpM7y8B=27@KJ7bwSuZ^$<Hy!&twook-uxylVV
zx}ldcsPho|CV_)l1xGUqU)y%Hm#c@w=9$t|Gu<&;8{Ux>UI^zQKo5@BSAa@d(bR^}
z{c%{;p}#uUw3gSb{l#ITNpYTQk30XEG-#q3SG$@Rv4p?;?9n!KH=TC?RE{ahL%XM^
zQk*nOWj)_wN#kppj@(^FE3$jHD1r`XG})W00eDgz&*4VK@#Ul5(7?Q6`_8XmpBS)s
z_ZEKN!|;99xzC!J>yHOoO`e-idmTjwTz4;8Fx<P?jE?|+l>%<nW*auv0v*HYJ}!2`
z)^3q9QP5KI>lbOC=H}k<^`9KAxW9HfU=9RK2fx-<4Eulnkr4mG<oB71Mc!nFHwo2G
z3uI9%$E|I6HVcjyW)zRsPWDFLwrs>Xwy&NsKm`*OStq}Nq0<Sx_w2<Ge=aKyE|RuT
z8tGFP#oFXjxcy;`ts!(Vty`vEi94!meL}%DK-#CTPx*=J8-uJGS{wWR{SD+nBeoG@
zD~*}}?gA&L=FkNq405|gqu0=P$oGBq*>(WIw0-objCgell*8%-;g&z*QQBl^ul}SC
zJmG3S4ynZq6S{YJ_8GT{CM>)CEUbv=2?7aHhEEpqI5NYj(R}pKv5c%1cnKLk3KV;%
zLmKLQjj;birj)LpyD&1ne!?!%VhP!WWn;l|FGdKpfT>JW+0N6J{ziZC+t<BQ+aks>
z@yI91Hh0kqvH{qN00XEZKrxI{x64CEuKM8S?pRBE0*CnIxpAWGtj*1S&1HXJ`uSRF
zZZp9qn=3EbnLn}MO_&Mdm<v$Msq?gnJyVN{>`lUFujTwWV~}Kqmx&i~5W=<S&z!a9
z<?KgdEm2Z9R9U1X)^bKE3}#ejV>#WoaOcw~ai)2B)$VFMB5;Z3zfmU+kPeLHNmUCb
z$!+>S;7lBXP<X(t@QdZ@Srpg&8MUA}_uCY2sKg_-6Bb4^eRO6FzVjnHh*8o&fp=}~
z@h5|O&@ESE8RXTNrqN+*=D8(=9vsC`?x_LwmQ~FY6>_y9S3v;Pss{rudlz>om<({@
zY(c<h^AI$PJoA&&H(X}jHGvSM7P=en_s<xb*JRezT}Gg~th0fKC&PS)X#R3nZ{yX`
zqCMq60U^5G?e5UeN-Fv>?X!!T$C;~R#+^&(ertz4eqM*MTDT;1v#6ID#~)l?zc=K&
zNkThjWHz*s-co`d40Qf{C9rNKZG?m!h^-<7R5@9{v9?<&(+Tl4hw=AH(r1p!QSwoJ
z`yp4w=B$-@p7nLGw(91fK^#Kl3e&=U_r%1u<yf*kMko~1^{n~k0F}Av>_f0l3KFtN
zYijVRm(d2i<&qlZFYab?m;1^f{AZufy;h^7S3yuD6zMl)8AV0aTvZJVa@`_E#1Z2K
zlmhs>5)o<J3~N7v*>Ch%iy$<AX#?KDCBSLlv>E2%QgiHzIaf_I>#Cc0)c|<h0OP>{
z0jZ7uN2~UeIARQ?WINHfU-_-qdS8ZjIf}z8+(#~-y+!svttF)5Mfzr#VI7W-#N=Kl
ze*t8z@REGBZk|3E82KVr@N7x*^%tpOwG3A_4s{&cRm<06rV<&;<%rl5Fi0F?JYcdu
zba8EKgN<DkvDT2)Xyj57hUrtKN?=L-2#acr&u%#+nd7GfPL9hsj*&ls@Z482$k6!v
zpJt?PartkvB9dU)ZTbphAz9NQd7PZ6n}@Zw+zarkP2pZ$E$3K-MWh%e+J&+V;Txb)
zIo+>cTsJWLAf+{O@SlC$>`aj+mCPbEJx|>dx?PXOv|iukt8$q&&hY{E<kC;`F-jLr
zf;p%0;N-BzLU~RY-=#Fq+;S5JM?&R!z#pN)$e~fK^}fQvRVJVg;{`DFwoPtLE6tkN
zu6|&`BGzEd+K>U}fVpealFw~HlxWTSz=4ltKu|7zxA9jygY3Se$j!=&G^I>m&GM*j
zsR{pBg;F?guSP9(gWJ@uH2+*~F8HoEHEYTJAEupSx6jetmt?pW#!WaVb#9aTloVpQ
z5G=N0jw_g<RmNk0RfFX28}i#zEsR%~f**c8N7v+p`x%Y2{Po`2fmJ}>Zv@E8D?1vH
zW0?#51Y%!(w=@j|*9(Le4(1cU40|y;67+y8!t1UmMjj3nD;h=&;H&&&9C?TtPMH<2
zqK=zV-LAK-5E)$d{8Jp;l3M1qItMQH32p|hMsDPrR4Qikf*O&HmLt1afo#x35bb3K
z><Kp>+@vDhzNKj`85BlhYAM9`b<fDX@o}r?tp{9en0nuq#Gt!4ZhiM#A%K%SF0om(
z(g1<f`S#7ycif_=+t}bt<JrGtiM|BPLGn7;f6&1GF~!&66BX8C<3=xLr<}mGx9Gmh
zFFVQtbTKv!&AG9x%yG{vrJ=z#=!Q3Vs;1bPHfxSnTG+7guo?+RgnnPjU3iKbj@nV5
z$Ulq3<ty5Zl0X97AdWJ6Nfrg4#aewqOg!<}Bvi$wUAe>>d4(SlZ#*TiM^#_L$jx1K
zQb<IjljQo-*ys`~h*J)BFD0q246#Rog<lb2%Mdv9=A==}Xvh-o>hQQQKTWf`#tU&3
z{n>X+^VAGSAm=L>h2k0!W9C^NjTx0IPA!9r>_^{?&7cw?!r`W?(&<`2nV=qIIWN@i
z@5@0ybUAWz*ln7EgWHy!vv9weBbeCqc!J^2te<s4Sj$~U*U$EZ_)$4j8>-h!cJ8aK
zj!{W%rbqWucyy{T5e+Q+kuB!rQiXC;ngTrM*hQ>SjRSfP$WXq3T*-I~6f#4Zk=78f
zfA|<}i4M&5p8LY`dQZRlfVIt2LikZ6UbRwe?o-u+qhp8$=!E|~HXyzOX5X@G1;!$C
ze`7tY+-=OrZR`){p2AyyQhONH5(LyHF|FHQ16nyY)id1vnk~&NCMep`!18Gk4)w{0
zE5POY{LW6ah1nL1g0Mv+VcD=t+*6tRa#x<&4GX@cPg8zFN%(z;W_WH%U5Qt{gdF@f
zz!g}ZDhHh_Ai3#k;L!EHVRdH}$k6>JhgDWb$}kt^wBB|HT@4GX5Lp%);)z**%Mu*M
zaf$NdE4a^qxMFL4eQ9c0)C}%x)(oyf>RABU9Uz|uR^&c+eJBMNN?*aB^oE!X5w-7A
zyL5}kQL=EU%4*mP9DpZfO;M=7jl2@QFt=^NX77M!buF`KOLDCTv;gO;xf!7y8Uau6
ziP7#JYQ$_`%|ZRH*t4tqb<_Tf=gXjPhQsF>?kSBx>Mp5CS*Lb0uSSF0uS~3&sh9q1
z^+FU5Dj<Fa9yD7F;(GmSYlbe_@YQEz?1(7c<d;Oof%Tc8y!qCLeL-Gfja|l9^q}(!
zPl<N$LHwf$|IufPP<^MjJ!?QR1pZ-=W~_>HPx(x)-LMm)D9fLm?q9ZyR>8JuFfrWf
zlZR~O(w=x5;!jY}&rocbX19}YkJTYB4L?s$WwyhhXlz8+6XB|tPJ!~#9zgco!X1L-
zoTO=HXIrdRmp#GTjo}X5Hv06kh!y_f-b-}}r&$ws*|MGY^VI&IBZoK3Pq;CI6g+Vd
z1ZAk4fg^X`01fS7Wti&i!q?=Nh3yk2$97C)1#+vf-!%c0d`C`z!9=y`>`9$jn(IZL
z=%8`U3q)A#Y>)(B^GsHh8}Gs)v>I|y@~?h+UQw;b(;bF{47m8Q6A>C47PJD`#(-Bl
zvV28tiqf-g^Pc^~Yq&Q>T(I8R$j-+pIM0>=L1G7Yxz0Yc8G<FaTG2X{a9g6dGRV*6
zhU<bk2zLqK1@MC&)zt|bR^i6I(QWt;f#b32s(q)CkRWwuYe8}S7qy;&zQNvcNr*8c
zP%mEcmP2yK?Fq13ntQa0XA*D@G5RmXl2e@r-$FBIMlyu*H3X|=0B<WRvn~v@3`Kf$
z?>Jux34~kRbTP|{0!mjz+1!m`#hUxPU=d2}imGw;>RTtf&batboZE#)>d{x4w1N%?
zl9g0flcyJzvx|+v%gu!l(^@i-xxbh}!kO?#*cbu+BO#m)>0`_6&KEO=s>KH687WHy
zdh~58(ZNhy<z9qVA8K%!;B%Y{+68LK?KUjPgSTO$762QhaoJgg&?qQ@z+qV~3OM}6
zeHp+H_^c5y5m8G4{kqnCVhD}RDx?wcGVI1GSx`-F8WfKLm{FrCWm?Sp0I=l=h(&(M
z;XhCiy4#kUtG}pLXmR`<F!5ZLSvnag@#iZY6(i=TqzZYOs-QhMo4Lg^dQ?FSAAeQE
zeWO}&PWjWcOFY1+TD^sd*@tS<eB!7o`YKD)aXscy81V))E)KD!1;8@mJUkSnT9jSn
zVoAATp#s15ScBaIWY)3}e|>ya(=u*cO+_E%!7Gz42hSH}=fVVTmDKEp?g=rLxyl7M
zLvG{_=99UHfL+p*Q?+IL=CrM5cF~Q2)AL_v+CPa(YdCfKk)y;5JYo(4cz=wFrEjR+
zuTXLTZ}&7jNxs+^VQ{8)$^vaEVAw~<m@6sor?1);!Nvf&=1&sBft6O|{;-{~#KU6=
z(ZQZ+Rd>|Wkb8R42%qU?sOSzgce0c+-86okwFN9T-A03jX6*S#n>1(#IG`wOTbJgm
zji42?&tBn8LJ<c`)w8p|i|~J`qAa(-A+;CxJwFAuusnV6HMkkednv1a`O~{D*iKC}
zH;{W;CA0#zw&y^+8fIU!>95&0pQg;(|EW~@4`$|z3G0#s*rpf5Em#C!-uq@2m9{_C
z2C!5S2Wgv4jiGsg;=#ASjGG61Hx+Q=j+lE|+LpTw9v5w<mjHe5jZ#!2aMY&i6&~P!
z8!Db$kkyxt>iy`#JqvNW+2^LANPA*@#*`t|AsyAKh2sEBW!)Azg~Edxh#Qm4X}@6O
zaX0ZYfTV*OYyb%deZyR(=HJ{M(Yy6AIRfmzoFMNSsOE=eY(6qK;hpmLe`GNKDcvpE
zz)^{XlJH!dmb`x4<p@aNGR4CJo`(^FoGgj7ig3bP!vTwGRuuXb=dAD_T1la0c{J%!
zk^xR}S$s3c-=rFrP^_O8oS`HV_HX}Oq40D=8Dt-m*8b+EknkU;-To5K|8p+>&Is|(
zZ(GT62v{kBQ3v0DV*0O{@PBNIU0Cb!3^BSETfo1G=s$1x*WCcVWtoPjCD=n$Zu#3S
zkb648iv<&4KNFmyTI2jfg#SwX`s=u9{X_{S<@>aJnofp5{C^C@znp+PlLAhi-chps
zb!PatVfdFD0;?T(9PQ4{Hh!4N|Bt~D13D67#TN6o1Ir=--yKS7(zz+3V^Q_L59A-h
zD~$ViNF1Iq>fImy@V|-0Kf(fdymdN}sRZrG8aV!bD??ZWEWWqJ|M`Cb@Yxjt=f*t}
z{!sh;-}mZqspF!_R!!3X?FA%}ZuOY&4E6v1QGTs(WMCOnAAMr@+r3~H)9Uoc7Fo8@
zEtIDD+pVDCc$Vq*&;xzB`2XpP$m5~yR<^vqKWn++X`KL-3n|CIB<7!^DT74-GWd#{
zC-ZLx%k$XF!>!_YmAfJCPcz+f`JEO3+76Y+4CA$ZwK_LLmn+Htex3mwRR52&w+@T?
zZTCe53{<*Hx<y*LOFE=OQc60d5$R587-^-u85$%<N~Dz<0qGoaKl9sbpR><e`+e8B
z_J3SDj5A-KxbIKh|C}=t9~%CPI{AOyD*x?P`TS4xf_`o)GIQd;ef9tG1@7s<)J+HW
zrdcu3|Gl{!yvxrT3qrB?>0kT*bC>u3JpKRjNdNPPMw2l8h{8NY`!6b#|Lt`Amp{74
z{Kwbf$|OSip#P8G`M>>B4D|n4#W=M@|6-~9|9Efrm=CxR;jqb%|NZ^<FTPJu5ItwN
z1d-$1fBWeE^$Ua~f$yJ**&yuyelLB#&q(%tlAO&i_T>+B;9JmyOapO|*~NM1-I8_3
z^VV0U$7B51NXN6+$;7K(0G6qjc{R-FJgpn$R`LRW*XuF+M%Qp<HxyY{`T<KxoC9LE
z^Og|l0p+wBO*bA(2P|%{dGrgSO#nYP-vV+F6KU+N;*~xf0hJCu5;OYQjx=y1m4MO>
zU*Fgf5BdW6Rt*$s9`Xai%Qt1hRW<_WWq#sDdz3+*mwQNFif_@m7vMJ>A;7cR<QqHw
zF4H`Ur3V<gQYsMciF|+^aq$1aUuzBuQ%t0=PXK7Rdx5+2r+jMIq_X(UiP>($Y@DqV
zFnJwJDsj9_aq?5EN6I%rT`9Z>X!bSXD6^(JG!J%6VH{D+N*~YNJ}A=tZ#MFx2}2~g
z17N2)%(XfL5{+#-3PVyIJC^*p=WQCVh8)8mGp1AjgSPPZS*E=q0(QMfgIdppzB*yp
z!AT<c!VNlm>iX4G?{DSn7px5&5^uarD+enm<MR?=)-B_dq1~<gb;Oh-<CIED|EX8_
z-`7)+OEhwG_5xiUz+SgeB(*0hfzFk=i>311_Z+<(u-!Ga0DP&5KkzR7S{y~Y){Q5I
zWRFm|OdXR|`1Cn`9|O-M9xzfTizs*jFLrqBfp;jO4m#4+XMYDACR29e1G5|l@;z{*
zYs~MU`_Y?MT#HxQvqAc1^xsuimOzQ#TbQg$28e{l10a+L0a#<*j#dkH;f{te0yuwH
zY7e|;v~@9&(gTTl??snEWHtj_wy9kNp6&Ky{&M(v70A%|Ku;@rpD0<GTj3YVAx9uW
z39Ut$TMHdyx`kKktSZA(OSFwoQ%>8!*c7;GEm1j^pSg{4J?m)1c-vNX7JhnKnHC}V
z=+e8B+#_XI{FJ@pWYT2{OZYEN!0j<)HmPBOar{+fkrP0`5(vZ=;_bp)EuQY4W$2Kb
zi&LiWxRecAR39VQW)XCpdgoU0mhku@hJRCubT!K&uT-;-dG$&Vzas?#9Gr|qbp0GW
z2@eY@YruzA1H^x@GoPf1{50OlgY(`eH^$e@{*3WwG3jE&qWGfO&{Obeu*r?k?Kov@
z&>O>}cWX!34~-;b_$%j{zgG=3Sa3skv1fz3s{!m%;u*hbFdyl8aMT03ZxXObE4xP6
z+S~Inu~2A5A<jLIgXZufKDGkU4VJ2Oc>@D#uF?xLJE1A0GT3>DAuR;yt~P60@{FGN
zn8n_QA^lN;Y0pgB{FQ-C$W8MD8)@F?o1Z%_%P;*?M{F_nE#o&1!~z=sUE<Ee+<R+p
zK^%nJyta%sk~6v#Di@3FK@@TLvos=F;JHtM>FiJSyE|t)dv+fv*egl}v3O%_b09Z>
z5~=t(@%ZUCE^<6tQ{e>q*lJrI%s0;64=j9fAKx9u2U6%b>{r#SNp)^JQ7ws`pl1Vb
zomns@A38_-fmHKOW!uA|AeqY1{fSNxkDzF6XH)Fbe&9YpYJFb}cRt{1VFe2W9QakG
z>1DFO>UVLyfcwyV-9hFLXmA|}n#2#f&~^#m?N#C&7;Qh<)Ela3S|)?Vg4mG$wDvfm
z?JoyN#jr1Cb#WX{Gh#EVml*srU3GjMSTRmk;*|Vx&B&)!!*s=_OV91snf6S{_+s|o
zUj-K_T?tVae<c$EGy~ReYC6H`Ez(q;=>Sl*ii%D^9=sdrwKTijDv6(ZJGK0qVAs3(
zz@Z_hx5K2Nb!C&>2(?|=4OqQHk@j6@a_)N#bU#IQ%IkW7oSqnXM{=11aseIv=rd!q
zeMlDwbinV2$piqw`)<!_G{>?$-xLN4SQbmd=pwqtfK=l;;^Bc763?{GqT0Pny9XZu
z7LjKG=WQ#oO|ZGMHBaA(U+^ZX@C(%X*|lZ=3G0?+k+9>Y)f$TNEAxeadyVJNgK9p4
zvpf`ryif?%kz&W79NPiLOq={_VCD;bK&1DXcLB)gDUeqJQu-Bwj2B3NCi4MMppV%C
zJqqWwDmau>2*rT|CKTz)MB0v3Hpsu-WP;Vc2K`<MAiUPEo-eb~TdP3}FL3*50~SB0
z#L=OZS~x3I`~qp)M#J?tw7t{PR3W^2dQ&sX90)EI%xH^LgLhvIxXxDs107oIX+Ei#
z44=2LIn1>J<%f7<1)Ecwe?vKRRY+#}gq+s9sVDa+Vtx?8`+c<_TZ8VVw7ClLzS7Xh
z`lr+Qm|X1ISVQz}pGWoFj!D6(R#Dlk$+xNP)2~Zz)ukQTS!3D0{jS@)P5}X<!1Ui=
zj_D7llzz4(7U#WYBOHSay(r#)<t<pj&eXjL@D%cWx|PcxP474Y>J6;)p+N7*XKa@#
zxN>B%IDC`o>HKDO`8C6zO=vfd!pvE%Kk1j_&{m{IN<gV6oy(#J$wdF;AD;g{-g>*2
zv73@}RP1Z<9B%d8d+RxHTlwzJafy}{p79>(@B2*2-#X?f#nu;f^5zIMwNAvBo~@lN
zIK{8Rf$okQ37j1U7=3D-IlUJ9H80s|bJiqP=7AOJw{)#CF@B45I3DKqbOhZlmN)o5
z16XMj6~FH^nVOThW6X^D{^0dl@2f7SMk~n7&;qdcSvy-PZWm&%*HK)(1ZV!h%Cga;
ztOn1$yWMr5=082FTiWsNs6DpO=g3+3x7%n9ALZkQr_PwL#K{j}j;#icvcAa-RWh?5
zpsaZ2D)|^ykM<5}5A!!TT-p!de-eTle7%2n>vS>x9;%72o3vjdeq;Lrd$kZ5e1a}}
z$XZR}EO6L|-}{KlPhF{Vh%qZfTSvd>EGHD`t3+>W{D6Er+^(`EtltKs@h`9>n{_`R
z{>$Th1~|9AZx+h7`j$IYodM-eNeYZ#8S)&EX#&kav)Ut#EvjV*;oxmE@m{`7B`psj
z9b{+%Od>yUxd;Zy7s+0A-d%Mz-~A&T&?Rg-z5$F(Tp3c@8IG?iK*L_*cc=slJW$^H
zb+ATtC-4_kB^q8ClLv^q+m*XAe^Fqc_HBp^8bAgSR8zHdfYg@6El{5&RK<-vdgiW9
zu<=iR4M<LS3gAy!mFfX^_*WHrWJ1c?XKDu(IYZnrN&rg*`3z&^J(ZgW5iV@(bjyl2
zpKfoz(Zz>2G|m;zO0aB2;*13#6%uiX$v{MlJE#J~k#ZF*gJMae{AHvEmCL)%pYU+=
z9D3fNrG33FqR94-9~_wc&gWHcOm4Pyuh1zndQOp*pK|XTm<|75z_cNZ;rLf$E(q}D
zelq!POOKs(SY2sDqUs2%FE{x+Nw18|VOF%|#vU`;pRQu7eW$-@_+PTla^-KhLJ4Et
zl8FVX(Xa%lK^9+YI=yi+POilX$8c}v7Du7e>E-mWpuGPn+o?&PIilm^@fr}xVVnet
zx!G9-vbX_jUyM}5HAzpLo#1TwtVy6K2XvO(8<}t8bz5{c(Fkr_;8ODk!XBTZS6YM6
zgs>fo#u**MP*BV9vEy%H9lp+Rxmnvl{o93xje#H-BDb%W)B_*%s-3gj<1YvX!R+@;
z`Ly!Y<1e{?I;_fX<2lM94~008wl$XhMCz)5fPHqy04*F@Q!RoDx@e<BY<l#j)hl-M
za-2sh0Jf?Bafb&^3qOu}Uiow9vi~w!Rp=`>>Xt+{hvmIyV(0jI@LL5J2(TibVvAop
z>rV#EzI27HUp4|w=U^>+%X-q}&M%N@g1_%gFNCaoK~59t6mbjEXnWYgMVxeufizl%
zl~qB7HWls~lKDSLn#=)5;-wMxpAkUPh_BXJ2%oQMsTDwSgwg`e>L3q{i9YWl+_c^e
zas(VkUtFUY?me5%G8~3=#BRK;$TnPeD5NS9Div#)b=ln{Q}(?(2p8{zUzMKRRKWFP
zZa^v0Nf~iHx=(Ov(iYYgmxkq)$jqPntc4v4J~Lwbf?|2Q1F9>j;wSm{tbpp~%h~ma
z8#&B)SFf&<WxmCcn*I(%wvc9x)ZGGY`?B+tw;Y@@=8q`<__^G$?S{~D<SnG>rAZ^z
zLj3WqsrYTmLzuP6)%@(c+2%fUsz<PI$gabHP(15Ua11mjhb?)3+*SjkInW`R;AdS+
z%z!O$KxrRkg~Hv8yT$_V4)Q6W%*Ljh=b}0%E!CAXSAlKb3l99Jy86#&k4tN}E7S&S
zr%(|-9<3_>703O5n@G;-$GlXT?{LnTBYVD(nau;2_N>yk0iQ|g&&p^o%9T=&cm(Qz
z9Bx(yX6t+Tw))v`E0=pwyX&$c)%(z^GrWkRT20b^*sA9?Q>&erddd;Cvh*U~2wPpD
zc8AzpQ^OAfkU<%BKSg!{cPV8z@cGqD*{YDqm#c8`Ycr||9{n$AL0q(xL@#y&6V<q$
ztz^Z1{$X<2KF;C4rKDjaYZxszO)0|^ff=2;EphOnT98<`sJ>7Vy&mwI=i5B?)_2IH
z0cM$sD0Sug78ou{c=#I*YO8arzlbgCOfaBCFJSSe!4bc=^a!T-7Icqmqb(0bxs(?8
zmc7=h2gvMBwqW+4LLNes>L=9Eqha8<kr7eOTovQ|67?Bh(tYCf{O!CFw0#WWTB8i*
ze@(fCQ(C;E{_g1xS6|}a_jq^yt!Gnr;6LA-eWz?XR^7cMH;pwawW&<cMA5Lp37oB$
zN@cSpI<W5Pvs$%F?2jVp8&?trB+eDGBEW}knA_NSvq3`Z$I4xVQRyAgO#}jT+AoYp
zfXGoP9XP^$8sckllKeq<!akj+lEcVO8z}eeEK^TC_+0(v^Wn&3uJ}LRAPeZPn?Ehp
zEJGzt|IX8ehm*}ea)6lXH;B`So8{W08I!SQw<9;71A3+wSVLIAM?J2{2hrYH9S@Vl
zpE0FwEm)r0SGHAe<aSIdK0n=(jyUupVm^auG0uk9?nrd_5_ubP8S8;6$O82v(RRgb
z$<8N8CD+Xok0z<$V0|1+OVveC4W^_=?oh7*x#IQ~qy)u-xAEI5iy!vOS~wijpWa{#
znBYEY@D*1*<vpH@bc@`Y;oAG!Z!OrTvUPcH;iOjQ9o^1r0(oP+k%~`l(broSvpcW6
zMf)x1f!9n;a3iHr2KLp@I9CAlhpXO^7o=SN!UKr0XfD|a9?K*0&=pp1h_(N%Xs25B
z3;oqJXw$Jifhf|6;}D%|`yOo3BmZI2^{dnp+qZ%+!^Y8LK^O%5sx4xy%c;LT*POIM
z?7WcMaQCj?lb~}UUb>npaQ^w<K^o}W{$r^*C%?)G@I0;kTwaLBPri(>)4!}pb5a`-
zsX8n-*#!G^#I5)CYTv{MTiz0Uy|31S+iyEZjL}2zIV?(uZ56V-s<X>yuEY@wL!iXh
zyo!cY7{j7BcrSA-zW#gE>VO4h;4LGWBPWTG#Hi$bqYw=YRJsd`dk>}M6?pqQfwI@%
zGxnKPb$Y~@JyWIzcZjz5MK|`l9%fq4Wq>?zVWJ64cT*EeVc&n$d9&+ep_4C&Z%fF9
z<6(i!8=?@f6pT-e{Qd&dnTGZfi1qRIKu{3LA-);W0tvObdib|#8GJ>#zC10lE44zC
z`N7)+ew7ZzOaMPL={S{LecImL$IoL7MBH-fMKvcg2T@Sn7njl6k(pMd#p9ula1Qln
zYGq9{tRWzb+_#sehjr0-BD)}&Ks_=}sq`MMJQGuy;xHCJ!DVIJkw$O{2+F-+k6w;)
z#-bBqP2@BIwGxScmIr!n@<nLGqRa<6ZUS(b-vYfmWjw#sEXY2IV|!TuDGK^w&igfm
zIdb(&vgg#pZJEAT;!=9CU*f-{TZWO~1)MO9Go4)_88rpNtuh%JA&}Z+9&lfn1U>;c
zTEevBKOqq~k=)T59Ern%@qd*5qJ7kkL9vb_*XSIH2~Z0dw<hU|JvPgwlw^_P{R1GV
zJkQa!VWK;`dXrOKk;LBDkgH?J9R;1?REaG=Zt|SmI`hMssh1z1AMf#Q(B<>DN9eT!
zwlx&kjkzh^Dz#6T@{2s@w@=e_s?>4>9*vwOGq;{FV1ywP$IMT7Wt^PllpnfH;_lXs
zZtrpoems6kmt@<T>K3@FM~$;iA;WAy#PG?FLbLK|MB3I$%3#e}rqqI0-YTe!=xvK!
zptXS~gh!gzQ9p9HH+b;Y6JrHoIHDFZ&o`iweM<A=hcXwVFKvK?;c@5XOqF@2)}}<D
zt12CB;T!Z;-1G)~M4az)qX=r)4e0>-so8*F1JJDx_`}Z2KG~V(LM-)O?*p|LK~<g6
zRSSm()53*?$rf6DbXqRXUs}eE<)Kj`WRg<F&mbX_cZ6DO&X}^-F(l+QeC89#B}n*n
zr>gQjtQ=BzSaI^E84oklnhm4d&4==rB`NI=JQ1e3Rk6PDfMwh|hC4EQSa8fg#x2sn
zxax3KQJem!&urFoqmI~uXqwl!D#t_Tv2WI#EKvJyH+&fW&?FDR%GSz|kc(r(WV`^S
zk&?jOFDd$A-YmIyhQg5Q)y#&|ABMBE;>Q@%QMiu@=)^bhZjybU4u0?@pY<CbyxqgC
zm|l{n%xyT5hmBTt3(i#5I9+?}@XJ2m-RLJUc9(})Y@O4>EVoEp{7TF5XAgBQ1GRml
zc6JBPEUsM8v*FjqU0!h(a$Et{N7)0>XBUFa4-eWZ>>CLiwGr7~1MrQA6Jf|oOG>QC
zlQWqbxFAj^KFp|pE-4CbU$7#4$d+dOM8&AN>G%o-g5CKF@vP73nAHw`yP^u};x`TA
zInBAcpLYL?V(<Tp+LO_7{tbcsCDLR;rnNPQ%G`_4vjLcB^bU?v>SM^<w|l1`z0e4M
zs8|Zvk8=bh`rkkNj6+Em(}hE!PL=qcq>y%!SPDnRJmL#(G50}YjF4U$Ihv(H_SikL
z9$T4clHd*W<B02EuQ18L``*gWA@%^OQ;7Zzu+EsC%zD&B%#VV7g(QjYxbCJEd%B~G
zzXJcloC1!sGON>X6xvCytv^ua?Ss9zY#KQ;lw>0q`9)Ap_J=ap_zF^={T!W3WRQWs
zPZ9kA7p>nLpRJ;XF$%*=+<b;fdmyNOS==B4dGY-YiOm4b;6xa%F5_?Bk6bc8(EmiH
z4|ds1kccR!J`I~}JyGBtFltt4i6HU>IsyUeXwJy)dHN@6h>N%XL|fnwl{i$KY2O#`
zw+QkoYL4^4xnq<j!R&n-Ax|nV_hq1qE5DDI&|5J%koFzii($=AVzF-oecihHI6)c<
znFL^8Z!%N%A;|1uE!V@(8F&JuJ$ayO?_>;+D}3}c#$P`1_UEjT$RO9NUrnHU>ASI%
zxCJ2EPP2MLY3Fw+a_0*@vXyp3S2Pm@iG9o@@~E#W(VVSXy)NZ^a2a4(sbyzr$8@rM
zMKCw4BAa40kwckwaT;`KiO6P@L<av_oBAyPWqa7uEdbea5p(J_0v1TQASW72@-Z0M
z9&YM`tj0@pPMl#gqvuZBxW5?J+I#fCkr)ti7%7n+@zc2w_S$hytPcb2gle}Hs6@=g
zH-$z|)8)TckXX{-tY0u$h+~T!bTLz}L&ue*wxE;SFF8Nuh<zpQ=7iypoVro{1o+MC
zBxhg*oRR6Xf5qwBh4QFxEu*iV<xnDr<Lk8#q}{Z4gi7Ihlm}zBPp5o4cTQ1X+dJy~
z!MKXdwZh-=rv~lLnpR`$8x)dXLJsln!+B>ZW32PQCHVq+-PP~`E_eTCkvLk%ql2Z`
zZo^j?jt74{E4U|)9`5%07@+n)$^_AKU6nrC{&0!!5%O@<(BZj>Xaq9El{h%zm9&W}
zoWas#xS6t-{E!D`cAaW76V)mEr?;J6Qs!;kAb^_5_stfCTWv*V;rVc6vjI?h%x88|
z{DGSFlQvfP3Lj+ytk*k<1?3j4TLO!%8_l2Pw8rsI-9<b6*>AgP7MHqlYNBd7CvOex
zxhb(Jp*mj7_zRlva#6J7g;;Bi0O`UN)QFVBM}!r*FqRIA?vZH3NT`u?CBVMBoKSMf
zy|CyVd~h4}Ue&EE_@}NtV2Zh-fK_cZq3txom{uOIME@AS>C9=bFUavEKBv1|{<`CB
zTs-oxNf#tO!K?a#D;gxUi}Ak3o8coCEzzMVRl&6!2`OZG^9h{*MY8svye|nRe>gtM
z5<sd93_~OGNk>Y;ODYsjveP8%jqa1`MQx67C(e*u_uwR^KK>qY5G9|4@`a!w?F6mE
zWLk0wo!8Yu+*Q)C<BzyE)RCP|xi6wM69fQ|<D}EQ?J2#Vlq~}St~`e)caj~3BK*?H
z{jfw&z8^sD5RgNjl>t{W<)RpokLI~?k{*4+vUKKJ?DyHD5?}k=pYfJCs)y!4Gl##N
zXPjF<^a8mC!{G^xk7uTSInSpC;#F|1%+|*;f8F|ttKjxUPpH!t`{N{iuEMUx_X~i8
z%Kjx*I2mm`F@G?dXLOQ%MDvT*fMmebZ-z^4%Mek%&4D<yKf9ccbgQ;EiNJuhgi^DB
ztOudK3K^zBuc1Q4Y^{b)1VU0=B_FOO1_3+QzMaTTRPMW;6*{e8ZVOGi@<vfa9OA6j
zGGuYfKr^OGk@V}`@uWQ787)-pJmrK|uIBIcd=l*j(UkkK@L;L7^dDpdgCIhQ0U;_X
zJ}|air8(zE>&hPWyv4X^E%aU^i6E(q(l&9wbq2UGkN9Q{Rd+WnKc7shcbr%*Fc)m+
z>Zd|Kc|_oj>^())X=-TYZrk!XE$ezEGDPMcA9?9>=r6-2g~ZA#`Mon$U-0{~7s2m`
zylN@h-;(Vm$m1?jfI-lE@Y1q%h2hBUv7?J8dc4?IXM5PL?6B8oEu@yYVN{-VrN{c*
zVeQr#9F|2@E>=nNY3yvy`w}P0yjn47<w7hz#iMz*S>}Mj$<LS=j>Db30cj-M3|pX@
z-|^zP=~P1_GfKS7y=j&-4SfsXx&Ucn=f>-XnSksg4VMh;HGnKdcJf?QXfXOPntX!U
z0$AO`jn_{V;Uukdgz;@;|2pi~d&iEIZb<6n;+^eErhjTMS|=BmRm-p}?CXOI)gxlq
zl#kd#%Ux44pbFqu>PCBgr|rN6^>5)`Je#<#l6Ui)M;Pzk(f-jUHRq%K!_6$MCElmn
z!u4I6x1U=HjW~j#?4dnn;PoN1)aPpuN?KQ*KJ3wgQ^Pt;ozE-NjQ)5o{w<K~*%*`y
zzu-@Fi{|@&CF^g?iZEY7*Tub|sitFHRp-w4Wt?CcVKMNmiB+J`d-+G+gau2ln45$^
zxrd6@tEzRoG?DP*4|;k<+h~YFN+>#3o@xe7ZWW$3ZK|pUGww|arYd92>zcowm+xxI
zYxfbq7~oo;T*T<+*ZqPYX*5RZc!;@G(&5lj4Q8zA^_S{xN(7X2QhOGvphw^c@_dQC
z$l8(8Cs)Y2eAf{W{2}RU8du2K>CeX6c<q~_nH|lN@$TER2SG%^%h|ox-J+cVbbjo@
z;oy#uuNfMaxw2nl$R_X*FM1K6)A3!xxN_m-O78MSkK^S79$e=Y>2C>@q-Eu`iWLU=
z>Wm}tq~`slJ0^;1ElYf75cw;arL{$-OSiHx>dsNGL{`%CrMEe)4~t2kyl(NEoNX4X
z3G62hdo2`at8uYham>(=ccE}M514_qlO35CmG57$ZjN=%wpnj(&Ffc2eaPx0kn7~A
zvpU|KMax|n9xvJ|&Z^WQ<Oy8=cvYXb?UUTtbUe4$(pQJU5lHjlt%=v!FA9a#_xUES
zCU65qcdvYl*GwGerU*CRlJN?;D-9PipODi2m5004FE%Y3;{bHXxC~bVRO#wwSSOud
zS=52Tof#2fjJ2}Y`(A-%WNy~GS;qU00Mqn^ly3b4P(n@-PtH)xY%(xUR|vLbc>_3#
zi5;V_y2Uv0H70~So;lUu5$`yiwB1~2CKlg#UGENN_u6{W2E4kP4ZP9KR*6|TXs^%e
z>(z#9i9$4eY$NRC=b{f%hMYo5R~~D7@YO<dtXr<ng*)Gr#aOS1I4I8kbMAW^8rZ&n
z7kF5wIeTp067cV5D*!dmAH1-fgBHcEK1cisE|m@ytqyJ%={X5P>ZEU9-r-~&4Mp4F
z(!7bvAG(xdlf{rb(W=7g%S5lnA)zLdB>D7e!Cr3kXY7rXscy`d%wtn$N*!(50ucxP
zwBs+)5sJvXuhyAfJT7zg6gp`<l2psvDab7Wj^JT<H!_bnCJ^0-^!wZS3-gR>#fg*Q
z{FLI>?Z>dAppII3?Ucm)sN$nZYhnMFpEUM)_F*m5rRi`$3_Vt2tC2BMx&N2@w_C?C
z3W_0K0-b6Zo&xdCvp@SXXvi*hO>o?M99o3F0=$g|)OZJg4>PcnTh<+^v}K`5geH#x
zKFPMm0-}AxAf9^~_o{{l5zyd<MKq$aA~*|_qYbH5qS{wk5Gw7SndvYeh)gJ39rvNH
zeyiWoi>5_9r00W~Pv$z8b^%Gua*<kYnvYzkPv~Cma42-8&k81t7&(EUR56&K=DygJ
ziD7970}HDkS71O)R)-1PvIu<v(dyUo*PDJNmjn9*ku<AqG#<(ghXe*R1EMurf$Y|J
zKX=ZV=7xT~rC_u)?tO0KTsug{8UTr+5Mu4tY}jTZ)0fuebz1}dy}p*d)3-?Oe})67
z7+ii3-XAAfH3Ie0Mmu#4ASz$cu+Nfg4;<Ylc{LodQ9Ql++X>eAtrVKRcNi7(NPoUj
z-EgixSw-7+rffhiX^Ur9np>UWK(xS?rNnl5E0hL<-Ib$}OEimc78|T(PN(&A+H=fH
zFBiE;)i;CWyLYnCSidH!K*gbe>n$a}H9PT5M6Ukh$)_0E=OQM@gQsaLUq&T#&dgne
zV8gkG&5XRRm<pEeM|DeJ0k^(^Q4Mx*5R;eq+x$o0k~42|{dXE1)Rq7JL0ye6mWD}N
z^ro`uMG<Kn1Vf1NIaYqjX#n3VYFSq0meM{>bZ%UddRn={zo7MJ=j05tiD0h#YTQSM
z9s*Rbq{z5g<NQT}uNl`ZdWrjMnJ<0D8Bw%d?iR*O*s91^aO?25ypc)!=$gkit32ZZ
z76iZP*q>)fbr@ffS!z_p=rlI?_$$JtO6!v0zktl10@kL*2iX#lD}T9>qPdxsX`p&#
zIK!01S}q-lOXLXdu*1t*;8>RV&C?S_kWtHg37cbLw^aFkIp|{h%H2rEvBSd|1pXNt
z3jpwpwFI|Hcf7grg}BvULnc_7Pq}Lz2CnfwU_pF_2HPAEJo+<SD2hU9r6DtDD3zLU
zJX+OC6eG=am3uY1KHjvEP%j<Hi|jsyEy1uWygFPA!UcfD^a44;NGfEj^o%Z27I*e|
zQI}}9gVjlR=h3lPJ>UgoUEXsk3ia3<ua;UP17|zNq&*GW+8^x*Ei<cM9l{I$4npdf
z*<(3w(uvbs0&&eCD@TiiT$O0YC+)o7oG`64TabBn5v-kVYU}ab^BuWbI<IT<@L{g)
z&N+S1h{)*KTP+8ElWz(hKdvagcw+zX=A6FxVX^;@7`8X|UgvJ$K`>Px>Dq<L?BhU@
z*<EDFYJM})+~<7rjCV0^L!y4xLJ&u5u#>y<IA{O96;=yCoO=N+VuU8)9E6OAIBe>n
zx;+SwyDEQ2cv_cWe3lJpFY~TKq=dkK;C_0nWzi>{s9VV>VGyGA@NHveK<50U)xc6C
z5NW3qQ}J`u$L;fJT`sHd=xW1J&p+;iL|T{Z!|&4AyR&z5@^{-O$Ajun6Rs?Jl<tFY
zXUuhjpAlR-w_{ELJUACSz)EUIA8k7ziF#j%PMs1Z1j)iz?$PitSGDc6a-pjS@`$=Y
ztVcz+&@&yFEu42_2HkS=tlu@<S}oXJ-lE5#<16zjT&%C45hr}@B#MD8l%(7KKIkX(
z#N6*ZG4<NWO&0!WKL6mylVnw4-HSgRx;^B9ZMAfk2J+VEoO|4$p;z7+<t?yGebqQd
zx13ruHjDC+{BfdZMrr%77qwEbu~Yk@oObQxsZ1{&Dj9a|v<9JU5|t?l{{VqXioZgl
z6K>XYbW)b?a_o)y_mbsU0a^dDRt@4uv9GT>4?;nZ0}4Xf{MnOm4%M+B?rp_WnkNRp
z#8B{y@Q}wpifU2(Y7X{p<{0PG-@I^2#b|%ADXkWNzLRqKeEP<jXtFn{O*v2l9b=bg
z;_5j57S~_=flgq}^|15WuM*6&vzgaUtV+HY?K(n>i><R#AexOWgSQs{$ZUKcnPnqK
zXf3QE>79Vg2z%!reu_R)$|k<4t?d2hg)p&TxM2fmmAA4#FRSJT8wpQ#iC~|@bKV=b
zTd!kZf`@Nc<yM&CZ~Yl!Cje)k-MPJQJeIQb&Y<#Cxnm3=LG@d#*Mo7cVb(Z{XpIR@
z&GE(*X<KXtl+N0b>D{9#dY?@pUcG#H5cFYVkN4;CG#`g<jYgzA#<~Dhd|!wZ+KqEn
z9Y*LzK<RKiDP^o$lDhSLYva@1?fzY5wnCof=}QCE5*WiC%cydf|0hzGNwJbYM}ByR
znOCf^Eg(TNv1hGIclKB0BZ2=wuH>#?cn+I_f$^ee=$&^r`<lt~x1;^}GClzyQFor*
z4de!wu?5e)5`dD3jM!7}old)f_WHp?SufQhOkl0nB}jtj2Ucoh#5I`j-WHSm*?9=V
z6_Gw1)!IL&U1-K8cHpdB>*v$*Z=$-ZoqZ~MwuW<caj_ha+XVq4mBae(lEjChQ+3~v
zvrulY;o{*w8kfgz?B`?dc6^^yMMr2*O#oH6ws#=B1Jn;g?<*Qdqn9oJXBWEL*k*5{
z$4@eQ?9K)Q08FV>%l{PN%u`o`bOaf3Hd!PQYz8P9+k$$vy43<hpf*}1_B(z8S&$R5
zdEmwN2=hij`w+zElAJ$UF<|%G6bd>ZrIUEgAI#XN=zB{ie{Z#Ck;GzXFi|d+jF3cg
zD7I##)TK>iNnLN*G#K;U?Awn*HZ(^hf1&)-m)ad}zmYtWLs-GS|Gw{UU_7*GBloyO
zSTL_t9i-7x_8<J_WA)o?!7yQ4!@Td+3Va+3o6E{5*F<+iY5{l+lIV($%kw=TT}Y4W
z;LTx$hv9`E$Z#B}DOw~>!T)tT)S^t)A1F^g@qr5~un+f@);qn|q%n~^zArf_xz6MQ
z+&S7K6h5>YEhHSRL;g6B+~rplA0~psi{o9emqI~KhQhIrkz-7kmKz5Zw0UvdEQ*7j
zk}=b7KHc^&6IFO%$JJ}E<HV6(@qN)3ekYPQU6QdgZ%c2{N1G71W|Ov?=u`d(yWhRK
zRG9lBQ&1wSAB3JyHAh=zNREH-Jb_#Z-wUqp*#GjEnm0d#H90+>O)XO@J4>pL*!5u}
zXCJBpm?Mg2W`;*Tjn7B@mW_<R`K^L;DzrrHh=EIiJthEf;F?Ly_GSJoY@E-YC*E(C
zWZYQ~DB_NWu+*BkfcQQ&leVE^&q7`bI<{RW1Be(XX>RKUs3Glysl^?z2eoLg^>vu@
z6++TQ%1gfPZn?F5pgpyqRNj`&lp{%|G_Pe{H5cn=%b&C=2j@e1iLz1lIozn+a5U?o
z>P`+!2ExWOJ_T$^ERL%JaEeE5`-BTh_st*118U+Ia(=@PK05AR9D*XKf!g2P$z-PZ
zgDb$Y)Ug_92aM0?yb#a5uCA<IJ+=KjE-CYP2uWRhYrN>ChMWl$Ih^o_i{m``L@M3~
zNU|L-(aP-tOT@hXd(htY|2^?vR%FT)I0O9HS>*7KKU~od+_%K%b7WxGU!+g6&zIO=
z(&;2qty%5QqRothuDo<UtB+8iB~p1B(?!JprGAu7F0=&Z9;m$X=qi~QE6HQWNbOYH
zAFHn=g(6X;iu$C-OOiwO)o-JXj0bCE*?TOAhA@XEv8G#bUpR`jw#&^Sn$kkiIqOGM
z)U%&YJuP~pI`Yk{2ae)JBY(!q71Z?ov>05rW2+ftuL+XZ)>3B~>3L0bdoDcEGTP?5
zzo47;MgV^7y+58KeEPm*DPtv@#@}A+?Z=1{T4icbI~tE???aMgw+81V()Jdpvzq-}
zy{927j0kd?o3mOHf6+A@qB_7G1%}d#^96H%)sY`M%gV1@hy}ujeoKBK&vUNtW2Mk%
zo2`z61&2&ahJuZ*6uNxn6eannh!6cPs$gJEz%!?kR#oT}=5xQ^ou+rwFUcdQ4Y{h4
zu_ap*ECesfZ^DZ0FUV6~-msZ67V$%F#i=?G#fHa39X~vL_c}*x4E`?TaNfs2k^any
zE(6DWieDOPj!uHwLfz$c0b~Wvoy?^CX$PZfKKDU9Mm)hJ&#`Yz0emcr*ynA>B9kZ&
zc39H=y9H)<BQ?zOG-|)uLQOvHm8AH5%xyF~mFHR0O|II8Z@xR3F9$n~!#jRn&<USB
z3H2?mk!tJ!r~k9xjcU%9x;5U<Gm1wRXP%+<hGV}MVH{otA_^Tk^Z8hC_{-}}sXLPH
zxQ)g;029~8{A~A)heZ)UpOL*5P{SDV3*t?^IrkGMlp8`1jv%p*9-0u2kjaN$QhinA
zSV=vcS3T6~llie2LPxly&fk|Ni}(3xwlcnxzhrm0zvyU4!LgHb-RO=OGYgHJmKq`n
z`b9Aivy|Bz7J1LXI+#wZU<*U#i$<Q?L?}_<q4+lY*7Ax+;4n)`$bD-MwQx6(2)*qP
zl}gNp_^D}jkAN@`{`|g#O4&Zvm~E;4kT_%3HM0wTPuO11$xTuqI*bkawNWz{p2Z;^
zM}G`5=yRkN`=22WhHw<)COA{5(Y*Op+jtNxjm+LCM;;W9!z59IvFaZf1JR>C(<5=e
z^jt8KL-lDs)xBW)!1Kmbs^JVQ^LKRLC0Hp1T??toc?x9bnBv|Fqa>>7$1=(dsX;{%
zKaMC=%39a-%uaWb4Nh8&Y32uBj8cKjD@S~^y%W(g2%-MjPkq%4Q}_X}z~?DEsR{rS
z*O*In%!UWe!e=OOxM;pnljYeX_7`V8$28t*m>ra%9sQ|O-aEF1oGcO4V!b0*oIjQB
zhCLFneRjOd^YThYjF-C)cl0~6qDcLqK^zaJxbAypzEYxx^`bjlC@xI&)irVoA8htc
zt}tRD*kwSFH{B5EvK!O-yl;l-U9G~y$+{m?QXvorl2CiJx>(_yEA#2J<_ka92V~t7
zR(iy%O@X&^Sg~1{4}i8YZuv)anTZaTz^@NK$Bd-IFkDU}YWhH4h2FF~aT$9J^=JHO
zMZdGbuWuD26%v>g9_5qeEvX#9*FNp)>GgiwEKMHF{_F};Lqd(cnZ$ww{1QUDnWA0$
z^czd;rilnwXf^WQoHLbPtEl$x?VR4YbpYFTj|;`FEDf<q?M?BQ9nW5>tU-T{NqEUs
z*w->o5d+Vpy$T8r&+mGIm5y}{+2z|C=>@t7<KT4){&C$SZZE{!d;J_sGk0<pmGoe;
znNu2=mME}_a;mwo>~1z7`us#M?pEvN!uLTpTJ+tQ<lji^xYUZtUaU<ftKC83SNx`)
zr4cujm7R%PvcC*yBSQ`QKx2wdK!l>&;sYX>mm=LqLo-NF!@8oRKX_o(6CXtzp6k1?
z7z$dP4Q<#=04f1(skQR1qF_gr`a?b`^udMWCD4_TVKA4zW!XCUd6|j(BkjvmA5=Ae
z6>IjbQm2j5##U$W&cc}G%;;v0^*H8h@$(uX_QOWQK(GBLpyBG<%7bCC%Jw70_pXJN
zZtGN~q2IsbeBcjav<`vBPpSBu0k3jeD(;U#N-*mM5G1$wl}-f*coicq6fwv-e104P
zJb(zz5CPeUs^qP%Hoy89Y@5TL=a(oXu>VjHu*`NM%c-MvD9Q0OV0+XBi_SQf{;Z(?
zNZ+^bX;3PBJGt?(!`}4y#^8IWq<!NyDJws}Dz;ql=P_>^a&Fl=8gHb%oWfSA4|Xk>
zhO11(7*;xbGE&q6sss}CzMMV@VmxJiNy-?uRzJZVoT?@7h>_s0;)_94M_6xJyOaEe
zGa*T^^&>XF5Nm{)h(&eqfs4$e_2??I)>rYAt{|L3h(BS1`r+!Mu{NBS`oC872qx78
z{`S#eUr2v14GWVs0SY><^NGl3RH-(@{veAnR5e+a%cQqzAIx$<*vfO;1&|yhQ`Nf`
z9I7=4N)K45Z$I@q$W}cELV5S#Als>8K{jfPLgCE?Y$hrmH1s$I8q5S!y`OInKI&L8
z>glxy+k{^1^G^wQ?}tS4m4I~bC9|%cXY)C8EZ;snkR;DjrN5BL2EknIKfYYvr}usM
zB1M~XV=d<BGun&cbgYDTnD!aLej}{iI81#m0c<f+0jRn?a>y8<1bfvtL8EdA$zV!v
z^-1#R4x4YPOc#&%IZY4b-@G0>xPXgZ)zXeo7V0lG2YDJ!jtGB@P!vXUQSBE$QXXO5
zeOBnXjTNF3r(<>08wdv}BA&w&Os(=N&18=pzciUXdlmMB_pQ%Zga4!-VJ+4q`{XO?
zlmc)qz--HAYJWRD`NkUv6_)>#aF4~UFpDqby(GdCHTHd;!Mg3pP86>qnQbTabe%+;
z`YrH!6I#dJiUJK=PdKSJvdhmlxt=mk=I8s#OiDMuBHKF*&%Mx|;-QKI54~>cb&gs(
z;_`(IdAbwX>NRlzRA%jPh!BXs>e~T1t-&PQ7M?AIC|I#%dq@)j{Rky+6(cvlj>VK!
zk|#o$s^U_8JIi-NOrG;6`is(f@R|0Y_4KP;LZvAEG%tSTREhQ(&mfUYDRH%{QrKL3
z@5MkGp?(wfW1g)7{{s-Uv8QVAJyteA$c|@fydXBY2FrkoWQW**<k9g9DTv&KsS>2Z
z<3l9dFhudq$tfAJ2c83p{ZZZ`*Pax)I?XWuMz~X<awp4n>(XZx^TmFCnl*3#SMBkC
zgkQH`+r6n@3-H?-)rqU1FcgfdqOt#L#(r<22Hl@>_t~1ojc2||N$j{BNg9uu)K$0K
zD8Th*LnW#D&pCHl)*gpozPx2I%^1)uuc5ekwnnkZcQIgHz#wk&2fp@g6>)NhxL|NV
z6fVFFr;Uhry%*b*-}k)cjrDW_B?CBx5(H8Gbgw}{GqxDq!i%gbOc^Ba$r_@s@Rt+!
zMRr<kLG;Mrjbig$l|LG8!U}g=#LV@-@y`5HB$(o#0L))g9(_@$GFE(2dYFQ%vlZ`$
ztGZF~BF^TWhEd76$0w|4>wdZ}#=ti_KH%nkM{fhR6ZWov%L#B6q3{28bdh2fq3$tt
zn1Z)f4-_!rszZN~UOb_<jdyJR{gD4|K!jq)^;U>zV?tNX4OD2u;OZe5h)3B=V4W}v
z;8C4Wje68JL>dHbGhtU55fZvnBH~D>+NWeZ4!mV#XlJQ1Vij!?)Bb)L<G%D)Amen`
zj{Cf=)o$fAUj38BQ3#g~qnO(!Yl7woE&9QWsb3K=wtEx5crMhrBkzRf6nLygNmf|t
zc%F>_o%-6tN;W>1(bgpR^}X+6N{{de(P<KN^}Eb9V*1|(0Ejh{ZtqvF>Rt@bxO1U^
zSiPP=^gAcHr%cb@YK^>ji#i$7DA5z%^^JoShioGKYmyU`H@on8pIAUb%IZ;XA59L=
z)<I|}Ez!6huk>17l?wTLn+I_VC>!C4RT;7>aew86In!$+2$~XP44l&{KC|G*s$iJv
z-HX{wJn&i((^$IuSyn+I?G<D?S7)tu9$g#{2Zr`I18aAPnmz-nr)epXe!b9f@Xzsa
zzIA{QxvzVo!%bm(H_gwk?adEfk_o|<sbuhpij%LUzs0^QGD@_JKa1{uPR{@B9OUV)
z2N<Vj<GvS*e7q|9Dib*(Z5(1wcKWC$(-r>o)!}5oAL`70&j9H6<v(%{R>U;jDt9%x
zwyC`jxx&yXW-2iw@AXJlx`H^<5oAaQ-@ET7_5cLjgNMIbI0skRrH(AW+x;epZUk!S
z10ga&e+K_2d$tACu7}Z2vR>vJ7#27lwUj^@Fi%5I%Dso0FsGfLc)yVIKb(4%V_NXU
zpIbQiW{eoxW}Z2Ri%CP6mlLA5r3Ceu#V%8~LjP?4%N!L|CHBPbI$z3UA98}@pS$m0
zvoi@s>wQY9VjlVw0O5*NeTcw+8L+JLcF7zioC{5SUX;-{{oANjFbVk!|4E*;1gWRH
zG|Bqc*Ke-Kux}_b5B<MJLzm;@{enx1<6{l$HN;34-a{e<XPu&2?fJV9pfz?UCnFu4
zh<D8l=a_bbK0*vcD%LC<+W0A)>%^5M*0}n$UR74RW*cbgG5>0d6w9H?Vn)broX(nH
ztEoqdDYceB-i~hpvi&K)di9)8>5GiRE2I>hKsn#PX3*89!Q6h}I+$ZU8uQ#JxqcZw
zbq8NdbKgvM6o)`te(rkLtQ0|rdB~CbTpfaIiW$*@0_DhfUV+_1A-<BrTyOw)+>xFq
znayJhcanqt&d4f%p0{uQCUl>kFX9zYiKSvK^N164zujqStS*3MoYPkL)!~{<F4|6;
zK+h96uI?+^>oKhv(x>^=>SJ+Z+THV$CRQX_$&(M`!pf@B7Z}${C$}!(TNy!msW6?&
zgYo!|t;(@AAO&`zFGVbE6R{gxer%b;qc0`Mzg-=uL5A@%4RUrCAMDfH2E=feNcp@=
z_FF(BNY2|x_Zu8*t8p9^V!e@K{Amw(OtU1rtbNAaX&%-1HTMSl9nzhY@=rWYWTzuW
z^ighJRVOs-m>Z~}DSq1@iwi1;jT<)<r*zBh7(HmRnj5mYt@j`lpHxV;0Yls(vPr(x
zbUpQPMy2)nE{EN4{Y1uPQ9Ji?Uf}25;ytDY+=*u0^@~^`xlH}pQOg%$f{qM=$xa0B
z*Fd=J;=!K@v)|w1u%#2&C0dp)_ID6-*pB+U=ITv+OA=cX$BH>hU{~=z;|zPNXUV>9
zY|&y{+1*dtSF%Iu3%S@9sqm%N1!p#DbhYsxe26}Ni7}l$b5vzfVn7O$M7o?_AaaCT
zc7}K}?Yvc90;8hO0HzV2*Sm5quG_+E*(-*{jP-Ddof-Z#K0ABjhupWnE$k9<mwJno
z*01>Q7>jZq$u9&53zR{n?^y5Jysy4HCFN--XxdIdoz$(!ls3v)YTr(@)0ccb3%atZ
zXnWAfUTd?5p)UX*{Jiv4(L;0OO*EFBe8B+2Ys8L>erw_7$*4hlp})~&zDh#c^6Q4r
zQmodhSU*cW&O0(wI1e0tw1)Gt*gZeCj)76E6y6&P2&GYXll2T`V5p1O5+V6~Sd+j0
z#E&~Mc;MMLArQiN&{c?2xCT<J^23VBdVbM8iRDrV7LFq~4aW`^+O5vFrMU(JXy;X=
zWS2PSP&BY=4Z4nBuK%wrfb4|#lif9Z?&_>RxoYkW@stK(^Mmjd&U}2!D3-Io@*yIl
z)IW(II^j6^(>991d-niu^uEtj?7lx6wKp(m<s5+taT9{G&C?vZ4bjCT@7KhS$Drg7
zRZXEF2~@B)?Jg!%n72g=s*)L_@FdOog40Uf4LBWJP!b@ou4{y!_M}t|MFxTEEAD-!
zYI=luP$Ku>qj(OCdURpd0G}Zfp`ns;?t5!`Y<x_Aemy564i=pJQ2gZ!`B7Zz0n#<H
z{i29%nULZQ>_a@tmv|136iG7*GoF=NxW%6=J9^&kkFob~a_9PR#`w|x%m&N4qnB%#
zao>PY6gRS!0(wj5!aXKj2O3|V#IC|vDyCa%b}j@-Q(_;?#9@PB_Kamkh@?N#morRc
z=spS6AJ$(_C8Oe%#E5VmlsK)EO;$fIS@d*s_=XJj{RGT{PQmVR@A+6?MN&n_<=Sw#
z$nFy=Zgg^t$;bW=_X$@UP1p~lpA}L_C9oHNA9#Jc2b@jWjI>FUn`?iv{LgRO&d0VH
z)A+tuF+ufv*GpZtW&*<mSvo|X%lXq7g+S4Fms3{EJI>v`=`j0X=^s4bymT?e*0FzR
zE+zk-`|1LrcV%^5dT|yY<mbCme%pL`1~th|#FAH5=HnDQT|mp_X)IX!J&kR0?R<UU
z&p($Qt)0e;32@**=~W&}2FIk7A&F;$g;RYAN=uXO&ZjlUy9Jv9?{UINO<s?a2<IJ&
zIkppED(#b+aG8yf1S=GoqdN$$SzmGy`TCjVXWueZjuPZo#hVwODpv&<{9IJHs<@$k
z+bn*EfI*XEM#=bG;72Nnc5T1mGyKUmD#^w-F%o-L()9Shl?N`R=1kqDfzNEeeC-;(
z5cg_odl2$<Zuro(upE?h#>Ql&DltK?V#ziJ5IE-7f=t`IPp1-+3T}Li{NuyML{|`O
zV%01LYLOc6>vu;5CpZ|!#J?;w+krFw<fbsEF}{V0C?!4l*Q<rXr`&}vDl3Ld?qGvX
z&@I(rH7Ka*gtgktJC$MwEB|RLr*-cOEX6woLJ0beIF9vfjMf$&neCx+KS9m=Fhzi)
ziXT0tIQ&=wM-S(ch=JvM6ALNI>qSCcqu+}cfhSAZdPF&8pU14+=!b1;artuVD1#*0
z89Ej0R2xF0KR&H*MXbcfs8BDvXbB&~{m|-$Qd^V>H}`3j>cV<O0<ssus1|l3sOH>#
z3POV4&ZEFU=I9(arNTe+Qwy5~dxH|4X`9*}b?W_?FWr*;Yq|8Nij&n_7T?};Z_wpP
zsJ8&;_cKKA`$4_UBqjDld^M4Y#24M{wmfP39GX0KLG5;(e}54#W?;uYFH5jgXYIX6
zsO=Ul8Mt&)9mVGC>^4#^?y326jibsbRfBgr1|cq{ICA{*O5<=Uv<CuYY6e2?e|}~E
zRvY0Z8pYONqFJ~=g^unYvNJQW(!Gjv-=Xw@ee&R#`SOiqk?H0@gxLNteBGd=ZcNw1
zKI7&%U}E@N`<J^)8rH-+0ftu~N4?x_WFCi{ZB1r}j46J*J@!)byqv#GxB{*Ina{h5
z)~U;p8{~{K0+sT)#z!ID^UpnkUz+`Zs=xkRC=HEeCT6W)sXv`JHdQmA!QsJ{_N8Dd
z#X)Zxh0snkqC27}j$90Abc>SZce5!H9q-^d5LjyP2mXTKfADa_*kZs)8Nb*kd_Qfm
zjk`j`YHw<GT+HDYxOHXb_IO^>f2f2VN0r@@V^)lQ!F2;(N3yBBje6*c*OWR4N@(7{
z=LMFLd>Kc18zi0e8!<fTJSRnshmS0SYNdsD(w;$GeyjJLf&tfs#Fi`pchW0pFa{sR
zrpto%*N`v#0ol`!=1Dh|k~W`z<6nE+8JF~a*pZ#7A(>Hts2q;hxx#<tk#HMx`zZIr
z3WN)4UMU!7{TUJ4hDZEUjxfHjWvmaYpQij7=nVtQd%12u6h32WssBo*`sU0f)QcFW
z9vPcWX7O-do&no#d9||T4BN%b?A6lSm>3!OU3IXU<eXg6a9Y)(dao<xNAYGdp}lZ?
zJf;(IA=tzHQQ}UMDXzLZqp{m&lij}tdiRB@ny$&;Z9h+wM@*lT+^TwQ^OE}gb(?H=
z;IREs9G>F24UtMQJ`cGQs6EPdGD(hvK{z_z-zL|aJkR&CUM1&7gqqsFzLmDOqGmm(
zaBX#8{v&U@Sm^!7YAcB~<M2@QXlY0Hq2HQToE~I}JvnX%%dKz)R=Hwyx#!(bztyG^
zb$6uT^nfe{mMVK3fYm!Xt^UKK`eg3q_u>_gobOL<({H<<aqsT#SbjfXx}S8q_;r8e
z=c73EB@B@hG21yii?0~GHi0gK-@h;OBQa5yoyN*h$Ze6I_bl{x!Lo4fJ|}f<{GE_M
zy{`0Bt!nMODqQI*sIBZ%8+&Ow4Ns>Jd)F4nOJ_wFk`~*^{0a<_ZLV`iZ{EW#p7q(P
z+}P&Y1#_CN^db$Q)Pwpr$+P^XBR)dO5kVXHa*$W@O0y3AejY&{-Foj+TDst&=KfDM
zdKt?FOW~o+jG-5%w0^rG@16z+5$4d|OD+*GLy1M<LeqI@5&{_;XNYi6{=wO0c_=j1
z4o|LX_Pg+0Z&Tw;?Ecg(|9aV9JiS}$rl#yGUysvtVBQ|$%kD%$_*1Oc(v#t?m4_NS
z2wXn0o&r=yp$`QygSajS@m2~U3KBVg7<QEdG$_-{*9@44n##Ekhr&^*w1jYCid9B<
zJi=NNZ09DN4+hy)S3h11ZKAA}tLV7Tt)V5<su_G8%xL7ofv}XNkRFX}epEhsO1Znx
z^j?o^E~kDdpKtM<Z{<GE!r506kA#4aC*K+SXWHhEUN5+H27F*S<dw-2M`5~5QeH6I
zZQBaw0A8c8^xc@rznyDFmpd`EL){u&+e%nN%$dXk&l6a;gwwB8x5cAUKTx0+mved+
z=2#wvxm(Xy!g1aNpT9QQ(eX!3-KS$nuA74JG2???LM+*ReVY;4J~;AsW$X(Qb^Q^p
ztJr_;D_pt1GVJ2HGN2RJus$9CeC3UwH4o))Vc{vKO6AwERk{`T(Pt9_SAFry*Rw_B
zL}YX7Pq2ijh-0aaaI?B_<Z%>^g#Z#TclqLNYXRbPf2UM5Tsf%kMLS}Ps}2B>B&e9A
zLBR4^H?XA^5J0_$MD547fmrAXyr6N()9}^$x+LD?)U{k1bh?C3G{Q9XYo*GlsBZ55
zPozl6siq!>Fv`obGFNK!u-~WSlPUX5{{Zi04?kre{pNc&TwXURPAf+d)%3Er{!eQ$
z$?Hy2UMxy+uV;nvVvzH(jkona@FPK!8Je(pYx#nX#c@Cdhik69wCB76FESlwRnbcv
zA&28AIFaD(2CebquGrU^QWI&1xZBx<JWz;l?|Xb$ZB?+c;?s)jIMp%IT<s@(_vY#h
zO1dGz%y{@fctCqS7U2sOUJG%Tjv05aG`%?Z{o6Mrp;uTL??=wwlZYzl#g_T*C{z2@
z{u5vHTE7MQ#~X>QMfZgw;L_m(_+;pG27|8ssnxDur!GbqOfIBT>Z2NURC~08Own5~
zB{i=;O9r24#FllMNmIRR#wnz}>yK=ev?y|%j!P2t4@?n84^y;1g&?ecJXBBlus%uo
zOKnHUA*S-HMLhFi#y-ycX`#;t!(pl{&I5eHd6RjGz~k^0B1!r<O{=`$pD*r7wQ>Z!
zF&Aad<bzx&laG;^CM9_Gz_W1jFeJiMlWcrkE1n`!MID0ccBN}sbQMSlCdHCl{|8}j
z9aYuaZ+$D$h?IgfNJ)2hNQWRugGg>ty1S*jyQQSNySuxkTN>Vr-?`5i=e*B-KhIwb
z95CFQz1Fq9G3RFrxLibqE2FWA7ySLvLL>iJNoe_o#J#iYT9|C<+M5w6Z<zeD%x5jk
zyY}jinhjbcW@-&KBecR&`uww*`a|hqqs2~A)|On_m@+d(IH}v6AG#NyV^Z}&e)8hh
z5(R#6TRE5!d@KJ)L*(a<KD%lAY0n2s^T{`S=(b}k!2qMNQkVvN8Fhq6tb8M5dE|f<
zjbN5HB~xNX^|)UjHgKgm$tJ3+8U8oP?&}>z7v;*MU`L=9wz3xqdd(@-9^X+aBNrkw
zT7Q(4^ZH`<T*hxPcK4eV^rECu`*F7G2b}#o)882_S)o%qoZYqeY~l?9S!aHE?l_U&
z#51A@U6wa{^?hUGCU@40S%fPOV(AFC^P_W46fGoRLL}K$DVGh|KMIA$=eu}~v?Cow
zZ@$7yL^Y#9f53e~waef@KVtjKayw3Lz{l_x`>TD7OX1rcSx05Ht2s5o91X0IG%{Ut
zoDWikn7Olg4TAd@^F2*(*WcPA&DB8!p!{FUHn%j}-xw?iit&)@FU`ckRFDts)ZDY}
zO)a4iJl00rVQYBfEjjNXWuN<jK{TOe-PfNh-7*7uCya9bq+8Mc1Li~uVYsfrU>wfu
zk{nIIqKd*rH9Ls4`7+^bJx#CMa4M-vc*G#zQ=rA|!FYDdxD7T6Ht%$9gof~;>%&o*
zIEH<2D4}~~0!qxhc!kX*>i6rd57K^HOvJHr&Bjs`H`^qP>MxOCbE(zdL%+2qYSq(9
z{%bN+^Jcm33U2C_XDP;p;t)}Khd#>iCU#0%e6TLoP=?=I6EpKhpM<*pfUzvD@<%cq
zp^@bb{>JWN7q54Ae`$Q={vC}dK8*qYOTU}xu<y<OrtRCW0@Ea9p!fE<=|o)%67Jp^
zb~xmyJgAjfeNyeqp{M%lwC7xVS!F&&v8Ylzl+#ig)Z84;v2`mWKXWMB%u#x9SR0E*
z-Sbn#K$*HHVNFrF<Rbt2duI>%n8r@>&xlkTo$}to`9PI#I-XNln94R85!E49$)x{%
z)J2_nKl~a`&Fg4Q#r|go0uMc!x*cT@Pq<Tw-@Rl6v#nx8#*6i#S-RchJ}=vFJB|3p
z5{d*`T=rrD<HrwSwV2x2w`|#zWW2%`cK|yOR|SQNoP_L`ERd7^aT;G7*XL`%>T|BS
z!|R$`%E@<U2x^F|=CZEqn;Z;KSj!kAqe5Z?8*e{-+)cR1T=l&wI^XokqnH##3^AVc
zTYL$@)!~T=y$Hq)_#)}#mkmb@9kPZR^ie(glY~qyy-zy6;tFeRINZ9vbXUWiQC5fs
z3o1c^6r6Xy2eC@lM?c2**{ZS}KCiv~w0h~oZ<G>bC*A9v&t&UIJ*4V9c{&?F0=9sS
zA>RktDB|7BHw<6hfci%PUf=Y{`%gi(;WDr7E18T*o%L1CbX3IRYSdJ;O2E264M|bk
z;TQ^cA#q#khg;Ctw<)=?3LH5>X{SDhmM)O{2CXIOCyL9oUs_kxCK~l3Ba+Ey`o}Wa
zIYYgwa22j__BJ*yIos^FS6I+`5}LxJw`u`@J&<wWJLP39eKiX9e}=;bzG{0jPHEj8
ztt4x)&Fxd)N{-I^X_oWNW9#P@-N@~P7#qRlRau<;tZ;DztS-FOcT?>}mf>tCS?=k4
zr*Gt~d`4yes){=09y)>r7yeu{a>ypqcPh&t<!>$%@8yp#Y@jNqJ``C}%1<gEMagOY
zcu9X(I8Yu3sXLocmbM1-pNZ>TF^4Bp19=6;JTjvPPnH2ntBa>9ge}246<IESqc?)l
zQ9fha1I)K#d->Dv_@(<Xw<3{0Rpv}G1|&xt-bY%<WZiBo{jukTkP@15WVL)a^zn2L
z=yYr8xDL6^6Vm>qN}+jCcCj-bT9729CBb~TA4rk<<B-BOvJ9?26?G58>=QZqQb2TI
z8Y#Q!_UCctV<>c*2jVU0Ope(Ty3zi9jI?ve7iAm5xPgX%(6P!Cz2tV-7t2|HU&<Gq
z?-FL}+*~CGWV8pqsDsD-rnoLkF=J?{d<)~w9M6v_jF4W9Y&uU;Y^s+*`#FP8!5`b6
z>P9VXuIdLo3+*9lq$Aegn`nLL>@{h<WjSr1;r{y9uZNm5^uv&s4)4?W;&usF=&f6x
zMAR;CLu}^$z*8Rbj6#C6tkYTs*ii^~oTHAC2ni!osohhE_?zv66z>^C)$FvD>&^Ja
zAxh@_4syGX1JE~XOGyg%RulP_fh4>m2$hm@Pk#s!_&1U~6nO-`u3RcW=F2NsD9tFA
z*znQzYec_!!r<h=;aS-Se7V`Q-`ZhB8ED+qmP(qc2?w!2jZ?-+-Hx=0npxd4dd1$y
zh!Xv%rNopYPrHRg$LiucmnhMgDX<(&m&PvzUDvHoagkU($%bByTc_KqNsL56UA4G8
z`tVho;1joA7iyuUVYBS6dUuvhq_%kk691+mY9*5OU78{PukM)w`ug(<SbVjU-iYb>
z#v1%1wP^h>#l=5gJYx`FVoE7ipat#I@ClZDC!rT1CPR<dHN~>|iJ&MfW6#J~_8a-7
za4Ty52)w}Rr0;z`rZBvIIBxXougW(b99dQ!$n4oh+rD_O$~>CU1oz4F2uKlpNT!Mg
zbFtgE6AROI<Pcnc@y4;TLLZhI^#Zn)I(`A&3`gX>V7O1Tr+~B)?eL;-w%6dm>`Qhd
z9hr8RbvBWXe1Q|MkG|<JJd!S7ksWy40b0106j86RYWmmoSr<9gc$SFik9vR;*#hF7
zH(@MtuRjjJg-<II(FpA+c}~8vL>5X$A9XQX+zX|K<P`l0EJbY^OD-UlhBvH3OjK4{
z;M58425WDh^A=Py*YXfT6cOqEmPozJIbwf2^hgV$UZKA;R(%GrC*)fF=4l?Nh;`9S
z!kQlOdr?UNB%wu#{|tLI&U0$@oI;Fsa#HGmaSo3-x!ejEn|<_7r8|PH^EM%%U@HAM
zje2x5)|@ZUKXsdB=WC4e(H(U)(+l?NyR*_$VNvhsKyp(y;p=RA+ZKR>D=6#U9y$^H
zb`6Gm_|?We+emECKl;gPkAZ10bhH$we+pmuAfK9#lkje}^6&@AOCC7!$7qO8HJr?3
zHvT#*E{ub$i{-J`5dPSeFvra#%>A8$vOfKU)mC0{JZPGQ*iOYP^{i1g;K=Z-spKo=
zg8Wd%zO<A{5GF||iiQy!zC9lE|E=ST{NjRAK4a-qM^Wi#Zz~yGY0V5|16Mh@FhA+O
zTuNx}ZkAuGVP}Y*I5Ll>@$Z@R0!a3S*+j=fR^kc2y@Io?Q4zww*vI<$_fG>b)L4pP
z8ouiMi7MVp72FrCD0BPxx2C18T7N>O5W&6C0v}_0BDdrZAKileTG*HoMV2m0B`ve4
zl#~C>1<I}YdWqRWHFEI-*ITve@2gAuftsc-PUPGQx(c18TS{?zuVFKn6f;`RKe2aR
z+r_UfGWz9~FfX%F@<7R`D_N8fZ94Kl(r>_TKh!2)FIL*lh`1YZK2nXkHC7r&Sig$6
z0c~SUm005{i(n0CZv}9cRkmdxMtLpf%cCx4a}$5G{Js~vxjlNwG1mE1wW8e|qq@?F
zbL~2e7VrF;Q_0Qcsaj=d$eO&Fa)k%o)Ihbq^F~wU(K{G<yll8vdC_&DSzTY+<*4$A
z0kUjvyMtmjydjz;(RAxv#Uze#qq<{HFC}q4JuIVnZ~LBS5)wg9x4bY57lwGw^%Qq{
zW-Z{QwR1g_ylp1F{^ilt(nI&&FDKHVSZ_4~#osacWU_$id>?D?11_f6Yp4+2gRk-L
zFo?tXZy2w=_4L2P7g53gIDql8%bu@%TSOJF!Ut~U^hcsrMznb`>#ckU2Dq{R_nDwl
zhvwn4YC^2H=5vFDxoayJ>#Kx`Nen-U1<Btnp}$t;0&7)p8kj&UzG4u;>D89^oc$8l
zFGQr8u8HPp^vmZRzb2~NoYAWUqqEJv$E>%^&}38JgA8<g(<OgMSjKlD&*v%;;ZxQr
z9umzi0W^b?`e>oCnBU-9R4OaFxRw(Xv>L?*w1O$#E_O}0*V{CX@5g|?c<ALriXnD=
zwsBtNvjS$_#1Mrg58On0BuckA&x`JOQYuu(=+=Vy!YuRJ7Jyz88n56Jo1mMIMZ*u;
zt&lD?s=AaI**gZzD2%C(`xx#(h%`o&pRHQ8v6p82v%15mPH$-+5EhY}^8I#4Gckqv
zW^dgpiYK~;vF37JgN(m*J%Xq<#QiTbC4JD?izV=sBF+Mw@`v4HJRf%n?_}8KNVgbA
zW{uj&p-SZC6^Pe_34$=@(O8y5w*b~k%8{_hzY}5JCM(-;F{4Ri3t+5JBu0#T-hHRS
zWkQ|eIW%XwJ|D1dK9m-wb;fR0%#)oZMOF59HEaGQ&#Bp7DZT1fhPJZO+z3XB&ytUN
ztF%eD@vv?*Hp)^ex4Xim5C^+wQckv^t<*A+OyRYwiP;AGtyAwr7y4ecIn^kK5iW}?
z8@<3miOK1TZgRItZ+@lbz0II7j<wmB2R5BgmzHzQNG*7b%VU-i&D6^zx{IWJdG6wf
z7|!@lqx^c*lhnLJUd{er5WyTZeYb!pxFQqROEHR5$GFAE&agYi)K8}(LwjV-K_H&o
zS1es(AXF#a2x(Z6h=g91WrUL+p;DBhj~yih9()W2eVI2*Yk^T0U)Ai?`Pd+Hx(}mn
z;}vb!-?4X9X$vt2BMRuXvuhNlS>4VzQH~c;(LJXaaf+$k33kkrYy+OEztlWd>0fO@
za8MGQz^^QU=Hd%EUy}xR{XEwB{I4C0_SKZ`1AS<VDvfdn&tUgWj+@<w1^rupdkKjk
zw%d<eYU4#YB)m07D?M}Wce4nhPO^ge<`#eU_kFt!?QTW+XaBsmvGUQ?x#(zH(NwGX
zp=#<UV2SpvyufyUn#o+lwg(Lh*Bh%C$thYfnY)7d9|7Yi{O=C+1w#G<8zk;#?*H0U
zK93{*c@l#!0v*C0H+3Kdr57S2g!C3Ei3VB+1rm7tva<LSR>4;rSzP0KWfpVHmVbsA
z)KD+quBLxN4NP(#XDLH7>_9FIdsJ%pu2}=<bPPrTLlTkM5Sb-w1+PdIqG|!j&&WZ0
ze$;9ooG<>YsZTLv^~tf){4&sJzXg+gliDt*_TotT@A#YF0{z6vbab|B|8mHWJD?X}
zDadlIaa;oz-V7vU*|@M+2sy#1-h0v81&H@|y?%_itlQubBa0Pr3iZ-bQx~!}O5<Jo
z^w>c3T>Y<lg=qCS0*vJ)KA0%Psz?cK7}A}A|Bk{**Y)R_T>Yp5mrlFS+nV6Adl}0|
zVcPwoL-OJ+p>opK?aCnmZtr&oZ@wkTrO??m_gbUpe!G0QT4`VsTFNR8CP~TbC{`Ik
zoFe%A)deakO^c=bIf7z%&j&;H$03w0cDrHyBNU1xxj}~nx~Gg>`RRrt^QBzX>iAXX
zC5(jHSWLL6O7eG9ipmvJBEdCj#UR6E=M}oN`c;4Lx{Mg!y%&0CHc)8QC31lRB<{)A
z`-YVZRS1`!&8fG;+nAL+zysP-BIgcz45nXCmN@N!SOi{(Te2|vK2*_NwarTu8bU`t
z8VS4CA$IOSN<8%u(FrDr<8+52z9k*MSSlmsdlqha8!T=u=euP>-0j&SfdzsXm-)%t
z(H{LfIwtHa#%_J-44iP+!Lwb$`yZJG_$cI;xbjy{VO}0Uk5+ezY-cL4scA@M^mF=4
z9Pw}#rDo3q4y-PP_8;MEJ`aAM&quq3?*||^3*ad94KXA4{q!wRjK+NamsGbWyRqVj
zkfg8f)*oMT?O~rCdZ~WNoIYw^@1YmIi{*{QNK?O5c??<1F7mF_v|boZ!EvFTDy}c3
zcsF6}CZ*(nQ!qt1<6F@Z2dYqUiHXS}j^?ENI#bo#QGupfE4z!b272w>GOoWmXf!d`
z2jg#1OE;j47n==^@{_uaocLTSEC2lVbG{hrXv^IWWbJX%Uz(0x=6+<{<K23U8%Ybt
zP79GOt4KOPOP4Fg>NLdsJdO}WR3+n+eQq)G+SAYDMZ=si2Kj0U$a$Slp0obv0fiX)
zqSMgC9q~;ejM4wNqn>q#Eb!1Oq+omJj4Pt{Ai_3jbLYr#-tYe+v5>><nU;o(MXB7Z
zp%(hua}e$Gkim5TiMz45gb$*tRxdT_yBM2ICEF+)rFPO0;=h)!9g+oHlrldpS|1Q$
z2zz*32;h2=Mx;8zB0!D9QWRrKx*$h{mxuB{URMf6ePuZ5`|9vHM@%A>*h$bul;aoR
zeXrPU>vZ_lQM*4!-5SX<eSAa}AJ>7AhmN!$?xg4bWywURG0o%u8hf1}qmNDPuWD-u
zN#6!>0bW-ZhM_;xFVdUmy6-e$$4ECAJ*_N^1f<X@REch|QC;WYeOYd>KPGTZ{>w*b
z>e@0lxm(|hmEiY2p0x4R)LSG$#=!i<%@&ovpu`-H*%2djRRp?+rr)Zo003vh55Icc
z^3=Qt^j56%@8PrNa}{!<Nbw!#-6<?_)PXYWLTk!SZXv3KPoUe!Ly{Z0EIK47AwWCz
z9AX$SFk;AZbgS~WwV&cpbYifn`L5Qmt6a)yr0UY%a+edpn0!K%He(3q2b8>TDj^e_
zKow)v!qGBI7L%1-Y2?^NpQkuUUSB{oaf*vG8AK*;Hi9Fk@Ki7o<hq3~Fsgh;xxvQP
zahgS#ttk{#-IDPkjcv*T<EtWJ++jnnO>p;hv2v*vtCniXgK&t)2Tat_2vaufjMejJ
zZeY)%9N$g$$$;W}ls$t_{XHO7{CkhK>E@}gosh&xGw-ZGcJ7E?2TamiDk>@$3WH$`
z&rjBQ{=}6BsW;uBnD{fVA84tbC|U0OU|L)@R&o<xA$J*lGheQbyT*x8zg%Rnsp;05
z@!cjBR+Ua9)}Sx``Sev&p^AtyANo#|n6cK%>C8{LQiVR1Un()WS_(eTV>$!}Zu9Vw
zuGI$ei?%ygAKy2vfBcuPv2>kKfW<B(Ue>Ypz~C{s%yQZw?iG}8(rGWT)%mmN{l6a+
z&zJST{jLZRJ{XU4oYo;~hWn_N#4f{1skQCQ2!7HY`ktg;N>UOra?$Q^z7OOU(LDQ3
zLr#d=a!EXeygs9&hz!0X`_-qq5oVnE#aVnTykr6mXUc5xT}XF$4sq8t&dZpO8d_R(
zx;@iRzTcPC$s-H5x24;Mr)46ymrOe-tM5$9Xhl=#^az-TMt&AOjonWxISV8qw4DJC
ziltgRvDXKq$0dM`gDE}<?{pEm2GP_Q<m?g~R)5kxahYhjB@U%?ANQr^va~%JQt5b`
zt5^K4opx6M4&pQC^{ThNKfWDmHwsnqo3>m)xtN!b<-MGo4f(joHc_a}7I|yio@ue;
zh}Xxh$!YxYK{D4tfA7s1WfJonz!j{CfWJrWr%R%IkHL4=OLCNidiQ+RF84&VXpm{n
z_2;<f)8eD167!3#h(+?V%`XDF;o2_i1?LlRK1C(Z{5BMx0Mb8<Y6!3cu6%(%ZHAMj
zJRt*F>#|p)7~kLXw}7gvS($k!u(iEzfSs!94-dn}=qOZC`H#OWthpK!F*k4hmu0dd
zbJv!<RHKBgCr2BX_B`2k`^tX|ql}69HfejV6b51=G!Mkm6-0`Lcw0ET!9=><t&nRk
z)(6qh$aO_uaT~VpLv#~xvuwGG;hf(Gy?FSAmZqD*DD{6-=>NN3|8Mie0XPHOM>;_@
zuYh(^wN&tRLJ@1qzL~tSc4t=5CkP{yb3~K~{iEd@TBltW<6I=H5B(ApDWvSn4p{=}
zq9&Aj<dyd~XMjA~*CJ!$C*WhpUI}MK>Kb{Xf#4-!K91J24o~>l0F}joZm*y*H=jj$
zycs2D=jbsTVAuHupR4v8hY%lzCr=3BZ@D}fr9k2YAJrsW7Ii8?XVCIT(YI*0kyahs
zueNTH20rscAG0!(p7Uv+$6mS{r>qON$K2Cph6obgR)Gd>HuEZ!){>96YyOH}9#|Sh
zjD)7v#S^v>^h{EBvDvP(Gol1}eas~#=myn?1a9SMEiP{xc!}sjP!21BIWEo=<OP-t
z<w-x&@5+Jo)3<L0P-2A60a*wmG0Shc$yuzp-C5h)n5%d!18#%?GM@eWFoUlX?UUs)
zkQ?p<g?x}ub87k~tjlLh{8}%8IITR+j1WD9JI*;^1UNr5=(KR73FjvOpl0ZSNN2nh
z??>xPb753$!TmEqIDFD)sM_*PW@EL*%CfIDFpQBJGlhv}+oIpuY_PY`ed<t|JI40c
zaJ$)}O9~bny_UYq(fbRkA8i22RTWe(4>PPbGj=`RSYNK-7uDrSvSEVTsIiGOdkUwc
zNzLd>E0b1O*}Ka#Uj|V`Yqfrr8g_H~%~6#GdqV&%h8~$pEZqWZwSjJ<?IX1!3tA--
zq^j=1!a<m{=pB`Cb;KUAE1)Ho>#r}S4oPB(8<%~h_c*d)j9jGIawyEs+|z=W=qemU
zR3w5>iJ5hXop7}gKRUN~%pXyHwBK+?e?0qTbh%N8Y*bqFW*<85vhGuyV4wtKv9j{3
z*+>WuJ%z2<E91pRnMtal2Ze&ym5?}Ck;`!wh$M!<^`F9qtEj&Z_Oa&b$*apx9>R}g
z+KYTFqw!4|cg*w2EslD6e|lbb347T6wmkK!3IAvE^lvWs|Jk*ADq+3Elp$u#Je(ta
z_mYL<IS5i#H>HImX^-k51^v%>LwVjM_RCPM>5c4(h|y<`{H*D94<7|Y=4hqmR%K!K
z#dn$&Pyvs!;jbl<3_c@4vr&(P!aUbND72NHXlUkFPLLyu*C&5$UH6Mk3LZ;ha|f`n
z=@^Zs{scU6WGww8kvJ)#qNYxX<8!_3bfk^PPux}XUIQ9-%5ZN*0*BR?thr6M*}7!q
zV!Q$(;0J@$c3hr-|HjvCBBBZQbv`-k@6XTWgP+@8`!g_@R5Z($EY1eJD0@1M{?N$D
zEHuGK<@VuP%RcCcTAA1XRXFQ4XFB|O0Mg8&?r3TiO3v8&JTtP;=!0zN`nO?i$ZDiP
zl(usO*EjJTmYEvB^HvU6oqo_V{mCnsLWrLXh7x1E5(wXH(`nX|MlOH@yJGYP5Xtcp
znHhtzE0TkKzV2~kJWScgiClMRFT%#U><O{Z)<uJlD%@z%E)5$h`T7Jns25zN06Kv-
zBM;!<SXg#+PuT6rLaNr=M{Mpz8!SGY0roIgCKvANJ)4&do;csXuIv_m(FtT-pb^@)
z+!)K}ZW_sU|6C)XEc;H-nETY%V#fV`gHVTin0v^8ge2+cIWd4C^_dJdd!d|kozy)(
zH3Q(X?5`0uq!Ghf>9uLxwI5KLr6d!pq;VyBZ2!jCy|S}3ALZdOY)>jXB359xz-nPE
z)URpFNc#yH=)tkhb48!OQ_B$^c=s*7hQ@VB%|42pcAcHLMvK<%UdjqfdDyPNTw$7#
z?b68He7fHGpn`Ou?hC(FSYq`7jf{G?1(Eq!Mybt$smKX8U2JsI@B1DPn@3-lr)^sW
zzB;Gj7c%oE2X*(({FH7L^lzYC=&?`hIA+!I|DO-}_fUllP~iq(7DwB>-KO+D6i1bR
zFF#8UG$VHNBjud1xaAYT+eZzo!|^|YSrW&OYB%0+9#&3}Dnr?ZbS8XC`H-GSM_ir;
z2*IrDew|4o$!i}CV>qB*B!*QKds}Z0BJ^3A6juS4KuAAh4<1Q}AF_4NsPMWRh0#Yh
z0BKLgz}yD5+nBG^=JmfF*z68wNBdU5#4cR?SFC1(UCheEk-d}p#xH32@p6#PIqBdA
z>}ZqlU+^h+aSp>Rak+?Op7yn$tTsdP4NQ<pqNvThBFkV=2=I*MQ`yWCNl<QdPC_M+
z)ZX?*{Ve6ReBNM3tlZ+&pngQ6L`@nM|CxRY5VkeNXgoNqN&}U0i=}J7#W4$us}m>Q
z;vlCo6(_zk94R5k6<Nw|n7Q&zs<lFBTbw~BAd8|hzZRpmRXl5BOXEthXwJL|XfX8t
zgvUvU9uwJIc~syo-UNTyB$JegbL^1Tg(>r;Z2r|e>aAmMsyq}!ClJe&N48TM8tsdW
zN9;Sw#w%-B!gRk4oYqXsj$db3>!u*D5ER{yIZj4qlq|yKcWZq5*i~faYmp$QdD79A
zEHyWfhZ5Lraa906sw}?^vY*lBbi;TR2x09X<Kc!XeNmq#J-^8DvXWZe>KucqP>HsG
zydwy!@DBrbN|W%plOphDQ_NtA9xDI616ZZ;CNUPP9<#k97Kj4;%ZDh*l7H?U7Wc;~
z!Yq8(i?I^=^E77B4QF}@t6jp#_OnCVd*OS_W7(xgpd>`;u}Vh#0pcwGWT};!I<2w1
zpQ3UF$6Q|r3cp4nKOSl+ViNtvt$SsgNlQl{)ZAYkoMz1ll9TgzF}>6Ky)u;vk7Te9
zbcZI0b@#t+R=3j@yFF-jX*}&%m>C!+3v#8P+;)RoqzaK#V8zeEcMNegf4!sxjgzND
z)%+wKGH(B8>Lo&hl0&IqwP*G2rL0@e!#v8OQgM)7@d=B<6|S8%svH%YjO2pU3hz_w
zd-tx&Jsv@5izc-p<WWs_0=n?Diio-u`jy`4r`84U<8H;L&Z(#LhU}ecL&-4WJh-IS
zag*?FkQn2MH*BSRZjm&<!0fjY_jjSqQuej(F%AL~lD_~(N8A5zzWE;>CW!v60Ci92
z4uUv3UW{oV7DypTuX!uYrU&)m9VZtEBrbs2h(dA&12SU(A<kET;p_a2r1w*}p`Zp{
zz|@1Zy+MSVT%;0c@Rf*sg%Tyk<0brvdaX!#HkAXQjpT$)a5`b&`@{$w^~C80U_Fw|
z>-!>hPp!e6fqR{`M=mP|<3n{Ra<p!V2}V0Ei%~fD8-j9tANBEA<X!CzB6rkS;-B^h
zv-0M^!{i7&(RlLj&q(7xNqFtWQH#hHi<!QE!5$ztnE}j8^bvZY+9za(jfJ2hT!;_?
z@8}7>$0AGOy^LQY5~;RKw~<}0Y!ucM(V(b*{`F=Q0k2c7ZjYrmn_xhgk+R=6_&(_3
z1k|xHpPq>GRb`{KhmWWCAb&OzKynncfYE8@@qAfPilTE!2&0sF2ua^!wbk<t%I}Q9
z>qPCb@A1Va&8^XA&}*UtTLAq=ei3MDBTxJAC0E+=xGii05P=aaW>j>MUve+MJC+aB
z0Z%fMlwo#lom^waWXJ7<lA`B?oe~Xjs)d#$uZNUFB`jhw`23L8^m+dbx^LhTbM(Im
zX508KRkrYInOoOatI4Sk(B6pv<vq-#a1@FQ#I$*KhB1VWGOb@>HDgYa(ip`-gj?~Y
z3$l#9!6^H%bx>?k_--s<3<E;x`n<wC{Vlwi^XM;G*Q{U?qw^e7QJ4=v2T$BRM!^Rh
zT~KTBzayTXeI=#?T70hJEanYzpFEhH0U>}(s=MOCHCjge(RAG_zUT~O`W7;lQg8jV
z!=XKO$y)>*d%9r&Z(q6u>YF#nJv^14g4q@CPjS_p7pl$n`?)S7*al0(_6(J3nI3hd
zMbh#%6uKo%NA;Lf%=3fR6XcTAR_<#5IA8S`RYql}l|O=Ow7%IQPSXyd$4$Ovac7*r
z(-)&kcQGG$GxklA_8YQfrrGfBK(K84WkWMA>v`yI0}&C4DSEox=qak}ixo_Xq!<pg
zRnVZ1ui^zJ3^65}wmKv|60WmsNZ*REz5In~$s?FgjtpkF-=3$mrwLC{k8q1eP!?0p
z%&K?sd3y8eGXsl|G|4G1D+uV4Z8V%McGuCqV+|(K@Hf|JIJ;}~t5qJ8yh3S`%LVBs
z>2r1ZBgi@X-D0pfp$(inTTv?!XOx6KT3E49M9h5k>Rc9YYatWDumqR+((X@o3CuUV
zln^!YL%1XIrD~4lI{W!tie`*k+Sr%h9pXa55G$2S39_HqnO0jD^t$8y^&c<F#<^O5
z?dSH0OPue87+XS40+&o+v(F?(Qt-c>CZxZtpQyis(Lo72kDWH(o*9vfLq>^+ZDNZZ
zAAY4@EPNEZo5n-*jz2i!YZIH*$lDEVes_&uRB;y4fk?H+I=;cqtK!%$gUq2mOD1;}
z`pXyeP%@)WA=c)0pF}`R+$ZQ6FSh6T@Bb`G|IhDKE>S(MbG-i2Ri>waG>lNA+`olq
z@4U!-2uQ!sDrP~^)=9qCJB|Njz_RjO>x34yWpawp!#f*Au|YWCPv}%@m66+x7B+VV
z09}-x*ZJ>7u@JKl$5bV3!ufL$(e>+BJ{hJ6C8*9H^NiShUcgyKX@l9jbP5-%F}`z{
z0b4H$>N_IlXOe0e4!SO{bF7ggDb1P8yf}r(S8Y&{;<t(JCp^7AoIoWZLil1qgnITx
zqDKBzc^4Qa9E6^eo3mK<KsH24c0r4gDY$Lpt0AUE97u%9{#<V3=m>f#dKzsa`S3A_
zkr0q#r2X*WZYM3Ci$&oN&A)jT3?w2E`+1}3{jSwrB>wJx(q=U-#FG4dX~I0S4^Jpe
zZgu8*G#BOcqq=9~D|r;;`|zFhelnf%jF-jh@)@N*y`2qE>}>B(yenVzVf6hY<!HY7
zxy^h;KwA<G@(wy7Zn-6Qoj=+=euy_9Fk%k6n9cKy<Scb)vnd?>T}^ws&(p9O`((ZW
z1^vf}K!SSXWm^7-=&P9deny{>X4g9|C~VU5{PdW2AHLHGsS%%D?oLot9}-KCzll()
zvcEeWeWbjRy%S-JPX?IyVO2icwlIpg@;Eud^&YeBMEFs@EZ*3%*N3ZMd%W%@A6I+M
zx-FV!=sW_!on&Xj9^Dyt2i7m!5WX*DQKw0<jF%Nu8rb%~=iq2=Qa~Qg5!MiQVp9z2
zK*jUiVzKAbdGXa4BaZGDH>zN<F{)vQ4^(v*C}RxkM|0oAnuLv<vl8QXgECh>CclW1
zeXm?V4q;=vR!b!21tY%4z~!Bhv@{`??lk~0*lvFLQQgP39f6`&n+0_}hbHkYiYF(=
zN+g2Zqt^6ngBpf?knAg{;=vgTQ4V*f-<0QVYi(CzN|{NHp5!~ZFCFWO?rz5o!!Au~
z)m0v|g53|YTlr!}`L<#PvQ-5t%@-`-JUNz}<AO}CyVe(aL}9ZJE_{|%!c^7hR2zwi
zU<k=f2(L0ZiicdQW2f6j;(V=hIftfY)b0Kjr#SxgVb>q-WY3maF~bvd8gl)@9!Lvz
zMUX|mKPd$sceVauQEg)U@-n?|;747(wH2v=N@JxdV(uEH1|yA&*5&xYZ;9%8f+8Tw
zUce2VXhb3v{W@Lxs|@t)yWpY#-KwuLowPImzTj^C735KBNou^U<xb?I8U`7BTV~e;
zH?ZE1s9Nq2p-8Ls(Zsa5RNCQ~k<x62wQE`CE!-OY$5O4v1;aFA&*|Qqw(lF8s{wag
zJ#S)TtI@<+QDamVh4&Gm5&|v?Fn`bAyR)9c#Sx^WYw4apXw+Y*jaSww(yD!2f;FeC
zaL1!RH+&$KNsR03_MQ<BjN53DK<ShWMHq?x5ku*=O~(smG(I3IY<4?(0O5jGxn9(Z
z+S8>StG3xMuJIdIUG=W?f8Ng=ajc!_@G|@sm*N!6igNd{;T2bF5{JThr({e*zV-$g
zqK0W?{XEke*zAj9h0jAn|Nfp-_V)F>xLKjFnB)6;`{N^cS7=W^EqFt&xM9XqKs+i%
zYRb%PhtLgw3bG*RQ>SdSa^VWPg2VeE@U!~+?Hm}ik4)vbKkRFlIewz1QG@kIAtW&V
z+(GO{sSO178OfI2*u$ky=0uA5*ME)eLI2voFzWT1QPB5?;|!`Y$ZHBB%(du7hL(gM
zK=oG%6K?n*vdF<yN@$Rb-A(|l$HI08jkqW@?X7r7=zr)hs71V%E@%gaL~^RQJ|6z$
z+yR^6%6%q^4uqi8s+usy3&Dj#nXm67xltM`L%)*On3P$(1O$1@d3ndbfPb8W>NELZ
zQrff)FPi=Cu(27H{=FthUCOXiaedPlTmM>zEcE&yZ-Tw>$wnC-#1QaflBEf6`vshV
zN%<7~hd0OhB(_;If6nKRC})fs{fvZ@3WNy8j6<tO^7U}Aw%{6x#|pl>BL^{zW;=k?
z9Uomo*IZ>b__1c{U6ebc#k%iODs_{P`>iDU_JC@}N8Tjp+20jlKb<=%){m->W7Z<C
z6Kn}S$_8ZEO7}+`{&`X0ta*o?dSA<eR~58gI8t}Jwak8JZUsR(DLpmjx@VXQp4O}U
z=7r)T%^#L+I9~|~eSLU!6+97fc6O#F=k6ix20Y0POf&VizorG}ar-S5UGQAmzfa;{
zg(p%To4z@n7-n83JTyvXlTQ^k-FPVHd}-yJys3ueGH6Zdd_9tfa>{ryWa(Ih#N8!4
zpvNN1AJWVj<u*i5(yYBwbZXKVtUPPeML+K@;N=r=1Kh5^tnDv5fYXeGpI{{z_v}qU
zYBRcmVP#`Eqpu~KHHy3hyPLPjEnuwGRb#nJK!W`GTv<Z)x=}iMl+&y)m#z&~WXKIJ
zlN8w^+tbr_9v(ol+S_J~`{vl+tA-E2%pKCjJi``KIcZCnca3UKcl=@Lz1i)>t~t#>
z0kvi4j>awAxN4HXLEeaANr=pM`MzqJRemh~F^31|J(5jR*|>3Jrbp{#q|0IP5k9Ie
z<`KNROc%$V&%2D9ijW!io!J0PAcEy@a!<OyXiF)#={u|2=IBw1sd)AMJaF83hkpjX
z)a9&!Y4_$FdfY-rm1>30@@EmI5kAO?6bv;zXrN5Hh?RD|q-T2Cv211yG23$;TpHIm
zAH_@w5qQMEYRxEj5@@G8Wa8-BA1oUgm~_|vV1m!b)y3Bcv?6Px_J5Sd?S}9b&X}L_
zMqZgM7)q^Vv>6zRxrDlu=1Ne^hBRG$RyEt<m%OX8L(1xCbxvgc3zKlxPgY)OEZ@&O
z<gDSE%6UX~v)fW5IWrV$y?fv;AmH|<-$!DJsFfS?7FCNRC*Ax*jmjPtR6WV^6GxFY
zW##0*-7kQDZ0+|Fu*v*<T-W_jPR3`C+gL@T_L*1{&Xg{QY9MEQhHx`3FirAK%Uj_<
z-FA;w35i;NFls6hPc(RTg7$Znxh5t}EPa}IDu-oidI5Y0RrrcZun-3h_IebZ%FK4l
zdG}qz1%pmK>9x}EO;=8#?h5i^)k?UxH^PB$`L{>Yg!2vuNXz^@ll5NQxYgJQ<!O2E
z%Q3_cZ1a8V0nF4=ss&*;0vjI_#r7qmTVJXgDWQjk`SRp=*>Uo!VUHj1-5q3w;Son}
zSnW5Yv!XI#dD$t!a~J;lh*^1qmr?v6fKC87pi23>r(<G-F$)%@d<xU{C~X0{5oiJ5
zeKihzUqE3ihLIT%;L}En55&^qQx;}tcP?eMafNdHA(+=LhWD^d<8xi?hW+6e4|@aS
zRgCTmxKgxYh(SofSDxF7;z;37kpb^5-6rPB#-P^mvq{(l$<VCEedUV`!R*8q+TaXP
zHH_uM<hy<v(ooQe^DsIE;IATSHIw&<pe(;)QO>f(_YBtj!%E(}B)R9&djn8c&SmuM
zOrj)DNLX|l=Gcr8J&zA}-0EkN*n%bXdsI4Ku*<=@-C#oeRC(~ZdTh48JH8&14JKV5
zRS<*LhZx$5Ni0j40V+x;)?^vMl`~tTA7+bW>CO^C?JwNem%hf`lYTh$%OtauVG3<G
zf{npwv^|U!zF@TL?)+kRQao{6Z#Wb?Xw~@_;`Y=+KbOEt9^y|ah1!w{CGl3K7ha!7
zR+vRc;JxU3<?@@C#D|qA(Qvo;W@1YnJWme%rc9oV?Dj_*ac*o{dQ{PH{V&bFDx~FZ
zan9J0&y<T1ob3uTb$wH^?a8IyV>4r3;o_UCSBd|uh3(H+{Y}~fb6t8p=k;1xx%fkN
z%Ru%6)mOf~FSX%DH@W^NgY2%kwVM;U#z~*kZfk9hI|;Kg#*(X<a0`mvd&z0oDEG)U
z*`Pni?iZdcb#NrqNx+X}UjjQi{U3*t=ItiF+(HQmHxPshB-UsSp?$+rx~D-hkd1I;
z?uPA?ksHuB-n7q#sET=}^BiU9YW~HEVX>Z10@$Vqn2KE3^O=OHAkh%XY}F+5@oarD
zRUV6Kn&fj$f!g8FN)02Ir08mt@kw5yxAd|72~l1qm+T8%B-#ikdt~n>_##S=c{v#8
zw-249Br0Odzx};}nNUG)?$kv8h*xlLE7{gAGw8z$j~2iUA#;h(@kAb!8IAt-9sZ9j
zGd0Rr%>UGEq|d@%Bk{(olAf2w-)u=Xe>9u<qy~o(hvbd0Oy(Ku2k?${18PZ9Q36@z
z7A-%P@d{{4r<bKurKFNzf?%Y)U<wdxYS~Su7r%`;3ksN<uLqdXP^I%q!$c<W$0;Pa
z%gCLV+qGG`$><$jNYH5_Z4dsK>6S_4T(|BDrUV{pEOy3+^Xsr|6M^p2jZaY|LFw84
zzU~;p-}Hq&>RGKedl}SeT&Q*vV7@*5(Pv3zhaR_%$7be$CK4qIUo$#3!3Zdl{Hw#r
zF3W+b6*wX<lVy2SQAQF1zz>+c-ta#~6u;2pewz)>MA~#B<%KqiIzW42a$Bu&$G$Aa
zSXm@2R8*SuZWOPdUfJ_oWTC*%{#cq6h{mKY3)u(M$4K!Jo)Mov2xBL}f!*$yBI!!U
zjcQ{1N;^YvE#<c*1D2;=96}&itXp3u0bfCf*I$%K;uce%$1=VP&Ms4wR&Pe_`Y7{i
zAihCmTgt~#oBU36*!71yAoi-G8_KOtoa?N`FV4jA>r-7U@BPk%ztO#2h?qwdhE0}a
zV^I5of|fPJ{|vw79UsLdMdy4sg9PPJp3G2{%tr&lxM;b9bNsBSY5wdW?%M;f7Kj0>
zfaRet1U93BRySL5VkwhJ&dtsoH-2e-KgC{zv~7J^j<X6}$xkptB!-(A9ZeP_l8XDv
z>BT_0cKab{XXG^t)yN<xCz63o-<(CH*h%qy)uXwoxMa;--iOxfj)0MZ_@Z)qQ5P+J
z?I!)je?KA1w}y_7R*+{_X5D8N@2U$=qi8;lhmCl|K`j|e&ais84Er^v8OHG)%kln{
z9qQ0VNtT2F@+@BvW|wCYGkffL+Hu>7<JhP)W0}v6kbd}cgENwOT8<iMAQYOu1Ml$9
zb+HPdZpf_rk?fd+N~86i1_(ZEB(mqF^;IShA}>N{Dz(Kc@ns|#=dqQ9bt7@fzML;w
z6h<u?nv9$-KT|&)7S909gY>!Zyg%tcX=hwfH?Px=FU<<&>c_Xx6c332`GAYKP{{9I
zhWd+n|9K`(R$tjKT8aq|h2|`PH@*k&39MmU!GXvU|0S6Q&p?4{`1G=SFk`n)Qk(nS
zA%T)$`g?$l!1`a5na}T`gReE-<Ken|#MAY?R{M$Ll1uaI-?tfnRY8w-f-r2nz4sJ-
zQUu+j!BjrNC+tPSv;zlS+xODZ(ek|r1cIAaT%qJ<?V#}AEP%qVN3~8<A7>h6dRA+j
zsPaOvdr)|9GQ_hKAd{I9_YBUSG+GQ_!2BpOH>da&?fAPkM(>z$la3U9NrA6#(CMYH
z25lWjv%VeI?Q}87YFn!VHKqR-J_mA}V_c5%d8|q|G6>J*Qo<anQ2>1U62@UO6&MX`
z=8ri7@{5(Na+)C5CyZE$4xw)iht)_J_dtQ^yY2G&<KOpOHb(C|8;+ZC6OkYuE{*_K
z%Ed(fFadVSoAARI+D1NpC&4Uc^NO+@YtUejVS<R=<f{)~gbt5q*@;HHmhd`j=wStH
zfT<$v2eN_CVKcN9Sk96S;f;+@SQ-C&kYXjc3d9{4Y!fUd)6yX2Mf%xGZH>@<|F62`
zE%wXpt;Ed=2gS_`)sz49w||yV6cRz9_Sy_fmd>>@xLhB#$!}}JLHF5>X9y<=a9e3p
z(x+j;GFpDW99u9l-<>Jdc8LCqqy9RIOesiTUf>(~GMna%&F1!vwL$M-fwtt`6l{Y@
zltE5;KE!&rema(Ju&p83<_I&yS&PHCTt&>!ADh9O_;=(7ffOFFGHhQQ!(0Rst)ph=
ztD|xNtM(h2{Ra4FC_YyPMjY^_^}D%rWsNIB_|)#t&BJ^wLexe|5V6q<TxNsdBA|ex
zyJj<+?*+JBs^=)!(PI}<@OdQJ?2dQw3ctDpYF6r8+j0hr%<}Sa$XTwt=v}qMA^c}7
zBW|z(Uzo?AA;B^gH(74110z-XBfX&K{w}}3`I!MWgn@)f^U;`xn(2hT<zAsX6n{U`
zBi8Bpt`zyUSZg^BrXrQDod<Ij9rY(5%djMvK_&HHPo6Uok2+Yk-#~ib?C7VrjO;mx
zdVMnim!n!}&SXDNk>IEzq497wCp->h5KI=ganur_G`O}Q9_qq~<h<<_pR85If9;E?
zyZqliH)PzG<T;8A`@CwYms&#_3sok0!_4(yqs~Rdaup4Ly6V4v#X|Qe(4k_|flVg$
z`3^mNr2spcY>V++c@EMsAjAEb5p3a=#iUmwLZUK&oln`30Cj72`TdRu^pZ+9IG%QE
z4l|DC?FSyRCC<wQ&aKrcDIp)EVih^<^_g3K%y*H?r6$XB4as+iq#KT;o`DVhjOsev
z>-VecUV~-j10XkvtjXyTvErtWBF(3B2RP9c)oRS~`J4e8YBPj=8U7g8%d>03^A%iu
zcIbP?Ory=k+t4oX0HVst$&ppR0w}Ijd#g4p@L^f6(P-3ue#5yLo?e`mW?w7uQlR&F
z5RNaeu%rPr4NN-i&>5~AcLx<y^Oq1Kc;=x^V$%Q9&hbA6k18-|0thl0*<kQofRh$-
zt?|)_7VrNurSvpK^*A{gk<kgA*T-2NOxQYWgVSzEJKhN(v5Np}VPQ<VqDUZ}fb-cR
zlXcFnzq#F7h>Q4L7&tf4-AEOJ6W2Q~fW!iIgPm|atb4SV3X{D<v^Kn?_Hc(VFCYW1
z93p3EJCF_icKm$3E9g^|i;y0WWHTEMoBqh&IY3k8bWJD59%uG~9e2@x#v)6MC@CpD
z+bQ10Tu3{OA>M&#sov2H;f~EPJWd5bW#_4(Tn7|{NI`GdI>QV7ykx7N_+fY-^kM%m
zZxXx;e&~2>6Lihb{q*AJX8&Gi^{+!l&rbloO!YA4K3UahK$F#CLLLgXf`tyUM}r#^
zEk2d$d$uOmq%Xh0M7ck$<d*z}7-<`Hn}3(QHlP=tCrP`rhOP+@8x9GqIf=nFV+j6z
z?LTkE8*QZ$_^qp1%oWgU)j#Io&-Zz$T4!5UkRLS{>2en&^D1MGltwr2U&NFT<LeLG
zPw3rGl-6Ivy;-0gC2jf`P#9vpQm<}!W4o?MiPWCJY5CKJfTz`0c|N0fF!>^d#bQD-
zmQIz*XTRsE%T=!a<nNrJczTtSo4|Z3UU+Sx#2n8@S~HRqF5Adw-Uu-Sj|Paz(xZPc
z^@(M5hZt|_PJ9Wo+bvQ1{TWkfFiI=Qj3@|;F49BrXncvOm;Gk9{O=2_l|@2B4*TMI
zJG&c;8a4Z!qXk24>l>A;09SAO&%|a<wkV<2$#fX0Ze(Oj#WN~0m_vopWH0TMf-t4R
zWM<-2F>-qw)7)*Z!@J38)u1~ssID4GIdW647Trhiw~`FCV#v16724IUOH(wsnw{^2
zRm*FsMrW7WZ;%j!peJp2n`!Q0D*81!$c7T@c5p04RylWz9a_|cYX^KD-o5q&smrWn
zG~#7O$Di0%T+X8nO92|PziEjD4;mbq4Gd+^C_tm(E(X0`5L?lSk)k|b4`jET#RGLd
zF~w<dT22yRb5kR*?;d!LnBWXR))7FfB=c;K8PC)K3-K|u3}TU_e_ba3>5IT4d^T#@
zIm)omf7m(x>oomJ1LbXxO$l1*9G7lVv2SKe`j;L&4WA93SlY;nJ{7+C=V4Q~9C|iU
zdnIx#l~@x_KBPt?=aSC)&2kG0GFELXV5|jTZ{hpR&c_=b`5JV*Y^oz@Ca0(z$oi0U
zn0l-2<dbH3fp~(aKj%z;T6u-8iW}_T^p5evCT8OLuNBwrvoSr*%#}M}m(><w_#AAV
zns}seRYkqQpYNSFxr#aSSS)0+T<5vDKOfNt5g*Y%e<DJ_Dccaq!H*X(Qn%^tAb#cL
zvAL9~i7Pg$b$>3M$C+e9vMIJfZMHI9*O7YvL{1c0$bH~;>jDrNCq!g2Nt5DN>mKl0
z<BbUyvksbK*(HeLzh%@|;*kB0>4Ts&wqY!vnC!f4o`&X+ICX?1(@wY8-<$a49qTM*
z`Ei!pNL1twYgc^LXL>ld6a?JWYt0(mgZ2W%%6cK583)#;VvRq4m5rda+-~&efabO1
z+gSWUCFG0hThx^m_b1mmz^-aHH1c-?ripfEW^iHLUtNRe8Tdni4pAFy&6CsX3d~)e
zrD_8}N*itMFz2)g!p?=pncb+Vskfe)b8QD;+)mk+k+CQ~LK!|A@}Fdz|6Cy9%uq!Z
zENwNiZ?^Fw9W@}R9N)dO^m<s`sjac12M+q@&X(<udj~eOqx-vJsAULfN&eH*@pB8>
zXPFTV>x3FL4vSF5*e4)IseA)p6$I68#VqEcrJ+ivIX$nD2%Wt%Jv5*vp_JZKCqn^2
zyRS_<@3?MVB!kZTeoKFL*)h`R;c6dYKr5xGmh88oPX~TO<0uXq#~&AN-j7&Z8HQA*
zw`ry6Qs@2fxIn{?w3Hf5+o$u|!0|HoGy#)SbjVUxk|OMUR$)#A3#|!palOs!RNHW)
zdz^0&NP1wcao}L8=9+j$g~3qF%}d6H%*;R%?kvwrO96pt6Bay%Au__mqhFXoc$U|9
zC_Nm=)A+ZSmb=sUMlSm>(E62(Syc)5!avB}sZyrZzF@-QL=%6Bdtwky{4^f2eURIv
z-s^StQ$YCqyVzTL<la@#jm9{(3`UBQh3MbrX-oRQkV>sN8k^FoH#*|kB?!-vYEDb=
z@@|G>;mJD1_TqdrkV_yte04b95}HQigR+*~D6;V>i*+~UsZV9dOA{&JMd!}S{WkkJ
z5CmdTW$$>S@Tq`em!J-q4)sq~+s5l{O|FW-!?heZ8VA%Znv`1Ks(iNf6nJ`k&}0Gc
z8Ije=5SKoQ`#I+NxBK-D{}Uxx%YLtJ+dODiO-FVEqj9-Y_W|0P-t~0e-Ra^auw&<1
zW5(1W(*J*+ENiGnmGj1hw6q#Od{F{naLCcY&PV&Y6+?)WPb5r1`bV{b8evPHMEL^_
zclPFC&~Dnmr&7)E?}qIE>7oLK_|F$244p0Cr&l69Z2H5TOU&jg`{=0PCqiBocPj;@
zv@9pRjwvAIB@9<BH1?Uu&zAU8(%lgNGasy(7?;!1?JCd-bY#5?<vS(^%_-2>;Ry7N
z#38Rjx}{!~mmd=j4M;(8+Y$!SZ7h(4&VB-}z>sfrg_2HJN3<I~VRFDW3uqpaQDHVO
z^9E3Ew9E5vU9W4ik?2oVPuy_fAU=%;NFqiIvJ?`>o>#DQ*aftB0d>!Ja=j7at!b;r
zOS(qOjqZ0Wi?{FJtMxzsp&{s|qyqW$S)w86EZbgp&k3)Qnh6cOpoH?4c~P*H&bKW!
zVFOOH-d4|7ONRkyBzj<&erps{d*%ijN}afw=bPVZ%@@lc#Uh{!HHEmF1W2k3-y2MO
zZv9#NlNA>GoH2hPqXo_lK6`gSVB<Wi;B#3Iq}T+Dhbi@j5+V5Kbzw<zW?&;7%cP0R
zvr=6;o`IM?`#FK7#<CYh4-B$(IIj+a06w@N>bXUtO9Wwa(xCFh!zD|qS6NU;O`iT7
z7YSZi#h=pmGut2Z_4S!7me0QMl_O_WR<i8aPQUXtt9I0zAmo^_#qMQEL5As(KA%8c
z!UtGO)@JGg<zQ;*|2;ASlVE+#S1|BR-V-Zcb#1$ZOBfnB!}r<`Lgj8bx!NsmFjAj;
zLh*AD2-PknM(4}=$dhXO1j&VNK7WeeG+;{F-~twijoCiWXIa>ImB~!yoKEB}$cdM>
z?8v?WjT^OQy-frrt(s5Nj<moJnm-_)Chkf^Uef3Cdb>L8k@70^Ce8*jrzE?4pt!rB
zgFN@UM|8YONjX7_v56pWG1A~a)n(MLpax$uYIlu9_*nNTqWVRqp7L#Z8=?!JE|GDm
z{S^o-+bijI^|9eztDBjEh~Fa9LJ3FL?(+|HyNvJ-u%=9lI*~8p?1qN_$lTQ7C)^#6
zq2mV>LigM?vhH_{E48(myP@aDdBSO89sQ(umnJjqA6hkNpvRvF3NX^#FZ$lLGw7WI
zMTaJclySa#?X>{(zMGYTSZwdQkj&)M(X?`i(W+U8ZnS{M10D7hTpE7c(#VJNRZ+MW
zjf|wcU%p0*r$FA{)axSacq6mHdsEWWqYSKqu}PYcQ!1D3uZUFP?617u#xTdA)=mL<
zANL|#dA=&-p?8;>c5^v?GyVPjBJ0eZo3z!l?Kh6#@_cq%{90S7>Fs_1L7e13Bw2C(
z_^iuB>7HT_2sZt=M*8CRb@WG>M3%lOsp(e}5-ZKF`m?`v+F?niF;Ab)NB9Q-l$hk1
zKCB)ly_06RJ6<y;id%Q`tkV&z*3;m2{%cwz7*c(Zm*ysk%QL?r$9>2W#}+NJmga_T
z)nHyNj@1e<e$=40DqeWoGf(jtXgwIuD2w6Bh0c~F4fJ@L^~TPki>9W=pckFU1{=vI
zzA+?`oo6K4Rus<%qZNN5_pKOZ#KRxNzEPC3wb^IDA(`ij)zy6py5(rlOU*XvPS5NN
zr%;1AMauK?)9SeC%HV<47PJ(7Al)lxE()mCG>r?zGB#NJfP<hf1aKxeU_9+Uq&)Z8
zCHIV9Z%=y&w}6dPa))ONd-0h8(|?MTKLI)i$^1X2003@Dv3^aEk0t8z7wumxp?{s1
zm#;kS9_+%8)Kk{cnKvr@^>#BC*}bO2@KmXOdJ0tS1%LNR){Rf$w#Vc>8b<L7!{D<@
z__(Sf9Lm1AF@*&f5|_!c7aSrh$Wb_;WvRE=8VoP79LYu`?5lDOn1WA#sip|SO-hCN
zwHN4lHcRBp<B;qdC$}=y3y(xy%sq}LB2E9(E%DDQWFdtnniX)s2FfuhyXOss3!_LS
zXxcQ0t{72*pCfb6K<&mIGCG`@`Xsoi7NZX`X;3PjfSw3kpRWh+K$$$`HLdXfarV_w
zRepKDQj*dkB_&--H%LlLcT02VZWIJWLQ=ZByHmOjE#2KI2ROien3>-=@11w%u614K
zkF$<0&%<W#{f$q2;ltBP2uPfU-&QVDu+B)feY?^Oqdu!t4-kn5)-YMr_;337+b^5w
zmE+x*A!4h5v7JNGk?_qX4xyl@b4pCf5lizSo5r@L$<t6OQeLhD5z1HOSYmwQ>+hRV
z`e7PlCuvm44``-aZI*CozD8s2F96r9u=%zfa1%Qx8<V%)iW0wjgi$&tdxQi7jUONc
zBMn&$%-oh3iKuS%Nxtassm1yhGx0P{mq)aWOvsGOUPQGOm`%O;G>ivZanFB@&l_Sd
zAK$#*u2!rL%j*KPOk$o$t44P*>u(wW)yIVjQi(uc`!>cWfxtB$=7}3)VtHAvYd|fK
zPXb8)IG1I0UtXeG+((w(Ia<McWPmgDMHE;9Kg@Kf-BEM}TBN8-ehsCvge<H)#4BIF
z$I$%na8s#-Ho;>#EdKrk=+-2C@<}&DQ%727PbRfU#vHT*9UR%<BPo=)9!tYrCt6hr
z1MNx#VFsJnNt`sLvOHSktKIRR;Z#$pdjH0F&oH9s5O~*0B?L!-d<P__rh~EcY}PYO
zZslaWhgRF4(b?Ey<{i4w$6g<C9Xf~OxN<!LtxyFgB>u7+L&;VyB9b3y{x4sw0gk(T
zEG2P0$2(sMjnw&KUC>7UYyaTy!V*oSML^UOQIa!HOfmd4TiA764;UytI-J5RJdLDR
zQlr@rB=)Sd1W7xZLe-2a>RDV#pzwR}-ATKjF=k-8c$?g%>JZ%fYs_3#eV;3}`m_$g
zc^{u#CX4xRRJcV3&1LgQ8Jze5Ihu6q7u}&aOHD5iv@tKWgjK2x$}F-I@5}w}txMcO
zI?dBO@~G_l_(C+z4)j|YZ^mi$#cJ9BfuGn&X;iiF-64BElO<q9;d~YQ0AqZT!s}#Z
zvH0bskmKh2a8W>LK@dzj7*FmeiY`fRp<KQf6aAXS2T0yr9E!<i7^MyJ6;e|iY5Rww
zEGWvb5iKu+Mudg-Zh#9V4$yLRSY84kU#Z?o@U||}C8k3*o7EIueE^cz`6WP(>YuGN
z(Ob6YBY$4~8~Lq35vhQIO}6F0Wg6H0dKfEy$VDPb(r2KBA!He&wUS$MhE5L$P`T4m
z?7NU{TX|V@aSd}Py^rpA0s5lKd+<YbK_ezlo-A?F4~lWB%~ZCoftRtUgKth=qK$o&
zBODU%AR9(uwouWSU^j9i;q=)9<aTTkU%8GV{h%h2$GoI`((b_wQ)Hm9>CwMCX#Q(?
zI#z*M;MQ$UV-7J4dvz5oiQ#Jc%474pEn7AqunT=(?R9mvI{Q-&;RyR_#^Q^eL+Iwq
zDnNKUBxqvnszxcqs$Hd<?fO>8)%uw&{(nv-|Mry?gH+E#5vxX@9I`9?7pq6O7I@By
z;A;U=s5*H(g%510@9=^z!00?)e%Pmljhc^b7}oU@!!^ie-#P^vYR+^18SRq_{6SjA
zdNA^BG+#vYsGiL|{>_hk9uA#{TnPu%w)fQv=SwVF<6G$}m-01{#hfD%ZxGlfP(&KL
z>vkC!FMd3H>jqSF4MLy2X0DgrH(vN`mRaDb13$FXCNQI8Ovh~rc%T$6Q`>?C>F%AJ
z%bR32@}1jx5QPBFt8SC?iXoQfegLOU!G5IAS0&r|wgsd)he#9q&#2`slFUcYqq*UA
zV&4~v#H%q+S)@sAu+q*Ktv&!igMGJVe?e5`cvN{bYaNjSmqx6@yCyaH!EZ3{o0t27
zfLZK1LBvY-k?{u9QP~K<OsaBM?a0nOVBC_MurNvgR#cV;8L;^>o+O(O8${bcnW1<&
z1&iypH-N)Q!cyH&AQjT~#NAIO7}Gz#rjK%oyA&|#MayilSPo5VdQS+`{`+X5*~@Q3
zL^o*;X*GBcCvIcW+$0!(uRx@?ZNI2EYbNwM)@2!Q3y6@FJ@}SG@_g;ThyM)?BEpCD
zKH)60la^d?ioGnc{OH#7s<@}m3&6*(l=L-(zQ({akKIz_lKDv6j{IYq&;Lq>H0+_O
z0KgB}tij%iVvQYt%?TmsJNzd%C;(?Arau_dORC?a8_}*q9qv@>1MxN9;e+^x_LGmP
zk32EZ*(cl*Ksmo=h-HUtQ*$Nyek(T}{_?x~nR~xK#5oD78hSH#)4w9SFuIg`uz$Z;
zt9GX_k^N}6H|69q2Xu2tI|E1VnU<eQD-kwW3s!M0g!ur#K5#|Y84CD53^X`wbeRLh
z99zgR+7%AWdn*PYzepouZ(9a*CJM!DNpb8q?_M(IWTZyBpbk<JNl>5{mDJ8?D}3ez
zYqpD2hDkpFw0}|K&!_mbQMY60vU8$CmRz5_ptYa{E@C^zVNl+l50K(?U2$@S;mXzs
zRj0WDJtp24_j~JuGp%20pUhw02DN;fF%GP4rQ0LCV=QavN_`zh_+qwABu8=$3s#E*
zNL3#IG9^-NW46-EPfjV_xft@zGDN9>KmcVg@r|aP_+&N8e5j8W&@oPx)IGF6sOOx0
zXDoSF{k6Q2h=2bZ1KTI0lbAFQbm=6=tSTU1D;(Fm=;Wf#V6r9OV;mr4?x5>9ADDG`
zcSBS;7r2h&=b+e_;Z0dH-gMTh1@8yR4~Hq9zeQavs59#NHd$4=w$EumLa~Cwy2V)(
zN32{s_+$`E<Pp3%%p*;G8!@e4Uc*}S?As)^6;(iSJ7B{>FSSd>yG59pVn$`Sw!=Tb
z3J(B*|FT>5u>+n^b&uxdiK;$N<%t$~JxS(?f=UkSNiprKMF6WmBK$^H%pGhN6EdN2
zuQv|>@@>nD(fFVo(`%O;iQqPtqq&^PMIu;fB;58*nx2&G)>n2R*WQtPgRhaj<@QF;
zoZ<K6x~%$bWs>7LH#c?W|1IMF<8ch}L^D+KT?1(9xT=27`+S!8?O`-ZtB^u#v94<}
zbibAFa3X#EPG=~(s7D!K_c0YQCFJFTHWQ@N5pbrNbEK>BGutPAgK{OBxh5P$474=g
z8o<&7dCfR0xmnH`H4Udg8=LLMt7@S<4kb2?JDF^27Z|3iGz;(5L<aXNx3$j?B3FhG
zBbV2ac%rre@v<_<WzhG;Cq08G{FAB98Ud{mn`R1eb+Is#P2*O)k#W|%#!tkn*=K~T
zp@%@*Hyv3xW)aID356HS@dl`GQ|i>G3kI9MMW2Tl0oP9qaIt9I!p|@J1iVHWXAgB>
zE>dHZ8Us8;?HaZ}`*ryNg0!tc#&WdK=vlG%)UP&yWYN{AnfSyG(CS7BL)S1yX^Q54
zIc<NlS#AJ^5-FER4*~z>&S7sP*-6bs(Px{<FyZ%!D)|a7v-VaDD1q@zT3PS#FHr){
z4y(bgXE($u(Ub!-f@=la#^+Z+Y99P9Aug`*`frLO7AwP&AU3N0(l!ymcMzjfJ~~5M
z1Nn-S-xV#6?dEu6BKWtl+VLe&U)_$1UHo`!BFb)b_hh*cSdRfniVJ?w*Px;O(sc@d
z8aD*E``P~v8hO?ff8*IT&|m?UoaDg1O2?@4<*NcH@`ddwzoSAk3W>BT4Bs(%kgi_>
z?VPRsx5wnMcPDV7?&+o=B%+i_WbNw0$bO(&GWaa_YKPl^gg#lDD{Iqbd8NhUA}|Kg
z8?@rfN7tS>2+RU`ITH#5j*<*wQF4FA!uuye;#MLKzvh8C`~Fiq(UJ{8{s`y*8Dx0@
zbWGL%c?6yZNKQEQTTZxCZ@@mBId(a0mE(Mza59&Tsfw7eYfsiwZfm=KR`^5x{>4~T
z-*dLp)A3PXXm)$d+{#0~q@zxGT__sQroQ>($nF}Ox#PYY!r9foI{o_nar*772O0j(
z{h5(D;RY^FoldAfq0r+Nl$=L&-G98$agCq$^9rarR%x|7nryeDREu+hl8atE&-Z;f
zoLc`xY}pLcDQ;)%3V!>gs_b(vxU3VIRWE@NgTiN0xIrwh)u$DW=s{fMi@w;lf{#J3
zkiEDZl9?$|H&ut*$Ilc(*$BZHuJ>cf{BE{~h{9T?h+I-Tr)%BEQ;F>6P1)#kda2<V
zN=bTWa_AItFH2>V+bRTxkL{WspT_5Ds<}L#8T=li@rnw3{ZVw5cutJ6fJf(D&ysen
zI;hrVrfz25@~%FjsNn$qdlu|qJZb#l_o#RM%U&14?H4@U*R3rHH`uVgkx!loZRu_+
z8%tj8J6^qGzi8Dh??U{aA^k5e5kKnH{e32JT4vEPW#$vIxHz>?FYzl;n?pJcOlwP9
za*egqVOTSKA#U!OP!QF$T274HsUZWHSNeIm$k8du3l?XEkjj0=;z9|eoc$rj!ospN
zC@c=0^Q_$9vYoRUBjaFp*P$~?s6qx#Gq(zKwonwpG>=EQ^QB3fKFP42-4#wXi?|d=
zT;v(N$SO8X)Q=x@kr6%G+oLH7r$!rNeA51pdYc_!V@-Gv=t|xdbPu#03z7FOM=sc3
zyV{y&o&YIrDL8sv0iU#bcUr)HrG*ks*stkoW+u2~zY#M*W20JCBbOeIwAQYzcIFF1
z{z+s{fgWkORd7!S)9&U9A$y?7`Ii^Os_`RrOfx`Uogg2$e#E&veO|;&EoX|wC_JW`
zNfoTmk{?(E{q}(jau+Od?%h_wlLDr{IC(9kIOT?aZ7pvIvh-%MnnAs~@+of6w;7IM
zxHJNKs`F*bwHmUxSg%;aTy8uH8)M$02J>TM6gxO2_eGNZ;$F(UdrMH)JCl>ia(KAh
znjFupBPkU@vZu=YP*MP96TY5KC%%2I2`MG1^)L?7hYYV!G4<~33>@*2TzI(v4?AR*
z$e(_liY&-0)p-BpkilngaR&tmH;K-3X%G!OplrzdT6afk516`Om0NTKNc2P3kxA=N
z0PXZd(k&qG$)!sV0+ZMR#jpZ$y4LOpqt|KUsLpad?j_4AFpi5lEztiNEcsurRta*O
z-fU3;Z;j+_t&U{-A#>G+`YY~~RC_b^P6cSZT4&KvRT<iz_;iu}CX}Gxt$*4|W1)(i
z&;IbpI9E)V?>^VzQ`umRlSN$c7qG7`4o|W7GCtY8vg~!ZVqVvY@U;0*LtlrI^5rmp
zt`z?aCZE@H73c_=HLUeCd1Rc##&IT9|7fQc%>u8Xi+B&>!YGb~U^Tx%K3Jv-72crX
zB8awK)o`30TvUq>$<m11Nha`q+bx@T{vwdmdPWmZ&dJNWvxhs--K=0)FNsX%tmKhQ
zxxlU{o9~Q`hsZ*_|9#_@4?N~GnE&Oq3x?PCv}_zW1%_Xz*@rJts$*Ekuji`}3uAJt
zk<y>^&s-QIXaA5~hR6R@=(HoZgoV*oJ)F}DIf$kQ9hnUl3eu5qB-ONt>CE)I>)%Q@
z>Rl1BRx{7@vCbG_y+D=I^!}cZkUuR34-Xs$7E@Rzh^nZ%YpujH7;AXQ99lXfRN%|f
zyDNox=;BUpg8qa!*hcjyICS<bwkI4A!G2d5eeynV{y2^53mBLv$kTZo&c5CIG4x54
zt8GodH?13-wGB=$=Y69?Y~nVlB~ZMW`3Tt74Vax@T<ig5Y4NveuVNHI!jm*XFAi=4
zSDk664@cL|3u=A$W$`;_XY71ixI>h^Wr2X?O$(<OXv#FntGUYRSA7ii#(%<^WWMu;
z8EbI}dtO@H0<%{NQ(1|*ZKp_LuU=ez^u`c|R?JKRlRayBq+*9S!aNq7j!fV3q*p`H
zV)aV-n?+gt$Qak?uk#7uE_|gjsp?3l>tk1zFZ5-%uFyA*?$c)4uRY)K)(<F*lOlIF
zE&_7XVtI9M0KphF;I>x)i%OB)G|UFI6$iX%O><vIR_;rVk2jmfOF}r5VH%EsnLV0|
z4`{ERvrLBbYd^atMHDKBgN4m`lL(gD`oO}@3^m$uO8e3ED0J$6b74t;dd-W7Ur<f{
zs>@t9HtP9bC%_ODwk`DVhYhY^J;$`lL)ouF=p~J#{qNW55RXk^$M4Q2brJ^Kpg_46
z4IIJhX6NP6Uxj?v<c+~-*{h+#aiar5Vr5xT>yxp~8+aG{j_G=-$p?&uhG2eG7xj`7
zsxm<$2B*TyZX%*ssMMa}QG#=+#9H;rSdezI1fu*&yEWks)gcXO{jQ+=rEX&5=db9#
zlAH*A1J+}&QApenJpv=S%fI+w?sCAiN$&pY+S%Q;*z3v`rqqA#d~?2~s$s6>Kg3M~
z$qG$?Sr22-KYqWYx}{YNjM2&f0A%%*9DH-~{k%`{bd(4P2sKvIMd++;mo6-EkmBY?
zc?`t|Jl<K}vE*NEV$Gw6Iax`fgJu1BCv5ZD#|8|2;T!+!p=oeO)^!?DEh;L)quh|A
zfVa%5wRVe1PJV|Z-m-Z<qI8j`Wa9E7F3$|5eut)t-><;vC&7pDJ-AIWL1kN6c8sAE
zhl{d&n0IiN*Zbi9)olfj6(7at=5FUGFLJ&lSrHN8(Ch7M26lChaI5kNa)-?F?%{%V
zR>|!s%{SwtI{Bj}svP?VmNY`F#0edo<~rxdd&fmOkz)!4SmOq(nrKeHr><i>MaD}N
zSf*}1j|m=%k6VLr_s+2|)%_?s)*GJke^6k`A<3XIFFKPIz!18tp*UHnj|6;aB!Fqr
z-{dxKJv&cM*M6Gvg^68dH3I0t#M;l`JzywfHSS<<PtR4-X=1uwBC7iw%#uJj;(W{*
z;L>35it*9N;kbtgqLqfCQ*Wy_j$VH_HpJNFXn6Lfy?#3&6(Hyc%0>#Dhv4!E1EXTM
zB|hr;#`lkQ#EZK1)f;xgu3vnE<43=^Q1CH)%N`sNI1J@o3w0*J#>Ngw&Ev=My<1qZ
z%2R|UzI98nEe{{90F}3up2re%*C(W=f@-zQx_6!l-@QOauGAjY?ghAkvYnlsY{^<@
zZb8hSn0e3J%gfszngk?WJJn+l+*1SwKBs1v2IZ%D$|RF_#K;UUjh9Xz*xUk>NhoNu
z?LE>&GP;^v4no?&H$FyK4+I9@nN>`-H%?uYuJ}$DjiY_T+Auypxb4zXo^@D41y=g{
zq|(EA{-h+cu^kzkJ2k(R6PD!Tw3=)0Q7Dc<1xy)Zh3#V#Hh2z>*ZE_Xz0$ES;yj$8
zt;7Y5osi~&GM?~31yDw&n;-KrFJk}0g=;(gvFydY<>Z*Aid^4v;}@c06gjrh&}qye
zg)-{&z?)4Wdk)^0Ed`BbT{+(rvmCA>=Al28nLyE&bsNHmo{ofX-sh?B9OlQQFH)>a
zUSPel8>lR&+oN5vLZ2|3u0(}Rr5q~{0()P`@UmVEtE4p!6L7RFzBFj~0p8pSqfW~O
zb4OhUuu{gv#B536h85my|Hw_8@P<iAPG%fB>!ARjo1Zxw8fNG^2HT0u-gYSpk3PIK
zcevP#=D5A-4yGFwPBW7P$N!XLR0uk46mBzmiSuWT{^W1|Kahk)7FEu%Sxl6=IIAS7
zqSN%LBv4^0aR%OWghAJ{3Np2s0$7fb9qg^pDBM<H9Z3xr8P=*hmtxK*6vsA;@hA6w
zdeIpza!}aVW{q{8sYbiSE62AhynXvNClLG{2VdDlkD8aSSxMFjr|||pjCkBdRqF=@
z!f2T&G{w)6Rzki(GLIY8EefB)yR4j<zy)pI9Sa7CngOx_&yr(zNflUwOuF7)z6t<T
zP19MsF-u`;70yDHPAsVRnz#et7|2|Nr+PQom*<q7MxT^}on3{K8lj?o(J`!Ug^W^=
zkTt9@ZdN4`_A1z9fB$7~BsZVmS!Km;4SRrwpJ^r=Dg&?g!_CgT9s9+tx9zDLj__kO
z?yO6TV5YTOZ=daiOa-{_3gB1O>}exw-1ykA?jj69iEG%qc7Ow%-207?D%sS?MS~=$
zxvQ?#VS$pBjZNA5OX|u3>LJZ=`dt}{(T&z6sawUHpLC-2m-@B8%4-F5oIX}o=bCJo
zuR>D`+Tcd|e(q!?8Fqr#Z*H1Oe@<)Ev$VI_%(0bvJm@Y1hD@pWLQXw^x-8Q7x_M=Q
zuLR2-n2%WVo2N_Rkt8WOIg~WZ;~W+C&u{ngIgAvyaFv^5j6A{dU3uuP)>WUvP+RE5
zz$#gBv`v)@2B?*06tb@*e_29gS5}_EzVeWkRqi28(}?gQb3X-+L1zI!r)5d<vV;v4
z!~1m*xaEX6-Ddsv@U49gjWWyZ<M$$CmxEUme9Kd&(7R!Gy)p)l>3HSaqG0;%FWhR_
zb>w5zu-<x0!2aH@Zt&0|(y#hvr+LOS222_s+RTy{)Md->kWD?4Xm5JkOVAS^2-XEa
zxw~}r)P&i!TnG2L*KPf#XO~~`7;B(pq95gUd2UB8X>&J#<8L+})0*ta;1sywbjOY3
zi)3T}?Vl;-zrMMT@h>i}c0V2Y6mPYjn>;jF)cx_d=NkGp-N_jbk!}u-laDE9Ez&!2
z9}jBI>FF2)L)aknWN8;X3CHBtM`90uQwa~%AE^oy<H*j&*JfYI_|=foi3=4P!a1j=
zWdiU}KdM?3&=Y*xk#ux+jO*I@l7v!J%tT51nU<G_^J~p>$E$M!+wop!?sQCg?=qHQ
z%FhX=FcDV7I{!!q8&r``#foENal?Z9o^vx)H0S4bWQn3PdCSYlOmt^hT3R}$Pd?2~
z<#XA`1?UFSZL{(<?Llb~2|a#L@30XcmYEJ?eRO~<nW`N=JvW!A$zk{AC2dqCDr6#8
zmid)X7)t`sQ`oBP{}I$Z9Ig>zYU|BXNyU*a6|bA#%qN7u2mk}sNp#72p3I?fH*Sn%
zsHoZtsLRXC+I6+&+1fBzM)`X{&rgBo%;CJ!WoEaK(dNqMw|YxMgQoR-^sdGbF4hBy
z{qAAqVAnbr04p=6w=Rm>+Vo9bycUQ_=5E{pkk(Pod$i(=Ane9ts0-w(XV%%=`0Vyq
z`$KKX&y~hQSlfe+^z_qH`#C1RItB*qR9KJU!>N%QsK*8}5vdQxMLQ}$b39M7K3;63
z=`z<JNL*O!h`5FlivGzD0+uOPUq$C|>cxR>=HpOR&5mmtPv@wdV`u8KlUY45(#npC
zLt>=-zeY>-+lO`S46@JA#;cp<eoz4s@;0H9x93>P11e`R{J}bKEeC4-c6qIDiNvBP
zxV+`{Vqx<BATxfkKy{xnANIS9YWUmQ(>W-)`v7ZO$QJPnbmPzu`V+kqY=+xc?&%2=
zDqZG&etxnN^Eqd7hWhB?te7`l0LrnnxLA;#I0GVT3c-2x1CoI&ctIfmod#35w}q_8
zqLDu3=>ONtmky{82At<kb?j0BXB9gv^yrc9uENhJHBAw3WBybD?{~D5`bU?QZ1KvU
zN&$<%mjd(Yfyr5#4ssy~JQdBGXB&N{DUUg}4<CAu4i9q=D3Leb@p~as)Y(o9&hqjo
zAAdjj=n2{V$XD%FyIZX_B=xtV0eB$a5O~cH^H-V`B?M<c8Q8ilF@IQ{U5FiDrLqeE
z_7v$C_Bsv@4(C@f=}>W$^O<r3#V4`B4{}pong)3jpOmr5Gayi4!(5-8dM%QM(cEZ}
zAl{!aTED2)!bY8sLy9N0N%!2R59_(P$-)-AXzaaeyWMAusRAq<2rJ*jN>nEp_%;ee
zLbNhb^hgape82>hwT}~lHH;c%uYI*p4n;@6uj4MNbJ<dQjTQ0co$|KXZ0K^`lFVR!
z?@i{bUAfll87<g~aSaPNtOw2{`HBX{y9;&gVEQfdZtm=)D;~MCJMVrV;vA%7Fp}B>
zk}X%=!q3>PJ>L=Lp74I@6DS(g&hIYSJCBrvgbBPQe7~otod_VIQg=f40BO9GD9948
z2}`TS;=6j7aKiSw)s@zkXcz%&e7acar?~$8>EhgKc0Vo%dlS&-);b3qvnH%sZfF)^
zIbVkSGXh_tz+7jjuQ|!TJ7_h$7%jSp{7?)(Cs6No_X<uY2t2OwSo~9RQS^%z)8quX
zx^NBAsM1-cDK5u@ts@yv5(%3Al&*P7_cs3~gI2Ks=<}OX3%?*D2ig?0w(%-&z0SAA
zt+gC8R-)F$K~XTU>PV+oX{~WBzRAPvOKQ6%{)s~eJ%gkpvFb;~rM`33WtWBf1|>SQ
zi00>9Xi-0fwVYwIcEYa0yBps9+a?uRMO0XgQRG6&ucM*xw#}HDQf=B!D&#O9)kHxx
z(cmCsSZWIMUV4FxCG>#>2AGv;n$wQh4I8pIsiVh{Bceq+%;$ReLuu8fSL<uG2cfW%
zI;-clvE!q+r}|(5reJdAPnLg#G&)%58(HL+yx~ha%&oJ-l3U6A-<APetqCj$z`>_^
zG^-A|0_;q4fkBH2P$=}{J?ech!YmN^i4h$tf@F_^3_BSsiwxV?N@RZ7&3)J6ZL1<a
zW%WHn^{JDF0^rij?-gKwb7h&2etfqD_#v2=E~;q|lARU@mVJu^v*K%1FR&sCr9D|9
z78P<WEH3IM_U?Fjt(#x*$Mq~wQ&WTHm5^<au98=vl6O$(%Hw_dHfG6SP5lwd!teP?
z)3jww+18Wzc`^a_iuhqhxMV~F0|Q=)34wc{v->OBT@=0?#pXd70dl`J{q?42-OM_Z
zpCmgg>;1_gs1$VJ?D`Bag+Q!5X+*}Mv5;tJwJvLvJZ8LLy)c;!+yB|swOJ`4MJ&On
zEk-JCHkwixw|eoTFT>Bn-QD8m)|!cVTr_Y6mGkX3(4&s0{&53fvZey8tdUHuVEiOe
z>_2IPZY=yENlJ~wuLRTRS^|RgmM<t9wL$8IG2gr3(k-ZcHeyT{1)X2>Hn<PEuLVTb
zdKZ7cz`-otrh<dF5%Dj_U}5Mp7cy(L(9&CV{(=CGQqOEnepd9&xA;VbIV=a<uDY?z
zQYvc-8oE7J7L+3)`18&GJPiIF)C&GV7)+GP7(egt5u?h>30{yANyNpKqT}uDadww^
z9Afs#{wU7<325sTlDX~Ly6M+W|8aX}_+eXET4oj%F&I~p*!f*%leu_gEcO<u6>o+~
z<R0#N0)Xmd|97ffy4c4fzw-gwz3)=5EGO%*OOwo<rD83XztrBRebYcr2S}`?oGay%
zwDL(g;dXbwkF*z+H!=JmpP?hY9stLzn`JpXJUssEU=0M~&K$X9TZ(`$e8K)+NMl$p
zh@W4`w+;eqM@!i4R<G*`peb%wDw{ZJI}L4)`B`D~)8hJgiOu#QSfZH(a$(4Pda?ox
zepLW!{M9DL;~qUzYY<7D!j6gAIE!#OND(rOL!h>*7I3u&zztKn743J&{1g0?2TLJy
zH_fdbJI|XLo!l?SrS^ay4D{74c!M1*AcjM$5W7R(9OMTuS+tuEwMQvvY5R(HQ)zuq
zUC@MycTQMoX=!g74PmO2#JiyS-e(e}da~a=F1E4SXC;=sVf}N@Q+j<W$aN8{SHuQ;
z((9p(Q~VyqO}EU7n>^0DQBZGjNy))b2B6#@OPP9N82C7J|G6PDG>}wx$Y$nUP~|e3
zqMbnoWDXcs_sm6#zxu93&3u}&6^io}%lVqq7eyuebF%I9B$(x|Zf%l#4u+}<%64B9
zLO1$Z_p}+H4=U%x#wj9$3Sd0KBZKULfRH%s0~rO`U*=+lS<{ts{EgAs#p6-aRumuo
zMfl-M6oo<g%64WhHJ9<)`XPNC)!b?pb~MZhYo>OpbaZqdlp3c|ljYgE(GAe{%@Gdn
zI9R>tPc%3++dUlV$+#n4{NHi-X=AOf({{j;-?vg}XqdCTOet(>(QcsN3fU@`rK6(K
z_?o@6w3J&R^B9#TL3gwy+yp^hL;B}_#OWU$jfdOx%fD%qSA<2?zCK!@4H^ZQlKC^Z
zVSB1{%*<*^D9Fg;>$gb!xxZgK&sgNMZ>Vh;a>>kU>g$(9vlcNc3T<?Vn(3GR)P_u#
z`%-J{uX^KqE(2K71oEP`$A$BKweW=i{x^n*ZI4t!vd3d@zz@Q*<JpE76p$uQOad#i
zteWi8Dv}_v7!S)ITWnq!6ciNy^@F|roBIv2M{?><Pgs^E(5S#4(v~@-*O3Lyv&kd3
z-S`j*de-#h*#X1ZnU{2<O57f1Q0Hn<xV}0kYyg1pCK7~1x4}M>izp3xme3BBXw#fp
z*8k9D%#yu$y1-~xEZ|zK5kT7e<W;ESP2b6rpoTtLlvaBLWT&+yfJLuZ)0GpfpJIuA
ztM<^}8<l@wHqS5-dD{bV?#R<K_2x4Yj&WmsCs0uQ@uB4n-{kblxr>?FsBdYRj(uO3
zRjEBU<>2(3&#Hyv8~5)gAF@vyA**ba-;8AQwMzzg>4tc{p2uW&E*O)7Pb={!zazn>
zQgr;1y&pYGG~d6Fb8SNsblOHc8=-D1{5ixWpC*v_>C>mpN(aJGjerY?862yF^X;Xj
zhgjeN!t>`7Q-vzETmJ5n1rNP2E1FG!iYzpteLXRY$!44QwYO79!i7<1O;czuMvIk|
zww}N0O2Yn(ehN9#zm_F`-rHB=7!sKKxbNj|-Rc1-gGY^V5B}L0V0>_U=93TbeyvTF
zRaAobFF(jA)*r5C;)(y2n27-A>y$k^Fc6+z(iCy(Nw_92{4}G~*>U?D5WaRCa}gh|
z@2=Y)TbYuhqeWR;PCrSvLZRLxg6b!@C67lL;vu(RnM4i?4WoMsw=<hJ)Q;%t4VQOz
z^a*qfcR<v$Q^G^+!V!RqGz^fBQO9V(4^bNFFJ)(Uv~NwJRC-4|4Sxl7PeV^Hx!Z5T
zXH;!%53t8mNy$)!rtgN@>939~U+9EX+?|SH2<9{rUa-r!rmF`aOv}bIDK%dL1Yk=C
zJfq4hfGtuYxBvwzKUqD8pGPb@(|!gv^|nhghx5a0fc^`=eant>FaG+bb-e@ZI$gwC
zgy}~R7!)+HG(0R9$5ek<R}#2IL)b*>8obj{HpIlRW9ZxVJCI8FF+xBX%j8#?UX{<o
z&mF$&0fk>F;IdVy&4PfgLl55kTYFMp{n3DSsYghka1sIc92viBiL=LcH?vM1W_pZ^
ziwlkE`~o4MGaNQcuxM4O^+*jT=C<15<3DkuN#S#m@h!i(xf#FQo8&YSj>Liab8Xyy
z5;2j-sywJ{jUh((rY)D-*Pb`XPEVs3EO(n|FI&f?Uxvrh&j5MR7=5ntt({tph@Tu$
zzCq_G$)*_WTYe;^cjIRKYsZWoN9E*4A_v_Z#Oq|ZX(jBebbQ~LTG{&}UJ%$rQXM({
zhS<^mEcOft%r%z115{DoI0PRgZn=u^6vi1;cSv8a<XCUo4qugzpFOhRJ8YaND>yq}
zWfm0c$KF8TV3&YXz<aL%8Aj}4{|&%LtOhgaHutwzAeNe0k6_ZwtFp1%Tkj6*nUe2a
zRz7@vH<Y0X-Ie%|fP`FPq?thjl)W?{l4Gg;`gwMv?5^m5_GerF1@DlbioNcT9k2dD
zPi~1Gx09=EcnCizrzKGa2MZv3NkV#!!G|OQfv34qnwvJSX5W67plwm*STS%sb)@A#
zGw6q4sk-uoS;-F4JI=h8(K!nrHt$4B2>XVH9kY8N(Ht(SI?V)6*Q?`@(s!LCAmF|E
z(NDiDh4$p)e1mCXHT3#$xc9o)%Gx@Vlv=BxBj&2HO#g?ekow{0zk`<@x$gmc7NLwr
zr=948galk@>sc@HB_J)I0I0>e{tn|=5{~ECWX<}!?f~>b|I8F8#d0!FdX0mB#nDq&
zm!y)a*inDE(JB8+#AB*iCpl`0*89QZMkf2s6?mpYle0p{$!P``wyxtGX!0j{H_ea{
zg<Ph7QwKA*zTzgc@hp^WQMtI~^m@SiZ~RNWNgq0MS)?vN9_(ht19Y4Uo^A$lWp&<Z
zbX2*3x++|=f3$si78(L(6e4pyS!VY0dMoTYyR~A*0HmakN=o~~5Qt!SM8wSgsU1&i
zbwfM_CA9e%&}1g~IPpF9ZtVP!nYshy<XHS0Rgl;hS(@GD>J)1ii;G+Fep2Ueo0^&i
zZD-NG4(S}U7Zij5)c(hTDri2fja}0ojdshA9<<kflU0zW`Yr&kkscTrIIkXRPtY2^
z19-DTD`SV-!zM~=0FJMu1R7c)v&rfCg*2=~2I0@G&IBw%#DA3SUj<Utp8*R#@d*L7
zyNKf^=TU!Mz*l|bc$?$__z@=a<dZEfwnrQ%%#@X}N74k7X%tfEE^ffI=`~+fAk9*&
zIloZ$D7}w|lerc1D#jYJ&zp+Q`PCCcQ+XV^)-T-E(!f5x817Zi{SYt20SuO_z@~Ts
zEc~eZs{P^a*Myf%EzHM1Nu~$}^2aitFIi>KWE<-3-rU&w3r+^bh1cDkuQqWK<Y2Px
z>Xtv-%a-A+n}4?BXnansl!HmXliMOOauv7vDn)$F$&XQDI-ba)U^us{^+c)T2leJ5
zo(yt5bN;6#*+NPuT3#fII>jzLT!B4(tt(yGYD`MI`YE~miKGL@g7r(9^RH>|e1CrX
zrGI6bsH$V*xw1IA91wl1WleG+m-VyUKtVS`?7Mw1I*Au?Bic*xLlV;KZ0^F-RdZDx
z`%eN?G#|zw{G9J<OZ<h&$0T6yC(d}8ndOCsl?aZv`?|T~Ag~I;Ka++|dw7L0mAMOs
z56&DFy`4VW!SBMYw5-=b)}kLMr47C$eAp1Wq4|YDFBj1u$G`Y#AC@@+>3>VgpCReW
z!D|L~X04HGg>UZKM3slU9Z*e7e;2O6g8SAL2G87E(PgW5s|!FhZ1;#DfPu`w&&}Mi
zIf*FRgNqsSV{rx^Z)K**9VUGi+;;nj9!KHE9ht!)*34T^AY>O6Nuq#^O}Yx|%Jh*4
zN3r>3sy1{bCBNYERPcO3P&<sq$HSvWz+mcMiyMWsy`-=oLH)}M;M(q3+wE;D!Ar(}
zJhyZ3GgO|rRJXl}TxE{oEH(X+7=zmmaOe{$h&ePJ2Dstna752hGNEi3Q2qdfg4-vX
zW*w(}(|SvM!hJY?hU(p_;s8?ZI7WuB2S^WNq7XomQKp++Iy>jV#=+UL*HoQNTd>mT
zTh!R{aM8fiJhZ0YC5_~L1R4VMs&cX$JD+4A!^Le?KOl`eX)&J+@#~)W<L9|*JY;K5
zp({?U*|t&}VId(=C;4s6t?zZx%hs7TH&@&lS^%CS2jI_%f`O5+?k<#mwZoCHu@V}u
zo8zITmqwBSD{Ku?#2v*syzJUZt1zv1y!sX|QQk_Z*)e2n?rOdrykrw%Ixy`CfIXn@
zH7i{`tji+4)FmJwUU%-idVHwIRWH$`khr_p0VmAa?3<3vh6UXZB_x+Qn-t3H<nDnv
zUztk<^yTU9mjjU>fbbKCNZl4QQ>~#(1F+8jf@JS9!ct3VNPl-+on07M9uE@Dhl;jc
z-ZPF@2+8-bYX~cxaTC+#-@IrKfaGFK&w2F=mbi!(3$a??Uu+(dN-n>x?q9``#=3aO
z0MD#jra!8N6f)M_AB&@)dou-ri)`0?H+&px!8+#U0W_kZ$cpi#)5hGwGzDL0;uoey
zHLIJ1yb^7fSHujCfrOzryp4#vF<6KJ3OKuN5n%7k0oF97!Rp<cJU9b7fHS28bW({E
z%w2L?RB_uOpVABjiW7r|y(@omr$Z>ml~<GX_p|h;w}fu;Fn?_cl}^`AE%&6kdf2dy
zd`poJ==!?cH_emXsyxgzP{!j_Nk-I*@fU#m&qxQnIfbL{5H-R_(;%4n-pLq6WHnfr
z+o;4R<ki%G4CBn_frya@&0cs-!2*V5#Dl!TVP!6>+tT9Q#35CnE==6qKcNbn3%k=`
zFaQ->TlKV-JWm8ifH^r`CSds9j0K~h4spEYRNUPOy=HPY3wR!u3Gv0{7rx+u=;MXC
zLS7Mu@nZtX^KDwklb`B!s(zp#1I3I4k2Bg0EcWWo+f-y|$qtZE#Z!Jr<H*5Se6C32
zdDcS^+EaRa3Uu}c;&5L1Tq@xx(Iu?;**(=Lsm?bZ--T@EswDWjsv5L;cO8YUd$M#N
zxbJ|9`McWiL6IvH(Ar`q>kCB2$*E9_Q(HKWNH~xJibAtl`uLtqA1uwl;!n97Y93Y#
z`W~)p+a2v*5Vt7iPi?}sk+g{bpA&T1ymGJb@Z0zr<g@DZ=|#*F%2>ynz(-_Y4mS1i
z+jenJmpEN~+#S!pk}ypXM)XFnl!XMLd)5gM2Eaw8kK}k_t2S@jT!N10Yh@i*!Pvq$
zGl*qC`p9?Vlc8Ae(!##uWqzyLw~$z+`-Rr@^m+;K{FO~hOQZRP=zR#aNhYl?ZOp6x
z75VU^iH{|XX)qvlh@Xl{QCj-@iVBo)^MJf<bnWcmj?+&PykSCMv(+}blCb^Gz`##n
zd#mDKcEJ+0z1dGxXN5%_bP_jOAooL&uQhcxTOupSEgTi+C^`4garyl$m!&zlYe#^3
zDN5~CGsljtm-OaIZbR}iHw|jA#iV`2L>q)R2n^-C35QhT;vQTuve!){zVOSN&x*PI
zxL&8m^D9q2&ZMdI{Q_k~w*Emj<dh%}p<CZa3qLO3HcHe6|7}8=rnT}Hy&^^5njg=R
z1L~|-F=JXLaEcL%cjzACXYgb$5k?br)7_5K0@{Suh0$PLjeox#jUemwS}M$L@$34`
z;dQE8YU8UW)LOHV?p$+P5&z{sgoDdKf9$ur^&~q4!YS%H5f`#2y1!z4fy3j3x%{lk
z;39b--g=gwFNC<)xFri6ksr~^p?bkn4`04`BW9~d%m-1aPk-^Hxp~Kw>ZB>`$WXNx
zl_DfEGBSaZpp{Ms{h8lw>@!ra(KNvYb03E9(*rSi7|gde&vxHq`=2&C(ZU9TQ#S&Y
z1!+5q--t^|4Xq#@ZV$0O)YoNqJocWq=QH7N`svK=HL?fX0fS$nX#`sw3madSvx77l
za4<2+`$o2f<L3_t-TT6cX?t20F`ALuZ?==;n-1T|`>cRwD*_&Vb8ldelB!p|gTWW}
zJqtQBx&?g2_5kL6&AVb!?oOOx_X)x<77P*|@)Z-=T9$4IP&ZmYA!m**m_izJKDVo#
zpX0x{bxuN3*k7U<I~ru-#$N-aBR0&VzFF`AP`=PZrkgFUw=`MA4WOyLE5V1piwm|3
z1nUsbY(-a}olpemNiUEqd1j;5ApdpYoWhYCnxDL9=?a+ZTz&Tf?`BF9q$_VPa!5kt
zeKZu^0Sph({F=(VR^jGI{n>zn^Ou^k*p1fNLXKL7O<{}B$mr-h9u~xy>}E1f<e11W
zUu|##s@rVb*3m~_ajbVPDbMP~)rKi}w{%;vqmLd>Eq(xTrn8gi`E<LBbqik76furq
z>TCec^66y>XvI#yC(kf!t?FNV)Q7^mtI6sh=m!+9@Cq&LuZ}5P0~(?_QKq}5@WF$j
z!kW53nQqj7sgnNDANgBHnS}-x@NSDe4!6>}i0B>V)@{bt4)m%Ps-gAVcHCAlf%>PC
zX7q?|fyBY_gFv13Ehbk)R`L`PUL*sIEHbvR(?3puR3q!J;b@3up#k@pT=JlIB%^m6
zNoocn)qFj#zdPs-&<{N4a34n@fPi4Zy3Sx5ko!p!6Yw|vRx2nf+K&}G3wlY$?^do|
zTU7qRxtR<<ym~hgj=$jAWfg2@=Ph)1%hR+#7M4oke#{~`1@})zSHLk2&o5)#GuQf{
z_+IUz0se{7eWvI#0%J?xE6JBU_X$bKE)n)wwye&tJ-3_WYje-1_4)hZ0?IH~y~r?y
z+=6B?GHhIX2-gYz1-$)}rUGeK3B2YQht2Gpy$AQoS8%;A{@M!9U{k3(6r`XF!9M|z
zl<(-{lKvf)<hP6`SsOk*9bHDQY(kwzOP|M6eK9}V;!%x%!utI|s10=>bm@zlX0=)P
zS7TJz`>!29kx*Xx`lD=qqpwTUOSC`f-=)9*kU!G-*AzLp=V0>kPIgn-+MD3Qb2%9d
zZ3#8ZT~b&97=o^yWuq|lKb^n-2@<ei!stf`2@2lBUPajc`9~Rc$bdyWPB+H=Z0oE#
ztSP>VVk)27tM__(sU!2Xk~DAMDw$1BP0flofJ)Pk^RBPYT&^2zl<fMWD5?_k@@RN4
z7GUY-cky6>N@R0&b&L^|t@MXv*MN)Uj*+IYR-Hb9p4-?KJ<)y}UKfdkbV&<q?|rOz
z^1K)J&no_py44T|_T9U8H9mK)$u&Wee>Q1GJC22oP3)&hfOr-KSu;?CEl)ABv$LBJ
z_w{WX@U=Tk5%7ri_V%^_w4<%#-jNH3CmRQ6FuyYb_V=v@2L>_$G1XNDo+?7XGIfR9
ziT?TT-&}ivwA$o<e%1b^$WsX)Kb&=LRn2|*y4)ULH4PzVyeKT&#pMKmb@_+4g9|r&
zoHMv{MIK>CxPFiHPjvw&f)w*M6&CzFl_3EZ)_65P`B80zz@Me~1C#!3%f6w?fakqs
z?z@?un8*V0j<N!Os_`pOVF@BS0G;<9fTj3w`8PE1%n_iLJtY+X?X_x5g^7b>QcZEe
zpq8gn2b$p^g8k>g`2T#ffN6+Bij)reiCy|<Y5rHT@&D_?OG+4|bT2?K{`~**QU0-r
zySy;`{QQoG9_$wX;r;^F=oTXY21~2}=xS&u5fwHT24vCd%jUcJDwM%}lA8z}4SfVF
z`Iv^1cu%!hPHF0i<rXGREzXL&?qJZ{Kwug8eEekqb{a03n}L<BC5?tT948mIBTiPX
zQ&tOUW7Erm!p2Y{i4_yX$lPyTXbeSk@mr*aq#u11q$6z1$1>h+o}4HmMy3MPgJzP0
z#%(i4XNMRE+v(BKv`_1_N*?+Qai*k46Fhw*&1ui!U*s$m3sZeg=AWKc4Ra+P7!r;m
z68E-{drivg82I(;*N@G>W{umJ18$7PKC=I~mHxT2cJ1KFy^rlqkb2?%!>Jmhf_;u*
zVCC$Xnb8nBrKuskb(3%EwY~T10SgE*QivK4V%yEP?lDIG1UEerN@6ahxDrlZR7{Wn
ziIYXw&gS^Q6lEZoMS;oNmRuOaugJP2JG#i2FV5?$v8eHYMo9L>(8WhWwKR!|6k$#W
zhG~we4{=g>q(a_5vS?RCZfM<<->>6ZVP#n&zIA<7A5%>5RIQ?m${o>(&oDT<raX63
z9F!G)7gMe+mydCh8R#$>c-j~$irA+jy{sjp^}yHD-3>ekz{A542Y+R&`yW@vzt#YM
zy}u9d;9Zk6Sy_1=boL*&v4|p413J>{6=1sibb~Gr_b=3h9T}8w>2xIN@{`0?3<XV7
zyKTewyhOTz9kbFrBB<t@U!E7yGh}`})TQvZ%^WjgcM;>0l4q9R+}wRV$slouuyr%V
zG)Ouq@H!9}7z>k>ntCsAFHUIU5$C6#LlBGi!NrBMvAG$w(h087^F}t46E%Ihf$?H;
zfZzR%8i5&5wtP5fuijw#JI&q-ACxxRs>P#{9uom}$yxzO_UEUk8H0l|rAyzwp*cD@
zjQ{={OY6U%uYd>14i-vEQKsI|zn16U*Uv}HAEANd638Qqb8{sY98(PR_4QlX-|+KS
zRl8+4iN3U<?>0z~v$W<`aROzJ3Dw6})>kK(q;T5cgZQdKwF6h@I!E7q&1@t^95<`B
z4^)2_M<7)Yy*UH0V!B&-W#r|l`4KDMEZmrwXL1D3)ZjPT9YxkUBqb#DG4wJ#XRQY6
z`aQ_m#<?aB1v$C@7j#mYWG+zj4a6kzuX{0`-HU>gg+-yx6ByjAZ$T>m>A&AVA}83Z
z)3hKw0F6fKGS?Xw=l}N~`|qCs6Nv}}oDirzkD1plK=srrK0Z{X2JHz+Nl8INRg9b*
z99AZ+8xc3LX=$>=+{aYh+;Bi_9B_PiSf<ohjEJy(I{s~KZMZLAzPJ8WhPSmSt{+bK
zOWZrAw5~4R*u>-s7*thKqKGW4tgOW-Wfy1hgvAsxxU{1{|L-?^1_tu1HiW6<<9`kX
zs}t0#tE(bpel1^sL0+Ep7OqZC-$i%l=RG~fMn;%bm6hLV7zhRd3z~hl5!~<iIa`dL
zwLS3n(NI1B;Hqe9zBK*#aSX_Fb2>Z#Q-rC-ML8uUrP%az#V3wOn}>$JzQXkMbZlIl
z%bsY@_kjPt=)m8Kkm39-gxtO4Yx<L?!C>ybg3+gZ$Q)>Y?MCZ%dw5Fg+_L*)`U_2v
zfuz%Oa4tKZ`EII@Y-#*KDH@`eR1zU)jG2^yLff(L=H8)nA8O?I3AYeHTgcM;>qZQ4
zMXKOQlo;`5|3;dgno62`%4-mkqy=4^aEzEKT@b5Z5lVMG5t7{Kr5<#g=B!oK_(d);
ze0+SYs;VkJH#eue+hPuWWxU4DFI0Wu<l`d<p!FY2O>^x-Twn9^H@iv(GX3>c|K)@Q
z9AoZYcbU6xI=H&V4+XjIJX6Xyhd(4ur8k;65?|NS`+a>-NXc4i{zALp2q*3R+e!S|
zfdT%y)X_toNt)Kyz+LHIF`Yw^GGLPI#q5<@4P1|<*Q*xxnM!W=KMoI%=v=PM7^Fvb
z&14ID;ajLg>8)lyB5$1178mTbEWF(H7Xf(9vi^@(<=5X^A;Sk^`ufO#hm6kc>uy$9
z*p}|Q9BFBgWRvq=LTt2Si@c|w?E45E5tZliF+V*W?p78^^=(bj!%;}747|X3W0}y;
zNAdM8+kz&(G6{V&$s7l3helPAq<^hLKpWNRakF**z<^Q%d;R;fi>@FQi|Hazjr*Cd
zcBL^YP`D|gZ>PGo#V=?8b}jKHnH-31+;~`6?|^wSF?WfHiH>)`Jh&gRvT|}c0KTT;
z?JcmiwKc#703!eCbpH9=kQmlRVDcmo40I5>)XYf`5D{_s_huIshO)O1<zKvb;ixt4
zbN3sWHZ7hDm!%!*h=PJ*6;q}-+w8_lD(I=2{*hA%a3&z)vCkM*R8-6_)v4EJ_9`^v
zX>1tJK-L)eSzJoDkGEEB{sH$!D$?q6MQ&r^P}feUirs4|0=ILth)<_lQd2!cF}f`R
z1=0<Q)41`wj!myz9G!AQ3O7FXOw^Rfib95sZMppnZYrA2ZB~SS{0@uE>l~P*22XJ&
z7Z%l39M}y~Yf~NX^WyUR<q0(9HF;{^jh(QLQyr}YZ|&{LAfI7@o)cm%KeX3_7|1gX
zFn^H8+eC)Fuw##RKYMlUwpLx7&B#pX(M)oecNwla{b6pK=MtIFbT3xlF)7PCd#?={
zW5VaLIT%QJZYgI&2~A`!b+vUw{Z?)X2JuHHr^7jY#szQxnLJd8bo4DH=<1=V>KM@a
z;i#r_eQ;hiygk3bb)?id$HIBwX_w{^<L2a6mX14{pIcZ+CL$(&!jtf}a+Mbk`RUkA
z@fy*Qa`Kw2tV)WpM@N58DeJJ5(?^oBm%Z;?H~*KO<v+jk-`*?$eZ#IDfB$D+!^1&N
zIVBUW4i4XCL(mD?0)?QbVvVr{Z5id|tc{J0dolCfTAE9V9V|k(4iE^$Ige=2`LoE`
z9-On|#+~-aEMdJNuV(lc5GBs57CnKS@EF@J#uG>!h^RGC+o*4AO|~pX>hj7*Q3WJD
zNA2uPaFU6Z#vg|U*HQy_s`xE4%cO8#h|)(aBPS<X-Mdoaz~(r`!T82j14Q;cEUd$P
zh)Y>nxrU@BJ)K)VnQuLd*S{DWKf3yJHOa}2l+eLcgD^i7S&-|<0p%PiD|9W!vX3xZ
z%p{-TI^#o>RE4@%&-fP5)d_hjhW?S4bOcenahgSYN~ZD@f4p-EcZt=Amt|3Sp2X$M
zz?p81)y|&s@gb!DyQ-dnJfo{G3u2S|nQ>7;LB@Xu0@`+D3Ywads;a73hGDWa{yM$?
z`4)q~0BQf0FRi!Pu|P$1H1<tJK}m_+v6PgQin}`xFAq;taWUgaDu04{xjyI&WQBh$
zP*@n>;{e>E_y@Z<jgh=g+q*Ho6=!*0v<La?^j`UCxt=uOsU>WFn4eMP?0u`^C+8X=
zX%rJbJJ6qazY<;SMvj;7w=zIP_Z*fWUPSAbkgxf`pG4fpbUKJsPIy06Z*U3LTV4{E
z*96EsX~b{M@-s8PKMA&G=K8TJF@>x-Slaq~!|y^3NQ_N>vJe5cI2~(9yLQB#_?p9B
z8j~9zr260x(7>0!RwPi={^1TvM^0Z#U8?<#r%qtuApXy~iiHFQpPOt@Ks-CU??a)z
z(<s(8B~;+PU%te7%kboVoJ$;=FrRycy|?Ye^FdKFe2#zVFH7)<R&P}27w9CWD=cS4
zm>40@I9N|%J~8M2`zv6XY7Dr?_V)H_ocENC&#Hs~Nc(F_YO3WxG_^961Rp;S%oVDk
zrZx_sa&i+*RqUpNxQ>pFSwKpHPMXs^aonR>*I1eMoAqu|g8g!1g{9S^_iMnXXE=1y
zBRQ$8`XoE0CmBY#xWeC26mmlb5F{&I?OMaIRQfFCf5oZ2-`R;8m)0ht1nyR0CfIDz
zzV~NrWLH&Gr7^jDSsgKZZ9H`;wxk~XJvV(SQC^r^8ar;PBY8LB%%xrQ$z0!h|G9ci
z;)YvgtRHW#xmsn>UD2nUA66_7y%2#SsueMJu&}osV3Xq2HULe@`WbC)Iw7G5U<?RT
z{5#6Ow*P-gC;UN3vvYG-!hPoW1wX>lrq{SQIQoO%!y%%-_VV&_baP86<7ZgG*8vE>
zGVk9<$pa}{+S9}V9S$$0+BG~}d0!=}`EQM@o3=$PybCm`I0CSgbRYXw6BFu=*w0Tf
zV(xs$sX}`ua}%X@r{W`bQ^I?M70S|Zxw1<6-Gc0Ot7wLuF=fXk72DoLaPFL%S>cz>
zP)JYGzj0;aZE8^Q7^RoNGbt@*iZ^9?tjrFeGW%}V{ox#ikSVfK;O@1lUwZ@tDjSo=
zo>5UuGh+{HiYy%E&w-JZ;G}(`g0h+v6m-)3l2ZDq4{F(0tE=lwLq+i53PVB{d)F)q
zVeO3QtvZJKsH(OFP;{QFruU$+O8Myr1~8v2Z*zP8ddwa}^U_g?Ry7^asbTzyew446
zKJ&X&VsUYC_sKV;Dl9B)ZzEFp>9fObH_^*26?zNJ7JHQ6F+G}ZbUgXO*tm~!idsZt
ziay8W$Al#W%b}7G<!`;+__D7azmuf1JL@=fd=A$aNq*A*rihs(`|@fbhlktd{3S~A
zn`nq&0Z)urpOAs9T4SDVI)zDeKl|(V2PzU1ZF7{PeUi1-RWDv~#(JAj73!0y%yX|`
zoj5(VRVt~fXv&%Qc*RsY1WS|Nqeq&bwpil+z-8^-la`QDp?CT}jD2NPTx+)N2?+#3
za0|g9xVuvX4IbPfxVw7@5FA2qcXutE;7;N0?(R~&o!j@Ee(%0}x_b<MRMmh%?Y+Nm
zeQV7%*PMga<|T!>qm`XTV>Pu|&tij54!%D~6uVePF1mNRzFb}8o>WtwoeuU4?DMrw
ztXSugaE?%#$hn-uBb#36*ncdqKz)<UmlXdt14GwSD($7;ruP?xZ(rt#Q?nxJHR)64
zG+>dm7@eWg_UE?Q`;Vjpi_M|Y^KfU8M(bDoT{~)kBhl6||74!D3*-ji6-Hyh0p8If
znst_D6RmC?-(aKtD@eb+c_X>!htit4`bD?#d;p+`8+G=nOE311FywH?mt`sDR}B{r
zxT|V0%Rg%3e0<r=Peqv@)Cx)vJ85fE*=5(5j{%FqMAjC2QILyb5bb1qY~MWCkT~Q^
zjf#>Bj7-Th8sw<uRe^@vE?D)mxhvt{J$MWX7ZeoaDHfXSg)-I!DU;AWYxcl;iRc0X
ze}3o~q||Jak&=?Mdz-;@?$3U;N?KZai1=0E04pi(Eu0CDH(zus)IGo3`6Ue8XeoFk
z+HJ)<Stt;>);sXr!+V&0!nE(l$IYDsdT*S${+p++emc9b6`%-c=;mlj=CYW6_nwDM
zq3&T!{9vBVVVGU9djQ{eoqr%(xwx*jf5-ng<#kaeaMmfsAa5Q|tfvMa_Ak>1K(w5-
zZbk0TZwE${gmM22h`ymIzd8aC%>bCraeD|inr!VsR%S<ol44I3LIKO$;Bef`dwI6e
zQZ1=M8R)D3&)o0tO4n0A5@Jg;hO#eA?`mFDqs~w3E%Rmn0%(DL=NAvtXrt4;<4e~<
zfsmYn;F+3IhAy8yUICkA1_hWbamAsUWJ4Wc8CWC<Xs`q~HhlGG*NZ_=ZXCrziwz-k
zEr#hvHoDa{|HDCrvR+>G!yi^9bl(WstY6IW@>p28!itAhj^rKL2w2K@9d2U?ZP?uT
zsZCES)$e1(eTu@s8Sh6rK?`lO!i9T7a^xR)TvK6b%~cu1vDWBzxh0o2+Q{bWp|I}M
zKi?WM%RLL0D5s_~BlE0tvCSCtzF>WWNve<4?C;8>732;%-cOl00n{7?qoSgUcw*z?
zoF#AZF)=@MMU<`|-rwIN2SBV}w6fhW%KgYL4xJ_v|6M1Ty26laIdFT~Eie`~v|cUZ
z)$N*7%W@PFJFDSa5|$vOZ<M7;wKDq^WL9Z}MCS9^wMk695W*x7aHI3`zF?Fdj}}>>
zn`B4f_CVIays~eor!`UhHL7M_R7!dB@g=qSwULICw~ZS7aBt&*u8qYW&H6s?S7ZL?
z0!-s#wv!;=uJx0Ym=kKp6uT_p>$0bHE=i>*#5yO`j-?m!Vye&IIw|*t>i89IhhB!H
zFh?Q#G#3reeiQp(zT@2D3KCnkPFc)&b5Hp;@8d+z#C#z13+XW-o543OIk-11m)s<T
zAmY0s9&=vXMceoGot_OIp4}S2Y{_xjNpr_nsAptw@LtU69Y8G;)zkA;q8$mWHbLCm
z%ePkTj9vJF3VP4Wk!B2W>-+G8gR=Yy5l5C;0`cu-W)zu$+1gb6m|xp1h$M|2Yd;zD
zxJTCI-gEDn5S?_PfTQJ%SuT+!%=-R}uJPFyhnf?7^a=}G@_DCLH&~f8MSA}=?45$8
zCD$-c)(LI-eXZJ5=E#S17h?#aaGUobfD1Z~o+rqCL$!vagMy*Aj~+E{4m+(cYvD>n
zwnuQqmzR%Y_-wu@uU#C0bw8?pkc*)|oOe>P*o)I-$mcyVeM(cp^$auU>6(bNP7!T;
z?p&yGve1lbrCFFd%1Sn#SZ#lq`^VDH)4Muy)xHgC1_m&d=kbVJ2GK^)4|#iVRqM|r
zNTTeQ(fDdiNa?`TPjR@&eT?5FMe#J{?_}T~KRDliRT}h~0uqc?{tz5vwq2}$2}Az_
z!uW;#N^Qr;CiMG#77`_iKOVa|=G`4`s#bAPQNdUUYhivqCB05_!Z9$*u2Ex(MovkY
z49`>=?gC&An`>(%+8;Qr<_$|{$<uY*w-YdtstxSboo5I_)h<0{=`b`C>f+BMtZ<Nv
z#VE=B;z6Pj;8H)1CYB4XsZhE7GXDaJ8ObqLBFZKZ=j1yAmZNTkTH&&Ku#BQCoJ-Pu
zwJO_~gOdbu>Ks@Me~06UYr~j6b2JCnYTudDS2P2t6ofJORSkFK@4p{8x-W6;wOaBS
z^G0vaJte}H?sw~}BWtPT7FzXe*U4rZoHU7I@H=Q@r)?jBNDr#vo7w`XBUkc+(=0-z
zs6BcGB%j>Lwg|Y2g0+tP@rnct;c-m61yA6#ZFl|SM(!3>#M?jC*U5Shxwcja+ew&z
zx9uAtaSo-Z_HLlZj&uM$?iY<FbT84lZ+q9LKKhlWk5x!y)4wS)fv%weQ{tKm6seh^
z5xE1M3Rxx>2KY_4>hGI&)$N^G8@G~nioKk*i5w<a*`U*)q8vgS;egSE_z$bU9`Byy
zcTRr=i=7#Gq*m-E&h7a4D6yEEv4nike)6Q+4#A~RmMha>ylH6LZBUdspOiiPrcNW7
z-{m%y{w+G1jQ{KwojZqT4aR3%+Bcy_krY(Cy#a_^F0hTU`rzPm|CH5ieb9;9se0*;
zaZAex%BtinUrBvBzTVq5{;|Z)!4Zsr!7cR5<8$lmTGGqNt0OQWm}|NXx+NfUIm7^Y
zjhvEog?BA!vXytS^UW{el|G^I2)?MCK&1$9tJ{*n_@i3Y>TjQhCcskd4Q@-vhc@#y
zx+)va`EuaL7M`uDwW_yG+BOT*H2T-)_VIg<0#%>+$+x(yX6qxz$HQc&7q?G*TsXVC
z16)i@Im#!NE(DRfy4wR_7GXB6t&Jiik1ylmE6dGF;<hkg(0R1WDPhF}-n_oQ$SkW=
z5v_#%Gnd~LhG~{mb9Z+qx(+J)D+T@+F90fPo3m#cpIa3sPxX&PU7Ctrx2ydrbMSCn
ze7)+HI@8hCmZ%>bQdUX|z6Q__6m4fiOjExdA|WRam^GUISicNK6^5Q2bul6{bP%{r
zlbyIAyhKcG^SBZyqGsozt6FvI@w1We)%ZO-*5c(B4~#t6TB!>hL08R6`xbizD8zBH
ziKV3uiK|YkL1w)cK<k>-=M1~S^%k{B38V71N?AJ9aSIYGI)*P>;?ujSma^1h)&q%0
zZ~8<@U#}aK2{zX^RnJWJnH@_^P2x7Ro|Ey=VfF&0@GtsL*knl@(1k3W-Eh{{n8`h*
z!2Db<P=_bG+S7QU-POMo+u>i$`r4UA=VJ7vpmLsS{yaQ52Ukd>SfsGg9EWaybzM3w
zQ|!hHo8QOlnU%so&)F|eCc~Hne=_i;jZfZD&q%sNXS^2W%}w+Di%PC~THo$HeB{=)
zZ?aysAB*=l%`;|cHASmwHg-*PiwjT}WPc-OY6~aQ{sF%Z2p^)IrTy~cGAcn$qAKAH
z`aDM-8wRDg0zPV|gPFI6JXYS<>H7LYp^K4e4!Gfs4-~jF&vsYH8DHCb9KK9<o{SgD
zJYz9z4_=BI@|ll2VKVwdov(XNB%Os-(;qkjntq^?q$Dc$Em>fCVB>Rt%rpp$7PtN5
zjJs$=LRq%WDD#4|%`>9tBGizDS4a2k{A9}wkKKeN^>ziUamKoEJ-(Yxhn}uU`JT=n
zLir4q9o&F#3v9KMX9>SMGsyzMZb?6m^&aeobE=pL8|WQsyU>qb&r!SeIA)tR=jEjx
zx9-3W3|ctdK(ESe^4#JhaiV>+_Dn!c-*w!K0#v|FQE8VA20ME9`v(L7r#+5?^q4ZO
zK6ZPEkhXhxMw>G{j&Y>~DGGK13Kgpq2u&+*sGCAaM`SL?vq_;&t*VtI?N~93<g<LF
zt4O#Frqrcu={yI3#LM2D<ESm~o5NJcnI*>EVi#KI3QF6U|L%+~s3knwQF=)5OtVL(
zuEhj`5G@cvFqna*YnhoV)n>k-#cwqa?|uz-892XzI+F085Bele9v!5nrMxyTS%%y2
z7<e!ls8+I%uj9tz#@xV>vX<3;2p`Rr9l>#~aL5Q=D=m9e-%4CEgLC?8!?}O@s){k+
zy5wq;9VnB@^B<Iyf*_J#JVe<^Rq1d0Jl~CtjbXljUlg3c-PYKs5tI_AC?Qe&MM}3^
z6dnM;F7^Od(wL+qNh70D7%^)LV9fk}UBh#^*-c@z>xhWUR!~Yj=in8KVk;XOXj&Ol
zUi6rH4i&NRL9u{l2#|B(D|6_;Iv-kQpGVbhd8*|?Eb_w$7s@+NiKfUhVVL}^T{h)p
z%ke`_<fjUl5)FqDrPO_IukIV8vx`8rSGh`Fe$?)q;--o30(YZlZSb#{)G$P3!UHoL
zj#5a65*E$Kc5y+S(auU(IB(eTphnRV*<na24!;9Rc&$?o4);RQOiTF_AY0;)oS5tq
zWzX)6V##m9&3IhI-5f=-wRHo8ZpsRadU6sQD>srO*8^20?HGE|;X{3agG`q`k1r{f
zy|i54jYFRNxjTZjg3>G`?ag+0BNIK3joPiD2=Ct0T2%egM3}AygL!PkrLC~UH1|mX
zVH_Z$-_aQ|%CLGnYc*?7j@c51{!(55($h_DriAF)Uksy?yEY6V({Hp_`<7cMrGXoT
zkNwnoyPiMaN9esPcEm;Kv(An&#)@;l0|HIF>R~mh;h8c=awHp%7653RQumJ+!}AH3
zOV0<orKFE&od%cc`dQKPR71gT9e4A56&n}gM5Sa~k0s~jEza*7n(*4BR7&TKN!_<u
zc%AVnwm1lIaZ4(du9~XpX=r8^>o71#7it;+0K0S!1^N(<z4IGZ0zB;Fz-asq%W?E8
zp(~P3__;yw8#$;A4!+RKO}@{<*Bmua=e{zo?4M0FQ;2!m1lmnXVAcR2pUNUa(G<Cf
zXiL}8yrl?m{oZFj7~v_YjHH}u24nQs(zTTSvNJ|!&V2hL*@mhi2w^Tbeub>gn~hi>
z-t86g_&E1)_k`*JzxguTn`D-_#qJy_zXXv142e4|-V5w=+)4M;lZ|63ow8-jO#+ct
z!q%>bmy2GT97>nCy98A00&Fg~S|Lcmv3pu+gLbWN_~g?m*Ig#d-JUnLwdEY*`93Yb
zAi-p#60_#_e57V`hQC9>|Db}E$Up&Gr$a=8?AbiBz8uD5J@ewDy)rE&Cu92u5h<4o
zR(m`)sCmD1xXbQnW|dWKB>lhNa+l;UIM@$oA|SZ90H5zb3eN9i{bzU7Ce90mTtJC{
zwp6255*~am?FxYLvTw4~A4^cs(9mL1Qs_iQ>GF`_;WIiqgi1eodNyA(1uY2f;`(+d
zQd_+*pr$208Re?NvF>}K#srW=W3DN3ZjGe&iFCDB1MRe2^B=q>ks_r)rioO>XtuWY
z7Ffzv299>_5YbB`+_@?%Xtd*m^5poe$Q<uAS`*KW*y&pfEN^4$<+;4jA$n>|HvLb@
zju-xbLQ06IXP9hfN^isgz~OB0S@nI*hW5qE>Y-O%RfVKGicS^@A6rfsHrtV8x0KqP
z*8NcWd5ON$8sdc&5|LlKS5%oN#+PyZ0q11e;Rj;F>-+wyD=cLS{V!93%f8u|%uXru
zQ*}lra-(soK4Ks3FsSwhUgw|+2EUjz$;`}4iSWF7vz6)+G(&Skyq^A!Y$?7Wc#&TW
zY!b1P;^MvS>W@m2Q)&i?hp~C}ExCxa(QdE@bZ_FZ2F;Qz^5N@N#?7)P3qN)=P?YT-
z_6=t?wEEg#<Hy)Z`80a8`T#SFfIcrpY5)4VKK=4s-^%luU7%=ZrzUKL%W~z{!=vyO
z^`4L(u2A396#VYCro5fcf#I6eUqS_XBV;npHZZ8!y3(6l`29zhYgoxuR0<FEhe6i2
z55yc4Vcu88qL+L5cvQ5-M>+7yfnee9BIZqiAZ#AaGs)r;yO@~3$VgAR^rEwZ0viF(
z<h4Tq`*?rfK6}&d^+Fjct@Lc@3N=QTId<tv14a*Cn@MqzInW`N4yCWEa2rXf#KguX
zPAzlmMnq;{5W{gdG1-{b-x83l>2_N+Tye)o8b(@r@8+f0q5|n}4>nJpe+G-vF824u
z^qH~Ix<{xqR^<KAnTL`RFql3OPO$v5kG_im14klejd?@-ZJpw`Zc6M<dfZb|zQ?V2
z5JJ3@qwN;Ru(ddn6Bo`kDqZa^*H;yU-o^+BPJI8-Wb-1{m@w|4UthEsP^+@HWBHtY
z8@|4?CI_JUN(#!-`CXeQ??{}l0mZz>b3S#kSQ|_0m^(#`d<7X{BxN_HF@WJfP3)}S
z^wfyVbhNU1EaA3CX?m_4x_7z8AH!t*o}H6jes|TCrk_`edQdk%A>kb$y!mq@Jf-5Z
zy{)5jbg?2J?=rYiMmLnP-2-QjC3N%{%}Z_G!Oqg6{^)Ivws%##wMj+cQVe*_*;Z=w
z8`p;ZCwrLN*PGsRxzVW@;RlKE_fcR7FW_B&S{dM41n5qKyM*&pqN?2!3=|{|4ULS(
z+WlUebp@fZ&;lwf7y<xyXOM&2Z!j^m&<OT%58XGZs+nUe87~ZmY%66x?-#6O0ks9~
zcMBen3gOQdgW_4qV1DjY*o^kzXl`@%`umzUNTt~OB4TI#jzxVVWQ-)AoZ0F}cRj3s
zmVe)WKLD}~LvDTMuDqR5X(#L3h3{T(&zo1tOfYY2{B=93bfmdZMcc$~;%wo>mHNQ%
zHGeDE*kXU*Tr-tSWek<3c9yQ+wqM6VRGuSAhV73_sk*xIc)!EEaL#XP!zbfpwSvL0
zqP0R*Jja{lUCQgxICyy<BH6(Htf;7Eo@Q8;?qiRG_2_^i^E5}hPU2Hct8V4?!piL~
z|J=7hB7pE%WF(=W_6NCEjq>VEG(iTx|3MOD^`jxBf7ao)6}1|VI2NbW%E!erb6(4F
zs`-ok*9wcPxbH;{VTMT@1{tKZ&CHhgS1kO$@Y9z*z-S2Es2wiIpI&pMz1Fhs3QBMe
zWhE0A59BE8J5s6oF&8bcvEH#433>8=d~BwxSxn0DZ!M)3!Q(j2o~!QZJMp_ymHyye
zS&-ZfdG@|@s4VicgN5-*g->PTqZ!zpEQWAKqP)j6#8|s9Nw>;bh<itAtX*weMB!<C
zR$E+bmo@65xga}g=fDbYcl{C*56@bFE!s=UQ~J$iyR6*EOZMjTdwZ;0-?W#tuBxP&
zI;B@McyvBQ&bj;-RST?O1v4vZShrVWw-v#dtJs2V=@)!04L45r_gyp>>$9)_s<B?e
z0OM)>6W!si9mb)kc$^4l4qqNc>@oFCz1#t;Zc4dMXXo7M1|V4#m6u@C9<a%Kx#bpU
z%6a=DVDeZ}7@a(CKkjz3SF5oP2rqJeS#!uWZL28~k)E#37fuW`{f5c{PO-?uXKt8>
zOvp_#$Jt<;rJNjbe0`t%em7-_o4da)+uMzu-s|~q#Aiwjr$4LGBE6!a)%3ZcLXMCv
zJLi!l07thgN()$Fnh8D9rBo_6Cd&n33aEz0R=w5no#*X|j@8z>pUH8yvJLuMI?|t=
z5Uul9IdyybJOhBStmNytoSYA95xas22nbzfsR)#EX_Nkt`&<D)SCV>Roda;&Fr6%r
z*Klxe{{aSrhb+)hS^&s8C-!3w{R?j<*Ghkf;Z&mHP_;KI0Wc(RrF4A?P1xW%TMrea
za*snfHZC_Fq!zmu+-W$S+)YjLw?+n3mglB>-VaYrgUV-wRs`A*Uhdj=+NDEy7A1wO
za*eAGD{VL2TV6h4VoO(KYqpk{*45RFO|K#DP<eo+kTKl$l<)duVUgD0i2lYZ)UWoj
zPK|CL`1%@|rM#j2ykP|8asg3~Y)4_e*~7mxzF30U`DOA&apdkSSZZ&mm7T(ke+~gR
zHAgx9vTsQvg{-W#2SWV3(Y<A_K*!5eP3x}OS;#muQP5=b(|SS=Lrmd%<O$Pd%Ca;O
zgLcO342oF@Vst$*m8LV?{;WD9h{t(k0d@_&J>=9xiv??r(N#BjRTbQ%GYU|tcrZ0O
zRBxOGW2h^sDdh!MmTP@Uam{*m(Qtb11+|I;$ztZiNt4Q>F;k=Jg<4j&@E(zm&)1O@
z>Wrq7J687n5e$^b=?jmmB$XMXsl2=E(abWL5vKC;Ym4s9pO=?f+;s^FzT<Yuy|ue}
z(+($oC@~dcQ>5-!vAPPb_41w_S;rfcEYzU3n0kI>2jj@t$1d@$Z-K{YukU^1XKLT1
zcQ()CcpMz;ZM=jarq3}aQNEq!IUHP)dR$-KT9+xO_l$lU0oUj;Bxh<c&y&n6z2N?6
zit^t`9fK&$-U8@kQ7@QC#(AeaxxS;_B`$F?w2dKgeA+rMW!}$G7Cu$^*6@Jx+@-rj
zuiA7XN=9Mx@CzjcY8vCk^>=WAI+sxK7sfcowH1;_qQKJL)@aSN9}wDDr^)ivmTZaV
zz`A$koq+z>fU`==HRV`q0=_#GEUT}drN+HkKePcVOa{f+HC=41l9$}pU)_iv;^R}_
z^trI`YjJ6$&oyaW&bhy>N}W`C&*NBdOOVX4(D|Qm9i?C%o4Y69*D!jV80#K}^>>&c
zyT5P{AFeFUd*g2MUObhThH=J>zP_nx0-%#^3Ddx*m&!NROcaMy)xI3!t@9fp)G9x^
zao$X^<&b-F&-Qdfew%kHkxgwrVq}l2h3(s;#q2j?xj+ls%1<CwYWv4^1bl2nW8A#`
z)m2@LXZyr?z^U7?Ut6@aP|w@!_KUp!jaA>f9ubB0@Qb~^-ePx?6cv&6mI?J44I_Du
zCV?g(OXDa%TDO{$=lpW|PO@=-$MDC9p~zIXNdTe-^PMPi{?C%m&BJY(-yMgVRqv40
z)&%5I_uw~*ibKgK;{r|Gw1MVj1&eX?>>VSc)BXSj-z6rl(vC8`c|-iXIkLq*4pSgd
zj*zUla>HFlUP4?(>&N5B8!ihAyuRUK(KkuY_cM|Ah9yf!7mWvbW?4H<2REY^kTx3@
z9cLkx4wLA&OC#TrJc4!G+gpF@#%M74pu@uAE;Xq$J%;Koe)4(Hqz!z0L|2bXcD>ue
zQkn?F;8TIx(DFb2;JWE@xtmgz%iJ2|97|w6J2wpprKREotGO78_`wDHyc`Klb6ezG
zIe#5J#aMrOX-3BWog&twqVwDBH2^DarN=Dsqg;9^BLr?Y=J8N}Kt8i}vYw7NV`RvY
z-rO-x!E~r=zFIlI-oN}%F2tqe6JMFQ-7^$D?C<)0d~duajV-wGFU*>Q7!?m)iv6k<
z6AP0ZKf%jv>o~S*>Z6e3&`o>@KAZx;!G-OS%@~SN?ur<bahi&$WDqS0S|@om96*u%
zh0_H200s91>9?7PzEjl8br&P1-*N-<wHDnrwwz}RRbtYs7U;!^x52^Ywfa*LYCQIv
z@P*2Qi>Z7Cc{$%b7rk<++!t3XW8@P)!UB?*l)(t@Wo4WD`WY0=X0;Mrs`2ouX2^UW
z+bS!gV190^;ot04!)}t|r)ZiFZne-c41NsBHWKL?rtmBFS~kx0q#jIurlzCIkxAxA
zq%<J<_xSt0|1Z&<+aaaPtgVqZt@S#Bf`8Z;Qc;^>RVZJeXCNWb3>pr8O-V^He1Fr8
z5<KZg8vSjylG+!0jlz&o!|?*4&a8>ws)V#$xn>g=b8ce0QM>Kjl8`|Ay4Ewib%!D(
z$t%&4*3>Xdd9C`sWOmNQ@>xArHz$0Ul`V+I;k?!>;%(4d);VxpH9$_$7k9!ExZfq4
zZ}VxJuWj541pjsxi-Vvj18cF({DDApe}IO{>xtv;4bUWJc(`h*lKi5;M?f;zVbYQU
zfi|;Ri$7`6-PPu9DM$}l_am=Al-xabTC;nn@4{nE)s-#3U~@jJwr>-qYw<L^vWW3o
z)qL;X4aqre5Tl!FK3M8CTMe3H8Sd^3>|t>K&e7t?ITe?f#;B2<8uS)j-x$mOhA?m6
zQ&I25j_7bIX{6tZoF<&}OHk9p9|6G<uyip*Y+f*x7F>afx>mat#XwJqFLN8P%ov>q
zCetzjl?UksuyRgLj#dx@Ozv$Wf$JQ3eN*OHb8%Z}XtXUR*oLf8`N$az$;limLU3OT
zcs94g!sX|Y73E#r-ik%#rML)%9hKwrE-qp9RI?yT`H`4NsS*$r<<=>(T&A6>DI=t^
zyOv(wI{y&``UqEf@6WI8wq-cbPyKTQvUte3a%??u-xVxeQ<H1sHTAu%x;k2Ix_PQy
zgVvIy!+M^kBBQb8vkw&flijzvxcKZse_6~0^76tNd50*g@@235SIvVH?hBUb>)74I
z3zW^HYL%h9y#*GqdB@I+G69iX4lBa&zi6J0e!u>3A+mS2r%<JQX>>rr0dRsQfHI|@
zRj)#AuZLI{&ERJt3&`(%suq?0Aq>sPZQA}o_zWeW1I2mP@*#~FqS-pVg^G?Y1c=b;
z!zB5#u&|i6e}h$6<ue|7$NZu)F)J&pi-zE?#(qmOBsh4?AHo_qoT1o|Z+h>Kt2Cn~
z?q<}mN!r6@wX0-~y>4#unlceYYX3obMs*@2HGL3z`#vWt>zlJ7dmXR!iUYZQin{ty
zxyIG=VasbzteM1{=YpH%KM+X#KZF$Iz4N2)X<6?IPOa~n>yl{3GjXY&^8&YOLgx;x
zok2D~Wt^+Kshz8+54xD^4DehmEiIXXA_U<x-<TKN^gQ3C7PIoWu&Fl62>rVFH8qsN
zZPf}WH81kEUEs$SKBB=03Btp_AR&I`{}mPWZ{GYe68tsCzd~NZrGt8Pb>&vl4oD-F
zcmXe`??u*WMds_r$dS8wbVST}J#U%THVpOj^!#x&Du99EiBLwKP>R%X$%N-u_q>`^
zeDuld<HQvKpJ!rn@6&BEsGE{3;7LbEPd_Drw~=W)9`el>sC6GOYh>-dp{e-n`jdM`
z1O;Cw7}-cA&%Y+gkG`Ffo^@;vdt<$j_3h2cq8Pbcqt5z1*Bu?-RZkf(t~D??Se>Px
zq;2C5DFoPFsxBXnPfoz+r%qcP{j3AkvG2Fgj_3x2)A(f!2$eB*M)Hn(Dy?(}Q_RjF
z@%Ytzu8j3otg$V-=VIU8h2EzA1i5I%dfWv-?=YIo{98N;eC{6D_*NGwX9&Eb_vM<!
zrPNRf2yrof?Bd4use`85PM(e<&FXy~Gh(=|-|#;q<x0k+XfQ=~LzOr7Pi%hm@8~FZ
znB?eQG@%q*G9X8Oo@(--93Ee}{;k>xzK&?;P$cmbu+0dww`Yk}U1NM+?%mUEJ5bj`
z(mPmP{n2aioe5lETQ*>^)YyHw7T8O$aj!|?KQ|vo*KdF(8L+H0*xTk<zEB6od$^9(
zczV&*p4ZZHka1oYR<ZK16e&aHnHCnASk8Gsb~yIj6)gE}l_#E`8+183tWu>5wLf&9
z@_l+@kn@_=(cnv8b~R{Q&W+Q(8}Qm+tcP`<WonUN)ZAx)15=ur+b@ZarVD*Qs;uX5
zEfTAbzFR;(bUOlp<q*=*1URYV&F5Qij_HQf42@hej=$Cl#L_PLX)7kSY|{U=(r!Nz
z^D~EMkvSAJ7AAFf8$ej%f)YEkF<8wq@>AOok!T_z2=bM5Uj?K9+mFwk!8gi<sHhtr
zG;rI=E2?K&U_cuWh*LNPb#*ETsW&GpkZQLQ6~gqjJKVF4jg7+U>Ioj0pyWsuf?SJp
zRYh742Z7#~G83-bscH<oh?wS`e`*2Hv8C`l@JvBH%Q}CoW#V25E;S{)8iyh56D&`z
zov9BO`Ir2=9r9m$XO)GNX~Q1^n98@E>jasBEX>UdYHO7dVwsM10ci=>qI<dk9LAUm
zUA*gdgOOki$^sw;%+Jp&@klc^0*DqnEY<otxuUvyqAbNA?x)p`xlTIw5f#R54!&!8
zo~xe7!u+W#g{t!GM94uOdEu4lwTSlpJWAnh#ESCz&T!iek>hH-ZvIG*q;mR?AD<<Y
z+rD92x_|w-gE?OO?5g{DU)>QRQ?t4)qtv5gLc22GNvagTOV4b=QF=S1hKm#^#UD2#
z@31`YvXt%_g$!Mdf3%O`Pp_tQXi9z9g}-ufJd3G6qbph#4DXedKYC4$*^#EL>IHof
zGAIqEY{*$an5#BjSb1hn^*Zq4x$3~1Tse04#ZOK7L<@3hyZQ!hs97}Nml5C++Z<C-
zAMCi+i!@`1CqTVmXnvr0qi0h!NT}aV6^c>3vPB)8xNr};Z|?2nx;zAVESem@BRtH{
zX7ucRdv3u`%J6+%ee&%=k&Qhjzk%*i+DpmXu&ZXgGQ^_OhL(H$D;?9^gc?l4^0zt}
zB;KuyM=Nd5cz{rn)1eo`PuNyGY8IN5)~6#AItYO8_FwL1gD2|n$}+(&u@&)7H!o1O
z&rX)T66&n&f+wH%8HsY!A06|_y{)aScM6-eh1`4w`P_;^YE*YXcN=mOy3fNXv3=P3
zTQ<;%jhNJ<1{95Yrg-QTZ=2jnvqysWZRg6lAZ2{=l6tkm9_0B@uNcJTHlWSsacj#R
zn^uz59lAZHg-ryA*y<WUE}n-W#AVPA92`k?Hf?DFb}K3Zt={gNth$_0ubQDl<;w~k
zCP9JmbR&v)Q_~z(#CaxK%db(=>N>0&j0jrVcBs5A$0V?>0~i-&0C$ws+LdI0cY`b`
zBeS_TtGKKAe1dTQ!oiQyG-yRe4`3|CI(AN50A|Oh;f&)rt+$YUE#XIKS3KyrlFDbn
zm%q~ma-79j;+E1O)UmtVO_YD)wd>V(an{XHzJKIpr8K`uHwli%89MsR9z>hKEvfU*
zvjp@?huW>1c@7w1q~hd^e=qC3TMzmW=EJkGl2HSgpINw1S>2_cc#0#WIDJu$wfM0e
zEhkXuoj%UWtoQk}Ke}v(v&+l-1UYt-vMEgk!Xr#p_Ay8=Q;%(^P1tne?DATQu_Z^9
zAii-K5eGYJkLwq6)vGuE<{10GH|dwaJ)xOW&3u70wN_w+dxKB7a{-x8C|M_S_|mn%
z#$ji~ZlWXEuI&0s>)KFjXjwDWa!jU8_|~-Pvz!0*(<S4T@n~HBvU`%f%5qLuw?s9f
z=@QvW#rg6>G$=o=$iSSJhdI^y){jW@VJLQTG1u|o*=y|0`}e!KGi`2dwMQqCSHAIP
z*W<%6Nt)8k5{Zsa@vY*hB9U*A6yC`N7bEGlS21BfbQ|Z44?w(yykc+`M^U#L)Z<@d
zns!E2;^gyaF+!TJ8R*?sWn(EU?noPtntX~~DqS{==kFeTOsovHMk9ShXP~|ZS_Tc*
zgX!`e>T-nqOXzYJVpNFkod#L(%Y|pYYHt3p9`F+!d|aO>(;d9I!?{*xG~|buBOPLK
zHu2OxS<P3c--k5dj^2NNz95&Xw}9+UpFGxTj*g`t*<Oqu)=dl|)x@J?H<m-k{b;(Y
zUV||N=I`fu;7QM<tQzoUG?c%_o6D*6c6bsvjLdHxMm@%-W!+<W-*0KxJVr&To5`Te
zsjM2+vvkdLgS;+$c5R^dE-|+^*9+4a0;u4Q&ML+kz_XMnhtYeDkT57lva(YC@;1J%
z7^R~5Zu-T252tq){GH}D#QVAt{hjdcTeR~?pUa)1w9}fmc&qJ1&XL3Bub)5SA2!|P
zvG21EWjRUHTK9;zKo8o|W+Y0sRw{l0rl-)K`t>JjT`>D5K2JAsOpBL7OEa8bauKEn
z9!`h|T(lUQch9Lz8DFNw(b9~_dqeTb4WG9`Ph~|W?`{IPB3-B3?UJ49cJ!>D4_tg?
zd~U$$iXUlJvB%rIPKwP5?iO7qh&1HWJ&v{S$8k>N!%QHu*(<HLGRkob7-y;TQEf-R
zXj~n0Z3-fn%jad1FY3m(?=<(s$>kJo1i}3C^+#^~ZfqcS-GJxoNkqQDuG<%&4RlzN
zUnQDCm$@efezu=}2K;yG<~x`sxOOPCzju;*r+zV)ZBN7B2Dy^v0<31))u5HV$J;Ny
z@Lz5xzn(l1(*&2T`(CiuxLrs>pUl3dc{$?*oV(b)4Z(Z&4nY4guj?1{(>5x?6Z<+k
zh0TVOM9qnD;buq};NbL61=3j2%KctD=I4^1+vxWDe}ta?5#IhhJUq<iXlJ>NrFi-F
z*21PG@@I9G*$Qo2*6u9V{=r_J9+aMxnLwwgsjy*$yrzyw+|CXg)QR-!iR<)m39`bO
z8nIDjLudcTKf}o1r=(%ze}oT&VF;viJA8kGh&UCKDZ4qpu&@WHN$D~A8xUHe$+Zx_
z|Mqq8?gv0W-vvBAU6N%dseM@AeyvG7;5n4k`hLz<w5(z3>W?)Q9_c4;+@i}^>W@q-
z{KS7b(&iPV;<XN;vQueA7d$Y<L1L7Wg`p*Yw7xZxlZcbC*BNF>*>Aep1ChaZ;jBEm
zDT7f*c<Jovo_&uwcw8<Cit7bcH3o|dz_~IA_ED;8N;$FQ`>Ho<A8GDvAj|4#xH?(7
z5Bn>M%%SPkGv)ReGMb6Fw5O+hd`yA|ZTIhp3=-}OJk<o7Z+Jm@NQdn2x4XoTRza?n
z7D-+Uiza2lIi~X>M#O~8iY}AW)vq_`$QxM?LZ3>p*lV62K+10`kNTZ`o;+$ES&8zw
z4^%#jScYYPwei$YC1O@57<SYHH15K2k823cFHIV?WslE1OIF6+R9c^W&ka3?aRg+T
z_o(-00hBK0W-|@Zs^(JBrMSS4zlA4wqw1Oog=?=~5QheZ_ZZ~^lgE=Jt=q82L#fll
z8~;VrqE22%C4CrCimow16R@VHBM%Xf+#KEQABAu(SNlVr2vQ|c%Wq_AYQQ!Rb@?^d
zuF+F+JK0UlEt6{)^eaY;eJG%Fr~4fnXxbLLdT4MIvXSZx+o+~ZtaMEH{LQY(vo92S
z5IJ_fg}5lvO-6Qn1W9M{@OapZeBOMxym~%i#?I&}Ja^<@dvP}?=cyT-Npe|xVPS2p
zsFSwV{{9BOt6f}ETbtEugUEY*yI<|Z54`UIy2g=w<#|*qrR3h^dfO4;><$fB;*t0q
z|8SGOo=6{8#AnBl<^$!Ayz@DVe3nV=?dZVA5}&~!-SC0Nr%#ZftQ3iCEZ3m8o<iGv
zo?hN(m!Dh0_MZ_x2u$uV&LUoepq=q_^6c-jhitqaeAM6iaOTUcI<vLTLu>rb8c?6^
zXIUk0-<CtbSj!R+LZ2S$B+Xf`?sTPvPMpBKsfiIC!X@-qX4wt-{R4ZA4R~g%-M|c9
zW8IrLtiQ^(U*UrGT5m+fL=>b&*rqsUG#-9aK>)#CfJZ~ezIse6w<zA?^~5)*mW@uk
zafb;JiUhT$iVpId6TeH7VtxmZ3chhzYn2)A2SrB8LnMOyaM`zqlSRcN(=wZm7c<T~
zhe+JTQ25G^7hGgx@$m49jhQ-6G%5hU;4s*!r2*<c;@WNl4j#N6wP2>ww@iAPh;l*<
z9?Zt(hv_^Cv$zql6{Nffp6)fveD_?%dj9B@^1{ddqW&LMpMt0eg5~HP6K*`8l)kBj
zq^kpS)fHbU)ZJQr6B<fO!}C*Y2zIvS(!BKbN!R>v#DU^-a(r9}he69W*?KZftS;bd
z+pDZ~MQS%$649Rg&vF+0PVCBxKB}Q@b214Gq!dX%&+VxgSi^;8qm_0V;Pwjy#Qj>l
zF!B%`O%#stCF%RJ<IW|`cg~HA0xIg6ji6fB5ve^pWO0pnNy=VpV``RRe{cnei;sN)
zOKk$%2PAU=w#o=SB)R59d1_bdDt4q#4mde@-eq>Wr1XAbiG{k~`~RE>#ur-8mAU|C
zXWZyocXO*vAQynokt8v*^3`enP<QB#yxp1S7CB&;8BsNAXphoX0P_DutAa^&W}~l<
zAFA@cpr$4y|Mt4fr{|@@$B!I{O^CPZr2aIt2Z?gEGh1?4!XB-2b9=8Chk=pnSLI`<
z&T_SDd}Uhdf})}h2>M5g`9)qd<LS;{uuo&Jd_Hk*u6*M6Te|Ek2OV+jwuc2?`4_x$
zzi&-1UQH)-4@u)aE8!oAv3|ZNUCH`ZBcv>5;zOBw!Y3|{7cmM!em0aGj2#O2ZwNt)
z;T18(_e80ZjhAO-I{E}ekJA`IOWwmrm;|`OQ;#hztyg@2URL2D(}tRX0oju4h5~!G
zn4{wdcJ^9oJyy8yde}dq(2v(6DLLz$9Cc?77a2)LF9}nbZ&4P^%p}akFkO9n-r}S3
zfUYJ7FKf%aB)48ijt0diC+A+D%qy1-beEVgxq5wH0;ImRblU9Uzmmf}cg9(@h9{ZR
znBHwK?A7K!#~$Ccv}LtJ1qS*O<*a0O3fGqi4$T@Zdhi2_F0mddd3lr5+qA7rd626M
z3O->es;F=fbW7m=`?KkrWJX2?vFTlIUfzh-n!{*>0t@;-fR)Hs$M+{bhLHZVSH8DW
zkxhL5ZegBShxJ>UKB5Q?RWW_*K$DYNW*hc_Mvydc*Y}S+n!rGiE>g!k8`#CxZ7=pN
zxiHBrBJW4DZ!<e>D_1T`_9NASw@0BMvB<J}{Mwt^F#}%j!0+Ncc@gQzDsu>Pm$e7a
zG3N@~n%$`lpJjc{_f<=+{@Qi6>=;b2kkt%Ph{kD2d^@^;hd#hE>et`YqG4oIeYs1l
z(NjW_Fb4zIUR9Qy&xh*0U^PRtb{Ro%%<8|J_{q_`56@`Vp3GGxBbrjKh=pQcr4^-G
zt`OH(40dzd`|Yb{t%%N&o2?p#j-A0hO9|~im&e}~)2j*?@O7u$j|xOTVi^B{5-3V#
z-1;_AW!DGEK3~fefn2|RpBsF~7gT<CP9}L7HZFJUYGqE#?B@_EE1Oea;;7+xLJxdi
z#DUL4lC^{DIbtj{1>FF(iZwV?KNbzt;dM7P>aKFhi~I0;o#WiN$3EVT@4%-^89Ajo
zU5b}K3UrJ2D4I*Z_faTJ=2s3y_^YCr5dI={rjiuP5-K@@pOFUDNlIr=A4gZ%dm6tn
zQ#>=CcXGt3^fA*&YElY_S8PD%Wn6$Nzu!ODK9NS4oSEw&-L-xH{xEyjpDk^zFt($E
zOnV`Ck8N~GO!#HXD?0~mLu{w%$l>pmhiRakksk9932DVMgP$zQ-ekguXzms1=qx*m
z;!n6V&$fXu3Kd%uG<-bESfHc}aemZz#EdG=bcHkQrAN2-y9YV`VSKW>vL-i=Vgcp%
zo4TW?qr{NoPN((zh_@(3?%jDq@>@y~aoMDDrzSfiEfF3h(CKw6k*^i+IhdF-L^jNY
zp?~*){vV|9O9;YhOBj55{<|u}|9V>WldrOVqEnRy>7GB285Ggr+`&4*d*Dt?E3b%{
zI5+0WP3x&noR2&|eqUHazPeKEk8X2Bj7B2)LWwFwa!ovk4HNOI5v~zFegB%K_X(Zq
zA1eUZZ_-G<9diLR8=Li*Az?u|2|=bsR%N-oDl3H@MDvfRSCxYGMU@Hx2O6u~Hl`VY
zq#Hlg9T$ah#9iZ1u%FTxmt<aQTgBAw^3)!MfUc!o?F{|zn=~CcQbuYC&@hVEJB3-#
z5s^Ya>l?vmKkzWBomCQ%Zg=1jI(HM5zV4b4_R>~q-X0JxA`GTWiI5tu>>%6tSpaTH
z6os_VJc*_qt?R>k6cge))AmXd)BgML0N||kZxMc}hr*{bc4AN}WB-l~w?Y|vw`NJT
z_6XfM6vc)bmwbyLL9FsNadGeMbEa*nG*x{q*A8o5O{s_08_cV^8tvdfs$NVHnCDx$
zXW?p-{QH#b>#!XMA&LJ7$X&&F0iPh34wBhBwBzPs2`ox3Dr_xH3z_S5co!PRJ7-~U
zp^8}R2rjZsbwlZ;_SxBqY1{J-2?|lwi4F{$Jvc822oSF{+464W;u|8}whaj}^1U4W
zBQ!L5kIy4&Iu8uMWoNv}G|Jwcbkb=}+sIh-d?BJ^*>Jur9Zt|j!o7gv*irRfsebCb
zcAYX08EWz!y7Bf&TYE;tVh{DV{Nk~JC!BtC2@wX75Myo?n7=~P|8o`p^UW_KN#YNj
zoHy%68ZL!(|0oe|1&Kef#biZeP_qccHI8teNu7NpQjk*mD?|Eo?Fyd4e_<0C($XhL
zN4t(IiC62T1PrIB0)#JtD>RVy!^TDz6F$UsBSrL`F;rGn_3E{9@Wx?`pkf^CGg+=(
zm~y^q#Zj)izJ>Rn*@@DdxnX7%=pgyZF{qe$O2nFm+&NBotdxeUJMAY-3>+c*`}^Ob
z6LA_av9Jo&00#h_t~jcHzebF)eF0s#3}ry)J-p-R&!12ZQ*KGIfBYSj1H$Rxede;j
zzRii!1OsF-L~{6lV)yk)2=)GL4DxK#XTc#MZ{DD%a<bt0esP-wjOo#oM@qrVMR9-;
zfjPt=a!FKFlzVb?RFauF%JJc7M#0sU%IiFua}-Fi0emt--yj?K7QtD7(Z<xr&LehA
z9GucR40L^JZtjRWD@_@0?!?KtIpIAsK4Nwjtu35skF<M6CHs_DAz|>jVPSMMRBFGB
zu;pD`IIk`*3*0wNdhDBN%q<+!Q{k4=dGU&8iygww54GyINVc>aO$R%hOR@@XG2es-
zWu;(o%703b${|QikoDsyxF0pzd;J3b44`H`ecIDSe+)uwvR(V;gZqi*|9i;)Un?X2
zhoE`UNp+D&k+r2IU4X|t_1eF93ajSCOhC!}ZC0Hzl90a$8E-l7_3Oah|4yQn6es$=
zZBgwX9jU_X^%AYf5)klXqM?<E3}a#KsO1oR#N%X8T{t_V`-F_5Xs4ivVYb|??s&P2
z+jua7MAMd*=8c6CU}X4VqSb3>7f8|R@*<30IKE)#<Scf7i-c5oPUvySOdbU7X7tYN
zxR~v{{6Yi=My@tF)HAm!_`K%M?eo-YYH0iQ-eZB9k0r@ob>(9zJ7qyrp;&h`=wDpb
zpF04EKPm9P`ek;vl=KRV|F**ZiVDy10zL&m*?ZRYW)yaafNof|ajv|FIOo(9yP}a1
zzmahsl^yGKc$n6QpyY*xrouL#uN!$)l)Eq%cz32JBV%JxY<zqj>)Q&npi~B0T2X}L
zwJmN2hKP$WmkX+})7DmjqO!6)0BhUZ9}|@0MMAk&6j9<6?ad!U4b5Q1DFer4u0_#U
zyC|}YQX13vIy&6Fpl$gNv3Pqj)St=89%uH&HIu4;+u>S0C;vKj%j6L3<Vh?r4J545
z2?<=euki>8WlxJr;*IrAXWzEltEo}-;;J+W2@5L|I6V#DZr@vhwWUz`PG&0?-ckhR
z4L?>yu#l3G1^W~mpp2tAo^MKoMr!H@hW{94A~&x)8PN8?nZkGNwoB(Pv-FVr9Tx&l
zot7!#nT+M-qXsfdO6Y#2d}#O=kK!MlIp00Xuj&kbMu0LcCSl3YhxEZ@K|o24=WEED
znV5q3o3T$v|9g(*Tb%eSZoQO^)(E@B`IKFsn_aYOXCrg%;~OM|T$%3VJ+&$M{|1ey
z=}BVKR&JU*V9%=SU}uIhS;==ym(S^H{dc)(83XR!;Y`<Rx!GnpMWUF|CKuQRGc!pJ
z-Q4{3(Mb!-lffj0+edLh9Qz0Fa@G$Vf~Q6><1uB9WR@JwZA#JQ%bP4R=OZM76wVBy
zvy{9$UoI&*T5*t@^e9?*;lv&lD^Cdt2n%b;Hq&}b>*o~pG6mYbaNM+-IpLwT9?JJ!
zCXpQA6K2+{-kS_8yTm)8RoQ!Jh$vX;V?u0b&^e=Kw%#&@tHS(!p#HlQ=9e@XamP-g
zvsjM6-~aXtG^!Nsf^ksI9mzi4p<?<m)LJq~_VZf59W^E{nglc2n9{-_I&3m5g;9^Z
zhXD>^pte+tjeiS^1tY}oWhW+9@3(y@3Av+KO42w5x#tLj<cvfHZJnjzW)?cf!5=LI
zXj}Ke4F0f_G;OD!d9HNWOIwPA+<70I9N*}DWbcT#9;xp59JxI50$UJ8LoYm*uHM+r
z!CnQQJf}xvO}-M1ZE{RbI0cS_&r^O1MW=SyzT{OE>0fEnzqkdyxFUa?m<gGD_R698
z`^y(1{sKdC_*DPs$?bIQq+sCTr-A$yslc;SsFMn4+=Xn@<-{GU6xkFLsp_~pld{h^
z|Ipco_j@VK#>XVIWaZ^}m@2vd<zyIbYz-5;9aM=6W75Lk(V_3^7ZDPkbK1v5&QK<>
zTu@zI=j55XB8sinxxp489GVsNDe&O7k&yq$YjSSfVk=pIGnmCbdWtzi%gV`Ucv5T0
zcnT*ii^R1qK6_(O;om;$--iKfxZo#i>*MZ373xCBB}N|vq8gy0RG%l33Vr`6_<z3z
zzovu)J!Ck54B_>1;1&A8?FR~q`v406CHlYs|FO}&ACf3z7pFmk3uhv@6gj;LCJrcj
zTOxLqC|kP*c8kVmtm40Xi~=mGr`+$LJhfJGk-t7)AHPMJU;+{b#;P6DYCf!fY`H)^
zv%KCqMK^eyiwHqyXO5|<hLKbkYM4-EC8Zn|Dq31ZIx>lW_Duiop{}B%0zNhH8ihb?
z*h~^<HC6vJU-+Nd(|?_fUyM<|a=GrVqgu^X1w;^mWC7^5NWZ(g8&C_A1)Q5B3`9xX
zzwhN5d>|WT5F!K*3mHww`fM^J)%J>O(YyCF;;y{y6_^-u#R%YyHR*|W`u9gLaFd6W
zVE9n-6aGb<tG7o`Qc?N2C-VjH3I;4x_GoXuZuR}o^yYu%DcHiIe|5k)yY+-kQ{(>d
z=l4;4?>n1gs^OrS$y34)NzKUg?a!xd8-Le#_Rl-1isBo7gQckEN=2~b6sLjLSeEuO
zy@M<~GBST;M7H=9d?sM2Rr1fe`G38m{|q_xeDFiAYYu=$nW&hUf{o3|)<-3C>R0~1
zlqJ4EL)0-bh(zgkcne#zwu%gyuwE0q#}-1If#jk>RXvJ=dBpOQ(?Y7s>i9Mk^{HGW
z@^}ubylUClxT*uXifyPf)b9!>?J|2!#vH_~(Q}6+GZOr%tR)zDudTQId-({gP##U_
zKM~Aa4qQ)v)-<@Ox3zg0QZ}5ab{v^xK3`Zi#2(uOHZxIZ-YjvY(THa)liV3({48TO
zQE!WY3gZkT#kqq9CsRKsn)Os3GuC$+q*-A(WC_C^%0k7@8`Ze*uzLw@lv0^1n1y#@
zl>8K)c^br|968uh-eSm<->_QPxFfrz=P&+UUPb4PXs_tF1&D_!R#cnaEix=@v_G1%
zbc3FeF&`M*;PJRF!J_!j$|Yd?CJTQ0)Hif-oATp_ARtzkt6ps^5145LeE&`pVk^hb
z#3a}oL68k-0CgbJHvNWu0OdC$6z2s2+tojQJ3Y|T@$;uzw>>$7nI7N<pexT$x*ipl
za?CHRvum!}u`s(CJ@9BW_f{>obmHsvH3fzlK4rH<N!%~?{B-i8gW5?@aWQ10#?aV?
z^aqy9d{+&5{2bI9spW!cEMz%?Pv^MgeCzy9`)oDp+*$`J!Nt1%5V!?FRYl`o3=!Xo
zf$S@ckgv))e?VW&Bab_vEBi#y#2go%H&T#flI#=yWac!}N{XgqNc(iiPhiDJ3ko=o
zi}11bt>8pmyU22Kpym-!@M17obI{i)AxjS>!x6pZD-)Iais5@V==K>M#kFD~lXJjK
z&>!MV=WW$%tBcVCv+CRW@%=8rIW39}`tXJ?=^WxjVSe`WPlWUx%)GIlNF0n~`n)xd
z0j0~@cS_*X`G%r`b^)ls1;(9#f&Gn>SJ81p>vU)QZLUXA>?!U`Ut(za)(Nh@FB(t{
zI1R31q|f#dW_VChQu_JWyw8$JjstiLNK-T5f|Zn04<$=WHY603;wLn;waFEbAPS!?
z8UMwQ=4GMWQo;JklE*inrZ<@h38u9m9-fd5lyhg&wVOP0skl*~Up#rD1xT)40`_|L
zt(B7#oiFdde+T}l4AM0tz%Bf(za}pJdX2N9z5OHje&GARh$jDcoCy6D1}vYbsE@95
z2Al;o%&>ca%i@$&_HWyxeb^{mMs{}P7Cx5F!vj>61$rJH_i;y{F1$9Z;zxRQ`i+x}
zQ$5zv(<OI?T*yB&0LCP8(j#>wJ}6T!^Y9~E+W71PK40*4B^8DuYC5l%o`OwIWw1OA
z!MIqD$Y;EKiz4%;tURXH?Kq(=nYu_(2&3o8OWje)McSaRHGZ_ahH$o2!1}>jz%CdM
zg!^82?|+k(-cdW3BMSMX=~EZb?M63b5LrIkI;moJ%2zw-RA4SxpylbcoLe>?M$^_%
zmx_EySH17=Y>0!e!D}Q6&xOi$>(1RS%t&Y9{bq}9$To=lqc3XxmV<@sSN&JYgcccI
zj1g|~NFN}H2^@5MG1Dv6v-^Ihhsz2pg+(FliHdr##nlKe1#8wk#4Wtymt%4xUorH0
zSd;mH{AY<)2vnErfyE|}=3tW*9}^=lCG~pAWkrSjt8;K{_Mc_a<m{~2@Akn#nP$;7
z86+&skjHbDofr?sEGV1E$CEcS)}x@@M(~ITA7B5)B{52)jk4d3P4k)9NO9EZ0#IL&
zFS+fcO0I^jfQgIJKt2M1q9s592FU@GyvgNdS-?I`Nn879Snm`5pTYirKga(BrIlZ;
z3L5tyq}#!Lu8fPrzWSM8S}J3;v$Hd?*x&%rR>NAhyGDmOSES3E&qFp4Iz!2%)%Oi+
zYiniORc7xlc4A!!XumkZ5~g?OrT?m;XOJs@TJjTcbJ1!hnJGFvyJ@~bHYZOq%>8nO
z|Lu>#emM8ndrvF)`FZ=-c1<Lf3+KP=B?rPBRyg<1Fi4Mn{vXE9GaSyZZTHcMG83XR
zS`g8rGdht(kBB~q=snsnYV=5u=)vej@4ffvy)(MeyU}IOe;<1v@3Y_i?0r1n?)&q7
zueGjqUFZ2bb<`)0N1;($hXkK&bDxO%q(>?ejG?La!V?AVdNX*S&H?4&d^0Pua&?Un
zb0w{)?hoMsfxlqKFC)~$HL(<<S(*ep7fNg6hai7Vx3&Dv{vytVlQ@S2tC|V9yn65`
zlAm&SSSo(p2XsL!b?Hj%uZgdpJ`rMJFmfX|7wg2Igxl2EbQ$w1T-l99lN%E}Gw;%b
zeoB1nzC9%HzQ%FwD7IzGF)AvF^xf=0skO`8UNwH2DsxM*amnQ(*^$oJuZ4)%D{27~
z!I=g)t+#|%_(6DEg*oBXWf~6!jR)sZzqU4UY*Lck0sYeC<YcbG5L%CRx^jDM<LBT&
zK^UhL`^R&=$NX&-*bzbj3vGFQa>9>}G|odQofZiJrR1BwB@ObK&DGd1YzI?981L9{
zGS1K-{i!xzsCNhw`S9R7%mT-mPJN2Ls8QYVvi&DTF9y?!ib+qt5;`3~S^91jFh%&R
zvL8*L%Kh`__06EAR94rBn3&j>L+wRL2@hIBonVkyON$2pW&ip`<Cvw~#PKXTE<q01
z)E?QalOK<`3lAg7!ztYQ{X5aUA+LD^P37qhNI<%I@MbS|C%uqT&;vHqr0l)t%{tQ=
z{s2mGgj%uQqn4%LgBo0WsO#TUp&N+DRCuc(u%7S<-j_~2@1n|6Eds5IPARXQShNCc
zAgHYmkiDGvRST#61uj+?PMQo%>(acv#!0ot?RXR1)<!vT352SgPh}rmzg1Zy#6Yiu
z5<^VqzOm`{DV-|aJ+11OmaZ!#r$=?8SzzfA^QcWFL_uN!GwU+-+w@Z_$>N538J|!t
z{e;eCCiTJ5Ul91zO*;VMT6Cq%>(kaM5q!#JRzfWY_u4fl2biMqb%X$b)&f-%VB+?u
z*@LY4YVEd(UJVU6JVz^edhL5E3SP{t?6aqNzau`M*`efxsGyxc*};UA?|kkj2Mu%f
zc$ELMrCRd8mg-3d9w<4L2$FDeik`<9cp?IjbkNZ!jV}qfmVV}u*jbq*4ue2vSE6%c
zJR6i9Oc^{!uY28f)F_tn?rjgBS161qAxhF?7#bps)c5mqX{9UQhLe3*{-Ds9CRT9T
zd)@_<?_`Yk-OIyUQW!Ib*;<2OJ}sz2#kY6fH(B~NwyxC&dSD?Krn<}0!kjvCq-u1r
zn;L8cEBMtwzqTWevcSj4Vwcz7z~Gd2ij?b=d+q{xX-=7=C1*qAR(-+IqK4=soiHQl
zh=`pdc-js*oKJ?udW_G<sIGqvOsDN|wC~G;>@q5d1V_v+4}Cm$$>ZJr?VxPj@2V`?
z@Z(3a%5g}@X_lwgEe}s&eQs(&lnCxrjJv}7#4P0NFs&*)9oW6fD^cI3*LcP$3{d{=
z*qyw~nJ3^B*h?s_VVO;hxD+(8=VEN38}n{gxZAaCx&E($FYsV+>-62VcaL+j-MV{V
z!*q((2IV3A?X!M^_|1alYc+C)kK<y&hK>|_oh$;U{yG+u-QZUn+v*ZB$*Lo2bUGQh
zDwmRdGPsMgTReRly@`pSUMxb~{NO#Gl6_3KYE<L^8Ag3~(o=FW+2X_+I3E8XB)Y#h
zKC{HkFf?vIoc{KUxs`<HfMFor%J-+{NUpa!knd9_kEIf{7a{DYc65E#qm(O#nSMK4
zdsMx8TJx{Tsxb^1PC}r{3}pSZ{0em9bjn2YuZO?oJ-}rPwralEr@&HJ&Kb~^Z1j#c
zx%HPZl4t;t4|&n|k#?D*X#LA`JbN;vI<08?DB|EA2qsvF5{s@0{XCvXa5FQhNAR>~
z#)i{);)1+*_onN?gtjTbf_I}vfc=M8Bi`>-y9o74mMbj=qPKF=OTC*@vBLSVCy80=
z_?AZ@2j7ice;o;_&Fs3KwVzyTu^oPQc|1V?f;jsSJ4=V6@YD;DY9i{h#vNiTO%)cW
z)w#hxO@gcHJl1F~KRuwv{s8WEpDjC9Yp46DuhG-baExaRz3P2+DpTTKu!&(Ne=i?&
zMpP({Xq)M~q77>G0iG&&UTxoEmBfTp+S|xbp<pko%DGyM+0HyMM$WjT?ALBFBQbpZ
z<jwbjyd^g!G(~T0&t<o5$3W=Hy}tB7!v}rN8WQH39@8G4P!79k@YcrA9j^29kzh&;
zGQS(Tzf~B)3ouM>Ng;zt(++<#$zNocyVV2xc{cdnyvt1$z-1mbN-2SdnyoRD3oM2@
zrOp%2ki#oSzj6X*q8fRe{FDdOG)BVWlxP=!?jf<T*ARK!mYTRp$ky+-l6grGS8u;~
z7bQHswQGhzU%m;VNF1M^TGAik2?BT{&W4A*kKbMEuM2mLB-gc^NVa*`$iOB7c}`M0
zVnnP5bp;Zls6&pJ;qbgBF|~88t6{7{>4mqccZ>U<66x{opA!kJtx#(jJe6L~l777j
zV>mpzLWCa4iT;JQkf69Ipa{9<6P4}rZ_<9<To3llL3mZ}8lj;_pB@$?&QCG{J&$-6
zZ7q47hCXFn_KkaBF4Q{ap)VA+Ww5t~FD?O;J1AR+tW?(00-_TwOot47M_L<g(|@@!
z8)WEH6=PLD_v(#YdSL~HwyoQJ3VWnJnu}Io7N~}$b^k}VSVrs=0vR)KZnRURz`7io
z?%8B7i_h(DPU_!=Eyts~6FL={Nt?$K8fLj#?J~vFwBpD>4v^@+5F+~WrD=@v;z$~n
zvZ6Zg0F?E<^5$4Nt)GgYrE>mYH=v_=BKJ`IS8M}y3PEbR70D8)Fc}7jY7?fd&Ji-p
zhtW}#9M#q_(g)Egi)@aC^2WX}Egc>(lzWEFYg#5wfwg#ZJ@vM$VExm^Pg2RIo4|Vq
z%w0@Wh1ZakI6dWszijLoqBN?Wz=`q8_~!PN?pn%hC)4N8q*Ax~xq2iDz`aBL4K}YX
z-#>y|m4BXo`GNfF7R3S+U~rsS*VCv#4F|7h&XkoM1R_%;%agvfnV*Ch*1BM{DB6DB
zzF=TTAC5m^HcA;7y5y}4y0=)p=0wxlO7CW*1ZMSlbtRSf%P^rh%(ER+b3yHx=)FBR
z=-ZZWGl@H}SLSt~;6Uy0OyeYJCLewx;(j@+f4%<Ro8>3(0b}Fy?*mRo0v56i&E8)X
zZ{U(?-Om&_q<{m7xPSvrQR(d3h+ja!0UZ)I6ERz?$(6!DCc^Q`n|puNW%t>Y$iRua
zWC+gQuP3`-T`Xx7UIU{JZn~d{n8roM@QZ{CJ4>{Q@e^YKoE)4$j9=U<*7lJ3F6PT3
zKTMq3g<K~6qgqNZSfNH0&hR+HO9tRRgLm`dW08dh@;{s{Ran^(-w1S=d5b)1L?g1w
z)M;@gt!l)H1{5f`<~yB>*Ai9EY7b<CYHw=flx1?y6d0PX8Vn0o+9g;e)T782cc2ek
z&X5nw`rGkOFP~Sj6FDWl;51Aw#<i2N1IQw3ls?px2b=M%_-@YmITQGnoxM9gsT~xm
zrK~4j8^g<ME?s-L-~rftCQa`t6FuHq)>8!%%-chpDT<q%1J*Dd*W3xSqh3K87$&Yi
zq*<*6V8Zdn6uK3EW9Ws0M-^xf`O%Gp{1(Va3dTrHbIo4YvJ^fN8|%+`Wh@V+T|_Ce
zT@UP!dmqLzs6ZF?Yv!b_%#+J$I;4eqL@5t7tvlj#>kAt%kD9UeHp<N^z2A6Odn*X%
z;G?pdqtG$ld-mnLnvVW2O$&TXNly1`3lUak)n-|qaSAP1-pi}z;&T4{BIRm)B>vQ2
zrtx@g**#rP#-!n*ebeF6rpjnB8P)pk6?y0)o^odMM?PkvKpg(CUO}RGIcefbX_nbi
z&Qy{S1bUCu;0qqv?i@?#INp!6v;ar6GdA!n=oC&5NpE@XAZ`8bB_oEGY|23J&}C>t
z*9|1N#R^?y7c6Bs!tQ%n9jwoB;ba$=g(3Y>u4Tr`VbC#3xgzkGz}Z)OLc=d^AJX8f
zEwZ!<e`b~%6&&@IC3VfB@f?~uN7Ui)z#?p^q7_I4lBNofXX|@FUvh-iizv<}6JD)s
zy<~=6Fakr5seQ0<8QcWbA5=b#$k!NQGjc&{?2=f$eXY*qCq-tJa;kaSPmFAjGRJ?B
zRkdu3lRpHCz~2)j@ES|0opY)D`$54!CFK9HPw~(Pl#A>pl#oE;=+HoP<piFbD#3(=
zEOd!XL+9$}Tr7a5*rww#ct<n-JUlqanV$Y2WMqZr(MPU1*P9Pez#}JF+4i=#(|dYe
z-E3z?y;hh8{ZQ?TT+@`r=;F<jE;wr-!vA|LN9Df1R0+vDV_SPnf!oITTUc=<$+PdR
zN_1O?6?DH_*%_Ze0}z(pp;wpLTywCjXF=e&stD|;KHq<~d0h(+<^eXYbW1ipo+kz&
zjsr%CFo#}K+-#LcKkmQ?qixWAE-|P4pql1H0A+kEV>l^b@6IgysJnrAfbqp>re#Xt
zThx{4ANU8R4u5}O=6P|NzHI4(Q)?WqryNxwcXG42++FZF@IGm4BV#`8r5haBzKELD
zcca6{%5oX3NNcuZE1y}`%aX$g1BCT}dv?wrxNdbtu`(iR3@vgczwecW#{+-0jm9%F
z1|h}6_LwY;de){STb(J@<*{8P)1-}X!Qf71kym9aR6h{lP>Z<;k*)EHA)fM=!(s}k
zV^ZP(-g$$^u)L+4(Z}=G%VZIHD?&iHhUu}@OuO9su<v6aMwLLEd6H<Qy=$Hbd#J+i
z%@fL7wwF+YULnlD(Sje%ewoB_S40lL9{KIZfIzkQ0f@e7o$yKy=?qiX`!XRen_`J6
z!Hhf|^08iN{d1xd0QmW^sk$#vem%v|&zQgYzOvInEK|LH)imJ}x-Z&`h+j3Q18Fd&
zg!19h!T%nDl#c#bIqG*MCQ@YeJ9C<RAubClBbuQ+4G{4N6Eg+c$lnz;%iw0wGcF4r
zGE}dMvJ2p24*BAHJ0EJNwH2udG%M{o`7I#g)p^;&_Dra<znq1)@P;<?uQ$AsbUL8-
zwpXDm8928LZ_$l_|KL3&Fo~=ok==HsQrJmm&@K6jX$*Z#yuL?%|M=$9L~b&mA62VD
zM@iJN)$>bufR<yJcXn;Q>B7Z!JNU>aeJ#mvx{^vg0?t30A1?Vjb0i$;D-enoCiAD@
z_N{<X*^QOJNZ)kras5Q5rJ)FN*igfs9AZ?xJ;xCxbHhkPg8pTWi^cjbHCjAY9>QA+
z{nNrn;eb}pp5pCIk-=Jp5unRDA_B$?M%wb{8hl~2lTm0G+O~C8U7urR68bQOgCxB*
zzN-aDlF*#i(#+dRV#gn!euZIntv)}?RVvM(U-mV2K8<bVoynC(b|v`M{7BQ@-%?Mq
z0M+#z%eHC_L6EEAln0M}Byo9Gq_7>@%U-sWW(;+%WEcYa6=>;bs4BkVfAAES2Pf|!
zCBxv(#<Ip=)_cw>VvhClx=EJ_ow(aMrNPsI064ERQJq7TsG)S08IbO#rY_q`h%+LI
za{A&MPaOd7MV+G0u@Bxz@iwJ1_d;`jR*C)<u{tvM(o2%@kz44D2mY7URq7dn!+>4!
z>wTf~@yknbP{jRguGhjc>_;<XO8|&#j_n27zcyA~NEF)NpDSM`Kzpt7s|$l0ZX2z&
zAKn&N7i4%Qd1iMC(cZ;BCEvV(XLNo-cgz2;5&pkv?l@WF%fR@vf=6hD?KI>p@sm!*
zaL3L#OPex9db#E0<%_R?D(q}*<4vAt+vpw-+SQ>J^~L&A5T)rnW6JR0V0L!|<%EG_
zvm!Y;xmN;LUbMfM_L((&e(p`m)_X9GU{g{DV?R+YQb=e@jBwUO$>V!<V4MhddS<oQ
z3pzi>pN3taylP#H%uz53@i;JHBi@CFx9E5hr=2KBYW}za!ca(|x9#H<zV5ZY6Zp2v
zzf1sZexZ8znE|)_$^j)O_CxmRqo}W;vssxO%>I`h5DEg@zyu*G1)S1{ZGRzq0hU~1
z2F_eNi-0D^x1-GOChs4?1gCIUF@my>i!4L-?om0?=DT2ua^$D5T2srY>4}Ggfkp7E
z4q8DlN93{VN&8ED2UJC#y?qiGM|`-J7dOiFxQbBX&K+mzW|oFkA<$B((X_#ldp9(6
zpwsbtwS1Q%t&k-7-uW09=WcxOY?7@@#_?ezJ-JpstY_s19i}M0K^4`jJdp&Tq`aZ^
zWj0<pzXDa6%mT*gBeEf!8GP_tbqgS-^_UAe;l*VOpRlALuDT4-w>?q_u1AH3i@N)1
zCyjUqQjT_>xC{DQiH1;|DU77%;Cjfpz#MIiGdoJj*^{nU@w^E9LyAQ_Xg!fok)UZ0
zGY01??0Xr&zI8kE%<)B$%yk8Z;W@t?IM61A);BraLQBJK@<OGzdl3(5ozvCtVHHWj
z6*9CTzSsy7({?MoKfU{es$&3@7&Z2hg<p(TY{pFpE=7CNs+#qaE%k*!sB#3HNv6kB
zc9}q;VUNq+%Oq)+lZlJd@<9!;sQroIfs2-2G~hD=TF`Ym?dR>mIwD#Yvi7srqW74|
zAT878Bxz}Y2ix{ozvSTEF+sLU7}2U8r~}-{{js#{xPat@$-+X^F>Gf{de8mQ*qN>O
zk)XZbYwAmL>vinH_Wi7(Q#O62WlW4`L?EY2u*V|Jq~?H6evF8AY8v{^S7N@z<HXxB
zh#Poc67YIkgpU^IFhda>mg%Y<C**{6@J8BlwIu>W2MY`&#63aU8|&Iiy6lMKqHRCJ
ziZ5sl%}URNLR<=p?To*l?tgDV{W2izA$~u8f~f~LE$zmeg_R3KYkTeq54ilM_6hKC
zykPb>Fg45_%X@Aumr>>OEGzk&dg{xX<ZDkVBz9mgV#9LNWH$V=pvcZCYN7)v?-(!P
z<x|UySNF4XCPSFJpk)2Q0z*14gQSk<ynGM3MS2TaZMUnlFcFPxOw%pBnoYZKGVZu1
z2*F4~?++b(ZCbVY6AV+#&rLcj*>0>;c*AZk1fqwju=uLx(v<lhtv&)go5E6c19OeB
zn>alx+MZ8ICl-E3eRIMdjoxHL&#0eI_a4!rno3XyXeGsbrDas`D%v%cTLx^&ePwtV
ze?00$Q!gq<dCkyK9hZ=x<?LLZY^8q`lk=aA4%*I1{j)R@Y!`R9XZFU?x_ay36tVa)
zYJ$eb#+^CKw4C_(lP^#A8K|i<LPBs~aB{LVrP$cgo?Qhu)i^ADwTcXBLgR#EJ+>Pf
z#N#NLJFw1GMV2-`0D6g@@jb_`s<r&|;YPN4#&hfR>9+oBZ`b$UNVl~&%yQp|14HGY
zbHVK_X%y>%Wq5ijrA9qp9yN7|aEB`n^SS)mB4*(I;1(<*jPLsvB2nB_Blm~zhb$eT
zy7l}@5(UWE^!Lc89j0_H&x@+$ZE9;KP+NKXJLEH6%y;;XDr2md)bBeot?hBRG#-cG
z=v(l^GJ@O5vW?EaIfa!<Ll3)xn4feds|7|YM!+<Ay0n2gwt-Z`f=e||EYgHQrod=1
zf(weu=Z3X?OReHtY+kP#CT?xHncx&TOp7rASxc3o;3pqw5v7tjsr|=aG{;E#MXwqf
zYc(b*Axx$~QueYx3w`GoR);PG!A4BSK~#2u(cMq)R%irp27pG%xy?CpqWB|Axp8MQ
z_|Tvr>!WX54<<zk$1Aulk1)W}wkO(#6@_U;uf)UwXX4v-hg0nWHu=r9S$_lY(G`N`
z8?aSUp!wFRNwf@i{DNu!Z>#FB!PB{TKId3Uf#8L9g^S=nM3;bxQPAL?MZ<MEPe5$=
zy7R8`58fMPdu#7f!J($VH7Cu}4pxM9)8&HPvp!WxwRsmELT2}m4|go$R+uO%fzX$J
zx9LsfW*?zMi({FVv4OTod;qEcs&Aac?i<hol}yf&X;_xx$SmGTq0cLVAUqo=e7usD
z&O5MGnJUwAgZOAG(G4SHjytzwe@zQt&CR$_v4AXYZ>W0bNG$31Vjl{pP~~_Gtid*{
z$-Nw90>m|Q>e#e94k8Miar7CH6!G%L4^4MxmO#VHs<x?5ZlF#qO)Q;jq)Tb$PV_s-
ze(!a0?H|`sz9j9<Ln%87N0*l24J%26Tj%>?epMhUJ4=Q?kJ&6q;I-q)n`Zv`Aj4Sk
zh2|*Xb=4U!M)W;{esxaYAof7w3rRwb2R0uNBmlF%9kg`FQD1Bge)$smAv6~Imk@j0
zxBxUB522>2o-Tbq5xV_wTkCu-OCgz7wMI^{rQz-#LSxeEbz#$hHd^jvgn}~9&t3b6
zhO`GZHa_W>nFQRZ5(-3^8h`rq%+#sn|ECW4*LmJwY>TE|OBHssx$Et56CDFXDFoQg
za>fz`mg8-?VxF3rX{5iWb!^JO9s^1zhfu25F1aWFg3x{3MW@i&*nAFO0hXe%CUDO!
zY8!huPso(@iQMk6#L+V-4klMv8rrTW)@%^3CG&{6)|1O5M7!d*dW3T`ht1q?_V-QO
zp;WwyA=bO5Mh9jcjhhB%+EkFX*0TW?8+t!RDt$MXfa+q!3E+#46>@!b-qt;2Xxwj%
zRq{Jhzgq@}vZey2L5GX1OdNrx_&np#T0vbf?AmUfV^4A}Tr!5R&&}rtUQ@z6u{YCn
z7r#mWrHL-1d53&9g`(-(&swfj-x^f4LGyuWNv#~hoz;&rz6!g%-P0DK_`Mz^I`Z^k
zyKd_p>_R~|L-qIY(yt083gwQ7Z0ecn-h1BRX4LUP3v%3%^&5$r{~u~*@kZ@RN~@*X
z^yVZ?Qu^BJmI+d-9ll$!vDJ3{wVP_%-H;XlWbne7i3FUmS99oU&#Xp_3_T-y!Zw^w
zL1AjlrxKAh*yN>WNBjdl2@;v5ppg=e{sgtM8&xVBAb2M2^G{RUdQ;WRNBVSfCUIDr
z8()sg2y_}$3u$a86j?F@r2evZ#AV;PQKMv_v*zpXD#8V7d~CxiQ3T`t%9Tvt<s&L<
zzsH-|22<?Gg@y0E2fP|R*;lSyCeDsRTyLO<o3;>Y&ZN{EStED3uX~8^NK!4j{7ZS6
zhG<Em1@366*9qa^kyLk^T2<GBB_7@Zeb;YwTMb$;rP(jqW^xYM1e1d<<aPNh|C<Hy
zQ!GmID6dyfZ`UF{_)v72N@d+uy`1#A?#u10N!q~KZ?(tH;<yd6_=iJ`bVnsa<(8tx
z!{H?{(#mMVbTb#!qL%hBZ(fV<#=oyb5_XeRk@_;C_3X5WgYWG2+x23Y-bXeXCySn`
z-l?TSno%J2dcQ%a8G-42LnB4LY?7WQ$8;OG%7y!|RB}piM<6c=sj#=rIVLT4PIPp=
z`efhU!_|Zx_hyG$Wf<iAx5ROaz*%DV>mE~xC5V8Y9!ewR<^3xo$)aH<(3yAKO*joH
z*SUD4Bp%6i&*Cq8*m}3A=Cu}nYZaCzWM-E2yVWn+3uXkG2=(kqN87|3knp{o?J<EW
zhb2;SN7)Cu0!OQipFeTM-S??BH#UI2tsO^7y-^J8VHu&Jq1F#~*ES{(|22^<!9CN_
zQGaM&Y-RcR{@+yV|E;rtuJG%`@xS?<i3LX9q7&9#3Wt8ODqBtDs@{DRh&^oB<GC4&
z^8Ms#{;F$h>qPEx(0b1J4;Ce>?yuyt*-cGgk=3)dwnwXGwP+oH*Y#$?&X^K|HhP^z
z%}$c~BjxS4&d0?ECrA<3AFp#n_Gb^@RugS8a33Go(4T!t6y5EsKmC2He7!sVN@P_a
zsGcwN18g^lQXnk1`g<AvBLrhAIE{&9Eg3@X)_@o;uOW;oBqK<Z_$3*U>E`Rq1)s)M
zZ&8~bSVa%Tw$z-x2?(=Qd_WoyzF?)6$>p><NqRH;H+c-gO`geL)b|~2T|E;A|EPXo
zZrVFE%KW)XC;RPPf2KSB(SE#D*hKY=6pXH!ID@Op$2}_BtCgc=+El=tKo&F@&e@^r
z%z%q8nxqArfm1wT@cv@2W}f*CQR3?cAF}N<yo?<N`$BO^wuDx#8NX6+s^TzI4niFU
z=3~stMgm)}yUUK>MvO55llN&Nsy*k=^9(QD`C1rclcz8Z{Z221iTj;)T?Wq+zNn|0
z%PG|Q-hO;Lpe6_~Uu=*%+9Cn_nE)wJ|FryWWc(M~Ko3!8Qh8E>x;|B68a+iZ6JB;d
z_v*XQ4SZCBh1X>b^3HoDA24n$DLEiBnYUmMPQ$W4$%1c`t6vIvF~mz|K@Nw?WM*QZ
z7LV-32nEgydRgJYU*=|h5e>;*c*@?s49>KmD}uS$Gs9bv*w**eCb8id#%d!RzW}=-
zpV9iI`{FHDRgnb6q51P7p4lFu&#Q)^G|>S^l4O#lt71zIUg;@X%Q)&swnw_ZZ+I4a
z&%Zr$p|sS!6rG4^m2~v0839Q-`XKuti4H>_1E{^LQYH5v=m}S$)4DE7PXHDJ<70FQ
z`uGQRE;N`}&6IP6RwSgU`v_Zg&IK|ue^Kg8i*rt(l+vpZ&Q%wzh+j;;Js#&Gh*|Zt
z`+fQ<M`Mm+qek8Cy~CZHmKF@wk3B2icNE$N28BVxx0gpc9Z0lLc6VnL<NN)+4Wpl>
zC3|paXcVoAkTbD)>3>#;qV+ybd2LBF?rU8Ha9_dTcpjs-$AgttW6W}iA|F0{upmhD
zdBP_T{GOnT7SO!Cqa!2h<ZbI|dhpV!={kv&QJ74$+6Tj`C(y{!H_fh-3j)|eiMdj<
zx!nUkT(5#;oic;5RIAO_%=ZH|02lsw<$RHO#jU-p8X;6qEWX0s=z=^+rEJ^3L>49-
z%jIyt^jcG%kNNW^ulMB(uR+_wyq9=*hH(5qR#&2I6>g~F5}qB1^og(*G4Gg<5EMVH
zRxo14-cWs=q+NS#p6-QVYO%s!piFYE<gF~w)yBBE-gZ$OawQQS?%D+!He;hHQS^}{
zskpRZ7wBXG8?v)>wxp5eRd^Gexqjb4nL;LhWPuoew6@?Lm?!mG=T`TgS;8`FR@HqG
z+5Fup;nw`FEsM$TCn$UO{TM3*nq9=FGA$?9b0?%6J5_k&J3;eY*qIh!$1@Zw2<)S7
zfnEZP=4){G&Q8u^S;@quM*`gGe<$w);bXF}2O;Y8zxD+VmLtoA&)p^)MVb;i2)U(>
z-`zeqMsk`Ks8J3|=_AGFND;NBxp<la#6gv66t5Yc3e6vR?Vf4C9coQ-xxe8(ZF5cg
z-FY#tWpv@|7q9v1IurpGu%@6_jRCw!79?ZoU?ha44uXyAqQnT=e+(zvlAYX1vcKLd
z#mO36Z7)YcDnU0iinH%8{VeL+Av2J|AEl@-B?F^~-jl%?e%^2z&V_TH+MK+-ZtkDu
z0X4x%?#J}l%%6xh+N<^3M&kLPBMvn_%ltoYtH0jy@nO$M^cSz4n%=;GEtORgh6Yqu
zB6*`i6T~f!+LczcmmijDxtiQdb~_IsH}?gf9))ApQ;LxnS`v1&3``~0PdE<+mF1-&
z`UE0^D?Kbg{+-Lg|1e7|DPd_K?_&%2!JZMCOGm0bgr-sJasOSHcK;2%sTY0u@+V*C
z?Cnu&DGHqwm%oX|e(X><o~(8Mqng*Rb6TxS8hDR+&4OL>2(yl&E65*Ol_30oA07Wv
z3bwgENz`Q(Gpat$ND;6ce!eR3^NQIdB#+)+Q<F#C!wXiC!{Hht!r%g{sH#|oVFq&{
zCfB;njy`y$0wL7Zl;&ZPxpLT9-8TAFMCAnivOfI84IEzKkr7qcl*cQD>$2eQ30F(@
zJgZIco;mR7dHtKM+=T`X?3W&iYdw8ILkN7P^Y^pQS;Tqd!bt~D%RppD4IzxW_#rs&
zEOZ8DWw0G{{Q$3gc(p;tSHz~$QpXlyJMF7UfRFf9icp$hk2X{f{}YPY4&_B4VQ@d&
z6Df6f!`#dDzBM(Zub~<6K&C2eZ=|nEgAQ$Q-+$`Z(3yEf<MPtSD0!xe1AMtFN)MJ2
zj}waN)Zc3?+O=*^Am_vS&@kTv=8;b)-$uK*nUWADZW85r$s}WGBA4^Z?d;JnnQ|ut
zsOje1;?;atq@uCEm~wm92+S-DRUe%9Xt83C(ZT_zI>Wg|O;4+7uPICV+-=#>jS4q<
zHUl}qP*~U;?=NeWb~rWYHN)i4y(Tm49qODb@Uv^<fv|<b=m_5SGLvwx&#0hQwp|Eb
z1!8VqS?|mUxv$bE7KM4z*I!1+Tm9Oh!gZ{C_>%w3O9U@?_UvqHUV+AMB)l1HTob67
z3*s{2)v09&O1@O9g)WBdTjW+A5%$#Z9z42_LVf*Sp=H4eEt2Dbg`l2!qY|yY(4$8Q
zl?uI{0~J@E72P+!ZZ|SZ*c?WU-ePL0b9%mTqdFd?i#Xs}=$Ttd>x6chl2zksV=RSa
zC+9_DEBIxJx^9~f&%n*W8?5=3-_<CR13YGDcESzFMr@i`r>a5cY~>FvLxSYQHq^mF
zes*?{4LUe9EHJP{wizF7;i-N6cSqg08kNk+!qOmHC&#bR(&T;j2MlW(AAcA3Xw8!U
zzt2_veSb5c4S(hS)|}m2SaAUH7~h|R#muf?7cEvx`-6@iGC1*3wPlTsBOs7bsk#zR
z@IV)*i@TkKOF7AB?-4+$cm`1sQ?ZA`$%zT}GXM7mv=NKPpQWNCkK>OR$gnqf=#w+4
zotawv!<f)b=we$Y21u;s1{=pwbQm74nBtDEn_!qPBZ_L99>yOLmW#*74g5UVHqhoE
z|0i?@aZ#S!NA}K$j_rkdM2uV~-Fr+6izd+Pq~kyN#2qJJ<=2Brz5d2kVGC4Acsmhu
zp%t<85L^ND2yF#xRiH}{m~%Dmh#Q!Ip1MY#I;Cb9We$laaZn}wUJ^(52l(=C*1*=h
zXBI|77aN1nUYn$AYrsY1lRUA}W%oxTe~;I~9>(|ga_etE5%No4v|CN#5Tj(VoMw^<
z<w|=0Hv+I<!m5NGLuJa<AQdT5T&UM~6G;Q`vX-PCqqz<5(4X7M(8Em2AXZE9OWs+_
z+JA&2rs~;O>Bb@K)>K`ixiV6^KIdr3LOt=F=pg*7Dxlrsz5)7(0<Jvj>l7s{xycM?
zFVC4nc^?F7un~>C1bzsNvbJbEaG<Bv7#;HQ7oIHK^v*-$*J9^}eKHKP$A~B7UzYI0
zAmXY@XR|9A*cKa6e}I@ru)j`$!|%AIXPxD$@oHs4i7OdIJhFKBs+=9Whb+8q8(NWF
z@F)ao%afPN{9`&LF0p9{`NZPkS=IsZZM!mU&?(B5?4njYwN=@8L6!s-GK0HXdhK1*
zNm-m$h)b|hX1RqHZttx4C)j^Cn(PZCIN{PRvx!7262Gy-YT%8}0!tQJx{668TJ9gR
z1<F%4&4P}pg*}{c6=^Dm--Gf!1^~1c3_fek1<sjB4F}pAaq5Iwij@ON%Dzz#1x;)*
z;;Li8?U(4jTXBKS1h~Wmw(S1m=q*X$BhR@CbB7Kj=QVV5_TT^9|82JD#7gR4(=Rl0
zK_uR=Z8h?d;=RjMf%XUcy}e#YSV)MP_j6hihpKUO4wL?#ZqjpmH8m1e*7~Mn)WyZg
z`-MZ0@8Zj!#H|DyrN4^1`2MVHOIS7!<1ynMym^B7qoNrxlLURD8DXpH+_hS3IFYu_
zdiOm|Pf_u14UHjCtopowSxZ;#&la%v*tW=~GHA&_y7^1|a<n>-fAOKa`t2ezezqnf
z&rdjTRh1MsK#LDNCwG-jj0ifw9g9cJZod%>5^OfQf5EY)#ukF^_~H{*@nJK&YJttC
zmtvHJ1%@{p5W14WQ}y?vdz^+?l8nLzPTvcQq2g)>&Px-%ejPs6cn=$;6IIiVT~4BZ
zbNOB!%}i9AExZ{lU01#Q3~`R%+<_!WHZo4_0)}jfGS#_f`;C5z9X52-&jhkFQcZs}
zOFhal#2qK08LlZPU_X-~YgFn}_Ec%GJKy0u{|?8Fn3bNp$Qj{Y+r6ckJ_tb-Dn>Q@
z6<J^L6_4T4^>$Lx7u-Py(|Ha)#9PBz&U{PHco4C9IzIXz`4XfoSDzdrWCN#^D9hQc
z7b`E=2R}sWp#keXhlFQWE!H&HIhB;zzhtMq7=1JfnRL;&YYPT@6bz|!Wcs^H&iBJh
zVo*Avj%BheSxJ`hWPFl{@Ndn~og4@0S%`R_n8?C6wJ6qI;o+2y9!2I0Iy1^Svz6pS
z%JchSrhIkT2RIpwsliVK4{v^b`@keFsr93`bY7=Zal37;@Pt<V{q-YARb|}~{KZ){
zz06(V0a~;llw`M`Hm^1G;xW9Gy#cxH?X3q#7#C)CN;HC^^+zsEZe?&_@W@Mx-arra
z@Y^KcklyQwWf#8Lwm#chv9s4dJ7r>V3Xv*arBg!3D0swG196TxbY<FY`udmhQUdmk
zw?BBoGlYez#4jfBajdk|lQtrV<%ri`SfF~6@~8iBbGK%C)SE_D7@U_wa~Qnn_xJw%
zxD&t`;Ns;a9vmFZVfxv^f^7+Q)EpbPNopnIZ>Of-VA_d$vu`P_yf<CUl8shh>R4Nj
zz*YZfMI_wb-sTq#E=f!yrT==OZ|<<?yu4Az%tRCn4C=PiMHv!@b)5x_xeDZjQW#B?
z#{KZerpJO?164!0_-OZ>P<!d3Rpk77Iw?g(s1Vhz=UwyLYIqNC)<4Q_Rcio71%;@o
zr9|swD7WF>sa41Y04^choO-{z2}Vyhr8{reWJ((^#k+*;ucy6POXR8QikqwhPPZZs
zCibsAg1SKgG(os-S(#tIEq>Zmr7~}444Q=+m)i#Zg+u+ClvJ84UC!&uo3|o^9pLM(
zbj?IngHaHvoXSiC1_SxyyCP!5GN1V+N_y6Wpyr}wz*-Eg*=o4<D9Kp-h!5#)a0om5
z;B-4?arxktyV1l7(sR=aAl**JBoE7HoNv7izj*(rquwO>pTnjisuC$}pDa~B*udjd
zRHt@6xf2I2zWIa+N*!_KVtU;QFXix2TOB)^Z=}r69E*xw$W4&0Szw)%Y2Z%NcOZ^$
zdwOEPU}#F<8+lNY61fXAdc}CK;u=1XB^5~xVYU1f*W^B5Fis38PS-orDzYzHq3OO~
zT{mv@efNXL0_-pQta>*dGfo(7;qd&UEpY|Fg{4qm*a4mxpRmo`ligZUW{>?OHd_!M
zLNDhSb@?1+Y(V)=?rnnRZVEOggZH`5<KA7zq+H8oa&Q<&$XW2J)aRk%U=U7wSRm|5
z(zrg7!boK10D^VYQ`c)7V5c=SD?^^$_|)e->8DG)$ab~2U(Y?x1@=g?bR*5wsnr8Y
zR=bzB*pe<ReC$KD?0&c<6BYdXZogrNnw=SLVD4DEq{|%bVL>wCb72mBBU)N1h~33S
zm_$-iAg)vD3Igxw#!C8$rr8(QE(wWUdv`Tcn&L*=9}B+cipMpu3Cq%qJ?V1SijVj6
zQK(|czw2`@XIKNp-h;QP<lDVp(Z?I)y=BCn7$vBl^0<u<tOKnui3=Bw6`G$}n>Vg;
zld@*w!j+TDE+t;(u38n-2Sf)tK_{>Vifpxd>)$J<Agjc9oH-A1;NTkDRe@dW$2ozT
zj$oFgWz*<9u|ie8{xT%S$TZ*L$oaRI;)9@>{VdAj5x29BC`%tO^5!FA(d9=P4<(j7
zg`?AuMvxOYCX3<Z(*q)6|9Uk^<`VC!g`I*5;|~5_hn)^9>v{fvq>^#kA%OY{_z>*j
zp73K2UO_8Fmc3(E0_LiI|9;MzDBLWUe4BBOsCPk%mJS_X5d{cJ!HY670wO_@yVkWq
zcrqqDFrFz;P*n3C>4j$uJ>-!*HddgF`HSvvz^7)vETJ4tXyXXQrlE;r0p-rs;fpWG
zuKi5ci;9*_Z_23@tM_Y6lcj~l>I6TTwga9&=G|m^;Xl)!@Yj~XaU}CRMFI6*QtsHs
zE2Bg{oJ!?KNFQbgM;I-Wci{0W!hGD@(Ctsa;N{Tel61ZOlPBi?6mFhAfg%TCzsq^n
zClNHP8ZY<Iz_CTlc8>8jG6AXim7$aGd5d_Y*zefD1#y+pgm4~BL`|s9i`5>q+V&TT
zQ37p|xvSx`rL)@^F^f=PvCENK-P@Z6+<&AOCib_DUtBOW$8KO0WJ~gIWkSvz;bc_|
zx92lfc`&$ynh3b+U8*`h-$_7TqZ5S}({jF`@d5^zx^#KCciRNGy_!}0tF#)B#;cv2
zO6gT(`?Mog0%WXI$D<-u=iq(vymTOGmlfMT?MgbiXX<jhF^*1n|ATk;s+T_Wz>pQy
z*@hiv&2J)inGr@5peAJO=WYOFC!|XlslY2dXl!XhaMJ}641d;Ze`&lBpvQxov?BgR
z)Va^CKC;)M=h9<oxh6D#7AUfc@INa{!r1{vuEMeT^AGcy^Jm&;26oWm4Nc9}z7McU
zMc>w&t;P=&IY&DAQsi>=YkOz0v((IDb|Zp>Y-w6B+x#%RC#wx1Iv*zl_zyYewaQw}
z(MmdIe3r3kMrf)QG<BDAEU(Q~!u2DOv*0+Bq|~<Kv23F7`I|bOBzKM*tE#wW-dNJ0
zPQFUxZeff1*Bi1_YFmyBLBfU|AiJ^F^<T5+eL3-E6HNg6Sux>gnS|D~P6sd7IPoK@
zbTg9i9jo0BffcTc;qjsjO75vS<O`=$)tN`=pmOJn1!)O8R_VJf>i!L>57LdR*ThJG
z1wv<q*y9D!NHkUSr=w*}^#euW(a%_7>=tuW*diXzxsUaI44$lJ9bjK-_g+DAxpmDm
ziA|3I!yNNbhnCKfZ>4`vcjs@KECaO@gx~SZJegrR^mv_jt1Mww+ci-aAf-gxVhOG2
z8N*<l1st*&t6Mh_<0bskQvFIkZejonyA%c(uWO%r)R`M>HL|*Rg~$d$d?|j5&1JXz
zm2LAKK+gQ$BZZ%j;f}WKFY7G6tg(l}MkK3Cr*}OxbPfnW=4-xL-RCv?Q!OT72Cg+r
z2C5qe@a<QeS0+b?K2I6Q)lHpOU4Q&7HYy8wk^CaR-fX`iBK&J^hG|O_0Ps#(C*lPV
zYX=VxkHc(7brNE%mJ~emZc2&woyuo6;tRJ46Jtt1$K#wI2=@yKjJ2=-#SQxZ_Q6$%
zF+@93^t+Q8E~H$xh}t<T*=-#i^C%(E0CYmqVy2*o$i!&0a`Z}#nQK;lez@;Rgt3Ot
zJ(Nkuw$O466Rhla+>Tde)=QFS$I69|9dGa6ydRSOJGZKDk1oNE?yQcS>&SzQ+&8GZ
z4Z2D+)-}%U`C&5NCDk=HSP<sx@<pv;HnXu=onDE$^;u{lCW4S(RY=A2#RlaCA2cg)
zrn{LpB^#?WR+GE+kCI`wgs~KAO<QqG8YrJo_M8N_JcPniW&{6;Q2%E^ik2Ijw~6;@
zx4+}gLNd6x&jWt1WF@GLt=2A<%EG7<L$2fgK7=twPk&^B(YZ*BzEp-ts-lIuHqJ7s
z)w;xPQm`sG4jud!zmlij5D-DNXTjt&VNoIx@?BB8abb3k6>Mx1*ftJkKX$qr=8f83
za!{@sTYk6=byy=W8~Z45oNt~%*mX&kq<J5nS$}}847c46;=@C~^L3sHW$q*Q@MrKN
z@p7+C=rfNK9$ZSZbpNj5e~c#OsGCmtE1oKVOhkmP>5pU458i-g^>S~>U}~Z@sp^M1
zSkKR;&@@ZU&Al2~9C0}6MR6^=zFb$n{X3~FVzW%ts;$JR`QB!@q_zz?T9rjUu5-4v
zh%=7r2c%@p_`0@<C;TD2e4NUDW0{f+`X@TYuu#7(;`Tdx;1%J0p@YP8yi1&_sAgVx
z)%>*rvP%mQ6B30|Met2|;zR%xpmodbEM@mCnWeWf{R$F3x0azrFox6d%P07D&XJmU
ziKz#VA~>1ePF=KJ^C^x10WA;fq^#K=sHyzEOexXoMV6*7sI5u0CLwNiWZjAyhJnYX
zY-on46)l}4r1^Utx)=cNH{VN#7TpRS%HBu?S;|!1yQqywb9MP{wo1Lb<nu9Fxtl3V
zbQ{@Tp`27tqczgWV}-v#-J`N;{4EYW#M7*7sov*ar$-6j?rhDwU(i`@Wz8I1=Q}O<
z81+{3j_JrO5(wO0_L~t`?NJV2dXmpY*`h1&%zoPY2`Ml8^x>Pk#M^_thj@Yj=AvXg
z@{dj=!x7iuZ?;blu(2BVKXj~lrtsP~w02eACk66Eb>4vYL{T{lVi%`|4LM`fUaynw
z@zYXEuu|#1ov2_1hJG5nGN}#kPu&;gj1ttHTb-LrZb9%znz0rY6_YQH=<i7s+e1-G
ze!G3gi$U%0=bcp7Kw-E0C20&>zO!y{`n_zj?>x=TNYt@MBfveS>;^M76mZzSU0Wp<
zN4<Ry03BYaklMJXnF5Gk>&V5&kk*;beR!+<IxAFIS|P3OknAZrwW8*eF?2Q~nZ04f
zkMjqE4+uGfc!%m!7<#epm@(W^1(!b;2ajL$8TrsI?`d(oV2YzK{QHR2oO0|74j~(z
zhNJoO|I`@mOV-v{AHBG^NPUgsVq**W856@HB?a&3?94}#5g9dVV4gJ${}YTzMoX*w
zUu48Yji=wi8n3*>VF#+O8KIGfhlgxo`4SSnkgoZGhMzTOXJ=EZvpAbtKHt!$G|!tu
z^8zaT`>HFGiqHJtQK;qRbcpy&ITVRDIHqyE(Lhm_4Atanh9tBCW@Ad0SPHddfv7fl
zKFF}VQyH?J%t5POB4^BW1xpQD|L{1%={QsJdtO%5w@5~nF>oBbL=#WtFFb`@U6ZRS
z_=*B^GrvY=K;iave^{Os#ibl$p!MD=#^GDOFt?R(G6bXN@z>KAkuGcBR|tEfP%&*g
zKYD?Ly$yQXA?Gm!raU6<KrGhs*ELbihaa8%YrS*VMVS!I2jxNqzb}2=R0!@Fqg6)K
z-XEZI7Gj`1klN8QpxZYzJY>={BVoZ)WW<V(#c>B!aNG2~hJ-iO>T+TZd26VtmR>S;
zuDi)mQ)(MMVqJQAv#kz6WC!5g2s%ihI{}mZl_by!_ohCNf;ANp2D(sb^R<Sz8)soK
zye?-1iit`)%+;#!$(ZTn#Nn=4bF+@|S1B5|9!7efZ^u>*Q27$la;aP1MoHmdw8He<
zljF_~!~WULcFQ3~)aI;*LdB>SA&bE0n8|OrVQ0I5%SK{gMIPZN+O^J4hmFp@$A)9w
zGu2z<uUjnUZy!FzkbW^^oRCFDes@oX$0z_d3WY_xNB9F$$j(H)^#Iu_RSWNZK_Qkt
z7vOzHXw3``sA=qw@AZ>|VP*Rg$z)D1TF@AOB{tEr#QCG-B=^y}%T+PJ3_;LJ%Q@2n
zh_L_d@WzqC;ud-$S1e11*g}ppZ~roQ{M+BsU&imO!$Z36W6Mb5;JHggeV4ctRZz)4
z2#wYY?2ikj%?a@3#z0W>YUN}<BE^<>@|~Ot^U#}ARnv^s$+?+)6boYX7}#9(x3-{8
z;;2dM{?&W^Wu+(OeNTrzBA=k}eVl_N|0s38V}N~&eAACU>H;Un#$>g%OJrdIliK6M
z-k5W9bMJL@MC{4AUwj@a&_Gig?agoA0spq_E1wUr@!(1hCW}PzkulQQgsG~eH_UHd
znXc(p{J#l7CNJ=1Z08pC(sDTk1!I|+nb}-FNa&?zOzrRNByr7a*ZvJ>hif!UqOC$+
zmrEX{4eKI+y7ct6MItLnA)&aQ#<0iF2Ub{ng11My!xB`ku56Aeh#g1OKp8$m%4;xn
zleu^>IW@1#2nclaeL+i&aArt*jci}K2SJcGpyu~J4^q~tEY#$<bl>IHugrr@$-Q4(
z6s1Vn>CFYil64B-sWv?x#*H#bJ~Vy>)Ut0X)%6sy-J-nUPNC>9)RK|>QAdS2wWYtj
zP}llRgZDskXc_FSN@<mZ)yy-JthQ+rkTB8G*YSn>^RFUs-u-X+0Z&kLKomm=3ad2i
z%CHYNWB7fz8()riIdDb?3#N|XTRnIR()B5Sg1VW}U(S(g$!?@umrKEoLTt-dQsx%=
zLfH(X)VQXE`sMWS$@4lHQD5*j!tK~DU=u@lhIbrfm#g82-EgRUIu4-j>dGu3GwN09
z(4O_-8j-eJm^^#M|NQ@vdQMwW)?)(W!$ungoYRd4>?OQwSGLDjUq@VNhTr%E`+d91
zw`4?irJY8zMZX+#s79JO4uo3KGw@qt0=MKo5eD*k7r?VplrOoTUbgH2C6cQ<gsi<t
zL@qrm5BHk!16#IA6N@XP&bN{{-<|Ih*P8SOY*V9RjMTMsUsDl(uWKm{4GtOOi%6{A
zfqLEMBtXUsBL|}S9<09y&;6B#Au%YY%4<$^IFyeVDX=lh8N<qZA(=hTZ1&l5ZN1hK
zK2N|}`<i#|d!C8#hl_-VYm#a0bKC42WrzEpBPb~DwvyaPEE8}rG~1ijkDPKxQvQ~d
zNg%~WT=yv2ZQlwLIJ1$JsXkge`3JCDP*AXqfE`V}kX5)xcZ`(DB5(*Ptgb1UU%KtS
zKSiP9Z6~?BTY#mHqWZ8CACZ}0s`wM|VX(FR>x%{h2Dnc8V;6qMuU|1SF@jI}`uj7R
zVVC0zj;-7iZq)!HqHF_)`rrnSBQ@X;Ih{wVF9#*dC~C}lBO89%T<f51<3mXTN;C;F
zU}7?|#08MJYZyAl+fP$bv6Hy0N{zSTPggkECb`@8=&B>Hx5ID(#nB7}C;EYKvqhgL
zAob(kPE7~#+;azrNKd|?v$1&U(~r?MOwW0Mhrf{mbchrcY64F|yH`)CgR=M(prS=s
zHD7yGZO9oxR~PH8zb|L`c3&vqAOa3g(<d;ov;oK?$Q<KR@wq3RBM39YXI^Xh#3*@k
zZe9_V-Dwa*<B}B-@@R2^iNwav-^8eu)yr(*@6uk{w~-u2W5{2R-qGwm<T6aP!(CIP
zgM<P@7V@-~Q}xbhfU+bmZ{w&MVb-yMrC)a?pKK6fkmHd~dyxv1b?zXb2879g!+80P
zyzp$8hqAG#xgIzDUM}}`Mt*(tz}wzF%h?vk92)w1#`&AumAbnvSZ9!So)>geFyhvl
zaeue8rwRurt)x4lC-{U<PczcAEXD*LpJ!S|d?i*%Aw3+$M<*m&n-G@tpuZhH5xw~P
z29C~eatt8=2A(rcPR@%tI!bIgIl1j=G!dICo=Z<o!sGB0&%gQJ|Lf!XX<<f5KZp`j
zzwBDuWs-83DWU&PD-!wf<Hv2Z)~#x%gN}mYRcY%(gRAGX$D^4okfhgW<%pCrgZD8;
zv92kCTGJTM`CH&=I^&sIW&zzbP}A(-=%+FdTE*uTMoLQho<FS^f6@2$;PVhKI_3f5
zbD>@MP7NOZh%jwLA#7lT17pW<A?V4k-LBc73_IcWri9kZyr(?3RUYiik)RFMnqgs4
zF?=QuTBbiziaFgq`u0qRJ*Z8k2e53*N0>vEJWPkzvVwA9kY#cc-=I)n*oqV*<H*WO
zG`U8VA<h8u410LD+2aS_%0M08Kaahwmpp?J?vYAvpPj3qPK0Ta`(1%nFWTOST$|*+
zg^UV-1luihFm&80L$6(a`j*7KB0DhBI!m9!N#z0zW9w66v@!x{-0Z(~7fq0zJ>PsC
zuLxpKl(A)Xx;i%f`t@r8tG7e(Oy`*eCM7M#-Cu=2fBux!RiOa_NyCG7)M-lGY#sq*
z85tQ*>FK#Go%d(?DWr^7W&%Sk|J|BIf1|cw=Ho$ukx_pPtc~MY&4ac8tnm~UFgV5Q
z@=z6pLOlfn8N2&L7M%jS1y@P#w~`%yrl!sv1NK~CsQn)jWwKn~Q|C?KSYxiHrWvXU
zAM3<8#{>pnt?;ELCcbw15wbF8!Ut5CL}N8@+v8}|M(J$G{0(aJ^71~7bRg%wcL&;U
zBZEgSo~*rO(*R)9vB*&ct<OeIdf80#yx@HKct(zHu9~p;b1WGu|HT7~NpS9)KC;lt
z4b+mVbxNAE?^1X2OC<-FLxQ&Jg~Ri}$KR=kbS>P=#aTiA8W?_IVtfHEs{VdQskR-(
zrGNKhG3(7j@|-*sHRRU5R=gFjxCjF4_iM*d&~R{yrQL~pzDusLud4637Go7ocE5L5
zX^^Rny%u%@?K%dEi&Qf>^kUP<uf!hi1>gBHKd2w*k@LF4tyOpp69}pdF-uBHK4(;K
z4o6$|U_T(RzXS%dKEj7y$Zq!b^z2rO4gc$I_<wAT=of#+M>?Cn_cw1SW`*q0IbX4{
zvDxJTW!Gq`N!*&HpPwIE^_{i9PvbK`m?R)Hc7{&#*^bkJjLkEj{$Ys%x|_=<3R=J8
zMhnS?mKr@0Hi3d>p%qnCf=NAqF!-`3l74qGKgKl{F5$uBbJ9(zFQ$|z<MIR@^Xl?r
z!#A-_jJa&55exYn*=kwaGyb-tJ%B(kP6qPISu45UT~RFO{9xdJF!q*Vajo03a3BN?
zPH+hj+%33Ukl^mYoyOe)1cE!kJ-EBOyEX3a?sjMPzWbcD&U4rKzMuW{pYAE|7^A92
z)!|qnvh^_V|AEWN_5-|{eKK&T)d|54632qE16AiucG`6cYtzxiZY4}Dl-&%PadOPZ
zbj%Ar5tL;}8YoL8AE=M)2723Y72PcTf@2MML->7d?9*4`J}V6b2+Q3%qoH^(vvwK<
z`rRVx*~LZlY_t2V_3^^`r_GZS9U9%DjF1fLI_qUvWX|@9Uen^1%cRmq%m6>h*;4IX
zi?1FYJm2sJst{#lWc-f>ZNJtJ#3n6({GgDLk>@eliviADyk6ar{%uMv5Yx1pLtNUh
zgZuDsSe85;kH_>sD%F4A8&+grK|g4Ta~3zvR*wd)h{;<Z3Q+nFxnaB6J8(3_(3aBr
zbRks&kDrMuO|D2c!E!<D4-}?+{I^Jx;Pr6slkrO6jMN95>mk7Vgq~OO4@XsFhD1O_
zEg#K#RdzP%_3>f?5Ev%W7N1YPesn}TJ6nF@{B&n4DIp;*YQiI&f|z*+XsZh{GS)(`
z85{z@pI7Y%5DvR&J@^v*8*KhwV#kHx+Gl3eNC;uk#4TXsw#on8$A8yh0b$rD;O`<9
z^g03snnM-}c!0#%mmOm85%qOx0V~4O1&gvcTiC$sdyt=?%iVe)6%CD4FR_N##Q?>?
z;-Y3z2;`F7{i*k>)KENK%yqH%dmLtekfIn|sWNBn;nSKQvgu}T7<EyH$&#thTbVCk
zf<*Cx5^SgTr)2qS`e!NVTdouupKlfi`ufDvzvkxVUIBG~qB8)Y#-o0xU0a;!_t#`G
z4irqlvLghOZW3!TRJcC$ZKuhShq*KmpqU`?^LH|JiuJGy@UH#O*5W@mto<`Y@q|Ei
zXt~p|MsnQE$#M}~I`PpA3>FsF{L9`%_Jd^z2Y9$V9D1UHZ*Bb<2>k6Y&dMU80>U$k
zT!1I1<eFAlW%WLceI?QuMp;>z)n<j~;kNCyq$HjAw6LgjGReT|q@s_o$lmG%Pz_BS
z9FPK;Ojnaq4Dt!|+N`@4vDvRc^5ld?S&JB`QU&5L$(-)E3z@&V;RV+A)(@GFGPxPJ
z1P;F+(bc-D>&l{zNnU_wsQ(7o{$e#6#9-rLb86M-Y7@-)v9`LVe~*^<553fX{_xrp
z8aA6b#ycpeY20azpkiu)xnd!}k26%qY2L^IFz(lYO;aYY%!Km=0or!KoFe3ji3x>_
zVv(5#=Ad#Sw>{#{5&R_-b5kD{HtX(o`Ccv#4vs%L<=cqSWBjj6jlY08y)}ZSdD#(`
zS5(%jVT}df!ERkSH$OjfAe^4rCXqE(7v5EZ!`=(>iE8|2pgqPll4W8+l4AUi<%aYO
zkjbKkKM0wc=Bs#Y^`p{-2f6)PA(^6vsGt)9qQ^wxmVVD9fk#uhYnX$A)<1<gHjgB;
zv%9LY)QrCKy-v1il>ph+eklKa3-ll}O`l<iS+w%5AxJ>gT^d=A?YK)psHFL-WjYSa
zj<aSxze3>6y{Jn@AFjDQwc<3>KL{Us<XmsE8MW3vG-F@Nz$LH)6*9DpRu}#M-M9Yd
zT4w~H+yPQ!KzbuG3Qc1A;i{Ci_M)Qa6Mih}8d8Zh{L|Cr7!)ysNH0jKV+1y~Ljp(N
zoGcy*=xPCKRK_9@k9qC@{rd)!L9bk!*R$a~(B#k%{F<7YnwdV}+1z=Xq8Yn~vuIMP
z)ev1CMv1RC&R`9aPUq9!`Ns1BC?#+P1&8fnc{4?-iaI)kVFcVNqcH4pZdZH6%Zck-
zp$5+n*Q|Q&Z{{f;zCVWA)%DgRBBF595ZeoPj}=-gYGvVZQIz)mV+9)bfGVeV?D?Q-
zN}#V@$^_9=MdfQFB=lWWu~@y}O`j<T<5)VsZczj?tU?7iV0rxNP`^-HcvOwsZx5$*
z^4Dt`uY0wzTC)3YsxvKkXDvRItr7^kw6L&eF&@qU4AV4+*MZIfEHV~|OcdV>4a)0H
zTA{035@O^&yS~l^g6PbVh8NmLu+_`;AOH)b0Y@opVu2h)bSS8nx#ryAIvj=;^(Osw
z`>Ktt(SI5+{&S-QWY>U>^CLd2=i?1oePyvmjU-oHzT5NTZGtBI%gf`bf?Dx~?al3N
zf)z>x;IN3yclSmfr}g<p^Sc1<hRM?1-c(*h?FhwE%1jt8Yykhuoxx1#XX~Xe&dZKi
z+FtkDm4H3wii9lhb*zexs^QJiyd589-w66uX6MOrliB0V@l`jvY(MSN-Nfoz!|Tf<
z8;r@cAEjnMiDn(zQbENGIi$6m;8iFdPaqNjNl?8q(85K!QZN6q7w#FOb+dl2Tsrg*
zH_A6&aBV*?Jw8ig*m$wlDmFeIy!Nx>n+vcGR>>Fo_T_%eTcdi0o6!If3Hd-1CMe$1
z!(-1EhA?vHEx_Mbl}=``g4?VCja*@VetCYx{kIYnVk)Yi<-hYfOSPM}*!b_aVwe$*
zuPyA=+=T_wf2G5#MRY$b0{g5avnK%ZFj{b?4mTLL{<eDqdzGs?_FiMGh%D!v&tTnN
z%7x4Y>7U1d5wZ5QbsBu-MTI77zk-jv;ncyG`Gu2Te0hHivO+V*B}B?^adR{%n4L&)
z*7}76N~<PP@5O@D%h_S;-l1ageZYL)rbxyjCLkcl^?QdoU(SKU>y4=#8ynTJ95;9Y
zpI_3Fik<g8#k0Bpm+luUf@7nFp4pH=gx~=s6&b6AT4F43U218G?D}nElQ{?k>#U`2
zbS0zWjKOGy16IZ#(jPjnRcJr&lI2Dg<)<h7l7@&vwQJtEqE#O&N##%U=Pp&1b6010
z*{!)~%qnft(6WGYbugFhF-wds_o(S<c3<@h8<y3$rARHroTc9J_g2=2n1cvM|1DXG
zg@h4qO|PV`Au|(4-cc3J^&Vvri~N(KnG?Noa^co>mX4?nm9lDLzaeehW}VF`O?R%J
z>HWosT?O8T5+h6Sp*^~%N|1%Utu0!o3f4Nj7X2i7BD<v;Yfo=l1`wCd{PX4bo$NFz
zb7XpYI>rDYk4t1_Rn;~}R8$l*(MdhN2029Y2}nk8+$IptwsJv8F}<u5vXp{)trr?!
z9%wz3F@cg~b1}{=BMvye8v?uKZWC37x4^iMn(})>7bxU|rMID0+{!+Y^IQV$@B6Sh
z*4C2Fy!ygO{KE;j2U$`yfoLLEoY~j8IvXNSpj7+cRt^|WVzF5~NpF~7^0L!dpM?HX
z&E5@Y2X>>k!u7G=Z>*^5de(Go3Qa!&XT@L*EvrVOLqY9HAy<ct1vTXaOLyN;0z<-g
z18hR+B-Wpuot;|`r~EJH$YyG9s(gBX0I8R{I)0Aa&kIYQx63Blv;<j)8p&O_e2`$0
z3e2E}A|LJLozc{yXu6H1g&p_S%!;#n5A@yhe?Ct}seH>bt0*bV80K+O`d21?KDkE_
zQ#kWe4@kwBxr-C8IWo%i?J>ooHYua?1?q5V|6WA!W%X}z%91g1MdjphSG&q1k9fBP
zAaiz(j&UXxNi_Z=Vs;k}SXsu|7?1|G%tnXw#2)lnNYB~1YuLx4%5*7(rCArvLUdt4
z?(W{q@V3=42{1T3OZ~B_6g@FU4eu&-@Q8maZF0K154uqXX;wzlH*9JsTt_C@uI1zF
zvZBlyGGL`$U(!oUB-}Hx%V5n~#Lh;#evJ2M`XRTV`<SmSEj!4WByckd-7$S$jnecz
zG@wTa#VVszH9Sh_oSHaDtR*9VKuKNYi|t`s#~G_T7~8dV_ry$z{DFa?C_}r+Ab^q8
z|Fg{sMT(%?<jeE9!n7qLM-UyHfj?!V0&Or>2ps|<t5kL1S%bn=1d!$J>#)`iA-@^`
z5CS#tTsZW~_tdkjEBM`Rj;L(h^uD|KR@pHKz5ovrs1g?NakEPnH!(5Ue`*Huusada
zn^!bzEh}8nyY(1NHFZeBlj&=LTIe?n45qcpS~Rjh3*;HSp6)cZ`+c(6ApKWb+^$Jr
zlg_;Y+HoN?Z3^+Qn1ydQfn>{cddHJ2$DiryR~{$7?8pA;oZ?W0DtDg)`X8fPM%4DV
zk1ltu#1PO#D7Zy6G#nJ(Kr396q+cRM1hke?Y6c2|#}79fAq<1s^K#w`)n;}CvNLA=
zIETg$HNu{F^$JCDvkNKAI^$&{nTSr&T^a<T@OnWYU?l%e%7%nZQC&R_JcfMt>wqKm
z?xjRZpZ-7eOhCWB3l+?aHo(Fd3O}hoFhJ^)(qns|#1>~rHdO5wgV2D$zIy<uACA_=
z%_S6bMUALDN((VgdX?jpbWG>d8{Ytl1r1*cN68X79k!ZuDK`$zxAqQbMI$B)?j7E`
z6XS|CYS8l3eJDjk`O?LSL$V$Fl}&%_XikKRtJJPA_WQ;(!DEhMwX91JNY4qaba-ZK
zg*bBBWkRU@eV}<gQ=ryorBJXKSn=}e5R+W1Oe*JB<DMZVr^W~#iN%(1Kj17Y+nc3-
zfrN-=&k|LYUWX5W&BXBOtnv6<-13^h!mgy^x<V@b(0UMJpUE)7_4{X`ZjX?evx}pT
zOQi_#Qh*0_`o%>sB?-wF2YISmva8>Ph2{&b&x|8!ykbGZ+>zP&2<!F=3S94?g3fym
zA=ax3+4X#yFp`BqI)I0D*xNuPSS`+KTF8!$j*aW^$e78Hh`{$aSzrHHyn;8n0+ADJ
z>nHaDj%0bx{g-sm!)ZAlZciDIm3re-X;g|cfYH?KS+D8qhmXHnufdwilRG%<LR^jq
zA|U4invC#9+wWW^2k4HB$gt__F4>UQ8rA-KbY8tFe<HfyLO;@3Yt;BRT;TunL1T%I
z{n--xkK1S^ibVmCluk?b>C;@PWn7U+`yj>}i(<9Fst;Ed6_m3fY1h|8-cPm-DuJy{
zPRE4|=5qM68BTIj>;m2oH4VT_rLAkpQVQOYy8}?2FM{kTMHQogY*P4Yn>3V^8Eh8d
zap05{&CT6OeQ)LDLdc@I=rKl$%ZUNNW$d<u5&v{fORuG%eVM<6`57lq<<u)sK!T`h
zq?s9}J#sNuQ4<2Yf902)Gl%(I2TEOhHvIsmv<p*^7M`^G<t~}0D-I{5dLvMph$GEB
z%G!Wpu*hOim?Av(Qbw&I98G1A9Fsr#W$x3I)$y^vOQXi2^Xl%Z#q~!?m1`yMKum_&
zK`YVd6<KDJke-!VeHqwaSpLJ<G|EBYs2lMm(Yy4Ufr^vV9kBK&9S>ZxM|Yw-MMO4j
zmn|4{22ArO4zDv=-n2T4Auq({VrtDUH9WG3%+i(-_3E{P(3sU7@|76-yzVzBDZJw^
z{ZXWqh+f@2J@UY;L`F_-?uy@V26fV~OL(x-;$HHTR;@fkg^*c^FU9Pta~Bxl2am~3
zfK<wCu`rTna1sHRLnJ$;SOnqMxec__58GSC&;>*5&{?K21E27FXq0ET#$1p$<uXh8
zm_B#UQ!>!9HZ^RzDYd&d=0dgH;n?d>*h{$@xe)&2*~H=t{ER7Jy*R5xy#;s-KRYWG
z73KX=dI9T^lp*$ZcGWeUn%5OHn!>_PPPL3Ru#rMW#ceY+;o$KXCEn)+Ep1364mATS
zq;0o~&yzst1zEj;uH%gIMWeEJT3Q;EJ#_t-Ri{NOC`>G_>e~A>Ssj;U^OK{Lu_#yC
zzXJ{bX|?}_@`J)*Qwo{Yua35lBu1ers9E9>s4l4vh`<rimC=+<<;Le|+vLR3tZ;$5
zOZu0PC(W*^^0u~AB|0sN!It9TN5T~q6s8wjnGPEw<j)sFDv8Lbq?ik#z3_GbI3?3d
z-<dey)fFHqIVigD3BbKV;*Y1M>~rU^vULC5^bj?~rDXZRAj9<;h*K>UO9jC>Z#N3n
zfXq~g*ApD67s{(pLNsozQpLo7wpo?$Aw%vzK&B+2eiTzCF;QOS3VX_xVlUKpt#!Kf
zL1z>h1rr0nhqaVx>exPl)SJ;I$twhBhYw1GleHJ?8<qsYAt7e#odFj<O}Btmv>9L!
zkAZ>lspv;w;1qz&?E|%j=$n+x2dC4Oud;miIg+36LvKlT)^>Kt$AEx6Ymn~4F=z6I
z!_=B@lAQd{^oeTvyfku$p|AgZIE)hemX|aB$r)#zxD+Sy6lr^XarYDVc)8z&J2Zp6
zzrUYU%P3_to9=i31EmW!?%F5^f<Lyt9zyxBM8D;8pksS4^i_q&y`8I`Ha|eo|3O+%
zB1w-oHiSUMt-yd{;TY!Vt|@3Uu2=MAc`<6-YQkb|VLH^g3qGSh$Ny&#B1u|LY5EJ7
z(*<@IHb?Xz%@7su>n9xi6jPTi#zHRTui;KemCepy-p64}?e&%L_g9qXt5NxP-!Acn
z4GxAW93355X5{2J5X(4?UknXVo6er79ZZn^=`O_ILSJE&7W})r7(ZKQ62j1?svV*s
zuTE#P2*r4lZ8L4}i1?{q+(7;V!pNLT8L$uoC=Zf7MwTMssxcs)muv%5;I&kM1x4!3
zdg3a_LlvApL_Z=g#@F<&n=o#tBh&HeFtKbG%5OD1<g#hfm%C#L$A1p}fU!G%B^@0A
z4U)k?Lz~Rt!&9IlBNOFP6COu2*?q8v-hb@!Shsu|m@JdZHGoHTM_@oeF8xaYI7Kkp
zSVFIWzF8e>$U&Q3-BQI`j~pQl4>q{ypAg23cPOv`KrpN8t<8dQ2S9^+dFfu}XT!ky
zn&81=U0HDi!4MFF=`5zY12AQhes6zaw-e(CebYSD?7syDSkLTcdXpV!Sryfa0t@>_
z`fAD@=u0U4<AoYhMv?I{vYqX1v+Ir}6%Nf9zaQ{jc+9$*mrdB0dX<xQH`7hnaF=ZV
z{mZaYd|uDEDP2w|wx+yCadswud^c`mIOKYF!y~Ls|2I6x^efay>lJSg{tt0j^2UPD
zx!b>^%9<D&u(kS!dZdEWm0bf0gqm1sIiR5*6a>G)<^DF7>aZ8^sY9WAkb*IZBf?6T
z1gzYc$5vN0X<t;PZjJ**HHm`5k+4Y2s&3yvO_`RZL@4vZvJz+chtSrp_z6^JhNLbS
za&|&#aQN=+nOgmDW8VSLa<hAYgqYZP=tpE<5?J-TCGdPau4A>`5b=x(CE{_B8=A67
zPE1Rqzieq~$u$U5*>`~IG+G+JJMSYho5&Ic_k5lLX7K3yJO1Dj0jmJu;%nUe^a2>I
zVr5R-4gb)tk_W(EW#&Tp6R<RR()wtP%j?F9i1%6AXow|cRN03y>Fqy)M(wLHZ}5Md
zxATB&QCc4kXd0Zra=0j*2G4L1P07o^Vj?0Mg|N%xVOiUtlNz4;am}pZ(nFsVL%5u>
z{(rmxT5?Kki1@vh8t;lHf$Cnj;x=TgtLE$niysI~HjRtG$iomJPUxDW(gb))Sj}>^
zOhCMsQo`l{Wdxg>6z?Mw@~BC%lV>?~`$cMvDAw2<cql)%bv5*G^KAwM_yu@%Jb1J)
zg5GxEskaP_&eroFq1XR{eV@V+Lh^u=nbmBm@o-{KcQDzj?agqFZ}=iynm#uu`}$Sf
zS<Skrh~c%V+Z~po`kehqw`7R7{2p23I?k#uQzMQuTOF>xkt+l_+&MUJXF=^M#Hupg
zbw@FTN9GqC$2$?Z_Fs>NB+iFeCha6?uq?0@5_@`;&d3>e$mFS+d{``h1>~zSA^ELX
znufh9PTCA-d&8w?$T=OGYMqpnwR5$96y`Bw(rXcm^k;>mFfY#6#L<sXYF6ln6o2p0
z-Xc{}O^-go%(r1qeAEJpKW#Fz(XTl!o2nxi98j~*9S#g+cbeK<cjq~<)}OCgXPpC;
zTnYKA2Z;p%K?dsOD%0sMN-;Wn<1=9R(q`t_018ZFGWaq4!>>9b0=Yz^CfLr-&U8FO
z@DI{z{`KQ$6^PC)_7xZ571KmkGc>>@egZ(*DS=os(4`&#(OmexotFLbMQ-GPcT;Q<
zSlS!t>hk*o?P&(-)1%mT4Y-1f)fd9xdHOS)tpgFpnoe73h^zrL3i<hQ^)-GmV&nA@
zz&1^{`lA-+9u5VJwX{-HFmZ7uLEH1yX6Wn2$Xc!(|AdYEz-c`}m0PR@5_wTNf9RUg
zpJg<~w`thMOvXx&ixUMv{i(q}g+Vb-W@Zu?x+cKO)zaEqb*o;a^|VERaEz$GhKXlx
zHCr6n4M6!!fqmIdSVQh_6t(kJCPUhY@<fNLK=Q&mfM-vGcZ9m>ZGbklLMwT(!9Gtb
zxyvmb4fSw#2Z@M}mMx!=0Ef?`J_W5_kC!lf1exc|XD6-1sZf}#c%EhxtzOH(6Il#?
zt_Jlm2{;*Bz@-(liOI<{vz!w^GnN)31`i}{#2k8lO|>!D9oIPAT#*hz=L4*ehF+n{
zp#!H7t)Yn5_#rX7Gqd_gm{*j*-<IlaC!LnKbklp2wWwaN@2SIIBh{{YV^C4FN%e|{
zhov>DjKdt3<sI*r9^kO?-*4@nh|g?1J2EqrT<gjqG=KL^7|R&t)z2SPn&0prTZReE
zkU?!Rmq$3j?CCTSB+J*V{>rDUOpeKiz{gMPD!7tA-R66COTyjcqo7dL4U?+7cV}Bw
z727&G-@Uw?THszcTGP0PKV7OqXz~lLI{m6S^jC0YKBaXRPK9Baw=R5oDr8fP_!bm3
zkExf&c_?B7<X?{&fe;c#*9*f2ubd_2nXU3xLoQ{~;^`0o=|8MOV=Ag@)w*%k*ebrT
zn$c{WzF5~dbfhbG-4_j0v)pcnqW=szn9Bk9$!$!2yb>>ec`YmhlHufC(X-rdPZYXC
z@hAb|!@>S?&iU&>50-9DACb3Kt=}9r&_#TOp0@bXK9b{p(h&G^nf}_JOh&-%^oc`Z
za~vk9o~e{?jeJ5;mY1xrbAzW;Tf41Q$HT*eE`cy8n;7(C4cCe|x)&lZ3E&m9R#P_r
zsm%pmJ}Tct7L&niVn<h$kHW)Rsy=YOI(P4Z##z8dUANs0!%1He!eWsT*JUp=FsGD-
zmbMs-i+zwqn38ZEK2R7@#R;%9rA;SUfbIKW4JS70lFMe;#rQ2k_9D<dDGhacl!yNY
zV-S0(K$@0B2d%jgmx5t}n&PBb!4$6mf_e~=%js8ERwk+=j7Fnc8haR;kB5RH@W;J}
z^@opd*ZgoDu|eGpS3SFd%7?lPnscBKQ@g=t#O>isb?MW;WD8O8JD)6R=(9}wPQj#^
z=bs9+IR?mQiw&@|t^@(uu#LZ9{O7#9yd2rKpHw9EM8;6Bp4b@1LuOmQtdy>lTv59$
zd?hPif0Q+wnq=6jupte>E8*;%S3mE-@n+?iMmf8%!zz^<#RM!+XaasXWvq9(O_`+g
zQEUCODK#5^U$L}A@?g6UeN0JDZ}CHiVTE3c>zX*><0azpQ5ezZJt3*+T6v?^d%<7r
zwh^rPh^l|X9ZX%J)_$OT_%L%p-pis7>1_acypTw=(DN$mDR+OJsGPxvAC5(*VYrT2
z^3Z{ZAKQ`G!_}VoPKLHtD~ed=Wix``6tHEPBoJR!De=p%YJD#=1yrfFfW<Is@n-;o
zpE|BvwVo1nTW$4JxJyY$$V)OcS*pLk-%U3IXz$Nq{GcjmWU;;7oCpg7TmOF^N3%YS
z&(&n~g6n=jLsU4nhns_bjRH~#`e?J_8Q$lssVm^<n5QkHsmiqP`4=E44u(e9!}8R7
zMm+Qcb2tBC!LPPrWWfzGu(Jmir43@(gvOfEsIv&W2f)g7h(~Au^HmWf)KKmB5)WXm
zk4H2y|8Vs_iA#58w#Unww75kxHX3p9>RXXOy`>&r`_q%h{SOhoS`wx2hOz5CvoMqw
z->AZ0L2e27o&<Bgi*8fG9msViP|Xwi1_o3>m<)U=kZ+ZH4`jelQBg^N8|J)x7`|V7
z--R4=m6Vxio!YXx&*3LNx0~E5>PQ^pA%U$pmN_7^jaS7$D)gg6nGES|dA4C=2FKy+
zy!)-lBbwY#5A%ne6L-&-9Bzl$2kC8u#M~9zUFTiyd#Ucf>%t|{yVOh7pW}~ODknwo
z*pJb@8G@Pvup6ZkkTz_hiauZDr9abJx4x9-CbLwY#fW#i92Yb<e<#;DkJveS$l9YZ
z-C3NhxsRP|eCn4<kaINZ^50nTG*JkYVE6+4Gky5?BzhA)JfR2bUtVof38?9f)R#~W
zq~f7`mJN<I(88}b;<FbQc9ocFpMN6*OveGqn?PO7!w|<A{>7)DAlUhLU>Z$*IZg4j
zv4(;Y*7GLF@B4#;gV2b`o9}Cof*o}Zld%yGx(m^q=#D0HL!NlwiJNe!8t5Rx%{ii!
zavX4-xfc-wK#yRlUl%RZVqC4i&$ZkC!c2HGKr%KEFzUT|2LmGoaSD*_bWVocv#ffN
zA=hlb*7dEBU{0t~sM=w%4ogh~wYMx2$>$E<Zgx22W@Pwe2-lFkubVlMb{%i#;^I=U
zwPh0IuqFVWl0z?gLoObk=J_9i6&0RU*I;P^08@~pu{&gcw?gS+`>hV?oW*kR5Z>i&
zv1VOq>4wJrjZlAHEk-xVJ>WvLm8_`T{WSoPN_}?e(5TsD0SbVK1(x?GWaADfdKE}l
zSJA6Zgx8w-X7>O_kHOe)%%@4538^gWRXrIg<sbESw}?f@`iGwn51|1sI)3l5h-t5l
znCadXfmS~o!*!Mn&|gG)0yLy=VCLyGYpW~OFCBn+&y*5^gY<O1Dlc=U#*J~YeIg|@
zCnsk>)2Z{yV0Sb%EDZ@<o-ACwyyx2h@z=`qKj`Xl)OO+fxsD^DclC@0w>7=cLD>~m
z8U}BB0q#oEAUU;y&wu(l;P+@<E1#x4PUt6%lrx-|N=#mwet;1FlLH4*_6;Vm##K|}
zTO4n4wwWh-@O`c?VOJ2=<{EXP_ujqPH0X^9$wuf&;}L_A#m@-mBQTTe)(eLJnI)<C
zt|v7#+sK<PyApmV4|hQhud(_OC3p`-umhq)iTHp#hhqG9S288pt_WR@K~`UMU`*5S
zDWRd$z1T)@tE!xY>&Rolfl>|jDMiSQd}?+#HnEbNh5#P2RXL@wzTT|w)+vqv&i($C
zs+Lugmx;JZ5(<l8?V^VRixHNwVqN&Msobm}2AEIlrisOiqJ+CVzOd&GcA}$&s#rUp
zR?}WDO!^kFMFc!XKS(}Z$A&e32l<Tc{M@p&w`IxXX6r>?@_56K=}OJC{`;|iWGDg2
z@*x#kn<<&gDJ&-jP8<l@NT(1tQEj{c2U2C&V;kW|WZUSt`bff?r!;gKK+6y3)9lCI
z`CV;tk4>&g%*suVpKr}F{bG*jn|c{(n@S&QQxUEiyo?;MFYq*VrluRt)5Ux#8nyW4
zv5UT?2g=$a1+4Z4PpjRm7OHbsNa^$VvMHiu^~CMY&oJNHlWle_f+y1)M;;+QQIZ5d
zgg4<nijN1sHcS47&;E=h(s)ZGvkViSGkC%La33>EJE+vTycqH0YfIF3_Z#9>q|^dR
z_7EBTW!WOk7V&_F#6pb_-nQq_Th?!#0zg+C8`!Z%Svy>k&$ep4%r&*0fSh%*%pH@E
zmpo_oG5O{sB#)u(sYFmVW9Fb70_Q6Z3*)#rY(t>pSX#%{;U?9KaV@IsfYHRnoFTv=
zW!KMZ+`=$EwY0APfOC*YhXu4$u|V5En`vNMkaY}QAuMd3T6J^dl(#=6t`KoTJe}#s
zuniyOdNg79U^ihC8>6UZ!i`ZMfH*N2f?PJaf%r3}urOz%+iGjYk)y#GZzhtwaum>)
z)GU)m`leF7SaVacVq>Zr{x_cA&PiVGG^DGqiuv{(@-LBh`?gB*DdNg;V(>>yO23(!
zC5j=iMO*!1XySI#Vp;4!=aKu=6}2GABT8c%5OH@87XE~;runQ@xn+8~#}{y)@Piu5
z_e1K@iAxiCQ3)KJCG7&*GM|No#h<p+{qubxq4xpP;0c}I+8!<W%^AO>jkc%7JX)R3
zZ*x0iS%WoO#csIuI=;pxyL>O~z76^}2`c7MhZbJD(PX2e0N)V&;QDg_0|ke;k49!J
z`g&>MK1KqTq~-g<klQ(bS=_UzwsTEA80}(jIxTpLnd;lUd5G(6>oaa*di9Cy`Ll*r
z#4q$0<)1YiFzb5qMunf;DJbk5>@x=^?auWwCC-X-klwl}dI>Sd8Sg686iDhY94K$a
zDLBUcloq=LdtdHolci8g_E?*9Z#$<(kv;}3gJs6I2808+t^bV?Mw}w+{XCVm)-Q&)
z9igX}>6DliEry5>sg~G5#KWXp%*)%2mI$?A;K(M767)DdL$_Ln9VL;(#>K&*x|}W3
zWpF)1{$DW7{{WmBj%e+k{+JXVeCU!CwwEIBU^A0RDe<fTOczScb_B36oq&Rzf|jLl
z=XPHp^KX{#kY}YgP7!7J=DR+ft%&Tl<2`124<Tguv=-|fnckEhANZv{KjcR0<tfc;
z#f<78#diO_UA1#{enj`)9#hRlallx@ZA(g{^O4|o-1g_5-YL=5)|1v)oj@Q)pewx;
zja?hHGQ@r_jiy(^w+^@7PZq{COs7=mstZiU?A}SXS;OS_^xagXEUJ(z)5`(GD(V!R
zgY5k(Fw{04HB{Op4$LNFZ`mad(fA^g9BJm~xxY+QnQtzak~;o85O>l)lo9t+7da*v
z_dR(veaFk+BsT6c@N0l|?E<GV(OZsE5Vqudg139{9=j5JHou2nX?=nFPRV<v#dwDk
zK0T;wY*S2Kp_~*<?|Sf6qYkqOe1N<j$f*K_udUuA0wt?St@`}RLY$z}O>TAQ_xL!~
z>{Q@uz04B6P1<U~L>EOrAJf_ovUGWCx8R<+1bAZSF~Mx3G(gq}wNORmrrb<n{vxto
z^Zo$y>syM^tTNr!h?`Pfvk4O^X$-6ci3ye+O#CI8mDt%a`;Hctt*>65Is!iIJ>3qu
z12I3wTM$+-H#T-YxUw4!H`w=0jIe8GrvDDDv)C2(e00iAWD%RPAM+MV{ygLLot}du
zlJDV6u)@I4Pt?8oc!4d59Dd?9PL)?0u!a3b&>Olhh0O0zg29;2e6~;Dy@5`F^czd}
z;XAmjY;k!=88Fb<`BX@c>+#vRM{1o#D;@D=-Ef%ea@TKvDo+t0)jx{?G9H9<HeCE~
ze>o=Z$xuE!U~YdpCgVN_<+o&`-`^4n%jh3xd}8?e`?$w%HVz5;fD#PJtY2r|xjQbE
zH{{?>9Qgw@D>Gd{%RmBSf*kTPJ)?)f%M)A1o5Fy(D82pPe6ui0YNcZW3Llny;LC&p
zDD)<)5K~53Ro*piyUX+B_<4Y`dqPHs(C`dIs_2x40h6$uM8soBD$=<J^>4y?kI{NS
zvT-ZiLSjZ(r`I>z&SOGAE2d@XL6-ltGu9!I$bQqownc2-WXD(S;uu%R%=<XoiHVnL
z*A#M|8xKmcZ%XJ0o*5GpL9p7lQHN6uzNg6lBkuM0EOJF7b>g0qSLm)GSJmK3_mea+
zqb%>B)KpPj35orS$M1vxmwfJd8$ev`ddXKIsxP|^Mr9Bkf%bcgNJK~~G7;BVouO9y
zFL;>m-|%qkXw#fE%Au#^9X=q2ZsiB4=T__|zki%5{<E_nKtu8IB(geu?PGU@=L77n
ztgbHSI*=IJ8Shp5y{U;?+kS-2;c|q1DuvVD|8NHiegZD4c#(rUSv0O(=l1F<M~b0E
zskZ6m;V^*GsuF*;5ixI!!1oMEn{C40OM;I89ceuA9gdxVtK#X^IDMz%et?C}w8$9F
zJx=vYJJ$kgouBl^&L_z3X;2tAFf8!1q%9j1xKKBih|BiNkodfAU+rNsoBPv&ud37p
zi?xqFVZ9881ZnjLdIfODK!-$d+PX`a1&_-{hKi9u_ZtL=8WoT)i3E(Zg834$t6I}@
znwg|J)z2j1@~Y%O4BlO%oal;SAVj*OGyz3m5gssBUrKQRVG%60h;k`p>Zo14NxBTO
zGWn+YTwUEfqwAgj)ohr}+1%FCaC-P&!)`|P)WTNeNCx3~C>TBm?<%c^X0QL|8h0vE
z$8(=>U2X|YXt<wdZ=p|TR%DC<Jwh^yWknViMR?3}!|LL6I+skkZiUmut<ikDKCuj0
zme19X+^zT2#}5YGtgE*rHtO4o_3Y44>WcU2iv}{v-lM5ybAf@I%daxwU^ai0$FjEY
z@uZq2O1_n&>GvizyJ@N70JL25`)Z-c**wdnp67JlK2)V_o~jmslfDPeRL?~9@pd_1
z-gED~uN3%2aBybTUR{J-PQ$cWeZORRT}d4eFyt(x<JQrZbVUm)$Di0mhD-%=NSeg<
zj&PUiAn5Ah|Jw2jNRi0JMtw>16^c!Xla?Wb*rG*(qC5T|z?VuIP_JIk<UY+KU6R|g
z>j0Zh(|zl}A*y+sS2_d4`ks*d{ud*E=S`Ep)-ACfODi%f^r={PNN(SJoqSovqs><U
zxAR+2tm5Zmxn%_>%PdoiNTZt#!A^jVr+oa<Old><*i$NgLI5cd7RV=e8Vlk_YOu^#
zk#*dgr3-x`Z9?mwMxiLWFRU62jBL0w#Qg9nFUr|8viR_5m(E#zaLN7)m*V3!Y+kJp
zPuQCd*1`Yq@4;2FauPBlC-fj)*!NetkmoHQ+1NDU)6Vq_@?>5nJJh%PexBmoSwrLj
z%5<9w8Z9=fRWG&b>&(49(D`#G4}GgaCU0wA`?>mzqP{f;AJ&Ht1DqS;3JPdAP_qBa
zDE422qrf4BUaRJ~P}y5ZL)cVe!`@6tk+C_x)>0oUCS_09-@H6L{)@(pfQonmSRK)j
zVhrPgtygC@=zZ^cDSnM8@1UobvDEkiU{^VnmCVZByY?dO!u6EOD$0|1Lpph+1>)86
z3$8WU{TVtM554m25`m_M9&Ov)4@R>L8aNLw*FR=+sxGgyOY;cMz0LIZ%0AOh9)un8
zh8rU%lTIP1dJ4IcxoXTegtyOd7BPnC+^-uAqH7)&qLAUI^d!rZ(T$>f;lCbHR3fgM
zC&Qiegk5HKN-Jjh>_+?SyzEVPpqt<A{>rY2_n<?Zf4oF0CN+yS@FhHN)|yb3&o_0i
zLiEsZCMAYqZ~IUzs;Y?sFfoxy#A37LvBHq)1Vd!)I%5rIZ3a3Gk-+8<-9I7QUd{?I
zk(TAyygvUTFRZm*jGjV?PDp@HV8CMk{#aFlg2^IhjJ3Nf*L#lJLC%b9`I1^&@)WP{
zY*}d<Y?VaxXim@}(PZEvdvOMr(Ydtah+T_)_8xB7<l&iNP~*<?X&?P^|E$(gqbSW!
zd}?IOo3^K&o#&bG+2Tc{q?k+;B>Y;CXZ<N~O33Hv2-0;*X9QJ$Ig0e5-_WceYG=ed
zpq#e~9+}^RE{up>z;fhB+Ifj7V8#1YTzPuyaz51c4utkx@9>sR>&~9eWM{q0eTqeP
zm3G(h(JE&D1!iStC&=pe^AnE|Zq_c9D*x{|V#xE0P@L@URpo3^zPn}b^m}L66_^O#
z7bdGkW6aj<jkS)Jy&kNcq1%qCu_fucVfUV_7RkA$#2%WscPOcgFR6tG3tV_rXw{bP
zw@w-<r2qBc{TX0O`~(Km`1M$5iNbqA6-9AN2Wy4!Djs9u`@r-hIaA2i(T5@jRXN4k
zhq5#Lpf#W1q%k4A5R}JFn~V1oEPS(tr}r@7c^Wy3K`;=q%CoV7GWb-xspWPAWOHf{
zk`G-^Eu|%QJlb?39fhl&>9ah;@bZ;~c@NyxE)6NN+WddC4p=|OHmzj&Q-WLt`$H=f
z0_w4et>>v-Pnf+p$V$*c8DUV1%Pzaalh|-$8MNw!ykL9;aFF?hibKowdoW#lZ{J+Y
z8P;IeX@rKHzAs$a=qWO4p;G)Yaj~78JC1{+_7+NaKrQF?XkIv#+d2L?0>40Au@lJ#
zPz=WY`bGJ;PV~3y@&EoHa7ZR+Z<6;;M;Op?FHtM;vvJhXs#p30io)x84SaU7wIwY%
zxsNtpclY;E2?+_br{kG#!|*wyU+#pLp125(0-BJlqd#WgXO@@Caj5r7$t&NUEDsC}
zNWd3}hvAC0J?Xn{ihW)q8j)Fx;eRn8cI$lua_IG4JKB?e?tC0@(RceEu!oZvpwB(y
z*!k?LHO%o{(M}`~c7Kl+uR4;bp6YhvmO<`Y!L~~6W5j8Z{SO3HI-tttSKs#=H-4KA
zQ+RW7iX&&z1XhToU-Cq?n^N5RDz$Vs{Dq7Ba!p0c2(46U<F&XcVg6nlbI+^$bpH3x
zw5ZhdL^1E@T7PI=$FO=^3vprcvE1uby6GBI-if!#UU^=dzoR?m0~$rH^SYnC&0-=5
zKMR7G_}d}aO%BhtFK;zW23Y+!@LFGE$ye|FrG<G~+`m4vcUd`2OD78d)}rWH-a8rF
z*3}G3i*nu@V~b69jBb8fRBVbY-Ed~L1|{26W<LqN)76#LxEmm~bHT#$bJ6Qlw5R?d
zHP15UWzJLs_`&{odi*{tPV_h~bQRjnzWNm2s}0r#<FH*s8>8~2kNmQjJt4=h?fil0
z-c!4>y<t-mgMy_N?8nQaRZYI1ms(u&9@W=pJ=tbB3(oUpMin{XnHc#ybju!&D<Jdq
zVP?6^Y0?A|x3+RbkSJ9<MhBkSW0~^II)4NoB{@0eiB1>V@co^@^MK5gIfcqKKKL(z
zNJ!s?jQnf4S8QyY$b0~2VK6N_9EEX=3pRJ%+!ILu@ut<`e%o)$M6sCj`gGNAq2}_p
za*<Q?gj%L&Z91ntD?sz&c6Ryx5stjRK+W5f^`qP;;;bT4Q%f&6FMsRGGHL-p@cD?C
zm~7gy`KJUI*h$fP0(Xh?(&XeimyB`Qt%jee`bY|ZOy=lz2af{4?f#`l0poF2MjYAn
zUdbyFJAHZF%Qj+ei@2nUN*5yFei*Vn^C2(Yty`@fx(Y&N!n_21KsM8ifT1u+zezQ1
z_fNdq4YtX_=5n58y0}8jk?fe7A4#RAq3*urR0TkjtjcJT!a~O2Lnei*@$*=_BcHpp
zbZTd#PG{BWA?`$4_59_fvqYVrDKiNAsbVjaxp>MIJezD2f$&VoK`A9~!SJ&snkK0u
zX8(W2);QF5-T+KGkKWI*e0+QgE`Zn^WbEYVn0r{-B(nt4pzqcP*%reUsgz_bEor$L
z<dG-jObz+Np>K^)1{FL%Kj(7bI+o|=@fjK$qot%O&o$UnXagLz9g?7+;MV>=mFP@i
z%Gii(MsZf?OK=gY;{q=69KYJojni#r6ZsO^QNTh!&!sGhstJ3EjL2g=FhEB(x5e+N
zCxZy03@AoO^gM0NM5#K~7rJ_c)0e3?dneJXR_1Q7NOmtKlS<6u`aiHMSOr+ov=zm*
znC)XJ+=YH`j||e-E+I1j8cvCImK|=lo04id3J*fQWAbBW74K(X%vte|Xea#NaNmiF
zMA<x!8iLqfUqLe!4%b%`?3}0Pk!i+QhVSvIyO*7tUuwund|(MXRyyR<qLB7yW`*9+
zBha@a*GD_<Pqu>l-EX=lHf24uh9)>D^Tj@TTz*vz3bdKFp>y~az6s3_1;@w7)<iIk
zn}Lcm!bI*rV$gRJqbc7tpw7!`$oNb2He6rR%F`!=jn8zg<^Xr)C!q%@9OL^Ziew_a
ziP@Px_nY?<(em=&u6hq|_plT1^N&j=oXd1Fg_O|BYAV803ag(pVjX!89cl`GYvXYb
zSyYu4O#<pfC|7s)qMRi&At}(`xRJH*XxJavqR&#@y4$0a==n&0@1}q9bCGlVqr^c&
zR^kdC^PoH>KochGMSHM4M7C?KG6{>?{nwziEk=bV^MylVvky6PW9#Y)f1eMZD4qI{
zlN%2<5Z;9mEj=;t{m<W7Sqc|dpj<!!Y(y}P$KM)wl-JxW6u)VIy)*I%3uzo$=V(FQ
zp}f%3^GEB;28`@&adG4dmt3|aiZ}b)$Ml34!zFQLy#<Uag9QcmdB2SZoC-Z2Z&;Hz
z!;&1EEZMhD^7_?OgyOc194v1!50-d;AX(r00YIW49E?+>;E~eSN2nbafjXg}EGc-q
z0ePNwZo3_xdq#U@qk!Vw&5e&x>twMhDaCT<4Ij|gW-C6lx$rpt?=Q<A;JZaG1e4EZ
z!EmKj(e`-0isFyFBe<lr`9kvHYD$()WOVRaY(~|Dw)J$eE&^DJrK<wgpIO(dCQOxP
zwp>S&*f7mvK);q-+}RNUwZ%@I&1zb}7^Z&`f0VYN6GLIy?x<I4jXuM=*z|4nV^zG_
zhx5y`y1|CC0rYvQup}t!;RX0O^2@JM?#tlj+Jl-O&A}H6R!NduTEy1B3*`{|0D-up
zgPn>x=I-#;LaEGrfrJJ@`i-DQbB$=FVuYf+HD<%(o#L$257Vi@j0XD%?8G06PVzd(
zul#<czrMztc%<MX);1K3eq?QnB+jtU|Lmccz!EaO=!j&2+G%1rlM?Ho@M3i^J)jF8
zZ%f?b9yl?cIia5bF$BZO!>e6$c(lx|6|xxI&p+LGoN6^=_GM*0bbn*xQ+J=U;%w>l
z>#Mww>9Ys8cv;jy>^5#=_h+Xv5{$?)3V++<3bH=l!2+_q0~oH$3U2WFnUoNJY4rEm
zeeA#&t0Tm%Jv{y896>Yj^duO|LaAYEZxi#Nz%tNZsR@9KaQ(kxBW<*WgbV*<dkt&c
z`^LxUkdA<(g#|@<*C<+K#P{goV;fC*0BW<KDERHCn$#ecI7DuaVer_4yu#UgXJhyC
zL<0RiV&SZAXFrDq?w{s_*n6ZRLj>I#(I^NA6g%~I9>GDdSzUn<LvEmmUT1jaaHp4-
zl?4|Rm@cR{;_~uQE@x#4AUFE>^oqA{J!{;|m%b+73<NSTLGKh@%y8@x&1O%6w;jU*
zot!!&-w5qI6+2L4uJUp_9*dH%9~@CRZ5N;ohg<8)lA0__%4j!6wPXvzr?Z6j{nU2n
z>JKC->V60)1O}yC-o4;f&VN>M{N<YrVknK~&8llrd@hGCTvQw6$SFxpfO|r}#h0M4
zuo?fcxk^Q%wdl7Un4^Fe<$(kz5TP0#l(7S{hTFnSRcGB<-zfO1FS}taIU+GNSxXYA
zfV42!n&GM*ppND66wkroMWqg-=?ZpKYAmjo6Rok2b8!)ThsBQk!76T7yC`8I2&eAL
z>?Yw`@riXSi-OlXv+0{^`{!ES7uCbYM%djgv)9{ZCt*$o(zwYO{eU1Y&8JcH#Se9d
zBB;+l2Axpkb^F)0G%g=3U$2{3WXR;}f7bX%#wZG0+IT7_5B?d^fA-l#4!;s>h1Xef
zeoPrQhk8O0{n$QXb=;_}!L1o}aG<CF^{uFw$<>5q2j-MtKu{3Ejw2{O0-sj~2gfxj
z=6a6lxw{lLe8bIR3>XO7GWcJ4fHf}Hn!86Ur?OrxAz|+E!`Ig2HA!}x7yewuRP*B<
z71D9t`$LsD?Ok;%Vr%UVrD$=aG~cZ~U`IdHG4){*`W2Vh%gFW^2L8Ze$mnm)F<nHv
z>|*?&gy(-rm3B^pove=YB|X>`1ZNcY>sIe|yvX~6f6g7hOaF-qm=#zgM)1HUlyp^_
zk#;+mDptFkn}?8i5Q_1EGf-4Ymo$oa4~jn^qh_7f>U;fZ)~_S*IZ57io7RE8MPq0g
zSUxw){m|ppWeZO#<4U%e9qs}aJa=3MPI-h~uyI!LW}M};x~MuvM^^;vIg^P7b#B`t
zj1m%LTElBg@5E}OE>UNRi9meMEkq=s!_=i|t-IlWSUvlzB#Y7a0ai=ReeA(lMO@v(
zquHTOu%gDNA)K7Ksk*vX0<4!mZ-)^8aCk!1+n=miXO{LRZ*!dkYORaP`p$QV-`u9N
z1jM+q3GJqybDLd8jhL8E(r(vts_TNPor}xnvWgF`zN&;s%cOjONN<;cnl<nQ*|CMt
zMX5$AUZVK5js^s6enV&xruTYHk=SZ6J`V)igL|Pji0hY;RI>y7*~b8cJXHVE7gxte
zYvV$CT9j~-y=)PG7-H7H)sS>HpS4Dd_Hfuf;&hnd{q@SoHPOs}7UkRgBZGpgSw-tz
zO5aH5n<`2izjg9fG*VXMvl<I$#Wt_y{R=q19F+C-z|zdTG@X1$c@-66{MGjgOJ@rf
ztETt6%#+hhetvHOlut~IUYq;&UPD^!eMD5}ZsSgy@rX<(L|#*c!Q;dSbQlC@&P!nt
z6eR{VMnAyA1Q!V##t{`zj*3&$)f_wN&bm;yJ#7h6d03M|VLHjADJknbc91L2g6G$;
zej6pETh0lqXuJ*o%TWNRyFidJ6tcgyo1A_I9?Pf=zgtz6&NBxS{L9)S4_$Jab}<!`
zH~Y(WQI+E&nG{&lWS|;NrbtNhSef9mA$VhBL&-6u%7{0F<o;P9E?Xqbz*D6}i4WXw
z8Ajo(hZaYyQ_8Fk-x9Z{ejRWbpWZr6kt?8)4uQ%J^S_ta|4Rw8#=l|JDUrD=#v(lI
zaWrXk0W1wlg0DYc%~4}?n!r>TQDmsy9<Ix83MHkdmtA*7A&9TJs8oJ-p;-M$w=x%`
z(`#wsyz`1A79)?eZfc^rc4Q8+I>M;;VnKsFnGf8!QRC`%+MiLyBc`~n$E*vFO~5cy
zKmOiTbJr03XDq#H8v{+<0?VIe&h^pXc?L0O*8noK@#=u04(S91tX<2Q2=b>6V=L_}
zBy9^PX4d#rOI!<FuaBQD(9~BVi9i=5=O$fKW!fz>Lk_epi;g)dG4Vog87dGfOCqBj
zLOZiy`m^ZepZ&|-Q%lTuX-}_bb@Qy38_k}9*>?(%W!E?ukl3`|6KH>~ZNuO*XtJm$
z*xgQCHE3vfCv=DZv1bfqHx+`4%L09%lIFz9j*VZPiePy?G0g;ncu?S2cQ%!7@iPtB
ze*AJeUaVY;Dj_?TD;naJ00T81!E26rEG|C7L6bdyzPYa-2z~k5K`9SV>{B9rJ?F{&
zEsxlo=zh9b)L-Wf3{)IVI3H$)i>|s)8fgwB#lrEax|a=VQh?16*oj+Qx)IdB-cR34
z@wKz{E{qQ!l%?)GUX0sG|64Hpx1;ZWeqd#X*mGa}?3`z^NCee?9l+=LVA}IQ$8<ef
zpz%)Ius@PmgPLV(^7<O^8_`fN(`l)$55C%)5EiAPpb!tS-|9sDG9;BdNPYRaFgsg3
z#xGSkHKwDs#xWoz%d#XtMpm3oNA*+QxE9eVJAVW&6Ys$-@~O@Gnx-mIiucJM1#6MY
zE~&}r?1jGb%<=nDtlb~5^5+dmV3~gKeq-<I!==8up^1$wJMV4gk})<;a=h2Ks-F+b
zdmATYbzi`$c8nZ~S7$#TirqGIMUDHkWZML+v@{Vb6{D+<f?9=ZI7m>w3ct6aInutZ
zis#+G>8q|U32N~>4n($`u`*4&w$MwpHs#M(RX5A}KvUaKzPH-}V{9?vd=ffyaoSkr
z^{vKF_!-$SCpXcX;#(-hTk{tcGr!buR!8aVi6?i=<*VQ${bjmk`!UuL`DT@Gyf}+>
zL|{VZ?=Bid;L;*goK@GpnTITm^M^YOqQ(3fXQbeX4Zt!ADv=1DQi@w3uaFvd+VX6z
z!(o6d!8GutO5BfYP4aK|2w2FSnTbO~M^7%{KMDH(<V61U8fO@xnA&#k0_wa;Aj}pH
z(uAL%AJ{dG(Vz73d6UF!1Ycue;)GjLT3QP_ZUAf%_IvScFgnX1DpOlf-ep+<o6&Hd
zZf<Up8)Df}`UWFeEZ1my2(nj!jHcrs;gOJ3L?;Qp<W?-3NJ<8)^a3Zqo3h!Bu+@Gz
zfvcy<r38u7r={Ajn!)c6L?fg<V^`Xa{kSNSq7^UQbl4Bv4kqbij}C3UWct61KQy{;
zEN_|GVCw#W`7uRjuxn<7-@pjv0m(ga6sR*J(vWSkD)y}fW^kaL?tU#^`C6u!l3gm^
z9mXMJ@wFys?IQsShU8vdE);A^9F1q4SJzf`VNu~;nQp>dioSK@Jugz`Rf@O{DHbw=
z`dFPO3U93`9dTPG@%}iy`UjH5K>k<1tRLYC9_{%hClG#{f#&{2U3tqQ$HF6}(>mV|
zUt8L$Wil<FT90Er=8gsr86LFGR*<(&j`O~b4fKSaCGkBktGJ!T#A$d*g?U_^Gh1=*
z3;K}^3=Msixo)}j&bY9vigcRHA-;<69*!CvKj3<LZrSUA*&S!#ZxegH^=4739l7ic
zbFX=#AZ!zSYQg)O%3T)|7$P;|C-RlR{`SN`<8`waG2`WVq>PMtcdRYA^cRO3O<lOd
zAvn=X`<}r~iGv#k%Eh9`*O%|=$-d6?)Q?m=riNMM<|Hh;OMLj`2<Wt~ULKLZ^jRvy
z&9a${s%cz2BV6rwiYq&n*o*2g$K@s0jolD<*q2;9Flz}zNBfy%6h}854?Psx;rxw1
zK_K(F&Yqs0#^mBo!~E+v|3gglSG|%VtUwbO)T5~=W~z@@e<9Ewnq68B<U11M)6`LZ
z#(uBBSmGQ2R`pRk15|)BBBO=xNfrPp)g+*v&gpmS^oOfNdb2L~4e(5;Stw-YOZSGf
zKrYVpMfIc15{3eXi%EO?w3ss40ML$uT|Vj)m3&hPjxna8f`Tzx0F-}ZT@gDk=cYu6
zIeVLXjHsLD(dS05X~fD`VA9*~TI7#5=v2l!WeCm1ccR062}5I`UloToNzhQWG&vP`
z)%ai%^}3U)NJ&=PYrC9P4hPo^{oMOCw>6=I>?W4nM@)5y&t*N7_vP${#i5Jkbii$$
z$!{;Mt}Vv)>M>%dF|FeHK3}hp@eiAKFwLfbM}OXqbpFD^-<)Zb7EbH_`mS;Fy3D9>
zY)`_!OG#aDkf|Z7ITk<FyiEuE{PFo2PgZVgtwMqJc$P`cAfR$Atx+329&5)~LF4J$
z0Segfhyd}by^jWV<EVDy8-_o%V(wno<hCki5Yhi(>?@$M+_tV2QA)a{ySp3d?k*AO
z?oJVq2I=nZ?hxsE>F(}&X%PR%^WSrh_q(3^eU5hw9~}5TwfEX{&o$RvKfJE#-S=t)
zwmc{S#WNb0dXh}F2E#--tJc$#`my%JylH8s)1k{`;<(rL>KCY!44?w)3MNTL^>R=E
zb9_>MnH0>B!T8y>lWbvSWpv|oG^yO=cwyP`@KJIji;%$Hj%n<;K{g(0p-itPM$dEn
z2y$hLDUv|G;L|5oSomW>Ik|{Skorj!xS_^^W;gf;j;iW3Mwb<vNh8y@k-O@u?^}NE
zsvBOJF0Q?;{P%kl(;_?q-!FykPj@3@YHIwN;hwXJj24DI6Qibl-Xx`+;ZRST8=?Fz
zhS<2FGD`)wW1u-?q;|D((eQ~XCK~p-qEfR@E#KdN`{9k}zsu@%uplfN9?AG?-cY)B
zl2S`V=7enU78kQB=|^TUhifJcO7~M<;HBymvEJmS7XHi4pnH@+)zHQkdG-C-TJ{}}
zG2nw>^zgVPT-~0NlcR&!d5_HhLll%DicV%^XzP+!-3nn&!{3qI?H@VHuV*;SkXs*d
z&3wFZD7yW!$B>$)fZb{_Dzt+EJwI1*>4L3#^-og+vUYWq_*kU^KPJOsB%bQePC>1?
zX!ht=V3ZgtLS~@|_0)8-!=^eg=IR~w08L?ADdrEb*8ICEC-qREd2XcKaS<n73`%@O
zeWJ_h;!giv?~mqmIn|78=QfY1&<qZ)M()Wf^c^muAF;RIJ8K(4$MnIukC0&Du(-T!
zz~w+{dV{6Kzb0nQGW(#K`kZe}g#1GhuFpzqNnvAStXjni)vTOY#1TmtjNF*2Iy`bq
z3Hk)0K;rBYP<%zyzUms2k^<-TQ0AsnTDSJ_?BW&t0o7vG<d-k@fFE_7QF*zXisE~e
zRU+P8qK_#lICy`!9gMVWiHL~}dX^sB{SqbqF@9)q_|?-{-JhSIL#ppI3jv`FkUq*l
zSE0}ruZacj*K&?#uQ?La(1f<%?chks%QvXX0H%0ZaWv}YUV^Q~BA~d9!0`}t8uM_o
z8j?|73y5&!khY6&L$#*M2`ZXo)=$B{v$72C^t3d&st*S)cV1TeCAH^kuc(>g`%}EH
zbbT9p#4G5$!l}1p<sD?hg3nj)w($n(2I7*ObcO5WQnl3a4$n(^!bLwdAAFFziW}+z
z-wHFx@l95`C+JTFaH_!-y!0>VhL=N+4MgJ5whH*sc3pY&?Q!hm-7Jns%{yKXj$<8F
zZ5^}az9-oZ$>%nTdi86%EagsZI}+L*=`;KHy>qwUOfY&5+rLMOYGwF_UPPYq)AaOG
zzY9*6C&$kVh#XO#H)-9O=<;;G${(U+;nKS_!5}H=#i&T@*SWprr5+wo=~222vsk+8
zQ{t}n@*i$+8hJU7eR(<M?dZCwb<7ue6Z_;9;LY)4>XE*623#d)fjRlPpXZczynJ&)
z+QTe+86M|)V(Bm)6TxvO<!lc{=>3%o)CU52xdJweVfw`@c(-ri4C4`a;@z^|;M2FN
z>fcWk_VXj|I{i;4sy<K^<H)AMuYVn?pv{h<a4<}||4~G3Y_h9tY@F`=9ZC976x4X_
zf!Uf@r+#cZI!d1j<PF8N8}O$VgwIMb`F6L^#^i_C4^pN>FpqvD6-$AQ+E+jGSi~(3
z+MXRrSg#8kDUQzkfUOE8Q`fdq(bLdK3>gGpY!A^*r2g9o<Me^-3LGT{MIalR*rFgB
zax3<&e4rFMy3C!Bv*s5{Jrd4JkfRW9NXC;=;dVS@Jz#dF4tSj^llCA-c=$9Gx5h%~
zjH7IFo}~w!5-v2nr1m*E{G#(_A-1fgyGmO+r|m@3gNXePONi+*-j;?N3IMd)pJGY8
zLIfi)BRx;p#!!${i@+5QFF2?}&Pdq=N}@Lmrj&^`I~51#95g<cOcsUTT9)sWjGDIt
zeh>wEvogdUMEdj+aygHrH5T=Qk%^wz*sV(gdc0U>r-p<S1oHM5*MJ=aY`c1R)>$w~
z(a;<b8oMV#!0Y7Fzy$EuZ|OhFH?7;8zIgT{BXS$a=BYpzsPaP&!@y8b@vrcf4`#6J
zGGCnA%`V*CyANKLYJPz31K5rIK^g{hM5{n0dwXUwGBQP1*G6`4N5|S*JqH<Shkqlp
z|J339j|ps=2ANr6KH218vIyG+=P5fnI=Z#JO}3=7^l5A$9nf@AF)&ob57k_;0`dUp
zpitY4D%6u~z*C}&i(DL)ReQD}u6GV7Scx?#0ZM+>@s$lr7DVHMaD<^}K3>c?MyJ#3
zp)Hidxiz{fsl6x9+sRe@YW7vz;a!lfHV^DMVwPNc8s+sC6L(U=%#yIJ4?HO&*e}7X
zbDPERn1Z}V!Oe^*Kol`^E!~UK`czGdzqP@SPj_j0t@Sm18nL@#?>Q$CzaB$c2Ixu^
zN>oJgmMkHJDRMm8%Jys`coD?tn!;`sVBzQjd(5Y>@){(;EjA#2gA6%`sqDMfq+X$L
zFwdg#*hZDp-5s;>K6P{A`Mr*=iE{7J+<2scK{LuH=oF6A1|+Ll4*Ab<9ybUDnVHYd
zZ|39VQu{LjQZp1PdKfWeY8Jx?$v-H_CHJRL!=)`8i7^+Be?Ub;!#+R1dWq#g>VWmT
z6SlzhjFC#TN9&5SA8H2is-Htqb9QV*J9lC+&Co$v1?;)zHc%<~1uUuu0CgnCrQ(pg
ze`AgGMFsgx3k66bUTo+&iQz)cxW7UDc&{fnn*O8`g+YTG($-H=Sg==<%>1EYu-1R>
z?v?c@bdTnM<Av|t^O5qLoxxglz*e6pMiKf;fJc=pR(W;lTy{sSZpUCfVDNz=*V|+N
z9oD4aiEqE(r9+{6dUHUrk!%x8o0{xkfck0E0oe(EK|Vk2lWXIk2GvkW_lq0ATQAI+
z`ja027r+Q5s;W|hTRveMQ=-5$;|ys&A#F~#XTC3`n0oj)J3t>BVcPZ`Jp(PV>gnwP
zUG-3UO$AE%EZNq4(+l*pVdB0IMHpb`qe<CO%!rXZt~-^)Wct)BmVUO*$kgwx{Ur|K
zNvmp}K2$PXRJ~=f29{9jnEMy6iCD{_5PQ@@p^S#)I_H};Hr<El)CYA9D`RBT)Y>(C
zq)-pNtuK6ISlUep2{LZZ)3Urg1Yn`hP#}&Ym<d*C6au06$45s-G)up8NfOm6hJ`}0
zyw|Zk((rSA#-e<=OI?9e4uS@%;Ny*<gM)*az3K%jtrL^YF-$V7-ocv@AR`l%^z`<!
z=W@^fqBr~>GwjdMHkJ*&HzGCaYyjjA>C|sM>oNO|am3dQkoY-HLYnI7Agt5*>#ISD
zP*qh$DB3^Lf9M0`K)Lby(TOBd8wa~DJeHlQH^eIwyBOWZ1~&FiukQw^3LNoYSBt!F
zbp>LGGHJFgzki%iZ&$d<gRAlaQCutGc)ZA?^GLmL_EvY%E%^eNhyCGnu+4wg`9f&T
zOXGiph|Vv*dS_uMWbSGoO`NQY&zi#1+UC@tA<V(n{8rsAT#eL=u!SDQ#m4F>$@OQj
zj1MoTw%Dv)2sx>SEcn_)rOIk;-^I7QNux(Zj~GaF>8da$sxP}Et|&u-P*)FbO0_Pi
zfU>i%vsD)}HTBW*AeyqK*-@eU)Q#~rfuXOSx}lvuw7vipi9tP>>jMWCbllZ*h;x?h
zoHi#OPO*|3gnI`^N7DBfgw9iTQ7tW!*Tk!<s~N;3BxcLaPKC}hegPnp@F<=?ANQYP
z<Nq1={5p{RcF_1A?(e@e!gc@Q<S01RByQ7ulSU>hWM?}>eScK6m@-w*#^!$gaJ=!#
zb~6AZ>NbCQ6!x}kUrBpJ2eb8t<fS8m#e^pTF3w7>^HSjz@@J3JkU&|j&jtv51k;tx
zYITI3YR~EIY2DRWe<gqY;DiMk40~U<rt%HUuZbA-+7lV^i+=wG<Wtm8j4*dhQAL_0
zIWbZ`eRHs`atr!$eeAV=F$DF8#suv6<B6|Om&Zn{&YS`}K$-=z1)9YqA|Eg(5&jl*
zlRr0yTI=KUarhJ+TZoKod!nc@yNgt`*_6dnqqa05MVs`&50!b)f&B;BQkd>1g<0u{
z-JKm-pki)9@y$sO;ICf2nqremiJKyAc6E?ez0x1;W$43_ADIoi?)f+_K4j=ku&Ycg
zAbMoE!_fEjgrPBg)q9bCl0>XqWBA+j^w5rLy0_of)&@2H0Uff?vH8J_4W(P%p~R>)
ze(h6BfW2IQ1+!`hugd|GEm|Hf4<UF+Dx|QqP$8bHsaeq|AbRk^ffTNhl|(SplFqz-
zv_Tc&eJj5TG}KXJBd1q<n2C`QTgqOO+HUIC{{xwxsty5|c~&&KF_Mqj!_*?n704p)
z;Izrw_}De5aC9-8l(aIc_gON$cEPV>_xtJp2Si=kTcFU+Tzw7q-^e;RssG}~fP&b`
zwZPSXu|mY8VnCZk(C|dK%k!7LlbUrb@%pDvF|6K?&#2_&<U!H&z31me)#<>-$+mFq
z@KExn&=wm-R#Y@^Ykys;#kp^gyO6`%6LDVN%`Je|#nCZyBn4QohOul8XH>Xt*Pb;s
zHX<z{#hzh*T$NfsDBW?|5XnE999m3cW^u6C1{}<7Am-GZ@_jn$Nu}eh+*VQhqzx!m
zs!u(HfNs0V&y47XYky2AEtnOsOtz(sI>sZUO_-UPbqFPO3BrA%i-JUvfS89ibV2Dm
zZ|`{^ABr~|cpCMH_3$ENn78b6PJc1MH{?;DVYr;)kpaffBPjSr!m8H$PF0oRkZM~z
zLgi+0H9P!9*>1(8cC8*1lQSu%`qE8B**-mNN1tn&r{fxE>9w*XVS;dy{j7=yu_J5;
zi5dFs-6Q-B^m<Jwgh=bR1u3H-7wET*;eh4|U4`@GGicxc{^>M=sboQi&R__Ic|~aJ
zfK*7$E6wn9$Wd-qJuSLhUbLd1VsBATqE^p{AL9IA;onBk>aqBz7l0N{kN;u`d|9}Y
zy7tR!b&0j@ACFKWpHplDX4;IGyFzgwpkI^u2?rq{cOVHqgZ%3wM)4ejBZHntwnoWB
zx#ny~XIVuynkd?kJy~+Mf}&)ZdPsS5;!~eV!Yt|Q=kDfKHHuzdp{{iyFKwJ^4J9Mc
zc!A!^ZF=IgfqJc+K~mBdl;q?(WdxX*L?S~lQw!#(LfiDzwB}itm%#=>QOst2D>=(2
z)^({gV&Xw1->Wz|DJdn|OVwzMOibY9LB|u5jygKI<^`86K0l}qjvV{>U0bEvClDJz
zV8w~{?H5;lKd$+G3<<VrHKpmU*rp~Fgs<Yr(6BQ^G(**5%IYL{4zFIphDQ`ER13j|
z%0=O4$x>lY<gj@7TQ|5wl?+iO?yK6&^OAq6lI=vnV5+C^9ryn)FQpTUVr*t(e!xCV
zelsNKG$A&2%Ase55w`(SNm+S&DI}CnyDDNa*ua4B8N`2nI8vWg^zLTz*{8lc8qwea
z{=x_~lIR_7>D_yD+&Z}aoZ|GvZSR8E%BWNTPUte!l<(H1k1YFAf$Ig;;0Cs5I>C3}
z43BIL(I6eU<E23OK5c@7A?%RUftAtdBL2$X4*<2QdOGSB1!19JE*<OE_V3jDzP`TC
zAHcOVy}78HsKmxrYr46yo@qz|H&mG5sL(hDuM?nzKkujI94GFAajy(7;6G4Y%&XTf
zZZNjLzh9jKxco)$ofJR#p4}BkXF>e8LHnA@Z=Bw9N0%;$8rWcWZGsiPitzmBbNK)N
zlH=bA7zpeEz6L5l3o<rB43!plcRp@Ja`&AOTEQK{LtPX;2dx41h|~gj?S_*{^6AD3
z!KRM;knr8T{H`vcx_0&rs{*>FM^~>0)d{%*ht8))C=7-cU3~Hd{JOjLY!gk8xXviC
z^`~=T!eJC<Z*u>n|2E+|u}B#g0zksyQ$B?_A|C&A*@U(vFsVE)5kS?M^%l|?$A5bs
z|2kbK5~{ul8xlVvlL{-;Z^p&XQ`vrifqeN=QBras91qeR>N(Q0|Luci4*`57ml7-V
zKYb+$Om}au62N+e<3ilO`rp0}I3bn+1h8u6!okCTA3$md-RULt+u1SR!2E}oz9a$B
zDvAxoPtA}s?y4$WTxgMRE%1U&t|Q>lk^5qHf8ZT~AgXa`w3)Ig>wdWLd^;8C$7b$D
zqlZ^D0i4G+j9=tzNH_BuSAgxQa^*sLTb<rQL8-Rb*Yoi$XXj|SuyK71=Z&~({ZP}E
zl%q1I33`71FDFeV=&EWn%KG}x=-%=BV=#<n1qP}yzkvsAl_>Sd-7m+ri)t^4t>zdr
zF5U5_gWYWV2PE^>^drLu3`uL|Nhc3yJ&s<#YO|yu77BY8>#$r{$cT&>^}VONdwgpk
zhKi3b&5|9*$<eXjxu&|Bl7%G(C?+<1W1}wCX;2k4ZQjPbNmLmU78YB^%Fd4P)<Sqy
z#ME?dj3Wf&?Jq&}uW0($K{?>bZ*hpexB~s{^XJb*hclM!G2Z=J!ovSJ&KO~#bLpBA
z-bl;CGF1m(J|_=JZ`XoO&gq}gp_{ya#^MBH=U{MRUQEX+gC~o*U8sy{6}^9JCSACA
zOq^D^U#&fWWO{BcpJbr#N}1F}i<XowB&SVLQfCyMMU(!K_@J<fRz6?A=hWQIbHgH~
zX!0cU<40I(`gV!KnUS2mJ;vf9Gt!2Zl#mc!z2X-y!i6fAXs#o|UdMIq^n^MDtkwGq
z(Y<v%a`mfy-{N$bKj3`iTtJHm%{b=wqG0cYj>gC*2vJ>8PcI!wCMEA#b5_>d2nwL#
z0^qDpvFZBae;tf|<8r=fJGYV7Zw);E@e$dwL6+8$p}k2EtG~Br)-<40Xyq*2ufz(G
z7)04HE}#rmN>Q8K$j64uNW&}JI<b$k@sN7S=b?^4{2^$Xyp^A)C?_j;fjZ!`maB(c
zzh+V5Kn{_he3=zH;1`&Af3LRwy(z-r!?(QI{WX1-s>Y_WGGX_R^mJueiHWv#-a0yv
z+dFdkGio?oxN_8J5c|NI*2PoXCub&3<pPU1H9o#>?sK%w1*~YU!3ftEDmq$P)R5C{
z5Ega9B7Y5xe>~8SMLCm}lDcTj#?E`uUHMPH*NgdFFC6sNV~ew+xus>Ar0>qCN~0Xs
zH$%?So_ujX{_643NhtK_qyfJE7@63F>~dzC$-Q?zW!Fr;>Wa_U)0z*xts!zLO*gw^
zh24qUXMcPi1d8N5v3Kju-l7p-y=J%3qt71~20AiCt4Hfq#M})B3j18m2ewH7D^Fra
zBb3CyR-O|;OA-rs!vMx0amQ=NgV3bp<gm|M`gm^QrW^T7E-xMD0maSND>hb{x|lEI
z@XAA`7=PoA-`wAt6m)Dtf^P6Ud`%Ls+eOqB9yYe*1{Kmjgd-r@h7mw$5wU=%X&GZ7
z!pRRD=K^Azf_CypvL^18%uOv+C`PvF8?;-S3yaz$cY*=~mDJTS^YVJ4M~o@1bB`RG
zP4_2ss3{9GlatA*h5^fGikf+mdJ=Ie;(n39O8xz$yA==hNty~zN?zWE{_8mhz+Vo|
zbg}+L^~zGyWbW+la!aI?2ZoqK<8HcYHGUr)9L*h}u$)}+ET;zLs8j4YE1RYf54o~0
zE`>*svCRbU$<7WpGGc*djj<#MWHOqHjGwE$52U!I!2cI`SV-Op0<@<1(*($`{&8Jt
zgH+oo&4j~b7`wQm>0dD_NRAIRWKA^HoKdpBaa8slB^)ZC01>8q6SKkf)^&FK@%=_w
zTRY|K#3MdT>;;`(s<fI#5E=^9t2g_>6;}CjE&c}wT6>rK#9EDv+VKwCK&0Sys~)r1
z%fJ*eMUdjdkjDgUV4MzjBp;HK#rE@>3i~%@6Cc(RP>4x{+j^1BVX{B;!R5j)mT7ay
z)_-W=+2(|Rcr7&N8FI2xtrP)1Tc-x_F)FbYOO?w@4E{w+c4`I&_2y3G|2kCuh`nNL
z&!IEKuliUn{5>3JFwK@@;SHT?6{St!@Ji?8dEn}m3rZZep#1TFAFB1Cp(`8j9OuoF
z<G53j0|1ZIeDjdk!K5|gGTc6Vn#XFI>2DIqdHGwW@HLT!yY#Q8EZHfbvnplXed%dR
z@_?8CpkYay(WCRb{%D8Tq$J{@m@fu-zCXjp=RAkK5e@;hMOMhYY4@wEG8Iitaq0Li
z36Ja1(%HjYtmMPE_?dq1*unNq%Ks0K9Zz(UYD2@}6OJi2x7^3a+cvkF0EjS<Fl~<R
zwV&5#n&*Z4uN%=Xgg%Ra1a>=U`1oRgH%iY(+(QMnaOdC5sXrc+wE=|Z>Hq^3RgnoR
z%h<jn(6mJ`Ee&ZUqI>u9_OW8}pq5QfcY8WLo51VLtAdyG_usRo1#`x3h+8Wj0WN82
z(f$c*F+#VsS}uzFIKDZ0bK5(4bdPZR;5D@@>#?iHL>=!x4s2go3sYPy0f@h7Bqbr#
z?Q(3<<}~51{R+)vyHKqaP4S@PyjNULl=jPxa}sjU(?Jb<WWdm4k7rMtAT!o$p-=Jh
z*x1-AN=iZqLElPrNncS!0VOD{z8<aih}K-Jc|Q?r7Jyi@%xphvOG+iPcGG2ZAwBau
z7u27x&J()CEtfNzEnfy=b5?$w1W;FtBvCNvz;`Oqxht_^wchFH9|9Bc>w1&p+ZlpB
z)Z_K?hqrjw552O|)_Na`3Y{i{PSJVK)9mJZgAOlZ)IY~&XNsVkTarsJrSv&{tS~xY
zfo?kG=DCxi1Gs0Rr#o)s-e7Nc1rvC3rO7qn?N)v0n}Xuj!m^kx&zqamuu{vo9nTTp
zKbo)6y8~S2*L*RR^a6>`*MkTm_Wa>jpMrS44@Vd5-)(}FWE5z<te!Y1$%x~sKRAeT
z2Od~DeOu;R_&sp+J0!0(n<U?O5C=qddRFJ($<*a5#CH#o`5eAg^AU`*>{^I|QdgRt
z2neRuwB@VRBZ}AaKHGTZEvefszw_$pb#PP$+Vv>uhGa}b5(AHi<CCD26mwo~ZhyPB
zme#fnCIz`%s-SYdO!VFH@o`tlV*zsn2ND(yWNo$yJ`2MJC*Y1Zd*;S83V2?&UT`8~
zV9Zb;V*mP_IpPIPP4|3XKqE%(so&zFqLMiGCGX_*ak-q}PESo0Tfx`QrB%QYd8#QA
zLHr4LZG)dNq!KuF?E)TuSApf%F&kgsgo`EfdDJ&D4(2B4xl6iE?t3Zp)R%4<M?M35
z;MFW%Gz@8b>Y1(43HCYI-ZT#E)G7woXuxLvaJvF+Ic|R3B=W=u5%BK3`tuyWY~(gS
zKNAoc8W`9o@x&Kb?p6V&MK6q>WDI$<JxI%=!(*eHlr7`*J&A9p28n*d;(#G@(YNxl
zGQ~|PQVtIBV1&EqAJ%g;S?s_IR!_mLas|AGTj>?Kw|ZV@c;6>|>Ha0e^%D8vC$pF!
zoJUBue>H%)Lg9aiCxQR_n$(5#Rf=8b4`r2=QR5O4l%=IZFVka^lc`&EWY8Av4=5QK
zqX2g}VZga^&n3dTq2cCDnWB+V9y`_I&N0)g7PsL=Z~HYXVK2UyZfxwMDDd^}PGZPA
z5^NFBzu(Y=8AG)8x8>#<vLYgX_yfL43LeJhG&PCl8B|?zpXtkwK@&30Kvz~Kv~kr4
zryLxZH@l8&-&!*6ZG-WTTg@#jdPX5dr{?FgM%wcmJ30vN+!43%#O}C25>WU-&a{tV
zaL@moM!<9B_5&(0onTc}+qiMBU$>c#3&BD|D-1z}o_)tLqHtYV*KKjNu5_pT3rRLM
z!Gv+Iv%H()eK@KykXC4zrEpm9dg=E566ioTl=2>xT;_~=mfW@O5wOLr)AaAXIR>v-
zt61Oym?GpXsn40jI>fAx<;!{biC*M_Kg>6Adzn4Bzpv=m7)USfOArg>lF#goDSys5
zKO8CFfTRVySBD4g4Iai-g(wGyhq06qgp9_}l@2MuT(<2z7ZVlrh&!)I_!cB^J}3<F
z%Qx#^q5u=bFym{L@VC^|BmO&oqf~AuEjqnMTcS@OYIu>q&i#sn@!%8a=y+cJvQ(yX
z-!X)a!F<aZt92u^?fsl3d!DOC1dGY2$|4^y-`<Er{&J3AHz)dzD02>H%2h21(c~j7
z{#q8W1M@2~C-hJ~vf9LxyygkZVhGVTj4u_%Cq=oUD|2O%R*w&e8-^r{;7+nPzEvpe
zYm}<<D@NXS1mVt*Yl8Ia`<)x*A~l99IFgOLezsyQm<tQ2UX8z~ncz2CW<IEPQgC>m
zgq0BbXh<L3GAX-kjoE~YFQ350RkX2^kd``1e{MfMk=LZ6pg?pI$u`h)=jk(S$v)s=
zrZc+2f`>q{>~U)Dz8!~H)V{LG#|~@**)25$7whq&t^kLAv8t-|T8|q=vkF?*j-SA5
zrP^rHNT5I-b13>Q!vA#D4$p{JR#t63VgQY>Z{Pzo0{f6%O%xp`=O2#SOo@QkqA)x>
zeD!i^DQ%KKqVh*+Q`={LcEY|ttY5s4wdZGIs?q~*cr3qtYYYnqcQe?awP?h@%F(ch
zr)MPL+i6OML_omca;nnXr}ymc5eWkWa4U`8*#6G9>i`F5#0iXmX6~}Jjv%1Ug^HV7
zYzBNYt7u^X$HvYc;-K5ciFoa9x8tzh9V}TqE12iQpP!%q8LW@k)a}*|RLo#h-5BAQ
zpxmBD@yXW&b>-%g+O>xvZ#wszD96RAh9q(BzM-U}3kR|VTW+@-J)sjdP6?b9G(@DN
zB4J#~1_rI7E3GyAoerwzo4*hRA0h>Xgif8%Bh!Dtf1Blp{yP*i#zNlmPZXl^zq9_h
zU`3|^&6f(ab}0ZtJw4!9H5J7CZGP9(if2q8zfAaB<6k55-wrxM1sA?}6jfc4?uU_2
zKqXST-<vZBh(wn)Y2{x%H$Gs-qGEDko5sLZ3jpP>K_?NUwEH$6shO8uLHl@t{d2zb
zAJ<M6H9Towr!<>}T2kmimuNPYqFOn431{|L;0_YL_$EAnW}MZ3iDtjRo%dNQzD_o?
ze3YGf>84snOf2xrxM?P^NgXghjuP7F6eQt0uN#@7>W*}BqI0}=M5fb8q#J5da&*K>
z<JF`*q_O!ebftPjLwy0=+=%E+_0<J8E1r<sxm9qX5=hBR8uB=|C`XVGb_zlvq-M7?
zl*VrIdNzh!TwHvTSd;;D)oQ0z+dDfbA|O~JTpJ9Cq@*Mv+I?h~`%$+mbI@wB%~Q3J
zv=Iga>0JFW-l{?FTYVLjL@tLwG$<PX!vlLIfHYrv&jQ%g45&rYepYOKaRE*Ql-fhp
zQBnGK_&T(sL2bKa^q(UlzU-nswQxEgajL4ijlM@lMmFa$-%KEGT@!-|Ipbnt@~gdb
zZb<`ZL9^a4?2sZ}a&q#CSSn>xP&(g5lOj;gn9!K)lClO~c>4ZO)HGjn_8H_RDT&&)
zunsBUp|mq7bhz9iu=m0L_1|<9)*+<pI5<l<Xn#hVL-3JzMnEQv;9r484EwqBFthO|
zP^){o4XLP@m{eHnMn_3W$-CUvke{t|614Rlot;BcWJWH;RDZJb*Ds8W4Gjx9%16_$
zT(_|Moq2b()6|@_YBo$JufdB`tUuAlZ$6A#Fd7!pl&tjOS|xD(hQV2a=Lh@y<l0_M
zGB`5Eu*iBzEz5F>7^3)YC@`Q=Cg#=oaq7Y5PYEV8J%+S|ZAi>DZC_50Oi5a%H|r9y
zDUT~LO)&sZ(4*@1wh<3pScbL%N<LwpQuYJqrv7mNZ*%ppQne~9ETXdjhTcd9>yYcy
z6Xd7<adFeI718Tc3&t@kshXTlTm4*v!!ps^l9E+Qol7$_L?Q-Umpds0C05uFm*#B%
zrBGa2nnNaSpUdZAGIQvp^m^n9;K&UHq>NVW&@k#0-0wxWUCLz^s%}iL>x;r-4n@Up
zA|^L`*d<O@jO(sfY&JZc+J)Hj<Z<8Xx1yX~*?X{o4d0SOKrhKa&hcCVk`t&j<_x&q
z;Uqe~B1{YncykZ3fJfRvV7-{C(V(r>{|d4Ga$!-sMQQYdX0>53lGW))7w4C-e`8(_
zyytp}y)8xHY!1j@-Z}zA&dMe@TQoFxEGc04Q3)b6-Q{R5i}V5aZs&^uh@<G%cq&&i
zW{dp;V26yWz<9hkcDX+}T{>AHUvi#8wqZLzK(9yM7M$M)iV~M2`8^TaX-cl(W{{vj
z;v!we5?Lda>(RXY9bsO6_7F33Ywhs+!sP(k3gqLXM}v7=<*w+4v-#)|rq?yJgLm}s
zWQ4GBNP{w{BVS~jY184bXs^v{s~QhH_+#kZ{mrwxla`=Q4WvHyO}q~7Pj|=F_`6ll
zG+|OW7%-P_#(q5Bvn7G_kZP~IpTG%*?KXU?_wAed(X0(ah%8)3b9Qqj??ykQ@OeZG
zJUzZF0fMj@NRKs6K|_PG%`!eVmQs`RV`n2p=JNQMOErBJ(no*2)rXecy7y27KT#1(
zWzCzFi&T*0Bds_NXNLdC3{m6}lP1n>tFp2(3EwLK8VuwpjjkkW-X1wR!_V>0?t*JC
z8uF*6@fjM>ThuOxkMBnPCIJY8_JIm*V|NG?=SKMVBkXh~vRxM<Vq;^|ts*yR9mWCw
zMIK|hL403*i+5*tx%k1{y!a9_ht3d@39v3k=LoyUT)PO*zrS~1f1j_qV!M&@4rsSt
z9sKDNq*j$dfR0s#RZWMhsVU`osIZk)S)=C85y*0B_xnk|&0b1qyDYZ=-uLtJ-Tj!5
zZ&PE6@^Myimv;N@b^<;!NWa4!`bWrn$a)ENM1ONLr2odvj5IEhL8{ZQ?>GG<XK?7E
zb1~D?brFa<QG|**&p6kkliFC}6yt^@?UXSUEo6zD>Zb<nvo^k5(^fmXoVVrTSKQl8
z#!EcJ+k-|80EYQ>K4I~k#}~&ZzucNcQPd~2lq!X~4}PjKb;=8N8GHs|yyOvwA`k7?
zyk~&c7lj9b({ZoWa}Em`nQHgjO@k{`T_I&CT0|9N=xG`rpSw!@L%Y@T!jCorQQNXP
zi=G*&bc0Q<=DcSzRLT*ah&HDyZBi)WNR3p`tv}i|5{W)`bYwhgtCF{QJs_y!+Adl(
z6mRST&57aU&Co-z0cf}b1Ax5bTekN?#6VvX?KH&D=vA-TnkeysFrfQ#_C>!BBG6Ni
z*_v^0KVI8f@rRm5<#2?pt6wM3W}F6d<!29Dy{jfK??A_<PEZ2>lWPZ(Ld#DxRRgF%
z&I;<KUcVPmp9%{!`Ng&BEsGMKakI0FrQeLE4PmyBY$=<Y!)|YF6<VD&CH~k!{(JS-
zZ$;L(g8zkKd(H7&PeGtK0Mxo{Bq9P?g&DTCrtdaMO-cC~A7}`;P;ZsuDVP%g05Iz&
z_u-pfbdOlg4)3;0!cKz&U|U8NF*9=&4oc-x9^rPo$bHi>PfTk~Z%v&|f$@l!CvG%0
zI5my(R`CM>bU79io`YZhCo}BFB&BaO3fpXZ4nddE@$pF4x!9~pLd-un-iVIOMV{m3
z-s@^l_lwunT$Y!;?<042bLShB9C|d9IUVqt(wvK1Y(F)>77LMmC#dUOf<|!oLMFE9
zWT?8erc7_4&zLsTn#j{RxV`pjF@-w#I4-K$6b?Wp`FpjRhOoh3j@ja2k!z9O*DTMr
zU$b$0KXS4`8cVde5~ZGC5Ywh%y|}S~u8o?}Gvfd(-vNMU1~m3jdUkv+Bzy6srLB!K
zJv}|(VFdgEn9Kr|Z@?B$9}>p&W!lkpd_WYg22$D8?eL1#&lkW8IWbuvQNYpKSWq%V
z=8QYXMQeI}{IEBHfZ*-8)nDM)hlkU4zYeAdP3NkV00?!zTAxWjKR>-|iN8a^zvnJr
z<30D@VFKRW!_DbUvX!whIi2o-CKrh2D#PQ1t77`j)1jzCK~ImK7dkZ?Fd7@$*xK59
z8vrVWR<Bq1!0>_t?3_}Ax-;Pt@AJ;x)A^=xzh;m`#i|SgKV#h}x8wB9#oq(xmkov(
z!S7SZ80j%iPwv&Q$V>?Zy?HQ^pthClc?SpKb;W(Zd26f8&Pps;WT#ZTG9lk3(fUAG
zfYBFe4sT3tW2o`+oMEQ&ye_jTVMw@!&9ZKYfuK{|KqrAzTQ)4C%TizpoH>9nYXE%N
zsPxJY&*rLT&4BehAT#-)p}}pD=C~U5Ifhboe^O5@9UYzh4XZP4XG>94!Y;5i^WE6o
z+_ttja>EAppZbO{rlMc)@Bj)UuTzdEwiAIL?QQLsAd;U8td^Em07(j^(;!A@fLetf
z8OY8P@WtnCO}ke(nH#X8f(vZ?5CP_j<CCKKdeb_vt9`s$YXJP$-@l&DGbF6(E|XQN
z3_cGv_mY9p(Rhxee7Q8KR2Q<W%uGRae(<-nufRGRm!csmD(asU@lahsciW7{2NvnL
zJ3&R_jeL;DMTPv$ggF;qE0bS|jkyP}{D`~Z(pkp0s~LSKZcSvZ_R*jq7w)EwG{>Y~
zK-RmfUYsOE&GJ@*3S-=2NV|kVp=TVgyUPTj{fc5_l{8=!^SV{So11Ssm5<Phi(c(+
zh*?vy6&(|EsIZo&=EoPT67dmm-R?(|bT_eh8k?JC7lJmRJ)F{I>DGC4L*{nc#7}L3
zSfHS_HG*s^r=oNI)d4OFiV)zF9d$>0qyhv<fo12#GUfp|ECgK6LbP>g2#%M2K$sk-
zYbaIAn5B%_+2wd_=wk3r|AwC_aKE=nq)EBfl2bTQaJ^@-nKH9LjPN^r2!KY$TFAMo
z^F$PW@TKPGVc?z;P#L9jq;0e+u*Gr|wWlb`T?2PMqEg6RQgvuDzixg8%N8)OkHMN6
zw0CEGx5gy@H~RT|IW2&kv&bnan9ZqCyX4)A6>WPG0U`2TMzy*)-d~z&w%curQMGgX
zJYk87iWSOMn@E%c(g$&X;3K=<8vX$A{Na~KO(r0GAlcsap*Ewm#tm$|(CkD*r`MVY
z>@D{JeyrMCO)Vacp@u{18e+)GHcd1XL$U=(!_FhDK5W=q$F%XDF4Tq2!LfSuZB+tY
zTIR_;3TbI*V%&aa)v&xFs;caA(RnRAreM?S?f{|rLnfUtE@Usya{v(o<=*+&EXL3v
z(0F&~^LseYa_tsp_~W@M;ZmpzT7&}-g4=Jv_8$m*)4wwjmES^i=+Smp%HKJ(6WFFc
zF98b0f%Zqav<+Hi_B3P9!~5Lc7BZ=%t@~X>PILYPc7FyT0%++~)YZjlJ$E{9V*iSo
zWlJqT+twJ~#nWkTodb<?NiZCA8*Tlhq@@EmhP1aJe6Bl(^+?beKtR}2s-&d}ZU79R
zH#|PTVbDe$*C>3!Jf?A$;#p$%=y(kcoe5}L#&unm$sRm_Mr=mPOB5dcmR44A277>=
zbROJK?mRHscYw7~IO1zF{!#k1{*}Tjh!1JL%O`*YRv>!vb8v8c=;t{q1P`g%S9+vK
z1Q~+Bg1lha{rmI*Kw4ox_r7NSNzix&5{$k^GagMX!T`w2LOZ>EfjMV`BO-B_M?v$<
z&h!_tQNVH_VsrnYrRICS$+Ks_f9jcJoj2KPWm=*@!-(|Zod+%JhLpJ&W)B@}GqZh%
zj3Ir-{)@oCR~za^Mr3q4jS4d#BICHzBBZ3GavPIg4lpq>nI}|LRT;9UOkZmfjzH{u
z{0L#zSHJMoM9lMI?cDaA)S9>JSAo#(HBq&!k0j8q1%6Jw&<>t7oju0)U66I(0BuO9
z$D%bXJbYekEE-!zTN~I0CMY>si;VyosSz9c_TeG;r2sw!8}GY>5@}lY;sgdc@SWrL
zdnY};OrTKZ6%fTXa(jEl%DshOM5cYldvJAjZ_M(4yZie)W_<ON#RK!*ERnn%_Ec`j
z&i?2cDyL=&hV@>lk0Cg-U4xR=DTk!rgyJ&+rN`;n-F`)x-Gt(oPN0wD2%nE{xZMhR
z`yv47Zlc-k1WM!Kh?<v;KJ_v4m`*XMP9*((DApnKD@b>jg09kW1X@)LdZ>bU!C~rf
ze?~L&yHoEQ9x55*DkiwpCi<XvPZtTy8DNdZBb?alcOJ)V6~q|yU_Ry^?9PYNj@1JG
z#iPXr`Rjt(Z|V5}7Z!Z#Z-xiw$`%0$?b{iJs=zy5-Kh!l$kQ2$$0?J-t~wC!GZYXY
zYW@azp!3j)BX5DCe&PzV3~nc>$F|r(UJNm?1Flu0Yt^h~#Nu)p-IsG9jD(m->~3uk
z=%KMHz18f@JdVWVL&v}fNyFqW%*hef{>1tFJN4}(guKNb0@xj}tN+K3rYo&(7i?p<
z0=H}a{P+&8CGywMWmm9eWgw2P&L>Mn{I4hC?RdGkG~Hp=T%DZi4rKi&IX*x$X-%0e
z;-1}>b_xELV$@ebodX(-0NVLsi}6R>*BZ$59d|n^-`Rg$3^5FOuG+VY=S>;C5Iriz
z^}+#{Rm55>j@9SHf)%UQb8L8My~Tb?QQRPY(isIuUb-*~kAVFl8O~2|4O83DApMr{
z)G_lDU_=B+GroYVT@zkft%(ZO)vctDb49wqsX{aW6^52co`+=(aYye3*jX>Hm`CJ1
zZjEZ@O>a&R1HE4F{eo70g)qISek(luIfiP$f;&M27W`%g1dMchR~mV%wPWr$D6R!h
zGCjaf>#@>|k%1lPJRHK6#%U)MzFHbBDj7OmG&_GV^-p1sF&XBJUT@)nH^;3M3kMhr
zBjUbzK9pGig&zE+XX5blM;BI+XMQPZo#&er_ng)1%gCOhpy6N_<SY2RJfn6^4$=`g
z?AlOV>wdy9s^7ogFjR;m9b+Kn#19B6&uM@p0MPc7l9MyhRa&lnd~s=Msc)#}LbEdH
zjraM;d++l>ulDCNQ&S@0;o<%v*>UXkR*U%}HVc~zREK6p7v?}NEbB}#au>Pen^c??
zItLx94DN6Dc9zKcithpK(%c(XF*rcXG>NqKuq-v^UI-76_SHq@2oaPjSf9h-ARYy!
za6G?kX^++)of+?r-k1UuJ=&W$2it9$W}$rK1pJRMRY9h!w!mV#ZrUdYv^vl;FuR5<
z`}B0LIv7i0lTi$xP_oIxQT}k=_mJ0c0E3FMT|<+{cdQZ1`)4*3c(?kVsAui;xT_95
zM}NKEz);_JfTd(PbztZTmgUX)-MfNmGmEL{+4|Xu3Pe6plSA+nugG7&{%;3s?$DGU
ziH@T;9}S*I*#lCGT0Mn|+|{eY*-4-QKv7xQvDEPU7ZB>Agny{#ipz^fudoUV3Wg4V
z1#)(BxN=$+$VFOO<-Gq1D#lP4-@Krtrq+Va{QhY&#n@mRJPldCySpoI-SA*u3?E9z
zbF#m`eu&GPjf2r?iuUIt*YAh1TyP9hPqAscs#kZXM1jMk&rM7;tt$c!#^!5wf2GS_
zpi(jr;PJeJXYCq@p+Hn|oW27L`*J{=U{w$VdSGm)_U=li@HSN8^tjYWn(P#*-Y+EZ
zubdlWJoFLQZ4nYXw%J50PhnktRO;~vAf{1RswHC{aj=`W+CsW}rHtgnsvA4Wl1RsV
z?95dp{yF<njKwasP#iYTfCXdlK8>!9xFqP&>6Io({&T{TE<R8BhmxD4RP^{*s)v1N
zrvc}UeEKg}+Jm4$cK}c!9j~;dSa*DPuGT8M1RB6As;ehlLN+-cYb~^UwV?UoyiWH9
zdTj3*^<51O4sOw#(mrW5SmRkOH>=i<Y@AnkZqsZza_|4_|8rc~C*^I2P0*wp^o__x
z`@?gLMQS4*U=}khb^+7yj~!FkD+q)ja5F}_t4J@0-sLc@xc{v?t7ksei$CXC=Nws7
zN=gnwdv><a(b`IOeg!$uK#t@@(bZgomPlP0z5cHSjf2T=h40GR06Ni~!Edl0_8;|g
zVX6>j(kFSn6EV3g$r1$m*?apX1869s^*iQCGf;^|L;AVhOVcXawi@XC1@sHVljlN&
z%g2B+Zq9MO%n-WPwJrhJ$Zk0=3~0ThehDICiYe5F&d}9$HZSKafz6Qpid>yBcloj!
z4?_{`8XFZAB?weEIc{{rocmTLowS1G%x!Gc`E&%X=RO!VEEd()s=&s29c!=xkVOOt
zzJ{!CiW(a=*vqEi;NWtao4J)HmM|KChV-x9WMpO0(^+y131~eL;Nj!!dgPG#ea=JQ
z#p<!W^S(1O+WWnHWvLrdNl9sHKJ;pOmex~F_Sj0?3JLjdoQ?JA8IP^snH!QICB%Pj
zYyS8bERR1WUuDxT4Xe8qGF{J|F97*h5_{q>8Zj@6OG{cdZ3tS1h?EwV^m>gpG{6Mw
z8rp!ZLG$Bc&KCY>Koj-uaow#7#Hg;_bZZVaG<;RRmw`R~-oVDQ8c$m|;OHHb{(Cze
z9o(M2zMoPU&#FEXgro2z@S8VpC`m~_$&jO-Ut4Ll0H|i6#stx7zB*vom<1gTZS3Pq
zxG8s_S`El@O11{zHcU=T5O2~(?eJpo)wm|xpuB>FEWAQ%0ovLORRMf}^m?7l8vLKL
z`yZAhAP!j*KJNf1$Es`CUoxcs7N36Zv7W(MahXQq?y9@EG`IsHiWXx?6@FNrV&;Cx
zx!H(Mzz462vZ<r9p0BH=2F3mG0*i0+Xaro_=TSMx&M+;V?7^doyUe6dAhoFOZg@IG
zD{+nb-F9jF0B<#}c3oRu(m{7;|MZk0G8Oc_RI^45wq(_97jHhppsya<3kHyS0YX#N
z)sOE7CFSK4=xQpxSOar&C3EaFuu%V;Lw}JIok%DeRR&G&pw0%(ryFx1-C=W$o~K@}
zLv*TqX_A`Z<1O;z`|>JQ)Ss%R4*`I#V!jZcn&$&{ai^R?w=&@`<TMacfBj$yK-LNw
zr%&(V&k??CUwro<7*dR0F{ra+ahP%f5@X#^t$3VtnX~MN2#w~dM0zwA1%00eTlJ}r
zwOY*5&l7a$O8b}_{eC6rCG!J1E5Z-8ULVc#&>m+i{&{A<bJ<QGPkF?ezY@~FUJ`KJ
zI1eKt5}@R2ND0^wD|&i9jzqiw|6Z=~>+Se4N&2R>b#8(aANLqd|2*5TzX2Tk(U6TT
z&55O@IZqs3ZSC&5<W1}U`RM)%OTRf_9E29U<sIZldJXjtqfp-z#?osYZ(d(a>=h6e
zUR!ON{vQUcpuPxnr9TcJ#)4$ye*Ql$_Rk+16(L<0SrCAJq#WkZdzk-l0l&_QHEx(Q
z7J?s#mM^CNX$$s0X2n1Ls6Ph--1*Vx@#p_BIR6@@|CfW#E2J|pnB@Bvt8epf9`G;g
zC<lXIJp17YkK6EXA=F>@sV@R^d3gz3Tz2<3_CH))Cm>r&i4zp<E0*N4FHl6Ko!WMc
z0VEYpTuUO}BFp90QW+e6qXb2lVI@KRXogYS)-D{;5{Iv!Cg_<+LXsJ@24;5Fil>Mo
zaLGY(gayl@ve{va${&@=bL}Ag&LuhxnZx_c-pg(J3flJ$+cCn){A9*jktq3mJX>X6
z{+(U;Ylve7KrV=_Ck9$boZa&37>?8b(}ly6AiY5qDRVl`#f|fWe1#)<YO8qv5oQW-
z5S%YBw>B@bN;ucFAcuQj8!GeldG(ShLX=qol5|bwJe}p$bN4|VH0ip$k>WEh#%{{P
z%F5(p4cZZ+(;Ou?nSt=UlM{TZ#$LNE&e-i~$tPDFJ&0o~x^IimwV?bgNC|N}{z#d0
z783b_w+rtm8Ik^DHu>2J3JM_X_)`7K*o84Z_Yv^9ZxQv8e;Y{X&URW6yJ~CwN!<4Y
z7+t-@e%(<b_bK!5h}9cHpB~m?wrt%*f=IX$mgcY>`)YZp_(}bQWHByoCda>5Eb)C2
z7JLVc6B0o}>Tw~_J_e<QVOKYmX4W9=0sYs+31`>CA9sBP?JQ()HA_=D$-dy?$sN>k
zOW2GJ*f+<L3kV!wtYj>{;qJF&lFD*))qz&s;por5Izrasba!@il;jB-A$vI~)!~HR
zH48y=Cc?uRK?t?|;(r%U>MtQ-U3HnH$%#LI{v24oxU$FGLd6OusqnR~tmV10Utp1?
z-5tI#Jt!96nyHAR5Xh`g&L$$zyzMq)b({C{S}5akiK31;K8g|05Ig7^F{~B=D0r@B
z*Xzx%GK$XVkbwstQHd?d*%QWJ+RCCwea;F>u%64j)xU)v&d89A<af8oK)5~?5M^k;
z_0I4lBcY^>dOGZAr{=4ta`P-LGRw|*+~Tsr*btWRZTfL59tqv{nc(|X9O8Zr=pv}{
zD%$D*?wy7_9H#Nj{^h*MYL+~ZodRoRc;nC|)yhQtNPzMgH^I+g`!I2FhnB(v2t2j+
zFMqUgX$5f^_r`hm(HTZS=LCX#RNVIF60vVw-|UeH+|dQ}kh;ni6%?eT-(CA}?H!#B
z62J#*Y10|?>?rus`<@Iu@wVA++#%!5lz!s6^hX!KALsu$X*<J-6x7G5dDJ2XDMty)
zRkANQ-JCz7iQPck4C87f9PNULcb_IFBwFtdA0-}_iq~)HPanvVLSqUyOe-4RYlHh&
zW|g1<|3QlNZ-bKsB1i7_C#4D~4D*0`LReT>l#k3l!L8!1J@1L^fu<qAHoWxR+lz%d
z3o3SY=ds8=p!1L;uzY!2O-xRj0So{@59MWsgzL~_0!p$;zyx2$`Jvx~<j^IPB+-m9
z*=*u5yt;3+KJYy<e^7V6g37@#f6ak&OS#r<YW=141RO|~$c_q$|Axr@7+d&?PoiIw
zUcjPZlApHAL?BI|%;%tQ%jWE{cDtiJCS)b(+0%l+-C+eb9-dfqbe6$+i2vZAd3ndz
z_onX;rbwkSn5*Q6=o35?)*U1y2xUhk4wM<pHr95t_|bb6dUGZ1(6CGaK1r>(qJv2r
zTbtGxP{|eNs@Y~4$iQXnf`*Q6S`vub)pK-jaSIW1gG_jd1%lehJPMc1@Y-#v6$ms@
zHVq%@@5StSQfH@UyL%jR&*qI>!f*hCRumyI>B=*m{mh8_{KE~0y10Usruf%8g0N|^
z(CgsoE*#>A%O+{6POP~CHf4qWLNxxGf?caSoAI5}mi_YKk;{`itEs8^Ig`h4ads{<
zZRV35oM#T)>Mnt$qt0xI0M7M07w)9yWpPl5crj9XW?H9?%wu%YMC!f+0VE1ap>yJD
zPtTA1>{n@X|1axXdCW75VDYpwE^hARe3_&P6Z50_aZ}a_Kwd}%)UD{b?~_qU&Abs4
z5s?_LW(RSMb{#x*H9H+ra&a}u14{masVNoBYk-nb_Ta$}x$$#M!w&DEDAWhRnbRn%
z@fN~@re#C~*I=Q$NBW5!96y;SH9KPidbDsH)VukPCxK*ME=5|M{p>58cCQbw?2_~l
zaXDo%q@&E8cJuSpFL9=(4D&cv9wo{ecH*1RaF^6w^WTK|_Y-*kKr{qQR5ffL=RU|s
z_+u~6QMKML;17<<#rdzjgcypK>!^Cs9J0b8w@lhrXCF5U$Vt%IDpsa&(d8`CAJa=+
zH|}N&O?TT%Yz$Lp6MtNZQ*r~0r9t$7c4Wlp>Vn-9^3vG;vG+QMVekcQa}uxD^Pari
z)v<FO$=%a*A8pu-`RkR`hdmc@ZwIpJz;1H-?wY6#jVncNg}|5g!Vu`;zs|7#cH9Y#
ztWS6TlTBOFj9#9aBIToNsIBd14UMFbOO@bGlXFdZoeMbSjYR-{;G)~kEk%`;m8;bN
zZN+~_>$-y(baG-1BvLbhW{@EvA=#;^xB$@_mtFwu@6`agn|ki@$i<Gmv(iYDzkM@Z
z+}$^3D{W;q^yAZQZnyomtpdcx{C4Vy)9lVMEOS~eH`y!2A|D8nbH2Tf-I5_$J*L%?
zk48ec`?6vN73qKu0m-kci~9bmqM^74$L5`kdz+jrBHDYVhWeGTedXS^GdDtv{tk8s
zk84~CZ@WZhqpn0`{)cFS<#@Xw+?%_5&tl7xD7)6>R7j~CTw(_m$m#904zA~6A2oe$
z6IM%d8aHWH2~fLsF+AY#s0Ae8Vlc*wYqj^9a()nSEs;31VOU<$ekyC2E?PqRCrtPk
zp!n+m3kOmxuWuKqPjtVYHwo?;TCfEuBR~t933Mjb2+5$3NzA0X4ypO0<GK4be0+a@
zzd|VZ;$m+sOPE<#Tbo97ERz4e@bU>8AD=$*^@%YIAaum@IbQ7>b_Bcd@fi1V$G_rM
zYlo_8nj}^8aG*)*5;pSe>eB4arv3kW48JTQMwa*N0XirM?auiw>l0(O5o*0}{FE75
znT!Kds}A6{b}MoomqFo4Op&{O?an(DO1Gup$?=J;?b?>T@5pK8C5vp?-?Lc$191F_
zh5x$Ue;xch<pD2$P2t>6q386zqmryF{Lg-nh{J%Px?#<H?1lxu7A;2I31F@_#VOw0
z++0{yrReUn!@5{sUvKZY^h(;2S~Oqgl%=EjBZ;9!@j(m-`|G$QT1JyfJUX6h+{Ya9
zen-QD*9PO34)fT}XX8UtEZq<<g!Q3i6TPJ~nChnEp({WX_gfBuqx!j1qS}U<PAmNO
za1}G>^Fvg|gSZno{)Kh-5a=OQ3uWQoXKoDd6*n$b(V}BT<8N8H`ep_pig}w-N}clj
zr&^kcjR!4Tj*eCC2ee<P$!U9X+`%!-Td|3%csx}m;K6x*F)k}O%awse$&gkz;i*$Y
zSD4=Co6>uCVpJllGjt<ZM1X}MjA~L|@OjI!N~1I5O-O`t&-qR4#(S>70`ln5y>qnm
zAH5#24`;?-MTWihm%IZ&mMK+c;keR0PoP}&z2Hz2<)vX-=EN68O@*nWR?BbGWa;#P
z!ju&0_f)7weam!1ZLn;?Tj+58xTunHCE>6xN7J#c*{y3E@!IYkEd}x!`9FtIq^=J(
z(17|`KtR9%@zcoTCczJh#|PIYz)jAw+36bu(3GAcM$+@$f~AV?vc#ebE?^Pe=JQZ%
z6%Z6O7EecGx-exZCGj~o-<SqHm7xGr&r|-9zuruCz><CZL!^}wcw>Xua7lk`vZ39n
zA{i8YaiQgYT-T=OHXF0nZqwmKG?I}Z8LgOQh`_37WmPlxJoC%Ss?(>@G@6$5ouIsv
zSLbfDI#G1ac%S2rF%xvqR{dix*Mr0v7719|ZdOz`9FjyNCG89pqdF38PyulPWZT_N
zpVtAH9g#+DICHvW2g!#XBlNb-!m427i}~FhO?prrdVy?;2(K6!WqRf2Ch>!3Iuzm#
z{4JkWyXPx9%`eh`+%fYR)5(Mq6DU%C!s8TAG5O@C(G3i%Rm&)ydXrOBU9C5ITmuU9
zzVWN@zM{Y5h|YK?w%FkDBar$<Xaqt|5WW^gOpCLZ6rk9p5xwvb__ErjT4JoMrpC<1
zT01esaH`gqC34d0P&7wIB4%5jWwnSvIj`3j7DjqEFPD}q@;>Y9MnmTRBkZlB+KT@y
z-U=;Rq<C?6cXxMpC|=y%inX}ArMN?JhvE*!iw1WH9w5j)|Cu%S&cj`69`leaat`^O
zuk8KV!OD5`1-QoED(8V)mZ!<OtS<RkZrj^zT!C$}YcYyhjsC(P2Bqbkp5n9_^eXMj
zpLSHr$$CaA`CoBl6y?%<q@#xg7-*;`Kw>}{Frl*{?@4laZ7^xMe~2J&)Rj@dUW!mx
zNwSb9C__c!?OCUKjOxyrJvo33PWiJG67(=`lCt}2SgUdXyvI2$PRPAWBp(&+*TeE&
z3so+n_$IcJj#pTEf-NlPjQiN$zNA7$S@qVsv}|>ugI3iKb>~ie02Q9l{q4uG&I4|I
zosAWiMdYD?*Ts87p1nJ**{UZBmslN|8n05Nk|HWMI2e{|W24$aVzOqZUr%e`iFQ`u
z_pcmOwTI8Bv>%u(Q#HM!5W*+_hXwH1nRLT%JM71GVCX=RS2vjoM&2**&x=I1N}}To
z%Tk~(dr=H-mIrwsn@!(>oe@B#6Z(pC=}rj&=icYI7IqHjb0PrI{+cXGW%O5EGtSD(
zX|gf*s9u9juLD&5v}hEIkXVYjG}Lw+shkr+8_;;GvhCCW71-3e{DRpcc%ik7))Hg}
z=?KtYzTbmHomjo!Bl;&5J`7_f-?8i5GkE!-UOHXay6b-Yd8fKPK?WWi7%4w(_#&u1
zYpAFUXg%EDHac$?VBiWvGg;aH({>RByVq?NpK`neoM5~Lx+R1DiN(Y}K@I?QdU9d4
z+SG#p*ysDo>e<Z@0ZC&278W$v(2NF`quNM7$GG;2>uY4IGPvO&qx1aa@OQF8PI}=$
z4^T!Cnzi6HbXvO~uYF+82pKtZ9SgjXZisPveagnqu1f%f^5w-(Rj28=(CeOqd;Z+`
zHk0=BoMvVAA8=}=x)bBCc^=ETSa=xJ)8j91eKWabek2+h4tMaMU40oQB$9JTUC?Yj
zlUP3QbP|+T+U`8uZ~Mo;dz-9qs!gFxId7;hC)U^9R+M8_KWiCu#&tW(%*&l+xJ|74
zZ@}9|=jNPv*?3CAD^bEQU6*=5!_R{V+X?o^Zmpr`<%7%AaY1ML#^)szGvV#_=vU17
zy&02QT&QA>>m|nYDAVKDjv{=5^8EX-R+AJOm|RAZ+!SgyF9;#ftSa#3g`S|zGMATz
zj|g=(^6q|tYTKTN!;k*5s}tBRFDnCjgeSrO7<cFXZ{seW3EZw*XdO3I@@Nt2gM3(E
z#U&}m9Xb)l7REtc#_#G$gOTBPc2p?gfAwwb8i_Gob=1c~1YoEtf-wwyH@;y1M9f_N
zXlfQ%C!?EZquT!C>w)F)J5wAah~MM5c&nRFaEZ>I*ymm~Oq=7Zo+I-a%{-o87ks3&
zibM?2zi1}Al%js5N;A5Yn^jdFZIbjX*G4P@R)cHeCtM_yYXt06-!04%wW|;%&5JEi
z<RDlAqkwuEr|*2BzWfmxgtX=30kV?7oTUp`=w}BF&ggG(#JluTyvmg%$kzHMj<%)L
zf8)pn-x8+!UzO-&CbgzP-Y&%|W{SB%UL*a>${VrMGQ{YRAq8>!(ejH4B*{8=Q5+1Y
zL=-sUQpj}%n$lk)ON+Pl8d^#{apaU>YrcG_UEZ5H?T+PGP}=v%3VEa-d`SW!2lM(H
z<GJD9_+H*{b4<n9?w4f;WYy~N@r=~j&;Q=DSGKhlm~34G!Ow@ytG<Iaz!}_awsj30
z@eIT@CkxCb0k>KewY55P-54)*uh*|Hq7gEMol*B<0k*aw=tcW~=XwHin;p+!Uo!@0
zUvJ{kB3|5W*8vA(7QJM0%SL-b;GI)YNdQc_%#snc>$zFVRzLCr&;Qy$ze<AIKaZ0x
z?&W69EA@PyVmk3dK{hv2zK-#8LY|M+<_9?2VvGnlz%82I;~z3xs(5qk&=-cM-|Wus
z&>4X7yd(0g9K{Sk&Zzb$v!z8|W(o(+zP(4z0v@o6XhN-V+)fX{%@G>`2M6kFm6I02
zHa3xsK>OgnWHf#Vd3~{|71padg|)dnC!o85o+6wTNPs&88Kogf-?n$?xx7qlbT)1N
zX3qBf+!90)1{06SM`S#HnXK)R(<r$)KmP;n&}*1I+8q^--TN!)^8(n?8w1y$-iA-d
z3)Tm7S3#eq{I4Qqs`|RX5s-}lkO`9r&;BCl;sF`WDdF12-u_JI{wcN=%=Aj#c#{E%
z!PodUM-+W@0=_39<E)*-@f$21o=&j=_NC`}4CrQ2J+E3KFnA=D+n4T!zv+WjbmBQr
zM@}#4V}s;aR7K$Ktb&FTTDjYiyQkS7CCJ4AVbg4U_>H>)CfM(2f)+T<T-jYZ&YFnT
zV)Xy2P;zrGp75-Yg>mW7`vV>qWGWh(%4%*N9uw{R9N4B&1%h5REd||x0Ip`#^$JbT
zW3qmc(9iNr^1f@WDF^vLnE;KRz5~)aUYR<}>~Qc)5*8=jt!zYjVZ+=g7KXg_OTE&h
z)r`heXh1C{!4x(st^Z;i)OM;(zElHZsGtV|mr>Gj(upx^W>Mnce;AfhAPWdE?zIe`
zwte4^ju<b8USK)h^czUtg*<JEJl<@x;1sSu+@lrWR~Nq&q+dMP_4tM-HCWx2V+xUl
z*W=daV?zTY1D^+QY&&&lhWGV376os@(BtsG%{JmcBZ1Pv&n@*w=wy9&*uo8eAL?jK
zer>Ws>?Zydab`97Vg@`tUf(P_z24SKR5mUC9r#T-7B$&cb*75<+sh`93~1Zd2;oqI
zdsEssnI9m%jxEto9=_Y=b`Ev8Z(drEqBEDOvuSW5e?$%ja|8IH6hnU=w|%TS-k$8N
ztd+w!fwYK0Cn-)9#zu=Rx2*dX%~)M;?^9i-%X8DtKkdz%tb-~B<ghK+CnHY={C7<A
zy1wd+^IVC-zo2>A`ubUh6Sd68xI50vM6P1-m2+g_(~J={g8qsKpz48WXTC|XjEa02
z#+W)DKkzV8WIXjxbeZfvM%S5)%6vU$#}j+o)LUK6iCE{LV6zs=<{ed9oY$$xvG?06
zW9Gv?O+E*fuLU9ZJPpQ%KYin~af@AG9K_4y`zHwwi;>r^F|Bc%6tAmUgR72eLw(lG
z)*Us+yhu@H8sXC|K}RIz<t0%e;uIq@bZ~#~l-r%3NR=|%WQj4=OVz%)3-U<;xP;IF
zzKAo_t|z;?Kd$xk{s2f0`&If3=46nE{J*5Z|NpJ=pMNxerWJfs-3tAMKW;5k2?%79
zQwX6g=~Yc^WWbQg$jICQk2!L1dL+MqK;#D+U;)r~ZE6#=@BZ@Sv&F<Amo}Nf77E~7
z=YPt%xVVVx;?R!&n`;=~J8p@+Oj$N`iDRrAb(QB2jqIaV?5a4bJIo~M<U)uaciehl
zq7KOO|MRV0QthfUR@2}4M5~D>gU!!!(bqFhHjg=P-6ro1s<vKA9bUSGf~BxW<Ggyx
zg(}fk)YP5HwF|s}s~&LT-WY+Olm25Wc+7RmoXl0@i0+b<Lvq5cd%_yS)!I%->)=eQ
z!sxp0<|4b|!e@3Z*8Q#v47FkK**LQ`K1ys^;1x+Rd@3#t8!rEvxwNb=qqJu|f``Q{
z<jYZ7ZugqTzxt(Ye=Sf+NaaSq8~&|WJ|{F7Q~?rm+vBU}(o`+FH`EOy`kcI03d$do
z%{aMKcf`%B`#0{ou!X69KSBQc-&*-B$F67q9We_5vV2)#ccPhV$=J`jCsofO@R|fH
z@G3?BwokxMbBhD{@DWqEw8p5S?o~7vT!!Gssv$Yen8L_ZnO|S8ABBN-TZ*t%y=<Sd
z5fU)m;<~5!_yQFy@MUITt|>tx`=J;SpA@2rBk_9pGyX4b)Qb|fTz!V#2_g@LIr#?!
zv?Bk$(Q$^$;{r+VFT@q-q@5tT;I2(=tp$w$31lfmr*CtmrK6BtA+Orc?+kE-poS*3
zY4Yod{PlRc7(xv)Z5-C}gLrZgjT%KGIfLUOuq76`%LYh>tE>8v$jdVuSBIYWCNq6S
zlK4lQEnwGrgCW^aM{eArFF*-8j*i75v;YPsoHn4`RQkaolfcuS`R0d)iK%1k9~Rc7
zvT2@MKIeVm@(XbkKShpCxSoPQuiZCc!+VA_EVa5(lCEwv;}D|g+1DL#k0SUH2L2uS
z<>k!!RRvq<+AD3?6vy1MSEvF1__r6tg$~Y2`ZQOcVPEG_zn)h|+D8zueQDPZLjCLm
zpn>=OEPuza8+Pv>AXlf$>b6+oc`-MUR~?u*IO074j|PoLQ;>=!@nZ|Afie#DMm~Kj
zqekOpu=DwQuZjX|oJ&q)+Wh7yTXq>KSqzS7lYj3ExqtsDtt^zV!ViO5O2JJMBevCW
zJLhr#ZrP;*`xy%1UOII&RY*rTu@?cZrOCLGKhf?f*XR)HKg4)?6O(zV{d3e9$OFZ^
zava~R{ou8NeAOo-G4fDv&GO#{mEeYZeRKFmS2;@!i?v2%nV}~0-G1aIL$P*RJI&0N
zQax=_Bk-nytG2erkujNUN@rhU;5%^biR>G1A@|+CT*&38=`tLeo=Ov^Kl_)$3rXum
z?wLCGmNtz4#Oxo1x!riWN>WO};%{=AGXwK0ZS*J}RspZd8+1R^ZtJVcG&r^u0+oyZ
z)?}topzHl<0Aw(Xy5Ycgl1k8QQ70-_p<=9PJuHS036q=!2k*7NLExyPWiMj7+#qee
ztmP}2ENl_dGTL^9w~}>S_OvF4gwm`ke@B?vbK@3|aH(I6C5py91&A)_{H<!I>%{6b
z?J9{Tp4!Jtq^!#w8dnVdTb{L({Jm#NbbZ@P>&aQ3jGaZ)bgMxjBGH^3M|H3?F9_GL
z^Pl9jNKbAzY#qLMB(oOkou2dfh*PH_U$kav4n3bfOq6jfrjVJM0k|K#T-DWu8pb<U
z?|g7rypUP$g15VW&Vo9|nXlSMHnhd_U2M#}%HIKMcFlkME>jn{?=1F4I#_ml+H+?i
z`Z90Dg0G(Fg}6*A@^L$GT-pu1tF2hZI)6uW(KN`msW*JD5;KHJD$7x~$a!nyG;3|I
zd>4|rCT9)(NA<Id@+alM=sIz0k0F_^RR=TKi?VTp<jp?KSxWGgnb}5U$l$zoU9#l&
z>DJV{{_sC-g>~VCi=IAb!^janTLjU0LLD+U2|eh_0xK)Uxpg!@KD%nG?_EMIbv%1#
z=mw@FmFCq=B+e#3ahl3=YhmZ5$|z`7;n9HJ4^B?JDg0;DYmQ4usHk13g<sPNwdV9?
zLDxdY_&<kxtz>Y3*7;`@I3puthRNT!@mnGme?vm1iTu|Y4krR()lGPrC?Vt$CY<Pt
z5neg_9b+ZHRCY>{v41w~W1zT!${{SA*L^?80!+nXFVgVnNsL`Y*0+2A!XSRcLn!kQ
z@6p;x5!t8huUH$2Isqr)m04eam-k*KT3xXEO`pLfP%_#X^_0FyQQv_wnYQrNHrm2v
z^}}#a!UkSZNiC)8=|Ygs!O1~wX)4$|E~a;Dz_{Wem_$TVL;UVcMb?F*bUNswbIDNm
zreizOIvk#o!V-MfiiOD$eS)~yu3mR*AMJgJPfd)#3;|dM0v?H{A$so3H@=5Cymq<t
zzWZn9BF{Y}hyv4w<kXgPoj+fc0;w}ky60;z9)L#zz8Qn5)KkjzMiE+%i_K#o=j#?o
zZJ=oDa(@_29UD!Hi$*X{mjR6gw_vZs@^!S2!s2YyEq!SAb?YMNHL)VjThfA2f92vv
z#WGt>V{Twc)E{l2-xW2En}G{EZS3bzV!;IZw*uz6!Qb3Pqdx~JNyHnVM+8JxlM@LN
zUwi+BqCH3ZJJ%A;RcJK~_HRY6Fh1}Fo@5hGry4^1z_0IZy4LDjjB)m_4xXn)9ta*+
zS$qWz>b)ABp4MyUn_n(qL0B6tpNnx#9lC8<B{A;)GzY!fJU)|bU=<iUIn``!k==}$
z1kn$!d#$&f{y+xl<p??)Q}VfOe1YZve3fGSdns6EUE4AJdgM3DaecasKf6PS%-pyo
zBjT^A^a8B>4xv3u%-*D1!H!=7wvY)l38?B#ysKBcpIHO$^tzL%;-B!lpJwADVOD74
ziHUs_M&{X!0{-_g>9_|_&zF#Y1a3Z3)k_Db3!B9Qz(`JW#?90eTj-_fRl7^B;ZKIt
z%;`gB7mBrYsk|De&L?E#w7gut4LZqsG{JifTN|4L%E?TQ)R$`!VvQhci+%LYXRrdK
zk~o3K$#_HNegbTI=Q_F7Fg@jW%bV8icdF(;c$Mk;^t2A!PJfXwgm9K$Ka>XfeqXH4
zrD^s=D*~iy%8zGGsbJ@YFma`P+k%27!&o$&NYKv1*#S5y7knRy)$#4jyi_F_$cQw)
zta%<_K?P<~D;Fn0X_tMuurk@skI2hV2hAReQWO7Vq>Z-5H&Xsf>CYF4ZM0UuA1RE6
z`i!akuPP7b-4c_A`>b)O>?G3B^@$z_NfxRsMbNK5zq4pT=d!uh3LTeh4KOeY)jhms
zV1X>VaIg;^)k66rvQ5<%heb||s+@=2MA8L_3`>w}w;6;ET&eDUOa>2M&WOB5eYuLZ
z$O_*$34EZqePZEY=~C+2Q}g-6`CQ|qalFk0U>r{#&a-+2yeHPKh_-Wud7X*Qxb})m
zYVQA-?QYM3W_R(CM?PannD)JQSIBLV4VoE(S^5d4ch%km2IlzOUHo+ShM64w$!3XY
z^F_{vyq>cZ;acMOFtwd*jYmb+djDPecK<g%usSMFWaW{@7v?3RVE~XH3n5*<Wqgym
zmAuadZ>Gk@iw;!B11K2%wZ*-^4*W(2r57{mv=?5bvHutP;?F&$^W#~mpa4cB*y!bK
z@5Ff8XA-tHRA7xN^7^0v6ksmh#?Kf1g@jt6X3!3B7v1V*qm&t$;devDAk*n+Gq&_R
zz?2F-{&_v1M3s2(44X18=;|vTeEi_lNz>r7m3%4@lPi&@J5i)`O%Bd;RP!tsyj{eu
z2W=DimA8TntcufXs=b4qc#tDl76fje?CJvo%}wjgN*lej8?Hlb%VG_`c$IISunY|Z
z4-ZC{?%qF1>ffYOz8KYDZl5JVMbbQl);pwpAVSF^uh%>E%q*X`gOc4g{apOx<Kv$m
zE``$CPPn75J2Qd4K4_LXV9es^R8$+?$$uvW0!jUEE9?KIe2L+B*X4*Lvo!!vFSWMn
z*ah#38az(4x3q>0zLlk1_a^|R(mF1iN`KzZ*w|E(nx^%<WMskGRk~swo@eS43p;?_
zyx97XN+E5;*S->N1K7sR`zEN3IiD*0I-T><oZ(1c376Swj>e_sBr`%Phb^|c@SWZ6
zRUBr@^rEfP$DJ3Ajzf||kx*ijHnRD8LylW*qAi8}Y_Dz&&l;P?+DDPO6P4{v2=Y?S
z_G0z5JAbr{C6h!kxrxwp$v5!IoW!!S^XVW}w=GARZ}dH-JY>&rD0e*|V?Y90S2fdU
z1hqg|c_8ZqHcD~tdz`aJduXM0ca*I7ovY26tEa8xbk2fA=?35!*aUS&E!M2L&qh5|
zxD1L-_uJsmt{SWqk<vSUjQ$6Y>X3@t6=roRR%ro!o7Fr>LCl3*+e>72Voa42<c7=i
z)GTw8-R_8=8`O{<AX{+pnFOC%i2)61=DPUjsQfyC3(Ds_SH9oYrguM13H(V8-5!j*
zm@s>K@_YgI#RY)Je8`vZ(bQRD9IPK5b@_tvHa*V&YyNqB;3*TihIDU%*+x><hvu=I
zlzIXe|NAWu+m@g})1SZtNYUzXWwGmK^SvF_9Q?p#d8x75nV$1hp9QMrUQ+<@{icl%
z@An7-ALkAN8Z5E~F>AY<e-ghQA6WQ4-p~a|5<hEqD(?5ARj1>0e!9mr36jSaa-%+Y
z-alF@_RgDQ<hFA9OL*QB6q_S3oEZ+(jhxZV)3}<l)6+S`6@P+oo6NFZ@6v=EY+XSR
zj(9mlmKPHUSl}SG7_!0hdhVEd=G6m@Nk7ayxSH3fon7H_EB@pcer|Gq+E!xbSN%0{
z?)`_m!--(2w$rU?9z#ddsM_bfS<Li_MCwx`ec(@tyRQklTgA2McM>E&9&h4M-xFiY
zTUTuDDe3DLSG4nBy0qhc|B8D0uoa}BGQAR*GAOyyc@k?f$;Sgs>5;%~(~q6+v~DJB
zUi_yK$QDnBi8qUMHl-Yn7>J8@AG}7^sndjB{9JMyHJU~ZU-76W+q9kySTF^wu>9|>
zo1XM3{9Yg7>HPN}D<Q8)4gnQjE_uCpvMzM^^+)YdX7#JSLK?37ch;a3%jd4H7ZH)f
zK5J%$@mw#7@M*F9trYHcxAnoi@+JVDWKwzY*T)s?8LzsEE~<yD6X`B;EWnMEU*7~&
z7FJh=B0lmz_JznO6Vs@p?Y>B$E5%L~jV5YX^jq6rAI?=!NX#MX0|go00-QGwJ=N10
zctiQjY$*&_k{*>WTOcLK;LN)Uvt0OXg+q%Dtc_ct$CZ8-3nWjQrga<{)`@lfGgMMD
zzFRJQ!ouPa_LaNJ)Hy-pOv_hUP(Wpqc<WvIX#)_vQW>uh@u@T7e3VuLOs0S(B7}e7
z9H&zubM6Q$osQVFnS5%Wf@SvrrnZLb7p{H!g@C{kMhqF2Ox|A?tL6$X@+wkYE?uQ%
zq|@;BZdOb0GRir5vgy_x8Hj#fU0JaZd4HBS6zdrs#6h3$4Kt?lwUlA|>FAPM3rCX6
zlL`^4!tz-z&rBz0MEC0OmD)a60Oh;NgnH?zzFW-|ICyp<>85G*f*23N$^2&p+baFe
zY(ctD{+Mkz+2q!-ATIDlX`cqiMpr!|gj!8Sl=i^`DSPF;4j2^lM(tEwrOWry;OL9@
z*5(4whDvON{nnY}lfb+-bF&lO(eN8RK+m<4_y<s3*Z}71E8h#Wp!-lDNy=~Cv+bcC
zw;I@aRl2gR%&CYlo&WT$kzvt+yjnx}{}h(3oM&(NiGQIa%lAs4o@LS$`{38V(Gln=
zvRbOEruM)@OOAvTfiMe47c%STbOh+PH%@}4JJv=|t-R*AKXf|fjh<OfrQ~M%owvm%
z3cGAeI^=jQv-iVE&v`!H98rXEJ*omJ5#EeGfF~JeI7Ml^;<xyp&+nLy_<zsK7z~>P
zJ>N2_;*yZ4^t?LivW+e}{A(BPl#$p(h0Fu*D-iO#``3=B1riq}`-QHGKnsWU4(V;U
zD6;r3DNN8#m~Bi?PmgN1JN9vCp5S5Vp2UAt3;OjIh?VRob%tHOT$UCV7vn9$!sO&3
z((%NTXl<k#@E<;~@#*ge`%aXp73${0yWly$tNRkF;4M1zIn%pUCcC`cO4xNQDrFp@
zh-g*&Q{=mRNtEq|E>#IfIZy89N91^8jK2$&QTL44Z)buApm|S%Ct}wx5xBG&$sM>I
z_wa*<4Rsw&&H+Mrt#Ft4Ki(>pY0E{Q1{L3^_bHpJM@F{<%W5TLiVuo&t;{ER)>>_I
zY}ZlxOGHkqjyHQ@ksOB?gZ>THyqK8Y;nPozTW~o9bTU0Te8iV^Z1tQ&C7i2(%Vc)_
z_a=nCNJSFQwA{$;BYSH3UNPRsW(+hb8==bwEEa6WkH3tJ5RRvOx7~&j(`~efgiGg(
zr49uFg%;PBnCkK2K6qm9?~v%SIH(@VseZ%hsbC`5gf@|HW|%}s9z3Pb{BfnynO&z@
zA)S_~-4BYFb(gOyfE#7>k)w5L>IVqjU-Y{f%gErQ1F@OhAtEL-2K4$X5)RVP6tnVL
zF}L`Uc2=}1J_9pzVlTCqgv9$MZd^v)+J|E6jZQ8_e`($VC9NKe^BIaSsH>;TLra}8
zE&JQLvG^R{`Q0OavF10Q2F9(OpY7#ihi=z1DJD(K?9aDA=5j^KjPewIq?r};H&Iip
zz}dZgKwh*7JnCiN$>o<G`8Bz=$I$#2D?jCoRPz|P-=x}UW#m>Uhv4v4U`m8#>w0Om
zDo8Tb#m#RI=`_z-Hh-tiFDvr$qSa&lNaR`1W2h0qfHB^-H01nx6Y0F;cln0~vhQcL
zFUR(01>vKIDE#H=M}>7e#Sk$=G2b8DbRSI>epvqnL?9U;qD1(jqLmc|mM+P_KrJ}s
zDqgcm*Cch?A}^gOc1c<u$ny&>e*=`2#oVbnhiUG@PcO$oaiGca`LX@@DmxnNXmd%>
zEML1%ZNFxfc5kSrE&fv{NP>p@Mbc<UP&6YWTuY`%>W*M|V-Ehc;QhE&L@I%O1LS9m
z!>^=m@ypd6X`vr6+~mR%<@ivEf8d@;)1|c@)Bt#m(!hRNQqB;;fagz@%7^Ujz8O8-
z9(rFER-3c8GLd7wAMfYhlf0CjrLTzukgVPkTcq9_R#ABHieoGc;hd33EP3_FRW_AX
zMeLux#HA5&C46pz+fxI6h%eX(Uke1OL(Q}>I%VW=p)3PC0f^en^O3ih(mUJgjg3Cn
z+UVM&qCS~u16Bh&xi(uYTGP-nTn5Jx|9j#OsRzKN(p2;olmINUdrpeF#VFukzk|`&
zD|J{r6G<d(214&+v_?0BUITVU*-@Emc4?_i%%fYsaqg82sg>W~eV*|m%*DpcyEL4u
zF%rN*_?`jKq;>><J~JqjHzmi$i8?#83ccL#JWam0c(n!vG|#MRexik&Am0S%(vuGn
zB#8!Y*!e@SNyN(Q$0an6@XN7l8Ar)szUUx^)tHj8zgyc>0?DT;PJfT>IO7{wv?P&w
zW3J5V!MC<MnAHRhGMa-(!9i&6?xnFYF*Oc|gne&l|1&fmkHupP`G`t5^1|n~KQDK9
z1UQF^m2>%B^kS4c0SBVTxq=ar;LTr&r>7{03rpukh&I-MMhsg2dFu{p-Md}sytPtG
zbYlPX{_DmK)|!}uZyCkyw-2c%WM5H(OS(}fZu84`s1-B*5JmzT?du=+F;J^cxBfqu
zssjfl!giW|!1?(7|2;0VaNe%QGq3)B^|o0c&~*8Mg5MW4u`?WB3go&DMeN4FJGuQ3
z%LVKN>Hv<3kB^>yEaE;!Z;Di=KPf5c+um5Jc<k&i*Et}Vwf*U8+$RBuM5?V?q{dZ$
zjX|d!k!M4qP-VvYZkmMN8;o;NOIpdFNMt)WdrDM^VC=iip_wGXkCwDN(e4=7YqfLo
z1#$2+BxY{+oJ2lf+@(G0-d;xR3}qKHAx%k609CnWO;hb$uR$pUooSNdSCl*L&hc?O
zEc}~PRQ()h&xVG2f`i*O$H?$T^(P1GL2AT>b9&3N0j1T<`xs%#NJ|gs#ETS|Xc81u
z!Y^HH#%h@L%=bALr9alBC)_M-g=0Rq%i!l{EXF}Z<!bo5eS04|o3P0wvGtRI$VZIu
z<m6-~Ej#X)@!G(`bd#(;8&bBQ``&&*RkY$2l7knqo|i|RCRg7px{p_O^&=yjRy4w)
z-$@q$To`WH**>K(JW@Cx9zqGJNrt|d7zPQ+8VeA)9-CCSs%=yWgDxqhT0h;30mZIP
z^jnL5xDSO<9&cr2{EW&1H%4Sbk$B}pW!D<41uC&0?!CVq^^$$;qaC3Ha(4AQZz!p?
zdz{7_f3&LJbUbtSQ<hg!qs~N3w_2?Y>>~a%A*fVI6MK4aJwI}(Im+04>i-PkRk=+w
z%BlX)AD(3EU=Plb;=B+4$!q8Rniuv7Dcq;r#{FBbYm)qPQ+Z{HAaSo2CNk2LRn}x2
z_FKb%Ph&?`91*fPK{P6PjVbnA#K{-G7Z&55?%<mUI1FR51rl_08QOQ3VQt?`rEvzI
zAJB+iJc_ln23DHQnM^#z*8_E`7PK_<jRM`e`YQ5@k!CAiwI#GZA0*|rPG>Zz=X<tU
z&%oSm!M?|SI}Fl#o`_n9Dg8kNgUjU3-Y34)LK66Vy!AxILnH^bu=u<QW=%#OmRy7C
z@<pQdnOvtpxs8`0Ok+ik6~t`=H+@N(ei+u{=Kfwk(){A%4$16_K6^M!v)CF}3sh#^
z<jnNhoI_={@4ZNJOElUo(usuFxtO~b7*=Lid497o)MBR=I#vMG6^611n-A2Kl;1(U
z`F~Hzspa}oFEb7!Q=QN~y?6v)O<xUKP(OpCX7AfP`@(uta&m?+_d-LTc}eE4(0lx*
z+1S+Bq|sUL*zMs_2h<Oy)D$bE18i&_IxFxu-U4yOqm-X$`6VLp!2r&^K4UZ38XY}V
z%vXBdo7u(FbMeaKY$f#>NI+Us?$#Y0Tj;>v3g`gxFW3AH64RqQNJWQ}RAf>3imlk{
zJ|x5HoW`);F<}P-9yr!W#CO=htI2rL;ss{SW_&wI-{x^_@V)DHRT^9N;g_$ZLeY{i
z%<F-mle4Vq!kR?7Y~9JMoaeIoCS61tM>Qim)d%c%NWs+7Z_KkF<?fmsHYO*loAs*q
z`>)G5yG(|bR{#&BfCzFn%+s-&3BmA4ZaU-U=Yl9J4n=jh$M}_p$K_f)V*GCaVe(5k
z?0Ti~Ljh0THQUFRahCnz9$SEfMWrHfF$;qEzV>_&Xae2JY)%P4EQsZS3O(TIa`?7Z
zHdXU~s=EI^waR{oMpFxC-`#EYhCaE10YWo1x%m&aZCmq<WyZ*9Ji%FlkFj4#1z1eF
z*CHZt2nfcb1ikTp^eG#y%(q-RUFqad#DdUZhI)>qtxF}f%*0x70~|6fs^^(-m4o*A
zcZ>wGYi&vV#@ykAVIj#T*~}@K-U%TBH#9J}F>l1xw9%?l@c=#4Z}PKkY9BG);LBzu
z8}u){&-L&~K`xeZE1^lvR;X1mJc)*V8~laBXZ2{O|4&(imKurV?>PCTUJqfdcI(IK
z#K9oeOZ;Vi<<6Yu0PbvYScG4)D&`L&ljgYfv<s)R6(cjfU3TBo8M{GviT6i12k=kv
z!t9y9o*pNHgi9%8DyD2yrYqtL#&zs#TzKxzDoMnC4@KE!zJ+lgN4?|_kmQ<~t7s&V
zQts~JO<hMnx??G*5orFcOsTZfYm03N{`!`KD&;skn4VC!G|8D^uCsH!Scj1=qwvA*
z>U$?_U}wn&8V-1=hG;1`(u1zWL!Qf>z{-ZPonG^rrA;^5)fMOIs^hE8&k0SZij;}?
zhSNq8?Dog|yP5%I+)8$`cu_&TP6dVia5I!STJiZ$UOS&Ydc2tzvYx82RmxF0AfBQF
z+6TmHqn3u1?n4TCdKCH}kG%H{(G?NX)m^I@)Y+d(k#4tdYXcMm&fCP${XR)*qibzJ
zUJtR3T~@gow_=Y{vUALu{f)?Tg(_<jqmtAcq{atcS|}MtCrh#8yXBvWJ5%2Yw9LtN
z>N@<o-esFN-L`BrA421%ipV|>3bgf5ud^XG2tNUet5K!dvE%%C$T7C)`j7}Yb(9fh
z<;>c~lCa7Vjn~{uF-SE(9MM33pWl1&>4Favq-L=ji}rV|T!l@Hx6H$!hHC3CF+Gou
zwx<WQ2tM4kzM*pKiD_ayzo-yK%fKYH%at?yet7-QUUoLZ?jFg&^Pis9_X0<X1-EjB
zKU=DnuClMg{7xdLwV=3eJ|~#zImwbDrw@72{1L??;MP-zW32g1<~TgbE^*(v^Aw}o
za_!Xr6j)Ola8^@>W7Ge<r+Nk6=lN}!aqw)}%@&z%>$N47C_js>npedHTT5!p4UfAb
z;{p;b4-z;Z{N!_hP($(ZLU|%8a?yqO(G~vu))@nBn}d4CoT{-{A>CCtq2RVMv6z_q
zwcF|^<U>IoP@P0+DWGZ$#}QRl=TO6b8HS6xk$+FUGxoof3fT;24;PIVBQ+OUreQ3W
zhkmUWxV64@^cnu<a<^)NMdE|h<ZL9EI<rJjj~fNuIyLv8TlwCZY6ebIlM<*45gS3T
zSHRxp2)FrErh=^ne6cSC!T0yxfzq4~@M9&jz}4*0D9mB92inD(%}}%}jw;QBW~r{U
z<Agp<Z{;NdZKVf*+Gz9dx9JVw3%Rfm4QS815p>&EB!(=M_B)k3&iOYZK~I)cs?wHY
zE3a>FoA@sE&KrOXdvf8W?O$AQwLsNmTPHw2?i2EdD&4S;fp_brFk<>(R7_+2e;q!X
zono7v<ihW@Xp6?uB{kkPaLwOx_+E+`eM#d>e6Of_z`+xWHy#plkAjR;@#Qq#gBA)7
z7B%)wYA&Sv`I5ieW!LCz?)TZV=Ib`cO5|w}6()!RMv!JOFbvuau#0V1)l;KRi60-G
z+6d0^2y+Oa)`3(Yz6s~QwGPN@zrW^Cv02VtpTsQBU9S`#u*oDijKrH&seEgjc`jzA
z=gsla(h8S^g?_4e()CVtJ50PpMUpoh?Nn;jdLkcnN5*wr6%=Cti_bLXG?_0^f+1vg
zbX2P19m?q#afPk4*iD8Wk@EFiU17C9q%Ad}hTsu=Hv4ncFpYz#1=p|ctp5XNA78+e
z6pCQ6y;}MduMFa*zU+dYhkm(iYwJMWu1QZ9V3^Q5j;1WLvcw0~0&zVWrEwUBjMUUI
zz<*6Ui(UotC3Kxfj6$gAp=bH#03;AozvG`UU|ksI`!SACZeCs-10cxk+iqnElA6OK
zlQ&bnYZhd&t0)ydiVj*W!x+e4X>s1-Z$B)EGsKSAFFC;eoVBy|{_Sv9u($aX60*Wn
z`Dg9<qm09oF^19Nf_idS5BFkKkaIwiR?uVqPUG<?kB_Ttr6ZBgwru4&(F3nUK-()t
z%UssMMxDNl!{=-D3hh_tyDL_Mfx*=|dw)0SZ63@1?72Zmv(Q6JbWs@wu12;PE}Jpx
zwq8>$sT7UF^5F4M?98;hScPq5i3wk?(NmoDp!T|fMbKoqkN{HZ_>|6?(v}d*jvLCf
zJk85v<jN<mgrD)%uWI*BMSl*BIiF^n1~}G1?#_ehn%edmj1(s|@!9@Qq}aPwi5=-I
z9z^bRI&Ah=M*3O=IDv&gb9}MTVpDXGYlkxz?<7K%{LjP1jYiI&TmIWuQB=~E<z=19
z(e)17chSOZROe+lYb`ER)gTcK<fY+4kf;lNi%aV8IK#Nj=++?6Vw)5`n`2$J3BxM^
zr%BE*!oAOZa&|NWHcm9Q_JB!GMmJVEj?59?!3L3GSXP%T3uaHWr8wWRsA0{@R`WVc
z-88T!<NGP;eCqWBPf1ZxhBIjRnN{G7)0&$J7mrwuN_=@)FCl$yU_f!&?f6B{8U^w<
z|BT-)pqPrPGem9L)SUL{U*OoJ?2fCz9ZA7UVQt~}-w3Gi9{93@%6a;}%I%lCbq9GJ
znO9d)-)0Ivb<R$fYan9b;K<^d5HgLB9hv!Dj0$c6Ps-e<zz8p)P8m}(doi&((%_DU
zK4Zv+X+hpQ{RS)eAO-^AP97qmEZQ_ZG~CN@v(e2ReII{?{vsvC*1-l^?SGf(VDgLg
zskymifbR9DVo~ecXO^Y7y>W%#;O&+#)35)ENWdq*B0hZ(@NY?exKKjB6{92YQBe4l
z9CqWu@cIz?29EkyC%mf&ibW8i2EK66o#gFJpM+?q7jj=iZa7h;J4aRAko@#5rBJc~
zL&c5bFw;NKvRQtybkx*8nt@`5fn$$5O?*$f<+>Gjil*X<|2hL>{$x9K+cd`kP2z<U
z^^gdpz4CZ9ba~=a1l-pBf{uxU=qC>bdJtqHc8M9_a{bP1;C5JX=FG#;sjguD8Z2q&
zkzJ`VNC!vxPAPzB#51+>|C^5ePxq%Q{YQ{v$o0iaWhOc8@=D)e4m0g`JYHdz<G4<;
zes)+QUq)|-T$K!=<CjS*ES%F(!lO!vW-m+|I3eY)dBWi(b57@mM`;>!OKwg{mUFYG
zBET}(R#<5Y$ZnZ8_J}f!J`79{`~FC3s)yy3H^tVfMO7;!;a3GpN+?kuJvmQhGF9zj
z4PahP$6|`8$BV%`6hH4u3l$bM$2GtR^9zvtRfM9(5!3gyzmoG=O1;iXufBXV0Wg6o
z$utCMT{5uMW{1Lu>w~2VhG~)4&gMp<^U&I^yQ~>khei6{Uw2X12HwaB7bTz|-&{yQ
zwf+M>c67W72K~d2-t_bJLYwilQ0b$lPa`mQb9&9kd+&=){>QMuEQ-=*o4JZ+BVnGm
zL&5LfA4|`(2$gOk0@{pOtD2d{MnxnvG>bK{Z6&!;*0GOGrZ(l}nX}{Pb>@+ru3=((
z{ui6XP1M3Is62`*qgX{|8nYbq=POOsY64sz2yJzJ@#I%kt3A;xy47tuO86~(<;V1n
z*G8Suj{fF<N@lS5vNn}F2{yU$IX(dtXhFIkh@Oc>0?~uNG0P29zWmd#);GxWBaN4h
zj%j>>=`fCvu`cuIDYrX1?t`@0+3P>>6=NrZCd<E!U2(O+G@xqWi$JVhW9aDDy%0Dz
z-(lemQAOg{Ag8*%IxoBaUv<mP9`SypU-TNba}3W~M$~g11G!9ARVRXvb2u5JfhZZs
z=r1j3Nwy=qzP8)>T3aJPAE>mnFe@hglq>XQd^L_Gut<%hOFWNEEG$xJV~fnJZ;~!^
zVI&o*|11wLjXyOfdS0$seIRDEGE;u$*TgCqIP)WtR63FT?@5+**qED1+>qPsxyeT9
zb|*^gy}y6Iq5N81j<4}E)`!M3sVyPtq{?&=hurIW8?9R;$olV)$T3ydxWoD6M`IVR
zB@JzTalb{DT5W4h9to2~R!Huvrh?OwpK24Y0>)st*6tb57HW9<V*e<y{3UpHxT{!0
zY+NFTwNYc&#49;KvQ|C#bCA<8m2I9O<|KNOSI*LG+t_^dPGhx^`e|)KC2fwKHXaz3
zIQNpV7QmeOJs<Ht5wPY&$w$*top84CMn>iv{Zwru4dN5vb@81pGfrXI=*4y5Hl|-;
zAkD~uWAnZD@Y0Zu^8SefF{28R3^*PjtJJ;iGW+}h7apaRjx?}~M|+7+?5OQ85IY{*
zb0A^}`WY{>C7hS$os=_JgsWGhm{4iTo|8vtm+~^#G40&`^wUY#8$!TU(UZ{$QCMDn
zF#CLJe2My5vdgdK;NT`EhOkev2T(<;zP=b`+!Io03(H|(e)T$6+)JJIy+bkeIFTXF
zlMI&{Ov&*6F*+F>+`S8dD0y2+JzVa5bm5ns1EvaVpBjO@EV`QE^>w4Fve}w1m-yq)
z;%zIds|HoF>I19i>m3h#NRICAoS3DFKb*Y0g+oaolVxZXKXkhV$;iac+g+z6;A+~B
z>0@{O0ZbCL*bafr$)Z-Jc+Ss`;`S#eQBh@LM(&pqjZz~hL@iZl-8;lrOPu0?UVelb
z#;Wz`nJ+(sCgtx4G!IQk!PjqsGcxclV-AKYPqHY!ELq~Rx_ly6_wn&@f4X;R5Z7ob
zN5kCsnt`r`o4nJds@0^~-0hKlN5RM#BibnJeyGZ|XEWF7foN{{cDmj5ij?}@%4|qz
zXt~2`^V$IrYSJe;&<-ePThS*Fw<06Fxp|sKMr3UlDpI{w{tZu`mmKZ)d6WDR-Vxdd
z($|2@92@5BL0-j_uq2K#Q_vS*VgviKG{ok1RK;wGu74^yn10YNK@?KPIRbx34y@$m
zk;LXFXFa~^w*VkXl28B%R>yvtXw~~0n6;aA_D9yz@rm^|f=Wy~IX3wf6&0~6qo^~f
zm+*!jVy<+J2r=zWY;TX;j8^}v760F}yDEym+Y!^MH>}WlO0PmM$i}Q)qhu*p5<b#b
zd<>h6RJu<NTT}>p@87*c7_fTSX1LxASNIaaGWG>GczX@S6$ODN{tb$&sE)+2x9wU<
z^<rLn-UytzpNw_XsX$s>&GQE17GCPVWdWoal+`4j&&|)u>okJYBPvt#XJax_1Rt+-
zo))RBV7b|8qHo1bM@JWupC~%iq@Mx{{V|@0Y)ysA4Wg@lmhwUw#pG66JZM~<J&UiB
zD$qzsN%?pY5t#_|S?9$+h+(94dhncOIta4HdY1{tziu;mmrqg!ILP}euQi4~uK7`5
zf>_!i)Q<08<DS~(uMMs?-~ZCAl_Bo@yOehCe>sTTaGYAT+TUNeIAE>!kr~ULjTH!Z
z$&a^sUGeDfCM67pCuv=wzg!+2eR7?q&CayB*L{;z939QU5Ja|-1}LF#-*U3Ex9Tsb
zo^nxn>WmjfzoC8`aud_*>u;YNCT@h&V4Pqf(CE}}`3Qw5X7iA+W<&mNd0z%s2$imT
zEO|eIRKG5+=6c1<h4_6)6m`nxJ}ZTt=Z>f?DHDr<16uk{WoQ#tT>Oi-cu+qU+suI#
z2-8g^{6?#^*Tva--wYGnE?N9}ALjNo-u$=uFh+xv;xx%F0b3{9LDy}X+RYV%2|;Sd
zQ+=Scslmq!LFWrnZJ&q|gc&GMAQ)B#0t=HY6JL9u^CLtUAgUOro@lqR(Ibq%=3r+J
zV^tITg1{KTV=drGhz%E_o%8ZHbm{LfXo4p_c1JNjT6pJ9!vL6%wsH$&q-5m&QmJX`
zq2vKY)z>3NJuOzT&i(Eg*;!xVrz7-<3iD+@zJdHrBQ!E9Q$+VD3cooYqaS0p9~~Sv
zeimwH4n+Z?x=YH+Xsd1g-&8YQ>M^)ax!sM(Q43QbaD7wwIQT6iv^9?nzqDkOC+*nA
z=2DO5@|22tAQGHVmKgdC93Rcc2wOhNQk%8g74K?$t;T2!Ix0;GbWK;wLcuz)W}D$7
zt$_Eyoz{X+3nEMYa$57U<))PHlSA6@fK*R#3ary77SBjOek+o4KbLZWkC8*u*?@K`
z*31Y6Z2wLx9sbMaz6n{-|2MBesi}}peYQIGS0vyu;si1S&lR+tC<NEX`M73x&#TXR
zMn%uWEh76-ooi$xZDMI5z0(k-=!B@W#bC^8?tb>_vzQ|z4ZOffGOhheS%o67di=(Q
z@O`aQMKR(CGXTSK-|}yHj0P4d^+9`d>N~;#0e?p|=2DqxxjxIi1@OUhX#Z%FgADy=
zi`Aq8@%(d0|G<H`nAMN5S8(*fMfW!TI}0=v&VK*Ue(!}Jou??>Ec=$Z#Yy7t#qf^m
zg$q!|<Q4Mg?{~IaC=?lf3f>2#-)1Pt5HFt}&Ea#}EwTgXc!P{xLv?lf4TmR$=>#&e
zw;|tilqz+cO6fF)kX*0Gj+bgVFhSSINQ2PU&(xSZM3~blBOoSft^#{QLnM(^^CTi_
zzL3M1D~TUByY8LVU%&H{lV{9{$x93UWBtC-WT!){IP{AXWh~5lsPB!NuP;9UkG}jW
zFoJqE;Kf@eW&Vp8Vt%hpa~%v9@+j*3`(|zYQ(4f#r+2(V<7rHVPCd_eoktDFhdpoJ
z`dL>TillnY3%g|AU(n`N3K?ifwa~<RcC-H`F%4a|Bq8gNXbP$=L*a!omB>~ZYGzq$
zI%&Y2h8=T6Oz)CnEeZ8STurJpIz)AsaRbZW;1a1f)2gb8j^OUDW^(4hcrn6&=i8-9
z420oW0vWG07kIC$XDApK+{HuSaUaD{gI*c6HU?)K@GcLM@OrUT;e`F@t`PV@G(~80
z-2v&|IZ!|_1fpHK3_lEM-Asq$+3EfM`nGh-58|<8RLW&p?Z}k;0WHt&6$XA~Z_`Yw
zO2mGCIsgS7CaVa~bT6o6bH^g4K31U9oB?|t>;eKU=z27BdjxUdz3JuihPNyK(C>U>
zV2f?9m!hK#z^ZmquSLC6VKJ%6AV4X|BqGQI_HRIc#GBqxeGJ>(wZQRXrHTz9eO|T(
zxh#sj+=qe&)r?t`Kf1yQoH~1VZ4_+>d`O4MRMDql02kF#y}VoLh=kXfbUgsNzI$@Q
zQ21}q?G+&S4(?7WNnav70l`CS@LzcX9^E%o=B_d%5#J*FREeF}G8iv>!NE}SA$r5p
ziMh4ryPGI8fH(Wf$woO~1nlJXaW4S`9mjNpTuoQ(#W2^WcaH{6T~r&;iXL#myBsfI
z;7h8)zCe#foH7ThedN6FdAd?y!(Rk}iGaKBIcI?ie8`f&y^EkrpzIuE6$tz|JZk}4
z)i=Ma^}^}p7?3(=a~RI)m;^M<JfIjlS2OCF1x^?)hPn}i(B$XmOG7_>g`4F$4=z)1
zx;?w@^tp~1a&@WN^@#F104{_YIOdAszqJ7W)9uW^53W$V^Tl$EA@|lDjHXSi9{7r2
z+<566_cmTE^dknbtmy~^yaKxP7vp!V3}~U0-ucpe6O2Uc77=%U<8X5eW#S7WtVlTu
zjRiF&Y%Gpui@!vozn9VVRQqC#m&(Qb&e|M`Fzd$K<BZY{li;s^G@u{h>|Dc&wA5o5
z{A%f@TdZ0j+-OVfK?Hk~9RE|8H`H^&FVuB<z{Tq{Y*t2eH4lqp*Z1m^oeBdu&tlFo
zZv{|)d*hH4_jSZ?wlfTTwLiwVRv;tB3FzA0i03l_6TBz{1zlt9A+mEK%n8-{CawAF
zyXdb(5><tKi=HAj;`!;T=)LBAdj9l%74Bh~gEquhC2$Hy32y;|Yuk(|r*%}&w1ih6
z{nwl0?K3Ii#4T>BFtJRIBS>!59iu=<Gke_d_}6IX^rt&ihW9}NCtjDm+mz7J{(dEY
zLj3&1ynMJS9!3L{5atvwG2`c_>(YVY?<|8t%L&u#>#5Yrgh0m3r-Qc;11CQT6T|D_
zp<JsEY?A&@mxbFDLxlMwsbf%UCXM$(svHbVT#V%?>NF9c@wDguP-rN;SE-IMw|`2t
z0|z|ZrAHZF=kW0CGPq09B=9y{no&t!eoojpYZ1C+;`i<T_XgqfY;?=qDMaVnu5|+P
zUzLAVdgF*imI=N28~(bRjOqQ|dua^cHviP*pcREaTrbs|yeP=?QwSHF<Bn^3VOHo)
zHGX|Lxw+v0MT3R<Wz+$7s_#pi!H1)KrdWbk61^C$->WT7lMW$o*a9BKFYDMr3mGE0
zFL1+lnbqFENl3?FkG_#;j>!lXU*-C^nC^zM8xF@=Py)PR)v&|4>A-w&;A)xW3FTCE
z$2p-4@JsvkD#&nNdJr))p5}mK0khLhy-!kTj|T6N-JH}0T{_*^)o#!UU*HElEzmb6
z9vnObv0vg3_b43D)?l}WqC43(3qyg4!>wS#pa>v>di32_H<l(mXvxD1*c8o?Mh!X%
zg3by-yT=c35uj)y?y)vJO&8Xn*S@hJUN36J*03BS!a?{6(1X4hb;2{?*hc}S+bx}8
zkwhHWTHfY;syjK%>xOc;TvSXg{k@qaIZCd47!G>CDJJ0;`-xj!RMkqU3{S>qdoLP$
zlM^J3a-;uSUaTruol~|eQ376dtmb`6JA_s22%JN7|KN2D`@`h_Dc<{<P9HW4uNe5_
z-OZojO5yq}hE+nBP!sQnoB^TRzkS##^)S*(nUGz=e{DokDBLK&b~3pcgqO{ruAf!x
zY;Z-~Sk4}OiT6qo_t@0V{khRwRjO7*&xWJ?N_efAgI=Xp?w0N81+%4ys12n}13Zvy
z+KHG(1eH#N+Z1rkm;JaMS*o)GTlP?HWk>nl<k6RuIkxyp4&GFML@$`s+urJ$f61x1
zzE$Z_YA_B+kaLQgVs@XNccNnzoHb-?a2bZ$?}K&M`hDZ^SY$7#8UuS3*~n@`kgf;9
zN+&ApK1CG>2lrMz`j1DG%;dao;ZNl;_uQHuJI{P=xDCDOeEd26ZT>8t?ct%Agy(Nd
z?OJVO)7hY#ReXLS5MNGG@QZuq=Jc=vN;`)%?2+?Js+zx9{F*0qxTgGz`q_U}O-vty
z2Mq%Ex+jdGL?Xko#Xj&Z5PDn)Y}P^;pV)O0D-d26I+xBKwJwI~R6MD0@Ofk0lpS1R
z@~H?8|K*|UpiywdYncfR^J?T~xmGCbTQ|J9NAy*_I;xXF-S_cj0p2fdIkYdM?t1a|
zUW-+{Q&;C5B2jM*`k|Peei=1S?_4?Uhhj_~THa3+uqMP%kdwnLf2Hf88A&x98?c~s
zyW0X1<K$V`i7HEf#Z<wAA)=l~|LQ0h1jqSVz0vxe(kSCdS-K~Cr363bu=G5+YQqh+
z@bA7ClUcO3AvJ8yUrTdYv^4x57C`(T07m28=37QZuYu4=3wK(Xhr=*f#3wPb;fp&+
znWdjyD4^AjTwll9(aGzX{RFC6mk+umQp5mdKcSa>#C|s!{%4$}XQHC#@$T~U133jk
zVZ6{C-qD95(ZytH(5eMq(S&LLkI`R=$l~-P(SQ>f8}oDQ=W4hj-c-H?9l5xanp9g}
zL|8G8oyW;_=3_o1@>NydJ;U`IOa!v81z;g49(7XoHs!Uv4mc=5M2w!>8XY;C)%0B@
zV-M`SBd55eU1?6t_oLi=j@Ttm(bRvmR5Z9_f{*5L&mmF2%S{!Di?k9->iWvdP4{ro
z2Ti=UKClxR4F7{^s0a;CKb7qLdh>k06Mv1w0)rAD^UJNV;(vzIN?23+R58LEFUI^c
zbK5klr^G$eBtFsx-@pXEKJb)<b?BHU4duuoJgTL9YYj3}2u}ho1qH5fW=1}cjwmSJ
z;*+icpbe5NB?;mGhq1Q|h%4LHMH_c_FWfy?aCdhP?jGC%1PKrzXmEEYNN|EnaCdii
zhr8(Bd!O!o-hJ==gd&xyHRl|2$S2woO%F8_%#&Mf{T_G{@2MoDRzl@MBYpz<Az_Yo
z-@~`R67kMhvIQ}Odi6!(bzwl5rWGUPH01mCp7%5&cfMjM@)_lY7_17UuJ~U)S0@&X
z7C!w0Sb_;YgI46FTbEHOt;%YH%`ClR5N|38*gdKq8{sggeIGB<3{JdXH%7JS2|qaa
z4wx<E>Do62lT1B7J$ab3ncu7nYrL*~(aupyXpCVLp}}(}y8JY+fAn#l=(9Y27@2N+
zr4F<~FV__R#jg8Q)2x{s(+!**HRdB?kWrEQ(9tf(wlNJtw8xR|kKudCkGZVO%;OV-
zGVuG+?iG`r*VhzBS`yjIA+i2qnpDUrZ4OPK*m#8NUn&~hiPvN!Ga<j!VmcvmM~ef(
zphpOy_UBo+triRv4x|+vrj7o%wd;S*tQO(G%+1dp2{Ok-KJ+H0IK7WsKxzH9<P(&9
z<kR!x5^B9bE9R@dX&k4ks23h=&d>VMBd(0GEC(91Sz#*bO)q4Uu{d<j6l&?ip{W@Z
zGQ+JZIu+HUly)24+JTFJt+`T7-iN!~zB>UeJ-xv^ZC{uI|0X38(^vmj-nh2ZYcghw
zrD79EM!mBFiJ0z=#&@V68Rw7Y>8&O>x;#4wt@~H~E?W|@C=R6K3@18~&Kc0V=MF1~
zeyQ`l%++1Z<;L}V@XY@iO#q!gCb_0W(ADt_5@zTX2nmHj@2{W85@@lS6u^7u3^>t>
z->$F=`^2AHOq@L5%2U`@armE%#it7!Kd<+xe|)qvx#NN!Y*v~M+4pxb_q*gJVOAJ>
z_Ex148%=$rE9DCM^mMH`%2xfyYyclqLEqLTUWDaBXtX0^QdCP=m2?d^nN7rK<m+R?
ziubK>#qL3A2s)<~0oO^c=F4LpV)!;<T=E_w+4~2|=m=X)VA-=>GAb>YvL#89f0O>~
z=r=%ouS0L5Bk9}4-KNyz;#Tos`LGx(k6rp>yYcp%8lm<Qsbme5-{ok_+<N3xjuL@w
zhdQ{5(H*KUNma?Le}TLUCeR--OsE0MmGiYge!flM<@Wu(7w{RW53;Xc53gJ~y%4~+
zarV55i{^$*j@5VVr=}Y!`$@Mkg;vi>`)mR07{PT_UREWA>bo4tcARqmLwW9<<Hvpc
z13qaz_Kg(cyF6BD*U2e7=+3i75dg=hk~Cm4z~663BNjT*t$k|KZ8hnoD}t+a2h5pd
zGg>p7Aw(L2ej4sa_l@`XYf-WW5iV^%IPo=7|CFT0e;z1Zs0dJN+Zdm%brj{Ze`$Mn
zbIJ8v11#qz&vUZw-BI5LZ;8L!EZfwCixTR5*W>lp<~|;}82O5a3_YAkOY0pCqo)5D
zy3Qwy#}dQuPxQ?ydNGyX06))<vrl(CNa-J80syz7Gj?{(Dl!_(I3qL4o;0dUT^9uB
z8p}SCh@w-hjW*g9vxn%$M6P%+yvJdJP|KbqpL0(BbN_aypGhF;TTJ*7mNailaj31M
zgAt=ie}5mrbT4?0{g`^9{;s}g;+H#Wr&Tlz%<jjyBlbb9)G}DJX?k8fKXR13lftXO
zca!G$jCu?wMkflyTgTR(V@2cmnpkfMy?l5__ZJMSUBFQ@Zf6|KkGS|<Oaj_WTm~9v
zUAteh8Gg@tJC45trbEi;I|la3j7wT?`AMYPiIOiXu}XFagI=aBR{U)Gu^DKId8Ww)
z?!s&{1pOc-hoAxHiRs-qzg|_z@WkVTLtz718UK(A^}eoJL8b3;Ar7vwAe&-=WX;B1
z81RQpZ@(+8>kGrLLVoD;r=F>#MSJIE9**_Y&1FHRIPG(P$Tk{vdY7{Vc3$xO82TEw
zQs9a(5=J6^P5`<I;v-L~x0_A@y2@i^u(ene14l=;8WKHpX3EOSW&PpR+Njdmd`|$5
zZfZ^vRhM!f4`U|ltjT`)ef5T(4HYPgkSDgCb?M`zyek0boP!_ztR<e$d9&m)>eQa?
zg%C)Sf%m4Y!DKCyQDL)O<4dCh40P0tgrhzmyc27*Z$9P(N5k11QsOtLv&N#g4w6FV
z(34vV@_o7AO&R>5=I!R<LXOIl4<<-sy}5{Z2BC}rsT`Rk3PPmMU(<fhPcqmbQ#uI=
zC_?VB!hN8$+fzD6dL`V)>$7}*xGu|!H2K^HOu(Hv!a9{+IDD}s`9b^;lRXhQlYll$
zF<^%w$0yz%6N0qOqKq~;YqwB4&hm@<5ooJ^#Y_^m7JuDtP>gIfX+Jk$@wsy(-ju|L
zeE>0wKF>}GMTKM^0s4^Ic(}V{VU;uy0!G_vSA|R-$@QwKjwbprmIRN1F8H&ZfG>;I
z7wuJQ)NUvKuBr{>jPi42#0<zN=8An9Cttz)tvET;L^G!qVK|-GIH#9CBwK8ZpzL4=
zlj*F6YU-V<9k_8=lCN)9{Vj}mQKOy8*99QS*hZvLtMY}56iP<Pk&QhFIBh?OJE!sb
zKHlUb6TR<0n%0w(i+M!+)-qkHiSR3V(r3k}-HCDSeHTZgqtP|%WYY~Eh0PS)h2RK=
zUeI^MKj;}4%4P(yvi~`gQ*wvw)+|pn19bVu5;Iw6*;^uCZx$WO4$2h!hKLPX81U56
zfsJqDrj5y`_i{C<_~b}Gv>AYpQpM7OyJ?2XjD^!QKP#Nvxl$dD8G@rS{F{bt=;OY%
z=dj0MID+MK;jN0sgb~%j!4IKwg%mykHrwIghcxr1wv@x@HYAsQ-8OFphEM^~Ljufr
zqBQ-w1KEooG=7IFjJC3hOV|)R;xl*++e@LYct#s1cl+}1+x(dPS%hLUuF{wjul1QR
zk+Z`st*`k}x@VmiST=<RrMR=yX{AStB{@|W&WUt<MEQw-1#In^gVZb#u;iYd*voY*
zp_d;v1k&_qrK%@>qq#&LOs2EfM1H(fnJA)R*M;7{yKqfeP3gOWh;4Kk*75XBvC;>6
z3DLx|rp63UKkcs|*Pfopyk3JEA?u7)gPKm&HQPH%dTRVZk}}SW7n%I2@)7=zL$yWN
zOqksb&8MEB^>!EsWlg^v8H2v^y;8$A`iE_&m<d*Ag80c>jJL6M8l6jLViURsJhMLg
zJjTB&ix^wi2@DDQl(S)s9;>dPle{9cJ85J>qSvpqJ=#OHUf%$NuD!~Z!hnwm;OCve
zhgah71X)@iQgE!UQ%atD+6Fhl)3RquxoAB6*?a?Lh$n<nf`u6$?s3{a2);-o*1@L3
zl>F|GV4JxZAS3bR%e>s=3o;@Rrb&DZZ#!9Z7hy=X^C1cByyQK7$x3gS6O0#r0q}{+
z8kPArXq*?etA1joaF2~1=Ms#z2i4n+p@*njUUKkNA<Pp79_O;To3!Vir_YVXYn?1K
zA5QdEtBg>Voev4()AaHm!d--kF{X$zW5_VUzK)VkJ{wfMT0}Xc4r=Bu67<Iwc$(ft
zDp^!;yFcd=@$ci&-M{*rVdWE5@p(dB6Y5o^-T1YKh1WQH6nkhlXlovIl~AwdU3F2{
znih$7DcG&rh{evZefKy+Q*oGy3KbxED!4VBtg`Z>(Mk%>-_BoekS9i=Atph8Z1Xpm
zHf2gyJWY&v>@A^Q$@|=19}Xu8ogn4g#MA!bUQz#OQK-t#u30EBGE#lOkxSa%XeQoM
zdvQKX>p5hvaUwym=b)ehU+#TP9?-C^l@OjUXj9YW??bMEo~*9QnVMJmcyE(?=<!-W
zH<4%s(Gv`H<v+S4aX+7|6H9@LvtvF9a~p*tlNs_{w(lbXb-D74^2~Gl3TtZ9noPXA
zwFzU@(=b`<x6#t2p%x=KdBPPFt8Cz3(f_d0ZoyEV@(dT3js}x&IdAb<xvxTyF|z^4
z6TbZjT5o!?TGhj}V&hHqPh32}n@H6oEX`O?ErTc_1t8d21E?KYjPWJ$wEu2Ybx^^s
zrMhQ-uL_mdN%q)DbfRozt2dt=D5X;rc1~!Q_TA7`uU?=3o`winLuF^cQ2@k`cLd-d
zslcVD!^-yX1msQ6CyemAi)OH}(z<HpTnVdrY(|~#JlV*?-rioe0UXmAK)>@vV`n?R
z`P3@^x3|Fal`7Rt;FLB2uaijGJ8BKwZ`LDoD4(lI<sDqhbrYdTF+!fbfe}k`2O{Ny
z;OkSI^jED`+(&#2jIMhj3h_sfjx1o`{(Xk|-WTSe8&sEb1dQV4_DK4BfZ@DJ%~^rG
zdLSW)wM$9kB(scQbBRr%at4Xg0+%I#jirCq`{u|fhc>>I5{$rf^bPN?VX>8SWK-GN
zYjQLf3Wb1eNnw+WW<B@AVicP`n%G26sevz(f>m<|3Qn_xI_M1k;->d2L2}Gjbt56d
z(13T0ShZ%_tq3_xgW%+Zy8wheWMH0cv?BmwUKgjubiV25S68Bbfi(~CP{3e}MWF*8
z+L<f9*GTIafA%bm$K^ZXQx}S0m32MEOHdXHc*VP-PeD(JU5ycszn<<d;ouhyea@ju
zol^ZslFaP(1E-Lk9|1GldxKirdA6@p(Qa4t&g6(>wNLiQD!f#dpITY~zG)!YdzKp0
zIe*j=r}E?F=A=qpz4kl%PtML8e+-&*22hsDW^Qh5+%?7b3Hv*AwrVE-2b%vElc@`>
z3S&qU|3@{xL7}{L2LzWnhH)Z;!KX9luuz9dN_jbgE(S&0?>wPNWWQ~JK5`idMw?3f
z@UTNA4N%Em;xxb<r|O>pK)^ewj^|g@t5r8!NBh*U-L&yZi9$V|csn(mE@?!bb>S2w
z<Fmk6a1b-^qQ=;SEwY?<Z*M~ZOd04EgpmV`Bho4OQYrm<`%<1mmkY;S`gXri!+Q3p
zzR8886^D@%ExYDiCA%m<Dp8}{Cm38P@%w%Tg@72PHX}L4Icv6lvt#u;4PGaQIt;OC
z%=69+kO2C-6Hki8%JRd_O<|xZhAIOkY+V29be_FqY8Sz&+ZGn~ffb__!@p{&{x}AW
zw2m{~dXZD@_u47QkN$XnZ=7Pq0`>DSo>U*dcW;>Xsa<zy9wuw{E^6s>%8<<=w}S(U
z261#aJQf`i-iC>34L6Jp@zUW8W6C4opul=Q&NMQ!T%+wf>~s=Pg~;Jfs2EchO(<P7
z`I5zVc056;Qf8@415K$AarnM%X1ALhf}{{_JV`~^N?^HZP2$+3K3~BjI5bAnlHU39
zHoG&@c2F9-J+&~nQ;j?&E|nh2^{`{Gfz}%tzHWa*!nWK<T~vO)*)>dw6Zu1+Lq!KQ
z^?9v?hn?0jj)IkiqC4FH&M2nwnE2D(L|!8_M=H4pmiMdPCY<r^rh(+g6KQ4r2Now>
zQ!5&7uKGsrN0q)d(SB;scehGI32h67>0;^En3<`H*`6&TR52^*>Ua-R60<xl|F*lM
zL1x-1`uLl|lYGsY7Olb?{FM7%Vy?-$W&1VjLHZ$DQud6RaJK!gu9cj%*6IepD65DZ
z+!>^I+8K=$G&vDWlB#xHV#lu3*vUmvjH<WjOqVH=#R)4!#LUyUbDO*{rJl;C(ug={
z$~b;TG@}t>R-P>a8zhniU_wPv_ZHm6p2K;Yl*CsX8q4%2WI78P!ofBkNiZ`f8@?@{
zd&zAf5XoSD({xI>X?~?PN6sJz9THf9`<u;%7EjRYu-sqt`}NVwkL6g4ke;1NtaaSf
zaYFq;AsKTIXozbW&FX9`3O>J+CZh=}z1$ftO?=*r7Bq+Yz!wTwp4I8R*H8(7r?&-|
zg>vtL4N2M^Rt2c~$l6$s0Sh#XPO9F>Q{WEIEf6w5goihFzWB<uVi`X(_Ng2Hlv0uZ
zTCGmqjA0t3XV&le!RZ2Mcqkt_*R%mncdXiYMnwd&!4}C;CU6j6(4Qv=Rx*X4LjvUZ
zT@TcJ*&ef1o&khbHHp~7n|0^2$4t-tA3<cyVbxwi)=ZE+EcTzPKYIG@UHSm-ZDrhu
z6NN7x{U%}6x6LO_vW8-pvMsC<mDGZwYlvIwX}Pn8{`~FK*1?})tok7!z)0xUynciv
z31k8{qmRSU;UDlzu`I})4?x4L#8rBg1a*gXykjcs1}T;uu@Acs7doejVt>_r)%SPq
z8su_290rx;Emqj*vj6L|4&Bu9ul1^rN8iu@Jhrf0?Wc>zch7D6PVxJW7Q-n$PpFeF
zlEnTt$89eUhsG_r2%130-QQ}ry3J4454AV@C~CU>dT;`1pM4>P$EBb^!oLeC#345E
zA!`F54g3#M;T<Me3(1Qv;;C#DqpQXFSa^9wNV3=5fz5ZcNHh5=T2<Jo&wogb6ibf6
zP@c&Q@?-Sr%0HTxexz|1-M$xTV497ZG{+@*9<E6-k?jD>>u*9QH)}s9g`?PCK+iX8
zTxe=*%cvW+jz^K{%+FWH(5?A#*%PbR9C=ZD1yH`|j7lp5%EHSzp*gII987GiA*6||
zyXFpzL6x&&AKWqE8vze{*W$!WkuQrHThBY(w~i-VTOK)275b8%rR*L#9q!F-`Pp`%
zam{fs*T}75ZW#;qb@-^B)g1W=*x2L6cHXHq16~d4-@j49u76c@E_a8~mHHLiQj$~`
z_A4ZS{3BASpdM_Zqa})wjSNKNLdts=d0(&r&%^M04ztOLT%Sd@eLS?+hHDqbwqia6
z<lluXl`|iuw>|_~`|A1&Un#v^^LjC`ALf_ZUtb;rm$>Rw|Mheo{m7MyHMK&lKe{A;
z@Bh7H**t(STt{D`|CV0dz<z?X83B<&b<+2jq2`rHE5XY&$DV~JXb62=Zt?t~rGLS!
zkq#w&CsGYaGqNS4e_llqe2USeT&XgGpg&ts;iIRc3l|X;O;&?Xuq7cOK@zFe$2nYV
zs7xdxGXXppr#pA}Vl8b_+yD^HBn=he=AFnV#5^q*Xi6It6qH<w7@7PDmZ!uANN{$!
z_Sc7SrG~~!1Tk$ItX#vQcG@!5N{Gmz;{`LnmQuj$d*MWQY?v@n=^_!@)k)e184hmU
zl16;9iOWJMvF*5i@i*l>!^lJ{EFVhRj|UfG490EGZ}Fzuj$q+Cv3IuRxuAhHuP&Yt
zBnmsvk-bHZ@?0igPR7#Cziq>}E_%IWRu6inU3+PX#GfR%4+M}|ocjldqIQx7a;&)_
z&iR!0Q1LBwR$pZ5=Tmno^IdkO9*!od52wG$r{0VYRr=^x)|89|2X#c^DJqMlu6Z4g
z^~;i!YVxRu(G+s0R;1e~6{&at7<P;Rr`KCSnI~_Ubgk-)i&0#G-q5Q95#JLI8q;`e
zOqB`q%b-8L&NHjKKcj{Xh3DJ&wbb|p+bNaQwtN<tyF&J@-!_5&2y_KC1)bfB9=Gra
zK8mZq6^!rLz^P>ei@&E0^zeS7>sf0^$9)PRa2crk=zPhnmS%D%?|IUg+H)}>UTZlH
zT`lGar&xA{dFrF7Hy*7~u|(HTnCp?VzEH>8b6~7AMUPGq;|z~@h4x}B4DW>VBDCPW
zhs)FGrR1p%*AS#0vxYN-340O759QwSy+$=kRijgQ#ifipB)}F`cJ1cpu9v}dN6%0Y
zJo}G<m2u%RaAh)$p|kvrGQt{n>@5s5H<YvdoFl&KSn+SD1a+I!WX`b)<L8wA&aKZR
z%|UF&7{!E-WGkw=D0`F|ALx2g=Hl^^#E6Yuzx<wqw4SbmXh=$m?Y-v<3IY%(P(F*F
zo!c<l2{7TBSH0@A=IIQ}<j`b13rEHVC~YDie8+PeT%I5O_2d$ajY%Iq3uZ45SG0nL
zfkY?F17@Yrc^vve{HiH-Lh+>F_ucc-Y1NH>Q64B$CKx1~zgL<La+9+C?nB;>LTUVA
zMR+Q-T<z`~^RDeP^*86PgTDyomdKEVu3}X+=6cCRM@!u*=e+rE;E%goP)v&T%ROA)
zcoQycrP65vFo@J+ZoN`j5t89|JHiE~qoa^y8~64~vM*b4ir-@*EmVuPjf3bIq*6e_
zCWeQ(6+5S=ia_ej_XR5@xypvV%<F0|TYb7%mAcb>SSW+T0@SxKc;y?YbD!?MVpV62
zsx(|)t3r}i&N=m|ySD}TEW<Kt?dyqzgoJhL4866@H>!+1%dT$!4|H(*iBh99;aGK)
zUzYOdQX#7i6Gs?pZLGD%rSYd)81bfd8P@}R{Q>*g9{7@0j@TdhUcY;0>qd7Dl$`$i
z^oR?gW!gm)mdL+-X&jK_{^Dr(FEf8T#q)Ec#jDfWs*5QkFdv$-N{&2R-$k`;9b#~h
z28}Af>0r`>)bnjEex5^XS?9tjXn#Gu+mNIZ(EkZr#BYNL89o?JLreXwp|{9zy7+CA
z3xX@yXJGQ5SwC4SiF@J!^QoHDbgzjbmpgf|WY4Lh7h@}1!%i7u0BeN>aU^UkRNIPs
zRE`?d#`Dgo^TR^JDdhF(YVem))^Vfw*c4%2_kwUNnH$xstN~;3qG8MhPnL$wwJni+
z@y4yK9eIn*o0y;odY<>q)^<TO0cQTJdx$vC4D@tVnk3A^)=cKHEPl7KoTr%GyL#}4
zvq5luMMAIe>e|W*;>o@AnV!MW%GDsrO|Ge)#kj!<cF&F$7V^|Zm}0H^-JRX8`xr-`
zb?1Z2j$vagcu|4w{1d^>;|TDrwXJ?g6yJ70UZX$``%(Azqoet&vh{R1#INhG*27!J
z&flQfxGu;I_lr?4&IEJOGW%99Nd~2)sZdD#>6kDf_i{wu*B?4quX>|48;z$AP}9WA
zh~bBg61Rb+Ijl?-j?0_<xqxd=B3XJ36ZyI9$}ZnBiAJ88)HTu!?}}IG{xw&Oz`?*&
za`?FpO@$Ho8y?~pfI^G90z5Y`E<S;L1qj0GZ&$o4JuGm=O?o4Z)Xneh;AN`cIKtn^
zB`1J{Yvl9z!ih~NGSS}ktf57)oi_BAOw3sJPb6cSu<>iwA~#uxZ<zGNsq8c?I9OO;
z2C_VNV(sul2Qs~W)LyVZn3j(|yw?eA=c$0uGnrsm5BvDx%SY5?X3V(N(Bb3g{C7*K
zZ)Ivm3uuUxxq@BK;irI)udi9G^FNXdfDeTMS+e3a5{F!B|Mtb;19l{`HkNEnS}=Fh
z1w_5u4aI1ikxKN3mm4mtpEvvB_P=sjOqU)4-L?`SeD8INtQ{A-bocEv`Tqg^Mf|M}
z8@oW`_THknmuNsUrKkQi&L;Pf<q5iQJTcl_#VzoG(ehqW`C17$3&4iu2fq;+ZWW<H
zLa46_xMRQ!75>D8VY;P31f#N1zuKr;sAw?;;1WI$E-=bDGoc;y3k&<jCnkym;4I_)
z9b27NFJAd%w#0gSelft9*nGpKP0J}uiiSlN-7#1x-u)6=7B17KvZYq4R#Qftr+Nzm
zU39)MDz?;}9toDAJ@S|JzOi~x*JYA&XsP74AE5-VJJl+ejp$KKBV}cgx5`B{K_H}S
z)0p@;P7OxQ48M1Y;0uz<jipK&*q(6>r)K$<uWrg)6qu#iu}4_gouxEct;B&<kv{o>
zPeiWwAI4LNcH@YUj&MaOMb7a|50)maL?~B(uGaVo3Oh1!r;7J9dTvqsHJm>p;)G9I
zVhqmS1aj-A#r56m(djB{-J-?U+F)_1Q}nM=1|Big_5ifF;0w0NV%JCec!2QIyb|y$
zCo{y0FkPQUa51J5@FFj(N&5bsrnyY-&wF}o1FedF0L{I}g-Qe2l5^w7kHTyWFS7ch
zq`!875F?tDf<nPty6y6Ke_svIz<&t{2oQ1sf+N+jgEH>{IvAskZSuU3ltG&hkAp{4
zsMq;tIE*47^LWxbJvmW$t0P*^IuYtt0#fapq{;b7_`Tu<p3X$iU%pi&xTCLj?u?|D
z1|M$x+WH*;0ptAbt-BB{tUt&lv7+BxqG20^eg^=L#&L(=$)*F83knJfOELYJi}G)o
z*Pqt-5>KmUq^_m9noBt1R;`A&St%P+hg6fepBvw}^AX~J>A5{8lJ!;WTv~d%JV1mZ
zCKB+Oqd5f<_rhW$0?ML)!<hc9a1!wri*=8(m5JWMs}3DFJ&Av7zT0uj5l$GC&8&v+
z*?VSp5!WVdG;SYm1E0KbhZ%vQ-ZwIDujq$m|3atjD0`+rzHP~Ek>dg(8ckr({;#+G
z!~uEpe1kR*SHm9G|D7dBSo<ev?EopyVy^l0rN7(ajwqPzJk$T=lO}tz1Aqx=Bo@^d
z!yW6Xnd+MvA?3}cOLzW|tIQjQ;XFh(;xR!K1}lM$)AuVkLZb#j-P}ItQLa`{V4lWy
z7c@cN-IgXBP0X9N$kXUUl&&|Tj{6+(XhI&E-J}Nwe%|QpZNWHp5%8Via^L}ZL^mft
z^*Zg)J*{Kb;0i9pZ+;%3Wn7Te0`Bv6*g8b;K^=Qf#Y4oUx<(oHzL`$K4@2*;XE(PS
zvSpTzC}GbSnYE3(fS)T4Qxwk5u7&=7j{%o;4mhHTi8ixzn#6x?vk6q1;qrrT<o$ia
zmwu}Idq#VqZG!6jssew$tYiVn#?Ef_D-f!s_2HmY4qk#%Gz2j_7y)Odu`N;OkI_P4
z8F$LnOEs?UcQaiy&ka5d=;`T|P}bSZMr|sszBRVsM<3+6LQ!U67$1hw)Eev-C4eR7
zO4^_QVG#im5al5_m{3~%8W~ypQ}Ap02V`d5`gzRRU%-z0?i1~2_;Fmk)+u-0x03Vm
zTWoA6{rwvEr!`vzB(Je7VeHaQ*3a5xT%vYMOZWEGojMe2O95=`R1mfH%L~SEX@@&<
z?SgNhLXHV`Dy9z{1-<WV#LjzdHK)sg0QT?27g-aL=r|Wy;i+@@uiGE^u_HJ@NZW{Y
zo2pO`mpAuD<j>GY1DOIDFc|J!P9&{1Lng=fFfBAVSTdMwYJy%NfGoQK&{xu6e8-`~
zMjXADT=)~VaAG5pV6e>15faQ{Gz>z(ot-q0=XrUZ=lDC4!fP&z%BsQ!I!}bb;^RJs
zM={^WrS8AZ5yhjW(ons`D_Qx0)e(<HBxDK~j6}+kp?ni$=M2dD8F{l1g+KULrih66
zSP!@DL+xicbnV*e1dfFOWpO%_9q)dCn66h7@<{(>orvn|y0dg@y=rjBFLDYg8rh&M
zh8y{(;G0uvZEB37>mJ{q`qZpKk&Xa}gC{(|1!&P|L|35N<q{tBw86Mq^*vu&V$o~_
zqc?;}zQ~M2caE%x{L*=v*)1$k_SA+#YBYzZBwAEVE)Gc`N`w5>0`TLaPM&m83y{Q|
zw|D`<_mU5Izx>tM^l}h%WOKmGC=R_yUi!{6k~LA!c89y9m$I-x(&?N#%RO}H<hj1T
zs*xX40_Kj(%L$P&ECqOREsXenM~9G3yB~jHssEn~1vHQ2chuB3u|?vOw6JC#`8vO}
zK+&EYDdeCNY2$kyrGEi`L`^V9Sb2wu(DPNnVP<g9ry?W)_UJ&=$6o2tSR>NVf{dCu
z=OgR56c?I=n|veiwn9UaYrv&WO;eeekT4EFYUHG)r6tls$QY+$j2auMZdm|kF7H^Q
zi-mlTCor3OXP06W*mlGbUpCYOPY0R=M`+#ef`CR`yM^{`y4p;}6B{>Xoj1gX&4{Ct
zj}<PpcXV{Dy8_y~&i+Co$Fr3r*9X%PUltxBfyrQY!>V8EBl5LwOeMkMCmh%frPbEW
zDBitAhjtEY^yg<_0H)1KXgUjYO@?TevB6wCrW;mvnvm-OqB_@#2f6zrKnpGeW^`!r
zk=K9^Gk4Q=qAoW)2Kv?(L`!>bcemry6hJB57H&&|W_vAfSfLA=UgBoG=K$<;sf&>b
zILj8A(GP48V;yvK@BuF!G^s&FfqM%2yhGm5FW?^j>=q9%9-d!zQ82vEe!<8a+v3E}
zZ4iS^)bF>VGm;X+UjQu@_qxL=H-2S~|FrnuWU79ip#oYg2&dmm_*MSr-2Fqq>aS>T
zDFVsj$dH5>f?({Rt<2i^-~p%N!W!o<9Hy|)qKca7LR)5tLPeMxK~`!GvcWMsfOR74
zp??<^4#l%DJ)5f6!e1;`=JV;-WG7-*2j^6_nYX>4KpF}bvEk3O2R_Fii6~CRkI{~g
zIe+lL23t(}EyBgJ4Z61b#wuB3Ln2#HQ!xaM`2abou!b9UD#CVQI+mE7H{;Sx&99FD
zuD=r=Ny!cQaB*2_Wcll@{tdJ7-5=F~L6v)|*t;luxWh*7{v?BfE{Sfw94N~a7F_Nt
z&{549T^Vg)YASkSet~6r3{r!a1p>q8&wYCI@mWIy^F0X)C#wpD3WOUT_YQM)?k<fJ
zIU))qKpIJt>GM%Aznhq}^3w-rbhECUQ0KOv%LK54-m!O)l)tg|wR4K!QiTq4Sj+-z
zb#*U^Z~6<IjAfonqD486sv#c^l}+0LK3OFhm!?~qNP<8*_p*Rn+s|LGxmfx5gU%9~
z{^zP6lnx4gx+vmG;H_^sik`<v)zCb#xQurfgO8%{<5sNg^|#*wr4BfFb#?VrzAVnk
zAOLz67koN{C>=5Gi2@`y#sK3&9;DH7o0&2zIQ<Gu5@1~4N%sS^W#BwOxluh61&pU9
zB%_J*_x3Ek0Mqbf?#RLHnldi_UufU|AV5{SJy{+ay##X74>?o^kRbqS8i9z<Bj(}e
zSaw#=1<BLf`>?chCkg&1NIIzY3E;b<N)^{EllVV<dz<W^Twaa}0+4gN4Wv_g2pHt8
zO^WGg;h(nfK?_X%GacaFdZ+^9l>oW^V5%5H-+kFN<$`I1RaZyeW4f>$I69wjM)Cn}
z*N?!PtNqEI!4jK${Ljv;6@qD!EPw#;eW8&tW2ei`@9b>R(Ad;e0(ya5hKg}OpXr=O
zKo2!++cV&)AjAc87X|UN5zsFJN8_cT38PX-E233SO|-G}=#9jK%;BlPq2b<q&;p#$
z70ZM&SsOcI*Pl+tvLUEfT}JtrW&t6ch|$JslRj%PN7-!xbQEzrK|#Ta4FGwN1Bh{=
zR`|+sep+9-_yt44vO_Kzwe<!2XZxQu=AQ$TzfMjO9+<dK1s-{V=)bP0zrFUiyH1Go
z0~#12qRE*-6X={cqdoGy9)EZm{}KS@D9cl$Kc(sa1shar!wmgiIED#_ZUDqiZMRgh
zEh~sG3wE4av{V=WrGH@YwnnAaznR9_87F)oP-+86pYx1rXH5o8M>KVm#FUdzu&?Kw
z1hkDl^x@K>g^z+%cQX{oE#mw{1Ll<~VzDxZK2LlMR;n0M=qGF6<BWIW%UA+`u5}wF
z<}VH&Jra;Q1^}%JXccN{siWIcSK|h#Wt7A?{2xn&tF^BP?icl((L!b6;h~5{;2zQd
zT^#DwES5njd2H+7P*cVJxEOJlKiFyL%dMecxfC5(m5#(b$zJ+ruBTkb%#54kUkvy{
zZJa;4tvhdTo29Mzo?+<;(DMgR#2SmY{>f6Q!Qtjc*tSwsR3sM{L6x*^mHV+Ix&2mQ
zy&6NxbVDZPd?Xbop)qd|ONQwzwNq~iqW_Z2Okw`Z(g`FdTY42v%FBP=7*eCBpt-_i
z5?xj@V=uZO>7TD2-gdC_+Hd*iTkV2@1O5A4G;)cm2RckGVXAI(Yk(v|Ku?z1o5^g1
z+JM7sP*%(w<oIQHD$5#4?h2ah0052L>vyP^xq++D)B`6WZD8PXca)k&W|JQrzNw((
z2Q4ivVP&Q2X`c+Gl5>dgJ~lyyApnPDkw%>pUG|tNQhv$+uc7Bug|NcP+b>{26<7tt
z#JqNrEpU@E_`T6NRfm56&I3x{(RWS4>nUd?ird4UL@npN1i-l^v7+k-#hS3!0p51#
zXYm?ZT2i1jaKkijZb|#5eX8W&Oc$HWuz6mpy4A)|0Su8Y*r)BFS(7+usE;wfokkWX
zgnnmm*kIEK=Nixq%Bp+LBTLOYi-bf5A#89-UH{a~Hso4zgm7R(d5G{^Y#J@{2QEhZ
zYWz|-;eA5uvpom~pf&5X_2~{K*iGCg(UL~<AN$-D67ziiy#Ss1KYshq$>Q5V`G6Gw
z_`DMoB6NZs?d2pKi4ft*=x&gN-u6)w1RoQMd5NogUCpgin6B+@UAP)=l1aR7yv+3*
zd1sI5DKjNf3TU3LXd~46fCz_tYTAM>6D{}6`EyojG-(f}ZgGyY{6RWha*GMBM6Y&r
zS2YBzJ|KFbzKW%e_4L<Uh*?JV<Pfu`m#?LB-T*RrvcS+HuDOB4&ftC0B8;?WKZmLo
zrNcgsYR`)%Bdy<>gXkk0|N5B$6ZIuS+6`M=+RzXp#Z~-VZjH2?FyFU9-LMX}F;L8$
zj@?L+G8T)75EIn!Zl-cLJdmHFf-ObotK*+|v-LA=WF`8XWLU;)41HRjUsl8O!&7ex
zjZM!*P}Z(?lK!T!o`eABV<=((ARh3J<22x>x4z_{n3*OS|Ln8Ino`2Pr}O2-tBJUX
zC#b|KFE1oLUd%7UICk%ihMT7*IJvE})7*Y5rAkm^+7l+qWr|PY+AF2N8b{Oi0j*Qv
zvA6<egbNB-pV#|Q|L;DfnqlIZ&d$!TGBwTa5#Haw%AJ&cyq+F>k=4wcQF>i!bkY8T
z_t}h@nK}316QIE6y$7`a)^}BXH-LS&2Mnw8021IlLjc|>s*<rEFsCmq<`o?V#!9RC
zr|qv9rSBRHL8yX&m|WSBO;lER;2YAJ<Pyl^TJXQrWo3QBX3!D>Ngc}j{~oR@9krod
zUSf^iuD4$v-0cMzIVHzjBdkStewV{sYI?R8iyjr=Hm*bOT%Jpi3~HhaDv0BH-}L5|
zYXxD+SKpA!@V`7Pz`kfZ6c-l*-tqcDN|DgS0FuhT&g9c2I()a1R<9=|Yl7>LTlNxC
zkG*g6{QUeoyM=dN8(*lui`iC`mG#Bi*a7&~XLl-7;G<5L#WNfVB?I-;c#e3)UIcU7
zn&q=oXQSV$?`?I>`v=5nORMi6{y@K@uWXs1@$JnE{PgJ$jdkc`!h$}i)3ic`bYpOD
z0999asC=XPmd^gYh@M8PiU<oE^X)0k5bk;6MaAVa#XY4lZ{`fHJ2dxfOfIlAtTT%2
z7>;9N55F_YHp&{KQGt4EE13(g-MuglPgGc|{rB-2`wsgdOVPel6pOH8?bo8Sa8r2^
z%`TW14Vg*DgfglFfiY0*QEqQzg@H+u0PZnp5Gf-^#vK^v3V}zD&$skY=WE!)Zt?{H
zNyXWPx%DFfB~^xzzmpT~ErjfNNXUbWfV(>mE67l$t<6AWx+L;V|HsqN@80db8^f1{
zdZcY1-G&T`B3@x%c!*J44=C+Cu_8hUm@A0XE0a%n5YLtf6zIvPfC{Vxi`Y%3&^&El
zvHBwzX1g6+<9$7P_}IOgPCWI&k3z84Ce*g;Pac6y*{1nr>#(0gLsfxY+C^VthUBch
zlUVWuwf)WvJ|HnnXts@9$G8E}_X4&s{6w*O^<_&@%!0w^l@-8IdQ*mV-63JI%a}%1
z+Z31G`4;VQC4A`vsV@?x+UZr)XFt?OKOCPmGf7D%r~{ob&e987$PrCQWLqvi!;H%3
z%Hma^i8BSrH-ev^1L1yJs)Hjz&~QTdqT4U<kFOT&H2kx@OG``rU0p$$hv&BT)>>we
zac4qR{LWia>6we?6#=`?Wn~NzTQ^lzEa$`+gLZ_xZjr0fa*yLvMnG0^J~EY<3WYa&
z<y%<&pi0nkFzM!^5947G86Ljju296Wi9Z!rSAHy8s!?7fpUV04@<lqUj*<GX`+Dv8
zcsNcRn0~Ugvg+xD?y;*C0#x4JD2~qBHWZr0Y7<FkH@6*u)Mn!Ad%JxY1xqewW<{T9
z8nzOAEBSex++Ov+<@*5$&|s0gPr8Vs)iUSztIoC4et&i_|G8oRvw!cB$UX@xp~fK~
zL?okv^kcrFogUe0b>id!941>Nz+fAb(Qc&$>+0wSm&;%3nu?ESXgYU8Ugd-bcFRo(
zAR^p@h^Qzk8Vh}|{d_)_2+D%&j^JPNh#tler1-MxUE+R-z2w9}bGSmGBqe%YE{;x=
zk``UqPUDt?@?UdRsByygc%w#okJs}nD8VQN1vAmn(XV;{3Ch1TcvBDpd{{kmSc3Z*
zKhx<Vfp}%REmSEjef_g%Y=;>Vf*07OhB}WFDoq*;UJn)p@PCNSRA@@7{RxVq1pU!@
z2@JD!L^Sd1P&_J&Mor(zd3Bo)u<Vbgu~p_j6`b$y?-wXfcPb_H%)}y!%@>dj9o#l^
zdhB1$&aCRqf>9x40@}_E3peUJ5Kg$dzDVIc@^(Lwh245JG)3ouY<0TsyZnVNIj64d
z59!Sk^nXMJ91wV~O@`hl-Xb^Y|32M+6Bzy^vbOs5kFb8Ad%Lx<(LFdgk#H^`Kn#R#
zQ640^kqI3@4zR>Fzbu6lm_}q@q*6f#|ETrB{UGsl!rxaU8I7wgSH#d)Q}XUW(icP|
zx{ef72Bfm4t{gE0EI;8cz%UzyloFYy;IrmJkiwPNND^5>Y7%OnY9XDk?Zqjf=G6>z
zeus~~py@+_y-)NJG4{awP&6jYgYT>SHY|SY<uJm4Jz}^tvL|FHixC^i&r}c2XgcaD
zc^B|;kQNMl(nR`4N&1hR`0abnA%f-K*|O89i~nca{jb0I^S?n0NM=uhzo-lX5fk)x
zgTQ2sSvQ6T2fsG)TTQTx@VXwL=(NPek(Y|vpzZQKcxc<Nixdf(u;ca*p`oF@B~o~d
zM3H_%<9N_2?-G}TBRpbC-uOYnS#J4%X_4h-V=^*cpPBD-I3E*sQwu697Ag?I4Plwk
zuEt|#GyKWEe*0)T$l#t|Oq1H;=pY`I%&x9Y8ys{tZyB?w)xE@Ed(6&tG1`mH7gZVm
z)9Cu!0sQ+x!v_OO2YW~*=FfDpGBQk`mz5s>TKExf$f@VM7QxTfF#lCe{04!f`=nxD
zWQ3>6QN<Wg{pknki&}Eho<V;Er7fXeUY=2N;b_t^Fp&xS7WlFH(lRkdO}LEUmtc{N
z0>Vmm2?<HD0YCMojTcXRi&+Gdj-aF)fx+aL0ZPiAcYyv=t>25>paSo3viuNKh@{FF
zB{w(ht?k-0pNlJpp8J{++{Ew5cC*Qc^jND#Rj>S^U$gT}9%;GAzYZPG`G-A3w?%<>
zl5rDGnSro)J+1e7_Ipit{wA%Yrl&_Xm4`vYz!1aK#;sE%Q8-!NpinS3H(Bd;tdK2s
zOc!4m@%@SjcaQw32i(FP9uYBbrL{|pAF9@T7+C<iEA$py){9z2PVQ$Ia~{8Ul+CtN
z3m|jxnavF^05ZyrpU<a}7^okz{d_;kCB;U4`LdqhcHS1WiIUSmk=y0!?2LY$B^V`l
zmv}#t!SCKOLX`3agBm?iBT<$;=mXPbjzKcXBgOFYayn2zl1H73lpC(Euj}yS;b3Aq
zwga+oqDrg1HJeJuOmuXy)Bj3^=ODqF?+m{TMtnKy-bjnG7c&dyES@!{jLI-|H%EBm
zmD3FXae(swYdh$$frsBM#YRURr2g;x`EL<HC<qOA+?Sh(*Ecc*30FZpUpzk6HAOE?
z&&qO^R1K)UN01fLR@h5$wsCeRbB5b->-Mow<rD&O`JbAaX~`+^Z0&@_m~vF9k@2?K
zk*@wyh*7ap1_Q*vBDQ2kYBqF(N_OwOU%IY6@9tEcj0Ey2Gv2x?vD<@?jrdeu`vcVy
z`+}{Hh=oJ`Af%w*eAa6I@bDM;M@K#Y0E#&{6b6pX#XFl!Ul<SX|2ia{08B3cls>9P
zgWuM=w3?Qh+?OvF-<Jq+_hesQRxt7KI=B0x3A*<|^1D0Oj$C6WGv$RpiDSaDRRFn;
zw#yM-?KhE_)PZggW{}>}n^bddZf-L7R}UKF$GbbnHXs=^JfUm0x3@0~<M+C<M1FjD
zU<=@(q3Nf21=QBRcOV(R3!4L^W#5(Trr1=hJ6odc7oofW^GIbqy|g(Ce`hBr(kq0|
zN9nxo_z9YSom(XbNSVuiCO5y<h}p&u2UInsE~J0IUjKf&|8sK3YEV(xzyVw&d;l~l
zXo@?$d0C>T^&}TQvmU8L21^5oC@BbFymTi{h3oHc5FHW~)b8A~HZpEi)&Wna^{R&A
z4|h}M`=S3k33MbS`@{LN?ant|H(u7FMs;7UmlpmE9^{VWe&Kp+cJV`wnYOeIKGENi
zTipFrQC#G@A+IQgFg;kTwhB;zIC;OPf>dL_+@!3g7LR>{glrP~(ZDSPB!i<OVa=A`
zO*A=S=6g@Z&(D*gvKbxcpoBZ%+`k8!iZ+|mdw<dIrkFXB1<a<>1B0Hms(<F?si9^)
z(=akdh=_ngg7KtkRIZFb?v?AJIAzq-I1e(@V2Z7xYjE70oqf1A+Zx5Dn;sb04}3}`
zi;sQ=SmWBLU(@R@*oYu)X!wD&Ju1>G>n<%dRaU>*EgujZ%PO^1QiBfQrlyuGQpq$X
zV}qRlQFH|l)~JEQXlw7Vms10tDwn{>&~Gbv;E53RbqobayT(tQ7utMzZ>`ok0@$?a
zsVB`mQS0MkW4ryJ*n15O4CFdz;OX9Em;QFX{+_!3*Oeq6^+{h$?6a_S!9Z#SP;{vN
z$_gxIlRK7~WyYCuV!@65_D#7Rexyq!C=_wiKy(^9#7vlAvgr!XxY`Sb7p953mbZ{(
zATqbMlOe)W9^(iKt}(~~66)teOlq7FDqCe<3}@jH`>^#7N9|NnwTX57ic!0+2vbdK
zCGHw+2&AID5S!kZ=!PU^BwX$^j$2KqNZGo(RBHW#`}KRHb?e+J__S5npCPW4NgYMj
zyx&L~(g&SYN_&Q2sZUXzqno6lIU2Yb6T=lqraE!L3yW?cATO$YPiUQ&9}MD7G(11x
z2z#{^>ZG37WMl>LzLsEDlKp2F|N8;$@`A@sg+Ir<42Hv(ph9lL{}f67`R5Ik+XO&T
z%8`~Gd@g^vhXPQ~iosti0gKgYr!h7KjwGDV?-yx?vc5D->;Q%ja%;IIBQLL}RB>`Q
z{G_C|V4ZEWrJn*}wZxT`s?|$p>Za@6s)uZFu2*%MOMQLIr|SVYq&rkLT@C{o9j_4r
zDIBWEjc+Q)>!ml<uDLlIoV1k4r`>gSpt1M(Jd)1Be(UaUF+F6Rk>U4rxc@w=(Pla&
z43o6v!JJ)L9Fcf`MUdw=%0g>lk~Dd#zif)U<MyJ<50_rqcb=I!Z)@ztb^rrYx~aag
zBV@#ujQBzm>ZtXsA;rVPvxJO1zE|3M^Lw&XFS_)xnr8e47@1iDJst+@o7dKX$(7%#
zU58QkA0m8OP7rXIOeJ@Ls<Qg>2e#zn?d5c(U&4y-t$x$pMuZj6Xjy_u%SmF;?%W5O
zKhcku7LL>Enoc|;!nIxBVfmR0Codl!8VI-@v(P`&@16>T|NbpUOv}sL94&FQz~Xq5
zhzkDvt>b6$<>O|pse*_QY+5eljs5c-A-^+^Ehz}{^CwhPaNyUlV1NCvhXBq($fF6q
zL;LIb_`~GH#9pGVeRlRB5lo<ko~6(lI3$y`?OatrhW822rpV{pCla4CVUk<iQ?~Tp
z;3%%uEBy+!B;V&l!$Lp{?-B|tGJ=)VPl7=2DQ1rVT+6^sWCNDCOyNryFTGC`!q=Q_
za-5i+EpHv(sh-~k7y_xH0|FZ|8Kw8#Gk%m_y?GLd1ajCB%qUx%fz=IXc%Bxrk^Q)G
zvj&Y}D7%x)ZWAHHx}%Arhc`~2DG*6z^-6yvp3rE)edk3NNF~PrueZ?<`P_yoklMBB
zS#nZ<Z*7l8xz~8x%Smx6YOT^~;jV_?7)$-F(Nxm`5u-}6FD6*R&vNF{v}91-U-958
zpY*>U%D<n`7zem)5>x*1V#6fR686F0Xdt$5DgBPMaS&y^nK}x^u<|s5AaMV3{dDWP
zUB~>wO#M7`&OfyM@z6R%O9!F!T0?W}@#T5X88*?imRd)GN33@xV08uLC9&t`b*Qgc
zm|U1tq!WF(jB+6IL`cJTtZRt!dJp&zg-Wo8#Vj7~ZYLS;cmeF>tKv5<7Qtfx`f<YJ
zD7}*I0LI@J@!y~Kzm``4C7?dMf07-=Wa@1=08kgd`lf$E#XA{w^a46K$iA1Ut7@{2
zocqQr#`Dq)x%0|d3RxaU)qPX3nGinVEapJe7DoMA<NvftBCuUE*$%76W*S23Ro_gg
zwxpG<m%5~8aoXC9mlm{(RtH-ydNF&$46^1t6ns`$7FzREL?qygiH$>lSSIxL68VO<
zey{@-z38rI`%%%|U*cv~t12{YTAa^a)e`a-SQGnt5kpo;3v*=2dRIYl?XEc{`Hv)Y
zDjUom`Q|9^%F%hTuYEtftny~;<<)sGr?jMpjhqfbLh><ZLOXYN&crgp8f^uWBiw5h
zWK{mPzyEwRA0s+|)WWLsGo0P$(d7d<e7Jw@{{P1ZH=cB=^=~bJ|9PTU1mMpKcZh6`
z>a>iE`G6<EMa?%y?_?eqDkKttw4^#j1ccno=Oc?JSTXb=l@maiTnP=3cq^BGsWBTu
z9RJa^o`qxJ5m5D!f+^-r!-j7M=qg#xR_KE*HtZ|0DSY|Vb)2<iJ?fm@gM^iSLjMcD
z%XJ99bgxd-msA9qtS_sPub`MNGY~(Vmw&dc<fqe+n@N!@&Tk&-&!fFyvYnu{B0dQZ
z&~KyabZmiU{L<oe%R?Sa&MhB!l_8<bVI!Uk(s@b4z6}fa-z;qEyVnEjoVt8N;HkC=
zzHAwYWRU*|3?pvfKUoEsD;)$zGmjaz@BZ=P|LupdOxP>l^-G``E(Z*O$Wn)Qy58a$
zCJ~W50BFZV_(mFN&undDv)|DEZ0Fr$cTxFs1D^b}Pw<5m3mf~w&(BXFqLRdO3vHzx
zz&D8B*~T2SepY2<e|-5i+VoCH%dzMp`<i=vXEtq5W${GAjWR0RJfcq?&sZ7`h-D)_
z;J>KbK;AoSZqDwAZDAs}SJg_L%T3*v$%?8`{}b^3T=FylaIJG2py^-e0L}*FV*fu5
z(`TVd)IIl3i=VuY5gFItW~Zjk(DQ+MK0hl9<YomV{}VmSE1kml$|@?xVHvI#jg5_I
znQ3Xiqb32tpyLt6hHrMWa1=TwwES$1@?B307;0vvc5%^>q{_wdgv6s}>oRv`<cw_J
z3dXrxWxtM44blnP9^I;SCcOK#H>l^=A@xX|lS{UjGe61geY;}&-uX9q*=;44&m0J!
zcaVJV)$$qJ+R~P-q`OyaJo1uS#Y+cXTwLPp-cVUvyiYNH3}^9HN#3qixq%uT$ABe)
zjJ$Kt@)z9TLgr+_P!G<i1{dhNrN0~THW96*YE-0CuH@L>Z=?8>Sg~K`><RJeV{Jj9
zR=XKD+E7P(41<VlP^xn=v_4|>8=_N3&PtXOQt;Baa>Bnzx5{YMk%x2#>}(#rLb{Q1
z)`}>c7YT}rix|7c^3Vo{c~aIUZ0V2hFI(xEA$IU$x#Rnn%c3j@f~k-TWAcnJ3DFcs
z7F24INZ`2pV(v&W2{-R~KfvES>G%F5mF}XY$#W&~ln;IccZSzE^^X)E7DJM(FTM?z
z9yY@brYgmP=rr!1RulaSr5ysn`EUW}x*6QKfx6xct!aF?ikA7lhWwu!{j*Rzb&QQ7
zDM7H3<;TE>lkFVPbt~rL`j5)|B}RwX@`AMJ^+UsUHD3qN!(OhPX#+1UMR!g;a*bBt
z^r@hmGj|$LmMBDE%je#%z6RPiS+T0CO-(F1IDiT#^X(_13%k3;7JgWuRDK9qEv<^3
z@8;ErX>I!^GVK8VHDTHmo-^*pfP&F^wP|Sysj3vqX(%<|80bpGGwtw)Z~+KjQ6?)T
zP-IZMF>06Vxw%0_e1+B7i0K+BUciKnXZlI%*-s<cPzbHW&um3mhB#?pa~dnbxmD^~
zf2ml5BZ4S?@EW=Omi3lvy`XeJLsM~lzgSIEOQexr@FMy4ezh_Aanx&{$Xa7{pN0C#
zM&q@L0}3W?$Y^)^lcO9H2lN5QV#>g=bL`|y$7bGFLfM-TFXy@AlBM#4)Vl`6DzMxS
z5gTQ4D8EYt`3UL0da3qCn_~pl)UciOp%cqv+dwv^m5^LNK!t|5;2S=i`7)bLF_bV3
zW|!nX{(SlAw0U=}1t3UH0l8gNOUtvC6JPd}NHWOxifcnir><=^Q<(p6r*bWlbnNu=
zC^b0_F|oZ`0P2GpIY0mMUQTW8l$19x!R8i571->QlaPQuUTt4()|%iK0<qh($jc1c
zF2=DrtZ3tF-SN@##6e3?)LF$9T%3)qD<PM(lKDgt^oT<8986zxHV{_~W8+AVX1-HM
z7ZeMEM$USDe5AKK0Bwf%T+%Rc>gYRC==^ZYRo*3|6luHb#OrNS5JF66{fMg1Vgld#
zaP#;P#H)#ue&M!qRD4vHk--VdI=c_tkMoR#z4p7p5!fU<AD(44`&NG|=4hKMftX($
z*EjCM+&+vG);csATr2&>y$dFDG!!1Kmcx$EkYT0|dA!24gQjHR1)ArOA7|ZFdv0yO
z^b1kH@xD;!ZdfFqX^q6U(rmh{B0!D@M;G=h@Xz~1lgT&Ye>P8NuM$?=sIt-KedL}#
zdF-%wZxlpz!TMlYLL@6kC)jeCK23Q**64M5FD})o6vW!SU9DPqZ4`M<T2-;|Qh;uh
zbXRwCl!6~VAZ{{u-N<A72h?=t0}>|~%tZ2macfH6N?iGW2U32a4s>j3JoZYB%(@`0
z7#lX2%lannGxy!?p<QJ=JBXfM3A$fDg769K;^Q%8r>C#4_6wVVx{M-)&5XkLVgQ-a
zry?7R9{cQeAqb|FmYzPsA+fTuvM?+RwiA2veX6ag`s#9e33J$I(g()58hrqyN^7?u
zw$hiqaSKi~d|>{&KxTEdIY%X~zo2_u<GS_zyZ5naW(hL4M+Lp%*7g8!nwXh^DdaF4
zwELCg;|iAp%K>R6_aP{{5<f=!OLKKj%5975Yn(%42%+^0cSvlRtqgJIz~Wr?KEsMz
z@&94$E5o8(*makLlypg#h=71J4BgV*rJ#TyLw7gQNGdRNcf*j<-Q7b-clUW&dw=`*
zt-a56_D@FqF&8uMb3gZUhdU|mPNqRS%-WV?N@?gOf%OGb{hE}TvVAhO(Q5Bh9>R!x
zxV>4o2{G>m+)~cxu=K<%wTePE<Ww3X+`1)Gmd60eu$Lk_SIIWNIMtGy0#v#OVAI22
zQPe#qze_A$=|WmU2hufAG0IO8oqzJ!P=DK+ZKZmeb^osk{Gb0~O6$Wec@>5xHErO=
zgcfxyGch%#;s&N>Wo3Oz&5N2e-vD)XcAgz~Q=G1;8FoH{e;#~vtw#0S%rHwFg7T3Z
z+o-Hp4!#W+ZsKGRq^B<In2^FQHb51K44u=E!si<96vCUDCGjA+=ztKH^1h95Lp49D
z!>XRP%!K}>RkH8{H?C0C)(EaaQsl)x8SJA5fdEZuUfqNg9%)V=7M6JXMty}2?^J<c
z49=>Vur2kENyMR2=37*O`-MWayyO%GC->V35@hCS<OW+$kcN^tvjfbrCyfIY9p&Tk
zW%#tguhq?Q&S?~5_U+aB@dl2&+g-tI_@EQ$L{4Vk$L*N98D&*D@P_EuZ?beT67|G|
z)9gm;qy<aY3Q~i^iEIP{g(UEM_)>9Zy7jrV80y5!A7}%IC@+K2@&t1ow!i3pVdi8c
zWI-S;qdJpp?VM9L{PpGDzcEH)Ad6A!>;>$vX-#es;VaTlHD!QM`9kEpQ!<)SgIE2s
z;%JsE>0=n-r&9K@@BhRUX}1V+J9aI)ytr%q9Ld4*JGIXpUuk5_t}C-|&m<h$Y+`}h
zw~63PgKjWLGLjRi+!dt1(Im)vBq$&BNlV+P>F8u@kjpCh>J2+#2PeX=iX_@iHr`mO
zEN`CGG-oAaG}ioND>aa#GMAuTkQ-JQWD3F~Ezr1E_GpL;Wz~zNiVAdN>li>xsv$-)
z$kEV|dC42Ar?F8~v_rlOO-jjFn+)%aw`Od3C6%8Pf9{MM_krk~6kVRf9!5H;h&4S<
z_PQW0XRq&=$Y^H{Hydx2+iKA(8Ha~EwvfcaV)qTRF_t<7(>fDrA#C79_h($aa*Lfh
z1F;{{gN5g}axpkw^KmoU_uoa-vnA9twI#P{y2p=`JsQIm<djd(&TvU_WX>lcuF=ua
zcS)&`Qr-IlT!Iv{#t3Gq7^B~5IY0SBh~6a^pjGw~rxX>c0zmO&HP`>*iy*qPM>|p)
zFuZ&{<P@7ZBpebNswx{KNm2?YKHTzne;DrZh`{_>LPElZOMJxnlZnZgX7dTYD<G)z
zKp00vM3g+u%6dh!pYmQ>n$-~(M}fJAlR-9P9KqHi0+&3v>;vN>n`5u^`~j1YoHJ#H
zDD_s?s3GhOQb9VW3TfY7ay73JC)RiBLU-Jacnh`vMe1nt)8;{ZE{hb>Xgnkr$;W&m
zI1lY_2u4K>-8!`tIU5ZecKM-y*jB#dyAe{zvQZ>)YMQFS%KDnsV(yjLnVy=S<S_pu
zh<6fE69Hjvx%u=tfiorvTh#Ny&km6U$txAjo-*>%S<V~2lX2c7jdTISFB?n_Z$GhE
zV5>5AFJJxOF4%}@pRXfv`V6@*DZvrYv{c;`3AH9FnYI~k=~`VYn>beUat?)hhlehT
z%Llk!`*182u9+@)zv3iY76TSAp2aviU|*Y!ON5#{>KMPM!jw&Y4|ebqcl&5==HLs)
z*q?J5Ge{-d;6rlOYgMMpdpK*P1N}^m{r8Q_hdsI#;zV&;^pJtjhef|uOZ}B<<~)Kf
z)m^oo&TWVCv7qqxSYKSKEk1H8_OHHK=S8Sx@|0o_CZVktL1@5pO!9$}VQ5&bjCW{{
z=dQ<6TilQCO<t_eWV{EJ6rVIU%*h#Ic1`uTA}2cDI1SS6{L&UwyruxJdekvDunxyN
zHl(^O<{^EoD9OE@zwDFA<o}TIdFeVNL3$9y#|7~Rp3s0|y{cFlzw?sZMh&T`3&q!U
zS1>KyWyB^0G|0(s!bv{{N0Vkn1>J_H##w+;JhjG|SGx#yHrw#{+w}*H)Cj=;)Coc`
zJnk}X9$v~xxN*BUS2ue0z^9tD;MW1iY_o+ro7jW|)3g80^BnjXQ>T^SoGrJW#9F%^
zWAJP*04fDFb@h!D%Pbr0{IasBgbx4y2m*ynIA-ztqadLyp!IPkFH&4p6}Lf*j*gD;
z67oz<P3=>x>8DTDkRdEs<!c+TRg##_u&kX}A>UUwwdMtgL?{bnknmzCi6bZc$Yr%o
z4!om6xbJv4c(MK3!V3e2{pNy<f52!<$)TK;o|RcCPH-@Z+l@GKQ^jc0)X=>hOMnKq
zyT)W+@@9@R!7k;8D&0lM(d@Rp?IXWQ=+<11nKT|A0i)?Y+v6U_rJ{YgXHZJMsHT`i
z;TBQcWanH?n+KktJp(sqfTZJ_p$!?+R$RU0>Mf#i2S%ieF5?FN?tEtFpx2SFbdP@-
z@Z!`qLCh~aMsg0jd>1WG8rgk!bOVO*R_niYHQcF<55lC^Wq2ch`nC7qvxhCP`qj&-
zZhT}*I1rdT$Zq;4PGLeQy9tfZs=krc%8Mhml$Qa`%Z&#rX5WpuGZfNKtJk@ocF*GB
z63F5^6c-M)&brL_=TB%E_OI%>i3xbM)XrPlk8;+I-b_D$&tR$VNqPMDxJUx>)O$$_
zJh5Wi846@jU6QzL-=+%%EtWJBK);Mh7^eG*X{%K-M$UKU=8T`omSz@HH2%7cVQ!4=
zw_ucUX~`)%=YDH{bzW*%@LLi%RnE`!f?jpBl}y&?yIo)UB_<-D>+13_>2QQEc|D>*
zw{tqxl$B+zTAF;wiZX%Z6;{@0FDHwyU)3xp8z-zRu^23ld1{9CGSx~W7$xrG1DBWW
zn~vAI$CsMi@^f+m=YL7eZ=50bunH9+2ORY@d~0@pL|^L0-Fbq~Gt($V<m(hZCrY_h
zRk4EC>$s0Q6)gWh81h6uN+8@+9}yACjE#)}7rrq4Bv=M6Hnzx<l=&Wp>6J#t=XlkK
zr^tVd@M{*4P`%L@Xn8m*w(<yN83`lfi%&5esf_?)jm7~E#rYE84Van$mel_0=wpc!
zkl?#(-iWTzA1Q<UtQy0T5uv(crx&iI8`yT0fbEyIqf;f3GnP2%>%!aDppXn|8XgaE
zCbC_dH1m1m3|mr27Q)zZfrq`CzpeC%-rImvJnFhmk$lVk=Kj(C-c{-?pxXp?nM_XR
zvcxJ}&wMF4F~#|EacZ(QCtNPh`vYm@IMId7umt#!w~kmq_BGA0dku1Gs7JsZPt9vu
z`zg4?l_RZ_MqH(_%2Df%Y3-)UCZu}Z<?#c`(o0uUJ|1ZSCpFM4JF{i+h6;6X`=Rnt
zd3dqQcbtDLJ!w)X1F7#KF;aNM2?rCU<Re})6o5q12^jTxz|8d%;dxXhXbFnMAZ--a
z-R)u~tD7*2xF}Hq+GL2+;=Y=4mPV0^(T4^cWkPZ=<HR|b$6?eqL|TScN)?`SVwEpd
z>g0CW>)}V?6L4KH6qn<lCEm?H(_#+r4~PM8su_LpUt-~dY^pw_E-wymJSg@j3}?>G
zJr4;FSMxPR;^dlpLr))HP`JB2uIR*=>HP%Uvv5!jmD)Cmb;^yNp`~Jy7nxk{0I`&j
z!0>fJ<a+shrQB{42!L{7v-*hlmk-AYm3x=D#ru|vISUS>4rERR&R>lyfR6b=HOAxr
z4|ShDV>mt#P5YEFdv_8*)&>a`202}yY}oHtPoE&-^KdWQ_A?1mZwi;ZGi$I}lk{C1
zkRa6W(AT&Ag}5h}c?;;gG`HK(Sk}?Fu)s@>^On%yTI*108JSfM=9~A(K9p`L&(eAM
zXWu);UhVa#*zb>Z>TLi!+;%2<s-5dW(P@|oNo^IrdE4OiRH=bPK0N<sn({1*&u3Fb
z(^s@zjOmr8&$XbATPr?f3Uqq)`sb1p6E)3T=jY)~tm2Vp+u))v<BFBF!AtAdRkiu{
zfuHN(NON_+A=@Xm8QE8K*A78T>RoqH>e_WAu3t;-UT5_yI#?74D8%1k=Fj3tmt2ib
zkP=8;418V>AyY_qgYf-N&$nmD!V8U?J>(#kHTMEF@K6ALKrB|AFf1MRNrRhvnrqV5
zrOO*;ehv^D?Z@=+y`Zmnob;@vP5IGnnMPVy3wa#_Ys^~0Ny{$LQk{p24nW&rYU=Q9
zIsF%a{880+K;$KJEGT54b2HwRheCxiPzxBCGFEAL@seUCp=2OdMw-8xDDp@h&g!s0
z^ZN<}Jnb(jU%g5U7^bJUSywqNn<v}hF5%e-)63T2kyT>MaRIk>%FkHW1ZolGz@ww1
z7o>!zBmugPnP<elzk%C60hicW*d%0x`PHkAyr8&wfK){3diKCAYz)EqC-?hLPXF&6
ziANpoUgv7h%i5~(_<442?s$=QrPiH$C%)!LlGP39=&E+~mcrvKn#!FVNZ=mgdh(#M
z0BsBU2+CEC#R0159TQ31Ryjbec+f7nP>G($D}V2Vmt*+pdZ{3hSHQ4j(zQiNZHVcL
zWb+?hlZ;%Ma&!=3<9^gif*dqn>&S#fZn!7tTwFMRWL2M>IO&x6q@cz;LbXGkXTV%5
zkK_@Hjf?*!Oifi+k=KQ+0i>>`Ms)7Rrd-$sRsqk|wd&{?V3%3&fZIhH7?o8te)YpS
zWy?!BBuz?O+EM+~zo-e?cG!EpQ8uNE{a$bBNBK`09V-*$idy_UryM{_fWR3WwQ*#w
z7)OcAnc~D!ZyXfO=z>#^D;b@C_d#kfTkgNEL;tbF_<*sTH&1KpCr?xFLI*@lY@q_H
zCY8|bi48|0fgM+n@j-=dPjPdo*GXy%uoxSZoxPr`*!gT*8=U3Pq`2$}=|6ucY<c{q
zjD-02wJn0#>w#+cP+nxG!AF{xt|1wMZ`OQwxVtd)3FBhcc5_EMVb}AlPEpWBZLoG$
zOMd5HXpkL1gIc`i{{n+<8fk6j7EiqohL1PXdj5w~*7lO#@L>Bcf@>^67QMQtqMfea
zz^Toq>B%hopEo%G2X*YPOaJ3NKKmb^H3HHrVK{<ot=wN{TH8#s%8N`);SV@KZSCz2
zW2U!&2MCwEE)712_-+5Uy8DayaM!1$K?i4(*@rU7*3>qC!(=eMuejQn&csUQS_<vU
zRhbALE}4XKG|b)R9sdB$9l!lmu#>t%yM%Tqq_DtZ`?#f97`&0QPWCqWAnatWVN`m|
z)nE8P&b9eLACDmJr8a(?`q|KqLzk!F>*SrbT`O|8ns%zqAyBHxaN^iUvd6aSRCh@q
z()#<|^QC4_^*JID{TGLkA5p_8YnvtqU)a4+k$t~w&3)dOS#i)%U$5Snb_%L=C`=-<
zPc)C%{dD*>4tc@$tH5mR5fLmxh7e|V7!_|2@aNHRi1m-7STpy_%1Rr%!pzFrEncjQ
za4SK=H@dw1Eh{mHhQnTlng+M4kG5kiq}<)m<YMj~bCK#tjmyl_``gh~6aB;eTJD{!
z@_@=pFX4f(vibekm>6R`x8yWkmu**Q8-QW+V)|I;dY{AfcwcFY{;&RGO(LxmBq<jr
zsiUK#l9zQ?W3w;WO~RC`%gRRHBgwRuONK&}1x<%YO9I_(+%d%W76#ZgU6~QMf*h83
zo!d=y(Y5SMAc}+x&q^ZBlXUy-4SpX{fuwi2+?OQJUL?G>Fw0ZU%|wW=oQ&p5n;g~H
zbg^1wVpf_O!8-h^fcYNf?HSnYtI;%_T1cp+M{3QsFdI}Nt-e#@?fd#@L{wGlO(3w>
zY1idL#1YRoq#c$I2BE5zvvb$e+&paM@|wS}Q6wRSy>@=zqOsqkClBASEx?xAHt!55
z=JaZ&UuN=Voqi3M{O{BP`m>@H&W~;WT-V>J{uihWcqCez;BGk)qytVOV2zk$p8Q+G
z+%EB!Oe<s@W`=*Z?cUS`cnuuB0|}F#vJ~U5=BAswN*eQOT~1BJW?U*9RXi_n-zDtR
zXs+@IDmiuh#WtDhj-tsUDCSLyW0ZbuEEz>Rb4uWER#%tRh|W<*yZtg&(A#leAkWFg
zZMF?<@}xpgd;b70t_li?Boj!+AnmiL1;-2y*@Z<!d{s47KvL+%SLfVQLYLYNOZR)j
zy*#Zg>qJnbHwhb9AYtVZi2EL=%9W8*6Hx)r^F{0vq`KwQ3u#1CTjJI$L1}3oW?pdq
zB3-=I!~&1#mVuk&OI?NXK{C&bWg&MCF;0R)v74l014<QVQ1?mZqKqdZQ2&;{Exx;K
zj;A|LM_f&+P8U|?)aC~HZ9TlZt-qA?#c4q4U`Z`=XgPkP)Xk2c96sYjp*gS#M7XW@
z@1M(LS_Eop>NhN<_lHfUy&wBN{*MFbpX|^|GR+g6?e%b)s;$=u;FP(F&uE5OZEQcS
zzcvHC>`!8qJL+HiL>r)krb~k-_!Js5U23R!eSPf@`nxjSeT@W<aMNa^diHCT>$&;j
zz|6xF!UnWTV^S0z;sD{tzx16})~qj<UJuDb;PLKM(nA{AXC=e(6Ge4$XGjDUq3Tw1
z0tj&fsK=5gO_ByKwvzWvNc;z*l9IC2mpwK#7Gqb+0H+;kdlF&0)aFvTbti2ceiB1_
z5=pLkh{CB)8w+`7lBFX$Es@l+(0PdaShIm2hew7lg7wC*(jL3%VF;-}A8Rm4AUqJ0
zWZiIa#%n+2ayzNEWaXZuv?+P2Xi?nopogswDJN&d7tQpIvOP%PF*R-<H8cGA;(NUs
zYv$~lIu&lN*{#uTh~;>wJW2yvsLcHO<>m`hd6ekQVG4<GUAalVr5qF5zG`vIw4Tw^
z1`Y>JW6mG#MzP+!kc=+otS*}Qo_*Ul(WRja7lDqqwrXTn*aAq(d)NK>4@U&FttGG<
zurAp#%I|67gCT4p_I$zV)5|%~hbkO%Q|GxithJd?G9*u0gsx-6AHKaH${2u3>`~Sh
z9!xZ43FLD`;M5gRn2GldZ{ksL(|0;i2)y_y+x*XsQ;w3BHo%Jphx7@+x*&Y8_KCYZ
zN-Fcm;vqxuofzDvAGgXp%2Kvpt!z;-c9~xW`^gc6$fb%#e~F=gW$s;Imnc*7*w8=D
zsoO^XrDF4PVobmEd;b!Ck}or+R5=X`mBk)q0po&%LwBuH6Z{w8snAL!{Q;2TaR6m6
zkXyrt6T%0tno1<!;mPIOrOP_>5?Fj(_0K)~nn*}Nt^2jDPMtNC;U-Yq;soy)YTRjj
zwDN0WVnV#-e%~s;yqxueelH$e3hhYh5>iUaY5r8hc23e8Ky6h`eAsw8l<zoAw=X6t
zx~02(LlB8r+*@NgfAdL?Nc_*Q%F5Z__tX#GjKhGtt}pVU43HT-riFx{rml{RDE$=j
z5)^Vr)p4XW@B}0Ya3HbVoE#OP>_=p8kHYL}7YsMI&?VKpXY6^P$9|dmF8Mdc8S=nA
z-_JNu^wEe-V~PLL;9{DS;^EY18oOf*TXddOiosbc<*3tjA;{O6#_)jQrI_V3(qMRr
zFWQLs3Gu2jDsTaLp@Q7Sb-sE#8IjWWR~XOO{RhCbSe!|6K0j~Qf2q4_PCfg{|B>T|
z+Wl#)88N2#1(hM)_T{u?PJ>lbL_g(sav|4OxvV+*yoJWhJ{fs+VF5$qIbn2_IPxso
z?%4XxThtFCFK*3PMg`z%zKh}g$R}+cBtVUj%kr<UEyNXWKq$oh^**)n5xR$t$G(kP
zf?R9n81}o#ghBVwzJY9F(^DZ`rjGOzTOsc&B9AnY^C72sY*ud7nY7*=)?T}|0y|Bq
z#q@}P&hTzW<*TUE>)*a+v=<i<KLrZoUf$#ZKJu)6F_z=AO!4X8tIZ8pxa$?Fc4cu3
zRF?WvZtJaCxc?4=tRt|moKF*W_{`p*|L~+$C)|i?D*3L5L4y90J?PS>eO678E6%E1
zQb{bpl=J66s8tS)?y_q3;7*rp!VQMW@BO3MX_bR`?p}>G?c(i=`O-8f^tl6k6Es@Q
zLot=x3iY!oMJB8rso+i$WW5rsbDZyhp9{EJ<@DbPiriiTRwIv?oA7*}c|b8id$v=!
z`-W#m&hWZVPDWNX&A3}8HqjU@VeOU=EZ&9Q7#$633{i8givya!>nXx~;<ACzjGi?@
zeDx^R#jUUhrPB2DZ}UL`5~@Z<8G2U&-AhQOV=$mzI_}99OGHGpa~JWO<h-!3ke-e%
z2;zPs%~ik?6Cw56)dV+~sNVaz!I_vKvc(wk+~shgJ4O#4sSHi2m&iBB<e@&($5N)9
z_#<A2p<4RSbKE@!y6-!6AF~^FtC_^-;5Q%r5vSZ9tiYvc#cun;S;kb>7}!@2mo17k
zl3`mX*rukYr<}?hdR1n?#?f^?`I9&@UD_1X1O%>q+0z=X&N_78<U0#Byvtx8gz6(v
z?*eeP!i=c91io#29^4S_bO_yL_C+BOWOVKZY*}(waxk*G-$en#`{(=mhGU|XSU%03
z6bL`X3^!qwyj6tR+1d6v$f?FgMpuVqS}+qCY{AQOZJM<|NZK?j6hO?uu9q;(cgX)h
zNro(;u8uEoI>2rzm`5(?o;W1*=<e{5?uZH>A0JyU1q~Gy&Ovr#V<R>>c_F8$q$Gme
z<4pM>x=B9$(;4!!U}ruO6WY2Lcv!i+N(rwWDyD0xTqsmBaReD@-_(zps#-tH#YCX6
z+Ifi4NcacYEEeqO6y#ej_pa3^Eaj9MdS%0miX?`tn_W!LyX|3n`LQo4LS-xH$Zm@-
z1v7LUK04l9uhFY5p3fO1zhTaHAQ8;Hwlgi$(ngE7Nk8BAYLZ;8KYb1+HXBesEY0=f
zy|&+v3!S*-@t<GwEyNgTNGnT}>E|a5b?{WQY*Ijs9I43#9r$><8&WL`94tAVSV|Tx
zRev{nZP?4)qn9_-V6ri$*KjBn@{%=aU@DKx67F+rJ(1`JFm8HC3;b(R+%dTrZNM9Z
zEc6Lm5^tLW|AKPDHN2brbf1vX%`nQ=am_@B^ZNyi?f0lM$GVsFpaKb6E^slY+uZJ)
zWSkx4ffmgYOC9(tH(K!4K*-7*w5_cCeir2M+Wu9)#{O+!rzu}c_Mf<7!~?E<vncK4
zPJf3lGR{}5D3;^PGwn>A{N{?NOFyx;-j68RKDdNRHWvh9S6@*=v%-F8o?a5x_DjFE
zE7KwEmY(da7mV?lnT1)8)gJ0AXjvi~ZIqQM(K1J5UtO6IbAw-oCOOa~^cRCyN|htD
zS$7&L0>Jgxj0@oI2r<2l8+<h9q*Oz3Dk_4^<s3;q%jM`|jn^bHsh-fJ97PIQw+m7e
zW%ir;qqbfdynUsNND#SKzz$NI=>Yn<iQzk+`6M};*tkh3bqploYk;s9rS<hjLM1zi
z_yZ^^B0T)_G0qEm&m%vIp2JGwh_7xb!Xwh2rt(Q{sgYat2Q!3y0xnVsoA|_hi4wzR
zi7hv|GDj3wm(|Qp3nG4FWGu>kVe_%F4#en<M{f4^`=y{fCJA8no*}{2nGjP@EN|ok
zHZ!Ms`LyRt)5~yim-gfumq69i&PgBU6+ev0wd;KG`*$1%nh(1S35)v;4c*92JBVmN
zVm2UHie^R`;$#0^>UqxC%-n3;jd242x$z&bH|<kYVUyE`es(tjpni;pgNDN#z`S0O
zzI^C;*-*K+wQl{#CD+;&1wjKPwToBa;cAT^)ZEbygE#uLAn&|4!}?%D(zYq=LmPhd
zlEVy(kK1?~f1x)aDXEausv^9>1-@E>{6Hn}bTE<C*m(fx3d0ef!Po#Zjy51TCXi9{
zE70zcqMuD1Oe<!Gf~(QZ-@HEk#?l)H3MUmKP&$f^1ku*qFXBFKojF^ZKkNz_W?$94
zB<6Ca4E=^l+Lsw3Gn}&5aB&0WOf6cg-W8(ZZ(Ix9NN_&1b#1auf3TGzK&Rje2E<A9
z0P&$d?W{NKb-fj1x#MO^3Uc=+zdmKhBR9!THy`T#cC3~?M-Uf_t(We`4)HvgT-tkx
zy>aB8WRTiushJOIT74h1F*Jw6uzZGz8X=Rh670NDrYBw!D047u09gjN_@I(b2B=+M
z%ld?X2JGf{@?E=i$)=8(?bXP0E5f~u(>an0$T(@uhnm6nOXv6F;fM_=kwcR0(U$&F
zPHnu-&AC5p?P}LOMpBrei(Puqqy?F)g|EsAc7*qVat?HFdJJUK`R1Kg4lX{7Dg6mn
z0F(xgU><t<#-!D{fO+7xg*{t9J`%#`^K2=XWh3<5yb)_!^P0j6@v#=J9}^6G;2<cr
z@?v6No2f%PU5&!I2eZqB9O!~}AuT-=BjXu7&cx-q>xQ?w1lC(Rx^DVon_!*uo?`!=
z^SdM!b@h}R`Mw-~l0m=$qXB)mL6oUVHmNGi|Dtr@hFhm7`@ZZ(o>6+S%FsMkQ)5cS
z<Ts_GgMv)RT64>lQOl@eusJ-elAMBY9hfDgN-VUrkom(o^#R7BU&XSb$Y*qLS{{ll
zQsFMYU@k!5Lt_z_95Xcy%{BLu5Wt_>uZ45h*f{Pfc2nE&x*@BP=}2`?KSGL7X!6YZ
z*)1{NnjhKISZ(5t_e@T>Y^r6Z%e=S_k+NUN^CT%1sOW6Sn;yGrIl8(L8ZD#sO3OM0
z8zt=IgftqED1r#!L{}zI);Bj#QIj47e$A={wVbk^M3VAmgerbPQ>EvjU31NE4s??t
zgJhLAGw-r+FflXdn5KHfGuN-<0Cno}Ny7+N3u$ZlxsZ%FM$H|4<9UN+$pCVNfuEeA
zuNBUU%tLpV^lj!22Gl4+q{Jm8z8%%$wkiZ@8n$49Y<N^QUQk(&N)Tc{81SVi;J{9a
zPBMBq{)^l2VGk5;!4<Ty1tyyNX42B(9s%4Jekd+bE?H%>)^)%U$F=#+Cra$FV%H9U
zOnNBBJ$f~znr6aVMV&)UY{K3ORM4f$(%TICs%596cS3OXEZU1yY0L^d79rQ8DZg_I
z!z)X|j<#yk#nB>sDxF=aX00yk*D7cq#cYG<Vi-TO@#!{XKEKdaV`KdX3VV(9X68Cw
zr?b<t&Xip9R?FkH5(2%ZDVf`nha6Lgu?dX5g8+-iO`Nb<w(su#urRja=MTg#lge+M
zT~N%!eR*!CoZ6*1;oT|A%{@&6Wp24b;g+TSs6Z|4Am(mC@p0?KE@v!G8has4eNN49
zAVJQ#pA+VMiKPS~052LaZyZqd%MZy;*98ae{#z^Ow4Slt<~KS>+9QBqx&-Bz%1$W4
zSO-klS#<B`EJ}$s0D_`P;;+?}jNw$vS~rWf_so9dc1{w*Q&%rSh&lXj>6gcA1Ig8c
zrV1W$QyL2vytkc{9=slN7mefKfOoDS<ntt?eMScm5LS6f2W>N>SA~Z6=B*%sXp~>a
zik>GikgWn$kC}bQBv!d=o>wEVAp1+Djifpp^Ev~HQ=fvoB$W9>z7O!glEQ>=bK^m|
z@?U@E|0Mc&czvcA`RGa+Ie|wovM^<jvJ`CB6Dv);0{EH77&(tZtX-)2@l0M*|10X?
z4dLj6W*#qxhCoK1Ht*nn7m5qO4fbWv^4&=c#~+zhXwmd+RH;_ts3S05nr6kVYJdAK
zAIoM=0N`h(N#)_eK`JV$x38x}x4t<QQM!511V~CKWkQu_5tMCXY$GEgX?4}nf5hUl
zUtCIbjzwjM_U40MV6Y)7JFCD=;^C<b^*OvXf;=qh=2IWOtpDn0JHf4V6V|(4#iv!J
z|3ByfdtzVNGE6u5`s8z*jeP*!Ep@xst%0><YM`zm3X0j#Hk>~F>u3;pq!~$x7rU1=
z-(~9g7@y2pPK5d(%44kB&)V0tQI7Q87Qrnxf9nF#A?}EA8wXi^G}`<Mb3NsstdvTo
zWcbI5#AiihtczzqkQ5;lIwpnxOBu+y(YeGDnl)?#hsAD8?}o7Own<{R$B&UF8R7+K
z&_5&qKwXyF-30H%{wK;2I-5C0&Cc2)MEWkTQ*!>K>5zE4`F$N(xLQ(ebVkr{?u>G1
zu=v#i;mqe3R3j`XVJ}&IH4%XbGt6Z(Cx)1g%?;_8*MPi?sk9@M<PwUzh)=gBDTE*>
zgn%QTS=8W>S?rXRn|lh#8!itl*ZBAKOAEg&bR_=x(Tg#p^{hQdQ0(&4i<j@b12HLv
zhQ@<1DNIJ)HE+6Yp7u`-4UN{g_#kwW9F0z*Rz?PHE-uFc3m({NB6cEf*eDdIP8maC
z$Smk$QQ#2DW+LU_w&SrP^!z5E&;_`~@6VLCw<KC0cs~NI08eN8larG<4~i@9E`~X0
z^p*F`UXKssZPs^J$BlhxOR6^>J3@+&9t(T#KJ{QZ)^^J*>7yqPn?;`TMp-=c-s}z~
zD^BIcqWwu-+lPB2r#5uSn*Zz7Ede-Y5=2hC)6C1~(U5<B3wr8Sh#7$Nuzcg+QM%u<
z2IG}%IVQi;zWv#E>J-g8A@hq$10D|n?)?1x?TcR;`R;LLvyxMZZ-7x({{H2GEuwA>
zBg~E|TRzFGju}Wb7WQ6L(>C6t!H)Zx)nVuGDLg!9Wb3_cy!uJ!Z$NKXg7n|?c9i;<
zE}hy)F7A`UWUBAbNE$bbZ&Tg-Id_~b-CxjZ&&Ki##*~GV{Ty1gOknUkB05(dR_5`h
zUX^_TJN?e*DUL7EO;7zA@-<xMuf>V?L5^Q@qE(q!EOokGK3zE*fd9fv&E>P(bh3rX
zDvv_diU2e=m?E<Y-tJX;t5J50JyQ<!#{xVsuVr7#UoR<;?{su^=N(n%zTyA;HoX3t
zDHVp>Whn1VS#Zj&JXBbF9qUwu%Qr{k4ldvq9SSV@)(G0Et^6D}O95!Viong7vc&S?
z*+`&ywH;uWvJS*;l{fdgYNvSe0ySp9VIZX%Q;~YC_#pKd3fI|ht3Y>48m{uZ0Q<~1
z(3Q6%wo=j0oN4vM<dKsf#2BipOSIffmYOX$mlS_5kcjl@=&yUmKuzu2*WV8iF5uPU
zCAUL?=4XnS7(RK9?t#dTz29k}Jy>ebcjogZ6sXzQzLNubdV+-2-%Mm%7UMbcXSd6b
zOITqK%a8XI=wu)@O&HUO{esJ8ikgyAn$s76AUgA-xbx1)%nav$MQPhv&VT!LmjMB=
zhi3u0{)Jp}gwmTtJ6qc=zUAu(#p^-tWjUZFm(wTQ=>vvy_?@9$aKhtpq?fh&8Jfu3
zxuC#6;z3Mu{`XJFLYx1IO~M_554LjP;NTb$!xRu-O5Lz0ssR$%{ywD{85=iMYJ1;I
zs49*IqLa9vl%G!NS{;+VI~2O#R{VSamA?f%700Y!MxC9UtBJHepKaX!#r*)g|7N!f
z7-VvV9*!gNC@6-<MVIh3^*+jBw^`M-iQ(-JQXFnS5utvVf<4^uFVP!ucn+HZ0T^z_
z=2E%EH1ks!R#T<>7)#?39L&x|U!UwLpGxqv>n1==txiApHL{X&Jv4rb(^+0eF0Z*<
zfR%)|NMKnbg^+;je7ZZ!cmE<xF5KsB+jZrsr2y)c34+(G(lK(!d%X(ZG2fg-91L9p
zxhU#|T-7o*QB#MicPS0PS*tN9y6R7AP?#IJ$`gKD()i223>j(Y&(8fq{Qvx=zmG9#
zLb%oqv3z#+)N15!-D|kj7@dqsCJ8o`2mYe9WfqW`+WNGHMG4$dwVH}q=yUHMwIwFI
z6{2YMzGaDt&75m-kKBSCM)8>Yu-+r-ifL!*m3=8Jk^DUCQegQe0WnBx>uPFI&2goS
z0dv(8_MJ42%lpiE3;z6P3Nta(Izm~|DUrvVhc=v~*T_6U3<Y}syZE+tazc6Wn@WM8
z&U+gozc5Q@qvRdb<?WxnS^nctNQFgC70T)PyNRrhWk*`alG2j2iZ!V%=OIBE3f`re
zuAD4Z-6tWS`Gnty0}v=FDfFGE7NxcK2<RePM?%2!5oOVhthngF^qG@}VDaF?SwC=#
z@~+VM$`!ZaXAUra<hl*%Z48-v<yXuq^OZmFlmt}(ZkH?0l{d55I)PR6Zc8@2>ebV5
zzeN$=0y*w!0XJltz`w9WyXYX!zA7pz?v&1<?oH!)XYCXZQ2@)n#Fb$hD>8!0`VOI7
zAB9OP0BcmJN@-O0)wW@`o8k1d3)y+`F2daEDY9T;E7g4JvkMmJ7WEB~A@-T$oZu7j
z4+E6L>t&m6vbR_lgaVn+N%QQ_{qg0kTHKcuhMT*^PRl)hTSRcGUZd=NE6!-jxsNkT
zM)GyehJZUrFvGMe;2q)W+T(TV<42qN$2zPwu{Rj7axb}Lp6K~&;EIJwy+HAJ)xAd!
zgw{o3<Ks&_akKNm5M>Ium6p2=7Rm9F6E@--+Q!>sg-jjA7EBH=(nI4&0h3_JeNIP%
zGdksmsjv2A$+xOGa<FMl;F3i(@VLR^H7j`*267&x61?<!+`4dm+cbH-q`Nqk8h2SP
z0Q8sLEsnHM+@as>8a~Q={P=N6-<EipjMDwWEAk^La+}RT72%4160-Hu?)5e_k#I;B
z`QhGbb?YGczI(*@<F41h(&z8MBJh9xI9vQa5njc+?m{Z6|G9Aeg=^OH`28sApEnX<
zTi1jO67-Dr9r&eI<)j+QUb*>PVV%B^D{ixagFC+E{M()T(%^sS0f|a<uvBO&B1kW1
zG1&@joh)3sKA$=#FL0(R9T0<8Ph%fpua|;$E9SF*kBuE3Y#MOyh$I&6Za-W!RgAsC
zOf>u9)C|P}tJsNtFaVqw!*{XU>XpP+M~y%F&O!bsf-^nmKNl_3T?(((uY(R?HCRYL
zCnQV|NYAaG5$fu#2gF=db@ulHo8j=%J@+&TuMy9$U%>WdAKwZ*1x?i!D?W!t#{;9s
z0uH_N*6gs7+~;V<s>q1SUjBg2{_A2UKfY;9X_A-JDVi*~CEhfCjeg0}o4rnPRSD)t
z{h&0yw+^B#5wG-tF+Z}5{DBs?uB?s7VRx!{@576310G^AQnXDN#r>8PT?$u+522wu
z>$IO318KO>%@z#-o2Yl4*(mjc95SrfkyqeLZh`3MY}50Yxw*L^wcICeg5RnRQ;Y-c
z*BJn|alwU)nGRC=`?|G$nbnSbOD$ePq0%srfYX5<6zE1k7S%)UraI{=Z}TC%wcaHY
zm^<aBfLjA@Qg#V*`$R8buZoQK=c@Pe!iOgS^J~`jc<$-uu6Csf;FQ9Ni;q`vbmT&_
z9DP2ti0s}R*hA{$vYiNU|Dllb$Z6!#VPIfuU%3EO&?&*H3UYu|)44`_xlV020l4wQ
z&CPD<IPm5~fC`BmApbae6Y&{6`PJQ%S+eq!6KvaI<A>6bXMG#cUV_1MAnIN!k<Np}
z%Ho~?UH>j?2ILUx1%j{wfL!qHoGuMMy!ORwfIeMMS{otQB)jQMKAKz6YG~_!nTGal
z$(7;*Dh~lE;}V({86w8e(z9rmrD5cv6F)ml{wI!<AhVrJfQH6z8FL9^D3N`LjH$Wv
z8b0D`$PE@icybGhdb8-Zrz*cTLuuU=9u8bdFd_v$wjnr1b}v%}haWFpK)As(BL}B1
zDNgl)bizjg-LenQ29tTmom&upQh>)sy4_b=p8;DidI}IQGeXcEehCM35NWoY^f6jO
zw|0_Qy%rk1PbmhD$tT+OfWj@Vd)dH0$A<7UO7Kzr?!eGD0-u9B0Xhsl43(#E+{iF;
z&+?k*g>R4jA8ZsQf~)^u%wKnr#GAlNPNx!f2{=nod1h2w5&ps&0k#Y)I$+VE?Fpw$
z7%%Z}X5N4nF^d;eeZMb28+a{4#2H!;YMZySB?t~4-biF&b~NHUj==v^YLzvThiqO{
zq){?tV#`HOxP7Hnp*|T!|0?ma9oHy79~zMyF8`Jp<Nx}eZd3lpJqPdqwda6H@%Y}v
zDIFfUQP_Fmf}uaZI-KLBKx7;OXk#13XsAa{A=bC3<So>EsertFXSCIKbAXX>Bwc-X
zf^?AMY*iaCx+tDmW54*ARS)AM$3y+Z_eKJ}DhE)kY;~L{HE>v{ZO<pIB#Y(pz){~I
z&kn3WwFRgM0bQY0*Z8vc1frV^L0_D(JR=Y+GV1%mf2%yT_q4laGI-|qxf)-X>v2!U
zx`~gmO6TiQC{7(A|FpS2uX?C%QFYix8479zaeb!T*qf0HKd+w9(rw@0EUxq0{V}=A
zem}Om)$({3GaC8oM(7!`EszE6l7VIRbfv%d8e?m(jQ<P#U{=s`$}1=(_Bn|^6?K14
zi+Umio@rER{n|_N@N$xX`)Z~jBERLdy$2_HLbJV(=ZOJ@hXeFnZ>KDkQsJ>(TwD;I
zZ3A6s9jOjYnz~zNP}%smtRX<35hnpQ_1Y1veNP3=hl*4K+ZwMVe|rI)+PbVWvobm+
zrd_={iCw(z_5$%?er~e)oOA^t)H{l}&6*4_j6aJ+w0SMwe6;{~Oz)rN3`h>P3+%T>
zsQRqxQIt*FQnb(-HH&p5p7;a@Y&3l;Vc;}GzA5tQA@%VtsD<U4g2F)dk)Ol&2*>A;
z1ykS*E7S;hIFJ~PKaIS%IDs>E$E%%P7QrCU$VINuJ^fSFStaGmfS0qnq>;@ncVotZ
zezsXQZ?7;i0_vec!DH2a%)gHS`OYr&98fpI7c3@>0l8eTi;SGFR#v8^oCrwNLmGll
zhJP~9m<~b&k^+W(hJr4fx0|6A`^A?&5cnaQV2^u=J1nR6FQh(efitA33D`iPTspu@
zRk*P>cZ*Kk0u|aZ1oKOP{xGnR)&B(R&<_`mu|jzL0r22d*>G>73S9Z0ZVmAra&&bq
zQ!i+F*Hf42L^-)1x-GBSJqd;_jihY!F+TEu34~LGpDD9zc`Jj#%mPQP@RFR!c~m>y
zgSf~G)>!Ya!YWDzh}I}ccih<E4zq<1RheVy{-lt6z}Q$YyV^2onm=Ftb8kfUVUH8;
zLY#iO4#<$P2O-v*$iCtIY2J%NAir_l5IbM~bW!Mn!F&bus#bmm6hl`F{0F%zy2R;~
zD}hUDU6gj&=LVeblPYsn-`qdqlI0ahax~~qsBJUe1k1=%C*erx8fVh~ZNDN<XaIu9
z11##KcaPgvjq1oj11`qsDVKvJ@2ABKY^FrW4LK<*ZT&A&Yso2mO?W_&4F_xv3tSAn
zeUf&>)n_<MQ+Rkbx4pG`?HfEA6ViZ_1+`^Co<62q<@%Q%DhAqyC%>;H->msg><DkH
zB(rv_uWbU3c;-?Xifr$wR=a!op!OqMBrXntg7ZM5JK~{K*XyXoDRCQ_j;|I)xtiqn
zRGW&AebsM$F_lYY!BZLx{Eexn=P{hrAt5IiDr%yr+G;7C+{@kjc8=~{>c30tbT#Al
ziA4WWa9F;Xs&%e$wz~h#-NGwo!aR-#M@P59<nG9&0cjLrnY8AJtvuot_aAN&*Mj21
z-N*ceP@{8JWQxp6xe!d1<F9IE3U`nVswymB>aJm2{e0+n&l)~Vjg0IF6kP1kd<b-7
zCyi>rwSLu=*>v>;G?7#9CDQh*N3X3>r*asu9NJK3geXOyvKV<u6o#x@&oOyc%||Pl
z{e-W9JZe*Hh9O!e*QpIG_ccCTy^d<WN@k$8sFio~>BYy}mdE~xcI!SeuCIwh7qhG9
zBdc16aKXiZf?HwI1H0*7&^rd&vPIO5XjAg!)fmGP*lh&v_02z?QJW$pSDn}YzV{4J
z(h7ytXSn*-T>{@;y3l+F1FNs8fKrmnc<uSKg%{o}Vs#(e_$Yze?_{_2XsO0f9&}dz
zg{1Rv)Fph%o4{LVw`VX8gmr62MOj&kQep>(p?$|!h<_kPEI0vCVgF$PUu6*XpGflG
z@FI^Ya-Du(3a<_?xFGa5m~bH^X<|x5p3?=7U6|=nKT-Z^L9$-qc|HyLdqILPEzTJz
zBvgGb{?hQwH1~Hr!7mxLFpnPv8>Iir0^rd|iWP=~`@%yl2CPf@>h?<UDcwd!36sA>
zVQachm8$l4!RdY4vwbC<%3t8$M{+BpM8lNOYk#MsZRU;o)<Ga<t9h_bni0cTs?(4+
z*;p+uyT?*`E-2d1b+z*rlnf*ypwDGeKt2t>+#TGIe<*_si!<xOM0Q>#<Hf)1K4qA#
zkF*zhO<SR%xgM8fkDb6+ws-Yn+GGMP1*AqsC_XybIC;t>_+6}A`iq*fd-7g5I)|$(
zF<R<wA!A-am4o(fS&tblN4Zi;pU_pOE3wlr+MRN5u9h`ybG0~p<u4)-bD_whcFAb)
zvX<`P`8&w0(Z}g`b?D@Lj&h13HTO|}AxKzb_{&nlf&HyhW3b>%(VoeQ?>@2&1%`|}
zY8?=aR?qG*z6Dw0e)j>0rY&5!RIdk@RvX|}uYDEv=*6^S7vo5euBH81^bR#w3qicH
zwE2bs2n+ln_;6+Hn0!vCYTL<vhQd4rV8_ivc&s0y$=AJfsYmVelh<mPEC9HooCyam
zfunRapd*1SMj+JUMJ7l*OVhw5yPV<;>~NrHcSY+SzLbePQB_;}hZpOi1+4OcKS(ZE
zrhRgU6*;(KJ_&b7$p7-#PO=}@zuaet1=*iUysPn@hM~AsGbZIxAfHoOtDAz9k&%&b
zyw002*SdTqv{Y49fx>O!t@)+hTA+^4fKagZvKBeRIl1!cp%{KMoZtkg>rgYTodwJb
z>}f}{Ek-gjsIdD$yBDkOU(b2h1WLRbN(N?IiueA-%KiOOJ>!1{+}-(Ax0V0>()7n+
zH;n?9=j=EX?-NE&MpKeb@(%%KaF43ys5-<n-_QeD>tTxS<kW>5xPrT&X_`3tTG;sY
zgKQT}g?ftm7R|%rPr~|tAM?~(2&OO8beTWxJO|TwUo}?0a3=h1f=W3(Mkp`;Hy0G|
zVaYij<Hu0x!NL7Ao{M9CR!Bs=?ViyC7Mrm`x9-laXCPB^)X6kMJd@?U3+X&m=W?rZ
zaPI8cp`q<s(-~08r0Q%>YN>r*VM<D?mDsRHK)_k#dZSE`x7+2$?e@F0f0RHucGIQ=
z1C=d*jV-2sTU%o$%Rm!(0R|4-$e_Jpc@~UC?zYEj{KfLEPec$PiAq972&zV%)x)R`
zY5js~nrWad%#53olOP<350@M87pXgZXRrUzgC%9G=f$iky3MNv4?>`L7Bg4{;GTLS
zD)&*i?{9a9Z-IgqN(#n~Xsi<x6O)rQVDf&-T?CdU?1jMllqx<uITREW|A(Lgk`^cf
z_#p3*UNz@sCy@R{%MU`eiY{^z2sY*m5r$j807?rAX#hLRL36{Jx;CY7fEb5fbrbwS
z(><;0sfYJr!v68OWBUU@1$e5E0uqlE(1#H9Fswv3H)R6@aB$Cjp&i3DPszm)Q||a|
zjs=g#ZqMN0WG|O4a_an=kMZNSqF3L+w9fiMjvoda6tsx}{Z9So<n|$_###`&f6r~o
z^GsLi6~(XM<6@`3Qei=O);G5`Rxc90N=yYQ^@h$>g(D3A+lOl;7r`1kA)w7%EhR8-
zsu-cWE)BW7w10n<L$AR%Zl;E={croeKTg-&tOzd;NAkEim(0M2j9BH$Jm{OCf{25)
zk1*x{7tt;6{eR^dWK!pqSN!a39eTY%O-3PGQ$WlXfKX{?=Pde`Q++zRvizH`oCqEy
zHcc-YjouUxF*@BiS!IVb8n0K(_9`z6Z?nIyRILJ87YwkZA*;8r9loKB>|a0L36ZHc
z_#}hF8|P=gm!?+Ybk!7D--5!eFVD4cMfxvTe?pV$qFCpF7-<-tGF&o>Q7!ilVep40
zbDCJ;R6g&|FI%0JZ>V{F<~O}gh!Ttst~OPe%?UPY5JhatbUZ<?*phGQXC1snjg8+}
z-n=U46OcjwjQ=(#@ICSQUL5*c{wcUmxy3%4Br$t7B=gtDGUu-Ts;jM3c=(6fZ7=a1
zt=v;3MzEM@a+nMh%IV?hO}kCZfey01(z~f)vwI6KI)FB~$(~j=KHxI=PI55h+*B2{
z3Gn|5k^JY1aMrqhp&5>L^HpC|TWLpbH}^hkh^Cz)=+)?CR?KER<jg5XUd@sccb=L#
z*5bb;!j1i#3QU8C15(yrdjNCZeq5frJQ2%C0|6lrXvj)`ynKA1c-jiiE?XX({0wfq
zun`8I8Y%QWuQ%)gheH`-r6XI{W<p_U^G^a6137@`Boui!H`^-j(sH|aIN_8s)qj4)
z>_1%MEc_DnqrFpGgQ9z?x#A~OI(_7CyE{8jcDaN(Gdk17Jb`qc-xH(B4z~{#0%V8q
zjotQD-Pju+zMYgLCqS1Upq-ZuCC?wYV24q)p*%M}JvuGZtE;Qfx#9`JKL<C@Ac9Vd
zbjt5<JxBjG=KuYNG#2Dfde-RprdH__tad<}K#l+R%>4MbA4k>x%P3E*`fF@htAyx4
zYlZ=_3WsaHhZr|oe2|L($b$ItD}G<*N>BF7`0I)lg1-SOBde3@=kW4KaW!+C*;t-A
zViNiE(dhNJg`a*o83#D7su5P}cA<ra!d%S~PP>Rfhe_N~B|(j=MSlFv=E5c$$ooQ8
z0?nL)l4Qon;r{}uCp@%~I<6>C<<%`}u+Vk9MIC8(2ndBHNClSAK>ztfi$N$+_SeVs
zg-EF~OFCWo6dX{{SPw0lmePSOPyIhYD!T)WjUWa|SM<$m`Z$ckxwh-^7TaQ1eZ5!+
zFL3oZKkLgBT6eb)kF|9We6Nf`|4F%YbT#R4?If8j)#myRpM1LRzHgSe#6;^gQK_a>
zKb4)B3uqr<1$qIX$4RXRcYrcF>!FEEzHsS9@E5kiDx0nb4JQ?|=E`4@k{$r+KeTeU
zHRo(a;PEpAhO=I~AGGppM<N0^_K0C18;cg%7rQ@!B^NMRq#PH5g`*m6H)K48?LjUl
zp9E`wJ6!n)3EVgmxwH2Z-F|B0^m`k~7h@G4t`or|ZPItPVV?mSRTh7g%uUQzTM$02
zTBpZEy8!uWp_*IDesrzS4aD&#CM*e!*LvIw_Gm6URVfi-bd!BcZJJ%>pIWxS#l>w3
z1)%6c>VVIJuKWJD*8Ua=(fw&d!=cB)3Ln_b=h8UMo1}?AV2zI&+&5D@Y!_2m^0-r2
zij%xc`)`cL5Gh=7Ej)zRF8&AVzb!}q_Ja@jKbZF_=tyBlpEWMPy#tvknRBavNj*(`
zC|e3Jsee6-3~jC}E37@I-KcsLD$Ki?LD}#w5+9QhCtcrwW?xb*and7kBWF<|2fnZW
zpt_6rSh2@H$rao0EB4mjeHYBYXRQ@Z(sAF0$j4y$*Y@!U(het|{*xO&^FLr@EC={i
zXg(Ea>U2_9KrlHMw>#`Zy6qy$2DSdQFi_lR&7H{7F=K{F#okvKNuZ+FMLC2f8)i)S
z`+Lgm%rD~m#MmC<XTLc5V9EO$b{%)hr6qeWCle^RYxJ}QW{G$53eNm(Z4}m~Gs<gz
zcIlUSw^3)(zoz=J13<~WD{TFgg1(TvD$2;!xLvz0|82>7a8QUzXaI}W^wd;Elz782
zQOf&_W$acrG+$DtsJSLL?)z23mMy2#SQHc=2=z)H3p=#Jznf&cSs}5Vzs>aU`s|$a
z6aUkvj2R9PV4MN0|A=PGje6VTCg}HYYH5sVC&B6{ki=GLeOWUPW{>!?HIgnlC*+gV
zct^v|9#c88tmt*4N-@fg3dG8<EWcW5u5G9+Df=9{87R7^_=8QtG<Axpqh4NKo<Ar;
z>-^#s{P9jN>+PyXndvaOaUXCSV;@VAP6oKOLhZ>u{(asMLuXjPz9V9gwYb}=36ERm
zA>>6epJVk6mJuL^-gjJFsz31H_qrKRoePH8tchBMLN?sKG_WM${R!aa5ju|R=eM%b
z|D@vnwA1*v{&>GK(#@h0#hVy%0XDZWxp<op%Ky2x=wv}KC@wB;qf)W&BU<$R)NNzH
z){le*OKnH)-5#6Nd&)`%r$SbpK6d7$?zQ!jYk%8mYr_BZxvQ3Gqf}1n>CEkW9ynx@
zcXUA^2Ug3BjNvEV-{M_18yluni;}bC&B0joG|rHhic+$?j;vnDKUj0un9d!9+6fHb
zUt8e!$JadYM_B3?yPeH~U3U!|TRisp-U?3#ygmmBN0H-wQaNQGU-(>GhIWx_B{Zxa
za>9=>30>H*w{8XpWlzF>a+^=Q0g~p&7W-;aah!pm{WpN@-85)=pHApnS|}x7P8Rv>
z#k1UmBi^?*uO<nv?<vOF<g~`jLdZce3>U@JUN#l8I0`n#2~n9fi3O)zFCP`Rh#V(0
zrpvo9*RnFx)q{)s6>0>sk0&3QScy(2&;^gx%Dv)lgnAq+U|E1O!^iXeic`xi+2>E6
zqQ<wgo)~dUjTvv6eIN|a<u@m1Gb7}zz5R=m%vx7?W)Qh+a6b%myOkMvGXZFiUME0j
zvAKysq>$k(sPE;&zz_EAm0y0)9#b@tSN<7Xy1UC_!7`;S53Z@M`}=@oAWdFbTbrnb
z3+s9aP$cCjq{u9l)SJCiL#d{M>s)|&q8&R}AqgfK>(${e17^ZAfPuPwfik*RIV{+J
z(1_I_D!x399jxip&7*(l2lTNfubhQl9XPefT3?kE6rAve6_!9lzyJe2<OUGp*EtA#
zEBqZhJi*=MZeif&Ym<kPPNE%@)c%&^aI39FuKC7Beqi}pBk^NtzB1CO1*a&cSb5#f
zHx@)Hnqcn5#sWTRS5PUI-yzz=VW%u}eaBVOnox4>77qhMUrS>1Wz%7G?{5B!I}hO%
zkLRO~X_LWGEnjEZo;b5*wNX`LS)o5hG|xQ1FJFK43iyA=#Q}2imu&YkPa#lU1x5sZ
z0g@fx$4ip)eSKps%2U`(4CL!|mtNUfBl8JhzGUytZ7!~9qYOlAnWAE^Ys`nnp346s
zIFND}x=&)#u;tw^5L%yq9~s0S9Pi+@>2WFvP{|`p3Co-}Qf>bcK!yGT+F@z{JP4bx
zjEoDrrATURKTW|HLVsUt8-M31Y&b;=57#gl7l{S^P3C?M+DRuI&S<yt5FQj6#LM!>
z#c~dMC0>q2JTzq;$UIx0DjHY#e+c^upenb$Z$(fL>6UH*0g;sM?nX)p>F$=^bazT4
z-5sK|ba!`m!?(EiJvYy}-^?Bd8E2e%_OsSMesy-(jy1G|!~#n8$<`qC0E{JUj#<nY
zXUU};&Z?ndM(vU}mBt4FLPs|QZPiZSlb#-N>hDD_+3q(inpSaC;CSD;M_Z=}^B|J@
zwYuW=($qaH9?G`A4?Px-Msu(w!!MxDP4BWS|L#voG_TzG`K3JFjIwwtTVfcR{-(uY
za{gXF;l__vefX=hg6YztY@VrP>Zh=nM2W*sheB#>GWr290(p$`4GL;JA*Y4zXMzgR
z|IiUlI!vLUHm(jVs(i@53{R>rEX|F=?`LbuNNzm9+d6e9g(;kt!aH4TzG%rBPAS<W
zS!-OdQdfKxBBtU2&lTsN7>I;z#*xGpbEMG!z@Dvr%fqR-3%QCu8E;C#SAJwW42Hqt
z0b+PZ7~ue;m*e^4@~23<CAB?VMZ*e)R;}Ep_weE3=AdOE?8|&r{_a9cT8bGl(Rgv$
zLGumWf*vbKO}PGn<lgEfe7e0?9(?EJ1!c+>OQ+dW5W$=Nvc}M|yTAX-HwwXoM?1<b
z5OGgFYxx0e0P6SacY?>>*@BRFwncs-gtB+s3Poxaz_WO)t!E?ECDgp-&i;&x1mb?x
zt9`uVJ&^|z+rJE?N<FR(7#v{fZb&SPc};^bcv_*o27ohx&qm0}mWlRF;!<N$)X4RN
zzRd4Ey~cXRjxA@xMZ1nVCZl08%szp)_e=hS$0n~fmO-LP@&G9wS~HIuu#N#s(x#VK
z_O*CFk8sS62-@o$0Ozo5giWx14`w#U>Yj)Q8_=1v!IAW8nc!=jN!_t_xwB(=0B%f_
zuzgnCD@_n9U<(QCu*RT=DpD2F??HT=C?NH&XFTeSBcr0O8gV)7-|`U^`!0G;ry3LB
zwXUpi(YSKn9{xN9goz=*F@7~+)aa20Bn<BKbRR1re`~%L;uP>zrvGIHv8X{r)V5)>
zq!g?BS6*wa9|T+RjI$S!X+ktzvFdiE&|l+7ASjUs@>Za}n#r$ci!*waT=}(7E<jOR
zZBxPHg2Q9^*yW%p&VF~2k5V%A{&`AG{E0xDZY?2f$Pka<SZK~iIsuRIJVye0LAXS@
z;v1Sr-!22Lvs&w3g}*PLV_8nTEbBQvu*hGf{8FcN_51qN3x>^s`1B}s`&L-93L;)!
z9`lAxkc;1FbXcPHVd<y;i6ijyZ<K1Vk6_or{eYX)rFEdT&Gwc%HZf*}P;fx$s<Uox
zRlRu0c_!7>^8#Qy#>L+c-q8TdBC<X#y05iF3sXlaw0C-M6MvqJwQc;)hR;9jonx|G
zM_=PEO1|KK%gGZr_XDeI#V`BB^>q(5&`B3tCI47bPE~=RioQsEC``xZMnVJ@FA=Ux
z$F|?0iEM|Y!|UlG<m`d03$9V^2>4?W?*UW`$F?nzpMMOiw&Evy*-G^^7dOE@HNpZh
zghWCRb!um{kCPT9Vtks8+AT5c@Ji2YNNBaSyPoDd=cFCqa(*x&vtc5G{jb)O|D!Tg
zz&3)^*h<SKeoPsDUN{C~g8N6(WbzOzEnoUAKu2-+dyzGapH^O!EuXxNcYN_H$I{GC
z7A>?NH0>LmfRWO-yc(zF9MHak{B%XQ75Fp^G<*PVoYu`UITMJ`c^hd5R~&%@ijJ%6
z>&FJBia$4UMn@GffADv`bkO3weYXDtS?WTF_xCNJ10=eiSEMmuLG+%%=@Vn#0bk>>
zOa*qFlKofq><cfDI1it2d_lrv3t#X@j$BzHeDnnM%td4~0>M{zr*SQ}zA&4Xt$sTd
z4(Z&`qsZeoo!^xTRGGqTFgGxola{|dL+rHV==`t{RpxM@bv?6i-yyxUsgiawuglw5
zWYKll?_YZ3him>x8n6;}V~g-B<d9C<8(p0HH*pVWYd?_^)%uNmNIte&c?!kq=?veu
zgczn|N%n68fV6b0?J>2yz<;ewh@k)YcgY{1w<W?Nnb{L|5t!c^+fToak)0BzSUU{1
zq>ivY&Pzbg*(SQ(vB_};p~}o0Vq3?;<f+B9A9PMLZ)#W-D@H2zWx{fM?L3@=$SYnT
zyv}my-YYMtBdbnOF|#6Qe}ygWT!7o!j=&F#&&A9GiCBqFvX<hDuznS?vM<#$hlr&^
z+%>4KE`>jq@<vH|{7ih(%;4e+q-O~>#B!8bc6$^qYsV_b`O!J@7Xv8>F^w_S9_~>I
zs7*>tRDCs<aAe2h++6QbE90_W1iddE$H0@j-N0AJzjMVz^Hid{->t)H`+hp9g&XOV
zt$Ys$3K`XonJ7FCFnXn)(A}^n&ZVw(pK(_UYkhrx;EbPLfanPQWl1b^RO&T~*>~k#
zkFeb;p=9m+ZReoW2(`*9F*+L#GsVU|ZQ$NSX%gf-P5XLpM|yWuild1u<|wH7HuoCW
zY^6-P5>F)eMQk8wC$OPU9|D|B(4j?n2Xmi!HSiA2KlILD&EN5I*6Fmrw0A!17g>l$
z(@-Tg_iZqh@xMs6T}bqv-@Z+q)M*a@Rc8a*s>0(d<*fOVqK2~ax&p|+{Vn}_K5eFn
zX7~PKH|2$^qSE#Kf*wV8mIEq3rH`zj;8PSMOkUrr^6l@Fy~R8G787<3nl<(9XDzWs
z`}-m)nl$$9Q1*$@LW#Egu-~%7=NY3CRy|S~le_!$P$R>6TQ}AiZ4S83xEAWr_GfRB
zFHGkFCH&Kx1%U7(4?G@jnpb&s-8aAauYwS%!3-&Fz7~AJNFg6%SdKe{G~$dq?#o4Q
z+Va8;$b-R5MmoD;P)$D8o5#?#W6+8|PyX%aj2x^BgPc2Z<KeqCQmH@9vNc{rrCUAT
z7<yP9TeGizrG9e|aKJ~jP}CgncIngo9CB-VHn6&K`_loLU*ALEmm%!nvlJILdQfZ4
zwUh4e<K1m+Y~1uEZw!&VOi!k+CeC<R&I)JFd){i)%F5hVrDo>Ar@fOF^kG?l_`tXM
zD(!Bj^8zgj(YeO}Hci`U4I}@%aq1JZv(KPXS#O3rEWdL{(`|zaffoJx$0uDE+DlO{
zM9ZxP8%gn9QfYBNE?183Ph&b?|M%dCY8Efd4(B(qex6QNaQP}CT;ujLu%w;sgD5J|
z)BpTz_CX(}4{+`>-XLePP?zBld}MKc-JS`pKiT<A!aopomRw<I%*)G+`np7Ak-@S}
z<3p)?nM`HQNnsmv%kjNij!c8_dC48`b!ftpnaGuiSxe^L=LAhb-JjOI9bTsPX=yq5
zSyZqYik;3T7%K_R<9lV-Sf(n4ug46$xnp3aykcbfpm?>l0~JbpylW?0G=kVgdJs~X
zm2T2bKHo?fI@CUphQ=QY&?T;$EM#q+^lFpsY}8nA#-{MzCs`%xK)!z=kWQ*hokb+%
z)?f`=8#E&0h01;I3E?KyU+p{C{IRQk`xV{7iE**jOMqnTS4v{5)A>8V*;CN{grci%
z=k2v;-GRiCC&u|1O3tpoftED*`R-d@l5GL#`KkLMMOjOTGrasmC({ED;HpqWJb_CV
zga(^7GE!23Aa93*`J$2)8IlW*UFuYhmFc(a>>r6#Uy=DCj$&u%=$@f#JiI_nT2^DB
z5aAyTFf18gfb*O_k&%#=9&ah>>FJpcE}d)f@W6lix}^-1bz<bbR6_|-QRG6pXWrNo
z+MM$W_jW!iD%ad{3(q#G{9fT?kiI1Scmnd`paSQfg;0@`3zee6`?RppLj|lp8)Gy|
zNJv0ML(9CW6pm%N;wo#uumpU+YgfNk+zrJ3olxxU(AUi3J0i%QoP!r-q<gm6lBTAG
z<4uYxDmBB!L<f%7!x#^0{(rn@U!k4Ro)+c|?f48_eq#fanjhuVmro%<GS~#liy{QE
zZ>CB=3p8MrsQT%Fw3cg-2u&8U^a3xo?8n<FUO#8mR9H9N1T+nzxajE3gvd)zOKM!-
zf!yQV-ZJnU!~f&MdqDE(SN~zpu0!sj)8!Rwce5Q~x*hrV<2O&~e+>|b@mwTDR;<%v
zT-69Zt9!WL$*!;0ns;}pa~|B0M{=4o7F&Q#U^ek`JstX(z~fQv3`wMyh&7e%U1pDF
zOV<iO;f#z%FE~%psS(M$Bb#c}t?^+aX<xD5a^L-o;!Jq=0tQAxeEoyGTsZC8P0fz`
zz->Rm^4k)06~18f4b#YSH+4Jbj~#C?vg?Ikk8-^`gq6Q&FJ)rE{%nE-hZ5&ZWF~<A
z<;+<2<_+t9C5l(JM~Li`47kfGFw@P^E!4+7@g11!jVg+0orr18Q(sV#+h)w7u!!1q
zJxW~hBWAhd#IYZ1vGd^2zRVe2wcs{)t04W)qxz4-%ccy4%<VFf#yK8aU&j4KRY$nA
zWoZfVOGB#NxSBKOJZPE=4VtdwBqSxHd+8b^`A5BpJiK9FBe_Gtr4idU0}F7NWdmJg
z&7W!T^o_Fc--zpT{^Se!+xK&74n@2q_uh6GgFR6%Gw>X*kc3iKT`qp4&1%-dE8gjR
zH(;AUHaW0Vk(5ToJl6d#Qh&Dg6$WjQoVWzd+OR}!UiYbs-tsRw;Kj<#B=z#8#MtUB
zKbM%t=Bkr?e3kHZXmZ9)nXiwSfLn}@Pp7EZzKRaK4TP)mDs|)sGj8-@o%r(<t0F-P
zymPp;jrk)qDq1$Oh%&h4LItSJYxb!os~ElDq{12_0TFRiYi+B1PT&E%f@)Vc27gcY
z(+}YUE=`8#&NeVr-F2Ar@d<j)i+ozhxY7R=Vj-?Kje{D&$!{EFPk=>vlX{~$hm^sk
zaO$cNUV-)(Pv6s=Vi6&Cwl9Rh#0H|{E!vCAYOaW47u&Uw=0OLH$(ysCh~&YZ^Gks_
zzkt9R*tMMoqz-k&X}jl>oVt>M_~3|)j0_f1A&~C3#yw=??%up_GgoiNo`J~D4tO$l
zWShz<?>+x{0{?mIgX=$C1qHSmKLNR9pMmeN(EJeOy#z$u=t&=6C8lXp4{)A%W@Y`_
zap9#?@kZtCEN~HB+vb+dKt)yQ%1tXCf!eGxaoBthxztclr#w5O18I&!G_lOi8mI(O
zt2>=a>cpwfa}_c6V<ty!^QorkL*u!d-Q75(LLyn#ITt=R84qOt>SxBtmUlHw!|R!+
zyJM6-F<X%zwk3p+nIR#Z!~_KfMt=WJt<6yz=Jy1O>2HtFb6z4n=TkwnnTIw9+h!yW
z9+t=oqk)9pHg?s=uj=O>*9|MflpMtWRha(oZTH-#KxVRBY|Ys>KUJL;$if%=c%HW=
za);2i4p@nDrp8Xg!d1Z=Af$3EqYFd{>i>>sU`Ob6dE{x(9$S4qCoZi1=<3=SdLCQ}
z{Ii{acbV%{Zi;;(FwXt_aDP|sc%-8}pI^!NSS*d$%tG~V{4mVc8NC1O8(6$VZf(M`
z@#xrP&3EAn5r++S;SQl5F3%mxys!%ELcyFi>IAj&BU$iy(!q<WMoPWcRa2Jq-{lCW
z_gL`9rdHKzY7O*nh1mC%@?A_KQ&MR8sJ~ZQUv||t-ZAAm%~V(W-lczPz)Y(WM|!C&
z_dVvJr}f#LPLLIE7uV-=CDdg|_}D>nRxiQ;HU)>n{wYKI%P*>Drdz|=^$5*&^qv4g
z?*<cUea(>lM_g{#+Wx+t9^+i}3h)j|3quj3z(um0z1TizkV1Uxq{`X9F7}p-A(h)e
ziyp;ISZu91M!sHGPR8~Ji`YLpjsN%oSmuEMX^~O1gn4~OM|9ECSM-{6ap>sid27Nq
zTQ9hQ%Pf02;_=~=M^(n8l0@|Qb963Jq`jLN9E0Q~3DCD!SrBp{bK~N^`}7r4vt})g
zs+0D=D#70iLu&x}AfUH*ER!sgbN(i_>vzVWsS~5f3X7Y~(4Z=Q%OGUitR7G}m-?Kl
zi0&*~*Ptu@NM1!DTd1RW`ZX=DeO>Z<w|TSj-LqV~DGI^Z^NL@i?#tHf<fBXB&y~1E
z@4RCO`$uM)w|>IxG3U8xA-jjAxR>G0HYt4<53=QQfoM`_*;W<aTuQld+D{9ydmN10
zUDt}iwR7zYPnGHVn;%T4ag*4M#greXZ0P?SPeH{=B3hCgvL63UqljzK?aS&a^YVN@
zQc8jcSwt{vw4j-5|9ODecIF*#^cL{suDie9v9o*v{iL<2me2dSn7n*sFm4>h*jUx^
zl)+9FvP(y>Rb-4E@9@Y?{we#_c7bUC#4^vt=8T<(lT&hTz@}hqYIoVTUeR`!Z4Qw{
zk<^gS%Bt*qrV)6qNoZ=OG`}!}-Vv@0H4_zu7<W?HH)t+o{%qop{&~kysiLNqABOw-
zwPe(6BzV}oB@~0Q>eM&f*JD;EM~8lKq3YVZkUu*Be|sIA19?l(xCzbD5zo@QunEku
zC8VUrkT@+Hfq_xf>^EAU(RZA0%7jgR2t-Xzs%qmpwtBf2>boY){?#GhjDhaQWfZXA
zIEdXc7zn@ibEbMT5Lb%qFNw>g#3{~+XAD1drTZd{n7RM8lS`jEZ3jw9JPENl8`sMA
zOm-!&(6!P<xQ4i3N=+vXo4MSi^*i@*CDf!@mDk%Q+120q*BmKVJuY|C?DFdzZUt*z
zc$QZb3kM>uiW)ll!~^r$SigjoWdRrURUmCA+;Lq<s&`mZ)cK;&oRgtgU34uNd5sWp
z%1E(gIE1VubKhYXnfYskltNOW&7dYL+rXGdUh}FP_zJ0&>G)!D>*`kp(bbEd@6AxE
z*O<qY=_+J@`$4<VutA+);Lzjw%pYcXJu8b%OcWvqwWT;!t{?V0g;8x|Vw^qu`*-Dr
zxMVy^lZo{$d*F1WH(C0*$Y-Et-njrB6H{DLGI(@iVrL>pDhZkoz7(I`HV;#p6p5y7
zsTuzqC>!kNw1k9w5hK4U%@~3v_<w(LDLfaW^i?67@6Bh~#3Ut0=~Pry3SQ9m4XGDG
ztpOuI90na9u$32iTz=O92TA?)-wCK7{N1t^Oc?C=5gBEsZ(c#|*z|u8IUpSlW)RH!
z_E$YbGAA^V`Fy!Wkm8t1_fjB#H%(vEuT8-K*r4!Q2pg?C%N3o&iJ%K(n@_a+d)wcF
z`6c-%DsCy00!<f@+tKk(r>pRi4ERot02^vvsf}i$jVxA%(u=E*7KcX?<J&jaZZ<-K
z(ic>xn~kHj>Ne8Z{+2E^hsN0Hc`Wxl>SD;k=>F-|;Z&#F8ga7UVSS@$2&>&!MRcq#
zzX8neW8<^sCVL<U?FmX+2w@N=ZDegN8&f{Q#S9R#G15|W^q9=2KM9bRQ_F;UhAv@l
z?s>YEnPKGb|J}vt+xIzPa`XA6-jck$p@>uk`DHt8=0L*fA9q!t3gU1%SAOzk)~#jr
zhx9{cljGtjL7>&gLDOp0W<*c;!<PsMXEBU>#HdWJS%3B9{?Q{R*F$?fN5tDiU><?*
zWCI8=t!-#%C}v|Y-)V3*i-bf{96sQ#XJ86v{_aoVs5+dAW>x1z2TA~`0?44lyi>0G
z8z8WxC}}!Rq(dCC1%>bIC#GN>aEySryRNs}(Yw1o%js75!tq!Jzr5W;&;w;~PoFXD
z&u)Q5Hsp89O1ApvNuzqF!sN0YS>Vs~GbZQL=FSxq5mmz)M;N(6+AfNH;TrP+Ow*CO
z%CXB)8jEr6Lf4HeOd$$w7VYuI7G4oqVLy)#HjUR!ac=su`)#=UAdSI&Jcf1};pNNN
zPZ&S2N%T}p`-*q2EbMZ~7fx3W((?U}SzI6`nhFc1-lLaE=r(6xBB9KQ-z#4rlXGyW
z@7k~BUb~uBf3j-edfIE!AL|+|gg=4^g|~RG`Q=LvCab!Noq+fJHOm}JzyIRmr#|>C
zHbUgZCw%bpAR-?B>H{h1&xv{9+k1A`_%+l{fkZisBbBBN#1Lt?q{hUINs)eH{NLw_
z%+eZ_H#}O4*0p)b57!nQn?_5}&j~31Pv6Im+rmbTjEuO6IT}{GT$ukrjqC32em{w7
zwh^PEHMI36SoB@ZoPAQUe>T&C(*{1i(R!o=-H?&vSFab;ahmoC+#Lc5K<2b{r?3^$
zwxO^!va0%T-QnMhb-DxEI~@Z@qw@xZ%itR}To%*tXD<*>&5=*{v&eXtPQ<RthK&BA
zyZw6?=Be=YiO;}~CMP`5&_<@E(L;XC4laf`dau3P7)YZBZ6mElO@1DmviDafpo+XE
zo&YXrWRF=|`Z6i(V>K2<1|(haoBf-FL+V7XEPk+ze{Ti<yT=2~;U~aCc>m>h{QM3P
z7wLchi~st~ChAj{IAi==ac$Qlp`cXZkk{nMv;wZ2Kr-XBo?vkLKJE>eW;bZy%TB@e
z+O2bPs@|>uD7)lJqrZR}OFyt>dwpIexL&uBS`atqGkJ9~z%$__%BrlcZem|Y{$Ky!
z-}}%_U+8yM?g#TtO@oZ}g8!ep_3;g{d<*Rij-kh=nHr0@%S*=(dzB;55s4zf*u<jV
zN-8Qhfg5XUSLa0>N=izR;o<4NedD%}<RL9Ej++xY0s6<8Py!+n(gjA%`HI9U;$QSg
zyd}ipk&z@I#(JCieh>wfEe1|dP%ydY=gQ=tycz#!=F%t7F6&`Vx$=Dm*Z{MBD${ph
zvPRgvI6t2+k|nNJ-(KAmbO)zava;c!ujeKwH))Wp7)iu_zJ!N=JY@$f2s$RZ=-jxd
ze`_E9V~&4pC=SR<Gno{<R<0%D(F2*7#Z>i@Yc-9l-r31?jVwlfiz*IJX0{0EBlsSg
z63K2IsEDp7p;=ecSn++7^&KP+-@AYO>I_4OookXHV@57y=iH1K@u*hwJ69Hm+Z{2&
zUDA2~->36vGx+(ls<4!B2sWIRU{Csyjrt{whqsrP5?Y9}$+d-?8vd(9N28j{4bfn<
zvCPvHHsv0ha|ul&-&foZcvC0mojv{(YXaf((>f&C`DJ3epBFcjSE@}2wkmRaQ^Qn5
zJ7!PxE^g*yMrHfel)q_8ci~YZRGp!wam$iKF6(dL2En+3V85)wLdlokdpJftP6waX
zr#!EEk9%80Lp8GJFDybGi?Ur|7%p5R!rwNwk#TEMO|j=7YZ*Q{_R_*ln($j^fa@i*
zWzQwcoqyUL0Bm_$j@NdQl2!@+;w%5h({8mQw;YB```Om!`t=ZqQN_dprp6+Y++M`u
zqq#w&q=szbOaa#@oeXx;yOl7W>QQ;5u;&QJ_*fWDgqByRwE}<f77rG{PPXCcAlY^0
zO*sT~D$#$IvyxYLSG}4f3jriAx%kYxJ=Sw5D?v&zDK)L2<0LHZ;**2A4T7m!tIX9G
zE;G26>!v9LuTctStbS4KoD+XH&np>rG8{ljNxy+t^7?XWG0jo?#T&KXxp%8gWZq9Y
zmC{$u<l`00k}a72BiS4a=U*?K?A0vL!9taO`T;fPg>z7L9p`lQ_Cq7HM1YsT7>(q6
z`UcsWwA9q%o1oy}(V0q%e)$!<z=mQi4Q6rK;<uc{(uuR?w9a$`Tv;RiwN9yYHTMBn
zr)8wX%BJFP%~ZTr1Mi%4E`jBMF`u2tjRT>P!Db=Vv^J?Lf%}wX_l<SMX%drkVriSY
zA>@2u#dt7d?~?egil?ewU%s5ClU3TqN8kqIH3rJygN>KYnN#Ua*9KO$$WPY)d9Q-I
z#S@LM6?gek@N`x<4H3gEn+vQDlIa`L(_3q_H8kGZ+0DP81$JrIpZ(|+_5?*lcCdyE
zhrU_e0!;RECPLd6lSzxwprD`;CkUr*ABVgz?qB?eo?3$GIfgB4I@gebYWbkVxqfzX
zMSJnmz{6KIG!fQmzr|3Cds=UMcLdL>fnL!~yK8lV>d1C%$*tL5@}_wDCH~e_rNK4h
zRSs7LK4@eB1EUpBJhL;~Rm^xzMQKSZKuQX$f*IrdV1XVeo7M+69?Gs?FjzMR=4d#T
z^0p}neo-wATsN(lIu$qivQt<XyM0T7(OoYL*PzMn%qY0V_x)|*w|eF4P(sq2WNAeU
zl<t5?ChPb>GR@*`Li6<k!CByp@bT4L#Jv<phxQ0}28YX?GL!?x(bVOJvf0G<yupq%
z3XIFe!<@ZltHkr^<AvlGIfUkaIl2CE_etY<rUSQP7Jn&jEB8z1W`OD0F|7mTdpGzk
zC?1gA<mhNJAbK3{)y{ZF!q@^jr0Z{xd`_!nL58-?+gsPW!(T-teMG}2AVG2;joSk(
z8obVnfW3K5z+KnR1YoJ(J6@y?BWFt2u=~DAXbM#9ZqSnzjY%im!HujZzt=UgAevz<
zG^9^*`qN&b)APyxS$s_6Z|+}tAyV7EMY(dEA@djwrPgr*LU8+$Ffd}WrBXr<c01e8
zD1XO1+rg5EGRDn03Eg!;`xrZ66kBs@G|_cmMJT$!z}UF=#-nJ@p|S~uR9IA6I<z+0
za8fnAZ~tVZ(whlJFh5Lb7plrk{;tZPb6dMqv&>jA4dGf5Qx9I58)j3%3PITk8S5s_
zL~cX0?ngzA@q-PwMsaV=+4$0Z7}KX7q&maI61S+F0s3BJtNOsS1<za9)fSvws)Z75
zo)5NNxMR~<XRG#?hfDQWg@uKwyE(mPNlNGSvrlLq2hYF$;GubzDDW<DyIqTxpmY2C
z`xBlC+^$B+oIWEl`4JwDoWN?4`s>%P%g7_kS3`!upon&Zt*0rX+YFecyLYE5)P(|B
zV30Mh0S<e{70tMn+Y<{~rnRV5wm&J1=@)-%nT#J>CeGX2B)x@tq``XBedp+}Sjz@s
zS!p*?-D)SXfw$@z#B&}GXY!hw^dJsGBUw6*DG%~PP7dY0$vE`YW@goUk9*Up23GCZ
zw^Qj9;~b;npU#$*br!O+RI3gYqc%xT_3rvO>?I(i@|@;z`<(=s-!AOXSJOX<b#sbP
zzbwyoeXyT9NLZ-jOJ0jvriMf;Crim!TNFsk^kQdcC{BoaqY8S9grjo4pemySt7nyq
zW)11wNn~HOrq`p~Jxa0Y+t;of+|X}a&ASuYHexv)|7Wk#nbbNVb-AnQaqOsIp4-CZ
zaxN+??C0a_3-eY<PVO5iJ!wWo3o{c_7a%lK+pPbNsH|j4F~i`>+#{EWy;K?LygA>C
zY7fHd1%o0Cl(DX3sZV1V_jMPUmBe2ammoMFACc}sF_paVc0Ow7N_8R1>K!wo&(iQE
z#1wvi+b2hY5f}r5x!ii~%hm+FS`l?DF#*P2ZDplAU6XB~=~TH0g*0Ba@4%M8NLG5O
zB8%yp(E>k&6i%6!72~1{5el|E)#2}q@=7AZ53#Ab@5D_%BbNEIySfo-RPe#273dA(
zOo;2XeNH=c+Q;XK81@o)+}wcs@oRBO)EusgSVwKQa}tYf)-Q?+jJO_PbMl@}F3x3b
z>BiN}=3k(ZKY5S-cF9QVLp4cXK9Y6Mz8Yl{ZQFo=^T2Yn?2L`c?8Zh7fcj)LH#g4>
zJnQ||47~4+VFo{)wNk60qN3V1Eidbwed=i_G*U;vW3%K<by~-nqa>+OR8|It0N=E9
zs*2bpDgUZP)r9skBOaby<YzM~Is7o0Q)5mpydU*J4AC{faFFEcD*Jfhfi4pGKRu_l
zwy%3VdY9!$MNJ(CtY@j{io<1iG${d}BA`&SL4ZOMJKuMJxyo*vAV$L2*qH47d-<xp
z$isLtZI4tx=a_M#vlth07G_QA<MLl9Be~33Il^MNHmP{Cmu3A0DtmR&lWJLtJwY$C
z>I+q`4U#GR%WHPbB;^AG-^}G5Cq;*|OBz!*t_g<`6dmX;&13#6w)w|J{U47PJXJn0
z#+b6lyyz;k3vTr>vSC*~B%`ka*k+U~v~Aj-464%ZP^zEd>Eov?<fEo=W00|<rg39x
zCq_1hZV19e@IHS_A+QZc<q)_GK1Z3Fn$cdI`NX1Lipiac)-adT-sj2wOVDM7{#Zaj
zKxj@qYIoNZPF^lM<|pm7k+ipJT@?(>4Coop1n<(*KVf8lyefIcIY?iP{enbQCLVwp
zY$SST4fI>qI6sHUDJexX=*Z7=&e)zpOS0K+%7$I&vSWh{?L64fz87mU#zjFHD!Bdj
zKZnahJ5pJ7^_waj>ojh+tO+64`{}_A-oL7N&cVD<sM5G6fvJ6RJ4GTQa_2b>bA4yG
z68x^F%&;NE&VElm!WYI|;>?U3)Cy}b+o59OQ`zZbpuS?L3Pi?FMW*aO7KcNu+F618
zV#_bd!*tMWf`)k^CTN|ZNboyq_ktTMtU-?Aet}lL{^F}+GM!Oge$2f=8nHP>%xjXP
zwps7@>p3*prU&i;cw8Fq2MB1#V1(*56vfMHabJ^}^J-Hmtev}-3N~<kxyM*8ERKl3
zcgto!C|zy5NSHVvZ96=bpdUR$EY_e52^0{m72rfb{z7w9dp+T>tV%U7MSnN&LE!>7
z1G<E*n3fKs;V1DoIh0}9f(*@qW;rB&vtYMhF%`^V$w+Ypw&eZFTW=P!u3N1PB`Y1b
zljRjuv+k0e*ZQn2FO;chevfn#2bT1%`QSS5#*q86bFtKw%rEz$pimhM)G5a{-B&82
zukD<!-g~>9g==f8XYLq;rjb}t-I2MhfTdnOs)}X^9nTlXdefO|DWPk+@lHrq3TPsF
zV`)b^UH`u`E!z>euDOrWo^t&I;QNms*aF~ys}|U@h6oA^Z`1lT?K|hP>14*_P35<@
zAPfHAy+&r%wk1L$V1iI;v5IUm5vOz=T81{qs+KH{w+9J|D2;z(g%!88IbfHKQLhmm
z_}uIoJ}hi(Ej;3GUFX9I$3zg7e`Q-ygYCn2uSx#h<pYOsRI1GR_@v@U3Jjwe%-0z(
zy~s?2^NHENdcJLAP%sOTi|66*au8TAp;Jx8ke(mDE6d-UHCpL(+!6BGDZ_nu-p{5U
z)UqSqYj^eQ_qS^{5@Kaz#JH}GTrJNe)Yk;xw4>HFGQ%>LQQOxF;~dGA?WrS<X^<9j
zM<}&!r7)h(kbe7&*gaJ*eSE$<xV3I}&1x}m_Ii8A_MVJ9SolsrO+EY50bPK!WCXGj
ztJx-#CY{5GH4f0%%3Qi$Z{;eSntrnWt1|S*cC^U{;Id7t-s!l1+KGW*Qc^xm>ZAA}
z4r^MCe6;WC7V)Y@r`ku@k7lj}mA^o=uVYsnFIX31@4aVF8-AYmrW=`x@Kz^<ilSZ3
zg`7dR)De%mr-ItWaPA8}75nGOPjCUUC{aqQ8=IAiw6BFdau+yd;si$5elX_d*?ZZ3
z82KdsrM_12mjNWd;5dkEbihLJ)A_i`FiP4S^{{Q`3@ye@FS+~X6RN&>$|bR*W_O8l
zYu8SHR<pRz)H=3Zy#8zj#<pB?+|Ow|tCp<B9X59A4{_ICB)i0N+mDS?5m2L^qR{+(
zO)CG<QB+8`I0gl6r1D)ISapN@T9N@SED)uEOYpnWb#Ya%9@xB&?Letj9SUi75WLRW
zapE*j;rY_@R<otCmNyV_Uumx&xief6P8pA1X>}_v?@d17QdgxVCDDK-akK6|=<r;*
zV4(rD-d2m-9uZ9}q|HrRT%N4_4Cy6e#9^~8Ij3E)k6_N``)qYB6QzAaxF5tzs65W8
zbjsCxQWy*^261E|1ndGrQ-nlzzUo;l9wS4uy4-N#tyKJrg%$mgfZnYx)97;CP1&AV
zOv7QU%6$o}V8_u8QXQA!sHmv649Cpr9j5f-x`S~TLI21dAryoOWBLGm0?-?uzrrR0
zQ^xTI&x4x9Gt4g}aJJ#R7S{x}gKN5U_I=C~qQK31ccw<>kwm0xe&EQ2jEYK9v*6xv
zf7b-+I{;-$LPctJ{}n4-ghqjV&1RYYku37uj`AH?r<TBY?cplB(sp$7{YlTuYeDgK
zv(xbhX!cA0X!fbE8P17+TfX^r*lh|4E$npB`&|@jM%^NJ#1_eO8i|wfoc;qLorS~X
z4{Cl!RluofL&jreskM_AnGyIrY9ep;@lJ^65GgH!ZbZ7JzBQu86Mz@6gDyPBp`@@Y
zJ}n}@A11Ss_Iz1qNof|Gv^q2`6AGO?JogDn*1F@gN(Ms44w?!(4)8Pcz4sp1wpZBC
zwiDhXGiEe*&b{TY8OQx#owYk#H^N~b6Oo+!7Vu|dvnAp_28p$}->nXQ6QCV-KK}G?
zJ->*cplw}oK7^&XVV}MG_wVRtx0{!O@IZo5?(yKR*6jL$)B;y_mH-QCXlp~_A&79q
zZ4AqxdtRk+XhUj)uUZzzcFlu~Q$JWN(r=r;`~E<vc_nl|E7_$4Rc#>7@4M^N$*soO
zMedb_p2*CmWS!4QNldg6&luFs+`#W$t8aD&uDWVq`fi2Z2aAd(agoK@Y6Yvg!xE1>
z39MSc+|nD)5_5h4`Y9uZp@Kck#t$t(Q>Fh4f^z){$XC2pQY#<5dz@iH>+9K_fXSSz
zCZFS@6|n;0%IgClni-jR*$id8fz@*9n{3sAGfq|q?B`r{_Nu4N<vd@IA%AT>x+j3P
zT&ksPIvtj9Ml}Rjo$Jla0{8x%L-tP)g?R-eg+&F$s%89-+E)8)obi96Wu8&7yk=$t
z(s>6`pAK;&P|{pRDEYPjqe1$|U+YtNUG=<t{6A#%tI>-$)1VD^N|?(PqpPrp6bk$k
zF*RHI8P2ehU7RBx^hL9ZncXY8cP)DB#5_vBgohSG=!&){$vey4Tk+TDTpxD4;q;yt
z`5vXmKb@SDVj08-wY&rEU&$R!ZejKQm{ZR_E@-OP;$OIbf0R+6Ki6roy;3$pH+%&m
zNv~_=h3KlMt9aZ5x4+X=sbb$bE26I)<{5Tx+V~l-(AKR}hKc?V?ZCPC!wX<uv)pLw
z#WDmE?L5XR*vcU0R!P|Ie=cUtpP>QlyB=YTAT0V=z+uN3ENNLJKCZPg0s|RMnp?FN
ze2~F!Y)Un?7tz?cY2qacC{^X;{6bE}N+`KiU%6buMjK|u-z2}4#^7Rq|6aPryQ^oW
z+6;|Tu;!z)b3O0sG87WI;ne984Jrl!g&GZ(gbsfr=1=yqTFc<gX}BY+`ecvQAJ8%h
zdIko)V7YA91i}=wlME-KJL7}-968LUnLtB*eC6wWh_)6UhTEAZv!ewC>AD1ld}5A{
zjzNAaD=RQ1WxAa`mq#mWWu1-uqnN&qyii<xi*J@!xTE%sh@Ff3)amW6Qo`O~qmF0?
zr84;34!Do3WEh+(<YdT`CfbSGYKwi?An4Y<rz9HzU%E5H(_0?M0}_YH{X>a;bu*Pk
z(|Or`((V3yC=R2rw#(ATaz+-g<i*U`NKAa~rfJ}IxG+}DvEpB~d$o~PQbHf$w}ZXY
zLo#lyIp;q(Q>+{|)#y~wcs8!CX|`^naG>g_HsH2%Kk=O4#k4-uBNmy*>vMg<>^rI1
z(G~d5vWXlHO6k+GcM*Tmh(ErYi;BdS^YJ+493C~2JT88ttfLZqPR%~PY<kn1`O9)p
zHL~iEenO7RSNT@sT{9*hU%tpdQy>$B%QVn%Ylz0o6KxT{-IgcWZsg*a7GnB$fH&qW
z@C%RY`9S^rEQfo>Oi-{CvOx-}0bW<c;2|u-*{t|m1jbJA4pnz~oXPNvUp3dH6IoF+
zR8VOv$WhNIyOD_9`H5cRMA@$DLUJfQR@fig4q?go9G?MmF^Pdu_pJJ3eIR4<+Ehj6
z7QnLxs)MbykQ(#3@6dVq!|55K9tWufS;g~IFA(vRb;jP2O9w>x_+aBOy-}(*og%f_
zkQ~3Ns*)x@JQPk4l@5)nGC6_X;}zsIoqU(pI(Zr9-{$M<`^ejiBkMd~g}jAyxlMv}
zAVv7k;fPB%01}|P0BqGnic?H}LVwhxpAM>Ero`kX^<vykJVx%~Rn&#<2iRhLqf-O0
ztg_=8^?dSr@3Y4bFPI$InoiLt5g&-40iR^(GcwhZO<rD}?8XSu)<R25s-b27hYi>a
zrNn`K>;`>1RKqylv-ve^$1!cPx7?cIEVngEQ-|&bSHtD0iF5=8*$1_Z97b5T;#dx`
zYodKWs#5Z&*UBMpG%K$UB3X8b132!~<;$;>tYQv;@}f`_ifr%%8X(~tHy*>&xW(SV
zOAk^W0!{m+kGHEeu&fMH*JMnD9iAI9S2s&1jBlw$N1N7iT!Km9cB^*<MZGA4OP!R9
z=k9dG88}`LnpN#-7dM1bO2!jCQh3Y}Co<<~U0HMi6q<8b_l$75?2vta!5i_FzmPO4
z6cDHs-_HfM@St<2krBS0Bl}};W;247y>uORRkV%%i<dQ>=Km1u<PWEBsT78iPsC5i
z7}(`V+DLw3n#O&<rcU8uV%8LLJrATUyd%pxMFU+>zDkB9fUN}uJB^oYQcxMgfFPpq
z<7EaN;%5OnyDC8Q-+n}|jgFbbt5As=lup;Sk5R40nCV#!rqQTkjx(UB{sCa4sEa}l
z*krkT;@u@qkh(et?v#p~9^~feeMXSA;;{0MauCB`Vh}t3G=SG1mwKRV7^jQ+eI$Na
zM8b{BgXvZ)DjbTJPfDJt32Xd_V{gsWlmw3B<-_FV=L0M|0M>cUI2mR*SEdn_$3IXc
z1dV?KP{X=L^L6dGe-(mQK<YN7z<&QcjJ-verA`nTS!K8eboHCkB8tL-8$fqO8%Re_
zKLKR~`<XaecvU|vum^$o)vunMWDky;ivtz+v!Ru*vN$&o60@G2{!v^K83EpqQ{V@&
zMZQ?}>J~_qN`m4=hc?l!z^2ule4NG1YK9r=WWDbspsxA$SOOUTi&SFIRkDDs>lH9P
zEgaw?Rc3ISjpUU<`N~$S_tVCV<v<iK=LC7Ht{`Kh^pY5L$imA!S7&C%?0gIjN9lva
zDD^XQIQfSM@)W0_Rk!=3)J;D#(0|#Yc`g7mtf%VEU~hXSNH56L42<@mVz)vCVM8As
zlWj#5@Qt5MgqHH6q+!u%ym5qiUr6-yr`<9zX~oNfG}8$Qr&m8y{zL+YM{L>H@&a1s
z-&b9hwovDpSfAnkVln>|mCXt6?d<}`^wmZjH)S<ZQf<s4{1^D@fJYM9(U+bCpL~`1
zLSGaKZMR{vt-aOW_1?q_tWDS+(RXXg%_oihtequX)-5Hk-qSTM5%A$eJ=}UPjI9C8
zi(D1Xl9=Dm?P>|PUaPckUZ;SO_9_Q|#KL@E+YZH~1pw!!*SA~>N*2VSeoYq#Jk-D%
zUswZ9Fqluz^z9?ANAi*}cEjy@>tf7$x<`iGx_Zh>X|?5xeGX!E7|*?N&?A}-8!&|U
z>ydpH{rk5h{?gRw9q{x_ckotRHHMA+{09ChbG4{HtP^01eB6BI`M!q_9f2^U=wp@m
zf%}g7LZrijn~F%d7Kmdpf3`;7a%<i60E7i1H3r*2SSEascw1QbmXGTcP9TeQR7Ol}
zsMD3h9tt_}Cz18F$HT!xm9Zr-JhTP|XZTk*a*ZfYuYqc`sE5H5I+W(=87uC%Y{bNx
zdFBZH;aJgRRacD%r~T`>Gx-XS7(s+oilLv;gy`IaNV}kAcP95dJ+)=_q}8alSST(D
z32pC2W>!Ng@co2JR7~7JP1m8v9A9_8ohP$CjUuNs^L=Kl`p!*MLIMr8$YFQ#8|C2D
zhQk^5L}P7n`zmK4ix-^doKdYGJ_xlucLG4Myo$<1{`$??4kf_Lr&%TGPFV}bJ>mS-
zt4)UrvMx7Xuy=^lV>1??9C1Jw^xJmq+Baz7KR<hyQ=ICMvQ^PkK6l1-c<^jb2bHKl
z0Hi_R80;)aEQZ-sq^I-B{4(2dS=9bOOw8x;JU+hOWTF_Y4LQn!LD)6-_v#A|p1ZK4
zh9?UGk{NqF2hWlR^1@m?;$dghb^-@d_Pp2rb!9Y7$-888;~MW0h=OgmKB{0U*rdw_
z(1}g_&_Vb=d52}8pG!3=KCY^ZH3B}z<gvbeFFi|l_KC1f4a4b!?l8t9N4soFDQo$8
zZdPdWa0UQ%6>T(*#yzUK#wt~`<+4Ut-HsA`@>rBs>hI1Zc$72r;{?f0$M)Q+jO+I4
z$>eGIimzGsVua&*2Q7YwW5C}R%rID-AHMk)fR{MXj}1qC#A78QZ}bpp{Xn}El|whV
zqXkgL&XGtAgC`EZ4k$n11z2S`M>nH&iaYhY=hGC0|JX<)b(z0cE!AN6>4juq#UdAF
z_<lFTzO2I#Y1pTCJGY%WIeOV0?~=Of{$TSXL?qfKR;g7g;PtTfOC`m&%ll{KHm5@6
zCn4>L^aO(fg|f0r^Ism21r}lWx~}hBvc6SoU7-~83J4;=hlEClLttr%EEF?#9pYT6
z2}JT-%eUd-0)pho6DxTLi&d%Z$usboOuiFPZf7)kDs-4UT>N@Y^AJa(w#y*5EO#&P
zX852d0Wi>`0Um5eun?Nk3j8{&x}HKMR2S0l`&3Wsu*2E<@RrUICoE_c1z{FB@dr-a
ziL^zD^emcanagq6ud+hZtM=WGl|RfisIS&IAaj}K^xG@pAv>g8JS3m@I5=ok1zx{e
zvavLbW<&Lta1&E@aQJcl*i=$I)sP_$v;}B@MFvjsfhFxZP=!^;e6{RP{s3I}YBq;B
zuQxMwC;}6f`VyHX9&H3*Mkx@~3uir#*V+3LC+3?`Zl0r>aRW-T^IG`uuzcM~KZhM7
zP;}Qf3p1JVb6x>4-KGHK6ELbWj#@)QePKMKk{5zssCo?aZXb#0m`O~~h13gFN@5?K
z2)Tc3f@{KnHm{P!mr3{W1}CR4aXS93W{^Vu=q?DL(j*dRcq@hs6`qGi2WxUvV&#jp
zx6jjl$6xGDkv^JSt5@29T<hN1I-4`*IOb<jy`|HBEr#e5O&}uMhwd7<VHwK3+4lGK
zz4|UNd*85dCmodgXo>p6>FbWIE=2JD@F$XqT)tR^Im6W+a6yf$WxLHWX3@Cd0__O^
zD|*&{k-E?~okpHN-F-)lvT|C|0{l?8C~OGqd{qiUmD-MO3BKa~T4bwvRDZ)!_;+-6
zn$(0p?insMd=7C7GJ|nhi(x!mbFJL&z{HT>{k=$qiT@ef!9GwHHT8s*@Kt#`15=7b
z|2yCiCr=dHVa&}sXB*{F&D{a5;L38zY2}Vx5xTdYWD)!5*8Q>2jLYHOH;fHT=vmKK
z3tKeBwHfVKujnp|8!xna;acv`tjvL?i)Vu7^^(OmhId|@xE{}jV#n&YPe5j61_c7E
zgjK0Ub1t%jZY15muILvhVVShe@YOjArT)G4{jpX9Q$ds0SK8mi=d%96iEeR@8sbE_
z7?f3O{xKF(!+Fp@Fns6pI_^5Oh(b5X@~L`F<lIl%I?vdMc)z}5<e8kA|H^2vb2<o7
zoeL#pQL90cvjggYegT)zP3SpoL&4yF);;`3Fvp;2&31{@LV$80s;!W@=+^699oYqq
z7#^pxMaUrz$x}{4t<q1P=0AcjRPTBlU1RaU_EPZ2<MuKkPBU-D|I?E@zC%y5X;y>$
zBlZ~862Kmq7qwb~vl`AKz!o^wNOcjN;8<CAs-L~4)EewWBv-7aDy!t0CC0cpsce1b
zdc=!|w81gmawEziU?4SgKOW;q`V*nWG-uVVPVHLiHKo+HXB91z;LU~=vmu{kBdXTV
zgX!h>U|qU`o6FVq?e1krAnYbkft6izPP(n01Px~{sXHJW$|!oC6TfY{df`p<Lpwf`
z@lqISPKsBGi2)Pc^ko107}RtH5pzUN<`?)N43S|=%|`APyU~u&YMZxf#&7S0ks89=
zHgr9^>&Yx5Q7(b+bbjXj$GJy8ZehqLP(<%#5D7c%DkcisxC$1r>X7xN)41<MyJK-7
z1jJgd+xfYbL}mKsGa?k!HtBgK!gxm2W;M%wWiN3fhP7t)s(ic3k#W_1TXHz#C4u<|
zKyhdtX080C&o}gX5{t$>AUwp>h<d7f%fk}%V{)+%r@1^^BqAm=JcJnr5W#0SB=h{E
zS1AXsBFK9a@n?*kweQ4+7KncP8e&X*L8FvD9f*Zx#zEmf0@gOXL><-BM!6{zJl8{E
zA7RI(xJh^)7GLm$18c-bUYFRo`cDLuGGbZZuDJzd44e&yUu*9?2=3RyVl8^q6D}vV
z_76Ob2v=ZMCRLdesu2XZGaPSl`|m~o+U3y<29Pw5YRq*3HuLz8@I=-(fF?um4rxsi
zzoKfK`G#U3xIHULcU4yh+NbN@ukz9P+v~v3L+=RqIb^l#Jy*cm({ep(Z(cy4n5*|4
zY$#$_Iccv${PBPUf(bB(1{=039u^1-==avtdaeEyph|axLg%g-@UQ#l`1~(N=W*+d
z<C&Oow+z`LEuI$7FQLX%7mY`y=7?Ej5r>bR6VIBZw2Aa7cn`_h)t-OlFq9$WMQ&Pg
z;W$&EuxtcLj`9zg*o!|$38@<zA(9JtX6s^Zkg`9pnsojf6G@5qyuG}!R5(oHDw6Ep
zUFq*~4~Chxz4<N!(7Rs<6$-em{GH8lJNQ&Su}P*as!^`pYfRu1=WhE?qY67^WeKx@
zz<yJO6=j{#%}R6(F*TuVVL_TIPA37oqEmbxVaX4dutB2I(czwm<iXr;#;*L^5BmlN
zCXlMYX))@I9(Y)wnB&fn`GeE3XKVB@E4~{H=|`c?s5-g<tPWH>oryI864FX-v#S=v
z5pg#H(IS;kMI0;YVQ61BpQ2EObZr`<%sS5!+aFd@$f{HdoHshweR+3U&r0@Yl8*UC
zS@cI>r)^^A)LU$h*Kb71RZfGgt6=6^v_%R==B^Od>b4K6)x$_R*DCkTQ}+M^_f!W8
zS&UyX@Ii&)sTtrJvy;$J)bfc226#LsMTD|L!KwpJ6^cB{k{wW7Kt;TRh5*q|GiJ3G
z@cBwX<tCM9B4GwBYQnJ>=(QkUuxbHF2R+|Vh(B7E4%ywckEEEXvu4aA4^3-?5mCSW
z6#-%A0#x2Qz(IlG*AQG48r2m{X+MMaS%vrobxoH(M%FgJ8K9W9adfQZ?J|0Gi!6tm
zA$sU7i#D-{j7dpOE(X?!M8n7Q?nm&NFn6s)iXy*^uy5b9fK61|CQjN=xqh!LnZB#=
zAx4`4q<|P*cvai-f)$eb!*;37x7>V=9f!ld5Hq!nes#&$`Jm;YIn<TwQ|l8#v|Ial
zRtv2l*s<DX?+4+_0N6fkRtmoUcm@FxI$;9nYh-%T>yj2eJOqI`Kn2+BYGuQ+n*T=U
z%D$0oQ^}LEw6-8466&(;^0k=(GkN5a?iOfuM<U{jxcP|81qb4j12<;@F?I0O(bX~s
zm#SOK0Z87Z)nl=<ng@JnZUO9mLd#hovPcHD4Dao>N0lQgrRMghbxhf?kjJh-)Wl%K
zk0V^11?F3PFJznzGU&+;;b82gAnveA;A7N#yw-bmV4TbW%r4`WekPTaNpe-R|AJ;*
z2gAh`aE5_t5s<@L>2P?u!01Z3;CdpZ&{wlpIDo8{DFu13N?qiDbU!JrXFpi|tiAGY
zss%tkeVNwa6B6@}ZR>yh;7sG$mSR$A@?z|nlHiW%v18l?KHKMFJk=J}fTqUY34&Mm
zgEe6<a~g3}02yad|E=3JvwW?64AF9hxkx}x(caD-so4&@$TjO3lErMX!_9a9>T&<e
zhPcK&!Cyd3+d-d2MgFwS*r`V3wHJtJ|I*mGy>L%nfDuM<b{t4>PV?C&D!1wh$pz01
z88C}&!Xy65vQ~JrZPY}^3Xp^8hg}Drs(RXRxQ|!Q>8bW*A0m?qX5gv|29&Q%rWcO3
zZ@elS$8f70`J1XX4_c3_Xm9CchrZp>hCd+7sow?5lc0ROK>ND52sY(I2m-u%Bs+Yt
zC%~-ZWh`rML@ONW;3|sBRWs&XgGsM?cGa7~4o@zUp*RKY%3d&vIV6rgXd}e<lQEfx
zPi97j8BFX3fyE#++E-rG<u9a-fGV4Y$@{qN`Dh5YWGrHOZh9d8=FJUgwoHb|&q1PE
zflxCtHef|0h(>O1ZepVN+Uek0fTRW<=#tRH01DHL4=eSbH~Lea7C2O!jle=Dyo1eu
zJVi-*SGOkvcG|$E@>7r!H4#}mJim!<gTukOlrxhNMA{U3zIOak8zvd+3haN_uUQ21
z-a+CQoOftx-=7l_a!Wigjq;HhV8;`^f9KOy3Yu2&ASvQlKT&L*0eHIF)(f0%evx@u
ztQGG!n0{8gg)fJS7zBT6wYWEN3v!<m`}oU_!rDlwK`i^2LC(tn_f28<aK<jjL8C%Y
zIdP(&>=>lM%{O$HHxK@4Jwx&fwik3@G){T6LjfioZ)Vb@)Egz$Q>M;GFIq3Zp1{gY
z0)y<!S!5%;bz643Q#;8*Uq0kuxE$me0l`<E+~-oKdV){=FL40DG3S8*dx#^$v<39v
zA4S6k(kT&I{E5w3-Bv76C@>dYz4$f(AK;sn^bh3{E!r@y^%PgXl`4~o9*|r^xp24d
zU^Ur8#QPlnU5`==ISRupcE4G21<zHtj4dh!9yGZ1Dj2yl3FEJJr*CGm;E(^cPfQ;H
z$o4+dd*%PYv;Xl|AU^j?^N8A2zwoq{3vg7@%O*M-#GL86Y({;JkxPOSXLzx(@D6QS
z<7&6!Y@4r69Y`uitNFOls|sFpQCpV<65(NBd?RR<2@m7`NORI(CSkOGwf*_fIv^+{
zJU$+p7TqwBO&(CG%3YS^F`A}|NDwBr&qw@16y<VFviP`sCQu?`o<Jj+oJdfUk<f|h
zjQ&)KbCxwzKq)%>L&{rjHUp%42nfDDLSlcTZH<M#_UDom3YNdYCd`n^)k`JCfSD>c
zxGJb$*qm;9Z?=t&Kh_6nj`$3{P#-S+gs|ido<H*C$393xk&&}D98sZu5jc^^1SUg=
z8QDdNu+g8)(5`5wU&{W79w@7{7=}VuL8w0EkWIjJvrl(TXNezYhJsvUVqr~ue-EuF
zoHs%p1xIFyidyQ+3ZFJ-M@bjyDqt3X$vuMyM@cMHFA0{eN>BhHIS)vc!bN^Y@{)n%
ziSDtS$ZrUS91A03g;GpEBu-svKN}9&iyzxu*~~L(@wunD%By9m#_4hxc+AbshAu*8
z<7iCo8l`a_e7OkXQy;!joXw9fhYZr3x2ZJO!4-=1#?^0d1d?jUcUEmYMort%e()Ls
z3E7-lCCzX&Gb;*Z3x>2Sdw;_6d#^lHL3IMKSK|m)pYPt!5#D#xRwIYsgE7xI!p|FI
z9F0-BvfNctkM_ZF-Ep=0K$9j{)pG;2`2sPw0I4%e05X$+C{hHY>1?f4vrV5Mu?Ra!
zj(X=;CfD_NONik*m(k-Msi2woQ>WgOTl_X3xB_xY7fR!$<ch#lDICZWv3rL@`vTGR
z<EHO6%B>SwT7WmSYv1kW{4D$Cz;@i=;rjnk_SRulZEd)>APNXbsdRUXD4o*XozmSU
zus{R}=|(9<x;qvv-3`*+-3@23-}2pizvq0P7k|Lg3t`PU$9Tqb-_P&nru<iP7~Gue
zI-oprVUn#7`5(s{+mHWpvFSnd7=)gxL`0E@6;Sseu1_ed_R7hxo5!rblHl35ltbN5
z0(Q1c!jAE*4ugak1afsA`aZetmo`e>qN-gW@9$fz$7xo8(({j5Y62lnz+X+VF<ei9
z;uI5EXX(9b^8dr3rdc<?_v&6z*nj`qY<2rPBt%6kWpOdr;OJ#fii(&1zXS>Div_Aa
zr01ED+rC2okkuAoPwdQpEP(JGkkD!Qt|s~oTR%TP1Qg2?LtG39h4%-zZFKQ^$9}|T
zylfnFWkjr^!Tm({+J53C9I(1#*@jb4P-vVZGt-eCLT7rTmSC0Ds_oNzQuuUDLVyUB
z?7qtZMv+2p?{LvgZd#+gC)w49iVophq674A0Lp(WhCh}`mk|tfe0s6(JkI_Yl`u~@
zuIko%eV7(kWG<=rV5$A;^AdCujKdrdz)v28^;mWR4K6`@?nMfN4%$a7EUc@cd@i&?
z5fKrMsIsgPAzZ)4GKQ33y(vyl3qez^fs04pMWWIepL9*{T-9Vf0gigM%FdwiU83`(
zS^Y6^l767KW3WOVYz^t)ee*_{N^m`B4?^5rJv01st>X5DKud_jm|Gu^vCn<4;ZX^Z
zmrG;>Umx-RG`V{MxjaVqn6nLC_!J1cnpk|grCZ3tdo{ko{F}d({|xine)ZLtl2#cE
z(~c@F+{+X?fdccB9E_`l!WPecB=oS-D28HJSq#(9>tqE2SYnDj{AN#rVktG_*~jj*
zKhm9@8CF^*{Eb|}DNX$A1!)KhE$J)LQ`#m6+ahV3843FP69WD@#^5($q$KnW99R=>
zYE%^Aw6(`zOh6U27tiT<ZF%`${=XBwIXaAHK~sd3VkLIMb@wH%ASEm!G#5yD|D0RQ
zo`SwfgaQo{ZTM!1{zi)3S1|isP{}M#BbtiKMzdfaKceK?y&zzttQ=FA1kM#d4Mu#n
z$d(RXkK`V_7K5zZd&T2E*V5ay93RBAmq1sW@|hyI$OpO+`Omi-5-&O;$W{Q4GUf%R
zUbc(SGhZ|x5m+h~7)@6P!y}Q(3!>%ounz6D8$Jf=_^`lGKFFyUELG@()au72{PIQ*
zV_3}4YU_bZoA-dFAdsnQ9`@!VwG*fnI2Y-C1E^|v0J`fCMA}Qsc6@xv&BLSJU|qfP
zg1`)m)Kq9(IC`m1<L%pz$@6b)=lL0a?O5JabQzGQ6$7_4g3b<3OQ|>V;;-FTxv~N4
z9$Wd96;rR_vI5?E0zl@A73j}u;fFJ>15tAiuUC=D_x-NMOn=?S6ohh;N|F0|XQQW8
zQn-m!gXULC0Dk+76}GD8+KZO0TfczOwjx|9%?hLL7iK~5ZJwa|-CQ5nzQ~_ePnkN5
z*!cZeI3xOPd~Wb(UeCb5fJ!%`(=!-GeY=CtMzW@LQT#u&g~=7zR1@&+E>}L|5bye;
zFaA0gDs*5My5O)FAg`m(AFY-+k#l&jGp}AbW>2-{sc0HKB7K?tIeLZdM<QFR>{wW|
zXVjm3*o`#Odfhc%@_g^C0H+<k4UJka7egcXDv)Yc0W~TibU9E1_kB+7*{p>2<DVw+
zGuBc4e7c2ay;I3N@1ajqBLvcHU6-7bl#9<k(4<!O^POwgp(r$D`i$~0ViU$MdOok%
zNBX&qSXvl~ChD8#c}Aga?b`NoqS_&oF|2Y%QYV`Dc{x;X3X7r5`}JtJ#L=ZWE%B=<
zphBhB`TxwIuOuHxK;%ab>G;fdlMQ7`-^QCee++C~7Y~2f5ReY6=N-o&Rru!yawcJQ
zUEs3&5hOs@kSxqC`Es_H9h-8%o14k*{Rs){3F$W-_nmSLDFkLZ<Z&oKryO?c-YUpF
zhTVvoATFx|1(OjNj<N?r(N<PZRj5CS0&u-Jtbj@~j_7(GUgPEDVDUY6#uFGhHW8*W
zo_dn;`-TQgq4~YVo_Q`fVr_sH3Dq)JFnu5hw|aT$Ch%+}nU#C5QbV(UcR|seS959|
z<%(+2{li{-aRoam5q$(I$x*ic?A(dB=&%amE$ht^(cM54mXvgK>lyMKn+G47S<>%&
zlC3?u>FwyS<aOH+4<@CQoV=sLNwA>9LTHezmZSc~016)Ky1$@Rb#Tx)h=xLnrD+<X
zYTIvq#&XjW8Td!f0=K))(9m$*P-y&O{-Mn?VhfI47b5SXq(brG-A@w7iNpo+bCGT9
zo<s33rHJ51&kBh2(RfjVPZ?nhDdv&G_<#*N*>mkusGsDDR}sBhRa{Om<Z~Cnxkz9P
z%GvKa!#~eS^FnB*=9Zz)o@1diExdc0?J!2S;SePyM#NMtT&<urQCr4zsLIe8srEdu
zv<!OT2}jC>io>F_X`WL?J)x}m<54$boMJ|QjWn=jIwmwrZnBAKNfe>w>?*&>IuzI>
z%Dc8ro;~fwrZ8o)Xr`s$wuq)tou-C&v583?A_ZPS^xx+CXZn7bVQpN~#)LW31tB?d
zt?vB1m>aIQy1v$)sDi|ipAqHlW^yQ(P0MM|{z%pH7ZvVSXDO7ks;9u3-RH@s<)Np;
zs;4G&@d*`60z-J?x?XkBF)^KstwHHPqY-`9tk4POuP&Q7b_W-92;hiBltLMN=h000
zO}*VMGw@^eXDh4{LIeEWl0v9W+uC=sg&&+*Ntba3oJ?^t-K(H;7k*cDuQAvs5UVT_
z?)Hi~^kozG)o<nyER^V&hwk6eZ@F-2A!o(ygu|o2TH*w3gFXfZ22PVkaoUtbkmCqI
zjjYPmKK|^6M!qzO&BR?Ja=Zv4h?H!Tf(*3Ar-2xE*!U3D@z)%1EA>&i^>uX(Mb)7R
z{K78C$D&u$d&*VbdUOm>(;J+CEfRc-%sI-B`fRqUnB&7UQtvx}Pu=p?k&%jOzj7}E
zKCTowtkmn%mVOmd_ORX@;hn(E2>&^UoiFHj@U%-z_NYo3EM{X4CLQ4<Rw@K6#!`*k
zLO<Aku7Y0Pz22)K^;#qyX!d<rC|r7EQvX)#?+Y>~IJcyI;Bc6r;;b0@*~&u7mI6>W
zuK)t~KECXPp4$Rv+kl4fI-o5~z^ge-MyLjn+@tLg`y?x$oV0e2Z`#RAnCCIn9okd^
zqu}`I{(U5@M$_fjvk3A!>2s|@-+BwAii;14vC)j^0cw!X2~?yLTyLM>kdfnI!f1$e
zaJKsQFZ^{zJ8}8{#x2;a7s_G~S_>oa@Ec*bSl)SKQ;y9n)IlPF{ZDKGLwPXb<vq2)
zL^R0$7JkV@o1(ZAlK#D3#XOf*sp9PH*uVc)9V^MbUDnb459Cd5MCwBhV4Wq&NY)ID
zeYaY5J}~>@qVRU3opbKaYBHvB{Wf)Rgxp~zGq*tHO8&piEz7w^AjrcZf-p{0xCR$r
zfx<Pb7Es?9JlcGg{z)vz^g$>7Ob{z7YRDzz*Nk*FfhP1olm0uh_v@j9Z}=avwi^Jn
z;=aag5;W#EZTE4*MZE9O*pF+wn4#?m`}qEvK%j$VfJjG@+m@i)jz7E5s^C~m|4uvS
z0tR#~Y2)F0w8yz8)?82f>%r|S!vh=7es-?|joWx0;obB+|B=Y)lyjdso!Rq&gs`=o
zNvBHY0@yRN+x=qnCSP$cow8{WH4n^!4p0^qnnpK(y)?W1TJ<FMrlky>@x0oB_Wde0
zaR0QA1JkuX^#G=)XStFUe$)rY+tta$rG3f$gLpdHT=O@Z^Ti-0PHs3UOKDlz@sx*f
zecq`8vdP@ly{G#)KPNHR3@|Le9o6+d<_h<AfR7^oez!i?;Fa*kwgCRsmMid<2CAf*
zn2LdH_lL?m6|axnGp2A21%KbRhiacnFn#py02%QVmjd096p|zMsVRUTP@psR*!pcS
zHyEc;AzXsJ`X?divFERMlm}nmSfl|LtzMd`*2o-)AGn1782EA~$Bq&o3s%6%sNVDI
zPkqQ$ol&Md53;tGtN)(z!nK=Fv+0u)&ldu2I3k~u-McTu`2N(C0$*~9JODwpR~2H)
zkQn>|>gd`bZt-B5=zt=Gz@UKPMU$vK`%0Y|YLfI6WC9lX%^1^hWnHRMxkB6TGJ#)2
zW$PQ);3!8x<i{@;{J6*r;h|9p+im+C3cvpV7(Om93SOnz>Q=N+WCmvYe`Gze9mj|7
z62%#|anwrn{UrK%qyOA&Q&0?r#QA*$uGi)RrBOe3yMXgrFn<W_Muz-V*Apfw7pWf?
zyje&&Rl&%Mj!yFO^0KKw>BQS}?~47O5Kcu#T3U&s99+VWN8W{T9CN~RM{nL5(-YW`
z3SO29JmWHW)(eJ`lY8K%oqEwz2xyB$G*`vCqFY$3(KLnhb4l;r#cY=nfw<hl`6FxE
z(v2Efb<hkg(>&F0YsCn~(zAmV?IR6`Y;GN|1Bslf;U?aOjXggC`<NSz_uTDi<>5~x
zrVija#*+&$z2U<f_om7X!RJs2!!)>AK=t}%jvZiVRbVo0PWpW`uiXSV65r&u)+62;
zN&7Y)<>VHWP?lGRJ=eTO>F<!fQ!~TCe12oq_yOh++>D!9L*TqscvI@W{7dLo<akEY
zx;kB%=)7(pbWSy|0MFX0FmE_Vp9%x^U{mPig|O_%nI7Oq@$%IJc@(}jG?~RDbTuGr
zVax%ME+5<de8JzT#oi&9!E?Abg>UZbh(6I*6ztc})x4+X=4EBCSAF^(K8`p9X#iVu
z`Fg1jVCNsb%H>moOwaAsPvJ%P^3`#LG8e-<Zh~m0TBSAn^Un?M0;%jjBYTb65{<J{
zk1GH%v<VgGh-~n@5-<&J8kfQIY<cuY(sq52LyzNe%1nTfLmpN|h803~$UKg`32|gw
z51)uTt8eI1MW+Kkmw_q)rJi+iZb1LvVFK7E5dN^sto+L^6Lwu+{%ERY_?HLM&uEsV
z1Te?phH*2bn(|uQjq9T1qGa{v(a`$Atqkk`(=Wq=@aY`;bj9Ch-K~k$Jt)7gY&pSM
zs^RMH!re>(6=YHk;2B@H)E|r*qee)lH29OJtn5r|<o|%{Mq|cfL2X4}!9m}?-S_8P
zr=Qkki5S`^#yT4<0(hql5<M8w>N+3-K(&B|9-0&L<qJ)~OA#^{w8rWZhcy`nxyFk_
z&=cvZ*{i3!?}SIR9?TO-cHntGfICsk0aYFq7mSJc(cHv-^l-X|Xm>*=wyxS+D021b
zbDoj3Ko{{b#bJooR0R9{q9}#_H#S^@rlC2>iLq6&9MRmMOA>&1c(x7UR??m3CV_uX
zP;9Wlw{W~gZnO!3CQws+;N2InI8YGv(8IZ(NtS%j?@;`fY5TiBVI)A-iu1*_IxVzf
z>E@}T2oM&aGe_(imTT8IZ+y^1Th=dsqP3@AqNkz~tFyBVGOz3Rpx8}SdCvRu0&^ts
zA9`aMG!221>uWcl6dpUFO~N$;)2Jjc*)Y1!hVbjE8Kv{Epxcr}inOc)BD4@Z2Fs29
zi6OVD=+z&shn23F%TFc?QIyg{DN)rKy5;7|?%Gb8gsD3~()JpmC+=x=BE0_jgaw5E
zgoC-nNv!u+Yicf&gRV~Lg_tKi510}q)xN`z4+1#o+@q%DZz254`gxN+M+klvrf^?a
z9v5GgnGKgcg>71p!<ri;;BsDfz=zd$(23_9W9XAl<a-(5#QYxpt!3V3h;p?wxw%Es
z?yo!0452{#y5!*(`fx4`nB6xKEB34FIv=q&fDrqFnX08wuChY46@;~Eia4!QGCddn
zFz-ozp`CNrJzBhm^H!#1@T6gSoE>l>_%(no>uJ2P=k3K>_d`_fZ+G=@=0W$^%71?_
zARcorurSu&2=})c#dW6>g&uE>%ia<H{KVy%*tBmjc-<&+jN>&}YW8sF3eR(0FS{3v
z9d8k-bW}3FU(`)*&wT2AUSx{%f{kB+6qBNhkTIP$)lSDL!ji6ckPpsXKkeZUMGBU8
z;Vr%*;#tsYt*wGM`{#DFxgHJ6<IgImjEt}K#DgRv)Ard<!pF!yy-6?0rB{{Mq?^od
zm--u1&^af1<3rT|Du5s!(EnA%v}|pjJYw;jr;^%rS+7;|4kemC_eK2x=}bf7T`|q|
zM$p|r&Fuvmt^0IHM!amAWlNW_#gll0J7*~<&DtK-P)OBebW=qq>1{<u0%SUhh167=
z5T5~kN9q}!B4H|$0kyyX`pYBR@ntY)igv*-$EPMN;orFUnXX`f$?Fw+m?yaOLFk9)
zYe(^LGL*1DII>g54<GmigONPO2}{+6@lG67<t)MqU3{^CV;e7nY_z792ZMCD&z!`A
zS3`RwaD7Uvf%Zy~+^H)x{jTHI<l@pk4NfO=R`mlHxJY%ejldv5x|ZaU99sVwArB36
zam6NnWMs@i_pYSw0DHU|gz+8=_p}}@@%M+LkK#(@Jto-%c&sux%tfVZk)|zpzH{&T
zjQ7Bg@(4ZsAealZoPxyiPnh4KZCK%a{O|>#IKVLoEA?R3CB?-a@fR7CS!Jxz=|xL{
z>jj=r?%0;g-SsZF-~7>_C{fIPQuWtvQ1(1x@}i@oixMS#-@<nh9~#z{OBa&TvDXA9
z7q|eQ{g%|s%<R$~frLZn*6)MEyjfmBfedluBi%%IcG3H}jHvud>M&(@;+(TeRK9Du
zpig$zi?tuC2$>Ad>jmAt9qPGI8fd^fdv{6t$zYVMHt(@~#bA)yFv+!F7NJ+}{CN4e
zPOfeS^7W^=nH`qNJJ2PD{M-by4Lf|EQ;qQP7X)djzzSMsp#SK1m0*4y?qirvnoCTP
zj_u<2AZ7=<5QCoRo#1!s1lKQ{w#78|NCph|W{HGu$?)b(qO}q@G}|(RBVpueF!ll>
zj(^?0DxYJo<~<?}d=j`{Xy4O*^olW@LolP`rITWftZQux&4QDLVM(wAK5blPe|T_}
zH_X)su}eR6tnQ14ZQTeIo-+0=;yD_NwwCsOT09;ZiC?%$_3Er8w-@?Tr>_6Ito!F9
z`VC?JJ9Vn=AgHX|*kCe;vs*dP<oJCTY|x1Lw}VYT1M=5N|0*-$F|s$A{E^er7-V=V
zqAbHet**%YtQ}fj<ogZ-f1cM-c&vR$PCKjnTb}Z9aLZ!3>}D-xn4|=2T^{JB3~r`s
zjWp6g**C{uIPboHLQ5!lM}en{c8o-)eil7@FSUR;E2(c(rB;QHw#dsXggVAvjaB4D
z&Ez>9+?_I1PLpnp7urx*`pF`&e-f7rV4Tu6ZZoeKa}K#Pw&>*=y8+F91fdKxwky2z
z4^38;GnAlMWhgngz5u{{8;4d*ttny*2O}e+AUAgY*SY~dA&+pe;93wi9}OC7o{lKW
zZXk?$cM*sG0tg)@aLd>RZI1PG%QcMsv|53`43??`GSVh>vv*sF1M;B%JtCyZNuSuF
z&?*Y6qcC*;$q3O<o|N0AJ6gvXzb6Q7@;oMk6u{;9D7)_yv^Z5X2w=hxdh<R^j00oR
zg?sK+@n2cN=6tp{9?>n$S#dtQRHM&Z!|#;8@^A+pH;Cq}37!an5?PH8b@}_#wu}1|
zre`M?VQ`6CK%b9G#@^Y(q{N;EM0B227Ru+fKy?RWBRfaEn-3|m0gPv(7PM&UU_%Ru
zU4E~hCn?a<VzVs?V5?_nsVFg7o-kY3EVcwr!f4^^PmmkLqgxnfzipYWw9(~pf7+ch
zPm0dR%4{&o`D1VdrL485Wq;q+yXq2DwkS%=(Gm$S^G}cmFkkU&W{vcndqFKU51t}k
zb-6#Rtbu$<B{dEf$IVEvQex9PRb7z`$(2!1e!U_jnkOSlzPeV?FlRlEMt2q>g^>xB
zzv`)QnPT8l7aqh;*wz-w6ky2Kl+z?lcY2ONfSWyqQ0d>f24Am)o~Zd`zuA(+{wT{v
ztVrYZg~~!+tl+3WMGqmZp#G4@M#`=(U5)a{x;2|nI&VK$E@u_JC_dipY)%lES}T(<
zfc>qF{jWY@neYSD%bsT5(z!H36;@j2Kd8}4aE8x6VPClxZ6hFA<z|1_00R@lXFgJC
z3m-nki@|D>e;8c{Lk%OXlSzffu|~W35e;Y@`8CLrJO=N#0d$SQ(N8Zx1U8ct#{Y>S
z^YYh6Zl;e?_^6Gh0NGy(Ao;fK-mBIfGohvJrW>?AkU#tSP(8uP$MV(UR4&{JNe=J%
zpzK3sK68z@D^&*gN4W@*0_LqSvQzqXKR6rjx7NDP{9uv-8IM&8iO9j;UIUTTJ*KpM
z9+`AmKXGtykdxMenA!2$>Ol_<9nMm<197pLnp%A5EwaE`fp*R0a~61Wq6ou-nw;9&
z+E4St8ZRQe53cbc+p~3=K?3;~RQi0pygK)U<{H0$kehk`O>P#_5n0v?M$$m=fWK*N
zvI@zRP2qh7Y!(dHtxtFe@=Ye2&qydKMNW5Trrr_wWlxPV)cfz_cpvP$!>q};e>Ah;
z%Sr(C<M;31C)fDrL@h3Mr{SrNk&=*(=~M(~4~|<W+5XdOlOceO-#>9;)@q-0Khi5!
zk^?i0w+8`4;cd3eRRDJCkX1S6LBGYKFXRBHb*<KdigIlWqR*u>$=+732f*`4K8PUX
zHh)~mAjKW{#Vt3irdU<To|l0}yHah<xywR51wp8<txueQ%;dN;8sYhhtCoF+CH<sP
zNvIi@T440M&B21&GKb=CHn}LlGNY-+7PzOGx#@So>+hv+V_)3z(?gmA?)qoHJP=Wy
zxw>PMjQq0gOOF=L^DavIkvbffoLLi!CIn)hJIZU7yORsqncFQ7n%SPMw;rpgkj-@x
z5U|TeqWzrpq2vh+tao^LI3!X%>h2<WL2DNoQ|ztE`R!z9-Pv@hr}5*xq${4eqjz>(
z+O%`(CAppro?`gA?Vb3dhoOv^%ZI`yiOEtB`o9|y=8=BTeR7Y6;h90+0=$KFV^}ne
zJl%%+1Pdc4@_{>q^V|wa{x4E#$hc(cQ3d9z=hMmSIApI1I(I?}>Pm2ateOq7bTvV$
za|cIH2X!>*9`$Rl^x2aS=pr_5Jnw7IbmP~Wi0L%7?T{&hep-0sKOKU{_O)5YCO0=%
zR_$>?Nt^nq?-zHPheA+-Hw;^SjQ6+F<W}w;3?<UuWVvJm=adbCzpQZy34V|}*FKN$
zFPy@@$6cqRa2rdA31Kb;r3Qwc|Ebg1wGoaj7LMYX4UV@}uM!rHE|x*dP?8;~Z`o%Z
zr&NPk^En%~Eu@WJ)W4Yo^d$zdn#4?wWnpQih$0%7@uHV}6gB#;D%f*b1BZ3#`c@_E
zloPLg!Z<!DMt|`YMD<+R9oHA?7t>O$R?eU`G0wcKmFmGEAbZV=qYpB$es&ep>Kq3j
zLqeYaY7r{2cPC7Eqm@ZuUciyTlm+JKX1c_oVv*4-4&UulW(%jk$<iwEEJPrsOP9}l
zWfdZ=j&gDe4VRsE*J01jQIG!{1<cK-vEr+toiS?Mvuvf!99D7h?${!Y4e=WQik6dW
z>#3J;E`(@lnZHRFqb3%lOr|<{PBEl_)k|cWhaQm0L)JgKaeGNSW0lDz9@k!GJhCNm
zC`OL2bVAIdSMKvVQIsd3lowJ5w~4#F-@T<D3uUZd$1FKZ%2a;(Mp}a>&zU-t(Xzeo
zDr;Bw8wpekq@+XAH8g6}lijV8ZXw-Uy(88-8yg$IiuHmSbvH_Zg`)Gvw1DzeR(n!p
z&Y66J;7y;xOV3b3*_rx$sO~*^=p;|4PJ`$O^^cX8e-EA7>lUx;<l?S{%P=PmnK80)
zA*pW2b+_kkXs2<fdSzf$$1E!3KPU5lt<wK|h2I5Zef;MdP@w>A5IwA&%r!hJIy&vs
z0Nb>!Po7#a>8b#FtZi{SFija4Q{9_uUfIlYCmG#dUjSFLguC<Z85t}Zn>*gAq~4I1
zgvFRxAaW87`Y4}?pn4@jiUZHYm}x&_yy=dCD9_ypx>*qQLaFAf5rvO4&qKZ&<7{^g
z!LCS(_C=idS4b*L?%3s4p1on{q@y<ZdHhD0LEKc|lnrFFMo&50_UJ37&q7gaX*!9x
zGm@hgll1=Pm*T&poR>HV;F=(dVysgp6=+CHGm&&4pnOs(o{PaduDUz+5S!KNyX!0a
zR#i>HD6b|Q0YItu!FLqd;#kU)bh=$0q1T>`ipkvi6wkSAGqNTZMnxuC8I=duVS08$
z<(1LDqg$hcn1W|C7EN<chrR$tg`DB2+6@ig5F&C7vUhgSX~34tWXa~+8s7{5`t@=3
zEmYF*#*bjp@o6NO)Bwbk93As1gp~H4n*gO<H9EnVaJ-Z1NCn5c$Y{As+YNVf@BDRF
zsXE0>ndhIAQBeM%R(*3p1gna~QmAsI{51&<bbm_WvcrjI*1N|ps3nR|orBSTWj>d0
z^WgN?pDyrkUmnAGdop-<f^&sI8#gcyd7DmbICc%CORj*3ax8k$k3~$Vj=<W8J;>6x
z^ll(ey|m1glZ_2aJlIo$IFd^oR?%iGw0{#z%}&`0-9$2m9n#K8>SBa|hL(UG^`>W=
za{A{9PNB-mkYmY#@x@h%V~>Y6%493j2`gN}ven8fZ3R_lDa`k?KS-^PuY_)Tr8wSy
zuOPz+PaDD#;z5ZKTNPvAMMX^@i%3LVRCg(4|JmDq4BRZg9ew}#`9KQ7dCqAd6^ri2
zUX(?fyfN5$m6eWdmA3{6Da{gjiF}?FuFA=*CsTqRw<fIlQGu9L5}gI6JPZ=AQ6d~>
zs~jBPD>7+CYm$+O6M6U*P~n@(uRT<$IglzTDOm=cjk3rjH7oHG_}u}G^KHkC{0-fS
zDO;ZxUtSsIy?*^V`xZZZagha_*=fr;_%$@X+J6jvQW#PA21Cg}p~0OXn+fA^>-GZg
zRBSA~SV6a5&_O^4P6}Q@K_M0X`X3w0z!n^>&Q+iWGyl!(rfnb#hoFX!=$-UlU|&@o
zheD-O_3OC&7%@pl<&Vjx{!V`b2KdKS<(K{A;XU`ZnSm-lM!_Ywwef2{@<qgiGYiPb
zprmtu|Gv81X0FMHm|cvDipZ&>JY~)Eju<WRyf|xJ-Ko9iw0+T3rMt)3plVc5NJx$+
ze%ixz+|I(f+2`%aW+=5qPBfKEe(aHd3dIBs4pbr_r`YQtz`;mo;q`loq(T(@8@s8k
zQ#I*0)@aF)h9*v#veE{`U1chqt{pP7aTaJK`3YOvbc)~)rWn>eV#F{Va&fK{&d$eb
ziGR0H$MUb7mP5U7HtVOpd%~M4?zRV@v&2bE)Z~tEZ>@h8xk~ESxMH{IZ*X@Rd5*hb
zfTcwjvo(vx&bxI8sC|X1dqmlo7Yp;juQB~ug}fTv9A&rD)}&=`NWaS7oPL-i#?Qg8
zu+6Awhn(dP_*++Eh*VYtPVK}3G2c}112Beas=L%*qoyZ0NVdj~8*B=E?aCWUeGHqy
z4@?nK$=vEd?KOz3`UeAaT^ROVIq7^;T*J5p!<eO8+W4gYe|7l(>#iM8gnJylkAvpC
zGYKToUzJ>JS023N8wihM6lFdle0t0I95rGd*J?Ty)6hsk7u^<`&cLBvxtljPwUcV1
zw2ex4MpkLhqJnxgoAYZrmyF>|xl@pcn+i=ARhB87#i2dNsy?gzdt{DKUr_XeOI@xz
ztCMV2Tc!2dn%fT^ay8?e<C<K%CF5oLI6K0xL=ajAkpHv&|J!bdjRr?dt&+MXV8*d1
zeIT|p#zx+qK*Q3WOqQ;kt}tW!3-@uKKN<ST6LD$9JS1a_9Y!22cB!9EHAedb3mV_>
zksmK#hfUMx-kq3a7jl}8{%{E`OW?9hgL?=ge(Fk|cDQs)B=17aY1U9=8fou;n(ZJ!
z(P$lGw&o>vx;IT9@<th&$koYE`a+j%kNYm3H@QNu*y&bIJL<JkdqJqvgq3d0Y8$72
z6?x9TSO771h%=&PigI$qKw?T785`>Y!BuIgsc-McTfI~zfq0Xf)<pi`qs7tGmtFF^
zzu7N-TOIHJmY<LO<-BkIDX>30WtYzZ-8+cfCnG^jVX$b+gl74xJ>#Jw9XT_zGUwpK
z+!e&@v97en^WkOikg=mc!jF?}8|0XN;S?aDA~{UxWW;Ib(%kjv$<sd9_ey-c%p0#}
z;_zjSr4}}0Ik#Mks1DX9y9NZgK>3m=4WIr7l7*2@1o3jq;!yd!s&htW{wEDqN1qSZ
z%C!R%npX$Yb0>HTicT^l%KmZ8A9lK7N5dl0Sh|f=vUw2h3{)H+Byw@YA52xNFS4`Q
zzaf8_ibk7YTB)gMT@K=7UyID8ptH&Hz3!C=*D90|O-f9;>F#$LOHa8hDPUrt6NP2q
z&8D4V=$utzUim3OAM&z&6#ld&(d)cjcWA9QB?)hKAaz4{93oQWb@Qg%5M*f_PFfV2
zEgVJDC>kCtww8d-KZ9$V&HZ3}6gWD2XEy?>hm`XFV8Z@>9rzo_=eKR@4yoZ2ms$as
zC2!a^i&<V<n*sc}EXv9f3zF;Quw;4l>KN(D*~Ju}<&p|UG^<*av!asZvf6w7BCj^E
z-Ku$m{Z=)tZ!W95x!6o>bAD-TbXMGpoVs^m-Gq%76+eYcv}M%R-<cznF$yo`Ob8Ov
zKbO5k=*Gl33UB<o-|wFfh&LlfV~%XXsdc1?6OmU|y+W5omyvCop18Dl%=U;S;FPcV
zn5So*chF!{8f5ffG+@BP-!Lr7$PB7$0807c^e2^5mVRzUfFw2|Fu{6e9^t463Bi!4
z6q8<o$)=t$OJX~@7`fPd=$>wG6KJ^h{4<Sza6uaR7W?4)W#*kw-XnY*Hb@0N^#pBm
zP+zo3@_Uhz($WZF_#Rj=W+Hqur3QAQ#)InOV)<$7Gv<c$FR%W;yw_f&1AF)>h1ILL
zJ8iX~2&JK;8@7IJ>)hAd8&mDDwz<LqgBIG$ZW9I;NF?7u@lEdmU?0dJ+VyRI=k1OX
zDqRa?4CC?1#isuGCecs1Sq~TNs||tjs=~`I+5E_VP!TRwvi?+QC(8vg%KGIio6P*V
zM_+g#$XZz0>0*dIDjiQERfNYv^leK(-HWWGWv!e_szZS{lGtU3+zv%JEcf~(q}6VO
z^I8YO!S(e~S}PUwt<=-1>sD*$+{ja{k!NaBBI8nQh|9AbK3);ALamZ7r18>yft>JN
zxSuG&Hal;!ROIQ^j}(C_DOB0+xKboa3C~U9i=_;z?N)cahPAmA!u8j=zZ(kvamCqt
z5xFnM?4{?uRc|x)3Y+uaLALFo<oY!(Y!}D{7v0t)4FYwC`$W=_vwd}okJW1qNz6io
zwwN!*=)L$;*xJLcml^3$W$2-|&H{uEx85~;xkp?hEf$%VD6|+)H<l_>AWCr#&}n8(
zh{6r?nlw+w%n;vPZfVuDICRd++!FZDSzFW6(uDSa+SwI=PUc8>oy_Wa?OKe7toG=C
z0(yU|mTrPS2=Xik6ckU$a-ITtM5|V357GSysFW?-RRS;pF?@#+VPb%MuFQ)OXnIg0
z{voIrXy>L+^LIWzLISZoOEq_-K&(kH0#lqS)rv+Ys~;(D^r`c4Oai>dlAug9dw1$u
z$~!@!vKh_ILq|p%>ld)&CYU5A1DK&*r)8j~CsI8RE*XEOOYg&@o`Gv|<vA*&?y%3Z
zbv{PZtu!MKzrk8wW+ldh->LvTbu~ZBwVw~LolN#z`GsU?s!<RFC-6G)8%ZLocNw3h
zTMxeT7VFEED2&b&Qm|;&7JA;qLn{lscH&=C{>{?P?+*8}lYq&0!bUM_S~G@)g|enn
zM5CM-=jz<5Jt}fqM;URruxjy%I^Ys9N3CKS-xHo98;jmGF9VoC68-4Oc57=ZbRWc^
zLv_SaV|_Q^en&Y0f6bphzU?8rW@9_kUaFh62f;l;%JFs6`v+gA$}QsHV7;A78?7#~
zGm|+*j)P&p%ZU+sp1-4EVyf(FE}nqfY`YM8M_56@*<LnFhDH-_{ASfOyZE%m9e#1K
z!Ny%9N5ecnhlG?h)dV4m?rW}*Z1Z4$WDK+Q+F%k>S11$$yHLg>=g-rnl;HXy$TsV4
zLb#t{;RCnkrO4YsmP4kwlh3uzdOk0>mauQif|BJu6`e-P5!Y(C5^vYt2V<it^UVZn
zYTU*||06Q}yMCFG&;t~lS4LgY*7;E}f3>;%^_@TF@%CIhw+wGQ;Q-ixq2b}y9q0SZ
z5wJmjp4($n53O<HOp5$R-~m(%urGX@i+_$Rsn~u^+Lmlz+b^odAbh1bso;>tz_B@&
zpY%!hE|xkdlhBK5{wH$#Dz{Aq94SdQDyujsIWcHlT;Lz48;Vu9rBl3b#WIhW<o_{}
zttv`3x)TB0+Lc>@B6>NAzx(Sf^@ml<nnf=m*=^}wQDl<zbMp*uS%nHd($H1Gx9uiK
zDF4;h{l~TC<ZrCvCd-}JlWAYWVKH8x3n%_y9M128`EAL;1=9%f?>Fi1KN(<#we@gz
zp|{vuGdD9suZ7~OJt;3KQD}f_z;~ZK^%h%2FzY2Wdh<AQEjl0d^z%AS$j?tWef`d7
zCb=v;MGwET=xCz^ByueZ&5T}R#yE`a#4gX|lCy8>8?o)gjvbS5YHHg1z2K#yZT>rL
ze4P&V(W6I)Kyg1-KC+Da%l-PN+xOlu=8tf!x!`~r5;uA(2;1qd8#|VB)`D(|AzCD0
zwRQE5X@cS`d9AhXOxR2kCoQp>C5?eb8DAP6!S8Rr`6YpO+?=Z>e&{nCjxGD_Lh1-T
z#eAW+FgULcxFNw${cm^?vyRDSzrG&FA2Fc*XV+xZGoehFbkVl@*m=7)tZTPCO!C`8
zQJ>4W_PDrWlrHerC?mps%wh0P%WzApo+vz9&<_#6I9iicywEVbI<3P%Ce#kx&Pd>;
zfAb~;Na%$dmms%y<RaX;L8O{Oay7?IDEYl{eu2xzQ1xL48B_KReJ9xIq!U;-YE7}M
zq;E#bF^<c{Bt*WJjf~}TbThuG|K{p2vZ>;PvMA-ewKUQ+u~=vm3ABt%#S;#jqSxC@
zagooNHavSSucZ}AGo?t)rATy3k@;MpzRC?FdTAAo4Qbie<?g5Ax6Ar7I*P(EeQ`SB
zR10!qCH>erM>}qpM%r`Hcm)c<kVp=Xtk*F_ku!87drxv2GUg1Jbkn+bbdN&I{Kz7g
zPqNMs6O{;08orlih|laoUU~GXLub-Plpxbu+GN&YqLIUj6lw95ITi9xPxQAjW3_Xx
zDz7F~mEGhXU|viq;jzo~^@NK_@_WQ6LsO38W~i@RtYas;>>-KKiFvbO51=Hrq&DnY
z*~6uWewz&c?`rv&0F1j`h4N_fzHJ=TqG3GIM}7dCzxmxpvfLBp!)!^=U!RIh8t>vY
zZ90F+IZV~hqSKv(oe33k+&I;XxeVj&yM`3;(h?Ex6tN^$Ld#?KIXV*<4UBcuKb7Q1
z6tQcYkCK(=7furhV!&z!Br?@G#xAcINjf>zVUX=bzIVv%xJ2PHTo5*q4B{hJRz3lj
zohFJZEVix9I5$*PXX2Z0KMJe>3n>?uHe!~bLO7pT92WrbWrC!&_t07GnpDiN_Fx>c
z1U8#kfZ+PvzZL~>#&w^H*zzWi42`Je9r%O1NM6o1IM-qDvPmrTWNX+4ODL<*O^!h7
z8!DPO+hp1XxDl!C%BZ*$6<!TfXldsPPcyt34BUL0si^w#wAQD@kvE#|y=6?|$;MX8
zvY^JwDyrjE&WEbV>GtEP??PSFY%7?m7T(oJu(lNQe%~$zRtZ2aBTt8BF_$yXcT#4{
z^*Hrtc^|%}bw^r$&#vTIG7E(U<7jTXwQF$IycWZ)b$0gf1$-FMk1$1tk`|ZsBFpn(
zzCmg6(~QmWZHn>DrQ_`;4CHeoxu%zhW#`K&eAh%tyjy}q$|?Q<mhKmbkRHCjUa~*E
zQYXvLll^y{w|`XdjoE_VitWP;QRElrb0CYIJy?ZqBza5Q9-TPM>Vax8boRytZ)`K^
zXrQR=#uTn9=I`oIuJ9<lt}W?6o8pcA-HoiIfVakT@s&U!4Wk*Tl|m|9S8J<@7{o`G
zSm)F&s`W=p&B;lZwnjCzs>+y{nc0XoZp@b@!<CNUmn+1+r$2Ab#p+N{dO?@+ndJ7i
zg3O2v1stnpfNLdBt-@yaQ;A6XWM?|&q8HR#8m*jursEsV7T&MnTG43syl#@ns)ce~
zw&mX|mi_vbFVq1)`(8Jva!+B60IE|(Wb*9kVCuUvf6j1JnXVs<y!~A!v^@lTDu<L<
zX3TH!zes!ao|<yBs*j?Z9*dJ>M_)o#UYYjbbcI0Q)>eN$h;ZI%_h+>p4IQn<Y*$~=
z8{AfcwP+?&juFP~+PW4E_335k>eS#6APVfNqlipWrG66wpO)&FiL3aTcPY0p0-Ow_
zSr0NyB*x~~O*$q1XX?klk5c@F7`DOK%x@VcJJ@Fsd$fv{9Yq@tQsBJvw|+<-B?~>L
zm-x$mZ;OlmK@A%eP5$iV<<fOU${*(f?8(|Zg#w*;Bs!+P*ivU2E31vp<OFdfGE#Vk
zkmtd^pCY#B#puX=vgz40!7<t2!k1F5CBq=YYBbZ;R8{^)<Hg!fi5`nEJnJf@`}Nz*
z+<dTe)pan{0Spqofzo$<msSj`^RTxs$(lO^^=?bDM-Q)1KXgtMo5&%URf$iTQro%5
zpJ|}hneS?o*=YhZ5j(}rMyfjALBe)Ar=>R_bj-gNjkYqIbLU2wYn_M}le6D$aug@@
z8pp25a_2$aTJ<_RJ~q{*JNaUmG<1RyROITV*Dzm-_n+KX?KAa?fjw(Fo=I+e8Y{ie
zQGv|^;IyOT;u7?E>KPar$E>!075`|T(tr4;XW`FZ4x}J1udN|{>c6=l*lewrKc5aN
zl5NTW{N6`%N>2m-yhpl)KM*R=SkIY!c{M}hvD;K|7L>!|QyK$bD(KhumC~u^%xrB{
z9;-J(Tb8@<J#JG49Y~zgb#Mx?H#-%xcgykpdLxmAkHOAN#@EvJ-H(4{fpZ|Qo#SXI
zm!d{5K2P(63F2`pY7;wpcUc;51yLTUbGt3UGrH^RRnWwF{*a2s+xaE7oK3-H0|qi1
ze!<9!gMV0LxP+{P!WwAV5Ji(U8K+1fZF;cuB@zQJQG}o0W1i6PO<gZ!u<S3@{N(+=
z7lVmU;fOs#3x2%k430JU>+$Me$7;n7jpuYs5rPRW)aVW+Zs{H8bT2mKLkPH3Ja|*m
z($hC~z6F`IFXPp%b8}obS=+fQma*6`a43?mTSP1?6~5rT>MkK486u|0B^o+;KlCb1
zzaO}8!J_tYJs^5-GGn-R?3>hS#uJ^=IIY~Mp;CCdccr?IX$Bp?wNl+(FWjvkKkBxQ
zTy1l!ONn7qDzQIG%UJx7X0)>IVZ(cDfdc|K?qk(%_ogcQUpM`)G{S#Ba}N+rVP)+9
z-BbJPC)n(8n`bfI-<VCrns1*RtUetgaDmP&+E=%1IBHCtd)Vsomf7W|t)j$E2QHBh
ztVaddYx=z@W$9#)9yMCz@@RyWSJfs_zB&tF<54Vmye1ih!62JlGcfrzIL2L)oU2gI
zoEB9~ctggHDsx@2{t`Evw`kljiqZ)mxr`cX<E<JbNH?&|=k^8j1*pu^@4E%&^tRuP
z|60cX`4xU{7*5`H%!S`4*M9rG!9PDXfW6Z3RGie98p%~Yvrp-!v5Hu)ubb+-F=D>x
zsgBINwQ@djZh2H%{?KuPtFSH2#_dEMQhSKXrxe=15bwYq->@xWrVLR74=2QW@T79<
zW~4`;#Cb&!>Lo+b#(I%_H^t<{o7qjEn9{uPY?+P`m+C%12@C*Af^56K?*I4pMXpCR
zkIk$vl)&SCl}Y9O1t~W1#lt!1ZTYZ%B0l-wm>G^uV6D1#u<lpHfXY8sMABI?3!yzx
zQuKo~au;*<<_snb8<pf}D_5Oqn(WBs-teM1DiW_KXIy8B_v9E)X<ZECkW=i6w>>V1
zptsRI(_}kYx7p61<*{iW@r{pCS4XG9nf&Qv!JMc5u62Z<x?Ma-Ll~-^mAWrXzfQkK
zy!e`4VOS{i_8l`}TXQC3#O4fMy7Qj#jLvRRL>D3lF-q6F3Bn&t+5_JYiRxD*OIEYJ
zI*tQd?<K|Tf`YNp``-1L0SGleHLv!Hgaa{6AZg&5++xG^03-?|y$2Cn1WYZ7e_qXg
zYb4zNmF*LZj{bfuPTrJ{HuV1gBRC?H1;)ib=QSa147!Pznt6A{XRZml?`h9yIPW;U
z132(4<w@5?C<6LEH@&u;6xJ9>%o|#;)dCVp933_v8|B=|xHjn)+jcmI1Er*(VCngd
zfHyX0T1&4tzgUHJe$2gmrZZ@HU}(}czc>gAb<@E&v=UEHV#*Q)WA`r-B@1HnYQG=u
zhc!GK4t0@J@$bqsHtf70s#c$MzuddeGL$^$cG^_>zRvNO2KD}oH}4BK|5o?qma%v*
z9uxfBbzK=gBS%JX^B3}sW)m?tkU7+coqD((DY$jF7w<tOVM~!NF?(#`RFQK=D1R4n
zn3UBap488%k#<{S@Ao>Ufl3;FEJaD19?V(4v_<Gi<WL0dlT5Dbdur9o;-Vk&pjoYZ
z{u9gb3jkKFjX4>McDtC=1EZ=2WBs}QeMH$Z=n+V$y=nU#_v%(*eBJY6FwB#jfnk#~
zQ2>@o;2R$VRYo5>iPo(dg{=e7?Tq@9dG4*k&N-I4Mlv!ovHc#aEYOQ_9e3$j$k|N&
z=98)4Q_I#Lf#KydSVLBUzij>gxZVTqaMvNDi(FcaI2S+Cq08DhJT6}hsn^!@9DL^S
zg{<-;!ZCP*s<cGC2$A45$ni~M4P`T4@Vb{CIdL3MCl?xy!_YAD3IY*J+zqN)QZf{c
zou(WaH3NjSqYLnRNKbdc;PwrAi=>qK#ZW`*<vGOQ4Q+4XXcFzeZ>xrm1Z;nN8&jw}
zKQKKoKn%=foOM4|v?WFuU>Y_hp|4q4H%rbHH8f~xXg2YE;2vYcc*J_``w(UAB}tyu
zg3f>aQPLiAk$h3j!x(;*!M8Zhw|DEi?uTuiV+~q3EYC7ErPD6L8t4X(UeodXQX8aL
zI2t(G4gdHhC0fs*TB-hsEw?^-(p${^*C!V<?~{zXq`9THTgkZaTNK{IfsIKnv)NP?
zPR>1QG>i8zXGZ5via52OYk*j(t83$2R?h_4kbDJ{)ubDTl&eG!0F2x=9b{bb>44t1
ztz(&;G0~D|J&t-W_s2ACMx(Aax3+rC>RQWxa;zm{M)_ITlX+Md?#9D%6MMtKxm~%3
ze?zKEE(0my5GHkH<u`i1{p#xKAHDX_#KpzIb-c{<L-~(5$iIidercHLGG%1(KcD3R
zGC11Gy6;;I9A&CDXSD~eWd#0$_%d-AIQ}Qavo<`Nu9Y@3Pm(+b4ob?(%d;W1<Qi?U
zHlsP^8pqR<lR5o0ptAF*KkT|F(Qn0Ni1h28zVd=7rLcLmF=^7*Bx^FPFziWcT9l!(
zpLNLY4!zw%#H186GD`29T{yJ;>`V)DcD_hDQ4gt6t_PjXpzMXAR$^~&p$9+H!J$h-
zyKU$bGR8UsY$(~?Y2~=i!u4G!IuBb+zT$2t-emWzwVT8#0)v}~-;hat>TM0?jg3Uj
zBj|$As2_a#{B%N$q|<j~&HYCcXM1~2g86wLK}UlMF%isyfy3bN2Bm_cB9}I$y!ZMW
zyHpmQC|1a&V|k=RGIVTrx*<?9mOc>tUvJ*rXC$XpS5Iu3s%}-#t}j2G&IY8<EXf&%
zex4+ZM3=PeJ;<K>qH~SWz32h3Z!T#aW=U&?t|zBw^JShtWQv>SK;F~+_!(e3M%){4
zGk<{s^goi@y5{{u$lz5W^S>U#W;lEQkZ3((VwBP68pj^(1ghPk1V)ErnwqT}jsfFa
z@-n>w2h{$ndN0#LSt!`pRBNWJrmN(Gs8tHIvcoDZCsKuxo{A<=bbOd%(Z4txKW4>1
zd?M6-aL}~W-$u2uG)DH;vc{A{zU{P&jA`>%g_WihbCp9KzymXzfqU;(M(>^)CH??h
z3_4gRF5Sq7xn88nO-pI|J1L<XB5eWcDwA!xz0m<c^xf_0>p&G2Zf6+fO1Ima?0dFj
zuM?1qns@spSjVk!ImyY#Is0_n)?O;kyM!3=7#1dP{+$Yc5gWXTBIZF~yVzU}8z;=b
z^2X-rtoz<`b_)NuBo}~6HZf|>sr7V+c=1z4JihB3<P5O@Qzc)6;=lkPYfJN40dRdT
zyE9-AF+?SG(yY+hJ$ZLJ1x&d}C2=aNA|7z6IB)cQpe6*F(*g?)@QumHg|oMWj(Y4p
zulNxXy>2heKV{J)=05*M?LkOvgIgp1uS@Y#58!{f^=4_E|1bF8zUpQ3&MrJ!TM-c@
zr4j0;Qbp^UohKChrYe$V@G+%Y6&QlPF%LM&H7m!uzy?q*h?lqs%B@F|H}^lhTeckn
z1E_96ct9cD%)9#`3ugq^I-P1TCvZF=MxI(92D8D~-sSw&@D(Dy;Dg2a&y~Aelr!Y6
zkFhqi*?C-)kGDH<$Utaz?iNQajkD8(VHsJgE$3U!Le6<xs8L6rtoTN$?oM`w8WYeo
z+0f1bG(Nc~ww=&jN_y<bTy!Z6vTcBP<S0rC*ACpTsxC^S-#I@vee3hz`f%=gebD}>
zP{?~!1r1G#@2H0*up|pHbZ0!N=mDnqJc2iP8_~G`yHaWlL}Zsu{KWC+j`+VjjC%7J
z9gNhzPu})%A4%2q(EC0k6MaG5zRF5rekvi*M9dHgz}IeY{3D66u^9wOOwe^waS4eb
zAO8nXP@yu>?AWqDW<)zpguA5iw((fP8#~+ah9@k7lej6X*&Z{KXk2jIh=AWjb^OBL
zcP^P<;$O*av~$)bW056{dnTkx-9hLjZu7d675sqUJJ>C?b%H66W8cQ89er@_yx*n^
zCqE$iX@?Yij+)tBcjDGc!VJt9Oeq*6;EM$;_j@j6d630*bri>AwmdhOP!JwLrKtR~
zM9>d8;{DNTCr~}1uZxkFMCORAWS@b|gBMj=l`g#UIP43lGPU!cXC@jUlOR--PFPrY
z=8$98^6KECX3IT1OQ$G_*+Ar)1`^zVKb&X;sN8O;)}(RgzK@g_!Tx@7#rpnmnb#oT
z$}t$_niDsE`=!^d2Xho5r$*m$^BT?^e2sfO$9RO5>g9BV+n3)HsJ<=1UDhqJF!tC*
zObrbU9mr4EFTN#W^G~7)OCaa2eZ|&Tv03$ZQuF=p@v;$t`!K2|?F~kSTb-BJ7Yv~?
z4M|h5{6joeVva^jep!szFIwL`IJw^kbs}FpI>1u~xG~GQdhNC_qC%}7ba|Ke8kOxK
zfRC@?-y^#V)`6~acps`z0Nu=qDvW;<&QFEN9##8l2?@_B+o$m6ZP(m&QrZit$iNg=
z(u|BI6CDayl1)k7xJXg!P!6wJpKV0>h0+G+Lf-_7(71BZzR_J*fmiK1)CJMV2dmQI
zu{k?DLr>{I!L#lKw|{*E7L?KPQW1Q_xMe`MznC1ackcO2sj6l7Y1(Zo-;Ma56nd|1
zG5cJCF)jL(>t(7i^r5lQ(ay8_GoJFuuCe%QD$bYv#+ZR|c2*xc1A!qR7W6R$R8PS8
z!j=g%Lx)?DHMBoJKflCrL&2fTZ8ssynog06EB?Xzex5UgmO4MYlGFk){H^VI7?rXv
z9wi1QByMzZ-k3jg&gcIccz0QN7kP7amLSM*c>`(+YQPy#!F9g&Y#{80oDpb$dH_48
zdwUqid@(@9vKkqQaWTEdi{)^OnR4!1pYa(hCKc5+Y*Dq?oBtAcxW=8n&4N?9_AF!D
z?Ys{v9Ol^9goIIA&PqgHc;_arArNI@JyB++D5cv21D6T1zDz)1>lFD0gUZ;&%$_IJ
zJ#AHr^XYv$%1sZ^&Fw_LC*|DrDq9%M9mq}DWPUe_CZy`R@zKu9?Z|!qDCJJei|=3p
zx)Q6ooC#<P6i-C&XUmOGo_>8?^)m%>I>CH>kOWXFKkmaURB~}Y<z1f=1oZCJ9`zac
z-c#L@ufh9XW)d=SKR8m*IwUPEZ4Zd2Er~4f0LJyr(`Mgul3-)Upaw*YKWYd2ZO{hS
zboqgeJTNw8Ga9?kID!6M@3LVc9F~X5l!GtZ^ZC-7dw67}SxN`~Q~#3&Wm7Dti66NT
zPXMkw_BB()qBM!$qq$AGN8$I<{8u6*RP5UvV#>X*0ELi|+wRERI?~oVG>D&`1?qX@
zwzbMUSj9sacE5Lk)MFxtA0Y|!(|QYU=Lo9?o9RV*Qd>iE%`n+oY!8~GJ=E2|)FJ%G
zcKxS?@sb9HJHBmCboC6sW*tZSslNe{@mshMwR-N&4>*Bvk5XaW=V8_>tfm|>TKa)k
z$9tFT!<@k$bc<1&#1q~x+)n@&BHXx8#1TVi=i<yBc1PX1vRNhgeJU!wr493B|7*8F
zit_PTJY;20U3x`IjUJxbqr%nJA5O*z77h9nXN(Z-!OxSEKd>qsg07}N84t_%magxv
z`|l7`M8%(>mAys221wsAj4O&RtQ2FoTr|=)e{|ZfYgGqpOJUNUQJ%F>>0}{I_O7><
zmRPr6J@h`B4B2|U(YLH29$qfB*}1tJ$>bf~6=LGv)2Xohf(+sc>aS+@Hfa~<9=g~4
zsvHk72uLP*DgDg0_EXkTMuPRwqH$DvmB|uz=sa3R8$9L5w;srYucr%_$iVayQY%T`
zOtpha&qlUlW*7LeN3olroe$1t?#}LRQ}|yZ!4&ZH{Q5?54$ex3`55~B4`J@ZTP(b*
z@CVg(PNCaZr*7L<9m6wo51WaWT7{;UI53uY0`7Q!$ewRE3*hYSfjrsJwD=D%?=%6T
zg*gSw@TdFJgZI~G?MiyH@TG4yPV;H-`nz~puczeX<n)*_&LU319joJIy%e%@4`cJ*
z=inW93b%j;t;9let7J1iMoN)HxV<L}TL?5{XXZj!k)?P}cMg6{9Q_yUbN(DI^v+`D
zp!>9A0?ZEhVx?EHx1dm1t5HgSC6A|xU(di|TXn69S<k>=Q%7TOM@q391~0;3C5g4u
zkAnHc4v=g)O=e)6{=aJe8PNx@M)V7ozWp<*EEc3-ZA65%rEIaO3|Q%o8<wx5A};NV
zA|24GR<4+?R2ygBh@yM+cHM8LP;5d{UbLmC;d}Fm`w^Ae`-CnwwX3@7rNRjYtNeF7
zPxl6B>Ly-K-G4`eKiHU0Oh!PMyeJoTb1_z%+{@1&kM`pL78Uap<8B5>*HUP{KMsPJ
z>Zwf<?fhO4>)3ZvXs{zL<lAxZyi2DQ1XwWEhL6n3qKjZ*soiCxlwSD4m`sq+sno_Z
zIWjx}mF8gAz#IHOjJ<VKm0R2Pt+*5rB$ZG)l@94H>FzG+?rtQcM7og_>FzG+knZm8
z5d7xa_xo(UpKtH)d&lsPO9l*BYhBlz=RD8j_#KP~j09vKcF%rZpRNOzF$SE?vHQ!R
zD0(H<qZKU6M!I?abVQ{JUaV>(x(-GQbg;rVS7KwPN&|jWC&=NXqLxSjRpQdM3jh*%
zYCZcx4Kp|o2RBa0Ae^pEM$>S_FMbw!33oVTR@_L2!bz)ICTP{DRgCde;3uL$$(8pO
zwgf<D$f{Obrf8+C-s~1n-tluef59nQTyhV)#9w`a9wfVbfe@&PPRH$cwGhOAj4jwq
zcWeQzr(f_|Be@Vfm9FRwcgaC^+Qigy=HqyjN#$SsI)r<<u~p^Ry*aZ%0-vLNKkxA2
zjd!U|!4(aZchJ4{iU5Tr!zgVim&a|%WkS`+B-akBA4<>i!rwz0++yVBc;_B6gv{FJ
zZV4)g8#mm;j(Kb{+@6q9z9mHEO(+q%I_%cTee&oKrK9W0a`yI_N03dL@T;vuK>W!1
z#id?j{iQ#ZYxbszbmtLd2}G`cZvf;rHs_=CbgHhfLzpHb6y;ywli|$yICz15*S+@G
z{k|1vk*~oh$eHhwJ`6zif3I@s0+5@OBkabmfoHJ_ZB(*UAN=(-;#UpfSww4&I-cRv
zi0u0y=my0P2vJ%dI36w(?zV+Jq`4mm%WF)Y?tVshg3oR*LbvM_ow#po_(boG{9I7i
zkQkG}zbCNcLykT<fnLa6Cga{?kN{=_&ztPK=!%M>2OdE$c1zDx5}zi52azSsWEahp
zUp8j+N7+ZKvnn(w)$KZ!%$ix8W@gk#Wt7QMlSe*B$4(|mmQ#a;mz!*OY%Hs@PK6ZH
z$IK8;M3?okF8*8?2O7v=uPnO*ZJn~z=>uT8s2^KVrN&W01^YLBc$-oygu}X|Ge1*T
z$%Ni=5M|kNKJjXCVsOIZ<^j11B$ZeI%W?$->`YqlB?oU#I>#a|Gx}#aFJo83b86F2
zQ!@p+B9zk-A87$l+D}k0q&eX6E5i*#`Bf=TBCp$#c?yKOj#t~=u+swgQM8DTlJB6w
zX8cY#t9JoYXAxdMGcn)=_FT5J<A6c(B%XJ=*nOQ6+7V2Fw7%~6?r6ig19%wKg{M>9
zDn~91Z5s0Ug4<num>yRkuR%wu2Xv&q%?A?_zzz+0UX<?_!N7c>=~yE>Vrwy4%EZ6>
zDwPN#c7gKXhO?r(Z)`llLfQja0{@83cZx-;BVyNxHH?_fGHAdCH>_o6l2WN)_@HxG
zigyg5+m^Vh5m;vm;RA=|cpIz)520LHjM`OKoI^h8C)~o;8_X7~i$oGsyxORA<>lR&
zO-GOK68K*VUO++a4lfrm=cEawGrX%HR4s67pNc*9&6Jqoz7p=RP!8&}@ewUEKDEyo
zGKNKc`r!;?F<Wp^-s7{^?;Fz_QYQ%A<!xkdp}B5DuH_MMEdDhFcYqRFL|b9QhmRls
z*i>++=3%=~F;@u*l4aS-BSv!;^C<#+_anakHyWSxK#(*XiptD~woNQS&i{9ZANmy^
zPvHj#vQ`bp@0xcpIY6`2n(84Hn}ugNQ(p~!Qpg(;>m8I5gtT_*N)P4|nNwXLAO#UM
zLko|XC15=G9>Ayru;IP{Vvtd`^TpHLg>cB6xFnXczFnw=QAgi}?VSz2uMh-MpBZfu
ztJ#A1gNl{FiF8RMRN3tqu*?R~xVuAmXDRhZb>RXwci@89mmxU#D1^VDyr`ZZxzf_F
z-Mj2;!LL{+l(`>`YsxBKJW^%IFtWq*wPHnS7n-YKOtRa!=H|9@94Tk}m9+Tt9S2hT
z8>h3a5i&NzkjwTU{e5zRD&{sLR>jMAXJ?lWq;`%oj6xAsG|-_qe(I5OQNLCkGDhCD
zQ15^?_ldnlWw;MvM=C}NUIYhsz-*k+IYw4UUgZTIpa_#!?1&OiTABso>2#6d&QP!V
zfqIDyx#P&%iW&Wd1bY>VN4rNuqqp@-7+b8Z7Z?~-agyw_n~sz#f2OGTSP~8&`VZBp
zmM)S^2?ry%X_&7XK87)>xm@ak_tB@a@ojl*)v%?SCgasVkjK_Fp|Lglqo3OlBNc2}
zb@x|Ej8TE=zgsl_^|AWg3+U`mc#Q5~ljI%P2mAXm7+xrrx$Up64A4Nk{e{b)q?DVV
zFLx8czn$0`%zgh7bCB6YUN3yC^#i*X$yOY2>&K?h3V(PANa&Sn%(W5=u4ef+1K+<W
zk)M8r&E~6&w)p5uhbz~e@EL?7GS!-(oiK@8^k@b9x9R1q3ab%~zJwQNMRAzv>wWd@
z2K_TOCQZy82TNZT8^ZeeI<jDWuEs9T4q#H6CQ4v2NgyD9%g=Z4BJ}3v00{{PJV(>$
zXj_nnROOcbZ%_t?9~Yt@#XGd1iHP-8-{4t>-(Pl%ZFQzh5NDXhkt?Z;g=p%?gJQyi
zcd4*?L2SwtY?K(>`V7Fo@OfP>k*-|K|LTQQDO`{tzRMaa*YOcZI-dwHKh_gVvGKn5
z2{}(NO3h1qA@KgG%?30nK-*DyGYS_^iKoj!*3q#F!$Z$3qx_&An!ohsn^0Dqwr8zF
zvN8EW!t|Qxd$@p04BE4vxw!bBhGzalhPJOp2`Rv-U|f};*Rojp>L=me>Lk4IJug<$
z*6Cy1hi{*3O&%+GS4}#U-Ev)XdFMPlm<xtkWJ9mPm*^OU`w)2uav;mjPy_;z#)Sya
zEDrD5??^SW+!$tVtKl-7;nKpUac{hb!cb52JC82(fLIy+!_e_Hz3fW>RO?Fr)iU93
zxVPUGw=0ph+IRA&zbyS0{)}V!G&mp#JC$sY5hoB4TaUWd*FeRU2rW3rEdzJr@0Qa4
znxqUnz@(nxz>{W+@Ex1OU%$$3VyNpkcXxF?fb;o!4K*3Pdd0j?w677nH!#|^c5{L|
z;@UM7wk;tf6y}NIHfy2$)u2A9^AH&zaH`OPppB-ij-*OoQoGZSh9N+H@&q#?HoaIV
zq`*PwSv%?fnT-ZwYS@LKaR+8+=V^Uz%=^3|8p9^eP4+nRBgybe)QteF!R3ZiMLnRX
zt`@+KS(j&Qv27GCw>}_xVDm7x`knvyCVpQBqsWpy!O{iZi!vd8S^c;sET@`mEtXwt
zq?&F)51$Z=&n<5R9w0RZ6Fq-QDrU*@jDP#~pneEVxNZIt&^bqFgXBtkX>g2Y(Jiag
zZFo43_pQ9tBVMeCz`2Bkgq$Nx(xU+0=BPMK^|CYhemJ55FeCZiER)Qu+MFKmq|xgK
zIK1rA?c(eg3!N<udB2}a5YDAVf<{mshrgnZu2rlIx^T>P@zw|rDR45DzX2`q<we|9
z&*4LR`2FL`dR_g>J@m&1gs3`C_1Pdd3t9kxHiZ^h9k=;@l)mVKTfK%h2$@wWspaGR
z{$u~4{o|IY=98FW<4ZGQTg&29!R?fNyA1aDKN)+&jgYx{b<Lsifa#QY$&gpPg7Wh6
z{pR}huk1`r@^lg~`lUL<5*H6KHPZF5(`IG{sc{2c2l|^X47o1mzN#|*cOUKVaVoD7
zymR>}DKV*{@4&fO3yxgTK-g#CYO0CBnn}eow?y&MALGKd@P9--^MOsZR=X{7dd$y`
zW^yELWQl~?_PviQ%6v|&^#w)T*SF_7HHx(|wUtNMNJh@-drC;d*5OER+YHo#Gj?Ao
zYQwA`R^?fse;fA+oUwK<no}p5cKI->piR6iBjawWuB`aQE9pjO-qfd^5ob_hiKV27
zvw~^8mei+-<fxO@Q<g(40~rM|A$w@wgCX2YMQs7jk-*c$*to=Kl^Y)MHB4m7h*!6!
zXr3vI)M8MY<{Rupb@km+n9PTdqf?-b8b%lp9#vDIUM*!=v;2gb%s>8x&*nFf^bifr
z)I6EekLZDp%D8v+o!%nyot{r>)2igHl=ad4DC+O(!5WGzuG^ug1vkw)bfhwr$uUEg
zY5;|PV`yx~d)J^5**6d%G7WVOT!&lkJFF~Zb49*MwkIU%vb#)0vePu0F_C^9&W&3<
zl;iF-ebIT@VvO06&K1rI8_SBE(vgRzN&l_AS@O#1`vFn7D?u6aVkMv7lN5>|R;1s%
z1*-)dPGi(gpg<~zQ&H2Gc3U#%gqDFx;6~~HvM@8G?}9l;mDuu#V9r_ZVs)m{ESoWW
z7!?0s^4<+eRU!SWlzW&Ke$Qp~IQ(3ktqRC(C=Z()D9`Tsy8F;P(r0oaB6ACw^w!;W
z@|e`N%<<~#{!eet0H|uzNVxPm;9PzcN2nQ;FnUhwO`p%1!rxAGXBA)FAuG5Q3gdo>
zNOoXNUQrNd5_lfwjiPsZu`fLMF*-WhnEni~c?#Yhd}`q(lu=N4?=a3Ps0MGtp)zv=
zZK&lzVSk`0)EwN`Du4#`48D>vN=BNg1>ES|_41i8`1L5WJ6M0IY1926bcEYboXKEH
zR8%Hz8dPt6r-2a+u+EhQ8ntp1lo9u{lda!w6`3^xi$T0;GXZ;NxpAn)OofTs)-#{&
z$)*b?Xf_bX+~F&$h7mNb)tC4<`!o$T_aGM5C2+Ug$Q`ti-Y+z`uy2Em)J9H#hrjsY
zQHJctfDQ#GHS{0zE?!(*K0wzAlfgvl?ndXConEmsC)?iG*qD*-+!L_&B7(K8zhciR
zVQ(?2=4ij4_Bqyc^EuSdXlV>U<!aByjbf;>oPQa09x03`8<qG&e-vbL{yuCEH^Z~u
z+Ff=5?I4J0q|Y$Y2-SDA23wZIBqJkZA!u_PFPVT5`w8IGBhcKV#(QuW4dUz?s*~ew
zB5MdfefrcMY0g+rmF&sCtOYGCL^5wHL;}_k<4(y2<0uU^bsapj(8$x6JQA0_(Bk>?
zXFXJ2PqM6&EhLJ~|8YF*WIagW^J!X;6^D%|G(4weAG`F6`=|GaNd%c2+T;d-J0xx$
zB%(w3Z{8&Mbw<UI3m{dCRI$`m(48QQ^+mQN^T))JPUiu#=~&2P4<U9f5z6oVQ9lb{
zdPIjJ0q03|1unY#P_ek-<f$X}f8K{j{=DCnEzaM*Vd|ba+{cY$p>VId%&op{fu==C
zQNuVp-a^xGxi3m1I^$)gC3B=cpbBt8yK2;Pjo^G+NEr5#sdpw~QM5u#9CVQf18$nY
z!rKv)YNH3DD2~TTIIHS8k`U=&80q!95X)zC)r0Ix#TZwd3ta1>f&slRsqvU=s=_2{
zd_95DNbMGP8hUUY+&Ffgad@s>qQh6O*h+{ql3Ig3xbU@}<560Q4&B%Mip99@>X8Mb
zdG1tbFSI)-mEPt{E}$xrayJeAH}jj_$8-M*v6aCPc69{{GpR<Vi{Xn31AMtDB?U!6
zWcLtz2jUc{F;q9f!y#d2xC^=y=X-j)?|pGOkJv%K^9*~=x{E`C{B;}HuKs|D|GxI|
z6d~ZS_(VcZ8p6^;e4Br%&ef513ltA#)y!16p^9Bc9M84zZ-xUarm&GWffBXMAOxB|
z9oGojuT;5I5~E&QUjpsxC_9M{*0#(#rbDtz%M|!U-!QBsliJptadEMEfz4e`6Zb`<
zChI!Pw2O6ave&`m73AyejDz&7uiP~8oZ3Xa580<<vWBEzF=@I#OfxTD%$a4nD|ym}
zi-zS5X#&BV>N)894!=UQe`efs>%p5+J&s6c6LPDF=azx<w`eo6vW&c<U?$(IW3lpm
zAD&3fq^>O1z&afhP2opI9V4TkJ$C4F9{=J|xbno?jUMbmCxHRs4^ta+!BynrO$=Xq
zUfTKao@tg_WLE?{A~y}+1a!R{!iPVduqT01M5PIY?5I!n<m5YdaR42M$JFq!&S%&;
zj3^>#YkS_RW)R9-3&nnvTwsImvpH6yRT_Bb42+xmTJ5|j!M72-OIyu>C^7flUOxjH
z>l`mZ)n?nzHfOce=<^*jM+fASgimSO$v#-o58@qhs#)ZBpa0=wbZd-h*$EA|{RudJ
zK_+Nw-k_|JmKOUk^@8Z;AY8DaZswh~2l4_4gz)*n_*eg`Wx2knh{h00S<59mao8<N
zs{M|FjFiBdI?PS31DeQk-9gU%MHyoheg|1%nHwY~B)02UsaU{uIas?lZDoY4WyfiK
z?6K>{buwnGi|?>x^*+!Cso5}*Cz@bn*Y9KlI!Y7GY{vuBLfsdN9g<D7?#l><)w9)C
zmk)gou?1&?57r}_fONp+d|dfF>!al%gz~ov&qqF*w;6*QO6;VcT5drcVW7#1qtT?e
zT=Z&oAha~Z%y?i(F(Wi2(k=jO;D#p0XUDOYd|DbuD~1m+Tdl*pPIxYEA_M<TMM6gh
zx7KFE=2EklKa<<hDNH_^WZ+5v6z<Ux3Ih+1Ho>5`%tQ5{Cr9ehny<axQOH_q2WVuD
z@@}{iuF=ek;wD5y8m6y5M}GbW8FnKv`>rDTtstta>m9<&jsd6xue>Xnx>Ax!PD`G~
zkMW84H;Pr;y6lm~uR{^C2JMkwty}MhC%y%7kkCDV2OAokR(Hs(Rr5R=cd=^uhO??m
zIOGYUPwY-++HFPKwp`<Nu>Q@#0ClV=3s>Hcz`;h%h1+qe^8%u}x(8_88rR}IIJge_
zbC*A>vrP3B`u*+5DMC2ksJ3^0x##dZQns9&9sJ3baDgy*UxV1Zm0wr8XM-u$gI?{F
zW3mA)aL6GgXz&ubC@4esV5}VpMX~K}^wHEy@N{>w#fx)+zQz>pr&16kv2Tv>u+%2Z
z1B@zwmtkK{L4hPb%b>q@kERc6@BZ$#kY3*ad+ebP#au?~V@gZ`obcV-wEMGMU}T8c
z+MI@-s5I;bn8-C+v5;y|L<Fc1`Isdd2*jA$dZF}4U-+c2(EfI;r`HkQGM+KmG;IMN
zSKT9Usf-0C?M0A<jn`u`6nDMHug+ej<wB<c70FK0_9;`-_o+e3M!N#{O*eSnnB3wZ
z^!&$UFG@%=0IT0{1tiP?fGH%67*c^W1oHJ3y7AqWm)npY(krp>tGWw+$!7ia^R)6u
z&9#L32XhYVq^?cahplu<Qfi=yiXkD;Fq^ttR``)-AI!O$$IuCnUAml5_wPY}Jr-&l
z-I_joBfDPQc#){nY29JObF1nx6fuNbK|bt{Md+MSMxOKp)*9=M5GwuojxNnf2+~I@
zG;)vcKqta0zd0mM!!~#h#FgAE#zk4g{Sj{ojxxi=;IwD;z%WVg$!kk@>((#?g)G9Q
z@A?@H4Rd>4=Epkln6dlRjlTWhY{3o8aw;sYv`tqTAgNMf{a;!?;1iF7C>3hQlxV+V
zu^dC5{VU-Nw$1sqIWnh0r<Dwf&}{qt(p0Ketw-VA@QhQ<n6$On9G!04ReWH)bW^3q
zrpr<cD6YQDn1oe<8=GYGr9%M!lPKio57WxL<u8|z{wfq&ya`cG6obJq)cHwR^q4Lq
z+69Nlm8w!5C8@yY(G!v>1(WRT7kJch^zMeCN7sS|vZ6O7+e(_1`1V?#oEi3wlIee#
za#&1FPjEwPwI>)p&0uwh;>^vCNg&aHTK57UN+NU=441}#-Hq~^2Shr?-ZDVq-aW9u
ze?%tX8_Z=r^kC9(PQGR2dMCelqIlM_UNR&K+9$i~e?_Fjx^;i)^{cwE#*;hj>;eX6
ztb8c^p5y65CM{rX#E`%d;Jm+DWw76pq4w?MdN${B{1LeZ_Hv@P8--DSJOa#bb`uc<
z%YyyOP(nNp-4;U*cSLd1f|Qjh4*L#Up@rdoJQtu1-*NeW!YRJGf(|g3OkkvDv~Nb^
z)&SqD5+l9+;j5yd3tmsSujnQeP;HFR>6Q74-D4XrEwUx+P|=R7ekUWH$2rhI#F;lZ
z=ZQlNjn9Ir2mBG;*!}0BuJR2CHQZcTm_GB#m*y=er%P;y)%wSn<`6Q~_HCSITAh`L
zFoV}i#xMs*@hYvqcXJTrOaE{)xcsabC!Wou?O-l+I**J_pHViR^n<luaMJgymd;yY
zo*UU+B0L(Ri;I<003-afP5Jve{TC{$*U4kseV1Q^LINT0RR*outXAA>^(J0?PKu;d
z9?&B58?_|?wL||)w<3wbgaX`20@qaAPR#c!*}q8Ti+^T3r)>}=({K+7P5nimV0-N)
zek_#sDLBqu>?2JB-{!04Ei&x-C7$<l*CVHy3XNo+@Vk}n`?zU^zPZ2lstZlDiz)IN
z+oP0p)EvStr>#DbuG_P#!#6H>UJg^@X46kalwXan+UsL*Js7zd-fS~LFzEkjX0J(X
zNE7o#o~ESBt^(#D5|pthJlMKA=c$djUm<&gy%trXuMIhs)O_v8hJvdcW;4-k<xaao
zDB1So_n2l=V|DaDNEIu(00IJuQp2&jM-dawr(UODIhO-z=rKavs~BNJpXM?ChXrsV
z3Coh0fxD0@ar?sRm(VcH%2K3_eT}Xm*z-!@;(xtMEOa1hMS^&ct&pE3*u%M_f8d(e
zLhgtHO36Y;*UH>Xq%(M$0+i}D&8qtL1#<c7Wt}RrMvf|E&LeN2I9VLdZ|#_bO|`E7
zAWyIKu~Zm{+8p&Phje!DE*B^Dj7mNtOAP-6!+9f8@|UMzQ72a6n&$jf#W3r*M1l~w
zBj|F3*S3ENy7W~sK}G)hXe*2AQI=Kv$IR<!DPE@oEbGv-RT`>%#B>G@WR+#n-LAiv
zoz-fG!6Av^qOeE5>cS3p*<i?OvHG;SdJ%omPtc?KvU4v}I^O)jrjgsPei!%qBV2zO
zHtr>?XAfO7hVZ!K(ysfB3fNa~^=E)}zVamgMiw73ZK#-aRd(E+lkDNvzzG<uS)6CX
z0^Jf4@6zZ7p<*>9#p6SC|G_Og_q!`ky-_~tbL_TFXiOG8CC~Kj5y0qu_jv?s-+bo@
zG(|eke4)(CzyEcUF3E_0?@*h@VR2hb!(p?{qS9(mae`P5sU$)kqP{ikCED9&U;d6i
zXKx6S1+d*}BFkZ8G26=cSR-0avOyJB#MSqvk;ks}v%IUjp|$#?Fc0lU{6BVPeHO^Q
zVLdi<(}2SlnNodr3}IFz-;uM68&Abm?lZ@Dk2;2j*rr$U8J7vtO%`3fjA^3j`;(w8
z+qr}ViQ~YZWtTE}QeI9@XDsP?%5!h1p9PXQ$b5OLc=#fh5?*>L`=Z5>ls!Mn7vAoy
zl$=uAx5*VAHYpRy65GYr`S8}(`Uhp*JY$@v6n^d|(&V+gU4ZKOJ`j1UiD*{tYUWL$
z-KAt~we3FMp32~|Qt~+nY%YD*c2CAu!&Y}@Z#gnuhp)fkDcI(NG2L*YT*npkRlqY1
zF|A4jMzV4xztz;ZaAlx>@;u%0-6g7by{a2b?19<3u_Ul0-#qC1!U#QBJ%h=+MmJaq
z>pR!ED7yKkVC71++>$J6GWwF;^hR%J%{~`SaLPhh385sd-P6qgSE^d#*WtPE35w#O
zC&h&B+osfu@cJ3<9Xr->FYOpUNp+IaU`aO%h7_Qi{Dt;?a4<F_gNPbw0dN55eZSw&
zo(`TPcB$1cx1YX;!&p9>i}a>+ghB@zC?ludl9CFMNv9S(PO)~g7+TA3tU5V4IlEJ|
zu&}5{nr#n6o<th1>7D_Z2D}xslRhzt;7FWb|B&9Y!MP##W)f9P)1<z*3Dz1BkIS{f
z@p*tcW9U3u@H~209!N_l_Ju6da%19B8|}R0@oac+Xt=|?KRCMKE^U6y<!=ZH-#~F*
zE%zI85QZ@z2XphQ!B!v6k;_uzb9+*0fFfpIY8Tr8j{v>ml7`g<X^suvZ*xP-1ArcU
zJ9k&OsKO5^pPoUuwPm@;=CUF7M-Zfv_I+j6Z_R`}EQ4vu8}@bj04dC_rbQDd8XWK#
zv8BmJ7_sPnuhf6b-Jrs91;Qniz&*|yd0R%<5c0n&Ve%IaFMtl(wk~UA@pYvboaSo&
z__pEP0EKkV4s4~Jt(;gL29t1jjT}*gcyNdHTu#T7RGhk;T=}?-3=n0<Zed^dANz+`
zO<cdq7khjz#7}M8#fJY5!zMRthx(qkCcs|4c{>o5Jt@>LKsr_?WXElqxd)HCl_Wo~
z0oCVw-50$$v@+6Qj_J(Zx92L@wLqQ)9^GMDxVQK-WI(>znWRoq`=iL@KfpRaIsmMD
z_O-DrA#>9V0P7T+JiOdGrQ;XIFJx`h&9?l{86SZ`E9g!rE0bF_-(9rq*kgi_Wm5m1
zlxIPq5#(<Jw(Re2&Ql5}dbJf54fd<6%Rvl8Yd+6o|FTBX*vg1{;)cCzj=DwV#YYkt
z0YR96Qs>|9?7&3#FunTGqCil}@s4@=9?(y6s28Z8;7d=rH`vXOvQiTMeSr3n|HRvD
z=ibFYT(dL>4#Xf~1Ku!)zXefv6Wp{<4RMJ+Z305NTd0WZM1iWF{|HED`U{-_!dt0k
zz;t31jTyARZX`7vrww3oF(85?AT6CKSFdUd)=(t%BVYHX{ITYG{6Bog>0W4bG(%e{
zf0@HC-aQ+!6Abpp?KK!(w-&9zjgydHShmJXP{G%v+mF{*)K0R^Q}VKpjNH`v5^-6m
z{v~4dlo*v}v@r7PQeP_m_Drq(<coUVB(AigtMB+xS{DZtniFU3se!li(%#`i^Fz^0
zpIf#?2rRxQFf6ai=5AVe)$%9iv(sknKCOnw_fi-QkYIaLy;)Sz$ME-J{J$@TaUnO^
ztBg+qvONj(y7C*HL9wSVIP|?*xBW>Y4pOXq>nIt^Vu6Ok7@{!Mp<YI5DLsG{*n89Y
zQ~?FFF;c`df9U-5`iJm5|9_%#{k07=zDqYYj(iKN_TIkL7&|$VSh~nfuFXQXk&}jO
zb|_x<wWQ<#Ale`9^ju(S&<Qy1y^eZ}kdwcd<_lWA#a~~v<9trsk!?o!Fy8T#&-A20
zdq41uUJ2c<K7~QwIP6=lklIO^!@`DPbJ5VQ<jD2s&vR&SkZ~*RY1hwQb-9B#DNpr`
zCAI?Lc>&HCG3i^1m6_4@^L3ptEJnA4J+0fCEW`EPLKY6~T2WYo@BX!N+OkB{4ly&b
zGs=oNr;FC@&&q68-$B)i3zjn#qPhQr*;_<CQZ$d9DWo(Q&dO#uX<v-9@T#xt=3q4b
znGK}zIb`>Hx0g<C4P4BBY=-~q{paFqnMaRFl}NEx06_(x!O7HrTqhv{90(C`QdWtd
zKkWf?eJY?sFU3g)RnOSnNgr)Dro16*DGht~d!2tmtwNWv7H`r|Da<0Dqds>gtwr9A
z3&%O(F&c(yZ8*+U5TZT(upT~J9E;(_TgdMyLZD=60>8Bw230GA9z6zJ+^bhf2A2o6
z=d+5R`;%A{@pE(CVveS>PuJGoQ}CUm0JUHol_rDo<m4RA@bv>a>EMjXLdwZ~y%_L5
zb%_FagW)TrKnJ(#IolAe7$_osbUQOT%KrP}SIrdl7<~tib;}gXs!Sto(n7H-9OFDp
zr!wJp$#=SW)Uy=tt`PmaLD$SA^MUyr_lc{kztpQY$-L9zi^}NA?xv(LaW!%bBxuHa
zBiy9f>%GgD_%Q*EW+Zd&HNvxc>;LQh{rz9S+XC_v7ohC)jhoz!+1oQ0m6ldU4xf`#
zR?fw>`sw-0Mzx}<s`ujy%4mcLc`lLOsN`fEO(f(`M@O$^p%CEU&k28ydH(!Rt)HTN
zSCr~WU0W_IHce9)Q&b^7xpsG5rw4dUAP0`Ud6K4}IR2)4{b?ot6alp*5`@3EvR3l$
z-MZq+GCS!fq`U^U-jQ0Fon4O`tW98z*|{uuUwNaF&%4!NInSKH<CR#1+${fPE(rDU
zO@j$0WrVH+1G-4Jl{V-J$PW%bjG}7YaP=X!7c;G5)vz>SSD?6FH4;z%B4(9x@SfWJ
zBJbFR;k1&s4w!fHIX!9XK{H7~``g(CkRO*1+Wbc$3|J-piDvH)?H2bck#N+0c{NU8
zyaGzDKTj~fuYFR9psqQ{ez@Dmg9qQ700!pK*J{nfor&{ehekT_-yW2|Cs+^Q?GYXp
zG#Mx@G2B{+CC|>}XiZTZTMM$i(&s@74k9P5Ri6nfCShY!4UQBR0faS2^8n-Nb=z+}
zr>H3}d<}jyUzJ^~c7_bSh#*&urH#0of9PxK<}oGwDrX)*!=V<E&NeNh43EGc*+K)y
zoA3HHC=3pZ#GH{_bSWMPJSY#N9a<ekeN9Cb4GNLL7wo}vP@2mbpt(q8U|{^|iTeFI
z|9<^GKGFoBPj!>BdfL+6i~74-_~Z3~FCs!<T6JVXQmty&8Gx-h7E{|@Ii!%bMkioz
zN|p=(LqZv;pU-8lRC#Pi4{7~mFH(n&>hWX0j?L5jyHDH;HK=VSxf(9(?uybO4VPNM
zgR^scljkmtZ`ifvKC82_!N&C2SG_kd*p3-oY733&4aZb<5g<iF>Ip@N>%C7&G8j$%
zaB_13D;S;f5VCrneJFO1oe8B!6&ZpQB{^AHLUIloxMunyyTOFvWt;VljU5|{=`v`Y
zMm3dqyo|M}T&(5MuzZ5^FQbP)UTuZAciX1p$PwgUzO`kW_rc)k7a5g<nmbdIW7w>M
zy-&OabE9a(mi^W9jvoLw5y8JNENr06&8ZfAfIST^^5-_dA_niT$u2D=l@p4?CJ2(L
zNyX#($IqEqVC}g}`uqA~9d>&S0D?#iCxrqG=ga+Dp(_oV!fiAiyQCGq>lR_yFJCiD
z*|yD+inrt9Wh{zvoOujJJ>6M43Xu>scR8=E^u2|j;S$t%g}7y!G;z@5NN`d9jlD*8
zb~gQL61xM1&`@qW=Er}xDF5fK@WBIAver6Prhj<@fc@1C1}PA%0N7OL&$!tDTS82n
zl7z?W69&twhM8HCE&YX<N24?cGcxvPV)@+g@^Jc=wfEI%;^ZOSQ3V~{g<^9J1K)<C
z{p9V{)ssjqrNENqyY(()2yoM~8X7eECz5%wS-IOs*nr75amS1V%NR9nMhSl^e+Hos
zc2~)a{v5<@RwkW6C6*psMOVjsa3Fb1FQD`P!nJIl=&j!oglZ})(X}n51D@~P$G(NT
z+8oqfJ$(Q0bn|+VJs_mjf-7Il(TIbdywpi?!YkgLd6J-^N{iV>Aj5_apilv~0DK^E
z9aruTlk-DoT$P3^4QgktCe8~dSh$G&b6tE35_0m88%ZfP5%Qjk{aI>^{mNzQI)zlF
zmXAFv)~ua*b18%$EopCTH9&q{5H_&Nrb5lES}yA`7j+y2qX-BHmAsAB?CKgC1xYid
z`odOBJ&ylStNmG+r)&S^V+9uWb@d;&DH%t#mkH%U|FH0}YQkfcGIm*Axba`P->)IO
z|DH~G@-tvlNVITWz=%55Xp$$llmj=zf8v|Rc{98AKD|}vRQXeb$s1dG_4n}()6VeM
z?VtA~KgZ^zvnrBC%H%sUe(pS!??z!>Wkv5M42HC4n8%S)_Yt2fa$heM-qoe3ig)ko
zTfO@@n3fom0otwBHHu}YKeDSbL>&u4HqzV|;8G4GBQ}KZwuA-O6`y^-r9GTDmr`ea
z=S!{I(<?2%{%YN?a^!@O1}{HCo{?)S9HNk#PQmlOpFndc0Ml{%<mV51Xn1WXy50Y`
zcOS|)@;;iLpN}cy{)e~bKP%=IGUQ_b#<rzK^%6VuIBoHZ*`vXJLvC8BO3@H=Xk`2H
z?pB(9{)2VRy-XAaioRKd3?0!MlO8lA|H@(P&E6_SfD0^H(V(P+bdjmWw7ujvLEm6~
zLwfTgSpfd4gNJ3V`_T<|LT!bL+RH~|^{mn9FSm_oune-l;8Tb3k!o=7T)2O&kh&zU
zCy->Yl`Cv$y75Ni<cJ<-6TZyMs}kbemc_IfYbWrDBK(x-dRFepa9%?7uTL*@jpv<&
z61<!WmmW~B<D}miR{ujr;eYO>r5XrM@3Y!9o#3}OuhwNevaevc6X*@=q7`F$zW<a}
za&;%IZD+`K_411^WIN11?b{g79!;N1isH1iA<avhFo!X+n|o>U!*cjdUeAh@qY3J1
z6Lp{j(?n^H)s9(6g=wJ4*=$gT?DwpspE>vg=bk17CZ#(AT*SM-%AN4MRTVF9e;GDT
zyP*;6mAvo4!2b9Y4(6kSS$6n0hYC|Ovr2)&b7kdmwL6a8j=FEzHL!56i89RL9=0Ko
zK*}bQ*1S^D2M0VB8)&iLHxLf_umB|b(B{Hz)8)cx@?m601=hUdn3+ZxnwBuxn3_+3
z47*Gv2LT<g1REJ{_3tw4&#LIp>!n@DPhdD2%Sg3PNom;<W#oA58<rpE_|da0>K}f3
zsSjdmY6`(;T`kTlirsm6-l_!eo&PPrqWRl5F@9gOLUfjD=@LhrB}{@r(_9*&VIG;u
zY_(-H%iahHxTv-{G*XPB`9$kW>RzThUX4Z%gC14V7O(xAu!C=R3HcX09+ziuXUY>P
zBVMd-uKofo=Ec(Fw&F%@B}~`Vze)~`wcM!g21o&_nF178W|kLZn^1D73j+f~VsbS#
z!|;lox{M+2Km6f;zviVBUZb+B<mhOU%3TxJ%~mY5BT<;=bhm4|x|#p59JP?cpGj_0
zlCEcuQr5<G2zT||QZ7#J?~P;zl8}&m4?@iYqaUI)ulq&}b?F37eg+1|zAVx9?1BRR
z1s9{zswEr@45Ak=q(r5{V^&re){Dn(@9*!?u(oJ3-#wFAkM2!mO7N{9B{isP0Q1q5
zqW9V#qT`f<@>qz7_?dx{wYIhvgN4}jUCYFw>EqFnV9l&v)i=aaNu+L7MR9zqxxHnV
zT1pwF=i2a{$cBpIA}TeC@5IDDf=uPUHC>PryM9Pjv_Ba=v8^m4lYXG=>>Rpba>L|&
zq!V|qi{B7OrK(pMgZHn?#^2?Z@l(K$O5zVO`M0Nx9mgmBNW})iM)LNx;KkZO>C9ri
zla*?-XCvaPSfZF1soL!>7dbU0ntCVv=Rq;z;(e7L)_04Nh#x;Dh4Hb{)eQ!AG-+Qy
zzxQqaUtD>Jh!o({9@!_>)VwA&mx^@Qt?DUA$lW>-6YF(gS4fV>BBoS6_;KDQXSvwq
zLA`uBuB=@M8Sg~H!z-#rz@QqoNU?1l7rWYv9?fvK@edHS7Ksl{b15ac+#_Gl?)>a!
z-E6MiEEbS+iKg-$2@dWP2vwylwUes90J%GT*<RqFlf5;~e!KO%eerj_`QI1DNDqH)
zyx05pw{Yt<1TABQl&i9N?FD}99`UqNdD!=<p&@BGxfRmpbd`&PftZ2<b5XI6<12<8
ziprC49Rt_boik-NVq(dNxHFS8!ahjC>1g5{BqSYQI=aU}>Cr<mwC0z+1$=VibBKN4
zftE$d4e*Ld!83tg&V>5?QOFRiqoJ5YMwwJf8u^P}Ux(6}jf45T9lPGx81agDS5Tgz
z;o=q+D0|WD&(mJs^TFZb;F#C_-&7xO6TG!SBT?;nR8cuP7MF=(Ab*L?`6$x37IW-B
zO-0hfANV(1wP1TmI#eo5enqYlW7Sa9%)Tqp!9m;m+BfIR4bEaa^YNfjXc__v5m?Ao
z$Pd+Qv*XLl>KUg3(_Cr%{KrFwjhi=3Fm3v7E=QS2@>Vi3pUf8;ruCK!k$8SRh{<_b
zqVf6a`Z}b!>;O@=f(2H5Y=6A?;iD%tXSDS6vLJ<=Dg=}EVqy*nH8nBu+v6RJ@u{;j
zdrd`<GOn&To#m=in;ia6fBfIYNctTd=mAt{uUlx?0c|a$$|j}Y-+w|are&>Fo`jTH
zi2HgOT^7yE2EyK<s`%z!>@}y&5s7NET}t%pke<fRZldn*liz>ydbej@<sl^%W08Lu
zJe|?n!=;~Hki~x!u}>CbAZ6qKMASs~!+Q?9>>caM(1daA-j9^gSgP>Jl=-A@d%s*z
zW`ApY)BCf`UpP?2Q>xVb+A#t{o!G-wK^Z;_abmkY!_UD*<j`J8TtdztXOQMIpwGN5
zZq3cvJ{k_1IeU%2|5eUJ@p0Kj-#+_%NnT@i#@L$?(Pav+FXpPH!k1PZ2_9#jDhhCk
z#OoB2A9~Y9Ih5i~+jD2_Jx@0?Bbu1B;;1`z0?>&F3Ig)KejUCW<=7d@kxU9zwgTZS
z><wGf*#dL_|Id*fD0ZsZY?VZQ4=Da?86QrB+&FCKhBVucX3Ht5=J0f`ccNjV<+ba#
z>35>8eHu<jnT}GYq^PQf^<DnyC#1$2T4+-uXhEf@tfU}nU4y0&#{o(i6GyAwk+#jE
zZFsT}46LM-ot>A|=8lWVPm4T+Ha8EI)wR-_%~h+!-wlbyjkeiFY5WAG%rd#;j>(5F
zxY-|Gh}CEqonPxrpw5TKuUQ9&=9hP=Cu<kYtmgU;+SK6+1&WiBWK1M7_kJP%?}g&;
zrSy*rZStkV-DmG_rQBg+?l#1FOpwL4{dvTux70hQ^}mVm9tAJjTzvYc8#7%I?&{5M
zcfu`Wc1eK@(gyzU>{Fu;MU*W(y#Kx0oX>n3W)ic#d>%BN2#M)Mvr`nRe2)Jn>Rh}m
zi&xbO=_!1)H^KQwNmUu<!97rh1T~{E!UnRD45OwC_181wyzMFQh+2qN&V)>qybbfj
zl6}jNU>&tkkx9}l@$^)z&=$Q;SX@sn^x)ABQ_(y4Vq$dDLSBK_xL;>*QLuE*yR%mR
zaaH*H!TRgMJqEg_sD%|XBkezhgF^u;LUy);AB&_(adUGs1UBD*Kj{<xd8@9=;NZ$T
z>BMPEO=^7SNQLZhhrC4|T6um?=TXxBrgEEexm%jM|GI7dXWz#SdQd?2s;{R@TV9iT
zoN33e5ba(`QQ5=`DCYeklTG<1rkJ|(tSz*>$>UNfFEWgxXFrAfpOOWwXr4J5?>zpV
zz@pKE)KdxmNW0!Mv)<He<6EQaA{Q6TU5tZ~wRd^0Fe{}0;>Mn++MWziJ<97A`8Ir`
zvU_w<0S3?|%B&WfatzHJZ@|iv!a_`(Ic-p3*i}-(p1)G4irn`P80$Z7pd*QNKwGox
zfX7Pwt8y{Ek=X>9wFbcE@fjpmFE20mQb-lbnj&uS1~mY!o@%3OCEnG^#NMY*C<&Y{
zW$Atwn1`%2yAy>`_+CFpNI~aZ(*QIc*tt&hO5l+mS%8KMz=S-7_G-lO4k~bbmIkcE
z1|}}E$w;Iqo@i2yM`~uX7ZopDQudkEepEsGr`nu1m&p54bTCnEgpu7+aA;DSNBJp&
zI3SGUkKK~xN+h!?fa*xx(J|E%f9-IS)`lwslCe9Sr33%;DQNsWtvzbXJK0Fm{w{<m
zIlkR|=a^Zwh4b=d#;O3nucAu~+RK-u@bK`^%uO5ilp8KZ07DK1=rIf$jn{!r(PqmG
zqf7IO#afL}z_}c#cG|&SPCddn(|BI5=JWRFJH%(r_2s$c-7W~#xnI)$daBZ6z41LC
zz0)8hguf%%tl!LDvA!#P$n%Q;exE^tUp_!Y#<@%?s`_AnjQ9-sY0OmX=B|4nO9SzE
zOd$vFi)puytQmFU+dd9*Ws45USv_G!Pk^5YNkC`qd*luG^UE%%{I;pv!hDr}0tx}z
za$AGC`=HrbQw7wimV?P`0M`5b8W_~q0nGVG<-UhJjq1w&a6z-Tw|5O>0*<Rk1Y?W9
zgpn+XPx28bxzF`LZI8hb5tBm|AsE!`2PZQb-s$NCwKqHYl@t2cC+lT~1Bq2%V;%nN
zgH@nEOhe};CnFOB{N$ZwZ!GNCq+@Gt<6#15aN&7Nq#OU7_i8I9OVt6=BT+wC<RWtS
zfbnQB-m4*>%rJv1g(@XI<bOf`An|r@41)9mwre)=&SK+YR))p6GE|l=ezP_-|F%tx
zr9Ps6sG_|g8gK<#DTFRAkD;(fYVV>Kl(2o0EQ3*_Wwt>68I;J`EZG&oBic=Dr>7VC
zl67EgotGf2=VnrqML0M{JUTvuzgt;}J?2539J3{70r}xj5{oo~_{WbQAyNCs3BYae
z^~F@h17dP=VT9E3va&4jumR_HG5In`S?bGfoFnu>PiO(}@oOKSXU#cKuO5|3$&%o^
z)~0JXpP&VKlI>`9do!F~-tKS~8heujZEpeB<jZ7#GUU=W$`B+GJO80z{UT+e-M;KH
z>*lpWmjR06N=`o1H=pfy3e|KP&p$A#YZ}k1-Rabl3@5<NIj@F|f^;x4Cu~X~&hs&O
z_C=H26f#hE{kR8$YQ_0Q4CcCqB&#OXCx}?-KeWB>&TRoVg^AtD4(%SW1%@v>ReCN5
zISwm6dLNyE;lkwY>E=+JL0{~)sGkzddM$`~e-9*v7X%jX5nzm2tqkhl1F?}a!SKYS
zPas)^%kbWGc_lM3z|F9KJYr*KSIdz~`KHQ8$-iuul*U}}$EGq9&D(AjJzK$68Kc`}
z1KKt^pEkco63>iE9xgPV@6CC8KQLe-R|tvZ`FSJ|H^GL3#0EsNRFos}4v69duMt@4
zoarANSCGT*4uV9#xJI|j9X_(4EczvXSd*Y4!q9*vXt|kM##rzH?kWbaO6(hac-7Cd
zKkv`q*SzAWSPWSaXkyRvoOnB7c6&LT@MI3X^`Moqt!?<0lQ^ZarQD&f>-JSe#d}hn
zq6wl+c=P~cdb<d`p57D9FhN28Z<kWb><i1@23um(T3up>)+JY=P8!bLkdVQz$m)m$
z0-TM&Ez2c~5A!^TXF%*d^|*4Z08Ep_gF_eH;|6-94AQ4*uLM4tgeQ43jM-4dy*+q`
zIbzq-beL`L^@IB96CsBmVB%Bx>y#(Y=9B)UTLCi@^Fc|O*fX;UzDP|Hm!Dx}zw(=z
zm??jN#!Usfk8XQ_sJXd$lv%fxxj1X+^h=}5q>|VLy$@OiAAN0Rb81X}<kSYGmS)hB
zVb8?5T3Sv^ngnv~Z|A1bK(llCpm~f@kj)F*hHJvJuG4m4N?4zFT0D;pT^5GNL8iT}
zwYo&7fqyHw1O#^psaNh-N4lVq-ThK*(D{#(oevqx5!>=9XsWM4-K>v9E<DXa6b*rS
z6Np=dtZZ7&*G*?udX0UR1;gt;KfS8rd0nNn+}2DGlG_WMUnbJu?m!A9P@dMo8NO}P
zeaHA==%vu^U0$APW0@+$KWzvP;9tWGaa9i!2MUEW$sVTsj8Un*xa(-XSFHDEZX<AK
zrlF(bJxt=WLg#Th5LB(PuB9NBLALyhyTjisYIL%C_k6*M@A)%W-EJ^i&i49s|2ZYa
z;xh<~CFk@R8&k-SKzXgJ=gk7!w`ET<i~;%R=uQgTd|wagzK9ga|D{;mJ6uFuSQ2VP
zF0Sa}Q@QwDdS{GhYi&KSTKqUQMzUvSuL4DR)BV&xE7hU71F=yBsqn5^0cU!8?<77F
zC@aq4_vUJUyu7WLeBvkF1&|s}f$r4HQ07MMa=@!IkNi@Cd9-y`%Jw<@`b8dmPG=d=
z?|cE>aNTdVb6ttPG$Ph#8-+5~zZ&9Kvoe_NGZFo@HIliW6(uz))YZ{ZQFAnXhMkWo
ze>Ha$$$_V3;eq>h?o|#rGm=Tfr$0Mez71^K47VMdlKP(y(kGn1Wz&Di`BUMy6DrR_
zP;dM30HOal@^wkFALfd6$)`sl{nqh~yELv7s5=q2ehh5`enq1Ci)~NeYSrkoJ?D%b
z{kMLiJrxYdjDxCP`wr&o9oqHVSF_&TCE1+VUmKryv-dAb!+(n5<M79~nJ5y0_7E&=
zEPFna(%>?;8KWBujvO{tE5Ir$Dnerlf{Us<Z{OVBeud(?-=gsRh~zaQ`UG0s4wq2x
z2UwlDXL17}Ga(N;S_74u*D7y5T{W>I#ik}vx*~<|lj>>;@7kWQ{OmT<EJT&9xf9RJ
zbNra*l}?h(seR#boICL~zyLJ6D^Pr(t~Gs8fJ6D_@9)1wKayWm*Q=ix3+KOdCGB-1
zFaCV|D?>lYYiW$MMXz5Tt=&<(3yt+iT^<);D_(gM%+%T|KaIyo_X!e?X1u%Wz4X62
z952b17Ol}1#e4#tR|))?k!X8#-@qb?-&901VmQmBdhmYB?lodtfFFZQ;F=xgVf{y_
z@jqqf-?eBr*#lkr*ed3OQPH^G>(!w+O}0w@E!9jT(c-lQy*9}@Kr(x(M3@Oq4aT@I
z!NI{wt#rJ6!Z5hL-rD;mVg~n3hAb>)Lkg5u_pvkMj|;q&E)+QWvYaO;>teq*IqVy+
zo2mlRlQ%Nj){oqXDiOq0x$a#Z-W`A&j0FW}1je^l>P^_U=Y}MG>THIgSo*aKC(PC6
zm+Yl_oq%OTN<q=fwNrCpgVTbH<LBoWkxwO^5ET_=0Bi^|pHz&Ezvhy3Bl_u<MG^~}
zwl?PabGe?OsMJ<Pth<RBAwLp0!(8v`>YB-XxsHs8_`Cov%&wMnaP^&{Yp5W#18$A7
zk8LZ)P;M&D%|gC1t&f9l3EiY$ZpDGFjg1Y1VLui&tF=x&z2N-TtD9++!131Z2>e5v
zn4_*}pHu8f0lVVWjfz_OeZ80e^Av!}*ry8}&fI<ULNfT3CKc>+eEi~9pcD6gpkK(_
zLzJA#jTOXldgw>QZ2~Z%?ba}%YNcrm4!4F`X)b-EkI=Sg6qzc^br*$<{t1KRDcqIf
zgxb-&gKsrHXf<vor%&~0{`ggY)ZwgR4-TCj_oj4@UsF*=w+p$*X=qUqyCTQUi#?bp
z&dZIrjzT$%R}-+;>D`Qluygo;@mbh|Sj@)YXm$?bi{^d!D@s3{yW-n-%E{#`qCJ}D
zpu|9mPQ`3G7>(cZ*@WY^?yPT$)cn=hN_wxt5$Q2BHuB=SzEd^PsUWKmO*yN8Tlh>t
zA3q!pK3F=gOaQx34jBOqNRPN+=&m4?qd>z`-Vs^yIrR94+d*ya!VUtX(O@)y?(c>}
zrGwBCKTawIQ1+l|@{syZ7htFNJ(JWNfljUB4!4_@fRzDlZW5&E_CQ0Re>9#?sQYqb
z2Oh6gFM6sUuH3KqBGAyu+7^@*3TknFy@cWmc<0Oj+$d$y{WJ_J6V{^=h3b#>sAQ5>
zP=I8LWs&OkVq7xSXX_H=8$^HqE)peZMc?#ncbvBQXW0uR+1+1vi@#KFkJ2S`hCqHr
z6vshLJL&zXIBg8DGmN9hfW=4|&;6*?wHpU!8(Kie9fQqLjE~P}(8`OZZHF0}DjXdf
z+Y9&yjIAy@n0WdQ8?boJyv&w!Tca4|k6O1ue^Aq^(qQcT=jl)%$VZfvGrI*DNZUq?
zC2lLh<n}!C%4YW<E7>8fztj?mHlIH!m%8|o^)8^kHL)~p=OnGsdR>Q*KJC7CT>gNm
zM(uZW3so%xWOv&Ko}z7s-H9HcEj=7Bc{NxMpi`|v`aZsqL!M1)F}UZPfXfC``c`TE
z9?&gz@Cq-}+z!}0%xySrJh6-pXJeGL-ayUukI~`xHV1)R^Q<-oY;t9_<~EYxJ8Nk+
z8Ecl*z~=ZxT<sD!c~-?B2LLT-7GK5Fl>$h_9q!is{Es>2W<YB2UDe0=xxxOy;1<jk
zrv$+^`S<!mGAse(;G{l4mCjV2V%z&hZ7UR(>$V+Fa0uV?>WldJ#T7uOnJt%#dc)Gg
zWzzpZMPBPJgA0S@;UriMnCB+0EGZdY6^PCAo5dhXkM&jDee@9m5m$8gY8=0%R^SZz
z#|F=qJA|&~`h2o-f_mgO4zro$q36Su0!LFUpL-uUO?hgj9sIVicJF(@PSX_pK^6|A
zqdu$T-cBXfT`<HQVt}=UsiJec9EcC;`v^9WBy?8O5$yAuYy3OOk~?N+(+KVKcKMR-
z67MBrcu|o_8-rVQ%X6`a7#Db|s_|FTmjHg<Xst&FpBw}^0G=Z*Ez`p!Y|IaE7qRM=
zHrIER2$y@l+G~NY?M~KuE;6WiAbBWV(Bebwld;g-CHhMU%9A<{;_$cXm(G_S^#m_%
zx+!M4iaqdS4G5X55WFNg<C9%?@@^8A6U~Z7S`U&X)XFQX@mHinCEaYXa)C3mN@si(
zN?BkR6)>pp7C1wU{7N2pOC7{s+<foa%35P{p&xEU2q!;}>tBmfcraZqtd8IqfsBCg
zga4T0utA=ntBM1Qy?(!HR>MD+3~$283&g*RfxsFNVY>j?EnLPxMg8*lTWY~00b=h{
ztQA{UCp`Ayi`*~HQDcK0T+-s&usQB$n4$Y!ixO`A7{|jrH5|#eCF!B7Zh$CKFKnjE
z4LJ$O<9eth=DHRs%-Kbl0#z?JbXl!PXiL;g3v-gaTVk7^C)@+dy!xdX@2kawLGD}g
zxE@3@r1imgdVyD+jJgNvaE*=U*xi_$?2umo_*7hxzPM&(nKa+*CE+rKM>&`p?)k@Z
z>Z6Z-WU_1rJzex`x?$3}9YI;GPMK!f0g#DQ`Y2TK$dy(&r8KvTy*w+T(zTw!6b^@)
zMvW_*sNg_Or$EfTc*3A*Py0e?0_W2tIqoZ42i~9AXJb6UUW4q%v>a6Tq_89eZVtOF
z-b}ww7Juj?l4T&=H(SJU_d1_&4#RQ8z6R_Mo6$snT#<thM~oY7zh1%rDmY^B0_`Ox
zF`Mwy_ur+5e%$IF)62zbXBF7R=1pRFqQzp-J_bP{8*Q}q*ZP(Tv@RTu`D}A9<Wx0?
z=DUzEjXt1Ryf(87EWZ$`5%Y5HrV)LaT(nEsJ2<jU^clS~uLGBUzJAMo7Q-X2@0IO!
zt(=wumF#?-$Vii4naA>GU88g02S?$H1DY681G&NzB}H~phkiP?GLN|EwGB~8hcHY1
zbTo;v*9a;>$TE-W6k}eD9wz6NoqK7EIOqn8y8xJ#{Tm93NZ|3&QZGPw_Dl%|HCO5p
zf+JQs5(0v3-^0K+2-+&T)Y?QuZEFpuWTNl7EUzzS!zjYi%C0aosCE=zXTp5f&b!DY
zAtdCpeN-pr>6k-u{)&>LS^f1FdeM(&r3$ex@-A)fKU#$M+3@2vMEIpYA+o1>6YgZc
z#lgMwKvsyBX{s5h6)nP$mQ(#1Xdc^j8^Ohs4(Pr(`j%fbIsp?_^B~NB>fxcYZee)$
zxDk?iuDOWGAldZAj>i1uLR>>(llG%*=S{gDt(y|0e2QZ9P$tN0l2Rogb0nSSVUBK4
zT%nA3pSK8~dmwClB3dX1``1n=2~%U$HudHpkFMuy?n|BzLP{!cySNyrkbeO~pmE7@
z4J>1Zk&4KN50jlCm<WPxC<LjVH`_N_`+$02^7#lmHp6BSo>(Q!2KwMS)a#yOz{t*V
zK-cb3)%io*M763se2l`dEo>!S!f^j_6Re{;aDW=Sv-Yq0j*#D7!j2F!6F>LZtfr*k
z*(I>j{wO;!FW_nyWA;z(^1(-RUdF@xNif!NcL`FQO%Jo}?9RE4flV;GJROfURKI=Y
zEzXPqjuI1qaN%T<ipLrgYqP#HrtIn<EDDgpiuDTXG>yVn4@zx4gPIvADUqQu=+YxJ
z9m{_1P%>Y|x|vEHvxK#@)BW{ky~<b67}*!bU)K48eb>eH6R<BU*7Z90(vgoD3Vzjb
zWWw_<fL&Nl2ODdXXpmz~C@CG*o79q1;B9Q28&}x0RpIUfhfG@5TpMb4uwu-hl{ZSF
z1g*LT_<6!i)B;ITA@<7EO5#CY(V@Ckqas3rq*k(1O?4N&fBW^L@FZr7&j2d?y(1WX
zS9OKiMcp){X<4JCRK3DDvI-GtnZAh09homE)D8{Cd^P<S-NYv96SEa<kMkJMC;ty)
zZvmB6yRUmoC?HBoH%OO)v@}SEba$t8gGhImbR*r}9nvM;-QDorthM&q?>^^U-#%kF
z28a%P9-MRD|G2K-)mg^~sJtRlB@I0cH^0$QQN^Eef9n;)Tv6a$*gHdb=&t&{C8ZWM
zl2O}`Q;kJz8Vz^CJ%p;}Rf>%WBerAv-$x%0WRFy9uFtTN<b;w&H$RDmtyNTLqQ>X&
zxj5Fc79^NhP(KXoe_=2PTg^d3VA*$kVdLPK*Z!8yLd|L%k$S8aqB}AOL)|u_xo;yR
zkE1Gf$*-2JQY$PPv0flQ(?wW5Zd4{a|AhXJ#EQ+pnnA!{|K)#uKC%O=)u;OgVT}{D
zdRIRjWjR(%*ftA=Db93-aS`=ExlE-$?49WDcDnNi{4_b4fk`<<k(m`pQ-YLUx&WEt
z&QYR|Ur}(;h=%4nRNhGcj4K(x(f)p8<d$C6znd!x6L&M@XMK7R7bxOa3bj|WeJlS8
z4)*l~dg1<oeYaqNU<Ga@yNN%#jH0}pa2g5@V#}#3DH)w2<aUR((SZGq^{EzK7(-RO
z%bJ4YUJT4AUp9*HlI_}OO2NlSYyF2J0q0BM(L12W{t9(CS9#6G$|?*;)=hEJsd5oY
zC)L8=a9Gb~vRo$+AWt1l^aE2}!O1BbJDRJIwptKjo5V8|=|KdCP5m{Zo`}A5X;#Qj
zO26`{2~@7<86F~%ZYhCR_chN*IKauiEMsG1Q#lTH@GoVDK}NjZ2ed9wV!EcjSiEWH
zeG#I&clhnMw%s8JJs(#fU5HDuml}3MF=B#bl9#d4%N08riX^#cS3_}}fqN5FqtkC)
zt@K!ZK9MJnKm~spNRs0R{pEeN{$ybg=<So?mNnp34Hy^UbiX3;a0A<;v+KL|$?oTI
zjB+3F&^#H9l0t%7KV7gHQ<L*%J<1L{xMr62wJH{;Bk-Vkz;cDyb^k0a+YENO2HtO%
z--{FF5=2OP?YzPd;6_}89snA{^u1f~oeF8;*RY@v_+(rOE13~c>i|X##4Dgr1%$NX
zpfZ8NS%Uhp;i!3hs^(+PTNvas@OeQh_57Wm?hd~1=hF2zFl41~-lTt+|H))p`RARE
zvA;LbWfHqxzTF$Uj7*Pkj0Z0YbcBc2>(2r;-EG*Hz#3fQfQ-oPeT->&WG5GII>zU1
zT1d`+e7hP%|C55YzZpO}ivqqO<zrjb#BArm@TtR&gmgH4x6wMBuVXg?U7yNz@D`2(
z^P*!y`Ok9mqP^Bih%My8(uSaGt9dPB++xr#ERkcpo8XG$L%Ih>qwPJU+1Ie=M2##{
zQQ9wY*<ovek!0@(ip1G3#@vYJn?<cDy{#|$J=9l@&Vw8aR}5_(h#_)T*yIBQKBFYr
zZ%9>O%yqENxL*QT6OtSUpKbuL#B;$JVfdXE#1}{VMqrsO{KQ&gHS`F07Ngqn-<CzL
zgL`u-u`XH@bR7zh$dbeV2R!Vj`13tK5KC*bGm^&ZRcVBUIG}X7<%6M7YT-Kw#m>Of
z7z_i^&=JCJ(7Bp}j`(d6h>7nssb3>%IEHtcslD-*Naa#LK9-!Wht5ZNC2})TFcF`E
z4J${l1!c|b?_nHzjbT`0(M1C+IRA5<_59m3S)^7%x<&c~^OH9I@|z;W_Yd>NtFVZZ
zQ2DbmXJ4^BMb&~IOaN?Mvx)u(PrWD{0in!dg;`7&4U4W{=hYsiJW<SS|LLN<X;t=i
zZ8ImSu(D|JSE!?iUz9q#IQh{1rQL4|204d2TdPtf4PT3IF9}gacNzNsg1_4G?<iU*
zWyOomDWt|g7pp4oR464^<wMoUZcGyvMZiODdEvo!z4j$Q)|}5(&!pUfKf8Q)UN9gV
z>M|d#+6?zYcv2(^{msj+$S50u9__TL<`(M>GJQg=d=&0n6Vsu9fHIY&`Ang5XDP)@
znnfR~0lgKfLKWOl9wsDBWpak$8B(IJA~IhiOO&X@M*3H6^uEQT@EnD2M{`9kI|v|t
znG+-`{QyJ6_y$!g4f~*tSy8!>e@?MTB|DDPH~!Vp>2IxC?cO3w)DP{3xGerZpXbiX
z^|rsbs*!G6Rq#ToL%9o)`DpmTa3q<B$0+%DM%lS`p<Y(mS{ObRif?tc=xre|Xr>*&
zE!RwO<piQHFTPgr*M|6W&&)ExK%yW}5B%BFVvFxitebvwVShJ-f$ccB%3prvX<>ug
znRxAJ^Q<6QTlMe3Wb+;lu`3M>{%FPO&mOWplR_|M2w1twc%Oh3HmuzcmJ@t&{Q;mQ
zt1vOHELr1%w`V$a8Hg3mTK}-qpwHn!H+&P;#o$c*^t=hePxO<n5(>j7`=bvJu_G(R
zxq;%F46eDQ*yEWAS^BT=FqM~f-{IiCu$o%lf-zx{IxfFjhdm50qxU%yTSo|JHrc0x
z(X72Ybn2TBVLLv098^tLZdmNs#JYez&fer(2o5r+WfxdfvV8<<*N&B>il7t;Z2uJ^
z_wK6IL&DqcU4}(m?{TE?j&c_;$898y%Bh|)<qiJJN*cuo84_e9+aD1bP_*B|6tb+X
zpfElly)rcDY`2Vs{jqfT;RPi87=m91{{Cc`C))3+t`J*s@nHA1&}`x3(l67_&{VH9
z)To^m<h_fp6R%@%jhgxaedBKmah_a~?{KGdhj~mn!B4J*UfMBOP`kTfi<&JqB?Da0
zT}-0urmHTgoPra1MP^Um%5H0;3mwY2ijwD#2r$#2TP78ntDc<aME6T**b{AY8bd5;
zDpxt3L#yXFEw(V0{98<Pt58ji0?_Sr3+6&@n`*aGhh>PzU(l)`NZ%w2o$*g-EqSbk
z3>Tq<<0J4H4vODIpx=S*qFg~Wt>T^Mtmv8NAhoT^6}LMT{{8Khl!NjRw%0Yqc(m#1
zWHmVteM88HH&Y#vI07t}XshDR7H)ChouuG-VQ4C6;tc(|cxYzcwlQ`Nm!6v|8(%HZ
zmFd49A@po5W$&PoKcH|erYunpASBGP-|&2eGXxFl1afEyaqP2oupP|u8Lk~}Kcedv
z4%>*O*DO}t7Q`+bItCMwK4615hb9YNs1KqHlaDRwF$WOuAj*$Bhk$s4yzc?{5s*+C
zNXOODdovZe=;}J+*cnm{MwoUiUC-DSQ3T|j8N*cb1DDft>x$oIV?cF-T~gIm)&-+`
z5g)wWr#+8<Wo{4i^;g-aH!U^HSZ&o!PnXux)wyTzS5fi8e)j42)!&Mo@RqS)r~YuV
z8IcADg@s-9j#<DWfD56Q3pfi6eMT^*o5=la?gFWckKaw|XfHMg5w3Q#nR0KX4}aL|
z0)25~HN@0!PPo(sMlBiAVwNP`Ypsm$Y=-+6^;@Q*i3?}e|6I@h^Rb$?0cT6G!dM@c
z;J#_F=-yErN6OjXLu0reI`G@Slb^#vg_HAL-Bue{tU?<<8Sd`7bpqH++@ByuV+(oH
z&2f8>3l10YCuIMfHaeI110ei7Z_9)1s&yg0>l-u_)EtrFFFv;ExLB9ClL%Z!r`4BB
zs*U|Q{T!3oF+o_DTW>NydqCNO%#lbtrZuwAY&pC|iJJlFg^Q~BHS+Rkt0JG$NhVW&
z=Fc`a(DNT0EU25i>^fpm+aBIX+|1w7c>>NZy~>{#0|5ZpX#BCg><xRdHY?4}!%0sS
z>N|043z4);WLVfDJX4;Ag5(23y)I=H>Zvo?qxBtdvalmUDA`=B|HjPEWtGxKY6Jlv
z)UnrC#M1z`yo-3a^1%}h-H=FNfBO(n_rrS#Jk-L_bc5@pQn_v!0gc|=7=zg8yo$}Y
zLaTJoq2(?)W%*^Bg&3RCH)aIi&SSP%FUP4UFV^bpq$Y{d?fVJ<+ld#{r6Ex0y*gaj
zi!5eKQh#mKmORynaQu7iz^T{b?cHin3~$*hHPFx7z5c-T!`2eGz&qXQkRw>6Z7VWH
z=`FX=ckLWXmCWbC?kTut(SD)cZZ!nvHgr-~Iu@C2ntB-%Lc;v)W1!BvzdR;*;E|1H
z&qvVn&m9BHmi$+Jmssxx>uRvl;@`sh;TTvVzRvl4H>E*tz&2im?};t6P|oBD!#S*D
z-ZcC7%c#}>;TP>nN*T{1_G4Pe(q@Fc@WUVIF4S>!MQ9@=zncqdINv_JABljKi<_nu
z0?(LP3kgJ4lkZtM^%le;4NSghQNSr94Ean!owpvKosBdD=<rDx*f(V;Jzybc4wqTf
zi?HoE0&1(0n5|R~jS_Y<f>ht^KVXd6H!j6pq=;uBdIhp2HUK3pw{^B0nG?r~^o_gI
z&v#RQP7l^*Ffr(9X)msMomlN@jq7GraRx;R$R3r<8O)iD-JIs|ry+_zt~FW#T2yt9
z4PAn>tG;Q=<NVw@Edt-&bI5pi2##SuN(4G8*Ecr;HtWtNibL>{|NZE-eF4dpyV@0!
z`>^sSIo<6`s@sm}@4U_sj@aIv>5^0pjb3+~AX3j`&k9w)ZZ7Y^MFTXQnRmbEnT9lS
z;nu3{z?8f?wJK<82U+ZIJvl~*kfkPeGy~EHqhx@nn4J6qnrpL(+I#r$$m}ga!%I<z
zwqTJCS~!8qp!5G?0ocBW9Ez;h-+<!F$gWRb^n&s3GBKM(6U2ifm;;fA%ev6VIFBH>
zWly22yW1pan9<-jl5W=P0%ol$Um#StRT@Z~!i9}|t`QzQx8F?#84jluDN=TG1zRov
zYOeKGvIBGdvKU>RKrjy*2?;+w;9#~n)>vU?YLseu&X|v(M-333db@zBuB%R0FoAm>
zqvK1lWzZ2?M%}It1kByCx9(0DRGIjnhV<4EePIo=8V=dgRl>R2L^ABWUL0$^tz(%U
zyV}3BfkA!Q$YvRptR1p={G;~?)Wq+uCVyx+?~o2)SJ#|k{WU>mSrvLW2kKV1fev7T
z>-NhB&KXF6xaBqn8!;H<1u-}rs)<NSPSJLSu*I@ha@cqU!nD~8vGq7Bb#{<lhNw2!
z7oF^WdIlCfGwz))KjL><WrpHd&$DVeuK4^oT?WZviB;ke@>rZ9gv$>^zmO9Wy#KCF
z{SLj0+<KR#s~lYv=LrE$p(05_ko<Jm^5p(-Gg;!kQPm6zmC3-p?F`BSl5<-V$e~r-
zf+q-~s#RU;w6~lP=~Z?dVrR3Z3JQV%olA_$>Uv$;_;5LAJqe;+ylc88l2}I_rTl5T
z^E~cPgn+NjWgTn*DsR1Aa4d(K>q|w(Yb-Sn1f8C#1?mFB{_za@fuWY$VdS2>4ohx^
z`hW}<zhNnbNVA8%W(c-UMm0H(tCNu-#zA{pK<J|oB@~Kle1o(0@ynuC@KECQO|-1!
ziApq^?_%d5(wPhUQWN?gf7m1r0|vbsi-pF`WBcN{yECvBn?mK}7lZuhXj-oe*QHva
z5i9ZE({gf#XTb~<vjxp_&MfdWMLoxU71wQIvjGGU5EYHNg6Yas2lD00hq;opH2Z{F
zuomBjF<o!DKOLYo9Y&&`BY0(E6WH0)vj@`~L{~3NulNZ(e%ba4D+&|UKHJi%RQA5#
zs*Zu3fS$ppN~#h&u9T6d`CF~rGBoLn0qcbZhZ^TApukZ+3NGYv1}DL6%!|TO9O~iH
zq1c~4RZ2J=4NX~$PQdXFG&(O(wvC{ZvhC1Q`B8Qi5^ax!g!w!I2;38(y}KHO0z9Pi
zI^S?f5j*DxK;YBR;Zv7T{zg`(9w{h?E0a*;pIgh<tYRsjejkAMN%0;M_pN-_vyy;-
z^u_2AFk%xwb9Ee1h}(&atS}P~@+_8HJ?m4q3vvTg;-kU-H@jiWmR-Hxc!_|+zECX5
z4d#ciLpnvUwRTeD$05wO6}g<Y+u`xIpc1A9Jz|ZJDR)YohTDa_x%@3yC+Rj_Pr-hO
z`lIEBp?h+OkTH{+>aJ3=12hW`VHOc?QjI@VzqzQx6etvx|8xbR63XaPMLZh`Y&JQY
zumvlZHk6Ev<D!?XP>8T^MrQDWM|o9O2Eh(+hhjbPvy*j`o{^NPzpIV433(`Qmg`<o
z%~Syf>PsLIR-?y-xV(%<Yd?Uq1a!+gi=f-|kDgx3i{lQYt4N{Dj`fnrQh!ZdUryjj
z+giSaUjU$lbD)e^gi0|+jwMho*9+KRYFUC-R{ec`2bSGMmg|E-)^~*x(GLK>tFp7w
zHb~arF44$Y#5oFTA=_j@LABGtp=_pm`98af&<7*q3?`%s@xM&W|7!usx&mhgoX&(<
zwwkp2-bbt)!jO2ut)L`?7L!_Q+RqH*q5_MB`e)zVvrA)&NIMI1YJ2%ObgJ-r8l*66
zMt+C)JmsGQETi>wYrSzk(<R3rYq!EBL5m{|aJuevSi_PE(}G3cUU@DUetxfQTs4JR
zfw4sHH{GIJF3Rr|@qvOt{{G(7&#&LQM#Twdk1geP%~ylC57ly7UXTLf{7~?sODx13
z<{!!z0tj&}>`zAF7B3XOIf70_Z>C&dMSu-J0iQkFp&hI=!OC`WHDHI;#P9*S4%o&<
zAp1d-2oG>`WH}ryS_9IG>e_%k^}sg$p?WYBDy-mikt(@T0;bvri?``y0ts5zfYH(q
zPCb2~TCrYq+7gkIi|#wL3bL|-%{uYy+Lq#ekONGui`C{`P>hajJRLf;M1d%UJw&pU
z5F8fC5i&;RM}R4HDa_1<(l);;@pvdOfY7FcPBoeaTL=Bt?+`y?(nB`XlXPi!uvaIO
z>Sy=ZU(hFsIc|0}odSSWIulaut2V@Gf*}&tc|{Lk(pR`5v`_tH9O>=r3y!PaAk%ll
zBdk3{gv?t$F@2kDY=LJm2s-M8Id6&Vb#yYcAWuiq`OSZ+4&6=2N*Pn{)oN(9VF7jx
z&WAEcbFQg%$fTv6ot^rRA8P%o!6Qa4)dn=6)#p2FZp5=EmxT26QaZY(iZiv(dN6=r
zyq#qkX1ca;x?b^PIs+w#`eEal<imq?;{^lvUkZU&kX+=h%!ul>Gu>vx{{FCSZ<oMg
zA6l#<enYkq5BD?0sxLBPSgmmv3T<y(VxsAwS=E-{?Q=c@J1k4@b(-X7=;bf(oCbrH
zT)1vkL%&z-QLc(((K2aU$*kqM`Ck>#pg%=I(JI1;{jE=V`xEqsKXYSH8_BQmIYc4N
zg_i+`Is)7aCS?%N=%sX9eeJk!6z4%QoB1CGaIO>ywJJwaKkvbj7u5M=_f(e!2DPid
zc?fxz-zE_bt$HbB^2zK92(J7hQ3uiC8<QIjzXmkpXKclGdt^NvYa;9(O0oFLAa}r)
zavKSH(Q)l9+d<_x^pxU>XFL*tgWpFbUE~?gVv>Db+#4`fuc6uG`xX$^;B}26zK_sd
zJH-9uO8eQD6)i*B)g5f$Osr19w41b)BIM&ibo4t~;;OCTp`odj%MT3%)VMhCWk}L%
zP%CE#HPe!G5H3nADa__S(dGH}1Hrd6Ld)2x{)Xhj4c76e&ry>$Sm1<PUOW82^#pQ&
z>R||`-T51T$~wAez&!7@?;nmlrVDbGu>m=YzyW4pX4zN`;EH*^!#A^DeG63s$sA-V
zmJ#^QaQ?dscnY#VlrXnw4ws0EdwN*aj*t=(`+~^s9cz#bo}L2`Xnay_$3%XFE$~L0
zlj;5GAiDR>!%rHa6EE)UVXeeCu-IYFbS+fU^_~RPNd3b|O8o5!jUL9&4n7Vtg^|As
zhdzn7+8sptj@Kx^p0{1|xdeXJi#Pn&I4GQRIDRmrP%sGFjgBA8f*tG9(pt-Le_%B#
zF=T(d*}oWDvW1lYYAk~{ULkp2NW%$J;`TLRtymp9e}|L-=D#n}f0wP{JceZ7+vb3<
z(B1%gp99Vo77___-l_-Bxr$RNgTkA4{e@?E?lr=w2y^)wa;dTcdc)HBx{;EE#MzQ2
zhQ)(G96Ii_;=Nb9c;6H=_ZsRintY}=KPv4<8BsQhUBBcO{mKvL=We#x@XAeZ6h@7(
zr(*tbPYN?-;vxHpEA`;#?kG4Nbc;~rTunL20Q|Y%LteaLZA&Pk%}>G5&FOZ!<E+a4
zXk1nm7BzdOgX{2ke{=f0nz;-4l34oV2n2hQm(tD244qG!9c=u(Of2F&bbJ64CM17x
zA`5$mWvEw*>UJ@>?6$q6w_p+e3<!kn{>52$u{RA*^HJAzcA@PjeP>&@(=G;d=d;EF
zJ>jSA;T(7jC}^c)w@W%G%E%BuD=9u7w?ff<z0^JYrQxDud6E(u(N|-=A!?rfN4CW(
zwC(mdgk_OpV`GCXXy8&wKao}Hz~l{mT%Z|;Jz0?(o})=a5oIjK&WDdkTY<TsM?}CC
zCq1*!rt`_sk^L1by=Bvd!X8*GNnqtHJ`2tYFs3<+(QNiVZ!m2*&N=S}i8L6E61RCn
z+@0{?o~ETf^XNoOst6!hr=Lr^J+$=sIq$tQka=KUP=yusdeQyPysU)A!jd1T#h&4)
zH8?7mx~0Rru$+J0pJ>2c1M~MJ7nX}eyZ;c6)_K+~BhOs^5|ehHOi>}{T?|Hmrl9BS
zCX3QV_oNt(c*pZ3<^TTGEb;=%&7gGn+H^uozX~Nvd!)QRUnPIS+vxgZDKH`#$q4<(
zL<!ANyvV!PKKZpuLmitR$gsn_Dn4_oU-V)vkUEE2OgH1zbW2>|>s$-e*rB(tU&}$I
zqM0}?L-a!`6r#Wvj+iH~TE%0R(!?;CGQ?EnAu)Yd$?4$d_p)=3I$8}HmR9&_KTxw|
zA*WDzKf%yWRNokmlvN;i_Z8Aq$_Z}ed3Ef^=pZVeEh{HmSwJQ4R$?7k(Fo#;$?YSk
z46}n-&13gx>NQ@4q*4tmx+qhsPk40oN-6KYhJ%lT;B0tJlc2r9$g1SV&k49Bqj&e?
z4A3A&v#4z+mh$9JcD#Oq+vF(*O>R~6-ef^sFvz1(eQ^&!$HsL{+296EB|(a0<#AT8
z<*A{*3*sJF2|02y)BR4O_F#|Z5_|^#EpLgI)S%GbIr!@5G(FENwW}&ZZh=V`uI3Ki
zM_<T9^%kl>!<x$Ba@@{L@)tgiZzl(yYsRJbNO*X(Za@I^W9wk9X3s@$$!zDO>NUFc
z=rB+Mna4~<Vb03FRocNU7?YEeb9@H~kuauv!$`L6ta0S&<+;`pn1?qfYCdSu2kmO8
zVYG+Z4YoTOf|(yazxrt8((vbxQriOoZfEV`>dBOermiDX?%`!Ug4RdOSg%ofCDU%E
zZ90U@sZ^lD+5x&h^hb-u#=6lPai?1R(hOz=wQ|*1=98kbE<1nbj@?gWn9K8Qv0Af>
zuhtKiT3T3f5f%)jRxMp_W6!-%cYR=I7nTWDXUl16XXs-=yYtU0ZJ7hwbp^kr$Y_}>
zwtcHQ<6!NgGWWQS&4|L)0)c7s@02l1gj$_LMj<CPS-{fX319hb3>mxVW#`QuLsogC
zQsiA~287xDvPctC`&N9suzp*SKt^V}{skhI3FT~YByc|_B)ClQ>>{(B1%Cym%3=kW
zfoZ6GB%u=38VQ5J&w_q&(b0SN6z^`TEthg%j&=B6eD#VWHIc61^HZd<vH|Nkvw24)
zEfH#~UDgE;A;&zqcX5!u7IE)vqx#1n`_yEp0~61J8US5}GF$LQ<@&SZyc{Lv@3{4p
zhpfg*rBlSixPv{gq4cDoHBc(k@uAxSd!?xiLtWnd>Ti#n8o<ldfMO=HQeoORPvVK1
z$a5sN6tVngQRZipLiysOaiSeF=q`4cE2fBbrV``CcG@n?6<DbMwpakeX`qNqmbl(u
zV#idb`nv<-A2W_hL<mEtU(uV?1wEp|ZwC5+N&zK~S&4;=kZ{CAPF&o(x;rUVvyhg-
z&|;2yXJ?@*#t^og$ab+}D{UR)-N0f~9aRxOA0KXipvp7vyze#3jW!<kjh23q5Mouk
zyxp_3TxEj|x5^F!1H&}P(z74ZHjPBMA6`48o=+5H(Q6I6Q}!>=cKKbZ98Bm_{mX-?
zlmBjGOT=ea_t}CeKb0X*P*bRuu^aeJ`3DCzwU`!X=s$ggtyi%7ck31lc_Y#3D7Z@{
zgV^yOZdKGV3OQxZ=MDZSBmajt&I6B<*0qK1Jrfa>(X|!odj7}$Z#su<CFtN7!^+uf
z)v?uz^p&lxk^#l4Z9-t4{PnAtVH5>vxumPl2ue*$>-(bOtK_QMnfKm4hFNy(d#A)h
zoVdn>fnV7E{Ir(1p07jIUuoaSFXRys6O%>HW|Tm4o_lKCDL+^vUG=^&OdLNb{#9H7
z>-GuZ;Y@J=TaohXr+JVi`Emd?(HRvL^*JV@-0?&QZ<w2w|2ulBIvaRF)QE=>JhHI1
z9DD8o;;HG-y*Q+MgJOx1Rm#Shw<$#Gx!if~@X6&DUB)u<Kc@?=;{*PFlp)+&18d71
zG;Bv^;kw6K%JhGq1ONKUH#KMzLUe^<%{X_N44U^>qKBj>5mu*<{a1F5U`jv=G%xmt
z^S=ZJC7-q2=p<plX9O3Gp#psQNkoV9Ri<%6hL1d2W*GbqIBa646^x|6mXv007WmAK
zXO$IbV)O-3vIP455bwmy%#zjt%f(rzW9|JXRsqq0f#^>SU&a^;ve@$z*ZYZNeL@|m
z;KzpYMJe+s#?12z3(?p!J>-XGxrjS}iL%i3czu0c`h1_y`ycE^FgGfX<D!s{AvGbB
z_<qenoL!$$DvyJSiA^rV+)Pf|peTJlpP!}7`k$^AQ<SvhI;Nd+v%k4Wp4UL0_T)&Y
z_|&0<e%`NqdQ;{(6<nOJ4r!l-{~$Y+5`Iwr8FfrVM0Cpt8aeZry23(ncz=+&qy?Ay
z97#z@M;Cj1{H;kHOxNfbc>?00@TyWPBgV6jd1B>Wy%d|xOR%Oe4FRMa5#ZbgK^It(
zI1GZ-hf7pZJ(3aS{S19v<(fa_ame4MP{@l;?8Cy2opd-O#I2s{%p|plOmES(R<jEr
z{^RZO_z^GDaMIkhG?om`CIOcgb3qW=Uu)F=E+L<R5vIuCtylGytNn+!4v|V2j)X=}
z6lzgUZ5W4wVW?`(u&NK;y2=RM1!i)<Qbt&sA52@wcz1U<0P-RVU4<1jH0ave+MG>^
z1Lbf2x%8x;?B}yF5|0#k<wpr|ju0TZL&6IaDy*%Y%p~QXIDMc-PJV??=@)dWr@6?b
zAHlBCE|>D+iHDMgdg7!>Uc)d(77_~T<y7wTtp9)cl~#drEG8yauv3_9*s=#3obsu{
zA{XkKxmaTsLZy%FZ}uH8;2epiWo1eJ%a2V>^o^-nep2QihU`vI2OZ1(w(<iOAM;5k
zU?x}K*!SVn!$m?$6CAxf&bfVnj6Q&PHdfyb06RuebE35^r+a>iNiM?cW5kgMmJ<UG
zpt_zZ)AbAbGuvr3Xa8J)=!5@fa|LZ@=lWu5;CdX~H4_!o*4CB~8LIq`_vb$jR@!IJ
zW0sHD`NFDJt1o)0+tqcY@jyK}^xo|vsH&NZ;$r^xKiifI64dt2mI0|TnAq)x`=$_|
z1V(mk8r!!DO1Ojq14Z9+ajEq8Q$73XYmjhBT<@>Bz!HUE;K<z}LC@eYre^V0h9DXQ
z&RWkj-KAZ|#VJw+4M5E9TF22@v8yX#(r_t?ii>BJBOOE!bE%SpPKiNBAfN8)Y`A6m
zAeBMiTTgF4RwU|GKV|NDgu|k8VWIGyh?0`OoE$4D8=FF4&_HyH%uz?XtyWq~Fg6oU
zj4YMul-_QoAA-J^fI#VcvM)QfK-`@F_!<r|Z1m!bfIzSBTb#-mlLaGsj||iX;g|}U
zFG<W|muBkpUfohL`bSNL2;R3Pj(5Lq`P<t!T8G5d`Thxk2wG8U(d=Lv-n=Zx$`ZGE
z{q`-FK?@jm72d&!&9e$=#U%b`7yG}izBHTX`^E;(^73z|lVBr-2jQPfBo3nRrhh0`
z_#9)cAP9vU$Yj$<Y;A6;x|Wxh7uB*XUJD=AuE``XWr6B5i12<?$Rg5VQJolcb+Mq+
z87S4Jte;P`NFvYH-%$Dd_G`(ntNOi7VP4(<o?0~}CE~f7qp0O&!h{dnd5dBGu#?25
zSph*ok@%c4dJFaD45piu^^K8{*2xHOCB%axVyLfnoVA^5fD178_!)Su@MBkpG#Fue
z?j=0>cC$p?vI(iH!so!#E@W)7HX>~X_sy=z`HIx&ICQbcwuf@J2P&+ei(*<<I0_}e
z#aG<f$96DVQdmf{&~kt8x{&%Dt<e+spP>)`TBv&t@wT?u*hV$|H_ZRPMtT4I8{37@
zgx@4Z0;X4Wu8A1Br@V!P{08c_B**SbSIyLFECOa<Gj_IA7^YIWTy6HYc?lKTlHK<(
zsp@Z!aK-liiB8m%E<9a-4Lu<uQl`)}Imy&-ZIidY1<I2_N=hp#4^2~o3l3aQ6ztuR
zsb55u!1fpwe=5$U6zIF5OJd>MwbkCvH}2~B!4ce}Q&R$jh%{Us88-jLjo8SRDXgw@
zaiA)zkgWzqOV<RTq(^UW8{GgEJ*`F#p7{d(cuQ+5&jR{5!T*To{o4l@*j%<$R(`7T
zCsj8j{|2UY#?a465Qai+kAK}#{rjO^$p8Usxw5Z%ed1|nP~k(6nwOWiX7Lr2C{zX2
z2(VESZm<sQ1#11NESBYxcd1XV`aT`(jD`FS94@sTD@Yf`5)6!tRb2+Ku~3lrMW+uB
z4@J%k17$~G6{-NAvgBg<i&H7c?O>xVj9t8mmzTHP>C8agPwYz#-anZVFs-EB!^4{Q
zz})Sh(ZqIaQsVv=^8*hU5<Wea>-Hd!V$)wu{Z@D@1tQOWoGKJ`Dma3N+~PoQZ>i61
zC`N4e|MCc*4dVgF%ANdTHxoH2DabN2f3u)ika;|#81`oF-`&Mux><632>(#<10fNx
zc)J49m4@YG!~bEgj(%zQS9>+O0)IHb&SXG0$+P3@Z2qma`ugsUQtUSoJJ<X7N~+!n
zZ$l!zy`g97Y;sZ9IP`%WUgiF?{l3z(>)??57N(6!Afw6oBJwQ`Gq@!^LkkMe={|9t
zgu3?}A^QyDJz<u^{Qp18@uFUM4}0QO?3n#$Cfldb*4;_0$T&s9vrUOn$ZhbXCe=WQ
z{ntam`gj=`B)KLA6L>_13jGQQ_*iZrkyHEv(%3(<q`@K-g*r}HS=lGl@8$OCspw4Y
zNh#3CYs7F%1?2_>21a*nB0W6YgsUOd6%@$+p)yR0i6I4zX$-idpQ{#dPcs#hi2vOW
z{{MJy$w}Wm$d9-ir2eY|9Px!lAy=p8q;rv6{h~SVTUAc=uNotd<ipdv<ISq(gI-%l
z(=H_Ebu_Qy&2?Qf`$6=_2z(hw#6axN>Q9TLQg_K$0>PkHG?Inn_dSn5Cb^|dw<@ci
z0I!l3+})9y(lp>1Kvib_kLDy$N-}gZHlD~j<%70AI^)%LL}4NSw6K6cUc94U=2Xs$
z&H=y#sFy0eenZ4agV34*dcL~F!{-c|3SfSf|Kg3JgdwV>l~xV8kn=$a>pzr>e_bAH
zL2_B1un`jSfUIs{wqb^6EIfgRfnnkBsG!o%u_yU9H0(kCQAAzuZZ@X;{y}lB2rq?-
zYcDWSf24MNPtfhUy`x-za?E)pnO1B04<*AvZcE|x!NmY~%&>+_xdtngNl}>g2!3q8
z<U1DoeZmCpr+w!I<!ZB{#@k);i}nMEtNR-&5t&u!1}}=0>bb{scc}h@w(}Z7PY`>K
zA|mb|A-`l93*=Nmy0N&C(R3oR9@*pTMUFS|#&hh}0F>}-d73V`+$(8`Wm$C0eEt{V
zT3_o}STt7&aMp!?r$;tAJZe9=N57GInk%OT)^o*xI~~1)S@Y9Hmu5Fj9Q0lKmO6H2
zxVH~_4wq#|=@aJO&>Z*Krq<z~ulI@>ZpjmILaK;a#E5St#!@qa>9ZYs0>5nO^MR^*
zis*RW2A&hW(P)$fG+XqNhB2W}(=A*hs@}YB%>U7LmHhguiO`>LU1vky-|jOo>7G`-
zd%s^Xyz4>|HMD+pb|z~KDaR>^C#SAXo5*4r3q)*yrBE%>{r`Xr4CjG@c9p!w#loUQ
zBFN6lG7@7$qU+FZ&CAH(qsOUtzA(|(&b2u1YYI~mwFP(oY`LV8QaqZvj7&x>tvWgP
z<8>yQJ<ag5CHZ;wCjwNlL_k@|p<vy8^TP9_f*x7uTi*NZixXfl{{As4TlH4tg2L{I
z+q>ORFx%xR9sfp7o{iF#%XvyG?S6|pmA1k_Qd*3GgQh_1+WmJQ8!>hB0tJ0zsjxB%
zb+JPVp45xogC%YWj55<{2ueyyQ(G$}n8u6ECY5*J#g7^rl)zG*q~r$Xjd0Yt`@&uq
zzxPP^vC~8zgb9|hP*dZ|3K2ONtO$j@Yx;DR&VO@zJ-z3M^D@bOw$J2;Ot^rM&?gGl
zLxwwz1u8@B(02yzlV51f)R@4Y#rc=j)dW(G^tGDM%jxrE2Ms!Y$z2jFtB9#9q*!Oo
zdb4MP8;8lS%S{P|f`YEe>DVRSVy4tu7sUGucC1f%hF*9y^d;e`YR7)B#;fEZU5B4m
z4ylWF-EDegML$%J&pKRvx^h@?bPt-J8$rJ8=-|(GxqAQ5SfxKuY{2An$%cAv`Ay|Y
zFBOC9X~|r@Y8wmhVPO0YXa8ue1ULGrp{bx#;AQUx25G;n<@%?17`T1}v)J+n9MY@-
zLXl**7Be@q{MSWjV$At3$iOg#)#BOEi`>XP3(BmI1MO$g$eeSiASwvfK}vUZ&^s(Y
z|8?K*-<23Et0hIbz*yn`?ACSkPyJs`u74iy*iz3<WMEYtE75Fm=KQ|>GByz`<9~T$
zd#!_=T20~lAJm?n9{5)^KYsk!Z<|F#J_qw{98y<FF)<rsA+y2)v{7dt#_!PBgvXO}
z^uohYUv}lbo`^8muAaZLwk<YNvPTFCEMw=?9@>aa8+yIpnX;_q*I2eJC90;<U|Wv&
zvYDVvfKfmQ3#(z>3sGe%LrX=a{Qj&@)h?!_@wTk-TBqpcCl{Q?n_*VnXt6{?aRLYN
zm9x{0z4ui4#bGvE;%4Vg->XUA3+&~*A()bKzSspM7IJ}W#;2p{-5NS+hU&xEy<(T%
zt-E(q=HA|R1nF}L4d=$Grbi(1fh68lf1YhCX?)vec%5yu2Gm=(4TNMlp;0@GWOzwV
z-9}g+KdaN#mg@VIo8RE+-P&YWHrPu<`}>c)Y6u7*X<i>nE-2iZopoDuiduiX(>$5&
z+<c_N9kz^^?!NxkNg9_#grRBcYq63Yw?J}tMR2+@g|9hI+<vb=`|E3ccwrM-WW?lg
zAkvY$v%sUHE(RR@N!%Wtq*3KDR?IrhO|EUrHo>a@9@$r~T#>d{M^P=IC5FF&#$h?&
zg?AS~pBhVF?^Duu{B5cBe|*t3?)xxYs^@EkZ-CFM2hcIr>%GWL&ww}mfWih1bO4N%
z8v=-s8z9tC?`8idA)-?$fD7#T0oF}D4()jce0x5+Y8)qyZ(n-8jb%82@aW=i5RQnd
zRCA6RAhJuG!0ozbQ*>{2Lfi&ZY`Vk?Mu>RnZgb3iE>E>RukpC|P~c$C`${MZLd<uZ
zw%at7AXh<!p#R|R=X!ZVWiEoHz(Fo0lQCAhTx}+kx%*>e=8$m2S6{>uU7L~dsvlLV
zQCFYMa0*&K=40zDcdTLCkKw{?91GSfZwxNg<O9N#YuU}c*eN;1zLiPKJGBC<mgDnr
zyC2{Q4F1^V9)SVobrijZ`wrcn^JmvuX|AVL7v%<KS&4UhbZgxR3Ud~*b`DV`O*Ik^
z2qs6D)j|){3TDSD<|4)&8PX*Qszf^1$IW!vp;(+F`b%!PbuI8cXR7OqzC-0LwlgXs
zqQMaa?(@6j>diN&@0osOR|j}_>}X}q-A?)WZRBoso1UEg?i(#P5^>KwMK^mC&le39
z=1~gnOtnVy84k(l7I;5m4c*?+@v^{S^l!W3f0xz&{3J;U90;RcyuY4xYWey3YQmQP
zhCx(b*QwT6(4G9jVls&)bzUsh_M%a({!I!P-KN<3O($SeJ&B$vCMp^o{^57_o5O2n
z&zFevn{#jV_Jq^0ptU9)M$+)v4FS_H=_#rqyS&^YU>yJ;B47yA(#YJ!6$VI;%)Y!W
ziql_it+yBYGUc8+l)}louTwcykW6~_+Vgujh5k<YRKMGzLy4H3{;!fxAqPh9JvHxF
z)x^#lZKfgWHh(@<#JXr!n<ZC6Bf=kT{btXOAgz{QaED>~eKWMgJ^qcDKp2AhF+IHs
z)%94_f9YKzQg~ixH5;3dYno4T102}%I}FS<3m7aaR}}=ki;-hdX$-#PzF+07bG2x^
zrXD?i8~2`>%Tl5WSLHG3eX>)7w;c{yXuJimnS{|3X{!n^dy|DHCDA;STi_Oi?Elv`
z8uZB|&!VD^*@}kk8Ql25z}I~swWC<Q!NilX@ai1~#-5Rq6F$&OT=JLh(>XKir`_w;
zfubDigVuM+Qy_nVkFC!=Q-_QwgJZZMSDZ9mKBP6(A4E|MS{8nXf=^jd+{B+Nbe|Bn
zMDa183O!@V{hSVq-MC(y{mBpo8I@jDfi}kB(Y;1&W^K4mK-F|;u0^%^@yOKrwrg7C
zX*BBnCt^{1OJ#Cu^d=%zMS6$6@lksN%_kQtZ}0x%K~udAKT9VwcUzsnB&V4W_QN}=
zr6{~TMdcm7c4EE#-|+g&@sucNsqfoNo_gEd%2{kO3vbWWXR3@tVya0$FO2*3_Erq}
z{Bpcms_;NH^eM3GhuFP-gUKOCH6W@#YJ=!ph@u~yaDuwC=#eMT*)4Xsm|X65AbPVu
zNuI5uoNI2$Vll5}I@TQ*<naxhVsn>=4PyHZ7xxc$xqZP{YZDG?KRX44dYj$q$_);f
z0d+V`p1VMOEY)e#sEWqc63@4?TY^>Jzq9+xPxU4rf2XHMemd<xSX_;%q|vTd++yqH
zV!6hqrLs~4J5lXh+8ww3GlpSNTuluoRtt+wY=KfajgPm6&KsW2c$F`ClH6B(atB%=
zIN#IK3SOPHdVW?uoeTqYqL?|QX_I^Z{CYHHhyLzP=6h07$)Ky#vmm{@P&dfE0!{ZD
z{-)1J-&U`&3~96-L;~V~l3)aS?_gT9WO}0(8h^pK-$`pY?CjV~-eakGAuFv^NuhY2
zqNGW|P=79EYJp(X@CTY)<<1|cXE_>}Jw*fuzqz?y3oCN9M|3X$(kvak^DYccSTYVQ
zKR7WEAs;uIDI}(*mXy+Jd%Vm$1Jp{(4sM`&BQp*%ySvyUm(7)&-0FQMQP(P#H2@vR
zZgq5A9JSSP&?Ut{7z3C>lY!Exzucv=KIL+t-fnNgt~_nA%2?loKdb}!{djK3B-1L_
zZZ{4=mB8?&f$QZARa;M@X@A}H;u7z)noTJB)Z;O~Z!^Bt!=OyY;Y!D?NcQ-zp-lBt
z;EohJJu^MxKX6O=>{JWP)Y5K6tP>9W3RCVkCOg=6TqTv{758UbsYNY{(}jI<tA!Uo
z`iOFa35fgp%6=TB*DPx6UpRMP^~~2rov+7V*BaS*?324(uJ^_UtKT+|v(#8A7#DSa
z8iU$<z))wEzb#mbV!cTG?#xV029#32TCr<cF!1o`6xEr;gw`59Qd6szVH1xJVP`5B
z>`(zTY5D!09ll50hq|8H9()hg!`lZm=PTfs?R&cOcw+j>Rn~QNmK~Qu3d%%U_4-aR
z5s?J5!FdvR3_8mR=<L}w_OD|xOcxUq&=*ZIzdS0e=v<%N9*#;&OOfo{L*vSHUx~Q#
zReJmQf|w>hQrXFyzFca~DdQoI7mO`e$C@q&W}c<<wN!>xpD!IB?s(_n)xNbElO<Fw
zG&%uv>uF}y(V*8-#mSmvWC~}LUE~4Bgx%>R_6?tM<kk9bhjvi=o{otT{F?OmGVso>
zXr+-YS}`r<VT#$&GUDgE_g|5#3WN(6rKg3YF6#VZVgdH$0d0(AlE}^FletgG4_Zy5
z6~_KxTt{Er+fB{GuIafR%NdZCTJ)_@?;MCYmF}J?PM~cUB5<3i_5Ocpo!^h7!(JyH
z*AY1*@naccU}R_U7%6asH`yPkL}m4<!iFt_abdL9GEdYQBmW%Ab`ErbEM0AmM)sY9
z*$IVfsKg=Fnt?{vcp|Mmq4NQ!ZDnWfWhr#dnxT5(%fXUGhah>b-N2(Ub*g?*y;Ubg
zQ9ZQ`G>o`0315j6qSVIw+D9d1yx)wc!F4G3c+{D>gJ)E(DVO7_dcV(8w^Ph-?aL-R
z*74moriZ5q)IueNWAVMd^io#P$8=e8kw3X?LQoH%I1?&x+gTJ{?-V#_L^ql#Qak7V
zt`mP1!lACXCUWh%IOs8TP+kM2bKTt0vvW-D;S{mHKcgLHVbjv_^-6xB#&X(V(qmwd
zJA%zd(ykAF1-rA)Cc5`<Qx#uPr_M{^{v|h?L{LEC_so>VCfSz+4d5tl5L!6{i?<>@
z;1!x?IGNC9r!TbUyPg{nct>r6;|L^4@OqbQcB^V~aAmW3U!m63NU0ikHd|cwNyb93
z7^NSt{cd7OWxU&XYhQi5*oc#ea@tyw$8kJA%6NK^2ynrp(}oi*d<8L`U>F>0Go1Xs
zX5lg`s27i~Uzu@Fb=+rC_UgFy4@DSXUrq{4jwj2KZ8M7E6rR-i+aHY;L%6y{m0DxY
zv%YiQ!yA5~Zk)UVxM*nE0_KL!Xk3~gtjBsv*>ESn`R<UTpdSnXod6oC$ZZWk?BW3J
zf=YXt1|&W@ocE)U9Xi%1k?Md5*!p<jVAPZvDUS<)lhf@6BF+@=VV3!CUKVkjQb0EM
z29I6NU?_?5IVv;e+OCANe(+&DC!~z*BbeXIM-7Q4&im%1xEws-*|teZPNQNv=LNi3
z>q&iYD2}%=wpDr9XFayOXuYF<rL<D|<$i>}WdxP5kY}UK0j@uu$>ztr{T+9u|0KT0
ziJ+lTGt})>_?|nL(CS)dk&&xZ7-j_BaLX|_)9A7+HEzlP9fz1Zvqz2?rhR18n%;Wv
z;}5QRo1-96r21lwpKEa6^^Z8*ZGLU)_VXrt!Cc9-kmvTN9yxuDrN2@$1P#lDn-3i0
z)zgLwFF}YGL5of4DtJBc;-!nBic$2-0C-%*dRgP3mR~3FlXX7VdzjNXt9LDIA;aga
zzD?+9`3?{Ah~@F2?(^L~pG$NQL66;IjG^jPCRw>^&HD>=2H}dPJH+7xEnYYJ=3@>Z
z_&iQzaQr6qF!!{ns+o7xeI*gS`15RtRQf<X<<mT8Z{{%;Di&R%mPu13n7MQ09Ai!Q
zWri(gdGPNijJAlN`WY9TwA8Ip#w~GYF)qO&d0y=-NWgDOxF@m1JAM*PzN%Sx%z`Vf
zNw#q=sxlNX>!T{bSdwl{*;iR%EaVEqL8qghnn=A~{uLb9m<)uWsj{FW^o>!ue}(DS
z$M}v52Ydc+7gzsB{R)0-YY+K|_mT&&fKl9orFFs`7uG=r8WW+0F%tngN{E*cmO|o3
zCD)A@#eP8y^{kh2Wo35lucM}#edN1==Fwc;>SVR+lH%4ann&Z(!dwJ%%KOAPFdW7B
z%A7w%MXUx+-NhuL@9`k9sFZhYSG64KwUBT;I;UcEoXNmQX{g!m^Kfe;3(oMCqRcn3
z%AgO1{VR`FIJ&h<zxFN6UO!HAam6AwrX2bD?_o~Dx#-FD$<!A5xhYrEkI!^!2Dite
zltA;d(t$(g-ykggbMI`a$`sv$Fakjy8dm%1)!>t(P%_5Bojja&nHAC{kI~#ahpPo{
zaLBSsfrV>&QCK_iM>VjBdTx2u1r)?$HUuVuhO5o(G6n!ls_+{sqG?Xbe4l6`49q}8
zuOGt-p)=P(WmMG?#v_lOfxz%`h0~d&`PXr!#$d2Y$xW?a(3RCDJ@ahQ04@^k9oxzL
z!CCC`75Ip_2F9tMUtxCdRtF~8rHqa1BwzDxaHm|yh%tA}nGHHfDk}>%>6Wj~y`^(1
z8&5iWabrMDl!?rlITZ4g+O+q*BxAcd?wpSgmWYQ>#B(H@L>-y(b>4S%N~%XeE|)I4
zygz8?6>iL}l2Hh+g@q``IMTgQAmQM4IPbT94*+eLrRJ%IaQb}W(!kKrJf%zZa0*++
zRbD5|I%D|YM0M+Q#0}GK7U@QA%;!9#i`~hw>5dLB=gZ2-qAEy%G=Ms_MuSQNdVK;~
zxZ&6RX`yhF>uA&pNUsDa8^K=f3&|IyS7H=P`6{765lq6F>E?2Eh?doD2km2`1THQ@
zSa&lU3k5;dOyVLhys5&4Lu=H2>wR^aX~H+>(piQ{C00Es6v}x6?cZp}=O!rWjltLA
zYSDSx@C4K`h4YRYL4Hh-1g5uUc#0LCXTBxhj}7d%xe+85r8s&>00e)w_NT2iMk4XD
z&orRkU~N9>gL|bkilvrpnAJ-?Jt6Mjc^NF>W}2?rwO^dSG)a3X=0C-<6NGo_yKz-~
zc$aDQmiNw+vUISwG<-K*t%!v}a82dS9Ca~o>7P{>)K@x=E~=^AdOBzi9Uo7+wxmq6
z3@Lu-w%~qtRI?x-<7LG+!!*kL$zkxDHu86IDD5)*D*Hrhm5U55JOWji`?q(|H7gBf
zHwLrSv<eM}p3op~NdblSluuc8L2BY-$h8-Yl+lUsQuP60#=)CA+~(cf;xhYCU)VPY
zt*ux}?(Uvu<g;qh(iCeSw6=>_2%@zsJfze7L|KPEnvs;s`|?5#cG^Ue>`g6N4-vXu
z@lFQ}!-T2~>8~Hn4ccGAce0hA`P|6GN6|$+U{~6#cb^2mAZdmD0Qvv^L6TT22HB2*
zUmp~%QxYi2P>_(&o~^f5SXo<u|1tMTFm<uoTvfzX0by}*(R%k9h|)yD8Dza*tzdN;
zVos2x=V!mml4omdyhdWh!w@3~s}nK()9J&}H!!EDN>5p8G4$!@*$fVJ27`NPNRZ*k
zIihB`$q-AJn=(q0+dUKo`8c1#NL*ZUiYTg(nvhaE&ntYUM|dp!bB{HnX?9ipFA3k^
z?o}Vpwy?2kx5B^L_s?jL4))QvX2jQcoT((zib_dF&b<}f%8F93<6wO`@g`l-U0uk6
zFQKU?9JzA+F3jvy;ZpSAHsZ%0x6DFj7V0Rj`xZ}TlTin*D}1|s7P)+PMEo<z!MoL>
zev1r+r36OGAFv6;a5{wio<@nWu_CH3vEXDIN|egv5&n!YY(q**H(p}H_q|$g7)5N>
z<<D`^pfKR`EO)lkbiQ6u-98)kh^xz$Q02RBJ2#08LVuE2@~|Z884!SZYVY9JOAubH
z8pt>XTF|8*jVwHym|!yHH$KBbQO=j)xwYVM5u@)_dGWg<b$qG_W}O|@W67N(6dO*4
zP%eh|MGDLCWxU5l%w47Z1G8IQ@-Bt&E{V`$+D%^TtR08ZXoko8k1}1_0hjlnYp~X2
zF_zJshk_zC2KprF)!h9sQi90bTo^nK_n-J4I^}`P>aiEBJlfLuJ`e<X-+qL{6(}=)
zcfVgj3puAH!Mi`p!zY$Kl|}75ZG@s1I|s3dIT4<g%{K-r6$T+89>7X)DP9WP35k_J
z<9&N~)RLWH<LcTdfi2t#>}Fn#HT>yLvz5loJ26eqxdX@z6%`e5{lm8jWGT+Ol=UF4
zedBu}=)K^5{*+KR1gN;Nrp9#jq{{Q=#_Drk(#4vFx3q-4*Tas9;*~jEe4u*k1zN$_
zv{HC4s!I?28)4bPmsprtMikuq`YrMW6jth$2u7o?ks*@S=$p^EX?NGc@MHQ<C^8+6
z>?>VwT2!!MTU&;eX+y7keyEv?t?o}2ylr}%eHg=_8k6FD(4<ZM_+jG?BjoGsEj+!u
zAP)2X=oH|KS<v3E0kn<7679rPs^dMgQ*x)>ex2b_j$!JZniwPea{cSbE8Q?Dl>AMR
zpJJ(8c%2ttRAV5Rt|6%hp31dK4F>H^$mIOKF13298(;3rS106a9i+J2nwUHiu7^5Z
z^M|<3H@TSd3V85TJDfv#89m<HG1GQ3T`*hWw!MZA^0vNous2!2%tOW3P`%CbAfyF+
zyve7{Kg<5M(QFSjaFKbTGw|nkruWxJ@?e7O<wZ(_gIp5!BuP?kia_RBTMO-M^!rYw
zKf~w9bgozs8`3eQ^#vVfiimHRBR@Wr5)2%E53vFNcO5pl7F5(>qQ0Th!49ED5tGu9
zgPJRJlbsr2?)h;|x50e>qG4PVJ-3U6dKR(Nbvef^h=N(Sh1nFzjjxhUhGCJGj;7XE
zWzFOHpEMZ${RH~X2I=nZzM9Z>;Zp5nj5`2Z>-$0gY1h{M`@IQEwycMT$c&-x!Rx%u
zO_9mHn#^5o^FHdd;$t=e!|HpzEkzaYhFpS43l~3Iv3aiK*Jli31J=Adyb{IascEmG
zkz0}(Bxf%R)TG;z5|Fi^=}e&6?RMYame&t3187lh#!(x?i<yKkx(XT3T)a(BVSbs&
zDuSMb`;8r_ukgR$)dEfSs3P}prI8u6dpzC;a&kYQolzh4({jsY8SIP*=AndD6W`*c
zl%TCy2Lw2=lx{EpfUQv1c)hu?LE2K4R&-r`e$+DccrKRyF#qMtckn7OA^!DY8mZL%
z!H!ll+tF)&{m4>&lP^0VA;J2mb7SEy?S~K2sy?%fuquEXlLc6<Co7H2f&v1<84z;B
zYpbhzjj_DYw^v8><6j@E&F9WVaGS-ESsQhu=F4k2RjX(}H;!}BeW<ObJh=%oPBqFh
zeD@;5W;K8Wn$KL=ktAP(B%VPgs;Znm=0)_+bVs!cNmeGaMTH~`i&fY1JRMz}+xdsm
zYDz+pJzCnEHxeLUuvkh=N`!cMuGSpm^rWCzDnIhLw1>Rc20zB*Y!!+*%dm6s=RLOF
zwoB0bV|5dZ0_6$Tfs^}u-1&@0Dls>Akn@LVu8(+}?rSM6ic}2EC!2C2{=O~c<f*k1
zb3+&!_hY{2Z&F2~45V9{le472wP@OD7}HWXpv_-0S^ijOoB7786`DyZyim0|cw(%8
zVI;Fh9{a0lPbfe34wg9;6;%ctYICk-3l@2z<6fz$ng6hQLv>`Q-urGm4s#*rFZbOc
zE*ps2O%m}R1Y7cbtd4$uw0ZepxG#-0og)!tP2?YU!TRC`TeP6mtBm~97~>SLQWBT0
z&ldxsBobMHlKBcD+&ZHZX%pX7D<dNcCi7W2{KQtl89WCiu2(vE?~R*C$;roYEF06q
z#@e@rl2J{z8g>Av3uP-J6<t%_QwZNlfP)3FndEWC7-!Fc&G2g~ms{2_)3lmwcIVaz
zI}=m9WQzDiJFJ?U9XyAfChiqxAq4ea89Ae7Ys+cltB0$K8GC5C@Wc~YW}RAnX&5<E
z0yncrP}8ulO8d%`;gJ=S8gv@sZq<hF9W)$ajIE1=4N!!Cx$xzszfPFhot*1pv<Y<#
zy^JvV|HyjFsJNnTX*WoK;1b*|xVts(?hYXY2=4Cg8r-dMcPBvtG{N121$XzmbIyJ5
zJ?Hy=Ghi^F_u6aLta@tP9Ap*=Gld5?U6Csh-6s3pVln_q8|$N|=sELPT{l|%i;93&
za&PWx_0}vS)Ns)>Tl(LhQ^8>QUcVe>#H}mEVDGX|GYqwUm5I3+?RINQp1*-(Zkop&
zIiRqC9T@~2NyzQKPS9zJdI79HX>hp1@Ue+7d>wPv+piK<NqKQ9mZf6$Yq?C8(W1Gg
zIVc>*()p~Z*SwX5Bm0HE@L5i~j2V;O|LHddzPMGYY)l>(nnm@qGw#$2JQ3{h+0`9C
zRA25n!^hOA{7C;!PdI6QI<X93X%jhNnNnZi_t+V|YH0lYies@n0E+pM5+vgC#LC}9
zojZ%ULaZj7aCwC|XoEOME3AzU8rW?u%a8cNzfk%@sH~HZv4BYGubdGFMTgh9cY5&Y
zr7tT?1yb$;Q5coff?&$)+?g;9`u0Y+RiQ7q3-&}w6yw4Vl6~f(|9DW=n(57jFZIQ(
zLsOMxw~h^3n;kkBJ{n5beNA$IZ}9WiuC#4KyNO((YarQ-ZvJ9o3QG?YNTB$ra?h2z
z)azr#QzEpX54T+2u_oA6K9VDhFzrl;E$Mmi!Hfd5aCAXCci_@HOsZVUqdW(xEPE%j
zyxBb@8+0>1;jP6x)lt|IJZc78Lj_BgFxlp4n#S`0xQ4gZypnz|)EW!N-ai8g`^Ynd
zRQ$1Qx__TOFb<QR%)$_fcg$p(ZX#TgE5OR8vczAhK^~a-$NsDV0RgKf!0XUy-wi|y
z^8xli1*22s+3%?P<1(8p<gPx1bTXBty+BzkdLgU*$$~E>LiXfJ2_7Tpd2HgmHSVmx
z(IEqSa>6!kV*m5hqsI=6&b;@z-dAO-cC8}=KgbM<3+8XV$EHNyo5*89@KK3tN>|PC
z1laybyx?j5W-D;_?A`IwcN|8Y{3NP+z;-B6!=m4!5WV+fH&#STs$%uWF|swhveqMC
zCoe5_9-kd`39ZKb#Ea_t=G}2F|4CQ(*u<kvMZM|Qu@*US=C&lsV%yhGH>3}38WyLs
z{&=<q?BdprjpGXtRtJF=`%au%G!g2~l|P+yO(vZ0L&FkFTSINsJN-ib{-sN9zjCgI
z#bhc-f^H_1u;fB%d!viB36YT$q-UfhLsMoc*Q(~zR(%JF5)bdD(!>|lfU}g#=)4a=
zbsfN;p^?E{+U(Z?ufU-k((-h?^#op0cH)o=_v_1es-U8xG7Dq(*{$h~Sc$0VH=2iQ
zQ4jkWb~GgqwBayO3=EAH>FH_078dq3S>ZAo)P`#Q8BSC;W-ZzN4-0@mx6@ql=pA9P
zv1`f=UM9C~J!I<|b7%>L$3T&d4TVmD_U9w^_i1RD=VtbxAc#eRh;DpvdODn*{wuwf
z?i_{0=f~^bYzk1N;NF!jJX5*H_9ehSEcQO@)~?_X{|R#h(HP<~_h0PYC<Ikc&tgs>
z0x7lP$D1R0XfCOT{``h2WMa4UwSo#{Ti}QqKsf0L=5<A(M_(Wle44GYq$a5pOliNq
zt^+au-C4v$F#;yCu^WVwO#1Qga`m*~PpLPHos%aFwbtk@3uV`K^W2j3gFW7RC*caU
z&Gg1D$v3<jjyht4T6BvQ9zyK|h;8QcDrM8g{=U+VT??rdGh`7zy1JR7n#d^9zD~qH
z^_g7Wo`g4X(rQ(jI*+Ep=yieWyzelq7MP_lRbHNbj+4u7dVs}nBc;&Mj3%Dd0?NSg
zd)5Tgt1G0hyj)!BKC6)AU=AV^dSZqP<InlK>&Sie6mLhBZ`%{GTm3n^t3x-M%06*X
zO{?(^8$fKm{n17#^yS4jbj!_M)}@wm_Ir2KU2h+1sE4<A<WcSk-?7H#?v6%n?yfJ=
z;8=D$q-NIG-;g<SLgw4zkA{hpY>5!RTbPtMXY9R#Wq5j{UPcfXY#`!Ci3KJ~`2@=7
zu^AW*sl962i3%;<G4a*!a^#?GAst~6Dc^k89;w@}z`cS@g>p7eZQ|=U`OqkPSNqFh
zru=l~8@i+H-G?SJ;{*m}3z@WAUqYlWE>I5|cS#59enw8+A_?FtC&V(9doK@9m1sNH
z{p+cZvG>O(d$R9?V5=|t(GFZGtRQA8Ifq|vsqDr0?1JvAAZxrEmkNZQn#7*5&};+?
z^hR2YsE(cEW#U0;xKPj@VJ|?SrA!p&NPspo)Z-fEZhtCxxz%2ILg<c&7-X{{?T%ps
z&9liao}Wq7vgJ|K=LIqm_ZsKzQ7xm%LQ`-xi1Ls^v!a!qIOprwe@}Q3nRIC=qqjAm
zS3W+6hLCc|ig<QIMXZ1OH}vC>Cq9%^J|_APA@n<O?dq-p(n)RAj4)ka@^7I~Dm8eI
z!I~Rvmj!Ql(1efpR1m!uhLg#sLVLn3oVrLXnhpuxg|uzj=f7F@N#XmQ09vIoM<$|3
zP}}J_^pED!-p`b-JmywgQVw%u;PMsm`u5f9tox3+b!_{@<p00ON#)C7)UoSUG~xeE
zsWt4J{{%%DC8{S?dIx~hLZ(;Um!oT6P0s<s%+6>P=nB|bmO1Z@Cy5lxjLX2|BbxOA
zhpV}GNowNrS%V}Q&&;JN2hR$>Z$3_%S?twqD-B5yy1vF&YGK-h@m&6zAPpY&ze&`f
z+S~`G8^VipDqh!Kvo<N8IGeS|E?=hN+#Kt-$rer0wyX9#PViUXF1BOx@$L#L(9=R4
z=7*x%LmQjiF@BBOHOW1UTW?K0BcmRbz#JxjmCaCSb7Rq<Fld_LZ)7aJY$lv*&S$XI
z8FJOQ7`Drt^IK!kv@oz7W#5e=0)0a1j!Z5tESirv=hK*1s3Ip2(D0`#A(0a(gnE&h
zLm^g;8FVRD;FfBiLW=60LBr0tvTvoS!Emlc^=N2Qvn9l4m*;ipc*I}<LgV>uGK#`n
zt-*`!NIjkRBGVG#c@*Lm!13b~sM3#RC1cb~5hGi2)cf`-u;x4=)L=mCN4LcR$M*2}
z2oXG5Sizc0e20w=PPWnWaHK*Q)Rgs^pU{{B1dF6hdPfm>?ubcE6It0kgko(Sz($_V
z*Ux`m)pR7O8{dtzG!9&?as(_qwP?$QRK95Ky@M-EcB`H<Eo9-L9_(Qj!qCIW&?G^R
z7Jl8w5G`(|4li?Q){ywtY-a$JrcdCRb*#75ht@?8gv?kd`YPcv_)@a*^BYv4WbsE0
z7j<k8C!%dR=BeM?E!(Wjp9p*@*Ph@``nCp4bmbKWYP#4tVNa~TryQN1+ipNGeI4r`
z>xFoDHg=!RuO>E%#@6#$X7Fw?ss8=<!e=YUvqFx-mWD>Fs)$Z<F)_a=U26}xZ?}|N
zW8|6==}Ku~ghmWuxr=gFo$g8LxDPIKH?I08&`^&xTTs`cAAK(GJDydm9PCb!H3at!
zpvH)lBZP#&PZv~|(smdMwQJx%2XzhpG4Q8Hx0)am^nQpsYSjsvC0Z}W*)`vl#WqJ%
zzObX(D)%s4O(>Ho6E3ATOEk`JrIK5yA{3#yr5-6%CXq=h{+sDqIr_|(@etyIUQvII
zaz1Si<A62sP(d<R!!b0NZ<8P=A=Fg`OZ4%)tBV#rAhVG|XdBe#`{dS_ybNeeDIpff
z2JbzOw&R6yd_RaQ<WVz6p=?SSa03vMd)yp@8_>h7mBNQNAKO+#D3og7$Q96mL@3`D
zff1awOMe!-w%fF*T>MihGId+-dyXgI8!#kM9|NpfNtrb(oRbWX7M!}Z#(x4L7;exz
zxFLeUJQb2;#T1iU{UVdwl}pyu(t_mdygcRaG|J5J6!MHPH$P$|W`I5L%s<x>?7N!M
zf4Wz>ko*3mC<87`1zElsr?eU23&fhZ5#1C{3~%_ThSpYK1}<UC1PTgD!N(1{4(VrQ
z!vqWsceo)l1}tk4P0a$Z-5S`F|61zE0i0g{?@;(BN%Y61>no-ua|u_-A$f$d$B6xW
zRYvw9`q<F0q1na71^u^11!d(lmQ=Y1j7Yq-N`7Qk*DsxJCryH0g$N`viDBW>IRfrh
zAfh%G3|`}^RYxNpt1bjm{LliJHYx_jCYLTe-%F>4W?EWF<BHU*9LW#TXe!;qB_DCt
z6e>t?clM@S-Cy%sWJmp;6_6@_Ob-20AMz95rRN7@#vPXqe3uS|PL-7HlzlqYsLTz`
z2MhOVyh02*ymdaZUWFW9w_qd5RXuj8tn|U3Mvvq>@mY)$JXEqIvz97(s$%wwC?O+X
z;}U<vx$L2MC;Gv05W+-l2dy!<!#Pgvm6D4vC~M|=1UGZ6n;Op>F>`jOM4Uy}O0R!7
zml9Z>v5TV&u8eSp(B$hZVI5ga@V^CCx*mP=x{O@mqS!c?8QBUxrIW)!EFcS-tHxqX
zrej>hJJN9N>|i`{RO#+W*$Fir{_XI)>~d@xLpvcuESKvrN!vkOnwk3o?{`St0|FZ&
zh@M^!RZpz+y1I3};^7~a5IBu~#St?I^wh^$qk|9uVu>s5HYg5lkM*UVmXiK~G~zdF
zLM<DUsce`n9ivO^S8X-Vnv$FtWeTF!x;j=QD7_T6<M}kRIzVH(hKv?zG_`09{Q`TT
z$SKjitfHbcV{(2^QnQ@-+r507^<F8vj#T1ZFEsAm1#X@&(=d7JPeL-^(-l(bQsvTb
z6;lg$2ek0o0RoyNT8$;HTJMk%*cyK;L|c8D78A44yo`Ol*lKh7l^;`!yfQ0}o}Ci7
zQ)5$yr_x|&I44vTd|g$u#D}Vpa&w2jT6t3vaS|8N?PctHe=%fN^!mbBjAX#zAk62;
zuIi1tKiN~x?EnQS(6qE7#FkyEVmi#-Iy$mVwYi&`nH>@RYSnSWzg!baTD@fB>+g~<
z_^HD+=Eg%_f!iOqZX{p-q6V98ffYSM&U0eYY?};FoDImJE#mZtNv+DGR^BE)U?-3M
zBJQJNBRKPAT@|Plb#0&YG2{oZI=1t9(@#7)5Y30pa2K|?`7IiVB(aK{8*cHTxc-)z
zP(|18k5^BXa(mR24($~0pb;NEOgv~_d*7afA4p1DaEtf;Axp;hgQ2R@iN68rB7H_$
zj7TV1K+k3f$_6jvN~soB1{`>=At~24sE9T{aMyS5csv93s3Ic789pu2TP?5+%~NG<
z9Bq1vnng>3%it66+b3f|v-H{=_;cX!SkE)kVM0l61IXUdbOXC1GNO1wo|;t%Lv?=F
z)~iS3>*P|S1(u)rd|d(f4F81^C>djSE=YoKkNp6|A~xt0UlP{y|4V&W;fKbVS3K~;
zjU57dOsFpKQKlJqEX?&jSRW3~Eq>!l!YzhH&z;PuiI6_mEV7Gzs5?D7W5F)E==(ij
z!4XnZ#jDKX%q}IO$Ux3`F)$Sk_wmIsPKvLHpu=xnne+JK!&Xr(p=<X6i5|z1H?$*u
zYN}6I5|)iH4rR|3N~;NZa^ls&nyT-K4~dt3g_KWf-0nHrUNO5QuiBB$<Gp^Q-s8QX
z=;`h46)tHblI0^j%l>zI>KN;UT#ra4!Ize{=?E;E@yS=1A@C)~WwQ;wtp8iLJWgUx
z4vj`)7j*%^1o3wSFS0+~w$}uw;vSZYivE3iSIj~yo;O7oVujB@=Rm(%rG=GjGq$X@
zwo&M0M`ab*1mA3{<KluxEcne|>09U#G@6jhcd0n<t7^;Z1>?6vwMe^maH*6}i)>p!
zN&^Wz&3jKJU5B~{KaBycU5l3Ae9iipd6n($-#e92E>tIt0teFVe+Iq32KW#%Rji7e
z*?i7TKV{P~8Oh0iricDh(zYF9`-hy0CIA^3jFET3p2k+#bTvPfoCL%jF8g7}Ux3n+
zl=@r9h}(0UD}e)gzQvf{uFD`GMrYUj7^oMl6%7TN<TavBHtcgwp!O8Z46F;-t7Rte
z1RW>3?H9|}4QDEC%PTIyHkpbIMhE)kSS!2{DGBJ6)03P1r7<JiN8^}2SzNZoyH^(%
zPHl?XhI2Ysl~M0n;1^&7qxa$G_E!p%XD}?N{7S)Qvd=^qemA@O{XFZ7k~Lc-Tu!t4
zE{DlCJz*ht8-$e@c{dLg6fw5Q2<McN0o>NX9i`a<X?CeTqK=)Y=IU8r=Kjtr`WSu!
z@kC!v9d0yn$RnkZpf@^2{1mQR9S{e1Hp2h=;1fb0h-KiHq{bn}y)3w$3mUOa;C|0d
z9BQk9s1AH<u1S@8yRur9yr?`%BrZ*<R20&qg2xMFKn@Hi_0w7Tg5DMrgoDTU*oVY2
z2{;m1o>Xf(Px(KAtRo!rE6_#W;23#szGh^hug*?~2SSgZ=4$_Sf+W?`3TI8nR~7u&
zU;jAUM2dlxHwsO;X9CNN1WUkU$Jpz?)mgf9tWaY^B~c1I;^OE9{0@IaGDg)mJjNm>
zsGFsI;rm-ZOM8y$wbZWz<0)3ee5d<ai+V2iV@E@ry%ZZ8o7zv$p*Z4QkSV!@Xkk$i
zSOuY{HJI}(%A^yB*GZ?F=?Y^t(o?dttKIh6ue6MD8a^DPp_BA;_fLMhe(C&zhZi2`
zG93Pl>qXS5)|z4OnFIf;L6uo!?849l=!pFF^&uPixxc@E_lnb8+0lgrk7J=iQ~neN
zVfc8hvsI2YWS{t!dYsNRmte)xV2E$AOqG(ZFj%+Skc((yIDUIcfvdOa5;FaF8nWZ^
zpWDHIUlJD3+jb%*R321HXb5wJtY3y}^VVe_zLXD3drWGxfXEaCyaM1Hq0p9CXG7D>
zBy<1G6j74zzWyO-K2ozPWV&GPa+F8;t}cCRX<|x7Gb8u6Y^Ll>B!9E@LJ2UREOSCZ
zc+IWKy-HD#{ENuryFO`Dt(K4e5IC^$$=2`-o9Oj_t#MB=c_ZLzzV;>5UP{c})aVpV
zHUvpy>_wluE(TkL%sTE+Y&W{<%vWJ4St#p%_~w96VK~7lJiOBULNT(k5WgCFX;nZb
zr&Y3Pn)~VnAQnJC3rHzsHRR<f&XQ`CfUAl=X=J2)YZ;e*WP%JU5O25Qptd<GVW$k)
z04V-sN(b6?W-^-vjtvO8s^nt{!$<E6#J#7|jK`a=R54Pmn*~B=8<Gw*^khemj}4gG
z%gJbHs843+ZvxwR84mI_D`l2jPVzyzVc5C&_$@gBfWTgQ<kgx667n+G<-BP3^RUgJ
zk)#zQl%0@y=eUOLjGI#c*42%N5dr}g-oo8cTiIn*RTHo#(+me{H8{ZB_v@knRZ@eJ
z4FlIk616-6=?^vrpssS2Y}lu?$@>!M%Q?A(hl8^^0CFcSltPp+{0-S$H`xJ7y-5nf
z=k%PMvo%I9WK6z%`w@~f#kIAyL?OGs13votVfO$Dzpoa}dT$$VuhM1*JL(T(semuK
z0A3m`Ro1Xm=gir>=T}<;iT9&Z#U(+peRvV;$J+w6=s*&$FO`&Uml0>v;83mKt-y9F
z*IKhUEsf>?dqwj(l+o0*n)G_kbzR2@h7Bf=UC6{}u)V_ukVe##!!vJhiR;}YU5+Oe
z6tMSMK1{W>?yr=)yWRHWPZafyuSYjDI1LVokydDq8k}@^ULj}}s}#5ThQXTP4>+z`
zh}tY*jWsKTy=x(qo2f$~yj=uT;#!1D1OfIJzA)3$LPj<=NrO8vDn23(F)FG>zhSir
zxH8hi-Cf%&?c!;n;9#?QFU-cq8&1TlX@j&X#hE_vdqHcRJV{4km-&C7J2ejMO=6el
z`-^dNGvWU{AHePT-A-;D>!>%ij2anF7XG8JeaFG4MyfbKXoZF1Q8u=^D+Zr!&1TAe
ze7nQl(Jp<@MQXW1qgOeH-iMaz<-#<m<p1N~7M80KJ<nNftBh>)c4_fIjQI!K?hiFt
zAGbSHvW?|2T7fA?<J<Qd{kp)#{SSr2JKuX!pL3{x`+zJATwj>|TAu@O+VLaKzfGvu
zenI$7s))`PKv&?_cioQVnFi2CwZ6fck?Cf4K(o^<V7IyeGtKenb4>pQm@-tVgcEQ8
z)Gtkv$)HUIi$D~19h|bo@#q4FLQt%!tG1N+Jy-;=XjpCyL~cDv7l#oVOpOE2E+SjV
zT{EZykn6H3C@5^?#Io5V+_HHc#j4dxm2&oh;1N!v=khIG;7*k71E6(qZhTVAoZK1t
z-s}oH`KfuVzP|o?(KLRkIG%_vDGV9E@P?yIq6zA0crgz-=o$b?(yXa4Bh(MqzLhll
zzxjCqrXVU$uixoxA=@G>w=im4kL*N|k*;U!IRLBZ4Ple$$i}M-9d;J5(*|h)Ef<;P
zOn~#jeF?7V383szT<73jy#X6xrz}<vR4tsYCPddjh#(s1_1@IeZ)=f2$cxh#K(IMU
zS#!cW2E*$=9@e9hz-VlWM$K=>I}^YH7Xbe?@>ZxJ;vRVdPi(;9QtH0$2|t*%43s^R
zJqlZoEVTjqXgBq|JpWhSQ^I5AZi;Td6(B*4+Q;AXeSZbj)z%<728KdY65vsy6&MX}
ziU>OVtUr{&Fxnlg7c%LC)upKkg`E4sal{uHC4*ZVT0GagJh`EL@UjcW)eWNU+IMk$
zxrogFhXxdYK??&7ZUjSA_Cvn{!x|l%KuNiFiMEr1oZPfj{1&y;TOHyXPzU-TuA{8h
z*Dt_7H|FQnK#QP#{s2^GslpOcioi$-S%!;Mp8A>*m59d(@3b}QD38Z}o13c1zKnTi
zIr;4oSH?6`j|FpJyRBP)*Q$(+@vhywO0KZi?<o&QD^N^ySOsU9RquT>^=u(=VgeV9
zAsK^^X3ZQzIm5WcP+CPXmUOcL8?o0n6IhW<IQ-?`sCK$6MXI-Brp9c}Q(J<9)e^W&
zm(Vc3tdkuLjRj>?R6a0A#>}=mJ2Q;}K!Y!fy>BE57qoA}rr}l~b12DN_L2ilI!ajl
zN~+G=<(B0ecR*>qPF3OLel_yjwXTlH6<Ypg(kSB95o&|%I+euA{#VFlSZ?x&T0@z5
zX}%iACjs>BGmk(kq1}FA;%OXdYXxb);~IZ-1$STT+VV<?DV!rD2A0?LRrE$JG^Mt+
z6;~8Ihp$crGJP=j9Q7hPMyC>&j8Lbt_kFmF?NIGKWX*PTh)w;w@}vDkyp$6T_J@d$
z6iqt2ivyveGLhY6ejuA}g`_E2L}OU|DJy!KJpb)=j=f6iBq9IX;Vc_zSAhn;3O9d;
zJi9M^?o=%hc2=8$cHPFs#x`?l|Kpl~<$fy2IQr9d>nD6QaU~erXx>!W*iO?Z`1*vF
zu4)+p`w5jeli$VFCC4@Wr>K}+%}wqK<ZInPQ9LTcMVqUNP2^NY#!}(;E|Eu0To`hP
z?rB1qwkUKI=sE(y{5wZ3pR2L?r^h>WoTW8o2mcH%Z?M*J0(o~+9owH{-=FDdN5J`;
zyv&|l4y1={wKd-S0N6~90Gg!<?CVmUzP|rvsCRQ6TYm4~y*+(_O+v1Q-uXW|18lmP
z<=eP^!0U@~to!$Y_uZhSC#lDe$0=3Gb^i?!>|$a#pQaEbgy&8HdE|GE!__TTYL^0~
zx?CvHkrNgZ*eY6Xi5bzB*?FfuX^x*$%Hwsv0s#D`qbHyk&h~Gg<9{ZaAJp;hPTdcE
zk*KiE$j$-~8~|?RGCF|<KMQ_fl+=$BmIj@*_RK8l$hnTrl^)8JonvzI{>y6HgVE8b
z4Xq^WP_WrA`vnN99k&RQ^S>Jpvp=kei|tflD2gZUo$0li-{lC6+e^lyy}~1Fg4f>+
zi=8T8IS;vb5`=Oxm|*myD7wCio?h);?Fp1$ey%BY2K4^e#%fEDA)60ox(PyrNTD{A
za5}wzGp%i4BjgSzBp)7ch423aCz07u3H76G{0>JYrvLCuCmjE%bwKa!XjF<(W@2Ao
zJGinsH`UKQfj`!j;l}1(Z1Cw{xiGm9CCPwiLcFohg`_Mq&wR8gw1lHiBM*W3XDJY+
zCB7foCI~1-X)rPcX~OqB^a5R*B@d$SUV*~u=Bk=4uo)-pHE@M@U^u%H*^ECKv`PH=
zGd1uz?9+(mF${V-Ha7%*2*iuM*lUhM9`R7yeVa*qfZwyYN0vu8L8=*7A<v}Q<yU@5
zP(N+|4`}yEf{<XbnRr8^=lN2ej-ZGI%LF+L_F~B+u7Cu+&+(X-{ZEJ}?EQN2a;eW0
zGf^7ZGhwZTnQdb|swQqKwMpsSHtYX#hlz|J@S0<#X4m$qv5B3nd!MDCZIcmhiejVr
ztEftZw^E=7DmXshJ7&4j27M%PyKtx^k+=w`Abp8A2wcPqM3T%m?Jbxse`D2+$=ZMC
zzu#THbF#;>0N4!@EHtyZDj9^9#0snM38YLx_lX3}-=xX#;1{ax{~A#{GL-sL9u1D_
z7X8I(_yX7#k_{E)=6UF87=jTmufA#keyv&Cb0IZZd<?RX_}p)F@_D7j=Tk!ZU)c}+
z{2*#pYel^S@OV)6W{%#BJ2q8!1a72rfKu{32)0Jq2Q+lLtGS!?^gx)LW=cNiM(o40
z_WFB8&wCR_@@yr~FY6QYs;oFriP@kzg1OTmV0R{t^tYEm>SaT=S`P|lbeFIq0SKbR
zl(1(eCfXL=-!JVo4$f+)zBtV&t{p5{oJ~h`E#jd^0pS^dQ+)30wH3Ld(27PsB}dm0
zt>R70TUVJ~vHn|EnZ&5W=6eQG4&QeQxcr@APFfJbi1VXD=N(Z>B`<1;qHl)Rtqo;K
zLM5d?B20HLqWy}w{Nf-tG{a7{E{90_)Mo$1NB7@_kH}7oAs0nlHU*rIJ6Q8mhu=Rb
zFI<v4Yz^Q)KG`EZ;8V3`aC}0TwoLzv^-&{d-FMGq$&N`4_9Gi=h+D!6Gz`-M3hm(Q
z^Gqf8lXTt$Uf3fYBQ0%!h|@ri%U3fYR5f*uK~7_wJ_ZNxmz$?%XRF0JYlTQ(bK7Bg
zJ}JHrIGE1WHFsI<>AytriNjttsxo$0L7tbz8knr+0YM>|DNu+|z@~6E7pBAQ<gh`l
z#H&PP4G4ZUFV3GfV2v+ggqLq5Z}Pn--8UiA-4=(s%)(F3C|HCN*Utl*f~&hD`Z*>6
zHCRcdKHySPb0wVgrGjg-MxYiK0#CWa7b=r*507?O13rQQCh==Cja@F8jku&f`z}67
zc|Y$h@j{rE@RqoDA7=og9V3(OvuNbNw=4zfDw{Pg75NjI;iepZ-ElODpmfmruNpls
zPdFS#1D5E1M<G{8^zseT*VVHgUr~W|i{A#S%yTWc3nqAQpYgEwGyxQf&T_~Nvv#Y-
zl$*T88Il{mWJu#(q4Jx6`snK+Ls6OMm6Q|l!V}v1Tf9bz)IiV6(D7`X|AQGmuyDY4
zz?dn9@_ih^;=Wt{q<9FxW_##A%1T+gel^?u_VxNv%$9J7_%P^Ze=5^~k>B)bpb7)>
z3nVB(Qbdi?qSjNxT&kd3C8YeB73Gu?a@yTWx`_`HwwH>}0olV-+pXN~sLo(t%+JN;
zvfHUHls7~@A(ZG@PqnDk_0MLQGd@F~-hSJ$68)tMiCL*q-unL@e1}2G$*y)+bRG?u
zDSsq0&IB@6k!t`uUc~48SB5+a;N+f04Mjth>A^NAofWKYASd)*NxpAjvkcd^at!|q
z+H`^O6|X*Xz`vO9Q7lEGg&)e^=`U{SZ_R!AG3Hbj6b<;F0;4|$0vMF?3Z#0PYXPyB
ze_;6*oE;rnGy&85+ltc(6`A)-A76l*;v?+~klbqkdXWM>j-r6%{V>#xTzX+s*S`4s
zi;s{7R`inkIMV6szgA21EFY^=mf0SIFS6Nf7FlKGG*4h14HCNwendZNl5#+xpfsE1
z%Y|UXX+JRNx7cJH5BUN2@qOTeI2H1KvbS172$hI8Kc(nWlw3O{whIDayQ)7#eI_;O
z6#+j0`10wGrEHYsw>d>;O#9aGCFznlhd<I)wLXvph%8s@^R%Oa4U0_$us_}Zs?~my
z?96XNy6isW89I(7V-q*QGr^nw17pkq!$)B74mn#KL~F2(uNK*sZz$w_o2+a2bF`{v
zdW-&0P^9|@)C!_t{lC*zsQk5R88(S!+yYNxgA6aYZNu+L5i2lQ1=8lYt%1`nk>$8v
z=^M8V-)DawOu^QpACPP(mD)<T53N;a`^QH_2ad|xAX>yttK#^N2i}A+@}kP&Rhbu%
zKfWYHj(hlr4cb=mm1ehIri>RXwB;CAB&zh-0HSchoQ^`-7IEg8j?H6-%OUpKtl7bb
zf?Rf4y54+o|I@%GmG1&8mr6$~<R9t*5K+_t-_!1d>ihJ+Mi^nqXtP)s0r83Dz_?QM
z&rt%BIF!cP+WmZIS6P?|86A~J3rskd;<P(-nh9Howvi)cjGmho5hHOgGG&kXyD#>R
zh1Xs1iFxgIR-)pQOqotNb`)xW?ssE`=HjKiE+tCiH-$$oyOmIqm#<;S+k?+bJ-3wk
z@=SHmL~galpFXUT7-@YO-njC2)0yeu6Q1O16(XAv#UZ&|v@V2s5p0hfN6|5|<M#A?
zf;d>dnfpDnHy?X-Q&E~4GgKv<J!uc2FT=^pgD7X4@6>c$oW%t4UN@lWF<Ig(#`}VN
zRKrTI=id7L9&gt6zTH=ned<u%gK8Zi9bP%z3SE|3lFX||>?h+0{9S@z%d0i(SenV@
z*LO!xn?{D*b9EYjy<B-GyFm!&LjIh;9C;b@V9S1_g~Re7jY+uqcCGFX$&>T5-r|f+
zm~YVW{AjD+45=V0@|knGJMG^h*bti+{-&Z0q={4H8g%`xr|f5|tr?c)&(F~bSRz^>
zMxHl>1sz@L)ys@C)9eQm;4Fm0%+pglmm(FrUubY!H#zRz%>DOwuTR4ALHI2w67^tz
zKdMt=Ndiw~P!{(|5v8;e`8QL0#O5hue^0}t84;1!zejs!MmD_^d4WH`trNZXIiS~l
zRs6ZV4%86R+i<m@P~nJK@Di@^c%p>dJxV(`?YUggdf~KK+xSVUTCNaKPlDq?xy-Fd
zytkMGS7!3UIK(o0)HQnVm0-tf-ctL*dz68VjM~jUNwVWN+w%6w_UJffU-+y{#NUip
zKxPgM4L3ch$_+4emX^S|F!}oh{AFX8N86K2NTG@@btZ>q3XUbn>IDV1tO`(`_va?%
zO)+j;Fhcxw8aewPwP5Ns{1`Ff=??R40!;zjg5M?lCHHfV5Rc|wF+Jgsk>ny9n+Sl9
z_D|dcEtkX@HXfn-q!=D9kTny7nM_TUqsDKV2`;W9hwO`nNINwJT65O&z;i{@+gq4B
zKTwcce%wF@GX`*ttIvkMeCdiS@4{{P=Lp&A@M>1+K2MeFbN0)lJ<?ndNRB-^YqFGQ
zE+)vpl~_NVW12vYjNBV&{!!sn&GNk3j;u=qm-smV4lajm{9DZ`Zj5J6H?AnY@7*b7
zh&Or7LEg(9oq$iBvBL&i;{{g9@DcyH1itfLmu;hQ;+{dpNy`h!0%grl-(EMH|MYs{
zo5d*|9<0ljM4^g6In$X1*}>6C2dIVggQM`P$uff%E>n!@W$i8?101(P@d#2bIMzNL
z><L@$L=f&cMrF{7G=&{ZB-;1tm-&_@Meg38b=za^XDY>-MY6<~%NH3%I9FUtpH(xx
z44lNjKB*U~d;Zx`FQt2!wI+Z0{+2<JI&N4LyWpn#?#&dKl+!RGjyIw&IT~rHx#JKA
zxrQ%)F|RK*A`J?dLSgUdfj~eRj|{)Zd5BNxPk0}L%C*&sNb4_kL@{CI8FL(HsoFvw
z@Vk*2=v^?+bOO{Vs{^i`B7*%-aPX?9?VL_mmq5y_Ifz!;pcSdXSt3uA>$1`?dRl2f
z{rI_er^UtZ86*dC%0_g)`YLc_yr$LVAN`c`O&l_XwZrnP9!FF(nabAC6B8nFpxv!x
z%eK#(7ep}o-7g%cCSkXk1Qg=L!A@7_Cj^NQ77yQJX|;5JIqHBs%X*uRh|>;XN5n6A
z7~i48*ao7l2O|wWIjD|%68fBja%pml9IJ0Jg1em?*d==?E-_&veWn(+=*(rry!6z9
z4nUVks8}yl9yARGFhw26;QqJYpPF6nu2XO3ZRcavu)feety)ff5<Xm{kh|S53FApG
zH74_XydP~CkKVJrFLSzhH7d2#&Ujm`7n&CCI=R`=FXE;qUSe+H`W_{*@$Pv_SS3AA
zUez#s#BHY}C*_q%za{y}dyf9fUHxF-4MGg{(zL8nEbd=7<!~&zi%P|qUBsYW!`X4p
zPpLwO5I~jv-DjYr=DF%)Cods9JVWj)xt^R>&~67<QbX+>2hQJI0VUASt(U=#%PxIc
zO=m7(7E~ET2-t}^D~*bA2S^vPWdB~`yBwsmu{rgk!Ely#WCqMY$3hJ$zl#iJ(1jgR
zs3u;|N(mS|0-VJ8pQG~{aR{v+aLQ)0FS_b1;vbsl<{C5!^I?(1jhl1vP}%7Zp&xKw
zegZmv5-%bJo!{QLF1#|SphrR+i4gs$>RY~2l}sOi2+z;+dz7XAFqP6vO?UOLRLGGm
zBY4uP#dk5ye5GnQ#UmbH*sn{95zfQ|sBMIGL`?`0y#=}_dRx$%r6S&4_MG=2Ew{R&
zOR-UMAQVAVZh<WK4*fL7ua-Z2N*K;5EW^zey+pR}KIjAX+DdQ`FT&0bEZ=7`tE{DI
zu)OVTj3dz>yf&bHx>z7YVZKUt8`H@ACK*RtbuX|2cL-y+Cknl4t9~P&6Sdzho<vBG
z@@<<KXG5+B>u~Vie5z8LB@>{hN}Un|7>N=qpW9<yPoW=<?}I&7e`j!j@nRl-kz>*S
zA&sL%rciO+)(Z)I|BV6p?3<T2Fe5jE1^`)5PSP<Y?g|WG{9s8rV1AP7d=7x^+1u~E
z3lQmc+?G1g=@<AA@oN58E=v_n;lu4819k!BvBOQ?|7fcJy>r+@uN&6l+ta5r@*vk@
zDK*F53jA2aJ=b5j4v!Y+aWJDSQ0q@Cy(Hs4fBvpQfmF+}t4a^nfV@PDK?~v6kfIsc
zP+wFOqkPE4g;FnPm|5XHysN3?JGh@(iCpY6<5S*uH(+Ort(40C-SK9B8EAVixukvG
zy4j=22WU)@9~_xpk(|G>s?RoTsA&pwj`nl~jACA|dcCq<4Y{@5LdZ~_5bnt~N~k$3
zuSgr48NoT~x`R5od~Py6*-fWBAM<Z>=#N*@q|}#}IINo6#;>l=rumxex2^E)wKn3o
z<o8cD7gVQZ84d=;eVR0fa4xgsqQTYvOp_4i+JJhYU#`AFOH1udPIFoX9SPO(^Kk+a
zxq=xI@xm98`}wQ(+rcSwm8~<~{Tm4&dW;Z8*VV$)Hq#G)LWz@NyIW+el*t+F_u!gg
z6I|3HB{h#l43CrKDJIr1uUo((9r||fT!c6cv=Gkp{dyN+MJe4aITV+dy2IkjkMMzd
zsq^fWY9%{Gv*GbES4jHc6@DFqm?Wct_fMgW&*J<>2}|kTkgtgz_U%|g0n1dwZdUU)
z$$)qYsl)&_gRSFQk5DS;!KGyEmUfzB*n*|&+sVFj2p2)HFN*OF-H0+*SJe;{LTVAI
zkGA>&9B5H$_5p~p$eAh4s_GG{xic5{G0IEZ4|BB?^Up~&?xr$nJ*&X;2N2_z&^-YZ
zu%;HB<tXb(Pcdm)zi|Tot*HYyKntj^MPA6?@(!g(QtvAWR>98|QlVKc)S&-;4$$Xv
zjx}b5TSdyn{Ow2t+!T;0SZR#^YzOAj2Ds6SwOGk}GUGBmhW`?Lh5{GsXjrPYSTXeB
zX`D}{-&qbK>Ni&aiw;_KT}{JagLdE#D=41(U2ckG@lR$MYv0Z1y>am^nD7%aL|2<K
z@Ur<f=2xw5p_kwO)Uxt}n;pR&DibSb&t>JK(c)9%a+RaZ;*PKpl|b4yN`p}gbm$fC
zYO`V6+FOwm43TEKSvZ+qW_8Fnt3$lB<8E&)XRlxFILUAE62BnBWfH@60Cpjx6u~vC
z(Imb$m}6PJO8p}76HASjoL_dbN?<HiFiz3jS04z7`CZhkgO+O}e!SR>B%$aLKpRJi
zvdX9Fo{93p&2o8-kP?P`iM;W%c4I8-Bk{a8<%@=jm<FE^-eebFrZ#b6dXy>|ieYWM
zigv;mb{`T!$r1#+nUCpNY8Ugr&Q0&<=Yr*zrFQrnIMYz`>I89JY_)TqedPU#?WPvP
z4;Pw|W%Rn)avGfF{az<qnTq%D+P#dr?5XV8-#!=KX`4_U$ouE1fVu$hXy7!)d9`jZ
zbl;KMHeoGz_^4A|BG2v;ckPHdYX6I-X1^-}j2(&Z*L089&d6Ue?YauPKHWr%VHRvY
zWkY|wnm^()ixy)`e7<1RB3p+)7dP&U^lypS(6S|F`dE{>sh9Bmi~KD@nRb?jKsQXK
zys@DFSDI2a^DSN7@CxMzO{}};MbFWlC!FWxoOPg*)qaIxc<zISqF`<1Z3P%Y>gkIn
z+J{=wQe+3#a^EQ4oH<{vEFUBe9*IyM^6TFZ1Jv(E{xwBW*S>>PX(KQpsZXjGN_Tt*
zYFD&IhZQ`i?MQQtqNXQ<zzt6XW%;J)oZFZ7=Gx?-A~n%43<2{R-RTZ^M`!qkoW%y!
z5z)(%#|~<2K?*z8<c#L5<@%hyE)*0)Vox36=MdtjE*bpMScK(-os)ekqIJVyBMl#l
zP}sVqzn!SOk~Idz^l7yt?3eOr-wC4!v7%#hK#PT<ytK1sS5APQs<Nr;ob*SU*`Rmh
z19I;T5^~gDv3YgB_@#nb`T?<3iQ<=C%#Yo`caPfG2fDTxJ>7t@UPnYEAd1<s{O$H@
zNdsaMTQ1UtbLzFhmr%|0vPU_Q#n_05I?E5USr@B8C)q%Gj-s9=1KD5tnCoJT6#K*3
za{6!5&~unXu#@&xu#zH&8ZWb6?%kLUD=oG+vU>Nk<>~|nx{^WpRjfbji)AM0i9_sZ
z(fhAo7IffEaKlWMl)X|Dw>AJYpt0gTV}pmAWJ*bDnSP?FCQ+&va)E{+zSh*<PXL5u
zC++pit=z&Qg!~t@;0@eQ9AtBq`Fc}n>{;^#3D}6fUm%AB?*atlDQ+{!$Igxmr4l%p
z&p$%eMJB^H)3bOT3qi7B7cWCoRU1o7OUvygG(wePBH3Ec9}zZr*|k@W%ZTDE{`bO#
z6jl&YntsXfo{H?5^%6B_W3Ey=jZ*j`DTFQ}hJNB#=7mF?YRvs`9Q<e6ATrXAUt$KR
zO^vqsA?)4<?2i{-b7Tn~TL?nV-8Yo!9M$h4=hESewM`AAtQrin>z{#P6WpHHD_h-h
z2M*9HX!2fDlT+d~aba*It{9YSZ<828l2K4lm@QeLmuK7PeN2#F@&mA}nRkO(v&Duy
zLF^jGEhsK7cfES}jl!OaNNG5{-iN&1?*4DntF&APoQiElgj^Apim@y1SYLO8o9z4P
zFZyhhAGvYDd~e5xL9l(!5|ya4WuE#FCFLS@X|%};Uom_+S|iO66nyr9gD;LunXD#J
z*JvNgMPmsUO2bf&hU52D$UzQ&+R8h?JwfWF<J0FD_A>7wTGfSRlF?FyS7iE0wYMkH
z-z$o}{7vzQWsUuXj9+6ct%z;eD#R){w=oA~DEX%Mi{__pRf~=V*fhLkN2iyoE`wGD
zzV1h>F*TVEnTs7%!r88QCET6~m$?3+Gv3C0ve+6R-9g(qb36Gm;5({#oQCzKqPm};
zT|Un~PGui9vPm)PTLJV`fXZ7Kig)wNAI3N!K#B42dye7yrrZJ8tvA`9D^6f(fPl3I
z6GF;J5*d8ZuDe*q41O^Cbh#u}*=sdvqJL4`4mM-*cG9-o7^170HnMt?XgM@-^M1aV
zbei8sA%4UhE|>FzQYGhPwBkJ=j;9WUTE2FZ4d*xF4oO*t@r$5BZQ`ppZ&E^OXm4$8
z4P3MutHZD|z~^K|u|`}|%cp+JaW;S5#enA;Flp^!9C@)_;l?<zl~ED+^^n9ci%1O2
zu|k?gX2!vfx87=+C)1dFl;hZCXsxy@Iz9;HG_!_D)QQ-<8M<#!)XJoX`(6P*3CJ?H
zy9RpB@9q-m@9_{|^gj*P#UbykG!Ve~#1KCfs3_kR-kzAkmeVV&hqu^9yOu$!4*Nu~
zq*sc3W-lvi|3>beds;OQ>;l_v_W=QKV^*zwNcXqt;)AX2QRMRF)ehHWqK|c+S0LMf
z*m|26emES#d;hZ$=PF<^55#xWQ2G113HI_bx|t#d^87*ir}5|K%OSpjPw@>SgN;#T
zu8q{gYb@Q*&ALg3tC3h1+3WFc8IrJZiqGea!QRX@DS#r-jGu4zJKVIJije<!Hz~<>
zI@jk3cI<^QGvuCLNT>p}`(ltT%Vir9{idxgg^iP2YO&5C93SghcX~=F!KH_mEE_p0
zT+&Chf~I2bsgbSbtaeo6$E*3^F@j)lfZ%cOft4KSJX3J1FVbFqkW_b^>Tbly!Re7d
zA8&0}(T4LSHL$}qc()2BBZFq}WzLvBwjlmP@JiipLFd%lF&zmu@yG9Jy|q3h-{r;z
zsl`O`kDNYHh{l|kV~~9eyQ0o`7|=U<;XC+&Q87mqgy?%|CZKG$PQIKX{WF#_q@zBb
zN*z9AZtk#C4n3t_=s}n7<5X*SS#{>MIw9sXXXa(d7RT`HK`G`)Wm|W}8e+VU=rX9$
z7A@4hBdTFM_dAv4A1rh&>G_OAD!A8!^A8nRpAJJY-Jni3+M@LC_NDhQv8Zr7j8Sdz
zm}WEu&Kavfc$Ca644R)4mDl}53z^X%=wEjxOAKjwm{gg8>{ppg^7jmn7$0bHNkT+A
zx?AH4%GvH&c>82^4O)$67;)AuwGbrO626Aj>?TT$qMGy?q1S-lXvR89UYKUNv8Btg
z0xAJ2;aVqUMwNlIg)%m#9aV4lpGKdMhg-(SQBBJO-_qcrAMfy!TLIH`Ic*t43r1(d
z>xfC#BTTp?WvI&ECguk?CZN>6Z2mc@>MN7MQefei>E_OOruwpmm7h0k&@m#r6adxk
zB;QI?pocmzIqHe&kv>JPT#koX)GySD6WO;OFie*M3S+e28}=86XQk3dsaP|ksw2FJ
zxe85&2V~?Vy5WrUP-x-qimT8TVZeENeG@u*woT@H2p@S6+LK)l--u5SlkrlLWv5nI
zB9ENT$<g>TaDVhCnynf~6W&$OeT@C{<DQV9{nNvPtad^Jar1{EQia|Z_QHG8b*$fy
z>jhC&=B8Cu7Ee)vXp=Oku67(VSaU!_i9)@Ggvkyt6Lo9+kivuUHu11`Zh9m86?BG!
zZ5dZ1N#?knK8HmAr%hGDugjUg!FHu3QSF=iPVhaD9UlHU&ihMbd`OL$<IyYDtZmxd
z)X3=ncq#b<FQwk$OF9h7vvY>Z%}{AYYK?hzUgJRum2N4A4Elg&C&@%rLtFIadRwq_
zv9R{&ElQc_soiOf`S-<lMHNlIXOj{8!Nn*1exGSJwQ>4;V%8p8pZOsEY{%b=i#4V&
z66rMz-36@7BQI2rRy%G2o>TTcLO%sLw749Uu-gj_Z`|{ldIllaTVj>?uI$Blw?6{m
zsdoiVkJs2{cJhbg?=?CX`ge$zLxO5als-gnFgoi}n}q}+@DnktOn$JL$2e9HI46f9
zeYkL*pVe?XANo^M+v^tBv~Tl3{SbJKN<rgSqXQg;+J|j;KB5$%(_DVow!AFZOYMb6
z(`jghPaFPcNy5H@;Y<jB`eBEMyr3Hx7XJ_h2XXt2<3*g0qtZH+bV1Jf+>SXnwU=4|
zWBk1RNU`0?%R%aqb+U|)8}9MGlJ>*sC#9?`g>rl_T7~+GdgBW#KI1U2yzEi0`jisW
z1)C;5=<jEUA~!ItIuHjEtD7%>wc>YqNBn4tjs4ZGJ~9swNOg><g@?ttNEbfifhxXa
z+IKpupno-i_j?m(E_jYP0wJ{589LI~&KLCfkZ|yPES3K7-s&PH7nQ|`&W}BMthY#h
z0piM2aBL8wYZrBO&^n~}`%lrchNrh*j=g%^8YH=hTUEdJLGgF$&L^48)RUAG&J0b9
z$ER(oDIK%in+pb~R4^bH<L`bN{{6Vr%(~XP{zdzRQM)qo6(u1vR;yZ_i~sfPODE^`
zkx8bF8NBv0ZRE^{&IP@5YNT~Cbr@yvYwff08BkP!Z(#$k&u;}^^6QrdB;6>Z`VxKe
z`-&<<i7F3AS%YW}CKW6)ubC+<vn#CN02!ZI=tBm*&cSGq&FG&lD?8j1i$b}f5QeX?
zHL$Sxf2_^H7&)<?BFVpyeWHjyBw6?Rz3iY(IH9`+Y*kTimDG1dd%ge=+O!o!C#r}p
zKxw%Q$A=M}9{BCALdZ>TDbT3cY&A!bOp1X)9yu_+<M^u-02^l#!t$Imj9gRccIWx2
z6oHIF#}J0;$J$^YwD4gkf5qSzX(^_8+`{0KRxEpUqQ3_8WM3j^?|25>DM;TR&eciB
z;He&#lr6ag(81mJO}a_L)#FN1xbHZVUo0|952a=#<QUaIo|{zu39d&W0}1rOti;`+
zB!gwfe?3!IcP{@;f^2dAFYO}mQZ&H32?8(8JSYiEz-=!c@5?_rXn^BROXdG&HNw(w
zMt@H+%IWu4>Va))&Kz7yHFdwz(Uuwek|Ppu7l}nyk3^}02wk6t!Z;ZGJx5YRIVOw4
zLaCgdaXfX@@4s9R2B!!yKAUCgSvs^4QHt=%wspGG9rhoDwNWHS0g2vf2?TU2GyVRT
z@@Qj)9e=J*6zjHD<9<Md9D5#qTuY4mL;@~uYSjDLvkuY#Fdj%DVvbHy4e3i1sZw!7
zWT4@{Gncz>h_39UqUPvw{acjP@hZu`MDnd`EEz0>Wn^ShFXDyW2zMhzZ8!XTbxO9k
z>5u<rc~7slThsc^a3AoPJi|<*aS-JT-Umtq#;@R{2%%+=&RCjC;Wt6~Sxl6up8V0<
zS!ki#wJ@JLVCoEgbcA}CZ!i$B^6<hk$F`g;OH3d6B=LLRNp5E>#Y~JE=_~SVAX+zB
ztB4}Xfkz8Kr)bR%BRYt>FQnlz6%b)%W<(D;{=!jG>9IW>17!M5vvBYXcOTcgy-&6#
zkiZs28H4z~*GF;7f$^^lp<hV#cPRqs+H$zcrb5HQ<ZgJ-&6q#+MK`Ye@QVo$%V*^=
zd_S@_6OVXR5%zq1N=&vAsN1plUkC+SB<M!q_XmndAxq~Xp9X{o!Yo#RVwHa>e9=bp
zu|oS^*O!+z#*^|gL65K=pbgRzXxioUIR9J@sY;G1z=_5OJpsON3p7}hS>66)|FiD!
zjNYoeql@417LL#7*{EM!bQO$0Aymc5lz2%0aK<(#ullAgH(o&^E#cTyUd&zjj62#u
zKMr$~`vI9~GlKI5bsypw>4V$2={u*{-~3^LygP~)0yUzSWBvHbt37Jr|Gz(-6{0^L
zKWTE^I9F@aLeEv`f}T@suLiqjZBQ{(a+pwwc?+g7{`jgLBsho0{J;);S0W&>XP~5n
zs+hsP8?|V@F7sbM4tS!?f2Wi4V8PZlj8i#K{~1^rMrex?Ih$XY{;3XskXcy^&VDA6
z<8_bf67nt69?jLD9quwZ&1LUal+cI#9xL8>%V4VfaXki<-%2QK3(3%5pb;#_HaI&C
zGMdt9bh;&^dy=c73w9k$Nr#Qx=VwB>{8eZm1G%Ig0LzQ7d{9t5E-SX(<w|8_#?j9Z
z<=xSd@gk-#Zn?K7Uv}7mINV>L-V<8_!5y(e)$p&pG8!hwy$v`ylWUlUHo<C8Ld~co
zovr$Q+x{h4kbw2`yTQRh+2%t+yEakG{EGs@0rTR`2Mp37>~<(vOLVn-Xt+Us1$o2i
z>z_4WCSGF#C}H#8@wx1)WE?{{FIFeE5LDxOHPDAg>&AVyPSuMb5fdbSsiGWS6u00Y
z^49PFTty_X`M;ik^1e~H_wexYgL_%_JsBbh0L_Y9VSF_}*NeprhTQXC6D9n#B`_uL
zwlrJLNMUx1vJNt0D+}Eu&t&mg&C<qR$1EuY6d8r$1{aZgsN(eh4gzYX({zCnYk9pk
z2NT^Wx&=YN^E(ge7eG1hFsN#n2rl~ai9&KVw9ip?$3o~AZ`?%>{G3G>JU=`7=>@Yv
z(!t1rlrT}}uH~aC4L|>~$rLZ?7_!xM)OC!z5i(@4(IP(f==xyh1LVf$Kc1`qCOV~|
zLM!<6xZKVG9Rc6#z4wQBNLgmM2T2>WU+C0D&4!DUW5%PWrm$^Qns0A!oZB;J8!ZgR
z`|-2IfpgB8w;mU8{%D{=-v|8o_1}Cb2T$^Zw6vjMUFKRth`uuh`8%hp@wS{<Pz4Ma
zfot!6$D;z9Ectu)%kbJ*@U-)^nU}`ew}N{c&7P3yMMa()^e9tFu`xTAo8u*^1dQ<y
zDXr-E?$_UfR0^tP%Plk5UndJZ3ew@;@5*HOJ-Rd)oXwWEtLTolUPVV*l3f9-{^)}S
zLY3o!?@sub6cG-EO6h57;i>i~%QtF5EQYj7MfMatLf@l8<TUN9_^}bhTx08K3zWLE
z0VSSB*j$_(cO`%ngyViRAIn+?O<G=HGnX$4lM#m21;AL7Jbo5WNALgW{+$Iah8m}s
zKra&4=lFp=Yzn=$#8|qcaRAknuWKB^fDvKG;*+J~#r6Ng*jolv)#m-eihxLWmxMG(
zcWk=Zbc1wvBOyq4cXtR#cSv`4N=tXwS<ac6+xt25%=`LnZ@+A=b*+E?0<NH?#?`8o
z>CJH)=0<fJZ@fDHTn}(ii9`@dBkKShHNG7{pazyV?Nc{K|2E~ZOB}-7bTb5WV$W3z
zWeFIUhHmVq0BkP4HHonnqlUC}SeT$2L(8deI<*5J1QMn$J$JP~I=Bwt5wa@{`UYp5
zj~2DjyG?ky^pFc8Ba!0$;uix#G*Z@;Gn|xr-M%~Q%65ABJMB*gtCVSMUw-(cLd@B6
zU;HmE0C@KvuU9`7q!F4_D|8Ttz6x@P&qef)fUiXtw#_)4$4vsb0B87L-%b64CqV7I
zM4p$?0JQ847In(y@X11NYv;kA*Gr4z_vNyMZ}ej#21g}IEvcwH{nA%WeLgN~D>tU9
zepyAJ8B9xLR)L3Tk)wuIrH}s`O5h)B1OWf{=@>dxVX-D&aiBGY8v|Xve*`FcmDCIg
zmcKnJeJ%hdof#Q~zGRkXFTZlvASI?`Mq9Fj22QmbPHk{>!JnusCUV-Lva7|VA67EG
zUOZWW3I#J+N6B%u7m0{po)F&5+InV7L3rr#4YU>=AMWP~AP3fZ1R@b7Jl}iE1R`b$
zd4J1EKB(_ErQBctdfG?iO&gp)cmqIhFt&q^unf(xJBc&&sqKq~0XTOYDk^FmH-KA&
z6?sLL3Csri%{J}mTV9?YE&=%7(hR5FhOmP0>!RdpMu<c%2q><NY8!F1LFsv;CW*G%
zRQXTBSdy#2FmTJzMUKB@K_7X$FtcEqw3Kz*TNy0j79S~Rn+LyRq8>a?T~@OVHN!A^
zgDXFWD!w-G87t^DPh-Av-yZM`Y*9!~0W63-AgAR~?s43>duR;rLsCY<SD2r#?Wg%u
zD^{b<Qev|&GI11J97eEy^>n!m+FtKd_Uh$<c9UcF)5Fa{Z0*Mk2Lbevky;%j&}qxX
zC^u_n3<SWnt(EHiB*t^`b!(~CLUn(>G8Z4F*d;6|h&W2%O!n24W>f{u;%T{$J1ET)
zK(hY=P%u@+sCf$jv|Y61!uQa9PTOT6FR?EKN5_b+zGU<(5I>RQGV~((pE>jdvhASb
zHLV-{kDE{U_AZ7P+D*SA+2Z@&!l$yBp@!pgP8y%S?|%enLG9A)55M<>uyAm(Uok5H
zhR|90Lt^+6fd47sZC)bN`Z<`)Y*OU)bPpMG4nSWHM|*(vgHH1fcB#S%Y7i0(%*PK?
zv2uK7SgJZG4SXH88S4Zqmd@ne1|QOZdEn4%jBRE1#I8SN?>e?4UZG_&-0%)B_5Jbn
z-?i~NFall~_kDp~I@|2Cs(S=L2uij(g}=U$@-A`gtDx`U$TN8}HmdLHV^xSx0E%XT
zI|Uo)oQvOhe!QuzB$r|{J-GMKFtq#ha!Af55AF&H53ddG3dw(JI%0T+X?CeFa;A&Q
zT)_4j6#fZ_M-xY(XZgZF@b%w;LzWxta+NCHtc#&A+dg(?hNCo0qx8#G>0~~2Eh<cw
zuN|=su#*L7EVHZj&K+FCSiR&`Hw0+fpvu=v7j*RNFg?v@R>*JE>DDqy4#A0?;9eD{
zB%QrVa9F&uc=4asE$o6R@m>k7I?n2CrMkWmGfa8`TKbNB{|<nB*iB1OW|#}g@ZV=t
zGGSEg0xT!Y#<M_72yfD#Z@ccLJ<P1gQ8Hpdg3vx{#l54c>~e^>mXmqG_%%?1r0~>3
z?%Z}8esv)?XmPK7saF-h3;`OoWb$Zv!vHcrsz5GN7N9HV02e968o=jsk_M=Jkr1Hz
z=}QYQc)igR`YumN<Xak(5o|cH4vhf=3eK#J-rpkuBdTIRRZ`zLHI)npP2{VsI!=HA
zl%Xa*MF*tcSUipDp!23{6M(K|-PW$YNrp2sFmsL1KP=%w`krY=`#X2X?0_(Jn;eUm
z`@r;s9JX0J5#ME81D-F&_-jYH8euV<k%O{t!&*4R><+aZMpz;9?VO}7k{w?c$!y;G
z_<Y1iM<>f%0VP4Z%|-85l?O3FQOIRT1EW2UAB{ooiFBHx#l^+vo`SUl-%eRAX2C%9
zX*db^HWM*gC>HS?Yt)#6h=WRR5UN|SaNk0m{`~n#ec10ET6f2<wLRd3Q}$U#*MQ}K
zwEij}*7KVUwRN>Ec(DEWw;=ou=HuC&<or-e_@7_@UCdDn1oI_pyvfOed*cEF^0f^$
zsjUR@t4XA|fo$}55Ymp0EUlN5QqER^MAMj{{!jmC7tfi|s3^!IJj~fh+HHqeu6nIX
zblO`nw~q+~GM;Ox7&dD#cZrNgu)yuH2xpBoEtGlgu9{`v;-1RUP#N-`zd)zgG(B~3
zo9ZC~zvcHe0v@%%Z)d1231mvphwd>`;5e$10RpC1WyL0r;m&Y!$~_ZIV#up98*ZgC
zpWsyiwjN^o{9il(Zm-h@V3owA0S;;WQs*2QK3Q20-Dq;Zsucn0z_9w@>9Q|h7PG%@
zbHO@UJ$~dKCXG~sjvLP4P5qtrCB73^38rK5=Yn{#^Y#WmMkW6qYq<lyMdb9v11Ts*
zAWYAT5%!^4iTritgu#+?o(^Va^y=S4JvSH<PA}1}4$#kHc*(`zdm4P(AOj@Wd9dd!
z-XkardT-4XKomsfx#3rHlna#i$>E?!WIH2bT%6YcHQ&_B^9_G7dW8K9V@1WA6IgSB
z06xO*<Il&9VjEir2Q)KP@%n6!<2p6XElXilcGe&$Jm^l=xY6w12%onfDR&Qocff(W
zuLn?ZpZ^R<fI>q<{QeKb|NVLYK5=rtFYWE^N(jw<DZ?^=29z3P*2mk9H%Q0@A?($M
zhnBvQ>i}?JI0nG(QMy204i4_h7(<V5NKd9&4L5pX`X=ih6>J@E+a%Jtod^y}$wi$}
zb*jp_iyC&`j~QyngXq(rT}t3fz4N#IGZjKbpTiWFlvD~6u@t;J3r^l$b;@Gc1WsX8
zlL8f_DU3i5MnQsxuf!`qJ|p7gWE_|_<ATV!#5d<#1TM?(<8`jiDBoE5!qW7YffMO$
zrs^f)%WT0?7`lW*W>W<dG!-p^#O!zouKESAlo)`m+XC6<0<`2X@yFB!KqQ510Y?o7
zn8#WDCM%gu7%%YvNm!%Vxs1%pJR;y#oMAQ?LBDX~J5u&_=no_JDI(Hd&(a&Ad6ZS^
zO!a$UgCzrSwS0I)!?xcO!ECy+4Ug0=)5JwmOU0LMTuE)`Cfu`_oK8L*bh$rXU8#1v
zeVTRl)KtQ@>iqPElK)_-aMJE^9UoGD!4w<@{d(nazRM06VX2i#8+=x36^kUC@ld*>
zMDnw&JqdFQKcLR^QjZy1Zgkj7)b)z)*7GE+dAIaV#MG$w2{MOy(UO*EmjaqVNhuZN
z(Hq7FRHY?mY*zE_-u&r2ZVCn4TU*G`w1AA*pU<8nP=J-uKWuwsp40ofNgAbNn)#zw
zQk%5PM;lDw^#2|T{_)8c<$V?(+kPU<W?*E3dGJRsA0Hq3TCa{TuWP)X+!gJ8rJyRA
zNk93%njXPNQIlR~;Gq8SK{UZ<Z=AuURJ)nY>3BIAm(`qX;5FE}%kdPL3~vW~(KU52
z=QEF3{?^dLpfEYAUXc20XHQP#E_ug{a1|2u`i{f_H8;0qW|^nx2u-tJX6tS7{V9*8
zzx>poG)Z(j?Nx4(xpl^dE-ROAl8FM7*gvvQ5THbj%xX3%%;yb2dB!7<-KeZ%)l;*h
zLQSdx(iDW=L>RnP0#eC5c3N^`qKPEi)%A5j0-dI$AjP!K`fkWN4(tgSFuOv;r~}+~
z88EWWy!>(O0c@^093o-@vsV@Y@h0xTCdLe($tktein0@-03!#$@TG<oD!Uuc7Ai1w
zskSOnEJS?Q7DV>E(eROUAaz^O4sdjeKRGB;te`EMq|pz)Kt6#3v%LL**M}HkVFK@_
z2}E{|-7EoX(P!s^w5r?bB6*<_Qxii&WN4Rt1he=BOwX0SvBZ8V2*0W}0|L3ivct0R
z-^Ky|76SPP@kI~vRGzRvmn4jcPpyQ!^R`jaqkNC(TlS_(I3-6GrqQ;sqL&^YMo?xd
zv1a4Djk#o{&`#QdQ<3zf0NkNc!j`Y+Ow|M29hp^%3Q(NG>9F?a{p=h;_G9_csfmGF
zH>DWDoW(dwQR$@OS~L9>&UBL8C~}n-FELjxe*xtv`I$rabypH#&;1rt<_qF-Df)G9
z3-LKcv*`>BJ#pRv)>ZE5i@?-s;r|0F7uY8{c<%DVqZ&2QeI3NME=Nq0XiZ3{l$1%a
zv9isE5yJJ;MaQz#>)|(R?{59`_F#OBN47XF?DX#~o|YDVnMSRoEEfDEWZb&>ObI#v
zPv7rf&b6LQ%Lm)%6M^1j{sy@|5~YC!+0^a@;vB(DF!^lBbS=_FNh8-n_@<z@t1a&8
z=wY30kf%0xa(^e}-x{3%=?MVLl~>&+k#KZ=7tDWq|NiF-hJ^;vs&Spyc_E@S)&Aj#
zw@nN=Wu<>;Ds)k#u5fr+`uyUY)CKgMUT0ro=?vsvBV%Jp3^v+qLG`FuDLz&R$YM^_
z7(dV!@7Wk8$V0a9yR52&J_8e+>PVJHa;!c#l(RtVVjNBX1Ruy}i$E<MHb#LgnVWlo
zDc^}Tn<Ib!qD)=rKD%RHJ+%0#>n7@4Xn9Zj!RU$PP2*>GaVHkfX5~98u@%X?oTvE!
z=4M2&X(@Iid`J<)z>+@+p`rC{7sElt2-^};&v&4}o)kjjCBxYC@bt{zPgC&ks`&xF
zz~!(d21VBk1tLx|{C-!g0hbP?1ee2kMwZm@|J&nrK>9R@Y!)p9sc#X@s=%k2iK+)b
zNVg2~m+0KQ^b2NR59jTk_a#dG)+hT<hyDA@B3H=nM2z2q{6ExD|Hr4F=b(<UrAXgL
z-(Rj9cIN1~p!YttlpnrP<?rSx>bx!p=ab7I%vgl}`YV*mW`^lvSbgzf2||+BD}?9C
zqrYoOs)$Upd1Bf<n)sEF2o9tf5|NFB0$-(bwTktm4=G7Sz4XQDd0uR)3wW|kh@>@z
z_NE2wg$PqBRl*ndy8Qym|MymKrw|t23|FRBlkI&}G28`Q&2@=$>AAxc6Xm87Nj_m{
zVTwFLO}?(Uj6C{u-B@fYu`CULye=Kc61o@%n%sm^zYEYc6e4EM<o%qW@=Xm8(@ka9
zti$pm76rV1V*)!M_ZR*(*NH&sm!21)`iv<aD9YZpJzt5hXwG&d_w1wzSNj6NRd*O}
zPn#U7|6fk^6C^c~k2%nj)eO^VxH;L&{FzGr=T%ny2mzK0*aH%UDp`NWzcNKO6zi^F
zcH80l4oF1s4u`+>%5*ihg}24@Zgl(JG*B-p!$>o9$*TUCeloP14Wm$O#g#5NU}~Mb
zlprA(vWOlFBcu*vcZ&OKk``J2$VZc*sdKo=%2ZP{_@j~?m61ulA0m7V`xdTNSoT<k
z$E4on(Ox3HrdBL+a&i)uz0OFuEJ1)yrEoo<ay<gH8YP?uPaxdD%x-Zq7K_=i2z*Ww
ziE;P#A#%X3RTQAy#@BHItBR^}fNi9tk*<aEe`i`5UO&)hFWxb#b*D#ExCX*HOwrVA
zj9=eG>6*exhH8od4Y#tXwid^K&Y=HHt6&ruzkmQ#v`iWZb^6~k#Q*I!cf5xPAuiRW
z-mr8-&TM@n6mo!RsFkgAs7ezCYtK~tks)xu{y^&YqGt+l`y=jey!)*_Ex6DS_4wpT
z#lWCzaRaz>Q^K?q`Zb+lo}&$psjG8NGLYp3zz8kOM+yoGn)a=J-P+rf^B0uCy>f%;
zG4q2OQHxqwE|Q%pk4r(8+Ko7hHWIr&0TQx$94a0~d}=(K{ZlEl!sNPD9BRGPz0*E_
znD4&dRBsP+f8SW9eN{Ib`j+A+amwvr+o4{Rn$I`Zl2TH!d7F<O7E86^KLr{|JGyu6
z1LNTS+e`fKBS{kkq9;-z&qDBjIVNBmB8&`U<B(2_uS&|WhASxF_(fq83EWm#PfYAm
zy#V3j;&OjAM-J$<bdhB*jE!lcW>;4`<m+aG#bjk=b5pJNLEJ8cIiu;C;_bhRK1y<=
zOKaAp6##1}d8K;Iy-OeOBApAuDn1u^RWDgCw|nTxh1@0orYa;i*E>_EhuLo+AgC(Q
ze24+^Bx{e!*rWRvk%uTL-^1-&aA))rKrdWzbe%IcpDj)#=EDN3IVu9!ABj}sr$|7A
zL>g%K6#VbzD-ARV@c;dX|8G~~pJDB%y>JH;pk2{m)bih7MKTDe#)Y`_6tZ_c#C#9X
z{tC8T38-)`E~SV9*<ceOl$cL}J+9BI^3pN$c5=n!<P{XC0aSOgz?anqyNaE}<ailQ
zPPZ7#LqH^`f7ERYF5XNYaert?5<_ydG0y8AW~K;FCONpTpW>s^5*8ufsxQouMB^Sf
zdo=f3o}nbSo#Yln&iC0?)^-PpcX6&8K}GFfu5Gl)4+1wFWQ{*;ZyPECq#i0>UTsRb
z&*C}t3DIx<TWI<7|FjBVlq}}Iuiu5bEoHTAZf}b$EC@ao!0+trhyn%zMx(j`)SOa`
z5Cl0~;HgvNxP)|3IJPmDcZs-Opy@^l3fNK{(bWu0k-U{Ym#HRCi*)+k+46b?+bfNl
z-EM1*=D9l$Syk}iulIaO&cS<v2<EJLuhw4Sq^3nnGrwf4o6BRBd9$*+6idf56hM{J
zmWFWASS*z^5mH938?+cLZVy@@To)J0IZ3=KYS9?di7n*FguAFBH~X=m5Jkbyy`t`N
zZ2(z<|C$|%!OjzFsu4~fF_jY{DTQ#C&A>1Msqf#y=0+l~gbk9sfQnm0L}U?F?-An7
zn;|8P<Lv}4+N<@}Ef4u@8FgUX88Z*xo@#Rpy4bDAZ9X}cYJX`<VPdj;$Q>WcTMQN)
zHzB{DrDS7EDDeSnFFRKnRUukvMa!i3#uo^^9na=hk=Ju>Gt~u1?V5>4SX-tOFgSB9
zZVrIfCeiO1=I;nOT|y^0qXCVm1OuU`r-x2Nr2F0|6$2LyjWibtpW{=)@W0vHf1iK-
z{Zj|VR{=oxTHVl+K1T)-1|~~3ol72&wRji8d7A~<C6>>V{pIVPP`%}y_jUQ3wi1#j
zuf0|mR7q4A)@)J&NEE2b&~jL{@8$QpLzo8|vsFD#b2^oJSluE&BoTNgQDOYh6^P?6
zS8vCX6B`>V@}vF8JaoNIR`#}+8`*E#I30{D(k`oJElo^JfTb#C_Sf?Aa*e9NLCH!w
zGoGWhc3rryU2AKZ^niU^?ngzW{bxXbRQl^f&DxJqpYja*@WaiNl{IiY@vDIQfXQK$
z>LM-6xu!Y{ri-v>W-8-P@H4Y>b)mOB%9h-p51@ud;zD?|d6z^yGSHY4)1b^2hek?=
zg2vwaCOzG5^cnHq{{U;Nu9$W2u3sc5_7^4JZ{#=Yq(z4K(o##yWo<UkrO1Shw%uq$
zWXsqjEtk=bW}mmfORiLgl!RPdP8eHH6Y%Kca=P6PTugv9W%32fsJ)Jcl<cUbq>u#X
z!?<;)9<7`Vj~<d^*gP%cTFRVCqz%gNs|yzMJ8hM2w+NPml0SQ+zYmbmi~q25{<fdr
zBdnpGWwQ5WInTE?H@(9;p#wR=!4;3-`HYTkbflgrz5WntWG!ZMen(E^iN7W;PsYwf
zqp&p=FC5eJdXHZV^%hJe?t#t!w%t>LI(iR}=~v58x5|j>-q)>ecNrr_WsDuLjy=B7
z(aQqIs_)ngg`cRFBexr@KQo03Q8L8M1(&?b&T1y5(Sxe5mR8wzn*9a8KdNTbPW?_1
z^=Ll9$;*U>V_+9)ftJXVzHw+-{)5>Z()3~o6O!V2!WfxOfqx(@YhBRZTt5%-dt%=5
z$gPn~`O)a3f&ud9g!07R0IqEDM7el>3M#8zTxzTk+d<zR=Y<XwXC^N+f;%Js5GHO>
zhNeUaXt}ucvzG^k?ZQXngo3iyUK_YS8sq~G@=M6%mW3vZSt!D*kgPD5TvUrpa}CDF
z2UzTXtcdE(@&wMd$~KC*m`~^#?8r~wNwIiKMQ9W8>O1l)nAy=AuUxP#guEDi-zv*g
z6kX=RuyQ=)KPJItI&jCSJ1N~QrlgsmB+QVI${=@nc~;U^5m;KY>g`rvCMu-&mMExq
zlw+n5hm>yI*4^5e`F3qW6>g^H2KsRHd@Dco6Y-9*EtlcxYXd#0IK7`Kb$(lcFRTI*
zOj;Y(QYBGbHmIv$vOo01(uKF70zL0I*G`pRdUc~Mmpv?Ze-fgEb})JuaxRfvF-bFI
zDzL}%Iu1LM%Fn{?ba>57{%oz)@+_t2ic$aBib;DvVg~bMLiV_=YE36weq(i;=H>0i
zs<NW9<T4yz;jkxv@MG_bYE8((Z*k0j25nx5*F@~PWdwC>!fhLkWeP<CbHTgE?q`*?
zl_>3;3yL}t^fNOvQV`6~YZaRHQhrMldXcYS+s%DkiJWswa!}8_K8alkt}pb=rJ9FG
z4X98Gb)D?*%FK{&v#=O{TnGx$dh_UKe<2~M(+ryBKg%FjN=lGGV69bBm6y=l4M#aC
zb&4U@cH{|N7QWA^fwxDxE?ie-$U0B+NFL>-{IY+r-(9T)^Im)K2G7VX*SaCje2}J}
znbvPmZbyD_Q8$0l!Q8y$@yPNVP)EOem+3|0MZrP0WGKY8F(A^=lUW81ur4aaSa+_H
zL&!nQ<JOiZzgU9N`qGv8@@R6$y&Qr;Q)Bzs3$4#8413CrGYMqbu*s<@vx}XPb9Ro$
zYZYBxIl#U`!7nQ-OQ4_>?dpFFZ2o<Yf9Ak{d^wH-bIGycARzGSH<b6AO_HmR{l)Fs
zrdf9o$|a!JGZ>6M<(H(^cvv;m|Ko>%<7A(KukluYG$8ShoPPyr=1I8iY-cAw>afFM
z-$9u|(QooGU&mwp7u-9)9Yx>UDcrM0QUOlbsy!J8>sj$Ju<R)1$EcT$RB<%|s`}FN
zWyTl8@Jo1oS99x-B;m5c&Pl~|m3&QsBvI@ctbJj=7*iZ<RtePW4L)xT<d%(Evf2LJ
zQT+pLT|4Wy(rU!-Oaf=yv$y3DDfMMq&T!80&~tsaCPpXJQB4Zh&R~xoe~u~HPiC<|
zZlsaa;u@LuZ0-=1<eS>0Q|F5P6bN-XIK$y`!Lj=Mz$Za%MVA@UNA`U`_VdqI7_^bs
zvgI0S@_tZ}7I@+<m{rM8=@RL()~kLFJCqUb4vtqjKi8-Fxg9BcU_CA+dx&XEpARlL
z+-_q`z>rV~nUWnCd5XLs)lAH-&a*i_YKrNr^@hw`x@cxhMLkhpGO-d@7dyUezNHjB
zTIT|vUwrEUg<G|H8s%kRtFGEF7A8X$F4!VsvdsZGJG88@Lhg|rAeQTtz`fIZb}H>C
z@hfPOa&pUPXhSv2c7zR^<7k4Ko6=pw*%pIls+}r+@tFOrfkegoj1#ig>bmsHMeLTt
z{!9(!P0KKvQ#Dp+x#<N~P!n?$!vcl`Uh8F!;Hc7SBr8T5#69VY6moM|0gcv1_qX+&
z6<@1U`AT;Xv3Y(3Y4O-@kgEibb!gYlfM}~K4IAcuru?WaV&|^x5Z#_xo4PcUUO9gK
zW|3v|>drC+(|50nYom8QM8`3+=bIWa3T?TS4d{C1b}iK?<vLBwGrQrWV;NxK-TvB?
zr$6R>5*^8jIW(v__}ZRSJpLIbP5MOho+%D5)aH}5Z_@ETUXE{%z7IF$b=haucKe2V
zNQ*rl2x!2hCg>#^t>>x3@eKJ`y8$VzX^T*>t&6|4Y+LWQbl^X4{v{8jaYPyjLH|d5
zWGWJQh`);KuA`%EUgi2`ks$4@y^|w3_u1;rL;;e~CMhXtaZZjPeP^G%A#(Q)uKo3S
z)_n=C1S<3dyTz^!$b&xD3(bHm8!K5vVdVSIhNdE=i>`GPQ~_3B{G-Do3E7NeC0#HX
z)}<;2uJcONn7hnX<E`s}V}D|cId6FL0d(bUjhjovvR`hMmwc%!|96Thpn30GcC1y)
zQzLzdN{kZr$<2WgI|1p%w5$+s2<(Wu=anuan@oG#*w_G!^<3_gme`WgQYwD_Ohf`M
zVE|no(`~}Qz<`4&=%A<f{<mgV@1{$0Kmar>5>nyvverF7d^Bpr!5M+$o?!p)^Nl}d
zA6y{<k)(XNq)FnPdG9`mgoK9X^OKPH{?@3ZP!$l&V7DPG(`{cZTASCo9Hgn3R?3k}
z=Mn+8fYg(sei$P6PtmD6JF~?n;L3sD^Tt_@vf^Pe$~rd+6ln^gykiqYKK~TRgg9Uz
zrQ7~4eu68TM2R*|d&zv=XWcNeOwZpF>xQ6gwXvj3eN3|H+3U%u73Xg6atlk&*$pr2
zyCwsAiNH6<ivzK?H@W1+=w##X+8=1FT+NDuDp<_lPCI5xzcZo`Ln4v@kW#tC{6aq#
zl%iedTQmVnmHya1Hcx7a1ijo{h4JrHRnG%M8HJfT4We3^;rcN(X;p}i=1L4aAm6w$
z7&Fe`CBJ>8>MDkfi&*DP;<8q!5|8`MGwqjHov4I#-lx1A=I?g4&V>W)PeP>UdlzZN
z%^I{2l;W%^(Q}E(nN_MMN9Zn}57KHbIm3C>Qc@+&mQ+LSNI&!!YSRVz>c#Z4pWRcK
zJ$y#euq0Bdrh%*O$!p3bhGProW~4$w{pFTpNog#!t!DE&db20VLlACIYLR?8(glXR
z#)A<$Q2xaZtFGt}zN#bmRz|~1@$KNAbgJ``H#sIH+9s#L7+1FIXMvLR2eAl@t>FdZ
zne}_cJd?*Y$?zvhYM}?%7{}W<nk|S36hW$b%7Y-KTvi$Z$muw&cax_oINMvtB0BHo
zao?lOEk>!ck5`Ulf^)&6Z-cq+CtqT>H%uj-*muq!YRxy=pCViMYQHc$emWG`URYsJ
zszcc&>K<oQeU_&U!UhF;yH1%SP*>DKcJ!x!JR3KrB`hXH;czd5ZQCdDrc><r$7#Y2
zHk+r?+bqh6ldxl3TLnqT?Ff#(`(ed(j7@*f(win95&kqC>p-bOt@X7Z@1vnF7%uaZ
zl1ydC+T;^2i*W>g=xq56YIcXE`99&%&kfPz9KMREA56ij{m8!VFE+Y7260f$I6pJq
zIH3DocDzT+Z?4NxD;j<IuyR`!fPe{+6%li2NM~h%7*#oj_Oce2F1aMPAb3UO^yQR@
zx)-B=rf$Ql|DTYg-%*7Z@3m^>rxDqf8^axwNr5vhFjfEPXoQ~92j}l4SSJkS`akl&
zdS2wX6=569F*<$g=N1ub(-4za9mYCQq(5H}qh@7yT3Q{Dr>0?tjbTuV14RY6Gl>tX
zSK8rnKuMTwu^S?@a=;lGMPCaqgNo6QxLuJs8@S+Vw?)r?VM&*?VT05}o0<mAaanAd
zDEmYU6rt{s!t*q;Z{eAo)SdY_Q))EhPe@@#;|oK2A~3eM&?Yh^nYu5+I0P$ko%C;D
zH9=|RRCI}Z_|k(5l?H)ImV`X6A3?P^^W8l?1KNwH4|rbOitBjn)_DMoQNH)<Eqsp&
z;9*9vsPpM7l;OXoga1!G@$ZQH&%o=53Ben2o0gCu3iuUdC<RWqoCDJe`=yC|sl-8v
zB0!zmv&K;_=_81gSIGYZ8`~`92(YQwNVi-7T1Q|`jl0dQ%1a6vjZh#y3O2a5P}p8h
zU6kgi3K*O1(uB#pRtq9FqI#gqcgq3$U*+W%h8D7AAm$PLN+=+Bx)LgxK^Xv1XV~pp
zD9E6d41qIwn|@@e<l`zSr^p5Kx8}B-bGY8uvTQx#<$s=sVoyfN?CQluHvpL~U5^qK
zm2jvQK)E?R)<&W!6@XmfQ6$qTHrXXf^d4WH4V2#U(1XJfiAcMU%071$9TfyGX%?D!
z-O4<?6RCiEIghubQQ`u5&@%j5KETW4kn*gbZX1QQkV~gu^{HAbYAzv*tZRSBO4=$<
zlo{Y`i8o%m$siN?d=(laZ2WYqa3r%-sZkV6L0LgoJ=S(ZknM5s;X*)<W3%2#g9o4Z
zk(&FlYe_KMwd@>L@C+omaGg)guPcn9(w}xE2x@J%g_6L7w8a+R1_#ZQ>KcSmSltHs
z2FOm_zY^QJv|xF8R({D!6YhFR^QipwhD@TUvy%k!hsR4vyM@^mA~KUq-%-aqIMzoJ
z6D^wHvHn=6pIGv{`Vvik5Uiug3ff{k_pe#4)y!n6w?htUnGqlt;;eMdL^dA7(RXp+
z5TIqX#Lc)>)XCqQbeFL=kC{T%ZoHD`zxg$)qL3{1Acl*1G98Bj3(;I5jm)GEt@nCh
zp)OB`D3w)jJWtB(_HoJZHu<NK%6EEVts;M#$pIf5oxIq0sWoa^n_vnT`x}g{-7^i2
z-lBX9M&Y8Kui~q-78s##r2Dvnx?^pg1HZw&sDfR>=l4MBl81?dX7lS=!M9pTcJunF
zHQii&r=iw`=_fA|Sd&$X-Y1f)=Z(%!@3D@x2P$>Pf8xwJ?dSL=Xm(frb+gCiA=}VT
z@DVoBXLX`7@p^o<JucZiZ{h7xPihBIQB&634Cl`_&!a9!BF|xzjd`Ym8204E`SrHy
zE78uvN6t{-jANsm3Z}18yTyzd@423<*PmXO422`)SjlV?KK`_zBM2IxPNzOO-5ohm
z(GYCSEnew^T9{X<c^BZkFu#bsNWsxxDB}6XSndNiXjS&XtW<hVZ7qwzKY~5}>#kVT
z50G&H;QEE;EDJzSPQp4>%eAOB*W7jqf<wC{{owJ~!tCws4e`CNv>`Q?Bq~m>(?0(Z
z$^QC7|9p1^#spsZlI_MU+|-Qf>qBblYcLhj8&r|8uqdIXtt>BZIVX$5Z6~9U!V7Ds
z2`f%kQ_IP;Q1TO{q68uPHG0Vmh7gC{!$P1APmD$vAZ5zFd3<Xcj1u@=(U&ZVa+)}P
z1cz13nxOQNBLVJedj5l87N1t*Zm*U=#wg(=_qP{Y3~A<WvMr8EsIn^bY-zWTD`}s2
zgegU2ak%11{56b=iJ^$Zxy4ff7S4hOPr&VEu7uEsiBHjUeItpoX@fbr6tSj?oubte
z^62Qywk#rSC~&-f_jy%C-?JV4ZxvM(lqK;tMlhn3JxmBdqhT*=-e#Rwa)TtTg1L)I
zEJ2#<iWO1a%2BEy{eT?WVSatu1-NY*?6@$13kw}ok=yP?96WX!DA%ZknyIWM7OAaF
zF<s;kd7Kp$U2Qm(CAqZFy&G}e*nBP`-6&Z~?estmV01g6?M5Tvwik*xr3_O*yV{}>
zc>I%-nhu|qflx(?+xU|{xmz>LoA(T7cWQ=0t=EU8n1c6Uh(#H9uFt6uuUp)x-SasN
zWl!B-H4zj0>J1zMdU3lBWgpdKwPa@Fi5Twt!Jb-xmzWAd>=pE_!|pHq3JJo%_BDKU
z?yhW?G2G;R#c#TQo|yOfavNzpVJ`LE&P3?(RLEPD=2C>+vDF{R0otym-^{mso2ibg
z3!9o2+2WDnb<;?(k6pSLT4bna0(;ZeNQ1_#_Jy&?6kbTP#>;^pSPF60(A>Wcz8IB@
zm{KZe?Fx`Tjy}5Iahwl-F>81hD0jYqLn~QVFH6|Q!7nZbt72|rM`v6m$JTq5-&Cdk
zHJf**gt$KDGrXOUqQnbbOV;Wsm$;h2uwS>HpLauVo)DP!yf4-)R-t5VznXo4lxviK
zZrh@cOR_NE_tU5><00|5I~R#dNRYu}KPK;1g%#Ox2Vq{{+@M-h;x)t8^FLju>Sep`
z6twE!yk~EmdW)WR<PX8R`UCPvjc0dh&_AA>b3lm})9FX&?pR(^h$J<z=pCH665L(*
zq{j%i-R!pCB*XM+<FT}#n=;P1;w2<ad!?vJ;j*|bg6HW?kNzesE>&FKd+1lJ#!<<@
zN`-2v*6m`a02LuHOop4aooY`#6dCa`qCk8M=H+g8$KUVXHvX;J-cdiwL38u3smec2
z;=c~?ed<WYH-pB?Sn*4k1_k_7F!Awe<BfmvyPjsj?ig?*H@NT5u+Y{dyMC*ZMakp!
zxU9Q;G@49ROcRRy=Ajnaq&FKLQ&b2ABUY9)ZxMX!F*0odV?J5HMqykoKfXTPW!$|h
zf`&PP5nEv?yE~UDdQBu!EjIE&lQDWeMw{!5sp+w0C_LuNEw4OsHUp|;fw%6HFPZZJ
znih+7n@Cu|HJ;=xWodcoG3EyIJ`JX@l~IUg$s-+s#b5|vC}5`50>P@F_VZ`3MqOIB
zRf;C306sAJh|Uv?{Nh7>8y2ChUT6Z&o2>&{!ITFrI{_TE<ot_dI;BjEvju*8>C~Vx
zN;x@Vml>*BQbb5|Bk;k|0JOh)eE}2^7@B@W!c5VjRVdK>hN~5~j?dvNICqQtqee^y
zFT`6(3}a6ZspIoU_;8+Ml#k-1d|$;g5^FT+`D`!XF!J_`<4A*Y-t;nzD}~G9KPpoK
zW|hUavY}E~l50W?4HDNAx|Fgv=x}(<au$-;*=6WV`b|7oYL8#aIzeolSR+3cw4Ik`
zWi5N?oo&B#-YwLHC{jS3EsVpuFcvs)7lUxxp9J1e(8bJAVZJ}S+X_~ZLd;zDIFVdi
z35n4!&9{U2Yt78D1mhQxL7EALuifI8W8b<=moG~j0f!1#c(rr1337AucRb-$l~;BO
zx5WbBXs|LFJPJ|CNBv7f+5vMjtYAGoDsA^YM;v~$Nf-%_h_GK`oQ?i9E;jUg%DJT7
zHnfcr+*HD}xMELgNvf*aADqX}(77e>k<Euj^(X8uY_#b4bhdyt)=Pd}NmCxGx6-me
zNIS^YWFR-EK-)EKg@=;jh*Cz|kvIQC_r&*LW~j5qjC&Ep{LVDA8k3o&-@FzH57F1a
z0@P5_efB1E<v%BwzmN5Qf4XFYbVoQ_`0>L>G#pn17-ykwo}b&7poQ=ZwzRawDO&dh
zm$3lNITbPS7ohvy1M~vWv9QE|y@m#tRD^o9u^Ht4<fH=Qdc4@@>%;fF1B(i6ZOG1o
zQIT0+;4je8?7+DG3UbLwNnhO>aX&&wH<qYKcfK2<?vD|>s%3Cu;AAg`5`z?rss_KY
z8mWWb$d62|m&V*767|smO(NttI4SbNi1&Y7b#~4n{zVPAXX0d{Fib@v66I2<4*Al0
zX!CEnH+`z{!47Nz$Iw$V<h*~%p_HZ+y8nDTWiZDhi}bBQcYHJDo&D#CqwGQRue2?t
z)up1oqjaP3<`X3)g7PXZ$s|@ee8@3N=A#+U8k5wZPpUhIW(~bR>qQ~T=m#j+?aH(C
zmvG2BM@!K5Gd^lg&|{qtOSlVh>#=U6#qH!tx|n$Rh{J3&ke6a@V(s^*TOAco{g}xr
zK&)L~3_-0fP{K5lf@07*iIACVP$z+Vogp*08zhM1K81El7hQH`R@TT^mzHu2moPa!
zqhwCKov^WlyR*u|7u7~=rK?#TU9I{hp^k+@#^Hd#h_jD;0aI@@<Mk1)_o&XuoJs!i
zy|DV3g>C`ojW=aQyL{rZkeeW*3(#{TlQVMGJj?7IM=%ua`$C?eaEL#TeevZ%|1L8!
z(bKhm=jW?c20o}aCjO<-+#5AE>B&%JR*Beu*Z}Q-Xfq}L3ut~R`FpZDP0B{wa1mz=
zoILdp51-D}B|14%pRQo=vy^qcN-kg?u<^i=h=hDH$A&*i$``25+DpkDtTZ5fSSZlK
zFi<oH`~KK5jWeSZRTQI+6~u4-I;6^U`yLw-2-Xf*2=@OpsBeIzpsb7_B63yu_^4le
z+w$2Zhm4P#Yf(|c%pdc4h{4WrN(K(*42=RYv3oaUkov4yv1~aSo;!AX7cYYo7teeE
z>SSfZ4Xb+>x>BI2G8@pyo$8l5WRWMqWaR$L)-JWk&5aV5Z81pQ?cm8f6BqZ+e;@Z8
z4qx;sr)QM>!7E0Fp1wc(@f!<lFt(_ei%mf`nz4A#?tTbtNm)4wu#={yvG79T^?Kw0
zOhJl|&!hiJqyIg5=tK%!NXsD|4gzlv`NTq3*Vj{d=*bJfo+4hA@aoK<H|#xfX1t#7
z+wNbdr?!iY4kn=?<4Ji6&`x_D9Rj#~9voKl-+dGmxieXc_xIoR$<=)$^Z4|lb}c9I
zypn(|bz<X@iGPUytE_o7!LFjhdqvt!T{Ngdb*{Z6?J`j0Msc{qxK^F6vpaiV_|!j_
zA@9KWQMSPKB+;d~sFTab^{mFih%0I*L;H$0e;ao+GId_^`VLQ*_~wI=RI>QZHifvO
zg8_Zidm~@un{E?1u!K=%!bVDQ=-!4MmQ)UV#KCp>)CSuJOW;Qli@l+kXL#$Kt=m)h
zFcKh2-=JA~t)!tjJ!)mzE#eZT9b2X3Ph4Sus*)TVSYZ##q+h%<%f0W|Eou_|EUhfW
zT{?P)R58h}=m3-~;N?O&^XE}VNYQkPX_v8THAD4PyAaO<olrXy)cFi9kgz{aol>0^
zjratc{>B<8N^wcwx-C0Jl4UZJ<Fr(sjl!i%5IXMjy<@JtmL~7D{_CE!w|sReJPs$3
zai^XaPrc@yDkSKPgaaiZ2$23NRsE(|c26|b&gs)Cth)TOLCq!bPZKU3l#^&fLl?|f
z6ES3Is1Fzj8E)x3Ce<fyVkLd=C!%%vqBLFbjDG1OVPbr_g?|%`FF99$$!b!J%`7GJ
zmG$M`1k=n~u`ej}gv^6heKEpDI8zl{L{C02c77JW0A_Sy!#kOp)NxpgZkckE^XF@w
z*Iz06Gd5h;b=wL$FI@+Dn^M1vXBV`5*OZ6B<w}0+)+fh4#wwh=b}@ev^YW5I&6NN3
z-K~DItwPtd(&NcDE200E4zn}*uM{wDfZT7o_~ZSOajw>3vGY?0i4@Og%7^nIgvsEZ
zENADsnBlN5d3n<I&dzx@?cuDjFF)UO*+AN~REj2qu91C;h=^eM)bVPscdjy=X8W_s
zXtvtsJ*Wv2?z_xdJfhcWZ30$AwyKUW6~A>stnyot&#7w*oAr;xQ`>pu1DlKNne1^h
z(}<4&P5{vZC$M5`%Mh2-o-99KUFUl-x#1rZ<NtkS^1DrHh4dkm@rVE@D!eE-Nh&Z<
zsmi4)5*PrLE+Zo&1uM@)numbfIZRSgGH?GP3k1zNNTpZ+c6V=rpJQU-1UrL3KH&S}
z7~zAcDCFWx0}~T5EG^sDp4ST|q9vRKcMl;%WF}GWdJie+V6khWVy6?^+4m!!b@)Gk
zdKH2h{zyL0<d&v{#&o2d)p7G1-a2cwMFDNXU|x{x*^)O7V02MuJjc%BJ?!CjY!a4a
zChQ^lxWE$CouvaCQ_}41z0YsmCVJYHG<I8-oL9EEw~r>cOUE45iVsPJ?`2sD_m$+V
zP1##jVtYcquu9V;{8mf5eEYThp>*(=wl>9wI4eu5TDD9n#HA19)xDV09obv~j?OCR
zi(+)QyfZLYN|a`s9tQ(HU=d!Y<s@61T~n}p*X{n^&M{sAYh_c7fJ6PxI1Q7g;?-=R
zfzKCm2aLh3A6*55lwu(48v<;Z_oM|D5)P>KaP>ao*-)@zz;f0v=Z+lm%BI%#)sfs<
zwMynU&E*+EW%cA#@Nm7bhsxQC9eikVsj>r;UZ|tc5k909at_9ss+1!lr)^n5x0gip
z6xI+Rj{jzZk&l$VDV-WtZgL`1HHdD(#fgiW7`6CC<dz5$%D8pVqw}UhLZo-}8#e41
zRPjUJhC@`tC|Fm@&v=HAGC5TvO6{lq{B{TO*HR|ApLrBA$vb-df9x6HA<=(ucsxs&
zlosXXY&mAPY00t4j94JU4!LIbUcg4k@jIc-gb?(ux*vGkW6^qhGuS&h6{MtaRn^zW
ziyh+Ex}M>m;mMO9EjlFuG2ZZba#Hc~VNF+pSg|?81j!pPqUY(2FnXO!pB0m42#ar@
z;b9#J;naHjlq1`syEH$K>Z~%k^rZ?q#r7`#641~MsnQZ5i1&@tW`Ke?ZJvpGF9et*
z3;C@K%4XKhIEzRDx<Oc^7)9(>i-zdEgnw0`{~b-_&J4kuavOHU;pyq=-x*Q8Tr&0J
z2M9Ggkyc&MVy-+tEe#*xb5!hAo$&}Ru(6o({aw;c0S4#KILyZ5fRRUG&-)bsk1io1
z(!1YTWV7Dsj}CBKD837LJp;ZVH6ETb*%X{agDg>LeSVSgD|D1JS?=jvrwg6LN|dA2
zOKy&Z_U3)_-DSW+>gmnB#U7>%GIg%Ly<)QcObDG>x>Y(=2eW|4RnTUU)N$ovL^sh|
zHc<LkyCQ3NzGXq1Q-&z|OsI8X!%Y5(7t|nM=$n7OZfaoQ(Ym+EwQ>B7%jKJ^xQY!;
z{{uZANMFz`2K<mFY2Ef@dQVU>zN2bGioDJ>l?6^Ai)*1xW+ne5WwwMid(AZy6p&(W
z@VVrpB%HD#yZHwgQq=B_H)}28oMHmQtZc~8pG*W{ERlte8pbl1=+$;hX$NQTxQ=U_
zY^RwH;>T(QXb|xjd*jrP3W*tNjDcO6=^-nUrZhCk#Sc~njj%Uvq|Zw);|&%>QyVuG
z&w)F~vVCTtG*x4ZwXjgwE=JF>8wGhaqJm|WGYd&u%PESOmXgVX$oQU-vDef*WbO%$
zzBLL(q}#iNhxy+p9Nw94fQtf19vV%7K?LTmezOuhQV_ma-Sx=atK)cV#XUiSv(v}`
zZ9*<IQmL2FQ}2T>x4KFxv6IQlW=8AYn_<m5iDPy`yY#uYwG0+^1&Bwh<h>D<3)tEg
z)Ye^6LrvP`nlmF}e_bh4euzJNi}#pjB`<ep#rDy>n5zb$mioxRTi)WR<JMj3l9F<i
zWBrgwx$J>hG1!f20=LhNL#Kd;j{?x#tavTu$Hi(=N=y-p73QTyg?H&c`}sjOJ>MUY
zbGnHI5X*+9C!XSbd?ukD;+1vM2hD$Z2iK!N`3BfoN2Q-NV|yh+{BQ$od#1<7iCvh7
zMn*6sr`IL{{?m4+R}D95*W=BX>)dY6|5`}>fg%2N2Xkq<;b3X`4aJvKG>kYZ!OGwM
zfILx4kVfTO)IPU3WG$W%pd==mXX0m2Wj2{70m;OS?sBQ3sVQ}vgp2MrTc#-n5Oiam
zQg)bS)>I!2oXB>YJ_s(IK6e@2Ae!JGqpZMRznfi*wgKhWszfox>&GU1A6O?v=Z_C3
z;sJ5e5i-u6`lKkzF(b=?zR_{Ig`s-8_fcnK8II-*cPSK4(s0Bac9YS-?<cl>^~!(T
z;uX~vN~YKGVH%$3`D#ub627r6A2MO<0^L|&z0abMG9sRZ_SP%^JL3hV`-ErJOV<uv
zp{Fi?q_Im1=xDKMRhDMK9b{E;QA0)~ls`Q>F<|ZkwhvHO;1qFn0~II@Ibl*CSbGJC
zyd{<rm2MYB&U6Vv?<E68B`}H#d^{=w`8R#!ZOdI)N<)IJA57y#pgtd5o2(S2Y@~8P
zo(m>_lMPbWEJs_e-nXDG5~ZXh!s?zHZVjOOri@b{R&>6Rwyq_h-9$O1wlKotsd|^b
zoI3N3#>sX6;LSio?k<|!l6(02Gc>CQc2JGv3evM>wk+ZXGp*$?)JEG~xnpLiZin$n
z;@DvMXK1k?D3U2krB7ci@Y!r9Nqkd2YuY6yFP=j6m_>zV!y{f<VfVkhCpB@#Im5ZB
z$oVFG{tizzo6$jo=LD?jw_lwBzZzg|hx*qQ|3wZn&&@qy2Es2#fgKAM<ZLX+lcuDf
zi;7eekG%1sE$U-ryUw}|FAm7bxreLW(#NU$v$cSajEF$@+p#Yx`i9yZGZT{DrIm;4
zXl9nL=1L?(A*a&c^FT}nfS99o>72*j#c_jwdcF-ABa|)oeU&cis(MpTl>oUnJS-hd
z=}a~>I2a?m+t9!v;SsRG9G7WfZk{I~pst=wY_K$B@=eDcw;}njy6n%{@BiDHr!oEx
z_m+#zfG1Qezyb%g;-D#X1t5_6{Q#nS?G}X`8`?sRz<P%tGI|~XLFx>`)mg$av9LiE
z)yI!uVCUP=fF1pfZhJ3W?_~8UW7bmo^2a0ZqlACy_hjERz+}l0=jE`(go=(`xvBYK
zXl6jBw5qO66lgQA!mqZn6pfVaWUrwiOqHzweV+yplqQcai%Zi)(zF?)9y`?Y{YJQb
zObzc02*>57FVbB7k+gTx?;tY<EqAm04({oE17RAhS=KYRA2f<so`D%WhB!KMtD2b6
z=xeV!n_T;1g6npc9@D?WZJRecHgzOVkF}XquOXz(x)6HMQ)jlUxgV&&(91TIa5&yH
z2W7?z5?y!~bCgFu7UMGi@f;RMT7H)SC1j2W$EdW7HhSxBRe<mthY{F7=&e@EV)-ec
z19_uH{As}UiL$zYCBwxM>FN4zidwxnl31$i5^~KM%RT@njVC2|Y#U15L~SwI2nmN#
zh~`zvX!VKJ2X=$kUzm_Ruex`ySCHICUm#~PnK=`7@?a<JN*W^g3zCM86SqFaVKHt?
zE-nSbiF{PKdI?SAeKPA!uNZt#?4G8fVlXpFjJ`qhc1<k+fME1rZ~(*@fY_>qQI~Ox
zCgb~>7XDfLtD4%U?^89;$s&`S8#&x&KfC=gFC2*fC~Yhuf7jRYZvu7PQ1Txel4S*+
z)J?$Z0Rtuw+?pj7Hc`(&-CjwWoD0^7z-X6X4IC0b>x!ts{g)Pi)7>_6_p#xUA2qN5
zL22hj!2bB9?dAD%eD}tL=;0)pissaKwmc-ci4nl8iyghZbaeCBO?TOXu(?9~=y7Yy
zWxo~F&pvG`#uA?y`TzIkUMfSv!_VnVH^;@Hm({vM85iwRR_CpTaZqw}eRRtYYGKNX
zXJ}1fspC5eh31(STWe3~#HWi2xpHfsOxKMm#5h@>l%}7C@b5z1!#Ud)oIrtQJy7Ou
zw?3<OpEJ)kTB;Yf2FgTAr&PU8tnTUc3+s5-q6+i$n6gwGehf=TN5_j8FX;wB`FrWI
z(t~dp<_#a;nz)n|hYRjWC5MOKm4RjX*vU<c6t~#pb8ql1Xb?Q>F=F?K&y#VdL+s@I
zW>n%+L{slTkjt&-j7KeBzZX$-l77wDIw0Vh{uY*j4$das_Z?nQDV?PnX}<SY8{S#W
zON;0q1@2pA3?XunQpZGG%6Vt?V$OKdMeRM~j&{q}8l<4Q!Jp3d7b-f883<!<VZgAz
zGz?>fPzv#Sa#GsN0dz!;(+C}4-gFH6wmiE*E^{&@qVdveWM$#^mfY8#1734Lvk8l&
zyo&PeTQj~lDOiI=ANl@`ISvyz5&T&-L=X7+mhn&FYd^i2NsY?5;_ZGYC*dW13?y=%
zNMY3^zf&VBKPQ$2nw5aHf|%G?<(e5%%yqr@q~gP~USopBhr;>dW2Y1!K1lMPgI=fn
zljrjXKIK0rXdeft*A8{MNGFZ4v7j=nk!iWxG%hDei^jx6pSWTu7EUc~?fg;@G9jbh
zw93V`^#?IPDNtKMRdZ>1)zSN5AE$Hop~09uXSdBuC4f9#I;IB$RxnjE&|qI(;j^fL
zy;O>F6!dMXoFVi+OkjZ;dfe6!u?xkGGs;hyp}mo3gH-<f0IsfX)A{*3$n(;wnApC!
zSl>XondQOPlhwJU>$s&<7H!8$9%2#N+J&vT)!FJ?z7C!;7y9qGF)A!tT605pO0o8T
zw$2P*FxM2kg-_0Fj3+hyWw;$zQjt;!^|n{G3R~!76eut`YS$t1aNJ%@wq4ZWMp#T_
zT|(vzANGgr@yLD;T`d-D<KSawA7$ah1UrxDMIsh<UFj^ueGsYI;j66j`06z=yz@PN
zL6T65>)Udh5x&9*qUop;EM_r>xxMMpqqLL?PdXpl`9)l|0n@`Cxc8S&m0RVgp&`@y
zn0QRILEq!bt2;xgP+8+mRM(JU!?-G{L)d62&iY&ov0={Me9*GQjQo<;eWbyG>GTI0
zQQ$=MRrk+dzkaQ*ytDR<6cL~!KCVRA3ivz0^nYo-J+XZV#XOvytw|^~UV9$SS87Ph
z%2qS!f<UjSjCS4&1(?DXP*(;9zFmJaRVviA7IW{QriM*L;spF_hMA&luE!Q1zIA1%
z`n2;--_BmP3jX5aG<Jo962^d<AObASr|Had(je-Q$!VXU&P-2O-$5%4g)h#Iyk@(~
zfYUAx<ekNL3MRTWQ-YN&tk*OPtkSax%|AbsrBWb1OBUiGnD_h0$HJ71yW?@J19Hq~
zOYS3{A0o=XP1%6q7r1fa7A<H(YK;@N3FnrdQ8roX?Qg|c)+`3?r<80fxC@SMMJ=ky
zt1|g$frTM}MTt<7x6TE72lz*{bp-Kbw(W9<t07g@n%L&`Y-o834o~OMeK?%#n2KxJ
zb|?!-8hXxZ3@2dQ!eCN^^R22Rx#tS~oR_Mbg!%UEB(=X?6!(Dzb@;}E?_1$B`NT(^
z1If-sRhF9t+gq`)Xkm|O1PF@_xsw!6#Ba}qvo&55BQM;N4hl84FQ*f~*EB(@aAedW
zRm#8*^;J8>!Pl!@0h_*M#8#nx9&-*P(0M6P840?pH#;76{&HE4o}LY9Js{g_leajC
zinGmaS~J0FL&Y2T*JBnK6Me<)oS%QS>e84IPGA2ILl>X6@K?@(7kDmc{yMj`ocC&8
zk#&_$#B<~Cw%DJIVKeTq&ck(<--9g)wEAs^QSU09KEl*H7G<#+p9dw;9oQpOwnVju
z_t-K471=K%m@p##jN`Tk>n6Z1sDHHF^Fjxp9baz6%1xrl@qoO%0`5AiXFL!0&nKlA
zCVZi0cVG2|<B1I=G87hOxQ7sW-RhZJt=?H)`5zo<!(8SaWHm<t?t&KEo(4d_x}v;|
zGq?HkC-I3x!&*3@72ljgFNW>wzb7VMz;dcN|1GQ8*+x%{mdCI0_k+X3c{w>G61G=2
z|A(%xjEZZ^x()6Df(5VO9^BpC3BfJ6y9Afu?gV#tch}&7;O_1&?{Ir`_r2ff_mdh7
zs;IN~lDX!Z^R@u6x>b~q@+k%HGwMA=TKw+&F+6ZVBouS9+3~QqKKB|j&-gALpL?$K
zE~pZ)gO0bew})H5zrT<9czkjq`&NLpf~Xe(5f8hY`OUX>VfDQsUW}NSfSXG1u1671
z!K;eksC|XW_}$<+`WiOBlo4%K{7=;>({nZsGx*VJ{vTh+k6Tt}r&<{<2W6u4KL2#U
z=9uG{U~5q|&vlZ+l55tz;!eS3N@T@b;xBRXEUUgLGB_Bsrm)*_jM>7ZdicJzivc;K
zROqooJ|M9zgYsis;{oqj=i0fL@^iLlj?uJkGz@f~BZ?+h4`<2PI|c$>`A<$a7v!rx
zlY(__DYLz$9(-&qx37Yz)8z>-463}skL~3Jtp>J46|_*uKLv@gaA4E+c8B~&)!SEg
zD1M2f?AB?<*a(0V@>+A?FJ2V&n(U<-`p&TlI~6t8dS4w(lwG53-Pfj>Q`kM|H%)xo
zTlz_{&INIf(R&|Prla^fm6XxypzO0EfbuAuOr|NTs)(Kl=6OuG>M!owUYd@R%gGBI
z@YWn0^|q0J+mf!aq2*6a1SXaGc=cLsIwR&A;)``ZpvNEZ=Q-F>VNZ8yzxzbMPFYAe
zg@8swhsd+`xG%D~05zhN`c|jF1l-(<J&{|9*WVhiA}xHL(mUsHxT0v*?)e<cH!~?M
zY+T&FJ(S;i5y98znMizry@82lCHD;qpEb)-cbG7f=%?^1Ri_`qi<MQEwFfn2nl&u?
z=Mb3u>>(n&1U~C_dN8n0r1L`yj#Hl>+>2>`eF_VGNTIqoVDl$iIg9(^1ndZmS{?xN
zO-tJ)eca1b;?d&n{QH&#LLB?{R`P_PG`yGw_fO;4<q}IwLLwbvbd6Hxf@ABJDJ|6a
zdHSC)(0>aILVx1WJrh3XGl?wya7&X)ofLYfQ}JuGA_H~oeyAhZex`JzVk(&+^67~n
zT;r+Gv@)8{bW;+C^yKv`I`ejd7xr>X<<}m*YFC9Y1<{-T26p~Pp?4jGmaCpO>1}R!
zpe2xKCJfQplKpseXy~?<GYyL~KyI%E;3Fvoyna{*D)1B38cLgk*C9rH4;ZC|-9I?-
z)&{%c5Ebr;n!ed}XU!LyRAH}*mkl$h^!s!d_$~ei!_`G+o#d9Iv+EA;PrA_ApTW#Z
zOL7gUcZLiC5jMksn>s-Y3%nx_I<~2rW^Nud2`T9$z;^o-o9gv)&+J;QcRK)xx+tot
zsY$7YZ@dWzap;8bqZGW}G<0D1IoI#rcD(W+5paJE(c-xnBvwBMrPHZZ3qJtDL`Hzl
zP989gq$P+LAow2EAI6|P=K~duQtzuqts#1WMLYoxzU+ZtI}v9U+6+jcz;W3Mxt{=D
zw5RoM<GDmZ^P_28s+eHyg8&<DESG(3<lju@zrMkV9@IVCUgNcZ#0kI*ekhXV$@BSI
z^;kqD51`FuxZmGiUF8DEvV@71i3z=WTUerNRPi<RwodNAK#I>td_qEN+GaU_zpW!`
zWm>)OKZAlMArSdie4kv|4{bu9-Cgggw@!|%5}>!s8+Sc&&cyg!{j102SuR88#!YMG
zztv(L#O;cWXU*q~6+jC#`gf2*n7&+JS4{dP@{-K7W66FMzf(p~%*nZ%Y$k;|OBg=3
zv;{pH_IiAVD+IY9rG2jfxwKKW*qSWkZZYZRl8gv~Iox<q|7v#LD!5fAVN5YJA<bku
zNVR#6{bEizES;MxLtS?l(v9ZZ_{@Wp+9)6MQX0LkSnnwSg1R+Y>^LA~UVkVciMF2D
z8i6Hj^C@gSJ;b^au(T@xkY7}#ikQ2A;66w(FNUbyXb!_g)vXOQ;pYKuicJBOewf>s
zdJ8zjymNr9TGi+DbTNKNqSnzTY#Ai{>fHWH&Uu=THMlYv;NCZv(fmYOQ$LH9&P;Xe
z|MeqSb(!3pO%YWDcm59%NRaz26vRF@p^~5e_ipDO-vdokFZ`s#B3U3rzjwILsyqDb
z#z4h2I8sizCak$o^30L1s)X94cbQYJs?>{BZsMza(AnU0Rh)$);^xhV_I0?)qRsD0
zA<R9S?LU5-+w6}g^pxnJhj*OVs<q{rSA!fozJ5hnv>cUs+Q+XN+;LS~4FafbqZK$o
z<DH7A8Q0+qeXh5|1AQE;6>|EM;kI9tzKF{b{4mCs3TC{0;RoPM3in|Q+Le|wzFGlp
zw!ar?<085v>3+ZYBeu5o$<zO6ZPT$_>sNioeCj?r!rzi*>FOy^3Z6SJE@sD~cJI?4
zwR5%L4sFrA)>LjX4CCJ=dZ(!L-7^rE#S9%SgX<RE#&j0N#4yWaZR>lO_;@_IS5C3T
zVTZ`qlKw6x>6moXjOWAHwCc`PbuFq^@u(V)0XkBcNEG-KJ7h!a`@oQmH%XT(dB{xl
zgU!w9li50BTLr0r&08Tuw+8sbBLhIuKmZZJ-u1ZZ{&E*LI=$-gb8k5n^-pJmBa``K
z(?H(iR1SL+K<<ZeuMbPd0&87UCxV47XyxYSMsd#k`k?(&r+!&Q8mcFm%l<(7$};xx
z2IB)Oc*Bw%0??!Khde(6_xyM<ZF}Xv<qHryMq%fi>^;i9B*w%DvaqmxnU0T(n|Kr8
zk(7~Pky27s6$AWOq0+eLrDdnB=l!cut<B`)>y2EhRsdl=j`N&{i3z<A(5;oE>GV;l
zVsL$$Up-CJNid`$<11!i2Occy^;`I*p!<vr!<z|}l#^b*%75XHgavmrjn@-l6Spvd
zSa_YEm4hpupqKib87!E5)rCxuyLmrgh~v(|#cm!;J7`by_z@tImh}DPyt3q39wXG1
z9x<D&=*bc~sBeDCzs6g9D*7S!6-@xcw0J}oZe#vfSzEWXID$Q@?S1Jz8~*AuZ7XdG
z!Q<@0$~tG+74o+)6!=2(=*8V!e0Q-X=9hPZJ;<+TnE3bG9z}MR3#eC@6Ax^Ab4K=g
z7#=#!S4)RDj%1F43a$eofg}XYM0qv!)&Bac?U9*t=HHs(2+Tb!3QMv|pP?}<HNE_d
z_kyzv^1!dUtX~asdyC0={DjqQsYVLbyZBjd8rEv;4m1Y!c;Jg`a9{0flsi>6zpT#w
zSTGx2xQ$f+gYLe{pnS9`b;2)#q##zxjeIOsqx{;3eO-nBJaeI8=Ro%H;exgndABVa
z6lxcF6y<N5YEW4JGo^cyc`18!i@=O|WpRRy;@r3PJ@tqT+HTJSJ16#P=^6o}UGpp+
zO7<qNM~sb3QVMs5FG|ayAKy>Wy03|98<^l%E_xP@0Rm+>RA&zt*PD2|46c{P2?J#k
zepjy$GTC8mmh4^u`*4DWTpBy}*KnAj$f6Pr1ZbOrGVTZNhlf)wjzf`FPvX01vIzST
zPu0FR9@njtJW7#DvKvkh*L}ELj^~lKIdgxLV@mVkzuTgw5OjwQ)8PkD+$|bRHv=%`
zy*&<eR-<zEvAn{|#F(_$8kYozeALU+%q)8=#v|c%+$C(8HAbLk&cuMcxVR{6Y;5d{
zR5TG*u=Er&$<vN7f>amE<hDfEwtPj7Cn?X1<>R$TSR(yhd5A|8vyv>bUy`V_^1esb
z#3)z;c8~2A4qHPhP7*_{MMHevRpD-wq@$>8g`tC3?9?Ysl|8W+NLX6F{BCZXdRD)$
zaw>i?zxUiaMEnj|wo`oi<a2YnT0tr9EZQ_X+$q~mKmGdXVs!_2K2j1B`vHm+digh{
zs&1YDXWV4I+VE;Z2w7s=L?yAV8X#;ElFO!we{BqiY-rFkZW$|u@DQD!&SyDwUr64*
zt*ah`tT<_Z|A2F|Yv*O-vB8<fXgJ)22yvVCH;RN0oj|8(DLs=BxRV6S@n>}E=<^SI
zCnt2OB^zQkC~?<(P7TUbzXid;!3Y2RQQhfbr8x+gRpc!V>VwxuMn-P3MEC+uEcd<s
zd$lrMpd&Ik?+Gt6kp(110@l=Itk`1Rho!OEh=<490-qO%qU!n>JE@C3e~^J7Pf9rK
zaEp9rAEfR2xu3F1%<6WfgL4|IK4N1i!x}a^otHEO9A@uW!eFe{dqFIfwY3caPeDq2
z4?ij^k8pwG($M1R5GYCvsttf3<h$k)BMHS(S6+O)xNi#O7z?r4#buGySs)oxGjb8p
zpjd<C8XycGBb*CbBt&~=(n+0`1jAeQL$Nu3kG^YHDc|OtQ{C!7g|*uuK=Wgd`p5V5
zpE?vi^d~gvC?!&I!QZvXR4})%h8|avQ`xu#d@qiz?+Am;Te$iB7&y`RIX?dz8_X2q
zN5#GpYdr5Fa&Yv=B|JKrAqZ_h@+`(W7<Jr8BUht&K+15-Q}!$`qKHOFdiuE%dJ*Fk
z<5$w)l1@m235GRMw0W-l8FMlrbeEr1v=awBD=W)kqZiJ6GL3)$1A}y=H{qIR62NU*
zO4R`Sm(}g}UWIEz<QZ|jC3GcW2u6?#L7kN?PSN3W94M0GARg!5RQGPm4QM}3W9_3*
z2ea4V2=wVJ?)sZCbjQapRnyTt@pvx@vQ{qDLfbZEK(EN&0$Zxt6qA~kmY01Fc&2Gs
zAi{RWlFKESTD9Nr5b)gI10ABm>&r8ozG}x~nzlt=AKet79w^z>)pfzM0rZ!|N3a%V
z__T|)sr3)9PrH0*gX5JzHJ8E2G}`xLK|LYQ;mv6n5qjvk3x=>Z&cDY2mR_5aeqrqi
zXh%tm!QF#_rLGzzjxo;<HasitmooEFWf~2Na`IpM1rdSOt|6taw&1@*U_Rx-{2iMz
zs<YE*!|xFhNgmTDP^2sii;Ef61I#I9r1X-|fyq{UM#5APdsMc)o!ypLz<JdzNM2c6
zcrn7_P~K0#hL=v<@~$$O_}#Vv1+;U4qjQ=(A5>MHqn-JH{JS9(czyh;W;2VPS=U1)
ze%3LGuw!whF$%dhdEIfj2(BDP8pC?DUU!Wu5y$UHBq0weJG3X#mqN!&F&j;$%|@@L
zzP>EHJVS0%bB7X*wX+Gu8{AbhuG;29%{&AMuok`D<u^ESsae0v5O29rT+a2(vB3)4
zgpgAI_FuXYf`6@zyI*v(YzVDA?$_Wm9<ZL;m}sG?3PnoKkkgnO&Aq)&*Z2i{g#-zW
zgp(VcUQ<((e6_?TYreWCGHvz4k#v+xuD-#5Alkl;hE(j2>B)%=^Q@|pNWYUEA#*G@
zbf^>kc@vlJE++sj1@nLVMj{Y&aJJra`~kiCH#Q6mOh`mTKEOhhl$AZPajmO^27{OC
zHI%w8rmusb-}zp)eQYvc{NC~CPelfaF#uJjP|B4s<8ui9Ha}bIQba!jM(wmGQA^Pm
ze!jjG+}xV=9JI7$%a><gpJ41b7K|hcEdVKS$O{2LRj|)R%Ca9^^$MHoBriW-l7UHT
zzcfH#4pDLpMNTNA6Pf+ztlA$RQ$l&VhhVK5WCCsz99m~)=$DT_*SPTb=z2A2qFzTC
zL*4}quH*3|p6pHD1c$0oRS@d|GaK?N)IaE$Jhgq@-Q8P`K~PXYOJg~t9|ygO9ZF;K
zN=?ghL}wY7i6JMpup}9cH~P<JLl)AF=DaEGd2Q=2aO3JLBvFC3jL=v|mC$kM<53aa
zCq(B$1|IrpU?L)ExD&x_`OFl`8B?aZy<YXFL{_yVJneC!;G6lM7cn*p4r|Zr`Y$89
zkbehCu1F#6B2S{Yu%M9A1mAer)R@u+3}4UA_NOA-XH`|@!(j(x3F8CiW3G-!oQfEd
z<TEhQ`pP|@zj4w8!Q*m8Mp$Z6=45ytd@062tF~^t=HqC3ALCn6Qj-)^j>eTZKTJ%v
zjP*I4m@JCg^iO$@V0eY7?B1W**-4f^sd74=O#)lzF<enTc-~McNoNBLJN4#8_1ThF
zUE#$clD)oiT$2&%cIVgmDI1E_j<t!Ns(jYPbd*>JvopSpmO|xVp2{hXF)@FvqK;Fq
zyx5fV)X7+W|5nrzAq_}l`*9%hoIR=hpWShIJZ#cK>hYn({Utx}LhY;Z7Ox=b#EWN9
zHSMbyYDgoDEo@A|ZSqSB$KwjoV*;;LMm5jwf>n6^roBiLv=_*f3lr)fI3&lqm~Roh
zEJ2)6R-H*A`jgk5RFZO0*S{Js$c8x+_yah|drznxm9>>YJ&#D(0(J2i%H*&No$v?{
z$HK`_Y6FI?4|X=!al05?4Qt#BTurRU8{lD<65*j6VLgnYIXO8BeCj<NE(o6^l)gG|
zpQnF6nGEqdENft9<ND}RF8VHHQ0R2&Q_0ZkJq|{1n-m>bkLg5R29C-xi#zH%M9JWs
z0QPIkB1JoC<iMIMV{<);(ozqChU5aN?RF6^>G}NZWLoNTcHx8axN_WS%$R*vSSLrs
zyY#FVptqg`SSsSt0q0L}8+(8%vZW|Uv(e_004dH*h1YYa)5(&l|5^Z+wzyORO*EvL
z2c*-5$OExh#Gapqqu(4{jqt+LSr78i=x8_~<+~5at0(TaKO9isYf|uRAZ$tG9htij
z=#*wN6IJC^*9m{YE4&5%EVYkjv5k;oT%Ezd`!}ghmZ>tugjuWrdc)ggXF{NgZ*?&O
zI0OE>1V@skY*C?J5BuZ~dpVJ{x=}M##6MOh$Yyqd8I$i+?TS_7I&||^j1&p$gUyld
z#kkkY^iirG=ozs79LnW;eX1b|AnJ&XjZMJcx-m|76^$vdZraA|X7A*RW~3Nx1Kd7i
zl#9Es#3-UZ>$Gd0yp$rtfMLKlE!HQ8YEeSz>)ry(wu7Gfw<c|GiX%4?;W-g&d7tH)
zS}r-?S%HWQESA5Ywp|_7jK@SqMq0pkm$%)h&(JiP-w?juiQ#ZLm7=~h=ATF01JH-s
zGAi!o34m-QnDwgrbo;nJoEJy>Jsvl#CVVqJN^i56XPh?K_X56x?WVr_-aGmH(?uD!
zW#MtY*H#kq!-4ny$Mp65YxUnku|DThmp68sa6@2eQUesAx;PPpo;lB}Nij+ilHR>`
zA1E}C$0k8g_0{YoD*&(TUOW|6^G~V%G5wBltb*<SPe~_w(ah%~?9Hd6H@{vWL7O0f
zoeSv?97|s~wa#kCUWQd3v$P$#2#v!M5`4#pX*b^P{RWNu?}FrQn7xYw9z9)=r!;^Z
z1=PYzKIFPrnszs51tHn7Q`V<@l8*0X(Q%j(?P8rIH<;+*@p;5#y*Zm*P@TpoIFd=G
zfk0#inbi;pv%QTm)pn~XqB6tMtwlo?q|}SKLEN{M{~t;UyuRpvC@DjA|DvR9iwFyg
zV`xYZ8f<*@hsP5khOBD(k=n)$`Kes=Lk5FuTAh6bh&NH8BbcF@20hzrspo`XMx@_N
zh2RsIGV$Q#*h)IkdCOiyiNwSysC*?_1UUmO+IZi9RKAe#Me#NBNja`~p3qmTZUwcD
z!uTV+qdc67_T}Oy1~x4j$L!}lA#K4AP!S<9|6U^R7I1%CBIm-EwrY39IiH{Gi$6<l
zb7=z6{F!#P=7~Jmk6C;n8JZ}7vVELuKSsy4PbcB^dY&?1)b<bwf*NG6_~g46acM$6
z=BVX}&C%$B6OIty-gehg66Suy2+4o*k=Z1QhHxvv9}<GHeS~Vu7aNQRTqa};w%h96
zltoGebjEx`_*{Hxnb9uEN!^PAqpM?mlbM0W2uG{~Mzb3av<@Kc#RL|6$q3$t=mSWi
zYZkv8{0v`3&U%3VaP<1T`Wg(FYAm1e&no4UKM^73{sIX9MJ74KutlKH?SPbcOq2=w
zysuahqlTh~%9gmJMb<}b!-p0VDZ>V3%s4{<)>$+!6*pZ*j|Yc0#^<sVpm*AhP9FaS
z|N0o_9xYd2YUk)kI#JuLNLlS=fbZo~Z0(nNQ*QBbP_Q~9#ftB5S3qT4qE07X)N5?=
zb0O?cob(xf^?<39T!~oeoIY?lRS9&jt!S~{7P%0Gr$U9CJ)qEICQ2`cl=pt=A$;K{
zB_%Z)_kw2w$lDU~fS1Vc%#bi!L_3aO=*ZJoWql=AZqm}14mXaO!(v`ORf&m-W<Tap
z&)3)2jn+RtzB%7K@dAC2(YZV)w1Bo=vD~}uo3~mRb2CbITS3f2d;5!R@n<T{d(_AP
zR1ncmobH#)j8~L$BqhUhC<M%)zP`~=Y-R1Z@8^A3<}H1NHqWTS*5)4l_kCYs)&Vv7
zQ#M7RQ<I-Er+g3fwde(M16KcKwE$c|p9EABPYp{B{C`VJIiUCeQY{L=iVgm-R_Y8d
zi~oC-sZgfA3J<j?tfz%#h$yfzsLiTB4PzH4k%aO7;WszM^;7&Nrq;Z&<A19!_^m}V
zY1qPBeThkJ=jWNCG<$ci_C<>a$3b`asaiuqh40u{VKEG|E;N^Z&jaXoaYYe{n6aEh
zlH>XNxP27Mf<+HvfKro$Se8{-_!5_)LqqQ6d@38)Yb=)4uc@g1sV66gI6zRHLq+*Z
zu*9Nz*2WIeOs13+wdq2wN!FDSh|7QxBevt<YqWDngnL~?c6pLqgcV&3Iw(Hn=Yr|!
z7DaqKZU7F(-#4^nih|%{rUtDCL1s3X!^1?!!Hs^3lnc&hAUhQJ84$|%D+DqXoiGp$
zv6hx03sMT3R-6IxbP@P-peX$H5j=QuGYwY;p3Fko@GUCj?yypyveFk>UexCzlFeN1
zxBcuGdGC6R-hCV&q$!TH_qm>vyGjWzUO%?;$zz@Q`6Nz$Y}8bn3BXsBm1nnxp~K@c
zN<wB}3OkW=0Gc%n7WRlryDI3QaRVW(I`&xw$D;GbsNlZDZY_Kag4r|G`@1<u*r%7<
zjz92TfDARuTSBi1;8*b^$}4Tv{6c8^{Kpr?QVwHZgVOjgl(94`zjRc_{ylwEdUO_}
zvDeQ_N2BiMjm-^D&CiePAN(IF-{Nj6HDJ*Vr$`y6aC^K+j)fx-je&5+PZDr(28`M!
zsqjGcz{U)^V%Ax+=`<O*#7D?p4tqod_==8~2Pf2wEOey29RQU0vgi%zbw8r>ttHD1
z!IvUVBg6edBKc1o_wq`$;inCRklBzcM3t{m#95p?jt9!>%?^}4K?ow+g#<#5m>~<G
z7$GFA;e|@T2SZEA^^4g!9UUD|t1_;^h*(Au`49%BxQM;0ngay7;Njt6B}XE8jJ{q4
zy6J+7g=}$tI8pxOu+JBD>*rW#b*)iW?B@{F5O9ZX!V%V^cm;P>0?^$gParkEEgj{E
zMJDtr)gssemd^m2l{~&epim`gZT{h)q=Hqk5V{ECShZJ<f;ngP>lVlN8;c^%Fm{wH
z0qq|T6-7RHNJ1-sTacuoZkR|I*Oti7eCcGO#c6_8=|j`dj*@bS-{I}L(wpjYb>@l6
z`m+sikhUUj{rbv<_NU7&s`^2fq2_K;0K^VxYl{=r42RmnkeZ|lee6fJ0bD@QPYb6_
z0FNsp$t5alWBf_BFsMRKuh-{WMQprY15NWrWS^ig1~~BgYQ3HxrU#d>T<&-Dmh;sj
zR51oe(!e5qYX%#iL6Q4GPyk%<xP*kn6=0bl4-oV5ocGwup)`#f$yCeK^Quh;ZtAf~
z%;VrL`1;|>1q%Cnii?YD?fx#>1XTDFwvb78OSVVs<bUO6OTo<iR(T7kr6&WWpNzKI
zte@oR#1ZZ))kM7q(hW7;%uN*X^>9yC7Cf!k{+`U2gZXD)GN2yo6k^g8PT|%Y>fcR?
zikXbfS<d0G0jmV5?l4uD(0y_qFP}S>bYZd3>VXgJi>UimGdV7fl8g->iUBlBp-G0R
zlc>Wh6eV3BEFlL`)HyjB4UPCwH{VEfAaaC8V)cn4Qr-|6o8Mi+OYi}XxFg)8XTN{v
zE(of|@Kx!Lb@uOT#?Z+>=NSfhguwo`iIh?k4Bwr)6pVhgWWg}klk12EOo<aAR^wa<
zYu5xFt_H5qW3Lg(zgD*~&6XnKZl=E^pEzuOCTiC%;rcYo@14+y(ESibZ5`tu5}D2z
zrFVRUpX=4#Izk$ZA3Nx#*b6K<!0oc^%9nzXI}+HIJ8lZ9nB<c!!M~jNl622H!Xgs#
zrt+uw_<V#^guo@XnMGw^=CAA97ac9EpkYN|lGN=pI9+HB>fr1!(1-gHVr5T{2{99&
z4gx^BZ>IzkJMO7b04(Ol2M!YVT`CQ7elw+c_Y4?)NMz?d5H6|9?T%+uklq87Y?A#C
zV5X*~F<S_}>wx*iHyi*5BNox4&4C(t148a<XW~*S747?(E~AMPpbQr@>dhcvlj%{4
z08bYM3~9jSCCZWK`nQtZCwwPVA0P1$<e=GMKubNJc1lT4p8N~sDWT_`Pdi{)gdqZ~
z??oRhg0i~#^|jmF>fE7Oj|s=}Og~=m4`D+~XCfkI(;s#EK*U(US2K%ugT9Xevofwg
zMulmti)=4YU-txZl!`#J3N*{ns^_DO8!9qe&>1L%O21qZ;X}Ei9Q6A2^X;mtLQI?o
zaGj+TS;eP8#Z-0;357#o*>tdb!}Razq3JrF?68?#FTP2*LsKrI<C?n^RWH~d6(91~
zfo;N49p#gFrm|6l_m}~+$_GwN-|n-cR;y)BSA1V#L|@*ZTS*>lsx=T_Pe@3})-!+f
z%DML2FjFFTfMZXx=Mi`CxY%kbw6gNuCLDBj%?iJNf0FO<T$P`;`())E;>(+sKcLwo
z_s|y$s|pRySouzLps!^GXokwNx90kjo~JWjNO~&QIzOCaM<1Iq9rzU4|Cwr&Alv%<
z&$R9ICYkCa)Q|nY$x{EKF}pE>%bUFkkjXHk1i;8P`cG}P7X%Hd${&o)Y;E9^#6?o~
z63q|^q&lKWb{2HPMiqDNVZrLTO~<B(cZ(2+xQX5&^BqlPU$0ZyjHZ+gQ${AG2EwbE
z8_7#p$r|oh6DgLU7ag)v8ix+_lXchU35Pq53UAdX6vRW&I2!)!l)(P!WF~RFU)xC*
z*zIw6fE<<`2Y;1LI2zxm+&zsndTdQ8-B;(p+}Dy<i|4!pOA+&4(rq)GZLF1_&Iff*
z4|cAJ87<?mBxFqe@PJBAVxuOl=2XobLiHC=Xe>u|0^4mYQ#Hl--}q@*eZlE}hc4=e
zlm^uTa?&g#Qv?^)YC8lt?}#XZ*3A-8nb8`3G8a)HT+s;4fpwe=iEFLi$d3$yA2Q1F
zSdap#7=wUu4JV)jkn#SY=Ct)P0x={wxJuj|dQvGmU1jBXu|bNFPP`C=N<CE*5}55`
zXqcyr_d~yGg?}#KQ+WDS=~V0U&0@?JQuYCGgjFghQ6Uwj#)E)SQGlrXm+Oy)M?fj5
z1M@X1GpOcaM=q6J;c^3yYN`evG7DSSEh<&dU?5_qKSlAA7(4p(wFm#lv3v3iccS=~
z^;4=xz!7Nl0NMvX6wHRO+ZV143i2bSnclB`iE%2V!7~uwraA*lR6Br=e3{lAMc!bB
z-I8}ghJ%~zmcc)^tTFYx`KQjf10CSEbfU@K^iMa#zj5E+D#MyE{zecx8~ld7mP}KU
zv?T}z%UQyWZb&Ac*52thj}wL*K0H|p*g77XoRP{c%M5w?RkLJQo{q}ifckD<6ji0V
zy82fT>n<zj(qp@?cUwuvZ2XTJad%!VC89;W-J_zqK>W8<a*G-i8d@_qq*Nd)0a)Rd
z%5Rlbu;~crk2eDL$m-SKf)U@qx;K9p03ndjXt0V8smcE)>9Ml1BP$~l|4p*+D^M@L
zlHD~}%nMdkRmF5Jsy$-^eG7?}+xPEMQw8bFVa<yMXk^k8F@D0$x?SL-)<b&5ze=aR
zs^<pVhav~9K|w)L6-}aUsj#uJ<<Lh-#!t~N%`W7^E<U^*A_&eW^kczx&%r?-3*Im5
zX}RKiueDjP@`f&dWHF1wJlWkfMwOy)rS@xXB$@}H#SvW;58Gu8#;{{R3r9WVpqAeJ
zmME%`!RXpxWoAZ&_+k^kD@9;*>BIRvvxlxOXx**nV-E}h)bFIpKjtYFJeI7ZBcA`f
z?PFrz!Q*L>l!=3XtFZqso!bTzwX)6`D3D>uovW*A$ThfN_A4srayqkOhqR;8c~Uh4
zy6tJ3TppC-<=yM6ObL_MXq+NTj36Iqz@3+D17{o9R^65CYy436q=1{}V!muzTJd{n
z`M9ux5hcUY!ZoF^rE2#9I2gh2erwVuld7mm?JIwTtswMzsuJ~t9s<l9nl2y|4}dXf
z?gmXzP}{P$%R1B>=mO{e4W$QI@!sAAGERbI3rIjn3yW&tm_<iN$L(%C&=fF?h^bs$
zd77OvU`T$eU{HB!u?K4s5Vz*W7(ISw?zxZ9Hq?G)hAou;#0NM4DKtl{St#?9yER{M
zzB`})(1kntr$q1d#JR(~P7D<ll@W<v#oxg^*O-KchUT~URvG4s59D5AT@}<tbCE!m
zx|+Irid_o+=H})Q4#D0d1Tr^hrUGMVzSJ8Nd|`11Gh~C}pHDzm(A#VBfCSX^@gJ}M
zpDUB@!#^}+@CIzpCrt~UV;dQmiw)C4q_p#g@h(qPXQ%P<v|t01I&+kde4gCEsT=Cf
z+HwM97t4!+qzoa)7{S9?^3)M5j<tHbQ*Y3=Yr)4l^>+8@>@%#kUVV(;5gP-)WD42-
ze52tDe&F~=i+so*RMX8*kH_gi!Siyr>CX%jzcqrGyaCX$0$^%B4GhL<RFVa}e+W?C
z#7NO)aoF!n5WbwjNPM(3*U8Dw-UGBC6W|xAkO$*ISwgnBz49nIT>A3IU!aLhEiKC~
zaPYG_fdP$-yuyi@Jur|j&Mqz<9<1OtQIfL!vhOy0ZlMX&2&^{spq>Lc3&ePf0r6=m
zMJ=?aZGT2pCq5KQSv$AS@y8+39~ey5zflq14(}BmWXh_Wn`%o_U0Rs8`hM_n^1qxn
z|L2a{-YBdllRZUzBtpC}B!!w@%Qxvgp`p^k!XWzn_k8uQv~+X{v0b3g-VVv>>9QqX
z%3_vvYE7a^!1(px@7>+qw@~lp>FO2esHtNmzvXX(cn+i_B(mPT#u9D;TtHz5!Ut@f
z0_Gkj*wU#goOw8~L#M;Dng9iJt)j3n>bSGMH^buwd)aBxk`b>L7KLmAD=zRRCsoJu
zUSxKc<aa5OlX_GO?%+%X;S2z53t6%Rgr|uOu$IS7jwEQ21YtO4w`mKOS@|If&5w=A
z619GzT5M|e9o!&U3@Zyn#^=nnw8ZD!0k=Dc&-AT@sDA2qs~UCipq-!Rk{8lK0t9D5
z6rIcSrv+_s(S9APpfg|jbUbo`fBZA7?e*-qy+uqsv5QhzVX^XMWo-WN2sJ~?gQPyZ
zPD{?|(4IV+>uqd{11`Vm0l)-#gyYrn9?%?fBO_8jw4CM*-}VU=wYAd|3fMT$ELs8Q
zmV2;$^n*SCHK7d0VUhgMrlqB|pA|@uEk@v)JG$HgtYooF*()l3cm@LRY<h(P?26vm
z(JHExxOnDJEcr<3+lJI`Ch@j|Q99t%WZEYH_mpg$KKazPJh}WwKveXH=x->>4$_Mn
z0*x?(Rt>@HCQ?P7jkEH_7|M%|Jm!27XDQPKw0uG?04MoUBPu4Q5!T}&f%;QQQgRQ_
zPA!-x8UYf5yi!m7S6G<;64d`XRqSuA$)+qEThQMo!~eXfV4`c%D4irUWPrn3a1POe
z)pE1ShmZp4<ZO(JjLLxOByA*wUPBaiWnK~Y_JiV*Z%rU<zqK&hr0ea%E0FAA0}8YR
z_^|*FY+y0%g~0`;p~Y&u)`JSq0XqOg&A+Em>;mTCpQnA;!$ppmjDAfVOqO^B0NNjm
z+j~Soj)F7ITi-s+aIh;(OcbfVu6O3%>}I_3V`(|0BX-;pOm-aL43E-gd%v?5=%mQH
zyF+I{#ghgpc+W8a8XVzCdH~94=sGYozx+qu^Y^!6G!o;anm|x+!GIK7J=B0O7umu5
zM*yV*?dWp%0M=%3TZF8lnH5CxI?)x5qhs@d0D+Fh%bD{?6R~&qp}0K<d_L{YRtreQ
zx&Tmb4s`D3_pTR1<fN1zi_S`mF)>qi4?I4BA~#&|G61arMTGjd=BkbfkjXc)bxHq`
z)e5j`C8@X%(MHpGG*0Ud>V@T(YmAX;0g!tKo5#%|62vRSfs4SJ)y`$J#$WQhe*i1x
z;%Jn%Y>TgpN;P;(f0Xh87k6=oZVNCaS{bn+;J2CWcr6ypmu2zPQC?@?!0RrJ{#oVn
zXUZipne#57%Fo%21{xLtp++6PznOIUcDL@2HWM+=<}>EEvvTI=Qz$Jp<ix)ZyE>cv
z`7e1Xb`>j{DuDm<|GO0Bfe9wP^M-B5=!U{cOCKDN<HQpR>r4Og1%+FB3y1>x_c=ch
zrqohup=`0X0rhi5S@xd^Iq>{xNx~}m7ezMlufUM8I()cdin_xLrhe*2bt-%Z0Q_(F
zR!|}52ERN%mK-VTD2b?$LXmt+0LCSKTu}fcH16EV=|-IsrRsB=1801~m#JFQNo7TK
z0diS%SSVA%qKT!63Go(Za<c<ndG{Y5>Z%W_!Hd})W0ddf;z<?v=lhuC$%?Q@_JCAR
zI{R>$d2tzy+IT&y!GePBDvqEFLp(76#0Il3?oKz6wF_LvuUT7cJEGP0*Gy6dhiif>
z#1$mB0@D&teoUd(logUkdxoGrmc5`ks`9!`?3vFChp4=<?xLEqtWFVSDt+f~Rhtm1
z%fo)bJ`g$b0guI1B2<Nr37OZWIiVJVIyGQ4nfNTMbK3FhS>qsI-Cx5jO{=IJeD!iU
z#zaG}Z2Lf*9x1cR!GG4PKT`kE$%BEV^-tl$8~+0ks$h^ITE+bWXq~C#y*~WuNa=GH
z@m754fBZAbwrcSOYGw4VF?v4Ww>(bM&IC@gJ~L@IKI@2rg;l_EKgM<X8-2EpfBkEt
zO;#^z@%lrRe_zY+TOm^Pwfu?Q_gBZap${HW(T{)_@>C>L1K=IU7~%(WydUD+{^Z`%
z&CsgDch(7EbgiHDZY7pBxt)iAfWS!Njc#63IR@X!#fj+u-8|RQKL;tHe0t0b<{!?F
z{5ry!u0L`<-$XpVMcn`2S+g1Y<PGPZw19&XTU`Kkk45-VIp*3^T2Nn5u@6Wn+f$Je
z&QkdqG_wOg6a0>g^@_P?2mnRq7a*(0D{-lph>?B;`e(ag;vn!47a#AiWphK9`qBRU
zcI*dhpyU8H79f#G?#_A${oNAU<R=*^Bn|ZE#>Tv{#m9#;&0t8mbl-FmFr=G;7xP-U
zKWhQ%_O%2JdOfhY4y>a5k=}~TVjsm72O{vN#cF<{?%BisPL-T_*!qAj)EE5YdmSbP
zo@{$Gy65sP<Dl0Re%#d<jV+;dJK=4|oz50#XJ&s=&AzpAT&3j5in=z5!`UAB$>fjy
ztOMU09eZQN4(ngn=**j+=Cz##yvLqaQd@H!fBe-67@&$vN#&ptiw@rK+%DN)0aOt2
z88vQapo!|!Cyx&OhL?`(1-P;jEJn`aI9=^26fuVG9s$N~5`wz`vwrIY9Vq=ARy}Sd
z1c`@zhO1X9TS6Ii!7Vm6H{Wa!FI+iENku-eoF5?}o?AphMFTBCCSVB{Q@K|~ss!H%
zk`Q8e*v;@Fi&9hp9OfS=-`t4m@7Dtf^8r)1A!H}rE-PG<SVg}6F{Wib`9%+4+C_>9
z+VMRLcFHR#n5I83uXH)rmvO~1C}k>RY2{S>GvEB)8>?T@!J$@@|M6|S2L-tP^n+_@
zdVLh5Z{4(-s}wjSScx|tOQpnm0SZP}+i)^6vSEhz;8i$S>SSpU2I!kG(ADLMiC8{C
z_$Vm+iCRv{`NCx*Q<P(DD=vQg%mdfpP{x{sKUpnf5bP#*5-_oJ-2v^SA*UsvQmHPR
z%Y!qp>hgtB1Zz>kG0j4uFf$-02i)y=M1ffzspjK>2hME*mX5oEKCkf@p4-;zJQwm^
zVMtwgheUn;tt4zNirZ<M-;}Vhys&ca*QVJL?MD?pgg;KlA<tAH6d~vs(PW@0E(y@5
zw%cl!`<*nyvGiq&7#VShmGy>Hj_F-5r&u12aqi1GgWAV%h=@30$e?$qAaG%CSQIcZ
zNb$R)Aox5~Fe3iHz5KTyG^-(-!*n2bZ>@DVjrEOpI(NGLM_t0O8L-BVp9!w=FdIg>
zP8xskP?UYs;5!BEU3PzA_l!4KKB6H)qkWIU8`X?(oT$*j`+k?y@4D8cZT;;t#IK)h
zVC~ON)c!vnF73!-lli{R?jvgc%2cFG&eWy&9_0=TSZOp7V_He2W{hhlsmV8g_fy;i
zGm7;A*4CYNZSfjHL#h3Hk^N$hNGN1^hDOA$(qPpyK!b9;;AC1*%0I(eTYm};;V0w-
zj;>#p=)E7g^Ts7SF^CG?zH5@c`h`&W>c5w~Thq*r^{7k#G4m5ceQSiKX88WbdU-2i
zU$FPmapY3^{<94!3cbpXUls|HGH-MyQpIs+FyfNoemRxg&I2B7euySqB-!ukHXbq;
zf8<J3UN&W{!^S|h!$eZcu3XW8(EZh%o_9r`Wr8+o_w&HfKY<HpE`I=`21^(&Tg0iA
z@B2~;vff0GJD~ozz}%VNZMd~Zx7q|3Sx*Y}m2#hlai|j|yYS{3(sW*SeBy<0wh>UE
zXn#46^s=$N04y@z;pZu!;N##7i{xHBH0q*EAHuune8SV8+{e_RaQ8eD7}@ynE%Kya
zDPMX$TN1rxV}v);1Vd!H3|0QD$!=TH1u*<&PvrG@c-MX;q@aM>dNE9WGlb>10ytzd
zuOwvnz0JVR9u6ynTwK^+@v@`vbZ)@XYN88ZRa8_oy+hs4+X7Fc-z03mT@oh@XnD#j
zTNAQcul(xkzFQIYVGcPwCk3bL?R%7WA7?Y>*Sjgm@TB4hxILOjJ0nG=7{)|k+}fvj
z5>?=NDebl$&EU)E5XQ#)9MRG=5O!=0z~&#mY_39{t-vhL*&=@AbUgS*%q$jo1LzT?
zi@pBi!2Xu&tb4H-CjHl${@dY2`OmRV#01NmMavExgGL8;CU7cqpc&#YW{UQML0hZn
zknNU1AY+;oKo7d)u<!4_+VA-U>V$cEZcD;VNa+C9TPXeX&Nudd6;b*%kWT?LO1-DM
z7n|{Ad)@u1Wcm!a9FJC>cgt%NLzn@u0QxcYF*{HPhDwgl)IIITFW(4=e8FFXu4`zM
zP)omY<O@rY!!W3vDMn<#!VCBc+nxmCBKMfUn!{SKd!O|6^+7Z=(g%S=!kKL!I$<97
zJ_LfL9pVs|T36U-+iF2Wej6M9MbL5MPnSFM`?oeov88e|uDVyp^~VAqre^#}9eg~=
z6MX*#UV4P#cDAwfuhm<y@e&5y%(XLBZn_uqLb`;@BlZ}qfroewF%gx5NUUkEuB^{<
z`h*atCAzPHvbPdY!S7HjNkL9jsA7wni%jUJA)r-!;oNlvZPD}ya30hxM+NR+@OHp~
z>-PuN%_KmGXRT>B9ij>?)MQgXLce^2!dfa!2XEUI3wJ<EL;hRHhS8(9dsG)-{+pHA
zS>31@2k=Lrmca7M@#P{2`QGpKYO1SK6^n~GT#DFM!ba=_fN$`8zY!0`7g4)E??L8+
zbST6`Ali0~kB>hCklP->OPNA$CtEsttxzXAaG?1DUyE45dbQnS$#8D6^_=I&Ne?hM
zV$(1w#!|6}xUQqUzzZM2)@H>Yl2yO7Uo$zX&JtIkxdmoCHoL}Rj(~#eoiR$l@C{gp
zGcmH*pLeT?Z<f_pO_<UmxY;_b9d)Nze7ARMsDH*3v?gV>#2#6<w^=Rb-Zkp-d-Bi|
z9<Fh(x@;m9H9qZPwEqE|f}sI0-`%HDIY{K}@_vvwvUV=XR-p^{NC4wuTd~28&gC^W
zIeF;PffIkt7YhEbK>Y7RJBDhbx2U9k)96sn9p5Ysw+6wE*f>KS(2r_kYwH)pLER;@
z3FW%D>N8yH7jEt?iT2kC=l6qb9xz)g8z6RVI{ZQ+q!)aRd~y?innVa`U+^GkmH=ku
z`rE0*^0B&pmkx#F)zU_#5M(@3k~vb}crc$}I?v>&%M2N&32Xwj39Ms7mQ&G^c(uMO
zX2f|#sWudoEc@5n{FOG=HeiEbJT8d)&jXNY`%pLU%uIe7KTcky+#{a^h3%8&5THx4
z@Fjdphpux*$$bvDnt0c+%In8-L>pL41>tN7SgqJQJJVvpB#qAe!jSA)PWSNONj{8E
z$O!bmtAgp8vEVv2K*2j2NzGE`=Ajr&3@!M68{yO1st<c+95F@(wdl(RCx7R?_}+lO
zfdSEW)5`avRrw4la(A<&h*h9&9=5;O?&L@_Cb?5H%j45?=C+=rc*DB9LKK)l6~w#c
zEb}O2>Qii#A+0p~v7?>K%bC23z_~mApMsZYK|w*@VThr7ZTA`#%h_`YO>LZBS@t+k
zz|+AI<460A!8!hzqB^|tfQX)^xmyXwhOvmzDZfrX-Y3)Nb;I=N6?pGBYv?t8((KN*
zh$H|-Q7rqqo$>yVEpBe>MXiUf{FlH~z_ECzXP^QITzKsQ<c*MQ<3k8fc&<k58Q6gb
z!MU};-PYRLNL@nAP@CgwUZ?K)*_*47{lm}V8MBj@FyApI<1u!0DlRkC+^krd6(I~P
zEGb`=zHY1ie`^6mlSk|!hJ_MWMfUaz^D~%e!0_?$?JYGi5kjxD%!LkUn7NOgnMtl%
zUUTs88all1cg@mZ@`OI_>v9|=XJ`LNL`>XthUL6xTc2)%%!lmKk)E1ru}MRFp|KH^
zA%w@&EW7E!+U}hCob2ZafOi6UisuYm58U;=NmVji{?FO4I3i;g-mYaFn69hn<o^lD
zbcEo?>s+4Zlf9=^$J%#cI={~mK;?K=lAWI`Tx#ax9vahv=N57)J#-`;7h=!U_VfLl
zdUhGz>CSfdwQP9D?*kp+*`N@Q8PSO#IDHdmLv?(+F9h$b##1m`@W6yH1@~s;&Tiy7
z*kOOEkkZa3nz-~=i*>QFBaY!O!+5>i<%wHi4QQl$28Pov8PPQ6oqR`LfqW>ge<cnX
z?Oa&<b}@P@c$>9pe%-pi`P!NM%w?XZ)EzIBsao-|{@9Ul4+WLP()=1}k@5TM%d{nY
zSC7z0eOybdrE7n>=#Ze3(<kodtAXmcgz%ReTRevlc>&WVZ0KJ_8AE#l>6Hgf6ug-O
z+N1s~9bX%4%}wGILU|#^_w=N%+;PU*xoWaDMpG)zV7=*(PxO&rmn;@!)EtSGb59y1
za?t)A8GtaMc>sBq#SMKAT)J+UgpD9uca|@AVV0MtDp(5+wzf?ZiJRB2@Bz4o15<3X
zmK2RmO?K<{THBR;G=7)-KFlwcp~=W+WxnTnjQOE!-7g7UoDJ9+ETbG<uw!-k3kTc_
zb>^xsD5~t1!R>o<+(2n)F%s=RUeCQ32For5a_dr;e-sf?xls_mw~DTrp=(Z6-JP7!
zOX)*p*j@~fkN^IZy_gIA-{SIbpZu>xypYftPv&kU_hmt~6QjDZ?^F4N5EdRfok1sz
zU?V(cgDQv18OUo-<<Fo(CAZP9k2{TMzm}XzBZysWZOt=*hW3w2d`158WDd;T!-Hfu
zlY8fn5~v2N<pUes98TPvFf!DM;yU^&z-<akWMm9Jqvxr6J@_!=UHDWp6b)-O(}BA5
z-O(@}n;;qAuK{)UZ(1cm=~Xp)OxBPXo9Ign`O9z_Er>XM1N~WpFVikA(Pzo$dz>za
z4trBdqWvGj!%juIjel(T-4gE5nb*CWC*?lh60_M7kI^#QlsoP4A_&8umMadTp1-`1
z1Z}&srgFxE^Sv~Vh(>`hEOrL%U$wz|0{?jGq)Lce+OO9nCSo@CJD0L-Mnr$An>vu>
zKWDbO5APTmPn9Su`I@#r-G65@$%J{gQP9mf5*&u_l_;bTjQ!-kw06!VsCQf;(#cFC
z8{odP6xnSoW1@O?!hj(u_cir8wb(s6;0b0K6r6tP?D0;-%L^%AlGRCQ8q-T_%chX?
z-=#nBbm&~c?LJj%njD$vlf|kqA5pCGBK7^chB}g4A$yTQXsC2VH~UqW#)+TDQA|Cx
zW#7k)uBrqCE}(Ppxsd@~{vl5~ynN-yUBLYfW}Eq0+#((f=Dqsxqd<f42c8Cay90lq
z#rVIc;9ut>Ga0UyYuz3&ga%9zW>UyFw=?Z8y}=+dzu%sm0kAd4k{Kxo^v-BBr4QfX
z2v-1=IV9!q18*cQ+xy<x=!<5GcF|9)R>+%22_hE{=+^k)Bl$G3!s9B^Bu;d@G#>%=
z&F(2*OkDo8GmS2htexZCQ<sjuho(53m5V-&HGC6P;r<(J_^h-RP01eX^Qx1(6NA0q
z_U}#yxIiD>B2yMNJhUb8{R5yXMLySuV&R1oHY8a^c%KY6s?>4cJ-Ah^3gPQc_4?Qx
z(yI1!5WGgwHgk}Fo+>@>@@tXEHbxiQ+Q9_2;3-cx@6NZ3j!P)RF)$OlkPn^2Rmf%V
zltYu_)Wo*>aml-pF3B&JpxAg2)YQTso1W$_<hB1;l>0ch50~U%EpDl-Zuj_w3Uz87
z!jJ4gb+weFm8eEvV0{c_64=LmpA}1Js<K|gn2DAl94>*((eWJEm!@pKD4RC+zi*+B
zl(#qCDM=iu1$YIWs=%Co!Kdv-C|X{#)4AYGxRWj?IC_EEh(z^PzJs^!@P9u#Z`fK$
zA18A6eu?a}lFCXHMJ1)I#>S)!F)=ZwhC%U@?$Q}EJwS@95}+gDk~LcH0ni|IlQ0%K
zdS{dUu8RgQFE0ujT2J3JYdl?Q7y*y^2cDcBdqF|)Z$?Jo@Z}0uVfsfumVEH)q)fxf
zGnw|*_@_Lz&n@Z=*hs|6M4^Q*wtlx>o?WrYaZyeEGNoJN+cH`)GF<pHv72GJb8~2Q
zGB>947WiY{9~ZUA<8E7MSz>sPw{Gf?xYxJ54{We}=dKqNbS&F#%*EUBQjgp%2;ou;
z&`}*uXM+c*sT_V)tv+B&$&OW*xSkgTz9&5s6;yi_5NP+-(E9G$)brE2)cduy8Hd%v
zBzb%>SHds1i|=lN3)KIKwBEK?m%iKUwdD(r$SSXGI3}-D{7;m9{PCsZXIdRq&qXb0
z=p1|fwa9jAZ;Vi1fg&59fSRW?Ox{hDOQ%+db*7BX4ddIv7x`qTN;qO`cZ@t$`igHf
zBGL8smlp1ymHqzrGcoxLS?$~oZe&2}9g5pn+&Wh-XGqJ*95725B3EwUbvQTT^x48i
zwG0y<kwx}@clm!k>lE=!AOr&JX}y_Z6<yXvD~6P$Bv=XyU{B{~(_IrV)33|t2H<0f
zD|cXn=#4@plMHafZ9dh=5OFC`pra5Hj>m?J5|?VVV7|$7>QnfxG})8GWsnll;xZ&5
zp55#;;LZd$%xW~(i^W7T7h5SIeD4c~W^>lj=J9%Lk+IB|xNi46_aU3fkp%i5v?v4%
z0|Vl<w}>kwD=8T`@Nz8>`u_D9*;7AMd&-4SG7mi6?c&Q&@O{K~jfV6c9s$ANV{aeJ
zvCP#{c4wN!Q`aKR`-`tn_qWw)rBJ%%<v!tyQo6H{I<WfP``TKyHZ)noMGt*}Ufz`@
z8EX+QU_Dl*EbB~-jTh%LNl3EcvGD(BGl4H@f)#QQFUzt~sX}<ojzqVZ%D0p+-Mp>{
zgW$1#<{>-ce_y-5E)u^Ks)=*AvAd1#XE)4PwvUKWX=z9RSf;slw7w38fq}ujI5UIM
z?0h=52{bx&!sFRUV#s6<SNp_p`G6g_9<f__MfzaQW*^$#$2rtyG4=9{*1Dddz)vl6
zRTE{-%7j61!8?6zOKo{(TAaN-7B_PKF~y2=Zb#0x3l?G(C$V|;!{aA$8?>nB7YP0g
z_E>++IFElRuvah7-s2%S9?il)%cUV~_XR{{M0X!HH#c{+kDBW~rl`>0?|jc%ZQR#o
zP1YSB*XhdO^E92lxypNm3=hO2Ia-C{D3YLe8?!{2Hl|OSGp66(61ekg;>7x<2AR!@
z@i`04A?J%}ZIs&s?9pOv|N5YZub|$PjPqqHL`Rw5)+Q#oo%9*<@jGH8TK_^Tk1lFZ
z(kr6Ctf_GXL%I&Xgl9w#>(7)q>nFsZgB4^+wH7;7%gL1>b4)?`z_BQMUbvgmS4omZ
zJmQus-!9eBfWf<!wSBD472MtRrAd#<?U9D8<^`v!V3|ItJxDJs8g*ujhucGNA0J-#
zt-L&psH8Zs!`WkR5+`7fHJr@lDHwUZ2bsXA1xnbvr6q;7H5op`t9@SYn!(_qdoa4~
z6Kg$0VUh`eVj?&laf5d}Rabm*b#_Lg(czVnj6Bk{z3=mXJk21_Gx)aI-)8f0<@&RB
zLf)%!CuQ=;SsNYl?y>SV9U-@1w=3CSnROs7D#Kc<k(kP?&aCnIX8*}yI=`)s9mqSK
zj(@_p?@Lr)-@Cf@Wt+uDHmta@+}*pLKeV~2d4Aa(n#yC!Dh=bn)`B%sVrf0k-y8>F
z?oX?XNMR<XeBxSl$x5&fJoTj9={BbE=waq72pDHEB90?}g=*~VqxMX-Pg9`$dwBP8
z65&6_@5B^u@$Dyvm2QSF?D|e{!$uyfFcA5`7&>D3do5YM+vz720Jjai4iY2GofvGN
zJ>PQO-4`mf-GdJu9SJ(EDkHJ2um@)t8|~C|NbGlhW4sKw;7s$`)$zEdzuO4axuauD
z+Fj2A^Xuw8#m0bFtxsA_TP}gD)>7sM!#dvG-M#dTJ37UY42NlvW8+6+f{-s<cExiB
zG$jGFuLj##cr`fF(0;@?w8PeOhK%_0X}&z;t~`%0@=u7}8&71GW=39K%{@7v{~ag)
zRk{2pt0h9bWicz*V$q!FkW3VH|A`6t6Ugvgu}A`pAz6F_0|QqMG&CPFQc?~Tz`XRc
zkKTEYo@58*dmKlf(LghV?^SERUz9S<g&WizH+nX~bcpumghmrkc)yEAu4yGvhteX;
ziv-fz9CbpL7*yyemTZ@9{XfROIxNa|-Iwl^7#az2=<Y5-X{1EDMY_8i1eBI80qO2e
zsR5<Chh_ljI<IH%wbu9Tv)9@C&v)eVnt0;A?_Y7_ghJZo^pT|jGXYIMphGcU+xkdT
zR+|Jl^v((!u6ZU<=i078B|CF%#M^Mf0mF=h<KKy5ld^)caaawzR_&iIHgo6}7+Md)
z6I8<EQj7DY2)bfq7qRGeBX0>bzV)|F_$J`kt<P~Wb64PuFRA7DAjgq=a|G+}JPF+N
ze`Kg(yA`loQAdm08|Z_2h4(;zV4iHBGqMi3f_*wJS1gULN0Iq9Vb~a^vmRg-|2yh)
z8g|inh9`C5$S91^t5xs#Bb=N%QZM-k@xFf9o@s6D&^_))^rR%k-8Hjot7!<#pPgm1
zut=FyUEw+=Xd{XFB*;!b-$qx4=CsOK)cCdzAJ!FY&zT#nX@*C*HS#ljF>#Op1WM7}
z11}_FX4|)X;97D!sMB?Ij73E0>%DLu?5%xz3}Jl~w0O%PFo$cwUCk5r^XIT`4^+(8
zr0||j?#ox%YoFfxNE<n1{&dH+AE}eR9}A~n_~2k`1hoz%rP!D4k}^{Y+PZpBEiLA2
zbzZ#KJs)>kuZ@<%-p|pQfY#q%A@bK-`by`C{B1|P!iyjk#Klkt%8A2lwGxY~dL|go
zCzQ&yaU;InwcWVNvzh;x=lOrEap~?zS84RI96UL@Zhy*Zg-RqTLpl{UgGK`2s8vgo
z4hu~%pVK{O5DJ1?n(2g$p6@8F<yo-=V?K$9*5BWq=1Mm^++RC3H2ut+j!p`JO!ig=
zXN0ul&Dhdwq${lr4A_|EnZH<E$AB7(D~AqK4m-V-*xZ9aK|jsG>~Wj39>`MNo+F}?
zii%kL*z!tB^@^V!|J8f{e{Q9&7s_4VEo`6!YD`HJwU#QEMvMV*b!}}FTXwu+V#Jmz
zql&Lz2Uh5}a;1!u>{JmT31#8{3~wVqu&b(}q4DvXZh5~F7dty{RVJ0FmxP7}p;0y<
z#|Xd;2jUYoN~vD(PzM&2$wXkqY+-*-Vv0bokC;3-SU>6O%vHB^#CDx+QlQ<<*q|5!
z%cp!NPM+=9QMVwVt9Zi-_U-kw_026O|45Kt)~IXjMrKC;ZmFp1IfjuM{hp$PwxtU#
zPGk*-?4&cVbKJ0CHk$FIz9#{lC3_9NShO1=9gE5M&mKK_VPC8u;aASu#)MMrH=S|o
zk?$TPwcoKt8LAJ`E%G~cv$q&ukUA$x!+S#T6RtB<ZG23wh(GupuXKpS;+zdNa0pX=
zPxTOKGR5lT8-gZVu7u8>w4wYYh*h{)U~>AkX)m!_O<ZjQ_)=tudy>Gu<{|P#)r<Nf
zuB|lA^d!`xa=onDZy?)|y}BD7aeo7}23Xm`Dd@<dg?RW>Lz$^+AqP7a_>)45^M?MJ
zTgO({p690}tQil7zx-d1|J;SS-Cql`+3hY1C%4L6?M|W_+;^HgJR#b@)+Yv~bXS`~
z3(l{v<;CoL#3{w?n8i|3dNEd3k~xj$V`4;xhM7WY&fY}qlk{YkIL1Q6oP}9BO<%a@
zCJ2299?EWw3+&A9{{-Yt;@v;6p7!;*Tzb#9IFwZAQ#lO1eWkl^bng>ZkCP=#@csAn
zq1O~gU?ipt(jvwN`FH!FMvP3+Je0a77%B41SB{Z!)NjK*VPSGNe;a0E<AFzBqhwEz
zFrcuZvhQTYn5_9QJlFC@38)yQRUTkqI#ZY2q-3eLFcJO&PO^(nPDa$!^g5o2!9-V>
z6Gb_W30egRQc_LKb*<h4?rvfp9D&QA>ocD=`&3bHp3XRlLCgE&X#Y;B_1ZUuYqVxd
z-B^a^=H}|1(-w$U?TF3fycpSIHu&zmi;*(g)@gFDErP}b9C3({)9?s|10WF9cReHC
zKtpjSL_nZ~I*5xL$~L{%Ni83oi-!MSE{nf?u75l%a0a@u`cMJM4Im+JPfz#`8HvgB
zZ%PepU1#?lzIVVG1FqC6ZO#GOp7AR8lNH_A39!RJfK(0e!kh8Q)UZ4&mxSY)a`Hc-
z%ER20Y0+orj6Ar3h)^834i1mnBYnfpqfaR0kDJ%j0qj_ThwwWi(FW_Mta6QACx_Et
zB-hv3c`G4GKv75ZLogeuk~N!=_o*k$G)MhC(w({q<>$uZOw14HgGT*}tI}pZ_6GaG
za(00Q(%wcl!|ctQm3Xqk*0kH#@E!-$=LKa4)Ysx9KGS-~XriV!rd2!Bg9U90jAwV+
zC-OK$`4+2xPV@~YclPM6o6$#ozPAdZt|V^dcNBd7_tvcI?k8$**LR9oXlM5nr~|L4
z+J1bq`<RX7x;q-OtbJ~GkwgT`F8tM`3b2hHd)b{q4&_DsqdJe^``^dsv<F{=T3SES
z!*fMtRi@eAb;wA<mYO#K{y;SWH<^-NYT0D5&36O$Wt|d8K>=3N!LfE)PIupkkv}-<
z6%^XxyE)gBX~h;bF#6>ShR!MO0i+3c#XnWJ51@*+C|QD(l{4Q2QUhh4W+~s4Qw5c1
z3$Dn+lx^GAnR%^E-%RX+^<JH2){V@*$&W9j0XP#RS$;dF40CMpXZz7IVY>apMG2Yi
z`^k;(^en<8#F0VbBfrR_4$jLqTtc<wrTf{1R)ziArozOaF@!~bTRIZI&<dy@v2$9!
zMh9%Ono%yIuvOUM@tP4s6qXwevc}w8ZoX!->j{KDP+FlTro4Z|sWa}S`an}SA9FM_
zH?>$}E)J2a=0<S|9pK7anktcoJ7L737Q+G(5X_`YEm~VMk{9IfHx(Ql-%4CY>Vx)m
z76y6b&W8l+(`Q*B_4+ZNoJ&g@V&E}7I7|Z$4{b`QqyBwc|CfJRQ-3*85ek`{oLqvJ
z!)eaTLzt=1AJNa)-dkDG(w2Ae9za!yjEr2WCe_atcHQrzv<t%~M*$QK&^;Z)?u>V*
z#)M%&$cY~dD{E-2CFJaEF8Njdde4F5=0NwrCvs2H+mm62wH;$eDmjd>``RNil&CCD
zvmy@dBg`IXZTM45d~#PP1Y@U0U;Fxg-rJ_8!~4jQEz#B0d6TUt<vXmIUK};biK}VT
zanR1UIsW~zo5=craDivOye<`v{UY486JhM}(rEt#nY#*_G0uc7<xZJL@)Jw1qtEX-
z6Y@#!Z{@z5j3gX;WMWSpo8R<ndMxej-7|1-=LPGRoz#3_7qd$5@zgZU*Lo~nd@s*T
z7GKxee&<|jb6^rTS-e`hYoYfVkWuuGX65sEY<|%;njvUPzs{{<wc+o7?}!H51|QBj
zhBOcE&7CM=6R6j<sm@N4d=+LLTD|4nwhEGU_&F!W<@`zSI_Bcumrzy51iy%XDwan4
z9n;3nkBqCYf=x{&&#k7^9n`EPC<##wPB%SpcZN-d7VYl1i_%)Z?fm6RcaX(X<w&tC
z96%gpK%C-8u@D&)cz-#5;y*_no5Qo{C0=P3T~+N9?)P^6e)YikC@kN|Z8GTV@<$_m
zQ)D5g^sa)&C0w)!fPakLDL2<}gy$Yk#rvIq)%S&PYkYM2sl9TODuH`ACyC-H%|dvy
zEVR4Lli<0yI3_WB)<EC15L?a60rveP_K3FDz6ZrqM=0$F6&3LY7#Ch_)|)bS1Dey`
z9C~5&sJAL-G+9bxNH5;EEt?mZ8#En!o-an7Y3lVvcHQk8C<$MoE0XZqaCE~>gC}#x
zZTP71C6!D3y9U!^BY&Gp59g%;7cLf&X3phV01!LxU>+^0G<u|aaDsWeq3&RAH|uds
zwT9X9#fd|+`lh)hz*`kA@tdX8&)f30<!)xX(4H+G4sPOss5iSD1?;I<uh<^h-n>S|
z)#?BX5(Rm?tUn}KLQkEtXe5nH#uqw18wYHU+g%4Y&VF3CnMlzNa1ZAILq<cL5BwWR
z8?{~NNk|W@wPr_&^TTkD5&NO)xm=y`=tJ|~p`X;cAK4;KXhsJqvqoR}P^<l~Zjz_~
zO|>a4y5gc$K<N&<x`OtYs;H<mOc#H_%muOOp&iUtHaeC$n$jwI>NMI>Ztd*6c@2Q1
zAplbccCMEHsvD4vk8WOGRN)8-M?0)_!Ru5R!Ba~Et{d*LY>bTf^Db>t=uKSRU(u#*
z?&dGawxkSvHIb<q#Nr9}TB4k?fKNdYT9fAkX07v!ty1K5jvZDOL|o@w27K|Olqjd|
zPd?o7`J=uiE{7v@#Qn;JdTDDwhuwUzRxM(nX@F5u6equTChuUz^E=xEdo9>FI{<HI
z-26tcK%>Nyvp+PyP5I+s@EnP3s@LMfeRs3KAnFv!C<8&x_3}vNO@C%yWwKaaG2H5+
zKvB~i4s0!$zpHW8E_7-tBl?(37KJuPIvr0ezl#L%@@C_S)im0QMTFIS+c6+@7fr#5
z`ysApCz1eFDjY|0$yJwSO|6s_=Lb{LG-GpGi%o)s#+#8I`op%opI($?+$6!>`+Y^z
zRR<eel`!js3(MB%_vhy>n%)u<P2RTO)SI5jhgM)%1UdpQ#~Vr%U;g8+|GyiK59trG
zFNp3<Q?@A2rsMYZdv`H2V&M!qhI(v3x-KF{(zdXu7U4E$`6k>5tsM5E{u^yAIN1*`
z-z`iVl`(}D91+V|P0n`*qpRxZU^wr@Y+qrZF#Mdhp8mro$azx)Xh505Ob5q%fL^K4
zJ2L0Fp@35#E&ae9I-#IS8dqv$o^KjSOGpYeXB&t@BoU5a0C(-^a5=rZ@7G|VW5ZP2
zz-T)qmKUW)BH@|$<2tupi1Xmp>@%^!zP_r^6r%eR7Y`Yl`p7Zu&CPz9F)ucs0q?rs
z?Wk$6W~?66i=8W*p-)6f2rX|9qTUob$9RMy2WCa)^LDH#dK{yFyQgJ)tYE71NpqJ(
z490x;@ZjSiSe8=fM)14S6h6W!HQD(d>m*wfj=vD$aM1Sb%J>ACC<OPgKXl3>I1oK^
zdg3biVD3&9f;1tk>aar*a&gjqUadsvZ24q`Z@nq_2W9=svG(6S<hY^>XbCqQlk6Yb
z&Q|F2c>-!KR6^GLu8+W=40bw5eU3`4Q~Z5+A1N&<$(+t>z{f}6Pi!7r)~j#|{NG+X
zPIQ>>8yCcyI5;KOa;3xP5WgF@Y3S&rZV|JVzM5o?2`Krw4=%;1!%$cx53_D~s6Y#2
zT7P3s1W$Ic;Y{bf4`!+|m92Kosxe~-8@B|;dE>hXy6n`&OwQ`B!S)4|eeOPu7!0dE
z?Ae3BjOtAfbi5rU@HVLUZmz=6`V--DM#>Y^e}bk$u3W@3h<VYZsXRD5E}JJLbtSm4
zDIZYbl=inrJuI~n_RfgoIH|#Puvd0igZ*>QxuUWseQ#jveGE#NvX~^WTwenN&Nw;Q
z(6cM-ECA_~$`-2@X|H(l@e$b{w$>05>TJK<Uj`VN@9afsLMj?3Uc{#vn)$L{#{B9D
zB-ntao(JP%Hbf=Yo|hf*P6Z8%zhP3>U%$4@)yP5rZ0(D@b>e}mr*WKfG=aJ_KjOb8
z0*j(Vwp`6bwpcE_ajr)P7i0XTM%E3Hs84Ig_O9)GsyaE{owBirPA(mLHIc*+tYU?g
zXvPpQAgr_hK9OG|ueKIn1d;aLv~>e`4D04Ks>A_#Pe}W=x+nhLG&9N@g^~HyD5g0!
zj#mvMIygwEcapC^Ab0wAo$TCQW(FNE3!nSw^;ub5?H3j%*#!Er|7mhm#Fx?H#JmVp
z21Qt?pY`Z{ZIyX*g!Z|b#8P1l69mhHky2*)2KUUTDmqxKy6pl0BDphTL1E!(N&aWJ
zaU}|7C(O0qUq4NlUlOW%THQQ6bGPn*d(++5?_n^Ok)S`n@sUtIos^xBvFK!h-9gGv
ziVLaF6`^)uNI#kTl6qTt^07Ko;>U5g^<0leB}^6X;lcvJ+{N_O?2dB6s~R^w55Y+z
zBOff1)J^WFl98G-33Glsmkcepseq0$gzxk14j;VutPme0AQd0XB{|=(9bz<xs|1OY
z6YO}0hQl}`F88cxRNu{Cd-Iye{m)yZ1c^|oe2(}+IZFf`h<Xe-9=kRw1gM4qA4rBr
z%5eeTEN)7i%CfQ;VfjtBjI#i{tm`V2xY(tP?eWQ738g@^R3;31w0((ha2+y;VjN}c
zB=p90wu}Uems&_JLLC~R5HAK4i1O=zs_|3Bq2;7js`R<!`b{W1(XU{DaL(E<YlciP
ziSg3hMM2p#c0#t9G~md1SKOGPm}eCGy`AX`rp7b;M$UnN*)tfm`0S#v-6k_=WcGa%
zrG*&a?^R_9L2o)3pFeaD1ySb)*;Z0e0&n*bYIhkR2C_3edqzMm!0y-oDkQqb0Mek{
zffp3)E1M`>^U(g3=yDAHl9dGoH&1>z={Sdzd8OM&3f>p<-4WT^BCPHgPljyup(D=Y
zAb-Dv&3yd5M4>q}T+4MrZ0fq{tkF=x<8L^EfOL6@!u<#}Q$>9TswWva&n(;asU~CS
z`*HK2St7;Z?2kj{%@0f`XdFf<<IhK;)v09vc50ESJU@+NPqWg5pMU9gDjTB+KStio
zbBX$#%{sY}X?T_+mmLMv5Kklvp)ELC1?SxhSdNp-C}R8kp7ct0aRiiCR2}lqIvY(T
z9Jx{S1R??U6zpuoaK6BPp)RE{4wIuAhpi0Iv(iQUIq%g~s6*Su{l|{6ZBNoi74<R_
zOqbPAu~BRg7VEL4dvKHcdv}LpOyvUk!ZxAYHsfllF;_XX;<x+N_bnNVb=c#!8=5wc
z3OBYOad-18kNb`bsa84h2W2McFh!=U;N;4W>DbCRjlG_x!gI{e=kKqomUHJ;G1&FQ
z30+OsHZ5k^MMUnUUJL!Dclfu+VY$-UmuF&h89+new9Y-SJwE31UP;lcyQ`tlg>b?X
z6|p4{BbPhN)brD;UMh}v)K<nVXinNz^$Q#KjAy$Z=Fd2^IZ?sVFPgZDlwBo?Mu>x2
zQ#6+tvkPW^y%!pT$ba6jrBvgX1$#;iUWWA?XFsAkYl)2bu{HHnrC}OD7gU~CJfRts
z*KvR_YJb^&MT?9|l7YwylEVBk2W!J88^ncgV>&Q$K9DJ;cWk}953CmHW~)$LVB5u;
z-~C<gcC}WayISF+LEpGg%{aSdg3{=E0N<r;RV=QUA%OQyUo=Lz&^R4TVo+_uR;G7T
z|4V-;Gn1JqL|UjTjhi@y+XhTWhil;3f5Vq~yj1Z#RyHEb*$KnATj|N-MD%@kA27FU
zhRs)emo;*rnVha~=xuFuKNnD6yz;JwddF&X`GUwIBW><a3^TrKjWu*z<Q7a_I(y~L
z3*ny0vbK~ZxF&zBhzaWK09qCs74ntZ=C6fre_5Fh{m)drQDM#RGrmra&7xT(z)JyW
zD8Qgai=`YoPKb%GTRzhlvxX^V8Kh;8%XTvO7Gk#o)LxX~VJ73n2I<2S`DE|0f&v#b
zjI-_4k<$~!CTYw^TlDiJ#gNija-)?tbl6ejd*jD@^!WIA6jWS>xx}kWx9}(oO6HGs
zjB!^ysj)pD+Nh`Yuv9e?G1b)6?oW(SaVV-tv+-;e=?w%vLx1!y#SR}oo?^=V0FaXp
z;d`zx7TD`5T<u;yiZwdE*H@Y^z@({B+6Yaso~PBeTy&noQ868*ywEh|KNdQ8i}IHX
z=`SDrZ-vB!36hOw5bKQ6IWG%{Y9urO8CeU}fSQ^*oU)~r8&!)KMw6(=5~e%>_R(TW
z(j#QG2aR}pzn9JG@9$5Q2}F~SJu_S*5|3?lHmDG2Lkyx&9uu!aR2gKoo}_86$f^7u
zUnAtQhy3D3%N@*^pGGSwDG39l&hvGbf0&E=)1|gQ4^<u)VA!J_cZ@q*TPOe$5FRvo
zzH~!6LV10GdbcrQJ0!qpd;YSrCi_K$$(to&9Xf(Ag-}Wv7b0_YCXDX~n6ENrT@D8P
zlm#)E%4gKLay*2G+PRDCkJko5)^}Bxb#qH*3j_yJGWF2_Ap^62F5GRk9O%r#`>Lkp
zTId&Ui(ItBwfvWe8rCf4CUSD2%FxhvNJQ!un6hCwM{M<N`<vK&or4_Gh3Y{?mXs%m
zd<OXU59OV|WOOw&A|m)acnmyna|s%J@YQ^YwmY>QGseTDUow+gx->Zl!tkI6k(ZnK
z<;-}o84W}g5nQg6nt?M{Z_F2RTcUX1w=~zFxd_^{Uc|HIz|d?O+)8NvQuXPTAkp3_
z?Oc6KLQXT%_)b$WqRO#9+;sge_h*&2#0!uZrkI^IwvpH9E_s)ZCKGy|tQbZzCZ>Y%
zct*7zoGk~5WT|Gas5>N(DU-^{IeLArx|YL6M<pxnLY2^WtH&2<C4cS8^6m_rJa978
z?p-U}P;&+kFD9a2t|e(>gVZM@2lKl;9t+U58!?G@p-1>z?f>6DbP-8(nFP<pGDIP4
z-AZ-(Jro=QV;07&>}*_3O=4psJv|B#he8_5#`bo<VJd@r_<-{bVt$tB$5s}%gBk4T
z)8`<aXdWShG^AmI$9RScoT!A2l(#a4j^WpV`8MCS2naF!Xz)d_W$Q0O%WAdcidS}n
zmV&xJp{E=nifPz^a~y8&8Ka9i1-Qr<mOP3y%n$gf<sI=k$y{hL)RylQ9PuUbd0U2s
z2{3BPD!MbhaLO9rICgA9DTUrHMi+!bbh;=@DS6{P9QaiRylRhqderb4%h_hFN+js$
zl-e0S9e(TH01B@!6mjHqE$usB)i{hKMC_>>^ZbtL?QL&?$OS00yW3A)FdYG;Jh4|U
zh#=GzIZ-QTiJugEwZvUCeq{g<)B180^a?cOWM0MYvgTn^^|zh+ig{FBT$%b3$x^cX
zs{c568#Obm@S}>Q0`2$P0IBsQO9dV-<KmQvp0J}r^`*23?}F`f{UlEc>rq#Bn8P<#
z%aPPlE61eTvSNzA?0PcV91ZUp*%J7i3v869SkW%kcL)~wRR1w&9_^%VZPEqJM*cp#
z=P3pc6;JzA8gTy6CL|_mI9To^Cfam)2R>^U;-I6;W{>If#{EqFY-8{a%vuh#*<Poz
z*G+2^9U?-)`MdKSZSvHDHT-54#PSy~dtEB3Bj>?n-3jpj4tZpi$nl)g855{FsO-#Y
z)yWcYMELph=Nw;_?7gHKAV>dWJtB$*Fs1WMxpzho?OG#ytX%A}I89M(mYP1>qFbB1
z|I~8stab^Mvb4i-fRhXdK$kmi<969q-PwAF@n;U_+3t0*u^6!t*=-a6<UM66Kj8;%
z<cmx0@-P6gn89728>I(upW0Y*S-f^AJ%XE8b~02D06_72Q23z0^YL~*U401vT80cp
zdd(Q(5BcqcyoYQ8j#kSNmNpu`w-F9UvGl0PxxVMNU2LS5v}6!@MPsSa*wJ>-_S>wO
ziMfO~1{gCJ)CDG3_C_whUmJbQ6tP`6!tIVPtxP$~j7%ij2~6?FyG9Q0Jxem|`4;!o
zdnfzysK@32lAcI_ntL+$q3uUM#2=}WEfc3@*lAbDif6Rt;8dvf_B7KUF_u8~u-9T~
zh+<Tu>hj_xJ=Bu0My1&k`8TCFCC<|+w@>RCfT>u2ic!nIm5>PN|17{WwO>H-Yy%f8
zL%bdbv{sUV0&#ICX!dP>>^7^8NLuB$Y0c$Cr!0h+BDX_IU!Gt8PSa2;oWakWR~^C|
z4Cy}A7m|_*nRdN`X1hz97i#{FO?rA*DuQ+2;hwuao`jmiW)@d_Rm6|JEF3NHVi2$L
zVc%YzAmBco>kBxn#U#!q4&_Qms@MNWK<x#fm+n>n_rxHUcU*`-;h;F|PS|Z*Gl?(6
zR)MIPDTKsl{}|mW(+Rs*Z{QeORwD}kAnZ;RSZ&G@9Z&T%OM87EJqF+j=mvb^odv`%
zM+JNrh9Aa-EfAB1-3}@4+O3J4g%4w1RNPj;88nGg=%wx4jNeGYc2X|bo8lXt&sj#i
zhm6Vsvm1oinJ#yEkP^jm+e&&mJL380g&bdkRO-f!ia~!pm%kz@+ux)vdw)Hk5Lp?S
zozjq=ihp;X+G5|{TLVlnjQxwg2gZpxWpo0?YlCzo^W9xSVI|O&4J~%_=t(dJNv$(v
zj*L_qJhb+n<z)%j&DUgKZ4M7CSDS7U6GZXt%KwjD%^%9)NT5V3ff${JO9iQj2Z#SO
z@(sY#N6j493ULF{Um_wS;qC410ZnRfe>BKhj<Wf{>fJlioMK%nRhf2YsPgN35y04r
zt>YDb!BVs9-Q|&pzCp?cNX5tpa_aDFE)<8n#jo!ofE{1CFgr+lrkzE3@wbj`ambfV
z@~*}!MVN8rp%Ntc-K>C|nk54s2|jY1kA)|mwV_y<vq;&}7y1|JSY94m`&2(Yon<tv
zSw-rsxe12Jx|NJwdzr>Zf_&3wrxs<+KX6i9AE7d|wI|!s9ijwRejPE?K|c_8?=AK^
zXw+heO8J~ARhZneRQt%x$QG9aC&GM#_1v3~fZg+yfQ@$GW*rj!^($F}eob1n)A8WJ
zmAx2tbe3PbJN}|Oc<KCGC}YF<1bu13b@o9=z@EYr`tI-{^#Xj>-5!U(K%DZp4l(td
z>5^FL{6^d~yC@cBwod{SH*2^8-aEI7Y;d<Y)|b58^ARS^U$Y8dpZTQL<#QrB`&ycj
zi7EJK5my1a`#r{PJb?jci=B`pb>1~zSR@~B{o%?#aeq#Zcv)mxEVB0D%)hheWwuTq
z<{854*Q9#8BF;PVJ2HnTPdc0+ttD?tfM?SHhdR$Uo~g6akbix1KJRd>#~>pY9{egl
zD8-;HIGS0Nhi1iFz@8#Hzv>Yxz8-c%;7RP{x7$r#z!}9U{M|D9a*#UQXzxp!4b2zv
z_c{e(+angIpyWH>19*?e8^}>9%(18lDhUh(^~@ds;B_I9RNOdptohz-j9nHswQQWD
z)!a2!`v7q7;>dQ<{ltigI}cfqziB!OA;szrjLf9|R&_eGEIQD)k#tTnuMX{5J~2tp
zyZuWM(6oU*_0sE=0F#R0criUQKERoAxWcu(azjBo5~6rhlki-??Rje>ch5q-;klDq
zu;tnB;d_^4JA{OeFGX<~?Pxy<;t<)ad3P`Fg&PKzgZo|Yvqpw~I-J^Pb84SD{TRGd
zp#5MY(NA2oAxi02<nCG?xT3HVn45<&Wk98>sew>&c-Q{g60W?HeK%U6TeENtipYSA
ztp8dt^}CCWWCLasDzd}}F9!PZ)!{*2kN$Gi)C?4hcK8^gqzPkrL$}otVyc>I!oq@J
zRA$4(42*8k7TDu(?YV~_B>uTurxnub5Qo9>A<BrIc02JnimxZKhdWyE*{GgC<D>hB
zB>}(6U3re0{=9+VH^r~;J&4k;LOs{3AwO^0+7E$r_&h5;xF0*CkFuXAhwl`goW(1P
zrmQ_Xn$n{(#bP1+p3&x?KU}YMsQR!G{kA#Iqs*w1KjA17&rbQ0_S^`FSCdk$THaPX
zw2$CD{00X?+|08{Y6PXulYBDwN<Y{mARMTat^AyDbHOw^4%e2|GK}FzsaeL_Hct5O
zD*wN<0f7y4YZ+XXM1$^^hwpY?k)m4HYX*Q%ItmIxB9|MawX~8&(gr^rcK-m}SP+3|
z<zN8H%3=VCnlAd^8+#g=8j>#OG0*p=0Rb_blc_<i;?Z1l$LyW=Jq>K-?b9V->A`OV
z@rL<fx@yBAjb}BAmyDSki2XAdH;b#=0G<?eM(snlb>vYw-)a}bK{OcHeH$=4TzDJw
zi%4vj0ABX#BD7ZSDzG&L7j!c$3)w>-TrVfmlJxSmE%UoE2D1)@;@1)feHCRPgs1l5
zvy}K;>T6}?cXnoZc@jj``w~V^h=209=YM9Ce*H(}pkR25MQhS}?n2}A%JI69nHs?H
zkArfCtlVhGvNo&rJG)-0u!SESd*g`sKFlM|ENqw`A`RB<8!D__g2cWc?dlMRj;*#|
zvZpp|8Ec6Li0d?vvIq;dICI~x_MG~Rf(r%%5UlZGx?A6}LZ#oQYp=~Ge%v^`L!g}9
zq7m;*Z52U9zBvn@0;3G1pfz3mK4<qC_j4zVp!ai`%8rf1P}Ru<fd9(QYLuE<Oxyh-
z6%Kz~XW>^+Q$m}3oo)jg-+c{?f`X~X%ohvzrd8PqLn+kM9xzsqn?m8{kKErdKXXU5
z82W89>v;SkjEL#8ZQZVCIR$`T3DAy(C{V4c;Po7ymk9o8PMh(_xHE2+SX#D`J&so!
zYgwC3ZFb(TQXF?cd9R_p{9M{cY=`b`UutV&%GRGcO*f#(-1psszpxpwuYy+HQh0Ut
z*87twY2*79N}b49*fGGqv|Ze8^x~{@ccfDs)e0Yxr5%M%hR2pcJl*;dDd`is`ftVm
zc4(l<T&4rP-`Cul=L9itctc!BF<$ADg2b6M$QnGfe}qC1V$yYcWopSHNPQ7WO5f0Y
zxSJJGD0D^j!OjptRpojA6++BHwTinO9<$kFiR+gAt@3+7Tb*-ThLsA1BfP(?EHXcQ
z7u{Xns7#C3#I*;fT5T3)_GuQ4?};RX4_h!yvc2$5>_%7NUO1p)$c?i>TL%w>_R*(Z
z^62Q#i2u>I^ZP{2+IWA`GPnM&$^jHn2S@tng3`oOEb{YVW8Lvn?lyld_@y~1l{?4u
zd*3dl@*w5S@amHZ3yxY!`>peyJ1m>Zk(g7(09&JTb&2CsBnRUjyTi)aJi)ds^%0q2
z7HViLe4N0O@@81|L7;!H(T4davb<NgJKHge^lU1XL(E1}4%%9;`bS)|1fF4xX9Vw}
z_s(BTbJMusgFd&`o@#9o2e6F|?szHdIlQE&S{SP&GMHVrfzr2S0o^oowp!q2f*~~1
zuw!8GzX(PD&6KKKr7P4nZcl=0`WCVJL~Vq^z{l6O``51oOdv5UIt{P9IC-SjSJd%%
zn92zW89A`CQ@k=II~zjbsz}?qLU&1tkKavQ24HdsEi#73G(uk^dEN=QA1`f-O<QCe
z_8q2lHJ;e)T<W0|8B&CN-?TW%uP67}=D&n}j<im|IYB18@w&d2T&@1ql~WqDIZE05
zee^88u6}TO<yIQsQ87C==M;wI@@X6*u(}~F)9s{~O*4_JpdxQ%a#R;$`e~owz<pm3
zF0bXne72gfM*Z3Iqu=<)aLdJE3m=RL5w7+KM*2HfR;cvaeD<eqy!uDRc!>@x?N@bn
zrx>xEoG{i8=dmQTcazcZ@dL{$1=t!M&mpEZ#>ySPmj5tO<7t+gxp`aowYjt#E~%DM
zgO_t%^(9N)LTgLBQd|1=T~4eH*Sp`$J<5WzE;dj4VQVAfhT#*X*&zWm{O~Qe*`8^U
z%rTm=Emog-;$jhVf0>jnwuz-Q<7yF0&fLC~%vR~levc%?`{tiTU>zxZHJqwnpFoEy
zJ##F{An5pbIwN;+>&4o}w}9_oC;(Pyb2___i1t=d;1^bzb0eII-NTIQL1^1ze1){9
zP?WV&i_?%$M{v=V*?1R~*yBX=tOUc7x!rIxDeS<~z6&5*nne4j&80SDf}rNoe2ao;
zBS}RR!9c2*TjdvvlGWOmi76@Po&M`;+{MBf2DSJtqge<{fS(FSgz^|NI<yJav^f;G
z)ckI9gd+OlRaV^iAj8gK%!N!uhc(L|aKQJ2Ac#<#D8&J4_B5y5#>(Gd8auO!JE~|F
zbK$k>M9CgrG1l^v3vYY;sUw|#-uDrUgJaM#J9b?)ISKW9A6B{}v)3R(RI-{w%%+oQ
zmQBKmKM}$6T0x`%IqvYiH(=9>$>Tu3L+{4OD<~1w=)s4y=cMNfziOJ`mc$vNAfUzm
z%w(t7%ynA3NgN#IEVi9c-`qL!%o<0(hvZR9+A9;7nTdlQN8HBV_Z}0lSZ-}Iuy<Cw
z+~2)1zxv_P?t>tGebILO2)%Lb>qK00UAgI;rQzm&yJmN4n!=WRmmY$oOEJGuRf71J
zHsQbBT~@P5LBYYf%NW^<yv-vH4)i{Dx3Zc|chV{0k7lt_cJa5{&%g>xY`kI0UAl4K
zL^I04tQNRli?3vC*?p23rV#K|E}vI3N^1XT_-&3G&&VSV-@-5kNz`rgK)|%T?M-kG
zJq-)f^GCr@*f$vc{WBQf;fUUlgXCk*Q+<(yy@S&y(0kbA!ztaUt1@<)_ycAXPFeGH
zAb(A04yU`+#IEo)iOh6j97v-7rn8@s63{+B|IfLP!#liq%q&MKsoyL}kc~O@9?Q1y
z#^YoSaz=>d)z+Va&ij1I_uwPwOJNfiJ}*Y0ED4V}4w(12D*T8cq(^Uw22C2kC~xwd
z5eX=S2~@4d-f>C_gy}+UipV=^e}&%fmJV+4u{qe)%BGGn3tmH#Sjo1Pe}MLXL^pBC
zL9O%6*~S}Q?k~ov6hxas8S`n(N7&fr1|0LzNbjUMImc_yx70*BN6LOUT&5fub*x<<
z_7F>(kmAb-djO}Xv%%>60@1r_v8`=c?~RC7eaH2OQ2kmNAvT=BgQ3-wL!nJ&XL=uE
zm;Xicm2-g>4{N^AX}rslzh2@>vASGV=?36UzLL{QLmxOCo15y_uIvr!AJMag-3}11
z9^Gvd!lH3TvPGKPUb~j4FC*=Kof->sijesDN8bFMxxH6nofOSZw*i@-Kver+<bA34
ze)wNV+vQRL(Vp*A&gejeT*geGECT^P&FjO(YGLQI@&IcF0lsuByaiW*M6;KYj{C30
zIv4G;yD1`>*RNJ_VUGi`N2uuNA0|5eK@;4A8=1m!HTi)ji5q)+IKPT;!>Rq|jPX0T
zsw<)d84O*gRXZ>-XGTUxfjRXKl?~T97r<9<JlNYq4Gauin!M?YBnS}xVhlJ?a2wa5
zQosK+KdN8km=S}v8pufRmpbM_cdLw4u7bDqvX;`@>|83hV!k+h*VuV&Y2_rX*BRcv
z6QGl~tsX71M%O-w+|T1Mkrn?u(81;909!mS*eaBG3_a69KUcD0Vc7A}*D)Ac#DB`o
zch!_71wD~5F*iBP8%^}49uW6l@|Nb%vnvqR3+8>SnfVo6MEcu{PYY3;n#)$~P<L>t
zE-fovn1eejxX1uEUEDJ%<pLdJ)Au?w<lOI6XydLo$8^*3UIEj|=C<U(D>?bA?REYl
zUxTR`+dK&%vO`A2rAnk|vL!2rhJ-*ax^h|mr+xh#fmI$Z6cR;jll_$eL0bggMabI8
z$WA83TVk-_Tlh$}%CC8zb_V@~Z?*YfWpbL)rZ{pVbHPcSUrUv&|N2{Nll}2QAW5=D
z+v6gPY2jky&?@G6hC--8o>qGLAH&=%bVFxgv>QzBe4*d&#SPf1@Bko0D8Ti*K8NJz
zOcpm?H^0>YvsaeZ2=EnIZUr*8Ug4s_;OljN7%)YA`t*k;VqkZ&f+gU0FVNK5TKik)
z^)-d)z0lC>IZWf_S58G%{CrvzMd}CG$c%DbpCaS8H#Liwa#{G1522w1KmV|+Z%ltK
zar|s`x5vw~6rrB|$U<-Nq9>KcRMK)v(#?^$IEjp8*_1Fft+qajwWIf5Eb~?>v;)D<
zh}PN@hJgnEg8bLqfqi(-A(lp2aA0IHHzex|sFaAB-=8#N?t#1ymjWAXQ2}P$f?Dr{
ziP|h+<NajB`K?K0b1anJLI7Gqj|_Lq@8>-M-QmRTjT<a`+)T5JS-tJ3I3Oh<vF_~z
zS{L*w=I6Y;Nweav`-Hy%q+znhGJSjxkYEOm#KJxLvY5e49B`w;%S2BkH6_){1zVb!
zx@)DyVOS@aOzfAfxoa$2RQHDEPS`J+7?){^Pecq@PKFwd_%wJlw)4(>HyMHk_@51P
z$4Ph&bVpl9GXb6e4tsb&Issk`31<-Qb?4Iqd+NLizooRiJlYaqchENev9g`PH`}$r
z&pA1r+Y(3dD-SxK-4dGk!|#ONZ;ln$`v8o&JLf(MxZI%w9@iAfg)+2jEP<E51s&W*
zLGSH=EZ{>iemEe(e0`95aiF-g+F7+k!vTn{KeHBgKMnyrD0mvsnN<E+IRICX13Lcm
z_45}l)mFtRRDnPWDjGEQ_~Xwm2*uoVf!CNCdSkk)V=pvy#?~x7U;mDe>x*(v3Z%SB
z#cjVWH@sAtS1QyRKj))5Ci;v2dZ9U>KbyEk2~Js{#7cUhsACfnb<Z>5fvUjmXdL}X
zS{gB@pbp{eEQ;pE3-X}gho&6Uozc&D&w@^^IY?p@;f@B8Cw8B)45MCi4_YJzrNl*H
z1a53NG1%ciP4)mIlGKqZc6*R)17LP_uc@WQaA9a`F+R8ws3)Ok%g6cBjFP&jf``;c
z$~1?byW66zg=+__ACC@r8rbY?19k={%SwtoloaA49CmvD@B$$G`MA<`C;$4jF|AGg
z6m?X39H*np(=NPf-%<uQCO1tNGu#p>9lthmV)bn*_1G<6_30eyQ#{&)ODrm7dYq&-
z^09%K-nE{l7J_J)O2D$X-;dJYhw}-7A5yrp81I+*^m5f;fKx;IM-mlBgK?w@hMmV4
zsojk>8<=sAHGiS{KJkf?aNkA9n;EgoXj^*9C2X<47+z-fpxw%fgS7OIBZj%E4lh5b
zQCDJ%4HZpXA~`sA<;h0p02Z?Wu?yFavbjPXDQ<^z@P91v7IDA4a_Gl{MW(~yo3dcC
z@JLoWoF#m;**X5MD!p{ip1Ru{muLqbvHJoOwAm8H<J#rpNHmuke}oiV>M{k<9z{6D
zIRsu*yU%T;5EJV*PKgxj(>lDsZvrwJZV*}q#sz6;;Qv@T8rYs~{rCdA0i4xPmXLer
zVL(Wp<kj)A=P8i>0?Go6^DRsHN+_brHa9k!tVp432pB3Lc7stB!2DwXbhGY`?CAj*
z92)}xRA=;$qIziA2iA+<5Hj)LQIT}-oY#!d%ClUK>SxbRwmdyOQ(|EAgM+9rC?(2^
z)=v6$=h9BwV(Gt}zjaLT&%_#;?Dh}e(5a?oj%URGWN-c;F7l#7b07v+1lPV+B+)hr
zrz8OdeS-G`9zM}ODwuzaJl38)k8fL?sh;y2D%E<x0vrNB{H@K+K|jn~+ut$~RT=l%
zWrbf<Wemv$vL;s=#}0yHh;7%JMQngMZHlw2>!zLauDlO`$d<@&P#e}D4`K|7RYy1W
z6HbWW{t8H{H;l+|j%uc^Rn79wqVD%+D|`5AeK05M1-MiG-kp?wcJX*UE0lF{(*WuE
zRPMs3`Mz(=uB_vomSG~nQB2DvF<*xD+~pW5Z6tL#L>JB5|M6?9rfCrP3fcnk>=0PJ
z|53X3O|@t8D7~P@!;X*CQ_w}z)tqf{2p4%RkIJ50aA+Wm2<P#Uj-7ot@=>e&&F6~H
zd#}7rP|E}Q<LT*Xe5Ngta(;ltl^y1LvFEpyN@#t3eO-X-SWm`udBvdsp1;5U<Nj)=
zI1p-1Mdf|S>BqWg7C*H|B-^#!1KDa}pcLDu=F5Yg)%lK!-l*#LA1G?yxozcHvc%V%
zPU?!^9h7<ClX`}C1jW-trzyA!$i#HusyB+b<Cm*x0>7hfFx(?m-)iJ1?55&k!Jvn$
zr5&r<4!+yVqY+{P6y96+$GQ){Y-Au!B<%eBASPz!!sD+C4O0LDx2r5_+=FCr03<S5
zC9W-{RRCF0f|ry!@PN7|2=GlENMq7=NsC^eUdRq+zLnCqNHFa15p>y~LI>iR*0)m(
zJ4P+!egVc)|KMauEIxa_?!0(bwDOli_aDpTKmTYUAOMd$I-ewH((1s21u}@ba^~!*
zH#L}FpFye`atNLhaL{r~+$pY*uLYq*ySQvGG}xvKB*psZ@y^`*kcFtzyfcGdWe<;+
zO#%l7p!wpwb2@XTaUv$#f`Vau>1C}-KMo?#&ho)0#TiY+8xa>+D8bnN&DRv?{Prs`
zs2H~LIe^v}Hb8D4P+H1NjV#0k7_v$E`H9KM$w>nWBlo@I<yQVSz+Ca?%(Sh5+5RoY
zbJdI{BCZB*PCp42vy+FanV5DVoaCQ4oq}kiLeR{&g;6ZeT$5y7^pdjC%%NAqwYn^^
z;&R*#ofw%#l_5Egn9U0H74aD-@391U6_LIM!X5jq4G>2G9$b7x-77aFzaZI-`W!EZ
z`7WCP=PZdLv!w?lf6GRfE<cVrOeG)!a4kPhEGUxTWzRRI^y_iFvuZ3L-d4yLNOv-R
zxV`w<95FTBFl2wc3G6kv&R!#lQ!mquhD=h-s0~gJPtVV=d2}OCZ)v?as<L8ulpZY-
z5Ho>zeZFAE^%-{atl5G`@t^0x+D{sZ9;gCTcT)b}|Azl}2%3T&IA3e2kO!1>NFHl}
zsHy2K)BSA#6AT7KE}oWupJW_cTx^|}l}^D{{3>6IFX8BLX-GXipT+Pz7MlCZ`K>I3
z?8yoiMbWd!C~&Et>02-J%5j5ur`R3=q>UVcV}QVzPW>^`u2>0pb6+F7faCJGs<8g!
zY>-yzcI*KEl0$GW*VyNXpv^y?wSr%rzGLe(g-Jg8N@&~zsW|Y4u?WX!f$+$`$N@T>
zMhJUUFP5CGaG6A;%o;-A%p(P!$3H*xe=bcj2BYeqR!tO1&;PZg|JAVlZ5>b8Acf&j
zGSy!IPJ7eOXmb^=fIt+cq%<+#mOmN|D`o_?3Sy|H@9S3y;cL|5vftl3Y`kP#A^U7?
zN|gBGWJ~{MK*jD8TL~`k9u^n_=jL>Fe-*{mq3xN3m8h2(P2@-hL?`zt<0yTo6kB)p
zJz^vzu4H#{tx%X-nrb+@>!)N6!=)bA*E>3A+o5Qt5#K7-DrNu1815=9Ep6Nvfj?2I
z&F%mM7U_KJkjdbW#YVo0m4c3E!s}NY47+QfW;#?W`Q$RYnFgzugwRNbN$BY<$+n-6
zE!yjEryn>Qt%@~7+uU6oSZ4P_PTL6x2oQnX6qI{CVW&uUozE{&kdR;v-oW8&fdwQ!
z{D6j?yYQ`<gabtJK%L)fHlk`ctB`BY_*Q7Nh-Iu2X)X7WI_clOY$$sCCO{1>rvGO<
z{I_rSUk^M4@HG39f$D%6f3Mctw{Hu7e?v1V7zW(#l%F|hTIa6%hI{UnWmZb>WVv^X
z76`k%{~fG^2`_4i*ujxla2Qlz57=DHx^FB_)B4O1Wum?{H};i%PhSaM=ZD3TqS{%r
zPoTJlesBB5`V;rhh)Cj&Zf#=&fmypE<oep<HAN)bkI>Li7!Wguxz*|J_!}@24Kg1|
zK8+N4x<7{jR+0;VhiqwO*rHu)d2)P1QxnObGgQFytU&1|OnIN+W#zkC6cG`ToSYmu
zVm7^@^o1&8#I+0=iS+^ppNfhKl$*Sg+Xdo_10gRjuO3YHHaPHcQuLcs;ZZ;oxt64D
z0Dp+v3j~ZJX3i-SodtZLWzlaT{Q2uwKO^X2qXN`a8!EEvA|#d)CsuPT6@ah`SVl@4
z#KgTG6=Y;YKW@J=NWYhjCWb$*F=l7#=Un5h>D&Rw12*Dup5$|OA3iWvvUfBZ52SHh
zu0_7gT3cOBW;evS7K_JRIrU!VhKL{n4xzQA(E^g)d;0Fn$Q>OWz%2?`G_NhYuZ99D
zp}B(1AAn7B7xKEmv9_Tv5m3DR(7nK=5a@yy%pQ0?e1m<T=2Wm6gLDJ6`ha-$^-2qn
zp|CFgbQ4F9F<3{+Z6Pl$v(DergG<8E6(;WY4Hr-!sfa)DteL>c!T0X~2&_Nr`pIWH
zxi!G&+(jd_=#Ra%9*e$#0S=HA)ZXg^XupX%`8-6oV}GADkEQeD!bE6kdn^ujD?S0Z
z3BW~dXb18DR@le&k+y<Prduf1Wd(ig#qSPl+f;5K*a<)S{I!fb=aNNuTt|V%fgl2z
zbdGAEA4=#?tnWO=du9jzo2SJD62jK?5|Wihp(h$}Um$jX|7#WhkF}d4h~9)661*TB
z-;U5l2Y%)w?1l<iE5`f~xOPm9V$JR!K_-#_H5L?c*DUUu9=nCB7aWwa1sow%(<QXD
zh*f0Z@r7OrVI;hKPx(P@R4Ndyjt3qDnm0|rJRWDOxbPloY8E_EEuOgMsCMKR`!uW=
z-PKYEHCy$Q-N9%4(RrZ3sEiNnIW~U;u*=a(d+R3;5OToo?JeNXFC{M@fsNEWq)jy_
zg)4Ubd<nQn07r<_@E|Qh#Qf(CoRVl-Y7th{A*yO@RrTz2;-GC=U0>U1uGrXJaI}ev
zoN~*M*=Q=~AL`j_&FvsXMm6HkasEHPywH1Y!|pY(LG}sdPjn$02l4b#WuQDr&T|n^
zBU%!sE<|T>;!@hHO?_Bx)GLdOT|0+DDz_y*^>`9eZ^lxB*&0tkfbS$Yw#W2t0_cVf
zAO^o<wkLeA088+f?zD}SFK=OIX8?-pRg%0*I+73fr!B11sIP7-h;qaC6h0Fm{&)-t
zT#GyR1zcobOx7;PUo#pY5^`Yj<zaPPO;VCoR^|uv+yj2r-~apv8@zI-%@0tyI=b6u
za-Z46qgpP@ww%3za2Xmdu9}&-Q_BgUCWlT4`T!yH0X>#?5R%K_AP1k5DWZ4)FYmf)
zC&>m!Z}wchz<4}bo=6w6xD%5x^eBtVY@_J^+x@x!QuWF3V82qKS>_+r(*Jw4<SgUw
zin#D;kYgKh?dO1x=)oGg98A-A6yhP`TQZKd1I&0#QC#n`P+C;pp;!dtsN>oo<#!-3
zo&8)`&ajgBV;T|=8+t8e3@21pZqQCP(TuPE(y{akI6xBY7e6^e#>PScS&v>UiIs8+
zT;Om<g2M(~v_#XLtvDh^t^&k1xUQU7P9~vZYVVy@aO)fM5pLYqr!z6T7!XON`bda0
z`AjKq>$eWz{<ktk0HW;z*vfWeTKu2<j)`Mp+jp&EHgsI5{D8a%a*7vGh=Xy|kda(z
zCLyvvF?D)F5ePDRO(C7DY97pb%H%eQL|`T$5Bmq8sU0T_Ct}uuIp*JSL|LeDJOH+a
zu$G?ncRW*b4YHyxb;NdqMar2QCh9JkRJ_)NECy{Psu9sWj)b0@dXs@5$YeRF6JjI*
zZ~f{ON*rdRrCEe>4=vDNgbG{dgPj1kAdWvOjd%(^8xjCvku)%%qNk^K$Yq_8gxX>4
z#z)gSV+pX~1Jc1kS%^pMELtT5NG58AIWN?GxG$czZdSdXd2gRYQ7Y>zl1I+Y^#J5<
z8Uc=w6OHzUO?%(cubWgQqS#$p3;^wvJ768fJWigLLqfFdH)*Vm<gz4t+Kv~x;f*&K
ziqlW<QaL0L5%o-jB{&ZTaQW0Ug*IFV0x&m#fHMALtQgl*-|(Z2RM^6r9(k|Aeh&WU
z<Xeh0JO?%b?R%CrcOw^vWK_bN4JfHJ0LA&A&_Dpkac54Umi&BpQa`FKoN)mQpA)oG
z)(-#p&C|_6W8jj$cRrF&WIMSt*%aU>6v!_<j}w0!x;vgO1-Zu!W=n(l1|SVSOHD@7
zO%T&3ffXRV`YhWLa83>Y6fAGD`Q<iyWyws&i&V11l+yX&*?Rg~1nhzL0>$c|_E0gQ
zCKI**Qj86{uEe<pAvt&!+M1g4{3_7DEpw&kKvBsck<awESO4~KlmaKjpAT#Pw(v)`
zk#i3F*sXAca~t)HV~?4p>Mix9L;F|sjJJTI8!K#BeIjX_```utWx%_g-}8P&@^o|v
zDai0ku@AAr$7?|WYimYqv7hb3Ss5ZXke1jo5&l$U;Ab;L42v%IWh~#5EZ*kC5){hi
zB)(1aRgY@4K=Mc3kNzdGxk{QyC0Rbtdm#(d0^|f>c6O-A^6>B*u`gR&W^B(NfV;kF
z;@R@2O!VC|<{rQ%w<!V-0?85`(YIDJiohu)nNVx0n`%a;-8G74w?y<y>3Y7Dp%&tO
zR<M~}{>k=z41A^$XHGm>=sN8^;C<W1PH34o)TofcrsoqSrS1dxEk@_X1GY$vjEp}8
zUrl7{ptS*!tCrWRPmeFR^CyUqcYze4?GIqCC*T}!8k+O-^I$#tRrL&moinGHq*E>z
zOpJ&Tre<>sWLP?U=7<snA`fWwr44p_{B^D-<)}k}^#>!oR}M2VYZjnd1h!>op-;@F
zo+_9rq&ZKCa2*3xpQ0CdmA%FYxciqRDUi2@&MR7vYaCmXF>25-T(|88uEn~px|W)q
zJ*xqIpu>7?{*|<T+t!gVxqS&FaF=>j4t!Y;I?Zn)&m7=fYg4m{#U$gP5O%|wsWgNv
zN2|%i<QeE$f%_U7mz<)vtYf4+2~X%=VgZxvZQ3iKnwS_M%Ch7;_rDecVggI1_#at%
zLXicuutdFnSM8m4+#PS8Fe)z9e+0P`f{<b7LD9%nG5G;`7G{Alz^)wx=|wq#b6%;5
zvt@M!VB%1qXLD9^nhyAJkbHXO*9ZBM4`GB9JpGNw@l_@u1ftaQD(P>p{_SCbIq=J<
zjJ$AFBxbf_%#YU2MpEmUYFl+Gi-OwlGd9KFdZrcag$+uwLVt{y=h1Vjke4&mt`EUE
z!ekf%Ard2Mq;G&V`V1Z*;cIA4SxED15d&XcR0zb@4ZGNsc7hm5)#&4sFj0TN?yDG+
zH!l0G3~MKr_#vg$0)wWeeIsXHN1U-ivRL4`qp6aFPXVOM>67ryjPR6^r<&T=KxQ!g
zdTl#eU4;-WWoD4tZX~>HCIBs+okq}Z0o;)<FLM*Ph1M2OUHXXfEI)@MY=={MMMSHf
zw$sZ%XsMA`pCBuma9WNo%L+^S5pb^q)^syALNShciyISL9t)KpN*fJx&yr{hUj-6>
z%$1E!R9`|2L_&KO(RvO^OPOy}p+kDMX5c~EO6To%)t<y{nInNk<XAXfHtZ17?eHhZ
z>ic~yL@XhyS9SPPY^>Hi1I=YP?chG9M1xkJC0NrCqje4npEx!48UpCzos)o*Mu|?e
zRHQ5`=m*ww!QPyL@>t%78;ravT2TeLQ`D^$pk{r;RX^NHvR?MCmgRN;30@JU>k5xS
zaTgoOm*oF2_Etf4cH6pc65QQgg1fszaCZ&vZoz}QTX1)Gm*7qyxCR)wyTktS&pB(Y
zx$B%$=W<kW0gT>TZ}PVHiD?5IjbseScZmB%yR_s~fAN05v9)z7y87sd3+_bK5gHm=
zVG~(fZrp6~o%O#7YgXtVDFha&GS{&G-!T$VLbhaa_$_I=oiBq-Q*bQK)E?j=DpJA>
z$(R_5CZYZ=-=eo5-pOL4Fvp2<kikQko_14vMwXYQIxpxF7%%zx)&^weKRvQ63=XE*
zb=GC*W;fT?YL;>&k9e9-6^0k($UwmKDV3VFg}>=iQ&CAKuw9A}(wIZ9Zg6HtI9-p<
zuO?poW*rrNNJU4F_xhfrxHdrwg+-Zm2YpizFo91q%7`p>;t4{*m(-Ffq4FKIg0V~;
zKFe<mLQ|y~(#*{G60f(aA{DO~hYG8A7%l~(e))|Sqas<Mxoj|%<~%!1%l1P$Xg0|p
zkm=CfWEpo^KLduWjEOSUo3x*5e@=_1eV}%t5!c=1{jA=1%>SDcDkv}^;FB=6pn`lg
zgDMS^13D;HIj>Sr-64An+!Ehvr8YNALX}(}zkq-fNr7f$9OHIuM4ZYN0}BH-Q_sXh
zJ>qb7zV7ur*H|Yt925SzDw}w~=$-wHJ0-?WUou!Lq^P4{)g}LB&1P(RD#6DjlmGKG
zg8hnesr!C}K<=F$1(VCKyN^TLpcA_1!PZM^OyeK}b*uWyb3A;BqR*ccPI#3T)uIS?
zF#6+t<+r&Gocg&|y84_Bjh8>Xm$7^z);~yH2_eND!PJZ(9KZ$|c4Zt;sBkHCq3K!N
z+y!G<P7o5gDJTwiYzZ$iSF={OY^J+~)?YYPjFhSn!g$R9mYPgJui*QOaZ?Up#xc67
zugl6EX-!e2Y&EZC67T|Bq=_xraJ@HK0G#U?;MD*%T_oRlAz&OYROz6pRtmE~a66x_
zG+h;FxTbv7?ale|1N)QV;`Fpaf&dClzgS(lCNSz{caM_{MZhaAsuG__PD@5=o?olA
zzx??_S$UwGTU{0<$B~a3tZc5oUz9?4teKqx-;e3_ZanHrka$R&w_6Aq5(Q^R#2~eg
zVbA0Hvt+5W4r`|Kn8Ujzf{ZwNhyf7o*|(j6UDZn1{F<s)!1%O1Qr^4yRu5d6FGefV
ze#~Kwiu4^wDb$+9TLHam#eli<FyLv`_ZVUf5AqH=`Z05FtzSc9%uzFL`CkYv|Mb6b
zGxk{Omj5rfnPMcgSmQAxObx?XcS2l-#}P6HZ-=r)10hAhCr2Dcj`cNNixFf|Er;5i
zZyz(Mq4B<0jQk-?GEkI+coeVKH&d_HymM<)bj1@pJF8~%efc2e4T*yLmYsbIBeNU8
z^*!}9J3E^NJrJdEOT_8=7PD|qM9O<8@}zKb72=XRqmQ>G8Qjt(e+Lq}-j*7pFoOZ^
zi~v(MH~{~2Z(p=pKwmW>fx+NqzXT_R1JY3AcK__0_Vt(DOTcE?PGC#?m8kyJ2G?>=
zsZdP7jje#4+9q$lK+zCE(T|V(rJ6QSVavo${X!d43drDFFLV(G_kk0~Y!+<(V(>=S
zGhI4mtA8@em;^Nv60YkJcElbP&IQO`=ZVbS86yrklw*j*tf0P7_P@z+(4kenbb^VF
zF3(4MB6egUo-c_-Jn(_K&8bf(q^@od;$AVZK;u`%1fC;Ie8s`|8u8e0Vbj^Z{<G)9
z?%64F_XO^L`Q>q`1|N3KOeF(2hVXFb8#}u`v4bO8fA|=uUCY)<iuIi<pmF19u}0x9
z_>KIX7|~S38rJ@a2j3k0i0701nFOhhrK4RHLJPUUtKEflzV<528Z((99JJ8S#dI|>
z7mgaR{2QP?uZkzjJL9$ZMf~`Ynw^0`o@Q!=)Gob6BlUMp_fz?rdK{TBC^|YiIR{8M
z3}{ZP^}Et@Ic%y6_0nu%;o->}i9RP4R!G}5FZu!<>Bj98dL2}OJ6VN<`DcH8>*-3A
zINQfS?}`aM*|1DD%LHj{1jp#Ga0kWt1-v=0;|RTp>ks#l%@@%NWrhHbu}*|5oz0Te
z=R5V8k|A~ny^NgPyd<dEn}M8Y)%19Y2Iby(4|34T^h<2|241;$5V62&AK0pZ=@@#M
zZ<XZKQ#;0B1<zi@%8t{2pKiD>y<BQ%eXHA;|9MCJd4hX~RY)ywD~oTgO#0#Pc-XlJ
z;s5oT2sI%)l<o^D+<AxSA3f8sBUu@?L_?oLA95DmM}m$(W{VmIRNx$zgNt$?d&y0P
zWSwm_gPfgzb7q=ig`^AxcFkdLnLFt)!L{9ckYO#Bq!A~S;w+PeQ7V-R6ooZMlBK8f
z^4=1@1IG6hDM124#5_5CmWs^InB@}}L>wpDb)C03urSOIB9~f^wDqi#aNp|6`_>xD
zT>g|4C3$SKal@HfP*KPPI6Vrfw#zo26GOKVOY*k0NhdhXhE!R#COJ_F&$%X>DiR5_
zxpEfa^O24Pv*cJ{9Sv@5-Adhta{O`Ek7Bm^)0CcL#Z;<g3~M)^BvhONJ7u=Ba1`k_
zeYVDkp6X1sf5S~P5#kBd?ck4*#ZxNsV=!ZK{AKB%dlc*VYJ0m?zY?{W66~54D~$oj
zJ+eO1I(t>_loPvOx&G?YKWB2!itjRDWnk;63$-{W8Hw2fj8<Io5-*>r>n*M6dxYX9
zBf*!oZcE10N}mRQWa;X%3(kKSfdKGI<xQcfH5~f$gfIBx7ze5Zh!wFy!2FGUw>c0B
zNjolkhGi~CSiiU1AK)Eog}j8Kv}U4E(N8RdoFCXIcF(ae7!J(LJJdLLPb7SGfeHPo
z$NVX(*EFiPFBlF6w0V2Hn3x?Ear_69Ui%lYf>T{4Vlb3J4KvxY>C5|<D3cIWQ7uy|
zrx-~9;Or;USVM)3sv`_{BY})&Y&10Drg9{io0}W_%F=aGYE6ZzpC4Xwc|qXfXLp6v
zuGM^vM`==~T6fbW)m1BQ!&TL|p=~A<*KpEupORttg-Fcjc?CU~+kFGmVetG{AW1JX
zpUzINXI=Rjg!CtH-t7P4?=c91N4fL6x}3Dm^v`~N!rLo{$H02~(WJ5dq;?qTQzH)^
zBES^<BGPwoa7N$gIJ3qB(U(;tk7bO;i0A6|=8fZXd2=dKHd6aiS$$9*iJ1OC)pWA3
zY1HBOz6Tbu+P*>hZZ+L|Zz&l@^qI26ni2n)g@T{QbM{Ynw^JC5RI?gPh`Y6Dwa9X%
zCh|w$N3WJ<DSmA+r9$s;g`44+z@&KNa?-CAol=^}t~N&B9DA-UPziV}y%stbwCKfi
z6+??U8^F^7qftt&p}%>y|MohU!we$XaSFpGQ^f&VgLobNKDI~v=%kV|p0sG7<dW<s
zSzWZ1H-TTz26C4v^aU0ZKf0X~1)nSkP0bfit%LB4pnf++d*Tgs9D;Rp&~S66X$Lox
zV12>DU3@Zoa@(itcq>=LX8;{-3!&sq-E6R;%z2y$s|}F+>vs2=2J~Li%YY;m7Ijp7
z-;Idn7MvZDXvVBqF&Q_gq{feS%L)ntWh<_LGDj*dmB0j#n6uvj0U_8N`z%pWV?MM`
zwLb)*=m=nH`Jtkjp8R5@HG!UOs8o^PTk|?8lxin@8bDI^@R*SEks9%tnb};7h_&eh
zDQxH9nXLRARYL9><QhLd&1N^ac1GS&_bu;w6~uLz&72@>K$UZH^L|ZKG<3^laeN0)
z+@Tv5Kj#9PTjX21yYvqSpOvPS5+dSDk}`$wB<1DR?HbK5hXarqQZ5;W(IY$|Z4jOn
zxT{|eX>nX#oKk2kx+K=A`?*z!5*}{{#Heqez&ya8VMtcMP`a;g3r3eG1K;#tvTjsv
zQ@t;n52nL%Y=mBvP7Ucwi3shUD#afiHQB*$WNLx-_>h??osKUcmG4WK`!)p^fRfT{
zW(>}t0UqHLwdoaO*KI^9b;_6Oc*V5Fc^tl!N?Xil2Sngfe(>C(XMmSA{t+A;Tyk)K
zt3Pyn)7m74kUu?zLC?x*Qp2mD%6GaoMHe8<zWiCK2RMaJtAGhTWeqz&AKw8m^~?nT
zy!EqLYaaVqh0tR^z#;K(X*$0Nz5%yZy`8^n2k60*kD_@1bSemXon~1BUE0ekooF;3
zz%ZBOvOL*eH%OlG)+3JUjPdmqp=aj@d8y<ShAnQ4F}oHg71c;FujETal>Io&zCV3`
zolau0pj)kUJbnM8#bmAo(x4mm85t9`G2nGbQ4QpVWK@d{Kp^>F@H$-q=sE7~hL)BV
z)wAB&U`;D=J+_^}PlQg!ZNC6q@pvjm^H(=#=K=t-10A3by(OW7!|((EaL7`*l{}!C
zWw00pXpA+h4?t1{0dl5CwbRMbLidI(36T}N!E83V`(e{{Sze=cY3Cm~73?Vl;1tu{
z4@KkaBuuG-RRYaye>~_ShP1Rmbv^VE%oWQ;={{*0f{Qoo3@2Kiwi6ho+z`=p42gJC
za#}AaHirTm0_EMA7hcn1V^6{2`-iK8mK?(z-5Oq}oI(oTgv$l=;*hw6LHK;}Hp0M1
zy(B2D6nCtk!weprl;~@88avnMhqW#*>-PP#pWEU-am@<Cf4ICjvWorQ;B41ghbh$O
z=|A{42?rueX@*7e>KB<&$l(feu3IR&(bCZs*X`(+E5Fjtv`HmGKV1ZVp=q+b_SN@M
znwpVzwHrL_$q`^c$2cBG#fO{b<6VzPB^h5`%}P)8LpsR9<$#{2tQz8VwW=oA^n_AS
zXrWDbfR|;CCt+t->BJxXW$#q9-CJRwgE)(|dFYz<aB>EcM_b*b9&YC_MA$_)U0okS
z&C_iL{UOC&x1x)-;Z9E(q|a-787tfMemd29n*NOf+TW2x+Q661dDnEOtY3oghXW|F
z-%(nnQ5<fS7#$&~wWu=xDIq_qM!-?k_Y3iK4ly}C{)GDSD^HXX=#xeP&^SgZD+W5c
zgnMX05n-Hr(r?@+q^gPb=!->LTmCNF16pG!Xk<!AiS-VCAady83oI3L@=>tqqPx>o
zN(vma(c`bzMg4gbm7I}{IB5?D_SUy&96J$lHj{aknU&G?W6kC>h+#duh2}|FoOmTy
zP~4jK#AvB0*ezPgfqx9`_Q&B1tw4B^(|d$NY;$Rb$5>Mdc~8b029_Qf5dyF05fEc)
zG2@-x>Y9Yi_S2o2zvo4Tdi;!yj7~TJJX=BXF`y#GHw0%O1CMZ4X`JEl0#{U8pr-es
zCW|?P>`U_HORe`iiv)<C)qLQ<zUsj+kzZ1d`-Vp-AON7{tOr=FEa%e8Mr%ZW^w<S{
z{D7D@(^OSWg0Fi038Ht71hPmi3;VGoY9k0-m7gIW!61KV)TOI~EPb~2CNnGn#SKdZ
zF!py1c!;{c0l2)|ZB-e1l{c%7%-ahW<)gj~gB~Bc!R~0`Y4a;}TB>I={#pcB%@&5Q
zArW)ws00F<fR@QSVh*U;CVD5<q^`PH>sg1B@00-o%ri?V)Up%fx2x9xNDfFJep0qA
z74DBYDNPJd{dXnwaTR(gJHotUN}L`B5wW;fZV)vi;6s(<^Z_zfU@LX!Ub;28((-~F
z48yO#sBe${LQ4Jugu=R@;*DPn&<j)*6T|8~PaND+&~q5z>b}o7whyi`FPTzYsv03`
z=0lf@FZOKSZZ!t_=0j>4kf?a8-!U1!sqnGYkt1&x`O3<2t@|wgiDX#|K@hckYNXsX
z2S8J5XT}ah2Cy(p6Q_^6)8&aDD%Q44mAAT|LuNDV*C_9^GBO;8_|Z@L`aT`rE}j)_
zbX84<^~A{m0*PY~091TZsn02IbbZZb*!EBCcmaoeLJnKi=<x8^BFX%i7$JhZb{ygV
zVY6JVk>f6g!1%N9$il<yZ2e)X!TYQLF_zjwcUFf;MQWTwd;L6vPESp@w?wvaO^@%n
zX$L|w!Nae;{vuD-7p$}AHsyKXS}nW`wX}&xYM^UT`3hda!h=^ywajHXm*qP;bN}lN
z{{GQF%<YxB{`Et|p+I_mM=U94%?GDj#M}cy<B{d{S{8UdVcnr?N?jr(oY}zYp6*D^
z7%yl9Jhv)h=7-;8NU@mX?nnh0!$`yiL<-Wfd}PTrOoz}pm!w2QyGU1iKm{CZknf!a
z&t6_z%d|lc1njR6AE{7ij#pb4#U*elm@4=%HoUJVx4oTHrDREagFbOc{Be@V75n1t
zhGb>stg;rEp<=PmJG%V)%6DL9IWS-)nr!ojz&8)0nUJpbv1NK<ZHdV1C@~u~b)|2@
zuaTEe9A{sIZ6y)|6F;NW=6APc0+-|n^3!?uGXuaiGeAwRLP2rluRL*jJ00>ewV@Q4
z=D*KeA*UZW`dnm`|9Qf@zCd8TN{6#5#smDkd@?+r_}eyaDGMYsvok<QMnPjkNJQyy
zKbOzqab<DO19E%)RtFM#?M6wJ(`JYAttbErG=eFd=>v#7=(M3M-R@47on!@HE&|0p
z<V-aCE80&N7CbHhi#Q8W-;=swHg;or6)}k@Y!b(Tw|OENM@Pr>Rp2(;^bHGr9C-nx
zn=O0Bgi?}{aayghXPcW>uj^#7eEH!BX^UNPZ0g_r{ih92bvw`6j~hoZ_g)XAhX3UL
zSVdFdGt5>qw!D4)0AXvrnS22K2+T3KTu+wjhMsmq{!@GX6IF4MOPwR8KM<4?{6GlD
z634;8VTs22f`H3L<<|z12V|Xvn|_>nt7x451rpJ-48NE~FM(b6dU`tluvED{R;wAT
zInx`g&OP34tp+m|I95BLd^FUbIIO_;=RbZY?ulcH*t~Sl5;eMwHLx<qz54^FD!9Vr
zr90j^M#j6yK<51wMNV6JRi9ILHw>GTXkhPtBa1H8MZ(U^jKOx5@QdGTQ{vGgQf{+t
zy5eFreUp>%WIIZRw{<Ok*h55#yE%3$QWai7MV1oZ)rbWycOR1sQIAgs=XuHG`w3bD
zC~~kr$xP(5sY|sbFhNhR?$1}jyp(-Qmdvew&)H4CbN11WbTq}i^_J<2+!<WN437EE
zfR-j-nnX?$Nq00(T`vUOxisHr+Xks_=|4*^=YG-B-lwbV$%U3`c8o7up~>2ppiwev
zp7c=(Tw--nt`GnQnflq%(lu2~IreDgk6Ay6YiEj}u&{DWFV!5~<k#jfr_y~0f2rTj
z@j-^|dqLl<2(6^1+3SlJ&pI<p9N!u~bfQ&C)p(=JHvYegXMdjXzm;q<`d)lw29mJe
z(mG>MryfE@05=aVQRvoZlLCpnt8AzNaM`|r2&xC0WvB0+w^o!Is?hKkB<5I@!V~bt
zg@w)u9|%yl8FRFRflAi>aGM?gUncmtxi#yyuWYcE@W2ovMWD2bLB9a*C@$w+_tGEX
z`5InduBUgeH-Ln0#JpC~rl0k1p=Lq$blS4n$n^!=e;mXA1-<_jYv>$jBU}0I&8Uw0
zOt^0Ds#=^yuyVM+@%T5xHs>%CGg=xmnE*+SMZa_Qj$fz9zS~=Alai7iSNoHMGCx%R
zxuNitaFv}Y8P=@d0XrIX{rh!2Z4bpO)mv&P?JE5<km?B$i2NCeC!1?;5-$7%Tdv3-
zazr;02fR`kiLjv~Gu!J&5g4>bzeXxJl7KTSnXCnEOg+B@te=m&k0W1s9+j1VI;<OE
zlTEt-Pi)K4zX`AxnCy!(Eglh%izF($W6uRJ2Kv?MaSa+9*6VO9a@-jJVP4v;W>Z7x
z#s%lqM&Iud7j3`t*eq0PU1`Ie_5h4Vr}wW!yL)@ez)))tG-<f9^!{|r=%qKWi4%h%
z-V8xO><wha>M?l3Xakc;S9ac=m-qD)kcue!^M?h^Q(!0N_%c8zGqLay5JaUr*has?
zy+9%n(rs+HCT9fQ3j-^zx@{QyG^$I&#38x(N89*=<*S-)(9%1^hbt_layt+H{!AzP
z`;=!{Es}j~-*B5%Q*E0xmR}SE9)kcF>SdHO%4@Z5oATPYIjZEemF&WbPLD4?yZweP
zCjZSZQKxwae0SixO#*kM`f5N2whwTAggD+;tZTxPi+%F|%#(HbZ!W(QxeN+sB0yZu
z{|HLFdfqjP4qY_`|DPc8M_Q!!p|~W*27_VFeBwvmWQ<yW9|UpOBrrcq!tz}}7h=-E
z;GAQkqii?qhg8!GY5iDxS3kOO#n}2sW57HLf%Cv7>N}x7(T0a~4v34)L7W(nWa(UP
z&j`UT)$Jhj-`=n#o~Co!NB@xA76G!HKq+56NpQHL{Us_5?j%3AePy?5$23qoQ}+rs
z*vN!vC^n(k7Re%>{Zui#wVQ>gR-F-?&(-MkO^!PSjFUumiot3;U?XBF`hA6QE_$`m
zvU1lk=%CkM%=0a{h5?SM8t<zj#z$sonw?gPj;)Ytj_~Q!K?yyQz_n)jn2WOG1(FwB
zVNF&lr-@C@8tMM5o^whmZ@0>Q$*%mTUt?rLp|5wiPha=6(wRu(@PoeNQp_`5E)#0&
z4*i873$2U%c}V%}Bvf)-6%R6Dp42Zs=H{AxWZB{G+aARGY>Bft%A{NJeW3EBAIUGl
zgKBZV!ig_bB(1y$=p;X05l+W4%@9r}C6%X@_x~-WvHwv`e}04*b0XIKPF@tIEWs!W
zPwxNzdhWNkoM{HmzzbxN(@Mfm%ud(#VuUCJl`)&Nv!xIFRA+&i{DEau!(45ftZSOn
zy!8z*mu>m&2ft|ZyB6#{b?0Hiv1WVR1E;h%vr!f;9AkjrzjrqnFa-6brKBpGcM+x-
z7+%Aq)BJilwYXNoP~xbE)MQ@t1Fo-#ROomZLCyMWK4+Yq64JDA-T|NIjm2Xc(0e4O
z^m~83PvDF3iU78`%O1*W{Ep_R(`u%F4+{$oN{`ky+pdlwf&V1*U1G`ux0=%Qfh5<|
zH5blWOc!CC3!EGrx_O;5!8h3hcES_&y)VVX;Uw!9!s>}5yDx|E*q7PWf;3!tDkiW0
z{4HDm4)jP#Ny)=;#GJe*5E9}1OX@p2`8@a1%!3X_{65!wf?Wa(cSC7XNM3|<Avyck
zfQpz#>YB^UQP+@^Okj+u4LdPnQf)%b!&THlu>0wVR*qVi;QHxKXhR*1<>rytZ4-bC
zqf%CqgLT6IKdv9uQ9K-V=V&Jkfrp8TN;-_h?k3CkUHC;ofi0AWFZ*-te^;)mQ9@Z{
z0(ko5I0iz8oF7@4FYBSPE?QxNJQ2-``r?Kv`LG$5fLUKX&=g?IS8dN%^lJ!C)c~$c
ziy!hWj#n%MGUc}0?`qd#8jyq2^-VF!{d>;Mm&aZhq(p;SVG_@`FO15-Fii2B**!7U
zfOybWPXSKAceL>IOw>NvYQVBY;aBnCrqa6(g;K***Xa6qsQkcb-sHG%VgD*;`dr%@
zs$zkgqjSj)l>1D|W)-8(Ii79~<c8fh&4$xy18T!_bz9bTzRuF)KbLd)G6q*L@FW`X
zQ(RsV@<Zn(RelVGJ5X+x-Rvlbzx=4!t(N`kl@p|D%Bxn+xQ#wRe34MOs{8ijHF{68
zN^XO^8q&VTm4eG=Eu;VDpX79fO|ae-tUi@RL7}Pnj>u;Dhm?}XC2ZdF2m9((tAwGU
zVf?q!dd=$w%tJEOpqj4cD$Q-~1l`Q6Aet4+C+k-RW-sr^;OAcdEQm68iM{7XPs?3?
zuSOC-zu!eAxqF^ZF6Da#u~A(c1~LqKiDiQ|dm|vIFVO5T{qV1H8F%S%*%%BSfS1ik
z0Z~PvcvxtI@$g-Nn{5UFT=1cxVL)k^RX`3S^|~i)y68Es&S-oszN5{om2J(|)zem%
z$nmy%?L1!}zd)_d%?(qpTA?6Z(W6a8iw%dtqUFh~KTt9Kj?eG#mGUtIY49s@k8thj
zVhfnCIL~MHMBq|cV?g0s8xH|s=gEQr(On^FndxFt$Kk`(Hd-q7d1aUu@kj}mo#=HF
zgWo0Z(sgwRV(qj|mg}13mgj<Tk~zLS27Cv!O8u-bIxR6MNZB25$v>aaiJwBo9F2@v
zPS@R4`4kPjW+-$GC)PWfFrQgeWA-fqxH#We#49xHS#feaJ{j9CRFY)zXUIG6zmZ`4
zsU!EE&bA%kKBJpQ>dCGX!^e}NP;-3w+VgXJCvkv1vqN)~EGV7R+GJZp0~N5|$;+@i
zl881Y1u?r{fw)(ic(c3TeNBt1KiBkh!vX!`fcybp2ty*8v5tHEJZ@+8u;aN;k&~52
zj=3?s^Km>q{YOx+;$fFGIw4&9fF9jEAryQl%z1f@Y3RlK*=j_wrPJf(gVjQ39-p0x
zGRt8umqPdZn}RgfepH*sx7L|LsgTe!nN+)k&5v9;yn4TNw<E7Tp7wi|Ui39iU9ErV
ziCgX;o@#fp#0T9JsH$p<F~l&;bqU8xqvc$~4Ms4QM3ySG!m(SL{7_X%d%HlDs*w$Y
zTKjf6@J}57KnAQ_Io!g~oXf@~48qCA_Bzl|j}*=3e~LI^ibJePqa7zgUmOcX%t9`=
z4h1!77&uObxeUkDZD*JKSg6^gKlgFq-{0LOfllKO68UX#mHvSoTGx7eW$gEFxdmQV
z8gaggF|-`zGQ_NOPl-8aj77OyV7wg`lZhrhXM}J1d3(@G3T57YBamf!KxOFi)rqfr
z+v8((){AIAwIHX?)0URHlCVFqO{!Ap!sM=rADte8^BuDEoLzQ3y-i7?Vv|G%vFBpN
zzEIv|dqyMC%o~r>JwkC(kRHX3gNsw~?6%0?n(*&Tc^|HRm*XgPKZW3mNFp}`<-5o#
zpm6;>iltZt<{@p*HC;<etorNit>dh!xtNG{xCS5mW^C+fl*I}zo^n2c@ehvv(9g{>
z-+L(#%32h@-oX90_$~g>BeK(87Ns}hwr`6iE?X6p{QdhA#g^zZ=iHaPN|K|iW))T}
zm8A@sN!n~j`<c~GUa@e8?-M<&qdKK(yj*RwmURR+Kt-v@4?g!SkFjD65hP$ryr#wa
zvZu}J)7?$b8A%}M%hz=?E0f?|L3w5<OZ=(le#1+7eM!3mE1`ra(dx@qu1K;0+EymF
zGl-pQBp=}6QOJE#pyCo8o%hxq9UWB;$0<~f6PvUJMji<#e^p32rMx>?Y+*gbdi@it
z5*s@9U7s=B9T6brHLXLesZLq|2=`1M)H5>38oBVcSWx2TS@*nPyZJ)>wlaAq{p|IA
z6YCuItYyh=PN&H#Sr?|T_SX$gk(EqS)le={axCnvY4T5*^P1S>%f)*?<|#01<HcC<
zL1qeBjvqX(<=<KsB+x=tcDde!?1nBa?U22|KE47{rKTk)E(ZU3x;$(|R-)LWdte13
zA<_5ejADrOGw@hv6a&g8sewJ$$=~JK0*(6(7Bi$Ch%p4b>NKSlp4e#WA^ui8QyM=W
zeLv0M4C?`f9*DoCJQ4=7_tPr;c7w<Jo~4=s(aQBt=Pf`j#{Kc<>gq+c$~h4h))z{J
z?4*~}PmY`Rz5++jTU`I@EBw1L`<?pJ?EoqZq!ixo7oH4UR<kHwHwds7K#m295*~2u
z4=YOiswoY9G=*i=s@Sui?FEYdWT!h}exz^l>{=#ZhStaMnWTW@sS;*F$K~|PeWzs^
zgEJ3Fj6kb>tvHq;^W<S!O^P;%jBMA06e1*J<LjwzN7P>T<&QnV-BosU>;<7t&_qFB
zr|uOZ^um}bD3&`17>dG!wl@mS6BueX*AiJEEL*CV<{;h^N@{w(aqGywy9YWxD!)Dq
z@xOAowi#AVq(5Gfue4YeMTK%$iA+yuR=YQa)nwhX)4v`OM0)#3h$W`n3}8W`o?oRA
z&5oTHA4ke<EBLkr_2ISTCgh8Fo)xQ8m`awOj!N^()I^^fDhV9Tl+770*<wD9jEqVa
zS;lV4?kAvDrWlk@EEaFjLXX>;xNlCN4;K=1sSmEL>kWbhg@Sv`@sv4kc8leazNV3T
zl)Js(&o|7qItEFvAZ+@YS8FyO8&n8f3q%wn(jzcRLkS`)grdq3#iVIGy`{mdh{ot_
zu=64NPkY_N7mNrA9=_dmCO7iVBw0LftmpHM)O(A(%e$zQq||Q^t?pRtjro~$a=g<$
z-P+3ie6H@;ECzhgRV}$@W(;rqmvVf4Lqb{hlCkJ?DfLA%1n^&t2Sag}SJpQ9*8RR;
z@+u??E4{RshM11uLH8X{2JpSyzQZR<`Wkd=@v*%Nw`m8(3JS!8Ae>TP6aBa$lzTpr
zsxbE0TRx<qX#s=O6@9-yu~qlUQ-0agaUM{1EM^2d@35y@ce-}1XN)VLT=VT3{8nG@
zWce~#Bi$F(eF3zq<*T&Cj~isSad4Jze)SV+#R;#r*h>@nUew;K1KbXN&Rv;A&pT8u
zPQj-GlnC3E-tyIIy~~@EcOSdNQhxJ0xPV?X((t--zYDOgo9!&j(?5CZ-;W77N6!~)
z0{5N=QzOBtHzJ2(@rZpU?gOR7^^ArVr%__Wk+<w|U!tl9d|j?U@oZ);28V2RFXP||
z)%?GS1owQ2nT!LzSA}EU9zy}rXaRCUWt#kCOSoRMn;%#Zj$~hGOQ#%j1<x8oY{Z1T
zeJ?+cAEyxceN&^7ebAX}zwdru%F=XLcg+HMd}5b%?)PB1ZAxo&+#yUPMSeE-Wfk9h
zZM!mHhRG`!^niqzq|AP)nGZ)VuVeh;E&7x2XOi9zId{5NHB$|q7f`X~TyIStxzOgz
z?*r+@j9WLdqvaVU67#->@J0^}yI@y9vC0s(tCYS8OhI=e$>{^h{ykh-85g_lL&|&l
zQ}lTodVV<bt0GDebJx)5u{V~x0SzsE-h@hMX)BWkvOmJT#j{@qMMf`3pps#>ONVxh
zk*W}la!UFWD+Ptm^(0IC^Vv_QD_t|Q>WAo6di2@q_{48aKVjbfYErVunU!EqzkX7Z
zm(SKEDFFr(-0`r!8JsyuGEls*0U7vTY&dB!K}K;&4f4Y((w$qTHwVK8CH=e{@n7eZ
zgyku?JKDpar&F#78<_-C-`=)*l$+$}3)WBCJE$LjnZa5+R;|f@G1pkGZs<TNqBtX+
z?uAag!*j)vfLPuK=ZK-$>6K{pfKocD<4;PjO*A4EDO~!lO`&5){yu};>nzzx+@p$#
zhezAd=X9Xa?%x>rxr15hFM4Z5`BdY{?fOp72l`u3V=kuq8x7~n()qN?ST=;Zu!F;0
zVZG7uJuxw2V31Gu1W)*kx?WuKs$jPsYOHX%K>N}S;l`0rrHOirADh~=F!IfSSkARk
z01X}xM|E+aA08i-0N1O}TR0UD+dOa5Y@NJAO*qg|#B>3F^l<t?4A7p!AUKesGq4(p
zF&&|UA~~$+6>OjeKOns(T2xX3pc-y%zp|TB2^nwVb2$jXh98bwlMx~#6K}w=r|1Pn
zRZx7>KdDoNtT~Fx13D72d|@#$DG_~&)&fqTu%WzC3*OqRh(D2G_gKMKt))jGjY_AW
zXV;rDjg;!rO*rad59m*<G3Lmf74=q}M<TLF`}pW1RavoEEF500K0ZE05pMGGG2h(c
z?6)K8Ww<dDrvSn=P(=Rwedsj}`=I{&Z~w8`VL;TLP7W0tn@Z0?xU}bDXfU@Ppr%`G
zbhdRW^+m&(4Hp#`&jJ##U4)#g3aWu%9tK~-Z@;F7pg;IGvQic%)QW(CYnC#r4PE@&
zx|sn3XJJc94Is@oY5M&IN%{3aGi|Y6N3cS!t<?is%>;>tW}+mBU#DoBbuM7$J~upe
zwu}tQ;(SQ3YN6^ltz+SpBD`1eht=Y~M8(*0l^0@C#>e_PQhu`j(Pi;fzPL6Od4hro
z=aNy*Qh~w7Q#$5T-ZOm~Y6eo|bn8_+ze_Z$%|)TOP|u0FS6*t`Q##>~D}rnyG=73l
z%bz?w$mguA&wqY>i6@VK;B%7|ENixoJTOQ2z1*OW%t(!}IZjM1f`T2?+AKo9)DMPq
zk$;fYLIliTpJXe#ef#Y$b0>wALt;sVMNP5FEj<IB8tJWZcZ)Fwi5e6<7x1gZU492R
zoTcleCG$NTG(foacWPG^<~76icbC!}E>BNKc0XNd)y<`B-6KEm^!ghs4`NDBjS%sd
z$7;rtsFhOH{BE}2Ddrb}S@=>c{0RY?X&?_g%8}~#bi0NJbY6O8x6WeaI!X8sMbVIa
z{Y3^yqqdDr^_SOs!US*`e7`c0LmX+Jyu6Ph>wQu$LwG$M!V^AQkKx*^in;vpE-8Ke
z0Rv#qlFLKmjO$YF_#QH)xH<DLHz;x0j+Fy2!M!4N(Zu5)02^op=6EY6xtzDi4ZTdb
zkk<fa|E~ox&ZQE8aj^N^Bl(;gH&Hf=g-#xy#zqnFa8)xV$MY&}tGgp%U?Og!e3@ZB
z3K|lB6=lbk9=7jx%pn)dXem(u>)9{CzUX`7b7v4e!K17Y)1JfgRza$Iy4rmY!vZ_Q
zz4UmfwU&cENH?Yzv+MDRlSof}RxZWf-@}yr3|LwsdEon9KK^F&4)PzUAR>*C^S=Lx
zhwbpw-BQ96ksbNDG*7X0h#5h!OKqQPsbQb0$<7r3^SK^dEGr$=*Z#)~fa8fxV|C+Y
zT3}Lv=<!S3Uh=k^Lv77uIKmSTF_WO6X+TP_^T%P^K*+pp66ajL5d92Kq;>D{imM;L
z@Ll8m7hO}zb|@1L*OuY)BJe-^VL4Rukx<aDIiK_L*c;Ey&!{D2$2;?Mc#;<sR-ysp
z+4+6NX+`O&sx@*Z*<7W8eSiK=T5)fVm`vk;U&N+hq3~9B2I>j4`x$`*<dZWjkqr?9
zoV^1JZ~Tzs8Hs2SY86@aes(#dZ5$7|z!$@9p3iKmva=XyE)Mj#_$Q3|VtZrzN@IeG
zy8Aql$Heo96kHzPf@JF1R0{(KOr#nkF~)^lN;L#x@;hajtBuCwxP|QmNN{B}+o%8m
z(%ASEdCP$rIK;ujX~qD*9hGTjpl4$$u|A%LCKXx`vwNvd<gp@hr%WWANe6@$3`nO3
zC`FG~8AmW9=E_Q_T1VMYk=PMydLi?}S@J$*$&pO9$E*BwJoVJY!w0(5GT%RB-*4kE
z;E_2Lk;S>+eb_C*r?}58MxV3Gl-q8gpJl!9*KXi%P+O#IPbKFsu)FHnT(a)7({g?O
zQm{WBaoRi?4E(1Y9!b7q;J&>swrh^=wy-yUfuCgx8&zY6w%IZs7vgCup0FO@<a-BR
z&^;~8!@@%HOB>!%(jE?0p`<QV6RlS_bx6i8KhvEiSHeHO=;Zp|<yORqJ1Tnp;NN9z
zxsZh2hDypq+5zf%l~oh&Wy=?vW({?+Ea(5c#Q%I(y8h7En>TYmqmO3_LdkiI7b>-%
z!1}=tamE7<<P0{teY~W+)pvi?K^d``@ra;6$uz1C<uc^kOcSc?@+41h&4&v8ZMRs=
zGTHWTYBz`K>aI66c8v@f?Ek9yt)D7p8kcOS<NKbr=ff228Qq>3qTs8Pkg?9!RVGAd
zX>IqoJ-Dxf_KYTiJ<{tg|EfC_y7s<iD&wtx`|2Y1v2AgLmp*KoIMwUh^XO^RYP)dA
zk%F6c#F`xyPe~?UalPrmDUlfCYim6Ifb72Y7x_xpZD$9QMxcX6J`8z#hIB?m7j`og
zD$6PO%;1X4CY`VnDxWSADd_jx#EZey=yDrDxeZf{E$+2D<GEgy>(%{OSi8-sLQi}O
zU;<ke?ms*viqzeSN^uN62v>qLBZG67E(Bo1Dzn*4W$s=Dw(1kyv~0c?r?L8px)n`K
z4hoq~GNK<jB>y4Ud>utnRd`{gq!tu3$Kg&^@TEp3hjRA1T-~fpd9Ss@qhD&3X~$aD
z<oMND6`2M(iu#O_lB%J&TdnVV$WZn60%0vT(gE0SUoG|ecD;8SHkyo5$PIcO&82A@
zc)G4=l=vE}&}&o>lLkWKj>M1X)EPz6@whw$5qk|uUQt6Yd(P_~e%(ciF`$wVygu1q
zSrQWHy5At#CaKvnWSUhFaBQeVs6Pe_8^zyW8VszfyzUng;Ng49YBp>Wf53=Lydrhd
z5;o(6Jra9Qr@iKrN5LbHecv0{@8LWzGVOV-qED`Nr6Qdc6!fpg`z4iN@+JDnR)l8p
z*}s<0dhhy)jy^jxQ=(;!M@?p@Q<>)EhY6G6_AxFqu9$V>&fXqrO0f+^I1ll`63dD6
z5|Utb;rpw7_+GK(hPH%9q3Jjk4ww=&?9zh}0t)Qh14Ahguf2}xL!>yk5VL*Fcutob
zB@q$Ow#+8J#o)pK83T1(?gf8Y3$=>fqU1DScvLV<_^$eV7D&{6ukUxNf6ArmTH%au
zv(c%b`x_T#k~YPU_!%<op>9}ENp2MZkf3F&3pj2gxa<>fT3PDEo9A??(WXDI6DdQe
znDV_XX@<i&c;BVz403boVQ2*rc|VZR>)f?WKq-0ueBlI{z*2b@2wZS-8gTBA52K|G
zPe#%vLtbj7^>_&tg-?4S;>>d%L1myWs(InF{3}_R;|GtiXVxvqtZpfOX&JnDR-XQ;
zRBl|3!l>V=gqjgQ<jP7hLEV2oS8tlp=%fo)=JaCrlc-0h6;TXF<a(2NP4MTm@C_VB
z)q@<I+O>MWU+Q!!tc~Ku-0GcLB&f^Q<~Id}SY*HTo-)5MNT9(!@X#$_jb8sCU7=J?
zpjL__!+GK6Z5ba+frQFoZvy8PnQQ7_d6Z&5H2(7`x0Qh7M~{#e%Gf`9N$%B0V(mxp
z)Rp_9^|*7{&I%f5dQz@WTRi_syZ)DK>VM^8gCf1XLG7AV246dXZN;D>vfDy4DiED!
zZLiT?iSMXNDgTZ*T8iJm$+lSD2ZVl^GC<}bgW5PzdkrOKSwtGG6{Du7JR<*F*9C*j
z!R5Zk={WXuGcV7<CDt@sL8w-}I=1r1b(w^xgaCT>^ykl#slb{8XcsTny~k!-(Mn!H
zfO>efR@}?6I^CBYq4ieSR!1lS5GN;?cU|Q|9O4KpA5s@yxLz~SDb>_?mF*M|dCB=A
z<!#pF^b7~xM0G;sbmn&@*=^c0)mu#pQTe<F5;bDIU_(oK^@rRQDhPT+rO^AN5_-8*
z&R@!9Is{HYk^G7OBFI7VMsnU@IfV6E@a4X4WhmH$hZ`qs+7hQ&?4yn?CVH}BH!%m<
zoK77!?bT&n;UAP`8b%BoYc-_HmFA)7{w5NW$fB0pz4LQ9(U2Ra$D1S5%$uF#V`|AV
zITH*jV7BZo9HrMWb>Rc4ED1#Rn@I!3PN_smEh5<8#3Oy`H5&|~FF4%wEtoA>{zuHv
zrHThCA=cn=uE`PHD_1uziGwmJHf$vPWY_0C_p{3lhxL3k<=t+C<M8V_^VZGQh2|zX
zd}*Wt`-P#Ysk`85H9h*$a9Gu}l%)r_s51%zX*H&eXwrx5hG>-fHSDbWtDEeztSogt
z#LfK<T`sG(fhKDkIkv0YvXavm5P4b(rQ-ULn9<~UxR+TSh-7h)yAIg3;ZgAMmn*<#
zWRq=^<JpFf7#Y8@tfK$7)26hQiy_U&vm-s<vp-%_nKw}pTpMRy=Yp6)uQERP7I;e0
zlGkPkru4}BJ&$H-QgB3mR}F62%VZ5Znkt3nY#(+VGkM2INh=M&9@}v!gnlY0d{w`t
zL8CCm4WIV4drK}O^>M>z@^y!Nf<eXkTN3@9KbiV}uTT^o8XjED(d8RFf<(|s&<JZ~
zK=F`!Uaz(Vqc~i5TNP5SNcuwvL7VY4AtyH0a1ctCI5G-81?}QOCwShLLV-}KHCy7_
z>#ZJ$J-VkS)nZsN<`_?w0c^QVuj3AVrUnmV?w)M==_d&DK;dkc2n&hGiAE!TD7SL}
zTwlS!kDHsPU5*mh`~5xMUK0BedeB_KaoUgObD#(=M=_u<408-Sb#_ESV_|kIm7U|*
z@XN$Hn%*lkw=Jj=n+RV}tP4EC|IeQ@C`x=kp)bAJqw4nSpqP_U|4VzyYla@9Z{$jt
zl+b4v@7?2e)R=#Vq5rwA|8<8`kv_RTP4YvJfBg6{AZVK+^~%M~EoD4F{s)tAsWbz#
zQnn*{M78Jh?V<rh_<m)|e7mdl(Q-qH?ETSvWC{a2pW+<;1StWJ%P%LlQx+<BD;z+4
zRvs>-FJD}lmXlc26qjnNI5)R1T=sAR69`+qM@5=}IXO>h>OK90G54M##X>mKhye_i
z?6;h`O>9ug)fYD}f2h_TdB0k$)W4Y9E=_jaBs+d}dC9%KMxj~e580qG`0yMYl-N+=
zKY)#oQ`EFWm(&(H=rr79`V+yZvD&`%SqklnJS?PEIS=^+bRxn9X|<YL4`;LkjBDay
zYZcAZLLM%*7L{A<=!30J@Y0WP#xVTRS8t|Pk)Tak`<ro&j&{U=*@J2#J0T_pp25@N
zx1Cg_Ks&pkS9KcbG|%JZhG<0|!kX#)fB;hMo(+d=|BJkd#l=X0rwf$zH?|X*rk<@u
zz~>)W@l{bPbAt{xEu!l533W_s6nuNoAdIzW1w@X?%AX7##@k_s^X9^~mWt(!D^?Fl
zQy4?HT0@k%RSPF=cO+zz3zL#$rH<5AjrE}p<+IXNQW@x}_~;~M+pkC)+K5)TO{>nf
z`lW7e;S09wH=qg~yMn{-k|%TQ!^dL<tMgaKVWtuARAt3Ntn5u?6_gFSUx=#4%I8->
z%z;re1y8>yb8vg^*-K=w!^4^7Q8j6j2qqDvH@J<iK7_5jy$MhZN|#}$;c=car(GCs
zTTnWZ4Etx9Syw_Q8qC?x-<?8!wz(d<Kb6TvBrqx}FA5FKP)mM%g+iUIn1RVtt)k=O
zQ!K5+tJzZPZU|JeY%6V)G}WM{o1+Ii1;?0>)|St{?D*a0?Ib6z21tL!9Wx)S?SS?3
z*=^ti{UZ@*W&3AW$*)6q&8JK@?mMdjLB5f>2CVHuzsZLOJsFwt{F#DhREkN%KKwIx
zLXU53yIANE<}x@}D@co_RH6RpUDm0FFk7tVvjgn)U~=hfy0V|f6BmC|4TG}#`ixe3
z1oapS@YWjf+8!SjzuK^2>_$8*H}wgtlVj|gE4{Q6nXLK@uhX8xT@PM^VYwqYxnAd<
z1={ERDlJz1kt364uJ9Y!D%vG~r;tlWPU#Pp>;+_Nrao`||9W5@JV+djZZlN1GiiMr
z@JDCnGo<0@H9l63(mUP3=g+NQQy(u$(2UAdjTX1j|JSz5UwPHn|E-fqAW?ked`q>F
z9E#zvS^6p)ra7KM4^wE`sff#B5~i5`EJ1VelUi_7(u~jNsS)N7XBQ|2FbeY-jBp&x
z%fbTrbRd<X^a+1TgTpYBko-)c-DmxzCX&m<`Q>THw1|bCar(#pk!6`YyogQOvT}<B
z*=?gzSFNwh36P<`S--*KvRx`Y8ny3-!QftU12ASM3`Q?QFOJH%yvLl39G}!`94?VL
zcC`qOduLQ>%_b@D5UbSsA={49(s|_7?E?_G!8aY(R<Sf<+wPY!_+_2`kUSTlKS{oY
zZe?Ek>(>X*mrKW+x95=58$}V70WP}zwd$;`4pknVM=<fNbdE5(Kx+bg#S*`5E6)bo
zW_M7Sup9y6UU|P&nw?IvPGi_?L}wR2&05Z_C>Z-YTsS-i&D_{u=~aX@>Ssx601u?>
zsL(Ulx@Us9+#@(cH_WnJD_oia^T}F#p;W0<ZTq^;SmLVKicD}*=$Gn#@Yok@K-Ib7
zz2gfD&-Qud$On1YHI`mRVH&kUN7ascEmz238UBtJJ!+Dku|}v|!MIXbSi)7$S+FoK
z9U(!%w9>f*a~8oBSSjyOH=QrHy}42096yII4PNB9Y%>%kTYi3U9QO(Lr`>J{4RsXx
zc%{=6AwewXH&w>xWhjRab+=Me#!}Q5b2mk<<Hwz?TOEa%GZal$nN2BeNgy!h<P4{(
zs<OVoGDemboTjZF<bF#rDfWPy1e#Ga^Ecd1TPV$veBL|Lw)9Mi2d^^K4hJ}iT9t~%
zgV7ED7T++Ce)?=QYb|9+*w*?ex!urV0PT@VOUrvi(ff5<M_oOJ7<nJI-idiD9Z`BR
z&FC{+r9*&q9lZ`>n7Q&yJ^sCTQITl^C@MUtsHiCDxSz$5Ea2F7Z6_BWZC}V6l6o2N
z-Od~c8o2IjVd7048+i3GG~-ByHfj=`@j$`N#`u7!%bJ{m{&#?X1&3IYIl%_B!18rb
z%rbe&hS6F~vs&LQK8GzW8};QTx*@rtY=MgZQF4C;XF&Zl=waz%GdPY_<~nXRZTCLK
zlIZ+DlA`~<IRAX|ABXoJkHBaK3^d9zA#cs7_<)hHF4aCZG#fX7*b-|-pT7`+hMm=f
zoXhsVsYEY~#jjI!Y1Bv^$NuOAoyln6cGnr>psrqhr8<M!SX4Bqp20xFl<;;OAYD5z
ztWMg%Bp5qIPMBYNV1~ZY+NR1sG`{}Exmh!>&+VR$sS&RfD_<lZC^1?{zWsS%rY$i%
zDb<vijs0{f@l!wUh?5sccz$CLo*)a}Dp`CR;$@0m=G4tqzmts-jdA=q!5{izl5-qn
z9!6YDQ}mVUoMziuGAy1BX7;8>2We?N2+-%bjaR5>YN|?{RU?89?K0@Jv)mXLd9(s*
z{hh%~)D;xSJdjqwZuN?KpRYR?>7iRS+jVe~bYqWIwbZ%=<`T7UAJw9dVXkXBy-TEk
zQm?<3KM>NDf}eS1ppNfj@<xQL0`$92TfBvB#YQ%NO2o@WFwa+01glmeznfBtEATuH
zhBK}#G?`Rdk*Bzyke|NE`M9^W<8}wCJ}(TxCLluZdIq~&`x0LQ4F$JS3a+m?^tu-z
zQtY6gLJWPEX>hmw+AKu&J7Vz2Ih9(5@vfv^U%AWhU0GP777G_ve(lc>Ip&`C&^W%{
ze~i(vE~aFHg3zM8!NN$^tk5>pH}j8wz&|v8(5tCUND~c;&3>@4nVy&=U8Y!gSodJ4
zavJUyC(HbI@7Q4!g{yn8mS*VC(;9SJn~OfqJm>6Cc-<~FXy9k-a~owk{+3dKU20vT
z)!>_W%ls2<QFhGXG>EOb&9K~iAWYw=sXm(YR15)+qj0@puY!ifhT{m5r{0Jl8Dz&f
zYH&5UnomFD>)}<7oM=oi(7+UzZ}?-x?c$HH)k0<3XoSUBj_Cgt+y5U9?7zZ)wJJCR
z?KZ31r?3%Xf&PGi0Fy95#a~M5s`AoGmKY*!P>=}-l41*Uh)NsPdc5GXZf9#{`9Rg#
z6!E<wvaG!jH>#ya$?#TJIe)DB7P(x-GtkphyxH>7o$aY^ae(_sXgzdY;uvd!968lc
z%Mw^^l}!*w)3d{;y}r1*7j#E#yzuz5zKnahobSZWItOQ~GoO`NrBF?U3bNBcQV_Oa
zDDpU0s8f5*-`(+2P{<8p(Gp)ZvStEg6ZxS;xSuH!xZnZ`9ldt8qhLY6theBPgOy5n
z)oR}elp~-4?0r;kbD>7e2~Q<u_K`OMsg#sSurxh%)#GDu@?W{XB(8psA=YF@OR@4T
z!vHk}#afWd@xD2^K}L($4#GMOxqxx_Wdt2JcQl~!jkEh*{7RZ!L|g8hw_6}_yC6AD
zt6^KzvhlP~D0M;!v@EGxzk{dfhdQ;83h7wG4iIQcNHjMY(bv>(5-iDgEwASEhujtt
z`D&KA_Y_|KHjkni+S(E}x{Y&*eCy&vphc$ol;i|poFAUSF-FF;ZSkR!2{PI?>x|7C
z>5x~dv=rln)$oC(R@@%J%13o}#uBOwSZUai$<gROZ?bZ2y{BWC-zD|YRu35L3w%Rz
z&X4X2*_iv#|1L~+{l7nw8}lD7Z(#oM9Dd;>dh?uRo!t{Ce_1qGEYN(wQu6lhj5>ZF
zpx3QduyWMd>32&?!G>9cLd2#>3wW9Mx2)u!D(An_`~RzM@0}0&PR)ABvgD+pLH4Mk
z&@Ls%o}lLK6I}@RO5yPhdxVDgd6|^o_;IFJ2rM2Qb_NFra$eJi7uZO)0{a-}?-O{e
zQmnb6ZVw2rEk}RDG#h-w+{2@U5*upHn@BRL(wF-J_{3WR%5{p#DPZN&_vP|SBH#6Z
z;J9yoJW>y-T4g&zcbc*SLE_l-#p>NK<K7wQ@VF+K2wmn?n@j?VGpw%EoW6i~QSu7T
zc5Wa&GDSnTy8aZ{2UVDd9V25nlQ5O^!2y6&gfpO{GvSy3Y<+DQme%gK;2|tJO=9TS
zp>xGfV!x|V%8GRxCnp|u3uGf@qNBcVGf2q|wM=Bxn*(L2Ft7I=q(<ub=`PEiWE!YB
z@drz@S-$TTXQ(-NY!*UDd>7xFEn#3_*o=qZ>Gf1ls9;*`H&x|d+ICZp3$5HuS2lXy
zf9x%^Iu>HqSc&xr3a7M~14nKq0!W1mSx1L9-PL}TxO<gJuT^S^Cc6rgKxavtw##K;
zms9Urc?DXnk3Fp4O!01NwYr^PTgSWS;p|TpsfdZi@gWM`2sl$r76SdhC==z(O?JaB
zucpOxttQV5ObwLG&83{$kFPa#GTsaf?^EE8s~g}P^UbigVt)9n)YM+8@ls)?r^!ur
z1abgqOkIjz^=O`(yBM_C<%PzU(`<`peHlT@?t{-20mFbbzP%GIwsmm8RI$z$#`Z>$
z$>q3EJ{@dwCbuD)MamPoIs3<o9c_<*;rMeQK~X||1f_VXJZ>-^<pbSjTv7dL2(ac?
zbX?sbf34N!$-dS9|Mvv`*XhIx=^ZrwqWXUrJIkoL)+Jph1P@Mv1$WorZo%C>1PJc#
z8r+=#3xd15y9al7cUd^xnbUo4@9wd8-<z@iAYs6obADCzR@M91Yg<`;5oI-(ao8Uh
z9Okp{6MrKEEKI;B1{&3;vav=te-=Z%0D}_=whv~0-S7q1TU(RvAFnjewIol43zQPu
zbf?RyU#~Uo38cW><SU6;pl8S(4K0G(CbH6hj@Wz{KKq%fYdYT|ojcrP*WHhF96g94
zsE%)QWT+xi?EN4aRxEDX7|K0Kgh&_iT|Nx_zD{;j(XxQ?<{Iu}ZozDNO+&5tm(Y!7
z7()m9Scj-z^%A{i<~K;zYoyf*)_2=UC5<Mob;{YSL1rSEPUY-ZHEjsn9s1p6GsY=B
zo*q1`-|Tfkg>L7CN>r2Vq&*pBjd>{&yq;YP3*hBXGtf`jI5Tr<#f)t>xwc)B<>oEa
z*X1%n1qGCVuXZ*VoAGOhDE24}0S*OTI7ZJm{`R2_yYqD>na(o3H6%X{Ytq*g<eI9-
zYFGP5!yPLfEi;+dHT#UIRO`{oJ6tXc4n4u2wa($Dh$<)=)wAcV@9GDUBWsQ<t+`KB
zKhsR3KWNp3Gt-d$yzYPvYkB{hgAklw<$j8tm8I!&tK(mLcgibP<Kjrdp&K9T1hn6K
zy?WY!{S|V-7+h%P($+Qjn^vE*GI||NWjA%PNG!PK)?ta+S?V)DwH>a@tMdeA3`sZe
zWhrFSraVvw2L>kMrwvls2zf)a&w}mcURSh~`hAI=VW1!On~Nu0tgQH`pl&dJf70+E
z@cB>%J8`E|!8&*@1YLVGjZy0MPVaGz?5BZi&)Dy%7M)fjv!#R5-Cn0D#Nm*!LTs}5
zBt2lQ|D)5{s?MWT|1B_Z$g6@H^gm9(|91cV)7Na?{@Dn<YOvkf2R2_RP}2PU`~u7h
zvPnAw0s_W^QAsF2Pgi(w41A!F#R>`S5TH9dpjB1}%oC^wsGt?`;z2R0b?&!TA8TP#
zSy`g5Gi3`C5o>KW5de1+l>N^p9~|4fYK~VrJ7e%&oY@-PT!ub>h>{AGhAVi`?>k$R
zmUOHYZYTPDT3AnJiV108{YuzsUfMS|`lty;{-&Od5f}msjQvpZb5DKKhH~XpR<s}-
z0j6QmfeyZ6pf8HonO0yOE%oBSfGi8j!jo{9>Exq*p~5f{qzA;I*w1P4<$4{dwX5B^
z?OlDs7`C(J)Ik30EY<J$8lRsXsi_$Y0-OlkXd>JnEG=8ke`K+PhqZ>m;|2YBKh@fE
zObb@|0F_*`WgqV%ohKOQV4xpZ*~<g^&*QK@g#CvnH|*a{2kY0|I{XAyv{80f-JO}~
zUY|Wvb5v+COB2ISXG=dK;xFq+>t2j6)?zL=GG;JWN#+hmd$obJ%YRnIQ7D<b`ieBR
z0`?-;E6YiRdi*3YjcVmiIq?=ZnO_M;o==fep!{~D_**1Pwfary2@A8*vGw@Hh7;S0
zcT&ZW@OjFNeAN-Es#tf7qlMl<AoTpMsi7SjrWrpxATgiC8tVkscMigeKCac$fId)R
zQSVOW^NYT`K>Ly6T%X&JP#Q5Lze0Pm7)aJWFqS(oj=HS!TwT*GazbnW(RT_*EOhsT
zrmDX`m!+#cKRV`2WJeq>a*WxQbqa_8t^=%?i|IVp9|xW1PF+$@3eQmPHeITWj^@rL
zLv=kikZ{<`_*pHmsQKr`>MZs~T~2P1m!2IsR||^Q#>ApPSqA-xMPtbg7mL&Gti(=1
zNR`(;TU#~sd@qI|ppba=suK_eRtob?I(*D)K7)@uZxIvv<pHmjL_MW`LCMe!_Q|oa
zRD4&%&j*j=T*bZvlSXC`a=aJZ=REpo2nYe@X`jrzUwK};q6o~ppK0{z5<u)8?NKI7
zLqEfQw{-pvG&S<Z)h+9#2@S{D7dtHr)XIaRVWzg*`|oBP|5Kj$hZMG90Cqlcsbv6f
z$$WKcN{RB`F@`|Pt5~%Ztp`_0Xc`zIEU?|`^9$G@i5KtQ2OM300q7nHkm`w{vGG)!
z=cDo@X}~49_*8{bzAT(d^S3xVSw;v!)QJ7Yh2jzjRE(8yU@Ml?$v5C>Sq2&{Wd?p`
z0P>f~6U*zbO1U=C8^{fL)Nn~DNs~^B@_9=p1{(jm=ll1*JST+Y9~>HOOP(?n`x>XN
z`{*!b@oTt!Br#5xY825L01Jy+9B+nu-LO<KwwDLGKXdXU&>Ak=+2!N+RabVOVl<SK
z<><>!cV|lSFufkAS1t}eYs}_&vb$|hWf<WGTo^;M%^YTq0mJkJf(h6;`|KEJA99+Q
zEBSFr8)bWI;dfAv^9f$BXk}dPl@6A6pevDkV74t$>J-|`Qj(Im1)(qq)-xkHS!Gd3
z^}LJ%C5IUKUP$S5TLjTSf{9SR00_EYJXgM8=V!gXqDIo4=lypauAKa9@58}VI07T<
zHr60uU_37tW8+q8%H*=NGq%L(DEf_16aCMJ-wFmwap=lT<lV*@&uMuw?y)#<RTKkb
z46QEt7ONiZdHKev4&270c84U&cE7ga?XL4Pc*vumqO)!e`@wxkLZ*t7oS}do4(Wul
zb~EeUVZhAk(Qx5z(k$z#b{2Mb*8VDtEW;L!&+WhnO5OERk!UB5G(dUqm9hWjf)ra#
zymqAGn!shNvRJqKxZ><R3GmX%-r^b_rL0L$jH2FQe*CCK7NlifT;(c%^nCirzaJUG
zK6C|-Mg7D4*_CrE)yR%OtxiYFYfi^lc}x#zh0?KWHkuWy+jdtFz^qNL>^8Q3|BciH
zv{ApIY5NdnH^ZwOZ(RBZs+F#if6Og)j7><8@_xE!(BUr#Yan;XObxJO;j5@No;ujo
z(oL{^ay@H3`_~%#MI(5T?Rt-ZAk=)2*)j{p<K_95kc>3#%XCj7!>bs0qD%+<;I-=t
z{otMoecLvNU+p@<?2rSXy6Wu&pw;l&iCEt&JX_3Hh<V6)m&P(b9amEn7==;B@g&?m
zc)#XnF{j;LnLTWVi84o?KM3lOy$}YyJ`8KwJznp@p7-7M^;Y=BLM*yi@ZLloO0{M`
zPO>k(iZzNhestQ|Ul$QhMNaa1jJ;KqTy2Cuq6`wVLQYh$H5JV8RJ(Uex_s1$NceZ5
zsRYRb(Osx48_x^ahT(4?pURLyH7e8cF^W+bE9i>fXlVmV<|Y-tu(S`_El=+~Co?V0
zj<HZ)uwCeX6CwZMDF<{)-zMKbizoz~b^$-xEU6R6*kbW-<c+?6pKNkG+P^lH>VgX%
z0&IWd<gsw2H#Rn^a6V)w{5oMZx1brXHJ$p>I0-lk)&g6BZ+{4=1Q*@}5VMq&)QG5H
zUMLFdrVxp2w#YNg1?}2uP`(JPxbzqGLgs!&NlMs(7rM$vj>rkG&R0(Sectb!ky|od
zJ#BvnDMN)b3Wg11`&6yu0|&FKnm~58RcDo{$_qU}E<n6mbH{zPTXP-Dutv`COMS(*
zgHb}co3DssU9h#321BuuF!L76Ny}Bsuhy_1Y@sg5q6ZQ&0J-?LJVA)K&xQ<`xc9xk
zl@K*;p$+Q9?Ag61Xch23b61^4t_eLly%|0@fqOo9c^x4~InXDRr|E9vaDRe5QEyc?
zno&1t%lJL@5LsuzDZm?0WnZj1fzzlW7ankiBq;5<$G@iF)s{PX*Prnu?QOj(CU0~D
zH1Zz5l%KyBI(Yj_AT8PCUZ<?@;-a5lNmjOvl)sowSwnQ=nqYLobIWgFp%7oDjjUi4
zEu*}#uK+g8a<RqLUNlwp#IAs1&2diavnUGF<IPDXD(8$>??r{l1oUL_Y|-dx<1Jp(
zR^+GsIxUz%w}Na6yWL%k;OADgMlD1FuWgctc4O<0G+aHQYc9sF(#hQ5rn=HZD7$L9
z?z)`3?-B_bxS!-xMK!U>`6<y;RjB;God(B@O--wv<(27Z4P6`zrkRkk0(&WRy4I7R
z7aj<~*=6NMcoojk)clMT+46R$^1QlI#^0l(*+KX(;<3L3r&(WLrf-!rH3t!C&s@OA
zJCIQ4#u<$&OG#$Zgj($vyA}`%vx!tZDkj6o_cAzQ1K%tjzh8KM9ab${CZ}LqZ}1~-
z;cea;t>2HBJIe(spH!6YVTZ?M&F9zPGwOn1VItfdQ>{90Z{iitG4AUNv8W+nNUU({
z&C*-6^CUg`I+b*g%Vqm#Gi3safiJwzjeZZdw*6ErQ{vOD(OUxi!9d&7Wavt7((@K6
zA@0L?Ij=pv9$qIXidw0kY?5#+3hx%p^Sra$&hO3T2fpC51$z<vx!wL|zS5{{Bx!Hy
zRDv^T<gK-P_dSWt>g>D9_Fo5IH7mvxJ(u<^gMr6gm_9OaZ7~D<^i|h_Wu+?Qljtn_
z^rN{H+YY8CXseFefH`k9kyay1&hF2SI-q?5Y!H+cOVR|mO?wI3x49Yfa<cTN%E!l&
zz&O*;nhA`UvE3C?*7CJd)<}e=?&}-CKXLrRvR%PepMD3#Z438hP=^sh4H`n-GAiQ#
z{mf^AQ3i&Gi(5y{f9<&eN>~Yw!7du&<jP9=)6*016)6<zG)fW@f51SUP8np0*e_VH
z0SyDA1Tefyl44_tKOBTZDr?=8%{~DJe2oWyBWbH4%Ji3vB#SMxifpR2vR@q)(6M(<
zn-$<#(j}m*yF^0x<@xC~r-ns>b$)4QDL%iPpY>#1I5uR<`9(P7(W3b6+_b7+#d3p=
zT4=bXOc12TV-L}ip`f{EmY4F8d4WP0I6fm?G#?##BE-Kr2cm}cb#cgi8koTB2~ZFb
zsURf=&aPM_JjtxCt}IE!!Tx@wf=0Gq1qF<fva%%8LDbj1bz;`Yzr@I~;<@^HV+6Rt
zbFBn-0GMHTjryzaS^?mE3Y)t&wBh#aPO!9AENZqY1t2X?Tx<z#l%Zi@U{KDu3bFxn
zCncnIAWkLrkF_+FoT@qkIF^&7Leb`_us_z_{4%`*f$UXQzN!^#HcOO*bMQ@oRdghS
zD*vv5HRW_WV4Ol9GV}W4E`XNx+p}!9roFwshk|lIP5PRHHp<aFM@I__3g%Ja&z=zO
zZ5;eWvoirv^rEGPB_2#&pOQjbadFsk8!&j#YuyFMWXh;ZouH;%PCi6%0Oq&}!xnJu
zZTzhNLZ?cBbMTnLc1;6+g_PYo*nF^~0-%YH`}W#CiRvu5!hZw19&*t~GTYNqIBA%_
zxup-opqnIjAtfW505(*te<xi1NAIo(RldFW0masX5%tTD;4S}|)}n8gf&7AGLao@O
zyLXOjN)Ay9iua9->~WItSCo`R>HFE?qxg%`qxfFipJoH#tCT2NZKLD^M}MVN_ZLm#
zJ?a|43fR0Y?$x3GV?&|?^qlt<9W`>j00SMehWV8L*L~}YBerfv%oh|8AfHagH+Kix
zfj%LY|3tbiwUVDr_^ZKP^+dD~0<mbwg-G+$cUh0NWP|fd!~)eT`E2?aDOj~)F10Fu
zpXPc7&cx!NCEIGsu9pt4#zo5`zuoPl9dYlok=&5iB=!9D4oEyoA8I4jXu!AQa+r(t
z%YT~EIikKLP}BR#WX2|Vb01NwWcpZG$`*vZgDFF>dR<8C?J`Kpm7voY!XAlqWAbWE
zCjt4{UZ1-4W(PafGa2*xbR`u?kvZue3-du}#kjcRlmG6MG7@G|@Q{ebfIe<${Fou*
zV?X8zkhOT!DXB8_+=N#(Wu`)pTQdY%&5*CEh5OJ!Cf`|vBA{o;T&#ci5B>3fDT<SD
ze2XLQjvWf$?!I98E((2}&%rDJ+JG~MFG0?rEK3?pmEzMK#X|isr|W%hOl9+iN4C<O
z6b88>Rh=?J0^h=``e^^`Y)=ZBTwn_4v!ew&4VjvnYW@Vw(J{0$P^y#gVq#)Wg=4cE
z9;>^4{Z~akO$J#7&tiIvOhV0?(-RJfbMrhdd4HHLIXtRV{Rw<fO^pY0p`jrp1Q7@N
zi1i<HRyHAkcN~3YUu)k)2%fiiuCcMR^{?$Tsa~Pq8Wkmj6AKZNQlSHaD48VO2syy8
z)TFDRn-dr?IbfGFn>K~TTWN{LP1i1{X^8IWZN57rq!1;c9pIs;AL#8Bjjdz)g=%<G
zcN>wPwd`Sc1I~H6mbSC8`|ykbxWW>A{B9WI9~LL=4*3wm)<e4a1R>Z^CWhbX8=v41
zx|vjxc;e)GOfM<LA(;CuH+^%NC-is`BpDhiF`%d9_6^My{`ERw>%%0qDmcl0H|_cg
z9uWgQE^M$|F!`Fh$|Ay|{C7Z%a&nv$UyOdd{UI%$PSp@Fdc%ZRpk5-NNPd`zktFYu
z<P>jv&9Rf41Lt?=%K3$Yo!wWVkhXvOQjuw+?qK|_gUf*#H9C#f*T;`YG0)Az7dia|
zaWCKKV``k7BNLY@Zy!agR)VeY4EcXxFI2U<Maq64JH*#}jFJv=W~E~o9!z>(#}EDg
zhz);|#4=gn7V~gCy)CvYK7w<cF-vvvb<O>xyR5oa=HXEkC37;ZOx;yG#eJ)Z4XFu?
zVd%|wJHI^LD=R80rkEZ7XZKvbA6329>?7d0FsJ|&))|f-H9S23>YbEnL#Ao-P(E4^
zv$pJ#OY&D{q-ie~&MzeV1UE)VhQUMLv*|@=Ru3+$%s~bu;~P){YaBz;eAHJYi-?5m
zXM_^5vNFq}z6vL>zlizRt(KGR?Cl4E0yU6O95DKgO)V$X+{2XIWP$CJNUeXrY0vh<
z*{XO2W}kpnz_W>vci512Rlif2a$v&Bi*NgIOO%Z2!0%T3%e`p|Fm1U<c{aAPruOiQ
z(5v%o`l55`GygW(Sw!6Pd+2&XPwtre1}TUhGvPA&537X{q>4!xA7kQDX=>Z;!#fJ)
zQ8K5fSWhW`I9iYmPmm8R?|})vOlR@3f;#3+{M$R;<kbn+rg~CqfYBH0b1jg2%+<Tw
zbd0$6Ml|9spK6y#M*$W<k{4j5_}Afqf6Uv<`2Jj{o0F?zr!YWWA^;Yqb2XO;>Mez9
z4`)Pjt1gY4eib<|oftlO{e0{*m^s{>M%8U=)$CBoLW{4_S>dJLFg=V-ahv_@ujGj2
z`)6JLT;Je7XE&-)?f|<{I0Cl+Xm|N8ie?gW|FBb%i*XkJoZDlay^o(gur%WzdRYZ)
zl>DTns!1C>CK4%Rq^_Y+C~pjgL)+f5fH$3$=@EuhXbi84Lm#O3GN6-QZC6mW{Xlcg
z5gam0J;IwR3FG||@l8xujvjQX_*R3OHOYCMbf8x}Da73a=GRXIKZioXN57G@8vSA%
z=v-XM%#J(-<wI3kl|(tK6}p71cRxko0K!cRE$sNeY&GXpQQ|L_-xU2;cvt@MWIE2P
zs5A3>M4>n(pTBgv=L2qIa>S?5sZqq0f`2u(b4E&XShn%E<$h>z#wYz0yuroWKOTMl
zK-d>xcXlq%8Mv9o1CMTK+8=j7&f)Vp;-UZy&r(fB)WX59XBFhFoMWMOvqkjK#n$N)
zCYhSV9l{LSF9uWpf60~|Ga&-4fxrd>sao0S$zCbF7$G_Nm%d1RR!STl_^)Q!V^Wnm
z%P{|R#?Onrp&nrL4CdgIXH_NIyaWEtTUS)&3K2De{Idyna8$KpY=702)Vuk?TIxpf
zFrjn~eJmy$yucQ3dT^WFls8ITQg3U;FcqZa(<85-WQb}kEVp>wzicmI&EMhV;Do=d
z!4h`mEfo;K4al<BsMLR?UIMkXNocR{5ca97ev6F3Vt**lVg2Oz4o{;pQqt}Uk#%Gd
zsuJfUC8)?XVGSr=B*n!uySju_lxg%`TsQ#b`7rhd4_Kyp1cLuK*%1&4TwRnsyPQ-O
zjrION`l^qx+dDf8&JBK&!a_m=l&1DjmRQ#C|MUj^85x`j^C_0gRCYwNoJ|L|rQg?X
zIs7Wo{!=v5ObO)W5GKKkwpFK6?Bu2=er;@M5YMvX6%(EZw_PZc4m6dmg5onkRMWwD
zx!)@Pd!$eh{En2cjS2hBk=M`9PIZzhRIf_2ZfU2onUZb;G64fa!PW|2)X9<|Aww`r
zR!*8&ZX*L^la?6}{*qOGM)%wz<X<R4DfGw+8|NjKSQ>Lu+hmlC<xYPu5~wg*Snc32
zNZs84^$SbnXjbSg&PmL=vN0)XOe$7JT<WJr7guqWeddYpg@j_lyx2?A9@95fYjLU0
z1DD?}d_DvmUkR-&XhdsDNd;Wih-1Pdd>!NS3?n4W06bCZhOZlJpG{X=W^%g3@bP6t
zv!WQ<wP{0+Opn-=eDdXsz%~h<T<`6iesw^=kIKp-5z{MIKw-pDMCEh`#hE-mtW+(p
zt)*UG!WY6)FJ$omL+gMC_Rp4<788K<5f4-ckJd9q9|7yQ2|znA{Q3G1bBq5&y6;E`
zdxM@)zU(=y_0OHC4wVprE%SaQvrT$C2S*YLOm=uHcAw=Ie@gb}cxmoNScr;h8qpd&
zfx#d)^PW9`Q=(*LMepk7HY8u+09Dx-z3kBnRoEyW8z4w4yV#<Gl2J|7Vy`9f8G4{g
zrTR)p6bKGdQY4%I)6n|m^&}n6<KxW2YsU8XMs{w)w_U`fC}2^H2%zh|8JhW`bDn#u
znN(Ce+h$d&VqQC&OMg>3t14QmX={M4pzu}{Dqe<22m&%T`bTuYG5g@_ldK)Ny|tBU
zY;?!j1<T0D!r1L-PYP%IRhlN#*^4F<Q;T5ggElX*BiHs)+t<SI_6=sLQmLQ{&(!*Z
z2Nh^rO4Lf{<}mxq_%};>A?g0p7_|Pfsl={Jiew!hOOhcao_Z!U_i;aLPI@xmaJhdu
zyo<q1Crc<=+kp~|y;%7o!L_IC*>>7^U!YqQ@4Wl`_<pCPI`-xw63^YSVL^<l)6NO(
z<@=^dIYCKPljx{jF6N@2{J`_uH@%RE2t}b?J2DR^ab?3~Sr{Uxb}w6I`(0ZuK5{O_
zD)33t04y1g+77@PP-C-Rr9Efl0f;hEcRb%mutGsM3?1I$K9K+0Ykhzs^NX?xsQ|>^
zzihTqC>N8+V_Fk}IgRT%NH%+N*^(XcKT`0*gvTEi!GFXwa9rN732sM2NcFUJ0zF;N
z5>ttfDTAUCf;B?|YXutVgE-5}iWDI>-_S(|j$;w;@D|T%?(F8}6t;9~2H>K6pmd+J
zieE0}R&L3lum9r8f)sT|m&X_H>%e+Sjm=>YnlSnSi{-PzH!-A%Z)N}q^Muu1Np}N8
zYukG*zxuP7>@kR-mf|pZ!#}sBK)r~XTG^I$vpirbPuHbr_TmT3&e!jeVEBlq9ml=A
zm*r&$z*wnv=*liwgvQoRUq3_|#Iv|qu34)9j0qA!{phW7wl1?!>)OxBd6{ifW0)Z)
zBMgF~DqkR9Nu)E~RQ_g(uBWX?ZDjOOwFNb|d&^!yA;vWFc)3x@@1q_LT=bj&_0<t0
z*J0h^^R_k{LCi~Up_?2Q;Qj2+Pft&iE7n?1ZxmE}x_3<e?e$s|>Il|7amO_%RwdS{
z?q{kC4h~jT+1is2OFOVDa^&Op4nliXy{CO=YF@O=x7G5F$ZgiL4E=<S!@1zj?541k
zo^PYXv<a_}!1F*SzQ3{k(oMUxg)-FxEDjr2oX~(hi@&oljL%4?;qD@<wL8PN<GP@C
zldB0=F0(Y!$lETQ>wCM`hk&0J1Fc%xaQFClz}sR#vW9JpTmEB|z@tJk-@f?a>*~%=
zyQi76f;J<`uU|7QR+?(T_3{S>1_nmk12LCCQcB_;qy>y-7#bQnxbWur0h?Q%$+5BD
z{F<im@f%G4{vQ1Iy%_|!j7tn|6t~2gM}~!=!)I_~yQ!5%5^tA13|Hv<&HuI8MjhYO
zpP_ri@1I{3zB`sF5i^mqh2qYwX_3C?D2tH@K{qlUl^vuTsg5OHE#+ZvE~Ykm?R@5X
z8iDJ+@j4l6u2tKCuh)9-6v4<Y4wtxLbboCSG?aB#w_md_{L-oDx!f!kpj^ar&b1B?
zAFH@ygzdM69)uh_UBWY{0E)Nun(aZoyttJdD7Fs?$DbGbM%-oCd5FkmxO=CssI5xB
z#B$}}iUQG1j)<Lkn_;#1YXLwYAKJf6RYFpFfVY=cyNs8WDySX#C&kxoP|mNel0f}0
zLTOCGq<hUtImG<6f-Fx@?|Ns9OB&pw5<A9qxqiRMShI`IY5RC*O1Xu%$WsijRSC#A
z9L&EhIu9^K`!Jy=d21OPJ3{c&9Dhr~2Qm@`0zfK70}xAHeulR5uJ@%6-n7th)-4xb
zp2J_3?Z+f^b)T>7jkh?@TCNNM?o^e>y`2W&Ts(FNq|OZU54UIKsz_9EfMc=ZnJ4*o
zLb#e}0ktM%&G~I%StkIBS3KjHWdu+ns$4EMh3U&#;5#4}%*z_ToVT?A&Uv-)3MY>a
z#?!yK{_CdCq(R|W3>X`FMvVB!qbpJyB0n5N&Tsres}z+%Zj@jY>qw~N_b%P;av(0J
zC{NQ5*O$xdxWiUa8{m1Dx~g^GxtagO|D2xAqlr7TWS@H}uAR#xv4!<00GlymEBPf-
z*1Pw5E2kt&@ukhMmXF_f61Gs@bts{Kx75AbXt{%kYpt^i-WD2apfT>tp}nzuW?E@v
z*f33vm|=VjD9-wsP~jJSh_aTVM;flOY4}%<Ml>k{d3Giyh0w4tBf!!`6(2uZz?qoQ
zY?`tWP&sPFtVuiq)lGq(`(+QhoVb&dlk*|c(&BHp05a*g26XG0R@g&M^~u$i`D`(-
zNJ7rtC-2bWITM<e%XL1}uyamu!>9NGH;^)h(a;NGxz>*3wBT2D>yT8tW(@V$r*dpO
z`kK=MuL^B6j-Rm0fbHjlMtQAgpCl?^huJdfG(?pzZf94;=LPVXa|#LydV5#whUu6s
z<{8sp0zX+r0~DTuUe~4A^So56*iL^KDO1zJKR7;BR20x?D!W{Up6gCRmDvn66)kPe
zrmYQNVmJhJ|9QHEgoWug><x_E4cFn|?g+;hZhfQ39o)u&07c5dp$-&|%@OCE%*={;
zav5bBf{-#B_W63iSoD8gX|9AfKgQBSQxjtT;VgAvdmEg}ezHiqg-%XsJ@QCq;2kIu
zBqk+p6O2X=Bd(wk6DhZ!UckfGT)GRO`_S)HRb|s^2e65EC3k);5D=TxBFlqJiM;4l
zg?2;yVZ`+%QZ6xch`Rw`t$wgDsOS)9A-YMe4=H@^9(>9Wy&o)pvVpx5!1?6ZG`>y<
zCvRju%AL8WZkVv8*kuA+`d(_dR_)L)R*^1`?c@j(B@=2~wcAwyVkNjEo=RyO0JK@!
zAabY6(s{T6bnKlOHN6A?ed(C3TUogB)91naixNhXM|IGCBdI}p{P()m?5|%%`03of
z=%i$<mcQstIkd{u7UtUC57Dr;Xut&C#^_Qk)28UX00YV?k&xo+jHp=LP9*?OEqkW6
zS-VVi?;@d7x<NSYd0uT14Eu@Ktp?yen;=h>QdtAAK>RFYY50-BLDc5{>bk_0pHA~r
zAi%NF4wwKt$^^_%TU7k)-8m!hg!l0>SKk5HddjmlEpFTD${K|7kA3wCNzaS*1aUNQ
zpT*XTipwVBxUa6RcC5W0wd@D6<^GaGjKf2G;H!tgh>QKFtH=*Q;BnPvbzPj%PK?AK
z)KF~R`x^-eVjt8r@R$!u-Z*A{9*a#(r;y!YGP}QBs#$-ho5-~8dATow*JkD3H0oy)
z)SiJxF&8?gSbe!2M^I<F!GhLO_pNj^h*|%|ac3R({ws=v`_gcR*AeRHy#S^vi)U55
z!0Cj91fZw66B9^5I*tb`tu#E-{YZR@hsDEgwNNFhH-$nWxc?&rT20&bhvE0{LqJm9
zBwRn=XC=G-bulUSc}59snMC1owtYF1y{rwrq#_<OUs9zpzh8l-D#icqpnZ;N=t?Qq
zC2DW&{(Ds&C(h<!T6spy-4sD$0aKFXYF~ZMW=9!YQhzuQu<+!*0!QP+>yK5|&g#NS
zKR*b2larWo-s2QwPz+#iq_AvNza!YhJ7igcF#YZdBk9{s(EZik@N}V)(f#EPVhisQ
zFK;{Gx>V(GFbS>lS=Gru;N%0N=_F}q5k>{@TsvX%rSbt#DW$t*zqMm|7e}z?xZf$G
z1UnI<>!o4mn)%c7uk*&#Cld?ue<v;i^+W<2_VxFL^YUnfZ~yM)n~1{kCmH~V=U9*~
zjX0YtVW!R8w7WxH7)S<3?~#G+<Q$ew2tjY-w8(9v3Y8*tWX1;1lI5|Hp|hH<uz$l{
z&-$8Ut*KTO@&t7N9c_OT5_ibp0g-+AYY3?Q8LV|btjE(jCUovG%DJ}>5^!+5nNf4T
z(5-Y8gLoV4e>K}aX`+@k;qQpc!&|R%jk|0R9dMnVGfXvqshjQSC?cY82w$jx?(;Mq
z3e&!z;Qr<fSAv9ypfb}|d3^ZT=~=LuI`G#DaHG2H{|fR*yar4-;Z((Z#I_=zUP&PP
z0k~`X7@LC#A^CM@(To|zDj0Apg=N#5ZTI%Z3*Wm2?0x6e(0D81QQL;VDZaj>@?x3Q
zXYc$d{`;F{0`l>`l1TRZuaoV+LfpS{@+M^846g@?b-Kha5TxUda9<_df;031Q(#1q
zF<9^Wog^c`eV=0*G#L)733E<>#-R=QWEP}C{hoPo+3&pPKy}s6QmSNYl%v2YN#f$P
z+(Bi-|7d9f+p!u6jnKDDln@9$?xcN(@Ihw2W{&Z|rj3-MVyqnU3>{s2R+bP&X;G10
zLN1x>Zx*PQBDTc(QX}^{zzc%m&nX}xBH|*3H_7P*bN;S>eSKY+dRT2&x7AGo2pZv7
zOhVf9N#&$6fj1{hYUI+%nNYWFX!!OcOb`rnDBJbZ9VpMDjp_&4wHSc=3E)inL3{Yb
z7O%d}>+Jf(k>HLR)1p5ddkZgjY~ohX9~!RZz5kC!0uOR9{4ua7hYL7FGJD*eclV(<
zW?Qe%DIU$0XQbJ5!TEV=A<VIy2Gy<hTbkNyEe`VhHRX#y&+OmpTVTwKgT3b3q7MOm
zR$K19HycjKq9c%4tuL2y6t$(O^_ltG3>{Yj5(r#mbaW@;hiH#N5MsE#o&M&nyIBUs
zYUNfn-WeX3A+^#^faq>GktG_DX9NjX1M~LvO+Lc&&RkPL8ta(E>7sWijZ*_c%N=6W
zCP`2R&HUHi=Jv!Dg4KQ0wP}gFb!@JtEJB^-+{aYOMIu|6gt@&6Uy3kq`DBjlxExxB
zT;W4~z%>X$C(0)yBcmhiI+{qB)|Rw|bZ>8O_#HA2AwaagFu4ZMwsdN`uDM8$M|!W+
z=CdUi!N8orl+kL7D`G$m3=%F%j`hh9>CVnhlZW2s4)Cp_=V|T0B1a?OTkX*F`f}So
zdx#3_V{@7AygFffe(W(Jig{r0G^M<tn)L-q{*2(|9LBd{j-FbSyZz<C-1XrgpH2>t
zY43Bekf-xF0<fER61A>#80?WI&VIA6(E`&6<l<+;Lqj#UhX87M20p0Z=8sF-sI3oM
z3g6j$rLfm+^O|dqp3{Pn8x*3o!og~*`%Yy)zWI5oFyS+hVID98bZ2@1XU)~F6W;3i
z=;R961LxM%D3>)IQg=Fj#l-JMzXzPSiGgLnY%#47ILQ1tZTkojQPC8_Rxurh*6Y|Y
z<8A=!r1QRuN&gf$Iwzj5M_;><`S<x!)|%*AcyN@RCsS_UHf(TW&&`&5-O$`mWxN=M
zbfNx9P_<+N&L8W6wS8Ro<4XJ|TRH2+8VLXvtKVt(MlbLPiKa;8%NI8hl8k4!n_y)M
zhL&?b0a_hxZQ3L~uSVw@zSlke*FtZtCr|@l_`+jgg3im+9{+oCwE6OMVC46}oQ8&G
z*zjt83j|^@jtmmV(Oy6B-01p&Z`vwnW4UHO#ygoWM-bKi>1&PU65BI7iqS%8sioJ|
zZ+58mC??$0#}A+r;7?RU@8$jX2@OP4flqL_4<A<9RF@|$TwE=NOO%xO@Z*<a391!N
zkQefJPM0!#NI0~gApFP}tLhsz#Uz%)xeYs(_m<j;6UF}$r~h4Bk=iJuboh`%U;e4V
zbdr2lniqjgaoI!|ko!$~H&*jv1cJ~DuJ*&-o}SEGW5e`T+G2*DA^dPcOtFq(BR?2R
z$3{{Pm$bKi$~$g|{-)Ks;V*a85US1${H{qPHfx@@gBAMSJUz`Q!omZvs21AVX=14-
zUA)cfm?4Bi0dE%OIA|dYQTl{XmT*{r5f+4NHWn*$@ao0t-hR@`Pe2D9eZ;~yA_7Z`
zi=VFtI(%gY09g0^{4e^zDQPG=jW@r9e6a^uCC&(3hv#4wgILWI|L{{(QGX|#;2}>`
z*NabofR3t1addlMcG7+i_*?Jzy{9)>_r>Yb4pu#D*h1pm3TMFyF9iCXCciiW`d8V2
zRQ>+9wbvBz6CGUmT2AVgN+hhoErD79jSi#0EesUnwA^6(z{Pgo;+kwzZB4(LQ_XTQ
zI<<Q1OGWSuwUx)CPl6Bey}PdlbB>RPa_jcS2xV88@C-=qG)vO1fwccK<y5@EA+tNW
z)mkdY6ehayC~8y)YD2xWW*qd`qa5!|yxiD^ak^t7Xk?vkQ>@V#<eJy!B+a?%ZsYeA
zU&#Ed9r4c7wp951?D@8&)Dm3Qy$Z_PJU(!d{>vpE|Lpr<`dudfs7Ad-TfZ<7c>azw
zns@avS<o+pLUR%4%Jr;&|Gb%DY=H%=_Ep-`wt9!Kz9)T4B>wLHz)VXJkgFZt&tvl~
za1C%FFxnYP@Jp$!0aHXbp7Sl#AEUyBA5wT4^V5#<k&rsbS3!#2B!s@h&9U&_q>cHT
z*cWL5q32bvP(&*3N0LQG$RV=4L#CL`!+wM9TJ^!uGHLSNqsVl9-XV28B$qIm(>ZCB
zjkj3lHMdjXvHHD}PE%l47)dIjyBLr=y;(CQlJ)JB!fU$+eouYN5qd5r{pC0TV-(8Y
z_YzJmY+7mwjJJ4X!AQ}YIy7YFJ6l{OMJ)xrzis+vLqRdWNQZCLMZ?~k8*~l5<Ic@n
zEPdQKWG#xwW&8x(w9cfA03Z%<0UZY^v;#u~*c>*Q-~srkJ{0t>tMfDO*T?V8ftAYP
zy<O`>AMteo$f7-+VZfV<X(hQCgHnLDI0I5orK_NS%Ol#YbOn@9TJbyHueaWg%^Nou
z#IoT>tAH~zS9!flQ>{@dbVqjWg%d(~1&UbL(KUd)r)<CLWq=gY4pt(%44l(&nGTG`
zUA5WJ_yoRfe_gq}M2PBTgrz0g{tWGPUJ$`#cFy9b8m`md(<5$WRn{?e3HX^5S7+j@
z1D^9>jtGOA;rT&|j1ti?j(+QFfLL!LH-wU!Rf@uAAdTne?D7KTZ0#@pL7M+={hda$
zQ)xKhR{36z$t#M(Vj$=v=lVU4pJq3t-^6={mho<3R*_PZcI=@3WZnlvyp9^vscROZ
zO~UaYV+)tp8#WeKBv-W(b)s{GaC6i-yvr;Z7cUWa&F<l5P-2?%w5Lzg1g7>>17_R(
z?x#}Qih4K*+vPDv7rj7dD;~M6Mx1tr(*xhbm$ql{Qf>6YcCRCh-1rxN-y;}Y?}r15
z6du>AG>1tEKG6emZ};N~cJ23fCm0O6CA|K^F5&Ko-a+RhQRZk676!=``YmH52&+Bq
zPnS|BF}QQ1Jt62&no)hnK)P4^kOm0n>MG<cEJ}LL`|PJs%f<~9z(&k?X7X$uc9&he
z>+OoO`3c;qpi4whrxMp+m5B9mI0w!Rdkc$_8#I$Me0=f?#gL>H069DWWb7OEriuIe
zCV$ito<w%0o%Nk}$iLeH#sF5uH1aEX>B3eg4vPy+5vKnu5GLrnCfM#9tw91ZjtR;M
zA0<_0qhfO*$KRE^s2IZ^GWm4v?OrfJ{pH;Mzr~afrmx_jeNI!A&@!NXWV~eekjst}
z?+so0qoHiaqq3AI6@@ZWG4K&SD$WLz%pahhmX+vy<IZySQ%=N`vXyO8L*yZQi^ic0
zfkG{?{Kh|Dgm&wcPTr63omAKo;+o6Gy5ARwbji#-NzdZd9fjQHZ2^DAD9DI3$N&*7
zCL_)zAo1iWC@f4I>S`UjA7Da5!B|RBsip@q&u-~A5E8+u5$9GwZ3FT4T8g1H=SLz+
zSzQlfnb|RLXHI2FrRC@5n#M4^5b$|DxuiqNmWPIFvI%Yj+091_x>`JLr~RD1R2Ik@
zt$M4Qlvdyg5n`-E=(Zo?y<Il&+X0BZQ;yFUQQp&_j0k4~ScytO6HA0*t(<)KHl?o+
z$*3;g*Arrw;3cz3qjW&EaJD-ttv5rZ_9Oh}1$<OHFyHKbN7vdNy$5I=9kOAe8`$&V
zQP%Snf?+a1N^VMr7C3MJaD6aqUBEK){0_8FAX3SA{qCDeuvG-_!+v&^)e4tqs0*$z
zY*eKu$q1_{Q5P%v0-?(@@NimY)lh!I?;%?JVS*#1LULM%HiIWn@cwNRlQv8P^!Kr{
z^qly#w2~iVC`Rtprr}9c#jKB!O~}%pZ16U?&b___HhdZztGK+hJMnC-sF2SPMrkn|
zMDrvN5<&3g3%Kp;{M6#}sl4z0{{G?27qzwf?F!H}F8^`eH&sbr^X|pB0B_StiTwpb
z|J&O#3ao%pCw~;2xeo|g;C_PgbdSI*>-J|=S<amgjQ}6sX0d}%0Qx=SVxxUN7|RN6
zW3i9boTpegY*Xqk{JPYX<<K`}t*o$JhKuNx=r7fc3G3Te)xG@y1ef#S;o&KUMHk!7
zFcN$uCUm60pbKo4@1IR1<mIE&07Q7=KDN<%ugyZ0kz1ez;7@pSZZU?Sz`~a7`nF5>
zxk#n>y2LnO3u=Y$2tywTD)Ji9rXO)o26JiXuz3Eq`ZQsB`|3lOjuBUCUtcWfa#ISo
znjU8F6vjd<ODzeX%fT=FLnWAoI8Ts+nHzUV&!=4&vCL_3%$V+bX8`HA3Y>t++l!9~
zeg*B%C)SIfews3*eHFNSqaU<F=mF$7&gAPhGw(B2a_@smX%fg>o2-JW_w>!*(U8AI
z+xLI~fatX%V|h-&ZzC|jxiDCTU{?}PBH?k>2x0_>mjmf)YpwG2a%MC=#v7u7dPdx3
z!f{c(4B%~0t;O1u=^mhWWBbuTl*GgVWggK<!yEu&4Cad1U(gM_;0vn&M&jnPOAKIn
zfzLpC0VS`dbcB6yFz``NcXmTc4s=wn6U&&RxB(__>gPXcDA_pgZnA-NML#|lgkH&-
z+Yud2dSO5Oex`q98!{tNC#>;_PRHRw-yh$8x_#EY`7O>RFPYBwHB4JSaQDuWt<K(c
zou>j>{t?Hqynh_`SrgG$_PDp_USHWc#{4&aR{tsIO(Y2)z(y#Z0JU)D!OI<B?ck95
z+TcLgsb}zc;`F5Y%+@VzZ-M?2=`#&r9XO-LlHtOGTuAKLR{9VWU{fo3kaTG)5u)n#
z;n1sT0WSuv8k+?WG>iIgX#w|!=O4H%*cVxF-Tu6ZT%A=^13^Zi75#vPlL73s@<LK%
zX?pDf6KkdN->MNL2?BzFmj!iJg#vd7OHEI?O=q07YYyOoGj1=*Y3=NuaWBdBaNdys
zVM@!(L)aH#pxP#aBy8|)z+MBEZ8vM?jDztA{TPRnv%k4WhlhqvTKYu$e}Py@5fBg$
zpLr_krt~PIVi-TM;UFmip98f!&@`)XI?>EX4`3+-)-Dch<z2QNo6R$#Jjqpkfr_zC
z)d~yH-C6)_$s*j$Py$Wu-MH5HygKI!5f3Y?O8J*?rhN*Ki;zuZ0?jc}&0;oz%_P(W
z8OW9Jp(ZTw_nouUQD<@^Q}9Bn{prq0%EI<an`bj;4fxKoa^s$koqZ0zo?zXT{`2Q)
z{2VnWHc%i_XK5uHc4uAdE7)(OI*S*f9|cxe&&TQ4(`ZFx3v#BI54)4zpL~`Et62Z>
z8=Tx~-@4B7K7kuxljKiy-RpTaY-1@LHxV;CzeX(G)4^)qzRPqmp^XU?ou)M!<9;=U
zv2RwnZQ3_*x&v>K?0?T6-INuuT7pN1?f-I3e8CjsI{{-Z!M7N^sa6IdIJ6o5nASWF
zn?D9!pgJ2}qkCx;d7>Yg^|Fi}#T;PsP6Crid9G8F-sSYtD*sdSOkj?*!g^^A?E_9B
zF58?N=arKGno7dQ*k~Rx#km%mvI5;rdYZ&b|9iB3goMlr{0APlb#<zNMS2*gIk(WC
zypN<iw(wG7XNpo3b7B12Ww6hsCV<bYro1KjP*fxMTOlQV!uq*9)o%ur*Ed1bYOV>V
z*kn5}@V)%vA>z}n;tuigA8|i8o2H<BeUuQlsQGX@7=7}de@Y;#`9^XfBavQZ=cA&A
zHt};L0mUgitA;il!lm<RjC=wgzh!+-g!JSM-pJ6zL6=)^sFvq&=;4}J{!*pO4|?nC
z7S5vbUbKnwDBO{O#OWUyZZ(hLETiL~+HnE|>a8W5wqN?^m}`BE1L3~5uwQMgcp5t6
zaJnX5^DbH0GFMs4@#~6M;Qq88Pum`?T<<o5YQ>=(mw071xq7Nj<0#~2f14dH*&5fS
zI>vPTLa}Ku6Mdr0UevLp6vb22bv8ZW2+HtI`b5r^<Hf`RWV}<5>(_%x8`$Nn(49w5
z_g8cmEPWP$S#cSA@VAX|czk0bk>gYF07=xqlpKF4)S%0$jI{LhCtPE}95~d^4`!ek
zt*JE-ulo>Cg^|63MyLS&(2Q%ZtZ_mf1>m9R7Bbj9)omj#oi`un04P;znruF}ZAlp$
z>oJJ@>)C26{@`NQLbi_+&%waso3Yji8Nv$p?lwT%Og&K$67rKZxc<mtdWdHU7y%~+
zw=8rmMZbAAJ6^oZMXz)(2}E!0LpZCBxDZ$a0-Tee#+U77b<Vaft)=gJMvUQqJ)Jz^
z9GV$4T~L{!iE5ZeWP1=~=Yhcm8JjS0GIl7Y6xR2NO|ls)Fm~Y=6U(SQ+kO-q$a)LT
z(#XQ}+`rYb9n>I5zUwlmd^A#wuU2{w>fVZsF(dP!pHC`k-bOg0O7QKRbRKb7NUHiW
z(nvB-^;Ym^4fO3>)--!IEH<ZI^oNf#VN;Wnl90uLg4aIQqO;o`WC1ow31KYE+95xO
zYtOOY&AQK)sCDfThh%*I@;-C|Hes6CC5e9c_6h&vDuwD$0>>hDZi}2~KnORx9<oQ$
zDZ3D>w+`%~{Y~)nf&4lcO3LU7F)2jizvdYrp+B3j2Oy~*Ao#uKfbv1X8Gb9Q>~r>=
zkprrus_V|`dm<m-NzIf42lVgMA(%0j&uAv$ZxU+)1>Q<I$)zxh0_3EU(|Tgx0{u=u
zsMz#$y1g{}$kElb+rhrWuN-g=WDqkuH{NH@@3aqJ<!)ZR4@R80{LI?h=alE<jt@p2
zG%$ht?Uv#X1`3uZQ`c^gOjFvV&xVMx$E+Dh&@u=SAtzTB&ZRw89Oni{Qdo9ISjMIS
zRlp~(Qy&AQB+GlF+z6E8KuMCQ322%;=N<1LkeB)h%K~8W#&}Qye_oiQuT8eLO2bN=
z7#xC`*L|_ao_AB$@aI<h)fX15T<Xt_Oq7%?!3lddfq0RRZ*G$-`#6a4X;IgH9!<tC
zsoc7>TaDm^b+6?aXL!zP3PRt<%t{~kKI^L{nU+`t#{J(s{0*D~FT{<tqE5LbKAoR2
zHto{4?`fM*BYcnZZOe!}Kfdl#LuY(5Ft~aD3Hs~#<%u~}kL6O`fiIqNaIP*e?_VlN
z30w5Liu?R}B<cvCU#dAnIboVX1)IyTXxnqDl|QhCn-Jq~1)FhN-_TegDw-jc)wJ$}
z@p?tLX#bk?1szpVTj4k|fe=u)zi>{Iq^m(>Flzpyjc#(I4qm^;PP4Y4*?6mF>5EE9
zyD%PyjXWZ55>2JO4+ggZ8Xt7}?=}u@xw;qU5P$$($RpcaLt%JQ*jU!%vrc%@*r*wT
z{FKn~7UF=K%)&?9b*!jXwY8DT6phy~Q<;+{_e<_dvr{(s!;1a6033p?WCWT>K>sa<
z(poYN{qzB~)R5tNI8_lYfBJt+bWq3l8wVGLG24?46t7^x1~$C$-@Nm3+6<vMG%B88
z_wYViYj2NSYjv-$eZU#&L+cy}DlPON5sRGmGxe~~j`3lDK)DB6o9u2^kwKJeE=J~N
zrsiiJJQTiVk{vpV?IkVU*sga0V??~4vkpTS;plY|FqcGu=wA!h@#zd`d6#_(c{T1n
zV(IDpz6@@;8jUj=PCN*a)@i1YsYe>42C}`GPoS8MRu_On=5~y;r~bSh$$dIbqw!fs
z(Gxg$?dc}$B_%_@RuS^Re(IjT^M1J^uwN|VB{wCfpg7`reVA*%wjM8n;3B*LnhMql
z@N(<Oe0Q0St1HM{k9-~ODX51+@oVvS3!@lwl_?EN@dfy{eH&@K?a%YUuP6Gu^IF?h
zT}w^%dffidh-Nj(6WL;q;oWOw-S6F^`tjYROAl*iNKR<VTe8+Jcp+Sc{wn(9!Z`p9
zF=!1!2P9<Vxl|&!2^L-Ylfch?gt~PM3;xJkE}eb;=RaA^aa;mq0pz@{DI@F@phPzQ
zfql}@NbNDLf-Z>9FZu~msT<A+A!ZVC6?GJ{61@;(DtZRpqU`@6Uf0BTB$ADVWV8#1
z_?ow>BPBaT=9Fs{L3XPkhMwC)svoqFWVn9!6$9{ZEIX~YZOZslMc1Tmu<$(6GJOCy
zyI%V2IUZKXJ-z5kvetD@H_DzrD70J^zxZ$yee@^!P-%4z{j;`Z6Ks^X6TM#U*z-GF
z$r>HYou#`=ZdEStor#4UmYwIjT_Kv)xz5+;wO3b2{;Lrdx6CDuHyxSmJ-=7M+i`Mk
z0qlv$YX>-5sw>UXAOc><^_tDgVTL)pmp>FfpuW6XxaU4=nSu}M00Eg`x=%Al|Dj*^
zf-rR$bLrJ64-ia$jGay<x>KBtfGhu0y{BStM)Ox)_wZU*0AWY-L%8lAox<&7(CHk>
z8eL!V1%TGhWS53~dR%)gL;rRY-!~$?S=Dcl@E&XEaf{%!fR|@!3&6j9=eN9`PZGFk
zK5LuWS{eB4bUaT_<Po@M;gZysGi(sanK$v`;1Ix|d!k`%ybPmm3A5=w9{`7LI8(HE
z+mm?x4hNPeXv^8BV<Cy%#N;y$%Tr)QU(fGzw$mdw>ynnlfGq&It}P9{56FJm8aAbm
z%<kU6nnWWs&=}Tc{E4D>zeG|(^~=RQevJ9Q8dmEjr1I@Zl9<PyKq&6%?{^OdF}+8X
z!gb>hFrXqbz>@CFMEl;q*^7jqsqd1>vk`z^qS41yaZ1pFlAHuFG9uc#`xa9QuJwL5
z74fiUZ_oA-bwJxCgC5~syhOVOmFFH0wQc??wSvK@WxJ$0+TST29Whb@o|w#8#twG3
z&S4&*AXH<ypsPHKmnS1L?0v;n<!b;aoGMwgwVtvN{1bKElh5#w2M#GJaXr{%hlooO
zT((H+u4)y(k*`<WEe(}i!f&%K5E2qHQJkvMoB*qFgZggvF7Ss92lDu10lsQe6@g;T
zdNbW*u^K~^L!Nd{&>oG&`FK!Og&WS0ANt#p0C1SzQ<w0v#pSm(_iHL<m&07N$?B*>
zF*$6uEgahbk;6J}5(6@U8@P=Eg0)jdj>t|k95^2VK$1fs;M4vBa7clkMe7aStSrF0
zy<j#RK*58&;7vr!2g*>2b^71cP3z$jHIc2zz`PHc+wyBcd-24o!Y09fY(dPP)V#pX
zj$VYji<XkB%wpz%rmt>-Ot9tV&m{uI=ORFTmrcYc`5u-*QqWk01vKWzMdAKLNoMaC
zk9$C+I8h3QjjHJj4GkU9uV32IfO_r$0}Z7n!N&_819I4(68_{d&rf$-QS6<FV61j9
zM(AeB{U5zNdRFZXsJ0c6hA8!cLgr_V8V^|3UqwgP{e<;I<pJ6I&fnP~D9s-e;fw(2
zJsJ6P5&rDWk#=eFI>=4J>8Tg<VbHatyR}(?0T24LKkYDhnh}ihJzD%mr9GL8edYzn
zh~ZDrU@bf%Gra<Q$YVkL{x8mNd3%9|H}9s6AJ`#afSn@WX%kCi2w?5F`@1nIygB>b
zHnNJ}%)%Q7?)zl@Iq0OVzXuu%@-`x*4mFakqmkgR;$7wrB!niY=1OU^6PpE*X^WAT
zRvI~6AUr(i<i~qVv+|KVmDOsNHSbr?D5JP95jbRj^5{XPY8RmIM_%lenZaqF2cGs9
z2+m{DLS;~Msq7iv1q9WSqa0_P_gX=CxbqG2k}P%NEoeMJ*Pmz<ws!ZMBw5(rZ~nuG
zr41<xtiulpp{j?|Up+`OL)^9PmwXYPoo&idryGx0ZF1@MqnwM?Y1r4ThegFT6h^_J
z7j*AGwT$U^d~oOZ=+l6`apwfh#1i=@*c@Imy+Qf~-Sz(c`x|G*k{W1h$2=Z);R;Ed
zG_+*0`ghZzI-(2Qxo7hSn+Q=cEjp<VmpxRNQmdngX#93X$|~`LqXZbRJd64o`rGyI
z^^bS1?)Hh_pici8EZ*!1d3f;H_<>o|u>)}EXV=WfIJOWP_p`!iDS>i+YA*L<$2+wB
zJjkJ|!`HrMw}_Z`{H#yAc*`sb&^niSr}`tdb5cWLN;3_jr8dyM&tp%;0SE;*eaScX
z!m;g*UO)VHFNwXsy0mCw|8jCEpuIJQtQ|tieE}KlN|wi+j^F&Cdh7788Mv9N${H8~
zOs*ll_pPb<%<Br503d(6F9BYZIgApDFvxW`#qTw$oABZBdP?rb*7?bJsm}5N8{41{
z%Q(=-ZZMW?@g4(IYu&hm@r>)=)`^|80@yDZr2E0mTL7KEa%lv5Zl~jMA(?o%KmcW2
z_U9>hSl9>R!W=qGDTD_u7IFjDaA5!b&T!KEzFC=8U{)>=)DwJp)^tP<c>C0@p7Q_(
z-zDA@ENw5qw9kFPuV?>t%iA&Um+J3t_30rqOaNW9`PyvM1<VpTXcJMJ&)Q#1=ZIJK
z_@>2%E&`ud^N6zIaui^!Uh~3wHN2jOBl@3qwpGFRoB~sJRSnworQHI$%h`YS!`u3Z
z2-)U-FpxKVv3>3!ob7EU4VX_Ba0dd>|0(UfgPPjDJuXG0gP;P^1w;WwI)vVY5UDD?
zNtYrZy(H3$sI*W7X-co6^rkeUp#)T#NNCb~ixh#kx%a*+zq#DsyqU*edoq*B;hc5W
zUVE+2cP)eTeE5_!^7Tx{BU3hE)D}5axA&P3g#zAra;d2)#sLeGSFb|#9svMszUpXj
zshQg!g(fZkD^3nP{4aLy#R)88{Z{&XX}|A*G;H6!?csHBD;%ct(tQh$Sg_rdsAoT9
zkJsSUX=XpS*iHrxZJxr)vKfAeVkh!F*eZK8M`zQPl$e-e75Du49J}vL!bBG7<(kRO
zj;loei(zN(z5PXPO0;%%q%(+F*e<3sSwK<N@n}zC@%Yv;2DS=fRzdY$47|w`YFJ6=
z)LVtg7Ie--P6@9-3-%40<9=^b$64o0OOkC#{2Y)W_jB%Vv8~)ak6V6oDUvaTZ*KHj
zKSh9^pm&uT2z>A@HoC}R2NpSk5s7YYZd30A2_V?)R<RqzsRDx(&K;N28uhk`h{jL9
zpp?_1kPm>KX|5bm6e8@%$LJeqm!6xkRxQh>tzg4c)Z3Y*DB(1aAS{=^h<u87pM2gT
zGvy|J*r~*@qZV70=J*qc2yTBL<5o0c`@$`bK#stGdQLqa($8F1-n^@sfcxRd%0u_g
zgkCMf2uxfr-HIb2>c&=f3{Q#+BZ9(LYik=m(tgg9dDM&3r2fhyiQHA(Q-3}G5VzjQ
z*_aS;=BRX=cuE&7J%zlzDa4b0oBeXzv=b|0J8SCfkYuUki%AIvUJd%_T54m94N<9u
zpvVz6rA7dKZf)?t@RvUarY{UX_%iY1h!XJKB75RznR9-{HnX^xkNE-r7es?~$Au0>
zKB*Cl;MJXHlJ?w50n%8Gv0r2gx)CPjK8#95)aqVg@~e^1<fH7WNK&~aid59O1A|Ed
z(Q2pUc1(BbWM5(n)eL-fESL&?TT?nmZ>d?Dm|a5DIe5l#RhUTqG-1tHlmpekM-W}B
zS713BUDamJW@*Um&T<6m(+}{K@)lEvbkSpF*EAv>nxrXO7C{+)X#E^zp4Z?ak+$e2
zCzfbjOlfN@#M1;ED}9CLdQ2<o8;75)%kKQ3h3P;2>E;bVNs50v#h9<_`G%}(Jd1fn
zM)-IVYx*d1e(SZd_WCh{t9L{@!5FAqZ+7Zs2a8>_1bEJLk7aa{2Kk_QChCFB5UrHe
zb(6ZUG`Be@Z0r?;pEAT_|FYVMjD1^B>W!34msCN!c~zK=^F<y@L>#l#I^sZeR++nd
z6iOuV>>6QL=>2j+aCYM$0DXmFXA0Z401nFcFi&<L8qSfyz^5!l^txO{oXAC>fHk;A
zACF@0)&ZTFzxIHhku5wSS1N?#UHK8D#5BL(l+pBgPo3=WvWWe9oq+6At)YnAmckY^
zvNoKHqL-y4jFNf2JSY{4+3$s&y5tv;y<9uPlJSzx_|fVQA}VKLnpt6dQ4D%M+Njlj
zp~c>Q{%~33)>n7cUJNU2v#p4$X2yJtid;M1Tun;wTsGT*Aqn{cm#PDuG{?Q=YJS!4
z$l;vaLWOmN_p7@;vEq*J&!wH&f#IAsKaR%5D;CJE?CsD%<b2dU2%*?-bVfSNUjUx7
z&1RlH+KE-6;U&g|eptkKUMBbRyXaTrdM@;apJ@a)`&j)(w`ApZzf{yE=5HZ~sMdHs
zUH1F@LU0j3zuMe=8|P@rua?E0K?3%~iLI@z(vJx;fav}s7}WPI;2sFSq}JMK9}Zb3
z?VP(|`HLYvd5wv1rP4E4Z1gA~If{^&7mLiOsYl(vsDFD~27mLikx6Q0(yMhZ!0Y0z
zmu-GTpmpTi!|A5^$~-4N?0~b?I(%=bdiPt+#ADuzo5NCj_gYfnEjgc};J2+)#m$!N
zN%;Mwah8(tAT94-IfA|5_Qd@iAPXwO&Fz?1Dec6HEuM~!4oDM6_l~V~m>s-nb`Dse
zVToA#_0-|R4H4^9-|<>TminbFi%`~E_P>BbEg6-CPl-$kS2-6RM$z&22Q5mtP0vCr
zbIE@+*U$T{G;$wqqh#G*?|ZdWBKEfi95C~CLRhb-_k!@0#@>Nx#gf@w$#<xknM)d7
z6mL<!bsGW+X1QS+R@O4T>a`|Tb;;V}G@G63drcn*jtP1{ITsdcj$^ZFZMpGwrGx+7
zR}{VY^V~#%z<UyHPZ=2z#jTl?HrHBKGo!=JrCwVaXwjR>t;sDqdG~}=+tMd8?@UDT
zH^jT|x$&V0gH<wH?<4S<1t*%mS!=^^jxiN<hoj?;lnbEP^3U4O>?wSkOiU9>K-9lX
z0O%k#F5n9fWXH^U7X)!nLGacDXfd%S4s<Yubtb6EMrqAU->YTlb{)hGGyJqH9o^*c
zUX>}Q+BdZ?0jKJ#RVRQVV-7^|b$q`o{ixZ^(2t(*_Ubl(UBs78Q;c36C^4ET|7_;>
zwN+3R@aQfdDC6bn4pqc}f=*WLAbMrbF_GiSokE_+@DK9h#sp_QD~E0UU-|5R4MCbA
zazatmcUKH>k{LUxWR7n8h32w{a$C{6X8ecmhM8<W!~?{Vnt`D}k0o&R>>(9O=vS;A
zwGU`zpih>$=17!hbWI?sgDWd5OGjHfOL-jY^Lo8~b-Z;;sHe(lxB_LoBCMVUY#y8S
z8vlvO>U~V`+A?T_KMO&C_Q`?tn=Xt@>G!s*>Dy|2eC8XAX^XiUzI}eu>cKiD;XC#|
zFbL6XB(yAFuU}u#)Yje(1^Lv<9wtac;<S+U1mgW3<i)2UX;|v^v%yIjrPM6Oz$StL
z4cOr{8^1f33o=~PGVZ1=gLsyy_$DBmHu5jHrVU+)M*mJexU^Bvl47>gPSaw_N6?c(
z@5kCP^rmA^hRi}%b;dh7RlFNkpNE_6kz4I8%J?DtYO1U4{2(l>kidW*yP}wuE?BW8
z%ZZd;j2w)FTnB#!WLHc1Wb>Qw?m{zpZ$+h(;rcYTJ;Sz;==bJxk~VdVFar*G_E;XL
z@^drU)fJ?<9C$Q#w)opN^@x4n#!9zdzGsAWOo4A+l<1^q@H9))a6W8%aWfS2G%~%H
z-P_>-`eFy8%<KMP!S$BChejnOTd$f@>@|e#dA+7NKx*k!knJsf$Y+Yl4yWf&h^U4J
zK|x;(H}$-_d=oofTU(2jr|1@NEfeBi5wQ!1K1FOT3FC7pYvO8HoHO$EuURILQaQrn
zoUb_*LC=iesH(asb-}A@Tqb0Y!N`HaXWV$jMgMlobnXPDije{L@1wB$8T<p2l30Du
zw^t=`gO(+Be9{)={8y$!T|dUKv%rvS6p1W?9aQJ(2K-dtJ3=^uJ_vF&g>)qs*zs|5
zqnI9!HWL=AQMtQN@Exz#{k;v1sdA37QfJqL1_775U)!yDUBSemzgsKQhzT3`_&<wJ
zC%DN&g*iX*IO1%A92_?PFyoVZ>JHT(*Y`da$~HN<=Z-RNM5(%L#%L^9b!IQPo2=rD
zQyOc(%v&oT4-@}m-D65v_X0H&b-hlNEVkNl=+fNWoNpqxl%(bTL|RQLZQrf=oIT2N
z!HK1?DLu9)l;q?{z|83#b#qCw49v5A!8lyw`by%fU&M3m>xrVzrTwb-3@bhwVr{?X
zYaa<3c%^M%pCQix(dLQjYl#CVhkwS4&#drIGswbr>vHO%M1ak9YDT7Zl~d;Lp)hAN
z8*J*9<fZ=dNr9ByT8SI4&gJkWtY!=4U^e%xXNHqJywlDGYtq_&SKT^PthPez*o6<E
zNdNgee|?h40V<^9LJ)?F7kN<3UN5j07eL!E1kY-}V>M_9W=ca#%XR6J0w54L08&|L
zexEM9^&S^54-ZX5;Zl|3kl;?n;STFH|79?ksuQR&$Z}&b*W21@6hCS%h~qztVbLA$
z%dv859>e=>J-^>5xhRswg9qBd6-`PQRi$1xf;;4YdfQn}d;?zA_(C*|h$M>rKz>}u
zq_=#ujlfuX>V5PI47z)<fM;YB+Gr*6A5ZXagb*xxn!wXsWnf7NCug|S+}teVXQ-vc
z2BsApvGk%5WyQtFYOF8p=*S-#9X+t-*(-!LEw@k(_6KdzA)^2$sxSvri}2@rGryNL
z?W&Dwr}UQ-Ub>ln@2-}sd9+6-!3jIV@x4Mkj<^Q4!R6MjnAV@OpNd_ssM9}t(p~r?
zgYSMW(AUFRrLPD5P_NAN+91H10agk<;``WH!3@XsjSWU`AKdk(x;n!P*NyWV#ZVtU
zr~%E6N7MK3#!Kx(l8qAle0)fd+tUL5ra2)H!vP9;;rWoklzvx2UyTN(OQ^2c%zOk5
zHA@k1A&&&xRIMbWR44H`pLhKJ{a@BSB}dltHtS5U0Pr1zJ$tyNFGdb%K>PP#v*A9-
z2kH{Hh9Ba0H(7FKAC~KeJ>K`@oZKHR$g$xqx$!Ta^;kXQx1s#wL#7eJy5iNH*#m=T
zrP!Gg1oUy0Kj(7XzK#L%+Jnm8lkGjTgb<K^?HG)iFNL%`>6<E8d$WH*Azu=<HE-4p
zxd4i{56`oJ+HKta^SZ+KF~o4wsZuT4H$|KP4s_wunbgJxj>yh$CYg9XM<yjL^tFO{
z?U{Nst+jxY#@gG*U^Gh`*42jUy~>L9%N6o61g#%Cjy9Q;35RX^`1sUGZD=Yfg_xdR
z0;q99F1qW}r(Oe4_r3;RxH^AuDpOC4PU!B*MXPCuiWUDy*mK;j{$9_T0%_i|>AQim
zL*LfFGY35d@cv0pZAqTZ72O_J?G`K^ly<~q4VHgtXJFxI-(lF5V!NWmLlB&^l05f@
z-})(+zlQjl0vxMCl3i5veM0L#Psd}<p7Z0{>Gxl?j>mXmeN=2Zle2;~B$tFi!t!kK
z6&!$@KLWkgri`?-2|hl4Tbr$wRm7LMitY^W36k5{STpxt<#jNE24-(>A3t?*d?S?3
zbT+oMe4Un-Hm9aWAM|`((q`2>`H3C(keT(=t1H(jtR+wMn@8Wz<RW~G%Yj-sbFFs`
zUF(hzcP*f>NmFTuV(>T;YHAhQ+x3+VXV8Fl!JOwh{q1&zm(OLzgmqFlP(#6hdX|%$
z8wO}#Tt0d8`dD*tr3=H}_O`cc{fMqq2ujuAbLx60OUvBg;Gj*1$Xq!UIe7)zq1Zp7
zY&;Mgtxvr5$3GlN2pA2(Be1V?m>gQham2*LWReM`hkPruN>n=e+v$Y%$k+5Xqm%ST
z9v+pIe<*E<G59GG8*cf^-R=^7kQ`9lurDm~pH}#Gk?WzTZU&uGv6C%a-^u6lH5@gQ
z9*}Udc?X2iU&Obp7#<xpTX7{9TH9?y?Era$$L^7@NWv=@?)<TF-3t_!Ao~;TQ67z#
z)4HuXY|)^Pb1X<}UFGK&gVs0`;1Lgv->rYkca*9L9WCQER8>{gbG$J8FW3I(f389i
z7#A1!D!0sq=he-?e@Q$7n+4i#Vq(fzIotd@wY<oD1CrQ2iD&FqI3P1MRn&|LDqebM
z{xjNelj+>K?DqcEF!Hsn<b@eEW!D12@Nl*Jh`{YL;%z3m4T?XX#H|yAPOzTK#3;T5
zgD}T3YhWF1m{Cmyi&r@=nqiJ++t0%!*1&v-g9`Top0XJ91kIe+FL77BE3p+c3NtI;
zIkI@*h?MmMDM9E!H9N0L9;0XT^9fyx`TPU8dmVF>-t2mqnQtkQl`k;@0smosvx?84
zMyZ-E$Tp&w`}@P%>yI`VS+8VO&llO>j@kaC!YiwHxLbg@5{=2ya4kS&Y2GcQ%r4S~
zE5B1eq_s`UUGUn9h{>RXUw#%Km!P|L+kZ6!o%NGrru*}fs#&Ej3TR-8nN&wg=+Dn>
z%)c?j4C!^IUOz*X_%Sb|^ozpM{V&fFkVtn1Ss7^LYhEr0L<fu56Cxocy)$#Zjyd<*
zpqbZ5ZCrZ#HIT2<Kxw8yG-g04Q#B(z>?ZWqttTO&p`QQ&#VIDHw?RrCX}9JPKn_Qx
zT`v8o|4Dr~6ESL0;HfvikXv;)73b1&I<9Wo#6<M4fZIhFu2r@o68+y_TS_`S(hMp(
zpMKcM27W|8(P%Vi;c|*&Wm@x8E7zwNiOCbuZ!VFzE31NJ@C31^nq176LdieXt6aju
zcUIU}J$@qzs`M>m(hmI&+RneS1q`n|!M~%^F?P3(?_CcBCGVY~e^qb7&h}0Sp~@db
zLewMJPr6xmgxYJzKam9La(J^2!=qMfi_h$iqti}xhy?kqt8xv)PH0xI_Rzw2Q*~5B
zskb>F+=(-16?vU;!C9|BoH!$vWll}TXrcF!?D_Cr0LQcRp#$!t2BwShd!~}tNq<_+
zc_wcM8w}BmktdpdxjDO;b3aSRz%YN;D8Ip?eo9Zwj4h{7CL-CS)O_jFZkL#BoKSau
ziS2afB&VpT8V{1*cmL;A!Gl50#?e|KSkz1PU)V+o$YJO6R*zlhcU>`EsbXYOR8%Zd
zgETVLI0!K@Y3$3zw233cV?Jdr0a;wec*7+OrHU<87tj7T@#^2ZE7MJUd#liY_h2fN
zf%805X%d%iN_dxUi5qL{WJ*yd!Frp7BNt1Qx+Ut{8P3{z40_)Z-J4jH+L<d+)`>~K
z8py83$z1&FvSOyO?R0~oPkb1iHE}lkcBraP^g6<kPmD`_ilW~Y51qP(tz_i#TA)0?
zl-E(Bou1J;=@(T%WzA;tv|f#<JJ}*fXsVrD9XS}QSdm<(MiQy+*M&uznR;tc+Dxl9
zFO$#3_KbcDZ`;&T?wjp0Bgs>T#E&kj?<b&PZW)oU+JSSUdikKDwM~(DNyj63Be-@>
z=S8)ipUd)yq#-G3l=TYMI50-ydTIEbtBAKY>ai^?Gyv|d*qrZEBtuuP4Dv#u`|XQ+
zTTuz5Q&)%EQh!Z<kLVv?tIf~<IHvRRXTQlAYvtO)Muv&UkB^Qfk82+odkj1_ikz7Y
zyKFSIaeNOuah<tAvQ0sM<J2qWidQe>KvnZ{OiGF`GT!{>i8~!6<x~TA>mtZI6zN)+
z|8M^Vu}_$+3y>n-BHhKJA0Kq}J&Mr5vj)|br6UyG%sfqoTLpi1U0D7a-Q@U&#oMH`
zRL7~H!&a00-or|o^R0%4=?P}FSvWnXpez%_0its0Hnzaw4xAvDi??h*J`T60mR4#=
zQqtIE`i^xsZ#}CKx6bxG?78>tu%8kw1b47Jcf%ADrmFhr@^?v`dv3I`Q+(Df^4u%(
zw2XFm&r+u8I0rhhE5Rp`@88P}fk|{r&UcgY55&sO`*YOD6k87jX2|ZEV6Mo>m<kFC
z&fCv!n*f}q6!a#{ndG&kIKGjdu<i*Z0SN?>P>jj;8H+C`J0)<c%v5eGw8Tk2E3Zsi
z-BJDVLB@juXoJ0;js}+e9aWvU5Z@)1+cti8bEbFT5ia?JW829;dGg~<rOrGOx@!Fv
zy8a`){rlbgFAJtF5dO)eJc8rW{$CeVM-q5Qg|?s&`4lH<b_)DKl{J(~70iSF2Q=H~
Al>h($

literal 550586
zcmbTd1ymegwmpmmZ9)@*I|K_Z!7Vt!LI~~-!M$+^?jgZF!6CRq<L=V9H16&WUuWLT
zd{2IF&HqiW)vIe&S6A0Pb?-U*?7b`OqoOn>IuSY?92};sjKn86ICNe(IK&-PWY`|d
zXH$AOIDn|7xcEm|adC=|j&^32)~0Z9GGX!RC>kpLcp2K?zlmD-qspK)qal1kkU{&|
zO+i6w9r#9+o)Y<Mcr(-6de;g+OkG@MXJ)@ypfVHF*Jjp&0{Z=5EUudh=sS&NUUn^Z
zM-SJToX>ntM?=kSaARLKWZ&==aKkmMAy~?50I3=Hg5G-|Ov0mm^dl}`IX$QOy|aS~
zH)wEweRhQ`x^bvV*Dx(||7<mmje33yM==h}M?1T10Fooam95C-ynq94f;T4-!bm#N
zFLKyKL-7Y4f?uikIi$QI|2W&#T~29>EUFOD`@;+_Ywo4H6r~8_7mKU+2UK{WU2qoc
z6j!6e!#JX8=oO^Zv7$^f=6T-vKTdgut0@)8SdCE`w|~)pY5(OV`_k_2IXU`S*U`x&
zK-k(~sxL0Mw{IJ8?#d_-!`Mp%ybgy@Wm8NC-89Q&m4^`InhbQT$6pn&i)3OtA@2a2
zP(kfFp;44CaknL;3T~>MmFZE8>cz$^e<3K6bRh#-@wP&`imYotoEv>^8Jl-zNX=av
zJ<maJb=1c)nLA~Qf7+L)l+KN@#53)o5tH|yE&3P-M600f8o8aT(1{=3`6chVkrnkB
zk2+=<eU0EJFOy7R3~rvBxbf#Jnugne^X^)+aNgLrUgZ>=EIP^LzmrE*y0Est)?jr1
zzIjh-=<}&-MF**41-Q9bVJ_z2_4~tia}EW)6dzu`jN>oWtNI`|I{6W8(Sr<qf?}cw
zy4P(l3MYFZG%v;-26#_@F+r0oOa*Vyf$*~w1Z;kQX|8W5m3{>!b*1=F22U|~ESdMn
zKm<BmPF^bIaq8e1jgLrAeln<MAw4e`Jc6=-XZpb!n^R~xj2;-c)RpZxp-%Al8*QG+
zMsc7%Z3Ga2a9jj@Zm`)2ax#d&e)jbF_SjQSf%DVIB!G-iD<Gi@XvD^zM)0A!H_G03
z5kJOnMpR?Tp7uzHH^%NNkS_3Lhj@pJ7~SfX$+*`pmU8rq^p7H+<0Gn%o%|O>6|e+R
zuLJfz66UW<wV}C%_-KIOE)L)|Yv0<ss}YD;Jlh~I3t`5S&ILt&4~a$WcNK}AbRN4P
z_!PT+cmF_dtUx@#<5{pR{d{m-$?C^^EiGrw?uu&Fu4s&3zOF%PV31$#@f%lwvRAx#
zzrx4`(<4H;>j$Qb#PbQyjmc*6kXxbauEXu`14f|YkJfB>0VNLIw*!4l2IVXG@B3Cl
zZ%3#JY*}n=;rd!x2WDo78`qlr$5?&V@vM>Cj!)X!+A8cw>frsvbM5b!AA06SzLteS
z;L=#P2XlfxyiC+bJz@U&!Yzf8?L|V{%aLA85Q07sRjiEw_+m|zBMB*cG;m)BJ@0F>
z0U14VuE7fp4DPSY1_HB~SN;K6FG*1H+xhI#ssr{{SagJzR$lBN+O^Xmy_Z47{Ye=d
zN@x_tOJ$3Sb1E(N4fPGOtkkDifJ9{9x8y#AoY$H`))KXps(odB${Spc@Vlb6)VeZQ
zXGFK5Mg_=4At_nhJ2G)$l^<D%LKG!9#~3WI8-cpPrP7S!%@)iaM9qPE(gNf779z-O
zE|Jm6#)<?u#>UDT=n2uX6>}PBYQd^T?=%p-M${`5f8*c#;W!YDw56}0zwBLi5Eg!s
z8O7Sov(|K~1tx3_cU$$oQAdb3khgzx1LO^SBZh4F_Gi*ZsaaWGF<y-8Pduy4u`)S0
zHeq`9th6{)p`4*|VX2|_VNqQ#*Qkv|!X!A}@O^)fQGP>K==WKEUUXiLU$RkbkG5G|
zMV(W{Nd-eyP8p|oSe;R2A=~xSVfegCjgpB?<-55M5=p#o`9BhWxP2q;OYC3TP<l-o
z&fFdIO1l5oQ1<Wq$&VwSj+CJV#l_kMp2aaL_=TgY`ei<%k6@3)I}}V^Occ!89wf}<
z9*!toq9~%echHZ8pNYRvybID2)s-swmGM(Jt7Rs~lHbaa>qUwa*Wf#=cV!kWlT=ok
zRu$E>mbjMjmZTGnzo&{7rfbK|tj?>=trD%sr&<b^%ETcKQ(+VRQ<_Cp(%WB0ICa05
zM%jjzin{$ga$VwVjIkgX{@#;!YKdVXU}0{#<RKxXEflSnpjQYLZsu+l_SW@wdqjG)
zyxY8^yAaqVSPCBbxjmK$!J4oe6M4x=*h551Qfs0yT+Y}DB?R!Gasi3r2o8AaZBNF(
z84?&J+0;*zkDRn%+in<ejaU?on`Ku?HFsVH-@n|(VkPvkzacfAoNedr0R^ABuB)y4
z;Hdmy!wKt0{=rGxoaYP?g)l+h<<Tj44q2EznNd}}Gs_>!;JhGYl6q+@l$|_oZfi|u
z%fh*A1~q%?@0g~78ntx$MBFF5mdi73+$0*L9TaBdEUr-FEGa5E()dx5Je@qf|6BX_
z^4#qFn|Y?n!YX$&D}%ub=E{=VW^?HpjPg_?bxXJ542#j~(b{E`<s(0S5U&Y;oPdt2
z1gQ|IWOOQtfD}*)6a$PYAaQ`mc7|<!-uZkuxhd}!ZJ%+hv;E+h1FIRajMBA{4|{8?
z-`6WUH%p64_X%chOEF8!mPi(FY&UIZq?DzDqEk4Fd?p#)q}_hrn_X*@am7@SMF^${
zwtzg`KL}X~dV+t0KQ+Gv+j3kcjSuAxokNk1DUSJ|z0D#wpu5*MBp0`knSP!Hx0vIq
z@!IU5Y_~|C4fECB^M$RM-O&@J%jLagLIbiki~<0Nz=Dt-b&>EU&UAFZ=+Lwo;E47e
znH0^V_sVe8hzHrY-LRde-G;J}@|2QToGef)&@50b<SNKLa2VAJKo{uLsUEz%kz{|9
z_EvG3pp3n$hs)_*eZ^wbVhHw2?1|9eik(?@WA&J3d`nV>=-&|t%4r2t%GcR8+4&OW
z#L^`ALZx1dKL}=$lG&Lns%QHvJdKunUUW0ZG!fh3vqso`82ga)?PL523p=las*(9b
zUyi11;`gZUlKqzqIdOq;=?stS;yq=g%R=qOVyA(`I5u>OsUXAe<2h-vbhK6qTMEK)
zA7m8dmwwzO<98QtT;@AWyq&nav3}xz!g!x$5S1mpL#IRIm2#BW^7c_PSifg4GGoYZ
zsB%aTTf18M;w__~mE3gGLBWCU93o#B-@Vh6ql!~ZxJ&ok+Lj;$Z0Sz=N?Nue$0>X?
zu14i9M`w4$>y59GkGDVBL#$o=T))qE7u-Ai1pJoF6t>GTu5`;a%Mu7_9&7SbHGTC?
zBH<0-DKam4i*tMUAf-E{#)g|iz{V9qGRTLq?L3N^+T=-Qs&@rm-f9}sfA?JWA`F8F
zFNG<s>115VP(&5q3QsP=j^#|Z+LXOTqq^Rvzkr4~!HXF?PKU{bftm3U9M^iWHd-oD
z_Uvw;c~@DxnK8&yMo|hZtFPcN*gR6@FAi4|(h_oYIV9>y`TowgBprMumh3r~;1cIj
z>5{%rJw0PrK3{IsxgC{ET$YFue_X~^s`2U6_J;u^e%L?Nsy4}*Vd>1F*kZrL#&F>a
zqs`mFTAVt3Ti;4*L+L@*A^jp(qC=*oThm04`u0)M(y*$Ys;Xz?HB*^XvFVhMC*6U~
zGCsJhrKiwr!RPL20&&IfpzT~=#kbkvn`ikh@ciSj;eIEsw1xDCFR}BxHQp}CF6o#3
zm!#6YBsO18Y<L}qZf8r^w|WPab}}`5zB@Xu_WP?y=HC(1L^bDgDvEqbS#-XZpGdYE
zUQbyVaU9JM!S^_l$0**MbZ<THWxdhi^@w$^IQqVwJFgZqP2KAL;F>dBRdQ81vw7!w
zd=(r$PD)pXq{HX^?q;vSD$OdfR9f%29@}?)dKisIzz)q;s43m)ek#2~AoFOXS-M``
zQUBg&4sjhNzIEZbr4>?jE}?F(zTY_;;zoW--V926zHz$lpqr#KRT|Dv6LRu&1=CgM
zKi=MKFR{L16~4rK{&_ClE!UJ7@(g&Ws$nfGyN|z^YTM7X11ulh4L+9TJ?%W9*f}lx
zc&ML2Paco3hOn5)aYTe4xh^?(&+k~T^od#=TcN~#qy*nias<1};E)+pGG4ar>%x8f
z0iV@=PG|}~d&s8`JsT<#T@f+dBve)wgfH-qdf>@eLT!WButE6AZN1rg;@}TQ`tD1?
z%Z#bl+aKI1JDl344fq<HJ=Szi#FaDnS|jdz@%mJk+G7q|;Vdt_0!T35!x{%TYf}wb
zGX({>x3FzgI3#!?xEHW3c-UJQp7@{JQt<R}h=1FU00$Rh35WFeV-#VZe_r2U??1o!
zk57awgnt}?&YOk!k8Q-AKZklG%QC}0(ClS2o#5c`X#Tw6Wk0<+frAr;la+Y?83ccj
zj*|99wV`fwgoTL@<$Wa*O<0zRiD5s&_a9&VsFK)L-ceuciIgS*KYwF-|3>B&FqQ)K
z*Dne}+!xA7Z??<(j(i?pgAbGE_cD$$GLkdWx0jZ!Rn^mPCJUWMTA`e_LAYvZ8DF>;
ztZ_6gUVZaJ^7z^|$g0FJz-~G)D5Ok=K?#p`LFONZW4_-krb&e+BZ~0qn<y5xhR1Gh
z_{5^qsF2X-w-HqEf4*pzXuB@b<0ndxgdO9D^oHVZd;hs<uo{G~h(i8QQGK%(kspRb
zm*=qFlZ$2)`#%r;^C$meFSTq|p1C{*Q@N<v4)2VPQ*KL(@QY|_chMp3fBobCad!W>
zyqT?EWFkIZs|^nG)s`>53%CDmsQ=<B{^yBeX;1cw%kVOYlQW1avJrY?g{ih!|7#%r
zA4Ug@@oF=+!}>*vfHau*t$nrfzjHNgYe+!uweDD&yf%j}tgsjVDyIKqG_dQ2JC4Gk
zl`l|I5qkgTufG46gE4r6Hd!6D`xE6@ZauH{`&Nee6W6g9#+yGkOXA<VS@YGCqDgA!
zP~MVSFLt5Zn?Xfoo2Gwfa0VM_uOTW*J93abMY;7}CG{2FvyiS=|3<8Pxcwc5l%u9}
z_^vLa${wRsR&I!}pA-MD(+3uCgB(=(GBo0RrBv7mHMFOna#L0+>~heJTmG%^Q=nc%
zk!SYI<Q1@h`PTZ`UF+lijf)aRpq9+C(@~hvaDwuBYkgR^GLnYfK$kZ|>i^Da<M+3$
zVJJ#2YAmzUNy$U$<;Pe5@7dyC&MVjf1n&`GH%(^!z9*lHWlAF2+ryru-PmyY-w700
z(csH)fU%A1-u&w+NQ6j!L9OM#F%RC1;UMMBEb>HWvQb_}k>{iIX7EzsiT&S$#1@Pe
zNzB6%wO<@YWCfd}=_wP{yXYjn_D<z{|M&6vLn+w2?=HAXxZhpYJ9xkQX<Q<YPU5-V
zrh)z+DgFO4C)zaV#&~SK_V$T0^I)@7J6aB>hab5AKe8Mm&a7dGTfR-*lIw~eX<+@s
zS!VwEh(K9DlGMM<`ANyBE8Pxzla`ii)>X9AxV$6s(ld?!?S>E_AcPXT!T#jpY>>4s
z?#{YuSS`@%-9zm{OEGF$Uj+>q`TM^Z7$-A4m^+%7r&O(Vo@=Tm2%$Im>Z3OM--1FA
zh2*+mQ^)0gw!t+jc>cQE_iD}@GNrDcJ|c9zIIclD$n>|w&WYw<Qak^)`EIXxH!DDR
z@>7(e&?SmweT>hAu_V}^iqviK8lt9cQ;6T|FWR90FXqC~2GSQrVk_=uAkXv@EFt|M
zw=1TDM*~p$Yxaz$;H8;YaLpW?=WgqHy%joNTi@MO*CXj5QSdOMW$Ptz$|>`?EVdk%
z#Agnqh!J@LDKFh_XNnwFLli9oFu7$ipC7g%5v=n)W?QZXOaHHH&N#WP+EOK!XF4yx
zw4cP&C44UkPmgz4Xhw&WJfAKDM74TagyXp_u$<fzL!L<nTJgV_X??2s@g|sg<dYn8
z{Issy(#5QCOs-XFgW2rayX;lE@*X0qHxi1YLf1NtyLqX>t#Df!bmcc+2Xisi=Y*LB
zmtR>z`S6Q$6&=Fv$vy9adM9kIbrWryuJ0}u<&+-HL##+~G#vYBAnhpRI$a{0aVit!
z&o{l%kfLzV&1y)#rg{21*uT2$ewSk@MCV{y0J2iqg0JSSAg8_L`inW#>j5wM=@nAA
z3W2<29y>oP=5qfDSP0%B;c1%0Hiqmeq7Qo>bB+o^WGC|+Krg*E<JD7w2}{#q6;USD
zx>A<?u;))iFRojkz5A;2o&zj}PsZj4xd)l5UYq7n%l&{uI`L4t-xOT+8voyd?VlVX
z$}V(yVQINntO5x{Tla(ntRFQUCvX>`VG7hh6or@{4=M-w!&?U47Qa5-N_T^1;Pcv6
zbmN67KE1%#VG}y*quz!6;HY3kYR?<N&U;@Q2fFn1c<jq)Px7<#-G1QQM33DPU$b%0
za0GmtRCkiyND!o__%Ll+&tcGc;|00p>!Cv%py<kA_3*6z(^+CE2Fdb0^cv5SwQ7ii
zn$}*&uK98To$>d#Bk=i%^P)p9?q>h9@q!ozbDWy4%ap|I^1~L-?UAAOvhVXFWHV7e
z<4;Iy&vd*_yR9J6w(-D%FaO9{kqQX+;A3ygGqWE8r4Oey+dm^%zy<3!*bcD8#VSmq
zY1^<Fer?Gw3mk4f>A>jrygaO1&Nym)enJ)gEjQ3}PKMV}Vv7%lO+)@+;+lQIx(bH;
zTBsr{A$hqBDtWKPDu`|Ce-`dIg^;?+z~HHy$6jInL~f$q{2>+IZmckQ)>))ttMquX
z>H??B-sGCb<0_V~OdZt2sx{_oa1KQ_{kUnOF1JnnYA~kU!^8O~zL6-j@CM{qy#T{?
zdY=tjZnubC5PD&wYystenGq0q6a#Bt-l5E8H`{3X{AD)vkEIdyJ*l3rJG#)GQG?WL
z@mvMQGJkS80x5xZa}$f)YRhY8gs`eV2Gs`abZ6O^NPQC>MA}N?b({Acd}a~kt|ekX
zUeUs|tFKUiJB}pCASNcfZ@FJO#zQ=#rnHw>1i^A(?&H-$88A)w;iNMveBSQfD1td*
zgl{`7aK=zR)>uUF>F)q3k`SQ`%t6z9VYGdG`}}mhA_OR{o&ORvQ+HOy-@08iOx3=e
z3cbh^<K^KT`Cfi8AxGC0M)_rkn0x`Kapr(cKKpoJE@DMbq-_*NgFa44)%COdaz<aI
zq-umeUY7bH%{;?B+}ud`fp7nJ75Yz8(-rnwht+v&dau`0eY17)3T%z1J;eA`32AOn
z_o%PYcZXnoW&Oax>P<b4uBbF)Cg0mZ{o2Ln{@bt}H`oA}in9AE5~GVu|GH-E(86=s
zL-IIMl@yjVs?@F45rr7+1y2KUaD26#5JaADNB31eyLk>wZ}By$BN#`t;aN53e_FiR
z_JyXAfi6aOE6mB{tCZ3hnYoUMA)g|C$0cZiaw}f+&A&{63+P(RN%p9St%zX@Bt`3V
zqF$2<3^&j8cBORe^0enP9<b?nwGGQV(yNaZnxJdhzk?RG^H(<`<IA!SQE??T(^^5i
z^k>@*;aJ=mK6krafR{s&e$wKA*kxkqNwAn8{;Kr-8MB?c+`Qu;^L_@f@EJ!*Q2C*v
zr40e&4U%K1(Cva*s!g~i5^P~47?$vx>bP&l@4KG`*^>NeqVP;NK!y)c*hNji>P>du
z==fz<&lq}@$c9Q8wLy@2sCJ@`V}BssJuHnm<z0MjnE1emdx#&C*-UHSMJ)VhK&W`w
zd@T=Wg9_SoGkHKBs(I^~Y#&J162o7&E&gQGqU0|6%T`sa<GnnF9Zby(_6O{?LfUC4
zWT32@y%uu}i}p8cI6x4@s5oCWL9a|-A@AWn_X0w!B<t(7;`UhE8)J&6%U5!rP_mvc
zhX#=GYiCBbL*eKM?2Y#CaP<@ku#m@%HgHHz*~U+3I&SgwxEPmatkN=xmE1E--g1Z$
zx}rzUXGCmL{%0)(P{L<qa?e|2d%Tn{iKJ)2_p87u^9Q}iIY;uRR$1XNy|m!zQcksN
zao1h!izF0zSjECo!P^cF;gzrhRd$_R^g8!!+PkOOmaZFe;PVLItOV?S#bA-y)a1Vj
z4K|nS@_0C`Uyt4m#8KQaQ<n19YQ38(Ls!b#3?IwmnKSwEmH4Y#V42&pw;NwlYsfb^
z$S3MA66JjjJ?_);8-2HO1Rahnda!!L?CDL?@g=GHpT*|Cwk^StaO9ikSj8oHM!oY)
zQ_be`P7=~qRU$2d<SeN!)0#M>hjw1;#5nsU^MPnM=w+&aNH)=lBKFN!w>89N%6D-A
z)d||R4UN*_Qidp1>HaT}m^V0KumC_?Si9blxEpeVp5cn4ho+@~x;4nsbWrXtmFoL+
z8&No_@ueA-TcS*x?h>kq!->&6pQ+vQtI8hL__StxI8S&Bxi_a5mY=R_7x;tP1O}(I
z?Q}Ca>aAW_aZ-XetZSy!c1e#x(yIzN!#iPxF@-2(uJt1>5CXvtPrwY<p$O7RMnK<b
z%l#2!>18NMabCMI@qIlxFoCyg>K}!Xpb2R!*)1cGtz>TbWApZU6dSbv)VkN{gXUsi
zYy&K3+`Ff3@zo@s>O|*%fr`7=!Fc8FFmFMOvih~~pzXfd>5=bX_mEAyEGz?%*;YFK
zdH`XbOX(}-;1hPFph<HWl(Wg#2tb$P>!e?f@qJh)?20<*jkxK?*C%-&aaY!SHGjFh
zq?c@(pc(#@g{!9VlXv7WZ?p+rB@?11H4i+X`i7CM7-h|Nx#hJ2&PtC)CO$fIET#OC
zlYV{_Hp?#9w*~HSG7cpU6W3Ar=fwQ4kd>1Y{w@#J+UZ?1ggg~Dg@0oiU)c7(&x!hy
z?m2u=VCO6Fc*WCdgJ&{!4->gI{i3@TlX`aZMIJ4Uw36Ot8<Vyx04OAqV1+IRhNWm9
z5AA#-6dn_be^-83W&WzTvA6>^`7-AFxUYY^RShc$_~{4M4^P*v%XZ`<NwsMHFA?b)
zR$G2l7a;Bjyd%Ox#17?fGHwgK>#&2NLwZ;C5^f`W>j>srdj4BYk=u<Qj3`MmZpkV6
zYzH^%F`4b1gpq~De0Ckr=b6v)iMp<H0GCDg?R1RsSK<13#`Bi>>3d)0kv;oR%5YI_
zDj-TC&8ro{CvAur{)7Q0bm`8Yuv_MQQ75K#oQ8dD0t8{OVtUQ)`SF_d*YjnWuY$Us
zyJ=O<A`bwGc7(%I%ixITVsJNXn@q6|dYuXX(?=lWrk65=<hzB_Z5!+1O|p50Z07Bd
z`KxVpTR@hs@8e}R?L7ZXhLYDB&SR-1K+o~<W{am)GbX$aE03x3#7L#(N<ws=VTKXe
zwBF}kr6XTy<6e>TMy&J|F-Z<tD=eB280=~3s;NvqteMf<mD9ib)atJ@lFe9J|7!)p
zbR>EYy)1RheZFsfmOCHj(HEkhS&?IDc=I^p`>5`{prL0dN;n#Yibzmk>PLdbzevn}
z#Aj{1+<XnyKCs%@bYOC-KKc(J<X<7R5<o7<rU12egnW5khC$Z-GS9=?8p}3rH<p&0
zwMzngJ&++}*WmdgUt}u(Yx<wE8pB8C`*7;vr3R!uYgg9P=)1rCgFgu~2G9HUOPg$e
zjZz%5u4v+|&XGTzga}$}@_(&X;907EdP(dLGTVGieHg?Wy|UhJNVpD>lHvy`EV|6-
zMvP?NoP6KD{K+N!4UL_I1SN$(*^L;f5L{+ZT-x~MZt3`G-7s_8BO1qbh`smo70+0H
z2PdN|EG3VQEw_aj=BPYng`Azf%*1#RA@Sw;uwgr+8zqkfLjJIV(p_a=jZ+(ob!>8x
zJ!UR8R|Gi92^z2SpRLlCnzL*rxQ#3M;qe36NbpX31vfp~Iv)x`FfG~vlR9{<MCf`R
z))ao>cNUaCQzq&0+<^5_%D;K;j#mP(j@)b=GQ7`zWHNm{KY{@vpE|OdrL$>jSIZ#F
z!p<Mmk4m8AT!rp?w&O=w{9!Oq{ealw?LG_cu*pBt&3{e2Z`ghz{UVRuthU^lr{$G&
z$)^5_B9_Nj#L-3EbWkbBzaGhHwgcBIr>gmpz;cXFwwGz`r(^!XM*olf^kZz{1m`mq
zJbwP;#{JUS#j?)&meWgI{x5{z=p$(66i`^9^w)Fdna)u6ZCuja&6~rAJaK+<wy=6o
zlZ01a^(RAjI=2?ZZJ+pe^JIqDbO|WLM$50{n3SDMGd+(QDhf5ET5=S&JpsQq{DHR3
zhc<SM+!Y&1@tAf<v3QUmER*7rTCLT>Qj%ycpwQN3sPmxVqYxMgFXcLl(*$%ZUN?hm
zik$HQ6dW3`*k<riSXcXvw18A(2-|ge=S#W#bXTo|J+~*$Z+98jLpxEg?5N1^XM4lB
zfS5)A51*S(a+YcA&rhSz4@wmo&#+#8VG4qUZQ3HDKUyX(9~LZH;bnWCx(mnJxbsVl
zExmVi=ClQ8+pHzsDR`ezY#qyM1@X2tVWxq_=h$<(ICBO&)(UCH)iwiFw#k%a6owpI
zWnP}X0j%h4D$t(^UW|!HSh-G~!urR{P<e(B18mw*62c^t@LmEx({vkv5tSDc2Es2E
z7Mg#s%Wd|+woXH^{%Neylg~W8FO>3>D~vte+IDbKxNT5KZ0jC0vqc!=_Pp3>5V*>h
zU=FQR78d><DL8n)&U3s3_D#&pog3w3BuD)OeRzzEfftwWZ@F1voA|BOu>-qn%)%*e
z%6M9Dhj(E$!&r5!)Mh=M_u$y~`5v%ntlzSsNl-y=x`C(!6}Y(pMi}eqvAVWA>66he
zkMMiH1=npHb6_K9Se4YMjgx;qVhrVCz!~jTt<pa68XCg6NVXrk^((OUA|aeUw487+
zTaDq6S_lR6m+(9qOxA_t%d2Tw=Kdnz>%vir{C!umzM{5#d-tIw{p_X5aL2|yKf|%8
zyIUoBJC(OLDk1jgkiOVzBjRnU<Hc}d0ZMC<zwSoHKlruCH6rcKcwSBw!oZv0Rgy8p
zVOgY<!MFvE{6n@A$vUGY|JkWQa2Dn`@>dG}!rOUrcEwqa8vke@&!?6J+a~65_R*Q+
zt_aq3Y@$sBY5tnI80?s6IWP;G<jY^Y$T)0*I2#DPM#kN~Bqm@h$zBfVluXQf^gX{2
z1Z16^dMUrqz6zCWh!8#xhlV4J1b7|5=xm^3E+H;%2$}&XQ+%bEeOM=drXL8nMy_`h
zJb4{vUia1*7+SW@;3hm4v>gdlZZ8(Jc&|m0TApg#$e_lUXg_P;iMfAop+tg%oW$D#
zXuRxjR=q@M`~=jn$an^MpuJHNy0-ZJa>21`n7cTFn6TXVBkD0znz6t^xj4J(JN(O0
z?<1#2q-b||%U*yHrLcHgD5W*vxG0po^)$-vHB={B=xX-jCzf|Xy)v7h7L9!u#E3vo
zMyrO`?g$2K*5(6}2;g~CmK}zTL~pG0@3rn=eUf&vNm?Sve0Bcv0-}Vkr@=Q$_^{R}
zI#&#ySEEg`iL}BE7zdTKR}K5zAFAu@qxHDNR|e&GFnw7lMiu(gz09Co^7fQy@R6+D
z{GoP&dNbA5+&BS<Rct>M97sC{U-s~4#1H_Fkc({-=Bodm+}``$<LWKko*n<L8nLB^
zcF0|3cpfQBQ0ru0vx6hCqusizMup8Kj)s-%^mKiSx7Z&R-myZ5t?8lXPRCJ7!nY<>
z2mAM+o{ci=2&PIIkL#voUEko&DzZ@_)NdAu;F)vbk*e#Qln}6$mELX#eQyu39f?T9
zwbC6Ch%P6cxo*+X5=KxIAG4N?Nw+&Wg;xJ*;O|0M1jQlb?ZUzcf|rvj`+7v{gozg!
zum;_+64Upb1pkpL&b#16H0o2wncMm7v_)8NKM>o|Yd&m&UV+!qJ5(5V9@CqbZIz%i
z)eS3;&0HIocp^(DbON;9FPYD??B%q?Na_7{s8pFdnhsCzeFVAgUCdL6h4k&vn}9-|
zN7DBFpCM##?+kV#*3xl*l07O79kqLYtb38lhX+-lN7+XA7SmDbxHo;G)GUijtlXxO
z9^uO??$Ovzj}z`V+0!^U5&7#C#jaq$6lpivsBYz*U53}uGiSD6eAyelui#HjMZ)hO
zJ--t<oG<w+n`E4dtZ?VX^aLJW7nK)SFwQP}i#<7B7$F4f+Pg((p`ORO&O01ClD#au
z#-XPjN#9Xcv4TNJ*f{RpuZNt`u`Z^#NjJvZmCT>9d~Z5`$>+$D`kbdO=XhT))e(RU
zf$*{9tNay<#cixUrx897L**DRqCLe4yVoc&E}`$(^9X<82<*YRA(In)3vH+2ukZXJ
zo<WPCmiLLdj)%X6uarbzgCqAd^i+umkYTVvY?C$n@pPFs)%w$NcoIkEha`UnWLe-_
z%VtS~mIl0(pQ59!T<fCS0RKj?f4egBRDJErYD{4oyMzzu`(~QiSZwWpOPG~nJf#J|
zf%-lSKZBAmt21>7#+~S)HW3z>e#48QLUkU5d|o$1w&KcCKd?R_pWzEkHk2O>N+cOE
zE_Kr}KK-18B`T?rAadKU^hzZr$U%6Oc_WlMnx30I-i;1Hnu^*$Vudhxmhe5Vkv+hF
z6-IgBGzn;}>2l-qxW@JE$F4|ff&5JTyz8UZu{@9B0T)I(_t-<VZz%|lI8rnJqY;Bc
z5IC$h)-np45$@_>beKXR4HU2LYZjPpy~q`hxIFXC!6s*dVZsdYw<`?WLRvmClb*tm
zreIa~fe7ysruA&1j<fc87;&T))6*LT4(XX35oA42lWS&QJ39zo-MyQTV`ZMcJ%-(2
zW{K!POA}Dk#v|UkJ3qeCCp;(}cFd{H=<8|u?x<B<mfsKZ<O{_K7o-%8T|2D=U$V=n
zBi%OCFvra<e8-f=F#V~?bETSo>Ib`(vPE+qUwEB_pO&i8*qe}ds0$uI%wvgHZ`mT&
z8;179db~uA^(pbJLnJe#vR&@jjkGK}B%X2h0}9=|Za(OqU*`%OgR6LH)9|Z@{lRgc
zqT69Ct&o~TJ_#xb-}5g!7Nt7%0b*0Jwop3ht|&?-sl~opspD?!ng5?G{m(F}ZI+4+
zuZL$xEng&-#YNbNY^L|kl#qq<oywSE)Ic|dSiU6?>)2q^`DE?ne)+j22|0`nU=&mz
z6)pWlM3_G7wHkxX%KzPo71!A$5p&f*Ai=YM_xa)6yZ|vh8<kC5BMija<$t)*DJlyX
z8#5fr`Y_jL{-=FF65I3+xJ}1GXano`fDKkuvC9$(z=T|HiS;`YyQ8p?%Md8#yR3AM
zy4f=`h+^UqH388Sl|!&^Vz^GMfdTmyOPhVKKzFyj=JahkRiiwewLhV4ljH2(&Z>F<
zioXF(SN67Gi#lt0hO`J`W08*PPAn1dP5(Q1e`?pWe!6_SY4Cx;re)FjZec@DwQ(9E
zD%?QNg<~8mGCH<42ZauIX?sIG`<0407|pSigCNvR9hrK89Xa07!MID3i4Z|r(0c>X
z6+17TCcx6+@ZoNzH3O*ZY9znj8#k9DnF6Ev4ssTI{=tD6Sid4DynX<-zHcV=*Pl`r
z6Ad|4OphR@W?JKio}cy+j9LtF_;m|VIyk}3-z`8-9?9iFXJUpL>9(Y^NN`%#a<{jJ
zNRtudWEblGxPbk<Ihx>36supC7&^{&XE5&`Ej@;(_cq|vU=VMOXQI%f?w6gvFz`<A
zh9KNn_eg+>#hcI60XBfZ@2E0`Ztf|258@Ly^@lYYCC{UiOJ3!8!Aaj+G9NU~POXKB
zC3*G~gl|LIHeygOVFXI(uZu~?>iD|+6-|P_%%^|U4)|)FvM`d~+|zfMhDzupA`h`x
z`B8eA-*a*B^3y%E?liY#fBxVCuEt3^#lF<vhiFEwGGiX2nPvy1dXM`@@*w0Dq7S}E
zlUEN+LdiBJd%ptXF6xYm%=w3l`3I=ei)d7|jh%DWf0hrNAbh++^0Q#e<S2eiMtVzm
zfl>B7a1cdg;FKUO6h7pvMbUSAcU6HZuXz|U*epM$tWRSf*`6n;_nUe)5T&<BP{Acs
z98KUGZx}oV|8Rww%2)QbaSOKM&;#F2#g$WY{qv3#bHV4uhz*et@ATThk16ljkXZ<K
zx>DsdKzE_b6@d3H57DM9^3m|xSCl#?d&U!tN-E8x!uPMo8@N@`5U3A}Xab6&1V8Gy
zOsTr~Q;T)H^*5$Irr!vXdF2l?Bol$fYK?EJ9o)fbx&Wr_``$DDfJAml7keXv41a_C
z0<uBo&PF*HH@V}DfUje3=pDXiHVTlJOIK1}Dlp55g?-R3YCwJZ@<q~V?YJ9^k$TD9
zbQ*U$BIctrMLf5lfCYun?KRMJbPP%H#ELGNKXuRNHn0=bS7Ta~-^q#lQpbT^nD7*)
zq2^Gk_JdZ?@sOmo`(r1k4qoo+mkUOq-&5?*+MAPaEpcjQrJ-jVzj|yH)>B2!)i2+D
z<KZ+kh)cY_Icq{X{;(;WNY%0bOsNCFN`|ea?6M$X2I0^9U9f^(78}cwaeDrg*FKqg
zv6JtQQkA&E9Pg%JhAbMlU^Q*Exk=Ri8OqN54y@6eovrfuT5G>T@E@YXe<ooJOwc0Z
zPoo@aEDNoK%4>v&EZ?z43+=T#n51@CHE_m%q#l&~5-Q-BZA@I|+fdK4tY0(oc}gCa
zm`a+TJDD?G1i*^prK*3#R`wxc#AMBQlOeviV|#(%pdUr-%)27P^J|}wq?*Dlj>E5Y
zULQB(WGAc&%PQw{$L-a#kq0k<{R8pHAl_FjfR{*+B(<<wwz0TXc2!c#9%tF#i6!yt
z+R^LBKWR>GII%{)wWs3g3+cKH&UH&V2d9hI!?!Q<w46qX@eaE~OW&nLmyH|XWSH8)
zw2DA!nR!oP1s6a8712mpNJ(7S?hTP<X#QO5w3d}Ba%a^S>LwV429Xv%i#6hzftVQu
z6>$+^a=Te&Rlgk_2V=4(|KYW@41;jP{pIp<dw@KS&m9mNNL1arzd6@=`N7{}$<~NU
z(P+6vDexsgy;%zKNtz(REAVual{~@Du~{0mOMs+%mAXq2v%*ND_}Jxi1T24O+`$Ho
zA=b=x>i~kWvHYn=cZMUcUvzyDT%K442E*B8VO>yJ9}TlAQD3=v_ItXZo)y?VQL0se
zLA02i3-<<?uD8x}h!wOV(A(l@-Kr;K=qQklDsE^2<ye=}Y?FVg@U-2EMSfTWECC`^
zNs_(`DB&^c{{x721SpyJ+R4eIJ}H&PhVpxEE)^vX$a#t{%4F)u%MCk(?G}k|@P1rY
zA(2b`tC=E-z{%rZ!O_C*J%2G{zLBoyrLpvbj6{j=HqN<+P~@P#yIE&nkQ7bZIO^RV
zRd*kGEYKH3jk;=hFqrs9P-2(F&Y0UF!5Rey{!{_M=tqUX_o#fIgFl9iOqxy0_suft
z)m@Jpk|ns!_tt83#6I3;sU29E_B(H|mj@JJz~ezlIuW;FtjG8Vj$p!Eq`#5q8&1z3
zFoqs83)k_}JS(bu9FOJe7CjHkr@|S2wVnjAUJS;#4wEBFfb@n&!+hXTPS*>vql>UI
zdbp-QPLcZ%ET5BrS`|C)z8O~|1uDRc7}~k02Hig>pVD^21N5gCgA$2Tgl|g)#=vMV
zBT5d*jah37-=X%Zj=xh^>>pNUjiY7h(m_VOHNL00BjC18@{J9n`e=+#5wi!$wR6H}
z*0rtUEhkR|rX$T9J=_VQvpc?h`I6D*Tvv4}z8TjYj=>cr3vv>1r<BykD<$Y8=P`0k
zmxc;YEaRc?pd7cxzA%nyPe$ZbFLPeuh{(knVyPl#nePQ<5arQk14;I1*i&KUtUcQ$
zEpy&apMC9Rtw{!7Y00jJtrRO-vkqRE;C&Zno9)%vd=P&|Wh(&#FrS30x9TNRjnlnR
z$u<8_@uYP%t6Nq+e|_g)5it3;q@eVo;oN<>`#tk%Pu8DW-|d{|`?U35kylZkSGk{M
zP{)o;&%O~$OEza>StT)H0J6G{gJcD9jK7`xpmum+qVXOzf6FmUGYy6);>5yZ^MBd>
zJtA;NyqRp*yAG!kRr@8B)c6C9po$<2{>Lky`^OHz)kFbi;{;~V7Gz$dU!QQh-|gnl
z2>21_F7LX6-y)4B<?-j`2fN7k&oe!G5gkZnya^*08!)qMu)9IiaX3%5jFAnw7zCXy
zT*<Juo*CV(Bew3>3HdNp?F?8h)mf*Hv|MRdSbiJ~z!I(}%Y08A7}8*o$dKK77GE~m
z>1?$LQx9Z8?+xwW<`qWo77}uGtLQfc@07&al(!>a>Tc+o7MHbnOl=u0@bCXtS>}l|
zI`N=2b`EM+M~c*WK3#)xf1Y_>DN@sO!6*u)sjK}JvH0Wc;p1Qalph#W>>+^{4B<H=
z6OLm$A?anpAUM7Sdu}1L6@lG@!`yTQ$<DkwCn1KzP>1vD#v4&!jJx6R+7|SgT5wQM
z7^0zX-~QtEC~tq#7oxz!EFAjl$<&Z|bo=6+0k~<+6ie#Xx%)yKP;+Wan(?-n_oUPh
z<wImk!u?TG*$n|#-lo*+E0|+Z6|ag37$vIuhzZ`N)`+yMY<+$_mOd$EH6%SSPT4!z
zl6n5fbKkvFX6OnO&e{wZhPAUCx-cpGlHVm8n)6<tz&DhJFM2Y<>FY8o-z_N7Ev&NJ
zfypk$C-dye_JK^^y(w1227r}#u{7>FsG<zP$EA`+`WE=O$?99!S3!KDApV!?Kvq85
z%6aMZl7`pV=&Ss%W&0$ajf>Qucm?Bv%FA{92zCrSL+^IJ0m{tSH=S8*-yCqvReyf4
zH3K{>dYupNPO2y|=gCHw4|l!CrVXTZ22#rxakM})1>GG_XG(z_6N5pXw-ky8F{ae4
z*bRvRUMFwXDy-jdMfp>8bWx!0iyQut4I)g8Q@$W0u?>iZ+=%vwV$cyML>LdA1~-yz
zK0GWD`FoPL2rXS+KV_)U!6^E9%g&e_U2cBflB$UW%Lbm`DQcP?OVy`)0{P86_hKHS
zd6^1!IwuMxrfj10BU8N6mQEq$J|GbX>Tw>Jau5G$*Xx=lQRkCHv}I9ecHgnjb(2Sv
zEu9N84dHB2C72Ab@tLsWSgQ8vZhyv2*J=3OrHgu_wBJ>zee69&z(7=9R*&b)dsK0a
zHK6*Be>#0S72sk&qAr7^p)htk70;i|Yq2xL=8s0AYl25M8Ag(UT>NU_9z*Q4ETP!v
zIVRg|H?cM8XR++-{i4e9C=j~}Vh6XdME@a-TQ{flSm*PG=@g6^OQ2|sc0zKsO>*^3
zho**T9&xae5zNnIM>#MAkxr8)ycK`b+jI$2)jnZ;j}V<py5`|BQWRFjBV)uCMGh&l
z4_FHJV?X=V8tPUGQg1x0T|iEK0G#?>Rb@`yvsvVCK84ZC!H}{(n$hC<sEA0q;{d~D
z<;Ecoz97$D)7O3jrt1%LOzCO^3rs#u_d9m5mfAZs3d}hXJts|Y_aYQhP*%CbL7?}S
zlMCj~{Q$=>eX$D(7wL*#@43v)xL5(Tp<v1En`eNL5j-aAVm{QFsvHAew@f`cCuBPG
z5I%l|z>jcE7&^};loTPRMH}<46<fn>74&)Gzc`;eFj#-P*-LAHaitc)KZLIm6GO93
z3PS%_je=x2kkM!H^oK+65y8mLMu6{QX!0TK9k^YI@~SBdTd8)?F$`)%21+%f6I874
z4dd<0J67JvtkZg)hg3H?vOiu~#y1nM?Ak23%rJLQ;BA)SbP6CLYR|$<RH~U7jc<jJ
za|q~BN8Mt{)5ohxCCWh`Zf-|?$(q79|F~2VG>pQ079Pe0kWSX>yTllC+_!ZK^na>p
z8I^P`f7BADP}wvLto?y;->92#?6oamdE9)>@?GfZW_@4Gwl)!SlvmrX*@ge8ejVLV
z+g+rU59MUGy@r7YS*32-=l(8F|M_m_^3p5FpH)!9XALK_k0&3-iZioE3HDIf3e#{P
zHryZ9>9gB=!X%RGt~iTFbde7}_WJF_)EOG}$ebtXPAuvH-huBI`!3TqVa6T3&`ua*
z&-{0_y=_QoWhI6@jaFeErY=9}A9j*KyBiHr1A)v&UgbUKPE+T!qfvtSJpw|<(+#K?
z$6KJy?R1Y+n_5|zBB$B9b_#7d8(_p=0I82GJ78;0u!`yooIx_5s`Yi&-g(k(JQ6$1
zra6shuJbbdQCJ?=RLnBm-9w~+{Z*c`e|V$2a~{)`WYP*^sYj4VuJCNr^5c;a;qxlH
zEiXV16b^_vly`Z6i7?aoMLkZuRDJPkT7|sAuq<oWta0HMCt|-AFqGu&Up?T>1Fq|=
z9N;~=a5!P9oze3g9%GdtxpU}%Y{0a;xzTKQ)s(2()x&Ss^z$z=xY_qQuWX4A6Sr?*
zL`rP|ac^2>h>MopypSN9MDynP*TTd?oNaZl2U!i+Dd<(^PV7T@rW7M#UK%=tnHyk|
zO?pCN{Sw=Va$Z{A<G4E4H+88ycr=`^G6_16Gb<II0aK#?rP%M#Ab79ePu$E~i^H72
zWtV75f2cdsrbDk-!4|c`pKLABd7Sr3zIQ6Ch1itXR4qV~)%O(qvb%8-pK&tC3CrtY
zS}Vr*63m8}x$`mKxMtwQ88@TE6(;y}O%{PL-;ncfsB7EQcyQ$<67>P0lq5M-uisC4
z!dzAog8VnTTxOyaT~YFc`~-FY`59cYr4!V!(4hAy(d4&*W0gfi4Ja~e3PqR`Y+3Mh
zYdr=Msyg+Yv+sMkT---Jp(-T#tq+^5lIdZoo~;%^+N#3V*^s36H%Q^^=>)wg4^GBx
zZ;^v6=;Ucg()R$h5+Ndp3;?2bG-X;B*kTnPUB3KDeX<s}J%N_!&2IBBoemLDn+5w|
zS|k{g+?yF{&Gk~KfUFD*wqPrpQP9ACsm-Y$9);v1K56ZDy(U9oA-ha>4RxMUw%{g1
z7SE!6r<lCL9RM9tdJd!L^-Bo>J5-?cG#bHeX&voR7~hl!899boDZ1OZR)K!hQs&>d
z5BjKMBBzYpyRfBSckuhLS@hL>u*!r(utRoeaHZC<HXX3+2<(fk&x!T4w`_gg^AFC+
zp!!vk%XFCK6`z@1!wn^eHJ{iIKd;a_7zmtRZkmC40FCB#gs;}!g9u-M)K>Z8pF-IJ
z{Tp;0x^aV0x<KZV1romS2&I3-oo;<W2-U~IWwcW8*+7Tqn|pWtjr3&8WOq7=MHydl
z&IoYWXoyf;vfBqJ28cCJ5w)ZIOqxFQ9$0${jZ#*F+Sq|ld&EqF#{lrOkd>_j48Zwe
z#YoeQ6tT@~5yr%e)RUp*@OI*t<K$hO!pB#rx_pYTt~auhQjIyHxxkL#c)`o7pZ%xq
zxV{*<0yVWzG}@-<=kTPn(x#)g65mlJ3`zAUu`?xGKW1N~*z~GUe|<Oqxv5H$ORjFb
zWstR1kkonXeRmVSji1jCps%Zz9aM95fV?+^dq6sK2=o=D=RsUKu*fitJk(*gZcS&c
zc~!mjPSrv2BTHak)ZI8$l$0D)Q@m~9p8C<GnsQ*?(w%s7>d5u3pPty;Axe-Z0Rm8p
zuEt&aE;Ypc>E*uN|3ceDx*}Y#N0(hDPlU|Q@RaV*9mrxuZ>KrgHXh_Z3Q=+eDAAeL
zF(cW8&hLO(hy#FsINduNsWAd05oGC`LFS2}x{8s{WdJsc=#3cGhFeBr(yj)&p0lSL
z1%g0vRASkfk<mJsPT#E`XxKm5udeH&+ERGvGN2gZ0!lGh$zqze`fPV*&KBBe4B!Zq
z?xjZ!c<t=0PN=dy0Us^Rvlj;B!Vi!l$!lcBa_wqSOGIVm=>vyvrJu!00q{;!6+r{I
zDuUw`zMYsnlaMUVMy4n0E`|v=zDguL_sdOZ)8QZMy4TONHuVEnmaDf3^n(1+a_e`v
z2Y>S@EMFHp_b&TP+1(rXP@oFH97GXsXr}_(9ySxO)V3CyYNF{DSYhV2%Z&jtzS(v^
zLxOE;F=&y$d{<A}HsG^bSW*KmiDMsS>?A-=VhW(Rej3|asq1|?wF@I<59|0!2d$a(
z6YpPKNUOluOp}jsR$9eU8iG7;ZLQ;zR{yU2aMJlhtjPCtKBrb>sakEjXUB87OPhIY
z-B?6jS5&H>%7kFKfR-f$lZZRs-@&iJ)@7njCGf+Rp~klN>HPN)$*!*;!wB=+qWV*8
zeLf){$npE+TA1J`CK?RK^jyHYMv+3LGsgncdIQH8*C@UXiM)CnlCQtoEAr&v?$o-B
zI=^FOVaE2`gS8-B+#HwOdG&pU4}ia-=uYjd{(8wx{|@F$&9r+vjXgs7A##qO2r6PA
zDQs%YfBMI<5F{-xkrqmHn-$TzXwW6C9>Bgg<d82EI6le&YnxxPoU-%)aJ<sOU{zty
z5B1&M2=L@go%?QlAVbC7Hv&uY_M}cQ$jj?MUC}CQ*=^B5dR$$SH?S$qEp28<f-ULn
zWt<)3y?9dS*elu+B13G6{}Q_YRvV-k;qOlJrtkE7XS$+f9B-C>AoTW<dorE!e3zno
z3q=GTuJp6>2nMfu|7POO!AW`P7-;W&5dxnwGS&OV1%1@eT_?~7RT}6!R;c?VmaZtz
z?|r^oA|s$geHKoWJ`IriMvI8wfF0vch%B_zM)q45_C%Frh_fcIgm7r=iK_;U1eLxZ
zF^7SlTYVa#!|8}<uMMCrZV*i!x$q<*tT()J)&DDe4hPR#jg_gt@ziI_N!(Su%b!t!
z_3US2a1qj&V4JuYcCxdR&p;J;X_CZd>6M>!M{?VGZl9IQ|BIE}T;GdI=<#74jnbs<
zP<#1K&0*w^fA=xZYx_Y6Ce%g17uosVFG$wj@(nlOPxqx7k+mojAQQs05!R^%W{6<o
zVUlq)gM>AR?|sg!1@OnYA46X2RZST#)rue~_{&OEjkP;r1JvF|+@3H)7j@Kq*yUAB
zf~heuLXhvc-i)hK>T<M`r|D>GRZDjnX5xR_JXZZmMDV%xRjsz6*v71_2LS3qRJQ~M
z{Not|QM*?wq}2zS_PlZfP9%`iH3#6aw^y7BcLu|0Pl!cH>`7=$L=u#+{qwD{;8|NS
z6?x!iLUQIaKm<LT?=y{l#*bZ<(CxXRZN<PJ@^n%7bq|_JVAL3C8ED1%_BK6=yAG_=
z?Cuq_g1N!~r_?%3*!XAc)MNxG#;TVV31o{({JS~7jsvgv(^OOi?>>T1%8EGkSm%0w
z6S?yXUZ2BLk$*WeREr;{bDq{T$JIN>=G{V;lL*Th4GC|kDAN_sf)W1E)sAeVrriy9
zo^?fi^>WFTuo=mD=4s1jY?cnBaq9+~j#U0XZD+TqwjS#ljo_n2!}aIAuiL6?HZW~f
zG7jwHPNeFRi}liwdfNlUJ-qI$1r>~H{~gj-vBY%)s)N)YZkdAqw@m%UUtibTD#f$O
zePUt|OsSA6%p9c+WB($cGjnFCyx%wXcEP)V?m@)#LO|aNngK<2K*Da&4oQ#k`|Rl1
zBIi&!ALj$=aBDhSRS&=-Tgj`-w*5|nW<s^ic5Y+<o*roRmlKS;$SlQpNSfwGik2Uo
zD&R~QF&{|owTV-A7wDkL3#G!`L#b2i`mpIt^thFDpq-k4zMix;UK)#CJ8nSWKtM0%
z9PajUBHVcBbk45zG2G--ti5eYqc&0B=TI<}BlrGm`}k126B0}!t!_V;nlezV+n3G=
z^{{M0om%rM9SAuu7nCH{(>3;JbsFKL^WNgjWccNnt_{nn7>2xvji_A<?66Eb6ibe%
zF<d&FmZ(EFKb)O@R!x+^Fq<SLkXK{%PA}Vj@>wPG?la_$CtP5@PATnXo+~oDnJnSY
zgB)!Z6y=At#~=Q9gmOa*iXKA4%ioSGXP<zQns$CY>75mKG?us^$gw`o|3*L!s(wNO
z#!;@M{_%3{Cg1M-KB%bhjU@D?wBJZha5ID&-;R~UU%O=#yW@53i$Jt{1y&>ZxS(Iz
zqQLBH=eBdv*ondsHx%E`&ZGTzSk2;AjEB~v1xkyLrw`+>6$Q`Fg*zP9NHfj#^CqP(
z@Hk~Dep_8p;<&%cd_v#T^wB3QkQZ#lNpy1+HnG0s#fq~%FsDTq_UbqREz3|4uZCF7
zSvK?8Rx^Xf^KRhkaH&Ov^>UR$TIy_@_s>}Rgu)y*$l;}u`I+syG6@q})Q17m<NW`b
zTK~KKnF97m1KeW;t1v%hN#np<%K+KpyqalkS^xDRCy-|yEsXB-tV1qL`pN{(U8S+5
zM@Gfvy|RNxC%Hc-=+_6ycMW1(^(*;Qo;*w_x)Y(1EXW$0VMLrfz(n7I3*iMtUF<X;
zSkqiWQeZ`wK29|4Uq9}#!BmIzhD{5N!f_Gy%uYzo4XVd$9#`@bgx(`gQVfQpie54X
zs4un;mGIF!@p9J{f0XIwr&D$sPS!|nah+?}GXV7kC~LFpF(NIyC_l1Gd=lK8fhWyh
zoJr{9{?Z5CgAR`rt&)+JWR~gD!gb%J32Aa$F5rQwEsQ8#9#`D(VE5lJUuySfWsr8)
z$q?`BwH_#~;cgEVeBP&Jhu;5>v$qb*YFpQb6%bH5q#G&e?rtd&5D+A#yBkEhyGsEH
zm2QET?r!OB>F#g5>+F5@_d92;v(DN7a$S>m&N0Uv<9Y5H#9?%|1~Xg&87xH^T&^&#
zsJv^@;_z9~bpII7z?kN*N%tH_`9M?7&i%N7yz_Ln$X%b<nj(G|P-rr)cWv*^FnQ+I
zE#pZuw~i=!>)*-`geO-{TcSsd+SmVuy!ZupH4)91c3x(an%AQz%mP{7c2_poJcE`9
zzpfpln$v)hqY^ZaQ&=C|Uo?oBV&WnFVS%ayz1zh1P_ly@(mT_;8v6fdt8DI<{phmj
zoZmq56tf{mRe@Ik)5wf_2w*QY$=L!c<dzL9q4X<2=ly3><&UP<FtwS!Drzpv=csPQ
z@K&0{OWt=i*&3xy^{R`+gF*0mD@W2=3G75H>wK4%nO^7997etI2F=hWQWo0!VD)`r
zgEuB|TZ?JORznjwY<_KI_!HAKq*?g>C@Q<L3HV5!DpBZOw&IT7T`VrXnX~^)ljX@a
z4+Qre8&JDQ!|dY!^GE=w#P-e4^5z==#^`{}9w;&vPz&s6g@&QN2?_s+H2s&0UJM5}
ze}Bk~%~Qxo+(_}buk7T1E5G_yL%(AiF4L-dD(}n;dt?uKQDEF3F6;6%w)OSp{>cXL
zVw5HHR@$efl+75w{m0wWyL`&fc=|>%?*f39hbGpMfBYKDOT<eZ&X=fh0e|Y_Gz@H}
z2xExN6XLdbw`cYJYfqX@{G{v6H{gt9mtG8g_0LcA&!zo;_E-1#W`G)v`S{$in@t-f
zDPYkk0#Z6k$xHCv+c2s>yW%etmj5Z(!=o6Uno7D9|IK4P$MYo8aO;<r+FwtO|2oG1
z{5K*)n8{pL@7&KO)R7J%e(biCnV=;+`4<ZKSJ(ZwmlsY9<7(4yC3fHD^nbq#@ZVT4
z;S9{p^YS~d`-r8pB{u$ax%j&=Nv3J89M=yfK3l@$(Eit3vZu7R_-7Wt|NiD!4B#?7
zk9#<7epmcqgo_{*)<KJ;bbisV@fYCW|1?;>pMaZTwJN3w_^eix&?31||Mz$D&zJQP
zPAdLUYbVsM##sH!zzq0$<mJ`pxwEO*9R8jE)+z8<fM=x+BaP4Ln~G}G6%P5M|NFlY
zK|^o$qoj~#m^@qh1&h#0@s|tKUk^_w+hYLS$Yprgt1j^*YWX|;8<y|WN5F$>z+m{^
z*AR^eFYI4q_BWH}Uo#nR7miv!`E^#FJ6NK?KC5AaG5L2s(?5AwmR2}(cGY}!T`$h(
zt(_3axcW^ROREu^$Nzn7!3xUr*tp=2M1__=5*1Jcc_NRb^w0iNxcjf$|0kaFSBq1l
z2w4Mn<o7xUiQfgyWw?={Mt^t3pS-YeI~YX5t27;l&0t*MT{mnH)$sbiKbHtIy2!6f
zXu<=GbT2#kv$KBoq4sb8+S`Ut;PT|%>NfjKAODvJJ!N~m_}%?#OM~mrewBp}k)i4K
z_&xm=a2;v5+N87Si|y?0(nF^vX9M+%e`lT5LuBFP+`yjj`(mp7XTSM(6YZyz9+*xY
zr{k-g5o3OaQw6Efe_2=j5BEoml`Q1tZs5LiwAw}EAL(xU8}BQ|e;J%VnT-Ga?zV8C
z-w7h|&Gq%OFNV4`nB2tw&SSk8e)`xy!qs|>S>D$$+V<aCu7knKVd!d|`zU~>3xh5s
z<zFlI|KW~&!ymzP0pIFGeqm<xo`c%Iu{Hyx6#ruZuKQixhgZ-|*`c3RdU;@k?px3u
zOY)b0=WQ7QOa0MGFso4&2~nT_?LS$G|NX}bnxaxH4L#o{quF6hsld8e&7t4wpNr6?
zFAQf)`#;Q+Klx_=m=+?6kD?-O^#f|lHhRiv1bM8>d#KGomds$E&JQRdybX2a>(>(o
zMl~z)@2PTRLS@t20JQpU0x(%Z+}`Q@O!t@Xfot+?udVSIID&W^*BNc-dO@LEk_&8+
z><TGtUv*g*E<3sN)YRW|GB%!$cANw81I0Y>GvBqI?nD8T6So!cUrHVUK=!A>;FS*J
zu5CitYU7Og_vh0Yz(QvRK9#lvrzTG+hx#3L3?F1d-<HaGK#kB@0loP)u&K)fZhXHq
zfp^F>l6OM}U}{#7LXCWRC}NI0t2NEC=y~!Lkb+FW;Oz!n!8+ztujKSEe;R_z>05Px
zyJ>qlh}4>HK?AK4IOg*}4@o@_h+jkEj)LzGuQTLwP$i0*BQoFDE8}XfLY*ifCgnjS
z?gfOhlVf<j_EYSI8fMOoM3I|!%iTHIGac9nP;2E8s$CCNQm)5AV-1OAsnN=GhKcJ;
zH&klw{<HXRKTB0C#27=<kM3`lc+5s~{cW=?p@Sdhdw%TfgGTCmHmOz8ZTTetCslNb
z2b8h62CXreJl;#Nq%y(Y_HAlrOty2TIT54hvo=`>vH%`jEWqG_j_@C5LgjlP?Jv|7
z?A$?f^>01`5?Tdj;EXEG!Q0z2|K*#aFRI64<pRh%MQBYL#td=22CC9bYw*_f^LxF>
zilyB)05<N~1=HmMIms{sm7-E`g`&VwJ2Wq1Q`V&cvKA{h*>?@-2U=T8-xmf%aFM{p
zY>^7qtLrw>`(ZH#ztd;FU-**Tzk2V*=ZsWX@SAZw3w!MaY`w2M^&D=Gx?Ij?*y7i%
zRY|M4>vbqj33vV&-f#D7^?-%IsRyR^EJxtZp72AdmQRn;mdo<KHhU83^zHA)*0&Qb
zPa*B?#fnTpW@dJ3>xxl`uz-%E+}1Fj(#1IgD55~t1nSHC-t7AQb%R%;A4Qka*)y9=
z+3RXCMl6}E+X-o{cA*6Ji?I_q_+i#|YD9MFFk;*0#~pPaHH?ibQog(&u<ZKqV<Kp`
zMdlaq186l#J237^@uJfKmUGXn@N43$;7N=^3rg`vLlK}~vTr41(;1l5FpP+y3$AmP
zXm%*1w6v1`2`KO}CGX=n4gmD$!J-M29^OwmQ%G$+g_*AnI+KuO@c)~22yYz@uV(wZ
zg4_V<uB!u-GHAg+YLAg7!55aEz$|%Z<35%a$|ekagdubpRbMEh!w8{fqgMy|uG3F%
z`gHGO6?vBZFL})qp)w}rw|Ow63e}+J#OaVkz6{g7HQ;#e)m%P^yl3A0is17mVmjcq
z&321wnDPqlfpv_VV!aJZ%{%Ho>)|Tv)j{7Lb|f0%pukCgJErJ7m{9kQqp~z-Sl?^n
zGW8LpmjD#1wJeKOwhg{!O#y)g05|x_jsI#BYj!ZxV8KmcS!ZE>3-y#7v37x6h`ZCR
zoG4V?$Nh!$aLLBEC^oL*E1HD9rPP1760)$tp>wb;gsk!zSAS^C2h|fYwF7Yk9L{^k
zk?dc{EDz^3O+`Oi%lnwL7QLZ_#guekFANgHYk3=KH|e;G&XLxdG5g4K=LxgM2<~z?
z^Z`<*api3Q)E{-@d_V+p#5Ld!c?GN*a_@{&jGo0%qA|{Nqw76$%tPvmTLo0SnmoA>
z8x`x6^HW!*D!CsghXU$4V7(2Xkrt@!LZHjYH|<}hZoaYyb37l)qYIg!aeJQpT?a-5
z?Y4>@N<4>XwRK&W1Hyb=@`9uWrXv-SSpZ(N^UVxIk`;tQGc<C+D#+J(R%D|f$519g
z;mI8V>o*k*mU}_+WOJ8ygV1P`qVnFC9hI4T@fNhZoZh#W*-Y^knQj|q`5IP1RLqvp
z0!CL2=8DyjZ^Acx8$Jb-0L?2S-e<pVlW7KNudG+b2Y8n)+|X~WY&^6CQvmZ{1<|R(
zG#g7ic2^H5nyCiHcwD3Jq5Qw9-zDg}5gI7Ypk(s$>npk2387SVlbMXas((4f`7q!V
zwu^kWF=si!v!GpXs-%rD+jw7<s+40pFoR^r*C>Q?PGqU7GdSQp*l5o;u#=WWio{f_
z$7?RvRM!>VWlP%CU>i>?)yG()J$sQOkfAswp6moXrnna|0JCUfI^5?N_~r^Vo!S+d
zZF=@a+0k5B^tL#Kc*s#MQ(vHD$`b6AeCvCi!Mt_`jA}WD?g9WLInBIi$TuZaGs5ey
z_T5kMljUFOY%Gg&sEDhrOn^#B&rG^p--aAlmRmYEno-@`X2=!A8+~S(=cx(IA?Ezn
zWdrObVr$TVwdZ4M4#NA@N8Zg<e$FHN^<p)BZ0Xx5oBSPmJDfn|hI4_vk5akmY*jjS
z6l3|YH#u?mS3CMYiiyt{kJD#6#>cm)FL#Syl_(FsUx0MrXyp!YFE+>|m@T2}SyoRQ
z(~<H>Z3WT@=g~9Gb_t!Ai6M4>KERMBiV?aViJFvDZNHh@6jG1+gt**z;AQhNZ2VEr
z#|OIn^jIB$ox5Lx^bjGd$`Prv#UJt@?d8(&?%Vg`SI}KblM&f&92mFKl3QySjNO2U
zA4!Qq9%H&2q+xugXaekU6^VbjAn+e-1FefZluq*UfQ(u<9@oMau>&DTq?|Q0zlIO2
zdoS~M?}21rXS`{8d}I+65}|ANz_<G~PD!XvBg!=fO@NY!Na!SGD3{rD87ZLoWozl}
z?WVBqL(ggc74}N7yE8~tkr1@^0Cml?Jhd?g67S39fXfX4TgpLQ(KDa`*=@znqYGz?
zAsO?e_%IM)7ysOjXv{cHDWOBP+rJSM7olXq9NCSd3kTq#DgknKnns;?=<1o9S!*-E
zD4Z0@zh7Gk0Iggo<+p%yWYC7at5I+DJZ2KQCJ5B82t309W@6#75oywS8{sP(Ao*iQ
zOwj?nlw-$p^%r@*md5GgrMe~=PCHIy0%sewstQrWRt59bQ`Yt7Z>=@JP<u<J^_9T7
z%HK>6c~6!uR8r=(Gt{UR8@e{FdeReaQj1yr9u`MaU~am#=asQj5Yr1Cfykg)<Ts*2
z#&%U`Hp#9yD@>b$#g09mY$B*Y#_s!6nrc*ZM?Ha3LOnS9#1N6ccwM_9({&{zQ1Znf
zRL#6{8+NQ*4aCdUhnW{(CqE7I0O&3b3~sA!MjJH0=`_-%AxEPt4$mO%<?3}%Fy75^
zQd2rlQ)}}1b;g0GNz*RYO>JZb$mS^2jtu6;mfMjcG`<3>t01|(|0+}*C~9)C@6yCy
z1QG)7iaBld-i=DBcuNzSZ+gFnNI7_I;*&R-oG`SUr8vZ#xB;!$uFIXl4OD0wNYW9w
z;#mmO-}upE96|W9MQp8`V;g8s)zyX{*HqaLtzB1NEO_9W-L26G7dD_4gS3zi!6=c<
z3>O_}N=n$F(LOZA>1Zw)Ny-hr0hAP@Q1euK$OAkU_vq)M-(cTn*G4n#`$M~D($z8-
zMVa+BX`U|$a@oO5EzuG$=o1-g-_CJXy1pO^sgv~FxB3y}WN(d8li-Z)#_`U+WOZhM
zGx->5&ZW;hAPgWi<sUK__W@F(LM3&D8^Rw)N3bgfLU`Q~Cep=WAO=ewQs;_#aH_M&
z{DsS#Z2zX@;kxAdgn7tHzyqao#w#DM-wC#5OC55YkX<XV`*0W}Y+1J@kmG<RHJ3`b
z=|R8kXit0~bu-kr^Yd@&0-(wXuM1#}oPt<{1PgxZL-%<N2S*FyEsTU)p3Oe>d;P3M
zb(%uRF9m_r)As$G25Q%50+^!m+8En*qtc^janx-ZxRA;|vyOvf@8d2l!tDf<$ImDd
zlfCO2vVJOL3e;u2{=||iIgPJf^38|l?B(YC7Pp(v^;lM>=$wq}vE=7B>m$@Vx*IA9
zO7$el@XxX~ukyGX3(-|yPnIvM1+*B!y)g<C!22c9oE%0=!Jv<Ks0$>DH&yuODi0u3
zq5(af^Oz@CS}a`jH#*9i5n9X~kwd?-f7pXenmhS#MlF&o-|4T3@4l5YVwTKTr{=#O
zOj>MVIEUt?nZ+q^rF;>rfF_P9A;v-jv=DXbBwolQn<`--9>KLT`bQasmBJ<@xw@sC
zoY|+|T2l$OlFNkczK##r!=s?xA*RThs)n2kPocDjs#zs8VEFH8VJRgsGOP18A<h<9
zyUqE|$mLJvD-N~LdQ8Ng`yIj?yAdNI!4_8q!|?{$_qCy_>PC{o1hJ`%E~N%-8G`Jq
z!MKAO@8-t{xklz=tebAJIG<vmSqtpJ?<ll07Xjd}u2k`@s3LAxJeUyFx!WLM161(a
z$Wt^ccJEgR-asIwHnb5I^FSq>=KXN9h&#o)Prm1>_2VUBb}b5MgaR#4_TZG?1b^za
zn{9;06pqB&t=#+O!8P^%m;Dg51u`)e54Lv2p{*H`0lzZg^m$q^tTqF$^%M{{Ld!id
zo@rIv#@k(-#-BZavBe?Wih(lY*qtOZim@6<^zirl+Sgrw109oF>|La0y&WaFP<r7{
z5?jcMl}qWxYIlBy5%(Zf9(`ABeqz@8VKvbd!mmzgd}XO>JHfU~ycac!gN!R(M>dm@
z$DX~r@vOMqna(q2ewf@+*TK0UQG^tClWI(jGL<;o&YSWha~Pp)oD24X+A-JA`K^n0
zmY%N0Vc4RdW@1Ogl&;U+=Z=W@`gxbo21Q=K25YzEx05HeYP$kiC%2k7+?a_j@C(mR
zJbTR?ujjDLoM-O))(-*4_1|HU{~s0xz8Ka?zmw;k5mH|fx`=4~#E@rJMo=Ha`3WL=
z9G3c%C%5vCg8ni^ntt+e^JjDtyy>W<2o^Z(tn2ao9T-Fb+j++^1xdVy#%P3<$MBB$
z8n=@*5H*Poe#*=-yi*#R-=I@dLO#{6yP$_-B+ry!0H60QIqMk<$tk*CX%uW{Gjk^O
z(MP<%pnRFE>(#obV`b763P`TEzkcXYcg>i)Bm|Zb<HJ$XR8WhcgtqJ5@+C`YR8YLN
z>vC%w8SEbNYZVtj3WlH{9mw1olN$U={&WivHu+!=7C1sY*kK~9T76e1e>zXz1$p%W
z2sB(EK)Um#jV0m-mWGVw=^d!Sx52C&Mc)wFepMeUis@p}$7kd%#x`37RTrV?YzR%J
zO#IK0K`{>5^p{9SNN#VedqpyXon&wyQ>_p;Xsh98(_D@u@?;fUfCPdP3R4=Z=Qg?^
zK}Q}V%hxUZWDC^HFDD&r#DgOa34&snGo^W>Oy$NO>k|Z`2doC-4!z8o$I3dvhqqnz
z)X1YIYCGHqLLjusD7Uh*wug6C>abJ~#V(EC7dE^Br-YmN(rhfA5G}ZpSKx-sHrV2k
z)srvkm1+Wxtw?D8@<tGll84=uZt;BY>4C|7wej9puuF0ewtRD6c^*~m-*TALbZgYg
z&a{HVLrLJvyL`ByW;C$VSGIK9dMJ-GWxuaPgyb)h?uXd=tsxU5%COhzaSX*?+9{8-
zwhAp_>ozcZCVobVI7zr3c^j;hx$MPGu}%``pcIg95=_Vn@n3@YBGC5^9!V^9b8f|D
z-F~><QEz(ZAHosj-oqQA5o}LBCn59cVy(8bCQbO_ZS4|9;thK^##(E*gZb2Z7sj2;
z{MjB(mZ%{<hMtQVixS4-3W0oET?(c1BkA{Mu<>D0gy<XO1gi@n`8z5~f>oKnLH&A$
zOz^`NMRF~83sadoyA;adp@?xW&i&4u7BJrRFsrxisHYs#z-#SvB@w}n%AcEyGs|6&
z)fVz!^6Zqsit<h$o9p69Dqy!l@pY#hvK}brR<2e|^b<^S9YlT1G8H~Y>87bV;D9xR
zrGJFnVKd{R!97@{ID^sUXYq8CRQoWSV4*C>(oeHB)M64U&%IddW`9jnJuHUwd?Z-u
z=Uh{5jV*F*jorYeC(#zki0nd9`?4ne#awWW<zQh8fzzr@?E)Pi9W#t0+`y3l&Ow+!
zQU~kGB}cinb{D_dLqzYY^WUI^!$@!j$We9zoxN9tXE4&uY)=SOgoDUWMX^hvh*lc9
zq}o%W=^hbmm5syzOnKi3T2%4Z0nO;Pc(7q>7hjpZ3ei26>iiz-wvz=@VSEmVjyPOv
zsh&e;@<+sKfraTwCP@%wh2wGEGl))a5%lMlN5Jn?{iQE2+55;HZx_)JJwo5L({KrA
zw^B!P4d)?82paIW3nR9J)quBVNQNp(s^W_}DVC0BARDQi!l?p#+@)HgAFRX6R7d_w
z1l^xprV(U3@7D8HS5me=_1Ay4tM?A=^!nM}fwb_ovYUhOfp2hu7+DAl94nQWrofU!
zeIJ%cB~Bs|tbrE8QE@y{rA$(bZ65YI%*RK*X0v^J8JCv)I|VsA2ESw~#;SXpy{|M_
zWZo}G2?gJ_qKmY$AeZ5Z3B%EiKR!~HC&$x2rdm;pRL9$drGS^{YVX2Ygn|k6{5sV$
z#i>Rgw{X931eyk$t+$~gvSe5V6Je}2!{nf9H?!`fhJE1KKy(uVF%QqrI^y;~sXXc=
z`Ys0~%YzoqX_qJ$xsII3k4oi^jnN%3r53e0#f-#^kep{|wbMQ4+TPngpKV59^R+8Y
zJ*ex#Zm?R>{NErx$52_H+Lg&-^V+k}{jP*RSeX-?jS4V=Y|FK=P;&Wn4zo8HL3GK$
z2u~T@Qu|g%3u`98PDkHTT0n-sRf7Vqy^V^<tRh!SEr_BO{Z6`WQ260Co7jPP!#&)j
zOEJ6>9mejqt$=3C$stOtyQk}so$mH20iIb`tS1KiF|u!r@P#j^UFknzt0)I)MBi0D
z&Wp|W3N&ScL7TY3+~(Gz$dz6rrjX9m=gSDJ84;||yx-fWU&Q6%#@G!kNI+vnpH$c6
zx8s#Y=hP3*;LWc)*AqaR2XPw#-6<B2LEw=~9dlyQ$XOmyaonOGZxWAE?V#O*C|NQR
z5s+w3cz1{{WoRK%PUEPAxa`hR3^>nV7=iqhMcs7u@t|s=O)4{|zFLwt!WhaS{RTNl
z^K}=D85RRm0U~>WL=ZByLekl2$P-~<%w+wc_W~G@ep*Q44Z4IXK8tWUynGaL5q|3x
zW7zJMcw-_^k#Mp#>C}*MuFK@t^fx4fNC}2scm(*$dhkv3Z%;V`<VzANBaWB8GU0Md
zskS>TlNY~Y!C58<X~d&Nz5yM87A|)ump>a22Dsn;@JRk{gQrK8H5pSLSj!p}c)^c~
zhqG{{(WUatZxzp=?B$oIB(vz^ta!vamx#jSXB241s0YEfodwcN4Q*pOCHOEekeSVa
zC%iW#8oLE%QU<X@))|z0((&GM=K;$-wA`1TH?xb14|j_X?-@?Kegu6C<*<*EapQsa
z#m{9X%#?L#(baTBU&c@j%pdyIY0qNCsgytBzL1HJJP4faL61++bGc6Z{Vu*X6l0K<
znArV344<IK+2mdq<-ze=Qx=jSlP{95M+C_XVj=@hwBVry{0Ur3+iRD&`8F^haYi}k
zv7|%JB}(%=2;X-;<*VaS2q4-S`ir**)+i&hx=~_?<y>!UBJ6RrN5lyAVJY%_sl{;+
z-00LYLd@dHtRoK(J#7_Nfi#&Dw-{?%^pZ@-P|gUi9HJkRmq&QKLM-kx+nh=~^i)S>
zPjBLVn?bPB0KDnjYb$neul283tuMTZ%}OQuHE@*e8benDh8f!<FwmmXN0@qt*u<S6
z5(}`5Idj4HtE(S<SK=??q;forc`fssFo@OWagR;%%UwB+&AF`?-lG2qs%2G*in4D#
zcE*|2;QG0+rvI~QVZRQ0=&8{N@Lr>Z9tse^c=r+vWqBfEYuoGi@z%_kNozNW&2@uq
zB5(bqT+33HW-!i~H>t1Li(xd>YmO8u6u;DTB`A5o3w$2Qydu?rXW%J6qF_g9c7Dy@
z0dj98S&_c;Noij&19cc8TU$Bd)RFVd1M(AFzrQQvL}AD+b4|mySxN3vUlk)D&6)#2
z<5)L((Go^f=;~JlWpQg{#AV{bUW4YR%BuTU%xE{D68MT|`NAtN!Me-7MVYchG*}6J
zmK-meL|>ktaMF^mG5Hx!YdO)5dyKUF;~sZw#BuZsvfP$FWoG<^pJLjb?ygM?Nvskg
z5faXo3EGv3T_(LdcuQTBG%9Ru&z9dI!XF=Axd$_&*V`Vy#iy8-TA`DOSyl^e@$!Fb
zgrqFycB40A&Rg_tv98(I;aiNI5ar;Cryl|dTHoZB=Z3a4qKH5wdsi98cl%WFtF-e^
z1tDzY*dqPiyb;}TyJBkiPYJE6H0woaJH`+3KFt_g@)sKBoR4mw6>4oRi8zS{`!=UK
zBn#JWPT9aks%_flT(4X){&<z%C)9o(Apnt@lWH|uv7gVIuNk$*upMPOWa#&bBJ|Q`
zKi)1pdigw&lwCqLqSyx`(=lkaKseLkXra3<in~h@W!Wm>s6_(rV!qV+J#5>mZEjy|
zb>~^gb%HQ*ur1M8d9zdPU=ppko9qqW)@Q%a?TRC@U%%g}My5SjI}i1@p%^#DNY~%4
zqRn_ER1tDFksQvwbz&L->+{)<!?g?~3q$FgU4`GI{r07sm_uxyYrc9>KM#Mm@M2P^
z3w*cN-Fz2XGX<jj@=O<lFUxN08nrgxe%~t)AZGbgd0gM3_bYLA#mfU4c)5Q9#o*ms
z`kF9!Pj1zXDoGo%4FwEaJ$S-b?*QCV?QOL}`MJDHuUAy-7l4b>a6<UVKKv-x@yQQH
zQ*_l0N89Z^`;6Mp@VeUieV3Ni!}{%idXD~z-E&V63IC!3(I7p8>5>wA@-ieSFPROE
znODs(`6Df%UlTdCDTjt6(F%p47z>t8S+5!AH8IH}3~r7-SY;eBBzR1GBB@6)9z*8R
zl^jH8Vlpb{(TVJO=%{Za+Tq-OEo%=o(vp)Hh8`FLajbM5S>Pf0i*KQQm8;-%E^~Vx
zOOOoRK`O=trzn4+p@{W%nK-|9S7U8LUN06&pU`axnOQ$ZhXG;iEoFppUxVOgYmhxr
z-eM#j(~+qrm93?-5Si-JFSHc#QU=}j5b-<018=CtJj@~eB>iVVmtvl0M+K=0T+q5z
z)lMqT^5GnQbw68QyZKaN#EhJ`KpJtBz38z!$_5cbK4BB@6xV|5YGjFE1QfZAfHPMP
zH110-hY;nxT6>48a_@C_HifHF=a3<`Mv%E<;BG$JFR6CLnp1>4t|L~UI_Og1trCUK
zJ-Webk~(h!|57@k>%)qF(v<z}EnbaB)8N>%sFbT}&&D0M7mHaXXlGZkn`$~k9T89@
z2r8M^MIAjpFuv$d#KI>d8zNSl+;ZL2pN$~23gCdkl>&vmXLI~6B%eplsL{rH+(8#x
zOarJ_&6vA)7DZ~V%F^Az<gKf75(1&<P{kB897xvbChVJ)JKR~*td;qF26_|eI@^>2
zwK2cVZB%2B%w<3D&E43H^G<4tVdbPBkJ%|bt<4B=e>I2n*wWEU{E^0n4wIokT0+gm
zHUAT<p9vR|`-GK8<w0BjF};i+_lbWsul~`+Hop33hu5jD(TUerfXl;$1;;Tv^&O!Q
zWTK$At%!8mBxPVA4vAybk9_8CrH9Al#~_Y52MwHtyh$X_qY}FqX1{jC$G{U<<=9J?
ze~PsjuqnB+nf=0h$Z~RrmryLk{tkh#DSg5AR;n^|v$H3Th6c{G&Sf|N=UoB%ECoej
z>UF8+)jOjRh6u%TCwH$<2lC_J8@!jkXr7;W4k)Y=?MNtlX_fBMf(T6ocV-I|P_cbz
z&nd~EIhUckeSl%rLL|b__s=gZujMu&)&ADoaTc}8hG(a*_H&@Rg|j^(I3A#Pm+ja!
zhV#dU@L|@O%mcqRR-^=~??5$Sf#cb~*O%2pK#cXdy>47agcp11rxO$T<O)GE=aYkG
zsJrE^E$t9>pyC-!7dlI)1M<b!V~*eA${<5p0CbgOP>?M$YnxylYeh<;Qs6?(&BhAb
zg=JRySf~>4%g-qW%coS}l0AQn^at999vWYvIxp(EMU6XomY#7zz$WCY^P;&6htRTA
zl>GVuBwtRQd3bQ|_Me>62pxs2c%4E6Uq4>-SZ`RpYm@tE2nCsOQgj?gB+V*?PLP>7
z9q6$xx1@zr4{yByGm#G>D2pL!LZm`^n}!#pcU#g>!o5|x>Xxx;{7nej83cF&28K=i
zH}9dbf37~co`A$QK8ks;O{$8!-AbAVEOc1Gsqf*@okopL-RAkbdUHpncCW0m+?+_h
zZ}b;l*O@|Rg-Xw-9$gc`^XrWFUC<k&wXnh+ENa8n;Zz%hfBg+G=#KEW(xhIF^vZz@
z$b)jf`$*Uttf<1r;sCi`9PH4EZ{oP_X_^1%=Ag-kRfW>4Fv8d={B+A@&k;Fr6TZ{c
zVD9CprBe@QAV=z%RZZ$-KeqLY;)Elj?tbopbl3s;^dJZmr|-DG=2)eAKC;(a!PGW?
zUK|;u;^Wk~lKgu|H~00rAdkx2lIIqX=Um?tTy9P;i8u32_V0|8k|tVFP<)5$OT*8U
znQcGtapheWmCvcX-)|{?X$e8$5fC^$Oi@C~2-43$uz)XQ&C|8+I<)qa#v;M#&WTZ{
z)yZWgk!j_}b9$=e?Al>=*2zV5W>8u@-KOqpXLf4)mgF~5o;)RgJdWS-+GAZE)S%vO
z`eVbxEII~^YI6Hrg%P{s4rcGNOfMlX%L;@=N!<69B>4@o9;Ox>Ps)j+7X8e=t8FLL
zESsU*(MWB!-=XA14Ge8cja{t}SH#ftp}&h(N-$}OG53fMI$4HhTHU+4E!{4Bh*Q{6
z>0Mn1pal?*IW_K~mrSd+T(R1;$18sN<`CmhtFn7~jlBtX<$OZ4HiMxP>sn~Y_kJJ$
z3TXifi~khKpLeI+SRxp#>pOENBbTn<cEQZFxPu0#x`us?u+8ep?`;H>?ln~(Z*VQa
zs!^eN>WDW+;5LH1_*}P>X>NOjxEIQAxJ`f`4D`0jdCJRq0V-uu(2px@tjMb_zgA$N
zB{=TH@n@By*3+2lhZ~=V61=7Dw=;gS`Lmmt7uW(Q4!Rv}j^n%y9p&wQR2OQQV@UvN
z&c1Y|io!+b3U9AFn<(+-9O0EnaT|OX4ibuo2C$>T+cebz#(gLP$c{yt?lNw>^EsKj
zy3%;MaQ#dYP&yhjJpm6uiai#6lKu)G&=pbGpGF#B<3a9Udd4rkMY_Q2pDhk>L$3wc
zIX!egkX|g8N3=UNXv6zJ6BCj(5iLR9d_Z%|^<m4Ft+&J|QyXxhj+p^4mMPl{0FFvP
z;bB@Yi{~AW{@EwAI%EVbzu7LHsFs9&14x%u;)7jEw3liDMNhMU<w`<K2g1X`$SHaw
zglZeI?4S|(r*-R6i_SUT^8(t;KcIoUXD4`~p^48(JXJqNj0@IG&8X!#JRY&}UfiVY
zgWA{ptfkT)!m;$S09UkYaIJ{7zkc()0>u3SPs+p=rK#kS%tJda<S=06ea1cQLL=aM
zjunp_vC%MyNqO6oAA9Nd54Kbt0I9igo2EZsZ@&y9mdNLU3jD5BXy|8Y<Z8q2`~PrM
z#Bi@N8|9#ddAoGVZu@O=NAf0P1hTdOb9@ug*F~HCE^R{7lkgT5X%2*NKN64MWhh<p
zlraIgI<@GEV~cXa6rG&mWz3oE$wt;cW^Hxp>k?TN`}?^WphA-}Z$!T0hdH^DxP{Vl
zgi#_J4MBxuF9=1(_E;WHD<pp(!XfB>g1^1U%=IABwA$~%vSN9{9GCcO&7mrG!nn}u
znpBX{Hl3yG)3yRXiOTDAm#d!b$(+TQygMxf9>HHf0vlxJa1Du&2j;?a7{zt`_l?p0
z^3)1D$9?AdXEO+x@}6!OlVms8lU&7n48XHsFeET$332&Tt+TX;iLPotasvR`grB{N
z)d#3l=!k5f@`wKX5A|G4oxuFeW9PgNku9CH(*DbM`pS#HNaP^J_^(#=8S}pP2iS_I
z(3qWk3|<ONV(R@kvT^J?YT7j<{NSmg1m|e^WRc>_@1`vg6RedoXG<2Vs&u7<U>2L9
zI@%H<+^8gtiW7XBH)@@dQ9+L3tLYv~MBCNsOw7zo-1Ckq*PYyu7-%~2^?q_S!Lmr@
zgmLyHq7qD97X+jgf5|k?xlI3_@y=UdwoV9Tf)`IE|4kN@QP)cgBb;6^b(cR!`EYgR
zTl%#ZUHCU(DLc+;l?jVNxs$D+Bqv5j^^kfyt01RJccP$Wm3u$DN~ZJbn|%;T|4wQy
z8PFnQgz}ev)Jr7tkbxD{iK|iCA#@NS>U$BhjNUT(wypKX6hvvwk*;3IFk|2Zp-k10
zTyefb?Wn^h?iDD362RT5Nnj^zsq1A&>g43vr@N{O^lJ0629dBbt(0u*9fus{(A?}@
zzdPpkh`Fw-*Ll<RqWo^_6r=VHx2f?yhw-}1K`S~#4v54j(CFL|S*5zmEu<q;?jiu?
zFGH+>ya-Fusc&eX*YA>+ak2B-R=2C~>gGRAC6fviITeoffC#aDWmSLLF93I0x&zHJ
zgvxkQ@)H|Xu>1*lO%@(pNqZXOSu<n92;G!c4C`(i>s-uL-(y~nu@p}Yq@${Kk<=A=
z+V)(D=&tn}H%=DA^Wh$QctM1c!EjBH$iFirx2~zJX$>u7zAn8=#<8RJvd5FV?z9#8
zh&yX+I8(G{m^>o+Q78u%mFF`p$Evs612N&%qnoujB}LD15nY$?qii${pb8m<>R$|Q
zYn6-YQ11>N?rpNs7%P!0d1uHjSZ6*|963qs0&$%=d3MeZ{Zr{<&j5B3fnke?r_J@V
z7dpl7Jqx0ad~ZO0Kx$WG=T}>$l;+Fn4F#L&&4$XA{rr5lL@$%~b28vSqSdi>w<H-G
zjS^~x`>m2u3JXX+(fneg$dc3EYi8^Yws4}y#bsOW&-4ukV&Dc}NHsRcAbEI}#pkT&
z4WbbBAzU4^3{0LdTL_<*MNN=OQKE8R0GkMn_xZ`UPAQ$4HdjPCt^2POV(qjRB&bTX
z%SV)13z66UB4NJMm*z}Sa(5V96y{G4jDC|^HXaKQ6glJ!JaPBWA-Vc&g8WIEfE7Jb
zrlePk@(kZRO!SpRqMF~lfW|RPmw1PM5b>n5U2vQDpb4P&ugAw@5Yg!Cl6*~tE7?hG
z%Y5N`-F*3ga*49%8nYz$>XBVNu`JkR&%_!am=r;t{AZEp+DsPyv(U32U_v|(`OdpA
zMc+?|97BW1ual(h(kTaJss$lH40iZ+(|xxHSMnS4$qDC0Ft!ei8R>!BP&k@SgKGoG
zE@vM7Vzu5SaG}$K&1xi$OvnsE5sPj~`p@Vh6}X35Y6IUmyC$G0+C?T@R2}o<{yu!7
zmk{l*h;qE_uI+?c8LL#Uzr_(*vav1j)TUXDBno3V=of;L_LU&zvE-67I8+CBs_EOV
zy#H=zY)}IDCIdIA1O~^fa~G`%<{RLv(_AVJ#qA)f>q%jRSFQ2P+Cgo{yShxjA{#JJ
zOMtBBsDdWZO=}vkg!IBQzkup5^d#6M1Qg|HW_3Y3+6H<we8J*N$-?<>3c*=D*EvKQ
zuC5H;<M(}TRW}SoW|bA;qK^c!$Lw%BS$hILl{ID<F<A?2=f*u_7TjwmrDZsvFk1ad
zl8O8)$)}%X{NkGDo*`wQE_1b3$I$`(AK&KM(1zMU*xX54V;l06Q^TC|KlH7X(o0a^
zD{I0F((v%p_z+6z<%bFv65F?`Q>4Oji(hd?(Vdh_FG8g-Je0!c3!X|v_(X(^wEx1C
z!;D}Jp>{S@&Hkl@{hSj=Rn?NUfR<wPE2Wd~`xzgI3vZiO1$#-8kqhtUiJQ$#QB$4O
z{@uI-gR%JMOGFm5z)4DPyOU2HQFeEzBQ)F#z!+w~5<>IS%_nQA;3Sr;Bhaw(JUR6a
zP)GzQu0N-RdfvSjA3!{b8V`633(qnBVk4tC@NMzv#1lwT)nd?iyK$cZ;#)N!-r~$}
zUjZEoy;QWqOJrLF+)44_xl2&7O~~CR--z+&R1@a<RVx)OZOx!sWN|OJ8rJS>F^5#h
zOwz%a+63^(q%6(fh}G$nC?`}5M`bf&eC07E?Lce29t6zxZx5%<{`^+T;X3sV!;$k#
zkpAnxOV_T@U}xd|<4Lxs^j(e_b_YIm%Xx+ocO@-vnf8M6vlsJ8e+T9UuT$h*IQt;t
zRBhOEZxvL80iW4SPKMzb4U4+S2ByqoNWbfabISGg8QV>h_=k?sD+@B(xCpeLZ`=<q
z`tp!vbNXjPzb^JpDP_@|K!~Vyg`JAcY%Jq#$_^#Qa9e$|OAI2SbaS|sQ5ce2+B_La
zpG9k44j*xDvIO_5ZM9F&f4ma!4gzPQgxoyJXZL;7%Fd}YAiZCpobx98kW<Ql;uI95
zz7DY4a4_iJ!?_6LVM(8Ux{oUH{2nDkGxx?}q%)O2UN6kgw2woWGyL>uz~!Ln0aE(i
zPx7s<Vb(#-u;-PT4Byl(i@u!quNZ%L(uqODZR%_N$0UIHVtZ|f&Sf>j5%dJfZ@d45
z>MP~c4ZwDiS$@4hK^7x>d4%z)nw`3rjJa@I=i$zn5bYp?1^)-|(gvWy;#`pXWml7w
zGktO<&p<!Mof8K3o^WL~_z&-#$5=Gs@;pD>tikjqGl`iXTSoYa^}TFCr-4)UE_fHT
z_NdrDq5-(z$P43t!k7gdw=Ja!(AEV=g|~R|wFuYxKK66oiQNxv6F!(ua?(5}>!K4S
z6vN$KCl=+&$?zr1SxL(tDSzdG;Fj<c)-D1K9e(tlf74G!me_wiO=6tKR=n}aF3)IA
z9{H>xWG`;xd$LosbBqwo7b0R%lque%C!%ECrdi#4x<o6G-@M+C;kH6N_;lRo4}Tz5
z)jFCuh07bxG3qUv9$@?F^*yT@I!#+33YJiC4=m~T%XMiFg$1%v6{%=bA6#4=$VISj
zPegJ>BdBSqhzofaUG0z5!?{?JF3X*?La#9+W@)%liTPBe!tpSi-jrL+F!qw(F&VOQ
z$quUzCyBKNT<&8f%Oyq=!Q|;0rgs->Tr+cV4C5*%btCM3j~pt9`l|hl&glKhyh#5i
zz5G2Gx6=Uc%yYFY_L#oQPB1t%WU%FApS=zN2C%_FvkMO+oRKnUwh7J5=AP8=;xxQ7
zKw8y<NN$ZGl3H$8RH3pgOJ1oIMnQB|vlR^@3E70#BkgeON5YgLbi$sLMmGw|i+k`^
zn5#^Xr}#s={3~7(i!m$fq`Nu97poNx;?3wRaLB$+QO)7_>}#WPtO!O1h<Gr8BCC>*
z0+0|FtNLj=LWJ}8v<gBTX3-B=NwY14BV;`c#oNo1&CF%iLl1O|kUYaWCj#D_-n2i7
z8GM2Ncmw@%BA<mj_Z6(Gv}vi4m&%h4Bp?F~t9a3oPJZ$lFy>7{)rMG-AKmz?N@YBj
zw9H@h^?xZmro<L}Z9VQzI7E)~?YtcvffuLsWf)%n{M{4GDx1g*`%X{d-N7GyY)Shi
zMJo?L{crE!=HH^tluG8MpK%L>stz?8Z4jVN6C3?{FgPgZ_h^-&^K}Ew0?lrRsV`@b
zzevg{?+Tw8el$^x8hv6<@=a9IR|m+eBc7`X3!@w_Cfj#JZo`H{6-M_{ZAM4q*L%Wm
zFpY4X(32k~zPAp2xRd;N|Eh}HelS%zhlWQnQ()Rlrd01oSm!;xaega6PgfRucZg8j
zf1B&A#6-fL1iy+sg8k@v1QJCCn$`z3F9UJ|jaizFKlU8}e8L6kl&95`m>6pfS16f0
zTB3^exD_v1;wcFOK`eFU1G<m|mAA5Q?OK{26Nm1|Va^mX<Wf{BxDU<m29&&<l5JG_
zrOgN!AAND^lRfv61*H3Q=TNaSpUVvk`4<XS-ucq4jqzaB=RR?%dzM-<$hXT-gNHK0
znkwD8>UHC<`j8{2!fULbR_<Rn&l6WK-~+;>92BY@bY(QD9y#}KBapl!xH|H60YP|m
zhl}pJjM4^1&B*7!t0QOaP&B8fUatvw_%P6lODP<q9Wi|~GJl^aIKy0-A~sCDh(PQZ
zedDHSpI>{@^9<b*DCl+aGf8|x&BjULUiD@$Crjksy=JG6j`Ct3to_=kELMKNJ$vFg
zoBw89^mxS(d71eeV;ovv!Q`~%Nhm)xB~$GZjC6Ni)7D~B)6JFs@HzBIy8EKotR`Tw
zpmPh5&wWRn6Emhhn*R}nbOD{~Qu4_gXH_JvaRu_J(~8_LU!n;)nFFeQ2^3kQz7{Zh
zUl(AZk8a0-!!LM`WG5l@Z!#;UeV+>ZJ7dBmFb7P&7ye<8!EV<sg~G+o;wIbF$^7#4
z46?DYbs|<G_Z}$UR>I;vC3`GSZ^F&um+&U$imtShoWeQ~I+1TpFNT|gq}H{$K9zpy
zrQv2nrK=t$5u;uYs!J^x9{RF9nRLCidw1E*?P`9VY?~8tESm(mu^c?P%PSaihE2Dr
z-{Y#W3pv8Oqn)Yq`jUAf*v+k|`f5H>dbPshk8gF78xBucOhC`!V~G<t7OJIc8)=$+
zPFVEzEgPB&z9rwlgsygSxB>^Usj;zWrK;FNN1j<HcKFeya}l$zNV_Ne9o4Gz{O>fY
z+Xh2#J(79(I4ivApR4u3ykggmD{|M>gIo=k^S&7Cp;y|S+Te&Dg?7telgMsejv+1-
z*?rm*OIl-jaX~{2E-n3ie-!@kd?65Q#<!46Lt_c~o-DlPAyza$ZkOJL(iB;yiDx-o
z8&||q(&qx_eRuU!{$4JHxtDs8roSggl{~9FmhSFayQ{h(F86?@H~rZ<WgH8FD6ygT
zKxd2g7@8<tQ9$K|-J;PCdX}L<A`33B)@EPWwihO;Xykk2>_46i8*jcFO77ZdJbF)j
zre&&$!XC4ci?=5a@v=_+&>_@YrQHGlraf(XJU}~p%>GrDhUucx`)q|J4?ux(A{wWW
z%;;X5&TLuUmDk}4k3Ze<VtOTp=b;>FdQg~uMi*YUHI{raXi|*&W90Ss>|U+YRLVPI
z3D!x+WcpcP+&Q7<*<jzuW&E<(%6#|ofTr;7d~BfZ{Jlou$HNRpsSeYof|DQ0!{98_
z5A2i8XoiRzBN}q5yZ9rXRPS-$x!l@nZVuNe$D>I~7TrXbKsg#k(vPGY#Af-0x(&ib
z>XpLdD*oO>G~D)4_i+24%-toCa+Pdzhg7NL#_c$R!gZfdT8+T>=Xu$#r#t0(QmN=>
z9B6z_K44gESYKgIIxQE?s*>)-ut1iw?GJanQMi!{8h|ght9{og=>3-1KF6chJ;C#2
zaxvG_k1^M95%!ao(dcHka9_TQU8YWI4LGp=rxg=@5@YPnmCA>+Z_l>{f4IGyY)D{_
zm~T+vFVtjFNK_x_>CHMQP)Hg`57{$XRP5%{S@aoo3*#dG>Xf8l)De3nIs<t+Gn*i*
zsIt#(Gr`nsP|-YeN+w*PlKHjXbh4bH8DcYdAKUsupg%Gxfiv!_L({X;9;Q3l<>|Y?
zfJb}O!q;*eKX!^MIewfP%cEp)`56oGIeq>}!xof?g|nU$J3xjgEWa<xBye{+wwp{$
zg)9^}G9Jr;-Yx;lPm7lh>z<A-^erGoKK!TtFg!W@n^)=4E~71<KZTG#-)Gee?0-H{
z;Fl(LB8fNhRH-BW<~Nz&i|&upxbop*r6*65uG62AJF|#BTJu}z`t+EPUmSWE0?#Hv
z()D`5MfUdb{N>QC!y-zYmtJIuIW@DF{uhz~%jn;+)Dy9-R7BJ~crT!70@h30n;1T(
zD4+0_l|G-?1+et=@hi~C)3Pmn?Uz*8KW-8GrF=9dcRwmiZgl30Kw?WEO-{ZW<io+_
zoE;4hKcmdOMqHEy_BHEqtyh{vM9JwN^i$^Lg&^a~98(<_70(zwgaYr~GW@CMJ{}^K
z#YCl;Las{jggk3SRKuQO6(AdrED=yqexh^|4tb4G7>9;Qy?D!WgdpmR*38pdo7E)0
zPPKSmILwFF5n{m-_@YCCnsoBzQlCF8R*0tn`Anj1rkr<(pL0|QWz%mA60G!Og5YW|
z@5_5$yYFl6x_5RT%6**!qTKw^MjgenT08<iZzmz$zDA%63h->s3)9LP>3nk^h>Rb5
z_95h2!R6HMbjVBizW!opLP5ytv#!#u14>*@=U3?m{7u>Ibxpb*q-BazNz>ij+r*v5
z{60c6GVe~f%3b-q!jI2$eW(k^iHf7LqN;p~?|H8;?i?>K?oKRkR{|YNMK^$!&v8|y
zNpOkRkbj04C*4!_mEQq%(#e|%Dup(H{^Md2(b3z*&C4h6@KDbWUU}{$=K1ABW%vlY
zlWd|Ikgdw~;v3R%{OXKI%GTfJT&2e$!880^Rf;X9HF%lgE$`xFA;91|+|-^hVQ_k;
z++UfwtvuEeqo7^6ID;l80}V#>qS4H-_|={<#4QQg3(Qh~NSClkJ>4>a!=xe1B6E^z
zBBmv@`~;#q=+l#U9s;UYM=Gz){!xfcO2grKe7Q<H$`M92^gRH6JjJ=wo@{bLVvV(v
zJJzIT1Mby;+B)G*bOr)8kf|@bl8Dj;bgkmQq7H>Fy@i2OVD5VzIE6NY@Imm1SW4Sc
zCOprtt_7M+{{)MKLx_tn8>5p{cUWDtlzhIwBwCnD>#*qiryjo1&h&^UY>fZR0)VC7
zTY+QjLd1Ew(h2Jaj}mJb$xCg-gmuwh@kuWJSM!Z8`bX1W8k+h#u=+wFjwh%Xkms=+
zM&%)4yu$u=*o!UO{sD$K>GZI%Uzqz_phuwE`orS{x1b_%fEF!OHvfTG;#YssaU)Sa
zMikg#n2asET`;FKo*wsMu1fdf8J=0LgTUG6-iQR>r}d)FuzeOjvJKU@JQG*Fb!0sV
z>v=1KiFkkNWjk;I3l~khu+(=!deBPq_H|Z)I)sJ!8$m?DMZfH~*T%GQ(Nvz=uBcqO
z5l5P_rJBUwvF<&{tvs>Hjso0CY3erUnZk2D#`RfFxO-L;ZQPErE*KMS1mF6k;!ILj
zDw-32-g`|ixudwtJXLAvo%%ZZqnkn#V=M8&6;P^1&0F@&2^@Ungx!#u{sDgk`-OPK
zInjcnRUC2n{F6uSb2h|PM<0?*lb1hPiE2D`DMzY<t7ziYFJIx?qCF0_$DyLXb_(GN
zbuZ3UZ0%Z!!!&ka{QiUS4)C!w$*;H4PVYpJTX({luPWIgK0B|Ay^0gRXx~I@_a$Tv
z8f3-UOcLF3`5zZ(SiC3G*}JIgauuCLj8`o!4ql4lN;&?ro_tfe9vzeY?tUxnYC$@=
z<OZa4t__|=m5W^EWSot4H=tNp+T8_Rugl!&kNsF29Jz>IC{W`%OB(Mi3k*Dd(uDF_
z*!{&~a^1x)ts4TaE=KUrA;%X(dIO%qi+vglZ$|jKZ$6`rK9okTU6}l68*%O|5;x-+
zq1;6=ZwaYJN?-MNb8i|7bBJ?{IwS3ru`^U;*uMoqs*3my<~&QUv~Y>FK0RJjyPn9c
zQta%wj3_=CtsYU=0r5#?-VRnxGV})#tSQxd{RlwhrRH=E-<i0C&W$FEcNwygpg{Ly
z!X#E~SCPYWH0M=Zv(_x4Q<npaF@prbYWLNp;eO0Lf-lk+IO)j)M<EvLd8`Y_C=nOu
z)h8+G=Uks@5?~Jp)v^!RXVlpzP2`JXIdDElZOl_yade+$u<97dKPv8D?XW7&zWd;X
z%w4(MkoDpVTGY#C18dbq&h$s!AusFlaD8(9$`p(a8Cz>J&pS6@o{!WTrdXExy^}&N
zMXKarN<9`$Z{xgp+jnWg9B(z~xe&AZ&gnPR`uuf(e>cwa`43$u_={740nS~$l=pb(
zC)Ll|{AIW|ebD;ir|y$wcr2%#{XoV2eAKOPJmRP?sXxZdW`Wj0$c+uT<UCjYC0f(l
zpVmIwdWm(fq~^<OPI<2ZLO1ltY%<$v%Xy@|=0mGP(zE3?dg7NCi3+H9jeSjlW#*Dq
z{hkljDO@W!jS2P)7L#IJ1h!usXOCW(E&TMlMD|frSxh<-XGWF(ID~X?LqiCk%2t2i
zEmfc&XL6}^IN|eQR8GCOm%wLC^YhZ)4_vr6CKKamANs}fuSDxksvDi7BhYHKXU=DM
z*Qd+fu#7f5To8T<#n>-05zxR?22^(O=`ie0*&x+4mjC1vbo(Y$(f2u2Qc9?Ol~0NK
z<wPz~ShOQ1Vm-~($H3BdX;D@}x5`5nnRVDtiV25fPL@JC$kCdI*(x+jcC8Y$e%L|+
zc>U<!+M5KMNgn7L$&QA4T_0&?8*pPwax1sIjurCzVq~*(8@_u8ehRoY?0QRWkabOe
z9@F!5z6BUwNByNCM{nL<VK~n*QP_^XXOBOsed2PPL-$OdO<mYpmfw%K7dEcg4))%2
z?7gX`QEO;mFq$FpN9nQb^%Oqw_ubXMO?fU2xv}hymb=9s*%`+=y+1cirn|{aa8I`)
zY(ro&N?;TBCLcA5(>-kdO{Gz08Y7W6=&zNxc`f8%mGw#)VVgz<&FYPIV_$rd{LtO?
z<Gl7UynuVS^ewq^tDvfbJhaIS-w4)&l+oY7;B>t!zr1<VfPF@_SQ+0+y84_Naf?5>
zTXskI6^08$|IJ%G{?S3U7TKQ_R#PVt6|6TF1y0||^?NU3Vx>}$b5VMwc5+IFsEMzB
z_FSZ8LuOHIH#{PHysrnfcRdPc?5MS4Xv_E(FZAz`AA?rI)D*Gw@Z03;VUb#3v!<br
ziFmHOM~!}`fow!VE_+$+*Kja2R+fU#7NYbh_<A!fPGRh27qLtFEMnUkXm52*$|55i
z!rkKhApvf0xYDpGOl3at#K)T)_ubM+AaQLKymeX`f5ML_5Iw&lF<)vscyna*TEyDF
zJNiYq4cYwV3$9M#Z)K@hs2i=GzCRw9p<+HcdASrXL8j-MAe6=%mm8pfl2%IAH6q>h
z^oS)tf0cd0I6{jnhrS2%4Psh)`ExEQ@oYI7OU$TL@pTfU#kGhl;`hi=f#N^OMU43q
zPZ#l#*3tRm{M~w59=8nO3cv3!x|ZO2cyC9FiELQ=;)}o=Ax8|72u&e3svR`@XeEv>
zbL<C+FLDuD-^PCk^H}-XpBrcDSvx?ZOAs_kRav5cB_r9#>aY<m7}ra?IDn2AkNoAH
zb547=EOv~8=s~8=Z%r;EB$n3GrJvZ0P)gHapTCfiLOyuh(%@Kfm+u7j=SKEW!V==+
zN0<(81e*m92<@r7v&AyLqT~vy#?~z2h~ni!sJ>>P*v3=o-u`U&)aS4gYGIu!f3=7}
zM=zVb-BXi6S2;9L^LzbGaV!h%q}PI5{L)rXk&~~-%z*<MMRu$so;WRe`f>hUFll6_
z$^qHy@1?S&$6PRF16h6@>5LyzbL~S&xte!Vv8KFzp0vDtW!#3+O2kS?#(`Gl(m{vv
zdGEX@<yt<<&I+8e@!cyn?&nmFaItupCRbiv55GpvuNEI%|Lv*&kFT=~iYrRHb+FKc
z;0XkG2=4Cg?(Wby1b4UK?hxEbfW|Gjy9EjE1b4qD^Ud6u`RdmFMI}_K)7@vEv-i8!
zdX^A7nR3_`S=n)f(+FRG9`~xzC8endEG@BiZ3A4h+9UlfW0*j{ZCvSeG?x~}SM4Ym
z#QqMcdoqOeH&VRRNp-TP$^6-4%r6<}j>`HpGgtNNf?2)>kpiHqsP<1V$~l~|81p<#
zJAV*g7WdID;-!BJ5m}IePO(%*m$1%xb6W~FDDb6bfR^ixi|!W9;u<|&&fu<FD6<IX
zx-PO*m&4(8zR6so7tKHiVucw4l|~oZzBW>`6n2E^!q=G1=~U;~vumIJ>$%_xm)tw>
zz!?T*VeG?4e8la`@n73P?9x9>X=Ru4zqkml>^!1!@OMqw)415646*99ZZCZIp02Pg
z(9;m6KA$4UAR|(o*LCeU+hQa8X_z={&@d*QXb|h~u;BG7qxX$vwViMBk7lc7q1p0D
zZI8m*m)p+gKWoz-nFZN5y-mONd|oP}{HjyFZwT1W*H+nFZds^+f?u2l6EO^$WOsdU
zAa1R)4|py?&WpRP^v{u$oixWZx92(E`9dV`hK^xOuZJ`0IcBozm%&(z7qd%_y(|8j
zi!NbX=z5QurKGIncDSg*IxhP~jfZ%|y1w^6Bb4#Mf$z!PIi6!WX^1ROa96+P#HCK0
z@-5B4YEdjdZ<Aa8wp7t#e)hZQgP|;Pr#fv2vEkcai#UZHa1!SuN!0J4@b^&rYS8+b
z4%+AOhE5yyO3fyzkinF;m)p2tVST@#M{t->_I~0WpG7y39lRL(#zjq*<z!bdOd`@0
zLYPhW01}L*Z?iP<{qP5@`&|<O4WRSr#f9#D;WNUVaY>leVyQTX05X5K>hv*zI>$@A
zbAj2n56WPzvCzsidyn}i=DTf?Fa!G9>Jb7$H|byF<iEjYbNC(2cRh5btiDA_-fI?A
zhlW&-2#mB4-=qt^ZFF{wrYG4$l1ariN2)`a-z(o+d7?C==e{RXYa}ImKjbSHmE?sj
zD;}wfbR#K?@jv_cTwNFSQmxs4eX!$r*VkOuxK%_;irGMH2+U2tzJW#Ag#obK_$2{3
za=n_eiqoW#Wuq$hPHJ&F&O%5?j;KV7;D}^6%vw!DGnh}2XC29~tO7^EEQn{|^HA>)
z!kikk_y|o&d+Gg2=YD)GS(PuOk>6-_^U@KjYyj+g?sD(D1Hv&<u)wH>W)oRehQ)5t
zkGIf{(e8}tlD;y;HtHH*NKFJTKuUo~E$h9;)b1kTL9+dU=Bi06lAeqEGOrbvpTQw2
zk+5+{swyd=T@?I-(IBTbej~NtcM{=v(s)7dL6!k-&{T*>35DeNRDCEk%TAceE>Kyu
zvIOB+y6zllF5*P;ObgI&l{S70XXWFGz?ukUei3aJ-6Gfl2?r`TM1;mWS1nObfhC#)
zM8)w{grQDT&#kg{X{O;8W4UM#OFI?i^o*hOhoa*;Clg{)I7WHU;ZFm(k!m#M0`kYu
zM<~JT$`{1j_!rT4h?n4%N?nnrbswvH6BdwJA{@q#08wc5mnZUGKBU}RXsW=cM8fG}
z?NLXO7PeLI%j96cD}ML$%gY`fW3+6~(M=Q_R$^@|lS>}NKS{(O=<RIB7IY6a9pYY#
z9HFRHV9c(YK#Y5UmpHF6{P|RLndFcmMdT-ztlP3J$L;&>ccLjxNWG{vXdq)$CZh8L
zudQtAfH<$X;dGU6m4WcVgsU7&hl8;UNi2tW39Kl2k*>W`EmANpN&Nl}mJ?kx<!VY>
z#J1}aTKW9(_Ux^s_epAp_)FAi<T{M-<)SoxiEd0w*qcKo6MY8!3AW9{lz()e&#LoX
z0=Rr0EJTll8#bn6Q7H;t$We?F)Q?b}N!4LC!#RENX33Z6t5o6`iA6-vO=My2qb;st
zXO*gGd_O^gl4RJCCsULM_G76gAh%$sIo8cs_P5a4^H_&a_ur62WpG@uIUvzC&{tAi
zV3?cws%ee$Ea$0#>D;5cF$I&FaZ4C553$h{r4ps3HJGRC;BN{HzuQoGC2m*sm!>-~
zDdwTEgTPU@ne@}fz4gJn@@OGF6&%QdNI{OKm?%xM_R}zo+Y)f81ln*}iI`J<(w(O6
zLAD_A)Jtv$UPaHv*#&FnmEmyg{mpSi#Ca-&s15~V)uWRO$`nH|^Y)v=c`@z#So_x4
z6N)K6lQ|XVh3@mC$_1ZhYCxI;K8SaxQqPWLqryiqggH4F)y8QI_5mHCo)L=rEa&f8
z?P7W-+!gvLoxdp1WuVbNug-NfhTquo60(BhtS9cqg({3XV1GONuziL4%u@I<0vB=e
zMo_Y-eX>TdY&Bg*6xq+4XZkjQ;MjiaVO4lWrd=(NbgNBwIS#LOc0ap;_7vTUvoc43
zjphq!x<0cLU2cB<qk0Xe^J4W4uJ`Jmh}lWnUUtMmOeRtsfmaqe-7pW=g-Pr|?(k^r
ziNVoY{KLunp=iYZc9J@n=s>p1&UoZxFRAZ7e#EG6r`~DR8Cq2~4Aq*C;Ws;O1ap|p
zOP~x+FB(XB+|rrN^t=#(Lv54@Y?{`#WYb^l%;oB>G1R?^xBC|f1;{S@JIE@mFl7eD
zP#ipjRklOD;4*nFe9?HlxUQCb7G{LMY$Y5Nm_7`)>SiomFHKoy*>oQ02e|gzO|zWw
zocGn6{JFtB#Z16W9e<j&%;_Cv_Xse2mtM!tU@@4qU=P}o;kKOXD6w&QC?IZjwDUh|
zG(bii4V_4p_W@9^JaCxsfwzGvLt-lYN%ldv=F?4RllR0i))JaXj0(=)Ei>st2pAFX
zf5^QLxQ2pyOHKX9lY<Es*lK<wCjLo(4@3poWfSBf!5n{j|4LGSx1j(25#TBQb0JQ2
zmUcHk4-NW5q)Zxy+LsTJG38XD(GBH3@P4$AI@G~Hg1}}TK-hL-N5$5J)#&mj^_2p`
z4RIyRXn0fG!NsVsn}pkJzuzFmqXa_ZyeAeCr0=dpx*wL%teovrp9>wxq6uW@fY2Hh
zj~gUSQ08z7SP>-OX^NVmVQheiqusS2p}Idw^py#S!L^eF9~}Zw1Ac%A$T`awjdLuR
z<&esRvAR7dQH@-bK4$$TTq|B8ZG4o`G}JK4`*4x-E;1cem8e58h4{nW65AZU#PmBQ
z5iBSo=UTxkQySLsZ5puh<q@={XhGmOiXd4GDJME%WCyLH1cG2m)|aoOE9-Ab;0odC
zQf(gI+HV&9QGeTuAZZ$B;~dn8zQ`K$nJSvQxEFpN6AY7N^Yc+uhmZ^(^M?5S#md6h
zUF)yHi3tYmT$BoN{iv*4Mxoe490ub~DSq4Vbdu6UWCCEfpeKZgi0hBT5g9#W%)c}(
zq>&eHCGNi(BcX*59!I|0=BX0!L=lc|V43xsn;v#rr8_2q#amH){h)IFU1FHfbh~s?
zzI^h;`YA0r^z+ZhP*hlPC2URyLw7_Z4=L!HfFEi}Q3V;L-~pnO{&?XgtT{t*&ij<P
zCO4=Eo(JFX0?p(1Mmy7coBRet4Z1tHzSS?Kh>)IxL*WLa>3K27LIRPSFilBbFlXeA
z<<!{$Px7a?@tXAw8z%rx!ln1~1L~kKB+L;Odl+rL`zbmZ)#1RPj0Vy*`buq-@e=Ni
z_JDm@{_f?;@xyUxf0@rG39@oE^ls*0_D)~RratbAlcx@UN1}6PenT73293`7ay*b@
z=E9q~e;J}NN}zPOd30OTyTbG1-i37|XWoioqVyr#7G07aT`T|L0n1F%y{qs*K|Y|=
z5sHj|_yE_R90!L@DCjJ*-|8#^DwOq`LD*83%(xm^hZRbA5>dTcW?14RG}wgI+06T1
zM4N}tXIa+=z@)N_A5ys`UWi8m5w!1;fLN@V5}a*=_I#6sKvl-$Y_uP(`0w+c8K>V#
zJ@x3nuC>@DR*|%0)l`ov^ewoj!^*`_R!vkhIk!!MzjX1Cca%EB-h?$_A8n6JoUvtE
z;k9uL9&uy(+x*dCx*C8^VjE8MO-(+`wp^;^vs#nUS1m6uKfG!WDNaQapl*i99a{Ks
zH`p|~7OW=ti>6l5rZaInFV*_Qp7DAz-zE;INP5Xw_)#Ht_>#_&{CfO3Vm3d3652aV
zuLEa#5pCUhxfhF1Vesljci?`IRa1MH`TCZuoiY$SY?>J4M^kY6Y{x3?hSYpsK{<|4
zk2+7AL2rP}CDy=Ga+BEvcpbLI9LUZr?O)i4s9s2;8m%5IYB`BuZ+H$m*7f76MSS<r
z@L)Dw4e31(Dkos*fV!-wCtk)py=6DmiCjF?_XY{s^mmi-vdi`@Zl5SNoEIMk*%m6y
z{%i?()tXkfhU#)}+{*+tv^PTzmImV4`C<`DpcZ{PBk{OCz_W<2QmwUlsO+ckdOzMH
z1{|F41$voH*S#)^JG=+(oPdDEXkOgDvrtKF5fl^Mg)6|VH28rc^yfq1oANz0enIAA
zY6Ant8gCpxO79VRV@tLq;WQh&8JZ|86Y-CoVyOSWe^e@fesIk$&=z_~9Kk!$NX8Oa
zW6^33iftiA=JPizJ=aWDMc$#FdMjOgM6~1fE0`dr6#h)23+XaLC*RpXMo&$^_3;A_
z2JrSU#L#ZF%DKf9bA5!gfcdWo3K{$yl}@odMP;JsvxFH*2$jy|^ecADOL6B&KD1A;
zZNq}>CGi4KqD4TFbuZnGt=RV>URm!bVv_NSZhy+LVIH&#$I@yl=b(aMd-%Q-ghq1-
z$welhT&4Tr@wz)m+RZ+q>QCl`e?}0`HS-eXNmZ~@^-F_RM{+Djlgzyz0GKeOWU%+Q
zJ~ZrU2hk}qyJAce)%m7k?c>hD>y^+`3PaJJv806rnDVFwLGiEpL=g|$;(MHTL0JQv
zd^<RFX4FOFSm&sX3Ak+fm@7WUid6OAEVG&k)E=n{Kjp5JZU~aixwb0g@_X{^NOCFJ
zhESmdA~Grld^<s$AX1zbcZ&LoK8_$zelGocI_AzcWmTdleGP@l0Fx5cNp+^=wJomp
zFf7seBy~@CIbHX0rI5Ai^p+Ur(d;enXRnuC&|G&aGL3Dg15AxH2TLg-tLjl2Wf@8#
z;q_4T9XXve*_QUQ0cNUJotVQ`BiD)fnZ$G6Z&4y0k!n??3#?-=ydfmprnpUM@<O^L
ztVwoo);0t8O{5Is$<vGGG788xP8A!48533q_B|1maPX-5Ppk-BCu1)0fvlDYs77BM
z=tZ@mXkL;1I%2Bw{id*|Z`asUw}*`-D`7w3;xqYUT?G*|GTc@K(;_!z+`-ASwTHL$
zcS^+klKX(7bkvE<&b8kHd#tT{Pth*D9u-<~u;JU`LWx7M@Un{t3T+0RLeZs4=cw6s
zErts5g`kG}Q<7O3d=BdkxH_C0iJt0$I<AW9+5ZP@BW^OhSgh0g-pGub(pR#?G2aC0
zEaLIy=ZeRQ<~P+-TKed|CJnHsC1pMSB(qYKGg}{{Hslz`+}iS+2cwRbmdZ!e>lDtt
zvE^Qj6{cL?gPn>)SOg`<hwyq^^~`D?5sqWe)7o9{`Y1wAM|T4SqRlbv>(W-6-yWC#
zk&O+xsvJVrv@>hXbexs=%NLd0lXp$D;kcG_T)vfm2#W7@*!M<0d@118<2=yo@@AXP
z&rf8vSF2#lhRC{aDBpXZ-R@KjOdt<MAKG6J?=YVtN`?q!FdE_SQtl75T{Zr8(79Ij
z(rst{xkrL!mz931I#921?786kU1K5_Jr4J1yqPxpF*(Zb20H!zg^$^9<;YR!SG#!N
zn`6Q(p$E?;m51cFWnJ-llrO=gcM0ytgP-sY;lFj_{)lgbmnkNW`v@(IlYfX`e<KxW
z<xz!bwMjZu^_$}#+n+QLBUAoyEMc`k`srHZKOH&$wf&Kf5X@@U-!zd&n<j#V!h9lL
zDw`)4;2RYaE;P!+Nx&4CQ$1xE-U<t`8kC_$u5}pAdLPW{>$rRK<etALjk?ZHR>o;W
z%q<^;jhI3!TZ{prILNQ2ZxCMT?RCtGgV*~I?UggZm)kp}i$&2nBZZzW5`iw|OAG+R
z(-9ojWZ5#7oS{}10uw&OD8xmfE6k!eP1AB3-?V<(OhlV5im&bWD*O|Wm_YHwN)}&B
z<R9n<;eGU-$u7udl}hXE&0;+eKKc}S-l2$+cvwpBz;c_*x_}Z9$OtlEL%-iB;klJE
zm%_O(#hBG&cT(0@9ZZzQW75bivlMRM)jae@gEybqf+e9f1%sHt7gmzOt>xP^<B3Z!
z<WCRV!~%p#A2FLYVFS4-9MB-aQ}l|d#2vk3X7@&)58if*B{Y<4)tQqgjFtJ7b0MLt
z=r&7Df6<oIy1tBa)*p4HDC4(S-lHh0QN2BQWU*upiQBOrq*2p;a+vb|MCr?=hVk9;
z<ci=rpd+WH?+&gi8mv^PFraI{(j@VG$Rxi-IiXo14ED1mRh#@3=3p>Za>&9*okzeC
zl}Yq1Z%~|r@9thz0FO!n@+jSKnfq}o>qmhwu(JIv)&U?P*&&0c9N~EXhmR06V=L^-
zO9;YM7nm<bCg|ZjmV39?fZas?$IU>>70}mRX|>kNcc4sCaiez?sg#gk9O*hvXpI`$
zV6dJBME*Cvn6ilLF3STo^>4bMY)7d1Bls+zL^Cw&&Nv=QUyWz+kwyd_@WONvV!*k3
znXp~oztgS8lAg5H)+$#cvld;-qp}vNoK8n1+&nw7Z*dO8Zs9Ug>K@X=F6fe#eZLui
zZkuRgmgaRd2~cjY)4fQJTsAIDt(~|<+Hy}cg;j?W6-!PzZaK2-CtZSJ`WXFris{gD
zC`v(iENaRkve@_2s@1a7<4@De)Gn9wN^;J(xTDm!$iMF>tL6*qXiF{Rc{W!ZUrgNe
zcP!Jc2<K_<#Fw0xg)<syZ|yC7I>6Ij2zDAH`DKLR89%D`o2z=8Z83Y7i)V_b+uDL4
zU<_2^Wk~9{4xt*Z`6TQVGThjAU`!wmYhIv$Fg{XvdhRxoA3<trXUOh3)$3Mdem<%#
zq4i?Izl`=7<~EWtF^nx<^l1Y3GXLzdXc>7xrtvuT(q3#_1D>MxduqAm!SYx*Wh*T)
z^iu9rDhp=5f>j*sz~ABky7$htz7m=9HGHhFI8@Mo8pg?F3u`e(|8af^co2URSWqu;
z9o^Dr@z+uJKhOIk7HF`JNdN{Nk&P=0aQq2Sg`KARP$yYZ$c5>XoYn<<0Cdw)fUA|5
zO{_}KHPWI?x=`tGWSfMWHsRAz(XmB&SjSB3K!btA-Q8-c7@1yiyRp1xB)@7HK?ecO
z)KVl7E0U@Z23qIZaCO>qHfCXhD}-Q2$NhY-t8_cx*wqDV5I$-;>YD7e<3N>O@6TCt
zim5)IRVnUDB4NQ@n$WvXWpB%x9MUlcvdFsgeSsZlZ>JSO^aF$FBc)MZ5|I?+LWQZ|
zp-R$vxWF{#$4=dH%)wIJ>T?;c;<f^*&sYa_p=3WFWwGEzF$Z~)e1?gxr~DYCdLx=3
zvl1PpB?tX5w51|Hz~IP@awy~#A`>HHo@{?|7iB5+Lv}rn{tuMrr75hEU6eWQ`Hw;g
zLW#6EP6bB7{nPBp%-Lj8g|sV=K1vBUvb$GXg>khwSo&8v204h97NCU*3)Y-MevZRx
z{_kZA{9Fw5c0RX`6VfgWWpcx_Yhp7ZxDo7DvJHtEzTjDvD$lfgaUR@GGO5GU&1vEG
ztK}4%LnasW{N%N_qK}LMw&{{u9m~4oUDOdxsk43*Aqtx1_}Cn}kK5wc13sf<0sw2)
zj(0aRQJuq4;wdiz@7T3DimRTESXMUC0-fBIg?`+;@)K50f4YLfQCR9M|K?lX{QRW^
zkCfT!^Y<(Zj<6CrAGO``EjO1a_bNiqIo+nbz@P=sktX<=)5R2-2kzZ>rLQ3K++2^{
zbnu55LFtaN0ni$qV;16r5c^v^@3XFPx@{kWR-0^p6Fai&xg~)u@`b+x3@zD<$S)P2
z4vO^8^?knBE1@s+LTh!ntEZ8Mhb~HIRtMblveohi*z9H2s5g4*a?1=vnF+T6q9TdA
zDrTDQNn^j1;33Zm;UVw2=9CkU77j6IwYEMTSUf6GjizGD&cegKo)%$7Z($@s5ym{O
z1gTMmnA3IjLh;}_`x3vowtC`@=d#mN%-qKz*Lm&v{oXg99sX_<EqykfUGJwKqXgG!
zJZ>B_Pij}c%*RwN&OC5ZT?o}|ek4PFOR`zd`w(2Q2BiP_GgRY9{HuMFL=aaRcTj;`
zexZ!NuHfGr=Ks5#{<Vw#$t}JPbWX;LAajY{ta_cc$wgLg(Q00W3J#$eZnEG`_3>iP
z02Y)@)@Q2bct*`|6Gyh}hL7QqX|TQ9^o5@V>_E(Me*hqppBb4-oc^40PyUzcZey~-
zkU~Ps88M|Xw`#`^J?-=mbj(6pOq(rV-aX%HZN~GkAO4lW<hi0{!Ge+?rOV8Ee%$#^
zgPiFi+Fa&D`ZnPlOD=k{sL=fd14$vBV5tpIDLVxcRW;o@LH=<_%h(Rc2yUzqTttfZ
zk#)eR_GO&s)S1kveZujlKh%a<!rR(OAyNS<NcPbDYs(+6Ck@dx`P{TwgD(Ox>sw({
zlM}?GMxhUYSG;^CHvbqKoy6Qc@?0L&gF;zGVEuc`18;~%kIRbo`JL&7jTlF*AhH==
zMzo;m1naJ-)>nn~>j8MFQ}Jc37-`6k&pyxjnmzl04ako5*wIqzw(^6^0K+Mme^i{P
zpqyQGiFQ=Xf`>wU>oY~R8V~gn*48M$HMg@j3_aLW4&5NJ`FlLykWa%cB0gf$X0}=8
zjrYpO41N5dLpMEsOHIP3S=t<Y^E$c4s_si!%8xli+Zk{(=vfvV3#gvOxi$?q%XywJ
zWD$>5n%rw1WjO*`>go*d+Bqr{wV7Eh5Bbg(Y8P+q<cT>F;4d1S&1)O{p7OEJFCRN-
zoL+7vrS)|hehYe@TskeDWN8%UKhAT?(Nw@B&gTW2|LEbdR46ZwO$gZvE4gnc2KTdC
za)KBMjC2c*iJsNZ8#dXqytSqO*SP6Fc3)t0kT<|C#PFp6uC+J<C{}24%ejmCKV_Kg
zl0D!aAx++1XTw=uQgw6HL^)Ph%+)a9{O>E<k{<yp7XTjI#F0}(wfWm;SGtg7J*ras
zIhqgzilePf=B%5O@|9wU+}<AG=)!fGaLSGQ<TLK#tfc(=M-vWZfq3*6QRN(<p;qtW
z>2hL#i)NUQbuJ4afzzX;m6;1Ejj23FLJmlRfP!v{DYZm{EHAcu{9D=uFT+An*->8c
zk^Im-Yr=~$k;6-60;c;&id@cfwz<Ca?dZ!MKFrUbQ{(u&zlhKBU5gA6&6Fs_^2>Yi
zId1lz`JjiPbLHo-FM&zj5QSqB6epES3ONp46I@Hdn%D6Rhg8>WQjrBIUIwjcxqx(B
zbJ`f^)amWdaBNx@+{DTci8O+CdVRiigGC+wfaA^du_9kvvbn#~KB3fdwP~*-MRX}w
z7r1$6$no~sSbRBldcLZPtcBOw2UwFgiBn_~mMAZPN2G-?lVe{4058Lqz$L#g;5sWz
zluwW#@F@KD^l0*K=~MTpI%9TK{!;z*lE8y`%JU=Aan=)<Cm|wAytQC65%pSsnrS8t
z0~$YrbS{a>76AwLAW~l7*}2h?lFH_l|HLELW?qUz{pxw&qimTWn$q(Lczrxee4E66
z1zr`pWTjV6y+18m)(F@2Tvpywq-&3W!MnCq&Z`g5+^QoU#3~3gtDUp10FTx%;p^Q%
zX<d>vYr`R@I)`Twr>0Y0FgktW(g~+u`pNzAn>{e+nA$rJi)}7$-~22xpWB^`2F}}%
zLX9<%=`?!!j_dQ)!(_Hv)BY0WnvI(PAn2(~kY=yXZDI5F^KhZcT7dORWs1j^euRqw
z8kk8o;o?Lm^rfQsJMn#$KKaP5_eWHyN4S9+=7-gS#J2ARk6qqkx2EV|F%)u~>XdTq
zdJn7B^6aZ$Te7LEY9ke<D~Yd^k;SmP%|UJDHr_wYrhOWPJhk@1?@y!{40e30mTr^A
zbqGlKZg_bnGnxWet*6A<Uter54)ow>&-d2Ctx~UY&A10>*##2&L*AHB^b1F+a8CGG
zJ8TVqFPi_4vF(4XqrWKw@vt|Dpt#h@RdB-Bp8$sakX75Tn<lkSNZ^Csn~T#$k1g>x
zbxn@l#>wcZjCJ82%A!&-S!)0>&;?{hi)qn1*e6O8>4fUy3j~uf3KNHihuJKK;K_A2
zp*Q8S;*i4=Iv?h~AA<2BopPN~5{E&No>GVlF!0FEcAGDQl=;1rrI}>R-GlL@A|)MC
zEobIv3V#{Cliq0N<$pN}j8{N;I47@y+h!u-^Ow!X0A6)jr(%9_exc#mL?_ui(zZzF
zV!rGGlGifq!6w7G6?6WB44@zeF#*n#d`E2S+lpdpe2qyW7PXpF{OKBp)7RY&&OCW=
z^UW9p2&1;<IjvP%xjT&w0liWOhb0NRO?so=Vp}sug%=2xLJ=Tv)g}3w=btd8K`tDJ
zxoul^TT^1kdtc(jf_7x2Rx9Xa=Do%cY5#!2LZ1-A&>XkZRlZ)0(*s8U5<IK2zz~e3
zmGwbcy`XCVZ7y<ge0ymxp#w0a<bPtjwr2Hd2ds%FI^7G~4Z!~di~MM*pGklEh9cA7
z5(eT+9v@<PD#NEgNKv)eWQ13;boOgM{>rx7$JV|SaXl_}U1K2YijR6J=VFC&Yww|h
zQZ8dVuux#`yske_f}NL<VrM`cb#wM6(k=DxX=K+)6`jX7u|JPj#hY`2tgn=ZdzYeG
z7FMEv^<iv+B2tE-eKvh|JV`!B#Jd$p!}c(}7rmkR-o{*|v5JNJ9(6U<?nlIBu$EP_
zE=O8vXOl_I0Q6!TOD<j$P)yKIPDAF?&p*0puDgc2N0)h3F0iD555u7OL(qPi2{T}h
z*$t9m#*pYsxkfprQ?&4H$))vFri2dJC9g`qo_X@mt-8(NN8FRR{P-!i*^b*Kk8tuC
z0VF~-IozFb9k)f=Df@kQ{4B_t^Klv*+XJ)I&`gvz%OpN^CkA)s%lL6E_~MajTYU73
zTj>gqbK*gv`IK||{YK|@;_}-;!1I)SsgCa@70G^{Nx{Y|>sr8sZrSJ<7Y0igQ)t%1
zH<57Cnp3TR{0oHkZNfOKFTMdazW@yncOw!)hWoEW!oPMk{~Qqt&WQQ<odd`TRc|?A
zIgZBWy*~ivF8&|8KpT!koyB*Bp+IS^{kZcQz=J-34F2U@TmWEt5=SQH<sW0eTO{6G
zDB&%_=QEOF_8QpChLD^T@X=EzMRFP`rC#*J!VQ*ws}Yl9&JQ3@ybH#VmFcIuc|B0@
zO9(>dmPF=Ue{(QZAW=+&k^8utPVDmVX+7eH-$i0B*@MQIXp=~*f~xnIlGpd$X~x2>
zZ>6}XX<3ccF_5CtA>*RY4+{{4mLIX{R(cRI7W3ICvR)<3q^ZMQlMRLxK$$HaH>R{B
zmj0+BnVEvcih7SYjDw<`rn)T8jd6I`@oONOW0g}~2I~|*5GG-wyP|{PX&_l<E_B$b
zcj2L@ezTwJnuXdIKj?kF<@N7p;HiN;rXP*VLGK+LAw|Av0~BgNTe4Gc6CPL1Ds<Xl
zWqb$oIxeJTsdY#3hlySSH~=+<qqxS)ssST^G0v%mPt#!u+)svDqp!fPc9wzw_Q9ZE
z5-?%{7ZAIM4ZWp}x!2~sepVibFi1+|lS2i2092j@DH+HK^+ridPcUvs(i}K$N&W8j
zpX)CsRPn}}H)ER1=cCyRK$eLkjpePCpBIlMz+Y7fw09?s#W;))mCEe7<Cd@Pc(Brl
z1!&NIB~kXOGW6SnO*ONC8+;#f-WResdBSvJ=mZCi`Pc26O~!23bkcIvUGsJcxem>5
z)B~v4m_1Km-SvKb_6H1f=Pv+f8)eAe_YFW6jq>7%YE^Y2I#pYydwSVn@GF}My%?YL
zl+Wd0B-%Y_O#803M2H2>3WjGdj~G9-23*+^{ch5XMMxBKN<upJ)4L7IbNI)5k}@m5
z^k)W}HZ~&}TvH8)%*%kb3}M0&zCfxiCEL?;3H`cwpz(tTFSD+T+71J8N8!BC=7SDQ
zt8wpcO4BKdWCJ&*`&k!!kIl~GxVN%}E>AOXiYBvzAdpTt<ezrCrPzD2MFEg+eFc?%
zh7CC$DIvpgN`<c(K6YADat{PvUT1BtiK<_F*7I#Aj*BkB1wtE3I(=lmMLCGMALl|o
zpVDUH>8A4PuGSkE>fZ-W9!xhIRB@p|W)&*tG<D}ILu_t-*PC2UIyy{ybs7vI?{#84
zt){3SU%Zar_Ke=N$u-j9Lopr_Y?>_KTX7&%YcdNkQnvq?m#V9WFhjV+i=HXG3e&3f
zAKPRb?xzxKe=F#_o)%PA-Y-d<*woLsmT_pn!S>54v(;lRtK)kP_rq8(E3PSI(r3za
zVw@&M-?VD7|2h|ajnC!~hW*5|e-}`bl3r>T%rKQ;^Y014e=mMHjDVNt#}crfVb|M>
zP;^L!d9~9>GClfzaVK-gPh+%QD<31Ja50cCSQe;0zZ9;L@8IFF=LP)`Yytq0BYrQJ
zgcc_$a9{L37#ks9Bn<=6F><Su+Y*82vTyO$cV`>WR54-(bK6BH*MpnH+qfWlRB9>-
zT4X1}V^46Ml5n(wy3*?uDPkSakJ><!+oBkOy$&E)=0XO#jdOoOr~~Kg0B8?Aj_CXX
zK)uM-i8GJKQfUW{$FXfdu|W)~q&|_7)zTJppDIBx*))RVeu|Erqc-diN93Ym8d(rL
zN(xYjGIAesb_RreK@<f{3*x_nIg1@FtfjfB=vmp6OAr*;p!?~D0c*$DMn2<i7w|6S
zvB+@nh&kgKD5n1grb^%<ot1JJ?Q_Pnz9_da|K5Avhd%x8_iU|^LIn>b=@2yC#XgVp
zQD~Y=XY#)SUiAG#B<-%Bq0C#>UwTB1tGgeS6VKyN>UHx&!uipJThTE-2Tfg^&uO&8
zeGcUE{LzDSiWW%Xt2rx<`^hZuR`$U$XjkguoB5xq(jW>lgC_NEmSExTznwZ+6sm_M
z-)j^`P+t(oQgcHKodg6RmPr#LD15B5m}1X3%%+lGZ-oyXr3K-1SKPOvtKZM07^Wop
zX0sbT-JQpnLM`gB?e7+pCEd!WwR_#B0AH6Hf%`gCfHw?wk}If|zMB)eG5ovZ=)%eY
zLI0CcN;Z4&%Ujv9f;iDZ3}Nicp++X5*=99>PbLV;j1%53Au>Y7WtW}Qm-;2i1PB}t
zx|?<&vsh<VF{3ue&4_x$yC{o;$IqE@9*dg(^G?ApFttWZu-$0KEVu-pN(9qL<k=Av
zZ{@jmlHz_9+13;X@JEf|&SLcwf+vf{*JElj4G1IS=as{RmK6*F*$w;Sqhc9hkf-80
za4}Z7tAl%YZ$BPPho*bsJJp^Ch&|i%XU%#%D6-;A`x!T6x%F_SHe8n$#Jqc?pYG9A
z+yUAM5_^z&Mx&i3C8aW<0x;?ZlE_!N?nQrb76dzXK9h_cJZSgV-A7@uM!&=}%Vkj6
zCs8hu_ajH;eyV#|gYFREV^I4IrC}TEb@QiestE5M`5q`>!MedsTNd9kPneg>dE8cG
zhdsCp@yEVpB#6au$Y+>El4uJWAoN?=5N{@-t;Sv>iW&i{Koqw0_GSnNibA{!!%mq8
zr+T{@u`;u3u@Sc)$Dfdxm*{~I@a!DZgTtX%NB(KX3&+y!Zl=Cmq`>&iK-<GgOc|(B
zyF-+M_m<|sty|!CkZa~us;%Esr7W(aj3DQG))RGxgn4`~nFZTUN}#q}$DkYrDG-ny
zvvD-H%a>y);mwmqc9t1(5;H<(ibQgK%z9q-f|sy6v3*4Z<8-kfGI%_}-}uhLlsmfA
z15yTiiq;%$O~*?VxDqF-xNSc3x#E7Xiq&P`lPS~UWx3KZphSJ6Q@^aZ>vR3Zf6Vxx
z>Ha5?!fPYN!yNPdPJQ8c$d*L#P<Q3kMfoE0YsEsLM<(*L<>hnHf<I!<-c;ft+*(sx
z!wIC!=B7Q<wEyuniF`&v=JFzD+9!3UP^B{{J5?-k6>ZhXQ;SYztx1XdhDS1^(e8BB
z<Z>QA=$4sPat5zNEa7Ty*ed;I-1Z=-t^|nyYPat|<Jtmt;O*-$ZNPuu_x}B-A00&B
zD42&Bw2>ye{ri#0jjI?q$#yW9Nf6<~tv*S8skkLpp<)Ub!)G1;Az637o7oy703t!H
z(*%p~6iRK0`ilubVt*)(Gf>CrK8X=yIsr|usut#HeFot=PpU-4jPW?+SS)2<LjfT%
zC{%C`z0{YhR&qkvnElIf{Q`IX`^Ys~973Qj<7DrVoUTKi{Z*@B4{RIgkAO)_p`81~
zi-C-oL+fnCciCf(hHgxXxPXd7g#6e|;)Z^XavVi_md^xdjE5NUln;%7AS_QDxXXJ{
zPEn{OY6itZ-LczRx{HH3=;61WcmV}9vjD_2z#=lk_N>)5)x_D~@G-ivfMlVKP}38D
zXsAV~Ewux4Oc{gnCMd5h$=XaLU7Oz(3WK=7vqc?!$uixd);kkGcQJR@jE3@>yT&@Z
z!@A(DNgjdmTVbt`QcW!_>_>h_kyoJ1vVPPNC9jG|Zq}najI)b@dV>G4QZ}8LyiE_>
z(d~~eUt00>iQ`*HQZ54o`)>zsi1VGYB;QRB)i&Ok-rv#+IHXp?cb2T<cyuoB<&2t#
zfeL{gNm2+KDt>|O$Bpw2pFpH-_hi|fPZy}c^h-A6bY%uH7%;~+ah#X&!oz?)_N9zM
z36g#u#Oe8Rzt_6`p(1;zeuDf0*fQaP<j!Jmu$l4J5ND|d^`G(sc?@J6uRQ1%AOcA=
zgHBP{j267$Nut}!9wT0t`<>Ls#^8${cVV_BE3IpMOYF;2wpphook4Byx&VQ-PmagP
zCWAn}vVTV)vklb_kX0a*kEX8upL<b;P;05Si2E^tm%v@p{<w+-SdY`sQMT~<N1nX9
zRv4CI)xs}1I`5;GKPaace<$~5M-qM1Mxx9m^(gr>6YKA{(&#@Q3%)C=<mr`Kd@JEA
zlS+?NK$*QhszhE*u+I{MdX&5_xfbeWFiDY3)<)QG*->okV8ScnC+;`IDbZ>F<gj0d
zt?)tTj()_P_UA3!nl$x&2MfE8;8jRr<PYNDT!tt%mh=y|zmGh0*AR)59IZPJ$Zdw<
zPx14f&xQt1il6&PemHdNFu$ZDLX+rK^*^)!ZipL;X(pei<47IHp)(=mA|+a_CZ`m~
z2PBR_=hZ{d0Xiz_y_nf*Dg$g`yO)aHcYQ5V1O6wG#hcN+BC}<r!k*p7R)env>(EFM
z27Gyi-TO1sdK1{!Y0iicTszb>hh3~>Y|_&N50eG-b&Yx2l;&LC4G2$u@|UfkYG;8p
z10WJoRAo`ydZQ)CjOSQE8q993wGkd;g}HKzh^!L!+Si%v-qB{2;?1@FVeui#0<Q~l
zgggLuP`>=u_wl}t`E;b-L-PG30jnk~7{30y=}Ag+dEENGn^gvkOXY&At{>_ovbSCu
zkCvaJ-7hY)gj9rU@8F@fjV`+%!XZNSCv7B^04|Dn1x+3NYj^EG<`Dr8qW(jo$@^Tu
z=>ciavG{Vf)30)WNk*Oidsk{}`+=RrP$5cg>ez#yL4T~b^f1qL+{cmfLeFzv%f;d<
zS{=?*5E-r$iZ8FLJ|65OY;t6O^JZ_0Z)i73rxm|oCM=Ga>NwEYBcy_L0W6V;bf*~$
zq>b<)_F;rbxsI~$p>YkNac^@`lOy~EJ=342Ykvmfm@iStWqdFX=_4N0mra_wxuA>U
z`fZF5OdrkzibSV9InqVk#b?TlR#j8us<Ulk8X|xqWRPS;Rh{DAny|cBohrm69}D2x
z<{v%HW9q#PQWwLVz7uM?c(hY?1Ez31`Ltx5l4>1-8A2i;9IdCT8p*27+@tnL`j$bu
z_bU3&5LAw1Xi=hE-lCT;e8QtfO!0j?;3eXn&x_3Tx=Y1~3~iHWF_VW|C5d8f6)?;-
z3Ea<Z)|#l7KlcExlmnSm`vjUWiMg4U_jSl^33^y2e<Z=$U;DFM#3OitY_+uQ<>AOK
z9wUm1v|}HdR}^;crg(yQMk!TG5-_+u99&Jz`L&St(ry+LMkdI1fxOcRBc&lx;<-*$
zc2}SFD1P$|^Wi}Moz5sOQ=ANu;`k9Yi;^!l5pgS05O+<|KMH>W&$b<wSD>?P3Q_0z
zXna9=DR30gCwosWc;~3tK#W?E!UF_Lx3kY;_-=kFI(@utme3Ji6hBf_eK&@+A$F9Y
z?_??qlSgKik?Bsn+*^+wGH((s@b!DHTj$E-UI#8KP<)^*Q(%jB{ZXy~6}13XE?Q$|
zBdlx>{6{qM<1_R&L1z^SALKmF@98DSksI1FtR+RB$ZS$yX?M1=zNMr+BB9xRcMEla
zpv*5OBuQ;_eOg{bI5diY^1gwEf4BLjxv*fecF$x#cVMT6|AdM_o1(z+!SZUN?qK1G
zdGqmlg3Wi694U%4>Dz~60U~vw2l0w;48HC!&8Pjb0|Em`F5wsbp|pn?421~OD9=S1
z`PaDx5pgYk-3XM0S5$W*N6ZI(ymSdk>;k-evBgTKk4ATQhfXmaxUVa2iOw<Vh7Z)N
z8#P+Q)DRlpkz~V+iL}I~E+}aHtxw?&zC43Ys|ag?9qK$Mq-StM=2M-j>gp|C5Ad$2
z4epo={Cms3mVDBlemDXHrMOSb^5%H&x|Szs%yK(|&ok^kU9AcDUY7CrdTx#*U{w`<
z<y-rqWV@NM$NB1b`^21HVbC4<uz^E&6Q?ni^=GU2<UpZ|{g8v+=Y`LO&_|;Kcl;6?
z5!JQhG^z&em^2gTi9dmv$^FcbV?27fcgy57HxYh1vHFybtUdU<OC0|Pxp<02V#d=E
ztes1**aZDYeN-#>sE6L9>ruhP^-+`)8CE&HBg#*w3b^Df0(i8^Vb6In*t=W>1o1=P
zd+i6cnr#B2nqOfpR$ENgX2*QMURjr&5?P^LA7ujXJq>Epu(aFzqrbCFqmZ0<(?vMd
zkG?+C`#*8WvhzK~PM1H2<~el(NlSt4%tkAO{EZ;PW24PT4aw`kvVfF<T#%_)^5H#(
z*(PGD%z$7;5h-V_Y>g|GXv#P?P423Pzbe5C{K1dKm%MqIr-B;Cjb1cn%U||^Y*BDH
zg*;X|=&2H;0e<)E5w%i+kjnjLldqi_Vl1ZSf|FU-=OR?M$N7#Vg0H;_%WJj1&kYWJ
z*5g@=(JT@vhY3XAc+#F@pAtk(1K2fTf2EHW>hX66yRVp9R~yy*EIe#Xr`-<v^`EZW
zfc|iQ-#F`~>kN|>2A#mI28kEeG*D^$P5^d<S{JOSM;Ow|bzu6I*-7xL)ZVHN{6u-7
zPHwi@?yvY!*w&-+MeF(zaK;}^PuNMTbD(Z5i9er>X<wKQk?ttbuvkh?D#3oV`B2^s
z6O+-e5IO=?MIK3S61otPIZfTv$k*p%Utj|Ui}F$q#YVt^&fK>PfE&j>Q=-&J+go<?
zR#IMi@@vb;UWOFssA^t4j8P8UChl~Dt&T*8p%Y=C_%LT+oEO+ni}cMdcs!4xs9I2S
zSXKTEMhJ8qfvQ3D!;B^lJY@wx1Sdz=d>0)V)Qk#B9UYO)=4K0t!`<tM^P>HUffeZ)
z_eHhty-Nslq<HR(JP#fFyXgpQaZLF0%m~yENWuK^go(53{cQ?NaOfpgOeS4AY^$PM
zf)!}@3XO&!C>WJ~kf{6|cknI=d5X{yZG&LH#urSSUqmhQjql$<9Lp9}mXtAD&?LiA
z1uVugb{K~s{@F4u9+X!*abQap;+<kI0pDLq669+X8#@b3kb6{L`fK$y#A~?dpNqTg
zao+bHQ9Kqk1V{pS>8WzVUbFUj*PJ-|9SdnQMZd+}3H$UDzf~%yf_P%UaCTM=sm#?|
zZv_N`p_ovObP+5OiH{*DN$?LSwi3U4pkLq7Ra^yK`9ZY!^9B@BQY;?2yqD6wfuo}R
zXS0cce5&k<GSel>4i|4_v$Bh!rj&+EevB_{ow8dD)56&0?<Jj+#11KU7;*iIh9#J~
zi%#<Ra+oj+Eg!yek{DGx?(pmub_6hO@%Ouew?`Ue83_t~%(D<{rWS6}=$}Ix3=X>G
zZ=-Iq*wepAY6X5siTqG^!bp*4pBFXrDo9~d+WlyZfoML~W%zJ)z|5;?oH%k<I@z|v
zgE@Gctwac}ODm9BT2D~OVZLr}E=-NKk4uU#Y>x7tZtA$VR9dBC#Ap{Y%<$a$+3Rd=
z(ck2`YO2NjIP&IQYzP)q@xO9ccEug8?WCNWg&s%9(=C_%wVodJw3&pXY_J(Pb@AqO
zBSmUq`T?&EwcbX8ntHr6XDN7o>_(U)a*<!Fq4@dCc53@#el~fk{T>ULYSL~vB0wc=
zg+D2g!4EW_b=<~@PO0L)8XU1F`|P&Zrp9C8$*XA={}-3>klh<%cKc3(NWRCXBd=Cy
z<1fEpDb!LRUBEUkfQgZr3HAfjTbA%-L^0E6o{K#6#!F6Iva}Ui@x=|8m0W*%@wCOl
zwUz&r!xe2{pAbC9)7P(Jvo1$m15{@gD#d6dz&495*-30DvsWDU2h|$1I%K~a|1i*L
zH>BKD(LhH>vq9b0WYQwBa;79NHs)@oRC0~{iv?gYP#pFK1K;W}YDGv_@e3)&Zif~<
z=5HLB=9+`{qV6xfn|RRo0j?~GhOX*Z*II=U80<4tT}<U%wBtVXw~|{0vHa9=!Kmy>
z#=DqK&8RJRC!y|<rCPN%a`rq5HyZFzj20Uy1`UCPvc$WjSHDr8zLF<tNIE}B)6qWc
zwwzU1l4JvqO-u|Kv4;|Z0^*MWzqTgmEFZ4ZkeCwte(SQ)Ti%7>5%06B3iBX#_36I9
zaoo(_)*&ReF(n!Js6BAu!w|APGC+BP2fYta*ft4@+BLv@^0@BEDCuG2DXfViKk`(_
zbwW5uD7}vBHQeECm775a^vV6l!XsAfq6^+5b;d~wxshw3$~UZpa>wE3eB^}-8mkv-
zibB|dPkrCZKrRgBRo_2(jJS<T`HZ;OR33ytvK4Z5!H-4fd!B^?!HOB*fs5K73X^ma
z4{7nEvAF7yS;qlwgTS<OCP3#3&5Z>*gzr1*ggb(soFyh$uG<%jQ$0-Bc;tUeR8&d%
zg1(hGPHo?s#kb`eyg@TaQ`ToDy>&I8yC|x)u{-EICmk9)L=QBsChOaQ5=u1SuWhq(
z6=bDb-Q^p#U`Xeq$Sq9EeH-&;OY~0YiL=C(HP8gc&+>@cL)<}EV~``u9h<R+l*WLG
z*|=jcUEtrj3-DLa8B}rp9^SQXE>oy6UP={h+D)?TJvhy&dKYIngAGO2x{@uZ%t*)|
za86z#%evT0h<sxr`B^PLmn88J_8uGE90o&AHkfF(-Rq>8(%YOe8V1Vs#F+lmkZT^2
ztxUNi6;-Nq#x_^R_E$QvO_vQb&VAfp&4K^vOr!)G=F&TDaN66*7(3CvZ}yGapC?WC
zP(cx~H#1q_nJYQeH9+P-Vrx#J|C?4O0{!hOG?KpfeMb1!kn&&i13~{cPRPK_JSa19
zGCGZ8&AZOX1Y{cW#)%L-Cz=Cv$a&5cr>jAa#s9-xa_#@-@~$#jsMn(4%^q=Ad>HqX
z0g7eKXB<vwaR-}qhQWmYuyO$}F<FXw77^t+KJ`jf!<2ejJ4DF4=dceMVy`vUO0Lwd
z(N(W5jsK6+gk<xntO4w~I>W>KJ<o2M4-Ar<42<wZ;m@lz?F$nR5BL(ZO1)NByW3W)
z?yeOSOLZsl^d~<iqZXOijFn%NuQl{~o;C#FG+pepU#kuk?Pgt3j<wD&vX*GztQFhL
zG3Cv^CsOSRZkNMtS)RO*zFyRD68{Ez$aR_Fk{TPU?``Xvi<xAu5Is#%F;VnDOrMzH
z`p*C(e^T)%&;%lv(F=^q0yO}dsm{T?1`QqlMXEX3LoU-k2MtPQehrlfj|LTw{ypJz
zeQ5k^W8V(_c~Fv@!`vC|Iu8(b$r}Yn>w&+nbORZ#;tGwJ`($kCp87Yu|A(^mBZv5h
zVHdQ8_FXTALegKS4uSWXP&$v>iDzh_8HWaJ8pC8W%;?H;Xq7G+>+Ro<HwiVIS`85)
zW(r=8Y9=Lh1<jBHAz@_G>ZB$O<=@xoKVw2~pg{E8H}fX+gAmIFu@rdIE&`pa)SUp2
zLpYWJp3|wv;}%;I8tarH%86NYix!t7GQAe(INQc!(nw4?gn}%_ym?kbF|m-V<7E!k
z>qcOb#FJQVmB5(zI?NaAb|6%+UA|s&Fm00SAKpw&#Hr4pM?|MxA1~+1C%h|nuS+4H
zm4?n>t}|5(y^(-F3giR~lCvv?{A)cA%SuAs6-$7sFMhY*bruR-0I#*j0@eBNQ0Z(*
z9tQ;)pcsb9(4IDG?h^e)nJRjb7^Mv3{Q;1CSzK%QZYxtec_LxR7eRzif<Uf_*y7>l
ztOq6a<acYUMREZ42_T_P)O$tm9cxNwqC?NZEsZ}gChEzq{EF+U_Qj0(dmd{H*Bw18
zFfw|;NpKcn<M<?J&%a>vK@pJwuzpNXf`H;vR(II`7<`&+9yeFqvIKNQDX}AH3JJM?
zIb#BBP(Sgy|2Xqms4<aPw5q7u29%od{>)~r2{gmiua5ASaHD={vjWg*d^wLpiS(Q0
z*tzq5(6r*f_vCP#Tb+53p(W`si_0$$?ELp!SDn!myDJDX?d0h!{<T*BC3ha6olzEW
zE}*c?Ee$s5OkCb0)11!gEx~7?Sf|j&snMjuYvW=`-O@eEMEYOtuYK35RZOAFz%XxW
zYfG-wZI;HQE&Za6y*FWimnK$)EEz>tXuI5SGGJ%)kzM$H4V3<5?WwKdj4o@+ki#}r
zRN=W{<7P9TpG?ZBK9)mk%kAt|T)!9fDCr4{gZu1G%qy%(B!@vEJGuR93KfL*^NBU%
zR8`YGhtI2_^-4~~2`2GpS_7k{H%PEae0MApt06sPdlP8!O8^F9b8t#3DqFJQAJO$G
zI@4q&NUOBR{zB}c@VJ!wV+l_|%>XD=>QgT;_@)8pvd9$>lesF#f(+%qGkvuZuKErE
z&b?dR->DGE<N^PYpo;jqTj!%*|DU|YbD%PKbblQ0|33PaU;zQ~aG$P~9TpwUaQrWd
zRnFTE<q$qVZ6tND7mMM0?jS8D@MTDf3NDN~2tI;g2SiKfPvMKZ9G`t(Q@s9bJq1jY
zej}5JMld$H%Hbbz&N>@cNza<)N7?*rtzJ=;joY}Q+=`*b2b6H;U0luBzuhg@7^cXy
z*#wE2^hZq%TmY@~A$wV-7Xl~IVOd_AqLC)5!>$a8RD?(smr*Dh0;`T&{anh5ne4V%
z;>BQ2*LGi0pgA61@^rOb1eJ)v_yGZs98?N{4EY92xTAf?y}7$BWi&h#D?v(XYAbBT
z!MU)q-*&vjJ2GL@o#Es!Q({<fu%|^Ku<26_+N*zE9Ul^Z0W_o-AlANf0h~Yvu?)P4
zttb-tH!K7m({+I!RqP%%`2Tg~{YNC{pPwr$Ic!p6zqbHxfAspVq*Xh#%Y2Hpizxz?
zUQ<oQ|Mjm06M@FLpQX3S+iCX2v0UZ`T5ax@g2-7P;yx@`mC`Vr68&y*aiYkP0My@%
zEW6)%6_v>0d|(Yx0<T?>_}VX2)+!V;SgIpm4?UEpsv04*_JrV&$}hWBUZ>taWRWE!
zpm0^xH5gnAWo1i<fI5H#o(p&?CGwb+!8+i%QzEY%6X)$Mgt2zE(ete1Y6l7i;ko`Y
z+Tfy$Tbt|;`$jyG`d7H?gj|XT|NP6*o5i%6w_fwPO$JD(6Co0hk>W^@&+}n_b-O?=
ztL$$<5H7=?Z~jW$JAWf~mQ&8o$4hf)1O>MF{Eh!VGv@z%jB-d&dNd{{m=(rP)984a
zIB!x2|LYR_A8$|w33Sj~d}2Z$Rth2}*93Y!ZrCN{M_7uS)L^Y_Mx%(C4oxK`;xzYc
zmXdkdYjZDrtTc!|@d!*l31Jkzr_G6Elne~U^kuO(eKyBxKfVrx8o1*(9}(!B9Cxqm
zPC8|^?wEwZ?N(NpUThB;>AD(&W;vjNa&Euv{eoEJ0x=kZ-E!hpV|6FMMDsp3?|6!p
zGt_~#9OISmuVcrf#0Nl{IPc~-i|hdx5gsI$a0g$%ng9jpYKmJ4Uo#s?83H7_oj@*N
zovH+iY?a32su0y6{y*O6zwV=d-!^y?Bxut+jpfu7hntN#0Mr<h*{`s){`cPEFHQis
z!W4C3@7`Y4bME3iuuQalM8)EGH`>_nPPVE#0S>Voui5(LsV`t??$AH@m+(@9?U66=
zFw@56C5(XTaumCsUT+j#f~*Pty+3-hvL|wF@h8aR+8)IC-0-U}HC8*kWWX;G0Jl}=
z6Kd$XH#g5snDRV293Vl56~KpXS`f|t1;KyC9q2BH#}Olp0}K(8KxKO7q^wISy`E{V
z&rLiUsd!~(uXd#e>Ew3<fjzgEr~ACnab1{YK(F0F@%ulN{dG`X+4eOI2SSh#+=9CX
z4{~sK3m%*VcZc8}{NN5DxVyW1(BSSa!5!XB-`mgaboa07`}iYOrwUH?UNYC5V~#b(
zwa|>^9~{PUDKplQEgbEVBaLcPaxpv`;o#b5M_WrD%T5IL7{EJ)-c2;^#m)F%afsjf
zWB>i+eE|nS&K9*D>y1$nN>MOPX-!-Dx2^cR0$Eg`wuUsw2;CTa9`3nQ{)|-m-(xHK
zDU$2(t$;`cml}FA!UO(@J(KKsmE(Sz6vJvpkWgI0YQ+Ntu7wA<WA07x(QE;5$nG<5
zTMl}-8}x)?fBFI}qoQ|EmdzI`HvnJbn1WNh)3Wi90$4*S-yx0xWw3air`u`b{KEu2
zFbc~HW~R^MAY`xaizQlI@iTy71#_ve5K$9gwJCHM^xQV*KKt?B**~^47cePhrOos^
z0VvG<bvEmo*3a&wiaz8PcH6@;^+s4Hu>6+1fC0ch_x<&HxB<|=cQ}f_?Rn<X{Qy@E
z-amKO-K{iJ5-4>V>`fLjqn5aUUVOGpGMlWONtCDtMI`ZtimK{%EarWbr{nZCDe|OA
zCLAfDn(E9}w947fa}?11uTF!);+lf!F~GoPdG3ZYZwBEX>)E&u)_%|Fd(}}@5Umck
zV#~vt|JM{HDGgFFehi-o1Ri#@$*}uu^;3ku&)|0(((i;u1>H<(3spy>v8CK5Q%%`t
z+EY#SMVi{Agu`zraFdk9yT9`2_jJ(YYjaBta9L3m&pE_B<M3vi;0oOyP$J)r-L}=V
zom^~ELH2lqyM`L4)iX(v+gg=$Q;SpL;@*F}NEzNqYpgn&R-^2r3au7}d(A#62CjXq
zzhZ8GU3zJ~bq(i{wHitS4E^y!d%acbD)i~0AGHFC-+QYL{aM{)I?XS@R}C};DP}ta
zI99k!ni6aBJ&qwwMTLX^6Wa5E?2MYotb|-DCf*4apo2xr@jbBI_q`gyALgYdPcc80
zpDHSn<-M$1c@uvWJIM-EWkKglc9d%Jm70(}{!&i!M9UkwcQqPy*O(&-hYQvF<=%sy
zxnZuHPC9%~F1)3a_Zwa>a>faPEcs?E++)K{K5ZDZ{zlCBZY$XeuixaEWIIB%lwv<F
zA={{jC|{(Qn=r4UMi`U`gsxJ<<w(WO5L!8)7$5_zEt21Bfw2Y#03Yjb*~e?3{iWu{
zXQS#*y2d|6I;nhS&0!O06mz5_r?m?$<SxG9N2BncZMMS@YWB7R%#4FQk8_BPdVsj6
z<Z^kiOYi_N<zq`*A367Eo3<7;ZTrc`8yw8UX6}H<O28Y!m5#qRUt78#|M+;-nhUxC
z{$=<>yu|)Re*~}D){jIWqNIVsQtOd#i5`F@?)gTd(HwLQH0$G0b<QEB!MwM|PPnJ(
za@J&NfQM5K>F4yrI7f8It*#(6Ewv&2fo8Mm60md&piC7Yyp)ubq<hv4V+&{%_eYUS
zW%Ntbe|_t+VAI=gm~26T&uMQxL;JC;Ez&E$btQ)EVC|{(>5gv}uvXC2T1#?_zI>Wg
z)rke@z0Cb)W5+`JkHbzaXkT4{-3($j`9d0i23s-Y%cMnt&0(9xAE%fuEp+-r<=HLV
zXTD2wfD{)2kz*sGD9Y)i8w)0>udu?l5#TlTy~5HYdQPS{EvAaps2_9W(&(Q#G<W2Y
zPNe|VYnp9zdddB25mKI0g98vRH7ISqv^_om2yd|SUrwbKLtbBu1RlsM9nAfufAyc;
zghLPcd=;5PVa!e}{~P-lEEwTRgf%FJiJ_YtTTEJsl(@ZIVq=u~(?3Z?Z7zXrYysa$
zpUa?(Sv36ea`!7417&_|O-8#Wp-h=Z`idq4vsvSSm(N&k#`KUzZ6s##T#*Rv^+(O}
zBK0|YbHWI$Li~1=)9#7LCj{7_kgVw=E>H&q0c37^5n>f5eR3^h6Fq!j<oY)}3XQZc
z`a3P|BM6YF8=?GXdX<b#LrAzpQmtCZ3B4uc$SU@}U+URB5Xv-aWyiCnU}hcXc`J;^
z)P1`A;G{NydLHe^aK&|49D6OSc9t75-);$FUy22%gSGGv47;s*B(w3b2*Ng^#m!VM
zPNxORr$#70d52z}=y8%4H_)~(H*m6m3vP^N_rUzVN|H`<Bx4rm>igz;L=EV_+u;x_
zhCx5V)SJ4;0Tio%S<n6A+Kw}GSsEIe4d5cin||I1b)o_hRtnRPc3VFpjndpz7(yJ$
zcqulJ=agAOY=r?@47$?>k^-haee^wY0*|XBf1u6*cQ4ARF(ISkQFQC*i$q~-zc;Wp
zvdda*`GR`PsN@@3Hr*K1UF?8Ya+jb7vhE1L+6ooszbB5s-hEPXIp0ao4eIrN3G;Qt
z&6afa`zrcrF2f3xVV47thk%Ca9_@IR0V|KxCn{Ow0ph!K<ts|Qo1kAFYa4x};r7l~
z4|a$g*sTe+PXNsi+m!pFlPGNB1c7a)t@ZF!knelekXdOn+om%$ecK6OLm(jOOpIV-
zz@&IzrS*6xv;EC+h!T`RH`>dbs`E|Y4PDH6s+4n<3{1Sa-&HbQJBlsshA7m1hK)4>
z#EEL_Z7eq+!%dxFqMjEJqv2O!2ek3`GpocfH2~JWU&I2ujh4j0GoMk&A}7W~MsM!L
zVfr5^%Rdh5G6K@?XE}Hm3$WmQ8}B}feWL^0IJ~)IYc-|j4_geW49C*g#0+3}fw+=9
zPc+Witm)q%&*w~OpA?c+3Ui=B#4ZcCd@|m&dFqw$HsR|VSn#_zx~L<K%XmzP`f~UE
z*J=O-xMwCkxeCrhlOctd9&}6~sKRPi66$>aYIf}|K(erA)6!<agjRDsLu6k?)_1jl
zzfh)<p9@vEFBSqD26cG?h4AZYk#@NP4bqa>#6wCsT9#Ss0Ke2ajmff^kQ%13Z&56>
ziQ1UxoWn5=_ddzkHEY}Hsfu_0fO3VdKrHFgkF-|MD2*~c?U!2XEYT|5^0J~{V-W4>
zb~KXA)d1Vz%gV)fo5@IgaE!%~^zQGp8d&*omJxlyPDgPJYFnp-A5>Ggh63=V!e7kA
z0VhAFkw@&zXpTML+0_s@=GV=!>78c!h1R`*_NySuho9e!d45c0G311dLFYo&p8#pY
z^dP5L2LoF>N`_Rac5_GF=y0GR$HsFzR~XM7q~8}&1ZTO|3pPXX!n=LEJ1%WrO-*%}
zQuBfCHV@Q^LHn_kiO-DXotL*kRmEKJ9Rm@P&1b6%U<ku+O%a#L^NxZ7<K)Es3W8J~
zdhnk!<&V*|HkJ>rfJ<#iqyFbF6M6DSc!FDiCN2APfbC0}2yW6;U>8)rYt)6lv0d%(
zr&cGl3Eyhr1JZQjlC$j*EEY(gP6!yhmA<SMXJC^K0A~lDtmHZt2VmK)Ia96L4(;7$
z&UKQRj$I7)LpnjFi!c@=LumO<j57Y#Cr+H@2*`hiA}?!ZKEub;i^l;jV5OU1aV>u}
zV?LxXN6Xxd2VyspnH-+azY%ZT{oyVK*I-QJw-PTqN;H5p<`22--cWUO1RAO4-n%2w
zuCk|q8;PgWh&u<ZKL8P(&0a{GSZePsoi?hs-4`an5_GZ*<0mmLnK(?g47ltF+UiXl
z0$2dXQpV6o91FHf1=>H-sXq`bT^?bt8|DXa@3>$l&>Ph4hEgj5e7c*=D8^nORMPAx
zD^(Rms0?XHOb1&Y)jChNRM?GZZ49WEeq8=ub`J<m{8qjqV0w=+EMOX=niE9qn+~yC
zRouxlZ)SdiFtIjBWr=6CLTL!$^;-xGb-yKd66Q+RI7h@xh#aACkG9pC;{HOA5Qk{l
zu$_$0G@58dfM(2KJ{9#v#s8=m2`v}JR@qu^@#zXoJgjprw?2JWyAWln4&VSt2rQ?~
z*lwA{_J+J;YY8OY95TY4{p^J60SH**__0Ax*sGSGZs$fuD1FmlQ=>c`a_f{llguGm
z&y6Wx5x;<dB7vZwK?#I=3H`>}5AO#*@6-JmSh}-vfIk|otDZ@($J%6^AI0l!Hk3$}
z4V&l*D~kdma6=M19s!me*;mPU(3UBn;PD`V0Ac`%!gXvS5AsBUwPBBk$Fg#W4ZHx0
z{W@JspfX3hu(6KRj~8Q-?RAhTkbXPW!oi?TM^nfs7?lwE-uGtFslyUqrc1C$i1z|)
zs`pn3{aRb^DkX3UjIWTF?HR~)S$(CGm|PFxx0+1EB98%B)d3b9Q7z5|$uT|+4&D-B
z*^F$tJe(htpiJE;NnL04<Xyc6a<(`CgkW;}kwV+$(3h5VGAe{5GsXg2A{i&dwE-X|
zsmz`s*c&?cYgqK$ELU*~!yMZwF;&8>lA`O-l+w0mkE0%Mi|=^bQNnzqDdoV>kzWuJ
z*`xVQ{a*xMQ#28;X#-dXSZScqb;TQI96DCc*{>>CI)O1=U!Sk91HcbuB)A+-o|(UR
z&ulhc1HukxPV?C}5cO=)cmM*Km@@Nk;sbvau6?KwAeSHgOjq4k+^uu7xwJ1oVhtzU
zf366|A5Fj|9fJ)qmwo|UGE0Q<bTVkL{|pIPNjY$;4;ir7+`|8T!ExSVQ4j_V5P`M%
zPPYO8hjG-3IoH}r2REt5%M`wREn*F|hs4{*&fe#{6^Z84dI2j9jXw&KCiTxOu;2ep
z3<?JWvK^2##g(|)K>8*n-EvGnHkJfqOm&_;%&IRU*VD?#-K1XK6ladT1S_lZDhWS?
z7>WCXR2vyB3y(n*=Pr2boeb}|e=0qn$0G(-nr1Y;rmM<ZNaG4Y*SCf;C_j`6si)#~
zJZ4cipHtm$7OfALqSp4}EDL-rrTNduom?evMrz1%1FE>BbQe=vR}-o*8^({@J!oy|
zvW%eNtZP{Qnej_33u|NBY|V5VI$6f|g?<7o5Q6m20?cH%R!uf3XECmGM~qheZsa}^
znyCT8TzPVq8yp)2&k#-IRoz#&Sg_J1V2{eiLLR2}xk|y*<s^+Pq3kPTsN3ysZu)x`
zaS~}9vHq}yR)Ak)0H8Py&O7t947CbfrI{-m@P4x5U`fsZC}<N|5s6eyxi@T-*Bhco
ztAw_RIU)AfIWf<6k|`YZw|j+(ePIh(Lt=`AX9K#z93Kwzt6PH4<mw{$Q1)1kj{%nz
zN!)9uUc7b2&D8JJ?<K9zWx$GvA=JhcO17k*3fbh=-m(~f$n!^sG;F8{ymK4Kj8oO=
zB>5DpZtOd@^=3;_l;CZG#nq6j*w3<Mk2?c0P)1NSki5&6I$HcAKi!A*uBhNQQSS}Q
z5)q+PV{^(VdQ%iTl^nwwt#bHsAMvnp@U*)!+i*41Yd+>7<%?P+roxzBVH>AnHEpWm
zZCDH4yhA)dz3)E-NVC8_e;40=5@sl7;<g2xWUWL+MP6NBN>IgoY<FN@1RMn^qjJaa
z9)M|373U*fjL7N)M$t5Mek|o+o}B_f?x#4efSo>fX^BvLt|_{N37d&7%c3_p^94yX
zi67oCq2QNt{8EqaM3}z-8fs{+({cF!64#SnLjq-?{rAnY-I;@HsLGEpj+Fw$WdJun
zU{^lF^h+j63O_*uAO`<g@pXP5C1y8gMY4#{N(e)Xb<%D@A&_Y^X|+jb2#TJ|4CdIC
zjwlI{;Jk%<+5UrdLqH!W|Bv22_*(a+ko)xSkbNSs2OI-!!>KhQ9*97Oq{#KpE=B3N
z!!b;|o%)VZx}tAof=oR$76m#K55up+;n%a{wW9!X!w`UKbEtLb%3?t>o&s%(2EFqU
z_6vOSNC6^>LuA!4=(m)}l*Aws<S|JB>!z(FGeOjS;9e>gS1FzhZi1;tMwaRVO?#wm
z)+Qy6Xv;M34Qg>>O9UoeZz62qO`I5=SPO+bA3`>7fPEp982Y;`Qc#o%%i*(Feo+5u
zbsPm}#XphQ4@j^v{i1h|f-VQnHI<H8DD-!iW{KAw*$}Jc$>%(m;FU{Lz_Ca;Kj|{a
zZrrZ)ENi+2tL~0)xlXT4qE)^5Yj2p(HZJs0ne_Q`tGPx%RiHz5*k$tvwwa3nZ;Z^T
zbUs?zp~vHw%nsKGC}vUy3eMNn;|_Q0kj#3qZZ6vb<5zX_*%qa#smrm0m;+CiOF}iE
zleF;`+q9J>Q>USa1_cT(tzX_OR*Twk?py+*PiJKfvLsFo=I(yyyuaATD?T3@(gl83
z)NWSUa=)oKa9iyi?yX|CirFPS4!*9D68e4)+Xkm}7?$$>X<`Kq+}0tCh(>c@{Eg4E
zrO_~#nk%;-s*x9o_gWX5jkd=zA>bWX)OujZx9Au}7GW?U-%_H*r_)Mi#`O$+DaU%*
zR8D1_Lg%cQP(x>?TvNxLije71fA+)w8%*;iAt?i@=f=^pmU8P)3uKlkq?O;3$RLrI
ziC7*0SH@u)&u8PYXSYdape!j`C?xGOO~4l`17$)=Fr&#wafrnNC-RQTKxEi-yq05P
zW3T3}72uB%vz<skA<gE&2LMT<9O}2sK}qN;VVQdb@E{rh%JBX+#o+^!^eZ9aYg;~r
zH!(xORww7TsfAx~Y4S2(6Yhq|B+<LHsA0R!V^r<N3Ej^le<_}7HdJW=nEq)e;p6C#
zb1%w4%ss3#nzyl->rA7Q)zzcn@DI64=p?;FRWTyhTPTI2PYp>oPDM1?KbHVi*a;E1
zwIp75P8czM{{zVz7r>85aOlm^C%DHQsXUl0^8Ogm*`x7R7lJx}G%UCYE6x5O+CwVB
z9)A2ErS~||sOw7ixL)}C{W{~H26nT1RlNq6Vpjnp1CTNyGzLRFb1_ajX?B3J`gm(-
zO1#7-%CuCxg(>UZ9TG9G<FdsEezF6S^|ZzrPcnlcvrbyGB?=<uCAv+X8YySQe4C@~
zky2t%u>I^QV<OL9c_412BktirUl@17Rre_8NG3a{Wlb8O^q#YGNEC`F!23wHsde{t
zM7%YKxU2+uB{_v~`IoWHx#?bmq{8i&M87WK@S`o|X=M0Beq9pSDAH)I-K>lZK}HE*
zMzxF_#<hFKdSA7Oof5r1uyoU#w~TGhzKr#}D0uOu>L?u|!~p-~uekO9^cVrvMkQEX
zhnK}R;%r+xQn85ewKk+)vo0R9k~s(y602k;;?lOISJc~L_zp4J6sF96KYH&eAl2*u
z_%uDuTo&N+tf!O*Y0BK`uOB}fJyd&jF61$oZY8)%;GjE0t4Y67$U?=t&~8`<>~`Ps
z4o^z+P*k%n|A5J4El+?vvHPGqj@_QZHiuh@v9yf9z7Vm~1VE%m*c(Rxl0U76u3(YK
z?RDL^aG|WKrQFNn^!a=HOTv-7OVRuCem*o}EGHl?rCGn0u>G~tKHlu=<YV8F(S0ym
zY0wuz9F!&KkbE4;va{fraw***Vn$)OHKqXP9jg<g8`2mp%SrtP{%qeA{O~l(g>(%n
zFbgBRh*fE3mr{wRy|P@l3<V1AiP1O2{E+ET;{JZzs9(IB&^vrzK)l(2U>fpjhn`=t
zTwtQNW!O_GE!19qINAdnsy5Qp=u1s;JQi;cr@9_5+#H(@{$O8jXG5fDgGzXTrVA<U
z1;+>he4xjJc#088szX5xebuO)8T>xEuYWS+K59#GWk(~c@w3hkD)Uo078^aSUF?D7
z8yw|rd@{Wm*w+~IZyw7xD7(TxkqcT?y+n+PgFqqf3UlbD%)4IcRZ3m<_^Cg8!iwI!
zg1sw_&FB^+<E_VEfT~gx{FwF;(X!g`S4cW&_p`~;hbGT@YjaI0nU3Z$c8?O>FX8rW
zReL>!(kmIrZ5)vIyiPVuA>Mb*Z766pnCvvR)*rk2i56sn&`8AX6tuL8*)(WZe+9CE
z1biA<BBQ#r%@-RcmnZ}|lTCi+^q0G=L7O=7Fa7PMfe`@7K}y9*=N1&Gb2`#0YHnDz
zGW9PmCPTh_xw|qJz44h*!A|jIb+A&zuq8o7Xd}N(t*Q7pdO;tb$flauhV<vHk?%cw
zI5b?b5<_7!S(aA8c=Zv%BL}$^(q|HJaA&2I%Mq}150hg0zZey?WUAlRMmD|l%@>GK
zTn~_hq1}w}4SB+Qo&)bA)HdgDXq2*jTklj$4lLO%d!guGLpbQM4jXj%mo!3nC)s)k
z^J$RK=$E(G%Rnt$JVS*?hz#=rR7IATM?vq&7tjDBY!wb@@cxMBV`aBTz+MVvad-Ib
zS8=pr$c(<DU~w#ZO>s%#pmpu?&;B?$gXFRvPXI_dG1q)5*&8B0*JDT9CZZU`r{i`a
z;;i_<fjF6-Tw7aPbar)>TUgrC(COG@Xnn@h6$s=RR<+|FNwpemyZm<0^T$TWhqo{C
z7U;`$0)=8nKMcLxN9HC8WAm%SWi$Vf>|&8GH-^xw;(7v9E0W%%HKYg^??<?Qrc-NY
z!omuzp7ufZA_ms^{AVTpxhyqbKq3l4UE9xlsP9hnUPVwBJ~Vn5Y$2L5V$@`(A1&_I
zz4fJX`+C#U1g%Jbf7gneSKnTwR`8BPW|NX#VUMR!q6W>R<jjcyZF?J+Q@SJOhA#Df
zr<Wwm;jZ4D#nhxI`xMQrpW%jvSu~WK(wAK=C*P5XkN8M<0y8UUorP<2Fc|TP<HN>*
zj>&E#U_!xfRNGoqUC_@bts84U*r*Ql4BNWNyzHPr$B@Nov^qcf&wE-X;rK&ewPzOd
z&xMVSelXDpLPOZ|%Pg+p$?ptmZpS&I-{R_l**`h6dH=lW{(MzN??+)G#?kouhh}P4
z*00hzI2NY6yR6JIh6fY4c`IGAucZ=2>4s!BHr7PL94Ks2Ap4?1Uy?ldd8cR%nXrz{
zE{+7eX<0&#cq@c3SuF@-@_4vD{#I1<Nl<3Rn9)Vv<JKn0<)YZ0!h(TZE`b;dEQ3xE
zFPwc-UuD#726aUSqF6Po`UYY%foXpQJQg$^M3d9bVh=POEblJ}ffs2`ffW@MmRw{@
zKom^!dcDnh$Z;zGmG7rpBdnqYkpyrSrZ(oSS|<lmF^I~98a`Jq1IChm!66}Z4Lhk<
zoKlHJSfIUEmYBY3#X!~@=W+WpZ9qN6*Zrt|yGY%>CAj__%*Q&ZIVq-v8>-9N&mN>=
z;1~pJw`QIeNqEG^x|=7!J3SXbTl%AKzwiQ778>U$LQ6mE&q_rHBMG!!PBja-T>FK~
zj=ZJ4Wo3*ORCu_4apL}Av=TrwF8y6eolk@)?#Wr&ljdue)vOs@2pdXX#fj@LS{4g+
zV@IQ37SS;=CELkMC|7)fmmbg|70HFW?K<24H$8vMRa-al$^i;L*y1)e!~Iw-5O*?k
zC1oeg76Tg+O-Z?wHf%L>uE!)hbh354E6nuQ*6r(o$6J$Nt<%<u0aE?9%4v(GY-a9u
zY!B7Gbz@EPbqmLyI<N7{EmL#m-hZ~&aM@F#xqp19IXPh9_A4aIXrb*CT*z}#GB{4}
zXzno4$(r2Kg?#Y#y2S?@v^rT=!Mt%=T`T$N<@I7VtDrzK2eRA}i8YrqD1a+w70;Fz
zVp=ri2mi;k39d977(pFHUy0<cnKGO6%@c+y2l_uk{{LHj5ERxYuyu`%!6D0Zg5n?P
zJh5WqRpGGGU5IJy<7BVs)=EA&9rIHw`L&hTm&?N9<K~wzr@9HQ=dB&UF@LGeg|TO=
zlgRCLQDm)#ZU5}<AC$DWM@<Au>=65rlX5)W?@PxpoSTti|2jk_XT6bKar}CByuDmD
z5F2;T6b@@!h9bJ@MJW_2RygW$;(ucR|1z>yp9BXP0mo-Yp(9f{YmY|YX1e}+*qIfY
z0G5F%Z%0XV*xLFda4DhDc$S1MhEEATm*WomENx>$11cWUWY{Kh0-Z)pk&s48xU%>8
ztaz^ZyA{E_3@($5%*@PPK;3A(D;8*u;NWwA`G7FCiR!LwY6{}p!@p}dSQvtS2J;N0
z82wjDYdeRAWDwz2_ZOX(Wyr|^f%J$Z9Qp+7u&#PwW+c#->(565rs|4coDfwI5m!`J
zZXz&RB)e3BmZ$YTe2A!N1sbza+Ah1~7Wln>y?~N}#B)Dv<O#?wh!jQ4!Wz{0)vZ7p
z1^g~n4^HyrNg@N6!)ri4EpAQTTDw9YPGF}{Fq^XXBM{r;3bx4qa%BH8e^?1#Oy*za
z2{iI)j7n3RYon;`j7s70csj+*?(8mqQKr=;&Na}~eF;80wOGYwtMF|@!Hze54KAR-
zkIO0InNZS@9X@K&2Nt1DR*Ps=4U6LL7z5Y&q$;SPPKr`uLfK$`U05lxI^-4D#agq)
z7|OckO>6y$D?vB}xpfL4Q-aRo;_Qq<Kx2K{qiq@u$RhTm@re6RrJ{W?m3EaPkLz+w
zk;ajhUse)xSo>s+N&TTibdY?C<1dTvk2qLY2c_+1<KGPxM-Px(JsL#n7T5=s{3zL5
zq!49?V?4hk-wOmzOu$aSy~B~8{yg@yGEb;cM5$HlC0n{EZDfX|z98XZJcu((&-dV`
z>2b1GxmDg3E-Nf487!XcF3q{QvAsRW`56A+_0^Uw`eK_<*}j+921pu{)(K=M1S5>z
zb-x$3eC~~Jj>@ckeYuZ5W}2o&7r6)xQBK&iOKYun1!yTtdw6(MU@yQ$2G6RrC8}|#
z_H=j8$~YHYhBL{g@miQs6(fTE7@B_haHoYxX5}7B1iNIxs?56X?d_2nWg#66d0ES*
zCTmxlVgNrETfc0J0JHilg(}z{7n{sEc|$`Az}(LW3WDe}(9o=MxiGD+?>tQpAQ<0k
zyVA^H*ABPN@Y5ho!8%AS^aMbgY&~*e|Gf(b`ZEzv4e#krAXLg})LK?o&t@P>pSX3J
zug;m3PC|i^V+zi9zsRJO=KFNZI{W{A)-rk%pfG;TGCeeV9d2T<FX+&YV%oYn;Idy|
z#1&!Gl~4mlM0b@@ZLP-Z6GGFgIUY%gn{(rBZdTDTO^*^HRP5_=EgDziig+q3H0TWe
zi7U)$HqVY<5XtQ`WO-A^_Ce8D=Yv}Eax*UbWL=X!q`Sb2?ZID-1njheJAr4)HJ+PS
z-Ak^Yq*LC!#|gtEB_5g$#&`!ySyc4WB;Upsq1^e*Fa#ZS%A&E7*L;StLxK%TRuh5E
zn-qK(yT~w>spu&nizs{EQ*HIL<RDc^Q&E^BmZOSQ?|qW>KLVXM9IYC&R^8>qYo<>*
z$gFH*bJdOgot;FM$Y&IFqrE@U1i~g+l^kgl>)6>Mh34-`#OSlu-rrF(I#y}M8RYcS
zp>65NwGg9J-4%xSt$fP5FNWz`F(o_xrE8j(pEGft4i(_GX?na$NS}g>E4-|-d%r{E
zVgEXt)L<hvs+}@H)+iOjDd09bIoX(WFIAZHV5<lEwahn3jGNp%?hv^o&6W5!$Ke0W
zj!UGMt$0_&rLcynlepPk^76f?U9?ca3P7cmwW#?>BEsOO9C)!mt*Eb`)$LeBg@Pq}
zy|zFOY2q2X@>-CV8@X=xdm+E6(dJvYPxw&2munOGiY!LMc=g!eAV5#7VirB$TN#hX
z^oitk3L|lepD)?x`5KFJK;uBl;n3C@=nanE-<%n6!Ez8fZ=g``9aQKc;jFk~q}(IV
z^nOLar6O);?oPCo6vpK?`l4-pG^gJ6+Rz%gYSYwtr47RVm?Z*J4Gxb|?wh&l3T!*&
za5U-4(o8Ho6(0LZl6Rc~Ve^Sg*NLMTROob>ZH^yT0iBcL!$Q#@@>x!HV(av0T>4O=
zO_oQn3yHW0UlZad7cXfAWX&~)@aZI5KR2N9U+grp|7ZR3XFPd>3W+GYwR`|txIL9_
z6g%9)rK@FE+M2caIr}x^fe^?(=ki!4MOO)SH@3)4BYJLqha0YplR=%!nU@O*aObZe
zE|PIu2Z=4aoJ)ZS*M;8+YWF#(0`>c#xgm4YYc<3GM!oRkTs|whrFCns`%x&@8ydLk
z-mQ3hd$Rx@>9cQ~66Wke4@^_MTkuJG-e>3TruT<`_^gXM1WtX2v}@l_jR`_Lr;Oho
z`D=c`s0#-LeH*+ixfGLxL#iNHyPTi+O`DYA2%21)!nc(D6<N;*A%|jg>@{62oX)--
z9r2@<t!z{fPN;TFnny~Gw)?wOiFv7hG(%VjJv9Gba(NRE`a`voq^7n)D6kMET}}^Y
zWboXiP*#g22~z6^Q_DP3MftDj%nk67dhJ1}=<iK}imWUPu$*GpKDb->@94cPTX0_c
zb9DLn;TDJr1SLPYdgGQq_eNyizB*Z&t2R4it+g)owU!IIGI#Kz`UNbV!i6lk2Y4es
z3@y09m6Tk(GizGwaA6fZ*L19RH0)d&7Rn9A=9QEceq1X+O;M12`*r6`&hs|9c-4H0
zPP-|=5@2Q4BXkI5W!GTt%pS~iN-lVn%2o(zzNTy&7UZ$A#;v<Gt*nHe>r6+<5KhSp
z$Xo+R*HxbwOI&0GB8(X>svheh_*_rgULqMM6X_n(0>rhf`jC#*UqCNpGO2JHnr6br
z1h@G0rFJ;7dIvuG?vGVL69(%?tyd)w=SnMeZa22h&HQ0Dyi!?dDr%`7=b40Kfa{Zh
z-FDJQP_lH6on*Q@@7Ze0pJVgq%KM0#M-M7e{sKj*sAbYnQ^N38=m-0&z5Sv=g|Zo{
z;WQ0@HF0BQYCkXK`ek_49{JBg@9>?^OifX?o9{^W1}pPQuKmQzQ}eR(5smGv%uVvr
z2SN|Ej%sp#ebK;OCBshnT-z*W+(??UDB9!=cg_Tn!q8ri&aDJ0=-~gjW+{<XehtvK
zcL74-#JD(raZohF$AY%hpLLCBCxCHU;hvp3$tLX4kM90={KBTe-@Ykv<l<j-%C2`%
zj`Cr)kadR*6%Tc^+rYTH=)ZDzwpHd!p_2>x{g`-z2zhi=vL?!?y81#%=HdcD>B9#}
zY;0$!Ue^WmEpux$K|!nnc4c_)PcJ9Y;}s0Rbs9=pIf#TzjqbBw3!6Y`!M5Yw;k^``
zEv}XK_!A2g;trpizBZ^kcVg4;6d32_BMXY!oQmFS`?Qs(=R_3@`k7_6hiLLNiD<p7
zcZD&%01uZ`m^sK}VmJ9tG6Dz5f98O31$M<wg@ep7?(kJd$+L>UDcBB=OjwaeqS>uP
zmncJVEV1nbtM&R7pyDLU=6^>ze(LD(h?f6V`9}hi5EoYAUYQ@RzJfwjkq^;G+za$=
zdmZOZjMIyY*h54DZgHTP$)a`IZUvH?F*%P@v{`h@7SD%$9jW-{qx0sE78KG6L{4F6
zL&!#Zq@0{dfGcWiKMc5Ad!<f!$Le0y;iI<WtN}W@zHCQaWTb$Ld_hYpjSj#SE)WM&
z!Lfm6Wv?={Ug%uex=(ZPn<~L}Cj(&<+Vd?Xy$C$I0bVcPX-Z8x1PqV+3?kkW{yqP5
zm;Fv52ZtvzutU7Htd8%r$FDth*cyH@pKLZ*t*k0ndDpB$43D@`k_}Wz3J#8~Dr2=B
z{B<lX3|9uBZ>40R2~Xu%pFD(aO;fgyY1I9!E6W?i+0O8omn`j$^CTQ=PoOER(_vTK
zf^03jcx^m%`8h!9zJi<x3nv_I*VfLqj2s+lQsqpayI^PWDA%lwig{Oh@*v&Epq)Bt
zu28BGq*99b3y@~CNFsXH03@t}`|Xpf^=T(F4=ea#Y!WGGVq(@8<t5?!-(PG;^*`yL
z+n?!RAZ!wx2{BR&oviH+$!^0ddzV8)P7T)&DR;=!h4`tP3alJe24S>YxoHuD4BGB0
z_g?6f5?$fq&k3Oa%b)o}Pmvdhh~U!z3R_(+5NDA6q)Y|D69<SxacQ-<!lQ5IRm{Vp
z>gTjWr)3j_`aer^-4`ecyzUKb8m_zf#K666zNh@`WDfx81!%s!<F~W#+S(b($hwvc
z)xxXV`y5}MtUTS1JoRxlk1B9L2$HGjSj|hU0j-ZI1({Ad<l(S7iHt(8K>`Ihp-|{)
zfvidopaQ0C*!^iERA>AyB1a?p!`DvITYGk*0YDqWlR9}_pMBw?0rkYe$z0<Qk&svV
z>0$ZF!VC}y_PGBtWMMZLM|Vo$o|QKRGc1CH&#9zxI9DyzDq%>{arR>MU}r27j=I#&
z&W>(w<^Hl7;NVRbtLZ%+<tSHS9JM}q6u*{@)anMV98@XoOd*CmAIIFsz;zN6vR}aa
zjRUOF$xo6Am6D3!X;n|y`=RHBJ-HRev3ha&c((-~`tS+N4f9tR1A>C_BOJ>VdWg9I
z>&DKSfPkK5c7>i!B(-b!D{vY072H)PR0wCaLTcKSiapU&%sXnQ!kd)3ImFcrCbv-a
z>W?bh1f#b-w6}%UHcg^$-zce7odl%`jlq9IaVU;?82b6yqsFsU&Ay^s!S)LVLjC>K
z=a82Oi4SI4E_+B^RbPcN<B@6N2(-wB!@B1#)oqICZ7TbRtf>6u9;j0nA1i7QUXApf
zpmRS4U^+B)K+$7Dz~b2)!L_!^6O2NN@eA*n1frw3tY%1JKzgqMoWM;-jVEeiGFd2f
zcsv`DO@OgDA)B{CzkMd-U}1*%GJCkYKi2Kd7FWI;I-!xxI=}PUmv6rv3%=ks7((+H
zzFQ(kki%Y#bygbvIPTPI`Oi7XJZ$o_HCh{1ED^4{W%v00@H=(7r5<S6IXMHjL&@w?
zj#Gldt{o86KEg=pz7rw12Fl4ZC>Lt3D*ZM$e18u5%T%u=Viaok;!fa)<bqlFt2kw-
zQf&=nT6dqWZ<`T_AhjD%i6VOi79TV}91T3nSXx@DxC=sy!!n*onAY*+Sxx_ZcX@bf
zXjN_5ES!TEc&5~Jy%ur~taP;!!2>wTcBf@`)g@YReSTFB2-`wR7e*lKam(I~u)G&q
zuL<Dz`{{|aVV{P3-e<-!-;SmWK^X~ef~jzKAEl(EG8Y@2%vh0gS8u%cGqq{+Sj*(S
zUS_iz?HjI?j0bgYj;q`O+L#HL^qN$fweZFOMm;6e$NTmr`y#2s6#yvFSvB<rxr1PV
zv`dNicqefCrRa+(hyXE9Pfs-j7{TUWlMTh{01P_4`O#Xn3RC9W@jl8O|E+zU#o7YT
z@GNOJ`-1ez!YUqL1r_zSIQOzu)5+JQIT5Wj4nGOVZyE-EWu8wS$>1z3hm0n>KgaaH
zX9^WumBQBCQ$~V_CyLlH{|P&N=6!0ZLietWAk>b8M-V)f@qvY7{{%Y0&l-Q(`m`j!
zOugBl(rjw4tI>RPj%_%LMu+rv`?%niJHFRAPB8T@VjoUZ-{o0fF&F$;kdPI$-i>!7
z_kV3e4k`LFc2_Gms%9xb-KwNCYXHFBxg0THg)%;YOBn{U=1>REppO9DasY`hda)yi
zm;X)&9UMBoDi2G`{)mJSl1MBA+mZ7Sn!*E_cd)@}T2f4wc0G&EIm@kDEvL=w9U}5#
z8>ri%rBa02ZXzHUth?X@FhGnLpj9uf01N++kPyc;c*?F99k(U==l*u2vg$;aM~hM*
zIJSh&-eMk$zFIYWxfw)5Hn)S{R=4zbK9s<akmyz$03O_^f_&-T{mRlxQYMTzI$t!|
z)Ws$2KGiqm4w;C`dmWHRl?cME?$P{T%YhS_UliM~U%w)8{3a*aa$NYUae!SSXxo^<
zT2>Jb@34B;l4l&Puxy+DxfIExuyyXnQ2kh>QMv-UfE0uMsZy*i0$fXo+SagX`tlJ*
z*k#Z4>l}2viQD#QfVO#lsp{r43i-^tq=Aarqi|BvrQJVK;-d{fz|DcfJK?4}p<F;^
zuwO~BH=-U`y~ajE6AB6nQuqK9FT-8*GV$xPLfXD*JtCznMom|?Y4XK*9MR8)q56{b
zy5|&lw+b$uNVs6CB<(Hk_RZ62d@C{@`JGgeM(r?3>UD*|;O*eV7lPjhOm`HGiszIA
z+y5uY0t|lYB9&&~)vwV2RG7W}4`1)}hI_WDY%i_4l6=uw)I)I0P7x!-W~lZ{Y<bKc
zDmV7fsG)r9`iN3cGPn3FGPT~NK5p>(h@UKE#=gGtBzgtjVw(G@vfq0iidR_7iQUvU
z`BoS~`Bg<p$@!bq$8(5aK$x<gfaTJW__0aLEL?DNH*AAWlYj$&u_?UHp!X;`Ay!vl
zjYRg*30wm8da5+q*APEp)Fn@AKVNt9gZF^V@)Zcibbs*!=+cX6Yin2F>?#8HS-9Mz
z1$0U(DkkyI`QQGvrvzliJ7Q43GLc%%l%C<m#zl2MqVMWCWwZ>Xs3f5-#6I>EnPXIh
z$h3K0gW->c%*rEDz%F!=ePOALr-fDr=&v+bcF`s9GoZBLuh5(uC>u2^S)8-0W`=2#
z!Q{4tpw!vme&S)DkV)mlfX5b(UBFHMxYO$bNH^u@<cM+#6rhcma^WGZzODmc6y<C>
ziy^gn<J|AZnGEwLmh#1Eji@;p5W-2#*n1r93AgT-`h>`kya4<398fv+F&s|GPaRd&
z)8)d$CiJ|w85&ct=tQLt6b}Q7%gG(bxn`QXeS6B+J3grQp20+ndzQMQV4gh2T$UjI
zb+BuuGNP_C6~3sfHl#s!acI-Lnq*cInK74<LBa{x`Fd1}%&K^XKm*6np9RE!unPWC
zw7#WZDSb2(;_YZ2WcaTq5tB>@g-v&ifXYCd5>ZKGXwZkpDl#(~_f=S{uclvN`s?!{
z%`*++Z+IrED^z4r_P3P*`g1#8@_Z4HQj>&Iial%tOTUZ?=xPRvMlW5pmum`bH+Shy
zK}2i9F<FVJI2R9+;U46gq{o!1r5|Xx9%Csil`LrdyqMf48I1cDmLn@0Z=6VLh(i<~
zhdt%ft+VhhMr9`#KIb#@oLCXS(>9F*vpi3*jXlvxOiV04M=&)#eKAHqV)b!BB($G|
z2kr=w{@uH1%7X|n4&|<(px_4LDD=v^BBnpJ04T9J(S!;TcV2-9<ADop)=dC`h?<*Q
zlP#b!vzUc=CXjEgJ*I+l=B;!oJ==2P?b@*CXwUn74B*E4Z*3F^icvU-3tyd9VQi%P
zIC-fHAsLR>4$K?Q7U~W5yzaNVn2{=_i7Vfr;_vi&!Trv<E8o8ptzITb0yhRZOCPL_
zq##jHP-2pk&D3TC%&gr7XQZU&0vfl{9iTq0<oS+CM7{#2wynyfqVnS`r#<{Q82ANr
znN1MgQyurR!^AP(K;S@<@PV)|bFYCG9I1$<HC5GS!OXm!KPiiXBk3kf%lyh2%xAX1
zlUt1i;3iYn!aIiZ{VmOpD~9gmA4PCZq&8EkT!vP-;1zTWl}5KajET<MjTU{8c&T!4
z0kx8f{0{yv<6pqP1(lazFW=1f^>AV$l)jX#N|+z?93r`)m;Id4oerfk79@L@8xsp`
zujaYgjGXvv&%(Y#D-yG+V9c58m5#T!OJo%wk{jv0V4YM7eApIW{oZ`ZQ|x4Wks*(C
z90fUCP?Tza|G;&KxVmAQwe{7saeh?=4kar@H6p=`V^Vd4e^VSxFN$-v!#m4hH4ks^
zcsH0D+Mb-i&jq0mw_gkk3;P|oqc5i2dU}2y^Oc~+4s<m|;A(;g3YJa*$@3l{)O$SK
zS_a`B0*bdVFfe9?Ggk}scGV91kizkGXwHm&@yWH036mFCybd8XcK_&Gj8a1o5)$rC
zyk)t!eeTJ&!$nisjbLpY;Y!OmOrEa}G;ges$^K$N?+@vp@+H0?rDp{C1Cri8(Y5j^
zN7moVf->{&r7<VtR7OWR6oolM9BjG9g#`N;?TrJitqZW$*<LdVRU*qKdD_xI<mToQ
zt{Soe$w$X=2|zYOr8n=qfLnvPHx@A+_Va^sj>cWM9IGuaA9D$A8is;?1A%#jkdPZp
zIRND%%?~#`TApiZ$Frn{#I^EXljB+d<VXyewheShBf{a!ThC?#29A7>u^XL^dDGJA
z#dTnD7%=2B31;|RhIY1x41P~f+MsS3yr<$Q3f>KZw&6OeQNrzlrlt&u(SO8-+wCqZ
zrv)a4SJx}njL%vTPgN17hTx8sDhGnjHaZ`vn*8B3xgqP0`~n8XM~`2DK{mc28kggl
zs~z*eO=D^XhSGT@n>9)QmIbxcIktp&#Z3C2h^=J}Mv@N2q*%X4D<Hz#LDnw06xtUo
zM^1_lmq6bH;?#Oczrvo_Sre6C$5N2!fhZ_sTy75LT3yjb3UGy@ztzKMcl)%<ZpDm|
zlS*XdTll3;etd1vqUP?TIfSb9d(7Vc5M*yb0nW`!7GmBg)BQbvE)V+b>}+{`eKKN%
z%MO3|><F8MI-655Q)%fp80hGu1F`SmobFby2rkoNW67_2pP2p|7j{D1=xP@-7W0~{
zmU*eOj*A{{ETtqQB8B*~UdelSz6Mbj%v77j)0|d>z0izB;o#t~U~STcbQjV+S?gv2
zz-Er?2x6gILrQL%-wRY-$aq=^_GPM50?t^sb;C%f1#{<=>Q^TE150-O1n&voqP>97
z=k{%r7iq-;b+AGqIXO8wPcs!!rlzLmH#KSI6duV+nmUx3!qtj#A9N>MwU}7_{9f2f
z@(E&yfHU5Q$G3lEQHP*4e+dAyXMMr12pNBWfVWgoM6iC0Wes`YH%sjkMB|^TSlA_D
z#2DC-i0!2*(?&rwpwnV*vZ~V3(rLtz{(cGd$3g><DYerOe8KEo=6;@0xf(n4*1-wK
z>Y|c-jNx0u09O!bYGOh{tanA156GLQg`>N>yA?jX5LjPoc7=l!1AzpIe4JOD()#tI
zS|85&bgSWPz5fdlc_BbbNJ#j>kWf+O$pMRs&p90*)dH_#v0#witX1B5y(i3Z9$^ab
znHMd)wkvCaq+hV<>`(L$!veD({|#r-G=*|oGaQeoZ~ci_Sl<#guF6+ZZ08N984RVX
zva_>8MM$;IDGv;60VSl#z^|3MGAPu0G-_%pwRsZ(Wr*gwb;1cUbN7EVnRe2kR7$lM
zcf0UXy5t0Gu9AZt_NVeQG&>CB3Beq*6LaG<1Y5jnvfzoig(aP8_r3gDeH1?KlT1a9
ztx~N<jX>fPy@{ZVjEoH#bK``>MC$oxo-F3!YM{fx3=_3N|Hw$Z#r6NI&T3%WP_C~}
z*74acs;v>|dnsj8BJTXptUcjDXg*SEYHF=^@drpnZN2mJ$t}SB=toBUZ=K}Qy1iih
zQwoB8p#up~n*A0al>ENu_($L-;&T-H+c7dS#fLQ2M$aJV6~aXoAto`>VoWN{UV{}L
zho|$(bLvJ6f6i$#fZS<&oW2(<9N(GqaWkUrguZ|Zv$pnQf@bEGV(<0y6HY9xZ)qv1
zY-zHHKn*-65Nz+!EyyeVUNNUYgMsu9rjUy$KitE)6#0uTr1vr9N=Ta4#}Y&r_zE_L
zMwLHZ<m$9`YQzH)lapQB9g`ChsIIc1Kv?FzO{9MhV86fAA9<thC~{zU_;Ix!0&s3P
zpKZw-8|VGF4)ul!_0=ntU-5PkevzNYf$tC=VWao^*IBp2;qkb{0L0XG$X<BaZ%%!G
z8??XWrGHi-qZ&{#YOodl?L#*F*?C8Fu-u5hZ!_Q*R}@ISSQ2-4cjM<iot*r=qx2_K
z^j{v;pKtYs8PeLu&o?t5AmE437N`%Lh7|uhm<oK6bw3I$99;eP{BQ;iFE{?*j`jch
z!-J1kNC-R-s`~3eTwHd+dmbl6zsUalkN@|4+XA{nNvzvr$&G){lKzipX7mn`<Im3S
zK_wA`#hYzES>t2ie);=2|6hOkw>0d(zvi37Z)R4=?GcE(x)JCA^gZ_Cp$NJEF~ENt
zy8pewKgQts0Xf(?IXM-iq~N(g+V{DBM*sgk(%-*QyjPUi(yvWE2tO4Y{$HN#jX7kC
zd}m&MNs@XJPJVs9_h(8SDI-S@!J`&p%nRX;DV>iu)5(&X5dUi(MknDW_oX8UZS?so
zxf$}s0$oEKzDz#WT9)X>LT{X8TqeJ_`N~yJL{984Sy|cTGiR=@>rP_iV+6Wm$t#+p
zGou$gYR-%BC;=?_e>}8-`WiO&=*r{(T0JEg7_rw9NrHd$4EM#uw*ZNqiw#^<fyUO`
zz&8Y<1%>&T>uga@x{R!Wwx;(VINh!pF|e=(Z4?z1H{IB*mT0H{2O<4^Kz<*6?+~#U
z8KQxBv2`d?m>}(@ZQrXO|JYeO7?99%o~HITnGs$66CaH-f_>iGYVNy?v{3<lrcB>=
zPxQ5ocQ+C3)5(yidU@#$D#3*1?b%GBp^yGaZ8q&QuSgL1-`Cgkugvg6eDhYC{wS8M
zOm5G7Ox7Jh9?^;{fT^@G$X3A96)^*-qH#{LOnitn!gx*y{z{J$#M>p?0y{U>xheuV
zhb?M`gb{I$(%7Q&zx2qw|JozN>F(_{gY1nY6+;cd#W46sP4TY_Y-J7As}99Gn}$n!
zf%;@A@t^T!#SO0R4m#RXslb}L2w67tqN93DxLqRJ-#631T}XypIX-a_y<E=7HyIhV
z0ai?G)qZA_pS3$%DKVPTgSF<vb>M7+NwtEa6k0u~v5zzQZEIPESCUAhP-1}J3KKsk
zXGcC$+dKX$rdri`I}!I!&cw>9s?lS{=ovlGwpWNTK9aC_lT9+Ob~n&)#3n`5^nW2v
zT`n&=$6;+N%FA-HhA@R6FVT8lcK}qJgWB|xIBp)Eetl+>bwhpqh~(ttn&D?I*gwO{
zKNgI4h*Vp5w}_Pd;`q2AA{<<h!sSOD9VZ*39#^CP$1nZ!do(kkCh!e!vm4Id@csDE
zqrlVD+<f=duk6GL*(6iL|HY^Z*?&15L)9b*)yOOb*61dgOuZbWTcbIh$$28MxT$z4
zSvx2e5y3drMap@X;(EnMs;a8N!ND1dxw4VI(c)C2jt9uXBy;=f=Zl;%heJOb(z#Wb
zRGFOXsmaOx!T4Mh;jb_R1O)t8CV|2)YX0uFH82o%U})%Yf6;iIl7eF3Gzg6nxODvc
zUikMIC;gorj>uKTN`#;P#UgO?`qTwA^c@~PK8J{dRr{vRpYQ#@uX^xrOLe0EetRpb
z-ulR8YHEsE5_B{%I+`bQT+&#QaemG{S7$@${N-(4PL6Di8ApsLam%+2yd43c!@O~P
zEZ5%NUgdbGJ~r%&xPec^V8zf8J~%h0E-5bly)ytw(ZGP5qlQyKFVmS2nSU-AdKDGU
zhO{HDZ(Jp{*aqxb(WBxJ(4dmKgNhqYz+*a=lb5&S6NF3W_~YF_CidT77$3IHy0gDO
z2+z+1CR6~qgW1>j9|s%2CnkryUcGv}Guvs0DUI(CK|*4u{!&z293L>duppS79cw?t
z`g3PA{U?jf8sjWIJzL5tyrju;3#23f8~62z3*v11!(&MjuLF7&!nfOo!9hXkK0c7@
z^|s`zB~8J>uM<5u-@V&c=;-VHJA(4ht@y_QV+{evKNDysZ*3`zJ>7)Iu=41v`p;KR
zhN2Lb&Z0Ep5#dYxrI<W_5nCJDBvX@$&!ws}WPlHG|I7Caic@`i``F~9o0Wz)GJ~Q1
zhP;i<EBCV@?UR?~{*K4I1=WQm`PmH((9|j{IAIxDOq&}UeS}f2S4Xj~#-^sI;BZz!
zMm0Hc1YPFDzS&u|$G!;}?~s2!%fD~G@4Zk&=3OtR>sQu5D|mS61NIIMvAd%#Zs*%G
z5O+dEsdKtWVn(Wx-_C?cU@}r(?&mW<*_V=@;6@3aytmwCw0s;pjA<@)&EHYlo}r$O
zZs+nEs0deBiYzWjikH^qNB$KOmf`1Lxv6>8e8S6G%|VY4*nib2Au5e0BG8GNSJENe
z%d0hyWHiG|j^#T>%aUJeQo1qjMP6pTijKohA2cu^eZCg*4*J06%|_7E36hhdbzoXI
zaaC2-IDm>oUCWv{R#wh{_*J1#Z5lugqa%PB76HAex`Vkv{0P5{9zqx#p%`hW=+AE{
zi%OHadle(PX1|U-ONp_tjHq?H!dtsTa>sx>k5aWuoZ-9=_V5-nWpX6WcZUp{r?INM
z(P=!!A#GOQ^YW-}0nL<67em7w&6Yp%bOi;4otbjIn3x#ho12>ogs0yBU*g;IHW-fe
znr+LJ(A>9;6gqeH&Ww-8l1X6n78DYKLnJ9n6JFsb0s)dZfU=YcN9|^h?Bm(lS@bTT
zF)Lj3v0Shre5X-ZSa>uLg_H^eN_Ye9yCn=MV(j3+dbm&@J)FXkdCY7)KyOKa&a-Rk
z+*BRg?M`BS{yHeVZH5Uyp@xP1;^WF&_6Jd0$M;dH#&6*9xRCLwFc3GeS-S3%-Z6aN
z>UpFSK7l>OD&>fTtf-LW9+op-O?xXOM32i5&U5&{Ko94gnOuui@9e4&ZS7V-P1F3H
zp(DLA_rp$tl4*(6PCTTTQyLMD%@FAZVXPz~ST+iQci&WUWW2=l>FZwM;9cnSgwA8a
z{aVK6wMc;6_z~9fQKdUVk9TQ<>FaDVF)5hp7EF++SU^-`BW`Sr(g%6@<z_?ZxigT5
zTgA1kQOhS0KBvqvYY8|!m{S{Vt^*fp%dWG^(;1`N+<rsn!~W8p%Q2^@XkRosj6qe$
zR{hFF-IDY7x6zHsU&5xR<qNM>-Fx`U+ij}$qIot1k2Z|#<L8t8e(EXOk;bYd^2NKm
zx#g9YNBVr#k?p?8rLsBFimBg*x4lBh$!Rb(Eh<E94advRt`U5s;Bq<7>v|JO3iB_?
z-v5I1Up6C12Xgd+*fl{?aS;GZfMX*jB4Tv4&W6ZRP?*JX0ffV5{`LXrm!Wic=O7*y
zz1tc|WAKkEAYd#aWnzlV$Q%+xdSK)CU9nwia)yG5W;Ju!qR1l*8N7sxNtu<SWNXP}
z6;E(z1fXM@dPZYdAZHjmzk8$(zv@ex-gtHS==SUE@f3;!cOh?Og=y}R@~r9Z%#GoE
zfr95=h&Vw!=JQaj)5DtJam(`2NdF}N&#wK2*~!Jv;OnCI(83WR0ZwT^v%>`emtAn)
zYGb0jYJ2l3Qzfz@MsEe>%b`wd4A_EF*6^qM)q}$dK0o2mb*j^}g6{WlJoocFsNf*D
z{Y)OMg-<Yhz*emv4<ogV`_(eIC`8WMt>sf>R*-p-+nV!k4QsUN`sO^%_xOW|mPq^q
zw4(1Uso_|EQ#1?U>0Mw}lzD&3ZEMFg8alB%u`nlCB1><3mzSQI-_Vl8yLc1SWe429
zR{&0~!#-2=G^u~XkWQ`WV%a?n3=9w`irk9+GChA*a{rd9V0pa=g++NuA;OAR1e_~y
zSR(_2ga036Zvhm?!=?QO0tph_g1fsrBsc`u;0co8?i$>J1($)~4nbznf#B}0gS)$P
z`@j2s_tyP(x8AMlDyk@;X6WhebDr~@-&3F=XJf;HM#vQ$SF^CZY#52&2FT6IXVFBw
zk*jhOpjVkKEh0cMPyjq+&QDK&-`;xc?IX1#BgA29lL4$2;Z8#?+jJr;<dR&hEkWOn
z33b+`0cHCKRa1QNr?;CF>ZaMB%=}+?8y^rf<nIHV_eOkyBA_7{Y4cd@!!TO3rjF74
zNeq+QxodhuHI1)0XyF`g4LT<7B|tmW0#*TiqNdju+Fs{ovpIASYTo(Mw!x!HUuV1c
z(W=-!|2(oZzzgZM-^yT$e;#S4ioe$pEwckjaj&5BF3Vn5IQ`y6=MfAJOh2r=R!f~N
z7eLL&F4qt#CQ!GeJlL*_hP9D1B+0|)Mv{c=-c!5oO#7Glhe$AWb3z_>+P<Qbw~a-n
zgM&?*8sPC=)iXBKlznsZkFoJL{@N)Lpe>EhYQ`yx<;FUz(ZYgx1dR23rv6u_Vpjux
znCdm*W#Ab5>iBr;9~F1lMf>FBq~&~#d2qzR#%6!Q=Kj8d`;ucAuAq#J%s#(6gXC`k
z$8{-PV|{&Q>3C8iuoke<lf-AYH20Nz;%it)$T;t;0d+ksJw1j{0QJOc|Ch5`(z(mo
zNK<3>gDQ;;Pe1~62tYQoS^DU4*?SrxmpEx<Ygq_A5m#bWLUR&5ImPeDW2d%ix~s)1
zX(kORs}4$_mLARQg6}m7MjuZz@|cN|yiiqK{YCLd;7-qz<U6zTo`>U&{qO#&fxNoF
zARZAj8beS^Dq@UwRcKQ4P)X~H{bXCgkGhg>784gIm)vh>o_P{rje|0sDsAbEPjBhZ
zaMYLHB_}4z0S_O(MTh_5<^G@kl>!9tn0!>!+=>`E1X4X)e!u`XzoI*Of0dYsXj2*t
z)UKW!GI?rE(Zxsiv=a&&KcXTd%?7{?4FXT!qMW{$RIcsM&CM}Ph&ROnVxV-}C)aLa
znq+tr8CQXp4xHwY&d+vXUYZ_nq}AsB>^Uv&*^5(+{*`Ma!xYvNicc~pD@@Q&*05d-
z(as3Ulq`s9CXkM4YLOgOSmSxE!=t}Oqkhz_4E<;)lmXEdXqi@@J59sQ<NzMtKQ$e%
z^Bpwwm0b(5^_Lg-Nf=C~NX}ywXixqKc>cr_q-WUq%WuXsw3`pRvvtBe7LLzjr-y|j
zoMVqB<Tb1s7&;}N$J*qzQ0v>GA5*Yd$wnJ~@KfvTW5`PBSzs#d6aCm2#;2|oe}o$}
zj#Eje6Hi4@2`cD7W?*rBgGjHO_~hu5)~utZ3-RUG09xj>5e^QwM28pT_>0miCIXvo
zKaBDeW!L-uH{B|jy=M46jh>JfPzZVk(@u_k2Gm}OU^Keb^=2R^FHAllg_B0LFr%`H
zBYw{Y&fIocvb$GV|J^z%p^V&KS%-WJKZQ?d@c5q${8Fn%7F^4+iU-r6gfi6b;p~qe
zOCmOpPd;_aszmr6L3S7C2W;z?3!&s|q89*{iK0c^4G&OGUGBDy{Mi9pZZ4~S6aHl5
z`(;MUGm&#rp<ogCCqRD)*dJgjJ{{v6Sb&5Pm0Hyq3O6<mKuSB9xis+|hh}_A&m#}X
z+&el1gP)R-p5<Q9j@2f6G{QY9R|h_OQGsIoYC?&ut)?qCxsD_E0;>vM+em8hn%gW`
zjw`oe*MFe{YJ&mJsF=)rN{!wK+>y?HZkAxC+K|q}1y;UnSzehh3N5LN2<IyA6~MIS
znhvWB1ywL*tPaNU)eUL$y?ITS+h8lUlwm5@Via0C%>&;iTz4S^x(soQsIG&N>B*qS
zjWG4TaI@xSG|~j7*a{<ouUSU*Nq@*V9TSVAa?*3L12qc4aZ}yPACPrMlT7i+gxHKX
zAa1KzyDE}9it!mv?tUtGy5CvT*S>`SyC9#+m>C&!Zeae#`X}WafT>wQUVc3N@73K<
z8ux;iJ;8B{GaTW&<SOX-In(`W5Sp7iFtpZ*&(0<w6>x}z*sI|1YZ}OC6#e`ihbg|s
zU?@fI+Y;e+EMhY*PD`6!+2T~Ay>oa-Gx#+J?sCpld~9FsZ|cmGR#1LEgP^jL6Ykx;
z$HaVXx6A6PrPmG!JaMiMt~Fva5ReYf%q{-&=jV#AJ84Mh{ba7R#$L^!OkA0V_)tG%
zE`PG`M|zd*zDhE(H}OK=)htzdU=XnHrPty?6iuGOVkhQ^Gup4~b(f?P5(POLHTc<P
z*8grTmsAPvS!}%-6tvWPhNF8q|6RYN;dZ@<fefg(zX4%Mv5xaKS{=wO3q%<P#x-U_
z-94e7-T)-E5b2DyPE%x?ygbQ%;}$xit_K4d8Mp#cF-h{M*?=0;`dyb8=2gE@(I~T%
zs@4VhB4u5_dQ?=@-^6yQwDoN-&t7MSO)Z^S4zp9y{3C^G)Ekz&W2#mbHrS({e7?_j
z^@+(dcd)dS3<BxfRC~<@P;*)5oT1j?$UH4#3{cb)t>Z|~<3ZX6U3it<>zh6AH5%le
z4sqC8y(3PVJzgrAMhb^SjR#J6Aw59FNb&9F6eI6`U*T@~pd9m$4qnC!U-`ow8dkPF
z9;9BkUh5!=fV~hXven$&Af>-P`S4p<*}7W*?kH9wH|GNI@X^^^^>LJ1vmg(@>3@+P
z{@d#A{U(CL5mtb;!Px!B-CdEfwD<4c9AO?Jd&P|i@$hJp-2!m$JV8M#Qg78)Qa>bJ
z=z<U1<DObAZ~NwPxjp53JyG!YgvItgvs(q4^r}Dp%-Dj2rYjIZR(tV}C=h}v94^HD
za|M%hc?5d#M*mVKik!%jdZm0Tn8y=nBJu?{N*uly{hH&zX-!bz5!MsgI8tzAFJh%p
zzPm;sgJbWnhjUy4dXO$08|#nS>k56L4j1tj=6G(%$fgMwx>~~%NtDniRA0{&wz&9o
zv(MizsQkQ^-A^%rvrqkHS1vNmOO*8GUP-~;`C;5%CEc4oKuNymqe7ZLJK<}py5TSA
zoYo7aDGUz}U_B@k1!%1<yCuH>rgdf1E)^hgO2mIer+2f2hR^6>TF62<)Gzdy7mA9t
z=Mc5;L^*P3;A1u3a)Ec2o^=6hqiLI?#6N23kVMJ_r#7aHXQcowiH|q<h%!%|VXFxd
zSVDUL=p!^m>;n}>+Muw=yeKlphLoH}pri!$2EM+Q&MRe27Qb!B$oDdw_PrdJRUfLD
zIbsF2{^$^Rj;MxiZ*SQUW3UorCi7+e%&2J#JV=qSzMQ*WSWd@gkGUa#%w`pHK(4E-
zVq^jX1(Dw%@A}Dvd;<zuTy9Tr**EKl50n&~p@E_F6Zf#k`CPv#Lw>hZ=1de}9Dx|j
zhd_>6h9iXNmJP3S6aw}c$SFSja37;7K;9Z;^zC%hs$fk>G5A=*Z(LEa(HQ)S!)wOu
z{2kh_K;56#tPU)AxhG?ZgGf~GTVNk<y(y{8q<*>BbhSFU9a8hNt1vorojvr*YV4H^
zp-;*g@aTj);uM!avV3x>H(?=G2x0;&aq<0i2O;&EVB8!!_STL=bVd^DHm}{bI@^1A
zsj6{qx`EObXxL?jnIK>`UFX#|Hip>-YycZ%9{~Q&bPo$4glGh8kbWX?@i^k;<#lIr
zXxZ8x?1t6g(9%m!`iko+!oi6x_yh$#Sq!C0>0NI#0kncD@V(`v%tUU82G~{W^!$8R
z_2gv7R%7+HHq1VeN^+Xu)1m$4E`lD5R5HfPp?^sDAJsNp=9kq%L0m#YMezF7E3EB=
zwuc<RR2ja}6RVQjm?BPf5ESSG_H1ly96QuC-Qp}$wh;GpViLWdiy{qntcUp_KJ8Xs
z->^*6({yE1FtzOU2wwIU!E$XEg<9P-7g4Jbgs(EErl!Wrswxlv==)&#@3tRoStG2g
zLjRt1zxW2LYnTdM!tDSrd~8@eRT4www#5+3A}q#G^GoY2$~Z%AO-*6YU&pCp4_o1`
z`Wg7%)Krf9MPqVI3GcxZ>Txwnm%F92y7h$N%TfP@=hkpvbPT(fmeG<wxZ7X7b#hL)
znOt15QAonViKW!5T2xwf4tBP1vgEL+chs+2!HJN2+9$fG6Qkh{P`#D_IZ=pruDukt
zbWEBGJwNo5F086{HwbUZBB8$iJA7}RZ0rQk@e3i52)`S_`=5%t|GR(rosF&fE!<18
z3y#?#IA|TfE_ZkP*Q%BQJDx(!dbMHZTZi-CD2LWM!wS6fTr-X<J1Lz2{DC@Yq}a?c
z!!qgj-(coJF@+UM$*nq&!MjajOW6G2O!dd5@Vc_@j*r!iIYvS+?UrM!q;it<MoQly
zRez?BGWRK5CWU$LF-WIBewmp6%c(KMh`pxyS;L3|(W8>AgHmD0J+<LC^Z?dYy?boJ
zF>(1|oV-|_({#y_gn~sO71kb+U?v(I3dWOm;j>MUhF$0elx=S|Kg$y57P1&OFq7d?
zt>B-dM^lHB7>crlypck8nTNhm5Cjz+>gcP<73hZb5AV{G3Q?{owXWNhR<IO4<}KD$
zUm?;8B|Z#_vR&h_-h}XBiftdh=#6}YeeYoP9|I@@CWl<@5F-(lo*#0QCM1;I`3@da
zvd{7MA<Vz$&jxfkv>y;*r4paowW5m;D&Bi8Vk<2nooV;?yX?)q)e%G@S=-+kqjS)H
zU=ao}O1oQ$+C0kLr3WSa28W|5`^|7Zq-9&L%OE|XOd`yNt1`}^67mi;-ANmU32y=M
zofFT6OwQ*en_YxwH_Hl`=k3*)RouRRhk>;ey!Ot7e%*$UwbzXHCm*#~Q?}BQE5G6s
zFKWa8GGX)yoL9rIjGqpn-K3LB#KaInqUS&OE0(z!eCj~g)!IyqsYq3d8dY*>_Qn%c
zM>(6Jw!wW0H2W!@25>V{JZrAYkQlGE=V|Jw(S~HVN)8{Jl~!DFdBb$_gS$Gb?iuk&
z7C$Oo@y-l;`I2^g!uuX_kz4DaN8;G5J4PmI9jO$MXN8fB`Lqs3*O9pl`GW<AwL6Yy
zUCc$VQdy6*xVyCcU=Ec9<}T5paypugYESelK~zOQ<E>pgNNWxiVNHKZmanI|SXm97
z9e&23Q|hegEi8w}^0$ou%HPB|2Nji^5OwYg$lZW(!mw(V<Ppd;mF(15Bs~wsh>iEp
zbM4U8YNRWDI$kp0dk(*+&u-C(e5clPaNQUGj)}1%KfjBzLvX@4a>nR+$F$C)f5S<5
zVIBn#|Gd`Egg5C9iKzs1biOkt)=iVSUa)0T@SB?xsH%N!beJPiAS1I|m%*0xx{S}*
zJ@(G3-Q7R3O*}}Y?@ILaEHJ}9;l!K(Mip{7o8&JJ7|ZT2#(P~6S*TkqZf<1E)-#8>
zy<|@TA~B85J&U*k9U!%3&${D-Wqj|TLE2ok28wUr2^9F1%IPC_5KN?ykYQdIj!oyK
z#%}kSzg3LGs;cOr*Hy;-rroUy3QT*u<BI2(E(8+IpLPA8T)9IwypStCSI=*|s0V3)
zz4D8XEjQB_9`fH{6lwK}pX^~STagQIc_}nKhUw`ysOoHIW5MoPy4^QuJTJoA7ti1P
ziUCYCUG7ypXNHQGgj6f+-490P4dZ!DE#Z;M0N~fR67f-6UPVQG_IT<4thxRVQuzO;
zl^D3dH^h`?5_1w7kdvvx_m*fBDSZ4#-CWCoUzf>GufwbTHvDVkn;bLLv=?1pNvJ}<
z&LY0$)zQfbdoap2>c}pjVebM~?W4Mrf|}~pIX6lOr*Kjua($;@EOatY(i+S15Yl?C
zQOd}TYDi&|d3Boci#gN5OJnsjvs6Sg%vU`F)?y50pH#HQTV^<X*wsDqh==#O9$lf~
zR}oM1TVPqSnwBAK-KA7o^6+_D#P40Vy3EnVU`-ea>m(4PkPiAXPRw~9YHZy}5_GUW
zq5^isT|EZGQo5)nO4A+d^&Vh*({j|ijbL%Ocb!}`laB2v!ACh1IVV>%fcni4)`(M>
z*h?7Sbt*AgN=&?i$Ge}Trj7w*u5v-qKY-Z-s=MWrYMh-b^$sRU^kw|ja!T-9c=Wi{
z@DEIfK;_!!Wc*0L=NC+ZZy#grca1x(qpf@R#x8mqu^Zo2POw5n7<zlurjQ~g06V%}
zB*wR`(CO%jj$<rQGj_S9vGu(72h&ARfliPp8xB?A!ej*4skrJ73!&`#tppTM$G*O6
z+`kq;I#^ccPnakT2tOm_m4b0BWEq*?o_+0lUJfSqfI{h8hk`^>aT9HO?`v><@Q~m9
zdw&v0P1`oCyGe2f7bcKHGbqf0J1M(-?jB+-7G+lK@Z~nHYPT@hEvitF-~jE?TdA+q
zbqvp^1H0}98!#(C_v-5&K(KwiOC_wmIV{XszL}YR*`Shi1L#j&wr8?d|BWYQcY`Ej
zDcIw_?%r5<=r}k1`0ayzitl<=ru>7E{fYnKBv^elJX+4Nawk&gP^G{_mgqEqOx$}D
z@d)!7a56LYk1u$+qsY-db=ezFri;DYgdr(=Ie27>dcUhMw#S#u0f`-5F7WzOhoeyv
zO^tpemect`y;`33P0dnCNp#uy#91O-yA*tTRb`)dr=yr?0)99#mSAtQxzo+##YG%K
zt$uv6XIVm`RA_lPj;V~QslGk2_xI1%uHy3-?`+ZWdHlIVZUA@Ijpwhz6hk)rTSa_P
zVlcUaPJntJ07s}@PWeB{X}3R}S7+-t?d~mJyAnE!x$M@t{C$UXnw%@uz_V|9#yh#m
zwBUEzF7rgUP|Y2!?cW##j3lDE&+>q!L6)S-aLgei_vLrZxgVq89vrrAR8|Tih{cVn
z``3Bl>ql-@o}fOqkGCt<yHV_rLCwXP$unnr0>tffr*eMxMk51_eDIm`&FlbF_ir?F
zgmdx$<(VNmEJuMGL-!CKX1TUsfpKtRw0%-saqiiTCYe{o?VlaheCQQ*qH@par5-wX
zbbUm+9OBLOrr!L2*ARVyC&+k(5X0KxfHJG0#>cG1c3s}o=%1gCj)75+$q!)OqoSIb
zi|gv10$YgCElW1m*Ejb8-ym;2H5gh(%T_KcCDrG<-yIzi5^}i~Mjjbemz-N(*+X2u
z$bC}|pfSF@%F#E^(oIEZH}j7y&1F$q3ikv<kZ$r%W-K&ZZjh%2M(kwL)ba5g&Z_aP
z_%wAad_e|io8Oc4bcu_@5c4hg?!yL+%z<gT-cmSPF|7F!1E0EAQLns${PEB}cZrRN
zaaa*&B;oC*8$Y}M+8kjSc$#3f%X4!u<x0!N>)`D|lb9<nQ@fnBmLr78>eEkpL-Ot#
zaRd?~EKHbg6tNn{TN$J#FJ=l8&FY(JH!RY9WuI!J!dKdh51r~~?FKfD2kjM{-p#r$
z(<v9r52NlZUD0y{St*kTUOKq53ri9(c58oMQ*q3_lGAsn+R_q)Bf&`dzh|P1*4}vC
z`aX0RWdHF<r%~^fJS~H-ERdv!ybR~A$Rm+Ig}$TCmpF<(jd@2+fZ;BvxzfsG+ZQO=
zYer}}DGL8o=cONVV&n@b7be08IjmG@+#T<ip8X=OBFk&l<szIm%_vK8va9dqJ`2cJ
zuA>g@@j^f=m%vnv>%GX+P#Y`y*>JtK^}+afj^3RQ3b4PH)$w#jZv@8VH(3HQ6R4HG
zglSF~cDut!f%BZ}Yi`af`tlgY*DP^a)D>;<s<#7;_{P$9&7dSUnz*fqz}R3MC@T5%
zAtb-|t!j5U6$FHg4n1Cit`>0Znr*YRW!jaH@+nuP%#g!+_V@L4wO^oTJxupf`K~<&
ze}#-Z)=Vp`rusZ8d^l0W#AGPfc}C$Fhbj>NIGioj-FXZ0hU*k5%7X=!#N96*6rHUB
zeOifc(M20s*&MtLgA)sFy)z;dKYF|1eOWR*C>&1A*>>n_y?c9K&r-NB@6O&3lCqU5
zecr&>vup2W2Y&w>K;6ZfsYSKNigevb@jFVY4dC5Gn!mb}L8De#YpU2+3p?><`iJM#
zXSvbOV296va2xNvNd5KtXp`P9P;KoyE(~kgm!XS3_)+u;`JlA}nPkwRdh|>77q#m=
zPwE}DK+NN^YpZ4=z_+89pF}Qecr@$v@((WH;@BhAC$NKoM#zXw^a-9(<m-Dx8L3G?
zsbb{#^HeMA-%`2GA0}ky4#P|nTI!bc8MzCyyds19W;c#g6+blP^N(+5&I*+Bzw9A=
zWnay{#AOkEvbdpeaXD^YzIyH>BqYqw#1$144UvpTrNmnVxac9wLj>y`KCKW9l2tq%
z1IpP?3JSZIdy@;0WBgZ4?CdHXPVVk09SX$~K|w)#|A1yY1{U-Nqb8O~y*a?lLXAb8
zYcq)i3h^;{4z~v?YQOC8@Ah_r>-w1983k}H^UOdc7o~p`hb83D&069dH|$PGJ;)a5
z<&SEcUc2n!Wc_w+m%cuJ!?sTqXVlaRD9ZJjPq1*!={$4jcU4?1{JJ6$t?2RD1>5Q-
z8d+O>g2CYjRlF;$f(2sq9_37^Ceo`Jl+ch;0LwUon-YQBb<7ogw%L1}vyoj<%eZ+^
zAy2%B;E1Ww@o`k>{Dypn<fOcQZx)~r`VD`@Khc+#UdH*#X55;|XS<M(7IHH%k}Hz;
z)JW!cF+D}qB_}9+EuYdea(}hWCm^wX$b<UL%h^ERR13L&WII#_0NK<6l18(CbKD!o
zCau5A6GAnRqa4SZ<!^?ph}<|Q9L+_1{4<mFRZl+)m!5R?Ad!h@v=SaROha)`k0HB`
zkE}1WFNHHA&Prj`UV5A^Be)e&MyctwzT{|WLdtegS%SLx>CXz*-wnr51*aiB=|q(H
zXTM51wLp4V*d5*RpQ@73Q?YPlBI~BNZwv_HSBUm{u>gfxo?d=hwyo>t$6InARX?`8
zR{HGrwuj}DzR^*Zd<j_X_eI!Z^-6ZGW`1}jUdLzOOrhzlP=XN;D3)Ys9V(o^%dCXs
zPSiCcT_}G_M(`KBbsm5JDmHgy{+_I^_&h?=^zW!U@_1`&a0qLet{?t-+-+?za&gIp
zr}=D>3R`S!Z&PJl(~ve?%|XGf-t}^7>|N(?f|!R>#TFzsk$0qhRHVxd8mEuhdSg`z
zBXBerL|A}yA(8Hf5Oa;Z@h`fL0kd&|dWhR^Q^v1n<L+)Rok@iG;sM86Rg=XhAkQ({
z!Up2gHcjM`r#fr)?Cm&%+}%80v8dG2In*0DI>#-n?b2+l1B0GVKq5~P&YVQTk4s%(
zB~4HqL&+daQohKO8On%+lIjsDJX_dS`GM%`ysjO6Qc{CE_lwpipZr0G4<_$;KR7VQ
z;H*u&rwdLA(WJ8r{>XyKmc+VVh|5n9<k3pR@RvJopXi{tt~6LVG9zU@q<GvooD`Mm
z+?;rtY?KwEqLQY}i^i+Dr7LY|X^ET2(Kz|k^q_YP`*NB4c)7uIwXeUYxL~A^#Ubg#
zZkv1BK*KaVS|G}7ln0C&nb`Q6Z87lpZ+-;Tmc4EFoa|)RB&#oBkZkzKAJ>d&hMzen
z&zX?icmM57$O`M~3XGSl@&KC!*6X^h-D}PM{=d%m|65o1zf6{wqHy%|^zrf|HrR+2
zS$B~pu#<Y7>p!-Od{K@7+Cv5ia7!V8#4FtY!xJzdqE||n!lb1FY!uc}exkZ}j~Aoh
z?U9iY9@Cz8fb%G>V*n8qKl~Cv#4k2}$@rk;*?g)Awy@(sm7GTO)AFxQ;ic*ZyYhgC
z@qiuvZ)XStUIEkw4uE!<yI|Mw07jKR<lFCgQ#JO!B8e3%7cySDO2Z~Yy{`z7w!vgC
z{o`h$c?G%OM~qb#5-U~NJ|0CTNIf&?Rce+Oqu4CPBxs7Q(5Fi-(wvNH6}dbv;yH?V
zyD36N7eghox~`+8DkUraTspgqY`925ZQCeqf;}w_$!4}zZEQU1pg*t$Rm>t$>Zx?W
zXz3?PxPX3?TGE{8xcX*A(St{GR<->(&*c=PQe4?mQ)`%Y14&<xkr=xmn;LoLTChb5
z*#%ye#AQJTbIa37b5GC38y(4(WX(wXX?CYe5z1T+f9)gB8~IYUVZ4$Oe_4$aPow8y
z#ik40h1*Av`sc%4vlZi7%&<!tDaH4+VeKsnG4-hFl;v9P5>m>9);g<mn%^1!YB*a}
z@<%0-bbl{&&Aj_Y9Npj>Ap!}OcIFK*9cr;mUq$UO@uuvS{=TqdRRyZ>5)fT<@`g-b
zo6II9X}P8b8l4sg`;Zb{{eegKVTyZhs{QLNFrg}WYQcQEv^%N4Xk}`ck}`WHs@%wt
z%i0xie|pM+gtZ*B?mdU;>l((@x_TWp2i+;g<d4B#m!fWW<>sDz6!hK-ly~y_0<oID
zM%PeMB$0S|8j3~Us}PQg^37yqlmzd2dV2QZ?(2m_OIU<&DPfk%OM~v9GpjZf1oS$L
znHq~t&F`*xg!i+eUYogJ!_j|0Sn*#ITVCGXZ%%m*#c(J8)H`u}ED0M~=1*-|5-H9p
zlt8*CDv=L=2uz?$sKpfBKOnYZ>c06{i-h?ELbF@vE(MB&>5h>4h<#?oTzgSOfW-mW
zC=)NBUdDC>bZd6UjIAdhS1qtNQX(>RNxEQ5l<_s*zc5)Kb&xS#M`zU^EqmQdt-4cR
zn`6V+dHHx%%OuMlS*NG{*6u4|{+^Cvcw6}zpKZ8EVbHW+Jt_p*vC*3JBu@axOxnv^
zg)2>w2)ny|zS|ImWZJR$eM?_|f!Y*ue4ay-=9L^LdVnd|!G+(WzL`hT;ADHI&2C@<
z{TJ&0>Y?6%fc&=|Yb1JqT+Nr`2l_p5y-!420;Fbja9U=jVzK1U_nZ=JYsbM;GxuXf
zY?8)x{UakYOJbL{S6g(B?e;)22`(<KRBLPNME`har)0juA!&7lpK*#hA%VhMg*p`X
zl;cn_sM}hEVTU<u*<>Z{9;soJ(9xIgd1Z1%MY+|5PgIqqwO|*_V*pQH+Ep-fM08LJ
zW+HHBuPA3<HStv0*lpr3zP-HRIUIP%cSgS#jzB$<1EXQ-cpf`0++Ew737uxeEH56R
zqLbwf`+IzhyiWXr7RZxGFZL)&<k{<5x3x#mpSZ~OMl@TH0WKBV7GFr@+%$bLFKd7E
zw5>C$z7&|2=(QoS=Mr&d7){2rS>uQ+=vuDG>az-C_VTV@@Nk%KQH857I({QX#FV~I
ztXVy1ZZTk9gC^A`#~NEaB(6ly_n7f(`&m^;Fs5-2dEp_u$V^DdrivdV{#t;gG;zTr
z+W2mroTCnZ|4AZ3*EW(+_}l38{US3DDj(uQ>_1+qK#kO>aS&06{^zBZy&BXB&y5p@
zKe7q8HNYxYpfp0}8-BZm**!LWy)Um<OzM?<GyY85y(R|6^i41Pp~qD%kIqC~T`WR@
zW9M^cicAa)lS^#u*}_JVREtAcwufgO+R&R7Az)x&WDj*E6MZ-o?m%0T6i`WzUF(Y<
zLJw367kD{)>`ZT{EiFxsAs@}nU3aQD0u=nM00WzVylmqK_mIx8N$IAe82*Ueh?52L
z=a|YW$;K9?)o`Z<9Rc&?@4x4cPTel(=-*yg>xygFzulFQ{7y+E#e+QCc`W1J>diY{
z{}QVDuzP$9Stzi7>C$%X6*`k$|Lxo?a(ms2Z~LoK|3lHNU12TwEo*DG@1LXBj6bru
zP0($HTI3@M+sSfeyYz`y^1p#zO{vYrNc2Vdhug{y#}rgnR^sB}NgEy!ywhLok$I8S
zpZP**K%&yOMNlQi+(U5k$u=f|k&)5m@bkm>zJG8XM<ff|aHe`B_0JEjK@FZ1C#TxF
z;!*;d-~4a1-eMg9N)?i2Dc~X5^7yY*l>h#k`T)cFVf4`w|BK8&#z`Ow`{BJ*Bofp?
zjg-NF1X#|oC@U-1kdO;%A1nB)hV~2C??H_D+$&aFBSZix@oQ<RL(;_Cv3Q&4@A7tw
z%%G~`#yqD<ASH0Ur{D0e<(n9LLqs<8PDdmHSHtL5z6|2vpy)_FP)1&<aJKpQ-pM}`
zx?dS`p!b;q@wxOYG*zoPPI9nt8iiC(RM6b*$lYP?>^+s}aZ_(rJfllc7`@ukBO$H`
zm3*rwkq^{zUDExZ(N&|)^{l48EF0PJ`qw{#Ss(L%9@>vH0eL>HOAO>jSUEgW0*~DW
zerbxFKm^<^^LMrDdYIZ?$xpE~A(Fy-Q_ZdVBE%b{)4cP`L-ffyH+!kq0<x6l%W9)G
z#*_y2bn(V!k&oW7ME-b)Ju&gNWg*-%cQTjn21li7-RgMR3`n^7j{ku7GWTPAo3v3#
z#s&QXJfJo&$~gMpYz}w7xho5=DKAs0>Mwo(lvwqK+mtqz6K!(uXbO}4!5^=4vH9_F
z6DMrz#VZ=!%AQ6tIrVVflr}{*ig<F#HuO)+sclR#Zl9F$uL$U8O!PAISpgwZ_f}g5
zcf<G4%OY`IKfb2s=6Gy@Qn8)pDRK8B#==F}t7|*=dz&iSfxf;;?Rq=m59EGxXC8HL
zK)A{&pxj0t6-fAL<YDz+&Lw6E;wP6q#)_qkkoy5_C-k2*I>P)v<`#5-&wV?bfi#pf
z%ohA)kc>=a?xN(&+8x}5BrEN&*XUh9LZ=swdPZD0#~8?TuA=79K{K#)5rR4K7Imk`
zYT));tb@%JZb$d^D4$EPFty1O<%Ro7!Kai7AOVUIm?E#-f&s_&S(Zub9V&k)A_77m
zasR5H|Ly75qx$6W?gT3Z>pqqI+R$4^i6xH#hJoK50F*8&xUBm2Y5VvaML0C0YnZp7
zgBE*jV?#1JIvN*Pcg?sEOVF3ITXzOa=co1@5ZPj>BQT=o+PGc>>h*G2k21}#+_wSC
z<_mR}39h_V|9{@>fA8!Du9{0MI9jLR1ZtBH!UF5BF84Yv2`ttIknoBs92_0T6SEp_
z-v|#{#V?dM=fH}fzAo-8cC)+z_>@D=xWgik63uo#aQc7El|pp-RJ9H-3QB%2i_&q}
z+0-M%q-vU0$VU<%IbI@1Pi`A&O@J-bt(Sr%pbZ~DQ2S^fgzng)v--!BL(=!c3$1^v
z!M<-}gz9sy7g`zHE!j?*CC}IP&GV(Jp5+S(u4CRE%%GEkGMj9|Tt+Yj7I3)kr9#{V
z-w=raiJ23__~tDb&ubX|yUDdIT`(Z0`*l<QT<v#^f9A?o;6d6<mRO(10v`%3*CB&i
z;;((XxXtjgS7Jx23^s{uIUFEccQ#Zae3kDvWOV{UZF3A!u3&ZM345Xt3mIfmEzx8L
z+suo;wtm2E*@?eY<ZJiw(W8~qY{A182}!%6^J9x2<+1dKck>zWviU+)RXoU8kp$f+
zj^(nyvmp-~+5UM+ws;hFcSrXAWwwF4o9zB~QIHkgwHbZ;0wC|mS}B>`SQ+O30)_aM
z;AJ+&7dF<_NrcA-7W7ruUQRv*3~%;#)>*Q6JG;Jh%quI4l2c(0R$E5$Z8`zWDU?k@
zQ_)5{GiDdbPwH_NJVXqFg6Wm1{2$S$=H{d__}yLH$g+saj&>V&Rwf5ZIoxb=ncNx=
zj~%tOA^vZ#Z|vP8w1vZC(AA`)Xh|5fy1J!HO=45tUZ7j}Qu%ZVkY24Vxao(;U0O!H
z_9RU!wcV*LXBtU9nFh#Q>Ik3pjpi!Wn(mLc@Ng@lHT1tS(oOMY%C^t$%2u+OjIg~K
z7++3(?fy_#$8)X_L;d}XFi3W)0nzN(IG6nYumG6)e#@-Ykn;LbCYh1^Zh{Cd1JL2~
z`d{M~iJw~hsX9730DFyUxD%ShY5GT00=7hn9w7A>dCi5pyQ>Q+W%@r>1pafQ=fClw
z;y7o<GpQ@1VilAnL@kL~?OK#pRu!tar-K;J#Ef)x<%MgAghBQG)+L$ruwXYbcCzDv
z|BXjHAWH6)o|w5^xa9}_nX1<WLqbuUrb98>775v~EWT@y`$`V5B|W&k@sB+z4)fyo
za(mE`2`==9n)RIa4*@Q=N<*YVSdpu~(FrO16<w`$6z3~~KM%1CC<M*==|d$Jc_Gb2
zY+j3~`Ev&qe-XdqMbz5k_>VzeepXB>W<=JQ0j(+hooogue@fu9j8cPw{&W;Sc)*A)
z(VYCw|9a##N2$rd#@h*Rl^?;cEH5z&6ztUzJ|e=QCaVAr^=y@FQeXT-F=i9#>KqCx
z>Aw`xUYv=qkZCACc%94#+mEm~JG<A)^Th=tJm+NyZz(pm8A67hV9xpPW5d8$1Ym0g
zuTi(k=Ob$_>#6&iM+v6>ey~-{xrAwhJb{0<&{1s+og6XoS!)NS_f@~P$KE+s$7}0}
ze?%wI`5J!xYlT601Z(U?C-STJ0%Py5r_x)u`537V|0uXA^NMG8>k3W`^|Tv_oVb;K
ziW1)@*|>SV0eVd;i;fEfO~cQ!%|?SgVg&npRMQ`yvBWNAaEQ?jn>O_GkUsl5>|_Z^
zJlgO0U_0OJe!29}PRx>iXuWS-Fg@83SD&Astx=H*KYg~k^W8R>#cK1)I~-VFiJ`8H
zyUPqVJ3C>inxTY3q2O8OHoJq1bO09oN8T9S+>4Wr*6QM{giVuM9A?-Y)5qlJyX-yc
zx;;#1F5DdYK*CKpHxMX>;1+ufD!poYd1j<Db|@p<Wm?}TlX{d4neFXSjKZ%N56$-7
zp;_A+`ILNf$XPQ>H2O_*&VkMCVCKxmcKYjx;jAX!exI&)mY^Ww!j7Yq$JOY3dk_`t
z2rjWco{4wY>0p<VEU!OC>Cu%l(+dq=60vl$p-=PY%reNpNUPRMGRAk3(&5X@#fg~X
zvHR;(hwNnj(W#qeoi9@iwn)|@PS!oz-+Ta3GuQC@0MigYRYxgI-p4crmpSqzH0JnO
zQ#<h!-d2Hn%O2^HArfh9!gCJ+K1!C5tAba>PM*SJr_*L%ym~`wW+sbtw6Obe;;;{n
zu9_NFQgSlNS#{azxAdwec`Q>!lXqJwn;Lp{Od#y62;U{2KHXsW8<%SyOLpN0!wlgI
zA>}L)`4HFg4Eqln*%=G@eLr3y{oA7s3I0$Zs#E<U=)z}tr^BcM0>4;iIhmhAhHmY)
z-i16cGLjs%^T&$C1__D7D`^eYX34KLf<1g0h>c22OOxm1<W%SB&yx5&_x}BRxu7>_
zzdW<T*r(1yg!6l7<2-%H8*dQ?2oC@1+E1*3vo*%&F$ZWn9@6mLDjieQY+card@P0~
z_Wh=p)t3Y=voI`Y-7gr#SwAk+oQ@S~u%nQ2fkYNVCihc{G>JD1nC3cF&R2MGad|^+
zNDVCJe6z={rBzVrdQ{`xV%Vl!mkc-AMQAF0p$Z&$%rin3*TPN%V%%8;tl6Rxi0km2
zVHL-&!=0O(YwU{xnLOTlHsPE5i&>Qo8)$3Qj=ZD<Mmq|q(d&HZTFZvzYKA@|3QNWt
zE<<VTO^Zme5&`jf3`e_c10s;Hcjn!^*MhU55!sI^T<G06VPodic=Y<RZ}$a!UI|A0
z>C8l#<l3w*6h|x}oJf{@c58HFAvLa-_A0A2^Iv^{6?gu5t|@t0TC{vhxQGyit7&lD
z{1j{H!*T`1bOqd58oNo7yM2*YiGTc1wGs&>#cOm1jp{X_tr|DeEFAs9UwuI5_f;M?
zd`EYe!jzhrRs3f;Q@=Dqkb(%?w%JkItb%=p4esv!EqWh})f~T}bJn~0vY-ZIOA8Fe
zebgucN3(`Rs2)LLMsS%|Hf~)<1MQyOOF9O*vukph0{R-yt!ArIt``*My?^(7op_F*
zMOPWl0l%hdjx*}gGo@!HUe}h<m@U}=yE@e8t-FS}JR@*%IYmgKczZQrMLoAZ*pU_#
z5yQNPW&K}*vMmqi{J3b&^W}s3R@#$SfYA|GCf>pQo##YFeN0h2HCvH*o;#|2TGViu
zMa_AZs4Td#=jWbmMt#><45>`ODahSO38#_^#hf=!kIVa}$I>|XZfP!KJy!gg@jxKo
z#qIj;MOb69sK6W*!+l<T?mZq}VX5UfzrTg2FWt2R6(f6etf<#((ThU~1w}>5Yt_4b
zX6G(<HDjn}#oc}8_pe_gE`Jb`kx6azToq}RLHY$>9wuxEO%^Al9))x-hl!e$T4X+_
z-Yu{1?CyOR!^?t;=Epw6i22&-H9pKAowU~7`_p%Bf}_UnYFx|3ww}>Nw|QmrXj4hI
zd&U>TvCcJrjgorneFpYR?zzIoj(Ri>$W-!tMVvv=C)@e_9R)0Iu=wV($O6W0Zvm4w
zXnD<Owci$QKQP~T>uHOBablD~AV$;b4T^(7Zy)mVGO8Y9Iy<gvau*O+7Jgs#l`laj
za(Tm&(DA>PYM9pR+1S&HC3InMRM-xuGv!ojGjjctZ0pg+VWAZfAybuwiq8`Fl9f37
z4L`BBhv)@bb5>*f$vnF%HzZ|Un~w??;`omE3{)rK_e>b3>DGfi4nU+eXV%p!nw@u$
z5{O|eM0wZ<A71^t<F_vM7gnr;S9e0V!i<|fwFClO^4A<4IhuEB8hZ71q)Ca1Q&R>f
zUI2K8NX*A0`suxqA;G-W;Zh(`V9585<BbzY!#Z1@J-uIXV%jN&?aRG*>D-sz&Vx2w
zlh$!{soinDpZCK)^2FYYIx2D4y@E{-6XA{7*0%RQ-5oH9UM`&~BD)>^TZELDv#seY
zXHTXey{abm{47#LKC|BHKQ%2GQofo`H^@}~VgkLKtq#QY^Viika2!*!Lu&h~Ya|Rv
z@V`DK(#r=S?G>qbmh>_l_3@p@?y}GFnT<S5ye_Euu1^-!YggR0F0b!Rzt6KubhmoO
z%q&p;MeDuVbs%BeUYK5y$ny<5E}u&%E`ovI6Am4Oq$fo>4K4mK6U6w(Khft@+Edao
z;vHoLx%X(t!feyaqB+lcx2$=}@gzOAxTa969ruyZDToQ%n|pJt?XW#2B++!mCsKfi
z&zs*Sre6lh=5qs~>!Rk}D)<)?Z^cd5=eS?WB@*v-G)%C*)bHV#k>d|Xd*28SCwAwR
zkriWyTA=NuHhQ%)cdc~~<6MBwm%Ztxt;zh<B0niH9q0<&cA}shE`H*2vfYrS-WJV`
z{#&kBE6YfUKSh6?4nEnra{(UpuD#C*5#(F6i03fm7vc%}wm&PlbJn<^rFvy!!z!P!
z9ADlC9DO%y&x@f5*5>@b@dvu$i*fM1=eZ^W0`F!0mOHoV4xfJQG=H9mgc(uOQ)=?5
zu)yoLjWF=&*g7BkfnrDmUx<08Jjng(61UsjVp)v5hgH|Z0K8N;Qu|U-DMQH5s+Okk
zEZ=Q6Mm|z;yH{sHi2g0wv=XyI27lj0Jp!xA(v*}(`4kt^I>*Te^;j>39-zl8Lp93Q
zxk%U9BmtU>baA(_&y<Oq&pOfM6y!^>-QnDJ9+j1p`_rx4u}A8gMM8LZNmf)Jw2ES2
zNNYel-C5A^$Jg8c{;`&R^CCxtA{qIsU=(SE{FUJ7R-0`h@wcDJozDl=#1Y*|`*%CD
zLFq7`m8w=f>CRw+A!X3Qudpyw=);J?oxz`5HJB{&^3X%s`H8Gw0=z7n%Dxw?Z?$)h
zRq2%golPcgU-fv6WZRULcWZRBzfW3a!xQhFXjI!L!@FAy^~^qa*DE8C-^@Wn`ru>p
z>~CQh7XRCD81p(5)W)nG{?=diC+sqBf8uxVDP&DkQ%?~DFNBN{u~KLAz$GXamV6ED
zV(Hda76t}V0heLQ<5vL#kM+$P>T4T4b#<9f$x>0m8+s8O*D;#f-!S=;JtM|OX{n6a
z23btNU|S{Mdl#$?+{sp7#|cPru~ba&Nzf9z%2HgHk-4FPNQAw*X>5$og`SMe8^RGy
zWSXmW86yi=wMHK|MI5B+F`fiuSe#$1%H@1xUX>7%=s3Yp%p)Fqy!^WBpsKumG{|_e
zVEtlg!joqgC#?P7-(yy>>Hp5=T=v)H+gsAz0b?J+h4R9!&F$?8z_ZW9=0yzco-!+{
znl(0?-kA>#i7HabPNtl>^u6>%Z-;oCnXEUmUr#lW<s|7ZY8yK6uQ5rvZ_9(r@;sYc
zhra6ZKicy-GU(u8>w&YeMpG2_C0dwf-E1ld(Dp=nb@gKX&_5k5wm$Nce!k0r@U`~Y
znw}IZ8Pm1k)7iZ!G4o3mN`%Ab!S2Kr=9&~ykUbPz|5kQI4lz3Ro=g`mTs=kM)_-->
zA~*beB!NZd(CJ;vqY_64!lQQOu`Fjwz4&S`MKYj2eL-}!-m^66Sa&xWCPyCHWK~zX
zG>!(t_WsDkib-bRngt{Y6VavMcUEy;XVUxZAh-VnIVWM(@~~$=`<cQOkpCgk)~ujl
zW{c0w_Wk4$h)dQHJXcs*cd%i<cUr@wVx+LtmlK5HqeDA@hj~DxV7+t0Y5l7a<dtQ$
zpTRn!6q5Rl*f-VkIOFlgPVc45n%6bu>hQ{OSdv|RqUT8By}G}O{&%K|ov|h|O4lpO
zRJ^dJZFRT(U^Lo-y8Cv5-AxFz%Tw7VAth5{d=$zmX8g0N!ik&HPvH=Mp=I?W(}<FW
zBv#n3og3_9f0I$7NWYtxx|`H2ol)8gj$%DoX0BGlpGKRvS7}(p#-_1}qHpW`o1Z0q
zmj3cmDPQ!qI~tv?24_sgxmfjzl|4f>HQy7K#%zxUl-9fO_(L;NSg!<Ug{-CAtZbeL
zxLw8ei*1HtlfaL{bKnCGQDDri{_gXvfXK12|50AX_Ys`0#$_#&HQ}<ph3D@h<QePy
zpyr(A7RmCY(FN%*`?L9@Wn?Vsn*EQ0UYp}D<Kub#rMfs@Yf_K5bnqii?9*z7)4>3A
zkH7A=8Qg(We+Db%v!FI>eOcKhRY!w*4vI7BAN5i8koz9KJ|nH&r$eO0H9PrLd+eix
zBG{NGm~9mlfnq)Cyw-u&RYjUKb&;K#s9@iwLEBo(vqM^Il*8Vp$B0<8WbEg+zv8cp
zS#Rfi1iw9$`)(n=MM+tl?UAX*+VBdbUeW(Jr{K|OUKN`e^PM#Bwp_qD;SK9fLD%Gc
zeMpMCqhzeYp`l&`vF@L&7I%=<L=4#Xh6(>`-kmp%H%(Qtl|O35H@lLK$?hl-L(#te
zk@#QSrO!vf!NGkFqmMo{Kdzo13dauT6Y@DSq$3`MHX(w}bd&EWeLz%F^*HqCxKz>@
z=htqN1Cxc(zX6Lm%6M+kDH7p_1Uj^2DmmV){oX8-lLpgVOa|f|B>=bZhhyVAR+aZm
zxvonm8o!0CD_abkU82(?2U^R$45JH)m@Ph9wi~@t%Y`wI&%KQ~-RuI%h@?Iy7sV_1
ze|zjG{-~n92&xjciak9=^1Lgrt6OU!&$>Xd-rL>Wr0HPwQivrdkrAS&mklkmldFo}
zo@{Pzj^c<tc2a(m0#ML)rov3PPlC=1lzvFEI}2EO>#!5bWJrGC*KF8X=o9h=(~kZ{
za*SWr4i;0)Z<*R~MS|0h&+vbHj%mH+5IHX)Vs(604Y}K2>>+qrUJU+Ki*(f2!Gc}{
z%1)l6vDt6dhPb2JNZQ#x_4hAIBHcSNo|vKFWmaNmg9cMwuPkj%CB;CJecdowuMbnG
z$Orq2Q%7#fF`MI@a+OIT0VLYO?0dLLsIe(>S_p@RpptUcVD<0dq}x?c&8^{lU*ODB
zlz#=+)Yc(Lw5x4v#O!4KBTM0$KYcXg{<PBa=DgU=P(He3bXMBz^MUyQUKM3N>Zcze
zE}~w+sz8y(Al{Y=#96X-4A3dSO@$by?H!U73NkSnc&It&4`-MvcBK_2vo=qGt>5mi
zKoc;(CS!WT%wm5=gBBoHInPhc{X37N;x~Pb2i){GJ3FD!E093EOc(}zglhXtNXE7E
zSy3!Kd*Y;T-G;9ob%*wB^8K6ZJo->kRwXk1E7d$yk}K=A6W&MB$hO7z!C_rKXV5Z^
zgZz~)iB`PEdvJ=c!Z~2&O$gg^XTN$KjTn--ljn7M5_ciL!A`Cc(_!uQ>sBnC3aFh$
znq{sdvy+o$@?@^!$ka$lkIWgouYc|D?J-G4rX(k$uH}Yhim|fFw$KIl%2R&$W*@^+
zv(1G{1_F`h>&V)fwx1FhKPtzHa7o7W!rMVi&#3EVWqbQQ=Y_@Tuh;u50RsMcC?7hf
zs-B+0KP<v4(Xg1jOPpQ?r(F-di!EWEy{w{QgU4@IsQXfadqsP5#-BoV`U1Z>lR1rR
zKO(<-hkK&$3N<Q!-=~lOY@%9vZpt0;?|l{og0}yCsZ9h2b&j%%zA8VxzQ!NnKE_nr
z6zVS?RX?0lM~Jx+(Mb*ZPa)t#EhVN%KKT{Yz0hFv+P$rzxPvnr)$BTEfU--_%-!)D
z-;>`7_YRk0-sM-v(MFnU^<J{BI5u>64^o5FowMt~@8i>kbd&u{W=;Ox%V4(kMyv~l
z8e7~aP+i)#y;p(u;`T(Jc&or(Z03%vDH4gbkiECJH>J?KLSTt@4>_qjjHD6-&2cjM
znyaUyWa{wL;P_PV!D(+In(mtqJ;+aF<buS?NLW~yGAm|UAl0R^;LD{AOG``ERx!W%
zXd~;E2!+FxxO3mX-p>E5ZWz2nAkteE@V>V36pbP^`$H|Y7zKwt0{5?`CH-{(GC7o{
zJL;^APxWg$r-5BYv7O7^A)%A!mUMSwi>r$BXRCy&fbO5lMpP}9pJn&OHmn%!Hl@3s
zYnu9J)hB}wIZvKmL=7~YE3OXZPl2wmV){)qYtSpBw*<$Y_dYj8T^QCA&i+JDemzs~
zlDT&WVwnpb;GE^N=3+UI<U`!C2%n`E%Zr?0p8N;Z$e0K^%A$O-c2P55l5Tl5)6ss6
z_?&!IuX#4CEU2xGO~0y<M2wwS$D$kG{M-WZ;BjjQw<9{?K%}|AkA!Qu#Oz=BYe#~6
zAJ;quA~KhJ^Pvf0;%6R7q1dGi?081(!ty6wj`}GBVqZJ$;;v#UWxQoM#j1jA=P%CU
zU5(|M*>qMun$zBGZqKS+#^!D4`z2qc7{1VGy&ovaoTZu3*HvSi-8!6B9!YR;BeOIZ
z%+@OVxi&tm^m(&HDtoC1UO^cE3aFDXq29j!_cvsUvEK-DX`xO%?J<J4Z~>-4R6Sq*
z^Ddsk1t+WG{vYDS>037X=Tj}q*<M&=+@wrEaA~t<3|zdS<=BR^qB1`{Wm-(t%VPeq
z1peiymhY^inD2ow!69+V-#d|%oymH~QItGm6oih&(80+|moqAFVQ;4z=lso|W=*9x
z2)h20V;RL#NN_ll*k(|ZiAX)<aTBchW)Bp{ukp8;H3>%8D&z}t=7@s0V_PVo*{;%2
zo@Wte)^e1Ol>=_dBNJJoZ08;owuku)@rZG>cQR+<qr*om+V996Ysa4tg+Ak2GBBzR
z=KTzYI*}erQ0%Rf=1(s+d#F0vg<|sK4?cfqLUSohIu+B^{mK<P14oGY3hv(>0pC=9
zfbmJ5epW$i8pgkH0F1B0Y+e@3|M)=v?#ApB@%bqtxsVWz)K(I#{J5s?AOwOyp>a+L
z%HULI%iWOu5YS;imn)2N;jFDHJ!zGj?U-iR`z*>?=<4?N(@mo&{g>ee9HY0xxBcxC
zR<wU5y7P)+e^s6S-nAf?lHZe0{FNZF9MUU8Oi4FHV1!wVTEkGrp+8gB9vQ5(6l%|C
z*2h!h?2wdgjQ3_u`pl-L+7&Yk`_rDHbO<K%!mprOObMca;Bby0Wz?!TrV=i11G9(6
zO9Vlq5KIcliE|Q9tt;kwZ*4?KxItBq&cP|#2`ggszzB1(a1ucjI9os}>!YD2Z$Xb8
z4*Y-#rI!u;P8kEi3P}jZgtUjl)M%dThd2LDkN|F@zvpp)+%zMLkOr}C%2NH1Fj+YQ
zje-K&;b(+DAO3X;ERYdwKqP(ri&0DppGp|0n`v1Htr7m?1X-BD57bsY_j&rA8d~fF
zUjQ06e_!P1rO%XI!H=e6g-K|H!9|@5>de=H3^O!KR0_3L=A0{O+#ST#b(H&K{xvN0
zw#IhjS<LfM)M0Vk`Sm+q_(J<T2{PZ@N@HU0pAGno$!B?YZ~-CppSY(QS{c9u-UzhA
z6K2jPRR8uf@+s=W=g*&mK!57%`G>PaGXjHx`rF$B4v&u3+N;}lO(_2L7X&{2Rb>&;
z0V%>^{Odans|cT$`XZ!*L%Frqd(ybSPXMG+MkXc&GE)<i{AE&i#ozzx7jgB_$^8gP
z1)Tyz(W7&J{o>NAq0tL|Z6Q4}@=wP|ag+O=iG?NSH-)(FwkjM1Qc<Fk&1RBmvQW>i
zynv6F)OW_DY!~kq5a6e&rzgWk#RI9TVsC6}nh1FPmVugDva++8C8DOb3`P^@=Mr{F
zu}2}I<%B}$KuWrJU+Y#^jYCF1I9RNd5|EgIE!!<vGLdKc^&Z(WR{Y;qg1`?9r@RtA
z8Vf7lPFmoDZJC(=*WZc$_}g|7k_Z$E`^5+`k3rQfOCN4v{2`H_6o3^c9w$I}j|%a~
zmj30utytL7LIngB7Cb&u3Ar66Hh7Q3yg`dhG}qCgr*x=`=UZ7hp30FV29R4t5jbxK
z&LShblwReM(~FC%EVMrTKa9O~RF!MjJ*+5#qJ%VTx=W-x1nKSu>F(U5NOyy@bc1wv
zcXvv6>`mu)d(Qj&#(2*;&+{JtV~=6&`?{|+*IaYWiFUNwsuM_<8gz2303+hlPPmiI
zVjhnyi!rg@9b%Xs-l1<$4_`Z+MnKa|!gle!Sfy9`MQM&Wkqs@~2$_bP$eUx2ICyK1
zNJ5*~@27D8_u)@sd9J@np9MvXvtBM%3GMd&TlHjSe~!Tj95(rt=e;6v*QIr=mhO~n
zWdNWY`Qht}2D!S5CKlenvp4pw6`~jzri;bLTC6(D?d$tkGPE(bxcEjcn}>sQK|x3;
z2blqXqDSEY2Bs<dYgBj0hYueneDpm%Th#s0SODh^S$X;QslfQ7h@NHu9Un)cf22JQ
zq~*~^*cJYm3TM(gQ*${{^N}YAwEU2R%t&IDFhlUKF3D}Fwwamu>jtzuz;wn89UtG;
z9|3s1-T7hucEOr_f!Rl7dWeGFe<{!4v`Zs6K0bce1T*>TI)KPcOi{#x#_fxNZf2O2
zxvu_O+u@A7Y1fOI?Hk*TTM6Bbi5y(1q-&A<KLE?+<s}*jM9VF(AZKAwoYI-C|ISaj
z#4_7uyosak<TGcvc}_R0{UU-KA^`F_#$%*d9Y25eO*sIxXHu*b<bVIC{iPbzRl(cD
zmimkH^71+W0S<i!B7g{}Yc?M_vms+w+hF5&U&h4gG=v2?BIe>rLHu7MA5F!V{*DCF
zmQ4#|Nj&DFedPVxE{x2Iu?h#uC8nZR8C84?{=woQ1q%EW5L;-j;bKBR)Ho_jJR_kt
z>v}maU(nzycSRk;k1WhMv^cq)$4|t}Ro;iGhxv6sB=5glka1HfN5>@d#GwT<B47w{
z41Nd@hYS?lt$lf4I};TWK(dvKIq}P~U!Hc}TF+R`$<99Vas;3Fz8b46vpACY7A`uk
zmBug+Z7k}j-%gD?yq$2{mSusfesR!IF_4qt`2#fX>`J^$j!042f)MG+#je6sBA^!M
z4k>9u>yjSbeDgvnxbfaat5jQ>97_3${oCIT_21`Tn(Q!#Hk~~^!mc(3d4wr|O}@=2
zoYAYloDlC<M93?wn&I}pu|js!XWlmw2>rw3QZsH1E>X>?JRI{J@^=1m_j&1aovVI!
zlW%<a$6ORG<2nY3pCUIEwUs|1eh^?+GmHEtT*_rj2}l`Vkhs@VPR<8DXVg&x3%|h{
zWqo}T+f$M1bCzd9LlhgkF<%2XGe+m1biq@P&?{|EiNjOWxAcyMtK*ervA0UX;|*3f
zRJ|lBMk5v;eTHcVb(-17OF8O`R1tqQ9-tu9jXlFAPM>%Su0s4*gFnrWFd+2MPWj3m
zVSV3^xMm*h%05A#{?=^Z`0~^I8vc0f0Qz(ISjZiZJ+L{)N}N(z)`%ojbs(wcHxHl#
zc}wY4e&+$v5fVqmS6ha!erc6Qzp)oLdGdcbfVzTp1hVY!k-m>b6ZjOTST7F`Ki`<;
zQ^_;GuqaxtH{s1}m>U<@jB^r-EMEa9#*0MexhY+!JzwOAwiPeysa(!lYVC#uLAZ?F
zX@eFzKtx{|l5UwC7>-8JS}>=J%x}Q|3*c#^`}*h4D1t*@pJw(BpAA0`-j7`W>tzAX
zN(!4dtT|tleii3ju!Z`3WX1%RYf^U@dYtfyU$s=U6R`?wQC7vU7+viA3tZH#v$btf
zup%Gzh10+!$!xi?@L5sJQvy|!^^c(<+ebAo%|}X>8k{G)@8*b6!(x?~E4cNKp{Mux
z1Wyj`@j<`>s;$~KpNMnH)UCaVh4l7;RG?Vg#lJ(*P4K5IL_Y2OPEJmCy2$LTWjk<1
z&;NRe?a2wfPE#4ie(HAawt2sZjfx`b1sZj(o7>w7K%Pz;o|-O4dN4hn8C5Dz&$_v9
zW=JGDMS+30A5+g$Ys+pCcYb;6I$av>%B9pR0(F&u?j1$J{pBzDryou5U(VV3m6ViV
z<l+z&Cig<WDgE_D<o7`l{Z0M=LDNluQ6(qfC#Nj@Z$R9$mq|3w5v7J-1Ap)Vldt3d
z6tXs0!Zi$r=%%}6Q9}-jy>si)nFg4rDEs~bEt!Gk)^B!~kMc!yIDa1Sq_nR^MKoJG
zJLagBYvb+hpJ+(_P3r<6h$wy`A-_=ko-|MnTkm#V-@=T6zP=z(0~9qiHIuOyfNnjB
z%KK48Dlc%whmw!WC;suo&!~EUp_ZF}`Bi9fO>SIz^QQo3t72uZ0wsqdzLcJo+b`9V
zE3G$3>UYC;)BAF|q-%S7;y@KuR90Roj;g9C&ugQC_V<j3RXjdsj#MkhV?>%?%i6t0
ze@a6t%L`s#;=F77^S%AC2Y<S3QC?oY;A?AZ+of9=LBLl!P4qASZ$WJU@-uKTn}M$w
zD+esy4Hi={OibyltgNPLt#!;MbKlk1)%6Kg;-yQfsbK^7CEe*{g>G3+ecxJpXKPCc
zm0U7%U)oBe!XOAa4J|QQjWz<r5e;}R8{+C<Edc^LAuh!lO&CNc#La_kiMaI(N6tIN
zL7ph1CdlJPS>9TyoT4tJwG&M5hX;Q-+0PMX=L^oqfaT(ki5B~8AzpO!SMZ==ZI;?4
z#_&?masq%Zy5P#fELgCpDS<IBuoia}`~AD#%*K5P9%mI11qIx|&`{3#d5SC2E}KCO
z8k=2jC|&yWJfC^59)#e5vf9j2@VN@FaGs|};Rx@?Kg+HOCk$X7#h7TZuSg_1N}mY;
z*)y&IenJ1w6Hz1-lw@QQkMZjS0RY;C1Q6FQ&d<x6nqo_(^9Flf>+%eLXAoboUUZVZ
zCpRbKwFenCW@Y)HopEv0#{ei7_(sEkKqwlo)|<P#$^Ge~?z#~OTSEI6LSP08u2gq%
zVFyf=zCs|7P3uMoWZQ$}>uX80|C|1K_7cbMnVZFC*8+cwXSYDF5xvbh6iU)^ZJ2g#
zz}}^PveLXIR0Rxy<FCJ|X#vyta(T*vLkr6iL1Ylfq5=^^oLI{pfC;$5O#VxRGKW#4
z1i6PDhao4Vw!$p$uMhG@^YtTEDwdaf(}@E@i^ebIExyQvjU1;f6d)yWE1-s$$0fM<
zcZXWHfC(;k@#Vu_*4jQ8BRolE39DTBs+9=x(D2?|Gf)Y0*qy%|PK3HPyVh2quOI7P
z4e;KGWEOCjSv@y0R6{X5c?@d0lcXqHnWVH_)-a$PDxPin_-A1T9!sM$K}K;gcM_vv
z9U5nau`Wi>s@EzS^#`h)sw&WLkWEv%OSA|!^z=-tverq_Bt;;)5!p=Pi1DK=4-^+4
zFmMCce*%i=-dei_7&@OXm(`_ey1Bb63c^UX{-94p@?^Eqc*yCv|GA)`pvq#N@eKk(
z*3yzD(9UE7zjA%N6aUS#NFsZV!3tp^^UOC$ZIDsZ`9VU@O+zE0eLm3NAN6K9G7{Nr
zwWV3nl#_#FJWfShj7Fuj*wL@q^@11)DMH<nmZjpo!};!be3C32456$H41)lving{e
z?EJ6{d^MXZ?3s_k7gaXkMMzszI17+$veITa69$s}NUd0>gfujNuG#J*g9t|>U<nRp
zPBQVh5Tj~q;VzCQ)m%uA7ifht(wfP|WI~%xL*EgoKinHwsRM~uOYMy(VX+twY11CM
ze^%15s+X>pZ_zutV2CJb(N?<${Mdde0v$l+Qj@^mO+t6bVlBaYwg|`QqxN-Zab~7`
zFgDz~eJZcdPP@p2O+0BtKofM<I3QHBxLBFjYeyw-5OD{>N#<F7x;-e11%ytpe+Zpm
zL|TZ#ns)#KHkd)vFOpHmA4}GGorMl%=+(a{=wnOpr;a3B^-;4u4eh|G-;^B#l#I-B
zhLCl@lvy0OlpO}?YDJ@f0C{AU+3)PM>aCs+25z>t<)_N)idiM#&b4+QKNVUoFhh9n
zCjf}EJHvQ+UNM}#c>VGND@=kGMn(|se9`pp(aU6Bk#7?)9aRt&<x0BhC^mB5=T%uE
znpI4)O$m;^Qf+RjI3%U!Zi&<6d`EafW98E}Zf5uKH*esbOL4lFH%KSlpx3>+ex+#s
z>)omg<`O_Be>kcOhYhDLr_lQVjS!VCd`L3)AA@Wq3(d#R9XtST5SHs|d<+b73-qc#
z`7f0o8l8^BfxCUG-rg96ywPg3-46NwuO<JVs&U=!>z{2=sb;5+WFu^D-X!#jCwB5r
zZ{y<P`a^U9J8X!-oIZR2TV?EACrP@Et82rlK(t6kMn?Ql;WU60<P$z<89V^#z`Of^
zpOBGHa1YT(Rx?_TMXt%HNs+y_pa-;FJkb}#r9aZ}+~n&sLf55x$IG}pbJi>LVqmK>
zm6?AI5(b-4bO}G=<x9@tOK=D$BU)x|4gq=yO)PYdq$Rv%1CNADt?J9y%@ne_V$%l&
z>ykO&trKTP64Tmwx<PnUwUi00`1ga^VF(YMcQNS!d^y|MW8rmp(+jDGsV17S3~wRZ
zoyk-r^gf($PPxy2y`ZcrfuE=7Sw?RS$-H_Ji_`Ozj>2=5GvN=k&}j8)roBR}*IY2(
zG!}J}FfU*Qqbi5iZ#}PYW=2QH+%%9oM?#=2)mu73iYm%OI$Evre<k_-llQOXz4P+U
zszV>J!O5losxhDRV|zwy5|&7a4%qjNeUU&=fY7@i`6#G+p)Of>Tg^Lr!D4LkqwV_r
zY(HP*ko71GZL^$T0T!$yi}KWPQZ0!K{tg+LO`uy3-QkQtid87uJO{hH{2}i`3q<7T
zT)o;%s@Xp*Z%|m8_=MG)_^>MB%Xcztf`!Yx?QZ!4o3zAB6rO^s@8)XCGOctjVQ&p{
z$Vr^`xMCa538c5kx~tYFZ^$hR*S5DL1WOykI2{^8-4|dLJe4_9*+GKln9VX^HPeB^
zZ}<eRr>>TdY^%2`pO^A+eyb<gmhZn&D|0y=gCsY4k&x55+Bf%piRVchj<tBL?;Vt>
z3?f;31e9uViE1eIcA!dIE?$pyBFU&sL+T6%Jr^1-zKW$%&#{A}ebO1So!Wmn7B1}T
zdmaKiIaMepS%{v$6q7uwMp|f%#@&R&0Za1M$HGT^^&S5IDZ=?tZGe@j>DBSF!@BR;
zU0Fg1TPn&^SgSjzWT9F8(tH^(aFIMip?e%;z-pCoJXuM-W*Y<WtYnWejHpsUSA;}@
zRjd*^`uZI>g(0Q7Vw~VcB%c?L(?JwNZ8PxYzqneS!ASC(!rt_)fNpRU0PWJu#S{l8
zrx`h|OI0j;iX-56Px=+et};sl(ak5#hT(B3E0d9u%9@!Kf|&-wM86E6D*yuBZ}W67
zJ$bm!vl-;{C5;d)QH8a98Yb*l`SPak5Ey=C&2kI3Shc9*8F%>7UFkrsWUBOL-^A1$
zz-h}|)?AW1YGPq?6so7zx7oU%oK2Daq=}17P(@>xM%TZqyO9-t2P4Ag%-7JcO3EQ4
z{E2*-Pd60Jt}tj3TpI%@)z-!MthI=XdbN0!lPjC8-Ed~~>li6&A`X$omVFu~Ma+4p
z_URqA2NJJT5C%1LDS>1dcD-8*l-oJ!VBG12W*C?Pg;8DulBR+MF0Afo?Z>0tUlCqe
zV5V18ObzZ+2K#I)l*~|b0s&eV#s0}MI-zrHTG&Ve9=l2xnUBq5rH4s(<r1yBQ`JxK
z^^%AM!x>q_3fEgc*@Te?cqu7TFT?5SR%u@5<*u0UxWCBPGEv$0*kWP6PSV)T>NSe~
z<on(_5RJnj1r*bJYu>*T8y9WCc*svQcgXrBySS3n#(-!$)T`O(Jz{eD;AJXF!IRSD
z-eLklrU$NaQt12?EF7HMn>Ubz$@sXq$%SgJgJ$1)Bu$wZ3MAIO-VDL4%nnmX_NVi<
zC1;`hQEG;rwe~1x+YWwIw-0so94bXumv+GSvHM>B!aAFor)9y#QEB(C&L6Q#e624n
zibC@Hk9T+&7_YpugkSu@OqpQ8&=LZ<%z5NCO{Tk25Uzs^gN-ZyAP<U(3{<$Scc1UI
zE+?ydaAk-|NQ#1RagBtqVE=E<4!|4x<X`mlNk}*=$+(y;w44*RP1}jG=o=+nAds^t
z1X@bU9{^r73#qQI&Ospw75MQ24pH<ZY&z5|e|Nc&4Ioy<$xIv^9NsDCTUo&99(AzT
z>Pzb);-TZ?P1=R&O)9So6-QV4Fg3euNF>!Uuu#OY9!BJ*+H&>F>P8yTCK=F2-d3Hh
z2~%Yn5ar+`EFuLXv}oqxbA?;YI-8%~S3i`+tqUs?LOHLw=Y2@>W;!;~z;;#kvFpN@
zU;1}k);`BM*Lb2lNcu)^dn7lc*nGiE4dtRF*j~BYSC?>w*bZ-`#}qZ9u^Hv1WlyXV
z&&T<J(*$-+sLJc2ghF4#IZcl9Xaowyr3jGRjlX-UIiwn!U>`2ATCOE9mB4Y_;8E93
z$7VQ^E~&drMyldAwitQi8UnS?aqeyQdK4~SWHXWEy4;nzYQ2gPOGi)&#NqX}a)n3%
z9!R&>x>QD+v#1ofXZT)Fg_CF<**t{m&m7h!Ce!90KRg;V&qB^8Yt7b$J(1XL*4Q7a
zZPSrwjQh*Ed6sv5t_WCB-t=~XNFIFdY}ZfcZe2&Lmz6Ib3Bw$`Qn=2i#X*@3En=&^
z_4=*1P60fBunhbpC|^!4dm~hu%XShr2T#8H<@h<MiK3;7@)7Yw6}eWwZ7ClFT2XY{
zKc@|Up#lH;qc=HO+j!c%eU@t#B~m!>*kiv5v$3)L${4_s|GrmVXS*dnxYFp4L?BIT
zXK=OwEW%i_SYWVLv_(w<H#}fGqp0Ao&IA7z*Y|5<3|E{=?4(9(i&!~Dk-!|R%PZNd
zOP(qYD_q;g^XoozKFgaZ&((*<nI8QnrvvxBg0py(+Od&qyrkW;<W>w*Cw<qj3~WKG
z$Spr}zMR93!m-{YITFJ;34K>>&SnU7Fjh;J#aiZ9lwAHf?Z|*YpD_j>NvBO^J0VKa
zUHEuq_K^vS>)qfkJ>8}G{=gMMN`}<USL6{`=dg)^YD4*$b<@YEFm&BmpWS|;@d;+=
z`D<73HoTo3^ar^0FxrtPAT%eegXsrY&vxT!TRN}H$ISp0f#~U>o4~;QgkP?cVgkvU
zyC8^S_>Ogl5kXiY_)XvVeB4}eRt_4@w2m@R@dspAT$3M&C9i7Y_{O4Alh3CGxM!2n
z?#Ywpn2Z3tZFhCq`r}tRm`8!YQ>-+q+bx~Pkpgc4qokyM5uIf3Y1@NX$g7t3j<?x!
zM@d~n!B{}>MKx6=BebfC1^e=z-F?n*qAEW>)@b?WO-?qJUzq02^#<Gc9K(a}+Dg!I
z%N-8juB($x7mzX&kgDCh|L*r-Ase-T`KsMHJB-EaaOs|<aw1e;ePuxsyka^$rOXzu
z9Q5{&gVhF0gp7>LuTf($zWpffPG4neDCjS~5yn?jVkzXZFOHp-bfC2UaT1iPP9Lsl
z$^MOB5EUK~(Q227K^uWI642qosDzRI_nA8LtLKOk!${J_H|DnZAdV>q0E<d?{Wd46
zGU$IlFi`m3htdTU|J&;ogUw=&P${*rq?9Be*GQH75f~*MFp9X5pkALxz>=>Er-kz{
zmqw^j7&}!sXY%TL7(BWRFreC!sBEL}$W@(g_XY6~2v>zf-fW)-z-rPzoM#5rMa^Qy
zTqAXpcB^XccT^*=*plE{gfADrW_$QtcO0K4?_0|&4Vq8|=SfJhQy<LTeer8|@m?98
z-0fFl-F@sjS<Vf@t>>gTLOW8me0#C1URQ}nDnL>@Rpm8_Q}2Mtw_IQx2gh3)3SyLY
zVXcZeI!qns_TV}32HyV~-A}tZd>*-pG*Q{g<6ViLW`|;lrPD4?wpNn@aqExQRu8Bs
zmMKdScCkLdCTV&R$>)VzR+~;v6ulhK{4Fa7BvH&@hl3fp%HKAe)kr%OY4?4fm->W(
zmOSh7mVn{ju0%)B&_c^&OV*g0CO?xs@3Av@HjIc*>$1|Z=H9ye(I*q`&qsapUbWgR
zF6io3!wOqMA@3atFie6#?6O#on)+u)1>>7Nma~6&E>uP7E!YuRg-#z{+tYp=i{NzF
zCA5Cl2pOQ+10te{b#!#}Y;gzx8=I|@5053RKtQ9Kv9&e5?^VwU$&TBHU8H{jk!<#m
zWr;<$`pbpDHk&r4Kq5NOOj8PqKw+5>n^}SRn0kwQJ+fc6$tY?1?so=#0}dvpnDvc~
z>Y4_|R4(Uu%&j@AqlIe6#H{A1*EaCmc(z<-sX0D6a3#xw!^y{Z&h)RlBa4|H$?R<H
zrY(pUg!_=E)P<P(4l#*)nlf*}o*N%$whQu$1LyQ}8Y>&Y3L!KJ80co^rD(^-93WdU
zxfbQ#Z`{%VPobX5TWPr!aho}0t$vHHWqT3ExSFdEMQu>luz81W-U?2?4Xu~12~S~2
z#^_Oez{Td=aw?f^u;!bB+`e@aIpnf>QysA@#%l?TQ@gKEI)!>Cx;r&ibNZopjo8gN
zkS-#DF7Q?Is+j=4REf1Q{cN`(Vu^=lZw3{n#fdE08YMm38|&%&%Hz7E+smWOU<ej&
zvgp;)UG7k=HNlVSht(t0u4TA=t&pNHuuq17tMU0|DMY*2k#kg%2A8Ch$$!Egzd*j}
z#Kz1}e|a{zI|Ng~!J+D~)9czE=k=co0NdAdfyrFJ;syG$^D5f<D7vvR+^?LLl;DuC
zlP5sRyq;Umoy2VV5m@e1X!Tsq)-n<05*HiJTy9h_eR_QOZEA4eXwl*O+F`BjIhE@s
zK>{$J%bc20RIjnX2HtWxE348bwYO>WI9K5A-M`OG|N4ndIm+7DlsIO`j#29Sj6~VF
zs($7avs$ZVlfFoz3G}V5Ak@9eQQpZW=F5}S^pup8&4H)u4Wy#cuRLL=-&3yjQnZ;(
zF9<(c$iiUXU^|9m9%`U3gbMOp@g5A9=Z3c&d$O=-{k%oR?!QQC%x>z+^r+9!oLN+-
zVy<8pWh$VhVF=E3;Se8ERhBO<DXkEI@AqvRUKzi()-q>L7Ly2OD$5Lwd99x6ym+bJ
zl4HmyO)d}gMfKo2IRK(oZB^RH`8_ipO}Lq#etLNO{i6^0GL)dg`R9<-yPj_o2#NPT
zf>nEq4uu+_ILIK^_Lt#eVg(E89`4)#1{s2lAP>u2`}HeR>0%!}cZ<&O`o+?WvM(lj
zN36fNzd%;q&+2BT>I%mn_9&bSVA%dG)r031`T6<UZ1~Jm^?IP+Gx@sM*FWKb$>||_
zGM~udk!4OBgHj--+NLTnI$Bz)j<ISyq6UV@k;psFaZY|h-HP(^<lVvU_G*Cg8pv{x
z__Q&S%9YbLPS|7yb#pT{Eoefa<Kxrue>?Vc+7vs#vGn&r&)><dVv@Gm3Io;snUXC>
zx`LRWrRLBoPM6ak@MYUVJg(=2m!g3E73MmpG>_Y5Z14KI-ul?gZI|wp;(CjPJ+L|k
zF8=^X2*SIMfRIIpc|#@qF03@bS`@z`jDEYjOBIoz*us{Z4@T`~x-%j<V)s~+jB>%v
z9VvB)+t5l+p7*<ZTlNy@%^rAfSQmTP>>V|2wWnPC{`t|ZyX_~(i0{<JEQ=hCH5T*<
zjk6Epou#cl7Jhw|=1(ZZzR>h3=R>sh)5VmUhsS2_{U;mt11hAE$=Kuh0tza!UxCOH
zM)10Vuwb~Ca-Y-ND-c4+=nd=~3S2#F$_kIeCfzN2uTGfD%qk#f8%ie}Ek-cCd1=}|
zO7tHZoU57!etwBU4H0<^T`4J~!&h_fz^}n!#C}uw`6nVTUIFPe7S757heb+rzLNO{
z$8K*$4d3CPUv83rTY^q$^vc&8d*4<WsWfg?m-bajwiOq$2gslfpf)~Z0t^g26A*4s
zJ98$aJ+9Vq+u2Dk09!yqH$A;f?hmRz+qz24XG_s=aU~AX3D`ndhV4Vt{{H0t`pKFe
zQQJ4+%eB5FZXg~yvGwP1J<eAPclRbVc8IL&uS^I=hc@W$;y`6XQXIZtw`?9asANQ6
z&A`AQ>|xIBb;Ka%J)uo8ih>Wb;?IN@&WXK4YTNPBYpp7d8JAzx;Z{4#LwZ>Y(aj|u
zmc!(h=y8ted17#A`=o2j<biV`8N3_~ihkF_!;+J1T4PP}=|w_66UfLYWgWMBFIGKB
zVZ${?1w?>c%Lb!d=8YCFx*LJ*3or5!Pfb)dPv~lZ$>{CYtq~6Mjgi!v$%G9)>;pLe
z%ILx7cIUHBda6_KHOJ=p0UUkM=_c&$w(uxaU5&f!z1LSrr#z=?)xIMJNE6*|A-V*t
zWow)G7IolT%ncMXnT^f0ev=uYC2s%>au?jEvvD}x%PuM3JoluF_#a&5NA?j6F+fpv
zt!;{uDEWM%<N_!aD*yshrN}5I>&6&ZbjAjfeG}(w+Lw;UG6X05g~CPudK3PmMp;$|
z#+AZ%skR#dq*hQ6t^K)E8~Z{}$gooc5I;(-b(+bvP^ze^Qc7L-VV=;EVKmz4NOP-z
z!S(K{6+&8*??okLCdl7HIIezny4Gigp%bM^yvwoEcEcSM5XKBB9IIS_i85t`!E4YG
zwsosb8k#K-u`WrW>foM@6@LS*&i#t0tKL%1C=pK^HDJ%e8v=t5j4za`Txf@eF^FnW
zfAdw2`{Mx?M|ePEj%n(4t4bS}pzH@#esTTEDOL?p%kqQOrhoV{eZtYqJqHOlFQhjx
z!20N0iyodt*;oDnZjTNF7n#-?aziCiDR%LUC}D5cyfhEruT1JJEd6JI8CL8{-jo3u
z8JWYf<7`1@KLbS`zk7IWWJm}J*sW0^0MU|?fuXxAH&;MexfGfGRw7DY&^Nti9E@9P
zD(&H+>mEm#0vmoIh3J`~p75=XPQ9f@^6v6zue9-aLK09cO9Mpk)Ii^#L&p@p=NLGU
zVa>w={6EX(--g_Od0*6Fp3iKa`8c``1StdLPld4%M%+~FIZ^fn(HP*}b&%9BwmY6h
z#XLpXcYW4N0Azj3R4xOx{H#-6Pe%K<)vpw=YJx$uEXk9uw(rxBOJqZRM+)><F{xpA
zVWFTun3=(Nqgs><MVjo7MXu&Xo=W*MgeUw1`6Lz&Mrq?|ah*VoBfs?MydC&{I&J((
zN&#ipYuZ8m>L`GG5|G2^Df3n|iqGXJr48>2x#0P^{49@gRZxb0Pf%*Uu{{VDPcTXU
ze_jA5fz6By@F$hEt*22g_H6!fD^=$-_6lms)Xv6iGH16{C@|I-R5&rIKBz*7&En_>
z+!$Ls(Tx$U$m}&y&@>MH`9@t~yKk(@pHJG!GZipIDt5=^7ciT@y^?MaW0gvR8kE3@
zAWm9R*3wGXGS{#;0t*=6dG}DE)#BVnBboSV8D55%<0Pilr7k`2Y$*vE+9o~U_mk!w
zPS>5~q)uC4iuOjg+0eSIyE}*RJU>E4$;3JYHAyMnh+I}kjCY>BAxhzHa7g{&!~Pvw
zYCca_4Ni%EZ#WS3qNKL~3{>Dj=pfMVg7(83{%0>3Ba#G|2{ZF}o0l~!FP%<!%PT0D
zo~`FzjV+%WhhqPi%7+v4Or*?E#Cj)Mm85NCNn9cfv1!Ect+BB&5aZ36P>Si8es|m`
z!@0T<sP6S}F)QRzD&=8!3$I7(#7wQ5<cfar-5M|oaexl9p(0>&ykrS^dqa@k+RCS8
zKg@!L{N)_fL-Fc_^x~OYR3ZfWv@E>gM}ooec(t7%cG6#74VZ*kulhWCETf*cYvq1p
z;|bmzGALoU@1mQcBJ{N|KihPnz4&hAwW@R#^+pVDhCK8b%Mz{A>{TB#$8$t$?hTzX
z)6CW=rsK>p?T0PSxw~K9bmrz-0OQ+W0npAO_S!n14^bvsJpwUU>t{x!ruqbgJ(+f<
z>PL~m#c01uoQu_oq1#@HeO4HsS58lEHV==fq}&&3@+dGLsQds1$Bdc+#2h@YdVO_`
z=_Lyg+hhbr!1`m{d!%DIH5>pno8ju6GwxB<@m{yfQyosebx6GSs!^E8Xs+my3FWwY
zNbesWRH?Laa3b@RPJgha;kn%tFL@L&Y<co*M&1P0?tlIIbbhlVBde%b$IbV+)NnCl
zi;-~o2*+psKrV&zIfBQ@=lZ>3_vq+o48F(tt6Pt5ch}SQ1G@0`IBe|tis8x0u;W&*
zH@1A{3L_&Y*#*FyyuuM$TZ3C&<4iu9Z=T~}HS~s4Vf-htLJ=m6;2-iwZ?l)z&J+DH
z6h+fnFfY|Pz1!OOU7sGV_5di&!V$N&_C@V!gzMz{lujUw+ru_4jXC7egJ{N=<G-9F
zb&TgNQMX66tGVf3kBRKWn?SEeUi!&P+J0xGWO7~^Adq+Yo^FuJ?b)4HE(hsb$7J{(
zJ_B28oELlgsXlo{Wi3f950@Go^jBLqm~`r&Ww_5?&M#_&+bvYUr>~l+QP@r^sf+_{
zl?edaci6C8RY=-y`K3XLiE3<aNa0PYm%I~YI(#>46**N_%MI#0JnFzj6cW;we)p99
zi1GsPDtLKQcQb~-)<oDDk?^`bEGsq3slqj`Oc~4?6Q3;n+Vu6*cq<9G-er7pmd{cT
z;`P+HoZSR0!8RCnmDt^XS^aWrGSX`&jlopD8@jW8pOd1k{)oiE&Y>dsMc-VctSpSF
z!0Rr}obsm6Go}Gbb!tCmJmffaCyw!@{BEIeXMGk)r`Ucsebpn}%H!C>6cdBx>oMPf
zT12nM;lL^99h;wbMscik4_@|<)8hpP0Fa@T@eQt^c|EKNHQWtb=NuW5P@wS5L5bY>
zHx-rTKVODVr_;}yT<+x6rez+hgvMuzBF6moir*O>8h@D$3_BdCA0y$@mzDg-JvU=k
z1BJeqjCv9RGWTvQC!;Lf5FK7G`iBE3-==xK$BrnKQ86;XmlW0P0(r3MaGGbFlmdw0
z`yFdD^itE#&h7_dyXEdM+wr6(#len@r1*63D?!+1$Ud>_W#Zx%9Q4}uMIgapL6l#(
zBRE{~g~#={eA3ebPX!PyA{azKZMlFZILduj08CkotnQNBU#(Idc)VKqR8XW-YNTJ#
z(Kza0=BPZBRNsAzJn0?~$x9Vg+JXrF^T0w$ep+rg**V&f;bLl>(e1vycy}cDdhd0|
zhD$E%&ln#P>@MSqPc8zZ)P2zx0N`F{%1^m>1uRr!*&#?LGC^GNF)?|3*y3*rnzH#l
z^9pH4;?iv`LSDj1iG4X;YoFjEwl>?H1Q3lOk9LeJbq}}OXc~`O4ehD$ZmCvdA#TQh
z(dqn9LtZ=Rl;OQ0eTT!`XTVd;qr3A8xUJE{oicY<+)k=@l^AGgLswij-tAS(@jY|X
zJ)9}Q<+)n22V8{+#M(1kw6@e#FWcb=WPyUN6vqv@2dD*RgFa;Jk`tiV=IQqqrhH4p
z%Hp@*9wJ&v9v&LXzJc!ei1NUnwmzRhKK0RYhR8)cVs<g}^0p|m71Y<)pC6R9&KwYg
zX^Uoz&N_Z`)$nL3^)%t*gSpUs7#O9W%-k)jKApNJo(;i;218Ab_<&n;>^`S#yyu0N
zoUUoceXo2ngAQ$4s{?Nwc41TeSqkXGUGwT{R<Xc_-+IzWhCGEpQGbv7<A8WpZA;Q2
zSSrQLjE$hIe9#p|UCVy2`LUcXWUY#HrH(xnB~vbLL^+64Ke<q)7cfux(7VRQM`mSU
zyQDI@D$+RfLBWUxU!S!kUZDB@@NIjg*$NI<iipn*)KI(BayN|6%W4Aj&<PV$(bA@k
z;&rnM?aCC0i>*65KkKYI?N=*o7_t8_FqkoG)fzn!z25DTi}_tDjf-Ku<7p_fX^7d<
z0)q|0aeS*!)osPrU{>QWQjcA5e(31&*=3)vdX~90_q>b--x*p_R$Y!ut>1zVt;hkd
zuS-u<?Tx-Ch-=pV(T9((<7tS}4D30QFF)Oy6D)Jvr=3<AzI7W71BI(!Y?Z%{kvDm`
zO%mikS#bQG<^s__1G|VPFB(Lvzu5v)#S%11t6!ftMyb!M+V@J)K(Gy(WVP*X3DMIl
zv{NiRRmNsYG|biTlKuo`BYtgxX`NeAd~ENUgL1VQ;y{OZeV>-jnX2xPai%Ph3oe1-
znu%(}uLU%qks>+M%3u|^H!-(%e|d#35?;Epxwb8p;gc65^5vzUzrXxqjb*iG-&cMB
zP65-Jl;BRj1BI*O9$e3fiNY59{YCmMcTrJzAz@*&2#G}45xoC6q)B3W-okr-SUGC8
z-t#6SaSnig9zfB6^cXsBup!{7`I@8wtQ)^|^F=(l)uzYPbdky=;G|HMFH>w<51@!3
zYaBKiZoZJS*t)1Pg_Gq*71yu#cPFhZ4;Wm9ZUBOy2M6eE-zz3^AmXx09`{3}?nEz0
z+RC_`D0@LS7u3z{{=oWzp{yy>nWxeul`S_|Mn=XC$S^(|w70XP<l@5B#x;j=O1p4>
z?yDf7tl`G)CNIiQVds4L<GhKPGZ7qY7h*RO6S{TG+To)n(i%=o>x7KQ;SnosoL*rO
zxFAgN@hB>xVAVw*Yc-EtNKQ=dxu5W5%&(k{OG|X3h%1&`9QBTuH3FM$n%{_BWzF<b
zkg=^I(?GaxM@J;C@^f1+x>H1`oEBf5Wn`n4&oFR=C@%UrWgw#%rSNshqlU{*{PGI)
ziyvmO&EMzsXpnVv4ZrRHtGZil&DJYouwL$>5Fe-Q@!#BZJKSHJ28T(-;^Q40y5qlc
z!uLiyJ59Iqog7ThD6Z5kGRK*q(<6mlJ&&^By*zWgc+Xxz;{Zsi<`Y^&B~v-$0Cw7U
zon<)4_4nmz(*H8{RLg6#={71C(D#S^)_w0dHpJZN2oBcJ<!Fd33D0+M>Dw7G)^pS=
zaGlf`OfJMjBp`-di`dj}tMqoP?RXKhWK~r~1LVc~q}|h<fS`DBTj&V(S)%2^nj~4r
zi|m*H0*>sH3?Tm$@EhSSbJR9V<!G`~@JEaY42%o}G;tHOa`viwx8#rbzW~|X`1m+u
zO7Q+@hWz#FFaQ^*PNbDDFxT^ER5djvXLYRaE$xVAGPXe+cBDM_r=1mj00AE=We+6v
zi4B`_s3QEq4F8kx8Bq8h@&Ji;h7ebFfWba(hod4Q`lNw`fVJv&!c&mEe((lx)1omn
zz)IcyiFFtyf={%9v{|Lw`RbR;j#3GIZRM;GnFY7a+B2TZIem35W7n%=Dd_faj3aGn
z(?MzD?o<KwLr7K@Ni%Ss0Sb}SQWbErPS6>+&$$c$SJ=cVNJ@qp6k*xmo~RY&tHn^r
zC`(};Mezi%D(ca-7pqkoOp$vI&%dEiRXXFrHH#O<37~&_3W#rt$=dXKczUl?%{{f9
z(AU3NyPGw+r_AyX7grVqTyc~H3i*L9>wx`4^}YyyX=y8b0m3f|C%TF6m>MF31T_d&
z>g9No?C>bUyO8-t$jULL5POFslHLah)}pTD?kCSBo9V-oMc_-3drnc<n(Xtqh4+bg
z+@_XUf{(=puJ7z2&FfAOd>f5a7?G3bwS81j#Nxt)x~NWt$^*N&YYBp`u;5qWzZ?BA
zo8NmgdqunS{lAxgsKZv`ZyFK2oR!4p3o33IN(Z)km08y*vXQ?4Qi@N2FX#3!r4N4=
z>KZNq$I-mPg+>Hh$kNhM;q>5}N<NE4K-ja+6?%2DTDEL!VWeErhb#B%*Dpx8TsSij
zAbLKdGyD@Dy@{c7MfN7eC8mORT?ND5PN(H;2RJoR8CwSoj?Gf@_T<(RsS<jlKbsN*
z{)^N>mdpG3i&uR-d^NveDlp5@>}5kJ(`iiuQm{y_sCy#_WZXNe#Q|Yj^gJ+O_&uMg
zAdH5MIFyULLLY`TZE_yajZ?b4*-4iIey@(aJaMP7*X6viT_}*Lm7dTxzOtenObyn2
zNGnr+!PU9pA-j@p7=X~<KcnLY$d^_PMg^q95to(}Bs8q`A)B+*t@s=T?jb1btmIgs
z?*QprD!<LF_IaC|L?N51oc)(Ub!;HMXcEH`axb$OBuF>QX4`kLQ$`@WYW1`BTieo=
z7tzz2EDdc@GB+n@vFjF@a!kX%;d%fI)mhPEF+-6Nlg%3c(IC86xptk6E(@;WpWMJy
z`m@!CTDL1JPTO@~G2_Qy#_allQq)I#$wbe@@K@;RWgitQ>&yWD#~0pEl8*okX?VC?
z+#;miS4hUube@!A>vzR~-#@T!xiL~3btcKn%NyhlK~49(HQjrVo3|4LxYwnxcNeod
zIjJ}4pL|~R+t7)t7A(yB>;({bisG_aDJm%wfV1{jpB~v959h|Sk-XS|$qC2V_7|z3
zR*5t6tVe&88ais~=nSLt)e@u8G^rSJDMoCwfmo_8B<WR;D?B>&s=n-Hd2iU@`!C)b
zs50ET{n<SY2|AvM0N&Gtjb=d%fAt4&{6}$EA3Pv86!hQNYW4_M)=#TTvvx7^CZRwV
zSD)wL;u?GmKq639nhtNO?Y~Q<{Q#)Ld1}mOrIpL2q@upe>1W@xWO;%lz$-CZku&a4
z4mbZM=m?jgFMjoCzueQgJ_LNGZ6M{A4}2j7Ii{Oor}WL|?;ZE2g642@#kna?wtn*|
zjKT4R#@6voDubGQkJtJYRWjUWQ<QtyF_v>~+l5L+idSYLyfT+<{rGT7dT{)$PmhhX
z5YO}KS?!{v{bucw4WTsM@LS|*_XefU^pKd|J)r-eig*_Ag7?ZmQ9j-6DWoy)@!Nj4
zN3N8Y)0f5bp#v_GRi*PzB)&c?_o(F7V&XqV<SBgKKoX!BN>qK@*}X^)JRz_$060Q_
zyMK5nqU+GK$$!i4UM&u=*^F*maVirpkhp&Y5h`&J;DJDaeqWaxohdLj_7n^ZvX_=B
z&hcWp<DYJ4TMhCrfvC;B#_1$unHT^LV4S7)ZU?b708|xcy)CpGQ|CLIf}&#V(o|&?
z{z~0uSosI7hCW%!rkkwQwj$Q=`D4}<YGx{qhaOQvzylVZ2?h~aDZczKDuDy|pMBv3
z)npha1=*O470+armx>qY@U*nF46DItT9^0*m-x;{3ptKkH*-v+C$&~9O*bi7{rL}~
z81fK&DmTNb*t$pHQYdvqih~W=hLJ>E9e!{bo#j5$rgBR*c)mwhi$#K7@vh7dHN93n
zy?E?Fj#X1>HjQSH(m#bw=C*vquz7n!tJu(!&VD^>Kyb~aoOh9(9+_PR2K35hJj8y~
zG#1dVjuhw!Iux=WC<XSeNA`pz@_HE|+KO)8<}M9Y-8y+U$Gya8y~P68zOI;P7$}x^
ze=cB#0|VSk6rO~CJ}ze3=ZLi-SF`?x!Q)AA-oUX)1~j`{da8%{(T~T55*HvlUmjvR
zJ?jWFg`m!#m0u#deMv;ZvjLU+0PAIFU#1vYumzxMZ$9lnQ0H42+Zdy#1#NOU-JS1|
zET(xqg7@UclOm6rz!%4jCuX?zAZf#`fjGwEw{C@-wqPHN{iy==d~C;-rulCB0_Yd|
z!h@NTtiwYK93IyyO(g3!$D;)$R}F*F(EGWcx-TvcW@W<r^(_~w#2OJ2t+~rt%k$-4
zW0at9P%qk_-I^RFeE}4||40`<gGs=7zVagFqwY6uOAODmM^lgYB4%;|EkIwD=&+TX
z$8lCC5)R4$SOaxeb;ZlVuq#rIH}6go(j?Y-q%jz_cXkFZenU)L|0|K<E7|!wq7%c4
zTA>Gg>VRTp^EC!Afoc#g5<WL&cX(oAVwYRl?+Eep_+7v!S4GP)Zd*<+xz3w$$m)2h
z-VW*emHkbR1BSj`6_K>K;sP*s<Ih{B>^wb?J_=wGga_fmGQEQJj+beZRTg*4QmLv#
zRfAkkc17fh2Gl4yzg|Xz>V+r0Cha~Z`F{`cYg>*mAtB+{8jE?mf>hR#tM`Pby#!v!
zeC!v;%gJ;0>kHN9Tidam4=o;d?^hk0jD~UQZ*ul;c6W9t?rea?IBoy9ZElK7>R|y<
z433KH(~7|llN~KTorSAydv(QlZ#Gf&Db5lE6PMghnwdTCT}%Np)T=S3QSPkj+1Nw|
zeSb})TIe=zL<X?i?Pdb>o##^uGX2zu<C&~Gb?ZR<(#$cU5f_F|VU^>7vYvI!)5D3E
zA-c6qMO_pdJeVY+JBd0cH+O(jsdRK)J&L3&>>}fh#(%tWe}+E`X?7u)7$28&nyazI
z1xBp{4I>@F)|oB8{Bg5+5PG!Tj#x_QBTBfb?b5EqZ+c9jU6vr_q$`>mqto486MNL6
z0r$@96b}3R;^Lt$?bd(+X}oi{{6^=KnM+wP9w<=+_{c3gh5hY$Rs?Th*x+4Hlg#Y^
zO<5n$%;~93NeKfZEokea0QWQzb<{d7Y0!0eb{aG=6hZO{au9oUd;=`z+q)S3{9D;z
zM}jF*F5!$=*?j{uoc_$(#Ky%~`u3EPRzQ(R>HK0p)aAuzG7K)rwvL!sP+=y}^b7_l
z+p+?NQErKVHI%DuR)rhTB?a+_KwR*+oD`?4@i{_6#G9U*q^aij{o0;KAW28HUO3&x
z%mY|B@Fti0&TujX^p@}G9*X1vP_B$qtk(C;%7qe}@V5H;QN4Bl@r~hpeksrwWyoG0
zX#IG9qfGK^mj#58bOqv|)2In$WMq`Qtqc<vU-}*y$v>DtPl2HTdAAEx*37XnSq{Vy
z_?uUDE#OAppk|Qg^{;^GuCOM!;!D~2o(X(vx8h<`q_{hqbsqhd%B||6u5kw|p!_RY
zVD!e<tmOLkSh!fH3DuiLfM9xa-Cupg{3nFY-~1ZTgh(NXWMDEDHfn;~08NB4E*r2a
z;QwG_XBV9YYP~z=s{hrKkvxA;aD&&u{Vae%*DY>Gic2D>Q_~)h{Z&k9mPiMY*Xsf+
z9n%Z--*^=5)`y$$d0deZFgZel8fcOQ%k#tNP4n-d4_B)P;$aCTV!yw(4Tj#n|M<1B
zJ`Z281BNnU@a_s%BoW-1eq5y?Z%>>d?-tD>qOMf<9?mDtmR)4z)7c%)V`O*>lx(x{
z!b_p+A@t%%5w!7}EU6)Fa;?2ZQiP1{?d|I2xjc%FBu$=3aa^`9304%gKF+$gh(zGW
z;gin~l7?(0X_%QFSc-ezFRgg3K5QNwNL=yR@By<?Y<y5M<aL|oKmJQ+P}UlmNQjBE
z%e4*IO~wc<zy2os2a)hN6}Q!@`e20P*bkw=bx3`(wAJX$k<G%#ZVR8V>UkH&{<c~i
z<S9gk!D*Ktv+&-!<|QmF$||g;f*x-5Sr4mYSU+nMA_hAob)5PvSH)g*n^;6!0ieIA
z$jSZd-u;*P(GOkt)0Q28$RdH$w{{xkd*ZgmGBAH1^6+@o`ee#xYCpG=m+rZsH+z5Y
zUXo^AF%yET^kNq3N#o{d;0?qfyKOVXs_?RWAOLe$2MpX5fI1p#x>(JS;(84}0G^G6
zm!JDBn`(!URzeJAVn8Fe$<{3ynVFdj{+7`-z_BCu)&mwww<<qgbc5+9dRkcp)=YZf
zg#PIg@;2gMd%Qcz18|0-M*mX1ebKb7U*Qhd_Y0Wb&H$vrQ<C4YHM%($8Op%LOTktr
z91apg;yI5z56|ajDimX<t;*?I7eR#6($=;rn9mMpo4U@Bm(qtUHQ9C^0cj-@ngm7~
zevxt;ntfT?n|%jg>&^stalhmK2Qp<%j}#dQH30lP>y|VO<dzywTFe=u!*c9*9z+o(
z@UXBblQ~E)e2{oe`W25u?3h93s1aL0awcq0lZ^VLXI}LN71sm4nUuh1z-`77Nr`@d
zmX<d5uI=y$0&FbA@09dFPfrP3)I0%`9(i`4z!l^+efi^6eRVP3OE3;B+?xuXzp7u2
zK%SO*cv}^DQ>^4x8#&p|_`ewbwM_E0wPO-ic69~*9U4kDvhaa76$P11u?r4(w1e&t
z|7Zbf^b5d;Rx#F59rDxODPil4AT~hwebj(6UgsXi29lJb5yjnB*w>`cR?yb;H&Z7I
zihq6wEotVnb0w%RE(C%H0ON@maeGL9b#n<V*PV;JnALOaV2OOC1Le)b9YJt^9;MZd
zD~DBUeXYXG8LFb3y6~2t5ZV-9@LNLxX7Xd<VQEovOx<)3?x6cdk-nQZ@)J3!=3fc0
zed~rQJv2-)Ti0bcv_}(XgYD@^uYS}h+E9mu)9Dyj9BbQK#a_G~_nJ%;x8>E7y4UeL
zy*H-lc&>sq&_6RC_1jyjDc_fR@ZC3Kj_QNi5W8?PIXPhrB^>I_n+h#8Cln=RtUg(@
zCTOLl1_2JA=hwOr$I2$uI3ZIr5}^;sUd6;~>+1sIOTErGMcMmx76oa|j7fRlzQL&1
z*<`reh{m`3z)emSD2VxmAp(n6rjxlS0boEnSUZ#2Sv2J!QfXu$<bNW%%~IFUFt8Dd
z%~ZT=$UGik&XK^CS(3I3dK=dl)!1Rb!SU=f=06?!KYE{h?`J1!Bgt$sixE$oF)}8@
zNh~a?$;wdAa|HS(e(qO!0D5Zxm<_XLwd5-yC9K0+Uk9uFW@`W_Az<G4U)+-8`!q{X
zBgN1nr!pG8x!9kUa1Gq#F}{@SCu$i+)p`0Ed(JkbVaAsZBom$73@yIDwG(ype8&gy
zCsq1)h%Po3uVrv%{<f`LjRKFyoyv%M85QP3GQYqTty3nqxw|dlH=k!PKcfwQaR{RP
zXor@AKVSG7B=|}?ZmR~6G{NxT>MCeQ%Q#6NlW!E%3knJboltK|J>v~dMJM_~OD2NE
zMx;#}_l*yOm)v@p?q&GRRH=0~8it*hZeb2n9J*q(<+*eo_42~4TmkYYPS=JQpGF#N
z#)=&FpX@X$NmcKOKe438Bm`7#_}7uq>_Hl>i4A)l3+|8xZ-n4%rE3gYj+-{o)Cd3r
zQrngs2x#JxfGGVm9Pr}fLqnbpV?-h#(V&29pL#4_s|Xc`zVSUB_wJwwkN!6HhREHZ
z@sfu^0c?xkZK*mmIT^Z_wRr~k%E^{vwPx3aI-PI`*xK$@;CmI5*jz0;O9)<?)H&?Q
zCwiTAW9~i8yCGfI6*8SX$zczhOf?#yFGiE8^lKfz)3@mTBKS;DfHKINS#&vm*b6n<
z1A6=+xq||k^~Rdg`{nyk{lMpf79U@+S=f|SBq<fI9EdVa+;JPbml_F^XjB+#M0@q7
zpEc*DLsQ3>>USPTpofdKGO2^#CUu@}RU99?P-V{Db}ELAvaVLWbeaLKS|oxS5@;s4
zqzu$O-o>M%BT@v)-@&I~pR@G3pBN#rkSmgSoICv+x!bt20YsDe*L0;ng+9_C=%ndR
z7b-EEPLL`+vbElX8P^0~Rg3Oa+wh?hSsYSOqP_U1hW)n?+}rd0@8xNo`*qBoS0|V{
z?oli5&|%MMjP?xpYon2rf`Je>BefUJv2oo%!;}ARr=mcU7XPvuk!la{>n^lZ%R3yL
z&})5lAh&BbE6bC_&_kXn1qST?C!wQ!WfNMn?n2iEKCx$SJ0Rk0saGn`sA=h0v`5dv
z&g(vc*B;?w+oIBuiT=9M{S5xCF^m*CEE>k>dS@YVg>R2MVJj)t*{N!<Wa1F9a7`%|
zj-}*uU?rv8%W%AscLR_tW4DHHv=)8qe!Mk`Gh+p<O+xRw4J~dWyW?nIDGGEUpgS~$
zlnCBdh)VfJ5+kEA==GP%I94jADzrHcQ;+hsea=b8&)J^@r<`Oh9Bn7hMarFJ-^H+I
zYqDv`fhzSf<fPfKczDC~$n#<X$%TCLdy67CwO)n{8!Ao7I;0WH$0*IW?ZVgW&k4l^
z$WTkfjHC8O(T9+d1%8x=ba&*a+DvUF6@?V!<SNFEKPAq&8Vc$o#KkKsSZPxk8jv2)
zg5X36X=n!Xi4eFshmu$%(kB4+E6jd21_%y}WVKonEo;8S@i?|mw;z_@0kUyEPH19Y
z4-5_}xdI*_cDj~m4K~Cu-I&@g-atB^BoH4;z*E`WBa`N!E)WM>l9%Q>V4g_ublqDh
zWy(fI)=jCPsaZVIeY+{+2|*>%N|#LIPQ-URWO%Q#7=l4J(Z4^}9xvvI{G1f#pCIR-
z9C6zi8KHUfC^s~8fs`)melq<rdxrgvYyBNAYrdlZ6@5H%x1GM%=fHK29bf>iwA^R^
zl_K4}LM5T1=B6_JK~gO)b_keaUr^iEzt-daRF)zBv@#=`<E2J`UY=(WJZqk>kSm!n
ztK+5B+?7*n3<w)PHo?|gar1fJ*U2$+aV@gXQmjWAuQY)<Ie%nbekL6yJ7;%%k-(*`
z^(4&xhVMplD2Yd+p46E)ryj*9oa3*a9&PYsvUV=Xb~{VUM^*dE1GeSSyL8vr7fY|w
zmd`|@U2cN3Flp(Wil_?#D_{q=2E5s1k2q!3d_<1qRRs|gwt;sPPkHOTqj3%09{23&
zS^@|6Q=@cB8zZZ?L|fKMN=uJ4OEnVR-4~7tK08hs%USd-R<WpO86WZ%xo&pogj;H3
zI*bug`<t-V2lb-~H{Q2ro+}Nk3%#!QS}YCMSNV|JaWo{_)7EaE)}7vxHF4q9>Ury^
zO}i%_!tIH<aI$`BI7`>j_S%Ff3m#dk+tn4WLRGVB@kkpN!#u)y)uVO*H6$`BDyquk
z&Z)4VAfw)XXQH;{f-Wm9@Qq_+ccsq5zREt2W}{Pyo#6v8GL`%E>3PuiQv{vsZ+2{S
zTTm#}u{s3bkO%@qjphQ)48TS(KO8%^D(It(=c*c^CD6ELNMPWH1P6y+dfp7`6bea|
z8*u=}zSV9TOXGpa_WjXhRlrr7ReZor%D~1p+b1C<mE(0C;PpeR(W#)jqes|TqEPr#
z%HLoA|Nj$BdzkfyEw9HNuUIzBJ<X=Zz&vaeI#&cGC8hJ))`#J~_s&BL!&Rim%Z;<D
z1T1grQ<|<;+(?yC9j|}Kxy*bt%&NAC_q+v+5=XrrnSNUhbiEh>QoYRUnlTPs<vl<8
zSdarJ4d6e>YzOHM>eD?g6V(Od9Mzirsm+sJ-(3Jmf^@~);6ZUlLI|EpQ#ze@xCf4L
z*KPGKP4}IG8+^3wAgF4V+E$28nW<YnSG76zVh0Z2r7fRr3_LS4Q+Q#59a4vbY5m!F
zG)?KCB7tkg`~RcttK*{Dx4w^v(v6_fAU&jXcXv0^(%mH@Idn=(!_eI!DT9DRcOwnb
z4e$2c@_6rkp6B%+2mOHK-m}+lt#7R;qsFA<O}S%(a4xmQ-05kpV`;?^B_OA({(Oap
zDdOL{+hDdwl-Fxm&BPme22Rce(N2s^SVH>Jp@`vmLT;K1eHWhdC_@Tq;z8;`Y71H>
zZ1h)di;pbaT~utH%Vhj7SLTYEniBOd{0jQ2T((`H1GELMyLc*&j+AXD!vcwnEz}zY
z^X9v6Vv`faEiz2aP@=N4H4ISSZgS}cuGfl#tJUs~k9F`qabE_HD<)E~{?v?PhlV}j
z*AB&eTFy%y84&d;zNbg5erwBa`^ZW`5zp?``ue)wkR4--EwF~5_^Fr;m)$%U<@n98
zd%Fp4vi?_->7ZJWO4!?qiXSIg4|+|(2lR%cBkA0^^Yx8MSdZ2*{4Yh%wB6<1`IE)z
z91qD+B6(VGj|X41l#0g`_a^c%(b0w9U-&<0GSqLgjpT;1n|&Tq<)Tdj>AOpMPsV!~
z7!dnjv@EIn7nWaDv>wY;96p<Yfxxa)yj$X5cKOjy|GO_?Dy>r#gI{cSs^aj1xrcR4
z-+dt;I+)s~#g2RU`VMV1UxIJB@hKMK{hHu??(z5a)B`WZ$uqy}v8<oTV|wv7e92XJ
z09soBEY&fSKB}Ly+pQ_(<Gloc9{&M$HEnt~ebHwuIf%?mcw&v0muu0guC8^;a^H7{
zc5)d>(>BcXH8YL)ZuV+U&*$t*Kq>J8f^K_S6&xBB24&Zy`(KnZ14?xp6e#r%JoM)X
zWHzgV1+|1d2Af-+BP+ozRoIX=77>G*-~L;WS1@9LS&A$z-K+2eT_2JK_CrQigpUI@
z)!$YJz;8e2J;^(<PjN$GNU0uwUKdKwJClF17QHZF=Q(xEs9fXq3@@o9!-?lk_F_Q<
zhdRof-i_V^!5Fbjza?gMmHd)QP_B2X!mzKa+)U!m`#^hmayyA&qbEE)G!=OUE^q!6
zn)9@j;HCXz1wO={-ri!|nTeg3F3oPbtErn_jH{9}SG!hs%9~(B<>Ph$65D;XM#Jmb
z>y*PuA3`oNUvI0+<e00L6vQ}{8?JY$h}SLFy46gtvnk83jd(LV)&9Mnx$p#V>O<h8
zTwPsx2DrjIRq)2z@AmC4usLP2Np6=BWDp_!RF>tN*pk2d-+pP08r$K^&r&noa`$+4
z0Tg8v!1d);Cuejql{Ww~1ZMA;YnR*M43u!2)pK)@&@7kJI-+2QNA1+h9a*L}F~MtC
z^tIl|9WW4Vwci{#<8VT!P1}vx0WDd>DW!pLo<7m~i|~eJ244W*g<j`-?7}`Le%^@E
zY+#Rz?vfTryFQ`a-KkvWid#Ao{y3Lx!6!#Qrl}fV7P~XIW2tz==*787WL49ECbIh$
z?k^*-9V*;)!NeKO=5ZW>p>Kk-r+)F1ephF^LQX-?Kw`af%!w-3zPMCuWF*vl<yfTk
z&0R(LeR(=V=nRpY*UebNI6;+BcUda|qfi?Jvf~-B%oh}bFqS}Tq8+2&OWr3HciP-c
z6&@X}X7^G2_G27&f70^e%0ld5Vo=}ow1btE)ml)np1S|(mPftARB<VnOcOBwKuSwr
zIW~|9gG9nZ_W*E!PC(@$@QLJwdwmBU;exfkwwzvxTsoKX-B1{Fb%%y%Z(SXtGte+i
zxrQ8WL`exeteT78FN*&F*z0+FSazc<mQkgT`xn01xtq;IQ8)XLpdi|kgw=L)8h9-S
zLgYiZzW;)G1HexkQcq7$(V0(G9<>Pn(H9p$oV56)LM42{N`3be85x-sn);-2TNo05
zOR@#}>Wb7(*afkD+BE;Jl-~8=*RN`fklu`1ylGE*-WWFR_-FXDLqkK*lW2>DL81x^
z-l^9D(|Cm9ro6%YTmz}+01Ob4)v0`IJ($L*frnWx5MV!ig~y<%yD|wo3eP>wy#O|$
z1tb2ovl3c@7yIz)^Ur(O{1Q%*AKNi@d2>zjoUujb_~eX2GFjBZn?IbuG9(wwz;R6{
zoMTNkL0l-iwc`|}4+Y;?PC4A{gWnD&EkKB*lhd5}4Z{ZcGeYOq`_$%9fbgD7WMt&|
z`CFN$SUge(7k|l$kWQE{d??xzI7}||AooWm|HEVPN5CL8^E8}f)o4mWLSE_H`}MG_
zn1>CF{n>F`_I<#tJi{Z^T75u<(f8_0H;W^a>+PjuKKenlh~|#CnAo>ecI$*XxG+G_
zTAZAse6-2f{*4JQ@37-`g9)FWmHgPR<$?2bHG7kWgC>eN?ZoyaL5hs(YBd+JY$8J<
zg>lqJ_`h5!RChSw@lm}HH-0qC{>3-GZI0G1;Z!z^AU^_+ekV6?`_t?R=4&tdi#`I9
zUAmnu&km{!RY1EX@dAsR{GW}*|L|gd8h%|nL2CrJVTGyVwEF#u8Vb4*qwxV7Kfito
z+Qh2Fi*hY=tSOb(7Q=Z=zT2|vhf9KG-=T^0iApM8!=Zz^{NUc4W0x29k}M=%6!4M_
zfjT@oMV}ZAk%-RH*8*`)Y5%1BfBCRZrE~)8GZW@M?DC<y{P&~jR{&E}j8u>*i`ak9
z5jrxWxqqto%tKt?z|&0G9B4Y?8W|uJ6`GR-s;a8A+}tS(1y{;%-jD(k#`pDh3tq6{
z0)-5j$Iqw$OS|V;FC(6$U9HlBikTeu=u5NoHTb`j7NO;9Y(!*a6~@epLz-{@mUH$W
zucO|JfS<F*`sShJqk=!M-6up1mbH|WgaEE2ot1x^=d8wJL`6vG5B?vWk7d?r{2G|>
zdXP=r-0JB@CnpQUV)5xKPSA;X#4_y`T^1wV_V#uhZK?6tuzpk52R{t};-F`NANK7z
zs>GxJ%6a{I-I9fc*etPPvDnO@xYyq~JEVcEspr>llKYx-b3VP{#-5(slvGr4jTLw$
zlne|Ei{W%A(JBQHh>W(WoUH7L4tm(HKkesh=6S@uY3Fx7K3~~*ycyUNHdQ2@iMV-e
zaRnW-!v}r#_8CmqT;eH1b*u-+apfnKp1Du+7R{}Y`qw0`rx&Hoo#Zzjov7Vi=fp!=
zZCK;I*_xUXOeQHVlq6*dQbgYum6Zqhcyea6wFSaabPs4ONwq(^r?ZPhE<6u5uWqP|
zkFLPbHpwZfTIbuayArBPyW3|{wH0RJwjmmy8I_TCE{JW*jV~$z?;y+4gbq$U!&Tl}
zN1ZTq_DrP1C&U*$A67tCR8ZPDUR=zc9c+C-&$LDfqM}qfxsrh{9k<Ul7W(aj>DqpD
zw~a6Ko~*D82qG+*q<T1~cP~oc<Doo(*DbE8%V_4=|5_6-VWyaWeM@dtR-Vt;B08iA
zbseu$N$yr~(=FL~SP8Mu{r+785JZo7AnOBz!Ou?Ad<32&G5X=R8~Y!>Y{l{To?-z6
zX9a<7Q6(~KP(4wi77JnVbU3hVrUuyRFb_cA@qe3b_iZs6P@d{`Tn1#QlL49{Xn#fV
z0!l<kZCCi!R6Rc2e#JY+s8sqozF~?KR*=+uLU%yYDZ(G0f?boODn2YAy8Mynf$^E*
z8?rpa)7wTl3vZkhIMIdKvB0EA<LctC(|Ua(lHM(mAR{u6K`rg)EJPC7b0X6K6P(D@
zjQoS{y!H~T%L7J)x+(S@^9hz$WWhF|_q88F;<(v9?oGJv6x5Z~3vb-~2xhkwyGDsX
zRNZ(*;XbC3dUSRpl^kCizGk8Jpck;Yu9&%I2cp&79wTlBZ(6I`Y7mcP7oD=W+;=L6
zr*VW?4X?-he@aPts)woP7E@N05)^GN)8X2L{eeg8l4c|B^^~%OF2%-yk9xD_+QE8j
zKS@jcY~$VPs?0h0o9~2x>){g$;O%_YB;knuzduAf+~5-T6(f2FwiG!it{EUW@X}37
zODm3Nu=057@9z&7JyT=^01-^};+FPz<0DGhBpUo_m4d3OSUP(8Z6G~xJo)3Xu`Sv~
zYe5v13G!=f^HE-l`sa?n&w+Y^f5U*XB+xdUzhJ+V4Y=JoILJwYkU!(pF2(Jde9=N^
zqtC*Yy2FI3-rrP-&Benrqm!K*KTEJMH})EsUsWeh&Z_dOgB9$3LRb&9q#p?fK&x}B
zTRpPh3xXe0F7{56`Ccu`eTXqeQtk<*Y!R3kQgKxXz{ckRWyo-8U2iL!U9mXLKd&!(
zYeWy$$7Q9<bn({)$>D<IjrASBh6l|@Mbi}$L=b27X@GR4#Ny@6)Nz+t>@pbN_fDpI
zRkO3JidnHn4=Dt|upk}KZfeW<*|dQKV=_ZL>0^0P-3*ZCmGO!Shzr`7m+m?FoY=nR
zz`!vyIyxt~5AU2@NiisB190dG=jR{fDCEK^{Kx0ww?9l+K|LA;G3~2=rRL|))t#QU
z*%u{--CmtY!$$&*&Q3l8Xtl3Qx1qYFLMOwN@Tc6!tW2~gnyLLVN5x}@jrJ6vI?l2A
zsVFI7z{wrK!KX-gOS%t`CZ7PlX`~d3#NX^rqWV(z3vB<>4d<fl{(1I8(~Bc}WU61$
zXy$dKFK8d(r*hK=W#x8vf#2xa*j$91kB>|qWm*-=PMjQ_nH*(wTN9|%r<Jkqd{foz
z+ak13Os(P9KUa~gsxJEOVbtEX>X$yknB5d(MR(>bJJEQubhniw58mBnM2OxH;h*Xv
z7r@0I#lD`)RL)`$xjz2*>Pw?oWzn_qQI7TV7AKZxc1ykUY=#$}%}EoR_k89E$ro$q
z`}ni6a&o4zCdG_S6VWeTynsXlzTuKZe4hWQ2l{hNXk<Z(0F+kWs2FEE0hsHjc`H$p
z#d10tCo2XgWbiR#7)CGYB(52@c}?TF(^JRjddo2?E32I<#-fuRhO<`B6E&CqD5Bs$
zRP;0?B_trHYyHtRjbjV)ANk}G5QInF03%>xa&pN}!V`)eLL-)s<|*ZptL;>3Q=I2H
za56B}pR8d~n%(p5l?+%eH?&iV4kB0x`#rVvn<AVH<`=V#BE#|vzB{YnGIl2v2^gX^
zym+u!Oh-i+Xs_A})+4@7og>L;e8j2xM(7h1!*puGTo9+uwHDHhgrr>ScPFo=q9=?8
z4od>1NTA@Es<^s7UJ6OMlwgf9#JfID7VOtR8hm@U!~II69SSHG1f8K;$n8qN447WF
zm!!Q~qQO0QRYNK6{7!HwI>_n9+=`Bds^j{p0LB~q;YT(b%$e&{T1(M&^*sG`EA$Oc
zI@s!J<Hb%{H}iTEhbBw6d_!5BDGC`pg`=DK{i>=)NGV#UG;3%mC>kflrKOrj6D1jE
zE`D-yg!xBp`aBo31e<w+SUeI`uV8U4Bn6OB5mtn!%HEzt+NEUcn<KUo{c!_?QY$b=
z+_X5Eq-9KGRAjPv%9v`+#a=TlA?T+&IljVWX5`3lvx|u#tHSKY^K-XDt5(NAAM%S4
zY+%HB+GNJ|-*q+r><Sd%bV4|v^Ob7Q1Dp^z>*#~BkkC6TC#|L;Mi5A?OAOpALe7E9
zIdS}M>nC*zXb5P?a-LH9HQG0A0I}vF+yL##vl}PrD0(+*U7@U>aYB|+PI?z+)(`YL
zlrFfkF=?FklQWz>M{8Xf35IEs(Ia>0W@6EWX2pXOttVDa(#M#;m4tG^pQHb_&5X7V
zs|9Uc&D{3!H7jcxsMh0{yuNR-moZJA&VT2l<+!nR_R!5e<f-o=|M1d9w4fVxUEQ3A
zswRtWIa6*TeGNceryn+1C8&3`@)bVo62fDK%7y^2EafY`N>Xr;PZ=)WOECnDjUrYR
zyA5a<B;))XJ&^?S4Ui5HJ-Xn|pnA7Irzum7ByVRRzNMwFUzUnjl9XYSuN+;{*r-zX
zf*7l76*_CM-JFH4TL`J>H`LL|-`T#syBYD`x1ZrRR6Vov-;*@8w$2_t=iu>vi;*w)
zQG)v1CKstDS?T^ralmHdMx`dG8m}w|{XG2JsFLiX01chydn2dm{k`L6(L``<>iAQh
zqo?nFX}<q?=YD^&obit1Dfz6Rr}T3TxPAb#Y#Oo|&6BQu3nMo}TKl;j8j#BxG&#qM
z00xp31kC`*ZN2T>{Ej{yxyFk&ZF5}Csl(P2bpFfbK*-3})|M<g`|7bpRI2<#^?Jzq
zX7|D5wES5i<;}Lwm?xbjh}hA&_rqWA+?z&hOsusk=l-`6J8}@~^8Ay!&7S~HsX4u_
z(`jMBIaOlT%Pa{u4C{NU`pW5V(<18XXSY_L;^Jg<8ktp*2m%AkpiViV#J$xfMn>Ga
z`Vq{`z5SBaT#mTxY?U-IhgnW1J2S_|)zy_W8vu->#>-<!*ViNV{4VU7?@Uht1Cc@s
ztGKpC0>Sj<B~5Pnf%{Z>?)ap+s_z#M*X9Gs+2pIOMhic~J86Ew#bv7Zz1I*YtMZb9
zyi;1!!%Af>x%bEK9LygSbi77#O<(Y4-ah^+v#jOFnA~L|L5mWF?p>(N`1<u&BT{nx
z@2&k`uERfEwyijr-S|AA%P`<%6TM=osj3TGd5#Ct5<31S+XcwH<bYiVYMVbvG;Ff^
zx;j{uNxxd^z5VUw5i}ydhf)!Wi;qt*DeThJ9tFtK5CnU`>N9|fG!C+)ITM?7-?eF2
zz%1LCI@z#z{q#d5#Xee}&#&*J9QjexRot@IIPbT0D*0icx&qOLfvo6QPodvmc_-`F
zQQJX?^nG=)fY4NRI5G9;k$pD{?Tqs1%)pkDVM@MpyLyL*Sly(?iX<0bik-6d1V^rB
zsbe2cA3)Cy)p^(+D?~FGEwbk3XIz-c@7tZJhyq(bw!gc&zEZ_U5%l%(klWMHeead^
zF{7~<4>;jIb{zQ4UQCuiqVjHN+?Rb$d{=z4n2q3`;o`>F#L+Xj>U6l2`PU8iPBeV@
zdBRORnSJsL+Vvk#yT;E*p_=8Nkyj6{0ZKr9#Qv-KYeAA@5(7NKwgAkjF`eZtD`jP3
z2Wd?DsF|6WMF@ngDvwNf-oX08f^LQUA&gW7p$fG6a%!96=<P8Ib5A7qgaxS`VVFJZ
z_g_Wi%pfEH#*9KI<}2c`Yf=#U5Pxo0*r+_pL}jOT1!7D1w4;y7*<1j|gy~M#S{62#
zijo$;Zkw1g7T<&k1JitS;~cClU3ZeQ|Ih2R;b(sr)~GDPsoUi;y|B3lKmtzQi$2=u
z5?kk(vEf=c|Jc~`>ka+=_3|pb*hyjJhs*15N7SViCI{U70(4exA~6>lWCi=rJ>`A1
ze~j8S(9068rj~Y)@y%O)R)S7VPM$Z+Rx;t6qrd)M*|KG_Mo9fzC7DY8Io?Zg*oT>U
z!T)s_`7gKQc@(_Z1GPb&*c|n$1nk^X^AGgwnJ}~7^Yiuv3&kvfh3B?_hu`u3c<=y^
zEdo`b>FRqLEdzr*rR{uU>`MXy{hDWl`yxXOffRtZBiP&eg{I*K-)>~BhqL5~R2ug8
zzvei1C%w~3!pHxD_}lyb&tEd@A-y%qjaXW7K*hkH0B~|m@-7@|1sdyD0QL$+&2P-j
z6!aGW;tYx}L_Y)vnw6P$2cxMeD+>c!t$YZC4tqBW=x*4Iy5Lg*z2wn77^RVb_R_%N
z#+PE~h4WuNpaCmFLI>dUy_wg9!Qm{w^LPKrsq*ffCY<qSWpDGzP0_{oxnIRfV@)kA
zN|L8i99IEPl)tiUwC}`8661FU9Bl0ILEZMeus@Ect4w^&qQ9JCIv252;1PhhUNSqt
z{bdjW0GcR%giG@gx!js56;V${SGK9x+%btG9DGP4>d4}v2!{fv_WPo`db!AHQ#5tQ
zkhZ{PGyL=!87GBToYC#LoPL=QLqivpL<~ekC4%AgJ{3E<8ser99-Y}QgxF%Xu4wDK
zhy8ahN^eZLW_Ab$I6Dn{%am8f7r)7!*Sj4bosn6~0UIyU3+EX~iri{C?#v(zG*lsF
zfjqi8w3fqc)$T6Xhi<veUD(L0$F5Jrae28#&!+SY@}W=qdt=&a;=AH;)S6lw+>6dx
z4?6-kXGOB5k;Z-6<Bl6z4>=Bs4e#E+v|nuDEp91ETP;v{W$gl=@*Zw`Pj{F_+KaP=
zpIN&Mm(xT#zzFn@ECAMtP5k0|Ufnrh{7-D&LuY-W^RXtQd6sZ|qcVPB5(4GB{b4&k
zKM%bq&MHRpmQ7YDOiwq4l+_jc-2NZhDAI3f@Av|pT$LFpgIhaUn3$qR$HoS1I4&}=
z3fb7$z5%H;#id`b-VIxmMT>c276$G%Dd5n@VqszN?6~2+%knu6t3KFDa(pcIy%5A~
zt_{R%|0iTiO4kEp0+*OfuqNpCF$njyE4Q{tPI3N0YxoU<R`Hl=K~L$1T5Qb-CRf35
zhios779uSizaZn-%wkVhn^MF1>E7t*XhM+p%m=EZ1MMdRa1sRCT_ReoZ-G@TP5pE;
z?lDiI<k_s;lCbe)d^H1qEa;<KRalP?K}@7XP-nE@Es-!No!>Igl<bb9+34B^LN8V#
z-!^x2hBB)wusU(t=D#rPh<4$YF5&W%I2(E9p>V&>ZD%Rl$Ge~1;?d3l8DuI5CO7YW
zFOI~sF!@bv6N8Y_U-plVuj}@8%xizVbROfQL_9-bru|IG{z~QVAizZOO`igufWZB9
z#(3X8KE9^Pn@{s&BFja8tO)+^)#-<bkoDDi(MU*Zrz4Q7`l<qu*CJzJXqM;P-Q5+p
zw`YolP6G>T%pmxR*w)d<JM^vRv(`}mhQ`n6z*w;=<LRNPuP+b$@>M5@-EPRM$T2fX
zQnhgaiNi}kxH)E0i}I>G#D?+X|FX{{U`6Uvan8H0)v=-#A9QUI6WSQVg$4a_74^JT
zDsZC6G>=JgU>SX|gz8<8^bQxk2Arg%1uqG2aT~0Sf2e0<B)Vs{?N4dQcI2T_9}zw6
zyD}1JIggp=k;oH&yvH(sszZ)_(-FytY#e_910IRzN0Wu*t0E!D3i3lhf)Y^#-FUbR
zHfB{|5sBXT114}#n6aZuDQ%Q?Rm|Lx@`g(wY;9~h+zch`ZFO;JI2>Q!f|6cApS873
z0RRaQEAq1^tE(v4uu*=6zREZlT>T<czc;O=QXW-6N}r-420zd`{XRE?LBXvmvA=%D
znAko#(R&4xghU)Il0i*f{V$LJ|02QJ^Opy${jJKI(VqWv@ZLKie?+#)sq@0=P+E#v
zA<s$j&%mBspV6_`3EZM-w#y=)u|%KXY{z$UZu)?e3d@*}=~L;qw%Zh81CTX|m%n2V
zj0!@B%+CBf85YL-ihu8g@a?}*O!Y@!loz`-t3^dukbvQci1X8xY3GI}U%GA;(>DYw
zSYPm44xhWs$P)Fk=A=@LNQzW6l5E!OT41TkNZrk=upivI3#uHo-{VY8>7x@526>fl
zh<%vuoy4X*ZQ#!pSR%YR{wP+ug{L>FzC?VLdE!*!O}08>;`Za?U8C<!&~;c?7|029
zrg00&Gcz?Uasxc9<uW&#vo!EgnlhMYe-UE-qp|#FBVY#)C#t^;kkyUC-UNUq_APL9
zCB(($ppu2JM3UKmcKl`@9n1*sOe^FVTg+J)e`Ecrxn2jdf&ZIKrt=&5GM!dJY!E`Q
zGHFYR-CCrLO=p&Q;ZRN&L<C}2%JP&E;ONiHEx?g=L&Hl~KL>8FGriervj%M4;Y|Km
zpc@C=10!GhCXvtVn$C9ZbEXV#-r+H20;Zu}mp!d^D|hHR%U*MH2G6vWiDZa=7*YOk
zj<_~N&(=2Hs=tddi?YM~;!!(yor;`X;|>!S*ZZD0KL-cq3@%3zZCG+}$MLt#pRxdk
zBmV*@gFcUbo%@CUU{N50$o+x4zv}kb;}-6=57;;}3+&NTfJQfE#QShx69DrHnj$G^
zXy&c`jbKNnRltO84X!5U_L~$zj+V{qTvnQGI^t&6tfJelba&E0luxgTkQwIT45+JP
zQ`S|@h1S47QMCw(oZYcb?^0C9d9Z|A$tJtTmHgidPk;a-s%wA=Nq2jxDN7z%X3zRn
z-1Dcge*~<VWw$!gh0$9z=C(U7+JD9Ug}r!Vim8><lrWr>kx%KIq{7>h!C1jWQ8OR{
zre-2XXemek@w)i7*rY%iTo%M}cvF&k*>(Za?Ee!Vowb!g{g`DaL9b~}j|I>Ik<~IE
zlQ(Nco<Dy}<+%;Wj3vx#!tg*}ataDGkWtWb0z;hCUeGo;ZHP@MczcIHF%X$y2MdzY
zAHqkM+I{l@@3CXGPT8xLJ4i{1`k2$>xdDxrXN}=tdiAswEHX81?Kyh=i!q~JwX?HJ
zS=kab{)`U)2hWPTp^klUg8!{*YRh+n>bg25%V9@4CN5EP>q;vi1lBKaG;P;vt0&VI
z7xS$;Qw{qEIS^q+jTb)(;XZEXW|=&ii`|k2o?kr;Cvxhu-+8D1*x((&i%rwm756&j
zrh})k;3VB8LjUHH`WMyHSxHSw-e<BI1&bI@QR|<4F){@#C5@q}PA&TfwJgXk5Xr!G
z-dK_pmIilQoLv<J5X)B+LX?z=wGKuF*c{<?;*M>goc<>$ti_d;>Bc4$s0K$zu^<IP
zaWpgrkknq@e5)7qi&TMX;c&5&F`CLe$F5KDa~vF_Q)=?gPoGH708A!_R<)pVqtD#+
zF#!pQS;E-e!K`b-?5qt0<3)wS)Sc7~D+$rX*TWJ)gxB0P{?ulStwB2_(Bk&ybchTx
z4INn!)rg@216m#3!qSqM5et&qKZeujq^h;VI*F=->G?&O^I>%J@Ag_92`v9Xsrav}
z@{fMhgPOEU!ZVCrlI8tMd}bz$LELt)8TH=>kT*a60g>(!y!K5<WAg-Z1<;|S<HH;z
zg4OQa;t_uBe(PIKr!)0gSryo%JnlVLaSI2alCd*bO#ttqUf0?|!BCo@(;zlWUfy8(
zD~}Q;GqF<|&vw4{galkS2HPA!eoxSvSN?OPlumXiKJq#*S$p*8k?;AYO>%z^?_=@O
zt(QJNUZZzf>(lgEo3J5r)q6$tw7<=eH15;+`3k$q<@@?&ClL{-6D|r0!xKBJ;j{A6
zFMP$%lwbVvsQp_h1!^i#O~u7GgHPFd>8IWV6&2CURvHC*`Qbc&UKAnK`F`yUOq}=k
zkDx;a;@{^&DPV-KqrhCrYisEjS?leIR8jsAjIGv&vMLd_>*AZhHdSdkrZ83Hct9(5
zs$rPyNKBNFmS#Qf&hN;ynd-d#=YN)nh{*Sxnm<$uX5`N5xDR7rP@ON@@eGv`FAe*@
zU_cI*aK_UjttOV76Ya_6@3DV>yMMrm{>k0ayngLWgMnr8Uxl{64tfE8Sl<>uuOkMS
zbi`z1{)OBIK250laKggE&?m>=h{z=VFWV~sQy<l`16M)=OVv6J6Cxqg5Gv(APqe?k
zcq4@q3I^u_%_<qc1S<Ofa^wE?O^gzsT3U3Q3eSNZFjzd{Pb43}>O#c7zukA8->551
zMjkDGHZOq9SQlsWCG({2et}u$UWTEl>zTi?w<jYgOalpz>*y9xnN<fv8oL*T7kuKk
z?Caywaa^6ff0>R*0L<RCzE(y5fZJ|KL4YoihSnNQeUqf1*|}d`MnnX+%z!@`F!z<&
z@d0u=DMv>vK-_3yTH{)@;HKhmcb&FXHzn|?7hI^Kpuj@Jn^du5VP2pjE6eNZ;&MD_
zw>PR=OCy_DQf8~NuLXKUXE=+BUJn6MZwY|dFCaa^2ekm0WR(CxmX-VQ`T(8p=5PjG
z)c=W{3`T!cHBBS@A*#K-{gsF$B4NnzO<?Tr#i7#->;He^m;nYVlH_e0dvet`MY`Tz
zN&#3#rbrn1MG;lwuu&@aWV*re6d~c*#Nf`OMen4N(|?>_34cGofb;~e#N??T<t;#<
zi?dD!Dk@uit4nA&GDXdd7=Y|6tE$om1wDm*7UhOSB<MCd<yaNAwTW&Zz<+#uaggf*
zGzMz^H|L3?M{E59R&}F|j%%m^CK?)e!t+J6zjF`&>8TP0ze6Md4wP1xcVH`dxPLqB
zpBKQV(jn7;1R`}H;eTWL;@<Rho6xeFv4WrTaxu+*%*WbH6UX9mtL2~>jLzKOM!v^;
zjY1`FYHdX(DTz?0F{NUHq#L+*kfWS3=)&U4_T*9(P*}GNmjm4WQ##sWH4VazKDAPY
z@K9j!Nuqc}ikg;|LRA%(#NFkk6cqYW5)IA9HLmRS_iA8IB*hF3^(1LNQ3g{Iu(y;v
z;$BBbhlYkmO54H4%8GTC0R%E#F^!HH{nCl_=i|_cCMx9i4t(i*zNd|gjqTL^l>p~2
zK*nF5egM>%JgnW2cu~QJ@u%{Wiu0%PlNlib>-Xm}nCNeiBcSLClQsJ(?D}~`yp0m@
zvq?9s8v~rHm)BL_D=jS2tW5wOtv7<_bUcxTr++5?yNzP<8DG@HEgjU`o|=1>r>P^8
z<L=fcF-W2bDbcxQfgA59GP%Ftxrv=A!D+jA3m}sn9a%E?9N4WB$*jiDQ~+f19zZ5d
zSyQ%7x5u7deEj$vn{$H1?=stJQ|BT1<Hs-W6$>Yz)-ZPoiQpY7YU)iL7tUn?6%`4L
zMs&KLAN|fmY^_!gEOD{Z(47X`IR#*kTU+Y0BNH7RNHY~!{7q8<I|oN~?=pWIl>D#f
z<5L+@AlnHrAiyl@fKXT!@0-r7r9t~?SZ>>r{hSTQZRUPF7wbQY+gltOIv&nE1R8>H
z1bQ)XaTwrL{h4aAH$$()zZ(GF`J4lG`@JMC^I$nV13@vn9(U8kET}geNpK`7kM7lK
zt7)lAO+>QyAyO_4f4|$0Qh?Z&t8Z5~F3!vhypQs*vb3bGikOBO6#~-OgtToy8%x=l
zkm0OR5~OqPFA*z@#~Oq{FAKh?wBGsIv@>u_mYnxsukB1YTmF=1E$+?WBtGlkpA%Hw
z5C@SP0aZ(lpL=A8AvO>haFp4tVUiV%!`6!bUZkwjjrWyHMWKzmJ9Jlk@6Eq{%m#61
zayh<d5a9SBa&Nc57e&f!j1>BAaA~P&{ba@hVZy?Ys>NXi4jF)&P6WJ8Kd!X<_Pp=x
z5$Z&Fr0JMz3Vwe3W2M`UQv8*m?=@QkTiAz?kP8{nzm70^=mDQdcf}dPb*I6>oB<{h
z5<CM>Wu_{vrx*=J9PRib!^011^pD&EetF(SGv4u`#98nF4)T>vbxW%|bh!TP`*I_n
z-%m|uA-F--<k6Yxnp)Fg6{|y=!haD`PL;gde+b4yvv|y3)=lfYJ!$WN5Vv3UGSTg-
z<>yn+B-Vs2NLm0Ts{|YM>C@EhqyB@udN%@fjmfbp6Hhk#MchQDL=)q#EA!V=ws{xT
z%gXP|ljBw8uCB~#oy_X#3=Ir&OBugcp;#e}hP1k1a!!`7A^xp@k8q;bR8ZTm1yC|a
z_{y8Tf3Q|-^9>aVKo;n*v0RChBpsZjqoKZ<T3$;h7Q6)EBTuRCbj#SVYWVnpEd6fD
z7bp8W-Ov){Kd4EWMUcLT8iRX{zn16Z%mZ!(ZS9n6mv7PJ<A%*HVY)56Za!Oh9U8Gf
z+Bx*=UW&D|^J^lmAKP_1#CN|Q9H{T!*=WSeTN_)>zrL($Kxc3`{VGcMuTl|A5s-Da
zXR$ug;aHoE3Y<J^Euk#`0s}fRDVBHFWS3GNe34n7!1~twv&SY1gQpQ$2r(P05JN+c
zrkhOIC|s$2YDE9VFkM|;tEzg(Llq+xO;Dov%k#xAso{jGTHn@18JE~IKy%iboS*#^
zCjhtvlqXlqVZP%5S3Z?ZW1}#yhc?^T#DpG9{(3u-Q-I?gFabn*sjH&_;nD*r$0?9j
zEnVEHQF5;YFF@b`A<>_4CT#LNYgJ|XlkbK0_KFv|opR+H$jOaxnK2q?2pIr)5i}>G
z{l%p3G9nyBq>!FoD+{ILZn^$pU;jm(Y{0Be)%;Fvj+Givk>~$_7we>+d@*GHIz!Mu
z6AGPw5=H(L=wh5Hl$Dh~;{~4-m6bKnTQ|JF3%$I)rfHZe7vE^6^RJlV`4Al394W4M
zPx|Zi*CT;LKd)9+8C{#m$<N<xuyAr>l~3bHTz6l~f8SWKw^jL~_u5I*7WeO`!Jl&g
zsxVv?OBEZVFJWQ^6VP|5ymW(;)P9pdL}zPjJ4INrcYrsDaQyg00<Hc25!*^Z$oT7+
zIEq766VJs@xuH^-Qfqkr*_tgIh385~pWVIl4MAkCiy5X!kvYw)s%mc4n`FDaJEVuB
z@K1N0V?NfU=ZqDo^0vtEo!p}&A3UcF#(h-7{qBA{tNj!1iG6!hNpf!i8T&LA&&N-n
zgsu-C?w>MQH41*jyT}IeAa4;f&c0+!24a+}Bz@zvxSV&kuX>g^mN_8G*iL7H#z5Gn
z6}hYF?Z>j-7xGBo8&0*oGN}}XrRKSZ`pmEKa28|v>EY3k;-V6~!SxS}^*>dsg`u#K
zsc1q*jX4+Y$Xy@<WU|m8+P<SLS)8QZw1M|9%)sY}NL^u+FpAiyFT<VDC|iQ_?s|Jl
zy*U(Ff0zGiot|!?Ci6gT>ft17X-ayB##qWy6D$PC7dIy>aN}5c-3Zn0u8w_rhl&z@
zma#}c;tCyH2m;v=k;1`Iyc3d>t7Sn+E8EQ00G27oF2Z1+HxD|<BIVNGbs|!et}b3I
zJ$xF`mXPdk+!$atU20dHAI1F34zz&JRHR9L7$gFtB{SU4)t(fPo8UTwAU$m8Aic+a
zZkJR*Crl^+=O4gDfRTt$Chgs^W{28{JFqa_Gtg<~8$MTf%Kl7^MG1+Wv8(8z9G3rF
zH7V0UA3%G(<y&qZ_a?JToh;Qh`B?dLtEJIUr|v=+4)rLovx=6FZ+^Os0VNGsu67D!
z7}C&_F78B*v*GCayx`yDU~jAM+bJP;Kn)|1g%yu^lkFJ~vOa#sRlv}kb~_}Di!F!;
z*KZ)kBxqDAfRM|YTy!xDgZZh$M+w}1@|{o>q%y2;CtW!;T*`0l5Z&^+I&AeGs;nf{
zsdovMDJ?B+fdKIJyGW9(oNGEd$nxR7+r{VkPgOv|L8?OlnErjjI@i=zC^yM=Rv`CG
zJPieZ)6@-R)?GHE1L`S89zp?sUf;dZXLPHBw>#|71ngv_G!by6M(c0zKii%qioOi&
z=>7V>M=EY<Mm}GY@ekP+GnT8G5+hlytuL5d$8|Jpu%?gmD!q1zw&dt9d5jjCU3c1x
z8XKo=m5%*pTf9MR&EW(K$mg$fW?M+@T*_AI00FRknp?AZ$w(rexJ)o(MYLTI_o}wx
zW=lPp<>JmR>u_!$gWXx<5MC?=9AbnR9Ns<p6yB!Zf>J|WUCk5Kl2j*`+Lj;6g@dAO
z_WrUIu{Z!(DMCs{7NE!QEGa1|CbD98WyJ{h#f#nwL{25AeZa}2Zn@f}JqhnE(%^(d
z(#;Fa&qUlMc)3$tP!P;Otl4yD8)o)peI3`twx$qm^}L_%QOClfw7B@NbyI|LA0$wV
z5>Ga+`bf9u23RA=XP1V3keraPW4sr&C}wGCxfdr8cjI34<V}^@_D;3Zq^^mv@$}2;
zmXE6KlGm9fuqS`PW6Q}NO?h)~YaFcf&|v&>jz^fn<)FnRm)Z}!oQY{zrUBb-Z*R9P
z;-q|Nj7#BmrfLyS69eoq$huhDo(@wbT|plb={4ytOnH`;I_%*GlNd}cEM7DhIpW6V
z?<K^NB&>c%HF7{2UneO@Ct@OqEMU5eBa>psc7%hwBgGW7Wz{wzkBln@)xPV5b+VKy
z^z3icbX;Y=JQ?)&i8k=~Y{_7yCBI6CT3=ru#?f&U3p)-^vru*T@x_&vV^k1<z;H=e
zwSbExT|ztvwkoa~dEr)+HP2y0^yKnMk<tBGPhYmcyfsg|W!3|A_{(_l^C*tlbHm*V
z%caNrHhc1bcOqb<#OlyzZK<fN-tUuq#MZHKq*L$6gZj|X4{(L*V#@(sJ5X9w3l)^j
z&8a+*2`erdzX<|uY8_dnaW8U34lS160$_h_drG!SmEreYE~?sLwgeMf=*<Ug%!_ey
zxbf_on!t)IN+`5~bC8Q1a0aC3go6h!Z0G7rPGVx-=v2N5(8(IN9Z)VUiXz}tu<aA@
z_z~ljO|cEw@FaM#-O;L>bPyOEeu|bj^mko6V;Ds40E7DWD_1!=IW_A-UbnqZfNJ5G
zzZbXRFc1*@K%vkaKzZ_026T}T!9<yV@tsclWZe0g@W%Q6K~lm3kHoKX?d4RQF9QSF
zfEhk+bKw^{mpKk8^hg-?bmv<`vtsgdILR4Wh69uE@bIGcb_4B)n1!B!fdQyUz~0-W
z-djK%Xy8%{T&4WV%1Uq&ECr0u#L*K8C-27$wX+DI24|2rCpa#=6($}Am%K$fqtxub
zmX_W3gwCC%2Dr`Vcz+4eH!)P85vYxX>ozVf_|zbMF=&b5nhsyyyZMG$D_WbUzbxfj
zo(J}>+W9##r>)%+%omse-@kKoTdl2h^C!hV9Y;hq#0rRtQt-OomX{zHD=3J58<5Ka
z!}6*&=_hk5_L3T6<mb1XMkMq+L@j&Kp%Hl_H(^O<>C!;VDYC>UhXNl=_^8T_31$B0
zMc^cUq>TexWMs5BXJ?;CRz-6aS`MZnog_{MX*(%DJ$C1|o|LP{vox~q^2BGD%aX$~
z^9m<$Z38@ysl4utx~`{oLxz3T4l5#f7Ir3JK`k8Eyu-hCYXz)`2!Y%WXKIoG=6%L1
z*Rv6oVC|Q`9waCA;?o|9OHK!C*ndGG+#p*3QiBTR6q<*x0rLcua_}*b|0M>j{*W%8
zX&Wxnpf>|3>(lyr4o*$B%%EP#+9j|&!pXvdx<zuX=fLb`gfY3>E#MrpmkP)QNazrQ
z2aLd8B|+}C{ibYz9wYAdm1FME!PKJ5`YHAp$}U<vg;dT!WcNLyr1_B9PrdS|?j0AW
zN(6X)fDFJP5=oAPJznH18Dwfo@zh4Cv9DXmoz$Tl2UEB^lYcl;ijxoZk3RwkB80@m
zJhEO-W-^`{$27d3m|$Owi+u{mN%%;c2{)Ou`VF1`>vG{y%G%mmNUoNU3tBaIb8D+!
znR0kP{ywV#^b3_G78mqsUHfeEb+uN>gSr0P<Yu|;4%<|2Nu%=YNqS&Ud|aF-s0rlM
zda4(M@Jktc*Lg<m0A$Od5c7J0p6fp-8^Ql;qHs7v{BoTRlsKIf5BH=KGA4(FUjDYw
zt+0aJTu}z%aC$uLJe(5BRe@gJZwILm2xR;q39#nb_o}68d5weLk@%j*rZp;S#yKv~
zkg+i)=JcJr#cQY3Wa(JRwizQvNoRkM2CEq?9z^02X5_6Z7mrExIJ#~se4B|j$Ui8T
zZFzPvD@+nr(1|IN>g8N9-xm&7zv|Jb+5GA<<!b^UA5V0@zf^FlOoV=*m8IeE#k)!i
zELyqMhHg~VbL#J9M`KVbw1ttYQmMWbNli5ol}1k_oKcWZ41(-`zEu2(JU4u9PItRL
zB#<Vj>%e(cJu%pK%m?AB87WH#7`FVcTH;u=@id`J$;0*LRy0G|qb9sXO^`2TrPk|C
z0tn51Z#+PhiiYB`CIvqN;S3?eykfl}i(@mI8_#1?Mf}VQH%7+NmQ0e<+*xrlZ*pb~
zo<ym*-8Mh70`;~CsA~|%<A2S&+>ReGMaye$CFiNLv}SV8$Thc6zMMAQadRoYZKrx|
zzO7f?C!s8<in3vMSE<Q@rEZPy80Wb+%@TK*b^ig#^o;K6&cI;bXxRo5Z1@Gawzm`~
z9wiTamCL_6$tZ8qqxb*uS(wMWzK4B)D~rpK4M6!c`Aa>|XE>*M>{$CZmA)sioxR&!
zFBZ8zt1v7aR=79}d`53xV+|^7S^QD?Cb#X$$!l8jF4}_8u!{EP3@EhqA(By>HIhNy
zv<h7L3Yqyz)yU|D@97bi*J0aTbMw?1MfAJ`8JPx;3yq}qM7-y`*RBsXeOQJM8NYKu
zXr`~*YeS0kDI)&G)YPZf-6V@<gIzV2v=<pkNmA@}k$dQSGy`01Pnv|7^m!tame{~$
z@RBNTY5XtP*i`*Kd(Ji-elVIC(OuY0#3Lq_ixy~38dZ@zy1|m+(52SZwkr?~8Ts~o
zh@@t>ra&NsBj!TPIkB&N-TB+*n^sewH3Ih^jMIO(J-9_JdiLM(s^Le6Ar;;n8W!iw
z)e|ju%=l!817L$7{mEN}^H<^F=oIw2HpN9nYY1VKrx&(2+vCN~5;LE<nzjp4_L}Wb
z)ipUi?jjcaZpiDshz7InfaG_xhAGDWXhmiJLL90*n&Hh6&9T^A&(q_<!(x&M1A2X_
z^fbPaF9LdQ-?$D(q~H3`^+sk%8s+xIvh!uyFu0CuB`H3+;kfWzK#Nq&Rrbk1mzAS_
z_=DcCWmuWvp`1qG)cv6P;;`oPr93unVo%4j15#^K@|3`?tJxVb+emdaKPL?J?|Zq7
zk|P(%yNAd|n1mUnN|#5j+`a?8J9-aOP>qs}Yu=BaL;P_H7pp^8S^MMJsbts}43?x^
zuf$yrx_!s>3^pe9XCaiP=&pYKeG0?O$Lp!njw_GaUm5K2;PaD3#^Dba6h*L%8!U-!
zAVjNvzPZDh)sNmaysedH^BN#T4hL%_W!R$0kGr(L4;K&+nkYO$ed<Ks@tAz9zlhEG
z?MNLpAgl>YgRVay*B>67@d_Vz^}m7@?G=yrPDPE`-)8vC44K`IOXCWfu%>j2T)j3F
z-gG<2O|1!1xvlR0sTXojN|CUr$PYf&+j(2A+9AD0&8X&R3CJV<B^Nq-Hr#<k*)}+w
zgW`>lKin30d~ufu*S$7BI<bWRFkHz#0r8@;F0zu`ajDtrUb0a?%TK>ujPJ00A?XW~
zR`=V3_Kpu^6*td2^D*+y`MExoOcT9Bo3T~+9IAJtt1~-c{~-#Umq90?ck&c`)n1|D
zOETb_>N5i6&sk5qoVBZQ{l<R*D*Opl0R)|TH^4;ic+0n6toON}?}gb+(7o5U^(%l5
z)@gQKpK%s@f$<g9@3sz|M;yP{gNk$eRdwg`W@C4QB1HQz32oHZlJ4IJQb@rw0unD5
zU~|)bRB#aA6T%1mXK<S%$*?s0d-*zk3x)b)9<o>n#7guMWWZcIr`@DE-F&uC!ivX+
z4A-5~3Cr!5G5~Vl*ns74CUn&?*XMJG&mFnLA|qYFEzLPe*75U8gHNrH$mMW%!GP-Q
z6cFP&&nF+^+qsr7?GK)<sR(nt@xMJ{Y)7B998Tx%TWTq%w%uE7OXFV|r)A;*8XDF~
zu6#Kl0|T2YlgBmnP*y?JYDeqd?#uYZReNjvVF2R+SwBt0Kc_nYzzwh#`P8VD*|wFK
zU_DC7^RHPkU{^tC_xw~So!*v*12q~C-22?s@IA5i7yO3NV<jsf1TdIVGB>9`Y%z!d
z<zscpl>|m^brNj4so|op6XO#3{Jzeer?4k)_>&{}P~DTLERxM~BG+z143Xx2XGX^r
zouC{MA6Zf;B30>SxUL~~F$2$HVJFMGAY`vna+&A+-jUb{I}&0(v0Sd)`&W1FZQ;+#
zu#gh&^8Gb20$ho>C0@zru{cjD4<j(ehVmg$h()IjzzuIeiXk-!T5r7CHEWD=S!vb^
z5Y(DON%fyZ9e?sV5Pc9&!Yo`C){FugZIjI<X^VP(#V1*<+3^ce$tT<~PjmVda%T*E
z-iv7!i+ZejyyQJZw<>cM(3;u~^dzjYDTnDDEe0lVx%2eO$rNrKf$WkHW^a9$UjkMs
zwxg30wK#vFKl01<dR8^#mBo6H$b&DJ4YTrsbBGVfy`FbW(ngdrfeNZeq6l11!w_Ft
z_zlro6%R6<(>dU3DqByM!ql}QILnvd`n?aD`aK-T(QE+WBZ+x4idIB$#gFw#UHosr
zY;k5KPJDSm>459FQfB?VgopfH%Y&?f@<%(<y=i!z9<zg{3nWVPZ`-?v1_eC<Jmt~F
zprZI>YfP5+!1ZPRCI>9m;Iv%*04o=lhQ~PhF2BOU@agcO`?XByvc|HA>D>ZnF@j>Q
z>Z<xxT5`(>FC}+Wft*7AP5Y^;x@fd!sZ(A)RaFrH)hOH8e0bSknzGh3vUIw0u-}lW
z_MT@d;w@fZ7?)G;P|bD}FWwk%G^QDlD@`3w9qWC_T)G?fqC9oj=VW2gLE1lP^hH{z
zKhM&y8Nb?SrA{reFuA)U^qAaL)cY6`^aKV;biT&r5;*;4rPBtz;y)RnRyc~P<@a*o
zYx{AF;pIwkSQv^qRi-OdVSD?|?`E!De5Z}hkbDK@f>AT;+0~vW4ou*((~6x0Ysm|T
z%kM_ly~MG}jUsCX*gk2wF#F`R%>E%&MutwmW?{IHN>1~LN*9N_IU~t-9@!)8^748t
zf!(k$&$6L$Bm9SelS@IfAMyMpiJGHVw65RvD${5qrJ;jt{O)PdS2K`MYrKHxHbUEn
zSk3D+)2<;y<tb2u0ynk-&iMDp>iCwe9|aGr)%yOL&%=Dkr-bjkMGG4yG*Ka)u$MT}
z^qIGs$D4<OQ<zDt;j7hD-#*OQXLAzY3UF(M=8JyEpL|IG=aNb|rWNu1h1k~N3o0K!
zN_m5&lXn83Ad+-vLlb+0FV5|!UAydU_eXU*1zC3#;(0vcg<gzgxvMl@t6VQzd>#>b
ze8*7hAs}-3(&)<FE2l7}yhgLJvGLMM`_r_>F78xQL3C<jzMlz~7PC_A&1;?O_(RB{
zB5ywth?O-Yq!N)e7M<^gl|3P$MT6*@=WLgEQNa(yjx0R92OXMV|JOQyR~Ujx8{_?V
zsmvJ)k@3D;1>{n4spR*Yecg~}lOI=#t++mu!-!H?IjSFnarze@n+3+y#&^QWU|m5E
z-xk{=qq-7=WQvjMj@5q%sm62zfh}gp6Yd!%X$b6I(z<V!K;EjUJwNPw4SWAYdwhHx
zQa<K%=W$!bTO6rxrJ*rdQ^cpJpGIl;K6E&m(6Ph5CHYA-whKR&^!LqV7&LJP;^XOw
z1{Q6mVX9C|j2BqX58UMH@;Lb{ym<O)uuP9zxo!+FjP||2d}Ay;pxk^@Zf2GKcZyIu
z!cx6sm(*e0)UkCIzN;%eX*WM>b~Y1D2nOT7c(*$GQw#CN0SSmVE<qawjPyJ0`&MD0
z?gzJ0W%kg=2X{9Z-)8F?n&j8#xfgG{S0#YzkgywF@?2GKmf}}n_AjqHm8eLs1#CS;
z2uh#V0|V|AAK>r}4|if5<;BP3^*%~o7zF?g)oo+$TtSp8uPQ}&kz<E90Lu%~dS2$H
zJGlBrSs6?BlxMu8A~sb?(<fYHt*>bNDg}g_$z~*^`pnV9Jvk6E^FAlHTcYa4j7?Kt
z7APCWMs>phU8=DZ+Sf0w)Y5jT8-LDiZpHLyxOWG<r6A%vU}<Fr6K2y*N39GlK2p%R
zW4~U<cv#iYFI@s%U)RtXvWhuq>3SrP>;?be+bnXyBB*CqgI%qWG*7gpORcnXq6VyO
z%{0IUF8roSQdnmA$pgFY6zGYEMFeV>V+*H86)MAl@2LK90<W7Bu7t<4A#2pdKrl_N
z&YqYxJ5jPQctr>g9|YUG@v~}0aHT9P%5VOdbLop!WhS-v(clhMqpN5}p(J-TQ>PSA
zu=17y2%!zFFtB4%QsHby{kn{^xHUB$&Z-QOJ^d94Dig2uF8w_5to9_VFrwLFY1Rml
zP#k_mewikz)`jb4^5)t_i#VEiD4zwi9QUUFqm-E6V<d9B1Qgf{ycg42n9OD}5NxdQ
z-YztPNg8lyb6fPxs*!bxym*;L4VhbMvE{2O#?6;Kbh#Fn-C#k}LFr+HR&oI@KfWya
z=e#uZV1`~tZ*q>Ck%vn<-@}^`4-Ho^I7UG?4wp>aR-YoMGN|Co7p1kDeH~$Vbl{&A
zP|RX9-t97Xlm3o7CYO~djHBg1oAgLOP|&~rmDEjs{;lulNt(bw(7b&rwn}KsaY|u_
ztl{0Pe~U&7<EDAN+YX&wX({gDhkWR)l#>jhKb3KtQ|xDhVQ;7WtiZv5)0L2rgk{A=
z{3;G0TxrE%2;hYy;jx|_Ec$-^f`PboWl4$mY~!vJQeL=K<dDk4E?<RpRH}93b$`_m
z={2>xzI4AY{1bECF}UYY%mk_7N%q&|Pc$}4)uR)LjNE_su01#>(esGe5m2egN--{F
zp{pt_mb~3JfVhKh?)@!F`c>6}ZzW=Om7OUc+Qg_KXmEa@VQks3a<Y^%3~R^Sh&rCb
zPt|V;d*4erOTE(7l>6jK;3v$R>Gh>9b?!>YKR$F?<$)u{kt3msy*ci+%}nwWOQdZm
zcC{A78O``b)9R@Kg><Rr4FWu!Um~$aVsF>!o8Tb9%V07)o04LRrl<i|=8sQ&$VYKj
z+6%WTW6F4*O7L{hi^fYTJG7qMmGZd-mtE8mbnmVnDvreTq#@KcDueivNVuiXIS44f
zegtIb!`49-8M`k=nh)JX=V{hTxpjpidp8GO5*7D^8xM?zFo2qZ<9u(qtzE;n<Und;
z#*$SZXkGOK3ti==_<Y-c7`6`|0yorcuDG~X1nCZR>t68QrnB+=x1Ov*=6Z)&2Z0cO
zi+&(LuDPY9D2TyDcHXqAn%9#aj0Fe_QfqNlLAJ79lGcwmU5{@T#j4ge;{;Lg^vBG`
zRJ>J3&NLgkGiU&qrAB|k-rj{IBr~p~w-m%bd+DB{Rf9X2;)VyhcB|x7s8=Wt)MBmI
zk)%Z#Fc#mLZ$id17gG{70ap*x@SdL^3W~>5MXGBQs9erci1haLY2b;Qj}qAXl%|p6
z_*3uxWXEJm8K&OSGEL%bcpHdCt0<Pv%Lwv#L{V^77-(nX(YLB7lnTr68V_jq(UMUW
zSfsCN3-O_TDJd?N<^)q9>bb(LmWv`dCYJ=(Uosx0zAU8F$OxeT(9KSy@hQ$97k;(M
zENpBENlYDK6=>)i`UTb1ah#8;#W#dc%Smkq4&M;1>s>p$>hCwrC{GFlePA==f7c5#
zCm=O?@y5DVW)}Vs^&H3V<M6-tp?r&qgk;o^jZX~klo?6@Ea}~GeJY#GsGc;mo;|kM
z#*dNKhSwfLvnq`Qw*@4jyXn&49_4BUrgJ%xw=B=g0n8Y_Rpk8t<LoV<;##(~(O?0B
zySqCi!QI{6T>`<~L-62k0fM``yKAt<-Q8W@$~phJXTN>VeeaHcj5V6-rfF7J)ts}Y
zeV@OE{1j%q$XC1RJ3YcllfLYcfwwD!9<59myd<9^cZy5os&0c1_<g8Tul%oREbSO?
z*XBEBixT?-p(TCPRm^qAOA~P^x}%}9k_#kEHg`_R4o3j+<i+R{Q}dW;ueUUjubgI0
zO7(7<)aU)fZlwm6=$yuuQ;Q<1DnwRV$53@Y<7LQ#JRZZ}YHP;!bng99!pj=zzR8Hs
z2ja_hj*Kxm1q!z>Z|ZGSacX><s_Sl?nf@2-ycRI&a$(LAE}Vz(e4qFHGHK{^AyRyO
zN8XDC(ZLBSwLe!*S8ENm3)9QBYO|7@W;0RR#S1<8Jb2Qs_=+T8smGT1UMbJ!H*Rc8
z;;03GjgVDI)0T+Y>Q_MDOPR;8HrI|K7QvO!u2QHYOHAuc-L^yglTOoh<m`~%*?7&=
z_cjukMj`3U(f5x1@L^bmx9a|Gis+U9hEsFg#-(qk1`%j=V;qwHUZUFST7Q}cKn03p
zU3mcXD|tbUioLFDUdKs6H^L~NLMG+tIe!Flp=kcNuc|=q6%s}fd%a%MH(;OU6{@%2
zLQQa{vAwZeptyNKdM0WY<A6#%0x{)Oc;C3FUWe&x2=YH(oUIg}7=_7iet4Lcmv6}n
zJHMY*_bClPKRA%|LNF=Opg(WT5Tw^X&_yL>en=vEp0noI<kJ!H%h+&Oi=%tMcZ<yG
zxZrQQbnVIB0Fr|T6n61<ddo@D_t(>(Y{rH?nKI+nUfygg8>_@&$O8k$tb8AeP;XZ4
zpEi#e?PR2Wn6e*E&)$p5JfD-j73p*y!oFPbuZh#y4w<1S5PQEIHMG2VAAU5%EMS(~
z>_ZUcddMEwpE&^LfsOLm`}E014a*d*H&<2P7+_b}gd@W3cov*3f96|yTE2^)S3ngp
z;MmK0Q|XqdQlLL|YlFSXI|fu~uYO~`)QWIg#%CWSNuBSF<@J?~Q>^pW3{G}iZ>+J^
zXKy%gPc`!twk_JtiU!eg&l+Czi7*r)jTh;*!_MtgA)UV0o1Co+z23r;8(3_(fm8eq
z;njrqtv`Gp`F*b~BPOXwsZ!{%<B89Pg85%5^pVmxPu^ihmOal#Q4^C(>>wq)p_-W%
zXAQcoy|8H`*c_wGN{TJdgw7~!yt<}!SYrXJuQ90eaxFjOe%iuK6QvJ<VANL`;H&S|
z??pg=8CNw}0pzStI5Yg}bsgOBd<R<^#~4-X;<rdgZ!o>?&t!tX^ZL#fVDVqFO47$1
z+PMr6X(AuW?@+lEx$mzf6k8|R?_Y}Rd+BBtZ@Ja~Out)|t8Qp~V|xU0xUO^sWS39E
zIv&HUn%!YcT)uD;sn6|`g6$10&CLfO`Hu3bozxwzvmq*d#e<9+o+HmlVIO{pmd7BE
zqd9Mz7b$O=8sh;$fSIobDD6?)k<WDLXg_MVgY@enULTorP%qQU^T`Z-H$Q7VQ2S*%
ze9hW}tl*l{$LqZ<p_J+h5S~|W8Y2j=`h|ep7z2aP;}*T5z_fSvoMDwSs=rC<5})K|
z7R@>m#rHUm+@lXm=8e#-ftO**vxQX>#`CWv?_cY<{xQa;g}iP~bJNG%3Oc1U4;rR^
z!WOrrZ6U^I9hP0DPGn)TUhF+p*CG1OjfYHPq=g$6!vR2HO}k<5jNZI<eD6krBA3ty
zmvP|^>+1&)vui}lT@t9krLA$4DAqgpV1II-Cz9C23!Qu=sjNCKr9JzSUNj+At|<0N
zyYaV?+(C8Ah+JQ0o7FWT_FN73+8TZ@=?^GcdHNl<53Jl;xZ%x4p|qRd^JsIbMtEpA
zFa3&X)JXdn3apU90vn;@6}-;R$~8Z`jB}CsTu11iyGJS1+%DVK^BkaGg<_OWa@@H@
z{D9!WVKogcHaxR%L}8awVsByhviw$d({aC_=NR7I=gFtMM=J8Q!u3PXW<jV%-Pxpu
zl355|o(h(>2=#pXQlWvV^w;u@Q9OF;bz-DRWnLYRAo6}?gZOD&g&{(pZxcd6c${9H
zNH2AbiX0*DWayVAkx^z10-;Y`oAIzvdbid*hLPE&o?>rDZ9RJNNdp>HqA$xg#b}ti
zhxnhnS{h&XI__(LIjXK`tM5S;4C$kqIG@gJpO;>yHWj(AzPKR}yC_ngj<`B<MnysS
z>f}vXFbI_5I6KSQ%+)wO8gx)KuawxMkAz`hjIUv!QH8SvfHhYz`Pc{Y<?+7`y|k!7
z7Lpp=ptDOs8IswkQiRyudIX>O?AaLG@ZW>hnnUqSzsmF0U3|9)g{O<kFh;Do_99CB
zjOl6S86j^%(uSDXei;BH7^Xx6+@4R&3%mOk4QG;NgmanZQ2JuC5lMHs9{Vet;&oNm
z41aoNz+bb6vVL5(5GudP$jZwP(7hnMk!feNN0~pG983h`_1Dm#U#?1G*uR14;u(P_
zC;W+A0_m$HUdn4}pVP~os(rBC9|re3Z@CT;0ImJ*&v5L4hBmw#{HkHt3P4rbqS*U0
zbTEW>uHE#t@T+1LMAVLO9PD-wFxbQ&Zul8~rgcCUg{)##tDkQpwSvm4*-^x32q@0k
z9ti4FByTC2>%zws6=WIu+QucNDUKkYBGOfrGlU!Si)|r%Tu(Zd@&Rm40kc}n?t#2o
zEMl|Pf)TA>jRh^@vANY|t=GAC)AAztSZ;}3A)zLqFWRaJNO9K3AJP{*ZjABzEq7$H
zW~;k1*tDM1FU`CxthSjyq<a5gU=Xh|EyJc@hJ|4+k+u97l$&dk%ITPIuRFIjH2~!O
zFU9JkoMt$N&!E*~LQX-{om5I<<tq;8blO0pu+!lT%~s1y9sRhVK_!fc_yDynTDcWY
zv-O2UR-hV}EKy!-tBEYsAD46;(!|>i2-kV7DQviSpMRy{;7GP<GKC6@a?kny1j40&
z4Y?J=f!#1?^f2~~I*623>v)Cw0Jk8eWkRk=kBQk0St9CX|KJP|R!k={Xy12vMLkiZ
z95Xa5XTR4~Ru*=5mlN#DGt0vG)%>$D9z{BW%L^dDasnuside|0sOYff5D*Z!@Wh!Q
zi^mD~6BdUPp?btjqtBpN^eVtXG+FuU5)~PJC$)%)(H1*4TASsYLXw$2Af$M2an(eA
zU)0{fJVYa~safxOIimfGWj_Y`RXZ*9Sm>^S*EupEt>vBeTj#f+>qY_(e&VE-x*S_Q
z_yLX-qOH05?6iu5oy-STwQWyK90i?H{l`b>Latf&V2@c0tcChrE>nUU^<4}~@`=nm
zt!Sp!Vl+9HGV%~R!|PbiVQ+Jd4=sH3hwiqzEu~zm+PzactHub*^dj|YARN_kUk{Zg
z4RlbLQQ5^P9`E;p3oBc;;q=w#4Es~}KY0670I!t=`N*A`Zx5*B)%hl!d}sD&$<Oay
zuX7!VJ1#YOLKDPBAFIfz)S}+gSzILR!1W^3J@t^^K}&xr3dK56(~*5Uv6Va0#bVfx
zZL(d1O-jB}S&Xp{4B}#V1IV4L%Jq1ISM>8Isp}cPv=M)UbFTV^Nw`YJcwOpSwz-+A
z9PD|fS>BtYU4N{`$mQJJuw~FrwYo@jTw8YLBZS1;sHM4~RcDE){bSYKiG|8Dmdn=0
z=4i)82MfU3%dNA*s=O)Z_+e~S0A?09EVVn)jJSEaWOg+9+sa4A#h&FYfvMu+(Up{x
z0Ig*@BK){1qX}_l`{-v<u5;zm(rZ8`GZjQr`w!F2*MRkXlN^nqtc){_^m#3HGaY58
zC$5Pbj>$E0*<&_tv!7R~u`hXV!UeCdo~U$#)nG=2P$=U=tOD)QMxO?zw>@o@H=pMY
zSJS?|H$FBTf))EjI(`KoNOa0dPvyDW)L*f4BVWE^NaJ_t+PQqjTUriserO9^EZ@RA
zzWU_rX!8U6*rlzmf!>iOeMeSQdY3-WrJh(zPhZR|E)Y{*PXrP3J@kEw%Igfv^!{6w
zE8)4S%E6QGG#(8yDk`ehKDBD9fgpMn@#YU}3{Q~m%IwR+it~!IuJf!esIQ~N1vIXu
zP^kzd3YiOv4p2Z9k~q8Z&2Z$5Yhu5nWKV$1V9y*H{mE(F?t0qhc<R3E9hR{7J4&6i
z_pMEyOWxtmCP6Q!fG#T2G`7yFPNmrMme8NFcycjt_{t>kLkl5&PySkVR1zls)PrYX
z<s54QhEm>QbrRF?LcvuUAEj(61GH;-Z1SsdJoL<Ib9>LBAYR8WgY+|isCfn{$ut;#
z?qM@QT@5Dl0vTx$2}W@>-1<Sb4QLh^R<=<;`9ic>eeUzka5)5ej=9`FsRbxjrk)r}
zlVvHF{56gCExMuU{cjtqpb2XmevL>-E;_&JY6s1_L-CcD`FU)H{Ik`zmTCV54j2}D
zFE9BU<eArTkK$u?*ywlv`KrYO8@)is#5{DLh>b;k5ELanQ~@8rp!*3$3A8H4Da-S!
zmav)wHNrx??UuZ(yg-*d3rTYOL;q7~@1=t{hvHQ+z25P8qWSH{BkC$Xz^-eOj!r~W
zAwq!8fy;L~N8#?=t?byU<$mpNh}ur38T#Sq*z%muVieRNH)x2((S2mNJSj<;w&W}U
zBD9%KONBv7rr^X`ypnCbB-RA7^i?9*$W&^Hm|UtS1(dahFwlqN#9p5<F;^<rN4Bjj
z2o~$ck5o0=J-c*8C4EZZ@JT*~OE}f0CpF85Djf2t3Vs9gBZD_AW^dKp>znXl?9;r#
zQ6+?B4F{-Ry62Zhjx}#{uGLrZHp*B?S@hPSlyui)3x(vm*HMZ|DirP&Zq-7pZLyZp
zzr>nMWIUc#O(_La7uWG2A&)Q41fIu{i6h#H?$#3F;Oy3(HOD2XZ>P?z`<Ui=ZlDDi
zF}n(l<9wnVI%&|&4JbxbtSor{{Nl|^VA<dlkT*U&JZo4(;^ohb2nYF7yFPb#EyKGa
zgQ|1RM|N?`g#XztRL8N7Y<a5`PQDH@vM2aX{SFIJzG<zjkm-l`8uH@9@t3XAqe*37
z2#A*`AeilQ!hXxw<@o_r-V`~;xswE1fuIOre_ioApYETw3q1h?SI#VO)@W#MK3P-0
zect7UB8=qKR6dhbYJZb>luM@BXK%+F(7W)|Wo?(fqmdtKQTO>3sGhNCb#}c1mo)qi
z!wk0q6s>7~l&2MHL9)4YKR4j9qUC+)K#tFL=y=x_sxU8Rx1f*)q>LI4PNH_=q0c5)
zB(eFGDm!ybfnJd6lbk@KRzCKbwM4=ZX)At12$Ar#+pn=Kl2nrAA0C=E`$GSP1>hsl
zwwJAneK+|_VTbd#{)Yq&<bk-&N9hDqWL#m5qvP$mDdY2@!*&*Jp==`xorEsW()?zn
zA2oMUb|R&VOp^mBl!Omk@*J{o__`xlbVvt-wxwdBS;FxJ1IP*Qqv8Ugl_`{N!1R=2
zY`eZgY2_xXZVncFJh;Q@Zq0eA2H$(m*W-ayFXJ&58r9I$qyZ3=7N7VaBhM9}yN0qw
z!{R&1^?2=&DTBGrAxL(AHd2Dw!U)uAt88OGk&xH1JlBIEWmlq*iS4h+Rz|FS4j%;F
z+#%r?#Jq$3EcXs+vP-$L3IKp)730dq%7rRigCFNKZ@y_4){>FAdp~fBe89dVC_b}*
z8Pra881yKZ!%%FVPA&lcpRY-3uu<n#mm}*%SR+A0zsEeOF;#Z0VhHp3X6KUIDf`V(
zszZe-;UIXF+^!%bqH<7PUf%b~IhUU8M3#8bj5g0ZDF7!^E(i;vv9WhC-3?`xKfEi4
zyvz`s)e=0f23zRK-RkyyQIp$OMXwO|_T3EbDxU1xZTXYb`%LGu{Yg+;5NGQyJZ=RP
z_F&xWG<ck9#fI!}nD+3-85;k^BKi_I*|}(r-nyR!F9K<ukQqM9DY`s|r*4i@sPcry
z82(B9j{0t+i+5Fl0aD4#!#SN*yCKM9wEKPik@6kC!NpAoyf!{R9Q3hM_=G=xRU%w8
z7=lYYyt#O-5Q5cPTr@JyDWzN|xGZ3e4ArIkZEC#6cL%N$$3WH4`PHM2jWDNmxb&kS
z^IcjCQ{8F~Ohh>IDktqvmiFLH52v^)<KX?n(Wm*P<|W!Sri$kr9p4xCk58L4sM!0+
zKEglUrzHJ%I&ArAr4wK2eIKXs)UL{2QZ+CdHpGfhS+|@eqz-8y-jiD}1tC}H**~PH
zmDqOZuEnkEcC?G+XY%Upb=7_2x-DWphJuQmn2+m+SKGuLFe$7tS1eg{Sz<QQ4pB~`
z*9950u(H<K^fc`z&BEfNksY?udlbWGfWlQ9VJ>8wTbu<nbem{*zKo}<CL|r25a~~>
z8l-v1e-DOAe7T~;vEQ(T%t)49>5?L6Tfe3w|8m(^eNodP-JiH~+B|dm1^LvR*0wLl
zwo#?qh~Tc}p74;*>6?uArYmi@Q!4$_%as)QF0xKTuD_q5^Qr|&wv+k#$=+_(J6HE5
zvXk}xlj`HDj*;Xv#-wvHa9JXXfPve4eSJEz^4CCm-)AVAW&OKJajUx$@)4F*ixZEP
z*}H?N%>8Zlq;?V?KB-?`y;p^q9#JZEC^;-~6US6cp5nGPn&;W=ySytzXUhK4tyH5I
z&k!vpXN!S{8>r$d<vUL@jS6tMt_<$lUhx(jjz?1ISWAa+@<gA!B_!?LP(cs%r3wSY
zwRUbMPDw;NdL9Q9$~qMljhi2K{2ppNHe6ApYF*D(<=mTu!P8UT@gy4gEd+*hyPhf$
zN)s5XTs^^DuD_U0Rmqcqp;~bHO-?eW@VLh+cSYc_7kj>aP7iwW0@)jiiLJbd)_HVx
z&jPHoWj@o(`I$1o8Xax$NKlQqgoko+a%yW?6yJjtE&j7u0^&NE0eQZZT9Mk*b7nGm
zW~f)742KVfL^wgL6tEB&CI$)46uC9P9q^tjZiN3zn4iZ7+mB4>GY%3l<HAk(%7~ys
zbWd1Zi<b;{JuJHES&baC;}TM}?-r?5M;ZGR$h!zC(gNDB2<3g{#63>4X6x@eTdmC*
zsDP<nlTVac5Iu*z`nNJ&!*P*SN@?ukadR`y_NQPa62BN!8WIZGz=g?9TFR<do@VUT
zc-x1UG%UhBQ9kl8ycZ3Uc5kmKkS?)9V+ZJ-R0fY;Xs=Dblgr>!Snakm_?yYh)^&2L
zEXES0YLL~iCv`>=c$Q^9B~%_C6s*<Vrqw9ws`_3Qao)JmI*u@WVzA%Je0|QR*K3`l
zIV#mG&;l1PfDpHb?jCu2-g9h&CtTJJoXenAp1{uO{uZ?F*mavk+k2JDy5!8H{lxmE
zLitT4kdl3KI^~mmjQdrhB?{FdzgMHc$B&4hqha?w*_kirPHtm$zU4`K2L(0_kdZeZ
z*gt`7_5{Iau&v;<76b*o|FU7^xJD(45vZi5O4;?=g-WEkXZl;$Q-V%iZ~L4#@ToRP
zNU|j{c+bfAzMYn7{8P&u7xU;vx{~g}am3Q_<S2rhoZicvaPdStY67zcs<`}g#^HMC
z6o_9TjObGXXMon&*KE}=0^r=l<ol8gDK0AUEZI|cPx#$eqXEp@bf02xDDiH$p>fP;
z=VnqvK?JMjp!QT^Q*65G*m~&l#`Z0jNFapQzH-+;dbN?V>+5qxd5q}Y+pLN0jk6<R
zw#65!^Nf<>GS83!Mw_pdHmc(xSSJs=qbXznR#FnsIC8LsrDNxZseUqFCD$wtT5;_X
zCLJE=>l<1y&n)Bpl+84qFRQHg&Da#+&lnD~ZZeB{1i(3sZaBH+VZ|t|6#D=d(&+(B
zjzcgEokh$arpGHtCiS!A-pJV4?2Um=&{iRu9^OVDkujH>Z9qD}eK9<Jj>(H1G{B7u
zi*E(Fo`TMQjXg5z6jHPvF*Z>l_iQ^Q%U3S>4Kh{kUA7U-n~?Ak;r+Kx>^04M#_qeQ
z6=t9BovStyH67-Pp!q7Q1A2ghH-*<K&BojuL^Qqbi3`^*-0@QX;&Ws<jb^&@KM7cR
z(7WA}SAYiLXl>!~`XFb|dwIgmHB}k43J#uS!4zH(=jCN3lh9|K9b6*7ygTZL*(Tf$
z$^ag}SgO~phdmEz_IMbwQ0DK&M1cs@UBlFV!plZ$?d$T}@1rYf{pW<<Whb}u-|mW^
z!%afNiHLb4-E5BM%o}aE!~=0l?YCG^^a_b>u6t3kz#=dRY~1gAe{6bLfj3Lb5GmJ9
z;}TYC&CUet+;v4>6)LTQrV_pMD?DJ3jpgujr=NbZ>A8&Cwh<jEf*QHY=T?i6KX7}5
z<S^mz+a_AF>!BQ{`y+b-FjZ<(^87F4e>x=V)+YP^RQ0wkkRtI_0L(g7#^WR3UmWM%
z(yw|UGcMOrAU2933V7t*xrIE8gu+k7$}i{lX>EG_(B$^_oZ0E3+(r>Te5m9>@ziZh
z!Ers7z@i730R5gXs_=H=mGLu03uFjwVDYt&SicNAPmWI8)86)B@efw`vTEx~!;tx`
z3)J6khsfyr)-2L6xgcLIguwbf+gtJ4lU-gPVuY#YsHtq9i-m;4T&zSV(EUaltvyL)
zCnuj|l|0+q-Y$_`&|q+I!tz<PCSeavL$Zmjg54sgoUvzU8QP2oh^EQU(eY7|a;Lm!
zlw99-<A2vHe}ywA$ZCH&C)l^#<<9Glxc|*+>v)SI#qPSs*7h~^4T<w5GKr#AyY)6>
zInR@6XNYsmyRH}?9(?Gwwz?HuQnywKAbF6F9=cm8P75xy4Qs^WSk#B*A)k!KFq?tJ
zCwrol+I=jOTWINZcjd(|JL7jtAJu4)Wb)fE{J51z6|XL+A1V><%7s)wfJdyKrZGq}
zVPENwJaKM;<VQx&#ig|t3=gn6!V!#_-)P&m<wd1Er2#)xgTq(rtder`@`g0c)ANWF
z{MRA2Shng=kO~(9NzRj_Sk`(&(VSnf!vqb!T&8#c75Uc}0OrvHK<2ug9mY6y!h1FP
zshP;avGd){LriAHfDh1Q!Il0dv93Xaj0Ni9!e}iB2eF2PpCqP@tT7++G|GaHQJh~*
z9PMn!QE`Q$lTg;f{g7Qjo^R38S|r?ISbeI>uzHwV95^euC-}_6(^^+-!uvl-75OA7
zc(PTu7ZMLUuCBq;cr9Db)9nz0Yaf8NW=*lgi((*j0?=DKwj>XILJ#-`^MEYXKfgPc
zHkQ9bFeRmcm)!cv<^J5TX2=;2g_>#fH*2scRWWM-GC|Le>N_o=Za(9QX}zC3H}E9c
z+DlWuk3#COXNpvM=T>xIcQa;BMd1R2@#7l7x^#23iGo4Op1|ROdt$LJjJ>Sa>}xz0
z*D8@>sIU`<wI>D(L_aNwK{Rhs-xBY-pJXVS!IOFgh@=pue7gPlzWeBr<Mk$$XKv9Z
zBBG5Bq$SiJXY-Ipk-K^^1d32YvaLQBv%++vxST`g8;%#|JzsSw#R)L&e`F)Q72=EI
zXR9ySv7d-<sNjX|K6YR9SaLgoK|*p)#TRZ7q^$*vUBqQG+-@t$CJ}%8Y0L1@2d!lL
z*(m3=Op+`hZYi^-b(xyXH7RRb?vI%fiMjlBB{jd~pe!I%U5|6D__FQpFf50TuB2?s
z`*9`|UWQc2ZR@#>rNwn{gNl+>V|$V$SOKh}r34!_gKA8epgf^ew?&z1<DQ`5t^1~O
z+DG^-fff3&H=~Ud59uj2?lgJ*1_?ffZ_A9M4nQty3*G9!yya~5GwL`CNTFQNy2Jk5
z^(aR(C{s1H<Ur=CpZ=?Y<icnn=1geoqKe^ZyXdrM$<+#sC-SMp?lPlvTVci9TBPEA
zfKT!F)|oc7^q2e$or+;Wte>h(W4c1(_pc??^oiB2&2~qpkD;|nY1GuDzcrb+i$<%G
z5jSQ4hNCj&9ybJk=>XVocOoG~x_$m`cJKp8_#D65cFzFPI?tf)cNnXfEiNa;eHh3r
z+4QYqI7h#8g4-upZj9-nv$BVRTMGy9g9`?L9`O=hWu!&FZxBdb?vFa3-J2-=#wFgJ
zkr|tsI<JQ3SZAo7{HB)C`(tnLkv=SP7FJ+TecJT)B+c&hde~71m+!u}aWZ#H_V}IM
zC)Jy&b;eAH4saW%VQwuUEgm_5%6XaUbvveU>9#y<3b$I$)b=NDW@nwZaB`QPzI)^T
zC2S%vK)imMF`=t9u+QKr_-}t~jLaZ&qU%hptfJXcuY)JC`FcwF2FcQG(H)4!JO&Fd
z=aS&FLJB0Gf8P*i$G1h0mXn(!871cGBFCc~k-`2X)7||-0Uu|c{4=MH!LO$XkDQ)M
z@Xdnzpx@kdprHcj;vieb>=v6Nya=DEZ!6U27UHvgdc@$|XkDspyr^B;8(zF4Y~bM#
zJVsuz&AsNo`51c0snGs7(sx7mMR3?}Oq!ruj6y~d+b5{JNGuSHr*TWXq0UC#JKgJQ
z?WU?K=}oWQ_lA&0DO)_CjF9uFL9K97xCL~GoNYt*#b|Rp&vqmv#g$vH<>)PcskEFr
zj*+F!^!oTIO+$NY;VDCrs&c-?Az}#}Mp9Q#fm#q{19gE)&{O;CXiN6ek7e??;)yKp
zwF)#h+s{Gu4zYL1y5(t-?>2m@I!Bg!L#YNI_A=>5l57=(0#O@S`Cbb^J3DW8zK`?z
z8I7W^51Vh>pD=9Z=c7ryw}Xx*l30x25527vthQLWCJUdm2Sr=2cZzu1Ao18Gw4QhK
z+_Wi|w#mO<1+MKo*>c~kxZ;@%ALKaS1`{=lt$H0vYt{{uP>zg`t7mu(x0VeXw`<#`
zQ<%%+(OvPs=@DPjsjey+3J2fD;Mo?Um6U0zQn~bA%(=;?dJz0tNnC^`VocoViM!sL
zugvmxc7D1wZECyiY^bi5@&sV9!ZAYNu;}jv^;^!rKJ1f$Sc|whIiaS?v;#0j`JNiM
zclay3%3I?S4%v>u2N|@dw!>+RomS+ZAIzE#b_=ep5MqwfUEMGl+wUvhhOQ5`5(;Vs
zW<f)!*xO71(S_eB6Kz;%XslH^r+P4vezjBjfZf@Ma?-G@u`LEa5q}EnHP&T!@g5$}
z#F+lGvJrIT^csK9c#|d^j<QcO)xBPyKRnCJz~G?%G95Qo2gQLE)_${;!>8K4-ttgk
zs8v*Xo;SpWYJ>82=x^*>idfvMXM?S}D^#_K5iOVY7f2ssws+1(vP`@xh+FF`d=!4|
zg(^FJYGh*I(D0pFyv{l|SaI!?OyZ?a>u^()x~g{4rIfcS?Lpf#Im|pwnCYW49WY<}
z(0*nB)53H3D1E~k?j2xpYXaqYB;*&>zVT64TyK%@Mj-gggnd{&F@D%DlTE7oJ_Z$Y
zNmp#muITx>_>!m8?V8WD^qPCxGpoJewbtb^JSkIQuS2`u_c>v`)!?;DaLRR91UA$K
z#{Wl6H7}cXNh?IpRZb>q<{hW?cazsvQAC?X#&cY6o`pYjl6+LfCP25W2mI}nG!tj~
zD~7sGR=XpAP2@y6x4OGp`5cJ2RV$1BxM?qA`ar@FLuI|O=na5^09dK8CykEHMX>aJ
zU!2=62W!4Ad^`~ynSq#yS!%FN0tjQnUb;9+jBKI>sHiH<#<X^LJ+0enG&+3zFFl&G
z^tjL@*4-#84Z6DD%lp2)zI@MP5#~7D8R?i_IJeWfJ7qb{VkH7P=$wC`Zxv+#%u%qI
z*uxuq)351`o~}O(z6|b8ytQWaNQpG*G9j3DyLWPb#Kdk-yU^B_m9-Y`a|?%*`1Y@B
zof?H&y+hvn@xWZX$eB(0-+Ieh{vFbd5g%+vf?!K<UJo3;AJpm~ayw!em3FO#Vp~B5
z?~XM+L7XX&HcF>(;Mx1>cnyjBZZR{wKQ|>s!>V+A+@rPOQpT;jsiEoQHM*u8jlLhT
zz&d``me<5Z+q%v80xy>1ke-1wAjI(bC%?Ay+x;#?Y|Q{kHf-cRqxtfV-ppj#U8ut;
znR5n039ZylT8EzH?DR4M4AZ7Ok8JY|pCBBheA5mT!(?GmvD2l-KC<=a28_EMVzYqz
z8c(Hk*M`z`WcKDau;z7xAM0-PtvXQeM~WKS3waf~A#zz}nw&S@0B^3j3Dot95N5jm
zMO{Kd1&P6u=cyejA-Kn3WF&D`fX=!%f=dttStU7V7Hs~}Rn`2pRW%Ix!bdKdS!qgL
zpmvJu{qF$X_2lOLr@5j=h#7}5*1bVi^~|GsswBOSs+HK%a;r@2YnSm0)(JP=OzJ~W
zpD2$eHavYin+#ZP_o!A?GFT2NoqqE{Mj$5(qPySeCJpL#WLSqz9B1z2N9NSMf|jFp
zn#_Ik()b+@CBOHDY)5OTsbxV~tX|s=#b)m8rkT-R__7nY+|Ow<qSIH3hJl7N-=6c?
zXFn%XX#{pe{`io@sV)nG6A5OvV{^H;^ZUi*VpRspr2+Z1z3kdl=rl?4PAU}X7(i>N
zda?QD)txk7Tu`kQ-F4$|E$Fx=V~Y$rX(;PWbi8emxgR5ejvR8t5YS=t4DZ9auS#2P
z*j~M#FC3b7c2l%8LMx9mC*DfN{g3e7s~TH&FBW+pKn**0QF;YYnV#b!UEhz8DhgUY
zs^!#2R2P5LY}(`IEIUKzEL%f&cV6kpYs{Wc>~XKj=FqSAxv6&cWwAKK@A`gb)&dgS
zQzF%FzfY2BKX7LVKW5#<m&E7QwJf1a=b=7Zs}<peRHT}6EXyf+0_(~`U2u#JZ`)MV
zMfbjjgK;s6t47_VyIX6cj&I+E!*S|YZO&YY6B~)we-Q@-`nnkyFYwz|-)dKHl$5i)
zMHAz=y{fbc#B2D2l=5)=fB8NQ=%=lC9A%FR$EL+H>c)9UOEge(3d2&Ku$?&!m?uaA
z(e5{LpV836<!ACQi$zmsrOGo_N;!A38IiS!FbJw^PdV4$0b=GaDUbm{9L^Ve>U?&K
zt}6=<52QFA7fp-C*S%}2`%Z2<agIlUhc3gD0qOf)l1eEXnqLpfivf;j1%R&?WQpY6
zWCig>?AQGeRc7PZB~a6L=mgqIeL%4%`-lw|tl6TrtF?;Hev;<xx+6<is(a)&7$f$7
zB)UxYUEJtu2q|yf5i;7GZ(*<UYrTx?-O6I(NtF#MG1z}y&|o4%*ephkfe=U~>xS|9
zxIZCo_EAd0+@J7lm6r^B{_BmX7SiC!%H6_^jY%xcJOf`nwd)tVn}Oh3nQ*#$F(p60
zz9)=e;YV8p;_!tAS=_ng`#+S~tbWj}g-x)%W7`0neYw!6+gg6x>3HqQQo!VJ`>XRN
z5>>ek4}I#E*$Q%8@g*wjgKrHnkEyI`pt73V=qEEhqMEhIMIdWmTN-oJwHnm&`g-60
zQf<1SQ(}7_0t1#+^<$G~p{99*>QHtyzkJ%q$w!FpWI!IT)ac~NH+I|f%(4pZ<6>V#
zA1AcQ0vvlYM$qRwu5atc56eq^0c4_Sl=L@U1SRq8rCfrzk#)V@9!?D+_z#}9bXi|k
z>Nd10R$7cVhY%~w>)0kBPg}op&6>BE=^O=d<kGXRNy+Io&Mewk^mtLH@tl^kI+j+|
zS?NaX+}(1t3$)gK>*RWAebFgSIPaSswXbpEwYkmoeHC`UYqPC`Zt1_w9=-B?Qy_FZ
zf1{beL97V85C0}H=A|aET=!+#MpD{J1Ad1=eru(>RJLPmQAfQzX(9+==rRh6Pic+a
zIZl%j-%e^6%p1|!dB)o}<umAp6~vd-diNES&GW<}|5CkoVdgo#i%xYGh}?~1Po|f2
zbL2XNz|MD2U;NKAOyh|J8XBl{!7!nd6Nuw{uv&B8%1h#lv2E8i_8#B#@NY!fX@5Qx
ze>f~@wi_=8eYes*AAA_hc~e|1fh&8|xiTPf=D(jDkpm$w_Oaeve>#)$@rhyFE$4L;
zYO@^Qviw*tClPow(JHTSmvJql+3J?wl3!LE#l|gSc)sa2-g#B#B#(Dsg*iB!bQU}H
zOb?LYENdhu<hOI<BQYn#OK9J2GN|EP|MrT?%3SJjS7r0LEFH2bvmdRdT#Yk1d6q05
zKI%=~&oT7(MD;2-)w#@9ZEK0JOt5|Eut5u9(mgX?-m$gOau<w2KOU(q#|S|@+3a7A
zZ>zrdE6DpyRnbM+?)eNQseS3Mf}W(|>`trTKrP<>da||n>Ek7b9-7;8Q38VP=(HYT
z%;_~QahF+nW);Ft9fo7efmV`LKK+jMZ?_x~{gX{GH=WlF+qXnvZ61DNzsGu?S_QWD
zo2n0Abbs~zEVpi4a^<30+SzBUko*KnS-3NcU`{$``xA2hiyZ!Yyzd3c3_V?;&u;|_
z2WLGeNsO9RRA9T-K341>_!moVf!fJ~L)gu##mnG=&tVsxVMfQ~3L_9{290OQO-?T2
z9{vMRUd_}bfgRgBI|p{Nrl!_wwzcWe(Z8t7YpRhGr%)~{vR*IeFC>WzrP&E0xhkdA
zPZD5BevO1Va1p~3!A70rv??LQUv}eT+$smE*TQlvX7{`bW}&XQ23)r8FfGu+v$Yx!
zgkd6Ml43pYRcLMdP0mOY`s`}(jLEsmp`aLkw48Z&u*9y1NI0r!*nSJg^TCDO|K4GH
z@b#mG0@Febm9o#XecEj<DCW`P3@(|}$x%os9P?Z-yvcfrkU(!KV`AFH+)b9}W+m-<
zaFCe*oWN_YLOyX!3VU(xy&-A2qmD4L>FIpTYA&TBKzSZ#GGEDes8^t(r2J_Hg2=PA
z9nqKd!iJOVK!&D>K9Q41_xG>Du~inBwF_@_%yeo~s0F3yl&O7Ja{-A)5eoR2UyO>e
z4ZgwX1dAob*Gimbw#y?Y>*p3Hq1c3>C9`+xinn?+qf+Wd9^!?%OeJ5EzVb;aEY;~V
z!A688b~0uuc`<8WP9s?e>S?>YBP22oMoNr5))`vOIIg>|_~TjI1Y99TMXBo1k|nHv
z(*JO4E~O}zK0l}2l$ei~mE#>@O^<Az%35C~A|mp+Xy|v2xK-3GGS?IrBUm_{_U1-O
zkvW^iB(bi^-gr=7i)>j#-6a5$T~JqS^q(R)lSMGs$2d$|{SjC5<|3%0BPEW78!R~^
zU?L*nQBjVP&c~bV1rJwC{WM`q?^7iHbrhVmgq)hbtJTuAR{Z@93_`1Haev>U>7pO+
zMi|e}&kxZyGF^0i-V$8{<&QU9OX3#;8czh<`&q87adYfz@^*+|J)e4~+S8+##5iuq
z(Z-OTsefFjFto&#a<-4mp;zvYj1kK&5jbU2+%;k<D45>Ro}b9SdL<4iI!xE$CcNHv
zAuml7=L|iEe<tDfO1>`A$@sMwjLhb9w^)r$dFRDX$MKl6jyFB;NDPj;k@QH>Z{Xs4
zAb)UibHe5SE>j#nFd|}N!$4@+oo6F~t^<Tr<1xCv(fJMR1xgQpMf1y-l-HNR6_$J;
zA^Xp|2&b>$18JQXL3lRNt8JceKT*3;jCA3DN4{`Xx&8^1O&Y>>3ai<v<X)$FR9|QM
zq@Gd<dAgw6lW{pc0adU-UV|-c1I^c6x?PpT^-FqY=Y<2oXu4<A_33PmCe!@Pr!z}6
zPE1r9>WL)j)pSvG;4{TTJ7dp$l?ZeFb0_XoVlz|dF+`h`bTt|6h2?)g?W?J3R$WG?
z(t&juD#gZSdEz4DX5FF4wW&2d1%s@=_RtkaMO9p5dsQ>)r@A5+%Us+z!VG$=%;z3T
ziSxzN%w?#EW_ut_pUkMJ9(rsB$xQ8BO*I_e0$GEcQ@Zv9oKI#J6Za!YOzIg%bT`wk
z=9%90^cs}{Vf+x__$NAcT~Kll3O*AVyu&@mE;Njci2#?#2*5Vww1OPE>at|5q^L+z
z(f(Lm4s8fuxsE+o*Z@E?AO)dJy>lO9!RL3{k1h{;`?u!$FJ}Z8{9*v;V)sUXG`e<M
z==Sys?f2PJwTdK+*ncfXw16jS=TC%y2uc}NsK^t^Olx4B@Z%uIpGUlD(Jk1ImYF4A
zr{Qcho(K#fh+fC)6639H(&#~KkXn~o^|@b{en#wRCB*k#2@;Y3`qs}lUf@lcF|Owe
zUM~~1#xsOJh1qrrD*meO4@abZ@3&5cA{CMiG_jvFK;2F?WTa%A+0ly|ML=m$Ich*e
z1wCE-w`iDx#~|4b(Lf8PxNhMuTJzY1OX8OComIuvGC;i$P@d7H+kD{S0iRlU<fno9
z!ZKH5E|0@v6i}+)0T66E&O%_<<Q5hVei-sTDr>Mjg9HG1v_ke%E3`tH0XXqo?FO4+
zZQJPF+}!<Q*(Lzjc4&AQwMJh}Eq@7@)iPd>ih@ECka}l4WR7la@XKT`vGtHiXk-O|
z6SyV+NGI;UX6}C;)S`ij@cJ9d`WbTzntuZJ-vFZ@F6(bZ|H>+AGU-32%cR`ZjpmTr
z{N)uo%w#Kn+sxT~ER|r4c0h<A>d$_D-Wh73;A@w2IzFLO)IDhwykz6Q`XfOC;-m_0
z%&MeYkJ7Jx>8SW9bR?EVWo3%pJx*;z$oRAy!_!8x&VgKWx|fkotH&jyTI(8RkYTK|
z2})|~I{KoLe(@M)bhc3&QjnT7?XP~oueFsK7KW@C&`A`ln$v&8dg;pB-|DTj54{63
z)Y19*_%jl;QH!F4M~H8DULNuSPy@pvAtkM^8-zwix(vGl;b+ZilhDx&UTq;^VN(Ee
z^`rf!NQsW6WpR9B;xM4$oOpqf4i7vbiCn>Dm>BZYC2$CcG6%}F9~g8_`T#FPU8mC7
zIniH2fB)0O3bddwJ966f<|YAL-Lu&@mzUKpN04}=f3x#`TcPhDotd9-mo(0|Q#6h7
zqycpwcYc3gWDauTMXaiis>l@Z+8>W@P;<BXtfr3X?Q~tkcoK4t2O%-zo~v_a|LISH
zoN$TR*|Q~xT@+r8MWW9|RaN(`wWz1==YqKAxd;qIX-uR`zHC}PR6KC#Y_gfy7S5=z
z4G4f-=<xN`X4_D?`z7dq%@^>C;J3%!=`>19AK!l|z<;X2zds5DlSXH>7YN@B)P1u1
z_**N8T919rtL7RY-QphT#7E-gsK?Zu6aJSO0TkswF7eQBD1@oIzV<s!T7wPiIigxT
zUs}mG8?E#}-mdN{6mmO2+<*D=EUi@tqH{}edOiTYmEdnMqZd_Tcadh>UiD}_VNT)T
z|E~zfU$w{I#=llzJ2j!;9eI)2yIF#4TkgIi{9BLwYtd?H{A^ap@~oV4ug})>gZ*u$
z`!zWK7mEv+I&d%;ybbIgjsby$>-G5$2AWWR|2rpg@TOq6+}c{1=a&~}joru@_S?Y!
z#hrhHTt@i@Exy%+GC<;%+xeS-=HKS%|Ez-m6(#c-gE-6q5KodeGc%*&Lvwl2po~^m
zaHG#8oQU}U`!Bz6Ac^fti;AkcRg~A~;X?+5V{&uJy;A`U)`6abOMD<={%;k%o=p0!
zV8H+gU-9RUhfz6xMS(#?<g1qpF?ZBK+vj$>w)cMJaR=1tR<OWgWM))m+)m1WpXz7<
zXcC1<!N=c(E6gOtRYC0HFa$JqUy&}q{>Rnq3>8om%$VkLmH71ujU$`xY_y=W{f|2P
zrVe@ka)Lo=_IFA8hhSNNf${V6cY*t}i?3nM^kx5Z+x_1>PSQdG@cDInVs5s*LVm_2
z2BsAMHy`tlZ9hiwt#U@g;Pv%&(Vt9Mg*}OK<nQt&08KjSD<i+qcKR)uwRw)0MTnNJ
zcy@h4oOYx{bjGbRzgX;jgnT?f$sMPMJ{>AP=C3Gqbx=s5cgH*ZbS6VP*P$`$_|5MQ
z=n1HGK?od01uF5Xl960NkKrj>W|>z1b}0U%m+{XREk1yeIRsFNV*^AoSp%(q|GJZ4
zup<3Il0IrN$#n-t5=q1tOck+$XlQxl6*5%ns&f*nU8HTiW{dAAzLmzVGx|NcDOmhk
ztx(FAfWa<N)q4~0#bGN7#+MlZtRl&VU^6^q{2;U<`PZw<&uypd*})%h6iNaUbU^ln
z!?SMpQGeNif8C9L9d|;21>~{m;l~7mizEF?mifE7Ne>jb3xHX8aSXa9BB%i6uVpC;
zq9UVHst$XS1w{CfSi%&}AyZJohbLafexPBX$9j9m@2wMgT%wpWLv0%gwLpQ2i;@c!
zqr25@x_0|jw~n8Ohjt)hha!PX-`zd|Q!Le`<`$Fsca9P-X}~)WW^iGpg@4HZYO=Aw
z>n!z#Kp=Id`Jl<FX;}Q1=Vx+eW(6r}X<fOfmcP%vofqohVp@g#aw$R}LCI~3Y@3+H
z7Z?(&1Xoe)>tH@wFK5}hC+~F0m#dpAMbpuY!HKow@+C#>9?HAKHmjP_+D)BE5IuH%
zL?QDMBK!YKy#G3(e;NOT5txKQid0oqMMX!?ZQur&k$8A?`XlhD?CtGQF){OJQ#k0T
zKhx3Dnq2LURokp^d4H5MKQb(^0+l<wKI~aJQ&o?qvCB(IN&R%tcb-+9voC<KalvHL
zqkp<Pb9D@m{QGyD<b(W>P#~JD>1oO8egak?Y*((~DY6^_QT{|(gCdaX4Z4|2I4GA~
zruv%={f|%mDA52V+T!fyXAI<D;PE*oSIyfH>L^uGsnVTd;qlmHR^9gq%9cx$ep46%
zMIu_%Ut(Wg(ouft!O*m^f-YARjrsmpQuCh#3L1=q_j6WJ)|NkK$rJtq*Rrn@7ZsH_
zaDJd*Vv^4kQBsP%KAe?CuI2)KbHFfD!eKFftvn+WkBlE29DINEtL$W{fqlQr{(QZw
z8L_cvxy9Ai|K@`D?<VH&X8B)s?QgH+he5{1#c7|^0#Lc>q@2Pdpbe<VqN1Y9VY&(l
z0D>MZ1OWb%G%)z3<9#!$wVj-tyzjK^O!fJ*N`DklMVz#>bRG2+Yt({1z_+|m+7KBT
ziAiQBvPSHX`*$_=Kit6I?gw~U8~zTTup7WggZ!NU>@5^p82~R@PyuirQc_Z4qoavK
z+9D>W0A7aON}ytfFlKKuOIS%kf%xU=&Xw!*WE`NwEh`18oEqwz{*rI~=av!=>-<#&
z8q8qTFWgO7^0~1~j>5e+T=Bi6h^;>KRnoK5a6Nf_s)*0d{`hdewWFk`N0N}BI+Z6~
z_|yBA1Bh_Vel#C<l9U~brjVYKw6Lg*kB=|vGOlwvBP^;PnI-<HV(pp~vE(8tV3(|-
zuDb8?>@Re~ws?1OkwEA#pZGj#G9<lLywun81$&7k{@omzO|uN`4`~W&9vLaet3J@0
zeDN?Xd9HSR{2oS#?XQkiq=?Aa>Sxj-S_U*CeWE|{gYVwZ<nFIVx@Y$-<#9h}+LR(3
zX&7UAVRLeevz2DzEMn8@<-1j0muH+pc@3j&DyXlb$3c1G;Xu8NluCtLy6qj7w3Bzw
zo(}nrXdh|}Hj^lHHM!|4X@O7X^^uj+OWN9lilx=eLm}UWydua-pLMXjyj0=9=kaH;
zD&8Q-a|S9lJ-a_jwW*ol^&f6@n1BFQk!*54AD>mP`5XJ8V|Fi>iS>PONC1_jbrK(`
zkKkrp0iX7ji$-wU>Nx`XfqgaEQ<iFRnL|Yw8=dhoO?G><hy&Y?_^Yc5O?b@^NQq9;
zcV`GS<`Z*I`d$}-06O6S*WCR3U8vL6D>(v`!wB}(=&>|*cD3BG$S7P^sq*GS+J!dH
zhS79xkTv(q<4qha8s*@hbL#~X-@Sl%x<gt@DET^tU*t94dG!dxxXXfR670{!^(*j9
zy!1XUs}62B{oA;|Se0Ln$elW<nBk_CPJogy*6{cDFQZ51Y5o*Y6B!mZP4x;u32SBG
zuk2V;BXpi`ftTjyid5Is;0=!(|2Nge2w=E2OHB2K#YgvwTNan}f+qAUu8{IM>X7_M
zM8c*Eq5u$k>Y)jy!~{C_;^2NGlk0uI!;Na(p&^>+KNXBXZ&^vzG&6(UapsKjN2J}s
zW@qS|0K2K&1qZu5+E5~oA2tI_#1gb4A1H{)g@9a|!eg4j1yU(q$p+Xbo^UhX`20sj
zRW-)0m<_2`jq<*4*oCLsb#k!yaCv);C?3y2<0YkuvvVranl^rQQ4#0&*fi>-gX@Jb
zus`-mRTr8Tr+vQ2wU6)R^xGFgo&-8Y%ski;yRQo2I4&g^U6P!v?-De7s|q}WKi~M<
z-}<CIitBP~r`tA_f3mug3+1(sHXxW~R}A}HGRqRe7DMzvi_|Nr(Li4`mfZ>cQ+vtd
zdY{B~&AVa!4(yrH4oDl;xuBIsK`w?1SZ_8dS&0NAbLLOD+R!zo&A@l4!{QzBDJOi;
z3B^xiv@1Pvj-2V2M=2V_SPS17KdJ4~vz|dNiom7hTaiQ0WMHZnge#2&q6am|9Cyor
zN6l)^-qd1hYI@lTfwb=c0gV_BP+}gQ0Gfkca-9Rf`QkjOopxFP;GD$ETTYuP@A7D%
zP8+unahMIh5y#E|^yB*~*Q=gqvv>5~Pq!E%McrP3E93lc&mJ#JK;=Az-Jg8tOxv@Q
z?skfK21@0xm~ZTmi%;I`vYCrqNaLIUd&9(zGo~L||8aWNn)QoT^<VNPz$rQE9VzYB
zE4CKzNnceBDGUruG@3k*BENT_BQ-6p(yDlT0U{QF1@~#3L%6_Zp<2|_)@f+-hEYfv
z0w12AcJki`^M6|FUu4MVH*nFoJDdtd-~`~}JA%kU1GE%e;RHO2x3AmhY5*WCSw%;?
zfGoOxUSBxI@RFg7jQY+2pFA%*W*Mc=<t+ITZqx1JmC4Pa^+%g!1qM5MMw*0=JBGhQ
zUM!0f8u~&`)jVetOpDv3Xy_yo1{+^veGLjA#e20Zkfq)k)6_7IbI~vH>k#`hrZV~&
zl6XWH^D+_AY!IOr@>0xEGsU0(fFU7oB@qg5wC%$!Sv^iKLglTjP=ThC52ZbOWyPE2
zRF?qCVJQUMf0e32te<Dt8!h5x1%wW&7l~we7tl-?Neza0^*1A(GGPq+lZnIy;sldV
z=B?$wmP-w4IB>`h!-eHqDKQPn^Zx>!3xu+53{9!Sl8?asaBBaxsBysg48PD}5%%TB
zks9f{E=Z9NW~HlAv(>n$7UJM__4UU~k=v<V>~o=bR>i$kzAg9YluN^IO*r@`$n3?(
z?JaA{Z$}L~rm}kGSCTIhmg4-hbsH~z1xL&=I<JYltUPAqe#YUQm4-dFcfI);n1tWH
zAXt@ow4RIr)CYASN16W5CglS?Jw55Y5y@wOd5?~dZw^jm7XMwM&ZKJ%D%V}oS)VVE
zCn}NuLnT@3qEd2H(V+)8;tW7f=_P>G)kdPjlMhoHpzhg$bpM@z8<LnYSOOn3Su?>0
zkf{U?j1OJN{B>7w(Su#3@n`e7{y?5}iH)O_o%${Ye_e&`-)O(l9cTvn!VBOPd1v3V
ztOIS2c3g8a=`m#DTB1M$xrw#ofAhv7Dg9(Kc`JHIh1WwQq0v4ps&<0glN}cotO7k4
zU!UmY{ll;-`tnUF*Or?y_a8@1u!Ure!5u)c4XQJWzC+8^LPYE*#0VQ%RtZ=iTV~-P
zk`wch&Yth-+JcfqSNdZlkH<W3xlf+%i?(QIYNTc!;>Odmmn1bCRg{+Dp{Cn4v#z?r
zj3O?jz6@J?y^y6x`XUpjdgZs5oi(}1)i@9>a7>+j=3y;-g#46M?EDtrFr+oBcSeJj
zfHfi@`SQq}UQxfRolqg=J}kqbgrd$s@lKu|iT65MfLV~tZ(OF+d@bpIT_N*}RI8go
z%vI5S;Y3O_NBXXEED2xQYY-B_9*^GXET!)5pk^vfY{$rm62quk1{L3eRc`&0Mv-K*
zju(h`mji^UHnItrh4iRSAWppEWA1t|CCdNK|I>Gae%13m8Y5+8*wIXW{k0xSO3DvH
zDh+jAHISpr!b?k@j|T<LA(kPSSWJ3f`N@s@!>evt-p=QZ4;`ob)@P@%c|_{#x~9qT
zWjm48TI!%8<EZ2l2L~liBK*Mz`t`>W&n?gH1h>q4@YDU?`DkOa+x&dR?=;s^Q9*}_
zOy3AJCi?ere;u3no2Mf7sc==9SteH$$;@Y=)CB}W5ui%5pfz*`;dsnGAWw|?^L(}G
z$l;5C(WQG$KQSKM@p_j(*Kq>-PIB;H?B_q!&!YdkZg#wujUb%i5${kB0eU4*J$OXK
z87p}37{Xt@-nMNw3AfwHKU?+rfW9@x$MYWbk<~U$kCxU}r7)rk6CE!vcER?^Nn*iA
zpeDAEXJ37Y4yc8?;=3GVrR`niI{-21?P<4hiF%g#-NVQIqM)GQ5+R~28Z$umW?4F)
z1UNRziRAo~#N*BYaclMod2i_5KM@a{!7iB2s62gAnH1YpVNR-zFy1#yAlP}Eb{85N
z@!aLuxaz$+iyrDn9ClR2LrIV2yIQHb%Bm9Bs<$aVPN}N#-g>E#vTKPL3`Ub&p7$Uf
zokteJ$lGn!iG^6=!a8w*CmdeUofzM(Achu6^S72S0N7!n35y|M&5UcML`R2TgBdb~
zOX@lm!J9)wqL7DPn+UW_(SQv?5YY)u<VCEZb0Y8i7`N_8;PQ0RaP%Y!;wh^_+Sms2
z{gb$=?yA8}(9RfNv(JMN@UAz@NuT`jGVr<9GZwIS#Vp9z8T@X2h}@Q#cK=(7!xfS_
zsEa4|Vtc*_GV;r?wip17bDay7aoS6c4H*Tn$D{CgC#Do-2=N<n3;_y6`^-=YULLEy
zR}3iP#TbY}{`_~RXTK1V`P~0qRc)<K7|a;%7I`l8`}h0h>U0~#-AZ`U{|{qt85Y;J
zZHoda9D)aTcXxMp_XL;V?!gJ}1b26L2$CSdgS)%C^Jdn*=bp9p+3%hAtBU$&@zoq-
z%rSazy|vb5e>FsR-mRuMuK8#lUQ!T(BBlIJ7Yv6w-so9>TobV}Gi!JSi}|>7AsXP0
z^IgdS0QS^I#d(gFm{^c67a~%L@I9B+G*zd>>*-4SkufsY<_62Q$8M^51xL*WCOX}#
ze{|uU^q$m44_he$O#G_xcnW~mgN%QIzk`zU_3e6JoS6kQZ^+^ufb!R_H`6wf2(k&9
zM<Iw_Px>kWF@O%9-IjggJ?xb3XSI@8GojT~KVXosY<A>*<E7V#x^)jJZPTngoKFfF
zZSyk?BjLM)4A@<4OG>}pt?PxMll{jj&|N&xe7z1ZUN@UF=TqDyjx53=pkoPn(s2uc
z4*f%KNNcuUP7zgtJxc>J+q<T3nh)!Zc%K@8k*9%#gfvLH;6QtfnuFQGaqkhcI4Z&#
zMgqv;uBXcfO`n~e8-UbQiNB*!cBD@uY9=Q1^W)7?@c<K+A5g~4sU^9I&R6_)*6U&p
zs=HxnR28xAL|S&iToqz22L3%y^WH+fB+@AAoIHSF&*hnq;BK~kp`6F(b!`}2_}cF4
zl@M}7@ay(usk7@;chN2~ofvhk+0L+jbzt<Mo|Eq19%r2hFg)##{xebEbjxo!D$IX`
zV<<ElgZUno7F#v$Mq;yW&uAJpLNTCG$i>FSB4@q<h^zz6+%!HyGBZ~IaR&%W<3FyR
zkgpLDvs<L@dI)d<q5U%aC}GZqhJ>yAdB3j(I#_UI<sy|6NJG_1gbY);uh7}09i_a~
zk0<lXZ&$;lbqcE2YGfrM_Zew5K2M7`f0kB93-)PrN4){Yu!6FRs3C*Lr7UZ`Cy14z
z42aJE<kvB^Ow?a%KTs4Yb3&ED1ln9?+V{eG;-Xd8Y>FQIsX}0oKhRt|7Y2#_ka1Tk
zLFFluG12pb<@#1k*~r9=0M%fe0#=m-3IAcxy1LW#IE!rj_?~FO<=ZqumvVOb+3ucr
zcp_8#o?7Vvf8W8gHIyECfOzUz*0>l;@}Z60>x@K<qY3S=56T3jOLJ;4sU0=}0@D(R
z7=$;)ddf|9nDYR0_&c-o`r}dc9MW$P<jl&i-h5&arS=ftkdGImoNLo~8dZAK0I@Rz
z4Nc6y?d|o+WncY?pX}7|?P=}p(Cd9MMAR`>ZXvJ#)|ua%7q)<ROV?TFcD$^!ywl!T
z(l@O1IfJCfYQL9XR*+c?@)j1VobNdX0=Ixqthpby6B@sbv3>D!g}HjY9}qnBvMVrj
zTXFe=*`(8X`fLPa!hM*RB=jjD@b*-++ae6I{Bv4fJ`<cd6GlIv!;C34XF?AzLT1iO
zWHP}#R{`?6PMcTx3@&BcjthwwoK&_7W?T22Bu!9tdHF_T-wk*V@#XU_XEzGh7*h!I
zkm2hk<_X?A;}3eOt}*NT18=W)f;%U#qN@Fthz|4ocgy*G*-J<{c&Dmso=5avb*sLY
zLzFl7&~#Ouw>m3-Dv$IrWP?G_eFT8Ygff&sen-9fQ_@7%S)eRqr&`VT*Yi-p{hDKB
z65MfG_il1Z%A>7&H{j>M?cNhzHsJO*!yLT_&*tSlC`f3y(?s(b-4+gWo4ae}4!N=O
zd(us1vy4{=c!%M(vHAuyuTlJifL!ST$>i*fwO}(aE^2^WpAVbYwc_^;!Uc23&)4hU
ziftW7f{HJzEe`o?AIk8zOs^5MN!__7uvP~`-{Vgq`EC%4wx<dhBLt5V**!*%_X0&#
zjff<9eJNHw<vD$~l^HtW>e85h0*4l1UwpEljj7&3Slq6S-64Q}SXBYVUG}6glu5Br
zeWUyc@6Zr3jzfl6jj1B|zA^QQrStX$rDIbyOrsUFKc@Z{`Ro7Ys+H1Ux%oin?8NVr
z7tXj8BuwD`kO%5b=ff6vn-Pk09zgWjt-%Qa@!a@vQiiMUlOpHN?kE7H)4lI2kOlba
zI{+Pf4(V&E^L1ZjB@=icECWzh0zU*Ckgf|h{}8&aKGB813K&B-SF@xmSQ84eH>lqr
zV6$j>jbQP)*ZdC3Q8hbt_JjcLBMA^Msd=>=TvPU;5rGq~@j#g^RUAcg**#3loADCb
z*Y6S1H0JW(fM@5iabhnDz@Ave6;?l1MDG_*Q&HQjQRxDx8&?r*hU=o`RIy^V=N`<s
zee;TI`fY~=W=HCiB6^LTF<~!9V$VxSxiB8|ByPvi%ZZ(z6aTTpn!CO8-q-O4JG=1$
zkFp5{P=l9E13VOe68k~RS;#t^h?r(yZI{o}@Gr*h3P>;HB=$l@Wa||mdrfv9H4uD^
z4owCc3W?J*v5BxeJuF=rFWq46+7ppE%S#%#n{)t$*G6bJ_t@ril;6VB_v?X3v%JMX
z;r8Jw`>i544B5F2r{5L1Nm%W1!TfLoB0V@X^q1k=qb8+r0e7S$a)8nC&Fzw1x=AO8
z-Xy1cx!av55#kmV4AI66!S3nujlV>6DxX$*lYVpU+Tz)}b|sWEMz_7MuAh)O4V)*%
zqw!PTkmE$q!+F*-CvDGB4-eY<o{9QBc5!M_`kG$&cc^1BQ#w0dmhD%*dli=p%fX?L
zbd0ncq+n5c9o~hZkY1Zd6$@<W_#PCdEE~8{8CPXW5_t4emt`KXR^=C6FQC11>dJbw
zjCPX$2iQ(e`~`ZK>GX#WWwHXjJqQNoJ@fZqK+9_O9hxzEmzp+nXeS#*WOIm55n|v^
zvQapa5U&Bj`S+~l&-<J}lzp68c@Z_Py{Su<9m;ZzpErcGmZ4K*?dvu9#lw?`zp9RH
z{>uv>TC=q0Q_^M7J~Gv8rdaoeabZJ?lJ`uY2?qHOPm#*JJUxYMpFp~&bBrOu#9Y?)
z<fE(!Nt$WU#~d6(d>X1`h7}{1t`0iMZ%y~$qAos37#J$$ps%Egf||D{i*&)<q0X(1
z>CHp;P7F!=S)Dh&BQ;-D2qu2;7{q33&q+4|9y^*c%F3zU00Wl&LMyjJvOsn`Yb8lD
zjcjL>To)izRPvph55|)pB@V=Y1WIeaH^)v_NM~GI)8^r3wgxBjy~;dgOeXUhb?muK
zhb=IgY^$%&vU8?n)d%}b%K1R4#Kgh?ouZI0^8U!RuQ$(`|C>Evs4v@DOWpyII;2;O
zwysbQ)4(PpT90E&jB23>0o{$ZmVr1tqoP=f?H*;j!1)3nrx!Y>S4wx@#rf&I11a1+
zdXa}Az)oCTLOc@pH@2=b)hDyhK>gB!l7ROIhkFKM-9@K+bxr+3anEm<EjP2eE1uU*
zq3}B+dc7%zzSM-?=l-`OZa~uVYbV99ic)!<ADLkD^6F|uU6~Ov3*2E`OHEDf>{~m?
z-9K>ty%7(qA-I2fYITiQTi}4m^a?<YS?qtnio+gzXE2Za-ebB%`H_!!DqtUelhQrX
z8}KbkYQDu-WL>Gyu6J(k!5R7VvyZ3AuI+$ARw`s-e9iZ%(!|7MFp*l-1aQ>Vi41PV
zb&pEtv?B<&@W<RWA>s?dLfCsZ?#T4y!}|E=Zgi_rcFmI+^viw(miPg!Jsz<@`sWIk
zeq1t|MX$mjSX}_rKE>^jGjJMZe{5ski`**LtWE|fEHYj`L2mM-dVyM#4EFu~I2~{}
zb}`67zAra(JYq~8#(9RwA^x~rx%!%Y?4eG-Mn<OPHd@|^D7m8rVIjV>z1%J}N+FpN
zhh2rFSo5x)Hvf3~-Vk-we*|wA0z;0pQQYcFq`|Q%u?<cemVkzawsTxRK1-bKu)2;&
z&~p3f+npC+&`@#oo&X-`9g|mWspk~-9CD|oi(7>frnEPnU0t0$Kd<#d(0da-heh!I
z;*}}HS5(b9$Y1{C4v};DqrTgHhH!g}D-p|2FTAXe7d6B|3+E+=V>m~wtCD|;^}d<s
z+FzI!-MfjLc@22oGuS`Pk1p!-%Kam!@J~kl-U4?wV}>_z02zIYjNa195h7gkLQR(t
z%?=f|D+x~}0N$s{1<iMZjgMa$u?5SFfb&0;?-Oyb8O+|{$HVjF#fslZOp{FGQ&WhA
z!FwDRVT)y4Y@$Gqko#MtPtoz4mqrinGjACRlzeTWAS&?fL|MDUjFA_bG>b}9yyPMO
zm8Fc!*3(G-C!?>CUsHzbP^qc=K{dvaw>#F+OkY@S9|iRdwM;mv8R?Tny;RAV$kgOo
zX~^?}QeTc=N)-my{0`k7TOL9k@c%+(H50g%t)^PF<il*#&^|F+)j8#)NtMTCWI*6+
zc>OL~IoxReq_aLRSXyjCFcRl-^xi54hg9;XrCm~Y+m#VDJ*_61t+r18e5Y4p+Qe5S
zf`CoXj(LWlG+`)LT}_Rc+q;u010SKez#(n-Otyr{qU>)UdrityC)f}E;^utOg-}1N
zuQ`kj7suCfYa!937Esesr6=mB68rkdCy1l5iQJlhu=oWAzu?irInV|utK;#4&b<W0
z>;Q#aodR5MGa!~1)R_jMpzI<ZZ)8+PHX(+^M&8qtlZ&TthN7fl8HohR{N$(1Afhwu
zTE?@re;N0CRjqNiMsEEC$Vh6#g{by%%sxN^Ees@Sud9<5BBJWYczz8-D(9j=^s?Rp
zN?<xg{+q-PEZE9eyCO|?YqnoWl(Alf(^iNC`n=(_0Mn2IrRiNRP+|#T*6~N=PpMCz
zwu7-5Q@$-ZRN@Yx$jpyi3F$p7T2~Wm;|AFy8wtaNer1FiA{ulwN3JsR&ox}X2O?qJ
zD=`>rTO|1RwWNyy#S(g?$OWm=jX*y;-7yZLY0-Ua<Cga)dk8%xy#Az@TkK!HjZC+j
zj}zdJ;bswk3ez$h(KVp(Q=PTB5n%H9ZvEU2nA+QXvvfBL+PINyvETX#5|QdyeFNg%
z>35&`+0R(V`BX;&70w^S?zrhVIW_+j9U@5i05o)nvhA}m0gMYI{XMi@WsAh97dtz<
zIy^TD0sa~Ml`o4t+pL{?sbrXy+sn^AWUcj1D8(w|&NL5s?+=?9Yu;D#K9#+)1(en@
z*$xIUUN+g7;<^$!hoy)`|KMT?StEZJRl<tcFu=MS#5Y(E1Fv)FJ9`h7HNhG}2p-u9
zY`bRlt2luk?h{{p?l(d`g_Ib7$AS2IEJkLMI;8i~{vC(mK?M)P;yhU(Gmck?U(Unh
zj&%~s>&qu+qf&cT3!CVz6Y=4ruIj#A*HW)OTJa>4vhVIu(a@vAFfByIApjgB3S}DH
zdka{1o)p(+P1ofKvn)q~bk$<ARLaGI#UHp;)U}DlJwglfrinpf;HueD(cAdLiGg16
z<TORa-y8?GLciva-n8&W^A)W`M&hwEw+a!suhY<*Rg{#di40U(p;9PrZssLTFd2GS
zYLm_xcx9my+a@?{g;@C;J4lz}m}~6A67x-mfU{ig(N-r=r6(s-*VgLK6lmvEVFpMf
z3f@e|J#s<Kd@DIx!CjTYLmJ5?p!<dpa)%+um->}ZPKccY5Y*@WDM$*Hqt(FU(RN;u
z%^v!cD6g>|dP#eGi$mZWH0X39Y5?R`dp(rzoyGdg777FeP(Y%k*BPNyeU3F3`>C!U
zOU$6k3FTZYY)6ZUG_S7}$a^I|Fz8uieu!T2I_sSERpnrEdspq4g&-ol3@vI8H~v+g
z9j5K$IgceKXPPIn2Cf0v#bPVGZnQU-AV5^zAwmeWC<lUGo+0)`HdJDbK9`_c2)?V-
z2TC+$1dr41H{Xg3guM>qf%n)zm`p%8|0C`;@~q=3ntYh`AWSRd0)wwlRBwS`cJ}OD
z2jd+;u{u*D!V88$hEgs;;ap_xE#K>Yd$G$5n(KwZ+mN5YGI;lN6XhHxNzBsmcvvpq
z#GzfSUH=o6GYx72)BR>(IS+-r_cw8qd^hpF^PHWYan@rL3o^SWOUF3T^v`#0?t<=Z
zK%|N7(tcE5-1JT1AA#P9FxcIMmVI~l)A4&o`wl?Q>LTgj6g5Q57Zp6V1sy7#K%uRO
zylFDBt!y38PlO)AabZIEKln&IJpPJ)&th&DqlI>10Aol^STAp6d`_{<`jEm=Ucg7`
zh4%(??(kx6>dufu+LQmFm%Hxp%B^rW3~Opz_hBggv1Q?H-IBf41Whi>WhOI#Z}&bu
zW+nIPi7F1h*HBYa{qQBb>scxVphLLn90eX`bK4#=pLD%?rj1=rtDafp61xJVER&1P
zMxK@DKp0dGw^K^b&!HFi2pjF|D}W1|z}yaz#`V?J42e``&(2!?c-NUTo`>?!=|Bf+
zzVVNEmK~cpa6!a@<YZ*~>~DXqIxmzj17g3*!YfBz*Gfv23`Kg-xte(0Iiw&4D8Sva
zUhRuuFg}lnnX){c&VI8NBBOE-2%JB>nKPUtcJ6*U<vrOLcgJ+rY^pC5o@R62S6Z=w
zK?VHPh}ZnyI&T^F6})GcuL6;40P;Ui0cWpgVENZx$R2f7gq_F~fzPD<jl8TR+zoqU
z$E$nC0~d>;>oER=1PYGq?p3U2cO`Q`u_1x(oMwM4k_#ol0dQ~wnkwjDZLm9-@56(l
z<#%?f80@ANAAP{=Qcpi0&(~_OjLrQ%vSuM}sH+96Gdp3G*Eae><?DXq5YH~@tOJeN
zC5kylqc8Tud^(`zsLbsi5yuNwuW={eK_TK4RDaTYYT1pCkC($-hQnii?>c8*;B{E9
zPW;c1KPMA*T>wKlb@W>`ATsQMHemXbZeuETe4y8v&MB5u+`*9<5L*7y3%0EV*j?pb
z?K1xpp7b9RU+;xyRNF|NoAKJ0MFO)v;$s68KBr^n?Qfl@4B8%_oo{2$(#BoZ)Gkk!
zq9?qo2CS1Ps}E^*Mvua<l?#p*Z(6JY{9Y{NC(x7#ltD3CK`hjO+w1fPI3QCUt2lWW
zX)+el*X*{OGeElZOmpVEvHvUgIg$7-SW!hC)Fq&!p}&jF^%zP}Nl>HzhgKZ+g;H46
ziO=lqBF1m}Q<O^!t)Cyh1a@xXCv0r&#orqNkkO&0Jgg!?UBS?NL5m?b`;(#!ZTlph
zA6MTQwco9JjZ2dqo;-+zg)()9HJSEDt|r@15k6WY5FAu>zk1dmxkmY}`;)X!U|{Py
z89>_zMVeRC3J?>1YnOoTYw7=eV|7<zv1obZqT7W;MCM|CJBPW^azfm?vcs8Y+5z>A
zHOS+U?mKgkH?(X!7sf%QrK@sIr$Ho=er4n1ON8OG2+$4vz!|@-X=cJ#^>JB=pYNYw
zf{i>FQshIq1J7w;?Mj2>?qZvp?O~{_ui`s?6G@AJae*hfb^|xnWgAqA!oL7gZJ@X9
z^5-^}7(4uJsDCH1;E6+=bJ!7f<Nc_rvHWX#{iDTl7Aa`Xk@!6M1MeiTf};Pz759Ze
z$cH#2>?6!Ao{yqZrg%?BhHs0utJjODqgye83|i+*(fVT0lt`4>-gSIHEttpKMfDME
zgSb~rF@tLomD6YpGOrg{l%8_wDx4h!ONb)eZt$1u-h8kJ$1V*&IVff$TaS>Y)=fbn
zC%wHQ37vgaF+ZQc(2{<R9PLF@UJ{}6>_YI?v$J6yjCyRec>xFWPD=N4VL}Va98Qai
ztH3JLM}ogCP@vZP#X-m4Wd$ZL(D4heD;<nDG6qJW-7@oePYj}cW{khQD&i_ZEt}cZ
z-nbnde9S*$1mGn5u1pDr^Z{V%NOlq)|BG8AG(fVhs!TL%+;yJi-q6AINPtqBIEMtj
zSQ}Q$31B?~r2d<mMjltAoHr0iLC8;|Y3#D7XlU%wuP;y5ilG2k>*(5@<MVt@pZ%8D
zA9I{Oh-?5w;fcrSF#3+R1tfkuHy$Knth+WJk+t|=u7BTjq;>;>kK_UVYFZ6!zt;zI
zTHZ%QhuujIxv~w<o_qKs>#EjW3%AmlMZ2>*@D3djEO@V*8O@#Y>aNQ}z2j<O0IB9n
z?qRm;;N0YoadKndBA;UKY<)uJO0zEJevv3SQqGq+*d>Mm)XY^tl&Uup#0ZLw;kyjG
zonBlPsKfimf&o~yEoVP`*iKz)o!yb5p$M{sM5JK&q@m8p=53=}CZ`A3|8YIQHNv9>
zAsdacqc7Du+VUa&YlVG4E@|+Hx~zsTT?oKQH<*@uc@BfrSZM8J<W>lH11e_GrVwEi
zjm`%utpK941NfTME6fB{HlarQM*+s07ID)_ng*qv^qYz6ag#w1uKeQep3aSbPCw~C
z4odtE#ugSOnwt`G8m%~dLTTJYVa&YYsScQ9qo=_&{7-w)n$}Hg1ZRPO!O_rR9c-p8
zIa^&^YHF#|y5|kqhX%v+s+omOtJ~9+rJI`70j&1M(R5$Yk0)bA3Yk{q)mpV8ehSzQ
z`P@J)*@R;Wun_sQzf_S>@$GM6;rchCFBcyObOI(&?z-?-1GkukGb#TESIS0;s4y=y
zQ8ou8E+$)vbNo;uOgQ^OX-Gm{{z|z68R~L$x8_%fj*&DpK**SKc?pNXQzhdugp^c2
zPEgEeR*?+2BhxCzV%M1r@xUS?YM^DB(sbzj7gY*mP_lT+fZKc$|7D%2w5n|4<Q_Ws
z&_>y}*E=z+a9}-wT#!}!5|E#`q8N<vS%%((r86XiZ>qq;Atg*Ldtcn#C6v{{!5(}d
z-|>Ll#NDsH6V1;rpzD?@llhg%@l#U7IIr;I8n|>;x7Hl*Yt<1MrAxKimR`6lnL{sC
zX;}$6`(n~^gAZ!a<z7*d>@jShvzK^ksB;$szfplq@My##M)lRntI^jgyZelYf{qd`
z64b52eWB!n5yS22vjktCs4BlJ-fS70C?3rj%IBHQj+yLg9D7YojS^=;ABCAR#O)*g
zLx>>-?P|W_okQ1uu~rwOgbGKEjifT9CJi{{X_ckta!J59NEWPT%u7fsijtVAL<*KH
z;sP>Beqd|V8Ry5<4WgGV@*4@b_7qBg{=5=@yTM)egcVxD;?{0e+EhF1o&l0t=OO|7
zw8p)ck$-mg3X}n6uZTjG#(okt9gW-qG(MQqAry=w&hCdO)i5hL^quYPk|)2N15Isl
z@nDy-+ml?;8Mokwg<#i>jYF^gAGX~ut|{ny`lJ)R1sHs0r%TP_)S?<1$wFVC7~=p$
zIx}G(9h-UM=1;OnLdtAF9fxb%(o^cKd;A@I03cm8K%=-<fD|>o*8QRB6g|72R?ZGH
zQ>=aM?r^tuY=Gja<dKg(ptist#;x7}Vuc2`-kYPDZ$oCCo;UH`&pV8sDrjc|0|Z`j
zgz^dsAKW#9fj;aBj(`S6Ckr9&11@g)&nBmugINySWvX)lxO4%Zww5NKWwF-5Vq^JI
z-Kcy&*Zei^8Lrz)NXe9H_r|B0ZywcYJ{172>|8uCb8Ae$!a+PYc?NLA_OI+K(FhoU
zmJ}-7?&mpx^Gk|Cb*Qz$=|48xFU=r(!YHp#k=WGs*U314$yfePW)y-ZM@F6!kEbvw
z;4^uUl6OhEe|$J{dF??jCNLI($op~ddq7rBE)kAYla5x?HZdp&3!C3FCvCrf+suC?
z!z29jVuLOa+!R4Zza)6d?DpVkH=pJZC2IY@GrW)ibKnakgr>!x+X=7(g?)adzG_KH
zvi2q|sEo<h%tTOSPa2h~5Cb9y+_phk77~y&<))47Gb+i}Xh$Wa8yCzfRbsI{$|y4H
z3*u#UPB$hp0K<!6FAzx7{=W%c1*x3?w?=txOk+>CYMl6gC3vA^SON#niB!&Y&Wx5#
zO4p`S$(U}u3(+f3A!C(2dlW-N%g%Hm__gj)Yu5iRPhkGWVGU6+EYVC?yfC+pLK8E6
zt`b$#zhG$l(@O8HHMAjZW1Oh-PFE>m8PX#mA6vi4A8|q4_rsZTmwn5OCx9AQBJO;?
z3bTPB#)mAAoi6CtwQ!tx1oWcz*P;U$wOJm!*d73q2uX0gUU>mP4~@MJqDmHbwkh!{
zoLOHme*m;ES>O8&=#x?u7hm8)onvS!&K2hb9OM2$0O+R#Oi?E{s-s{=(b!;UqhgN%
z1FjGD0I#EY2Nu<UnApBAXcj1jR6n&k?#TGxNjHECC&7|uq@^8}rfSH)0hm8%^_plO
z^xN-wi|`P<mRyG{1)#KI8hY0%Nal-+i&s+Eiupuch-4KlPI?n|T#fNM0w<<*EtOcV
zyG`v!gpl)@y)3UPz*l!Jt+sj1R~K0ae~y)ptLwZMzRqHj1pmbb06$p(8c%r!wXxw+
zU$&^8$C6F+P;W4N<Hrvo!eInUy*g8N8Eb!xOWGm9DOT+OLz2eVWuC1_*6l=91<MGA
zBZpRf_sBWW8DMPB0UMNuyt3&QQk>-}6FK+m{@&fcB<-J3A3ZVHc$8M8^16l8zarrO
zTUi3$WF~&8HvBS8HSTY9+e2)xMgSsqu29MAo9{t0JySH?XZ<xe7&m8VNc6{!=L4$-
zm0c(^v;NLRE+0@FPCh>Nez;v?w~D{w)9&<4zbs%@gU5@Il~H$Zfs-xJQmyQumvC-g
zEU%(dJyDm@7A_O}d6V+|j+dN^WH#?>@zIE?s}`m?e)0(+L#!~Se9HG4WPakjzp>Ct
zdT2XHL||a;!jMT%b!&f?aeA4Ti6I@+&h!kc<_)*|jY^z6)GmGLLe1e*nk^ej21sZc
zUZjakC=WDAgY{=@a$pbp-bKBqflso*m+LT-CZB#1!#W={mv)z<vLxe;C0zEB9HdRl
z0*c>#c0Q#%d3TsAb%>$M0Fq3`5)KW|_kyCgjEhETn|~oUi=jfnsKF`J!bUZZBk#|S
znnoAxL!rs=DiF_#1+Z;C6m($Xqi`NhGrVMgq7jq%Rpcuzn>Bm{cF*e6Pk)%fFNK!;
z#(F#y_0R9=0m7XxBtUVHVWHKjcqi&CUX}rct}4VEm*ca&{HfX#O!LcxD3awQrkDqi
zS=e>H8gCA&CxYxgBlC%jgg)K>G4f{o!#oqJXmr0YqGt(`<PL)GdcOR1V?<M}c6VNa
zIk3C{EJACK&A?)Jcgvt=uIYDy^C$sw?!rM~aJi8y!K@+XGVZFMkwouz|IjLly2R#B
zv-rK>I*5#FamSvJ{O$w)n6X7&SSh@dyz)5*>?bXi@j$^?tRf9zKV|@@9Z~=~i%Qbd
z(V;=^-((+ff&H|?==UId#KmDR?+j3>x+N5#r{8z@Y%a2Y%H9~Aba!U+xVpS-aGyAC
z{)zMAyB#OlfK^laGB!T$_SgZzs!2=%s>u>@Z7z62{!=s7?S{TE`1AP8h{mxt-l>rK
z_CL*G^$+}$uwX$AzRYTz0TvjD0Eee5leqKW)Tw`wE!U~g=C2p7c<5L_(OCPRE|IKZ
zPL84eoeozXTfo8kusil5Hn&wG>#W5a6t>j3ZG!=|WXRH7VQ&R(IUF1)6F68swth1?
zG&Oa7Iu_GCW$ms#ZL=>B@p-j=&2nu(5nnSmOFeHa+j$jzMPazNFuqQSlKVyW$t-v^
z6!QnpPSRB3(*2{Ph5!t*ynyQ3>>bX<h*QCuWq5V<A=*e#+3bsIS<e6A!Vyp@sdT?8
z?3GtOXzY}$WU-)C+_p}(f#g~QoGP1aPb#87i?Lr`uBN&w(;Iw}XL)yhvc2C|rz{55
z7jUo{cs~b<l?`XYJ((~hEmC2)PR|*7-}#+5%MHJeP&_p&J@L#7*DmXr*tK=$S^c;`
z%56;weMFxPL2g@7>2<hRN}|Y1|9Q=AO>>xcCz$8BNpaUvv63khh-#=%nAX-Tx@ynt
z+vlLr7-kxmZXb`AZtHHH6M;_M(2e%c26sdn^}5>HsX~KylaelXvA0{J3$8Y629lyL
z4SUvO9DJ244g>f)dXT~dKjD8)*h)x*@V(w|EqWD7a~}OE*n73$0$dvPu?_>|@D;~j
z^q2i;iWX<#x1Ox5tc_rZJH+8ErgEKHq76`t@h}+gnQ=zg3HcCuMb{dKf13a_r7`2z
z+%sguP5?}U*vRE|svO^Dt`;{Qh+Df!3yeK}eL9;Hkvwm}Jru>Vh9M$GZcMlQoweJx
zqC{Zl-a2c3i`&+v^W^h!&vcE$r?&bH@FlfIIR?t+hn>(4J{vF4#0BL&5tRMa=M9IR
z`X8Skn!8`*cgHfzkDTvt-hdQ$YD?GMy0QCi($GB_kK^;V@2Yv_3*!S_fELpHB#lx&
zikklh*8nBk>y%q~ZGzIPyB0C-5-3<#cIu{mHE4iWVC;Ub`|eeU!nOEo@#*8*ZPR#5
zbhgi}HvMK)L_|I2?<EWCg*sCmrf{chPCJ86KDmErTKtPpzkEm8B3-sKS~6e%F6<dn
z($P^->cafSEJs95EuEdo5BkCE-NwiMx6~JKP*#O7bL{E*$?<_zsBe+33XRQXvDHkC
z01K<+$u=nQpP~pC_g$Ku3lsvxUsrJboD+s#8VG<Uf(1jNt*k)~mc@sRjY0?R7C(0T
zA;N|6=bB6AcEM@V;U!!t-CwGR21>~=3a8(<(%*)&)6*DgDG{blFiZ)i9@?(M;%Ij8
zDatfE#+siZ$lJO$oEYLAcjEqd`iH+aksf{)S9m!UyrR>$T^nXsQB|)L`3w+~<J8M4
zP`{RS-(QfDGm`5AhUEE6h)P+OHHPt-q_0--95u2fw@}*e#@Wj7+=bM*w=sXays32Q
zRZS(C%O^!Y$8AyqTrfMRi(L$CHj7vWm~k=u$@PO!fRP60kM=Wb(m|1&PS`4BE&pjR
z{jy7HHs<E(Ft9i`cj~8k4z3ev<n!CHKD4{~kJ*)211S+6;viI!eSl^c@#Tw*rji;c
z8~@1eOfgGw+FVo!T^t!51S-G;KgdKDfsiI5Chkn|n_V7h-CJEwhp=2<eXunfyRKId
ztRGv{Da|`fF0iZ2B_ZKl5==wymv^|t>{f}Vjlg<u&J6Kp0#d+ZS~g$#ip9mnr39p~
z9h8DTkIuv@OPLL0_vcXk9RPt@gpAMn$dWd3W@Tk%hu_ZI+dJ3jn>~cDyT+Gxi<TOO
zs10lwmyKEMZ53H4x7nMcxfE@pmYz&^Q`}R_qnUC_bq0rOLVSGsyWC3xP3iNtRA#kZ
zhc7;;r%}SafpuhIUgXS%hK2_p@W|%Uxm}eB8Rmtr)x(3x5AHO6Ef2T6d-raKIdbcJ
zhLl(N7EPJJazG!wx2vmbt}&j+ysMI}sWAu(T;dDL$A7(0d4Xg+{q%16HN7KRG<~<C
zIAH>CTi*JwC}_Dfo?X`ou>W@P|M^Z!<sXgf?6P`sVWBjHp{-f6GkIou9J#bFk)6S!
zml86bDpiiCtTbJ}4186#*#qY#73-w)CfaFkJqUJcvM&m6S&y1iKv@B~m!BQMD#ilz
z!ad`hvJ*?tWQ5=7<DTbi9A!G6v}JDcmItu_^F!jwK@-hHY}%UHrNUX?#@LSX>sKNM
z1AbqPSk#jr<Ni~dK>^qVIq=CxcV`N7V?ha(34v->2o`I-O5+RCRqZ&2N@oi3+o^H(
z`pLyyeLPqa18;xbRtXVk3RKHOnmjm^ed)ui%q|NW*c|jTD~q8ZWz4hfQj`=`&NY&S
z4V5oTvf7|{O7Y3D<M?arWWIn6Dl73kQ(}d=7rp>9Uzi6Ie6IyR9L#A=PAt}Y!sM$y
z#5Cj%#G!D6Dt~5CSbf(4%#q5sun{Prqxy1MH|un>JVK(>lMH>c!rw5%6_hojUs2Ik
z_~-n51ci%&mF>v1;(;Us6)QKb90W+e!!SWag8kcz(iboSnhT-Q-iGqI{plEMDr%aL
z;|%;EjTZA{vHpNdtA`MKO?7>$Zmzbu*nZ*I4~!>#IU6{Bw*e(bL|3077tSyJ^U?ht
zI|i#MmPRoXir68ZrEj1wiHCRKZ+>{bYqQ=_3tY|Z+5SxzB$O7^n}<^k7j+X9Ut~c_
zOCEI@getCL!Z!0+NwP%tXMBR2{D#5eM78h3;YNar|5UrQXeB`+;l`s*)VTJvIL=`{
zAMRhjKPgz~=1Op|>Pr6zrS)6e6kRj(0uQW+DdvLr4a`Pa4OP5RD`Ehy*+16o|5=9r
z{o=ob=+DQTUC@z5Yyvs3WCMTc{vVcYi3up0P|%hqAPlC}`!)rU1=OnCwiP0)^l5<6
zfJ3{=jP%m(yM76AchAHsS(X~L_lm|vg1X$R_~&Knl#SO1iB-hP)k!<Q*<pXJlHt-@
z1%@a2U(Hx3TN0h#lSRHA`_NnOm{H7DtF35{=j3T<`f^q?3-h*u5tnu@d&X0So8;jx
zApUjN{z6vh>Jfrc534rR-94Z(*W-LgLUG>-m_V<6x!e+G7sJ-O0sQ|k%YUEx@0tEW
zjSy}hn?%?G_0`s}mlEd!{_C;+@38?#1DTCr373{00M<qdsi_OwRC=_e{qKmUPC%uA
zO&%hf-6|Oze7hWAB^q~Q=<NU}E{?6|Woo(;TS@e|u~Dl*uc$q?u;3qix}hBC7(}u;
zXILF~W8i5?10a%L59g}Mf1NC0Dy*)qPB&Pp@_64f_1NGptDC~Rh#|u=zkgQayE@mN
zwEgh#@F1Neu0FO5X^`2}M@7vM=`G4L`QxQKE+MqqUOiKSJGC^g^KiP<MU}^46QsY`
zuq33#Cj8^F7qOOL7m8i7GnMh^>iS}^((5Kd&X!F$5EIzQa_Ue@Tpci!4U&<6V7%84
zY9ravab?sp+v<oTUHPQh4iVqxKVe{I<0Se&o|wOnB^asw07=enT+TL(G2{TRtLjxa
z^S?i1-vu$i2X6wue2a@C|LRNg*ANElnrme#F+|2FPJIjy3!AwFEa4T$1$dQbHFtzQ
ziakoc`9^9~EEmm)w)^{c>3AXHuo0E;-5$-wR2g*208nWGt!7nhdU`sMj@d9_SWKmE
zb23OO5t<m)!=CWu^u3W8g%1$u=@5p^bHUur-G&${wf7`Ck_R{*<588oFtvSf2qFn0
zF$OAD0EO!7)YKFe3(Hi20OMb4=R8J&NHVsEk*=BvrcC@<<&%$t<o`AddqiJ67)JQ1
z(Xv0+|BoT~v*|2L!>s3yudPMk;T><k%Yjn|+WEpq5v-{03MVORf6R$d(jGw(`@x69
zUB|26g+~b!KG*0-^Ku^NG+k#}Q%0eN#we8})ev(l#Nh1UfMQT=r?l4PQy4&sj+2m(
zK+VIG*4x)dj-njg)zuX*1uHJ;<>ghWS8q02qL9g>BWURmx4pkByKo?#n36z_fyW=1
z2Aj79>3D}kp{c0}bfk<cOL&AftOSq#Uml;oZJ=tFp!H-N!5!F047~E|-OZl=aN|mz
zpmiRcQ=mLCI7je$jvPif<ut0t6obDco9wffS*T-fZ;aR|>GZp}+>=&AXmqk<A12;N
zNeOur(6wBfetuUVO2yVI<lEm@`Ur=#Jp>T+Ve$${E4Aw-k^^x_6A6>_xor+1bP6@=
zQDU0%I)6rq9$X*%M#sUCsjaQ0Nf-U^Gy883_ka4(e+dLWg8#{PsHaDGjFh?Of@8s+
zPwqclDHARvkE!U0dYZvn$09v}Qz~lj6&@CmbH8mJLJ?#^dg%mN%EZYSiU1NfKDyCu
zD2{AEFJl-CTR5;(>0##OjqqG~0khG4WhejfW3YGkro(!!@N@381*25B!;t0n;Q{S0
z{carkJ{`pL!CS|=dTK+yjHW~OAcjm{1!`D_x>X>JQy%Eq8lokVVt8UZk<)e+Nvb6h
z<X%l|xL<Zcqh@DM@O?1l1=Nc0E`w5VFy}=K`ZzEcgYId354LUg#34<exv3J#@q^<{
zipbnNz1kz(lZm`|Was8>7C~XIQ<hh|-8+GfXR9{*#|u<&@2lviSoa6xm?{Mb$}%(X
zf~HIv{Exr->g(~D@G8afIcx^mKjGVfRQm%01B2Vo5fa!8{+F@-TW~}b2?k=h{t1%g
z$H6oIpXb&3d!Zb~h*f8XUA&va>2ww+7V2A11nzlmm2oqED#kacg{AqSXN?;jRUHkS
zmpZq?A)UGNOHy9pFUS18P~`mv6vQu7FrlgFKCg+=+*iT3?*`)A73qhE<chBo$>K5@
zBPtB<;}Al}y(OCVHczFsu`SUtF%)hU#tII1;84ls=m!kDKE}Uoc`5$#zCj9)C8B?i
zGacvc%|}H|9p!q$BhzU8q?FD<+&goNC?h46eA*O)&#Q>f%aH^cScd{f_agUyPtYMU
z5JOn3QTbe`vtwL8pdw-RL0nuviA=)I4(amRIls;21@<Ns>4@e^I9g6xI;Bsj`{`Ev
zmup65X5o>IQ^3~C-5O&Om1c!jZpaw%zlAXW+>rnN*B3}oqP5k?yB@iN=npjZsQ>jv
zB?6fHYwvG|3XkD@yvw=-qfY7nwZ93~!pISxi2M2CiU@jZbr06f{HXsOQjIfQ*U39e
zRafCrq+8!}>AA<bj(t_(s1Nn^V*ZD5VtlHIW<r&cvk05V%sGiUwE3m|Z7i8&Qg&v#
zz6D*DZ)2%&M08?mvcy6vwuv<(8DX#~%#=}m)l0)AAjdBDyg9V|Mc@k_kC2*{NCXpy
zooK(q@<Sry_ocd*C5hncrFfeob0nWPgw%|vFfK2z&4P-+aEY(65$b-r-E4feq5Od_
zFE6hoGQPEn-m=T(-5sh-xHOOqgG)OvH=iZay}MhsJity&O_jGadePI<D-a<cri7gt
z`jxUpO+u3F?PCoWpWkVpYEwO<`9P#1(yDw@zUUudEF%NQZao_boUVbnGO~(_m^+Bu
z@<~7c|IdKXC(ydQY$_RVNDy0mJdU<V)Rrp~?gq)|>S|Z-iWfH=ru9N^R2sqeCGhHW
zeB(eUM3b5G^Ye6@Jeg_SiwVBV^Gfjz$-Bv_nKkvV%%#Ez87!e`uBYW68tqp&38zxu
z@iy%ESrvR$!o^{`xezJ$^PZDfY;YFNbygsfZ-ha6QeVOI!Bsxbx87zVO&Q5atT|CP
z8^q^vMn0vZ#Kai~<WZJDmL5FC-SY)(x?G5)XA}~bRA~m;{bUAuP%}3B+I34p04SqS
zZe~sKY?P=L7qR&~D*3QuueDxL`P{7#0$=sFn5}3BQI7;h6YwjRYp9<*VVf5pUf+#J
z1xIXJH9RTd$onwl4a&E;IFOc|m`lzjT$S{-{1#81G3R+?FIt!MEyQirMz6j1m1#du
z8Tt93@^T*O&n0r><mB|5)9JT^_kx+~Xo#cT_AtlivL&U}D8BNO8!T4&=udNHKPXJw
zqSNHO=AMN(FA+|@rKtY$@_jO(4TO4BOp~`LfBDW#aiUSKq2Ja$_KSVFS*^J?>1ITf
z9VV&jk(n?%O5R0UM9f21x3(*w-(qNeN@ye6n@<-C5>i=9>stl%56K48%C3IZl<G(I
zlX+OjUBH=+8fZg*P8V!0)j3n8uZv6-OkxJ9oi7n(qG&#zRhdH|JBNtQxPax)3+Zom
z^0Z7{-h0&ZC-)GFgUR5kDID}3Gx?tz-CwDtf1M<l2;3X`)y+*|^Qx!p*cy;Ahdtox
zmR&NGSx=V;6Q$ojJ;|CP?ik}HsC=Uf;H?dWMj9Tfi~l^B#%?_Y=!FYJpoja!zcprp
zB?tqOEi$<_s-a)Y%X;CFkp;ltFh63J0?~C)^-iZ*^d(j$Z{I6y<D%>Bz(hy!-sXLm
z7=;%$q-=mh!-J%85z*D@r&N?HW9^x&Sz7P7o)9GsF7LNh(U;0Bw)YLPnq2KxkP*)}
z$rV#e4)GNc4KzuJi_<L79h_=1wBA0dld+Z2OCsSkQsTPf{5)SXL9_8Z4w59LBZ}dB
zdp5C}<kM<7t;p4<%nfNY-a~o3-@*{VpzYJjMKEfvJNwk}%g<9kUV|wSgSL4pPyFcD
zN3~`*w6hNWh%}B$&0`s%!q3b1DG~IV%8-lAc5;l}Z1P8^spf)cL3t62bsnId-0x<#
z3=GlYsCc-X@AD*xB_KJ}3HytA<JR{#H_6cVyvZMqMpC63+X~?%qxUIl-<NG^?!ZQ$
z325ua<JJb)`4Xred-`^4({w(m*<9M!=Z2nL<c=r*z|e(;WU0<58u^xBa)u_?81hOO
zOb=$+bUd^UEQ0uPab;y?imhHBVcRbM#IVS`!KlHt+Dlzf@aMZjath1cosksv4f!=6
zlKkC=2a!)KjCUb4MR6n;{wl#`UvxO^BzFS8m5ktUqde>qR&1oAZcBVCD;7z$xK-RN
zB~>i*y*bH&lZyWQgY@HxcE^31UI0poC(Q9$SJNS4xMcr-N^<{xCVaOE1KTw|f2WAt
zO`~XkeQ}Ws$nHdx0=L1E%>epuf4{ftBLF`B2ugI=tWpXN2oes2lFlm_hW_<CK39)F
zvz%QWYA4q=tOIBh<gcQts{SD~Qm7Pp{`HDet=fZEdtmfeiq0*TUfH9Y=O-$5o^}t5
z@&)-4C~Ao8<a?xOF0T3Cb%d`m%PabDxnLRVDkx+L_2#4pcWZYaXq;$ag@t{u4+1Dn
z&}6%ogy1n>4a#;i-YvyCWpdOhJV%eqsyCCs0lm;eg{m|;jQU|#@6fRzbGy5Xm!bLi
zBDqRQh~g0U*Zdb7Y{j-H6X}UhHEug!UzXDG7)7Dn%mVV~Er8=Xw!A!H(OW|l8N56`
zs;j(ssAVAXfVyjwncVPTAi^oBxw&1=YK0~UNYV<&n{d_|kFZ)>vB&G(q7EG-vyo2Q
zs|8oQ6#c#q^h;MO%Z;#?&o7^1SB=eBD!B!U81?Ub=E41>KcrfDG#oW|khIV^xKPV8
z+BVnT50adYS-Pd3>3R~ayQ`45m48&eER`=?V1ZZ6<PoRWX&`b6Fiv&(j`$w}>A%n6
z-(qkk2#haaAlmOf;H@a$Lcfl?;IO1D+rUU!0htF4r9ro^J`0;LONDB2w31OB%CM;d
z+sE%<I?cBFaidLEGcvKb2nkE#7$6T6K`gL9UPdZ=cQ3DB(xMIEV1UR>M)2i2fo|Zf
zi~?f7^_f^-EfjxIbqC7b{Ya-5Nu&LfDg{@XP450xvBeB!wPmS($eJXF2F#F7uAkC&
z;2q)2ppLz?&+|RxV#C81wc<b=-Ri6WvHfEua+Hfh9{p%q!<GR#zI&%6T+(G}-`CbS
z_peT!>@40%xZaQmFx!hiA`B93`6l&^jNoiuuk1FWIpn-!l|p&ktSEYg<f&^RLe%mY
zge<0UrM@eb(^@A<`w%wkdY`SLX@q7N1mT*OCk->_yBvj3RJt8c^qVYr0~OaulR8NP
zY<;5uW3749$1^`oi_s{oRr#g6MzQE`L^Yx<XSWy(M@aYr=J5tIA9m$#F_6SVlt&Gn
z8~gioyBOk%qHp8L20nEzTb?u(pw7q(bbfvQolw%2PwU~DrosS{#KgpGv)>T;`m-<i
z?||X|5)k{Bg@d_!)O2+44b7EYf+Xdpd;mp=<9AObpf`l%?d>faP?nW;L_k28HpdL_
z8)aLT?_*(MA)~HS$_)sbm{6jJXQ;{Dg=}}+2`A%K$QIDA6Wch&`K*l0v;fSWV8@lo
z3?5cYI7$m72=K2AcC^u75RsALS>Zn=A0A?+nXl4s4_)<pgT`Sk!p!7xx%l8o^HjzW
zZM!`?lB1DU^XAnSr`p62`OCL|IgcA6Mu10$)LkE)Vc2}kThr;F)oG8pbRV{{AEmE7
zO|x=(heAGbKrRYr%#n^%(iP2WL}F97@O=%O^XoIbp_;!kx*({8k%t=_W|<4x$V<d@
zQZn{%bF&I_4J?I96SV5P)D~~n>Z&*VbKpH&iCA&b8WpoNioSQtIgNbRuZS{u$8FNP
zhs2I5`+<y_J>1Jv*3b-yw1iAAFjK>By<ufc{pIoT7}v8^eP`k^)Bl&V_HQ}J|DBvN
zE{NeiS}u<;O^*OlC^(KHa-erh5uk|KFsN-(Qwy?^*3n5T%v0GwIUWP}t1=1-MSu-x
z#7^w~u9>}N=>1o;A}a}QZf@t3MfTF&l3@z+B)L||orPgc!2Ptdbgl&&&IQ$FmkNJD
zLu=#rWFZuy-?_Fn!NWU>aSEht9ng<~Y(dXBom)IP{<E%ZJ^qgU5r6y!qgPo98#io+
zY&Ao<u&;S5-3*0YcVl@I@A-#@W}@=O@bWvYQzlyj+vN_IZQ)4?ef^K|GpR1GQ5KtR
zTYqe{Ki&WSB3*B~x`wMc8N3DE;21qtHElT$vYM*p?7?Ub)avqOPh$wpEO>{jsj^*4
zs<TiRHf=c_u!x8!AK)Qp-Q^wQSTC=y!0}<J*r9keF(Fmhy4!QjD8(XwE7n1cvVpvH
z_B!wW7bf-dzQE%33PkRq)q}T5ZLXut@p5Y_pMU-Xy)IH}Ebfhdm0qiSw-yxv4vv^;
zh;z};sKCL#m887<t%JeIs|J%Hs8WOSYNn4u(77L%geY<=>TLCOl}6KwY{P}I>UU?S
z*;~@fWJ-Uu>}7B}QE>C{$QV5UW(EzOk1&ZYXPtKjsn>vJG%cfE_%k7&JCn=)gg+lY
ze{fzQtA3|v(pa{jA|UE2Vl^MzPjB0Cmy&`3>IjPQtC$RWQY{h(m4IQHBb~Okb^xeF
zDZB8;<WGQ<R08k_RUEh|C_<v~c`2ma1<@BNbPC}j=a-fy*M&1pVp;^ovtHsPY^RZo
ze;2(A%4RR$_o;R{LXJvoy-cxTv)m*qWm>4VYd3<8W;KtF1+|HWj!h-ghr);rZ3J|{
zat?5dz&!zR$m8{ILn`Xh^B2i#gUV8`yX5JbPecpwMvh`)2sUdDK>)qd93}1Gcjz!M
zSaD3kDm)5AA6-wT0-m3(rgnZgG(7KBn#h}?*!G>F+NKNp-d+YxIkUGpQ%8@%aNd+_
zoaEf!U$$!cqweyfJt~)Q#khw%fj@H7Gd;XMMX9X(-V6^Hb92M=T=(B#!QF}o3&YTA
z%n^Ra8}8MxxM@J2>3SkycHs@WY^r<nerD~w??rEg;hX`)<JC0fGC@sE9BdAoLROO<
z;4@`A;s*z*&J4$>fLyH#6=ec(sS%nT^{@mSe08%Uo^*U>9`p6J{hWJbVL|ygTfang
zplF+1&ykmxI~>Uwm0IrlVc@6FhbOfsd@$8LkA6aLdoq8aGCIaPsF%I1-aGIXs7S&!
zNsQmUzl%vNmzw$(>l$IIMD=<8WRlM&ap&-xTnoNIujs=y$#VKJRr<2=w!5{<x_H*}
zc2(qLzZG(cwDBCczt2T4>)DuGK`Ua-O{)0qT4HN+QqfSPA41Km_O%tN$|wl5tE1vg
z7Fp*TB-WgHUG3Uga`P?4)D33gEq72E@(HS=$=tyNwnyckchXYRF04Cx4=46)3Iy~w
zp4-(b?u5tuJl^gKMxv^#tK0DjE-z<A#G4n+s-{pRAe+8c?Qb<{=i6&<^%yoM*2|t2
zCGSmUrBrg&f#ROF&y5tz)u6t8TORrBczK;uaWtg1vZ}$r>*b+jrb4r0W}?FGP~~`g
zk+&^7iGI73?fAkwmZ<=XnMZ|WEG=97U7_;Fi{AT!8*1iF)Yh=eub3o5&Dx|3hE|_5
z==KixL|ZqtNAnfvwNIZH>FYW_BuJ`iSmCrn&gM<;m!rQfnI$+hr?aX9eU6@H68%K^
z$Re0G7!99^D;UuGuN>>d+oJS}`6i)<cg%NwM|J28kFp$#f)mSA^YTYI_TLB++M@N>
z7e8Vt2)Hl7X8hm>`&ZTCzc7Y>gfIX0q0l7EzP?(%NfIU3hfW@{A;z*u?o_eDzRbq%
z?(U4i#RkiSqV1B)(Z1<vHR%xHw$RW}GO@#7U!+P$aB@|4oV03TKyXGnXBVvSE;vpb
zk>UZy^4*Km9`pQl9dNZ^j=F)#_=B`LRT5-JEYAkgde5g(tvXNpzsfc6hsWdq+Fg+{
zq9P&v_;0~jof{kxKe|_~*M`U?x~Zx+{q0SI1Rew&>!fuqi$lFbF82(*dR0H0nc0bI
zTT#!)qnpLL@D{Hp<&`3vlB2<|4L8Nr7NeMFB^A2wg=J2BQ~ZzXe13??gms!snawFD
zlvwU{v5cbjIE-Xy?zCJd33=Mgx7EuTp5ODMyB!1wwD)e^1`y>`eCk`I(J8Y(&2V6|
zQgch-A)@hz;gE?f+Z}n)ip{UGde|DciQ7h@&n2455eC~RZZ;n11!Rr-&Y*z`Yw<0Z
zIwF|8cTfn(pa{fAhKBnB=>!nCagN?<w_kTM0Xn+LrkReZyN3sCfDW247>)w1Mnx=K
z56ziI9{>)(i!4eli~t-ta&W`7T|mm+a1=uxutgffM>0@Yy|uL^N)Pms|I`;U`CCzt
zUdq<A{I>9{oa{n4kjF|)xaG7H`)(|$_H4yP6UpXgwqik^zpXj`i9Qhw<3Wt};|FZP
zs%kRPS;Wg?2K_YEH{TO^8PLo{{_ZHw1Q1(W9w=cxuLnw&N^iC4;E)it<VFE*Jd+8E
zJ|wW>j}UjOzYRB+xEdHnJuT2ZJX)<6xCE9OEX9DHp&@__yQGkm#d1oh&F_&ZfsO9|
z!9%6pH8;q`{p2P%;NGP|DOFeci^^X8xEz~<WVAp!dpYA6>B_;(+=r<u{p2SExJxuH
zEHwe)FyEt5XxO6?1c!{ZoZ<T(Xu%Q_Y*!RAJ1tMoWU?OqyJNAhy5j_u<>)=Nw)%dL
z_kvF3!W!>e)(OMhi5wZ899VrGcI+PM61bX<t}R6ypOBNVvG!@l$mPkK7(1VnWGJqi
z&(l4CrQ;5tXIyV~v(5chyyF+{v}Kh<F50-3N){e$z^|K5sZGWeP{a4hyIaJxuP;A>
zjBAtYVLyL>%tO@>`)ICSlC~7$X{0_IgXE(82xTy<2N8mtSz~6vH*l+}bN(#b+sa>t
z0X_QATFFlAXKL7p$iokEy>ND9JV>Nyo@U3~PDwbl4En~nOypAX_UR+FU63R%rKZ({
z2iw<73DmQ)rTJl|1DTfDY5^A4&vw#AH|O>k{Xg+?9ka<}xRIOOPIzbpNUl)!GLiou
z#@;fht|&^k4esuKaEG9Q;O_1oJh;0BC%9X1cY?dS1b5fq?*4Xe-+pzw-|MQ&&s0%V
z1<u-Q&pE#Ft<dooNuuse!v&0I{Q5;5wk`#k<mLT2#GLeuoNe09)(o4wbrE%MfI$ix
z^6F}4BQRhqRTzv&d-Q-M5)4wt^l4`|ZoJ>5fu;|?!J9@V7DU9i25C5(<hYALIW0g=
zD)l#zH%xpgTSd-I3mMOlenDw9lscX+w4Q!wa`;^gsuqnx{>GvFUPqx#$NN(P<!Za<
zE5j3~ohU5dF_d(?S=KOw1;)M-(_1^+z6piO5@#Q`<>R<{zt4fG!{#YP3f0Pgx&VM_
zaKIrAe-XFa_b<WqM|6EZpyh`3)>O`QzmoJB{r8RY|9su20S6mr+lIkl6KN`5hJ%U(
zq-bFye#|Z4AWC7q={4)%9r0{_Xf?bN7U7N>uGw<W2HW)&6C*rPDQar!<$q$=)V(pr
zD(;DDK}d9?`~p_c9N3i#kEc|~kJ{-2rGpTLbG^2#wR@KB;)eR7Or)2153l>^iTJhD
z%p}qz;#}8~XJRf>WR45Y?)FieI&YKJ3&#r1M%Vb?78YBUZ#l{CMh{e#VU?L3*b3oY
z!Uw_dJ3W8Ok6z=t*k!$9vV{VR1#*+h$A=4WKJw!TYDh#gxFjXqDvJB*p_TCxc@Mm6
zg->ykypAFL74gCdf!ViG1SPzIr$w2#ZNIPQPCryBo!h>2K*a^H3gy?k3>s;%3svkF
z?t07=u%lSkYfG*uEcY&%(_%YlC91E;*rV58Q#N_IKV!u^xFY6@gyis926|?O#ZcFP
zT7q)ZZTwusvNpvuKwE%7#OJBX!#Na9B%@M<JN&!M+BEo|;|BP_oZK$QiJ+9z`0xZ=
zjNy9{pWC<*&eF&l&JsI{y7MKEf;o|r3ZLpq5Oi;jcqnk)U_;y+<o8(_b$9p>+*8{V
zuXkc$RY&(#<#~RN==2dH|6&GzR|^3nFS9R(di@RbtK;Tg<e84j0rf@DR#sLvj?Sm1
zCd3#cxJVw4Os)J5Yby&c#0RE-@9jllHd_bTa)?e9(!k3lL=n0&zgnFJc_z1kMD_O_
zH0%1!4VBfN_-&irrc~6L_2CVeRPxMX9cCyvMVJMyfTU_SCkKZJb})M3M$YTuk%i(4
zzYCqPSuj>cLXPX<*0=Wa!xJ@U!j}c}Z2r<X0wLT!S8g{Z=_=}LAqGO0yk7&kf6`r2
zC@S*^5g!9`;9V37%MOoByM;J%sJld@FigML@C$~bgjyW%#p+#jZ6+cj6w121L%)ws
zWVRI)l7C!oJJF3%Knh`*&ZDf>P(Y)9PNX&D=5BG!z-5DV{;gh#Kl96OJkdesBj+pZ
zyaJ)Iro^{$M3b#SGf3m4(BD=%eJp{GKb;Dxxw4`@6ONS#<dm0&v&>Xz`RXI@n-+~)
z7q2i@VznLJ9&<u1^4B2cFwk(e3mJZ93-%V_u{sNwI;5E6t1%F+Q99#Mj2O6w@R%Da
zE^>Z4zp!&(5H{U2e4$a!k5UZlZxIT%(5Rj+C0SHdRz+Nf<51FZ;FTsb5}E`s4#lJ(
zI<m0X#%SdDNOy~3rMoZhr%+0ZLVuUT&%B?ymBIyl^y`)78WCLj@xk5;o<#^~QkVzT
z?F8K_b%mPti120k{|LhtjPTY}mtK`AHe@GdNSCrWBx2&paS+T+3!7i0=h2=nKB*GX
zr9kZ~@8;8-rC$M6^Raw&P^B!4v_fTmyIK^V3tGIXgbuf<t8&3b{sW5npU;i|_q`O?
zKM(Dbg6N;5-kUll=!!#6HL@lk{2M=|2{h-i7+Pn@Lbf=px4K{tEdf&J++$<<kr<%R
zyGC=6_n%<9mD^^aB27`JOpMKJJXTuw{QO)w7jmC8_-Tm5FI8iIUs`-?bl~&z_XSBC
zOuI@x@q1)w;j-lKl(km#M%oQqF5slVd`Oq|<93_3bb{+R4kx(W%sfEnWV}96xYDG6
zVp>P#8C@7x(r;G(O?EI;;E|AM)3mIalFc^I?^oA{D*4+TE?;FVx|yIohGUhXqVQLz
zZ^a|{g%tf`cOk;$YrH2&=lurSjS*!LBUk77#Z%A09}DIh?rYS)J3;oyNpEIw4*?|n
zT;rl|S6Sv8`M?%W5^EBz?(cMUc8Ausu_}>%M><WI-OqT`AdF`oyGiuDGxo0(!_@YF
z;J&nSNocXs7~h@Gi<|jda~S{S*?CRQ!SYe3$raKXpP&Cp?EA=c<cX68C?`_{`tRrr
zyQ){o*BA*Te-G17SnG9|#$^;}qG9umd;oz!%YrW8jc^)x8I(;A{aW3MO~~s$MZwI%
z5@$d00XPSOc^1DX@Ww&`eho4>WJO)wcJ~@7Uoqx6U{yeFZ)ReGnn+l!%Mve;?Y;wd
zyxG;YL{)X|c?)Py)NfH6-Ypk70bir21c7d*W!iu!oz-SvYK=f&G)WhzZ_{s+JS-s4
z)O%@aLS1ir6ddY9SC^2oW=Izf&7|LUUE5OZqO+~Ze%(@0KWKD6zwV=wcFO-2=9)Z_
zFgJNcx0#XOcTG}r0Ur&mInVb!n7O_n=KU>|!aFw#IQJwMYw0jVy9|O(mH<;Iy&kCC
zIf&1zG4I1`-!~0XZJ0XiRW#cM{lj(phHC6N*kke|=KcAkAo+Hj?ZM*eBKchi(0{1w
z_<Emn<(jSNZP@eQ-1^+!vSnL(B$IJia>=kBWVGA_OIx(77Z`N81~&_Oa!mYzVv2Nw
zZQ6_q4hKzy_Jz3QCeb%p*r=+T?DT^Po305qLSES}^pQwA;ttMM>L3Vl`3Oe4h1ky`
zxy^e9jvY7{2?Xr#ucJz*Zel8L2DOsU-Q7Yvl1avXyci|HMbiXw`aNH9NJ$bg>ZYAE
zEtXd^&87RxxS}!}emoq1!8cT+|3>O~WyHY8e&WM;@X&B!by7u{E@n@p1Yg{YEthrO
z`gexVMB_A~8wI{V@hUQ+&2}Nc5bcE5W0XMI1C`c3iSH!0&E&7o19DD^!PBVX)M-~!
z=oQ-GRH<{_+73=kCI_m$(#&S@4^>TX4lOdCZ8GlX;P|LOD>$pf_N5ww1DP+QT=s(E
z{Vax{jC6fF90pC=bBsuX_U&fn7t(uf+zF1qw!M?tG0A7!<lr=vA_LR?WMq3g%Lbgo
zsC(keeqf~+j{{>=WAoOcow%WriTebIXN>ELq1CI>+t|csWSsctY`J;v5W5T|Znvx1
zrarF_U`k0UXPLTYdbDcl47hGV-Q}&g7_u#8$-5Z5yWZ0P_BUbFwmcgw;5zL11%9}>
zHsG=8abCg{lcaa+9XsTOB~~zr018#XVcq=y{tomz`V%CKkaa(A#H$vw_MM}k85}I^
z6f7eyDW>R_89Ql@<dhP5=n9!`Y)_-js#(%y{^&^`fJ%i+?F2}%gJD0bRh8D&)_w=J
zmDn$HO+8nu2>zG(FZ(~3vv>=TcwaTQ*}r5GSXSnQS)*2!V6~tff!OIZ1~(c`;>+zd
z+<5R4agqWI6)|Yi@u__0TW{Mg46!I<N$-*~?2|fu_P2%i#1o~YBB_I`^PQFzu1|)P
z;vbh<s-?(2jr!ibLQw6A7gRn@(i;IyBS)L9lb<Qn%J^Q^4rchu@gXtSw&ZVv4~nNk
z?nq`{F8IjSc-l&=8DAH7ckAym9$pWC@5W3Q@N4n+2JQHGrpPYKTeU-?5lBFAcW^z-
zeTN^7(5S{=GYJg|vD{T(mreaFBnD?9*|D8|37jZ6WMA^efk74JPa+3%b92Zf%YTCN
zg)`vD;3WNG^bG-<VX9H8TEBzNrJ_@KU1k{=1_2nId}cblu%$)<NtpB~aEuV}6gA<4
zztuQoM+Pz!VuEkWw-ns}1VN>>c|iYkm?k5~FdsF6a6qRskNJ~U9Y-(?Gcy%ZTVu><
zr+^xu?`IrGN7ZMCjSm+D3Ozz9`1|qhCPwN=K5D(`E4oIHhk2Ycp{WinOp3V2&ZmWJ
zar059>(qrrX6_Jj=kpkcf)IDjY4_fS+9OSCn}>XD2&$kX;F>ByFQ1_!C*%gFbA<Lf
z+OKXf#-+7ije3KIb~KN`Ml#WTgJ{w9iK>5IBnrOgP6RTu0*C8vDP?r5L0@TMeLUk!
z=ss~w84u<Bkl68EP@>e(<}w`xRbC9pELiM`Qv`H>+=N%Ml5ojpa48NlzP)Vqnc}yg
zJqf(ki^U70h2rOOI5}~|PIkvcbfz0urq17r6tmXzG81Vj%P^3|6WJ{x(<rZ30byhN
z2kT~o5o#236!^;uF%CW6k-kDIr0?86ge`+(f8~b`m($Kd@IrilNUqyE-^(=&t=aZg
z>k{+2wnLQ$<|1$pwfbN}dw+Ko0?m0v9E9Jd({n3+HFYsuFpYXWLJyN9;tXun->>n$
z4gZ<d@RbbejE~XHd4w<@sZ-BUeNaEU{kQBEW0Wx><<$3=LkqeqRe@3YmV@Gfz{(7J
z*Zgh*xb5FyqEQnKgkZDyeM;PmZm7J+S)Be#N@YPk0a5AJ0NGXfW?nnN_fFrvBc%jh
ztMF{tj^L(G)#+Jz6)5{zQJ80$AOQmdt%=oD;0zD7V%q_>4v^Q>my=^ymYF-DXSu?q
zWu?%6{_oj`A8L?WKM|aQQRBKNX$*`Sq~}M%fT(>|R+jMefD)aSAvjz?-$(*A!hGCj
z!Dt>nqq^gkU|$f8B<sN>0X2pio)u|oHb6wgk5bSCO5Ki+%a%g^<R=OmV@I``D%Lk0
z)Aq{n^#a9arBlG9$5}d0re+x_BF+>Gd0bkmy5}aXbUe2STMW5c=K$04_@f4qbg75=
zVEA=txR-?w*}$TSBujQ8=%_-UlN76b+qIgeNC@)gzl|n}9j9M+_^*-RlQGs@k)a)f
z6~6IRHfJiXjH5Ai(vNu`<HAt|UVL$xtO%p>2p~mnT3v#nTg^%3Fgrys3h;$QBAgP6
zH<?Sd4thpatxo>9O{YK#4kf@sJegxb&p6NKm;JmR%n)Z5!X=61DhxI<J6n=ijzya<
z=_@~?8z4;UHd7#_Y~uj*2U3l;0F@mn`TpS-X>8^U(TIy-z^DbTRwM_+^C*1{27f%C
zU@s5j&{2zMtOA{~Z0RSG9=>}5sq1G6-z#RCo~bCR4&C(IGqBAlw&Aw%`_)&WcOB*g
z;50Z{X=phmS-d9ViMH$ubTm4c_|wmCC?WT2AwPkdyq;GEt>U7(3!mTncVhJnrU&9G
zvTX??k#U)|J;WHDzGC6n@aJ`EEK+2b-0$Wig5ORzyE^>$$W<vE1R$L3KhumG>P6I=
zXTOYF-p7#-zR=JpmigRl_0(aXWN<n7Z&BeMkehFpaq_J{v-tg$Eud)7vX)GN6>Iq#
z&<qIyhin^VXkQmWA}PD@ISGpXGW*xBZOu<LsKy*kNPegJv8a7DD2v<nV3o2h0Ym&R
zPY2~{jz2|kaHw;0mgQOr9xy1FUjojme~XCN?;|btCz&=_;#KDhe6&|ieNJXvl}&&T
zixP4{Ty0k*jr&xn;?!3YzN=^hapTQ^Lx{g)I4l`or#hjnZRwenY-(QK6>T}9PX47f
z>f!6W^#F@j^sn6i6G$6y`SO1NX$rBIr@=B-drf7F=`*!6hbbN6;GF6?At@x=S(Oiu
zcsqSDWAPclYq`|)fr6HvfJr?GSMr*VrINha*FqUnCy0p?9AAnPr0l0i>q#;1*My`v
zafhAGm5mXt@|0gTTpy*bJIn^3M?S7PiW%<(fJw|zFA-C7U9IDu2j+oH1_?l<(Md(y
ztOQLhREGA4T8`{^RAo~*W^pG_%+rtna?>a4gTH^NvfnOW{}tEeHm_=jJT4)NiWltW
z;vc_<F&lJd;B#8jJWIusY>J7CYZH=Cv;KFa_kSGVCL)3rZiIPQjE~`_!BdtSlokSg
zDEOkYMRJ8Y3bI>(utS#y)+fJ|-Sv3xXGR7h6YUq<wUV+#8d1Gwy+FNI=bylq14Pw@
zm~aR@@Tg<0KWzXrN7-ivrCr^UQL@;iWV)e{pX#RC>GoO`<2{AHS3qHQUxI`qTJ$1*
z&cwf-d}+0Ti(d76*KR!<{F%S1m%tHV{Dw_5EF>%07k##tQ(4XrzBq9PEf_T_SU-Jm
zwA(0rSHubz&2%olqiH`D{hW&xZmeewIgPN|!O93AWhF0_i2|rzIo6zlu|!Gb>amyx
zem2l@8Mo=2vWY4SWojZ=4Y)>Lfr^m5##&mww%BTQE+DUJPfE*cKx~M1tcO9F27jQ7
zN^A&#Zi^FFZEhEhOW3+R55VGy+(?Uo0$qr(LN<Ur40BYw{(Ej7wn!gm&3u&<HbRoI
zk@u_1kv^WDAQXbAj_JS|H84r_KP*(G*j6SmaHUyow&<eZGV-`R%o;!^tTy<fORnl8
zW4PY>zVZ%jWZ*EAN{r#-_48-&%M1oFmZ8!-7;s_oo5T)k`ARopR011=%_g?<{#IOR
znpW_|`a9?^Da-vRM*?qyy_m!?0&-PlDNLES4{q*i%<a)%VESo~*nLm(ndl@g-*65X
zH%gTRA$%{PP%qkkMW}1s6cy8(4l%E)D21&6eaCXswTQwL&5?zfY3m)~HDFv_T~(*+
znO+^!Lxwsj7GRox6bysv!8qAIvq_sOhpj4$hQ~5%_SLGJyCo1lis^q>j?&F6$4Hhj
zt|TDHVo{`KX>neZ^s0W=*6>K9)o$k{1F;adxks*WewX-J3Wu4ADyPrUKD^wM1^{Bp
z;fEwoNUwpk8qM;YUlh7l_A~_&S%ZyyUCp4m7wxH033D|!Dy#&QNglS+BV&**fpA_Q
zvtX;Uyqt8-T86cBhi_CZ+l(pkd+B```k|*TgI)`+I5EHQeoYSX=u((fopxhl3~QMI
zDt=v^6J;C=(87eeSmSpfiKWoIHux4Fqab&5yauq|JG%*rdgsPV23u&KNJI;Yi^pF4
z_x4PbsPyUh1DkP)iJ9OcL0@(Z@n5Ls@YT2h5?iQ3HjbnZ%k6X|`ibN}dCmWk{rJ!2
z2|$*8n}8A+A6s*UkN#`rdc7xAY8E`gh>A?`#g+jUp4yZ}41HvH7*t|&h?Jl*s)%En
zmzTFEiaqm-!-}d-$Wph-Hglx^Bp3mwpciK4%Y{nA$oAP!L4LeB(}I`w0JUaPWX#l_
zc>|%mU=Z_Ut(S-_G<`XInV%&?AyQp`fwOhLRv9H#3q$~c43>zj=0nGUP-UsyCgao&
z9jn<yxp0(uq;9_y^?fg1cpIV6(FnBZcx>bPaCx$StP0_kc!QRHE|O|ukSPMzNT1FE
z=CWL;qIWAP)p&WlQ0DjfGNNmk#YkWXr=NA2TMw-<KQaOxUq$9ExNSMM5GYm!o>(b}
zNFy^QCqu#G=2!cGNT*cCC1B9*9tUhLs3-S9<N@vW59@ALcPWfIMFVO;u9p~1+VyRp
z?4B={DK9^t5)bUB%}PC~pPyfv!SYL%jXxckWb$gGO@eXlJ<18VqnPRP{-OJ}{1;7E
z64WhI*2o&SE}E1VV4%<3!S#m%1p)YI3Ju7ob#+l!>RyFt&&?slP38Ik#t3Z+(&>_O
ztIEjg>bNi{@IUVmV&xfnt(fLDrEAKzyOaDr@yD1YYyK5Z&*Ngb!pSA2g7+7T`XvUd
z5l#UE=hB(5DOID1<#r7f!u!|+V;dXd=+&c(q0>fPbU%^sW~AstT#lK-B1Z+y)HsEk
zrK^FnWH>5(FVRAb679g+luP174o$NX?eW(1?yALUa5~2yI)Hxy3x}zHigH_8Kl5X?
z0cjp~v}iQ%S)GomYC$Oujqxu01Z9FiULHBQcE2xjAQGK|st|WF-zNR*Y&1l$)PNYr
zY+js$UxdtWZ<OzqogL<SX;8ggmj>3AnrQ{q?^a3H=2r`1CMt5?zwP@3jp|EnMLb$j
zoK(5zX?2Bng&a;|3`!{QT!}c+?yH`J)*$d!l=fXKwHa>auN5u?ij#!IKcwp5OjX}^
zG)R*6uX-e1t`K2xCVsyOvk=;7G}UmxnHDh_G~_?){RSyVYOIY!yb-%D>hT55yffix
zJg_XKyuaSqr4_wr3Xm|KY;Ay(G<7`v{l$tf#GG~WtsCqC4mK{@>NCG<poBlb_YOOf
zl9D<<-&(*UA#q&MfC#qyu%bUTQa55W;t`PBw}HMLoJuvc@{<j3w_w&Cu#Ns<N3FTr
zZE|qV$M-)QDNKIM>FWuOpRg+|K;XF(lg4bSaiYpzz%W^ECKpiBZ@kJX5JgI?jkQ~q
z+G)3yfGb{9ag~;(wQ_R!U+Dr_w9A{De82*zK?S5+w0UoIKQk)!qn{sLl3D{Zy(2&w
zU63ykMNAxCqRymsDamTH!VZsskpFaZpmR#j#g*FXazb^%qV(-(rf{V_bO1hM7&h^f
zf0;93;<si~Wyp=q_V)I@C-8%))dAZ@hfSu(Yp(yA^Rh*O{Cttmt7p^??UA->e2OjM
z@&4*jy5TR&=b$9VATm&6EOBCK9S-|bijKzRo3N<dcR*36nSl$YBtCz0bydT~B>!qo
z`pw+V<GMp!jvS2UTv;>;Obo4T?nk0<sdgjg`MV2kROU;1>RP3|p16Dg5j{3KZ20fJ
zpz_}NtwQ1XugG}Rv!5N_&g;Q~M|p2I$fCA1ORnXpN=9r{H4eahRP0l1MsgVTwob{Y
z=57v)QT}StDOXvz_XK6L7NQm;%V6lYIwwtJM8!)-mn>Fj`K;6(G+UFAlj}4`xWx7k
zJZygCvj0hzS{_fuh~Ltbi>0?FT&JDv-OKcl0HOY??zL5D{-xhwnM6U8M>sKCQzMQg
zq~<o2Bg7i+^U?!D!k`LG0WD^)>SD_=cj1-1;^@lhvRN_O-9cHUw)A&F-@3duiAY>b
zZ$9Kx-flRS7zS%YFPSpli+)$<Sv{$s(sW<n^%Y70ULrAL3%WYe-afWMB9{}DG*<Cg
zfTlXy5UwgYR?F3B5@hbuvuCbX3b68%3CQPc)`>h!;z?S`@krR{6>F@$yu=0W8_9{o
zi(GSph$7@5>mBnE?MCbGv@N|ezxlaHw($4V`x4trpuw(NSe*jQ9UWVni(Q(ePgU;5
z`*KBi#wcQ;i{-r%jEt(%Fg-pxB-jJ;rNk*2z7cKD=%W!aA_>LiRU0VOB>Ko$3{9FU
zmV;vrVw1`jQgLzGZk611eWWU-DazF2mr_;v`^I<2yD;`zmj3#K%VCL0#Oto;+gxZT
z!vE<n0T%w<p12P;)<5zUiv!NBTHmPFT7SY@3v1(coto7$D+VR(_CQ@MgB?YUhi<){
zNX$re|FS2vMT=~f4qVsOwJ}3i-GxH`Ym%*+{QgM?#1{YV94$l|5rstKsL&@0e-`7x
z;TXf5$S51wlx+~wzc%q!;_8ezhw4bd5meYi{*-o|O>%_YHFt{>FDfjeHHgxYdbNP1
z@9im-wkOUikVD$*B;;Ml4+yn}?0Ve4hYPZ=HSMc6GuHxMV!ir0o&Sc8>`y~AjQ~Jx
z6CC*ED2vH(ta1$Yg{+`#&~{)vP{2Iu4oIU*VWW+Qq6`1I-CF^#E$_Nh%yv6H#_0BD
z*ZUpwwkc`Q?XJf9ztYN1m;f4xbJE3XgX&rncff}<;->Z74}7x)q=b7d{#WOcabLhy
zQ~*QgqZQ2tzJOYCxZAzLMaN1s35Se~EIcg`ZHp5?zCpbny<0VWHtO?VDbZIp)b0+J
zX1T5D;m5Pi6?ZPBke`UAif^pc4yC-YxHZ?GWu*;g;HyTyg|CG*(*-tf+#cC03=YEn
zxIH-ERgmialeJ;_#kz=bQ1>_gQCgZ=M*Bm#PG>)2tRoI1Yv!<KyE}`Pa?dO@Gnro{
z06b0liqV}p6T715MRd|65i0$?5b&MGNpfiRZfsy9Bq@Hdp%=9kCC&bd1V3Mw9Lt;(
zVm-3HI;oA8mX+IATV!8Z;)W3oPR!rHumB@9JJizY+@gnfUJPVhNDUfGdbXj8J^jmP
zq%pF%iAvE3?`-Wc(BmO{rZwUTg#fwTwt=p|vr{Em4yK00esR{O6bJr8LIm>09qrqU
zVUj6Ff5ZmRL#3IOeZ|U4MI|0Ttz-yT>Vl6AjR+1rmVjR#d>la>pbZGi5iJTsdR%Fu
zQCUPwyt=z%oU6_Xs<wln__NYrHI}m4Y?~BhUr}AXGh3`c?Y&)n8o}HNYQJQbS*_g%
z{mEbv=3FkUyLwfR=cn`B>}zQC_367pekkB^#a1^jA=qPHi(W|XBVj9|_IZD*^cg`a
z<VCd+ESkeuk`9>slYF$+QmTG;Vz+=z_GM*tHLko|$wr>u8zJuZ?=fwg;F@Gb)Kc<9
zlcb}cHFTBrhQBzY*s&B#jC&~?S{m#YQ|&t;uFzK11mu0RI@&IP!lNtyF%}=!IETKc
z?vTU?Q>)<F*}9-H9f@4@Z(1F-QVE{g^I@>FUNEQ_LiYVnSdi*`xvJ$R*gc-~O-p`n
zF14sFXaiVi3l(J}dGD{$KE>?}OiW4{5AFLMoO5c%#u&1#%0rasx#HRj_p8Yi>0G@k
zoaNN?$@ST-V1q9ocRUF)+H&ZxYTNZ;9dz1eq+za)ut1q>+4#y{2(Euw^e28_f5)bG
zJR%1a6cq3)v<DFd{-*-CpABWz7%>+lVL#6GlD{2dgM-{p5Aa*ALKHvA|6G!yRr154
z)6fkFl!&GHlBe5$aU-fR;Mc99`)gp|VC|8v0rp&^%H?akm%Uvnua+*+1dt>1=fMDT
zS1Qw})-TnN|A<sR9&Lp`UXNxf)y)UOqEzjHj8z6V-tDu!p{=7^1AEu|V~}w$rhv0(
z{&#;{nM?}2pL5k{vY2L<uaD<pZm5Y0P}NuGy{L|TR>o=eC!KN;=3)p?Y9{VgkJ^71
z-BQ0~-Q0|<bc{r!!3T3^JzT8LeoZ|Ex*iwWDX{b+oc`<c7S~@#LXd9=#6B9l?%B3K
z1D=Q#!P<<cR-|#IU26izsM|cX!wl^0)N=R7QpQ+E8KFAMR6lJ)`BQ=ekyUYU{LWW^
zKKRkSW${4=DSBfIVS-PEoHwaM&2=p0ewW_FJSVS3btu(drq|(^Bh7|l2OF?Gpb~0Q
zTMeSRZ@WON9L_dlLX3-}*6*ghL1K-sQpKMmsf<HX!}Ceail@L??|2)4EV@(CcrApj
z)XsNZZ{Q*WNd(+}ADJLpV@#O7FOkr%RTY&{>6c^7MI?Kc(qcF7thfL#NC_pzr=3t(
z7@-Crfax+qZX*itx3>qav}j=eZW5_Js4N<1I(~C&X?zFyRK%X_X&b7(Rw{4BsILln
zU{V+kX|xjr2c2SB66n<2as(IPay-W}nS2~msI)03#ey0uq{v{|)(zEI3#<sr03?Uc
zpPo|2^)Pn3S$Oq1Whr@-Zl|b_x7|dz>llXeM=fV;Y%~#@u1JmFc!mXtC%GUyeB;6M
z!M4(-IuK?Oelb4+;Z5KBNXF(6z>;Qmn$VSoU@%En8xR^+5*v1bq8oZVEv-Q(8>id_
zOWPPePW8SX-V3vo*%{WL@<&~*4uDGv$grXCB1JRd5%Y$eR#?|qxArUfVwrg5-FdmX
ziC`mRy$QruEcGIRpl`%4iHYnl=<HtbE@LyA(&0jtD5FVYnJ9^#WW&kp&Q<kl2BS&r
z$uUH1@~Va&7Y5X*k^rq5AC3)ww>OfJ!OPfXyWV?%e;Tnw9l_S{k*B*mC^Uf8b@ZxI
z%xvjG;{L4}TO;nJ7)3?tt7S+`vI9a~mqGyoYm2|&3~#}qIg-peBo-=RwccdmZ6rZ*
zxTdTVGJBT!OfTXC5jMhxNnS*ROsT51Z7o67Agn4LWRCvrVSbF|fiVpyK<&l@|KsAN
zrO=Bv&2G=YzxOwcbc{y+g6V}#B}eTzF%IWx4yro;2r+tp&X#g*IBwkABO;rf*`1i$
zezKvl-Y0iH>#wHTm#$TG8z!jL6o2KGZqd9K^^!3jmXFR2!YDUY?;y3qSO|>*viR?5
zuv-waGz`B!w*ClfIXXJ#zSep^yaN~EscgS@Df7vlx9(qMV~z+yvO!v8--TV!f(8WM
zA4T481G{1HN0CYR8M1;UMq;?{FE*>=gF_<`8LK{))MXfUVPT^IU@fsry)tr=-E>|K
z*qWHEuD20nzl@cg@ziAM^pxkt1oEJL`0ae%e$z-{(yPDuQCxf=fCjB^{$H}d{?dYi
z9()6Qw7v^k!bzXGWb^<_LKc-=It3gpDCI{66f5>z%~q8Vn)qiAeRWI9;{mv5ArjA~
zyvLP#huy&y#XAE9%b$c#5@b`pTe!!czgOr!9QVF4tugoQvmnBUv@C0}+MXFm3ula%
z9T5oD@jpf%bJ~c2&^@1Fw9A#Zk97Q=rSE?xNUT#qD@(2wA|xsa^3S2ru<<21I@OxS
zD}3`g{%S-fgog&ba}e2tXfqOo{u;sMp_nYZIqBOLr|nEaaRnyct+PCk5UQH!8J#KL
zfR7ukf#QF%n_V?SCD<Sg6*r&VDZiWsy(681_Avceys<DCL8f>}__4QoyRc%+ZgyV&
zcb?uE&m<3S_hmYLa|0`!{Xy~OZ+Ex-*U**4gKUAq(xJj4vs4-n#z*Hu`xxUTCLj-x
zU!2{kp(55N{iFV7PUT_d!fLa4h~!H%?iT~@68;^S69(1S5Tp|_y{Pn*y84VvT&c7g
z=-O(Hlov*<npEgu8QjLMuQ0m^t{fhf)rnbIOv4%>I3tSULA5c;w*zCT8U~E(_bPkR
zw{O6T48B(ROKy<5#5?Bsp+QTDDB&V<`==0p*{7=^5}oyj90o{7K15@m*Q=q1D>9_T
zP9VyFt}kqa-c@_n=f^x7Vt>K+b`*?LB$>ob(Yt>dw!L2O?NgBV&;g)`mg{zFCK<3(
z=wgserL!}LOCn+u870NcIx~+acHZS!J};G_-}fYEac-laNKvZ-7OP)!B*6<7Bw6AB
z2;71a8u?U`=qv7plAs_FXMIGnL2?|26&7tfKI8MfN5C&TTuHZ0Z$5?9&6JP!LfKXu
zdQ3vYRKk_^C%XunDlKD*NSE`uaU(nmVt&FRIo7+gS@o<N`*TEibc)Axj*115!Ji3e
ztRx44K#-<@m`{7ev!q;r<n<vT+m!p&>#5LUu0Tq!1u@_m=0bo@Do2vbhpIN#a~nm#
znruJ0MM;wA`C=&MSB9~OFu28$8}qDH^`BUq9Rp9#BJr<Cn8#^L7gIPDUJuwoJ~b4s
z+9e-!UVGcqjwFoXvel!>oUiw*E-NmOtKUwS^tCY(sE`sDu_?AZ8@xT1Pert0pyKpG
z5s%MYEa3(wTgAoPZyf)Q8AH3rCIoJ$w;A=h+?<l7bhPq=Zk%S(r3=34niylVUg-u|
zkrR+#DhO?zw_Pl#V?AgC<%79EtxEWY&x2k%mqT9jghA4iduYy@mL(QfFRUslq~i<*
zjpHl<X2ZVT=$I@gUYhYA&z0*t6|0f0WkDG_hyLk0u=$c%spKx#arbQH9cbI!Z{9+F
zjT2d_Y|c}R_5EtV!+XnB{NL-fGmtUBe$M1}64$AGx#;Rrd<R0t^{+ZVznueqM*i3f
z-L3PMc1E7n%X2w}Emfa)Ah&(HWE?a7`gEffk1ZUhw`|w-R+LAT>lqp(+74lC3<=l-
z#7JN$iEvW>e|G8J=-^xKTW|bXl~=q@I^JKAIN|~DWHh@lNf>`E@tEYiGKpU58Aw1-
zl%iwI1EY)rV4o(FlKTl6V`cObt5Eq~*@94=7#!Gw&p1VJ>JSQ6KIh){6n$nyG3h%9
z(WVyo4kd%u)5)@Z<YuvkVF#xM9*E+uI*DOBrSW=@WTd10boDVk_n`wC<FH;&BYtsj
zi3}XSy8RSrBvKQV=;V*l_C+eMsInst_V+>4Mdf{~)jaw!$HeC}6y>c$?&>hOH1DIo
z_(`>Otiv0*CRHka?}uWR3x!=2L`FLF6;l(vDduQ{(1GPgK!}V6)C^~sq2OB+VjG5`
z@8a;<d+q2XO5n;`^$~hjf4Xk|{dx?Pr&b&tI5a{cnGQ0;F2pajD<<0oRsU!&fR$a+
zxILhW+y@BWbVRuRez%RcXnhZlRt6pud-GltOY85G?VVDl>%FaaUX*c2``O+*#7`>A
zcAX7NbYO6%RcG(%mN6a%t;fzt=koSCdKqWyZ7G+In$=}5z^_`TG9;xNs8Nl30zvh<
zkTQ94#q<GKzpQS+m?%9^rnmW_Tr8hSar7Ak5=4F0pOWspU$F|R>DiKof$ve2@8<%*
z4iIx=nF5UrU0&hBk1)_%ABsQ$kXF&(iGg!}6`T=$inqn!Yk@!0QHGm(@T$8S9;UzT
z2^AQ&iLSXjS(SfhIP;?^uK-RSGbqat+{H#4iMh}4!PN3W5ib!%=m*<<ZByY`tMEy*
za^P!Z0E#3Z_3i#~&4Jx*V*MI7(9&3{$z19s=w;{f@_WrDl;q<0Md!_Lis&9W&gb6e
zKAT3ewxs&?ozb4mhaCURf;KN2h^ps(#^vfxlIBzWc6T2KIjmnOy;+WRL^y7G83>4w
zW;fxB)y42Q+!pcHaCv#5q2(ZWe9ZP+Q>DK#Q7;3JJkoAEBB9Pyuiro&8%`G=Bh7_=
zKrvs;T!W0$PikF;u4g~-yn7jDKe0AfJgU(g=YObZuW#5{=T-tW{C42k_4`Y5HSqDi
zucYV&SE#S?oL{9{#WHToGHJE#s#p>F2fp{IzpNuU{2A!{1fhi*9xsM>UnrBZL-Tn`
zBA!lYa9(HA*Xb@|=Fe^X0CQSFDb#6#pY3~$cH*kdWo+>tYZbRl*GJ$#V)H?T20l;`
zZk7ZX`048()IM~E7wQw?kMbL2>?_Rv)l0nEdFSICk-$cqnxU524X3Z#=K)9_<4UUd
z)c9tSRXuja!A8>uU;k`~`7^Hgc%wcV9u6fMOY=CtgmXu{^?kD<rDVw_C+FPTAYASM
zai8Lu0SGHG-t6lEJ{1m!N>SW38^YiVJt?h`MUxhw9wZC}VP>C$cyVr{V-*%E<9~ZN
zf>y4@YBHTnwO#>zafxDLBpS&lQAt*AOhu&&Vxj1dqhf)52X;|HFEB9u9g&9e+m{P3
zQ~oORB^2PVb)e>g;ep89T*AScXUug9W&(oGvp(@nL=SfnmynqTrkDAchr4AY2J*B2
zxa$Gwj~9AxQE(s$lyi3?SN)|qCcu$=t+)rMT{l#E(lNUh5YM3_&r#tWm+$mIZ!3=0
zbZ0w`X#!W0p7R|YlP4$e!nwBQ4MK-hO89rF!}YHf{qz8dM8H|_FSGu@*EGX<E=Is%
zNpUWs7rgRb^UJoHCcs!}ch>8C$}4wfaXJCtPOJwFei7BF8E}ZEwY7x6Bm=X~nXBEQ
zLb_t#*Cza-=9;K)Ky6jZ#jf-$)$tdr1zFFCo;F^mzR*FSUlsD&#@oByqjA6#;Ha;3
zF&WeVghjy`!TJM(T0ZQ62tsJV$Q&zHQ+>$4Fjp7~^Tr1TnecaW*8BTAx(rRL(aZ6J
zo6K1$yZdC1ufOLbEYV~Zmd(<|mD20KW43*B^SGIhmlxLdBsboR?flrzY#b|!{$c39
zM6fR>#XsEyxr_H?2m+aw9a1U^ihepYC|ky@06MC{&q5mUa^=}H^FwNS%^r`yon)Xu
z&n`DWU54sJiZ+#D8PEg&WmTKs{q2ZGg9KKo?Z2}b#k)(vAZh=(*+@Ov;1X0JTyU~m
zMmPtLV)LGq^I9C{JS-#ADNiEsHNDCpN?oinWXRPvR<xt-;|{vT(>?sB76fUJW$>@@
z-?#hr7Q~N}giBI?TJM2gg1h^3gA{F|5xWnsU%FPFDyzQa`=V?MrRiHKxf}jS^t2MF
za&6HWnp5i27;i`5V-H0rIWQZq;qBnZ=_T}KHpS4_cL;3X&jSpG|BPu+8UEVR6lk{K
z;BK9Z-EDF{C0Vb@+Q?c<A@+7d^B0AiZOa$WERQ=ln##5^(bsxsBZ+yc?W~TBWLRlE
zLj|TAn&fXF0|odNZ|<xOjD9?)#bTN!pBJ=r_9qw5i**SKZYT>+x0XX5*5h#dbz{Xp
zqMa>&vb%KS@p2Xpc6PqcG<j&<>=zhYjrd(6nCzYkZFCURqV=HJY>BxXOhBWf4>p@c
z-JN~9BW~Y10){(1of>lbw~BVavicf|V+}vK|I!GtDnIu%%qrmB^PBH!`}HXOHG+40
zM!>dk1b>tDGTHnO7GH*6t3Y=4&>x04=gWq>2r3`AN#lDV=dq}m*vLtyhaSUjUX@!1
z>`VcfzBZj-xdkXU1Mq)scz7ijxfgGK2%<wQBbeT*E4>h}k<-s}qZ*7iCHTq`yf0D1
zMN6Knmq)1qp9!18RT1xZzvS7h4(h`JoFdDiP<)hYp?<J!YO>zj4Y4x<I#Ded=$Z75
zEbn6s4_=XFlp@KHLzn~qkp$?UI2D~no3o3o{ShbS_DCY|u$H@nT@=GDb)^m^JxMjk
zIF$D19>+%tjOQ1_Ff9sN4#v2g<MwO$ul`+8$HZlw{JhSOgm-lIJV-m3bEu5VZ5K>f
z37`>nOA{2SnR?YhW&GhdmEsOsST+<TK}I_ytHk+gjAW8uYz8HPkvJxoRoA=)LkBAj
zCh2T$oj-e-j%j!tDI%%XZo-$UP-L!gXYTH{pS|9myHp+UeBYnwJa~Z(n7rEtTdZzP
zwz=uw?^T_QX9#6A%P~Hpll)HEiVAiV=Ur#vyj>}O^`Q=EJAmZ8ehJdxESth6^`e{~
zGML9%)EAuTiOk?6wYm3dVV_@NyTpB{qus|{b!b|czO)hekY5#3IIH$fRXa4@X5|RJ
zD(7_hQ?&XRz?+)jJs6i0VVSr;q*59yZb<Vs=QZzqNg`SE0oRM*66QpX-XTYkxVD&&
zA+&N=(Kf2rZESEWBIJQ7TdyV2<8IR+=UU-zQ4X94_(mt`-~6S@)|kGpfPR~5x7!1C
z=>0$RKgkr7U%9zq(Q{!uJX@t$s~mTu!?~#JGk_S=n2*KE9BFNqa#n|Vz_u?d8JT)k
zomyKO-m>%Mlvb{{wnA)3%%~Il1TBc!C_BjNsiK0A#W0ahG7_0xs6Oz9XfVWay|pp+
z4iF~NQme|T2jHCJLVl*L%(A*aT{d>;xILCV-WWF$k~e{*!vlNR+L*IH{n(?CXU3DT
zV38Q<nw2eEAG<XCfv?}OO@i+GTSjLim;ME(tinhnW-!nsZM;7sksgzrey%@C!tv3y
zjCMGR<M;tH<=64bU90d=PbM&z?j{QD2D%o%0}B+Y8)(pL&kOXLzzGs@y6^jP&bKz7
z7gx`NOt;%*$M<dE9S!@T!JS%1ZmbWc76FF|lZ5rXtT2fp57zS7SIhv0<lB$EU~@zF
z>mNQqtNDy^QYYcFT1bsQD)ekyN#owK=zI+}|J|I*^)AYr7xmi7Za$j#T*MRhk_ZYP
zg`UaD>c3uH#Vr#01i&&!#c!!wVH%hkg5tj|Cl*7xq2zxV+<52yN#%`)vwwbQyc=ah
z=@vSM?lBDS;^j8v%J+WRe8=a&)u%SHk03lSFp$C*aP5BNn`e25dyi{~(7U}oyMQ+u
z8XEpHEA;Y1)#kB|Ll|ZqzFb_zX&XXtBa$!xJxP-k7<ZRf92*Mh1pK{V{^*+jAWz>!
zi1FLWag8e7ICn7#f&)zHh!l@5&8p$uPvOUpJz0Qz_X=#y*(0O$?sc*2ol>fx_Q&HF
zmt$3Y;JH0AbOr>OP%dPIw(3j(qfZWXmV57B2hAuEw`0MSLsfMQ%iZa+3Y8Gv2726e
zVTyiyRhrWG{xGza_i}@#e`Uemd%VgoT>5wZ_m@I#4dz&|t)C#?UUcVzOGbfhWN~^8
zu2J^j)m)Jr!PB`GR<8ph){Do@U$lGDj#8H0_COcrkyHo5T?pT|_o(`R-MgGojrLj1
zct(Z3*8d-sR|V;h1FAPClZMz>amQ93diq)IOuD#e7#ZI7of9eE)17Ug)V*e0m7ubc
zLbdrbUO?y7^(UXQP;V=j^B`xM*q#a>T2JZ<W37t5c1oRLAg&4Cb2SiGNr{Jio?-=S
zwEk0%fR=P2aZLr=XCvCCxp}c5mQ#<?;`8aH0j5KqQKIuPyQL7)s%s%V&gAq_S7TbN
zMnoT4|DfleRVj@%JlYXV42R@Ad6MZhTO5t9yz7pR^#P4z{~56|pvy8TKBve;s$qO4
zRnR&p;-pCK1YT?fQHum#76g}A+|q<A@9*}Z<LYoO071jEZPelnFjnIKq=W@M`4Tas
zIA!}Yaa#GHzxf93-m6`HesPdIb!FF9Hr^fx8f)%KQOsRe^IZDT+H9!QSHkLe!`a8C
z3DWe{s0HN<l_LG_f&B>EV~{)Ws!ic_qbm>L1R7cgeJ)NX3rGWF-P$|*Mgfn{ueJT9
z6)!?wikSV4pN?>)13)oqK|Kv_tBp~RXv~6Tr9Dvf97zM=xC&|~5X^qLy-Rsw5T&Rd
zTiq58%xUU7hC8?r)8!sF&*{=x+#Z^nscmf$Ys7#pMbd2zm;%Jl-I|t56EbzKHrX*u
zCcQjlm;Ls^2^yG32%toa(4d?;$sWLj8*#gs&zG;%?eA0Ncft1yiC2yy8NgJV9vlh8
z7ifyH-7}k>kNPO$$~8gkGx_msNCxf@bR24>X;C5HM!L6mE+RE;J|gcex}{ZI`dvlV
z9+s6n`HV1gWT8ikGYua{ie(51;|HTSKT{G>TpT?ni47DSx}ox|g`@pVZpj;TVI>SP
zE|Z#IE+jmM8jY_oEmnbJES^yNKm+^(=n<EkX4pV>?wtvf;6=)jEKyAfWf9)M0Hut1
zBEt2)(TJ=%Jr(sQxqyH|T6Sux@cVmKtz0Zgjo;y_kltF|57@}}Z6o3!iC97<+x{@y
z+V?nejlDf&D$DYC!|Pfyy`S_hzW^{>of4PMgyF7Vw62vT0DS_8#p;p1IZ{UoTA*FR
z9x3$X;|yDxceaHp=K~MRl+aT3n4wBetd2L4@a31_d2gSP%6y)N^g0D9$_!08oCW^;
z$*S09gO^gwr3a7Y#bpvIW$8r!0u|CsCu)HHQ7lCJvHHCo!e5IVuN3PO9$Y`+5&-e^
z`+WCFGDY9%d<Kl&9Hi~r8~8!Ixcsa>K!a1mS5PA#pfaZ_;AN}>)jA!>djea>@q|jI
zE+EeV#8h~=Lmf7K9?}vaJm4&Se&>pWj@pmJQ#v9GGig4C#@K#5k6p&C#*&H@L|9>}
z+%c-sCPEtF!McISwAo_OwxOVcD1*d&2;04%9HrhxbwFv``37S8b#uNzScUKPvJXEF
z5mIpfuD_jk5DYxI7C4lpO>Oxcl=n&dIbo(z3phI}0Suzkyw4l?ZxX{@XlLisUxFux
zy3Q(o<TaqgzElAn{>Ikv?Jh_%0o+I^CT=va7`KGaXdILe$Wlug5>R)+!IaUoWdc*A
zL|TKxd65M*`yUNKt7+B6Sz9H{<pfpOP|zUB9dhT6ZQqXs1^$}WO+#d~0{QVP!w(UG
z(SJ?c$3P{FE}?*LyEjbvwQATd@(ZV|g8f{~12D;P^eX%MJhkHc(+TGu!fHrHX%||^
zZ8}eEXL(I&Gf9dN(hxOGXid$P&3N$YegMZna;DZ&g2d>}URH-Z`*_ST<G<-<X&Au)
zY3KDa(ZgHw$H1FYl7_u1{m)R`yU)clbY%T~pXNwq@=>+Wc3UxC>|Gw(OXtB`P;G<C
z0}Kg6oA9ap$2@uEIo3vs1U+imZH#5ROIR5hX=~Q(X)QbQCWy&jZ3lnoEamcDn^*d(
zEm2)vN%iVU$19%j7}}(Y6$K8vOO{Y<Ys4ixTO&OIRzN~;k>R>olW@HU@fPP89E0S}
zEvA$S=cp_mH~A8rtl7duUU)}X{o(YkM8>jU{SHryWp^<6hJbKZRB6Gb-fDJrtrvZZ
zK}~Ga+((#w>DSR!!S5A7K+jiC@cTMIWxO8Ea@z`iV)hndZP&^pjb<sC+15aZ@NgVU
z7NMloHXZHG?AR#u5kopP(WE-#PZif&ZJpA4TL%))E3oMLp~*~+-y<}r6I0j1;5k<D
zG36aqFb-D?BF1d)n20uDX&t33MX6H;STV^NwK#HTN=}!mZ%XmcSq3`8->?#JVZ{RI
z$ohbU6Zt%+kXg`))9J5d>+3zC+cD-<4$4E*G0rig?-~Xu4)uky`^I?inIO-At@3B3
zvo#>Yo*PmtQyvkj9l7|~EYIa+>-ejIFD4EqW<mPFB}v$)F!<3?m1XU_9#V3}WY~UU
zO<6eeg@gnJa?8)h#>?!IQ9sQGTJ$wtN7e9>_p%f0j4N@66Os%|Q=;BlADg}f7@Jx{
zo+qF+_o03gf~7+S{r2~Uy#|yAv#=y*yPb{`8Qhe<B+fv!43HM}{@e=mh)IQ?ELM}q
zW$|js=Lzzmg2RG{llnpNKVFs-6BFYxsY|+Z-+=zG5fn2eI10Jg+HcQpvY?Y(n~v~c
z2GwzaiWneUf<z;=Lmmt4cV>Y8YYHiZUUWqk$fuLGi_U+mQfbpxU|lh?;C8x1$}$v?
zHOKCCZyi<P0^m{(3Z3#3#W@P7Dnj5v^bWDuSkunuYb}oP@MSTeTtlB95V8U&K`bIY
zD63e|lw$w@JNEJcG{!~5?5~XRCZ+)jmw~~-QO9RLY03+Loxt2cU64Uxyj%d+7|}HE
zH&k2=45xr~02Kl1>AvR^xM+81Fd;c0;0i0o_bmXhYX{2y^nA3(drK!+fGH3tVK)*8
z;kf`>9#QWlZetw4$O}2OmD|T(XpbB{2w}?XDySQo&qua%VJ2;lMcCapl|&^Idm0CP
zp<QHYGRPn&x(O&GPG3HsvVkP&<3W;%06Uq;Wkhfbl%o=>SR(FY8Ikn7w_48A9o-?F
zz^jRzUMvlQ@OOCg5O@Fe{n%NqeMcE8Ci}9(TW2%?|0E=UNm?_J3OV==v9k@FGNr8?
za1jJ-$J-e{&Vro4AitRbJ)8oA5-Y%w(hzg6*)a{N{oll?G{%tjT`}gL)<Vf_GnVOg
zqno+KbJ$@aIV{AS-o2d8pXE<CDD-$zin>;7PRj)@*c|-yW?UqtB8xSKT$n5zm^9!a
z-G3#5Ga!idVdJh{Y7XxdD3j%MzDjVkE7D7!)g;ROZwT%DJ7m#B1kLpGK3uQv;nuI0
zRFLoDVh{;&_vq|(u$M(gS^~jY#(GeAzGBY!pCWG-2S^Tyej$^fHpQ+frbJ8v@kMfl
zQM1pq0W8MoP=;e^7&JVLfrOULisDA-YA{cq*?wj4^3j}lvZ~=&Mr!hF^#vYB<BPW7
zr3G+lMP>N3(>y7&2fy7HQ_#C+@MNMhi7I7*Bn}D+RlXH3B+{?NM-;0{M>dNx<$3P}
zOJ3V7NZzO56Ht$}JU@lSq&prepJ}Vw{btNGXcLRBTkcm%OiCBG^=}9|URHzuu&KkX
z1GAE)a`kl#vHo~`D2LissffYFc!#7^4w)b5H_Uqc4Mm|)p^|k7u^*rvlk<4lm*{@g
z%r<06@}Dk%Q)*BFt!Z(wQuN~|CWFX^boW&CB~X1sUB2~p@056bs6ljCzV0=L%Hp?L
zmUoSF*l(<=r5Z-yBp80yk=<uO-BB6rqq5C{^VWp*hUU}~W9*E%L1;WUc9kZc72AZ>
zl&Xpp<mZtK37O^9*axux3;q2P@rjBnX9AHmlNEJyOBz>HC^l?s5R0iOf;Bc4^9jk)
zT>1^qWh))`0qtXQBduFPE%WU|ifYVc(?5uhG)Roow3>`AK#h*6x!zK*%+AW{!P4do
z5Ctx*0ACA@b~@#1I%{r1N|?H_WD%fWsKT)R6egSIR0(^2zUGd$=dx6!g6Qave7;l<
zYjxQd3>#xl>jy0Qo2bb5>ux@aIeK?LYhg&d6}zHUClf{XLNtJ0xRDtv1Vpxo-Uh2h
z*CVazV-U!p2MR}%`!dTs=tmfDEl~0L)JO9EO{`W}jF&xfYDOIMC$Br9Xx6{#?+yq}
zQhZF|1N^}6c5lyj0g7Fp!+uA0Pm4ygeuM;jMR#{jL+kU9-UkZ7hAGYtUMjNnCtaGr
z36TnG{;H8BatgA?V#fUo#X`PetUK0+x<J^=XiPJtyM2esTvrov&Fp&>q1_$A9^`rH
zYJmt2*lE~rek?JjcB9>05ew>Ch<aVhwgML-4}kb^b^~UF?CaWbjnVyMmiCxGH=c=8
zX}?WuzW)94CR$U3*ei#-;pZ;Pp1X9F*8hTp5`fBW6b&nda>alcVCFq(xWB)DomA~T
zuoFhZ4=WV|(;et>HW%f2h(cJf_4Z|RzGF0>JSYP;Ci?Rwte0IA`5%G@MolO48*$N3
z-ixT<1gEm8p0C*aH{)!c>yH)D%KEln>%KV+nq!k~baNZ)J#MTHtfT7gIw_EY{T~%6
z{u@+3LUYFXvCe<d*q_?$oObCz{x0=A{re&jW^Cu@*u?%J>Eu}L_^mSfVx-%%3%b|(
z3Z?QfyKQV=d7GPr09NHM;eYfKJ*Nu(T`N@1>s2d`5m3=i#GT0%R{GLnNy$s6KYG&?
zMm|Gph<0XJwKbpH*{Scv(W7+sN(+{+lL6---F~=WB>37@Y`;!LX<v~PiI;Hq5%IgC
zkx#fo820~R>@CBpT-UB)MWiJ~q`OPH8|m)uZlqhJySt>jL%Ktd?oO$RG?R|+X6?P#
zqia9!_r4zdn82aJJ+JGGagK2gTJ40#?B31Esa|bu^3h&bbSN&BR%2cywg~i@<~O~5
zCapzzklIMEo5m`mr)=9qq<DTNSlvlQRbmyf1enuPU%I6|7Oqw)mCu#W*|{#+U^*_U
zbpb;BGngFV)R7Vd2+?WLwgMp`60(~rQadfrAGiwgo^l59b8arVsGQAM#$!A6u{_ol
zye3AGN&a<?r$vk~IEJW-j%|fUPcI9^4}>621dUizPB8;qh_GPOhai7Jh}s%%!wO7n
z2J9`B_HO8-;>9@&?sN(OPfCUk0(oGeFT%v><UUZY=7Sa*f8K0@er@l2NG0Thg*NE!
zC43!nKTH(d*)LTsFm6@|#>jAZVZIoUJ{g#+uVADJ*+;&A-z(E7yg~lfMF6S^!<K&K
zPZ7Aw=~|Ed+~!|$8F+~-o52B&-(TOZ?(0SI-WE~TL?V|8%!m5?2pC5rQkn-6cNr&g
z7!=klLiXnM=~lgqd<*-e4#rcUsgJH4)aiR}AELJmk8PFoW#2lWuXPrAyi-{Ov=HoR
z5Cqkp?Znvy*Wqk)s)`j0H6RA;w-$Mnws>HE!kkj9D!StRlJ@&B9*jN0p8TUQ%e%zK
z?_{CN^nE5`4C{Hnmqe8tajX__Y_VIC+?g^tHa!BzWMyO`(YxuR;X!yK>C$W5vA>%h
zc7_mqhV~im;k#IOC0czMi5cJ7wTyfAv#q@l{6%Gt=zM%NLp%P`28A_9|K!Wm(&gTY
zZrpc@HN_B7CKV^QD<M@}>5j6}$BnRKSU#u+|IS!a$=g9G_BVgs0^di8ulee3n&GNC
zt<wcC75ZsuTA+E7id3)I4<wQ$NQduCJzG?1mzg&MCvXmsl73W}CjFR~#1I#jieF8i
z$i!HBhw~0In}@Wa=)l1Bqdzk0Dl(x6&ApyqK)%%#ulOJy>4?lWrTh#}qkie-eKNO6
zyuT<{{ajCDIH5s*TA6=H(cJWUto&|P@h$8GSSqNPLw!>o4~H<djFu`P_%m>J<Km;M
zvs)#W>z!ibIkZaP5%-CEBTnjIWD~O`2=*(Ar@%y-(Bl1h4taLx5<KyeA>2F?(-aDX
z%K3c?g{^r=KX|3>@cj%uL3%8*x_tU5F$%herO=hsC*BV0oiCY;@jPNWDYlCtGj)ew
zeLV4oK%!$tWlw<hAE<k3@W5W=@dLBOB^HQ~7DS<mTD6D{wr9Q?0AdKc8w}+6MbOMb
zWmC9ad8x9{I+U#02_$qiI`^&hYOA`3g@2*2D<_vaLJrp!3i5^}eakOK^>RVE9%|zc
zrwi2;*o5vVR5+Q;U2jE$vGp4}*s+ATw(^k#+5H<4O-?wWd(^rRvOWD$P-+F&p<fz*
zO+nuH{%y<)K%`WZUC|LtkSV(Dv_rpBcU6cJGQ*oB!!IrkAgELpp1I$7d_GqA07z95
z6C%LQmyf9uWJc_xQ&Uq;tioQvn)`y#HG9C4xQ))P_xR%nCOids6O0mP)72BHMO=Nd
zc5E~<spz~sl7qX%j0|gO=&Lhd2+?2?zY)xvjFAOUH0*Ej^Cjw@Aw;8U4@<e*gr6aP
z$4eYK_Lr3dv{_}|Jg)kDqYpE0cCQwGIX`~$Ae6hc62uX^&O8y~|Bs#h2RWEuZdc;y
zAZDr1Z$9HYfJ0tCrW@!;Zd)LI&IV>_$Mojr*6}LL7DU`iV}J(vMSQ;D0s3K72&Y6V
zz@2qF1!Ht>>u0$dty_DML374U+|w*HCoFv^EizmKxCLCjD}_$W&kUCG;mWkQ;x<&S
zBVXLfsAPR7G?T7Jrc|Gq^$7||e>3=|HsOR!@Uq-fch1t<O>@Q)>F(j0XKmbi!;M$T
z`fZn;VuZ9PPPIMk#$Ncxq*A%{iL(jnr&(~#fRWS5UN-i*Y!q6j31>H4Dmf?0BqBW!
z1woMAIg5RGBUBea(l?1Zvnz#+)F1UnV|g7Z2|;3qio*YWTF*Hzdb(@z{wFzK3^blA
zzpfC$TgF!G&DUIjN9v{HHDD<VY03HZ4B7iKoN06%50=4Ri%Z*SM)~$NAvyQnGb*t-
zwLC$GFxSg>I}v3BI7ufapPJplsNn0cM|8F9%(Y*#IAC1_yS=w{yM)uRy>n{gc~YBv
z-xG{6@hIjXi0kT$@RofOFQ<0QQg#$$%Vog*+(XYl&-eTVh9NR&V<w^N2NlAxfRt3Y
z%+kjq&Ynx??9ysNiz6hfk35M87prERh?lF2yDKRaXopeEww|_xat%I+BaJH@KqPCK
z!ao3<pa18B-xlRVB!XRK<bgRHjz<{t9qI3>7<ldLEl9x4sRMg#khgF!frrvVl<TB1
zco)x3uLQL_90S_aDyEvxHbp?9ME<Y|g*q_!O^Y=1RwN`mET(_R0(W%bKtYEv0b1Ba
zIl^DW-&{6)f-+=NVWY4uf)1cs3Fk~H<Q1Gm|7^dFJaXCjW*Z;s1)aBW7*lWyg~@7J
za(NFEV{Gi5-CJ~<a0h2J-dpY7+PtZtP48@%>Y5<>y?0~3d3AMeZRSC``AET@8Y%L$
zXEOh2Tz}BRDPgUZe8n>XufxEl{Ssm!kNbjup8az3+-S`5xQK((Xu8RP#6&LC=2%Lm
z3No5-NYkix@z)#GOor4pX^Hr)_~3c76<JBNRy|hn{$Wam1XY4J#^{rq)`_xgWs~6U
zT!Z>`23f$s7Pia!YH;g8)bH5TXB~GB*wEV`xcuzhA|Uksvew*zlVqG6GIgbXmOauA
z>`~w!NZyTu!b>O^)^a3_Fvjp)s(e+1fN_dI{-LVtRgdUobp^rhxF<)er&*=vi}(g!
zev!Z7*_kyAr&`Cqnx&gw>n_V}Cxy}FNbB&;9k9^l=#r6;+Y^w4-M5l&KE5PsBXep)
z$j0Cv#tp+93ooE;wT5DHt?`SdO)jEQd)OLbO0(K4tmW{fWZjU9jGlT}k?Fm9;Ti4(
ze%yEn5JT1PlQr(yJu>CHOL;_G;#hBiieYTGZKThM`TgW{4hp`Q>vY}lemUz6ZC_Is
zeej1n-e1S)ggBbRr8xeV4*CAp*mO6SsB0ec-{luYrG^Y_n4N|-@?)t^fN`KH0?v$f
z9_oi?z|7V*R}&t%-0F=saj5LG68+(W8fw9aO3FVpG*kPO)eSR<eeEV~NWVCe^-CIg
zmbw0*s>cxauMO<t%EP3mq7;}D@;*AJ{&}HUIiX)^k4U|6nS!Uwf*b_LfXi;n#Ooh+
zGR}TF1V7Wf@(C!vR(MSZA-u{cX=V=#OQPo~1~lZMH|mhQT9u(>GYGb`w#C(y@{R_`
zhcEV`XZ1(L26a3$-$k-gZxDmtWYr0$Vp%fl;yBFFOl_UWj-m1IbpyJIN|ozwfGF@C
zFc_FSe^o7t`u-~<w-f2?Fz%4YW(X>KV4&!}8}m$p#<~6%NU_h5x9~4v3Lj6SeD*LZ
zXh%5@Xqq-dsg15rHrzv>IXl#qtqPg$pyEfyZNtog{s`>X^z(ZYxyAsh$>{Uw`S2Bn
z8?dP-ZtZcJdq<~b7J`kUakI<!)C3ub?6Z?%O2W$8(4wsYw$nC6(03vn=bnIyq2{Gm
zLyElCN~f8fTk``rrQdgXuQ(!*=FTfS9^JpmZSs7$Dk&~5&S(%wb|>CEtc#`UbiuPk
zV%{QU{P3hUc6i>u%vn3S6CpQu(hb)Gb^JW6I&M9WY)=xwWAz4jW;#D4sn5)Qx5Fj*
z5DmMIg*DgI@5#_Sj2ZRE_x?&j<hZ_xCfn8wI@XUA@<f7^9#|y_(1PEl6Mx0|6G{xL
zX%LKF3(PiGqxip(aVX={qT|Z)mM%ehOBod?fl%E0MI(5Awmbb>QADELc1Tak=MQ-?
z8sTc!0(bpJ3rAih)_HXBVK7O4*bNd36>TL+$Sby`&H52P-V>Q{U--J04{>c4osZRl
zQbG!LjKmjvt!PvI8^?#|fa<6B`h+Bf(>wef$t*f$Wwg_qSU~uA1a%&;hkCfe;shA2
zZM!j0Iy8=kNk}W`;A;LnA?GUd7EDM+h0-S(+JHsF!;x-lu6d=P>n%4duey_kNB((?
zf>kJ@5Y_*&1=tMY;fdoc2JtF|U(qXt<>6${h<YU{BzpV<_z7X{xIo)(A<1D~?fHp~
zYeSqsTwgBP{!s0>RlZqTdo*E50}SUAc-2vXopW((07Xe-+>9HAGhyy*RM^lL54}r&
zwbkuiB+%+s`8A@fUNsZj)Y)pJATp3A{m7RUjleRlk-e_2s*)Rf3DKx0b!+gY%N6{y
z(d(2)4bauH7<)8YP}hbD%ge{m_3hR(Reyb`#hg!ADc$)VL;NZXd;?(VUv}_iO<Z=~
z_&R;itTT&A04&Wd9=HPD=(Y%iuPi|cP((bR^S?iCzr1*Sz^6yE9=@s!^I~8e`0wz+
zP6&C~dY9+V-ks-q2W_4CP7}->9dt5YUjB$p3`kqgvrN6)dDk8`)7qV_*%FYYx*HDp
z_71)sa`$H2a4J)nDQ3EDc=E`shR(!(6J$HRd#*)pxtWKvA(JiWtRJkresPrI2?rEp
z?%NJ1R%&bupjn@fdTm?lR=Y3KD~-G{5Khh{?`N7-iBufM|MGEoUr*C(YHaW0ImwfC
zUrjk}Z)W2l>p5?ge$#%;fDXw?5Z}E36cS#UD8E`8*KunthN$5j$%hZHuGSC(MblQr
z^oZA912xmOx`I2Nq|CC3p&6CMYhvHl40;Tq#fPrL@;H6UnG?NtRGsr0if|Gp+ZViP
z@Nl9`J^i<3QmfQbEhO{Y*F0vA>z;^QMSzl}1ho+ucx=P#UVqVf%#Gq*?D9*0NS%jy
z0S$Pb|41}v&@nd7M{Kbc^wj4;7Eee@(!{GqIhuXny^56vFipiZL|ew`=;%g=*g}rI
zuUg13FU)p)q2oou-xI!m{n{HG8Wv_8kIF_g%pzR)bmjB3tBUAL*lJ5u$G%GJzjkEp
z7c>MQtLCyqCplN(N}sl#=&NOiD5(ri<z1iiw6$MV6^L(|Q|w7}R(|zYE{5FV#U~`}
z%k97@^O%m}qyXmi^KH%sv98C2>3zGemN)d@0+Z^j5R`L)yfBveKJP}+#{Ggc#}z%F
zb(CosC=7ZXnlx7Hvr<;eSsHPfqXlRoyAHFRh-2w0HzB2kh1SEhdc9TBXPRPHyPr2a
zS3lZ0*JqArX=EjF6*WvsWz!CpZ}55j+%(we^EG1?@7TX^f`6aMbumag>3y(!{hU)C
zr5!hFwIZ-dhyM7jHb;{5f2!ku#VCB=lRZ~hmwvI@xm+R2ppPO4bqel95lwQK=}e*}
zVGj8vdO<p#fJN@RU;3|JVKc<pHc4=UBTz9hh$9kaG%j|XfB-TWLM80@Toe^ojpBvK
zh`&vO<2$r=q_ov0T-?%^-XI+G0^_b658JL$px+^i)h-cBgWqhzgUeW@XGYAQiy{iy
zu>Yxw47RQ1XTosP$#m+QQrWq+=a%knTbet>=d`Jgn%zV26X~3S5G7YjOYe7h_IFC-
zllp`ds=0Jiv9v%lUjxDn>3L-@TQ4J1bA?2Jef<Vd`Foc)rF@gy$y|??DrqenLkCi|
z-^ATA93_OU>W+3#617oNk_j-G3dNLle3|2w%_c~Cql<Qnt;RDMg%Uo$#bata3XD4z
za{8kBjQ2~Lm=v(UTe*5~Q|nfb9>U&l4FHu(g;3MNc?y}YqA$OpdPV(ka(J;q!{Nt+
zWfG{YQ)5i$qbRWXX0ijxRo{|S%w;S4=?+^j3JS51^3i1n{ae*-@6y)Nh5`kt{<m>&
zRo(79%ZBMtPwrj0w@h`;qI;t<3q>i^ZWJjWjMjsa4k0kYfOk4Fw$tb7PPYkEQtC(@
zJWXKsJUgtLNBUA~>vf>15=GxWe|j}Vh4TW|KPvDuG9EhM5~A<68A1+;cd=f6ny6`0
z-EE%~A1@{?9Z{bH82PE~PvnaJz;#(BJnndEe+TSV$phd$uPyAgXux;`w)KZJz>}bB
z`iUy(Z{ma+T~t(5<!{7yw=f2o&QJjB@Wvk7U+-km*KSem)osw#;FJuPbo)g<y*eI|
zgG1EO6T?fz{Y%Pu0ja>~uH5(+NSVAFV6^Oxpf}hB9}|<w5i%iOeN0=yqY&#OK82h7
z8LUoz=5YcLwg*Sp*2?;F_#XCUje*YcHUN1VM%U}K4?|PGV9i68r)b;+nIy|$l;ids
z0Vxu>2^dkPLCBv07mya<wPenW)>Y#l3QE9Swx4Gle+TN1oR6KmnI08djuRg*K|G1P
znQoO@O$zWF445z<PQ5hSJ)0gM*Uy8Ut^zmKUWLyoTtpoc3KzpLAnH>b)t?+gxn2*u
zwhe#(KAw5$VaWR{?tfB&*!ncU)Z}lGUpFi4V*af=`K#Vc_lIQMrAvriIUw=6Ptma3
zg^7wMQ!V!w?UQtSd}l9QQZ<DlW4W!aPGwcUsPx4Y24^NR;I}doEHcn6EwQdfjmbo2
zsZYo$r%Y>UZLT7ieECM<EdfrQW(Yw>$SEo&KJ{viL>uK7yU7o@x6Ri7g79ws1K|a=
z^>dUNEt$G|&Pd=4^%$<Vj$Duagsks}Npal{uvoF-Xtn-klT~Zv%S$xPyeQkIUrYzo
zk>sQv@i@1xr3jgv0z-U1;;M?oR-$B+_a_L;QAD^rPTe%vLqE(Fv3X9Snp>1jc-jwZ
z*Gfh8@bL(}!0wMDm%TjrRr7=HoC}HDZ6g2!GVKHaLS|r?XOb)ga+u8Xgpo4dIo{a!
zn5x|{2#r-uiV63cn%U<LhU2<7XLVKscSBlgsj-|^r+84;vZlp}d-c?iad8fZ%?j#u
z<Vwz{1c@C8`7^XxYd9OP>l6IWOJpYk9qjK=V?oHsSh685z}D-a?M|-stfza^4o_D(
z|8*1tUMsq1XTy$6z$x2T4L*m_)!NUFk%~&9{eGMNAZZ^mb8Vbn5Ei-?omvHk8>gEf
z(mzSWb?<Z48>op*0KbO68I<+T`KSbAj6;*o;O}#_>QQMkwd8}`j=2dqo45&|=)D(?
zU|Y8H^IjO}Z;luc@OV7Ui|Rd4yXB2pd!?0ISXgK&K**bhjIoJshOBRJ*uP$W4pc))
zd_ett>j0~d+seN9CJWXTz1QQdnHf^odUpW46G|kRHK==uk~`=!4|lA!w4~(TyON+A
z;jKY8nx!dWOOz=tvbU}mc;=QX`1lN<bX5o~tpTwi@iQAO?Fbf8@;BAef8s1;FMkPa
z=wr3&J$@RnaqhPG?{fB45Wi&YS;PCR5+R4~+^>b%8mVc^3Ys;tsDTs=hUUKPThQw8
z-8-nPA4aMl?V5gh-m(<)%H?rmQ8DD9!dnm;Xu><J=CGa$Ca^)93Z|bKy)W(y4#2mn
zx}{xeldX@KHr7Yk_+;0kLb+70nh><-je^QaXBeD(It~r0FF~Hj9p#%UG3AsR8H}w9
zS<qmHwa-qe<Pc;IIn7Nl{XTtaSVvG@A?6lPW*L34ALq!HOfQ^dc3e@67O#qd6Pq`@
z!AVcWA|6!2dq0R+itqm;P~d&YC)aM_dCOsZFlY!-%<D$rpokhkTTnhHMdz~I8^T0D
z-V(orsg9^`Xejh@JIvDb;8E;o87R@_72tQ&h|E%(sH1<pmZzq1npg~yZs2V$h0Eh~
zNs#fdKoZ|RO7Py+u4h5t65YDed@y-erq~gu6Sq>nbsDL=+<@o5Lbq^TX%jIh0X%9i
zz-f%tQ1sTP9(E+`HbWcUQDuNPvJLU}cJ->gkcVffhmjb6c7DF-hg@M{S#49U&mDJ5
zi3^Q`fS8VddjNR@|E%680B>wM?Z@7JZllK^GF(=R1C%eF$=-Cm6OI757`V4Qj(gFU
z;m`sE!*$h2FD4chWqI;>a8vI)-Jka{1EZ7<*xM?&9mH%bZnrdhh&x!%u~$D{4KQtA
zI$vHvZ6n7L-d}e4K}$Ow1V1*|td#H=LWvB4tY}KBB^;FtxmtgDElgdq%+CdK@;vZV
z`FJ00E$$jlo>0IYhmaxE3=W`V(Yu-oe?R8;!;lTu_2cP<d^{Pl*g*-W<o4?}G+J*=
zrte>FTe_0dT5l|n{pr%c>XE@et386PgF=|ea(H+yatla1+B@Tn^|ID44s@S1Jos47
zS-jSlGkFs^g!T}SZm(rrOiER5Dliz>JPXbLIK+0XkiX`t8}SeaNAXIZ>ZcE#ac$SE
zWdA6Kp8o=}|L29|D*Tv!csBE$U}l|@=*g*fIo+hCqf4yAo;fL(t+{C70?S2nIXg%P
zb^w@2TT)ieecpZJ{;QR3bqdUN=Z8E-I|5YYhrhrCR95mt!fGyewcqB<!Fjqxso1^2
zRmj6=TbP#A1C%>RT{)SGnqG?57ddXRPnXatOP$~}ci#bk=L59@`KD}6aTnN0Fr)3%
zz%i$|RfP|rSdY>K?&GeQK0T7|v3IKXYD2tU?LGcNf;}@)2En)5=Z+LYB4)1Pw{KMN
zy!_Nut#c>)2mP^iXUi`;fMjp&MJI+NI?6eFI^kfZmUqh&1k<K1=JXRq-49Z1U5Ny_
z7_V2r%vdXmSoqV|lYJuth)TbnAf&nMOhO${WI#}mq@duJ%S?F<jm2zOyl4nMJOAB2
zz3y7X2rJAz?A1#U2vpZNtztxqB7&o{q>mh$kdUBmOiuOkI3Zb4ODp|dw4iY4n4GPq
zi!1IA9GRb2FR~<E9U(h_<)Rk8hAy)oTu=0H+i{3g>$nz==@v~*Oh6v>nFy5Lc}@6Z
zts66VS4r1+j#pfsc{h%QI9V>j?w={RPq-o(VJQ4y`&*{i{saX-6TU!t0+tPBwT}+)
zNF;w!67bE<?jinXV!l9qNeiXqwG<_`6)=MBAdFR+i_RXI?pCdYu`6My9P$oYq@N^o
zZmOt{YD5}uFx{*8XSs&}jy}qw!xl1n$)e7hwx)hLP8!W<Os!*6>EbtgOssbmivky$
zXtbQ&8I!-jMUT<P@0jq;2xOQaGQ1D!sr(%ytaL9!XZTPzCQeb0!ee5lFz!a+H&dgL
zgUK~7Cc=;B)H0I6sb_{6SxltzH<1W27b%K)RF(W5={QbDI16{15)YXK7cW<_MLomc
zad#``U%oB2Dd-}$oLH!F*}kI^26NQx*1KFV6NWpgsvJ0ek||(jX(XYv^cSX<jjG4D
z&hKP68TrWp8_l1EoNPB`IkaWfFpYmJ?9Ah)oE07-AVPB;l9%C~af#dnmUYNmK+_^w
zFh$$s|KnQy)kggNm50<9kdY_zk<cC|1aBZC+Z#0=+!xbv{`tJ4`BfotVyLVf{T0b*
zZc9+38c7&g<*`Z-OUWeoi~U_^NZp!m#wmA0nCO&2)JQioYqw{9&G!vUHfa8p)No)h
z+x^8yPCg<|fvYVkx$Jc1CuCXHCJQIbTZewqgHxh-JCyB$j&7&4_|6GcSyh|6xPO6n
zbNV{SVu`!9G4b+>7ZWh=ZQE~5iYqIVfDUsXZ`eJ`#hW9ECcbCMxioqKh11G;H1>6~
zkE>pn>xq=FVLv+jjQh%_wPQ%34y<UxM^f^V@dX`Po3f#+fPysl9tCaNtsdDuPN0^u
zr;s;Ni&qS4L!4>47kUmcUb1>mXI#e1Nm)riXMkGXO2ry~1Okh*r=P|$-bnC_`hN2f
zu{W$l+kNr(!~Ew9yHCiUnULAD`RiV|!tFi|4W0tJHYywL2NO3?$?o=X5;qkR&25Gj
z=f<ZHxG+%t={&=q5598(t%#l$+4P>^lzH0hG-qz52r|S5J&{S!Wk=bdSAe6IRAR>W
z_3T^<Xbf1wK+3={L1n8%G`QGvSMDwKlo@Do*feor+RwCIz~=xgkIX^zH67Jdf|)M5
zR)S4ewI1XZe;-S_V+JCYng=4-uzA!-W%GJ8i7{eQYPZ4m0*&|;en}>zBRkG*!2%9|
zG%2Vmm2fN0Qu{`VdKmh<G7HZHu*|Rk?n~kZpnWMYIVbH$g@GvfOu|wn4;Y!h;<=px
z%ru5=+z@W%ewV1ubr^3-Z&j`B+(x!Gx|=|c!POuMJItTI^&e30XW|$7#AQuQ>c<NR
z>`0OG&yMHO{UTX&;qC6w=`w|lS{3bB6>H&WxOlWE0D~YzW~Q<%o`I3}!Li9>M*G1e
zGX2kg9+<^QIG0bsz@cn%OcR!m=y>rO^c!$g*$2Q?F8`uN^6HTw?wOto0Lkj;WO}EZ
zm$|8m58l>8AVoIg`$sl_E2pfz4p^<X(k_G8j>iWt?6>mrgagKGYI%-%DG4J#SY`%T
zp9^M&PS8qd?{PKE=r(=IH!q1YX&d0`_~ODhnO&&KP*4LA1Q)gPOY$JRf$!!?j!0H{
zb`xxmP(4#yh+=>ZW~5KA+|9ZhTDr6$@!pf`aL9ZfoAB$RvY(97$FsNTJScI*yDYGq
zJG)#|EybOiTRThM%<kqH<(^qAEiT4s*V6wnmHPwV@{LP=(aP4XG1Ea!v~v79(%#;l
z(Xbx@lhG&`5y|9js@i8!x6%0q>olvyI`Knar)7V*OI|Wk(!q}y+IbjJXV0ojEG(=q
z$_c>0d+6t2-0Mw|&hGa!Gc#v{<XPVV-y6RMjs?c2=0|-ut8-#T3X`g3)`KNRP7XyG
zY;N@oq}U$t1^=g-wlyuJ-`@DnPLdCo%Lm3!fparIH52$N)kB~OKUpOv=Q)PRZIrCA
zY`g38wQgAympTjrTV%*>zKN!$wxVKV)52qnMzgJH(a&jr6T3X5j&)gEA(@zvDPFiK
z=oJYNGnyffjmf0Z*Pn<@O{LOwIf}6}4JXKB?uQKvpEW<6`9ShN<D?T<oZPV#x`nC!
z&_Z^dp)=l?p@$_Uu1X^#Svei@gM9IoB>|)NIsOriS2Z?jJw1I}&S9@~&}T};^W|+9
z&9|O?H)^ih3c<~rSeJvXwWINXta#6Rq{YlXV+RKUoA^;U6NM)AOm9;}yI^tQVDVsK
zY7ZZLmRQNEeJ1uCcOC-y6@>zR`J5l|rpb0KU0p7y;ROHIul@#OK4VAgKMD1a<Rg^9
z9=?WvyPlD$sf#Og)jm2VCZ%b*ec-cB;_*D|X)k#RmkP>=Mx#y)o>badO;e1)!6q_E
z+c`zgszpEx*7qmJZaOitj?Hr8gpQ{|L7HY-{;DGV9k-jtp6i%f`v(yrgDC)*qFl45
z3;pe<(IY^Gi3&{^UPua6fR+eDMGT~p4Q5wK`gubOeI@_q4V`+OSwZufxDt}x%#R>^
zn}lqkDWk<Yt8GxnM=C0dpPON0@v?j?)J&!_a#!jju?Z=JeWd81jT+R4X!U0TO^ruJ
z9zdXp+IsH10j|rx=ra^!dVkGt3^6K}NRCQ0Fgd^$A>zDcuOlh`W~`vb_N^58M^=a|
z)Vh_U3XRSTgb$y_MkmtYDMR@hN*RP!Tus#Q4J9)e=9QI6MfpNc5!mGYF=qNb4*m8T
z!4twR&=+GEqpCTp5;l&Oo<0d6XHv@&9S;G(D=|>HbB?kW;Gv_F0ypImMU~;%d{Rt|
z-GB#%ETXZxxLADE`_9@8R9t8T2F=VS1M0b?i;D~5OD9HUic<Re#5kM`gZz{~?kqqs
zsD>28-DrpH^dsn2{D#{m;mA&5+Q8D3lLH4#TXd7U{NgU8vj?W~j=W;?>gpuiMr7r`
zbXhn()e6Al&Q-1zAMmfMt&LOAC5eI#4#2MrX-DuvLS^gwPnnfUs|sz3X&1<0g=+HJ
z>-f`8{mSgi{o(9081``vrt@#lDdY{koC4x;m+7G$T)tQRnkqBgTu0!6;uZ@0D69cC
zFf`0>XyB=%Izl>qf%7NU{x|6U#|u3@w9h?)?1!IOh(D=2U#ihMIksp&d@@d^;U+hz
z@qLGaLa6(AmeiNsUD?I5{XA6Yq?&bebga{I7-4Cy?C%$$4He#~G5(QPP|#lz1bORk
zh6*(neHp>zYWJ)(bW#@(@GVoT7A%wv;47XmKl>*6Se$e_;M9@ia;}mA_hSd^PyDqJ
zHko|*muTK;cUw3IQG}|e=e>LsCMsy$fd3-kjsk}e0l@?j`lwpNQC=-s$io~#1?kFQ
zZ(uG7=BVo#vu<i?qC#kZgBfRaVUqF4tUT`I1uA@{U~|$=geqk8Sx%*uxvnbj@G#=p
zmt8y0w1MdPf71r~O`>7|??m<U?pGE7Yi=4T|Fz>vr3~O8O9hRD_p6p80+&lAs@~)3
zh!;EV)&Kp3c2=XlXEuvo22@Dyd~k^LRi@L&LQ00jw8@Pq$lQ2QZ!s`R?JR`A2Ed;>
z(HOnY>l-NWbhNZHU;4|+%JgO&Gf~*OE%UUOgS&@@Bygc<Sy+?<k?<?}5;8_Ar(UZ4
zSwI3Ii%05fef~psRqq~2h=P6&_KcsEL?#7OO@XAhd3*d!yk>6Baw#6kIV+p^N9}-w
zsNOyCsr>48l`vSIH((93z0=0+U-`N*EMvSm2MyhdMxXN$FsbmqX%eN&m@9yVrhTeP
zdV($(cr44lc91#I&y_%iD~>+4zCBtXt4Ggo)>d;(9&TNiSg1O4^WrsLeckN2*6`-G
zRoU&c)n&u?(F`spAJwOmm*!=qF-W@ZTCCPf`9j*Fef@)&ySgQ}t^)70?xZPKuTnf~
zZk_B!27)CcR(@H>UQY|S<DFn}0R7Fw2b?4D$qVcw2GK|y%EsL^R$3tt2+L@uBtpZE
z!{?ECq3!Ook?|Yln}`}?$qHdnE~j~07{=Tjq8YCe)$SS2Wt*ro=aizmt~b}0hfCn}
zo1ouf=szO*-=BVUfUt8e%Frun!%*wMV0UhRs~e(dosQ|Z&X8<uVp3vfDOBfz<e!$w
z;b2l_!ATDcQ>XxFsb=yLP|pUe=0S+LI?_;6*J5O$?iZcxDH>#Gk^Gi#U%(;=L+nbW
z(tCtneqX5F2`e2W?Nk1Uig^_8hBg*!LW&wLM_4Y;Ydoz~>@xQw>_F#4(?n}X4^|c8
z`;F=<4SL_u)>rqF;oRQXpvznT0Ph5A@+k}*I#~1l$)6U{fr}Q(o96^K{ka`e_3zd`
z1s&0o5vngofEC;cWQlTe`s&W9<Vl9plW>=JRUa=ZZRfUU@ttIMRB}El;%8TUtMrmo
z2#QQBE3U1-5)CHb_1=(-EfkL3G8tBc5C!t__MRKU>D$4bk+f}KO~@Qlt#m50I9=m9
z!~)>VXSLKIT_A-?BrUCTvtykknfrql(5BB4^-oU=i_1i+3VtU%+b{GmKK<z6<R;_?
zH>JJwwJ<3$k>X$ufAWDKrxVBuN_Vejr~es+{}Gh`_3572i&3bJ@5qbX!MH+PDwyv%
zHa0ef()yXj#l<JkDoRTgv1O%k$)b{%chemrM}r2!JME@%v2cu`xb4%aR1S*k6W!f!
zF;!Ckq*4LM!N(Uw{jyg+RP_}a99r5$K~#w15?Z0cq9T$8jydl*Qa?p~+wwCQ^b3;M
z$xGQRsl<pXmG34Z0z+UYnAvYGpO^JzIxm_tT1-<MaNFAjz7v|I%+4NIp+F~v&S&?D
zQntDELq=Ielf2xOFwh80b}rhJyK>**R^tFA+f#=ke#egDHJb_IM}_!NqENp|*puH}
zrp8+CuKw}$$&l&6++NV?de_9T;mz50Y;tliT|KbZl)^Tm)Y0gLFidB}c{CxVg0^C%
zpk$J`w|6xHR$i;2$j9I*%<LY|O5Khrs>+IrxlC+mB$-LW8EWr6=&K0diI>C4e=;6_
z%e?=?9eM#<ht~Ospc8x_4x{mE$Zu=8$)Wx$iq5;k%y)z~!W7kdtN=B^_dCkw0KoX9
zP($zFzAHdu{q_a3l@+VUWTx1_rczQ1w2j~}6n{~C8|;Af$IXc5e<C_L^U<9|bN2*y
z^rCDc+lJAn*AY(>jx@;47G$P8s3)y_wSB9~_rMmHALWpwMSh^8S-?X?)H5w)W_EYO
zgtTlvBk=ge(spViSNdV#_$IId9~HHvM_0%S=I%OT*Re%TG<i)PV{u5D&t&=jKFAUM
zt}(L8?&fEPs<fh))(yRGo9ff8q!UwFH)avGfuWn58yO{#WjM7J6o`mL!lMDWT6#s6
z%4CEV1luKd>b}(TSu;XuvkN-wl3G-|E+ja3{9%2^W3ECwHYOYLD|6TjZq3O*lJMV=
z=C>EkWaH!OVR$o6<#B~?yG1HPzrThKu6jvoCtS48FF?p`!2NW8zWK@N?IIzKlZr~B
z&R!~u<%LKFFGn~2MZowRK-zHU4%bK6?60e1c39NsRp}B>z5a2_H|Vna$Zs3_xHUQO
zvjcioTwSR6?d;p3yBkZHNo5E1KU(MU4p<uX8ezcbZ<-LYrv0TAI0U;IqNR~xK6KS*
zqgrpF=5m|-{_NGk>&&zvTfQ6e3<R2>?^O$>{(;uBIovee5K-2BD&Bg0zT50<IpT^Y
zd<~1e8JG8+bpu<~y^$i*W|6*5_D3xfHW++@%P_T9xlGspPZ3!X;$#&jD3DAF{25L@
zBP)yk<HwH*>gwhJxq<7a%?A~VfWgEyEe^bPqh0nWHBcC~d0gElxHvuY_Di1$d~ac>
zQ5tA~jpuY7_n%4;U_WywAQ1K2wmX;pqPvsI=`sA7K79T&bgCjT%z=(0;e%cIpAV)I
z2JnPd1oos&SMKx<{(c|+kFPtck@+2I=0C&BKLDF}ughJ!{b4`Ns+*d}Y;5+0Z3E+#
z!tH$f*)nxhboBg#4)Cm|_hF=Cjr9_%z}m@daI^tX#kT9B!H_8`C^%;F<kjou$6fpk
z56AqpyWnDu6gg5pQj=}hhEu|m$IXt%F0MLk{6~$#|3v;7x&ugib5G<$n17I&{|{F?
znjZr)H7(8Qf`*-adKIUoXz4i2`PY2*$Kb*Y=TvqaL`*iDbOI!k)+A<DRtu!?%RYjO
zI)=KB8Lyxb#njbP1{0s<<tC%)#Q~8qF)^I@*`-&<YxKYkI=dP3(b-j2Rn@eX3Fx)1
z?a1$oP&;tZeIg5pDC|xfW%>QbyYPSjR;?rgQjE(xw@+XGcq9I+2Kx7R$I)N<7Y4pV
z78Dg$MLZ}u<EIeXGY@{N@4P`Yo%X@i-e0boiAhkbaB832PWS<EX*j^(2Qb>OrNh}3
zsVv?VPz6xWN@V>Cu@m(tVMhZqqU5CNV9Q>*q#yh)RCrGT>8v6wX14huBpy{hs!rTU
zD#w*4A_vbhZig(&XtZ7FY_^RcvI@rOD3Ne$EFPdrnwOo;xXh`jNd~A*a(qgpb5TwL
z-H%t<twe#eu8v_`Bmh3atx)?C7LwchwF{Tq^10BK5|IXak3JB7$iFBD-@osNJ?sSB
z1p51z&}sY|@eEIQvyU1cONphh5Ejqk_*ilVmsg#m@jS@CY;T-&XRJ~#A3(t;E~hO=
zeFy8UQ-Abf<UfdKY}+-?!ucYXduq{c#RU&cQhFSv^cy<yAuPg)VsVALiP_Hlll1?G
zQi<U6i%Zk53x4DFo$xpjE+5NK;F+K*!{r>Hn1azGUQ8Z<K~=M0Fu1D(#NB(wx+!7=
zm>S9N3X!@~1r*5yON}4&XCc9_ew&o~$2Ce<gNPI>^#90i+?`V?Q9D2yQynrX=cFcG
zqO1|$S=~$`D{HqGf8L9kL<LR=x(C?;GbwHFCF^g`g-Jfe^xWFX6vqC2@E+t!6ceHJ
z71F6uT&YS@HlL|h4IVJ5#9(OOul!5raWONMu=Hp&s!c`OGUt?x0U5h}qe)^s{nm>a
zVj#`7UEOZ1!D@kV#ZUeCbd-KKHsF~(2<sqHq?-4WM*ZvE*wE1A7U2b3|45@jwnn99
zYXsftH1$SNP0>$bbLFczWHyy;{Ao8uTeXq{YtL&~uOlfL<RH|Kfgd^Y0m#oEr1ePn
z5B}}{_UT^u3uZT0O!$fy%=r)NFk_)GZ&p%(#jhh&RCII=ld{|!OL8@gRw1w9-@&k!
z>5cK;mElBS^gkOF?LaQId$nX0DVSyw`GB~c3cpJ<N&Nv+?L9$)B;k88`NX*2uxysl
zq5-5$RFdX|DmoQ-v^I(G=Z;snnDZp^z1mut9Z+>Jdf&Sat{fax%7>5;nn+<YX<r%M
z1|{_+?vRB@V^-XqH)Dfc3zjcTBVEN1uC##~a9kbeds&ixM?ckSwuH1hzJBdI&SqkI
z+RDHe4iZo4$tQB@5T-;5s~T^pg5D|Se?~ti<#b315$kP8Ey91iFXQH<qK|Ve8r_O1
zXoeEc;vFn0<WlefSj8ls{)(^!@c9*cRlSOvX5%M+0XzTy@k0PMnFs4__l7=D>Fc;{
zCoJ|5_4>~vl$MoEqlvPEfW3-v-GyE2#uHYF`{7&nwMK)egJWYD{+)pXh~YufP3h@4
zD@^Ow%Z;b(qL^wULQCD=NM-5{4S)Qvc4uf53-vPeHOPdSLb#KQzh-ucO=uEdVXIOw
zWFAv~>mFw-W2Q>JZLYbEOG+x#-Ql)eRaU6+F7NcqJ%Y~8wSG8o)Ld(pUb-%L*cjn*
zWb|5Qr=*nMs9LfbYmud@)=OrQWupICoW_;UsML;VZ&jN>t(uz0n+nD|zK2_V5DUr-
zR6|ku3K?ELa<~No@Zu-@J5r@EY%d%_M`rLZbN_jfwqf|)gPYy<vxa>^{H-8FFxM{Z
zpS9Wlnl(Q2y@bKZe$A|3a@W?0G9{{31$aJzlAb;-j;WMu%;XmiT&Au_=I7@R0(3zm
zV3i9l)(bq=dF~;_fnp>3nA6!$2P+rrW?g!JF=GENlVm>lR`2T2-?6n;m`s%TyNpP1
z!^9ZY_LAgF`opOnR#46{-EZKkN@{0F0=jpeZ4`MoJgYMaE2}yhEq0+*Plq-wmldLg
zZ<S)JUM_J!W0-HUn}&*wP86e@B_`rt;~((xAgH6^Xqk9p^u2(Xc{tiT%<`%C_^Y_k
z|6#cQ-yum&^Qd4@Ad7Gar2SZcp_*%>>#~h~XK9W*OEEKOCjPEB)?>{>qq1~;Yp%?t
zGngwz-#_CpV0{bChp4h|32*hqu1H;QT~_hU{9kya#b&e4>e-C<h@0Sl&07CE?~U_7
zz{px(h7vgbx`GgOl^Y%%P5l1-`&a6+ii$)4{1lUymmfdVOL?I;oXP6OuA;0gE+G-h
zBU!jHatfZ)oy#QQdYkzZ(?Qg8RAXb~w&%aQAT&t=t$>_SV20P}rx%8L67V00Q5qqq
zD-bG)MuS;#auPMaxmkzz-mVk@H<fIvz!;!D=%~rd6JzLl7I@z7>wu#dAWx}K^i)g&
z-zF)2FOVjEE^!9aTa+Z6E8{LsO+og^s4e0FU5HVkNoV)8o579}YW`DLEkJa(SDhL9
zUaTr9b*4{iC%mz#c@!PG>4zE@O>-nd>gdQalsRIV@cz^Pu8H%VVMF`l7XJ4${Oc>^
zNH2pv{q)5^Sj7R3@F}q0Pzl=xUqVSKo`j5y>X@i{$Wko%9RZP6{f})<kPGxG-YID4
zdC3hA88?T46bxQiSXlktkBY?%D`WUt`e+A{401mMXmJIl8XcYT78N*4#B?jkZTG*=
z_VWw9PE;5te@V%>vkyps29v$y!z8<V!k(Sns1?TvLn~LP`-d_?JP)g;`#sS)3x-?(
zU-XX@SJ2SN=bkSFYOVU#hfAoYjX-$ghuaKbir`9XS7vLbbftsW^-A}oYHjjY3@~c4
zY~3MC8nQ%H9r<hCG!x_;#^fz0nn~5`^p{Ypmi}j*BzRXoM<fQWn2I*Bd594+(JK{a
zcqKdPwAgQ{m8yZN%P4PJ^$sKr<ZTNJi=Uk@SCbt5hjD=Uy00(+4VCz$$#TwPTe12O
z?_&^iODUJsS~ih|u&GpBQCA$m+oP?&ITqLMYDNS{#-m{2k&2@wfh-c1vQ(ee%-9v;
zwy0z?J?s7b10_dRzvUM<+#!+S&waI$0*J1Yf1znK+Mv5Pey_ef++DeNl+VL79X2dI
zQ{>MoeI6wFs-_P6d9>_7)5V_->*wHbxBxnm5A5RIGff_-tQnnuscAnBGmU)*mYsc>
zH70{~Oyc*s#dCBS9nd^3DXo}{lsfV7U5oHFc;&SEDu8}h{I{F;;R8&kA2Byusw$8h
zu*xDLBEG2VV)au~Q0)C6yjxLQ7&Ig$w@zoNjBQ4}*%Ix*u$A;sWBVszh`<+3a2>Em
ztP~~ziL;X0G1J|7t%8=?<_ryx*}A<S4xY?>i6`~-5#4q(BE&RIKo8sW^!tzDyLZ9C
zFqjMm{(mX6ptzouSzmw5bT-qTO|KLTSytZ)Zl0Lv7J+21`0~0%zO6}edylbs9xACF
zj5m;<+SP`Ru;FajqY92-hS8}KR_AW#sy>z<7)K4p#-i#bTXgukei}jvj*LvC_u7|?
zjf*4R-`_{A=uQ>75B0bK2wJkDp6uIS?Ydrt@-LQEN^Y9-cFB~Ya^UIQd34+a4H%2<
zU}PnZ2hU&LR}~qevKNfBD#sRT7xo3BYd)^5>eA;Mhz!Tf%b%05o?9(Eb&s?$!?gfP
zqxUe7yiYe{KLCDKlzWMt%}Fl)gV;Br_(F#<9@Ro5JZ@Jdhyh^Eqy`jng-hN~cWX)5
zwymc{yPuffw4X-Ueg`0;3-A6YpL@fO0>0}mq~3kUp(6QQqp?gL&_>R;havjry&S~z
zrE0?<QoGjmFYxhfmmix)Y`xF1U&3R-ItKCU`XDtk6|PqJu@G}=sjDx1MghcEt^}hk
zz(c(Jo#$c)Lg}n$K#)O(_J<x&Jf;QdQhU4YhMmcG1u2ws!zi(;hy}P${Bf}XRR{h{
z7{hQ(fgBDbZlbsK4E|q_h6xz!(gwC-mY21B$K~NE6TYJSLo@}eoFiU&cKtpfy+}}T
zjzV81nKufc2dg?|xMFKdL}L<7m{Te!x{7_$^%6~Oqh&l_Vw31=2LPB9(Nqw&(R^9)
zrm_y1<_x#Q8NBf%I7xiF9U>&92=7&u;K+Y=0raM_$b&*9o!aKR%r~tqVgVtQLNVyj
z>p`36@V_a;p64oT{mCw~eejMg-AHU=VVlT!+wnVOFdsBYg&&f59YU41(Z5%56du_3
zBqSs50zxU&0@eazgWP=afO{Kx!(3dO#_CJ^B-%;tvsG8wZR)X9DtxdxkK_xTWMB_6
zFRoYDs)K?;>^ciDr+FrZ-(P;~sK;QEhIk17EFE0oodjWh-RD!+8&N*wVdK@MVa|SS
zuUAi;88m=2wJD-RqXF&!v5h}nJp|+82nB4;bi^~T4J)pakI4xR)aKDWJs9o<NCR(<
z3={+)r5s;Hi*lwFZ7w*p@!^?~bs0!wHjf3S7$9ipW(zdea$F3IU2+>Mg}Gz^TZm0c
zGIjC`;<S4M*#nlbg~tK#XY-N$=XGR&^+Ru}q%4U|^FG<b3-lZ(o{MoIo{4Som4VX}
z(7|z+_=8BgL6~174w1cQAfD%mKyi6FPalk3)9=ZM{L70=&66+WqVu0m0YR~zz0^c@
z5oTm+7UUm=Il)UV-?B0qYAu#-6`{^ur>4FX<ig%C8``s;9np=yDXs@2$QRiq8c^~D
zr8WJWqC|8&(#sN%`%>Xa->=n96O}<D8~t#)^Rvj?D-+=u3GrVKvbF!Ml|oTOawA>h
zo!Tme+Jr%h>vRjEU?5tQZhriP4%ea{;QeN<TNnld$#$t+I0OZhFKC#QNG)Je<izXV
zm7?&dp6UPbV<<7BAY*~-S$$aKq$S%qHiJ*%J2zGprTtrlMTQHS9dRyq2pC1!4Wi6t
z{|$%WktYzyqD$nyO221%37H63g^l7W@g;~D3-&@3BL7KwLp;HB>78v{ysi7RPbeW`
zh}6)u+fk_2!qxPQ#K}q%#Y#u@lX}0K%iV49aNKP-_%Wc(aaKu{hNVR(>DnGc{I=<d
z+5=A!Z@@~&)5BcN84!AoBf;VTe$@n@5bEaV)$HrsP6PGG<W7QuEZw_xyuiw|IX&Q)
zf=X8nZf(3#+g*^xNZco%5#=Ke5?xl^25hMS0eQ32<9=b*5YN@JVMZEcs|MCVSg>lY
zNJQ*2c^fIDYLSQ5?tXcfmmC%r7Q*B$d#X#r`PN@2LSVO4Z;+qpvquRglgZxN%liUS
zGBSmA_UKjq(S-kLvY|e_MBDyB1BiTuzKH(g6ad-Q2BlMk+243a&8JbznWsgoU#D4&
z$RMY#3Lz6CB7hQwU{o_c_=8da+Gpe%b+<g<_thtUZwgZ54_C=47jp9!id$JrnxWaO
zW-{^P2Et=c%nC1mzE5Hh9(Ij;ZcV$wo<&ef5B_`Z1wGU0G^Z2*L0o$FU4n#gXRBty
zoQQ6V%3;?;DYs}t(Z~$w3zhf~4jp>a9Vr#dAl5femrN(`>o{CS5x36>_#1CstlMnJ
zEh4ie#LRbG`q?U`tT%j7!N6qAqM(1v9#yT`v6$56{(39wwZY343WJ^Dluy8t#DlTT
z>0-qw2WD1s-&Nvu>$3QqD{oxK&%wPhD&8Ze)RF4T?^BpHa)L(3y_9WzCO`n&B7sYH
z5@Mig&q(}zEq{qi#{@>tCj{Ved5f&4m}a81LL9Do947#ZmHl5p#c;rx=b)F7$v(i+
zjsJ8#khxc)>D75oH0*6{fMv5#^YH}E#2IBT6rK8uGRn6l>+J*Rh%zQJv9Fd8UJpEb
z?yNNbC6%p!1y&Y`xw<wY%9lrJtC~{&FFn&W+B2)eN95narCS)=phZJz&Bht)JEYr;
zAa*6UFu1-&m1p77uNRVlatV~*a`G?X63#}JCbCXT`O54-W-UlS%?y<C=*$f+QO0A=
z-idH7FOj|TWI)`3)+eH|)0$E}qP9)T<Bd$_)AVp$zS{A)^_<duD!;od?Ty1D`~a*#
zT0w$@?6{q&<h*F|esIUFLCH)_r{ZRh3<wCo1u^(R-ZJ^hi8ivd6)Xy=+?t`;tM95y
zm+)!Y<lhlZ*qP<lF|!n{Et-Xl>4^Cn>hkZtC$S4f;iuRGT#jk6>cXBPU%$dz2Tpmo
zu&C${U;y~g>n}Q$b;@ntZRYgNI@ulhyPEeBxSoS;ATSUr?ybk-&@U4rUS1uK8KA|>
zM0AJ<az_^N7>LAGP~18$Z%dmxsKeTcxPsByUVn|2T^`jx?tOoKS_6z^zgh#ZC<zyr
zCeTt614~O*Kv;9Bz}CXqObU27xS!+MxlcZ<JN|FDJdeWp8#Mi{1oJa*@gUQ%T7CO_
zdx172?MsEj$$D2RDK8tq9XV*&<KW;>_n}*dy{sMMg{PuJWX;MP?%Bnw1V+S8cMd+S
z=Ydy>!M*lb4m4|9hA9rRjE1_uM|2VZg5=H%xC4FvF6I@n<~^{iOr7`#Ap2MUjPM>p
zoM8|ZeLr60n`FF{tcj6y(*2|-WvTgEo=}tO3XXePT3${?x2<(9xpY$htp=<z9uhFF
zb$>OnW&dMAvV+Jn(@VHSGVC6d7B`(u+?U%rBwQrjPNvK!`~Y3b`D^LtkMEgZ?<^HI
zpa}8OKV9zT+l{dnFVx6>la#?HW1??VU@i01$&yWR@ujOQr<mDgG43;=@M^scLJ~97
zj_|ym+-h!Z8YGslwvXj8D*<i2ZURL@=ee$#o(+QL`Y>^c>FN_rY~y+h5hu?nxEggQ
zV-<g<T2@S8r=P?F#8sM}AVf5)MA@`NLMNv;H5Lh|dqp>+S$xvgfp~J+6+tEUBK0wu
zrL3J977h#fKQupGh5p!5#@3`7Za9O&M2joB6S(dJ{G;ziGROx+^#J=TceM8#*j%-l
zt8&LyI6HBjr^vy$PKgM*_s}aJADQOFw>GR}Ki$4zG&}nC&^)4cE!hR{eBHAqezP<1
zFx0{sg6+^wcd3MrY@7RZ?4^3>o+kx6d2r4b%}#0)j(N%fenNv;_u4$g+t11XP{{Ne
z$mi6~0jOFpM1p)@L<PbK;J&}b{L(jofAwJFeZ3KM*0T06$~-XuWag&xQ7)%FWtiP?
zfe$ypf>q5#dOlA3MidPwH1@}fLcRoGjoE&XWkusA9M3estiTYLlw|4wZ9R)C4sbH*
zq|MBx*x;i2{I<TegJ}WiB(gn{@zpvfMt5u0!!Ogs4+s6&w(((f&EJ(K21q3nVRWhh
zL5>U{3#QEI$A_6ZYCfP7mzABnLM(WZT}a3-wC0RwW{KfQ6v3;HeC>4_rpv6oM~r9F
z1SoyL9!B(?;8o%%ZX#FRS8tASS-T0?g)^R2fL{(i87eC)pZ(B%R6usWTXq;j_beb#
zVGeX_J?Vx&`&B!ZO4C8ytN%<0ak_T!c)7U2bl!_5J74Q``*?ReC&*pZxDkkbagB+I
znP~b+=}S^9@Eh*lw)Z;P)wN1--Br_fK&$Gw<*&a6i0KcyxQV!eM#1Fz*X`RoJ0RxA
zb#JTF%|7oe$)7@X(6WaaJVlQEn5HnT9fEtNY|F%u-eZT`Yj>+xM!=#r&V%NIX|Sqc
zZkt-+apM-Eud3_3vZ}VRm-nINv!r&r8=gKMSdD$>l}X4OIH%^Cie!>8;&CurE{ZUN
z2M}D6vAso+<-6Xu4*;+fXWhd_&$A>Um18TL_a4g0bo83m6HxNkt1UPNa`&KndEG6o
z@sbHt?nnKZmG?ql95tPs;NZo6kzb!jr~R+X-uZ&WZZz+vrqC=ZoyW4hF;z=JOPM5Q
zLnejol*U}8I~Hae9bsEhL^{FUrLDE`=yiv3e?CH@9qH$EpY4(7?LQt;7ZlY$v)i~H
zK(8~UbX}WB^719)N(HbiN|me6fF*$uqF!m=!)%*`t}vcKk$!hdo@jCu`3ZwXw*(4Q
zlhGfDK$+)rJNND2(?Qgto;~$MPO+}8HsR7-J87|ysO0SQ!q8H#DnVrWT>!oKYQq~w
zn|^Lmy9)^smB`EiWZ4*giYws#we%%s4f)TEzf*EMo>FKUs#LYzZE1UQ@6!+8S3#sy
zR0<*Q&`3ErbVMR?h=6iQ^_?!WY7!fBBfwA+kfo=km7lHT%e(6`A>tnC6hbUFg-MR6
zA9e3B!S99pU{&VQK)I;yu@lFyivj~{y_U?nA3aWd?~qYG60@`a|IzkVQFXQJwq_v6
z#5K6P1P`tgcbDJ+LU4Bo5Zv9}-GWPy;DO-o?(QyU@b7(UueHvpR#$aJXru)unPZIa
z?Qic-50*tWIrywQtX6j|Iqgx<n&TRV#TCd!MnUHp`iWp+iGK5^3h>NV3HsgYb~)uV
z_XioFudu(Oaix@>X#v{C87-PW0-3~81pn91aYsZu0#Tc@%3B~pJ@b|L+?0<C=Ca46
zuQAHxg6D9K5vtC^sty5$*TUk0^rPPzyl{_@$UHD#ZrON0rePg{Rh>UM_<lYFV!t_*
zdbPJv%?f}rLImUm8JIr_vpzl?U&kPS^qUm~!M(p!!Y0D)0HSn~PEPghC*qkb<b{64
z=ly~&c0ugG8F26|8O0##pUpP5ri9kT5iG6mw*8@Fqp6AOSZs+g_|u0mWMM_n@67KP
zQgIbgf%H2!X{%3EdyhW1d$%30ZCFArI*iMVa|?3)x(O*fT&dOXC%I1dPa$w{x^L;{
zc1PkxmRy0MB~_(^oZ}NIycqG>h$*L~qw`I3w<lqb+YZ|oo1nU9-f2xjUM3HZ$Az<I
zpW6|k?q_1rU?9}15Hz|C^qBKx+yY+HYa2Nehc1(Q;1E@og*qD^!Ld_&`TDZ@I@zVG
z@@*%4bZ~sAnGL3Jb!5kE(2e3>R~SB<q(409bh=YLGRdF9_RkS}|6LvbFBQ)BooIO0
z$*ZdTD4z&jf=i#shad_{MzLJ-yxtstHo%CXo5@Wf<7Rv1oNRcpma{>SLC&}h-M?ub
zzt;q{O*&2)AzjC1cj8uaW4tO($bo-&a6r+);I9Yx<p^V&<>8Rp2Gb06)tX)LJbeWb
z4IeN{qDv<XY3H-(L(Fgu7jhy+tO8Rmziby9^;OXDkkG$gN9%a*+FUiEN(z6`R4bj~
z{o15T9~G6R-u4lp>b2o}gIC0stOlgQ_CHPx{J+<M_2;$_qr_$E6%&~zKf#gsyQCt@
z`7PohEHY(NJYmLT*%Xxa;fh3jTJgK$jp!^V@wFqVxqquW{UVOg$YBocU8li<uF%$h
z3<&F1NPk4|yYl$bK-?UZNr2Q=cqhM9QP>Va(KRy0r7ktbGqY$1>Ye=nLb(#&(F<*-
zdyWnwnvIXnh4(!XrelgvQjLq(Uwg&VezKa6nPGC>Q0Ux<K^D<K1mlyQcsyUvZUfQr
ziCL{#J&%fTWio!94$or?eT0K?CLG2(wlqpWaS7xDAZ`m`OK<7WH%JMVWTyv7B?f8k
zVPq#8No&bEPcttJlP&5ZSQgd*3lXxhhIRF{ZF!QA4=eXH4~;Wdu)IHb=qEDYM_=1N
zDn;_shyIcXxlF-XwuIMLlL~(UE<rZ`q^|t{<(_aYj6?EsXNI<Qb1!-<>DA?;O$P%o
zhQDDh?tz)AsQ2?(ByyD<K-+A!Mlrza@j)dLMhv|ET}v<&OcK+V?tKxL_4yQyPxGyc
zI1G0D6`+qg;zH@3$-|un`M{u2SORfack44&H{hiojz(y*4FZLxOhBrkuszV<MUGs@
z@AEjoVPY3-g~ziahsvSXsGM4XStrD}^kqg|`VF@UgD2qd8NapPkG9KA1O#v6i<)Pk
zcP0ypAu9jX3faGZ;%4(5WoYg*^@_eL+ft2jnAhphF07$3xwR<aPhT##xt|6#w(G)#
z7r5!2_<U#cLBPu!06-xoo+q|~w}2jUF#1Wr!6d^;9o8o6n*hICj|mi+>XOacC7bCO
z$unWsF5xK)AHl|>0pev~@eJsFl=F)I{h&tqD4~}LGot`6D()sPvck`^GmrrXUnxv2
z`7rKk-s^qV>-Z^#7Xqp{{wlV=bw3On-$*L+(GCu9lKQv9>F;xN=GoUh*x6i6E+QtS
z2I_ykf`LE34OH8&?fE8GcL&}f<UOP-SXsg2Ijvsoji0n@*{@~$-kdp{5$gXxICBWS
z!T6%lKmW1ike74xP7VL8Zf)g@tLw@)Fv84aCvw|juWv3+re(?NMl0omXsE5lE9n86
zt&TM!TTK0iDX;wS&w*n+T-WHhd*(Y1mWWwGS9TU6&9f*XR5}tq(g-LRbf0euZEGL!
zW{9XJwY4cSOP?j$!hh~zmPM3Zu>nvHIE{O2i>9A@s`SH9ZzCQ7J%o-n_^QEVl&A~=
zwE9MIF;&746?Gl!BpR77HI)(a|Jq~IL?!BB1d>B!Ar+<+DgFcqU2Xs)Mb<8<|1G2K
ztKot~#@R|oM^{dT3ZEKeTP~Y$2OJ_T0$%EOiD}!ubV8QFiw1~;ngAQi@%S4|zaEPf
zYzo)i&E4e1o-4U!An>OazsCf1%SWx<eGe|DI07sb^0GdF41<=4#+A!B<l5Zhr2S=;
zMuNt`!3vgi4Y=w<Ev-<yz`@X@1W*B}vEb+rLnJ!A2!U=sn?_Om-{7dxW|oMs2n^Z7
zp%o(T!iA#0am*$%>X!1gJid6t<PZt#<9F|lwSUve1CF@40xR!>2V^_W$f9gl-sVb2
zm(9Kiwq^4ME^c(DvQ8xm_d|~_g+I7gy&jLj{H5J&<cOz&T>)u|N2tOZ&o2N{Gy61$
zS;9Zx8%X3kdb)b{+!Cm3YSK0?JE!%cW!~w#?^7<{ND_gZVEfNuSG3M?*;l7MA8*V^
zsZRvY+L%|V*?MAjo-h6~9imQm?nJDTE-7sMf>EeMZA)dozGLV~CH8)@d)DmbH#Gqs
z+<h&mH+Y89MmT>#s&YjCj-naEhZ=HXA^Wu69u3*Q0>CK$&8Q6QY_d_{0Mo^PCEXG(
zKId`-kr|=)9-3j+8&MAr#u?rm$xtc;<T(4&j{3=2<FdZUc08PDt$sUrWa2C2WRdf(
zJWy^6RS@`0xn8O;-F)J`d5|!Okt>lKH|gZ9J=0#)j}Rp_2E?&Ko9G6fy1u)4&l`Dt
z>dG~wT*4(MFJih$!`?wSCl?LoN<Bw2#|ymggxtk06^-~@ltSEPXXJ&-YuFYDd-1#f
z|J4<u98?l0gqCI%GhjEdkQ*7ZwyX9WxPM-QmBHYl(atm<HX6fU)s|=TQ)yIJvtk#Q
z*F8DDc(^FvfSkf)0~+v!gutPcQ9Gc&cJ_I!?T{vhA&J*YxuY{>$&mXn!g1v;Ku50h
z4Kg0ys2f<+N<0U;L+3Ph8`9byF^n7~LCI78H*@m%Z0GLH5R^qWMbFpgWbDiojH(DO
zHxY)+BjiKdaAHkH8#iEh)7$_jd6yQ}px2on@#kHMxOYsh35P=@nEqp!zACQrd|GTM
zpw2_UF>U$){%qw6(c^*r(USYX;Eg=F0LFnCR|oXv5qLz(2w5GO4F@O#T)s=NKfE8O
zn-QSv6#*=ia$MnFV1<87Il&lNM_1D0{c=ex6K`^Hd$L@{@4b;j7)<}z^$*F<80g9f
zDiGo_7p4}$#5-ys)Z+(+p^n1_SElgaXe&?=>p+sXJqG2RMl|rvLN8aZ$8A0LvlE>&
z6@obl7-#_knRq-%AxJXKZIg&?uJs)E&~nA}y^@hh;3=;E0ziBkUkw@&Z~<KE?S8|}
zwbjZ0x{3gTao~5eC9dlWSWNH)kG?$r2Rp|{k7Dhg-RVC`!Hb9O*gtckX2m?^;+6?m
zluu=h=WetFJllMBeFf5<+oT;2+WI#E0)D$;K!`#{sko|Ry@+X|HZoX#?3oK=!tpIA
zSi(HZe6<@cGqWis+J9(2sSilb8<iLT>6i)r566s0(dP!sl#|Z#Ti4wrhXLU?OoBf*
z`4qjfed5QlXA@)N{c}_;ytFJ_jgP8_PGODXl$q|71Zr3b=`<Aw1K?o%vI~@h))LN-
z)7KmVPyPZfRMf#DA!OaT>B_pclEO}muUDTST-RCfbLS8Pg&=(U0sZNIJj#pWjmB}~
zKQXykBlxyxIwHbIQ;7bJmaf&t2p6JAq;5q-2@5GW5(8Y!-sqs6eH1pa;x9(Dw8xM(
zaoDc@yPW<afz({V6>H-tnVYu9?@+w^wDrFH@^M90ngjr)*HfgDI<2nN<+{JrJ+Kj}
z1bAoIg+W}>0q_!%Hm$!uY>4A<<VW_6jkxZM;E`4W(8vLU)-T^~1x%RwJy3jrIrc0R
z+w@GwWXKh{^ZsnTTdv`T&NO2VT|6D6wCE3q0i_2G4CYeI-8!~%9(Aq0*V7rTD=$QA
zzc7ai6|$_2joLEWIttN+>GAP_)R?^Rl!l(3b<J}msCs1)vcE#xPw@9QJ|08iJLF`=
zk>wOlzBqs<2|5-4_Mp$WeI~?N+)J-G-MiF^cOk>;UmV1}OdL3#&;Q*f<0<!UwzjFL
ztG?o9V{R5>&Gp|@u73{e{4&}96<6t*R3xulV72p?pabV>!yOvdGmn?`1pC>4lZh{V
ze;Vv_J#3lCq+iJ?;Bfo!V4+GT6^uLCCp-I`{IafFUC=CLs1kVi(t0A!pGnL4oU+*y
zf^l7#17|#)+v+CPTO_^KYA$ml)fN4br9YOC_<#`}9{x!fG4-DK^ofK=_J1qT)4Oey
zs%|DdFjUs5!{fRt)JWTE=()lQjX-=xr|-*lgzU0TSxatL?Ee#)OmUJZDv-Pb6`>1Z
zN$ZXqD0LpoqDApbzJu)lZR<bxy93Y>>NS#UM|fm{;Cra3BcSBjAtPz@i<QcM^)A|W
zC02=8)B6~ieziRxfJ?)Hr2_Vv(NH`Xp9pCwoPPF_<+E0j+b#!1Yk=~?vCE5#B|Uh0
z*e`@Q0R#aopZ`K&=ldIAmsF~cYA<YgJEfv<A0qne*Ebzba@kYh<oc1t$Ys%44ds#@
z1|@=X*)fhA$-Rd!5Sehn0EwSgwHF6<6PI@)T@hvIJ#^$;@!`>>`E9Xj-~O?YjTZ_D
z1=6>hTkQ3wW71~7Y0g~ZR#;b5q?vgeh(Xi~!jH!rs#~}D^I|?XUT82pWA5fFZ(%f@
z@8^K}(hV5vcmz|qU8Yg~{@YSByYY?S7I^3$SbSo&aFq2wON;;dYY#t!1}dH0<Atw3
zX-gK1Xe|o!L?u^$Mz+++>2V!yzj(7ZvC4Yt7Qc|>f6(iz+0mt>Je-B+<2vw)=bBjQ
zkZ-)MSgeb%Ss-3%6``J-4*byNkGptz5-0r;=i6}YPb<AYD%MnME4?n37C-H`r6*O1
zhu<>D(5GJcuEor-I4YVx=*$fqj}tt3#|kfkH!{UooDW>Wd!`5TlLvOfx=e4>ftTj0
zyP!|u8u*oU?WFI<H-Q79X@K2h7j`=dFd!j$L{4;o>Y5h$l>-9BXjvXY(71WXz6<*&
z7CyW{2iF27J+5syk|}mk^CW$*W@INsrm;R$Wn5#Rlc?bao^TIocnY7U|4sJNvUKVF
zps}aeEPe-#5)3T3Vl->N4FG8gCIDr1a1%?y_cWRHlHX>MCVmD3dy0pOCA?>BVt(Mb
zi-U%?u2I33L(s}+*iD~YJXGaJ#Nz{tW|T1uCtD2>bg{4yNpvjt_+rn8w)*~zWoG&@
z=oUL?3>bE0uOZxeZZ}*JvwppSBZJx-ZjD|mopySs^s>zUZJh*|SclrMD+^+*JN$5H
z=-2rE^Puws>IoFif9pQqvF?;m)Z=dMz$EIH-N`~lt4pTZWbP8dWI5|Jn~8#yS*}&D
zWcALSl8j7;FfBgm7xOk))Q!yYf=&T-92j>H-7bf(YaHd1RkzaVncA*0DX2ut&a?)2
zo@@?>&grfkBaYnM>MyqTK2$AIClBDT>AA&}CsEbMl<*VK<&atPg$<Tb^026FOp9kp
z1fV$-4}WY;RmHn5%;1o3uvujUAiD0l>oL^;6#&h@ypN{~0F~k$A}Fnp|F?^4{&8ip
z#Y?AKAjM@Sg{LPI%_a9Yh}VfS142OWu&(zI<6|l!xz?xM8Kq^R#eYm#gBb;tNsZs@
zr{hC1sejm7l1oHR5dytP&UgYB053${CghY@5S1}T9I}WE!bZenPCSTh-5-uXq$?e-
zqp^~IX}9Fg%XS#JXFkUXd3v_-0d&}h0L4G3k8hJMtK}Rs|2m)>AMc;t?`EB5A#jCi
zl0tFnG3zLhemn!ztGZbW*Zv>WeHK-14U7Dlz%eE9M|De!7Ln^31RNsi3!uOJy=a;}
zj#TRfp4-~fEGD2&3U%PE&`|_F(1t58-e&F5UeDbD`>G!rf9GpW4)0&RZ`$8imeN1E
z%bb#^m3~6wy;<=H>5C=8$iP&gwu()ek{bOkMK$0(5y!%BlqwZ29#MU}f)ENKBawvN
z&tBEsbpz(p^F5Mmk4KO6m6^8NHV^*8%I7z3+wQ2~K^@jJ%h}acc>~fQW=P|Lbnd%Z
zz8Pz4Y03${jvO<-q+*96(#ycI!{lTfZaz>Bz}6xK{E|uzA`t*^6e#qftLJcxT#EdU
zdKptW(Ao;|ZL{=13|wTz{@$4m4#dAznZJEz`VO+8>x0u>b_&!D87N3y7!J)quSF?B
zY4!MMKF>c^GG;E^5va?u&-th<Eg(P?pQItF-9Ug@x%}NftXaO!>serZfj-N+$)H@(
zpd^2@|1#gB-WfX-y0iKRnfQ|EcJIBTeK*<sbKS4Z?4vqNd*|Ey2}7{sN7}+BPwf(w
zQ&Lt$(5di=z>6x?ppdQO%~|Yq1A}`K896z-uhCsJcf6M&@4X8y)htBP;&#_?Lq#6G
zF(na+g$Ha+HCwbXGxJiK)!a{ThiIgJCkT;{CmstR*=c}W!t}kL>wBktr-EPK`50hC
zN1!#~p%v47LWi#)Tu^cAod1g=!fTQ9VsXbL`TU*nRn%4VpI?r-#5-%hH)%r<P+SV`
zFL(cn+iH7Kq7qz#(gi%VV)F%F?u;Hb!k9ozF+wqDl|LAoUjpcInvrl>MgO`3%(k*<
z{BaZAV8eq<xkFje(9qC)d*YpZJ?rtLMpZsa%7EP5Tnar!Qh(o-Z4Mb%_H6>jey1Nv
zF(<8;^4wNU=auxGXh;(i6QCZWbbJzoF2efe{ZY9~*0$1bl9Iu_H@2HAQ|d`>eqXEx
z`oeMZj73t2R#kSeh={B+r?<>dh3Eg{KiTJRz&kz6F4%9jpFNw!ckKS-%m2IwC_z^!
z1VW>c?wMFu9aVj}a7Ck6x9bXjTMUlVyt}je22@o{jXlk3mH762=4cY2#6FWs`m|>t
zmExGf3+LtK`BAV6SC5a32yvZXS}+l#=j`llPG+*Q+LwsHGFg4%6Y^av#-vv5ydPpy
zO-{&-RV9mO8iXpTW@bubRgqU29LU3*D*1)weh2-h85}a+Cr@LnQwnr>8g8^43mfBd
zx42mx($Ej)4PGeINh*-sBBQA$$A}_Zi;K1Q^oW+U=E(VzYkY#Vn5~=!g#kg-`~#ip
zWk4FjLk4neTIuBBzo-3$#Hy7#$2)nuE+(MS=GZNv>QCJ(6yI?;!G^+cj0kLfU`smU
zCogNLDqz5y^T6}wr4L1vZd2ne6)0la)Sl;wm1xx5Lg$ffhf;i|(dh!ZUNy)e8<*_E
zzAHf<L^KsKbGD(A{&BXN2S~Csvk!0Kl+aQ_RhBC#mbNkz&sLcvMm3T#jAI>L-Lm*q
z7yaQ;EgXE90{(*JlG8091I7x+IU8zO$^_ea21pFKVqsWlGp^i6bJa%nIOT+)35iDl
zq9ER(tMy~WU*)uxt?57w-3R8XN#$7x$+}R21)yC{E<;hUV{Prr!%mtFMI!JR6|5&K
zZld?ob}HD*y*SIA1ip=0jkN388kk{pqJFhXU(kHDy-mG{mdv$K{j#sw$ZUl~O`X%`
z84par(HKK60dIrIxHB&otKJWH8A$IT14G7EsZ`u`uxnnzxC_)hzWb-H<i9^Sf!~dK
z9Hd}C!UQgtx71luI-O-(n3zywiic_sgjZIYeV(6Fx=ME25DW;3MJdmDs=K3t&Gxj#
z4#kva-br+}q|ccDHNp3*&+%?;-f(j=%zlI*uU3L{`g0Nje&CM?KmP0XO_-d%u}JyK
zIiY!K4E!0i##m5O5R~E^PIua9P=~(s2VuDo;7TU|IUeIlJM4tVinKl7peRot+K2x&
z!a>8~`dM}t^_#XYT&8+B4JGt-NLP(Ai|rurcQ$z0^rk!}w&{AP_BEl>^>8M($9v&|
zr38*1=uNIpamc!hvhd?cElo>Ilmk@M6zPVAv6;a{BD@P4?s=ZcnmJ1L5tUYA@kn2i
z@mdik^V2=4sLDHwh->ZKvoV{~;71k<DNs)z9MJ=!O+D_4rHTV^v&afSpx?x|nbqS>
zPh?ys3!|q;N(<xQn5lC<CYlxvJU=g~5iD*HTHjb|&tny2S`U|MtI})IFI*R2kmmc<
z`4cV(3E4jx8<hM^J%YtpoMF0XvpVRmltCsprMEHTNiNC35%2u9c7P|Eng`u2uz3)o
zhu9L+>2M|j9UWa2D@cPG@@^Cn71?$uXW<QjF$T2Miv!+(f~zaXW^NwO2S+P5+*!z_
zm1>r^w|jwRQJpdG!*%|WkxYGEsOwE@%2VL09F;EA`1#OjR4Li{tKbZ#-C@;N<3rKx
zgnn=SjKPcW)o1pGwy7|cpiC`q%6V~N-$YH7{FqHx1+TbtVZ_lnvqSyD^lq!wHcL5M
zJ6zx$HHG2>Fq))iCrzO#xuf^8Lt!>PNb<cwQfJmD3e-9T>$^BmfeZn4bT0uR;XZ(D
z%m>ES%<OE~`aYnj((G1_1oL3}SU!XGB~nQ2JST`K*J`n0z=P$g+38Td<QoX|w)8!(
ziAS+os0+!>%cC5Jqw`?L4NeG^yaBwf!6tD9n8d_Y{P;p2F6w9X;zltPr=T=#|0Xg(
zT}y@A0Y?N2_?V<a&9xw6FOuSYpD{RDFrIFsHR17Uhd#|Z?8MQ0t+Bw2=gX6uw7h&J
zoUeNVaJjbe{8DYEtnzyWdPE)Hf;PLN(ZY6?=bd3rw)*^T7hfZy!yM#rC8KOBA}?{_
zBTw5O87nkv1BC<v79N59S)Frfguv7<LD=RCz>!k`fC5oD6v3EvqV7|THm0pCmwgY`
zEdxJoU?8a~8`a9x2Tm&h#^&TtgAL=zZ_Io$`=bT~7<{Y5JdVLam};Z<0I-^ec3Q^U
z`}MClmvtbeL(;!r&lOM*t)_l$@0PqbCJ%rTF3Fzv;(!5Z%a4u<sauYHg^2I_-Or^S
zMVrcfyG&*SUuThu(b@jnqj?dDC_IkctNUQ1JSY??9DEdMocFKIb^tW)KH5s})m(CM
zfmf;DXZBA4)~*Q$Lg)B2Q+R8)hlURZe$F)|mpEcaq~%e@K)nbK27y!X!msAowloAa
zP!hcuuG%u^Ug->8y_0=@^!l@LTl!r-z3&=mqA;$p=qZy{QmX8OUt#&$G<P}~RYbgQ
zrcSfZ2sZw52>UjdRdrSI{$}xH{J8zW2g-u0{%$6qAiQpY`}Po9E>9e<-2+_cw>YuG
z8lCIw=ef=9{N$?afHb-D5D|%-Q!L-9wu97LM<281+C1Xt^~|HP+MYpKIWmHLO~$2X
z)t^5&pdk}jRz@!7f?T3ZPtml$%%z5#56Ak=IfG#!V$WRasH*<vZgTyUvXiCG69);I
zNP2MuN7ARBqc!{kqh9fp_@%A6LS$EjgPmDOwuxT;3)(Xc3waFdWo;b~&1%aDR5P!;
z;*HxTKWV#5m-|)TMi-=%z(;zzczk()SNzF-gs^VCKR}Ck2krECq$<@3%W+SwYI8Bl
zwan*}W>wq=mjmg&)1H+IM<qUeq%=2t%6`Ja@FPU~>kD#xZG1fDefNbn^Xj9b*<h)f
zR-yR3)hF3Wk6Jqi;&_L}#v9HBmn*J&sDRMJ)_6;+<FC(y_Bl}d8`7TrqnMsAvYXbP
z(eO2+<B623ipFBx8KVR7qv47S0|NswX<D}Ufy3H1Ha3I9!wF2Y>+=|+*(9cP7c|1C
z0_*Ka_y(@H3e$%xZM;B%t^d#cFlWGwWdHnBw2$g~J*}~yprMyDHl`TzJe0!5?(6G?
z`9%HaFH?tQ4Q&zAE*H6N0r|ULQB?HfCFl}LlD-Z548I5Sdt|S+Ixez?%9q%sV%7{%
zVs~F7IV&}MiF4m~M;ig~bbPfc#<R4RM|a3P_5}_?`czyqa88vyART^CPjByd2nIC;
z80FS^R@WutDVh9-`y7Vp-y2}wm;`z~8BWuL1_4V0VvqB4>QB3`mA=7A5<;#$0!TOC
z0NMnjAke2-raI$S!yy?s*mfPkxgvQ-)9uOp(5n|lsomyY@5mm`y5ubafqZLIiV{r-
z{`39mynox1O9yw;$hs-1N?vZf)!JyX>DBwFx*xP9!v|Q-pincZ&&Kg*o}Vs94{PxV
ztB|S!5yxU@A@r0XX_5Vf`4kKUk%=7^+dMd*fuB>014>aSxR<5hEkwW?AdgiLprvCd
zeyZEjA`C6(a!FX+tv2dM7jW;cC6OGJGfTb&EL$=p?`ME%2}o<NYWyBb4~B#M2+ESP
zBJmncVUy7FYf3a3N(Q^;9K}cwjc3-{KGVIwPmcJ{nd2j*tN8EQmW}rf?!M$JcZYx-
zF~P|Q?dImju)BrH>3AXGtS~87N+ZFJ+(xQYH-Wrviv!}G<kLo{&g)tPEb@@aQj=W`
z!IpGGp#;g{lowC+iABYxe4cdzbwy%lj5s;-S=HsAB9C}gSRK}m1MhF_?mswIATTjK
zRybrT4evcimF=9Z@%6_OSe}E=y9YYE<+Q_Hk|YQD)D^B#D%d5o(0$Tuh$J|dx#Z>7
z6Sej8YfU1)rX{9p$V9an|0T6|aF{8yI}TshxH{F>=0d4#Fv`vN?iBvj1bd9B!+Od*
zig;Gvl8DQEe}<s?!wF~Ap~0NvVq8sF&A}Su<yo^xyiz<^KwjWe)hS^`>{@aEcgH9t
zOc#zwabyB9%5BQ{M32NHt6l`1<v^7JMZr1@#tNks`cHxIG6?%g$AX7xGBr6BBtnrb
zFY<%(7>vc|z9}R!g?;!-)hVholn-*ra&M!Op0cPIv|DaZHc9ivWutM0nF~MZqr=;1
zwIMvn<q&#AkRe%LhPox1ENxOqksR;+`mkBE^fVf*dAaS%NR(-xY1}JjPh{)k`Smbs
zix5W~jm2;8ci<{?CyPjBnX+Yi-~txv6mK@GAJR`Ee)q9_sknSH#LU|_mqrO_4=6dN
zq@=ufZ=48Bq$OkML`007hDw1!R!!34PyNK+`GA9O9iC62H0r0v*Gux5yH6a6)hsCW
zl*Q$1xOz5oiUJ-tAALY2I`{{Fxko^Ccu<a^b?&)5J4Fg<^s_T2FVJ>nf67(~Cwf1{
z<1odiwGYMDpIX=><I*jwm>j=M<sV)=edWpenW@tyuH@FKIVjlNm)~00P@3z|-^r>K
z-zrmlre1u+6A(ct=&(z@#e1aG@>x?{^YK-qh@}}FIAZ7sKuu9Wi}%Qovg3L!CZwFc
zFaGZ7{m|52AwYcm<_(it@;S)lMuWd~BDr`5mhI-j;z2u`hrH!xnGfzrAtGkSfU75I
ziw^bTXGgB=GH2V>gpBeUc)RSZc{ei--es;x>3HfKQpvK@7y2R-;UKh>!0LPh6=Z4}
z<%u;dejSFI&t5FKL8Q|>%U%T=0H(PD#0Z6_j*#<Lm~kQp*n4>M<tD+puRG5rJO`hr
z)FU5ub_s&N0+w4rig7g81EgoL6e^S?s_1oL-_&kOzeTAEHc)w~vY$FqRoISv<+{IV
z&iHT!+^!P(?EuH8S|vDLzv)HD{}X4itM3zhf!gII<f#4I0%jiwY{h$O@$?aYKl8c5
zf~{A7u8+Dm>_B^rRFwY2`RsmW=gH4Mv*U!0fl-#hsfq@yBCWcXn5myz(O{);M~f93
zdoGJu*PzrqiZ$qb^V%!CkRO`Nqka~0Z}NEoTS<x#Y+vS`z-kW5ITE<MJrlsFwxh;1
z42)3!df=GChgj0~EehI|m2y6sqLqFb1((c~n@0p9k)y(&{|=TTZDkKgGv3;i6LG?b
zVwL=Jh-7nb;0G5L_?J~CuyImZxhF6q1$>~(k7=L+g_1Anr&vNXk@QiMjCf)=Rc~C%
zLfhkjyL+va#;zZI{b9c5!C1wY`Fx-kYIbgS!+AXO^q^=Ci~j}L-to4e-2Z)ior#-@
ze3{%W`$h_ETKL-D-ac4Gz*TC)?yM|}*80AMBLayECE<4>8JD}bbAGV}Vow!+)>G6V
zLf9f-rd;*A;z;?&Ew#8xd7C-#FTtliiYN>uiFfcWjVr8R=d-S`tgzL^OQh5C#6*A?
zjf6p9(Fy7;dvTSa@ztChHwwA>{T{|pkubGBg)Zrk&vng5^OMDnWXRtm?okk=3fPaO
zWg<$-&!>6HcHR3GY+&%>yQC(rQm93h!|ohjXfDWT2)WF82A*GzD<dk}OsRG{aR0s~
z+T!y2ea(qVS!VX!Q0jo!gZ%W4uYf24vE`Q%RJ-p}wZZLC4?QM`t%-?8cL~<S{89G)
zJVy5Ftj#<vN<WGOHMQpz!BRdSCEDO~;$I$5jH#BRTGp-YZS6@{qd|kiTr%>NC$T~}
z9p1l4ke#zDgdxyi3WS?<yQz?l`n+3dB`L6Jc6H#@K-WE&&6-d(>n~1$FE)?6k2Qk4
zuo7s6N?KiZkn?DvF{VKrGlt}_ClxUQHCFXf_qR5Dr2R^pH|^gtRYN~w_)FJaBOxbU
zI@(`GA7A=!7%l8`!G|Bwaj}1hxBVJL!6iIit;6@8SpSyIX@5cteND&~%FYh3MMEWN
zk@SKCDB0Ll+I50ZNArLN<{Cs&Rl2j*kYSrv9oPW8DHV7@*So+_a*ow6wwfmU_bON%
z-C4!OH1qWFAzFFUH^PRVJBS~KGx<HF6Fyj)vX)c}?Aa~T6GFgdnZo}vh|&4BumHTw
zy(+cDrIA7PraUaDJn6rowKL8ms+#Jb3kX@w%@5a>Q@X65<QsVD`$p=S8+zr3S@C%U
zTFj{RETf^u-DBy83x7)iic}Lk>W^&U-I0v#XID#0%MZ$n2~ZFxGT@=^_E2uPsurgW
zFN8;iIpR+Ks^;|-?7R8-d9)?5O@StXKogR>-b?6{DhAvo&7gpQ0kS2d?oD+W{1Y<~
z5s`vqn3HQ26&3b?n4NTO-81t)cMNWXYw10;IFhb&zuwzbF$S8j9bx-!Eks*jALndD
zwF$NH?zDt2C-X$4aDsY&Bg}$ztJeF5)arY~j7LUBCOmxZ*&|sAcyGRBk8MQ%%gMl}
zP%OLhwqK6d{O?tuhq0?|*ClZ#Mki98SxU*2rz#()n*ov|;wmr*|KkP#UX4TO9RBVU
z2)l8;!O-4<M-)39NXF58WfQax0cQj5biX~(4N%pbWmzz90~Dc!+er(nZx7YpjFxN;
z+aauwLL`q{W(zOQi(EGRyf-8rBYqV3T=WLswM0VOFob^bTRSq860ZWwX--3B6_@-T
zkr)D&|J;alkU&GhnY2kMsaeV<_T+fwy!C-6dmfFzV>-_w*F^DXrv-z6iL;V~v#VX}
zl~S{@wlGvCAK8N5qI9acM*Vu~DR4BEnsal;`!!@Rc0C%`!R)a{%n=+-YEZh8sNcaV
z^?KGP2%P3|Tn^v+^OU}5FfB11Hd>faN`>2EAT8EkP|uGHF7#2v2ejBvN8xeq`y~~W
zSrk|n?u0m-SI%%W)OjB(PbVO%Y#Jeb#RfC;I~~NU7wUy~!zcmT;P)TmIqo8;cBqQg
zZeghRuId2`AXPJ<W}PZaA;;P;g5B~=xH+)m9*Ds#th9Ngd6N+NpqcuC;=lGNn~l)c
z*bvK~=$dFzaOt&vNtr87)Fy03+h(t~T6GFMf`kvf7nZ8YnHf80A?o{P1O>>5*^HpI
z*OweeS9Y9W*K5ynm|JajG<Z92#GK&3RBp{dWx=_s&LVbP4%{drD=$*eCHpKi(<O(K
zRO6P@J9`>|YxdTqsbuVQyv6qROSNl!HpbxOq`2^s9YoH>yU#TT7Yx(eeE(>&|D#!E
zb3l<G`tB+gG_3$5Y4T6*W+jFi0D@?ZwQeP1$-G{X(<S`ZCa#Rb2`*<L2Y_i=(b0*}
z1kk9!$4(C`Oj{i0r0H|H1zeZbgga0>D;qegUCXFCp2Ly8R(2bw-7yHphPgz`dIa>N
zO2%>*MJX=ziERjW9`2?V4^j-VS`zBg7SD3k>f}CMLFH_iru=|b8$2U*_?kA=jqgte
zX1RAEmTJ#<h>2)p+b-xEmtvWX^-W!Yv6Ap<>x(v#<g~wxinbV%5daUss;hK1_t0IM
zg(7O3NF4AP@wxfK#KpOIl%kqTQF6OEo+y5#v|14}-i@%~)LL8|XffBBCGo?Du;A4`
zaDP@!VCcRyVWTmdl#k;}csGEU&)T^5Zcql@Chvq#NRt{})h=TF4G_r_Sqjyw_WZ48
zkQ3z`=IE_*+VY8d!DSV9invY|A;x)wm-Ks=?Zx4EO8WQKuSlqy_VSeD``3&6-?ajz
z%7UfH2Udo~cJ7_oXqHJJ!vDfYd={44o7?z6Wu-=DE5u}vf|R>at|R@qRxI|+H}I+;
z+lR&9DB7DUA@cbNHbc-uo;@bVd-Y`N;M62GNc5>RV&i*V>%dfw3+KfVrgVX!+<6%X
z+62yOtqRTu<F87gTpS^XvK<{)@4pD3VMs*V+>RJ#R>r$sQDm$%#SMmq(q`)`XtKYc
zu(T_ZmX19ALe7i!Qt5HpP&~d?(_MVnfkio{PW$3j^s*$YTa_m4Tsg8e(OEQDEh^SX
z;th{C0s9iMcUR>dYmuEL`{*2nm7FLwJJau_MH-A!xaC&tve3e%WZ+H(CY{KIBNIuQ
zkMoxf`LNwXJwDGLRH|yRcaMw?r5cvd$uQ6tA%0s$*HO|Hf&m-MIfS$d`ykNqaDZ}7
ztd_X^5Kg?R-*k$I{hE^@0c<;!QF$IFi(^<Y(a<C{=kM#>F2P!LruFT-xLJbU@bxyQ
zbepDCM<>6ERKPyxcxB~HLa(=3#A?-2!8d@6naenyvw>vHG>9erojQ_we0KGTbVsF)
zPAG~9%`j6KS2i8xwEfrTRuThx9b%;X@jUmqs3=(D(E5*ht(h|wi$xJdJ05Glr50MQ
zndPzs;sX(}^7T4y4BwOZc|Do&TdjJDmQ_V@adVH=nfaNm{ixj9J_fp6kvHTH2y&=0
zWXoQbXkThy>)PGJdNO)#{`f*qZqMO!92G6@$YaudC91RWPPgU0Y_q+d535XL)1qN(
z8av^y?&2Rop}HhsD`avy#G=E*zxYUWYEebVxRQQb(9`ottHm*FMtwarJTM)WkjHhR
zel`--+LtFbspwbJs|EE78>e4nmL$4$H^;!esh=7~^G<5cCwoyuXz2St4T}xLSpD82
z?DhCr{K`7S-GSGbmF9kbMrOpn*e7yW^9XrARo9+p=pR79m*c=T*sim#qt9MEGe^p}
zy8dY05qO@GynzH;Ocmqc@fH$87&S?c{^eCDLRa2)tL)%lM4B)DJwC426rVx$__^Bf
zR}+WqDfRPn+g5!f{HkYTAh6sh3lHMfcUd+)m}XP<ib_ZjSzZr!Widk_6tJWyQ!}Gs
z)j8Is9a}!LpBjlbZ$D&U$8;lsBa#;s^@My-Uj6+tJ!PJ91Vp_g?Pr15iYyfg@jE8G
z)8^|f@wm_=^fa%RF69PA%clj3)z(ZmEj7L8VGmYwJ!E0B_R9oX)?7DJJ?oXI(yD`$
zQH=Xg(UJp_sb8McyJcLN>>uWpW;(7&Dh8|F$~c=sRRUqH>#GrB$?^Y@>nk99rqo8^
zKlIxSREsFo+#ZM)Xxa@6Fj#nS+MjZ0N5(a**V9#2r+Gs1{hPl3uZQ*jKDyUQLH)!A
zDL}5hA9PLA39z0}98e6DD=uV4r81a9oa*QW*^}!q)4cyd$m7Udk~dhH&z!w$3Xkt-
zHBA|EO>OzuY~KFo9PU&khTJ;d*jVg-%4uSm>RJd2iqy9I5y8K#sgT<m=XWn}a&G@?
z@7IqMHF3xqGQVpaZpL=tYmE9|R0?D)r$e-ZY*}Wj>#jSZK2y;1)ZZ3CG`5RI5*0$#
z-+*;#9LErOs&D8a2Wn{<6j66z1fH<n(9&-3Wl8>ujiyTeJ@JyJx3_gEV63GwGy7m>
zVx>meK_k-S$4SoBCAK!^y(H7_`>}XPE}Fs*+KtIL$atf;w5W^QVFv^$Tr54vX>}-U
zdv$r42Qa10kI!Jtte_;Qi52i(A5^}QgD~A4P~b>9GRHAJkD(r}Z~BXCrd&_1o6K4$
zNDmIlk<qi8)g)}gQw1{D3|q>x6=M;D_?<eWR8YWPh(r@nUhUhYaZe|PmZ%p)3{JP;
zur2<nuvCu3?=4Qb@L*wwQyfVHqagEPJ4---(sFrP-PLLj{ataFtU;UvC7ZBIgf2<q
zR(QfA1o4dIzq3X7*uzt!mVkw@UN}KMBqYl1atD<$U!#pqz>+hj<hOU`A|4x=ny+8Q
zxX`Ri7b!8s_dY~3!9zkqu^;XIUR01iE2*6`0eke1fTx$$X8nz_g<|HP-U<giCZV!@
zFBd^#zD6RWw*X2mCH)lOmkmqXrVHAH+SUT>dO3vGCx=E75^XQ-2X`<HWJ<Mcv<-Qe
zACz5L&<wJtQ^<+rGt~S+bw^v(Ho5&|#Ag04<2c!vcjH4#AJGW<BaZ>0dIKv?fLYIR
z7d4gDn7QrZKm#f_lTu{SOeN?~uJPZ7iN{lZt%9t|(IJe=xX@1@WY|~tMhN#aq1pcY
z{d@NqW#@4lnH!MBkZ04uj;_Tl1dIcFm!p~GtVlLsN8laT7jAIX9c8hf7nP`5;=s)&
zG^LtcjJoOfc}4|Q`2G8~`Xz&>q5sVSSWUJlM54sTmT=!MV5+BGaoqfT%=c5&wC%ZJ
zU?X!t6W!n%N+O_aX1qXBcf?QICPT<O#pa1$(ev)!4ISh)tIrvz_kG_1TvH*<qwbXD
zx#PU<)et8=c-f(lMI$v8fPWSWuQE}qUJZd3eYf)c(#uV5FYWzir{6Dxr=ZZoEq*tK
z{lEC={oEyyMoLN{y_X1_uP6e{+C;MsyY`X_wojh(hr(_nBVSF^Ynx{JqYf2-Xk2zb
zk%xX04r}a|EZr=d&;1Cds2WZsuY<2qm0pY%w`AWAltfeKOXKeu5!9>e8J3=?zKCOq
zFz*$i(+-<^q7T=<9&e^nDR)z1A?khc$Oi6BC_2&TB0H@+9mVst{d^Q>^CVDMsks^g
zo6iaU`_!gI<P#g7r)p~m-7GFg^;$iuvVqe0=`sH)kdI<nBx#32@uWJj?bYh0_u}3E
z<red=BEeWbh^89Oze2CGx+Oux7u{ckiHS)Q+Pe5}nG&9ZlT*PPZL9^+Pn1UoM@Whs
z=oB!#y}5x=#?(Qe`6-l7z~}n2JW2rA85uA2_GaIGtIngRVA~yHvA;w}D64L8B8kf0
zbFV<$5~s=k3J={oSfhLqfk(15J|FFu#u<Rz6ew?{t5fx2UW%9?)~1|iV#*Yet)#-M
zhQ;Ap7`{W*udHOv<A%^H#Y>%oO1ZP>birS@`PaL+l(o*uws8H{i{x*NQgVj$d<ZO@
zbZooQdt<Mu<i%nxCO>7Asw6ACN7%1bKHeEs74(AKa>X>6=s5bAJ>~C84ye=jQV`#>
zOQ6oigL{#;1f!cq;L$Ty>=n{VX>!Ve$C3G#IO@U33BPEAeB>7PWP(tGr4`4~z~d)-
zBRlm-)fE4h0+}CK6wr{}&cfF+HX*{(<4VOoo!N?T#zJ$=BK-k8-$KGSM+11G^~<59
zzW%|u{llS1@KI8Z+JcwY9^pvnD+eQ;4~15&kz!VN6N%}}v@HSHx`!*dEJ88#eKi`^
zr=}>yG##n?0Ta0v{O5^0yyj{y-lPc>g1E!$6ZDc8d^x;e(T=n%>~fo2Kbe)nnq0n1
zLxu>4j@@tx(AV`0eZh)tPAYT~Pyk7McWmQvLcT(J&}Wae>=i7y$cJ+wYyXR#=I(0c
z{izNc6tH0fl|<DICbt_V;p?!ZB5$=L(sjox2e;nc-MZsO<Mc!2*Vf4?7A?J{3n#5s
z265*jK01&u;r5j0_ocGv0CO!2RaCI`N3?_L>S`%rvH46MC-_7;p_ec$(f+x)NiA&c
z1|qW28*5gii}a!*QX=f6kB^EU7)r>Zh?dhby$(3k#A2C7DYEk3dE2mji>9C#xIN-)
z;eS!f`QsvAW<q<hgMa(?fusf;fbP$Lx@8$qLp1enn1Pj5@!K}2UNTzX{d>>+E<#rD
z2GIE#;av5DkC%6|;=>eD&P{Smip+{0(Nvj+KVPFz4?TTZHb9~yl+#)|(?%uEqWfbB
zVeh5L;cw7J61)C@&-bVJ%W^Ut=MLYGQj(!FNNJc1{xmu0ja#IA4%BnY9;fFG1eXc^
z+jc2x`Oj48K1;zj5>c60ySlX3N4TU>p7C5R`rp@)-4FH^@M`(u8uY!+>lAxGJyovp
z_>=-XmrP;1v4H_SbiLQ>1xWWR7QdDZsZDn(^~xo1lz_dTZI}h68V&=RX^}kP$0*8{
zz}VuIAB2eJrCcT|qu*k}YW;v`Y_Nx($H59i`ijRbnwIS-{=+v0^xHGr90dU{;mQvf
zKiuh6mB3vAbTrJ#{1*9&Zlk5@DYa=foK`2cO1k=!ab&-O+qDon(adiEFvPVk@~p|*
z^a&^<p{SCJSAnjbGQ~xWwN&)H8ZC<IW94NXpEaeMCA<sL{Z`khDmD8zMsWX6-_w`>
z`Zxahur>&O*9viTXjp|uyvg_-|MMn5TBFE8^B4Ob@3RDQX`IHzv{3a#C0|}z^6yfX
zkd~7x0Pt|?q~cl#^*qUXX!d|jL-_{%z)rita$F}^4+*OOYOcZ`Wk|1>Fw*VH0=Mdr
zxG7@sYTZ*c-iSogXO8QjDr*3PxoI??ijoTpL3v}uCUd%w<0a%YKh2CG4>_hyu)VON
zF(Uyf!fTJM#>I?jSph%TukSVfRNxpKvE=%F7@NwX+QGR<3579UwCY6Vw5ZM~Er55a
zkDeHugEkn(+=RLE?6ZIV6XV3`+1;5%llG6z;>)u>gG~<`O02>yO(~{7f@ixr7~6;5
zvPm-#oMOA(&7|mNP%Y~r9ymb*PE^@qOPTNTUUQ#UL&Y^9;biQ1<&MLJ_!UVGqi*-y
z`g%!R?{2HIblITE+V<FO1ETo-fCGyE>8JlHY}ZjWow@*jVNhfyZl6xa^{{FGq2TPi
zyZDxn({#T@bj{l18l%e0;(*JZ<oegG`ur#R3(1AYk~!IyuUy_jM}D1ccY(XBXj^j#
ztb_vAG}rBy;<&S~c8<5CS)gui=A9TOTI=UV;e;z{&kwjL_<UhJ2*NhJ^xZBrQ*zTz
z`UUp<tit{ixvbmB4@)td6A2uk94?7z?vjIjk!WQN{+k*{-iYrspXI$?#oSf`Bk&D{
zZTV`AQLdXGsqB^)l>MQ7$s==2RFjX0?$%RH{}#INeqXeTGhI23JFHK)T#t1>v0}0~
zDX;4As#D}`Rll*jl-t~I_QvaQ(Q{pQs5k}uqvCWtWSjTc0vMw8A1j9Vd{2`kh*{E;
zntUK2tokGKwAg9Z+b%A2FI?Ntp7i%3d0z_>G(($Oc*b)?&adt;h|LGxaNeKTuOH0C
zc7CYOyt}#4MuD#}%%_<0`QH3(n5Y7m*~fRSKkJDu*f2#)fXue~x%-w$8WL;j5V%;*
zlk_<!JWiiw8^boee{rFF`5Umf1~iR`)|y1+Kc1#hPCu{Bw46=cc9c*35JcifVV<fs
z3h{4d)VbpY7bx10i(lpLzM3i825x+F$_J;5pa@=6^1+S~LG@I%e;2Q`S^Hf%!S3MY
zwOM7+q^z+eUW~Ew`dd5of%K0*iJ<TRn*ZOE<!%e7l5+jB0<M{WOT1?{w`M70>EcfZ
zR()3ntRXF{-W~G#qG^o;`P+XRCr_5EsqULNu%1t|Y6PQ0#$Du2*5vRwRW_PUb}hF0
zvaqU(Pz3J8@ZlJDJDzvA-K<tTXC2pxJj<LjED}WX+w#_-X}1b6DGtL9Fck(k8_uV$
z)r$ItKf{&IYB%DY%%|DmoTUDjB$<swuBenQVlvzIeO}$xdGj#I>LXF`zsQyUx4T6p
z0n}P1-V;A6Vdo>;&-{fy4_)2ev?L@#<n)FM0Q*BY!<fa`#6(*M8WU%7axx%x6mI?H
zgkpOKFGP9|m@<{9j^9O-S<w0#+1fG#HNgY!-Y@q>1S;$;c%Vr03M3?jQ>|~p_H+ZI
z`A@ZWHN2=)+Ho19k`sR-l4pAnJ~)0Gm9`3vJXz6N>RU<Sam1yYbSt5j{S)!$BmL0i
zg4QCp;$w87Qb&!8!}w0L1D#Y@8E6V`)RH~cO4UoG`>eXV&SGN^P;EqOj^aWbPu8jf
zotHlz3kj(tX2n+KYJn&_dYl&XbF&iX5z(5IX5#Q!MBVJ*_6Ne{*pD)!+Nb|S>|I_3
z5~fb%*H)dUi)l`=ZvuDU>lY2YW;EO)b(?C*IX}q#hS3-CfRusQR*>2R3yL@R#7C)y
zxDh$#lU9CSKb)}=@X#F;kXh_-?b>Qd`hb52TiIklVy_P0_~$3ka%LPXNZJi_a4@J~
zhrAm3iCc?ufXcYf11<Vjh9wgvaQ|eM+R&J_2s^2mC_1Tjpe0TbI;mBK?xnrH$dhv#
zb_zcIlwbOS1FE(4S;B;wZ5k1lLWa@kcef|MXs`nCZ+|}EEr59iXllPI7JKZiza~d#
z3f=ks(vuODiEq2QNTSm9ytzNs!ecDChPl8F&e+)!pYnmHkThkkr%Ewh7lcK@+i|=y
z_2s}|A0?MSujh+i)S3X)6$wClX@YM?b699P|Is8!A2W%778*G{zupbEz#>FgZ28jQ
zSX&-xflskq_;YawFF04x^7~oUsp*#ZRYdEp<4GKt%nJVT<dI#AvvG-4FO1xf>Cda;
zraxr{w?;rQU^dlPCFRUz9C;=7W{oBFxMuxMoL5eXXgz9VNVYwuXfYj!9|NZ`bI5rV
zx2<SQ$TwF!MZ?DQY<6mT=T+MJSqi$~TBA~WyhOmA>(g^vdA;KF!8ED3;5JWhl<{Ir
zf&}XPFSnSsGU{e05H+=exBUe?s@uwxahGllq8rUA*B2f)f5+(qBh+XLwRS((P6*;@
zz3am*vpt3DygsFE^BT{dzgWxGsf?;NavjupeM^kHeh<zYnnD5QUZu}KqrHr+9LfgW
zQtBpjeY@x51kipC?K9`<ZFIOrHCytabSZ*&sd1?E?0h&Qcat+g!1`}{!G9e9e*eeL
zuucH#rv{uod2l30g^m04D2TCupP#>=%nTJFrw^oI>99NUAwQ^~>w|8p)aG=VhRjBu
zJzE95h_JBfM7~rk6vRY+R8-U)Dtj>p?X~!n81FlF>vSJf|8oG1^VM@2dvM-doP^w3
zBLQBldG`-LNocu0{^HD6O*q(6Sy=0$1nwqx8J9^(BQ_1(3y)E^i9H;xXo@cl^5Pfq
zfZB_3J6~$$*}c^BwL<C^zbXfztBr2yM!2Awdx-r{6RoFv_YIv$`btySle<$ztWD-Q
z;5`Ffvy!jF!IwI*=(xNgw8XW1!|qbcDLD1xO0JK`Q(EA{(V^_BXeL?VS_<3oRA8?A
z{u-xL!`R1qwO-_sfpKgpJzO@qgY8Z9{mj+OUfeJyvdq&OUW-W(Z#1MBhUB>A@daCx
zp8SDx`6N+v4=9@a%YoL9!vpdTZy~cJO#S-4h~VE=4az-yzaFD!R1S!Y_`ZG?4ApN2
z)3ZgTFMIUxg@v-#{9&sh2cJ(a8G7IQW&6S%@)@;;NYi0*7$g)J$D8l0=wj(SOpaZ8
zj^~O27IF6qfCl`LVFiy|k>e9*(+0HL=<x7BYcY7gQdgwj*)|E`S~QQ|tlOo+9s$W0
zZ|V$_Tfw3@?CA+WYlc>)Vg-;HRojMCa?)JTzCZ7a1s~f!T;)L3WMq--%*`(jns<WR
zwVa|yq<fpECe#(b-07*2?!;y3QxrM9w4U=~!^cZWsfBDNdA$5~Tx#;#*v23(i7h_q
zJz_FIyxpIkCoXeVrPXS6ecx%tRc;h~&RHeh>;9Dnl72+0DTgDocCW{FrSycX>%Cf?
z()vh7fBr8QSXf>>7QVnM_=?(Z5o2BwNgwCG+7S#nU2OSae)vGP)Zq~`NoiP}R#vM{
ze3GL*vF59l^6OVv@9Fyh{)6j%3^71F)sU+j6Q^<P9;8RgcdN*bjA323R!NC)niQ0u
z*IZNz_a>GO7Ay!XQ8BeT72?<^NUg-c4#tL*_J?eSUC-23RO@{<#N95ye?T~5PqaPN
zN{%yE_7=6p1(K3cBU-o*a3^d^krumKjEjCBgT3enLrYqFgb>99kvF{FZO*~vk`AIU
zy2&)ith6UdJ0O?>TJpvGA;67{zHf+R#1t?sY{FcSa&n;eAyplje)>vzZgRSUv7yPB
zW!+{BdA#f*tRrz8u&{5izOftv*!7{o^VzZZ0$-5}vgYJpbOQ&x%7N|Uj>#bnrUV8`
z@Tz;ayJ`o}{EfLQ_UwhAs*U{raVr1uKTqUTVh9?}jlA-Gmo3%NVN~mt*7<y(9pcvn
z5CEivvs<V$>zdv)iH$F&E0JSLP&ZIkMknNRRcuN+qO27b5n=Zw*HNT*u(izwngU}p
zGBTj7ju+}{K=*^8P$9t;-=IS6<wA;zb!j=o4d!HR<kTs2bkguS>=HERailOprvg|}
z+ki)IZmA|B;o_s_P?ZhU(#8&TQA`>M(E`_;O4cvy_^g^PGU-)s*(R}<6rl?XI)`&M
znynxIi?X+lit9_$wiALB!9BP;1Ofp96z=XGT!Oo6a00=C1$VdL?he7--CYakJ?WmF
z?qAQ$`uba|{-}brpsLQ<dp~kN_l2viFM84OE^rqyd8j5FE^Zp=*IAf{*~z6At-|^|
zhF)XRE=g}bhPFEUJ${XX?U6!7VWica`51g3uRkK=hG>r0meqZmnp>`>VNPPD4zHrw
zGOtZm6uW~T0)Nla9TuQ<n#Azbjm!lZvBvX0h1+7lOo_$XP0bEJWimzQI4Y70$jpW{
z8=%MxEkx|Y2#v5+Smw>jc3ebul9e*qCs3)^xJMRjD>}{SXo0sLgt1U<<P9z&Kf3BI
zqM&`6L*iLIPev!!jr&z}+Emj$1k<qaLm(9ymZMolpR}X*R5q7iO{tBL`+i#77VQ49
zB5y}!(B6JTZD10E2&+(5cmLF<Es*N_sqUc-K}ce$?^?kU&*7}`Z~F20oh_s0mvI&*
zL+H)6r<pf^Ow2Yso31lES5iWP#3K<;`6X6>vaAADMecgpz{-kpIdOK1S{Xih(D{Um
zsz1C1<YhpVFNc59K_!Pr6Wo3}S!t|QjL2cNfZBMvk~pE_5+|q~6fQH=IyadsRlts4
zpB!8a?4$na2|XLl=v^ONe%X;|2~aVVmk^K7txn%QB&hxPV)wn*DE`|Wfh3>&>HD{V
z=nekKOmSG-N)iHjt^(~ks2EZMqNr~LY)epc_*O^!`xT}dT+g8rXLY?zsR5ZmpzPZ?
z!z(2Q@vwT7n{P+di^blHHC5<sknODvEQW_d8pim|0{hEvO-)Uc0DGj`lHNjVp4eMU
zz_J?sU=%d{IC8{Nu;n+E#-!8#2{)ZAq^`qpjla>e0g0&|3-jHn;d@XsL7-snL3w4f
z@JKlYpYIa4Fly{f1(C6<TklG%Q;SjVPA}=-iv0f{m9)Pfq!RBl&}qAg@@X$~!$}>l
z_7n<1vn?Jjv|_k~gfjibVI9UbWS<VSQ!*LfWxRq<wv)6&4%OV=hV6_3hCbN4?=Dro
zp=gqdQ9$9)F~sO;l7n%2cFeV9PIVqqNW8F8q>3s4V!R4WCLaEjeEt2mSsH^0@dM{&
z<q9*axr`bI=d86%FIrP^;zARbwV@uiD|rYR{`SRPr$|`%VA%I9oG>g+lFN2AKBWa;
z!>Nae!$5;f-wgO%-h$T=Zr65x7RN|0o?@2X_#x^tJUu&#lhvQ(hJt$xRE+$DUllV{
zd6ogyteA|S=TpWT+Jff;w>%-w1j}A#ORL!96?`}oi7oWe(-b?a`AsvUYhtHU8zG<E
z-TOa=2p1$Y9%e{1Nb+x2w_?{>BK^rf3yE+)G6(&rJH<F@=`&v@(5=)A(=A0?68?<r
zVD}--f?n0S+^JtE*qln3nj)pN2E{8dRI?1;OS_x+{?O^8UFWMrr0>i+_L4y)`<R2x
ztzKL)ZSsBoiADDVCD?b_5xH+ad_zb88sT$f7_9hLT_{A^YkF@a;Ds0FHuGtDc*K<E
z2smofDfXtXPM|->YO$0Mu2M!Mcq=hZ7h0s1m#;U$U#~-X%$^vsvCGJg6jU_x2CjNH
zNum>s@9ZS^O<I(D$&f(7YAYi1xL;K}MwgyqPypcgRvmKVy!<aim+V^g%E3u)aC~wH
zvrL-o3f(eZ4@0=Yp#_yds2k99>=;-5E~%+nEzX_^jUXBs)u?B(;agFGtbT@8lqyqQ
z&JNC->d@<ucBh+_DIP)iI&bUsNkgR7=z)#T*3{mo(_U8MFJ?d*^S05o!*(^svPLn?
zQ1kx&K0y)~6XW0Ku6t`N>LTPJ5IO~+-%PlV9cubmrg_ld6|`HKjy_VrfJ=0LOgN7M
z`gX9u>iP2Xx$F_rCS~k}x^u2=M6R>&6`gNn2yiAX9j$j-4Z$I_q&e<4nJ31i*YC%O
z6G_`gK&6&Tqo^;G6&D}7UjzNeYlQz$;8hm;97ZP*`i51~8c03U5hxD)PAQ;aExyZE
z)A^`&MnjK5N8;CAfcbS|auOb2e-LvY&5Y_3opM?0nWsr*?OwIvBF%P&LZT?WX<omG
z9a{S5R$1@QZ@A^p)_5`5t!X%2>m~dIx3&}<O@@dhwk(b?Lj$wYJ;c8%_g76NWal^K
z9$}A4;XwDr`FIH!Y^>J7iAWQW&ia0H6Ae;KILsT1K1IaemEoN?@6V9om3_kneTPmL
zal@66eQ$lV%os!KNp`OYu^_^<ra|g1=`6v_M2-{D$>gEs-v33xSMLg^1Sy0l<wtW&
zX6BwM_6}&@mmLxYb7d>02pi_6nHG}M@TiK}Rx7vFHUmi_tw}4%Bj~zDcCuI8&+sg&
zwGtOonW=8*a$(1VGQr<+I@4c(^YRJeLz>GlH^!!x51t=;{=F!Z$Rcjy`_<*4S#9q~
zLy2S4rrA4P)b^vzV*Er68nKmC@(nhIc|hn=h{FaT%l*Mo?fzRdBBW5o7j^fCBAc?6
zK$>EAOG!y@@i`%%HHAYi$o>%DhCxw?&Ep+VpN%~Zr6{!P*Xw#ZcbW~K>3uRg=VB})
zL%^1voq4&S*BxJ|@lcLNEN^kH2mUFosc<L139F;tx4pw16OCz>598wUE7f<ep3a1(
zucwSP&pD~h7{U`&-e~(D$k-y<Bg_Oz^p_<nm#Q?UprOL`NO1!edjksfU*3Oej9Ut9
z+WBv_e)y^s4P11SAPtL2`Y3zic3_I@#amEL=#tXbHZjF$Ol74a9_KFd!r7+a;1Dwr
z%KX_x{faMPp>)B<BK-7&y@Ku-qp{r|#XhX#0i7}xf`~>UiKb454mq`w{gOUi|47ua
zWjCbntHkW&iAtDpBcRvUylYsxj7?88VHveJaSIK7YcKMoyG8IJB0ZgW*?x#IHYP@h
zUbQ3x09$36FDURbHP+XQtIf*q_cavg7_jcgV*E$P#orbUW6-N^_=-q>ug|E2$<B}l
znD|_3>H`ibi{wxsl~V0lva+_eE~EIA1;wvfV;-l9gJu~)JJfH=HBC589h?XHj5^3{
z8?ram>Tf21kbg0`QG;85A839)L<mf8WM}g+CJ@&bBja-`%XTp3N!37$Ih9sd6)lV0
z-d#ysNtC_zR*o_+ir+#rSN<?Trx~*3c{z-Ufsq{t0AfP`R8xL#aTveEHDEM66KXfy
za^8!t*;otuEJ9r}PsT^+?vkD9(<a7#e!P+x5oPSRDWaXPDzjyxHftOv8s>08VTO7T
zJX2e%>?V<@DpTa;8WL)rncakP-E`-c*eb6eDyHfwJn-<6V;yrE2i=!-q`Yvx9fLV%
zQS!UW#Z2zW+C5^X%_HB|#>~CdG<Ak_LSZ-U{wS?W`KQkH1H0uTa|1HLXx_&HkG!KL
zIRQT~qM&78^c#4(j9>MuvjAxmXr8`)13Q+&=}`Uba=akI_k5cj->OJ<zzsUAsH!Tp
z(;&&F<*4Ry4^VOnwPbU)Pkg(Mt&aA<EazZPo|h@^?v#jrA`ntCuvmPJHXsG_0X}br
z9;1;jA|mKeBteBzGyPI;ETc^GAu#<(CvYj`QoQ`8P=!4Vn3mJrCYWgA;Y~K7@J?il
z8)ziJC;%vFI;iGrs*Hjr%fIaSWRkgr>o1%#_Vywsw7IBI>`#M`RHk$Mp^zZmoWT5N
z%2J5)a$_KAK}?*k;&ITS^R;SRZjj_Srg2)D%C~D<Hk*MA{z3+_ENcMG-O3Ago!NWl
z9Mirs+{!s9R>7a8|3ozUkq%yUF(dG;DCC`p-Iq<%t#$=vvL*KX?KDacEjYY!t4}I#
zRfM?L>F~B&1Pu#*RY!TxKUWP%Yqvc1tD=&KY5Pzc1HKeEW5&6Zv3R;wbY^YvRRha?
z>4Q?C(C4T*`dz8hgQKhQPjXF%@bl?aP1JGNIEuZAN=CbT!bRGFBqE*4T&$EGIgbys
z#0lF6a!akHKL|Ka;vYcgTIK1Kryqb2lL9^hI72f4V^VngOEU>eM|=A$K=D2}G?d-h
zDJUsfq!Fkc-u0iyVeQ)juhJ6Y!VcIo*Y-$a`6PiqA(HQMx}u32%NaXeT^PzG6pSaX
z7n08Hg6wMouz*nUC!Sf5SmJb!$ET;`z+l8OxJ*zM(<IlLcnq1mW|R!Oj_=k{U^pNf
zxVoyMA}rELO$A&5Njx-w5zIbsrM>RPa^nR>>f;j20703++$^eLsYM@U@=ptNvlG~&
zG$SK%4J4KtWDWbtMg*J!(Vc|sB|t;18lt2`S!64~TpWgk&;A`qt!j$20VisVj`7J!
zB_%VFO~p*ml>AU=`0TqCcI4?8n^2bT&^UE^K6KzO(j1OQGZQCAD_u!sU%GS991RK;
z+%R+cZq`Lr=-75Qni07?9Aj+vwFSiDeMpwHw4P;UIe!IBL|EsQ`Q3tWX2MB14307c
zdQTyQFLx<)Qb+-GY)k<og4<{(g?8^fM4d5nbja^SbjwN4=X9T=pv9_>T~13Y!@~Tk
z9o;u0G@Je=-U?Er>?Nu73vj1ICs0xf@7~|ri=qp4cmFzDx+*rAkKg*`q{+nu%RZ^~
zeZTW?=~w~rC|E~Fr_fk~%=G$rG11d&(Zb0*jQ`uHR206KCwMEF)?H8!IKG;|<Xvan
zejFwlWd&*?-RFv-A#B6hyt@KsW(_kcE&}zy=ucg|=vD{Zmszvl12M4UyXj0EW*&!(
z7}ZxN%Y8NVfKnh5eg>9>K7u3SA&n>g!79SxCfP<+!jF8%2ckV$<6ynoiV+{5LmS@}
zS9AAN)pBbc$YP?6bQp1f$q?D|^|iL?!worh^3Gc<-jvZ#a`LN7K}g4DX_S){6|gvq
z^2-D~MI0^HGmwqej02lDbh80g<^pfA;&6V%l(LF=h-ncN=lwP%7D~P?iBb0MaJ8P9
z%A*|QHvl`{qh7<GN^uINeo$$STBD5pnR=Akuep?r9gEq2afXa0*imudRg|ww!WrO{
zhb{ocKu=3Wt>%(hpf1?sS3PIdufEW@h2OyNXe}_!`{9E^9?v6GfZrAjS9*dB*0!-D
zFGtv5X!yyxijVMoY;v^de!kp~V7XU?&U?_1d^)Q_0;j2Z{pAM*1#jfs6tJW~YUAX^
zb{IS)@c<WvX{bb_N|bk%lbajiqP$9;i!thb`Qe3jV8vV#%4_d5YhKHSFaM?^{g>jx
zzlcjq$zH*Tg^U)+6|31cKi?m28$}Xu3Vs<$iKZi%Lk;9UAQcJ{hZuf(r;a)pmx(w?
zAQnlK3)lppDdUch%+4kN(_gZ4dw#wQP8$LHK}=ITbOBHR^d$VK?aOGI;_;hgeO8m-
zW9(x9qoW{b^A|2!zvL&9{%~J(2&qe}NS~UItOzG8i-m-D-lsD8`o>3R1sW+Lt(vGt
znFh5V1Y%1N(&M`mO1e)8G}M!2saSxHH7jJDBT9^)`hK%!UWR1=7;vO9c(mmrRo+6M
zwZ<}H?domRisHL&9R39R`J>vGyD#70!@%)*a~waMx+wo7T|y7F=w4d8sr&c>o^NUZ
zU2LIpx!iuDv{{ro4v2hMaarOYX<gZo(fo*%uxzOFj89pzEZFCxC6nt0W6x{5N_dI0
zZm%9itC!d(J2*B$%)_fre%~)6jSa0z?lz#<R2v01p|fkzD=|C7W8I)?8?>k}(VGgr
z1k2+tRwFgnc6$vd!eQdJa~=2UT&^^bLKnHX(LXD9jpQ4vQ*dN4xE&Hn*b0LkuhxJ*
z=?-Ns`sZqHcU*Wgc_(Ny|57_(o*Hkul3(-p@88)%!LkbTxu>jNr*OzAIfi~yQzA6u
zzRWiraFOsTvvS=}U)L9$?d?(9hPzBhjubX>{S}iu7NzcY64;O-^Caqi>R6at^xqPP
z5^OLam~kI1)lu9}=I^ePMx(R8eKc@ox@)<fP8c1dPJhlrgO7<}-D;6*;j-);6pNsE
z>!(3Hzgb+qB;&ID)aXcztho3FGFmh#e$9z;a~w8#pTeyF%4*&{#QB(oW_Q_XmhGd{
zpk8TnUPxUXH_zqo<Ev2Hp6?HUrc6}f<r%gTuRkmv6Y=_K`ub<{)dkMgK%ZQHUU^I7
z*A<VKFZaiF!<uUHs?D2BN`-({$bI8<<2e%#DrY8xC>qfIKv&R<q2mLcftvVL&xd^M
zS+R_d3x!Hi^`|v?)alJ}0M6@!fd2UEYS^EKd}4XIu9D|u-kXo+Mm8GTiTO79<*hn}
z(FAs>huXh!u;az2Wxn&6P4H_r*as^+_S`{N=2CXmTn*P1|7nMAH@9kCfq5R5e0sd@
zX*CF;hoi|o#!Ks@V^?u7sCdl_@e?6pOOi?RPVCpnds1l;X|dW2C;kU|%U&K)2{G#{
zU)+`|xvEVY=%kz<>EK?>pAw9gN0R8?w^$ll8Oy|N@Tw*j<xg~d8ID<HI&6CpHXg9;
z|K3pTHBWZe`G!Tgg|W?>a!BPqnBzHfTA-s|i<o3eVOzJwwyh-6!<hd3M%y@WUB`KL
zFx`lo-U2^HUKQI%x#2)8Jh}c%Mx$q;S9Js*vgi7&<b08{p2oz(lPV}EXp{;hk_Sr-
zRgT)F2X_7c)^qs3`w?SYsPaohwvdGYKXSb{6{yzS=Y=B~gZgDxAjq`5>r^rLVA0Uf
zV|y?T8y>1ytvnAHGnG{ASnKeICvFj7ytuU+G6&zgTk#N)#lo)#&HNCFOqRQ)8IlBx
zbGLbGQYJHiTW_S^hT>971e`oaf7Cmn*Ieapb^lQ*M;vbk$6<r_G`6dm$h(0%kxIqa
zq&!qaL!Za@vU;uAm>HeJGc?fl0J=cj7mYY+{b<?IBv`2ME2KxXv?kSmhVde4up|&)
z77#9mCUS^*=M<&dvLWT-8<Pa&5|^wP8vw%Xsq3J^%5dFL)1<5PT@|HF)t?gdFZX`&
zqDC*fd=u@#h<$kaFAp{`(45zS28s=V7^<C=1>xB(%E<v66yo1-pw~fegKP1eHwh|q
z8kEr9ocTWjlJr3W)3((l(g#-O;V1_&;h`vQ2EL+Wtf!_M+@py`g!eaU7(F5}om^D5
ztw&e^Gpz{L@r>?EVE;1(*n|}l|Jv$6#N%?A*F`bY8lfa>MM<xpJl+P518Ay+jK})z
z!@}LAL`|)hjokQoQF6dJ6y$V_Zf<w;@^p1db;tKuAJ2Pl`b|Q|5FIdkK?k`D2=M;s
zzv?}NBsy}K90^hF`#d|4dfoL*Zqbx&?v0RE-{vP!nxV$=4=MuAh<RCz*v}V-RE^J#
z<Mxli#ElU|_lE>_>2?Z@^rBQdd-DE%CEgqI`S>jLO`i?*GB{d*UVpVgRAa3rXHG7Y
z%T|Ie`-ERpz7z{}2;eU8%qQ`#`xNS={H*YpBa3(UH71z?9~jKP0eN|LDhI=@!D@!X
z*Nxp@W^zgQem^0fe!1#{apHT<xp8PN>)YBIz?3izNTS@y8G#Y`T8fl>u%k2ksN!=H
zOTni?yrnAwrR+xcxYnh+cU*_qW?|TOMd>*OR><ewJ!*7%$T81JPp9VOoS)=DFzH9R
z*Qj!iq=+X&)@rmwSa#g}gzK|$p1gnFww#m7dVg*Vvz%Vus!6Lt+12^jgCI3>mHy%(
zo@PVB=l8h;aaT{K_OY7<*t%2qwM`~)JaA@|wds?mkGXJ}iW#zHzTsCt&Y*ULsRLFM
zY;OAqmr&SPIN@)@-R-k;-E8jf5Txb>E6y!qJTKjM%v9X2IZg)(+&Fa<i%OVVKfcN}
z{pm)->U6jBRA4U>t88}ptEA*R<~*7)31{WMdy@R$dF`LpVR|S^EP=jisZD4eE0DdG
zk5gLd=%mf@KMxD%zTq)4F_FX)om}}&Tc4&=ZK_aHL@00fxxyfDZjFs5v><+tB;cV2
zAPV#k3&#262B~&>X=@Kl7Ua>e&MVhu{3;k!DOk{WOD`E_+U4P*WNmMWg)@c|XrEts
z9|cnqU>|PMh-52uIUcEB=-HR>l0i<-JGC<-dsRx!5s$Sqv7b6ry^e=JfcD-sF3jvI
zcS)K&0wA>79mlX09}8UDO_MVzP2{CQSL#{?@z%ATS5P2imBo=*^fRH4J0IeUIuT3V
z7PMwo7I9oww@MSM>8jF|=Y5ceGmp6&Fk86()^IQo&Y3>~@?2r=kiRZP0VY`AQ<g1?
z8V8DK>fYNA*}X~3s^vUbJor|4?<r+R-yyA*H!`$<C0&dT{#7<y-YO>|SfezIbqK!R
zrQ&Ls5TBu8qEqeCK#U2LI>4}K%VYH@rVi7zR1f~$F7QFKlr>pKd)yp`462g~RLJbX
zp;qbO6mM7ap5n?*qhP2?Iq!f3T;pC9&oIms)vd;u9TakRXO&h~R_NBUu%o8U=QL0^
zohnx|JsT6m|JJ{7thtnn+DW%`N5$yg7j8ArY7trLLfPst;9{|cHT{RAZP9yiLw6P}
zRaGL!JFA$UiuXE6tZyxn6At*pvjyX9h>|wX#>Ltu(mTB>&4W)Rqt2pq?)s4LHzQLu
zacYKP=-lf@JpzA><X8mAPQNp1?fu!>!gYGJT4(-D*R5Vew9)S)Nn_@xoQG&3av#ot
zqoA|mmZ-gmcj!O_zNv%IynnBOL><|NcUj}(B_vN4kQiCWCt489S+wbQ-wqWT280=6
zm7>L?AKZ3dymP42?|)_}gSvh?Z&1PnF#p~h%XGEVHB(lJhmkqk1@I7NyCjW^mDhST
zErOKSe5cPw_6*Z(D2lW*8PYzy1>noG8@KWaKtrQ~sd3%++6w#q<Fasr;<`N-ZR*!l
zmM6FTi<A0G-K%Xi`fASX(j?Y{R}QFj7L_Gg(hG6TLaK>VW^d;;aZe44Ep|7Lq&_^i
z7@wc^`AlM>6&L$7Tt*Udivk&M{ZiM3>$Pyk`&k8^rmchjdu{#oi2SSo(u<ToCN|JN
z=5h-CAsslO*tKI}p<SAtP44FE3Q}`^Zy>ZN+L$sjFi@DaV9M*m!NJklH!vW9idaI+
z&7E9XS=k*_pwQFZ9PWl^2n!4Q*2U`%de$VKU2}NR_WnS)eWgdKF}v0Qkja^*kBVna
zTsk?psq1!I5)$_Fd=#$_x%qLDg`hY|t6M+C$Yi}@G0#Ks6-+J^NWUiRhp;+hehi&i
z;HCaczUhjL8;6=sdNlSjP>?hk?e&_`rk>n(AS{bvdXr7ouMa{w_&ez~A5_L!Ya87S
zeBZdk&n~+R!Vo{1aS}e5^-NdYsx~SvbqkBaDvqW_Z@9Fik_6|%W0g_tE7q~e;11f`
z@)5k-6MBH8m#FfTvkf<pI=n7Kw2sQo@`EWnu9vT4ZzQ%6_i-|N!#4Eur>x-mqCk;)
zUXIaBZlXjg5l?3iCno9CiR@T~VZO{@68ZYh4ujoWq-z|=k9kbubh6kj#U#T5SP1-u
zak&oKg}UGehrS3y#es?r!kG$EOnx}zBf366sGOB>C+$Xlj}#QZ{8X^vECmcVIdR~8
z3e&mK$BH-@PJHa1t_oi_%{HI<ggq8pV5Y37Ab9DMCY4K85=m>2{AXYotXlvK44)w?
z5&N6-U>*xN8d<b}0G|qZ^MmcC;E2%BA9^XD?6R)?I$8fVE%?7?Tz~!H8afm(jeB)a
zT&}3D{&Neo@HVp6Drl`=Ec(BMTX$$bZw4#`;l~5{p`V`8@?1DqAL&gO(5RZP5gTA{
zB_;+YxSwTf3N_h}_og8`2X805pG1BR4bmOR5EXf2e+FFD&fLZ(#4^nK00F9*e6T!y
zfYg`TAX4VG(Nss7D@4fwsXREJwz>sb{xTiMCpn`pR$|0Qt_iArv$`$na+clvp-TlJ
z;dGWX9d>|#q#Cdjx>HoGL0I?07W)bx!RQTg{SUP(W1(oTI?lHfbn_wzx!;cC`{T%E
zw@s>o?b7i6-kac`Bpo{rGTWMD4Bdz?&8+qk%T2bY@w;jADWl*p$eGhUlv^@w#I3cI
zLngA`I@*;PpOuZ;68%l(^)jw1WZmuQt@9}94~pRAg!$+(!n)^o{FeXgs6YK0iH@dV
z!h6E~CkT<%m>&>{2#@kYR$*(lMTOH(pUNMnf?)cCIlTFrYRwrnTdfb@lTO>n5yDC5
zH&@3fJM)S?_9iF>zwa`_iz%j|#XQ*HG&)?97MX{I>?s&p=TA2I;N%L*R4Ufn;uJwZ
z<Uu-O`L!?7xp%OTQ^34{(ec?69xxjhrDJ4_v3?C0M^o4lLCcGb5%4xA6sR#wImscY
zZHrzUKi(+?BzeDP)Tor$fSw+!th6s(o+=a)PN!Jz$zC;^3>rh>E5VX{JlQ%vX8hbp
z{KIKlo#(XCcQ62|rlpt_Yj-O;F1$uv7njrBUB1v&p=)qNG%vLoTtIOORsqFbI;$S%
zG`e`()1`iHR2?yF7rLb7UPn|3WsAeXRv2r4SA=?r&XN=x^HX|65D838`pvVa1*4Zc
zJ)ZQi;r32m#EsJp`eDfZysbRu>G~(PlHO-=Yk_A+-fMzX&Bk7%l}hv%{eO`d|Mf=y
z_g4kjuj%QPI;g2WsUl$E{B8HNH73(LJ(1K=(BE<zxW4EaMDY8q_h{GN>-9K@q_(qh
z_^YUpxWz!RI4dXi#``{1LPtyH>!;4%KR5XO$ZOPEJo9j~#jy_!+K0j<26ITUajsuW
zjtTpFM|?fq!ztm^Z0LSV#F^o9Q`6Pe<hQ38(mr)Nhp(9)?g_5@o1o7H;?U9e4=#uX
zx$WmmV~08*z3--$CE)+#0GXIbEgpRS(NP>_q3IMloNzKBw8zFoRFufgy-}ggT3=aS
zKIgguFoqPc{hiP)VkB5oU0t2>=(#xLJh=RLwclmbX1k4yfP#|W6^x=JEDVi>jXlV5
zjcU+(8}5t>VZ-Xl{jmo6VSI7Z;<u&_OfGpy8j#+P=^EfLDJx3I@>a4rTthMy1^l|D
zkmW1O`hQ1TcZOA68l^hBhO~Z6GxTuLK!KsgDbL`AtOynnT}+@5Cv1kn8d+H=8Lwbr
ziB3=-RQ>01;!m=#Jj6#bg)Q<_pOQAZX#ZA7DszQqiRe}c{#mBD4hmBN21amF?;ThP
zA8%&qiToQGekm5PY*SH8j<~d;b_Xsser&LG%9z>NGgUi1XJM6rC%iuSieF6!eG4{K
z3C>oC;dEmO)N#KHgS|#0PG87yUfLTJ${^wS)8CiZIe@pfy`&U7|D!d)GNBl#F7?M~
zSm1`g$dc!DyrjAwGBLK2!WkS|V_oF8t*(sM7m;{<=S(F0#aUoEdhcl75)cq>Uv0(I
zDdxIzLZzp2M@9pYzK95nl8$#K3CGTlrlu-}p&@$AlgS<%vlBNuY-nNQ{r!0s9zA{>
z30vi3epkR?;hVg^aGMaco&DYzQEZYq37aN@u|#ueerKnH2Ij-2eP|MA^ic}o_M0+g
zo#u~G;Vr4k2F)Z>G^Li76lmye$0X!bHY=rhLW$Jq{l!W&DqJ8o2?Y*gh(O`v9xkqA
zt)K+(dF&mL_V~@4(=K=V-M9UYaJjsH?&YVJ<a1q}5Rgu>BEaVi_*LO{mNx7+tML5)
z5D+nt+X@_w(!?0`$);w#C(Ev`7T$LFuf*OKi{up>84cEa!>4h#ir0}cKJ5Q27Mc=4
zpPj)>28V3=2Y<vOi-=54)@q@ekfmYjEM*Z7|K;pg0ICs`3Tng&)XZj?!a~|6IHO9@
zj|jRe;-ag@E*d4_psPYF%Vhe@TrHv@61e}<VOKWRx^%r3FK=SA_c}XQs;<A*^ox31
zCh;_fAU8MnTX^`)7;3qLs^V@tUGiNo_+2`)@1#4lbOW{PN}>|YvZYJvxlCTLpLKQH
z-I;1wX))f0;|wBwnyG2~`t_B-LbGT07T{IExefSW?&Xiz{qwW@>&U~u??8Icnw0-I
zd<UOMJv=-r(FCz)fWr5vVQpL^Qkg2JM;hioP9`!E_5=D*sQ{^7s6yGP>Qo1tf5w9H
zYS4%Qf^Y87fZ(8Al_{oMl#q5Did63K6diuzrzrQdYM^GJgz&J6F`Yg6L`d>thyS@^
zqQZ8uqow5!-ze9@RJXPw?_7Bm0LM-R$App@yC+VX4U0RK50hCj$!18)_kLV>e!Q$D
zxdaDnpF!gGRx$f_cWqzbJ)viR@3=w{qb7poXntBYStiu{iC;K{zfQr&=Dl&B4a);|
zN3e13+ij^YYDu<>y0nZRBB(|@)Pr(GcDJYgSU2>EKwZ<ZAnbWwZ~~4dlpbPV=oqoB
zs{`HO;3>u7#O$xn$nZVHGWX_W>rdWC87FK;x~?R285tXEN36Rd{-@tGUf|cND%NmZ
zR#8_ZhXlcQXD2=Hi|}D+IZXby1H;rBnoF14cZ85vfF0R+!%!~u%l8-|QDI?u{mhPV
zw$7VPxWp+0e2(vx5$Wh#q8^pl*2Qn`uQMt;4Jt8=BnnvLQ|$6DHaxi+^rMeZjC!gA
zHb3fJI0-gX{7~GC9Pq>{a$4ZzLgV$%TOq0X4DDMX?J8n=ibFFHzWQ`%!{XCja;K~u
zMZF2wPF3$G*QwzAU7kyV_RHyl;)N6<VZ2<m$eR<2-sKWRL}UTSVUKhmHuBuk?UKm4
z-BX_5958%O=M<{7$Q3R3ecgk8vmHfQ!-T|ew$Sbk-Q7(?TuF%)Ew?je99D`IKgv?T
z-$FfdC~t3X$4MEEf$u<qEiWkOSMe+UXPoQ#_P7{vE)X$I0Bj3MI259iT#-vG$l+`x
zz`CZ!8eDbTB@BDBPUNyTmO0hn@I~YKxNda<a6x38*_IZ~C<9gJ9cGj{SX;I<IP9Y9
z+;>7?S~(U%Yo^`musq$;{&^Sw(MMUmdF{&WKl=eZq^zvW+)-ggz@A3=zX(Uvn4sJw
z3a5C%KP%<ZsKich&_VR|6sR`G>+7n4JJ;_+;no};A{Do;?2Pa?_;X<b9R<Lkn3y*j
z@HmsZfZ~@WS|AQBb;l%6LDU{9@OqEwGtr!6rC}YZAuSVmII6YwMK}TX)0M=<8GOdk
z6($}1`>eg!uYatm|4fi+$SSM6B-2*V5p5+!^J_M8JT4vNv~-95{Q2|VALq(lXm>d&
zscalw&x(Dx4I*4$DnSyxIiW2=hwP){EcrPZotH+5(VG*2DdUxLzq!4lZLRrF>>+D=
zd`AKohc7q+?9#bc%ev-IY--&+mhT!wzEeT^KR9}hFYVw3Js3m3^JV|q&Nlm52-vd9
zAktEjk`y1%kOXd$0YAtia$4F#9q2y5LR)GZ?xXiXVg6n(KGJGaWtGY8Wj}eOe7<a|
zIG+#O?-)5=i3mXrFc_R-U}$It6iAE2g8;A=;~x`WDmTD%asm`FnJ1G?tCZJoUw;Ug
zYO)s&!HZ^aLBEGM$uEQ7e|ZLaKshb}-@kun7qab!wbn|3Y=g_d*nhcR?bE)mZoKu*
zu3&Jc+12_g-Qxaw#sBM-6_#&~)8by1tuIn18N+~PeR?hbyJ|^ZLq)k#$d*m9igJ*x
z6Ou?DYZFJ(7V(1VoSx3jd0T*AHi=*o?q{XV(vCk>X{p}j`>)@*8*1{8hp-3kG~g$4
zi|P)BUSh6+JKo6W_3PIrJoc4^Xs;5{io^yzy}VRng+w!)$ZXHE>~!vLbC*KqiOsfp
z5wLQVqv{jijvO)978?FuAs7CEufSt>7X!^=?6A1cr<+0Kx3-54{<=giDzQDVLlpA>
z%*Xl8eB%cQEVLg#R<Fb~nXY?OtfYp(*84Q2U}Ini@$&N4L|E`L0eLoty`h^MXKqf8
zyr*X~`x79lHCGo*ENg&|0B9}M06&TIS&r{XxXI;oW@iF3+T)}_tc)7S$#r~|W4Bf@
zpLET<KEg6xULH$!1<g)+g1!^;rS(P-(w`7B4JHg+TwW&IFrOs;Q_B1I$-RJAI?ulA
zyqI=WpLC#t-Y7wz!O|W98qhqL6oY@?1btP5`SpH(0$jN=SszpZYZZ)nuEw{<oq}}1
zT$!%7RkcnTgP|;$&ZaT~EqzK$T>j{pEy<AF8qh_CE5gVCJ%4R61O11>-OWu>Vv?c3
zK@sBPfP?SyLJW-LaO>~!+#({ZfgD0+eq}^iM_rgx(5#}e*$*)?U08r8Uva1KDc0fs
z7r`j^uWWfRL#}7$&w{#N-^dT9ye}U6Oowb%<)ss7xa_w;#wI3%){Tx4@s|Lo%)fP!
z?mXvuv3P5rl_45mp>=<k>1x{aPa*SahEmt!E)EN)XsWo3uM|xz3ECHcD=RoUI>ub}
zq%uP#Aoxx(zM$z&Vr_8Or;ME3&Kb=)tFjB$)W-a#AN(X+p$klHA4tY<ImtMtJXV%y
zrr?Uf<Xb!=msq6NOw$kXNzIGJM}4Wo#pJqU<GSsz{qRz>b-r-FZVwz#rVk)~yAMoE
z<%5D5&4`rN??9|O0lkWLZF876fT<>G2v7kRsJ312%-gH%<>i+SNGykQlh;n6{;cd@
zU2i^3XJiHonI613U1gf4Qqc_T>FJ@91je5<n;Xd5OMxzD<wJdaJr(t*2!gwpd2W>U
zf}*4F^s5#6OlYV~HGv{b0aTbktV07FZO7@FlCt8Hg&|#Sm*X;HC#(9hdOBwTfo`ZQ
zGD1NcQux9goM%YWrk5LQqJ*4yr;FpoO4I4gYBTOi>O+eIm87t605XTDui^5kfs$*@
z&2GlYIJ1}s$=ATG4~D&ar>{NpMa0AoPY-X#Ty6kd4S=8e`y;~(qg_a|o|r9-fY#P>
z^_1G<uaqDFJg{*{%m9PSox6CZMEPYD)`@^(+xztoF1s@R5_JXDlI{o?$=kEeN!ovS
z0lZrmF20N!aQE9QpCIiVT5J<ZklJINp<TUm$RCL0vr<67e=}tu8vV9TEw6b(Sh4~A
zLwtOEag-ZprS&q`Hz`6!-{^Jp$)?~~tfC&ZnpaSl^rsZ0<GAtdcHPyS=xDPN&zEB|
zvd7ROB2&elw(0@W;7b;b%k|=kVl^hIwUD0K#_n)gq>GF$RQ`fKi?RmMNH|h@k`NFw
z@(J_iCO_AE--|5E`Ib3SUPnS>J!KbqT9?h>aBL1((R^|BS%t<jA&b@81IzGKhG`<`
zh}MpA^yyur0oBb6fN)3P0j=Zn<kT@V4N&6He8mLk0PqSO0N*RqNZNiEMrK-EQvx_J
zaRhpxtNn2|UE3akMZz<pWYVneU#L4JIjX6M-!MMdtu;h5JsuV4%jz2k=x_h}AV7k0
z?e7JH_dx1iAKg3H|0hi&DUe@6ARd!wp}dDl!>pK+hD9f<2`Q>F%aiu^e0i<gV0Kp5
zn~2D_36>>U)#{;_u@E6PiGcR;*e*AZ)@rMV9GBBFy5B2k@JL8M0s?4w3a=n8Q!u9=
zNJ&XIiosm>_YV?g0-5Nl@e&HEwOgk=83*M*as;T8Oek3d0?k#ekl!)$H##4i=g!tO
zN21$wu3hJ6WVF+@0l_>x$Tp=4y}>~m^%h|Nk^ymxdr5ioMd$^?0V*~DhW{=J_xslX
z;Zj}WnYU_j&8iw58;`sC*{f=iZqbjYc&ZH!8O3niOU^8geI5iK)m|a;Dl=nUyM*)P
z^*R>RO2)cG1?_d>1F8#D-@*!^1Cu{Ejf{R?BwXfv4OIROV8u=9Fj^cc8IE))Q5}fl
z4_g&n0#x`}Cf6Sp1(}b4eS8fLmy7Xw9FbRFZEFym6>3lmEm*-D*rYa2Pjy#Kv>0?9
zypWfiZ2O}~liKp_sHmvSBTygMxAZ9kEczg?b`pA<!kTWhSdeCU?#H4ITMM5ezJH$r
zk2@QdeDJcC=4KFr0+!5wKf+1Z4iAe79WxkqW~bX?+4I=rN&k(62ykEyppmT~MIoe&
zh6yVtw>yMl>9G&qOjz;vA?Qq<SFMcA`zLY8qs(y4t&i8VpMv{DW<3E6T`D$5=ONth
zzCJA(nqs4yqw`AB@wbdYM>D0#j~A6yUw-j^kxsBme;@PI)AlKl((7<tt2zT6p&tko
zr<^wAyoS0iv+K~!Z}wB^0FF%MV191yzDOw{x3jw0(*7+piQqdf#{!}~U`B1L?FA@>
z?Qpd1-@e%eaYOrtq{ZaS5{Q`|$dsp12EutqcPk`F?SAud#M6Z&`d~Ecd9-=TBbT`k
z?0Z_lMSBrK_5DcER?Gy8))vuz@OZu{r;z-H-{meX&nM|#>|;al5?^i3H}?)cia(f~
z8Gv+h-fhLC285tK^1M7=vI+7D(OlmwMm$WFx86$<d7cSS6BQN~UI6?;m9Q1m=fQVi
z!8X8g^y2ve2_txx%GPtu7Y>??$u$G;{0g!@0P2eIx3{j7B`aClhI@-Be2*C@$D~Cl
z#JrZ3QyvchKUbkQlGujlou6NQU!T9=A6OtzOmk^_Nd29}HdMIs$K6Kf7ssln(wY3X
z4*(^*^}%`{=!n<63Ut82!WvwBfYq+kK7-FwFJTFKisZc)C-z$fT+fGTTLN9r{-AaF
z$Ba1wczt#fzd)ZB7n4%31{49^zBm96mu`PK%pnC-c;gs3IMmuse+o&ba;ezL2$Yy2
zX7;{ZroZ&#+cfL{NU22)UUok$od8A>@*QLS;YM(DTsvq9;e1{mR&(XjdEM<!QXEFc
z`}9n3w)MROAO<hbPpWr87nN@poHZ{Um|adj10eGu#=3sWgwJHRDT#K#Ms{84c4<=V
z0vtfmtv)VTyc;b|kQEOY{gY+f?lO)gTOlNcbznHd+;il3dpsW=gK95_brd{V3Q-61
z!*q}xRZq%Jp5opd8$JL8B8oqVz3+HzgZu75sCPC1-`MlvxQ<4#3qUy2>aEcQ37g(G
z3f62U^<KXgC;{}bDjd9h0O9*$m+xiXEFv5+Z}fJhWA1SBizg26^^}tAEXPEe_r2LN
z)j=l&dW9VCFZ*OQ^y}Z$A0oSfYp<DwHY4%RMfYE;&-Mz`?JOIAHYa>ciMG*eQI?pE
z{Z&j-*fmPC9!Uuy(r%DmBH&^Uy&PL9J4dUojK%ZT&b|W%2h?o**>gOQ4%#V28elPd
zFrBNCNjz-8cZdISS=BBJj8G5g?#w8*^4`TLl+P@RROW<^-vKv^bdtz^L}=eh@j5I7
zUt~mt<8wUI{dSBU{QWyNS1N%E`4;k%<SQ}zFLAgoGJI?@Gm5b^kn4Q&M|U?)?7|i+
zvy<M9<IOYGgOe1CBpbZ|=$`Az0g(qEXP#xczQ6~ciDTCXSaH*YP0d^xc0nkLu?l$U
zL>3VQ$ImSco!Pg<&u4H_^+q&vfsQvGnkm7*j)`AxgWF@0v;hry0dW>b$Q+&ls%Yo0
zcbn#UULIOh!))c8wdr*T1jl{?F|(7{5b2lu**2q#tpV8$(XGCQ*jP+Az;T>0GUA4P
zdD@H*B^tNe6ZLVvFVJ3(&-F}ixptX6-GbKxe=l-bp6JxKxE{@o1l7MEF-t*>^_qXm
zbvM<8>l=PF&Na{dUbdz*d_^MgRxZy9+@9}thj727_zF=2WzPh_gy*-!qcKYc!65(C
zuKA9p@G1$BKZnPpTnq;(sX&_7jYj_S$AE;wJ|~L>(Z;8zE;|Pw<RdFzM&Z=5P2nbH
z06~1?h{dr%P(~Xf*s(a>NUy(7=(40BL=oayPekH*-95a*C-+pjTTy2v*R~N#U)?9+
zfp@W?+4gj^xU7=^^zz0!HP!6M2iG$hK_H%M{MidX7=-Esjadll=GU=z1}i!(?wMRe
z(l7EhLid&sItvw(#q;iw_`s(B-st~488d~d-|gXHAlm6DzDH{iRU7d8%kTeoE?9kQ
z4>5C~AS;V$pCo1A;n8BE8BXVuy0{F>$;pw1e@C9%+$<<5H58{7N1#z>ovK&yPKOxv
z9yiQB-Sgs`4uS6%OxN!7EzWGl@Ki5OK+NrNT%&s1=(6girhT~Ihy5y|RtR1EWgTl^
z<?$Oj)lGb?M&#j#la~XVA6459ExM{v3a55(J&>9UqGuITQ_AXzk##R*U-Bdb2?7cj
z4+5Qj%|bVJ;1nBs4bM*kZMW)i+Cu$@9@Og6a=Q^$BaRYAT+e5_J3dMnD#g??g^u9`
z(Csho56dm|@lV3e&rqPjXGEY61mNfCK6`uns|_h2i1w<q@FhA3{yE~B``q^Oz}L~m
z{i{@~PV;)Ll>mVo37|VO_r5vDKy+%4*}A_z+^*k@h(Ta#mUq87D(neCbrk%0y<kzk
z4;Q?acv4a|GO_)K0+_hj&dXGPe^AVLjz^?-4;=K{?Y?gsWn2gRZBbF=IxGmle4Ql1
zNQj72I>e-~U9Kd`0rMg$d#vDF+zuSD#(RxQVZJ&02?=VmOq>zYQQ(|7xzQN|4Yb~F
zAn>&9PZh>sy9uBotm8oIGP^GN<4Ayxy#cFxb1Lz^TcEh2hH`iCZnhgk4y+H4y551j
z-44A8W5Lj!xdbGR(8rB<_lTtA%^x?odOstgB(1v(KkVVW!?nr2-rio2^@`NmaL`-m
z{dE594Ow>i0|PsNAQK7cQ>VFRVRIM|yPd6UaQXj2Ba*G?xqh>P`h8;|cs<E&D_X4N
z5Lt(b4=@lLMmv2S(0l@2(P+#1+_4KgOTR<9>UkONEw?_6I?KIc=qlX<3HfmKupUfo
zt=y(S%$t6@)PBZOWxFnTOo~NB`oYB2ujkrfJ5Fs7Fy=Q+a$1;~{u0~e0!2jB<?_0F
z^>SwzLs*v|4|@G92_+jMN?i>m`Iqp;)CB4$x!!Z2hyL#h8e2<~_L7Ky<Q4x&Fe2D}
z`vWMj;u|GlkqKx(+QHxS?Ct$DQMt0Pzxu}}grUZ%=3?`C*0iH-h%lV#cYqMc)k*xm
zh=2$yn8RS$rT=V`@gThpj1?0-^#U<*Nj!K*XegEKK*b*|Ld~8~CF`-<fFM9skjLdw
z(4aI$WFNoeX=aIbqy$-DALoF;uZHcRqZUYZxR75jRjmM3v<3WnT&w^a5GCRtzVcbC
zDVR11T&5Kg_5BuUrC(-GWlPA^U`e;Vi2!k3ukG<dszrB}*cGO`xD_@UUk5N0Rz(BB
z*vXxkqbdxia89x{jBM^t=4-jFDU5<KD}kg?0|@*7VA?eMjfC~@?(Q@{84E|#e22?K
zwO+7BO&5@dQC+OFnay+<b_=;tE&FWdHWvgM0ue;x1lf)-gYrKgigJOS@J}63p*p!!
zKZK~0mVtrO@Y(=JP~GEV2Wg#7hxrP@K(x8fB;pc)rkSnB7vk@ZtGOa~BZQfYeg>!o
zyJoNPF9Zu*rd8Au4K&*!04q@I>FeBZYC9Ut84>?yvxDUd!{8fvl+mbPz=*{j<MUKP
zf=b3~ZpLd)X6<$l&tbONPu~oNIYAuyt}mwmABG;2yG){ab(9B^g3Xx~36elLXF&8b
z@f^_y>QO(2-Z%Z;xCK(?y{N07`1S6bQ!q*AC_BGhUxvRp0k*T6{ol^^&b;3d5*|-!
zYCi?(p&8yx*#xlmeL*7q)iDxK*azv+vT4cf3%96glA3e$pkBJhon;ViF7xWGKWnH9
zYa*@hb&@0hmwS)IH=gS29iGllCcTxZ6X=NgioSsPXG~owA;YJC-*th5w)y&ukt?8T
z{}S-}t<FHh5cnAxS;q^QRyPBqGJ=E;Ma<L7S6ONBxxo!;rz<VjogV~46Gh~esOu<f
ztKmr~QZ-^*chfu~oL%O4;j1N}oP7;N>_!y!4OK)62?~o)12%6EzH!re>16}|oG|QF
zw+`x6Js!9%)p@~;3pWj(RIzyY3^nQlsDNaqs+_w$nNx?b<9i6Qp@8^4K)2H9>f{8$
z;2W;Nbfi;vdA!P`h0d3dkVva^lkR)N$Q;smv>~dr1~7@HP)s|D3BewXtlvjN@Q2+%
zT_iMtE?jfKR%|4zp%pSsV%hUV6_AFS*?F}7ixk_5?YkS07EJ(jtEcv#+5~2!4*=X+
zD+?TheEyDzS%}8KML$udb!VyeYWG#TR8ybaq)SLx#SEN3DmIz1ntwaiim?8fwK;Ue
z8I>vGsqfRhDA!JztK7QVFG{3Nesb%N#~Dn2P-80!cE@XYLHR;Q$=-%KCuOT=o(F}i
zG!B5iH_^o0@|?5l+P{ID7bUH%Dd?&}lwA5>Hxd$GRf?}3dL?S>0tD*GIG+s2g5f!+
zqRwdilI`EY`ca3URTC~PG|B2keF4VX7bw9uJh*Al4iKY^fk+V^=@dmJB`0*M1ONq?
z$vMpUmoV`UTipq&%4B%rG7Ffu-)mJ?QT=pXn3d&zj!nJRf_8J#G<02CSt-3%(`&81
z*V#$%dl{;dhY2E)Q3Fq6L<s)bzUEd?>*i$v2|teJ*CJcPQ9S-okyWt3s%`<P01QPu
zp*p*%s~573EFiweK#9PS04nWynFG@Kt`Mzkn%x|<v<8oqwg!w@h_$7A-%EIy2jmNv
z@Ht}o?~S-Z3*RoVj(igOgGBE;koBCIvm+<4lavg-$$`&11Hs#o|1LS6s<Vz|)ww4L
z5DKwyF~M&74w0AzgSHPxzW>C!Bm&WB4+nt68e2|XnSZ})e%r`eV$nfj?yu(Misi@#
z8eYP^_qzaMxNVEF>iB1ZwW_TV)aRvly@&fxY;LHU^Y1#pcaa<bwLq2u*+t`__?r55
zv{jsw-_N!g+69{F-d(I_UIB@>mRF~%x&W@PWHec$PdNQo?S7+msFR9|muO=?ZxcT8
z<Ufl_f8ge9AU$4~$mgH<`%g2b)wEV?0}>B14TT7)eb6qqXY2P=MC;Vw^U-49PF9DZ
z=W-gXhlMBE2r*2i!Uyub$iC%&GW#E^I3C0w^2v0Jq=M<7Hut%LiDE1T`b_Ip=UvAc
zcRN5|olBXndXK&*5AEqsR(h^nG&U<XL^t%drhS})dBfDn_xJ~JaY&#*i3cMGZzYb)
zego~0_dquI3;T`!I`jzknIB*lA?Ly632+OSv8>e0Kzw1>$gUIt0wJy=oV$BC0V!u0
zkU{!#Q#l7D!gn)r&j3_zC<Kih0PG4K+9nX|d<xgsHhF%$+Zj8?eqvs^IKurr8-BEl
z*BHruWFhHv4G*k=;&!x7R=HUVhnu?AO^bn1U$h^MH$9)j#DnEg$`=qV0-2lPY=fYx
z!sMO&j!^{Fgqq)G>PjURLqsPdnjkYPHgZ|gvE{|9w@ZQ<mTkx~P1p16IiuHwk#2vz
z0F>}QgPng_T@n$zhLS^Br)2?4{7g<Rjy%WI1Kc96x1eJd0gqPAlYQ-Vee}(P@a`>N
z3s*INX8Vy8PT5Y;Suhx&5dU?N)(XBt0CPJZnbI%o^NDAOz%RLOhO4TFGPT|cG8r|o
zn}YB73-qw1KD>;Mj=BsF8lvxwLDNYgl$_t)!XN|$iFJ8C5()+sO>~K6yVd?JV<UoZ
zSK<_8NC!&kTvHXx2qeuSLha5#NVY%r%S6A&(Aes++p2CkPbA_UQ|BDsI!+2tift!6
z3qYW5I4o<bb~(C7hOuA;-a*z4$(KPr9yl_<NX(vb!#}v8_h&;otMR(kWNOC%%*@xN
zZ-YzQHs*LKHt#N{sF{1bXhz8C)V1oe&pBTa8`iY=xcZR(5LQ1ooVQ*6(`vbAwcPzW
ziYGjH+uUJ62RJePBc}NiO}u^m8-uy6yM<Y2nl*%-OORng-|u_GqSfI{sh`9~AdXG}
z^@c0UXpH_wm2#j~LAkzSM1G+jP#eBjc3IsY;F<WJxAzRF{Y_Z@n66c6`4I~I$GERN
zgIxf<8JbBhXcg&CwbAPyU?KjXPWPNpQq7Cu52lcJzRh5JPrS`@ZVFG(@<h;97)Lx(
zecwg+=en8FL;vzV>qKDM!vTv#67%Vda2+xn>%I0mnl4UA@w%D60KkZ~aql@Ai2?OJ
zcC#Lk2Sxn>3j=tYD@}wM;k9pQE9(aq^(d@a@&T%UPQPxpfLq|0rp(ODye^#>gaD`%
z^#@Qfg73~ad&p<I7CrFXM&lmM%tE?9o5f6jz1`-=);~m6-p8{p_snjOuTI?HEgXFO
z!wSUCDSWi@KIsE!-phAQ#kfq-W&7bgwGe!-OQW>=aQWG@&bM9e`-YJ`RIYPFpz?|}
zAPs?N>S*#zk2?P4t~6zWK9k2h*|&QMyDJjvnGNzlVaqG7A9uu&qs-0EKNM>6aB*m@
z&;suV4BP_W9a(wHO_JDYWO!-%_P<`yKhHBb;XUj0>y%+cC2SpkKnL_mwwWaqTYVRH
zK4i)~A5i6*fa=UD&5NEr4@G;45~uf(H}cC#b8U?~O|sbOAE1s@4ok>HCnTgw<?bu&
z$pLM1GU;q=W>au-YB1GaeRA`2<kSxcpy-v*la7Ucy1zg{###NUSKJy>FN=<cMZY;(
zukMbBN6K1u8zbE9f}RuHN3mxmXwQ@gNCzjgroX;^<Cvs^=JNNqZB8k#^V2vLf>8GS
zT!*fu-#4_VcIGz^lTbSLG5OEB^@YXwiqqZ`hBI{P4dHe>Y1l2f0Pw@rH{65BDN>J{
z#4lrhqMP5CnVHA-pBH&m)gnVbap-qK(+>f+nWoSZ=+xsHjYBYH+k8(+LgJh3$x2Jp
z;eNKWWtN}7tKA3*3&-Dt<vW&jY`k!`3<kf6$`*2_Yk6$fzVe12PRFQ^d0REk7(<G_
zHI#5mNlQB>Eag<+U*SVpxHtoFMXdqbJ-<_0Aby}G>9scVCy5pPO97`;<W-Wu-fL1v
zOJD;#^z(!N{sBak+{MDe!qq+bbGXCL>0fK+!1HP^DBsL+#S<J7_!coKHwoV@!lg3q
z<0K-yMH#nKx@g@M59Rbzuu-M+@hLGTsY)Eyk2;^Q>@;4(RM^zCv{LHm%iU2$Qtyf}
zbt*f%XgWmIz_&1JW!NkZM$3&(=m}h!P~=^dc`hil^bFWoeC-Ny-Z->OBMH^U2v_Gh
zRl5?o07c02liZ`fA0-L1dhhQ~a_Eiul4f?9TgLy7v9Ey2s$I8LLQ+ynT0rR#q`MpG
zZjkP7>245^?oKIbN$KwH?oRK^-sj%^|9hWv#~Fh${1l0At@S=JpE>7)7j?Mr83ndD
znntpzsv>z00g;R0Y?Yz3$NH~Ik(HMFBXnn)(m|B&x2;$!FS`Q?Tt$r*n_TQHgq$Ow
z*h#(NliL``nHAy3rzi39(SX69BpNKy4;D`%MT}f&mk0iJvb<%)-uc_`H%1Na5qspJ
zAwGIVSo65xyHgyJP&+C7Ns`mD{(R=>uK0KyGY;zlkO=D%wECT_(2ZvVufuCMH^J07
zs^hVgf#d~K&!I&ln03;0_xJXW>ed}flM%(R+wVm2hQa<Q|FNRghfTn2`>An+mYRCt
zvRVV6h@Zv|;PMDnO7;Nue6Z9!@2SR7|Fs@fw~Uzm5rBKU_5=_D&dYvSVof5jt&3x?
zkmEh>uO`pQoktt@ii%B{f<G?{1R_oDPHWgnh1*P$e;)R0aGw0}Hs4%i-|j0LK|56k
zRX+f84LXBR^{(fFrPrDRtud!z>N`5f5w9<W2VkOUyLGVcb<3>5JK1YGdTJvnKt%+Z
zOy2Y1R3zU#TR2<}`RdcLFR@DEr^oK?Zp~KWqKgTud!xZrr`}j;cCiJISE;Y2enXyf
zedP`#;8Kh1sG)>S0-I*2P;5L;yc^OLmZ_Nj9(h0x@EX8_y{uOECV5{534>IfHspig
zVi$V|56g1d`gmw{xh8C5Q>la2YBK)5S!L^cLeGB`HA}EiLfsOHXHhCjaru5Bn{t_g
z5vLx)q2*{?bL0IXXSq2UbIHm=CY1_tn898;^_Z;RUFkgu)Ax4Yy^rqgg)@y_3p#5<
zBSl3eHq}$j<)6JZ_0EPv-NMBt5>Z$h^Wi6pl3nX*f|yK@JEi5ws-4trt<HZ6v1O~L
zl6touvtg}Os}PqUmN^F~7iJ8bTk-u+p#_d$i9F|+zMxwpdva^5iHV7Wu-ZR>7Vq^C
z465&~=q1rmb8y~kB}~Qn#9{(uW{ZDH^nb+CKk)B<yjAkRp4}G|yI-E%io0rJ)mi$m
zwodpiRdMfb8}u|owEONr%a#|FL;OWq97*xIN4&%kCXFz8%(L&HhqNiMqjBbF_$X>1
zecsD?R?YhK4VVf*!adhyw$DYF97-YI$OTyHXI4oFr3`2hrHbo+o|Mn;$Ju9*98oIa
zA^3x^)4|TNXYdl5-~wgs8Z<n0?KXtK1B+`U&MMp(<mf4Gel>uU3|6_{+R`u!q|OA+
zAYa`t|Iu=Bio|kG*k5jK9Z2JvN6S==uRkyVPL}*tjmItOZ8#R+>8DZZ_+Vc};=|^L
zGh}!=r+40=OnHO_iY}1U26*Fl8o=Tpz9iuEXip~K_i_U3mO`mVWw5tCmSqj*T>#-l
zc;UUVCz6)utzi<2RT^gKl1&f(oh~!yNWd*wyE14HcGVVwY&<UGT|ciX`x4y(d}(5u
zk&~5w;|};Z>;)d7K<o6yQ7Ey=cem6aP!P`md)567(BV(NTj`Dc&>x1wcrcr6(Ms|7
zbns)iIto42`vrP>-Sbq!%hQ@mZ-GWPu@SdCw}3ERAV>~X53l_*EDo{z^VY>K=VnQ9
zaWp^te9*@HE57o|!(tDI7eHR;PEsjJ71qS}0nU*U!dqgMYMx*yn{}|`?w}G2ySf)y
zm-Ky_HAk!0A5Z*%xmfx!eSc2AzlC-1_*(?EMOZBrYFkaT`zF*y#yeg23Az6HI-TI^
zQ;-*YhwT!fps04c<mKg$$)tw{cYb<0)dPH56NEyQj2TEVPd#03Es7Bx?@|~vYdsny
zDdAJO^r&60UQVW+?VOl-<V7VU)Hzcf<Hd_Vz;@_?6%&jBLJ~m)l^J6Hgbxamd0lk#
zFiBqtlSx=_>sliCIdCnBBkyu9%=JWgImckKeD53?>S2S!1FMYs{2u0xqKn{rmv6(x
z%BE`z4+BXRBiTy&Pv5Xkg|ah7w^a(fxK47$v2s6o+8%-=I^%7cN_(A#OiaX-hGx}x
zSo^l)mw*%?ja19Ky1F)Ca_UJz?^DOVml`X7-ZlqOi79A!GWTlL;PdAw4d+$=J44D}
za|nAiB5NPFE4mtxIPuzvBK#7BoiBYWUI*NJIUlzG)Vd}JJ~M35pE2O%7%ab?G*r7o
zZf6nDxB`pVi(pzFY6?!lE6k>Y02|y$->ZwfgXykf1_#2y;a?obO(d!84j?XQB%@%h
zZJMI!&P~5qEj`amwu}MLBfoY6%G9sW>_uxS-iMIu-;<vSe14gX=k3bReD{dOijZ4j
zt7a>ucpMrWbhvBrfgM*2f|Dsp<9B2+#6$6XF5~YQgNDz5XNSG<Jym(r7}`m9SC^_(
z{rQz?>ITwZo~jpc6R|J0GE_*~8{S+s@2i$c8AynUp>p2pcZTe|N!w7Xx6ah5S{tHQ
z;dH1s?8oH7=_YN%-us^Oe&g?P7}PpDqEK=ix#HV9w6^@MrytEWsLhOf#r>QYMu_L+
z5!&m2-9um!(*E4g!?0yn%Gc*3ea|lLCc*$sMM>#}!OJf9j0226k;CmTC^tl=Q@MS#
zC96{Rf(w`V_VolCE-WavQ=khC=gk^<4sdi8l#sKJ5f6>}y&{^#?p%~nF4}`&0=H^|
zMi@;rN_lWqYcXH#1S`+?<x3v5B7wRw>1V8$B;BP{gu}6IqwjUFVhP#gXsDeo`iUuf
zTDY_Y?o%3jPd{5*YY={@%qslgF)5*>vIn`$X&7@^%j8tIkxMgrZwP%)X4G#ay$znp
zj{(=Le8*eIPtxJp?WEIY^AlI&UiirEmV_FQ$F4QKlHib)ioD=w)^~WEe_ff#@UV3}
z#JO2nr$6k=Zdt$j$_3!PDeWJV8&F@vZ%5_-9FSj@ZEa4k*))^XMv1}7v|0@wjQ^Af
z2ACp)aJ122dGchz(>Ha?(RNBVwjap9Fa-e~V>u=XZB74j*ck<?U1ON!byf|SkB;}6
zHJY`6wb@GlU`O<bDhn(VD>NQd^_MtG639pHyB)bMZ7}YBF{3l`va%-N|LC{8RA-gm
zYiS|7OxOC5#ib8S9TvrVBJyhwl1%&M3AL^o4(_iQW_kiR2Orrgv|Fzn4<8xsPsrhq
zgOBi{SMGeAg#8{IKXG2XIxTM8hj>_xpS<Y6mv?^UUne^4II3M8{7J~^%U&m&jQ)>p
z8$(U?)>RDDHC6egC98vF(7w*a=9;ChT#N`Hn;hro4d)@@&0ph=8^NZ6{f~TyOx+X5
z4VqP*HmyM|tBg{A2O#s%+M3CZd{-IpuB){Q3!5*?b8~aaq)HpR`qM#=I=9H4hSDCZ
ze9{fu!HY?wMq1xni`!1cdt=<{(&OTcnZ)hU5b#x>lPti$Y7Q~hp3_@JNhvQ~vV_J;
zgcXK?V!#1n3AMYM;a`Cm1Z7?`bb18zE1Ij*cK0sx%1A8E9Hy>_<4<xSeeh%yAH}MW
zjr#Wvks=vk*J}Wq=FsA0tblWe2rR2#eLMG-I9OEb>iO(J%8=QJ!aU%Y+3g5cayGb8
ztPg*CfHXl%XBY2NR5|eR<;ZQS{)~1P7A?RrEvmDsbr=n~daPp<#w}1wFhhxcFB21U
zh9)-5Ma04AC^p>rrci+Z|Iy>&;+A+ZP&~89NPbCp(b6u!VH}@L-0LI?AJbL6AFQe?
zO+Kq;omP9);Q$Y*NCL05JI}7uX=4L=BX^5p)f8>XC^4PYC2sOv<%y`FYPg-~$rVC$
z(HVc;wkZ|vn`z}c?Xxu6y8YOB(tRu=nN~|G``DS8E7|xutFM?r%nBO2dAO4AKs;E1
zf`EXqH#S^|BoVACJ}D%5O_&+i=y+JfmEBlY?ELn_l>WPS?=Bib8ZX~CPw*O>TKjDa
zIRRY8fdt>7W1e7(3?-p~(GT@__D4Q9bSAhl-x|$JzrQ+;-$BQ-<K+#(D$D#<dv{_g
zNf@!U{bHJolig>zI~*6fz4=ZB5OmY}`6WYbUq2pXaZYs-saOpDG?Kpy|LF$mN!$yZ
zGUWb-vlUllIJi->+_H3=6yL9C`vrfGYR2#{oo~DVk>SFFo5=?#!49beFQ>J=4w*b9
zzx6~CmTSsBm$y%s<z8%3cwADJ41B-PH3R|>M=u=!fGzEvE#L9CVa-2ULS{)KOoBI$
zjlYiu7R3cs9*GiBDYEueoZA*)(YqcV+?!$jXtrckQkcL9Scsb%Q@66;S%=RxvxtYD
zQ>!oJET^bS!{^;P88wj#9KMsNpq|VrN8<iQIP|;jn#QR<8;TAx5jeVQqvM3c3T!wf
zL-!_+T;5<(8*ZWa(t?taSS8L>k$)Z{V@~g^uyDDQ8bu#Hc{0b}vzE{iB1L^>7HzTh
zsQ%z?vusFe(s7b+J?x29O$BhKn48}hAX)qaWz67)vQ9^k3GDH~A=VP;h96DL|AaLG
zDf^Zn&$Q%cNbbTUWFTf*mdnrn<+mm%tEHNawV%G*nr3r1rNB>|uYmIFt(~TxO3+$>
zvVLjdW~6XqV)pvvT)_Tf?8$_@tJ!t*GmiWJ&Ye9Xg!P!WOP<SZ?Y8bJMIR6p;ILX}
z+}zxVF1L7G#>QXbpmVBVdy{Z-jr|9tkd1P4BO<~oH+}j5mQ~*c*KMbJX}N_n5s*o7
z2f;Da*}hiyudq5gSa~04Bs^`W#cf(t_&yD^N299;1Gm>LPR=N9hP$m@JrXtNW(9JD
zR)mEmMMxaRXSxx}+L0ggUR(Z?AZCg-b2&;gcHQoe7Q>|A6R+HrH6Zng@snMMj81(g
zBDeZ<gVE`tTp=gI-+|h{fLi~6KxiSlZ=su5+9^aDF<JF0!0=`qLgau&u)x?W23AYd
z_&*vLEjUR$dNH(Yw9Oui;@pC26<5-W&uOUHhF#qlA3fWkR2v)%3%<^LteEFbjfk?T
z;QLXQ5E8?GiU1!Q<6}-{c@Ynf!Os5KMUk2-g@n81DPsLZg@S4zKBP(yKZch49UuHh
z$Nr(?C7TJmJBK?~QI`n8+l(M*O>GyUVEf3u54xvZq&yzUea9%QS1HzI3f~gMbqYwl
zGKvTvdEfHqSgM{?l_@tw#17f`l2Mm6Ql`J>XtAlDKHi`rm6^mUm^(i^`*yb0K`D5p
z8!UyBw?BKcYZr0$An}j7H3RNVUU_WFYeG@bL&v!9c~qS)+o`2UCIqwWo{W&q&M&%#
zo1Y?8{2NmG*S~r@ioJjkX<F$;ojQV!aJ0!PzK)(-%B-(v-M3dqFwt=cdya*F`}m9u
zQJ5;{Q1&~D{Pg-ffvA;tHn~Pw8lPJre>jz1Sv>B<TDe;~)v`!oT!2iC8Vz7kWVF<B
zy26hNC8H#^I_tI+94S<A9z8qyB2RmtM@8bCy2skh<-;krS+5Y_r*4~9qGczy57+aB
zf_>v&ROPHh#S?B5D@k&lx{Ew%-@lAD^hcw7+dp^v<4B|)O*BBziJ@06B_Y#4+=g=E
zlV74g<%9#TaZXVe0|6Duf8kNo5N<8?G9D~gMaMFPr*N>bePa;&8WIP1h1Br^txYsA
z%B`mNbva~edZ~YVvwwf@_`xsu<#FjEu$93W2#A}30d8>5wGJTYO|iM{e5}v!)Zv;1
zz+#C!AP!A&|JTp{*Qv{BM*Ui0weMYuR?PYK)tyuHVp1a+7mMaA^2l)5KN_Fqh}Z&u
zkTuea<R_nE6mpvMFGa<j8ii`}7Ob1p!*2?mDxaUejuLlp7vv(|E^Xp?1w}<{Ae4kg
z^`-aaCdODI+Y!g*$JACLyZkcXJFC(V!K!F<{`&J;kM>~@yhymceCw`=`JOe6G1F~U
z1LEf;9L42p^SIx%9#U1`_Z7vB&9M$K#^$GG+#ez1e^<##aw!QP{WH+0K=p-I8BXVW
z)kLVf8eOlssW-q){RbKMUzhHgpK%?Cm4eT|GqVL90dUq@Ov*CtR;{apSrRrjwuW<9
z5iS6eivf>MEA-AVRx8A9*ULRJTxRnqFz1i}zJ#<`goJeKJ&_4PL9nSnm#9!{KC2g^
zs-6-V99#)DR>plmHw5hXn3x#7Ttaqx(X+F&68-=Bb^l*<d@f0xJuB~{2FkrIzbjC#
z62AB1?$cKmQuLRfCbIOi(0=;1^lsrt2jdf}helLO$1ZjnRwSM*a!er{8MVs<wTJoM
zY|{-{{=;ubx(GMV8`#F$2LyX|!QiW_s@gKgzPihP<qL+V1GU>0MbF{A$eN7Ni;lj|
ze}LT2N$vmh;q55(g1rq`K=K(F9n`salNbm3`TYit`<MObk3dT^adHvF*WQu6*q`0Z
zi8;o7yMbPpMi7XI^X~EP@`us%JqoLID*L3kHX!1Zs8qJIZ~eW40T%(!0s>Z5Q$dZI
z3(ZwjQl+}7?u@IDRgSo~x7R1IE8w+6Oh;g-L2t~YD>swL82#nSG(i%*Zozlu_}+GZ
ziOE<SEi^nlazjImy<b)26x7tR_nUXvGK05wuKg9#vqfoo6cM2lE}<df_8xqEFWJ-6
z)63(&eJf<s%&}x)qE|jSd0PT<^6=yd%KT6&hr{>V*q;vZS8s4KIOW>qgwu)VTirx_
zNY*Zy0ZZ6ll_s{cMW2k0ODe<;8J<%R^9wtHYvYO!!Uo7n-+&+Z9<Ty8lbT!rld^x^
z;Q!%uwJwB8V3j&Jr<U`zQeXsI^KN{}<_Gd|aQ`=&SOAA5k~R<a^^J*3YinN%09UHG
zVV*x4@bK^{eMyjkSg3ZL|1qhpCWMG4mR&pErsMPUu3|AOpR{q#?h#NE2p|=Aaq-u%
zyTqfQrBGZtVT8)+T+_pdP~(DS_Ijf39i~HreS-iW5~uv|Xezz+VZHnHR8M9mpZLm7
z_PL-)Al0ftR*7b#)R!Ub;(gHdP2P@Jr=anaY5df#!^OiZ;X2fBdDSuQWNfw6<RZ?i
zN{)a@J+iwPZ}i(1LkX9F05yXBc*QZ*vX)Euk8n|3TO}}84$MDdeo(;ZcJ(E*26By9
z0|SGgS-F*h(^KUC#l>@hP~qUW|JbB+H0fnwjC~RjqzoVcL1AHWW8(rf(ep{-{MFs;
zoSaSzu={C_)Y(5Ua32eEY{i3tgF_uf=`Dgu&FtA`KQ!InS&`tbRkJ`;_MPiycwx<^
z{!|~c8!tT)5QIg(O+<PBzFQQiTn)Z#Q6h)zq7f423Weq7Zi*{73l28>#EH@?!x8r@
zE*WoTGKig>!Cx{A-QM39xqNR`P*Q?}3a3)Gj5}Qq+_^h3!0&U||CTYF>^NHcNX(d{
zFJ0$$ZMnHyIk9J?Dw}q7f{lVlp~c-|%c`H>d5uGpdz<9Cf4E-`9pP{4?!9`d2AdSW
z1#1;9j#8!r2!};<Nv`(*+){I}3;f%d?O$>IuVqTcAzB-IBm<43q|~7Y6kKlZk-yJ-
z#=0KNm(Gsf7RyH`akl2+Y1w3d4Gi8}WM6x+23oqfwGwlZp4%s1H5%Qgrzdgy8L6?c
zv1%CMAaoD+rb$Sh_y#subg5QTGq1Y~Sv2e&y5pAphtJr4u~&B$k<5~ffYg4+$5bs#
zcz$*@x+XN;v>1_2;ilwuaD{iamdVOF@ujwGGjhsCPA=vE;E0poj~5&3EX}~7D4lwb
z3%Zm4U&I2R_3lOsii}LSKW^17H-d(O+NnunKK@l%>1)XLpI>SOVQ6Tmw!mt&WMX?`
z9ZjuTrG`NHLF(;$_1c4IIP?I@$PmLS>s7hat1CGzT*%y#5`HwaECtwIv>NTQNUtXx
z2r;W9z=A2tSD7ji8~<mZfprSEg|*RCQ_E`t&m)kQT>VBa4|y+GV|QE>`EHF}%uwhj
zB8N@h!D55-U1ZWb?biDcxuBvy@h_OHwoQYN=LC?B#K-;7(9y}bxHSD6Ea&QpPCDy_
z!*<k<ZMwR<_iRc*o_d9dO*HfUbQOC$fks`4i}mQQHTVA%eVj>kQfzb<h07P62YS)}
zl@0%I6@ee~qDk;ug7WWA%EQrXF><p%J_z_HBSo#P$sPW(d3sQdN!QMS4uOUi>ico;
ziQnS7Q2&dv(>@wW`*45%AE815_?P~_P$BT!bi=o+OQ`5%^4<{4fyAM3sGD6ctDwFD
zYMgw#n8=K|ITp1_M!zJxTN)axlIZCw=P5G$x36tFIE?F@VmoP+xn2G-2{yd7<@bEA
zu8%S~1%dTYH1|i3JA1OS0nVcJxu16V<2SF62_$W@Jw+D({JP}*8_e+EJud~Ryt2{y
zgSl54_}kP|l_;MO*MtQR&W>0G)<ysG%<Kugh;8re#P02<i}SdzGT0un4~~o+dncSy
zT*RIw6b2&e9HhRUUNs`Yg2VvB+{yK|VwR{Ee$iXq0_Cy=<4L2lU*{xgRgCYtM@BxA
zxl>m()Pv)WUo~q!2p8uKBjRiv76$U1%dDJ|8nwS^a*b62+9##oV3tsAY}*m=dX8fw
zhD_qZ;MzE%-@zS)^PM}y-^c0y`8z-VONJ*Dk+~nv2drmsMKOv_HdKjhW<-=1T~thL
zbRN_&u|Oj7*W|>D4#!&o^TP_jB5C}L>Idr>1O!W+nESLy$YCh&?`~Fh>%=u*pbL+e
z&zUB2d&FTfgVCF9zB!7>+<pi5^ZQP)Tx_6-jPk4k1DjA^dEI$$08#hJL+jKk$U+EX
zgz&nU`Q41h;t$#Y_tR+;cN-fUcJs@zTnPuK*qE5=jB)wpWR7NFR@=}=qYlu!$w4_n
zE>>m)VI{!W{=d)YfAeDG7aX1h0p9xh`sNcbINBGte&_w^{W8+ildbc=|99&FltfmY
z7*b)fJ|iBF_u||X`FJdv+_$IlT%J~RsGEth`P-OVDp|rLmIp2xG3NI+t%)@7;hd$B
zaR~|q^rN1X8um%>&?{u|n~E`q$y8)6h956-((YKv7qrFU`*W*GASealf??yD2KZ+m
z9<>&)MohRaY<Oo-aj=&)eMl5o%@qmHlob@j4BQJgatOcCP~qR+M;?}p`|?AU+>J(x
z$18s#YIWarMlt&x_lAP1EGp;*MX`mK*{e=D(rjh|{3upVlto$HQmP!ucp1syvGv>C
zbBhM;GA~epxlNOLAdcp*`auOT>w@4G^X*&S^{Ejcu}yJ1eq?0q3c^j5KKW}t_@7?4
z(Y$mEGBwZ%GObHY6#e(>e;CPYny&zdfEfD|eXB1?e<*G-$?byZ3jvS3D`}3(ZW)O$
zFFoCQ1tz?nS>0Kc_^DibcZeLBu);mc{o!n4q4pN`Eioxm0LnB9{aePK_pOD)5-!eu
z<f!PAYd&(ZnvxB@k?1=jx>|)B1SLo|sg;b%V|7ORwH;Z$rDwnMJFN2sC7d-1p!}gl
zolDj^_cH%C;jdZ~;wni04QuV<buibzhY9ajs3&quug8&c#Q4O#4L0!O+Q;~DzI{}<
zBG1&XI!iGg)1(SN#G_SpJMS_dylr1VQ>`=4-=MMz^Ym_6ThGsnVkXXJD=Xs6Y6g8z
zG5yOYZnctnH;;hAZg%EdDG!mj4}#8Nf~}7bMUaSz_OZ(s+2rMd@KvFuuKJC_q8fFg
zi%!*M2SI2m0bT4(?B5dNLd*B+BH?>2_84yK|CWybyPyWrqOm#@kp9+?AY2qxRmBh&
z%}>pDEdA|>gX7M-4#(Mg!=^c7=9_Tid@Cvx506tiFg>sApI<h%S{Qv~isN=>A2a*?
zd_UoMtPxk~U`pLts1x0;+ZGv<9lwJyTfFVhoLuB_$+Z+$t9xY!1<ywpD!K^R@Yg@i
zyqeYX1qzI<j@xR@^WDu7jz)TJemG2W7eCadUxj9uIDG$)ZvDSI)`wqtg@pVunO)u7
zs9<oHzzy@g4$~z4x3>*$*iQV6M2L8(qRJit8agJ;ajCmZf{e8EH{iL6!%QuPL`VxF
zr_%n(NbGy0SQ_=K-+picK%Xp$Nvl!B_3;%9jJT?*KPjo8n67T{9Nlz}>&M-F8nCZW
z@$yao_fIB1O+rFs4J{cNFH*~my^=uZ5NyK2#H27)u1%+^sygLd6o)0Ek3!M@KV)?@
znW8_6tovc9ifGt)dLd$ZdRaO7`Td>5J-arWhm`hVW^(;u{lmk`kyNCla_3CzZ|QZu
zj^9`#E`f6A$6eq5rb&A_4CU_bUJcVjS@RyMIO65jPsHJWzvrN;CHeQ(;2bDao)r>^
zI5Fg#n;5o(lXf}vISN+?y(mFwp`j8rJzyt`k(j4vH1BUvTa(V$9VdK!!GptMS;39;
z`Zbz1#u<)FR(41HR|eUsvc>m|Mq!he7#Q(;?#8UNv~pmpYx(?ZB&2UZ{Gkfb<8r=5
zv1*X%=jXR`2-G3=+8<K6WZ>|qa&D~CZeXA#cy%hml5EmQ?PcP}*7$q-S&8PSABlY3
zu191}bh9{~)4l1xr+bG>oBu_<yZ8QU#e{XO_isHF$g{FWSiAq`;(UOpTxA&JD2z0~
z+7flOY?yQ)dEe<r&%hvjc7|ZM+(JG3lTi~;k*b4Gw~G{vjf1ey&){qFK~-Rk!&#r;
z5C;GF=n+porVRo482`IMJQ$lr?J~*s<RJ)UJWtb^otm7y;_e4X`m?QGt%;><-XBj^
zoUN6=3wBdj#e%$_$0>(dWHHsES=0<a+hm)BDP=iR!3QArIF>##*DN=to=tXcSOQ20
zh=Gd#RU|0zeKA#Z((a1d#Oj)xccsMFB1oeaKOq~JA4vvrasV+8WQmnb<`MCK>lf7g
zUcA?#zsJ1)qW7gXF=zET|G#_uue>g%ruO}+4OTY`Fu#F^#opBkQ_8Ng1^!<vfkg9v
zR08yecel5_c~Z&LNYefmFj`C8l#%cpCsZtUz}8;9X)@Log~#=y^EXbl^}YGJ^6{Is
zwKXW+q69$VZA^}f%YjZ!yIWe=ZFak!QnZ|{%Kcev`R#6HH1_Wtr+-iEAdr0K@CFpy
zIY#@8AE&3Mwt(}tcUh7_B>3jsFlZ0y;>ni$-@d4a+&dWZy_lXtmiyJXQI<jM+VMUe
zM*QYlDU|m*jAWEU<CJ*x+1DA8%)m}RA&KvI!$EHcYqxF0st$V|^=f&OMz{dkxG!h8
zfL2aRF0)<ezOZ7{Fh(nyES^pAqwN<$3JPlZECDhD>hhQjYcB^4+IT~ZEP~S5s36|n
ze(Jcv<>SdL@r`5rB~_nx2>YiMSPV?{$-oB;3`H~?LQ1yXK*N4<5tYN2AMD3>`7$FO
z3J4zy6kHS`&-xQ0V5$Nn#iFa$;DdvZWj7HF&Yj#YZvvza3nP6yAV={rmKyl`6mC1?
z$Tf#$(yi<o^q$Lue0{qY&*cFVEctVJ;Hq)Q`v?%h?AgirfdNU0g&lhznCFXhLiKVv
zgFKky$(GErJg!8MPSnsu>oqg?%T=@#CP^Q(SHY296>kn6#F37l%7j}Q(3&27NKM<4
z*wu&b{N)svs(3<#k-3$dnjT5L=JhD(SU)RYJEuKAZl+{kyTTcV?cD=CZdL=U0Q+6-
zd|qaaIIS3%zye`3<@02}2Fv>Xc4`5@W(6r=xoMTfJhKase=aaDf~D{{pG@Nt0~MEC
z_h}wc!siDhNxfasj3v^2T^)b+&H|bXUT|>m=rY#Lk}=(s*8QT^O;!3|Z~UR}3p`Wa
z8RK?^``Sp$9|?c`+&^EZ!R9!MPv&n)CsL7ZlHDn)sFCY>>#}owBo%*nd?5Qx_xb7z
zTc__;0}<jtKWhoJ&&=CmIezY-d!0?gcr=tOzt~(1wUMA|E?mZ%wo1EW6+Bbls1a;_
zO@TJ!0la%?*1RmOC9Q}%_h!TM>Bh~Qq~_fEj0poQI<l0LZnvNR*9$=Kt_^Onl<6Y7
zK0^}jO>r~pmxF=H#~?}A=!zZF@~{3bxe*nU6r&A<fp#He^b^|C{;tM{$!&mGTH>`*
zVD^SexhxJE0dpcgd|Pa#03`_5Azl#49@a5}JX*h-<&X7Vpted(PRcdm=@oLR^!01g
zxHbmMjd(P!0|*-C0j+aa2M?NRtTBr)KgV>UObT?vX^wNX0t_X9?vD__rr7pTe6*OW
ze&tk?lOy=d=H9mj!s3rEX9mr!R?97~;P3!*!ye#uKD2J@;UJVHXpF72Fy*uzd;M|S
z1w7g}SXlj~bxV5+7m;2M*=K$P<cp0?2|(G_x7HP!Iy9WfkS+X&*?dL^4liFOofhy<
zt7xCiUSL&5M8OnG?cVNlI(LmdK^PlYo(r5kbDClCDud<;?ia_7$@V||rCwlVh9g?T
zK~#swiySojn*CqgY;XN<ybFF*WcBmb6f;eNRm!pl)&p9wc&u>t^blHo$*WV4>SS!(
zs<uc*RFSHb2llyVSp@?k{%#SkBcpl$&{lES)#YsGO=EkQZ(Gk^jlbMwD~VnDj=0(P
zL(fn({>|36-*=mhIe+Rc*RXaHh1r{cyT{!P1#(1Rv7X{4>LpWZ0u<D}8C@U>)sa@Z
zZqfLf5MIanyR&Vo<A?&}EHUSZPS&s+RR0KaZ?Z9|$2`JRS79^0>_XOBGru^@c!{Yc
z_h4Cl21h|S>JB}8Eqsr-pfTl3^mASL$le}{dy=meZ%!-~2z^<7AbRei^wP2g+KAsx
zTl}FUue;9P-<45W>n4del&inTrI@ShOUu=|_gvMiu18Hmrv51(JdMwTG*xU(!U!zF
zcwIF)`CQWR%KReMH&2E(!%Kp@z*(N-@P2x{H#-h~jUVVTl9#!uan7R5Rd(shPQYXw
z)d{c)XlxmmC`(LJ$+U_J`VTh1Am%3?t2J+})v{%kXgaqC^*32rSsGevNoncYyNjd7
z<30d$nqTI!Inp*?$l=>kfA}Cm;C4{CRZt}`J^Dtg^pS06#Hy2lnKh`N7_H~i#ZGpl
zI3M3H2H~$Af31;O-$GGRQC)J86F`hD;YA96_&$~gG}AZt_xt&T$#OCReIQ4fsKD|F
zgFe9ct+#A`8cB0tWUNmLwaayHW3rMeV?vtaYR#Be^}3j~+a%$ieXFWl7~0MY+)rZC
zEj#QSZ<|{!ySA%tF7r)u7&G<J5;>fT5b<LuVaAXP39FyRGx)$-X+yMhlud<KX-$?*
zr(&0YUs6Y#k2vU#g1xN1makE6Hu!WD|7sHHdU|wJcdzjHyDlWI0xDxHF9NFZfzd%$
zXdd8gLYiIdbz$*DDHbzNit<dMLqI%iZY2+opZi`f-KzoI$qZdIP5U9`C~*1}-RbFB
zbV!k@jehPKtWtvEfsK1zQfY6xTgB&N{sq|i3cb1|y^ki^L;~FR44jNbP!Huamp4PM
z%M<7QSR5&5B<SrLB!bKXedSFoz&b_9?GdKdkYiK5(LRv7JH52{N_DgDvHH(+)s)GR
zJqiR6Sxt$;BOpLSypX8{1{N~;iP8`vsk~d)l$?ckLuEze2?9JV8w-S&9t0@yS>xhA
z#tnLsw~LOe8(POxsci7bq;89|(^3xQ>YZ{MsRz@PJXtl*SUkvAJ&Z*2d!72G65@L*
zwf}gSUUjPwgXSgqeTC65f%osxNw6>my7jt)DA5Mv;nVc-X(%Sm*t-T=&4wM6$+Ab|
zqxBH@p62?;r^)J<$P=)#uSeH_ag}b&<rNUe{)hk?4l1WbhXe<6$CH%+2InAi6W{z^
zZ%F)eA-_pWOYe0sBqM$Ij=wDoqNibbFz>_^*o`b^>qcDhzOefP)TUZq$SWK)A3w%G
z^jw{ES4RFThm5?0CF1<#$@p~yb^pR*$(JNet#i;0l>X1fuk^Y{TR4;FiVCQ_AAscc
zljj33fnT$zsAyZ6$g|@KQK#=BQ3f9911=5$Bb@|+_tyy|f~T=6@CsiM!BOiWL0Q2f
zs?^=vRdevb|7}BE=GY`lu!tJYzDd11WmRxCBfqo-72zQw9Y@=22G7}Wg(K*l-Cz#>
zJoqM)dxqpdjerO9T0ENL$u;=$*WI)PVV?-0hY`O12L=YUH1~GmqK?xnWTgVa37%h;
zKU4vn2L%oNJ5#_VCMjv&{IWsGeoU-K!nO{If`Y=V0+`AKwNN6)wwlH7Enl}Op|d)&
zKN2i@3i0K=$?;IkrYnO>W$*e;<HfGs;3T7P4aKK6;^!9S<MZzJcwV~?EM0R%Td4nL
zHNfD>dN7`!Oxxgg%|}65q}5bV%uWBauT5K9wfK;4q<~$lIdxjuaK7ckLB`5jF|_K7
zkywL~%;Qy?;@W4tm^wCQ%eH^eIx$z%?b$6Hen8hO-#Ar(JFP47hPAs(NL*6V?`dha
zra13I$6F!|G;nJ-I>jRVd&0s}m`SXe7CW63x=?$3D96I;Py48h_K(YQCA{R$3*d2h
zJS)s+t3<}ee_V3*%u58<$97x_GLUog0>Vdbb+zOWn^8#9<rJ3f(NB5%r{mV;3@)Zu
z(9nD5-rg^ZT5K<^KG$E#{V<!RZDwV&SrZhKkcgGd7KXzdvvrKyJC<;+f<r=@O1pmU
zDS_OT9e<6<uY>tjbQXhKgBYW_8+U9#X}-N1!BL$R#7%hH43P7@f3~_0T!`Uqd<T}#
zlfbmN{<cVeB#AA(co-yPQCq-9nH2EhAS~bSQ~$$LJTx`aJ9|@x$$IxnL_)AUmefk(
ze8^W#AJN<wfP}kH&t;T@%&k&*$Prkt{fNsct>G}KNV7HZqII9=v=jZ)oK+#z`HFwB
z4*Fp!SdP=WP-B7R4T#}AM^y!GCwnl0r%^EBP<s*?H9Rnvhgj$Tj>LTZ0HJd3^97l|
zhndbgEHpHBVq)U0{;xGJUf!>WgxnfDkGI{pRy+PoZrwXO#?8)OWb76Lzm81~v92RN
zPGp#|XRMmE%gb;n(i~Yt1De~|Cxpm(Ht*oa4}Cw^hsU$)Pjhie^Xc<bBZC&LV7<$i
zo)YW{Sv9cWB7+ltt>?4kI0p_R$b|n|jh<rd8EoJUZ7%WCxBtM*%<pnpjO6b!G%Ifk
z3tYL5N%J|m<k?v`O1Ga}VllJLXB$MehP`rT_pKt}wLK2y$vlHc6n`NYL=vQa&z^Ig
zMqMyWgmS{qJ2#^7svWXDF?O0xO$aG3?@0Ee`05sQa)R>nU@QsDe@U+w&aLc<RBIRG
zzFzF+TaGw*&q~mFC>*<bF}nF+>V1bWN@3tTYW<^V=R9CZY}|3Ll;CiLr>y)<iOcJ(
zI(q6J&YPyJ*Q!->yAnD4F^sQ-!#bmb<BgvedN=avjIao+&2qD{Xt`Eu4Y}1Fh1UVB
zK+!a|=YvhCfzft<3R`UT$SAQmVw71~8c7#fZcKDEmD#lA_%x2-0=>IqSfDs8F$3Xu
z9<Og`WSAzI9772S$^}AGwwEI+5uP{ZfGDL#>T+|UOJ<5ZQ7$jdCge8YU6%yf1#h6Q
zzkHsGySTXc_|JmkZQ2ZPKoBC}g(nq#z(_a~+D;HulgC4eZafy#6Y)SrntX}t8T0g?
zr7_A0ztpV9;@qMpQP4S%aXP$(j*!yn%>r@s2yW%&cYsdNysZxXv#?#pg>l_jFVY3c
zhRb4UkA^;_HFjHa$_Yn@{+hu#pMI+s(m^(QT?_yA;66{oqi%I|)m0NZ0`Kau*t5Q%
zWz(#G8kjfY3*$zRo$$)ry}b*+hP88d{v~L<AAsEl>>g#xkL#&$!P>v+>{`pkB7%3^
z3gtx%$GfB1fm$5xO<(>z1^h`4=O&K9F5@7HDpg*mi7Ncb4Rh4+$|}R!03x64s2eVj
zOec8%OHTy;B_@|X4azh$UYt2tEL|$_#_7>yh)Ltx8Pv&zOVb|m_u-e~tfs#@w8C%k
zSn`Gkd&3<5c3yZbpy=~!hl`7i25REj`?fQF1MkwQP_3Uof6jHlcvkPs)f6k4fcVl2
zEbh9-<-@V*n*!^9%r$YY1j0(jFn;`a5s3qCL|x~%=l(hNm8AW%R_^jcg;MYaXumhC
zr5`<sio6D;hHuZukfG^RwzVE9tnK+4yyk^Jlqc(dc~WvW=V@v%;Q4~wXdgVDwsxR(
z{XUG)b>OT5+5MMK*VL+_@?+j4bOeJw-RL1niS|&WmAZ#b9i)u&^`hHP2h;tj=BkJN
zPkUM$8AzjCy6q@5YM079+;wEQ?9~bKPQnDs!@D;sJOv6%t4gJFJE$FbgBBt>(5u*-
z&~p}3yX&SHtjt%8SDOhug)mN@V^X<!j=LuiA{^u02OwIQ2S0f}%|7B~GhEi%C-M2Z
z772ap5dXXbyV+<q%?BnkF-;HrhqqXvDq!HM5Sqeu!H?cKbu+*_z-qZb#1#w*&Cduz
zBGo6D(;tTJ?>olze_~STWx@xX*s9EgMn+B}aH!O`Lns2yBBt2WNeA+rJ~w81MUXn-
zOIwL^-N(bo7iDzVoTD>d8^&HFx{;9%5SfcT64ObMW{4ci4ZI<YQ(^-)SP~C2Jgk{w
z-><%|K=-ShI<Z}hQvv=l*uD5kF`c%5o&=+7w#Lxn$!?FOxjj`|A`y)xz#cch<-B?F
z*maV?ExDC%3V`llJ#;<rW-<hlg*iAM97ckaTVRN!Npism6<Xf3cC#dCp9k!vj`M<+
z0C7d$^5-TdzU!o?75uM_{qoi_0t1Ug)&*Fa#l`FeAe8tB<iE|`HdCrbyI1KhTR4~2
zvX>pWqV7N%amn`JoiBm@c5Wj4qTAWJ>1xhwQb0<-IuXgC&6>ym{`y(Kv0O)T7$ZR&
zjl=jwXSxcg9pSVp>Xtp#m)y^#_VN5oPKp)_<v--#yA8Z1Vij0)Bp^4#vezSYXs7pL
zJ?0EVhZt|$8O=5XB!N4wk0vvEY0pIay#n<s`-Amn-&jOgr08v6g`#Yi^qC5G>N|n+
z%1geTLm<mQ0Om9p;hBWTP3I9{SMMKCf~yC0fSOwPkv`!Ost-7OTuy#RPT{^;@l^|g
z!F={8wdA3o5F3t_#0QRD3drM2*-eMaB6!B+bn*!v^WW2be++Z0pZF}gY^SnQb4*>(
zAN#GIf6@Mt%;8iv0Gugy8w9z7u27~H$Jq(+GTQE`{5%~6f}Ey@e?C6EW?3N8?}?Zc
z!_vq&YF+SiYrWk{Hr)6f%|6VwouaSVdR6%dn5C0Qvch55tM*(1?ug};#Y&}slX2*_
zcMWowoKb<JV1~f*2^Rz%bN2~bH>5wTMdT-`#w2e2QjBFj>oqy$^i$0n(B14gsK{fD
zAu3N?2J$>)%KB)@6W0B!+I&X6a9<7(4sg*O@ys{1p~{%(o|&XS=zT@OToZl*0@ex0
zy|LWT9-9ug-(b?lmFC3dEjA7s^PCS$S9T~I?Tnp%aOn1DQN#lFJO?iIfHMVPG`i)7
z{1qV*?+Ec1JQr<dOJL)3USQD3D2n$Aq2_($2EN0Cg@XpS_bM89+iLtLw@KW-P)VCo
z&Bu<K2%%R7{GzA8wu?P(N?E%!x+mRPJu1KGHO){v$@})W4*0n1nhN?&G7*>WexJ+8
zI==0{n(s|-Z`b>IS-U+aWCaR*t4nkrc4uop-f+hYINmnT$JeD;OTdcop&cP~LFsZe
zaJlF<t`3ciy{W(Hp-TT0(*#VBd|A}-)|VL**&@vxMzb*XW|Zj;o*mHGBYTbd)|YuD
z1uNU&I@S<4)h~9(drVe`HnzV(?Y(<p^?`n!7>>ZonoBnm=iFslsJUTp-35(R4XUZB
z7%OkECBX@wXL`18V$v%8D=b{tVd;-}yqnyz0~*^Fa*uFKR@d7biO>1Oa@BwGF--#F
z0s9A!1M1}79r*Wzzg+iD20{)w4yvzFqlv00zbZWldr)dK!y1>(i6VS=UN2ofUDdS`
zyEP9ir1S1<J-bV}{nK3v;pL$guI99)q^FZQH6ouiG;vn(s)p0%!s^fMv~eG<l1Qc;
z85Fa}T^X;cPP41K(dT`yzd@mt3mqUV`h~ESi|0yn_}4z6pI_PTZ-mIOX-%ipE5ugI
zRJ%?{l04sn(<ybUQieRRZuIAI%Y8Kps*kjC$0M1a1xkF&pQn52d{mr+KTpShQlO&W
zL-z5(hOmvAl{bHhxty{VT7H%&)E&btWqScFtlA4Wx*K{Y{pk;TtVU-#W^;~<J<mQ<
zZEe`x+DBy^b_8qP%fJF}Ys4hf%`J#u7KR||2QFTQbHfqQlP~MA2IQ6POr2LA&{>>U
zftm5^>DQdn4R1ShP>A`>cU(0c_ooK+Tc16eTg^Bx;ik{P;oZM#5WulJeAuM(8g17c
zryDoY5P7}(<HM^wEtyBA?Vo=|1BkryP}&~fPsPyJwR_^XCNk$1Zc&6rxPC8K4}{?C
z3J^nj<x5Ea_Ix7COeTR&`{=s?K8au(+=rBmc{>lvfxgbvFT~boBe7&NJSw$#GnD(+
zC9y-JsfPB)3?B>bi73j+W2+%e&Yp^{bL$6GbJobTKGq(y?xs$t$E?TZN^UNuwP?01
z-P9a#Rp$#Y=OJ>7wL{`(_T4*{UfF-rzd@v+rl>wsrbO+(FJAf)QOQ^^Pc$j))JxSD
zyNTOk%O2<}TbNBs`%VjKE3dz(`n$|N^es&9MJCd(!H_{JQYs#aJNqM&Y<UrhVQET(
z^dhIr+Q};W#e{D`U#!nic9WvAhCM2e5PqGW#I4&umH1GnE^BI=+LvLVgXu)+4a_UH
z8fR7(^=~bgP4eH_5<P=mzcYUnp7MB13QMyovzNvvf~mFocAeHD^5DyFu!Z3jb7RT1
zxl+cYda@EOmzba*B3_=EZMYN6xEXYpb-#@6)SEc&Mdd5as;bBFL880NqRO$$=<G0y
zrR3qz#%Q7BJXc;^o1$+xK2qxfFT{CDu?}!ZGY*!jg_S%t9&;EtzaS<#hae`qHwb=k
zRMO4Qe$!z-=)8Wdt)@kt94a-v<ZE!lbV(9_$NgvJHZUivWTJ4drAH>JCHuXYi&&-m
zO?!v*_5h!XLP;3Ux}Mk(kEC8qgBYJ<-ob2>5@zdF+=dYcPqb+tUicyH<|3V{OB1`x
z9J$1b^K%cU?0DQevaN9s%{SNN!su`Y1bX>tT1(q;U_B=`+xdVP`{5u<f(n0)=VQ!f
zoV>8Qixl>zbTET$$LnpC-5HPy9Dq&1e(KnX?^KSMfMMSTYD^+_slT<0OQ7L>#3Ot8
z>DHFQ@68t;JjYEGdnQ{?Xaty9cP+}?4?F6&z=e^PEqR-sl2Y==&U9TPDOs1OqqMiV
zEWtI(x9gG22Q^%{L$)DyFK7Ll4`NiKwTuR$bPiUi#qzcaxQ;g2G|8M-&X?PLX_i-D
z$wtu;&a2`N=Z!(F>E#CtF1#&jEyCQ7_PM=!7WvX#TEWwDz)4)NhQ-@P9|o@5g2j0k
zbQXD73yedF#)fVOr*)fG^RyE^C=0-9afqi=9cK~=sy;z;tNzuphttnJqlUd}A_x4)
zxHK*fDl1r_s<q^rJ(xc-mr^;+)MeQ}hS+5T5Rb?f8$XCA!7DZ@`ipt}dBoU*Svb5Z
zaphrU{Tx`=^$Uj3J=;I=$Cp$hl7Q>UwSmL=>;CcKhvCDU&#$KU%rOEQz5W;k2S<Fq
z*4Nsjc#@oLGOWuuR#kQRJ#`RZwl*O@**Zws#94OlasSb9kj~_+8#nY)swV#xv1kgr
zgWu43CpyAp2b(7#4Ux0ijM39@4zkC6K)|A{Y5Fj?&yc1qA>Q{)F*UW>fLdg3&+?U5
z|LFXZ^E!oMEZ>SHSZSJS3C6j@eLZ|wv7UY#8rJENImNoUt4p}Ztn9NF7BOdIqgiw2
zwD)6!z&$zgxqQ0BG-&HhJnj#3@0uQwxzqJ~kg7lIJ_45wS<Q1dvz&SKlSfXcBc|Q?
z{N$@dXFxnNmrX}^-?o~SJ70QZ7^%FZ%wpyEbls+9<Z)G*5m2EG%LWq)AN-AEuT?%G
znKu35rchd*kk}!z@F`g7&!!UVQGUfu5WN?e8jrgS5R!al>Jfej8YU>Il3Pr7JNX`Y
zo;ZzTLlVJI?!&hsO5)v(5)=|L)>ZM_Yt}HK7r11kU|LjShry5>xBl_0TRna|{=Od&
zlTm-)8hUT!dzASF7mm3!=tsnz9<Iw(93m|G_hps1I+4*25nBp+XI-T4YnHJwV$S=;
z^PNHhBV_6Nl2E7!SqKysy}=bQjZn}!YMtDN04&*-?+K36{1vz7+l`ky+elb_KtX!H
z5i7F+#sFhl8}Fr4$bnNvnHJ2~Yu*y*jm=4`A-LhMDt_MU{&(0-ZG7f14ETPk^uQG8
zCH|Mz;ea0gi9?e?K`iTYn01DCjA4*kGuATP_B)@sq=Tx7?tE_G2uS|n0t&Q0rOi!)
zX<X{luv0onjOU04+Mc(Y-_ft?%xB+)Vy!!cLhd=`i}m3?u+nt5<3Vbz1Cl_Hx!MY}
zRWJ$xKVraX+Yh{fAfn1h?q$#W!zni?nQzu#yl<iR2${_jxncOQn&jK>GmH74;5zVN
zJbV*+LungCwOPIlu(sN6ieDxV=FjbuG?~3!eY>UP=uI+}wW2uU?B+*w0dm>+(yLW`
z^hY0h#D%tA2TT82>p@*}m1PKdzjNSzw**BjEYP}=gz}CH+t2-SHJ6cPO-8~UNs@(L
zx~cW#OZ}I@w~tFn`!ITjB$k2%6+WyuNK)2bku^MFxJ|zxr@0Yj7p>DHuOR{glUsl#
zn}^i;cU&G%_t#eG?D~v<etq(B>B$lby|{#=JHJ6(b?tFOL=L=h#})u8e+%<ghGT|l
z{1&4T+A{p0uv47C4=Sty-t@Qxii@h69^KnJAyj1}$LK8xCptLXbYK9){+hr@3fu9A
z!!*+0#WER%Q1l{g3&__~i3rs$-ujx5%q-`>jncwOiY4t*VMNvXQ4<-rBu^F7bUYOx
zTKRf?4dzBnq{A;I56B)HE@C<U*yYC)ly~}hrFg`42C(^2YzflEV{Kx2-q*U<&z+Kl
zu{ll6{ODYsUdB_K@AbvcBBkOxtcS;w!SM{aI9!ks?~_=7#~W5~=<(|kZGiFC*Kkfr
zVLr286r5TWupLDFWTMP3tuHnz<{B1F9DO$A6hY{fN9a^F`DJ>h?4!*JX{=_Hm-U$r
z&WPbx&ih$LrMuCkB-dY`?j(AaBKtyYBO!Xwhkx?>b6<@E!?E|2nLjSDnfTo&kU5`T
zB2^kFxW_D<3?px(*%kXs^hhO<k;t$~V1@2~&w`H3i}+nHJ?7R4r}pCZAbh)+PM`<*
z-IlxC>=izn>|Hp!tP>V-4J!NGq+Fyt&jvXk5j7F{jM$3va#ni$3X@7Yqt`n<bkag2
z9vp6m+7$YGewV8}gdBc<G%F-rPThtwbO(=`6S7`uCrqC(MW4Z^><{~S3vhVEot)QO
zfhp~}>&*vqMipV~mv}Dg-us4wRguZr#ZqPZr)!F~v$>2ltVm1eD?-Q+pJqThq&oN7
zzTul$Lh<8kmGz;)_A@Ah5P>Zoxcy`{M(s`FXUAy7%3nAG++)giM`c$(K}8UHo<!a8
z4cs=;0oV;;E-%f#>CVQ+$Cdqwf(+K$d9JF?+XJ>=>-O3L4P71|;#C&$h1n`c|3vKV
zaXqHV*l8R^A8y;A-6V1ow-T2Q%&(Ec{D|oLBQK#x*gcnD%$@J8sky2<iaHjD7M7)J
zVu)wV3;14K|0Zco@brjH4dE|g|1!XP`4kq5`{yR7!HS}8D7{qB2gT{<+fH-mS&Kt8
z=QwTynX!9)VdRndtSmW<2(y}nvkx$Iu$!jntnUy@e}4IV{CKUIDWsD3()wsp0&Y0&
z!*3A+Rh<}zpwreu8)4x9Rg)R--`6=5Bnw(F1s&BGC@cAXo;_^M`8rH$;gCzG8qhJ@
z={!=j%?1JT>a3!oK}tLuSJ6L)zf(IcpU0?uRaGaEkw+_QJThl{tlsl7`iylKOuuzw
zu4Q+~v(Q5LJ8*w049jOIKdtGPNt4d}pR3SIBd^Q7LGmmbqBiYNXPXzl$eV)rS74JF
zjk4}^TkkwZf<;b;#Xf|Oq)R!UGX`86w0$M`xPO7ZQP!v}7m9wgj1G%<+_aAN_><nS
zvdamz%uPeY%k4s{W=8&z&3wQ?r}gOIP>0`Oi7+-TS$#!mh1G70HL0k3&$J+$*_)*4
zhWlxTuv$dXeTx_#>`nbloVK<Jg>i+moNzU=miMG9AfHTa-Kj^0DKgkTx&UW)$+h3z
z9C06z)H56x?#8?W6J$+y-@dl(aDIZlYWZ^LB3%91cuCTk4;EjBZ8PreV!IXe4I<~&
zjJ_@KRNN7oe4CUAJP_h|4OKH&HV@VD-~Y&3`5L!*WNIDh;j3Trkt}KQ8dph=>L3np
zPOoMS_u#=T+`;D`q_dG15GpfYcU~hiV*8#P0*|SYtoK1dD;}c+L$ez{tcdwPuCWMO
z@w@25N+B{3^OLQ&5RRs_-0e}>HB23Xts)f8lhZ`D9aJ0~^OO*o861%l%U*w)G47`O
zG$K=h2TE@rv}`6SM448znp>;qPG(?r6db<<cGKpnE-6Wf;M=?PyRT?RKZ$-r76UJv
zz0VWB5js+!E<0lJ5#NEGQi58Er?$a0n9~h51et!}bzHD7wOx0~NX>jvkoc+3GZ6d?
zPz-)D!YZHoWNNS6Jlhbqs(PJvVM*)$B6bv1KbZ(JgYsb_DdRXFV66H2+CjI)e`LDb
z8h@?_u`)UT7GnuAs8_NXsCdU@yH;?}rs}M;<x9VW`ZhSLLcgsTmrI8nhrYN4Mh3RH
zU*4wS0Ov|n+66zoKoqp&YcTLC^CZ0Wx+;UL2+=bm9CITg_49l2GG?Th2tv++2!Fze
zk55oYs7vefLB^WAd+oOT8&oKc5QtWvjIZw$)e7KfNQsGauG@K*HNG4#4K7V2NBP+?
z9UNTTIyxR74b?5f#XEP9J(jmVQJxE2qHeQMfBF>vWgszg6}GE$vp=D~YLfz`55DLW
zd5V-lWb!9`q&<;sI~V&9f&+Kq`@a2aU_?ihu03!UzK>GT_A?-|iPu%phprw|ZvYGi
zW9%>}qpwOn0z1r=tG5Q?hQ<=jMxSk(z|NVMf8DfX3h{CQtJqDSGj>wlhlBuW<$H#S
ze1E8#`|Co2qp-GB;tOE<^-Y_3b)SdxWJOn%OAz-wp(c{<)8w?`9ztK$nVs4tY7lIA
zj#gU2?~t*oadI}2q=)8*f+R2cPwapE3DBAsns+vnwWD)H57MPMq+mKB%IX4<FOA0q
zx_z0FVqCs46IRj2Sp_W-z4<?Uon=&;-S+KUic{Q5fe_rGK#>-AmjWpcEfjYs?(XjH
z?(Xhh+=9D16u-~=zvs$1S3c!SMn;~DoxS#6YtH#IXJEGIhUxj$Mnl4g=X&+~FtU#l
zufa{C1c`9XfyZkwFyMYWlp^a-BI(1FOekdZOID-dXLJ>GNef@^op$WUL8Zu-uMM@4
z8cbo$vER)eqvX=c(k~;b#)?l#mK(IlXW&qFMDaQAkb$UVhggAMA_Vdz{Ax@$*R(}n
z5jR1BPGO?X>WZ#KU$b@*v9>PuJqjzq5li+b<Uuhf&012NykF!owm`Iyd_IxV=gp3f
zT^GSAXL%Dk%^k`O0jocrS$~g3-<eOPO<+6QvQ5+8&#-(=v5Mwtb%XP&ji3<rcWClG
z#XogeOXlm(hx#oXu>7J}xx7wMpGFc#SDXq`EgD=T%Z{Pom2=+Z_uh75|5>hS<P-cO
zSmD>Z1N35hLSJ<f=<sH%cDrj1ZC6#X8~jk2^qy*&V*-=;wzOJd8^I7q%4<EuQiN0#
z2Nnt2<oAX5!tNF-nE-bY)_k6=hVxxo!2an0Uf+kZtgE*)lRs09&_zC5vdBfEUR0ZB
zD`5F{6U__}{S*$k%~g|M%ZK<i%lA`$Gm^;s>&zt+u76vjWMnf+bW#0Ta-;y=vF<eI
z1kWIKuG`>kWKHbz-z_oR((~IIzZwcb6gV6{1->IHWwf?dDBJ~os&<+SC+}0BU6o!>
z|H|f0uILJm69ApIrQ=)uo`oP4DdvN$C*ZmBvB~3=CCQayH<pJAobLT8Aw!4Hn1If;
z-J2rh3(8KLOx9<FJdshoNcA{&i(}!}$8&3ICF6THA^y8Fe)rWd8x4X8r^v)aGCXE?
zl|Hk2@Km>4Dv#`tq;dC-N@FjA9Up~+pM#9cEEPZ0yyp++=%TN0O|=JD8HRcE0AD9j
zZ2HWpr<@LC;VroTnJv;OtoK{w0ZtR<2?(dycX81P2X|I+6L$3Vu`B1ZJygj6veetg
za>lnPJ_@Hv{Rg!BQNrEX?3)oVAzmUIX};m!xrenO8gFSAVyP?tFz6!BZ&xx$oa&KS
z!KeW*ja9gl2o>a9y>1m7pJNT_L^$Km#&q<ul#$^{3zm=9U-k`<FuSHOi7gxEd1H(@
zFQX4w7-Chk$J$)XJ-EY>aW&YM8F9FK`W%0rg34#4LaTUsZZPzee_dW*o3RAQ1vhPx
z?vYN3qij-q(rB;{cbbKKB|f}W)%+HplptB8W=PA;pW<A9B1j!0FGXpCTXDHTfE3bY
z7Al}6E`Uj7&9oss4rF-*xm2KDIuQpms_yseaw#ik{`K|~=MY=h73o}@ma<|Pu5;!u
zlw}x4id(a#6x}2aM``*C@V+>z_Ub=)`3Ju_RlC_1W0#|O4*(R-H_!sb^a)N$W4*TF
zszEagv4SV)9;jV7L1=pa$fH^v6t{$yfH=8gd-^&!ZH2fRLol+pQLy2A8tU(J0{h-T
zLf>*EA%xee1Ql0+h?}ipXE5M`)+UDzLHC1%h7>MzU+UxiIgg){@1rbK$=esXr#ZG7
zP*Ewu)iL(Fp05j<thKi(2hGHg*U6Bb_u=ap<?`T?U}KZV@mp7f*p)3+Ci9_NX#){7
zaUYQbb5!?yyl{#K!yZBvZl3nZj|Lor*AdwT^||05?!z1-#RXYgPdJVqMdH??md%&z
zjkm=h%n#L;YkWoF!A(A2-scJXLOL$^x=Ys*^===+Si$T|Y^jD|6LArd!K<#-R<<Ly
zLyn`GwtBAg|A0IdqQah+dOw=ps8k?^KR@0j_=@o?9FUv}SoG@p^Y(<b4o4tR@o;VY
z#7D=q;{F-&!T9^ypDeuD&$%0<ab>%h=U3M`-J3$rM+2M(owOw=E$jVV-hT|;l0ND0
zpL}e(Na63ukK_Jsk|s=CA)ihi_tBEjnb16BQA)HA4^mC(!7z8JweoDzY`rdP<I$BI
zLCfB9tNr2wMZDZCSsTL*nV7S0K^7J3+WqrTh)$80k-sQyD9s5CBmryMu37JVPTG;$
zaDJ@0$vCLdsXTXKvz%FS7r@w4w>!={Nx<cDBlF*tZ4+z!hL%%+Uy-1u1WRCfS|&U+
zJ)fcd;NB8?^!5DX5;*p47`)9^3;K&R29d)s1qNw`=HC(u>Dv#i!R-%s(|J%z!lS~F
zM{wxw&abF|1a!f%$<d{oefpf5DaBlROSkm4ZrQuFlJ;!jWsbv~K50B^XXhbjNg6n(
zKg^knaCWbuFPeAf^wklLLzhEr4pT23^QLa6GnOA@-3~l1cm8bet>$o^wtkmxiS(-L
z)}o#Hn|TfA$Fwk+BV;Zb8AD`j^`*>#``M%9m2pS_9Ky?Wbz+mU)M(6ErrDHKZ(gIV
z@(q!BIo|yuRr&m#Q>C#If6Hlx;B~Y9RLJJYhS{R_T6<dV1Ib~d-l0SQ2GO_q9(1*G
z(nJLLiHD3Z6f+vK_RGt(>NRE_{yH35xwlz(iYU_;tV>VH#h2c#1*O$Y5gT$uhqj*z
ztyej>WF>#~@C|B%`GuY<0u&67rt-@26&sBvO)lbYOnzbC(Tp8T%QN^k#R=VGTR4x@
zSZ~3bsLdhYh<!k;5B~kt<`@5i98F)GA(+#9;cutU6<p9CsZw98td|0#+nNT`?S9L4
zEoNo3_W5Fe_0{OUnjOcpX4_D!gsXy;`wEr4cavw!mfG<YLmcKp+bn%7D)5`TcO$Qv
za47D0zy9#xGB)_Y+u=)jD(O2utmv5!<~)S1diS=RPZ!*LQ~zMDWxXR~PGWnun^GSA
zDB*Hlb>~;?C+dcH7mtF+Lpw|7wfG@RSrtTpcYk{vlr;c)73g_q-YLopH9I;n*{Ie`
zvN1+W=m$U$%0XX}<Ky$HH7ifHBGyXl+8l?NuZO7lO&{4vTD3R5S%4G#m@f3p)ELpT
zv2;dKuoj*LBL4|435Z6gLP;<)=GZA_MHgV0(ZLrS_oJhg$bWE5@qf>)5Tz^?t+1+D
zf9)h3KGo6ywTTn6@Wt9&nO=*8)fz33W<HUK;CW(JLp<Fv^<GEJivtq(m5vt3tabLG
zgGs@#U9h`k5>%9%+DNBGm=*6&&(=T6%7-f(181^BEEuac_@1jLAVt<N#}T&s9Ui}+
z8SD@yG8Ool&M&6<GukN%xxzH!J}!0$Ge#Gt9*;__co@`GqJl<kT5s=x;H_BZ2HB7N
z>ww8_NF^&}Xy)x$J%*4c7$$bT(x4KE?>`X2Cy^D{s9-&UH@KP4<BClFYJW`A0xPsx
z_$_Dq3T6gwY|s#L!X4-d$O)$MID5%FOCCItC#K?9VwLFJ5PSOSl4zreme|<Z9#Z*;
z2SBjm49SAH6GjT<O8Lsdm21`d(zuK~oSIpFH*f1eeukTX5kBaS-{oeAHB?X6U>^lB
zJg#q~v^=<X_S(tQc4+jUbRSW@*4yxkVc7ZM;bcxrCLiz(;8iI!N@3J2o&Vfr4KVmP
z%!|`<b186R_dIQOG^5;wlWNJH{Y~%wfwTs&+_CH})ti^ph1}~=xNo}os%2nWR!pe-
z5&b8v)r8<Jk9^m8ILTeZP4IePiY<fGJ}L^1m1*W{wPHp%p(9V=CJO)i4?4PZYL2d7
z*nbUT$j)i&j5CBHeA|hBYscC(`93c>=<)A-gxO%25gc;ZUmvGtC&e?wk#`r9y{d!&
zjg`%Y&FFdcW=fVl7ClEOCs&Ak>M(eN^b%L_co1Va%z4=s`b0|LgjcGT8AVvtanMPX
z%=0^#!WkavX5hghNT>`QKB2!80l#v3fT7$llTTGsnF9C8l~4nh_F6Cee$O%t8t7Qa
zWAWT!S+usFG9+2(h>B4j<?-t5)h^M7bhh#r<)+=)TUpcha&wYb0|0Oka%s{*$Tl<V
z_>C{<&hMqs3p2;?eE;yb-~0BjK8A)ONZRaK(wkk*?2da{H%MVoFFl#|;d5+@^@_gU
z5av-*V?ZGY0ph{;8x*^eNYPA%ZudLtl2*Q~DT*MC12CnqINEU^K7R7|0Naxz%ehIn
zJGsb%l@@U+hXI2meCB(8;2U3eyoSgBl8cNN==N4z4Z_whp-i4FiSQ{gi=6sF|J|&b
zl#}eVqT@Cg->N7&k^r>YibIR$^kW<pU$Hu3D<9UXtsQ@xS!-B}NzODK=qB+_8=P6x
z+OYCf6R(R;6aPrdmHbp|qnXfG=7T0G;mW5GU%Dr@-$u-8$j@pmb3#^{v{2KvFXpwO
z9S?_mxMW<}PrP?88oI@2{>9kV3L(dn<U&-!Rr2x{BEM{GK9;?@75rv?Kc(B@o+i5z
zu+>Q0{bBfR$(nC)nxc%^B-x-?l<i7$nm24cwwm-JkYgA<9Gpmhi}O($myR0dbT004
z^>l^hV-sedmB)RyRa@)&7PUU(e2|_Rs0)*#9l`KrARn^+JSm=6QG<#3la(Zv#n$#p
z|1YOtI(!$V|5Y|wuS!xA{OemUJouY$yiJ(aS8FfH{^)1)aae-;>`N;SVYAr=yjM}E
zO_)evKYs2<J;n&+nOh!(lkfW62G=|4RfdMlk@G0HRr(|D)@?Gmc#JSZ8k)A5LeAR~
zsZ#cXcqBFls3Go&wiZG|1j`l<FCoa)wnHoPDK<)dHPPUo_(%}#i8mLMvg+`5X*`0b
zF6`zqP6ukrvGjqoLPN9kg|zy;ebZ669YcrAZs+!2U9Kr`QQ{W5kBN|vmW5pf$RwUO
zc_ex9#8=5Y4kxi^N^N7!nCV&6cCV1ovdIKxOrfkIyCL^ZX{8lMWm~lT^eIo>LNxSz
zLAolXanF5j;D?jtdP-d6Xxktf4Tf^UtOWal+6C-b+uc$H1nj$z><A{Iww+YfT#@D)
z$8$y|hRnf9l|LI9?m1Z2OxYmF+V)V7pO92|tNkYQ_WC#eRfWWE7hgK*Ma%l$9%Tia
z!jGGai)<upc*#1|r&~e4+39Ivx*cc7OxLW1yO@b|!&D6g=S@r#yv2lYOGdZ$qX^6Z
z`hZSgqD_YHE|1*c>Ff|*jMv*!wz5zae>4U#V3^!%UgasT;xQYIFsyFPO2g`MX~a?H
z?FE{lc(CHs4z`z)=63<hdH`4SA<UCkNXdz*XiV%G5Q0cG^n)vZPQn5)2?){>5|Q1=
z^eXYM8(C^AcC={amRVwmD$AcrZ2>AM0Q?+8s$QwqA2E~2#y#ObP0EU2sWFrf8&#dG
z*548Kh!f1RKAb5sng1Q)UTZX&J@bJ`QdyKxN|Gpzrb2%3-DnuBIFIQ<N`<qiXlw;)
z$<Wms5k<CX5}n4axt48?kqU_sE_jo)KdW_bb}mBSFx+e_*EpA87f{0;9(fTO<$Nh#
z!={qKAc+mHN($(&A6}}E$rvdPnEv;6!UwNpu{TFtf0ZUAfNd6W9vk4aDrys>N2%ua
z_>2M*4>}2S`p@`pkwqFKI)&eZ@NVF5{5N_6q`?Bo?~#$CDJ0xLdLMcv7y>&Lbku^Q
z`m0-YcwyJQosKZ+okmLQ=LE~@_Nm(6{$4wO1PfDbF}z|qxv1kdWeXjGx~$KFc=HCs
zmNJiF(Wq4i-5<77y@|Ya^D?ZqwAL8;2eOd^tYg>peI17q6Jm-`rK1*GpGr|U)Uy$v
z+73;h%imjSwo70URZa8o6e~Ns1*z6-^GaHYcm%9C;xqoiBtnpF)gtU)V&?nP{qSbc
z)6HK#H~yPek+B55&0T#e$?8{zw&!=(q9(jVt3?HKRL~Frhl79F947G;*`=w;ILx~c
zU~0}gsbtXj=2hTX4)Zi~0Ramx(8+GnlTdR*OtcQ`G(9DH-ia(L1KdJ0T|!XIRmX12
z`(8IiQQwDf?GTHI+YVV}O!98gvdyW3B3hM<@v3ud%!b?NLI4+&&gu48Gpp<}Lya$|
z<wqRC4gc-Ftcl99#hSYU)F(CWF*r1+)k@f0BjG``8pnLT-tW7(9ZaGjV-G{F{V1<!
zv9Ag7i-1I_k%m=Q=-1)uaxF#*?(K`aJJK4xY%76u?Y3+gr0~hd2-3xVIb=9R{j4lm
zbHs2u5NtoapOA^FYNYZ=FN$trOG^n<=zb#Ii{bARN=71;&!1dQ_6W?o>51>SJaGua
zrD|$Tn|{>=f7RQc)}UwYuUfc_wkQxqBBh1!G`wv7?vAJGI8fv3S6Ji0^>qBybwo<V
zQQL)ZVmy86rkqE^we}ocFM6qHZ$XS{dP};5L$LLCzkQ7~r_3YWFnGa0pQ1H5J-v?C
ziwFgzHbt=pliAS?SaCfUAgCth&@MSRjmurs>3)0TjD9fWK6*WHt+a8Bn?|Sc2JK{8
z_QgLd{VG8HyHj~?;-w;+S@9hzQnst0_q7qjjM|fH;l50<tHCgD3ey#Px07=_?*!Eg
zD+yM(YfG^6iY-c!Yan;qU8b214%kpIn&Y;GrZXdTWre2JK}9l=0S`r-$y<3rZ`e+m
zray*!N$$%BY0|c@Bfn>8B~vEj9}V=}9P4}Ru3iYRY4La9e&YN7YNQx&S5!=X(&{4W
zx7$4|Va}5kf+LuB)AY!fC!rsF`LgNL0&}6cs5%#yp(8OlS!9Db-5|`J1v({tRo7xo
ztwvW5%-YA-xWV|ugq1Q2e?uv11!&IEv5Ce6HXGq11SH#Ul25ibX%RQ^{kQjz4V?OE
zXlwcQI33TOJOP}u0yBo^C7Xl^Hnm)Ad3YQb%vbb;VF^MW$4|TfU?^{n;IQwFU79Np
zp-r)P3dq<J%588jP>vXYFr*y7Z#f0{+vw6S?DwVOh+!|z0g%D02xTPU1g_|2&u<JA
z!RskKb$j#rBB?5kz9sTu!5vH#ZG&7^$Xt}h4MXVHlN+Q&?@uAuqcTU2X5zO!QFdB^
zS8x8(&>#KX_$#yyn+`p!*=Q{c|G7Gr%r4#BJ~yAkKYv`5cz9)-_@B3FX2c)QVy{p7
zZr+6m<es^$tC@vdR_g*ym9PoO|8UaAr2W|pOUrR@cH~mINc9(H=YxTBus#+M=?R|&
zlnaRnB$NsB^Q;T9h895V)0rf5wN+Tr2Khm6j$fY6{H0>IQ1l~=m%E^UB1(tLrHp3Y
z*C@k)TqRWs99!QeuKAMb<=@9}PIG?vq6Q3uHSQN`Fq~W7>$|%f#_D_ry-|u6hH}Ky
zn=nG9ry{k3&RATwhg|yUvQ%rH;NW9+fg|?7kYPBkSY|dQ=?wmau-2%4D0c`HI%cgD
z=cV9GTBb%%A5`p=ayeAkRkk#X<W2rbqsBgEcL~oT7<c1XXw%rtWv1}u_ZjaNyWdy6
z<|PN~s>p$v_9Z<01fya<I<#e_g6KLe8oKZE>UHnuianP%FH7x?ekgfwHD$Y+Y;Ve0
z$o7ns2tD=VBi1oF5a#vUpai|QVl1<$PEAYe%@!0%>J#Ak?W;uzB`C3P_^26vw&dmu
zk9y2B!1_Z#MR0gg$slGRyvNUBajr_QF}_QsQH#kkb<8Kl<o@Pu8@Dbldc)putaJ7f
zLeqX3r(vLIVs*tz@Ok0zK?4_lg9UG9L^UD&hD;J~b~zcBZhNfZ<mABc2-&oFh^-O<
zbddhtm-FMr_eJ5zHq;W4QeTvJipI(mlSER23dU9h)8?Y|vlI#k2f$f$ScZx=i@xex
zi9{^up>}gKd^j>cZ=pc|6SX2i;knGXXOnUqy>3iSD(jt2MQ-86d}K;PL2J0gPTv)=
zH7147@fJBYwYB^kvR_rInXm*b7F!%;Erw{sdHGQr%E#YmAlUNe%Zza(@5s7`AgK*|
zz3&PwjcgT9>;QCFA-#|v%M+cez?{Uc5-xnbr8t~W7iR9zsP8WuwrfJ<=<+gObzK9F
zxIoeA&_<EV_hv%(1ZuG{(PCk}H=G9<M#va$Ld}*&mB+$a3dZj-b0zkaia5B|9~N7k
zl%ysG<B@AS5mBlh+-NLT9k*~d8%ULl+2G;SpbHzE1tNuF-ut1ZU)>1>n-RJ&)8Q$S
zKHtMS{bkSbPW|nbx5K9u7S{j~e{=QW7vzKHw<TNNGL<71rbv}GJEkGT8D`jEo6?Ty
zanK8X==#E7pD>I{tp4+JiH?Mg<v*8CQgTn1Ab?9X#NQ|czleVH7T}-TEHs{ZE|Ky`
z&N?jDnI`=13A3)XSW$0=`^PDV6VuuDDfR=kY_jsk&u-BgvQOP1bFEHSgZn~H|HuPy
z?&vhD1{(o~6(jcps`suR2ScUt-GlC`OghiKki*c=llfaGPxN@EmSfgMkJ1x}vbmPW
zdvKucL}b21>+K~NwAZ?L<*OLPP-3P(RasxSD+hT%bvXM6S|aO>@c?LW{*ZV)Wt9bO
zF5UuAv^c4<xC8vX|D2B;(!n^2^^u(BS$CMK*_D*EF&5}dPEHE36a*=l9+HtLgMUUe
z1}^|fXxsC_gD7@lF8&ogz(DisiJ%csad1dTESb3n=HI{=vN0B`>O)TUb}A@eZGTgz
zNzp!j5FI#~zMPK}uz~N`<^-YCRD2xU4BeS=w}^)n3H5cA)v+>XT;et;uQoTXRNaby
zbbTgP?5osU%j)*K`g&+PCUW3T`26g$laSYp>M)0G*q$4er6`|~-K!S>t9BXcNT4Y5
zw(BR(Ea9(rh>S_t%Tf?^VNB5K+*XbL&HPTi&F_jhvu_r=AIHyURgR3V3*TNM;Gd=+
zCEJ}Wg@clvd^phMGWh7Vq%&|2V;m(HG%?J9OFOuwEYP-}1)Py|067<MFDdu>oNYF1
zLcb{8N6_GM+xszR+x?q8UDE?6b;BEa($&v7fuk4{_!x7a>>KGIOy1Vd1onMC)eE*0
zD{?*vYT9(g&dKaG#Y5>|V&pU$PE;iGmm9eTH1D#yi;josou_xa2Mb3vBI9GdxKu!0
zEPU;sY1QLYmZ@Z2A(5GX9E1v*3n}+utkz5n9-4IHEkYmHpT!IHrBMzrdfVS2L`)w{
z7cE_MEeHnV1dNg9tFZcE<tOcAIDGka#xt4VwW%j6Bmcq8;ua@`OaaI@=4~XN#|E3T
z&UJ^ogFN?*4V=48eq`Pxuhtf^r^Xp;&z17^&ffA=&PQBs3R);%k;yk&aIh7=&`xKR
z(2Y+nE1Eb65tG>OyM&Br7cvY#GFX@Sobb928<6x0HhSVkv9_Jm3Fi_XE<lcG?c+kL
z@Anoe2zU52brKLaGw2#zHaOM!sJ&u_3l2lH>xHB_QB%(vSWf<0dIY(EsRd0K;w8bB
z-M=~}+le(Q*ApqA-l>Q-&17g>e-G|}RIHNOOvGlIoKx8-{6`?tE_Qfqd{d9y5sk~O
z^R|H=$nhu%cnAE+7siv=#J`^dzEg>YXoEUh=Jygcd%<I+L<1}^s7PMfW=FgQHR9NG
zqooVHLBcFX+cIIP3>Dy;XKN!uO#<>x#7{72LT@a5<^c!SD*)@21SIh-r34lwgfLy-
z(5El91}G&D0TooP9}0f31F80u3!diNl%^Lyx~$2Ey9W1MfEj!iN5+{w9*og9a~0G6
zl1fCAw>QM+6{@E4o@4=-t4g+J3L(O^Epf255-kQSaiIfF6{+cb*_ajo50aut;WWUM
zhlbzL+nZ+4`+VEr^E32w{sDyj!tCdFkOh?39QS||an1m6Qh#FnsQal=j-bq3qvVGt
z%h<O^ux~XB3~;*n=P~~EQs?#NFQVgWH!n^1P4YTor>?FpMHl8qbzrc>JRvANZn1?l
zp!*$^ohC0pHicv8R{6{792!iY!U6pNmSUN2{|U>o@wAuhPOOy-D~`r6D<^(Kb+q|Z
zu=FrVf$ZB=T6{0h-Jh_y!fj5D8bMzUXeA$VQ9gb@ww*<C^((>~g``?PE?2)w0lABU
zzhS$qI~z6hIbxr;mi<^uUkzup<c)koC~ZO6X&sBvi149lxtK&ZJH^;@5k1E{DKClp
z%aXFe)I`Dy5oaA_(3tshLM)W3u1zXDx6X)sUPY3r8+dQ%g0=iX&awZ^--TwjdYp@^
zt9p(4VkCz(Ua=Ge=8oz>_eb*<SqRvW#ydyW+d@2w`}a52LI>kA72D6dCHs7X31cZ5
z?fvd&ZD;11(C@Wq+auBo)JWlBsi{cA?0rsn4MhfashG$=ipNHnjzo^;)NtR8UY0ca
zAjlVIDp#j+S{Bvo#CV~dlri56p0m-B6xX-dg(wKNEC&~cfw&E{aMmiV@x4f>Ff#r}
z7Qi2kX?QysQH$QxM*S)2ym4_1xs$Lqx@Tz#naN;3fB59))7y*sNJm^!Df%B+g^2Z5
zA*hOF)%{^*9cpxP=Hl-=j=iynB93PGHsa?;VcwOIWcK!}@1f3cTc7mUea{#uMRSAt
zB_cfB(qs2ueAk<a(Z8{SMc|yYpGcLQ?hZ%pWMtMHN#ikY<A{TB#^T+4H(3+F3e{@T
z&RDTf#Y7upjYUk2h1BxJb<BJprLCzSCwR~*P7PGpt6U;O56^Jd0s4oaZLx*R9m4JU
z#zuigVt%ror-&^~F6ZmQeD|q3QxzENnZKlDc)Q{epfdJ$K-I=L`W6_i31!mEJIilj
zE`(o3=SZXLJW)ORqf_8dypiH=RHQjsioVin^%>;1;nGk08*(}EvD|zoR#flw?Ofk&
zcIqX6A&Y(G*Awn0=V+Z7M7m+Q?9#1Gt*FNKn*Un&nHY^b@ft<|RPS=tawwWI5AnM*
zrO>mpH=RyKJ&<D=c|-(g+WtwnmrNKhesx@f^Tr<x{M1%r=++2$K#BwFXFHC3s2Orr
z0LE57O^Vx1IjWS4!f0qnjax!UgtCBuj}*mVK0qcZl6As(zd=S=?qnT$+PH<5a-F>J
zPaq5hm+rAbDQvo!kMtD~pf<D*Fr7<h8bj~tn{`0ixMkuQXF_QR;7Q#otbs}ZRj!zZ
zLBf1c2CxP{15|Qa0q?5|K+O_4<T$4od}>v~2ZZIM+=&3UfE*1=K;k+-U(ns+a7I-a
z(OurO`;oPNxy8YfwmkciTQ|f|X4Z0)xW?T_*|=g&m0ux$98wo?0`Qgm9NvxuR6RI~
z`{D-SKl{_W)EH`EBv}IZgA0~RV|Bo&Ja%CvLehx#zsn~+c!i+9edhfnrgMfA?rcK_
z!k{w|6#S0gXP{%ak%c@QreNg@%mu@wiqe&9S;kei5Q*^1*JAzH&5OL_Ru2s^lvRdn
zTsJOpc6ZI>eqGx;@URrM@>w_Idd;OdPepl{L2Q?PH;Ifyl0kWvYg&(G7-<{r?sLJ6
zwz%*9!f1N%_Mi|p`qGY6Pb(pn7r)b}&F9c^jtNQO_NzYvhfwr_GP|FqidDTByY;_n
zst^u^Ng$p<rSny`Gi-$}F!{+}y!1WBl1qB3C9P1TBr7S^KcgYDn4ex(^~{tn=dqRn
zx^wT&rq$0nvZC#P%6q2W&85uQm4y$WewnX*dmBj_2M4PP8B->L>U{4{wPS8Mjzcm1
zd5<cC8yqHPLq7cb6xy%-jS<9LD<qU0JvnBj9DDOoGhR1MQB=eam}Y0Q8QvP%9lZm8
zqZMr_*IJI|WfyQGsImG!Dt3AD!^!#pwBT>EX{M8SIP&!J$aFZhSdHki)lpvhsS9&J
zk=FBVN^$awdp{^jc^2q~#qJ*B7e`r1n%Ax-{EjSF5_|~>G$Pd&N@q1FnsNVKd$Y7y
zuBDnc{GFXGFn<`&_0qN|A=k>OROM0GsicP2{i*hQt8@a#rvBYea~-(YlnaK9hdE4+
zpWQ#olHDG|lbYS(qp+`F_GHz*Puh;E255(2`U<(^XNccI2O8d+=Hv1^u}Y$lM<%F%
zhf*2UVWqNj+*g->&75$VfC}qF(Z!nciLge8hVZ2*LAffWGb%)wKijlFR^&anLQwT4
zQF|+bv4~2R&=T}unQ&lII4$EtqE+8}9F;ZfhcLHC(ot~@AOKKgXz&`%tot8+hS(z{
zWc=a@C=<CADaN3D&}{O}`%^LFM-`(-I*dOj2FRelh0q&gwm`X;QWrej!;ljyMrvvm
z=5A(}(LKFF@XCXXioxO)sv~;?22W**A%#Txgr0-a*sVsmqfe{4+DsqTe1}YtOGn)@
z4mD6KJNp7U;~6z_kBmc!q-?;GW%$KLU~RA7cT=&|xb#vw{1A1w1p^?}79Bxj_$Hil
z)zRl4@vXNvhz~i5RX=z)oX}UOty#;g^u_^}E*PEfFZdZi6kM(%+X0C8jOb&8_ouB_
za^1}%{-}hAtM%n=x9VZO2I%CaW1Z6Y$4Q3im?r!5xr4sV4nA}gh!&3SKG{?fkr>&Y
z4-`vpvZQE5Hpvs0Dl6I_f;00Ggs49~Pk6kLuM(HVP&5HNjX%A>^nvFgIxcSKlMVSH
zJv#GtQK{D8)tkHXh86o1SLQd0G~tXd>%#=6CE}qUvYb?UG?nTdFLb?4?Ml}KyDrik
zR!JRodTh@Du%6LiB&qrrh*-yL3qL~BWxC607NC`otfma~2J_DOLJHPCtjTh&P_)3o
zP>nYL!fR3O27feSDd!t!@mt~v73WQsaHR18fG~>@m<?Xp<h=mgi*iyotP~W!0>uVE
zv-sb1TE#wZPDQONg7{VM-<KcO?s`^7CL$E|rr!V-NNMlZ7FOtwl8Qy;RQHeoB7HFx
z2n`BW$ipTE=K(;DR#|k?K)?)?=N0wq^V>c=mg;Fn%{k-npuZbyK4h3_38rKz`E4SV
z50L~jWWuG<4w(Oz@~7nAmC4kJlzrjDbldjPKKRa+Uyrfxa?)XRf={yWnRDBpyY5+-
z`<UMCP||V3n@4pzpJ}+5c&j~_(}MH0H8gX0pFv`=q2sTPwRMB*P?PmNncnxNh$iH#
zOLK<Z0xN<dZhXxZ-lFA9Q+;RAm!TmU>W=&|*siK3vpeXQ5Syr~<D^DCb>$h#gyl#%
z!Eo4v$x-{V*QAGtCQ+)eq?g}Gu;TbCoOE=x5CWEx8dmFmy&upD87=)CS?Q4}<@Ri{
zvS0X+-AkY(3g8;n!zCdxeLKN4zSf`NImczn#hiQ9Zf<FbvuP`3E<s<j9-!I4x@2?1
zK_xJ|*Xl<NNJlh`kv#70Rh6{&f&Dp>eza|O<S>=Uk}$G)x60No<4xXgDNo6KbPivJ
zlFsN7D{1v~yL|KeG1fFM#RLP!<vQ>)WrH#9A&k|<`@AlLvE)CL3AOll=m>U2b3fGF
zW?O>Ln0<cuFZGAl{qQ+2Kv4-!sH)Gk=#@|Y%`V&KM&YfyVGyZ+uS(YgdEV>v+ESc-
zPtlSk>^zlX=`MM1uX!HNK0aKVk)czle@2GbXgX&$eT&)n`VzD>RwgUNZf}3elN$$O
zujXgeehR6N=nTY6Fy5Yup^h=1DsHw_)1i;L3Zmx!1Yv-4s#hAYTC`WQEzRCbtg3L%
z)|zKB4;xx?x3@3nS+fe|wl`vwc(CBOdb2Gr>Iyq4?~x`*$x>B75%pnvhE_=o5jQ+e
zeTB}mS#Wf0v=&2xm>peFiR~A5Vo$$&Nj-5DTzsSdkN59<kN$=cIxH)5|FS|i*YRkr
z9W;Tj98}Rjah*M;!#9L2_U!~xu=tVD(Gx;;!C!<9dSy-k0i_pUx{IQ#>+%DnM4oSO
zumvT4U*YG*D;!xyxSOs1OfYHzb*<EWf+=q&jfNJIwTTcrd+Vv`LkK2z<G)TIP2et4
zHx%w8o0lxN2ZU=L5IZAb6VdyAHPnS=0>Pq@@W}+A5l_whT^~d85EE|KYOyECIhy5*
zMK>Hvrj*nH@9;hp`Yn``!14@#kd#!=d$)mUO6eHji!OQI0FdA=QURJX*JBC=0o~o)
z-$7W9VIUbMPn}}UY4knavQ!W{s5x^Av5pHO9(ukGCq$);abba09(rN;nMO%Swu<BZ
zX^OQ6(j_I-URaihF7WR(;khfY6W)BAMN0@!fqZO?-0O<qf1#1I2IFj|gK|Zm2vA`t
zI$j=1@X}IJ=#i?pb`ul8b1MLtPW>xPBDTWk&$eY~b@HQHJGTTT;Zl>|AV3-_)sT<L
z8m7ke<3DYVU!B9Z+`POiyUuW<p&~LEKLr2&uJ!thD)=GQhbv)&MRzojMX^meisS}#
zE5P@E?n5D-?&g@#cPP_&&2@7>oLs#)ji)GJqA)oJ9S6I@_$hV=!Uzl8FnzraW+fl)
z&Y1C}3;yIKXw!`dMq%n->|h-Fj=+2XiCtg`TmHpTaAOZ-?u(9z>D&AzQpA6=UdBAK
zf#UNf{IwbtuNz(>+?HyLvMo9%2JB{MvFMkcdXCfP(ZIMNySCLB%VmBym(}nsWxak|
z(LY-6*!T#)l&w5XaG26g<O;EQYuH#_i>UDvVrSb$SVRXCsFg9H`6uV9>`C)oT$<Oz
zMmzs}>|)hu4PLiYj6v4t=deCl(Ln>oWfO~-5e7}^ATaBuE}H3@OC~fvFu_nmC8b1>
zCSe6EvU<JEb9rgXF!CAISW=!@n>r|(H5=xYC}fq?cB8K!8^t59JVA&2;;k51o{k&T
zrUYmFr+1k)w`>PaT+i!h^e$nUlCtl3RfzglL;2QQBn`d&j`*GfY3A_q{F0Ptdar#|
zCc?c{Dx@O9>(~q>il3ELrctbV^joC+YNA7iqt`Jci&U@;5DV0UT^4N#LU@8ZVQnUq
z<Ymcr;0b$+nBzz1Bs2y!;=Q08CdwX3a2;b6t*!}kYsB1WK^0}TCwQ-W8RSb)VvgDb
z$0~PhLB?_jy`ZzXuAOnM={)8VGosxm3<N;wjhXVBnHl}!<}&X3gp+xi8YR7YSzGWB
zX;_*EJe_izV#1jrrFxsU^Wb^^e8zbiV_xX)Rhx$cg1FbY9qjngN!ac|%c9sIzYqjr
zQ|=zxYMo~Zqu&&5-e@%PK~CkFTS{vbX!Z*>iYEfBn6uUqd+dIks9!~}xIYX%_&w^o
zagRLB-XpkawDt<!_7JH9!kfcv^6sBZ?}?XU@LZoLo}Z?VW{sujTWt4!GP>T(CLqs?
z&f(`dtbR!r(_WUBc2EX$aHNN4R2Fi1S3Yc_OmFkj90u6z3bR@MNlt#fRZ(v&e%t7v
zLRW4$VUQS2`0cLQF5Z;6TW>(M{1K6`?4SLR=ysCt{g(UH8e5@Kft8cR$2dukheg%~
zt8~};bK?_rm~8fO@!p>H7lSnD;j7a@-bAfwXIV^n76BWT(L5-YkmDHZ;pe@k<S=B1
zh#fur5L(*teEaTlDd(Yh$)@)<&7otmIO+KqCyQxH>U68sY2%(7Ry+QP`ynP;w@Z_L
z-SZ8eqg+~b^boNErAim#3@vQsk0$`}_y;hqS#0Tkv%@-2uuA%3n{V7aJfI=A?oFQg
zs4$uxZFv&qzP5^>KL@=PP6}YWvp9W=$?;1RLZ-jBm#lFZYfe&R)WkR%m{Xc_#JDjE
zJIqx*N7YtZO_$?fI?|>t2mMYaXj2*rX?SMSc%e@5Sw4yNXfKqRPE7ztD<*H>Zt04u
z$!<1iCD|kt-_Cy5$>0MDX@q!FL56!Wa7Lu!Tc=Z=HPS$22BQw!gtO{B0(^?Y0zMr`
zH->d1;Jw~v^L9=sJQQpJ({`oRCjIFF=y5wAgWFS)eQ50ORvbp^2yhDy{lI<y_z>oQ
zU>M4X6G@l?2+lC&uf2SuiRj2a3j02~xs!h!XqLwkS%ggo5(iW>q*Mm7TYqnJj(@=z
z`c(h-uOlR_Uepcf*j{(OL;q8yH&E*ctDM3S<)2o4sSL|3Y`0{gb~Q4&=LKSRQ#}f0
zI-e9LnH-Lzmz@wCtpNJjk`Cj|WUPp|@{u}YyKt>lUEI+hYZh7D0lH{kKp>%XUC2we
zEF0&jkt#pPO?8cbww#6kmWBHGhOjsgJW+i4;7<NNniYo$(hQht#xnSIiZhD2+|=Co
zZ-9Up4Y#y@9`M(m<tXi6Vmf%{8%;8^?<^r^|K6Jl6|lp6Gl1^@s8qVe9vm7PJ(~FB
z`bZZvYhL?xhg7}-Dv|&}2OVFZVu1%%n`{?D{x%-;<LmaPTymc_3NuuGmw{sG@ZsU$
z#Lm_^C(YHDiB^e67@MPSd)&EF4Eb^E)=#&Ttd=QUfj^1)i5WXxux1Lh_TF06xswJr
z8lSCY?XbWbteq42aiVaFjXW2fty*9+%aJ;to!&{$qT3+s;=f?X$w=dDS4}Z@tHaf2
z?^(JE&fO0!!PQ#7ilsb^*@H-4x$KN4qb`xJ_E*u*Xyf!(w>b-oER|Z!<LMN7Fe^$I
zWKYv^$&JQ39Ekdem!vDoR+$6s%WF4U{H}W*nMXkF&2-6`Q+M<7(g(};6T^*P_)n-f
z(V3U3ZV?`I%SGdM{Ka>t^2ix<)Zck%?pNYg^ouMEA80=ulGnP8q3eeOfn!4x9V&F_
zhc3s(gNhfkL7gfS78VxjxPZexR!6`DQy<pA{rsJusCtD1OUp|>I;g3y7FLsQ?JEBy
z8!Z;yi?I~UEUp`TF8}HhHs_(=(&*=?4;JUUn>A2U+%BjoSjLbbd9m`d%2@e^OBwko
zZTuCCi;p|J71k?W5&Gv6{Kju!fd6^c01Y>U<kJU<<Y575Dw}cOlHDL4vtM?0={z>Z
zCO~P^DYn39N_R5|4)t(b#jka~S<AaD3|yOQXY^6HNPdRG;4*3khXR(BR>fr%TYO9f
z3g2LY<9mF*EdG}T%AS6Y%x(D1)Fg9gqj>FIRXl9M#6Mbr`UuZ<;>K{l%@4;tug_p8
z-ZNFt-@R%1jQlxo-$KqteS4egVPT&)oKC~^AEOjAR7l)6gEaO(3Vvr(S5%~1ah$$V
z|NSGg11vuleQE~DC41vdll#7ROoOVe&|cb{(1Apnk!m#NVgO&3vayV5MBt_MaF~xn
z?Ro$nX@9_Oo}XSj-@x?VfX}fFwF*-or`;KARxhH%Qf1>JE5IUiG6&ws?(kj3s2ask
z=+Exwv+N0jAqsMXhbKhlSNCu+zLZbac!FP)2{b)AcwYsZOnFx6A{Oyr#q$0H{0_x-
zEW9t?EN`^Q|4u|PC(mE?1ahx8Vh4crbd0EPF<b$WmH~lb>KTd0HEf+ZVeyW*#`w70
zk{##@<La$RKDjt=`Ht|9ljM6=lJM!q3;E^TxVm?`Yuv9%v?F9B{e?^4cIqv71r#(s
z*Cctvele)s;R??<|D0E#u@}Vhx;;d0bZOqBf1O;nY&4!a5vI1yC(*`V<|ykg7!Kmy
zMVfXEEZzTNQ2JxN^VHi@B^fdF;wXYT{N`?LEXt&y7>x-3*$HWMKt9p#r9pM4+KgHr
z#MIBzO;w$lsqh49HnB$OBT}Q-4X!>MeFq6BC}^ROKYT2j0?ydRn|2e0T21Un1+wrf
zXqpadc6UeW?|0=5v%VttESw{}lS33<xg09s!wB(`#3F|l47)(GB3q6}ZdffvU%kA$
z0V=N<-$SvH+PI1fqQFX@8D?$1bLOdjD9O#NvP)bUz7&6WHHZ1qAUe^7#^c?ZM~!z;
zj^~c^M_3q;AaUVX2Lp*8)ypkRo)|MTd%2k0=3PTn;~M5F%joFhSV}O;=$Za7-4W(O
z`VzEJ=6e!&Nsi5Uxs+E=6S6GM8<x7#duAq?Hx$>;cg_bi<3GE?LRVIb0FvEhIuTQJ
z7)6G^?;B0pt<`Jb-VS@IDEi)%3M0Jpc`k|VySzj(!>Z3a{?;wu<W_<UnH~1!e*&1R
zt&YqlO7MMYt=16Ub)la2GS_aTbMWwJ7He*jvq8_cn#%Lb$Q&Vg==hgBovFSONaJli
z0q7xy1|i}Bm;G-AacE*TpUolTTCo8r_JtkvqTQEEzeSww9*C)+b?=x{5pa0}h$jt8
z=ezY_=S0KyxTdU*M-jKejZ%*Ocg5+tu6Snl-2m!aYAAij<uJXFXI`9Yz;!ecAN_Jc
zc=#uPt8<#*u+REyQBd(S*2TG})*K3AAuAB&SPPg<>~t^U%TB=xNn00(4z|V@4-@Qn
zGmb^s)SL#}27i)QOoxe}tveOd{%#%$_U`sgwt@;Dj8`w6loftaHf75;j<_4{aR26b
zEHxWh{UCKMg^HW%KuH;YZ(JdFjby;AMK!m{?~JAHG<FDijl`$m8XMoTmAkW%5Ckrb
zRO+i&Ud(&Eq(`07oT3)6Uo0k3*oG-Nvx9jFUn2x&Mr3&P)ZVjjtarL?U9g@e%+C0q
z@zqH(g~TF4de7F}yaec!^9REKL(`OZK|#^J%|L2Qlvu@@J1%8fAm)vlL_l%nSQT~@
zih*oSXe>n>!%*0Vty`UhX)i{PLB|@Ff{ZV+6SDh^P^F6L-OszR?%G+aviynIUbXNg
z7@uwj8Y_yG_b6@!U5f*8k9JuunN`ngP$y-h)-yqzuO}6CbR*7RkW~idd7rcX@`lb=
zP9cAUQ4oEa;9d({lRWy8FJVj*;T%gapk?D83XXESsoQC!i6$8Cj60s;)@DqA2DVnT
z)%(UXX^<oFEi@P^6u{D&U+uarEeOa=#l$EoP8|f0a4wVx^%tDoCk5M1{o=B!{6e6t
z(*<n`IT&kb$6=l=n|HJ`i$v%0M$Dt;Bm)h+|3IfN7yI_7bR66%FdhwLuE&mCnc1Cq
zRo9J)iz^9ROtjt}9H}idx7Ykx@}B$kOR4u%U3EP<%!3oK(LK2KpA%1O=S|?1P3>a#
z7wlqQ>OPrz)Ij29<}1)kns3}##_z;IZYr(Na3!^!3-Odr+tZSex-SLpgtei~0&2$1
zX6m25J|w121SbaG&a?`@c08GsY1xp|O}_HQ&EIy8l%4LYlvT^ejt>n@&%Cs@@eco%
z)|s@GAw0kD^ha&kUtA<Xaga;0-y^B^ZghD@otX0Sp{}LF;S22K>3H#9v_JZLTr+#U
zKH6X&nBi=*buevcJQDw`zJkc53tE3*KN+7#+*W?J`;$+)68<10gRjrIe`r9OTk`&n
z|5Jv$W|d@*fR2iZ2_EmmLW_`K-gS3obB5B5@-LLU=5no;?-cZVKVd&oz^ID60v^!3
zVXW?dPDnpQ!OZt>b_)835ntu<_?Lvbo1%qUw#9On$vNXy>Lm-R2FY;A*v9E4hXbWv
zlxA-s%W;tK(qDI6-2ZGg7_b82-czJAYs2aqMu<Idn3e$LJ&sK5Ej9-7*kD*E?8Jp5
zlNYxo`9%>~V%Gb^dT|R8Vk_=Y^p<lK{K2q&Y&?Rjg}?|ifpE6=34!$F%HVZKoIUfl
z(;FKaWf7JDx*A6y*qveoasw50N=2`ewCJrWlIxgMDNLE8YQl8$Pccs|FaS1?L?~kH
z!oN5Bh`ipUmsN70py8#9AGLbteEi)0WDIR&xd#BE1_nSXy=x-l(NBE+3tYmN&i!6*
zGEIc_u7<3ROoc{>od!M*&_i~BjIWij)S+4kyKBG1rbdYrC~nd|^HhoMSkKI<HEyAz
zBja0C_3SHj|CEvlb5Neul&8e}L(j#>mXENr^9xfMWkdU6uzak0r>f~ei!!C?Zcz&g
zrDXc~O>6)9g53MpUv9yns{As2WtHIlS)E#^M6{>p7RL=k%7wUj4vFHdldlRI8wN!D
zx&;x$`Pc{!*n#n=ed{lEmTPj+p8*+&+yz;M!EBr$#o=mOnnJM|ZTqb(4zupvNIks|
z^`Oi<_}_6%RRG8=Cu)>VNnHPOlZuKg8_w<skJNph5Gndc_FvXV5!&diwy)1E;n|f(
ztFc1?Ywf|v<DiCwS*q3LWhGF``Z|?&EiS#bCP~R36w}7n(@Apg?jGS@l!2OV$SCc`
zX8uM~Xdm=sl3X$RBvZse0b>;ln~}nU5KLS-oh_PahO*5!`i0FV@m(@41Wq#+up@Y7
z(jco0eaIn@tWoX?q3B*&33I*)&bB`h@;j=IfyG~xDyt;J5J;*voRBC&4sNP(ury1u
z-4`132@dUJKrh!K=B|%FZO>|K)*BE68jM8UB%rAoyq`}S1o^CUfS|VtBM?rszB%L#
zJ=YS5P@IlyX>QczpXDynNnRMEV691(qnEHMa8Emj{v*_hxbE!uR6I(_BMv!u_M7Ez
zWsgSCzs;xqt%(e*vdnfeg`^12!=n$7jyP}f*g0Mv9t!!&RScq8u%iYy;%8WIy%X?k
zr3L_{E1Y^GNLPwlovOAsiWqKiPlUO5a3l|I_&(=}`bpQ82gWMk^w7XgQfCq`Gk+;E
zFdCQmt}mH+vpr*|O^qVYOj{(VM7v$}=eji;OsD`Oc_w1j17mmaLSa3Gk_+g)rM^5}
z$t&Udse|Y^Rp4P{tZLx`kizR7&q4oKU3|5816*^&6f6`!6F(ltCtHLI1@K9~q){W@
z4CdfG_K7qm7hZ5Q{pSOE{+seIla$P=3X^DWG>KeGxuvBA#WKj^*O71;Dd;B%8`uVv
zk-WYWw@kk~bJfVJetgj+*Wy+wvf`z??&j3UE!i2iCt#}3X<R*2udm+u(%}XRay@e~
znJZ3vey^X)<E$@2P?S0oiNSTbI_UqI2!!%qk^(F*I}ZzN4NjXoQ#z<8UX04L0^RTk
z9+T)5P3a!wx8sU#(pmkoKZ>MBcAaShO57NkWTkI6h34qq9==4LV&N<R8C0W_L?c>A
ztFE^33#lX*!d(+CM)C1II5=P$DY4;P`JJbH_VjpWlvN9r$aNWf;Ngj^P&j@>f}0We
zO1LlUxA-O2d7BFtg>x^Pek#~Dq$syBF!<7TyWK+p5xA8oPGsfKoSthR&YU4HHM&ND
z2Rg%wt)#&-sl2VNMZ%6KO8{bhm#V^cZ@fAUXaqgGj<x>$?*j=1L<);U>hiYDugil;
zsZiIVT(A=5?BK1YHD8`6bHU8YNFr2~9MLxKKkl&qrnU$b=n;8i`fXU0U2G6`z~3p=
zNjX%Y4%3r+y*Nd^xZD{PwTXhM+l<}kjh+TuqfObrKFf~83vVT02!WSV-a`^cCW2qY
zuly7T+TLNj2jo5pB_(~?KHHP!wg+LI_Gu_6DCm8)p$OO2!`}Z#QOn7k5gjv43+{|i
zZ?KR9>hPb!sAqjwIk|R*h~aNc930vhglR?(*HuEItm2I$OpzCU-o1(cT~*tC^H&==
zxHXjL<KwsKLJsA~G*imfU%uadTEG+EyA>UuMH1#CdFx^B805vIC>Yt_ooBm~TV}7H
zOAJqp<zMH*2CuY)0f%idOiav=T~&Y=w|84?T6jF_zaC8Cn*|+ZsY}ybq{QE?8+FqV
zLf!uu{``A&06O7*o|nG<-&ne;eiCbdP|4Rn!O9T_<@Yi3tL8my>fNdorII7#qU@09
z@A)ooB-hFt%2PLrl$YieP(bPt_bR|J(mF1oFv$UsPYvuEK?=>f|8v}Q$Oa>N-=z5b
zXRJpai-?zylU&DP#4Wg{=BBE`T92ftH8DM1*3ZxHHw9H#cD6e5tgr_i6H}CLe`6yB
zAVI|2_<VVH7k>f%3{XrmGWP==BMH8>LrQ)mX*0M>Yc!zY6-Vq14h$&K@9o0t4+;&B
zk5gG%TH0U+hbttGPK@Sb3H}(BpTLodx!+c{k~6ER74{7HPQ#VX=kEIv!B6q~gBl$j
zL#A1kth8M02?_L)Td<0SZMs+hzMCA1Tlt@|p8xkEoRNps)YQzaL~xE^FBFT4`qn*!
zA0%49V+NGsAOQeky~Dx55s&$=RsX-v_Fg7rZ@NJ;9T1&#K?9PXX0rfaRVPl}7r7x1
zRoVp*!}v)X(nqZ=E=opYK=?H^Q+N1a^98Mx;UT}a8R@FyMUz=TP6}u@KS~ZE7l1-5
z7nhzRs96)1pgK+=kS9Aia`_h9UupF9Sx!{Jb|&eVlkfYNh!m;rzp1IB8s1NcM+;Tt
z!~jjel#_-=A{z9M0Bibai9ahV3y>P>n63l|2S=L|0}PS5rBWGTZSA;M)k4-ATkZdE
zQTW%MnMn$cjER}X@c)*@^4WAQRNMVtzo~qCYl~czxl|E^TkOsDfBk`HAh5CCcE2Pj
zb`T*099`x>XXnjx<qpE)PUWXUcK9hk4hH8`6$lUu86*RM>m9C0FK#pqVl-J`C^#dH
z%evd3P+~d;)Wbv|dJrUDsP;?eYr7qs;FoF|`9fi2b}<z}F&SCAY${opTomI-!W2h@
z$buGxonZ9i@t{|AV%mJHj!$2OY1O$Un6Y%WaB=Y!zYE46W6zNN{GekU6&Kj#(NSjO
zXk)`V3$e-J5J3B%s;~d|^7z+V7DPMM0=0gWA$Nm6QE@H#1!MomU-6&nQ<#DH`PM?n
zqTFKp;84)oaI;ph7FX&7NG#6_!lsszd@U_yxI90P^dJ`tjnwJc+1WwjoEfSGOyXhd
zT;@xk$HqQGWtp{_mFEr^1_PNa;yb=4ye}A?9w_`Xo2GsPlB6B5$J7)9EaMX1<jC(&
zzWSn36Xkcg1t@6$1X1QwMz-v4WsbiqQjNr4N!8MKzB>oSre(+?Ox=yxhlxm=3;Z8u
z$p6bj{A-09DIj(-)&YyaX+n2g#>z}VJOQESf63(j#}DQy0RB@!>(uBs8MKY<Es|LH
z6UHXHp`ig9;7uOr6ZtSPI0!DJ&~@1zCAk072#{>bh%R^b_F{kv3@!FG`_>Vl!$vnK
zS@7Q|d+WF;_ilX{2^qSjJ0&HgySqE3ksP|DK|oTvyHnDkrMo+%kp@Wx1m2tdob#Nm
z`#I<Hd;c6|X72gMifgTPU6{EL5S)~eJBx@5zwE>4^2ft{j-ine^+oD%$MG|Pnet=m
zgf!Qr&G9~@kinvD>LG5vCS?ml8uGSEIz4rLDt)7tfl#eV=>H#E%3%eos;WxI%&hpq
z6%fx=%^w&jamI6O2V?a0f#_g!j-Vr=qBK<gL6m|QKu-ZRKlbV#h}A?4jqEV`o^C#l
z9(_wndV0G0+a8~GYa=6Qr^ncP_?sHuxd9z+B=oJliClrF>q_{!Os#QRx?auXZU5q6
z>Ib<G8nunb6S*+N0$wxk)k~@8x`nN*=z9D6=XJ;P^YYB}fVyN^11G~Y`by5fy0-q-
zt@z*D@P|`f1Z{6`CuHV6D-=!H`dPEJeMGUMz9m%S*2`Q*IPuJFTRCN6Pnx5N`43}|
z<A#yKX~$u1zN0){^pF5_ujnhc3^I{GW2{vh@!kHqc+4-(N)wlg&d96oFr?+<wwbGR
zIX8<#1_BmDI0^DQ7IkbfQD`$k78W}07phx*?V@KjVRIFWVgUgGGj*0F74FAN$8kA4
zX3|Q$E_+lc1T!CRe>g}1J)?#tqMQ^!k%^v;E)R&-yRKZaK)6Fb5PYzsW8P{TUznHE
z+xaR=HV0W*ikqJhHRagsk==s>iX|3w`h+O+7C>x#Dv?v2c9`uk2c4doz936XN@ZoE
zZKiY$rygiI=;X$EM53^uoNNzG=E@ZG71x|@^>hZL5vW2;_Z_cdJv80)Cnp=E>=}__
zn&aG9+hR)@Qk;eU_Y3kjPtY7KY!#t=0Fb6@Go0s%!J`5GxQg`E3F%)^;O~2sC;>$u
zOGftX+c&u@@dmg~j59z@y>@7G6LTYu*P#4ip+=m^Zn1XuvIpz)z&X89IwyJX&(Eu^
z+3oiy?t$lbt8Lz;-ao$8uHIS77p%0tlZm^$beUfQ)MP5aewkuqbQTuhK!ra&Hcplj
zpCj+l{P20lPo0YC2?(c@xE_A1w^TxoB3Lw<OOB6cxya2I5s3mabdN=55?e|NiUK{m
z0-&o^0iBk~9#Uh_?D8`2?EuO&Y^Tcl$3#W@EW_=S4T*cnRdGO1AR#+lVP6ITyTzT*
zHNu+mE3t5|6VON)Sdn@(;mF#lLW24b`dbA4dp!Qzs}|4`=QcJ8iDFh(mTKqZpuM8v
z|E%xd0{fC=kpI8}FytUZA&zGzYOB%O(ZLl(DkOa(mZ+lhG<l}M$jn^CYRX&;%&`C}
z9SXz6n~#gGDb21n#UBwg+V=4m^G5KYRR98S8r>FZ>fK<>eA>cdOF6i{Z=*2cHy}IG
z<CdnTFnA5FQceWXog}6^nc3nYksFMv2ApsV#OT!2)UrF5%^rk(Xk9xE=po@w48*9Y
zpx`AlARrkSFSM-@a6W*Ly?!y-$<!e?W#;0-0VrWl1KQ}XTh)ci_?Tx&SK0o%+4%RP
z@gH8LP(qQTRUDTzRQ?s2yaXbXBK`|ZqTzp9Vqiv#3HCes^JxdbAbCl5Yu*Ej8XDyS
z*zdjHq9aW{CxO!N4r8IGZ!GoO?CE4X{jv6#+bd>=VI3nm-4Fa^6@a5V`0jwRRsbC<
zGc&XPcEd}z!KOm0L+G7{k&LZ=`@0}P-D^D~(k?5phQoscS)c(e)@}it<A}q_>4m2(
z7|K?a;I$J4ZSEZCJYN9DFq%LM&?BdMvt%<oc?Jj_0d<8?RGwz*s+j-RV-ZR@QK7@0
z#%_rkf&?d30b^V_*z|U~Xgr^qPV+xUcr(n<WKdn$80dQL?&W1B8eY!h0$X(SWz+zf
zfZXQ#>v?_p@X(}YgTgcleF2~l`N73qR$BU_eZE77Pl2+Ld=B3U9w7U;TFZ|OC=UKA
zB%o|m)<s4}PO8eiI6tRjV2F5XBfatGv7VvJ&GU#`=OwU*`GkUuTtFh=B|Y0qu|Y$C
zmPh7va6Ir)EwIExl(aBJWJ<m0Q()ZoVx6eZ*$953`t_W!ZN0?{SY<JzinmFz)_@Bs
zzcn7QS>cKvo}ZtWbeu|Ao4nifG|~k0GdB0ingsta)4$!FzyBXmwEySNTp_{1%94`L
zscC6}iHG9B-i=Cd$bUFnub^?U1AtBd1n4)<6*9QR(GQ#omftEVxi|aui4TnqC)*eQ
z00=gG@0$l)TwVnC8?;0Z_|np3C5ra|6yhJ?2Z)A-8DjU9T}H-P3ikHY_s2Xpd%`zO
zn@nV!E&=@yGZ{1jR+C_LSJ)d2w5+@9W2}Nf(>V0htSsj6XfXL`-+wy8|BG+K!|>SI
z(HhY4Sa8D3g1nIjb5Qi$ae`J>Z3qmocmmlj*y)(Kq8|90K5CNc$}~wdao%|R)A}5s
zLL0O+V)gVe$|{Y&urET||9Lh&Q=x<Pl&=(YbI2I3)S3&q9?VD<eYVD7{Q4?rgc}%I
zlhL*P%B$U6d3|<9<>%*+ih3o9PE=P{hhQ|(nKK0HqR@Z7Zo^w2$~1$MJNFdh9IQ0e
zsWZDcI)1b-K15Yr!TS3i{huBspgH&pplwkY`U+BFKU1P|Psz>8$A^?`WuK6)=MBqO
z56?hHS0dM6t9iS*b0A?qW<N8-p#0EaLm(m`<~4cLP-k7}V;}sF3q~LFrJuC=71QO#
zxSx#HEI?Mr=Cje2=yZ5=M1>Gp78~)Cz6t^nckZp20=jmj0Wt<mSBP|CUyR_bv~y+U
zkV!<S0)I=uFHn%&0Sr8<GO(L3Sy@&3&V>Hs!TQht=#LS=P~9BY)zvjHJsmIXRB?eA
z-QM0lQ>;X4z1rHO4hnz<9j!Du$AKa4r-n;4rlI<;*io+!%Bzdk*WZ}dk3L)<FNb(H
zSfxXN9!_OI#;On+LBGP-5%s+U4_zW4I+AK)YHBycF_Zad?-}#rL|=HcHR!G68hojO
zu-*aYioy|Be!)?}dtO@-+&^5iay2?0pIgN{W?n$SFZI69Ie~)ffIV=egv*p9vHji6
z^VCWR#6Oy-22wYdtY$37_ri&C^ZIm+1^69i|IV5J&%OPZ8#^Lb*4Jlj3Rpi1sJ1jl
zS{gQh-wXm~R{%9FVHfpnNf#s-u)BM)9CK4JjY66@*wv!m-yiDy{G9#*?TUbjp8f-X
zS}^J4d{_zNw<5i%Za$zV5PS!z(GFT+5!8}jgj;msc&&*^JWG~-7hFR2G?Mqbxmbs$
zgn}j)ocf<k|Nr5s0Wjb@=6fN$pI(JJ0j^*d<wtJsYepbr3!Ivoq7thEI@@Oe+7}+Y
z0hK@(i1jS}^lH%TTO|W3X6CVa<b`Ym1O%6ZnU}IkO374%VPT-s1JD#DC^nPVmA>%7
zN>>LaoIgIZB8uuudFhL9zX!8Vuk^KHTie?90sRczMywUyKlbi_u^E45ZpsR<U#?)>
zmF{Of11VqZzhKlB-h-?@wfg}zf0t#u&oXh8zwDRmfXqy{!?&$%TlI{P(>BNTa4zvf
zDBn?REII+ZMWp=UL~gf)1elSrra5JrK`#mV1LZ$fEk_drgo;`OaQ)P2E^qhY1vH02
zwQ>W2_)Kq=V>aG1HCX*NXu5*OHkT?$80N#R|A+G_xgF>0@04qwR=0_#GBdumy%ewz
zC?x%=O>g9hF;-=WJ+o!RrgvUdU83!AR3c+DXM@SZ(=xRPQ(j8Oo=cOy*$iy&I)yOQ
zj}`z5j3?R$m>`u)W4v<!``e8sHyH@r-!Qk+Ri94u!>=t|3aM-oh-@R-LTmM;z(`^~
zAer!Vlg)1dp=jnZSCE=AckL2rrtl(XDX8=f+~-v<hSzpW>V_=fuO%#+Mt25A-*<d}
z4_;=_U;#Np#qTReTU%lh5)!UPofro|!+(BYb54#wCKgsH&^n_Ujaf#$xH#*_gY@PI
zU!52U32AV4Hj#kK-j;>1AAp4a+;L?aP=#Sz^W4(rdte#gKMAK$Z*-22E434T!Oi^s
zfKE)T;Lv*ZeB<jgLP}*V3{cxI5yT_M{3D?2g&O<wgKK(K^IfP)|I1;xnn|q)cc-%o
z%ud$r^ShUjadi>S$l~c`!RdqYQh&en;lb*!%I7h7lJLo^x@x1~HsE2D(a^s*T!mp!
z(tn+9ZRMAd7Z-`WuWG-w)`902(2#6<2lzP-V4h6pdcQckh|r;4-`!js<<|u;C!=C!
zMzw!eo#uH^S_~p7UC%xE5&&b?8biuuPxRGw-hjSk<z%r=ijq5;;Pr>6u6BGO%Q2$b
z-Q1xf=v8A_Sm*{Hk{P%OTKN>=larH#j12j!kadvb$J>R|W^ij0+V4w+f)sG$Fk0-s
z=9&EK{{AI9d))~Z(QwdOcemKEDq+M64~Vj0`!I#5b*6RBGo`axA;SNBb-=mk{)nRh
z7rii(USs_}^yZoQE<k6Z*yeSW2T&eoJek$=@2Hf@mgwlD*VaX7*)g_UXB`AhH3f9p
zY%z8PBk_JV67&RMhZWg4!jF#&L&YGop|r-Wj&@-KxX#Jqox<%k`!Myaiha%|U%()h
zq=Q`cr$V~AyBWUngpqQ0eLoYk(~Th!paa0H=1KZ;1JjQ0HSe=lK)E4m#fmEO@{yVf
z#fq66jJfh!)3E(OE5ZaoBEYo#2#}Im0U({O5fKKU#@tLazF23ue>HC>^AKIqkvpqG
z+!}dNnQPp=RmuZf1sKcb%?}Jc_gg$^eD2KVW@a<`ruyuEEDD(9S?gARTXFMa#RYTO
zF)<Gv-DWR{WYZWd76tFiesOhGnC{S?D*S$AbhL10M*YTh8)zpRsa=i=65Y-b2`Zp~
zWy|FEoU&hipAxGRTZ&SyH9%c|zK&>@4fFf{{r4+jI|?XQNnpOsWEm)P7Nn_Nd>f^%
z!LVim>)Zo6C6hnTwuY(kXDrs5m?VYC(L45qOlly~kP_yC;0_`6NvGw3!4Q5JN^@@7
z8#3abw)~k4FB=EdCNt+K4U=@7$BBwYw$d4ND|BxV*)aEx+DYkhF0>IzS(Dv5gp@DW
z+UFCjU-yMP4R0$_LiP4uUS6vD1gF2GrtybEqReF#66#P-EfaqSbh^Rj8ER|eF=>Cw
zq1R9^i_|TC6%C&VbfqzuiRk_UPK@nA$ep!0pgV&mVmD=_y{7yP<e*u`?5(#xSE<L9
z`VJ6M3&kP=I;|LIxyficVWqsKIth%3TdnW-KV7GZUEx0qYrh0!$qeDa3ThD}SDx}K
z?!Wo3fZKpCe5dV{r$U`)Hggp^_p0EdwT=!dj=)c0Lgr*#Rk{tb$4N_~Z6Z7Hte8fk
zz^rK6=GImr66mTcS6u|-Suz?VpkJZIkO}iVIi1svjbZA|)_KG^ozgE)h==lzSQ4iQ
zAI{&t^4|_LhZDn}%@lxR%;J^v1C}td&JqJweva{-N>jkB!pNs_gactoL7e9>Xa*k^
z(Rpkt{Pm0T+!{3!g|3E@`g<X*)RjGqiKKUW*NLu$M>mq?b)3+a;@)K3%^q;d@z?Vc
zI;^NqUk&+*u3c+}urY4+Q~TM6;7_G$#j1*m(X0_-*N)Zxjn=~n#ig5@Qw4xX=4Y&j
zk%}i3>B|o|-!`Ga-jx+a-&L<J8jZ=7mv=?FMPsD?3EDM8L1h_}iG!RdM@k#{lrygZ
z;xst`Hzv@*aNS_&b?CTHTJQQY@@jp$SZNxVXWtw6NSTn7RAeq@Aod=4@;d4nI-y>@
z75VZ^JYjrX+#bN~L2;GWrCmjS>i22KfQNrqa_sW#XNb$AIs1N*{pX1<-#bw}7x@2N
z)|@fQi7Ks<qx>Zk+E*hnztTO`;=c)QPxr*XgXSL`9?$gBUySDO)qJ>Vw%NBf+KD)t
z7M%<5NKoT^V`6#0*O;$qSXj=qbdG)Hb>}_6snJ%(?|>h0Kmi^X_+h27p6Q>p5(Y~r
z_(V_w`<kp37Z1=XNCK{)aGQuQ9XCD00CyoUdiNY;l3SbLBUJXL(w1GxzHl?pc2QF}
z6r*8^hN}xmQE+jg!Eh+9tnXHo4T6-R1#|r4Ok5At0P;N8{@UBH7`BAozP_@YQB5W5
zis-=njt(IdyjQ}$$R^YNFm5>s;mwop^HE%{_ot;EL=y69-=CvTebVB5^-B4gc=<zG
zadGh_rzSD~MrDQNc-Ho}Z<>=9HjLT%V=#57fa5mUba2Q}Hi3^OyAus>%X_Zm06_&N
z>2xl>XinBf4~2Th2&!AGYJFadBIHW)$U836*0|MAbb}!OVbYXwV87euaUG_s`q&bq
zbQjjEss`U7@_!Gi^aN(gFx#!<<>l-5Z_-}dP@Q2!;CtE3mf@fPf^+ojfgIt<WP^i)
zw~TDaO;^Feu&HQhrOE-Y{%=A7YKf>g?NWCHm9oI+cr_afr`X<{l9+_~(96>kjamaL
zeFa411vUSu6bK(vLSdSEsU}geo0J3ScBcM$1l>XHt09@Xk~VCdB;}>Ia#@C263WIR
z7@j{NgD&nYTunym%JOiY66%cS&5$PL;)hO`TW$IsGwl`FX747|kD&7NfzZqK?=()!
z+zX+tu$>rJ+&o+q8mCD(@aFSNE=Vs5>YO)k$|fZmm^dDpm57;FHPN5(CvOEw;I%S5
ziNF<6tEsA50W%LpZ;1e!3mn*A%P6^F;V<TA-~~IfYO&nZF52ByBRXT2Tv*@DbRhVB
zg1A;s?N@%gSS^~k$?PL$gzayg*;1#%rnH&uX=#XD5Gn~L<GO9cr&_JyLBOqVJl(f$
z5L&?lwuS=_wn!;kabDj!3IzirxC02&N)iq&(F@ye`tsh~0WNm}xK!3bVn8(UB->FX
zAbcr|FPQShr!PiGGn&ZoMW^G*N)v1x?i>j)bpJA47Xr>LlFnV4TU*O<0Ni1`%<UD(
zqp_?);C3&c<B8s;F>lD^9@d7X&SG>*KYR_Km*j9e(oU4Hr&Y|5{uu=L{SirG!k&6S
zJx&Eta*wsAp9biauC*7~z)ER`XeSq=8#Xx=RuBTSJ6wwIXNAbx0RQU)E1JBze)}s3
zO^}R8E5DPPJ*>>p(eZL4lynN9O}D4add7<U2FW<GysG)btKv_n1;|+)PlJHB0Ogr_
z!sv_bR}c&|G_=p*Qalw}K7gz$=h?#3i7Ww%L$HhwfR5atPnhi<?g`mKfNAcde{rox
zqP4d8%r{T)Fw<xBhc`-sH&kB%Ns{0T`KXKBP?EeLc&7391MEN+M*ygNybPp`{yNOk
zArE$Tupny@{Pn%NP&x$Qfv0!PIvmbd3VMzbr}88XR_b*GaE&k^L=13vU0QjLpwGn|
zhtp=ojuQe;(vUh%M)7#J_E-cA+#pHFE&^jLvR}SPzYn&#J=bqARW$YWM+Z{rirJ_O
zyiLZR14z!&4rSwzlQ%~mlJwQ%+%aq3rvm9WQ4pYW(nvF^8Jzir^&k1y69K#PCW*R$
zsctrzP2Owx`6kCL$#jB^c4)LM54u2xec;E6)3cYzTaIO@h@>--yay}<lMxjexjw&t
z8V1qFB0tZ7P+R`XbrIwq*;uNx*mtap)VV%;gPnCC#OU7L4{!BWUVIpjEQUnJ<6<H6
zYyRQqaumtY7rJ6h+-Q_rvdEpvd3R?QGWEZ<mC|*j2-~_`V8{5IAf1~;3=}0~s|h!y
z-fV9kFi!9PYWFZHh}*;*;*O_GBoqm=omxrWMAgo!Q6%Q29E?zYFMiW{B$`@v?s?lh
zD4}=RJ=iN_BXz~FZ}vPKIoOT4sImh*Ii%?W`^4aKT=;&q*A(!~+s=Y7%7L~YaczAI
z7VjOw|K<WPg+1Vfj&h-oit1^3krK~5R`IAfrWwLg=i-wQ5h~>Q+%-Xk=j?GW-kK?c
zxI+z-C{urBkhTKXJgYv|#kvw^1^wv)a>G_ZHW9l{+b6$|Jpc?aR1n8Gtkp|#UIB8@
zj)-kKFh=3#kXwx<P7%ABQ^f_u=sv2c#^{vBWIyl~8meDd#a3-bdd{{B8YqEhu%2re
zdh1o>`h(#q@+M=SlZOF(8W~TD!ZO-ZpWlwe`1tTjTL4}uL(*`17ykNdvunH!m-4zM
zV#4j&;RR)dG?<=bM}&%l0VWVn+JcNXaHfb$11*>#%kRN6U67J=AkLxvrs!zd!2N3>
z3w<~GLJG&*xC|xW7H29nXJ?bP-Cr+r21_SC+o6$9AwzKV%A=o})fZnACP6|))$FZj
z+I#>`uPk%{@2Z8V7TgT?Y<pX!HR1m4R;Z6uHvDa)@HRUk?NUg<3aGX?H9#Cu6)4K$
z<8R`tT58YNah(cNJU^QyvA=y->{iN_ny+v}#t8MCt}@{BsYMQwza3#8AMmuvNQSrt
zXxq%$17SQ>z=UB3YqHSY5&M*PhFVm<V8$BRMc@GPW)<7(7c+XPf`=OB8V0wOi+Gp&
zL>7N^Ig|zY8;+ox^?ONxIZ%m=9$vql5^sO=1qOdbimZy_dGf5sK!C=~S13biVARq<
z^$Y{8L)ob(=z|wswRFpsz<A^^N$j>{<W_F>sildjk5JBv-)|>9;CX=X)SwFwYJ)})
zFN8-CZijO-PFcpEpLPbzcpaBB@PkRsP5TJdLjYpFA^328Ey+v6b6cz#{afuejDt%3
zvqDKrk*vr?43=e;EA!%SW$O|RSJjZ@h6u#uA=E}wDI^`Fot$6L5{Z1Lt<x4Y7%cp%
zYHB-yud}um0p`bG;mt+~m+N(F5&6ixM$<>i7Lv#Qj+a*x)ol8)sp=aW9-N0cJENH5
z-AKkd#TCb1T&F{@{YZ}J5CzGc0CK26^Z_5CU*BOwu%E4F70IVk$as-`=l}i%h7*WL
z-UIlhdKByxpmI40r1b^O<kAV>iQu5oW?*Va{A1|oO(5`{qR0tF3?^iIxxTUc!r;I*
zp!kwT*A1{QHdqU9i+xQb=gNE4mp>3y0wWs-00jAlZC;a4+S@X^WFi3*2qtrzy%BE#
zYB$xL<0r1SV~2%LA|}zqZF#Ga`0O0Da{(~$R<mUqQ|vF6g5SWZV{Awul{qT=1_y*8
z#=TG{t?3IqgMv??xFU}f6zf#NXwNZgay!<&VVzCXGJN?poD#(oEM#?g9>SX-OLBss
zRc)w1PEH=T4JXRjS1}N!yd3m_YK0b<02(E5MA@3hB4VXo_1q<nS^>fFCBV?&vGhe<
z(I@cv{(|VMi3(l57Yw?DPm~<l0z`pjKaZruSdrdCOUl~S=XvZem&ikC#$aXz`@*+c
zJTEMsP)B|@W#kYPVqSGhE`Yp)=^K7nlrnekiwk&<pzV?u+^m*B;DchfDpK<u5Y|fM
z-o!&D<g7?oDz=^IeDq%lyJ-gIL2oa{g?3m&%E-U*MYD#zheXqfb?lC&YZdweS0Nh!
z?+!-*rW}TO@mx?itLZ4_1-#j&6p5$!YnwWz>T$YI8|bWJFq1#wF;MRqywd6c28OZ$
z8fEH3vnxqLE6?At?Ju36612K6v)$~fZ8Y4_=_x6A09z#_Ph4VqHXieg+QJ+et<Ylw
zN-X_0^k!&AZSB07x8-9;sQF6h7?GKisSlt3iqRi8Btp1ISvR<}vMqpQk;EaMYL0eq
z#nWl)vCf^uUq$_f^s(@VBBrVgIYO?C!&HmE|ANX<Tc-QLSDh0@fvXQcK4%?Q6t51J
zE+~Hq#1`RIg$_WEi(M7-T1<GnYu_0iv*&D!{c^g`#_nL4K0an|aqY8v*Nr-Cr=g8N
zHruGHn}kbq+GjQ+r+PrHX2l3Z=YlM$!j_;C8S5DdD^B@69U6J4+uPfrZ~^&X`xjW3
z87abk<P%mU1!<e=wKeSbh8kK)Oc%Uf$f))(_4FD|$KG_><r4}Fvv5V|38*K}zRu8d
zb;G87xsiwRTPF3|BM(ebqz0{_%i?t`i-`xX{Ys3_qc?2|2FVy`eL0p7F_hp5rg@K!
ze&Qqz`L<C1HeTQ1kQ4&FIlBt`k<hTWw^tX3DBV0o=O{P~ak7Fp4LwShn)~1-`FfUs
zHz<06rR_2fo2}Fn4YJcIFB(pvg1h0sghE3m7?gup0dygl?di{=iF-d$l?2~PbiGc;
z<j!M^b6R;19;&rFlHxXyHzOATf!ui$*QXF1cL2e%f*f@63JoJ52N#8Wz{Tu?W2IaL
zpbQEiuya?1P;>PNEyUDxm13}j5hOxR01Q0|nlm9p8LcXrUgXPX8(^}V2)(7@@)HUm
zjl-bP0?@o905nRO<ddtPjJwtA;+Qy>HVZZOzQ`*1pw6Jb`UViZ%pdR*1gA@TJZ5`r
zA^>s|V=}F4kGJz31p^qS;?iDWmLJKi`gVy*OG?7*+ixtQDDys(Qwem<mLsU>e1d-v
z;dX6(JgEC{BMaiexIsAyg^*4bH};`)QbacuI#Oov2->8q!Sdl0k*whYd~7xR_8H|E
zU0-Vp&Fn_FEy*_<h}ff%vc20Ngn>30KQdCFu--t+`y;%1M)L(WMOX>zix0FRq%W~L
z>*Q1M@_YoA<C|jz2)U}vV|T!ija})f+E@M0nh*MmyF1&3#6#DY+4Zi5#{csP|MPJZ
zdayG+e79<wlJd2ki*RF7Ak)x62`YJAF{o!M(6lsQLCgsxqQi2zF~q>WTiuNV8|3MO
zb&FeplM3YbeCE*d>ltKFjv0n4C8&sF4)mR=pDGL7MS9*n>+!mU{VWu=_}#i1qGHs+
zQptcp+!q`>bsOx1j=0HPb0i(;ooR9j=pJ*HBj)B{ragy;=UQIVd`|Q$mh50Ef>5K)
z5744y3+8CtIC{&p@iPIUavb_fUWmmEUzT9!az5TGxA+6{dp7h4T^b_x;1AMZ++OjF
zhD(5B>unx?1L-E~&MyRGbBBVg2cmW7x1&_Bn<inVAIXA4q!-yl*306YxOzGBno5Iz
z2>ba`l5VQloR*eN8_0oR5+N!L;Wb2p@3ieV4aGCNwY9eT^otrCcel6ex$S3~0Lk2)
zU6epYYJ2tjP3NK&!;SNWDbM+jtmTcKgRsBt)!6fA`g&Wu1oMqky=S(_d6YhzqOC<m
zMZNU5GKg0*<cM2POb*tUQDhatvL4Vf*}C4%SW2%ty9}s(vguFXX=~1CWT1r(_7D92
zv44GsPb8G@%tUbzJlYgMI#yv$&QELz$UWC%bLRbe3fen<nIOiO<9x%R0Y_tj!R$OV
zb6TkxonCjJ2vKIucDI4S7aFO-RT7vV{eW?368n-iO&ZNiNh!uB9jsx;AhQ0PmV>)f
z#1>9UNS{S`1XL`}otepikjJ+J3j5x`pji=%I?t_XvspJr!qtT#1(27~D!l3qdO7qe
zkGfMs&L=m^X&=zEBCo2X9$6&YCk>oT7Naw=kqPN~{{;<Nc353mImdjzpM->@YNuOc
zLied#Y!QM=EclMQQ)7Zn#L9xnn6ae#bXvFRWaw~z{F$KK+!Qbr)nH5HAa`0#Uyz+F
zmf}bib_=i%XkgR<?F)KlR_1jh_N!L=528X2CAejcmMdTy3F*B?OhH1RAWuz7N_u?p
z0t+i&BM7Nrhv=nv++1JeucW?;*8>dyzFvP_j+|tK5^su?x~mBESuK6XkXDe8({|Xe
z0BEj!$bzKR-b=M2bo-Q#;M}UmXE1k9O@7@3>*0#pCHaQJ!cb3rB}f7RggF3*|FInu
z_Cinh9Ep<7Mjpuq9ylKP&K*QKi^85&Fdf=FN5CVcWy?hKacr`CyW8ZScQimyUbtzg
zg#4g4iXKf40`dXKW1O6{g%*ohx)0^o^=aRnZdMYT1c7{f8db#%3bDDD_|o%&GAe7p
z9l&q8^n*@%4|fojpq8^_KYm`*Pm*t$?W6fVxOW9=1tqcDSX1*wr9n#)Ab?hW%`sa%
zO!n(&p~m#Jmd!}HzUNNjIUG4H(dDY&qYu!ccJ$rx%@o4C=~iFVbWbF)eUB_$8xrlx
z>r;T`ilI<m2M>PboH6E^BI(z}iBL?IywS$KV76ELpRl=21j`FA8u<Dn9+u<1&Yg3D
z3zD`b(vyWtLbYsUB+R?L0ajR=hy#g|Bv;n{(C~?*E&;uy(~-tP?|kd-CGT=lcey<I
z83&t{pDUs{6+&nl9mhIuW+TUMV}}1_6#v_#1!Pg=M55+gbvOGcxz1!BZ(6_^7pw2R
zw6Swofz+f<Q)YedR)~9$lrh3ZN4MxYe@T<jiIv4}IW~jKr6-jM<Q{#Dr}}H(!E7Po
zB^BoI{m%FI-?mKuzAt-1uoSrRv|{EsiB#En&&32@`n9}2cy4W5Qhd8a@A=B_XZIC_
ztp*J+j;gc@|C)mX@hmwih3G61?c)YHi)&rj&VXKZLGzHc(>XZ*AWpTm;dB0N8n4sY
zRngM4x!Iu=%V&f8*3zQ-z=Lv|0m=H^gHtK<)Ww9>YpKQ4V56_ny`}gw%6hc@_`HtT
zv-9}h3kVVm%;VDOjN;N1pLLs<`{6Xf)n<6-2+a~AZxg?u8qWM>5pV0zQzlo^m>0({
z7F0sPm#sQy&q3(EcQjb*Yiz={7*PUsML{pDW{S1Q$0IA~W^&%#sVo)sTEXJo^I+sW
z-ZOL}`=m^RuO&rgsxvlJQmnbwCFMA1Ej&Z_<{?d*N~l_EZ>&o~r<LMYNMFB&D?IuY
zIWuKVJ$Cf!nGbhoBfaT4IvTGDG&<H6lftLQS=3WY==(%rF}o&C7e08cz=`j+RD4qT
z=(!*Llz0h$HYov)PM6$Yc^*{rZdOBU5}1=8)rT_nfO@tJRL#w;v~4axl^kDp-8MGR
z!iXGO0VF2vJJLxQP(Vq1kEz6e27A0%SNzqq|7v#Gp~J2Z<p&1(K7NlYf3P7q<xpN#
z606K!&H@Wu8x%X5Rw6%pJXV-yCYH_=g&<F!((5}M>fG$i_;q$}@h6dgjBI6_pNF3#
ziUWR}&a8k@68CA=yK|Wv{5eu~K^yd!TNlsg)fIoYAM5(${@!4H_$^~{s%c_zQh}~`
zS|!Yk7wUL0!^T}zq?#8zJUkXHufhY6yzdp_+M%+JL<i`H)8(K<^-`eT?hi8aKMNBa
z|4dl+a-;dvYT`HJwkuoD%>Rl2{(ab2sn<8RB*s>=ws8qx!Uc*RTM`ND(BYR2(|Ha{
zIT3ON<>o#E_>YrST@@;^;gS+HR7^JC0$o64!S`hq6$#OJ+8<h^$Wbe(Em_dW4J#6%
zrR23OPF7f8qj#|ReG6=1q9XEit*vcy(&E_c2pLF39@H7cWATdPi}_}8lcYbIyVkH0
zWuVxrj$al>!(YYCR}{0l8;X??ou6Yy4?jr2)jEH2;I!9RqckJKAy&#Q;ZYkPi-v)g
z2XTHRo2pQBW#3}Ae<<AEAr(h|RYY}EC=*egw{##|h9%lx=Cs9K^XTX2C*2q@VZ44h
zDJ9vCft4KYI}}2v3X<zB=U|aYQj=@yd~`|u0`P7Z*dP#y*1x}|xi@q1J_Pg7OspZy
zXl%a?eM7r~HJ<cka;{S%x?9;8@kc32q}E?9)G`&yclU{DY#ZqUJq*hAW+z!qTRVja
zpF)CsYUW_JeEeLxWmTXm|GOwaK~MlN@yX=FgU(;Qg{75*bT@E4Q5#@!nN)oP7`N&o
z%L=O>&-zK9`h5k<4Gw`;=-DCi3TD_eOFrWV&@NImyj%wEuI$0_cxPu2ym=4DcW=O!
zFWb=t{t*6JM=_-*hd@KaG<vpwxXvD9`dNO6dWx;1Zu!>H)Rw6*sV_=-9-WR-1pNt5
zoO<HNIW7Gd>YZ7f<y9upjhnF1^LvbNOZaR=Y9nN37cLrL!=i2dPL%`nDz`cYTVcfG
zfwT-LGq@|L`5oWmGT)wcsTo321EygZSM_Rd`W4<I^5h<DTHt(9#`S4bpI_p>^<Mpz
z62ie?f(i$LkBy0_=Ff0CyY#crk@OSdAQAd|a0-RRZ3$Z7<5R)Xmm6XzRpH;$(9>lO
z32$`m5-9BB&~e_Drtj^SQhuvLjf0(06aeGXE07eCLN*kaC%M9IY@)`*a1pV$Kzm4c
z9S66)_l<&9q2OW@-w7<<<Ced-thrJw0$L=?pd^zVS+PiqWt5kt?nnVygE<ErEsh1K
z`ZT24gD3|&XLXvXykOC&X4eJ?nd5hmHC|)0I+X2=N+zi}EcipL%CJzQ(G`+*v19Xl
zAvkDZ1Q%#Th3Mox74*CcoNkSAF;d{1qq@9T-H|cwZ$9mPR*}b>oj&`jXVo)v<I+r~
z#a4<N9rJ8s(y4<$%FC-cRZZSNqx6k28LgJXWU_$9cCm`^3RM{sL+tST3L|w5L$?4Z
z8ZiwB4<undqqnWqT(lk0JoKK4=SX{Q%Z>)jjPXkSg>~rG`hlFQ`QnnBL*>H45|X>o
zmQt)&r@6z``2AmAj#m_l*&l#Ig5EJ1wP)D39CPXrPZo~B1>|Q*SX<M#eeXiLoRVX~
z5D!Zcb9`~KiyozelxwqJ64nSn@KvvGR-DIQV{zq;UWXA@3WNpPaE&~^kq5?ebcHOv
z;hy6G6|av!l-@w^wyrA9dARQ4d2Km=0=TG~535?XKVgJaQesTMQH9=M9YX;@v+i1^
zUhWp{2)3OK0)^m;IZ|$Lj(G#K!)MDCbZtF3fKqd!mdjz4u_M1elAYnr)O0B|ds@~>
z^0MXMohkPtNSLtX#OD?11aMLhm;&K^EJbA!6B98EGi3})ms1~ZO)~M;v_D*s=Aket
z@!ve2N8^^X*BB0O;XEZn|7{ANGNUo(0I^daYfgU%4$}ViXT6ekrw*NmwAXq)*DpNP
ztY~|DudYy>goyNjT6|$dzD`IzM^ozM&1WZsWQm*ll~meqn2P49c4ER|$`cf7Nin({
zYVUIubvja2=Y|>U{HEI1Xg*`yHmiV;Gz9L?77#-vH541%U9NQN+|uk?lP!|2hV>pP
z^<LU@kW>@V-quNz3f+0**Xo*Adp@A$Wo3f+>@w=>aq=XBe`)TwoVKf#JEgYnbU3{=
zwV^d28g=^+1@wLmGp?S%J`2O)vRx34z-39=JqN&gIW+$7!gWbmp5O3~;bQ?O_j-98
zUw-`^nQ}E2cQbNW?$Ao`w@@Y`zt%hpMDivU99mzd;PnOzbD|!xYTvVnQjTNGGG=c3
zMx}QHx|I=K%)Ui~*JIq=ZiRlq0BKfpF!GM4dRnu_9iOQ$dTZ|!SRlI&z+J@v1EV&{
z1MsZN@^9cmofB{Gf-u2Ep?GM|Q9&(HgXD=|JGcP6o-k>UdwHB;EAY^-5-XWz&9K<`
z`T6VLHJl$BJ?d8K8k9M%KVw*lS${_1Gc-DyxG5Rj)D8f-`%zr06Q@c2us;-1OxFcO
ze;#Kk0;I5jA0pz@zf6!;T4NFQi6M9`Yw^UoIvOo!)JS<~cXlAHS9Y{`OSG5&Ng<0r
zwJ(ZL%4=RRl0_7xN1oAp^XvqSC&3FqVnEzUOkqG2^bk<|<%@9heo^|TW$Qr75=>-f
zo!a2*Q?3q&EN(}Nn_B`Dp$g84aQPLfa>uQe8czE#dOd>A4?qFQzzHZmX$l2p;#t?x
zA9zEVKEcuasKcV@Y(~zbuh~Rb=Zzu`Wf;(Mbmlhfem{{D1kX~?Hc3E|&poaP159n;
zd+)rWza)oePe)%KtLy5?QqT6PGaCMp-a}#SEyJF7d{ua+D5$Q$OojaG?Ym2ESqAC+
zF1Gl(kcfEp*@*ORuMKWM(o!C%R+^Yt<$|d=Ci<f8dSHv|Qm86EVquMSk=HghMq7;F
zNyy0H0}Yjo7k;j5JL<GVa;rY>Z7VV9@_;)lnoKr&5a01e9dJ?-bgX0i(MM=BXqV8v
z4WjY<<bqBiSsz1tespZNgBOWaX}*1WC{>leIiRc~;dvJW3LWqwPdfW}@4>?zUbBs<
z&$Z40BZUl!%2AM?Fp0zR`C<+o&z3UN`v73A(;q3Nw!6U#)ik!3n-VS)GgK=?hYF(7
z!}m_;nhzpj)`|jh>kadUl=7P!ZBa2X#mPp#I?eRQt8M9hF{Dab2Cj*m`{6(Ec6e9=
zE<Oso8rQll*mvfayxMTK)2oDyZi^PR6r$j2gCEb^9zRuS0bIr>J<iz7e8P~h6-tM(
z;xx?oH;{(rGK|mbNHg@a*r|Q_=8d(`yZu#{qz%6$&LcURBMSX~(9&~HJa!K^21dBE
zKBJisfd<NFd4LF#>Rg~SN?;MdK4tjfo($3qP&w7V5PEFA`BB_hM_NJljsrFrBI&!6
zsI~W0ALQQKAh-pZS!TN&cXxJD@g+039Yy(ggX<rT9sJ~k?l0r9({mLnx<}FXPg+ik
zfTqX5mX(QIF$B~UJDwqO>m<xLft&4k*s(n<6HcnIWir_Adzh}bTX++KE3}RZ9Zoy4
zqvV)B*xNpSL7mSHgL**@>+u&ll};k+7yACa>__UpaM)sDxk(GHzJ(XnWA#3qLhz?;
zKS;hh4KtlT94q<VVgZvE67A@Lw_Qjq1%-0S*2YDj?QziPGi1=I#sOuKtZ^_nc;E_%
zo)giI0II2=ZzHMsvuduFa&57gfo*rE9Y&IF-S?YM3|2wvx949QRudh!Hh4iiAIZM-
z?Aif^pYw~L3yl7+SO`B<!Au$m*<vf7yERC=lvh4)JrF8>8oI(nyCy&4rv2mA;6Qs!
zAk3#7Y~a7(b_@CDsf-K6jYL<T-z6`|+5SSn{>$iRsKHu9rO41aDNaO&vzPWMi!~KH
z4-9su7NMm}qKMY-TJ4hkFhXbjKySmaf03CzxYducbude~_boknVxyb(?cnB1b*3)<
z-JQfR<&M>aL=9nJLh31A9(w0MiZ(RP^5O&+Yuh)tP4fIZICq#OTO#0@sM*Vda;Gvw
z1y|zZN9ypt$mqo3y*+fDj^<`f`J{!9pOafEv<y!a!1HuxXB3tWO6L(#Ps!eB07HF2
z^b2NvY4C1P_m~8(0Tu1r4PlsPl-J}H#KF-xIDN`rQ+f>QETS@OdkYw8#+#j|RG`=W
zyfOfs#{(cp+@a#5Y0b~i-v`*b?B-a8Iz^;TzsyviTfPc#PVvvJ6-LC&^m+c#X27ak
z>Hve&aM&FQzr514camNE1EEHd_W&L{V1!&Xh(EL6bB0@ynZFe(KXPMgS?bXHw4Wj%
z+F$pj#$cui9gEu!M8xM7`8`k=EuIGaSoaMoj19f|Y8Q4_3<OG4%WF8K;Wljr00WEA
z@X&DdeMA#Medo~(9<_GCn{BMK*y$Ek_2=`PAX)=`{XHOfh-aAvkx+@YfT(SmDvdg_
z*1=)0j#T;t8&l7W2{FYZ0Mv>@0MLFv7Z9a0ZDqs?_EQqLN-%eevE2%I88*BMkhBM4
z35rK?t$>5x?eq0GGW3i1_-f59Z_cJRj(^)-2RvkcP7c{ix}GKkM{>g?1PXbg7FkG#
zH=xeGEvCrLLSCV^DWvgy7gitcj6{cKCiD&X;n$55Zj!Y@V#xB#46zn=SM!x(rEJc-
z_P}%j!`tAyHz2_lK9QeM@B`lk!pF~_5H$ev$^oieYAwmvKYq+NH+;J;JKp{y3Yk!Z
z9%{pw&xIJhTC%CHW5fLoI`|ig8_*6&sq}RhqpEo-@a!aiQ*m?TyzvCliqmSHyImzw
zNHug+tzrkFaz)A|E8@h*M%8<}QzRy7AgY*>!#%&1rtPV(*JnN3%inQWc9Z7j%9y#{
z-N8}Q)s1#BgQeCmN>p1Oq^+al<cyqAZHVEGj=t6v;8rDD$!G(|*1Kb$MC>HakcocN
zz<HsjV}a`F>51@pFiN!`?3F<Zc1SmDG)xsyO62I+SdyH)c-ei*USK+61})fmq|^`7
zKVo>4YmE^W;;D(2)7+f44qInAPEvly6OV8S2kq5AUqmDKW1hw??AA%wf=^44lpPUT
z|9)$v=R=v-NtS!Vrx_lhj=b8P+G`iyL>h;LL)V=}^|;H-#fQ0rvcRm5YCG0Cw~B!S
zHI$|0_q$m<B*9<DmVcZ^yNsHr0*(<58ojnO*ak9(S#_$edV*rD$D~J}e=244{L1$t
zeQg4;N)9iQbQ(f!5RSxBPh^>*h>s8Z7j>J)BH_?b$S;{P78rGcWPpj0uRueOW_7wR
z(CQ#(oY<bF8~O$*udlwo-r{(ZmuSobf-0rzdbt&9Wp{Njd%mQ<qnET?V+w!2Mfym_
zpJA5z$_+FNRw%huF<0kHI&IqV)ll3iFKo|xXzTO^4Wj$<F)+yC%qLl$0%m;*pPiao
zVz^&c&SxK~L9<Ap_0n#C{;EGmh%;gTWIW*E*X)mS(iq*){5>rrpTeet@^_4mzMYvE
zXpA~E5D(E`*2k?-evsNSM{QF?OJ#0JdM-bpiWeaWbfl>#Evhzzk0eDa81==u+HAdN
zpy;V9YxiBz_FE5t2mKIEvJ0GEdwg);_bq!~zVxNhw~gKO{lrbR-+g)OXU$_hW=Esw
z;F=Bg(eU5F1(!sqZ}#828eUbswF879c39vW8eSXNr602Y-30#&eDlYFwl)#%=xJ_d
zRg+sO*nkU7IFUXd<Rs)P6QZQ6scXo8&)G#wsb4P=93UBYb!@xCP41;Gvok+WNSk&n
zj(=p-U>yKr_^bh;){LM%u<fnk7%ZeOKFB3Ls%wz&cotmRCoY{2*3Y0LA}5mYIJC34
zQtz<F|7=2@`O6JywtG~C3gSeDOhglL886WH&~uiZ%HOZ%yATuG2c{2?h=_M(q!rT;
z`r0O5!YqGzt@$A;D$$^UgJ)iEYcI-o9ghuQcE_(G+SK6opfDqN@<(C%Fq<zQ-m_4B
zP&*{e?drBkGp?y|{gN#B`gMx<>8)rZs{M>r$&BUO!^&CLGg478hhM5m0u37~^!%5l
zn$?sHna89)3rl=J1wt&eH<1{hH2JAmvO>1Ly-g*?u;oQW9>)}-wA-gb5CdHm1n35x
z>*8$|UQ-31_QFU)`k3kHtTf>iy+8^m(O|=R8h#s1ndE>*M+3B7*D$$C>fpNf&Rm#P
z_dt7jCC=e2KSaw!9zfDng%L4cj^$=49&gO1vSy5qKO2+d<_$D5G0DT`ZrsI#hJo3+
zCp$S*uFlUkn27<#<^yL}U4EPnK^z|mF)^od$HCs(jew!#BVn$<LL<@j?W;livAWRz
z=ivx}8lhjGia9hCM~bz;VFVu`s#XpEo{a&inN_;K;X>Gy>`F;+ly!JGQ7bP!SijLW
z72CPfGem8T`U`Y_``zmI0igV#_-0SRD1O)<uWUq6xL>ffb{>`M-HGY8kVT?P82{z?
zU{}a|vvlqJ^B!U#GW#R(`&$+`QH&tG4(h)i7?8d}Ck`z+nRdWMi~jv+1BZ4(5E@*H
z$7&*ehv@wBUmwSP3d+#^;q5sB1eOCD5c+G$TIXx3j*nUcRcyW<alKJ(&ob}+R)+g~
z=K0qH?1G-{M8^~!^Ek=B!}}c$1WI=S7fDc};^g9l{|<NNK<eLUlm{oPcdA4pvKloD
zmM=st`Kh|a=CO;lQ6jz`6FUX{<758*+cU6W2?z+xI5-Fi3A=_LGPvmlLH}5qFP`#b
zuU^Ia0s+KD3KS{tzrdP$39_yJ;?hp#m%ixrlzg;k)+J01<+91wT(4(TCv%lvI;_D{
z`9>Y7>glKcWAXmB`T-ZA{%vgn<Q%TX#^gvu<Jq4xV-o&&Lx6MYm#S>H_)HJq(f-k7
zTf4A#0>4Vi8q<(bo|oaW=$*NwS5^uDeozKEIy!nO-a$dsh3$Nfp|q+tErWlhq`5$y
z+kR2SM}fHMr<dCCK3lD8ee!aZ@2a|*uE^EwYcon-r>h_NwIjB&hIje4?p@XP1)DR-
z<Y}dp07f68NF;IP`kVqoFo%jMentEyZpH->?*+qM`2bVw&I-(Z>FOJ@(@$hNC)-@<
zX5N&V2BHl(iQD)D;y8;p3AJwdi;(_R_cmLhjSeGKHPd*ac#ou*v>re0r4NMb&&4ta
zKF9aZklhM5(KuFc+w)(A?%-(Yi!?Me)B`ORW!2TR+$M9gvu}$>$~4ONfO)ri^Whgx
zuC9e;W%N2@<Kr=9<>fmloJ*`>*F1k6>|6S0Vj8TOx7RUkoUNCnSqBa65Xyh->faCF
z7!!1gyN=hHDr@h|0BZE^oZhe$Q1Acyp8)y1^qbpHZ)YZE=wPD-6H*-2K|gE<Cp$k%
zN=4@mEy+5$x={0xpL_dVbWmsQ?O8pc!=i$W5^&^i{tXVB2(NJe4IIXX&a0&>D=g}J
zUiR|kbYsmX#<o&}DD3{xv5aEYiMo+Cg@a&ugq%4Kp`Ko)5H2Z;4l3V&1c+&e9m}t!
zzJl@bdwx11-yq0fzv9<qZle?}l&%xm7OM|Gr_;LHGOXL`SMvwtRbKwp1NjM_nVDI2
z9YjuvdHx|H;_caHugmrT1_3bGHWC3~wZJUP?Ze%vxi>%`RLlSP=X(6MIREovf(JS!
zxl@jswXWw6i}#nKyJdf-^;e8m6d8z2fQ>E!!+%f5$sIjpGgMkdq8O~O{pK`>m;%<P
zQPip=De*=k;b%v6DF<aJk$&dj>YxgQB+VXo)-4~B8q7cu9D6;cs2Z8lWLG_BZ>(BY
za!B=Kk&jn-ZdFX(<EUW4fpXanQ)$uj3B@E`5^gHGef}YZOM{`9fCwE|;i224z^b-W
zxjITKO0U64Pg4Yk2TnaLOF>Y@cxlSjKgJ5tSS5Wx6GWxKqhZA47>|5Lfk{NP0S-^d
z&Q?NadVzy8S)`D@J$kv?*0&|W10vh_6{d^;4%+?$NB;dB{cWjULtCTDHJD&wVMQ#G
zu)b8wKlk{f`u*2ize+>dhe_X3&z%J}wCkD>vnVNzqh6u9_dVYzvSR5{=0c>EYQ21G
z{fon?*1aGql<S~QPd^l*5`8rSNw-@Lzo(d~qoZ05`xh9u_^F|nvj&FwLllaMt>wW!
zl9>Mjop_}5v7J&mOHW9niM%wudIM4R1QBQWLzkr@1t0m6{QU{7PL&FXo+&;kC<y!2
zCM20rM-(8wi_a|w<gpp{$4XdY2yGJLBYUFB#ojAhTbE(;9SrMK!NbF=xw$n0iHKc)
zU*Aw85N>%@pxLMVVc-64lK&MCJ+0DL2{JM=|A+JB4rPGjVl<sEMoiruSKB`HAMXZp
zA}qAr#kLXogXyvDgR6WyDfFGGU(d`c@9lZk+f9c$onFneU{mnJJXI9AaX7=!XF<KT
z6YqVuq9THoS)?F1C$w4{+u9l$l*1@^>(p}_>U**<&yjP)!f6LO7o!M*`OM<?Sllh+
z^xZMXK7wM1@wifDo#XdiZdDfDwgdOgN-FZ=w$*^D#*Ql<uM;ay5m8Q@8iMKyw{K_R
zHZh)P%e<fH7(n&1LrS&uI(F9|s;s=Mz&MD~ENri~mhB}o2i{nuK^V$ao&=H)ZK1<z
zDRF*#M$${o`o^AHfDT}%>S?&vNL()zq>&9!LKUrTyZ)ah?cawkKoL`To5`FlfF{!U
zO{Q&R`G0W!UlwW6ojPstDHbPt<+!Ql)ZV&b;uB>APk=uxuA|3!ULBygj0+^oZse7h
z$7AzrYRwNhp>!R8f<PjZm@{QV(XtB=u-*?jO{#Pzq-)9F{n%9z6@`{iXo@_Kb5m9R
zrM{S*xi?JKWy}ZhP*qtH*+`=6(&yu~@oD+#@v-hR?M<(ws)2dKxAna@APTOvcQ3)>
z#+F=YLka?lYRrZ*FA==o4*c8~UDsCXoOD#rNSE-Q`xODS49FK27EWnkY~=sT@c;Wa
z|L5}rL;@Lnu&=U1l4Tje>QukqwTWub0%9`cu9#og9@YL*rt5J}+t?&xE1SrTd^9Rc
z3f~<6a`oY}9^<?k-;wyjy3WTsE5(_2=dKr&Xi{jrnz7PK_P3@=u7k%}maqpl<)!V7
zABZvq3fCuk`TY4a^r_+a_@?bhvpj-4FqGOlJArn2LqwvBU=Iw6en||s+fdT$DHJZo
zyss@-Z-4#t(5b2|OS85<C@7g29aXqgkz&q*DNx1;9C|JmHNdW{phNG85}5=oXE_da
zZ1Bn5Elx3}VJETcZB3T7+;B*@8Pg3Ma_%}t9o<FpsoCOmNRxVOs;r2L*xt_*CTuSI
zG#7A1X+=SEnza)!K74-ev_bWj1ujz;zP0NQxA#Bh>Tfa2Ga9fW`j>Y}f@w(#^76J=
z(G`u2MMgwqGpRuMVREhj@dY2aLN{JVbC_MD1gAKq!gHzWoDABN1}SOtqh$HI*10)j
z`4vUp6Q=EaPQrM7qw4g+_*|9^^X2ZIQYFrgPbQWB;K3x9kql=eXF{tl5)N&#Yb|xv
zb7;ejPHdj#z50aj9S!P!eG1|GuL9adp>pN3eXf~nak4!DaGa?K7>SU|?mfKshZ3Dt
z%;IldlwR|_vstPuJ`L3~z;<W-%684k^Kd9=AcNz&Ga4;nF76>U<s4xcm+rUpla6?d
zufXkU=sfz&eHtj*S@=-nX667NKv>7W%I%IoN9c2pdFZk6T!E=3I=Q&mviJ=de|-&_
zXF6@w<WWg!O=krYJiK?H8s!j^9;ZgI>8c`w)>!_y(3&g`&bJ>rjg5WRk#=#dxJYPd
z#oOCvwE^Jsk%f>cm22Z6cC-y!PN*7;|H{i=s}uJ8JYaISS$6sr#>Le40U+yA0>KmG
z;?jz~E&gz)oqtiFnHy6L`<Iz@tBzvh<kY-QOh}lq@o_7l)Y8faeWrAUF#cX%{0|X$
zz(tg>hQ_R?^8g^czP-LKJkEcCTnS9a;n{Lr-=oh0iBZ>UGkz2z?$~wgKm<-I`A@U6
zvxDEQ?tYwdso9mey8vJiHXdFHXC?EG<7FwJ0@2Vs&gOi5w1|y~Nm0j|+6XWm3{&j>
zY77Dg;B%arcxKF+hX_!BFF}z7&s6f$Yl7M3rQo6`r<rNJX}Qkv@CKo!h*fBn(45X)
zaG8Y~)HReVmZ#4&;I(iOvpEel8F^BD6+uMgOD@Fg3>}t3bxwS!g-EY|ZRXK=Z6Gg-
zp1)^OS236fnH#GttC8DP9m&%<&sqO@d3>*wr3b&D6y4X|9rC^>gp1J5L;KLrAzfoV
zQc&bg9!P+Y5Npns(Q#AY<Pcg4*BiIleg?(qC|!-Kf!<y`w|=@bK{rG6W4nsWe9zrp
zRkb~i6J!1xS<b1T$AvIju>?p>L37H3!}8ioHEtPAg0XDEk0d?A3fbiATi?oS{GWfF
z?~W-8F3%T%(9cCAS4Kral52~9P4Tng9TX~K{7^rfJI1_mbD8PRreHA;S0u4lH&B&r
zymsp{R)KKb{wsRNQH)t|ySgY!n?n5X|1tJfL2-p|mv4du3l1T{-6aHT92yPoE+GVW
zcZWbAxVyUt_u%gC?(U5=oSpy7nVN6TS9Rv9t1tRySHJImWUb#K;MNe>*!tfDF0T*|
zHAOq~cN{Zw(b<1O!88#$k30c5;DrCBa5;lTP<S>9D<W?YN^n5GDRd9;Ywh+&+?DgL
z`C8BQoRY7it@t$~TUaGJU7lv%I_@kSVB=hASxvz<4BTPAJmq6ZaSpO>vIUQGCDeBv
zR(C4U1Z98<-c2G5as2wc2=XTAgdbi92t-#eS3vgF<P}+afG-yM;^rFmZbiq7JCD;5
z4lp|psv;4jok5Y15)>4Cz|b==$YwObfZF~y3a<a|K0g5Y#l_M&0@4F1I|}pE@9|Ep
z<$A@N=jZaQtgNGtU7~TZvDo26yb1r(vtFU+KD#|J?OBzTm1&Ms`<fLZLW>!2iC9pO
zr>EzVa`>>LzmVe4TdAcRKQ%Vvy*ff~x!g&92JCYHV-egh<?@%s#<R);pFdd3FJNon
zSZ#np%VnOVs2Os@?dS--SIF6yr7*FHO`Y|HbgCpJt@xl9Wk$3%Hl_)@elO*GbaUtr
zv(08+;;g)3fywl2{`C_*GA7{e`a0)un)!eW!S*uBXvcJ)w*P4{T7HScI<WfX^d^{Y
zf<KBnNH&}3)AF)vWoZ!1DuTJJr?(?25fdoK>KYmQfEi{w_?N<1*WpC}XfPIAMCh@J
zw!Ncm-ek04(VzMl9U|R9ImA!v>(4feMvjiPAFP{|0)0N<{unR?<SK6Ah^(Y=Udg=o
zD1L_A@R1~R4T_pLvsf!+7E(jCR%Nbm4`CQHxL4=(o<#*!q5@HBx;pg3iyPT>Y|ti%
ztC`Pw?Eg@!P*k-2-c<mxY&M>de7JJ%a+|VWDS;|->4?9(d;>@9KOire^Tw_`EZ;@6
z2*->w#FG$vC|74T(qlAYeR(<c>iYUHg7*v~yV0TuzyL%La)Ys{WujmtSXfw+(Ko-_
z*|9R|wQ8L8LutDx|FPHf^oYFxd-0!D0A}S@_Kg1jd%gYV|0C3o$Oj#nz5$dbu_b}Y
z@02p}K;NU1G`cCVsDA-@#Y_zVK#i7>QAUolsj+ba$don(ObfJYj0RmuWHV*?BO@{v
zi^guYCrP|66`E@g&5HW!vWU3hjyyFcV0E<*CewpfBo-kE^4Ob^Vx}i!dB64BY49rF
z&`a?zBp>MnBi-=$O?O?=TFk#)w6Ss%tGr)V=M6kAD(x6dM&ACN#Qh6C!ekS*6q{Lx
zrK45+*lh-$mC<&_^rj<THr1P~HR}6!@Kg9-%nHk}?Svsa5*85kD#orj!RyJ;lJIWb
z?#||p@bDJPA%|aXYHlj$AO9gwt911wAr~xLT)AWCu58v^(tvmHqKNl>Qufa8^RH6u
zH#al@p%U}Ip3CW%2VvuOsgaR4CehOmqF%i}zJ#kffiDV(#G9?I)PSUI=v3U!23}nh
zk!<rPBJ20P`nHmfxYYSE`Z91FAe2H;MNW%zvcu;CUXVY~tOa>|r}$6fwJu2}Bg!qJ
ziYhjeO21Scy{i%cyOmQc2LgfFH8Ye+14s9^)lQ!f$qZE|&AM)5<yAh$7nlrF5z<c5
zfK8W?{eD<!1~Kk`n;Zkm-aOdtjn1vN$eUe=oPatgeiDw5h^V-%OlEk!)(l(M<Fw9R
z5H12(yTwwh5TC*mRBiv?_F~*HpUFM9!?{d*sTlI)s>V?WF_9ln8`cvlK0b;F*lh*A
zFLefx41-^rCMFc1)-|`Gp~y?EZZ(>E5}XBc>GXykhEvD}17rI$--`0}1)$O$!nP+*
z4Ns#QZdo#K;6h{NC&%`m`rVFsP2u4CWOJUeJpw}(XopUUT@-_aC7w9QWvJ5#1Nz>d
z7oRoi0;T;U$ZxXKFkce0`}rp1Fgv9FXLzu2yQGdtsi^7k!dp9>gAbB!@orYC$8*r1
zeUH{wkpzY?p?~|A1q=Su7m7xNcMW2)c%|SAhNn5Aqf${)9=L>o&dlt253g-@v6#ak
zBOyLJ&RxZfHC6<?)%t<%YEQWzM&k^Ml;>;;a2UqZ^SwG`>tXSF``)qEvz-#VpDQOv
z`j85#?5cQ3s8`P3Y3p*cow1YA*Wwz2m9k5AA%SyMUvKc3iGNpNlaJ1vd&lhJ9}|qE
zNb^pk_51=t=xaj)5q8tk(+`2nLeAk=fI71K0+jp8_R(dcV^L%xv|L>3XWKsi|8@L-
znnWJCEX5>sS9f<QWu%eL8#h0ScSs207R416a&p8$fq|02s9aoJpU_6M7RUDf*{tQ1
zvR?qD!yzF5I<r)U)@PV}!+8+nMAuBttWBj4t0^N+Z1DlXqoz~er?0#qHK8NMFMBKI
z22M*e#i#LrY3jWxsYzN~V%9r*1Hddv%a$@mZpBQ<RVRdLwB|!bf8?CIKA2-L#|w9x
zC<u*!{<zrZPMu)KG4^RG>&=wuD*r?c()pa~*&Q5hqEO4%H#I^z#0P<m-!DuKb=pn|
zu$}v*%_$$aib65}R$%H=VL@Kp6*@`ojg?2>bogWeuI~3Qct)yMh#WtMY8@Q2veg;Y
z7VS03((I;umaGyAIZ3|+6pgSkYBX;BP`o<}P@&XuUy3yz&yc;mywp+zRTSjqnJzPx
z3#t73pPRRYg@&2}o0%nNX@;b@$P~eF7>ORFeL+FZ_g#%KagIE7ZZxVpACgqV^*|y&
z8AXl%R%uv~G|r}1w~A3y4`7QyL@nrkbiwaXtpt<=c_<w9ohk+5@fa}z<3g(SfIq)2
zrJhf;O9oh7&XMtXbsDkYIW4YsT(o;1Ozq{S@IHdvKR)z{hD3!MIV#D_7!p9A`b3pf
zg)xnO-BVjlqj}-hIHh4vq7;N(gxh^jBUW)`PnNS<Wm<_Xp>ti4)V$ki$nn`6nNdQ<
z=ZWv?XTr+F-v1z|&op~#>b(%O{R8(mix?v1PrddKLjIKjuPmRMdn|Z<kpNo9p^tPK
zpqJkJ9ZW3R2H2nIm@>zC*M?h#$3cI)p3kL$LUCu~Oe)?j$k7}~r0&M)3WiAIVU1PC
z#2&`goZHser}M9GZ*7eb2A~6AAOOm2HP>#`x78a<$IPq~ILDX`V09wiq21(DNf%56
z;YDC<ekG!1tMOfP_h3o~MVo1=&b1umeBH9q1-W@N0pk%eB0k3$0mz2-C%Ib9AnSp@
z8oWz1U9{UE1XO&<b^&5In!(yyJ}FQPIMchiX|}p6==kv%Zz^fBn*Ez^BA@@CKT<r=
zX=3^zw#$Rx7nQCsy>y)yWkN}?ggZOERdkf(zV=Ta2B3H3=a64Vl`+*#W<0l?HH#ve
z5*{v8EB|Bam#RKP+stN5;O*D%*Uz)NgJsvVUB?qyGUWixKe?bji=FNdiuL>LuZLS7
zeXuGF3v4UZ2+qIloh%xfEmR>co=K2EC(7=wcBccUoqb&+?acsi=ja_pF5AAJxvA2^
zk2)y?`#X!{Q_aQHCT(OwMQ6_i%E!lr#M9zFqa>kBK!Jbeu(u}%!VT@P0j4)wk5x*~
ztEJf!lh>xp1?ao1d=EXNDl{+c9hZITS1s7<(G^{q)%A0vD+pG*SX|)^EB37U1$&5z
z^H6)Acw3D!yc{9VNHx{Y;tAC<^en)XJ?PBFc}|01!ez(5OGEVOG${9nh*$c;Jf*dO
zRj&wUY%x1mvRola{4PbWQ;4vRVSGq1FaG=6u7=4Zump2KR~&5IAM2Wtj~yFIS7`6E
zSC0kBOw_qbin01tY)Hr7zEz=_3r3BI%FfwrMx5LNOi??H^_GkF1!CLex;n4LKj^Gg
z9yGRIlz$Oaheu7*A6}~xYaC8j8}e`4SDpvV1Do0ZrYrkD%3fP$?7z?P0*l97kJ~&e
z>?-~n)h*Nh@Zw~`DYiEQ!^gV8nP&nCWA%7^_8-LLwANaiF&^^HAZ2dt1DBEbA_0Z^
zRQI#0@skrl4axBV7#RM4nJQP9smWW;y&Om|#6|X2f6U==hE8K^;e6w6cC#=HTCkgd
z^pc-s&{5X!|D|P}<G#7p?x?3%bG${$L7IO_)@dDuHy6mh#9=l2L<NNi2=6SW(}^PP
zQLp*L#$UJ?z*VnA;i4QIFB4A!|F=#EE=rwM9n3z_@N)?aCfXW!!<0eClKB~$jzikx
zPw$2t{UZtEyx4Y#z9WCvC{gzx_k8IrCML!ii4YbRHmGQjvP<-!qaH2-(TMN-JTj^+
zEOw4Wt+gwF&UOa_|Bt7DmmL&#M!|yTUR<Y5B@|<nJ_I%74U@7oO#edu^?=I-X$eDR
z9C>$f<cgKrtab=Vcfs%6@rs9d%@^BAE;zRYI_*HmTAc4CU#g||qF$>$mQ+?yRSJ{g
zaPNcbq-!}8kcsWeTJ${Cht(MnXF*TN!Fg|#cin=5F+?*KJ<yacTywLy9p+iKK%uJ9
zHTAXFF#P8O3X4A8U@Rlcbq4r|0imQLIEFDfKfE4`edlslLGfP~iI42xB-v3@1pM0D
zUdN5e$AsBvLa!-BLka#klSFym-c}KR@uoy=vy2`Qpw_7<Ln7q$Xzym#@M))zG4_Cq
zP}gHk1&hFnnvQA>4bf)_@;L_(W<Ju;4n+2ahvjlRoU3cvKa@T(7XoUvlwEi@$V8DM
zYpvyBkmGu#9u_&bgK&lBrktf?!FZy6vp%94dFt&?!weoLI9;b*%jTzyeL9-LCJZ9~
z0WLisg+>A1q*?U$H@IZU-KNnPF3e337jT)fVLb_f!`|=wb?6;F*;e)Ro!>YH*@RB5
z=@)+J$WyJ6^nGLESSoKuYwL>XrvEP{WI`YyoxIs}laf0@x8*ksnWc`$sb}+{`1E}q
zK4XO4$pWZ(>uT|4Cv!dDYB?p$PIWPY8DLzXiAe-YW*2k#ZQsu8QbraQ70s0Vtp;ux
z@85WE;R&gTT&oj5m{sNyYw9zUqjQZSbBR1O|6djWKB!q8sCMs|wK9P*mwV`&it<f?
zgM%$9xaZp~vUJKXAr{Mj8|jR7-BC83y}emiJ;w7@bd?$A<WV|rzNWC7B|WzXED$}s
z6M@CWOPrj_SKfUA#-37shK?$qclU6oU!dS06%IhIwTRnSUOHOuk`t2o*>{-4%bmTk
zp;Ks~$BZU_T-aAzfaYn?0<&X5^78Z7I#1fSuuh-hq5(*hE9ua|=fjgd;ilq#v!PxF
zIw}Je)K7xCh=j*<AfAX&hZ@uI6rX5hhVVxUi3pta(Y-D49f$whewhUBo1~u`%Wjkb
zv&#udKdHnaDI80#L?pGKU@jX$mjZ#7E&lbzMOHk6`V^2rEeZ%JIGA)ACuB@#rwk&2
zMjA-j%CGsV4%TUy@%9;H8I+9M5(>=XPhYf?zzQKq6>V(wkA0%$x-{Y5{AK8JM<|4e
z&3vZz-d3{*G>byxDWSBpBc0cX*^k84-%Ovo9bcZ#kJ@$+VJzF3Z@iRVX};Arv}HN8
z&>>8??|cd}G|`vn>^9*nU0!@2(nh`Jl1pvPI6RU+L*i2qM^X=@Ol`A<p*Jyij$(Fk
z-1^g^AsMM=Xcbs37MGgo5V_3Pr8HtXk$oP9?uL}1R~zX|E0eTKV{@tD#VhPZK;v4i
zv3H3<CBGIe16z^>@{!a@dWBf%M+7}}hWov1XVv~-Gg~TqTkz>`fHcz5s0mqW@}DR)
zZ^G(HvBU&jom3PMF==|j4-igwh`xA<i_k<?)2F4~?ys9}^&M?ZPaRf&X4NE4z~a&(
z-foPKoNg>7p^;F}eM;Z;u0zF}tyYIdQ<u4G89BLqVuTC2LQgbBdcJ%qasd5^QQVo)
zqQT(ma$`H+P#lzO;%tIEOl*W1r>M$mwJ2KWb`-fykK7f9C-v6M(x+qWtLjUkk=O21
zpzG5Ft0*f=eEReNPSa-;EKS&c?k1_2?+J%6gX}5e>t7rd5+pQjHcuXo7&;~wwCB!8
zoK2nrYd*#ZgFN%|exPKpkv;euQepKyp7Ek<6CKz1bO2ARtM2lzA9n3!zt<EUrrZxn
zXA^MBP&nJ`ND4;^vDXfd>`I7tgC&1f(>L%9q+f7_G${YkJzaOb^#M;4_jD}D0P5j%
z6hvY4sZrf}-5QGl5c>~$wnk#)oh>^2_Qr{@ppiE=vl4jdVZtFGpl%qy6HMnvpJ_}#
zNgG(7)wkY@GXXSqEXP3}j`7(_2_##Bd8@b0O16$wwsHKi=I_A+y}yud-uOK(nU^p#
z#eszp33Xdx^IAa7f3WBO&~NhIY;?w|(6?jP{6P-V_NF*pOQ&_=<yo?Lu=R#+2DdGF
zd-iX5)F|mVY}m*c8Bui#>*x3V<gv$`zu$_CXhrLDVozHh4vKA_|7%*pD2X@!`nCkL
z$jgh=nG3rq4A;n@{!au}fI%8IvD8UnY_=<hx2Gg*T=G$ZpJ=^J>_s*pz%cxvqoP1-
ztuj6_(PH=VTS{!~g9!7I+<$K<{x5U(|9m;PhGV2KO*U?Re4hCA58(hGj={K<kJS^7
z=(4QjZ<SAvZb13n5gnghGH`RG0F{7K16Lfpfapgt1sKXji|VylSxxP2&5J7?SOw1)
z#sl$UVr_ZTpsDCQj!8-1poeuWMI}84NpJ?+BTsA5;J7MQ6uRAg4kGi)x~|#6Yt#E+
zpNY_sr&IG!##+Os{X;MEFF8b&;pP0JkF&fxl;D?6rzu)g&R^8QEKP}|-l9D1m;5z`
zc8=FM$@lHDww0gSA=YH>D+RxZje_J}V1va$EaYT)7i;RH>*x}gdR(?YS~ZU`I!+-S
z4YjR@k*m@#-G;@&GIGb)bui7ifnDNBMwB3I>&90kOt}f#u?t+Xw<gHdX;_(uCFyml
zfqHj{XmL=HmBzC(!IW_LlXtS23ye3{elCKOLu4|S|HgHvZIxb<7;l{^g#$w!4+6#y
zd$<J6Rf%-c=!}1TB`kC%g#Jj^!p&(eW`Epcs5`wY6S}zXwt3AVn$G%!ZMKp=KU5OH
zk|O-Hu2aqtaE;I<KpBX)eg#1ROH9x<<nHN7=Grt#RUE(CU0%_=nr?G{ewu$Rz)pRo
z(D^Djix+(y9jmU8hH<mBfZxHeX<Z_4KZ@)^N}&T{D#=^Hx{f4F%&x`E!QU_9p;6_A
zV)^%-6T3?NOcxg*WMpyQ{pz+RK9&yd@AwjwF|yDe*|*|c2U+1!sKo$Ld))@K(`|xx
zW!k&UkddA*k`JW6a-(|JJ|ehZkJc?skovYf?DZ~jrlFgReGV1DG`>mDewAu!qHY)i
zCbalkpMCr>!W$>jU6>2i^`SbzZ5v;4(`0A@<5gpg;Pvt_XZ(Fsf>=|`VgGk5c^@uA
z!8G6osU-t{EJpv@_KX!<!-VWNzneH7GnS}DRqcOXyZ*cc(e%yQkCu29bMNmNj18Wi
zmS3eG=D&o<I$ksR%&MQyJo>ymrBj32Zl*qsrja3_qhZc}srYl+<`J2C8=aISo*AY9
zsHUN^Y&1iM(=1v2ua2>dKK-Y|2VCgS(`D8+HjcY|3Wm4#oJi$tQq!u=!3m2-i|h+5
zKXr&?w#v{rCj7dbIi1<*Mt1(B>baM|)-};$n+p2ftoEHl2~%ZF+8M&<%OEYkgTqxG
zA%@#^NbSd@7i!<n^YY%?e?T|$eAwlzdA?s`(<=l>^LT%BJz2=Pd3cmuT^r34<U%kO
zIJcTX_XC{QFLvdO6&xvnwu+f(Z6@AKm^3SW^4={$e@fARUCvpEq1&vI&O0c_?%1Cm
z`>@tK8507nIJnkZh9NU8jj>y$u%N))?f-V=HsOP4ir>bD#gr>mlKEQ@VEg(91aMT7
z|3ux7;;@(txiF(P`1xX+bs%bb2)L%Ze#{?EQ)go>r2urI_Qv{%iJ7Duktcw|K5^xi
zzYQmM`miLkqoS-PX~a$QLj*(SE?<Q#%_uGjd%J7LyiZ^|kG@{FHIQL6`N#Q=IP7+~
zKYZYuS{(B^)dX{=Q&EsW=EY`-d13;fRMCRQ#O-yVHF6j~x5_h2&&C5L#a)xPr-ZsS
zYci7WOuC*$e(9d(XdjFC7AR?|T~}S%UP&+4b{`ZJA>aMQVor3oqiFuDG9RTkvY@+q
z<^dH1-rZIiOMj#Ty}6J-t-#3aGv4*;@!_E)-?d(~Q(KF^(-A61x+{@JG41C?S28jv
zz+vf%cf5n1N2^PgS@t_@d`qFK4<5lC%K?ijs-}tXu0NG8?(2Ox*%3tS4TmE$39zjY
z8G2sa$@?TQO6eQN%k<)>k@KZeVL0ep-A>+R&GwEN)^P5do{SQ!K%RTVPerrc$T~#v
zS@TNIrfL_A)+fs@D>5q~*?*fZ9`*(2#BYzESmq<PHzoAA0DIU33X7+`cp8}9qF~TX
z&LRt&LHF>wyrI2dT!5|FS<@N16-Mnh0#AXEdU|)mjtmq1%eEu|DTg>vU2TiF?lnfb
z07d=Fw#(pB-STKpIBkuggg@e;xntz-kdH;xD!05ffy($RoY7msqU;t9yF+eTH6$<l
zyjDaEshm(SFgz|uZp3^7!e?nKjLfU(10}^T8&*Klum4Vs$elf>F7J;7qoNZurrWN8
z3`COfiFx&i#+0)pTdubD6DH&<#F*`;n}L26MfJ(-YI_6f2}KxjG6QTe<|Mgn<^E_3
zUl#7LV1f%@SUn8tt!$Q7OH0ecK^p6Ve&Uvhi~DVw%^eg2SIH1TRKf!q9rIohw3oFl
zGB){U=v}_!D91G|HMPnaI^x9#AN|mSvljJ%FRs3pBSk1Z-9LzTj*h?q)QnW;7uh&$
z4!GRzkRhjgU*VmdLy57iO{8HQy)_|qW_@ArEnzrB8ie;BNeSKC=y-Uv)?mkgFz-EX
zM7!pIw#&B^wZJ`61Rd>i78ZV+K7RJ}?eBjlNBaLx8llN=-gCtrzKiH)XPZHfK;G>0
z^y-C6uc>)2_VX)upqO@@IWFM#S3_jCAC1@wCh?Byl8|1Ol1U<y;Si<AkbQi58vgZJ
zl^d`@$YmH1SlJ%o`}t#gq;M!W@np988xE>95&$PH&b?~U7Q<PK$|UkF`HjBc$_?Si
z{69z!xh&Y5imDNyhA2WE*)2Md5V@nX`t)I~O!==(bzPZo@*fOccU}3_G%*rIUpJhF
zq##Gi+V=_@@FL46j{us0f`la3ffTu0xQ-tw^U33^Ndo&xMZLj0jiYdQCy`KK{Vm0o
zY0|ei`almvkA+mEv+%Zf<j8c(x%li7DMUoRfx%%%w45ky-%LhrZ8ZbxM`cvf-!72a
zOLJxIj4>WLZT*&57(<$=3#$95SPc4&pgaK-L@~FWRCT)h-`k~XO(+boTL?gL&K_NJ
zUp1$6Cot{ah+&hq^3DEq8aZ8aaM7pdi*z6i3;B9y0AfUD!r{XHI+o7o=&giNHixf4
z-PB4VRzybU{FL+M(CNi%Xl|sy7i=ROTwG0y_Sx1~4{N8=r)oCF5lY9F!@k}h79V(4
zAyD{960qLWV@jro73Uh*@9e-~rIC!?0L%xEfJ(~3;zCx$aW3-<OO;uN&TcZ`JRqqv
z`(`6R9XoA!YC1J6Q<aD@7%hB)Q{s0>!G0#TbsIhf1xcWt7<jomSYmRsdsHx3i{eyA
zv%>&y)fOr?#cj3O^{Xr0y->|z3vT<~QcSGweP#LSM7hvkkjoi}PSRfp32jbNPEK51
zQvwtD&a&_fgidHF+pkCi-g2g%otrnGB|IT4YHq*nVA9%ju8;{&lB>zxGtWmUK|a{c
z%q$G_oOVg9j|H|j=$N+u(*%P(*6n1wF0kz?8LV7;G3A;xyxcDmQXh7>=E0nQl%iGb
zt>s-Po5C)`v+5ppuD$aL+4i=xQ5A1kZB_~GyM$_KTV%!3)a+nxw9}K3`KeXt&;>>s
z)l#gIf)#j&)gcQ(<SI`1pL*(iAdS5$an4cZV>-&E-7Zc}R66&-0xk(y%#p9&5a8nj
z_<1FPsyl$-JGIdnP+VK95+TUH3aRohS=Ud1v~>R8oiv#&BbbTD+4)p*?^_1HZ9pI}
z5@87hAF%`3R@{CaKL)Yf_tRZOZ`hO%YP!I&hKcRu)ZJ)AJfe6ywtgcKAt4jMriWcP
zRg%_(E+vi^l8J^{#AC(GC${^OCpRjqQuadi7sh--@ym!tw2g%gmMX0x-WAym{zpOh
zQYLCVlGv=GUhwIHUsa<~a?=i7U@#yiWZ#=B-6^g36MBV48Co@vi7D#68ovS?j^>-x
zQ&9;-yr?|IKg<c5n0IJ(8P!o0s;c%aVL^exy2kSC_qD;>RI@5Xw(x6<fvblrcwu}(
z7BartJ<rAOhUp7_tS<W=6H6FJK^uRy%rX37DYetPG3$x=e{X773=dT=GOGTnS}V_Q
z&C`v0?b1te-Y?zRBPhcyXC5squUuJUGFYe+@0IEq`MPA>Y}>1XbWTG^gqgEM;~w>X
z8O=q`VsMGOq*3z;4ct<4Ix(1wWH3aAEPUY5$U~mK)I6-EuBB%(eos#(!|(Rz8qA&M
z@u)Dp<jbhm+WLF{?H`uLZ&kf|*Rr3%v?kJtBG*b*Hct8D3k#nyu^u@ON$0fWr6vkl
zuD1)I>?U^_4_;Nk1UnEf0-n6zr~N9~)=VIqg?YZ)31(tIGWS}q2HgBxH~^+aYy&b#
zlX~!Y{2TonqduoBHVFLVaO=A#=|-W|Xb=Rk7y9gQkEmYvd9^5|Qfqs<Rb_nd-%E;u
zp`1yz6lV)Fr`+WS)xxw&W$W1Ey@AA14dc^wv6YIFE^x^G*vTBR9$Fr!V;wTH8}6WC
zb42<UnrRKmLXjAMoxaCnAkHPIBb)5ImoPEWJVURmYhv%^tM2;myXviii?npMH(Tnn
zHfl$f+jyf%Z3B~9R2tt<kgSUtxe9^#fJR!GM(0*H?{9TkStxU>ZJ?`bzLJ3FPY+r|
z8U_^efkigoi#MW%0e(8IumjzLs)$6&gBIV|QLDI_f}%cs5~opHX)!W3mJ;3uGMMuJ
zVsceLmNm4s8AxmySXl6UVo!Em+#`jy#s4$;HSzOp3qya1>`;Bqm=y~0Si?eBPOfm8
zu{}xS8{}|hZ-R>;<(0V9O{tHkpOQuIF0!{`vLezMFj+AAqcIrGvE?^dQeWa|)^R>i
z+9UE6O~v^N;Y-}UV=+_3$Ui+7A|hheFf*HXu-Ek{7Z9yb>@3ph#6p~fhJupo1Ne8Y
zI@6rh&-VOt#lv$fD%;dvUaprcDmAT$&>v*dK#DrK1i6Kt0B?26px;n!*q$2Ol*O<8
zhTHT!sYUB-h@ldvgXVGY9L3Y-CUHi;e^noH1^O=&?MH;S0i8k}fC{5n_}SW=;^kN!
zMnbyhpHDf$76?+uvzBmX|1p38*7Lvut1<XdbY&I?l6+Jlv<a*MqH=1NsA!&MekLX+
zt^|K==nh^Cm$0j@?+G;b`6`QgN>VD&>fDau6~EtbMm|k+79P5d-T_4sV@VV4X4aRv
zGZAHpu&%&y-qb)&|03SJNc4P<ui7dt?SXsMbSd-ABW&)yYTrcRheZ>o>y4*O#j{RP
ze6MTVuIdTM!%t<Bl{Y4W*BE5AcL{=Rq}0m<?myD_cMHs%s^-=|l!`^0F@Pm0IA$~j
z=g9(1nSvrxBrZ{`ajj*TjeB)kVNA~gNEEm3ZIt_7P>r9O|6sBkH>!DE*;r4`Rd11l
zHOPg1gY6eR%6RF!c58DFd*%tuZkW`+-VaRt%B6MKXCZIBCoE6i)_=(=zt6`7nbpw<
zSB1d&4Hb+&X_rsY3Ou1Qg-B?Zn^xD<c!68*yRPq%?u~PosR`c$p5H?MuIZEm`@!$I
ze^*j`&kqaN@yPNc0TRA0dBvyS)^Q)DRa8Fn-}~GH`9A`y_Q&f3S-kQqtFrs|kEmAi
zgd`uVO;@8yKTFAuMjI0Ffkb&szw4;$8}Zx&VB8jC-L|_U*zYmaLVF^uZYL1BO=mT7
zc<F&OUX!#P8UcC}ey2OW3G~+5KK4VBqs8VTWqtV$VteroL<C91fEM1<@kI$&GB+N#
z!Oyc}cVmvj3(KalNgL<Z{R3yjf(<U#7@(WALSqE1|0#tt>Ks)}+(-!t>?i~T#Y-+0
zN=iSU&mdRBR>lv1svss0S7u#eJ}q}#FzBJ3bRFeiDF}G&Q0R%J!otGh$9|Wz0r>M_
zRSrcc5CJeWUikRCufKozt8U}zwTNlx(nE{qUb0CbWc}v8nF&j~-ZGn|9g<W2y)_dl
z4HxDG`<(oIQ@m3y7E;apx{o)~x4D5Sqp1EGX-Tvy`*6pcjs<#@Z;bVnsEqmEy%q4v
zS~o9ZVZ9kUs0-3=kr>TV&P-k(zg0+F`KQG5iu(&#S4FS)$ImYg%+1XY0RC~pEnpBc
z1=Mo({0t1GA~5}cop|czaN1}Uf!Nj8y7jUTEi#`1_pJTN`cNQ3l0A~|DnxS@h+t3<
zFABvdKmoAKrXPfnBlZ%uyVHWPK;&O${ozr5q`m?JIYdSftKS{Q!RffLN8ik}k?n|_
zoLnHn(NeSe>0xzkgV##xeZO79J*1KFzb>JGLtdEaoq~LYlGh|2|Jn0+9)Jq4r&W;J
zicX>68i_N!{zVd{TG=RqlfZ}vz|zHPsZ5yo9$kS*_EX{T5u+Drc%N{Cl9%lEsL!&>
zL<s6mGxW@`V!H;9IR_IZ2857P`F@h`>(O>&Y`t^65M!e=d=jABIX==T3Chh>cdc?9
zsF_O$t4yprsmVyBfr}tG^8kNA!sqqR!IMes_w#!|i^zfu<4s1-^6%u#`hUDB6TyV_
zg<vs9$eE-OGWGB5?3yK0H9&Lwr!K<IaW@yBJI+RmA7<n5qV;<u>E+}}CDd8$fz4Mp
z-nuL+o7&W79gDK?6>+Im9T)c5?;$%Zr#O$Cx<^}g%dZ=z<(}GZW~t6oMFf>m`(7h4
zi%J_GIgQH7-XYAcp}DQixz2i1!6+^>F_o4c56sSf4OPnUy30)nb+Yg_dD5x=-b`)%
zY_P58zL$(X(g$xMLS@UooV^SI#;WACM*{eu3H6`0dab5k;NRh|g2>)K&sH)Q`aE~{
zkg-&1B#2>Gwq7;aq95~<-6!f><?64qjPXAh?x|?i7}wachQ&%KtEh-`bBi@oPykcF
zXH*b{bx&hu)7`kS^&Bmq;UjH$w&pIgr4VFE3+(D(QCzd{*Itgi*{Gq+lC~N6?eoC!
zPEQfb^b$|T#iavB=z5Kmtk1A^>2$o8QCHAmVJ#E8%>~S&OcVxPUR>IVRIE-Sk_J_k
z<>Hs64xbJTYZHxCpXZu65~08A7;W0;KT)Y0z5~IQ&tWXyN~QLi>go~zX2IBPj&lZ9
z%-nxY>(kC*`a^YkQc_3|XEg&CBonZ9b;WCYRAp0<LPmYzBbX*PpKIiWTy%|gJHx8-
zSuD2ts4s2BjULBU;%6^Cm=MMl=&XA#_bfeio->SA-*)i2?O4B{ptc({+h!6n1V&63
zk&iyxNVwefS^<Lhi3TK6EbJ9*-jt;$UJ30}XLVky+uXazkF4M^RSmuA5~#UZ6A*;b
zEwh5y5So@oSaZPXx*<`0b9s4a=eG^eS!!7~-T$Stm_t_ov;r86od6{&DykbmO5!Y?
zx^GXRyE(g@8Q}2X1zL|l-Lenqu|wm(UvUULK>k1A6aae?q-&p|=l($D4y~KteNMbx
z+|M8u<EpR3qjBDOH@d#APY@(v$=p?JU_Ykizwo!SQ}_(55Al1;0x%xl7^GN=;Z+F0
zderBl)$1i#V9~h3i91#~-{Z2359Q}(0$%aJ(ug#NY)d{{70)mjiCfL;YOCe3Qu0a#
z0!Hvng2}$wvc_cuBFD0|nc?nGJY29!yujlD#UoJ9&lrbEH|7K1a+hBG{bAhi7ES6-
z>(wymd7QSLAMgRqhAyOq_eZ?%rk!J88497(v@~Fr)z#L$DTU5b<twox-iz>Fdd+>i
zB-+EqT|05rX?-?Z8R|FkHuNGQ(tPDHB8FuA)O9Sx0jc4dOjq~_%8=oWM7znI39z3X
z2~O=L+GLwE7_6r{O@RAIbzP6rypU9q)hEh+?6ekNfiAqAP5fI-=FVVo=zF>`deBl>
zqc>ne9k)_RmQPA*_IU%Z=~u9LfKV57ud6{CtGoG0nBLxe@Ww|{u?X9l8fqOgo7A6d
z%x!XVXiBEv9=2P}3v0a4NIvAJWOcmU3NAHkePZkTSn<`Wp<WbX4I<s*0Qx!iolVt0
zkO9mBfhfBpm5L9|9)SxD7V1wc+1ke~ZBGEa6k*ln+-Qo)YA}Y5e8(c&(OwjK-oCzC
zmi#sLr@5O=$F(e*a8zz?0OIkIKrln2VF}#k4~ycvkvb)5us9yx_I~f5@UaYpgj32L
zq5?azZKDH|VJ|By20Mx&q5-Sb&f4<&r52wSL`?wHu}1!$D!#UXI?)j3l;+J_Qfeh_
zEKq$174sn6qk!M@v*)4b%#tLK$yoR0=%ujksx=ZRjR^+6Mbvew&;7E)FZ8a%Lf}0C
zul*IPUg_Ki8s(#-Qbgv+^sk)`FSMnz33&=e#@EL~W3`KFL?U9$@kCEQ`GOe>vKAw!
zf8F=Ml5A=GGh5icVE*Nx7mY|5TwT=-D}d|#y=#Na1eLQ{l+#`YB1YoLn*p8Nr<~^U
zE8W$|B6-QV3gL?uYOqRSUS3Er>!^?6zoe`=4jJ4G01pcgNdC?$QGrD7978eWVu!xL
z7-O$8*|q{SCZvv6|4%4{%idfqU8N0z2v#Jhi3jL#pIHDpjq3xy?>Re=1O5SY7t9s$
zzcW7l9DM(7%kwekQplw9)B!XGR=VsCvj$J}8?wCH?4galZw~<>?abD2s$DxFQb5EE
zWosE#U`6|Gg7ywGANMZ;upGa9R()&I2^2gqiVo&Myt=un$vE%GC#FYc>p8!20>9ap
z4CrIZ$&)1+u(H^-vOMjj6divJ$@JJLq6RY0vh&N|1Nz|Fk)UtGDFd?l`5Tg0s2?_~
zqQ8F_FM!&3=dH^sg1^mW1hNo4lNMlgy|0(pI5<8og@*iW2E30YztC91BGTgo8Mg{n
zUSt}zEy7iBlL)8yy8Vm3tk+tVd-@CwFJ@+O+l#ZL$$hopGVcyPn53bXSyp41&4-V3
zxS_$EYRQNw^H2?J;Dkn%41G&>vZdH1UKJM!y1*nWYazE5^~jDDHzb>`NL<VRxwN<C
zz_oc5axnu+^g=+#%2`t`kxESL7kE`eCY+pT<gJW9<@lvAT3DY#Sgv)H_wTgP9Z4A0
zqAGgHBNE=9O6N>Wyg9^jz1L+p=uOo6pa}k3fWB@Cq$6zf_5}{sQ_F-Drt?N>e2897
zKgEWTiT{Zfo)s8~Q%9HRveLd{+0sVP;zDD-j)3v@Xu4puBShhI-+6t@S!<rEpP{zr
z&1t;}(LA$6WC2pN5>60`NuNbUa-phr+tQ7jYVu>%PIs_a=!BZbEOS%q{hIWyhhf5E
z*UvQ~`yN||$wH%ef0*rcOwUa4dnCmosc*ra|9J-*X?xVTNc&M-b+>lW<+88-kqle5
zdl9MidiwL*Ag}H>u~sp=%8kM>P`G`@^zHTpjBRuQ^GScXWi~QA&djb4UhWz?6ai&5
z<2`VD)@x><eD<pm%W7{9w6A|zHNTHo3#fhmvwh6VWbJtMi&Fj47E$Ridc2O)!!V!n
z5{1sT*5#I}veTiM-Au&BaoFphueu-cU#k_EXygv0f|(9rZ1XPxB!4k}s)g>hJ0P9H
za?vZ&ia{C9;u^brRPaD7>v+Dhfkyypll$3XqX%wDItw@^r$l(b1@V7+pEW4nY=cL*
z^_^~2Yp+t`r#_BrH3`JJ^x~=y(BPB(5JfZ(c~7SI9_SW#hZDmvV*TvP8o8%i;$@P*
z1X(w3zWXGOe~aOc?*v2;B3f+~3sF9kM#aTZ&Oc<ff6bzur3Ll=;@wTy&ofL5Q-8B*
zWN7Fy_YQSFu;+X&0V=Wsf>z8AP>_NN(EB(^&DmvJUn<#OU0$cJTAHz19GP`*uCQ^K
zM1!4q6eCPbF?4NL^R=!KCs&l{hX*E|WxWqL?NKhUmlTh`;{-y>nb?ro$oFL?;q*DT
z96-R>MoiZ*Nxr<Zrqw@cb$AVm5U%5d#O>y0nrnA=msbtWD-h)h`Zc&DFpSHe2{?=B
zf*kfkV<|*EFb>JW8;!X)Jz)r54XWAi7lWA;O_veop3~91E_K4T#8s<06{LeZ-2J>C
zZdm9`m8B85@W3JFd7&#XrCZ`B!_SM9a-m5apEOq!q^4_-$d+!ADk4HN1v)y)JFbpQ
zwl?49egopmP!6+$D?a$p$b!K@EU5cMXQ|mL*Z36lUVrUq6W|$L^5O>(d)&BRayi%A
ziXq0asH>ZlTbn%bIj>M^c}f2M%8de!g8=gqB}vKQbzwWZ%~}Jf;DN#B%twrk+;I5p
zlGo>*(WU#&>g~O)#sGv^y2~U$)a&DYJBu*T-+$xfzuo+J)Kt4SU3ie*p#8F9O5|+2
zyDk444Gq$ck558oVPd=&R+w9wQg<`VLQ~uNa7`0JQzE<7rft)fgb~p~QQX)l^8ul9
z|K*%`vkH@JeK?Es(gmCtLHKpLKEv&ibMu|KXC;|^+x{6Y@R;NO^Fp(fU6nzVMg8L8
z<~a=2oa?>|g$)02HXAjQVg!9JmyFz7917-euSKzb=A-g`$|)-=yS_Pis7m(b_5*?+
z0ck-nHZ~U42+G9=>;oD&%TpQjt&c-By!_^o2i#h#Q`^V2w`&^3Lu(S@@3x)FOh%s9
z4r2Zx1~&L8eAizvF-1rYi)#=+pJNaZFyu}+=JW6JEs~N4I#L>-iR9PTve%i{mz8{h
za%SmsG0a4u%FD|GI-eMbE>#{;KCc>_RgTro<SLR?*P%VY^xbN}pSIyYJw><$`mKfU
zx`1zm+nI4W_1lzR@Ppk*XJ_YWxv?7Btpv~uiD9rUFAfu|-f~xQTJkNRzR)YB7=2oq
z_owJ-XJ$SPll15O7UO&V*0u*SF5cx9$?CY%dVbW%I*yc)4kdIk9x(}Ey8kb3U|Vl2
z-)X_KQoHcT#KVXt^lM)NB<uGV=5&Ck^&ghkJJ9#D()m?UB|7gdAOWa7x+!Au5vT}8
zF#!i=*CqTMX^Xy4DyBWfIDPqxBc-wH;^g++@1uNB)HFpm$zb|fR^zsIZl~g&q+m<A
zZ;;+({4M*j`nmbj4MY28_hF7;+3cUA<C4Rt4&7`k7iTK3bsl7VfpkF4{Izp;W?4TW
z0vVCXXx|j;?pe@d{jGklUAfPUhcFl`%Rfr={GDM*=Z1AZRpUHm#3_WTdODM+ur1C9
zi-v{8F3p<v%$d;TyKV2s&wWYXc_d*1DFfZloBdxO_RQ5BD(|G!r{beF2))&Ld3kS_
z7Z-K+md|fygW_~sgv{T|hvaJNH;O~!N{Cugeq!ZvVsuG46HT<})(5X?$}3lN$n1Vi
zVg1GI4WUs>`8j3pe!TWteTNA-$$TwvICIFbupECmvf9D>i-U@uCz&`B(7HW-iu@i$
z(L7cmjc?O*zZWMsbXwL=dk?m<J=dkh(ocVO(^HL2hN1{R<No@*G0*McXJyODy@|=@
z{h1naptF(A%@awJ=(+bD2VSpOVu0S+w^mD^8~7B5ds+Jao74)*=i1JEF2u;frKu0;
zRvd3jVlz%YV%s_mv6_s33!22^qdHag96NFfWh`Y&4Nc^+23c>$JgRqi|MY&&Whps^
z#Dwi*dn=g3O;&Tw-yx8kWC3qUe?d@)GIM2z{e65O$qBS>`2erORVwI7Yrkf^U3$Ju
zN1T-1-x4z3Poi)-QxUDLy*$IJ`fHgaPq-arfr!KVROYN#B&v8J#2I>OQ`xdh`FI&g
zl1r268uiM?5lGFdi1kA}FDUtkf-KIdl8_*|z@sTw)BSO{D#>C3;%-lOa2PFx;ro`&
z_XYZ|N5r#Zz7gE`<2(lqi^j|TJmjwz7t%L?%`0XpmBWIM|Ek}n<nxfG-3wP)S!H{3
z###F@@~!~EPXBA!V_km8uUg1rcy4<HZ0S~nP)%;K08g{un5@3|euTDoq|GY=M=fU~
z&G8>WPR{hcUZWz&E1_oqN4C84S2hex<K-N%Jd}_Z!z=EKJU`6wL&g9bVUTFQ@;6Bk
ze2`dlZj;{<1OWx{J-KJdXY;G?C3Is>^i0=vOLHpd>uzN;E6zu}WK0-vo`Jr_7m$Vy
z=%_@#6s!N=zoZz+?SV=xJ{q_g_gm#ND$T)L<Bu>@%&p`3U95O7F&6>x-Zwrf)!h$i
zr!fQFaw>E1N0Jt@Z@E+G`Sb9zOxyd}cdYVgsky}Sn6^wrecDe!g3Sb3`1u;bLKq+s
z49HYsyC?w2vL)jLPhJetWS(q2a`W+}Ww;M<+js-;-W#9Sdmm<6;oAoQ%b;GNKI)<w
zLc#ZRQd8@GYo2(+e`*>p#_PWw>GN!OxAa-JjY}W!!;}<tJnyo=86i)<Jnsu?w<t8v
zRAf6Xf)?=L`vD+iB9L*r0sb7|D(dYm0KF*`%wJm4Qa#7(fQU7p{24CeB((*Qd?h4Z
zKqduN+XZ+Z$VW)J+Xz6X_d~)KVU#4|b5)49+VX3q&c-%~LkfV|19+50U61IJHWwA}
z_l*VFZIS$UA2(Z@3C4)#LPA4BRZ?sK&=g$5!4kmjI85w#rXu2T3`t<om;0zp%3v<S
ztLL_h8@Z+`g!Tl~R^=<1$9xOqBz+@5M2(er=|v^5EZY5!sv(pGdmDgb7IP&fC3RpT
z`1C26c-TEmJu#H~`{zp7klz~!PlNK_IifOOzI-Y3-f|xvJ;fnyeAr7pyc%Y4`II;i
z775vyYpbflXwiKys$SG#E{vW2hIwtZ(!uNfvW?fVHe58$LV3g0bz*qS{khk<$6U(J
z?Yw^Fi#+DxXgl;kLNG^~r7do6EdBUPhOod-^AliL7RsnQqTJ$gx-^?xdIz9L!ONc`
zg=WMEDz*WW|L)S-jaKk>^C;w%XGD0d_S5|3x%WNq%j<%QZqQ?gKsdwDKP=+Rtr1m}
zFDWS^B8>n4`q&VGyJ!vDSK>SFdiK(|^Ti2Dl)lbiZHq}s!FLDj9Ike+Rm0hUky~%W
zrLiZO*LA`Nz}4vLVU2D(8}L<GuyymCIj%g`SQy!iX5z`#HEkGPlgvLht{r(gYfDH|
zctHkqRdijm!cY!kiC{lHjJ$%X8Tx-;-=BM4cKcUww%jE-EfBr#3_h8ir*vpoU2p%9
zwKud7;UHSQBGDD=Xiz=zS8quYH&_~F?=scj>|ZuJg}pl~k9s#Z7MSJI{@^gQUKNDb
z?4dUzo}B7^%_a6h)Vt^tjLpvKO=<^)R5FpkV^W4A-|4aIefa~4K4?yt2!vKQxYYHX
zfoKW2E4RL+8~*pWjn3zp{*lw4nb7Df0Z5V-0e<<Pk?lK!eT}2yaAUpLB=f%IAZU1H
z<89-Kn?aF-=kb@x%JA27`56s0vs+Xs-}BkKA+KYR^xsSPsby8VSy8%5CY4?($n_r7
zVN1K$)XZ)#j0~Ec;_8Vlb8pdntB}C-jFdc~{<-8T3w#L18bmvSJaRTptxtCs9t7n@
z2}?X;o^|BSNH<QcE&IpCUd>4E_|w`%>#NSt$8^Wxa>4CaTE>PLKa8S%r5P{wjwC$z
zdhLFGc<a}$*W7Y#bXuj1<h>rG`OEo4p41er1KxEg+w6>E%shKjbp$SIhv&XX=-*)X
z)k_AJ%7UpW`eV<48<QA<$$O9UC)nhQWT&U$VT*&3(vC_U>*MP;F<D=6%8H7z=hqjq
zY9Nj+PRGKfd^4|)$LWTXJQJ9ZI~U^Yw6w9;12F<SVqxm%-O7yW$Nf==FZn*Y&kZeL
z0oQD7nh*A>J$yocSta)(mz#e`T^AVN4?|M6bauKkA}s1!d1<ZfKU`z{%i_ySeBOMp
zl`ylU%RSrV3U}Mz;4r6g2}?w4<2a^VWFkz@auOE0EhOSCo*-!bG8@;~QOliJf^Gw*
z*ruhVkBBj0-j57YyKsh=1)Xzx1D-^o7YvgjF_-C{UHz;B#ZS+|{Y7k8Y=<|8zl4C4
zh5W+8(lG;8?HL03@oP_>TjbZ^EZJbF`(wvPipa5JGXe}Ok!%W@qVCat7dI)+tjq9T
zUeyQhx1Bhg?t8v-R6!^({(qDG{x<Drlp^w+(T8D3HSTA4m`>)1F$*P8lCu34C9U^!
ze8(XK^&#hB8$vilrL12|QnQ_@C>d>S_O4+jGAUr|rpBC5v2uL%QD%$u_z2f52tAaC
zJ6V~%wtYV?|8JYdMAf)fi}Zsjs!3>u?J0;e>lDBZt2(8IdY&DQ+%=N~9FdIq@it+)
zWhLB)+js^<^{uj-VdV9l13zZo5ziBI>wxsK;6!6na>uTOZ2v{-sb{EYglS<0h%;iq
zn5wcRiXa;CLFio@Fs;zJ`X;d*S`P*8%KW%EoUofh>;T3`Air%bpZ_fBpmxF8Wkja%
zSUl}hUwdUGti$iklpeNb0g|F|_9%i%AhUvb8_P_Hy!RHVbrrRz<@M$K^$ct+$`kb}
zG<L00=qBqXwH*;%v3^1j@|ScyWtWU-Adi%6DSQ|xo+D3xhVK9Sg}WtJ-xUzySfOIP
zx*Y6%Pz^g(Z`M5ek)h43#)HT>8PTI_j6eMZc>MqCLi=~Uc?rKcZ*|@4abV1lh4w{e
zW-TBvF^ziB*-Tt*?BcPcx%&1G!?ahFmXsXjEFG+owr*?%;~_gX{`nI_Pfy=WCD@!u
z_T=x|fEaiIwm(U_#3AJN$1e>nZfDHYIzkX9BBN!D`#z-{=V8_uR>44@t>s+2JjY%&
zZ!fd-(RndVF22bP4zFEgHtRF@cO4)_y6^e{vG8Y%{j44>PN)<4n=}{^k)ra>uf}}G
z6$EB0S3yIl*9=@O^gkW<cpSik*Tz%NHeQ-euItjJX0Or#5+V39al#+dIGF-gJANB+
z4afpKB|DzK%qiIiAceU^9vXS#;a56=2z-K6v+cgsGWv<H?k5%Lq|c*i$@w^>xw#a8
z{~3TP3l5QRyK)I`XVWn-B<sQ(UDgDW?C#>S2|Vb{uj?**y1hSZ&TjsQi8(X`-=aHE
z+FsVrh_Y`tSH|eP89zihA5b<FWkY<%x{_%3?Ze~k!+O^B7c~V#ZP?Yvsqod9FS+2H
zgTeUm;uCqFJGi#ybEBG~x9Eb7ljpPy-mN8t75NbnHK~KER4oUK>1(AdsIC<G{%^&E
zV)I9tx*&d8<qe42^8^iQrjQ$kj=>V0+nKp3p(YXmiR};GdUV|N>@yewAMuj~Vvj+>
z`HQJ^w0sF!zt?os<#63vG!LsYj-(^eOkeYDX<#(62xQc^Y^xE6$HtsFzlA`1J(?>~
zL&>#_;6mwvD7kAVT%`=s4Q05TFA0i6`Epd%xh!6OLhs%qMr8S3M9at!$`9hbiqEP)
zUUsXvn3f|qa3x#^hpq9WNaUr-nyGUO$}sBPqm(RN$H*_A%NiK`nx=&|7p6lOAiO1z
zkxzHjm3f$OaDLMSZ)vgRQrN#bO~r<$h`-4bqrEWe2KNJ=jISg<&#WB?60~1FNxFY7
zs?O%KB9(w%XTGYmq;lD)^?dPq|AP#Af@&lGZ(~TV#iZLD_it2Em*j8aRD=Mw>?8<C
zVGjv}EWqsWPG`j+-nUd)R5XcONrdC)&j|<>z_Oye^Cu7`{HD-6{T<C#0_6|M<9UUB
z5tawU0m!MFRPT6Hb;5!EWdrObPq>Q6P(m*2G@f_)l4*F~ewwJ$PU||&svdo;dbd{v
zOzfqFuK+G3L#Ha}{doF6T(OU(TN;q-Q!r4F0z&Nkm8kFB9=5GRM%*L9hn*v+kPxu>
zOvHcWDfrgl7~KaFAVw<k1cYxFu4O8;->n5bD-;GkW^>LI{?ZM30_?h~%i@v5vOpGH
z3qBVQQ~ke1Dey(RSOBc6YzWhO_AkYT?!!V>Rq@mB{U?_-HwpfI5hCo<sh-amf{K-#
zMVLqSm_WMTw@?!`3}IGlr&J)bGf&c8a-T_0@_6vwHP1wz*y@KglA=!lG+a5o1!!bx
z4X|}+KsKNA-l{2V!(CnjwB=gFhQ<#<;8_wb!#0dS9odwi@0-9fG^>w&FO*6;p%Ftg
z`jtWdA=Em8oWwlR?jwq`c@e;W_q7j-kSXxb^;l0yO$F?Zs^-s>)YSAa*~A1I-L2PS
zyyfms%ht5iIX0imqI2|q6Gi=IH8G>oC@KIes%qOT{pOefjFZwvVm=$<1Rujm1ohH+
zX~(`>2W+~}?~95JkN|}|1{~bm|MB7XR_yQdhLsQlK1|TICJss7CKQQ&&$S<!5a#r%
z1j)6yF80?s9h(l0X#+BUe*Ct-kPqgY<Z8;N*q0C6s@@o%hVS=FGSxqM#v$hQWy@I3
ztnv*qYcgn_VhOU2Bfg=LwH7U5bucOFVRDkY<rwE4|4pH614%ogeWBoWxow`VpC<is
zwh&$J9WXoCK7*u0?%l>g`^kFQSpn*vig#%Dk{xAQLfM=Mt3F3YmM+zI*3W+`vOA@n
zQ&9NDkq?JXR!ojaFiJbEUtW+u%iF8CkY)S-q3kQ8>g<v=33`wq!7UslxCD210t9!L
z;O_437Tn$4-3h@ZIKc_-!O6UQ-F@3;&AP)s;J`Y(?5bV$NL5e8{x`xuO7vy@0VJls
ze{nW+nwGmQe(2!Y_H5Lh)snFxa9!J7)H{CCpZzn_jQxkbFa}2)tSJ^GO;++5q1W!?
z6hHG}3Dsz>zm>(WoiOM5P11B7yMw!nwGPmt9TFVE^Aku)pJD|rdhB!tVhIfz_Kn}S
z1PaX^G1@lxRy$OIWNKLGH?i0kS18Ah2?r(IvX%3lK3K>|G0n@1T0ctPS&JeI<+SD{
z7!i&P$T0r(e|U(10I~Al^`hMI@(xoY3^a=qc`2d62$J|e7`SBR#-fpt$yf)5Q0^?i
zE)1xtLWH3b@l9lKCj6+@twwQa_u7dQ2l3myC1ZaQpq+u;ifvC<CwSaR_)NRd%~i?1
zay9AFg-%K*5tIgM0Y==s{K+A_o)Si(B1uq@tSB$vj^Re36y?z7TMpou6;OaCMp4_{
z-KA2Ud*A>iQW8lye~hhR=|wZs*Vujc=XOhnExJFcMr9ZZO%7ez4oQRqwN@ao-vB$*
z2yC*98(MzXJ4L^7H-P?G?JxvjS(FPzGqH`t=U^1TLm-K$v=JDCGV&U~UuN%Y7?H>M
zgy|;9I1Vps2RR{HKPMw9P=uPv1qYg4GW4x)1vPXw`n4fDa@$6CKdzlEx1|QRks|FA
zowoTAA&E$2oB`5SHL8HTC|k)tz=ZX(ZSb*~J*h+>7}J6vcjE<+2bFfDnU*oV?I9{@
zG>AO3xB>RQhmXMD{%WDWz9}d_EnTbberY4QUT(y{LRC_*tJK%WKTJwX32R05@&=IY
zIkh0E0*WJ<^l1jyeyCIh{KLK$Z1n$$p1%bVEZ&<AiVZ{lXSBr{Vh&`Mj|yFXHAW@~
zkc!pa8Sjc@b29#Pd>-WfO{Kam2c7viuemhtP~gAWW6|Zp&8v0(HY%zpv>=Y<pbU}9
zTsq#|`J2h3yW<kC)&s=}0S+`UT+T*Oqs*b>x+!><Mue`hIpyHGk&e~z<VyAfJmJ3C
z<HL(8e7B<U@L}|H^N-a}alLUE*jSU@9Oinvl8k~qs-Q%IC$-iB*|Zj4^KggK#;)+Q
z3py46S7?lJCm4TQL9Zh!n2R>2=B5>gFPz6Z9XL;>&PdAR9VxZ2zAQ~u&ybUWk|i(m
zbns_Yu(IRhO>=i=E>?6+5BB@_qY*<^9UH%@o7CjmPTO`XU{^;FgCAX|3q|R0nwpxX
z8yB*M5yLGwKSydHt#*1eYYg;}ywy=KS#{%WtjlwhP=aPvp8r@%;kz<DdRlK-8id*M
z8~`=%?dnO(x-eI-Va$xq@|>vQVx^C^TV-FCHr{>~q2yNJyR4~kPZ}*I#c6`Y+2U=@
zqP&Z#0A22(O8Bi<#2ZV<>t@iHTH8nglC#C9wlrV4P1wde=YjY6M>%diY`840%#CQF
zqwD-5{YjR?*-6<G?_}o$^h`pTj5Of~v4lSlcKnd{JPp)LR1aiqHK1QG3UiRgXs@xV
zhn@JenmazNR2UG@#=EpW>QE4{-zR_&Id_{WXyva&4wQ_=xR79v)E%)kUP>e#`)?o2
zv8!})aTYQK8D;T7O5h{GC>i`j&;>W4bVB!3a{UBX#E*)DYXyJ9pZ60k4|6gb#%1_z
z*pPYP&?0b#5NB;OtPnO5bvSved@>X!e+k6aDljrgMZDc|nqS6x4o(0G$_%mUoBkw_
z;m)RqYhl#iZiCKf<xt+hV}5BP>;e`UDrelodBMutZ4HD;eV8E=PdfmZA<l@z;%yW_
zt9o;DGn#-qk`$m1<wdyBMoUY3JcEfUek1fjA~$W-lsvF(pa10o1vAJY7d~1JeJ<ER
zFWP1xfCnLd6Ih{Jl<;=M85pyO)he&*+jP9vu3DOJu0X=qC8XAjf7auCGK6zAXT9^L
zbUI;^3re0lV$E;c{ha0Wcsa7}Wcj$1J`DRm0}AR5kMMQ?JI_klxt<cW)88=$BtmE*
zgFH&_K92A++fF1*@s_e5!9g#=HcoA_(-$VAzw5eR`U=aV_pp{<Vz9NgjKooG#UaSB
zfC#{cKGa;o{P^e6!o9j@N9I0$Z%h>IaB*{Nowk-19H^jYOZj0;OE6cSv^2L&;sg#h
zL{U=?^kGu1H+(xCvlq?u!=zS~4pKnB!7u1?&L0@Y<&Ki**loVJ+$7=H*3<__x|)(Q
zo;I{}l|^gqDAP~(iuW+gz6ORQ%1?kjLfx(C>uK8+0yTZ9l950x7<lGIqu)nHz?9}j
zU%pT`!ndF+m7zc7g?m_2@)vWYX<+oCMbHMNH#7IvMh|813MT~#ag-X%6<Su6HU35m
z#mf|+llC7FN4#_Gm)9x8>PVx`q=$LFGsX$Z>8e3vq$a%F?dk}gXxslXbAYN^x1Up%
z%`7J%r<d$}bZO$XiD$ljDfi_d%Tg+XP0-44RuMz8K66{pmR7s-&0zRj2uQW_Im8V$
zfgq-s6d;qKriO=|6o+nvUfIs{4miF{^(!SNUXi{+KLWaFHHr_y>b95_bbMV28<pFu
z&2ruW3zU?-ewHwz{FKAJUi26*4Q)9dU7IZ^3g~lH`d~60@B3Y7>=8Na2GZ=C#uzYU
zQE{=Nv~=Xd8`W5ReYM2HDB^6D1L3=wPYjLYRg(54vlG%coL3wZyr5|C-ICjz0Q*cf
zMR^8RR%LM-WkHK!kf}Wh*5*b$!I{8mu!Dh#=_ey2qw0$~n(yf?eqG46bW6Ca*%rb+
zyqUV0UshY}xFl?kkfBPe^YZ$_*`e^+tqE-Xx2v?<$EYi7R2)U1tKOW<ETuaOr_SLU
zkZZMnPWdPpr61`P$=P9JQBTUTMYvKm9(p_XMLWw9=I@2nKk6w(Ki`)Wcujd*9!wK~
zLyXsxy@5d@*TfzoHlCJ;wK9zaT;wy;n=b4#RVKRJL6!Ji%FXrRiZ^jW%a_9xDZi!;
zf(?H)$Z0SoqTT_>hyDlu79IA|O!y&#zxvWUNWZptQVeElMKlcId~~WvABxXeIl*<F
zecp1W9PMH#ChthgN$Sk=yXrYL(nh9dBzkkF!#8lS(o1G?W!}8Wtd78EKiwMqiKQbT
zX^gErZ(eKl{p&OEim}6R*2cHg-VfK(Is_HP!9(OK-DbO@Uq2R}s%frBL}1D62W7$*
z8u$Y{t6P3q37f$X-rbs~+1`j^5TF%FBulx~LS^*C>J=us`ePI2hJ#4RPUpd-Sk}i{
zIJA>|LKoY!rMwL?R0{7`+CEY74;dFKqSDA_?IdrMFy>1vum^;N$yHfeSQcF)VmVlO
zQ)`Pive+Atm+P}p&KRv-Fd;ZwG}HS)qvPV!l$91%Wr-OTD9CunEerX*b7E=?c}fLS
zvDt!Ffo;Jmn?BD+x|KCR)5J{Z=UbzO=#L&PM#HoCX4gI)KKh0D_fA5ub<7+EaD@Bu
z-+T@%%F<F;xp^q&e=fDRh}>786z+*)@~+t)j-e^+pD$NkF(y>8v-OHV5!x`v|C*Ti
zYCCUy@Ed`zTSH{%*bsVm(-h!Z6_UOVh<Y@Q#B8pdlaWv6VMW^*ybeCOFE~dylTlE(
z90V|gm6bpl@mTRT!XNmyasyHBkTp~eY!^Pl{dFRs0|$;@Znbw<{l_eTR5$O<=oQCr
zR>?XEU+s|3a|y;~wR{b2?~!R`?5VfB%*d&xXtAwx*2Yy&UV-z^uPaQyb2wI)w?D5p
zw6@#tyoT?;BD5c;KpSrFiMBWT8RcyWOdAS4|0+L&!H_USRv(^nbfAs%H%4sB_F+6?
zp$9^Bx;Bp>1He-j(8vTFQg>nSuh@uf87k$|vG#5-Zh_b$<9bM2ZstAiz~B>Ixl;VL
zH<2SHS(ehH_sbjl`%N9Z;N%eq6>n#b3}X`$?3%}NJ@@CEDEbR(#y_oxWgi;M=fyi}
zb}UtGZ9f82Qk~Q{NS&EM-@R|F8V4N^bhPecmVY{2r+nw*oAUi+>cz7?V_fzpWT7Iz
zKXd)JlFrk&?HCR{Ie8wxCdb6~qp)P94z3|+kxbd-<}(-yJ{6K%0rB=L9BdzJbm{go
zl@r58$r9sYy7bAzwBFNJ<DcRn-#}kccN~mRo>H#+5-ut+R2&shhUtM)>kSH0KDt$L
z@D2{@F&RmQsRfS8ounZU>>JnO5LH!z3Yx9<h4xMa_$!h~A)ky1G}|1hc!7QO+N&GL
z?2g{Q>$9oq)__e%<yyPuTi6(=*tBW_`xy?%&xfkrd4S5-V~rIRg~)9OjmfUxp`(9O
z4j~2Xo;ut?pMt)%*30r)gtLUlVDo#l(wDtkWt=mSWu8X(6#tJA+fGhST=%hSS>Z<z
zccw?DPn%DDm|R*eC?<+$&CkCehSq?^L?v3f>4PZ?X%v`>%$<S%nV~lQA=Yuv*TZjN
zJU`Ce!!l~QgHQg-Qv#^x@Q`xo{!F<g=nv4cR3iWA6FCY&0&caPZ>iB_g*FyjlV_(Z
zZ4`!{$`8)>R4HlM!jh2iOA5Qf=LtwlTEDKjUi58;Iq$<Er{R=xZ-x;ZXjL4O$#&hS
z6t^?VxX&5uJuX{R(Wln_N=Z+*Ag_JPt&GBr;<V(V*u&f5u5GeqEkwZ;n(8bm+rU|2
zYV*CG3F1@!F>+R^6Nk^*7tG+i$dog*me)R5=+7%zqz?}qaEQ44+F2_@0n;%mQjQ0h
z;Ii4xk~7C!s(ta-zriopUqDzGiuYzt@eodR1pN4lMkL0^=cT2jrj{lm>jL*t?#vEf
zGZcNxMZjxq)e6H0=px|*d1!G2!!EvRT3@t1VbZ9mK@R~`#>2Rc_w24=0!6mxjKb<w
zo1Sco;V?1{=Q5K2UMU+TgF%OYAnMAiH&}`No5>BzZzl-l@Ap^x<-hq~?zXRguS~?O
zxgW;5A#ZK*cqsNV%50rfNo!sGYHv47lDNI=I^EXRh{^0~z^|$@8BZ%L8-_g7eYwQe
z==Sau?SOrA8N&aRt6+X&f&U@<Kf`+twa0;FUHQWDEHMSgoG$VAzXt#RqypEd9u9IQ
z|FIOVM<J=KR)7CKl6h~LZ~Dq&rbYk@IVeBWXQ9^V1}z#hnp4vvuanFG595~`4uK{5
zDjG;rm6H=#T3QlrES;ej+(-m(nEoQefDMf1_+SO@hWHKMcp6%^oGdkqoTL7$Mz{s_
zSe>^y9sR=pc?bK7N;SN*Xr5OYFhk{Vzb+w>T=TpdpIiK;bQeUD?+kOiE*cA71I%kd
zDs$N{*TwWZL+9tV)gw_w)Oqx%R{r)xNJeA12E);WiZX&fr7`<@Ewc%Ax+;7=Rs{eX
zhUU!coHMOOuTd%K=~bvc>hQ+FjMpCMWR#Y{qd++qVQ!s7->^=kI|t}lnS4)XXwGA|
zUM<<9ish973bKzbaAZhACI6K*aX=gW@1Gjrd*w-qHUG+(|G-cFcI^jKLB9CO-dYI~
z$6?^%PM*eRM#Mz#aY<!xWMdMbQ_)*d)37xusIesUF2XcsXLleY&(6|~v!S+ZM{`&3
z%G)&L09=|L@rLQ4k}VQps@Y&WwAuxQ`D!bR!Km_>sG}2HxT7B$JO=-f3PRX-`)@_g
z?jsQ_#CDkxC(%QfRmRt-v)K>N0ezIthx=4aUW^w})gfs+HNfe}Fa!B6-d@jsrr8~e
zpl>Vrbc;g3p*Ls-nS;qV1_`j9DThbETJcrUd1SKE(NU>#@uG4QW*)aoBbq4W6p{9l
z5=ufVt3OBGFW(VXU|0kZ%?UIZXQfp&G|HSe_Z}j2pYq%!f&@Q40Sf@7Ci(yH<i-T(
z1M_xO=X1{FDjJwuSj5xM>yMJP-`i}t_kB-iTAj@(JIcw+6KZ7=_n6>&wEUDgWvL5n
zwdB1TV@4Pz0?YtEh-YaaR?CE^2O9<kMA~kCXpU1Rp9AGtg;%?U4*<Eb7zEnzBl%rM
zTC)#DYqtxQUC&w9$AA~wR%Qx6Q86*i@Get4+6KH8Zr>bTpU80yvv^&Xd1B9ZJo72z
zKSE{-9a5te?ckh;j=s!8NILpI;eX)5`#6C1cQ{CirqRQUpPccqX34YLSAc8jR4eD>
z_6J%J5<4^&gN`K~&))vNqO9zM?U8?jDk_dGv<7vCR96Wltr@KHneKeyL<=sv{7n2=
z$(;l_7goo8<pfJbSBl$riya~i*)Rf+Uk5ZLjYU0N>sIU0N}Ks#)DF^V94c#6{k(r<
zyMMEx;u$ZcSLrz2S86o5YfrvGV3#BVLQIFa2G};S>y8)pN~6=LewVX>zCa+$s`lKa
zQQ<6CamwVc4Cn{TX=;7~M+5~0P22c9YCbG<zlh3B1!!zzcb&sT1i}gBmRh^q+3tHm
zQ-|NKxe$2)0zauzG-K=KhA?vJlpNI8q)P>uGTDHYl?miB3L+FOx2F>V6>}nWL{A%V
z&>28qV?-q=gb578e<~!A1_rztmt_)pU84zly>rrXS#$a-v;%AiY%3o%8P@T<5cN-c
z56bMpD40g!yYuCHJZ6@Xl`R4$`;@sVsp;x|2Hq)Oc{@eNgTi!a2l8vf+IG^kf?<bT
zAeW)}v@wb+b&{-QA0|37s5T2bL#kD7$Rpf)0VoSdJAsxL`tl%8G{SVL&RB&nb9goF
zbW*UY<CRDoPh*veLl+U`p2<(`uHJlUz<+MP7{XVc2kULQdjM|Exeg})(?(m5g6*q`
zwT#x!K&NFn16C9YV89$;4Gf38cMoki-2FA34;N+2gX;B_>ECbIU|2}k(}AlZXGJ>b
z;aoeNU@e-4#Ljyn9O0_C8SsB)4>^#Q$EipeKTT?0e*U~a?douECO#G|z$a01aHyU1
zC)qeTu>v2Zq99rUJ-hSW<jlaBNv~4}b2Mwfi$hI>g&#+BUo(Yhj7jTiusP95P$2B3
z28`sIS5<EB0#LIuPc=s&o>9RUU=VGgj^AZ1Kd>%R83jYFCI*I%7B(7KyIJa_cL96h
znmPzc{SbUP<z1o&s8c=4x=>3Lsky(AO*kXO5D7=`!J6Ax6(ufV%T2&dmgEDNI%8u)
zgPn)ruR-jEGLA$-JiNY(N`&<DbGc{~d8^=eLx8KWv}3iD=PS>VCqjf|&Lt^8by5&m
z&7GPS`u2d$Z7gylVQ5~<h+kwhrdzx1m6bB{#6F%8zNK5Fhf!UFDpK5DsJ;dyps-#>
zX>(lW?@fkiR1Ot)Qw6CiIDR=L)8VTnr2VZ(2^)*rI++xfiS=U%6a;f}HKO7kjVCtG
zxv;HF24e)o9PUAFWbdFS2%yjHL;!1+dl$6eJ^&9Y^SeODTJKL}o=*3h6P-2@d7ca2
z@SrHHyL4@nHKk|z9x=FJ4#da5yCFbkBEm}kN~@mdUETRRP2q=TyK^N8u8=(PsXs6#
z4EAPrcZ(BecPk}xlT#-Fd{O1Q&s{Q@OMsJgFE}#b0W*Q7g}c(qJk%aa!7AGB{)i5D
zJN^?8=ECoM>TucAhNTX@OAYq^vqQnpnEya{3SZr&WJ_Hgz`pJ(+&Swf7wRGti*@19
zT&dYS1FUJa5Z(5|3RKH*i2T%nz3w<G^TQ7MBl-DzlYI@s@Cuyv<&&#$Od1gX?0FaB
zuADC3@^e4Yi(K3rkCjuPfJwebNNGi96!g8>scYwdhPZf4v#63^09Wk-J22y`TDA}#
z_Sn14;)v{?&7tnqr2kO|{+%}X#Q^DA-1mU64pZyBUAD6RbLK<$e`M9aN{yZzQeSKy
z+OK+X(3-T18$l?CRCfnnEJ$XJn=sRk;&A>XSUgUAo%6dwNzf6WKGqXtBJcWvN@ezE
zFSz(G{mDvioxD4%S8|W0F60h8fEn6zBvgmJ{xpYEUwIrj3&%8aLBZQto>^;7!}1bJ
z1W}r<Z()K4e;Juy90y^q@59U*QlGv8GeF{jVL%<v=RR%8z_!4;B3T0Uh3J+rGcd%|
z)zwuz`Sorpsiv7EWqVH~C9>@syp}}d87}zqi5yARK=XKm!1$9CqA)21XP*;BQnlUV
z%1cHe5B#wQl)<B~yiwI=ahlCCqmJ8wG`HK4uh2Khl8CcbX)ru1jbNiZjj8!()4rv$
zDfTd?Leb93X}FZ_)+>2?ZFe4?bckNAcc|}kSjx^K{*le|uI5WsneZQKK94GP<xd(w
zs=$E;6g6dUBe2$RvnU$PTuR+_ZN@LhYEl;>#k*dq_-lY@TJ(<fk1@AJ8ny3Yx_ub8
zZ?`B;tzyuptn|7m*DW+0jxL2EsYjYa3}S0ZSZ}gQ2QF-%>wF?AgCw_TN1QWUm!Dqj
zm>3w2RLw0dDW~0kykC4vM3eHbQZRiReghY0X-v9fhX)rWl29&6c-(1llkn21h3;dT
za*PMw?d7$d7ri@I^!2GB@|oN(O?mk^`ibSd4q%++bm#4Q`8sI@6v32Jn%(K<>5OYY
zvWJ^{cl*We(NWL9cci1Hlog++ZK79g*op<}_EBkZmcnVqI1gx>5MoEQ-L4kcI{5IT
zxvOv;KkmmV!8TNB6h6CiDfWqIX4X2x*h`B3T>kjLGVj}UI^IV7vQY5k;nSCPG+0So
zgye^oDin_Am)maDKs`c}J=PVyU?&aBai+D|jm}4x?nlDSv?k`c8^G9DCQK>rBVd-S
zvi0v}9rPO;v>tJ}yWSe)9d_?0=o|i5>VN$!@xcTHv`Fs-634e0(SJ+meuBaR4D>0Q
zffxOdU)M<@i4t)<41vL)5ejmC-^&28uqfYv5Q&zfU@Ihjc@4^-h~)*-;_`A?BI+jj
zC;ZiOeL=`Tp`BTTXmCQV7OkV{t@9U7xduV^5)M5^6f%(%Ym|ooS4t)l{zKm~C@d);
zgUj!PXwn^1kdv3OxVjDI5i3!m@&mI8c3~0EXeb%T21;v6lD^FBc|{Y@MPVc)3L>j0
zI5x}yI>QzccGwz=)3x%KoMjl8;j%J!6{CvHHUo85^3>7MvQ$UT_#<Ay!ovCM0rYaS
z^$s@z`o`6D!9ldIEN;ZCN(A|V6`W;H2^=;jRv5V1qx+Z8Nd&7R#MAH?D;d?xQG@I_
z5}9gB?`daGA#<f!Fy2b>zXDhv&q0CY(s_0Z{MFRdI*<HHjc1MYNe}mMj1HOb5Io6C
z>H@aV<(q7agn6fz!O<BK+t#jvyWA5_sw;C=nkAY>x<}%SfLO-d`joD9rV_r62B?2b
zARt|vfZe-!?(g|+Hw3U1Rt})wWPQrz35{_(mp+XWv?3%**&rpWw6xyq=Y~BGaOYVS
z-M;T+4|ajw35w?)DRd6LO|aV@DiwAeV&ku>`^1l9=UOE5`Lim0`9(#{ZStu^c$aws
zyX#G1m7*J=p7a(JV~2~7`nv&M8>F+CJ2{lI60cV0I3oJR7$Saas(0>+Ha@f0#cRMy
zf<wF^r;QWV)t|pf_*eb6|G=LAfj?c~h~8WcgM-oq(;5G3i#CP%#wI(aeUHGK(N*Q;
ze$uBZYc`i8`c@v`mAbDuDCw~Lw{v=Elm7K*fFhq5lrkXZsGfk&S}Sk!C}ryyf))|c
zhD_k_6V49RiTLetS$UPhqb=GGd<O>c{Syl}uI^^djyZqY(#PDZ`+LsENr`ew{yz{*
zNmHn}7#Jgn46+{>0U{Ba<H~oV<Sk-_nVH#WB`((J>e2MU^^eZ?u^hE65kYJzs06GE
z6P2h0+843Bf_h-Ik(PU71l%}5nZb6-v%(d)I_l&)@$5(5@JzdWh0rnYYaXuYJwo~3
zLR5e^{m)?g*GQVMg`QyX-)8W>Ky2hg$HguE(E>Sne#Nl%pIia(OY{~=KkDC~I65As
zucD{~8TDloq2tt!YdO*pu0J6(&T*}Y{dAaAR#IJ%u<7m;rK+ybYE?R^*1Scd`N(1V
zaE)YcYFe~ZKU|OB1{s9-TT^5CZb526x7%OG(~gdYaj4W0IV3@Aadou}6c5-O9lw3J
zT9R2s#^bandlgdTxR+q+`1j>gQ6?()5LA|V$*GFqoWN2snr%S>y4}LVC$F;89rb-h
zHEGBsq9sY7j>7tBu6O_i8BmgmiN}mpq4dnXq*Xi;qCwTSmQ)Uiu7WJ=N&CR`c?_qp
z$_SsUzOBw0`~)64$>3j)3<m*((Rn4TV(0m_Pi#CV_U>X%A&z-t903$olu}Bg%sWW*
zqA(H#72TrrKP~^iADF*?mhm1WkOIjcs?`&?;p(2DdJyzq*LX%R2s%jg73^6;DJE){
za*pM1Hymmz+NnXLUTHQ_G&ZJNv%d;z@DgV`cut~8rpnvi>=!-$%^A8T8&sm}>RPg#
z%}5&Y?wx_z{)CpYj;Cj2I0`&`QALH(=$J%N(H@q$HKckRDE!>x_c1Z$wXw0WI`nX4
z(1M)g?=N_~ZnfsR0&<{6Movab+BE7*X9WRJJ01vG*?8l#o-N0G(w;m3Sv1-$7r<XB
zyAvQr;YnhOyO5617cr;WF6C$)mxAv9A}V~r8~y?gOMGSDb%f>7>2s%PyoKBt){pHy
z!Ornm>&2_W%}Rv1htJh0BA5zA|MeLD{qbc4gL)8gLD9>B8zphEmH&J-5<YaFp^(|>
z;I^^{duLk=L8Z2GbFhp_K`xN`z@R&bH-CJ=DnkbL#58Es{-o_jLqB?VdI!R;N;ecs
zxZlyRd{MBn;@y4EC5BF3K+?KgU23K$+Rs)vhV!0JtdyOcJURyeDafg!a|;U4o|0DK
zW&gtEi>IdaFi~bmCE`iNhZNM+SqFz}g$!+TNbto(L{Pl}$WR64b3?O&+O<S^=84t#
z>I9p46|WFuK2vECWx7y4dgb-F)9##{ya>Fy17-O9drf=`rH2vMhUdWf?w&o*WNhtn
zh*y~H^^Z^kVc6WgE&o{;VcHFGi4vWMUYU7SpEMHUmvBO-)Op5QwtVBCcI&0qfbrqq
zu;>3ii^YtPFE1~ntgJk?e!n=5LD6rH&FMHeQqt1WWVdI@v;m^sZ!@~5B{iRtmMM@r
zW<ma9b98e(lX%wq4+MW22Y-@UWC{YxS9vQ=hKaCyXulCO{Y17wNy=~Q3KG#xxiUBz
z4*FP8qoMiB;X^tJ_~<hRrUNCE2oVUIaXSsXM^|kpS9+1W8~oJFRp0N&UJ886KH;|w
zc;GW`W?&%f-<MS61V<Yud!$>96h_E|17}R3t>MVk8V2*2;piO$n!hhM<m`kDMQpxy
z<To$P1tVtt)4)&HwyR6eLucP&B%}0b50iN<Ir|E^WBA&n09ujh%_VdK@jW7k4K27w
z7ma|o(Ce(TGLWSNT|}az9)Q40FJ;)rIf;1sJJJNG*W2X_=TC$QDE2rOekUIPEGVmB
z;5}4eeK2neh)!V%3y+A<o<SNU+~>p%r%PZ1(D|NJU*G)F@Mxd&E5W0~iyM@;8rlkR
z|2&}oevbc<2KYdF&!d~RHSD#hjXzj+;G^Z`<sAW6b$$E@W#P-4U~(ix;mXR&(UYa$
zCo5Lid-NUWLMnKYhrf@lR+^%KukFWw*%^rg5@T}9K<in~=_~zmI$g)#0}}9ZT#{j?
zA|pwWx-0|c;K^dUtt)XmxWPtEgcmnq!FB%GLAI%rz#}3-CBOoxD!~e@X<3;Y*@YlJ
zTJI4|Rx8OilFyg~l<5BXcFqsn$dKx2<`1pgN?|fLbV9Z)H77Q<1HU97@8P~Sx3_54
zWlPP)@IMp6kt*iRdq$HV|J;#sJ*ZOme(^qhA0LZ1`(fz~IhwQhAwgtqaw4PuOtF)f
z^&7uxe&}JzD}|*-i<*bGCjN$wo-K5I6sb8Mpoi&&HApN`ao7X+`Sc9x+r574&^Knm
zLW^I2CwsaPDRAI$7dL`4tK}B<`jYCZJ38Lzqr(4fH2(Ap_I}pTD*I!&Yl4VbQNk+}
z_kVr%|MkV5b0L8%D5vreo?b=(YZ;1hY0H_58p66v&@-DzWex!*s|ro>-ewqBr<rYS
zZ7o`9wBXKvK!Pl64+;+cox(s%JI0%Si~<QsmGF*|m`-KB!9_T0fi;-1)^Llnl=?YN
z8!G>JYciabR7_OC)4o9g*5b>hva%#E=C0Cp2|d<(!n{jj8(TG0Wrwc1{CVo`g-n7i
z_{lcg4uuelFZSE`K2NTp%_?c^a-b0o97>}Q)mGqnGbfvrA@|ccz3`nSJq~4ON~f)c
zb_|MBmo}zKve8<zVQ6U)t=nZ#$IO>?`NeWL**%<d)k3W<U-scG|5j;IMjS$uC<p4p
zX3()Kd$LepfYN1w9Vw-;fq%35hs^)=!+Xt7Nbev~e?YLK@-N0xaOB0AIs)TzcL7w+
z$*FO9a%3cDZcfQL080RjuVdQ_)9_^+kL=9g<mBZ2yf6YHVtWBQX*3bPY-6KrogXfW
z=)2lpalHqHVtdU`!kX1{Y2*yj^?2<r`M2h}Dn;)h)g6XVL$REHEYFD%b=D=1URtyf
z!1@^<+%Qv;Gxpu6h4^ESq^$g$$aNOK4d<*%HMXGy$JU?V1c`^#eOf%soywRkdMgJp
zzNS;~ps20ovwUqq=~&QIG2N#U_Yy3WZ@CPix(p8J&uIhQ@Y&F%DtqduDC*w-j9UNV
zu!kF1tJ=FG_M~T<PXjFu6LeEt+Z2S%2(PpfdBsFYX{5$8dPx5LHwLMkYt5`Ecef6x
z_W~murBvrX+WCKq0so!Ke*LUQ7=pg6(T|;DM>Qx0Sb6knlkqDs)c{5lz`()HzN$YY
zqJbiJPe0k#%ZnF4Cni2jtYi{$JIe_Q`Za(1um(XAo5<%cVCi?Vlv3QZ{sfQkwqR_@
zP)VU>&$7boH+j0MS<W)YnFBhNm3^KR$|VfQDoNBy+8Qx8QawM3WZR8>GVjlm8S`dK
zQ(yxQSMs;0H-0bSIZ(!BOu#fumheX|YSQQpDYV}Q>2OYLOUUTZ$ey%ULjoDpsIvkO
zm{+`ztj2HqAy+OO5-KP5nc`a5i_VA(D`HnP6KWSU2go}AzYf=5;X3634R!@Na1a2y
z<T$S3qxJOL67ZdxbMw@+w4{L%BG5lqfSmwyQ&Tx8-+!|R>n+bX&XcyF@z&KV_Lde~
z%Vs1SwAQTF6IU1SbaL_C&cI`}+AY9^9Q1rqRaohgxo_BNTEZYCl69cZ62RA4tsI5B
zM=KD=k%+O#Uf&e*2JWfYp}O#G&g}F8iD=GjECr`h2g?|P<ZyW{9Yt+KLVhL5(gbu$
zGp!8!R#5y7qY4G2{I>*RhEd;LYZ?;Z=9D79|MU%AOhHKtXI_<^#`8O3J9V;H3{o*;
zg)f_dBL)l%oSckXz5+fC&(ypqZD=~!)f~A0lmt;_W&Gcf;HNkusIEKzNas4a>@U0@
zNi-FD&OQEGmvuzVP?G!9S;(h6goFTJqwHT+X=`A#z=lq`JGweubv}6SN3CvbN4RUr
zD<(&KW8~-gp2;Le<vGBBtSW}wIY#HJZskWS3%d^?>ANBW!84|O*>;|Mq^{B`S1o?-
zTD@HgDx<85ZNam}6r3wA9kPXRW|m`juA-wseI%p4qa@1)ztIY>jS2L|qL1Z{nKc#q
z$QrXi-(zWHGvjj}aCn*g;RmdgzMasIR^>dDk=Jw3WU#Tu2`wt~XpIF_@Nh9lKe7pF
z54Rv+si|WQdm7_#AIxSNeJP2^Jx!D(O_Itbk-2K+8QpH=E);5M8rJf42)i%zt2Vr@
z*YlxrVu!W$61n8CWuJ4&>%58pU2%*o)rQ5*%`6U`=6-^I1RHG==)Z7eX$lre;axr$
z5d31(tMXUA;xx4~xSd(U86uy^X4`=7cXi1Q$wB(HzW)-*I|o%LIaY0#pGWCiJx|?L
z6oH~zdW1ggWku?m^(kw_&_tSrm9;?uzI}s!@u!pbZ{yCpJBTYs=7o?pA=fOJy%coF
z0I1TUhAjI#9YdE&WH!EEF1m*Uopxh)aTp1xxm65slMXmO$`vG<iHhqdp74X$b5vo8
zBMW$YS~xXAI;-5{C`5CD+n;s!O)>o3Xj9Ibmp5LXL{Q9&TV&%<4B1$CQur53a)n+#
z4oq)>GfWnzJ3n}4I(7<PJ0T0DmZ0!^`Sds`*cYUoOV4KNNA`|8(q?0CxINi^NV@QP
z<JGgO8?QP~*R_^(a)7gEF(#N|!T27}T*I}hQrW=~e|7C~N-m`TYCFS9hIsm7)x`%P
zN)jyY0QHmo4%gS_S2Wv8OGq=FQxf&hMK@JB89RFA{WHbK+n+wn<vR<rG}RTVkDtDd
z<s2VFdQX<^*g5!Hw;ez>>MAKsoN0_dkt|INW)|%2sW?5&e8QfZ{oE}B4_|wzCL%)F
z*u*vWs1A-P_l4++i6M}Ti;HV;In$wLaG^GX4H8$BGlk}lX`GRKNum2lrWMp$TSf#3
z!de=b-G1C-40+M;*D2nd1?I~XqJWU{em7x_s@23J+js}bvMrSUZftb(_O64GBl&mY
z;Q!SR2SY=uMf9O~3OsSC@`Z?8x&I8EnvyjLZizbO_3r-whvg=?=zH=r!=}B(dI6jE
z$7dc2Wx_roFBv$=DS9iLZGjBQGusc()89Sd4`WY*2T#YV&x#SdS%yh4Nyf)^ajB_5
z?<}(KrO|p<uimdI_7xP9iBdzr%b*ibeAGubB8ep-pRlR574$~kE~1kx9=ADGh330u
zszqVyIYz9T%Qcjy?)ViA43y<VpOJ{8{^{*ljwsI*p*%ZrI8yvwlv@u|w6Wo$ke6PB
zCzjBWmy5TFgW~i8%)E$3;GtQpjv~Q!MW4MRWZicG{Ssx!gsT<a{SqS6w3xo@iXR>M
zHou-Beer|a8+0{3?|DhEEx)M&wAO~ynqxD9C&idduFId+s6*=Z_zPS5$xiDw(GAw`
zlPR1UyXsfXbYB`Un;goK>sIbKzd<XU2V>t-zKc%k1wnA5(x9AB8rW;nj;rlC5>_Yp
zKE0_MeegL^K`1)i$3JjqMvkW#a3Gwp5L@s&DK1B0!fjrRw1*E74Wjg1)$S3tb0SX;
zd2(z21o)fawh8uOcRJ6FiKSzsYG)`T?=%(%_UED(Ej}EJf+NF9@kkpm_a|5=Tm2)O
zPw%yj#B(GiqH;g*Alu4HL-pe9!|uN^66a2DbFJV~JsoZ%g*DD%6+>%JKhngkwHnQ<
zRdMF^@l9#pUelskCpc0eg9F}PECUCv9NHLaRk`IrktS5Dx}gPm<QIc@51uOJ>u(KR
z(Yz&(6RoZtg?;7U2MBoG1n~&J!~>**y*pXPf#<rVoz9*X%lZeZQ+b@v;5wAVD1L5r
zw0glZm<#Xw%6jcGq3n8B9k+XS{E9n8zt6fy86MxDvFo}{p+{amu6F;p8b)*$xvm+}
zYuku$piFE&Wpg%vH?9#^YU{^U(tcwSEvD}Nes*{7jK)x?#-vVFLL~O#9FoY$w4e9O
za_fP4)q>RGpfri4eY@-f7u;sXhA`SQZQ&72lOpz&IF5AUFwd6kDXg2_dmjj<uVInP
zAKAC>e}UU87bd+lUmSXzqZi!V+X=&3e=nQS-<t6#Zm3&5DC}#MYmePFS+-wOp`%mU
zcr2KFYH#482gIIAam@)&ce;SEbF#J<gO@rW@7=JxhXwPA`!f*L0uq!znYn)EX52sj
zy8Mn^re|S+4=|8Z3*AkCe^rx`{WitjE;1%2H#Qdh0;8y+!esn~tbBVonsdeN`Gy9N
zY?>V&;-yaE4C&6nOhpqGHUQW)0t(8$r#e<Iqv0m2QhaBs*k_%w$=}Eb8*I&gK^hu2
z{hgVA;~$0>lrj!=X9Dl3dGQGGSmUXqx%kOO$HtV1I)U<)yPe$U|07#qLZWW=w1G#W
zqz3KO8rMxN<>XLh(%GW6wlfjOY=uuG3rT^|>`CI*B(cQlX=x>8W#PyK8={jPJozGz
z8vu)*glI_sw0wm#GYSuYdO$sCAPHJOThqWRs7HzXq_<`y^Q!cgUQ+P<jUQ~2$unBx
z&3tz1J}0~?ST=2EXy96{a0h!3T7vT2PXOi;a`{c2Fqr15kf|4;>88>$LJv+EjH)C?
zK3p=mX`o^fC`781kn?WGTF$H=CGZ_;t$*rN@<bp!zYl+!&!AD6iBJZGLIS<TH`a-u
z2R0QGA&mxRZ$}otUp-fW#&W^4J7O6DJSw*4hPy1Nssb30_l`?%nGa5en>5_y$U(Nt
z@#@bAWGFjut-~zbgMiJX^!v3568+2NQW;Swl$dCwF=F|b!J6=&lq%T$_YkfABlUf`
z^pojU%;ighH?o>|hQSV-mE*r~KI41>BM7D<kZHvJC}Nhhnx&~ClSKWBb#*`MBv6Z1
zmabQmA2VW;C0tLKfL%C!?T}d@lHm|*miqt#%;75_m2^$#D{1$mv+T5`wm|gZx-?3f
z^j>rI=i0CECSXhho((amqcaWxT;<^-I!ma4rzCf*Ef1!W;w?NsLA%<-`HqjUg0|4s
z;2!@e70-gvrV<tv?SRc?-$RNjVN`EDhtv+|V?EsMN@uU%;tBYIO#yv7DPyjX2Wb07
z7o(-uz4hGMhkY6L>vXcLY6O%9HzFm$Leogl>Zpi*{YNM^b;{fWuCqpkzwSON$9#fW
zJBIiai*M(ZOHfkp-v9$ej7}zA8GjIA=WD<1<~<ke{o4rKn0|$NKG>@20BLB9hatXJ
zS#4-@5XB5CV89vq#gU!zsGz2ew!pgVXJIqUok=El+vZUp)2fz$FHe68-$P(XI8fdD
zG4}Ihr+07}!kv&jgKxF!7)?ro48EnOoQv*}NVgvN<5w&tMW8I}zlUjRVPklh(Q@C8
zAu4y=%f45YsU3;B%gK$zglF6rx$H>o6R|~IzR@z<yP7Ak`nsg(N|ntmV?E%c=vX2Y
zH9sc_U-6D-$nf{em>~EK0J5IbarE5Eb-8T3gtgK{WQTpsa_RCJDSW}*kE$Pu0$XjZ
zM|hAV+OoDze+WQv7Wk@TJ=WM#baDI+6T52J-yv+f{Qc7L#Wn;HOa3s)p;WZoScx?G
z^SmNPIkEq>>O|mh?1-y*)e+ezw!~dU(}t_}Awq<a4svo3m>B0*0*Vm|x_~`U5Rly}
zsi;)WT@OdgC{V|2ZW<;kZ2vx4su;y7j~*TnnVMJ4F3%FoIRzPucO?4(QeCMkxy6tf
zJ^<Rw417dCsl>n<FYEARhUu-%Od<!MK6!`AdLmZQCHfN)B0TE5?Qnpr@u`errS>xN
zq{g=MS0+57wA=DTu$*Y_Y;uQ|dzbMJ8V}#2D?2+rShDahobSJoiGOp&0xz*0MFp0C
z!&XoB_lY)!&GiK#V&<X+ias^?t+oJdb?1t4gzV8ZSWHY@e0H(c5Ky^>uDc)6#SBPb
z1O{<ffhEYv$!B)HB>-#q8XfP>^}QsTphA5Q3|LH77$Z;@6_dbk1u~IfFO}83Z>x|!
zs3&=<v@n?DVVXR&_c>CWyvb!axCf;WnC8e-V&}+MV!LP5qu#>K3%7I!^>$KV4b|pU
zza7AkX?f$<Gci?to3+|o1(!LHA$$yb{lt(_81Ii!rfsmYD@qWmC@1j{i5V}wkR(Uy
z@1bb*ie`X8TsHh&GMix_+eIuLUgcI1QFZW=X&ugTR}|)GgZ>3kAY)4->-LS^t(ETK
zoUydQ2a#A7eQ{^(*&p*u^ayftE<C_Y*VVOY0RLa|pSpslF){yS)ZEGOv$GaOJr`xv
zttRvM@+psDQaKR4grgOIHPif(9;4j3>VzOfB7)JJ8s+dQ7p<4Y%C2o0=KlD(*tx_Z
zFD8HhGDsd(TL6{sDU}9Sxws!|M=Z8v$~r+BQGqzIN)G^ID4|kJwQQqIu?IQ!z6r$6
z?})W1J?}(8sVKx22tM>X!NW8*t5wb=^q%mnPFnQ0yg7h92{qZm3XSP%lBqs!)Z#h2
zKL^ouIkzd0z@#Ds8fe`v7uA}lG<{YflrvK9tj64!nxsM;o-wf|BQAh~j~kK13!yoK
zQI(xu>RdK>|G1Hw`J++EH75g$5e+@q&1mw02lMwJhk)Ro)~~m{Xagz^U6QG>IeV}z
z?Cjghq*gE2#>akI72l%3cv~HMr-3IrE`eXQ__fEA<UWlXKb_2}Tcyod&0Qn=vmCme
zg`IqTI9-41RsrT&u#Z}`B7Wv6nKxNez7m)TMks9p3KgHjz_yQx1{b}4?J@?evLyxn
z$B2c-EhY=W_v$fFvG_kXJ&MgVpX=P{BY-NFc|F;oLEYL#e~fOK_qsM<w?eLcfy4&;
zQmf53EG?^|+5xr7n3vv`!C%2nGvZ1e_6l~c&<-WD$LQcWJz4|WDw5(kBj}NyuVSj|
zu)Y~%X3!<eir2x-+(CD1vdc1lG}z);yKBf+w$a#zN=_;>#bUCJviv(7JlC3@B_h8^
z@|~Y--1FE&^qJ0Z3-r{YLzU9-Wpf1+$}Aw$>R9f+`4RDJUUfmyt5cEnVVs?R52f?^
zJL#yC@lE&bx{4D)ff&wuYePH4v99L@=aZlMM=t=nP5k<`XjOfil-UXZlZCzC_$hU`
z7>X}VT%wsQ#Kb?REB$zw$!`NSivCRGK8;=sl}uRdY%&QlNgk{FJ74m@04zW5piT)f
zs(A=4Qhj3HNi+MI6B&tw-AAk-h_(Yvn)^~1`(;Hswt|+%FexbwuMwDywj&W9<y3|n
zh07ca_<hCBy1qyFu?5$C|E|6ku1q8tOTe49#&g-HEg%4q3Csq$e!7}$FNs~mAeQG7
z5GZHQD|sf`_s}-LYp0(J>|G-y!>?w(jYTc^go6>1lLm)BUgqmQ-5H3vnR5!PZ;n<B
zyZekZ+>6XuE4R`&`B~X2NMZU#=6-H@wMfg|ob^NIgcstw4084@9EmS-wgDdE4R9h5
zGVzX+5niZ;P2FpfLUU%)&7F3Jd9-<p#N_R%JJb~pHYWB)_Haw+^o6Xw^2zhbRz61=
z%bQHtqq3(vVhwO)pFUgXKhEgr?ob)`C6Qm`^2AaK@Xe2=f;(C83lw>q;;_i*U7+L#
zqGO@h7t?IpH-8?hWYm77GqK3Emqf5f9-&x6BZx!cNZSz`5Ui#DDOWGDs)w(&WxjH8
zN=&Gv*}(4Old7-=ssAzjTZTr`xOC`|Jo>dG56BP9(MMt+<RxnhZB`u%FScwO<(CqA
zgd5y8ZlO}1?FWYbAUkWHdX8j3I-&|LUq&MszxINsVgG(YQBfghKadg7O5wlO^tfzG
zXj)DKEabj^ky|onRT<+4KLW1G<&Y4D*e&s>^!&8+(SkECeC;r<&J%Htn0_?LIO-L7
za;3EJmJ~SWdUr-8FSvezkIZL8CFt9|k_AppdNmh<mCvQKo%|Cz9DfYDpnK7<CU2z@
zHbN}~G#dq_egN+0y~e6-FJAE@`}URS?3L1~P!Fy>LMs>^)d{s9$8lsU3!Ic*UnmYR
zp}hc4ac7IOGb8RDfwOSbqcR>%zdsUEf5^Ls_rWXx@N5W16ee!t9+WINs?>j(Hy`9)
z|L#Q0o=01fBqWL}B447MErn<_Ka?{CBA;lQk@OrNdIVh^_cM4)EA1p`YOcC{MnZ^D
zIZ*tfD=p5iEy~c{8nOJ`M@hz|wQFVJE0h;NKv#v}0SLsC>;*fm*N_W;w-|jx8l9lm
zQ_wFYVchbf;^9eLQy@|qMt^6Z_FNme(bv}T#Ia^KY%HB;sbVzx^{dK_Lilx5)HrqI
z5!9J&TpX#|2Ya%U<?LCj?s#(goHPSI_WMVSr;y7CN=pCi@7Uarn5Z}dhp}{r-wE`#
z)~f>(9j#3e$JIR1F!zr2VSXE8;Jp|8Ag-<K91x%$ma!6?Y-;(J$C8Z&&_)3s%ZqmM
z_HE}HcVjgz+D4^?c>Z!#1AZR9uW1&C-=+tiw;8qDzbQxED@Eg$YW^<)V!vGAy3WHp
z!B>G6Z%K@fh)}F5A|)kVO45iW;Q_AtO2FPxMlVJ9>hM=q;lf@XOLzkl7s1e_MknjX
zk{TPEBN5B>c2%zXZYyFmsWG}A>*iH5nwU6X?dztGNHz?(Z04m&^od9zn7*r#Q}<n_
zbU+E^HnVjKFCiiDgV*k6Hgw*p=*~*kq}I|34=NLs7ozAc7WUmix%AgFjMV*R<y2_5
z4jRoTXR7kBrXc1&K9AmZ+-1k2#{R1ErCH!&vnpI6NV?+nIO5_<%^#c3B%ByB8GkNX
ziExx7bzt8>RKR+GP>t%Ud6|PBq>%9*`63i3Nq;H20$YZJO0f3UP&}Qxx3;Mx!SbVr
z=+{FEP}CZlhWuBR10fviK$&ebnbZJDc`!$s*|;NDq{A7aP&xf%vSv$Yh~F5fF0y^M
zzAQgW^W!=|eJURttZVPiK4-Kful)4V>IP(1`lkWZrKi|40%1xqPVE-xW&#aEZm>%T
z`xpf>x@m;1SoGC`un4=qAC{k>xM8WVSJ!iK_Kvt7G_&}`Un<<$j-Do3iFOYyq!-Zm
z+Z3ZThHsq9kA(S3&RX%6SPu|x7yXuQ_ei1F)_eQlcyB~A<*1^G&?`g7Td;1hh4CaS
z^-6CA-w!{-E&Ng=-xa(-S)kHVaxvNKSjpymsPwTkuERuM){`EnONYyZ^NYD!kJ^7X
zc66#TGAW0??^LFEwEdhK;Fw8SPC0D7`jyI`G}^*G*JIJTgLGm6TKp=5EZX?PT3qJg
z=|kF&K$Q%e&joG`J~?#%?361)!`=uIA6K<S`}gIQ`fDr01qNO|gXheHWn)?zII+uJ
zTN<sa%5%#6y$D>W8d>KRPD5ma#52)OOKE5<%yvhO!+!zdDlvV1;_I90$^t-aK>c@v
zra#Q=oZZeRiO|AK?#w_zEq*Ywj^i{Brml`o{tSZ#M`qL6ND=1u{StdN8@?g3Z@dL7
zoN~_^?kCBmjfJUr=G6BA`L-H&t?9qcvnsVg(W$AaU)!xbK_QZBz0Yr>!VE4AB1kx>
zFE95_q-`tmfsuJ~A`;iSF_?jWlW_dMIG6wVp1T;t5&d0nFlH|xO^TxLOlLAipi{3C
zDW!fjP+s3{$IvvQWP%POoWEvge{Od^$xCH6DeFHtIG~3f{_#Ua<>FTx#M+M^V&$sU
zMSvY;O(CFxMt93I1R^oA;YMs1!JK=U_ay7BTN^0biZ!mft1Q76woy#&eY*%7osUl`
zVy}EV-4D0MODwHtb9-R?tTD@6W&@&ly>wt)*EW|k=bX|4r*m%34?-XWR+;bRvGIDz
zB(3E3>g&m);d<o_t&@w`?Vd{&v*G4U#5Im&xM7*C46XLnW^S5XTHX(LNgnrkJDC+5
zV2rRW2T@MQZ}u`3LLXL5gnCZH!Yk9Dk*rS$gw9fnIuFal7p`3>;=*mc9Ya<fNGE%b
z>UT0`-H{$BzOijlUykm?GT%(;pYLXsqW>8n@`Vp3lNSOh`dU?z2tl4>T%>NakA0o>
z43osGr{*(MpwGP8hMUvB4XfF$><Qtt_t7HNWg3oTT03PTxQ_P->N8%8$fH1oqbC{)
zMSvt-N}|{IS|5jUed!s-;$X87Eqd@X1z{i95?Ql{JeWtbVfu`-Ed})(3Mn-dyA5P8
zj6YQwPQKjt%n}q_xx0UTgR2>{BEbi@Ov0V0Zzny;`he3E#fvI2-mo5QsCJ;LIXVDM
zc-=BsAIq?>5rerzz%e~>=r>(K@(m?aPRG*5V$TYnb>V$(ihQb)Vxmm$^aM&stah=D
zRiJ_)zUWY~y^7vX+1=KaS2Gs8r?zrl@#o2c<z;u35gTv^5h1UJP*@mgNl}yE&(gAa
zkD0G@k7lEZc89JS8t)pfw3Pnl?kwIOra1_sP??27S<TzBLpn%^S97uxDpN+52n6^n
z6>hjPUB6!9@D0%5&|)CtDmfhC>LsyECRfsm)+ZPk7zC@5I}27HOMEGsUp?Kbvw`Id
zc^jc0Z^m}?>WZ5HW9Z9yK@>oSPTKi}gO(;-|K=wAUzC|(kYkJhxVqAGI@Q^g{)q2>
zim%P)Cm$Z80W^SV$+Sjgv6#Ihp1=p@^E82?ZN2s?{q8_pMg|6X8XEwot4LqbInHp<
zAr7W2NFac0j?uW7N`F`6RKjks*};7qzn*BEES7+gp6UpVh=fohK?kh=gb~X`2_$HM
zI+T5rA*=Z*KOqz}gEmISe#jDfC1QJBFc%_fVAY$urn{9jg2ct&M4X#RZJBjwY2j2t
z+eN~1Q!FcEDIB1Yo_V4Wg}>z^V0uz1c;Rr|K;}%8mb;2d${&hp8^M>Q%@UvmmAqdB
z6T&$R4WfZt%CvO(Qnz_B!@5lAwN!|I%n=*LvNYo8VcygqiE?S1nPGbN%*lB4>(k;a
zYte9sn+)7lMxKmrz^g3SJI(Fp;>GeN`Q0;BezTj*jEbWtPCN9e6+Be>dWO#^g1NgA
zigm?-l*F+WqReiOGm0UW$VX;vo1=4b-b8MXy1zQ70p61i%`fUZUL}~qoVZuTSwsy&
z^_g7wdq3-*@Ki3x3R;jGCpK!pQkjW4-lCkC*V8l}m~o#C_rG&$BrnZknWugHj8F|m
zUsm_o%ZZJ4TbRuVdAM$Y`LYbjrR8(PDL;HvS=@BE?X?t)bK~>dyV%3zv+?|L3)yYr
zkA;hWHY=nKZ|v4H_L1$Lb|Xm`(wq*jDN?84uC7qzcEmD^^p4C4l~w?~Ss9A$doRbN
zPaW%SSK~4FnPb@mgb3|m#y(UNzU;$m6yEEMPfuyA>B{$}+?RI_9yuM=ubF(5zb1n1
z&%Rq%m3H?3VeBlU;)=E{9VEDGut0Ekf(3Uk+$}f+cL)&Ng1fuBI|SF@?(XhRAMTTW
z_x9`Vmp}Z-NRd%>YVWn?nrnV|7u8w{3fU<o)1+ktkn=4cXrE>pW@aNKBH-@A86t1-
zjmT{MxNlz?<v!&Yhyr!tPQ?FwX3PVQ1Rd(iFYGg?dwygnHeWz^Srv#xpa3bxTFWln
z+t(*rV*TZd><%tXb|Al^Vu9xO!jQx#9>ciqHh#TtF}17`W<d8`VJ~PTQ9|sa#fTER
zk{p{o7_8<e#$(E`jGY|1WJ6aPOa|JXI^d6n?5xaM<V+XM?{PTT8kjD(<%()ruh^<&
zlaS^?{ltR`IdX}M0FI<Jy4ci&5bB^K<kUY>-HLcuF#0ID^~kD}(OTxtk=O0U3DbHn
zfM~(mLLT@Xf0~sED+^zxXL}vDTZXgJU&>f)33lkzdwm`qD?eFZ&J6mBqnruFkzcm!
z#>6D6w6;J-cg*cg$ttVQ%;d58YlT^i-k~xd4`t=z47<`+aR_%@k2HIgP+r?jfaU`(
zIp@tC?p3~SzF_)iiqnT{o&lcKgs0VI3%QTHFGcpid^dEt(P9Oa>%59aAHRoR#^&13
z$W<S)?XJgZN8$4rG)|4EqQWCg9R5x>VjZXKPfjs+^BDJU%f?%uzmJ9*<HnGh_uZKw
zng6<Ep&<bdV*wtw<*%RM`X3)YTycx%5wtRusFUMNgdCe>hHE=hgxROp2rY$vLlbZ>
z7WLB4pW=iKavNh`irjZmj#PB5@|NXTY-}rIHJ=oGcX#%bHc4+<)M&{@q&fSCSkp2n
zZS#sr?LDEwH3I>Dv7rZ!M^2T^Z86UYDVl}Lk{Nnkq&no?-9j_NWZ}>sKPpH`(P(?U
zz`0%Y);V+|(ok}@{92z}lqMt~7%fjv;j~PVdX&%ERQd)J{imR*DXzF!(hLZBKIE}p
zs<)))H~XG1W!N9?iVzaJvXDQQQP1;p{SVlZi(C{14*FE{F&^QUqytjg|DpE?FiD1d
z_-3K+foLIJsV`^4IvCuhPAM(E@4%$0u6_`rfb3pXRizTLx?9IAnW+iMkDJ)~=ODc~
zyD+|3l1qYa#dzBn@WZJ}@Y@Wns7xzf@)FEhk>w;(=9eW8(h{lU*JSIQ&KhtfPv(<p
z=tJ^@z@t7`m7~u35j3*Mh=<CX%ZWoHD3H6TVE1nF#-?keXw4Y&TTSH$e{kzySc3Ac
zgkTSAJ~LLAx0S_jE|H5td4@=g8utZGTgo415CYfdCjB?3W^EshKRMrT;3ig^mL6Jz
z8|b0odn3bygWQfsU#|JRXHsm(fjRqPS0k%-X!1@{`A7?1gK>H%%u*fpo<vDsvL#zL
zFt)G%%Q8F_Qd18L%~@Ts^+B>7^t1b?*{GxM^3RBwEX#ItUH3q6T<UJNqrnl|57I;G
zoRh3tM?$?ngOMMnM}<#_PSYvauf(S^xatmxhd3J-;+BIN=X+%5dgsqZ*V|k4ypkUE
zbpn`45pu<1*7r*|-G(-+=poP2&Im8XM@sgP>CUw}43t#=BMZRi!q>f4rC|C6hlyGe
zTDyLC{^$hXk4xVr9?W}krLBq63a^+eP8QDvX*|G5`E$ioi#hlA+83?;=t6^j2iq`<
zkv7`2g8EhgXsQsV;?rK1qEQ&)J>@mEfxXO?BG7>Fvz*FFL6`3iSFl`tQ4PcP<x){q
zcF^Merg$=A#$xgj#vl_TN9>q&Br(U~5V)YAD=%W+h`n`geZEHMePM)eqMEw86pbpq
zqHw>8Qv*I0mZ0w2qNKUGRo3LB`C{7>3Y{9G41rj?pP$-d6N@UQyp~pxc;xAUKnMaX
zY&H%{wbo>Re}CaUiqlDI91!M@GgzGdHzmSRS#CNk_P=;+|3A9)AG5$;D%Oy?;D%xa
za?M|s|BizSo^<47QhD6#9Sa*9=i!9pbGbEZO`{weYip<BNXE5Sfk?`bVB6wDHg<MR
zY54?j!-6#!!;#NrSZ(s-r^pd5+MmUxG;pW@U3zDA{Ai?2yime{{J?NeqhLu8g;-_z
zYYO>@R8~`hbf)?+i?-w}{EqyxirT@1dFY>}<Gv);tyY9&R=zm;rlTJso3?|;^#*(G
zxQ8G{ly4qc(yH2v67>FDnJwO_S(u66q97s*in`O-CvS!Aj^)ybYD|4d2lB}!x_)rO
zC=`^$?W$^O+n-S^mvr${4}L3g#}3vIn4unl_Fnz%`>Ld>d`#N5{+vQerfrPXaz1M;
zwm8!d<<9M79-XIEa`ZV3)8ud9E*q4cs+3TQWc*jMs$oZe`wEFkA}Di(Ec!bot0xvD
z$#A8j{C?&vd}J1(zl;UljO@vfig!-84ju>gp+6tncXgm{nLO*<veV!GIy7b=kzHZ(
z?#GZ1E>IDrc$`|K?Q$}o-8CN<NliLds%rkM%^FkJi#%!@P_@5?R0-(e(R>46K4ilC
z`3&0g(5GEvm+>t=-XGy$8G-|j>0;)fV5hCw)SSPrXD<Cb2w{l>W0Lv$T%W8*PIj4E
z7<WZ1gAdXO84ftwX11W8rrbF8b`vKas_N2;q4XZ%;DQawMqS`SWpW#9i>4RVx`p*r
z;2DMs#`lHuLiYF8iZDvIj)vh2v$C(Y@K<gRrdZ5wk1v!Ir!r%)t}a8Um~0_uroWC?
z0nDMcYoJap+metVQ6i|T3#&DqaL7C6aQdN;a1ErIH%;)gh3mGuKw)B5fjf%vAR;0{
z&iwqhG`Ihkk>fx9&YJ}S%m(b-cm9hKeqgK5mgAgu0dDiV#e|YlkKIVQ_`*i4&1OST
z=aW5sPc{ojIbuJstY*5_?(se=DK0Npc|b!)Hyey5!;+}V%k$SRFgp5S?%q$}43dz5
z1x6~NLqkLJ${G+NqN0<z5;6OwHKWy&R%`7ma8iGqVf0X4aA}Y`59e2G%ycN!OA0ik
zt2;aYrfp>v{A}YX$MnPSHr*7@`{V0$x{@fSh+TlbY`6stF)^O8^6^OI43|9TPu#h%
zQ)gM+XFg9y!ZhbA>AXoOyPU6$KWDcE2u!R@Xoo>?k!nAotyokIH6(R8OSkvJ;LU5k
zwJ^q>hgWrhnD1BsdukEH=}Kh(96Hrqbf}7KUG>RRVM$jUuUh}h?AN==;M$ZGkFPUz
z`;_l8>$Ag+fQHkQwDPWqZn_lSYg@kpTX&OqO0xL7Qx2HK{W!8)%3~68Fj*dv4{5ZE
zT#?59OlcxQUO>wr&cTvITJl%>@5%V>mUO0!V$ayZo(U7xXoejxPyVjhwl_7f2_nxL
z1=~!yq=YqPbZfHoeo?sHT78owdg+YU;!a!ja)b6B@xfak!NiHjb8ozJQbjtFYkT<%
zzj^SzJ)hUjD1)m21kb%^AEQ)7B)r3HyHv}A7hYKP`=^w3VpboQc)LKBx4G^ZxBGoE
zf#ht4ZDh?$Vsgaz-ZT|#Y{%RUiNE5?*vZ*8iWYJ=V}-S+2Op+$Br|HD1x9X-^lPUh
zla{(WGv%lLh+q}N!3AvNA`8r7`%mz0%bPz5zvpSh!ZM#tlNp$u1>_WqFI(i(I;_g^
z%rMPgwD%N{R)p|d^>FCgtvEO$_q{;OPL3C!D#F~=$to6ElY5m`o|OF{KWZp;e=LQs
z{)YAjqQF2^UFJ%uZosOJwyAQg@YeW}u6$jmuCo64+n##Yv{5^~-654&A>;3ziJH8u
z|6zAm3HRB>;jg8P_E7<`hvu~2F<O^CFtf_$TJP{ZmBL9y3W`Exo=V?6KZAud>Oc@F
zy#X3ux|jk58HgnVdbz~LI-}`Zw;Pn5MgB=SIrNs+I+wQ{nbOyb=;_fpbxo<3p+E;Q
zCror+>drczvrCEEtrh$uj$PtNeu}C~j`CqdhST~oYer(^);o?d<WZ-knY}&2KQG(@
z24hVMmRAj>)lz*SVNx?J+c^=7gkJCMf)uBh4~^M8x?HJ>W=|cSRU!lgM5zbM3lQpK
zouVUx>$U1`T~geiv6L3StK`IvBnA2(N~1td46Dco3n!#NfI^eHNg$LCq-TBT4R^iT
zEy^gkx&*TE(J?S(e4orIza>*g?ArdinANnV0?)%i{@6c}BUX}uV;vyyYq{-dnocj-
zl5?f2NLq3-x1HyxP1V{DUX|9VyAq{rkPyNfImp+>17Rksh8}+m;0Kxu;O7FqZ?YN-
zv&R0iZ#r@xpCqZQq+^L0W^3^DQIG|`Lq2@*a6|Lf`?xuC*kLK(QyoP$QTol*CsRSi
zwluzS967rnO<(@AFfWQ$<)3m`bW1uUu5}@wy-{SODN3DIF#_P%-E9ypK>9n#eu3tr
zIu}<HUcyY;c$SWX9tycP^W{Ph;>`zYG8A6>q)M<Z<i*BRZEqhGNas~h&SjmyDC898
z9epJomI3pPciwE3F?oOMMSn!uOFNVe{d&6nD`re^Igv<u=L7o~Y@eK~ewh?z;@#J_
z=7eC?n&}6~PDsAO-j4y0g&YY8ysHN%93LcXU*nd=@E}mdVr*?VGAh_22lX5=!)Dn+
z>^%=ucbRbftv&k^dmX3n{MD4tiJrlzPLj{)4klMuj;?40!>sx?(t24hQk6sw!8Z1;
z)^tkyeA0!YkVxsc(bg9dWR&~}wBwuFo=dL&YJ;2I!_4i_9G!459(_#0p98j!7-cq^
z2Fk6CAKL?-xNi9?A+nI}pi%?vlU#~ngNYgrTo+TEP5@K;XvfNf{>RvZS}ua2r@M+d
zO_Afb{la8LfoABz&p;0M(F&$k8A1W$y3|i3PX%%Gdjl}7IikcQN#Di-)18j?Ss<+7
z_xTsFKHMNngFXh3eO`OSzO5-V1&s4R;PbtHdndB(A|u6yj?rRKVh)oEud4wc-E(Wq
zi0NpFDV|aZPm|x-5xyT&>r0vzTgO(in%xO2o3T9Msr6!gTU?IstP@Rtn%C10$JPEC
z1v1Y?^CU+6wDq(}!qI;E*Lm<BaV?rh&!B4l?C14`v}QG*&@<t5gPR(>^fjATy<Lx9
zQWni5Xr^(3Ce*($;SSWwv-o3Q0H>yZf0+KVrrC6^zmj6ARIs{z9Q;v&uBT3&+i@$6
z(oX}|Fa6vD6PwR!Mi(;;iu$9UJ$dPJR9@8(2$B5)#B3Uq#&n4crn;_HVUwG#(c(@A
zPRp=x6zWJg)OgrQGCJNQl5O{HrWePB-!j^cepM8UcMu-5v7;%76HSl1TTfzQ$RF=7
zs%jr;IBU1GG?%yKykcU)XA}8ILPyb)U4QuEjWPKorGxfrzstma*VdY_`oinU?tFU9
z+0g2q#Ik39>rfD#`mGwhXTVMfr|IzlWM;*?z{xqV)u|{J`K2OqNDARn{Sa$k?!iQX
zQoomLVNKtwC8}DEOi{!P2PZV7X!sm#vmITsKbwIw*knL^dyF$qSis}Ek-NVc4s(W>
zO{Pl)TeO^uNzz%*&`ouF;}Lz{q@b;g<AJn4)!zPgNS#K9ZH1d?U`*9KQT_K~$b}l=
z-<mxoGk!1D+C)cEOCF#|<E%#7$sWG1qQ6k}AU}cq|9^NVqyG6B>YL~c9w--JF}nI#
z1h9fKPgh#d2SR3PfxY;zR?Ff=MMcJgfUq4s7~HABLdo*_cvPVT0)gmosH583+h;aW
z!SV)xC@U#Pu@W4P>Is;hup{cD54Im9xg6_Ob4p^hGgoJq>%Cqid}zcXF(1PtqC@;l
zS-A7~tsZYfFGmI&0vpKXE96mGL6peezo9QbYVin)z^1JJpxXDohGAd!6((>)gCCH_
z>i`zvL=KLk^_ea-bYmb#oSnx%3Gko$YpM|dUsHeWl5hzHGnpGfeVdsl?mT9qpe#4R
zUv+k2miA*~{du?;(`Wq5f*F`pA3bEhCDN0($!tSfoUp5=wi#gBLd2{OUF(<FDythY
zPnTyJ?hqIf+wH?ze$wqCq*`PvI#hJm%HeCTlPLyK2}X87xq@DgFQg@^m5oYI99J6R
zf3TIe&k1-8=z#(!@yds_1e|avVNxG0uw40Hm#bNI>@P|gD0<3r)wwB*A8^5cwS&`a
zq|ro3VltxS-rT{&Zpl9Dzj6m|a;TQ@&5H;b_egfJZeGuU4=551s<RY2&(84ADyY!#
zV%rqKra$UH7hBfx)!x*SqWBCz&IpPaDjw9GSa3H`t|eM9=sSmyVn?JdX-2QeC#26q
zIj)jkJgNK;>Q%WRyrT|s^UZfmI4!^FVTglvFNE8Cfa~HeC#Vfv`=~|8-NQCxEvPC{
zU2%}Qe^jD+-&IpYpIGdc0!N54UCE(0aIIEkSJYv`=+wrRE2C9##J46z(&O4=O(@Mn
zBapjvzT+v89<P?dE@l*9ClRd(7c-FaR@V0&W;w-8b-TDj=H|D`&7cPz#oKR?xei6F
z6*S!U@`%O?8^n#3?deygDwiy2UIS2syk2=j-#1@=$v{Dp*vyONN!>LU=;cex)){v^
z$Xn&J6Vk}q4Y<!c{9pat&wK?X+?qjF0UM8ne=9k1Y8$2LSI1kvH2A^qq0iyQ(r4Kq
z{JfsSTO9lrqk2LhTW77F@w=hXSZQ^4IS@IOy4{Gnkb}nmclam<KDW>B0B{LA2OB%o
z;?eNv^}<KJvt#0NP3#aHXG|QaODg@G;QRgUL-NriJj5g}xo;_4ik`-}X}{M*+5+Wb
zA;p{ty{PF>%~J*`jChqZ7W;d8#QlHLe)m;qzo*88>{GD2xW(A+RgkdhVc8j}=kWpJ
zHM4|1%0Gh#5tkSfIpErjVB5JkA>}Fv_&8i#5SuU{Q;&^Atyz;TxK?XXT%eXN+TYy7
zKSV}WI$$C;Z{aFDpd@_uQmSWwi)_n*P`_<i9!oh+OQSTO6z9^F7r<<ZNDhNv3oB%}
z-IUmL!#J$iY`NBIJ;#q+u8$35Qh7fsOtm5LS9%1)<efuIBslY4U&CF<lhf57brxD&
zqD&ILY_B$TxZE}>t_CB<I-7^`N~Lw(hFf89tV<@b8?4PK$s23Rw8~=6MpK!N*InL`
zJq?&s(-gk)C`#GN8o!@Ie-OZ2?3xdYOAMEh`JVX;WYd_XDh@uxd;tvleD8e;5Qjcq
z{MNt+P}MaWZN89^l8%>Dw42v0x!mFNxUt^sPYC6|BVr~M<7P(i2VtgBfuuje>8jzd
zQKuEhxu}kgj-NW~O%pn$ZMQ9L>%%XG|8)GB^1<kpe+=*_I9)N=xz;EGEt?MS9v({a
z^72k9vx<k>a3T_C=b7j1d}?iNg-HSa*w`A&0nui$adBjW5%I1!{iYCBl{`E=WKC!>
z)<iNIB*KToj<GfXOA#M#*}WmxU-)UFk!H&<rXGf8_7S3?+5QxVj3RYI_MzbnNn?0+
z+jb=|0CoAfD|7Lx1=OcVk7!|z5OV=~?%w7Y0MqmjHE)COOCACzT!-}8qGnnMmvHjR
zLOIyp6t^*1OdX2bPsjm1T%ighn+S-07(^28*{$!Z4?gPV9{1Jqi`I<-P58A)P=cHw
zA@re!G(e2KxqM23wz7wU$A9i^U;ZF6A5vmNMiC2`3b;zyf!zDyav7`z7MWn~vWURu
zFf-ymv5UKfMAnEjD$1c+X$S<sqgb8Vwr%n%_Jk)t8knp}grkzC`IMsBreOyYKC0-A
zPfrh$OLo^G#Yt%0(LIb<i{I_=;I5O$ts(e}+R93i+LnHCoXJDLFnZ~&Q&dos<P;QX
zq@R=3KC~?VMi++MHxc>OR@XK7DrgM}1?A`wq0^i=w!7|d|GQkTYre@3ZLbo|Eu1i3
z-`^E|FbafNM*Ii12U01PI&fjGP#a0mXjB|OTtxBwLNA(=V?upNV~M@={2G)fMep}S
zTDAp0_@yi^w`#KzQ>IV(Z?>zr%uL5O6W+M{Rc&-jpP-&{(}$qlDK+ht7p*qu-z2-i
zJ61bqMz=a-EgqA59?_6xRZ+4e;jj1!=7Aji6t*sIGKQ#q-NPd<h(5;S!BMe!#{53x
zHl}WJf0CbT{NnSQWEyoWEl>CLjIH_llwxo}CK4{p=)1Q-vI{#e^%W-h=S%=~3xryI
zjXPUP07g+e&IGsgLhe&h)}Gn(QUy^lEktIa7AQlZ>ix2kKKeb0UoPi+`xOgWaE-Vy
zP>1~$NQS6F)0w=VTg2qe+Ffp8yYwZj(v>`~kFdy&s-5jHiX+>7MhvLutT%R;36(w}
zK77o*Ow(ymR#|ZG>{TMiz;7cFEFxm_O%2arJ8BT>u-e|I7SE)Yt=4tAC>WW1G5#HO
z0(BjP6%y5}M5IKt0{)ZAdCN*tf=PEgw{IN(X?|W!{iMpkM{7X<aqW?P*#_d~a3)kx
zNNDGd8%yxrz?m<TvJcdA2bm;$`i>Zo#09(}U=UaX8@Xp{!X{sz`+t~@u4)&~b)9{z
znotZKTYRG<EBDmmF1N@W?g^xF*_ZM8ktld^CX3a<gRSB`Q|IHhd&GODeHoG@?mx)A
zzn?HSQ^RUv0{O{1-0x2>wyrdb@krra<hj=y5qVc%7@pWWWgfxnek1UD#d&SeM*DRn
zgD(Ss(TgTwp5?=1C8oDHQY}S(0}{<LFf7OKbZ2TD4ivhyppOAgR>J3eCEQ#4z0o`X
zAE`_zlHvJC^*&+m`<u>_Vmz8k)%_l6m&R$|N6SFS2wsn3dhql|g-?Uo6NnYNeEQ%+
zac^vj9AN$Z+Zxg1WcuUE=gJ*kX7Jx1NdCYu{@agQLP#GUpZ$Y^jC>%$PO@UmMb62T
zVTFN;>dTKCw&%c)^^dsEE(LkP!JJi9b@<@6TRDaXiNHP__w?uPE;4y||E&hnAuf&0
zv5PblGI{Xgm@nEM2b(RT$y!qI+4@cz-iev)ArjMYS!&}FXeGY|!C;`GKPWZz>7Y_*
z4-2+YifxZ!6x%Ii)55s8WgE(n3ZhKVuAs2*%}-SP&OHo4vuu)S%nxXhu*eU>pPe)h
zErCzUs^`K@3Fj5R;o8`3`4VshEonH<Rqc)PV|d2hp#Nmu6xp`G4X?7l=1;Of8$yWr
zP1R7y)h4F`Wy52vMTDz>kB=ZldX_#9__lo`-EzciW$axcrjf3NYYH(^Pvs)amE}Rx
z+~oa-t$^C#wT)!YP|GxKl-bLkD@;wHQnvJo{hC)#xHC-37ONsrOU`tl9ylM7q8q6%
zt(NTvsVZTuPED)gWACu8ZI*q{8VM_FTZm#KgjL8n`S>~Q*zdB0s96{(gXB(vTSblF
z`!g20`j5RsYqBp2MqKu^Iw-Cy`*%ATq0YMQ7kJPOBf>oHx4A$xS{$$(u~k=z0E32m
zJYSu$^Vv^QD{wR7TR5M`>~UiZh^VhEYcj_~Hqxq4u6&W7LUoYX*bB{Tg*am45qGGx
zc==VXedclj)?YMEZpPU(_~ydGpZ<EOx`UeMB25^_&(2^onJzjp*wYyaR$kp@4HAZb
zWj`-LhZq|hyJqqE`59&jAh??XTHW=$L4*Wxl{z`E9^@h%ICi>oHTUDW|7$NybS5#o
zN_>KXz$O;8_^Qs?D)*DHxE%=``RjF|3%<r1R*`cr8wSVAks<~KO!()G?g4INAEort
zFWeMN;J^8yMKdeZw$U&#mCsOz?z-F(igoy@c$MVL(i6cTpg?+hdSz#X@h?6g-}Gfu
z40!j^bRMa5yS!58vsK)9P`-tg4+(jURm;iOg=ZlAO$u<FC}^8SznnCz(f32>hrB)a
zr*5y2B05w`;`%1++{|`nZfvlUfMaVrpvt8G?q%9L@W<9M9Z$7jaf&GUM}_d84a<He
z5JiF_7=S4_4IXlR60klmFb0i04DP*B5&?f_>C|OppxzeSFMA@FqqLD+sSxSEUf)1=
za&9dV>&YD0HyROBP9sp?X>4Z0*5+(E<0b0-qfVm{<Ajeapcxs7WDP~GDGEk&k)6RR
znlK{%;^(ppWHz)@erMN<h0u?e&9<(W@59kNc$0GUQ>`%kVVEH{H*6@10uII&pTKP{
zo^Igr@Ko;QbV4%Ry)NPZ44r3*6JVSQ*;r&mrP7G&?d{l?y={MLLV*xLdU0Bm9E^{+
zM7+rC?4on+I<1L@L1HEsZ_$1V1U0~)fr2j%2t<pTcwwG|udzb>1>00n;Aw`2DRcKI
zhoq!3mve=xlRK7K6)6$0rWWg3c7%`oU?C3Xs|*D`gytz^{cd!<@~px>3>BM&aTH-^
z3g!%qr(<dJ{Z2e0K}j^4$Rt=AYag|vpuh}FYJEX{6_IB}!S1s|ZY0EAd1&o{fzSXB
zF)|#VlX%J5;R+2>+<AeWl2%Xz?FHkvkS)>)Wn;g1&1(Q+qG0)|cdV;<#zNyU0e(@J
zn&bq@-o&8g+QeYS*MY~U>jRRdmBxwdrS+pzvGT6JPQm9&L=MbmrXwhlBjULu&$LN|
zUXeQVj|w{axj%A(4NDGvfho4UH>pKDCidVFK+%ou(|yHWy#Grqpd}l3!w;)y4Qg<>
zVJs?*i;JIZvb@+PM3e0{q06LOOPOZ6dEi{Ofoyg-5PZ+ydyYVy_W2mqA3>Oqj=diB
zfu8c>=l)y;VH*HXbO16OzqT^b55fQsA5}*ieR|H0pz^GE(b5`=MNv!|L=#kEyJ{#)
z_+->uORZ>iv$}q$?*Pu&P-67RmXeKIiir6Ye*8{>!fhwvK*bn-Nb&{viI;onzSqpA
z->zAlg%NNY)d%q_D4+@GFHD|~1`Wb}5{9FN4a?i~D5gT7wju&x$@&1WO-9}*%<)$u
zObtHrW@d9EAm>YH)G8$hJeeE0-<`&VvQAem9*GdGI~F$~Hg0&p1vr=GlXCz81nI49
zZF&84<Q%h}U-5iZrPiS9A_DAdp&`#@*Z>pt1O6WtMEF5mV(O{SeM27qQuVsStP@}W
z!2oMu==e*k4-blW;?xstAG`yoY1lHUN<_xbFs)zcVM9FAc=Fsq2Yu>|VfFU=q~ytC
zid8n)=4Lj8PyGzA4%>Hz2gbNoBJ!&%{c-qy?&67b{_Mle_l^26L1$M1ng&B(Tb1b-
z1W-(;>*fR)*Y#_Wz{8qv@0;ehD9VyF9c}HSLs_Q55nJ8oLqAdsRr_^0Om^BIRw~~S
z#cpYv%^#<KXKAB2crvG@EATif#)_>qH_>dg#YX01=HgPcIfh}zg(Gzx?<|r8vS~$f
zs!~teEk4J6lJp<mx9?(0uX(1_sy1X>ahRgbV%{PlPY>O1Si6N6`9_h<<BlOB5-{)_
zfEI}wJevA9k}&4=b+yYVK4(6)P_uzCBp4~?q27|4Mj3bGYolg^RrHSlyNMk7f@_1N
zLi-9Pg@*~9Ys?o1hnwuu9uL7Z=|=b2o4L-xFt|~&=$%GTLa50Hqcq-MnZ}6@%G;vC
zvcFUK`xPUm?l;f}^jJX}R@9u_&Et){21SB}@th0XL)WkJ5QT-cLGiHFxvSq^d<W&P
z&AKqz;f-!<6dtOiBgqtH@n=m+u+kgXzj8I+s2(yI;=2OJQ+DeQ*JIjgI<e8_klVM`
zTn(IX(@)?DI&MXxR(|lO(4SrS%eR&41bD93-d@=`xwsURlrRKPgDEyKxLU2HU_OP`
zP??1V|1@1-z+R)IqrN*If{MY@e$F0b`Po=XbHpF#Q>Nm|0>v!iPQ=00_z-0sVHQi*
z*VzYDFJ8Qmyl>C;UB+e%9nZ`HQ7BGRGVJoUwpB*)<eYsijEm*~_>HBFTga$u(&=nf
zX1-KiODh$t?YqCDh;3t=%B+@4(WC2H)qBm9X^_>QqyJC686Z@7$BTYgn|?eqC+DcY
z##z7Rq6G(WgM)ooy3qcPR{L2+0Yt47RB1G;0hcR2@7g$TV8IGL7|24&-c~7avz^cW
zMtuO~_#3{C5*&0{+rckhF4vvc<;W%7ywD07UmSXcmuNMBOhy3nJY~a)CCJYnVR2Oe
zTjCzj4wpcM8kYR+V5nKWyf~y6dL>0gLX`mC?4n4~B8!WPE*WkTZZw&m5s}g~Z$<M`
zZq0{#>Arr5E}SliSyjp*hXNC(6q_VXuOpx_1=5Cry(nmXCLS6X$m{80g@e0{BMeN?
zVh-@}MJ>;*X3invdX&s2i8WF3^y16<v%gJrB_;}`Xl3=KsmWhbVLP3t-_I>Oq7<8&
z`SkSEj)szQe6gaGl0=mu%Z^@UNm(Tp9#ho!xZukhhHGFCNN0$t<`oytPtZ^W?xPdl
zkFWH|Z#MEGc_2sH%*@Xul&%HAlrfZAq5y^3;>5eh1;C9!iy-IYZ-DcVar-~>ybQ|d
z88To@zzMtNiiOq>i+IugW#IU&)qG3j`$;Y-%WwHx8!Tjhw9mIg7IS9H7yT+)aOd~X
zVDK?vS1o#_&jLTLVUgm_jt(0^C<Mb{`N3Ah_3vlG?@vsEG%(oHk8k_@;L}1`A*>d&
zv`N-LMC~<DwwoGp{DG;3hwQnMR9E+WdCd@r>t2;ZfsZpH&?@(#t7Z^imB2I-F+AIr
z_2e;O?5q+2?TLQ!=EDZJ`55NU284s5hHTGZC(c1577F(C^}&hQBXa>+f4)a0!Ru;@
zUX_eO3jl;mdHhEO1>0BAPSoOHmjoV<M~9e}rT_)<>DsNWtukuoWW>UB=zaE4RD|-D
zjm2i(fJ=~9e@k{<H5eG!bdDG@7Z6BZuU1n3sI9F{MNTeCE&mlmE)_o2t8l&KsG!~{
zg{H0O6vE==Xsx5;S;Y^nu+BEX&rh7TiV=2C)vHajM6S0}o4Xu7miy<uP1)&&a#Q~D
zRx>g(a)D4F(#%7%^^XpZpFc?@@Tr>+ZB^GIdD+Q~wXpwpxA2dq0fY`N34k{ltyOOL
z^4Q`wS>Lr97MLFo<n4d2^GF<WYv;x1=RbJ|5Jyh&`;?kj5S1iq)6p=xtP#VU+gFI_
zS*eEo+2Q_L=+4!|DT$_O%R69_FM?@l#wgMRrSbN_yFey}4Q=P-h|#fSWJp_9{(Cb1
zQG2Z&f8Is1`0q@?a#7hXoL{^VHr-<sKK?OT@Wkq>Y;(MdD?R~%>CR9YGotMP^xPC9
z3P}_pVFVF>F&C{wqQ&fS^uzJ-F%>bfpe!ZT-E`sJ{bTR+;Hvi|l2w#r@R+>tFh`Vn
zG?r11Ki@%M!w_hrY3k8b;746Uv0gl|Q%ylFm&QeQ^;Y@f-t^|s{TAgx!ITb9FMlHP
z5HeJJB(kFz_Pgyz*6~w7#j2{j9iREAW9>;l0~seeD)pK*_Ofir)(l|>aZp2et=ASc
zU4=slomOD?d#jrM#`+md#1v>iXL~5fA7eY?aPdgSu~5&$llWJ5le82GAAay+=A9Nq
zZZv@A@1g%T<FP$;_#rwOzl6rNUm4U~CnNoIONI##NS#um#~{(1?l}{C9hBLo83;?)
z?hjtWe9k}j`HRH^z5Iz}TmZH4<#x$zvDVBuREz)q3BXWq6GOjLX3@W%G?0H>0xYW&
zzz#&ATt1+;Pw~Ay$Q`(0o^=fICq4s?ZnKBW$Ea>h+hIE}s6&qpe{2|1hE}-}|4$h|
zFN4*7D%EkoK8%+$U&}NF%(fKv38p+Q0>B4xAmla9kV_eB$WyKI3V0cdp3)_&mayHC
zq@3!3msZy+7`z{VRp1(ELx&h&e<j`mJKc(EYKhMQAXotP7JcsDeB<&#5jwE=fXdJ7
z@qj`d;r?$Lx2p1&yBx8I{CA!!q+r78`r~t&^XivWRViO7<5m`*`<qqwvkBntalX91
zp03{6-5t6Lw+;q^=7Vfxyh{ra;M)OsD@{tMAwN>LU<wc>uPl5jj|7)W=y{)|{tXET
zXMK|ZC#!6{9HQA_V(jios|GqTS9%2n1*O<ls3YG56%e-R;L|#gPyFRarPyazzxU4G
zHKWLO6-cd(7A|gf?nY!s!B|X7O;w6r-dg4XNaML)6>}z^xEv@~yxv}-wTdIw8mx8e
zp0qN;d4cp;Sy64kJ+IP1@d`wRi_eV=I9&8%Tg+8>{s1&eMr{Ds#R`0PYmRW%DBfPq
zybb`Za*n;kKM)a5^v?%B&9+W956kjJTbV6STn?Me>w(OnEnZ&dQ+%Gs{Tx3FaqHqS
zms7oC#{-shf9tlJ_=TIW#&`OpN?7xGswqsB!Wugg%Reau@4CXDJBU^Li_>768P%9F
zH2ksuP!IlHL|_Cb_zZU8!Jj80N<Bhl7PBonjIPHTJKXNXYL~Oak#hMdSL7!Q^<{SP
z5~Y@^Z)>4+M)_rlgL2?d$t^V@ISG>h%nU-$!AUDfk~K=Bc(Y{ln$t3H>}VkPQ40qL
zr&hlk$|DwG*i)N`omf!Lsx)3*_{Zxhx<amq$Kxy^?-WdEP{T+8Upb1QXrU5yH<RWR
zNn~;|HBDVZLxFsbsJf-z;dGHkE1hbj1{4w_c$ptRMVh1mg}^|-!og;#<M3#^<i@Z@
zGw*0;Z;BR#`(WW_Y};cl7Cd&|^OvP+dmHiydS8uFZL1()e#J!(9z!7)4@pqBE)a$x
zx#{(^w8pv_9WsaBeSVtBj<TfVaii=Lot(ZL^sSIEmpyX+&_GfGZJSq0@#JVp!8YD?
zrixcv&Sn}NN?AwKT^h;*pwhFNO_H(zD-0xbTwKZTN%P=l$obZaqH50*1-^z*%!EUS
z{r<#%+I2fTt1VHEW7T&RFXnUj+=N_HA*6tR_lpQB8b>@QKK~G`=tB4HF#!iSpyk(q
zxNPFVSfZ4J!7%Z_>`j38B9)-+goE^VWOz7K$Nhwj<uYODmmMX9LPlPZ1*!)GVAS*~
z&Y-picsFfNr!B@WMaVkEpNHGb@h%>(0=M$pk*_VmGz-6LgrlEy@moPIOhqpTv1%z2
z`GZ?ag`)LL0?d(WTnUs18=hbH=J4zuZ$ECNGQ`&Ed0zql09mB<jqO0F#Y-?ndZnAT
z)5)STng!ip7$v*jpAQm5wKLXQ!vO1q3=xMpcagJ)gP#>D3A?!7P4Pvj?dG6HM_ENT
z18%8HHt#C^Uj~V$2;ld-z4*wh1_BPH8pLyn8cnqSa%=sk;>8F~=l6j;wrYcqJyQ=H
zGYbgxmsItAS6R5vS{0icgq$-Czf1At`8N;$Wdy$wB(j_<i1l!&BO>opxK5ojT8Nc-
z%S$!r7_w3CY~q^R!<|+f)^zbUEflE*WuBJ?uLtce3vCt>xvIj~jR3Fkn_o=i1LPNJ
zhi8EOS_^;>4iww~dPsC`ptG<0X;Xi3b_UxwAoqtn4Dx0xf^Tv!!;3!Hl1N?$$OVs%
z{RoaeU;}zC3EkP=9vDmjw7O=)1W2A~WM%>w*~)iPwx7ticM{Yv&ntfw3Oe@<ut|vD
z2XTpx;K(n5b{Ywdh$}p&>(%zt8XOkRPZp&H071}VqX;Bfy*@uwFYo?MA=~8`r#S@X
z723G2h}5SgDrLm9q5>(PK?qxv@}4Z*K<BTYf(q&B=@o8J4H<t!3yUPC_XP6_bt3O!
zLXi#ES<DSdlv63@i)Uj`M(zPHnk)cooh0`rhB^pPaK+xYdq&f^rJ}K6sy?y6=rXo4
z0NuQB3ouF1a8KyD?|3SgWFpKhe~*$UArkCF+W7_B7i#OvA7p2v9_B=c=m8alN*&f1
zzA?&8Pakf>lkIU0|B0$@qIuJ3K~_5=Ws4VNX^_g%0XU9h%D0&Wk|;5R^wB9~W4A^9
zqM-M%=5T_-KpefF=aA2#^fBgm5#~mQ89GX}ok6tEfXGS~&H+tysX@{+)FpEdT|Q{r
z=K1z=SL=AB;wqbE9&|*o_bH^vC7e>IL)Yyf59$W*X5+QT1ESmB_+T<m;R|L+<R_L`
zJ=>RM+kS%UKM=@;#(!_?Zg6(arT@5g)qL1K0|3ZL=VAUFC|zUeJTym!H=-=25C5qw
z{bM4Y8I1bJIZh+h|BR8G<15o2ErS2s)62>L4ub3LA<+8ro%jrhO^!}6DoHf-0$8B5
zIS+}brc*FVxS<1)9wA%{+!imi!*Wr!8o~q+;iq64qnout8jWNSWH@4VyZAgK+Lh+8
z`2Y6nKg0amekZP?dhW$}-`@fSvA6=dxG+dpNiu{wV&^j{sfcHHi@#l4$WI#?1Y)A;
z9X%W97S9(qobnT7C9tZQ8GgI&__VY#%+7h*l@Vf8(qaHLX7O-{o5<_Y9FG~|76Q{~
zzbET6d2>|JK_4s~f&uJ=F$61yU<7xmvD)oNK3KyJm=Gy}l>mq9kUvH7m&jYE<9Pv_
z8+Zs<DPZ9k8_Ic<5v73kNc7wC0rd?h3RsqG0fJSLKzS;seSYe-54^=p{7}v<QTcb@
zEL|d&O?+Qgs3%~{o77h7a}b}nm~Iw+5Mqp3h*sd8tQI#T%1vdZ=t4S=yD5Ok*5KoJ
zsu8sj_DqF{q)~1I27%F%_i8;5M^gn6%Ug2V7n5+)B;#6l-iP3$7l4d!DH@_|Mr74x
z^LjB_u2r>_-1G4M%#aPDdiY7XMVjanv2O7O0$ITm?_eav{+Fjasf24A)e3SUqdwz%
z2xKUZw?iEs+f6@GyDlECY2=sZ=MjyvvNa;w?<4h(h|ar>bL-%E^Hl6NE;>J7ZszQk
z8&z`rn)B#tW=*teh%Pj4akjcVDkz+NZNiSy!~XR&w1TXJfm@R@XPJAnKAmmy{J%Rc
zl0Se+KkIk>jo;wo2N-HZ6dx>iHe5tAb4W5NIN}qwYlm!ThNTXE<_*e}<g^5%Oi~kU
zh~j{WW_A;Os7^><E`);GVK)Mim;OC3&qRQvmcs4@Jt>A#9!gp%-PF~!5l>|4+EA6T
z=Xz5HRejeb^mR+?f+=2%hsw?*P7VkN&>)|4L-@$|NnG2_E{FPlH^n--Q!g?QbX#lu
zDTA23*a4;c+HW#~?^TV=%sp~Ok4WG!INi;8o+wlUx9=z5G{rgD*vKlnQQv*X39~As
zOG3CxQ+a9F50_rD?X)+YK`bY@^#X!-WT-&6zc)<DKo~WFJBn5um7^lQkPHZC)cf^O
z^xHtr>}V17l#)9N1ZI=`OmO=;9%O)pn07ZziKp+lS=kzhw{FHdwh5q)?7Tn;76AV<
zC)*6FI@Q8&KKrJB52s8lb~wZT^<$udoc3X*bu;+bA1|1;^nd6Jz`KZpYIB902WOCE
zy77&Zqa`Y*gdz?vWPtK(Vw-P{I742fjsYbDowuaj)R!26zG%Uwic&_Zf`O6eKvYv`
z7(F}CSv=AZW8#2c$yaIO$Hzy>9rQ*hd~T;whZ1AXiv^^BL2W}w+^}Cc?s4D0yV}Mv
ztL4y?n|zGxL#uYaC3TOW78!I?>0AIl&|j$ID3$rwfj!&XhIGiw#k0mljRLTUk~Tz|
z0uyJz2M{S429orfR2O54JdGtLQmSNVIc8q0)c3_NVY^fp>PK|$nV6VRkU&oqL`4I(
ztTg>-G%d4I6%HU!k?70IaFq7+Bt0gXkynw+lI;8ueF$M<<MXxrNOacj0PX-Cjnc=m
zq=JHi-+g{sfQcBk*avt<lGucFK{{*sbw6b==a%olPRT5w?)HWlbu{->cf2i(jBHo{
zOeO;hi=s%%2>{BX>;M}fPPzXu25*s%p%9f%Q9PTs1|s*D+FwMt69pJKJI=`E9?RA%
zEzWZx`b>#CcgW(=vyZ=BG(BdixBtsj>>qXQco)pNJ6wuJY%hJW<~^j1{ePXC{d?uh
z$_B12rX?8%_$91ZL9&-$>}>4Fa&lNc-h86x`*3nhFxboTE5uGgI2ryX-3d=Q7KhU8
zPR@{)E<5{o@!)#?Dc)Q^4Dcd}J)S_BUnij}4Zf*n4O(yo@Hjhu#9bgSSHNFzqs}n`
z^Gt<eV{<dnr~XAtw;^6R7E{6}$2Zj3!qI!_UGPQn`$hNBBo9L^Ba8Q<2mPHWHRz8D
z^8eMGrNHsc{g$>&t;#2!L02b(ddX0yF#}N9D;?^>kbHt%cH&fr5QSwa_dOmD3LJo@
z%<Ya)xD`Nr#|9waWJlo~X$QxFyJ5-}TC93Lov7F;i)0b1?SJPCxU`E2u~8lk2pkU}
zX2_0TeDwQfV{Ij219>qrd$Sn(BJ$)|wcCn}5j9;+_(udM$Zg)7c?S!B@6XDLw((31
zh;F#ck&Rr?vdO)EWG&J_>PA#Ku+F~ZtbtB}d}wagdbxp!@~A>+#!CD4=D=S2aO>N@
zd<6XVUw)mD=WPakEwzYcS3S~V`0wsb{umOyJw3Y<$M$L;W^|{R5;>Fyk?X9>Ni^!g
zVNz9w7#~%6QM9HY8+F@uQts%qwtN2Vu`Y7HFIxIF#EgKR{WpzZSy3YzZ-N6uyu9Pp
z?TeC|&aDV4W^$c@7AMI#6lx(Q-ME|4*?zviCYRosAu+L1Jlu}nzZu>ZQNUdieuWyL
ze6Y8-|LcZ@g+&hg;~nc=U)e<~#LfK+{@|T40{Kxo@0a%%egfN(M5b$i7H+;h+KhzQ
z)7=}2Jq5s=*z8DFJ2J}=9i=r7gB^=>saT3z3&$1%9DYNa(dj?JezkZJNF}BsF4dB4
z5MIMw6t!4}Cc>am+#AD9AApF?-FYb*dR4z|JWY4q#cAFMz#AC|Yn=U+!iG7?2mke(
z>_6QR-r>O?uweDO*~wP}OWKLJc3oVR{^hNI|F$@|Kwc_@D_))|L;8>$PtTr>^rgD#
z`NjwMu|(ctZ}(kc$`lxXpCtlj(|?10t){I!-W*xhL$VQ5eiO)op-0-N52JYf(bWq}
zfZ<);<zQ)eE69T?8B(V26kcAfZlEt}!8&I7k9jqS1RT)#t^pXz5aJmEASdJjz(PeA
zmqyyTGEMg8%@7(>KtEuco%)OhOao=+^|V`@@;L2x$NgZ@Ne5BU#X#TvxU{q_fj%(V
z!nD=I`<Kyy;4@H*kRu~UG^-TtEY(>gU<GJuqp)f&WfJ)uecbB&JSQSn72l2w1c*}v
zSN%cWUIbc&Sy;(b-|TGSqRmezD0(#r%hPirZK!wO`mD?Vay4^%R{x`Cj&=QrO2@__
zE_Ep*il8pgXK6H8rR@gbqPLInK9%NAnwNNn1D1h*azZY`gS!Ow`Fw7zAsK<}zqQ+K
z%=mBK@p*ot7a*tR@*J~h@1t3j&+@ZS(K3j11>}t5f=Zy<p%&lzbn5DGti~)N;+StV
z{52{k2dEKL$W=R<nwnsCpnab~4t93AI4q(A!7-BxIUqf%gq_LB>RxE0kDMIy=$Gi6
z=;U!gDUex~-EH3N*`Ot1Bto`*d>~84>1s%EnSeJmFf$e?X@501Iw<hD<>BeyU8X)Z
z3&G3aFH~>RaAc)w6i?j8*6a$mMTW&F9;{fHiU}JKg{>pv*)g#(E&<CTuc?X>7}FFg
z^{R>SU#?ssq2ZiYL@!~_Xs^=L%!oUCwVkQru&|<36GoL1?ZRct)huSu=wn2OE|UV$
z2ReI2t|tH&<=$ZDLNGNX)UBXVu3#g01#4=7qyQ2f16xrKq@Rd_x>-@rMDO1;gkF(s
zEiz765j+F+qCX1~`NIMi8KNYaN;p7_yn{p7jXp6bsXaAhi-%-<0+kWV$Xv+5;VP&4
z8RMie4?OJ{zlUY@S~t?I%Sftj?BpK@KZp==UBd|=wb`X`JJYWKSt8Z<mHORWke%`o
zy+w)zKp>JX8Kshs-~R5dDE%hEr?b0Rt$ht@>g;kLE5S^;9T1de2Eqz!=(k1NsI!Yv
ziXEUXc*A)`L_~`ARo1#cIsvT$Stn8=e_3_jUtArTg~0em<a)~`QRh|Hg5$5t%5!n+
zLEwM|7IKrR91#V4V|HQkdM@86Sx1=#01TP~Mm&_^?_s><QXK-7^~O{AGE>>?Kjw)t
z<TZNyKQNkEb#F7{{mWT7js~pVq^~Bf7mE3I|2NNGtq^3_qg?bh7lo>|MC-5=ClH-x
z0(Z(Z^n;a%ax-VVw>Q{$>}%dfsK+4Kk#7PD-vnw*!m`nXsBk2Q44Z%v1XEN?a(SB*
zbyG9fRGg}8Jfs-P=cu(69zVd@@UCVnPW(y^*#Aug9UmRqP(Z{GFX=-vU}RE%f(qFW
z4o9#kXHP&|Z4UKOQb@Ml>Gv;_J$`CTQgLiT2D{tK%*zpci7wi~(U=FW4U#)S_wx2t
zW<oTy`0{K4XDuOW!p+I8h@o2%uxjjW*<sI;%XIxOv5wcIB66QaM46CK7zO72ymQs<
zhSGkMJ;YXCNa3&>9)7z-I+lJ&GIL<|#12cW`z0wA;zx5%Oij;tgMN^L{U*1&#}_8_
z!JGlW4MxXFCo+1+(`!p6n%38TgvSaxy7e(nO>`L@WACV^y}Du|8AnB>oI}OehG<rl
z*Z6s(A7WDId<_W>#{6_1p`@;39^XGf67=l;H@mf`OexxSnig?vEqREzro?N;&|L@v
zA8(3x+3x8!U8c{+VTij<q7;I$sf?Wvk`ORY{K>!sYjkS^qH1=|-!ZP{kTk7()DR2h
zJWGK6i3)3lLo#6k5c*n@Ld_}l0lkQs7=e0z=z6=2*W<C!)UtwN(bdh({DRtM&Eu{p
zbEeHM4l%C{sLUiKC7Fj4;^Rf-eU|r+j-(n^obUi}mb>x6C-iA{U|NuyqSJ_HZRIOS
z1{3~?Tj?4@LT>F;QI1Ch0tz8g9*{wu>ue9MW+}ArbZ&~Ib}Y-DK9Fh@R{c@F8Hge=
z8;Japt9l~*W^*c#+Is`GoW%&o4GcL*IfxOW>HB^iso`KOTLa>VqnahM2uS1;uqXNT
z1c2etB4cd5cTJnP?!V6T0p*B$_7PDbugvr4jLqUOS}|Xm$zFS9{`GLUWbeZx<M$pI
zP9zVmE+S@K`@d|_KOeUuHa!%ad1<dMnf~Q#0K$emM+$QW-OvN)aC2s#>;FEdfvyLI
z;}pp*^po^Qu{niXS#+k}$8|3Gd!GhKs{Y`~xmLk|TA|q*+kX?EEI)VyHAWHn{`Mvr
zY<M}Z!1lq9<jmTJipS$_KQ%+cN}DN7(l}9KVxQh^<Gf|3V-DKoi<^SqzqKy!u8765
zs)L^22X$!ZQ<Rhgs?lg!>p{!|d_NKkl;}JC(1T*kbsgwK!+&0(_v&zkr7mmlKo=_M
zwEn`xK(*DPI&45k*B}y9fdR)I2r{WxYRVq|<`nYo)bkIOr&df~snezAdvpv%6UN6b
zir&Y;6)bM^gl9;2_$?UBe3;FYT_?+&!6gF5^Sw}-lEa5pJu+E97VE{y#`bF*c5a`&
zJF<Kt(RVD99R&(^Zh?C$im`FM1!H~V>V2^|JeG`gkUSDc{L};i9+lOI($HV=n8aB4
z-u}#>Pf6vEolkvV&VkE!@-O=uEyZ~z(d8)j*?6&XNe^3-Z*)vdo@V{KM(=iWn8yZ8
z0{G1I0oB%v98!`Qy>_EH5Gixy-e|E34idRNy;<5#`tzehia6}>se*)pYt`7_lEKx%
zv@YS}PUL(z;zu*Ow)|@97<W@IOj02gWv|)+TyT)*59y}~dtH)>a&pJ2T;25C-)$#r
zZ9fogY|((HVH({V*c%81vb}~Bh>E<&{q7JVU-%n=g?aZ{+yuIk*XL=pC4mp8IRZqG
z!53u>tJ%P{{yQ@hx~@;ts!7DYKP^4os-AND{$gu!zZouJ_FbkkyW0H=%<;KUp%##D
z0k)~~PZmhj=^eMbQyI{oQW<%AZf;GIXr7nrDM2GooGh80UEJ-jD4pkJV9tx5APxf`
z4S}}k;IO1(7K0ca?eGpS2eC9AOb?nFC$=jG671~dZY{yw&E{n#PYN4+5becJfNDIt
zR())Dq<StOL4B9&bM3Cj`5;Bcz@3}48t=n)Os(yfXp{cLGEiLhHtdrnryR(n^a%RH
zLkV8?1f%cVAbb>y)B^0yCQbKN&-WLs0Ccx3l{#nbC^(krc*Xs!t@h`GodkHFV6l3Q
z@j(r{dLz@z>$~C-g`NfmhJJ_FZhOAmbrWRE9ysV9(%fs<h%6x4o6UkEBw*O{;EPtO
z(1w7B7-!X=lEbG(@lW5vKN-+qFWES)2`Yab>d+Aw^>??og~`asZ+^!gf89Q<QjjQ%
zwiv8$q63r)BF3M)aTwe#teD$|lXup<EBOIzH;?XxcR>;}kF|$6Z<7<+DJ8vc3&d`S
z8T?aLjSY*HTV79bvp-)|>RiH2Jt3Dr>Tl;IoMOBUE)AA471{%I7{a993vXDkgiJNK
z<R1#i1FN@Ybd{+T+$PSKL7yd%(ghqg)1=G?#|Hm#Pu6}02h4l}eTv*=9htvP6$%dx
zO&DNYF*W+*8Qx@~(Jz=_YOs5FA~ECIE{9Z^kq)RoTa{+b!*ur$PbxjMx!(;9a<?^y
zjU*;gI`_xF(B6U6V~yx*@w^^O7norDY(CNv8@=u)q37Zq#*};=A5>-@I+ok4(A;Ly
z(pAlV!yY<$+t#GZNZW51Dmdh>?eU9=A7nn4$W|XAB=i(<ie5JD0^KSGCJa5_NJWT$
zFXGa9?C=V*yH%36vQsso5YM*(To|A0^MPlYm}vpg5$l-`ELOErokcp<>%0?sHku<G
zb^jc&YcP|3ndoJYUhaa@AgD082hpwa{HVkd{WC}t{9(A_Ke7OnqVbe-#pa1vd<<la
zlyUChPtq%B3!Zz*sGDV<`s&X<Yp@xQ(F-N5t5HmIqLZBO39JKGfuBs#g?FN{3>b<l
zzmCNi)Q%7e%*86?<q9B*>sWFm-nl%TH2mGn%7nrE5&3XV$Ee>0+2nEcmmRViOWX)#
z31N#iwD7KUFDsFm^M16anMDXy%Cv!j;6$Si1KmJWAwo@V+K=&w$$h)<BbD!rWBMuu
zadEa_l2P~DD*k^l_7y;Nby>OzfndQcxO;$L!QI{6LU5O07k77ecXzko7Tn$4-FYW}
z&ztG~`_0U&x>Z2I<yM`u&)#dT&-5CtJ~o*HoG9CJnA|=;Sd1a5HG*@+V4uhPK3}u$
z5<>e1;PC-we{w(?D`^(u9NB=Mc##$ldgNDn2Lo9}xBaYu{V<l*$T`wLds&-l>~iQr
zm>=8|ld^cezkrHxh~!vFb?5isVAN37VI$>j*ny*^W%<Gt42h%!5!t{3f$O(AuX{Lq
zS42!3y0H|N2wGsg(hTHpGl5xs|DHKp%3P;H6ZPS5Wf?CnQYQ<TBxOef$eVZ>>k}@!
zV)?VzF*|p*ZX%9P3Aki#krF=x-yI}AN#b$g;5j~uDRX9>tE_A1FsmjG#d#+(7XS?c
zu_)5zoi)ngTZ`miqg`P-o<{GKf{&<~$@ARcv%~J3??WF@C(Jxkk1fo=`_sGo6cXm!
zXAnP~A@zfcc!@hjxGP_H$s?iQ1hs2CmTI;YcX*z=yidq58Z``jyM76h&XArWXJJ1+
zI1uM@NmTYdq7H$ocxaHxxEn)1bsc219oT`uRE(@Fn%yw6bk#t{(c*WGR>?Ss^{}=t
zGhqGj*Va(x<yoWB>1PP>AS;>M^bi2!_lu~Qf>AcX3uEHqCdA+o*Kq_06OE>%Dz1?g
zSs+2B!YQn+m6TR&gcj=gk>wh=Mn_IAl1#7XOR)U_E7bZ^QB{>_*h>%rLIjfUi=aD^
z(dF%JyeSeS0$yxP#=SCN%Y=%)CzR$~;$Y5)#rZJx(aj-cLwo{5LmA{18+6?~t5QZw
zkM4#oYf@`SKzDfZ49eP7)sCBE(8@^Yh7))f%m*MEIjQr$-a)oSg{Iy1p<=ugs4sxD
zmMZx!ls83ySB9U*WA!r0kjO1(>e2NESMW4S36<f}!4~$Ia4;C4n;0tPo;)XV`VD2J
z`7q{LGV8P|C#ML4pv?wbmh`EpMY8}HYPzX(Xn)2&^wTc61<KY}5A9;k`r9xI9;r}r
z^K61F*oLKpmbWow#=k(@G64Caj4gs-I-Iwyz`*T1Yh|v96Il!AMmTH)GO0;zAh&TP
zh)@O5dABvH^@Hkmu~3al&I%>h#*#0Yb9EcH{f;yuA-cP|wx2qRAro_Rb44eKmp^JO
z5=U?n&3tjW-p`6t*n{<@iNpecJcBG${Gz-Z`01eAbdOh%Sg^do^^H&M#~-MH>O;MC
z2HdT~S?*t~e>DWGj^6<=lDLo+BEn7nVHM{dRfM>T3tGkPqwV8QA3Masb@!*Le!Li`
zVutyg_79No1HG&Sfrr19HSB*YV6<M_A9O#`@Avz2O1a_hSLnF4JiZowU7efAz+^NO
zg%CoE;3}`6YrpsA^{r(pblQCMo-E$6ukv_v2d(fCA{)Xveu?+SdM=d98CewakOQDD
zX)4ko7(0(chHq|o5~XH`EQ&~geXWofUi~pk-#LKtj036kUuI}#TuCqA7qG0k#sFOZ
z0wkOpxA6drGz2%iVeTz<;SOG+x;kToJHlOkxq8ZsB=&u_fq#L{&&dVeopsK4qV&ub
zx!kEfbN~@+{@<X5?Ch9+)hSB(zZrLmgzto~y()BFcK21|QG|cLNnrNraWgkBts}t<
zK-0eed=U6?S(jWU{W!3@hAqG7rC`##N@egGlDj>_HrUpDcgNSC(0UAe%@n*ppg^T5
z)J)YvO2f3%R}FP$E?0SD2Vd}|PdWjv^z|N%Z=F%6ZMl}FA!3nV&w1i2pRCe1=TZAh
z9vT_^RSBzQx2E9NsnfYKx3bwPtHss|u{bn7?xvG^Dy3f``Jd3JW3&dpQ{*Jo;1$>L
zc+`Kg)cPntr_mnWE&X(WIkfnymPQcRX7z#X(Kni&#V`EDia%}0n(VK^(-$OJ6spIz
zN7imZu&((MI2g*Cs{JaJfi(l5*(^d$Ot1|N%@aah){8CO9hV{N8hU;}AyuRQ_D%E4
zELFUTmlt<*q{n(EbTXG2Y8=$vh<`LgQhZbr^<cO`R~l1bRJZ>P&~8$&6Lqw>1ZvuS
zw8e~N;br&XsLHqNR>sF!bk>&qsGHr8C+RkZ2aM12lFjQJ06I~T$J^`VZz6R1OXhjg
z0&i?fAE-u%n`~{^jsz}_wnO?M&dOSKI*tXl=zBsW642Du8iP+-4u=v}$d{ZQ8z}>=
z4=(a&*dCD&(iQHh40kG&C+cM*!ukSBBK8E9-URA8ws~RY)=a<#XZIbP*TLJ&pfzU8
zt;=>oS_F$-5wg3xd*|7o6nboy^`hPH0ll!%Kwn>R*dLmF9TF$2HPFiE@$=!w!P?5o
z@q9?S#;vfRps1N2mVH=+HQW~8gtT2@vt$U2(~-(ut2VGqElXgv;SL1MRv{Z{FSMYa
z;qke@1i9E_e(;sfl!S?<9-6sZ6#|U}r2$qnLLJ0dQ&yoE`UcC8_H6-2-Ub#R>o$SV
zk6=vkcdV0NWkQ(#G2Q&9=7=7OcjGO|C_M`hk__F+xDwZbAVfZWj&X~O=?8~E{cIf?
z0q5$e7l*8g?+IR%P&oI&4^7}cv)=H2zSdCnAeYSN9V(gcS0uj($AJ}Kil=qkt*#cX
z2h7Qqpl}dRL&N$Qs73~>(~9EcZ!J~D=D+K%I0NUA@}YE!*|(h@UB-q@Vj~@?TlkYr
zqg<gX@D07I_?JX%5*>V*iyUmK*Q+_LTixaPSG$us1(S<So#b2@f)s$RGqb(z`MN^-
zt4fUO%rovjqFF8+CMJc=<&e87x$3|IrfpjdP+r2~3-%7WuoJLzk^n2#_zWsGAzl__
zLeJLZ1PtPVkur$AWl(nk_HJP497r6-{6a<)yqzl}C|GGH1m`%-;eeB0wb?*LOq}ri
z(mF6P=+$fojf!H28Jn0$rrGx}WJN&1TKwGY4;qS)khDfcMHOY%b7ice2crplM@H{>
zvN$vO+twwNw}m(Jepwgr){!oMze1V$hNcW1zDFI#9Nvo#1hbk_Vb8DCeujq$X5$yD
z&YB&+oxoc({BsS3GijkbaUk-#d3-2|wB7oG@5+*){1QdH`pf*2N!5nbxf02{X5&8{
zf@ICjP5xRc3cyl<Yoev^14vIz%=)cTa_!8Ey{;x^Uk<x&!ha_(1UJMdZ2i{?_zTna
zT11q^OQ)~cA#kEpV$`aOGtaXt<yHp_jbfSS95;ZT$d(y@8Q*g|Fixxf6ZPvi^ZD=8
zP3oMUUM&!xxfc^?wM^@gq4oQJr?4>os=~6x`2{r{-uXy+hV<<lQ0)^%#whTPahsh!
z9^++MvpJrsvTc`CG#3s+h2x@i?|x2bBY5uYW%}Z>hr#cbpF8?{`&3If&FIyK9eM}j
zEeaMWI*qnjiGe4smgKLZeODeR+RxK|*qSX4j%pVx7qx%Uc}*c9|1t4-1mG3om0YW6
zKZy4c;*tnUbVHI(DuO6B1=zr1l0?FBqSoYSituz7c)0&VEm9fYd60pZl|DyDdN=;Q
zOUYh_YLxW{mmW&rChl^_8d`PVHnU7jp4l;(d2q>(zfFMuejx!w2YIT~6}8JEecd=&
zwWQJ+hTv!TAmc!#UN&4Yp>@Els*eVBFZfEWNem`{T9%PrPt%{J;CY#R$d5{i!N!%~
zl7@`gq8y<M748YoZ7gJEh)<B?HwB|vYf2R#8WE#PD?|x9WJ~@bphw9-5j`Zh8e>9k
zGQ2@!M+V#x5%Rkfer?)xhIS*TxZ!OzA0xS_tV8EwRvpSk#wI2CxE`UNpl{g}6|528
z@E3El>t4=JyD7&x0w;e?85?y;(`Z9zrfHfyzC+pAZOG}6Gju1rfjZ(NZjQ)I99_|G
zYmqt5hr2i`lCMQL!dS@o;hkf!*nDq)>12IPki=6%5EHqkuA`VzR+ZuW!o@E&FjIQa
zwQRn4egkP}bNKx+>@F%Gf~VK&!B2QZomY3|N%n9s=em1oEHb8q<9GXwE=+J>*7X$h
z^-c(atekcn^@ZgJ;c?HPnqEP7QW}>nN-WUe3@VEu7KE?RWYZM+ey3H(_!)J(tW@3b
z%Rbwj{GKsAVO)j;4~_G}?&sa*2XHp_7TL)tw_3d!7WH=NwBy3JdrT(lNz!c$WMNC~
zcCc>qpo@)@BW5&-GG5{j8&x(;PKSAsTY30A_Xu$bNhL<tIPBrh@EN?q0?=j8=cFZN
zpvRBn^TX)!`e$C-_*i@p3z)I4*YC>Ip3!%VGHTTGX@uHoHEU!txKjb@`u6VeF^Oir
zqT>u;zykg|k>1<+Hk1J03Ly(8RqW|DBNG@xG%aW@G3EY_MC9R{$01*a7lQGlv${xG
z5G!`U<%$<v^XO1(W~=k#ao4eG)Mbam`b@1U>O5@z@E~Nzxlu|1Xmx2b>Xc$#-M9`e
zhsk9t(&bRG4rLa+C7q9rk=^R=jR4c81~qtSJo=ov>#lCIT5Bz^J?c<JCsPiP1HMQ)
z7ujrH;0PnYW;>iIIdp^&p8^V#(x0Hwzseq7H$>}On8rx0NQ7R~Z!B-JR2XN~Xa*k-
z8P18=+uf@qJGR1`CTFez%K5g{FrX^hxya-LHqAi_bla1J4mnwp+jHxjg&L8GYJ(J#
zEF=<PprU`!*f~8V8s2CqE-X|vN0UFHr>2&Q{TW|;2XLnChy*Akg54G4v5WXy69TSr
zgg_?Hu_<<<xBVQIHP2sf;NbJ3v%!)O*3=C?`nYCb&o__*z^JT3u#FwcP&DmnHErk=
zU!h{Q_C+?~VHFB(lSuLm{<rTiP0o<=yG3q>FO`ngxiET^LJ_GV<PB~jdvFl8p*Qvh
z4)5(&fvM~};_+Q13h|JFQ~{o7tFr}EwktOFXOFAowlS?f9+DLS>}nZxr7-hbc<aBn
zcK?P((;{`Iq6UTqcg*cVhu38tZ*FEAyx*vzECmE2)ybEawkhRhDcQK?Ifmf7VXdh+
zz8q~_-jx^_m?8?0lFZbID3f8%_6I_5kB2(yu8{;N+^lzmFz1RWt@*i@M07)RFE1ME
zO-tL}s%XhPrrd07tVIGAJVk5zG^Jqi;Qg3BMzUj-+WKFyN~2-uFzlaP9u<<|y!A3w
z2(&nlk=5J`b<tP2%!)~Di*NZ~_;)_LExYZvSdg*QPC-gdEq+3PD!6bXFFf{rej$32
z%b<1JU(s2e*wo;#p0IZuhKy*(NBa@Ig#OEBGp+$<u0K3_xp3(IW56FBv;Nt>sPrgV
zb*_~x#md`i#Px_b)#ha8;7{ZE(1&W(?@ml!=Y=C8l9~PRn8eVLXWZ6hi9O}z;<=ag
zJ8omTTSar$D1$JxbsOx9lg$WNG|*mwjt=&W#H`#6KPm`PlQor#ZCBs_LdBX2`KZH`
z&^OYSzUsEmPK8n4lhXAVmO^_ZsFf1$F1cW0G*XO93YF3(A{lKn3l&cAgZBQ(V`N!(
zOVj^uU!>beTTG|b8vkUeaj0~(-bof{FbBi-u{C}0I1Hs5UzfP9Oh!}b4YdNO$KQWw
zo=TMvp5pRw(Taphi62>r{I>DqDIeP?=>`Sz*DrS_Cu@Y}AFm|Nk4X_G!|{jZAR=Oc
z{WeGZ*zM155EM&oF08*%w?`K+c)l#Be!d=L-~?TMcfLQHgL*J=p@F-<M$H{hVicMD
zIp!gb&2l<3`Q^hYySJXnEamXFdV~a{w5T_+B2L<e7C94P{xSpFj%VB8;NZzifM)ph
zmz;plpXE3{4dr{2L9*76s@awoa@ZQHr*CJ6?h9<?Qh9j>!x6t)&XPq){pH1_xkbv$
zN9EBx2BT-}rle{pzK)ADR|0(Um&*pgC!gZtlZd-O(80_4$igSJh>i{xHV%&9-$Bjx
zusMnQUy}f@(3(lEG>PvB3OqkV0((C}M2GILE8f7d>?Cs>+~aEmfwLjOGFJNaUB{o1
z=8+0rKP6ZNI=7gB_wUOkC_GkKOgGJaW|MZI7oI-aKNM06dK%D<otrx&K$k>Il^_8m
zTQ%<QP%$okN7^r5yP%<<5MvD2`G?Tep!7igHBkYCc!NjjDBGt*7cRPV=?UqIa_Zxu
zWzdHpAxeXjxA;j%4>F8aX0tzV|348)|2B>J3lgUQ2ari{s3n?T6LOKMkGCfhK!*6`
zb|+jNO&y$!j7;<6VM*_HDr{VAEF#oL>x}rsMB|&D=H}!91%T?jeR3k@_IQn?A1lhA
z0s?`2#VP<ar`uF5+}s(w+0UVXuiVF=w@IieHi~XEMAj1e5+403(?Q+GlD}<dp(G<F
zS5z>6FMleEF<@||*XN@hF2NRG@(9&HzD2+L+>ix#ZIUa57vd~wW=JW<hQMIJK&C=K
zX<=<SNpP!_ZUTHqEU$jg@1!UXX$q#@kaqB(Dj0hv`VBJ^+Hl(FWhjVYA2G;5rO4Mu
z-@B*<|6ceUw3hg(1@k3w<M<oqJ)6y6D_B{ysuXnWtZZ{lO`(hhP=dm-HaF+dJGPT!
z;xl}Rcf2E4NC!=O^2IaIw#1^L1qdgkIkI%Y;n-9`G4wC~6G{=SB!M;viqunhM6>P}
z<-*pft~Y7d3yh8`N4GuHmJ^%6;I<x^Ilh8rHRKXRFpQGPJD4&wHM+on9mtCLhaPey
zo}vf)ytS+dwlh;NcR_w28_71qa}hFQzL}O|Pq34xvh}w=q7jRj<GyGn07;W-Qd=yv
zwyo5il9J_{=z;^pdu-!PUp@x-F;9U2WJ+p|4CfwyiOtN22=ca<*%v0G)0{<wMl}dH
zR%7E7ZS8!U%nT!lCQ@eR6d0HgN(Q3DA3wTC-d`LPSmrOCIW=JgUFE$k7e!%bEjnH5
z2jdv28ha8{*hLv^P|Zw|N#lq{@Hn)ghuIE#A7d`E@gfpS?Yurj_}O&_?O8<gt`G&7
z?u0!Ys5h2-RgX~d=eTUIvm@agsk7|;qpYVyq@Y6+56bJ^OdFO!e$#aG9#Ck-?>_F$
zCNx0fzd;my;=I5a9T-4c6Ep$uV%?-`(ht2~;cJW@8VdE^-=_`=zaN!<czN;l&W`aJ
ziEy_42|M_kMlqTw3kDN$o%qPFnj7_&Lu+3oNtUw$HMmhIX|t`HTGT#Zlnf`EcI8RF
z%8AbAV9_UYKe5uN#I=9;w<lIEBpRwBk~J0e&;Xig+@@n;b+#s={ikYefmg~)_#i?=
zj++~7-!72cUm~$D7qTzs=LiXBK|9_!nA3XTY@efxX$B_P2mis4V21+h+cal?x#H0<
zXA(0@x2URbB>We?%D*rv{;H$*S)o{2S&gs0C3Y7lADBYw;V_%Vk}!E!21;QLgjqis
z4-=>qUHati@9dC5hX4`LwE)^=+9SH{<<&~>@#<P+n0@&1fu4j!usKz;-aLs!vY2U=
z1p!Q(KdhI6OyI5I8I9fcHgHz7Ql^sN`er5^L%LOtn8m&22K&)uOhz5+@O})APAsqQ
zh+JEyMfy0`mYxvi$#v=n&D!*<g2}J>lI@FZW_)>Rxws=e8U;oOfK3m&>OIrWOzkRm
z*zzSJCbKSEXlk{4+)H?iwQP*yR&U&W9ga;gn5FExxqY*^=P~P5=R7TQ!7#R1B@X<F
z)b`Q1pBZ8@MtWR=MGD0-wq;x|gk_*q%{%n2%N}KLW-29JtzM(AH!Mv!#g8E~&ujU9
zcdZ;1Tm*#>Q*c0p`#~w16jCx#O6Tpa%Jejv=EyjtpCA+~7<RDtw@>D-@$VlWKP61~
zHK|R;HE_$cT2HmP&CJ=E&!M~3-rH2>^mDHfK<5!4I6pwt6+anW?_EA+#JKfb-RF>7
zW_2&I7`vTv*&?r8k33z9ocNQkWhYoA73J0Cz0;3*dl>WcCb4=P{5>)flZ!OdPpjo^
z+;#7DS=rbaYuUad<lP)!9f05NpD%?=28CA+-jHq8(I!dC?6j8n4FO*|7f3R?&K9CB
zp`;1Np38W>*_Nu-X;}LfaO$xxRTg1sNoz=3w5R=;81Mfs7ISYbgTh_qw^rhZj;Aw5
zE&*#?&fEK^TDO+LGRmPaoP~sRms@lYF6T`}%03-SN8rBc?z*o0E%UCIrs+$PdRZiG
zHq%zF!}dC6sUO>4hXJn!AAw0f%tG9>^wExEsPn9Sbqz*&dI|dBU#;X<B1Ta_#H3_$
zU#8w<TM{2`R3qMh_4(oA%g6V~Ci7dWR{s#E3AO++2C<bl9B#IC=c6-g;wlS|+(c99
zbv%)2ZCt$$XJi-!Mc&qRD`JS>rr<5<@ySI~yR^LW_#Gd0v*0O9&zDV<{FXH~H&<&4
z?q8U7JijY@BK)nX{PzdtKONcB!QVS+eXK%C<!P!DEs>fQ1%{A*{{E)=LW-~kk$Dmc
z@(vDYn1X9KuC@SA6BeyVZ*s*Bz%b%No5>^-GjWOEeJs3O3$t^fFZ#pnM#H{4U6J_c
zGiX5u6@x;atl5*S)Cu|9yECA}{kyQGAhE2mrsMZA^Rb!1IDb2AqV9r8>EtMEq$Hha
z8SG7#0Xqu(KL5TUYmG;r!HvCkx7pC;z*k(>whVX@T)?Sa$PC?NTUh`8WWWl`hEcYV
zr`}Nl#nkO<Ba?E>-a$~m0nRieb<YR5-GeQ<yLb=j<CXF#?5K}%{b@XOaSLB{fyYVM
zvI4zh2V=p$P?aAfXZ2?aDjpZO)bc9g7X8WNc7zLH=!m`}{65uyZ}Na9CLdzF(YfC=
zCx%R({NmP&VF(0Z;Xb<I?il70iT;vXA>~uRtG&c;Jk-42AhvzF3?V<*n|aH-*pkfE
zF4TQFDxwOVn0Y!)qZ<T4@jTAA{CR)d;~~r9O@$&J(%NS;$&{nHH$JP@s#>fjq?d(S
zlZ<<<Z!glqP(mVYAdpg%kc>pdYYH6L?*yIli9n{}<Gh4$6qxU{m)5<(YXF-s@cHG=
ziQREj5GEoRW};GYXJ&P^xAto`;c1bah}tft654_efrKg2e{lZc2-d$S!d0<>9;0Jg
zSRMqg$s#gEvkWPwEy<PJu9j_wd+mNRW5}thzI%XX?gL%*DQIfeDt_;&!Lo_!!nIGJ
z^<n^Av?-tu0ZJ0(!=p3u?NokJ;9Yw=UN)Wr`@of~H+T^+Vt<eN%?2Ek-*teCBvSL)
zZSbaRmn3!`mzF{T>>I+`JKMY4ys88m)H5al<JmHV7)M#7OJu5*(^dD_=p+d~{`al`
z^qh_V!&O>(`}^DhSX5Q8CP@2>b~OphteyH7=s4MXIvQs3g*nCassI1Ao(%c^{Dz?Y
z{VM*qm{i59+L`UTuDsfej0`(wI28j~b>F3$qw<z;<x*8SDH}b2=M{Y)=yeDeV>wkI
zlfdiAg!%b1#d4v+z?XNTRsbGIOu<YAROAhbh^@l6gq)n3&6WO3ruDl5?`RVp$&O2_
zyaqZ&X;$W@B3{{FDoCU&Lm6L4Z5?mMFMAxq<7f-(0>2>!VvzK?Zp1fpJ8;ej-cBV@
z(o&OAC_4uYZrxhu^$IN_Qb8~-X(L9$^(xWA%#hTlBt*o^;Lo=oV!vd4vU+$`zye*&
zFyJ81+y<7<u$vSA_`PQ}5m}TlI4uTinI{BUd>UnQWjQTg_OgjfQ;GoaO!u!rsCd{S
zuW7^s3oCXWjYpN>MVZVr#SLOJh;E)P7aZCT{M-#Tq4*4mJ~=VVTc6A8WDcw&q07!8
z50wFaW%=yoY8&+RJ<6F1U<QIvK?JsHxAlduT1AFNQ5VMN8B&Rcr-SNd(-dx+IGb`2
z+{<PtmN5Dq3gUVh4ZO9(w;}=#wxru)4cR<!In2G{7Hg50bsv?9Ih~4}+}z|9p}SMu
zykbP~)X$G=)Q(4A88)^^H1oP-9oO0??0`{!S*XE!tF^%*V#${Zs=2{cSM&Nqm(3t@
zaLfS}34dFrf6&{0`|+y2iCwY*-gq=xEZs^q6B9|^E};x&$d<V^HCGT-Hs01RnqQRs
zw6xL=PFr^6g0d7N`+n~HM1^S*4FI@o;{X|*A#{%o-FL<P38xCNRQ1a{>X-vzy(R)E
ztb_3^oZyIvg3eRof!_X*XT27AH94_3B9J=<LvXJMG<HYqja1{NVUuxQ?$?Oao-Q~e
z3>GZ5BdR8+tlHeb%h9~a!F#Q)I0qv8qgkoOk<plt<>=^Web8(7zu-jwQ_nG8g(!O%
zw*Jm@c&;2OT%+Eco&y`86y#Uw^$$VU12UW`fXPjwmO`aqXqXR^d_s>|4**|TUnX_>
zM1+J)z(pix!huguit_{C#rJq7)cg@1dy&TB7$0M9m~@{hhBWY{(jD(6Ob}eqIKcXb
z^WHl-2i*h->Kvvv(B!3idxY`k(D&Czv3^y{*c;YPDIJam1|Ji7+-_O@J_esef{yQT
z){L}JmeRE4R72(-w1Z4Y6%iwxDTTO?_V9CECp3|uTP8GpqsRgs0(*QW^&{@UkRb@x
zSUOnS;x!&(Lz+y9Q`gkg)UvI7st;MU%rq24>So-zW+(d7-?L7q(Sb;vxunEIDvy**
z_dHF7yEA+Ny}s)l9gi}ioFAU6tEY>sPj_eeeq|8nTV;+IrZh5In^;q1no@6PaV>=|
zcgbh?dH$tmW6d`%#+SLjqCFXZ_Ca-hyd)D1w`#w^Jz3F6tHsSC_EaYhKRgm)Wnh@6
z`gP$7qO`ZQCL@2N7$&l3cepGenp8noQpv1UhMvx|pp?`Y9<%vJXZi6D2aJl22K`J(
zJ9>Tpk4pnaEb@u{nIA#O-X2D<RU#1sR+!zRU9+M#pi4tu6KuM?GwToUo^EkeNrLC+
za9`pz#NlF>ZvN0&Q(t|_336&2TBFbPF^BgiM!l_q`u(dnX*2|aDi1<Pk+MBY{0gQ}
z6OrO%Xf(tv>ziWa8g<W;+2aBDCG@Afu2yp@mUy|S`8~tj!B?D>s;Ec6CI>13Lf!_y
zBf$Ls(a!#d%;E1}a8cfmK<IXJ%C{(3*K(2qi80YbqHa&Oapr(CnF~yBq(J;aDPFfh
z9T98SOw#JRPl1^88VW|f#W@TV;?>M_U<(j+C}OS4t##7JTsM$uzl+sKkH(XH)L-k7
z2L{HBskKZPUt}$dZg8v73uNX3Bw(&?0vJk{)weo-=eU(<o~pH^_Km%TDAFG@yJlN&
zw5Iz@r-)d0z%9K_sn}M$eQ=z;I&~9%MI_)R2O`@^@lf;!B`-!w2s+kjQ91NOzkpTi
zn<a<1%sebqJ*KF)*oqf&)Ikgn4drN9zC_H%1))GrqC~6_(0hm$qFb(D(GB1$32Gst
z>&kYjcj!hakE*}ZM~)Q5G7B@gN^8K+JU=H`fQUqiz~PcQIABX=*ohq!@Exj(`D}Hg
z&3(6A(3N-1_jm-sQZV4vE+`T(N&VIq5*;%(@w?$!1JM*5^x*BqnPWb4XhCKC6M!+r
zN=$Zy*tYj^`K8^Je4R=#Ed<#im60sN{APl>zXjX;0So~dt3U5#I9hetpQ^JzT@{Zg
zf@5JJW)=4;06+Os&B1(UXswqeE{!Ce_#{TgJz5R1;O*qsPwf7~G|9ZNG!Es$!#A=+
z>qyJuJCDmUH54w|6lrqzRnZ-x-41)|RkvTYkwUJShj3?vP6h8Dko>I}8>3Ev(KGXo
zyBpiTX~h5gwNq;a{uKcNiQmc5zpk891?4+vvj=)3yt<-vFuG7x;ik7&X~=qXbktA{
zxc<4YrUP2)jBP_X25M#xY~?mkioAIh=n}t+h?q{ft5V!KE;VRKlgTjkbCO2}e--8H
z*VG0NE%uuLrLL(^CtWTqU$3kc?Wq#2`&D)Ez|bRS8Pdlh^$Mqey$B-s`NOeh(ldZn
zJjrJV{>$ci`AFX(cBS?j1#|W-$?d2ctLfru?<|LBHYo;2c&tg8nDua&nXD8)fVr3S
zg>9lC<|nP6HN5Wdn!9u(d4;^o<epji*GHHlJp%&e?<EywI&YA0n3FMvlK6y!t_W{0
zrjL6uA+@IB;zI+!f2&0cX*&;Ymn%q^=kp3I0a3IQ17QaT3wFQj#uU5tpBvvtuN#*f
z9nGGQnG+JaPxjuFCJ|Gz&ey8G>ly5LvEXidwnc+Ch6L$awbg|Nhm>dvEtz(!w-VlD
zlCXO3>z!>%q4{%~EtvPQLG~D%_)j;}<d4Hx{{xgm7vwF{E+M<w7Dh9&uzHj&eSOIx
z2ZX`{C(a57e_#P&6~$ONetvK6kWct8miBe5g7b&?eR6WzH!UuJ%uWrDMC9*)@4re|
z|M@4c@Q`=+Snyp(6i!SG%c}v!<ev}4nCil)zg7+jRpmX2Hgf;8v5ER3>#46+k)RS+
ztZHd#X(46f3`=0mPAq1Y7vj-~UT(!JqcYucS)(LVWDSD(S=}J5Z|7KU%VkyqA8y4B
zPUM1+>)W;)Y^C)CKZ`YjY?*G6lvT(p0TW)jU{M)gh2#bFEYYtZ|G}rHvyP5FtdL7v
zsPf_uT|`A@YlPeD+mc!ITn0(gF(LyLno8>GysELG-bbc@oE|y*@l*7H{evD632USy
zuXWghgq`XmFpO3<tyXi-=o~fdKP2F~VC}ueCPQfHgF^xzg`+AGx~*uv3|0)155xTQ
zvH7@qcv`pZwxazJPK(I^;4^o%6;xD^?`$WQR~;X7@>ze1CJ`z8p@uASI29>Z`rQ*4
ziJFS{%nq^C{zf8pHk+Y&G&W$i&54Q0u~R8F0Q9i&@lqieZ$u503jX7I5!&QG??OuC
z#RYo~rcC&47VHrEf@)8eu!U*Aa8~(ox=6=cutM79Z8EwTG?sg$f)zh1r9O+K1xqD<
z<%?u3Fa`m-8S;U&qgp+HTKgXluZIKp^78WQG2;3CUy8v0Yz_b4g|(MD(m3qHOmdTt
zzATvH{8HTwy_d0S3>*%ttc0|L#8j6vDHDx6#%C_)T8CUmwy=TwdnX#HA^}q*qVW<H
zx|6Te)Do~iGj9+@2iYY0U}Bz{#a_swa@xeQr`02l{hSkMhN%i|ITm~AMwGwNa8s|v
z;?HS#s-T&mWBNN_o8}J`pl$Mo5dNWm&MYQd_tK~@S8>(Hao>=%Qt;uKTYgAVw~Ft7
zWO8#_8X~<M*Zw+Z<@%`gOOu6bw!!tSh&u&cc}$o^2H(alc?~vvw0zoXS(3)e!fO*O
z1}xo?H*mJRjv>hixo&^{mtO5xFai<pYvbRy7OF);I<`-G>htQIzkm_dy!vW$pIZ8d
z;jQLbA6M(9=dB101ElGz^$)PMn=Ov`Q=4zjM!&(uMMNOWQtNodgAbB?zxl(JJeF0D
zERBDYkdPWvo1SZsQ5iM`>d!qBn5-FOv%vYPt;+hucO+tMfc8{~to15f;zn$yi+MxA
z$+aeajoH-`z1*ymW?Ar+Ml7h{ia)KC_D^~>7L##g{lOa7p?vz)f8N&rerx{wpLl!&
zkDXJn#;>dcd2gYqX!6ZzyU=(I0Io^a7%<+_va*POOjjD~m?#6h%92u3OVh>xdyR=M
zKUj!gdWl~k7sO*vmYW!}q^+#1k}yv5BXAj`BouWU6&1dWBM}SB>g(r<XE!#oo_sDZ
z9ZO})$+H3Oe&>UF^}_Zf>UQ5=g`3y4c({Z2^$d9{9hdDw&h@Ru+5GW-QfcuOXr<?<
z$jq9FZGMRiHBFMIXvThSq(!tT_Y{3H?3H21kS6Ryna{grY&rmwVY*z&g=mnIeA}pI
zl;z=Uw3iCQr5+fKJOC0-?4E{0po1g%HYSpnwy|IvWQhVp#SQBFBde-s#5Y!*_YU)v
zT{1Ntd=No1#B@<WpEa_##+Hhw(VC8^qawjsD`MCiG1#5)EN-KhFXrkQmCgxzlttsS
zSZ>8G`dKSxFe$R`e73Z<MADNs-{BJtpQ3mRCY0vka>Q|Y4L9Drx4Fy5S|H<I6NdL}
z9f!WA{Nb#vL$f(c_)R!;Ux1q%ue!vl?FAR}6Is_XX+mgz0A8~=6<4thIM9puAZQEm
zl(`0-wmG&3*Eg@Vf-=zGdbU^s*IL9-k&wQyurw4ye1NmKir@)1y8#S~LjB>H(<B5}
zfo>k$ajL#lBmzpk?a;tkk%IXn#DnR=y8B~N!CST#q)0fKi3!y4QUY&4MB=paM%Uv>
z1AZh-A{9!X{fv@=@j=7bq(}&!(!|WI0h^e<C}R`z4L(Sr?mC%hImch(ZgwE1?WHEU
z+7|170Z9J7=KflpOknSOuRcs5rB*gGs$oqS>xDG8v`AzV4FuPl16e`d1V6q?__wGa
z65mioJbog8DAR6JCuS^WdRGIwGQ{F}eOur_=`1Y1I_X#-cOig9tdETJ1d=<eVIkf(
zsNdz8LX;?JXqeT#lq#3lo6VSN)YacuX&ovbg$D<Jp`xN9ctYk!78NCUN|!W@cHLv!
zkUW(nBjkVvY2%)@?WNzaIFj9sfKH!Ar+y3pas;hC`eNCbGvGT5<=ND&`aS5<g?8cm
zf|1DBd(<HKh<F~&TgaE!X(}0wdQURl2&4+<BVBEibp2feaehtjPf)l7j@otw8ucX^
zs=E%)_J?zqIcHjVNBBsL{I51IJoYJw8=H^(8hv`{8o%7_tluunkWrU8uTwKTJUK7L
zlCgt2p070rr7bQq4;`vMKsq7h({k%bYlBx<!O><B7dzh-J%y`prFgVxls7+#rCD9)
zVqRW#yvUs8tm@E-bDKV-53HBg4gac5WB3AUEollp!JfWRIb*LsZGF0X+V&UGnH7t{
zNF{b+!>#+lNiaLBD3)3F@MKWdecbUnf2RLDGF3}~tXmC7o$7I0exwC9S)I)}xX>Ws
zH^$8uFwwrFa|SJ#*e-4dU-FY(5%*O4=^FZG?CS1W(*5dK+zk#6pHVIZ^C;X`w?3F2
z*WvEWL!q6;;^bCc?dia=+WOa^`iSFj1#KM1*&`2b^kamFvz)uf97CFW-vJ{yos*m3
zfa&vzNlBU7Roe6R;?LN7k4$)w+lxI9V(a%3WvkeyGpp<4ps(||CMX-(Q&T@l=;^i1
z>v<oh@U6yQ?yjz8UV4mj%B5E{3*B9?TB*A@wusQevFNtDe+SO!5kKCHd9-h-DZ0Ns
z8Err8okp&&6JVD3Mk6vN%dXDWhsxHfL5Lv3bhrxpr@vLAQ~Q(tM)EDQ4Cx(dlQuH5
zUd*#wa<QPyz5)kt)R|isAbyWb;B`ubh>S~Te`v*i3VQb8Cm~?fOa-jdWa&P?&d#zO
zGu->K$vaa>6-&UEl)`NmmX9wz60eTi8@>vFk?{WSul~q)vvXNZlcR_cx;%^1*X?dk
z;M(XK)svI*Ai!BVZasT22JaFb6_w(`rzY=5G%%n2Q>>_Vt7|X<vUm+((6v$gp)+)#
zXT!QsHV2SUO{u3pX^CWVc}McJKV-Hx-tv@N&p54>ZuV6lGCb&;9ce$|xjzv;xb_>#
zn^f3=`pit2;7s2?Y&77<s~aga%GU;2FGP5pH=-(`A7s;nWvvqNn^8s>E#2INfhEOX
z=EzjWkGjmxt@JA+Elw;}JHH5M2d-;62!5W<6wK)hRW96sLW!}ge{;KkJ7CA^9Snmv
zBMf)hNXItVBL6L<n4h{}sc{#Dei(;=QA_ce3B=KI<J!R)p;7X7#gbvq(RN!`uo7Md
zc^-T}i*jcymnFus*|!|Zbvbe}m$;o1-c(#Fh^JmJ3Ml*(ZkjySn%f+U`;1N-g@<6S
zH0=eJ1L-X_AL@@^cNx=8Ek^Pn0(S29Wa6}RDr~f-8uLr%&<<ZV)5`CP_ZINS^ya=V
zRsptVR*il1X0t)GgzH8b7E#pYtt#+%=AY=ps0g8$JRHYwUq1xs-y8~8B$Y9PW+ox^
zyZu+>HI`7Nu^xUq22d_de6wo0fnI1~SyJ3W*5$XpU&q&pU0&vQ8+GLdB!Aw>gTvGg
zVffjiC5=dWZ@p3;_Hisbl{6F-aX-gev}P;THmDGEbCi}<RaL3ZTA!NgRBK))EzTsg
zl!BxqlJ2Gq_u5Fo1>xf=Cw^WRb={1WoKK%>w#Ct#h>3|As#qn^>6|)@d_X36kGwAq
zmSdPo9(2gOxy?w*${=m7`+=0gHS-gfiPxu;T3HJW@!(6@Qw)6t1e|&O<>({*5$`-?
zdR94aNchvC@=Dr2|Kxvt?SFmGD$zBZC}V3ItSqqL(sWm{zWyC;lu^8^t1CA1mkuC3
z%x!FJOqvsB{8|$h7>L-)&(B|*T~k;n3YgVvbqU2()X^;BvD+1*D{b%Whyi%H*+N9f
z&!C_nXPoq|iFT&Ofk+B5942uhej?J2FEa4xyP^k3x)Lf8-D7hy$UjgNRgZO}lUr15
zLw+_lL(k3$gJG;)W~SN->wR8ZOJfu>Ev6zd*`#D|wOfq8q1wKP|2AvqYIKG0X;RZa
zFO?$Tu7EOXqhK*c&oRQ;X$TyX%OKwLXT|X=mbP`uD*<kq1wNW7H@8VCN%7Y$L}dKY
zWopP<b2KQL2y&lFz@!1iV7W2s@Jy;sUw?bZ5-l4O54UBQeR6j^i=M$mzS`G+aXW;r
zzA1=N<A_`^h&+u+9nq2<Fc+w<h9551dYbtF8RmUHJG6--m;snW0#gf-l8z(p=p>Nn
z1sj2ZK^WdpxH7kG*8;<Fmxz6Rn}-%jolw|Dg$5PN{YVQyEkTpl(I9ofOQyUDKa8(#
z&fC)70sQl9f)s0NYIewZ9)dLR@FL$qU(<mJQ&_G1z^8M1`KEEa<;N!JV%~*diC%Eo
zw=auukn8qX9hz+4e!Fd4@dd4*P5cM4w7kW%g!Z8`wCvqrlz^~=6vzwJ&{82Ck2;sA
z;^wUT_Sz4mL57HrPshf_#iAlACN_~KCM9Ljq|kr<Y4?EXe_K6Xv(So4N_FWQtnAnr
z7zNo1t8~!N&{WmAQbz)hp`913&iIc#vf+?kdKvFlhB+|N*(wFNd<zkEBO?4jD69@D
zJl@^J5Sz2NSo5ApWk=8iIL@Az;xpPlEHhhD6bsrP0U`T-MjIWU&7geaD+F6@cAWK%
zxFW}?qef3ZkErcxn?NwjH~%6l*b+eMs`STnTxIr;_z#-Ru_?R>*tN&spj7?BKDQyU
zVCm*8I4G{O{#aayuCwuDsy#pVjA%Bp;V1y#VlOLy0>6Ga)8c*%q_nm(67<U9K){Q7
z2Mt{I|Mum{0`?-ceh)Y|4gsQbaB1idU|>CK*r@q`-q#t3A|0($Xx)rkg{$M9Ex_TJ
zYpz4}bL?mhil3%o4)O9aJ;boK;qz64SErOrJE;xvayM8*R^q7bkx9-{a@@lst5+@g
znCTK!?79738_Ht*95DuXcpn1;1BE5i*G5ucd-w)sAC4uK>{6xgc2{+~{239aoRd*G
zSO8?CXexdITPc=Sqs+ClOWsXJ7u{y29s7~g@)J~0<U5VR&{XI8+zJnc=jRW3qq+gZ
znl~MQ$Rp4~%B20&1<*O68+GN-3MQdcv<aG0mng9w%NEhnqUr1u&8aDrbZLtOwdG2>
zet5aD5w(jg7T^L`(8}?R<3>itrZE6W`1P)J<#(|u@nUkq@zV=ty>e=#-T5-eMr8uA
z91@hHBk{6v9jsfPJz+8vCrUU&a}Qk~dy65>aFCf@14kRqUYMKPp;gk!Z-d2yK7SLW
zvb`j6d!TA?4<Luf5K#)d966HRvKN1*Bo`BVd|yOGA<sYlaYe-AM)CUxeuBa)_aR2B
zG-pxLhbLHrGnbOQ_ST`Yc3oJ*!&lUTleq`C@YX4Enl|1Dy{F-`edh?0pZ`B+`#9Kp
z--14N)Y+VM9AB`0bYA)-@JEjKU-TW9N1`qJ%~;bVHenNIxxfeNT^g%rZ&6h1OydZ?
zFay)SxRVM`Qc+KE(abdP=MMt8oOBApsjm5`MklCmo!@Q1!No3Hhx5wog@cZZ<L0Y0
z!MurAOr=xpfiP{|5($KYqw6ek8dMFZP;>!wL(3>*v_&ipVrxlpaez4@4h;u4qX9*j
z#_UifM8#)Nrv-~czcHfSAqI^z45YIOa=jPYnbjb0iYcX}{dpvDAE{bJjg(76#qUkj
z)uSd`N?tZ2l*gVCQPIr9HK~2>DVl~rKDnw&s9@QsDaoCSyV@?&Pys_>QvgK#0Ey_J
zO?a5t`y!Ou@73k?%Fh;j3?>JD!7*CUxFLDgGR>co7_>7)(hx0n&z3`03~!QN1q(t=
zM=Cydj<8C$HCdHS9y|wt|G5_b^Q)8NJ<pE$C%VK6b^Pqk2@dl7Xx<KT>#r6CtxjuF
zxSNqRXY+o#Wi`HP=CZ4E%~R=ZN6vhr+qdc_y4o%wUp=s)TQ3WAhC6?CFDAB7YP89}
zO^IewL%RZQKHeB%e?Hwgm>1X!6@i1uX_<mjbcrIzFpX}5k5FDiiHtQMK;`fVM|_>a
zlz*NHuCzj76`lA;tZ0?yX5WbHlZ|+!D&0;1BZ;kbw3&<39)>eTqT~-EllnN2U-gp*
zzUUB0g5)ccYF!R^#CfYz&vRTLV*kCyQAsNSKa^TQD;a-iVw<JUAQ?mvCUROTf&I6D
z+hix}Zsn5)oArJ09RqogyrRsWUq1r+)T$t<ps%BlldhyHlgP|g&Q%hOULT2A+2uOa
zgg(f!9o+dE8;|6J@O+Q9Hsy_U!6g|;)LZXkU|T7FF^oh{|Cq|<x3gHUVi{I^JRZ@z
zUvhG!0<jd6XWy%^Ap?mg@D(!JYBgbbaA#(maXujXA2>_B{n=Um*P7v6`W+t5M$<&A
zYjli4tr>JnTb~Pb{;dSqpEG~?;2<nr^N|!BKKWm6baUXlR;;elKPT5<(n4~Ox}c!o
zTx}_M05{ba<}SJJ>-NiZV`h9(r)$m#rWtxp^nwNpH*27PzWE#x+OSZC3{M1JJCxfJ
z>9p&r<?$Ghq1G~Oj-OR=bfoAJ9$RC0u7rnmr1aTDRpY28-f>B#)l~`qC@noyv17s=
z+hXLQV7NVk8?69lt?Wd!&1dVQn6$Jsw%LJeJrL}yC1z@Bx<`HFkHycw_*N;)V&|h2
z{Xgvez^`~K$Yhn2W=fvs;?hDwLSlgFrjBsvXF^?F-Rt%FIBPYGzaJeq)L?u_6N?gC
zne>c#*Rsi%+N!0Tq>BdU&_A!~A9qTNP+P<iD*eQj<jPM?|LnpfkN3=$<k~Jl@Krdd
zcvLgJdF<P@HNqf};zrU5slg`pegzk@zo1A_<qR6t7yB?|sYfVIqIiQn(Z$P|=2Znt
zbuuALHF={7G!cWiPbu6*6E!)=Qs_p85`{xLsW!ap3zf=2??h<Wl=fh;QK_YOHt0?7
z5!0;Jp3Lmrw&*xSZrbFD{NbX4Q#r+S+Ka2!#95*Ec7ld-h!0WnQoalhpr;&Wbo?gs
z(j{CR)@v)Skq#o*&_(_+ShYttae}A$md1T1%kzoXX(6+f`6I=IR+<7RTCv}u_uXxZ
z23-u`umDKbW4PPzHz6(;%}RRBJ>0h-<VzOs_juN3yl1k<=7u|EcR&mzq79gtf{6~j
z-m`7sl8rE&3u44x?fjiQPM$r|Ey`|=(_+6G-U`}Tusa+}U+!RoBO~tzkvT;{k#L`)
zE=R_4H#?op;=i3dQL(gt=+h~@LO*j72<mRR6PfTrp;Pi82Fo>HBj2R3dTyD@4`)F6
zbK{%{J$u7o>CB(uT>wu(gSXcgZCj9xH{>O@RjZso0zNH}`O|6+1SPxl;fba(nM7;a
z^rBT;t#N|@6Uf$jR?}&UB*1hrF+k~$!|MV-OPFhwB=M?8-j~YoslRQid7y3DMh*%O
zpIyVaU)`skRe4%bxv$Rn=RVWT=iThjbB2yPmR_<W>=z?Cv47h)IiW~?HwnTpHU#QK
zN<DwDKz5nrukz~`HLwZizE$!5EW#W4DXmc!zM$L@8Yd<?I=8x79&o$9QT~l?Z*1Tj
z?V!9=_Zbna>-Z)mwiDRl3Z$mJ`I#!Jn@jnif0_mlYxd9cIT^Pg^DSl*kx&pxrb6_p
zKL?yoe|2(XI)Ok4oPLN*zwLubvhChs4`mM54QM!<I4J?!Ea>r0e<>fKo4$Ei0*kAp
z7ZpzXCIWMp8{%Od`2(5af~u6sH`a^rm$PKP)>5aaoBMOGQE*OQ`J)Cc+nQxuYz@Z#
zR+!AINP|v6D+@YW++dQ?sBFxEa~*-3Y(a{}w5K)Dh9N`YmMC#C&(u{Pv?wMqunAek
zMEi@Io5wx_hA`ezT8VFV&|WAqoO0#Ohg2^l1xT#3)6=334)vUX3-h7d;8C=LDm1hm
zhS&T7Ph24iHU!5#?eC{cI!h@C-+qZrgEu9xtIB-4w{>`E96gyPzK_!F@*!{`^{vy2
zIxHuC;fa*G&;{bEo16=8yUZ)oFeQJgGFb3Y)~!!!txh&AEx{cJ9WN(V_Dz7DpIYU2
zuT>tW^Y1O-;d`k+!&99Pi<*yV8kUKM<7vzsbru!Yjd-4tLh-oNi%Uv&ZkMbasR2i$
zhF~eKz!<>!{7)2!4EICN$+MbK+DxejhvTUoG>#0<i=7&v5vIKwAdY}i9T&}{0e61<
zIUdh#fAlq$;s1I8IO2t}QBa7&z`*2IK;cw*E@3>atelY^k^j?XzwZH#c=743zmLM2
ziR9mo0WWUx%x7zVL3rut$yCKEp&qeHXTnlDgV*<NINxET&NC6wcGW<7p@C7+#9O`u
zpVB!;>KQ6z9p279h_P7(f%|_v8qBGg-N@do=<#MPSHZh<eR+Z4A7I~ULd@<xw#U|d
zfRSe;VQ1qzG#^6A9&-7w6Om93^i2_E>iquKkHwTi&aXrnImN=r=)dJ|?)P2uyAtWe
zhNunl(52${b|o@JI;7nEiVl!*7<uP18bAf1+<Q#WpLJ1OKzT46WnF-4Khor4?Gd|<
zGNF<m=_Ah2QUp%QEi8=q%;wd{hlR0G43C}n3|w3)hGXfOJwHjETP#<U>pU$~v>p5<
z+}(pvF%phmm`HsE)g>i!(S?&A8&9yne(sJ$rC2r(o`}Ftf0}qF2=T|<p!K{9_7ZSD
zx0muM^#fSro&aVh2|dJRanBaf(h~-E$kBS)nILa}t}$jV!UZ4rIlnh-AhG4p@`Yuy
z(2qT7V|)?P;2H=uyc>*(8@DM})OTMU#8OKID#;4u&n%Xyx9Rh%uUmX6<(1{d1!ZnY
zUv<5k-$Eu3?rN1khA=C`A|N=Tu&__NIRNy)<~vD818hda(2yNZK=q)t&I;fZDj9&2
zAV9hX)s)a_Rs96Yqa#SA;E<4=3Xc~v6-AKd+ytgJ*9#kK`C6d+H`c&mLgapC-++Ok
z;o&FD_wWh-biA*tB6cpKX*VMHjYom?>s`=RO8vcz*yjgZNKpw^=d*`ahA-B00=qKg
zc9)v!G~9S#V6=~#Zs4BOa8jFw)fGWcXgK59cR1cE7%h<<rIOo|;r!WtD)Jay7v0WJ
z-t-dFWShn<oVf4213eMD^tgOf?utl|?3&-6Rzd5Sc2~cZlD4CqF&J}O-XfBUbY)~5
z5r&EHmS592S~6HwfhEy~(j~>icE3aBW_}1dZ9=#{<$1kuDB%~9tbS4Cs&ww{Rq;FP
zLr1{uy3%uXZRPIwV3+w0_%w@KKQbmXR+W}Y0;afxh+w>mo)8|-_f<et9L=ZsMjO37
zYy&uwaX9eH4&@E8qqIYh08~ro*)|A#9%!t{!l`2+ljw`XJR0|g77TND)Q<D=KIh=6
zJcg$fzzdMDSI$Os$f1J{NpCEg5cV{_ZHzKP&$JY1!o6Na2mq9h!1fx@7=L}qgqtKx
zyg+@PnVoe;KN!Eb+!?M5w4AThWf!y$pfV95B*!b2+m({N1)Q#r5N8l+%C*}T%Vq&@
z=*I8{izTwV<)0Bp^T(YfdGt<!$CeVZ>0}%9*#4D^S~S*xu~WUEurN%b+`7}XV+~^~
zu$fq2Pka^8A@F27tu>jtzI)d`m7SeUVSNm1h4Uo(UsKWk_wS#DJ)4MHtMxie431bo
z;{=S`gO|$qIcSxY2L01o`O^z=Kru}>!3t-46O*d?m6X@diTXTRsZS~nj*P{6SM#e}
zv7RYvqomoxQx;Q99vG#%daqi}yYSL|n=2k9_5~rH=wcW4c%0uhI$eGSoh{+A)1k8k
zQ)6MMl(a9Bz$+PkcM1fD{3u?h9xL3WMjje{E#Mbj!AZP%KT@={y>;eLlFq#7>r057
z)1}&R(F-J^u^J4<R>>Ffa~0qg(UB1;8l}c_@>{7`EEQmc5*qsOCC;OBR64ZXnVWvf
zhaW4ed-u4S?BzE#iGfhSS%$XL<bc@8>;$9?H1>q8xn6~F0zS@`%)IkXw+lu`wHdG1
z1(#d+Z}TUd2%?z{h}Oy&5~oI|a}@^~-={@us100{?NpaPGkuTs{gjq}M744eUox6L
zPq}(ikIwoS@F{j+qCm{#Fo0{~%hI30paJ-wqT<)^6kt%vjR`2_rTf;7PLYpw3AZo$
z@$byrm%_E~3bidiHkdCEIe{2UpzL~K=wx7v_#IkSlxnN1C+o&=ky)|4(qD0K%6K?s
z{_8IOqy8vE^8E0jL~h+U@0Z)(pJP^dC|9d4*M*c8m0hU}I_7XJHpOUazW3kQ?4LD@
z6tYS_yntOl#2}N2<+aJLs=wvq-KexM)*2r#W1{rPNa5j%m#P$?8&*YFyaNw6<zXh*
z+0$u0M=g>gEO~qVh4FZQY_gTB99KmhwR!3TVxS~cODHKULet3XaP?Spax;hh6j?Lv
zp4X=A!YYWX_RvdvDM!WWkn5b+(=X;Xq}RGus+cY66e%h$j{IdGkJY+U$)Dr@F!t3^
zRds8>NXSM6HlT=fBVCfxAV>*HcY`zto9;$RQo2hTN$EzB?oN^J?mKzUcfO<Vx#!+9
z#{Ofw8SH^;%{AxqJiodQXpW?m(wIwm|NebK5WdjT*VPp4WgCc=7m2+=-o}k>C;=1s
zvEuw_C&3E0QT6QfUY1`mYqkp>-%u@9ty3<oaVA!=a*&l^peO}XPIFnJQ@JzNS~w!~
z0S^nyo8bFJOHE;=%}d{bi4%yY6$PI9D^yhGvTmJ+2FcEGd3?Wi=PNX#oZ8E4jnDJ*
zX_X^k^Dz^h$-vlcTM>JX9fOE>qVuiA4-UIEIYKcPz-5JJn$|Q~<D4V!L0QPUmtHij
z|IDKmh5D7LY5w>Z;P4xnlth155wy1E1hlD{wHcLv2fi5<)RH~2)*e$@BB}83@JBFX
z#4p=LnFR+9qpQv89t&vCpFdaNuy~8nN$8}~n_xANCX_%~oEQ=k!V#Q;j82eOg6il!
zTW&1NW>q@IQENs#&Zkx9uxoh;o1b*oPeF)qw70hp;O`<_w{_UpZ}`1brC5-F+Z2ww
zTtqTUU~&2NljZNt&qu*j3OLN=s_SV3$))ezb$Ss$AFaHybFA=1^n2!&(G)!%y?Geq
z6BUizMYS7F8N=@VIU|A7l!d(g1NurOG+1Neg09~Q%B@7(vNSSCo>iDH=HyWrS=M%c
z{dtl|JkR4;C#ee|ZW>apPcKvyXa~Dd$$2?4QkYjTvCf5k;5)QO8yZSQkIQBhWlOOH
zh2>P0EXK8{qzdvY-whpE#i?DfM@{jc-!B_ZCi8r0p|9;a_^g<{Yit`tDJ(tsT=Q;_
z>;XZMb<MmP#Fw%sX3_Xo=9K!dk}jLas!mi^mDZ-*^8Kd%)e<rilgiwaaEV0+rkZ4{
zZ4%cbGPl~Q=Tb?dp+qj~KjyPnM~I`ldtg|_?V;)9Mg_Z;+Q*zZFsmBPDSkSDQE^$K
zXt*7ZegPqHg!$bMu`rr>Z?6t}g#|=P&stGK=M!rj9Jk84q%j*h+Sq^zU?O^hX+xK<
z&H>1XjKtu7m&!E*VQ4@hxbr##+Fk4;1YQuV7-4z)IX5K|<g`}vUxT<32g0`DY!oz$
zjn403j@DNlOzxy?#(g7tJi~CjmqKx;0RmSols#%daFYZZQ>6-?yIDZKL-p?ba_fO|
z&YAdDFwVY<&;j@cip=Z`W4?aq%{F4O;`K#Ii2CFW^~2WcAB=U<yNMn~J#nPt8n&VC
z;nH|j&{n>~9=4_J6zDFYaJ-OpATO|NDJP+?EsKoAasn1tu(fSq*$647349!yPHfe9
zo^!S9amyxQsUFy7`E><{@Mgvte#N>M)c3b#RGZh}*bY|<M8?_U3OfPOO~<Z34ESBo
zN@sv8+WWNu(x@!e>VQuLX@<Gf0?1FaUCS1b>Oh_bOvN4&5sHlCIyW>lq|s1!b@1aD
zK?3TehPI^c3k&e<PfT___zu5Y0=-a0Bc0<DSRFfTx)?1n7%NoeSqGM(*PlLF?>3$H
zTK$Zce?91Q*T{_@n-NZHI?PfUr#R(EC-aPMJNuvEYUwv!pQxLa7hlI-GyryQroSnM
zLIl<Tr)zj~c>{}U*x}(J?A>L3J#SQDbxywuNvDIH`bEfYE8q$%1joo2zGBmOGcLn9
zJ3=Z{@;O}nkFEG!DBO-s=;BQjyts(ZpFaX;1lMaw{o(PnGX+zjo7R=<RlDl^Grgn3
zWBJw=Dp^*lRM-TR)ad8q4>AmlMOT*LTCN?!_o+VSzJ4{djz9dx4m0cW{Nfp=-m)mR
zZl1toy*MgC#9{|Kz8&`n$|2udjIcN8_gS)X`KmYYtFsP`UPp&>Y>%0I3w<fF>7A->
zL_~0kxZu=<TfbRhphEK8|D^*S%8?j6|AxzC+~nyS;UlHqw>hJ(8(G?NSrdA1?Wz)H
za{Ai`yJ0Km`6B8S&4XP`a^3++6pGyQFvH`*U{Em-V{sji$Q%Cr7SSt)-fs<3hJ8-z
z-#xBZeJMERrU0jl-@VW{HcS%cvxYWzd;?a9ON!<GgrjvkUqNpCNzr!v^Zxo@6SU^#
z&K4C9?#s-@RzYKhtXH;EAgfqdSU>OLT5z_66vk5cg$j>vZ{}}pgT@Qp1m{6`BopYn
zvT$(mNaJBwV^<TWyvQXUP%P&ha;6<rkMkeek|rjf!6<-Gf{{&+ClJpH+;k&-pyQ3a
zn+c&}lCB*+58Ng(_sP2pABMdkBqCz;xEM~IL5!e6=oW%}I3EU4Pwyg+$E;t@6FL3F
zEZIe#%WS$@VN!!rm6y-_;e=oJxu(*V3Zp8=qTh|c;dr%~R-t|M$22U!UKh%l0;C_I
z$V9ioq7U9Y+wgP{D?lUWukYAIUlIsB>|xho2yojp&d=sm(i%G$D_gAfI(;qc6ZeR$
z9ps+mPQtkL+5>SeK@5WEwdU~KRBMJ?P^s)W&!&fbwcn{fe9bV!e$DFESvi!#U)|n3
zGW}Md*U9paNkkeOV$bz6qNFyyt2gc}+tTv%QhzTfC<d?*OFjLWwIM9V?DYBE_zAqv
z)jC4QTvIMnEvHvweVujYhLT}2@Gr@QpZjfwM<3d6$xOUEaI&1g=+=z(Db=pHk%A*q
zrIJa=x+k5&tEzoD_pbRx1j{B_j>K{-qBEV>Qc=k()hS6zY3bPXT!F&6_|wt(EZ2F{
z25n`<fnUYbdiWio&*Wh5Y!iRL3_DGOOIf*gL>~~;VKHu!dAUo%Er|tQ&UxIrodb7A
zyKmEU#WljgM<fehZ!R_)oR1FuQCC6)w}9VNG@xV2xNs(MTBT@!C=xXiq+PE)C^Dv|
z`oolaizc8p&S02C(pn&?@`*!lrN>3IL_!LkKUI=-*i#9tohG*wb;AwEjMpXDYxQTI
zsmX2SA{}bI#%h<{!#xKfS;`=-C6{kF8Qh#a;qv>oaj-d??aJ|5UjxYXL#8R<AI%Dc
zk@28T$I&N^=Bn>(*zd%z<wcCxi-jzbw(H<x@cw8CfnZ&(9qziHz8H5wl#MkTFCJYI
z8VPq1s`r4}wY;FLCw5M7;`#-+Gox-kpS~9q*Gg)08udH_K7RAxz~+<Hz~5SzgITOw
zZ1|W<cm%1$yK|ZxF&zjK%Fr=GE@h8UQEe9PzkWA9JYXDxhGF4F)9NGwd0^!Y%}m$c
zlZHeP6&BU=PMd7nIJlxqPvcV0X*;sbd@&4m-|Yb&fL|~<$uLxel6cK0n8Bo^4E_9J
z-vSy@r;n7ibtx|}_A1^)Cqf-BRLv|g(Xa){+ZMmJhmUgUs%ykZgf$yozc#urEiD}x
zL&jgs={s_@ueRY{puGVc<ErZUyE8#^oUqY&fU%e`Fl7H}0JVyvqc1Z)kz&K-;6+IP
zpsf1=_BH=v9h`2(zLU_J{S_lzcsbR>x=ClV0Fyt8ngLb#n%j2N(|*S{3lpjt^#4{T
zcg4ZsP?zDF;(Q3RahTvmv7_?>{vXmzHyIJY_I&MQR0>h#o=<?W%1inb^#&rC8MP`m
zik-KhrbYI`%I5qds$ta>x=PB+Y0UzUR}}@)GB-ry?y@^0k8)}g4l#mkwr&5yOL!#V
z$fyJ73R99uT`!w%F9jG(y#pb0Pl^_k8Y+=6BQcw@b8|NjsECEJMWh4ezC&q~?S>@0
zT|QP#fbkcpW92Bx`?i9-yl;w#!b1Jb<y_|=ai>oBwwAS8ceP^pwe5;`-T>s@U3LTT
z9ZtS$UevxJrc*wgJJ^$pz<f!DcD?U909j&#95mB{oQHr6F)iF*&+>><wsfGnPrb+w
zT6_2iaEf?0JDq&7I56@BA!l3V{bZ{6zSdAZAqcV%sjmUlz=;i_yziZ^y>K>T+yB)!
z3S<)Dn5kF?5)R_<vM=GaG-P9rYdS9ad7B~opFa`S#&3hYBV<F&oI?!z7Jdq+$11;j
zbA1WpvU2qI4JCY`WVJ7=?)3FRg??@wKXMMLW4H(K40S<cL+cM=uD^whTL_nlK!Q#$
ztvoIh(HBGc$tbS7W9VS+j&AL%1WFnj^mo>P!Q{M7jUbD!ws8L}gU!B8U~lY$*@&wW
zFz~MUh`l(t|CKqFdiZGY;u^T)u0coVE<$%nec8H<(QNSowPfO)U7zUnFxBsQH!3Ys
zexWpzO=V&9ZSap9!kt>$Mfbm7{rifVm4LIQoI%#-&uQSYH`Xt#+r?JlSiw_`boGy(
z{*jecE85tjMopaKPBPlJ(I~(b_UFJi3>zNO70~er9Hz+dD(&rhM8z)jJh#Us9x))A
zew0$nH|<{Vv<h4W9#WVR-pno&;+1zIVp!kCl0NH}f32EHp2GuStIGh;+)K|Pa!A5=
zJ-r9Oq9rjlUPoKr<q)<bQsIVHeGN0CV{gd4$L-Ek6wKW%*rZxrK2I?TJ6R38AE}n<
z`I)J31-N_;!*y&a(2%;HPU4$WBjB^zev<Gt)n{Cypk{Eyr*vu$KJc_ped7JkwzH6$
z!RWRI3Q=|7MLi&qlAaY2c>cJUoIbCGjaW2~*|&$oe%hisUUM8rf3Dm(JOtR{&zGom
zL=;P#t^y}p`=A5q3&5qSSe5l9>vXe}RdMh@-}~Cr*JsJ`2qG@CW)LVGS~Hk{sl}J-
zeqoaAd)f*iSd<ySokQ3>4z&vuCuO}F40kv90{da#=8wi`lW79yHd&@0a1v%J8nkB@
z=r(Kx;b}O=A6JpO7JC|qr_SoyM>0YL7}Gbr6?U^un`|2=W2>=KdOUx0HAjf|W`<jt
zjaz)I-1>aTQ#8DTVP<jODRAT3(-0I$gkY0kkdo}ga?B$>H7bmFGKZprow>%Q_e(W@
zoSq9RSf0i)AU^j%#oo&zN-!L&S&zDYdVv$3o~unArBzT*XwXqlIH1(pf;U$X7eF63
zV$B;YWjnYi1TFO~s^t7$x_ZaYCg<l+!@x)`Z4=^ncoZ;&NjsrpXBX8xo#kX{W913E
z@95ojjlg@+Vmkw}&5HT1p6+_5tXwRyh{{kWS$psBAO;zyx>cnJG}onZ?yHJ-1zvvf
z^+hBc!q;tRdAuYRr<!DHHv7!D{z#XYw74N2^Lsj<mC-T3F<<y85xh8kYztjVZi{U)
zOM!U9Vp~9>!M5T6OlOj1Ni=W@xH3}j(XN>|%GN)<fcMgOadIjsU@)1z=Ju?Xw&H+o
zC@8abP7ht0vBrN~<RSu@D6jqVN`Rl9fz32oyR!o-LAB-V##jzFGZCRpNWUk_%1o?#
z8=HyxMQA`Zh=Dv}4*|`phMr!=x_6^HuU{&Z)p?U`NPVNcKzQd50*4?5cC+gP|4YTK
zQ)e%7%kEs6#2jk+y*?c(7%rT~XMMdIli?gA*>}1hAu>8>>7LJJ+oE*uM(t9KAl>3Q
zL3KM0I<&U=qD=yI^1}Q;pwa1V%H__}AXGvM&eu&6VrbIQ*vK*pT{e-*@#Dr_9br+w
zqlnG>q6_6#)so4Gl5(OIXUKkm!&;PRrs<a7&gAb9L4{8Qo%C`Wn@LzYs4)|R!!tu}
z*YE}tKVN>?wS8PAvuaBq>&O+m{82FHV8(av0|xJ&Cl0q>pb9R#|NKL!+ItYA%Y)LT
zwELWjxSGPc9(xbf@*(>No3R%KVUyOdZx)o+M`#C({M<%_`fXraa*Gs{^3KWh%R1qh
z5V%^zm^x%bG~a`GF?Tz*ytlQj%x%NqKWkPW<d5+msNVAokeg;MOiTjR<^>Wdb-O)K
zRhR~h@st|*FgJj_F#DjVb@1pHW)F$*?tWss1`BovR=5?DxV3NdK5!JCCW&ui^E~*K
z0xu5fSF6<u@8C0Ya7R~rucYVZff+W97dbtRZ!Y@75u;QIVzyofw+cNVq%T@h$a2V5
zed#skTxP#+qB**I*e{^n$Gu8Wy*W@`G!`~JygIhA$o)rav}Oq($0;-s=whN$@`S6i
zv$J-lN_|lW>S&4~z_EbBRdXobV^MG?k=T1AZ)TK|#pWbe5>F6cF;;apxa?R}>(BGK
zuqZlY%8tRV-gxoaxyGl>Uv9yXw`rdM|F=CrFqMqiwA1PBZr<bEOtBB;_LAm9fHk{T
zsvPK%Cez9A_4S6SS-X}hS%Ca_u=dAZhS~Mf&3&<luO9_8yrn%XzZf~2oV<~MBfYxw
z8NQbL2~yPTxT=7Q6yfVVU}HR>^=cs*^6T71=$4}M&8ay2@d;J9LgP)#hE+!yCievr
z#{<j_!kFuQi-kC_r#Q3R^R4xNwe5|{IFKF|x@v6qlr+Z1a<1O#V0!*$tRTuyi?_l^
zvkv42R8H(<1TzkqF^Zi56c052(d)yxKZtM7#JA-#R2OluNO)a=idTcEJOT|Pc3}>+
zRT$DxD6O8?X~s(Cq*_FoPEgM){Oy;Ff)T^K;-!iR>)6}W=0|4YT;Z3)bCz98wmO>X
zX4}_om%(ytdt-B-&{Bi@aEt3+?9_+^G**r2Ul&&X>=;Q%z5M-nq!{=FS>T_Vkvc_z
z5%C1)7TqPFv`H=E7LQ>*fQz!0w#H#l%Sz2TIuX-(9~~R}Yg?gw4>b>;l(8^Mq2F7-
zGh|RgF4)NMIMuJoyF2IOLj;j9qNTPd{O~_^Tu;Q>0M8PSG#oCDk#Py3DX}1#qzt66
zm~-TI98Bs;MZ>r9S|p9`H&_IinTR1f>q5GNrk2?`0gdjaj3Z~yHBOJBD<cKRv6|}%
zba(6h8b!VdVPloii7?r3Lsall?3nHuE6PuZ2>@qsY_5y5=_A49$1+U}u-$K}FYZ=P
zMY5owVfGz9bm8ZM9C+QwcdGG}!#u8-f`&%Ig{K|ik=rcP8=q+c_;JHj7VfBRB;S0L
zA3ExZ`W9480ilN`eCHjh_-rxY7@#6o;E|YT%*D#t0yz)H_OMja0p2lx7g-G^>qxI{
zMP*G`Vcm$~_UX|ooEC#|Ph9%tEf}k)^8*x=Bedg!sQJ5ul)tT5`}A9)tYx<FG8Z)$
zf^^5&WBZUwaocUXta%8G517emvXAkmI&aXNgVIi;)vVBD&S^DyO1_}_Bwp-~e$Oow
zj_3pH6yFR2*ktv^#Qb@|*r!)mVljx7x8*dG`1+OX+n#W=xj88BWTpMKnpJLn&Ryu0
z)^G%b^Gs|Zuu+$FRJ-TR{7=$h4bf}EEduJ_9y-8;G=k6OcA+#|e&E%NS>>|ACZ1wy
zc7zpCg!95R+ObT?FYn}yu$Z|n6`}5D8C5s$+mC`wRB#bqs?wbr9>*J_S}vD~^H-fQ
zVWq*(@20p(u>p$L<_PU?Ql<}a!8goR?^C}r^Kfn?H;=f(Ey7;I>H64sc#Q+(l@g$}
z!+ubS4M!-K8p_sulXh^{&3V5^H}Evi&D3onCm$26_q*|f3=JFgCag$0AAF}y48q6M
zEnpC4vD!paR8*X@CB8spF|sQ2LB;^&+7G|{kgD|;X=d<CihmAcr}}{Tfl~3;UwE??
zzWbI1&6r5&ggg{+*b7shDp2&dyuHpA&MD>2qXaB^zT*dw<+;(ZSa%Vf?Oq&ul?6#H
zka2Vq_MVbp(n~*XhvN`V)uFoW;*aGIXUhP=-)AP$YS3B;%uN{3wetUn5C^@pEyw8O
zWnX2mQqGo1;hj_*1+k=>mouclfy8&zATRxw3wtRgfaLU+TgP0(?&wX*&Zfe*4bjK7
zJZ{&CSOn~^0IOcF<XJ4B8Y23m4Rj5nP)n?*Kd0d?m3O$Fv0cp{&>l6_ec$w8f9%Lp
z-rCx?y}kV#$knN^#zHlXE0C!_!TMZO7@M~D58k1NfTC3qB1Q<7i$wg{{d^<=7y%X`
zC42VcrNZJjWKW1uf<j}zY!OJP&pnfVv65r>Hadb5cA{pZp!B_TJ*r)G6M8Hf|LA{d
zFH4=dYbUhmE1RymK6;8OmI0z@#2JU%E*_yoUA}bv^7=*5fx04DWYn@lpGw|uo`N{+
zVv!_WUKP8JC7Mp34m{tXwj~CfW9b^Eq=1gDu1&j;rpotoIKD8Xt6V7v;6Q&zp-xIm
zooh!3+?!ilhZ%N9)9@UT;k8>m*aZWXPZhnA0K>(!R^oKBuIQkUka1r=ZJ6d7aZqz?
z)!4@%dPeEOFGqH!Ry}-^UWOH4*vN_DN_mp;yxMldXTns~03C0lVq&L|)|zSFKeMl5
z7avNGNn;#X&MHfL;^9^E+2UP<Dp<A`s9qppRl{04@Ur=nmh<QM<_8feA@P?&wlm{Z
z)@1hrFgrRr-h-CEuIOuX5CWoJO_QIh2%q|?&FzYbQo1I{^;$JKUzhcmqVG-6A$Zk1
zOq8VJ=ser$MvV9lVvAO`UJfi^8H(Ek$wfJY5105ZKvwpaed7ysfPZ8offyQICGXr^
z(yVh3WC1$>pz@~C@<Gr1*mCB+sTtpxYuARYCpY#lb!gD*L=G7j>LU$Xkw?|Y#IABL
zxLa2DQ(SfiHO1RGAOyM~021VH)^U>u0j3qmQ+}IzdeRRDB}jAPx>B+9nEm!3EtGce
z{(Ox8?$coqLo)~F0fti7o!-SPhpOyd6Mc!CvVhNCD4|(pC0f76DLm;C92amr2?lQ}
zcMi;VQRCB>gNB5<FMmIfu0O#23aUY7KTOkNvgVzt^P#Q?QKg=yDx#~76AZy)msAe=
z{$5Dv(j$7i`-b30tv3Rm#}-$to6hv_-vZu;BK}V`ki{z?kBZ;6EVl7+G&^7zc3*u$
z5RgE>4+NpESZ_G9bh!(0>|>ZG$al1h(qQ0XvbtYAqhYdobe!%T5<)8kVWB6BFI7{M
z%c1(zhgUa2))wP9Sd0{=QuF;^tj`9W5FQ1kPc7;OGB)v>xGxq(^g4<~KUU>IP(DDg
zjfKimYLuSDY`F5P3~>Kv)@Pu$r$@Pa8yy->VW~>3eiwQ}sV104K6#0G5AME@F$`82
z9TT&TWR;a{KV`y07;IA%;{rmoBa+8t5EpC=mpenf{lu@n?SuO+CGLI(rfNrR;ZRx~
zn_k@dmWAu=2tf}D9YC;p;aP@^k?@SNE|#;6*?I}Xa9~Cq<~)%nPq}%m&A#$x?nzX!
zqq^(puAmJqY~G_UVrqzf{9Ne=(f7x!HE$NY+VEt(vI=r=?0F_{_SlFbK4ON>b)XkD
z$bP6kz25u6@KKKyu=S83u3)9}96kTg8bu&#w>J~$!WZaBlE7N!>U6j(Yg^1@ZX=6Y
zrgArcI`~F@a5srt5W+a^kov?3^IP^$8`zj-<ZD>ph15Tr1MZ66E{uV_a;qTK>2rs>
zjy0Ij0pd}iD~O3?wck=9yqO9dP}4)y&Blzp-f?Kcww|lDO8tRN0kjhf{*_N1M|>d%
zVC_L2Q$_J>R@sQiFl`E`w?H&Fw&So*8n*Q9Np;ir1a`BESLl6Qj5Q1J$zhE;mWwn~
zThhegodx7D;vfAjclpVg6}p318FKa2j=IG`d!xolHvV)y&x_ghfzf^jNd-@_v7@!?
z)qa=ZXucx+{`%HrxglUO6u-|2ftjIspxdmVan6v?DHRUrNkNcEowv|8rJGn9@6a0u
z)I$>2IsTh7{p*I~hFv#V5J@>qs5y4%w8<WFikK?SOAkqZhLgB|!w2R?di7f9PgzC#
z`)jjB3Zs8R`_ty3%yalQO+heEemZMk@z6U$mTdF>j&24-7Ju#`b}#YGUci(lA5Pw0
zG#S-Ge0==em+H9t{m@@DpOarS@b1s)eP3P{b+Y(sMk4Q@L{Gf6J}t0ObH9!7&zgT3
z(X^mDE2m!2$@rnNH-7*Y-hETA%<`N&+Ah=saNjW=L^!X+&~cH8nQ!<lf0=n+iSb=B
z6A2la){61?t(w~BRb@)b$C5vdl~JW{oEM={uX=+1ATb?~JS}{}QL)-VeteFMWGWkS
z3?WbBwG{-k-d`3_a-))IorD<gk%vLAUw`CD6mdc?i1NX&GVKpX5T|}67%1b{U;ODG
zET)<xVIbO7Bu5D@{rG>U^<s4Ez7IJk6@EhQ`jkkgZGyR^U6`_u7{J-RY$Uv1B!nen
z-J!$+T1;m~hU`I}((`vbq&w7a1tc^K&p9tRVb6KhJ3%C6WMb|<)*OCjM(V}?3XTYy
z^wq-<g^buU2`zCb&z6C5t;K*uvD+4+FUH`KSQKu?M(G0rbvm<dL=4Nq^7J{H7}fc>
zpBxr1rW<?7iXVmw#KU)SyfLQ2S`$D#*_oxQQ5LMxrH|9F8+>`OA^~?^Wj?tSKa(4_
zc)l0*VrSrVzh=DQcuY*U4hF61^2-%3Xu-!v3|G-_X*ihqYJ0r7T|JKzSgBN^RrJz-
z?^%G$mK0NiLX$LMO|@8qlKA6a1XZc72SGouiHVrKKZ!X8i|{cA5|V!NeFDN!A%-EJ
za&>!==N`GVF05aJ)N{;0rn1*aOuKvDfuBa10Y9Q~I$>n}I&**H6++j6?cQCa=Nke<
zzc_v2ia_wYJC*NOB$Ziz*+AQu__|;yx`bnJMgC^+L}(3uN&yJi8g*1#Z1voD;bA#p
z0HtIgdfug3_Oj{j9A~(1Zq+0uB{kbv(%d5-h;ok}F;&w7>aGn&m=|n;{RbHCdkEZs
z>sN95mfXF4bsV?7>rY9|8vVVVd;8w<XuK-JxrkvZcCFZcanj3%50}JvHAf?LGjtC0
zS+OxONgbz{fyr{6q?H8jx@szHDI_=QB5^XA{cWZeheu-4bA!marMN$fa0+X4l&!M`
ziN_a{vOza^ZIa<}_EiQJ8tJ}XuwI^D%d5NHt4;^|U9)`ZnocWNPMbyj3UReO+uKkr
zg4wNaBKn`L+_It;4Kbr+j>Gxq8gJ94%feH6wCC;k_j}HH9>VVESUZN2p8y%F7#Yy8
zWA=td>W;sT!+37?0To+@Uw*z%S=|G76LggU1-$kP`v|C}R7W@`WhCn+&=J*Pb=m+V
zLi+o|wc&8Q_gl<Ra5jo;VZ&r|)b#Cq0P3R(QpZ|LM#LL&n8rN3>Z>B+R5^&hvY3tC
zy;jM{y;1S|KvdN6;W&)8I>T@NT3lGX2Zy*xkY;ADVwziAwMxODFsAg)VaJ;kIzy9!
znZ9bJF@uMM-156hh8_ithxoUz<88&K?W?Z6t!^l7Y~8bOc7X8w*Qf9?f_^ZxIbyzt
zZS<gb!{wXORP~%sybDMF*4Rbi<=B@oyJ!ILO;=hYYn}4?$?d_Rk<M?HaL&3oS5408
z_n#E4sBh-7Ym1*Onrz=OI&qYRJ_fub(|^aw$*H{4aH_T4FqD<J4Zz}Tz8Okt>bmau
zQ&izH;B@wy$Z_G`w&tMPZn{W71svK6=?7Lr>4pj63V(KD#|4f>7~f$_8_7=HCtBGk
zmFY6Pi!c{{-U0Z<bk4)V{+}$n9fN)3O{?t4q>~oavpIfY3nuI%$g<v0LFYac>BO<C
zl*^(O6I7=Diyj-Zab;x>^uqeW%N(Y$Z2$xnt*Qj$Fqob^Z9n$wC-(iAa-S&$+SEFn
zzY6nm+DyH@GUj{IygD`Q5`vrqts<OLD@t`cdXhrf1rk^II$f&F2*Y9X3H{wuY#0P3
z6(d%KFZB9?8l6t?^_yo_KQ&!tpI8QQ7qD1+E4w(BJck$Gj4N_0-AO!{r~+Z?U4d`m
zFn1SPe2O}b_@^#F+FYg1qvQI0|I6J6y$_hZemhS*5vK&<PUCAl*iSe4zkjE3Uiogh
zdo5fE@VeH=mdzoLi#J$W_His9$es&L#HFT|@P3Tmp#Hk|2vb-FS0oT=GfJCk))xQi
z({*Q4DCgmsZl=K0jIY!C!@|zo7X<_{2e2_`n!N5$=Epv#tMREP;uHjIe{`P&F`lX#
zrIuykPjE_ma4sF47zYR{LGlTyVT<AykG9MFYSS&##Wrz<Zk@#Emt+#!w>c9(9vr_~
zxQA)W$J^uo@@>z$4#Wnz<Vj^^Wx~_GMI`qLy^LT#8IKhPEL46f;?{?)%*4-8dA@~z
zG;&<%t$*^Y$#GxLY0>YAoqNBB|7#u@Z*qM~<7u^(pdrQ}Hl~4VF@9p=z!&&0<JfYf
z2S^J^TSaDnrSs6cFA3G9usV`^x3ImjdhU3!{-DhTEn+!KBI@We*oj|QWmzp9h}8lo
z^t!t9q_hT~p%*oZe{kTqmHE-d3D;*m>hR@s?U}n*`del7^~c6$h88UP1|!)e8}Gm7
zZ(}i8xD<_$mt}5e;z2l%Pi<dx#1LsNkb+uEfCR2&AaKd|(ni#i^)$3=c>q)L>1ocM
z$_`DdnMr+3S0@k3PUhnE%<#fH_$v}Tk(zfisMTG}$ik{U_v(vI(-?iriGWdTF%CSZ
zZR&iAeJu~ujtMpv){)vsix2YgHGgsXPF2<3#w+5ml~uTLidOvPa^(I<=uTzFf(dbo
z1k01HZ^lnn79SxAYcEHXGHly($QoaST5m7-^$V#Bv?Xsdb?c*tmhQ!wxwv=QpzkKf
z-`c-)DfIbmouvf{s_%v;N*>Mf&Ctzz++I811aLnXgS&`E7U!Mx%?;nHNVQ=I$6vo|
zM?j)Cqa)dXsr7g`^*S$g6uDT)fGnaOSqjLKD=RB2Mq)E_+PwMsJxVjcjgP?3jD&E)
zE0Cq(UFwx<Cllq%>sQwe?S8efZhj_@xa>Wtga4dadyqk)1XMw6eLi?{P6l=#N)D)k
zEY=t8I3LEH>JB*ris6sDPW`a5prlcaX-<a)BRIuzk=NH^LeCu;lYEF}u>+p|WRVo%
zen0QtGcP;(PQigdB!wPK8Mm=84UojC_U^o!F0_^8wi!y(|0DW;1ZR(SfPO#q`6?Do
z&kWiA@+!?exljX3cM-90q9Wo7A31E)u8JLU&r>^)YkM*3R#a+)wN{5{df*V;z@_PZ
zpF;9y&0+lm0{o2zRQ%pNbu7*$S2IK8kV~&(c%nx?qN%@!sfkaEySz*M>)^5=g|m6Y
zOL&6p1H~vg!S$6YLU~Yzj?nK%$SzwJUF{6D$1RyNP%!{CgK@aSXNG#7q0jo~+|6w|
zgia*%OiZ$S8+ov*tFm`bgnLpR=_jx(k$#CKqA;VGjb4fU?Y@HjL#lc0x^!C}z6-XA
z*A^9jukGa(_|{5eF?v_hhh9$!4jf%RK-X0?S}`6|g*;9vW+M`^o*O3dZC`ryFv^kF
zZ9;qd=b6d->G~J#{o;P+W_eL)lk=}$JB1xA#Eoi4SkL^e`Lm!{*nC2Aj86I7YgH0L
zpr~SDp3J_2#cAYk;D)*zM&@%L4a-s3i<-ZuqelZ89H3&|rbqP4g_4r;qW(Lw4SBoe
zUIJv7i7K_yC2m-EE->I1Gls7NN)$$`B=!!RA+v+1OQ&f!YStHK@%!05BXiBtO+PS<
zU;SL5_*_Jb{ZnWb_})%MQT&SftNP#?LwwKQDDPzBD&dVR8=bahQ1)bJ`-Jfv>E)}R
zXQ*~B0{GqJ+-|FTQRS;0LeTzLiob&y;EXhdH!4Clqjx-}@yeuD<$WCR5s^B@G2^6<
z1rVe;1ZV=FnqZpuvUKbrs_EX%z3FNzZ8O#IOIyyqGd~<oy)@3ITiXZt;g=3c2o%2$
znY@b0OSfm60>iP`g%{qnO6nJ2&EPqK3BWN+>w-{-<IdOB4F+MXX6ATy+viE*T)gHH
zVG_F;FM}&qZ^3X|c9m`A4hfvK)K9FXt-kmecF@UxGch|ov8buNAwL~^tLQ{;*1ej^
z`z9ZqWUq>7ej?g{5D$&?f|ndEuJ-Gl1kNjkLN2OFzFS`Tm1Fl)R)fXa$n&X{*}1DU
zRnGOjfs>_&G?T}#tE;>2gGtMOdWB)Ys}Q&HK*!8W?~mjng*i%*aQQZ4+CNXv=(GDt
zY-ax6m*1>61d8PZJt=Hb^VCigoys`clSe&~o0-sNLJUj%?W@zqF(E-=pLiU_c*!0S
za37mbHZ8glqW^Q`<|I-0$OYsrO$cY_6z&B+=@=7<wC@ruY88}CPd9eitAe<I<i^?8
z=}FuH*icS23m{D`7WsKdzsuuf&{fXgf0)uW#<HN{b0BQ;@RI8J{LXBh4C`O$wRH~)
z!NryCaWydLRd~bgiqMwbSXHlnIU;BLDKgngYJW`mcs|L}A|&PywCm5sLZFOTYL8$;
z?i=Q&weapSHIao)&jsThHiI7g;e*Cy%8T^$bSy%`q9{zghol1+1uyTvto6U?@aq5f
z5hPa?qF67NY=FD{1YPt*$!mD;wu+jvBkS6oI0o}HE_iQ)wRXSvT(Aa2f6)(ZS~M}|
zs$Esf=E;9u&9p8ES3xkPL$4d(nAVOl#<7aJdEjr?`ER##;fxfnKXfcm9ZXB#l}~2n
z<m7ZX=p6j~UTixypiLzjznRt52ij^)8en`-?AD(w5k>VivdU_HXKHu%#pBAy*M#@F
z{v?hx`2PcaxR2;Z)1`5<wD}}0{C_rtGddf6N4da}@li=@(GUeXj4*!w#)h2REyy1=
z$bWh$Jw5kl0^PWHw~pbv?nYYy_|pLAHZU}lu(2uI;c9);pTI749}Um9Y>k)8>ftKb
z${7H<84aSPww*8$!oYOxtL>_!fk7sxaNR5;NH)(=Dc_D`(YM3vPGHvWWj&5U)Fw`K
zXMKwv^~WW<!0{SNYPb{D?^K|qZY^(88_o0JK}d>7V~SR5{`~L%ZFl_Ne|ANB+L%Kc
zh)!G@nlVeER2O&b%97ZHBDKo=_*`+{68`}4f=}XRPJ(AZ*-*(flwf%RiUJA}5<y~+
zOdHs?$eeqz!omBjm3>F@@kQ9*`k{dr5Q4Ll1|!0KDoatS5BQ1cdhq|nMHOTs_1qg7
zI6i-7?0S5B+@QTs15|!MJc<+exIq;#|6Bob5t*2{X<wU`CYba(_w3ST-1^t*>JPv*
z$*!-TDM~ulY4t@ZZUb3bbtjjbeTA5@rE@V10mnNfu3VOX3^DG;>;KKmD-3(@@DRIR
z$F0?888BN(9l;nwN<kso*U!&nP)|Z42wfQr>y~3W!BdP>0(j=v4^U7B5twLcBU@XA
z8QhQ51|n-faPW^ew=<eauC=aAy6NqH9p60{yzqp-HfVhLk<jXOD$7d1{$E_8KOgkF
zwJE5K<%ulrX!)FJcL%NRO9x|qL2a$to@q%;Obm)vMHuEQqBt^ry{_5^#Km0n;U33N
z07$KA@^4VXe{(JFHtRkt!FQ&(WSplc7-7kT%s(8$nqSn-MV6qul4hU0r732NBs<Qy
z^JVz$b;Nil#|5GHbUvLu(L*98Z`I$>!_ey<^6Q52i&-TD2t#@OUX|Qu+U`*V2qb8r
z3)ZJ*A}8B+j_e0Hd5Jf(K?m@RRlwW$(P3FFWoK7W514pZxVU-YEQ9R@>GxJ#4JN-B
zzTaCA0y5W7egWe?0tsNqr*-y*Nb9)he*fj(*exJqH;p>q(SXZ9W&2~PBX}iBmfxh(
z{RqSDJr}{)ubO!&2=LfAj!Y@V|KBI&KfP)2^Hg>4rWRL8-CvkchdZfuCwau)_U5$O
zA$j@kQ2Xa=%?vT}mj;<%ym~v+H>w*ijvzjh^odsetS?;R#Fxnaf#f8w{9kK41F$tv
zD+ZM_j&zAcL%%fk(YVuwXXe~_6wGX}@m^hB{RBj^PcMUU*0Y9RzmU<>)61%=QsS_h
zqmQDJ8JaFEq`y{3=1z@@BIihy>DkW==QqtCnZDbZ8ZS2JBxGf+Dz(V1?~u^hgGvRD
zw{IgAl$5%?5Rhl4mhb&>w|>8K|9UUDOW`>%0_Da#WPdU9?}F_k8Th}H`lVQhE5uNB
z(ImuzCp|EN$J7YoA<AT(YB0u5_E+O&z>(5R-$L>8$<>-_Dvc-gN*~WAJq;7nr@P!z
zkok4;5u&>Uq#c!lnA5;L(S|3v_z;RqR`T6ygH0Vmp|7tWu2%9r+(J;$v!F3{LwpT>
z6LA7KH~pvE^!w)x;c%^Qmkr4R&MByKpQk0-yU6TrGPsET0jPps0O~5~W}PvHll@lt
zcSgZ(_0TV0`F<_uCLL}%Z@^fHwFOM_tn8+DRWS}Yp0Q+><$PJw*B3|}!rNqXD)TEH
z@OAYU7Y`&Nr4VgmnS8D<sAWrZ$=tsTP)p@i4`5COBZR(GJ9HXz0o01MtKFvCM$7SX
zep~Ym88AQuE~$i_YRax5w_bbLb5t(ffOBIfzaV&Ls`dYVdCk3s>tp>(ro{a|%h%t3
zW9NdJDs1RQo&EO4_O<ctzn4z+&^<7z1<>ILw^@wi8x-_WmJ?Eyqy7CDA$=ps|A7&M
z@evRZG-VrvG`RO`i6t!zD-rzyBw;q6&n_;5fJEMf0GIM4l64>LXuOMb@XcF!HPXHf
zy#4*-h>sKRXnyoXRIC)hN^)+lXlc5?Me?{5anTkSOdLrp6~f-_8`>CE`Q~4BJnc?g
zK6^Af7b|kkGe3da2hD9GebW{IIk>|Li+6p0G&23mq~xd13h|n|$TtYf%J-%k$?>M^
z6^H0F`B24U8adaW!09O8!)=5M$XnzR5esZ|rD6GKKh5OyJ8BkZF{iU^Uk`61V+4L|
z*e${lxP^;R-j`q9Po+(-UiNSd+YukDMZ0jlI{N-L(p`{+cD(DDJv4>+lh#)`TH1Vr
z(fm-gkK7(N1`;y8k*&h~Dr+kThFJgqr>6#@gZ9m|yBGN{ON>8mL>d$Jt2+yl*P2Ws
zuj4XBWG;~qgZ}a0XEECbpCL`Q3k>|i(|a5Fz*tlDbE<0_jxfJ*sHS<uqGbKMaXmrE
z?U!+@p{0g16YNST^l@GxqtB;r2}`WwEcUGd?H@FQNG#r9Vm-p7>hsoPI4EGG9X)qt
zrulz(kN`C5&Vyt`0631A*4y*>*KdEua?tyrgCD~z9sGQAgd0K-L42OCWMz%t6wVWH
z640L*W@OlYwH~^nux4)NW;hvOC(v^a>~WT?P$Pv7yVkEppQbP6G0HD9$ZIhs9~|N{
zeKZ}_Qc_AmL`MFcKw~}Pd5-b_zls%t&0L>7GatlRIXn9=y!`h^Vl5GIV>7zCBM`T}
zc?`a5D*x@un*qlE*_YUU{k1QdS$862Oe+0)++BRzNS&?v6$_ft{!yqKBV%Qq%T}YL
zUZj<d%=aVoL?|S#sQxJ)-K$<XL!Tq=+h#cK8r_0NTXVUuFV~#$6>vBI0vJRHzl|>x
zM)|(9)i{@SW6_VKuy_4}BQr+RlD1wlnQ*af`1ox^B2zZ<djr8G>v0YWBhUPNmZPc?
ztXDusTR)j_LfE~z^zk!xd-P!;#*)lYTT;LRi%O+#7~O*}Szq?jhO92WEwl{2Ra2rt
z#=v=H^oukoSVa5X?>pOndS8T@r@SfASuw%F&5cyRr&m23<$JG<;qO=4j`E&#<3Bb$
zieB@waAjZ@QkQtTFOPl^J~H}jLmsF^)rLh&86Jzw<Xt*v&G&{~k2pQvP&FJHrA*=0
zu1>yLG%ixYVES+j%V!erR%H|MR4HlqDXkh?r7c19Ys{Br#?DtemF1flPn*JL@$f&;
zd;07tu}AUYD4kGtuIlt@%b5cA(YP8hVgj@6+{mI+h@FRG)$7s4+>Q4{CQSVNT0l)G
zU1m9-la;l`@m5~Gu7QE$zpx2Rri4CuLVZWx3&CX(_FhmB;hxh8+~|92==AsPbPWj+
zZv(HxYpmE&syxNYWFB(fb8gfHrBS25_Nk1`jCE*0L6xy2w`{jj-()i+jjI@&U6|wJ
z21-@B0`^q8H`^-H0X3LLoG8hT|MUVla2_-6+mzk_j(J)5Z!#wn>i;h%=f95Fe^yKt
z(#>2b`-<q?M+GZ|y#I}9(to%Vd?IjzeXh_3DHMX_*SXI-_cr3ICLjF$_W%1I@Si?$
zq=eHYFDx#84ayPRj43)ws(&v8!0!@_Bf=vf9EX#idHIULcYP2P{3iI6bu*WCq(T0D
zle1(Jdv<T_l5z0IJzaT9yKfRpPae@`Uyezdbk-W3hs7>Dfs&O)F%C{1RM%6%Dr3ay
zhCUzK$QMJko8V}suG2?iSMBo|aj3v?=q2QH|GVKQ%^acn!@d`h5fOt%&r}|rkCwPo
zl8c8$=cc-=RawqX{raMrY_l=)`3sPbgSs&4PVl2uAPbD0Kw88P&~qJ~1J;Iw{m#rf
zI}<jr{zP;hUQH`<+c9sv8#!iVW*(m+HF92jI39IBecZV9J4Z@zo&;_;l-W1Gv(aOI
zjl)Ia@8tx=0M<Q7We)|$bkMjKS!K*9);|npmNs{DMcFE`c$p=){^2kaE|QU%l~W;{
zG|IlTyh%=4HuyF+ncU=u@@CHKuO{)23=Jfb8<YrQ6j{wLC~U@fL>1n7F7=qBD4qwi
zp}(2|=ciUjx@$6%xm+O^A$kxVzv$}p=?$LdJfPZOyS&U6eTYx?nA<6`(KSZBN%p2g
zvG!)0sfirz7>(7g(||@oAnihf5f-Mlzkm427m019d8*{t=F0B$ko{$7YnoZ{d82}Y
z!uNbdd`0C=0BwJdOh}-7qIt&mS@HS;_{hMdK+p4}4o_duvnk1@^Wphgrq$7Yy;GDO
zw=Mtk=aQggrJ$$(OVE#mgygJoj}-Hce9L28ghewN<RKS0rz~&9zJK!1;seuILduGC
z_=S+p-a^X(ppl80b0nfG?gwjMWpqrHHlJ^5->Tj5oo{YJ1%gJ##=5KL-RZ*lPU7yI
z@>F7}@3imj{a+>Ys5J8nEZ^mQ+N#9(%8vbrTl%%iMHLo@e;pwG`n;g9CSYA%Wqmg_
zDrp`^9>B@Fn_p6APbS_Q5ty|r@pBF7%W4c=UBS~aAhj9*<OTroDxaztSJdUQv$Lzk
z1$sj-8MNwE#%&gwz3fp4m;i;~&VhvSZV2=v`xA%z?uM`B+3K%Et5{%8Qg$-`{19+N
zmArj?D1oBces_-HjuOM2UA>y(QhfE3TEIqXy2>I^YT-`N{sZKTf9@9mLY>Iu<n7o`
z$Y43$X~`=_!c(LLfMAspn2j799%kQ}jac8AjYRFzO_TjrDy|VD7Lw+(=sh5~?7HlG
z^S39KpbK$fCHtRNHJ>-4JqH=9zFAXhRhW5^`-V?$a+;LsTvY_AsX!=b3x42jY-Z)u
z^uR)r_ejh1l*wMHEBGS5^bIOcQwc^W2oFSYgHkQLa%n*zgYid8x#;^ze_edfa{kfY
z@sen^k(R_=QhIIDO8z!0`^g89<0jtK(z9uAgMlj>wItP&_MlSC!`#hfP&inwa`GK#
z@P`MLv@J%b&O3T36gYqRaxfzN{-Y=w<WqfphS9oIY!XRX*_*d!R)rvkQ~qeb#pk>>
ziTk#fllzO?r9H4mj2O%m|3_C9-S&CY@EeM4mX?$5Au8nUHPa{01qhh7XZT705>N%0
zs_qcot_#CMr8OL8VS25K6-vhwW%?@-;zTB~PvCVy=D9c}<UuK%B)Jz6d0JzlrqQfG
zWSm`#03ba$=U!;_Xi%@HYS(?JfKfj)^~K>N^Z13_r09XLF|Ah7b`Gra#i=OVWLy1H
z$s!~UD_6gxD|dQ>bK5PUIfy#t8Tezji4b<Q>sqa?CZae11r)~gv|u-0-E6#E8>FOJ
zE{O%yp7J^FrEN`D_bZ|i4KdU2FNguUzIZ5J_HN~X*SNNaCWsba*pO1*((t%GcIJKg
z^5wyR$PU?Uao(+CK_**0Z%OrXC|cLB8zSKLQlLIz9BCru1+I#3m44kM3Y}K=B>YZZ
z1g3jej5_Z4Y0YI#+Gqp<|2j78?%mT~N#FWZZW%G)DR(}9a@)P*t*I$TR{&a+cXamz
z1OynSSf{(|g(t6@Fep~)DY0<z3XcLL_aObj;ynV-<cP=Vtb7`~g9&{<!c6Zy)@$E_
z$ppv#X45A9FPk<LNEr=N@G%yVfQqyWb__En(L+K-_Q=wAVWz#}t8CkyArg^lD=nBA
z-w$S7QI6KCKYIwaGJmF}e=|pcAz|GEhw_H00!hT9x2*c`o6kNv5dlNCVT@#<5?OqF
z00pC^C&&|4%#T@Mqcp5hzep28P{>>Ayg-O{kg_%Jj@KtA^ZQs)Ur!)oQUL7fSjhFD
zbV8^En;>0r^JBu7hd~5M6xrOL^@0PVF7ickAl1nfaI*AZGF~FcJc#2nE<>MyPig>W
zSB1dAo5a#roZ9iNaPpmL4Z6p7q=hOu!<1r@kB1%eBgz5tZVo&Yr<)$NitEdpC5;GC
zFg3*+qRHzkr;WN&ebQ0!6r0rI+*+NI=w0pIvDXfSBe5%zgJBK^3unZyTAyNck2Uox
zUgr+g)j5`HVXgH7ZWyMA3m=+Cs?F^KADvEmwK!McO0i{cdO4<Uh2rZBBsx)dDr$LH
zWj3>K5Oe=N37XcEPx*IFChmaA^y>XnqAKPpU^(tpEg@S_Tx?IdI9E}JHbeC~DKBxd
z&cW&vD#2=RB6UPW#1twgQkb|0=Zm(2TmfWpVl>+$B=|UW;Ce6bfwAzy0&I?txK8{y
z!`%LbKX@&B!jUmAx<671_@?S+A$`_@fC?Q8a+M9amtG95%5P$Ne|CY~J%J=u_L^o=
zT}fgxJttSZZo>_i`3mu=+lFCp{)>uDsqa%iiN0j2Qic1r$3MyQ6Mf9VWcKOj&ehB^
zJ;n>kw1Q%vbnGXR(nAK7d+N_zl=!9xcS;FR>}b5!hr7OiF$_(2FMKQl-Cqjc5#Uwt
z51`%u)`oGbz>vUs6T!ZUPDmSBw|i5~{j(|<#q)A^S1sSl^5$~N^jPF_htV<}<all5
z507H__rApI=RHh$kT`kS1#|9JWi|f!8E-;g`{wIvGwe%t#9_{lv>^S;JhN#jD~B%}
zII`TpF6j;FN7R!nsT1WyNER|mb3t07q0vU${~GiZiq|ig&wC7PPjty9E0d-xX7r^3
zPd-9_9=8rP3GMW#nVat#UtbfGAHn#1y~MjM+;(8f{NUjn{K<B_?F#$4SwEgke%+@K
zrKCNY>uj9)akY8sSn^7~L|CB!)J8ezwsQo_b;H`nXc;dB6g!==h-`_X^vo_kJl@oF
zl6gw*DEicv$aWB98LT;x3O~S`uKV?pkpFTZ3>K=P2<CvorUgB;MQ?bY5))f}u%1SN
z-_t;}Ar}o|zN+y$ujM{bItJQ`wFeSzAW{X^RNWJ^eW(7eKj@~LVlxJ;R}I(wjsw6~
ztnCBx%i1W<%=}mAu0zlGkIcI`NLpePzHDBj2jg2HU{kuD*=Z^-R^{xPD6h=c$fr&D
zG!F_Gq&>tf7yU58b=MAEhc^R06NRG_9xvVUF3%SD+F0NK(oe7XK4kuAP)YXbj+9P~
z_<ltwKIa3iIrF<o@z0eX4fCAjTa{%yONJY(Cud{>!>K;Y!9?PJE4v4V5y8MYMY+x7
z-d|+y4nLq?qS?jwfz_}tTigq_Jxhl}bxP#0IH2X#06N=)dX_xJ&NCKW;4q?fn3a|F
zjV3oK;|X^N?IXDT_I02OV;m#Ku2-@qpaR&$w{Pq7<KzX5bZa<X`e$ixu%fuWKIQXu
zHY;gnG1+;!MEvODcCrq==2>xxOZKZ0GO|DtTD@Hcdzry^BPv5O;p^8@yFu$KsdK?B
z9gl{C#iCTO^miYN3JE?Ea<+2ctv~MV+v#il@(5}7x~wO0d_I11G9D-jq}+9r;}+ie
z<Q-z7!H9fMiO9oYicTh(Py&{F{QIL_kf_blhIyv+YpM9PjjM<f4~ZIg^I<AM+Plnn
zQ(D}P4p`PiaRi4C5=#b^cV=qplMdMCJNaULgWe_)4y1%Pq6!LecGFH<Dk%yrJWn-G
zPfu}nD3%R|Q7+#mvbWf*eI)W<)#9|#O5Q*eXX0e4t)GuM;3|Bj_S$d7NU{9B023n3
zcL6eKCG}{hko<0GZ1KJ-Y;L`eAY3NKN{W=r`Rp=&27+1{1*%}<benvQnWJ()wbUm_
zqA!_S25AuSOFq68P+*wY^2y38M`$V;*q+3oh0k~sX1YkG7N2?i`HDn(WApxJOrr+H
zbH)0pE~N;(QKeM>RSCCxGB!0U#ix(MjR)G>MIT#~@iC?-7xq5u<H6V+C-ee+gPDO?
zjYU1E+1AciQ**z)ns(t*e4!ynC!*CLWQao1b*H}(>yKmcK?!sA<Z?ZLLLY>6cOPPW
z)=92z@m9&(nkY_HES0E2`i!5KUmvKUekljwY$`4el#Lk(xwSJXobrHXtzCpI;<2J@
z`wYS_#5DS^fE)b2sxbi)#!g7+;NZY;-t2{-rb0Xrg}0fx02vj1rb`SYeJ!&ZA~bBY
zw32<ZxHJwMUGn417oqxy(@YA?i&M3X{s(+6ClvHbthD%8Si-ZluuL#&?e6Y=pJz({
zWqsyrxk82=jw}Hx!7T_q{O-gQfM=N{jdsk(yrDJU=(fU3tdU%>8^lli>z)_oBTXCE
z<JCI;R2c5gl#N!}42VN}xQbfz<M|PPp9^oePUGO<VPoSp`oo9O6gEAoJj=y%@%)_6
zEj5V$mYbo2aSuY`U6AVw>9vyFj^X;g?<h1_S@4}OypawUaYp=3LpIm!alZ0tDAbD|
zBWtLkq2c%qhc5J4=vI<#U;5hGyF`jtI-Nk@@cbF?BOIKmpNoMPq}E%_N|Gu!@k$co
zWuHvGWU5gh<K9DtLN>>v>Zk9UaqIUH^&*O+g+^gJI?rkB4{;0EH|M7XMcwTFw9AN9
zQZAVjy1C(3D_$QK<F-TV?qf_NcGt*`d9m5kvgB7Iq4+A;T-WP#zD~T}6-Ew4wW>*9
zkA|w@hD=#EYF21SGq!(ogL;XFZxm!FZ+IOp<)Cnu7a4Lk%^zE2+CQ;0>33cin(S0c
ze^l-9y<5zpgj<RKsEY2hMTtuOBTGk*+KrL=F%EH!ul*o4#M+b;E^-67VM^~d7_SeF
z=Y3K+%bU^G`=VCT`1zpi<(;OjT`!5_{g7hEVJzl5b3}Na@N7mlnbrNdek1w8#qCEN
zM?4>J_0RE%_*M*Ckz=c_xVtA7YM%Hub78lXJzphJe9-ZYihW<RSD^HRH{#d9lHqsz
z=14DfrQW(lodn>60B$cFpJqU07IX{<=Y}^VxpD($G91OJEaIi_A|zVu0r&X`NX|c#
zy$?PQxbs%2)lw8jeg)UE55Sg)Qvw_$)5$mO4CF{%Kmr>pc+lF=1GqYdGKZ`ExdQ`o
z!D@rWtVd|R%yDz&F>JQjx2GPr;+bNhkp?`90#w0~evua<7<^fn<;6`m&IueA3EgDX
zKvGBHsv}pY1)8ph%fx{uz(a)MrKqS%y||AKB1Ah+Jsf#wnRz_p;UXXxY3{%`0RdhC
z#n%qKm_)0_c)_(H{6GW1GDTmkQN!0@UA}_bM?DPzB^=ZGst*unuGn<J=al#HNYzi*
z3aN|w)RsbiZI(1q_3%A?`c2oG+>$Tc_r2W06+lWYJ^+;IHVRQv#|Ci7uui<<u}%c<
z<%J@Y0NA(4Rdavn!3Mm{IbY4ukktPn>#f4#iq<aOKyV4}R!DGn3GVLhZo%E%-2#N*
z?(QBO5?l*+3lQ9)S9U+=bnm}!>vGkabA9rTG2ls-U+*`W7UnMbRd@f5FFr@9xm`rl
z)#Uw?U3xpHIxX)k1B*<>==h^ub=)0lpf5?MNUz}j3OLJIT=OrL7Ah7>CVW$FwD`?R
zp&|gF^s^jntbm`r7x=M~WYzC}T~f7Fp%?%hb$(2NEP8<LS(C+Ye7{B=+@G|4A3}Az
z`#JpVYQRnkyDvwZy}fs_A-sS21-x&l`GI!xig0$R@+tQ8)9|?zKwtR+{+RTW4ujnQ
zkJ(@|A9fnbHYnq_$^Gkp#C9%=ewdQ?4Da)!-nhuh1p((6ddI0ScEMFEEHpylPl#FM
zf)Xy2#^^SL>!r!ZP3wYp+$R1s<ie~AE8(w$u;CHGfD)PqB6z{a5hEz#Q{X=UWft%*
zBEQaNe5aj|g{vtrZnw5b|BB4>R`ACa{9cQ<#8}8!r16uZh3#91Ii44E=xlwF-6STU
z4nVbvzV1_)bBm5Awsr0=MtJmqBj-{?36{YjAU8q@8XOe887A1Y9y^rBBh}ZlL34)$
z*_}+>o~||zVGy1P_0K4f)%iYR|Abv^wvDh5b^Iz`ZROlr-mrO@=|jUHs2={fc^oBl
zb;Yqqgf1uPF`S$8;cpp`B$g+Qs@3b?O+h2HJ&dMW!<6I!RNC$_eWHWFtZ5Gsqm68Y
z4~|nJuO7{+Sk?OL!niu;VL=R=&F0WT)nD_}ngo|?Bv5V3y1AOulZKy4N?6Qnt5k4d
zOcv~;JFXCPIc2g!id!Io$-mPW(Fb@>l>vV==kC?zW&Wx|ufDgzEXKx-7;p2DFxGGv
zq}q?$L5VaNGBha%r6r$(OiMM_YTe=&IOp8v^1Iu!a_-YE8^hchD((~b5Zc;qh66UC
zwvT{&a$@-7H^5>e*1qGIQd(=a)jFHx`N=i$7qO3==M37d7D3&`Tq%kl&?mU=#&Ow*
zvA#Z3PiQTLT!GN>)B5$0r7S?a!Sf|t>L^li34(8J;<-sEW@DNLUgCFl=WFdx1*}No
zL;vItIf}r!>=y6n?G^041KVPUN~J;U=fTDA7E)D^>1W3r5saEj5RanX1IsNL$Rgei
z2~*9pa;FMEAKeAc+1nA6XXID@=~ig6+!^i}Mx;H7ME*D=3KhUN8Ze_RpDddS;rZfo
zNF+4~>H!bPZwmT69A6);E{yDU1??0y2gyAFCwJm{@u_RD8L`N`(Ea)LlnOrd?kUdY
z5ukNHD=I3UQkwfc_=o&LBy03nP`kyuT`ZpRR@csg5f7cgjlFUr{2$-4EhNacfFW2y
zVaIy~uV7OZ6?8v9uLC}z<~RaEL&p~M05MCuFYZ7{JpX{qFczK0vTRFK1R|t)#+FiL
zRh{!EGs!P<5QBMnAY{3;-eQMJ+HtFi0?Vx5%=e7XWh*z$JZ??xKVZ+EGANy7T&_mh
zMw{>(2L3`oT|xiv6yR8)0noIdFX+)L1G66IjFm~rDg)g9?I67GZpz<^Q~#Xv4Z&uA
zN5<#<rETRVlW!b2#*|Qh80?!O65jAgE^z;3`a@9Y;js445UUVwF2fP7v;{Woro)+-
z&=1M^=yRs`oS2VGYf%pDLrW5!2WwjW_|~d~imVupMa<fIim{jlA5XOla?FYqLKOV~
zMVdI`|8z|CbiWx;Ec+jfGx_H4##_s(J)7DMTktkesxL|@^}apP`CSg-sH~$>0QsaL
zeIIXy61PD;Tao*Fd!u9N!NHJ{4YI++C$O2Hps1FCYf=%Au&~Cqqnd-Rj7>@z_ast>
zJTcqR+=QgjW5i*QaD_5VA*2y0s8M-^e?0-(-Tfa3smFlbEJM~iP=Qk%EYECGtvgRJ
z;LpIzth8zJ0gh&0F=)L|%K}Ro%Z7y?(O}4ErF4}1pzx4(A(YWdr2OCtr<DE<IE4w1
zT>%zt$ryS-|4fOD&n{I$I_0*cFDV&MnDlt_o+`5eywmc4U@rgeY*jWH2d*Bsk&MfP
z7>+i%TDP@Cma$!oyvF#&JD7Yj3h+h|CFj~9M&A#FA4aSa28r>sRY`O%hF=EWz@|z3
z7|DnTZiAVWY)bHlATQ=Tp*C1N<L=nR-Tb(~IUKbM?00pJWr$N!#>U22z1G^CfHZY4
z$FEK~#yuzqrOP`n5E~ik1MMgSJlC_bOxA})2j|}ybSa$%S#SmYyW+s5^viwkf4lo1
zpLP=jX94_{DuG4~*{Nq2H^eIPG?Mk^c?ieQwPLdjWm8eye$edzP<o^wlq-b}X5>S~
zT*I2}06*w**w$B9Pf<tMLdIj%Kr6NN0w<Y<kx^k7h<vYf1uWvUOWz*H3eYx;q5eBv
z5&r|kT8hbbo{p!>I0oU2u@B0rqk15$#^>z>Se3T?vRdQYY*t%wxHcSa_dmG8ztO_G
zJV~dMfA{JmH6PC}Swu==EUGHE919Qg&a~P|+H9Jp#%}aJ>0TipgYH)cZ^#pOoj;uy
z_*G)hUfQgxS1r0Nm~XC6B=Fww&y`5|OC&2fv1`yey4~kxuvv_;9`k9cq$vR=W41_P
z?nGkt!~&`5JqhUIhO&t9EAzJTR^n)WBdU%gIeVKujfAEKI*`S7&nXD;lv#}nY*2DR
zcH-8gpKG7T?Cr88e^KJ(duIli37QYqHjhR`y~KZ{R8bls-Xo8f6_+O6Cz8n%<@=^;
zT;dmoZaMjJp-$6?TKq0os(+??Fr*vN{A^RCT=z|BEUp1L`dF%lm~wxrTku8Lk1>~q
z8O@Z0V>xjvvTMC0`}1@1(}hI&6)uknDD3t^`h3G6wNWta&bKu~rh&oGEF9%rG$@<w
z*i*e(u9Yj}sD5CSuL(H~2UB@x2a9us`8Yb=c^u$KxBtdywPh%sYdiiPwE4P^Ah}@K
zl+A1m%I34q@Z3hHFo=!3{@g3orN$@G%Va=qz`de50FQ80sNFcMa^Gf!fZ`y!!ULU(
znk$m)_ZHD6aG=Y+e|AP=&?Psw^Yf=1<G}XfLro{W=0Qo38QkX_ES-%fnCZJzngMH|
z6P%}{2<+<q66O<6Sntgd_l;3k(dUk^$^iq}z(1Lrcp&1o;ONM`;ryd?#E@5=d>7oh
znyqf%%}>OUm|b*nBEIk_oN`8!u9YU|1&zz(Gm@+;Pa015uY%v1{S!U43F+6J5BITV
zgNj_eUec2DdW`PRl|uz+T`)Fjw4UoYIY+L0-`&Cd3B$3+lH`(iXy@a6O13i>duA+?
z0WC8m0acpn1oi+|Bx{LuLF0eFiog*h$I}u=Kwu#MP?9y7z8Tf+gA$E1|7}TWp}xiL
z;}GJw%iei|If2zk{6|{pE;Bo@i^I!9(0rpMySe#3kRcgh^Qr`lpd{fJPL+bL(YDE~
zo1<Hn-A@;liC5d&;xTcz=xU&~o9v$b^EduR++8gf1ln6_?K#>xoNoWtX=@SE>LteH
zu%LcyLQFd8F!zF1OUx0bdH<SM)&0y6y{kjG#-TIp^^i51x_r#sMB?@EJnnhRbUd}d
zxnxu1)rwq_0Z&d{B&jKEV=IogdZ#pN_+D<pVSfpU&orC1ZJ;DSUdHXC+hugVu`bpo
zNi26m$ZaHG_$Tce(Lu8QP#&~-mv0j5uV$bn_IU*Gfb6JF?Q!B$*VM2UzwI@SyupYb
zVqRK2pWlT{nP9^seZwN2#Kc|oU;3-N<Tmb^$zYz=Ho`}H?$POyA5RVo|A$Xm+g^Z3
zr#J4?%VTX@0Gm8D$i>#sA)44$0M-n8$MC$Lows8^Ye;!>v*YEUqNASU)~@agQ(z2l
z4%)y|ie(_lK1H$0K@F52T9)H4xVcwDQ&hsvPq@N<BXY@hjBgL-wBr-?)+A^jr+9ON
z!C|Vx?%36DkB9?b+@k(`0sXjhP@rlS*WNT@a_Ui=bNaKDn}IVpZzR@=I?kgfB>rg5
zx-ry@<#s|K!KX<Xqn1y>$1PHVL$03@lNDpkPpfaS6A;@+6D<VLX^V~DYx=#fOaYmy
zJ`<XbIiV30K77zgG#Tx0g#wKlVjaZ&$75E77)R!<b5rktus=hR?tEGm#*Jxa-!I_T
z{6q;_oNMCHjGz=`p@f_}fEh#4(r4%okq(ZZV?E3~!$Y15R8-Wws#-y$G*<-klc}fb
zdm*+aUH1_kgh=N`K(HC(K=W$|El409U&{WWFD8u@6<QeFz?oQ9BA01Gq<{Jb=){}9
zD9x*i36<$OfSaNW0$$yu%~URM0YL7vlS~qsGVZy<w!Mx6C^tw6y2>#ZdZ~R}2pn?7
zsrUL*=%>om>`4yNH3M_kTvH9frDJL3{Gkw3C~r1vnQO2fyrM1$^JiGIjqJX%E~@5b
z5REb-p=lRM2!nn{s?eGWOau8-^dpI{kd4}2$3H|3eL0a!8}&BNyZr0*!S5#fb>3<c
zP$wQ5z?qDE*ppFbIv2nHvqGLmniLPsHBLAryI(ueQr`nxfx<o9y5U_3O`}m9)CNCr
z82~t`uxtL|rgG{6zQ2Cb&SE6n$p#FrkokC<F1Q;r|0Edr@c<p4Zgb(N=}@gkgUG%m
z*cCEzskyoE`g|`-MzvOGiq6Tse8Z^6p{?61tTmW%c1z%r|4`Ep%~_{vf8x{~*xC+o
zcw;W=?=OX54c$V4-5=0VOC3|VI6e2?&RlRy+!rhV{f)y78kYDlW$Q^ic%6a7<sK5J
z->Xv{>P|>{!#zv#1+xqm<;(Q0v4I0fh1M2Mq`2Z#Z9V)RPcl1PzV$4JJ2QFF*MWe^
z1U!tC$5_aeY`s79IB&Y67vl?p3`T9csy-bOvu+pH@pJbTC8Ig7s<f*ZRami3-&zJ!
zDV@@d#w&+V$vWp%3<}aq+_*u$-fw4zn~7iK-LdaAl#bF(i%F^M2lKj?9vRP3Z(l$|
zC0mMWNu>t`_wfj8q_sPQfHF!})d*0DW$SmD(l0^6C-6W=T1S^lrP#}fy$=?<&sVVg
zRrFv^qB`3_!Z14@&vpng-f}#j0AqO7rY5E01}))Qs4y^9y7OazwxYjvX7?9G)jUTQ
zd}u^V@I3l#bz{Z?4pYsbEJk+_(u`mDv3PElCk>9vB(*aZ6KN{6gh!&-k6serpevPM
zZ6S_xb|>1by7tbrL>o=2STil4IHay^mG)d0&_d#W%=X)9)v-=yi(>|$B-{QfF+C~0
z0bS98hG*r|jjrAcj_*?)C@PbxBaxU)Dv*U`JJ@qEYs355rykO^xF-WC1k-D?J3abN
zZje(fJRC;(2S^fdh;;OR%7kum-q)xmlrmDK%*{Wm{P1K%l$)hHZ3Hz^R>u6aw+pN0
z0>(ClLi-ACO1k;o8i44*bQkqgC!Z3|)5{CagRWKO>ylK=BCji4ntk+CmNU${&nBOm
zvauWj32PA_|J{+giFl(IBqml++j6S|&Ucp;9(I?-0c^MTyHmvE!O{dMfowj>X>H3-
zCD&6V3>r^8<};L1QHvwU`>!uub~_;<FLrS8N1L)t>-5qYPwv2LE;<l#kM0(m*ZF=S
zf9YfI-Clha*!6fo;33ocoA%S;dLTso&sU{_Xq!5QVG`6WQH&`(oAfQu{j?OTS+O}c
zi*?@XiPsdTbA8_#D6h4^EVTa1=n1N^OG3VHmQs#guPrNAeEG1b4|k_aX(jSR!maCX
z9iUX=1uEUp=avhmd&F^svXiz<SIZ>nUh<yz-Q1ptU=#W&57Z|iol^>_NP>-*R28Td
zJ?%fK@bfK}n$4AVNhBoQ<`=Rpq}<_m=Mv->z0!$Lzs?(iJH;?g7=De;;&35}+I<*@
z7-yC)p)^<f(S25>-AJt?S=Eo=!@*))E0;SlxilL7&5IW;HF9q70^G4AFq3@KYphcQ
zXVi7lDnEo{X+eNa=m!OFxG$cw{q8~Z=wVeG4bN$f+kA#4o6`@`bXsZH<hgh3mwD!A
zvX~>*2_@+laC((hi658c&w1N*^rcxAf@okrIF!0RqmQeqn&Owmxm;P=R+;)VTu|P$
zBR=PfE0dm%npAJk`ww|KMw6K_Z5R9et6B7MUf1d1f6;h^;QB86US)`U6XVGl5f$A9
zqbd;Xw{#5^p-2?<RL$rx?uFE(AENf>HG7NTIG7(;<wKRM%M~{n{w45uiX<KtnC5<v
zUz%UaB+&@@Zmp>(Q{!V`e`|DALqs54|7a$*|HQ=#>7DLrb2U>Y-Hncx>bHy=^er$j
zXG=@lM6S)@kCTSxw=w7%$C0!1xt98@-6vphvBfU*VM+~jqeYOqImtJ5Q}w}IWIuC^
zHy6BwNEavs-H>Czk7^U}&;+GQ!5a(BSRC*;^r9ERjtZU4vIYG!mw$kzkBuF!bbEXI
zu3;rkGpAGNWHyCBJqVcKsM0PO=ai)=-LbRADkc%A^Bx2WQHSvo{Q{@4?+9sptjD@w
z5x#+f$AY;Z85hEC=8VM?6Q_5-xxH-$NuFF!<_a2;@0WWfj^w?-YYu`mIKw#Z?mukG
zzWTM`V~h@gMt%x~LQAiJg&f1aQzM;}L~p@y2%B@mJY5r9f)aKzM7-))kOzfM4-s#m
zcc9x~w%7W3kcve^)q91H*iX1p6@hEs{Jd@VQ|CbcJ<=gcDCS?k=@jSNu#;I!Kb}u)
zkpBs8{{PdQsXjuu)h1N0jvWb!Hbte0b$j2=5(`}lRcJhGFC|0>w_*0l^AoqR)W_n0
z?lkZK^BTn4%J>HSFYLu7CF59Tk$oZb2CjX7m5_OUeY58&_ZjWgZz3$I?4*KrXBPaz
z%j%v;kf5ol{7p%zik7KxdYN=@=R_jsjTDoA?+fqWO^<lBT_xf&`ja&LkizG2Sjh;4
z7&*{-zw_LkijzG|7~Ig<;s!)RFF)nF(5XPTVM%4cd5!@4$#APV?~V}nFNF;SrDUWy
zBHCSHPWrKlqMK|wHI~xWG24K7IN*aZRk$9|WvQxplSreZclDIpT$jf)9eHZ-*+bC~
zPczvgwL#TADMB$(?I;yx+0sz-^P{$_*;H?bb4ecCp|EZ42Ylb-6fn!E^s1=1cKN&n
zAx<L0t4N_8*t#t8Z+{7nyrUxW!l0;at4uKYDDm0TpmZ@65F!j+X$mi`_QNYy#0Q8N
zV5Szj>wJRLd3>nUneppoT!M=SjpL#b0yF#KiT8AD0qr2b_gRgcD;PD+_iv<Qda^L!
z-LkBX`lqX#zvwB~?R_}zR1t;WifoGPtS`t_2CJy_?;UBfC(P__VS=8t=AQrwa?zls
zGR>CLMFy3wHs|!E`E0%v`tMTc<3Y&g)zHSGcxq>#h{lV4Rp}vEV^AB2xPLp`gKiu_
zB-8&4jJ_ObPo-CbZ%RkwKrH9rH2SB=G;lUWCMLyD>7hQAbo^rWpLM?Q9G^QF23|>O
zoAb>8sh;JJD>eF^Mg%+LtaQmX!ou}~RIh(ou5K?e&mDOuUb?-9rBt?Wxw^_0;!Ia6
z4<YP&HER{nCuV1zFCiJ^V<e5vcy+O+6%Pd|qMD>6Gqd?nA~$DfPv%NvzFY_i_?@qu
z9@lhkiedlG@$#;bupi`!@%N1B3D!dViVxPPS|)=J=!3IK@t&=*vE7RlV2ykO&;(KO
znCnijY@dWL&d_lLd_s4dMc)$TMjEcmb-xyU@qqmJdUV!$USK^(GJPJ_)E^Bv6k^$&
z+I=q)(A!$}XqzgY<8U@Lm&PMnO&5DCKL+NZ^kdOVW?w(2;@o^|ac5JHTsUU-s24Fz
zB0@|s8*g~(iku^uN0AipY`oJAwe{)GC&vU=W~sSB@tmu%CSERFpw0)mB&)y`$y0xZ
zaf>HI71oVPlkuiwqA$5YUTrFyHgMXbgd5^6i3kH1ZaAY5&tBk%`yebxPUU^j?vX+j
z%CCVhmY)&|DEBXCf-*PlRw0*4Y%6t~pVuOK{4Ji1Ceo~$M8MKhxO%Ttu9RyhSchZG
z5}YLbijVlkoylKwEuoryykIEIjYPV;WKHf=&_{~eIIGq}2L|>d!P`T;#X67T8e+$6
zAX_OuI^nZo25lWH(FFggrq=wQ4RCTD5FcqtMe#HD&VffR`?)n;H?6v=Ex2N+T}?wz
z;WM<knvR;Vu(5w?c8=o4o5;d}SXXIn#8K_z^1db3*v(ECtF+b4Cpb!UD9JR#g_IU9
zSxz^0j?Jb(s1ZX#0v7HK{4LZi21henXDDXrDyeuS@1UKiBmk?ko>@dBYKHp64EY-g
z!XsCydL(U#D#2V|Uzx0n{voNdc3*_A+68DxfC4q|6C5thYd-hJE}iNiN3%l{bU*Sv
zberIZ6@+Mi-IlLOGI2^WU#W$m3tO^yKNay6!@=D*vswJg0|u6(_4r9sKh8+b+y5z1
zk|~+P0-;9Zm{Ds^OsGrMo`ga}Vr<C=^w8wW6?G2#eG`*tSn1&WGfwL{_sIw^pL#0W
z$p=N%r$?Eopa-s54(ju0t?WSG@$jC4ubw#Lt~k{6OaoB<>a()832KI4g86!AQS|8O
zRAZ8aPA0}#`BN&`oAukB%?mLIow}J>ixZ>S`IQ%v{6#b8(M%|N2>88kKwk#7)<*8D
z0Y`2fk37h7$`EymjY8a8yvw_%s`0CDKzsFn7wJ|uP=Bk!ebm2bZky(WIh^Eh&urjX
z{vd^q^ITR&i7bQJlW2CHDAV}@SMlPxJoHf<kbvnqMPOwt4oX#h2(z{M@^?4rBML@a
z`^d*&6^FqPh&AjVpT5=K3;u*XAf5j-vU#hW9j>phF8$u+l2Wn=YqGn%D)5cUsK_yG
zEfH!2U06o%{gGVfeX`@8?$|;n#t~HaxN6yaDWY$*c1DsC;gIMmh@704QNCbv%(1T#
zw}$(^<Qr2TxW;w2m=KDP2YdV7w~+!FGUf?)O+OuHA6<=Vz$bx)g1aS#t$ZIMCRwj>
zM`JJ0h27b7F{rv}J4Uj(9!m1IfYc=?X{2a`X9*9TFq;RZBd%9uF^c6PjCT)AqJY$k
zh1~sOjSzq0XVPoTWzZj#92%sP@O7PmPEog0JQ2fkf_Y7RAkAF9<t`1Sm`-62g2#AP
zS8<$IbZ0OIlf#&4cKiyFnvW$j4{A}Os2!1O6zg*_wz`LaZP8jS`Z;$VrB{QU(7SyD
z;sZ<D*Gbjc>gpavM~|!@zFH)o6L$4I42sfx{^s9@bz)((M20>Q!+Aa!d+l6S9)Gu$
zmr?if5_f$js<n3Oe&6W+$>0>K20cGwi-%90$N;DF{?-|?;qxvjywT`8292}2>HAtl
z;glojcOy;39UKbRI$O81!}{IjQ8hTy5Ogmp8e;WEg(6ct6!ftZ{+=sHB%4jMq&y%&
zz&Q<Jc4_nFvqs~4)fxE*w-LG;=62}?s+UghPBp3~_sdw*w!af2MXZ)fHAI6KHN6Mk
zgf$bl=M(Q*R}GH(I}$YIc-SM_oAC$()jXJF#!*obM+dqFGeFh^1=J&&OuQ2Ep9MOJ
zWRfH<=4nk@4l+HmQO9(HyCTOJl}LSjcIx<?fOD8LUUG7RtxX(5#sy4dU=n32>Nv=Q
zv>>xQ9CwM$z**{of{<@Ia+Cf#((ZBQHWl?ubX|1scdsvV_=8`p4B2xgj!OZjremIC
z?aST=#W@ynIU9p$p8Rm7XW<fC!5U#%`v5&XN%;{~EbFCKz96;I){hf!pM8xSIrxv`
zsLZ&X#$>=u0vy`4F;jDsNkqBtQt-Vwpzkp*emCT;GFLwG`&qomPy*(s2G3g03@T0_
z?qJ`t*61B{o$IRzo%y4Pp*E<QIvLcc+e@8r9mulYBdc$qn_i3jaQN08ZhP+#y3>Fh
z&XnX*|CeA;{&(z;$JYy(?l)XGZbIwm;r><LI~>2WdEl}SUoMo-?hP$?FPYANRqpXC
zZC<}8Y<=^NX<KU4=np6Jc-OwiNbNMHF6=G+qMSC6wL4OI+!v2LU%bhDh4QIbDE}xU
z#aNn=h+<83fcYCkfVM#=+b2riwQu8|>>P?P3mQWgPltI(J9p6ME5-#r;CeZ*Mf6BM
zKVvFv8j%b)WeC57Ytg*C<k-OKy4Vj)yxZHd7jd4?w4<x|sBp}$zVnG8Dfk~D<iMh&
zMB!1&)D^gRl)Gud^$~GsR`76bUeGoJW#~1vir>`JaHN9^v(Dcx&2Gb1&4G2^LBa>U
z5`4T-1-Ir168{VX-%IghbZlakJo`wLKhyc5D#w2ha~Up{PQk<Fi6rNiK$H+Q7W@ne
zD%v&{3<)YveqO6lKV&((=F*$V+kOx%G3tdijJ4Tt$D(m634-T1h}UTV`2f0y)}U8h
zFjXf<podhP_Qplts<1_X6h#eG4IiIj*x=E_X%;ZkL%x`?`B9vr`5e|!8K!_(fCEoW
z!<ZY!CPzV0q?r+MX(0o(`S5&&x0mgC@g%O|Q=w_)MJvAw<@nN~gRiBql7>r8g}h{|
z+i_!|o3nsK;D6n?c`T@XY`o`(PKF83#~lorwz0$u`3iEJeQ`l=!$gb)z0c=-#|nLA
zv|p%q!ud%_g;8nIp=o}~Aqnf7j>L1&Qbw}8kE5VNU|v;3P=5K*$3UvlQoj)2*N@z5
zvnR2~h=maJ7;!%q43f){(a6XwNFtc2-CamC5%Gvx6tDfzI2)K1fdYKqN$0L+G3ZC*
zBI%jN=f*o)?uzo_yPLdEFr-%RTIoNfNpZl}o`h6dqtY6eXEDIHWrr)Mu2?-MFvZk)
zLGnFsDdc~lv1kqRdVoe8Qn((>iFLg)^sHrRFf;dxieHN?+iiL+)y%GHzB5ra{aq=j
z`o2nm7#OMbJ&S3;_|<z+OWGf7j3^@A+-5}i+O9*l%b@n*7W;jdwH?t!>laVqt@Iua
zshZ&`)L2{7J5)Q`pP-bl0wRx}V2Xvx2y|9A100f1VxK(Q=rs2IAI+Pg+tD5ut5&2X
z6AnhnW@e1>Go=hARl^gACQ2nqFeudNoXMX)Ty4b@mB8C_l$89*a??#Wv^O~J-fA2I
z)<%zk#|0M}qh#E@jNLb1@ig9r=%FFd+?hWQgs(+D+@9V~|K{oq&I{vz-18NlT(w1u
zAVRhK$GOB@tS)t3X~wvcIX?b~YQV%KaOgf$k6VkB8ti^tyw|A)VbON(B{w!*!)sAH
zlh4k)KR`9|hR~{RGW6i!;jJ`$KX;nZd9E<HkzP48)H1NmnrrtsBx-D~=l{FaiM=Ng
zd$FL|y8x#ov#%VdYxnWX@1=nz-;sD|OnhU|rgjPe8VY1bGXnWecJpXbh?#PkIPek-
zM!NXzuIBRT+7+gSR9cy@L{XZ22amLX_zP$BnRa>WUXnC{f8L592F6Ag6zJ<#4-A%{
zT2RuUH0M!p=Cyr(?~xN4cAtLrBdPQJZ2cQWMVatqrqID(kx@X|%UiBXczC-9!Bo-U
z9>ebGgeL9Jjr-8jg{?W2o^v6#M4$W`LAX0+3}vV}iF9E@vI+1wtFVaFedSk!=~anr
zY_m0y<f(ax(@A1gGozP)E*Zb2Q?pb_+#2h%y$oP4pGM+#d^(f9%}nlCK^o`*G0wZ<
zq#x<pjgPX1(7*!801;HdI=4d;JGAh+S6`*C`z*y>IYE!p+5{Erg#<LK(_LtRrBrQN
zFc3<D9)ZdL5hDe;3V<scW;Wh&Q3n7=BbM;x3QiaT14C>)FaBRlr8gi?<!~;QskB4f
zA=QIR07O&3Vv+}<09|RMsWeARw_8ecJeHQ}gzX7Lv@5Km3XD`~*iKM(Fs0Fq%c62m
z+*x~IGpf`|;&ah*Mn5JO-QKIF@$0v6U*rI8#`TG>2r)b=KWzJcONHII_J@y*{TDql
z?TprU{h8Yb#QQxL^u6CRB_&Ko$Fa_p<Lva5j>J)z_XnG0yq<J<y3&Z_+sn10v`Eu8
z<B_5vV3xgKBp{Wd^;m3p4DGn3BP4JCp$>3u-kzM3Z-HNe)B1c17&uB@nXv_)7rC>z
zY{F#S#e_8&33<}D{{Zc-m~l&^jev|z&Ar1&6njyR?eVp5_CyBnb8iFZJyM4hyY?LK
z@8)a}&zI+Z`n7yh8u@q2DE-1?Gb=A6Rka?OvM4Z0b$qO*H@`N)O4UUPz%VZ0K7>ny
z$C9#@U41HbR9{z=7)UeqABH%kcLPT}702k>YE#<2V`nuuCh2QrkT0;<p`YTRd4)&)
z3cj#EV8qD8Ru4`^<FF`mU4>6C@}fBoX9!|9whNQ|MK_R-s{O;9?3&cD!|`2PTSvk^
zhZw4P_<`hiXsNyG)O-c_d4NP`nYRu|Hao_a7&0v`DTHZd&B>vhEg*EUu!s}C4y996
zoH9D5eQMTpC{#RPDyi1}&5eh3K0~e(6OOq1-c2?yt5_xkzfP4|qIbPxj)?hy8Kp$$
zi4F-!@qTuX!8!3eNS=k_o7kdwti(v=>y`c*C~VeZ(XVmO@?AA(d(ddHnvubpZ!z?{
z#nE>UUS4LIU2`xynj4XmFsSRh;;U6x68$h@Gh398NwBKihVMYWE<oPdn`?cAW=u`Z
z8A`)S0}dsyxqb`*|7HrWU*e&JB(NqTUo8hQ=roBSR`%rv*r(Q1EclDs;V@}SY9j2*
zYHH#*O);xci`Onx5c3W;6?E0rh2EX>mkphM{Jp&vGjHs3tDb_K06$u)bd2<g^F8Ny
z<oMj=NrAMcYrOsfttJ<OsC%#3b6J0B+}2_;2-B|_89N-Z_7q-I9q(saeKVG&x$G66
z9@COp8*KOfH(hp-GX7hLLf*XKJP)t$IrcBBh2saMMEP}Z{QKwB`Gak*jTd1A2i?J`
z7CF8uUIex=o3d@i_6U^|4mBIu5B=(=b{*+g7clsq1I3(|3u*gJ_frYh@4beq3DR8X
z*hWI)dfM|_W2~N@_kvBQ_a33>E(5WC7vbt^1{!4kK3!!~Wl>E>0VtJ}*2{Z{&DYka
z(T2^QK<5`Lv<u3kq5}+Hz;<Ga{(}@u1mx4`sMJiqro*>s=P~k&JXwDYtrz{(Q_k>W
z{eH*^O#TAV%FrM@Bmbc=`>+>pfT~2i(Q>L}bW}?Flgu=Zo?{Rue_4HjMIw;eK=~6k
z+$R^{pJ%j4At92<55)5Z;oP_-&j7dbMLp3FBWTEP&4`yksGNjnMA`FmF#ufKtOx4q
zqp~Zu7}vlbA`XWzOvZdOk$>f129!<|!;pfBwgJy)ToHMLEP;RF4`4(^eqE?nBM!)S
zlb^&rOq%{#EP+z2+Ra{Hx+m~!w7h#lo^n+(4huqk0^8Qk0IQzr_WWVKC9mrPYuf6&
zlS9w{S#7j~0-p_hQ#t5@$<?rKVaB|>zV?OOr_!i~X3ZotXL;>4QeA(#S964)2Aq?$
z^?@ZGG{7fM=i|4tFfhcuJ?x^`4G|GPO#yZVk4CP59s5dC`2|UYJRIgBaeYvM4E0n0
z-)T2m?Rv-4uXai#Y6m+Ol+H)+@k;zir~cvN7Hzi(tSPQYY}~l;(7$&64D1oD<$w{P
zrP=!Hv6|0Vr4}Kb3vTziDm$Y-XzCcr{rGsPoT*5_)-E-);C4!cS%O9Ln=Pl0nrYJ3
zF_>H`{EbM??vSz=zL<17<TA9lW`i0&emN}b#18RSv=c2#i({*`9hL~5Oy&f9Lo9gY
zZfo3aUb~D-q<W@T)F+rMjk~{mpze*8V1Cp_g<^nK)^dHTUtdB0&nt?5i6n843O0oH
zWm>vJ5`vsk&a?A2>(k{(z}JeolwZ7VHV!HFL}*wG=S3KV+XnZ48ex{avmscn&Cm%&
z!BA2ULKKaZd*u0TZED0MdQ89{Y2zgob8PljbH0`tN*!T0p2~JqLNJwnUTaIccW|Jh
z+8}D}I8a@44?+S^nc`t*2nYck?@s0vNZQd(Xy_KYOVu!+Kf`qZ*ruSVXRm|A;s>UV
z+lsu1O?M1Kd_FYPRr#`$HPK!=(%xbkybG(j!>xGxP4ipnnZ!fplqAC}sBZU~#A+{u
zYa%t0)DJ#)SKTBSM4oa-uOlbpwUlR-UFZwWG<3xwVZ)fa#S-3b<piLd-jA?9$lpXS
zI~glBF9n$j8B>O%#UX3<aEN8d&pU<PTPgU`liv+QeF9!WDyri{{J$WhP0E(9UdZ@?
zt0o*6*Iel6CYxTXVHmm7b)rsVlhjkOXIe-M3T}w#tfz+(bj*TQPsn}V8zXHav%60<
zWt<BYg;1L@qT}#rp3R#-Qp%<2wl!?@IM>Uo2H6dib^N;fZkduq4vZ}NNTGlSRk{yk
zOd|nyuevJG5;2$%o_0rz)mgE@JE(db|GPSfE}*x=J>Te8%Q3t*L1b|G2vhd~og^d2
zaV1dRQT;#DY<678zZ+27P`)LKxe7q|SDG6N9&3>}D&egVV2K8Qfn1A@Nh>UJb9eVG
zrc4;0?YnNhhMJf@fSoQ@`0l4^ejSY~n?rLh^mZsxr-bx0MA(L>{}Yex!d)6|JV_1E
zKj?n~;m?V(z_EXAMg`c1?v2jC&48sd*O>i)esdv|Bqq1-19OmPtjotxA@ceUukF@x
zaR%xDx;|d#tCiv9KhV+D_#A&j;F2Q&ql|41xF;trQ8(AN^cB@3hbnRY&r?o=sx%&F
zh3L{;(i$T_<4oQZloqHoc)U=VPC>YnKkMz5*KM)gpo2zOt?709XGIk|r0E$jf?<H8
z@;usXccHokJbWhYz^AgZ3AI3E1rDFVzNg{sd2<3~Rbg-;N2MZ>EEsIWTx9<i(vj`;
zS$b(HiJzLvjjK6^NQAMbq}Fvje3Jp3oB|*G15$NQB?id^Hsx)6>#d__QAblUO-X^3
zmEUWgdOfr4(*Ug1P~HtY&{;RVYJA_xb7Wy_%GD1pWE)I+$o(cAOpbrbc}5TZy9j9`
zD5RGa$_t{uyvK6(p?%Tq@r}u-t1en~$YOwVp>!rPh$i)2t!{*qvA<t?<{TQynzA-D
zOaa3@^?Hthbs_*;Di^Ul9XfaBkHhYhE23uhFUy}l6O}ZHW~Syk@J_*gI+8dGGa>z@
zBCRCBaV(gCQIWhj$l^y;0c8xk$0}Z>YVH5FK}&5gn5kE1i^c&ZG~0O{kH|hty2kRc
z@auLD0mVd}dq2CC(vPZqQiF`}@b6KXj_+N@yE*vYl0bGyd9hE<!zXJrji8s8VbTw2
za4KxfQBm+XOmgH!(WGk~KmsgOHEeD`j~Zg7kPGj<qe8z-Smn_^9cLveu6<=?LJSt`
z0;jcCu|=>c?7LK!Yhff(zC_zq)RI-78xA~VZd4tN2>wq|`_AMiJ%JDn{#zI<LRO56
zxDzLen&#R^J{5iYFWX8q!vVC~UczV$?PpH-zH@{K#~b40r^5Vg&sEZxd}ngtn@JpG
z8K`FB0OfE7uW4RI(X*v}E}R(LRCV6`uG8bCaBul`b$U1!8sf5!x--FNpdznJbANm4
zC|Rsl^x%A1!f}udCLd4ec4YK>-SOMoCr#&z{r|iGaD?oB@~ISq6pJr5O$#TF8P_yX
z1TR!{x{p3uX6-uz$I&S4!?{BpHJm+V{*E)C9i9UmV=R+S-<~g)&g1Gp$-wl022Sk+
zF5ZAtzx-%aVKqPMus<-P9tzUzF2``l1mPM|(9HcFxtMdEO4Z;hKrI>1LA&Q$!|0!d
z;V&!avB9Q(;0WFGJYv<d0#L|Rvc|Sunfbd{!avT$7HaDRiwvd?K<5X;jl#S>n1fb1
zEJN;b6EC+|pTY_3>y-NYy3yfGK;%Df5czNR_&FR3MugutMyICkvabN>ynM<YL&Ju!
zO)^B1AyV}S*`TukXhyGv09`77HvrQ=nekATIl#amB=GIv_OE-I5**|)<Al|ViYq4F
z+?)wq4r0vL8VcgM0iZcJRyMblaU1-%LRO#lV(f`HP%MUr+f#u+z_-m4hbQu;BKwFW
zo<FjYTQHChQ^NT2@-lfVl3A()H^hJ26W}3_0H9Q&Azv6x4Go4gr@^an--jhKuP;ka
z6n{gx(tmf2<%CNr?e3}iy#}vbHplBA6T7C8pyA?#H&6hHfKx7hpu-<Eld1bgMOxtX
zR?|ta93!W0a^m^FSAemB<Zyvok<T(~vgB)3@bS3Jm{UTIq1qT&=0({7PdMmLSdyNj
znhm!~t1KPx5m_RrgvO2zzumpblrqvvkY7e~I9#os4Z;4VuqvEPNl=naA6w@^+!Dx{
zWLZP$fXHqiTc6uNpC%QlGSnoPuKA7yBkm^i%j<7i&Ck3Xl72ZIp)t<CDp0H4YC3M+
zn(jE0PH&uUkv#}Gv??J_G&k(x48?@3XUO|%`}G_}v=O5<A&AJSO|%5T50i(OeCAz$
z5a)}M(`#p*+-RXR0HMo+r;kr`+M?f3^o{a-vn=eR$tSa6Ns{(t#_m7T)s>*Wu&~TJ
zKnXxnRFU`169HzD-y`D>mQ;wQ-eZ$zy@~Xq*JW51d+_eqxd5EEzyC&2WW2<yvRKpF
z8f47g%?<r;e&8Fk-Q<w_*kP75V{`a)T55ywaGhfSTFd;}FdB3%j7G?S{$njFL2*Hb
z7+q`*$55~AYzh0raYHsp@5FHDc%tlDg=9%-JJ<hBlRQ`<n>V@V**?q>dQM&gMWp=J
zD=ZX%6@q-VQu>FQlG0LBV{8Kfjql=q#?dJ)JyYJSOn%AMf%Mr&vKwiR@Wwle+1btm
zX>?DkTKi-WF}O49%cPPjq4O!$&C=`Cl2!zH6wq)*ivtgM>DHY8#qYMWR1CM5rt+Yh
z)W21qx=j{SJb^$V$r35mvw!~%B<wGz+bUjx#VHYyaJsiaQ0Q-YI!{OH6SH}_MseLN
zzF=LnadfaPzdqITjqE9hW{PEv?(F^0_Js9`O#AERIFtB;2}0Ddq^ZNR*4o^wd}n%>
zVw(BE5J|;bhds*Y^OBuly{kLKBI1GJu^sY~-!l~}b$hxDRgn6yNK{--KeFp5KmN3S
zKX6sio!=(d6IV}LNR~Qgl)A+-#|o{cVA#Eyk$Ibm%3GuTEO)<Hqo&MwPAcBA^TMh&
zG7QJA3za8#^KxCXiCtD8#J>;V)#(@&8Lk>ORBaMQ1>gU3{iK?Gwh_IAzmU}C3z)uB
z&s*=CC?9x$-M2SNcS?O2V4#(zWxDHfkJ2(a7HwNyz3pF7`|hG7TU%Z=zK5})30;1Z
z(JrWCh73W!T&4KTGG|Esu0ZKlpIV%te6Uz+V-=SI6gXS1qDFu!%@vT)j2nj(!HCQ?
zm`_lwpoCVg+IPx_>_w1#t<BXjVT0@QV}}a`v55SB0^(7~sgH~m_B&2%=GL4n&CDX9
ze?EdEZ)BFUdEE+tl<IUKFM>pxQ#2bc<PU7;<3Sb;J9}y#BkYB)QlHwrmQI)k#IJs8
zvK2t4B;AK+M@x#BxGDrSV1~VBZHiPzB7&KL)3KK<%N{m5IN0$ztmQVet#1U&il+w?
z5_k{X(Xt%;ZExq(`5_eA1-Z=B&^jrcME0W~Q#(&Q%yNzsGk=tWsa!=M(6-uFBLK)1
zw*pK-uRh|;1OCN%<*KDN*KU;>)w9EpB3ErryL*pF(2|LI+fm3xX4EZ;8O*|TrC77j
zH)1lVcmEKDCqQ!e+1UN%;ga3!%1r+}9C5L96Nt}96H~Z>fs*sx^nZW#czo@DjCA4(
z-+qLvC?5aI4@HB;I4q1bL`b`_y5l8VZXiNLVn6c#kZMn$Kxl(DlA%}1bG|ssuG2XY
zjP!*R3>Icdc}2PTPGq$`iFwlmx%>o&b#T$-fmP>^+H*KHM3bBt>Jkqxy?Y(}9<jHi
zSDj-2vw~(vRVe1|91rd!NU+CDDnUr0T+!;E5WY}wa5X-bo<_);70O6p-K5SEV#2~E
zhq;$>j(h#39YOIzHHwgQxv;$6vPehfurkg3QgZscr7AyMq@B;u_(R!@DD`%FIC)7y
zO+S~R0w`B34o}8zN6wF@%bZGmVW$Gh-X6$=D!%<Eytz4RZ7G6f2w@CNtJE4o8gN6U
z3%#YV*Vo7bt&uQkHz@dnn=VTodi+%ko<&6EZ_6QJQHW>O5bn>3L{AsbG^E|Y6{qY5
zGMwM~&uYkA^K&IAnnp*JBC@#9*7c>^liiz)hTv~?P;nMcAPXBZGkHYhsl|3aHEbl2
zuVAm_0gMJYxg_+y`(}?CzMy>|QUc-1h;guK1RMsBpkyL!^;le4mF1K|gM#FH`=axg
z{2%aS$ZM)}`*M<}0?vE5ZV7Dqq9&%~G^G8>)AQY(m$ySRPqyRts}8nB6*N!C=^LQb
z3K!eshFeZ?f~z$;dit4@h?tA-RewSe<rlb4y9^A5?`c<7ymrJL%P4s8+jCoLMmF9i
zV~N<QO_-Z+Yn}@dX!C!1c+P!#gn)1w@0^kv5_$i0cE&-)=z2hbQy<(*8S-rHwrg9f
zP@5O{y&};X0s;caAwjWzWMvbc_fuZ2r3oCvE(QnsD*X;r2_$#dTdN|Gl}gT)zwnbj
z?0TYp3~x?5uY4u{2~{t!UWe~iy+DUUVDZ%=3HsO~{l?D6HUB1Vl|cd(@RAm4h{WW3
zwOAupBY+*VTBEXiefvyH_iGU@KB^L1<)mb2{{E%2T)xyFbH?%ukd8R_G(}QhGhY6B
zR{3qZZVV?WqLoQ}_^t$EcPiypO(S(K$BoYJ<SWMcni~UXKH@4KI~iONUHIID0VRt<
zOIMyJdZ``!vTR`Ai5!QyHzebfpdybq#xu{zD`meb0TT&3w7cVf#cf`EpzQgT0IwD<
zK3mLBDgu(#;WS<}Y=5eYSFXzr5(<Flg_Y2QL=bb1g)NjqVf?N$BH5hB%BBX4CGvPk
zm6TIy;G=ScmG_8dHtSCPlMcdy1<=09j8wl4d~R39x{1Rz5_YUAucF;`DbT0y`K8$6
zr=a;5+j48SNwxOHqW4os=9U!{>j(>EDGQ{}{rP9#RD6>8_gKsiNw9m(2Va#0pn{ZW
zKA+?|EwnLv-Q2A@RO+{f1(U%gfUdV+7ymh#z+Ny2FG7|hRoH<PyuG|;fVfvi!3uQh
z-h6{LbWT>!>7OPTxT8r*)}a+7k#@|9*tvkOvp0}?x6e<ghqr5Lm$91(1aZ5$7XBIV
zV;eOm@w-7Y_J=DP{%4Woe}inYCgY?;Vwme_=gFgbKlVcG`~G^rqi^gZO+DBS?@TJN
z2!l>JT!VDcbJ2cC><vi9_PpRth|~yg!(AXNf+bu$sZoAztytzV#28intoT%xUEy&~
zThp`pbi>ERwY1|6jb6fmh9Of0^5tv_dhnYO#~Hf-^-KWr&mzD*avCriC`0qSb*YiC
zsYPC=s`*#f{+|VZ-adJtCDhRNz_rybiyS_jtPe_0h4<?KJ#kB#u_FhbMgR?;_e~iB
z0#{sd@?#X-7dTx0mm^Igli;jsCp2n0=HHM{O~)X7n}xQxh5WmpRcdikxEx1%!ko;M
ziFq>ApV*s<zdp!oM7jH9dt|9uiVgPP_TqA?CuWlEuJilRa95<u=fsChE$rOv$urDG
z32FDUXw%k-{%|d=u7wo)sOf>?r`A1imiP8KQmRh$v{eRYeihr-p<e%f*f%piAc<Vg
z43?oFCun{li=Aw@@02MC<)w`EO;VSuWl>%j3%fFY;V_nMvToAEgM@BeooC*3ui&S>
zu|6c`F#<xg8_U7g6_y3-q&!!Sg90<$3b{6^twOvtH20_)adR6nXBjxZEIOK&!B8!A
z?6n%36jEuck<#&Gu6h6=1yD0Io7!ZLSdo}<<5EsXARXJMiVvTy_$bMC9(<?K(SqJ$
z)mynEvM}M;0m{hoWUIR>r>n3W?0m$)t_rSO0{DF?ERADsMpKC_y`z7kf;Ojc?Inj)
z!)=H^X$S?%0;kuOb0wY(t3M_tXMWN;E@mE#X<;oX=_cxWTqt~7aKkKGmSy6Xt$eDi
z{W>;->~($|)!ywhWOarQ&C2Ft&OXUu%Sw?-b&JS$v(IHGGd;fUJBQ?#EWiBJcEt8o
zjw^+q{9`P<#na2(PsiVS-?J>4v}2gYSmJQd-iT}{1IQH1l|)0KN8HJ}V@wAD1r3cl
z8d}X*9%X(_<MQG@K0mM;iD_8xT<s;EpNB0XiV@5+59%o74}qlkrS6+6+~Gj;&F90t
zL5Z#J%>x_7jH+Nu8(zy2T#;y8J;epJ-NTNuPV1JiwEcX#Xj>JvCOZC7z#VGZp2c*{
z(1o_8llQygc8Si)VC8vHAnKfh>XpJS{46-Kvx4!|PAXK;ym&taT;b{vfYOhMZGR9J
zP5#qH7r=;sopWlIvJ`+3fw66eD=MM-mGwTNkc=+wsQXE(UYqlExqX5SBX=MmhL8gd
zV2-VpLCY-%0NGs5$?LpCHMsc}Hxo?5Q>u%PUb$#i)KFV?!Yh}%2X!=)T@9kSiu)d}
zS)EH_aDVMre+O5UjgzeWje3aVSYIW1yI{a#Xf<!ANlkx9M@q*jQdJ1vzqXS%R~LWF
zmKZnkAJ^H|FHjNZYpQm5mQ;v^-JMvzDHpYKrUV8yR=iL`W~v%<4%}B|o8F=FG0JES
z>^@#MXGhn0H$YU2I3hNEo#RB64Fe5LlJ)4El11%Bnc?Qt_bZ+`9Qvk^Q(fwMZBt}9
zzy<KQqOyjJzN4iDpa2cgD{uDIa6=gq@wabfhRUywkB?RGP(p<=+yLHD=Nae-i)Kmh
zj2D6ZsJ1B3+Mx@x%z~#qP#69MK&qUTeW@TmHMP&Kxhe-j+|%bs2#P|aVD48VKCK`?
z=k=Vew#u6S`Uv}L>XO>BmZ6BIk|u%Nv)sF?^@-(ZB;5C(0yVey$-VkH)Nd_BlwY}B
zc=53R5!y|H{-~9+%rp4K#?|0MKv_eDKdv!?xe~R6PHW6t!S7J0IUlxDclGSZRxVCI
zV%sX)6D~D0;T-k-1#CNGBp_v!OL%OyLtzULIx$Jzs_umyPn--)-r%{^PVwLW(0Z}!
zn#MkRy-h#%NAnx-0IKx=`_==d`b>~*t%KcFPwZb#D|+~wXaoA8aYiT4!OgM)W~K|6
z_IumB5GfO9;7m$57SNYaI#K+{NJsO)2&pQ25uPf@P(E7f%f7$Uwy$}Rvt%dG#~<x6
z^R5D6p>Qdi(<Y$*42W~;?vgpuTN6AsMI}PTvDNs6?YzH)Mk}@{G5(%HA8GDz;xj6B
zmt*{+{e*V=<z7PCp3rZOuj#n5v~0_&fqteUEk+6AL^fMeUn*!@|2V<Y5?nskegyES
za)T1WR#8X%3K}W^HidV2ibS_Y_rz;*Zp&&nEuJtFK(Z+x7JLKOy5Lv3DQ*Cf&&uHP
zPB{=2Fd$<aC8u@CbDQZMalEYm+VHipqAS&R)xGGg@w~R!bv<SKr>geJNgS<JJ;MYY
zh}s(vM=1-bg;My>m(*A(3nTL>fn}Z@8r2-sR;D%F3o`pkb`%fp(sOguWdd@4y~nx#
zVeU4&zPv<7;M@hIawIDp)X&Fut1V)XXect?N`k)6XPsf+SDu6Gtj1wAm*z_1inQ5A
zqEF57ez(8S_&G8BNcGi9eDxlET{7s5%kjH&sUK$(HOOt2yG0U8YbYpCp*?duLZ#L4
zO~5?oU5vz0P-k~GbJ+HOuHbF1v-Mz&BVN$V89@~A%h-6|vJ5WxOwYhDw_~2vvlH;P
zBJmFcQbrMUg=Tp88s+%fD0^;czHe>cb2w#4KNbb@6Nz)G?R)IJ&=~hk*LUYcCRkJr
zmzA9et2lH9w$!t;@w4AK_^coP8kl_cwbi*fOSuWS?_%)3mt)F;{OETa^n4h(S);)2
zHQrs3q1OBd+#KRawL`0sY)GlW7eJ-4izDqe#I@O`I&7P13ui>gZ3zIRgEr5ZJNpZU
zMWgPELpk5MayJ5|<|8a~+jBO2Pkk=0t_&G;e{i?fw0pB6<D$ymZ&1~gQbooA_Q>Dt
zJDkGR@CaE7T3t)ub`#!5H;<@@dv&Uc?&eOcV*9u@-{h4Tprz|1@2ys#95n|u{j!k#
z&dn_k5xLmjk`tfDCt9Z?NM2=>+y@`4se}MfS8jLsQ=-1t!Ew9m`WnvOBecmG1J~5F
z#|+ua;_Buc&mmIM;pBWdd0BG=0buE{IeLM>8a(eagq5=A)$TiF(OEO3`MEmp6lPth
zrdrS1`yTIR7_7+vuHVSKdSgp%wiG;j-9{OgS4bHH5lbWxNf`V*W3D<XivrPmRK4}P
zF{Y9TZ^Yp9r^bI>5y#`ZLr?XI`?|!{JCjGilrrMD*41hKIKZT8Zk-8|Y$-MN(6dw9
zD;kdT{cGWjvoz1Y$&gR3>#>X6@=)!bpLnicwkw5^k8|JD4r@oHtTuA3ic$$e?zLpJ
zd;CjBJC2DcA=ZBI^`U#C*A>f+-{S{GWzOxaXw!Bzw3;)0x=Cq{^mfP-?x$MrL*{DF
zSNs9?(^1p0RqG*wB^}8nTfuuP-hB&V%G^MslX;&y5XyH-r}xKg)dBBDl+q*zBZ7gZ
z?_>!G&Egs0iY@|wSyVIhxq1&LtcsXUHu%+f{>+^<o6n8g?mBB7(Y_@r+#{)<?fw^I
zZy6R>w(JilKtdBF5Zo<j2u^U<;BG;J1$S%Q-95OwySuwfaCdj--I=*_|7Yf$d*AzU
z^K?49_o~`!Rn<?pGrEZpvP8b@Ac0QpTBzcRFkg#*XVbRuf{r9s8}IJ=iH6kG+dB!6
zk@Xp5c12v0{C>a593J8(bI=<w73F}|Ci8HadvagWEeXn($G7oVQ>H|EN4FzH`dag(
z^Y{BaMI#v-3R`G~b6+2yNv$kz(gFHiV%7YBV|56zeQHfb5|Qe>ysVgj%RKb!i``h7
zZu58xLpfn9z0XVQy1%!nS5Q1j)>D94o&><ZGYk3k^88@FmcMSE$N{d^lv4?}JoTt0
zuT$(%gWN_f3XuAO%8n#6`IEP<Bexvx0`K=QWt!iXmY!a=!Epvw7^52goCsubto<5y
zTj4ZRfadX)vn7r19m*;+PI^<GzrIibz}VrT?S{7Hx5y|flTM}T9E_tOb1r*T4ty6q
zf<SpfbS+)2Tomu;3Q{jN0<LSgqt0gLsZZl%fZpC$f;RyuJK+&~ODWjd#0XHe2}4Lt
z!2`@&H?Pc^&Mc?WGD6>vh>^2Fv;xvU1{YS>`>*d%@rQQWKeKE<NK3ldr_(D(aRPFZ
z^q5;`Ca*dQtSAs{zY<&Pnn>St^`@{cm~#|*8Gt&$#6(0?EuFvTForWPSQ(=h!eQ@6
z>_JrDJ$~MYW@^^iwX3s(qD6E7rI_DC<^SG{_JiC%oLO31M~x=ta<n5s_6*Z6)~@S}
zma&2MgB&}(syO4`^!X(olZeI6ahP-zcL1ucq^~`po&ZgoO$pX48dP`kR@(!`pco&2
zW5XF4a^&kIo6NPc^^vB)QyE_vt-NK%s_vI33fo=#oR3HyBp2bVQpOTR-%elY;WJYF
zbh!5$t6Sh6pSbi`4Q)1<AZ|5~iP<8lI=q9ea?yvRNOaA;ZWj8@>y9K~IlpJ#6ua0T
zcn90vaZmnv?f{##m-iViU@upXHQ|+2rURd<7^25xFr@e8*j##rd8Qdyj8b|(hD>J1
z46>U@f7FYA;W?)ylZLdk%`S2ZeC@LG&Zo2Dt&*Ai2Hb%@k>^^Yi%ss?JF!j93ccEo
zgzFDDbX7FjkH+G@@>er@upJ0M{V#TZz>UhGS3}TobujCr;dEu^fJ^nM5b*tRfnEVm
zT6Mr00$Qg?E^IG^Yi2!O>kYP9CuqZy{?Y^k6p%=O#)0xF^l%cL;)h-BMxhBZeBjLb
zM#XBo$gle89?BIFst)!?Sd_w|<%3DXQ;o{Hs+(Gah|tG-5DreclEz)a2qF|;Fj7et
zZ-Lx(Unc%L)NWj(S?xwZ4kf{9N&d|9vvTBxS)D7^8sx*liG;S#83g8Am7^e<xCzua
zsmNA3=?OW?`1_TlFs^3_JQ@{|8}pRBokE|mpt!u{NQ2uo=$nB4JEM3dT=WB-^J{kQ
zu@{Ycg&BISN1hJoCuvHT(DjRvM(&9qnxB18J5u-(x8x5uE4Y`tI`{?ZXW9?p9~nI@
z0$uYrGUlhl6h7GyovsPDiYSfGH6P8WKn1U2Rp-#p*s?T+ZG6+vAk-*pG*)<g95niD
zf@{!ceNsJ(Zn*QU)m0s4Qx2oV5_zPF-}v4SUvd1(I(J|L8hy3(`MhZe(m5O*pSXzU
z-sSjibgx{vG;%MB6oJ^;Lfj%ac)%cJA0j&@yXt<Gn~}|tD&&|kmTUR(HEPU)q-!D3
z@w%Wvm-O0OW#_Tlfk;{2-3!@%tH!NNbE@lN`wy;9K@FoQE0{{?SaxwFn5I|OCqMl?
z$ll?qRi`)(vBd$(RARClRd+OoP+t!mrF>kzBQ25y3N7jr5xUpyQI;s(Z$z9<(kFrJ
z8eu<t4}&EW`{35dWyyGU)mz;}5Jp{p1Y_FD^}2MGhwbJl7q0LXq4l=Xb^t-}MsDHr
zD6P3Vkv(jOQP*nAIk-dprY`q*CeZ74p9s$?I-xSw;vLi%>Zg>Rp)aY0TiOt`Os<Vu
zqt`{6l1Sw_PFS6Ac0{lhfqH@S1tx)j0}eUEer>PRA@PV1qxd#s9BcU?wosZNfqTEY
z6O=z19S<H9FxcWb8|RddtPX49YmgOLfi(ez_PI7SbQDByl_1s2Y~|&fEVNYWejz8{
zPLht4-`cORt#PSJpQ1RJz}xu^i=9M%9iEwH17^bz0pCt_^I#PQNP}eON0M{wuWa*`
zwiI+J0Q!Q@f|j!+NoVs`C~nUQG<Icb=<1gE1KEYs>X1VK-49*ezA%OjQ~z_aOm##$
zRLsd=*U1!q7r6MumFVWtaT|YsVPSa8BepG)bBVSuX4gQFvE#lA0H;;xgZ;gno2#d|
z@v4r#7H3iy(W=#15MmZfdLIM;dLXKK#PQSSZ6F2YL2$UA%~OLdK~%Mgb-tIe9y&9_
z9i;c0;b@d#G%X_i@3Tay)av*}RG)HU%tx{ptC}OjbEUkrQ|N7-r(7kzp{J|n#g~){
zJ&o6DMYkMJKKNjF+E=vzHY(NCxr#3J77k#Gr_y;>{<o2{PbM<z=MAa9BkPL`XV?cN
z>M08VPZ(4&X_zfd<v9>h&FX~bPb^-zTps|?whR?0Yo{>Jj42o_qtG;0+@%^3t&qFe
zl~bgvC-9jM8m{(3aed#1_uu!s5i3Xs-P`O0+b;PC)8{kxW~F&ob#;F#s>C?{R=Ur`
zHVX%fC7?R1mrSCiS@5xq5N`#WbG$S!FIvOVAzeA7ez@T$*dtzea@0+_0I}fN11ej@
zhTP&%8Sm-xg8Pe}0+bq-rqj|z$5M#&H{{KNo(lUnXJ)@rv8%0dH*8P^$S<Ax@eg*x
zxMz$dW-VCs@W`<>EVm}3BNMbH^$}r=D?XJt`+hN7`~+il?@aJ*A28R98)F!C&6y5+
zE-=RGvn6=vdb9M-1?e-K_-N`G;?rH6LlZ_J8+9AzzLTRD(awQ6)x<o10ueLc)0qeK
z%49{MPO;!FgtUr)Msz+!D&_gU@yfs>%jkCuVt+5AqTK_8HD7ktU*~L4-90;+w|wm8
zbX?KA&*&PDvI?cy#z^oeb9HnYg)keBd%14aE(bjPDNeU|o&vDv<`TC=N4)8I1uv2m
z&Kk~!>B<u7<c)?lC8es>A=HT%(aPy&isD`MX`wLtTtBS@!g;7h2@fo3<_(EH@^xEk
z&-Tysqdf@w%x73J1lwJ13gs=AINU)FEb66Zg$~%!sERLeKk(L7ji6^0CA9iMaHu-Y
zatzEHD=zuo6H~ct*um0g1vB2}nk6a7O7!vry!->>imR4^+#2buBJwYvHrHw;aNm<-
z93$zh+)dL^Hm=o(sxikdvxdn&tI(jKO^GW?qwc!x;NYgpzR1~5Rhe%6a6QZ$HK(3p
zeyQ8|%2s7oD8DX{xNGh@kED8bTj)7tc5j+rrh2P8Rogtsg*LEy5fX{TVb;xzuj(9j
zQ>3X?8zP!+Q+7RDdYEGk@t1%SpqvEl#+;vZ=Y4|=`(`~UKVw8sjq@pA0)KLSVv0L8
zs{jkFeX8Dyy6tb!(SN`CjP`mczkpR1u0mn9q&!kjM)60!E4YAgb!&?xIv=8cc2+6;
z%VO4`VO?R3qG{D}ZEI_*Md}`n-eh{4|FlbQC@%8HS5d|+2ahuk76D^964<}K_=g!(
zmMiwC)DAxkzkmIH<@;V}Lp8w5$%IEA)APxl36w=HDDI<S421ALIIQqA89>?`AE19Q
z`UY?Lagn1bU&01|?RhMu!W-Kp&!9%Y8oeY1uqJYFNcS<`-+JF_Gk{Q;D6JI?KqHRL
zA@_F2)zZu2NY$0tC$t{JZT3F!y4>3!b+s#chT93$DN06|h2m1I$U8tlIA;xR`1{xJ
z*)q!%5pj>nORz6V_J$rAjHR*UQ#WaK;=!)R6UW%?Pif?#_Xe(rqKk@%MCr^RuUy)?
zs{vGV{lJirXtUbcVlP<qURV69D;8v5V`K6FA>mqdAlVIHp7~|B%4-@NuL2`nmMip9
zEzo1szFkMfy3&tuA|iWGgp!HGpPf<IVsQ^ZuHbQIc=Oo?SXf#sH;CI`Ce_)_;WASH
zfIx+v^|3}%H{so;-}l!Pz__b^Pg1)2in4zs^O0XT@AOnAvj`q-=XmQYFync5(^O)k
z3(Wh>im{8@9p#~H1zr%eJl)5HKHR;7;<DgWSDyxNo;upxWTBcK9Y|~muBSl2X`C%E
zTCW{c(46sYS?%x*`Vf#6N0DJEcF8=UX*r*U=hT2Uy!0_@V*Pl)V3zFMT;^YG+B!OV
z-(X;vkb4u0_!kj@KunT{(#~lT=jF_iw(OCdzt|fRIuV;<mHOJ<H*pAAb&zQ-(K;Kl
zOv(K3QTKO%z%Zr<plRp`NUr@BXp1D?J*F0jN`P%IXN4Sf(f_@#L3^|)jbu<G_x8Om
zb=l%)t6ElsIlJWTyo-4I_MS}vW57K$vOLMi9hM0eYE@{dv$Kfu&>%Ox2&P-|%MRk{
z4Ja+_hqI`(Wm4@r%zRSIczs|U3i0Yk2wY+K^mgXai0s)`E+AozS+Wht8g*sFrA!1o
ziI^$1Gv@(iFNhkn+D@omG<y*To?xCzzP2UypB=(Wgfmcevis*dc?CsjG7l?fLw^0;
z!$I_4T!cvCov^Dvmn8kaWBot&%s-F(s&63(SVj_=!!j~5`g(hX5eAC&;6jAke`jo4
zKmV(JnG}!LQ-+Tg`_3Z<zaq{vv`LxS97G!I!!l}@n+EeI3YAX6sa=vOhkR7wAWoXB
znQenjcBa5RQguuDR%-s_tyEz@Xp%;xX(2*F+cxb}V>i2>#1v)6$8{>2%Un4P+7^R!
zF{oQ6XUq&QU6YL9!MC*$1Ii`GDe?*`)D2`l_x+vhJe2zA`uMTxzI>d0(WqpLanN>$
zgz|hr-UqkuRH&(r;Re_vMd~RU^_~GmQ&|xaP_bJ5xjZ)gjo+WYJ}nd^kD@=>&W%^B
zL$Ont`^Y+a*P#~q|MO@hzd@;~sZsTeKncULfdBX^j|O7ewO<e3u;bs02}B^Vmv7}4
zc6gQ$-5-qgi@EfYO``^r9YIw@JEQ4x=8TKPKvh*H)W$HD+K|F7>3W(7JE{4?+<ZfV
zi%y*)#e85nawV^zLD?USn*9dCi*jwhA#mR2P_VmR*l^a|TvUY3{#YDPhL4Waw$eG-
z!xl$9#+#zH!$`;Ji!dwZWV*e--0R#Ff`|W&BYySQTls$vbjB|bKOwswQxhO{J#}=5
zN3H;_JWr5tT0?<oC=&WyN2jpigFg3IL^0`fCK~sx5XN`ybwWp@W#?R@<yP+BOPZ%g
zczS4^D)(^xW1>7Wv#@~e2_zG$-Fb)MAqV53a|TULOB$)Rv{dbfHEC`^TI_U1JRru(
z=>|Ixbdg_0AohKoZ(0GBubwVkwZ1_{PX$InDcaC)Y<fE8vT(Txg1>*XGZFZxZhc0P
z{Q2ek>2oqNvM4`4znam%6{-I*n*ZM))98@$W&+|xDs+GyMfN(YsHlo=VXNT}^z?rh
zx_^A!fEH@8iKFimi+{lYprZ6Cw|(EVDDd?3&7?U}5A=IOqaa$Y=jUhJgLjJM^>q_x
z1)?gFzCHjzs~G4ZLNQMR^>v=Pf|>>aA|9UP-kyYTM@UFWOdZ+BkF?MK*HuY62LUEv
z6AYsq{J89P(L^|AW@cUQLUSLrHW29lxwh_15HTcr@)o=PwwHU2?<+Q8tcZF1lU+Y$
zKR<BVCfYH?Z0pIKYo>~ssMb48oCV5$&Es%wO33I@BT&G9U-Ia?*yK#%cqkZMcgw%e
zbs;$*C6<=dRa|BGqIC|3fUH;GV|-dqkGmf(lc^si)kr=dwk&99>=toVdkvd2FhQh3
zGtU^oQmBWW*Lo_QF{J-we%~EMPRA8sXSQsd-1Sf3)&CNhxkwPAAE7k*PqjQZ3~f#w
z^8W34SvV4`VxtKXF8RsKH>~7ya0g{TSt4z(;fpJ5>1|Gvs^w{-$!PWPVy+lIl0?Up
zMOeK*j(F(xxz{l?BXxLNO&q696UhEz7yq(bQcd4{uvu@lAWANLUvu&iCWJuQw+lW!
zV~8=rE{RR5Nys>Nb52X8m54>d>8Kj8PZ0oY7ox9BG-|ybAzk!-zR>-1CH}{smec}j
zTfp2-<1s5LD*6~ViT)0c^*`k2XJn5^9pS!QQ)p9*ZWTXoq75!9+naF9tvA0S7kAh2
z`2a;bd36QB_yr{yK^bbFt5hD6Uzj!q!=nIcpO<jyZPY;NgiJtCB0KIvZM+(1Q{U1;
zDhDKgenyrwBDt8Ls&SB={1d(GquAH4<rdS6g>KCIGnGL$ez=&J`4wmXq*ebtFaGsv
zm688dmymMI&sHm2TfH~ElZUq#7XOw@fFjBFo7vHC!4>K&<u>1c>2I!~i}Vk+W^8D0
zB?f^BqCdP4Q4#4r2Lm+DXtBp9$Vt~vYY;q}r6on-4;C`TYT9I<pQ0}x3Lr4;GjJ6o
zvjGVz`8QkFHz(ppJ>A_hLPEZRSSM9#P)*Iv-;P(oy8jj~|KZ)o14$^Yrnbn##1v+f
zwhZdzK<hZnXmG%(B|X{dlhM&l1R#h;ku{B%So0r`EQtU3N=AFA5B4R-$Na0$e@KZ~
zs1gwbc&`(}eLD*)(5p)zDA!c*F^y64d7I5&Bve>xn`jCBNAj`g6o5~y)2CisBSnL_
zjxzd*3A!@wH#`^TbY_<L*62K}KGezz8m3EI4IwWT<&^A<WOsGri$ds3?f%-Fqz*if
zw3nHm*VM%=e)7z(s1j+&lYBm~X61_JPc+kLfr^`&jv+nIY8i)#5{^u5#eb@^DCbJJ
zK3*~|9|h2>{~^Nu;~#U;Aso@CF<6mtq)InNGl8Q0?{8L*$ycve%E;gCafye+euANY
z#uXkRC|#u;Sgh0t<uV$2BkMs&(15NGgZfpkXJS$O9L`9Xx?2Oq{`rXh`FEbV&GuVw
zp%rdAFW5(V3z4(@EzNwJ=Di24NO}?E6gz~zS_rfomo~=+1_m0eb@)`IEG>NS7TX`8
zAA0%6P5u2A|8d0$A<6+|N$NL!FaK}iFMqD6F_dU1E@5g7ZeBx1bYLYzANxnO;GH_@
zA4Az?&&Yq}O%p-lI|c;VfIe#=$A~ncd~C3bx(gp)b#@OYhaN3Z#Skdm1xE4}P|~0p
z7L#ZcaFNUWFw-R2IHe&W@tK&MtbW>yOA<pxjRBMcr2>P4r`B2jLrDG)3uWO*yt=(j
zsxAll2F#@cB-w-W>i9pUYygc`fj^UMe=H$2OFJ{rWNZJ&JbFo%x|({nC-KAwx0kl)
zZc2?o8d>1XPpPiR-!5ZLA7)WsTq>1K^JhXOqi+wIs;S}V>FO$Hogw^R<0iOmFNi1m
zRQjzpaZ~i#1{w|y<v5Eo%hsi!kFdrk2*6IgdVB3RoALK=4hegu8HSCoW9ISunB~#K
z!$Xr<+R^(4v+Ta^_WL&l3596|dMc%i`udrC?8zL7Oh7(ctb$-4=tz{2n@b2yU5~r!
zRSRm=>!6lyaYsx#;*V2~l(isl6)^*tn(EMXmw#<p|F6N~F^Tb7iEw1RK;aXs`CAO-
z_A^E<Oz`f%<;EC2;#?)*e0{u>=<MQ>pO+`n;BAIUydm>{KVBtCg2=Cg!f|-*bUior
zY%U#&B)r@$c9do==y~z4iEgs8HzVVw7>}$z0ss4$JE$t7f=dahzAnmXy>wF+ocH>`
zuBc#tRk^?)M{Ii8G(h!X!t$*1sCnJB_nkHMpTF2+65%yIKE9}^C=oL=bA8596{I`#
zKefI8=UW~lLVQ(@gb)7gMOO7g*y8f^lmHk?0G0wq6_5~Zo}QlM?CgzzO^fdksIJB;
zd+o?+(Em0`cYvy&iEQSB6_Re}TwCZ=4}*KtBB$<g$N2|UCtcysB*{`GhqRsr^H*`G
zRm)fL7pP2p{Xsv(GhVrI2PIh2{cJrIrlhI0(J_b!uvbNaNLl0TC;mA9LtL;QJD;Ar
zlT<^n?!hm@{*nif6&s|F%DX%@Gi}v_3Z1l6dJoZm3O05-S9{TpLMWunf{uCOcG`K3
zuMl(nLN=*C@s)(f9T9{p;}~be%TsP|zjUl<zw)`^p<&w8ZMGOdnKqQfDDZ;c2)@}9
zp-K0F;)5{E@|%kP`n+TBYi+Gh4--XC=&^Ig0BGTJ9=YyFCNb>Tr|2)DH&ja<2gA_5
zCT)XqWcC2G&gWZP*a5DM3@<P5Ned<(C-Qd)arZwz@blIGc+sXH_DYpBZcy+?r3(G-
z8H6y^7$+b=&uB14Kw;uNhv<uKXkd^Ag#RQ!d=<Bl*fW;myh4G;plxGbICunf=W_vM
z!R#lg<lp{JHcwZxQNuqb<<k*aGe+jCjTPv)-p0Fk8|2WH=U2qRjwHCh2_2uYQ0210
zi-%thtFIhK<?zTv6ky7tj?iJ+K1oNUTTao<_loNFTS<iO(XUi3QTEU=5~W`%*G+fE
zt~p}kNvu8D`)b~=hZ#ijgCIWh+p{SnOuF_r2w@%N;1x#+iI62C3r4nk5seVrn5mCk
zz3pEH_rmfdK{(i*QGK}Fp}~UCUQ5|CE!L|LpG_s)eBicnyH=u%K8GRy^|YK}oB=BW
z#?ASUY%M2s96yc*qXZ9;6g%JwG*zi$wv=RS^*G}{3suaCZ<<&{Eli7qtdrPxVDj(s
z85S2Y+h}vEv<OA}VT!+1DS;tdPo1Zf;+j|TwUaB^6C<-r&YlmtnqsoW;WS1>O)bv4
zVBOM|6rS2OlaIUYgZf_<>R*>|vjH_D78CBRR6{NUCY?4^2rhd~H*NVVX!B42^OE)(
z#HQ48j#^MyctHtGLkgOniA@jYb^=`BDCp?M4?f%n2Lup;@GXx3J?6`X5i-u8wnvXB
zCQBW!g|9x<*_&u)Vl<3UQZ~DyDPGf>FddOkmZK0vLY0OKW`ro$&ZKY2ZZdD{e&R9r
zl;BA#=kfbTbHbjC%OI&QIhUH0ULR^%DS$cHF^kfn!a_ZMRvuDKCoN~A+QOxfPvDK$
z$6{uAx1&jpBcDVUE9skM&s*>D?&sI5@H>$DOvTDXajJsi;v$=|--JqpDzhT$oYB#v
z9h>8!<o@+^s`v=#xuPipsl(X{w25;`<h1NC<A;RkRm7v&xO@YxKMANN%{G!7D#I~N
z)%R(mMhOsFELI+86%`ERs%`xG{vDPnYVemxdc+sPV4Lw0CNkanXv+ZY4PInS387zR
z4r_0wt2sgw<M<@UpT|vE&mYx<=u~jg0zYi{v{h8FfLDf_-*%Aw6)u0>)gP(&?-$L!
zulRrow}ihD*qFoZnFE*A%6lZ4oeY{wZvX|0UKfNJB2=+(bh#NNH4xWo|9TnsJuchk
z$%mt*##+H=)7qt+0PJK*vZo#Hmvq3>8H?cu+!El(P%-KQi$2lr1^qN*K2D%-6X;$!
z{xz3!r2or1V^K&mSgm}mZlbI!Hz_;6Ia==|$R7h-@LRu7WG5Z-G*x!#A1n2CxQb`7
zw}<N}p+e{3t@(&osRl`!z6&|Yw?PQoo4%ReWaQ?*_L!CNZ_lfCA|V~p=gRP1vlorf
z(b@b?FQ0TAyI?}kuFLIvUtzWv#;*0p%f@3_il9alO7CbimvG}@AhUrOgpi5cna@}n
ziPNz_MCx&uD@tK1>P8<Ff^fwo8HO$h!tsd{(u?Vyu5gwRY(`;ZBk~!O0pT1NV=<nD
zkQ=v<2Me$pFdG`cT_KkaHRHXHjM*v7rj@Nuq-9Zc3>yMwUkCiEj%!L=e`ZgeD(GjI
zZ$VvvCZb#Fl6=!c>Sjr)f#rdaF%)ZLPZXyX9Oh?)f`MgmbSt|Wa{GKZuV0emnPzd_
z1EEd)A-th%<NAk7+9L)z14Uu|Dlu;PYiG8=8}=tpA{5{{zjwXB>DGy;wKo*cU>ZBC
z>0RsB3z!%PIo;p1zDNK#vHQWLgqH0D<6Qv9p9?stI|8N?kJo_P-uDC!2YPsb5Tv15
zuKfm=+jY@gWkeUk<HPRPR4<<1#a~vxO*w2-JzLRl8^^yD)rL0Ko^Dyv|9-vy6;qc8
z5M%eeG~~qLFn->jb*8V&9_H#SiA|RpV)hR>3CE^R5sBD{i1?mCuOf)MLW@-t6i}bG
znOhBytb!iDnbivpK0M#FN;x>Bbk`pqnov|c{<b$QU2!}prm~n4c|)`If&1JI{6n~r
ztt=5SaCAe3y0OB^RlvSCG>x>fmz_vJ#smoZOIL`TNA)S%!!LXB)A1aMMShLKt9cOz
zzS4`Tnn{0dIvyGlX(C`f@BGY$_({Ka-hP5e3Rq`pwszV(DodE-tK~4dC>nS%$%Et(
z{SlK<6!zv3rws<zATqjmMsGwu<;;FBY{{?hLkl#Pze;i1y55K1<fLw}b0kt}M|R{l
zEG|H{7IX@ej%h&n51kg9yNH3!YGwHOA+_*UVkLgkdK@?3Xxw%70d$DnQMYI7Z{2rT
z$RJ9Ox_-^<ym7pC$*9|>OoN9?ji>m|DDth8+P?2F#v{zX00+<D#7oqDhUeE5U#K{5
zRjr+PMSV!6vdefY$*J_dBs<)U6I^u+1Isdo4O#?mgh2VdK4KCuxnFzlMqUVy%ND&o
zlKg4X!gCDIV<VD8%m9E0RvZIr_>zD?hKQ5jM9I14!~85c6H|<lvGJZT_kD!Y(uwO$
z<2n0a8n4$b;9zrk*1L>-0Z`tz(KdbqiAgP*)_k!I#xn#fhF4ymZzc%6m7twFpi~LR
zmQuYGeaDM`)#(d(exjy6W&(Ea<pRsjGcofIKkN<?2b1akHGb62pb!BfB@YO<T&u7b
z7H3VXOKCB0IeTD0bYOUx<PpQ2<_UzYF1-rVSTJC-2?`4@%g7*-Sj?MmUxz*~*Fnh;
z6%SR#PA%x{y+-!07L<7@yG28-><)c7zb`<$>%+iUj$6k~L3BhQw2+TQK@&sHXN58^
zE)1OztC-rNW^dT&F)+mxQ(ck4Cgc+sO$i-q5%3Gu9g9~Bb5|^MrlZq6eT5ajjdbi<
zVMsPT^@Zk@u%Pec=0T6_OBU3-_pmXeZiXtX$%8Z*>JJEVdJ5I%*2!$COr{V%KJyei
zCS2M0gC^rM8TFIh_-K&0gDeucqhOlY!j4Se+=){yuY7YpocJ#M^o(^`Hb<f$1RS&E
zm;$G4JbnQd>xZ_p^Xq+BDcLAcwpj?aXzWkjcXTR!3Jw}z@kRcStIsP^VwbPzeR^dw
zLG>C+W0C1h)CyqzU;?mu5%<c~sFTw&a`5B_c9C0nvky0waYg0)eIJ;Ail@8uDcGi9
ziH_XjW@eA_&<i>~BVcqvq|l2kBEBnUOeJom1|X@Dq-S@+njfJsnDnm$M+13-^=MT#
ze4xKOeXKvA%)d5i*dCX?O2_Sn$SlA7$lG=pYWmEcp}qt4UxzvmJifH_cHS9~AEG@|
z1j!U%=+BQ<(+W|I>7n;wnmlC8EtJAon3$qkS_rB&CZxs6<-FTkBh%8J4obM)-GULF
zTF9_HDGt;AUG2I!Mj0K8^npPkL_ytD_ZG4acGZ_}15T%Cr{sL^gV3d-j@WS`P_VH-
z-NQvCcGLQK%~gCHeX)0(ev2Q^lLkfb(_Q2>w}sk(^futB%Ql>}ch(ek4*v4%XWJG@
z8gkl$|2SRAYq95|0PMs?c=_bYWTTNIvzzc?q^ImUB-9IT2hqpR*WUJq_WVbA(x-cq
z(f6lRYcA((gf>ZE(JN}JGQXhfL5Q!4643%k>OIc#=9|sNuer@v3U?(&!qxWq#6-Mn
z?6fWVwR$bHot>S{T_OI|F{!Ci%2Cp>v9USj!J(lD4Q;;-cISU87OM&ZvRBgldyyME
zTsN$ul9D+U74-KT_%CxLrW*YrHoi*sZU`ltH)}?X%>ILfA9@)shZsf?lLpHEmRP|1
zhQR$K?N%M1uNRNTq6r1juM@ckd8<r$M&$tTLz;oI6TV}3%zNcQED%FML1A+^N9Wef
zQi=@aD@Zn3SEu#)8{!DY`=lFg2P|~%;Cr8*>b$6r=clsUD0t(ZL>9r4QR?0-J{ZLz
zJ`lN+g0msmBq{ji(&ID{&)22Q(_>AcwNwfG!1-%}VWc4}5&iWK*z&bSm8j-{b*PNq
zXkJKz`OUK`?P)(7j?6p1QZ%21csl)is5|IPH`xqLkBzFYvwdj%-8<t-tNwzge#aV=
z-9PWmEX@t`y$m{-GIzI_6(a_1uYAZEK@lm$cWeP~w1vM-7?g&OBJTY9Fq!AP!oFE>
zeeJ6&)#5uO(_tNnD0q*|;+rE*>h(Ekk!j1d+w1;@XwDGy4!3`Hz$`d@oUdyS>6oZ<
z7jXxsv(L&Eq=2h_!i4hRUVe_(Oy3>AT2bn}ccG3dIJGJT!eS87fkQH!@@8+s$aDiy
z4Bj+<>WUS-C#|mH^-i>(1nqT~Q!qyG6|mD}&0^ieArgtxiMT1Tg#B0T!&3-#ACmZK
zhYXEy)!e2rkBG)A>BlFMEQyN(prnE|Sg7GA`nb#*|8mtED`%?CiHi2_btWPO8oJWh
zTBk}v+qhZn2Mt83j*N^BZ^VhOFlXZx%ac-0-cig;jDm+5#wgfrR23~o_!lJJuezGx
zHB2ZeDf1c{5&)xlU8l$Q$h+jPO};n-a`GV003Ip|iU8N^%G3b;I+b8-5l-q(C{Kyi
zM|~oW{M+P=@vW>#7a9k9bnTDEHi1KhG{aew=F6X5&35M&Sq+z^IF6!|GxjSRn;u{$
z;xG7KE8w}M68Wx(yX<fYl4+vh_0Ea8gd12_il^x#yGKE|y^Qt<K~l-K5&S$ueQam2
zR+>v-GS2cxXni6Uuq_+jvg)UPgc$&~pOyaKPOWBhW$nh~vl<6?PjK;m@9}d|pD%MY
zW-TE~V+U3V>F3_=d;kO+VwVVt?37?}asj0Wz^-+@Rtp^#2NKKx__a22L%&``K;L@<
zRffQ3xh`;L|H^HWHdWh0hX%X>_Wzd?a~%Yz&6-$az_GZE4xmr|rXo@>b`7t>+5#0^
z15GJ0X&+6~sVCf%JH3yOkN4Ot*mh=>De_Hda`s$>s|TWW_Z+7-aa6lVK<Lj{A7`tI
zfl*nn(;u%YF+L~Em1jId#LPJHU9Zji_!2yx65ktF2xmIH%cqF#oq2ADunIV>!B`**
zT-VX*Gx>rf5awt-XDYks-{jeGp|Q^0SohXT2O4ZjRfveUE0AbOHy(|FFD8_((Xvy6
zy>~)Wn$`sILZtqShxzH^ie^#xR29Y;u`$$o6fOK4RUaHqxPW4iU?9gy>joNy)nN`{
z_3n?MJ}pN3?JTrAQ$6Q8Eo@wFhlXOJqlO<R+>){OifFQ#r<4Yv$5L-APi4uMN5|3`
z^48m&j*Lok(PGzy2w$0z4<oIM$6X$REOVK(--_b=r3FCkgC&<MW4mo<x_h-F*e4dZ
z!vG%^i)hoa8Z)7;UJxVapn>TsNz}VU)E%OXD1fc3?A1osWq^jSmd;|<%~t?h{ppx|
z&4IoTqPK^96oQlu-mot1Y8d9PQ>Q7C#q?}sVT&(S4T!>`O1N9DZkn(VBV>4z3#=I&
z6oi)8X=HGJNhdF(BC#_XC)es)E}I65ST9lUttzRggzZZDq&k!?D(K(rn80Z0jlxpk
zSU}Lkmmn@g_`N9hDpvxVcwuy~kaTG2v?B?g@J$&{M-LPm|M%O|wLc0XR<8N>Fq~5h
zZ^Y?mxO6;x$6dnVL1OP3z{vWM>fWo{VM(%0;hWH1qT4~Orq~qE=hpMC281B&;&JUs
zmDYfY;y~h0)n6KkW$a91P*@TKx<dM<?&KrRc<pTlU4VjZtP@nET+Ro+(HPg3Z@ulN
z0ljGYxm*=$#t<fdL)rI)1ChNv?r_`lig_@3oRH9Jwv(PC;Bk;^iaaD}Ks5mN5-Wq}
zYWNcGu>IzK0{dUXgEiuAT^-K9wOiWoUvJeT&6fSjamXIj+{25#2{Cu(r)s()_SR_A
z_NJ$b*4oiA_I<<XZST%|=s#Pg)d@;3`mJ?FqqPZmgjWApUr%U$HjF2V2oFz7?&(rf
z1?Qq}3$#H=Dx?rMeYcAW!NaS+jkFE(FPj9ncYIE_c{#<_ySK0;#icgHR8-M8%y3H>
z8rB+yI6JP<cVk<kHTRv8C!D&RNq%S&qSq0<Fk8ZPLU2@PPgLSbJ%Ue{`r<~47T0V~
zN1Sz~Ub{>%NYmtcuZIe+jVMPJI@uNS#;5zT<CA&RK}H7_-%zRB85hMS4o4Y2$<4_p
z{_jppCd|o~68_m-;}J*u@SYPTC@dKl1H|~U{AYsWS*NSB`U6iyDDjy-wH<cwRk^5W
z>pkbq>#TL;(%$HUyI*faBhs5s3<^f(^Bs7K2ib}Er0^r`Uzta{kgkwT+U_989o1jj
zt;DxuiNf<SsyH0#6u)QGKH*mMt~FB^F~~dfFP5q4pKsZLvYj_B5eQR~nu5(oGc*46
zS1|>}L!dv4r9#QAo0+s5@M7G5fmp60a&mOgjlL4cC$PndZB3FnPH@1pm}hc#{!5#;
zCP1-dk*X38{5?WkSil?LH7sm0P04MgxVgrlh!or})Z)i}4VoMC47XMmXLo&MA<WX?
z<@KQK0m>9Yh{4#;lU>3700x_w180wzeiystsAhrDasy}u=qXqKHtxE>$fg-IBpr(a
zVU%GWWUv;V%U3M*o)TVEv7wU980{U4Ol=-z3+ac<we6(&r^BkO&f$*LzbCbbLE<4d
z0K@xPNYgwYfZkH2v>mWCg>~lh3NOf|kX@yaLSVlC0!cAAGNSmkG;_J%i|a^%+#R{7
zlt&uoBw=U7!PW15nktWAnJ>flwpVP9mj-bHOB42imK&TM9B(yfk>(pX0qhq*F9-S$
zt+wUM3^u#cY!2riW1_*rQ-;O(CKZ@~SFD=7XYPGd)Ab8Cwhn#b@Oix)#IKoqSUXoG
z7lg+U<Yk`nJ5#{*)ygZ<9J8p|gCwImnahRk`?z%~m&>NLM|B4>ndB`h`os0~^bYv=
ztfPr}%)mMsmwAQ_ICwSu5a#N|#k5wk-njm23IA-k@EAkUGPlo1zLQ(x&@n3(dOv{A
zZbwCE;<H>PcILG5fEN=NcTic)XoiA3u)eNc5B8urL=@>L8@mPyFD2jn2}*yc4vz1#
zfwWVnV|kkHona(>ay<~jg6sQSUsMuO#WF$qP818xG|6bg$<%KC^>&N?Xb`>SnZEs`
zi|d_^yCS|y)_cA5Prd;{>6v5|S-VK-uQ#+gN9&cg%(&timNp0>xVN7!6p((X>~Nvo
z_>L{yEW1|XOh?1$coA916KaipHRh&F8UBQlLLamsNY<LXMKfL3m{X;)=-<HyQjW8a
z#_=NUD|l<HoJiCpR=pxu()lU#1GBbxNJplT=`ru9OW+Hy%7&k;%UVDhTy1%J0;NmG
z_sq=sO27F-nydzuRS~o><(A=hM@@5^{>1hj)l<3^QS4T<OhTlCXmENex*R7+;F`*>
z)FXfP8k7iMR}y;;)ks^xp7ctrv&Ve}n+ss^^&*yA5)qnGDxm1fI*iEd;Vz;f3lgrk
zwnX*F+~wmGd@fGowa%5D8Mv~lsQWRD;2^(MgE||Pt*LqceNd}{tS3qkY+^GrH4eQH
z8u<-OTq__P!3(w!$13*^l)_D`U`QDT)h^O2P~mOAdmsLW9_rc$Hd}jblyJUgFu?HZ
z*KFrnM7(eDomx?Z<w`|!1ZZ)@FhMgvq48L)1V#>|smC6Qk#2%n*S0i1%HQ<#mJqw&
z*a9k1fI}+Hn<?_`H>ZnL04TzJz?zVBOdYD@?QquXpqG!0gBoYArqQzHhN|DoJyw}J
z!V?;<O?smj87$!E>Arl@m|b9lky0n1VV2*FESy=ucKvqMu$gdMq^NJ6Z9!-TC((04
zfH=(zyWg1g-pm_@)}t`8?RPnmz-*4EQmlCNT(0PjIMtG#N~r9-g*v(-;f#LUiT|87
z&8yuPPI&2s|H$L3G3|uy*LGGts}Z%r+C-_gE&xOP^n`ZT`ts1q_+tp;4i^=v;QMc$
z-faoa&h-Au^ELAkP71Yxfx+|_YP&8k;v^CAWHyDsJ$YzlT2I;&eeQ>N(jmvq2w{*$
z*;S3ro@@u~H9+Q`1dM9))qQD?0?1O*T3j9mR+^^YI754_!kHd8q?Krl1u)KguQfh!
z-YjM&g!fX&<&0&9aZ#=iKfM9<KVOx)-93f+-5`uY&-h7iFRVP*%-(;PiB16s-h8`9
z_0~HdQYe~*ErK_e>{qgZW<~2gbv5Hm0-oEWW&KE&ULe%|n$y19^98<3jrhy`Y-=nZ
zM;RDkhU>k2{rYwO2M!7!R7EPV<7ynp9&Jr$=tPVsr+TrUG)0|yw)gk_cDeQGQ%>_<
zyNHedbr`+g@^Fl7-PWx!N;1G(1-(P+*!!_h$!^JZ_UlP0;{6^x;j#-ipbfKfH)3xv
zUu8&t-~rurL&Lqc{IcWrEG$6#^CNd5Futh0ek^e6bcRaZNi=H+AQk_)dd0!-99-WE
zh<IHs8STyVxBvovV!lSbq<q2fZo<JrnKPtZy*s0+aoDYafi|uBK_7528J^L&E`}In
zi;CEIQ`Q3?UVzryFGAi@qp+}lIrswov9!++KbhB@$Xfi?AIwTWuxRtbMsYSSQQLQF
z31iziJpoTS`*)|O%I(Fq)ahk1_4y;&*Onj^fS(>6g~!uI-7S+T)Zb07fEgtP2D|@m
z@ue$ix+q9m$sizOHt&(G-8)Na>Ol$ks}C=xAby;$PlfV!-8m1+bCZSW_V51QI850o
zo@t;fz~bZQGoY$(b-oEbBZZ9ei31dh%-6@2!Ntde4VNPA27(7M?2*<!@7oKf+<PFU
zRzI95A6{*sonOY1H<7>XETEn;7}m%$lQfPedaXsS5jTl7pn7~5qZLhqFaXX5;lMV(
zX{>8zBQ%iblZ+w`-1oW^no2smj>a-zCJY%)-RnVI(&rp|OD$7E*Tl_~1?DIn$S@-$
z=>M=>ZB?t5L8|%Vzh+ot;skp0NAf?*qwYh067tJq4=Y;DC`A0i<0bh8$U9U=^lML2
zW_|u9BDjaCTcOf5C~7FSGia>5*v&_=t->Ni^K)In?DP>+-fA5s{!no|$0w3BINf(&
zwSwhPc6FEfSS;NokkKPkJ-XBQOnY=)2JoAo3*X3sLb`6KDbb+XZKix^-piqwfc*Gn
zABQW6WLp!DhJNmQY)T3>`o?Ph8|>Nd9?PW-_*8Qh>a0)z>Ot(J`6lJk0=Z9}ce4y|
zOEzui3TIREg|R_@4W3uXnIODh!I%<!l2H;)J)$v1(bzRDPmzeWy)!jGK38h}bZ+zx
zLDWOXf1K~SWh0Mt^x>wlWY=o}2%pt`B3k1aDl8U@??H(@_H(7qTc0K_GF;`nG@!Di
zGGBuhq<e2_Mb$dZ6A_!+8<$@m++N<RypBI#-EE}y7$|Uaaic7)?zu8XbSw>VZ2xX-
ztH9;0hp4ufDYsV&7?AoupM|-JwBrfr9bqDOss4_{W&y_n(_q{KO65+EHffmt%bU`H
zg3J>p@RL{g7&HFXTEyA6m3uS=dHFsEFC$1{lAO*T`S?$}!k>>RC@BM7?*=tR35lSR
zTYRr_8;={rxTFe|O0OG&{k4?YCt!&bUQc-;qQF`zf15~L4=mS`7+iVqXaa1#72gr8
z1w(G1EGsmcs>|tF$h$n`ST0YeLefh6j>fe<$j=g*H37nf)A_SVM6&*T<8PZ7_Te@7
zzBwHeJbST7aYEiZiX3puJrB6&r^L0iG%!cETSJCLwY;UH5b!^x54$T`UIk}YTXy!t
zKF{1@BhR;0J_7Ep4=%^j!kp~fz?0ZY$l0&W)G-V3FsiM#EI4r1{rglknb7?tbDy1}
z#mTN&Hj^Q<Q9!+#K?D_$)??L*BQ^u2VBovnYSE11fQZ*dYfOIe{X`i};ryo2Bl+2%
zEC%Ssd7cu(aQLhW2Lp}ji~UFrZS?4QnSdo56LEs9HP5%{{Ya(R3!;Z}F7C(54I*gq
zU-qytt+2=#ay1GS7Ah*U31EX-!WJuo?@1j`_NOV;#l6)~IPSOYXC2f`@XtDfa+x2?
zF{2kthf8ofjE!iEDhlqJ^U;D%IH$3UKYfEM{z?;T+6$o=<m)KyyD;kVWk$)Em~pPz
ze!&R6fncp+jEg3@U{J`Z@^)s`#5HB=Y6K5nVW%(Y35gJpkQucwst}gzEL-TqW%4fa
z(>yl0P)q%@?^5ysBINjOg|PpNet=+=P^}nPp$J)+Y+4~Dr>~1pJ|d2{#((=HA61)J
z!e-zV<uC{Tbx=wxy!IKA^(SY0IpGy63GFzwagWUC23@ZBC{uY&1&NT3Pp~khL2oMq
z7CSyEP5eCAJAA&1bhfkeI1R@C+!P)i*gfR9_F4xhG!^9)VNX5`Yut8v3yYXc0eFcV
z^~O*bb1a?T^=b#Ux3Eb-x6zZQV%m+dRf@4S-6^F5M@ikn<8Efyysgyfa%T^eBeF*Y
zzqz#DwlLpMmgxJXQ+C$N3|zO2f+BeOqY@ZrGo7Fde{7lZoK^Rtm8F-deeam-+i@z3
z!((Rm2OS6{g4h1ogvU;RdWj*x0<f}1;OK(?K*Z@E+VZ$X^KiAh^Zw0#I>MpXdoF?^
zcpf<KYDgCLHhUfLdv8A$|6K?=@LO;D09bU02i!d}?z@0XaS$D@w+bz2acUc{IhP$w
zC9rUW#GJvo81^B4jjL?N^D4@?q+V#5Oh6UUg}3ZYScG}=6&f%fQgF-xTv#v@!i(B*
ze8*-6T26gv3_Pj4T>&}TFbZz&)a{{o;ue7OqD@s)-8Q)d?6|~*ysK|43B3Ifz1Cb;
z;os*7gp2450jhpk*LdwwTe+#Ol-*tiZh&yqITn=qspOt{^IIa3xg3ea&AC;*^K?JF
z$kC7neYKTpV{{i_hqsad9Y~7Sy)DnsSoPP3(0CJ5hvYd15E8}Ay-q^|EVa1an5}xd
zy1<X(9K(-ywxO&w5kmPe^K!Uh%qq3sD^N`EFY!3sT_f*0&~iZ+m@kqoYl0aB$Q?l3
z(-&U0EF@+Em}Q<U^=>cERe)SI<~e3kJ2uDZVdpB;7Vz(5t{2;N)_Ov)w-`e75hNuE
zzQfn7VS0d26Z20W2`F*6_`%C(cpLGL>*%d{@PM(WKsDI+`w>umP)=L>wKD9Yk0J>4
z+y?6`eZa#b9P$-ba6{YudB(M7{<_0p<HB?7sL!ic1=Uv__vxzB;UD{bB^0f28xBvi
zV@%ul%{Cooj{tO(kT`~U{T3P~eOql(>jm&!1&~?p7mn`cbi&5tS}sZUax@&$I|bfE
zJp+Ofld~<?Ouwi|OM&^DO$M300R+>Dlu0r?pTtTHxW(D7H$-w0DioM=42Z%LMR(^P
zZsP~ai)lLVA_N|7#3vCCU9ci))HhWGVqtM;Y$Gnu6S+e1_O%ZhMyzS6-o$9Hv0vDP
z+8xu#sHz^*G)_7wWSp?A;exoylW5NH17YzP*N`eX73I|^(RQ%s<+6t>l*If?NC{gE
zv>Hxz-&$LEm+Vfa`d4);Kk732d<o*^!%}@G^CWMmq$nbR6kj>xxbKaTcRb&lM`uJ^
zztJnBBaVeB>WN&@sP47d@#n)D+ki=0yruNPkdU{~EmX7NF)+e7?>dy)bnt^5{zc9w
z&HN=Gj*PpPoX@wRc`&VI&7?$$b+esb$?fo~+9R{W2+H0#-9sj`paUVe$>3WpUSvKr
zp0dCvB{MWUMZRvLp)Yh<q-UISJcDtgv3onInj~n=2@fkRPh~}Z-I(CIHmK{{vyB3k
zcbBf6zVC0|9px~!{m};Fc~81(mPgtIm$Q8rQAnAJH85J`G({>LteAWJxE23xDn{2p
zhZZ>Pha1NKIsL4Pdewr>cWHON`L&qT+x&L}DLW5lo$N8E^!-i|>J$k9pX_=qz~kt@
z->2t8<`?&u?!Q&H1pKzE94>y?)(>xJKA)p^e3JI+gD;(!*j}L~M7e}#2)gEaIAr*I
zX`XhJx%hZ@QN50cN=Zn-p+ihRWA66wjY3y8gVuz)<HnpMP(UwO_$3*~0r4AeIJDxg
zU%%*4n9jA7#dsf1b)mgLVlX%|XgN)4d@NfFUrLCh%g$?{30K8vn!Qa75j%J}-V)->
z_z_fj6AY&E)&-)&Z9wz_KJzLqwLp-YyC_@uPmiH<Fs);H5WtV(9s*@W9K@F_!YMC(
zQ9Uri)eT&EBDV+ezy_!LE6Hl7?IBFe5$qH~t<G*WA(gZy`MYZzuPat*oi?Y(<`b7u
z^Ph&`AKq(E!gUs?fw+7kO)LHrzIkRC#C#KlA(E%}{-dk_PC2+NC6}c`XT3n7P*<G;
zy`2$k+|5wHRS0yUWBDXa$~t!VTvDbmeh+?47jK&$La{aWUv7K32X<7ZWrQDbAz+<n
zR{K#ilu&c<++Zz7OPkIEofYZ)%!cO~ek`KnwD5@M!?{p+6bx(-|Gj$$di&ZL+E+``
zpEX|jXn)BUAC<tuo6uP$Eys>KgTqeZuCn#z>BJkIl-J^^#Lj^0em7I~43IoGGL%$n
zhT=<N5+EunQl3U#o}Irg%FB)Z%&`N9$+4=fY~=UI+oyFy^*w3GsNUjrslVu=vWASH
zoAWdG6glaOV-!R`4@&I4Xq-qP-V{EfizSnW3*Lmo8$ne?U=G?`Yv*ORoDAa)>309i
zt>)L(Q2y-rW&g$k)rQmAhLn9c_xr?_El>NB<rqar_n+y|2|%wb1b+P@qY_c)0&+na
zeQv}~{mMN`LgLtca3A)|yYUKo{w>xRxDgqDsiFGBJPi<z7D#g#qIWfITQUAO{zwVS
z!y_tIT9B7?Iu`c*#ri`!6Jwwne1}u@&sPn}@X_>Jifq*v>huXz>rE*i1j&tE?(Pe=
zyXC30=if@k&K^*Xh{?Z=QmG;KiOO)voQqzyWAeWa*Oc1o4bpXsrCkeAQByjC*I*1v
znr6COsZNdf3U0o$I6$iC?v|b}4$5n3iX>3!;)~W;%yTnO@U9~(l?S;9X#NoX7+=)U
z7$l;DL#VC8!#6L_I&z+rS&^XN-PR+N`d|GCHaV*l+1Sr%MKK3k8JI1j+GlWh;Ba4N
zH*i<`I?=X|a$6S>5}HdHqTg4BZ7*f<PVI%YPQ0~jtju*hax#TKt2mEiqVHAAusG_~
zdP~#AO5Ah1Z_n8I%o975S9jm|Ndc{?UBuV^&6n#!)1W5SWdI>?j*_miMpyFLiy5Sc
zD9u}x%LhS>p8`5-_#ht8YC!|&IDRhvRx8=~S&iSjC=>&HC)74k3z<&for9RvVXf^1
z?@5g@^W*myB6Jva!V)aAyM<CoBi!V6g%semT<}++;vW6FJjNEq+9FWwwDxv@<hbDV
ze#dV^tH*uY{$5^|eLY1giG|nD&~QR5O9Lk#^+Nz4rK^s-mH!AJRQB$W4`hBO+W5VB
zuy!BKZnb3u2@^ti^P&`Vh1@&&DvhFRfO&tcHA_PXgOTNZZ+KpuiSaMk{o(MPPk9xn
z$a{awKma%QdOOh{1NtNnY<CLRIY~HSv`BsdbUDhp>&}9!znD#V<drjZ?!fUKO-;$)
zIT#$(8;}0{b`W&&M_m2)e#v8x*k*6gG?kRCPx*bGm+z=d0M)tu{ghBJMmlP9G`4M<
z?7EPA0-cU;QIPZXYMxfpK5|cmxK(dx<eDC&Pq{-c9)*R#9j06fakH|;<TdB#1k5kG
zX|c6h7y6&OLP(KjMoC?%-gRM7J30&e%IX3a6tOKCRSSV9kzgCYAmJ^{en5VNWivJs
zR2DefKq8$Omr0=|XtBL(+JH(B*!`+3@+rL#KBq0kD@Q17N2*E>h0otE{t`;>W9H}6
z8}uNR63Q@XzAL?VrWzL3vkG~KGhuu~W63kSW3V`tUdz?xxBfH2Q6v^Msw9$swlCWh
zzP9~QzGg-QwR~)HosM9l3N#uhUlZ^y0@{p$9deOkt(F&kXn11NdJY;}@0)Len-JcA
zI9-i2KdoY3ofo8EA?orm=taXMTkr!<s3?(?rgMG+<Nr$SMj|XNygnR{&_!N()A>Lm
z+aDk|W&cRN7BM8EZ-0yo(MyTd04^cxsx}D#CH9xi-S%Lc_a#Le*2-!1NbY}viU&2D
zGJex*{ow=^ql=I75X7<3q?|kv`#CG)5{~{C)w*7GRrbYJHX*-npB>UZ))AnADL|dp
zegKWe4**zx)Pu5{o(SLw`QB-3AwdXlb~^c#w#i)KljlZq;+4`FHT_vkK_$8`>tsC8
z!{AtkNtCd?EBB6A&eSbCNnX$gs@(yS)zL}(W5t(mF5==BClbXG?mNuh{5|%ZMGS43
z_#C~azbXVBZ{?QXd@Ec@JSQ}gH6}v*NUhPNEL7lW&+E2c8M=(^?e6s!J`y{yEFYw%
z;7#=?xroQl*~Cnng|t4ON)dr`f1&SqVts!AJ|VQ|Vte1Teuu>|OEKvLfkXS<eIOP)
zy$V^KF95k5gBgGwcq;K~b~>$((xMIV&kqi2e)HG_lIN9q{If}iH;n3+<J#&QB~&bq
zxk^Huoq&J<dhCpr$jA>0T?hV%2kj^<+MMTOgi>7)F1>w9c(@T^qwcC+aJq}9;#hrk
z<-F!|Wm@N$J(Xelk|$6-scq%NIx{QSx&O?Q5AMq#Yf3#%ja3l(aj^uCC9?8QS>G{;
z0or`i18D!>I%cR>jSF&(yHW12{~u#-85LKyu8k&y;DN&33Bd{O5+FFi-62S@;4T3Q
zC>(-Aa0u@1?gV!T?(PJ?i*)zi-Fu&V&NoK=fWe?@)mn4D^OZ+j=)Sap^5>jP;$?04
zn}XnQg2N@f$*t;`SR;`pQwWnSNx#5~!M&o#VhJURlr&z^z=W~U)0ZCztQ*)stx6yK
z@(^f$3~_SKOTrpNBevFRs>H;=H1`ul1^^GT)eP2!=;`rH-4MvzqA<xp(~dL!yyJeL
z%#K7gu;nxTvJ^3I+CzaAy7Gw$Cw8HQu?ulHuCzZNF?ywkg|ahirza7xdteS*CGnd;
z&iWi}ql<w7=a&h>@#jblHlL~`mE(t*P%`wWQW-+~nVL9UxvzqrYi=*nr&{3W&M<Qm
z`W-M^YMHFH*b`8p-Jlzu9=id1eiIGYx}VTRF|KE_jj&jhqZaDk6S9ISl0AQZV*2Gs
zf26zZ70YjMlwb*&oCkk^1?tI!oT7w-a+d<!3>7bJ;=aB@{5IMW;p+JJ2<_;1wPs7F
zyT;SS+O*jGEET*5lL(O%ogp@P=pT9VJ)C7N?0Kl^jK5e6E9=r0Pn+KtT#_(bpe>z!
zbGT5lU(N+_hEe#|x!`HgHY;+O?<(2!_w}71yq=+I^qeIJ*D#ieLwje=Q?rjkJojj1
z6+f<m@_Pp&u8Qz-K}#i>iZF7YHgU^)TpP=9I-M-&#0|W~2xCkT!4Dl|bXaU<tq^NF
zHLCUuvdt)v2$?kdrpJ?LP;g7_cOhHqFmGFhwe{aQO<DsS&cP4-Sv>8<#q$Ppq-`<(
z1uQ5r-^rF=Sv)=M9ssCi<QBe?(zISl+|0}Ap(6EO+MliaN(9^_gk#jGcYS?5Hcr}1
ze&r~<t?Aq<oNI~GSp5VaJoP(j`o(a!ne^E;P~=6EiTki<{Nl-4kGVm&;9j*d@|v<g
zTf(r%q22Dp5$f9Zbct@To2hwn?`L7lj~OVClW1)-X)4&wW+<^iMh!O|CXO8|#LcZ|
zLJD5ry}VGvG>N~?>$<$w=yv<!f>&78^0L++G@_S>okOPk`M@SIqa<g{l{B-z0~PhT
zdr?8R$Gl}tpM(6p-S)hy=GFnOo#w$Y+g}syKaLuZ1=KI(Q0(R!;q95ma*X{Ho|y;Y
zhhx~fc(8U9kJDka{`0rj9abFyM6Ti=)J9pY;HG2R&fv6Kg~1SQ2#`;gBelcojpYfU
z=%MW#!3O;X=4JN0Np&atIh!f4Z`Mgc=>MSOvVl2CNSyF20pU_Xc+Qqu(iZuf)Kq2(
ztjLD*cQ^+oTO2<>?#ffKFcY&+9;*`xo5!_lqB)}{A>+|5++tYjZ%t^lIjpjpos)L<
zzuB#FVRc~o^fHnA2g!L^%{AYqxmWLXLY==vm6TJL_=Ni&93V-$dLV^8Hh)wU=Owr)
zoto>Cret){^Vobv>ah{o@Nw$i39z8$UzBXP;y6+{nC9@_{E<l48GgSLQ!`ab^JSuD
zcJW*W(O6+ASclTQ%j14dwszN*ba{~0bTM*%k)J`#Mb!vZUO;wuB@;`&>p_`$J&ubk
zvfW>IshG6RoVM3A97Cv!AA{fa`DDs0t>25)RIHV(i&s1Y!`c`e{&Euz19{x$IUo&J
zM;?wT-3TFQ50|W!A|_TN1m)DzyQb>b$k;xE80v-caE#wDU7D47w}c?+LW#3z0rJ8-
zxVEv$m_C8VDA5nJjtn(SG%<-5DKFoh&C(~E7YbLsP@;3nwJh%ZbBKlJ-M*IcSd)UO
zd$_!!?&9_#r8eI7su=x|_=4_hGMjr^w#{RHqrvkPVx4~f!TMkXC(Ad^*3k!$$2WWP
zaXZ151KilRsuw6tch!>phO;{r?Ry!1L6>eqlByq5FY22;?_EpIqVRRIL79OFVHPn<
zie1=9E`%-y8C0j8-=8IKSS*kpmPj=6UUP{uUHfs^68pyC4bq;B&Ch>!3wLVsd1>p5
zFZ4^l0u}2g=ukT0Da*t(ke%H6y;n(Qpz-$j>{!nY-_H8sG`SQL?>Ao@;L{V43T0OC
z&F`MmTPHp>+CT(Qa1NmtJ{tpZ1Av=ZZ5k43jE&{x{;X$5U%qYA#;>!~N3EcPCx8tu
zjVgT0GM&NhMBbCw_YE*-kh#4)K>QU;!h1KM`yk|MrN-0dWCDjsdOoI$SgS7&!Vf*4
zN|Zy^AtL>F_J(GB`Y6A0(O2Bu5K0lw*ro}nm9Co$Zcs#d;@0e*@%PWUJ{~`iVQ};A
zUm167Ww7{f9Rg#fh`p2>$Me*xsmA!-0lVK9{WnZA7L-~`+m*KSxmdjm%&70tvxYLO
z+7*~<Gs}3!=3f~Lk=ZR_NsSLTdmB=zC1de&ytn%mo_u_(J;4w6w^H(%G$moVSK(fF
znX1y#lksljHui&{#MxnTiVMQ4iDpB1Mx!kTjL}`iq{*EPzWTjBwc6B$!0A3!#coLi
zo9m_IT;lD`1GntfQJ&A?4@y$0j11ZBXRo6{*uq#R<b5xkehOKgykiIBWXYl0t&5iR
znq$yxO5rw&5J?Msm=3{ZP#&H}u%XZ?4eCccA6$AUVmn#!KRDkIJB;1}35Nj;+3%!b
z79as7eY%Ijv{E$$yf<OQ^iGltI;;R`l2db@EAYmGkX%mJ{%gBGe0Z|xiD3fVEdk4!
zeAyx+)^=9~3HC$PdG>ruL|MWUj0ds(HuL-$^>AXY^Z1gcW!lYz$wy46_i*^q`ZgN)
zxpFpo4zvbcl;tS3qK%zaHoT>_jVTNa-z+o*)soyI2wrp{yUM>2f^c7`xHuPq_%^pI
z>M4G{HEqrzTu~lX!}%57kbJ-^;#^?HJew=;%&BkqXSW*!_nfwoKoWhGzpQo(B0;9A
z&6X@sm!x2_Bn(1mH!y795XBt)^p+Gb*5ft$xE?ezkh6ZVF<>%q*51zSqT^*o{$4CT
zkKK*-A`lsqh?yqanVF&3Wo3G$G|*+7Rin(n_t+ChqO7b;2@hZLLz({fUuxgsFfGYz
zX5@TECd%5)U7C(h`F2xYmwTzoV_>Fo3zkt&_ZrUP4jaeMc)rMcXCc}_7WM;`X3XIu
z2BKb+Rju%ToAo#>BOiHB&I4|vY3$O&n3XogEzfDUnX(cQ6ZMp)`TYTR1VhhTKnw-9
z9dA|E3sF%$Y3b{ajr|9KBK6nI@BPu@&9J%Jp5n<iB~)?Z<~B%FbKMAlHbSmn4LYPd
zSu*T@uL*1bxDU(B=()wku|r79BhSncK)3Xo)zZZ%dZxnuNRcVXOD<c<1H5BHPT`;h
z=QbF?YPADuIFT)wq}SI3$=P5+tfgKl{A}~bICKamCgyp=(tVh_Fy!%e>2ZqpP&=RR
z{^I`j$~*^$1v)Wq{%t_}nGYK+!3uayvh47IptWEFa37=KFFbncvp!FsXo2;(sU+Hg
zosNdo6#1Vd^fcWjo}%p}Esfd@l22BQN7|52uzjm<C4ut*=n1C4=gxiS8%*}PTO*c|
zEg~c&pZ@Eq|G7{30-t@8S?1wm=WBCqY&~i9eqn!5HC>H2_iUv=*LmgTT!T{y_7+e~
z;z|m&AWG||rKNpY&PGk)xx>|(Cs#@+(T~G%WHL6sxhmb#Oc|b+eP+-k_=5_p{2<-3
zO%>~Wj|nfCvT-h^L<=1T(yP0beWQ5U6SohW(Y2eXf#BfGAH9L8OcrfB0AFRcy)msi
z>g&Wf+K5KOL{3?CRP<B4;=62we)@~LqnINvA!Tec(=mt4zTGPFsU&sJ6_>fvYnFP?
z&5zVsO6?-f{CBr4k5Ws&Ry}N;A8zhiP&h^d2QBIi`-D!os(WuJ%W8{|*7%cD#kYc!
zu(c<uiaCXZa}uTlW8G%aZqg;>GmgX?yZ5y5-qRu%r}vu2LV6BXQ*BQc^iLXhx5Y3L
zxwZX^FD=KGxOka_B5>H<!;W()pdFrj!X$y=N-U=L+V|FksLR14WwVV<q<MG!=O|PL
zS)eyUV7HTZ?eU~?ot$&!iTgh%*7M__Bz)EB!d|j|Amq?4FY=tIqSRz%>(1&^v^%6s
zCpv6CeoN}GF@X^)9_rzbirZ!7(3Tkb$Lu9uQ1dtD)z2AgB?dSB8*2URr)mYEIo1-h
ztEHNV%Y)%G7rPR2=bE7(^k`AS1u8I~8cEc^@8A0cj(qwc2?>wgNcEf}k8T7eo(A&S
z@}4a`?wrBp<-Cu?vJw)JE7Pm~A4oNop#83-vc96{h?wrmD=a%ZZt;_H7G|UeZz*Jg
zaO?4I6ikVk{HccJ;R)W*X?=*a@yIK${qiCEC_OT&Bo0a}m`@3uXSLHdOGG$p>^1kQ
z`m1S?z##31!=(?ivtrZ$N21g;_&qgv%=q_uJcofQ-Zg%gE<b4VP5Jt#z&<FG{qtma
z&Mj;^-*27_gUmD3RQ~&O#p`;&m18GTj3_b&RDB}};@pJ?#2-b2vK|0L!V`~?j-8e(
z>&g}kb%}k0O(w3J#9rjmd@|kgP~}&PY6(MzG4A$W$zx(-LVVcc7!97uSoTRea})sO
zQ7{$?TwA5=hS}Tz9>DjGJzIKLhd<AOp;5m+c?jSRFQ(LbLj>+|W+%ZC;WX177f5QJ
zKG$K3ii*0Q62rMFt`_Wm<y|F^#N$*P+XTo^UUNte)W)~E^UlD$qr(4Z=W!bu%JnDq
zrXaR5)6Y?do||6)GM$Rn;HwYg7Km^a(ca3c7z0;md3*RtThtlgWC|Wuc4iTvTRSiG
z_Vz}kKfjw)bXoe<&5^Z*3jQvds@Cc=gQkx;<0G{!cOubVz~cB0tmS$b;pAL5REcf+
zGXgK2WN1m|uo=CN%bF-*$bI!h!6^{N^EL;YQ9k3EnU|6OaSUPQ-J7of0Wd1KzehIZ
z`&c=G`u1`p`VYSs;vS8kU{@Td=PNzJ&$~GRHV0}kcgUC@M@o>StaIq&{e|v)p(pbm
z()}(9V?>8l<~xJIlQNH7tqFQ68cJsur0@6l8<=et&5D-f6m}=yw*Y%y{rLI%!+e^I
zuSJYssd+zuJrBuwDX}6Ny4Ni8(kU7y9q+XTO}ER3b*`N9el&L9n4uE686_E=V<#JJ
z<vI@tWRakyyh$dTsBZYafg*RqePe$xD-2dmQz37+T$@C-d#!tvN7-1BC|hzQj!sx?
z$m<2c^J^{ZBamdPNTuxXb4U1;OSb1d#b@SN%ToL&K~oj_xvB?!-L84BL2v|=n41!>
zpC;kyVhG%p`zW&?$Y!SW`KsHu<3s1>Z%-Il_ct2aQ$vV|QeEHjQYdBcNMDBKH`3r>
zZGuRrLxhf1Wf~j_Ge3=YkDTuqQZWv%{pkEyAu0Ry18D{wx3v-+f!No!1>Uf^F<aZI
ziO3@A$gka6vJNp_r_PQoTaR_}@Dj|Gm6{MX+5I^R=rFt9k7WveAl@lu-829uB5!1r
z{SDhdI&Sy#`SvJtmb#i+{4^5}kLIF+`MnYGtk``(7^Ra<*!gn!%RxOx%Kqmk0#7B9
zHv`#nzU88{Dd0!vuoYfyp?)Wb!*5ENuy0W8X;Ad*c79p88-s@T5~azTVSPXCMj`c8
zOI&WSf1yVr_PjRR!Q-nmmV5j`#~>U>^1A%s?e+xA=l7y(4rc&$DZUj`W*NZlM9F8C
znw|o_n^hpS9X?bci|M2T-N&0aq-!k|6;S}=RFe(M=^$_nf%V4eguM00HSxeRf8G53
z(TaeG=+G^p`DU`Dx_8_p?K4iJElEafiEt1=Sn_%HO23$t-D4*^?tIb+#}wQvYO2#H
z_5>?xDu!KK2P`ZUmLYBdJ(9=gRY1`fkoX1|Lmau$9}d*Gr)|ZpVw&>Y*v9SIJwv7M
zOpiB|`Nk>l`lb`_+hS?+)%m#Wz}Ab@o+o7dDKkNY;4+-A@K;8!>w&~K!t44nM}Skh
z;8+PEw>@Op1LFu#jX>O(OKn~T!=qDi*Sn+?woHw(J`CmBWa=(VKXG(RY=o6&=W18<
zl@o3X^X&*shErtXk6=2YA=qo8RBm3#dL$p4&xUy5bsYJBEx#zaMd*&NmHB%$>rI>b
zteM#G!<VDPU;IBC+b24X2+=LP8cG@1EZ|5_b|IM9*yFMEn%oL8ds<!4bZ=Cp7{lNg
z_rh@BbsGo-!)mv}`iQ<Z+xOXoGJ{&}?-1i*;D3J)AQ{(b(~#>%vf&|e6UF^P*Y)-*
zDT?h5>1trWZ@68h=BM|svhLa83eBmnW%=`bREZS=8KPpmb?729s4IEpOpUrVKe?U$
ztj3z61c!>*Y?rS|@frQ)E^8V51B^VJ*B$m8gZyAtoHV6jLPdSm<W8NbL`}`sOSJ0L
ztIt|r1b+nhjM0D%Ib}(DBhA&_SwR-8*n9Ka%MRvGWoqkC>*;YzDsk&&`{(K_)N?}b
zZ~2x&Y0HQE?;;{(JAY}7RbYqptK1#JD&*!34I5`g&2FX<7U-fs%qE#SYb0uM%1<-S
z5?ArPu_$W!N!&<}ZS0@(Dr(VmOr+(wzODOr-bW9;EA`=%aMhcT>{G*(M_tndGJqo5
z6#e$Bftl9gn6BUBk>^L8-&GgsRS6oI18i6DLg6D_x_{7SOP=La(@YS#P2rSIa*3cq
z!<b}7)ICb=$<?~}r873|uXAjr*oP0agf{F?qZM**?FPrbk?~q5=dZqyL&cRQ)OK2k
zGfARCwXw`VOX{x1XHEk<5SBk^4l%N5(RGjB2bPc1{|P-;WxW8x*ln6`(+4v<%ijTb
zFbN*V{fMQ|(ak3#)EN|`r-45pH1kbM5f^a2L-HyTG0lIqL_Xyn9kJi{CKbajoUNV5
zJ$4fwO^1{e+P4;wh>g@|q1qC^?Uv%^OPZt$gcryuKcBthdZMqkB@sa<>)qrC+y?@h
znN;s>?{6;9?Y?g?6DO0C#g~{?u=v(vl!R4!a0$QyTBh85fHZ)DDV#jjqGsbV8}UlP
z=f)FJYO79<6?Mf+z)k^8s9?>--!59<@p||ixExSt&UlV&4ws!s78z-x<&Sfreu*eb
ziS(6vhrO&BG@-Wl!B|x)Rf^Xjg#w$kis=-awFe-RC7Kn0j{ntIq}!tN@UtE$89#N0
z;3nf~n#Y{Xdq3cIyZH>St#kyy3&}&QNZs!aK6^>^?->D*WcUm-_P_5apbdr#wae2q
zhcjso9hO}8sdxaoK1vXB2F1nByO^wPs|$okd$#8%9ifJ6SM~Lit@G$mDCRdUfniM&
zGE-D12sxC718)VrIeK6J(YIZee4`f}m;pM`U6NSKy;DM-j8z#)t5c*l-*6>0X6=0m
zOKpbX^WLK_aaCdEenb?1+%8+JYowDC6>9GN=aP9Dn3a3|gBxEAGWJ7O_@fArFcEk3
zYu?O>;P+W@f%a2{HtoWm#WNu)uX*{{Aum^F&llY^x6O4MLRA2u?0{Yy`PO(c^DA$P
zerzn)#t)iw#w(=V)Gy<xR23Ac2fEHbUGlD2&zLHhMVWpM1<4{uq+G5fK;e&-<_6uK
zUR0LcM1{UQMrn85v%Csegu<bVZadd;Ki}Z`@q3TtK`%3*`iMwnfvPA1UnzOgRX#ds
z6w~W}ixq7rSX2$dSN<+snU2j_t*km(_QrJ%9MQz>6xWZuJu~}Y$!%i<<m+_SNDyvp
z11MD#@2EGj{id>T97x_ngiZ^jy3NpXhs$lg&9hCr1Su$~&a3d$H$GHH4NDhr^A{W|
zjt!cSugjsYe8eEvBxZ?RcHiBLG^&C~nCDCNeKBzJkEfojFIKXVmc~aJgy3&0!UZ1G
z&N{IH4r3Fm!HHzm^D=VigkvAb6<m7A$tj!jcQ8lS;al)$&%2Wz_*E&9S5knMiSxTo
zsn4}XIVrA^sgpbB+0G7Gz5~}>f*9<ORT8Ss)z_U~&ewB*z#ota@{g69o14S?s5Ndm
zGmLfvo|OgKVo<}-o1xC(Z%rofp`)E0m1j(x?SQw05W$Yxsp2(;JOH!mSc6u<?xLdx
zfN8dOgc*O0z(o4RZ@Hr2Rr}FAU|Q@6bE2+OZ%<7ROj%qRl~={wJ!9Uv5B`o*|JM58
zmU_0dcGB)-a=mNe`xh7ss9@pHo}&`+WPOi7GD>L2FBDTl%}S|N|6|#2Z$Ljyb#f=X
zg$hk0R}#l#hu)Yw=W5Y`ub`bjw2js*EMK$qqD}``c#!pB5x&dg_>tarmNQ<ex!E@z
zp?)=zMlHq0t$WvwRyM;a>ui`nhNVaeAC9YXEp&61s!NB(e_$a0%XP(J<6GewK(iai
zZmAV1DCuX^;SD{mKO5RJa#^y?zke-d4C%@@EozF6#sC`RsOgmzKoy|ez*zL+gH{!^
zQZ4^d*TB@5T-)6l4Xz;*sCREj8c%7*-4@=bJTywEeuzOiS97p!qBA>)+I_8}bRl*5
zD26DdUB2})hCY0#zrudyJSW9onP1u1bJd}#s6JnBTQJ<|F0rB^(0<W%@}fE{`Jlyl
zTHxauT!Xgl@<nz1syVRJwP2ujAD6ao6dq;$)ua;;;_`<k<(E?Ui%JTH#hRXAj^{w<
zyL#rWuepPR!zmu`fJ4mnWy$B7BAeX-2Z~p+=1-jO?S(o!dbLblNHpk!>(OEped1%E
ztS6bD^39caHtEdGSX?tjrfDAU<TKvX$7NUn5PtfuQS6b!N1@6m;I@=(Kz_<+E@vEY
z4v&S^DO(6($^ntvK2s6#5_9uG-rjCg?Sw=0mB%It1)y8Kv5~h~Nj?Yg$EiHl@RuUa
zunv60bNMe^ns=)Eq1y*)_#76e&L#mQB_E@QMks(e04x$s0kFKMfUk4&Q{NibUqcu6
zlk*Aq*W{92WJ=11ClGa|-2TJj8sK6OR&DijE<-m2+v5hYBgFIKDpPhXk(tkYi8+3t
zn%&CzJ=j@gaylIU6C`?NML}Ej-g_J{R-|o8&FA&dzQ;NLq>Lrzk<@HNV($rPnreg^
ze`#j7oTEq*29RfKP5N?6DE~R|N&{FP?V=nI{1Za9kEiRnwtEVmo*&XIt?LTDw1y;9
zY-m5x0EqDM@O)gS$xD)PCob!3fYr@F{JbYEa2;p+1WuuRBb6CxV*_92=;(U8nZD_f
z@)z=NG6_I<xLYp4!cnT1kRHPG(|Z|JDe6RChyRl~^yTv;xUB^u{7OMMOvB7P)-xn^
z@^&iM<7dqA(i5c@X}})YLI8_prr$U9&)$lRo;((3PrN?sv%pTlW5QyRuM~S9A@L3S
zfabO8&zJqOSKwmL-8`}FyK4k4)~G%zEJ0bg5-fdIW9c9@(1|oVqgHPA{jIEmyL&W<
z<Pv>jpbKggwtOfA*U-r2ZEjIfjzp9wT=?6n_RQd}0s>yajQgM<GuP{lDpt!moLL<m
z9X?Wv6a?XbKzgjo(%MOUq($vJdLJ0`{bNz+f!<y?73^d)>=e(Lr+~o!Tyw!1&wU!d
zJk#fuKz4a%frdSv0f=Z#7~I->U}5tLS5%6s4nO~1$Go7Jo;?(1>Hd3R9ODhc)p*U4
zs0TC8oIoNxlSb#GuU|xE@~UJi=`r<FCiDDx!K5SrH#p_t;&r+WaxbQUhRY5)`aZ)8
zeWE~OjCK~>+bdqz3jKMv+5c#B*`!PjZYAR$e%O6)dl+zq_^3UoNy2bp0%!81o8ba)
z_Y92QvfzJI`82}SVIU>xy1K6x3DRa;6a=Dh2@r)_Spq{{e(kqaP=MXM)!f}1kr0uY
zEXDX6a>GIUz|cx(CH}=u1B($iixt=$meCy<>K@6-xG<lg-N%qWj7@lHn6r4L=`6G~
zZTB?t&ko9Oxt%mSXsCP7g*qKqQA>B#hYdzA>Xw|2V9w1<0OW~#BomJR5|O}dL9_jZ
z!Bd}99E#3*9oGBl9Y%QIspQE;OUAURty$ri^b|8e@(A8!be*OkvKZqMJ!ZwbHO&tj
zw?t7}(xjOn^^}JZa*OjOD~to-kz8r7Vp&5c!l5{ZWKyi_MAHpPSvM5kQt|Hq<3P}S
z$|7p|d;_pY+nsFQg$>T`>+544#K9^q{SwrrxPd7evzI4^#p&9@LT7!x*=8b55)Z9#
z=oU~oO0A@64Jlvpq>9&esru<O^(Z$n<CYcB8{(xS8#>eqM$id8hW}>=;@`&#uwZKY
z;k7KGdUWr1Rc-m;l1fY2Ki2mzc{SfZgJ0JFvs3InAp7N!NcZ9Di`ehx;WpfJnF%Uh
zYy`i|;{~|zFruSS5CS{i0>&ybY6?MD*$YDVTcGDkgtyZ5LPvVgxZ>Ou4IN$B$jHd{
z6qb?dsUfVR!_fF<N^+PM9v*&d%@={x@2xppm!B(@SI?t#r2amMNI`x++9G!5y2FHT
zE{M@tE#a-c&p!4+hj|~M-bZ=VP9vln0C~Ke2FqRNX_fbMJ!M`yMKx1W>05JEse#8(
zqCsJo&OSDEya!@pSET2-fL7|{<m4C+bfaJ^EfVEPudfpvgh1cMMn0oaMynudQQ@%J
zjsHnVLC5zBBk2cC_Z-O)ZiZANaW5nF3AheGe^(#d#?$iZM)z@J1*@O$SjZ#aQwe*)
zRfKvHgo*cIr7*9&Bu=3lfpsgEt9+8KY2BcVsCnpV4_-6>C`%wU6`!u8Ys<VX%&b99
zWjkRzE8F%xM|}aues$sb|MrNO;q+dK`Q>&KmbISrJL_IE{Elx=75$$|Ahkj8dS78j
z$)F*eH2Ob*vM{UF1{et85k@QfThC-?XYVR~z(Otlu(7eZDLMTJ=p#fNgy6D>1|fxt
zk~iI7&YvH5pdi{9R1ONa<TskVwVV~AksKz8f_rC)M%M8c97H^lOi1%xVeQ90G$CRT
zJ=sF*4~``|KOfGX!$yEpWSU+*%F(X#P9zr`EfqVM))7!)dh%mD7hqcW_lk<?dRf%*
z23Vu6cKW-%Ihap<cebhX<_vI=ROTXT_(^k9E!jrK403GHiI#zcU(z^@%P3}<NE94f
z1wNFQ5B1#u5)07)FXMeeUS1wqrK4XXBlynnj~*g46wu93Q10eNAa*3bNWQ`_Dye1M
z?vRYXl))vcZ{BB(A$DWjzPEw>+b#RYCiwk}78i8%8E7GLrN5588U3H71F-B{CncU*
z;7`Y>Pa1N@I|%fJkf;N)ep=thuR`Jw*p&mDweC>7N`Oq?U!Tt_M3Xs`E1zk)KT|fg
zxANur3vll+{d))%?DLFW)fm-RD(ma=07O2YS5xqE#x%habT6C*_c>(Od3S=^=Pl>}
z@HZN`yxN}?KE~hz$eYy0;2Lph<CPyc8_U!RxQ%*;a}FUiGzITH%cyjP$8*9*htSb7
zjDAX!iW9I~e2FdDH8H`4cxL*+_9*lZ4PkpYUqa<yD%F*~4LG*KrG6i_Eqn1IlCrkL
zmz-DIr!1u<e^~74E4OY?$dzt5DS56F<}(hF_`c@d7XD;At$01E9DTKdl6|$B=G060
z*Sh=fn+W{H`aNi*q(V=I=IKNy6UCGF<adj$C0kr!s1L+tF&T&j=@jwMIh?N_Zu{T<
zeur~csDz!=iyOCP{6C&VDD(sa3xVHQu@Pifv<BmXRD_Mvj54ZBF`k4-$s>bw$qo*2
zWl=XwOiQ=gB7s-8$+c>Kx~6du<55p2@Fbn6U5{2aa<~3yl;kioPaeF6<<TY-VxT1y
zvTbgPz1CJhuUV?+jiFbpUeW!T34#!sff6@BUs7Nf0`!foEjyh%x%%m~xrI}nS{AWh
z%iiz7=XclWrauxbPZOILb|*EBc$$-i?GwIzqe~#MaMaMi16Z#b{>M{se$QAL8D&#3
zC(ePs^2b|TT-<jDIhmp4NL>HX2L2y!-3YsPVq#+9sV(+jS^(9ETJKa>;MTBPe)(xR
zc^kqPs@p(zX}4b;_G{*$z(@Vi-f8d1ysfr>&2AO^uXynL&40aq_Kr~JZH)hRNm(EH
zt~tgkPYsAmXn7jdJClv<(x4@Sm{icd6K*)zVRGFnH}hc)d!#QkMQ#vo9BGue`%5!`
z@s-8Jt*bPfq)~6tZQ&&CH&1IgOcbM4u}I@N`bHaG3pYx#+Zs%Yv|&8lEIP$VMHMqm
zhsE;Kc@4w$r0dEkLDTOG=zv^=6=@nD@0-Ts>(?>N0^D;fkF9|K-!na9w50>}X*_68
z!4oXh>7`EjCdTArBp-u6%#UPAb=v8H>Iptvav`I-^*`%tjJTkY8TN7r6OZ|B?&uCh
z&G>6vLH9c2pPpv+4eL0^vW^bALHN8u{6ACPuP_CE#A@&I_jkQ<w)4mMBt!up9I{6n
z{;OvbF1wFoNhayxma*P={Vg}3-_}N+?b=f1^QX|&-}ROL$E99N@tkwFbuQdCqz$S^
zifrwl?4hS9<DDXtwp3eZn_*HWCfTO*UI&Kjhl-?l(k9#S?UAPV?WM^`W8JhopiHu{
zi52<NYO<eBgEf%Ehu8V7;-*nx#L!zfq8Qaq%X#F{&Oq{y010zw;N~fWT9g!5zl&9U
zOtWmnV!R9?r=gLCBTtSdX@8gbn3H-5$N0JaQ_y*cX_dzI@d};7{r9XaIagQi>_1p^
zKqZLENSjTc%-Dd#{1Gnic;r7=be%XM83$SLhPmnWv2@5h@0Qi#@Fj-kB>NZ6{Vj$K
zoIpB?R?Si=0q?uyggpq~zd6smnKN@en_h~!j<RYLwswr_G6N`QZd8nW@q@!dL$T@A
zv@|s9wIIo)zs6X9*F5~sgA7=>B-T*YFi^vxDdO6q%+NY9QvZ-k`{Qv4%2F)nmt@Zc
z8OZ)JUx^$c!j$#+D%O{d7y9FNj@eJ|sagM9y<!Mc(b4gF7h+j@IT&oZ<5F5)?*Cnu
zSa=uiGZ@6#eruqm#hPcE-)x3*5KsT(K5x&@FFT{eeWh*GPDYo=VHuN|l2Rdv!0CYd
z`$a)#FeaA^Ml$mk8bB0;Z;D077tTDC&^>-RKNG0o`hdQEG(r2C;XXtuzr+V1Q@l;;
z)ngy^Th+>EIDv37g|)LJU|`0HWczL9lH5`x&=H-OIJ~FEOy%(<8{5}M#lS^p?B2^j
zZ(x_VRDKzn$S%7ehNG;k+$XmfZ(s3GZKD6*6<QhoY)b7|0ktntHDzuZIqom2<)1^}
z-%FE7=t(7k>+4-aD7G-UTf2S$P6%0LxhDQby#tRQkC$w%MdoOli;)(P@C-g4eAbO4
z6E14+f))YCi>w-<rJ!(F&K)Tq-d{PvMW*K<wR09+KB*{ZIzI(UdoUbnlkpGsS?vA-
z+hKv0{(`21d6WTHEL1XXF0O<RmH>W6_?!_sxRl`Bfk~@!u=ZE@Z`y|gz1>9*4Rv^*
z-FNZuusS#1HAU?4n&P;=>nj1#d6g!iFo@~gwb$of&sRdyTxZn*Mx5Zs+uM>RAx+}h
z!%tqF5LElSUpA6bQkgzJP?K~3LhFCYss0^)p(vJZ8du0FX6ekq(kZ;c#qJwhcH4!|
zaCI=dD2M8=^J|BJ_^O3@)yL8I)EN8gKdoKhscc9@)5k!2Z0v#9VM2vlSVAIMD~?N)
z?bJ0r1WXd^j;_4uiG|3_^BsN4sxlu=d~js|fK3XT*kD?ak90mgWAq|Xauqg%tA~Ac
z4iCfpJ1BrK9UT`p-8Oen!frA1R-KxhJo7%LA>F@YW!qn;7V*Ebl7C;%pHH|cNl->c
z=BU}*F@&F=Kjn#~IR-S^`pl~OsdV<+$_Ss;QT^*X{Ix35-k{;|Zm5`HK#9dwg!S8o
z2aWVQ+9noZq_V5mA9LXR_=p&uy<5&}^Fx#z+d~3uR-E~*$-GZpS7vg{&TZB5B>rzV
z=C3#XcY6BQEo+4?7J{-yfa-{R8K%1OqP1r5?>7|qzt))dt$O9+-sJ7_*d~YBZR1v%
z)+>Ew&GkN77i<_jrr(YUW~sm-TpxoWIsS=~`2{qTXrzV0LP)AuNX<z)!pmlJHgo2S
z7)1a5760>Uya%M8jShiO=_x2gnq8AyM@?D3b{VA4&CMaFv*I9)c^HZ9Ipr$;1w8v(
z<_JgT9n=^V-QYy{ZW)fJ>0Y~J@f5`?U%SJvA|8ZbV;D8Rp&a%^8u<6u{$G9p5-vUF
zgpa0XaD?d>dnZsm$H&%*oHk^yfxu&GnoGd?OelMHWJD0qp{)G8#J>|(&Q{8v6lx4i
zlpv!A)|{0F$5=MMj`g{%m%qg3$fhk8s#knma%|APlvhv?f<++$d?@HV<Ujm@i~ajW
zG2naOktg*5vC~S`7ers*N72YZMsNIKOxO@0TjW#qW&v~y+mLGhND7Lu38yhm8i5$$
zs%%VF(?g|xjXIrq)BvtHCbEeFEg2i?gihW*v`rEdndD=<-{-Q^Fs`(y<iAuPc68{v
zLnP97ce$AY?1JKgjfV)NfZRe!PL5_vJ^mXv0eia$=JXF^^vP+C5pAa*nV7WfBiCme
z<xNj`BUe8^qtgWgrU7;)6)+VQbzbx}P_}72nmV1VekvynApZ*3^ib2$g@h4s33YX~
z2WP+it#vUXby|RmG#aP4!14c*egP{`&>BvU4`xry+J9#4WtfeP4Xge32o}Y%&zM=&
zn8UQT7`a$j7QnPf)+&x&6f-a|Fx?r;Ht-%?$an=I6br@MP+f+5x0dX*C;{T4dBGZD
z@^E(z-UF$Y|9AXm;PCznmCs`U!-h~2B3cpi%|ZENwV0g5<vV5#%a7%(!<K&{^GQ`I
zA#pKdu|sh+Z$I{eNJR=`lLo9qbl!FqJoRyN*E^}1XNxjq5MRsS2)~-F`e-u)4@kb+
z=pq~_P6#dIprcc7el||z_n=c&o)nkQ(5?jB0RNCi!;A_3VWQ6Juxsi<=<6+hvfL)k
zSefgK4aDf&+_$7)dj%o)N{g+X9Nn1fCwVl;Yy9`AShH3tQ(OtDU%!%V*~BA$|Nh+!
zsz>menxBh{tDNs4;GenZ|CmJq`y<U9zLgY4ryq%CG%8%~W4qld008_1)KQiC9WX%M
zGGzsA(D4!xtFrbbxcm=s9rC%ECO3{JR8*zi)`yjs>+S_9#BubRfTHf%*_lzQ+vR@b
zBKOGX`ObK@Ne@=CEzEyy#Iz)M)_VM2B2+}xD~075IYm-l+9^fll}|y^7#Uq>PvK=+
zR5>zAY?S&%?y1G|S;I`D=9P>FuPS`xCkk`BlmS3tUWWvy&!FZ#QJAe()QMBbUIAEA
zh_8%<Ve#~hd|+oMKdYk!4M3ll8V;GAec9gO$*QcRGG1rbr4UkUKFxICDkN0-%}rTl
z3Q{+XGZ_*O>$;1H6&qyFuTBTd9P$a3-%2~jgLBcy#3~Es<X2^!tqb$>6}nzlwEiNc
zfMTC7`|maNKL#4;fG-*aLVF{xTvdF1##Q4gU2o1m0XiKI*@3vqnQvrMFoM;wTmg0L
zY}$U{_7_Oa**sAm#LdCP^Ysn|j<4XsiI+8;n1qBffJ9fhg}OR!kxr9FfvT=9V^?S|
zj({icZ?aSOzZAy)6)jsgNUUww3NQ><<=Y~QusMv_`t(U;_jl1;LUlU&XKRH`QIk3c
zqEZc6AtO_ZMsjV|?9&C`%qaez3d|BWQTKDWO^J!`h>i{?efC^c)=6%Bd_ZPOWr6#A
zm!j>=*wUz?BSh30*ssI`a6@C&fxa3fA`C=YISoviZv_dJ53jdWT_*n^hH`zhwJl%R
zb_9}zN#2+Jj26GFQB@iQ3wr+h^8X$#|8;A<i(fzUHq6voItAyk$HZbeSfXez;3>ts
z#zoz1;)8QQbPNCkS{4CUSXkJIlP$U}l+2#35ZEAowemWk$21S!20%=>vJkM{G5tg#
z8ctM{i~^v1f@n4IQ&l4VC0PFN&m%#DND@gD*PEHybM+mVrA1TMjO8UCedVKRqa{wk
z>Y@;L)}f2ZbOA<NI{-An))$+1G3kdfAQX<ih++tr)I<W;>0)6)7ZVq!XlYrrKoJ`e
zA!su6E!}C+MXZ{If%ii-%SJKJb|}YUn%iNWSgdcHNabTMd3di~Wn4mn1hLmXs`wKF
zax7{U(6jx>e<OAe;Qr5au4_|bVzN=SP8M~Tb`Y~2@WZ~2V!c~ok~rm`_O$(W6Rx`q
zFu1ds3>7-H%0Bpa7Z=i{C$RK<?NeghjLNq43AxS$>Oi|;f0(#sy{{>hNA>1JPyILN
zN5(jhxM&Qyk6FSbl>@GJn;|(NAzG*~x6zHr-md}F&A@tHmqDzD!D3(_=l^SDpNCHC
z>X<_yz&7y6?s2oWxOEgqBoDO(@zO|1OGmE?e<S9$7dL{n2kW81$ZZWJkM9aD-~g^Q
z$uG!mM&m{qY<>PKrj5uzTj+cA0x-PxQtI`>f{Y-c@Z}*60XlYdaCC8|@DU%mm_OGm
zkzjdw`O|HCZli~P_2%XXx0{v>4b(MuQ6(~-K}Q~gk8E8UIi7rg$~|>b;QZ)MgM)(B
zjajouDeoTlli~H0CTAa(D55-cftD#KwiJPiBsi#CMM*?Huc*4ZdP>8x=x60zNp)4#
zV|A)!Rgt4&p$2^_VlKqTr}kZ>hpx~UFg+rv8*_rhslYJq@Q>s^=<=x6v+6jv!`Y+H
z#;f1BhCOr*0Y!n)3joWSORNRdZDa47uW?YIqz!irzq>(4t(0+7IL(%Mq}&dt800%A
z14uAdRyCKk7D4zo1y$Q`d3lu%>)gC2Cb%c>BxA%+z5w~OWL&0=t?jqdo7A<*VS3$f
z^hxYTQMlubV+W^ah%fJPgz<VNRoymGv9YtkUm12X+ieWLnWSnP<)2DJQ3(EDujK$i
zIk|}J+m2?15=_qa3RviX8FAk>TF7ijN0m0jd3%Hu_q$LaAb=unsqoqyg<^)_X@a~c
zE$q?Y=kLm%yL>(BJPU`2sF<Xk@`KOfnSVgQ9wqR!F274hJ%f+<`%AC}9WGoda(e_W
zuYf_(M<DLhSdEl=HmWmSB>eKOe%Cgyh^l%MHvHGHz+>ZOEnN675EFOuhXR5<5-s7{
zZ6H+xp`pa;^HsTCn3cGKNJT|NdK+ENDr?>s&W;dW1LY_=#nh)`@Mnwl-be+YK@Qji
zjhR=+$K(9uCnW{8x;fvu<={afYE6ZPQ1n%|ziZ8@(oUUMG%P7yO?dWq%G}FO3Mwku
z)1d(<*y2HGgt0NIpN>M*2ugHYG~YkR$sJ%}xiw{s*w~nq#Ng71rMs59inm+NMIubp
zui~-a1|RkynG_=;NJi^TP@}&=o`w=*3CrtY`R85u`yKh$&tJTtW;A__hY5Z-dEV9R
zq1GvWmmc-$-rhEC(??qE251aPQXbWD<m;@^VcjHpo!xki;6lxs;)DRPTtR)u@CX*;
z!I2cv(z>gY9^wH&huwh?fq)I>LHM7~-x>>^;BI|#Dzq3n<hggs1u~xC0-Ug#DGu24
z_+$8s*rcRAhtMiCtf=qqK-zV4lb4e+b}@X8Ld4&ZF;S^mX&O2C5lGim=2DL1QfnSw
zX>T~U?hbFRCNLfrm8CD5g++|MdKG#)CUvCla@kpKWFAApEC<iYXNg7cDuqp6(%ej)
zRk^bj%E3Q%zw&T!Abo9K;*mBFkfjLTaRd3fH2#FF#Ev0x$|p3E=l|!67>Y6<=iBFV
zZj>-}b#<r`GDl$K@l{pF<-MCx<yOa8022hi?0FTS7qwBADeY$S#9F-k096tKh`3H&
z=c2rY`HITf-XY%Nd2jDTt6DsPZ~Of-0>LZz6p1g;;(vP$VR@H!a>|dr-{G+diQe3l
zkda70isx5HZmbq6@hj~f&ES1qTQOb0z<?TXT8@K;Nm{(C@kuTPZBN^(i4wscI<R0N
zkB_2VlMHE9WM+F*oo3y>=rriD%=PUcJ?PiLJYYosA=<Q!94iSG6_^E4p&&a_$@)8#
zTdyFgH#*0hLTW{>SU!pi<P|&aMvV5>?w2#w1BoMo_GA6t_r9@g;{H$$o%H#1Wa!v8
zva#gUKz^N9tSe_NsT%->-fOll$-U~QHMi$)m%;C71PS4tK_HNrtSpMQdMhAK&zV!q
z&1JqwOWx@@_pU&FPj;aBuwZvYGJkppschme{`7x`5kaUQ@Orw40kd(t%0vV!2QSk5
zL7PbUa&Rs%ZEHm}ivXjjF`a$<gPM~?<J&|ei!@TYL?&=e3b#Xkb0Z){w*d@7CO*0G
zSU~g*hn&qje~E<?O+rbGqxApRhg-A5e;iJw_v5*wE;E2|3%$P82=BRm=L<tkY7nEt
zu|gnV{#CWfn}snl%FV6|m5AnDI_Xz-&&mlPYZn)(6<k(JBBm`)wCz)0J2^HzWMX1c
z5fb*DOx%S6)NrOU+N~#h_?#Fc5;bx(++zAK4`6{VynH>u0SWU$JzI}``mmF`N6I(3
zm2bhpQuN`0+dv+$Qr|2UNKb0Tn<gaOA^jN6zk9+PSkDPy#{nVnorn<+rC*;0J0<{h
z^VdTGrJv-RMmHV8_5c`dWTgZsFbj#@U*t44^8O@#<f?%O2Lu$zt+H)h%A6j$@_H{r
zpm%sS7(Nv`4V+ZT1~pU{&VKW4H=w9rat_?*5xp-8i!Oh0BsJR>o;b;)C@N<SrU=*0
zEx@$Yrn_)ZHZdDZKaEEG9NC(tM?HI1J)ul+B&Tcf`(*IAIgbQ%@6>(21RVLoqEzD{
zcy_cLHQ#0dVlk(Hb3>E5NREor1UzO>I5A_*PsgP7_4VE-I$#UmDi7}^LwQAo!!;sf
zBMA^@Pc`EbC`L4(_;&0@=D3_Hi7t`R(a|rK5WOOwbI*CH0)&LKLmHy}xWDbI<vWUJ
zKT>Su;Gmi$mw%0lEeb4#;V=o2eCTZ72jFk9fS8Vk+fHlfEC+QMvA`ja2ywBOQGWQA
z`~K_kj6M=+Zs<GlKw>l@pa>wdpUhXThr901FW^g&9%LK-&lNlJ6T1I2Ou}8oKYE=Y
z_BhL#&pqw*LpW@0sSdNrl541$w_2@H98wC0q7O?)r@H*>S5`HUQ(K(eMg|qEE!r{}
zql$S685y~ZR@T>Wg=34zD8vkMD{*Vtg^iLyL6R5od(%g;sN^uar-Ot18hUCvIz>}z
zne@Z{%9CvU_+H7bU+9Hg#!<e8;$Q80-kb+cU+|?6Yxh@V<RtGbNdq!^==Gl7XcAKs
zoRfH;Yq2<QrdaL`o8zaWsWUHl!wAnH0w>E_01+Wh%!>tPm@ie(%q;)zI6z<mMYw+Q
z_6m?3bPSGaKCIvS2nhOpO-RVwTNC>VpnhLB|D*wsU9}fULcxTkU!b`Y1m|8aMP`+y
zPB*c$v-d_`d9AStnOX?odd{Q0wg{;{eL=W#fW~>*v`)0cvQi*v;Vg~7&TD=#tsFSx
z9Vb4RMoZy%Y(IOuTBOZ}bo=@_+V)H6;<`<|y3>BzdEW84ISqPg5n;$Z&|WFJZSA14
zMCD{qD;4}Mn_4{o8_YHAwRq;FYGU6euylXuWCUnEa_?e*V;tR<y<sO_aIg5lKGF2Z
zKeyahH>qt7r!qP%*aWC90*Fm|Z}Q7`n?uP3173g>abG04SmW-g53~l^ljB3|=BW1d
z3|td{Z=CdXNq6-st$`zO+iPstbJ*bg`)b%idA@JCA~-?sE_<j9CAJg?FH7Iu(}UQ^
zWYB?}p8F#zBql~C$r@0mI<w3#Df50A9szng_v(;-RM*0y@Q~Q(sO7O4^E;A&AWlWN
z;i)s_f1Fd^hZGStu0^cutofPmP?E5-uskkODm{q2#ZH@c6Ux6$FR@8@3^lrcz1)s(
zS$R?74$iQWTLWUCo6hy7!EAYz89k<{pP^3WHoZ2u(RJQkS^!1hE@bI+V_;hS;=r;D
z(pB~8an3yD`seRcQ`B$Sb1gLdg5cmH#nmiuk{IT0J?g+!tMDbMJ)o3>KRCl#BL*`P
z^Gi0I@>yFaNAt<6d*Pl0%9~|hl-&TFgNx%A@Vr9r-ZDAvtJUolHz>{6^Y@yXblPL1
z%L$CA8_Rmda+$U%#@3d#9YhBS6HB~*@G7D#k^y%cnc0x<61(m_zv$3Adlap#E}5F*
zX*@My)_^C-WTuqdPaCM(>YJ)I;zJ|xwhMmd*+TqQPcZ2-LK050{;%TcWd9=!0HtB#
zZr$#r1B79nRnfSCY;s9LPV3f0{%`y^vB%QWlTbb0FJO0%G~!#I7%KSe7NwhGxPbs5
zN^uDw-2?)#-bJ#<q3uVly-e~(_odHUc=(I5)2Q)m=COnEOv0b(1c170_j%`OF@6Z&
zKQhu*6X;TZZ{Zibm0<f4EY8)G(%K#rink4KM8TLWDypg`Uv*6G1fO+K;<B?1LZMuc
z8i)`Trlko6gp6SC5<_T0<(EyxkN+ddwyuT)chR5(G8DS;Cbi!8=+Xyp&_xwWOiLWr
ztG?zf4nOTwdp*>zh(>@#UA6H>c~bOK?p0x+`&RPR1NRc0$31XP1B`KL3!#Re7n@_;
z^FV*#{Gg|1!P8PU>A_=O;A(-#weYnRe`R+kult_5U+U}9OJQe0LlD=PE9~>T+>>Ac
zaCpPFEM4IVba)&vU?)0+Lm|6grt#DJdO~nBo1B1wR&SInKQ$ny6gNCUI3STW4o7hN
z%jRNhrbuLmf$L$Z#q|Oov@NIO60qI4o6%IhHM<ur-gLdBRw7ETb>4D{s;!{ds7r%<
z`-s0JH123J9YY-VHCgJl{(2Sja=)0-ye@<CnW~P@)7ia6_}p2Gj+WNkaS5mj=0=|(
zJjw2}&SlcGnJ@T<075S^BolknC8>7+CD%fD;8L0G7P<M#cX8R_gdH;j?-ma*>pjK;
zICY^<k`~LBW7GSQ1^aF!%@^Ezcnb`*%TPam0!<el?Pa*(IcrvL8CnE_;k$eX@RLi$
zkUK}=C_bFtqy6c6-_6mphwp8lkY0v0t;DPm{5#1@yF!1P$Y=Ma2@qkEd1ZJ>jPxNz
z3Ewdl7pwPy4zLa~F|_M|;70;FVEHe@#L1Vg0{nqb%oN8LQXl<$p7`|hvIQDWE;!_s
z<np$yN<N!(6Lf&sCmTcccf~0xYDzw}KEki>eQ*^@KPQ7lI`iw56_lgB*mHiANu+5*
zFW14XilS>jH+MZt%V<G95r&{530fZ~AGwPm6LNo4_QM_)xZjc0Scm&8<?LKuTRTHz
z;sag(^-Dp$$m!w*1jVBVKA2d~DCSUS%F4!2O(<5xM62+YyYAkoVE9lRqu_+Z+Fpc0
z-2IY(TK?)C`ExYRN4Uo0c0`|!=_k7b_=g7M+g;U`IU}9u6MTX0T?Q6p>|?^N=_fop
z=iTh~XlBtqAj;h#IgbuEZyBPK1LVq@!fAlPK~Vzw-am>xptKQ`f=+wh`GSK}j|kh3
ze)917wZ6W7PI6bR&03+Y8x@m<XnYQC01~dj&(b^sLPB~@y=GZ%tDp6gO6Y(hg8)XF
z41mpN5OCOyR!x|M!2f4Guq_JZ9R}jlur`ebzke;MCs*3+IISWsc}cO+#`GSIS&Sw;
zv>%X1`KkdAlgFkIu8ZtQ{tkIE>9<2sZ0!l~ZEW|7YEo1pI6sY1&<efigmSbYKg8F`
z1}spFNNa%;t%wz!!deBM3MH(2w?91bW706Zq?+me`p~pYx#ke&b*iLC@|%9i_P3tZ
z^)I<$NxjcPo)LZc;>6TI4!$I76-Mpwe>ILGYM<3I4o@J<QM0T!?BqPr_v3;$cU^O-
zS#_nMWJUAJe%cy=$zfONVDi-dVoni8HetKrbr1T%&Uod!RCG$|5m?^7s>u=0{%Gns
z#N?K0=aH9oHDZWos>3M(0ahTRLUP_wA~$VP(iDf}rpLn%PE%X0ON}dBgm;?t!+@~R
z4^#u)wX{xMfo2!D>9Cd;KnK3E`RaCRXV<*(h$*1D@rZ}}^S-jrn{KP{DwClD+yKje
ztm-sA=>0GRQb&uM>`J~S2jL_@4_LxY9zgEqtZ!{0iulEIV#WVjUCfas=0jY-=|Awd
zR#d}S4e<Ugy9iJ+2zQ?$l5645S6e1Y?4AK+0|&l<j`UkGI2dpV;J6wM;L)bgq;9Iu
zcEQ+xKdYa920BFjVFz({p#vADl<uFtpfM#@df+{Ohm463Ln?G29e?NnecaHxSJJ}Z
zbzk5luIuIG^GX5C2L?K<bGn#qzF~mq*p$)nwm3PUQU&7Kw#991J>y?ITL@Kfa8Jt8
zxpR<6z4R!dMykE>dI`JVyQ?eJ23RD;q#lx4#fvSgxk=tHX7h?V7UT_^xg5fxm2`%V
zzF-_*z3J}uw@QYBecDAF@CyK!nb~BBfKi_u+RF>zC?~!D*zO6OS#G>Do<L{#6fpjo
zLqs5;xEp@F3&(209R}ro0nHBco`pONtxPT>VdtQ8KD7v;BC(qXv>Yat>vI4;hlHeL
zkZK9eG|px<(9iey^o@Htqr7}f>C?qEK!a}9a^1;x9qwdpUqm2!<^p_7k=*JNv+-O9
zlIMHo^Ahpg`y9}(qj(aPj+lVapL??Xl8}|Hxs;Xra-{dvAMu#y(^z#QxYP|H4ZX+5
z`Sl}JU<qS~rPFumW~zp63;jDNeK^(qRHAKf*Bq`7DSa2nyUv}upBQ4X<A@XQDHuzC
z^z}umR~W-DDs~HV_OD#u0*saLJK*}djaYm+k@P!Zk#Lrk{T-ciH;EsA1*q~fcmg*_
z%F(g<OBc{?y<m%<6)wTVz%bPTvaX7`nwYrBk=X5_;WhxX^S;gd>iPu=FNyATzbbSp
z%fg$}!-gaNS%6#3*6>6yvjudm+0gk7hL7S}?y@~e`tmKLqycVP^X<<gc63a#PB$si
z;S=1)(Qr?SIBmy-6hxwwa>Rg9zFpq)5n+u|$n{VXhir>6RmIXgprl<gz|j25pyZ0>
z2DtuvUG)Y>`b5@>%fWejpDR}Wf|*++1O(<;SK_MDQn|Bkw_dA*1QwjT>tV0h=hasn
zr@)cgvR&Nv((BFfbw=dB+B;9dP!;rc$*HWkGqLQ`%UR4!2ZdA+)+(YvSnNJPg+O<6
zhMAaebg4iB8g0N(EbH@9v+eCc&E9*6_ZMz}{SI}KRnl~O*l+`j=C0qPsLHty^EvYJ
zWqeb}f3-@sKR~&pHqTmcdI6$f8MS4&G{)!5P{0v8P4?2u+{LQ~3UxgJ909aUR1|sX
zBz|uTy|XbK(DG~+a^=Q#QozaBUdbTGFe(=9N?(VA<3$;LbJtH>Z3l}AEKV4p;?7_4
zQ;0l5-LW57CIACR-ZzT3hTTZGfb?>OTL*u;Q}Y>NldK+g<E)?kWz%!}XZrKNSKNEu
z&q63H4n2zBxCdZmTbO4}c!hD`Sy0qw@Z(R)j`RlC6U>(?nid$WD-mHl=6~r3tHHDp
zf+5ZR%<kAvmVy5tV`l+XW!tT5L?jGSx;vzi?(Xg`5owTGfOIRJ(ka~`NOww?bcuAA
zlIL09|L^b9fA4+H8N=aN0s~>a@B7R-?>Xmne=lo1826*R{@8NvV8awF+5MLh4;lXi
z{NAe2+ID_Mf}PiCN<!3Eulu|*?)h%7K2Z-uq}y8GI=+x85~mu;A0oUHDA{kJPOb)y
z65LJ8{1@L$-EBdIfl$@-G=j|*phs`L+|Q>pn+Ga3&w2&##$-_~=rR}2XAH|Pv-d>Q
z<5Dike!w4pbXYN-TMKJ~F1|b=8QR@HT$0Ck%=pppsTvo5<6;J7CheA++0=LmmE@{X
zG3<$dJ(>wfq@$y=49Np3n3$L@i~L$2pcY&;-dCFTT9O*bE_}Ti&1${qtD9-BWr>Y!
zIc{ku$}Ja`d+bZGRM&Di81WVVa0AMIz7cQf^jtX&cSZ^Lih6)&b(p$uU?y*P;V8Se
z=lt=HYQ*;fy-k#z>!=w+G7_7Mh|69`aCS;X3XxuKrbL?@RP}ZshcphRCY=}`clzSF
z8q}hDvIN5vF__3S^Mv<05wMJAL83ij&G-60L;GKMwiCmHk}2MaBVOO*%m6RllbZ1)
z(<&x(E<#@n{5wiYk7bRHuB;g6{q=^ON|ZZIg?-(^31`f}e5(U>FzNfXp-fGrv)VXb
zGNmV6j!@oreHMboMTL}V3P*zKS8oS&#*;BgVrezCxCNJa8=YK)v9Y?=Tbov*+Z$sa
z`+<<mrFW<DZeT;B##J<g1~7d!nnPg^eNj8x*A1<nDi^F^q77r}n4)fFd53J1eD%9+
zy}!KA1rE{qmxs&cBR>(YNw*pq)+A~=Z*d&RuY9Pb`RLz*Z#Mu1%`%MpAwKp~K&(#p
zzH@T}tl~%M+bgTc7puX<mOrF6H#Syt_rXE*S<D2Y1h+g@Vd&4YN{M2Ch9*N`aJ2FZ
z4W5)vOy}qdkp<@ffxt*&GWg|>8_*EaDo5kf?wEaaVexu6wXidE{aiGy-1~MHw)c6<
zYZ3Tzom!bCuWOtArw=<`BAPgiNGyaL`W%sk9`zgk?7*g9#XDGLwD0Pf!%*Zi4#i(>
zN8WFPyZmt7b17TXX@K5y&i)lQTM%N=b&Z48wc<>0C>a*%<{N#?F{fkDvR-r1@InCL
zwe<qE!Lsx2bU&aHpIIS9W>suY<m;|UOtxEnxWsKTUAyKUhIsP<2y*hXrEBIUm)6^T
zyV6TSKCCjmFDi~*Rz6<GNjsL{o<5wRluhUZc&BVbRS0|6HDUSjWy>Z1?Jw5Tt-hu)
zVu1|s^S81=p`sU2k2jg?%^`l>*9ayiVf!OGyyowEj_P2HYg#XA%lpBw=b6=Iu;7hw
z1QCBxW8S5NcR-TlZ|e1^Hr&xI@v?s<{Dc7kZ}EEB&L%LB#3ImwGZpqDeo;~18Hw~0
z_Heg$%$2C#IN)L1GgD=#DbPIF^S$=;8($(iI6Qtu+9UQ6hL1ETFh*N!c9&KDxBuYp
zR>|l!V%vJuEX~cK_kA&Evd6N%ea|MkFT7^_WCB5)Po~oDXOIkT^S#K44_)b_D1Ln&
zs;|+&i@`1~PfFvTqtf8`CPEyR!af4M?eG)|o9sGp#_iw?K<^=fg;TcwXv9bRIpD$d
zBZ(V$J9DZtx*hVDECD`8j0mD!-x5+Ow;q4?Ucp3_w0cIyNdTOyH82)Z>^^Eg7ZGy?
z2b1o(PRh@PO#yTDKuLabxEru}Z3epiIzsTIv1ozDOmJDB!fDXM(eAL^Tsm8x!KoX?
zr=%2%ZYIACxma<#h61yP{SXHc36!znsWF*D3g2Bz2#CO#3L?UjW-h+qY;qFO<90pJ
zW1ta3v|>xJH3A$7bpqzEPfR45dcM*7gYKdT$pUN8+pn1Ecn(J1{d-Rq-<=M*mm@g?
z((R0_DeBScb#4+um+c)~L_y>X%$m%^A@Jih13ZX1Hi`ks2!hbq&(kNY=ksq5ibi~s
z9*RVWI$2|PXFuJGMtSI;al2=(LF3Xyjh294&M6l05%6wP5YmpmbZrs@H4BK@u@ThS
z%;yDqdtc8lC%Y9*KI1tiUcfi-KGhCX#caAm?douNd_lfHJ?3Vbfu6x0&=#~c6;Rl_
z{Gs~;wiVMQq#U^-F#dC7q?7KCu<MS^CB}oG6}&?ayg!;WV2kx#UEr!QP016FCIrcc
zaEijS84GN`O8HG4{F&BYXN}Fd6a<UIb}H8e;_Sx!9_Rn{T4;nC#*SjWH*yA}`}Hz3
zETs!t3`fDu0iOzcr<qhs(ZS*3xfK@~Q-5952wpDMFQ+`O6`|!a1K_0Ytw}tDO<#uU
zYMw|V0p=$IVe;svP)w@%vcFHAAi<^|?lJbkBhpW+&pU7iNS<3q`eMU*GvFFLM3g7x
zVpsmGQ?$!OyvBhertjjAQ+N$_lBGS$Iy>o(_O?gty(Jdj3{-AD6s8qRV_sGo@AKDs
z)}euTOmY^0h{*wbRXlqHQ9oSa9pH*|gJj)m6W7HdxA`Dj`~$smdVetFX}TcVdz_Ae
zgNm{{f)&T@7to#MJCcY%VZ<lVRf{C<o<PfU+Hz`wUqSXIA3vf(6ioxEOF6D21hw1h
z{o$3q1uEOs0r%SNXU}VweL_sfZV#MvWKe`G?1DsLer<onG3Zhe<cD66;!l_Qx<3}y
zjOhPp2>IFqYspdOci0jQGl&F@zR!aH_%zVud<|rcMguM08cndUm@o7_(tH}18lE1`
zrI&9`-CwwlsiJ<MRxA>qH65%)rm?Q0Ef&_Rt7W8=IoXI$alPhM<$8;z|N1s(Zb}WZ
zqwAJI2_LDLSP^10dn=u;<3y)OaGs88(sB-whvoN$=~&YDzCCxR`}VE-M}hw2D8`RI
z?kFKiBsfV9H#sLwPB-}7H?1}{%PU3EnWJxz-dmo~%uWkvWkAL7rw_c-@05Z<<a)yF
zhxD#_MOWYz-yFdqC`KG@)dBGJej!>q`tecc7ZcP)+(;ip!w-i-hsCIqM>5-r@1~co
zCAikWeA+$|y4)%n`kKVY<Cd|xma$>Twm&K|Y1u6<-$r}brSvjS2;7g6ua^SvPy&3$
zXXHZczt3-`CnZ^^2Wkp?!~2pwO|j3B2uFutp0Ohi-QfQ4ySQMvo!TvFD!U;tBCn#%
zV(G}h_y1P;X=Y|p_>GyVCorUv4!K%sAIoU(G}nAg;9&RDW7VpUlSoDRHFlB9kEY{U
z92S!Ru!W(UQ3p_{S`)$_of<1}AMGbqPmyB$QRa;f!5w*GS<zK<WVcnO7{Va`e(?Ww
zE~m+pa8RlYJbuxgDt}LEjEu`unNh#Xw`4)0;}pR4y+a#!t;kWfS=OyV&}jgj3mIoo
zlJl7poQ#-L!E++UsTplkmH5k2iBQGx>HX=}O3ls4q-e@Aow~g%E=5CZ0zOLGBujGD
zq25nD^h{;bzixuz-0^%t<uv)2IwV{mpo=Z*-hEDwn;0EzZb?E?r<x1`TLg493^hMJ
ziioKAR?Yq>LKYnP$Y?@+YThn+QImIb(DLF02=f}jRpNawAe>zfpuWWyP9aKPnio-7
zFS9=|juRm{Frkt$>eVX|qrUC%UuwNOXWF+YE4_R_L<O1i*R&>oZEZz-x6}C~p9M10
z1b`PqpO)Ev7&mRqzNlZcy*3LT$LS2g9ve&g5x{c<yZyqxOG01vaAr7_smCtdd1JE;
zQF{Nhjf%1!$6pDhcl)V<hB4$B89BLg1EmA`W5sm7LeW{_tr_(nyUk-^>xZ@bC2s4E
zPkgIxJ>T@$41Hm6w3YWR`Ll_vFAdYWxbEWytKquwW-sNphR(k_rkS!x6rXyfj-%hQ
zn6u&Vv2+v-rmASDeS!;CpOek0Zcr#vn3A#({)EMle8p(qjK$j#o1?=alZMWehaw%f
zq7)n;9vEU_zLQui@IuD&>!+}E4j~V($#wT^1T8bUC?Q2spCgycW$#w6D-6fKTxsbk
z3>1@IYzo5?QYsymR5Tzyj;I)4OhbHpjEIJp8o$W@vKJKTB)${qLIqX<T0t-sHIt|I
zkrq+u>1B_sq3w|kmX5gdo>O2sK_mF9UlERodEYp6mGC%5mN6RS_yg#!pD*r6_}<<9
z+B5@eVF~qUDT<7VvL3zG{T?P(SDfj%^7@eZGuKRlOaH0^=8)5{UnwXjVNz%o0jUSu
zE*t^~sL%1)$}<Gh3m!)29&S$5@EZ<8mT!TrLKL)!1=4rZOxsWf_V{Vwv%}cm-qV!@
z3LkcVZExeD(HcK4&cj4kkXrnms{Hk0lh3!~ouU-GBL`>G-B2?+Dh^2}wYk(?kI072
z*n0o*iUua5{6;69jdJd#9aqsQ@*({s5&n7L6@v3>JDP`E9^nA8?F(l0vtO~AuG@|#
zIyGwX)9&%desJ!v4+1`W0Jp3XVu?E-Aq>37eBs_P$%TNvg%0Z+FYlf2A9pDRQQ^bK
z!XYRNc2>tq3t#1?f`-!61R=oK0qnGUpkASNOq_z*C>pTL)369;sW<XcY-17)+_!6P
z&w@I_@i`wOe*^fm4ZysK2P(fF$=iTnZiq>MYyI@x-fVU0=qRd|u+Ij*$h+gUZgfn{
zsX4|{cW5hM9P!ap-ygFa5QDDkN0<I=OW2$5oi{gO$i9JjI!j~vanu<`-OnZJG{<;q
z>gpCu5&2KVBdew%c3tK~mj_lovblC%9_1kL1T+L;Yv6FW9!E_Blzs{G<hP&QJiQ0F
z)y<A(ynhIfTS#z6%qT6_CZ$D@>CCjlzQ0|pe?I`Xa63C>6fdcycXm1`DOeTOSS6*@
zWW13gcgg+pJ(Yu_g6df~I8??bV%6V(vY3TbgBS^EjE9MqRwE{MJ=fb?k<0Qc6(yws
zv4v+W+(sVZP7*l_i$v{qIj1hj+4FWNrNt{%1D|X)C>iZjcPDJJfr%kCx4p{VlJH^k
zbT^3vMtyey^3~=H1UNnQ?rD8^NeZp)135UjqWsdS2h~p)8y%4eK0tqP9a)$xvt`dq
z{a-ztEu_$#s^m2=9IP4Nlvx88>I9mQKfzmlfQ*HOmDf6Q-6&}o`M$t$)+|w5{g{7H
za{&hpZH&$#=Xk)_IS>7#s!i!;R^fw(@ZUZRTVC}=le@n|T)AP{j_CijK9#f%xL_;5
z6`(ww_25%!b`waCc0WT}KU2I7Q2Ihy?J?D*Go4|)KRP=d?KT3&+>(a@uetnQLHMNw
zXGmq^91q)5PtB3|+uyr5XST2qBc$C&?+&}$QKy=(&%f{eqwD|cdI*j8$|ZW4noCW8
zf5d8ka!!}(<QE`8-PcCTDP<2S5#RceVvYnCj(`l|V_$N-g#EG};Rd8Uu`jn5#b!%Q
zvbl;Gkm9?&Sq!HnTF!mYfXqFWzXmb4e{e8XG#D9)Lw$v^9OyL~f^t!9vs9?q*wnzY
zD5F$<3kr$9JG{R;v{wAE9xIfHVLuNSu_`Tk6PfQt6GrG1ND*#8;u|sg+SxBhg~GW*
zlY)=CQ5#q9I=zemFMyiE=5t-Izo}%8q}D+$3#YX8^veyudfMDKr})OmNKtLSq+qfP
z484Atc|!HVAylv_**U-lEA%2Kk<#GZvAAajRER7M=KsoIl(Y4{KlX<T|4ViAPiU5N
z-@vtz2i>JWm$9)ijTY&5K>cTzZZ(Ij`xvj&v9VQar-9pGtLf)Y2m{Y~DU9zb02LGy
z>$LN`1mmJn9}pUx-OP@7U9j;}^U19rw%pWO$S);9YV%N*dCYem0aV92@Fe}EMNAm6
z;F7E5+#pRyum5_v*ZB*5<j6>m%Y!M4CU~epL`q;(FxPRh;jLx$U6k(yn4YVgyT0Bt
ze0SV!xw!BJCCJHX>0%^V@Gu7Wyq!JP-@p7ZpJZ`|Y=jIcy}@lt7Qqp)TWWe;9^88M
z6?(}3{l}LLjd=<GnE$zz#K`)Dxn=j;-#+=Tukt05ZTt5$Scge&)>0`SXP%VPn}BpX
zC8dd~^0MJid`vyEZf>=Y5jb=P28w}ppyp;Tr&4x@e^%*rYr88@Tx=D;`8@xmfJH1Z
z$wgTiZOtA|dtW|;*}A3;Kd3XS$+=LRIvjeALXbtiH6Gb3hUh_Zed`hdxMcD0>^+!I
z1k%!_ZjT)LmJOWcd&d%5$-MCRHNtZ38LF|(Y$oZ}ZNce82mkV@)R_Yg@wwBrzVc=U
zVbXzz6$6XEE@xFdb}H1p8b0T#yqd#_jhl;=Kdod{jP=><jR?zNzmG&`8(r6@x9e8?
z^hWj&g~<a?kDlxS`Wx~GkSN`H`z%{9knd_CJTVaeqV}5|Xpx-&{LlOja9m8jzpZ)f
zAq=~kLt4{$Nyc|}yx=&}4@g5bbv;nQLWAo7ED6<W(9|8gxxc&Bz#}d72L6o$!Ngt#
z{Os9^xxvry^LF3u>MpA+Evv#UZ2+$V($me685BWn!k^M{adBEAe|Z|h4&zLOAg*Gf
z8&IJ|JYB7EK-nT*q6Uiqlz%B6DAC;9HrIAx8QV2<PxeTtMEh1A3{+F_d3Nkli+Epx
zF=1PP)R&zMsYN4#+ok8lD8C4E{0!pl4TDaNR11(6wr4Iu`BMnCIwXj-3>APK<cE!l
z=+Fj8Ij(5qi?Vu=)(kXZ7}6hrMoQ>QgRA`L_1BMMa(z~FYt|^<5hGWiA}MaY7iH!J
zK-6Pu_nJC8y9V-8gG!S?p|HpPFc=wibxZED-d;yuU7oIizRkxv@9&PeyWELMd%&7k
zF8{XC{yp%M`f%)?l#q}&W2nzUd?Ec?47a~SZM&2s_^I$7;WXK$VVD@cN%cQ(Rjz!*
z@1@>=$Z+g4<zAV8qq4Q@BUFn!xpMs8FDyU9ATKb~wvHO*LnmlYFT%r0nm)mjQ+?7S
z;dVZS;xs)FpJC~nLo10t$+`b<itC$o7nvh)TZ>6cW9XTGZ_&wyl*$0hx#$$T<ioK}
zUNQ&z24Bsp9p&YpJ&G7AV9u#Sw^zrs5H`_z=N&3Vym`ry%|@m5D|#DS+k!&GWW1(+
z?3KhP!!1gCK7HK@s*`F5eEbC!uPuz&#Ue+^-bgvChRrQ63>tfDOlJ);-_u~2mbx_`
zA(Uk+Qn}7mtAdBeI(DBy=35T?AnP~|K(SCb8VMo2KLLArEk5$_43$shD?;?@MxtRE
z3Zw%{MyV;-16}THtmIYW7$(nc*(>I>wp0A8?oP@(;7Yvl7C3@#k%f@2J{aD2u`<SI
zCDj4WV&1eU{AW>K;iv=O47p4Z?}^;Lqj`%uxf2m3_}1?M4qko$*l<){x2apC;@S(k
z_5wxho;IOEMyRF-JXcD_Lx_36rZ-3`mjdchgUf{jLOnR)AACpgI(p~^Z0ygj(K~p^
z@7SD=(tR|An<QG`BTG=94g*s=>{aXWyn{m3e7JN`-U%Mo!|`#I@>WfwA1}HBsHYP|
zTwK2kklfq>KcsR&|DW`x49>UbGlQJ1zvN}xQc_c`pRJC}7pwQd{h?6Q#J~iEYZ0#r
zQ{X&`D23~_+@$hF!!~fYUHYcoQmmhnoSw%wsJeRePp)WhfQlFq61`F(Rp>e+oiiup
zNOKr2CAx)!ib~^IMJ+oUN<cd_{|PI=(w~JzVY1q8+;t6yc4#OzIffON*|UlOViSnP
z+j88a<9Si4sjo+dT$_cK&BxUc=h_Qzt<|vLp0f@yOUiwgLGCamY`NZzG0a5ST}}F&
zU=KCFTEVR^iSz?@`H8zc$@{SP?`M`wD<0H>{S)DORxPW;Vx2{NtVSxQgc+D7E+#~y
zhqytPzU99LPfJZ(ZLK^#bn~P$OX2p&&U$*Ngd6fR@-C~J4Rm{H7OVACsF!Kc=(=9=
zu}sgXyE!|oO_)>YxN(a?cGfd)W{baSCsUhoA4>17;Hqdk$N>?0^{)fd<ZGL(Qx%_G
z8v0_Ryi4&gA>n;ML&n*QgGBf`)yEtH^F=J$p>R@}*N8?r9p94fuC4BLBd>nmZH?#@
znG*LJAb2hSf|gGG!{dl@)W<0NLVcIxvT2*QwV%G2GG4f)ml5rJp5m}uDiOU9q5lXf
zjn>u_fi@^+5q2!+7m@9NearpbbuFhXUl$xH&DSOa)c3-ZKLO)d;p+0xE<OkOstbb1
z@Kia@!k^U?wNx1AQC0$y!@jN^z!5dv^B&ZTf{iVCRnMM<WsgICx08PADfiB8_19O&
zo<s7Ks<y*a%c=YOd*#mtNGU{r?t{i#Z*sncKik!Oi)Z5n-}d#WrmX3&&vl0L6Q!$W
z<#vkmhwWZ=1rxIw53jFh1j;-GsGdb;e;kR|G_bJIOJ;3qy}Ld1E=D*sVAr0;HQ+nG
z^UGIXzI@d51X>wPlj*%Y+K8|U!0z=|1hdP>c-W_b`Q2kVl2(eL(>@uLI*xW1JS`>j
zymnuI0sHCnn=MJf@g)XQM0R)u@2iQ7?^T10)o>9P+}|b`nu)-dI`&-S@R5=Qx=MHl
zjgX3EznM?+X1fjV=KJkz^gZ>5na(&OiU{71LI&&D1$VWR+a>&hh)0aN;zk{2nzcnl
zVTslf|HT4$5$z)g`<&}4r{nMM;tQ;HILN=|y_e=J3ZD&<a9#;J8XcG*8~=ui_{8SG
zY|ZJW%G^u+@kMEDODEG9X_3F5Xt%m9Y5OY6+mlg^P&v88lXY&D)M{y0wjUQMx%RyR
zp$f9fu)Xi3Q|x_*UA>y*<?1a`*UjZmiW0f3qf!@AUPRbWd8>!#h7&V5?+~D)l?AW}
zs~Dz|Qd%~Vr|`pm)U{12#ZE`%qN46CWY*vwxE?Y{0+XW+Bk;I96rz@vX>@!`%7h9}
zNl#bWAFiGll{S}uU%}%)9DaJAM?KnqZ^VX(-@IrBQqw6>;F4F~81x-F0mmODBsO3V
zo%7?b?i}={@18fb;287~I;W_)%BrYrDbvPfh4m+oFId#Yv7k#Yvw@s2;~vL<YS>w=
zi?@G0KbWVTGQ3Yn>@QT0<oiaqJKiRl<ON8@Q!(I3TtwcOy`z>4`R@2@6*oX-xUX+C
zE8SBZ!qEKjDER>?E=K}Lb&}OP^Dut;lJhZ<1vu+I^%Q-jqpeMgns`+m5CDh!@=X+@
zpVHS1k_p4cvag+Z@Q!{$7+LQezIB`Ev%6S9YR&hm0n_LjeOLHszS*NrsD1`-7hpRg
zXkemW%+;P(f4Bf0&9`S;%7f&_Rz3S~(m=}$?Kz1?&t_(A#%jbc_WrR~Bp5bmXlQty
z;SeV*6w3M^qHh2U-_5!&6`xe_n+H03-=dLc6aHIqx3Y)vM#(Sk=p#ja-Y9IZd*Vr%
z)?v)ti9dP@j}#bGh^_ee+$!75t(QVTHWbYfSr!u0J7|*Wj*e_VQo&*|+;UDbK)+BW
z3qO)V+n!{+R#Kp1P#L$G7Q#&F<sj9JZk-q2(t*yU@q#IGYDxi9!Zrl!WkRCn3p<RQ
z_}(5wLb^sUacUEhppz|Q9jB(Irgdt)@5!wvc@8^c`R@?nBc9n{UpM*uP}BP`SZe%Z
z%FSZ}e0)6(Pw&u#uJ8hnhR^+`wxf&f{%f=w(pAmVOUEokJ$cY(wU8B}5WyqG;7xyA
zQUl!s%<Reuq{pN(^Oc?J{ml%w$ql7wVq|;F5$Uf`SKCcZU3H<CMZx^kaWwss@}LqV
zAH@4#mWSVXbM$m~dYZ345Nul3MNj`6w`?F_{kx`T?}g#RhRXGHYzcpL==i3my^;Fw
z#Qop7`I4g1{mv#ONgpY-i`Q9FzLcVt>UY{pY`PKNFvBHFOuq(Uw|F(Pil$7VjoQIR
z<dcVy-#w;8iRd@aUHL;t?uNjKB^+&eY_LX4?ha=l-aBY26dwOVa0*s(f<`JF0VP7~
zBN-tMPA<Q#k*X8Ohw_qZE?TmKp6zOsV@|^*K}!i=1Cf;@-OIrWre?Be3sd!i9b*;!
z$+No8#kQn0^b+Vy_0p~x_Xi^>fjtLB4zo;ugy=tdrb35QK1Y-GJrA<T2^^JHzBL*u
z4yXU;-IaUa<)-37CTS`2qz1cpw2#YSrm(_RMo8<h=<gB2KD6wzw3s3h?fG5a7s*YT
zByt*B_aB_yY?7$Y^fJk{E^~NhZV?^@OE)(voCm+lk2|29Tn`lM-g!H*+{T?)s5CvL
z(!?v-(W!=So`!6e=DA4VkdUyesSr$jJ(9u`mUbwMOMph+ZXE4iB2gRS93Zjv@(0?#
za)e#CgV}0X&S$b=u`uVYEf~E8qw{Vmswz|u^Ar;vmX}tfpLJq*Q`Ia1^8Q)<(NAA{
z9mE&GqYH?Ik5JfqQZ@iF>D6EY!w_FJ&OzzMcMtC-Xulea<tRCu1gFlO=XFKa>s*c8
ze%kYL5l%!|w3|b5f^5yj=(QS<H@<@<_*XsuKmMILgWl#9F`J*&RyorWmdf>?R|0|v
z7Z?;uP9Z1p^;ghIl=_P-Wd{{~or1^eeU_B=^e_6RFeiGyMpbN46!JKKEx!BwDRTRy
z@vucVc!QT{Yny4kgPTW?f=uHQ11qKE8aRrn?;=r#-*seToIyxsqC$@4y;qMb(Xp_}
z$F>XKzO^emBji+hLJ(Opp9>d($@+a~I~{e#{dsh`=f0JW(a*IHOgpJ1K!9j(aUR!1
zV#VKCM1M|D)cXuMGCDT+GhKOfx|`RuUe)GELI>e>7aCS}gi?QtOCBR0I43dT@nL)1
zPJdXmn?NA-0ko?d>YDnLz@O*2UT{#*K(2IbZdH{^;CRHiA|hF9MMXtY+gRALjsi6&
zJ%{Q>67;TXNE5m%GNe;>k4FzdC~VCblW{uu#k-`A0rm_A`fZqG+j}-^el{2P7`OhD
zLH;Q_f{$-vJ%HGD8Hd42iu!F5iMFx7YN@}HkN0ViaaIe-u`lL|ct^35cuB-2sUWs5
zFP1B%e~&wk6H6OzX`0JIqt?M8K<c~U*7du-3|aw2?@uV`B|HU-8504YgaOW4DIJq=
zRaxibmWD}J+@3Ug*$#<bt(_;^BDC-d0+aaM2z<9wG*IWMe*fNGFS+}p^lwUsF$G;u
z7c=Iya|Y6;f945>JY97gQ{Rp2U}%hMa|nQg=VTDIl9B0F*S9K?H84o$N|Rr{#^2eU
zOpUE!h6hKxW+_qK=bOx~Jmi=v)9W+O6y!fw2+|0DYU4aSjUyiZ^5qLFfbz}O*=6MB
z=5C3f1U<w59)xc@nock{I9Q9&3&?(8=TKR>1^?C6+4kG-eQ3hkUS2H+^Y+#Z)NG1>
z?HjFFquQ${_N}_!<<AEVdt64_;(vJf#|Y7%ZN^kyxUcER2Z-qeDJ}`_{rqGt92_4l
zE!FC4U2tI9$R$1I>rACMEXaM~B|p;CF^=P4<wrJreCj~`G`3>M+tyT3-;iHx$kF9q
zdf-~vXU1rwHvXi&a>&4Kb6nh1DsEElD*CY-&X%X{dxY@c4yw#+r009u`3U^kEs5}O
z@U+TVx`yTo^*Se<jEOz)BdWHNu*;vv3ygMl2X=@N@9lB$on}R7weCaP{BsT@L&^7V
zchAf{cR4b`?dI%s&#J&cV4=Tc+)M>3?ZO@st-i}vh~_V#GdGo8mU|h%`VqV}*_3pD
zP@GWNK;S0hT+khV0q<5kQ*>>mCh0#s{N%A3J)eaKKO!cnPM2|AqTxmQAt?20f_uTv
z+=u!71mn&iqz-L-wgufmS_X!pm;bu||Cn$5?*~d7%7d-zieS?YwMz)Qijz}~+(%|%
z6;;(oOKkQJnHPlg_0xdZCJNx3lh&pKUWbU>;N{ExB*1CxpergXn<ni6rsgIazo<wG
z2zXsep5n5KVMBf3tIP)96(2WXAO##~(}!Ot(m9y=O@`NN<7H2LA~mjPK`vm}?uzDF
z!i0-R8Y>*)c^lN5F#+3qbq0D4EI*Gt20DLGqi1&L6+!}rw3z*Wzb?B-0Ud)`9FzyD
zL>T1g6J7ecl;YQd@c;pWh4{!=I&|!6m7pZQg1PDD#9`oraf=SNn^-t4Em3)J`@mrK
zgf?{s{(ek%BcY1p7WpEUXQsZIS`!5&rL?q4ZhcYFCx~mrV<f`7)Uugv)XCYIA!X8n
zL1q0JSL_~XhXX96XE^lT9?8>&(iTZ7`FtE}zF8F^Qt@T+BpVJ6Yn!%e>3F*v`{qQ|
zUCCQkE2)DDyi3E_hLY@q@4CaKw{LGFHm|IaO@mOzvWiwep@nIb=~<iyc7Y}Srm~@K
zUzEF?STNFNQPuRr1};zIKe~ti?O6KPiRFbv!pDALQQ;lnSxCfWFQ=gJxhwF3x8qqG
z#=1DRJ_Wf%SQJzroy!SoMji)-gl~a+i;TT}g<Ui<KL;>0Jf^k}NR&F`x16MrRSQM#
z=<G~6?+jC*f+=S{z(XqFqa)>({p7Ns@9xtRLa}WD+p9ylrR!~y|Hw#foFvo-VZd==
zhdhSg_1j9q3IU=Qf4bA~@%)ede;#R}NXjUI*9`{W0|R>Lj5BqEZCxG(%Vg})8aTFW
ze5f{?_~FTFdL^!s(;>0BiCx65P@rypv4_+^j7Sh0yZ&l-nn0h!^?(Ai=ZkO<a{uW5
zbSZBUF^4P>t8~Yj2?Y<oy28PbI%$EVrSE#Qb4pxWrAUw-zdl~vrl_mFVW^yvX}8;O
zKJww{ZA3=1kV)*djN36%|6--Egx<SAEUusc$s+qnMk}Dp5fOXL9m_Q*3^RlWi=W&L
zW%Ol<HaczXR8_GS78Q+?R_pG3`1OB@6MugyO%Vne$)RoKX=U#d0v2U!j`+B^t)Wjq
z5b;clkEaCvp{v&<JYrkS0ne)O#omK8#%4+-KDU!x<hr01Q16<JW(w<2SlIbHiHP{o
zYgM#aZt4#29+0CdIS$~Ju)Lg>xr`I@M>n;lU$Bv<CT|#VBel1FdfbHdKmoFmRX^tb
zkXiU2>CHUUXI`7!*1R?#p!<!lDMatRSg?E33<7EDsd>V`_IgRpHU=6^l?&0&(v;E<
z_zm!tKQ%OH5Gvqu{yQ-roGkn+F?ZndD{(=+Z|`g&r&sd`bE2($wVI$Wv%)0;8_zYa
zB`;lAua;pPUKqo1^|+9MX?hcsdRYbQSGk23&n)Td_VimNkO-KtC8Y}DXxmL~)IY8G
zzJ#cL9T}O?Pq*OX%hb@;F8qPN;Vj^^6=l0T4heR#jqwtdkoI&)Z?kF@b&Kv2b$<C<
zY5X7Q^xyyVJ)nd^i8xw#6Oosee~>0wEXfNw%7pG-sNox&8`xYNE;FGrdu_`aj+6Cz
z-CnuHubTij`vfTmuqX<h$8(#S1xSl!`4@;(@-)`g3s7)Ho?Md1VYtCr!*=%Awew+~
zGWXXc#E(M;8|~2&|GeE4_7_M{6;p8y(q?%p^wABGl7v}mZ#6oR$uJ+wpDwJ{J%pZy
zM#-)H^4+pQg;DabH#BD#e4*(D)-HYwD`686kY0)MD4nMyCDG1fHCq>LL1PC6%}cSz
zoQLBxX2B6#jzVo7mPEElh)!G87BxTXF0F*~z6ey=1;Yi4_sz{1Dn*XH9H`i{rlp}_
z?lvb<<P(u9_EpUObS&U`ZPqMBl)$eRoHeYmp3ddak<ZTbpS`629x6aCmF(jn@*wzm
zbB8}U#}YWu;8j3;SaOn4RGi^_hyrX^JM0}1^`8}&mDy6+PCnWpK0CBx#C-gWw0{~H
zXF`{eyHUBuhdp7Bv&LAt7)7tdsAS^E^<?6LJ51xntEwqx4n01xg}jo;mvIsC4n+!$
zL9JcY-7kwDpL;y3nM~bV{9ch)%;g3~`h!eN?h%&*=cKH#dgva%vy{SgLfU7-C%^w1
z!wj&-p$_PocQgN8-@78hF9;0PnZ&`^RxfX;7jrXy8au^%Qk&o1H~9(^PX`GtK8i)j
z&DtrRw-yF%iPYF1A>Rrm(%D&y4fDmw<;1JymUkNtts<$zJV|U6;t7nmN-gK5yJp90
z>J87*%Xr<;(_6)3VzbY2Nh_4SS37Vu_@5KZouy;py?*^#N<}5+qDxCpucVpF<W8%2
zmf`T$`C^bQ53Ob1HlyYA{jG}2;RVEex!OEZQ-JCJ5yJnvQVqc{7lrmXLq?I8D-bGr
zV@tMS9Jt6H5Xo!JCH3s)KM%dC+tJg~qG4)2Qz_o5Qn^HX<Mgt5TAyX-XB-+U=@j{U
z_S@cKRBwNi>;7-wv#P$g;T1Z$ak$94Nse$nO(N}Il_z~LW|)euohME;7}7=W#%b5Q
zrzs+7=#TT(VEPj}A^Ns@99}eyX-sgRcjRG|ytsZn?R<B6;EX(Iu>bQrtc1b+JK2xZ
zVi5}t9|p<3E!&$>l3Ub|ZaDN_(-h_I56un8s4suKC+Ac1Fp$F+)Y&Prq@WOStJQ?<
zox9O;n2M7fPR4fj{%b**h9-J#O=YmtwBC}}eAr%EAwm^atZo6aj`>z7up?*@G&&2F
zSBr@~&)htLSv6cUNnjh=d7bUh*e{^Uj^92bjLF(9*L78M+51Kcs5LTb+**P@LBX>p
zC&}KN(}YJE2GTI)Ouwgw|I@=EwQ>fxvT*p0m1~6AfWTq7Sz`r<fPfy%8pU*ViQQhQ
zYiPK;orZ*m*BZ<K#R@tH3YX#m)&f;@b&L5zQsbWCbMyi2yu@AZj1Tq!W2B_Q*AfBa
zdae_}y%=eO7!C~y>SxoQoHQfMZkWBFipnHZ;$6GCDzq3V^q5~Y@HOrZDd2m{EI*-l
z$dL`)<yH1nk+B>&)AA&brC30t^OXtTv&s@~f9rT*t&UajVIVdBZB3Pu2q7seGnM?N
z;eu<N8VyUHphK>mw@r(N0Tq7sgmbk|!vF`T`NQ9iTi;=7r36>GwQAN}ip`1uYB!=x
zBsJS>e?Pw(R}aUF(wPFRkU(9R{uMViN-j3JR7~~p6%7Mq@(v26P}CP6PP_Hz&(g|^
z8YD{dcjC;u5glkAeD4YO0OOwq&~0H@@kn!t#FKh02G#tCgsKxdS~|K~+j<a+JbVa1
zC@QntNxGBs48bKG=mJ}ISv_wd46jO&|I#r2KKlQc7ofL9@|F!*?9y+vQWJ>)jSBBC
z?u6$@P5A!;Pe>4&n)XHj;lz;;504I22$_IOX}VN*<~2%W9&vi3uTb;JfcD|@4F!oE
zjOuf3L)W!Y<#seyI*X`-%AWnW?rV)5=CRiy{e?MZ)-s>PXvzcEW2(&@#|%^_vrb_s
zB?8!s?wc#jzZh9Jk~*<>eQ4n*T^3KMcUU~$H#qgBIY}@Ei~Kkg6Ic2)2m=vPqNe_K
z*n|ybibQ6$C`CN4KmGB0a(Td=Xq3nIz@HDPAYmE130sb7F5h?<twg^ocYoc(UEXRH
zbCv4$i(-F_#k&*1;1_hgwgp+`c4q#{u;pEvvkg;cHpUF1*<$98%bnu%JB_lN$)ZSP
zd3;qtCC`kZuU{uui_jQ(fLoM8D%UDIw!t4l&!0uw-=9kLfCIB~r37z<)`OkO(Yaom
znOUF^T_iqA=Z6B3_v6RXi7_xt^*cPspQl}49?oP9t#muI`8?2B<p!>#-0yx?4A<c?
zkL4gjD~I9ey7x4Zf$WKV^uFTrU;{J`P6JzNG*q52efN9KST<SRuGiAn+fmttkgw;D
z8o$GWMare;!PHOB(4V`!vJXKsJ_x#cy(aN}Q~l*~+cV`Qd^A>k4K4j~YerP*1HPo<
zPBnxViXSWnFutR0ELMu<T{&E4kcM0C1@);FD&iG3`n$^aw#O6hB!~YVT6lunTw5K>
zSK66M{8vhehz?i35TS&$TX{-Jg|sNh$i#p|55T9#cC!RLueQ!nr`0N;j@)nGzIEcQ
zX*~{({SJ2Wc+_6<(e`wAZ@;Z^<Vm|~tA|d}u4j8sdV|?~C+{qz%B#kUA3HFhHI;bu
zUF^SFQ|>3jr;~)!mJpa{YZ82uLB~%XKh7;HQ()2q?`AolNW!j1=Y;!_M5uG-;D*W)
z2|p<=>H&|4TUtP{6ulGJSW2pb9Mkb5=miG`7JZrCW?@F|5xeV;-Dp5=QtIF%qS<`~
zjaMG}nRmjs1qG0HehG2${^2y<^QKYkA0mIu9{ev)+7{P?J%rg(=tE}7LrN-aqY$|L
zjM93J^wlgtWY7WopP)oZ6l?ccoBkL|6|HX+XCjbYaQ5xcfmx}-reCi&1BpII4m$NB
z33cHZc!{Nww~#!my#3U22v?}N2%oU&`o4{YmVP+-ySQhNt_8*9QvT<w9(PK6r>&#0
z^wfy^52)jz!j-V3YpHj!W~!@1v_;&WeNNYU<o=z`ylfb3GozWPv6P6;i^>4cb&{@~
zc+Op{NI@VuBhzP4i&R!W`cJ&_fg2Wh5OP7H699u|PF{Zv@aMH{XechYqWY%i=jSRa
zDkhAzFwFe?ivxooiCxXAv!2bq#^raf!92MFt=xop+eZ1d^>t^W9`<wj;Mr4i+0_Wo
zHN+>%k_E2}c~!BY#Gwz*E7Se89G05g{8&Kwb?$yxR9rR=E26i)-2|+UEFMq?1ZwTB
z7V?J>g-5*wqdKpyFCM-<S69u=o2E_SJe*ly0AbEkAAnFu{7M`fUj4hG;<+D_%$PX`
zjDpNVLRiVk`382$&5<--X^&(A&|;Y}tUD-x*7r{Y{-Sflb>5twoH%*@Cr#&nEIdb9
zVC@-wZ|SS^r;6bsKzNOwS&aM(YY||1`Zv~MN{G_B442pIrarMA?bo+B0IbZuu!cn;
zs7aU26tD>3Vyf5ouva@iqbPWj4>$c>+DP3IC3yeK6U0a1X5D!yxyx)#Tx)NXh;t+6
z=1k|m@07?obK+nlTmcAooMQY;U+VbHYf*||&QKPXL$)DKs+U#T#5O~SN~9hBD5Yls
zNRiv+;&}&W{VEyEavjt63a|@A<=i&=iRXVj&yg@4oPzf^r*BV(ICq2FDpvf1#Z4hn
zPiIi!c?ggh0s?}?ARc-E9$rWVb_vlTZJg&|mk8SAWCaB@15E%4D>=EShkpPf+IbX$
zFLBrVqppyvp5Jveipaz+A$9?=_dWRJP$3PreWk_o8VC>KmtVlj<CoPS{F;xbCK4eW
zEbvXr*#ZH9J*bQxw^xgno?H?Dy)mU%JoV5f2MXda%+IH`$TAuB&0%$V6BKVZ*LiB{
zT&vm>j-S1obOEMw-fKpw6PubKbFGY_(+{o9opt~Ju$hFekw}UXSV9Or;@igL7E&vJ
z!P}7@^@KcQweBKC31YVB*~7P{LNT|NYA2`Q=zGJTD71K#!oMcL-hJfU8V!S)+`u-3
zwsm}=t$7$jNR5*E*@|$W45KR?hoZGgD1k_e92(dhvc}x?La3wD<J~Id<nhVNi%(RC
zA6qG`MliqdEV%g?H|Z|2qn#uW8sTm?xyW8m`Lj)z2e;(Tnbt0%%-1oOh0kE&p}EY_
z-HfNi2IX(^w~#A_Pd(ZNRB>h#^Z$A9{vo_@<}KbXH9fNYubW?|=jY>}WFH0Fc`Sxr
zA@~U(;*B8_ormX3sUCO?>o#lf=j8r4o)vk?BsByYTAurV4fS37VLGo+j@wqh9vaUc
zFdIymtu`AY8@Zh7CAyB(!H1_K&F`Jy>I$y!c}MCOpjG+cRC%V)5R`N+UeJ=x8(Pxs
zCJiei?8^!ITJA>yV992K`3O<}@bJZZ3L_vk{8l#pkB=Gn;HUuXw_ZQoUczRbl@NSx
zfN#a(BD1;ddUN^X!3f3OSL+_*>c{wymK2M-Ip*>dq=KWNa8hOW(YC72G)7yo-r55m
zB-a3$<`d*!%NV>3=kSs0nEf9-meE4!uf@-!m8JbBxy9pR)kBp`dXi+eetKUo*Zy!C
zn5B60m4TPeLy_?FK*NjGzI!DgWf*um<q4fh{T>Cl8sS7t!!+F~msDZ9Lb_f$%xFk^
z>X)A3bIM+nUm%j8dExF7Bi>ZpeSr#cRwga<z`$x*$lbl_<V=hD3HESQ_Xo{>c~1Em
z^XDQjLpY8s5k;GUALh;lU`1_JMMW6_=8E({V~eEE$2ioSU9z+4X2Y~!vx4aY>*wya
zn^_O98ts=uO><vzDq6}6ylOk^f4fqP={{^VT{5;=A?8fH<DF;V>=63cmyn9o(w1=}
zyi(ZBqr~;gc{4nna!&CA?Spe$2VVZAUQ^Ypow1n`-rNoiUb7{Al>X%V>wHfgoj7jW
zNoGPid?JeWr&fch1d2Z`)q?u|sQLfbi{}PcLGAz0U4Q^U7jW?KEXUfzaYYN*O%Y>%
zjF6G>;X57)i8$m4ikJ(QvvjS`qOv(Ww>^kKQlC_}@HKs-Bo*AL*oe=cZX)96R~o)P
zEjPEQ#B|gbLM}J7K1g0R<|vJLYK@p8@ZL&BUIo4LrnS8Ev3?w)y}Go~hJ!`OPH|Vh
ze7Pd_vtHZZ4?G=V63?$rx3_E*d>VLhQRREz1RVY?$(7puTC<+5am)Dn(JLAN`X~ik
zl{z|8rqvvO$UP4ssk1!~`H5Wc7j`~evnx_?i3)@2>CAZq5ySZYAz=C)lz;BIUagv~
zrrvTBUU_rqdaxip$F>IWdJT&W&XQ(e^*M&$`}6aIZ~0yCNp}$A_pHo!juD>W<%+71
zzkEsb`a=eLfALaVQet0!^OrTHOZ4Y>WESg^vij=b0b&79;38^&Rjw7$CZ@6zp(L)G
z>z8kCAR<S9``+@_XqSh7xa)<T+Re_V<x%CelERo;CV?zb^Thc0Z3ndXDZh&}|LX;F
zhRa-MLw>T_%~G)&w3C|N8HXJ)F$-lmtbtKct?jin6KHNX1H8S*IBhVC#DHur5M_RO
z@us}fX@m@Q<piR;4F;+hFPrR8iLN@nujcOyFt3~uCynbUa#=uPrNgE8Yz!GNr>AG6
zYv)gw&PyMnM4V@Y(yZ>Y(6p_`Ow|#Ujl9(Kw$VwO5ib`n?ll+xtpa<%1Z!&^J{gDk
z!97*}2|?$&3I(ZSZW+e&$um9O2y}X6!ek)kslPpYQ%S(%B%-3SR@wqBtrWZB6E&eK
zUU%v-GcH_&voj;5S{SzKNDb$0R?bRP-f>YpXLokCN^#3JiUA48(M#Qo<l&D^w3k>y
zM+Tx!$f+s#`q|2bFtPBn5RU@Vxv!^15%)lsiGqw<IVK1N%luK3rigW6`hn`&z`)wO
zLY{3jE0c)f9T{2%9!3Yx@t4)f?^$uV&4A$AEoE);UM(JwAICZebj_d*{;kmkEvbp$
z6R-d6bwdKoMSzjLPDpbW(Dup*>lT}rohIbx8rMLU8t)qYjvJ6Pmh45jc7WGRL3ouw
zgB=a0vMp!86Mq<1E-o$Tx|tgQVmMjbg05a|rOo{3q+I8qncl80Dqp-SP>N`1B&egL
zldTT<PpiW<cwsoGj@f=8ajR(aU;jC|ik>S#k%6@r7c|1>NA~XgQK+cX&n;-Y;|M!n
zJy~bvv8V`Q$-jT4?eVUWpqPGghW%W@H($cEj+QALQMtL$DDwG?J0BZ-anwTR8iJHs
zMQ`JqFDHx^oL{%sL5fp#=Ag3xIj!KXx>@OcTQz-3)Rkw|+V}iR!HB(dXh>qKjrY(}
z)01)i`zxpR+}YnkV5%eB$#iSh;Wp46n+^ObP_R&Oazz+8JrVRly{BX7ws3{;=#h>A
zE;jwgyi@Pf6mP4M_YIZ%#Pk&MTrk0azV~|Qb-DXsLaDkHrDEFE6+Fvr^VJSQLn0U_
zI4_E9C<s0*mqI9V10t5p!A`AZi=~&PC&Hj;Mp1hCBclGxBJ%-91MeA%bMDg<>A4)!
zJNOYkxmC$>{^Hn_CH<mDSyX~bp~9;V*o64MJujH{5)FPjZCp@YUEO^rlvX(M|COX{
zqBAQ{S8xV8fmQFdi`9P9wXV>sH%Pr6ht1TrwY3J_DV%m#0jwWFL!&`{HLzc|T*fiR
zH=v-3w!}q}epbt3+S7NmI@J72c!kSqn!cE)qremJaHrWZ(quDPxT*>}v6}EW)ZZ9B
z&Te-_E{`onFevI2G5p9XXJ3!Epd*Gj5>Z-vGXTrLA@=hPB6+@fSY5L1i#aA@;$=(y
z;3DQ}AfauG+N{2pwaF!`sa+J{n&YFtRG_RPKu;uvsxdl9q;_~bvL9GhXVGA#O(ild
z%6Lz$-6ozMBeL*T+g<#=_cH1Nixz63a(DuvcM6aIQ~WjcR>fVPkhP-7wc>dxoqtmP
zdyIl_iO7oX{8zl@bgGLIpVI5E0Yw}$T=*!FR3mkQA-Mam%Tng1WECQ)=|4B83p$Vw
z;Ky<HPirk*r;koBOa*=%v;EOfSt-1;_^is~(pEn#c=HXknK6n9N3ePv!?(IC^U8n;
za0o<q(uRn$pFIwb4ykcKUox+OD|Ci*XQAY>9-etG-wd%cbLp)~E@ggD*ncOE*TBUi
z+VLnuQ{>u+R`95-o-X1#1^pEITxU+ffzk=|j`_Sh0qK?sh{Lwdx_l*$my52l5)wgt
z*L&4|%V#4A;e@;zP+S2t?cw|NJ=QCq#ePNT3m7bj-#pK1fG)~hW#PBRCrQJWQusV;
z2Uy~K$#=*)+#AT6(8+I?SAMP7KO4t%OX`Lj>y9?~eh-5HB;^re`L$m9*_7yJWT1eE
z9GEM(N+WHe28KTp5yW<PqJ@JSF~B-n@a>ekrnFA-WB$CSu;Qj$9_Kq#KgM^%!a3$<
zsg;(^!`MT8lF?r*&W7d;46ZpgCiXA*s#0p(Ft+WP2qU6CDN-D0KQT2YxZ1cq?8lV(
z#>Grks!e>+^ULyUSiy5b88BA9zt)3Sr#cOM3qB?a>b_m^#Es{Y%FER^3T1xyFj-*u
zP3xgrdTU-<47Qdo**BFSm|D`RaySk4`y1y0p*?`7_*<6DREL9CXiz{>-|5;fidX&B
z*oB79Shk`h-QS`mIEz(4l#BF1A*M*RS55n4*vHdnm>pj<PB>a98O`I>Fx@;l?WQtI
z#9;XYV90nEz+;6DR$@8|X8I$&&T_EKr(3<flLWn6yl_~#xwX9o-hcS80o|av+ASXh
zuqa*YL0I&y$FTj_%ajf|e13$G1%{jNC<dKylKIlpL-)~bQ3ZMLBq5D(5&amgv`Fi=
zQzo6j-u>nIjCf(+*M4;N71q#!WU64pTOI814rtcm{?PYDd6NpLVi$iDc4V~!N=oLu
zaikHLFyQe7w&om21e-%C)KKV&?KSZ7R%|(mFRyW9w6QoUweysPM<JqTXJ<bFD_Y-*
zw*l|b^ES;42u@cXy^V+N9wfa6L5DXk`*UVU1cH}eM*35^9i1{-0aXQ#{td+_9xNbt
zm7a6g17PHL==z3L^7$MOs?%C^WHX4C*#_kHdjR=ZYxi6s_4i94iQ(fivUQpKT$$f#
z;3y)5oR3d$ZEcN$j!uREIXEsMVaI-|#Q@*a?&14kK$;Q_<a_em+JJ(BV$0=Qn|)(*
zv-7ukDA>%;fBF_~VOzB;jYk-d96gtXLPC+GO`XzrYG6<fTc@^BgGAw}+UnMdFAF!H
zLh3mqZE<m2%-q`z%CY%fIayWV=F5}mIyLK!R_7z~v<Q^&1TJSWI>pE8Wq8~hB~dEQ
zsr{&o_>uwSa#u7Ot2=skvw99p`WC|C^Ih@W@+iu@+rj8sZX#mM5?LNtvO=}q%C9wt
zgFXLQO=|n4Kr)J!{U`#p_xYxEoUdwG;+u{BF>Q4!&~T)9hLeNk`%I?qBegLLt%{~T
zV=ZQP_8Rl9{nt%i!6olQN|<&yF&M4WjDE(}o3~IdU-A@iCBY<!rIL?<f-w`A488Ko
zv=m^|q}ncgN;86O*naQ>Bn1BMZZ6#+Mxnr!MM^J9#CCpn_#4PgbMU!0#@vE5K7K0X
zUK#h@yxG9@cX635NTC|h+M%_LSl<qX{V*zYVfO-WW*VP01;@r_Q@6GH>Uh8I(=Hg}
zl?Bb2lVOjm<yg<boSdBIu5kMmm|kR1uum(^&dy>D{`~oq5k#I<RPuVgs#l@bvsK;6
zvgQ;dRf9k<_2BRZtAM;YgN_Z65l1@*BkkO`BB|z_2oBt0YY-GDhQ+TB@@M~Y%Mx}J
ze(eDXPB!}`#5d=GUp}Ej&CHRhu&}VNz}!5-yfcdL)kist5PYL&@FU?_jd!JMqqU4r
z)21rYkPx4LuvFO2Nz<<>#DxpznzKS>``lCg%H#TShOy$MrpVhw*+n01OVtI^XUc^Q
zI;K)DA4S~xutffIt2TTTnytKzX?6Gl%<Or8_7@wF6D{Ahs0aCxTPovZc7=xvkR~_d
zLANBCA3#i?@TEt7q0`?0dwFA+_pqj@<HKN<Xz&?(hmc5s53#Im>#a*6m<)*~D;WS=
ztk~!@SLKft=T<cCUHkjxM<9{UQ7N*HwRuLgW5^K<ubO6--yRO+x5}g(3#NN1Y{*PS
zvkAtzT`lQo?x>)MCLC&0v2>Qjv`i2u+<u7bWpOSC@1E~zq!1V@TE2hXndBQ<57!=6
zzJijT#M`+7^MI@YbaS^+r_#nYx38EZFmI3syuiBO4(b#tLzzzPKyeB{xsEn0f$8v@
zJ#)e8GWm{!qb%}k%Dh&#Gz1#OSkST=pF%||u6`7uny(Q5?VHwqm>+B}TQeS65O!C&
z&Bi0Ujh_U$`T2v;T@E&s9z2RnM5FMR#vO3Ct}xycD<MI!k}d529LJz@3dXmmQ8_xk
zJcxjv7sy-$Ip(N{+)X-o??21<RI9-53`~6~F_#OgJ|bJ;suv*$UXJY<g=|=`=>!%>
zMES@Bi5>fOJ^7~!*rI~%b@d`yb)Z!_EK|)EKc`4JSqiC<%DEW*M(t4*m(~|O-lXp?
zVT@FnO%d@wEI3>Y_{cxCHh}9EbD#PP=lu8~!M||M8|>qh=ZtkrXNXR4(sM^(<hxN^
zfpBTnc{4}STv}bd^fB?CO0X_t^BL@H9h0F#D$N-FtX8UoSip8S-GIM8;hNKQe@7tO
zE6@w2%hf78U;@3J49~%Re`8ZVIy!?V(-jsip!4R7;H_mZ76#hY>CvjSCV|(zJ*1_Z
zXgD0!AE6uNJWb@UgNeD1bV$XVWnBRKYMZR7>;o2qB~~_adMGM7dQe3qw7|CjVx_)(
zTPaZm-(9=i4KfD$%<=%!@;rq}9jk5<VmL7k+BSyMepOm|ZI$|_8gH#fC>9rw+V{|J
z?QEZ{m*>+aSUgAp-Ble9i^-s*WrD$$V^fmIP3&md8K;TfHQoqi8EQHn`g+|}J?Izm
z_KR;_5ZyZ4so>VieH7c8@5*!APCD{{$6W$N=uyG`Bw9$z@Mjwe-uQbM<lissd0-(V
z=pO2?Z2$sj`%UFu2`ZveR)K#57s0vqmr6$mr43S=%segP&9(jG^nY%j%sSM*<hTCM
z_jIW}gAKC@G8!pqxYYD&G0_Q#$f;3m;xk8?9Rgm4w%!SPn8O-~JGUG&U8hH(!Ul*V
z!lAwbElspiMB9*SjTxP~&l>l0I(2h8wd%#SpQry1VP^pqWw*9}M3A9NO1dqiJEf6Q
zLApb_q=ruEknU2HlI~6cQMwzXbLfu$p7)&Z9DUDs{@+?I*Mm!unR%YQ?|t9b^}Eb9
zi8e!2zJ_>*prJt|2=5rrCje{E2akH0o3-mUlGV8x|CBhSd6<j!+tr_wtIj6Tyu7gU
zCZ9FM=xrNr;!=Z}bMfw$LxpkK9l*83r6C0I2w~Rvj1l`i<EKY<(e<98{*n@jeC_m(
zBQNtFK8xF1f4DTkFP{IdPFC)<6S<G!S|2JNF78`_2n_Z)iWkc3#KxOv=Y>QvX6m&@
zCa{Fj0`4Edj1-^N29us?^Cf+sm)Fs4&6erf@+L%-Iz2D%r!W+^9%Z9yOc<+%?pvRO
zpzLr{HVt4bfkDXbt{CycouUOE6cyNrYZ+cmv~R^HB!kEo7a=-HSAbLlHvKn>trkmQ
zDcdq~J6}my`N`g|%>4Q<hTe$?6%XCd4M}7Dfb#i?v>H$RRGRZG6W&X!Ql;q9pFxYV
zbQ4cQ!W1*aeGD~4Oi1bW1ZfeNe}drS#}6DrZ<BrRgj(<I203?ET8t+nbEACo56|m&
zP4A!y>m+WoQ7=#bvQs+SHeA7Z+9Z$eKuSqjti!peZGXBOuU&zK?bGOb9L;GlCJlCh
zOl`D>lo#PJNQ~B=Z&E@6(M#SG)Rjn~3)AumbHDkrG=As!qaz2<qWHADx;kZmX<gcV
z4;Hy69=tCmDY<m}_LCyuQM%5n`+T+eRI^%D67Pz2bxbfP!a4?m+iK^(89_}@WM{a+
zZH=jRlo}hGeTpoAUZmSRmxORU9ys=*-6OIeI3f|7U@6l!Gxj*au&K%dnSMK^iy4h8
zwLit+XLu!Zq^yL#6Z;E6liZAvzn9zpxTpD$d^YpZf<qL!ut+VG7u4REH9S#y^FqB<
zMP_|W@qnF6+Q>b`p6Q&QjgGZ2VSBnl`(w04Bh9@O)HfJ-tXam@P3PuerzzVuW74;e
za%9zD(vO&*at%t#*SuQtV4VoUDlpHdcU;Fd8V^xSttuHV)QnDgs1SE`WsufA)g&mp
z5YF11sn*E;v6o(UELmo($+gKDR`gg6NOD*|c4r;TxgAzE;Vp5NWoK(e2y)GCxqsb%
zNMeo@UnTTpsAD;a-(4j$RrHDTR(9UF#9pR0t~W|DoC@e499Wi{`_SHNG+<dGsOJL1
z0BQMil!zu?(2jlCQSz0l)w}6wRavu>>LHh9$7r?_r()}D1y|)gA7kdL^5r6kK!uUk
zZLmfWjaLrz#p#A;$~8;B`F<5Lo=HbIYoj7tv!-8fM*b$3MLH(X){)gB6*b?u!o!Z$
z#qk%l=;rPKo3Yn8>NQ5|N6hc_wu_?YK<%_0+lob44Lq%a4_rr?X#86Cff08c9BdH-
zc}m)(y%4+RZ%(S&9M)eR6MBB9PcW4SrovS9hT(4oV{qScAFF`&)WATMb*g0uN*5Sr
z^*(*f_v)KN)g5TNHw!E)km8-cx;1Q!3)o827|&YffV(t_%PLv$bEwR2^R4H`Tx0#X
z8;5AfbK8KrS%H^hOzRy&oBq!ioWBvM@;Dlr0C@4cc1-SdU=F-PJrl~@^zcl_19P5y
z7aMf-)*|?KS<>eW(=5SoGeL^dLm9{QvSL^Pe@4kVa$y}5@J&x{0hBP6ZI?W#-4if@
zO(#s8`Fa)w0YXaGk#XzBFjDY~s6a^#K!#Ub19||t-{eo=pE&??JW`ueHxAU(Wx$5t
z_=avE{R16VB7C)oZME-OO-#CY?#%>%-szqfX2lIS5py1=vrGqMa1f<0_S|GC&ITCK
zy{2aC^pLJUopUoD{^A!pS=4awB1yodY}_Nb?|IGXa*X2USV1`o7I+mr$2VwM8PkBc
z`o;!gv)9qc0yxw=KRCy=l%%AC1)OIc6T&D2H4e2r&sX}cx0<*F`T+&6D(nGg&(@{S
z8Sxxj^UZ~Yb9L(Vm!oMyENtuqco6r68`2W+3`GFwR6zsiqga($rwo~}KsWPpl)qX&
z5lg<l4u<W6Wzi-&b9}6e>9=tS0xE|%0xaWfVHO`&f1ig-Jap~fd(J<Ol9_jLCU{Oc
zQPEK21m~FsS}8=8+CRLN^knGOlq)mbrOC@HV$GO3BBy@)@jF!HsB%G@zwu!5Fh%HW
zWOuXbG|zD4(^3`hu$(6?R6vhN+abiPsZ-9=^KDE+6}!nZHiI6$eW-ckv|O6TmO6&n
zUbkuQ*x_!yuK7?ZudZ8K^*QUrH&0vJAO#MC0d(vKV~8vFEgJMDP$e|ur%%N6Cd-Tu
zZZ2U3fhi)c?`3uX!_W(&r%5qKSy)s0xsiC1tA_rL7n1K!7(g-$KRm;^EwYa*HQt&I
z0AOIF0|Y_s_}cs?%fe)xGLz3}WPYM;^!b;zkG`u7=I@jO54{g<M$6g$(n{{9h<y7j
z9NX(<M&Vceq1LS_nn=rYQph+}Sr~J)9+<y)g60;qVTxWCF|ZBS$U+n;uk<s^%iR-8
z4G)64_ukgU;nuBs9>!LD{>C_3>cwMR<eI5)L)Twg#8!&A_YZ~{gDR=Q!~~lHny`U@
zI^E+$ogi+KWqEh&lxfKgOXrq~?nqvW7ix6Xe0wQe{^7B%U`_p2*|ksZe$(Y{fxUbh
zpJVj=?ak?9asSNWaVnaI?Xn+7o^bMcgF@H0Z{GnxZkIl&g5)KZ=u5e_#*--vF7@j8
zCl~h?)0<&;&2T715!6*wzN}nn*B91g*>ho6Rawn@kf9uqwJ1>`+4v9>w+wI#=-w0!
zkKMIfLMGDE!)~mCN(BNj`t~gP_=h}a*xd1)GaLeJGB$TtCocK!Df=5;3T|d+m($9{
zCZ8@DUBBE1G~z-0xauudy&K%SD_}#OgLwpQm7Mm$5A<!?)7DCtT9kJ+Z9KNOUH+I>
zNN4gQv3zO!$a^W|7Id4)mGdYb0QvuoK=|w06df_m6`N3zq~Vdui?|%op-wF-O~U3U
zuhQyVKNsu`Vxav%w-AKte*{r=(v0_TeKGG!$bF>dAZ=@G<wuIZy}+hWV4)6{c`TP|
zIp3rW2l*#(3lxQpv9FfNj?_a0il`_VvR(=^c-n?tEaWW>D_S5&@3r{~c>MH#JTxfO
z5ToUF9oaZ!N0I*K>-$bRa<xJe@#M}+8HY9H#=iUzwhfnUai0%^JGe&c0~||>U*yCL
zRh6O3%Q1mTB@X=IL3SBMSM42g75k#WG6t#4Pk+YM)JQMUuadc3?(~oTpqr9Zv(yUI
zW(5y-m$_hps?A_g>l6B?KcVGMnTuKQKjK$3FdRsQ;wG}2D1?r_4`F$Pjm^a3UOm<x
z!?1^fN_G#?rC=`BSKdC1g;m=%_1yo2%56~hv+dzpo$i}xeA{B0`jHUQSD8lr+;<Wz
zzK4B&rf;m=!+M{micV`x0&!jm5r_L%qt)uqq%zY%8cY{-Y&)n)NBtC2^~|sFPZ`2m
z4+GgsKvmM+P~TVx%g#xC7t&%uI)}d~h(qy<>LYr`-dxywE+{ru2cX2w=Z*^mZ7j^<
z-t*B^P}qUFow_jz5Psb43?h9+S=1Hs)0TX%Er4YPh}Q?U{H4)9GB;GW8!l_wG=A2(
zSxDNwI_#Gs=y~u{A7W*-(@ARM&=C%~4s*W#`BRSfctk0j`y@s=?EOBH!0hDyU67d-
z4_Tz{(5s<<w)?5$(wz*h=>k-6pEHtT{NZZvurt?)7of^)@<Qqs((vZ6JuqpcCx~?2
zvpoC~z5{5p3XIgPmj^p?p3>{8)YZe^S^kNZpV}akZHM4~2fiW?4Ld|s_<R{36Bh%P
zxK8A+zi>~%bbQ>le{rfL7flYgk5qJ^ptwl`CVYh6CgQFL6-H)$+Uc{_9soVB!tZ9i
z_~nTO+FOM>PguDu`t0?lI~{*rzUOX_d!o8|JOMzG#!sxpDN1~KNZLB#dXR1tEpEam
zfFLM5>_&O)d#58$MGqzNJ&1lDb$f6+^PMq6t7|%EM^V<=E>f=ngL%Kk3v^qLNZPKk
zifR~b>NXg1zOSBK0`6<6{ruu7#?-e)zkQ6RCxBX+NZMuzRX#THIUzYE_aveU<4Py;
zx0ZS!&^N`h?X*=){+EIBU*azjd(?%r2Zpo_r(2%(PmEmt{!~)=w98VlamhSxr^(*(
zW__)$^6*@}(wBe!XkvK|5qBZ~)I!ik?`06GIFz|{%ryz#SwtgaeQtv3QmB7mHs7QX
zMK?qhBqt{~GU~uX!TT;dzRMqFh;`8)$91AQ=4E#v>I=vt*6+SJHjum(X7Ziq-e!ee
zd&3SQq!e+P)U~+2n#Eoq3Fn)|bgjK_QZ5EN{@3;}XsP)72%wWVIMig09x8h`+<aZ;
zdi)l@2u3Uz*@nYjq~*e5`CzE1?p^d#-O}d_sZOc!)3xl=avT&Gp#Y-3KgA3on_cM_
zatliuDd1YfYixARRM42lZ=s`Y>s{3GC%W&ZXu!D+k_U*MOY=WKB~w6rL-1|Y*|8KU
zP?B$U@BZ5t-)?sL>@xYY2Gi2M8oQ12Us}~F#n-o*J>%e;oLmFg8?ZsgAs~6;G+NEn
z4CW!i;+Pxue4EBaagbr5yS9A_lH*w7(kfR~#y<#|Y!m@ov%}wMv2Sm&eFdPUDso6?
zZUEy1-yM-NXlBo@Sy$}gI_X=&V^AXA4i7Z@j9DF~d0uQdsY<+8fk65vK={DRJ0$*c
z#6&G65Y+U6!iRWf>ygv^d_z>P{c*6qRsk4gR&ErQpEurddki@S&C@5g;yQ`sULrgz
zn%sTx>Mx>N5ON2O>7grl4hcNvgDg@#^dG?Ued={@@v#ug5jt6pLRvm-SNak>z2C?Q
z$qYCvkQKvgr1qMEF0q{UzY%RAvTTdx2HJLw*;3XOllZ>!LX=wWaz?n5T1bT6jnhY(
zPOZO}Xo}guLQ&rEvXhcIrI}Up)ZSad7_w&7drd}F$lC8yc$Y%n4x4JGV%k;^$F9v*
zaBl?S$pWFqT_uIBLKee?Xy_WX*Zn`tj9v1jr+^h@bP*C6ymt~&7I+|%8_v0eQiOS$
z>!DI@J)1A8;4jr>ub;s<EpC5-siWs(f|;&G?OLh7xnI8rfGNZ8HEL8B>C1#H<TC8E
zi9d<SnPFO~`{c_n{pqOI2=yjs)|bVOD3nM#{yRofgcLVuGnU2<ckuPAXd5K2xXu*)
ztZWQ2+APVVb%o-Gk3N*O`K33rM1_=?CDuqt3(F<fF#59U2OC0~OI~B)b0p&UOyE$k
zeWj)p589JvHSY0skD~e?7Qp@EsvuPIl!#zl2+8947u8~&szldEtw@*+3VMjxF@X;w
zzrS(jV>ozO&8g^;2knui6JXOpjySon6GGCj^#I{(bV@>_(Ah_0GOat)<zdd@;@_Dc
zs=&e$ku=JT3Na{VRQpeNF_~#czhKi#-sc^WBkUc2z-=|hbobuTyB;uHmD(!p1^$<$
z?_b_6$uP_oxLaCQEIPAb6!!M-EK(2TC}!}*gs-DAh*4W-MzutVQ_*c^whSsIJF7h_
z{E{zfo-gP-Fr8I;pNArz*(W@@1y>TmfVsM6P=}&{H{Eee-8BfOa*ufY!{YVm10-dr
zb0xJ;6qcg@*kMiY_^WEC*O2Qj13KtNd4PR0z@zNwf2vwQE`E1R;_pkWC}NA&9~{mJ
zsngrz+aTnga>Y?0)j`;wJxAA!aIX=1VqLL9h2dw4j$WeIl$9NIuk^t#ZCKPo61E{D
zvFKaP`n7bo?V|E;oMO2=U@S#$So<wXfuZ~m>_|Kx1yZnls0F+XaIre#tn>@7$rfsl
z2)KXMv7EFg;@*3eOTcaJdwyqd3()v-vxfJ{Tk0PnMN9;8KPNtDDfoPOBgxnFBnYDz
zOsmPNl9{yYMsT^OBnNW9AVQ(>)5qePz|y_q+H1*19L_NlXdg@b#(Z<L5cct`bNGh6
zhZSquzk9r(u%Gfp=zI*t?yTn!ay0Rr`bcE?yQ%J<_5L@A<@M%l%VwJh%UR|?pTaWr
zQx1$6Dq@yjciWMIFNrBwSX_+yX}2FlWB^)puU9T*VpwP9NW9<peT%)a#r~_$Ff}%@
z^0)VT1qTwQZhlRf=VL1<>pBcR`r^gOW;JDUlh3udKuGf3s07z`EIx_PF@9C-0aC=6
zr6Bv;rz01(*SqgduIgc9uE$C2YZk=^RYLsFEw)xp_HeudUqc0b^k0+WkL@A&;e^8j
z1r$C~JTeGq7fURxVnno#41N<RvjCysOlLzyizKL)`hL<8>;doXsUdA1Y6ZS*9b3@9
zdKrMsvu6--iV#$|XN}fx2UYbB6y9Qjy*zgCKg8iA_c$7ydIP}&S+`GhJ&xmCiH;bB
zEH*h88}lR8<$T}EpLsv&2xkf7d|>#{r140f5}-$u2)<_tdaa%atqDcKC}6(C8G3ec
z#p<vFX=gV?2j&T1KpuVjEjZDiQ~+A?EPKB<5Y{pNfzrdLWpMV3O;fyplQ4?jM0Ee1
zPI(;n3wG#H#XX&4k7h3Hh8xYTvBH#H(UG;2Bb$ChbnJ}6N46c6=Z9Aj4qJn`*DdUN
zV!YKx&7}yoV4&rSz2tVcy`qAHBX3o4VIo#&`T`t*e%q0Ksu&P*NQsH`e+HatqLEEs
zkm|YZgtR2D98SOSnjrb@Zvu1{nooCMT8A{z=galQGOr(4k7g5?Jrwv~aowKc6CfCT
z#E2oG-tUzC^h8&tPY9KBPN6M4u=T}~N68fQ#n*feohrE-y(PPnvP`Xi1OncbnHb12
zV<1yWda7MF0ChNmAbFB<ZF8ivo#ZXx`t`1_YZOQDM1JU9Ss{2gX^bCs8r#q5PPi$f
z2+O0u1`(rnrVYgy<E|$=Pe!hYv}{9AnYnbI)h?rGV7XA`{_HJG^WGl%?1VR5?YZpd
zalZ1R7u)99UXNd}D0H|bn;NP&G!;T>Av<#85K0=w=5ax^J6s2Qw&pfh-2k&o>q#8=
zg0xWDy;BJZ&#>>~^#x>hXWThkKv~k!r<tzsvkXJh_#h&!Y?b>;S$!w(T6@lS6h$j8
zV1^5^YXNfmE5`eYfh7DLWI@`*=Xkz7qUN@q70B_Gl|i1x1#vKrK*#v)+fDwvqAN}g
z?H{S3wBkYf#G;D2wynq)t^BMVPQzd1@vEgd1}r)+@!O6l+_p<25?KezFjvI93R}gN
zK-b0w``UUil0wjRq&6V_e*Q<yut#6X^A)>MR`>4ja)p^~*6Z#h{zz-)JY{|63Py*=
z!w>rJ_-8i-?0>lg)uflRwDtTIPt`|bca$I@gaVlJoj%|~P^<d#a)il9JY@{$xMf@;
ze;&a6vLpp<=L4IpI2~pZg}9Zm`~U6b1eKqNCQb_!88*bHVitOD^4=dk1-K7DWDA!V
zdPDd9#>o%&NkEFCKZXFz!Ro7Sv!`T`+E;v$2?hnSrMP0)#uA<LH6dzv$cGO>wld_L
z%8x^2=>_;+AV(PU<7byuh;Vtl+FBgcc@Db7Zx7gh`rA-2ynjzGxvXZ^P$1sjZ__CK
z;zv(-SIA$*8}ELH;gLX(<Hpc;Xvd^c!N86@w?dSl`XwEsNpq5W{&8ZEYah>&X|JwX
zM?4O<HCI-ae$@?VDal7N%Jb=bOT^)++Y-LqX4RPYKGK=W_!bH}d^8POR7OOiGd@7I
z#$Q2kL*<jiZepHWZ@1LBAuJ0r`rtTz!qyKWfs8M;JqKvtfQ%m8GD?alLuqIsPF7u6
zO*{JvGI&$S)RAyDAJ9~WKC6=!BX{0(cu5@bp@+x0=TXiXrr-3Sv`ELj(pmZht&cE4
zl`~}QAjWj)$5h)k)Po7b$PLj*kz&lYb~vB@*J=Rj!^o~rp}|x~?=sLUbe7Svu}^z;
z6(0s->>WU;Q-oh7sUkBuAlRi>UR)r3!TI^iU0*+|ch0&RfJAwg?Y&<v0F6b)Gb)Q<
z^gEOmm>yndp15eU?>eqWaSLm&J3X912tdKO%jt1_M&(6AV%?$rU;O5OHHY}n?u6m*
zl{(oX=_~!YzWlY;tiMD$a5j=Q&|sddHmet>XEdMp!>)l<7fhEN_o^BS1R8mjOI|4Q
zYPY#cy>QVl-QQcmWt}7P3pXu!Xp#f%3E3=JA7lCsHI?HOZ8b=%nQ0RI;eRe4d*y2Y
z!cdxvay3EKf!Z|&uR3PmAO|8N|5bH>$n)cD9j({q3<ZzFh+<9I?-0`fA=9{Pos&dv
z&F0;7$|vDn-=^MGc}{2HEjfbb?hG_k<}`nP%;Zoric!Er&j2IFY&Td&ld@Wh;g0_c
z|1KiAo97)bGpOZgks?Ztj*c$Mz@Ex?|Bj+e(eV6-ZvS=$TMV@D5l?8y3E%bNUln@=
z5h7I8eI-uy$nRx0&Sjd{&G}HdiQ*0oA!h6JA_$tFmQ6^R!S-M1M7hVj20_PIe1POa
z%nY2`fNVivdkq=1L=ICEKLUr!AREX&+_oLj)#&|%i$wLS+M<zE2K9iz%)S0lCrck-
z;?{AisUI=eq1@zc5iJExeX0{b)gM6LlxuPgj1)3LAlbmX2-$eY`9o~1vJFXUInA6a
zdlEi$^;Jf(I&)OhhP<G)bu;d!Yex|7lmLTEhTASLe(8d&lx@iV4rt0OtdNxFc^LEl
zxiMfPZO;&1_@0`99i+XwO$h$T|Ncva9kQKRFKwQ0@iS)({a3^Xy*%Cp+(B)ty`nUo
z^X*!BN_TT-$LY%v*3Ch?wISxlA>5F<sS0*b9_VbG=&k;gc#HRF0`*eB(cFqhI9nY%
zyxU?6jGYrIb7AL`<wX4FvuiA7eukPiv(6Tm+$MeF3ZBZQKPIkPTd9ZYoo&*tTK%^G
zWmleOM{tVEi|ic98XR~{*!Dn-1sBD0?#sq?okmyQjXgXuS|3^;@0_#DOcpw}SC7%z
zr*F!9Md=>aoalboy{Yh!nxKKdG_qubHh?kWRuo=KwU77<=p_o#^q>PrK%^?0`68M;
z_|TsX1Y4DRKhju;!bKOmdVljCGBn;9LB2&N2&7DofJelRla<)~O$u1uHfymxe2L2&
ziQAy?Ja-rU#ruSV6_o%T8|{$`<0a;OXA~-k0txkm_r=@T{R^;^7lO7r)UetNXGn3_
zXvivypXYA(v#^>sKK~`q8GO@28|EgfX@B7{WtPJ`t6rk#a})6n4{JO7^XGGh$}?7^
ztUo0OpjU>&V-Q6$w^&L!Ll|C$`Nt>x7Z7NS7AI-oO`Bm19ZgfY=a6FUlx57yx(xTG
zUCx{zJ=e;^=RpIx3fl5#8@8xedHm1K+-eNx3??t^3ZVmE^Z`SX=wSYKOupKMW#9;k
z6@XE)VQu%R+10(jK63W5%5&bc<}lOK&GL{|YZjn>jR5S8k2s(kH^!*~hT;Pn>ix9?
z8CT1U7yUSli!E3TQvG~ePZ>!lj7{lm>2UU9DUKG1lV<vF=}GpXTJ!tSJZJ8xX!}?w
zA&6P5+S!MYLudLtui1mZhoOkLGANAGg7mzOTRh?~?5D7?LZcPLp2bcGEp<G6h&70(
z2(&Ej^AIhUmAC`oTghMRWbfno)VESEh%0J29<}q0NO#2I8pK*@bQO>@gv}r_JLj65
z-T;fZHj0m?DG?Eo>e>}({|@t+?IKlR`sE02u?~9(0oxq*BK=T^{OlSv3mmAu0-}HK
zYZ+=1civ~w;ulc4C<odq)k}ZR^ZI9DO34O+zeZ#Eu*dBYa0>|nDZH-s`+Vt6IYr#h
zrYwpd{g?*<kgjOkELDDs{LrI8sjY^2u~aCSa#&D!34^J^=kE`N&4#l1)FlB?G&s02
z3U@Qr(m>SyG8|Rg0tf4I>QPRr0S#@(1w(ar>2-Pwde-(eiT_Wi<RZb?tg4qw(x2LB
z9~|$scMVcYg7*!nU2QS^9~}PijKg<%eue?(pU4c`rtg*GiIRMD;`}APy-1e%(LeRE
zF@ob)S5FCKgVoa4$V%<$;vg!6P3e8u>|{i7h&HWHJT*e8ftgvJxP*jEhLFcHXvQTp
zfaC-Ps3g>=ZvA8E2s*ZgzxU#&NFnp2PIYutvbTsUwUu5d1L3(v?MAm#B#y4J9NU3I
z$IH6ru3vHac2ix}S_L{U4Vnw)VirnFWmxl4bkk@E&QWfiIMhx=m<DG9c#q?D3JB<U
zPy?sT-d;BLxxW7BHttF^%?`u;ep$5?m>_tcEgj&wAgL|U^s*ew&t9~|kcm6&%>ihu
zxIp#HyHKUcFcL>EFFr>876l;AY0>1I3rq)*VQ?|=G6-f<u?Yv5*)-ZVzs!N1S?eG1
zeqK@w67ca$0*E-v%aI&82UDp$ZZWEw{Z7))vI)=Fyl&j#L^!mx1><6Bzmg%e@1EdR
zL+5Fqt|CZidy-91()x*^!xx?C*?nk+I4Rs8w?zF8oC+{GM-A5C5jsBHf)Kve`yU5u
z?bmv^=iO-qU5^G%Uu=;yfIc^vaE}^TY3d{{9Cj5v!dw&*SvOM?>%YT5C=9ZpzHls7
zV{E!Dg>x?_TNJ%|P9~mpX1)Ks+tk0f6Ok@RH;U*qtrD;)w8aXRJOjE0;mB>F%WZb;
z0jD7u5H69Et|8TJ@xve#)-weRjmV*ypoz(Z^HcQUy5gSYA-BnNs^`*0QOz$jD+)w8
z0UHpn7JM^z(TeR!wbYsPjjT{l57rd8pC-~$1Cs82Uf##=t%36!g+q>ACmY>Px$w!V
z+vv+*{I)vzIDrh8JMMZ=l+P`tY3{7s|51K|rkMbn=mIezu0?~*`+R3fGPfQydgBFR
zRL)<WH9@9%Mfo2dE=`tJP>supk{uxojyS1DAc3MrF7f8(w0RtL4^aA=DZFi&;3LQS
z-MWHLT7;J}h=Ftnk-<200gS}2WH%wr=Z3BnYuQpx<h$F3j8BW|LrAR*D)QQyY%O!Y
zGU1OFR`n&DN8X2N8N}S3;;O!uPN-pHIOahkyZf<Ej&ARoy2Nfta<W9<5ABF*pmsT0
z_Gn2K;T+&#Hd1D?BH&H5T0qTod<XeeuX|IbGO^nPfp+a3`zFT4efE_KI%mmp03^&U
z6pFG%b=YCQuxeBmrVTjtB%lk8J$~{e-1+!1a9j@0Oe+dsD~n;$G6AjT{NMsp-`Jf}
zTBIbXaJw^y`<d-^%~p%2j*d>_+<lKju2bUl1url|g>)o9rqhy>AMg1FMNZq!Vhf#R
z^5>~v;v}ChA$O{rjm6%>TC)d2Fv{GASiYiiS|GMsN4RO+$9Bwq^`~8QDb<D#3dPG;
z<h!zvEl)s8=36WEb3>%Syne3|=#6(;gn20d)KaZoR>VXiM>El5sh(?VYi`#~i0r!5
z3`ixA$=RWMi>F}W{n}3@FrVQ(=fY;(b06@^`N{Ta({(LyDE~AHWY)sxL%t6#H*DE8
zh?n)=s3>9jrFF)4Av_dluntQ9a^kb{uln_$7n$^^%O;kwju}na8Jy)AF{6|Mg_o0C
z3Eh3gCOu=tb8+GJy2JhHmAc<=$meBVot(sPBW}_7w7)>OUG~=hHJ;JB)h*9GO9w<q
zxN?Y>0P&dQ`mXkTHN}x_<WwM1CUX=rGBQ`6+uR9Va7?+Z>5S`7WBhR47M@|s<)0Y9
zD5?8Hdq01K_>RC+=Z)qD1y#cB=#Pbm9ED{p0L$vJ>e!T3#%1{P72~G$_o8Bnu<laU
zv6&P5_$#H9_Tv@LLrKHrw>n@<$wj4i>-j0~;wE6)TF;<888g8=a%W6C1H?IvrA54h
z*ZOiPT!nL|cT?L%gX7uePiBv~MiiZ!zHGM-Pr=dV;8AlXA2TI_y?`(_0zD(&C@lwz
zf95W%dsnRF{b>%+m$;@$(Yu{&M*(%U6cxmOlFik20Y%&b)^HfnGMvRZ@4i=oitVvS
zykW7<FEBmpx>cya-{j)HRlc_4Y?pi34Rh;%E*)U;qr1Cglvi^k(76w8iv>O9)ojDA
zs*SjHd%eT6Emf)p_k4S-t@`Ex1*-l#2T11DI=dcTD~sA5V_(%hGoH`r!XvieiCvB%
zzDym(H@oOiB7exJPPuSAT($s6IhhLe>&#OX`XwHuPP&n9^J)E6p&au9@;lr`cW8{E
zH4fvETrC?QLr(>k!xK<jJUNSU>S@(Cm9fj`aVWBWHKL@r!M^j%@N{qtJ^%{LHMwwb
z{aI!C$4SSO@6OYAeyziN6`s#GHtrrZ->$3}%NJJ?$Ql?g>~~Qz1E-UcBKkT92J=sl
zY3Tb>2}I4=*y;rlNZ3Bfh>rf{pDIcY-RKhO+KHgpz+uM%Q(rMMz4r-L_;+RfO<E8T
z@1D?3Mo@b7MY+55RTioX&Hr;G@ULCCg78k5?lzL&Y;kK3JFQwP&!@V4jr_0@<jX{y
zps)qRg0YKdSSF2oyT5GkDk?8H^jZ)KAK(w|3@&V}*^=ChBVda_DfWf$K<%<X&-De6
zuTpKeO{TcIxCz~+Ef=~J_kF&H92lH<OERWBN`OFXFAWV-eskuf@Zd3NlEBLg9U=MY
z9~@S&(_yEyzB3t9^UK`F59wwEwj`yer0qUuShE1A@B)Mp2N#$6E(+F&^E-d(6M}Ox
znS{ufJy7o1Qo}%zhWkPKuTj%WSii@{#3<!JR$sMXA3lK)?I=Q3ay~qv7826=A-Wy(
zjqwI!@$2QuPC*XNmj{a-*wu?^Rf-ux56T`OzHWeNMj2R~FyZLPo88(9q0}(q&Jp)h
z2*?^>G2^t)PzuC|%1y_b5Ut?)3bL~g?@JR)*Z1}gr+U(A@k1ARAx9+E)?TkDu#7+$
zrGw|#DM=TvyYmfUY^C`0*WWs%z<Q48AuNQ)v#5QJ?RDmNv^%Rwi`YV9P*243<@4w7
z9l`jd%eopGf0^6oy?7jUXVhmuU)qaBzF<}J1f1)}O{ufH7$c-?ayY$d{MA`c$uG!|
zBgikd4A*{_NKKL4d15YJy)A?sv9m2}?zj7LVIA|_7LBaYt&J9s=KwWZn^&6#Z#dhb
z|MBEWU!|2(>ulHU3qH(xQ9*HQ=pxE%ZIZ;7S-pJS0e@fc{%sGqi*we5N=6B|;MxlT
z5^6X+0Z!g9X-0&_1IhwacxGT1j*x*wJf=D(?lOoaX?%wA1Q`sUM7!?NsvN?@sb3Ny
zg<W49<9p}!FHqy11L29|3X#g<=bRi1Cup0<#J#UHpZ;hW{c%2YqyMn~{cdOI(iYyR
zRie0qLc+n!*sYg}w0Hv@My+(z_W7?@A*9n=y{(@A{hRR9dOy5#)?x;sL9KA}p%o=*
z0G5ykUwV7-+C(A5@TNHdZyR}iaX1jr;BtF{Ww1=I6|wl~6V)PRh)(b-f<BVUS2b#o
z7JABuTuQ4o5()OOVcfnDL@8!*fxl@B{`IA)2~y8VQB)gdIlXm@`jAJPU)j#i6V1jz
z?XJ0^#jGEPRXsPAuxeK~%YVJw|9P>{P4!Y+yD%zsu?FXIM`r;-|MtzBINgiAk{VzQ
z-WdE8h(=-vqETyV)DA_z@dDuDY+#CluHC0Xoa4(W;AHlQNnHY}!XDsBtY{Q_U+RQr
z7x+iBAAIy0Ng~Zrd1Wpx0TWEgTkI7D{{HW!-x$YPmshRGROV=~prN5-NA-j}#^<Wg
zaK%)JYWOMo=-I<@!?2h(nzrnR#ma7JGweEtDoJHk?jLwReR_1of|6ToF)v<-^8Tf>
zM3U4NdN^eC9sL(iHOtqrO4w78@?i)0&0Q@<g*hK*Xa`GiqZ8ibUT=75<$u*J`|<Q0
zI^hxW&XlK~#a3iU<iOEm#klwaHmgkXY3ylO$k2=O3q`ueTr)woz7-0~=xoP^q<9ZL
zZd_w(RusHFNFW?*j0k{&xGN<trXRUX{TXmkt!*M?JL%T{+)YnZ9OXT5N2MyO-mfxO
zG|%rbzD+)*vl-<$L=p2ktTK1|`nx&fZyyQxJP-gsbE*;a<JG+`qoSe|*pMQ}fa38>
zI=Nkg`RL=6nU9)Yzq$#nyyO0UM~WaI;k`DX6Rwxu9wXdHj;D*0>>wf}_%hv5#QH1m
zD;Hvd`S-~r=GhDS<TxA7*RM9C2KHW(IEWGnN}kVd*^~Jg#^RC$JSf%Q^zM7C5yo=-
z{He>xha$<u^{63Vv_j^QphvH;J3PBHxEfN%i0~eKU1_>DNO7_nKozW{WXShUpRcYT
zDDXVOJ{D&bH*fS)*e<-D%y^T%a*46^c+d{_v9!2w-HFV|jhfHWLTTf1jeR7PX?$ya
zYD=`)_L}vJ&XHR=F1ctB>K((qJ3h2fBovg<lW7QfRC;-V$TT@`X>+_L+o!SV=EexI
zeerr6-nYeh1YzdJSAX&4tmImhk{OfiDb31N*qg5mQ!2mx_jSh`DS`}fV40eOQ>X;%
zi7f^?dW>NNuOy%I?pLDM%F1+cadCB#l-95ike?m%-0z-Dv*&d-I3&GRQDFf7i!z6e
z*C2|<z6Yty&$aLc2O}fn2b!P1Ggbex^cKFLnuMHl6?eyab~%j~T4AJ<%7#_9s?oA^
za0&5F)u?dj5Qp>M{$#q$wn)b1Q5ltfu23pYS{!Iw^4<`G%+8XjPRW1YpO|)qK5o^$
za+^Dy7{C5o(o%?qO~704;0s?dzX~liqoCF5W0%L~KPE4H<-G>5!5HDjHx;ii=WDK3
z8;#hT?x33%TBFFLK9ma$S{#9oluq>)+B?L(6zxAgUDjFFSIs|{><+@lSfldnI5unv
zvyzs!s<Rr8FQ;I#@(BDzV(A}Uqw^=W`(IoC9~UC+NGvb|OnVh_z~BRtLIMteltC35
zqq0sFbgL2^DZIQ2!lhMSFlDC_;`R>#advSaAd<VMeF+}upc(#ES9hzjU1s60_T}&2
z8R&&30jlDswG|Q7S!fUzCt{1itZP`cD1_P~EJ1Xlr@tyUad0)Tq~A3^aINiV$t@RR
zcl}G7E7aPqNU|$l5(8or2!5Mxq*kpy39J{&p1e3QzCVV>D$hEd&a^ZqDv~%ruK^-t
zt)`rORWd!6%=SfueZxF)u1k+?)T6Sxa!FmBih2i~aDF`)j|_cx%5S5X6|gtgFjLZ6
zdzb9ufnpS7KdrR%q)x6(mDi2jXHVR1w%*ZMm*VvI9reF$gYFRjmb>p+BfG?@&@p$^
z5WB$O48Sq>>#~8tJ4wi+&ehl<BPcS`8Edf-H%6J1+dB5@%KiA)1W12RtKb8=A7fCG
zB=6qOH8I&+XdSAwP!+6qhUuV@Z7p^f{dQypU2&f(YMfc#QU8>p4<R8Bf;WcLML+(c
z<NB=j_(w?PUF6I5Y;&7h2Y%PoW!NO$=SvX#!Z7Gxz?GHWOPp7?nMve+-!>GJnqlVb
z*t(g>;C+C`s&~zxuB5XEkFKuAO%F}s6jbl$kFS`rJEN<2e7?vR<mDH(>RxkUzq4ec
z&MO?PxoC8J6E8njxZ^zQ(BA!~Pn!}Aw8Gg=O9`G&+0Xo4knsC%{Xf?u^xo$L?l{II
z8CWZ=xLIFfqNC~9*j@uxC9-}#HMHSkv%t7BjHC?gU~3_T(ZdW4pos^PSFEr(8;)fd
z)3Uojd~TUL7)$l>dhrA98JqPCk03I4ViN`Jb)5cx-0Bq!K23(tKA6+m9x2Dm%=K~N
zJ)oeE)5ncw+e6YGARxnIh_d_sIyFJRPoigm-8vo!>?TVs<3TG*c7HCda8hvWf6cu8
zYl-;XnGsHdU`6rK>iJBr4jJj23l<XqWb{$RUH}nC;#xmJmek7U1RXq5zxs-bk?(-V
zxIu5-5p2_Zts)soQAi^bL`2HwUoQmEF=;HuAi3$j^EGDN%AXx`P(7G3A+}~MKDPau
zR}`Hp|05eVflmL7MxzG+(Uf#(zIz0u5Lk~&cGrl}EGcDw%ogcEv+wAz;#wlbAOBlp
z?)RVl_v@V?gbMGH{QUd~qK{JvOUaxTbgZne8d=*6X+>YrVyY-BlXhZUl8~UZe^{K*
z023ise++EwY8l5Wz)^b#v^Sy0kn>5Cj8RS9v^Kea6+HjE@KK@rkWu=|=~)UB4o_Q^
z=W&s$MN+{U@0zVag8B}jQAarE8;WB0|5`Ww@%?;GL=fgk^&v{(*H{D}rzl%`Q@9IS
zaMxzii9<s})3(8hsjtZ`2cW&N3uR@ut_N3r_TUMHxKF&bfTK54@IP-B6h!`}o0s*t
zgg|8z#rkd}_j{S~em$On0Kdwc_)wB#(0ha0`FC}eT{Y_b>daErrCO2rR^~Q{7Bf$q
z_bKql4HJJhok<3+Wb$*v5)uwc$z--Su0nJiBbHC-u4hoo_S^eE*OiE)Bsf`)QY4mO
zlLv~($jEeUJav2Ve*s(u7?5VD^9S_;iFhQ%#d#Jorz+x8QY@V5si|8honhiqQd`tB
z>K7rTV!a*Y0^ESDX$ca+AB<^WpZ#|J_{S<Xh3ivMN+dfL@GUx{Qo?Q2@C+$9Og8?p
z;`?Q5%|~hSx#pJCwho$O)mxw4y|RvkFO}i0o5$rmPdV5`CAFMOmE+?`vkcRhi{@!&
zrLYDMACkt6$ea{S=8hhLgsGAmOEBl$HLq3tzh2Z|kC8kB0(s^rVwIbZVfH>D*rioq
z-{5oWzFNRp<hkVK<$bN8k&pNdcvIjb3H!nB`$R-Jl-u=<g1?CE8sI02wX6I$1x7&0
z%_H$UQU-pz_&7;r*5!kBGUl6-%EL!@yArSOv)|;!w|y;)9w^Kx@6{+DD1d#xdnxmN
ze?d)0?dd2*<o)d_+E?F$U+cW2qp!WBe@LfR)~rq|v*B^%u4S$YntmFOLtkWH=4Rm~
z>mQIo@E6{&V*j`O;g3JhL`8zDvQg17W3u~Xh6*jJPhhS4L$b_oU?Ct?Fl~FLR_Wm2
zKsh(ab_5Uv<BGKFAK!!Ob+}Z+v9VO%@LC60FjU|6Ceu@}o1yfF^Hklt^J%(|ca2O2
zXdCH*D8V%I$@S%_v&o=Gt~g0q9Tp+O@7poBu3+^6Jt=mBj+cyAM@0*fVK}8PhJSja
z71W4Vqg=$j1vF}CZv}~`Tix}c1fFF__-OiL!RB4zatHKQL;1Kom^Yj?HiO=4$yfdR
z((zxf2ks+=5;4Vp7{EcrVms9AoN7doa$sX%kc6*&lw_A6D(~`ZL{1mM6BUT)mv3EN
zvfxFmz*VJGWR3uZrz8Q^84-bvs@T~3YdBVli7c(WC$m1eWo`a;|8YKSS)_ZZv|^VW
zScAKoT`L|eJ<n!A!F8OX{?qtd_^zC_9qmwQZrGnwivRYLGf5ysCDl7@(0~nDr7H-2
z#=;JUu#)5AE+#w&#!(QuM--iuq`u}3vO61&$21Wm!vNF8b&kned={u^3zhmhVMX@7
zsQ>Lh_&@)=P;>#-f31CSvSWc5i~QqcXL`CBrRzO95t<NKZ-?@f7=y#Z;|2y^PBwcr
z2NXPe^27q?zNl({BC8lPaZg`%HXTz!Ow6an{A&Wwjn4^J^z8p9fb?&tnty$n83#c^
zMn)9^9xyiBg_aX$+X}K5va-k-Umo~J04vOenK}8>-$P6OV~_m*z1jgjBpi>)rTyF%
zT&9XkoY6u*pUS`26D?6<3%P?zbYA@ok7hII4eoj1vZi$?=@SMejat2lBZ%f&MVu@<
z(?&(b<nCG-+F7^LIsbuv%F9ycwDUMhDlK#E$HA$&tF39`nBn8`3$Zqu&pk@|n_{lD
z!xTdUO@%hgibc@}*T~WQ&cUEx(Pj3jD`=ShaaQQI)_$<Rq`0h_aw-rOd@lRiU2wCo
zfCE?JPXc2L6Y0PA3!QPlEetd?E_v0hu@im)ftl>l#0sietonU6_!=5i10uqHBrFWz
z3|qe!r*|CkycZa_Y3Hz}@H$?XE`10{&ak4_pQU})Qw^|8-mg6|JlYYC_Rw^G@y6x7
zGGT&rKfWaKTpZ0?eeJm_Z9Kz+HLF?bM`HI(-6Y&j%$qiuNU-ki{_T1HU%v!(m<zc$
zR5HkXwm9YeqyPM9$b&_s#k2hbr2eNY3J%(#qrWWgr5};5#N}Bvu^Rlb!RqcS-bpWO
zrxT!h^9CmTc@4-|RMbJ#pV7VXv2lxKl4J^sw9I4i2d`*01EFPQUtjiTHFej}SuxK*
zaO~#Bsx9{4(ULul9TW@fNis=)1dP(7Y*~wguM->PT`8TbmUpxaFYx}V*F1aTbdCch
z=uJH@X|1-uMOW(ErEU3?usKh^*qAY?u`X;W1<Ih;T3Sz8Sy}5iKk3oxJx%CFqRoBE
zr0PS9^r0#vuM1m=nr@0+oxA{)Ph|~=YsCC^v-Q%oxX&e>LK1?`)b^K`NjwZIV|Ray
zyFY(BU^N~3LT<qQ{63E>>++pH)d~Mo&;I`Ap3!>q5)oIu?R@{A%gaC%DwtbRN9{j)
z{pxk*FA1QL#ibK%Au38(VFf82K8AEX%Rc9;<Kl;gphpdVu-Dx4aAgSJ+Bk2P9;?PK
z7pzHYW?1#7S07JW0hqh{$)w52OHkis^ME-Z+0V%exsQCGrC-CS6>hDrAL8J>W7!jN
zjN7jw&ae~@nHyJ1tbBu4cZ^?OiTU2&e|=M^o~f@d4y1xSJm+Vpe>xS!Lkom=oqp{G
zZd%%JjEi`c-+#!8!hNhUQ>m9%sPc}>lGB(LX-%}f-RN}aO?0_+IWJ}Q@mON3la@Jm
z>CU9P0`d&dNd8fv{cm6H$!7Na9G-w^?=29=rVF)n5aT~$W<J#P4xU#;?1~g#bF*8t
zi0{AE(PCtd{;e6cu!q+|g+ZA(8we?y@>lNcDF-m;JT?R2ZNmXVGvK6P!#I#rTT6Z%
zNeJ_}GMcQltU^PL%3PD<k2qg;9>U%}BK1nzR%27D!xpTpqVV^28l9iGaNjDn-yY83
zJ5E7-F1cq~+@CI$?87M8o2%)ckJUkCJpx;4aaLO6=}0Xu!u%0_G1MpYW^4XnFac8~
za$x*SL4HN&9Kf;ZX+Q0>DZ@1w)AL{!rz#8uYu|t;#9x9@=Co9JblxH<G@TuBSA)4^
zmm)yCQ&y}072dE%jlXz@^v$YEbhD!mzpTh5wf^9cafflTGpwgNyldu{cMm70QcrgQ
z9S@z{N#UjRV>I>@4a^_#){!^fI`GbF*?l9Z1M@xD4?q{b%iw3L0!CapWR4@R4nXFp
zEEwk#*iOdx@qk2zT3}o>0@}cXqhZC%LJFO3MZOI>5+2*kbT80VHttR4^gLvXLPDhX
zme6&cu?vJZrgfl;@7piPkfzpFSL?yS>@(QXE-n$9x%omIM?9VHH*GWi_E3miGJc4T
zrh%uLf&^e8IPE3kDOO#Z>Fu=%_J5wFuW)$GkM4h;FPE`2U0oPpS<){REgNHw-b+Lx
zNIVj7`nb(vAQiM5eHkA65Z~H$n8+qSm!S<R@s*Rdg9Gu$dS9NTk<wF=f>oIe{Qd;^
zkZl<7Pd?ozB<xAh^?U@HKy09mk(S!q)AKruN@Y+&N-DH#Y4DI38lRBx1Iz@U4(BK)
z;42Ee0#R#50K=19oSiNHLxR{QD7SxAipL@r0HD&x-t*Z}7>HLaS`)3k#Qys6qbNA3
zu7G&banF^N6*EB)-4_LT$S<FPB6J7k;A7FujMnxGkTOK^3A1`sBzwJ#seH9IVspOm
zq((gZ*kmb*kY=Dzlly$M*pnV~2wj_JoTjbrj0*t#Cmh|GdIcZR2SETaMg{40*X*<J
zw9m#@sru$PVUarWQglbLpNif3A*4&GM+*bF45(!Fk(ad&f;X<TTt7d2{e0`RX;GNw
z-?T*6G>=V}b!%33(_5ffKr$u^?#DZjR4{jYH>PgFS(jsMZ2VYG{CUtdgM4zfBk;F>
z0vUX8RiOg^4hNGPC`P}pB#ht8jryyc-N99Nb*-zpv`MK2hjDs<o*5b%G6J(Hc)r1;
zQk@_;w!$OI4_>s_mlN<PqzkC`30+zWMt)D%u6J@-S-FEcB86Z`eMz<;RN=dLao~L9
z5Jqa(OKkDh#6(sKm&Xa*O-GmSuYV6UGtEF^iS&~QRV$J3F}%Ern0WH{#RZZmBJGb_
zO-AvkQ8GQtxa||ZT+k*OzCms1{=gds3jCr6TxVe^$2`LJF{px#^22+dfT2g3hnT{+
zhXfXRPC}Z^_EfYEi)?GTwGS?Mz`->5MIb5xL8E?LzY?$MfC$`(jR&*N^WT9e;aH%D
zj*+n-6Zdj2Jt{FVS4Zpvwy31sm1t(rg<f|?Obji2h&kh4zEO;;CF&h?xWB(Yg(8Rc
zX%?t}rKa2cxf^slJ36{QN`yKL5wC%9x<es$n}nP-d=4^Qa_s@e@W;eD?*Ik~IcB9I
zLIS}Tb%ybbQOXe0cM1-Dh7oBJo{}I(#NVs75^cGP>0>>;@#*j+5`+bj76`7quCemD
zzk8LTL^qHYq|o?gCg^JV?W~3P>>T2*$d;L0(~i9-qgZ$gYt^`^%(`>FYr3VJ%PNp{
z^SpzQ+5co6>Vj&Ue$C6-=_EXep@aonnZfg3o@v*uUz&;ST%4f8>Oko{rw`r}Ch%Z5
z<&yvrdOIF$tdPle8-yk{S!CUX3hUN6<P9gpPqe!6?uLUN;djd0b*2NG;ETu#zNgGj
zM_fVh>jOuZrc=#NXzYil$t_^sW!&bETK8}d+)8o2zP>O{Y#o8$SCwg;mKhwOv4^%5
zbbriF|2o@Yy~u>Zu!6%BqlT_0f8{-ldv-0A*HZeA&IcV$Rk`{i;o}oxvv0K|eWR{D
zvhXg+A_K-_q=;8(ujxSNr2kWDCAC<<y3sub4wl6_c)n^b0-0DWB#MMV5Dt@E1B9;6
zcV9w1$k^Y8h2XJLF)=ZXy6<(E{>Tzap>(0r@oy!i6aT=2?PCC9osp>%2A>^dH3Ef!
zg6iJ$)PV0s5CXfoRi6)-26A9Pq3fodm6i2)ucB+F$_sI?18yHjN5Yq{1P^AH?99Z7
zt6Bt7vKW=&qHeEIX&1D=F!tx|b$da6=EBS17YgGQ(T!Wiv(3yOk~jTsM-F@3gZw`A
zxr*Dzu3E;n?Sx`S)f+3Q-Z$!Lg3TplQ?JQnlvBjL@e-aqnjdD1D<=e}VJry**xU2-
zbH@ve{^`9og!ap%;!IqMM$NXH%lTV0e^+qkjs+9zQu=($60C;mHuqu_v%NZK8tN;|
z!C#>F=1bRw(=_#fkg#<+yLeF$T&-7B`AmZxf{LVYQtqmnmi<^Ig(x6?@mR}gDP6R|
zPrrW3JYyJ6z|#a)j|(zD+7i<N_V)nNC3QR=5rk868rFqV1kW6xXneKMUH^NxB2yls
z)*o()0sDwzl0TL0!X^429fg4*q_VNmkT)0M&2nY&?(};LHN*a&0s@ON_1MiU?|D5A
zVU5A(DPpCOtlj~p5^Q$A)lHGX`vZo(TX@5AX?&yFKPRP31?3dP!XR!y4C@feaf-$-
z?{EzT!O0ChwTEJ{L1n}>Q{VL=xQi|w<Cool`?FBtCs0M1$WgUZztu^H8L=3Q=lGnZ
z7BnqY`)j7tQCsYBJHq#tQQMs{?i2`OWy2CP+r`N-DEwGnNzwYWKhG>P%Gf@uP;p<M
z_B1k}WHh^-N|Gn!mSp%Wqg9MwQ8Y6O<8iF|rVwF<jo3A?PA5YK4cKNMe-4@(XE(Us
z&PHAo(Tnn=UgP@k$RF2ZYfL`qe0h4k<|og2zI`3Ua#+^xAxI9ycfXn($P!CiCSf<9
z?@#l;%dd83h^aGRMu+q8&P=4$IoRBpSO4BJ0d{vP+YTtjq1Z%D%OEBF7e^jMP?N!I
zJ>CZXv5{wfhLCZ(hQPbc^{SrMqDhi6eeo-J6e*_p+@cZ~H==FXYo++cfw+RdcxvaR
zgV`1fxIOm2I8oCGor|c3B@W2BOE@bKD5{qRluOoz+gl)qHeZYubI8qgQF?v#djUb-
z_hIamPvMdQBu&ua;*S|loOy4O4t(fyyx9BH;z8ZcpboZhh4%}F6@}kKkq8X7(4zLx
zaBx=P@VEK(gJ8wwc5LAh+hMTVj|&;vhT>SUELR&ylhrfE&0co<dA5Y27B1n|0O=GN
zD{ULs97uRS0Q-9Z%794Gy<3d)<6^HubvtIgTVQx}qmoDpM4F2C-d`{+{HRwwYjwo+
z9fDrC;(6*bYZYU)*jL;;A8mk&8X1-S+~n251jEQA1l7G6(&EM~;Lfbuq%}{JVt)*k
zB4*L^ZfY*lX{`Hx%t;5dUS80(%6t7QH$R!oEhA8*pz{8V+aQa!8k%SU?Gf0_{j@x7
z(|o*DJ3Q}*oE+e}#P8dR&On&Y(fN`>XJfojbFJF)-Mcajc+NzzZgKkR-8|Az%ZuZ!
zob-n&J^1s;O}B8nSC_C)#k7Wt#wPFHc=KX=Ae^(~idfkn%&!Yvim~(pb-ykh=V80<
zO_z}Ih)cv3khi00@;ue%W{juPBQgjHh?G#znry6_`5ia2Y3!iitzOhzd^xJ+oG4ZJ
zV|(6{La^sMyA@o`q;e2A%XsZo`@i&`2X;~Y#l>HkLbHz^s6R3ALFwA;K?~-f=>$#q
zedV!$Q&RWNUf0x&S{bzRYTj|srZnS|#)xEF33Kkc3d4L&LP)KR65)8DheDl4t<V7W
zYz|8ffo>{y3Wj4ET3XJp91JTgkAm(nG87XsX)LEU14XE^1LO|v!E>Bo)CxfHz;t<!
z`qZC7Xd^qO0Vx9VE%3W!Z2evvI;S${h2f>XV3eK#E`DR;LKgWX(q3dZ5U`2d>|?_|
zH2G*9_j}#g6Fj4Wflh%jm^Av_H>AKbB|t>IR*1VH8lCIf(rFYAVON!@#<z~8$hjIS
zXcUUMr8{eJ>h+K-Yx11jau-8MyEl4c_3+2^Gm0hFGWlMC0%XmmSaDkGur2<%t3p(+
z+r+Qd!_P`s!NN@&gD`iupJxff!?{8==(NQP=sO)ng$?z4`C%ijCD#W(m{&@>D9R-q
zQqt3(HJ|s|IFw>CD16oT=><OCuP`z$rVoV#*0n?v6Yqe#K38P<y>k-0Hi^l3z`XJ3
z(IYT$8!X~HvI1RW*LAE{AkNOH9I4?N9s~~`xrA(3Qa4mDd8~uuhO@sqD45Dq!D$2h
ztNmw@*p^cjW(Pe_ir0laMG{X2#IRA@DC<cKUg09?=1%wCh1n6Ss<q#Mpur=Ys|B-J
zD`HAGGz}k8Hxn?h2A5ndxE*u)GjvTLwlO!b8<eVOX{E+kfgSat(J*TaR0)ojizkqX
z(k|e$rH2PUD0Md8Wt|4r*(V+sM|O-`iO3W@i^g-~@L2dQHPokY44@0Zm&B5EijOU*
zQ=r?jv9WQW3e0=mdNAwYh-v85C^FY9AZj+uF?GI$vtN#`;6g2Q|CuCe9CwgqzbSx1
ze7H#Q&6zM)8)&+Hv3KoRE(Rk#>7aeKY0~wFef)34&9~|S1mpNYiC(W2u@_wTS?ui2
z?RsPi*BB~mZ9WTRHTR(IZv{9KSp5D{mxXQ#v_}<iTF$T*_Q|imiSoPM))nuhyX_9z
zGp5@5j-UEn+#KZyZ>UYoGS|<?dQO+s<m?NOgKqePxRx(VynTIrDs#jp^@Wc-?)d?*
zi^@gKu1)sjd;JC9d3<?XmAcDLk3Sy7+(?9vwu^V$)qXAH<~8BT{a#}K<FIZz{{I;J
z>Zq!_b!$L`O_y|cN~m<VbV*4GNOw1gbc>|YB?w4&cS|=&cXxx|;=SkG^Lozx?zn&M
zF^Ij_{;enGGoLwOLoW|L^;|szpqiC`*c>%ig|k5(sG&kn&1t(tL_|7C60kR3+gV%j
zFb}BcGUQxy@BG4m>CTg<|2*yytoyQ0(+?dZCiW=Y7lG3?-nW|wg2+Z6CPgaS)Mfz)
zD4C(pmQ}k`CHd)WPW3V2u>3qO4<@8W0Jfb^i_cqXRGmkNMK@U>2S8q6c-yrdv`<PS
z!L}{JTZZr`@lKnUL}9)6tG-(H>nkbfWq~RzM@bGgT^$b^^tF>wyl3x!>$@CX7Bx4u
zGuou%5PTt1(uthhqsCu^eOoAgifvLj3})?=R8^ZjI6smec^9672#@xZ;^OExH7GDe
zAh7BL$Q(FUe;SmJoIXXb;=ex|gHbSVI*iUE73l+X@*!h1Q>0dW<io}$<2jdVqcP9Z
zS;I@W>Xs42BFm=0szhW^&Lpe>Jt2pM?^fQ)GBPqT>Uv(POCu;7)?*tEHorEPe-Il8
z#5(EWp7`BAmP%F-xgXaX<=fMlg4UvLp72e;TgF#XB6xy~;GA6xP3$q$qywu9HziUr
zQ*;#(s!beDu%bbtuHzKPT+&uL2dqHOo9x1x_uOLJGns;KJbx~PZOs7<CQf3c8SmK!
z^e~Z%?E?iv*BN)u>ME=3`es3*RqhX0ql*q70xVro$=)E3TWW1_P8&ccA3Dv}ky$^A
zy^Iq!%av<|W0S)?wb9!JWj*2>JG84=F!?{@Zx*nw@}X1LYo2$TKc90P_ZpMq++N{J
zGCp0_4H6n%^qK)IZC!8Rd|@=6r{vTmsttcY93IUo;gYnkXLxJby?9VJe|ui)u(>So
zw*vn!d4jHnMA5Rez~6?m<7%J+{$pkW0O<6ekoP~d3a!oohV%aUwe(V}T`qzo3X7(2
zs|2fIhcEkts(~@lc}-U^-mfadUS$3O<gW!HA}T^rN^1SYJ>dvKcr+4w*@?v3Bt4mg
zvbM7b>ayRadv#<#2;~K%Spq4NuR|mjnb&p)wVU~pnEoYIsZy3+rc(!V-tUw#@23H#
z)3S=N-vg{H!{jO#?+;uCJ8mhX_%bi$RCW!xAIGvD@l6!BlRoeLL!MCWH#D2S#MgU}
zI^h@?xesmI`;ZhVjlZ_`oQLd{Bj&7WuBpq97L1>rj)V*WycUh0DwR$x10PwAR8YR?
z3-HSm)~z3(*41p(?G~v-lPsXw)bDdNlic5B)I8kmrnvY$0uH)9_fFVV!eVY<b)(=4
zVc`jRpkH^h5EBcF!XjG<9WA<_5Zbw@EWAF>9w3rVi3?3H*4R;Um>+2bU+UfpSdO7p
zcAg8}!HN<eQ6WU_P)bI|S`^hvw8N}65{qy^%5^>V*}nh)q~#?s-+b%FP}<w}hR}a%
z0Td6E9$qARgLMTS3O0Z5uKKse#^2KATzmZ#(ZW)fo}#6a>Z50haKRTxq5Cbnw?J>;
z*kum6nzUacwj1PwX^(6-77%5vLu|A~b+c|bmS{GFX8iCd=dcb|H9jBwsxM$g`KSS@
zAyf8iJq3@w#{2Vj(g(#aWW-ayK`1p)M=|^gwg|c~$lCmf`+O0KaHk^Jkow5qv(KKh
zpW%nqmzW}7vbDLP5%avU70mQHL%L);coH7hf<$!8JcrJ*=nTUxp*Ig!rA@CMMuIl@
z;H#{(X`2=SrNx5IO?#;73CTElO+XDsAm5d>U79cx5?b!`iaXGHX*MUdJ8VDt^(fdf
z==CU;vN50(d4;N2EGS%vW8F#`O!ndS9OR{#;-(wvW))ZV4j`7&eAUTvc3mdNk-M0O
zHbk3Bi03^dn<k*cpWQ}DRfLc9#O^m(QW6}gvZ_C@O84rz^k006-nd}fj`9Ln+BM>m
zLlzr7s@0?pBdp8j{~p3k&0t*N1N93-?eLyPK9@^8{|{anAy#m3Q1_R2$FXtJveGua
zZ<}9d@)FvFty9m&m@DM?i+8<Fc<7dSNR=z|=_ZgPbw7Wqtow$^L#;46UwPH63mLCK
zmagioSMXB=sW-Dx?Lth=qho>M2*k`-JnVsaf`55u(1bSI691ArDe$>SU2QcWbqCd3
z%hsi%%F>OzUQ&cbuS3HsEP0fb<AHY1d%>pw6XYl4WK<fvKgS?U4$mK>`s}^wTf<u{
zoS405^fM~A^@~!bSt+B9yD9N)1}e#3e~mPRRDedzNm2a)X7F~Q@KvB<8#=r2ql(F7
zOy<wk`T$68=py>J>HQh}j1Y2Ie;01NwpO6zKUIy`+<n9qq>v65O(+1kHV&anv!3k(
zD^y}{VrUhdPoCB}fL4!3b6IJK8Sw__PaA<jG6R|4r{2)ErEP+Y9H3zmfboE1X6?6y
z`jMgJql=6GU?toL37-w+9@{?@Oz_%-+K+S(wKzvHV5Z&E{LqK@TM6~QlNWVl(m@b0
z+GeW)%B=ltu}Sf6p0ZIk8S?610C}A}NeL~u%@K81)DHL<GiN3TAZC~M0mY4c{B~Qx
z$2{!&2ec_<eLUn9DWG7I><4+aY1R0s8tOp+^8&9+cd`Y^tMYFGCQxk8+c32p1mUkD
z2~LTodC={N4CJcma5ioEUk5F_lPy$aOxr0?P;oTb1QU%&`e#=or5tIma0jigt@T9t
z+!+R~f;sw|t4mPZj%mi`;%hAf5tGGcFEvh^g~C;2hygjeoV4_bc_q+`fVlEmKzva~
z3Q$y{7I6WUrK$ncMDE2G+hg4YI+wzRH{rW&4u?1{t0b*n3V-yNzLPW`*q#VD%Ll`B
zPtpwD{LxfC#``#gGeVayk7NXLjA+2vp>K@h)jDx5ik9bxOAJY6KnM$tD?|xPIj!Q=
zTr5gBxes`;*LRxD#j75}Z~WQ#ch%b{WRA376nsP-5w9?}Okr7}&D&uOln+6Lyla}!
z^6*(G22%4hGIg|pW@2PsWFpmm6=m9x4-zD;A)BzF)_w9g5K9-~0rDUezMGt`FhQ*^
z$;Hf3zNAnIlR)ywCLKJ`{Hp~$BVo%ac(jp3r01TBb9He;o+cSAJ#E$V3Os}oQGv*-
zsHp7rtJ&~$Sg{7z&96vkLFuP1*P`m~FU^b*(6kmV-xSu2d=til6Q&nSDFL|kOsahq
zdV%n8P#xKsKLq=hV~-Wq2R-bDpvVoZHrj)Qy#g1dYOc`@@tMDtdg+F~iSoe>r9s5^
zSeVLxPJN!6^hQ0>1~iZnA8pc(Qr2LRA2mu?18A%w8kYX@)$`=G9RdvqZJ#!Q=5k>>
z#)^_>?h)Vg*FbR<wRzLI*83{3L3K~;-?Ty!nA^T_K{$2e^ZU}L>I;t+pGl1mIx5kS
zU-K<0(3;!iiD32pBU8_QYLP4#{Oo;y`)KoKbo%Y*+0u02-prd1unc2E34N)wQi|fy
z*UzL)FQgHERkn1{u|Do${y8Rgf;=;}iu1R=rxG;u6YI(~)!2R{I?2qwUWI0Q!_bdN
z%^;u&>eb=Xs*h{F_t|Y=VVjN~8$#G_7><iv{)34j`XDQ?Z!&6guCOj37fx1w^mTd`
z#s^OF-Fx_jFR1Gy-?MZ`Z)IT4F(6^wTWljL_QNkVysotv8|%u(gZEacs4mhadne7q
z9`$v=((j|>hZLHHT8(kky%o8wAMGn9{|~g1t_50P%;|3KpDV@`%B75)$-9ezzHISG
zM)_hQqS(%uBY3Q-QcSo|1`NK&v8WQ;D6@$Lg={DAM7ei!&_uZWYc5QVV&TgdXuVF!
zVv7aK4b&iaWa(#>U}23%>Yxcg8go)XK=K35mjXGn>XG5Pq&hrB_UhDR3#qT2(MT)t
zmK&-)-V>FquRy^x{AhEM%(?LJw$cs#?F>O%c>9q&8d~H7GKqke%2KdJ`yrB^Xx;gz
zPzUP_bD0amp)Me{PtC?Q;<hk4HkNX*^k9dSWS2?r<;<}5Cx^3w4VuZh?Dtsrbbh;=
zZHEjuT)FenjD|N}u)(|e#1m)indmdLh%S4J{=12cXbNLhAG!Cm_is8bF%^KVx3(SY
zD-o@WAgezTlaL2($!-$2ZKDAVQ+{Jz-N9JGo4sH$2(d*zpYG<AYyrwsE3Dg8Hr*<(
zx|X$qAGG^>DwPY*Nxi;nKIW1vNSXwtZ=?v+B~!y;%M$-na)=q#krz2S!9;KEI0M$r
zjjg7tcqt;0C?yuEI_@+x!lxDtF(`7CdrcJ_R<hV5F!sqXcp;nIQco^W@~hsZAXn7C
zZ+|QBQ*Ae~OY*5aEcuF2g3dS60go2H1z;MGc_<yxs5VgBGPaPXltsj5Xt;ZnK&s32
zqqTkm=++rLDr%tZJ|9YHT|FjwQai-%Olnor85XpIMYDWFvcqWWe^l6XTS<LO*mEv?
zHu-hPx4D+9zw-i3gx{0kg{x-3GH-B5$jJRoM+DcGq@;q3y|*fKJG+fayhh$vx7J$u
zi>}t>idB~xRxgLG3~z``QwIKITKo`CmoTT|qSFY71T2-{1jjp3XmTi4(^fL5Kw(_C
zg+=e%A53~p4TI8DoP0Hgg6pv=z%s5=^El{KBLzYIc+vATg17z=nhiuH&c9Z|@q3O3
zm(tnU2}~XhQ2drvgW;b`kQw}%Q!YRDqO_L%9NMb>+DRMjyZlaZx3E#r(40`14jCiG
z-$%Z_I5bO)+8q?n!@sb`fB%jUug|GVgWZ{fiGfR*<92P#uN3Us$3VsKJqAHZhpcru
z!=30?ZHySL0)~Rw7X)eosu3L?nbsoY+-ff$E=^~vU-alAYX6`>3`NB;d>ojok};5d
zX!yZPWz+*@Rctz>`xAGrGR&2MF-N8N;G<`f$>0P}kgk_+EFs$GWBz&>C5bA_FUMaB
z7TGZqCS@38`m$$Zf8?LN-uZ_%P4A3}f6~T{EUD<v#2;O*I<42}FX?quHOaR(<^QUG
zCIYB+&r{qszI?QG#Di}GYmEL&{^GWA-%wnATHlWY;SCCO2Lt5L=QO^bNLN+D5!i6V
zy~7pQ^aD#g^Kesn=C6NnCWADoFt&S2vI?~!Ux41?U(fDO>*&Ezy6udF#^`L1ox$SO
zm^$q_|5-?qTv1hb%aNUm=`GnSJ|Y}UT}H7yW)>czpXG9oZGK(?)WgE6&H(^_rWCua
zSw1Ave)zBtM!ZwQCB*lQP$WOd?K{pX!hc|U>+i7wrYt_MbK%{AOLI(d^Fy7kZWApT
z-y?~sv4M8wo`8bCfo1g<0m;T!gUOd!&%<0?d;%{WUG>js8BP<LYt5XSAm`&#w5$Q|
za8?BTldTVNdK_560wzlDFXbWM^9~q}zf?eY5xXbvQtcM`f&BUna{XLuxp8;y(O2m|
zO909MC>%-}YHF#=@q>?aD34FAs^$X?>CuZQDLUjHw(BDxezlc8a~akqZt$Ylg*Dt0
z53e=GuejyW<<)*%N%C4PCq_MS_|XdTQE5})W-E)wEpZqIHhk&}nZkEi?EUy7xkH&5
zFo2h~$czbq>Bd>=XZU+>8R-fGS$s-P0_#3akduYM8ZYx+BpHJx9<WHUqUv#2IAOX)
zr1-rP5$~b8-a8e3tCQ|KK}<H>>u@@xSics>oT1mHSTXF3iOHoX8TG2v|MjtiZePel
zDFopw+B%0^+H*=D`<!Xd*Znunja4>?uU~8AU0uw@#J=P64v@)5NI>y5j>EtSlmHa|
zU1kpb>i&pfHU;}Bo9F||pe?s?gprK}cEVDvT!C;jw${)R`$vkP(2)j^SjCD#r)&Eh
z6Eh)7-4T{p(wSNP2<4rw;;jxp3U{Qlad4>72C@lsW+&NrGul>c&qDcBa6?xsE`#>T
zy2NXqP(k22d*jh4<IKaR1WMtv5HGEwQtbK}Ylo`>pEeL90v|=vXr$FPO}@M4ukDDS
zF93nmb6tLV4|HmQCh_D`7BG4kO+7zc)B`g9%0RApR{y~4G)WI!vZW`F@WEh8vir_=
z0(PXsW(_=;LtEe3Y^fL`J4zA8$G!0tLXkV*tAx|Q$vGL%th4h>nC>0q6<W3Me9-OF
zsVB=64co-@&Uu?qr;g9hiQX~Q*{@4;1E|)K=mxZk{XlO0iAcy{OQaJaqIi^pTF0DX
zr|ZVP#&F7zdx&E$yGb*Up%Gyk2x=pP-1qA}P^9@-<DBD@u!c)L?yPmo6wsW&|A9m}
zzJo#M5UDp={Auxvyy_IG?H&BV8e1?}TrFy<0Pg2<dMhJNvN*zyTNWDBL9I2|oSCSF
z0(W3sFoCqX(CCqp;ImkU_lykosmM$4?j&)Twexg&hjH=9-WH=a8M)2d!+w-LP3|+N
zsJR*NZ6*E#sWbfmMPpy+B5WB}?qIa9MJoL;D2osl8LLQ1@P>TFmuJte@(UdTN2&xF
z(AGyc=+Hqzm1o+poHp;1*s2{qVx4Jpj9V+5vouE-b+;JcVqmUJ8Y9^eY9dgGJNv>l
z*lSXs%2$%+i2u1LQ|i2BYs|*=ldM2pb1W`SK~3qqDH1SWj6L~CLEkrT(ZHo9bHQnm
zd^)m`e0<3gCr&;3E11HITc|J?fk_sk-&T>HE(GvYN2Dm0qnju;(k{Qm;Xok_GY&zK
zYho}>miJ!ktiehp#26joY;KfKvW}{KR1ov6qEOUKUVVj)ld`r~y)Lh4n|Gb0Qr|WE
zyvDL$pyc`Ec|c;J77zsQ&r}|Fpx4uW-{q=Ug1j{N5M5U8w5#TJvz_aN+UZWwar*-2
z?&>A)(24-3_nqtJ5s(qcr?mEu2@&duKsUK2xbg3NUGnIgT*ZGkU1^cv{3OQmA+bW7
z^#0hq*Ll|i)$-~h-gFm~(P?Ua7Q%RkT^azzFz&v8o7RINvVJqLuR4}ijuk8VrZ&E6
z<Loy4<)CfdOPdA0dw#$qy@2hQ{$Yiu@NWy`&mlF7E^N4C2mD+HpCZuV6BX^}fS;-p
z#Wqkz7?CPS<@cyl*nI#+MDnM}qruY0T|zz$@(mj@E+FB6t?X{Z0S^iK1vaU_yf6w)
zC3t13m;zmIgHOU4BNTCYxiB!R@#h9w6D};P^YM#vA>^v%X3|}p6$zaNr+3g()pIT$
z#P9)$r!=q?QsZ}KCTaQldDR1{v|7d%pQoa%9L&4lLcDZzjQCy?(N&x8@X9y6Tg@2R
zC_n%4g`=JO&}CDo*=xw^w`VkLl7JfFGL_{oALDJc+lY%@Hdi>ixtBwHS*ue1=O4i+
zrIfZUN53Fk`za7@UpgnlN7`ro&S5CA@8k)<siJv!7b|yj^PN_)gGzkgN0s;+e)jS7
zbBKSyqcO@vA<&aD&4Ua@3k8ua*&z^ReICnkjT%~n*ABqIp~_A%_ur8!v)K>YaIvVJ
zstoA-_IfjGDEiJyPilMNTz3;y73WJ94{5Tc4bYX}sE8_=5AmawG18A;v$-F=zFqUe
z-~(03RTE|nK<d|lfc-?j570N*b^YYftfB?|PSWUnBgrNoj|CuS?bh|1TC8TUo9O72
zZRiJ+1Z}cfqOX|r9EOU?ZsLl6*>w{)N$GZ1k-DM<(OT_7|1xe9p$H~i4j|4Pd(`f^
zh_xnX^}m#J-RpAkKbrethDX{WO1%+S@(EcN=xC44Lf%yAus&Mf7y+pyp46KCs<|EQ
zgr9TM`x&n6RRU|(L(oMihpkPi&)BMse^96SB_|U_^aYmU@~s&P4DDB9S+(_Vr9GU{
z66a=+KCa}y&}sH=6dHh^^m#Z<TL*yQsl73b-O8iNTm61zrxQg!A*>%An$3NG!f!#3
zO=vywxQF|ovs83U7~f%$Lozub_qhDvfR&G-UY(VfI;Bm0vuchmznyiEK7u_t>1gb1
z8CqXO%-649ANG2953LWRcsSU+w&5EJ>IeQ-8_6#hc^zK9+;mAbNs#*jeDdt+_>u<f
zi_(9coXvUuFhk?mV2;3J`$(kYxADSAZg&y-40;hevVDQ<eX4*Lk8nq=XKh{Dn`TA>
z5g`Z!nw$*Q{{uQYj7T~k>`^kL{R$<OaK2APQ*|#a$@_lTc#(vp;`qZ{wiK3kVuu`m
zke<rZW83fiOe-1vy7PIvBKH^H;H&peOCysU<_A_=XNWfXlr(#>VE+8$LXbD`(5~1W
z<*0CEC3`%ZIH=2e+lMk=q<V=mc~}^O+PO{iq{(s7II-J!f;<UemEsWvQxd-9G+0eg
zx+=<YJ48mZ%(VoKm>gJ2hYQGE&v3^kr3%a4I_EYJv2T5cWBDwfO0K6WK>yZ_e{Vc~
zP9`jD)81P@BQ`fR>mvn$LoF5~hrO4M@q*Bd+4i&H3bve-dLgC$$+@$+W>wgA<M&Fw
zv$!NA?YE9uGD>U=ube25SVtr|sacuc7>Hd!eJ8O$b#Tc0>A&n~S&KLo_f=noR79Eb
zZW_3zxk2F$g)Ti|d3M8%wjljYK1I4aiga@rUL#e|C$-<O1u~TEiX(mvm^sJq<^a^%
zcfN8xuC0qU92gj=)@?>+rAw3E&KeI3fxE|O6_$mJW5aww=#CIQMmdy6fcJhi=|r*j
zb?*CiiHR$F-nk;r!>XS<mWS@1<CMAm`B4rH!)4TOLUB#0-0=O*{Q{)xK$kJ8zB<$W
zsAx@Dm{ijKG4F!jLuH|U;dzmPug%JLsk5ZIRe0KEQV@u*GUf+(ZejyGipr&>caa;g
zrHeqBOa}d%+3j(6W^<ammX!vD=POu$bT(#<k`GOHCo+-tPi-Oq{;Get&V@RE+16jn
z!S!_*u5<>pcfz*l(9xtjVgv?)(?Ei(WnpMp2i5Q;0Q`(GzAh||ya25)`e(2)6xD)n
zwZl4fgowZrgLnAll^G`Klbs+#WLLE`U_Y@;j(NGPs{an24POMVT5(0j^~QfnVcww)
z170lt9m*4#ds#&cud#-s<RIH6P}BIK6qi*fjqXAX$;res(aT_=UJ84mzj<U8+}#@}
zj}8g`9w6m&AopZXj(DetWn@=m)(-3|QP)rLH(AAsg6H9sPC#RBc6GGekj8A&{0fQQ
z?#E-TQ~|bDNiIRC#0w+Yzx*D2esbmkNSjO&;(}x?9p_b`G-~p;6<DcZY;V!^crJcl
zgUVKe4F3W>P^1Tt(EuR*vO(9tAnkswt#2!7oc<pd?XO#>SdFlx`;3$iZAE4EX{7oM
z&(d?zBsXJnV^cGBTDTO3KHIFK-RJTUO{IM)el?f?>&e5}uZ;BneOv!=b@vd&BqYkv
zhZ14Gr5c`;m2sar>Kbz(5xJ!s+%oqy#Y!(X)}Q!M>?nz&Ff#S1i{R`+(Q;gIqUKmq
ze>_7(BpZSf?2~!DB8=i+9%#3<+rRHNg|=qjBiQ7MecoWh6V%wnvv=o9Io~uJrX3d~
zdF#FT6#jDoVlHt}o7`r$iG8BEf8&9`E=`|mcTC1?lPgsy!R21ZoKmifEqW(u1#-vi
zRM3&p(Zfe*NmnS}B@F#TGDrU-j6moY$cZbyGjnrE{J&cZ;QI`T4S?#RkeloGmQ(Un
ztd}oehQ&_#eZjN+sNW(l`xvGa<6!N_Ry99usWx+8zp^8G7!k~@9-&^OnZh%p;)7|^
zoX>lC|Mjc_gA1p+c%l2!zCPfoTWn^7P<&V4T$4@BdE$N21&*(w*^-PVxh*z2m**Ah
z@)KW@gH1A7hc#$)Bk7m=nKYSxo1zei-C?MQ{(j@^ygJv{E8xU1pt<)BhJru%+SZ5f
zeGmGBCy-f$Elxm>YqcQskEv0Y=y>i~p|6a-!ydJ|Wu*bE%0eG!;tp!SRbfVkvP;MD
z+4Eo=J-2micQEa`;uWDYlw1xczkBp8`l+h^mH;c0j9GMzO_s?o&o2IiEI4Y$cK(P<
zLn&~R^CgRH=0|lI*1)a8LO2^w>RMFAqRiqakXIP&C_`FYoaD?M-3w%G9i<k2P$yvQ
zMC-cN?G|z@<eK@4a1ep7c$v41lkc}M>mwm~!9PcSw=D6>-=sUV;^gcWn5uIuVkIsc
zas-#B1nhAnFj~0-$kP!FnNHY)E!_HI>4|0^fKSCs*oF-$ugHeR_$oPimcKv8WUy!N
z3Fc2%xkqxUD170?`FeJeoRFE9h2^#0y-SxLmBOAxW}&w&j|!5V52lROFe8;`<qC#o
zZShMH@R~Ih#f%e8*R`%wvh%iur+kj^@6UHKR?8B4s@B<y`!;c&vtRbo0>lL(pWLI9
zFj30TkL|JD8--BXYUyl{b$uWDUS`sUVGLQ$n7xX%ef4&Kw|8!yZ+?4k&@0yV%70cj
zYWMk@1;V>_!f0zWr*!QMMCxA#YeHGcMXcF6Q~}QB?U_;+Ev8eTMn~Qr{#vFora7Nz
zPZQZ7x})MOO_0;s#mEx*)KPy(*swlo_S;I7vh`aycD2mcUU%*xt$2`UY}1fpV!T3r
zmjfaeHsF=3icGZ9%1uG>5#HicZhuffKxr=CUeF0$81ze5>pS3e9~wK=9RmHz{~cBV
zAIw$cyDRxVLrm!(d}r?$%g{f3($><?V7KZmPaWE@uk(~jNI=zsg%-%zx9kXY|6N0z
zMxg)Qu=@G%Ov6CaGtu7eDF+_fb0TVD9mDd*8ZW2T5Aj#`>bivnRRxRtd?`AaMs9Oa
z^`3l?dasAeA(`=S&oDvG-+?3&L$tSTY96$r7PxOc_6x&ni5>9A&wD7Nj=Yj*++a@h
z6I(ud@Wp<obC`4)w>dDeTkji90Qj9lkFKjhxd{pl-fkkl2gg33GrvAp;6HzcR4{P6
z{p!Gh+_VEPd~ghVNq{i**me=Qd@+(Qc(UpKLQ7gsu9G3jt5(nFJ`RjIhe#-$@EgSz
z$=^IOJR+RWICP@!U96jR62`9G%@&64e!b)Me-CN)y4cgynb*h^aIN+;832Awl%xnI
zR$q{|Ux1%d!_?h4*{Hb28|V&nX1L*DO>5q8{&_!Q=K3t)Qtb39bs_K+X#t;nu#!_&
z+V2WGRcs&Sj$CBozQiQN$se~H_SLQPh+c);*_P6+xtq>Z2)0SLF|(m@gje6J%^805
z6JYL>K%sQlvK_&>@XjXH^oj9-AGc1tz$%biozmL`tm=L7-@tgwzBzccll?i(pSPq>
zM#$pSHY$WI)!k~gV!b+NW=3=UNBt;}Y-tumBEY~wCba?{9j&M@%PP*nG$*k)*CcJ*
z$~^@BBjBVtXt1T2G!qGW^9@OhxFVi1iSpU9ysZcpjhQ)A!JYI#D@(anP3ewhTXRyj
z)*2u4fxf;gH0ImT(hW|$b+nx_KF!Y#_^ZnMXUQiNLGi%^&GQ`(ik+@+U3cd@QDJZB
zb;f9<QCE#qWtfh>SHXm}f(f^8-v3gyVo|(rY-pS~7v(~B8sE_i-H#7TVk8Y)7}A~=
zcQa*D)c>YW{bQ)1S?;adw4IU{lVY1x`GjaQcK_$E7sJKyZbzSxA0V{>IS+%$6G0&k
zuJYOdtthA9xQ0vw_%7s^0Wm3il|i`8{Cv{UNKlJT$h73@!|$;6V=AAF=bO;!|6ZXW
z&fi=aWcEZlbqKW-4GgO<zCo#$7h%U`u+}>qz8JT=@TtA}J~5=+)+D~6Ba_T*ackPr
z`BUXyPNjJ}=b3tZjf1ixsCalpp|JGP-{N1cL82{LJo8_|=cB^v!n0+-8!!eZNE_Jl
zKzC!-1Vu(gv6LafrL~|DExV0G9~Jh<e?uOR=oQ5~^sO0>)=!4hoz>s+kV_PUJ&fDJ
z>MA57>+EKtb8sZWj#kIiH8RWPDSnciaI^*S4nie1P`IV$hLaWZGf@sUE7dbA*4bOk
zS7pR0G-tV^Hmhzh>Kn5mvH`ZK(oQG|)y>nSo4m=bLeH#yA`A&re-I;dF=kqQ2YCtl
zzr*9w4mnge78rLkEN-siKOG9K1QHU4UC2##96m<2+o&1jZJ}RK$Xm|*m`~VP!L9*Y
z({f<J8KC6hb+RS(JV+1`9;ZJl>kzIxuCxUp@qNgFZ*}z6c{@qvYv`So8vDzPX7xux
zf;jW>Z7(%ri1v%Y7>jx4L0n%$9iH1YjsI#H{;QI?gqSK(M#|<gsx09R=V7m}=Y1M<
z!^x1&x_CmzeZaMzO|9f@&B1=i?<>ErE&Su=mypt&PYIOzknGI&cqv0y4KcxES%0G`
z?rK|zse+GQpRDu-`jnd{HxVk&tukV*Yt47`Y3{W#vf#2eS33;@OzY%jB&|;j`@T3h
zdd|REXARBI#Nv6q{i)fPF@J_^K3iSClY7!p3|I2crhq4qz}dWiKc}<PfxEdxu}_8M
z*6;t)6woV0B1YtP#4UT(jpXFvVbAhJKTY1sO2VYWVPK>5_~c*0#u+p#iznY5Z<GFU
z969O6y6M`O<Q1SM60)$_29}r{ouNf%Jy^3{g`u0^EwwILTUs&&A$JQ!L5QB`Cf$Kl
zDl~z)<=Sn(4qc6slQt(B)LfU-M_|LT!i~7k9m6kn;PLzIdc;)e>#{x`Dinl&Jpuo`
z$p5<4idhIkOIHAvRsk&JnO@jr<(i2tk~t?-ebfqCabybpVaUq><H6)!KdFr`fkzGc
zRn#)^=>8$IK*dG&2^{j$1VAPufoX3MC%z1_ygnJCpZmhX0^bv~a&%}+{UTfz&~(sb
zD1}h<$w5&_9LBzk{bfgh4a<>x*VTyN{Z?C9o)D(no|6LmZx1SXo4!0^>A#LNW9_y-
zV*b{7Gb<dHAj*lxg1FC-+;Arvo6xC^!%34??Jv8_bwfhU)0^q_+bfLzT^Sxt%(5Gj
z%(-GVZ1@aO9S_UPq^FUtx;*7xxJG)?IY$dRn)5*^s!HukY>bTbof?vD&31G~j2PMK
zicoHFS4z4fm>yd_vK9U~tHU!1bEie5J?kZl$DIXvn_gqwmK>A%o8Wd|s1~f{^NGz~
z^0II#a{FDT+hP~-(CQ!v#I>O7m)8%~h1gFVzt5{;AqmOs;^#ef9^WP=5<7;EBG=3o
z;4?A!NZfV=w)<>NE&K=kaJx$lyH6}dWShpYj?l|chd#MRb~1^czGUPi`~BCKmml2n
zJx)RCb`Cej#?^&dz(xW8IEb;)NWB=!eE8hhdh@K#jl#Onab@&hU+h0S^nZQjdAzU{
zDhNbMKQOthfr;^kmQc-;U@W$G{)(eOs1pG#JmV9$KeSk=u^nX<DVOaB^ezGlDP&ph
zav)qvkdzJ~er1YYX*L!Jf3uXc3V7eIs$??lA!|X7*?UDU`D`+{>j&RHXs`YzOBisq
zmtxV}3h&#F8)x`4rI|DPHtfl+SF$F}^WW#C77*%$FUaXaqx5QdAx`jDh85J$re=wS
zeIGB;5$x-Iol!UryZV7_t=%DB_nThL>!4;mDJvU1Ig+LYK7??77Ttw*xe!RHZaN=%
zUEU^5v5?O?0$W07uu0Y4s~tHm0y&h~igeFn?TfFj&YJ=kcX;!4Pit@K6hixAvV2@A
zNB5mnMZ{dy{c*c+DB<(nckH-z^k3J%UXOc`A|CU-^mtAGv9xov*~sBj`Nnvt@79;}
zKKbOGT3VUPDBbD`b!S%q^B(u>)_jHO15%PMuO7Mn^e*XV+wN*^k(_oy(>p*o{y3X6
zdpQ~d0|r<!aUm1LLt@~CDO1@o-lAmuMrVUsAQE57Yv$HO1ntTM?C2`0;%Mvoo90zl
zbMJdb$E{QPxP^dkex#d6!<r#VsO<*o?(o_F+l?lJHK&F)JzM&O9(bJimfE(0*86Bl
zIA5<>pp}pkZeh0CMxn<qCnpELGbI2@Mow<sm)2j8F@&7zJP?J@6^fCLE*QR&^>tiy
zw9@BaIkNZ&YmPNPDXibzdf52*?R*~|H~4pyhKshuW5lANG&QUMb5E0xi(+*zwX&=3
zC&&4xU?;0YbYsK5B!RuHD8XY)T^u$C`TOo&c=?n{O`yP3(o*-&5+PsiS!Jk8>Gk2-
z+y3_)xSZ<LpP5*9eqGK`WF?244CnQ4-=KQe4@@7h+SM*z%*k6_sfO_B#O95(!L7*Q
zT@vo|vWa1Tu(bmlf_Fj@2Ch9_<rK(hbFLgu3B8xp=1ShHnR~dpawWw4{wohn2rr!l
zs>fdO>D;T;G8|S(2dAdI{r-z?VCY-eEzZdGV)HBSDaK0S@7jM)q5rx~0Q~wZObJ7+
zGUMs_Vj+5(SGHg*_Jm;3YAgj;%wSOlDT#i2;W}aazP2w5g6yaG0s4@Dx)dO(7_gD7
z75G?KDxZI4%W6VuYLqg9NDsF^drEgi80pj9{t*eaonTo*kTQArcAw$YDgKr3jQ^SM
z#vb!sB==wWjxIX&?WGyIm?ncK=;q@w`6gBLWeMqugEqIW%1{PM{*muO4D9JR`Tf3L
z><^|APP9LxPT>=6%J)=uL}veQ2#jQ50YG5Q?)<DV{V5uy(Yw1ZPT{a6cvE1$a(t_B
zz@;;vac6jwI`{mZnd-M1#$IEo(0)={lH@-!9?xYnKU4ad^1YMFa>nvH#+(j0-J4YU
zxqqcRtRRt(xZbjXy!LAl5AAW<F8<5;_MwPiL?~+@9htq_9i^hIjA>-TsE{Z<{@8=Q
zt+pmE2K-;wV+!>Euj649a>@%)4fFf??{lAX{=y;aAZx}{qu<kX^U5|1CmXemtfWN$
z{W<;PT*rxFY-xN;DSoUMoWn>W<C%@=vXvCUCw@XjM()TAZoQ>I4pl(OeoYRKzrnHm
zL$vS&^345;Fs@!_+A5nG(ANG8wGJ>~Nz`9Tuc@i2;f;c?bW7sTjI7fa<(f;uo4GIN
zT$C<y-XI?SiVN_{Q^ICPULY<1tQ_t{bw?PaT!ks@{`Bc5lMkfp)Ktf(Z;TCIB>1^V
z{z`SZ7h(=V>BcS2OudxbESb<&ymxtM!LZib7b@x#&GKqK{rDs<fej5&eL2%%^d-HX
zoUX&^N%jGQqf-%2D)PidC#BMOjS1~Sq<f>EAKk+en{``L6C4VG?XwT4#5^U#N`j&W
zFmphpVr#+UFsHDPiN|3B*^PdA4e*Fvm6K9m<xXKxw=~@Us9spPIP<9^+WDBSTwU&c
z@2(>j|G%E@zm6IeVtN>X&MmT+Cy{Dir9Yg<wF?9fOSzeu2Vc`tQ7IZ5(-c>OtfHFI
zB@uUYdAW&pGO$2WYK_Bc@XPXO-dFgA)dq)CDidRnP@^`&Q(f-&Icoo1(LUb5I*AVe
z&mUG~8Dr7T7F~RvyEaz3cCadLE&ZxTq@y3cXbNfRKu>Pv1o6y-oLnsIF*O`f5k;uo
zx}R`xqPg(YJCITn31n1Ft-2${(MtY4lE|L(!^2odRHfSjS%F~PF@SuZg1$n95J#>I
zUV<<C>kSIpXL91VD$eFSVT3A!9nmhYz53*(vMQ!s*E>r;fQ(>jd8st_hUiV-f8~Sk
zQF<)Lo*|o!Kp5qs1foRAck&zX7yV1-dxBgs+)xNP)}nA|S2WSxG+ZilNU`GUlD&90
zUVO&+E670q{qz1$FX*J9+9Zhgk>rsq8g5&Gz3rDq-#Y;7INqF@p#t2D+CT6Bbc_K3
z0mn)!?@E4I2BDGCK*-q8*#RlwZLK|Z5R%`fM4`o8wN08lCf|#}uk2y`Lf}`@$li6N
zKie@K%|<}MWBo8TP0r39_u_?^qe)9atbebUY|c1K97tS$D>i)VB%uuW33=T<t4BRt
zVX=@~zh6#uulh*L<uqyBm|8Han_i`}u&{GOo=q}9XFfr5zN};Uz+3B#R9s(Et1Rs8
zTe{dZgoD4X9UCN}BR}PGG-uT192C-jU$qF}mg2R{8;x}Tn3DFz;x+2Ws9*XxQQ^?C
z2HfknV5^mFTW$zeEYWNlC}K^o3c`L)e4dw3huNr8tdPq0B~1?yY^<1zPn~!NGm*CJ
z%bxvTPPk=49?DPyufSIqO$`9ATU2fNpxq7<)NpwZIS)9}GoEYo;PlW!hCtH63~?;Q
zWx)(tdfOhIUWCug2BO0O;J;f-L*kEpKsX0)_j4W*Ou#|YWaudq3HJ~D&j3>SBdtKe
zf>m#^dguMj)6JoBMK(^(Y7N#SPtz)jU1y5cytt%+&XjMJOT$XOAGO0w(dVS!re(Qv
zDezD8m=_EeEy`auH!Oo^pp-t7G|`DhEQ0km=ia%o>3uI|N`>Z*v)GcUpSaq;g|EjL
z`p292>xH5}6p?a^6nUmMxz4KSn=~%FkD@`?+@JgLfu7r*9VG)p{%Z{69pIGgLS!Io
z<KK;9l}9-D6K>hS(z1~4gVDmbF_Xb$a%9B}tI|H|Po$GSP1ALaGo$1E|NZ}|!GMl8
z6KpXb!LrC6VE*SM=wAWlkM~&_2ldL6mC2$3z8eTHVG4lO<Jq%kV&2}~g~JVw+n7NG
zRhP4-zjKzz5}s>yg$@D%9z;~sjeAT?%;~tCtP_Y5oZqIT=P(VQ8x;-BNfVFum;0tN
zT{hU0uV=Xp5{=)7X%i9oVQNO*Yq!@v+cg;wd;&fNe}DHv#FS9Qmm?!1cZL36fC0mQ
zp5osw2lRj6lynYEq4&>C&sjG*7l<tSh2I++V+t6tLx?eoP|`lXm6k?arc|qhJ$dp~
zNmvmnOUc#xjPI)Q^V-|Cc6>sre@{P9SP&$nEMUE-1S%Xr21CFmS7d}-U0scbdP~#(
z3F7?m?*H-P4Xtl@c=(QGQ{S9~tGSq2;4p@M{^OxC&{CnO@j^$b5Pm1~W|`=h&vNIc
zH>b~NDY%!3M*ZVU88?L?tln3=cgRgdGXEH#EBG`(Tv=C*XWckQDZ~BB;q)xyu7L=I
z$)(k;@$Xom{TY57vh0GnPzKoWn=LhjS72(ltO1kMI^dRIcD&LFi*^->e4d?~dn!sp
zlg&Lh)ZXrAGP}O9Vb2b5k4&Iha18rupk?eja`qG7e;@7t`VIINgh6#hky-l>E5Syp
zPr2wZMpmUFitjTl=UH^RP^bJ65AyI~Dcr*|Vb+i5`-^=s*}p08T*t)j9!O#EOE5}q
zxvk}o_6SxTGalGZ73rYZQNFm?n-K*%agKnTh?gk}A<D|k4CQYDW3rR8vut{mZ_n!W
z-oK|pA_vP>HBDfeq?Ev{(=#+QMAJOo^*-zGkJbP5E&bPV3#HIP4MkkN+d~{=*WS6q
z=!gC@06#usJ6zB%3W7MC8}F%90F2@W&z`+xobtL>?!9l;;1nJZe&}rzYeZEDN9U*L
z5O#LvXkDd1)+N3Ld#GX9niQ{`HwROSYe+>9mZ0Ax6&JGrO^z6^rUho1|LY;ge7KnB
z@|d(F;59CEwQb;0c*1S|@4vf)>D#_5kRh_(I<l}c;jlbBEWK@7z70IMVU;Mw0!zU9
zNqE9dGXfUPa9<pwn={b~jY4W6pBT<C7(vtq>*`gQMlS>;3|{cMpV5Jb9^Z&Od>()(
z0YO1?YlKh#<C6S;j?`8a^Fs^9sxm|cB?f&$ecg-<{yFTw-EkcX^aUq6H~7HO?Ozr>
zKgWXR8}I2^7<B@2<PBLOiw<;S(-K6PnTy6Nx?iKJHkysmoFJQ~^D)*bYSdfM13b$}
zmuKj<_}Y!I_8Kl)MwhwP<9hVK;c0`;OTQ}&w78?QV55Y3>x?}a`U-uJ<4Cq7_a)K3
zVOemDg$UvDRC&f2agws^xX-~#hel>(otO3eu!E$8M^RpWx_QIG7}o!6E$_n9ldjN&
zw(c3WXow^ed0C_A$KKALs&2UhIUgH5<qfxY4hFZ?vWivqEthx@kr3&5>A#Hq=t5TR
z-cs1cW&RvxzIhhESc?h~_|?$xEQ_hA*zC7OO=Gyfn68b(z2ZSLP9VqLXzHb4gK6BV
zJLln>^NmjhE773tpH(;7=%h+I>D6*Rt-GWBx5NAY9Q#rtRGW(7os=XzmT#7!{Ab4h
z__aKC*m*ury7M+EbLXGuv5q%nwQjB|MfJ3m_<SiR4rO#Kv??LQDse|_!yAbd@Czci
z3J28c3M`dT38g-YF;(Wq+5+Tf=hs<t5&Q0&Jw30b6%=UwzjmDrT<AzIB})GcJfl8b
zB4Zfn&*E4O8qJ9@aZ5NTw^rUaDL8-mM&V~2D5e!j70kH}$aLONbS+K(RHfU8IXOE2
z=D>S_Kj-9OMT=}gZkUQGgp(gM>t0mUFb>o0pM|3kTbHtk>)BhcJMH2x!c$4kX~QBN
z$t?+fT!qO#wuCKc4rO=Jceht+Xz8H>Uod&<m#W*DASZv!ZCvh6<bCDLR6!K4Uclv`
z(rsR@HM6_vGGdbV*1gdmvtY9SIIn-E@TJ5L1qASIl1X9mJ<9(>^J-4(3s4p5X4lB}
zH?%~*QyTmTlx@r9V`HL4wxu@5Uue4F3~cy0I8_ch$ncZO`9{QQun7b<zz`7JicW8>
zPYH$G+V}91bxap+FJ)jZL!T*cw#!g7kW4z1S41bp3rBc3W$eYik`9YdKgaz9P!?%!
zEXjp@rb!lnlpIJ;Z|MkrXe6c3vza>2l*e@$*X$v|`6;tDSDkga>$vMmeKe3W&>@q5
zkCd>h=%Ht=K4oY%q}+Vae2}oPsM&Z^Q?4?m>cI`G@QL2Uz{zg(p7q85^{Ov@g5u-)
zD*9&1V(i=V`uLu~Dt}mqnuPbdPO$E11nLEm*Gok|EAyL2HUA!~9#h8r*6Ncnv*0~M
z#0hwr^+r}bH(4<PG%MXy66_~=y8P>G7z?PUH3ISl&J`1W(@K?^c{lnT4&1RLw@Lk6
z(o+sjN=DC}zKk&hLe=J3u@V(r*yioBCWzCS`=<p~)_FrN(MWK0uw!B@s#yj7si3-z
z{ci2O&lH+%-G0f3DNP-FD;2P8YE>!skN9n^@u&tJWMP_}T-smP`?^RqMhdh#YGyn6
z?Cr8&lCIDG;tG_%J9~MF=IL~ObY#opGPr|)X~Z}-TV>ThLCWu5@gj-d;g<jdQElS?
zA>%0WJ(dP5NaGnlK%0`SuIm;6Dr<=`>m-TIp)}fp-AEqCbbGpWVEnMs8wUswXzRtY
z=Kp*a|M8Tnb3^0&q=(y}9=+PaH)V44pH}iJqOwf}Bn~h-4kO)Bl(e=kGHf$lEvvzJ
ziYT`tq04FYQvDsX$-<&`m(nZ~+^gIPUxLg|#{JyR2s+$K`<Sd1xb8%`Ijd?t>+Tuv
zK=hLnUGy(se>PZ;{q7G)p0Lon=s_!RLo-?bX(j#kf4BvIM)<#iREsoJBy&YM(pqTC
zNS}oAf0S~*Z-tkDNXK}N4DQM4X%>(<4GjtTj(s05|DPH7fB5sDF7aJ~wBSQvBeNe`
zK^eYG_8STM?@!v}3v(1`Jw3h9$VeJaPR{-(x<9sS9pC)d`yYUvZ`f5aJ>>55uo0l%
zy9z!jkNKIzy}yGmB(Tii!&`_{>wcxU)2m1Kylc?UD!MV$xTeNK<zAliI51lfM@86r
zJ+Kntz@2fz!7euzYnP6by~;F*O7iiqD<Z-`6r9H7;ulLmlQR5WC0DwkIxGx{A5a;d
zVPFUY|6gumphDJhtLE4W_CCkJ2KW|O_di<>BIPM;GU|^XueQ-MpR0OqqgP`~PAuR#
zt*_bp42GKegKw)KSlee`;h{52>(@Gn*Rsw47{t-xQ*Tc5u!%|UDV(NJg})zz@2oJ?
z(8-lzMou$@Z6Wbu(%FB8v3KZyR=oJvpV48|DWSE|z|t+No12@GygVxZ^;(QL>m%8v
zB%=oo9v>L|V&4N<1k|e6@#uN3Fd1Hlx#@#At@0U|+`7{jk#dv=56j~_Rfj#D?L%J=
zH*{!x4NcQ->1w)VaR_M+?xQN3q@}Mp>f`U;B2zT0`E8G*xu_~LD*piYsM5D(y427N
zY*gnQn5(JbJT9j<=p}JjnS!n4WC4#0%kQv}ShVulK<NIs2?#sT{Y>SrANQjFiHgQ|
z1XXGM>+6e`FSmiXV(H8|*nV5}hzEnWVK5pn1p;0ibKMby>e)W<Xe6&-BMrO4Ge)u`
zPX$1ONLzxA1w&2FYBox>%Hz5gEx8rRdqCG~U0H<;n^JSZ&(BXUAdqSv)>2w^Q9qeV
zH){9CQ4`2Okr17poFLPZg0n8wi*x*oI79aL?6Q>DvNKUYUuMEZyx^3WK<k|1psi>h
zAVf?H)e0+y$QM(dXlS+A#P3l+|1G!_K{p0G+e@Fsa<FRnp5pI6`#PF17m;{{COWT?
zm?pZ-Hb=L*7pZ*N$Dd9gMp$aNchmg+8=|z1q?t?b+!;Y-D*J1<v<3+T;^M4|m?Rmk
zfLL6>Ifz8x0>>Nj8#M{7cDVI0)6GL_3|mz}YHoKl2MP2NbcYR{zb9vHE-x>uF*r9i
zHk858Ok7+XU#{9>YVe&VuojTU<>IhenBN)$Zf~YTsr(Xp3>47OI_1Vc>FDW07C;vp
znpY-2r9`5u>P0-h&9cJ4%N5*Dj@iw9HmPN!1emd^5<;lze~%^UJdo+;Q!w9j@<bZ_
z_8-wSod_0&@J9J0;MJ&%j%xMt4?0f9sQJeE_nJ?*wL=HT^x~NMrJzzZ9;JpqzRRQv
zEQy~5J#cmmYQhTk1UXJ`Ar;K=Z<S>!q?7Sx?Yf#>l{vMY+RrBUYRL&HuF09rjd4rs
zrA#;icTZ*brIcd5H>%6tDD8OJkFC(HA0Z-|3Puv3-4YVt%DNG$bTa^ULCb{X5^yC&
z{cU`EeH~p;!1%=XU6<|={LlclJ{SNRV(0+rL2fZ8@o`OU;v-gQ2P!%bAQZqY#x52H
zIBg~0znKiBcHIC5<2F#{12jVz-RG69qVJ6e`Q)4r=D#EfYwU;OaG?UQ2<FL?8O9(8
zQP^*e<r#(3k5`oy4PbeoZ%P>SZd+k2O>|9cGYqiISS@Z-z{T@{xW(qJqT(kA(fZyW
z*&`1Vrsj9YeI5q}mpSI&@S6N&p{?}Wp4=JsSoin*)CX7J`sNbg{_1rr<Ah$vK=G9F
z##4B_+Q<=zjJ<N~>wiwh>4K{{DTFF^a8vNvh#S&ExC%6yyO)WT<h;EF^grQ}=cj1e
z+Opb+)Ycz-R;(T5lJcIw>gkuwoYq^goi347bf6Sm@5z4=M##TgO_fH|SX;Cv=>2M^
zFjQ<bgPO_K@f6`(%OoY;_0~?lsoE^~80mo+8Xz1l8``im-@RBq<k<t^XY<qGg%N`R
zaa->r7a3bgHDssd9&SLlB%}fC6rRAFdAwAZ*Qhj)yEoPy8XV*}85<jmsG#z1iG#ee
zEnz73V?39v`p?V}O8M@$tj;cMWa7y7^0LxK0<kSGUsJ$8wE*-H6wp-J>Pu@_M5<I#
zd=W1B<b+WORmPhZ0k^(6|Eq+|bYI>aX=dboAU1vDPE7MybP8tGchN=iS2qf1xXTXj
zcHh3eOnWMRLhVQQ>Q(UPm@#_V?i0*PX4Y*`yCM2HctwkXg=|u<^NFt%*Bjw(EDKU7
z?K?^3<6-L}?q?&H6N^y0{qK@s%9O2P6!_R8L_|NDZXO10*B@H)V@#_bOq4ulCwjmg
zl%LlvH;yzkJ^`y4`}MM5FrM|ewfws2y#{2-g^rwjCL;k+p9(fVNl5cIbL^&#k`c*i
zz*w(#qwY>s=4Hy16!?~5mY0{=OVlfiWdN0wqaz$L2PviGBWh)gc_|8!Oq|(`E-(Ac
z0&9*4jjLWj$HRH9{iS}LlzV=f^SVcxQU^OE9MH~%t>J2GZWV=+lt6Gq+!_r;ujzx3
zJ##Ej`=Rm56z6x`(<fc1U^pQsARyqlHB8Q6;Wc|oMWY|vH9ue2&JIlF9cwHkBm$#t
z<O#n}%fiCKmZ;0QPVs?kfN;s6$>s_P4-QWEgGW=AmX_{yX3(cUBV5F2aBV@N5z$KM
zD)9lR*cK2qM7^{cPKSORz5-in2{2P<QkqD7KUQWWb0G!>NuryBaSt{eH){t6gPSQh
zJ@I+R(sXZ>rhK!CS_$(&|NdBH(bCN%ARr+b#&g+ZW@X9nMF#cCa<MEST=Ya!qIPy(
zSgD@z40?E?k_u?AoHjMw2VSZKcMK(St9;w7Ve%?6wN_61Gr-wO2m$151fx)4VDKVu
z!_&vd$Jqz0T~c}<jj&bOLAfdc^=W8tyfSs`uk{h|1Fe4WSR%^H>;4=KP(pb@p959#
z083Ud{hbe=_M^C>I(0vR^wMm|SWo*{5&=h8p&d;3g%_O4SXKNHiLocfeqC^j5_E{^
z)C76j-5nnWm#%>R5yfGu2hHe}-IJcVxpv#3u*L4HE18OWANcJU1+_d}25jCW!u=|X
zsc;VrEQiz=FA6j41~$vGDw2{Iy_%1xvAuf&I9VR_V-Qi+=KUmZFMj4(B?VKc0?kl8
zAPZKY?!kVvuk;>NWW_x6ww4PG(L88;6a7=~A0EPpT(OOi31?O0#B9}BobHS0Y%TeY
zsSi|j&G~Xje&>X`Ym^y3*4!)-`!bXRu@IskZ*1iRPX}aoM!7$K^t+E(%qT1*nr$#*
z0i<68X@%nHPnxRNgzx!B>r&kBD?KJ!)WR4^-a9*^$~DelE}Vo06r@9WZ|b>v$B&F+
zDR}3>Vant0UWAlA=+F%<Qrrr>S#vl4X!K5ng|W=~y9{I;4yI;P2cY|2H{W$$>(Qok
zzvEzf{`{vDLN5-?glJ1~r_(dG2Y&0jwYD#@Zp%>YTijs;7ikt_8AnRR7y>0oT8rPp
z>SY9kdz#N*FR;*Fzgjn<v9IfUP?<8n>3zOd+!4|A6E5#o9G4ycTYBHugg{XA=GDU<
z)U2Ws2zYYwz8scBhzbOiqg(Xw5FXYrxf>8KlYYF)0JZ_+vNPblXSb!w=V0#Fatvxj
zv_*%lhR;lutfSE_$3PdC5qP@?(89^5@Wd6|g2rN^V_h*RU+`+_i6L<+^EqB%5g}p!
zO6ze(5J{#*abtX^V;yw(51~Y$fxsu4$PO+U0jG5`b6dYu3=Q}^z>;;Qfz+3EAGluR
z0Gyui5Ka;GP>GC7^p`P-YqbH6BSi#{KKj)!AoQ9%`TKl#Dyq?zlCNln%>Nc_jv*`-
z%pCE1gH0JvZz0>@7e3ehdJz4QN}W2#kVg>~ku9t6`=#U;9<Y*v-dD@;Hz3lVGjqtu
z7P*0{jBBsl?a4*E*ACDQFdN)B1Mabdhe<6k;h-i}ZKI;&KL`*3{ZuY6d<|JyS#c#L
z>IceQhV4iOuYV$~J_-V_mUZ64>ysCu;dNDk{T<?@6?BLIC~&duiRV2}fBK^x%&=jY
z0ZSGpu`WA`L*RJ$4GdBV_kqN3N>>!Ajf1WMrN0NL7&mj2rekY1zFJJ*GWvTPKMsAy
z&=;0M95Q@<Kg=h9F>7P+Crl&YNNl$=mW!593-t0MPNzIAYf`~7syiqJ6MkO$l}fty
z&jVAxS}ln>ru#|WcIW}X=5KALbZ^0(vnB5C?tXa)ByzV_8kl6#T9?2G(V(=f2-)rC
z5^HgFzSg0iYHQ-W_umTpXOd8t$yZAP&mPAtt|i^!+#c=FEm)K!K$&D29N9*Y(XD-=
zT~LrU-_Z=AuBGG7c<=us>nwxfirOuWYjAfOOM(P<cemhf!9BRU2M7ro2<{Nv-66O;
zH15*4!<>9Gck0faKlBf(x(=r}`|Q2mwVvh4YuvfkwqCBop6+jTj`5$VSpf(#lB--S
zxo_*45{Q6Sa_nX%SL^ee8C5w}2zs7C6P9j_!@ue1xjSV83fLhZtT?_FN_^>%l-s_m
zHtBujaPEQPB;l26S6MO4SMXx{#fh4SfiKXb;rlSBY@^b=LoOoq?ZA9yzuN2(kHKlR
z#Z4F<PCMTDGXGf4mpt1M1WHcPTWhUXtqmYa*{`yF?s$7$*gkUnO+qH<{_CvW!$0=C
zQhA1a2WKkeDXr=ui?gD$^YxLz<VRQoAa^F-ug*Np-k9e}bwBH2;(po9k0;vNN}%>u
zi$AkJ+|#4i#MDaa6n*qOdaRNCslqw5?bqKMD$+)`g!U70>H2Aa1hJ$$Cl^+xWy1WW
zRVA}ivc>*C_L6Ei|F;*9M*xsGLhc}^%Z}h`LO2vI3R$c$;3waC1;4!((Vc3ygPfrs
zl#$f2g1kRfNXhdVOzfgm9xFT%^7G3!c_aMLlF?iLh1WVETQWR09=S3CGw5AGzO&Xu
zVxF;L(2OQ`3LKngy<kER&~o?2(g}E#p4&SCsNv#Ot`5WkA3ANO7^;WsBo9$xG|BWC
zI+xpX;Rzs`I;^YP>H0Xi?nEg!Iyxxt^Onsr!f}9WQ{h9#Z|5E`lSQ52LAmWFdNKG+
z2f&p!M*CiV@Cjy6%wmy(HObJ)FIo`+vm(?2K|TDW!y(<h?FI9jX@8Qo*BqnUhY#^S
zEfEy{+LHCM7M6r9=!|Xwls3KqO=dRK_86>h7omNbq-AIVqUsC34QDOTb7&5mC<1&>
z%XS0&)RA~&!7>I=PbLZ|u+Eq|zZCDF{r>HW$^0qq<0z@bv+C}gr3ZoJg+uzMkOGGl
zq1c-r`iKx*q;5S~h4{f7$EFU_-ySXGktB{yn+WYTwV{!?RO+Es5gt;tCZpp^UJF2%
zRENb4ukkvD^%duC`M0zbuYjxSP5$6JC7<3!YKcfpj~>~WCBX5SG4ck41jsTyc+j1~
zoo*iXvn)3&92(30+y_J!j=%l>|1^3Pa+uUUGynDG9+H_$4h`q0Em0O$)&xr|Qx=$G
zB>o^4#HQ}s+uOnfYUyc!DPu?6uTV(h*f!<)T~Y=*lu5)Obt)_^%~RHyR-6PN4L5ye
zT{474J^{Cdi>p(BUu<KK*D@6ukSMf&&XY-QSlyxh=68-vZWEpuYIlF;_{te(&B~=;
z5cS|FWQ+ul_2aQC$V#`-|Gke?C_zPcNTTQH{&1(GMl43KRIO;_;qme5Z12j&wk7b6
z?H~ArGk~GOoNZ?$MND#v4S)>Chk%x3lB2e+DV{~$A6Ap#%dMs=%B&ymIu-{D`4!v#
z(9G}ZO}H8!c8kV4byF~P0xlk025wRl6XlM%pOv0&$+U39sEUoiN;XT00Y7c9^QK=B
z=JGqVG>jS?-+Haph|-pn8Z`#P0jT;4$4Ze0V!GQ?(*J$I4z&O~AUttnU^`V%AtUY5
z)%8JOOQbma6lg!*fL8OY3G$#|1*xpT{kZiL|2VinZ(>Sf!?ve*HXddK&YQ&{;rX4F
zptAMJJ50APb`eDFpd58qHWZvjXHwwNI}U6yWtu*xU^dAii>x9!gQM{nkZ^E8cA*hG
zk=HEu&gboS_!kHJ@9=JCVCl-VDhmPQMolf8L}>5=7n0|OAm%nQ=2TK2OL$OF>JRTY
z|IIK0Z97C(vNrx6%Fl8#RnP0`f@|GoprcQ*O;|UZo^?a-2BD$JdYk}M^zV2aDyFu(
zKx0&L>dvP#{@Y8$30Gj_EQL2pJZgeu|HpnjgLi=NotSW?USk}9R<|Dd4&nehX7SBH
zi9G9n7!B>bCJ;@C`+_jZw}j9JVI4hLn1UsU{rrLK%C~c*Oh#_|<vufs;!f#!@;0>K
zPo71gcj7)XnQZ~D50+;nZ3?ddM``Oyih}+20f?F(0MxN9R%*|M*&a^d@dKDjIGFEk
zfIPZyrA}>lSPmpE%HKo*d9@4qbeUwFmz1Q9Blu&FmpBsOU{Mfyqm&6@!35(B^md_c
z8$*1xNtvJA<!a(OQY&G<)ppy`KB{CMi!{b=_uZj7h69wt-R-G;jJ{#r)krpDcxSfI
z*gUD&tw<Z5Gk{bd;xrNGLV<vQS!5GLCV=m-+LSP1o#6r$zmpjOB?U?KeY`MOM>Xan
z_s^oZy!zri;BLJA9e_q|&tbIg5BA#sJ>V4qCaQ~ZL8LPC)p8;XaaKjD-Bg`RNUEFQ
zIfv*4vMe_NPz3}p2v1pW)p0?dJB{*x7a2s55>o;@z=M7t$_G$Mu~3L%-`!%I0L4w)
zByLUdgS}Mbo+oG+;K#r>V3$G#D!5=NFfv>`w>1PzoRq?&Chj!kB7HU(L5_w2b+@jX
z-t=&CGEjz(eC~ClpOqEIveOHND#aRih<qxwFUq|C-o|2kVrVkEDG@zzf~Imp>cOwC
z$>5nN9K>Q422EB|#e<^joUh1D-ta0S?_(C0`+(aZ>d+s~Qn9)&e@Y4Ig5@UM8c?HG
zf63r|Q}&u3x8%`lII*0lfGqNv_`VUtEBJ?0Ji7^8ope^}7b7GFY8g5@#(bv;K)v9G
zCl3%84^fw)i}7e6o>V*x2A((0NT58d3m^xdLIk1OAm7ONlLh&Jcu^~7@&0sDS%Qea
z65r<bmc>nGMhdY!Z;ITT@BZFQmq;pJK%b13Io0u&Y923l7Uus63W?|-i|oKnkqjW!
ziQeA=F!SnS<lqlHTr3eT^Sh(+k>Bg?(QwGBJGnyX!c#GGez1m50yO}SyD3K3d!{Mp
zoo_;$YM(=f&?tB;CJ}P7{Ze)8LiVjg)0zIHk@1MA7l#Exz5%Cr2mJ4%L;2z&W}k-u
zelMCT&9ZpFcT29wXUb66GT_1b`oX513`TAiL)o1rvZ}5N%iLsngchOv<aoe6G;khA
z2?X~H;6W0`5J04TW|%#jh8SY<NHwHHp=I}7lgv)fC$$sbo_YXD{yQ%tPhXrB>Rlv{
zG|PB?zZ>_OD-P<S3PGqhl1Dk(e$GRx<=C%Xm5s>D`*Bd<%uObro1Ek}?{Frlnv5K$
zK8Rpkd<^x8XRBZ&#lpG+9kXIZU~|xyEPH%fAF%}kVioNIwOKe8z8w^a1N<nGB8w(7
z^FX?aefk;-k)pu*VW{jXCgY&L&!W%$4~E%|MUJz1O7?VQ3H3=E`E7I2DelM?Z#xb1
zD^;Cf1*)ImVd2P(BLoIj-<Gf}^gtt`WYBRFkmUYJLK`l4hE%_GtRKH^i!Iuo!c(~A
zGBK&R&4=&&zj8-VG-aTVaqXOE5H-2oX@Be^loNGaL>J(jfhh7@*c_2~3pi1^a=zn!
zg7j?+)lJV#aqVn&%L>a>7<Fc1=6){U!-iB+h=mlb>*R+N#h>K03$J+JOMsY-0*C|d
ze(IC2NRRt|4;CZA5fJ+1{lt63XY~%P<q-W6)kZ|x-J!7mT)<K7t{$hb`mVokai-4x
zFu-cj{_b<@ddScUbD$E%lJbg{ul%69ef?5V!ykpVbDc}bWnpTs&tanmnE%Az*ovB%
zcUyG*_Gy_G*Uz{}b$nzn{xPmKjPIIA45|OLWS-f8N7^!;BLBB-Kz6FQPizfdLZsD7
zSOt+AY{_A0-SgXeb{nalquS}*-Au<h=J42XJ|2aRfXQNG4Bz9o-*Uil`G?U9LZZ_x
zuH@-c?7UySNc)FsB+rw(lHnWw7d|3pFqgx!J+%YJ-F5^;^f)?~qvJwF8gbugk^lBD
zRh8_lUtVb<K6k%WOmzI&43Q2msiki<*@yHl=!b1cCOc8*D$gsmypXF+?M@`q1<GB|
z*9R~qULe~O9A=MJH$VP{g=4f9N}-Upy4n7*NWRM((p1!zaJjW>+j7b1c=aZm&}8}=
zSokhd#j)9((9H^*0gRRU2EAT=sa~E($Zu+_YfJKJqlCxB!(Fu)y|H>;#qxh<WJsw_
z?IW$vayc*(_n?U}`35Yne)4IsTP+Uqu6B<Z-`j1lM{FWbA01&R;Kdky+7@UttOo<-
z>~gY-TD6H7r70e?IHix0=q#mj{OZp_p1iRsyPn-KI@fXU0?Jr7pn6fQ6>KKMqmTiO
z-Gmj^aMp~Bc^}e)AFvQlTCyl=IBGF~s<mpgA<1*5F&duofT?Nxz5n_1x;}#2H*&#W
z|IYj5R2w(O01^3!@1bz0-g>>Vbef#}jKjj!$N_!uVI#zmWJ}70V*bxci2$|s8+mFY
z$l#YtWlKN^fH&=eX<2KHzr2Y&c5K6TbU&XD|9W*f>xG+#Am*>WVBhj$Qc85aX1&o>
z;rqw47##ldz1d;Pn9tn9vtB~YP^#dQ_p8BL>mASLau`zETfM<-_GiCcG^)%Fqq@I`
zH{ZbVf9dVmB_L?QuyZfYf}DYv%F=NI5JzP(v6^14k#uCow#Id~jOCKf_uWU1Fw4B<
zslG2ay1^dGmiUAR@*eBFncUlr7dwA>`b$w`$>*fKbRBaImn|pf?VreA4T2+$R$9-Q
za`!Xae`{eCJ{rB%ppg}hXe?lNPRta==iVNjf6^`}FrS<<D@wY1I6Z1Sb#-%-U&e#c
z!h?Pnef&4R={#7A^4Xvtik?p1^t0L9E552wTYFa-7D8KpsE7gO#*sZ9&z?D*#s~;+
zZ(qeklpJ*3ke-D^TDB|yT?!aUP(xLx0I6OKjCE306X<ZvdQ4(G%ROhrHodMVL^5o`
zr*0gOkXv_MB>LcVt)+6hmG<K8qFH>>Axk%^;cf;|Xs{<DO!r5D_sR2=2f>@Kqf<V(
zp>yE`BEBARJ;`Q9q*?gfrexvHG?5KQ3zZYcw>kL<$koK-)T_ch>=XmJ-=&7^2-l+o
zZf4aoxZWbJ(9hGC>um=Osm8Ws4A7tWyeC5LG$7AWDt(w*nqeBZZh^<shO3d=!A`hT
zB7_n-x~oG(N5U+R03moFXQrEMT@mCYL3}=L`~kKydGCtk;l6^BEi@!?xDJ5b5N}DX
zp+AOt{Dj0scWjXYAi&F8k{hwvgHfm7qQ$`2$hLzVIC(5Ka`?H=C;!hiv=jiK`mRcE
z!<JpZ3^Iszhm>*EMrNy0BgyG|%>al9*M!f^AeO+*f~d?n?IXD_5%koP>c}(Us{%zb
zKGjpwq(Jj+1ZR%_w!`kFcNAXaimuzKB3e&63BgGHwxikRmKO5_=aIA?8nLvBk|u(I
z$2Q|720CX0JhzS98bW*lr%~G=g_$^$ygs`r+XKRU(RyAH4<1k4>x}*py9GVPQqG$_
zTO3Qdm#z2n_S`^=5?pww>Q$Uz@mt?vo%N=4-7~oI7$|lUOXPE^+3oLVju9^CYhvee
zyUpSV;kzXn@QQ<r;}*K6x*KW3k*NIBdbj-yj{%muu*@AxFB3T3G<i96SZk3@Th4l#
zRR6_cojulpX&@5HBO7H+{_82z`@*$*(f?{Thmnhw?bCbRdX)FRqYVK8iQ+-qJAW65
z`jeT#QVVD&15Z7u1g{@9X%!W#BPcr3=#;9WA(NGW!lY7ZczTFHOa6Eze$FExm3TZ;
z1p9ImwiIs3y3<W55N!2z@7ol|Zs9&-TFRSI^)uSd*56(_W*VCBY4M~}dSNz167fPU
zT~ebc-Lv=3$w8i1aj(NMX@34rFHjM|#nYLHEx#jPeSc!B>U1iT>gnMnd(I9Cg?oym
zxYb>AB9qoK;|B<eGDZ?)0@z?zdM61&veEg7G(=_=y(Ll$-Ma!{7D<}?_4)qdgttq8
z-5}-TF*ZyTkYKnxOJ#~9D7EO7hyuVoPRV%$S9jomPV8|VI3sW2(3Eb}8z9&+1=Kr?
zgW|6nj<n;**9I{es9hbsy)8;wRhR#>o;hUleG3~NOEP{~w&kCR+-$dtYu1q<bUT}k
zE}TfU-05xIcz(dBnp_%EM}AJuj=R`Kn9PfBuau~2-WzjW`9q!R_~brzxb8!z8iEis
z;Qp+1cQBPK^!laQTeWk3NZNGZo2u*Ji8Gg%HXv+k8nP{8#hI+jXO+qdKgA?|R7MbR
z6ME=#-OD=`P5;eTuO6U`FdcIxq_J5*+PGA%lX~F;Z}MDLxjF_TVt^4x5U{_I<ox>V
z=*q=hsX=9{EhW`}&Gn|FEXe!28Lg$lCl>qP{4jFe$Kw;~mkWdaed<JgN=XTh{2<tt
zNmEWD(Kf;>t&eZWL2|T#cd*MWP4|FiNfMH+J=n!B(0%}M1`L0AL3s#tBf836C#<ZU
zzu@8mwNq0hZv>u)PE>2=dy`=Qjf|F&cmR~8O7}A4B!E_4PHrm-0|FP}fswiaHQ@|Y
z`dDBDEbFZ&9hIQ1fNYK?b6`F2f+gB~76I#<4}mL<5W_L6DAHoCBx+_=RMq+hiZiu>
zGS5frwMAv0LvdnI1z8&Y-yA_{i(4Vf^*C8(Odhcf#7fUwgbBChYi*o)YAPxol5_Tp
z_2C3-XR6^YEW|U;Q#5cCwYU+b6G!7=vA*PPS|uz?`Oq=cxsP+@=@1LDHi;+ilfN5L
zsOEg(`8nvQ)wB9Q!Y45#VqzGVXKRr(R*=fb$5leu3GF~-9B;`{VQXN=Dx>#)y{k%t
zAtnT-?pS6+J6S026YGB;P6Mt412`v)7>v=<A0-v*iPZ)Ib*6<G{;EMb_Im{Adl5R3
zIGbUtKr1!c_wY+b1%c}gXlx9}@pl;7p5H_1T>;T_JX+Qtjp{q0$1g$HqfcSd?ksT8
zd=pF91d?{MAe+_F_T|Aav0rr?xz(x>C8{G084J~5m55d!&xa4p5kiSSf6GoidDLKH
zufIWH%w|t9rkZgg4!Sh;K*7DyHpYAFSz0w!6LVv~;nU*;Ox(#?e)ym}Mg`c_j@!7q
zG@>;8z!_KTX;w=lrH~H-#cGS7jEg&T#9V%LvAQX8)Oebj@H{g(66&Ku|H#Ogt%i7~
zBDVz}EG->rvibKa=Z;_omHYa$a4!7Zyb%%-FlMEMbL)I@m$5W(et5nL$juS={>qzi
zhlr7x9~1R)w!$6`)g(Ch`7i`Nelq{BGD!d<m*dhP752%__O^8-8MC2+$wd5~lyc@b
z&Pw9LOu0l@@eise5qzMyJ~uX3D`os*!mu({=!Eb1+`$+EwFO0%B?MAfj4H_J=-C1O
z_k>r~=X7oQ9k0vnQd|Nlzj>UK-{M4eV5Z{HOKfmIBcJ+V*=^*UW?(<wKX{j<{Y}s(
z?<u)^yC7)UU+0cpb0T*=`yxod=i%^|v9{)GA_1(P$@%S@jv(<7%J5fmV{nvQRepc$
zhRXru<FGmmH7S3e3@vNcUVE%*^T++zx;(fZ;mrbm0p{*JYy_f{(`DPrT}B1h#SXvL
zYMssvDTLRvZF5sGF&Hqv@jUl<J7BkkyugYzsW+O;3%8+nb>YJTxbzU6LqbXs?es>l
zzn&Ljdw&yGS>D7SU0uns^u`k=H-h1>XLE^Q%4Z8}$A%_DoS&bEz!MRW*1)U3c3A<p
z<(F^{MEc!sUK=8~J}oE9^_*{U?nkp?FNUk)@dA$>Ufk4w;7{(!qN4eV1d=0aREXhU
zU7xgRqxBpkUA`kuRI+671HX+`%vaz2Sk;V;)k8w%Z@Jg*NwDSvel~4K5OX~k-9Vc@
z!GrF!oe&V5`G9UB&;~92q5FMkMl#oVzMkXL3SO^NFDwn*@_}$1kzWLXoUpLt&FA%G
zCIR7K-jm6kpKSsa{<fPStYBMZWsF@AO~h5%m2d_Qg+HViWE>GOK`pIRwtfA1-LLmP
zBaOu$ihZTYS<B5`V;LXDEfeYt`X5|j5V>+_56tEV0g7ZyFoq$|AqSX*ED{_@fV{N=
zoc$4rB2>O>`R#K=tZKqY6DSXE;pF`U95{gVn;00#E{fBqR8a4AwdbsD7Wo%)25knT
z>lqe_0?bXfRGJI^G!`Ze(kLioN<^AyYip<eQt^QeV5tbM{_$@(r0|m-lrNULPA=$8
zXgUzh<A1G1LTa!IFulCzHnCqs>X>UM@!-d{rO-VXCFz#CQWF{&ZjdL!j2)Pr0G~kZ
z)!d1yYNJ}3yg)?f^|btR$+u%DvClrRz&kAFf}c!wtfSm;!7S(=-Ki7Z<yJ4y-m?fH
zIq4%VCo0iYAy+Ls{%<YSmkz*!?)A0)L15NC@r%wcp_F`~kJSI&6hjF|9|M&+<@J1X
z$zlRTYN@{9lAE&N$W8>peuyNw$nCb<J9UD0^ylfZ69%F-+o)nl(zWFfr);AyT_m{V
zTntyDL#rOLDZjfO)CLbveclt}wY8WEdwF`39QV^Ue0m5@X7r4LkHVzw!TjO13C^-O
z|Mv4NAWrfdlI`!LOx^s_(b+HFH@7CCwC{2|b(sB!4lg`}HEiMIjyqqwAXc7hXtmLv
zJ)x1agJ3q}uV41@g$!SeY)oM&xCJ<<Mr)Tam7X6Q8-K)jd+|WRSIP`F2$$;$u$^=*
zpe-%)XTay=mfJ5E^Y7QQ4f7nnTpWe^WEB=rbeIZd&?_1>eb2WDqN`4QCwzc8Tacd*
zVDttPEi3#;h32NRnfR9Kti_4hnh@^@3@gumUA0`Yq*z_Q$?ig<=7@qmG@p0;CH;y=
z(s^&n8Sp(k8z_Xzl=`7r@u(3Nq4W1}>(zFeCiGY$4Hl7+{7JLoStH7I0OGK%{=v#~
zqtpR*!n#ohuGO>oZgHCeQ*62if_=0dpJiH&DZzvJ$YfySGu{b#w%f++&}-_5Bw&qH
zeY<`yUrdviEoZmXqTJ31t}vvd;Ih1;IC1QFWe8ZXU*^yVfQ8j2jTS>Ph>dT^(tI-r
zb92s1o!PfO>pefRix{cNL@c(uWgKyX5mFX-$Uy<QgszAbUsiVbuIB{Kbl~tY8aS}E
zk>H;<U$vfhunQ0?{o*Kz?80LIc>{h1QVL5PVY2U#LSQjsy$kC;K~--6L%_cQE1S;M
zEx?!y8Uy<MJ7)jQzf&i?#IW#y$i9(s;IZaL@B)5&$r4JWH`?-^cR$P6*17a<eW@wm
zH&lE;yVU5}Zfkp{%ESaok+Ni$IX7{yar9ww_l)eqVsw~$8iyTVY)K<QZE`lc>}xXm
zbGUQSI>ibDqFZc6BlwZsCs>k9JmOZxWd2WQI_Bd`(++`KN2N+|2BR4T4FcMcRKQc2
zIVF-I=yw#o>TRuZR(DU1;L9jLq5K&#(C|Jp)gr(1af0{}m_H6Y_PP{Zp40eiWqJA%
z3%>Rt4sb~$KUat?-cPQ2%o?i)tA4qM*d`uKY43*O>zJ9p>~@l+Yb-h<kxs2QIWJ6O
z46~cMty~{cqd9N0;{ABc^x3Zs#Ochs_kkQxH#!kuIjjKs=wCQfV0BR^g<d5|e=o{Y
zMns<OY9-zlP|N`O_?xV9$A}CLrREQLiT-L^2_<))F8b<RFO|fHA;rq%+XB`9>?_z|
zklfG`i0MR3r$OrkR^l?|b|nAW5m}mA^zC)T`VgwuW=qt(*b2zcyWmt6$N`87b30Jw
z@#W3GplLe<0(rRuH*SVoX128n;Ny!Om|N)T8{Do42$cWauO3TKL4SZ;B7xGWRf!t3
z@;4VDt0iMPSzWjx&WoA9bX^%m&yCcQ0sXsu3pn*{15Q6@9-U&wL1>}n=%-i6i-oy4
z5$OfltQ3P|r}Mht(@8Dq<FfDbp6%GleZRicH1OB|x4;b$AnI!Wl!>SQ-R7+0200g>
z6iwotw?*=qgSR(dL`olQ+|tIa0ZCu1r)Sql^v=$g+pT|lLVwKukf##0;j)ZjZW1xI
z?I7rzbD%-HO?KKXQDnA*%=b$X`WaUoi%q~(8x&snGBAmMj~A^QL!t^Tz(tkF8tMX4
z{Pokwn5BSLFYJpHHKzddM2zhIL=9rE1zAhkagU^dvgUbMZ_%11DRkd=i;%nCiC3F7
zhxO!Ni6R>@lM{wQ^E#D#Y#M2qY#x~xUyt%E&+4$ab17oLFAN6kU)d-E?s9-~gN?{n
zfrnXP>+YxcDgu`BUYCUp(Y1%G*`MsQ=ku)Ihr1Ix_mQW|ua^+@ZJsRuy)3RRsYF0)
zKi5dz1jHCaa=<1a-EP~QtmZ&!deR9n8X0AMpJ{1TCcbP^i>1xOi7#4`(R+hCaKf9g
z{Cd0Y1@LTcw&OFmD%Ls7t75ybK$akp(BIL#MiQ%$zMjjjJN7Q?Z4*_^k(-VScQIVk
zuy^3072t%e1`?YD)(1?T9v9-1#S3=e>y9z$n4bOfK)RBd>@GK#`-)m9%CTapQL$<L
z5aWNdRw3>&X1L8U6%ybE^(xr6wE;Oo<!b<`0I_rSv?_J*0l<^7wpU>UhE>3=aYV&u
z+^CXn;_mK}b3-8|37_M3>Q>8M0=njhHbcj}c=kcV;Yl~E><e1Su9B|^?VTGDR3@1q
z(?02yQ+B2;`$!Phv=BG9vZHAb&5`HsE^h|6<V$i_YhL@Nz~Fh)lF)-IeEZY5{&?`>
zsvQaUnMF`5uX0hqgE_NLZkR|d4@T@ik`yLx4`nKM3`xS>cq@1&mDTTWZ}0E0j3I_`
zr?$JbH;--oDf2NZrQe8^oh&DLjp7`_`xVF;!ZzyX#2}{(9uvwt#5cjWp21b4-$BPz
ze0)k?1jryG3g+7yFa4Jan_h4t8GqcNM$yPn=BBIZ0`IhZ5xjW_V7NlwcnL&D^mx8^
zE()pf)X5!tT?-jcDZnhYhr47e$N8+^4pXMMp*=AcGqqc=v@Sf)l{sw$Jnu(z(BGhq
zx2T1j;sRMi{{DPl7S*Hp5Qs&DvW^Z|sPvDajl~d!SQJh~w2hG#D2IA?3>B&}Sk0uO
z;&DK~>I1RN7#%wv=%n*mv>?Eom4Il0)zKq)y?x~|libh!Hg0g~H7Ox}UnPUNNh@?a
zR;SiNLyCRw^L|oA2+;DZwde*F2eDbIG!pjLd<7`X|3+H$Q_ks~AwV9i=*c)8|ALPx
zpKIgSVD*Zgq%cNeBiOSrh@F5iQ%~p_A}+Q=a(V!D{_dZBhGZi3c97=ye=Y!6T`vM>
zE&=+N)WVhX^g-LQcs9fsw5fPV7%`p)1L6aKea;#%<jEDoDy!hv1~}=|d_hK~xpoh2
zBxf;(s_ZeFzT6$Tp~F`R4b^VLi5f(JmH(~$C0|FPBF$R!9D%4L<-Tdm3nJjT>8c9q
zX?XM32%UNz6P~JCIoo}vv*(*i_$?`3hQCyTVDa4GjTH+BH@6LoKG(R9_BVG@%qw?9
zJ=QGIymnr^7ItkJfeRzAIEAXc774hsEE%hUOt2(5ih6{SYe_|8`gmKdEsPwwNmJLU
z{N${mQbT?5bc{wH`>@<e_C?%QO4OWPw-YU`$1{)_WkUBE>?<lh4a3^=Kl*P9;Kxwb
zm2ick&A9_ofV+t>(;%`ax&Sl+qMn3Ri?3Jm%ah06+69&6)t;Y}2IkH6@j?_l3mJdI
zhSSo(fQ=00b9uuqL&ITy^|!b<PKmUeW4*BJ50mv}H>8hSF&YCxw2B)7B>WAPC}C^g
zdXg-;DQG2v;qRY_HQ?Yiz7aN+??d;v+PdsGyKMHL(PHx)@u9fbzkh$=`$Q`ywYAIl
z+7M65`=hGjk5;8&MxXpHwKU^8%?($3UwcoJ^R}lkjF{{xG?XDu{ib<g?W9PHg88SL
zY~<ypm)n(CFj@IAm~!-Ucf0b-qh=7OL94zw-C~jYx@HNpV)5B0)IO{1c=KvP%cZ&|
z(`S!s_(w%Cn3A-zeP2`hB?th3oTHl*+lw>m`P<(3C;Tbj&l&Fpc$$)4-a}lLOOYRd
zS({zMAs!N;^tXe8@jI1Uswims)S@DOW)KhKc&6`>cv1S@nV^YX2%?;y!`ZUi>=5_+
z*L!N+un)Fn6$S*fLwEFBI@9`qg)o(BOX|w~clg~f(rzpv!e%*sJk>M15T*&gS?O_c
zskuntt|L3#hVG87!_&Ue?T5;4YMwG+lza44k3#B(<ly4<<Z3K#B-im>%Dbe|gJeDW
zYwhfLSV}shEoFrKlxBDB>-ZO)2RO_DdqA#Qo$P$QVb*PR|I;fqW^&1b^%+2*!ozqS
zYKrERY55H+#{PNiEiE#XYSA_n{q>}FLzaO5A7`)@U7!anV9MXZSf?G$6ioLJt1D^&
zWDT6I7j%iwO~Q}BSZ&rN9V5P-GCDbLveWaui6g}O586+53<{xgEw3m(c`96>BW3S5
zI~&`g3&7K^OR>MYJ(8n_a|e8?X#{PUTYicf>C}dJONf>WqJYhu;e<~_+g0LYclCx)
zTRx05>H7f~kibB55UaSt*9LB+Br>9P<@9zNF5CIh%~zyt!zs;7e+&|?(Sz}1CcS&^
z;i0CCz@MqZTy5fb|05TzAqs`#!!jOaiEseN=txkOyNhB4%YABbyjV>g;nD|fQUz1n
zc5O%NVimZ!s7>NbebjaGkF;H-A`(NCfH4(<js>_!&8UC%xmUNyQ}PSOVtnGC;nSNK
zQUk@*dp+Xg5sKbxsu<tg0^Htjf`5L_7Mri=GB`b(PYsf`kO-5)(oFzy1g6$&I%UU^
zjh9!ZI7@A+y4qV`t1hSSPHGE=!28M%_D^um5O6lQp8N&RoLq6Vi`Q{?RF{#VzdLt|
z_$o399j{59bSFuci$m3)vbQEVV>!y+Qqq17%F}C{m+Hua>u^MprSxQse|YqEi8P-L
za%y<=AU?KTI5iHUp5|U<DPD$;!%Ve`Q8gqaOS|Q>rVy&rkS~*wjo5Ur>&$Dr*nXOM
zxmz>#jCWN>@N#g#&-qb%N;}4U>@}GyX_gl?Q}hS6fDgx%v5ls$SuF!^&s<HATlvyz
zGPlWepn)RbIiXNFYy3tjm8Bb#$Fv5fXSS=so`GIQQb+)!E4?e}F*N0R?xPcjPv#kr
zMQAyjWn8ehX%mqy!p8pO>}j6g+bf><{)C5Ssp8s4b>2mJ!6?}rcugC$d}-GDP(cAH
zFP`8=daAhAv$Zg-;Qm-*rDxHdhtGKAM@i}X^aoKRm9-30$B~`6eq$=bQt5orgrCrS
z-9icQQqF3}@;lzVGyhWB_b`&lpFlvg6ncB!h(a^A`(4PIFaD%4ZQ;U0>1wTdrlHd3
zj;u&@!Ocu`HxSyu>UjQT&!9{owzHSTa(}GZWga|L#iCb<<A3D1pTw9i3-x=EOg=%7
z`08_ta+GpW+bRs_$6m=~&hN0QQ=%p>YkzAlk)H25-#FpoAg^t*QTSh7T<nSao}dLO
zBMII=-RivGUBpcUV(24CJLbA?N<Lu{pEaMmbEUJ-z%P3G(hlq0u7^W%^rMZx`?mH-
z<bv!6RCGrx6MuWIy1y};#Pno#&v)OpeS=$hk+0Isyfs*D|CoKMJuKfTVqMhG1MiBg
zn@9z`5cQehAQdK~sjSbRwgC&NGFDKMPB~(=fqg@~@N4Rz(2pNK4wwTTP<;Yt217jD
zFe49<2=-Ja_FMsH_4TKL&%#-tUU28ZmqVbs9sJ?=Lk<|nv<l^?FkpN(Q+uZ>NGTGM
zA`_|jk8_`Xib+T%!6kOJ#oq!TC+!=wu2I%~$oO0%fkRw}znWJ$oN{f@Uo~aH{#?Pt
z0H8rVnlz=^*LqrOOXF9I>(WsRI%RGc4=&gQsH<P%&++5n^u7B><HN8Berof&y7vy#
zaz`TVegtsJdH>ohfkmb-%IVwIs8eMnm>`arvs4C`TcNn(0C|9i0PuocJ(2qT`4x|W
zWwb$9$fgkE*-esj;!Jvr00PWu;89g;%}PW2E5F5*B)9(|tNtfafp|CViC^=rCF#oq
zvGyJSGk*RK9Ry1rh!suj#p3yO8pw0-0>lW@WPA$`Yh|THB!cr|)Nn|Wp!f9#$1A(A
z$VL#+ij!GqK)?-pCNWu}L^BfZk6l`ioEDZkykb;%3-rI`jcF+l4-Fw^-g-)!g-Y{C
zl>t(ga%n^3quEVArAwSg+;Pd5GTRCFcK0T$^v=0#bnoV1sQ=*no7&tEyHQteNx%Q}
zh}54YC`<Gae<Ic18$BB#mPzd0)lI=&<#0h+x_K3^v{%Avt+Q9PA_0Ce#iZ}C*Jry;
z`emd_4f$ldJ!Q4srK78f%uNa(&qcBOqeR>o8G>L*!nW`Bt950I>v+Z6qm_Z%89dH`
zQ%Zp0^162`CD!fgZoO5@hq|)`+rlx*_-Lrcg)zkM-pq#UZ6vehyT^rTw3k}-;U@zs
zjm7nJwC?eTt0;OqYeri7c%ysqHJK<wZvzW6uthZ<L2Y&Ueo$7HhLhQOvod#ti_}8p
z)k%uiq3jO%Vx&MY)297t<4UF3G)x;xoz+xu7$PRMSfUfq*hwVW2|!PQd*K-+WZH*h
z*zbrbAiAANN!x$<vT@#ou4OGmaPz9s+&7|6D3L7u_UuxvxUD@3;)r3=M<$ubl&8#S
ztb#xgxR?~04|xqK`05Y^-&PsZ?X{=&rR-nO<P=&i>({Ds=4t`Wl<joUs~8E<Wgv}R
zGa;Q<cmkJhF5{f>WfL*}vqY$5K3dM<CUw!Q{4Px|>JBi-(U!2ko7pXIVc1)!bR=sE
zhO8t2YBA9g2-INc7>kyIvp?&lfgMt$XU|g@BsWxyW~ynAlL&ACfQ6d-2z*j*r<V|U
zW+oTy7C5`=VYjdl{pr}sYtxm@^0?p=PWySA(r^s|HWCI#Wl($RlR=Nj>%-MPGVE_c
z(l=nuQKay@#_G0xM<>ujG7Mx8V~_FI&8|0`*NUj6wHJ`T7}ZH-L(q@qQqY+gz7BO8
z6saz{#XENxjflE>_fyZa4L_Oge52jjIumc2;knqA7?u^Xw_|n(j}-V4yKxR%E}_!I
zGAUv2+6kMU_+DDiXEDUDT(i-VX`keS0PDQih7An_a7jB48IbY|{M{6S#sN{b1xM}!
z5GBqk%3yVSt~S)D$jFVTe*l*v!1@~JezGVEndh;cXQU?Oh6}SecUM)N@1%z0@_3x-
zKLRA!B{k}!zECw!_Rz63_6RX?agFQbF#*jG$O2{#o+YNH4QT0KR4JiF2{=i428U|N
zAT2`HrKI;4Tih5r-}iW8!f7mve{pqnbyn0^Yyg~rmoL<Czl|S(YnlQkkvcRHRv@)P
zg-u@$q~zP&u}fEptDdVuYD4o9l6`2gs@~{UbcoO}De@mi`!s-r4nTG}rP;dgo&XP0
z+5Y{XXVD?6&`NTCcgFaI97bUA!=$0E<D(PWCVd?geic1lsI<KJNY#i&#MVc+Kl7BD
zVgaJ1;}fN9wwa^H*Ax4|15_=$T%gFO6oGj<RvcPmpJ1TrDjGR$=OO3wK&BROGz8(z
zE4xS<I|@Zy{N8x#Y5EYF>*>(*a1XQ#L9Xy`?N^&vMb-a5LasQ}UGC)0p%qNM?gkR3
z=VDkFmc?yfBqF8#o=!L)hWu$YG&i^jWZA!O9t7Qx-m7M^X6I=&5P}g1gnSkDjucvb
zc-%+MjllHJk-{!D16@;M#A_fySmjE7T?f5KieG?A;jQhKWBXpIXe>sU775qnV-&#$
z)-#2KHNa*w?DgQ)eEnt-%lLUOlUs-zE>6<@lNmyVti7&w_CmEplbv*Oo<v5bP={Po
zsxs=n@M*D3!QLh}5&-UHPK%e^Px<1tHww@9^_s)ytHguSZ{1P?5k$|0(NR)Pl9iuf
zF~A8_QMQ!9BW<&{g7qknyEdD05DXofibgW;K{zl|oc#l*+L<60e<N*NRYq0VC}!ca
zkFp!)ewPm&BO6;r92tYRB4JWG_T8!(nL@xr67!JI_0_-WHH`F(!>(NNjR1h@pzr&N
z-_u5un^C?ftPPx``;&k(^+(|ms_Bns*$|kUZbXV50t?Tac7P#dh7DtQM%5S7ewdPQ
zAKMDNr(zO;)@`kKL3uA7<_4Y9ZpT*PoXf+*!&@meO}GF2k2PFIv`+xJyW0v;Y_LBj
zhTscvm_}~-er9vrbRokf_Xpw1jp#87UQ;s2Ag3B$XFY_tq(2r@Ryph9GnUCXApBGw
z(B4KPTGAWet{yV#yUWOAS4*p_mnXO<PUaMn*|YE0J1(qh-&|fgc`F#SHgFAVNW%<<
zfMHi-Qv0v=Izq$dxHUJ4=Iq8LcJ|mxknw}^4SzMt0<rL*TsTAD3(4E65KFIjQY${o
zQ$BW!RY7^;2W~njLCZ=|<TxOiYb5pDWXKsh#$aQ~P1+bkdAcHz$J+p-!)%&RDSB;J
zb(7zX(0VMR8$SMy>f<5U)jcYC*B(4VQ*n*fDFqitoBJsYNM4F>00~xC02PgYu(|Gc
zG+Xjq{XXz3;6AONsL(iu_}&9&kD3G2+%}*b9%*F^F~|e^HkU>LJ4goOPTA8V>Okv$
zqkR<Ut1ehKvo}rvt$R@FLx5bxFogm0fUyd518<Gn@jMZg%(wF{dFu7;Y;wYZ0Lmd>
zfCTpNPztn>(ti#<1=A<?hT?mwm810T%t}-EsY}l3bivxE_Q5en-lw7s#`;V~vk92-
zZNU%d-fJc|lwR>^x43?c*@B>B#7R@?0^E2OR%^fjEydO5CiM1v#R!xQMnx$AvsU&7
z>L3>wa<m)cVlV0e4Ck|>stL#*fTiDng3sOm$ByUc<z3plLm9npRbG>BqYhI`iRMD;
zWSt`I{MnTJUh!8SP9H>}pg(@^LMJl5|No89i+CY#yy7g=tzJ>vYs@4z?%6DZXJ+Ub
z*<(;xMn03YG4Zi6v2}$M-i`+%k|0r$`PETkyX7z?mYn8%By~<`o5l$|U}mXPO(09J
zJNvTJFSQb`%E47Eq3K;(O+4TB6>*0(2A>&yl;Wjl=pZzt@6Ga@udA%M;Y{hg{in(g
zOz(3tIMMvb;J|hPlA~H7KcSbb#r}$k3hioCs%VtY`7-C2*t*!1$TT8A1<R)J@oL83
z)%51SiZZab;~wmmN?DwK<9xP`uP=zQuj13$Q41<5-FXE+sOKA*pNLS|Lq;s6-&+zj
z28{f&*^#1wtB+%2P@5TEk|Wp<3IcJO=ZTRe`-3*;E*}vzniuEZ2j?S)jMz72IoLb_
zNuSZ%zd$<1U&(-{N?3=X(j(wknl;srpdBkzEX6Vjf=MG=+cH@0UqdoDdrl?omzAe;
z{>aFKb<0Ice_o;G<#D0i{-D2O>8LoqI_mXqtRQ2MjeK;)6Y{Q;y8-@jWbo`8)IIlh
zH9k6mdUM1z@(WFROL65!QAo-qLJ|KiGUhB=$vQ~DAeFkYB9f`j>oz}<BYOMtxs_58
zmAL2T+Nl)`%j*|Kf0xg;UqM`;YclF(Q6rQ?IfA9NV9_Ji7b<i0h2x|W>A6YxQy3>W
zic<Oa8iz4BB*)pz;W6It5!W{`)MT%j7TF-HvVjEwCKHgvP7$?)(Co`JPbW)B1&WV^
ziX`VTi_fczDr<NvMIZgOQN>xcO2A^0jUVkMvp?ywXZha(YJqyf__)$mo_|tHPPA}J
z!Rzv$imT+Cdi>~~;p;waJgo)u^L4U1AA(ud*t3svegr#%x2I*oh{as??aal`j|DB{
zv+m6FA3h}a!@#uN^w&E*-O}ONO5_)4w6_`yzF&AI58>gG3dAZVf_8H_I>&j$R-p#E
zep>UF<5kJuslNeCzH1;Bb{ylJie=>sH?FCet#aO8s`}z>pGm7ulxKdHW6rkR-`P&2
zqq-~De#J1xbaQC$qEV-xyqEuZeRHnR$$@y6CRNyHL0wa0XUe_m9e%z89<!S{{c_=M
zb3<13uGtd$szcWL%^yYkuXMnrSn<KlzK}2xuVvi`s)FG#E$wR>I)wbRjWj9ZTQWVj
zkb||5UK#`XdRd6DtW}b2Kh)Y8896Gx%<h*d6Uy1%t@|*O@w=B3&s!1D(0cX&<946=
zBOnCM6s7U#m)}E3(ao+2gjegmFPIQ2eqCh1tC?S;1=ckHIUM$Q{p5%2I^-~+-2`zX
za=$?jkV3S^>A?(EL%DK6nV+g2-=!Y8%Y9skJ^Lkj_#=>eI{@xZ%DRNQk9H~7jdQX|
z(qOSs!-ly|mTsfFZw{H>IP6aK+_mRnuhcGpsA9<KjU5*yHM-gx%L7Jg&AO_dHqZ}q
z2Tg$=kY$Q((qpThfg+B7{Dir2ziR?};${=6_tz_V7{~m@%k`u2H;=a@D^Ne!)IZ(a
z<SA{0BF|95G0ZsDc4R$P4aXF8D2)hE@^u1};Bc^(D!%>4c#dL3GcvnxP}E&WEHMA|
zAtFwhy&hj>=Z&vS)(BM_1OavbIy8_u{)<XPL?lLAtbz@1YHGR@6a5-Q&W?T&a`+c1
zHOktai_YS^Xf8!^ax&c-?GWDUAQBSX0QeH~1#)C&q3ue-r&(b}x#gMb7QB5}M{la$
z>hLmpWOabI8*E@yX~?TWQHi026udd*$N%y3HM2G*&Y-?WeDd=GMj<pTlNj7^|EQ{Y
zw|%aLik{fZ6!DVENIoj=j>S(85tawIa1{53c2DaHVz_DZyl=DA%Qg`my&p^#=<LaM
zWT>a9*+`eGgMz83%-7V;ynf(!yd-Llvq5dq>AQ002O$-6kGS~}%Y-$qaU}@7`9@Ld
zYHgNJup5h5+PmGI!7;V@J&A69rPF3xJ#V+9e>p#W(EVi&b;cQsTYv2!v4T8T^~-Ly
z*sz9aXQ_IdvYiqag$b=R794O__l;br{Jr1(CUde*-HpEJJrd@QRB;$I^^2Rq$QMi*
zg>ov@I81tr`PJmJRWB6=LF+9{Rvf>yhPbZX6pZO1&W|69MyKa1!SWt!ypjWoosZa$
zmm>w?6ilM7Q>|5+`&lU|t%Y>u^zP2ibj1}*rj*CVSvu6y2gk+d&Q+Gm!F{BQ@g4c`
zsU;mMMoeqoBXG5DwhUeouk$}vb?<V6XAPEH>Y>PWZ_mNZNLdC2EBR^cmNq*36P5m?
z$HIN0X<gHhXQ-aWKM3_O-$_JO$`2Q30v68z>#OTr?y`v2=m+i^z_y9KN|@tNtT-=G
z0p&b%kjH$~Z|Cx&a0+x&$SGA&36RtqEHqtTE94mdrdd^&{%dv?$4@u2+8kqFTG%m|
z*>SnohH&_#sz&G+noCvT==bD~3oC*6u2!#goY<lQRMXUSWH_n#Jy)xI(IWY&<EhYk
z!L&Big(Re;<G)w{+J7gQ6Yr4h#4SZV2X0EW_oIovI7#}#O)0krW{Ce317#1dP462$
zgI1+A*0wd;0g)~4)%jSW*?Ufdx}4r>+1p6v<|w6MJw`+q?l1P2k({2S+ZH#U>$%C|
z1dRm`zku%_d3o0unJa<EMC24n;JIqNpd#tyz9BG3Ng%-OeBHp?zDtnY0r%!7%^%!-
zE2(T%%pt+H<lFX@m8vt-&G9AOUnbBD3A|AZAF{#rY;*4|NX`41*+z7neBYDZ%dA@V
z+a4}mmhPh@ecZi^80uaM8I~_?D=4m89&SN!r;)xBNfUhE{rn;~r@C^fzbxE-%rN}z
zrTZE!CvInW`LX{HczT`AkOFxu%YbSPS^CJiL<%?($(pHs*ayTTv-x*${Lhqy0DeXK
z;WgM1^U)D?et4eq6?oS+=)!?vY#zyt>$78#3E6{UtO+|rMZ7S<??ens|B4vGHKXCM
zf#`x935w;3228Sd!Yvs$_D@a}oCy9zS~jj(v>=u|C(D1Ax#<0(kvKLoQadVUyHJrN
z+*BL)jYBaRkXMT5EO~s{%N6H<IUq&(e4Nl0Pyt5uTu!u%7=<N94D7ysZYxrL-&*-z
z@3ApR&Q2j*RZj9UaAl)tfodqV%Zfg)z7MURy=__Mce`ZyS(0p!W|d@nHKc}SeC^k}
z9j#}Uzl7j7k*{-Et=y|lA#+<@x?ZZHUQNb>O<A95LPbIomTK((!E!b&$BtGUuO9$8
zDRItpiwn}@Ts&@q$rW1;dVEK)d2jNSOZ@@_l{fBO7iCM3Xj*+<?$^k1L^8<we^<x<
zy;ja+cI^-ez;2V_3j5d+>B&6<_#h-^5G7ThI@DKu!^DdoXW$HBBLUsUvL&hK=$Q}{
zgv8=?`9%>6nK?sSD|{)&?ps$g)uiL9`cc3VhfZv}Q!C2dh?Cd5kYE#?DC@$~Z!GsI
z>DE;85Acn-I+cEk_N~{+5@K(YNFl3ZIQ5T%%3pe$JnK&Fh!cgAyi-x&A10@xQ7$>K
zDI-I~>5M8rQU~9AJ;fBZFplWx31d5cekZ;X?^m7Cg3+q51zST4(RAnVFG87)v~K*Y
zo%ok5xU%b}`;I_|*7N!D)kXdDmq%kZ&r3Is?F3%k096n!pXIYHdi%W(qoUsi(Vy5o
zq(BKamjS{@`-_pSkOj`!KO`(H2IHHB*S#1NSQNnur6yipVHTypZlF`;`+(xkC_@Dy
z{c5Xz8P;tT6D7LP<xu_g;CbbA2*xk{Z+Z^Y`s@sMqamT*D}7NR{fGh{BX(cOXhh9N
zwCprQYiU<S_V?2xPjYfzf6$mEi#B2t1V~hD@}%DF2879HWX={UMm~Rh=ektCQDH!5
zN=_v*+RFvQka%;&p0JjXoamYnN0%;i6r6f}!ro}RD8_q|gJ?;aUf1|~mxnS;s~^Ik
zwLw|SnEJ+eh==9}BzksJ&XQl|3DipsC@X|s@6oo*Dh^wM{O(V=YsYTmJ2K1(Z7f)t
zpb*pk{u<HVDLHqBGOug*`Kc1tcY0X#mh)R}rZ6@Ujyz3!r1MAl7kWAFwLDmax4h(4
zjlVXx%(tCi-GVU&r6@Wspw;~pdZm4u>NSTW0c=J^Z4Bj&LQn&1t?$8P&SmdMq0FQB
zcAz!Snry%&`tbmrZ5I$~{%jVQm%jUV4q6UHzs93j(g;X^pAaDoy$8m+1zW-94~2#S
zFR|zKbd~LUpIJkm>AaLc*bBhOINav&QN%A^(2s1)3vK!?uMpxg5s*VW;dSw8v%xa8
zAr1;x#mH}$T(@P1Q#O!8zI<?a{C7m%=j{Qs?AI5?J0XeSKtAUlW2SZxZ0AddsAj~~
z)(CUvWQ7r>Zouu~_VR^LKzAvEbwhj;dM|{n_Uo>DFJHjZ*z9{6bmGN177Qw2<4LGt
zeB6HU+k?QW-%{8sX7Sv9hp*ypLclM*YsB?jz?Ww1+kKqEqhF~;5A?qc9}67h1qz3R
z^#JKETEW4N#i}_MKU!p}<V8Kh+&k{>@N1F@^Mqz1@edLW3+k_Va%CmuMg%i7EFV7X
zsng4res$BCZ}h7RYB(+>)k*1aHUz%2$q5sR7sU)7IIP;^el?R9LjkKbIINXo<=GvQ
zM9O<QO#dXg*@b)yJE!s-pT^0$_Oe0Adv{bJ3xRQn@Hkln1u*Rrp@Xxx03#}}S^Gh1
z8M~@I)3ES<48QG2&Cw+jkupL|5_eF=en;x1LG%yV?vc+~uE02=q{HmOTI#0DA@?In
zZax(^mxb_+Tgc?MtJwom>0giJWz4-M!1Wo!5&rwr|MQV8gk)S!N-By;c9A)^g-2SQ
zkc##%srpdcFy$m}{IG?}nSXF##e0QO+rgrSNm8Lz6`~8f3Sag64GAv1vEa?u`ix%I
zUPJqfw70!vux`?q-ZzCRp@To><>F8wPwW(aX@$biR7=P;MDr%QTfGy?Z?zQ&#lN)g
zZ)aSuX3qc4-L@l4`6Uf|6ZQqT+I<_IFCS?_W1w-58`r4V<o?ufwq^a2TWPi9I`hup
zJ4|KE+ebb<=j4-qNhHnB`ZD969JuUfg1O)14G@j!Wg`|BP#ADueQz1Xz{XCTege)E
z_0eYv2m75uuZk`6n)b;lNzr^6UkqP_Pm0csUb)wJNZ@FEh*|two<&QrK9ylDOuvIe
z{;rAZELpv9^WwX=G;ve*BlUiI#ArsX)-h@DV0Rl4%U{Jt!tbbwli^EM&6h(uS!1!+
z072i_=Mp>SHXdc_%nx_N2P?lgTQ!nxMw*&voMX?aR<by(tDMZL3w6mQ+Aan#IKDV>
zFD*bIBBGcjRD*)NPdH`6-<*hA?H)8+6fgrwNl&bURZROZ5Q29(7lfF4@9&Pvz|;JW
z!XKX4?6f^}J5JD?&oQ|bg5qob=-tJn9a!6F=m|07(&tDa2NOhwXN~$PB=_HzT}B(1
zqO`wtPh9Vj-2I(n&3nT3U!+ix3;_uv{j6U?r1<nB^y5zJ(J<C!(QvsQfqZRNDHUD_
zr6zcLBbGZLaRr`K8Y%cNdKc)SjjqMkn#*JwnIRD>fRt4J_^JHCOA3R!eZ|IhH)lR@
zsXKM7@?8bZpQWw-7;8YWVIy)#-LOH%5I*9CqOi*uH;(DX!(KJr7DcJe+r*Yys+|y$
zKOlMcDH<3%!8LQr-Cq6cbM(3GG7ijaDn1es(4P^<g5IA4CjUDa6z~b)c^5V128lJE
zTjJgy@L2ct3!Ojrg&qsz4DyaKFX{PH%#`PX%v}sZuKkKXzPlR(y5N<tNu1Aw@4H;R
zH(tx?T~_8_bks;5>++;$Xhli#ZS<K%3K8acl&A1-V|LvXfIb3~4`+s44%sSYP6;+i
zG5-Fl4P_M`#RLmrudC$wM&v)Fvk`&}Yj#<DZUd#k7isKXHHzQ+MU4@gNu855Q=Wp&
zb@a|9Rrq3K_!$!|sdqVF0vrXiZ%CdH=|>ltjgUBp9~Xxz@;=NmC%V%(6v135;1OZV
zLL0u;`GdWQ*WKX$#2G05FUrm`DvmZ=+qk=XI=B-cxVyU(B)DsE_W;2)xI^OvcXti$
z8X&>l1ALV^Ht)<F`ToITv8ubO_I|eBm&Jf#6X&|=Z<Y^!thUtq2^ruD?$~y*RW(H~
zsAWE0o5jq_8Drk|9=*!N8mt)8f3s%G3j`9wTS|$^-(hQ_-f?omD7ZOQ>7Z%tEO*BX
z>YS?Lh};94ePszN5fhGq8@7LlIQ}C$`}bU}8#WALkel^|X#nHHV<QzcwXBY(&GY!=
zBp&o|mn>VL8Ce_@sH4gqzf>A^_)BZNeffb5)MHKM9*^M<a%Fs|bp4_oLkZ8cg;FFD
zztA4sy4t!R1ZXw6u^M@t*IZ3-xF2YSZb#H_lF(~!;hW3;u2b^-A)DKJP69YJBl&GO
zLa|$=x!`A*I3K1;<~mt)+j8em0e<%PH^gIy^)~}=Ch|@g{H75&m!!Jk_Zpe?g;!rH
zh~8D7WYUBCFHN2EDWk2U!vj{_=}%{0+p?S$bJWX|?Xrtb#_$n2CK}i_z#RhqEJZwA
zF~w0PQVq3^Qk5}GNjy&P1KnP3GEz2_A;(^{tBzI!8FuDv+>qv5MSbht*4|z&v2Hu>
z_cWod=U3^sW!N`g@T5s;K(J-;+E3rAY!h8ocgdHf(Z~8dEPS{Ebh@;L1+|YD^b&db
zGKLEstv<{;-Ttg)(!D8=yj|!`fy7X?@7#lxRpfaq^ZwB#PTaaS)$m2~mat0IruP1x
z;yQNKfE<k58}Nnv=;H_fdnYP^+Z=S1^6t(S>%-US$mG@fA7n5T8e}0U8s!sCp~x3a
zn>rsG1tQlFBu0jEz|Ns2s5UNe%#QK+X4a!6yat;;AjHd7&pdS0)?oyfB<mk;xW*{o
zV%yCvd_G><EN$P4I#%2o_EvAQ);CV+WUIeeby%1hQWAU+CmHg$@@2ijUCgbk_jz!B
zP;;Gc?5{9wj!~46!F(z^+z50|8M*~pxn{*Mp%&=%5uLWH=FX(HAybbxM|-9y&!3Rh
z!8bpt^`r<}Rz-!*9pSZ9M!zdbw5vOzw*3APtMLBlbdi>UL91Nz1{V{AzR7W<q1#X<
ztAl@WBXFy%sRP(F<6XmH?DS>j>qP3$LRBy<XEQZ@l%qg6upK}l+M(odxTGxSn=XiA
z{B7gqX1J}_SFH>$^ayQ5l<$+lqpsQ&?q_3;^2$nUSb7TK!EC`FGAsTdow58X_wepp
zg&fuoeDDqO$&k;kZH<ERnU>^51;02Mn7cHd`P?-yIhm^|>&o9h&n!Fzb)xjTw&1V3
zzkawr+PNWudvuSlsNnb7opzr%9ZIpAuP4LC6Emm^>Oa_)>dY40-QSfhB`kfPcP38g
z{~UgFaM+_|bFpw#7B{8JZNUGVqTbfSz}&e24j%q*hcfpWCM_?nQVV?Q@CgF(l}n<n
z(r_I7@MMn;Sc<He{V6KqR$&IyKIAWl_+O9oKfg^fz;xTqTxA>^8}kkuP44XE<8{2X
zx3?D!9MGa|@{pw}V7HhIhrFq<E{k5^gbIEU=@lsK>gr;IM|7173TmjuH)&UG*KMwe
z3~*!JQC{T~dYPw3La<>%jCt+I#}7n-zZ)}v?7?aB<1s7N!bG($KN3~EJHIISx*>)z
z`USC#b2gsaq$vS4TI2|Az0^17ZBUX&_^pG1iKIbgCDZYk+xnxd)>>!_Pm<d%sOWgJ
zvSq!h(nqZb9_~^3=@xTlzIKaBS_2S4Q$v|Ai+Y41C)Lw)KbT2z{)BAy@ca}jo6K79
z8~+2zTo>?)QLaHhNxSF4!$g#DV#SbA#PM&htV~a5qmjucpJs`0vaw<0c-=-7qmk-j
zONV4|o!QhrD+A_0pDy;<4Zpus{vdmGrIFB%WyhygDL=e?Gj8Pb3s;IPTlw(7!sr~$
z1_06Zx;dmu#^1I^vJX!01u9ggZ6K=N2?hOOClIIG!Hh)fP8jlOfmG~FAT)eGtBQ5Q
z(H}{l<vI(S1CT$UX!Nw=WdbK`eKgM?*}4_#^>*zD4<A`8ph4R=wnMkf&S^v$`*^-w
zpuq;8S`XeVQigK~ftw?2yS={?P$f<-YXr4(g|;+vtK|rihIn}~ICaRyGw0?h51WfZ
z?DkA%twvt8W>LPLE;$Kf9XKiVpfAEVh!Y6uwOQBlF?S@Q6_Jv2;cGd&x)toIjU;6!
zOPY8g4A_V$R$ySu)?Tt5Xzx1_`ZLbnfBn+3D|vx(BnxYy80R2PL(epfnJ6O*Zm*Av
zysD!!`|ylIZFBfEkO_zTQ6RqK+czMS2)5k;<{_fj)jJN|-MLz<tF?@n`+<_5t7P}|
zL~Ib;I)k|r&-Vyd2W1JFdGTakEpxHJ8q8N}XP1HsflW1)K}cd*N4)=tNdNg|{+nUE
z6V1)d?WTPUib6(1E5<kQ5Q(a6#NIg4EBZd=DdyM?x|2rU0Plmiy&mrukukwEz0r=J
zzEbskV}07%-=lypKU#sSft0jGjfFT%3>!+aX}`y?^glb>#Uc?a;hHG8rkXPJfq1`#
zCj@Lbzjxl1)}f$wlF#6*loU0E=A6&~a`XUH1lpi>zla)g&a$FP7%3Ztpfzn~oDq>S
z7Yvw`TBJ|&%Z<<_;hYTOymRghw4P(ewRP?|k$c5H%J$;z_cZD?Szy;L#QDn)HW@!`
zqyi9Q_6b;frb*BZO#Ut+|8KtkN0=y#<|TxfKLCjEaD*Tbd4C{DwD2~!WNs;@<!lSh
z`s<|9jWwrzAJV}}i$UmAf#?+D61hIpVgr!)KaXG2H^sOzO+8dnbU*d;a%T1-EJX_U
zdSly7j6PV4<N^&Z-55agjkQHZEEqbfdmym;-{Ta`p{o3uOVxAiqE-_fPr~Gs<j4rN
zTjQ_{5F7PLVLn!(m(Y$8h|9oll|ub%s+giEX01B-seJG7jbMuB?>=(N?t8*r<)v7p
zt52o!yL5ES)bLVL4`RhL3C1dfh_KSr*##q1-gibnXm7q7=)jNeWeZB!XB#9rjTf#E
z<4niM(vOYE@4OjK6RU2IUtmg?TBey;Z!YI=|M$S>@3Wcz=H4~G!wm4Y4iEk~j<5rg
zcWi%mcjeinp&VD*h1k_@tBKh?GPzKTvE@5cdkcRThS{u)5y1C>e-{@QcN*W&$0^Si
z&jB7NVlRaY%WFrCd+MBB1Z`=H4ipW{gt~fTo}FzgNfb$_qVf;Z#IZRmswo=9M7_G~
z(bTT#<UMLLCw1ws3s|*)IAXePj9Szu4B0-Vpm@QCNMD+$-$CwT<4974J|t{uzcqM|
z>|8f8ur7u{GB!Lgk%e}$COl~zk@KZ3m2uJGSUqyJMvsC!CeyDCB#S5GOm%pUij=&k
zr?+l(-fv@d@Y4aze4g;X91Q=J`E8L4clY!Jo(C@@W1>@Y8^G{A`z-aFAYNSGT%pgE
zmk(jz&6n$m;gn%Sa@W)uzia$<a<yEyE9|7dIwI&>TP4BW6^(E%_zjbGau6_fg`n;v
zI<@pd(!ZTey3|l^rZkAr(?-+4H)CFtA0mq`3S<oiLot_x*5@ZGYcPgf8tbsadcdg<
zW;DWM$NUzhpqzF*-#r5B@&7b#ak^+)f#XBKhj@9ry-Tzl?<1xgVewI|BW990DJ@&p
zEC__iMu9_e;qwM_Hag+%46krNQ?z0FLka`7bu>tlUQ7prB>t54v1D}5%wqIWUC`iv
z33>mnOQA=CAl!pF8htnfGxWuztLeV7U-)O$Jn(~`uG{(Ehe2IQj+MvGiE^S!`>JL?
z;3ky5vDb_IuRBjf7TCfdUsbpr>E*g+O^+WLRWtSaC?EFOl}wR2X0o2mttiU9#{K&x
z$aut}I<do%OaJX0K51rVQ94D+sGr|YE7e4A42v_+B@&kD>sWDoqVk8e^D!;9@+|OO
z1xTG2q~Go#N;osK)v2p<`65t%&~&y-e<+sT;9Q2nLinG_{eNQ)|7kJIdN4^A>Qbz3
z14uFWr+)iP|Kx`PzaRw0>r1JC4QYYQL_+XXFvwJTcYg<X0PnTwad7WS2EX77OIc&j
zg+<CnQnH0ljZP(Ok2!dYmvQk%uoa1_s4!_EyU)Md+)@UzY&g=T#*{yf07W)#U?8c+
zyUs<0lmM{t0RR$*Lx)QuqTWAd@fTk}HAmF(9)I3S1`rmvdyk9%RZpLyz)Ya3_rx_`
zT8IH5F=kS+_RXm4&7LpcSZk^+S81yuNAqXPR2VcwQx>RalNDvvM=RdsL@E2p$=!oP
zdDwv>7wWEnHT}#|C6^F+A;<ATFS4B@s&o1h8R*s-hYvq!hga41Sup#R`jPYGbsPdx
zKS#0PvLnbz5Um82his^9n?J`h{Eq#v=lx$s^)K&uw>iwa!H_peBt{immh3K>@&Ejv
zfhiGxe9Q5YS;vqZ{`?=;V)kFI1!jH_lp{Pk%%i{)%ER_Do18Q3tgOq3&s_W$&+@^0
zWL$^s7cK_*NUX{_ytLLVRVcNwai~WR<M0GEzKA3veuxnMcG=_iNz@rLjy27;X73T_
z=Rw7yX4El`pn|gMqkbDIm6=+yYdWhlPNMf0MD%!e$#`kQX=R4QcW+Wynkm|(koSh_
z=Gbd-vql&S8Q@(@ns;5Cot!DPETo85%PCIqDJ8iu-SE2N*Yhop@^F~+lhLp4-uf$X
zMJn;U%{aeuPJG~#3K_n~5^)yq*vZlzyo<G0@EoAp-QJ-*ZzzF1avymCzg+y^{aCI&
zLicK_s*|`3HTMFl(B#D5H5>oksD;0X36Gm3h7A6yv6OLS#JA5ki5;Bj{wkvWwl_}G
z1*<GFRM~)$p%`K+VANx_cxib#(a<tP-HC+%ftQt{Dyn9!`Tm352f#pwg(x%iDEJZ_
zq#1ZW*q1F%FNd<ts+G#eVTzbD;*Z7+VeQb77ZX#RZ7Ot%REAg=G%;#XtCRT#_15!h
z`2NaK5%@I}$YfK9wVS4PuuFlE^6PUg`-23AM&UCZO{n#rP9z#Cr4+oktYET4{9DMR
zuh}Ay8$m8~!?A6NG1I${>)>b*MM`)lyhq#Yw{hDvGWYlTDQ6p;@>|X+mtSPThEJRc
z5D~uv4Nln%=D)b~|HQ#VP9Ar5#ve^kj6nlj#@w5EA%le|VG$9L2}17Ve|{7HmGfZc
zh1p6W5{i13<{0|=6|FadK;;|3FJluJ94G+LncM>m(3R2tvx5~D!0bjQknaNG&~Z^U
zxsZ#i+uJHFIg{4dym_Z`*t{vqW%PN;kiYYa6<PyF#NXUq3X$?Ue{JnD&Xdezc^;FB
zr-O*;)sCK7G9(qNPV2W*t4$NKEYJSt356QVYu}WSq&OO)Vij&w%u~=OE(>?p<1^<{
zDYp9kI{N-u#5p9NVmNXE#dDNWrjGt|aEGHiXjCUXvPqK#2c!>saXCf$#PlV-vdMZr
zGUkntJ>KG124GM*ZvG9h?#P<4-THs^sFoNoLBYWXK%Kk<;H@Wo{`|Qj5toD*W(Bz#
zi<;BG<0+{r{4aNWt5@Ws>7okGA-?RG8#DIGXNwV?IQ+3uIjg()b(etvx_T`z7ak5i
z5^kR~()neHVdHP(#tV>u<eim71YeAeTpY2HBXVWRx|D>fj7q7p`*nWBwVty}J<UOm
z4hH<#D81!Tj?hT^VGj9wT`U5P){4cTwQz2m8?ZA-A?3@hEr;Arz6wtPzvQlDlE#Ik
zSzISICnoZrp^X1LB>qR|7WhdV;xO9FB&dK46^;F$i%O1UAPj6g3U5y!^(_V0OTS!x
zxf&Upmm7TYx{t3@Hg@^sTr?LoXZ>Lp`&eX|=1Q8W+zcGWjf~sxJp797`Ov0j6eIJn
zsR({Urk!eANig&;uJQNN1%G#nzk|9Fg&^xFw6R7}Mr1GHTPT<PTUPQ9r7j4H?@0(t
z@uXCRRLb@$%vs}tZ&RtvsP`nAbI`8Qa?vVzRn7hIigIMC7aF=99Y&=m-ZoUE<gr1q
z#F7bCu~iq;LANyXVW(Jx+E~yE*ZyNG@1L&rcb^tDLRdl~S&Jo(RHx_L+v&a5e{riV
zp<wo_?zJ0@@g1bl+|blDjhtCfohjCo7R_nYYR&K()E`V9KPP%9sT+Xl+$M}_>zXKN
zdB|40<ip}2J&!{p3(Q_Z?1t1e{y)Oyk1&T(0l~q+jB1*ik})wc@{SekL3;n<l?cQO
zfWX1Qb|)!m><He&(vLhQ6{V6eOG-<T!!^^WTSan?obbxbPysE@t5OB^TUvp*=x0AO
zghUpo_$8;N{!jPjAO0q+j~QT1;Ri^sUJfC}xJtxb{figj`#8cqjJNXb2*0Y_JSi6o
zzVnSsaW{g4j7y=c{mw>%lseu&JE_0CF@L=(6CPwUxUsG-5g4oBUTIp&b{_f{Pv|2I
z3MK-|U2)VLiK<-k$n;1y2?;5<IX7ukZmbm4_O(`NuiW(i@47^gv|PQTV`GS?Wm9~x
zQZ6gY%V|i+$Vag6Asn5YO5Gp4I7UM$p?nJ-Rfo<MlhnS7b=iH;qfz%+^R*I|_qX0#
zjMU52Gh1#>;@0i*&ziW=6S%j&yhF*opX1hTn!0u7<Wf$Xp6-c<b0rY3gkFhD%}9-!
z7#}NyCH}eCP==SWIccEBpQ&G34?ch!%P5$@Yl9|gHbGNlrmXiZZLcT{w5e+0JyxU9
zQlh6DuHrF4mT|@U`N>n}twvJn@)|`F9n*LNkC25aOgb^7x0HpGuREW^<k)`q*yLok
zqkRs`V%2_k_^K@tjAHTE(;Vwk-SrlJ71+JnvG1Howa<k*B!4C${)Z>?*S|60LV~$^
zw~C3j@su2|FE8_7o}bh#EonVHJfsg~8X&2tsOsI%4E`_^Mbc-|TUuLZ02O~aZtkyZ
z>+21+u&}T=#Kdv{LUaZY2}eOG9AoKPW1Mt`wR;65iBhKVuUiv?vGoN!TGs|8KKK=j
zid-Y!p_gFlOR5^EFf&z!)^oQXAskLO!Y3nOY3L)wi1DK3tulA$lht?ybgXwAi93?4
zo1nBHITyx$Rw}?G>4Sm18X;5~b-VUuqGz&x7i9ADTa%i06XxTgS+o3c?C&V`QU2D{
z7+W2A3x;tS?Sj*%5MjOP)n%l-!%x&%mx|PCGlMzcbNPwjO-sJ|F=giqq`0So_QG&y
zMUvvB0SC301NBO4456?oFQpGn9C59mcu4i0lXcuatg454DR@WyUUktZUs2uubopIV
zcKM<ty!v`kJFQ?S8C~t8DT|X+MXrX!dVaDRBz)kybl_V?0Y8C(*N1pna`act_vibm
z^*8BIpBH=>Rt$C3@G@p58x*AQ(GTewm#bYZWadN)Ku25m%U5F=q8Fu06>m=96!XAu
zXUBJhBN>^w#X{2#T-c0=i%xazv+Zm4Pw^%72RCIl@}_rp4ro4Yg{jl8C@z1C!r~go
zr|c!K+}-+MNX4~@VYjZEdp?f1a{o}UkZ?r$hQouX;gD7K)Wr2AVC!o#mJ*^(SE7fG
zCfUX_RwNOpehOp+_JfljWyM3x%$-BcIP(P;uOa=YT<N<f99&bflD-T)m5ox<N?XgH
zMp#nfB(eGmPg*|3MLKY;N}aJmD|e~W-@0C66{+l-#*MGM0=T6d*J%45RKNPF>WRgu
zDn1&?e)(XMd`~jtgyEXy7)!7FgY7i-?w~(VK{q?xz@)T~ip%<l1D12jyZ6|u@Y2{Y
z>i5qfQ<hV+nvkxpl3hE0uxXvyk>C$H^Icaq`=7sgl9F4e7)cqR?R^6Ip+Bgp*u&Y~
z7b0P6Ir)+}KV`6WO><Q0N{}0$3mH&w<$NrlEO+uGq^sX6f2~V5NQKc;YBjvb<z^|6
z#>!?uPR0GHCOKmtID6*uI7~)JJY$96+To+AUzY0Wq(36PBI8@-m+3R$D&@c(6Y0zb
z1~KTLVrLpk7Qf??ogK1!Iwf@Cr^cEbxTUC?PcZiPUOmqoc$nU+<umOpj7CPSo@UN|
zac=YN<qNk-?P`bLS<%S!*40DqEJ?~56ZgD&id=XHPY@_63TR6RFI1!~q(>MUy1v$=
zeE#u&4W@tqBrqjN*w3$%BvC^)hADfC0ASU!va-&fL-S$FMgemRMF9TiJD^P@civ)W
z1qliH-fR@d*_jQK==uP}=LQV^5cOb&NDE-98cK$)udS({=j*uH%|;I*B_PU|V#XZt
z#0cy0Gr`^4P;f86(^`nox0zj6618B;hK~>yi>xfk)=Kyu+EuW*>${~&+QUG;KM*HR
zMsij&pFDuGnW3N+r3gD<aD6Kz14cT1Cye!}(f73i<lJwqQxV^<*8vUtwuZRjfJ+2R
zZYRYjH(3P|tZ~z|&4XmQC?+vd6s+t7BVxa#fA+nYg{<KC2fV_CD5i4!;yBV=?G7eE
z)gIU;qbyg;@k3wZ&AkiBC-%zMdp{Yn^2$tEcph21L<>h^T&C0*=2P8touHn`HdIrA
zVB`7x$sz@Obi<aZ%mG!0$x}g`6;IlSF!w@Ns5c##pzsLmryDc9_TM9Xl#!ym=x?`>
zoYS(yOQw*qR5sIIrMguenzIX7ru!_E%`XjPf>aN(jr~OxsyO?;Eycl!+H@V|#QzL4
z>$nvy!u<&~nbmN%Zk9qK;KJ)l;G3vJa_J4*RIoAorsSUL&5Vi&-YhYKyW|o%y0io6
zIB3h=_*HU+^;JUWdN+@0&SW$=A!@<?d$NnmkwbzdxEkN6o_N|OGm4pMl)Z0(t(xiR
zSBaUS$gis}?=Tm5W80!{5wOg3*H)|npo!VCbs9ZIoR-6BXC7y&tMkow{P|vylc%(J
zgw@*|)8s9LH4Vcon6!;y$I2d_;7=+JXhG7|qleX2kNhb{Q@Na+q(2{>-I5d59-ALS
zoNQfle7cNOF!IC(T22_Geam0m%g5DHpTX5Qi=<yIr1?<a`0^eOG?ZvG#V2LCg>(8}
z<XD&08bHyE9i?=l;lhoO?Y~6;pS~E;>&6A0<-5LFFR3gKXfp(-Ofi5fBNtMdrEc*T
zp(UI(5u4q%dB5Au2qEt6r21AQc#Qm8y6Q;wHo)Cq-p|woCLI})#@!!@*cm+wcN1-f
z(@)q;VjlODRIg)%A^(kM$PFd@MN~>wb9ycM;yQb1a3UY<O*$Rd&D`mmf!*5QlIzD?
zf?UIhl4(z=sxtPv1&ssAK(N#u8Vk(YBj|fqT4AjMcqLJQYToEsz)Ell9CB*FHn!F2
zT1&k}tQA(y1n&EfgMQDC(@afkqKJrye}G<u3nZkZ3V<eG5x~?Ly#^L-!ghW{(?Anx
zcE?8rKti3z+<q5BR{@sAe<dmjS}k04=K>Odu0Nu=um%yFI=Wqd_<Xx+*!+pyxu*1&
z>>}_AI&dO`OAQ!ME()UXTH8Sch~YTSZ0xY#n0V3v9d(LDfC~%;b~R?EIETYbhGL4S
z<WfLw=8k3pu7~OhHx~e*D=8_7^62v7;;j!YgiI~9oSa-iW@e_fPVSb+H=P`?pmQR7
zh^|JdGG4H2sru*_xtPQwj^|Zo^*&iSxnJ_6Ytxc&QdoL|eSWLA#7t|~Y6=SPy>*WQ
z7HZK)N@8Yah4|NhJqH>a=s4vOymO?C4ba@(Y;2>94LqJdTPgWf&E<e~upjKIJQO^W
zly(2<_A;>_w}=ETfdYq+2^Wqp`uQ{9J!B5QA39K_(dYjpKstD@-6-^HpQrw~=wRn}
z1qPD6XHu)TS;GlB=B}IszszP+_Na@j@37C|7G9;i{^}gkA(Ry7EB&G{_|pwq98z>Q
zoP9j}`emf#(ljp5&yVq-Cv(cQ^4>!Rf#hbft`*RBYa`EAF+N9v@?-=hZ@W<*w>=4+
z*RS~?44k)!e9zV1>6|`~EPXE`uyr7Ig}9?kSUT`!Gqj9KTnAiaYhHlW!5|N9Yc)5u
zh0RSCf3psl(7up7Px%*v-eS`!dzEC7BsiMvi+*Kt6H0D&Sbd)RZzbbEUMGGUhi5U`
zrIVDyqQL16SVSB3hJD8uI%kU04>Cvlaz#@9B4JS^KFO5U?wF(QI;BrVt$Gbe;^IyQ
zDIoY4rbIn{-(i}HV9EC07CiP#FW&ln;xY``W{{j)*AAo(ONykmpFow5v<>xbYSZpR
zsYIp;#1NV~u>f?h*_&^#A`nL$H!31Nr=k~fLiH;_^fpY;?`qAJ)y9Q<*K}(Mopf>#
z7a2N4d@&cHJB-1C9dvzCTrAZ1PSG<NO4{|5VDd=>7FzG@^1$XbJ5}6m^pnD&%EZWI
z&@t@5HTGf7^LRQB#W`1N=jS^DrdSD^pVp1a>h<qkqurdZKuXiuO4{CO12l|bxr1%b
zpMQ==3TF{4l6<WLWy1|!r*0?wW*3!kYeV^w!(l6YFG0L)g{Zr+0tM1X!@1)!D?vZY
zf1kJWg;V$#6@Lg<I_Y-DYxqxH9SC*5`yh1x=<9lYcIY*gkoReS^)tB?^a?+Nao_Ny
zi6-KRJZFLoaZTd!yrituZ%Y9%B8xu6y-bEl2=zp_5U{tclJ<NXC2Cq-#$mx<lwe#t
z&Ei3vURD>kG4?m)++nC~v7(Q!VsWUkvk`WN);AoQ-89Ywo>GRQf+te5foHaArVbUI
zjvaqKNjrjkHh+s|tc;`pBRzdWzj$HbF+dHn!lD^OJQQ`z<g_D-CKJ%*yy(YP`p&WV
zwW>|hj#HdO+7!d?`<>zZA2QIG1xA#^@n%;JfVV44*u5NOs7{)qf0XvfQ-v7<*hAAH
zh}fo=fV{bMX=&+W1&KLK1$n?XHdnGOZuJnOa@ff$82+Co8LV*O7SC6qTOOUaPy9l9
z%}@W36JP{F_$ONExSRkpMK%vGQa<2&U^}z4y?qU35^!T9fe{(@tuhHDfPm-t%(tNB
zIN35bX66_`i^d|w;_h_a`CT95jIkNumXZ<@j4{2Ps@yO`aKDnXi|VuHs+!qIsp5X?
zCgSxUs;2sVXlxYZlV|I_!-;DfFXzDJaN@Dz>*1bwebGJ2QuM)S{;M-8>dm`m!qD`!
zz^-w4CZtb_)179YG%#Cig>0z@^qhlH+*_|xtYL=2H;Q9FgQ_ZWo^l<{d`0(RWh&3c
zX%NeRCl-phSNY>xIi(Tp?cyPO+<Gn)o!(mS&dYsw#TlFGU3Hb+VWhRl*hvWeZu9GS
zs&D8a9)hCd)k+-P<(KJ3E>q$Z*ZCp^uFa1v>tN`rP%fWKmWeD+uiu;R4_}n19;Qn)
z;AON!R;}gu81<TalN;Db+zU=K7?O_pO$lk?s2yI#sK%(meSu9yKSmsQ{Bn(hM^2~b
z*q~kR?90ly#x3LaQb$-qY;h%m;R0o!*>as70-^gwexw6#?NvCK{Ll~9W^I06p)+@B
zr#y~`sBAdu8y{7Iq+5?lQZ+Q|sKT{UhU`}Tuw}OK1$>Grx$~6|PjT}n2ov;RC1j4-
zi}E8~Y~klPjCc-YTtqXgQLR9|R8=|E8WGR%ivu8>rW2ufw7!!L+#RdSMymNLc3p`E
z7~$dhw(2UXwiFTqJMshkpXNyUWnEF|M{H}<i-)>Y(Ky`AkLA`JO~j6{u2n7>KFl5(
z<=Xg|baO%%(>RS!KNk<~H|E)*{JDqnIFa1Pfe6F;f?G0ra^PLw3sNt*@+ZA?cghei
zLU6D>2kNgMok5LXLY?bs`(1^~a%H|XCv1I9BXL-wVX9;P?)f{b{@}|0$k-aK>=Sy+
zRwNOOiJ9YSR?R8Awb1W$I4bn=N6&u`20ju)f#la*7xh=#{1u9}-u@YAPY{>(6_k>a
zvYszXrsP8*dLK^axr?dkItSgqJt!f}k8f3st|cj{^rTF|rJ01Qb{g-Rl%aZO;f=q^
znXnda9sB#jBay$0ME?cF6(2@wY5{tf#w$rZd#*7V8ZaG4mA8M$4c3cQ`dLkcXECTo
zK=%_>C3?d3`f&cs`I^dywv>a7jSchN!I>FVUbkZcDr!vyq7W{IP^zQ@qKqv9LPENn
zhMEgNehb)JBf2GiuF$F5y%pZtN!F6zgt3KtBp(N#2YnqXukO^Pfnkho;>Fz`$LD~;
z_)5rb9_8W3F9)=?S#d&Jz>qu97Jq4oTjId9x}1==1o^){bNOC8;4|fHg~OZ6ITwh+
z(MKK}9N>_VF~hU-^YbGJHXDIBcg)_vxvQn@N~VEcIOe3VG&V!)qp<qFY9`CdfWjV-
z^C8EVd(y&O$t3NdRxLBWyzlSPxDm`dEwpuMn%=d|vreL!`@W!o<*zRI>?|KEH?lfk
zDF0oiSxA$!{mStW+lm|vVpgG5IN{OFk|v-?%7Jqy5uFx&rk9GVb9=KPX0xMNZf&g>
z_Rx?I$qEhbpgsDztu&-qG6T8o=6SQBq5d`rhp|#>H5*4?26Q>o!g_)+9bbjzKU$0Y
z=~wkqvUS6B3dm>x>8|Fv%3HT_n_?|;#TaBMj@BZJH7BeJt%Hf=RMQRKNIz1i#in;I
zD7ypv3}p}IQG9T95{y)`=BAlR10qKhHaw@Q_F{akjdGfeWsr$)Q%mWn1Zs9MM{@l(
zP4rs$u=BU6SOlsTv;u`uqCZ)BaJjWsO^=iN$36Z--ferGrfTk&8yKl$rRIRpK$0RF
zKwf9mKV>xUvA!537^2Ab>24}5o>;?2MKNsIEkL<qxXo<ffv81gPigs~#4*;pguh8N
z6pKPS0EDt?3`*-k<#-1}h)Ox%%T8l9t&eP&_qM5vu1}!a=j%eJp#<f88!6m&?Kjk?
zDV1i6Q(&E^uT`=6bEEH_ya|_$+OzUWpJ33o*P`bdsj4Su`w$gV(3a(_<a<$S*Vura
zvg|dm0}_lF7?vwkB<o7Oms5dbhAThOaiTL%Bz;f-^^P-+Rsf1T1j+IQ2_Gmoq?ehB
zXtolzsBD%33Hf5RGq7c-3X}g-pWjb9B*Qe_oYC~<`vEo58G*EpRZCKin!Ms9+V1h8
zbP?6wj-TP%>?`_Rfq}`Mm`gTfvmBrbJN6rvTxfh_+F(CXY;?!asEUs4hC!@DrK9&(
zcZxcF1!Kv~T<vPOTT*<wSV=-&zmn))%OiWk=$M>jE;E8~#9qtKYzho&TUJ^wKVX*y
zNJK**o13{^4{=09N`YbWOFk$B=<1GJqIE#spizCylOXVu<ktOT)4<I)`DQS4QT@c5
zw0Za<-==N?LM_Kbh?Cb#`ixDAae6EUI~IQfNnCT1{I!A%#zbPX4oaG6wjX|PU#rx>
z>wBLpr=I#IHbjVvRH~AI(!VYxl(OFVWR+mV!tAVCB!2GfdA{jGWoPr!HHudi@y*qg
z5O%m1hD^X$Q4`{9_Kzv6!Q5cxUI`BAF8~);EXf?hRvExZG6$^`7UANhXK!Lw4~jBg
zz2D_^Jen@}T!EF3jjG^C!sATYvx<k)khZ0LmEGqq5{e)5trd#|pGlW;3OcIf&pHkV
z*I;RsFclQ{DI7W(V>NVh@x#*-dry2U+F!E>Y7vOd>x<K?g$!yZjv;ER22A2WWO_5N
zrfEl&y{#=!;_dNrLG5`h8iJm{uJs{~fy6s?33y~@G(WGlgM^Gd>&G+~ubrczhQcGM
zjoebP(qSwSHgLoix9_k^5N}~o^eO8gBfTJ1CsB`+bJvK=d~T`6L&(^#s>-%$+HJ)J
zgShuLwG59+c?|FdRw=MBQ!hd1+y=CX9qs2-GFx*N1e-tE#G-f`52f$v7=WT5RuIJs
z9|c0%C{C$-<zhYK<U|6D)NbIIwZsd8y@NAkq(^gd<9iI4F}W{Po(Rke#Jxmy3TJVa
zm0y;vKG&ZQU<J(NuoXO~QLB^S_OQNdO;v!Ank%7+>^-U65KdBuyXi==RgSs>Q@V*A
zuncuqR;j#h4{FkFAIvk|cutY<<+jA%A=xu%;NBc?gkC99*-)xf=eqr=mrN)2Ht@}z
z@`sfF`mQJza&(3|S9}JeP;|bOoh(XtrL8c}rM;q(x3;VT?hfiEq{X595Gip@RPGAP
z+}+oTlK2EgX_4?A)YII8FflT(X5Y{eOwocQVNRRE+0^swq3o^3vi0&?9NLxE^GVg3
z?_({$k_hL<<HWJ9O$>>;>j^LYnn@ii6cZ|B&PVi7!89rB(#J(JX<}X{asEXfo^ToZ
zn7K}O2(v=dFE!dM%mtdHP~bvvRHi-&?DA?%BNM9tdg*VK4*A4%J%LPcMST#zj~*;*
zZB!$pASfgJkdS_u&SIozT4cd{Up(7dm)SceB41U-|M#P5i{J4_fMCm)SpACyA%%w!
z*8IUU6cdaN^>rM<nL<y#?;Rc1CiGmZN|yVkFIP)j+ZZJ+%=3>oy$aQ|1t=k(fpA=^
zwFY_wvv8=ekTQ83FzaayTBhN`U0mwRJTr<azms|}`;%WaSIhLgP-MF<dXj5ajDGI?
zGEN}MG#Nrn%<0SS;sx6%&T7w}&>#N|)TYlB>b8Z|SM^+RBu9rZWf2pCq@(YeYH41B
z@38EF^<utl3)8QTdA1kEKkk&9J2V%xJxU)vJ&oQ5{P;#U6^x85utD?}OZn5^wX}vg
zM}v+Js;_^)eC;Xc=;G|0AdBkQ2QfA_mN>4^LjGd3kW&j#5R^+4vuJsFbz8%_r68p5
zO&X0fHB&~-oBN}<C6f9XX8<(Q3=lC-z=@(D8$iSl!HhsehP~VKBYYF={KeTUGqw%U
z1OpE_^hsOWTCz;9%%3mOEv~%I>N_3%`$)aeRxP{RCXn`n=l!THX0L*6jZ!#D@ON$X
zWi;|zYOR*x0WW`%ezjf6Yj#c^&HXbvJ#q#r*<JS9qcB6M)Z6!%AC>V&<8(ZAa47UT
zB@v2BgsX)g&#q|>wx`JQ>voiu7sNi4<_=$PPpr@DQ}AVDFlXkyfEm^1=GBXbbu7{Q
z#Xg`iXC&hSK_Q!#!z@pjtBq+j`F0o{v#*G?HA1bjSOa1M^Vg1FsTmI8lufjYeFMfh
z-F6OQ#0X-ba3VszrbB&F;=NKOJ^d9IXRgu$QGpuDuE+6*po;fAZ6u}wKSw{Ur3lh#
z4G(|ey)LF%A&RHJ@vIDWvTac}z>m62!o#;LE08>B9Q4#|EtY(V>f^IxlB^OG(cQ?r
z?$gzNGpry)F5?;wr2J*G7e5cxT>bEVO)Aadw%ywiJ%3NV{2feuoG1!eJ-g%&k}<|=
z+7%<TkMvg_fnJ_xXwITc5W&QYOi9^iTucA3n)4OWc9%$h9+Et};S<VURF(JJ<U*e~
zO((SCq3XrqVv$}~j<s;ZC^+&qULmLB<NFKPyb8^Q3S|%2rs<U_zIDfbJrZK&U=-Y{
z`aJq0>Pa0N<~a@cHHMK%ZJ|#0=*WF4itoli|KzT?Kg$Ydoll-wV@R0$8u=!F{0Gl2
z^BmrVZAMCx3@N-sTw*gbK7LZVI*y1V4t?~fGux%vOVF{gjHSyRrnr=dBO^1$)MN5t
z^zf0oOq93)xJg4EBJ_)4@9mG;vP`vy1cK5-)QIcE!+0yiv>n!I&KqNml+>sI4j4ds
zt}32zyYT`bl@$Ry?r8vR+D;n=hz>ihRhdqJ#(edyBKlnn00$%!xZet9+XOZ%e-)(~
z%#1n$W`PG25>!x|kohP?{D5qnS3B#}RrWEF@snDks;7(~54U%mf5}+d))FQ769q6L
z8495%(&Vt2{YS6pXW4zYMHm_>FGdoTiHXUPzM%rlQ2H&}Ab*lhhGiZNNA{N>ib18^
z5Z~)x({S#eq9Z8mRvU`|_8AeqdzoFu6xQ>gV2}tbHn!HGG3_RRxLoP-?=o8M?iM}-
z^a)A19Rt|d*lf#)5^dkzhO{1ip}B><_1DwWYxt?2!8;w0Ms&#k?obs_P(;jLddFEZ
ziR~+hkP0CeHDL6580+pUIQDK3(Md0N4M5dcyP`YjbiQ41TKnNkDJZzH|KmmP>E!5$
zL1ssJq%yYc@$tIlZOsnvKQ=o*U_e;F`Ush67|LqMBO9O*vW1*?pY82Y`InW0xR`Zn
z#VbdtE@_Vd<Siw4nQL=x@0fX^V|9(yEOnX8HYUr5(Of)25)ye}sk;~exE=**eY!V4
zSqyn|oSb2pOxbnQ+i?A}T#$wap62n_X{_1GliWsiaUm^sf0uh|dwJ0H*6wGp)GGZA
zH&YLJ?uz(zbM}v4>D!B=Bso?0A+?v4*svBTS#(!{Bv-vkEZ>c`dx`e94@ExNdqnUv
zB$t^Mo*D*##=4m}8MQDB&HcGDYLO=`d5Y1~L{jfsGKGKjU&fO9TUwQe99jSV2oiy!
zS&9^3uq?Xg=vbC%swrEa?G<o8F{jb{xj_X-EWbPJBceKwt*6&6PcH~ADFhAGw5pN@
zj%e%(Y2ns{Szpx-`Li9f=tbKD3zmKLpQ2Gt-zkF+P~TTj-|b@R-c9?4S^dP)N#zvb
z4(=gs;DCOZR-|p^LBvXD+TVUtRVqmS`fZ(IBC^FJ9bpWNZ{K@l5)(u#@VH%Ffv2#1
zL38rlap+~jVZwwM3Gu}?)IxDSp^bi7A@g;#B8!HqSEGZ?21X#c%J8x2K++4!YNHg#
zx0Vu`x++8IL`sk1ZW-)9IlsnwW_S@wAYYNb?4Vf_uPICh*MkYyOPj>NRN40{qo4It
zqFH@o=Wff0?h@Pgy-S^toOsfWd-fB<i!>dq;Z^2rKQ={7!rA@~`FYF@n{f#_M;HSj
zOO~;%A-T(eP4ax7qDZntj_bXh-Acz)_yaUC&sT*H)Vi#{@87Y!s$-F;Se1Nhnx2H^
zNYuRUe@&NeLS2!mioyg#L(zoNQ^+%EO!s-ug!XE=x_iKL7L_qN6E0JTud%%28896}
z%T5Vo7F$&wy-gH#ogNX-#F<)fyLE%XUm%xmdzDQ<iYZ&W5G!`Jem*DrbTa=;tZ-Ku
zplOigUu<<IQ>N73{tmO-dlR5E%K{Q<DwV|Cj$6WZJLJRY1m8JpaTzo*{A{Cy)yTKr
z9VVImhZX>~K;()NJL%9<SGwYZl{c-+7AcP4C1#y{ea1EKHoTnv4OZ6DV~dWL0z+q(
zJj_sjMS(gs4n@XXe@l8|eadf`mT3m(kgo`4hG%!Z)F)hAe-3&kvOqu&dD<*hpL#x3
z!$RafgU{WbV{uB^$)KjY@FUQfUa?Lj0G19cfhcz7rtI>2Ag{>R-@mV>_SipL_oWn(
z+Y{1pPXbzK!k4{u<ABJUnX94CMJS2;_r++p<UEH_j`|G=jzNh->sbCv1XKW8pKzeA
zBOlqDJN*ji=3Dhww4JtoDV9&muN~g2x0*!|S^@}0O2G1IqS0??);|nzs%D`D6NJTC
zkWZey0GUV3CzlGMY|;BzA^FYqz)b)LTsj}!4QP`A0HQN0jMi(o#h-6{&LNGu4pDuz
zn;rA`1%-e2vj6x~#jJBG0=7?vpR?oQgn@cK6^WXcgk!Vl)Ar{#09(3iUaK-x#M~QL
zKrYQveqA6Q6$!iodJ5B0W9JzTopgvv-8<<vRe1nxRLmGoHLv#i+T{<VS#BscgF4>m
zgWtm*K6|@xn7YR{cgJB_xw=!iT$JlXj*ww7Ktq*O#F(*w6FDED$*FK76MhFXM0=Z7
z>GpiHi0#Kc88{6nM9Feb)ntWx-*11Wicp_-2h<_Q>;jN^I{<RScVw1!VbD3@asVXs
zF94*@hRrV`*zD1?e@WsY_-Ahb&>mdIm(Q-HR3%5hh16p&=+e@23U&Jpu-gE=%~<)q
zr?3|fNnhZd;{_zzropS~Iez7l?>Zx{N&&9y3Ln~xBbit(tVa&F(TjmWjvzF&JcLaN
zUnk}rAoVg<1%a<eb0}7!zS=AI4?$fnHO%?AC-*^(5A{%;<vg*eLXoaCk)HSg;^$v@
zg1Ud`n1${W0Uizx4vd8&9hk&^zrMeH2#V3k@}Px>@DS;#;B80vKy*0BDB$xR!ibHL
zQNA-kWE%4jebe`jbZ<X>4uxsVK>7&89@GxMs#9vY(BP_Nhy6qCN4?`GSW#awL~#j%
z$AaN#?J1Vg5{V4_Y1Cf*#(0G{{9;ePE+1K{fjU9F|MY&&L9IdRh_6ul7y^4xfr_sJ
zAv_zx+_13Z6^gAwW$2i##BL934&&N@F3}o1di%2Yp(EC=QUxD(%do97!P>*@n7Krz
zYnf-!0z!<0#+zAT1Rkv*6O$&ygsiO7g7{@P!z~6!3FLCH$a-CVyLxkl3(inz#I-e|
zOcUZA5=V(`X;j2>B@Lv=-tl$3fVl)orUIZV;?v-AbshV?RXfRKmC+98I|HMx+QHmV
zFoLb=si+l>eX-GG5WykP^KmJuxGX+f1qB7^8yf)w2iQnOi3rx&k)WuTH|woS<Q6}w
z@eq^6&B#O{7sI!}Ga1H&(<V_1;};#pvFpk#u$b73auVmWZ2IDmndK2jeuck`*mpI>
z=s1MIWIy1!CLhv<4!SR=e)acEpvE9&_sn%5+<|E64>e5gUS6`5Ul}dGyX7r?jjvau
z=MD?MLOGci*HeEEWGgKSMIh%pR}HJXEbK<?m*)hwLNFX19i*~*9*k#1=~_J6)aG)_
zX{}~OOLg_Bv;7&w+pR={xkU#)y;Zk0V&2(6<?}0ynoPk@bjV;1`3>rqx+asmDDO-;
z*b6+N^O0s4mF1?Na~h-N7;#bL<>9qrN%Yuo!9Oh#5Lh38*mZoo80s?BL8)kNZ4HOq
z#(Ky+IX$J{Xqhovskfpy*y_Py-7-#Z-aS61OyZL@%c6CEthW*sR#u+xrW#dBe=ojp
z#yqJHE)&*(Kctq`fTd>)9}*^A4UO#vRGlehAcq2&;HFSU{{Yzu`@IG9jE$ivaJ<~k
zHY#g@l?R|~bL>JN?dDee6WLooQ^n$Vz@6yB#Ps~<wIJTHW7r{LH>ik8-(jInH7t@7
zQvG4}eDu9y+qwqYpMRTp@5TsZH5rt?fEp8zBIO5|yv`NEN*=S=u}MwT8hHJjwA?=g
z=4XT{p$<?Fy;wT$^UZ4KU5h9YopXvxZ*NXYxyRbA^>eCdxDOG7>8l&4!p%Tyf#H@`
z(tS%~fC8Pw-P)&EO2&iL`tev-UoQZ5c~DxCov=B@bOrSUaC^R6<oHSgDP@x+<*Y-O
z8KJ;3x)tp!&_N+Mr9jXLs0h0t9s9|nfj;P#?e}O^Cs<$*M<pT(opwFRcP5^c7AWq~
zhsrhl1JP8b!|3+`;KA4^#LHZgG5|?2%Kn3hGHI<L^2giLwlh^}>2UgDrf;#rD=?6%
zCugl&MH;4<%61gGU9U9;vz`#!=$Y^yKcPex@zm_{HbEdFyOJ{aT|np5qD-TXO1cmf
z*c&P^M|cAVi5=%Z@3&AQat$NSZ_`}*k{6}o*?)BPQ9mtGYMt9Ym)pt;q!A2?__1)=
z%%AG_L;K}&jAh`-?dI%u35|pgbQLs=vQt(2cuP3stYD7XmOko8^cS5d2#SvkP#*h(
z-W(|&aDvqcF<&Kqot?4p#XvIg>-{Jgi00a$wdgl8&tMzFuLl;FMwaF1N#9VtJ3<d5
z`~rx<X2>Qy_yK2#^=bJunYqS}845(u?mbYrve{#v3&<WPNHr!BKEz%AU~eyJ50}hQ
z$0z4PsYg3Zx9ajS5y^VY_35Qi*3p(!eQ(g#StyT)`nHk{m!6L0t(LbI5|+K$hlHLY
zFvsfMPrXq-4PSGLaGMvqGK8`+em(dzooh)BGa&)YnqDL)G1Ojg>!j<lvYq|!W6Wh-
zl$Yj*P-Vw)h`bGskgY-QKLa4??q}e62`l|3*hmw2h6u<Mvr4)ro&EBo))Tuj3f*%O
zn84glxMVT(GIFSVGK>JX*WbKF$oMrWVMkQQdf`HjeC;P~7L4T!3ry?AHi)h$OME;w
zRM)b_x`oLBS@r?bhi*tk2`l65VAPxJmu4eQ47@u=Ho8V_a|kOgpp^=q8h^ExX~XNx
z56xh6)Wk4NUPi`>iYHxvY*R;gFIyLBXtpm_-W5;DQBa$5+7?e!(H8L?0!y(t#>bo9
z30~rwL`)ezbcYg0lSPuR`H<lo3#T-!a`RE6dj&7NV`V?9tIL>i<m+tV%32%&;rbWH
z%@w9o37&%p)a4{i{L|>ZGfv;FQ|^89gB^XjdIZZwW~bw?8ClCM#WOEnSLPy_mE`wj
z9>5G`bZ9_%iBK|9kfSs_>vj=sYAwV37}E~{=vC><oovI6IDN!39^K9{?zRW%`O`l$
zH8(ErF^@I;*MIvA&o5>`@rtX;bbc+&oeW)~<QYLZGy00bX(akax61&d7&~?(|L*w{
z5iTCC92A9gBq8B)Z--&Nq@&9x>_YPkXd}%1qa(WTxFQ^^W16vvG!t@dK;>K-1wj*G
z0M|mtU_LfbtGTr=08<Z>K8ONNAZ?BIZ3pd(j+Z0YuHdGsJP!mjK!8Cp*Fd%>QlkKj
zC|G2BhG|G!LnqA=lLlVfUC~~3tBL@C4HdPGloL|JCtfpBJ?1{D78<+L;17;8Ob*!~
zBF@iyq~+F&6!m=ABpD_&ju}yZcJ&cNL3bka0G`v;`Em@H+8~$lYVO(ux+U{C&lMsN
zJ4s&D-2^>cn?4jnq~{d@PVg8W?_wa>NN`?lzg1K)KG+(Sb3-9`f!~<&V$^*ErbB?8
zc30W3w`;j5;)485bD?YDwM%3Y_Tr?VGNW4Q96{e-#ToVqluU8C!luxyM}VAS@qD=!
zcG5wvBm5H}4o<a?aD;pF@-XFZP031Y_Cp7CO2ZPH-cwm3<QI(kdG2onXiQvab!FfF
zI)O%b?rxk?bffDBAU|Kc#Y|$<s?wvQkv8%vHth0aL-jmu{(&|Vi<!rdLMctq?#!g$
zs*a=+@HNbxDC&XMnPToXHxdE22M`Waq^L4_0{Rss*k|omF_QKnL8POQ*tRT<#6Q$%
z;hj+HZLGNW-%Y|KOOgzE3>|EAv{7E>`CcOrvBp6A%t9G-V@{QEY@02|0JBG5UiiC1
zK*#>q+j^7G^PG*?Pxu>ixy3OjJ=$+<fgB#F&U@B4IA!*@vJLLk^xt*@2#VTR?pvcJ
zcR;1Q%xz8No8!af9+uQG^qfuUEgdrFxlkOjQ@inRr@k;$=N!>_j3GY9=f$oUswtNF
z<CbgUo9*A~yOMeqpqHRKVp>t-jO{?QA@t#X%hh4q6ZTu|D%kTf_otI4ITp`w=x=vR
ztg}x-<y=H>$DRJ#`bLcicx*(U?z@WI3XjG03SNO4j_}CKd~cPI2@5uGyk_a~NDF)4
zwsGDY{@Jg+P~<?&!7(s*P5Rf5ZCwbKvac#(oJ?Z}R|eAC8@y~LR#Z+!pKNB2U+;JC
z@xGPj`Dw5#DG`FJk`XR(4LZ-UEUo;KtK={@n`Sgh%*YyIo?~)&C)IuAw1YmvLFwOK
zh}AnR>y`Hl#5LBc?i5`nDOuL<rxRIgzMN>zl!jEAX9V*m^XXe`*EVx^J$~jdf`|x0
z71^-?b511vNVt<-9Kq}uRJ|Ly8#_6Bf9tlLKi8;JVxBu!19c-?=Vmj!sw~sk<f)l}
zlE=Hhb!^<=`6R2sMlsKZGdd<6f9PH%$}vyTEzS%_M{m94A_7csI)6<J6jtnKg(BDS
zMJ-Ek%vxQ78{jpo+Mw3ZZZMdw<^EZpVmr~$WKu-zVOqb(-@{QZ-|YW+X8}{>o!s&_
zb(=m~h-86d_G4tQgn7|1`{=?iC*~l>f(qf!C6RqtroE4+N=XejB%d(8iml_p^=58J
zc%>^7!}eg}O&_T`t^XDeV;S`CHXn**8CJMMi%zi5?1Sax9x}3nm!}5Ttwgpln)V6N
zO7C={6e$%6q9izIFJeYZI`-c%Fu1;XkZ>tJCo8a7J1Y{+BA}1)nkhle7|<aIq!#O*
z;QHFGw^oEjcbaGxv`fG^*FicUp!Fu!TQUA?Qej0!vod`lZ=07Ku;>MUfR-#fg}{dd
zJ6LBNP|A&O9cQMVnZ>X|OD)8z{Q0L5%90V{%|I?lD6d!r1n1YL=BC(55H3KmRskC+
z!idtY`8|b6<F1fGYGxq!OAbibJTfrX_(E|(2a805ryez!zObMmSlM_ab?-CE0rQcN
zAHN}*xzR^yp^s6JY_!KUtWc5&TONT%jWlo(tMyiDOvEu3&FUcuXh~m^<hrd1d4e#3
z%?Enft5Vvln)3x^SAB*N9_Am1EA5F=^IX+I*ZU7)Y95CH3wAV9ADPDgZE5N73q<FH
z;N!0X7`7}njLj`sf<kJH{Bv7y5{?Gh7?rei<ZrkJ_B}7$hplu1ap5S~?kzO8`7#YQ
zy;ULF$!&}B?H1^+@$oX5PfMI~Ty<b{O8ThKx%t7^H`Ta-`Pt-9fP+nLbl7A@GzGEI
zsS?ax3TFaRwm5?X$UE0?Go%O_-Sl*HGOd#u2L!=^mz-;4eecK$5MqXr`@SNhZ1yl7
zN%HGKFx>E9K;|iypwMT5w15Ldq%)^Gw82_#Pel$x>moSM5X5f$ru-tvY%E1)CuKC&
z<r-Hu`u<=DrmEvsSLUObLHp;eWfejMpCxmQzK<X!B21F_Feiq>@^4{%pV7xmh+x<V
zaIljhS*|s<L)j!fN`JfR98N*US#76irvXk)ux!jT_pn==csSilm2sv<ApEnDxA2B~
z)smBZFBRu4mvqc83cZ=~2t{rdr|iCW2PciI_Op&_br!LdFTOxTb=e%3Ms)C|5%tM1
zt2`niqTch$Tqb;Ai2~-s|6}YcgW?L)H50V)#)C_OYjAf7?oOHz+&wr1cXtUI+=9D1
z!QEYgyW5`3-Pye}ckk}<gDR?<s&hVl<&mpz<<EVOh@<Qc9dP?<jYa*}P&o_$A|Sfo
z94KO3jid$~PMTQaj=J+V67+*2-T$3vlvRn|@u4tyR;^2C54&>$gRrIJ{{CJH7yaEA
zKRWYk<pSa(rM|@u7`UD@Umsjs9Tc=z7yT|->XzwEScpP?O>IVE#%Y|pz)Vx{v45vr
zZK#Ibdl&?L%{_gV=YUKIvjYml`?Noq&0%I8h$9K{*aUUj>Pix}^;Tv;^Ae*}v0?1l
zLg9KL{^5zVKfR2Z%4UBmji=?}nqWKY+vmlA$(6*47X><ucQa`ZpKrsTvc^pwyiI!#
z=VTH{60*f4O&#rTIX-Z8&D2)qq^r<so*Eg{r8HS^1IX*d52bhYWe=Ym>lmefZgO$y
zm9?lcFZJF-&3%~#u*hAX^J03R&)Y}~juWI%ePub<`)~(1b1?7yYYR}5mZ`Dm_foL^
zkTjzW$KYcXU(BYCR4m`<?k<`KG;I-!eR<z~pNm{>A91uzcCK{)Xc7@?8QL8r@vdBL
z#AryIV{z>FC#!Pnfp0*6Zf-G1daLlU_)|FP11-`q-*osN_4-5M-;Gp-$J|Lq@@}!D
zxRfE6cXS6IcgUom#5|S!3MM1rKKO5G&a8#4A9&rBI`3T5m=CCKoVcpw#yH+GJSPV(
zzvO>t>JM*;M68m3Cj!R_=rC;h@s>MLYP1iyB_{H5Y9;Qoc;VC@1AbV1l0YCA(XoMo
zWMv^j*!^GusUjWeo;*??6c%Iu_}2A`w#mIs^NYH7f6*4r`53z+vUwyA;P3Z7Hds?#
zozY;2d+Q6+AzY&pp00{U@ZO(HZwOtkb;~&m9zYKQn?D^IrTS49TmZtT<WiBUJDirx
za*iF%1OsO8-b|sH8VKP-e}9Js;B4v96=|v75o&BpAZu4>R*E!PH*d$v{3$LekA;CJ
zG<Y}t*UXR|H#G73oaeo*09h6lS0c7CyUZM2k8^7EW*YLc9k1*BOU4ZSj~xjB)xO>$
z^v00sxjO5BEq;wsfuprTI0bzBn2PL2F(i~#^)!oCEBM3+qw;~r5=mE@31aES)WI_;
zgjE`)ZwccsXc6f7CWi)8P^Mj5l{jL~H(<pa-E_4rq4p+DB}+GGkDuBdAFoaUfLrkN
zMF~;E7GWCiOXJ&-miUYZITM2UKaTp_0_Fc0`ZZS}oLV-^OQ6zU=&(1c{8?2YQq}eR
zGfa8l^&_kqX_WplVtKG|sU@Pt(dC=HJc>s2rGR4<0|(Lo086rH{N)Nj>B-FPBRYc#
z(fc$>kzKP!twY`q<jxl;5?jhbrzio>!23tW(y~-lQe4jtS#<wQ_c6lC6TmE}vCbrN
zjoCgq9?dIdph@%-A<pED&ERi<{=Hm<fZlQI!MC=l^=@oxkG&JUVS@tmBwyc6T)aU>
z1x`69rf9+XP1j;~n-VvFHo7$U!72A?&mf(gS^H*%8q&*65Dm}pn{)P|=!iBzo{4h{
z*ZaNw`-eCxtkf15GK7P8K`R!L0jtuNx}R>WvEP&@A7HT<rf-FW4*70479StowQ<87
zha7D+%(rhA7rM81p>Y$N8m?#XD?x1E(kMh$P=^fV%QLipV>h9te(Os3MIk&aUtp>V
zG53(0ptb1qiS^aR>{POh;@0n<HY-HiOa;-=41W}#JtOhYWYBv}V)VRn_kDB#$D!Ih
zNi__WHo^G~7pMw(cJp#HAnKy5lsG82MMlF<=9j_UP7EzWcd3qB?lXSM7{d1jl^&Rz
z$>be`c(K<5Q5tcQ>Dl_7<0Z<(?DgB|LtQ=(b|}vH@pu|>mD=*eP<mA|ICCadKVI8H
z!Y)2vZO#MZO~S>SV^+35vl@oH{N*mevn|dhxiu+25=qs>gx##BY{-eUuWR*rVYT)r
zJ-IQS7aeO4@K=5@1N(9$Sjh0!OEo!@?&LS>S9005mWrf!tf_$#n_Tuw!Mr0CvnuBU
zEt9)xoxf@wLp=J*AHQL2Gj0cwUTS@0j&oQPgOY!B=X7m&#0beOX@*BhcZpEXB<IZ8
z1kjeUv@CEicOY1VsckakGs{IRrcD|D3pgw%-QIQMtal(HI$hT?Y-k<gu9;aZVK!cg
z=5It8KdZiOa4;$si=vXO`T>GI=zbEE%8_X<vq3|V1qB6;3-CsGe12V?YX>tWJ9X!R
z5*-+CuRTgOKhAS|zj)Nr&d9IFUQ8(nCiLUNtxHDWQ}A<{rf_wD(hERbuBxp;@z{nO
zOX{leII(_VxZE!4G}0V8CJp+)dIhAI6v^Qe2>^Av9C4b>R2+Tqn@$vIQ$^oyR?6uE
z!0?AA0Y5w5)JnHAs~Cp_cJhZZjQ`_ekxIePo=KrHe$3cGv#_lsAvQKe0;vxT7Foh%
z6TalHTI+ZfT2Ioh&feM>VH&jjX)1=xj)aPsB0D1RlTcO-+YUM5`9oU?0&8$kaaN2^
z7O2~Sy00RO7NAe2;^95`UVyJn5vMZYJARRkLAR7>y~po<Ze)ojDm&IofG<x-2na}N
zYxkXo7shz+*JWaWL0D<k0MW$XOc0@+yb_xUJmMThacT4eA>R;;)+Z;wE92$zq7TWu
z-mg|C`wtPS|IPjNF&4@Kh&F7ylOM0<hT2EHeRJKo;UZnQG`>AtnPJDH-7JPOW<es)
zp)BsRDt@ao6nZQ5{ay<&9UJqOw^lzL5MWb6e(8qjo<XUB)PCWKnkWaU6H&7=#jWZo
zi~Gx<Ta%>ymN(QWVyZ<y`D754>dg$AMGvEYOeP!90JMCXTxLW5m}`yQw|JS3)K6Ql
zV^2odik<%c)1i0yGfc-4Qx{TyV(_4dx#$Y|!S!p<QbpL>zYDumv%$m~WO2m7uF>f`
zP>5XqJ)yJAO3ThiJ3*$^eTOCc#<dL}RD6=axZ?K}PVu45$v6#zTvvzIFEot-4tE-1
z^W6dS17#6-Mk?CS0Jpsio1bi1{SnC?j4ZZzEXY@pS6lN&S2ZaKOKR?zRIqcUis1u4
zzxvylR%FiKf>l8{Xq=6>IRS{`dQRnRuN;dpdWVb{#_82Xyh&<)%XA-Np%znaWaxyq
zd0XtVhjXd^@H8~2(FK9rvjw0_xS|lo?4ix?G^i=jzSp4I7mj<EkePIU=yYP!EqSax
zkp*}rSj+lZiuP<T^WNnQCyx&0s+qlYwfoME`cC_g9MMgbzAX_5ZvheD`|sa1fD(CQ
z!(<^|y^3*@A|=l0CyHKiM?Sku{o5Za%Lwhlm?lGx3Ttmt)|ft|haz3>KPC~!oI^8a
zGL|FkY||geFE)>ud%hF9e|gMf^Li4}I%)Hk&lTBN#D@`&CSYZ$3P=^tc_+I<gQa3`
z3LrSUtZW-qEyNaoIO_`UQ?cwce+DS4?@Wg=rFj^;P}aa&Ya89LlX--zJ7-_RIt68|
zEe3?O7QnB~Szu}aQtsC?PwhcB9!D?}=(~J&P*O2@IhK~87KDt~1tSTI$~0yHL%0IN
z-8wlGaCo>|brI_!W$Wn3?kQ+m?q%Ej7s;wm`X;GJLOo5!JeS3mBHZK+U%v<u)Is1~
zCqP}HOhDbBz4fREBny<++C1~f$?9OmdVm7w5J_;l;&>XTO@?Y}$zh%E6MSAPz=1I{
z>}#6Uk0+r`AId7{1}uqc%^So7<FzvcM76ZK<>bW)+%CRac|vuf(?%!4NQO&l@j?iy
z+T93C13s3|Chz%>#~v(cG!$}yug^*bv#Jog1-_qwhJosVnafH4yq*DuIKvFV1mm#j
z8iy)iWbB(&8Y!w0R`*&VlWA3v;PCINHGq6o#@=}|peJV5{eYs{dt!E1hyPPzM|w!x
z$c0-qKNC9um*9HSUrQ!26vgFEgXxW1t>kn7E{a7UuHmr1uYUAT#-2|WPIWzZKQX2J
zGb<Epe1BlUbopPw;Ng<SpMG(VJc>D_Wx@id{f<oM%R$$bbR^O$BS^YUQDl%8KPvwq
z`n6r*fLBYLfRV_NQ4WPQy&%RGJE3Ou=NDgxys5l;QyqKDG3k-d`nExDXO@xck2$4&
zr?q&7;0PoM8Pp-LVCu4UUzPuIP#}!4yTg5_c6}}@-jz^awT!t}aoF8W;H{pf|LI@?
z(=(Ri>E})vL-dD(GO&5%ud|FKjCj%npeRY;1A_ovG|5|IURO5cm)ES9tT@AVOyKD;
z6*#8cwFoE^yUV&NBBj9}{gkoBhR66xekDva{k~&cKr*k}vtAh)Hsp7#P|3xQF&VH(
zvs{zLl7DO1+C<j~Iw<@guh9@z$!e`iq4@b5lZV=&cFBp_ZDjhD7=r+FRRPY+>&+;1
zTPW@07FFx5G-5QAk5C8Hr<nX2HJE12UpeJQE1#X5UK2kb9=vF*)Yhxnoud^}lakXK
z?UPQ5B9KMA+5dU_(BA&o5a-HtO2Nbw@FBh1goU+!?KDjz@G;F{`mKKjSfraa6ggvD
z6=Jg}D)fg4-^y;_tO4;YX{oBm*tZ}etxKO-xu;?G+O1ImuJ>Nu9is1tV@<|NdtMPw
zo#D_>U!W!NTlaX~`Id<>|HwkUh$O%J!5ml|@Ta1#Ng6cv+3-@$h=R@XX-8Y*jGP5%
zdJpl(h_ngot0udr+OtGj?9fRg7Oh_)l(nQ4oTa}5(_2#>?$4LY85Z#`TaKnU&?F?P
zPx>Pus48od;RGV}Kow^`wMPD$0j}$r#on*@Fp+mC2PY>Y*a>Qz0wwDHw5%R4hKAdU
zw!bpLpKz2VB<iqOzkWm_CPZ&S2^-J9b<^JR=ztl;7+<^GYN|ARygi*ep(D#OGJx{*
z5fYWVWItWs_8QIKUbk$RvnZtzG%;9@OnHO(1!@;WI?XOZFZxDPSJzVY10SDm=)tPn
zVVU|IayaevdK};(oSNZzqvZ=P`(&*FcN&}oaijSgrlvNi?9|o<ot*(R6L9-8mFcF$
zQ=jA&J)h9mLHDmZ$K-mh#;QgW8I36S$!Hf%-B-6HyM2Ca6v{pLY8LH+%?2&ASNbE5
z>wwbx(e&-xlb!gYxiLb8__vZ%w*|%SZAW%1t#_MYj{QW=rWR?*yyfh+ta|}h9{Syv
zhETHK5t!dncEBXR!Tgg3leN(WE#o3|dd&$ry(cELX*rjmA?NeBV<zi?u@1KL3%8v<
zEBqePLCQ8AlqH03Jw*DwC*n*^<1<Ao(|W%^i|4v-%KntY-xiam(C-9=88YOzIHJG4
za~KYQCk5FX0OI?MSmp{EHYEN_5G&g6)@qP`DNN+!q}%9IiNAAs>sLP9eqCANRbe*o
z3y+7dQ@G?+5X=Z7K0wqQoqq@+L~!j?OMHqcS)N$rio<zWSA_a-r@3vWr(~5Jd9@~H
zYX1Vg>v+Et#gil4X>oK1i`6UxtJ**8p0ey&H4rcGw)`o6Wik%O-zRDLg>&(BWGz6W
znH-ToAmFPw(Yw_oaFtV_lX|A`rrUS2_|g&u(tET|S>xH5HDno!^>z0yuRNg{wyk{a
z>x=znYgKMTylpzuwFTp3Tc+~~a2q(gDNd$w>J{}wSjNN{6&8(HOTtIojt@{gZLXDu
zSk4PXA{_=G10UPU-L4p&R3@>ieO?U^S_G$bjPUY~^JMlZ3RHc5ADr~cMZ(z`m)>qf
z`<@dX9MP)Kp;&{h!iJO6I)y`C!MNV*DU)&QPqOrH?fP-_PE4&TJA^Bg<=qm$jY@~5
zUX5UT<=eE}*aCiC$MQn*K9EJy4a#G0YI6Dp_32li6g)JUFFu_-YnOndD0Q!c`AEFS
zENUz!SgRs4K~DS+b+~E2tzOl6Pe$M&*-Fz)UOC7chbv5}zF#HHrf38_!%4Sm3}2qN
zbg*4F7wHbOvKTkJ_O)*pa8|3?v3r&O9MShYK{}O`J5aJ2Mc$R%N@;ef7Sj)t>Ed3q
zt8HU)1WT+vw9J0nJt3(vn1c2{v_5XK!pN-PmRgc4aa!UQaoJ+6{6MD#a&M2Xz*~*G
z8%D;xB>vV5y{Ks)X*m_ye37Nfr~5Xl5DXD<d56WT?E(Kx+uUP<1EEV!yDQh&MF$)A
za0?nmxs=hW*7bT$E-L)VA;_#tjtVzKZ*yz7d+PTlk7|Bo&mCh7u7Wm5?L95y=t+^y
zA^`R;+erwA*L{qV&DP#%!H+ej7-FrM>>(?ia}v?UaOB3!Z%f_&Y|b`<TErVg=)2kp
zuP@yiwH%5YXE#n&8ABS!M!`4f>4d$$`JFO|tAePgHy8EfJrP3y3M80MR&FHL^)3Qd
zr`0WJ8E|M2+h8zB(=240P7(B`WYBBV@<*^F_4n`AwQI-4#Wlftkx}0jl<n{r0!ZX2
zSiX?t+EsyTr1C2ASAD3~cp)p-at?d=4Sw_ttg(Ov-o`=e!=cMDpu0;2oJF!(YEU~n
zJ68Y_MaMe$9lPD8Skp!z0W}MY@@%&snr4A!Q_X$$ygI>AXNvpH5t-#Lz`-Py*O^f+
zg+-k2%Qk(l#aR#N)OL0efF#z8kApRZzZ>C;JOOl>*h9M6x}u@u)m9y%A;k``X@*6&
zC#W3vx&ymq{~Fuk(DRKX`HyRXj^{N%eDo(XPCt0A9MZZ-8}EYh%Qy&rO&du(iqE2j
zbCW-+F)j51!z|VM&{eWOLUHb_3(=1h%XbQefW!1qv*9+7)2&tIolgJIHE=osFZIu(
zN=Sk9jn8{8$*qjP?y>xO>mbvHn2s-%T2<FT^(!j$;R(nRlw@U*H-fy|y`Di`;!kID
zYt!rd+`&}WaG$87Mq-8Eq$DSs(ljgl6dnG<)S}vXlY#O(d0bF9V+)GMe&`o94d(EZ
zt3~G$Akwx#4u9<RaAqR0ukgC262BtMq^W29S^9lI5QXH1mAQGB5u4GSsyVoeHoe~1
zMU-^<#=wC%={3YJdU?J$z-4fu^NfVIZ03~C6?|=Y0$~U+ZorFdeqtosc9E1nJwrQ<
z%LIKyMsqy-!@d)vpd-t>zo(#$O<!9$E+Jxa#eI;tM}OnXTsTP3K7K)msDR|NYmU$S
zAWd^p`N2(U<$^-^X)ev`6;PeewRVLdeuInrAv1pkC%oBaRB;ej$|Jw>fGr-?E`JdQ
z&e<?HL?+i#m0!7GZv+~@+X1YG0{-9U&$N6G%NVM0GYN2Y9}CpO${zdqXojq6qp?$x
zUq{C>vSdy?)B<%RT#nC?UKYNVUX!QSuF505WfODqLKn?TQk?$C9vmRo-IA8L&#(vP
z{L0Gi@`eAZb)&kQP2q<qTkuG%&%|m4q%Ph{tqDVS6Q4KEtK;jBr)hpHMwp`pRMDVt
zT&UfMNsD728$Ha^xIIID5Tr5%-#>aGh%=4SV(-j+Vb-a6w|5twu_koIV;z$tnK9$G
z^k`<;y^7SzJIwaxGj~s}pf`QbRmA|~rpbzA+UiHZk5?Ii@cKE;e)YPydXs&vg6Zqc
zyE!d6EwV-zJg>uKI!F7{sO=3B38k%av+HW4wQQ74XJ`V<Kk`tT!9CC#2V@ltYm975
z&o>ES;gbvrI=2BE)jE1@*=;fO2^tZpzcn@`;yd>c`Pj5so^Uu#=+rGgN<(V?P#yD8
zP>Aye4#Y$t)QG=9^49bS+UOLQ3ABwrs5dh+E6V$tJ__T8?b8&x`=|lX>x&uK+oJX(
z2j>@%Y?{CN?ZYOmOmN<I{=Jk<ncn&*ey+Fvv0UEvVBQ2ck{V)aru{*JlH`y2i!}pU
zcH(D>2<YU5qNF)E=`zVk&lU$t=vH#6Y*H2%04~9l%vvlB3|(h*z?s}e*fL2Liqpq-
zcGOM#@Z{j+aWGADpN4U${sqb=Va00K#cB5)eJk3Tdt>z~eEZV{(qCNi#Vx0p>ntMS
z$FZX$OW(71b8!CQAW188Fs%+ttH#J%Xt?Au5`28~qNb63BD~w-6xLcVPU~fA!Q2}E
zYWS6n0AgQ7j{gWT{<(?AiD0r$RV?N-WvWgi<#{J1&CO{yjE7=3iaP#!u1-!)YGZXq
z>;Rx?DJ`v$SJx6;&K#@lG;Irg%r{p3kwi6Ldl9G1Jx}-;mw%o4A?^M#^GmjCIQtI&
zn`tC&vvZbmCGnS{-rVZwQyvH{d<egnOS{^)3d&6yL?KgxjHJ{s*#D0Cg+d1hvxTqA
z*4kV$prEoJM?eDa9#1>5B(4O<{;gA_2}wcgeqyWoK|f*?=V#-l^QG-Fd5ty4@P1B)
z**mdx?3`>_rv*GR=0*ji&XNjvrG6i58^ylzga^awezzN|h?QLdhGDcEb{9jx0u~p9
z<;F9Fj}luJ8v{`!%9BlF;Vqa&Azw0r=2{f`IiEA7CvP4a9rrCNu7eL7?(r>bGGRr2
zwQNoGQ=om0y8v%!)_YxnI-xUTv?fTp6f+lX&O$?O^^U|^NlT^N9Qhh9^dvH7u3qur
zD>ZvlR3ugq^HR=T>41CjLET())EBq$_2rOpe?tCq{X-?kwE9$$ryv3Q7qEnY)PiK4
z`RRMLH&*FbJI+k55DNCwYlmqP&Lq=UC6li4TWezvmlZlhc_r&fR2t-73uLC!{Cuv|
z{4{>fdt~;e)v{y)zC&&v0=^#7pDk@|X5LyMX*EB+x*2C8$vl=@@3<MnDig_2w-0Ij
zZQAKQlr!n0bPh|zH`Fn%T5PSH0y-Z*v@{(o&FSsA5UFr5eDnsKjy}B-nZ_D<nD-uP
zxNJtBrKT_(Ha-T#dcSU5XpZ$XD8;cl{Wy4>BsmNvc|7%YG}#=NZT#t!IoVdB_wiwP
z+Cc<#bzQMGTSV@?C47#D$*i#cXCgN~`pcb_bsJ0p%UjAU5UDvdPL6(OXQv~8QYfUi
ziVC<Dd^wL=ysxub*=p51j7Ccq!bLBfLm*s%f=@XWUv9tek<IJyKlInQObnZq&*;SB
zd0@0h3boK`k7z1f#{rkjRQLKBNIpnvo^-@;#wuJHqOW$!6Tp-FBg7VZlMP8?(4nlS
zt7xf$jR$z&W@g}}Yh#@%!;tj7eiCoX?Ke;kU8zA3Qgt1j5;--dRRRvn<iv8+tJ{7E
z1VXE|bm*;T7SaSwui5#_8d~8vKQS)uecaR2(_imB&XGi@?lHmFboFvwsbm8Uf)^VR
z*FyhXWS0q6c4pU?`@NmyUy+8^kbI|7ew(nQ+T%aJi*7sT^t|PESK-~@$$s1md=FL+
zxcF-o3=sLH1?gRpnQ}oSQFFI8-j8Xr-4?b-$s4cboe!C>PX%?6x%l6?&H*5odVz%d
z^jiDc*%$hQw6sf#Bwdl0mqe0acJuL}xX4JIR|xCgXL|s8Cy`xJMwqD9JH7X&@B7?P
z`i2+c=>)gKZjB57aKawjza0@cZ<ncPBS=o#k)ssq)eZ@F4V2!d0YAu2-$@2R*lN1E
z^xbM(2yL^-oO>neWwC;Ve!jljatJWt4{20W4=&p1p6gQL%kf(w9~xRDiJs#==U+c8
zx^9N}Io|R*<H;RfzA}EWoSpY05%?lkss6i^|5xHKEeqJZ`>P-YF9oj*FDw#tg@By^
zNBYC$Cxz6yMVcb|eB3sV3_>x}(NE|s&O+;Nic8CWF30lmFo<cK!7ZfzKqnVcfdE1j
z>|>=uL!o`8=NRgGDpG=NZ2guNAf2Y2XLuu!hD(iKe@R!kpQ>7{O<hZ)7zk;}pzf-1
z$1iAcDnM$1QhM#2!RV<<IZ*BfH6&JqGI)h_z3PLm2$!10U8>`3_Eh8zLiS#h_p+?K
zH3W;4FY~MQnY{^3>0wN!0J){rLiWt*5V$;XsI!@bBY12bdwPaf5tLF@s2V(e=9ad&
z`1->nb=qq0%Ugv=X8(yB?CgB>oOk51zc=D~y`w|GCtr7D{U33N{Y4G@3vU{d^-?YS
zmr4AkPD&5=_B1Lu=fn&0$oQJe$QD^|pM>TuKZ3$WLc$no)oA#jbbe#`>d6?9+56j$
zjBskUBvy8Xl?AyRD=4}`;MhSE)!Y^eYr6*}HJI(?7!V_kqAA9OO!Ul+d2lTLMhzLV
z(={p>Vm=l;))J?x6>o6vFy<&^@#>Xp7Q1jca{4@L*<`kv?~Fpsa<xzJ;@bRDGqSZE
z5$0b2F&J~oPmm`8XG(pw_zjjOO!KRzyO+dogFauC;Bt~#L$RtIyqC?&h542BHj2&?
zh$S^8*MabuxAiYn=FF;oMFJfi{X$>LzqIYB>Nm(N_~lJWadA#>818R_mu?t0UY}xL
z<BED>eO$%P>>Y-DEc^3gEV~62mKDx#w0ZR2nsm@(Vcj@S)L!teiVdImpU#ns8F{jI
z>eV%{FF*uEs6`L5mo7Cu>Zm-6-d8g=vCh*U7DRW)yz`!(Wpwr<s)5U%YYo)lmyY-m
zS-~F62B>GKhdu)a;F17LJ~+_u{vt6mQ`?w{>w7K;biA%~zT&)=2Ve~+Mt|_`;12-G
z5+wm!65F(`REJyrQ5MyH^G6|68CeWEb)RBL7JDi$qMrd#oWUTe_0Nm~0vYRXs~Mu~
z0|Ek4qmKe`A*8kvnbKmQis&<zkY0M1%6`Iefs=qhG!jM<T_s}j>x|V}Vdu`b^TM)$
zYmw0Ks6V3w9zMBEiT<&9>T9{*O=DMjueo_^Y?87Gn~m4yBl=XZXCxyy+lEFuekj{d
zVrsL|6;J~hi{3xHTvvGK$)#}&q8!>`Qp!eu<)$~yp)Y4QD&zztbX@rjh|tJ(y&v|e
ze5qY8wg(;WcakiSvWp|VD$u+mZy!ir&fr~b-bAH0a57W5P0!U|H@x2h4!6uaY64Hu
z?;*EKXo63qYl02LA5Y7fe`%nFWqY=uReFVjw}NSX*fn*d&R|MfAb|k^gTJ;ue<Ze!
z`(FhRAUaupBKr>Ca^|jL#Sd98gy7RNf2p2f)?ZFHsO~%4ewTr&ssPef3Hp6S2qnHF
zUc)fR5k&xIF$SF@a?~ZltPg^HvrcMGPB2%8NxxLne?6Q(BBQj&BFEDyEyq^~BXG~C
z$s<yO&*@6f)tND?KRyhQRP(nuv2*}ummU-SSX`lh$%TW`lTl~vfy|fIQ~F9uTk;RO
zP1erEHPo;t7H{%(%}ybU=<}YFJRP&U82j(Z8Ql&0DWVbR9Kx)(Vs~k9P>y4Q{QdpM
zZ;qGTyA)lJWwSKELNGz6?XMZefc0xXFCa_SWo&*X4L$ar=>8RcisL>VAzcQ_3Hx3-
z`p*I9_vLOTHeRfXfeGy<$-CagkErRb-9H<YDBJ?|3_sXfmX#N8+10J(_qoxIn65c%
zNIu?zEHbJ!dQ5S+ig5#Oft~dUN=iz~9|ejZ<VY&pZEQ{reXea&2TV&eDXD4(MyA)p
zKF(C<=7c-oF&ZCvjUIeOy6ZOpZqNMHxwHnrk155C>Q~)Luu?mvdXMYZ7&&J^eC^qv
z{V_O9EM`ly*Pc(DS&%a7&Uuk7SkIu~{Y=k+NHHG(FiId9h1>S!!)>g|Ftr+{E>r9U
zbHUjyP-S|EjE;^fPrK~>aK_+h)n5h7VO+ioWm+G8e0fzKLqg^6Knf@0sh(L!nMl2T
zJLGip_y%eOD7Z@rla<Q_BLS(1SaNbR3yAdfsz7iMKH2uOh$g&3yjwT>+jBa|dzEe*
zFA$u`a57o-FOB|UdcwR82U8Pm$v%_<riVEMa#<BJO1?^RLuV5L|Fyq7mQ&%Dq>APf
zo~D~ci+vw>;&GUk2I7R2%bVg0m$AQL|33re4wzDk?~jh}h<|mSzChmF)_n8Tjr_Y{
z$EOf_!rL?8<XT7a^}GB`G(gZ+__AoFY{oCYC#P~4M60)Z#}ez@%!%4=+z#jrmKqqn
zJw7h**1Q%F^08XG?Ln4!cC>-Xx_Sr28)c}RTSC&v>n2@MHDOSZUGrlNv7(wxRqwNK
z#PwG)CATzeG>PDVU#V3h+~262ZT4euT;;xYj!g7^rZX`yQ6RJ1D*Qkd5Xu@ga8drY
zt&6FW=$e2vHgt-msQ8yZ9E2lMIq8+Y)pQ*W6Uhp7l~`hj771}siQa?Dy-DS>5j*==
z{pxZEWAHpLkK+7z%4T-Tv+9Sg$?hCu`JARuX<BJ+eQGL|5d0z9@CTqf!bd@siG@~<
zJ%|BVLaXZNQ2k!du46TkHgZ#pK3%~1L|@m0sI=tra8QD>IWOr})G2~1Qr0OWSlX)l
z>kG63*%@=!EGy{CTfD%-iCF#47a#;mKpF|2{$lRx>N@F;goCz_EaZ&d(M>s&nwlDg
zVm2~Y-Ih*kbKJ&dh7u6@$j}%Do;vH9SJcs0W#5|{8<26~7IQf`IzGkUnZYtqmKt)q
z2x(0>|6Nr`eQ%QcG<#6&yQ-8l)IB-;11846y)^fEFZkYH;ko(_QkuQYpIKjE!T1{{
zS%?#?xM4P-X0f(0ps{w%)psi3U|ba5M&gNAbN(kcN_qpehc{n@n(yol+1g~@kG<!a
z$@z~s&s;imK~=}KK+$6`x)qER7!>q-ZKoK8d2ncmJeYXq)F2_~83@@-_D29wA^DO5
z2otE6)ZF8^cFwfp`&(^+gKW90pz$uScoENl3fu&~zY^HI2t1d+18_;nmfC@gY@oki
zQZ2zf-1GV2`mYN%rhkx|%5ierZgKdKhI>N!&4b&+9NaxPmh6cGCVah!v&Q*sT^O%z
zaoQ&^uTA!FYgt#z!exI6h}ZYBG6^2`k8XWl9%gP!NTPTGC6&VWINR?dkh#kzEBmiu
z#}2?EsrW4}n-9JPYEy?$tFS<|OpT^XoL?o8OVY(|88e(jaJ5h`95(|869eOCf!LH+
zSxQ=4cn14omDBROOM@tW3BW1p=aqGl$aS`ytsAiIO(%a!rFJL@!aY~!&57#uISw~O
zc4Cq%yO^+<xR8i^2yOatpJG<dByaG)>rB9fEC~AYjF9%=Y0han{^h<skDa|N$W1`-
z?2P^&HUG~Fq~A9A@Y#0M(|8tJw_(X_pJwu#_C)jSoZBVZHtaa$u06n97quo+c@qY7
zBOd0Ba!~!no4Sj4H@?KYOvLXn|CGQ?`-XZ&8CYt5QgkOYP|3DuI0r?v#~+x}QX8IW
z7MC#QhIU!<#I<EUkq6@Exx?MyiX@uzG+dx8s4mwu({Q>{T@$#`bmo@$#f6ogZtpU5
z&5}fu9m)j2Z~Df!Ry_^4TmNhk9o)vop@)g2qOrUJr9i5WNjo25M2rkhIXz328o!f$
zblla%=WYtQp)01gRE3%eZLMxj1CMhliVA<g4t<e7W(65-?tP}f<8p5pwBPJuzV2bm
z^`ex+Cx?yf4wC%sp{J)%8LcHr*6F3H_8Bloxd@PL--^`Q%&%9X*W_0D`n4Few8PL6
zL5Qh;#2Byt8=Q)kAp%ZBn}sl*9YNc@$FW*6&_p)3`EgTY1Nd63cd`I3#0zYPErL-Y
zA=yf~5`(Zp^xLP4wP67Bc+{N{Im-sa7L8b1^i-FO%K7VvifZ(oTv*8B0+PZVxQuhU
zZa~zxH7*ETLV)yMt#kIE2^J;$u33F3hsq19E5+}(YVEgUt7DQMLJbH$rtZB7$M~eU
z#z5Uv0sMU)Av@vRoscYc1Fxb2UxY?dLPEMSp$IfKnU3CuE5bt0ytB7gPYoA^zYZUH
z))EY!J^omO5@Y7-+9+<b2znp6X2%Tb9Y$bTnldqo?`?(cgYlshx&PYDK0RZM!lct@
z%eV&Lz-X5V=Or0MoY2K@vHKka57I-8p*yI(Z4G;vn3!+`01YGWv)P}&)yPWrMcj+%
zhTZzqo^C`&;$GXeZoR%Wx3JJ@>5qYbOK~y(FZV^VkR+(1Td?IyQe1q{U6yZs%Bx<G
z2=DEj(SIy#9vYmBFa?t85V7;34`~NKm=Z8FTE)vD$7tOX=r+`?Aq;x%t@|_P?xoE*
z{0sq7R!MA(N;(T|uy9+89(}+er9ig6OCSsBdL&<+ia>GdvM|7d?T?_4B-5NOm{U(w
zc1r1#A?sVE_NTL6^|93_gN+2f)SOeO_c>KwAp4_gY=Uh0YUd)G3`_L@lXftAfQfj$
zkf;lzJ38tc&N$5uRre`-xv#>sHm~TRKUgEuADR)-V$W!4TD~FJgx<(UPLEH2(nnBX
z_sPvI0cU~~(28~Cq*9VqQ0`N%;$mV%J4J?*({!kD_$^F_le3lAHUBmSwbEKoToK1&
zB1JxFDJzrtTSx|IM8a(BkP8PRq2$QY55y-Vm|a>j;es}Po%PSUBaj-hb8t}F3V;iT
zc>xMofA8KMDI%e3u9lC1ioqc{vCO8#nMIlP_`o5>R~JQkjEoOf>^hH<-ha{}{$9^t
zP~HaTuJ50DFjMqcjOmi$TgWMbloqo^;n0qc%`_5fCBPxSy64?uJKZ4wm9`#j5Fb*9
ze4yKgX4%O2v4444w{d}GZM4vv@nK|m_(=U@e(L*jXUpAT<)+4}bYL3(bBM4={+*rL
z(iTkK%3THDUl(mB@Soy`|M+H>0gNp)+|;REI0}-FIdIxox!TsavDt3eoRaqVjgSc+
zgI8ZHGrx*e745PaD7-(bo1docqZ#TxBJ3IYc@}PJp1&h|Ipg|DV=yS}qBgAA+^VLa
zZ8tZXGo8ty)Oz+{I=VZSDfK(aCf{sIVxm}WsmD<)+45suqeFm+wB6H+vrZno<W$oc
z2wDO6Odu{k{%0#O_1y3qS?xVvW;c*ZtKF7_YVG2@U+zp{11a$QKV&=JJ942kuB<nn
z|1ohWVrf4l$#Af}&PPYHP9VnO-E6IlQ?hjcBA9;^SN>%{{`tq%7pNh>Er1^T6W$Iv
zfuHMU9XCAa-v$r(?yp3lVR8NVCeE;F;%himG@Mn4_@_TjaE)Ul)EF71{#mhv1A_}b
z2j=1f@?@If;b{3emgomfH4+)3w)@+gVmsn+KKft$>*<$B5AY9=gtJWbhTfb@rf0QA
zQwuJjK1eLp&RkdVOX5muF*)RteW)pDPvgSfl&T?nxV>^<HE%yRB)@;)Rw`>IYIJXk
zPD^5Kd~8s*c8j5}x7?9fFp+S@;dbW=DY!eLHaDd9yd0r)lq1e5{ozNX-}2|f*H2l5
z8cOoqd3gmfX$7pVca1|HR~7zgsF9;pkkT)%mUA=<IPBbtYAKzMN&3qXst^@vceG=S
zRpt%XDvI__19EC3g+!kyQwqnd3PNus^F!iEWTFebzvURAJ<P%ZZZUDmHmdf!1-A9j
zr2Rj8b534VlnfHGFL79$>bUtS*Z5}2=?ee25C8kwh<($-c@O~`>4xty{I9DQn1DY4
zFdn}Ag&!)?ry+7=9~LtYiVp?`N2E@kMfeKa%9TLG1V!tH2myU}Qc*#*YS-I;jy{Pp
zBE;?$dOv9TP}(|Tl8g4Ix*-w}l8T2h=I{qoz#}7}`*yn()0QP1b0dDFSoE1k-^mU5
zqv)pLSd(;(YBdxsN?<SLPZ(s&Omm5(kc3wob)HQWjQ>%-LdcnRv;^EG*3A{DKuG;K
z@|)Q|kC=r+xvu1;C*<ZhpktzUMJthxSA}Bf5<8u=#s53{z49*_J^>NZq81_Y)^*h)
z%Y&T#%Bq)gwf^wF6&%4~67qhY&Nsx&6I6W)+ogd6?*ACvdQ7gy4WsjWJu;CdE|5(V
zWLi;WHqXG+yfB*;K1t~$LtMm?k>dRGA_?c{e;KpC8A7M-O!=EP?+B&DgjN6NHV|4P
zeIrT8!p4ph>tESXY12~9hxD(7H2~aT0Ohl>8sEf}_LcF7>J|}}k5e7-)GtHiOK@vF
z7%>)%MvnaLn>Ja17?O{HC}skVYBX;PI^r|JsNGhugV9MFV^?l2{EX^s$dd#uP6qL_
zNNbO4S!Z*0L#LSgO=Q<rPT}4*EuUEEMRDtcwkZEhM(aDYzU&LRB_@W#_+!<ix!^j&
zfbUg-Lx^-mdf~4NcJCenf(Fin-&SdXFs}mzrthYoqyyef$p_=<4+PC)UiQkd+@PWc
zI?j|ASMX^T+tv4uLHvLBJ*E5aNr#uHf<AuqQlP@&I?#JB@b?mTN0?T_nGDH%nY8+0
zT<%`9^spKE&oklwcv}47h53b=i)^7zZ>!4o?-|(N1)2wQ;h!X$yjWtEE=>!DAQKgF
z)r*`Q22cru$Trl#-@bUJVzCxqfFCv_(Bbq~vnDo_{aq~gXw<}hTg2WbiV%WMgMeSW
zKRhH(W=K5UKdBsJ8z<oTC+DOdD9lWpl2KnF*cYgDrF|%6Ygaxw@5pG=BQ%gNe$Gi}
z!HXpzYrftwG&(Qf*82s%RND&2M<+itBH|qGt|4K!wz$jIOQsDo7-QBu`nOo%Ki?An
zG63{o+wYQy`q$UwP${|Zkq8-Vc~0YUb8{*DYHDgOGhm_rcLMs4|KtDh-5`N3;Qmor
zO^yBDtzrC6vQm6ZrZ8-yNnzl@&e?GQXJ>IB+=at!Zr6oKN`6lO0>Xr<l9F6)*VNat
zGkY$(O^~#_fD|`gz~qvFVl)#VSf%V&80A4lC0Sfllm`HE(}DgL^v)iEh`65filG)0
zXZ@$TQ-GqqBqr#xcyd=!V8pYCgnSm$Z|Zz=bY4Z|>`a1)jQl}CL4gMVs3asND!U3t
z&=<TyqZm(VDN#%&1S{6ssH$to=M|6)s|DFtaMj3io=^d2-GUpfQmvl@J7q%uKQ`ij
zJ4*j+$b9M$zO=%owYIh{&-)oH4L892*Be$6GdYzx;BVJxFiAH1pvioQW|R__N+Xrc
zlAIl+5jKh{&*Ht^fmE22@0)n~G;1pGR>bnp=B5}XWq4Lql{AgCqk}{C8ovjTn%bNq
z1oDxBGJmqcuG>g}R`jRKx=^SRZ=oNGuXu7rMFCi3R_W8POv}9ljkf504c(9G!4w4I
znWI%J)2e=F=xEx2W6-ByniU!jjzno`Y5%h-UlvwYBYvQe`M=)jf1-Z=ZKD6<1Rt+Q
z=rDuJu@PPeF-6{Zx;OFh{`(=4EVM@T2HjvYM2r?lQCebkhiHd$-c-D?cebO_bJnA=
zSG}*ju4VY{ANVj8j1I<9|1=hkhsTXYFBU?Phwb>_=!5nCWYJ0WHyXluoWdx8;zCq1
z^qtKpPD<1H1h8GVk1SpC<!f^h-Q1cm#S*~WIiF`xd%}r{i6{LGw6s!?dA}2A{##q|
zA26o>!wdOb`n~awU>3s>Z7{!CckyaD;gk9I_jzFUNoX&Pu6`Wr8yoB#^*JCw(Jvx8
zA}Y+T6i#cTEx-UPH&s@K06M`HvEer*8i3z<qzljJcwbk5;DE<Z;q*e;+G>w`;}kaU
z7ul}L`g(YPJ0W-D!&AHrPg2TU-0ta~Q@VF_B>Vh$o3v3H7aL0rDE!*n+pBW6nEdCQ
z^Z)St{{(1l!Ngx8`4{z7u4D=Or7`cNrXC0gIAuWGL8NSi^b8DT{4)*o|GqMfLF;hH
z`D<J62$qjZ_#-P_-QCm7^0@z@unyp{cw8?G9mq+pU7+;!^?@jO#%hZYaGE-z<K}K$
zdf5KIpPT=D)-QBE>+4_K_Vbbe)NH8k=g&qpOgHPMbaLhW|7F2(Ny0=D^GgF#?)0{N
zl246Gqh#wRC#&2jc69%J`0&q9fLR(E8WP~+y;M<&6p8)~C3zXnm4GlW+ad1{gWP_?
zZf|>?^CWkwv@_VsQQwRGA5lpMpU<79hTC4srxe%c)2X6gJ>bw8-F^67*a?(s4;t3y
z#FM8?%-vAUPt~~tuBWlBxvV?o?taA%k($(VPJ@g-6IizUt=q%`zJ&aK1FH)WlY*@Y
z#quOaP4bOKz(R6^eT#;MCas`wifynX3^W)2yM_3#pI9Jp@$d|dPgAdrkB>jXM53Ys
zik?TZYHDh;qYH)Ut*!ix4Gr_EB-Tua2L~UxawYD6${=uYb4{RZ*?>LgC+dEdIg+or
z*@fo%y$3LIiR91^ae#Rap^3gL8N<@KQ&Pl&_b|hDoNb=v>ojMSla}B^U`5lb_W)-D
zNgmO%_>#I;_88Azzq7z?#yg$l39i&s{C&TEo7~jmO9g#v7?JehhG+Cp6897{ma_XR
zC!RWYnJ`CrE^p9>4?W}CgYN-sVDQ-r{NqIlN{zeoBzM62#)ib}UB929jg1LgWO}-Y
z+exEB#AMUO_DBIaO;sjqLLz4kt#!{k)B^R1+-F~-djjK!i8(=RE$$l1D(7?3u|Ia(
zf3RhXPRA;%AbVI2SD>uqAoaK(tsB=GWsAIAC8DdWZz*kwF+m6j*~d%unf)*>2mf3g
z|Bs{1Ge*eMvvqn;crU1|-~AunJQKN+f4zA+Wf0&{{0N2?7qxjD|A3EInv?Je2pHNR
zU`qK6z7%k-4ha;}2`?rlrWv4@fpZ8btHlSR5J<GOwWW5zcmhbP3E<Dd($e9tpGW@?
zLRm9fvsrCBF1+gr0dNzK_W={toB}fC^5qiHMdc+YEIzrd)$jqsE+RJ?9$#SDRTJJ_
zuc%RN?JkRq`l{HzCKFTH67sp_5T@-ff97w|T&K=L#$!z(hePA+6^*e2_6?S*z{45B
z`TgmdZ<JYAwf8+I5m)rr)a8>)Ns`u(eAza|k|3s$rzeadt{73tDC6;=1f8ARDD|u`
zREXO-1YfXi$H|VK`!XGgu(f5`^pox@4(lli-X!^mGL%?sOiX9&PNhLgVyKpEyL}ZJ
z3NmN#6ON~bX=VD*{F4PYb^=>;W)w94r4W#eIH0q06fMu*!ggUY!9<p4iw?NY)6?=l
z860Bse4O(JXqF9?Uk)WzuMRPaE3gbIYLCgH<O%UPdx7i%jnuYgJmtvq{Xl@dor4%7
zahqz?7(6epd0|Q3pUOGK#Zem|+sw8qEXf|v2K*!B5!J8>hUVhgy}d-}_j%SaQuIE@
zGMSj1{`s(k9`XBzsK@3Y@IiZmc+#TgB|7j$&0UF=O6jvW1va4^nWP=btfC4X-v*E3
zGCONgeuHXV#A8veo|lc7T}LwakI8nW+@`p?KBwLGW@;cT(eOk2f8;d(Tz8|eZ@GM`
zFfAa`X!BdJk${^ao9TEKPAM~j%hwhFc}oMd+i;j5vf!L#Z6TpIBR_bP07D4b>YwxI
zo8mH1{Qya467a0nnf4pN@cj*l?BQ_LWlcF?oMgJTQ(Bi|gteMA7OBoDDg@-2G+9Rb
zY@L$xO5!efb?%}ymu9X`pEZe}MmuK--(m6E(+5b@dMI4y-#gxDaxy)}!=bioavTzY
zW#3bd9vm^cIk`VSz=G_WD?cqP`+Iouk5JU}qO4*7!a3mw_YZC%r`e!X0V}K(r#<Ye
zD^?ODJI_?5lu<rF6}ynq+CN#4sUjE=5!p9dG-%Y5da|pFMZ4{5HOJ2WltlfPd?RhH
zhMhz+$IBKomfP7SNY>HOjVGhv^^&4ieRg)ps*WXiQ}d6s%!{GcTYfJEP-FAL)H5gS
z#G_1EiAKyh(hRmqOq|WTfYCdLdPKq>P;f)%oHKKZCyR5vl?lbNR<i&yJ6TANa(#VM
zI&!oei^=N}K(fSz6)>sc?1j*9D&>N?61VZ&O1dN=^5qa8Ri$_%)tB`l&JP(uBwoot
zOH6X%Ch&%wDV1jG$BL&RFCcGO<rz$MSd4<^oXxMn<h_tt-CRGcaol)+A6-(x=^79;
znPOlzecGk3yzXMY2O+bi&lRp_%9UWfwK5kVI$oQ!Se<R?`|x2L5EwTFdYp-=>yH0_
z$G?v?>GxmL<9os+ph|-%TrOV(7-FCu8=sOQ)!W;9!3QXvx_F1i$JshK<nB)uOr^40
zgoDZBuWRQZC9a-)4!g*Cd3l3%9v&Xll#~*oA0lXf@TUN}3cxhsvvG5$R8>`d;0h)n
zYwBs3Z^{s=)%>**SEchUp0;IF(<0_=OqFRq$n1GJX-rF}40`8i;5By1=y@pau`r*s
z7TT(|!hAC^(<t~L-jjDxqmn?{Mstz=D*du!ir$t@zs-BgybBH~D#FAk7a=oq?j*-6
z`z_1NQorA35NdosHug*xw9TbEJwN}_Pvd@t+hdu;2>;L*KVOeQC6~;L3;Tll)hGVe
zmp*0f)+UQpo2i1RS-97`%vH=B%x<ol9tRIa9UV!V_U8zWP$UUd^ZE{@63gz+V6Kg_
z*|oDvqvIQv;<D<K=DW4uqvNNiAWAAp-c-T4HFKZ$fywRn{D^6nu~^(qk`S>3s@p~8
ziyI9)4E;)dr#!HMHm8D?&nu7x+CspE17jaFPQMhF(dQjhLD}2dqx<&Y+dE#yclEfD
zNgziO$XMsds;InANz{n;y4!&FoqLE^6?In=`GD}zK=FurA<}#eFp<M2I2cfQ>XUE>
z0M1o{2^EVDj!xN>c2im!pG93Cqd-0ed<(qnYv0tdae!`D?NzLvwzf2tLPosW%$?=2
z_ubisDg?sV7RMKHgNKJ#^<38%@YoGNSxd~$GX5{st^btCt`nkv|AkIa<2ruKUcvSw
z_igQrm75!n=fxluOL<+}(fL+C0#qL$XZJbuugApI!iCFpp;BtY`PoKyjnkoeE(<&=
zVKj3%MsG-N?t5VQ4Q@9z@jUFN*%bc#$vw^76RA^Ysqd3Z)4<46fvtbK`h33ft@h-2
zx2&}eeiE&wq`WMk6;6&E-dRtp^~=;_9fyHRD@BEXu?l~A4~!en+tz4C4i4SG(!OLB
zW%&se1@Gy+?$@*2Q~!n)(k5GsuJHDk9mbLBP3ZR4{NFH<`uaZhkh`1{v&}w6SZkxL
zs5PrIP}nAu_ZLs<2{`n)hafo$wp)8WL=31w|4!@pWL+b*ir&X0m3F#}1Y$SnzLf<l
zC`t58?Z}Fv?Ac;Fdoo~8jxs?tO7ZUaD{R1xtqKPtqO2Z0MrFuR-IitppnK7_=cvVx
z7^<!*G%xFKnJtIDQm%+KHrHYDaSeU*PgYuM;}ck_D|M*zR(oCVGCEK^37b@i@e5<!
zIp!rFlVOn`d<NUKC#2DJ8D+AwljuBZTxuMroGjtbRXKJ$x0&$^{QpMz5U6n((%9<I
z`DNfTdB?mgpIQwBCPRaR*=J|AG=^7aXIY`4h+0_IwCGLv>RMV0BFogQJtQ?Y=731@
zw0{gh8{@#>EUwx;DB@dnP8WLZc)=nub9ufhJ62dz;O^apWq1!4{xdn+RBKtre@KOc
zi#)O%{WU&8HDNNaXY_V-6I)Q!NqDD7r)I01>+AyQ=OE|uRL*`}KkB59TwjK)QsL`(
z44d&RiYi3+6Knyi;b-?saNA*jh1t|x=6LuLNj6f!Xg=Ke#;>i%-WsbNTnVeOwo@tl
z>$9Bg6&)H*)&R=S&YZpBgzsA(r<MC+TCemr^3G+yokFkzouy1PIEQ3;gqmkPtk}Gr
zHZifJr)=CcGfuRceJ9cI_`=9L1=)NlhkqzQ2SS7(<kM^dejN|nm13O^=m}VCOzR~#
zJXP&yRVAiEPXT~?-;Dd9s+D|$n*gl1n9@lI)?%f3r8LK)B&vMY$M!}a@-2zz0=@6=
zP7$Pe8^UHi&&w4%(q5O@&9iXR*PR-G7M9~gfFBL>xMXBQO^t74L3%zm`LKQHypDmB
z)AiMGHOW*z2|roOYhYY+a~ODjEa&xUPqKQ3N}=sLW2+-fZ=XbTHCWQv&~R#(0sc=x
z=C@kv(~}eF_UB_=27Z>V^;$H9C;_*)#7I99uXzABK@~nJBKo|4P(l@Q+VU1_{q%h~
zKQE6HZDu5eNhr59`bJqA>_c%*S{f3ACbLdPxmI;GEWAG)AYn_x;=Mn49iORJTD;iO
zeppU7Fg7MLtMG~0Lw#$z?QvI8ODk{ITGaD>>wV(=Eh%CI;a3nDM0Zh$8`epi-vTx9
zS(P3(lG^<;!Al*9FwMWe>f%ZdB=W7Ip=j2z*XSS7^=J8xdT+iN4UJ&iF{e#VT?X-}
z*1*YcUNU*)Y_*bK{1X}ZJ3`$v{sIN^`-weO-MFr9ZYW(E`Xlt6oY-MuU=)><VmyLN
zc@B8aTk$^iz85JhE|wPH!ot81p^{IJM)S_jE-7!4u7f_kkx8V_1~fK-QY#%@+&+Lg
zir;ggW}u)5m>k1sbnb*YZ`6|*kmPxgd<K9d_1yd}iNgvJwmCb$lPosn*s}f8Owzhh
zekipiuJ#G<O85!YM0`yj`7i0{KU3I$N!i9n05lCcDxzBQ0Wp)UWmr^6Nr^g)ucVQt
zsVK7be5W70T9w-4{Jf?Xs<a|~Q>BxjkDc9?*=_*qh@+*X;E4szx@e~s?#NHF4N;xx
z5Tvm8mP5sd#m!>tfAIK)zfCC8bQL;Ra?y)`rt+6vDpF(X#^eQ!)z`VcZrYe0C0y3n
zAFLNYz6ME*G$cNVvtKsuI*%zCX(1dh{gTFx^Zn#c5#IWR@IJsl&hHMagoDqXEHT!S
zA>eB4gC$gawOZHivN*H7u|>6O|3lnoYna!IDIh0#X+n>~TqXV6p(xv7xuE&p!JAUJ
z&uqeHIznNPCnBQ7I&~u_7s2cNM{0WGLU77#GB(#}@@sIq!hQ;0HB`R^iEBpRSmTT-
zVVm%Cj|HE4e*0sPYrMC#6nc2*b!yyOXp#MHG-6y46sp{hLH>7BS;8@ny*7Q5M<p3p
z<ag!(4nqFrdGPjXXze6P+<2trXFvyfSLYnWJva~*@5?kYjNcXjm|4(}&*~@k4g&9L
z;r)*tia)=vXphy^Z$E(dXS7=c>lf^KyG^p>du(`C=@rIj6(5flmOSR2evw<hPR-?C
zr<V7-=H|aIq!hbafWt}K1T6YwBv(I`x0rBAlj->E=f0B@_oXi1Wj|Rxc7e6AOq7sC
z8=KX{-K+QNT!|}G){^ze`gX%2t)+dTvG)IKPnLT%E}pxXdne1$Am6&{|LqD2K5i*0
ziRs}qX#6}8bnx5N&J9--n~!%DTu2R30*)?SF7f~PAiz1-R5s>k+nM9vxm~(}{lg;u
z{;viVE7}hf-q}(3Nv1v^Oj6EDTgRkBWg?s7lKJ!J*HrO67mqEOxMu#;sj8PhfBN*~
zaJokGZ2wf?&co?X7cE-!q&W+C?2OTA6WPCx4JR>YudpWIf`5Vz8CeqF{_`K+CVW8o
SWBMuvAn<hcb6Mw<&;$VWcPHNf

diff --git a/docs/codeql/images/codeql-for-visual-studio-code/quick-query-tab.png b/docs/codeql/images/codeql-for-visual-studio-code/quick-query-tab.png
new file mode 100644
index 0000000000000000000000000000000000000000..679fa4c2e1af4d284905fd71669c9f94ef8d30f2
GIT binary patch
literal 71870
zcmeEubyyu)_ATyCaEBnl-7RR)K=9xY+_|_D+!NeANP@e&y99TK;O_8>nO}EL_q>^Y
z|GxLVe3y?3oLf|#bN1eAt-b1oD9B49Bj6)|fq@}Qy%YNY1_l!j1_tf|2Lt@X8hoJ#
z3=B!wOjJ}sN>r3o!QRH$%+d%9>|IEl8mzifKX$ri^cP`MU$}Sh&F~N(Al|`eb(4}3
zS^B>grXhp*9NJ7zTjx~ngRG6E=)mAJi>63V|GAl|pnzsSo6%`Y4q>;U)WfF5=IG%%
zgYB6IbTriL3^r!IDfODCfD^2K9l}gj9gX4*PrzF@h@ar_3O)p7tEcCbMZ3FjV1s)1
z*JoES!kdRG)b-Os_s<sN=y2z^V5H+{`S54A^=Kq8V5O@vxzJ!}TTNR(Awmc{5iW9>
zg@bVh?E*2>`s|W1NEBwfy35F{VT9%UdSi^iGUrfSCCG#z%}uY~9*|=PcY&F*kY0@r
z4`T|aB9s$VeHEskG0F4Hk2&QUt|F5oW-^4M+sUReZ_oCSLb17fPKtciwg-Lk6SUNu
z>WdBR?b|^*ccSBqqU*&+yAGWs&mo--xM_ZuSr&x*?bATVM%+~ai%<qK2xb?p5zeJu
zD>#A-1#3r4qTr^=L6HX5piX4WEE__eunPu_341%J>$_!*^tpj@%h<fbo0M<sqvyE@
zt@gU8pXN^K<DT|q$t1r;nPD6CP>RU<&VE;jMT0M=>KeJ7E7yt}-p!VE+RThl#-@l`
zL0HGl;--IB7=@K5BWkF8MOlCAcivrN9LoKb)}xG+jZrI!q$p`rsS9=Ib2Vaj(al>T
zeXkE)t6ESUt7uz`<t8F_9!1hS&AFsB5<J-X@9eWxuId7qsbxnrg%8qoaev^4QNL<~
zF8tX$NeMk}H^6<GO~0IIYQ%qofCfHGip%VSG|m16w!){NxV8jm`Hi~>IO@B%FlZ3e
zSZv(nisKZ4GwKRZPd@M9&VqWN-?#;2qMhjms&7rf=hC?$Vo_AIV+Mo3aW>oBlMG^A
z`ZOV2knqNZn$GpMI$c0|ao5l8USA%2%1AM@3_kf0<9+mt??N+RW=X}BuIi1j^<Kn@
z@|h7<U$Uh-65x)qx$>v>N9hpla1^0lyZSWlv4^S{37w`Oq#PGkbqw-d5SBybhr9Os
zrGS^eA<+i!9OR|$0(Nl#u2Dm4?W&3^Wcq9cvm$^TM>H1@9v$=*vfoK4@~6Yt1@4Eh
zJ9qaFG=_2n16=L}JCe@_#}!OI4A+t}mMl(i7VYweIAt5^M0$GpWo|`Sd}O_%KlaNF
z9Fg6^6uV-O9mSqcxNbgeB@H<jI_=rr79G%`$;Y(jfb+d))utWjqt`22#d+Je8hkrK
zfosiZZ4K7f$}})DL(s6^=sU*bwSjF3({_B)*49>TLs$#$Bl^wue&wNOZsc=m$Rt=Q
z)6QUSfHX>iF5C%27PNCR88dWz8_Gy8vI~SR8k|TQE*kW@Fl!=I&Zz&s7DC?VBt2pp
zm~VQ}>WG}58T9yOk*|FHGEoR&^V@lB;j8@iR~fYgmR6y6A#K{Jq29iO!^$EH48}8v
z;3l_*!#tG~`2zPEMoQwtS0u6UzAs6A5V@~30xZR9$W;1D`xH0X?ZNkittqtMp`PL2
z1{)N>d=E;_<lKE18&aXbh#w>`#y0lG6ukjWJFrBOZoJu)!41FJUq_N}9LH1$hS@PZ
zGRaUL7t_#CQ5_*ZQmTAT9bPq1#ehQ{(qlxeT)qhB-UrhTf21vK6#=Dp!%k2TIwOLq
zn`^!C^kWlVYpC;@=ZzXfoSv-h>l-v~|JNcg`m|Yz3KFwY+#=kF*B`jn7{0#C#k301
zv1OvdtPExgmI+A-z7L7$LRqIU5DF1vea#d7@J{hHaiNd0?7Z;246k^D$S<m9H6=AR
zC6E%Lii{%Wk6|@BrG*@)4~L=iO4aW_Sygb%1rds4f60$Yh;jZx(3jA^wE6xOQ7A)q
z6ozDf_E1hy{!fLG4@Zj21wVdh7P$Y2Qo<=5RnaZ=5`JuQOSpqY)<%X!uIYh7PU>Ne
z(8iCzujN=)C{!jeC*=tED6B0}oSmK}nAtLuYsPC~&kmgoVjtwN;3ze1`AKe}VNqU1
zWrk%IXGS#9P&D;JZn|dN*y6m(#3I3hWU8fbsZ?~*ZYpG=e@f$frR2`%5jO4Uk_hYI
z5@F}8Bc~;{hA30q;pm>cQ!_+UK2sC3B{wkvO@T<Ac%8y!!Dh~8K~HT@=SQeVv%9T3
z>I=R-+@-*gtevrhNz@6OF(DK-ydHci!kSO&!)0`x%Xmm!aO`OKvA73Zb=D{2U-WSe
z60Pbc%0^CF(5*N1*hfsij~nMyN;G#~2HvCWpfcfk+1?Nt{+w;+?r{k`b=pwf@WNDz
zVa5#UhlydMYR+?*6rQA?<jA9zb00D_eljMn<S@=3N@u&kqnAK26v#;$H?g)Pwq|5o
zF<v%)>hG8)Up8pz_6oa?e<hP=)Ubs=NHr)($M&OKm96-D@sWB=anf|s^nQ_M(aPNH
z{Ofu8io!})V+*~(a)yfHnr0KpYQ(Y>12r?};dIl{s?nO2Pb)`0ye{0Icw_mroWzI(
zh{PjP2>B$?BwV7<q6!G@CZ#$<wv>034}WgSI!D^3A8YMA*yjQ@<13wHP58sF^|k1Y
ziq5T)A0_*^Gq)wkC8bM*i#OI=)-w`{k^zy)Y~Q_p(m6{yXWbiLYZ9|Zl@o{YC-b+s
zxVcITSn#_y6*YZmrfsrjy-XY*`ZjdF40TL;%(L9vEOg^?_v(i5;&yVTpKHN6>bP>e
zCMO`rIoxa0WUcpnVS8q8^yK~J%C8kXJ>oXR0wfn)Q#=~DMZB9>qtO9_L!)LSd-!M=
zB6zpnEB#ReE*Qgh{dUTBE3yW%Q!)ZkV*ii+#{Q~7R{^g6!*CWz)c&AOwZN6lMBAHG
zTKN^+QkKddb`VEh`C`Ok5IPF_L~vmF?ktO;T2wQR8PS`_qA&=>)PgC+>l~|`d@&LN
zNkSZf5|70g+?m8A7KZYw+5U2OgOwiWZic8v0vjBrFdOMH>BKJzaVLx{+;%DkCKG+R
z8d3?-5z*rPmv3@o{bSSKJZ^~gloG87v>S??`V(MUQOl>e=tqy|rb<y$S;%e63C2pl
zlapPFxl6+7{;_$PZ#O|Zad%_+#QTK!Hd8MmQ*xJDi_#<cD4~V+Q6o^d=T~_8kk3%X
zkPf<LmEr|09lwRlbmKw6f%Y6EPYBOFXv$s*6cy^&J-5EiKiOpFN`xUPRh|n99gVG4
zy35tt8}WGUZQ$kUOZ@QFCT_0ZE7}q34ksR`B_o;na*RFAY~8GQk|>WU>8XmQYBvGz
z2I(n0FKL@?XZRqwJGt75la<fPX_9b|2XV(?6gj2Qo!Cg{s%d4raY&crxfD7C5g$95
zKDF^={Jp-A3XTP~OqdPhnRb;CON)9{omGDUB|*Fg1A43$z2h4Oy2qy2){FJg5~0#(
zS3QlpikhwTL9SBL6138~a#p>qBNg5sp{fEO1)LlY@q3b^IlPP0nyy5W+~?vQV;w6T
z)AlK*XKc#m%M3bqB9aJ76JX<xOPNd5Kb%^}=uO5A`=(gbBwD^%I<xy>x?gOizhF*h
zMLSr7S&L)sT|uEQImk4m``roukbddbD8WT-=O}S$SVc!g#XbC*zEt9e(UgEY^?}t2
zPE%=1PoeRG*WJ?u<f_j>+qtficeC9W_p&{-bA@63{Z1@NQ%Py_uk(A=o{mY5X_x(%
zM3TLPR^}&G-1bAavn3nby@T&}Gt|AJ?d{k4eU-%X?+7R(n)BJ@h0K!|9j;|3k}QTd
zk{3qoN7IFH+>T@se{B79Z9VU0y3yix`|4VL6ut9pUNvf(qSf`mDR;QC_^M)N>(1%;
zDll@Kh`JO?i^r4W=2yK%szpMHq|R|2y7$KPFgzEZ4ZO8LV;bmwDy@Sr<7lK=vQEuj
z_ugv`asxK5b>X?Cb+YnYOwCqpzjHRondFqD*(LS)26Wv){gc}0{cyUf0La~`iMlHP
z@%CnCiRm?y;3f8R*12T2Ok+aOGtxt4HB({fecZ)V+x|Bjq?Loa!N=0Pr`;!58_<fE
zo7&m($>R~~5Gn%+rjXzx`z71n`5n`hE`E!B>oP$f5$>0hT>kD-Fc`Yzbd<JzZ7_ux
z@XYpeJfo(whkTmgv!U<8t3vu)c#4Yr;03-B4_xU>aBbk~RuEa7mRqeScD`Ul9OeZm
z=~J(Eq+Q86KyA}{JPplm>slwGis?M9VfVe*eJV@sQHQNyW)~iQgvf6J;s9o8q%LJF
zCkI9g9K(S@f#ZWg14rP%mmoO7@5d70G+>bb_&Ed^SdbYQ)c=f;2fn}j`vQEuyyu_a
zAu=I;8vzrZ3HjSGxXa5>gxS+n;2XT{I}H#R7&hh07r4}i*C$|L!eCNjZ<SrZ57OY9
zR6C!0CEeqdX+u=wXx@B__#kaWE%HX>Q^dhOlgxBqi+?M}eamAXHhI7edc`N1R}9is
zQjeqVB|O9Di|72;b4SgihhE#44cDn`CdMPF*Ba?;=Sj!ToTlU1TOV^sA;|yo`oiHG
zN2m5lI}pIc=xDxL=mj6EKbC}k;Q4*vmXC0Ny=^3~IQq+o|NioQ4fPtA(l<x@_jmut
z0|jEZcg(b?Y8pE<|8`M-xkge5DPXKLgk+<bFx20?GWpTI=qVGIRE#M8-B4kuXkctC
zRHRdg4_xqne+j#ilC~G{YZ;~G{M}F=xYuN)?KJR&hZz5TvR>x<Oj!7{qHEm%ujJoN
zEjao+5nwC^_dMm_&)1f(4^+;XZJcA|f1Ll{=lF|1F!r@=mCWDI*8n6qyu{WT?LMLS
z-!23xJTO*j)imMn=PMQ#0wa8&Q)QYb^uMnH@LORFU~F{TIOE^X7Y!<~8RLR}6oFp-
z{X+adym1u@`BQWMJsbuIeBCa8CE;_JfAW|=-x=kSiKp-9_BJyiWHSz*Gs{mKs<Yb|
z>I%WEERpXFL>}(@N@2x=DtME5yYl>$;Fv_4c>#w+BDiQ-Im~Ii))BBhKvzoN9J<^0
z$Cmpd3H6V}GtdA1y|hZ9PIE)yhi}q75eWlvbPIu)5gAiI)bbsMJfy1j@>1r%$8H5`
zwv;Ig{3*mqXP{I|w7%|>voRirvyHMh-(QSyKi@3aaE<am%J$sKux$w59~fG<+!|{J
z0I4iFo<Y-CJB@9GyEE0}tiL98^1aX!|7jPdMnWNkbX41nuD8{9)nfB|toa(Nl*-VH
zgSp9v^HCw=v(0|9I4P3e(_RuAYt(eUqdBdB?<zmGzSG1}{1$NvC~&cOh!heaWL#Sx
zv+?YJLWQihnB^7kXRGazG>c^~_lhJ|Bk74jm0D|}%Hx*%q#CPQE;tEBg&yh*5A$@-
zD-FJizV1fKTZst#EzZuZWDbiV67L6nug6QS^Jz_+BoeP1vPGO$`={HTqzKM=8bMy;
z6t{3<Pes|(g;}EnZP`{Y&tc;ftL^Lq`}WV!+gl0LRQ%Uuq9|+&R<&tM&mD+NJ)2X3
ze-65~J2}0n?{UVr6<c^2n=9T4#qExG8K$9ljShPlc^;QjYMqY7u>uf|zkZe*pmRKL
zr`Xs#K^!jBayc)%=4Z987UV>-0(WCAZ8RzAtMIeY*=DlA(E@Z(-kTTuKID(}0v2n)
zU(a8U)#W5pWM@QDB}XCxspH)b)#9P%>tzd}p>@oovQCtC*cldMKV;6}6{GH)NFu&O
zB4<mRo~YK&p+pu6D!FR&DY@Zf4#V|DiNpD7xfm)r*`1NJp(fYXWCH6tvWZ`2VGK2J
z;*1Ggag;k;=06Lsa25A%`?eMv9ry7G?<M?pH-i{z7YC-(Ht7D6*JGI=xL~ZHo(2qE
zfEkv{mrs)oLLnNuoYBp|ghJAJO|Mx)U$K-B<5%zngKVtT`}u_XxcOSAF8y#|C&Sx%
z*>#7ga>2SW>G{6(nGJ{vHl=)dxsR6Lq~nH)YnRQtv$5z@6Yq~(h0NRz|HwMN>#x6D
ze?}J!NK^MGWp(_;-U+)jD)ej#tiCY{zpc-l`Hy0xY}D<|+9fAVq|%-Uf+Tbb1c{v@
z?Z#=@48f(Q=O<X0bC6gbFjp`U!9>NGpoi1mq(R2U#dsp6zE%R~70+6Y>hHp_g_^b2
z%x5Niblb{5REK|-w$|6*tcMLj<7k;a0lU25U>f6B7*k8|BF+~6ajcR=paJ?*XTGfK
zsK-e=tm;h%4wndeHaej^|EYf_nS<!3xzIoE;-5*>_e^3H*knU<Zzc<mVKAu98NXIS
ze$O<Z9Ltf6Dtl1Vai!E6buyazt}@LV>=m-)yt1?i8Wq?Mrig^QBVCT7Prm;ZuW8NV
zd4I(*n7~x4DkbjvK7{_=*MCVH6cDaVxI~^8ife@i;^)9A0v2>VFXQST&gh25B}uHr
zGY)HQ47FPyfpybQMyHVQ-*;ZLGg<XIim|;1;+^AxMPu(|O>*I8Ba%R$vFSueAK%-k
zCw$bv1HSd?Zr_P3ZyQeahEQ<Le`9z`E$Xr|U>}I#Gyxslub+&1iJYrM(4^497+Y?l
zarX-obiL+I^uyi-{NVMl-*8SkSNtmq^2JY?W}bqKg75EG?+!DZ=kA{{ZbUss8cyM=
zg#>%#)U4SuP9{;?K~m_VfP}o?9!^OpqtVs7Iq5{j%p2T7f#D*jVK)83V<%0kT%<nk
za5z8p@N|C+6PD!A2_yw8?VRU}$@ewIY1U7&6Z!5oR;`a$SIl*hgN_8rz9qo*reb|A
z`_#a7;%|Sm7L;;xA86se5y6E&p;zs+`Bf6zEFu=3U<>{CD(LF~_evHfRz4C#w()X$
zc&LZK#xm*#Sf=h^aW4*HU@s`h?ya=y)*<ebb0Hwvb>oC}h_w$$l6Zbvb}@{O5b=<j
z2_T4<T=8HV+};tz+Rw2RU1@1tAji#OcRJu$yS?2yv*U9*m>t6+%87pUM}GJxY5;@i
zCFbi`bbt1gdgg^bst#itYcXh1-wx3~Qd@K&8(FPEd=EdQa=#HJG%vJ59$c@k{opvG
zjiVv1)m6`aYQ1AToNRR6eA+`0a5iD=elad-bsz2PqV6l3!a4i})&iBwq$H#KeTLv#
z9s&0*Ik#k!UR?v}$tQf<9N3iO*5_sZ+s&Ao^cAoB;v{DM&o6a}XDe2zV}pC#&oIsV
z=~kcrXe_&9&Lks^9odL2F?wUX=jqt{*&?awqyrItXVderdd4zIO9{rJ18tjY#iP=7
zJITb7gV=4CEQKn`2-}aTUQ(~GzEWGc?_xQ7@$PbeVcq-wur?bdX55QEIMro6B%bUX
zZv_b3z}pBd;n<CqWsA~gr1dwd@5Jj%K(5t)MBPj7nE9-jz^L5`^4^N;iV0ocxsH}$
z<e1TMFLu1&W_8@Jsnp~E(uqhNarI}?t&S1C(!rhe(2vV@y+r!a!~zXL`$<L2fXIQl
z)`^-=?O@mYB=n??A31M6UnTWvBhUfikI?%kDpZJuny<DnS@yiv?qt;g%WOXX^`kUd
z6ouz?5k__dV%@ntc<s7kmTs$~AGGH_G8EaiALVLX2PzWEW}S9}!yEQq2G^@)cN;q5
zwWCGUp#ZVA;oHsrm`?3F1W9`Hu}t3x!!HI@hf=H*`21J1hBXYkVX8yj3(fA%bX|J4
zqM5`km#CMvWMA*u5)vG|@JBB9@-sN|)0~nEReq=<;UtpEl3mreryg<B6L48ua&ax%
zih_XD9IzPDr33>G9^B?y=bCBhe|=mr$cT9Sl{(#p+!nfZU_sM`BgNeUD3r(x!-Ab1
zlKqS@<GY(N?@{i^(`yfiT~@*G>20lgBM3~cmYj7Lrb&1mOouM}jtT}CenSAH5Oe5#
z76}e1Haer}L?8%#xfpt8RvIsdF9aN2!D-pDH@BqXE(U_x4h-Q1IKAri_TSPZ%?252
z!;5H1)?-Pqm^GapfxPZ?^Yy54HEcj~5!eJarlcp}Iyn-^ewy&me*(6B)DY_7NCZw|
zC&P_YW$`Ygy9bf!3o#>mS)xI+--S-vpx6w1!uuxm1jorl13xBctBdO4WueKe&RdkQ
z%s>-O_KPSU7JYJ!IW$by5QC%kSWOS#_pcLK*cxIRt+L9Gk>`Cwzdg*gf;8i42T7M%
zPzDqg|8XyT-FI%lhV5im-)*{>kjY|Rqc>AWA><w#;So(K)@gQAeZUoPb4Z+lr>Lsd
zYDAvdRTm#eq0o~89o6pyx=v`|v70I|!<|JlBc_%yi&*lk`allp2N4;IznM|ht}<1W
zC76R}sgl7QE=-|8?zNkit}-i!=xivEOW{-%`wXkYUS>b<{ruR;i*f8Pj60Usz1}z6
ze!gGYI$s6nB^vmOe^SexKIEaTsR@?I;Y-B&jk*ja;@q-kiwTPEgN)OV>@^v_etkEn
z28ePzF$#Z0sPS(y2{6YES=&Hb8L4vF!u%s0regM4w8NeHeHlt{U?oq15p0BSePHF%
zsIVpJHNyy(0QDj}=hm@0A8Dm{Ps(vc4B72w1>rwsLwLp5w0brz1?X);P(6x63jxS%
zDqc_d74sp^?`H=`r?G>8ge89UaU7MHpL_RJ3uy&Pu=vP)`eo$^FCQzB5xdz3y(QuN
zA5b|RiDe>o>k@0t-2|XcWG;ULbjE?ijBe->ELEIfa(RV2;Mxs}q!TrReSFIF+947+
zjFV_0m|n}Ja<dHiS#Z#s!qv&-P^>_A(H8la1!v2v3-YuFU*Q>Gt_?D^Rt*BsW%!_e
zC*6sNWi=HvQhu~yDVF@qoqil?13<6s5x!$2nRYh>Merzm`BeK$Qgrf!$|t*Ne*JB4
zHH>fV69XaQaB^^Xtq*5m!vX4uY+46)PsN(Gk#DAPw(I2U)WUH5`c@l1f_l#o4Twpc
zNwn;`u~@EsGe(L{+-<&*OEeg68T7Nc{3^_!H?eE;0gq?7<|F?|UVB^5T{7@TRrQsH
z+pL!1y&ms-_f7WmV5|AmKx{?nM-^Mb2Y3^Vn|D;N2jAx~{2JY&^!_HjAK7ZqZJ!+t
z^ZY=oLTlUnh278TFFdm78VU`^H09IXPFIM-TQUTPgV}N8PK+L$Ff9$FX;3^(*R2TT
zrDF$5yp&@5dp7s0gT&YBmFV$Iy4Ku+SpcNUb3Na7B2qJJQU65Y=M6_0j8mtZ!fqBF
zRzvh)4T%nI*B>HI2#H9#EjGZOYS)9eM))?^qD6gkpi6Ecno?#lFKwsK>f+bbVDU#g
z>ctb)2iFJ>XNNiokS~vOs`}=7*=M^Mc#CX+6x3_yNk$Q`-2rG4AB5aV)Q(`pD^mk-
zn!84%qqS5-p(FV17-{T^=31IYAQ@hvU9d6lD!u&|?yg7V+f>7B;E%bzH&VUWV4h#I
zeMW7Mj-xB>2ctPlBN)mCf5aV*9f~09z+*Lkuh?j?j?Hi<u(<5DU+g#jsej3WS)&NC
z<n3n7zf>V$H~V^!p4@D__h;O*U5cYw4IFWnN}wS!x?$YI_(nH+nhz@?b}ZP;Cc*r4
zwJ^-~UMR-t3D~WIL!FE4AssKQE0yDmO~6DwXlE>%YWzW5J%s!1eomAi0&06^`!MIi
zkoEJ;MwI>oP_=MM?n_oW`n=Uj8jl)oXe#$h8UyV*gHTb6_0dGizK7WORa-4gF9MiA
zKfNF>h{S8Q&TtJSs;x~#>yi?oPS1In-ed5ME>Z`jmhy=><+iPT`*3qtx!u%uqea;J
zPEK<4l0CS(B8o504>zYy0^>qjxB7(vd^|#n4wG_gROgScuz(3h!?&0&GDD4d7f$~j
zW$$PwQOiPWVq9%iYho>1k#TS0Tj9m;g|l0Zv=llg01-z6$L7e7Q5zQ#hf($y`3O@~
zU;x|3`^~eq_av=40Q+Trez+ZH#9TjrJ%2?&IGl{dfJ;VOe{z4k-$jL!|Lsq_Etb=l
zspW<|%blmyTHW@wz35K9Axf_7PT1+-xZ4qY-4(nDL_A9f1ZcJH1R&paDwB=Zyk7@v
zFW@nu=<4J_;6Dg)cpY}p5TsgWHy3BVqHtO4`4c(KlF1%5siWC##i?OqgaxmdWOxn%
zjBmueV>Mx;s4(%IT0`?^y?ifgplgDb=}bwQb^w<(knFVJa_!a$XZk~|>654n3szA}
z93c62hLQ}6>!Y{CQ{OV5EtOIj)Vs#nHtuK&Qqs~bxFh;bq*XGpQ}OE5oL*pRc|TrW
zrQ3qA*CL6*LvAzCR#1c<Y&TYZ%n>Wy{-G$55<s{z;I8G@iv|%L!V*123q3!a`|k`C
z6y05Np?ZLMn=f|d0Wj|Em)6You@=w9+<4w_0}wdL@Lr(T<6WReYQGom*X@B&EIK3u
z9EuI6#q#Df`st(-!wT=Qx3KdVc%J=1wH9s6>)}!ySbqhltJ45Eadri*<;r}TJ2Tod
zF5gR=8mKVpKW`lIp67icROUOZQgYGKMM9wP!xD;MqP@jt^;(wWoa-{~#j3N=yxpSI
zbnbvNL$jb&W3+|zy4_09JbmMpUH~wU!J5hFxLW{d&n+Q+bl4(mdW|S=8IrM4E5(e;
z<lF9d>R8VA*?T08&<}Izmao<~mn_{42Mf?Q*ixWsz2z@Nz~0a@?_eCNF3z9UnorTP
zIUT5{MBLrPi}nu;TrHn<ztcj*HW8-p_>6EJ;39Oo^AWh%N%~gL>!lg~lQu}>*)sh%
z@W$O5x^e%4XwZP_7Yt8&>#`|&F>4rAj_Lb!+B+el7CCOv>~>joYSVn_R7c|5?>R=|
zc`?4d9>&CS^CJ>f)3RKAbtGGl9Sa%G8)E#XN^zl1v<(Z~S5frIw6x%&u#1eBg*9T_
z*n=NHl1rQmYPz0A)EwW+ZO{6t@g5u-dqy|=k8?j%P5hOlLqfoDiidD^`|1Nlu&R3k
zTjmv-bgHA22SKsfWF990M4-^j54y0ctQ1689NibNVh;)5FS#So9zy6u5#arEeCzRc
zCu5k{{XpL~D436P1pL|w;O}0tQtGiM3DSDPnTY*R1VwhKWnz4D0f5fZSA#ky{}aV%
znM4d9;!q056t>Y8ApS3UL%S7r{Y5~%vOf-tAF+KOS&bHbHZI!7T5IjbM_{(_V1)88
zfNb$_--+`|iN}f8tj@$59%|v~@m`bc=!Nydlz9<i`<4Mh1r1*-t|xq5sYwZw$s-ok
z&(J@@J(k%QfzqR?3Z+-_XUuy+v-1->k7*5)IaHZvidM;}BUNrP^c<&$ak*eQRH299
z;rHnPc$kb71Ch)FWq>1%&zaRE)y~Z{K5|N)Hp_a6*SL1c4Z2s5=b~I*km`O&Jdyhp
zi%w8cwKtMzXtmuBiR2=6(s2fhUGTeFsdcIav_uTn4y+C1h?LP^R-@<{Ds_RCYeoJi
z-p0r<Jj-eN>r@&aENNvu;WUd$K&PRj3c<{Zr`IqjR$r9o(nY>qB$Twy&}2pX^49$+
zRs8Yp64W?+*q$mM%V*F9w?7|2<Ohpdb6CZ!m`qn^?vMr4R_p393?0U%OCa_*EKxDO
zzOy}pE(U-x*U<i`(a&c0Yi7YXEcJRIKdrAPwEW<wPcdD<1j@6{JKM0)eH#E=@L15_
zp<tYzMJ4p}UgKUP7@&V<xTa&gUWZ(MD-lU(rsH*M)G6R?LptxcKg}SRRP#r^$rOWs
zg;Ys9E}G|DCKa>HKAcj^To>E<eY*?ueOWd<N$8EO(^C+hiW5K_aA;G}dBYX<mpySh
zcYjbs5gJdP*!9(r=y*RO#|%ZCI?hC#$MhDRmpk7dZVUrJGcx3w3s<E}SGg_WB7{2q
z)scP27(gtIB*WJ%l3K+gs3gi1C6rB9T0BWVEn!p-_M|yX^k->)_7ABN{g<K+5a&!;
zbX?bgcaxPSrLp@SK&w*R$ueK7trZ^qt<$or$$~21<Hh7~^^6XIQkSA6kr6<^j+u|r
zoR{HeG_n}P+7=*=Ry}Ym;Y4;)L6Ly`v_kF&?x_BV)^fW|(CF}-Czpa<MTZE52Xo6~
zfm2Jewi8NMQkJ6L$Sw1#6*42z6QX2;*!#f_1PDc%Vc$+SdI_|`j4(_S3@F7Hu$?Uk
zxt7K6(tI`Ft}vuCjd6nq7~V5(YiXnK?vhS^lfkJqqmoa>Ex9M=DZ6VI*K3NK&~{!j
zO66vEyV$jrr{%ImZ>NrPb@0AfgI&=1_BfI$LyZuL$41pt%nK<HgoJ0Xa8hN5zWeZH
zxH-UQFOq<X{jRsqm`H~4C}_!PVK`J@9hovECB(}g^F2Sy?qJ=pUbW+>z%_1DPL~ko
z+)pXjKh~R+=tW+#WAz}t-kYR8d29?SR4q<^q;bxfLX)~F5T{=^<e=q$IO*I5ggh=-
z!ZPpOmSLPQY$hGcbhlrHnRe{W3QjZXZ>lJQS2rS2FU%&Fxk_7~+&a*uW7jmr#pAHB
zBs+II5T6Y_iE7Oz=Q-<A>3nZ42rLz5)h!R_KL@IMe6$MtbEg9cvhT`;=HG491-3AY
z)yoYA%wi}#?)LJF^~CV$X-;BK0KPW6<qJ!Ui-1-Vo}lB_Up&7BM2N}9YICC*v;4Jm
zf-Ep+TR#|NgyOJwt6|g*6OF5yRcJvAY+__kh)}Nvx~mDT&(TVqRy>^(rW!<?2}+2O
z7SEUR(%g^gr}5#xhSs}sJLM6RpuI9Z{=hX~qMpCHjeNQb$hB<91e^|2<yJbnnQw7H
z*0bn?#IBp@=c|6G^EJN!oyw+IOUrn^^i%}@Xx2_6NCn9N!}@2Lh=|9$P3vRFejAt^
z*D*%CK8MA0RreEs@k(yU6W|P6OwR#Mk_eAU)wS6O=qkvc$-%*)*Tzxj7B!zZ<f+zg
zdS#r6)ZCFSKIs_vljx4gDr3)V`D4nLiC}{0iM(#sFv2m~KQ#T8LxsyRXEVja;>V5O
zbbIYyptiv}yfErO2}rs&W@)pd#d>%Ki|oj@K6(jjmSa={)SS)-)aL^JTeKjB={h?@
zK*=T2OuIezMjY`>#}l{{a*BPGJp(AGxRE`BLA*aueg}Im2MWt@MOyXbHuCiV8J@PM
zoI)6{8Hh_^^oLyu?JI>O+C(bYKrQdoc&cMp-+zIX)|F!u$bE(<dVrkW@i?OeiooNx
z&0OlKPCYJ3eb+^`QmvUduIYN(jbpVVp!gH@G}MU(`;Ei)eS58Rwm_h5tdy`%62EJO
zRldZQGxocK6dsUqIGorE2sVL1!fi9p0;Bl#KJ$=(sg2Zy<;D(>9Oz?b#M|zFD!u0z
z6}&Hs_%&CVp9Ts-h9X(nN*lzi7Q<b%ZanPJh9$HWCPO7TG4Y~-xQ17Ke@Zs#9_Buv
z@mXI#J~R>2`#`y7&ClJl#EjRsJ*$_*y9o>F(Y1c!4F#>$)c2|EY%J<O#F4L1v|>Hm
zX0J&a>pV6(tp{S?1folIeZwr9Z$BjT%Fu|1E)PC8^vA%AWt|Ue1)`=0LC52QwF3#I
zE?wyl0{B1V8E$O)?e4ovCN%@}-k#xUpi5)(5NR_{{}Z09KLpp>n(VC3hY}H+-%IC8
zf9nMcRho{Ir#L)4+%kq~8!WvQUJb?x3+{D;we#c5T8aFW#+sA@CxeQE2Dk+C-!mOV
zKp;}8dDB}zG?j!a$HP&mPp*<jI^u9g;jtMfvW@ajii<ZO5ptNvVu2o-KB<@K`QizB
zxFm9g!t3y&ahLUl?#Q{qDc5a*4A28^t?$rMJ|M%XGLGd%*~5AR`fDIknRFOJ(z2#}
z(YhN>LIC<@H!r<*d9cUg%8O)`wcjTAFKQ3X8wjI;j)L6GUG6{aG+?uRf%o;OU>?YQ
z>i!xO>8ACSg$tD&3UVnG*T;ezDoQL%F-KyW0l#F@cr-nYMq~c8Ze@S5zVa|vvQ9X)
zKVhs;iJDJu44ywh%U+5b=cr7-b0}9T216CAri`i-a~gvxa@P00(W-W78bL)pb&FQH
z_~TT3KgM+3g6LQ%LT>wfPe#TYS|U3jFhd5kR@RO5t6H=b)1v+-@?J6dva$pzo{}r<
z{q@30A-ctVZi60H8=dIP0c@46g&<x+T!++YAubr`vX8TkX`e+i7#Ah<G)p;b8qytG
znLJS71C?Y;5rigI2Xve;Ld6eyC*Ca2hujnZsUJ%vef<x>p4o&6^!k^N!O~iPO9H=T
z)mT#B679x7Njhm}1kCsiEUx#M=dZgP(*{lGMFWw_LCQpKyIICBO20~X@q;*ywzB2a
zbhC=3sY=;zrxNA?+V};jTBd1vzy0X9vu{HB0vi5;`2zqlsS?hqwmR##8c+yqn#$))
zb0RFu>$d3Vz!SUyWe$GFCwm#tv1)m4R{g>*Upd%d(dl3@{uVGmKM^oNz~X4+|C<To
zR>X(L&wT2;(Yki&mdxW>A#sXjMTnjCHkEARm-i|%9}@sk0Dtj`jF9Zra4OFvq3h<?
zmo}`_xlyCiwQ3DiobGS<0hp(MWJZfYKB#}6s?E=BKs(l6G5j9_jBhI1ivvV{K#}bC
z#oY1}4mh(*=9T%AH2H7Q`j6lGioG~M$a7r&ek=|3OMgBFv3T+iwfkRGvp=2x|DX0n
zf%*S)`+wmi&{EE4{ikT~t&q{%8o)BDJ^Nn&TapnD!Tb`S7(y`v{s(0JPi`C1Rv>>2
zl<sHE|An;uZ~psoUOnaYK1bod56wO%z-4o`?^eM1dlLAM2MX&iVa#n$r0`q5`A=6X
z40RR;c#R$!h`&etcDKK!)PKL=SZ=^TL>Z|C`+txf9>@X5RclF*`R`7R-|bERc0ef)
z*r@(yde3}?yF;<gv+%$By<F%fw6C<QBBF}Of4f6zA7OwD53dE0SkG6P8Rp3*85{wo
z2Y<=KmDbiZo9QAA;|_m#<J0wS_(}7im(#{NzWAQ*u#_MF%SwMBFPl=;Oky$YNd&Aq
zvlkXKC34B7_FDsaK-Ir0HSCSt{*1`T4B8%&N|xk%IZ<X2#y`@1|4OLQ<&d(?UzeLk
zAA(M;gl3H*&$~`K4xtCRM5meeamZ}DK)bQ#rA`62VKD?Kv*rM)k2Z!6h_PurtT6`K
zLA8A89%oVj410bhAG?tVxMPxApPv@eB_qQaPuFRc3-nNUHqk0?w^LF8wPo1@cnhUY
zkOS&$lPkyq`sAQ;G&!5sX_A3&>4INKE}315OEWRuWUcYI1+jK;KzcM?0GVhDz~LOn
zP3Q8{Q`<{p`R_?IM}XGh@M1lvl2Hjd7R6UfYcSfQhig_3614X%A^EUoVZ;MK&D(&4
z$$7p#Oou^yEK48V;B;tyPKF;>tw4DEtflo_(W7{Y<$IYX{8mQaQ%ELFR|4t=-3r44
z?!2?!<Mu3k;2oEe86n#eFKzRmwq`6PgoEw%;lj*8)ug;JAV;w~;G*x=>69A;+yYc)
z7@#ngGayeLfOu6{Aq)@!n7$s6t1ASdcGjSBaCBVSUo0j2tQ&}JD&qhnw|e1g0M#=v
z%|}Da2iOqm`PG6=3c%!Qe|Cr6xaC(g18+|za$X##`gRVw*c~tYL|4sTw)4@lek=ZJ
z*%RP|GI8!{4UWTdwTr1NQGhr)iNt@B8GfE1A;If^J#WF}zWbv0wXgwBhti_&6J`3M
z_ww0abiE%{J}auS%W#2eW-4+s?0$u*SJ|$KfPl$cXa_4q+Y}_?vQDi(YS_2*x*G)e
zRgiMUwp{YM%d?65<2g(uEja`^8U~;h0{g`2MI3>n+b?Ctw+58(e=z0ug151^hqWsY
zOJDade@$^DXgeh>)dF35P4vyXeH-QsuRAl@JHVbX%!y<`9yW{1w#|ADv<P}~d4cZx
zXGMi#<X&>Xj5M>I9mZI(ulO8@LSz8Q1L%1>q7%^gpoc^jj1Y-&zy{Qy4WF>lqiw-C
z_bH}~|4iU!RTO@*5|V8}F-M+*;bRpufmM~_EVBXo(!(v{5HOeMsl93e19j&kd<fm*
z;!W4f%Ao5d=iY;Xi$s<H)4vKWXuei8b3HGBippHX#-9Qz7f?~=901+Ol#bt25HJsj
z7=6NA)AYO9pNrL4biKda$N4DOMS>U!IG0#~O`n0aX5Fxtmzl;cB&eZdlMuJRO8Q~t
zAD*EXvj)-JC}*~!SwQvM1&`Z`Az0=3pL#=DXKyU7Wf@1cjj)7#qrG~{KTrbJ9|5EC
zK1IDTuv=TRpk3u@C<=kWBWd$D03`?))<Kj2{vJ|yWI>GHPaJ7Z^1&C6SxL*?uUtk5
zU{gIOp1o*$xI~ytxE!WsMzReBhP}N!ihbRaH@_C^m1yeFT8B9qkR9dOd0zIfK_r1L
zRf|drr<J)IOx`NjvP+EX^W*i>8Uh2*0<)@_H3&<*S#EZx#tQ#6v$B}H)kBgXg64?N
zK1+`4c|~##xLIIJ5Ospz@X@}P{p`&}(}_AqILRcr|CiEH4pm0Zb1^2`$q7#+?t-cp
z%MLkVTPjN6Kfd&UjK|uA!aW$!_(m;8lGwGYA=j{N1(0;svd^7DesC^Y*Mm{Rz_7ZM
z0$~)7GmQ;3ACsTq<u=CIIR0=p$iyhK%v2uvUAMKRP^~nbC_M2R3x&2%Z+yX~btxQ|
zr6V+Dad4FXT((d-ZO5by95!~KTxLHL$YG7mYCxw%4-mnOE2<f3i_gdG&J%>C1UH%*
z;S1}s!pOI^ei(RuoEFjWcuwHx`CbZFgbH=`ky#q{1ck4P!?0I}$fGRdE3;<4JRjEl
z%=anI8oOAFxMtug0JbHx3#cR}Ks68)qFrmyrN*~qWd3fo*%#vnv!sBdVp<RI^H-r8
zlIX2vmBz!gRZ(z786Imv8^B!-tafxnyvrp9BvVcjFKz*9s*P`ULwzx7xqnJiMUqfA
zS0+cKGm&jp1SJkyk_mh&O$g!m90QiXM&t|ycVsgjqKO^(_TIT3;K&Q(8P+Wm@1i*3
znXuP}Ay5%dK>{ol54kb&6;`k3r2wN(6_JY?zT?PdVz3^Zs}aLkmIt7IYK+7E;2zlk
z8pw1O`HIH-_kcMG@9C9TW*yuv9up9=0}MZopB+syIRKm%O{$QqCngGc{pnPddrviT
z+$t9Rxjaptr?lnnI~HwOmHwx}nuQt!0?ydZ-8w&1VpBk_KNacb1axu<Bs=(<wjIMs
z5^+gUbHHE<k~%m8+9vR|c=}gkqNqU&MIM0pi)8^Q9qvOl3%e8FWClKuueJxxS*p{0
zwYfRTIi%qvFLYk0vBK0zm@cjb1%+!I)vmN`&s+3%ca^_|9OuB8>nZMV-AS`a)#QJO
zK*cSyeucGPyJ$}*g$ONc4@`Cg_<Gc8-xdo{_|gBghZQ2>nft;xA;EEYUx<7zoc}kl
za~5V-F34`QL?COKQ-d=}c~rTUxvU)ng|G%&fYQ|?5}FMMZMw`f3&bEel*C4DI=N&K
zKz=nYxCAioA%HxhXRuQ*1iQIRug<px^2AQS*S!HyLz3f$p!3n9L&dxk%c12FW>G=n
zIc;29bC;g@V(D<Y0G|m6MKKDHV^a*H1g0I1mzQ)%v`P~`t=4}BD(Qr1$&*R7MxCDi
z1bh8#NF1rRy1;1ys_%W=ZC;%&U?W>7y7RI36ufv#dPAN$S&Dh-v2&ML(lp@_sZI1j
z+dk@iaf1w2ey;`eK|o%)0VuqWZ|4;qrCueNwTNxSQ5}mpk`rJ5ScHXhZR$OL6T96Q
z^|UVQg+nAn?@=h^_d)t>&c1i%1JnmHU^DnrB2p9|)osYL0Y+2h0s7cHo0X-*UapwW
zfPTFlllpYh8I>ix4wX(<Qn$!%Hu0L@c%|i$9GZgOUF*e2gC&wm^Rv~v6}LS&%JvBZ
z8XvVEstN!h_)xSs@51UtS0SOfEDML;Zl0Z^vl$J<t_FM<jl^&`WyjC{<x7c0vdidk
zHD}VUC2e((mqIvw2$I3)_IfcRh?WQ60K(Q{mE~LqyY=EM)p<9i5XrvysofsPRaPx8
z{!gn<3ekgd2O>ObefIME_C8w}mMEV6MHV~U{Knwtv%#xmr&8OA!Z&*WRDb<kQ)bIq
zW<O2K4xXJ<Lvh+^=Q$%Bz7^E{pOE{MLSu?fUFedtJfG4yUfrYD7qEe5R#6zIgz?m6
zd9D{7oR&S#hsBMl1<rZUaW{k8wnv0$&jCB4nU4EmwQWhxNE%-+oCKV0RT7%)(|N|T
z7?%D9I%w5farKZ)aLkF1)Yel1U+7CZk4N@)iouA^;%gSLFW?EV#4edxp3-{DE9Hj0
zA7|VEHMuY%Cmc{>XC0qcUYcgwt@nr0S4uE5EMK|Dt1Z+j0kc^^uY=LV+B-oQ9Ag5l
zAl9S3#J04N1sq)umIVW)5nV1cj^q04^xQp@XYK_+m@HmLKvMW7aHva?jz{kU+=v{g
zpE6-q^cgVHRf1yb-Bx=tOg2+&TFOV8!mbk*DWHz*fTx~lV!*qru6x7rHnKY@ulHZn
zW$2&Gtm<z+bwy}5bPyY{)FlX$jO>o*bY6!>$Zn8;ruFRbjuity9)Kt3b9=?k9LVqv
zjO&=AduJaMZnSi=*2w@a#?y6Ju*&A|t%z-~NYFI6w$&Qt8Z}Ps@8gd}OZLl?SS3hy
zJ@g(=a+A6ad}42Ud<(Rdo3iq4G?wcz4C#QB|Nfwo<uR$m5@v2AI^Ks*J^d|2iAtE;
z^Y!t{3c^{-pulovDp#w(Y3oMK>g(r+d*%g`diG_{qn{Ix+PR}i$7B$Xd(4Yw`Hqj(
z7hgwHc`DV@jnqsS#7UJPutEoJ0AxIex(x(y&&T>#ae`jn8G_Bl>QxSV87~I!p5qa>
zdjRBDk*t+u0?o>?NMpMN>$w(B_geE}U%|WG9NUy}Rd!{2EVRA{k{Mu5DYrX~pC4y5
ze&vE>>6;%`b#A-}_W_;X1h*Tt*v3xWusuXgKU<Ho1>I@Y7ZQO(ma*~ROz-s!+`aSd
zmfFo6+efAdLt|w{qdz^u;>#-L1MXeoDGECZEW6^TL%h8KeoCl$R<Ha1xUH)>F}r89
z#O%)*T(mC_3m`hme?YnYHC=2m0#sbSau?;fQ@fupax`)`IlX~(Gsirgh=<O0w<Gv5
zIvk;RKnNyvU_9H9#il>rSv|;cu%Kd5u=ZloviWklMwD5Ho*X$IA&AH+u^Ra7g|ef8
zY(tN+%(pC#_Ga4nLd^@k(emXkEFFiv5C<=gzHSbj(ddzWa7Y+2;+S*pHGfQ`&mR~e
zu*uc&S;i_&M$=iWR<&X?MvX|bFAf*DB<QnS_}R3$Rz8fhPUqS^zIp;lc_;^u?$<0$
zjEd?)6U{0T?K&t>9Har>&9%q9orsUU-7QSmWCmoxMi{um-hj=vCs;fd644)hn+&wG
z8GpoWy}+Q|)ar1*II*IpHF^qkzp*}AbDY8`-1izUT|SN}rWHK*jrzF{0~Cg_>HVUh
ze@7>(5dXF|p<@f9Cu4l~WjH9R;d%_<1__EP+AZ>Fyy7j#9~jt`mId#{Mk_L?;vCgX
z?l6;{7jeR7d(S)EQ}5f3K@PVV44_;3gz3g8(BP)?cq^wzg5An3xzHB&Or`7`0{ItY
zUukh8<1T2%A$dM4WztuKhB5i(W>pK;%?DkD9+tX}Q&TXLk6N&T_{PI`)0VBCzR<{9
z=jH2~Z~)#M_`Z8ITiSfpa0{3+!$AbSVW|2R>s@ME(M9oqTL9sFa@T%41+ei|pSI{8
zFza^>fWscx5RfJ|)><$1e59)X1e7H<L~MH7l(lG3`^5@$thWT}<Ky*89zbe2-7-9{
z7(XRlw8N4>Q6NNt=88fdiJZf0MJBjbhFF0|CCZ7azgWhm4Tj(Hlz`^|PV^?z;nul?
zK|={58M{B_X$4~V8=_$K<Xn7Pl8BSHZIx{ody`7T$%+j*k-P&9j$~}0eAWWgFgRX~
z1;FhJO~I?R8!ULe2#O*0a~gY-pNbJ5bWcbhwo4;N$sP83f;{~jK5pht5w@*jjQp}#
zub%Q5OD`d&)BHr%1;F~}L0Jq^_wnc59X^p4H@+^hGO$eGVVM9~UTlZ~<*Xk@LOt73
zM(qk`9`*|OU}3BirD+4n+fdz38*s^GVPR*3QOv_vjc2%S<7t{K9*y<)7MTAU>btyN
zb|1|fyvo>D=n){Yvi)@r09_MJ%dfXP(AJMv%b?QSy${XD(byQ}F(&S<kJGO2*St3H
z$9KRCiyrEPq*+P(Y?<sm;ngn{skImsseg5XWS92*-kQo`zj$;lmL%}$HS2nn&~0-D
zHd{Wmu&8m}nd}C&(FQpqUGu53b)$#g^K3V_T?R5tYoDr;sB`nS<Eh1p*T-zmj}^+T
zK6NW0&wRZm80CD_@X}SXV-90tn;GRkE(Ht<gAI@yX~~7%6t{h&_b*wlX4>uP0`YVQ
zy*e$b$+frfN%jaFCdD@Wh<LTp$0US(ksyR#Zs~UWOk?{|@#AretTzr3Y<%4{#mP}t
zMw&DJ<AlGK&|r<iBc?As{Hr&(ih^9nFD>t2iTrQ$_$&iKsP2LoXki}U)PuY@15Z<G
zx;=0b02z&tdU+bhf5D^a%(rbYDhl<QEaG!IVteqoj+bGl2CG~;|J+mC2lS%Mn{tNl
zEWZ5?%8BfI!~WYF;ftp#md^43dzL$4QDiPv{0aM-{^@?@85{pin<R=i;CJTiCE_AS
z+cBO~bUWXsyow5M3)uHBVD`L|yn^m;(IRI1r5^f++w?`qJ$u*YC~JGPH^e7=??1lf
zzy3?CIso<=4Fh-SeP+%xz}suBf6nHK0v0Wu@@a906BhCW9_<)pt*#Ftz7~w$<T!Gi
zZ@YwcA|th{yp@pQ?B$uWmz0$WnBwfqiS4a;=fBov*n^+K&=K=qy%TK&6ou@i7Pehf
zXU#pR?Gnl{otFEfMp10$b_V{m;$X=|lJFAe8UMRFX0wT0=5#NgUSjtlC)S32WDDNU
zAaqkD12g|NiInvHx01$ouy<I}6l0RBU8swbfB_j&pJR9Nn<3_4MKqFnJP#twBAwkz
zosW75n8%_Ww4W02OisKqbBDdJATopjJ>x}1y;>Q9ZM^q|9GShn4Q3g}n$EY*6#*M3
z$;c<HYf$*0)DFxmMNS=Nd!pym5rDX9Z)#iueR|nWwlIZNh-s-7iw`)u7=u~@8^Jh8
zA4o|ZR-Jw>A?~Ha-u8J9bIho(q06X>*)Lvv!$1343*zeI;lKQ;wC0{_wR{Q3S(ikq
z#}m6-8}wN36)$tXl(2V9PWW)Ln-kT;uV$@Vl3}D)691AR5ekhZZ0oj@Ee`uivlk~1
z8!V#QP%qb1=^M@leuS#fXFuJvUHILr+u2z^5!Wc%E=565P-*F{i%MjCA~=~j2ujeQ
z#a+ATA&BYNs94ER>VKax;8v<5;D?(3qa%t{=soZpSEpQ2s6q++6I2m<-2<vy!kRBE
zmHJBF1F0mmpltc_dJeLq5Kb0*WKx*h52Qb-cztRR*2+AWGLmh!)=quB!gcFN@`>xX
z>H%UJA}pmCBGBGLbg?w6<PledzEyjn;+r6=xAURlJ?}YIuSTGC3qW>B^yvL?>QJ`^
zU+Kak`ROa*p7g|PGbndX`zWGr6vazG!)c9#yifXgBpx*_gAOx2RLv>Z)1xwyc<1b=
z2@znc33%1S#}aR7<rvq|a4T*Ht5A-Jb5OegORX!CdUxkLDHtd*2*-w<baw<IeDFk*
z)O+~-95L{HHfnq3yC=Y|ICQ6Tx)a|5=tG8gp9)~HB^5{2vw8C{br(lj4Cu4*$-aBT
z{GfnXH&!I4HK^T}+;DEg39}??7ux2P`Kh)!5!+Rfn|`{^pWv|>@k8+XsrT~$GRz4N
zvo6LlZu-_IY?bcQmm<iNvLc>Abe<zFpqAUeRe3<7wEwccvGn1K;AM<>d{_9O9=v?&
zD)wK1r-u!|>U`+r@#1?PmW>;^jSj|@j4L*+#h}JEID(zfh{rm0?mgfmSU$++YYQXI
z8Ad&|Ls^g36@<qFX85T7AWa^e#doANOS$FNx<AiimE^0(f0Bgd3S2KzRDCd?Ez3$v
z9M7<fc6jRLSvb;KifZLU*}>mJSna3IV13XJ_*tqeG+Csf#P@lqly55%-_d;aEGyHi
zM7DNQ{04aNsc|^bD7N36F%l1iX7wk<T$qPy6}2G8kalX7*GuXcDn$7_FJ;8p%AZnJ
zS-s+u)CBs_X1jfR2o(}s6OahALupw@;6GHkPn7$dGL+koCrN7#YKWB`0ao`6pZ(eM
z?zck7)2|BaFt5+KEuh!+zU<C2qB7oSwZ&x;@P~YH0HC~jf~o@}IquEp=)ssUN)eK2
zaX3g9jF4ZOL)~@{tiNo^1L}8{J34|hsOES@R@)#^rQ=`QlkEH|aaV4fHxfBG@8-wR
zC6xKK$$L_$l)e7|Bt2>Y{%Lc0y|)To7{TCWr{Hwx-d@!=kCujeYeiOz_fgk)$1w$M
z_tam5VqffqaX&%fXk8B$!3iyzyo=-Yx49qC(b6tScH-#;Ab7A1De>$t!&?DsNlhm)
zPJA6jS3seSUHk~oDc@T!dL#5%T;+)SQDsrVv#XWop^XHZ7tc?K)7*`6#ugw;F3Sge
zEnr@ztjpPS&tqTl6ijgN#(4zEP{qeEs*P57%NB<Tb3#pEgma^jxCcv^qywMXH4ew7
zF3W#Q)>A=~w4N&WZR5NrD(~d+%Te`AI!piUcy78PIG5WToJ6qVkzZF_#;!U$gv+U3
zb{fr%PzhsJ?r)z3z)dq!2Ud4jqbYigR{YTlGX{&Kprx#HM65U8H!wK10NvLpx>7z{
zR<<5^dJ%(o)J8V&>vPEoc@v;;Zsde5j%+82W0yev84k(AG5ZWc!=!&(j|{%>lGMu{
zQBkw5k)b{tBR<_vv92#6Jfr+oB>zp8w=nHyqQXdqFX032?ZbxTFiVOwo)^A1^J^;!
z?-3ZGG|l|t|3%$fhE>(A`@>RFA|;_nr*uhoH==ZxAky6+-5}i{4blzLB}jL7cX$2=
z`<%Vi=bZED{q$ZJ9|&D*%(2EC^B%vtMMUcs?DVzBXh&SaJy=-We|gfySR!qG%@PFb
z$9}zdDQrgo=LkHSgDO-d?1J@gZbS7&%y<FdtuhDoD>NGU=GNKk-b08`#n3#REB<GW
zYEF8$y)NojjXnBYlQJ3yA&Fdkk*u#_n>7E|U02`1o+GQRnEs9TNdpWi`Y6G0r*~{=
z!HqOn76&Twi}tNB*SBae>Pgp4=mEoPlsupSag9>au#HZ(^1AYK=*-gd+362*SrsJ_
zel7Y<mVA}i{NXNDikW(w>w{~|ON-_+X-t$Z)Zp8VyiD*>V-<0ND|)Eg%%S>>B2$#|
z@gYtX%fkdNlLp(e1QN#8B=}Q%*b#6Tszqv22StQ9{K{@Uaztf_W9o#_B<qicv_00M
zrj<@7rDJ&oA1{-;d2=IW^Ncs8HaY@c#7(t&-<|D<->b=l)zRo+zOGhZm{zAvKij1O
z{W+(J1)B$9NC<Fha8r9ByR5UOyRZfZ-v%cHygEZSpw`V|4pk9~u2B1nit6TqSZGK*
zP)N%~x3+!~PK&iHTDDT_VO&9Fg@LUTrtl1EZy3pjf=M-r&yNC=DGyrYxbABZMC4KO
zcw=Q8=W|JpG$S029twA@?4A44$mqV(Jf(W!F*Wmsk0oX;A7J(@hEZ#NN_)ywEw%Y2
z0>|4(J+PI=D>C$M*po0ZCbBD)p+0N#{GfbAvq^$y)0OrnGgzj~U@u`4_apr{cc(nJ
z(g33?<1AH8W-zkN{>^~;ty|TcbzJ_n5N<{;+k*;`sU>%3O=iY}ZzFXI0~WAm8!Mr<
z#>b>l`z|~Eti=R!Z#R1B_WN^<)Bx>OA*TBCOe)N^oyx=1H3wwj_;L2B@?HW+@_mu$
zftz}Ya8gRGqLo`i_Q-_}`JHke-kv<hcRy~4zJ_bJzd3y0aJ{WO1ou#^jM))p)_wMd
zSpM6({m%Fp?cFi&rS@FA3p3`eUm||@W!MNfbHSnuRv`yz3(3oo#po>8L<3z(d;8^m
z^4xRQDdL&N1+!}2sfd#!t=!u|_ENYJF?SmrB)?1eO)+c0p!oT1j^x-=VCyh=<8VOs
z0O*s$U_Jxr*sF`S)D2$APk}SzhgY38X8<GnEo|X~9#?{_foSVM!_B_D%ULl6WaQG;
zaQx<M2t!01e5{e)6|vXWyC8&`)Icl*u?>-9(Y1iUHd}VwrqOVSFYyTSHG~-}Ti?78
z)Lj_-!|d=ax1g!zOQ?xzvQqKG5Y6P-(mTNkUdIA`e>(9nq%2Be+-Pq$=&JK*1F7{r
z3Hkt%o8wl&isyWvbE`Ur9Bpq9Wmw}A*6Qam1U2NX#~vP`(A4;k1Sf0)rh;Pnotr4*
ze!Ikb>U5bY)ecgQ;`HS^=Qb?+l@sB)rX!<SR~-D*{n?NGRPbwuT>7uHIm~9+tf!4~
zRAecFw>!NM4#;?=lGuiTF#DU-yh43qM1a(;Y<n9nd1|U2^f5TXPg*Ztbs%)9=(qyq
z`2LFs+N}j^B6M9bBGislbV?%+m3``c!`T3?t@(rf3UwZ(&>&gcc*%LWCgRby2I~)n
z=uNC<+s{&XSy6b$ZfP~X4_LXlXZ7G$Quo<w(Yj$}^uM8`#Tu}ZuMI>8)+2ptaFgSE
z1`MKv$nf4VbLx89x-+YhVMxSm#Oe8}QDqD9j=Ma&B$5UtoL*oZs1YF<jOT7ec9R&_
z8kz^r8kRoAY1mD%6Su&X{=B33KuZ^0J@1q_7B^V6_grz4C<4nFumms}I6VI1D=cO;
zOHOrxKf>O<aG$>qV>`jQx;dJ`v2}rFP~SkkEVWk@=p`PlwKl{V;8n(VIplNZzGBeV
zPuIE!z%pufh}M$mdYT_za9Gt0vu1Jax@uhtI11xQ{b8qmR4YD*r!O%9>L5k`G-8|8
zu5i0h7(Y+Db|3^dg(W6}qtz@yu*8+M@w~#-G1Ij@*7HGMoBvhGFv}3AI;?30H69m9
z(x?}AYqLu9WC%|H`;aq7<En;V?}aPiD?B~Ea89!zTFa~3O?_mU&!YMqAUp)d^f|1f
zb`atb@bQ^KNjn_m`-W=^jI+~Mk?NiftlH{OB1$9kfe0mb)=if;s43VAeLU`b-%_({
z#*f^V)~)z$x`gPDcYbnviz41*vu%m2Stkc3jQphQ)Vkn|s5J=VIu;XP-EnI?(@A#r
z@<^NI?0-eOU4MHew|v3$In|E)!a)9T12bqEAHS2}{l0C%FKm>Au02=aq?L+nhV(rJ
ze5Jk%!+KV%W|`*aNAE6^zL*D<3pBC!!lhyUyLA%OdRR-n&J*uXFV6NQSjgY2IE3Z^
zf~fGLb{N}^w`mDm7^67Klt#T;@{MH5ozPWMXMB2hkAXX&jok2+IBffwQ#nPd>RpS)
z?!Q?n@ks99*gzgUctF8UQ_n&Lc&l8$aCE0n#Zb&TN@Gh|8+N%^yS8UYiET;_GMu85
z{a2ZaFr`mM$Gb=@nu1o7!<nz#L8LSwL}wskooqWkl~%0wN`(29ItBef5C%YiV1t-c
z3=)5O94v>{$hQLM6f2TCJoQjXGXNK<d?TgQn)=FzzBP<@8y#@-m%%vp8gVWY8umyN
zD)DR#)3SS~TlhX(6y@#@Zgz=JQ8Kn~n_)5VgPG-TSM<c!MMAE&?reue?~Yau1d778
zy2t+BvAQ`u029X{#3xD%8IEYfa;1q8%5~f|c*bm$;=IouJ4$<Z_3Vf34rX~65*PWU
z*9HQqzyG0z^$5f3F^K-mNrxCdZ3>C6%PzBv!W@3_U%8U`L^+b*(gHL5+t;Sjv%sZ<
z`6Dl*&=I&Id_0kfzrQTmfThlbs|WzZ-Qq#n4nVcFrEq#=`P9Pra@3<{tf9StQei=6
zlE>-v6R)x2j!iZv)@E-t&f0vkhqu3_6eh23yZ@mBd6I=E(0c|y1|<*|XDzIYEcTFG
z;{H;WvFOv$8uoBL%UisXI5Xd^oLDUgtmuG;V;1y#P9smd?8mzy;sUvm2HhiQNV=3W
z1uWdReNp4delJt%fPCV|J3Q!T`}QeNhAk+mUA5?|KXg4r7N>MVclF2lkJj4FM>ZBA
zTiHKeLp+xoh?D$)nWC2h!Fup6k}t|SxODo|$G!hoz@c*7HMQ7I3TctjC?_Ie*lowl
z<F%J`{nnYgCXP2=of*)&MIQiVJIsM}EtMSf;i<4tpI`rtN291)WQH3)o3<r)PuAIf
z&$>NBAtDNi%!Z0gwMiD1hYh^`N1dqsmSO1ww-U59!QG{-mQNKA_ZL}*u%V}qr<p5=
zB!-o8p^mt`4>`WXd14ivcz00z`U0(|`!Jj2i#}VBH^BK`GTiT`-XLerI^2uj0yYCx
zC85=b*o$=GAjk_?rb1pVC1f{w*Kow6URSuESf>EGg3X?DZQb0Tt9#Ulw3ul*@38?-
z!@y$3ZdZw$POG-h3PYgr?xb-mK7_kF<<8NDGFqopmZrqt(w-f32$40Wz^UrxmJkf$
zPRqA~e&~C?m+%PzVfK2fbzb~p+Aod)J7`Q3wW%D879OZ8?)MVCVnrYzRFcE`NTk_?
zxuz<8WkzLE+j4~?JTm$*Fd+e;iGv92a8jbLErk}PmmBp}bk7OPmSTR{X5!mT>Wm|{
zC3+xoaHQx=fGQx4%VhB9v8W3=tlq{vl4cETYY6UHdK-;O4iD|P`UcD1TWEx79UIM&
z_@L%>4zoz<Co<f_NWsqyq1h+A`<+62@aMVM@HtSEZ)hKQ;+YI(K22E+i<3{WTl^Ab
zU$wk|Gwl}Ie;zqDb|ALi*n*aod+({g_OaaDt2rX$+BeTWsjfDuj6J*O2Ix?5yya`G
zigjx{nA+~DM`SpCE|MhioAir}yv2?Ipcp?s4J!#zfV%ligioARd(DT6eIJn;T?Xuc
z&LOBgj-hvr5fnk*mn%oFSpffa*qAPr0wdHdRm5t|VC_-_k$(QjUhVum2`KR-*xTQ@
zbSlwMOwpT{uK&P>MLsX80!Ng|8T8`%t4rEV2<tq6zFwSS-~zLh9l;Z?Ku3Hl^DC&b
z4CRkFN)ZD!i8$mR7>3tY8sdz)d|3w|JJ;>MEMQ*r3!n0Lwdi68mD@lmR>I=Dl=S&_
zyu5gEV0=yI7;|Uz_STtv$kGZR+v|07BMTiu>Jc3|*VN=xf;U10SdV0UYnE!1TBW><
z%Wx(ul6#&vK(V+Eoo^k6GrgV`;)G*GAI9m0h6IKNbKV{j6RiLz6wXU6d6M;b;jw|}
zmQL-m3TEHS72*g~cxg{mN|()}(gTs_wPm*-%NXx$<aXlmn7&hY{39#u1xgKo()L!5
zY?jduH5b)hVPvXaq{>h%bX3m>I(yZ6ZZeb5(;>OLeQQf#5#m?^yK;35U;oD!X8D&V
zP`2rU9MOE-kNT>2CTZMWi;RxPtMX+t{FW8JHgB^>qGfD3dLsfj{rP}vfKr|Z5=#I+
zxy)vnsP%9Ia--u5UjgGX)H0#~mM50&;&rX@W=@9_0WN><K;oz5=dK)4r6uWY;r(_^
zZ3}BF^)DT^TB(Zbbq|m^T(8=)@ZFC*s#42!0~caH;XG9?qTj}qEC$m~PkclmceVAC
zE{=C0$z@smjbU4%N)e<dE#{YgS8TKUq<micXViNol)(u8;mVylS-vQX1C~-w`)|nE
zgx10WGg80QR+X@=s9Gjp1|j<=$_+@ka8#Msu3=K$4-?9`hO)0?Gr8Sf=4OhoIFP>^
z&y~wCnL{zTxj4X&ggyG=j7xTuR>0K>r<O!DfCr(2DaXrm2?dRkdiMp9(VJu5UR@Mg
zoV7Sy(r@qpS<&ujidORa<;I<`c5|CIJo>N`IbjL`Ga87#Gm4GB?TKM6!cD#rDZ&vb
z!!HT8Y>mNBHA!A@oPPkGvZ{+GP(omcvueMtVed|Bo&FmTOdlW|I|CSie9s3C)UGJL
z>j>*?(f5sv!e5@^6ThcF*;wHn!}l_gDFeuyv}?4|UxoW|{F7u~o7Lf#-2uU<+<u#B
zhVQ(TgG0Rpj2mS?v(ipd9lc#9WX<p;y-~4lZL#c6`dDXVShu%ftB%N8)cKX8E?Yo>
zLyn{y1U&hG3xO9Mz4=I@>Nm0$t7QgLc4-~bEoj(qg12;#qq*`kq+F5zXv3G)pL4&a
ztzSVX<?^n5sSG)ddizI9QfLGCw1=IF30z(LH<k}BF0OWHkurMYT{yRIx1!da7C<Zy
zZLJ2H`;ai!l<`YCI7_!ArVAoW{H>?QBmBQyznX2B{pge+<yMdLq8e)w8W5rE43ucA
z)Oq3b!VvoHexZ<u;dXYSSsAAI(FLyOb44fG_5=GFpa&~$Cw&D;Z+d;XNDU1<9@pLn
zUY9p0#nd*;b$Uzjq}{@bx25S-rM-g6Ax<%qq7BO`Kdf?<8hJX4Ld||v+I!>?r}x8C
z$v~>t`Yl5ZP{ibg*3HPOIGi8N+5K>(zT4R-zA=g@w5|toge54tr&RQO1l^>c<z2<?
zf4(%FTo6A7N<vObm2S)U<Mk)X4!UdTbYg80uF8!+7PVv_t}l0JX|8HmlQ3d}a-J0=
zpzN*`2HjfS+8zVifws^de<S?YLHfh9>z$}r>da$m@}6Q>qOXXMI2E6U7|(mSu(H1Y
zjm83{I)&fAQp&0gL$KSs+^Iw0f-!Seo(;9BGz}gNa52m2dT=t#D#~HTJgcec7H&rH
zyRs~K@=e{nKM|0S;xFMo1y^;x#oKs>zTE+*J$ug9^IU{y0T}Ydkv$T*sW}cWQFx2R
zhJ#yVsHtc5Pi!ohtm-o%V<?qh48nIcwBChFG*1WjD|-_OaW%CuM&C+&V20S2O?g>_
zyibbiQX?~K=x^^W3l1|&w{2Y3(vV?9%Hx^Vrlu|8_m+Eech`V-e6c+!6Hz&7fAqR7
zxL>V*%C?H>0n=>9frYN&blCf>Yh%OV@^ERXo>4iLtjw(iA;4ax%%1B4dVp@fADe6U
zDaysOY<i0mb;9{;vp47hJtMgOyz2HF=?B2=DE+zg*CN#V4e_GS2H>%~rVg~K>T9!W
zo~^p}I1}Jn5>2fw&9$088Gs+Ks>hC^Hn-fT+OyZnZVJj{6hBjuspQIfJea+xs_n~s
z@kfr)zuf{|#*j87M_BlqgNAOeW~T>_yb~!oUZcYlytwT7_|1z-?#{|F$);OiRhyRL
ze!1<@dC0l8rT?=Mo%TASuP-tr8a{b)D^Tj_tj`ALD7482Duyh8qhN$aaw`Mg!kviV
zI97ZyzKxM$!o&Drz&U2;xcm*>jQ!(^^~diwB~9lqGo-^9!eW5;&~|<P%uZV-M-Z8N
z^hdU!w-{zg)RJRM^4!1lv@~il)Q+k*WovzJZOzVyIV?~EUdp#>HTn#@U3|Q*i$mzN
zNm-Nc{_qOyJ3uKd_3KUQUotO%`4*5v$KCi1t$I5sG4K3(vwq6Fx!8u*()Ti=r@t*p
zQQikUpbDy?<BXr?%e51cJ3In4J9}5_*X<7GOl+RK)cX-I>Xlb!^ATBNJg8!^UsBd=
z0^Yb<K8nL<y%ie&`F^YH5CupQ!(%EbD`I(0HCvXnh3~t+2|YrKUj-q7xfjugD6m6g
z9i%YCwGl_9rdzH3EWAY-iC>QZFReZ-uTl%5GbylMDEuRo?%&GqC`Je&sr8MPWs>e>
z-8V{fbjV?xbn9gSR#Wk@828oh{cl04UllEtVQ-v{rt8_5ZXqr06>vJ4hApkXr5uNf
zIce?SY{2<O-E<>yts)av@IF@bU-zn&sUw$Va{2$bpoD+<T{JSg|Kj8xX*o2)cWFYQ
z>0W<9>;E3-KYqDN1LWzB&PMVKe=#$ExmNzYJ}F)Tp|^x@c_>iO{trF+KYrsV3FPVX
zny(b3{(7$b2@d_|dkJ5#NFtUBGX62P|K&%%c{Gr9S{*Bb@z1ON_aJ|d+#}-A`J~Ub
zL-CKX{VzX$tp@7<wY@C4j{l76|NQ2g{-fLJWk1IszW4uSsQ;Sq|Nl*IZdCQ#5C7XN
zXmgXiOM8zo^0`{)r-^oNlB_1Hd+&`MH<x5`#2<^3PlXuFdVvPR*xwZen9go&4-jUN
zV7E6Nk4d9CnLwxUWAyR9{<uqRr8L*Az{(uLd7y`=e%}cRFM>C{{dOllFgib8p(iFz
z!JX#l{FA~TYw24JJopsMS}FhI5Bs-Yqx+2qrNZ~P=eQhkET+?O2pHpzLdC$|%1)X-
zLL10;fm$6GsPH`=X2I2j$KjAym~_JJkG1dd`f-H`#!*WA@n-+^(%-)Dfgs1eNB1)E
zivVc|kForiL`SBa$&e1~#uu1>ya)tp7viJ!WSKD+?Vqcy#0|AMuuBEwG4;=2do(W_
zsFFp-g@4|jTu7W8p(_<=VW}Jbc}je@4z5&U2@T|jPGw&MGxrBEjjG7UV8jCD(sUtN
zU66*64J>x+kCB0oF^>UwoLI0pK*Fzcy1F~Xn*fAy>{!BNG+rXC7puS|7nwaG^VeW0
zq#-L(AEOVNj@)mLMAa}r>h7!0CiA@}<2HT*IS(@v2Z>FXcj^>wD?dVdF=uR9-RZPG
z$K3G@Fz?xYnbP(OT+az3OGxE)onzjwi8UImid8uo_{?<Uh1EApN7flNRM7*G{hnTF
zI33?G?qkqKyzkz1JV)OQtnL_P`KI4Xes;P<3`wk?t4FNg&E!XzO%?`5O(whL^W{3J
zwQloOxHhPmIJ-oX(R?HnSQ(}3cFpY{Zntn)wDx|QN_p+szkORhJzj8oVt-<+t?}0R
zTG9Z(EkBcUsEP%$JkKx4Y;h7X>+sgo_t02vn;uSurPOIzD50%Q-tJFzjGE0)noK)T
zeMox`bFwjeWzatw)|Yg_6UZ)9XwYK2Rnx#=Jf09Q+h9_)Jv`4mnOB%MRN|p>dnaqK
zfBKR|ODfx)Rds)EMt-^^A^zctb-j22GcLQ%mMQU|r0~jcY{B3jYa#AH%XxxYtAdR(
z|4-+q5ZFlqo23l7iqJubtr5%gC*n5fLT`}W2d=wuwjP|x)&XH!zH>B12co<_<h>_l
zGN0#SGMlwMs%zV`?q?@QdHEUUV-dqfvc2YET0P6`M)5OTj&`7SI%Ig|4JzkuYSoIa
z1>7Pno1sr5fDJnV8qc_uP)?p;y3bi4bHf1SS7qz8750J>_!ToB3w^#)F$>T&F)z5B
zR9-bb)N#I#1Gx?j>>%Mz3Rr4r{9q6<+h1>kD5STK={1KJZu)MqHT+&rvw>dS4!sdh
z<nhqEHCgHvQg^kk21#g8C5cySGMXFC4mjt%MgXs6w+rVqoKKG+Xo7qpYL=E<kQKH5
z1?oAy?Y4=*0i6tH3yArISqG|#w;&~?#57nG^8MdJ@hC_Skcid?kU8Qki`82$lI2kJ
z_qw04D_R=e5AxzDShiUXJ|$eRRlIX4^qom4oW5YF#Hob87&9B4F3_y)?R~Iw!mgG+
zAntvNL76~m&6yw#d6XxRMY+T?%(}zUELHcwRerfq-0D!>T58XA>GC0M`3J3+^!8hZ
zGgUhlHGAH6m&-$850tZbNxbselJ#|+hFH3*K4$J!NGgO{A)E=LPb|j6<MMNvRaZ{K
zP}yeXxNWDjNRsEBsl1l8n87T@Q=>MV*4}w#zeMhr`m#f+nAPme45yz>ch++qFI#AN
z$#BLg-e6VeuufT7mn%%*wz<Bo`fmQpcHx)F+dX%K?KAttZ)y1ZdRcwnT>GA4P{m#E
zslq~jaQ$$!(2}>CKl0gl#42@ueJ{wIImqCSFUs@xCLP7*VXNg%>b7~yr46LzeJX~@
zF9U_#Xi!60<{eh}7B>yA&-aXh_hVgPSqRidg+V@rRny%u9&l**C<b<uX{OkHBqbo@
zSEpvL_%RPG#_wDEW_|7#2cU7Enbe4y172;aQK77}6`)i$XZkcqK!tX71gCknV{Z1q
zVYmB<_Q&S3Ksw084JlL>;!&4iHkllxYc-3!@J0`1^=Av?K3DE_t1bmRaNXF~kBKaW
zZO8q*4_s7VNYO^Sq%`J^65krXib2Oz_f`5lnyXXvW4rrnr8}kaN7Kr&m~-=u<T@3P
zW59l&M@DTsfn!u3P=@O6Sb#k@5jc&Q@~=&*rVI>#{tp4V`{VkfZUKa3{rX;i98n8G
zGz`El3J?7gBSvkMGq1j6(D8Q=8=nyxpt9n#f38cLU{ER+VJgp5NYru|D;6Vor<x<_
zqC%9y^`v)L8zfAJAU?%rnKmlMZt22k+`{bJ+tvzlD<wj<ovh%Oq$03=X&3Eywk=o?
z#1-4<)aR7F@@>d$g!*dD_+-N~wU_KHA>q|oA`FqJ!idr4+Iq;2Z-RomaJ8JqdJMOp
z@{-^A>~XWi=QXXMKHtji#P2v02-9g8CS@J`S50oU{UbsRraxXh(^tQWRRIGoqNr1+
zH%=zNEGKRYNsz8$<fdb%=?xhhXf1AJHTJ3!>B~lf8p`#^E3+*4`hx7aB1+KsQ!l=a
zyMq(H619)7Y$oUB3sgH0q)q+sw0RnuN>Ie^Rr?U82f)$KoF)h*r^HNvZ`<*R;$&CO
zFu~pP_>Z*IZ<*lvb?iS<8`A6%jpPwF&2GIOm+F?F$C<O0WIkI{IwzYDPAvPJ<Crz1
zlrsLUaZDwguDjoJPE{(L0~9-q9#UT5ALD*cFF<W^-%z?JJ~~tfZvLx|m)-=_&Ji%w
zvFE^3K@T4zu6#_bUekqu0z7%8o>-kt$K6z(*4(5e9D$WY2u!e4L0H91iK1Q2mB}j(
z%@8+g3u|&2h{+aDcOKP^bi+k$UyQ9l-~{G$b))Fwy4h@vap746=fu^?Mj}}3j~2LD
zlSW7Gkw+h(rFWO#V7ye4^~b1DG^$eI%_#TF2m9%`Cn}^oP>`B9`WFDAi(fohBA!Pk
zm8TB&qI>=PHHYo=8x;ARn5`4JwcmD0;B~w_>v`ir&)A`eZ*N|ge9qUMbG)CNqdJtm
zvKS;aSBO~8Al0zZ%O{lZaT?dbZt;g1)`xQbAn&!i>oNJ0A-!0i8@2OSpR4BAw2eI~
z&iY{!ix<?DV#l2ePLvs}my_51E>aOs-X1VeSfH~`R-IMtIR{^@ZW*__%26ppFUgos
z-)$sdxEC19{;(!M#uRKEd$&-I&x(;Rk4T-`$b!%9<|tpv9<<}KEvKWxM8>7p=(cob
zk%&<criwdAN7lc<N9}Yso8KET)ik;JJ<&|}T8npD{=4Rw$y~MH)oz+$U&5FVY<R?F
zEHYH=?!@d%%!%tk*Mc=POfhA8*ZWPxC7#0HMKqr{>R0VkIwSRg5Nt~m3M*|S%k!y?
z7gi8{Ux3Ioc81-!3(zI+m_YEK4#(^mJC+qp437_IWxz#S)eL4Z+R2LYMWK1z0y(Aj
z*=X5ElQ!+0!s;sPS&{_n04`<mS`<=7ZE;)R7)*SMR8=BnF~sV2>kvz7;P@Dp6@ac4
z5TKWm{3x$I-ET+?0n#bgzDM^aSSGI{pG#5;Fft$z9srLZ3zLCR9hd(b3+`#QjihqH
zQn=E?Vad+8;>JK*EQk%g(3fT?AK*aAmg>0Vg9XWN6hEh#dQYQy>ukXxz4rzLE8Dwr
zRO)iag7rLxF!x%2zFy1Ps$kCkK+nSPm#goL#2?8TC?3nCUwn{tw(1WATi}9-aV~Z)
z6zN+(zmbbOx(#8dYjix}AF0@RvSU@G<LAcUDVOXHlLw0Dc7Nd)^gDZgUM?-OVhZ0A
zuYqPOQ@g#H&zpui2xMCHpR7n)HS|~Y_5D2CnHHqIy}l99MdkE&zxY0buDG*t@qiU5
zOrlz=pLez1!P;8|yN9Z5p}>q}zyHb2#aLDUerp9kFyLXi6bs4vb$GGSK{6?J$KcR^
z&dK1z%zgJBw)<j*9`?E7D`<`lFpszIppSP#N&A5b%P<Ms3!^VDCk2fx9#GE~JVYGw
z8J^au>*s|1hgkR}@2qqH5<d62x6J+FJ`Lofhs%+#kBPrXc#Aj-2c3@U;b@;e+d&wo
zVKXGWRBN;Un#zila;9U2b{FI>mJx*qoxsp90|7q{0uhs8zs)bASWtrez-S?|&ql5N
zMV1KdshQYpx*%f^M1#;?B44g|<Tdte{{iLmFp_@=DEOIbQ1th6^dS`QU9G?}!axh^
zLf!!MAw9777SV(nhn*>xeMN#Q=mgY?-xvO#!$wKF0`+}okcAJ4_&ui&Xu{14@2ynM
zuhoIkticqdFTFVdLb5neKJk#}bl<5}etz2q`v3iLs(x1wJzk_@m{#UAX5~!p9oJ0m
ztMOnshEP}VF0V}E=R;fT#=)ATUOFIf&{fami!_O6m26k0m+Tu4$Y`Zd3VKt|(&qHt
zh-XJg5fK~ja=$7^QM-!o=Qr4{99l4?UYggW^h-oxpSG#(P+!NdP*5&jn~e=O>Dnzl
zHD8K_A=18ekzjzYB>X+34lzDVk%v~(k!)#y$Jv^lUh}3t<mweAlo0S}wPJEQb>Hn|
zHfupa*{l~8y9U=>2!jR*g?kBue*%*QAV;DX*_-vI(-qCSkgT=?y!gge^O@o;ji7Zx
zqIna|rA2VDWGauV$qS;1%85`WU~4VL@N&A?H%)O|pSoPNOLPoX*Cv`4(g8MIyA-l@
zxb9J1kRwGF2N<{+!3y&QT9G8(d0eb)nGif%pTv5QL8_v&1*F<6Ail&>Wmwg2Yk2Cl
zWjm^m_p3>nc*c%dJGEswJvc5PdTu4SyoA7VVx2|dd_S;oFkVW*xt&WKGLY<g*Z_o|
z#2f0zFioJ|of{vD#;U9b#j_Nc_ua})B1F_TJo;_gi_IS6V>)ZiIaP?W6CfQjmOF+Q
zb^@rjF^KKLQ`oR%IQMLr?9B`?1p-o_l&WHepdW?Ho4A1(f1nm!&XA4TrvnRAh}$@D
zJha}H5B>0~%X3y8!#-wj4Yt(VhYUJ&;TS%zaKPXZi1`n`z=(Nh?EmbV(O1Rn-Ya=q
zSj$}E);&>TwDMGE4D$hH2cCFVuDv_8smQu~BZ5||qCesDN*^M19I&IPH&Qt5=X`uv
zubd#UFs^pGYMPk&IQj<@9vBZGnI{&YI21&MWdOQj9!fOMqLw&WUv`DdxHcl_SYv4Q
z93Uq~#*v*$1#Ws}O>o3+wOwBWQq<3h&*fUMf-S<UheU9uD|qkZ7u^VYFAoqhZc(k_
zY%+;o$rV5P-AD62blwZsI-TrzeHr`44+Vm>V0dC5XgJh?wb^;eiHyph2o8~c8noun
z4Fn0E4RZ!fTI9S#aSXBX;701u#9wdQ8p`mqmEFjB^BFfNE}U3&nxj3Z<9jgUqoI+i
zrsJTqdjmv{`S;F%Mi0(+5h^%xhSY<g@x~Y1pP=f~ui3c0N)(#`IYRX8>F?zr(vE|f
z`r)W~K4S}&Tz*CJ0v0}^+<_lM_C+S!0Uv?$DFng0`$nMJ8^bHy_m=>p=C5N@U}#SZ
z0uZT|KPi4X-9)C{p6a<9e+|eoOli<c5+;bT^?Hi?8D{=s;i1_D#Ay0F|5Xlj49=66
z;*n%N<5EfH7yEU}5Rr!FeF>EwKJ$=|tpdoCWZ^vu4F@!!jH{k{Xe+lBJR>XW_-+mW
z1D{!@AA$14nlui+YB(u<K#UN#))T9yWL1+T#CHZoi)%kqsC2kn%z(^&`jy|o3~iQE
zJ$7q^m$9Zx|2`c=i%y%MlW~3WF=ervHX<+It19%onDo@ftBNgH?6P#cSiCo1@1;ZP
zRIjztAjUwfeeC_wD=xfv#eRF3W_Jgo0w}HanG@eV{E3h;lD`9i(UJJZY5FZH1RXgl
z<xUFN3Z!u#;9I(?SyUU!niJkgogQ>=NAJvPDNR|-X}4e6n9!-!%cuuVYb97J7#Exz
zmu?Rz8>h<eR603&*v6)&IEJW;>A$IP>iA)95*xFY@J(YwVC+?*7`+vJ#ed>7C>S7r
zIonAVyvlO^rdU`7PxUo)tqr*IOFdEJ<3+pRMa&zovN3}F4?q@tFt#TrGh}je?}pbq
zK~aa5pQX6RtJX_i$Or>o?Tt{#uNNcYu(YV@)7-)1x=?%dTvR1t(6Lef7n<>rfFIpB
zzIhWjdx@A6SxJF}iRBAC>JW_Ce)dxR{v>t=b`avOU%fTi$w5U)z&7W0<KWf9*IL?%
zr+0tR^q>O7e6B99lQ$X{y>>V`hPFr+KE@{Roq6yB{uT-`vkhu#<-Wv!dn_OJgiYhc
zIKIar$WAUJf|`JpOmWChqqi>cjC1H`-|)Ud?N|&R9Lf;2-${AS0@jfX!H*=ovWs}j
zR08O1w768V&!Gt>*t<0=p+7;+wcM=Xq4}gmJ|D>(sf{%2r@?RU=znZ~rz-qLuiu5@
zb%yJ4W3fLADaRPjrZUP-#5SI<G?@kU3>hdm2~x~ZKS0miF1<Pi+LuyAs}j&9hhw}!
z2ZV+a!#vtHADoja&w0`YfsH+(#S58f7Ts;qqD=%MNW|B%4G*NOVxtD_z{LVM&RfM|
z#W(9!j1SkutgKrzr6mBZ7-*4yeJD4eamE7=6~qOmRl#RgQYDaWuLfX*XdurljAqNl
zT*?ikO>aSG2VI)Q&l8&Dn-M9z-WCNDNj`*-(NsZ<!BYgYk0}<=8ITm$biW^0j>6x%
zMTXL4)*cKGxSI1Re$czX;iADcz`!*SHz-lTO*(sMbriuVqau2y=jP^WXXH+zmUzKo
zIvu>_qkyOJekXuLa(mPFk<9sGU;4mhW68iUXK%Nz+_B5$BI!*6w&vxioUC_9q#rsl
z#0z+d+lRC}Uz94DnE>p8hoiIF69=C8iyo7HjwxHbI#vlv_2G9KjSfC#RxVoG516#7
z9Lh5I?CZ9OFo7>vHpnxO6DznO7`plpU@%#ya&9Z$V#E<Zp#ArkhZMor>kwr|9h9j#
zQZ9rF)43lC<dNKFQxTiV+FB+)6P}u@ovfFYEi-)1Q{Fy4dAlGY{yTAZiGKkSq;D07
z1rQ}~2t}dMR_>a()5a&>lO7sZ1vYzPk^0ZuEjy4Y@OnS%$<fJWzM>NQ_5iJOB%$+D
z?%P8_130?@8aNu^z!!2K4+AB-2@VTX$`ut_l(j%oN#=LwXpmUpWza<CAc=&}BT$0%
zoQu4K4uvbOBBxtHNn@?@9kT2T8Wg@!r{w^T$96G2IG-{qc}Jih+f4LXpa0nOiG+Z{
zV@)vzrv50_dF(8K9-Y@2A`NeVjz;mVr7U;|6mLN~QyF=QMQchTLpen8Rd`{Ic7+%B
z05f5ZP)yT(0uAV1^I@J58~>cea}q+3t&>KrHHspSu>k+@iy$6PLN%@A0czT1g|c^P
zkxIF$Vxg*0QJA5_BM{KDY5#hq!+C=l?hU;IBtNu=hN~?d6BYrbV9iv$W8|9a${WA0
zo?qSV9<`CQ{=yp{0TdDgyHp%=v5XK9bm9_;j>mJ({bg~@4wNfeab6qIU;HoFiFB*q
z4sf}DT1obWO-tmb=CI!{I2KT?vkNhqsp>0Cki{zsTF}DAnisCmi94Y8&%=(yOt4sh
zTk_}b*G6%&3`ORu`b5G9`JXTLFuv0F7#grX7FH$DI}ZsP=v)sAT&R)Q2{gI7%L_T@
z&pj!96Gld`yvZWNJpx=Hu9!+#7m7mnCF&;-Vwn#Mzj`Ju4x*&0lIA<tq%U5&*`t1U
zfU#$wEqU)arqx>Ouv4448|1|UrTrBC>y!Wf%Jh1|9Zc<Top`wzm*k*h81hwmT7s>S
z5c+_SdU1K?Zkph5(?`jHumw<9dYI*O4Hb1#aV3Il6W<j+;FgL$tM^FqwNQY=h4K2L
zQ(b91A>I>1GYV-B@;M3y-zV;NP=*{Ky*#c*(93R{PJ0rxbBNHg0jgsK#5-_k_CSMh
z;SeW+()=)aA?h5*M-s>D?qLKm0As4UJG^1m2{u19O-lUyBOh;hx!!Eq)P2P<D%k}b
zE?W>%2UX0NwCMP7v7nB@@@(KK;VQ~|l<dyXQy_}kB(`bB*#WR(BnV_jS8#cjcCU@1
z)_BV}WG$|gM6Z)Ry#TKpbY3N(a&;VFZE&#<r!luPS#7RG1+7M0%yk2QJ~@0s#{CRr
zz<vtwN8i(M&U(1o(5l_a#!<j)&w30I%IBhzp`Rd_bzqZa8Gvsk;2M?y%Tb_itCa7{
zsXy%%HC?eJwQTCzk1k!Ud9)@jf%W4xDk-;j@4o$b+MXTH^uT<Da`W{0>)iPr5MQKn
zBS)k7vCB^h?U`=4nb(!?J4+N|LdCH{wF!<3^&I;HO_63urQ|T4!=e?}Zo`f&Kf}?V
zA@c`Z+pl@?jJfm0MZOAXN+8`5eEXb+v-hac?Lo|oL8~N?Ck)1emU00JJ_W7wq{=w-
zg4F5Z|NiX3B3M<2gb9L{u!wfD(jUNN5_7<XiAGk~uq!6=E^Z@tPa}F?q=*Pl@lI?v
zZ3p26Ep66!r~BstoQ|W{P1VksaMo$eB>gEoMMYZFH3F|xbLz!MuZ8eJ%(h6E$_qZB
z(1z2YDALl7bL(pq;%Vr2F3dmR7g^idGx={y&qz<FQ0V)l(rJ*(>sIYEPaSels`Q<(
zt{&aNO7o!q=dK|68VyZ>tx`cq_UYt#b*A-Pn4K)j4G(^9NQVKOh^qIO+>uf}*fG@h
zNK#3z6k!GihV7Z_No(kv-sVL|FYCB--*@Cy_~#Zj;4E5RC<MKM60EI!>bmz<s|D^O
zO2|{BSD9Rb?}|aHGi6j9W~GJqr(+OCqn0-2dpWnU>8=Pz<3RYS4e#v_<kclN&~?ex
zSSzZ%j~8`YDs~EMS0TFx*+IGi;NQnUE0{M7%<SThjwBfK&t6wzMKZlkxkEc#ZsuX4
z_s3JEAGU@Vz#RD1w@9-}hRqK>JTDF>KAs_pT)qAi>KEShb3Bge#k(Z~l%SHP2wp*V
zl;Gi>=6T)}V}LS^y6``sh!c{0@?w>+n~ZwHd)+|Y{=xe>^}BE15+dV*79lNR(k5TA
znk|!JSDNh|?RsrI^TsoU3)(b5QC_r!wnT9zH!Am2eq@qrS-LG<tM9vG&ft88hF}}o
zi7GrSf-NFZ;woSXkN2LI$~e<aoqUJ@sp@%}x~S7qsrQj<3K!l98K6rR$YheZ*2Vqz
zGYbN(1ikqI$2JOP)fm~_r6t=ydLVZ7EAoNaoez1^2xAQ24yRW5RVoi*P64+M!F5H`
zhN-nj3A<JtGujN6RQQiM8anHqww#r_gJ0<Zvhe3L0&sQDFB<gj$7jwLsx|i*x1k{w
z!_huw<&t8LZQBG16<mK<mbr8bU~HHWtf@(UppF>a-^<c2O&`|l?O{BqM5ZYw7+BDQ
z3Brmtc&HPnWHBabntw>zS(8xACz9T;ml=1}yOTD%EA(jmUSXQOox+7pJd}9rd}sga
z*uU4&EGo&LBeQ7XZmebf6;9*LSZ4emPv`=YuiRAiDvo|{YR1z919YF9GhMGB54iFD
zdRyt|YlVOSqW{Ctj0a)4f(Wo%sNkN4Lm^H~FVYNVOXKi=;<{ZLtun>YSY3<GVB#i<
z+ECNz+8N7_z23CCLB$ivHE&93cx@DnOE_M^&%8BN?gv6egep7mZHwy}r9gfMght1P
zzh&LacFbL^a)%?d;^o1?cebIt2z#1Hn$fSx;m-UHT@Kq@xf?E*5syJS3EOAVlvZb<
z8KC~O8Q!STX?q&!2jhr+O=sr1gShTeMS0SS9Hn#He*?>Dieg&A`~JP}4!=$FY)O#!
zp@U_)=}Z+4zeH@?hyFLynSLJoST|;b1-Jq=I!WwfftWP9dnY4&A?Ur9npqOM{&2w>
zO|U2tkFi8Fno)`aG6Vb#pFHR-eiYrgExiTD7+2C5BL*4gh^d{ly`hZGQ9LCSPjL6;
zLaTDI)*sk~zuKd((jCXoE9vTLAH=3yX+?G*CtZW6watIv71_IE8^O+>nK$j?wcE|@
zC=Z?>3M=Ox5dQ)#_FrEFZy+z<zrH84e0Bfe(t)8AXX2s)o3iLQ_Pz3l>Z>!C$+Poq
zEw`}6jJ?7B$}*edcdiM9qW(g2c=&Wjh67^vo&nCgufsyWLg~!A=ljqlk)@dy9(H#~
zNN7)ex9VV8xT)ZDrB=10k)2xT%WLrHE9b5D&Kvsv(woYqLbxF5&5k>MzU+vrI=4|^
zWtbdPi>6RVcXUktyz{T)+`#I4OtBI+5S*9F9e)Y)VFTvKef@_kZ6rqnU8U|#a;(c0
zlvK0=x;wp5wKrPcJU-cx;WCN)l0bHMY1dtu{gtY9KlJZMwmvBYf(WK*T`U4iiEQ3j
zF6!s+`!m%Gnc@DSp^8DRhm0O2&<tYENuLgg=ANXL6JYBM)qn^z&jxAj%K`FMKK4S%
z*nZ8{FXv=d<8AEsD0RDKJ-u%1X0}O=fD^=Y0TgrAIa6!R;*s|eC)ST4%(UiRor3}$
zwVT}C2(V95J@3Cq)szfkcr#}xd~pN>Q{q9GeG1t8a3siFhhN@~EBu%|K-D`oT-;@z
zwRVznw|;-I^b_f$HbQCZ{!6RlRdHg0Xv*l#%JiGoBfw=>rhY%=JP5|zJF{DChDf!F
zonf|}#r{?zn>ud=^2g$w#I)-tSrJoc9b&dVu8ldql4-sMTeQ;B>icPzsj`oh6^W!{
z6vd3*?t+(MxS?iCt-_ib{57CeoSIavQd(-{uSjyqg+}}QuMQC7)l5fqFsT4cqC&M=
z?~Px#4->^c?Pb3?Am-JmGq`c~Es8dcx3n}gF`O6o-$Drv#I(JzIVtL6`n}^Fl71b3
z$hbU@s<VcKe1D%~|78ugcvrxInNtuKvOmS}ZYho==`ImdB5j#8)28yLrmmdLC8f&!
zo<(Za<iO?v1K|JFQmR{rE9KYh!neMREqpgJSGn4s7}FCHEVlff67gVZV;)C+fBQ1e
z*+}aRhOR3FBl-nnU>GMA6P~k5!mMrb=>C-SohkaeCtALzE`*Hp*NL!c+qYBc)x6Pm
zUe{`AHwD*M+z+Xui7@6a)Ud4HSH@({F$FQLq>x!AUelVoLmrihAD42&?yB@4{#aQo
z9#Id)Z_7m^Lhc4qd9^?U7~WZG8wk2kT{xv9Q?8KhMzQMMS9uafl+%*<Wd5b{v&PZm
zz@c*hnr&rrfNf?R4mz2`HVQ;P=DK))Y+kM(0ReBHBYmt`86fA8r)M%n!}9BaWyR;q
z6YmlgvlN&gC!lYqnoccCt}`E=z<BMR5~Jxf^VP|K$`6$?(cPAG)2-o;9P!I5hfBoz
zr<>JdC)@K4iD(70uK*79Q{T^5k=4kswGr!`a@+>*nYQ(EyEv&yOZm^#wB9WZ?;pnF
zB%021KWrJTR(I}ySoDd)m7$SJ<n9PcN&VuHoyLLJ)Zh@(b;8!x2A9zA5-<RFWFYV(
zawJDKu^zDM??Hbs_jN8#v`3&4fzHpkQw`^wC=<UGKZVB?v_H(<JWJU=;@{=4An2wn
zCIC4ia)gT&?}F}JP>SSmgt)!cM_aMG3A;Le;wc^AO=D3;UD8O;Jx}7fJ7ro+_8N30
zBqZ!+f+xaQM-nOm0LHWv>_rbSE!r{_bB{?Gkdd7pz*kFt(zyTu*=8NR#J>-V`tZGp
ztOM6X@eeQ;`kY<F7<ROG!iVA^d&<X=i+a@>J#H8-yO^~GRf{VF1dG&Hy8Z~ley#z_
z10CYQYaKSU{Y@Lswy7Ts;-=duYOFNgXtD@}ita^Z+*C<;p1JR5QnP%{>BSx*&!hYm
zgBv=T`7_C+<5}((*PwAXc4^l@B?_u6V?RoWP33kT_A;vX{hc=p0GxA;lWH>l20f8W
z*^);1SvFlS{3Zeyqv&dZN>84G!-0*zhNFf-sz3So;bW0L=SP^|cU9LD$QQxX{>qab
z%a*`DIJ*3hUmW_i#Vb_`jZUD#hz^ZfX69mJ2#K(WkG{-Ljm_=0#(2)(9}XS~Nx`}O
zlPrmMpVg~&>IQqHYY9rJS&%JQAOs7ihT{JY{~W->*m9pY2eC-FxMm$+TI0P~osxuq
ziNe6xs#<lri|*C<p2(Z67(Uz>B)~s1gSqLz9P?8}IC-U3fX$=EufxfGyxtM<1M~o;
zshk|_3-XFi$R@Q<91h;KFQG+UP4DVwx378<8T5SDhOF`_eF-98=K$CQXQ`W~|CGL&
zd#4sItoAWJ-mu1rjxrTe^y#@}_cKHU1V-H<&?J?b-}w8)#~(IZ%aqt@X!XGW4=;qq
zt<M1YHS(sc=JU&Ae$V^-dsWH};Gs3^6pA(bj%6s#2aY8KFUNFfQOSy(FC?QU2%#z9
z#Ch*d%a7?fomu*?liznCWGGGLyBegf4rn!_)gw4M)@~U;g>~kd4Smi2z1)H1Kg$UM
ztt$(<Kbf8Ih9z63Uh+##g>%F8>hO%rSc&Xwe@vJ6#-esYa6EZ$z3YP1D;O*LlvDrx
z<oyE87{bSweU{Y2kpg;*y<}*0;y$0uSf7pG1WB^;#VMPm$7`{X$qJ+Fx)#P*E^sXL
zH*V~Y&-cCB46M!Yz4c0)zPGNyIbKW^$ql@jSTx7p<!!B}pi_WxAW%^n4Fl_33F<4U
zbsr(X(lqQdRW7Y0-ECPn(BtFa7<1{^s7Qp3<UEj|Ohqu^QlhAX)E&#zZIGf82{xo$
z7cQ#Zw^>Mdy3-=T*k(05^~Y;HDofL56FEGcxw#b4euIvnx9iy(zeV7G#qR=fWjcE&
ztGISgh&(Yb2k|B*AhXIdfUj1?nVnm|3>fOnhQ%_Y`T6*ki(y$?awMWDhjZlwi;bsb
z`%|QE*L8Nr1BlWZWSmCq82a%r<t~D_f8D-3Z}${M<8oVsh{FywOH)Fx`?6C1w1!|d
zbL8-5>3e=r8IKYrgGg*DhplRW=(HZ}yxa71e4g|OP;jGHzw-v0PwHbV2%~oMlR1*M
z&;}<`Cz@@Uo$<nqdKyc&#V__<(s#~C^WxJd64fi=zdxD(E{=XzN%m-B>Ztw6D+48R
zZN|;}8pEY}q8R7TL>*MMhZ?~=9Iq#46mWZhcAXt$r$LxBj2q|Bt(sGU(rLQ~O|F6y
zwQG7|*sLDeAl7#sjrVR9H>LT7y4Xk)PxQaD0B(;Zb-SP(zI_rDg9}FT6@Gw6|Jegf
zHn}VrJ|!^4sBq$KeoeZVULam6fe=pwE;^@!$-7=MECl=L`?Mr^9uEjCMMob;PCL|e
zSc2(k%Sb%F1>yI81t)3ic%ZzN#mJVuxB#4Nf`xk=6yR}-(B=sk=bR6?89@?blP=En
zC7>}vv?t3Aksa@^2!{*RSl22?%ME4oU6PK?JWwk1I%Ql{tN{$*DK1zqc*l8AFUU>q
zpMV0P<+LU22->suaua0Y2~bbd6h1rUQ3sUu(PI2~h0zE2O0Ff)f`Vn|et}*Gd2eFG
z=th%^+v)V3Goj9iUL8u-PWIWSRKd8FED4zWqD4m=;8s*!k$Is%TLe)|g8dVQ(`vP3
zfD0M<VwB$zkYLc(*ovjP!j7Ot4fT0rlgQD1D^s3$WcKIRht$JQiz^_pmWR!!BCsda
zox{_3gK-C5Kb6~>HZFck6!D>A_%3@xIbYGVa*O#q)3aIuxGQK5sAREG{ROEM9o%<N
zb&ETXRrY8v&^m^ho>!6najXA6(ERI{T|AJ_#0~Wx+i3s#N;r_`qp43ErS?8WM0vNv
zjYE72^n-=bDb=1d?|RuUQ7v4<>RstY4-*s|JSx2If3#`kjoaqw_C9;38442d{!o3g
z0pz?Lg9Kd)h$l<qhmW91p^J+PQqVSvA!94B%Ip15X>_R-&mr{?-T|god3dt>=>rh(
z3Of3k+7=&re-RB%RO$r^(pAv<`E>iKvmg@Ad0_p~&mD=cEqMGKQb|SrhQ7jftOxiO
z&Oi@WaOmr$;2id4P>A)d=;_gZ-9dtNvU0scz}SJPL{u{oPmveO=gXRxTnQo}P9r%K
z+|L$6?Anl0T!R7fLUuW6`fv|L8I{2;oAYpUpk<7lxii|J7Yagr)La3DYgEkbX>(Wc
z8ugrx<NDj$+6Nf|G=KuSOJ+*a6Fuj0tYBLie`xgyqSna{Rfv+s03oQ;In$sgb~G%S
zK=oLG%E)!{VH_G{rD4d-+Y(r`c3lUAXj+Y*2^nE;!Z8Qr5Dh@JslV1OMEDd>7Ns7D
zrZVf30in%dOuf-JNl(9<dJ0en!gw9uqm_Ar1f!+i`KtmI_v_oDmIEGtosw*6Iyrp*
z?niW^;mycz*n|&qO6-Z&t=vOT<-NO94;$ph-pw<$;17D&@rz=A)DcNy%@_Gc?3Pg~
z%w)GYAmw$U5Je}l5NYp>b<>qD^qtOv>qRmt*|U>lv7^E_k4;4*3p-v#E{RQcWCHw|
zU7|yh;t{r!tyTLuTYDm9cQD@|^-2>#xqZIUIQGbs!3PWNFd~lIxoYht)2IW<76(dG
zMF)8)d~Q)j7-+^hE{@JPpsy}QLXvsQJ8+n-Qf-#J)oMx&bXwuaJeTi6@y_P_U@joS
z@~ao{Os`AG4|@r&Yx-cli=D5x40~T&+{iuvXia~%CQN;1W%}X%ruf-wwl4EeJi(^T
zU&sqetZr_3$Q^>DQ*NWVj@tQJ=Ecoo6rWB~eO_)4C>nSG%{;z>E^YBWj;(d^9|8h7
zC;(mG$S2<|<u$kgFS{AfI=x~Dx(bfpCP%Jj5tbPlIJkiZ@yB_{jVqmD7f!w?L8I#}
zl9>7ST{+>=5N5#K%6tNqP6SYuHV44@Y?Pa$w2INH*DSVHTJYi#BAOBq>Ctv{bj0`6
z_OX9(APm<w&CTyCbW5sip-m}Y|F)CDW~uI&52i-bFrHXQ%t3Lwa~ZR0kXhUFkByz6
z2mY4**eRYNJ**(*TrozAlTOQGC5l&n+cYd+w*Jh0YjpCo?&)_s$%O~5w|&a7zyEJp
zFkd5w?RK_{El-bcG!w1&pc)7`RZJ1V9s*t9KJJX0qT%7CFg=a)$Y@TXiUpnsp9L?&
z-t94Cb(ok_%}2T2d%~(kxv{2)yRALiu|3pz#DPlC-u1INzPGfsnvnfY4d4{f(9m>g
zB2vRkN(y<10@ZMw@#@<wOtHNw9KK|YgEJ;6P{p9{{;DvZF!O*_`+Or#1y#{@W3l-z
zn2%oU4eKoNPekN54$!p$=5Ln1yfd3DhGzlJ=!qSr@A7hvJ$%~bK?!fRcu8#+3BBn<
zb7WIvK<4m|(3Zkf-Ht$UAA~iGIuJHrt8nzotH%54Y1)YN?y1q&?qEPD3x8KE%=S*V
zT=|(dj!oW*E0EM$E)kH1RKq7G+m|FJzEB|e->7_T_!BNqqd#w|$M3)5z`vvK4w0pa
z4Sk7+spWR%^NQO$6vVp4OCET)^?!y$Apv`4ersLJjKS%qeVG%S<Gz!br(8;%_&myg
zpSJX&z#)F>NpkF;H5k~KyHFr!+b9I-%OaytK8<~k&NEo3>(FQ9hoprD=q7Gqgv<BS
z!8AeI$~fWQ%)vhg_&7$q$JgOLon%pfe$4mZ&apuz8~G9t6!S!2%BU1>X*XN;VJrP(
z3l91J{bV5U=q2Jq&gdoTadU;+ovBu;GM&jj*Aw62Vc|(;BpyIluJ{x_&Gd$nlCtjx
zf6Y<MsHP>={a)D9)3boPc6oR(LHeH+$bU+aFVM%YAog{lCQ>L4{C+Ra$A3>S180E@
zdbAH9M*aa+1GG9b@`>PZ7CJ%VKYsroHskj<d}ic)Efm$f{Gopos{hwuhQ+^l%5gxH
zvHv~_|9+*vhp=h~jwx0*=&P5%v8O+->92PnNCwFD|L5UaL3nt=AWEbO_*k`wu?zh^
zF@e=m!v_C?LgUA6hvP=Q@n3&=TuR!IH|Kl(i+I-N_9%YfNKSILGZEX|%m)v5=%U3y
zNXW0Nr}weN69x?xHQd?!EAd||!GlYLKx?KdxqqY7d3o=j)4^AT@=ZI+|E_ArEE04K
zCNrqXY;A2_1s}fU8y(EQr;$$)o#N{l*6P_`lk=}hqs4=?w6p}<4XvD<9Kd5<g40|y
z*qbPxfVPLxU0q^RK=sf8<!vwV*J5XndIFR2`dXWf`hQ$=AN2X|6fxMKBWTpB9Oj<3
zXMn0!9E51d-;>6w3$%0vp~(I<4gzO52Tw7>fl5b(f4&%j2Ny^ku6N|o4R0I+M|=2l
zMo&_#Dw*n~f0Wn+){h&4dgE^L-wXM1EyF`@3|OnpksOxz|MkbRU~mo8f_;d8(lP%v
z&0n6>2SP$}xrd5~ilQU@V=|u;fOQSa1^wLPua^VYL`w!aS7*;!y)(Pg^@5)NuNfox
zngwlDs6E>B&@h}Xd_wKh5%fRbH#3Y6u&h}EJ_z3<!Df0rw?W~mr1Ot;<uQuZ743=Y
zoqm6J5N^3LpYthdn!Nw|pIgvZY3S}48Y%z=y;qVI6Z;AxEA&Ui98~@>$K)QjgoI<h
z>`d0zSEpMa{vTg|9ah!0zK_Ej1W74rq@`0*8UX=GDM7lsb1hODM7pF^y1PqC8bm<4
zyL-|24$k@Qee|67`}v1!dg&!|tvTix&vQR_3}ATxc|`U}Z(n?&9NBL}pns1^qeu}V
z$VHM#69@4o&{0uiQfwPu?dgC3HRvTEqOAe%<a)#1Cr|(Q#<bB99Mgiao8G5Bw4)Bl
z%lzMuy($R*G7MkMPzeOFjV}UFkQ#6S2B8nuLjG7Ni&V6)DR}2Rl&|qeI_P<YdOOQ?
zUEjLptLA^{?Ck6TU8e;q7{JgEChL3|0#@Znp^=fiCU2ASG`Ty8rBv>5ibUWWON2w#
z(qV<%)<&ad-U-M`vcTqs#jbXo!)_kFl%MbH>GS6r?&m>?={=zAv$`E=Vavtf?*FEi
zBS*9~bt2=^3`8S}u-)GDzz?&6r4_pdM`Hhc_w|0FV4GM4g*^Tf1EB4Q0@&Kd`*NqK
zfBwb&h5a+^9&W$r`P!bnr4QsHp_E&*UswH_`q>UxX=LJ}MstTDD3YMlj$a=X@*6qb
zYV845#}zlW4Q>aPUTDYer8~BB4TG}m;1n$YU8(5ELY#!j4P~kp!aY?)`Wj|4F2wq_
zVqiy??Pu)w@0LNmpsc8T$=<hjvTc|q&}8?|8qkABM8$ob{_>FBk43LV`)8@%fmSr%
zA2$oiSOp4oWJ#>BS+Nmcvd%9@D|Ds;Jw=3Hf&Fw=K<Hpf$10$i_Pv+Yt(u_MZK_Mu
zaNeKgyRYNGuBIyoGC&Qe@hLF`wiho~@vSDye2E#qVLW55ogCy{pa4?Mm`th2-i-{!
zA(jq>qvuZ7O)^K}6;yvOA<=YNEG#Svz%ujKKcJcf)FKlAPC>8Ip-z9?W>gBwDry_D
z2X6gT*HiqZI})zEQg+dSPx`Ao)Eum(N|`}9m4LCZdVAiT<dpWcmL?33DMvvu^*Muh
zP}4`7&nKrJl|8_4&d<^>>Ro-WW{tH0iy%T@z0(m?fxQpygpqfUCL;dtH=g1I8K^O2
z0rrs1`Yr?x36m@i+}X7@mY%L*2tPUVz#ko+FEd@#3L>@7HNL^{m$0r%`hGJ+HhNI<
zap2zFx~0FGc?_a1*>eG{sn5j_8@4^-uv%+tf(|`lujGrK*-+zISy}t%uyX`%uxtG(
zBa5<j_kk&VZnRWXR8Lu1hmr=J{&}wdy6|Ow8kLDi9rDt4{v}oz8Pr%b#|RZ2y{ZLH
zUB%ESvVVUL+Y#*5sydY*&&N+=j)ceh*dpu@{c!*5#$>sXWkwtTVsi_Atul&Z<tb-Z
ztOYs@ZTm!`F2rk-=#UX=XoK~~czL`Q3ku8vOr3<WXO#zN20dS`hts_r0aG(8D5j(W
z9`QH@<^kK~w($6(-{!ZDyO1C^gi63_{j8YE*Y`yQn5^Tqu-5ay9JNagI<D@Ipoua!
z`ckdhh*UwSvg`gV%|(u>^3MhrG?ga9F2-0_Sy2t(;h&R?+332baF(w8su`_L*L}TU
z29gH-I7~^YmL(lcg@5h!vsNoJc5P*s8obY9;)VUu)WOBy13Wn7DdhH=93x^k{<D6f
zRFI#Z{~Af<P>AsV`w{=UruZsO(TyrOS=%Ge++K$Lo|U@TdWr+69oPz3H-`1-0RWWP
z;&p)QiKakuH#t>f)A)h(IyCZPv``(h{%V`7VEf}UqqS)(4_SbQjV<$Y0F6GW6`W5k
zqf}i!5_ywiV4^>vQ7!NX>IMF4Hi1USyi)*jiU;OJKT@gTu+4WT&sE6+ia>OeN4%bg
z4f)p3;>shkkw7dQ?_XXyH`fQ+X=_f_Ka28b9sA{#D~wS}D*$rd?}r#>JYAL1e0=uG
z@<6s$wii3qw)GYtXvLZh-n(KQnhtziBTm0}LXKWsjFAz9UTtmYu$^4(P-jVmQt)}-
z1av|23OEfrWtAJ8ElRICf<4wBava?N1tkNZ79SV*Z<KC)UG9=KIbOAsg9f7F71iH}
zRBuG|R^ebBA2Nf|wky5(hoXp(bm(Ig6ci5Y$-?8+*aw50U{6kjdw{bcu`xut*057j
z-Wk=dd;3HHpDDwON2$HT4YIZq3!3-*r|U3~uHsSyq<JZp`}!g|<whbk>sCG)<>K})
z78IVba38?4ew?o7Hyto94}(hYxWSzmEPl-$^r9H~@{+U7TZ%>oGHe!5q1ECUIN@|`
zX)dremhX?}@k`TpG568H&k`NF4DanmA5F~--Bxe6Y)jp(@<ZwW9NK*GUpqrveyR86
z8?Dv-aS**jkZ>&0UsYuGGs71A!13dFL$UKO-){_Zi<($0fH%sbD8&65Bs{Z}_Rq{L
zxJ=meX|)&n?IA2<HW|;N>*6a49_4NOfT)TBnY)|NbXHrN#Sx=gkm#Yn+FX?))Sp$p
zfPp_usVYk7q<MSg5-%O>;X*9P$=X=dI0lA|D5&Jf0qBj{u$En$SXq(N*FG*fW<n4{
zZ6|p)*+agPPG%3N=(`Ovc=(%>(OqYqD#ZffzLO2iGU2=H)3H~~!JEKY+rPQ<;h66W
z<3<1%vLtM*0dJ)<W8I7VQeU&9(^3C%Zy{Yg*3{D-w_F;IDpw|D!^y?A2dmcyK5@_!
z{EM-Xlf$0qOx<~&WHf}B&*B+p*kmJ0^^PXvjqJ{w>@<B_Ln<e%StcdZ8SyPS!t4DT
zx2!;UCc58Tn~~U)w<Bh5IZ+Z`jijao!jVw;XEs3M7pJd!^yr~BYkgKe&L}V%YEmyJ
zGg5YX#re}^#MgUWH*HEGhN)J~MSeLM*-gFCl_mf6=hS4kV2rLFfZ#VHh;x0brtr)J
z$zLb&>RO4cX)MpiE0JCp8)sS1*1bJFV7Nv+^7x{fuMZ}cg=;9aFDc9oOP0I>>E_o5
z4P<bGHzofA%KT49*29N@6CabxNlV1L@72%wseU-*TVzJul40}-72vZ(M|&WoQ(d2v
zzh1cNhLrU@!BKv>-*m!rd9`zpDnHIAK@NFWq|>O&k^n}L2fC3LCzD2)MCF^OTbvcv
zQ;sj_%K#s>;H3`)!{9S4$?RdjEL(V)*isj2yH7ZokmT7dh$zUT#)pdh@~n^{7jjo6
zJ<9YrFOg(!cTq3ZHPSH(#9;yn^A>@eR-d-#LB6%)#UVD6>b&GAK3YSh@Kw}X?QW{$
z7@B@n!baHMjD`(K!F9La2_VkXwBGV`RLS>yC4FO%2CJ(8A$+`WLeogo5;`3hS7W19
z*k#8Re6A!Rk%dYUa&kK9ap0vN%K73)qnjegOe)#7{E@{*L%Uuk(~)V_9ih|5i40GL
zz(n}m$bj_W@DoD(nP7D2bjVBO&tQxq#+|!(3Eu|qQqpwHQGM9ryu~p-boZcL0<g01
z;P<ocS&xB8V{4!qd}fHfK8q<Lr#6gEc@4tZm_a3_He9Kgp)2f%E!b1l{b4Rs{yaPr
z#vv{(X&=0y1DLI2b(8^=a-{3qWd^0wDM`-C2V$BV+rTeq+=blh^aY+SMmr6H9HH2m
zMWH6Q1ey1RH)jSw!A+sK#kfrZU|*~9ZmoKKLUjHB+odngq9K1mDeUDTYv=X5!Q^M>
z-!X=BEJnX=Ujl7zccG4^!r{%LL&9v6jO@Zkvx{c6CdjkW_2;E;SUOQnG_<^L&oHSG
z#0f!Jm0A$CKms8sn&A$5wp{6bD@lGtG#?N4%&K&$)UJYf97z}Po4d|jwL<*kIX4w&
zp2+{4O#d#sfBVVzPBaHiaxxg1$J?{79s5&@NI8ABS5_iZXH4w^EWlG-4|$>*P*b2l
zUOq<U5R9=GH}O!=B{irC<a5nzq@2eys;L@mz9tX5rk09O4x4!1Z3v2hUp>Iw$7Ijp
z@fZ9~yXG^=u&E78I9|b7fh@xI4!)D`!!8qNZ7-(4A(btG?gbv4qp$t<%x=7GvNFic
z%?aC<A)X&*SYO%M4sQ=ggEH*{+iNcD8+18TN{vkLQI&q&&ufmfTz0sTZ!N<Zf?12u
zv8-1{E+T+l8r%e%&clVRw@$bDk68MUG-4t7A}_&Lw`HP`?<!_LN`E|L_M>tmzHb!X
zrOYnE%k!fOK*(M%p(uHe%1?x)=m&6wJOLEj{l}=~P8$mJZ@@6zX`tN;tXL2ZSNlE;
zLjcJa$uPJEP*S(EiU2yCm4<?x!q&_+Yc1Mjqg6MMdYS0L)-fg+n2X(hV&Kg;xX}2{
z-6E|J%h3P?e^eq+E9r75?9;dIl+45v26L?sc82Ov<fHF`3gD^#L!lDF7uqTOXLQsF
zo9<W0&t9Wd^=MU^rX7m`0gIMeyl!(z!UwDm%KW9Lb;?cwyovZ>6n|00fno@e`G~d?
z2Lladeg#arXWeTmJsScyK4*)_I-gR~41m1eZ#XTKwn)+|-yX&Ph5BO9LahKI$lxG^
zTnq~Kj{!TB+N*1cZtAV)se2HG|D0U^y?mmC5Somhn;a5S+)-4eZmeKO#54r7dWB*6
zu@-hx?b;mAdyrqDKVFL8^+RmYIWPrjk1*`8*QKvwC3E;;MZU<3Rc`ap1!hevMLIK5
zpN+$Z46nat{t67VIl~EaP61H|bI9bAjor3*jB)C@hd(YZj1I80=tVQkBfDUv0yv08
z11)UYBnHL1yU|GE^yPJR&*NEDzIiNA#wQJm0Ku4%<l#@PgXAg&(U4I?B(Y43Hig8U
z6`)Apq{ja|K!#r?8UC87d!{TB2WHyd&5Hjy!P|C&h32pJc#-Qxe}|y*694A1UHJE~
z&L3-6n+H152ioJebS?o=i2ik!1Yyo35VbactcQw}kV!CwXxu$7*wGg$1-g-Z6$n{7
z6H6|!1nI5!?o_2BRH{983(Se}k<06(2)#Eh&^(Y13dns@OPY$xFo~N!v%BeI&E60R
zaxI02MumW+=2AoG_85a&a}6Fb8=cdMo8rJ9D9-OEiEon(#V7(b3%-Rt19mvp`ymU!
zG_+HCGX?kt<76VX6aE|FH4h(cZ)Htj8+6PLu##PzY`(j|CLt+IMnXbrbXnoWOy`-d
zu|^qvl|d~w+g2uxVMj{{qZ5NXBZNI2L2F~|fIUd30TSBs#B(Ln1p?N{GIiS^2eRi_
z+3&G*ACaN+^)6O_exz#w7#T;G2oE0?Fha;QMBRw@9Xf*Khpb&}7y8k@3~JehtEO{<
zl2vJVqIx7y?shklG)#@m&ep}jhUNY9{ynN#5r@%*#;ElA?I*!AeCvJ~_uA9p-ID^)
zXqAk^c8?%j^>|_uKOZX5<`OrB=pS0&?A3~R28F(M#`;cyV3fg`YY@p4P+LVJcnGlk
z)ixCr%FWcE=6dhTHMdghfqW4DIJiprgf9Hgdi-~!kHQSAN1|<$EJGl`d==jo18=UA
zYBiEv1SOccG7JABug$dKH&8g|f&S{y+@3SQ-mi@b0j=y#4vpd>r*&R`UQfrPWv<_7
z=gq?5>jqoMg+dx`v-Eskw3!_>E=B5FOJ>l|7`>ADOWd5r#`Q>M!(;**KFaHe^m?_<
z>s0s|q1o-#KGjqFsX6p(M){1pN{05cGP{v?aFKnWw5OgtDR|+3m7`6Em5xD0X}vL&
zw!H~kxj5>?avgFUFlsi#5{s)(YIUO&avI;`9}>Lw{7Jc+>SB*k%4ai~(m&{`^?B@u
zNbHs6$;Rib{>qcQ3{0_(`oV0lZPVLPL!MZ)O$+NnQ0j@qxGhKFvxK{`b!}YPp6fg;
zM=``HQl?Ry<k$H|{dXVzCy06vbBV&Rd$`(qGSsmosB<r8YLUGro9R>cI5uXz9E6=p
z;`y2zSWp{v7$_(*`hqrmd5}r@29@1K_$)RT&CNoa-^~gm`yz`caawE3q<7q(Acsq(
zS_i$B)Qg`;OCDjb0zpp9PHF46!omcWloY2u8bc22&^X6h?pH1x*%RNLxW@^kzqDPR
zpuCF9siEI!=DotGvPUtXXTir?J6d+C36F^2d28FQs5~)hXlN<n;Pj04zpC)x|Hu*e
z&TKSAZc{Tj#>pK63S(%P*nPEXxA5gC!A$9A*vnTwE2Jr{Rwo1nvWWtb0AIq}o%8du
zEL&<6Vaq&T6Y@ZL(dmoyO6Ji#4vQw2%J|YA7J!MWEy9UE)9MA|&D1$m_IBi)=9h!5
z>;qyt@10<4f$9;&_H(+B1mTduE0jmb+3{~54x{d#`FFWL0n7Jtpdk(~;ozOz$HV$<
za;G9M55<edPZWxEjX>C?x;~U<2ODfyjiEJVE>v#}el3AGH?LYl!yf4}S-ZI@UK6t#
zyOmVfd(Ns$c_SuPaA9M3?tFaSa)DMGtgv_eajH4|6tU83e`{xFWvbGw*i5abe?>kq
zdo{0vmVd{RjeC_`z;)m)Gbp9bdPj+_=0>lHwmixHff0WH?*4sU5h<DjC0t6VGGA>H
zf)H7hQssUMXut{sb?&Bh0?kIYOneMH;%s05=+2U!O?HeX4Lrp$FbG{LOy)gD78u$N
zEb<DFi9=SNdgUdsU}JOz#0W|IyJ$<aCt_4wW7NoLwe6`}hfb3MC}gZ<sCa!$N;_gM
zrQ*2?q*;2c0&9R#`0SDhs+Xf8)lOzOpo_pp{DC0I<7<0e4X4?%>W_sMNyxXww4|I4
zG{dFYh19;y9Z(6&0p~`VVWD$B^`7dV#ahX-YQ@`Aybme+b_e7F(NGS@PrBZk`VhpR
z&a7JppPUY;nfd(0@<RW7%ucQk^U6xa+dD5a=#Vrk=Py<6YF#wO6gRWWc)Xr|Yl@+D
zUC}0!z-%$B;Go%RH1rV0?%e2h9aMpidVIs`RO3IHx6prkJ=dI=YV&`dzLyBI@zLl_
zCHUc~?NM}Gb3(%EeG28s{tT}vTERdxlf(U#u(aI3ClwSZADh_wGwHZ%Z0FqTVbk*k
zC}IJ{Z!3Rx`<ovw!bujrvczsF>Q8@$g$jVa+yE4zpKJZ<?vKh9GYYfih=#p6yCb^X
z<J)8r0pg<sWMMC?FjFI&`T$wPB7h1q00NdV3k0bT`gi<l9`APevs*H~DXLg|FL?O1
zS@P7uy<Yzy8E_2?zFUK0H~|coq1Az#CYVGUY9C+F&C~|Vg12FtAB2x)ftrmzBOM$x
zaQ*&$EA=p-8@oQsI<_!3K_@<~3kV31_PpVPp3h-=P6Mi^;%SQlokFUr&R3=^$dMsq
zGZ;D6+BP2pY!I7>W0i*b>!&gxTy`85a!YY{9r<od8x4-|mlN)GPeO9B0#nJ%0q2W_
zM{P`3{(N>+omT$phm{22X2k)At31Jw+`E0aqN}q;*_MlCrc&4>Qvs+K;)Bcl>ga6v
z4EDFm7m<1JnBKhBm4qbn*vOpHOF#koP<%Tec>U4qsB2>R^y)<&AEadJ0DG?r8O7Tc
zp0_EPy_VMwL)^s(5O;aDggjs$xqd^#qX<wo55Gc><{^r|7h6#93ZY4gJ{&<7i<-H6
z>6(@9KDF}Jm>db_4c)KLH6Hmw1ElrdzKh=r)MTmInRS~~LpfnQz1ijFji9Z@(|r^+
zD;_LNC!4^mMupt2Yj8x2Hp>o?^89tHn!yU(RSH{@Fzw=fACSjho)Gk<3waD0UILp&
zM&3E+W=kM`oMS;2sxj{6z~e_h|6b=Ht`>wi52~4=LLX*aOwy|l`qs#B=b*heUTW|1
z^OCVYaCaaKUmv*at{Myh^*K%S;jE$xoCmXRt<B7I07A#DT>4G8`VQcs%bu(!<~0E|
zk9?rIe;r~QI^}eg^vXEBzv4X*g-2FWO!FN#5qMtp_OoHCIiaG#4yQLqR%BM-9=t$e
zRxtuturlb`3tt&PxAT4dHZYYQi4o$jowW;IEWT~$dYnb6No$7nQ5U*~Sa^%WG&Um%
zqNU26H@^=dyMPw|BE+HhEc6(>zf~gcr+LXp(jvz_{>MP+i;7ToXs<~B4MZipNr#%2
z;pkJIwmaEPRp2E^lNb%Iz0o~5@%c5#36Fc_qzU|OR0(^#!V=$J%aPWu>yofV0BeAb
z!dD6(Jz#LfdaX*yJT`{SGjJduR>~zH_^Ed!m$k-1$V;q%R732m7v{|*wsi`3mm4B4
z=oKIauG?d60n7pHTf^)~4y4+cx-UU*7!M4l^0p5<WeSR0g_9KjkFuN(p+bVa{kuyD
zpU;<Qm_%Rdj2yHSOTUZ_qn%|+oOO$=?CTaTo%35qDaal==~WR9=6hU*-Riv38N-7w
zAXG!j(5PAH-Rp=za|rTRfIAfnADRNeU9Bn^zH@&Z0}B{NseOTi1-ExwfKf)K=1uKJ
zN5>}c?o0q`KqVV-@j|Voo`RXeJT8g%Z!6a!Yq{qwP5e%LZC>JpzKPhv3P3y0uzcE+
zEa27x(yU)XiC!QyE(KYQOVtJjqY74Va59qyv_?}e#2Iwxz7AUh;%F6J)9F#UNW|eA
z0JLw9;*$GZ+XUfcQEV?d&Dii3MppU*d)Jv`vG?jz8f6nTj%$`_&O&4Y_*Q!!Dq}cW
zG8)T2@wSahL#|1<EvrPMWQw!RN|rUjBn1b#xC}fLhR?X^!T>+Z>gy1^-OL<jezpb2
zov~z*-CV31h$aHMPBxVsxk@u=w%hJxzF_E0wO*^Y|C#Ur%rX}2>RzH?8;SxAi_V}>
zNGO)aVY!xAJM{8=p&rH@E9|meb<EiD#D2OrHW%UK`ykdjPV2^vjvYW!e{i|YmUIdJ
z39$cB+n+w}858=D+Tm}`<$d$itcL$Q@j#RBF(;)U2$7ZOkNx_%z2BPw!q#;5vk}G|
zuONNM{B7l_uy9-MY`QO^E97GxOGSs)gLYpL#n@rtl&4^Vs_>(6tD8Kxe|O5KabMo)
z>eS-JB_P4>igRoM$bEZ$j;Ad6`MW^-0Qu3SuX5r{(Lb+cRu@_LQ$;d*0I#2p(XODg
zA)QJ5@bYXzL^a8aS=#6WmKDVz-;BWlS%|iKDG_gT$K8`XqjJ6Op*GzG-3@^0Sq^R9
ze%Li3ocLKhV|;NK4Zk#OJM?U(-<f#$B*`oYRRWC#d5fc}+e-}L21xQ;YVcgYQ^Om2
zXL>2S!mLx>=K%_KnEy}_M4&?#+!Yld@!9J-(!<(;ZgT@kl}`@x&!0@!ImDvAL|W>%
zSPWzj%<$xxf4h2y(P4zPMDXm_-outdjq3}e1=v=a2SbuNtUT*!xY@-<MkN?8QvYm>
z?m=-PKLJQ&?!|3$rTK`VY!OE7d}b$;L5q=sV%oOeY1_dwh{f~<ZQWAZ*Gi|LI@#Sc
zhX3Qi?NUUQ+RP}_n0zfF5(9?z?t!@;tI=?b);d46=gt}N7*(SZb&0>AmVLb(S6?XL
z63b`{gKLLx*Gc1Z`c~^e?6i31$8K_nEJm2u)6*;*cJRvOQ7J0(P5a~C778mne<4q-
zD|B7N!_@boeAa9V9HhoJ8km?&%!fh22hvB);GK&h#@&Bl#HhxofkF1+4caWBo(wZr
zRWcqi>-Xg+Nj7NXlh<^e(@x0O%lhS{VHXUfJ~I2*!$t0A1&%it4puFa7pLJ-`UlM$
zN0J>a9Kex#sCwp^(fk{OPGHSw+)O~Nn${kOh9<`S5CMVSj+Gbl`NWX&$E5UnVnRZ5
z=zBcX<>*#7)!_{=4AgMi&`+LBWYLm@l8fp4B0Uz9$mw)!pLL3O+++ZWoJAKr01z%?
zGUo=l?Br|-(DR(5cppf-d|A(}0yPhY3ApZ7NEEcH>e}0vp`sz%67g-^V)!Bce}`mL
zI09@>);pue`Ux3ZS{Fj92cdz82Js&~%Bm{-Tl|<IjIU(rwl^2ArWo<3y4U1ZNDcw$
zV{dBK!zV$;oW2~3FB^K{-=*(^*50f0*zYevE@i8&=F+T^;6PKzJHC!#nsLd*z1gH&
zpE~L)0>Sqj{f7f(df_4+>2Id*p{ZB~ez6c=Gi}qi?(2*Q6|2m}CsXrw0CurbEER_p
z;buF5&y2yv(n@f6R}W3$yLJ^2aa;{qd+Xd;90L9Q%>S=zz5vl0WXU?W5HK`CCI=r)
zbp5gU&s`j+Xi%vo|6W7<2I~Fi|A?~j!~U+qyo~VFw}|>(lq37D&g!fO{f=ZC)9-V0
z?IHv$T0(=IIhb6tMw0QmS7O1msHI!|+y>4yFH2lVJg3(&Tg?ZIM`AQt)(kE)m2Yek
zsJj*Oo%du+vS02MFgEiGD!0R)oQfH-={;_ds@XjXuwqpz3OO~O5*?rO*vuPPAlx61
zp!@C4NRW*S_2X3jqRbi}N^2am2QWlGL&x%SX$o-^eex0<8b9Ncb(UAKMo>;OysgNZ
zZe;9z&pc3xu)I9fcfO!l4J+zP+!ksDW_AU*tlH9q86v|9nDd1H-_y_fC<>T+S&A9L
zmgK`!FW=LbBZp&e<NNsE9(G_JPw1r!VXDkBFy(v{eH}=wTx05#afNcU;aH`w%2n62
z%BCT)tUwlD_gKp7TZR(RM6I1Aiey_s;~+ND2mP^moR|{Z@z-kvwRd_uxF4p+G2?ZM
zh1Psuq7t>`$t1-%g5Heq@HRM7iM=lmsmuGH=BNVjT&U4_n^*ufc8(cwI4l})X)ab{
zj~E(Ob2Aj=l!V^&%^(1#cxnzw=dvPdO}vcCg0;loXMR*8@_ojQGH7u!UUc*$&r9AD
z$-#L1t*-kPO$Psfw1}_xQX$Q5MsH3g|J**um$cpi-_Rk<i1?ep_tN*GB^dXHB!;KN
z6P&+a5>YZ*z(2th(VqYFy#Xz~F`e(l1tc^iBnoh4dgq%xvQ_hye*g?WU%S2nhYbL2
zOaKJVluP6176?wF11{yJrPdk0{OfC{)9m6s5mA$z{%o<o0$NsdEb?zEzrXR9AM%UM
z=ku{Dxq{d2lLF%O4FIg{15&c$iX{_?wjPBLi$8YU9x_1Mst6V+{gXxnRu?q+U5ZAQ
z9Rv*Z!7%zQgGSk>I0h9-vyDrmBMwUC%8oPTB4<1XZ9$Ep^!M>9-57m$;b=6B*5&#>
zls<2ABsm%Ma^vHQlqaTFa?75~)XHO6>ryFcC0<#@4BdDtuf@n_J6B68e^F)$74eXa
zkPLdYnmmO=Qq4KlBCA@&fVW+p7!z+LTfX?-alO;PYGA3t=*XFm)T5^glUZG!k$cyA
z=m9FO>eeU6@oa?&0eN8@WEHpPhMDSQf3TQ1A^@4_gHdn#KTGGI3uRFX3JOtF+`}6_
z_x)6#=%<J}Ysrk&4f8CN#qQT1cr~_}+Kd;zT~@en(`OvtydkV#=f#Y6tk#0Y$LGCP
z5lhywK#`X<8ILTbW8i^u%eB2KSB}pb)S=EYw?{0U&K4t<HgB||**#!0x%OkwHMx4K
zCkkgVyJNu3lNM}rR6(iS;Qn~rdo6B)rQGT>BddC4;Ml%nN^^k>0S4n<Y@{Hnq;THH
z-`Gk-l7NgC^x0VIKQI5^dsQ!X9?&lf0*6vdOzN>Y;Bx9H@8|`!9}kjb=Fh-llVUme
zL>;Y_rC&~gQlcsq%5Zs%ST}Fhechesh?_3trHx^$Lks4?eKUEl%VU&VY)LHK=VD6?
zW37UFjq#b4wfRK^72uCO641&Blm~{YmCMYdT#9QLTlcfQ*2YHsE8K2dg`2DEJp$I^
z$28Vfbd6l?qE?g|i#_tFuu_i+7{4?XI(JZebTA*8M+?UvpH1i2JM0gj@KqTV_exQ@
z&!Co`oTffa6*-umP508B-PsI+HQZf|x<LQK0`;901)tv*BJ<>bz_V3l_<OzsP^#%H
zs;RbkLK&2^Lh55DCpCx!T#NXI3qvbhrjxa_xX<KQbTT=y3ra%PgjT8;<r_%KH=}5#
znXj)*_%arcdin^W^!QJGq!uky^9|^xgb%K91K&I8c0lLr&Q~Ovr#Uv9Q1qUUt1_rI
zWjT9z`k{tS)J<eo_>6k84d+yFr;wB*8*JdqLw+#bJdwx?5+aM?>^73iI3%p_c%*Z=
zi%Y{uI`x>ADfa`{83+GS`>IIRJ8n9I+?Ao^{nlH%KslW<$+YfzNb4oj0uB+)dCPgR
zrP~nB>2GcrfMSaq5*peUzOw%De?cQhI5=d<&!0aFQ_t1fWuOyrNC4x-J(YwBj@{35
z5t?M&3IY!F%7+e`&HV>TZzn~}FKbH)%aM}~=cl+%I4x!lT-0(cPYR7!GBWa<HGOdD
zwY3>}HuI8=QeDBna-fTl>3pBWSoB0NQ08sAM6hcSPokCm_$_VoO^N|f#G{r;jb1H?
zaJf`)I>5A>QsW^Rl$~^`i7GsBy>BV=kF%!vu9tq}lCDa?pR)IbDh3)+{a&+!YhOXJ
z#U{L3tMmQ2z7BeJ_SXRL$rp=ID^PtU42)Us4OE`e(vGY=jhwBSut^Pxi2A{uT-e0p
z*36h<8lJd$IIasHrS6YL7x*5j5Vt9mwY+_3tx~-r;CUmWda;>^yh?*aS8|R{^rwm+
zH#wA{6HWF)0VAVt8Z@cd+VaeMj|-3ub`3LKw=D%@euHRNaqda3z5dJW|NY%l@Z!AF
zM^KU`5&Q9oOi%-~tBhDtx}HZbiMY(8SchV}L$X_?rNatoGVo%GAxVrswqc3mUR2gv
zt9@@PyxK5zKhM3^04L_u2FmAI@SR6JO=<USq1=nHUQ{+G_<*WKc^uPdI--mx$3|#$
z=NCAB`AU}kPsa-3`+Hm9TnYJ~dz-)!MQ#AzV10ECD_PE4Kj0NJ0i4v^=8xpGCq%=0
zSea{N(i;G$ywMk2B;-wuA{eCq(yvc?ucTIXFoL&lTJKv=%OfXw^}w)1j;+Td(G@-?
zR8IQ|&!LbEE!To$RJ}uUvCO<OnuNsf`%h<PI!5rAHQUF+1@NqX$o-qS`R|{r_s5On
zaOJY}|J>p*)?}H1|NRj>rwCkTPO9_+QUr~lk6F?L$Bv0nqZS#@o@QO*Dd#H@ti?Zm
z{V9s8*)?i+p-Oa5KH#dmnB8^S5OY7F%%^26H_27d7DZ(mW~ceo<LA&wZZFyJlSphx
ztidoNX)^1SWYOQd=KVezm5Ge7nm1z4{=b_l0iy46S6Irm#K(rPuAvOYsE+6q<GIp<
z{vux6nAm4z!xRC|Xv|vU`p@0gvrtqBG<Z5!bGf6Vuu7Bhnbbz?2)bc*ye2R3#N_$2
zL!ELX3k%Y}yUu$sXIEkBD0&!dIsJk9a%6y$YQSuO>Gv<}{`%`nsZYkeG2RD6hDsnk
zNbV9)66CK8WuHXMn%ff1OSz81E9lo-Dpxq_ctor7>xmw>i4S#t%j4<l7xi=`a9SLX
zvu9NpFPz`D^xcRRacVRj*nd>u?kn~(+kI!gM1BNg?QVA$aU@^Ee)&%NZkywGUO0sj
z$|~sG2g*L|#Weq3>Hh1^x?WKT-_3SGS0Wl&HLLOfXHvJpxm>JdZI}(PmmPN}pP`_m
z#{rFCZ{@Hs({v&7CBQqHGlQEPG|Ti~xKPX65i`c8=+NXwb`eHWg@~JorAXg`oylMu
zYsjYKLu8Zf&0)!za<e>nyn6jBUOor&QoI7&+WZHU`E6?FvXvz1G5#~^1!ZnI-=p81
zEBE%fsP@zyyJ&fQGtjBjk6y+hck3(gn!j?>9ZKhCUE8U8bIq(~F|C8Kr@;g^v%Gos
zb+Bo_inV$ulbMd$2fGx3=&S)71m(=V>TU17aa)EBK=JEIA1u%dQC+jFj)R>yvpCR2
z_KtXIHBWEHqMl95D9JK2YCL@%xN*O;E)S=Vbp5eo7*qLr0!Cr=o%(OuqQ5sgX*ORF
z7nWNaCOAUoHv&BPVwwp;o{9&dM}rwCtrjou8~QgzABkPV1axCR$y5)rq*fv%-ynw3
zA4!_oW{7mTWPF*{u}$RHIru(4Cj8>aO!2x(@A=Xzz6RcbF(+E!OGBIZD1CREyK1$c
z62~Z1WqKOsAugkCm8BSOA8Wr~w8|Do$bZ;`w`{u(h64QjN`uF8mSZOdUIh_#dX4HM
zK_bF2b4+)K1(}MAuf~^JMy|$o2+JLFihg+&{ZFO!uC~?V+gbnrpHhoe86J$;Vgc?Y
z+q7n|Jlx*VVRE?G27SX^v2gzRFy2onwCaUmZ{qM{d<@FPn%nc@LXCi{nRRcbFcF_`
z>ua%!p==F8O?DX8n)Gy-9x$;V6ZT{dx4(ovMI$6^c?>q3(@s!O`12!VTObNhfvrR5
zNyQ#k{I(VIi60A1)0?q#{lB6R@4Z$cB)6E^%ISfGyK`3oH&-qj4JAakPH)VY{^jp1
zqaObIgNgrV(?8|?zYhUXGCEOA>IEe2YD+axE=7Y~^pzit-0oz#I0b$he;~U#bfzje
zx}`th<|U%RDwg9TgT*ql*VbdUvV^bR(u+e-;;RJX%P>c_j7HvsG)VJdSE{>ZFm$*3
zX46cfnyAy4#nH&@C9WX3^(U>Q-$unW>Vv&rjZjc%-srkRWtOMD<?Zi;f~X@Pq%aXw
zf&IphyWhy{qj5gzJ4XvcL~8eNKPaTjopKzH22B02$3@v7pc>D_Lk)1s{zaPgnqdbz
zKG1{=vRlkI)mH&d4Znz;O@aVr?`!-VCEBNA;^M^)RSDD8J9+cD3b#r%)<+R&;Dxua
z04gxRB71E!+X$uzNkSg3v>#|!8apR}Zr^nL2oS(2v9Ym<e4@2~8i6`(6-XdoXQl&9
zIBIqbX>C->hMMc)GWUNU34gaVpkV(Y1uDO*i*gr!l+*n=SwDY&wdbgf`eVQa3e7LN
z2h@Gk-I3&q8}Z5uO@JBlqxN7<_Ys&guL5fv5W^mX>GSe<W7uvRk5!v~0$CDBnUmge
zTkp@-uamK^OB8EXKZ+Idp!%DMoi5Vk_D7fWJ88J57<}VvU+8#^dz=#3l|%tGn+{0J
zomh#X`y`h7`kw&J8uUw3tv;>qYi(OWHX^xU=a-X>;eMbZHksr9MN&6CvmW3KA{NKk
z*<C{n>brm>iV65;$5KmS^aqni4F1En-j?(@-J}GQ!e}rhF%2V39GldT{JV$!{Sf=t
zH326OPStO2fzPcP&O=Wh<)=g|!W+;zTH}4|4&AGcz8ZT109*R5Faq_B!*}=6;Yt?g
zbRt#8$AInqh6RI6@MB-XlvXofy()i^K;Z+5#`MP@j@z4LEM2)Q$D{$hnGOk4QiWXx
z6}SJNHtN4GD8lX~ABKxf+WQo*L9#CAcc8!=&DslXa1pvDrUVwB-1Q2~?YcsNXasL+
z!74MoE`F94j^KFRBu3Z`Br`IQ3ygc!LS^(*Hu?X2+Itf?!!F19PtU3TcsO<UT>*{?
z92q(g@x%ho`rELKCBHJ`{AZrAEnqoTSdLp})WE^PDQC;z?Wjzl7P_c<jotw_>-;U@
zsRk?rKw37{xlY}kuI_IbiZ-6vM1Aq%g>t6kqcxN=hZV_;qaF7lBhv+S!2iXooNJ^u
z20G56ezQqvn_p<@H!wxhxn|KQi|UoCYgjD;6lWY_;sQY<K>jW|bh(bPT2{jtj+JGt
zmjD)-d&Dq|wU18sST`8mptKLrn2-v%a&_J7$t`LT0<yt~BLA`s2y;{q7~;no-|YaH
zy&-%eDfsdUvF03V;2Tx&|EfXSRxh4k19?-`Sc#4nz!IMdxa|*c`Lb7^^zjYt3I}Vb
z*4blM^S*VB44n9XvR>eDr1^Y1)sEt7d!4xZ6WQ2+31aTP6}U}HyKpHos76_2I8SqT
zKZ)IkV{Ao`g&<jf^o>Lfa1*`M0BPB^E$0lm5y1oagd&FRvNLasT(0WBfbi**pcat>
z(GrL4tW<?bKYm*F6<B=ggM2txzAd*flK5JqZVaG5|E#-KcL!V&Et;g9DFXrkm4^|S
zQ;)qB?&h)4>=!zpU8$V(01Tc>U>?3!SlR-!@c%G2pJ+wr%|R)4cHont?Y@<*J3z4r
zFqJ`W!G+0ka#Z{ahvD1ng@ft)jE^iqN+9C`7Rh9)F2Wa!UJP0_Me4WDjJ|zz68r^f
z63q++T1*r{A0ec>Yr7K9o1^ZWCk6`-F+AI+opK9$#o<?i&wotld8B7IAC9X_NrP=7
zj{ceXcYPw^8@v;_Wl$LaH8RgQ$R%;CUx@$|G((Q!PT<V92Hb0_*Hu0W&1AVu3JvUm
zd3*BBun1AAF81GE02x{97zix02P%p}Tb!`lYs|csG(%0xc|>jYYA2WDRkmzV-%dTP
zd-Aj(kgA#OKL`aQRhd@rTXX@Pkk_stH6$)lSjJPKVF22+TOrFb?}maPVxwQ<dFcoR
z%5Rqhz8sf*p{q^m{ABfYzdwrb|E@1ZA7V*sLkHgtIa(3G5Y3T=6b#_c5gl?3I)Z+-
z-`W##7>7(0PtS-PetnQoD*-KayhiCH&$a*5KeFFNpce%w@d|*bm{|e#xY974NGz4z
zdpF2luug1-IV^T-M@#keWb;B|`JC=}F8M)~V<bCCxJlEu$pJCF7i)k488z_n(gw0v
z=V<;MSW6Qzof9CVPPh<D6aZ1GS_I%Y874GqJB>(rBq{80cuBMf74J+%LdbfB9((Xf
zNR^d`J!%m7(CT(DkKcciuz6HG^hRn9>Dz-N<at}$hX$2S8$-4)Wzao<_pk}@!Qt?L
zS!eLOlYQ&#gg~h+9zxdbTKM{;AQDpd(`c%n!0b6kf^QCLIUiUxpqATHP#Tt5i9WCK
z;34{9uawS*O4&qKzbJ}KsaAhxb*q`0;$ucf{AEobOnzfHJ!2OMWBhq@I#PJp9?Ci@
zWxQjy|3-vn?QS|SAV8yav_Wgx$d5+ByEs4^k{HkYR*V9{Zh?#yaQjr@Gxsws$Fa8N
zn;ZFW!3?LV&zbZ_*c!M_al1*hT&|P&+Q0oQ24zsqD=Sbg(S9rY^#nNu=(;m@ykFKS
zfWcI@a`yXzM}lW>N_C6dr?z$`BlQs!c|C#qY!<?JPY?17>6alJ3Z>5kGXa~e@HXbq
z<S)S!pg7jldx)%j;@TZye+l^JUei;hy<C6en!k0w|6V!T%-{s%OXq4YYr9v0fbUkV
zT^^Ko%!+}omeE88#rv(lyf1;X%o7%&Tr96exC+BA)U|5gt}!56RC^B2O+b$p+q=0$
zL-_m^{PKMK+a<mLL?vW&MZssUS$?#0T7Xutpjntq5c2w41Zm;1p&>>gwfE`nR7c25
zjpsTI&iTM95*5;=4@c?>MEGwFstw25i~7pEMFk-sZe?)!3NTKJuQSX7%LSMLPaxiO
zFggDkNLNaZvywPW-rHKDnCG{$jXp<233*wUVbY&~(&Q!+kNO6!l@JYmUP^=c8(lMx
zVJ9+8)vWWV{Es>ZqwzVA>0^HM{>|3mAt~c5iJ(6*m-#0ICfvohL+Q7P1(kLgbb_Rv
z?*NWF_b*bl2kZ%VE_(*Bt|>}C=bkuKastr?(1PY$qyX?sLA6r5?^AC*S=NRtzWe>2
zQw^&BF;4Nkj>3`#8KCVfNZ$bV$IH}&h)75&4womQVx&O((~avEf{KOAPEK)8s21D?
zHgU$^j1`}rv1YlHV31z<aqqWVmWX|C_gYD61ACkeE4gLh9q<Fl9q^p5vWR8YC=*3N
zf)GsC+Lf+5ffW-Mas^)E<Qf=)*!MObyZIt-@=oB$H2i4q&>Cp17$DxQH^+s|Z<Buj
z1#95(b6H#6?3xo)JVp&FSH$t%_e>@1tw>S6-yQ0ZJb^64GJrUwtU(^QrW^lc9-ghy
zo1x~9SEa-`dSW?-tS0uMMCFs{i%}`?5bopIDFcu`(wuG4CP<mEoLvI-Ji=%8y`Y6~
zOhNlrymiizlgDe1h`ChBoAj_scHdN*KH`3eEb;4l;a5|@1khr>ZI#v3G<4PhQU%4`
z!H=|mcU2U==+sdo2Hl+2`n!KhOSO?-vpf32m#>1Xcpe($i9ov^z`khGeEO~S3{)vj
z8Q-1F-<4^I2MO8<1~}7cbV?EO6XL5cy+l|-3hLSg85KH`5uWmUBmsdJ9{ZOWz@?pV
zt#?KHd+_AyfVc?qLAK5Aq=TiecE-I)m@SCPt-rh48506riU;?$gPVrFxv2QY2H<6n
zshxN4j{_|9_Gyyb&v=>#i1BV~@#-P?AAY#&<(%NsQcO>tPx%Iqfg{3%#kuzN`3ab}
z^l}ahrnJxBsEg-udt#6);4TB<xn&^QsUTBTCudNIa+UdVP&E?9?m3heNb{QYKR*c)
z3fo=jNY$)&48%)6e5Hn=h|b%F9QctAIE=&%dp0h=?^n~hxd5@WA0`N46K(JiQBmO$
zgAIy9QRg3~3$5n8F<n3i5>n5j|MhVKy}e}oi|0wgw{)^)H?L7754pr3!UJr%mmUPK
z*@~U;JRI7-^CD0qhuR*r`(p~5uXC;s0&&Wx=_RB|qq`;`YO&lG)lLz-WFjx+oBK;_
zG??5SL35Q7m$V7%ptZHNz!3!LnuX{G@WsbKv%BLHs3nXbNc&TdE%xAQ6bsZ#O`&0J
zjdU5>ZgXcG2JHwms?@0l*1OM8P#F!N8skUU9}WdjJ@D?A@|OrKaY`I9^gs>w<xYpU
zmERt3+ixi7JtJ8D4#<s`K6RU${)_=x-LdQ$G@j?GtprD&)n|J%6M$4waZgeZGiYbR
zU1ksyX*W8kT>zZ+0qnIhf27Q~=V4I+`fzsiyLN%+aKlOeXGMMhF(u#(MLUlO?8K(l
zJ)?vhj(8b{L-2D6anTg8iH-oB8?!x#Cm`^LVf0W3_UCyD+P13PSpHXSm=J%8P9p1$
zpzxBg43V2d|7kiDms3NwAM62cerdv9n)BY*Ht{vT?%CXki-32KLl0=N1VC+)mZ*`%
zCJZbgsEy;8)D_G&J{o08h7V`}G?FIvCknEIfkFChAQtO)vUItLHisWi-5h?9;eW6E
zZfi$l=|i?V7!aw$ELM!ql3duQ5v5mdnC&J$GX+eiNxt!uT#HR1;_iiJ_n(abp7DHr
z!L{NxG9}u>wtiOpEuKj_^m$8m2<i(g7f$=ig~Ag5+opSK1O@E*p-bT{cfJFNZeaHH
z-8FffXsA%{-BthN60DO_AT~7Z!TJfTh*QszBA?n!qM<${lcrv!LD!Xe-n{|%1&qUY
z51bA_4ty;_&(=?k^?o32{UW$3=yFVCCzmRIF}7?4fz$y2stxCMJ@0lBa3RffcJeIW
zfDS}ucvNv&F(mEqslUeNl-cfM8ja6Eus3o=gSh|iL(cPGha414p2-z4bPy@)tGI2Z
zC4h}Ma>}~tBNE#8NZ|3g6n?>9Uo!Y>G%T|OPlsc#eK6?Jj*cayqHGeig9@65SA+IY
z@eu_5E0*x^U9opObO}jN76gnvVmrvZr{24d7mULUK5~7lw_6Z)i74~XWaq@I;PY)Z
zsxlDyNG9Zd;kh{XSI5a$T_%MNAwxw1-b%EOST^4xf5|QKJ^YM%OJkxL6+jn?&yaTZ
zZwC180erjn@9gCPL{EMGCs~ykL+ZtvCKcF@BZHul+)F4v-d%#Lrb}Gt<IDQ%;D_%6
zq$WwwlM>5H!&ZR{&ve|2@3=>h3kv46Ibxnu<n_Z--*+GJ{mo0xEl2mTB~?<=GoMei
z7E)}A>pKz)c2?Dg=F;EWyp?>30MK91OMQKZQjYZht~LKDCcbt_gAwLRKDBDBh<|Pv
zk55?4zqsJueg+Q0w6x!f-}i}sqz4+8cowZU*(%4G4l5FHRx97+y;CNe{ZFZCy~>{$
zq$?XGdFc`MU!C0{vS0hP%mIexc@&Wg<>Xf@X)W;N$94IJGGV)7&9w438J}%~GezLo
z`1v)VVVezgx<Fx6^xapy_@<OOvf6+a{Y!~Ib^GXxrva2VUqr&f!_U;S+LPNz9tE)*
z+pYuc!mzeWV+3dE+e%rv1PlW+4r`P~;2_u`fmT#wN^9XWT=mWn)ycd)<1a#@dZ}>2
z_Huj@Y?$4zyIV$bgRQF15%UYEhANsiAW5)9{xOcAZi0Kn7aW*?Ut4U?p4V6H4v4{I
z<e&vs@N9t6?kf<)IJdDIyzvKO^Lxu5l?d8wM?sz1E@`QFZTsZ911V+yE;8P-iwmb5
zO$F`e)xo-)4_sbt2HGZmVIFSR*j;J!tC>L}d(0lU)wMH*j_;vo;FAd`cX{@H4J?2d
zZrl^Ku^J(;|9xtE^0PRS)Bf<xBfJX05t`HHexPX3?ih1yMFjPMneCnX@qPN5(XI9c
z5<5IS+Vgk_vqPuGx}LaNh&ioWoH-+zeDZ*~*mXNj%HFxg&4aZo45`2p*4&l4S7wGY
zuuqe{vw1F;v126TQ@eTf2U_~adJ)wHz5;9u+M4?;Pdm?Nwi?K<by@CO@=JI4BOBcg
z-YoP5Z(!kb-9m}LSV)Pxt9EJWMU1k4twf`%joMkzBNE`VU{E5zGnQ|2d^XSRZsd-8
zfyQP^%!dP3O`SFnrg@2}ZyA_l(xo;+sc2~4nV2FAFiTLY5;S?+?=JlE7FtCY0sX!D
zw+}>_SAiSBbT@Nq_sB^6M6RNpRYr2_K+D@=O`3fXBTTsUCm(GO2D<s`wt;d)Ny%32
zW*zkIS9@b`%G_PPOvsv>yJ&^FRXD74vPZkKF&q#>$SwIR2kPev&4ED~tsY&)J!ia;
z^hj<_BJmT&u=a}-YAKv^l6GB1Kyt<19StZ0n9(iG#Vx$}b7|gEQnin5B4upKz|)m^
zxX#eqgH^TX@teoXO#hcK;|yWbU{(K3jWtoL#}bGnnjO<^<as8T)+<M4p!eE!AL&a9
z<yh>z_8l<N0cSq)NUueIqK6<{)Iy$;ky$xksaj!z%!<|xfE!e|K(|hhNsy`vLRsw~
zIsL4Ss$|er1KFE8#p;g84^3>N`P2rO&rI3;)Ppg$f;_%c=D*$my2=7e;KZ;iFGp+$
zj23#0P3_^uFwp0Tk{A@Gg2TJKcaM%2{V{uk9)(g#0(yo#cQY?KtiOVj6OZ-jSM^~6
zv!q)cPzVQCKJWb(YrNYwT?jco`0}sH1L`&F89>8}U9-!eZ=|qb)RQ(}Ldb=A)%=Sm
zrIrz_J6U_b?106t8qR!>!Z7)*Cw9UR8OW-Sp=p5TkQ;$M!)o(2#Fk);au=sLd)D$<
z<o{dd@|7ImZ5SLEv_i0V4w?Wj>LTmwXN`Nl(~#!D6LlUp3mWl~>&MOaHO~Rn*pIL(
zTd(>(q6eQv+3p0o3$E+d5>f`eIYIL0_|$e@*CS?Rk@ML~U6beeAV!o1_bd@m$+gnu
z_T-?F^NCwy(eHwl02Dx4PX!!EIKD)V_M4pV>l6qhAbyy#z-pfDd}!8un%W`oAZQ1W
zzza)sgiZ!Vfxo0)o+6MIYVTb1cX}p0cklzO$K2(gJRBVDT;ogoWqA=oAM|Hx?ReMj
zZ~(>Gj&O$`>noYZ?lZ4#8o7HV!B$!!5O3i4L$+NHu3=EveA}(?-NlM<CQzBCJMT@u
zToV_p4zq&w>7N06!O2QhVvm<wUISSB1N-s!)Xw2|Y{np+YRGIJ2@x?AAA1f~tXXIO
z*)n`%-ylH|e8!aB8x+*z0Zt#ISMn_w*}>1oic{(`V)ipZm%ZN7-l0OLzb*WSBj@jU
zEQN1a8t^`<ANXtc7I@iO9fJuI3XgyA;&)(vUrBKfVp0#)ak&jnSDHl@Y1Jwub6I?m
z_{_WT<i2x_1>kCanYzZ|*iz*p=`)KT8^7!hgufQk4~axzG8!_gVzW~Oe1TVv%i${b
zrKhC~{q|6jT0e}2ID7I1S2Xd<r;Joeq411^&rp&5LIP#65wehfD8a=KkuSBj)(_1K
zd7M8PV(DpiYdsMRt~9&$bR9Z!n7<w}7Knrw>r)-s0V!DAv2?9wEmzx2K6N!pnRiAY
zEyFmn5v+~-Y|uS!E@$9n$TGN<Yi25)@9#NT=0lVED?c}gcrKQI(Iv9kL&Q2qF3FO|
zc6M{TIS|D(5AayE?#eHf*nSx^;Ew^1fTmw}T!4E^G}_?8qyn}^kAUry)6ou`2;D04
za*OGze4UA6Ep-9G8KAS12k^XnFa~K8Kkab4%yT6&;SWTdKk3UpeG&(YXy6^(txd`g
ztap8@+mq#)iEyz*Pl0V=%C9G*&8xtc(1t?sdIuU#%-!dCu_QO6FjH-12L9ekktTyd
zC1-NYbdV#MWh@vF<Ht&5&m!SjK^R7rjR6=otbgDnhKkQuANfmz)ZOqTVK4Ur6$#sZ
zS*>vt?xN&=9;J6q?Ext3K%sLQZ1{x7`s3DUZmrGmU`mDw=eg;?#aE1z$uBSa0}f7r
zYvl^kr!TfOpsm+UVcPLZ%z>WB*_=)5S_ufI%(xAFd}ce+LJ&}sXfN)I2{f@E>OmOL
z-gigT3ZU~C*LGI&U@JVdZ&YVj=_AcCYXWFx3WIv9_k%|FsfyJ$$ww%;ODkjhz+u9w
z5^Mb7iE<p=&pajSlv_wIP2%LW`gh&dz&=-}g)=bix=f0N){}Kpz55Func}~GU`fHj
zOMcER;e#shZ#}&xINvYb_irrHZJq{{a%X$B>3*+kVM~7wRI)tk7M;c#7@nZ-I>OfY
zj_%{3zkUb<1d!tq@mOu6)pO=%Tz2679ISH=q&hS2fX@uU^e0~qU%x3)SGt3YrH%~V
zCCa)ugH!N+x=-wzL;~eX&Ipq>*M~X42YCEuqgoe*F6^QVfaN5FN(oA;IU_)HZ03*H
zCJxXQo#C3aeBi(Gh*;a}OihwaeYI#H%Ab!p4c-T6KIR^3kChiMov;EB^xE<Kv)dd9
zv5Q1d&#o2(4G0^BOO1`Jr6REVO!ErF^gbE<b>%b&%=<eRZbqc?gK<?zR3(GqIY|ZX
zezx5BHzSUhnhopH^0vKes#2Tl02sZ^x0D26L<nJfJv}8n3=j>g_(#NocMy@`U$!&p
z;32FavT<z8mkZpSDoTRPrKP~=HZ_!fuys@?N%Tf!2ze;f9EiU#_dtn9_I%BrYuF|8
zv!4*r;r*o+Ak$i|Vykf-sFv;36=mjmac*!kt=KS{ZixJNA`K?(eXx|rF4h$;mSLy^
z46+p(<sG|jS_=pIBlhmpQg<_UJ8d@1)c^HV|NY0WzKDb|tj1Z)fuOD?Ht`JT2Xl?4
zf%NN+!e)#<ue*k351-S-OnhAQD}a+x2~3?O-k?6Ax1uXRC+6xgpU2`oO@*QSTDt3r
zrVfWkX!Dw_AA4K0x7`%ZNSt8x^_?$DhgJP8?vszt9ln74H#1`%N!y)x=E=pNC!=S8
z=dE9v-+o;XQQE>kZR>QtHSgjHcr@Ygo=YoSZjpXQ1+g-a#-E58TP<EAQ`l`D==-HB
zIw0|<lDBio%XF^c%r^d4$qtz4_mF5FD3Dy7@Iug(&T(f;OoWD6bsC5fS#X_E@kuk@
z4tHCxN6*|NGmUw$;uRIV%T1_MbvN(|{|O)u@u?QN7r_s_2#$ZeiPy=kPxf0FEd#&i
zWZ<!)AQ6#gd?H6Cn0;l0Q<#H5T&Z>7mwz_%e&+2&U(d%q(uLvT<AsxH*bfW!yDrB%
zij$%x5>Ee@z_R9uqq2qFuIU-;)|B4~-ri*ST%Hac6NqoB=om-bi6-w5VZ`DFai$)7
zz+K7P36EYmO&5f>)|iprdC9pB7fJmEhkzyeKR*r>zgms+gVDL5BtJ1(k<YJzh=qKW
z+^ddihRQEsFr#aB#9I2`RJIbRwmelvzT5S2@h=4&n_k06dGxV%Z-l=G#;JYAcze6%
zRpu`MNv*JARO25p)yS(<OS{=h0OKd9_^Mi^FB)Rsk75tqo%rp$v8^HxM)i_ZQbxs-
z<N$w!-iUicq!DeFz9`fo-dO8j{^hz;{KW8bPL05&VhD|@SoZpEw4PjuvsxVlXI-Gr
z(D%POp~)Y}X#Gm!T5h*$Q5^|Wqr0)GowGe3DGMSlI4bMFs64THY4Y`DI`d#W)S~eJ
z*WQ<hL%F|km(!$3RD|p;CrhDhk*!3ENVX)~$&eUi8xn&YItY~|`!aS}LYBsoR2a*U
z-B^pUj!{CE8Sm|!-*W2boa_DL{p0=PxGvXa9&^p}o%{JN_x-s)_x(Ah5hV%Poirxi
zW44+33hZLu{_X2(6)$=QEbxj0uk@=$4nHW;=~C!KX{%HufWZ1v_e~!Sf?=J2{ZQpG
z<M3lSdskacJjpNJp88#!+M|+1$?dP~PYEb#qFhTkkBHMRg{GnFic%9Qzgw7Jn{E|D
z&+y&;ca>vvdA!rrH9xm7#2u2#ALhq?Z#*OIz<OVy1-4y8Ms@pk<n6JNv6rUV`I(^;
zfXeq8=1@~hPnsp(Z;i~NGQXE|jTOO8nzJbs!_+yd;N__PA|%A<(sFQrvU14jPkRj-
zHH`IrW|fbXk!9UY5p6|9&VI(%#9-TJuU0`$*zA4o(&XU1V2jK3>&y<oGA3#d_dq8L
zdc*OVB9bBY$IbeWWvxux%_5Fh(rEQp_C0vJ`*}77BVl!aQmoiVIl_nZ?nAsWl;(XQ
zZEsrF{?#v_@$?~VYpvW?Q*8%}pgi4<5C&jEY3*xx>Jt#5+diNw%SjX0W*;9pFOn?4
zEybE3f{(Z?y%9qUME}KSRKjOeT4xI60m;`Y>7ySaiG3)uG2uw~d1W42Y?C##Z4+8L
zZ3TI5a1l<cIUDLQ)c6Dlb#hzDo;>u#8CtpzaogjnWV;RSIm@7$ri6O=wp<xI7#=IX
zxbaeJ$n4=<w6W@UD~I9vYY34TW~=Vr`tFER7WS>XhO*@P?!o`KSt_@)^PB5^O*$oY
z;kyt0VRc?(U=hFESf{qN8U9$w$&-vM;=-$hXNR^tZU22|A;d0@^f8Mge>beFU*Sz`
zRBKJ9egC^l{AUcl5n%mm(0_evll}1(1XtlrK{SbsfbWd+gFB#n8C(G&kKTtrT>tJR
zs~5aUb%Rq^<v&B%;?Df(+qPpP<n8{}o<Y^{rqqp)Y=OTsL-;ixADzp*(tm4DRWo=~
zJLY{S%NB$A&ofmQQhqIXjG60i?U^d3{5oq=>DHaUHA5OJzj?%yz(;>;&;Q$L#r@bx
zglpfK20G}U@?w*WzXBdqbMK3S6~nXCuN_waBB&y)wE%g|+8g?|V2Ff@t9du1D2lPq
zphI?F6ZAKF4@!Vf{EY=6xh%WTEO7<;IyUQE<UuMz?o|RxCH=h^rs)UQAmMPw!2w)Y
zE9l;USTw+tu5BJ38Mo?(`(~=BOGGQ67bp>5K42GaCJSF@j@sH($&R~VmU9!b8-|d9
zd)ecl@-A+ZDz+n}zeIK|)93Liv8t~{(C>^$uy3pO^6aQ^&h+0r$pr<>L6hBeGlviZ
zg@yye1s8rh!g%HN<oW_ZqR1dd8Wn36ct)%<OQ%D|2<O%!u$zNz$&GDdNo8=$kqAED
z+`rnN&a`83?9a};IdNTl7#fk6pLdz~m0}PEItTvd?HknLjTj~_>1VKkAJxmSCh&R}
z-UdL-in_{VMO#PgUSl0&hX0q8WqKNlKQD~1&7ZQ%(UWbwzdU$wVeF|2LlY{~E9uu4
zCPGK%qif{b84L5IIXO9PdLntY9F=mi`KEn12m*PyEQq29DWCy*%se9M`W*U0xO+aN
zzh29KQ8!y|$B02kL|M|aTeH?k<w3`~M}c;e@*5dW<&GbJJKlc;lC5#vydJmF4iKDd
z7R~hG&<>9oIoP`0x(Y3RqQpd;1_2)K?O2ty#gXYP=i=Dqk;0oi@6PRFz3U4(oUVe=
z&B#QIo?S~(*4gw(UYv}BX$s>(oBTx3UFj7*d86dab*U)k6lDts!@%%RjjcUPW!@bP
z;+K6h_XNOazJvN>=FON$@=(-?<LS_R(sU=j9SZL&`a%_E3+pOJ<GgJG9ao|8J6T=`
zO28T#r<ltN=;)3oxI96Vt4Khr_!2-_o%5+L=ZQErpKC_Nvx*orpSW2rPNd?fZz%LQ
zQ^3|f2UbB^!Q|VQm8A;z&(90q17+qg!MO6<W7<6?Lv*rJr_RL~$mI4lKLa&u&$^yG
zr8a@xKrQ<Kn#RS@539j~QeuL#2l&DYntZ9%HK%WW-+38AyljVA=#8u9QxUpaFUS@U
zeaa^43U{H;^+4$N=+*GN+{+30;8?TukL<8=q}<$Ve_HV;0QJlWbW^Vs+jRU~3>>@%
z2l<<Aa16u8leV4~+k6LhSuO@mkR}g1HSaziZ@!b6*V0zP<BO%kne;wVMx4E5Z2fyS
znfj(%VN?a<`7vh9x2hE?1>=AwcVvcDd<+r^`8m(9P<4FBlOi!~X{eJ)OF+}QZoA8Z
zr!`N5c47rBy4p-qpbPq|F_N&*aKvk!aN{b=?ar)dvRq4cN3nH*Klzn6gx}QJePuen
z{=h?t-GDpT>z6J=;`ABFs&q$)n#frY0TOBPq*Pf$x+dL!aZW{RW;|45!sJ}mOu<I6
z?DBx~fo9g%;D7ZT4xHdRJ$4DZ*SiY_fV*Hyn#v4}1wS(em<X{T@zLj%=>9Q@^zBoa
zb}t6_mNaXH4R96Q3!-RpCnr~M((|;nj%KJ1B0KaHIzWyqPG&-j4U=%tWdjd|Q0dLq
zoCCc8b?O4R#T5ZdsU|j%&$|Khvl8ta7TPFk(dK|IP+b9i7wyE~noXUA`M7Ka9VSgZ
zZ|uKG7Q<OAca|!x%}QXX5BCv>rC6V+X-|j+t#He*>ieAoAK1vQh)(*+qH>|WQ{DOP
zJ|iXL8*al054XAdkIa})#(P*vIJZdkd~>tM1{AHq=GD@cVnk>}G1erZhbj`6yVSNT
z8Cpu)cAt<if2~}G#}H6N9IRcZ&ir-8qJJOyKd#TQ2g(KnTgCY2g^7oIx92HqpAk>F
zCsYnyHF*j?(JVTEMCPBfGYs^SbE8k*J^yBDgdTx;<NH&YNj*?|sz`~Rui}8z)87Tw
zC?|5S<eOhEbeVQ}SuvR!?3cTaY$=05CsZlF<Ao{aNxN5ewP47`)cn(ue{u*hqd5fB
z8+to)^qb_rw$)h;S9{q%^&;3*?cb~TnjUe&WzbP4d^!xXj$IiI%!9piVD9FCr(>M4
z8*u>FO&>kzU5i!-`$^&Hh#P_jd0>xp`N9<Ktjpwx(cH2hFLvP0+FWbOn$Em>pS_N%
zZwp`=s;HvcLV8~J*L(PAl`)bw*Gj!^o*k(4a6T{nM50Y%qh5)Ycyd1Lfd2FAwL4$f
zSFar8if}$oXhaLhprp7hU3<Db-Q$X0*jFuf+s(Wzm@9@B)Fi+Xq=C28mecUzxsgPi
zKI>4HtrP_IJ3BT*y28Gdie>*tN?wjIXak%z?@Npv@hQ(l_sosVc&DOhDI=m@j$Wg8
zpcJ|b&aeY?0rr?Gk;$BuR8WpGpP2b@(}clJ#64d4$TjjykA>pO;a5*9OU>Ruql}-6
zfefGK%$1$@dvGFG&+8cyty)$;ImFuFQtO5`b9x0SZ8F*wR1Ahrv7xL?DxAifAs^Tb
zy}a(AyD0k54zXn-Nen2lBrb$Ou3olXC>#o6b#_>zLi1{)%5TB`rIh^Ivs*excftQ)
zy*GU*;0kgaU(gKvMZ1v<fW=KS-o%tXHLAPeI`!e5Ja_^rM<kSlC$W3NLqhft`?7Uv
zyPq4~l3AK;A7nl#bZg=PvlRyu!T_u0N}MWa7H|y^e(gv^l@a&sbBzMF+Jhzc<^0f2
z0hNGWS2!tNP*yX&))=Ygk5BV&%D{LsAw(kBuzOu1l{QugLxnfuS_Ued$<|ctNbM$d
z4xOKSz@xupYDnD8xEbPV)FElR+cTIijmL?au|QE<t0!fc(rRr^2wqQHy$|#dwZ5}R
zd_-vi^%XlCl254PazSMj6e<#xoA_w+^v?Y@nSC7!pWi-B>?w0wX%aK+9UY3`)PwDe
ztMJ24g(lE(@Av91AaEyY@qC5TKa20g2bOz)p_HO7le1lC43<1LR(qm*rB8dULfzCn
zAL8fEmHg0EZKZ^9S8vRmgF#^(0^}kRF*J|0X30(q=pm~aCv8ofSgBVsjXG(bw&yha
z+sjeDV@1v0-$v<Y6oJCkQGWLbk(YH>hqx;~3->AX?7Am|XxggiSZUtUv}*yAa#o&j
zL-M_unC#hsil&<TQVx?fHB_=_je;0J8-N4WF`mC~Tf=Cb;2MP@JmQimJ=e)@$}z>q
zb+e7dML3vUth9z6I;$2FuGCNU0Ry&Sa^(@<hShxG&68mqpZ!|SoV|*}w={MggwcLP
zUg3>)EKkIGFR<>xEOr?lpsPKkHvfiE>?@ONGM)OpDcmwC?o*X{N0I-+)C0e}nAMIX
zJM;IbW^V6=XlZ^)ATyNpSKC&LBPv|O@*@QAMxd7QMY=yfGtHlr0SeXSCG2S`boM1l
zd&F2G*O5HABW)0QRZ%W!P^yF0i14pz9>cD9R|99UWVrz|0^Qd0_aMyQ&tKV2RBX`b
z*H5mBENANu%Ycw-NkS$_sfTi&`sG4t%9M*wz`N;oY-W<cm{#guT_%;xR4setKB0MR
zYU?a))+am4C`U>c40t~Gn64d{09GW?mus%guu!N{YodMLG=C50mk2UHI!OtrFV20)
z=$KF*jO|PtAkEI79?4X+xb0Gm9u)_c)B+q&YecIS{5;LCCRC<msLIWRSjx`9E{;c4
ztv}7INKU@un8<@v9|YYi(?BX`sUnc99#pK&d47;L{xTThk=zq?(#W?Q@ZNhyY%zq(
z7pFNz9)1Zn<0dDm$1sgrf58pAem%{N@AHzh)|sbuW>^tg=L3#ccG!cs&ePu*IBc-}
zjnEb$GOx<Sv36zYI#mMDBPCnSg_%8E(#<nIVpao%&J245C&w;3(ozAAY{+X}$}e@B
z$t&yALZkFX#uj^q=jo!f`+Xjtegv5N5}RmaHDkY68A{*zZuaB=1BXyJhg;7QcxWq}
zXYa^ttWO-cfeN1O^5%6P@g};l-dtO*G1J@?RqnNzuiWue+iK_SMI)7VA;uRP(KCzf
zn^f18{o>c+E@ztb1(W8J00>>FO@*^KUgC=LF`;ewBbwv*$QD2}xF~(q_Jrr=y}z=T
z7Aq>z%6m4Mt!lM4NOR%j^pQ}%OB&INF=Q=#REymL;HNKZ9=y_mf~(3~d&_)<UJA7A
z&it5<U6?Y;A>R>vi;tA5A&OO5yZg5|UQ5<fIS~--rz)p4tb|mwac^|giFz7j=W2p@
ze5W(ZekN}OGJWjC;o<qa_tpLr`~4||=C_BS;k@=u=Qv>TA1~?dZ4Ql*P%5fBVS|;s
z()F2Jbo#n$T_d7QsBjdoAyzd;A3PveWt&w7^RnB`1*e%gvZU99-`UP$EquuDQo_J!
z>K;E}sSpJgB+=T1w;u{e0@*Ldo4SgS=|d*y)+agPv!y|t{7moS2Up2>J@M;f`GYkW
zj99K!In&JuF|(mOQE>{s&2b#^Fz8?!j_&TE42`}+heWR?kVaEzB?}9Li}c4Itf?{e
zMc?sGlxRIOI20&Hl(IG~f*J#?cVPn=>yg5$+zw@u__sj}9LLr~$6n^WT2qI|7!^ck
zT5JCJtlEOVkZ}vrLWo}uL!&F}!x)C2<T&BPC3%!6J5lnYu1g53Hk_H|6F}U!S}k&W
zvYHRXM!y8wIWN1^F%8;@XWv^i>l@}plyv<Z%+}QW4cOE@j~F|Jda=$Wce?tC%i?jU
zGy$eM<ogijN{XEU|Fu4wO~8Hd3aSecBH5XcpBY_5VU<U#8vTO*stb^&+nbdE#kD2s
z?FoI|LP4lhb8_sxh{&<8{H%8NXiC6joFerB-P-!Ku3*%UuG8<p*jOgu2jLl{{;Nyp
z^>i{bN#j@B&6+R5&FpUIW$PXnai9NOpLBuz%URN*;XIrxpCxn;qeHH9?isjG^H>UX
zKtGhbBc=CDPBYhor)V|U8+k`C_mXPegwR74{RpG|q7Zhx8j6=SQkg&$6s+k<`%R~e
zcCm_UEY14WQ*Som`yEvmiZ4Wd3T@&(tVzJSk#$jpV&zHG9Nco^<yUyV7@B&do1`ai
z2JW{4$sP0VkS)<%<#zR9R2ObYX<Y>sLowqhuZC0PT#BCvgXD!s%i&)uOS-aV{Cl!b
zmX9tCIEIgUef0n?ytH{5lBt4&O?-7aSHGXzC}Qzrz;oTJR=`?*yv8#fx$2!Is5=S#
zaN_ug(v6AJtr5Q++<RXrw*e925+9%Xd_dMU!Msp?hE1=(+AEHoL!moPDLa+e)kGqi
zM<{UUe<h|-imQ9@(m}$9_EVH=4<iiBJjNsa>$*zWlt0YJ3+G__e?n{puK1n-#EU_J
z3ZAHcx22a}MzDwuCr^JyNI=%Lmv=~o>eKOItHJlt&A=u_y;iTQ<H4+d9<ux#<2+GL
zZXD7+o0nK)Gy3Lv&4*<}T1la0<F&JVPZe{X8YdJ@pFl%5|492&dCLz>#0KB`AsT-&
zpKe3*e8f*)I(YL^?&+2Cr*z8rLr&wdwsN?4X%s*;nhuJ8Xq_Gi6~4oTH^5Ej<jz`|
z6aYDYDgBmY$wvTHkc@W1g30_TK}(kmQUjKq)^ZM*_T6S^7Tm_E|K#^90XF}DX%EEL
z7=7`!(Smgwfirv&am*r>VNL$K3wo@*2$CUjL8r|b?!0bL;6q@s{ZG8ZhVCz1F=k#4
zqx*GjnNn<|7MnR$(lH$i1vMU=cQvX6w$(gr_IIwQ&8sX~jFzD4LlfYU3XG-(`JHDN
z$l~F1)!Tj6GQKI+rB7@0lR>`xd?ga-tB)$pn9gRqL4#Ci|8hW_;nNq+EuI0t+vbKA
zCZD4sRiYvAjf2O0*Kj$hTt`REM`T+5<n3c;zTU|3)D6!_W*yX+_kM!V?i9!uXesf6
zo++}`UM*hfvYC=$p>)SYi`9AzSU>}I&QyG)h6GvrCBh(h=ond}(m1zo9@UJpwz;%N
znHAwjyRE`n39E=C*VwY9Vls&?I-9O*G)~8SO=-j99oPQ3Wzzt{V`+EY-0nuTf?&~C
z4OWLi8l=^>4EHARp3ynaqP&hE%OQpcQ^#6_wBrE}^Pou2Wi{)11oI_*3hbZv>OSz?
zdazJ?>-yGvc<AqYc$L$*aEg=>pVVx$$SUJ{JS)|;nq;p-x@zQ*x@ej3%)b0**WQdc
zleD#~rEg=brHjk-Ai5G`G`}=P2BfRQj6%wfkrA^M&9JNsUZMZ>;9j>XmkJ0SF19kJ
zqeSa2HR;5tXVaOBdY-E%p>@JFoT*vGrj#DD;bS#oqe%|XC)Elf+NI+DX8|?1`8RGE
z5EZx$9*cGnheXiViIzJ9<&QD5$CEBFhh^~$e5SSfA}U^ubovJDVC1%9U-)29HxaZd
zkDimqxI!%-b$s5h$m(YM&1*WUoMMeZML{>)S$syFvieQGDYCv6()pO>A5u22sFNf`
zA&k^+lo%=D)ix#LTQqeYpM%_lX<YRXNPe`XsT@*Ekf_wE(FdK71w#=oVD}VM*`@KA
zir)#e>6cuPX&Dw^XJpuQOk_^R98yP(ZWan#I%+TW3A#@m4SWV%i>5wViB$VfAre~4
zhL|Oz?s*p)o|Un7FC^4s)#kE2{9ypdGH4Ab<iwY!*Cuomu8$Yw7|Vzhj>9TSQG0aA
z?GlDuFgmFRB6MWtbToimKT|a}7Fy5t0K@%}>BYOGN<KMhrJ3{v)yNT+Tealr@_fDQ
zCno7~J0`?HLZi$i$?ltoD=W?;&TpcbfJ8Xyg#yHxh7wjP$aMCCf)CPSkD1KitHE&b
zN|UCjlj|B4E5VW%jM|!qM>7#Cua@=?9b6ZEe*Nx<MXg``M0(y%0(LyBnU^Utb18X$
z{6&2Ju61Y7t^1brgbB&9M}76|MoF@Hph&GpDZ_c9^Kv?R**LYL-APyS1eE&RY6%xm
zX@0oxNaX@@@6&94y`q%$4^>*-XwMo>IhQPuO|U4XR>Rk`+6;oi@6xyO%eB3{9Esl(
zAF!;etlg(8Jcm0p6iC?ee0zHdK<!BzTlYdw3YqPOttQMiO-I23^W>w%)_o$IzG}~%
zR?Ze}R?$tWI^UklUArlyqq}(vlznH`nTK<Ul%gil#fiAx+IAE<O|}bDLsVY$!wv80
z?9BcUKM2WJocV2Td3QI}T)%yeQw;(TgWGwhFw_|y@3!Od<503@=!QYCx)4TFlMVF>
z1uD%<6>am`*-R!LUtGPAI6a5kumU1_ZM9^ehE`C2)BGqQ#yW8&`ZqbZme?-Z)PN&8
z7N_pak$u9fdSE!wE(NGM)h~z_w-*}QSG@Dm+@-l9qI&{7mFZ6VXXg>x*y(C->P}Dk
z9Eut3OSB!@884Lite9Yr>Jf2YU76^U@GsFZfW~&ZrJsl;HlLUX22J_HICKG1XGOyA
zPbYO5lu~-b80IH&tfK5U9jhy5@^P~o1Oru0Rs6b5`(cr`tVR4iZV9W9gD4@h>PqA0
zF3+hCG3QRSIHYM-nr9p2#j;nn@^UlJJ#8(THUYe(&yC4SIz4tqnCScbPd?;-{mSHr
z4B|&k-ahCuYgs0*J@f$Vsj9X6rSwQ!s;aZnYjIG^RyuRwuKSoU6Gak3yI=6BD3OVQ
z`iT!yhB>F?Owv3%1`W&e9&ssZ^z9=kDIF$yu(DjU3NeMrTo5C_qJRz6N-#!tW^FtJ
zNUm=jOxFk0g<ew?l|blm`N56O7Aw~f$g~zcNT6a<(p|KteR>p@=BR~G-jE|B->F8l
z;cmX_0a3z$#ZtdVUNokNm2tYn&}#^TiPg!t05{hp_s6LCWh>&r_XjGHXPpt!$_e0=
zuDu1)5aD9?&OvqG1vh^BFhbZkK!%492U%U(SWJJ~`LzsnS!J8>(_GN<Gu^3a6@D8|
zEt<3DazC^Vm1G#pp8OLLr;Bq4x((s3C;|`YMN>;GlIio}RAy4YYc@^iHL@+)xAY`v
zX7|M3RXgI)fRpxSnTm6$J_Uj$+O9zjC`cO1jRI~s%My0O;CCL5T8y~8;Cm<#+a&4`
zmj)_VjHI0%!2h&+ja3Z>+D+@KqDb63M6ye@qfK8?dJhSIZ#dm%NM6^ts<fwnNAZpa
z+gW*xS^7;2_d1iBPi@BDwd^fyX_RkJPG*I<2*ow#@Ov8_ogLt(tCNxLO|KWKu*Bh@
zUU#Wm-AI;9G_&lPN%B}I3fNdMB$<!S6v*7G@vJE_atHd+7t*I#R9H6}2at)gV@4+q
z@*%BpBG1e7%8K?vGpmo(eafV8f8daw&NZ|~80sedmbc|bz-qF|(Xr0`gQJ7BzzwvS
z)S7g@IO8(eQLAqw2J<e92`}iL9QqAN)%}L^J7RHJh6SEi&itgl1}J*N%s@*sOPk~M
zdqU=&Ri4bAK>)H6cV6gh&v_mNr5q9hTn#4H-{vQ-xbG50azMQvcIc&N-z|{%wE4=w
z&U8!0e&Cybmq(uAo5sV6(3Z4!r&<J(HPYtmfHR@b{M>vS^y%-hQr83I&Mn+*Ykm&v
zSjW5vlss2>Rjjq)=F+v3F8bwuxB=|)683O8V(GD$nXp(}tKZPqtdKBN4=Z5EeRQA!
zz(*a=LcBbOjK6J~wi&&f)l&6pptot?HcLk@xu(r&vGFg8PGnwBg|qdV{8`uO=lX8t
z@9Oy|6Dz|gVsX*jSB7Xnz!u&x9;wTv68@K%<Bh09Afv0k;B!j{r_iI73$4WkBZ}b5
zNif7$q>hfTieC%R27H421#YcLVhMXUYd_Od5VoG+G@(9W!Wq<6sd-q8nb2C5Zf<GS
zF16%|vQ1iE{}Qze2dV>WJeLe8klj0Fi29bvHO{n!6SvLx@R9Jc#PY*+;rjcKLZFe_
zCiv;d&8QPbACXG~e5PdA_mqVm@?hM(Rwl%QuRT=!>MnMqt)Sz`>3}yxdZ@tK<U{(;
zX3X2Dg>u`l@;labAP6a;x~L?;S{+~3Jh!OWxrgJKcx4nZYXr1w4qOT2RX9?7%E`Du
zklsY%+2{6}jcsvP*oF*UK^URkEe@x>oc{@Cr@aI{v<RK!MbzsZkDPbQV^r+$S}Rf#
zAs?u$AEEV=@T8WwDuKO}1(LcE#bAZ<YA#hZxH4sNuEbXf^Pr5yRlAmaqkCcYLwas>
z<f(e*T@_v~_pKE8ieoO?dqExcY-)d5sJ8wXc7msiS4y%E3U(sMp8H+Sw4nvWP*8@t
zJbP27mSWSZ*(V0QJuNM-s+^NUszIH#5|?jj#p(Z&c8m*bk(SL%p_B<2h6l=XszhYt
z7aP$@&QLCy)>i8@eocc$yW@3%%*%oK9nuP(i1!kK_w?4pNQmIey=cS@DdsK+_|r_N
z`)Mb?$fRArx@{FSkQTfPmexz6=~Uk}Co15`R3I{lylbCA-N3m$itdx?S__?BWNup^
z79oq#<esW!%KGAoEtwlE*1o^IypzB^$i;hvjfuIt24huE>CD!pj`l|w=|EnzV8JC?
zX1FQZswck^Z7OHL#F(y$J)k8>X&HP`w{wqQ!mxdfB?X^zwZ5oG*^g(SmKtfIoBiQ8
z>ALeVy3=FYWf8*qc-nZ4oB^AlM%f%J*qk+8w+m8YTqz*<>Xs$n(z1W={-bBB!4)Gx
zBBeOyc&y6ARaWGT9&iqEVYjOIo8`nFmWYzqv?sh5n>$T`wKO7Ohdpt;B|7ai;06x8
z@2VeXb}9B7*7_0caf5SM3nnQ&Y{1cu^&2{zj*pLPI3rE_?*Nk-MGCG~YV6OpCA<sf
zvyiOOv7ePfKPzG`vyY?%H6+{VxiX$7G7cMp(8;VYlWdGuJ6da)56M=cY%5nkZpnvi
z%;vEJs*hQJ4^$xDA-;odVl7YvUR-t!(r#zvQ|R<ZDHpZoBE9}dwy7UW-asdRZ}(qy
zd<3Sh$x9&)4#Xc4a%<}P8R5}slWk~!S*|t-azBTvoOD@P8d}zmZkozdpT5A4?cR6^
zxGVCRfn#g5SUxpQRr=h?7@O)?%VTG_P1N2$x5TOD8}h5g+@;SQOV1Nlc1wOjT;i55
zpt~KzDO3BB-c)oKO6-30)Xt!RyRgX@^<A1<sC74dA4eLOd#1{Xxu^33t>j-X`EkG>
zM#@+)(Wzcb24<vp74S*h%&fL=wO9OcjZUp(`;K1@Cku@0MKnHsI?8<Ojf&J?r5>*{
ziXTl_{w9^y1?BK|D%T4~7Ou<e5;k)|NJ_?%zQibDyz!U8!{~wjdhc6JBAqTuAHM2?
zPz&L(xEvuk+On^#YTNL!vViZ{ApbJAa_v4r1Bmq27+cAX$G<znlt<Zmt2_-yt32ko
z|NKpUIr%!=<%RdU9`B#8{%9KU0H1w%|Mj)D`0HT>fI!b=w&jFvHL!nQV-Zhf`hIGB
zH^^;tr+@*(y0BAu@h{BxCxibu#y@$5{3M7<e;L}ArMP7*^{;y>zkVqFS2@Ao2l@6U
zIR4FC+q(XOBKQaMW*0~M&c7MUHs5Ce%mjJ-l)U=Gcm40nQdSk+ZQB^{U%GHkZ}aN*
zBmMuj*p}8}aRx`^l*2Z?zaVJ+F&uvL3tWFP%KtvJUqpe2Lt^ro-kMzSuOaLRx&70B
zhx)&NDK`T@>Rsjbt6qP{MDp?3hx*?U{K;<rOrXCq-~Yt~`e)Mo-Fo?F*ZIqB@SmOL
zuTFq}Ce1&S=AYvUj_m&j{>?wf(?7@4_ukF_Z$8cZ#_Xq=`rn$)JlY07msGVb<exY9
F`#&Z(aIF9U

literal 0
HcmV?d00001


From 1dc6640bc12d5b0a8e885f578b60ca149078b89e Mon Sep 17 00:00:00 2001
From: Felicity Chapman <felicitymay@github.com>
Date: Mon, 28 Nov 2022 15:36:32 +0000
Subject: [PATCH 0747/1420] Remove superfluous content

(cherry picked from commit 5d038929431ed19b6d4d0ef48ff0d23895e10091)
---
 .../basic-query-for-cpp-code.rst               | 18 ------------------
 1 file changed, 18 deletions(-)

diff --git a/docs/codeql/codeql-language-guides/basic-query-for-cpp-code.rst b/docs/codeql/codeql-language-guides/basic-query-for-cpp-code.rst
index bfdfda6ffb5..a233b9afe82 100644
--- a/docs/codeql/codeql-language-guides/basic-query-for-cpp-code.rst
+++ b/docs/codeql/codeql-language-guides/basic-query-for-cpp-code.rst
@@ -145,24 +145,6 @@ To exclude ``if`` statements that have an ``else`` branch:
 
    There are now fewer results because ``if`` statements with an ``else`` branch are no longer reported.
 
-Saving your quick query for future development
-----------------------------------------------
-
-
-#. In Visual Studio Code, create a new folder to store your experimental queries for C and C++ CodeQL databases. For example, ``cpp-experiments``.
-
-#. Create a ``qlpack.yml`` file in your experiments folder with the contents shown below. This tells the CodeQL extension that any queries you create in the folder are intended to run on C or C++ CodeQL databases.
-
-   .. code-block:: yaml
-
-      name: github-owner/cpp-experiments
-      version: 0.0.1
-      dependencies:
-         codeql/cpp-all: ^0.1.2
-
-#. Create a second new file in your experiements folder with the ``.ql`` file extension. You will write your first query in this file.
-
-
 Further reading
 ---------------
 

From 0e5925744283f8a51215a24dc2313949e62581c0 Mon Sep 17 00:00:00 2001
From: Tony Torralba <atorralba@users.noreply.github.com>
Date: Tue, 29 Nov 2022 10:36:56 +0100
Subject: [PATCH 0748/1420] Fix local taint steps

Local taint should include local flow and simple summaries through library code
---
 .../internal/TaintTrackingPrivate.qll         |    6 +
 .../dataflow/taint/LocalTaint.expected        | 1406 +++++++++++++++++
 2 files changed, 1412 insertions(+)

diff --git a/swift/ql/lib/codeql/swift/dataflow/internal/TaintTrackingPrivate.qll b/swift/ql/lib/codeql/swift/dataflow/internal/TaintTrackingPrivate.qll
index 92724729d0e..6fdcca98c36 100644
--- a/swift/ql/lib/codeql/swift/dataflow/internal/TaintTrackingPrivate.qll
+++ b/swift/ql/lib/codeql/swift/dataflow/internal/TaintTrackingPrivate.qll
@@ -74,7 +74,13 @@ private module Cached {
    */
   cached
   predicate localTaintStepCached(DataFlow::Node nodeFrom, DataFlow::Node nodeTo) {
+    DataFlow::localFlowStep(nodeFrom, nodeTo)
+    or
     defaultAdditionalTaintStep(nodeFrom, nodeTo)
+    or
+    // Simple flow through library code is included in the exposed local
+    // step relation, even though flow is technically inter-procedural
+    FlowSummaryImpl::Private::Steps::summaryThroughStepTaint(nodeFrom, nodeTo, _)
   }
 }
 
diff --git a/swift/ql/test/library-tests/dataflow/taint/LocalTaint.expected b/swift/ql/test/library-tests/dataflow/taint/LocalTaint.expected
index 3e594f2d7a8..9a5f74be04b 100644
--- a/swift/ql/test/library-tests/dataflow/taint/LocalTaint.expected
+++ b/swift/ql/test/library-tests/dataflow/taint/LocalTaint.expected
@@ -1,124 +1,855 @@
+| data.swift:2:8:2:8 | SSA def(self) | data.swift:2:8:2:8 | self[return] |
+| data.swift:2:8:2:8 | self | data.swift:2:8:2:8 | SSA def(self) |
+| data.swift:4:7:4:7 | SSA def(self) | data.swift:4:7:4:7 | self[return] |
+| data.swift:4:7:4:7 | SSA def(self) | data.swift:4:7:4:7 | self[return] |
+| data.swift:4:7:4:7 | self | data.swift:4:7:4:7 | SSA def(self) |
+| data.swift:4:7:4:7 | self | data.swift:4:7:4:7 | SSA def(self) |
+| data.swift:12:49:12:49 | self | data.swift:12:49:12:49 | SSA def(self) |
+| data.swift:13:49:13:49 | self | data.swift:13:49:13:49 | SSA def(self) |
+| data.swift:14:42:14:42 | self | data.swift:14:42:14:42 | SSA def(self) |
+| data.swift:18:31:18:31 | SSA def(self) | data.swift:18:31:18:46 | self[return] |
+| data.swift:18:31:18:31 | self | data.swift:18:31:18:31 | SSA def(self) |
+| data.swift:19:29:19:29 | SSA def(self) | data.swift:19:29:19:44 | self[return] |
+| data.swift:19:29:19:29 | self | data.swift:19:29:19:29 | SSA def(self) |
+| data.swift:20:7:20:7 | SSA def(self) | data.swift:20:2:20:57 | self[return] |
+| data.swift:20:7:20:7 | self | data.swift:20:7:20:7 | SSA def(self) |
+| data.swift:21:7:21:7 | SSA def(self) | data.swift:21:2:21:58 | self[return] |
+| data.swift:21:7:21:7 | self | data.swift:21:7:21:7 | SSA def(self) |
+| data.swift:22:52:22:52 | SSA def(self) | data.swift:22:52:22:67 | self[return] |
+| data.swift:22:52:22:52 | self | data.swift:22:52:22:52 | SSA def(self) |
+| data.swift:24:5:24:5 | SSA def(self) | data.swift:24:5:24:29 | self[return] |
+| data.swift:24:5:24:5 | self | data.swift:24:5:24:5 | SSA def(self) |
+| data.swift:25:2:25:2 | SSA def(self) | data.swift:25:2:25:66 | self[return] |
+| data.swift:25:2:25:2 | self | data.swift:25:2:25:2 | SSA def(self) |
+| data.swift:26:2:26:2 | SSA def(self) | data.swift:26:2:26:61 | self[return] |
+| data.swift:26:2:26:2 | self | data.swift:26:2:26:2 | SSA def(self) |
+| data.swift:27:2:27:2 | SSA def(self) | data.swift:27:2:27:62 | self[return] |
+| data.swift:27:2:27:2 | self | data.swift:27:2:27:2 | SSA def(self) |
+| data.swift:28:2:28:2 | SSA def(self) | data.swift:28:2:28:45 | self[return] |
+| data.swift:28:2:28:2 | self | data.swift:28:2:28:2 | SSA def(self) |
+| data.swift:29:2:29:2 | SSA def(self) | data.swift:29:2:29:82 | self[return] |
+| data.swift:29:2:29:2 | self | data.swift:29:2:29:2 | SSA def(self) |
+| data.swift:30:2:30:2 | SSA def(self) | data.swift:30:2:30:50 | self[return] |
+| data.swift:30:2:30:2 | self | data.swift:30:2:30:2 | SSA def(self) |
+| data.swift:31:2:31:2 | SSA def(self) | data.swift:31:2:31:29 | self[return] |
+| data.swift:31:2:31:2 | self | data.swift:31:2:31:2 | SSA def(self) |
+| data.swift:32:7:32:7 | SSA def(self) | data.swift:32:2:32:24 | self[return] |
+| data.swift:32:7:32:7 | self | data.swift:32:7:32:7 | SSA def(self) |
+| data.swift:33:7:33:7 | SSA def(self) | data.swift:33:2:33:25 | self[return] |
+| data.swift:33:7:33:7 | self | data.swift:33:7:33:7 | SSA def(self) |
+| data.swift:34:7:34:7 | SSA def(self) | data.swift:34:2:34:63 | self[return] |
+| data.swift:34:7:34:7 | self | data.swift:34:7:34:7 | SSA def(self) |
+| data.swift:35:7:35:7 | SSA def(self) | data.swift:35:2:35:52 | self[return] |
+| data.swift:35:7:35:7 | self | data.swift:35:7:35:7 | SSA def(self) |
+| data.swift:36:7:36:7 | SSA def(self) | data.swift:36:2:36:36 | self[return] |
+| data.swift:36:7:36:7 | self | data.swift:36:7:36:7 | SSA def(self) |
+| data.swift:37:7:37:7 | SSA def(self) | data.swift:37:2:37:33 | self[return] |
+| data.swift:37:7:37:7 | self | data.swift:37:7:37:7 | SSA def(self) |
+| data.swift:38:7:38:7 | SSA def(self) | data.swift:38:2:38:88 | self[return] |
+| data.swift:38:7:38:7 | self | data.swift:38:7:38:7 | SSA def(self) |
+| data.swift:38:79:38:79 | Data.Type | data.swift:38:79:38:79 | call to init(_:) |
+| data.swift:38:84:38:84 |  | data.swift:38:79:38:86 | call to init(_:) |
+| data.swift:39:7:39:7 | SSA def(self) | data.swift:39:2:39:86 | self[return] |
+| data.swift:39:7:39:7 | self | data.swift:39:7:39:7 | SSA def(self) |
+| data.swift:40:7:40:7 | SSA def(self) | data.swift:40:2:40:99 | self[return] |
+| data.swift:40:7:40:7 | self | data.swift:40:7:40:7 | SSA def(self) |
+| data.swift:41:7:41:7 | SSA def(self) | data.swift:41:2:41:53 | self[return] |
+| data.swift:41:7:41:7 | self | data.swift:41:7:41:7 | SSA def(self) |
+| data.swift:42:7:42:7 | SSA def(self) | data.swift:42:2:42:63 | self[return] |
+| data.swift:42:7:42:7 | self | data.swift:42:7:42:7 | SSA def(self) |
+| data.swift:43:7:43:7 | SSA def(self) | data.swift:43:2:43:76 | self[return] |
+| data.swift:43:7:43:7 | self | data.swift:43:7:43:7 | SSA def(self) |
+| data.swift:44:7:44:7 | SSA def(self) | data.swift:44:2:44:137 | self[return] |
+| data.swift:44:7:44:7 | self | data.swift:44:7:44:7 | SSA def(self) |
+| data.swift:45:7:45:7 | SSA def(self) | data.swift:45:2:45:97 | self[return] |
+| data.swift:45:7:45:7 | self | data.swift:45:7:45:7 | SSA def(self) |
+| data.swift:46:7:46:7 | SSA def(self) | data.swift:46:2:46:34 | self[return] |
+| data.swift:46:7:46:7 | self | data.swift:46:7:46:7 | SSA def(self) |
+| data.swift:47:7:47:7 | SSA def(self) | data.swift:47:2:47:83 | self[return] |
+| data.swift:47:7:47:7 | self | data.swift:47:7:47:7 | SSA def(self) |
+| data.swift:48:7:48:7 | SSA def(self) | data.swift:48:2:48:50 | self[return] |
+| data.swift:48:7:48:7 | self | data.swift:48:7:48:7 | SSA def(self) |
+| data.swift:49:7:49:7 | SSA def(self) | data.swift:49:2:49:115 | self[return] |
+| data.swift:49:7:49:7 | self | data.swift:49:7:49:7 | SSA def(self) |
+| data.swift:49:22:49:42 | SSA def(initialResult) | data.swift:49:101:49:101 | initialResult |
+| data.swift:49:22:49:42 | initialResult | data.swift:49:22:49:42 | SSA def(initialResult) |
+| data.swift:50:7:50:7 | SSA def(self) | data.swift:50:2:50:180 | self[return] |
+| data.swift:50:7:50:7 | self | data.swift:50:7:50:7 | SSA def(self) |
+| data.swift:51:7:51:7 | SSA def(self) | data.swift:51:2:51:58 | self[return] |
+| data.swift:51:7:51:7 | self | data.swift:51:7:51:7 | SSA def(self) |
+| data.swift:52:7:52:7 | SSA def(self) | data.swift:52:2:52:151 | self[return] |
+| data.swift:52:7:52:7 | self | data.swift:52:7:52:7 | SSA def(self) |
+| data.swift:53:7:53:7 | SSA def(self) | data.swift:53:2:53:97 | self[return] |
+| data.swift:53:7:53:7 | self | data.swift:53:7:53:7 | SSA def(self) |
+| data.swift:54:7:54:7 | SSA def(self) | data.swift:54:2:54:82 | self[return] |
+| data.swift:54:7:54:7 | self | data.swift:54:7:54:7 | SSA def(self) |
+| data.swift:55:7:55:7 | SSA def(self) | data.swift:55:2:55:123 | self[return] |
+| data.swift:55:7:55:7 | self | data.swift:55:7:55:7 | SSA def(self) |
+| data.swift:56:7:56:7 | SSA def(self) | data.swift:56:2:56:214 | self[return] |
+| data.swift:56:7:56:7 | self | data.swift:56:7:56:7 | SSA def(self) |
+| data.swift:56:205:56:205 | Data.Type | data.swift:56:205:56:205 | call to init(_:) |
+| data.swift:56:210:56:210 |  | data.swift:56:205:56:212 | call to init(_:) |
+| data.swift:57:7:57:7 | SSA def(self) | data.swift:57:2:57:236 | self[return] |
+| data.swift:57:7:57:7 | self | data.swift:57:7:57:7 | SSA def(self) |
+| data.swift:57:227:57:227 | Data.Type | data.swift:57:227:57:227 | call to init(_:) |
+| data.swift:57:232:57:232 |  | data.swift:57:227:57:234 | call to init(_:) |
+| data.swift:58:7:58:7 | SSA def(self) | data.swift:58:2:58:39 | self[return] |
+| data.swift:58:7:58:7 | self | data.swift:58:7:58:7 | SSA def(self) |
+| data.swift:59:7:59:7 | SSA def(self) | data.swift:59:2:59:81 | self[return] |
+| data.swift:59:7:59:7 | self | data.swift:59:7:59:7 | SSA def(self) |
+| data.swift:60:7:60:7 | SSA def(self) | data.swift:60:2:60:132 | self[return] |
+| data.swift:60:7:60:7 | self | data.swift:60:7:60:7 | SSA def(self) |
+| data.swift:61:7:61:7 | SSA def(self) | data.swift:61:2:61:41 | self[return] |
+| data.swift:61:7:61:7 | self | data.swift:61:7:61:7 | SSA def(self) |
+| data.swift:62:7:62:7 | SSA def(self) | data.swift:62:2:62:58 | self[return] |
+| data.swift:62:7:62:7 | self | data.swift:62:7:62:7 | SSA def(self) |
+| data.swift:62:19:62:32 | SSA def(using) | data.swift:62:2:62:58 | using[return] |
+| data.swift:62:19:62:32 | using | data.swift:62:19:62:32 | SSA def(using) |
+| data.swift:63:7:63:7 | SSA def(self) | data.swift:63:2:63:123 | self[return] |
+| data.swift:63:7:63:7 | self | data.swift:63:7:63:7 | SSA def(self) |
+| data.swift:63:114:63:114 | Data.Type | data.swift:63:114:63:114 | call to init(_:) |
+| data.swift:63:119:63:119 |  | data.swift:63:114:63:121 | call to init(_:) |
+| data.swift:64:7:64:7 | SSA def(self) | data.swift:64:2:64:72 | self[return] |
+| data.swift:64:7:64:7 | self | data.swift:64:7:64:7 | SSA def(self) |
+| data.swift:64:63:64:63 | Data.Type | data.swift:64:63:64:63 | call to init(_:) |
+| data.swift:64:68:64:68 |  | data.swift:64:63:64:70 | call to init(_:) |
+| data.swift:69:7:69:7 | SSA def(self) | data.swift:69:7:69:7 | self[return] |
+| data.swift:69:7:69:7 | SSA def(self) | data.swift:69:7:69:7 | self[return] |
+| data.swift:69:7:69:7 | self | data.swift:69:7:69:7 | SSA def(self) |
+| data.swift:69:7:69:7 | self | data.swift:69:7:69:7 | SSA def(self) |
+| data.swift:80:6:80:6 | SSA def(dataClean) | data.swift:84:12:84:12 | dataClean |
+| data.swift:80:18:80:18 | Data.Type | data.swift:80:18:80:18 | call to init(_:) |
+| data.swift:80:18:80:36 | call to init(_:) | data.swift:80:6:80:6 | SSA def(dataClean) |
+| data.swift:80:23:80:32 | .utf8 | data.swift:80:18:80:36 | call to init(_:) |
+| data.swift:81:6:81:6 | SSA def(dataTainted) | data.swift:82:26:82:26 | dataTainted |
+| data.swift:81:20:81:20 | Data.Type | data.swift:81:20:81:20 | call to init(_:) |
+| data.swift:81:20:81:51 | call to init(_:) | data.swift:81:6:81:6 | SSA def(dataTainted) |
+| data.swift:81:25:81:47 | .utf8 | data.swift:81:20:81:51 | call to init(_:) |
+| data.swift:82:6:82:6 | SSA def(dataTainted2) | data.swift:86:12:86:12 | dataTainted2 |
+| data.swift:82:21:82:21 | Data.Type | data.swift:82:21:82:21 | call to init(_:) |
+| data.swift:82:21:82:37 | call to init(_:) | data.swift:82:6:82:6 | SSA def(dataTainted2) |
+| data.swift:82:26:82:26 | [post] dataTainted | data.swift:85:12:85:12 | dataTainted |
+| data.swift:82:26:82:26 | dataTainted | data.swift:82:21:82:37 | call to init(_:) |
+| data.swift:82:26:82:26 | dataTainted | data.swift:85:12:85:12 | dataTainted |
+| data.swift:89:6:89:6 | SSA def(dataTainted3) | data.swift:90:12:90:12 | dataTainted3 |
+| data.swift:89:21:89:21 | Data.Type | data.swift:89:21:89:21 | call to init(base64Encoded:options:) |
+| data.swift:89:21:89:71 | call to init(base64Encoded:options:) | data.swift:89:6:89:6 | SSA def(dataTainted3) |
+| data.swift:89:41:89:48 | call to source() | data.swift:89:21:89:71 | call to init(base64Encoded:options:) |
+| data.swift:93:6:93:6 | SSA def(dataTainted4) | data.swift:94:12:94:12 | dataTainted4 |
+| data.swift:93:21:93:21 | Data.Type | data.swift:93:21:93:21 | call to init(buffer:) |
+| data.swift:93:21:93:73 | call to init(buffer:) | data.swift:93:6:93:6 | SSA def(dataTainted4) |
+| data.swift:93:34:93:41 | call to source() | data.swift:93:21:93:73 | call to init(buffer:) |
+| data.swift:95:6:95:6 | SSA def(dataTainted5) | data.swift:96:12:96:12 | dataTainted5 |
+| data.swift:95:21:95:21 | Data.Type | data.swift:95:21:95:21 | call to init(buffer:) |
+| data.swift:95:21:95:74 | call to init(buffer:) | data.swift:95:6:95:6 | SSA def(dataTainted5) |
+| data.swift:95:34:95:41 | call to source() | data.swift:95:21:95:74 | call to init(buffer:) |
+| data.swift:99:6:99:6 | SSA def(dataTainted6) | data.swift:100:12:100:12 | dataTainted6 |
+| data.swift:99:21:99:21 | Data.Type | data.swift:99:21:99:21 | call to init(bytes:count:) |
+| data.swift:99:21:99:72 | call to init(bytes:count:) | data.swift:99:6:99:6 | SSA def(dataTainted6) |
+| data.swift:99:33:99:40 | call to source() | data.swift:99:21:99:72 | call to init(bytes:count:) |
+| data.swift:103:6:103:6 | SSA def(dataTainted7) | data.swift:104:12:104:12 | dataTainted7 |
+| data.swift:103:21:103:21 | Data.Type | data.swift:103:21:103:21 | call to init(bytesNoCopy:count:deallocator:) |
+| data.swift:103:21:103:114 | call to init(bytesNoCopy:count:deallocator:) | data.swift:103:6:103:6 | SSA def(dataTainted7) |
+| data.swift:103:39:103:46 | call to source() | data.swift:103:21:103:114 | call to init(bytesNoCopy:count:deallocator:) |
+| data.swift:107:6:107:6 | SSA def(urlTainted8) | data.swift:108:38:108:38 | urlTainted8 |
+| data.swift:107:20:107:27 | call to source() | data.swift:107:6:107:6 | SSA def(urlTainted8) |
+| data.swift:108:6:108:6 | SSA def(dataTainted8) | data.swift:109:12:109:12 | dataTainted8 |
+| data.swift:108:21:108:21 | Data.Type | data.swift:108:21:108:21 | call to init(contentsOf:options:) |
+| data.swift:108:21:108:62 | call to init(contentsOf:options:) | data.swift:108:6:108:6 | SSA def(dataTainted8) |
+| data.swift:108:38:108:38 | urlTainted8 | data.swift:108:21:108:62 | call to init(contentsOf:options:) |
+| data.swift:112:6:112:6 | SSA def(dataTainted9) | data.swift:113:12:113:12 | dataTainted9 |
+| data.swift:112:21:112:21 | Data.Type | data.swift:112:21:112:21 | call to init(referencing:) |
+| data.swift:112:21:112:58 | call to init(referencing:) | data.swift:112:6:112:6 | SSA def(dataTainted9) |
+| data.swift:112:39:112:46 | call to source() | data.swift:112:21:112:58 | call to init(referencing:) |
+| data.swift:116:6:116:6 | SSA def(dataTainted10) | data.swift:117:2:117:2 | dataTainted10 |
+| data.swift:116:22:116:22 | Data.Type | data.swift:116:22:116:22 | call to init(_:) |
+| data.swift:116:22:116:29 | call to init(_:) | data.swift:116:6:116:6 | SSA def(dataTainted10) |
+| data.swift:116:27:116:27 |  | data.swift:116:22:116:29 | call to init(_:) |
+| data.swift:117:2:117:2 | [post] dataTainted10 | data.swift:118:12:118:12 | dataTainted10 |
+| data.swift:117:2:117:2 | dataTainted10 | data.swift:118:12:118:12 | dataTainted10 |
+| data.swift:117:23:117:30 | call to source() | data.swift:117:2:117:2 | [post] dataTainted10 |
+| data.swift:120:6:120:6 | SSA def(dataTainted11) | data.swift:121:2:121:2 | dataTainted11 |
+| data.swift:120:22:120:22 | Data.Type | data.swift:120:22:120:22 | call to init(_:) |
+| data.swift:120:22:120:29 | call to init(_:) | data.swift:120:6:120:6 | SSA def(dataTainted11) |
+| data.swift:120:27:120:27 |  | data.swift:120:22:120:29 | call to init(_:) |
+| data.swift:121:2:121:2 | [post] dataTainted11 | data.swift:122:12:122:12 | dataTainted11 |
+| data.swift:121:2:121:2 | dataTainted11 | data.swift:122:12:122:12 | dataTainted11 |
+| data.swift:121:23:121:30 | call to source() | data.swift:121:2:121:2 | [post] dataTainted11 |
+| data.swift:124:6:124:6 | SSA def(dataTainted12) | data.swift:125:2:125:2 | dataTainted12 |
+| data.swift:124:22:124:22 | Data.Type | data.swift:124:22:124:22 | call to init(_:) |
+| data.swift:124:22:124:29 | call to init(_:) | data.swift:124:6:124:6 | SSA def(dataTainted12) |
+| data.swift:124:27:124:27 |  | data.swift:124:22:124:29 | call to init(_:) |
+| data.swift:125:2:125:2 | [post] dataTainted12 | data.swift:126:12:126:12 | dataTainted12 |
+| data.swift:125:2:125:2 | dataTainted12 | data.swift:126:12:126:12 | dataTainted12 |
+| data.swift:125:23:125:30 | call to source() | data.swift:125:2:125:2 | [post] dataTainted12 |
+| data.swift:129:6:129:6 | SSA def(dataTainted13) | data.swift:130:2:130:2 | dataTainted13 |
+| data.swift:129:22:129:22 | Data.Type | data.swift:129:22:129:22 | call to init(_:) |
+| data.swift:129:22:129:29 | call to init(_:) | data.swift:129:6:129:6 | SSA def(dataTainted13) |
+| data.swift:129:27:129:27 |  | data.swift:129:22:129:29 | call to init(_:) |
+| data.swift:130:2:130:2 | [post] dataTainted13 | data.swift:131:12:131:12 | dataTainted13 |
+| data.swift:130:2:130:2 | dataTainted13 | data.swift:131:12:131:12 | dataTainted13 |
+| data.swift:130:23:130:30 | call to source() | data.swift:130:2:130:2 | [post] dataTainted13 |
+| data.swift:134:6:134:6 | SSA def(dataTainted14) | data.swift:135:2:135:2 | dataTainted14 |
+| data.swift:134:22:134:22 | Data.Type | data.swift:134:22:134:22 | call to init(_:) |
+| data.swift:134:22:134:29 | call to init(_:) | data.swift:134:6:134:6 | SSA def(dataTainted14) |
+| data.swift:134:27:134:27 |  | data.swift:134:22:134:29 | call to init(_:) |
+| data.swift:135:2:135:2 | [post] dataTainted14 | data.swift:136:12:136:12 | dataTainted14 |
+| data.swift:135:2:135:2 | dataTainted14 | data.swift:136:12:136:12 | dataTainted14 |
+| data.swift:135:35:135:42 | call to source() | data.swift:135:2:135:2 | [post] dataTainted14 |
+| data.swift:139:6:139:6 | SSA def(dataTainted15) | data.swift:140:12:140:12 | dataTainted15 |
+| data.swift:139:22:139:29 | call to source() | data.swift:139:6:139:6 | SSA def(dataTainted15) |
+| data.swift:140:12:140:12 | dataTainted15 | data.swift:140:12:140:55 | call to base64EncodedData(options:) |
+| data.swift:143:6:143:6 | SSA def(dataTainted16) | data.swift:144:12:144:12 | dataTainted16 |
+| data.swift:143:22:143:29 | call to source() | data.swift:143:6:143:6 | SSA def(dataTainted16) |
+| data.swift:144:12:144:12 | dataTainted16 | data.swift:144:12:144:57 | call to base64EncodedString(options:) |
+| data.swift:147:6:147:6 | SSA def(dataTainted17) | data.swift:148:29:148:29 | dataTainted17 |
+| data.swift:147:22:147:29 | call to source() | data.swift:147:6:147:6 | SSA def(dataTainted17) |
+| data.swift:148:6:148:25 | SSA def(compactMapped) | data.swift:149:12:149:12 | compactMapped |
+| data.swift:148:29:148:29 | dataTainted17 | data.swift:148:29:148:72 | call to compactMap(_:) |
+| data.swift:148:29:148:72 | call to compactMap(_:) | data.swift:148:6:148:25 | SSA def(compactMapped) |
+| data.swift:148:56:148:56 | SSA def(str) | data.swift:148:67:148:67 | str |
+| data.swift:148:56:148:56 | str | data.swift:148:56:148:56 | SSA def(str) |
+| data.swift:152:6:152:6 | SSA def(dataTainted18) | data.swift:154:2:154:2 | dataTainted18 |
+| data.swift:152:22:152:29 | call to source() | data.swift:152:6:152:6 | SSA def(dataTainted18) |
+| data.swift:153:6:153:6 | SSA def(pointerTainted18) | data.swift:154:30:154:30 | pointerTainted18 |
+| data.swift:153:25:153:90 | call to allocate(byteCount:alignment:) | data.swift:153:6:153:6 | SSA def(pointerTainted18) |
+| data.swift:154:2:154:2 | dataTainted18 | data.swift:154:30:154:30 | [post] pointerTainted18 |
+| data.swift:154:30:154:30 | [post] pointerTainted18 | data.swift:155:12:155:12 | pointerTainted18 |
+| data.swift:154:30:154:30 | pointerTainted18 | data.swift:155:12:155:12 | pointerTainted18 |
+| data.swift:158:6:158:6 | SSA def(dataTainted19) | data.swift:160:2:160:2 | dataTainted19 |
+| data.swift:158:22:158:29 | call to source() | data.swift:158:6:158:6 | SSA def(dataTainted19) |
+| data.swift:159:6:159:6 | SSA def(pointerTainted19) | data.swift:160:30:160:30 | pointerTainted19 |
+| data.swift:159:25:159:73 | call to allocate(capacity:) | data.swift:159:6:159:6 | SSA def(pointerTainted19) |
+| data.swift:160:30:160:30 | pointerTainted19 | data.swift:161:12:161:12 | pointerTainted19 |
+| data.swift:164:6:164:6 | SSA def(dataTainted20) | data.swift:166:2:166:2 | dataTainted20 |
+| data.swift:164:22:164:29 | call to source() | data.swift:164:6:164:6 | SSA def(dataTainted20) |
+| data.swift:165:6:165:6 | SSA def(pointerTainted20) | data.swift:166:30:166:30 | pointerTainted20 |
+| data.swift:165:25:165:73 | call to allocate(capacity:) | data.swift:165:6:165:6 | SSA def(pointerTainted20) |
+| data.swift:166:30:166:30 | pointerTainted20 | data.swift:167:12:167:12 | pointerTainted20 |
+| data.swift:170:6:170:6 | SSA def(dataTainted21) | data.swift:171:19:171:19 | dataTainted21 |
+| data.swift:170:22:170:29 | call to source() | data.swift:170:6:170:6 | SSA def(dataTainted21) |
+| data.swift:171:6:171:6 | SSA def(flatMapped) | data.swift:172:12:172:12 | flatMapped |
+| data.swift:171:19:171:19 | dataTainted21 | data.swift:171:19:171:74 | call to flatMap(_:) |
+| data.swift:171:19:171:74 | call to flatMap(_:) | data.swift:171:6:171:6 | SSA def(flatMapped) |
+| data.swift:171:41:171:41 | $0 | data.swift:171:41:171:41 | SSA def($0) |
+| data.swift:171:41:171:41 | SSA def($0) | data.swift:171:60:171:60 | $0 |
+| data.swift:174:6:174:6 | SSA def(dataTainted22) | data.swift:175:20:175:20 | dataTainted22 |
+| data.swift:174:22:174:29 | call to source() | data.swift:174:6:174:6 | SSA def(dataTainted22) |
+| data.swift:175:6:175:6 | SSA def(flatMapped2) | data.swift:176:12:176:12 | flatMapped2 |
+| data.swift:175:20:175:20 | dataTainted22 | data.swift:175:20:175:60 | call to flatMap(_:) |
+| data.swift:175:20:175:60 | call to flatMap(_:) | data.swift:175:6:175:6 | SSA def(flatMapped2) |
+| data.swift:175:44:175:44 | SSA def(str) | data.swift:175:55:175:55 | str |
+| data.swift:175:44:175:44 | str | data.swift:175:44:175:44 | SSA def(str) |
+| data.swift:179:6:179:6 | SSA def(dataTainted23) | data.swift:180:2:180:2 | dataTainted23 |
+| data.swift:179:22:179:22 | Data.Type | data.swift:179:22:179:22 | call to init(_:) |
+| data.swift:179:22:179:29 | call to init(_:) | data.swift:179:6:179:6 | SSA def(dataTainted23) |
+| data.swift:179:27:179:27 |  | data.swift:179:22:179:29 | call to init(_:) |
+| data.swift:180:2:180:2 | [post] dataTainted23 | data.swift:181:12:181:12 | dataTainted23 |
+| data.swift:180:2:180:2 | dataTainted23 | data.swift:181:12:181:12 | dataTainted23 |
+| data.swift:180:23:180:30 | call to source() | data.swift:180:2:180:2 | [post] dataTainted23 |
+| data.swift:184:6:184:6 | SSA def(dataTainted24) | data.swift:185:2:185:2 | dataTainted24 |
+| data.swift:184:22:184:22 | Data.Type | data.swift:184:22:184:22 | call to init(_:) |
+| data.swift:184:22:184:29 | call to init(_:) | data.swift:184:6:184:6 | SSA def(dataTainted24) |
+| data.swift:184:27:184:27 |  | data.swift:184:22:184:29 | call to init(_:) |
+| data.swift:185:2:185:2 | [post] dataTainted24 | data.swift:186:12:186:12 | dataTainted24 |
+| data.swift:185:2:185:2 | dataTainted24 | data.swift:186:12:186:12 | dataTainted24 |
+| data.swift:185:35:185:42 | call to source() | data.swift:185:2:185:2 | [post] dataTainted24 |
+| data.swift:189:6:189:6 | SSA def(dataTainted25) | data.swift:190:15:190:15 | dataTainted25 |
+| data.swift:189:22:189:29 | call to source() | data.swift:189:6:189:6 | SSA def(dataTainted25) |
+| data.swift:190:6:190:6 | SSA def(mapped) | data.swift:191:12:191:12 | mapped |
+| data.swift:190:15:190:15 | dataTainted25 | data.swift:190:15:190:38 | call to map(_:) |
+| data.swift:190:15:190:38 | call to map(_:) | data.swift:190:6:190:6 | SSA def(mapped) |
+| data.swift:190:33:190:33 | $0 | data.swift:190:33:190:33 | SSA def($0) |
+| data.swift:190:33:190:33 | SSA def($0) | data.swift:190:35:190:35 | $0 |
+| data.swift:194:6:194:6 | SSA def(dataTainted26) | data.swift:195:16:195:16 | dataTainted26 |
+| data.swift:194:22:194:29 | call to source() | data.swift:194:6:194:6 | SSA def(dataTainted26) |
+| data.swift:195:6:195:6 | SSA def(reduced) | data.swift:196:12:196:12 | reduced |
+| data.swift:195:16:195:16 | dataTainted26 | data.swift:195:16:195:80 | call to reduce(into:_:) |
+| data.swift:195:16:195:80 | call to reduce(into:_:) | data.swift:195:6:195:6 | SSA def(reduced) |
+| data.swift:195:50:195:50 | SSA def(c) | data.swift:195:58:195:58 | c |
+| data.swift:195:50:195:50 | c | data.swift:195:50:195:50 | SSA def(c) |
+| data.swift:195:53:195:53 | SSA def(i) | data.swift:195:60:195:60 | i |
+| data.swift:195:53:195:53 | i | data.swift:195:53:195:53 | SSA def(i) |
 | data.swift:195:58:195:58 | &... | data.swift:195:58:195:73 | ...[...] |
+| data.swift:195:58:195:58 | c | data.swift:195:58:195:58 | &... |
+| data.swift:195:58:195:73 | ...[...] | data.swift:195:58:195:73 | &... |
+| data.swift:199:6:199:6 | SSA def(dataTainted27) | data.swift:200:2:200:2 | dataTainted27 |
+| data.swift:199:22:199:22 | Data.Type | data.swift:199:22:199:22 | call to init(_:) |
+| data.swift:199:22:199:29 | call to init(_:) | data.swift:199:6:199:6 | SSA def(dataTainted27) |
+| data.swift:199:27:199:27 |  | data.swift:199:22:199:29 | call to init(_:) |
+| data.swift:200:2:200:2 | [post] dataTainted27 | data.swift:201:12:201:12 | dataTainted27 |
+| data.swift:200:2:200:2 | dataTainted27 | data.swift:201:12:201:12 | dataTainted27 |
+| data.swift:200:35:200:42 | call to source() | data.swift:200:2:200:2 | [post] dataTainted27 |
+| data.swift:204:6:204:6 | SSA def(dataTainted28) | data.swift:205:2:205:2 | dataTainted28 |
+| data.swift:204:22:204:22 | Data.Type | data.swift:204:22:204:22 | call to init(_:) |
+| data.swift:204:22:204:29 | call to init(_:) | data.swift:204:6:204:6 | SSA def(dataTainted28) |
+| data.swift:204:27:204:27 |  | data.swift:204:22:204:29 | call to init(_:) |
+| data.swift:205:2:205:2 | [post] dataTainted28 | data.swift:206:12:206:12 | dataTainted28 |
+| data.swift:205:2:205:2 | dataTainted28 | data.swift:206:12:206:12 | dataTainted28 |
+| data.swift:205:45:205:52 | call to source() | data.swift:205:2:205:2 | [post] dataTainted28 |
+| data.swift:208:6:208:6 | SSA def(dataTainted29) | data.swift:209:2:209:2 | dataTainted29 |
+| data.swift:208:22:208:22 | Data.Type | data.swift:208:22:208:22 | call to init(_:) |
+| data.swift:208:22:208:29 | call to init(_:) | data.swift:208:6:208:6 | SSA def(dataTainted29) |
+| data.swift:208:27:208:27 |  | data.swift:208:22:208:29 | call to init(_:) |
+| data.swift:209:2:209:2 | [post] dataTainted29 | data.swift:210:12:210:12 | dataTainted29 |
+| data.swift:209:2:209:2 | dataTainted29 | data.swift:210:12:210:12 | dataTainted29 |
+| data.swift:209:45:209:52 | call to source() | data.swift:209:2:209:2 | [post] dataTainted29 |
+| data.swift:212:6:212:6 | SSA def(dataTainted30) | data.swift:213:2:213:2 | dataTainted30 |
+| data.swift:212:22:212:22 | Data.Type | data.swift:212:22:212:22 | call to init(_:) |
+| data.swift:212:22:212:29 | call to init(_:) | data.swift:212:6:212:6 | SSA def(dataTainted30) |
+| data.swift:212:27:212:27 |  | data.swift:212:22:212:29 | call to init(_:) |
+| data.swift:213:2:213:2 | [post] dataTainted30 | data.swift:214:12:214:12 | dataTainted30 |
+| data.swift:213:2:213:2 | dataTainted30 | data.swift:214:12:214:12 | dataTainted30 |
+| data.swift:213:45:213:52 | call to source() | data.swift:213:2:213:2 | [post] dataTainted30 |
+| data.swift:217:6:217:6 | SSA def(dataTainted31) | data.swift:218:2:218:2 | dataTainted31 |
+| data.swift:217:22:217:22 | Data.Type | data.swift:217:22:217:22 | call to init(_:) |
+| data.swift:217:22:217:29 | call to init(_:) | data.swift:217:6:217:6 | SSA def(dataTainted31) |
+| data.swift:217:27:217:27 |  | data.swift:217:22:217:29 | call to init(_:) |
+| data.swift:218:2:218:2 | [post] dataTainted31 | data.swift:219:12:219:12 | dataTainted31 |
+| data.swift:218:2:218:2 | dataTainted31 | data.swift:219:12:219:12 | dataTainted31 |
+| data.swift:218:45:218:52 | call to source() | data.swift:218:2:218:2 | [post] dataTainted31 |
+| data.swift:222:6:222:6 | SSA def(dataTainted32) | data.swift:223:10:223:10 | dataTainted32 |
+| data.swift:222:22:222:22 | Data.Type | data.swift:222:22:222:22 | call to init(_:) |
+| data.swift:222:22:222:29 | call to init(_:) | data.swift:222:6:222:6 | SSA def(dataTainted32) |
+| data.swift:222:27:222:27 |  | data.swift:222:22:222:29 | call to init(_:) |
+| data.swift:223:10:223:10 | [post] dataTainted32 | data.swift:224:12:224:12 | dataTainted32 |
+| data.swift:223:10:223:10 | dataTainted32 | data.swift:224:12:224:12 | dataTainted32 |
+| data.swift:223:45:223:52 | call to source() | data.swift:223:10:223:10 | [post] dataTainted32 |
+| data.swift:227:6:227:6 | SSA def(dataTainted33) | data.swift:228:10:228:10 | dataTainted33 |
+| data.swift:227:22:227:22 | Data.Type | data.swift:227:22:227:22 | call to init(_:) |
+| data.swift:227:22:227:29 | call to init(_:) | data.swift:227:6:227:6 | SSA def(dataTainted33) |
+| data.swift:227:27:227:27 |  | data.swift:227:22:227:29 | call to init(_:) |
+| data.swift:228:10:228:10 | [post] dataTainted33 | data.swift:229:12:229:12 | dataTainted33 |
+| data.swift:228:10:228:10 | dataTainted33 | data.swift:229:12:229:12 | dataTainted33 |
+| data.swift:228:45:228:52 | call to source() | data.swift:228:10:228:10 | [post] dataTainted33 |
+| data.swift:232:6:232:6 | SSA def(dataTainted34) | data.swift:233:12:233:12 | dataTainted34 |
+| data.swift:232:22:232:29 | call to source() | data.swift:232:6:232:6 | SSA def(dataTainted34) |
+| data.swift:236:6:236:6 | SSA def(dataTainted35) | data.swift:237:12:237:12 | dataTainted35 |
+| data.swift:236:22:236:29 | call to source() | data.swift:236:6:236:6 | SSA def(dataTainted35) |
+| data.swift:237:12:237:12 | dataTainted35 | data.swift:237:12:237:33 | call to sorted() |
+| data.swift:240:6:240:6 | SSA def(dataTainted36) | data.swift:241:12:241:12 | dataTainted36 |
+| data.swift:240:22:240:29 | call to source() | data.swift:240:6:240:6 | SSA def(dataTainted36) |
+| data.swift:241:12:241:12 | dataTainted36 | data.swift:241:12:241:54 | call to sorted(by:) |
+| data.swift:244:6:244:6 | SSA def(dataTainted37) | data.swift:245:12:245:12 | dataTainted37 |
+| data.swift:244:22:244:29 | call to source() | data.swift:244:6:244:6 | SSA def(dataTainted37) |
+| data.swift:245:12:245:12 | dataTainted37 | data.swift:245:12:245:46 | call to sorted(using:) |
+| data.swift:245:40:245:44 | call to cmp() | data.swift:245:40:245:45 | ...! |
+| data.swift:248:6:248:6 | SSA def(dataTainted38) | data.swift:249:12:249:12 | dataTainted38 |
+| data.swift:248:22:248:29 | call to source() | data.swift:248:6:248:6 | SSA def(dataTainted38) |
+| data.swift:249:12:249:12 | dataTainted38 | data.swift:249:12:249:35 | call to shuffled() |
+| data.swift:252:6:252:6 | SSA def(dataTainted39) | data.swift:254:12:254:12 | dataTainted39 |
+| data.swift:252:22:252:29 | call to source() | data.swift:252:6:252:6 | SSA def(dataTainted39) |
+| data.swift:253:6:253:6 | SSA def(rng) | data.swift:254:43:254:43 | rng |
+| data.swift:253:12:253:16 | call to rng() | data.swift:253:12:253:17 | ...! |
+| data.swift:253:12:253:17 | ...! | data.swift:253:6:253:6 | SSA def(rng) |
+| data.swift:254:12:254:12 | dataTainted39 | data.swift:254:12:254:46 | call to shuffled(using:) |
+| data.swift:254:43:254:43 | rng | data.swift:254:42:254:43 | &... |
+| data.swift:257:6:257:6 | SSA def(dataTainted40) | data.swift:258:12:258:12 | dataTainted40 |
+| data.swift:257:22:257:29 | call to source() | data.swift:257:6:257:6 | SSA def(dataTainted40) |
+| data.swift:258:12:258:12 | dataTainted40 | data.swift:258:12:258:44 | call to trimmingPrefix(_:) |
+| data.swift:261:6:261:6 | SSA def(dataTainted41) | data.swift:262:12:262:12 | dataTainted41 |
+| data.swift:261:22:261:29 | call to source() | data.swift:261:6:261:6 | SSA def(dataTainted41) |
+| data.swift:262:12:262:12 | dataTainted41 | data.swift:262:12:262:54 | call to trimmingPrefix(while:) |
+| nsdata.swift:5:2:5:2 | SSA def(self) | nsdata.swift:5:2:5:25 | self[return] |
+| nsdata.swift:5:2:5:2 | self | nsdata.swift:5:2:5:2 | SSA def(self) |
+| nsdata.swift:10:5:10:5 | SSA def(self) | nsdata.swift:10:5:10:29 | self[return] |
+| nsdata.swift:10:5:10:5 | self | nsdata.swift:10:5:10:5 | SSA def(self) |
+| nsdata.swift:13:8:13:8 | SSA def(self) | nsdata.swift:13:8:13:8 | self[return] |
+| nsdata.swift:13:8:13:8 | self | nsdata.swift:13:8:13:8 | SSA def(self) |
+| nsdata.swift:15:8:15:8 | SSA def(self) | nsdata.swift:15:8:15:8 | self[return] |
+| nsdata.swift:15:8:15:8 | self | nsdata.swift:15:8:15:8 | SSA def(self) |
+| nsdata.swift:17:7:17:7 | SSA def(self) | nsdata.swift:17:7:17:7 | self[return] |
+| nsdata.swift:17:7:17:7 | self | nsdata.swift:17:7:17:7 | SSA def(self) |
+| nsdata.swift:18:45:18:45 | self | nsdata.swift:18:45:18:45 | SSA def(self) |
+| nsdata.swift:19:52:19:52 | self | nsdata.swift:19:52:19:52 | SSA def(self) |
+| nsdata.swift:20:52:20:52 | self | nsdata.swift:20:52:20:52 | SSA def(self) |
+| nsdata.swift:22:9:22:9 | self | nsdata.swift:22:9:22:9 | SSA def(self) |
+| nsdata.swift:22:9:22:9 | self | nsdata.swift:22:9:22:9 | SSA def(self) |
+| nsdata.swift:22:9:22:9 | self | nsdata.swift:22:9:22:9 | SSA def(self) |
+| nsdata.swift:22:9:22:9 | value | nsdata.swift:22:9:22:9 | SSA def(value) |
+| nsdata.swift:23:9:23:9 | self | nsdata.swift:23:9:23:9 | SSA def(self) |
+| nsdata.swift:23:9:23:9 | self | nsdata.swift:23:9:23:9 | SSA def(self) |
+| nsdata.swift:23:9:23:9 | self | nsdata.swift:23:9:23:9 | SSA def(self) |
+| nsdata.swift:23:9:23:9 | value | nsdata.swift:23:9:23:9 | SSA def(value) |
+| nsdata.swift:24:5:24:5 | SSA def(self) | nsdata.swift:24:5:24:50 | self[return] |
+| nsdata.swift:24:5:24:5 | self | nsdata.swift:24:5:24:5 | SSA def(self) |
+| nsdata.swift:25:5:25:5 | SSA def(self) | nsdata.swift:25:5:25:68 | self[return] |
+| nsdata.swift:25:5:25:5 | self | nsdata.swift:25:5:25:5 | SSA def(self) |
+| nsdata.swift:26:5:26:5 | SSA def(self) | nsdata.swift:26:5:26:130 | self[return] |
+| nsdata.swift:26:5:26:5 | self | nsdata.swift:26:5:26:5 | SSA def(self) |
+| nsdata.swift:27:5:27:5 | SSA def(self) | nsdata.swift:27:5:27:90 | self[return] |
+| nsdata.swift:27:5:27:5 | self | nsdata.swift:27:5:27:5 | SSA def(self) |
+| nsdata.swift:28:5:28:5 | SSA def(self) | nsdata.swift:28:5:28:23 | self[return] |
+| nsdata.swift:28:5:28:5 | self | nsdata.swift:28:5:28:5 | SSA def(self) |
+| nsdata.swift:29:5:29:5 | SSA def(self) | nsdata.swift:29:5:29:36 | self[return] |
+| nsdata.swift:29:5:29:5 | self | nsdata.swift:29:5:29:5 | SSA def(self) |
+| nsdata.swift:30:5:30:5 | SSA def(self) | nsdata.swift:30:5:30:93 | self[return] |
+| nsdata.swift:30:5:30:5 | self | nsdata.swift:30:5:30:5 | SSA def(self) |
+| nsdata.swift:31:5:31:5 | SSA def(self) | nsdata.swift:31:5:31:29 | self[return] |
+| nsdata.swift:31:5:31:5 | self | nsdata.swift:31:5:31:5 | SSA def(self) |
+| nsdata.swift:32:5:32:5 | SSA def(self) | nsdata.swift:32:5:32:61 | self[return] |
+| nsdata.swift:32:5:32:5 | self | nsdata.swift:32:5:32:5 | SSA def(self) |
+| nsdata.swift:33:5:33:5 | SSA def(self) | nsdata.swift:33:5:33:47 | self[return] |
+| nsdata.swift:33:5:33:5 | self | nsdata.swift:33:5:33:5 | SSA def(self) |
+| nsdata.swift:34:5:34:5 | SSA def(self) | nsdata.swift:34:5:34:88 | self[return] |
+| nsdata.swift:34:5:34:5 | self | nsdata.swift:34:5:34:5 | SSA def(self) |
+| nsdata.swift:35:5:35:5 | SSA def(self) | nsdata.swift:35:5:35:92 | self[return] |
+| nsdata.swift:35:5:35:5 | self | nsdata.swift:35:5:35:5 | SSA def(self) |
+| nsdata.swift:36:5:36:5 | SSA def(self) | nsdata.swift:36:5:36:49 | self[return] |
+| nsdata.swift:36:5:36:5 | self | nsdata.swift:36:5:36:5 | SSA def(self) |
+| nsdata.swift:37:10:37:10 | SSA def(self) | nsdata.swift:37:5:37:98 | self[return] |
+| nsdata.swift:37:10:37:10 | self | nsdata.swift:37:10:37:10 | SSA def(self) |
+| nsdata.swift:37:89:37:89 | Data.Type | nsdata.swift:37:89:37:89 | call to init(_:) |
+| nsdata.swift:37:94:37:94 |  | nsdata.swift:37:89:37:96 | call to init(_:) |
+| nsdata.swift:38:10:38:10 | SSA def(self) | nsdata.swift:38:5:38:96 | self[return] |
+| nsdata.swift:38:10:38:10 | self | nsdata.swift:38:10:38:10 | SSA def(self) |
+| nsdata.swift:39:10:39:10 | SSA def(self) | nsdata.swift:39:5:39:49 | self[return] |
+| nsdata.swift:39:10:39:10 | self | nsdata.swift:39:10:39:10 | SSA def(self) |
+| nsdata.swift:40:16:40:16 | SSA def(self) | nsdata.swift:40:5:40:82 | self[return] |
+| nsdata.swift:40:16:40:16 | self | nsdata.swift:40:16:40:16 | SSA def(self) |
+| nsdata.swift:41:10:41:10 | SSA def(self) | nsdata.swift:41:5:41:104 | self[return] |
+| nsdata.swift:41:10:41:10 | self | nsdata.swift:41:10:41:10 | SSA def(self) |
+| nsdata.swift:42:10:42:10 | SSA def(self) | nsdata.swift:42:5:42:55 | self[return] |
+| nsdata.swift:42:10:42:10 | self | nsdata.swift:42:10:42:10 | SSA def(self) |
+| nsdata.swift:43:10:43:10 | SSA def(self) | nsdata.swift:43:5:43:68 | self[return] |
+| nsdata.swift:43:10:43:10 | self | nsdata.swift:43:10:43:10 | SSA def(self) |
+| nsdata.swift:44:10:44:10 | SSA def(self) | nsdata.swift:44:5:44:71 | self[return] |
+| nsdata.swift:44:10:44:10 | self | nsdata.swift:44:10:44:10 | SSA def(self) |
+| nsdata.swift:45:10:45:10 | SSA def(self) | nsdata.swift:45:5:45:65 | self[return] |
+| nsdata.swift:45:10:45:10 | self | nsdata.swift:45:10:45:10 | SSA def(self) |
+| nsdata.swift:45:56:45:56 | Data.Type | nsdata.swift:45:56:45:56 | call to init(_:) |
+| nsdata.swift:45:61:45:61 |  | nsdata.swift:45:56:45:63 | call to init(_:) |
+| nsdata.swift:46:10:46:10 | SSA def(self) | nsdata.swift:46:84:46:84 | self |
+| nsdata.swift:46:10:46:10 | self | nsdata.swift:46:10:46:10 | SSA def(self) |
+| nsdata.swift:46:84:46:84 | self | nsdata.swift:46:5:46:89 | self[return] |
+| nsdata.swift:47:10:47:10 | SSA def(self) | nsdata.swift:47:86:47:86 | self |
+| nsdata.swift:47:10:47:10 | self | nsdata.swift:47:10:47:10 | SSA def(self) |
+| nsdata.swift:47:86:47:86 | self | nsdata.swift:47:5:47:91 | self[return] |
+| nsdata.swift:57:9:57:9 | SSA def(nsDataTainted1) | nsdata.swift:58:15:58:15 | nsDataTainted1 |
+| nsdata.swift:57:26:57:26 | NSData.Type | nsdata.swift:57:26:57:26 | call to init(bytes:length:) |
+| nsdata.swift:57:26:57:80 | call to init(bytes:length:) | nsdata.swift:57:9:57:9 | SSA def(nsDataTainted1) |
+| nsdata.swift:57:40:57:47 | call to source() | nsdata.swift:57:26:57:80 | call to init(bytes:length:) |
+| nsdata.swift:60:9:60:9 | SSA def(nsDataTainted2) | nsdata.swift:61:15:61:15 | nsDataTainted2 |
+| nsdata.swift:60:26:60:26 | NSData.Type | nsdata.swift:60:26:60:26 | call to init(bytesNoCopy:length:) |
+| nsdata.swift:60:26:60:93 | call to init(bytesNoCopy:length:) | nsdata.swift:60:9:60:9 | SSA def(nsDataTainted2) |
+| nsdata.swift:60:46:60:53 | call to source() | nsdata.swift:60:26:60:93 | call to init(bytesNoCopy:length:) |
+| nsdata.swift:63:9:63:9 | SSA def(nsDataTainted3) | nsdata.swift:64:15:64:15 | nsDataTainted3 |
+| nsdata.swift:63:26:63:26 | NSData.Type | nsdata.swift:63:26:63:26 | call to init(bytesNoCopy:length:deallocator:) |
+| nsdata.swift:63:26:63:111 | call to init(bytesNoCopy:length:deallocator:) | nsdata.swift:63:9:63:9 | SSA def(nsDataTainted3) |
+| nsdata.swift:63:46:63:53 | call to source() | nsdata.swift:63:26:63:111 | call to init(bytesNoCopy:length:deallocator:) |
+| nsdata.swift:66:9:66:9 | SSA def(nsDataTainted4) | nsdata.swift:67:15:67:15 | nsDataTainted4 |
+| nsdata.swift:66:26:66:26 | NSData.Type | nsdata.swift:66:26:66:26 | call to init(bytesNoCopy:length:freeWhenDone:) |
+| nsdata.swift:66:26:66:113 | call to init(bytesNoCopy:length:freeWhenDone:) | nsdata.swift:66:9:66:9 | SSA def(nsDataTainted4) |
+| nsdata.swift:66:46:66:53 | call to source() | nsdata.swift:66:26:66:113 | call to init(bytesNoCopy:length:freeWhenDone:) |
+| nsdata.swift:69:9:69:9 | SSA def(nsDataTainted5) | nsdata.swift:70:15:70:15 | nsDataTainted5 |
+| nsdata.swift:69:26:69:26 | NSData.Type | nsdata.swift:69:26:69:26 | call to init(data:) |
+| nsdata.swift:69:26:69:56 | call to init(data:) | nsdata.swift:69:9:69:9 | SSA def(nsDataTainted5) |
+| nsdata.swift:69:39:69:46 | call to source() | nsdata.swift:69:26:69:56 | call to init(data:) |
+| nsdata.swift:72:9:72:9 | SSA def(nsDataTainted6) | nsdata.swift:73:15:73:15 | nsDataTainted6 |
+| nsdata.swift:72:26:72:26 | NSData.Type | nsdata.swift:72:26:72:26 | call to init(contentsOfFile:) |
+| nsdata.swift:72:26:72:68 | call to init(contentsOfFile:) | nsdata.swift:72:9:72:9 | SSA def(nsDataTainted6) |
+| nsdata.swift:72:49:72:56 | call to source() | nsdata.swift:72:26:72:68 | call to init(contentsOfFile:) |
+| nsdata.swift:73:15:73:15 | nsDataTainted6 | nsdata.swift:73:15:73:29 | ...! |
+| nsdata.swift:75:9:75:9 | SSA def(nsDataTainted7) | nsdata.swift:76:15:76:15 | nsDataTainted7 |
+| nsdata.swift:75:26:75:26 | NSData.Type | nsdata.swift:75:26:75:26 | call to init(contentsOfFile:options:) |
+| nsdata.swift:75:26:75:81 | call to init(contentsOfFile:options:) | nsdata.swift:75:9:75:9 | SSA def(nsDataTainted7) |
+| nsdata.swift:75:49:75:56 | call to source() | nsdata.swift:75:26:75:81 | call to init(contentsOfFile:options:) |
+| nsdata.swift:78:9:78:9 | SSA def(nsDataTainted8) | nsdata.swift:79:15:79:15 | nsDataTainted8 |
+| nsdata.swift:78:26:78:26 | NSData.Type | nsdata.swift:78:26:78:26 | call to init(contentsOf:) |
+| nsdata.swift:78:26:78:61 | call to init(contentsOf:) | nsdata.swift:78:9:78:9 | SSA def(nsDataTainted8) |
+| nsdata.swift:78:45:78:52 | call to source() | nsdata.swift:78:26:78:61 | call to init(contentsOf:) |
+| nsdata.swift:79:15:79:15 | nsDataTainted8 | nsdata.swift:79:15:79:29 | ...! |
+| nsdata.swift:81:9:81:9 | SSA def(nsDataTainted9) | nsdata.swift:82:15:82:15 | nsDataTainted9 |
+| nsdata.swift:81:26:81:26 | NSData.Type | nsdata.swift:81:26:81:26 | call to init(contentsOf:options:) |
+| nsdata.swift:81:26:81:74 | call to init(contentsOf:options:) | nsdata.swift:81:9:81:9 | SSA def(nsDataTainted9) |
+| nsdata.swift:81:45:81:52 | call to source() | nsdata.swift:81:26:81:74 | call to init(contentsOf:options:) |
+| nsdata.swift:82:15:82:15 | nsDataTainted9 | nsdata.swift:82:15:82:29 | ...! |
+| nsdata.swift:84:9:84:9 | SSA def(nsDataTainted10) | nsdata.swift:85:15:85:15 | nsDataTainted10 |
+| nsdata.swift:84:27:84:27 | NSData.Type | nsdata.swift:84:27:84:27 | call to init(contentsOfMappedFile:) |
+| nsdata.swift:84:27:84:75 | call to init(contentsOfMappedFile:) | nsdata.swift:84:9:84:9 | SSA def(nsDataTainted10) |
+| nsdata.swift:84:56:84:63 | call to source() | nsdata.swift:84:27:84:75 | call to init(contentsOfMappedFile:) |
+| nsdata.swift:85:15:85:15 | nsDataTainted10 | nsdata.swift:85:15:85:30 | ...! |
+| nsdata.swift:87:9:87:9 | SSA def(nsDataTainted11) | nsdata.swift:88:15:88:15 | nsDataTainted11 |
+| nsdata.swift:87:27:87:27 | NSData.Type | nsdata.swift:87:27:87:27 | call to init(base64Encoded:options:) |
+| nsdata.swift:87:27:87:79 | call to init(base64Encoded:options:) | nsdata.swift:87:9:87:9 | SSA def(nsDataTainted11) |
+| nsdata.swift:87:49:87:56 | call to source() | nsdata.swift:87:27:87:79 | call to init(base64Encoded:options:) |
+| nsdata.swift:88:15:88:15 | nsDataTainted11 | nsdata.swift:88:15:88:30 | ...! |
+| nsdata.swift:89:9:89:9 | SSA def(nsDataTainted12) | nsdata.swift:90:15:90:15 | nsDataTainted12 |
+| nsdata.swift:89:27:89:27 | NSData.Type | nsdata.swift:89:27:89:27 | call to init(base64Encoded:options:) |
+| nsdata.swift:89:27:89:81 | call to init(base64Encoded:options:) | nsdata.swift:89:9:89:9 | SSA def(nsDataTainted12) |
+| nsdata.swift:89:49:89:56 | call to source() | nsdata.swift:89:27:89:81 | call to init(base64Encoded:options:) |
+| nsdata.swift:90:15:90:15 | nsDataTainted12 | nsdata.swift:90:15:90:30 | ...! |
+| nsdata.swift:92:9:92:9 | SSA def(nsDataTainted13) | nsdata.swift:93:15:93:15 | nsDataTainted13 |
+| nsdata.swift:92:27:92:27 | NSData.Type | nsdata.swift:92:27:92:27 | call to init(base64Encoding:) |
+| nsdata.swift:92:27:92:69 | call to init(base64Encoding:) | nsdata.swift:92:9:92:9 | SSA def(nsDataTainted13) |
+| nsdata.swift:92:50:92:57 | call to source() | nsdata.swift:92:27:92:69 | call to init(base64Encoding:) |
+| nsdata.swift:93:15:93:15 | nsDataTainted13 | nsdata.swift:93:15:93:30 | ...! |
+| nsdata.swift:95:9:95:9 | SSA def(nsDataTainted14) | nsdata.swift:96:15:96:15 | nsDataTainted14 |
+| nsdata.swift:95:27:95:34 | call to source() | nsdata.swift:95:9:95:9 | SSA def(nsDataTainted14) |
+| nsdata.swift:96:15:96:15 | [post] nsDataTainted14 | nsdata.swift:97:15:97:15 | nsDataTainted14 |
+| nsdata.swift:96:15:96:15 | nsDataTainted14 | nsdata.swift:96:15:96:49 | call to base64EncodedData(options:) |
+| nsdata.swift:96:15:96:15 | nsDataTainted14 | nsdata.swift:97:15:97:15 | nsDataTainted14 |
+| nsdata.swift:97:15:97:15 | nsDataTainted14 | nsdata.swift:97:15:97:60 | call to base64EncodedData(options:) |
+| nsdata.swift:99:9:99:9 | SSA def(nsDataTainted15) | nsdata.swift:100:15:100:15 | nsDataTainted15 |
+| nsdata.swift:99:27:99:34 | call to source() | nsdata.swift:99:9:99:9 | SSA def(nsDataTainted15) |
+| nsdata.swift:100:15:100:15 | [post] nsDataTainted15 | nsdata.swift:101:15:101:15 | nsDataTainted15 |
+| nsdata.swift:100:15:100:15 | nsDataTainted15 | nsdata.swift:100:15:100:51 | call to base64EncodedString(options:) |
+| nsdata.swift:100:15:100:15 | nsDataTainted15 | nsdata.swift:101:15:101:15 | nsDataTainted15 |
+| nsdata.swift:101:15:101:15 | nsDataTainted15 | nsdata.swift:101:15:101:62 | call to base64EncodedString(options:) |
+| nsdata.swift:103:9:103:9 | SSA def(nsDataTainted16) | nsdata.swift:104:15:104:15 | nsDataTainted16 |
+| nsdata.swift:103:27:103:34 | call to source() | nsdata.swift:103:9:103:9 | SSA def(nsDataTainted16) |
+| nsdata.swift:104:15:104:15 | nsDataTainted16 | nsdata.swift:104:15:104:46 | call to base64Encoding() |
+| nsdata.swift:106:15:106:70 | call to dataWithContentsOfMappedFile(_:) | nsdata.swift:106:15:106:71 | ...! |
+| nsdata.swift:106:51:106:58 | call to source() | nsdata.swift:106:15:106:70 | call to dataWithContentsOfMappedFile(_:) |
+| nsdata.swift:108:9:108:9 | SSA def(nsDataTainted17) | nsdata.swift:109:5:109:5 | nsDataTainted17 |
+| nsdata.swift:108:27:108:34 | call to source() | nsdata.swift:108:9:108:9 | SSA def(nsDataTainted17) |
+| nsdata.swift:110:9:110:9 | SSA def(bytes) | nsdata.swift:110:45:110:45 | bytes |
+| nsdata.swift:110:9:110:9 | bytes | nsdata.swift:110:9:110:9 | SSA def(bytes) |
+| nsdata.swift:113:9:113:9 | SSA def(nsDataTainted18) | nsdata.swift:115:5:115:5 | nsDataTainted18 |
+| nsdata.swift:113:27:113:34 | call to source() | nsdata.swift:113:9:113:9 | SSA def(nsDataTainted18) |
+| nsdata.swift:114:9:114:9 | SSA def(bufferTainted18) | nsdata.swift:115:30:115:30 | bufferTainted18 |
+| nsdata.swift:114:27:114:64 | call to init(bitPattern:) | nsdata.swift:114:27:114:65 | ...! |
+| nsdata.swift:114:27:114:65 | ...! | nsdata.swift:114:9:114:9 | SSA def(bufferTainted18) |
+| nsdata.swift:115:5:115:5 | nsDataTainted18 | nsdata.swift:115:30:115:30 | [post] bufferTainted18 |
+| nsdata.swift:115:30:115:30 | [post] bufferTainted18 | nsdata.swift:116:15:116:15 | bufferTainted18 |
+| nsdata.swift:115:30:115:30 | bufferTainted18 | nsdata.swift:116:15:116:15 | bufferTainted18 |
+| nsdata.swift:118:9:118:9 | SSA def(nsDataTainted19) | nsdata.swift:120:5:120:5 | nsDataTainted19 |
+| nsdata.swift:118:27:118:34 | call to source() | nsdata.swift:118:9:118:9 | SSA def(nsDataTainted19) |
+| nsdata.swift:119:9:119:9 | SSA def(bufferTainted19) | nsdata.swift:120:30:120:30 | bufferTainted19 |
+| nsdata.swift:119:27:119:64 | call to init(bitPattern:) | nsdata.swift:119:27:119:65 | ...! |
+| nsdata.swift:119:27:119:65 | ...! | nsdata.swift:119:9:119:9 | SSA def(bufferTainted19) |
+| nsdata.swift:120:5:120:5 | nsDataTainted19 | nsdata.swift:120:30:120:30 | [post] bufferTainted19 |
+| nsdata.swift:120:30:120:30 | [post] bufferTainted19 | nsdata.swift:121:15:121:15 | bufferTainted19 |
+| nsdata.swift:120:30:120:30 | bufferTainted19 | nsdata.swift:121:15:121:15 | bufferTainted19 |
+| nsdata.swift:123:9:123:9 | SSA def(nsDataTainted20) | nsdata.swift:125:5:125:5 | nsDataTainted20 |
+| nsdata.swift:123:27:123:34 | call to source() | nsdata.swift:123:9:123:9 | SSA def(nsDataTainted20) |
+| nsdata.swift:124:9:124:9 | SSA def(bufferTainted20) | nsdata.swift:125:30:125:30 | bufferTainted20 |
+| nsdata.swift:124:27:124:64 | call to init(bitPattern:) | nsdata.swift:124:27:124:65 | ...! |
+| nsdata.swift:124:27:124:65 | ...! | nsdata.swift:124:9:124:9 | SSA def(bufferTainted20) |
+| nsdata.swift:125:5:125:5 | nsDataTainted20 | nsdata.swift:125:30:125:30 | [post] bufferTainted20 |
+| nsdata.swift:125:30:125:30 | [post] bufferTainted20 | nsdata.swift:126:15:126:15 | bufferTainted20 |
+| nsdata.swift:125:30:125:30 | bufferTainted20 | nsdata.swift:126:15:126:15 | bufferTainted20 |
+| nsdata.swift:128:9:128:9 | SSA def(nsDataTainted21) | nsdata.swift:129:15:129:15 | nsDataTainted21 |
+| nsdata.swift:128:27:128:34 | call to source() | nsdata.swift:128:9:128:9 | SSA def(nsDataTainted21) |
+| nsdata.swift:129:15:129:15 | nsDataTainted21 | nsdata.swift:129:15:129:54 | call to subdata(with:) |
+| nsdata.swift:131:9:131:9 | SSA def(nsDataTainted22) | nsdata.swift:132:15:132:15 | nsDataTainted22 |
+| nsdata.swift:131:27:131:34 | call to source() | nsdata.swift:131:9:131:9 | SSA def(nsDataTainted22) |
+| nsdata.swift:132:15:132:15 | nsDataTainted22 | nsdata.swift:132:15:132:81 | call to compressed(using:) |
+| nsdata.swift:134:9:134:9 | SSA def(nsDataTainted23) | nsdata.swift:135:15:135:15 | nsDataTainted23 |
+| nsdata.swift:134:27:134:34 | call to source() | nsdata.swift:134:9:134:9 | SSA def(nsDataTainted23) |
+| nsdata.swift:135:15:135:15 | nsDataTainted23 | nsdata.swift:135:15:135:83 | call to decompressed(using:) |
+| nsdata.swift:138:9:138:9 | SSA def(nsDataTainted24) | nsdata.swift:139:15:139:15 | nsDataTainted24 |
+| nsdata.swift:138:27:138:34 | call to source() | nsdata.swift:138:9:138:9 | SSA def(nsDataTainted24) |
+| nsdata.swift:139:15:139:15 | [post] nsDataTainted24 | nsdata.swift:140:15:140:15 | nsDataTainted24 |
 | nsdata.swift:139:15:139:15 | nsDataTainted24 | nsdata.swift:139:15:139:31 | .bytes |
+| nsdata.swift:139:15:139:15 | nsDataTainted24 | nsdata.swift:140:15:140:15 | nsDataTainted24 |
 | nsdata.swift:140:15:140:15 | nsDataTainted24 | nsdata.swift:140:15:140:31 | .description |
+| nsmutabledata.swift:5:5:5:5 | SSA def(self) | nsmutabledata.swift:5:5:5:29 | self[return] |
+| nsmutabledata.swift:5:5:5:5 | self | nsmutabledata.swift:5:5:5:5 | SSA def(self) |
+| nsmutabledata.swift:8:8:8:8 | SSA def(self) | nsmutabledata.swift:8:8:8:8 | self[return] |
+| nsmutabledata.swift:8:8:8:8 | self | nsmutabledata.swift:8:8:8:8 | SSA def(self) |
+| nsmutabledata.swift:10:7:10:7 | SSA def(self) | nsmutabledata.swift:10:7:10:7 | self[return] |
+| nsmutabledata.swift:10:7:10:7 | SSA def(self) | nsmutabledata.swift:10:7:10:7 | self[return] |
+| nsmutabledata.swift:10:7:10:7 | self | nsmutabledata.swift:10:7:10:7 | SSA def(self) |
+| nsmutabledata.swift:10:7:10:7 | self | nsmutabledata.swift:10:7:10:7 | SSA def(self) |
+| nsmutabledata.swift:12:7:12:7 | SSA def(self) | nsmutabledata.swift:12:7:12:7 | self[return] |
+| nsmutabledata.swift:12:7:12:7 | self | nsmutabledata.swift:12:7:12:7 | SSA def(self) |
+| nsmutabledata.swift:12:30:12:30 | SSA def(self) | nsmutabledata.swift:12:30:12:30 | self[return] |
+| nsmutabledata.swift:12:30:12:30 | self | nsmutabledata.swift:12:30:12:30 | SSA def(self) |
+| nsmutabledata.swift:13:9:13:9 | self | nsmutabledata.swift:13:9:13:9 | SSA def(self) |
+| nsmutabledata.swift:13:9:13:9 | self | nsmutabledata.swift:13:9:13:9 | SSA def(self) |
+| nsmutabledata.swift:13:9:13:9 | self | nsmutabledata.swift:13:9:13:9 | SSA def(self) |
+| nsmutabledata.swift:13:9:13:9 | value | nsmutabledata.swift:13:9:13:9 | SSA def(value) |
+| nsmutabledata.swift:14:10:14:10 | SSA def(self) | nsmutabledata.swift:14:5:14:58 | self[return] |
+| nsmutabledata.swift:14:10:14:10 | self | nsmutabledata.swift:14:10:14:10 | SSA def(self) |
+| nsmutabledata.swift:15:10:15:10 | SSA def(self) | nsmutabledata.swift:15:5:15:33 | self[return] |
+| nsmutabledata.swift:15:10:15:10 | self | nsmutabledata.swift:15:10:15:10 | SSA def(self) |
+| nsmutabledata.swift:16:10:16:10 | SSA def(self) | nsmutabledata.swift:16:5:16:78 | self[return] |
+| nsmutabledata.swift:16:10:16:10 | self | nsmutabledata.swift:16:10:16:10 | SSA def(self) |
+| nsmutabledata.swift:17:10:17:10 | SSA def(self) | nsmutabledata.swift:17:5:17:121 | self[return] |
+| nsmutabledata.swift:17:10:17:10 | self | nsmutabledata.swift:17:10:17:10 | SSA def(self) |
+| nsmutabledata.swift:18:10:18:10 | SSA def(self) | nsmutabledata.swift:18:5:18:33 | self[return] |
+| nsmutabledata.swift:18:10:18:10 | self | nsmutabledata.swift:18:10:18:10 | SSA def(self) |
+| nsmutabledata.swift:27:9:27:9 | SSA def(nsMutableDataTainted1) | nsmutabledata.swift:28:5:28:5 | nsMutableDataTainted1 |
+| nsmutabledata.swift:27:33:27:47 | call to init() | nsmutabledata.swift:27:9:27:9 | SSA def(nsMutableDataTainted1) |
+| nsmutabledata.swift:28:5:28:5 | [post] nsMutableDataTainted1 | nsmutabledata.swift:29:15:29:15 | nsMutableDataTainted1 |
+| nsmutabledata.swift:28:5:28:5 | nsMutableDataTainted1 | nsmutabledata.swift:29:15:29:15 | nsMutableDataTainted1 |
+| nsmutabledata.swift:28:34:28:41 | call to source() | nsmutabledata.swift:28:5:28:5 | [post] nsMutableDataTainted1 |
+| nsmutabledata.swift:31:9:31:9 | SSA def(nsMutableDataTainted2) | nsmutabledata.swift:32:5:32:5 | nsMutableDataTainted2 |
+| nsmutabledata.swift:31:33:31:47 | call to init() | nsmutabledata.swift:31:9:31:9 | SSA def(nsMutableDataTainted2) |
+| nsmutabledata.swift:32:5:32:5 | [post] nsMutableDataTainted2 | nsmutabledata.swift:33:15:33:15 | nsMutableDataTainted2 |
+| nsmutabledata.swift:32:5:32:5 | nsMutableDataTainted2 | nsmutabledata.swift:33:15:33:15 | nsMutableDataTainted2 |
+| nsmutabledata.swift:32:34:32:41 | call to source() | nsmutabledata.swift:32:5:32:5 | [post] nsMutableDataTainted2 |
+| nsmutabledata.swift:35:9:35:9 | SSA def(nsMutableDataTainted3) | nsmutabledata.swift:36:5:36:5 | nsMutableDataTainted3 |
+| nsmutabledata.swift:35:33:35:47 | call to init() | nsmutabledata.swift:35:9:35:9 | SSA def(nsMutableDataTainted3) |
+| nsmutabledata.swift:36:5:36:5 | [post] nsMutableDataTainted3 | nsmutabledata.swift:37:15:37:15 | nsMutableDataTainted3 |
+| nsmutabledata.swift:36:5:36:5 | nsMutableDataTainted3 | nsmutabledata.swift:37:15:37:15 | nsMutableDataTainted3 |
+| nsmutabledata.swift:36:66:36:73 | call to source() | nsmutabledata.swift:36:5:36:5 | [post] nsMutableDataTainted3 |
+| nsmutabledata.swift:39:9:39:9 | SSA def(nsMutableDataTainted4) | nsmutabledata.swift:40:5:40:5 | nsMutableDataTainted4 |
+| nsmutabledata.swift:39:33:39:47 | call to init() | nsmutabledata.swift:39:9:39:9 | SSA def(nsMutableDataTainted4) |
+| nsmutabledata.swift:40:5:40:5 | [post] nsMutableDataTainted4 | nsmutabledata.swift:41:15:41:15 | nsMutableDataTainted4 |
+| nsmutabledata.swift:40:5:40:5 | nsMutableDataTainted4 | nsmutabledata.swift:41:15:41:15 | nsMutableDataTainted4 |
+| nsmutabledata.swift:40:66:40:73 | call to source() | nsmutabledata.swift:40:5:40:5 | [post] nsMutableDataTainted4 |
+| nsmutabledata.swift:43:9:43:9 | SSA def(nsMutableDataTainted5) | nsmutabledata.swift:44:5:44:5 | nsMutableDataTainted5 |
+| nsmutabledata.swift:43:33:43:47 | call to init() | nsmutabledata.swift:43:9:43:9 | SSA def(nsMutableDataTainted5) |
+| nsmutabledata.swift:44:5:44:5 | [post] nsMutableDataTainted5 | nsmutabledata.swift:45:15:45:15 | nsMutableDataTainted5 |
+| nsmutabledata.swift:44:5:44:5 | nsMutableDataTainted5 | nsmutabledata.swift:45:15:45:15 | nsMutableDataTainted5 |
+| nsmutabledata.swift:44:35:44:42 | call to source() | nsmutabledata.swift:44:5:44:5 | [post] nsMutableDataTainted5 |
+| nsmutabledata.swift:48:9:48:9 | SSA def(nsMutableDataTainted6) | nsmutabledata.swift:49:15:49:15 | nsMutableDataTainted6 |
+| nsmutabledata.swift:48:33:48:40 | call to source() | nsmutabledata.swift:48:9:48:9 | SSA def(nsMutableDataTainted6) |
 | nsmutabledata.swift:49:15:49:15 | nsMutableDataTainted6 | nsmutabledata.swift:49:15:49:37 | .mutableBytes |
+| string.swift:5:7:5:7 | SSA def(x) | string.swift:7:16:7:16 | x |
+| string.swift:5:11:5:18 | call to source() | string.swift:5:7:5:7 | SSA def(x) |
 | string.swift:7:13:7:13 |  | string.swift:7:13:7:13 | [post]  |
 | string.swift:7:13:7:13 |  | string.swift:7:14:7:14 | [post] &... |
+| string.swift:7:13:7:13 | SSA def($interpolation) | string.swift:7:14:7:14 | SSA phi($interpolation) |
 | string.swift:7:13:7:13 | TapExpr | string.swift:7:13:7:13 | "..." |
+| string.swift:7:14:7:14 | $interpolation | string.swift:7:14:7:14 | &... |
 | string.swift:7:14:7:14 | &... | string.swift:7:13:7:13 | [post]  |
 | string.swift:7:14:7:14 | &... | string.swift:7:14:7:14 | [post] &... |
+| string.swift:7:14:7:14 | &... | string.swift:7:15:7:15 | $interpolation |
+| string.swift:7:14:7:14 | SSA phi($interpolation) | string.swift:7:14:7:14 | $interpolation |
+| string.swift:7:14:7:14 | [post] &... | string.swift:7:15:7:15 | $interpolation |
+| string.swift:7:15:7:15 | $interpolation | string.swift:7:15:7:15 | &... |
 | string.swift:7:15:7:15 | &... | string.swift:7:15:7:15 | [post] &... |
+| string.swift:7:15:7:15 | &... | string.swift:7:18:7:18 | $interpolation |
+| string.swift:7:15:7:15 | [post] &... | string.swift:7:18:7:18 | $interpolation |
 | string.swift:7:16:7:16 | x | string.swift:7:15:7:15 | [post] &... |
+| string.swift:7:16:7:16 | x | string.swift:9:16:9:16 | x |
 | string.swift:7:18:7:18 |  | string.swift:7:18:7:18 | [post]  |
 | string.swift:7:18:7:18 |  | string.swift:7:18:7:18 | [post] &... |
+| string.swift:7:18:7:18 | $interpolation | string.swift:7:18:7:18 | &... |
+| string.swift:7:18:7:18 | &... | string.swift:7:13:7:13 | TapExpr |
 | string.swift:7:18:7:18 | &... | string.swift:7:18:7:18 | [post]  |
 | string.swift:7:18:7:18 | &... | string.swift:7:18:7:18 | [post] &... |
+| string.swift:7:18:7:18 | [post] &... | string.swift:7:13:7:13 | TapExpr |
 | string.swift:9:13:9:13 |  | string.swift:9:13:9:13 | [post]  |
 | string.swift:9:13:9:13 |  | string.swift:9:14:9:14 | [post] &... |
+| string.swift:9:13:9:13 | SSA def($interpolation) | string.swift:9:14:9:14 | SSA phi($interpolation) |
 | string.swift:9:13:9:13 | TapExpr | string.swift:9:13:9:13 | "..." |
+| string.swift:9:14:9:14 | $interpolation | string.swift:9:14:9:14 | &... |
 | string.swift:9:14:9:14 | &... | string.swift:9:13:9:13 | [post]  |
 | string.swift:9:14:9:14 | &... | string.swift:9:14:9:14 | [post] &... |
+| string.swift:9:14:9:14 | &... | string.swift:9:15:9:15 | $interpolation |
+| string.swift:9:14:9:14 | SSA phi($interpolation) | string.swift:9:14:9:14 | $interpolation |
+| string.swift:9:14:9:14 | [post] &... | string.swift:9:15:9:15 | $interpolation |
+| string.swift:9:15:9:15 | $interpolation | string.swift:9:15:9:15 | &... |
 | string.swift:9:15:9:15 | &... | string.swift:9:15:9:15 | [post] &... |
+| string.swift:9:15:9:15 | &... | string.swift:9:18:9:18 | $interpolation |
+| string.swift:9:15:9:15 | [post] &... | string.swift:9:18:9:18 | $interpolation |
 | string.swift:9:16:9:16 | x | string.swift:9:15:9:15 | [post] &... |
+| string.swift:9:16:9:16 | x | string.swift:9:21:9:21 | x |
 | string.swift:9:18:9:18 |   | string.swift:9:18:9:18 | [post]   |
 | string.swift:9:18:9:18 |   | string.swift:9:18:9:18 | [post] &... |
+| string.swift:9:18:9:18 | $interpolation | string.swift:9:18:9:18 | &... |
 | string.swift:9:18:9:18 | &... | string.swift:9:18:9:18 | [post]   |
 | string.swift:9:18:9:18 | &... | string.swift:9:18:9:18 | [post] &... |
+| string.swift:9:18:9:18 | &... | string.swift:9:20:9:20 | $interpolation |
+| string.swift:9:18:9:18 | [post] &... | string.swift:9:20:9:20 | $interpolation |
+| string.swift:9:20:9:20 | $interpolation | string.swift:9:20:9:20 | &... |
 | string.swift:9:20:9:20 | &... | string.swift:9:20:9:20 | [post] &... |
+| string.swift:9:20:9:20 | &... | string.swift:9:23:9:23 | $interpolation |
+| string.swift:9:20:9:20 | [post] &... | string.swift:9:23:9:23 | $interpolation |
 | string.swift:9:21:9:21 | x | string.swift:9:20:9:20 | [post] &... |
+| string.swift:9:21:9:21 | x | string.swift:11:16:11:16 | x |
 | string.swift:9:23:9:23 |  | string.swift:9:23:9:23 | [post]  |
 | string.swift:9:23:9:23 |  | string.swift:9:23:9:23 | [post] &... |
+| string.swift:9:23:9:23 | $interpolation | string.swift:9:23:9:23 | &... |
+| string.swift:9:23:9:23 | &... | string.swift:9:13:9:13 | TapExpr |
 | string.swift:9:23:9:23 | &... | string.swift:9:23:9:23 | [post]  |
 | string.swift:9:23:9:23 | &... | string.swift:9:23:9:23 | [post] &... |
+| string.swift:9:23:9:23 | [post] &... | string.swift:9:13:9:13 | TapExpr |
 | string.swift:11:13:11:13 |  | string.swift:11:13:11:13 | [post]  |
 | string.swift:11:13:11:13 |  | string.swift:11:14:11:14 | [post] &... |
+| string.swift:11:13:11:13 | SSA def($interpolation) | string.swift:11:14:11:14 | SSA phi($interpolation) |
 | string.swift:11:13:11:13 | TapExpr | string.swift:11:13:11:13 | "..." |
+| string.swift:11:14:11:14 | $interpolation | string.swift:11:14:11:14 | &... |
 | string.swift:11:14:11:14 | &... | string.swift:11:13:11:13 | [post]  |
 | string.swift:11:14:11:14 | &... | string.swift:11:14:11:14 | [post] &... |
+| string.swift:11:14:11:14 | &... | string.swift:11:15:11:15 | $interpolation |
+| string.swift:11:14:11:14 | SSA phi($interpolation) | string.swift:11:14:11:14 | $interpolation |
+| string.swift:11:14:11:14 | [post] &... | string.swift:11:15:11:15 | $interpolation |
+| string.swift:11:15:11:15 | $interpolation | string.swift:11:15:11:15 | &... |
 | string.swift:11:15:11:15 | &... | string.swift:11:15:11:15 | [post] &... |
+| string.swift:11:15:11:15 | &... | string.swift:11:18:11:18 | $interpolation |
+| string.swift:11:15:11:15 | [post] &... | string.swift:11:18:11:18 | $interpolation |
 | string.swift:11:16:11:16 | x | string.swift:11:15:11:15 | [post] &... |
+| string.swift:11:16:11:16 | x | string.swift:11:26:11:26 | x |
 | string.swift:11:18:11:18 |   | string.swift:11:18:11:18 | [post]   |
 | string.swift:11:18:11:18 |   | string.swift:11:18:11:18 | [post] &... |
+| string.swift:11:18:11:18 | $interpolation | string.swift:11:18:11:18 | &... |
 | string.swift:11:18:11:18 | &... | string.swift:11:18:11:18 | [post]   |
 | string.swift:11:18:11:18 | &... | string.swift:11:18:11:18 | [post] &... |
+| string.swift:11:18:11:18 | &... | string.swift:11:20:11:20 | $interpolation |
+| string.swift:11:18:11:18 | [post] &... | string.swift:11:20:11:20 | $interpolation |
+| string.swift:11:20:11:20 | $interpolation | string.swift:11:20:11:20 | &... |
 | string.swift:11:20:11:20 | &... | string.swift:11:20:11:20 | [post] &... |
 | string.swift:11:20:11:20 | &... | string.swift:11:21:11:21 | [post] 0 |
+| string.swift:11:20:11:20 | &... | string.swift:11:23:11:23 | $interpolation |
+| string.swift:11:20:11:20 | [post] &... | string.swift:11:23:11:23 | $interpolation |
 | string.swift:11:21:11:21 | 0 | string.swift:11:20:11:20 | [post] &... |
 | string.swift:11:21:11:21 | 0 | string.swift:11:21:11:21 | [post] 0 |
 | string.swift:11:23:11:23 |   | string.swift:11:23:11:23 | [post]   |
 | string.swift:11:23:11:23 |   | string.swift:11:23:11:23 | [post] &... |
+| string.swift:11:23:11:23 | $interpolation | string.swift:11:23:11:23 | &... |
 | string.swift:11:23:11:23 | &... | string.swift:11:23:11:23 | [post]   |
 | string.swift:11:23:11:23 | &... | string.swift:11:23:11:23 | [post] &... |
+| string.swift:11:23:11:23 | &... | string.swift:11:25:11:25 | $interpolation |
+| string.swift:11:23:11:23 | [post] &... | string.swift:11:25:11:25 | $interpolation |
+| string.swift:11:25:11:25 | $interpolation | string.swift:11:25:11:25 | &... |
 | string.swift:11:25:11:25 | &... | string.swift:11:25:11:25 | [post] &... |
+| string.swift:11:25:11:25 | &... | string.swift:11:28:11:28 | $interpolation |
+| string.swift:11:25:11:25 | [post] &... | string.swift:11:28:11:28 | $interpolation |
 | string.swift:11:26:11:26 | x | string.swift:11:25:11:25 | [post] &... |
+| string.swift:11:26:11:26 | x | string.swift:16:16:16:16 | x |
 | string.swift:11:28:11:28 |  | string.swift:11:28:11:28 | [post]  |
 | string.swift:11:28:11:28 |  | string.swift:11:28:11:28 | [post] &... |
+| string.swift:11:28:11:28 | $interpolation | string.swift:11:28:11:28 | &... |
+| string.swift:11:28:11:28 | &... | string.swift:11:13:11:13 | TapExpr |
 | string.swift:11:28:11:28 | &... | string.swift:11:28:11:28 | [post]  |
 | string.swift:11:28:11:28 | &... | string.swift:11:28:11:28 | [post] &... |
+| string.swift:11:28:11:28 | [post] &... | string.swift:11:13:11:13 | TapExpr |
+| string.swift:13:7:13:7 | SSA def(y) | string.swift:14:16:14:16 | y |
+| string.swift:13:11:13:11 | 42 | string.swift:13:7:13:7 | SSA def(y) |
 | string.swift:14:13:14:13 |  | string.swift:14:13:14:13 | [post]  |
 | string.swift:14:13:14:13 |  | string.swift:14:14:14:14 | [post] &... |
+| string.swift:14:13:14:13 | SSA def($interpolation) | string.swift:14:14:14:14 | SSA phi($interpolation) |
 | string.swift:14:13:14:13 | TapExpr | string.swift:14:13:14:13 | "..." |
+| string.swift:14:14:14:14 | $interpolation | string.swift:14:14:14:14 | &... |
 | string.swift:14:14:14:14 | &... | string.swift:14:13:14:13 | [post]  |
 | string.swift:14:14:14:14 | &... | string.swift:14:14:14:14 | [post] &... |
+| string.swift:14:14:14:14 | &... | string.swift:14:15:14:15 | $interpolation |
+| string.swift:14:14:14:14 | SSA phi($interpolation) | string.swift:14:14:14:14 | $interpolation |
+| string.swift:14:14:14:14 | [post] &... | string.swift:14:15:14:15 | $interpolation |
+| string.swift:14:15:14:15 | $interpolation | string.swift:14:15:14:15 | &... |
 | string.swift:14:15:14:15 | &... | string.swift:14:15:14:15 | [post] &... |
+| string.swift:14:15:14:15 | &... | string.swift:14:18:14:18 | $interpolation |
+| string.swift:14:15:14:15 | [post] &... | string.swift:14:18:14:18 | $interpolation |
 | string.swift:14:16:14:16 | y | string.swift:14:15:14:15 | [post] &... |
+| string.swift:14:16:14:16 | y | string.swift:16:27:16:27 | y |
 | string.swift:14:18:14:18 |  | string.swift:14:18:14:18 | [post]  |
 | string.swift:14:18:14:18 |  | string.swift:14:18:14:18 | [post] &... |
+| string.swift:14:18:14:18 | $interpolation | string.swift:14:18:14:18 | &... |
+| string.swift:14:18:14:18 | &... | string.swift:14:13:14:13 | TapExpr |
 | string.swift:14:18:14:18 | &... | string.swift:14:18:14:18 | [post]  |
 | string.swift:14:18:14:18 | &... | string.swift:14:18:14:18 | [post] &... |
+| string.swift:14:18:14:18 | [post] &... | string.swift:14:13:14:13 | TapExpr |
 | string.swift:16:13:16:13 |  | string.swift:16:13:16:13 | [post]  |
 | string.swift:16:13:16:13 |  | string.swift:16:14:16:14 | [post] &... |
+| string.swift:16:13:16:13 | SSA def($interpolation) | string.swift:16:14:16:14 | SSA phi($interpolation) |
 | string.swift:16:13:16:13 | TapExpr | string.swift:16:13:16:13 | "..." |
+| string.swift:16:14:16:14 | $interpolation | string.swift:16:14:16:14 | &... |
 | string.swift:16:14:16:14 | &... | string.swift:16:13:16:13 | [post]  |
 | string.swift:16:14:16:14 | &... | string.swift:16:14:16:14 | [post] &... |
+| string.swift:16:14:16:14 | &... | string.swift:16:15:16:15 | $interpolation |
+| string.swift:16:14:16:14 | SSA phi($interpolation) | string.swift:16:14:16:14 | $interpolation |
+| string.swift:16:14:16:14 | [post] &... | string.swift:16:15:16:15 | $interpolation |
+| string.swift:16:15:16:15 | $interpolation | string.swift:16:15:16:15 | &... |
 | string.swift:16:15:16:15 | &... | string.swift:16:15:16:15 | [post] &... |
+| string.swift:16:15:16:15 | &... | string.swift:16:18:16:18 | $interpolation |
+| string.swift:16:15:16:15 | [post] &... | string.swift:16:18:16:18 | $interpolation |
 | string.swift:16:16:16:16 | x | string.swift:16:15:16:15 | [post] &... |
+| string.swift:16:16:16:16 | x | string.swift:18:27:18:27 | x |
 | string.swift:16:18:16:18 |  hello  | string.swift:16:18:16:18 | [post]  hello  |
 | string.swift:16:18:16:18 |  hello  | string.swift:16:18:16:18 | [post] &... |
+| string.swift:16:18:16:18 | $interpolation | string.swift:16:18:16:18 | &... |
 | string.swift:16:18:16:18 | &... | string.swift:16:18:16:18 | [post]  hello  |
 | string.swift:16:18:16:18 | &... | string.swift:16:18:16:18 | [post] &... |
+| string.swift:16:18:16:18 | &... | string.swift:16:26:16:26 | $interpolation |
+| string.swift:16:18:16:18 | [post] &... | string.swift:16:26:16:26 | $interpolation |
+| string.swift:16:26:16:26 | $interpolation | string.swift:16:26:16:26 | &... |
 | string.swift:16:26:16:26 | &... | string.swift:16:26:16:26 | [post] &... |
+| string.swift:16:26:16:26 | &... | string.swift:16:29:16:29 | $interpolation |
+| string.swift:16:26:16:26 | [post] &... | string.swift:16:29:16:29 | $interpolation |
 | string.swift:16:27:16:27 | y | string.swift:16:26:16:26 | [post] &... |
+| string.swift:16:27:16:27 | y | string.swift:18:16:18:16 | y |
 | string.swift:16:29:16:29 |  | string.swift:16:29:16:29 | [post]  |
 | string.swift:16:29:16:29 |  | string.swift:16:29:16:29 | [post] &... |
+| string.swift:16:29:16:29 | $interpolation | string.swift:16:29:16:29 | &... |
+| string.swift:16:29:16:29 | &... | string.swift:16:13:16:13 | TapExpr |
 | string.swift:16:29:16:29 | &... | string.swift:16:29:16:29 | [post]  |
 | string.swift:16:29:16:29 | &... | string.swift:16:29:16:29 | [post] &... |
+| string.swift:16:29:16:29 | [post] &... | string.swift:16:13:16:13 | TapExpr |
 | string.swift:18:13:18:13 |  | string.swift:18:13:18:13 | [post]  |
 | string.swift:18:13:18:13 |  | string.swift:18:14:18:14 | [post] &... |
+| string.swift:18:13:18:13 | SSA def($interpolation) | string.swift:18:14:18:14 | SSA phi($interpolation) |
 | string.swift:18:13:18:13 | TapExpr | string.swift:18:13:18:13 | "..." |
+| string.swift:18:14:18:14 | $interpolation | string.swift:18:14:18:14 | &... |
 | string.swift:18:14:18:14 | &... | string.swift:18:13:18:13 | [post]  |
 | string.swift:18:14:18:14 | &... | string.swift:18:14:18:14 | [post] &... |
+| string.swift:18:14:18:14 | &... | string.swift:18:15:18:15 | $interpolation |
+| string.swift:18:14:18:14 | SSA phi($interpolation) | string.swift:18:14:18:14 | $interpolation |
+| string.swift:18:14:18:14 | [post] &... | string.swift:18:15:18:15 | $interpolation |
+| string.swift:18:15:18:15 | $interpolation | string.swift:18:15:18:15 | &... |
 | string.swift:18:15:18:15 | &... | string.swift:18:15:18:15 | [post] &... |
+| string.swift:18:15:18:15 | &... | string.swift:18:18:18:18 | $interpolation |
+| string.swift:18:15:18:15 | [post] &... | string.swift:18:18:18:18 | $interpolation |
 | string.swift:18:16:18:16 | y | string.swift:18:15:18:15 | [post] &... |
 | string.swift:18:18:18:18 |  world  | string.swift:18:18:18:18 | [post]  world  |
 | string.swift:18:18:18:18 |  world  | string.swift:18:18:18:18 | [post] &... |
+| string.swift:18:18:18:18 | $interpolation | string.swift:18:18:18:18 | &... |
 | string.swift:18:18:18:18 | &... | string.swift:18:18:18:18 | [post]  world  |
 | string.swift:18:18:18:18 | &... | string.swift:18:18:18:18 | [post] &... |
+| string.swift:18:18:18:18 | &... | string.swift:18:26:18:26 | $interpolation |
+| string.swift:18:18:18:18 | [post] &... | string.swift:18:26:18:26 | $interpolation |
+| string.swift:18:26:18:26 | $interpolation | string.swift:18:26:18:26 | &... |
 | string.swift:18:26:18:26 | &... | string.swift:18:26:18:26 | [post] &... |
+| string.swift:18:26:18:26 | &... | string.swift:18:29:18:29 | $interpolation |
+| string.swift:18:26:18:26 | [post] &... | string.swift:18:29:18:29 | $interpolation |
 | string.swift:18:27:18:27 | x | string.swift:18:26:18:26 | [post] &... |
 | string.swift:18:29:18:29 |  | string.swift:18:29:18:29 | [post]  |
 | string.swift:18:29:18:29 |  | string.swift:18:29:18:29 | [post] &... |
+| string.swift:18:29:18:29 | $interpolation | string.swift:18:29:18:29 | &... |
+| string.swift:18:29:18:29 | &... | string.swift:18:13:18:13 | TapExpr |
 | string.swift:18:29:18:29 | &... | string.swift:18:29:18:29 | [post]  |
 | string.swift:18:29:18:29 | &... | string.swift:18:29:18:29 | [post] &... |
+| string.swift:18:29:18:29 | [post] &... | string.swift:18:13:18:13 | TapExpr |
+| string.swift:20:3:20:7 | SSA def(x) | string.swift:21:16:21:16 | x |
+| string.swift:20:7:20:7 | 0 | string.swift:20:3:20:7 | SSA def(x) |
 | string.swift:21:13:21:13 |  | string.swift:21:13:21:13 | [post]  |
 | string.swift:21:13:21:13 |  | string.swift:21:14:21:14 | [post] &... |
+| string.swift:21:13:21:13 | SSA def($interpolation) | string.swift:21:14:21:14 | SSA phi($interpolation) |
 | string.swift:21:13:21:13 | TapExpr | string.swift:21:13:21:13 | "..." |
+| string.swift:21:14:21:14 | $interpolation | string.swift:21:14:21:14 | &... |
 | string.swift:21:14:21:14 | &... | string.swift:21:13:21:13 | [post]  |
 | string.swift:21:14:21:14 | &... | string.swift:21:14:21:14 | [post] &... |
+| string.swift:21:14:21:14 | &... | string.swift:21:15:21:15 | $interpolation |
+| string.swift:21:14:21:14 | SSA phi($interpolation) | string.swift:21:14:21:14 | $interpolation |
+| string.swift:21:14:21:14 | [post] &... | string.swift:21:15:21:15 | $interpolation |
+| string.swift:21:15:21:15 | $interpolation | string.swift:21:15:21:15 | &... |
 | string.swift:21:15:21:15 | &... | string.swift:21:15:21:15 | [post] &... |
+| string.swift:21:15:21:15 | &... | string.swift:21:18:21:18 | $interpolation |
+| string.swift:21:15:21:15 | [post] &... | string.swift:21:18:21:18 | $interpolation |
 | string.swift:21:16:21:16 | x | string.swift:21:15:21:15 | [post] &... |
 | string.swift:21:18:21:18 |  | string.swift:21:18:21:18 | [post]  |
 | string.swift:21:18:21:18 |  | string.swift:21:18:21:18 | [post] &... |
+| string.swift:21:18:21:18 | $interpolation | string.swift:21:18:21:18 | &... |
+| string.swift:21:18:21:18 | &... | string.swift:21:13:21:13 | TapExpr |
 | string.swift:21:18:21:18 | &... | string.swift:21:18:21:18 | [post]  |
 | string.swift:21:18:21:18 | &... | string.swift:21:18:21:18 | [post] &... |
+| string.swift:21:18:21:18 | [post] &... | string.swift:21:13:21:13 | TapExpr |
+| string.swift:27:7:27:7 | SSA def(clean) | string.swift:30:13:30:13 | clean |
+| string.swift:27:15:27:15 | abcdef | string.swift:27:7:27:7 | SSA def(clean) |
+| string.swift:28:7:28:7 | SSA def(tainted) | string.swift:31:13:31:13 | tainted |
+| string.swift:28:17:28:25 | call to source2() | string.swift:28:7:28:7 | SSA def(tainted) |
+| string.swift:30:13:30:13 | clean | string.swift:33:13:33:13 | clean |
+| string.swift:31:13:31:13 | tainted | string.swift:34:21:34:21 | tainted |
 | string.swift:33:13:33:13 | clean | string.swift:33:13:33:21 | ... .+(_:_:) ... |
+| string.swift:33:13:33:13 | clean | string.swift:33:21:33:21 | clean |
 | string.swift:33:21:33:21 | clean | string.swift:33:13:33:21 | ... .+(_:_:) ... |
+| string.swift:33:21:33:21 | clean | string.swift:34:13:34:13 | clean |
 | string.swift:34:13:34:13 | clean | string.swift:34:13:34:21 | ... .+(_:_:) ... |
+| string.swift:34:13:34:13 | clean | string.swift:35:23:35:23 | clean |
 | string.swift:34:21:34:21 | tainted | string.swift:34:13:34:21 | ... .+(_:_:) ... |
+| string.swift:34:21:34:21 | tainted | string.swift:35:13:35:13 | tainted |
 | string.swift:35:13:35:13 | tainted | string.swift:35:13:35:23 | ... .+(_:_:) ... |
+| string.swift:35:13:35:13 | tainted | string.swift:36:13:36:13 | tainted |
 | string.swift:35:23:35:23 | clean | string.swift:35:13:35:23 | ... .+(_:_:) ... |
+| string.swift:35:23:35:23 | clean | string.swift:38:19:38:19 | clean |
 | string.swift:36:13:36:13 | tainted | string.swift:36:13:36:23 | ... .+(_:_:) ... |
+| string.swift:36:13:36:13 | tainted | string.swift:36:23:36:23 | tainted |
 | string.swift:36:23:36:23 | tainted | string.swift:36:13:36:23 | ... .+(_:_:) ... |
+| string.swift:36:23:36:23 | tainted | string.swift:39:19:39:19 | tainted |
 | string.swift:38:13:38:13 | > | string.swift:38:13:38:19 | ... .+(_:_:) ... |
 | string.swift:38:13:38:19 | ... .+(_:_:) ... | string.swift:38:13:38:27 | ... .+(_:_:) ... |
 | string.swift:38:19:38:19 | clean | string.swift:38:13:38:19 | ... .+(_:_:) ... |
@@ -127,45 +858,720 @@
 | string.swift:39:13:39:19 | ... .+(_:_:) ... | string.swift:39:13:39:29 | ... .+(_:_:) ... |
 | string.swift:39:19:39:19 | tainted | string.swift:39:13:39:19 | ... .+(_:_:) ... |
 | string.swift:39:29:39:29 | < | string.swift:39:13:39:29 | ... .+(_:_:) ... |
+| string.swift:41:7:41:7 | SSA def(str) | string.swift:43:13:43:13 | str |
+| string.swift:41:13:41:13 | abc | string.swift:41:7:41:7 | SSA def(str) |
+| string.swift:43:13:43:13 | str | string.swift:45:3:45:3 | str |
+| string.swift:45:3:45:3 | &... | string.swift:46:13:46:13 | str |
+| string.swift:45:3:45:3 | [post] &... | string.swift:46:13:46:13 | str |
+| string.swift:45:3:45:3 | str | string.swift:45:3:45:3 | &... |
+| string.swift:46:13:46:13 | str | string.swift:48:3:48:3 | str |
+| string.swift:48:3:48:3 | &... | string.swift:49:13:49:13 | str |
+| string.swift:48:3:48:3 | [post] &... | string.swift:49:13:49:13 | str |
+| string.swift:48:3:48:3 | str | string.swift:48:3:48:3 | &... |
+| string.swift:51:7:51:7 | SSA def(str2) | string.swift:53:13:53:13 | str2 |
+| string.swift:51:14:51:14 | abc | string.swift:51:7:51:7 | SSA def(str2) |
+| string.swift:53:13:53:13 | str2 | string.swift:55:3:55:3 | str2 |
+| string.swift:55:3:55:3 | &... | string.swift:56:13:56:13 | str2 |
+| string.swift:55:3:55:3 | [post] &... | string.swift:56:13:56:13 | str2 |
+| string.swift:55:3:55:3 | str2 | string.swift:55:3:55:3 | &... |
+| string.swift:56:13:56:13 | str2 | string.swift:58:3:58:3 | str2 |
+| string.swift:58:3:58:3 | &... | string.swift:59:13:59:13 | str2 |
+| string.swift:58:3:58:3 | [post] &... | string.swift:59:13:59:13 | str2 |
+| string.swift:58:3:58:3 | str2 | string.swift:58:3:58:3 | &... |
+| string.swift:59:13:59:13 | str2 | string.swift:69:13:69:13 | str2 |
+| string.swift:61:7:61:7 | SSA def(str3) | string.swift:63:13:63:13 | str3 |
+| string.swift:61:14:61:14 | abc | string.swift:61:7:61:7 | SSA def(str3) |
+| string.swift:63:13:63:13 | str3 | string.swift:65:3:65:3 | str3 |
+| string.swift:65:3:65:3 | &... | string.swift:66:13:66:13 | str3 |
+| string.swift:65:3:65:3 | [post] &... | string.swift:66:13:66:13 | str3 |
+| string.swift:65:3:65:3 | str3 | string.swift:65:3:65:3 | &... |
+| string.swift:66:13:66:13 | str3 | string.swift:68:3:68:3 | str3 |
+| string.swift:68:3:68:3 | str3 | string.swift:68:3:68:3 | &... |
+| string.swift:73:7:73:7 | SSA def(clean) | string.swift:77:20:77:20 | clean |
+| string.swift:73:15:73:15 |  | string.swift:73:7:73:7 | SSA def(clean) |
+| string.swift:74:7:74:7 | SSA def(tainted) | string.swift:78:20:78:20 | tainted |
+| string.swift:74:17:74:25 | call to source2() | string.swift:74:7:74:7 | SSA def(tainted) |
+| string.swift:75:7:75:7 | SSA def(taintedInt) | string.swift:79:20:79:20 | taintedInt |
+| string.swift:75:20:75:27 | call to source() | string.swift:75:7:75:7 | SSA def(taintedInt) |
+| string.swift:77:20:77:20 | clean | string.swift:81:31:81:31 | clean |
+| string.swift:78:20:78:20 | tainted | string.swift:82:31:82:31 | tainted |
+| string.swift:81:31:81:31 | clean | string.swift:84:13:84:13 | clean |
+| string.swift:82:31:82:31 | tainted | string.swift:85:13:85:13 | tainted |
+| string.swift:84:13:84:13 | [post] clean | string.swift:87:13:87:13 | clean |
+| string.swift:84:13:84:13 | clean | string.swift:87:13:87:13 | clean |
+| string.swift:85:13:85:13 | [post] tainted | string.swift:88:13:88:13 | tainted |
+| string.swift:85:13:85:13 | tainted | string.swift:88:13:88:13 | tainted |
+| string.swift:91:7:91:7 | SSA def(self) | string.swift:91:7:91:7 | self[return] |
+| string.swift:91:7:91:7 | self | string.swift:91:7:91:7 | SSA def(self) |
+| string.swift:93:5:93:5 | SSA def(self) | string.swift:93:5:93:29 | self[return] |
+| string.swift:93:5:93:5 | self | string.swift:93:5:93:5 | SSA def(self) |
+| string.swift:97:9:97:9 | SSA def(self) | string.swift:97:9:97:9 | self[return] |
+| string.swift:97:9:97:9 | self | string.swift:97:9:97:9 | SSA def(self) |
+| string.swift:98:14:98:14 | self | string.swift:98:14:98:14 | SSA def(self) |
+| string.swift:101:2:101:2 | SSA def(self) | string.swift:101:42:101:42 | self |
+| string.swift:101:2:101:2 | self | string.swift:101:2:101:2 | SSA def(self) |
+| string.swift:101:42:101:42 | &... | string.swift:101:2:101:54 | self[return] |
+| string.swift:101:42:101:42 | [post] &... | string.swift:101:2:101:54 | self[return] |
+| string.swift:101:42:101:42 | self | string.swift:101:42:101:42 | &... |
+| string.swift:105:33:105:33 | Data.Type | string.swift:105:33:105:33 | call to init(_:) |
+| string.swift:105:38:105:38 |  | string.swift:105:33:105:40 | call to init(_:) |
+| string.swift:108:7:108:7 | SSA def(stringClean) | string.swift:111:12:111:12 | stringClean |
+| string.swift:108:21:108:74 | call to init(data:encoding:) | string.swift:108:7:108:7 | SSA def(stringClean) |
+| string.swift:108:34:108:34 | Data.Type | string.swift:108:34:108:34 | call to init(_:) |
+| string.swift:108:39:108:39 |  | string.swift:108:34:108:41 | call to init(_:) |
+| string.swift:109:7:109:7 | SSA def(stringTainted) | string.swift:112:12:112:12 | stringTainted |
+| string.swift:109:23:109:77 | call to init(data:encoding:) | string.swift:109:7:109:7 | SSA def(stringTainted) |
+| string.swift:111:12:111:12 | stringClean | string.swift:111:12:111:23 | ...! |
+| string.swift:112:12:112:12 | stringTainted | string.swift:112:12:112:25 | ...! |
+| subscript.swift:1:7:1:7 | SSA def(self) | subscript.swift:1:7:1:7 | self[return] |
+| subscript.swift:1:7:1:7 | SSA def(self) | subscript.swift:1:7:1:7 | self[return] |
+| subscript.swift:1:7:1:7 | self | subscript.swift:1:7:1:7 | SSA def(self) |
+| subscript.swift:1:7:1:7 | self | subscript.swift:1:7:1:7 | SSA def(self) |
+| subscript.swift:2:5:2:5 | self | subscript.swift:2:5:2:5 | SSA def(self) |
+| subscript.swift:3:9:3:9 | SSA def(self) | subscript.swift:3:9:3:25 | self[return] |
+| subscript.swift:3:9:3:9 | self | subscript.swift:3:9:3:9 | SSA def(self) |
+| subscript.swift:4:9:4:9 | SSA def(self) | subscript.swift:4:9:4:24 | self[return] |
+| subscript.swift:4:9:4:9 | self | subscript.swift:4:9:4:9 | SSA def(self) |
 | subscript.swift:13:15:13:22 | call to source() | subscript.swift:13:15:13:25 | ...[...] |
 | subscript.swift:14:15:14:23 | call to source2() | subscript.swift:14:15:14:26 | ...[...] |
+| try.swift:8:17:8:23 | call to clean() | try.swift:8:13:8:23 | try ... |
+| try.swift:9:17:9:24 | call to source() | try.swift:9:13:9:24 | try ... |
+| try.swift:14:17:14:23 | call to clean() | try.swift:14:12:14:23 | try! ... |
+| try.swift:15:17:15:24 | call to source() | try.swift:15:12:15:24 | try! ... |
+| try.swift:17:13:17:24 | try? ... | try.swift:17:12:17:26 | ...! |
+| try.swift:17:18:17:24 | call to clean() | try.swift:17:13:17:24 | try? ... |
+| try.swift:18:13:18:25 | try? ... | try.swift:18:12:18:27 | ...! |
+| try.swift:18:18:18:25 | call to source() | try.swift:18:13:18:25 | try? ... |
+| url.swift:2:7:2:7 | SSA def(self) | url.swift:2:7:2:7 | self[return] |
+| url.swift:2:7:2:7 | SSA def(self) | url.swift:2:7:2:7 | self[return] |
+| url.swift:2:7:2:7 | self | url.swift:2:7:2:7 | SSA def(self) |
+| url.swift:2:7:2:7 | self | url.swift:2:7:2:7 | SSA def(self) |
+| url.swift:8:2:8:2 | SSA def(self) | url.swift:8:2:8:25 | self[return] |
+| url.swift:8:2:8:2 | self | url.swift:8:2:8:2 | SSA def(self) |
+| url.swift:9:2:9:2 | SSA def(self) | url.swift:9:2:9:43 | self[return] |
+| url.swift:9:2:9:2 | self | url.swift:9:2:9:2 | SSA def(self) |
+| url.swift:10:25:10:25 | SSA def(self) | url.swift:10:25:10:53 | self[return] |
+| url.swift:10:25:10:25 | self | url.swift:10:25:10:25 | SSA def(self) |
+| url.swift:10:37:10:37 | URL.Type | url.swift:10:37:10:37 | call to init(string:) |
+| url.swift:10:37:10:51 | call to init(string:) | url.swift:10:37:10:52 | ...! |
+| url.swift:10:49:10:49 |  | url.swift:10:37:10:51 | call to init(string:) |
+| url.swift:11:21:11:21 | SSA def(self) | url.swift:11:21:11:49 | self[return] |
+| url.swift:11:21:11:21 | self | url.swift:11:21:11:21 | SSA def(self) |
+| url.swift:11:33:11:33 | URL.Type | url.swift:11:33:11:33 | call to init(string:) |
+| url.swift:11:33:11:47 | call to init(string:) | url.swift:11:33:11:48 | ...! |
+| url.swift:11:45:11:45 |  | url.swift:11:33:11:47 | call to init(string:) |
+| url.swift:12:26:12:26 | SSA def(self) | url.swift:12:26:12:41 | self[return] |
+| url.swift:12:26:12:26 | self | url.swift:12:26:12:26 | SSA def(self) |
+| url.swift:13:22:13:22 | SSA def(self) | url.swift:13:22:13:37 | self[return] |
+| url.swift:13:22:13:22 | self | url.swift:13:22:13:22 | SSA def(self) |
+| url.swift:14:34:14:34 | SSA def(self) | url.swift:14:34:14:48 | self[return] |
+| url.swift:14:34:14:34 | self | url.swift:14:34:14:34 | SSA def(self) |
+| url.swift:15:21:15:21 | SSA def(self) | url.swift:15:21:15:35 | self[return] |
+| url.swift:15:21:15:21 | self | url.swift:15:21:15:21 | SSA def(self) |
+| url.swift:16:33:16:33 | SSA def(self) | url.swift:16:33:16:49 | self[return] |
+| url.swift:16:33:16:33 | self | url.swift:16:33:16:33 | SSA def(self) |
+| url.swift:17:30:17:30 | SSA def(self) | url.swift:17:30:17:44 | self[return] |
+| url.swift:17:30:17:30 | self | url.swift:17:30:17:30 | SSA def(self) |
+| url.swift:18:19:18:19 | SSA def(self) | url.swift:18:19:18:34 | self[return] |
+| url.swift:18:19:18:19 | self | url.swift:18:19:18:19 | SSA def(self) |
+| url.swift:19:23:19:23 | SSA def(self) | url.swift:19:23:19:38 | self[return] |
+| url.swift:19:23:19:23 | self | url.swift:19:23:19:23 | SSA def(self) |
+| url.swift:20:29:20:29 | SSA def(self) | url.swift:20:29:20:43 | self[return] |
+| url.swift:20:29:20:29 | self | url.swift:20:29:20:29 | SSA def(self) |
+| url.swift:21:31:21:31 | SSA def(self) | url.swift:21:31:21:45 | self[return] |
+| url.swift:21:31:21:31 | self | url.swift:21:31:21:31 | SSA def(self) |
+| url.swift:22:24:22:24 | SSA def(self) | url.swift:22:24:22:39 | self[return] |
+| url.swift:22:24:22:24 | self | url.swift:22:24:22:24 | SSA def(self) |
+| url.swift:23:26:23:26 | SSA def(self) | url.swift:23:26:23:54 | self[return] |
+| url.swift:23:26:23:26 | self | url.swift:23:26:23:26 | SSA def(self) |
+| url.swift:23:38:23:38 | URL.Type | url.swift:23:38:23:38 | call to init(string:) |
+| url.swift:23:38:23:52 | call to init(string:) | url.swift:23:38:23:53 | ...! |
+| url.swift:23:50:23:50 |  | url.swift:23:38:23:52 | call to init(string:) |
+| url.swift:24:33:24:33 | SSA def(self) | url.swift:24:33:24:61 | self[return] |
+| url.swift:24:33:24:33 | self | url.swift:24:33:24:33 | SSA def(self) |
+| url.swift:24:45:24:45 | URL.Type | url.swift:24:45:24:45 | call to init(string:) |
+| url.swift:24:45:24:59 | call to init(string:) | url.swift:24:45:24:60 | ...! |
+| url.swift:24:57:24:57 |  | url.swift:24:45:24:59 | call to init(string:) |
+| url.swift:25:22:25:22 | SSA def(self) | url.swift:25:22:25:37 | self[return] |
+| url.swift:25:22:25:22 | self | url.swift:25:22:25:22 | SSA def(self) |
+| url.swift:26:26:26:26 | SSA def(self) | url.swift:26:26:26:41 | self[return] |
+| url.swift:26:26:26:26 | self | url.swift:26:26:26:26 | SSA def(self) |
+| url.swift:29:7:29:7 | SSA def(self) | url.swift:29:7:29:7 | self[return] |
+| url.swift:29:7:29:7 | self | url.swift:29:7:29:7 | SSA def(self) |
+| url.swift:31:5:31:5 | SSA def(self) | url.swift:31:5:31:29 | self[return] |
+| url.swift:31:5:31:5 | self | url.swift:31:5:31:5 | SSA def(self) |
+| url.swift:34:7:34:7 | SSA def(self) | url.swift:34:7:34:7 | self[return] |
+| url.swift:34:7:34:7 | self | url.swift:34:7:34:7 | SSA def(self) |
+| url.swift:34:30:34:30 | SSA def(self) | url.swift:34:30:34:30 | self[return] |
+| url.swift:34:30:34:30 | self | url.swift:34:30:34:30 | SSA def(self) |
+| url.swift:36:7:36:7 | SSA def(self) | url.swift:36:7:36:7 | self[return] |
+| url.swift:36:7:36:7 | self | url.swift:36:7:36:7 | SSA def(self) |
+| url.swift:36:33:36:33 | SSA def(self) | url.swift:36:33:36:33 | self[return] |
+| url.swift:36:33:36:33 | self | url.swift:36:33:36:33 | SSA def(self) |
+| url.swift:38:7:38:7 | SSA def(self) | url.swift:38:7:38:7 | self[return] |
+| url.swift:38:7:38:7 | self | url.swift:38:7:38:7 | SSA def(self) |
+| url.swift:38:43:38:43 | SSA def(self) | url.swift:38:43:38:43 | self[return] |
+| url.swift:38:43:38:43 | self | url.swift:38:43:38:43 | SSA def(self) |
+| url.swift:40:7:40:7 | SSA def(self) | url.swift:40:7:40:7 | self[return] |
+| url.swift:40:7:40:7 | SSA def(self) | url.swift:40:7:40:7 | self[return] |
+| url.swift:40:7:40:7 | self | url.swift:40:7:40:7 | SSA def(self) |
+| url.swift:40:7:40:7 | self | url.swift:40:7:40:7 | SSA def(self) |
+| url.swift:41:33:41:33 | SSA def(self) | url.swift:41:33:41:59 | self[return] |
+| url.swift:41:33:41:33 | self | url.swift:41:33:41:33 | SSA def(self) |
+| url.swift:43:7:43:7 | SSA def(self) | url.swift:43:2:46:55 | self[return] |
+| url.swift:43:7:43:7 | self | url.swift:43:7:43:7 | SSA def(self) |
+| url.swift:56:6:56:6 | SSA def(clean) | url.swift:58:29:58:29 | clean |
+| url.swift:56:14:56:14 | http://example.com/ | url.swift:56:6:56:6 | SSA def(clean) |
+| url.swift:57:6:57:6 | SSA def(tainted) | url.swift:59:31:59:31 | tainted |
+| url.swift:57:16:57:23 | call to source() | url.swift:57:6:57:6 | SSA def(tainted) |
+| url.swift:58:6:58:6 | SSA def(urlClean) | url.swift:61:12:61:12 | urlClean |
+| url.swift:58:17:58:17 | URL.Type | url.swift:58:17:58:17 | call to init(string:) |
+| url.swift:58:17:58:34 | call to init(string:) | url.swift:58:17:58:35 | ...! |
+| url.swift:58:17:58:35 | ...! | url.swift:58:6:58:6 | SSA def(urlClean) |
+| url.swift:58:29:58:29 | [post] clean | url.swift:82:24:82:24 | clean |
+| url.swift:58:29:58:29 | clean | url.swift:58:17:58:34 | call to init(string:) |
+| url.swift:58:29:58:29 | clean | url.swift:82:24:82:24 | clean |
+| url.swift:59:6:59:6 | SSA def(urlTainted) | url.swift:62:12:62:12 | urlTainted |
+| url.swift:59:19:59:19 | URL.Type | url.swift:59:19:59:19 | call to init(string:) |
+| url.swift:59:19:59:38 | call to init(string:) | url.swift:59:19:59:39 | ...! |
+| url.swift:59:19:59:39 | ...! | url.swift:59:6:59:6 | SSA def(urlTainted) |
+| url.swift:59:31:59:31 | [post] tainted | url.swift:83:24:83:24 | tainted |
+| url.swift:59:31:59:31 | tainted | url.swift:59:19:59:38 | call to init(string:) |
+| url.swift:59:31:59:31 | tainted | url.swift:83:24:83:24 | tainted |
+| url.swift:61:12:61:12 | [post] urlClean | url.swift:84:43:84:43 | urlClean |
+| url.swift:61:12:61:12 | urlClean | url.swift:84:43:84:43 | urlClean |
+| url.swift:62:12:62:12 | [post] urlTainted | url.swift:64:12:64:12 | urlTainted |
+| url.swift:62:12:62:12 | urlTainted | url.swift:64:12:64:12 | urlTainted |
+| url.swift:64:12:64:12 | [post] urlTainted | url.swift:65:12:65:12 | urlTainted |
 | url.swift:64:12:64:12 | urlTainted | url.swift:64:12:64:23 | .absoluteURL |
+| url.swift:64:12:64:12 | urlTainted | url.swift:65:12:65:12 | urlTainted |
+| url.swift:65:12:65:12 | [post] urlTainted | url.swift:66:15:66:15 | urlTainted |
 | url.swift:65:12:65:12 | urlTainted | url.swift:65:12:65:23 | .baseURL |
+| url.swift:65:12:65:12 | urlTainted | url.swift:66:15:66:15 | urlTainted |
+| url.swift:66:15:66:15 | [post] urlTainted | url.swift:67:15:67:15 | urlTainted |
 | url.swift:66:15:66:15 | urlTainted | url.swift:66:15:66:26 | .fragment |
+| url.swift:66:15:66:15 | urlTainted | url.swift:67:15:67:15 | urlTainted |
+| url.swift:66:15:66:26 | .fragment | url.swift:66:15:66:34 | ...! |
+| url.swift:67:15:67:15 | [post] urlTainted | url.swift:68:15:68:15 | urlTainted |
 | url.swift:67:15:67:15 | urlTainted | url.swift:67:15:67:26 | .host |
+| url.swift:67:15:67:15 | urlTainted | url.swift:68:15:68:15 | urlTainted |
+| url.swift:67:15:67:26 | .host | url.swift:67:15:67:30 | ...! |
+| url.swift:68:15:68:15 | [post] urlTainted | url.swift:69:15:69:15 | urlTainted |
 | url.swift:68:15:68:15 | urlTainted | url.swift:68:15:68:26 | .lastPathComponent |
+| url.swift:68:15:68:15 | urlTainted | url.swift:69:15:69:15 | urlTainted |
+| url.swift:69:15:69:15 | [post] urlTainted | url.swift:70:15:70:15 | urlTainted |
 | url.swift:69:15:69:15 | urlTainted | url.swift:69:15:69:26 | .path |
+| url.swift:69:15:69:15 | urlTainted | url.swift:70:15:70:15 | urlTainted |
+| url.swift:70:15:70:15 | [post] urlTainted | url.swift:71:15:71:15 | urlTainted |
 | url.swift:70:15:70:15 | urlTainted | url.swift:70:15:70:26 | .pathComponents |
+| url.swift:70:15:70:15 | urlTainted | url.swift:71:15:71:15 | urlTainted |
 | url.swift:70:15:70:26 | .pathComponents | url.swift:70:15:70:42 | ...[...] |
+| url.swift:71:15:71:15 | [post] urlTainted | url.swift:72:12:72:12 | urlTainted |
 | url.swift:71:15:71:15 | urlTainted | url.swift:71:15:71:26 | .pathExtension |
+| url.swift:71:15:71:15 | urlTainted | url.swift:72:12:72:12 | urlTainted |
+| url.swift:72:12:72:12 | [post] urlTainted | url.swift:73:15:73:15 | urlTainted |
 | url.swift:72:12:72:12 | urlTainted | url.swift:72:12:72:23 | .port |
+| url.swift:72:12:72:12 | urlTainted | url.swift:73:15:73:15 | urlTainted |
+| url.swift:72:12:72:23 | .port | url.swift:72:12:72:27 | ...! |
+| url.swift:73:15:73:15 | [post] urlTainted | url.swift:74:15:74:15 | urlTainted |
 | url.swift:73:15:73:15 | urlTainted | url.swift:73:15:73:26 | .query |
+| url.swift:73:15:73:15 | urlTainted | url.swift:74:15:74:15 | urlTainted |
+| url.swift:73:15:73:26 | .query | url.swift:73:15:73:31 | ...! |
+| url.swift:74:15:74:15 | [post] urlTainted | url.swift:75:15:75:15 | urlTainted |
 | url.swift:74:15:74:15 | urlTainted | url.swift:74:15:74:26 | .relativePath |
+| url.swift:74:15:74:15 | urlTainted | url.swift:75:15:75:15 | urlTainted |
+| url.swift:75:15:75:15 | [post] urlTainted | url.swift:76:15:76:15 | urlTainted |
 | url.swift:75:15:75:15 | urlTainted | url.swift:75:15:75:26 | .relativeString |
+| url.swift:75:15:75:15 | urlTainted | url.swift:76:15:76:15 | urlTainted |
+| url.swift:76:15:76:15 | [post] urlTainted | url.swift:77:12:77:12 | urlTainted |
 | url.swift:76:15:76:15 | urlTainted | url.swift:76:15:76:26 | .scheme |
+| url.swift:76:15:76:15 | urlTainted | url.swift:77:12:77:12 | urlTainted |
+| url.swift:76:15:76:26 | .scheme | url.swift:76:15:76:32 | ...! |
+| url.swift:77:12:77:12 | [post] urlTainted | url.swift:78:12:78:12 | urlTainted |
 | url.swift:77:12:77:12 | urlTainted | url.swift:77:12:77:23 | .standardized |
+| url.swift:77:12:77:12 | urlTainted | url.swift:78:12:78:12 | urlTainted |
+| url.swift:78:12:78:12 | [post] urlTainted | url.swift:79:15:79:15 | urlTainted |
 | url.swift:78:12:78:12 | urlTainted | url.swift:78:12:78:23 | .standardizedFileURL |
+| url.swift:78:12:78:12 | urlTainted | url.swift:79:15:79:15 | urlTainted |
+| url.swift:79:15:79:15 | [post] urlTainted | url.swift:80:15:80:15 | urlTainted |
 | url.swift:79:15:79:15 | urlTainted | url.swift:79:15:79:26 | .user |
+| url.swift:79:15:79:15 | urlTainted | url.swift:80:15:80:15 | urlTainted |
+| url.swift:79:15:79:26 | .user | url.swift:79:15:79:30 | ...! |
+| url.swift:80:15:80:15 | [post] urlTainted | url.swift:86:43:86:43 | urlTainted |
 | url.swift:80:15:80:15 | urlTainted | url.swift:80:15:80:26 | .password |
+| url.swift:80:15:80:15 | urlTainted | url.swift:86:43:86:43 | urlTainted |
+| url.swift:80:15:80:26 | .password | url.swift:80:15:80:34 | ...! |
+| url.swift:82:12:82:12 | URL.Type | url.swift:82:12:82:12 | call to init(string:relativeTo:) |
+| url.swift:82:12:82:46 | call to init(string:relativeTo:) | url.swift:82:12:82:47 | ...! |
+| url.swift:82:24:82:24 | [post] clean | url.swift:84:24:84:24 | clean |
+| url.swift:82:24:82:24 | clean | url.swift:82:12:82:46 | call to init(string:relativeTo:) |
+| url.swift:82:24:82:24 | clean | url.swift:84:24:84:24 | clean |
+| url.swift:82:43:82:43 | nil | url.swift:82:12:82:46 | call to init(string:relativeTo:) |
+| url.swift:83:12:83:12 | URL.Type | url.swift:83:12:83:12 | call to init(string:relativeTo:) |
+| url.swift:83:12:83:48 | call to init(string:relativeTo:) | url.swift:83:12:83:49 | ...! |
+| url.swift:83:24:83:24 | [post] tainted | url.swift:108:25:108:25 | tainted |
+| url.swift:83:24:83:24 | tainted | url.swift:83:12:83:48 | call to init(string:relativeTo:) |
+| url.swift:83:24:83:24 | tainted | url.swift:108:25:108:25 | tainted |
+| url.swift:83:45:83:45 | nil | url.swift:83:12:83:48 | call to init(string:relativeTo:) |
+| url.swift:84:12:84:12 | URL.Type | url.swift:84:12:84:12 | call to init(string:relativeTo:) |
+| url.swift:84:12:84:51 | call to init(string:relativeTo:) | url.swift:84:12:84:52 | ...! |
+| url.swift:84:24:84:24 | [post] clean | url.swift:86:24:86:24 | clean |
+| url.swift:84:24:84:24 | clean | url.swift:84:12:84:51 | call to init(string:relativeTo:) |
+| url.swift:84:24:84:24 | clean | url.swift:86:24:86:24 | clean |
+| url.swift:84:43:84:43 | urlClean | url.swift:84:12:84:51 | call to init(string:relativeTo:) |
+| url.swift:86:12:86:12 | URL.Type | url.swift:86:12:86:12 | call to init(string:relativeTo:) |
+| url.swift:86:12:86:53 | call to init(string:relativeTo:) | url.swift:86:12:86:54 | ...! |
 | url.swift:86:12:86:54 | ...! | url.swift:86:12:86:56 | .absoluteURL |
+| url.swift:86:24:86:24 | [post] clean | url.swift:87:24:87:24 | clean |
+| url.swift:86:24:86:24 | clean | url.swift:86:12:86:53 | call to init(string:relativeTo:) |
+| url.swift:86:24:86:24 | clean | url.swift:87:24:87:24 | clean |
+| url.swift:86:43:86:43 | [post] urlTainted | url.swift:87:43:87:43 | urlTainted |
+| url.swift:86:43:86:43 | urlTainted | url.swift:86:12:86:53 | call to init(string:relativeTo:) |
+| url.swift:86:43:86:43 | urlTainted | url.swift:87:43:87:43 | urlTainted |
+| url.swift:87:12:87:12 | URL.Type | url.swift:87:12:87:12 | call to init(string:relativeTo:) |
+| url.swift:87:12:87:53 | call to init(string:relativeTo:) | url.swift:87:12:87:54 | ...! |
 | url.swift:87:12:87:54 | ...! | url.swift:87:12:87:56 | .baseURL |
+| url.swift:87:24:87:24 | [post] clean | url.swift:88:27:88:27 | clean |
+| url.swift:87:24:87:24 | clean | url.swift:87:12:87:53 | call to init(string:relativeTo:) |
+| url.swift:87:24:87:24 | clean | url.swift:88:27:88:27 | clean |
+| url.swift:87:43:87:43 | [post] urlTainted | url.swift:88:46:88:46 | urlTainted |
+| url.swift:87:43:87:43 | urlTainted | url.swift:87:12:87:53 | call to init(string:relativeTo:) |
+| url.swift:87:43:87:43 | urlTainted | url.swift:88:46:88:46 | urlTainted |
+| url.swift:88:15:88:15 | URL.Type | url.swift:88:15:88:15 | call to init(string:relativeTo:) |
+| url.swift:88:15:88:56 | call to init(string:relativeTo:) | url.swift:88:15:88:57 | ...! |
 | url.swift:88:15:88:57 | ...! | url.swift:88:15:88:59 | .fragment |
+| url.swift:88:15:88:59 | .fragment | url.swift:88:15:88:67 | ...! |
+| url.swift:88:27:88:27 | [post] clean | url.swift:89:27:89:27 | clean |
+| url.swift:88:27:88:27 | clean | url.swift:88:15:88:56 | call to init(string:relativeTo:) |
+| url.swift:88:27:88:27 | clean | url.swift:89:27:89:27 | clean |
+| url.swift:88:46:88:46 | [post] urlTainted | url.swift:89:46:89:46 | urlTainted |
+| url.swift:88:46:88:46 | urlTainted | url.swift:88:15:88:56 | call to init(string:relativeTo:) |
+| url.swift:88:46:88:46 | urlTainted | url.swift:89:46:89:46 | urlTainted |
+| url.swift:89:15:89:15 | URL.Type | url.swift:89:15:89:15 | call to init(string:relativeTo:) |
+| url.swift:89:15:89:56 | call to init(string:relativeTo:) | url.swift:89:15:89:57 | ...! |
 | url.swift:89:15:89:57 | ...! | url.swift:89:15:89:59 | .host |
+| url.swift:89:15:89:59 | .host | url.swift:89:15:89:63 | ...! |
+| url.swift:89:27:89:27 | [post] clean | url.swift:90:27:90:27 | clean |
+| url.swift:89:27:89:27 | clean | url.swift:89:15:89:56 | call to init(string:relativeTo:) |
+| url.swift:89:27:89:27 | clean | url.swift:90:27:90:27 | clean |
+| url.swift:89:46:89:46 | [post] urlTainted | url.swift:90:46:90:46 | urlTainted |
+| url.swift:89:46:89:46 | urlTainted | url.swift:89:15:89:56 | call to init(string:relativeTo:) |
+| url.swift:89:46:89:46 | urlTainted | url.swift:90:46:90:46 | urlTainted |
+| url.swift:90:15:90:15 | URL.Type | url.swift:90:15:90:15 | call to init(string:relativeTo:) |
+| url.swift:90:15:90:56 | call to init(string:relativeTo:) | url.swift:90:15:90:57 | ...! |
 | url.swift:90:15:90:57 | ...! | url.swift:90:15:90:59 | .lastPathComponent |
+| url.swift:90:27:90:27 | [post] clean | url.swift:91:27:91:27 | clean |
+| url.swift:90:27:90:27 | clean | url.swift:90:15:90:56 | call to init(string:relativeTo:) |
+| url.swift:90:27:90:27 | clean | url.swift:91:27:91:27 | clean |
+| url.swift:90:46:90:46 | [post] urlTainted | url.swift:91:46:91:46 | urlTainted |
+| url.swift:90:46:90:46 | urlTainted | url.swift:90:15:90:56 | call to init(string:relativeTo:) |
+| url.swift:90:46:90:46 | urlTainted | url.swift:91:46:91:46 | urlTainted |
+| url.swift:91:15:91:15 | URL.Type | url.swift:91:15:91:15 | call to init(string:relativeTo:) |
+| url.swift:91:15:91:56 | call to init(string:relativeTo:) | url.swift:91:15:91:57 | ...! |
 | url.swift:91:15:91:57 | ...! | url.swift:91:15:91:59 | .path |
+| url.swift:91:27:91:27 | [post] clean | url.swift:92:27:92:27 | clean |
+| url.swift:91:27:91:27 | clean | url.swift:91:15:91:56 | call to init(string:relativeTo:) |
+| url.swift:91:27:91:27 | clean | url.swift:92:27:92:27 | clean |
+| url.swift:91:46:91:46 | [post] urlTainted | url.swift:92:46:92:46 | urlTainted |
+| url.swift:91:46:91:46 | urlTainted | url.swift:91:15:91:56 | call to init(string:relativeTo:) |
+| url.swift:91:46:91:46 | urlTainted | url.swift:92:46:92:46 | urlTainted |
+| url.swift:92:15:92:15 | URL.Type | url.swift:92:15:92:15 | call to init(string:relativeTo:) |
+| url.swift:92:15:92:56 | call to init(string:relativeTo:) | url.swift:92:15:92:57 | ...! |
 | url.swift:92:15:92:57 | ...! | url.swift:92:15:92:59 | .pathComponents |
 | url.swift:92:15:92:59 | .pathComponents | url.swift:92:15:92:75 | ...[...] |
+| url.swift:92:27:92:27 | [post] clean | url.swift:93:27:93:27 | clean |
+| url.swift:92:27:92:27 | clean | url.swift:92:15:92:56 | call to init(string:relativeTo:) |
+| url.swift:92:27:92:27 | clean | url.swift:93:27:93:27 | clean |
+| url.swift:92:46:92:46 | [post] urlTainted | url.swift:93:46:93:46 | urlTainted |
+| url.swift:92:46:92:46 | urlTainted | url.swift:92:15:92:56 | call to init(string:relativeTo:) |
+| url.swift:92:46:92:46 | urlTainted | url.swift:93:46:93:46 | urlTainted |
+| url.swift:93:15:93:15 | URL.Type | url.swift:93:15:93:15 | call to init(string:relativeTo:) |
+| url.swift:93:15:93:56 | call to init(string:relativeTo:) | url.swift:93:15:93:57 | ...! |
 | url.swift:93:15:93:57 | ...! | url.swift:93:15:93:59 | .pathExtension |
+| url.swift:93:27:93:27 | [post] clean | url.swift:94:24:94:24 | clean |
+| url.swift:93:27:93:27 | clean | url.swift:93:15:93:56 | call to init(string:relativeTo:) |
+| url.swift:93:27:93:27 | clean | url.swift:94:24:94:24 | clean |
+| url.swift:93:46:93:46 | [post] urlTainted | url.swift:94:43:94:43 | urlTainted |
+| url.swift:93:46:93:46 | urlTainted | url.swift:93:15:93:56 | call to init(string:relativeTo:) |
+| url.swift:93:46:93:46 | urlTainted | url.swift:94:43:94:43 | urlTainted |
+| url.swift:94:12:94:12 | URL.Type | url.swift:94:12:94:12 | call to init(string:relativeTo:) |
+| url.swift:94:12:94:53 | call to init(string:relativeTo:) | url.swift:94:12:94:54 | ...! |
 | url.swift:94:12:94:54 | ...! | url.swift:94:12:94:56 | .port |
+| url.swift:94:12:94:56 | .port | url.swift:94:12:94:60 | ...! |
+| url.swift:94:24:94:24 | [post] clean | url.swift:95:27:95:27 | clean |
+| url.swift:94:24:94:24 | clean | url.swift:94:12:94:53 | call to init(string:relativeTo:) |
+| url.swift:94:24:94:24 | clean | url.swift:95:27:95:27 | clean |
+| url.swift:94:43:94:43 | [post] urlTainted | url.swift:95:46:95:46 | urlTainted |
+| url.swift:94:43:94:43 | urlTainted | url.swift:94:12:94:53 | call to init(string:relativeTo:) |
+| url.swift:94:43:94:43 | urlTainted | url.swift:95:46:95:46 | urlTainted |
+| url.swift:95:15:95:15 | URL.Type | url.swift:95:15:95:15 | call to init(string:relativeTo:) |
+| url.swift:95:15:95:56 | call to init(string:relativeTo:) | url.swift:95:15:95:57 | ...! |
 | url.swift:95:15:95:57 | ...! | url.swift:95:15:95:59 | .query |
+| url.swift:95:15:95:59 | .query | url.swift:95:15:95:64 | ...! |
+| url.swift:95:27:95:27 | [post] clean | url.swift:96:27:96:27 | clean |
+| url.swift:95:27:95:27 | clean | url.swift:95:15:95:56 | call to init(string:relativeTo:) |
+| url.swift:95:27:95:27 | clean | url.swift:96:27:96:27 | clean |
+| url.swift:95:46:95:46 | [post] urlTainted | url.swift:96:46:96:46 | urlTainted |
+| url.swift:95:46:95:46 | urlTainted | url.swift:95:15:95:56 | call to init(string:relativeTo:) |
+| url.swift:95:46:95:46 | urlTainted | url.swift:96:46:96:46 | urlTainted |
+| url.swift:96:15:96:15 | URL.Type | url.swift:96:15:96:15 | call to init(string:relativeTo:) |
+| url.swift:96:15:96:56 | call to init(string:relativeTo:) | url.swift:96:15:96:57 | ...! |
 | url.swift:96:15:96:57 | ...! | url.swift:96:15:96:59 | .relativePath |
+| url.swift:96:27:96:27 | [post] clean | url.swift:97:27:97:27 | clean |
+| url.swift:96:27:96:27 | clean | url.swift:96:15:96:56 | call to init(string:relativeTo:) |
+| url.swift:96:27:96:27 | clean | url.swift:97:27:97:27 | clean |
+| url.swift:96:46:96:46 | [post] urlTainted | url.swift:97:46:97:46 | urlTainted |
+| url.swift:96:46:96:46 | urlTainted | url.swift:96:15:96:56 | call to init(string:relativeTo:) |
+| url.swift:96:46:96:46 | urlTainted | url.swift:97:46:97:46 | urlTainted |
+| url.swift:97:15:97:15 | URL.Type | url.swift:97:15:97:15 | call to init(string:relativeTo:) |
+| url.swift:97:15:97:56 | call to init(string:relativeTo:) | url.swift:97:15:97:57 | ...! |
 | url.swift:97:15:97:57 | ...! | url.swift:97:15:97:59 | .relativeString |
+| url.swift:97:27:97:27 | [post] clean | url.swift:98:27:98:27 | clean |
+| url.swift:97:27:97:27 | clean | url.swift:97:15:97:56 | call to init(string:relativeTo:) |
+| url.swift:97:27:97:27 | clean | url.swift:98:27:98:27 | clean |
+| url.swift:97:46:97:46 | [post] urlTainted | url.swift:98:46:98:46 | urlTainted |
+| url.swift:97:46:97:46 | urlTainted | url.swift:97:15:97:56 | call to init(string:relativeTo:) |
+| url.swift:97:46:97:46 | urlTainted | url.swift:98:46:98:46 | urlTainted |
+| url.swift:98:15:98:15 | URL.Type | url.swift:98:15:98:15 | call to init(string:relativeTo:) |
+| url.swift:98:15:98:56 | call to init(string:relativeTo:) | url.swift:98:15:98:57 | ...! |
 | url.swift:98:15:98:57 | ...! | url.swift:98:15:98:59 | .scheme |
+| url.swift:98:15:98:59 | .scheme | url.swift:98:15:98:65 | ...! |
+| url.swift:98:27:98:27 | [post] clean | url.swift:99:24:99:24 | clean |
+| url.swift:98:27:98:27 | clean | url.swift:98:15:98:56 | call to init(string:relativeTo:) |
+| url.swift:98:27:98:27 | clean | url.swift:99:24:99:24 | clean |
+| url.swift:98:46:98:46 | [post] urlTainted | url.swift:99:43:99:43 | urlTainted |
+| url.swift:98:46:98:46 | urlTainted | url.swift:98:15:98:56 | call to init(string:relativeTo:) |
+| url.swift:98:46:98:46 | urlTainted | url.swift:99:43:99:43 | urlTainted |
+| url.swift:99:12:99:12 | URL.Type | url.swift:99:12:99:12 | call to init(string:relativeTo:) |
+| url.swift:99:12:99:53 | call to init(string:relativeTo:) | url.swift:99:12:99:54 | ...! |
 | url.swift:99:12:99:54 | ...! | url.swift:99:12:99:56 | .standardized |
+| url.swift:99:24:99:24 | [post] clean | url.swift:100:24:100:24 | clean |
+| url.swift:99:24:99:24 | clean | url.swift:99:12:99:53 | call to init(string:relativeTo:) |
+| url.swift:99:24:99:24 | clean | url.swift:100:24:100:24 | clean |
+| url.swift:99:43:99:43 | [post] urlTainted | url.swift:100:43:100:43 | urlTainted |
+| url.swift:99:43:99:43 | urlTainted | url.swift:99:12:99:53 | call to init(string:relativeTo:) |
+| url.swift:99:43:99:43 | urlTainted | url.swift:100:43:100:43 | urlTainted |
+| url.swift:100:12:100:12 | URL.Type | url.swift:100:12:100:12 | call to init(string:relativeTo:) |
+| url.swift:100:12:100:53 | call to init(string:relativeTo:) | url.swift:100:12:100:54 | ...! |
 | url.swift:100:12:100:54 | ...! | url.swift:100:12:100:56 | .standardizedFileURL |
+| url.swift:100:24:100:24 | [post] clean | url.swift:101:27:101:27 | clean |
+| url.swift:100:24:100:24 | clean | url.swift:100:12:100:53 | call to init(string:relativeTo:) |
+| url.swift:100:24:100:24 | clean | url.swift:101:27:101:27 | clean |
+| url.swift:100:43:100:43 | [post] urlTainted | url.swift:101:46:101:46 | urlTainted |
+| url.swift:100:43:100:43 | urlTainted | url.swift:100:12:100:53 | call to init(string:relativeTo:) |
+| url.swift:100:43:100:43 | urlTainted | url.swift:101:46:101:46 | urlTainted |
+| url.swift:101:15:101:15 | URL.Type | url.swift:101:15:101:15 | call to init(string:relativeTo:) |
+| url.swift:101:15:101:56 | call to init(string:relativeTo:) | url.swift:101:15:101:57 | ...! |
 | url.swift:101:15:101:57 | ...! | url.swift:101:15:101:59 | .user |
+| url.swift:101:15:101:59 | .user | url.swift:101:15:101:63 | ...! |
+| url.swift:101:27:101:27 | [post] clean | url.swift:102:27:102:27 | clean |
+| url.swift:101:27:101:27 | clean | url.swift:101:15:101:56 | call to init(string:relativeTo:) |
+| url.swift:101:27:101:27 | clean | url.swift:102:27:102:27 | clean |
+| url.swift:101:46:101:46 | [post] urlTainted | url.swift:102:46:102:46 | urlTainted |
+| url.swift:101:46:101:46 | urlTainted | url.swift:101:15:101:56 | call to init(string:relativeTo:) |
+| url.swift:101:46:101:46 | urlTainted | url.swift:102:46:102:46 | urlTainted |
+| url.swift:102:15:102:15 | URL.Type | url.swift:102:15:102:15 | call to init(string:relativeTo:) |
+| url.swift:102:15:102:56 | call to init(string:relativeTo:) | url.swift:102:15:102:57 | ...! |
 | url.swift:102:15:102:57 | ...! | url.swift:102:15:102:59 | .password |
+| url.swift:102:15:102:59 | .password | url.swift:102:15:102:67 | ...! |
+| url.swift:102:27:102:27 | [post] clean | url.swift:104:25:104:25 | clean |
+| url.swift:102:27:102:27 | clean | url.swift:102:15:102:56 | call to init(string:relativeTo:) |
+| url.swift:102:27:102:27 | clean | url.swift:104:25:104:25 | clean |
+| url.swift:102:46:102:46 | [post] urlTainted | url.swift:120:46:120:46 | urlTainted |
+| url.swift:102:46:102:46 | urlTainted | url.swift:102:15:102:56 | call to init(string:relativeTo:) |
+| url.swift:102:46:102:46 | urlTainted | url.swift:120:46:120:46 | urlTainted |
+| url.swift:104:13:104:13 | URL.Type | url.swift:104:13:104:13 | call to init(string:) |
+| url.swift:104:25:104:25 | [post] clean | url.swift:113:26:113:26 | clean |
+| url.swift:104:25:104:25 | clean | url.swift:104:13:104:30 | call to init(string:) |
+| url.swift:104:25:104:25 | clean | url.swift:113:26:113:26 | clean |
+| url.swift:108:13:108:13 | URL.Type | url.swift:108:13:108:13 | call to init(string:) |
+| url.swift:108:25:108:25 | [post] tainted | url.swift:117:28:117:28 | tainted |
+| url.swift:108:25:108:25 | tainted | url.swift:108:13:108:32 | call to init(string:) |
+| url.swift:108:25:108:25 | tainted | url.swift:117:28:117:28 | tainted |
+| url.swift:113:2:113:31 | SSA def(urlClean2) | url.swift:114:12:114:12 | urlClean2 |
+| url.swift:113:14:113:14 | URL.Type | url.swift:113:14:113:14 | call to init(string:) |
+| url.swift:113:14:113:31 | call to init(string:) | url.swift:113:2:113:31 | SSA def(urlClean2) |
+| url.swift:113:26:113:26 | clean | url.swift:113:14:113:31 | call to init(string:) |
+| url.swift:114:12:114:12 | urlClean2 | url.swift:114:12:114:12 | ...! |
+| url.swift:117:2:117:35 | SSA def(urlTainted2) | url.swift:118:12:118:12 | urlTainted2 |
+| url.swift:117:16:117:16 | URL.Type | url.swift:117:16:117:16 | call to init(string:) |
+| url.swift:117:16:117:35 | call to init(string:) | url.swift:117:2:117:35 | SSA def(urlTainted2) |
+| url.swift:117:28:117:28 | tainted | url.swift:117:16:117:35 | call to init(string:) |
+| url.swift:118:12:118:12 | urlTainted2 | url.swift:118:12:118:12 | ...! |
+| url.swift:120:61:120:61 | SSA def(data) | url.swift:121:15:121:15 | data |
+| url.swift:120:61:120:61 | data | url.swift:120:61:120:61 | SSA def(data) |
+| url.swift:121:15:121:15 | data | url.swift:121:15:121:19 | ...! |
+| webview.swift:4:7:4:7 | SSA def(self) | webview.swift:4:7:4:7 | self[return] |
+| webview.swift:4:7:4:7 | SSA def(self) | webview.swift:4:7:4:7 | self[return] |
+| webview.swift:4:7:4:7 | self | webview.swift:4:7:4:7 | SSA def(self) |
+| webview.swift:4:7:4:7 | self | webview.swift:4:7:4:7 | SSA def(self) |
+| webview.swift:6:7:6:7 | SSA def(self) | webview.swift:6:7:6:7 | self[return] |
+| webview.swift:6:7:6:7 | self | webview.swift:6:7:6:7 | SSA def(self) |
+| webview.swift:6:34:6:34 | SSA def(self) | webview.swift:6:34:6:34 | self[return] |
+| webview.swift:6:34:6:34 | self | webview.swift:6:34:6:34 | SSA def(self) |
+| webview.swift:7:26:7:26 | SSA def(self) | webview.swift:7:26:7:42 | self[return] |
+| webview.swift:7:26:7:26 | self | webview.swift:7:26:7:26 | SSA def(self) |
+| webview.swift:10:7:10:7 | SSA def(self) | webview.swift:10:7:10:7 | self[return] |
+| webview.swift:10:7:10:7 | self | webview.swift:10:7:10:7 | SSA def(self) |
+| webview.swift:11:5:11:5 | SSA def(self) | webview.swift:11:5:11:23 | self[return] |
+| webview.swift:11:5:11:5 | self | webview.swift:11:5:11:5 | SSA def(self) |
+| webview.swift:14:7:14:7 | SSA def(self) | webview.swift:14:7:14:7 | self[return] |
+| webview.swift:14:7:14:7 | SSA def(self) | webview.swift:14:7:14:7 | self[return] |
+| webview.swift:14:7:14:7 | self | webview.swift:14:7:14:7 | SSA def(self) |
+| webview.swift:14:7:14:7 | self | webview.swift:14:7:14:7 | SSA def(self) |
+| webview.swift:16:7:16:7 | SSA def(self) | webview.swift:16:7:16:7 | self[return] |
+| webview.swift:16:7:16:7 | SSA def(self) | webview.swift:16:7:16:7 | self[return] |
+| webview.swift:16:7:16:7 | self | webview.swift:16:7:16:7 | SSA def(self) |
+| webview.swift:16:7:16:7 | self | webview.swift:16:7:16:7 | SSA def(self) |
+| webview.swift:18:7:18:7 | SSA def(self) | webview.swift:18:7:18:7 | self[return] |
+| webview.swift:18:7:18:7 | SSA def(self) | webview.swift:18:7:18:7 | self[return] |
+| webview.swift:18:7:18:7 | self | webview.swift:18:7:18:7 | SSA def(self) |
+| webview.swift:18:7:18:7 | self | webview.swift:18:7:18:7 | SSA def(self) |
+| webview.swift:20:7:20:7 | SSA def(self) | webview.swift:20:7:20:7 | self[return] |
+| webview.swift:20:7:20:7 | SSA def(self) | webview.swift:20:7:20:7 | self[return] |
+| webview.swift:20:7:20:7 | self | webview.swift:20:7:20:7 | SSA def(self) |
+| webview.swift:20:7:20:7 | self | webview.swift:20:7:20:7 | SSA def(self) |
+| webview.swift:22:7:22:7 | SSA def(self) | webview.swift:22:7:22:7 | self[return] |
+| webview.swift:22:7:22:7 | SSA def(self) | webview.swift:22:7:22:7 | self[return] |
+| webview.swift:22:7:22:7 | self | webview.swift:22:7:22:7 | SSA def(self) |
+| webview.swift:22:7:22:7 | self | webview.swift:22:7:22:7 | SSA def(self) |
+| webview.swift:24:7:24:7 | SSA def(self) | webview.swift:24:7:24:7 | self[return] |
+| webview.swift:24:7:24:7 | SSA def(self) | webview.swift:24:7:24:7 | self[return] |
+| webview.swift:24:7:24:7 | self | webview.swift:24:7:24:7 | SSA def(self) |
+| webview.swift:24:7:24:7 | self | webview.swift:24:7:24:7 | SSA def(self) |
+| webview.swift:26:7:26:7 | SSA def(self) | webview.swift:26:7:26:7 | self[return] |
+| webview.swift:26:7:26:7 | self | webview.swift:26:7:26:7 | SSA def(self) |
+| webview.swift:27:5:27:5 | SSA def(self) | webview.swift:27:5:27:39 | self[return] |
+| webview.swift:27:5:27:5 | self | webview.swift:27:5:27:5 | SSA def(self) |
+| webview.swift:28:5:28:5 | SSA def(self) | webview.swift:28:5:28:38 | self[return] |
+| webview.swift:28:5:28:5 | self | webview.swift:28:5:28:5 | SSA def(self) |
+| webview.swift:29:5:29:5 | SSA def(self) | webview.swift:29:5:29:42 | self[return] |
+| webview.swift:29:5:29:5 | self | webview.swift:29:5:29:5 | SSA def(self) |
+| webview.swift:30:5:30:5 | SSA def(self) | webview.swift:30:5:30:40 | self[return] |
+| webview.swift:30:5:30:5 | self | webview.swift:30:5:30:5 | SSA def(self) |
+| webview.swift:31:5:31:5 | SSA def(self) | webview.swift:31:5:31:42 | self[return] |
+| webview.swift:31:5:31:5 | self | webview.swift:31:5:31:5 | SSA def(self) |
+| webview.swift:32:5:32:5 | SSA def(self) | webview.swift:32:5:32:42 | self[return] |
+| webview.swift:32:5:32:5 | self | webview.swift:32:5:32:5 | SSA def(self) |
+| webview.swift:33:5:33:5 | SSA def(self) | webview.swift:33:5:33:42 | self[return] |
+| webview.swift:33:5:33:5 | self | webview.swift:33:5:33:5 | SSA def(self) |
+| webview.swift:34:5:34:5 | SSA def(self) | webview.swift:34:5:34:40 | self[return] |
+| webview.swift:34:5:34:5 | self | webview.swift:34:5:34:5 | SSA def(self) |
+| webview.swift:35:5:35:5 | SSA def(self) | webview.swift:35:5:35:40 | self[return] |
+| webview.swift:35:5:35:5 | self | webview.swift:35:5:35:5 | SSA def(self) |
+| webview.swift:36:10:36:10 | SSA def(self) | webview.swift:36:5:36:41 | self[return] |
+| webview.swift:36:10:36:10 | self | webview.swift:36:10:36:10 | SSA def(self) |
+| webview.swift:37:10:37:10 | SSA def(self) | webview.swift:37:5:37:55 | self[return] |
+| webview.swift:37:10:37:10 | self | webview.swift:37:10:37:10 | SSA def(self) |
+| webview.swift:38:10:38:10 | SSA def(self) | webview.swift:38:5:38:42 | self[return] |
+| webview.swift:38:10:38:10 | self | webview.swift:38:10:38:10 | SSA def(self) |
+| webview.swift:39:10:39:10 | SSA def(self) | webview.swift:39:5:39:44 | self[return] |
+| webview.swift:39:10:39:10 | self | webview.swift:39:10:39:10 | SSA def(self) |
+| webview.swift:40:10:40:10 | SSA def(self) | webview.swift:40:5:40:40 | self[return] |
+| webview.swift:40:10:40:10 | self | webview.swift:40:10:40:10 | SSA def(self) |
+| webview.swift:41:10:41:10 | SSA def(self) | webview.swift:41:5:41:42 | self[return] |
+| webview.swift:41:10:41:10 | self | webview.swift:41:10:41:10 | SSA def(self) |
+| webview.swift:42:10:42:10 | SSA def(self) | webview.swift:42:5:42:62 | self[return] |
+| webview.swift:42:10:42:10 | self | webview.swift:42:10:42:10 | SSA def(self) |
+| webview.swift:43:10:43:10 | SSA def(self) | webview.swift:43:5:43:44 | self[return] |
+| webview.swift:43:10:43:10 | self | webview.swift:43:10:43:10 | SSA def(self) |
+| webview.swift:44:10:44:10 | SSA def(self) | webview.swift:44:5:44:44 | self[return] |
+| webview.swift:44:10:44:10 | self | webview.swift:44:10:44:10 | SSA def(self) |
+| webview.swift:45:10:45:10 | SSA def(self) | webview.swift:45:5:45:44 | self[return] |
+| webview.swift:45:10:45:10 | self | webview.swift:45:10:45:10 | SSA def(self) |
+| webview.swift:46:10:46:10 | SSA def(self) | webview.swift:46:5:46:65 | self[return] |
+| webview.swift:46:10:46:10 | self | webview.swift:46:10:46:10 | SSA def(self) |
+| webview.swift:47:10:47:10 | SSA def(self) | webview.swift:47:5:47:50 | self[return] |
+| webview.swift:47:10:47:10 | self | webview.swift:47:10:47:10 | SSA def(self) |
+| webview.swift:48:10:48:10 | SSA def(self) | webview.swift:48:5:48:50 | self[return] |
+| webview.swift:48:10:48:10 | self | webview.swift:48:10:48:10 | SSA def(self) |
+| webview.swift:49:10:49:10 | SSA def(self) | webview.swift:49:5:49:47 | self[return] |
+| webview.swift:49:10:49:10 | self | webview.swift:49:10:49:10 | SSA def(self) |
+| webview.swift:50:10:50:10 | SSA def(self) | webview.swift:50:5:50:47 | self[return] |
+| webview.swift:50:10:50:10 | self | webview.swift:50:10:50:10 | SSA def(self) |
+| webview.swift:51:10:51:10 | SSA def(self) | webview.swift:51:5:51:84 | self[return] |
+| webview.swift:51:10:51:10 | self | webview.swift:51:10:51:10 | SSA def(self) |
+| webview.swift:51:47:51:47 | JSValue.Type | webview.swift:51:47:51:47 | call to init(object:in:) |
+| webview.swift:51:63:51:63 |  | webview.swift:51:47:51:82 | call to init(object:in:) |
+| webview.swift:52:10:52:10 | SSA def(self) | webview.swift:52:5:52:53 | self[return] |
+| webview.swift:52:10:52:10 | self | webview.swift:52:10:52:10 | SSA def(self) |
+| webview.swift:53:10:53:10 | SSA def(self) | webview.swift:53:5:53:89 | self[return] |
+| webview.swift:53:10:53:10 | self | webview.swift:53:10:53:10 | SSA def(self) |
+| webview.swift:53:52:53:52 | JSValue.Type | webview.swift:53:52:53:52 | call to init(object:in:) |
+| webview.swift:53:68:53:68 |  | webview.swift:53:52:53:87 | call to init(object:in:) |
+| webview.swift:54:10:54:10 | SSA def(self) | webview.swift:54:5:54:38 | self[return] |
+| webview.swift:54:10:54:10 | self | webview.swift:54:10:54:10 | SSA def(self) |
+| webview.swift:55:10:55:10 | SSA def(self) | webview.swift:55:5:55:48 | self[return] |
+| webview.swift:55:10:55:10 | self | webview.swift:55:10:55:10 | SSA def(self) |
+| webview.swift:62:7:62:7 | SSA def(self) | webview.swift:62:7:62:7 | self[return] |
+| webview.swift:62:7:62:7 | self | webview.swift:62:7:62:7 | SSA def(self) |
+| webview.swift:62:33:62:33 | SSA def(self) | webview.swift:62:33:62:33 | self[return] |
+| webview.swift:62:33:62:33 | self | webview.swift:62:33:62:33 | SSA def(self) |
+| webview.swift:64:7:64:7 | SSA def(self) | webview.swift:64:7:64:7 | self[return] |
+| webview.swift:64:7:64:7 | self | webview.swift:64:7:64:7 | SSA def(self) |
+| webview.swift:64:31:64:31 | SSA def(self) | webview.swift:64:31:64:31 | self[return] |
+| webview.swift:64:31:64:31 | self | webview.swift:64:31:64:31 | SSA def(self) |
+| webview.swift:65:5:65:5 | SSA def(self) | webview.swift:65:5:65:93 | self[return] |
+| webview.swift:65:5:65:5 | self | webview.swift:65:5:65:5 | SSA def(self) |
+| webview.swift:66:5:66:5 | SSA def(self) | webview.swift:66:5:66:126 | self[return] |
+| webview.swift:66:5:66:5 | self | webview.swift:66:5:66:5 | SSA def(self) |
+| webview.swift:68:26:68:26 | SSA def(self) | webview.swift:68:26:68:42 | self[return] |
+| webview.swift:68:26:68:26 | self | webview.swift:68:26:68:26 | SSA def(self) |
 | webview.swift:77:11:77:18 | call to source() | webview.swift:77:10:77:41 | .body |
+| webview.swift:81:9:81:9 | SSA def(s) | webview.swift:83:18:83:18 | s |
+| webview.swift:81:13:81:20 | call to source() | webview.swift:81:9:81:9 | SSA def(s) |
+| webview.swift:83:9:83:9 | SSA def(source) | webview.swift:84:10:84:10 | source |
+| webview.swift:83:18:83:18 | s | webview.swift:83:9:83:9 | SSA def(source) |
+| webview.swift:83:18:83:18 | s | webview.swift:103:26:103:26 | s |
+| webview.swift:84:10:84:10 | [post] source | webview.swift:85:10:85:10 | source |
+| webview.swift:84:10:84:10 | source | webview.swift:84:10:84:26 | call to toObject() |
+| webview.swift:84:10:84:10 | source | webview.swift:85:10:85:10 | source |
+| webview.swift:85:10:85:10 | [post] source | webview.swift:86:10:86:10 | source |
+| webview.swift:85:10:85:10 | source | webview.swift:85:10:85:41 | call to toObjectOf(_:) |
+| webview.swift:85:10:85:10 | source | webview.swift:86:10:86:10 | source |
+| webview.swift:86:10:86:10 | [post] source | webview.swift:87:10:87:10 | source |
+| webview.swift:86:10:86:10 | source | webview.swift:86:10:86:24 | call to toBool() |
+| webview.swift:86:10:86:10 | source | webview.swift:87:10:87:10 | source |
+| webview.swift:87:10:87:10 | [post] source | webview.swift:88:10:88:10 | source |
+| webview.swift:87:10:87:10 | source | webview.swift:87:10:87:26 | call to toDouble() |
+| webview.swift:87:10:87:10 | source | webview.swift:88:10:88:10 | source |
+| webview.swift:88:10:88:10 | [post] source | webview.swift:89:10:89:10 | source |
+| webview.swift:88:10:88:10 | source | webview.swift:88:10:88:25 | call to toInt32() |
+| webview.swift:88:10:88:10 | source | webview.swift:89:10:89:10 | source |
+| webview.swift:89:10:89:10 | [post] source | webview.swift:90:10:90:10 | source |
+| webview.swift:89:10:89:10 | source | webview.swift:89:10:89:26 | call to toUInt32() |
+| webview.swift:89:10:89:10 | source | webview.swift:90:10:90:10 | source |
+| webview.swift:90:10:90:10 | [post] source | webview.swift:91:10:91:10 | source |
+| webview.swift:90:10:90:10 | source | webview.swift:90:10:90:26 | call to toNumber() |
+| webview.swift:90:10:90:10 | source | webview.swift:91:10:91:10 | source |
+| webview.swift:91:10:91:10 | [post] source | webview.swift:92:10:92:10 | source |
+| webview.swift:91:10:91:10 | source | webview.swift:91:10:91:26 | call to toString() |
+| webview.swift:91:10:91:10 | source | webview.swift:92:10:92:10 | source |
+| webview.swift:92:10:92:10 | [post] source | webview.swift:93:10:93:10 | source |
+| webview.swift:92:10:92:10 | source | webview.swift:92:10:92:24 | call to toDate() |
+| webview.swift:92:10:92:10 | source | webview.swift:93:10:93:10 | source |
+| webview.swift:93:10:93:10 | [post] source | webview.swift:94:10:94:10 | source |
+| webview.swift:93:10:93:10 | source | webview.swift:93:10:93:25 | call to toArray() |
+| webview.swift:93:10:93:10 | source | webview.swift:94:10:94:10 | source |
+| webview.swift:94:10:94:10 | [post] source | webview.swift:95:10:95:10 | source |
+| webview.swift:94:10:94:10 | source | webview.swift:94:10:94:30 | call to toDictionary() |
+| webview.swift:94:10:94:10 | source | webview.swift:95:10:95:10 | source |
+| webview.swift:95:10:95:10 | [post] source | webview.swift:96:10:96:10 | source |
+| webview.swift:95:10:95:10 | source | webview.swift:95:10:95:25 | call to toPoint() |
+| webview.swift:95:10:95:10 | source | webview.swift:96:10:96:10 | source |
+| webview.swift:96:10:96:10 | [post] source | webview.swift:97:10:97:10 | source |
+| webview.swift:96:10:96:10 | source | webview.swift:96:10:96:25 | call to toRange() |
+| webview.swift:96:10:96:10 | source | webview.swift:97:10:97:10 | source |
+| webview.swift:97:10:97:10 | [post] source | webview.swift:98:10:98:10 | source |
+| webview.swift:97:10:97:10 | source | webview.swift:97:10:97:24 | call to toRect() |
+| webview.swift:97:10:97:10 | source | webview.swift:98:10:98:10 | source |
+| webview.swift:98:10:98:10 | [post] source | webview.swift:99:10:99:10 | source |
+| webview.swift:98:10:98:10 | source | webview.swift:98:10:98:24 | call to toSize() |
+| webview.swift:98:10:98:10 | source | webview.swift:99:10:99:10 | source |
+| webview.swift:99:10:99:10 | [post] source | webview.swift:100:10:100:10 | source |
+| webview.swift:99:10:99:10 | source | webview.swift:99:10:99:26 | call to atIndex(_:) |
+| webview.swift:99:10:99:10 | source | webview.swift:100:10:100:10 | source |
+| webview.swift:100:10:100:10 | source | webview.swift:100:10:100:31 | call to forProperty(_:) |
+| webview.swift:102:9:102:9 | SSA def(context) | webview.swift:103:40:103:40 | context |
+| webview.swift:102:19:102:29 | call to init() | webview.swift:102:9:102:9 | SSA def(context) |
+| webview.swift:103:10:103:10 | JSValue.Type | webview.swift:103:10:103:10 | call to init(object:in:) |
+| webview.swift:103:26:103:26 | s | webview.swift:103:10:103:47 | call to init(object:in:) |
+| webview.swift:103:26:103:26 | s | webview.swift:104:24:104:24 | s |
+| webview.swift:103:40:103:40 | [post] context | webview.swift:104:40:104:40 | context |
+| webview.swift:103:40:103:40 | context | webview.swift:104:40:104:40 | context |
+| webview.swift:104:10:104:10 | JSValue.Type | webview.swift:104:10:104:10 | call to init(bool:in:) |
+| webview.swift:104:24:104:24 | s | webview.swift:104:10:104:47 | call to init(bool:in:) |
+| webview.swift:104:24:104:24 | s | webview.swift:105:26:105:26 | s |
+| webview.swift:104:40:104:40 | [post] context | webview.swift:105:44:105:44 | context |
+| webview.swift:104:40:104:40 | context | webview.swift:105:44:105:44 | context |
+| webview.swift:105:10:105:10 | JSValue.Type | webview.swift:105:10:105:10 | call to init(double:in:) |
+| webview.swift:105:26:105:26 | s | webview.swift:105:10:105:51 | call to init(double:in:) |
+| webview.swift:105:26:105:26 | s | webview.swift:106:25:106:25 | s |
+| webview.swift:105:44:105:44 | [post] context | webview.swift:106:42:106:42 | context |
+| webview.swift:105:44:105:44 | context | webview.swift:106:42:106:42 | context |
+| webview.swift:106:10:106:10 | JSValue.Type | webview.swift:106:10:106:10 | call to init(int32:in:) |
+| webview.swift:106:25:106:25 | s | webview.swift:106:10:106:49 | call to init(int32:in:) |
+| webview.swift:106:25:106:25 | s | webview.swift:107:26:107:26 | s |
+| webview.swift:106:42:106:42 | [post] context | webview.swift:107:44:107:44 | context |
+| webview.swift:106:42:106:42 | context | webview.swift:107:44:107:44 | context |
+| webview.swift:107:10:107:10 | JSValue.Type | webview.swift:107:10:107:10 | call to init(uInt32:in:) |
+| webview.swift:107:26:107:26 | s | webview.swift:107:10:107:51 | call to init(uInt32:in:) |
+| webview.swift:107:26:107:26 | s | webview.swift:108:25:108:25 | s |
+| webview.swift:107:44:107:44 | [post] context | webview.swift:108:44:108:44 | context |
+| webview.swift:107:44:107:44 | context | webview.swift:108:44:108:44 | context |
+| webview.swift:108:10:108:10 | JSValue.Type | webview.swift:108:10:108:10 | call to init(point:in:) |
+| webview.swift:108:25:108:25 | s | webview.swift:108:10:108:51 | call to init(point:in:) |
+| webview.swift:108:25:108:25 | s | webview.swift:109:25:109:25 | s |
+| webview.swift:108:44:108:44 | [post] context | webview.swift:109:44:109:44 | context |
+| webview.swift:108:44:108:44 | context | webview.swift:109:44:109:44 | context |
+| webview.swift:109:10:109:10 | JSValue.Type | webview.swift:109:10:109:10 | call to init(range:in:) |
+| webview.swift:109:25:109:25 | s | webview.swift:109:10:109:51 | call to init(range:in:) |
+| webview.swift:109:25:109:25 | s | webview.swift:110:24:110:24 | s |
+| webview.swift:109:44:109:44 | [post] context | webview.swift:110:42:110:42 | context |
+| webview.swift:109:44:109:44 | context | webview.swift:110:42:110:42 | context |
+| webview.swift:110:10:110:10 | JSValue.Type | webview.swift:110:10:110:10 | call to init(rect:in:) |
+| webview.swift:110:24:110:24 | s | webview.swift:110:10:110:49 | call to init(rect:in:) |
+| webview.swift:110:24:110:24 | s | webview.swift:111:24:111:24 | s |
+| webview.swift:110:42:110:42 | [post] context | webview.swift:111:42:111:42 | context |
+| webview.swift:110:42:110:42 | context | webview.swift:111:42:111:42 | context |
+| webview.swift:111:10:111:10 | JSValue.Type | webview.swift:111:10:111:10 | call to init(size:in:) |
+| webview.swift:111:24:111:24 | s | webview.swift:111:10:111:49 | call to init(size:in:) |
+| webview.swift:111:24:111:24 | s | webview.swift:114:39:114:39 | s |
+| webview.swift:111:42:111:42 | [post] context | webview.swift:113:38:113:38 | context |
+| webview.swift:111:42:111:42 | context | webview.swift:113:38:113:38 | context |
+| webview.swift:113:9:113:9 | SSA def(v1) | webview.swift:114:5:114:5 | v1 |
+| webview.swift:113:14:113:14 | JSValue.Type | webview.swift:113:14:113:14 | call to init(object:in:) |
+| webview.swift:113:14:113:45 | call to init(object:in:) | webview.swift:113:9:113:9 | SSA def(v1) |
+| webview.swift:113:30:113:30 |  | webview.swift:113:14:113:45 | call to init(object:in:) |
+| webview.swift:113:38:113:38 | [post] context | webview.swift:117:38:117:38 | context |
+| webview.swift:113:38:113:38 | context | webview.swift:117:38:117:38 | context |
+| webview.swift:114:5:114:5 | [post] v1 | webview.swift:115:10:115:10 | v1 |
+| webview.swift:114:5:114:5 | v1 | webview.swift:115:10:115:10 | v1 |
+| webview.swift:114:39:114:39 | s | webview.swift:114:5:114:5 | [post] v1 |
+| webview.swift:114:39:114:39 | s | webview.swift:118:17:118:17 | s |
+| webview.swift:117:9:117:9 | SSA def(v2) | webview.swift:118:5:118:5 | v2 |
+| webview.swift:117:14:117:14 | JSValue.Type | webview.swift:117:14:117:14 | call to init(object:in:) |
+| webview.swift:117:14:117:45 | call to init(object:in:) | webview.swift:117:9:117:9 | SSA def(v2) |
+| webview.swift:117:30:117:30 |  | webview.swift:117:14:117:45 | call to init(object:in:) |
+| webview.swift:117:38:117:38 | [post] context | webview.swift:121:38:121:38 | context |
+| webview.swift:117:38:117:38 | context | webview.swift:121:38:121:38 | context |
+| webview.swift:118:5:118:5 | [post] v2 | webview.swift:119:10:119:10 | v2 |
+| webview.swift:118:5:118:5 | v2 | webview.swift:119:10:119:10 | v2 |
+| webview.swift:118:17:118:17 | s | webview.swift:118:5:118:5 | [post] v2 |
+| webview.swift:118:17:118:17 | s | webview.swift:122:17:122:17 | s |
+| webview.swift:121:9:121:9 | SSA def(v3) | webview.swift:122:5:122:5 | v3 |
+| webview.swift:121:14:121:14 | JSValue.Type | webview.swift:121:14:121:14 | call to init(object:in:) |
+| webview.swift:121:14:121:45 | call to init(object:in:) | webview.swift:121:9:121:9 | SSA def(v3) |
+| webview.swift:121:30:121:30 |  | webview.swift:121:14:121:45 | call to init(object:in:) |
+| webview.swift:122:5:122:5 | [post] v3 | webview.swift:123:10:123:10 | v3 |
+| webview.swift:122:5:122:5 | v3 | webview.swift:123:10:123:10 | v3 |
+| webview.swift:122:17:122:17 | s | webview.swift:122:5:122:5 | [post] v3 |
+| webview.swift:127:9:127:9 | SSA def(atStart) | webview.swift:128:56:128:56 | atStart |
+| webview.swift:127:19:127:45 | .atDocumentStart | webview.swift:127:9:127:9 | SSA def(atStart) |
+| webview.swift:128:9:128:9 | SSA def(a) | webview.swift:129:10:129:10 | a |
+| webview.swift:128:13:128:13 | WKUserScript.Type | webview.swift:128:13:128:13 | call to init(source:injectionTime:forMainFrameOnly:) |
+| webview.swift:128:13:128:88 | call to init(source:injectionTime:forMainFrameOnly:) | webview.swift:128:9:128:9 | SSA def(a) |
+| webview.swift:128:34:128:34 | abc | webview.swift:128:13:128:88 | call to init(source:injectionTime:forMainFrameOnly:) |
+| webview.swift:128:56:128:56 | [post] atStart | webview.swift:132:70:132:70 | atStart |
+| webview.swift:128:56:128:56 | atStart | webview.swift:132:70:132:70 | atStart |
+| webview.swift:129:10:129:10 | [post] a | webview.swift:130:10:130:10 | a |
+| webview.swift:129:10:129:10 | a | webview.swift:130:10:130:10 | a |
 | webview.swift:130:10:130:10 | a | webview.swift:130:10:130:12 | .source |
+| webview.swift:132:9:132:9 | SSA def(b) | webview.swift:133:10:133:10 | b |
+| webview.swift:132:13:132:13 | WKUserScript.Type | webview.swift:132:13:132:13 | call to init(source:injectionTime:forMainFrameOnly:) |
+| webview.swift:132:13:132:102 | call to init(source:injectionTime:forMainFrameOnly:) | webview.swift:132:9:132:9 | SSA def(b) |
+| webview.swift:132:34:132:41 | call to source() | webview.swift:132:13:132:102 | call to init(source:injectionTime:forMainFrameOnly:) |
+| webview.swift:132:70:132:70 | [post] atStart | webview.swift:137:70:137:70 | atStart |
+| webview.swift:132:70:132:70 | atStart | webview.swift:137:70:137:70 | atStart |
+| webview.swift:133:10:133:10 | [post] b | webview.swift:134:10:134:10 | b |
+| webview.swift:133:10:133:10 | b | webview.swift:134:10:134:10 | b |
 | webview.swift:134:10:134:10 | b | webview.swift:134:10:134:12 | .source |
+| webview.swift:136:9:136:9 | SSA def(world) | webview.swift:137:108:137:108 | world |
+| webview.swift:136:17:136:32 | call to init() | webview.swift:136:9:136:9 | SSA def(world) |
+| webview.swift:137:9:137:9 | SSA def(c) | webview.swift:138:10:138:10 | c |
+| webview.swift:137:13:137:13 | WKUserScript.Type | webview.swift:137:13:137:13 | call to init(source:injectionTime:forMainFrameOnly:in:) |
+| webview.swift:137:13:137:113 | call to init(source:injectionTime:forMainFrameOnly:in:) | webview.swift:137:9:137:9 | SSA def(c) |
+| webview.swift:137:34:137:41 | call to source() | webview.swift:137:13:137:113 | call to init(source:injectionTime:forMainFrameOnly:in:) |
+| webview.swift:138:10:138:10 | [post] c | webview.swift:139:10:139:10 | c |
+| webview.swift:138:10:138:10 | c | webview.swift:139:10:139:10 | c |
 | webview.swift:139:10:139:10 | c | webview.swift:139:10:139:12 | .source |

From 67e9841bf33b5a5791d063987245a920ebea88d4 Mon Sep 17 00:00:00 2001
From: erik-krogh <erik-krogh@github.com>
Date: Tue, 29 Nov 2022 10:40:54 +0100
Subject: [PATCH 0749/1420] place the compilation cache in the temp dir

---
 .github/actions/cache-query-compilation/action.yml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/actions/cache-query-compilation/action.yml b/.github/actions/cache-query-compilation/action.yml
index 9f7569e5f0c..8cc496bb8fc 100644
--- a/.github/actions/cache-query-compilation/action.yml
+++ b/.github/actions/cache-query-compilation/action.yml
@@ -58,4 +58,4 @@ runs:
 
         echo "compdir=${COMBINED_CACHE_DIR}" >> $GITHUB_OUTPUT
       env: 
-        COMBINED_CACHE_DIR: ${{ github.workspace }}/compilation-dir
\ No newline at end of file
+        COMBINED_CACHE_DIR: ${{ runner.temp }}/compilation-dir
\ No newline at end of file

From 915d680fcc9bc4136189c56467d0700f96995a3d Mon Sep 17 00:00:00 2001
From: erik-krogh <erik-krogh@github.com>
Date: Tue, 29 Nov 2022 10:41:08 +0100
Subject: [PATCH 0750/1420] use a node script instead of bash to move the
 compilation cache

---
 .../cache-query-compilation/action.yml        |  7 +-
 .../cache-query-compilation/move-caches.js    | 80 +++++++++++++++++++
 2 files changed, 81 insertions(+), 6 deletions(-)
 create mode 100644 .github/actions/cache-query-compilation/move-caches.js

diff --git a/.github/actions/cache-query-compilation/action.yml b/.github/actions/cache-query-compilation/action.yml
index 8cc496bb8fc..5a13191af3d 100644
--- a/.github/actions/cache-query-compilation/action.yml
+++ b/.github/actions/cache-query-compilation/action.yml
@@ -49,12 +49,7 @@ runs:
       shell: bash 
       run: |
         # Move all the existing cache into another folder, so we only preserve the cache for the current queries.
-        mkdir -p ${COMBINED_CACHE_DIR}
-        rm -f **/.cache/{lock,size} # -f to avoid errors if the cache is empty.
-        # copy the contents of the .cache folders into the combined cache folder.
-        cp -r **/.cache/* ${COMBINED_CACHE_DIR}/ || : # ignore missing files
-        # clean up the .cache folders
-        rm -rf **/.cache/*
+        node $GITHUB_WORKSPACE/.github/actions/cache-query-compilation/move-caches.js ${COMBINED_CACHE_DIR}
 
         echo "compdir=${COMBINED_CACHE_DIR}" >> $GITHUB_OUTPUT
       env: 
diff --git a/.github/actions/cache-query-compilation/move-caches.js b/.github/actions/cache-query-compilation/move-caches.js
new file mode 100644
index 00000000000..e86b1765cf7
--- /dev/null
+++ b/.github/actions/cache-query-compilation/move-caches.js
@@ -0,0 +1,80 @@
+// # Move all the existing cache into another folder, so we only preserve the cache for the current queries.
+// mkdir -p ${COMBINED_CACHE_DIR}
+// rm -f **/.cache/{lock,size} # -f to avoid errors if the cache is empty.
+// # copy the contents of the .cache folders into the combined cache folder.
+// cp -r **/.cache/* ${COMBINED_CACHE_DIR}/ || : # ignore missing files
+// # clean up the .cache folders
+// rm -rf **/.cache/*
+
+const fs = require("fs");
+const path = require("path");
+
+// the first argv is the cache folder to create.
+const COMBINED_CACHE_DIR = process.argv[2];
+
+function* walkCaches(dir) {
+  const files = fs.readdirSync(dir);
+  for (const file of files) {
+    const filePath = path.join(dir, file);
+    if (!fs.existsSync(filePath)) {
+      continue;
+    }
+    const stat = fs.statSync(filePath);
+    if (stat.isDirectory()) {
+      yield* walkCaches(filePath);
+      if (file === ".cache") {
+        yield filePath;
+      }
+    }
+  }
+}
+
+async function copyDir(src, dest) {
+  for await (const file of await fs.promises.readdir(src)) {
+    const srcPath = path.join(src, file);
+    const destPath = path.join(dest, file);
+    const stat = await fs.promises.stat(srcPath);
+    if (stat.isDirectory()) {
+      if (!fs.existsSync(destPath)) {
+        fs.mkdirSync(destPath);
+      }
+      await copyDir(srcPath, destPath);
+    } else {
+      await fs.promises.copyFile(srcPath, destPath);
+    }
+  }
+}
+
+async function main() {
+  const cacheDirs = [...walkCaches(".")];
+
+  for (const dir of cacheDirs) {
+    console.log(`Found .cache dir at ${dir}`);
+  }
+
+  // mkdir -p ${COMBINED_CACHE_DIR}
+  fs.mkdirSync(COMBINED_CACHE_DIR, { recursive: true });
+
+  // rm -f **/.cache/{lock,size} # -f to avoid errors if the cache is empty.
+  await Promise.all(
+    cacheDirs.map((cacheDir) =>
+      (async function () {
+        await fs.promises.rm(path.join(cacheDir, "lock"), { force: true });
+        await fs.promises.rm(path.join(cacheDir, "size"), { force: true });
+      })()
+    )
+  );
+
+  // # copy the contents of the .cache folders into the combined cache folder.
+  // cp -r **/.cache/* ${COMBINED_CACHE_DIR}/ || : # ignore missing files
+  await Promise.all(
+    cacheDirs.map((cacheDir) => copyDir(cacheDir, COMBINED_CACHE_DIR))
+  );
+
+  // # clean up the .cache folders
+  // rm -rf **/.cache/*
+  await Promise.all(
+    cacheDirs.map((cacheDir) => fs.promises.rm(cacheDir, { recursive: true }))
+  );
+}
+main();

From 63334764d7b35237006284c09c9c5fbde1c3ef75 Mon Sep 17 00:00:00 2001
From: Jeroen Ketema <jketema@github.com>
Date: Fri, 25 Nov 2022 16:51:58 +0100
Subject: [PATCH 0751/1420] C++: Rewrite `cpp/path-injection` to not use
 `DefaultTaintTracking`

---
 .../src/Security/CWE/CWE-022/TaintedPath.ql   | 41 +++++++++++++++----
 .../SAMATE/TaintedPath/TaintedPath.expected   | 14 ++-----
 .../CWE-022/semmle/tests/TaintedPath.expected | 12 +-----
 3 files changed, 38 insertions(+), 29 deletions(-)

diff --git a/cpp/ql/src/Security/CWE/CWE-022/TaintedPath.ql b/cpp/ql/src/Security/CWE/CWE-022/TaintedPath.ql
index 928c9942177..c56d3191b6d 100644
--- a/cpp/ql/src/Security/CWE/CWE-022/TaintedPath.ql
+++ b/cpp/ql/src/Security/CWE/CWE-022/TaintedPath.ql
@@ -17,8 +17,9 @@
 import cpp
 import semmle.code.cpp.security.FunctionWithWrappers
 import semmle.code.cpp.security.Security
-import semmle.code.cpp.security.TaintTracking
-import TaintedWithPath
+import semmle.code.cpp.ir.IR
+import semmle.code.cpp.ir.dataflow.TaintTracking
+import DataFlow::PathGraph
 
 /**
  * A function for opening a file.
@@ -46,18 +47,42 @@ class FileFunction extends FunctionWithWrappers {
   override predicate interestingArg(int arg) { arg = 0 }
 }
 
-class TaintedPathConfiguration extends TaintTrackingConfiguration {
-  override predicate isSink(Element tainted) {
-    exists(FileFunction fileFunction | fileFunction.outermostWrapperFunctionCall(tainted, _))
+Expr asSourceExpr(DataFlow::Node node) {
+  result in [node.asConvertedExpr(), node.asDefiningArgument()]
+}
+
+Expr asSinkExpr(DataFlow::Node node) {
+  result = node.asConvertedExpr()
+  or
+  result =
+    node.asOperand()
+        .(SideEffectOperand)
+        .getUse()
+        .(ReadSideEffectInstruction)
+        .getArgumentDef()
+        .getUnconvertedResultExpression()
+}
+
+class TaintedPathConfiguration extends TaintTracking::Configuration {
+  TaintedPathConfiguration() { this = "TaintedPathConfiguration" }
+
+  override predicate isSource(DataFlow::Node node) { isUserInput(asSourceExpr(node), _) }
+
+  override predicate isSink(DataFlow::Node node) {
+    exists(FileFunction fileFunction |
+      fileFunction.outermostWrapperFunctionCall(asSinkExpr(node), _)
+    )
   }
 }
 
 from
-  FileFunction fileFunction, Expr taintedArg, Expr taintSource, PathNode sourceNode,
-  PathNode sinkNode, string taintCause, string callChain
+  FileFunction fileFunction, Expr taintedArg, Expr taintSource, TaintedPathConfiguration cfg,
+  DataFlow::PathNode sourceNode, DataFlow::PathNode sinkNode, string taintCause, string callChain
 where
+  taintedArg = asSinkExpr(sinkNode.getNode()) and
   fileFunction.outermostWrapperFunctionCall(taintedArg, callChain) and
-  taintedWithPath(taintSource, taintedArg, sourceNode, sinkNode) and
+  cfg.hasFlowPath(sourceNode, sinkNode) and
+  taintSource = asSourceExpr(sourceNode.getNode()) and
   isUserInput(taintSource, taintCause)
 select taintedArg, sourceNode, sinkNode,
   "This argument to a file access function is derived from $@ and then passed to " + callChain + ".",
diff --git a/cpp/ql/test/query-tests/Security/CWE/CWE-022/SAMATE/TaintedPath/TaintedPath.expected b/cpp/ql/test/query-tests/Security/CWE/CWE-022/SAMATE/TaintedPath/TaintedPath.expected
index 28d9a9c82e8..5286a25014f 100644
--- a/cpp/ql/test/query-tests/Security/CWE/CWE-022/SAMATE/TaintedPath/TaintedPath.expected
+++ b/cpp/ql/test/query-tests/Security/CWE/CWE-022/SAMATE/TaintedPath/TaintedPath.expected
@@ -1,19 +1,11 @@
 edges
-| CWE23_Relative_Path_Traversal__char_console_fopen_11.cpp:55:27:55:38 | ... + ... | CWE23_Relative_Path_Traversal__char_console_fopen_11.cpp:77:23:77:26 | (const char *)... |
-| CWE23_Relative_Path_Traversal__char_console_fopen_11.cpp:55:27:55:38 | ... + ... | CWE23_Relative_Path_Traversal__char_console_fopen_11.cpp:77:23:77:26 | data |
-| CWE23_Relative_Path_Traversal__char_console_fopen_11.cpp:55:27:55:38 | ... + ... | CWE23_Relative_Path_Traversal__char_console_fopen_11.cpp:77:23:77:26 | data |
-| CWE23_Relative_Path_Traversal__char_console_fopen_11.cpp:55:27:55:38 | ... + ... | CWE23_Relative_Path_Traversal__char_console_fopen_11.cpp:77:23:77:26 | data indirection |
-| CWE23_Relative_Path_Traversal__char_console_fopen_11.cpp:55:27:55:38 | fgets output argument | CWE23_Relative_Path_Traversal__char_console_fopen_11.cpp:77:23:77:26 | (const char *)... |
-| CWE23_Relative_Path_Traversal__char_console_fopen_11.cpp:55:27:55:38 | fgets output argument | CWE23_Relative_Path_Traversal__char_console_fopen_11.cpp:77:23:77:26 | data |
 | CWE23_Relative_Path_Traversal__char_console_fopen_11.cpp:55:27:55:38 | fgets output argument | CWE23_Relative_Path_Traversal__char_console_fopen_11.cpp:77:23:77:26 | data |
 | CWE23_Relative_Path_Traversal__char_console_fopen_11.cpp:55:27:55:38 | fgets output argument | CWE23_Relative_Path_Traversal__char_console_fopen_11.cpp:77:23:77:26 | data indirection |
-subpaths
 nodes
-| CWE23_Relative_Path_Traversal__char_console_fopen_11.cpp:55:27:55:38 | ... + ... | semmle.label | ... + ... |
 | CWE23_Relative_Path_Traversal__char_console_fopen_11.cpp:55:27:55:38 | fgets output argument | semmle.label | fgets output argument |
-| CWE23_Relative_Path_Traversal__char_console_fopen_11.cpp:77:23:77:26 | (const char *)... | semmle.label | (const char *)... |
-| CWE23_Relative_Path_Traversal__char_console_fopen_11.cpp:77:23:77:26 | data | semmle.label | data |
 | CWE23_Relative_Path_Traversal__char_console_fopen_11.cpp:77:23:77:26 | data | semmle.label | data |
 | CWE23_Relative_Path_Traversal__char_console_fopen_11.cpp:77:23:77:26 | data indirection | semmle.label | data indirection |
+subpaths
 #select
-| CWE23_Relative_Path_Traversal__char_console_fopen_11.cpp:77:23:77:26 | data | CWE23_Relative_Path_Traversal__char_console_fopen_11.cpp:55:27:55:38 | ... + ... | CWE23_Relative_Path_Traversal__char_console_fopen_11.cpp:77:23:77:26 | data | This argument to a file access function is derived from $@ and then passed to fopen(filename). | CWE23_Relative_Path_Traversal__char_console_fopen_11.cpp:55:27:55:38 | ... + ... | user input (fgets) |
+| CWE23_Relative_Path_Traversal__char_console_fopen_11.cpp:77:23:77:26 | data | CWE23_Relative_Path_Traversal__char_console_fopen_11.cpp:55:27:55:38 | fgets output argument | CWE23_Relative_Path_Traversal__char_console_fopen_11.cpp:77:23:77:26 | data | This argument to a file access function is derived from $@ and then passed to fopen(filename). | CWE23_Relative_Path_Traversal__char_console_fopen_11.cpp:55:27:55:38 | ... + ... | user input (fgets) |
+| CWE23_Relative_Path_Traversal__char_console_fopen_11.cpp:77:23:77:26 | data | CWE23_Relative_Path_Traversal__char_console_fopen_11.cpp:55:27:55:38 | fgets output argument | CWE23_Relative_Path_Traversal__char_console_fopen_11.cpp:77:23:77:26 | data indirection | This argument to a file access function is derived from $@ and then passed to fopen(filename). | CWE23_Relative_Path_Traversal__char_console_fopen_11.cpp:55:27:55:38 | ... + ... | user input (fgets) |
diff --git a/cpp/ql/test/query-tests/Security/CWE/CWE-022/semmle/tests/TaintedPath.expected b/cpp/ql/test/query-tests/Security/CWE/CWE-022/semmle/tests/TaintedPath.expected
index 51cfc800db6..51037632d07 100644
--- a/cpp/ql/test/query-tests/Security/CWE/CWE-022/semmle/tests/TaintedPath.expected
+++ b/cpp/ql/test/query-tests/Security/CWE/CWE-022/semmle/tests/TaintedPath.expected
@@ -1,19 +1,11 @@
 edges
-| test.c:9:23:9:26 | argv | test.c:17:11:17:18 | (const char *)... |
-| test.c:9:23:9:26 | argv | test.c:17:11:17:18 | (const char *)... |
-| test.c:9:23:9:26 | argv | test.c:17:11:17:18 | fileName |
-| test.c:9:23:9:26 | argv | test.c:17:11:17:18 | fileName |
-| test.c:9:23:9:26 | argv | test.c:17:11:17:18 | fileName |
 | test.c:9:23:9:26 | argv | test.c:17:11:17:18 | fileName |
 | test.c:9:23:9:26 | argv | test.c:17:11:17:18 | fileName indirection |
-| test.c:9:23:9:26 | argv | test.c:17:11:17:18 | fileName indirection |
-subpaths
 nodes
 | test.c:9:23:9:26 | argv | semmle.label | argv |
-| test.c:9:23:9:26 | argv | semmle.label | argv |
-| test.c:17:11:17:18 | (const char *)... | semmle.label | (const char *)... |
-| test.c:17:11:17:18 | fileName | semmle.label | fileName |
 | test.c:17:11:17:18 | fileName | semmle.label | fileName |
 | test.c:17:11:17:18 | fileName indirection | semmle.label | fileName indirection |
+subpaths
 #select
 | test.c:17:11:17:18 | fileName | test.c:9:23:9:26 | argv | test.c:17:11:17:18 | fileName | This argument to a file access function is derived from $@ and then passed to fopen(filename). | test.c:9:23:9:26 | argv | user input (argv) |
+| test.c:17:11:17:18 | fileName | test.c:9:23:9:26 | argv | test.c:17:11:17:18 | fileName indirection | This argument to a file access function is derived from $@ and then passed to fopen(filename). | test.c:9:23:9:26 | argv | user input (argv) |

From 718663415b34a20fa68c447ae4a02825f02b2a32 Mon Sep 17 00:00:00 2001
From: Jeroen Ketema <jketema@github.com>
Date: Sat, 26 Nov 2022 09:23:07 +0100
Subject: [PATCH 0752/1420] C++: Stop flow from going through another source

Without this we get confusing results:
```
    char *userAndFile = argv[2];
    char *fileName = argv[1];
    fopen(fileName, "wb+"); // Both argv[1] and argv[2] marked as source without
                            // this change.
```

While here add some more test cases.
---
 .../src/Security/CWE/CWE-022/TaintedPath.ql   |  2 ++
 .../CWE-022/semmle/tests/TaintedPath.expected | 26 +++++++++++++++++++
 .../CWE/CWE-022/semmle/tests/stdlib.h         |  2 ++
 .../Security/CWE/CWE-022/semmle/tests/test.c  | 18 ++++++++++++-
 4 files changed, 47 insertions(+), 1 deletion(-)

diff --git a/cpp/ql/src/Security/CWE/CWE-022/TaintedPath.ql b/cpp/ql/src/Security/CWE/CWE-022/TaintedPath.ql
index c56d3191b6d..f7c3b558450 100644
--- a/cpp/ql/src/Security/CWE/CWE-022/TaintedPath.ql
+++ b/cpp/ql/src/Security/CWE/CWE-022/TaintedPath.ql
@@ -73,6 +73,8 @@ class TaintedPathConfiguration extends TaintTracking::Configuration {
       fileFunction.outermostWrapperFunctionCall(asSinkExpr(node), _)
     )
   }
+
+  override predicate isSanitizerIn(DataFlow::Node node) { this.isSource(node) }
 }
 
 from
diff --git a/cpp/ql/test/query-tests/Security/CWE/CWE-022/semmle/tests/TaintedPath.expected b/cpp/ql/test/query-tests/Security/CWE/CWE-022/semmle/tests/TaintedPath.expected
index 51037632d07..1f82c83ea6e 100644
--- a/cpp/ql/test/query-tests/Security/CWE/CWE-022/semmle/tests/TaintedPath.expected
+++ b/cpp/ql/test/query-tests/Security/CWE/CWE-022/semmle/tests/TaintedPath.expected
@@ -1,11 +1,37 @@
 edges
 | test.c:9:23:9:26 | argv | test.c:17:11:17:18 | fileName |
 | test.c:9:23:9:26 | argv | test.c:17:11:17:18 | fileName indirection |
+| test.c:31:22:31:25 | argv | test.c:32:11:32:18 | fileName |
+| test.c:31:22:31:25 | argv | test.c:32:11:32:18 | fileName indirection |
+| test.c:37:17:37:24 | fileName | test.c:38:11:38:18 | fileName indirection |
+| test.c:37:17:37:24 | scanf output argument | test.c:38:11:38:18 | fileName indirection |
+| test.c:43:17:43:24 | fileName | test.c:44:11:44:18 | fileName |
+| test.c:43:17:43:24 | fileName | test.c:44:11:44:18 | fileName indirection |
+| test.c:43:17:43:24 | scanf output argument | test.c:44:11:44:18 | fileName |
+| test.c:43:17:43:24 | scanf output argument | test.c:44:11:44:18 | fileName indirection |
 nodes
 | test.c:9:23:9:26 | argv | semmle.label | argv |
 | test.c:17:11:17:18 | fileName | semmle.label | fileName |
 | test.c:17:11:17:18 | fileName indirection | semmle.label | fileName indirection |
+| test.c:31:22:31:25 | argv | semmle.label | argv |
+| test.c:32:11:32:18 | fileName | semmle.label | fileName |
+| test.c:32:11:32:18 | fileName indirection | semmle.label | fileName indirection |
+| test.c:37:17:37:24 | fileName | semmle.label | fileName |
+| test.c:37:17:37:24 | scanf output argument | semmle.label | scanf output argument |
+| test.c:38:11:38:18 | fileName indirection | semmle.label | fileName indirection |
+| test.c:43:17:43:24 | fileName | semmle.label | fileName |
+| test.c:43:17:43:24 | scanf output argument | semmle.label | scanf output argument |
+| test.c:44:11:44:18 | fileName | semmle.label | fileName |
+| test.c:44:11:44:18 | fileName indirection | semmle.label | fileName indirection |
 subpaths
 #select
 | test.c:17:11:17:18 | fileName | test.c:9:23:9:26 | argv | test.c:17:11:17:18 | fileName | This argument to a file access function is derived from $@ and then passed to fopen(filename). | test.c:9:23:9:26 | argv | user input (argv) |
 | test.c:17:11:17:18 | fileName | test.c:9:23:9:26 | argv | test.c:17:11:17:18 | fileName indirection | This argument to a file access function is derived from $@ and then passed to fopen(filename). | test.c:9:23:9:26 | argv | user input (argv) |
+| test.c:32:11:32:18 | fileName | test.c:31:22:31:25 | argv | test.c:32:11:32:18 | fileName | This argument to a file access function is derived from $@ and then passed to fopen(filename). | test.c:31:22:31:25 | argv | user input (argv) |
+| test.c:32:11:32:18 | fileName | test.c:31:22:31:25 | argv | test.c:32:11:32:18 | fileName indirection | This argument to a file access function is derived from $@ and then passed to fopen(filename). | test.c:31:22:31:25 | argv | user input (argv) |
+| test.c:38:11:38:18 | fileName | test.c:37:17:37:24 | fileName | test.c:38:11:38:18 | fileName indirection | This argument to a file access function is derived from $@ and then passed to fopen(filename). | test.c:37:17:37:24 | fileName | user input (scanf) |
+| test.c:38:11:38:18 | fileName | test.c:37:17:37:24 | scanf output argument | test.c:38:11:38:18 | fileName indirection | This argument to a file access function is derived from $@ and then passed to fopen(filename). | test.c:37:17:37:24 | fileName | user input (scanf) |
+| test.c:44:11:44:18 | fileName | test.c:43:17:43:24 | fileName | test.c:44:11:44:18 | fileName | This argument to a file access function is derived from $@ and then passed to fopen(filename). | test.c:43:17:43:24 | fileName | user input (scanf) |
+| test.c:44:11:44:18 | fileName | test.c:43:17:43:24 | fileName | test.c:44:11:44:18 | fileName indirection | This argument to a file access function is derived from $@ and then passed to fopen(filename). | test.c:43:17:43:24 | fileName | user input (scanf) |
+| test.c:44:11:44:18 | fileName | test.c:43:17:43:24 | scanf output argument | test.c:44:11:44:18 | fileName | This argument to a file access function is derived from $@ and then passed to fopen(filename). | test.c:43:17:43:24 | fileName | user input (scanf) |
+| test.c:44:11:44:18 | fileName | test.c:43:17:43:24 | scanf output argument | test.c:44:11:44:18 | fileName indirection | This argument to a file access function is derived from $@ and then passed to fopen(filename). | test.c:43:17:43:24 | fileName | user input (scanf) |
diff --git a/cpp/ql/test/query-tests/Security/CWE/CWE-022/semmle/tests/stdlib.h b/cpp/ql/test/query-tests/Security/CWE/CWE-022/semmle/tests/stdlib.h
index fe518804cc8..18e165ba5f9 100644
--- a/cpp/ql/test/query-tests/Security/CWE/CWE-022/semmle/tests/stdlib.h
+++ b/cpp/ql/test/query-tests/Security/CWE/CWE-022/semmle/tests/stdlib.h
@@ -11,3 +11,5 @@ FILE *fopen(const char *filename, const char *mode);
 int sprintf(char *s, const char *format, ...);
 size_t strlen(const char *s);
 char *strncat(char *s1, const char *s2, size_t n);
+int scanf(const char *format, ...);
+void *malloc(size_t size);
diff --git a/cpp/ql/test/query-tests/Security/CWE/CWE-022/semmle/tests/test.c b/cpp/ql/test/query-tests/Security/CWE/CWE-022/semmle/tests/test.c
index 6c2e2316b24..63ad5516b44 100644
--- a/cpp/ql/test/query-tests/Security/CWE/CWE-022/semmle/tests/test.c
+++ b/cpp/ql/test/query-tests/Security/CWE/CWE-022/semmle/tests/test.c
@@ -26,5 +26,21 @@ int main(int argc, char** argv) {
     strncat(fileName+len, fixed, FILENAME_MAX-len-1);
     fopen(fileName, "wb+");
   }
-}
 
+  {
+    char *fileName = argv[1];
+    fopen(fileName, "wb+"); // BAD
+  }
+
+  {
+    char fileName[20];
+    scanf("%s", fileName);
+    fopen(fileName, "wb+"); // BAD
+  }
+
+  {
+    char *fileName = malloc(20 * sizeof(char));
+    scanf("%s", fileName);
+    fopen(fileName, "wb+"); // BAD
+  }
+}

From 58a87396ba12169b003d51fb24a47278a872cf58 Mon Sep 17 00:00:00 2001
From: Karim Ali <karim.ali@ualberta.ca>
Date: Wed, 9 Nov 2022 14:36:35 +0200
Subject: [PATCH 0753/1420] add taint steps for fields of String

if a String is tainted, then all its fields (including those declared in extensions) should be tainted as well
---
 .../swift/frameworks/StandardLibrary/String.qll    | 14 ++++++++++++++
 .../test/library-tests/dataflow/taint/string.swift | 14 ++++++++++++--
 2 files changed, 26 insertions(+), 2 deletions(-)

diff --git a/swift/ql/lib/codeql/swift/frameworks/StandardLibrary/String.qll b/swift/ql/lib/codeql/swift/frameworks/StandardLibrary/String.qll
index 492dc314c17..14456885572 100644
--- a/swift/ql/lib/codeql/swift/frameworks/StandardLibrary/String.qll
+++ b/swift/ql/lib/codeql/swift/frameworks/StandardLibrary/String.qll
@@ -1,5 +1,7 @@
 import swift
+private import codeql.swift.dataflow.DataFlow
 private import codeql.swift.dataflow.ExternalFlow
+private import codeql.swift.dataflow.FlowSteps
 
 private class StringSource extends SourceModelCsv {
   override predicate row(string row) {
@@ -16,3 +18,15 @@ private class StringSource extends SourceModelCsv {
       ]
   }
 }
+
+/**
+ * A content implying that, if a `String` is tainted, then all its fields are tainted.
+ */
+private class StringFieldsInheritTaint extends TaintInheritingContent,
+  DataFlow::Content::FieldContent {
+  StringFieldsInheritTaint() {
+    this.getField().getEnclosingDecl().(ClassOrStructDecl).getFullName() = "String" or
+    this.getField().getEnclosingDecl().(ExtensionDecl).getExtendedTypeDecl().getFullName() =
+      "String"
+  }
+}
diff --git a/swift/ql/test/library-tests/dataflow/taint/string.swift b/swift/ql/test/library-tests/dataflow/taint/string.swift
index 5b54a8dc444..5724be8d375 100644
--- a/swift/ql/test/library-tests/dataflow/taint/string.swift
+++ b/swift/ql/test/library-tests/dataflow/taint/string.swift
@@ -82,10 +82,10 @@ func taintThroughStringOperations() {
   sink(arg: String(repeating: tainted, count: 2)) // $ MISSING: tainted=74
 
   sink(arg: clean.description)
-  sink(arg: tainted.description) // $ MISSING: tainted=74
+  sink(arg: tainted.description) // $ tainted=74
 
   sink(arg: clean.debugDescription)
-  sink(arg: tainted.debugDescription) // $ MISSING: tainted=74
+  sink(arg: tainted.debugDescription) // $ tainted=74
 }
 
 class Data
@@ -111,3 +111,13 @@ func taintThroughData() {
 	sink(arg: stringClean!)
 	sink(arg: stringTainted!) // $ MISSING: tainted=100
 }
+
+func sink(arg: String.UTF8View) {}
+
+func taintThroughStringFields() {
+  let clean = ""
+  let tainted = source2().utf8
+
+  sink(arg: clean)
+  sink(arg: tainted) // $ tainted=95
+}

From 7541b01a86cfdd6c20a3443f0d06410ee1c50c41 Mon Sep 17 00:00:00 2001
From: Karim Ali <karim.ali@ualberta.ca>
Date: Wed, 9 Nov 2022 15:23:36 +0200
Subject: [PATCH 0754/1420] add test case for utf8CString

---
 swift/ql/test/library-tests/dataflow/taint/string.swift | 5 ++++-
 1 file changed, 4 insertions(+), 1 deletion(-)

diff --git a/swift/ql/test/library-tests/dataflow/taint/string.swift b/swift/ql/test/library-tests/dataflow/taint/string.swift
index 5724be8d375..cece90a0981 100644
--- a/swift/ql/test/library-tests/dataflow/taint/string.swift
+++ b/swift/ql/test/library-tests/dataflow/taint/string.swift
@@ -113,11 +113,14 @@ func taintThroughData() {
 }
 
 func sink(arg: String.UTF8View) {}
+func sink(arg: ContiguousArray<CChar>) {}
 
 func taintThroughStringFields() {
   let clean = ""
   let tainted = source2().utf8
+  let taintedCString = source2().utf8CString
 
   sink(arg: clean)
-  sink(arg: tainted) // $ tainted=95
+  sink(arg: tainted) // $ tainted=120
+  sink(arg: taintedCString) // $ tainted=121
 }

From 9b3c4e8db25ea5bdebc56d48d9caa4adbfbfdd3e Mon Sep 17 00:00:00 2001
From: Karim Ali <karim.ali@ualberta.ca>
Date: Wed, 9 Nov 2022 15:49:27 +0200
Subject: [PATCH 0755/1420] add test case for unicodeScalars

---
 swift/ql/test/library-tests/dataflow/taint/string.swift | 7 +++++--
 1 file changed, 5 insertions(+), 2 deletions(-)

diff --git a/swift/ql/test/library-tests/dataflow/taint/string.swift b/swift/ql/test/library-tests/dataflow/taint/string.swift
index cece90a0981..1186ffd8a6c 100644
--- a/swift/ql/test/library-tests/dataflow/taint/string.swift
+++ b/swift/ql/test/library-tests/dataflow/taint/string.swift
@@ -114,13 +114,16 @@ func taintThroughData() {
 
 func sink(arg: String.UTF8View) {}
 func sink(arg: ContiguousArray<CChar>) {}
+func sink(arg: String.UnicodeScalarView) {}
 
 func taintThroughStringFields() {
   let clean = ""
   let tainted = source2().utf8
   let taintedCString = source2().utf8CString
+  let taintedUnicodeScalars = source2().unicodeScalars
 
   sink(arg: clean)
-  sink(arg: tainted) // $ tainted=120
-  sink(arg: taintedCString) // $ tainted=121
+  sink(arg: tainted) // $ tainted=121
+  sink(arg: taintedCString) // $ tainted=122
+  sink(arg: taintedUnicodeScalars) // $ tainted=123
 }

From f0d9dabca2fd2bb5708bd30c9db4aa5a3c7c8919 Mon Sep 17 00:00:00 2001
From: Karim Ali <karim.ali@ualberta.ca>
Date: Wed, 9 Nov 2022 16:34:46 +0200
Subject: [PATCH 0756/1420] updated expected output for LocalTaint and Tain

---
 .../dataflow/taint/LocalTaint.expected        |  9 +++++++++
 .../dataflow/taint/Taint.expected             | 19 +++++++++++++++++++
 2 files changed, 28 insertions(+)

diff --git a/swift/ql/test/library-tests/dataflow/taint/LocalTaint.expected b/swift/ql/test/library-tests/dataflow/taint/LocalTaint.expected
index 9a5f74be04b..60dde1510ef 100644
--- a/swift/ql/test/library-tests/dataflow/taint/LocalTaint.expected
+++ b/swift/ql/test/library-tests/dataflow/taint/LocalTaint.expected
@@ -600,6 +600,8 @@
 | nsmutabledata.swift:49:15:49:15 | nsMutableDataTainted6 | nsmutabledata.swift:49:15:49:37 | .mutableBytes |
 | string.swift:5:7:5:7 | SSA def(x) | string.swift:7:16:7:16 | x |
 | string.swift:5:11:5:18 | call to source() | string.swift:5:7:5:7 | SSA def(x) |
+| data.swift:20:23:20:23 | 123456 | data.swift:20:23:20:32 | .utf8 |
+| data.swift:21:25:21:32 | call to source() | data.swift:21:25:21:34 | .utf8 |
 | string.swift:7:13:7:13 |  | string.swift:7:13:7:13 | [post]  |
 | string.swift:7:13:7:13 |  | string.swift:7:14:7:14 | [post] &... |
 | string.swift:7:13:7:13 | SSA def($interpolation) | string.swift:7:14:7:14 | SSA phi($interpolation) |
@@ -932,6 +934,13 @@
 | subscript.swift:3:9:3:9 | self | subscript.swift:3:9:3:9 | SSA def(self) |
 | subscript.swift:4:9:4:9 | SSA def(self) | subscript.swift:4:9:4:24 | self[return] |
 | subscript.swift:4:9:4:9 | self | subscript.swift:4:9:4:9 | SSA def(self) |
+| string.swift:84:13:84:13 | clean | string.swift:84:13:84:19 | .description |
+| string.swift:85:13:85:13 | tainted | string.swift:85:13:85:21 | .description |
+| string.swift:87:13:87:13 | clean | string.swift:87:13:87:19 | .debugDescription |
+| string.swift:88:13:88:13 | tainted | string.swift:88:13:88:21 | .debugDescription |
+| string.swift:97:17:97:25 | call to source2() | string.swift:97:17:97:27 | .utf8 |
+| string.swift:98:24:98:32 | call to source2() | string.swift:98:24:98:34 | .utf8CString |
+| string.swift:99:31:99:39 | call to source2() | string.swift:99:31:99:41 | .unicodeScalars |
 | subscript.swift:13:15:13:22 | call to source() | subscript.swift:13:15:13:25 | ...[...] |
 | subscript.swift:14:15:14:23 | call to source2() | subscript.swift:14:15:14:26 | ...[...] |
 | try.swift:8:17:8:23 | call to clean() | try.swift:8:13:8:23 | try ... |
diff --git a/swift/ql/test/library-tests/dataflow/taint/Taint.expected b/swift/ql/test/library-tests/dataflow/taint/Taint.expected
index b72d5905fd7..7404255629f 100644
--- a/swift/ql/test/library-tests/dataflow/taint/Taint.expected
+++ b/swift/ql/test/library-tests/dataflow/taint/Taint.expected
@@ -301,6 +301,11 @@ edges
 | string.swift:28:17:28:25 | call to source2() :  | string.swift:35:13:35:23 | ... .+(_:_:) ... |
 | string.swift:28:17:28:25 | call to source2() :  | string.swift:36:13:36:23 | ... .+(_:_:) ... |
 | string.swift:28:17:28:25 | call to source2() :  | string.swift:39:13:39:29 | ... .+(_:_:) ... |
+| string.swift:74:17:74:25 | call to source2() :  | string.swift:85:13:85:21 | .description |
+| string.swift:74:17:74:25 | call to source2() :  | string.swift:88:13:88:21 | .debugDescription |
+| string.swift:97:17:97:25 | call to source2() :  | string.swift:102:13:102:13 | tainted |
+| string.swift:98:24:98:32 | call to source2() :  | string.swift:103:13:103:13 | taintedCString |
+| string.swift:99:31:99:39 | call to source2() :  | string.swift:104:13:104:13 | taintedUnicodeScalars |
 | subscript.swift:13:15:13:22 | call to source() :  | subscript.swift:13:15:13:25 | ...[...] |
 | subscript.swift:14:15:14:23 | call to source2() :  | subscript.swift:14:15:14:26 | ...[...] |
 | try.swift:9:17:9:24 | call to source() :  | try.swift:9:13:9:24 | try ... |
@@ -940,6 +945,15 @@ nodes
 | string.swift:35:13:35:23 | ... .+(_:_:) ... | semmle.label | ... .+(_:_:) ... |
 | string.swift:36:13:36:23 | ... .+(_:_:) ... | semmle.label | ... .+(_:_:) ... |
 | string.swift:39:13:39:29 | ... .+(_:_:) ... | semmle.label | ... .+(_:_:) ... |
+| string.swift:74:17:74:25 | call to source2() :  | semmle.label | call to source2() :  |
+| string.swift:85:13:85:21 | .description | semmle.label | .description |
+| string.swift:88:13:88:21 | .debugDescription | semmle.label | .debugDescription |
+| string.swift:97:17:97:25 | call to source2() :  | semmle.label | call to source2() :  |
+| string.swift:98:24:98:32 | call to source2() :  | semmle.label | call to source2() :  |
+| string.swift:99:31:99:39 | call to source2() :  | semmle.label | call to source2() :  |
+| string.swift:102:13:102:13 | tainted | semmle.label | tainted |
+| string.swift:103:13:103:13 | taintedCString | semmle.label | taintedCString |
+| string.swift:104:13:104:13 | taintedUnicodeScalars | semmle.label | taintedUnicodeScalars |
 | subscript.swift:13:15:13:22 | call to source() :  | semmle.label | call to source() :  |
 | subscript.swift:13:15:13:25 | ...[...] | semmle.label | ...[...] |
 | subscript.swift:14:15:14:23 | call to source2() :  | semmle.label | call to source2() :  |
@@ -1340,6 +1354,11 @@ subpaths
 | string.swift:35:13:35:23 | ... .+(_:_:) ... | string.swift:28:17:28:25 | call to source2() :  | string.swift:35:13:35:23 | ... .+(_:_:) ... | result |
 | string.swift:36:13:36:23 | ... .+(_:_:) ... | string.swift:28:17:28:25 | call to source2() :  | string.swift:36:13:36:23 | ... .+(_:_:) ... | result |
 | string.swift:39:13:39:29 | ... .+(_:_:) ... | string.swift:28:17:28:25 | call to source2() :  | string.swift:39:13:39:29 | ... .+(_:_:) ... | result |
+| string.swift:85:13:85:21 | .description | string.swift:74:17:74:25 | call to source2() :  | string.swift:85:13:85:21 | .description | result |
+| string.swift:88:13:88:21 | .debugDescription | string.swift:74:17:74:25 | call to source2() :  | string.swift:88:13:88:21 | .debugDescription | result |
+| string.swift:102:13:102:13 | tainted | string.swift:97:17:97:25 | call to source2() :  | string.swift:102:13:102:13 | tainted | result |
+| string.swift:103:13:103:13 | taintedCString | string.swift:98:24:98:32 | call to source2() :  | string.swift:103:13:103:13 | taintedCString | result |
+| string.swift:104:13:104:13 | taintedUnicodeScalars | string.swift:99:31:99:39 | call to source2() :  | string.swift:104:13:104:13 | taintedUnicodeScalars | result |
 | subscript.swift:13:15:13:25 | ...[...] | subscript.swift:13:15:13:22 | call to source() :  | subscript.swift:13:15:13:25 | ...[...] | result |
 | subscript.swift:14:15:14:26 | ...[...] | subscript.swift:14:15:14:23 | call to source2() :  | subscript.swift:14:15:14:26 | ...[...] | result |
 | try.swift:9:13:9:24 | try ... | try.swift:9:17:9:24 | call to source() :  | try.swift:9:13:9:24 | try ... | result |

From 378206ae7dac4a21e7e1f18465410ac08857fe2b Mon Sep 17 00:00:00 2001
From: Jeroen Ketema <jketema@github.com>
Date: Mon, 28 Nov 2022 09:33:02 +0100
Subject: [PATCH 0757/1420] C++: Stop taint from flowing to arithmetic types

These are not likely to give the user much control over what can be accessed.
---
 cpp/ql/src/Security/CWE/CWE-022/TaintedPath.ql            | 4 ++++
 .../Security/CWE/CWE-022/semmle/tests/stdlib.h            | 2 ++
 .../query-tests/Security/CWE/CWE-022/semmle/tests/test.c  | 8 ++++++++
 3 files changed, 14 insertions(+)

diff --git a/cpp/ql/src/Security/CWE/CWE-022/TaintedPath.ql b/cpp/ql/src/Security/CWE/CWE-022/TaintedPath.ql
index f7c3b558450..61c984d71ee 100644
--- a/cpp/ql/src/Security/CWE/CWE-022/TaintedPath.ql
+++ b/cpp/ql/src/Security/CWE/CWE-022/TaintedPath.ql
@@ -75,6 +75,10 @@ class TaintedPathConfiguration extends TaintTracking::Configuration {
   }
 
   override predicate isSanitizerIn(DataFlow::Node node) { this.isSource(node) }
+
+  override predicate isSanitizer(DataFlow::Node node) {
+    node.asExpr().(Call).getTarget().getUnspecifiedType() instanceof ArithmeticType
+  }
 }
 
 from
diff --git a/cpp/ql/test/query-tests/Security/CWE/CWE-022/semmle/tests/stdlib.h b/cpp/ql/test/query-tests/Security/CWE/CWE-022/semmle/tests/stdlib.h
index 18e165ba5f9..8ef60116657 100644
--- a/cpp/ql/test/query-tests/Security/CWE/CWE-022/semmle/tests/stdlib.h
+++ b/cpp/ql/test/query-tests/Security/CWE/CWE-022/semmle/tests/stdlib.h
@@ -6,6 +6,7 @@
 typedef struct {} FILE;
 #define FILENAME_MAX 1000
 typedef unsigned long size_t;
+#define NULL ((void*)0)
 
 FILE *fopen(const char *filename, const char *mode);
 int sprintf(char *s, const char *format, ...);
@@ -13,3 +14,4 @@ size_t strlen(const char *s);
 char *strncat(char *s1, const char *s2, size_t n);
 int scanf(const char *format, ...);
 void *malloc(size_t size);
+double strtod(const char *ptr, char **endptr);
diff --git a/cpp/ql/test/query-tests/Security/CWE/CWE-022/semmle/tests/test.c b/cpp/ql/test/query-tests/Security/CWE/CWE-022/semmle/tests/test.c
index 63ad5516b44..198037d6b52 100644
--- a/cpp/ql/test/query-tests/Security/CWE/CWE-022/semmle/tests/test.c
+++ b/cpp/ql/test/query-tests/Security/CWE/CWE-022/semmle/tests/test.c
@@ -43,4 +43,12 @@ int main(int argc, char** argv) {
     scanf("%s", fileName);
     fopen(fileName, "wb+"); // BAD
   }
+
+  {
+    char *aNumber = getenv("A_NUMBER");
+    double number = strtod(aNumber, 0);
+    char fileName[20];
+    sprintf(fileName, "/foo/%f", number);
+    fopen(fileName, "wb+"); // GOOD
+  }
 }

From 9a25de3ef1d55f2bfdeb577f519402afcf545123 Mon Sep 17 00:00:00 2001
From: Paolo Tranquilli <redsun82@github.com>
Date: Tue, 29 Nov 2022 11:17:08 +0100
Subject: [PATCH 0758/1420] Swift: revert `swift-actions/setup-swift`

---
 swift/actions/run-integration-tests/action.yml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/swift/actions/run-integration-tests/action.yml b/swift/actions/run-integration-tests/action.yml
index 00ef006ea09..6894ef461bc 100644
--- a/swift/actions/run-integration-tests/action.yml
+++ b/swift/actions/run-integration-tests/action.yml
@@ -13,7 +13,7 @@ runs:
     - uses: actions/setup-python@v4
       with:
         python-version-file: 'swift/.python-version'
-    - uses: swift-actions/setup-swift@v1
+    - uses: swift-actions/setup-swift@5cdaa9161ad1f55ae39a5ea1784ef96de72f95d9
       with:
         swift-version: "${{steps.get_swift_version.outputs.version}}"
     - uses: ./.github/actions/fetch-codeql

From d3cccca7f16e03d75280cb220ecaedd78505a3c0 Mon Sep 17 00:00:00 2001
From: Jeroen Ketema <jketema@github.com>
Date: Tue, 29 Nov 2022 11:16:24 +0100
Subject: [PATCH 0759/1420] C++: Filter duplicate (source, sink)-pairs

---
 .../src/Security/CWE/CWE-022/TaintedPath.ql   | 19 +++++++++++++++++--
 .../SAMATE/TaintedPath/TaintedPath.expected   |  1 -
 .../CWE-022/semmle/tests/TaintedPath.expected |  6 ------
 3 files changed, 17 insertions(+), 9 deletions(-)

diff --git a/cpp/ql/src/Security/CWE/CWE-022/TaintedPath.ql b/cpp/ql/src/Security/CWE/CWE-022/TaintedPath.ql
index 61c984d71ee..4d383055c29 100644
--- a/cpp/ql/src/Security/CWE/CWE-022/TaintedPath.ql
+++ b/cpp/ql/src/Security/CWE/CWE-022/TaintedPath.ql
@@ -48,7 +48,9 @@ class FileFunction extends FunctionWithWrappers {
 }
 
 Expr asSourceExpr(DataFlow::Node node) {
-  result in [node.asConvertedExpr(), node.asDefiningArgument()]
+  result = node.asConvertedExpr()
+  or
+  result = node.asDefiningArgument()
 }
 
 Expr asSinkExpr(DataFlow::Node node) {
@@ -79,6 +81,19 @@ class TaintedPathConfiguration extends TaintTracking::Configuration {
   override predicate isSanitizer(DataFlow::Node node) {
     node.asExpr().(Call).getTarget().getUnspecifiedType() instanceof ArithmeticType
   }
+
+  predicate hasFilteredFlowPath(DataFlow::PathNode source, DataFlow::PathNode sink) {
+    this.hasFlowPath(source, sink) and
+    not exists(DataFlow::PathNode source2, DataFlow::PathNode sink2 |
+      this.hasFlowPath(source2, sink2) and
+      asSourceExpr(source.getNode()) = asSourceExpr(source2.getNode()) and
+      asSinkExpr(sink.getNode()) = asSinkExpr(sink2.getNode())
+    |
+      not exists(source.getNode().asConvertedExpr()) and exists(source2.getNode().asConvertedExpr())
+      or
+      not exists(sink.getNode().asConvertedExpr()) and exists(sink2.getNode().asConvertedExpr())
+    )
+  }
 }
 
 from
@@ -87,7 +102,7 @@ from
 where
   taintedArg = asSinkExpr(sinkNode.getNode()) and
   fileFunction.outermostWrapperFunctionCall(taintedArg, callChain) and
-  cfg.hasFlowPath(sourceNode, sinkNode) and
+  cfg.hasFilteredFlowPath(sourceNode, sinkNode) and
   taintSource = asSourceExpr(sourceNode.getNode()) and
   isUserInput(taintSource, taintCause)
 select taintedArg, sourceNode, sinkNode,
diff --git a/cpp/ql/test/query-tests/Security/CWE/CWE-022/SAMATE/TaintedPath/TaintedPath.expected b/cpp/ql/test/query-tests/Security/CWE/CWE-022/SAMATE/TaintedPath/TaintedPath.expected
index 5286a25014f..d9ed395e45a 100644
--- a/cpp/ql/test/query-tests/Security/CWE/CWE-022/SAMATE/TaintedPath/TaintedPath.expected
+++ b/cpp/ql/test/query-tests/Security/CWE/CWE-022/SAMATE/TaintedPath/TaintedPath.expected
@@ -8,4 +8,3 @@ nodes
 subpaths
 #select
 | CWE23_Relative_Path_Traversal__char_console_fopen_11.cpp:77:23:77:26 | data | CWE23_Relative_Path_Traversal__char_console_fopen_11.cpp:55:27:55:38 | fgets output argument | CWE23_Relative_Path_Traversal__char_console_fopen_11.cpp:77:23:77:26 | data | This argument to a file access function is derived from $@ and then passed to fopen(filename). | CWE23_Relative_Path_Traversal__char_console_fopen_11.cpp:55:27:55:38 | ... + ... | user input (fgets) |
-| CWE23_Relative_Path_Traversal__char_console_fopen_11.cpp:77:23:77:26 | data | CWE23_Relative_Path_Traversal__char_console_fopen_11.cpp:55:27:55:38 | fgets output argument | CWE23_Relative_Path_Traversal__char_console_fopen_11.cpp:77:23:77:26 | data indirection | This argument to a file access function is derived from $@ and then passed to fopen(filename). | CWE23_Relative_Path_Traversal__char_console_fopen_11.cpp:55:27:55:38 | ... + ... | user input (fgets) |
diff --git a/cpp/ql/test/query-tests/Security/CWE/CWE-022/semmle/tests/TaintedPath.expected b/cpp/ql/test/query-tests/Security/CWE/CWE-022/semmle/tests/TaintedPath.expected
index 1f82c83ea6e..33f4a4b9d75 100644
--- a/cpp/ql/test/query-tests/Security/CWE/CWE-022/semmle/tests/TaintedPath.expected
+++ b/cpp/ql/test/query-tests/Security/CWE/CWE-022/semmle/tests/TaintedPath.expected
@@ -26,12 +26,6 @@ nodes
 subpaths
 #select
 | test.c:17:11:17:18 | fileName | test.c:9:23:9:26 | argv | test.c:17:11:17:18 | fileName | This argument to a file access function is derived from $@ and then passed to fopen(filename). | test.c:9:23:9:26 | argv | user input (argv) |
-| test.c:17:11:17:18 | fileName | test.c:9:23:9:26 | argv | test.c:17:11:17:18 | fileName indirection | This argument to a file access function is derived from $@ and then passed to fopen(filename). | test.c:9:23:9:26 | argv | user input (argv) |
 | test.c:32:11:32:18 | fileName | test.c:31:22:31:25 | argv | test.c:32:11:32:18 | fileName | This argument to a file access function is derived from $@ and then passed to fopen(filename). | test.c:31:22:31:25 | argv | user input (argv) |
-| test.c:32:11:32:18 | fileName | test.c:31:22:31:25 | argv | test.c:32:11:32:18 | fileName indirection | This argument to a file access function is derived from $@ and then passed to fopen(filename). | test.c:31:22:31:25 | argv | user input (argv) |
 | test.c:38:11:38:18 | fileName | test.c:37:17:37:24 | fileName | test.c:38:11:38:18 | fileName indirection | This argument to a file access function is derived from $@ and then passed to fopen(filename). | test.c:37:17:37:24 | fileName | user input (scanf) |
-| test.c:38:11:38:18 | fileName | test.c:37:17:37:24 | scanf output argument | test.c:38:11:38:18 | fileName indirection | This argument to a file access function is derived from $@ and then passed to fopen(filename). | test.c:37:17:37:24 | fileName | user input (scanf) |
 | test.c:44:11:44:18 | fileName | test.c:43:17:43:24 | fileName | test.c:44:11:44:18 | fileName | This argument to a file access function is derived from $@ and then passed to fopen(filename). | test.c:43:17:43:24 | fileName | user input (scanf) |
-| test.c:44:11:44:18 | fileName | test.c:43:17:43:24 | fileName | test.c:44:11:44:18 | fileName indirection | This argument to a file access function is derived from $@ and then passed to fopen(filename). | test.c:43:17:43:24 | fileName | user input (scanf) |
-| test.c:44:11:44:18 | fileName | test.c:43:17:43:24 | scanf output argument | test.c:44:11:44:18 | fileName | This argument to a file access function is derived from $@ and then passed to fopen(filename). | test.c:43:17:43:24 | fileName | user input (scanf) |
-| test.c:44:11:44:18 | fileName | test.c:43:17:43:24 | scanf output argument | test.c:44:11:44:18 | fileName indirection | This argument to a file access function is derived from $@ and then passed to fopen(filename). | test.c:43:17:43:24 | fileName | user input (scanf) |

From c89c449a2c4061685f3e5019b8b200e9792c10ee Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Nora=20Dimitrijevi=C4=87?= <d10c@users.noreply.github.com>
Date: Wed, 16 Nov 2022 14:06:02 +0100
Subject: [PATCH 0760/1420] Swift: silence cmake/vscode intellisense Problem

i.e. "TrapLabel not found"
---
 swift/extractor/trap/TrapTagTraits.h | 1 +
 1 file changed, 1 insertion(+)

diff --git a/swift/extractor/trap/TrapTagTraits.h b/swift/extractor/trap/TrapTagTraits.h
index f0f8c41cc8d..565f7f20892 100644
--- a/swift/extractor/trap/TrapTagTraits.h
+++ b/swift/extractor/trap/TrapTagTraits.h
@@ -4,6 +4,7 @@
 // label tags
 
 #include <type_traits>
+#include "swift/extractor/trap/TrapLabel.h"
 
 namespace codeql {
 

From 36e7235493b6e605215b780b82f680dc35b9b8e3 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Nora=20Dimitrijevi=C4=87?= <d10c@users.noreply.github.com>
Date: Mon, 28 Nov 2022 19:29:30 +0100
Subject: [PATCH 0761/1420] Swift: fix `-Wmissing-braces` warning in extractor

By initializing va_list the standard way,
i.e. leaving it uninitialized until va_start().
---
 swift/extractor/remapping/SwiftOpenInterception.macOS.cpp | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/swift/extractor/remapping/SwiftOpenInterception.macOS.cpp b/swift/extractor/remapping/SwiftOpenInterception.macOS.cpp
index 0ac23d14cbc..d378a571e58 100644
--- a/swift/extractor/remapping/SwiftOpenInterception.macOS.cpp
+++ b/swift/extractor/remapping/SwiftOpenInterception.macOS.cpp
@@ -27,7 +27,7 @@ static std::string originalHashFile(const fs::path& filename) {
 }
 
 static int codeql_open(const char* path, int oflag, ...) {
-  va_list ap = {0};
+  va_list ap;
   mode_t mode = 0;
   if ((oflag & O_CREAT) != 0) {
     // mode only applies to O_CREAT

From 931173350f8ca9f77c1887d7601bd5560408a6c2 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Nora=20Dimitrijevi=C4=87?= <d10c@users.noreply.github.com>
Date: Mon, 28 Nov 2022 13:15:10 +0100
Subject: [PATCH 0762/1420] Swift: extract missing cases of AccessorKind and
 AccessSemantics

This resolves the warnings that were showing up during extractor-pack
compilation.
---
 .../extractor/translators/DeclTranslator.cpp  | 12 +++++
 .../extractor/translators/ExprTranslator.cpp  |  3 ++
 swift/ql/lib/codeql/swift/generated/Raw.qll   | 18 +++++++
 .../swift/generated/decl/AccessorDecl.qll     | 24 +++++++++
 .../swift/generated/expr/DeclRefExpr.qll      |  7 +++
 .../swift/generated/expr/MemberRefExpr.qll    |  7 +++
 .../swift/generated/expr/SubscriptExpr.qll    |  7 +++
 swift/ql/lib/swift.dbscheme                   | 35 ++++++++++++
 .../decl/AccessorDecl/AccessorDecl.expected   | 54 +++++++++----------
 .../decl/AccessorDecl/AccessorDecl.ql         | 15 ++++--
 swift/schema.py                               |  7 +++
 11 files changed, 159 insertions(+), 30 deletions(-)

diff --git a/swift/extractor/translators/DeclTranslator.cpp b/swift/extractor/translators/DeclTranslator.cpp
index 2482499a32c..09927cad47b 100644
--- a/swift/extractor/translators/DeclTranslator.cpp
+++ b/swift/extractor/translators/DeclTranslator.cpp
@@ -231,6 +231,18 @@ std::optional<codeql::AccessorDecl> DeclTranslator::translateAccessorDecl(
     case swift::AccessorKind::DidSet:
       entry->is_did_set = true;
       break;
+    case swift::AccessorKind::Read:
+      entry->is_read = true;
+      break;
+    case swift::AccessorKind::Modify:
+      entry->is_modify = true;
+      break;
+    case swift::AccessorKind::Address:
+      entry->is_unsafe_address = true;
+      break;
+    case swift::AccessorKind::MutableAddress:
+      entry->is_unsafe_mutable_address = true;
+      break;
   }
   fillAbstractFunctionDecl(decl, *entry);
   return entry;
diff --git a/swift/extractor/translators/ExprTranslator.cpp b/swift/extractor/translators/ExprTranslator.cpp
index f51839d623e..fa521269e86 100644
--- a/swift/extractor/translators/ExprTranslator.cpp
+++ b/swift/extractor/translators/ExprTranslator.cpp
@@ -16,6 +16,9 @@ void ExprTranslator::fillAccessorSemantics(const T& ast, TrapClassOf<T>& entry)
     case swift::AccessSemantics::Ordinary:
       entry.has_ordinary_semantics = true;
       break;
+    case swift::AccessSemantics::DistributedThunk:
+      entry.has_distributed_thunk_semantics = true;
+      break;
   }
 }
 
diff --git a/swift/ql/lib/codeql/swift/generated/Raw.qll b/swift/ql/lib/codeql/swift/generated/Raw.qll
index a34018bc3b9..a15be0be546 100644
--- a/swift/ql/lib/codeql/swift/generated/Raw.qll
+++ b/swift/ql/lib/codeql/swift/generated/Raw.qll
@@ -261,6 +261,14 @@ module Raw {
     predicate isWillSet() { accessor_decl_is_will_set(this) }
 
     predicate isDidSet() { accessor_decl_is_did_set(this) }
+
+    predicate isRead() { accessor_decl_is_read(this) }
+
+    predicate isModify() { accessor_decl_is_modify(this) }
+
+    predicate isUnsafeAddress() { accessor_decl_is_unsafe_address(this) }
+
+    predicate isUnsafeMutableAddress() { accessor_decl_is_unsafe_mutable_address(this) }
   }
 
   class AssociatedTypeDecl extends @associated_type_decl, AbstractTypeParamDecl {
@@ -403,6 +411,8 @@ module Raw {
     }
 
     predicate hasOrdinarySemantics() { decl_ref_expr_has_ordinary_semantics(this) }
+
+    predicate hasDistributedThunkSemantics() { decl_ref_expr_has_distributed_thunk_semantics(this) }
   }
 
   class DefaultArgumentExpr extends @default_argument_expr, Expr {
@@ -851,6 +861,10 @@ module Raw {
     }
 
     predicate hasOrdinarySemantics() { member_ref_expr_has_ordinary_semantics(this) }
+
+    predicate hasDistributedThunkSemantics() {
+      member_ref_expr_has_distributed_thunk_semantics(this)
+    }
   }
 
   class MetatypeConversionExpr extends @metatype_conversion_expr, ImplicitConversionExpr {
@@ -918,6 +932,10 @@ module Raw {
     }
 
     predicate hasOrdinarySemantics() { subscript_expr_has_ordinary_semantics(this) }
+
+    predicate hasDistributedThunkSemantics() {
+      subscript_expr_has_distributed_thunk_semantics(this)
+    }
   }
 
   class TryExpr extends @try_expr, AnyTryExpr {
diff --git a/swift/ql/lib/codeql/swift/generated/decl/AccessorDecl.qll b/swift/ql/lib/codeql/swift/generated/decl/AccessorDecl.qll
index 8b0a8f7582a..6616023d814 100644
--- a/swift/ql/lib/codeql/swift/generated/decl/AccessorDecl.qll
+++ b/swift/ql/lib/codeql/swift/generated/decl/AccessorDecl.qll
@@ -26,5 +26,29 @@ module Generated {
      * Holds if this accessor is a `didSet`, called after the property is set.
      */
     predicate isDidSet() { Synth::convertAccessorDeclToRaw(this).(Raw::AccessorDecl).isDidSet() }
+
+    /**
+     * Holds if this accessor is a `_read` coroutine, yielding a borrowed value of the property.
+     */
+    predicate isRead() { Synth::convertAccessorDeclToRaw(this).(Raw::AccessorDecl).isRead() }
+
+    /**
+     * Holds if this accessor is a `_modify` coroutine, yielding an inout value of the property.
+     */
+    predicate isModify() { Synth::convertAccessorDeclToRaw(this).(Raw::AccessorDecl).isModify() }
+
+    /**
+     * Holds if this accessor is an `unsafeAddress` immutable addressor.
+     */
+    predicate isUnsafeAddress() {
+      Synth::convertAccessorDeclToRaw(this).(Raw::AccessorDecl).isUnsafeAddress()
+    }
+
+    /**
+     * Holds if this accessor is an `unsafeMutableAddress` mutable addressor.
+     */
+    predicate isUnsafeMutableAddress() {
+      Synth::convertAccessorDeclToRaw(this).(Raw::AccessorDecl).isUnsafeMutableAddress()
+    }
   }
 }
diff --git a/swift/ql/lib/codeql/swift/generated/expr/DeclRefExpr.qll b/swift/ql/lib/codeql/swift/generated/expr/DeclRefExpr.qll
index bb83df6d35c..cb95cd82a27 100644
--- a/swift/ql/lib/codeql/swift/generated/expr/DeclRefExpr.qll
+++ b/swift/ql/lib/codeql/swift/generated/expr/DeclRefExpr.qll
@@ -75,5 +75,12 @@ module Generated {
     predicate hasOrdinarySemantics() {
       Synth::convertDeclRefExprToRaw(this).(Raw::DeclRefExpr).hasOrdinarySemantics()
     }
+
+    /**
+     * Holds if this declaration ref expression has distributed thunk semantics.
+     */
+    predicate hasDistributedThunkSemantics() {
+      Synth::convertDeclRefExprToRaw(this).(Raw::DeclRefExpr).hasDistributedThunkSemantics()
+    }
   }
 }
diff --git a/swift/ql/lib/codeql/swift/generated/expr/MemberRefExpr.qll b/swift/ql/lib/codeql/swift/generated/expr/MemberRefExpr.qll
index ed91bd4a98c..4f12da0b1fa 100644
--- a/swift/ql/lib/codeql/swift/generated/expr/MemberRefExpr.qll
+++ b/swift/ql/lib/codeql/swift/generated/expr/MemberRefExpr.qll
@@ -29,5 +29,12 @@ module Generated {
     predicate hasOrdinarySemantics() {
       Synth::convertMemberRefExprToRaw(this).(Raw::MemberRefExpr).hasOrdinarySemantics()
     }
+
+    /**
+     * Holds if this member ref expression has distributed thunk semantics.
+     */
+    predicate hasDistributedThunkSemantics() {
+      Synth::convertMemberRefExprToRaw(this).(Raw::MemberRefExpr).hasDistributedThunkSemantics()
+    }
   }
 }
diff --git a/swift/ql/lib/codeql/swift/generated/expr/SubscriptExpr.qll b/swift/ql/lib/codeql/swift/generated/expr/SubscriptExpr.qll
index c75de17d112..456fda265f0 100644
--- a/swift/ql/lib/codeql/swift/generated/expr/SubscriptExpr.qll
+++ b/swift/ql/lib/codeql/swift/generated/expr/SubscriptExpr.qll
@@ -58,5 +58,12 @@ module Generated {
     predicate hasOrdinarySemantics() {
       Synth::convertSubscriptExprToRaw(this).(Raw::SubscriptExpr).hasOrdinarySemantics()
     }
+
+    /**
+     * Holds if this subscript expression has distributed thunk semantics.
+     */
+    predicate hasDistributedThunkSemantics() {
+      Synth::convertSubscriptExprToRaw(this).(Raw::SubscriptExpr).hasDistributedThunkSemantics()
+    }
   }
 }
diff --git a/swift/ql/lib/swift.dbscheme b/swift/ql/lib/swift.dbscheme
index abbb8c9e840..1a6e9325bd6 100644
--- a/swift/ql/lib/swift.dbscheme
+++ b/swift/ql/lib/swift.dbscheme
@@ -524,6 +524,26 @@ accessor_decl_is_did_set(  //dir=decl
   int id: @accessor_decl ref
 );
 
+#keyset[id]
+accessor_decl_is_read(  //dir=decl
+  int id: @accessor_decl ref
+);
+
+#keyset[id]
+accessor_decl_is_modify(  //dir=decl
+  int id: @accessor_decl ref
+);
+
+#keyset[id]
+accessor_decl_is_unsafe_address(  //dir=decl
+  int id: @accessor_decl ref
+);
+
+#keyset[id]
+accessor_decl_is_unsafe_mutable_address(  //dir=decl
+  int id: @accessor_decl ref
+);
+
 associated_type_decls(  //dir=decl
   unique int id: @associated_type_decl
 );
@@ -771,6 +791,11 @@ decl_ref_expr_has_ordinary_semantics(  //dir=expr
   int id: @decl_ref_expr ref
 );
 
+#keyset[id]
+decl_ref_expr_has_distributed_thunk_semantics(  //dir=expr
+  int id: @decl_ref_expr ref
+);
+
 default_argument_exprs(  //dir=expr
   unique int id: @default_argument_expr,
   int param_decl: @param_decl_or_none ref,
@@ -1319,6 +1344,11 @@ member_ref_expr_has_ordinary_semantics(  //dir=expr
   int id: @member_ref_expr ref
 );
 
+#keyset[id]
+member_ref_expr_has_distributed_thunk_semantics(  //dir=expr
+  int id: @member_ref_expr ref
+);
+
 metatype_conversion_exprs(  //dir=expr
   unique int id: @metatype_conversion_expr
 );
@@ -1408,6 +1438,11 @@ subscript_expr_has_ordinary_semantics(  //dir=expr
   int id: @subscript_expr ref
 );
 
+#keyset[id]
+subscript_expr_has_distributed_thunk_semantics(  //dir=expr
+  int id: @subscript_expr ref
+);
+
 try_exprs(  //dir=expr
   unique int id: @try_expr
 );
diff --git a/swift/ql/test/extractor-tests/generated/decl/AccessorDecl/AccessorDecl.expected b/swift/ql/test/extractor-tests/generated/decl/AccessorDecl/AccessorDecl.expected
index 024e88a36b3..9927e4ef93b 100644
--- a/swift/ql/test/extractor-tests/generated/decl/AccessorDecl/AccessorDecl.expected
+++ b/swift/ql/test/extractor-tests/generated/decl/AccessorDecl/AccessorDecl.expected
@@ -1,27 +1,27 @@
-| accessors.swift:2:9:2:9 | (unnamed function decl) | getModule: | file://:0:0:0:0 | accessors | getInterfaceType: | (inout Foo) -> () -> () | getName: | (unnamed function decl) | isGetter: | no | isSetter: | no | isWillSet: | no | isDidSet: | no |
-| accessors.swift:2:9:2:9 | get | getModule: | file://:0:0:0:0 | accessors | getInterfaceType: | (Foo) -> () -> Int | getName: | (unnamed function decl) | isGetter: | yes | isSetter: | no | isWillSet: | no | isDidSet: | no |
-| accessors.swift:2:9:2:9 | set | getModule: | file://:0:0:0:0 | accessors | getInterfaceType: | (inout Foo) -> (Int) -> () | getName: | (unnamed function decl) | isGetter: | no | isSetter: | yes | isWillSet: | no | isDidSet: | no |
-| accessors.swift:3:9:3:9 | (unnamed function decl) | getModule: | file://:0:0:0:0 | accessors | getInterfaceType: | (inout Foo) -> () -> () | getName: | (unnamed function decl) | isGetter: | no | isSetter: | no | isWillSet: | no | isDidSet: | no |
-| accessors.swift:4:9:4:28 | get | getModule: | file://:0:0:0:0 | accessors | getInterfaceType: | (Foo) -> () -> Int | getName: | (unnamed function decl) | isGetter: | yes | isSetter: | no | isWillSet: | no | isDidSet: | no |
-| accessors.swift:5:9:5:42 | set | getModule: | file://:0:0:0:0 | accessors | getInterfaceType: | (inout Foo) -> (Int) -> () | getName: | (unnamed function decl) | isGetter: | no | isSetter: | yes | isWillSet: | no | isDidSet: | no |
-| accessors.swift:7:9:7:9 | (unnamed function decl) | getModule: | file://:0:0:0:0 | accessors | getInterfaceType: | (inout Foo) -> () -> () | getName: | (unnamed function decl) | isGetter: | no | isSetter: | no | isWillSet: | no | isDidSet: | no |
-| accessors.swift:7:9:7:9 | get | getModule: | file://:0:0:0:0 | accessors | getInterfaceType: | (Foo) -> () -> Int | getName: | (unnamed function decl) | isGetter: | yes | isSetter: | no | isWillSet: | no | isDidSet: | no |
-| accessors.swift:7:9:7:9 | set | getModule: | file://:0:0:0:0 | accessors | getInterfaceType: | (inout Foo) -> (Int) -> () | getName: | (unnamed function decl) | isGetter: | no | isSetter: | yes | isWillSet: | no | isDidSet: | no |
-| accessors.swift:8:9:8:29 | willSet | getModule: | file://:0:0:0:0 | accessors | getInterfaceType: | (inout Foo) -> (Int) -> () | getName: | (unnamed function decl) | isGetter: | no | isSetter: | no | isWillSet: | yes | isDidSet: | no |
-| accessors.swift:11:9:11:9 | (unnamed function decl) | getModule: | file://:0:0:0:0 | accessors | getInterfaceType: | (inout Foo) -> () -> () | getName: | (unnamed function decl) | isGetter: | no | isSetter: | no | isWillSet: | no | isDidSet: | no |
-| accessors.swift:11:9:11:9 | get | getModule: | file://:0:0:0:0 | accessors | getInterfaceType: | (Foo) -> () -> Int | getName: | (unnamed function decl) | isGetter: | yes | isSetter: | no | isWillSet: | no | isDidSet: | no |
-| accessors.swift:11:9:11:9 | set | getModule: | file://:0:0:0:0 | accessors | getInterfaceType: | (inout Foo) -> (Int) -> () | getName: | (unnamed function decl) | isGetter: | no | isSetter: | yes | isWillSet: | no | isDidSet: | no |
-| accessors.swift:12:9:12:19 | willSet | getModule: | file://:0:0:0:0 | accessors | getInterfaceType: | (inout Foo) -> (Int) -> () | getName: | (unnamed function decl) | isGetter: | no | isSetter: | no | isWillSet: | yes | isDidSet: | no |
-| accessors.swift:15:9:15:9 | (unnamed function decl) | getModule: | file://:0:0:0:0 | accessors | getInterfaceType: | (inout Foo) -> () -> () | getName: | (unnamed function decl) | isGetter: | no | isSetter: | no | isWillSet: | no | isDidSet: | no |
-| accessors.swift:15:9:15:9 | get | getModule: | file://:0:0:0:0 | accessors | getInterfaceType: | (Foo) -> () -> Int | getName: | (unnamed function decl) | isGetter: | yes | isSetter: | no | isWillSet: | no | isDidSet: | no |
-| accessors.swift:15:9:15:9 | set | getModule: | file://:0:0:0:0 | accessors | getInterfaceType: | (inout Foo) -> (Int) -> () | getName: | (unnamed function decl) | isGetter: | no | isSetter: | yes | isWillSet: | no | isDidSet: | no |
-| accessors.swift:16:9:16:28 | didSet | getModule: | file://:0:0:0:0 | accessors | getInterfaceType: | (inout Foo) -> (Int) -> () | getName: | (unnamed function decl) | isGetter: | no | isSetter: | no | isWillSet: | no | isDidSet: | yes |
-| accessors.swift:19:9:19:9 | (unnamed function decl) | getModule: | file://:0:0:0:0 | accessors | getInterfaceType: | (inout Foo) -> () -> () | getName: | (unnamed function decl) | isGetter: | no | isSetter: | no | isWillSet: | no | isDidSet: | no |
-| accessors.swift:19:9:19:9 | get | getModule: | file://:0:0:0:0 | accessors | getInterfaceType: | (Foo) -> () -> Int | getName: | (unnamed function decl) | isGetter: | yes | isSetter: | no | isWillSet: | no | isDidSet: | no |
-| accessors.swift:19:9:19:9 | set | getModule: | file://:0:0:0:0 | accessors | getInterfaceType: | (inout Foo) -> (Int) -> () | getName: | (unnamed function decl) | isGetter: | no | isSetter: | yes | isWillSet: | no | isDidSet: | no |
-| accessors.swift:20:9:20:18 | didSet | getModule: | file://:0:0:0:0 | accessors | getInterfaceType: | (inout Foo) -> () -> () | getName: | (unnamed function decl) | isGetter: | no | isSetter: | no | isWillSet: | no | isDidSet: | yes |
-| accessors.swift:23:9:23:9 | (unnamed function decl) | getModule: | file://:0:0:0:0 | accessors | getInterfaceType: | (inout Foo) -> () -> () | getName: | (unnamed function decl) | isGetter: | no | isSetter: | no | isWillSet: | no | isDidSet: | no |
-| accessors.swift:23:9:23:9 | get | getModule: | file://:0:0:0:0 | accessors | getInterfaceType: | (Foo) -> () -> Int | getName: | (unnamed function decl) | isGetter: | yes | isSetter: | no | isWillSet: | no | isDidSet: | no |
-| accessors.swift:23:9:23:9 | set | getModule: | file://:0:0:0:0 | accessors | getInterfaceType: | (inout Foo) -> (Int) -> () | getName: | (unnamed function decl) | isGetter: | no | isSetter: | yes | isWillSet: | no | isDidSet: | no |
-| accessors.swift:24:9:24:19 | willSet | getModule: | file://:0:0:0:0 | accessors | getInterfaceType: | (inout Foo) -> (Int) -> () | getName: | (unnamed function decl) | isGetter: | no | isSetter: | no | isWillSet: | yes | isDidSet: | no |
-| accessors.swift:26:9:26:18 | didSet | getModule: | file://:0:0:0:0 | accessors | getInterfaceType: | (inout Foo) -> () -> () | getName: | (unnamed function decl) | isGetter: | no | isSetter: | no | isWillSet: | no | isDidSet: | yes |
+| accessors.swift:2:9:2:9 | (unnamed function decl) | getModule: | file://:0:0:0:0 | accessors | getInterfaceType: | (inout Foo) -> () -> () | getName: | (unnamed function decl) | isGetter: | no | isSetter: | no | isWillSet: | no | isDidSet: | no | isRead: | no | isModify: | yes | isUnsafeAddress: | no | isUnsafeMutableAddress: | no |
+| accessors.swift:2:9:2:9 | get | getModule: | file://:0:0:0:0 | accessors | getInterfaceType: | (Foo) -> () -> Int | getName: | (unnamed function decl) | isGetter: | yes | isSetter: | no | isWillSet: | no | isDidSet: | no | isRead: | no | isModify: | no | isUnsafeAddress: | no | isUnsafeMutableAddress: | no |
+| accessors.swift:2:9:2:9 | set | getModule: | file://:0:0:0:0 | accessors | getInterfaceType: | (inout Foo) -> (Int) -> () | getName: | (unnamed function decl) | isGetter: | no | isSetter: | yes | isWillSet: | no | isDidSet: | no | isRead: | no | isModify: | no | isUnsafeAddress: | no | isUnsafeMutableAddress: | no |
+| accessors.swift:3:9:3:9 | (unnamed function decl) | getModule: | file://:0:0:0:0 | accessors | getInterfaceType: | (inout Foo) -> () -> () | getName: | (unnamed function decl) | isGetter: | no | isSetter: | no | isWillSet: | no | isDidSet: | no | isRead: | no | isModify: | yes | isUnsafeAddress: | no | isUnsafeMutableAddress: | no |
+| accessors.swift:4:9:4:28 | get | getModule: | file://:0:0:0:0 | accessors | getInterfaceType: | (Foo) -> () -> Int | getName: | (unnamed function decl) | isGetter: | yes | isSetter: | no | isWillSet: | no | isDidSet: | no | isRead: | no | isModify: | no | isUnsafeAddress: | no | isUnsafeMutableAddress: | no |
+| accessors.swift:5:9:5:42 | set | getModule: | file://:0:0:0:0 | accessors | getInterfaceType: | (inout Foo) -> (Int) -> () | getName: | (unnamed function decl) | isGetter: | no | isSetter: | yes | isWillSet: | no | isDidSet: | no | isRead: | no | isModify: | no | isUnsafeAddress: | no | isUnsafeMutableAddress: | no |
+| accessors.swift:7:9:7:9 | (unnamed function decl) | getModule: | file://:0:0:0:0 | accessors | getInterfaceType: | (inout Foo) -> () -> () | getName: | (unnamed function decl) | isGetter: | no | isSetter: | no | isWillSet: | no | isDidSet: | no | isRead: | no | isModify: | yes | isUnsafeAddress: | no | isUnsafeMutableAddress: | no |
+| accessors.swift:7:9:7:9 | get | getModule: | file://:0:0:0:0 | accessors | getInterfaceType: | (Foo) -> () -> Int | getName: | (unnamed function decl) | isGetter: | yes | isSetter: | no | isWillSet: | no | isDidSet: | no | isRead: | no | isModify: | no | isUnsafeAddress: | no | isUnsafeMutableAddress: | no |
+| accessors.swift:7:9:7:9 | set | getModule: | file://:0:0:0:0 | accessors | getInterfaceType: | (inout Foo) -> (Int) -> () | getName: | (unnamed function decl) | isGetter: | no | isSetter: | yes | isWillSet: | no | isDidSet: | no | isRead: | no | isModify: | no | isUnsafeAddress: | no | isUnsafeMutableAddress: | no |
+| accessors.swift:8:9:8:29 | willSet | getModule: | file://:0:0:0:0 | accessors | getInterfaceType: | (inout Foo) -> (Int) -> () | getName: | (unnamed function decl) | isGetter: | no | isSetter: | no | isWillSet: | yes | isDidSet: | no | isRead: | no | isModify: | no | isUnsafeAddress: | no | isUnsafeMutableAddress: | no |
+| accessors.swift:11:9:11:9 | (unnamed function decl) | getModule: | file://:0:0:0:0 | accessors | getInterfaceType: | (inout Foo) -> () -> () | getName: | (unnamed function decl) | isGetter: | no | isSetter: | no | isWillSet: | no | isDidSet: | no | isRead: | no | isModify: | yes | isUnsafeAddress: | no | isUnsafeMutableAddress: | no |
+| accessors.swift:11:9:11:9 | get | getModule: | file://:0:0:0:0 | accessors | getInterfaceType: | (Foo) -> () -> Int | getName: | (unnamed function decl) | isGetter: | yes | isSetter: | no | isWillSet: | no | isDidSet: | no | isRead: | no | isModify: | no | isUnsafeAddress: | no | isUnsafeMutableAddress: | no |
+| accessors.swift:11:9:11:9 | set | getModule: | file://:0:0:0:0 | accessors | getInterfaceType: | (inout Foo) -> (Int) -> () | getName: | (unnamed function decl) | isGetter: | no | isSetter: | yes | isWillSet: | no | isDidSet: | no | isRead: | no | isModify: | no | isUnsafeAddress: | no | isUnsafeMutableAddress: | no |
+| accessors.swift:12:9:12:19 | willSet | getModule: | file://:0:0:0:0 | accessors | getInterfaceType: | (inout Foo) -> (Int) -> () | getName: | (unnamed function decl) | isGetter: | no | isSetter: | no | isWillSet: | yes | isDidSet: | no | isRead: | no | isModify: | no | isUnsafeAddress: | no | isUnsafeMutableAddress: | no |
+| accessors.swift:15:9:15:9 | (unnamed function decl) | getModule: | file://:0:0:0:0 | accessors | getInterfaceType: | (inout Foo) -> () -> () | getName: | (unnamed function decl) | isGetter: | no | isSetter: | no | isWillSet: | no | isDidSet: | no | isRead: | no | isModify: | yes | isUnsafeAddress: | no | isUnsafeMutableAddress: | no |
+| accessors.swift:15:9:15:9 | get | getModule: | file://:0:0:0:0 | accessors | getInterfaceType: | (Foo) -> () -> Int | getName: | (unnamed function decl) | isGetter: | yes | isSetter: | no | isWillSet: | no | isDidSet: | no | isRead: | no | isModify: | no | isUnsafeAddress: | no | isUnsafeMutableAddress: | no |
+| accessors.swift:15:9:15:9 | set | getModule: | file://:0:0:0:0 | accessors | getInterfaceType: | (inout Foo) -> (Int) -> () | getName: | (unnamed function decl) | isGetter: | no | isSetter: | yes | isWillSet: | no | isDidSet: | no | isRead: | no | isModify: | no | isUnsafeAddress: | no | isUnsafeMutableAddress: | no |
+| accessors.swift:16:9:16:28 | didSet | getModule: | file://:0:0:0:0 | accessors | getInterfaceType: | (inout Foo) -> (Int) -> () | getName: | (unnamed function decl) | isGetter: | no | isSetter: | no | isWillSet: | no | isDidSet: | yes | isRead: | no | isModify: | no | isUnsafeAddress: | no | isUnsafeMutableAddress: | no |
+| accessors.swift:19:9:19:9 | (unnamed function decl) | getModule: | file://:0:0:0:0 | accessors | getInterfaceType: | (inout Foo) -> () -> () | getName: | (unnamed function decl) | isGetter: | no | isSetter: | no | isWillSet: | no | isDidSet: | no | isRead: | no | isModify: | yes | isUnsafeAddress: | no | isUnsafeMutableAddress: | no |
+| accessors.swift:19:9:19:9 | get | getModule: | file://:0:0:0:0 | accessors | getInterfaceType: | (Foo) -> () -> Int | getName: | (unnamed function decl) | isGetter: | yes | isSetter: | no | isWillSet: | no | isDidSet: | no | isRead: | no | isModify: | no | isUnsafeAddress: | no | isUnsafeMutableAddress: | no |
+| accessors.swift:19:9:19:9 | set | getModule: | file://:0:0:0:0 | accessors | getInterfaceType: | (inout Foo) -> (Int) -> () | getName: | (unnamed function decl) | isGetter: | no | isSetter: | yes | isWillSet: | no | isDidSet: | no | isRead: | no | isModify: | no | isUnsafeAddress: | no | isUnsafeMutableAddress: | no |
+| accessors.swift:20:9:20:18 | didSet | getModule: | file://:0:0:0:0 | accessors | getInterfaceType: | (inout Foo) -> () -> () | getName: | (unnamed function decl) | isGetter: | no | isSetter: | no | isWillSet: | no | isDidSet: | yes | isRead: | no | isModify: | no | isUnsafeAddress: | no | isUnsafeMutableAddress: | no |
+| accessors.swift:23:9:23:9 | (unnamed function decl) | getModule: | file://:0:0:0:0 | accessors | getInterfaceType: | (inout Foo) -> () -> () | getName: | (unnamed function decl) | isGetter: | no | isSetter: | no | isWillSet: | no | isDidSet: | no | isRead: | no | isModify: | yes | isUnsafeAddress: | no | isUnsafeMutableAddress: | no |
+| accessors.swift:23:9:23:9 | get | getModule: | file://:0:0:0:0 | accessors | getInterfaceType: | (Foo) -> () -> Int | getName: | (unnamed function decl) | isGetter: | yes | isSetter: | no | isWillSet: | no | isDidSet: | no | isRead: | no | isModify: | no | isUnsafeAddress: | no | isUnsafeMutableAddress: | no |
+| accessors.swift:23:9:23:9 | set | getModule: | file://:0:0:0:0 | accessors | getInterfaceType: | (inout Foo) -> (Int) -> () | getName: | (unnamed function decl) | isGetter: | no | isSetter: | yes | isWillSet: | no | isDidSet: | no | isRead: | no | isModify: | no | isUnsafeAddress: | no | isUnsafeMutableAddress: | no |
+| accessors.swift:24:9:24:19 | willSet | getModule: | file://:0:0:0:0 | accessors | getInterfaceType: | (inout Foo) -> (Int) -> () | getName: | (unnamed function decl) | isGetter: | no | isSetter: | no | isWillSet: | yes | isDidSet: | no | isRead: | no | isModify: | no | isUnsafeAddress: | no | isUnsafeMutableAddress: | no |
+| accessors.swift:26:9:26:18 | didSet | getModule: | file://:0:0:0:0 | accessors | getInterfaceType: | (inout Foo) -> () -> () | getName: | (unnamed function decl) | isGetter: | no | isSetter: | no | isWillSet: | no | isDidSet: | yes | isRead: | no | isModify: | no | isUnsafeAddress: | no | isUnsafeMutableAddress: | no |
diff --git a/swift/ql/test/extractor-tests/generated/decl/AccessorDecl/AccessorDecl.ql b/swift/ql/test/extractor-tests/generated/decl/AccessorDecl/AccessorDecl.ql
index 4488c81f510..5fdb7d55297 100644
--- a/swift/ql/test/extractor-tests/generated/decl/AccessorDecl/AccessorDecl.ql
+++ b/swift/ql/test/extractor-tests/generated/decl/AccessorDecl/AccessorDecl.ql
@@ -4,7 +4,8 @@ import TestUtils
 
 from
   AccessorDecl x, ModuleDecl getModule, Type getInterfaceType, string getName, string isGetter,
-  string isSetter, string isWillSet, string isDidSet
+  string isSetter, string isWillSet, string isDidSet, string isRead, string isModify,
+  string isUnsafeAddress, string isUnsafeMutableAddress
 where
   toBeTested(x) and
   not x.isUnknown() and
@@ -14,6 +15,14 @@ where
   (if x.isGetter() then isGetter = "yes" else isGetter = "no") and
   (if x.isSetter() then isSetter = "yes" else isSetter = "no") and
   (if x.isWillSet() then isWillSet = "yes" else isWillSet = "no") and
-  if x.isDidSet() then isDidSet = "yes" else isDidSet = "no"
+  (if x.isDidSet() then isDidSet = "yes" else isDidSet = "no") and
+  (if x.isRead() then isRead = "yes" else isRead = "no") and
+  (if x.isModify() then isModify = "yes" else isModify = "no") and
+  (if x.isUnsafeAddress() then isUnsafeAddress = "yes" else isUnsafeAddress = "no") and
+  if x.isUnsafeMutableAddress()
+  then isUnsafeMutableAddress = "yes"
+  else isUnsafeMutableAddress = "no"
 select x, "getModule:", getModule, "getInterfaceType:", getInterfaceType, "getName:", getName,
-  "isGetter:", isGetter, "isSetter:", isSetter, "isWillSet:", isWillSet, "isDidSet:", isDidSet
+  "isGetter:", isGetter, "isSetter:", isSetter, "isWillSet:", isWillSet, "isDidSet:", isDidSet,
+  "isRead:", isRead, "isModify:", isModify, "isUnsafeAddress:", isUnsafeAddress,
+  "isUnsafeMutableAddress:", isUnsafeMutableAddress
diff --git a/swift/schema.py b/swift/schema.py
index e9e8746d0c3..3162c1277e0 100644
--- a/swift/schema.py
+++ b/swift/schema.py
@@ -232,6 +232,10 @@ class AccessorDecl(FuncDecl):
     is_setter: predicate | doc('this accessor is a setter')
     is_will_set: predicate | doc('this accessor is a `willSet`, called before the property is set')
     is_did_set: predicate | doc('this accessor is a `didSet`, called after the property is set')
+    is_read: predicate | doc('this accessor is a `_read` coroutine, yielding a borrowed value of the property')
+    is_modify: predicate | doc('this accessor is a `_modify` coroutine, yielding an inout value of the property')
+    is_unsafe_address: predicate | doc('this accessor is an `unsafeAddress` immutable addressor')
+    is_unsafe_mutable_address: predicate | doc('this accessor is an `unsafeMutableAddress` mutable addressor')
 
 class AssociatedTypeDecl(AbstractTypeParamDecl):
     pass
@@ -322,6 +326,7 @@ class DeclRefExpr(Expr):
     has_direct_to_storage_semantics: predicate
     has_direct_to_implementation_semantics: predicate
     has_ordinary_semantics: predicate
+    has_distributed_thunk_semantics: predicate
 
 class DefaultArgumentExpr(Expr):
     param_decl: ParamDecl
@@ -589,6 +594,7 @@ class MemberRefExpr(LookupExpr):
     has_direct_to_storage_semantics: predicate
     has_direct_to_implementation_semantics: predicate
     has_ordinary_semantics: predicate
+    has_distributed_thunk_semantics: predicate
 
 class MetatypeConversionExpr(ImplicitConversionExpr):
     pass
@@ -642,6 +648,7 @@ class SubscriptExpr(LookupExpr):
     has_direct_to_storage_semantics: predicate
     has_direct_to_implementation_semantics: predicate
     has_ordinary_semantics: predicate
+    has_distributed_thunk_semantics: predicate
 
 class TryExpr(AnyTryExpr):
     pass

From 13bbee73d864c51037b58947c673eab152297220 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Nora=20Dimitrijevi=C4=87?= <d10c@users.noreply.github.com>
Date: Mon, 28 Nov 2022 19:05:13 +0100
Subject: [PATCH 0763/1420] Swift: Add .generated.list file from codegen

---
 swift/ql/.generated.list | 14 +++++++-------
 1 file changed, 7 insertions(+), 7 deletions(-)

diff --git a/swift/ql/.generated.list b/swift/ql/.generated.list
index a62640aace8..a40adbaa5fa 100644
--- a/swift/ql/.generated.list
+++ b/swift/ql/.generated.list
@@ -380,9 +380,9 @@ ql/lib/codeql/swift/generated/ErrorElement.qll 4b032abe8ffb71376a29c63e470a52943
 ql/lib/codeql/swift/generated/File.qll 61454459f5f1ae378bd4970ad1da4f39f3e696bac8a5eebdd162f131995c5316 3e6805f8858cd55dd0e0d0e5aeab923d6a55292dbf98b0029db1ae0208efe684
 ql/lib/codeql/swift/generated/Locatable.qll bdc98b9fb7788f44a4bf7e487ee5bd329473409950a8e9f116d61995615ad849 0b36b4fe45e2aa195e4bb70c50ea95f32f141b8e01e5f23466c6427dd9ab88fb
 ql/lib/codeql/swift/generated/Location.qll 851766e474cdfdfa67da42e0031fc42dd60196ff5edd39d82f08d3e32deb84c1 b29b2c37672f5acff15f1d3c5727d902f193e51122327b31bd27ec5f877bca3b
-ql/lib/codeql/swift/generated/ParentChild.qll 9d6fe5dd7ab99fa9afdc1bd846e21ce951613bbe6a89d4e34c29e36466a8293f e0e59a05018e4b59ebda3a9fdc3435b1c82207b915630d55edbe6d3f92488356
+ql/lib/codeql/swift/generated/ParentChild.qll d9c1edbbb28e685d31153c3a17419e80fd106cb580ef8440e25a8709e7f4c021 e0e59a05018e4b59ebda3a9fdc3435b1c82207b915630d55edbe6d3f92488356
 ql/lib/codeql/swift/generated/PureSynthConstructors.qll 1cd47d61fec37e019ce2e476603eb2273775bea81062d6bf3d6bbc49796f7b77 1cd47d61fec37e019ce2e476603eb2273775bea81062d6bf3d6bbc49796f7b77
-ql/lib/codeql/swift/generated/Raw.qll 34ce12e57d0cfffb8ca127e44041fece4ac6079cb2a80d14e0a05c0a8d344fdd dd7b6f54f2cc4ba1d8ed31168f97e3f6f8197ebb4d759e0bed0ed68d55a43c25
+ql/lib/codeql/swift/generated/Raw.qll 74159a7425c2da672d72e71655d27af3479b0acc23d871eafcee7d044d013550 0a6e8a85fbfd7262c983b6a6fedabbe9f11648edbcc52cba5828b97fe18fbd02
 ql/lib/codeql/swift/generated/Synth.qll 90df85be365c89c3c2e22041ee7dc9dd2ad9194b66f82e8f9d8fefb8afd900ec 1632984f7a55f6bc55adb9f647baf634b002c299655cbf641dfb110525291689
 ql/lib/codeql/swift/generated/SynthConstructors.qll 5c91f09bd82728651ed61f498704e0f62847788fa986dec5e674d81f294076c7 5c91f09bd82728651ed61f498704e0f62847788fa986dec5e674d81f294076c7
 ql/lib/codeql/swift/generated/UnknownFile.qll 0fcf9beb8de79440bcdfff4bb6ab3dd139bd273e6c32754e05e6a632651e85f6 0fcf9beb8de79440bcdfff4bb6ab3dd139bd273e6c32754e05e6a632651e85f6
@@ -391,7 +391,7 @@ ql/lib/codeql/swift/generated/UnspecifiedElement.qll dbc6ca4018012977b26ca184a88
 ql/lib/codeql/swift/generated/decl/AbstractFunctionDecl.qll 8255b24dddda83e8a7dee9d69a4cf9883b5a7ae43676d7242b5aab5169f68982 407c7d63681fb03ad6cb4ea3c2b04be7ccb5ddbe655a8aec4219eb3799bc36e8
 ql/lib/codeql/swift/generated/decl/AbstractStorageDecl.qll 66147ad36cefce974b4ae0f3e84569bd6742ea2f3e842c3c04e6e5cbd17e7928 ce7c2347e2dfe0b141db103ccb8e56a61d286476c201aebe6a275edd7fca2c0f
 ql/lib/codeql/swift/generated/decl/AbstractTypeParamDecl.qll 1e268b00d0f2dbbd85aa70ac206c5e4a4612f06ba0091e5253483635f486ccf9 5479e13e99f68f1f347283535f8098964f7fd4a34326ff36ad5711b2de1ab0d0
-ql/lib/codeql/swift/generated/decl/AccessorDecl.qll 97773751c95475efd78ee5cb0c71e3094b13bba121b564c99934659d1908dca2 25c97d7586379558ff8f7cea4d4fcf7633256029fe3e560964353c3b90497076
+ql/lib/codeql/swift/generated/decl/AccessorDecl.qll 443cb9888dbdbaee680bf24469ce097a8292806dc53f0b109d492db621fa00aa 0dbe38cbbd3f3cd880c1569d9d42165e7cf0358da0cc7cb63e89890310ad40a0
 ql/lib/codeql/swift/generated/decl/AssociatedTypeDecl.qll 4169d083104f9c089223ed3c5968f757b8cd6c726887bbb6fbaf21f5ed7ee144 4169d083104f9c089223ed3c5968f757b8cd6c726887bbb6fbaf21f5ed7ee144
 ql/lib/codeql/swift/generated/decl/ClassDecl.qll a60e8af2fdbcd20cfa2049660c8bcbbc00508fbd3dde72b4778317dfc23c5ae4 a60e8af2fdbcd20cfa2049660c8bcbbc00508fbd3dde72b4778317dfc23c5ae4
 ql/lib/codeql/swift/generated/decl/ConcreteFuncDecl.qll c7192e79ce67f77df36575cceb942f11b182c26c93899469654316de2d543cf9 c7192e79ce67f77df36575cceb942f11b182c26c93899469654316de2d543cf9
@@ -461,7 +461,7 @@ ql/lib/codeql/swift/generated/expr/ConditionalCheckedCastExpr.qll 92a999dd1dcc1f
 ql/lib/codeql/swift/generated/expr/ConstructorRefCallExpr.qll d0662d960b78c3cf7e81cf5b619aa9e2a906d35c094ae32702da96720354fe4f d0662d960b78c3cf7e81cf5b619aa9e2a906d35c094ae32702da96720354fe4f
 ql/lib/codeql/swift/generated/expr/CovariantFunctionConversionExpr.qll b749118590163eafbd538e71e4c903668451f52ae0dabbb13e504e7b1fefa9e1 d3af8e3beb6e395f537348d875978dfae119243dc3495c48a7c83b056aff2f6c
 ql/lib/codeql/swift/generated/expr/CovariantReturnConversionExpr.qll f1b409f0bf54b149deb1a40fbe337579a0f6eb2498ef176ef5f64bc53e94e2fe a32992597057657c7bbf13c809db67844b834668e8d2804adabcf6187d81c244
-ql/lib/codeql/swift/generated/expr/DeclRefExpr.qll c68a39ef4445d6c865976fe9f6013bbe77dca68a23d188f1fac3a8492eac70a6 92ae3f39d0e9e1d5017bd660c940225ad2cb07ef9076608dc1bca844adb5d6f0
+ql/lib/codeql/swift/generated/expr/DeclRefExpr.qll 441f0cba088ce3845a0d55500cccc94947da440d9f4ce879aed3e5bf5471d48e d54b4d0ca11d85a403fa470407e915472cd51116a633499bdfb293ac5f4a3b77
 ql/lib/codeql/swift/generated/expr/DefaultArgumentExpr.qll b38015d25ef840298a284b3f4e20cd444987474545544dc451dd5e12c3783f20 afc581e2127983faae125fd58b24d346bfee34d9a474e6d499e4606b672fe5f0
 ql/lib/codeql/swift/generated/expr/DerivedToBaseExpr.qll 5f371b5b82262efb416af1a54073079dcf857f7a744010294f79a631c76c0e68 5f371b5b82262efb416af1a54073079dcf857f7a744010294f79a631c76c0e68
 ql/lib/codeql/swift/generated/expr/DestructureTupleExpr.qll 1214d25d0fa6a7c2f183d9b12c97c679e9b92420ca1970d802ea1fe84b42ccc8 1214d25d0fa6a7c2f183d9b12c97c679e9b92420ca1970d802ea1fe84b42ccc8
@@ -509,7 +509,7 @@ ql/lib/codeql/swift/generated/expr/LoadExpr.qll 90b9ba4c96c26c476c3692b1200c3107
 ql/lib/codeql/swift/generated/expr/LookupExpr.qll 4b8c4f710e3cbdeb684a07c105f48915782e5de002da87f693ae1e07f3b67031 eceb13729282b77a44317c39f9206d9c1467bc93633b7bac5ada97ea13a773fe
 ql/lib/codeql/swift/generated/expr/MagicIdentifierLiteralExpr.qll 16f0050128caf916506b1f7372dc225a12809a60b5b00f108705fcdfce3344a8 c064778526a5854bdf8cdbf4b64ad680b60df9fe71ec7a2d9aa6c36a7c4e5b31
 ql/lib/codeql/swift/generated/expr/MakeTemporarilyEscapableExpr.qll d23bd9ea3b13869d7a7f7eef3c3d1c3c156d384b72c65867a0b955bc517da775 f2fd167ac40f01c092b2b443af1557c92dac32074506f2195d32f60b0e0547d8
-ql/lib/codeql/swift/generated/expr/MemberRefExpr.qll 07000a05bec2e6d18e89ec4bbdba41a149691c50527da9073630d4193c0248d8 1bd43b79231aa31e0d60f9f7104f2b889fc3d9f042ecba8fe09d2cd289f4381d
+ql/lib/codeql/swift/generated/expr/MemberRefExpr.qll 0ece9ffbfd4b15722aa3870014a46afdbf1b1382972fb366d741fafb5473e3de fcb57bd65a94ed4214730339c4ed2b167ec22a3dc9017399596f9b26bdeb95cd
 ql/lib/codeql/swift/generated/expr/MetatypeConversionExpr.qll 714ecbc8ac51fdaaa4075388f20fe5063ead9264ca20c4ab8864c48364ef4b42 714ecbc8ac51fdaaa4075388f20fe5063ead9264ca20c4ab8864c48364ef4b42
 ql/lib/codeql/swift/generated/expr/MethodRefExpr.qll 014f976ce55cfc07a18a86c379fcf12c68f3c300c2d5e730731e61bfa50c6419 014f976ce55cfc07a18a86c379fcf12c68f3c300c2d5e730731e61bfa50c6419
 ql/lib/codeql/swift/generated/expr/NilLiteralExpr.qll 6f44106bc5396c87681676fc3e1239fe052d1a481d0a854afa8b66369668b058 6f44106bc5396c87681676fc3e1239fe052d1a481d0a854afa8b66369668b058
@@ -535,7 +535,7 @@ ql/lib/codeql/swift/generated/expr/SelfApplyExpr.qll c676c551bcb528512dad6422cce
 ql/lib/codeql/swift/generated/expr/SequenceExpr.qll 044581c933d44ecf153a22724985d0c9d3b1bb0ca2614ba60db962ee126a293a 3ae93804ece0fa386099be2344dc7cb8b5d8091ce53980a265973c0faacad1c7
 ql/lib/codeql/swift/generated/expr/StringLiteralExpr.qll f420c5cd51a223b6f98177147967266e0094a5718ba2d57ae2d3acbb64bbb4b6 30d6dab2a93fd95e652a700902c4d106fecfce13880c2ece565de29f2504bedf
 ql/lib/codeql/swift/generated/expr/StringToPointerExpr.qll ef69b570aa90697d438f5787a86797955b4b2f985960b5859a7bd13b9ecb9cd3 ef69b570aa90697d438f5787a86797955b4b2f985960b5859a7bd13b9ecb9cd3
-ql/lib/codeql/swift/generated/expr/SubscriptExpr.qll f207679b6a8387fe71eb7ce13061bc4ca8af62ccec92d062b8d67fb2ea0f0d10 ba7ed5c7105f2297ff15e0b07dce96b731da1249c9319bddb723d6898254c5f7
+ql/lib/codeql/swift/generated/expr/SubscriptExpr.qll 68523f3704985400e879903c365ece3910742a7d97368f6b3466efb25a23bd0f 3b5ea472a03958b6705d00041b4b354a6e691418c9d526bc70553b9b82698cda
 ql/lib/codeql/swift/generated/expr/SuperRefExpr.qll 3cc44a550ecab7d11b591082a3ad1ac88207d55cd694942ce44a90c576517482 d1712eed916f83d3e1b21c6af944ef56df2b82d163b9b3cb8dc793d48305fa6c
 ql/lib/codeql/swift/generated/expr/TapExpr.qll 0a2cbaaec596fa5aabb7acc3cab23bbf1bb1173ea4f240634698d5a89686d014 2267243198f67bb879d639f566e9729cfa9e3a3e205ffe6ff3782b7017a8bf7f
 ql/lib/codeql/swift/generated/expr/TryExpr.qll e6619905d9b2e06708c3bf41dace8c4e6332903f7111b3a59609d2bb7a6483ee e6619905d9b2e06708c3bf41dace8c4e6332903f7111b3a59609d2bb7a6483ee
@@ -656,7 +656,7 @@ ql/lib/codeql/swift/generated/type/WeakStorageType.qll dda4397a49f537ec44117a86d
 ql/test/extractor-tests/generated/Comment/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
 ql/test/extractor-tests/generated/Diagnostics/Diagnostics.ql 6a4a9480cc929381e0337b181e5ac519a7abc6d597ebe24fb6701acf79ced86f 199c5bf8bd38e161d989e0e4db1ea1d3ddcb4d7cf571afd9112ce3ed8d9b8d2a
 ql/test/extractor-tests/generated/File/File.ql ab0968ae31b749da2b66462bd04e4dfb30604dba405a84594b575abfc4fa4c35 bcc0ff648b28c5ecd567e196e700272883756bbcc65296bbb880a979e3162628
-ql/test/extractor-tests/generated/decl/AccessorDecl/AccessorDecl.ql f378065da46252a3fb7f960731645ad0d69639907bcbe4a5922c416a0c8efcf9 e80e09a2bb54c397f101aaa4c820c94a6d7df819dd746437e74325a8243405e0
+ql/test/extractor-tests/generated/decl/AccessorDecl/AccessorDecl.ql 45a730bb247735161aa2b04f35d4e815c22a64cffd0ff8f7b1a03ab3a50dafb1 edb1031d59cbde8aa4961a985ce3ba2281f20463f805e154728487d76f826ced
 ql/test/extractor-tests/generated/decl/AccessorDecl/AccessorDecl_getBody.ql 1d42eb1a5b832cfaf1949b61a01a6a11448a6d4369a44f2511bb31d1d7fc10a8 b326a6743121353f8a66410d3d9151ca969939abcbbe5c411872ca290da45123
 ql/test/extractor-tests/generated/decl/AccessorDecl/AccessorDecl_getGenericTypeParam.ql 8648679e9403477c7f97b6df450a0fa623dc9aff0777021ee33f9cc96eef2611 59c384c35804bf205c3c63e8b956e6bc89d3ded7952911c40e7bf156acb56bf8
 ql/test/extractor-tests/generated/decl/AccessorDecl/AccessorDecl_getParam.ql 7c61c15d75f681c5f5817bdc1e0c1e2594afdc43a5a8889bd385b6cd007d6509 7f6111069c3f289fb3bd21933893757a0adbf8be8f21bf5f8960b6fb26840219

From 93cce0f4c28566b46cf005d5890c86d17606ff4b Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Nora=20Dimitrijevi=C4=87?= <d10c@users.noreply.github.com>
Date: Mon, 28 Nov 2022 19:25:17 +0100
Subject: [PATCH 0764/1420] Swift: upgrade script

---
 .../old.dbscheme                              | 2513 +++++++++++++++++
 .../swift.dbscheme                            | 2478 ++++++++++++++++
 .../upgrade.properties                        |    9 +
 .../old.dbscheme                              | 2478 ++++++++++++++++
 .../swift.dbscheme                            | 2513 +++++++++++++++++
 .../upgrade.properties                        |    2 +
 6 files changed, 9993 insertions(+)
 create mode 100644 swift/downgrades/1a6e9325bd60462e669e524438174deef4476df0/old.dbscheme
 create mode 100644 swift/downgrades/1a6e9325bd60462e669e524438174deef4476df0/swift.dbscheme
 create mode 100644 swift/downgrades/1a6e9325bd60462e669e524438174deef4476df0/upgrade.properties
 create mode 100644 swift/ql/lib/upgrades/abbb8c9e8408841c2bc12e3deb2305f062f5399e/old.dbscheme
 create mode 100644 swift/ql/lib/upgrades/abbb8c9e8408841c2bc12e3deb2305f062f5399e/swift.dbscheme
 create mode 100644 swift/ql/lib/upgrades/abbb8c9e8408841c2bc12e3deb2305f062f5399e/upgrade.properties

diff --git a/swift/downgrades/1a6e9325bd60462e669e524438174deef4476df0/old.dbscheme b/swift/downgrades/1a6e9325bd60462e669e524438174deef4476df0/old.dbscheme
new file mode 100644
index 00000000000..1a6e9325bd6
--- /dev/null
+++ b/swift/downgrades/1a6e9325bd60462e669e524438174deef4476df0/old.dbscheme
@@ -0,0 +1,2513 @@
+// generated by codegen/codegen.py
+
+// from prefix.dbscheme
+/**
+ * The source location of the snapshot.
+ */
+sourceLocationPrefix(
+  string prefix: string ref
+);
+
+
+// from schema.py
+
+@element =
+  @callable
+| @file
+| @generic_context
+| @iterable_decl_context
+| @locatable
+| @location
+| @type
+;
+
+#keyset[id]
+element_is_unknown(
+  int id: @element ref
+);
+
+@callable =
+  @abstract_closure_expr
+| @abstract_function_decl
+;
+
+#keyset[id]
+callable_self_params(
+  int id: @callable ref,
+  int self_param: @param_decl_or_none ref
+);
+
+#keyset[id, index]
+callable_params(
+  int id: @callable ref,
+  int index: int ref,
+  int param: @param_decl_or_none ref
+);
+
+#keyset[id]
+callable_bodies(
+  int id: @callable ref,
+  int body: @brace_stmt_or_none ref
+);
+
+@file =
+  @db_file
+;
+
+#keyset[id]
+files(
+  int id: @file ref,
+  string name: string ref
+);
+
+@locatable =
+  @argument
+| @ast_node
+| @comment
+| @diagnostics
+| @error_element
+;
+
+#keyset[id]
+locatable_locations(
+  int id: @locatable ref,
+  int location: @location_or_none ref
+);
+
+@location =
+  @db_location
+;
+
+#keyset[id]
+locations(
+  int id: @location ref,
+  int file: @file_or_none ref,
+  int start_line: int ref,
+  int start_column: int ref,
+  int end_line: int ref,
+  int end_column: int ref
+);
+
+@ast_node =
+  @case_label_item
+| @condition_element
+| @decl
+| @expr
+| @pattern
+| @stmt
+| @stmt_condition
+| @type_repr
+;
+
+comments(
+  unique int id: @comment,
+  string text: string ref
+);
+
+db_files(
+  unique int id: @db_file
+);
+
+db_locations(
+  unique int id: @db_location
+);
+
+diagnostics(
+  unique int id: @diagnostics,
+  string text: string ref,
+  int kind: int ref
+);
+
+@error_element =
+  @error_expr
+| @error_type
+| @overloaded_decl_ref_expr
+| @unresolved_decl_ref_expr
+| @unresolved_dot_expr
+| @unresolved_member_chain_result_expr
+| @unresolved_member_expr
+| @unresolved_pattern_expr
+| @unresolved_specialize_expr
+| @unresolved_type
+| @unresolved_type_conversion_expr
+| @unspecified_element
+;
+
+unspecified_elements(
+  unique int id: @unspecified_element,
+  string property: string ref,
+  string error: string ref
+);
+
+#keyset[id]
+unspecified_element_parents(
+  int id: @unspecified_element ref,
+  int parent: @element ref
+);
+
+#keyset[id]
+unspecified_element_indices(
+  int id: @unspecified_element ref,
+  int index: int ref
+);
+
+@decl =
+  @enum_case_decl
+| @extension_decl
+| @if_config_decl
+| @import_decl
+| @missing_member_decl
+| @operator_decl
+| @pattern_binding_decl
+| @pound_diagnostic_decl
+| @precedence_group_decl
+| @top_level_code_decl
+| @value_decl
+;
+
+#keyset[id]
+decls(  //dir=decl
+  int id: @decl ref,
+  int module: @module_decl_or_none ref
+);
+
+@generic_context =
+  @abstract_function_decl
+| @extension_decl
+| @generic_type_decl
+| @subscript_decl
+;
+
+#keyset[id, index]
+generic_context_generic_type_params(  //dir=decl
+  int id: @generic_context ref,
+  int index: int ref,
+  int generic_type_param: @generic_type_param_decl_or_none ref
+);
+
+@iterable_decl_context =
+  @extension_decl
+| @nominal_type_decl
+;
+
+#keyset[id, index]
+iterable_decl_context_members(  //dir=decl
+  int id: @iterable_decl_context ref,
+  int index: int ref,
+  int member: @decl_or_none ref
+);
+
+enum_case_decls(  //dir=decl
+  unique int id: @enum_case_decl
+);
+
+#keyset[id, index]
+enum_case_decl_elements(  //dir=decl
+  int id: @enum_case_decl ref,
+  int index: int ref,
+  int element: @enum_element_decl_or_none ref
+);
+
+extension_decls(  //dir=decl
+  unique int id: @extension_decl,
+  int extended_type_decl: @nominal_type_decl_or_none ref
+);
+
+if_config_decls(  //dir=decl
+  unique int id: @if_config_decl
+);
+
+#keyset[id, index]
+if_config_decl_active_elements(  //dir=decl
+  int id: @if_config_decl ref,
+  int index: int ref,
+  int active_element: @ast_node_or_none ref
+);
+
+import_decls(  //dir=decl
+  unique int id: @import_decl
+);
+
+#keyset[id]
+import_decl_is_exported(  //dir=decl
+  int id: @import_decl ref
+);
+
+#keyset[id]
+import_decl_imported_modules(  //dir=decl
+  int id: @import_decl ref,
+  int imported_module: @module_decl_or_none ref
+);
+
+#keyset[id, index]
+import_decl_declarations(  //dir=decl
+  int id: @import_decl ref,
+  int index: int ref,
+  int declaration: @value_decl_or_none ref
+);
+
+missing_member_decls(  //dir=decl
+  unique int id: @missing_member_decl,
+  string name: string ref
+);
+
+@operator_decl =
+  @infix_operator_decl
+| @postfix_operator_decl
+| @prefix_operator_decl
+;
+
+#keyset[id]
+operator_decls(  //dir=decl
+  int id: @operator_decl ref,
+  string name: string ref
+);
+
+pattern_binding_decls(  //dir=decl
+  unique int id: @pattern_binding_decl
+);
+
+#keyset[id, index]
+pattern_binding_decl_inits(  //dir=decl
+  int id: @pattern_binding_decl ref,
+  int index: int ref,
+  int init: @expr_or_none ref
+);
+
+#keyset[id, index]
+pattern_binding_decl_patterns(  //dir=decl
+  int id: @pattern_binding_decl ref,
+  int index: int ref,
+  int pattern: @pattern_or_none ref
+);
+
+pound_diagnostic_decls(  //dir=decl
+  unique int id: @pound_diagnostic_decl,
+  int kind: int ref,
+  int message: @string_literal_expr_or_none ref
+);
+
+precedence_group_decls(  //dir=decl
+  unique int id: @precedence_group_decl
+);
+
+top_level_code_decls(  //dir=decl
+  unique int id: @top_level_code_decl,
+  int body: @brace_stmt_or_none ref
+);
+
+@value_decl =
+  @abstract_function_decl
+| @abstract_storage_decl
+| @enum_element_decl
+| @type_decl
+;
+
+#keyset[id]
+value_decls(  //dir=decl
+  int id: @value_decl ref,
+  int interface_type: @type_or_none ref
+);
+
+@abstract_function_decl =
+  @constructor_decl
+| @destructor_decl
+| @func_decl
+;
+
+#keyset[id]
+abstract_function_decls(  //dir=decl
+  int id: @abstract_function_decl ref,
+  string name: string ref
+);
+
+@abstract_storage_decl =
+  @subscript_decl
+| @var_decl
+;
+
+#keyset[id, index]
+abstract_storage_decl_accessor_decls(  //dir=decl
+  int id: @abstract_storage_decl ref,
+  int index: int ref,
+  int accessor_decl: @accessor_decl_or_none ref
+);
+
+enum_element_decls(  //dir=decl
+  unique int id: @enum_element_decl,
+  string name: string ref
+);
+
+#keyset[id, index]
+enum_element_decl_params(  //dir=decl
+  int id: @enum_element_decl ref,
+  int index: int ref,
+  int param: @param_decl_or_none ref
+);
+
+infix_operator_decls(  //dir=decl
+  unique int id: @infix_operator_decl
+);
+
+#keyset[id]
+infix_operator_decl_precedence_groups(  //dir=decl
+  int id: @infix_operator_decl ref,
+  int precedence_group: @precedence_group_decl_or_none ref
+);
+
+postfix_operator_decls(  //dir=decl
+  unique int id: @postfix_operator_decl
+);
+
+prefix_operator_decls(  //dir=decl
+  unique int id: @prefix_operator_decl
+);
+
+@type_decl =
+  @abstract_type_param_decl
+| @generic_type_decl
+| @module_decl
+;
+
+#keyset[id]
+type_decls(  //dir=decl
+  int id: @type_decl ref,
+  string name: string ref
+);
+
+#keyset[id, index]
+type_decl_base_types(  //dir=decl
+  int id: @type_decl ref,
+  int index: int ref,
+  int base_type: @type_or_none ref
+);
+
+@abstract_type_param_decl =
+  @associated_type_decl
+| @generic_type_param_decl
+;
+
+constructor_decls(  //dir=decl
+  unique int id: @constructor_decl
+);
+
+destructor_decls(  //dir=decl
+  unique int id: @destructor_decl
+);
+
+@func_decl =
+  @accessor_decl
+| @concrete_func_decl
+;
+
+@generic_type_decl =
+  @nominal_type_decl
+| @opaque_type_decl
+| @type_alias_decl
+;
+
+module_decls(  //dir=decl
+  unique int id: @module_decl
+);
+
+#keyset[id]
+module_decl_is_builtin_module(  //dir=decl
+  int id: @module_decl ref
+);
+
+#keyset[id]
+module_decl_is_system_module(  //dir=decl
+  int id: @module_decl ref
+);
+
+#keyset[id, index]
+module_decl_imported_modules(  //dir=decl
+  int id: @module_decl ref,
+  int index: int ref,
+  int imported_module: @module_decl_or_none ref
+);
+
+#keyset[id, index]
+module_decl_exported_modules(  //dir=decl
+  int id: @module_decl ref,
+  int index: int ref,
+  int exported_module: @module_decl_or_none ref
+);
+
+subscript_decls(  //dir=decl
+  unique int id: @subscript_decl,
+  int element_type: @type_or_none ref
+);
+
+#keyset[id, index]
+subscript_decl_params(  //dir=decl
+  int id: @subscript_decl ref,
+  int index: int ref,
+  int param: @param_decl_or_none ref
+);
+
+@var_decl =
+  @concrete_var_decl
+| @param_decl
+;
+
+#keyset[id]
+var_decls(  //dir=decl
+  int id: @var_decl ref,
+  string name: string ref,
+  int type_: @type_or_none ref
+);
+
+#keyset[id]
+var_decl_attached_property_wrapper_types(  //dir=decl
+  int id: @var_decl ref,
+  int attached_property_wrapper_type: @type_or_none ref
+);
+
+#keyset[id]
+var_decl_parent_patterns(  //dir=decl
+  int id: @var_decl ref,
+  int parent_pattern: @pattern_or_none ref
+);
+
+#keyset[id]
+var_decl_parent_initializers(  //dir=decl
+  int id: @var_decl ref,
+  int parent_initializer: @expr_or_none ref
+);
+
+#keyset[id]
+var_decl_property_wrapper_backing_var_bindings(  //dir=decl
+  int id: @var_decl ref,
+  int property_wrapper_backing_var_binding: @pattern_binding_decl_or_none ref
+);
+
+#keyset[id]
+var_decl_property_wrapper_backing_vars(  //dir=decl
+  int id: @var_decl ref,
+  int property_wrapper_backing_var: @var_decl_or_none ref
+);
+
+#keyset[id]
+var_decl_property_wrapper_projection_var_bindings(  //dir=decl
+  int id: @var_decl ref,
+  int property_wrapper_projection_var_binding: @pattern_binding_decl_or_none ref
+);
+
+#keyset[id]
+var_decl_property_wrapper_projection_vars(  //dir=decl
+  int id: @var_decl ref,
+  int property_wrapper_projection_var: @var_decl_or_none ref
+);
+
+accessor_decls(  //dir=decl
+  unique int id: @accessor_decl
+);
+
+#keyset[id]
+accessor_decl_is_getter(  //dir=decl
+  int id: @accessor_decl ref
+);
+
+#keyset[id]
+accessor_decl_is_setter(  //dir=decl
+  int id: @accessor_decl ref
+);
+
+#keyset[id]
+accessor_decl_is_will_set(  //dir=decl
+  int id: @accessor_decl ref
+);
+
+#keyset[id]
+accessor_decl_is_did_set(  //dir=decl
+  int id: @accessor_decl ref
+);
+
+#keyset[id]
+accessor_decl_is_read(  //dir=decl
+  int id: @accessor_decl ref
+);
+
+#keyset[id]
+accessor_decl_is_modify(  //dir=decl
+  int id: @accessor_decl ref
+);
+
+#keyset[id]
+accessor_decl_is_unsafe_address(  //dir=decl
+  int id: @accessor_decl ref
+);
+
+#keyset[id]
+accessor_decl_is_unsafe_mutable_address(  //dir=decl
+  int id: @accessor_decl ref
+);
+
+associated_type_decls(  //dir=decl
+  unique int id: @associated_type_decl
+);
+
+concrete_func_decls(  //dir=decl
+  unique int id: @concrete_func_decl
+);
+
+concrete_var_decls(  //dir=decl
+  unique int id: @concrete_var_decl,
+  int introducer_int: int ref
+);
+
+generic_type_param_decls(  //dir=decl
+  unique int id: @generic_type_param_decl
+);
+
+@nominal_type_decl =
+  @class_decl
+| @enum_decl
+| @protocol_decl
+| @struct_decl
+;
+
+#keyset[id]
+nominal_type_decls(  //dir=decl
+  int id: @nominal_type_decl ref,
+  int type_: @type_or_none ref
+);
+
+opaque_type_decls(  //dir=decl
+  unique int id: @opaque_type_decl,
+  int naming_declaration: @value_decl_or_none ref
+);
+
+#keyset[id, index]
+opaque_type_decl_opaque_generic_params(  //dir=decl
+  int id: @opaque_type_decl ref,
+  int index: int ref,
+  int opaque_generic_param: @generic_type_param_type_or_none ref
+);
+
+param_decls(  //dir=decl
+  unique int id: @param_decl
+);
+
+#keyset[id]
+param_decl_is_inout(  //dir=decl
+  int id: @param_decl ref
+);
+
+#keyset[id]
+param_decl_property_wrapper_local_wrapped_var_bindings(  //dir=decl
+  int id: @param_decl ref,
+  int property_wrapper_local_wrapped_var_binding: @pattern_binding_decl_or_none ref
+);
+
+#keyset[id]
+param_decl_property_wrapper_local_wrapped_vars(  //dir=decl
+  int id: @param_decl ref,
+  int property_wrapper_local_wrapped_var: @var_decl_or_none ref
+);
+
+type_alias_decls(  //dir=decl
+  unique int id: @type_alias_decl
+);
+
+class_decls(  //dir=decl
+  unique int id: @class_decl
+);
+
+enum_decls(  //dir=decl
+  unique int id: @enum_decl
+);
+
+protocol_decls(  //dir=decl
+  unique int id: @protocol_decl
+);
+
+struct_decls(  //dir=decl
+  unique int id: @struct_decl
+);
+
+arguments(  //dir=expr
+  unique int id: @argument,
+  string label: string ref,
+  int expr: @expr_or_none ref
+);
+
+@expr =
+  @abstract_closure_expr
+| @any_try_expr
+| @applied_property_wrapper_expr
+| @apply_expr
+| @assign_expr
+| @bind_optional_expr
+| @capture_list_expr
+| @collection_expr
+| @decl_ref_expr
+| @default_argument_expr
+| @discard_assignment_expr
+| @dot_syntax_base_ignored_expr
+| @dynamic_type_expr
+| @enum_is_case_expr
+| @error_expr
+| @explicit_cast_expr
+| @force_value_expr
+| @identity_expr
+| @if_expr
+| @implicit_conversion_expr
+| @in_out_expr
+| @key_path_application_expr
+| @key_path_dot_expr
+| @key_path_expr
+| @lazy_initializer_expr
+| @literal_expr
+| @lookup_expr
+| @make_temporarily_escapable_expr
+| @obj_c_selector_expr
+| @one_way_expr
+| @opaque_value_expr
+| @open_existential_expr
+| @optional_evaluation_expr
+| @other_constructor_decl_ref_expr
+| @overloaded_decl_ref_expr
+| @property_wrapper_value_placeholder_expr
+| @rebind_self_in_constructor_expr
+| @sequence_expr
+| @super_ref_expr
+| @tap_expr
+| @tuple_element_expr
+| @tuple_expr
+| @type_expr
+| @unresolved_decl_ref_expr
+| @unresolved_dot_expr
+| @unresolved_member_expr
+| @unresolved_pattern_expr
+| @unresolved_specialize_expr
+| @vararg_expansion_expr
+;
+
+#keyset[id]
+expr_types(  //dir=expr
+  int id: @expr ref,
+  int type_: @type_or_none ref
+);
+
+@abstract_closure_expr =
+  @auto_closure_expr
+| @closure_expr
+;
+
+@any_try_expr =
+  @force_try_expr
+| @optional_try_expr
+| @try_expr
+;
+
+#keyset[id]
+any_try_exprs(  //dir=expr
+  int id: @any_try_expr ref,
+  int sub_expr: @expr_or_none ref
+);
+
+applied_property_wrapper_exprs(  //dir=expr
+  unique int id: @applied_property_wrapper_expr,
+  int kind: int ref,
+  int value: @expr_or_none ref,
+  int param: @param_decl_or_none ref
+);
+
+@apply_expr =
+  @binary_expr
+| @call_expr
+| @postfix_unary_expr
+| @prefix_unary_expr
+| @self_apply_expr
+;
+
+#keyset[id]
+apply_exprs(  //dir=expr
+  int id: @apply_expr ref,
+  int function: @expr_or_none ref
+);
+
+#keyset[id, index]
+apply_expr_arguments(  //dir=expr
+  int id: @apply_expr ref,
+  int index: int ref,
+  int argument: @argument_or_none ref
+);
+
+assign_exprs(  //dir=expr
+  unique int id: @assign_expr,
+  int dest: @expr_or_none ref,
+  int source: @expr_or_none ref
+);
+
+bind_optional_exprs(  //dir=expr
+  unique int id: @bind_optional_expr,
+  int sub_expr: @expr_or_none ref
+);
+
+capture_list_exprs(  //dir=expr
+  unique int id: @capture_list_expr,
+  int closure_body: @closure_expr_or_none ref
+);
+
+#keyset[id, index]
+capture_list_expr_binding_decls(  //dir=expr
+  int id: @capture_list_expr ref,
+  int index: int ref,
+  int binding_decl: @pattern_binding_decl_or_none ref
+);
+
+@collection_expr =
+  @array_expr
+| @dictionary_expr
+;
+
+decl_ref_exprs(  //dir=expr
+  unique int id: @decl_ref_expr,
+  int decl: @decl_or_none ref
+);
+
+#keyset[id, index]
+decl_ref_expr_replacement_types(  //dir=expr
+  int id: @decl_ref_expr ref,
+  int index: int ref,
+  int replacement_type: @type_or_none ref
+);
+
+#keyset[id]
+decl_ref_expr_has_direct_to_storage_semantics(  //dir=expr
+  int id: @decl_ref_expr ref
+);
+
+#keyset[id]
+decl_ref_expr_has_direct_to_implementation_semantics(  //dir=expr
+  int id: @decl_ref_expr ref
+);
+
+#keyset[id]
+decl_ref_expr_has_ordinary_semantics(  //dir=expr
+  int id: @decl_ref_expr ref
+);
+
+#keyset[id]
+decl_ref_expr_has_distributed_thunk_semantics(  //dir=expr
+  int id: @decl_ref_expr ref
+);
+
+default_argument_exprs(  //dir=expr
+  unique int id: @default_argument_expr,
+  int param_decl: @param_decl_or_none ref,
+  int param_index: int ref
+);
+
+#keyset[id]
+default_argument_expr_caller_side_defaults(  //dir=expr
+  int id: @default_argument_expr ref,
+  int caller_side_default: @expr_or_none ref
+);
+
+discard_assignment_exprs(  //dir=expr
+  unique int id: @discard_assignment_expr
+);
+
+dot_syntax_base_ignored_exprs(  //dir=expr
+  unique int id: @dot_syntax_base_ignored_expr,
+  int qualifier: @expr_or_none ref,
+  int sub_expr: @expr_or_none ref
+);
+
+dynamic_type_exprs(  //dir=expr
+  unique int id: @dynamic_type_expr,
+  int base: @expr_or_none ref
+);
+
+enum_is_case_exprs(  //dir=expr
+  unique int id: @enum_is_case_expr,
+  int sub_expr: @expr_or_none ref,
+  int element: @enum_element_decl_or_none ref
+);
+
+error_exprs(  //dir=expr
+  unique int id: @error_expr
+);
+
+@explicit_cast_expr =
+  @checked_cast_expr
+| @coerce_expr
+;
+
+#keyset[id]
+explicit_cast_exprs(  //dir=expr
+  int id: @explicit_cast_expr ref,
+  int sub_expr: @expr_or_none ref
+);
+
+force_value_exprs(  //dir=expr
+  unique int id: @force_value_expr,
+  int sub_expr: @expr_or_none ref
+);
+
+@identity_expr =
+  @await_expr
+| @dot_self_expr
+| @paren_expr
+| @unresolved_member_chain_result_expr
+;
+
+#keyset[id]
+identity_exprs(  //dir=expr
+  int id: @identity_expr ref,
+  int sub_expr: @expr_or_none ref
+);
+
+if_exprs(  //dir=expr
+  unique int id: @if_expr,
+  int condition: @expr_or_none ref,
+  int then_expr: @expr_or_none ref,
+  int else_expr: @expr_or_none ref
+);
+
+@implicit_conversion_expr =
+  @any_hashable_erasure_expr
+| @archetype_to_super_expr
+| @array_to_pointer_expr
+| @bridge_from_obj_c_expr
+| @bridge_to_obj_c_expr
+| @class_metatype_to_object_expr
+| @collection_upcast_conversion_expr
+| @conditional_bridge_from_obj_c_expr
+| @covariant_function_conversion_expr
+| @covariant_return_conversion_expr
+| @derived_to_base_expr
+| @destructure_tuple_expr
+| @differentiable_function_expr
+| @differentiable_function_extract_original_expr
+| @erasure_expr
+| @existential_metatype_to_object_expr
+| @foreign_object_conversion_expr
+| @function_conversion_expr
+| @in_out_to_pointer_expr
+| @inject_into_optional_expr
+| @linear_function_expr
+| @linear_function_extract_original_expr
+| @linear_to_differentiable_function_expr
+| @load_expr
+| @metatype_conversion_expr
+| @pointer_to_pointer_expr
+| @protocol_metatype_to_object_expr
+| @string_to_pointer_expr
+| @underlying_to_opaque_expr
+| @unevaluated_instance_expr
+| @unresolved_type_conversion_expr
+;
+
+#keyset[id]
+implicit_conversion_exprs(  //dir=expr
+  int id: @implicit_conversion_expr ref,
+  int sub_expr: @expr_or_none ref
+);
+
+in_out_exprs(  //dir=expr
+  unique int id: @in_out_expr,
+  int sub_expr: @expr_or_none ref
+);
+
+key_path_application_exprs(  //dir=expr
+  unique int id: @key_path_application_expr,
+  int base: @expr_or_none ref,
+  int key_path: @expr_or_none ref
+);
+
+key_path_dot_exprs(  //dir=expr
+  unique int id: @key_path_dot_expr
+);
+
+key_path_exprs(  //dir=expr
+  unique int id: @key_path_expr
+);
+
+#keyset[id]
+key_path_expr_roots(  //dir=expr
+  int id: @key_path_expr ref,
+  int root: @type_repr_or_none ref
+);
+
+#keyset[id]
+key_path_expr_parsed_paths(  //dir=expr
+  int id: @key_path_expr ref,
+  int parsed_path: @expr_or_none ref
+);
+
+lazy_initializer_exprs(  //dir=expr
+  unique int id: @lazy_initializer_expr,
+  int sub_expr: @expr_or_none ref
+);
+
+@literal_expr =
+  @builtin_literal_expr
+| @interpolated_string_literal_expr
+| @nil_literal_expr
+| @object_literal_expr
+| @regex_literal_expr
+;
+
+@lookup_expr =
+  @dynamic_lookup_expr
+| @member_ref_expr
+| @subscript_expr
+;
+
+#keyset[id]
+lookup_exprs(  //dir=expr
+  int id: @lookup_expr ref,
+  int base: @expr_or_none ref
+);
+
+#keyset[id]
+lookup_expr_members(  //dir=expr
+  int id: @lookup_expr ref,
+  int member: @decl_or_none ref
+);
+
+make_temporarily_escapable_exprs(  //dir=expr
+  unique int id: @make_temporarily_escapable_expr,
+  int escaping_closure: @opaque_value_expr_or_none ref,
+  int nonescaping_closure: @expr_or_none ref,
+  int sub_expr: @expr_or_none ref
+);
+
+obj_c_selector_exprs(  //dir=expr
+  unique int id: @obj_c_selector_expr,
+  int sub_expr: @expr_or_none ref,
+  int method: @abstract_function_decl_or_none ref
+);
+
+one_way_exprs(  //dir=expr
+  unique int id: @one_way_expr,
+  int sub_expr: @expr_or_none ref
+);
+
+opaque_value_exprs(  //dir=expr
+  unique int id: @opaque_value_expr
+);
+
+open_existential_exprs(  //dir=expr
+  unique int id: @open_existential_expr,
+  int sub_expr: @expr_or_none ref,
+  int existential: @expr_or_none ref,
+  int opaque_expr: @opaque_value_expr_or_none ref
+);
+
+optional_evaluation_exprs(  //dir=expr
+  unique int id: @optional_evaluation_expr,
+  int sub_expr: @expr_or_none ref
+);
+
+other_constructor_decl_ref_exprs(  //dir=expr
+  unique int id: @other_constructor_decl_ref_expr,
+  int constructor_decl: @constructor_decl_or_none ref
+);
+
+overloaded_decl_ref_exprs(  //dir=expr
+  unique int id: @overloaded_decl_ref_expr
+);
+
+#keyset[id, index]
+overloaded_decl_ref_expr_possible_declarations(  //dir=expr
+  int id: @overloaded_decl_ref_expr ref,
+  int index: int ref,
+  int possible_declaration: @value_decl_or_none ref
+);
+
+property_wrapper_value_placeholder_exprs(  //dir=expr
+  unique int id: @property_wrapper_value_placeholder_expr,
+  int placeholder: @opaque_value_expr_or_none ref
+);
+
+#keyset[id]
+property_wrapper_value_placeholder_expr_wrapped_values(  //dir=expr
+  int id: @property_wrapper_value_placeholder_expr ref,
+  int wrapped_value: @expr_or_none ref
+);
+
+rebind_self_in_constructor_exprs(  //dir=expr
+  unique int id: @rebind_self_in_constructor_expr,
+  int sub_expr: @expr_or_none ref,
+  int self: @var_decl_or_none ref
+);
+
+sequence_exprs(  //dir=expr
+  unique int id: @sequence_expr
+);
+
+#keyset[id, index]
+sequence_expr_elements(  //dir=expr
+  int id: @sequence_expr ref,
+  int index: int ref,
+  int element: @expr_or_none ref
+);
+
+super_ref_exprs(  //dir=expr
+  unique int id: @super_ref_expr,
+  int self: @var_decl_or_none ref
+);
+
+tap_exprs(  //dir=expr
+  unique int id: @tap_expr,
+  int body: @brace_stmt_or_none ref,
+  int var: @var_decl_or_none ref
+);
+
+#keyset[id]
+tap_expr_sub_exprs(  //dir=expr
+  int id: @tap_expr ref,
+  int sub_expr: @expr_or_none ref
+);
+
+tuple_element_exprs(  //dir=expr
+  unique int id: @tuple_element_expr,
+  int sub_expr: @expr_or_none ref,
+  int index: int ref
+);
+
+tuple_exprs(  //dir=expr
+  unique int id: @tuple_expr
+);
+
+#keyset[id, index]
+tuple_expr_elements(  //dir=expr
+  int id: @tuple_expr ref,
+  int index: int ref,
+  int element: @expr_or_none ref
+);
+
+type_exprs(  //dir=expr
+  unique int id: @type_expr
+);
+
+#keyset[id]
+type_expr_type_reprs(  //dir=expr
+  int id: @type_expr ref,
+  int type_repr: @type_repr_or_none ref
+);
+
+unresolved_decl_ref_exprs(  //dir=expr
+  unique int id: @unresolved_decl_ref_expr
+);
+
+#keyset[id]
+unresolved_decl_ref_expr_names(  //dir=expr
+  int id: @unresolved_decl_ref_expr ref,
+  string name: string ref
+);
+
+unresolved_dot_exprs(  //dir=expr
+  unique int id: @unresolved_dot_expr,
+  int base: @expr_or_none ref,
+  string name: string ref
+);
+
+unresolved_member_exprs(  //dir=expr
+  unique int id: @unresolved_member_expr,
+  string name: string ref
+);
+
+unresolved_pattern_exprs(  //dir=expr
+  unique int id: @unresolved_pattern_expr,
+  int sub_pattern: @pattern_or_none ref
+);
+
+unresolved_specialize_exprs(  //dir=expr
+  unique int id: @unresolved_specialize_expr,
+  int sub_expr: @expr_or_none ref
+);
+
+vararg_expansion_exprs(  //dir=expr
+  unique int id: @vararg_expansion_expr,
+  int sub_expr: @expr_or_none ref
+);
+
+any_hashable_erasure_exprs(  //dir=expr
+  unique int id: @any_hashable_erasure_expr
+);
+
+archetype_to_super_exprs(  //dir=expr
+  unique int id: @archetype_to_super_expr
+);
+
+array_exprs(  //dir=expr
+  unique int id: @array_expr
+);
+
+#keyset[id, index]
+array_expr_elements(  //dir=expr
+  int id: @array_expr ref,
+  int index: int ref,
+  int element: @expr_or_none ref
+);
+
+array_to_pointer_exprs(  //dir=expr
+  unique int id: @array_to_pointer_expr
+);
+
+auto_closure_exprs(  //dir=expr
+  unique int id: @auto_closure_expr
+);
+
+await_exprs(  //dir=expr
+  unique int id: @await_expr
+);
+
+binary_exprs(  //dir=expr
+  unique int id: @binary_expr
+);
+
+bridge_from_obj_c_exprs(  //dir=expr
+  unique int id: @bridge_from_obj_c_expr
+);
+
+bridge_to_obj_c_exprs(  //dir=expr
+  unique int id: @bridge_to_obj_c_expr
+);
+
+@builtin_literal_expr =
+  @boolean_literal_expr
+| @magic_identifier_literal_expr
+| @number_literal_expr
+| @string_literal_expr
+;
+
+call_exprs(  //dir=expr
+  unique int id: @call_expr
+);
+
+@checked_cast_expr =
+  @conditional_checked_cast_expr
+| @forced_checked_cast_expr
+| @is_expr
+;
+
+class_metatype_to_object_exprs(  //dir=expr
+  unique int id: @class_metatype_to_object_expr
+);
+
+closure_exprs(  //dir=expr
+  unique int id: @closure_expr
+);
+
+coerce_exprs(  //dir=expr
+  unique int id: @coerce_expr
+);
+
+collection_upcast_conversion_exprs(  //dir=expr
+  unique int id: @collection_upcast_conversion_expr
+);
+
+conditional_bridge_from_obj_c_exprs(  //dir=expr
+  unique int id: @conditional_bridge_from_obj_c_expr
+);
+
+covariant_function_conversion_exprs(  //dir=expr
+  unique int id: @covariant_function_conversion_expr
+);
+
+covariant_return_conversion_exprs(  //dir=expr
+  unique int id: @covariant_return_conversion_expr
+);
+
+derived_to_base_exprs(  //dir=expr
+  unique int id: @derived_to_base_expr
+);
+
+destructure_tuple_exprs(  //dir=expr
+  unique int id: @destructure_tuple_expr
+);
+
+dictionary_exprs(  //dir=expr
+  unique int id: @dictionary_expr
+);
+
+#keyset[id, index]
+dictionary_expr_elements(  //dir=expr
+  int id: @dictionary_expr ref,
+  int index: int ref,
+  int element: @expr_or_none ref
+);
+
+differentiable_function_exprs(  //dir=expr
+  unique int id: @differentiable_function_expr
+);
+
+differentiable_function_extract_original_exprs(  //dir=expr
+  unique int id: @differentiable_function_extract_original_expr
+);
+
+dot_self_exprs(  //dir=expr
+  unique int id: @dot_self_expr
+);
+
+@dynamic_lookup_expr =
+  @dynamic_member_ref_expr
+| @dynamic_subscript_expr
+;
+
+erasure_exprs(  //dir=expr
+  unique int id: @erasure_expr
+);
+
+existential_metatype_to_object_exprs(  //dir=expr
+  unique int id: @existential_metatype_to_object_expr
+);
+
+force_try_exprs(  //dir=expr
+  unique int id: @force_try_expr
+);
+
+foreign_object_conversion_exprs(  //dir=expr
+  unique int id: @foreign_object_conversion_expr
+);
+
+function_conversion_exprs(  //dir=expr
+  unique int id: @function_conversion_expr
+);
+
+in_out_to_pointer_exprs(  //dir=expr
+  unique int id: @in_out_to_pointer_expr
+);
+
+inject_into_optional_exprs(  //dir=expr
+  unique int id: @inject_into_optional_expr
+);
+
+interpolated_string_literal_exprs(  //dir=expr
+  unique int id: @interpolated_string_literal_expr
+);
+
+#keyset[id]
+interpolated_string_literal_expr_interpolation_exprs(  //dir=expr
+  int id: @interpolated_string_literal_expr ref,
+  int interpolation_expr: @opaque_value_expr_or_none ref
+);
+
+#keyset[id]
+interpolated_string_literal_expr_interpolation_count_exprs(  //dir=expr
+  int id: @interpolated_string_literal_expr ref,
+  int interpolation_count_expr: @expr_or_none ref
+);
+
+#keyset[id]
+interpolated_string_literal_expr_literal_capacity_exprs(  //dir=expr
+  int id: @interpolated_string_literal_expr ref,
+  int literal_capacity_expr: @expr_or_none ref
+);
+
+#keyset[id]
+interpolated_string_literal_expr_appending_exprs(  //dir=expr
+  int id: @interpolated_string_literal_expr ref,
+  int appending_expr: @tap_expr_or_none ref
+);
+
+linear_function_exprs(  //dir=expr
+  unique int id: @linear_function_expr
+);
+
+linear_function_extract_original_exprs(  //dir=expr
+  unique int id: @linear_function_extract_original_expr
+);
+
+linear_to_differentiable_function_exprs(  //dir=expr
+  unique int id: @linear_to_differentiable_function_expr
+);
+
+load_exprs(  //dir=expr
+  unique int id: @load_expr
+);
+
+member_ref_exprs(  //dir=expr
+  unique int id: @member_ref_expr
+);
+
+#keyset[id]
+member_ref_expr_has_direct_to_storage_semantics(  //dir=expr
+  int id: @member_ref_expr ref
+);
+
+#keyset[id]
+member_ref_expr_has_direct_to_implementation_semantics(  //dir=expr
+  int id: @member_ref_expr ref
+);
+
+#keyset[id]
+member_ref_expr_has_ordinary_semantics(  //dir=expr
+  int id: @member_ref_expr ref
+);
+
+#keyset[id]
+member_ref_expr_has_distributed_thunk_semantics(  //dir=expr
+  int id: @member_ref_expr ref
+);
+
+metatype_conversion_exprs(  //dir=expr
+  unique int id: @metatype_conversion_expr
+);
+
+nil_literal_exprs(  //dir=expr
+  unique int id: @nil_literal_expr
+);
+
+object_literal_exprs(  //dir=expr
+  unique int id: @object_literal_expr,
+  int kind: int ref
+);
+
+#keyset[id, index]
+object_literal_expr_arguments(  //dir=expr
+  int id: @object_literal_expr ref,
+  int index: int ref,
+  int argument: @argument_or_none ref
+);
+
+optional_try_exprs(  //dir=expr
+  unique int id: @optional_try_expr
+);
+
+paren_exprs(  //dir=expr
+  unique int id: @paren_expr
+);
+
+pointer_to_pointer_exprs(  //dir=expr
+  unique int id: @pointer_to_pointer_expr
+);
+
+postfix_unary_exprs(  //dir=expr
+  unique int id: @postfix_unary_expr
+);
+
+prefix_unary_exprs(  //dir=expr
+  unique int id: @prefix_unary_expr
+);
+
+protocol_metatype_to_object_exprs(  //dir=expr
+  unique int id: @protocol_metatype_to_object_expr
+);
+
+regex_literal_exprs(  //dir=expr
+  unique int id: @regex_literal_expr
+);
+
+@self_apply_expr =
+  @constructor_ref_call_expr
+| @dot_syntax_call_expr
+;
+
+#keyset[id]
+self_apply_exprs(  //dir=expr
+  int id: @self_apply_expr ref,
+  int base: @expr_or_none ref
+);
+
+string_to_pointer_exprs(  //dir=expr
+  unique int id: @string_to_pointer_expr
+);
+
+subscript_exprs(  //dir=expr
+  unique int id: @subscript_expr
+);
+
+#keyset[id, index]
+subscript_expr_arguments(  //dir=expr
+  int id: @subscript_expr ref,
+  int index: int ref,
+  int argument: @argument_or_none ref
+);
+
+#keyset[id]
+subscript_expr_has_direct_to_storage_semantics(  //dir=expr
+  int id: @subscript_expr ref
+);
+
+#keyset[id]
+subscript_expr_has_direct_to_implementation_semantics(  //dir=expr
+  int id: @subscript_expr ref
+);
+
+#keyset[id]
+subscript_expr_has_ordinary_semantics(  //dir=expr
+  int id: @subscript_expr ref
+);
+
+#keyset[id]
+subscript_expr_has_distributed_thunk_semantics(  //dir=expr
+  int id: @subscript_expr ref
+);
+
+try_exprs(  //dir=expr
+  unique int id: @try_expr
+);
+
+underlying_to_opaque_exprs(  //dir=expr
+  unique int id: @underlying_to_opaque_expr
+);
+
+unevaluated_instance_exprs(  //dir=expr
+  unique int id: @unevaluated_instance_expr
+);
+
+unresolved_member_chain_result_exprs(  //dir=expr
+  unique int id: @unresolved_member_chain_result_expr
+);
+
+unresolved_type_conversion_exprs(  //dir=expr
+  unique int id: @unresolved_type_conversion_expr
+);
+
+boolean_literal_exprs(  //dir=expr
+  unique int id: @boolean_literal_expr,
+  boolean value: boolean ref
+);
+
+conditional_checked_cast_exprs(  //dir=expr
+  unique int id: @conditional_checked_cast_expr
+);
+
+constructor_ref_call_exprs(  //dir=expr
+  unique int id: @constructor_ref_call_expr
+);
+
+dot_syntax_call_exprs(  //dir=expr
+  unique int id: @dot_syntax_call_expr
+);
+
+dynamic_member_ref_exprs(  //dir=expr
+  unique int id: @dynamic_member_ref_expr
+);
+
+dynamic_subscript_exprs(  //dir=expr
+  unique int id: @dynamic_subscript_expr
+);
+
+forced_checked_cast_exprs(  //dir=expr
+  unique int id: @forced_checked_cast_expr
+);
+
+is_exprs(  //dir=expr
+  unique int id: @is_expr
+);
+
+magic_identifier_literal_exprs(  //dir=expr
+  unique int id: @magic_identifier_literal_expr,
+  string kind: string ref
+);
+
+@number_literal_expr =
+  @float_literal_expr
+| @integer_literal_expr
+;
+
+string_literal_exprs(  //dir=expr
+  unique int id: @string_literal_expr,
+  string value: string ref
+);
+
+float_literal_exprs(  //dir=expr
+  unique int id: @float_literal_expr,
+  string string_value: string ref
+);
+
+integer_literal_exprs(  //dir=expr
+  unique int id: @integer_literal_expr,
+  string string_value: string ref
+);
+
+@pattern =
+  @any_pattern
+| @binding_pattern
+| @bool_pattern
+| @enum_element_pattern
+| @expr_pattern
+| @is_pattern
+| @named_pattern
+| @optional_some_pattern
+| @paren_pattern
+| @tuple_pattern
+| @typed_pattern
+;
+
+any_patterns(  //dir=pattern
+  unique int id: @any_pattern
+);
+
+binding_patterns(  //dir=pattern
+  unique int id: @binding_pattern,
+  int sub_pattern: @pattern_or_none ref
+);
+
+bool_patterns(  //dir=pattern
+  unique int id: @bool_pattern,
+  boolean value: boolean ref
+);
+
+enum_element_patterns(  //dir=pattern
+  unique int id: @enum_element_pattern,
+  int element: @enum_element_decl_or_none ref
+);
+
+#keyset[id]
+enum_element_pattern_sub_patterns(  //dir=pattern
+  int id: @enum_element_pattern ref,
+  int sub_pattern: @pattern_or_none ref
+);
+
+expr_patterns(  //dir=pattern
+  unique int id: @expr_pattern,
+  int sub_expr: @expr_or_none ref
+);
+
+is_patterns(  //dir=pattern
+  unique int id: @is_pattern
+);
+
+#keyset[id]
+is_pattern_cast_type_reprs(  //dir=pattern
+  int id: @is_pattern ref,
+  int cast_type_repr: @type_repr_or_none ref
+);
+
+#keyset[id]
+is_pattern_sub_patterns(  //dir=pattern
+  int id: @is_pattern ref,
+  int sub_pattern: @pattern_or_none ref
+);
+
+named_patterns(  //dir=pattern
+  unique int id: @named_pattern,
+  string name: string ref
+);
+
+optional_some_patterns(  //dir=pattern
+  unique int id: @optional_some_pattern,
+  int sub_pattern: @pattern_or_none ref
+);
+
+paren_patterns(  //dir=pattern
+  unique int id: @paren_pattern,
+  int sub_pattern: @pattern_or_none ref
+);
+
+tuple_patterns(  //dir=pattern
+  unique int id: @tuple_pattern
+);
+
+#keyset[id, index]
+tuple_pattern_elements(  //dir=pattern
+  int id: @tuple_pattern ref,
+  int index: int ref,
+  int element: @pattern_or_none ref
+);
+
+typed_patterns(  //dir=pattern
+  unique int id: @typed_pattern,
+  int sub_pattern: @pattern_or_none ref
+);
+
+#keyset[id]
+typed_pattern_type_reprs(  //dir=pattern
+  int id: @typed_pattern ref,
+  int type_repr: @type_repr_or_none ref
+);
+
+case_label_items(  //dir=stmt
+  unique int id: @case_label_item,
+  int pattern: @pattern_or_none ref
+);
+
+#keyset[id]
+case_label_item_guards(  //dir=stmt
+  int id: @case_label_item ref,
+  int guard: @expr_or_none ref
+);
+
+condition_elements(  //dir=stmt
+  unique int id: @condition_element
+);
+
+#keyset[id]
+condition_element_booleans(  //dir=stmt
+  int id: @condition_element ref,
+  int boolean_: @expr_or_none ref
+);
+
+#keyset[id]
+condition_element_patterns(  //dir=stmt
+  int id: @condition_element ref,
+  int pattern: @pattern_or_none ref
+);
+
+#keyset[id]
+condition_element_initializers(  //dir=stmt
+  int id: @condition_element ref,
+  int initializer: @expr_or_none ref
+);
+
+@stmt =
+  @brace_stmt
+| @break_stmt
+| @case_stmt
+| @continue_stmt
+| @defer_stmt
+| @fail_stmt
+| @fallthrough_stmt
+| @labeled_stmt
+| @pound_assert_stmt
+| @return_stmt
+| @throw_stmt
+| @yield_stmt
+;
+
+stmt_conditions(  //dir=stmt
+  unique int id: @stmt_condition
+);
+
+#keyset[id, index]
+stmt_condition_elements(  //dir=stmt
+  int id: @stmt_condition ref,
+  int index: int ref,
+  int element: @condition_element_or_none ref
+);
+
+brace_stmts(  //dir=stmt
+  unique int id: @brace_stmt
+);
+
+#keyset[id, index]
+brace_stmt_elements(  //dir=stmt
+  int id: @brace_stmt ref,
+  int index: int ref,
+  int element: @ast_node_or_none ref
+);
+
+break_stmts(  //dir=stmt
+  unique int id: @break_stmt
+);
+
+#keyset[id]
+break_stmt_target_names(  //dir=stmt
+  int id: @break_stmt ref,
+  string target_name: string ref
+);
+
+#keyset[id]
+break_stmt_targets(  //dir=stmt
+  int id: @break_stmt ref,
+  int target: @stmt_or_none ref
+);
+
+case_stmts(  //dir=stmt
+  unique int id: @case_stmt,
+  int body: @stmt_or_none ref
+);
+
+#keyset[id, index]
+case_stmt_labels(  //dir=stmt
+  int id: @case_stmt ref,
+  int index: int ref,
+  int label: @case_label_item_or_none ref
+);
+
+#keyset[id, index]
+case_stmt_variables(  //dir=stmt
+  int id: @case_stmt ref,
+  int index: int ref,
+  int variable: @var_decl_or_none ref
+);
+
+continue_stmts(  //dir=stmt
+  unique int id: @continue_stmt
+);
+
+#keyset[id]
+continue_stmt_target_names(  //dir=stmt
+  int id: @continue_stmt ref,
+  string target_name: string ref
+);
+
+#keyset[id]
+continue_stmt_targets(  //dir=stmt
+  int id: @continue_stmt ref,
+  int target: @stmt_or_none ref
+);
+
+defer_stmts(  //dir=stmt
+  unique int id: @defer_stmt,
+  int body: @brace_stmt_or_none ref
+);
+
+fail_stmts(  //dir=stmt
+  unique int id: @fail_stmt
+);
+
+fallthrough_stmts(  //dir=stmt
+  unique int id: @fallthrough_stmt,
+  int fallthrough_source: @case_stmt_or_none ref,
+  int fallthrough_dest: @case_stmt_or_none ref
+);
+
+@labeled_stmt =
+  @do_catch_stmt
+| @do_stmt
+| @for_each_stmt
+| @labeled_conditional_stmt
+| @repeat_while_stmt
+| @switch_stmt
+;
+
+#keyset[id]
+labeled_stmt_labels(  //dir=stmt
+  int id: @labeled_stmt ref,
+  string label: string ref
+);
+
+pound_assert_stmts(  //dir=stmt
+  unique int id: @pound_assert_stmt,
+  int condition: @expr_or_none ref,
+  string message: string ref
+);
+
+return_stmts(  //dir=stmt
+  unique int id: @return_stmt
+);
+
+#keyset[id]
+return_stmt_results(  //dir=stmt
+  int id: @return_stmt ref,
+  int result: @expr_or_none ref
+);
+
+throw_stmts(  //dir=stmt
+  unique int id: @throw_stmt,
+  int sub_expr: @expr_or_none ref
+);
+
+yield_stmts(  //dir=stmt
+  unique int id: @yield_stmt
+);
+
+#keyset[id, index]
+yield_stmt_results(  //dir=stmt
+  int id: @yield_stmt ref,
+  int index: int ref,
+  int result: @expr_or_none ref
+);
+
+do_catch_stmts(  //dir=stmt
+  unique int id: @do_catch_stmt,
+  int body: @stmt_or_none ref
+);
+
+#keyset[id, index]
+do_catch_stmt_catches(  //dir=stmt
+  int id: @do_catch_stmt ref,
+  int index: int ref,
+  int catch: @case_stmt_or_none ref
+);
+
+do_stmts(  //dir=stmt
+  unique int id: @do_stmt,
+  int body: @brace_stmt_or_none ref
+);
+
+for_each_stmts(  //dir=stmt
+  unique int id: @for_each_stmt,
+  int pattern: @pattern_or_none ref,
+  int sequence: @expr_or_none ref,
+  int body: @brace_stmt_or_none ref
+);
+
+#keyset[id]
+for_each_stmt_wheres(  //dir=stmt
+  int id: @for_each_stmt ref,
+  int where: @expr_or_none ref
+);
+
+@labeled_conditional_stmt =
+  @guard_stmt
+| @if_stmt
+| @while_stmt
+;
+
+#keyset[id]
+labeled_conditional_stmts(  //dir=stmt
+  int id: @labeled_conditional_stmt ref,
+  int condition: @stmt_condition_or_none ref
+);
+
+repeat_while_stmts(  //dir=stmt
+  unique int id: @repeat_while_stmt,
+  int condition: @expr_or_none ref,
+  int body: @stmt_or_none ref
+);
+
+switch_stmts(  //dir=stmt
+  unique int id: @switch_stmt,
+  int expr: @expr_or_none ref
+);
+
+#keyset[id, index]
+switch_stmt_cases(  //dir=stmt
+  int id: @switch_stmt ref,
+  int index: int ref,
+  int case_: @case_stmt_or_none ref
+);
+
+guard_stmts(  //dir=stmt
+  unique int id: @guard_stmt,
+  int body: @brace_stmt_or_none ref
+);
+
+if_stmts(  //dir=stmt
+  unique int id: @if_stmt,
+  int then: @stmt_or_none ref
+);
+
+#keyset[id]
+if_stmt_elses(  //dir=stmt
+  int id: @if_stmt ref,
+  int else: @stmt_or_none ref
+);
+
+while_stmts(  //dir=stmt
+  unique int id: @while_stmt,
+  int body: @stmt_or_none ref
+);
+
+@type =
+  @any_function_type
+| @any_generic_type
+| @any_metatype_type
+| @builtin_type
+| @dependent_member_type
+| @dynamic_self_type
+| @error_type
+| @existential_type
+| @in_out_type
+| @l_value_type
+| @module_type
+| @parameterized_protocol_type
+| @protocol_composition_type
+| @reference_storage_type
+| @substitutable_type
+| @sugar_type
+| @tuple_type
+| @unresolved_type
+;
+
+#keyset[id]
+types(  //dir=type
+  int id: @type ref,
+  string name: string ref,
+  int canonical_type: @type_or_none ref
+);
+
+type_reprs(  //dir=type
+  unique int id: @type_repr,
+  int type_: @type_or_none ref
+);
+
+@any_function_type =
+  @function_type
+| @generic_function_type
+;
+
+#keyset[id]
+any_function_types(  //dir=type
+  int id: @any_function_type ref,
+  int result: @type_or_none ref
+);
+
+#keyset[id, index]
+any_function_type_param_types(  //dir=type
+  int id: @any_function_type ref,
+  int index: int ref,
+  int param_type: @type_or_none ref
+);
+
+#keyset[id, index]
+any_function_type_param_labels(  //dir=type
+  int id: @any_function_type ref,
+  int index: int ref,
+  string param_label: string ref
+);
+
+#keyset[id]
+any_function_type_is_throwing(  //dir=type
+  int id: @any_function_type ref
+);
+
+#keyset[id]
+any_function_type_is_async(  //dir=type
+  int id: @any_function_type ref
+);
+
+@any_generic_type =
+  @nominal_or_bound_generic_nominal_type
+| @unbound_generic_type
+;
+
+#keyset[id]
+any_generic_types(  //dir=type
+  int id: @any_generic_type ref,
+  int declaration: @decl_or_none ref
+);
+
+#keyset[id]
+any_generic_type_parents(  //dir=type
+  int id: @any_generic_type ref,
+  int parent: @type_or_none ref
+);
+
+@any_metatype_type =
+  @existential_metatype_type
+| @metatype_type
+;
+
+@builtin_type =
+  @any_builtin_integer_type
+| @builtin_bridge_object_type
+| @builtin_default_actor_storage_type
+| @builtin_executor_type
+| @builtin_float_type
+| @builtin_job_type
+| @builtin_native_object_type
+| @builtin_raw_pointer_type
+| @builtin_raw_unsafe_continuation_type
+| @builtin_unsafe_value_buffer_type
+| @builtin_vector_type
+;
+
+dependent_member_types(  //dir=type
+  unique int id: @dependent_member_type,
+  int base_type: @type_or_none ref,
+  int associated_type_decl: @associated_type_decl_or_none ref
+);
+
+dynamic_self_types(  //dir=type
+  unique int id: @dynamic_self_type,
+  int static_self_type: @type_or_none ref
+);
+
+error_types(  //dir=type
+  unique int id: @error_type
+);
+
+existential_types(  //dir=type
+  unique int id: @existential_type,
+  int constraint: @type_or_none ref
+);
+
+in_out_types(  //dir=type
+  unique int id: @in_out_type,
+  int object_type: @type_or_none ref
+);
+
+l_value_types(  //dir=type
+  unique int id: @l_value_type,
+  int object_type: @type_or_none ref
+);
+
+module_types(  //dir=type
+  unique int id: @module_type,
+  int module: @module_decl_or_none ref
+);
+
+parameterized_protocol_types(  //dir=type
+  unique int id: @parameterized_protocol_type,
+  int base: @protocol_type_or_none ref
+);
+
+#keyset[id, index]
+parameterized_protocol_type_args(  //dir=type
+  int id: @parameterized_protocol_type ref,
+  int index: int ref,
+  int arg: @type_or_none ref
+);
+
+protocol_composition_types(  //dir=type
+  unique int id: @protocol_composition_type
+);
+
+#keyset[id, index]
+protocol_composition_type_members(  //dir=type
+  int id: @protocol_composition_type ref,
+  int index: int ref,
+  int member: @type_or_none ref
+);
+
+@reference_storage_type =
+  @unmanaged_storage_type
+| @unowned_storage_type
+| @weak_storage_type
+;
+
+#keyset[id]
+reference_storage_types(  //dir=type
+  int id: @reference_storage_type ref,
+  int referent_type: @type_or_none ref
+);
+
+@substitutable_type =
+  @archetype_type
+| @generic_type_param_type
+;
+
+@sugar_type =
+  @paren_type
+| @syntax_sugar_type
+| @type_alias_type
+;
+
+tuple_types(  //dir=type
+  unique int id: @tuple_type
+);
+
+#keyset[id, index]
+tuple_type_types(  //dir=type
+  int id: @tuple_type ref,
+  int index: int ref,
+  int type_: @type_or_none ref
+);
+
+#keyset[id, index]
+tuple_type_names(  //dir=type
+  int id: @tuple_type ref,
+  int index: int ref,
+  string name: string ref
+);
+
+unresolved_types(  //dir=type
+  unique int id: @unresolved_type
+);
+
+@any_builtin_integer_type =
+  @builtin_integer_literal_type
+| @builtin_integer_type
+;
+
+@archetype_type =
+  @opaque_type_archetype_type
+| @opened_archetype_type
+| @primary_archetype_type
+;
+
+#keyset[id]
+archetype_types(  //dir=type
+  int id: @archetype_type ref,
+  int interface_type: @type_or_none ref
+);
+
+#keyset[id]
+archetype_type_superclasses(  //dir=type
+  int id: @archetype_type ref,
+  int superclass: @type_or_none ref
+);
+
+#keyset[id, index]
+archetype_type_protocols(  //dir=type
+  int id: @archetype_type ref,
+  int index: int ref,
+  int protocol: @protocol_decl_or_none ref
+);
+
+builtin_bridge_object_types(  //dir=type
+  unique int id: @builtin_bridge_object_type
+);
+
+builtin_default_actor_storage_types(  //dir=type
+  unique int id: @builtin_default_actor_storage_type
+);
+
+builtin_executor_types(  //dir=type
+  unique int id: @builtin_executor_type
+);
+
+builtin_float_types(  //dir=type
+  unique int id: @builtin_float_type
+);
+
+builtin_job_types(  //dir=type
+  unique int id: @builtin_job_type
+);
+
+builtin_native_object_types(  //dir=type
+  unique int id: @builtin_native_object_type
+);
+
+builtin_raw_pointer_types(  //dir=type
+  unique int id: @builtin_raw_pointer_type
+);
+
+builtin_raw_unsafe_continuation_types(  //dir=type
+  unique int id: @builtin_raw_unsafe_continuation_type
+);
+
+builtin_unsafe_value_buffer_types(  //dir=type
+  unique int id: @builtin_unsafe_value_buffer_type
+);
+
+builtin_vector_types(  //dir=type
+  unique int id: @builtin_vector_type
+);
+
+existential_metatype_types(  //dir=type
+  unique int id: @existential_metatype_type
+);
+
+function_types(  //dir=type
+  unique int id: @function_type
+);
+
+generic_function_types(  //dir=type
+  unique int id: @generic_function_type
+);
+
+#keyset[id, index]
+generic_function_type_generic_params(  //dir=type
+  int id: @generic_function_type ref,
+  int index: int ref,
+  int generic_param: @generic_type_param_type_or_none ref
+);
+
+generic_type_param_types(  //dir=type
+  unique int id: @generic_type_param_type
+);
+
+metatype_types(  //dir=type
+  unique int id: @metatype_type
+);
+
+@nominal_or_bound_generic_nominal_type =
+  @bound_generic_type
+| @nominal_type
+;
+
+paren_types(  //dir=type
+  unique int id: @paren_type,
+  int type_: @type_or_none ref
+);
+
+@syntax_sugar_type =
+  @dictionary_type
+| @unary_syntax_sugar_type
+;
+
+type_alias_types(  //dir=type
+  unique int id: @type_alias_type,
+  int decl: @type_alias_decl_or_none ref
+);
+
+unbound_generic_types(  //dir=type
+  unique int id: @unbound_generic_type
+);
+
+unmanaged_storage_types(  //dir=type
+  unique int id: @unmanaged_storage_type
+);
+
+unowned_storage_types(  //dir=type
+  unique int id: @unowned_storage_type
+);
+
+weak_storage_types(  //dir=type
+  unique int id: @weak_storage_type
+);
+
+@bound_generic_type =
+  @bound_generic_class_type
+| @bound_generic_enum_type
+| @bound_generic_struct_type
+;
+
+#keyset[id, index]
+bound_generic_type_arg_types(  //dir=type
+  int id: @bound_generic_type ref,
+  int index: int ref,
+  int arg_type: @type_or_none ref
+);
+
+builtin_integer_literal_types(  //dir=type
+  unique int id: @builtin_integer_literal_type
+);
+
+builtin_integer_types(  //dir=type
+  unique int id: @builtin_integer_type
+);
+
+#keyset[id]
+builtin_integer_type_widths(  //dir=type
+  int id: @builtin_integer_type ref,
+  int width: int ref
+);
+
+dictionary_types(  //dir=type
+  unique int id: @dictionary_type,
+  int key_type: @type_or_none ref,
+  int value_type: @type_or_none ref
+);
+
+@nominal_type =
+  @class_type
+| @enum_type
+| @protocol_type
+| @struct_type
+;
+
+opaque_type_archetype_types(  //dir=type
+  unique int id: @opaque_type_archetype_type,
+  int declaration: @opaque_type_decl_or_none ref
+);
+
+opened_archetype_types(  //dir=type
+  unique int id: @opened_archetype_type
+);
+
+primary_archetype_types(  //dir=type
+  unique int id: @primary_archetype_type
+);
+
+@unary_syntax_sugar_type =
+  @array_slice_type
+| @optional_type
+| @variadic_sequence_type
+;
+
+#keyset[id]
+unary_syntax_sugar_types(  //dir=type
+  int id: @unary_syntax_sugar_type ref,
+  int base_type: @type_or_none ref
+);
+
+array_slice_types(  //dir=type
+  unique int id: @array_slice_type
+);
+
+bound_generic_class_types(  //dir=type
+  unique int id: @bound_generic_class_type
+);
+
+bound_generic_enum_types(  //dir=type
+  unique int id: @bound_generic_enum_type
+);
+
+bound_generic_struct_types(  //dir=type
+  unique int id: @bound_generic_struct_type
+);
+
+class_types(  //dir=type
+  unique int id: @class_type
+);
+
+enum_types(  //dir=type
+  unique int id: @enum_type
+);
+
+optional_types(  //dir=type
+  unique int id: @optional_type
+);
+
+protocol_types(  //dir=type
+  unique int id: @protocol_type
+);
+
+struct_types(  //dir=type
+  unique int id: @struct_type
+);
+
+variadic_sequence_types(  //dir=type
+  unique int id: @variadic_sequence_type
+);
+
+@abstract_function_decl_or_none =
+  @abstract_function_decl
+| @unspecified_element
+;
+
+@accessor_decl_or_none =
+  @accessor_decl
+| @unspecified_element
+;
+
+@argument_or_none =
+  @argument
+| @unspecified_element
+;
+
+@associated_type_decl_or_none =
+  @associated_type_decl
+| @unspecified_element
+;
+
+@ast_node_or_none =
+  @ast_node
+| @unspecified_element
+;
+
+@brace_stmt_or_none =
+  @brace_stmt
+| @unspecified_element
+;
+
+@case_label_item_or_none =
+  @case_label_item
+| @unspecified_element
+;
+
+@case_stmt_or_none =
+  @case_stmt
+| @unspecified_element
+;
+
+@closure_expr_or_none =
+  @closure_expr
+| @unspecified_element
+;
+
+@condition_element_or_none =
+  @condition_element
+| @unspecified_element
+;
+
+@constructor_decl_or_none =
+  @constructor_decl
+| @unspecified_element
+;
+
+@decl_or_none =
+  @decl
+| @unspecified_element
+;
+
+@enum_element_decl_or_none =
+  @enum_element_decl
+| @unspecified_element
+;
+
+@expr_or_none =
+  @expr
+| @unspecified_element
+;
+
+@file_or_none =
+  @file
+| @unspecified_element
+;
+
+@generic_type_param_decl_or_none =
+  @generic_type_param_decl
+| @unspecified_element
+;
+
+@generic_type_param_type_or_none =
+  @generic_type_param_type
+| @unspecified_element
+;
+
+@location_or_none =
+  @location
+| @unspecified_element
+;
+
+@module_decl_or_none =
+  @module_decl
+| @unspecified_element
+;
+
+@nominal_type_decl_or_none =
+  @nominal_type_decl
+| @unspecified_element
+;
+
+@opaque_type_decl_or_none =
+  @opaque_type_decl
+| @unspecified_element
+;
+
+@opaque_value_expr_or_none =
+  @opaque_value_expr
+| @unspecified_element
+;
+
+@param_decl_or_none =
+  @param_decl
+| @unspecified_element
+;
+
+@pattern_or_none =
+  @pattern
+| @unspecified_element
+;
+
+@pattern_binding_decl_or_none =
+  @pattern_binding_decl
+| @unspecified_element
+;
+
+@precedence_group_decl_or_none =
+  @precedence_group_decl
+| @unspecified_element
+;
+
+@protocol_decl_or_none =
+  @protocol_decl
+| @unspecified_element
+;
+
+@protocol_type_or_none =
+  @protocol_type
+| @unspecified_element
+;
+
+@stmt_or_none =
+  @stmt
+| @unspecified_element
+;
+
+@stmt_condition_or_none =
+  @stmt_condition
+| @unspecified_element
+;
+
+@string_literal_expr_or_none =
+  @string_literal_expr
+| @unspecified_element
+;
+
+@tap_expr_or_none =
+  @tap_expr
+| @unspecified_element
+;
+
+@type_or_none =
+  @type
+| @unspecified_element
+;
+
+@type_alias_decl_or_none =
+  @type_alias_decl
+| @unspecified_element
+;
+
+@type_repr_or_none =
+  @type_repr
+| @unspecified_element
+;
+
+@value_decl_or_none =
+  @unspecified_element
+| @value_decl
+;
+
+@var_decl_or_none =
+  @unspecified_element
+| @var_decl
+;
diff --git a/swift/downgrades/1a6e9325bd60462e669e524438174deef4476df0/swift.dbscheme b/swift/downgrades/1a6e9325bd60462e669e524438174deef4476df0/swift.dbscheme
new file mode 100644
index 00000000000..abbb8c9e840
--- /dev/null
+++ b/swift/downgrades/1a6e9325bd60462e669e524438174deef4476df0/swift.dbscheme
@@ -0,0 +1,2478 @@
+// generated by codegen/codegen.py
+
+// from prefix.dbscheme
+/**
+ * The source location of the snapshot.
+ */
+sourceLocationPrefix(
+  string prefix: string ref
+);
+
+
+// from schema.py
+
+@element =
+  @callable
+| @file
+| @generic_context
+| @iterable_decl_context
+| @locatable
+| @location
+| @type
+;
+
+#keyset[id]
+element_is_unknown(
+  int id: @element ref
+);
+
+@callable =
+  @abstract_closure_expr
+| @abstract_function_decl
+;
+
+#keyset[id]
+callable_self_params(
+  int id: @callable ref,
+  int self_param: @param_decl_or_none ref
+);
+
+#keyset[id, index]
+callable_params(
+  int id: @callable ref,
+  int index: int ref,
+  int param: @param_decl_or_none ref
+);
+
+#keyset[id]
+callable_bodies(
+  int id: @callable ref,
+  int body: @brace_stmt_or_none ref
+);
+
+@file =
+  @db_file
+;
+
+#keyset[id]
+files(
+  int id: @file ref,
+  string name: string ref
+);
+
+@locatable =
+  @argument
+| @ast_node
+| @comment
+| @diagnostics
+| @error_element
+;
+
+#keyset[id]
+locatable_locations(
+  int id: @locatable ref,
+  int location: @location_or_none ref
+);
+
+@location =
+  @db_location
+;
+
+#keyset[id]
+locations(
+  int id: @location ref,
+  int file: @file_or_none ref,
+  int start_line: int ref,
+  int start_column: int ref,
+  int end_line: int ref,
+  int end_column: int ref
+);
+
+@ast_node =
+  @case_label_item
+| @condition_element
+| @decl
+| @expr
+| @pattern
+| @stmt
+| @stmt_condition
+| @type_repr
+;
+
+comments(
+  unique int id: @comment,
+  string text: string ref
+);
+
+db_files(
+  unique int id: @db_file
+);
+
+db_locations(
+  unique int id: @db_location
+);
+
+diagnostics(
+  unique int id: @diagnostics,
+  string text: string ref,
+  int kind: int ref
+);
+
+@error_element =
+  @error_expr
+| @error_type
+| @overloaded_decl_ref_expr
+| @unresolved_decl_ref_expr
+| @unresolved_dot_expr
+| @unresolved_member_chain_result_expr
+| @unresolved_member_expr
+| @unresolved_pattern_expr
+| @unresolved_specialize_expr
+| @unresolved_type
+| @unresolved_type_conversion_expr
+| @unspecified_element
+;
+
+unspecified_elements(
+  unique int id: @unspecified_element,
+  string property: string ref,
+  string error: string ref
+);
+
+#keyset[id]
+unspecified_element_parents(
+  int id: @unspecified_element ref,
+  int parent: @element ref
+);
+
+#keyset[id]
+unspecified_element_indices(
+  int id: @unspecified_element ref,
+  int index: int ref
+);
+
+@decl =
+  @enum_case_decl
+| @extension_decl
+| @if_config_decl
+| @import_decl
+| @missing_member_decl
+| @operator_decl
+| @pattern_binding_decl
+| @pound_diagnostic_decl
+| @precedence_group_decl
+| @top_level_code_decl
+| @value_decl
+;
+
+#keyset[id]
+decls(  //dir=decl
+  int id: @decl ref,
+  int module: @module_decl_or_none ref
+);
+
+@generic_context =
+  @abstract_function_decl
+| @extension_decl
+| @generic_type_decl
+| @subscript_decl
+;
+
+#keyset[id, index]
+generic_context_generic_type_params(  //dir=decl
+  int id: @generic_context ref,
+  int index: int ref,
+  int generic_type_param: @generic_type_param_decl_or_none ref
+);
+
+@iterable_decl_context =
+  @extension_decl
+| @nominal_type_decl
+;
+
+#keyset[id, index]
+iterable_decl_context_members(  //dir=decl
+  int id: @iterable_decl_context ref,
+  int index: int ref,
+  int member: @decl_or_none ref
+);
+
+enum_case_decls(  //dir=decl
+  unique int id: @enum_case_decl
+);
+
+#keyset[id, index]
+enum_case_decl_elements(  //dir=decl
+  int id: @enum_case_decl ref,
+  int index: int ref,
+  int element: @enum_element_decl_or_none ref
+);
+
+extension_decls(  //dir=decl
+  unique int id: @extension_decl,
+  int extended_type_decl: @nominal_type_decl_or_none ref
+);
+
+if_config_decls(  //dir=decl
+  unique int id: @if_config_decl
+);
+
+#keyset[id, index]
+if_config_decl_active_elements(  //dir=decl
+  int id: @if_config_decl ref,
+  int index: int ref,
+  int active_element: @ast_node_or_none ref
+);
+
+import_decls(  //dir=decl
+  unique int id: @import_decl
+);
+
+#keyset[id]
+import_decl_is_exported(  //dir=decl
+  int id: @import_decl ref
+);
+
+#keyset[id]
+import_decl_imported_modules(  //dir=decl
+  int id: @import_decl ref,
+  int imported_module: @module_decl_or_none ref
+);
+
+#keyset[id, index]
+import_decl_declarations(  //dir=decl
+  int id: @import_decl ref,
+  int index: int ref,
+  int declaration: @value_decl_or_none ref
+);
+
+missing_member_decls(  //dir=decl
+  unique int id: @missing_member_decl,
+  string name: string ref
+);
+
+@operator_decl =
+  @infix_operator_decl
+| @postfix_operator_decl
+| @prefix_operator_decl
+;
+
+#keyset[id]
+operator_decls(  //dir=decl
+  int id: @operator_decl ref,
+  string name: string ref
+);
+
+pattern_binding_decls(  //dir=decl
+  unique int id: @pattern_binding_decl
+);
+
+#keyset[id, index]
+pattern_binding_decl_inits(  //dir=decl
+  int id: @pattern_binding_decl ref,
+  int index: int ref,
+  int init: @expr_or_none ref
+);
+
+#keyset[id, index]
+pattern_binding_decl_patterns(  //dir=decl
+  int id: @pattern_binding_decl ref,
+  int index: int ref,
+  int pattern: @pattern_or_none ref
+);
+
+pound_diagnostic_decls(  //dir=decl
+  unique int id: @pound_diagnostic_decl,
+  int kind: int ref,
+  int message: @string_literal_expr_or_none ref
+);
+
+precedence_group_decls(  //dir=decl
+  unique int id: @precedence_group_decl
+);
+
+top_level_code_decls(  //dir=decl
+  unique int id: @top_level_code_decl,
+  int body: @brace_stmt_or_none ref
+);
+
+@value_decl =
+  @abstract_function_decl
+| @abstract_storage_decl
+| @enum_element_decl
+| @type_decl
+;
+
+#keyset[id]
+value_decls(  //dir=decl
+  int id: @value_decl ref,
+  int interface_type: @type_or_none ref
+);
+
+@abstract_function_decl =
+  @constructor_decl
+| @destructor_decl
+| @func_decl
+;
+
+#keyset[id]
+abstract_function_decls(  //dir=decl
+  int id: @abstract_function_decl ref,
+  string name: string ref
+);
+
+@abstract_storage_decl =
+  @subscript_decl
+| @var_decl
+;
+
+#keyset[id, index]
+abstract_storage_decl_accessor_decls(  //dir=decl
+  int id: @abstract_storage_decl ref,
+  int index: int ref,
+  int accessor_decl: @accessor_decl_or_none ref
+);
+
+enum_element_decls(  //dir=decl
+  unique int id: @enum_element_decl,
+  string name: string ref
+);
+
+#keyset[id, index]
+enum_element_decl_params(  //dir=decl
+  int id: @enum_element_decl ref,
+  int index: int ref,
+  int param: @param_decl_or_none ref
+);
+
+infix_operator_decls(  //dir=decl
+  unique int id: @infix_operator_decl
+);
+
+#keyset[id]
+infix_operator_decl_precedence_groups(  //dir=decl
+  int id: @infix_operator_decl ref,
+  int precedence_group: @precedence_group_decl_or_none ref
+);
+
+postfix_operator_decls(  //dir=decl
+  unique int id: @postfix_operator_decl
+);
+
+prefix_operator_decls(  //dir=decl
+  unique int id: @prefix_operator_decl
+);
+
+@type_decl =
+  @abstract_type_param_decl
+| @generic_type_decl
+| @module_decl
+;
+
+#keyset[id]
+type_decls(  //dir=decl
+  int id: @type_decl ref,
+  string name: string ref
+);
+
+#keyset[id, index]
+type_decl_base_types(  //dir=decl
+  int id: @type_decl ref,
+  int index: int ref,
+  int base_type: @type_or_none ref
+);
+
+@abstract_type_param_decl =
+  @associated_type_decl
+| @generic_type_param_decl
+;
+
+constructor_decls(  //dir=decl
+  unique int id: @constructor_decl
+);
+
+destructor_decls(  //dir=decl
+  unique int id: @destructor_decl
+);
+
+@func_decl =
+  @accessor_decl
+| @concrete_func_decl
+;
+
+@generic_type_decl =
+  @nominal_type_decl
+| @opaque_type_decl
+| @type_alias_decl
+;
+
+module_decls(  //dir=decl
+  unique int id: @module_decl
+);
+
+#keyset[id]
+module_decl_is_builtin_module(  //dir=decl
+  int id: @module_decl ref
+);
+
+#keyset[id]
+module_decl_is_system_module(  //dir=decl
+  int id: @module_decl ref
+);
+
+#keyset[id, index]
+module_decl_imported_modules(  //dir=decl
+  int id: @module_decl ref,
+  int index: int ref,
+  int imported_module: @module_decl_or_none ref
+);
+
+#keyset[id, index]
+module_decl_exported_modules(  //dir=decl
+  int id: @module_decl ref,
+  int index: int ref,
+  int exported_module: @module_decl_or_none ref
+);
+
+subscript_decls(  //dir=decl
+  unique int id: @subscript_decl,
+  int element_type: @type_or_none ref
+);
+
+#keyset[id, index]
+subscript_decl_params(  //dir=decl
+  int id: @subscript_decl ref,
+  int index: int ref,
+  int param: @param_decl_or_none ref
+);
+
+@var_decl =
+  @concrete_var_decl
+| @param_decl
+;
+
+#keyset[id]
+var_decls(  //dir=decl
+  int id: @var_decl ref,
+  string name: string ref,
+  int type_: @type_or_none ref
+);
+
+#keyset[id]
+var_decl_attached_property_wrapper_types(  //dir=decl
+  int id: @var_decl ref,
+  int attached_property_wrapper_type: @type_or_none ref
+);
+
+#keyset[id]
+var_decl_parent_patterns(  //dir=decl
+  int id: @var_decl ref,
+  int parent_pattern: @pattern_or_none ref
+);
+
+#keyset[id]
+var_decl_parent_initializers(  //dir=decl
+  int id: @var_decl ref,
+  int parent_initializer: @expr_or_none ref
+);
+
+#keyset[id]
+var_decl_property_wrapper_backing_var_bindings(  //dir=decl
+  int id: @var_decl ref,
+  int property_wrapper_backing_var_binding: @pattern_binding_decl_or_none ref
+);
+
+#keyset[id]
+var_decl_property_wrapper_backing_vars(  //dir=decl
+  int id: @var_decl ref,
+  int property_wrapper_backing_var: @var_decl_or_none ref
+);
+
+#keyset[id]
+var_decl_property_wrapper_projection_var_bindings(  //dir=decl
+  int id: @var_decl ref,
+  int property_wrapper_projection_var_binding: @pattern_binding_decl_or_none ref
+);
+
+#keyset[id]
+var_decl_property_wrapper_projection_vars(  //dir=decl
+  int id: @var_decl ref,
+  int property_wrapper_projection_var: @var_decl_or_none ref
+);
+
+accessor_decls(  //dir=decl
+  unique int id: @accessor_decl
+);
+
+#keyset[id]
+accessor_decl_is_getter(  //dir=decl
+  int id: @accessor_decl ref
+);
+
+#keyset[id]
+accessor_decl_is_setter(  //dir=decl
+  int id: @accessor_decl ref
+);
+
+#keyset[id]
+accessor_decl_is_will_set(  //dir=decl
+  int id: @accessor_decl ref
+);
+
+#keyset[id]
+accessor_decl_is_did_set(  //dir=decl
+  int id: @accessor_decl ref
+);
+
+associated_type_decls(  //dir=decl
+  unique int id: @associated_type_decl
+);
+
+concrete_func_decls(  //dir=decl
+  unique int id: @concrete_func_decl
+);
+
+concrete_var_decls(  //dir=decl
+  unique int id: @concrete_var_decl,
+  int introducer_int: int ref
+);
+
+generic_type_param_decls(  //dir=decl
+  unique int id: @generic_type_param_decl
+);
+
+@nominal_type_decl =
+  @class_decl
+| @enum_decl
+| @protocol_decl
+| @struct_decl
+;
+
+#keyset[id]
+nominal_type_decls(  //dir=decl
+  int id: @nominal_type_decl ref,
+  int type_: @type_or_none ref
+);
+
+opaque_type_decls(  //dir=decl
+  unique int id: @opaque_type_decl,
+  int naming_declaration: @value_decl_or_none ref
+);
+
+#keyset[id, index]
+opaque_type_decl_opaque_generic_params(  //dir=decl
+  int id: @opaque_type_decl ref,
+  int index: int ref,
+  int opaque_generic_param: @generic_type_param_type_or_none ref
+);
+
+param_decls(  //dir=decl
+  unique int id: @param_decl
+);
+
+#keyset[id]
+param_decl_is_inout(  //dir=decl
+  int id: @param_decl ref
+);
+
+#keyset[id]
+param_decl_property_wrapper_local_wrapped_var_bindings(  //dir=decl
+  int id: @param_decl ref,
+  int property_wrapper_local_wrapped_var_binding: @pattern_binding_decl_or_none ref
+);
+
+#keyset[id]
+param_decl_property_wrapper_local_wrapped_vars(  //dir=decl
+  int id: @param_decl ref,
+  int property_wrapper_local_wrapped_var: @var_decl_or_none ref
+);
+
+type_alias_decls(  //dir=decl
+  unique int id: @type_alias_decl
+);
+
+class_decls(  //dir=decl
+  unique int id: @class_decl
+);
+
+enum_decls(  //dir=decl
+  unique int id: @enum_decl
+);
+
+protocol_decls(  //dir=decl
+  unique int id: @protocol_decl
+);
+
+struct_decls(  //dir=decl
+  unique int id: @struct_decl
+);
+
+arguments(  //dir=expr
+  unique int id: @argument,
+  string label: string ref,
+  int expr: @expr_or_none ref
+);
+
+@expr =
+  @abstract_closure_expr
+| @any_try_expr
+| @applied_property_wrapper_expr
+| @apply_expr
+| @assign_expr
+| @bind_optional_expr
+| @capture_list_expr
+| @collection_expr
+| @decl_ref_expr
+| @default_argument_expr
+| @discard_assignment_expr
+| @dot_syntax_base_ignored_expr
+| @dynamic_type_expr
+| @enum_is_case_expr
+| @error_expr
+| @explicit_cast_expr
+| @force_value_expr
+| @identity_expr
+| @if_expr
+| @implicit_conversion_expr
+| @in_out_expr
+| @key_path_application_expr
+| @key_path_dot_expr
+| @key_path_expr
+| @lazy_initializer_expr
+| @literal_expr
+| @lookup_expr
+| @make_temporarily_escapable_expr
+| @obj_c_selector_expr
+| @one_way_expr
+| @opaque_value_expr
+| @open_existential_expr
+| @optional_evaluation_expr
+| @other_constructor_decl_ref_expr
+| @overloaded_decl_ref_expr
+| @property_wrapper_value_placeholder_expr
+| @rebind_self_in_constructor_expr
+| @sequence_expr
+| @super_ref_expr
+| @tap_expr
+| @tuple_element_expr
+| @tuple_expr
+| @type_expr
+| @unresolved_decl_ref_expr
+| @unresolved_dot_expr
+| @unresolved_member_expr
+| @unresolved_pattern_expr
+| @unresolved_specialize_expr
+| @vararg_expansion_expr
+;
+
+#keyset[id]
+expr_types(  //dir=expr
+  int id: @expr ref,
+  int type_: @type_or_none ref
+);
+
+@abstract_closure_expr =
+  @auto_closure_expr
+| @closure_expr
+;
+
+@any_try_expr =
+  @force_try_expr
+| @optional_try_expr
+| @try_expr
+;
+
+#keyset[id]
+any_try_exprs(  //dir=expr
+  int id: @any_try_expr ref,
+  int sub_expr: @expr_or_none ref
+);
+
+applied_property_wrapper_exprs(  //dir=expr
+  unique int id: @applied_property_wrapper_expr,
+  int kind: int ref,
+  int value: @expr_or_none ref,
+  int param: @param_decl_or_none ref
+);
+
+@apply_expr =
+  @binary_expr
+| @call_expr
+| @postfix_unary_expr
+| @prefix_unary_expr
+| @self_apply_expr
+;
+
+#keyset[id]
+apply_exprs(  //dir=expr
+  int id: @apply_expr ref,
+  int function: @expr_or_none ref
+);
+
+#keyset[id, index]
+apply_expr_arguments(  //dir=expr
+  int id: @apply_expr ref,
+  int index: int ref,
+  int argument: @argument_or_none ref
+);
+
+assign_exprs(  //dir=expr
+  unique int id: @assign_expr,
+  int dest: @expr_or_none ref,
+  int source: @expr_or_none ref
+);
+
+bind_optional_exprs(  //dir=expr
+  unique int id: @bind_optional_expr,
+  int sub_expr: @expr_or_none ref
+);
+
+capture_list_exprs(  //dir=expr
+  unique int id: @capture_list_expr,
+  int closure_body: @closure_expr_or_none ref
+);
+
+#keyset[id, index]
+capture_list_expr_binding_decls(  //dir=expr
+  int id: @capture_list_expr ref,
+  int index: int ref,
+  int binding_decl: @pattern_binding_decl_or_none ref
+);
+
+@collection_expr =
+  @array_expr
+| @dictionary_expr
+;
+
+decl_ref_exprs(  //dir=expr
+  unique int id: @decl_ref_expr,
+  int decl: @decl_or_none ref
+);
+
+#keyset[id, index]
+decl_ref_expr_replacement_types(  //dir=expr
+  int id: @decl_ref_expr ref,
+  int index: int ref,
+  int replacement_type: @type_or_none ref
+);
+
+#keyset[id]
+decl_ref_expr_has_direct_to_storage_semantics(  //dir=expr
+  int id: @decl_ref_expr ref
+);
+
+#keyset[id]
+decl_ref_expr_has_direct_to_implementation_semantics(  //dir=expr
+  int id: @decl_ref_expr ref
+);
+
+#keyset[id]
+decl_ref_expr_has_ordinary_semantics(  //dir=expr
+  int id: @decl_ref_expr ref
+);
+
+default_argument_exprs(  //dir=expr
+  unique int id: @default_argument_expr,
+  int param_decl: @param_decl_or_none ref,
+  int param_index: int ref
+);
+
+#keyset[id]
+default_argument_expr_caller_side_defaults(  //dir=expr
+  int id: @default_argument_expr ref,
+  int caller_side_default: @expr_or_none ref
+);
+
+discard_assignment_exprs(  //dir=expr
+  unique int id: @discard_assignment_expr
+);
+
+dot_syntax_base_ignored_exprs(  //dir=expr
+  unique int id: @dot_syntax_base_ignored_expr,
+  int qualifier: @expr_or_none ref,
+  int sub_expr: @expr_or_none ref
+);
+
+dynamic_type_exprs(  //dir=expr
+  unique int id: @dynamic_type_expr,
+  int base: @expr_or_none ref
+);
+
+enum_is_case_exprs(  //dir=expr
+  unique int id: @enum_is_case_expr,
+  int sub_expr: @expr_or_none ref,
+  int element: @enum_element_decl_or_none ref
+);
+
+error_exprs(  //dir=expr
+  unique int id: @error_expr
+);
+
+@explicit_cast_expr =
+  @checked_cast_expr
+| @coerce_expr
+;
+
+#keyset[id]
+explicit_cast_exprs(  //dir=expr
+  int id: @explicit_cast_expr ref,
+  int sub_expr: @expr_or_none ref
+);
+
+force_value_exprs(  //dir=expr
+  unique int id: @force_value_expr,
+  int sub_expr: @expr_or_none ref
+);
+
+@identity_expr =
+  @await_expr
+| @dot_self_expr
+| @paren_expr
+| @unresolved_member_chain_result_expr
+;
+
+#keyset[id]
+identity_exprs(  //dir=expr
+  int id: @identity_expr ref,
+  int sub_expr: @expr_or_none ref
+);
+
+if_exprs(  //dir=expr
+  unique int id: @if_expr,
+  int condition: @expr_or_none ref,
+  int then_expr: @expr_or_none ref,
+  int else_expr: @expr_or_none ref
+);
+
+@implicit_conversion_expr =
+  @any_hashable_erasure_expr
+| @archetype_to_super_expr
+| @array_to_pointer_expr
+| @bridge_from_obj_c_expr
+| @bridge_to_obj_c_expr
+| @class_metatype_to_object_expr
+| @collection_upcast_conversion_expr
+| @conditional_bridge_from_obj_c_expr
+| @covariant_function_conversion_expr
+| @covariant_return_conversion_expr
+| @derived_to_base_expr
+| @destructure_tuple_expr
+| @differentiable_function_expr
+| @differentiable_function_extract_original_expr
+| @erasure_expr
+| @existential_metatype_to_object_expr
+| @foreign_object_conversion_expr
+| @function_conversion_expr
+| @in_out_to_pointer_expr
+| @inject_into_optional_expr
+| @linear_function_expr
+| @linear_function_extract_original_expr
+| @linear_to_differentiable_function_expr
+| @load_expr
+| @metatype_conversion_expr
+| @pointer_to_pointer_expr
+| @protocol_metatype_to_object_expr
+| @string_to_pointer_expr
+| @underlying_to_opaque_expr
+| @unevaluated_instance_expr
+| @unresolved_type_conversion_expr
+;
+
+#keyset[id]
+implicit_conversion_exprs(  //dir=expr
+  int id: @implicit_conversion_expr ref,
+  int sub_expr: @expr_or_none ref
+);
+
+in_out_exprs(  //dir=expr
+  unique int id: @in_out_expr,
+  int sub_expr: @expr_or_none ref
+);
+
+key_path_application_exprs(  //dir=expr
+  unique int id: @key_path_application_expr,
+  int base: @expr_or_none ref,
+  int key_path: @expr_or_none ref
+);
+
+key_path_dot_exprs(  //dir=expr
+  unique int id: @key_path_dot_expr
+);
+
+key_path_exprs(  //dir=expr
+  unique int id: @key_path_expr
+);
+
+#keyset[id]
+key_path_expr_roots(  //dir=expr
+  int id: @key_path_expr ref,
+  int root: @type_repr_or_none ref
+);
+
+#keyset[id]
+key_path_expr_parsed_paths(  //dir=expr
+  int id: @key_path_expr ref,
+  int parsed_path: @expr_or_none ref
+);
+
+lazy_initializer_exprs(  //dir=expr
+  unique int id: @lazy_initializer_expr,
+  int sub_expr: @expr_or_none ref
+);
+
+@literal_expr =
+  @builtin_literal_expr
+| @interpolated_string_literal_expr
+| @nil_literal_expr
+| @object_literal_expr
+| @regex_literal_expr
+;
+
+@lookup_expr =
+  @dynamic_lookup_expr
+| @member_ref_expr
+| @subscript_expr
+;
+
+#keyset[id]
+lookup_exprs(  //dir=expr
+  int id: @lookup_expr ref,
+  int base: @expr_or_none ref
+);
+
+#keyset[id]
+lookup_expr_members(  //dir=expr
+  int id: @lookup_expr ref,
+  int member: @decl_or_none ref
+);
+
+make_temporarily_escapable_exprs(  //dir=expr
+  unique int id: @make_temporarily_escapable_expr,
+  int escaping_closure: @opaque_value_expr_or_none ref,
+  int nonescaping_closure: @expr_or_none ref,
+  int sub_expr: @expr_or_none ref
+);
+
+obj_c_selector_exprs(  //dir=expr
+  unique int id: @obj_c_selector_expr,
+  int sub_expr: @expr_or_none ref,
+  int method: @abstract_function_decl_or_none ref
+);
+
+one_way_exprs(  //dir=expr
+  unique int id: @one_way_expr,
+  int sub_expr: @expr_or_none ref
+);
+
+opaque_value_exprs(  //dir=expr
+  unique int id: @opaque_value_expr
+);
+
+open_existential_exprs(  //dir=expr
+  unique int id: @open_existential_expr,
+  int sub_expr: @expr_or_none ref,
+  int existential: @expr_or_none ref,
+  int opaque_expr: @opaque_value_expr_or_none ref
+);
+
+optional_evaluation_exprs(  //dir=expr
+  unique int id: @optional_evaluation_expr,
+  int sub_expr: @expr_or_none ref
+);
+
+other_constructor_decl_ref_exprs(  //dir=expr
+  unique int id: @other_constructor_decl_ref_expr,
+  int constructor_decl: @constructor_decl_or_none ref
+);
+
+overloaded_decl_ref_exprs(  //dir=expr
+  unique int id: @overloaded_decl_ref_expr
+);
+
+#keyset[id, index]
+overloaded_decl_ref_expr_possible_declarations(  //dir=expr
+  int id: @overloaded_decl_ref_expr ref,
+  int index: int ref,
+  int possible_declaration: @value_decl_or_none ref
+);
+
+property_wrapper_value_placeholder_exprs(  //dir=expr
+  unique int id: @property_wrapper_value_placeholder_expr,
+  int placeholder: @opaque_value_expr_or_none ref
+);
+
+#keyset[id]
+property_wrapper_value_placeholder_expr_wrapped_values(  //dir=expr
+  int id: @property_wrapper_value_placeholder_expr ref,
+  int wrapped_value: @expr_or_none ref
+);
+
+rebind_self_in_constructor_exprs(  //dir=expr
+  unique int id: @rebind_self_in_constructor_expr,
+  int sub_expr: @expr_or_none ref,
+  int self: @var_decl_or_none ref
+);
+
+sequence_exprs(  //dir=expr
+  unique int id: @sequence_expr
+);
+
+#keyset[id, index]
+sequence_expr_elements(  //dir=expr
+  int id: @sequence_expr ref,
+  int index: int ref,
+  int element: @expr_or_none ref
+);
+
+super_ref_exprs(  //dir=expr
+  unique int id: @super_ref_expr,
+  int self: @var_decl_or_none ref
+);
+
+tap_exprs(  //dir=expr
+  unique int id: @tap_expr,
+  int body: @brace_stmt_or_none ref,
+  int var: @var_decl_or_none ref
+);
+
+#keyset[id]
+tap_expr_sub_exprs(  //dir=expr
+  int id: @tap_expr ref,
+  int sub_expr: @expr_or_none ref
+);
+
+tuple_element_exprs(  //dir=expr
+  unique int id: @tuple_element_expr,
+  int sub_expr: @expr_or_none ref,
+  int index: int ref
+);
+
+tuple_exprs(  //dir=expr
+  unique int id: @tuple_expr
+);
+
+#keyset[id, index]
+tuple_expr_elements(  //dir=expr
+  int id: @tuple_expr ref,
+  int index: int ref,
+  int element: @expr_or_none ref
+);
+
+type_exprs(  //dir=expr
+  unique int id: @type_expr
+);
+
+#keyset[id]
+type_expr_type_reprs(  //dir=expr
+  int id: @type_expr ref,
+  int type_repr: @type_repr_or_none ref
+);
+
+unresolved_decl_ref_exprs(  //dir=expr
+  unique int id: @unresolved_decl_ref_expr
+);
+
+#keyset[id]
+unresolved_decl_ref_expr_names(  //dir=expr
+  int id: @unresolved_decl_ref_expr ref,
+  string name: string ref
+);
+
+unresolved_dot_exprs(  //dir=expr
+  unique int id: @unresolved_dot_expr,
+  int base: @expr_or_none ref,
+  string name: string ref
+);
+
+unresolved_member_exprs(  //dir=expr
+  unique int id: @unresolved_member_expr,
+  string name: string ref
+);
+
+unresolved_pattern_exprs(  //dir=expr
+  unique int id: @unresolved_pattern_expr,
+  int sub_pattern: @pattern_or_none ref
+);
+
+unresolved_specialize_exprs(  //dir=expr
+  unique int id: @unresolved_specialize_expr,
+  int sub_expr: @expr_or_none ref
+);
+
+vararg_expansion_exprs(  //dir=expr
+  unique int id: @vararg_expansion_expr,
+  int sub_expr: @expr_or_none ref
+);
+
+any_hashable_erasure_exprs(  //dir=expr
+  unique int id: @any_hashable_erasure_expr
+);
+
+archetype_to_super_exprs(  //dir=expr
+  unique int id: @archetype_to_super_expr
+);
+
+array_exprs(  //dir=expr
+  unique int id: @array_expr
+);
+
+#keyset[id, index]
+array_expr_elements(  //dir=expr
+  int id: @array_expr ref,
+  int index: int ref,
+  int element: @expr_or_none ref
+);
+
+array_to_pointer_exprs(  //dir=expr
+  unique int id: @array_to_pointer_expr
+);
+
+auto_closure_exprs(  //dir=expr
+  unique int id: @auto_closure_expr
+);
+
+await_exprs(  //dir=expr
+  unique int id: @await_expr
+);
+
+binary_exprs(  //dir=expr
+  unique int id: @binary_expr
+);
+
+bridge_from_obj_c_exprs(  //dir=expr
+  unique int id: @bridge_from_obj_c_expr
+);
+
+bridge_to_obj_c_exprs(  //dir=expr
+  unique int id: @bridge_to_obj_c_expr
+);
+
+@builtin_literal_expr =
+  @boolean_literal_expr
+| @magic_identifier_literal_expr
+| @number_literal_expr
+| @string_literal_expr
+;
+
+call_exprs(  //dir=expr
+  unique int id: @call_expr
+);
+
+@checked_cast_expr =
+  @conditional_checked_cast_expr
+| @forced_checked_cast_expr
+| @is_expr
+;
+
+class_metatype_to_object_exprs(  //dir=expr
+  unique int id: @class_metatype_to_object_expr
+);
+
+closure_exprs(  //dir=expr
+  unique int id: @closure_expr
+);
+
+coerce_exprs(  //dir=expr
+  unique int id: @coerce_expr
+);
+
+collection_upcast_conversion_exprs(  //dir=expr
+  unique int id: @collection_upcast_conversion_expr
+);
+
+conditional_bridge_from_obj_c_exprs(  //dir=expr
+  unique int id: @conditional_bridge_from_obj_c_expr
+);
+
+covariant_function_conversion_exprs(  //dir=expr
+  unique int id: @covariant_function_conversion_expr
+);
+
+covariant_return_conversion_exprs(  //dir=expr
+  unique int id: @covariant_return_conversion_expr
+);
+
+derived_to_base_exprs(  //dir=expr
+  unique int id: @derived_to_base_expr
+);
+
+destructure_tuple_exprs(  //dir=expr
+  unique int id: @destructure_tuple_expr
+);
+
+dictionary_exprs(  //dir=expr
+  unique int id: @dictionary_expr
+);
+
+#keyset[id, index]
+dictionary_expr_elements(  //dir=expr
+  int id: @dictionary_expr ref,
+  int index: int ref,
+  int element: @expr_or_none ref
+);
+
+differentiable_function_exprs(  //dir=expr
+  unique int id: @differentiable_function_expr
+);
+
+differentiable_function_extract_original_exprs(  //dir=expr
+  unique int id: @differentiable_function_extract_original_expr
+);
+
+dot_self_exprs(  //dir=expr
+  unique int id: @dot_self_expr
+);
+
+@dynamic_lookup_expr =
+  @dynamic_member_ref_expr
+| @dynamic_subscript_expr
+;
+
+erasure_exprs(  //dir=expr
+  unique int id: @erasure_expr
+);
+
+existential_metatype_to_object_exprs(  //dir=expr
+  unique int id: @existential_metatype_to_object_expr
+);
+
+force_try_exprs(  //dir=expr
+  unique int id: @force_try_expr
+);
+
+foreign_object_conversion_exprs(  //dir=expr
+  unique int id: @foreign_object_conversion_expr
+);
+
+function_conversion_exprs(  //dir=expr
+  unique int id: @function_conversion_expr
+);
+
+in_out_to_pointer_exprs(  //dir=expr
+  unique int id: @in_out_to_pointer_expr
+);
+
+inject_into_optional_exprs(  //dir=expr
+  unique int id: @inject_into_optional_expr
+);
+
+interpolated_string_literal_exprs(  //dir=expr
+  unique int id: @interpolated_string_literal_expr
+);
+
+#keyset[id]
+interpolated_string_literal_expr_interpolation_exprs(  //dir=expr
+  int id: @interpolated_string_literal_expr ref,
+  int interpolation_expr: @opaque_value_expr_or_none ref
+);
+
+#keyset[id]
+interpolated_string_literal_expr_interpolation_count_exprs(  //dir=expr
+  int id: @interpolated_string_literal_expr ref,
+  int interpolation_count_expr: @expr_or_none ref
+);
+
+#keyset[id]
+interpolated_string_literal_expr_literal_capacity_exprs(  //dir=expr
+  int id: @interpolated_string_literal_expr ref,
+  int literal_capacity_expr: @expr_or_none ref
+);
+
+#keyset[id]
+interpolated_string_literal_expr_appending_exprs(  //dir=expr
+  int id: @interpolated_string_literal_expr ref,
+  int appending_expr: @tap_expr_or_none ref
+);
+
+linear_function_exprs(  //dir=expr
+  unique int id: @linear_function_expr
+);
+
+linear_function_extract_original_exprs(  //dir=expr
+  unique int id: @linear_function_extract_original_expr
+);
+
+linear_to_differentiable_function_exprs(  //dir=expr
+  unique int id: @linear_to_differentiable_function_expr
+);
+
+load_exprs(  //dir=expr
+  unique int id: @load_expr
+);
+
+member_ref_exprs(  //dir=expr
+  unique int id: @member_ref_expr
+);
+
+#keyset[id]
+member_ref_expr_has_direct_to_storage_semantics(  //dir=expr
+  int id: @member_ref_expr ref
+);
+
+#keyset[id]
+member_ref_expr_has_direct_to_implementation_semantics(  //dir=expr
+  int id: @member_ref_expr ref
+);
+
+#keyset[id]
+member_ref_expr_has_ordinary_semantics(  //dir=expr
+  int id: @member_ref_expr ref
+);
+
+metatype_conversion_exprs(  //dir=expr
+  unique int id: @metatype_conversion_expr
+);
+
+nil_literal_exprs(  //dir=expr
+  unique int id: @nil_literal_expr
+);
+
+object_literal_exprs(  //dir=expr
+  unique int id: @object_literal_expr,
+  int kind: int ref
+);
+
+#keyset[id, index]
+object_literal_expr_arguments(  //dir=expr
+  int id: @object_literal_expr ref,
+  int index: int ref,
+  int argument: @argument_or_none ref
+);
+
+optional_try_exprs(  //dir=expr
+  unique int id: @optional_try_expr
+);
+
+paren_exprs(  //dir=expr
+  unique int id: @paren_expr
+);
+
+pointer_to_pointer_exprs(  //dir=expr
+  unique int id: @pointer_to_pointer_expr
+);
+
+postfix_unary_exprs(  //dir=expr
+  unique int id: @postfix_unary_expr
+);
+
+prefix_unary_exprs(  //dir=expr
+  unique int id: @prefix_unary_expr
+);
+
+protocol_metatype_to_object_exprs(  //dir=expr
+  unique int id: @protocol_metatype_to_object_expr
+);
+
+regex_literal_exprs(  //dir=expr
+  unique int id: @regex_literal_expr
+);
+
+@self_apply_expr =
+  @constructor_ref_call_expr
+| @dot_syntax_call_expr
+;
+
+#keyset[id]
+self_apply_exprs(  //dir=expr
+  int id: @self_apply_expr ref,
+  int base: @expr_or_none ref
+);
+
+string_to_pointer_exprs(  //dir=expr
+  unique int id: @string_to_pointer_expr
+);
+
+subscript_exprs(  //dir=expr
+  unique int id: @subscript_expr
+);
+
+#keyset[id, index]
+subscript_expr_arguments(  //dir=expr
+  int id: @subscript_expr ref,
+  int index: int ref,
+  int argument: @argument_or_none ref
+);
+
+#keyset[id]
+subscript_expr_has_direct_to_storage_semantics(  //dir=expr
+  int id: @subscript_expr ref
+);
+
+#keyset[id]
+subscript_expr_has_direct_to_implementation_semantics(  //dir=expr
+  int id: @subscript_expr ref
+);
+
+#keyset[id]
+subscript_expr_has_ordinary_semantics(  //dir=expr
+  int id: @subscript_expr ref
+);
+
+try_exprs(  //dir=expr
+  unique int id: @try_expr
+);
+
+underlying_to_opaque_exprs(  //dir=expr
+  unique int id: @underlying_to_opaque_expr
+);
+
+unevaluated_instance_exprs(  //dir=expr
+  unique int id: @unevaluated_instance_expr
+);
+
+unresolved_member_chain_result_exprs(  //dir=expr
+  unique int id: @unresolved_member_chain_result_expr
+);
+
+unresolved_type_conversion_exprs(  //dir=expr
+  unique int id: @unresolved_type_conversion_expr
+);
+
+boolean_literal_exprs(  //dir=expr
+  unique int id: @boolean_literal_expr,
+  boolean value: boolean ref
+);
+
+conditional_checked_cast_exprs(  //dir=expr
+  unique int id: @conditional_checked_cast_expr
+);
+
+constructor_ref_call_exprs(  //dir=expr
+  unique int id: @constructor_ref_call_expr
+);
+
+dot_syntax_call_exprs(  //dir=expr
+  unique int id: @dot_syntax_call_expr
+);
+
+dynamic_member_ref_exprs(  //dir=expr
+  unique int id: @dynamic_member_ref_expr
+);
+
+dynamic_subscript_exprs(  //dir=expr
+  unique int id: @dynamic_subscript_expr
+);
+
+forced_checked_cast_exprs(  //dir=expr
+  unique int id: @forced_checked_cast_expr
+);
+
+is_exprs(  //dir=expr
+  unique int id: @is_expr
+);
+
+magic_identifier_literal_exprs(  //dir=expr
+  unique int id: @magic_identifier_literal_expr,
+  string kind: string ref
+);
+
+@number_literal_expr =
+  @float_literal_expr
+| @integer_literal_expr
+;
+
+string_literal_exprs(  //dir=expr
+  unique int id: @string_literal_expr,
+  string value: string ref
+);
+
+float_literal_exprs(  //dir=expr
+  unique int id: @float_literal_expr,
+  string string_value: string ref
+);
+
+integer_literal_exprs(  //dir=expr
+  unique int id: @integer_literal_expr,
+  string string_value: string ref
+);
+
+@pattern =
+  @any_pattern
+| @binding_pattern
+| @bool_pattern
+| @enum_element_pattern
+| @expr_pattern
+| @is_pattern
+| @named_pattern
+| @optional_some_pattern
+| @paren_pattern
+| @tuple_pattern
+| @typed_pattern
+;
+
+any_patterns(  //dir=pattern
+  unique int id: @any_pattern
+);
+
+binding_patterns(  //dir=pattern
+  unique int id: @binding_pattern,
+  int sub_pattern: @pattern_or_none ref
+);
+
+bool_patterns(  //dir=pattern
+  unique int id: @bool_pattern,
+  boolean value: boolean ref
+);
+
+enum_element_patterns(  //dir=pattern
+  unique int id: @enum_element_pattern,
+  int element: @enum_element_decl_or_none ref
+);
+
+#keyset[id]
+enum_element_pattern_sub_patterns(  //dir=pattern
+  int id: @enum_element_pattern ref,
+  int sub_pattern: @pattern_or_none ref
+);
+
+expr_patterns(  //dir=pattern
+  unique int id: @expr_pattern,
+  int sub_expr: @expr_or_none ref
+);
+
+is_patterns(  //dir=pattern
+  unique int id: @is_pattern
+);
+
+#keyset[id]
+is_pattern_cast_type_reprs(  //dir=pattern
+  int id: @is_pattern ref,
+  int cast_type_repr: @type_repr_or_none ref
+);
+
+#keyset[id]
+is_pattern_sub_patterns(  //dir=pattern
+  int id: @is_pattern ref,
+  int sub_pattern: @pattern_or_none ref
+);
+
+named_patterns(  //dir=pattern
+  unique int id: @named_pattern,
+  string name: string ref
+);
+
+optional_some_patterns(  //dir=pattern
+  unique int id: @optional_some_pattern,
+  int sub_pattern: @pattern_or_none ref
+);
+
+paren_patterns(  //dir=pattern
+  unique int id: @paren_pattern,
+  int sub_pattern: @pattern_or_none ref
+);
+
+tuple_patterns(  //dir=pattern
+  unique int id: @tuple_pattern
+);
+
+#keyset[id, index]
+tuple_pattern_elements(  //dir=pattern
+  int id: @tuple_pattern ref,
+  int index: int ref,
+  int element: @pattern_or_none ref
+);
+
+typed_patterns(  //dir=pattern
+  unique int id: @typed_pattern,
+  int sub_pattern: @pattern_or_none ref
+);
+
+#keyset[id]
+typed_pattern_type_reprs(  //dir=pattern
+  int id: @typed_pattern ref,
+  int type_repr: @type_repr_or_none ref
+);
+
+case_label_items(  //dir=stmt
+  unique int id: @case_label_item,
+  int pattern: @pattern_or_none ref
+);
+
+#keyset[id]
+case_label_item_guards(  //dir=stmt
+  int id: @case_label_item ref,
+  int guard: @expr_or_none ref
+);
+
+condition_elements(  //dir=stmt
+  unique int id: @condition_element
+);
+
+#keyset[id]
+condition_element_booleans(  //dir=stmt
+  int id: @condition_element ref,
+  int boolean_: @expr_or_none ref
+);
+
+#keyset[id]
+condition_element_patterns(  //dir=stmt
+  int id: @condition_element ref,
+  int pattern: @pattern_or_none ref
+);
+
+#keyset[id]
+condition_element_initializers(  //dir=stmt
+  int id: @condition_element ref,
+  int initializer: @expr_or_none ref
+);
+
+@stmt =
+  @brace_stmt
+| @break_stmt
+| @case_stmt
+| @continue_stmt
+| @defer_stmt
+| @fail_stmt
+| @fallthrough_stmt
+| @labeled_stmt
+| @pound_assert_stmt
+| @return_stmt
+| @throw_stmt
+| @yield_stmt
+;
+
+stmt_conditions(  //dir=stmt
+  unique int id: @stmt_condition
+);
+
+#keyset[id, index]
+stmt_condition_elements(  //dir=stmt
+  int id: @stmt_condition ref,
+  int index: int ref,
+  int element: @condition_element_or_none ref
+);
+
+brace_stmts(  //dir=stmt
+  unique int id: @brace_stmt
+);
+
+#keyset[id, index]
+brace_stmt_elements(  //dir=stmt
+  int id: @brace_stmt ref,
+  int index: int ref,
+  int element: @ast_node_or_none ref
+);
+
+break_stmts(  //dir=stmt
+  unique int id: @break_stmt
+);
+
+#keyset[id]
+break_stmt_target_names(  //dir=stmt
+  int id: @break_stmt ref,
+  string target_name: string ref
+);
+
+#keyset[id]
+break_stmt_targets(  //dir=stmt
+  int id: @break_stmt ref,
+  int target: @stmt_or_none ref
+);
+
+case_stmts(  //dir=stmt
+  unique int id: @case_stmt,
+  int body: @stmt_or_none ref
+);
+
+#keyset[id, index]
+case_stmt_labels(  //dir=stmt
+  int id: @case_stmt ref,
+  int index: int ref,
+  int label: @case_label_item_or_none ref
+);
+
+#keyset[id, index]
+case_stmt_variables(  //dir=stmt
+  int id: @case_stmt ref,
+  int index: int ref,
+  int variable: @var_decl_or_none ref
+);
+
+continue_stmts(  //dir=stmt
+  unique int id: @continue_stmt
+);
+
+#keyset[id]
+continue_stmt_target_names(  //dir=stmt
+  int id: @continue_stmt ref,
+  string target_name: string ref
+);
+
+#keyset[id]
+continue_stmt_targets(  //dir=stmt
+  int id: @continue_stmt ref,
+  int target: @stmt_or_none ref
+);
+
+defer_stmts(  //dir=stmt
+  unique int id: @defer_stmt,
+  int body: @brace_stmt_or_none ref
+);
+
+fail_stmts(  //dir=stmt
+  unique int id: @fail_stmt
+);
+
+fallthrough_stmts(  //dir=stmt
+  unique int id: @fallthrough_stmt,
+  int fallthrough_source: @case_stmt_or_none ref,
+  int fallthrough_dest: @case_stmt_or_none ref
+);
+
+@labeled_stmt =
+  @do_catch_stmt
+| @do_stmt
+| @for_each_stmt
+| @labeled_conditional_stmt
+| @repeat_while_stmt
+| @switch_stmt
+;
+
+#keyset[id]
+labeled_stmt_labels(  //dir=stmt
+  int id: @labeled_stmt ref,
+  string label: string ref
+);
+
+pound_assert_stmts(  //dir=stmt
+  unique int id: @pound_assert_stmt,
+  int condition: @expr_or_none ref,
+  string message: string ref
+);
+
+return_stmts(  //dir=stmt
+  unique int id: @return_stmt
+);
+
+#keyset[id]
+return_stmt_results(  //dir=stmt
+  int id: @return_stmt ref,
+  int result: @expr_or_none ref
+);
+
+throw_stmts(  //dir=stmt
+  unique int id: @throw_stmt,
+  int sub_expr: @expr_or_none ref
+);
+
+yield_stmts(  //dir=stmt
+  unique int id: @yield_stmt
+);
+
+#keyset[id, index]
+yield_stmt_results(  //dir=stmt
+  int id: @yield_stmt ref,
+  int index: int ref,
+  int result: @expr_or_none ref
+);
+
+do_catch_stmts(  //dir=stmt
+  unique int id: @do_catch_stmt,
+  int body: @stmt_or_none ref
+);
+
+#keyset[id, index]
+do_catch_stmt_catches(  //dir=stmt
+  int id: @do_catch_stmt ref,
+  int index: int ref,
+  int catch: @case_stmt_or_none ref
+);
+
+do_stmts(  //dir=stmt
+  unique int id: @do_stmt,
+  int body: @brace_stmt_or_none ref
+);
+
+for_each_stmts(  //dir=stmt
+  unique int id: @for_each_stmt,
+  int pattern: @pattern_or_none ref,
+  int sequence: @expr_or_none ref,
+  int body: @brace_stmt_or_none ref
+);
+
+#keyset[id]
+for_each_stmt_wheres(  //dir=stmt
+  int id: @for_each_stmt ref,
+  int where: @expr_or_none ref
+);
+
+@labeled_conditional_stmt =
+  @guard_stmt
+| @if_stmt
+| @while_stmt
+;
+
+#keyset[id]
+labeled_conditional_stmts(  //dir=stmt
+  int id: @labeled_conditional_stmt ref,
+  int condition: @stmt_condition_or_none ref
+);
+
+repeat_while_stmts(  //dir=stmt
+  unique int id: @repeat_while_stmt,
+  int condition: @expr_or_none ref,
+  int body: @stmt_or_none ref
+);
+
+switch_stmts(  //dir=stmt
+  unique int id: @switch_stmt,
+  int expr: @expr_or_none ref
+);
+
+#keyset[id, index]
+switch_stmt_cases(  //dir=stmt
+  int id: @switch_stmt ref,
+  int index: int ref,
+  int case_: @case_stmt_or_none ref
+);
+
+guard_stmts(  //dir=stmt
+  unique int id: @guard_stmt,
+  int body: @brace_stmt_or_none ref
+);
+
+if_stmts(  //dir=stmt
+  unique int id: @if_stmt,
+  int then: @stmt_or_none ref
+);
+
+#keyset[id]
+if_stmt_elses(  //dir=stmt
+  int id: @if_stmt ref,
+  int else: @stmt_or_none ref
+);
+
+while_stmts(  //dir=stmt
+  unique int id: @while_stmt,
+  int body: @stmt_or_none ref
+);
+
+@type =
+  @any_function_type
+| @any_generic_type
+| @any_metatype_type
+| @builtin_type
+| @dependent_member_type
+| @dynamic_self_type
+| @error_type
+| @existential_type
+| @in_out_type
+| @l_value_type
+| @module_type
+| @parameterized_protocol_type
+| @protocol_composition_type
+| @reference_storage_type
+| @substitutable_type
+| @sugar_type
+| @tuple_type
+| @unresolved_type
+;
+
+#keyset[id]
+types(  //dir=type
+  int id: @type ref,
+  string name: string ref,
+  int canonical_type: @type_or_none ref
+);
+
+type_reprs(  //dir=type
+  unique int id: @type_repr,
+  int type_: @type_or_none ref
+);
+
+@any_function_type =
+  @function_type
+| @generic_function_type
+;
+
+#keyset[id]
+any_function_types(  //dir=type
+  int id: @any_function_type ref,
+  int result: @type_or_none ref
+);
+
+#keyset[id, index]
+any_function_type_param_types(  //dir=type
+  int id: @any_function_type ref,
+  int index: int ref,
+  int param_type: @type_or_none ref
+);
+
+#keyset[id, index]
+any_function_type_param_labels(  //dir=type
+  int id: @any_function_type ref,
+  int index: int ref,
+  string param_label: string ref
+);
+
+#keyset[id]
+any_function_type_is_throwing(  //dir=type
+  int id: @any_function_type ref
+);
+
+#keyset[id]
+any_function_type_is_async(  //dir=type
+  int id: @any_function_type ref
+);
+
+@any_generic_type =
+  @nominal_or_bound_generic_nominal_type
+| @unbound_generic_type
+;
+
+#keyset[id]
+any_generic_types(  //dir=type
+  int id: @any_generic_type ref,
+  int declaration: @decl_or_none ref
+);
+
+#keyset[id]
+any_generic_type_parents(  //dir=type
+  int id: @any_generic_type ref,
+  int parent: @type_or_none ref
+);
+
+@any_metatype_type =
+  @existential_metatype_type
+| @metatype_type
+;
+
+@builtin_type =
+  @any_builtin_integer_type
+| @builtin_bridge_object_type
+| @builtin_default_actor_storage_type
+| @builtin_executor_type
+| @builtin_float_type
+| @builtin_job_type
+| @builtin_native_object_type
+| @builtin_raw_pointer_type
+| @builtin_raw_unsafe_continuation_type
+| @builtin_unsafe_value_buffer_type
+| @builtin_vector_type
+;
+
+dependent_member_types(  //dir=type
+  unique int id: @dependent_member_type,
+  int base_type: @type_or_none ref,
+  int associated_type_decl: @associated_type_decl_or_none ref
+);
+
+dynamic_self_types(  //dir=type
+  unique int id: @dynamic_self_type,
+  int static_self_type: @type_or_none ref
+);
+
+error_types(  //dir=type
+  unique int id: @error_type
+);
+
+existential_types(  //dir=type
+  unique int id: @existential_type,
+  int constraint: @type_or_none ref
+);
+
+in_out_types(  //dir=type
+  unique int id: @in_out_type,
+  int object_type: @type_or_none ref
+);
+
+l_value_types(  //dir=type
+  unique int id: @l_value_type,
+  int object_type: @type_or_none ref
+);
+
+module_types(  //dir=type
+  unique int id: @module_type,
+  int module: @module_decl_or_none ref
+);
+
+parameterized_protocol_types(  //dir=type
+  unique int id: @parameterized_protocol_type,
+  int base: @protocol_type_or_none ref
+);
+
+#keyset[id, index]
+parameterized_protocol_type_args(  //dir=type
+  int id: @parameterized_protocol_type ref,
+  int index: int ref,
+  int arg: @type_or_none ref
+);
+
+protocol_composition_types(  //dir=type
+  unique int id: @protocol_composition_type
+);
+
+#keyset[id, index]
+protocol_composition_type_members(  //dir=type
+  int id: @protocol_composition_type ref,
+  int index: int ref,
+  int member: @type_or_none ref
+);
+
+@reference_storage_type =
+  @unmanaged_storage_type
+| @unowned_storage_type
+| @weak_storage_type
+;
+
+#keyset[id]
+reference_storage_types(  //dir=type
+  int id: @reference_storage_type ref,
+  int referent_type: @type_or_none ref
+);
+
+@substitutable_type =
+  @archetype_type
+| @generic_type_param_type
+;
+
+@sugar_type =
+  @paren_type
+| @syntax_sugar_type
+| @type_alias_type
+;
+
+tuple_types(  //dir=type
+  unique int id: @tuple_type
+);
+
+#keyset[id, index]
+tuple_type_types(  //dir=type
+  int id: @tuple_type ref,
+  int index: int ref,
+  int type_: @type_or_none ref
+);
+
+#keyset[id, index]
+tuple_type_names(  //dir=type
+  int id: @tuple_type ref,
+  int index: int ref,
+  string name: string ref
+);
+
+unresolved_types(  //dir=type
+  unique int id: @unresolved_type
+);
+
+@any_builtin_integer_type =
+  @builtin_integer_literal_type
+| @builtin_integer_type
+;
+
+@archetype_type =
+  @opaque_type_archetype_type
+| @opened_archetype_type
+| @primary_archetype_type
+;
+
+#keyset[id]
+archetype_types(  //dir=type
+  int id: @archetype_type ref,
+  int interface_type: @type_or_none ref
+);
+
+#keyset[id]
+archetype_type_superclasses(  //dir=type
+  int id: @archetype_type ref,
+  int superclass: @type_or_none ref
+);
+
+#keyset[id, index]
+archetype_type_protocols(  //dir=type
+  int id: @archetype_type ref,
+  int index: int ref,
+  int protocol: @protocol_decl_or_none ref
+);
+
+builtin_bridge_object_types(  //dir=type
+  unique int id: @builtin_bridge_object_type
+);
+
+builtin_default_actor_storage_types(  //dir=type
+  unique int id: @builtin_default_actor_storage_type
+);
+
+builtin_executor_types(  //dir=type
+  unique int id: @builtin_executor_type
+);
+
+builtin_float_types(  //dir=type
+  unique int id: @builtin_float_type
+);
+
+builtin_job_types(  //dir=type
+  unique int id: @builtin_job_type
+);
+
+builtin_native_object_types(  //dir=type
+  unique int id: @builtin_native_object_type
+);
+
+builtin_raw_pointer_types(  //dir=type
+  unique int id: @builtin_raw_pointer_type
+);
+
+builtin_raw_unsafe_continuation_types(  //dir=type
+  unique int id: @builtin_raw_unsafe_continuation_type
+);
+
+builtin_unsafe_value_buffer_types(  //dir=type
+  unique int id: @builtin_unsafe_value_buffer_type
+);
+
+builtin_vector_types(  //dir=type
+  unique int id: @builtin_vector_type
+);
+
+existential_metatype_types(  //dir=type
+  unique int id: @existential_metatype_type
+);
+
+function_types(  //dir=type
+  unique int id: @function_type
+);
+
+generic_function_types(  //dir=type
+  unique int id: @generic_function_type
+);
+
+#keyset[id, index]
+generic_function_type_generic_params(  //dir=type
+  int id: @generic_function_type ref,
+  int index: int ref,
+  int generic_param: @generic_type_param_type_or_none ref
+);
+
+generic_type_param_types(  //dir=type
+  unique int id: @generic_type_param_type
+);
+
+metatype_types(  //dir=type
+  unique int id: @metatype_type
+);
+
+@nominal_or_bound_generic_nominal_type =
+  @bound_generic_type
+| @nominal_type
+;
+
+paren_types(  //dir=type
+  unique int id: @paren_type,
+  int type_: @type_or_none ref
+);
+
+@syntax_sugar_type =
+  @dictionary_type
+| @unary_syntax_sugar_type
+;
+
+type_alias_types(  //dir=type
+  unique int id: @type_alias_type,
+  int decl: @type_alias_decl_or_none ref
+);
+
+unbound_generic_types(  //dir=type
+  unique int id: @unbound_generic_type
+);
+
+unmanaged_storage_types(  //dir=type
+  unique int id: @unmanaged_storage_type
+);
+
+unowned_storage_types(  //dir=type
+  unique int id: @unowned_storage_type
+);
+
+weak_storage_types(  //dir=type
+  unique int id: @weak_storage_type
+);
+
+@bound_generic_type =
+  @bound_generic_class_type
+| @bound_generic_enum_type
+| @bound_generic_struct_type
+;
+
+#keyset[id, index]
+bound_generic_type_arg_types(  //dir=type
+  int id: @bound_generic_type ref,
+  int index: int ref,
+  int arg_type: @type_or_none ref
+);
+
+builtin_integer_literal_types(  //dir=type
+  unique int id: @builtin_integer_literal_type
+);
+
+builtin_integer_types(  //dir=type
+  unique int id: @builtin_integer_type
+);
+
+#keyset[id]
+builtin_integer_type_widths(  //dir=type
+  int id: @builtin_integer_type ref,
+  int width: int ref
+);
+
+dictionary_types(  //dir=type
+  unique int id: @dictionary_type,
+  int key_type: @type_or_none ref,
+  int value_type: @type_or_none ref
+);
+
+@nominal_type =
+  @class_type
+| @enum_type
+| @protocol_type
+| @struct_type
+;
+
+opaque_type_archetype_types(  //dir=type
+  unique int id: @opaque_type_archetype_type,
+  int declaration: @opaque_type_decl_or_none ref
+);
+
+opened_archetype_types(  //dir=type
+  unique int id: @opened_archetype_type
+);
+
+primary_archetype_types(  //dir=type
+  unique int id: @primary_archetype_type
+);
+
+@unary_syntax_sugar_type =
+  @array_slice_type
+| @optional_type
+| @variadic_sequence_type
+;
+
+#keyset[id]
+unary_syntax_sugar_types(  //dir=type
+  int id: @unary_syntax_sugar_type ref,
+  int base_type: @type_or_none ref
+);
+
+array_slice_types(  //dir=type
+  unique int id: @array_slice_type
+);
+
+bound_generic_class_types(  //dir=type
+  unique int id: @bound_generic_class_type
+);
+
+bound_generic_enum_types(  //dir=type
+  unique int id: @bound_generic_enum_type
+);
+
+bound_generic_struct_types(  //dir=type
+  unique int id: @bound_generic_struct_type
+);
+
+class_types(  //dir=type
+  unique int id: @class_type
+);
+
+enum_types(  //dir=type
+  unique int id: @enum_type
+);
+
+optional_types(  //dir=type
+  unique int id: @optional_type
+);
+
+protocol_types(  //dir=type
+  unique int id: @protocol_type
+);
+
+struct_types(  //dir=type
+  unique int id: @struct_type
+);
+
+variadic_sequence_types(  //dir=type
+  unique int id: @variadic_sequence_type
+);
+
+@abstract_function_decl_or_none =
+  @abstract_function_decl
+| @unspecified_element
+;
+
+@accessor_decl_or_none =
+  @accessor_decl
+| @unspecified_element
+;
+
+@argument_or_none =
+  @argument
+| @unspecified_element
+;
+
+@associated_type_decl_or_none =
+  @associated_type_decl
+| @unspecified_element
+;
+
+@ast_node_or_none =
+  @ast_node
+| @unspecified_element
+;
+
+@brace_stmt_or_none =
+  @brace_stmt
+| @unspecified_element
+;
+
+@case_label_item_or_none =
+  @case_label_item
+| @unspecified_element
+;
+
+@case_stmt_or_none =
+  @case_stmt
+| @unspecified_element
+;
+
+@closure_expr_or_none =
+  @closure_expr
+| @unspecified_element
+;
+
+@condition_element_or_none =
+  @condition_element
+| @unspecified_element
+;
+
+@constructor_decl_or_none =
+  @constructor_decl
+| @unspecified_element
+;
+
+@decl_or_none =
+  @decl
+| @unspecified_element
+;
+
+@enum_element_decl_or_none =
+  @enum_element_decl
+| @unspecified_element
+;
+
+@expr_or_none =
+  @expr
+| @unspecified_element
+;
+
+@file_or_none =
+  @file
+| @unspecified_element
+;
+
+@generic_type_param_decl_or_none =
+  @generic_type_param_decl
+| @unspecified_element
+;
+
+@generic_type_param_type_or_none =
+  @generic_type_param_type
+| @unspecified_element
+;
+
+@location_or_none =
+  @location
+| @unspecified_element
+;
+
+@module_decl_or_none =
+  @module_decl
+| @unspecified_element
+;
+
+@nominal_type_decl_or_none =
+  @nominal_type_decl
+| @unspecified_element
+;
+
+@opaque_type_decl_or_none =
+  @opaque_type_decl
+| @unspecified_element
+;
+
+@opaque_value_expr_or_none =
+  @opaque_value_expr
+| @unspecified_element
+;
+
+@param_decl_or_none =
+  @param_decl
+| @unspecified_element
+;
+
+@pattern_or_none =
+  @pattern
+| @unspecified_element
+;
+
+@pattern_binding_decl_or_none =
+  @pattern_binding_decl
+| @unspecified_element
+;
+
+@precedence_group_decl_or_none =
+  @precedence_group_decl
+| @unspecified_element
+;
+
+@protocol_decl_or_none =
+  @protocol_decl
+| @unspecified_element
+;
+
+@protocol_type_or_none =
+  @protocol_type
+| @unspecified_element
+;
+
+@stmt_or_none =
+  @stmt
+| @unspecified_element
+;
+
+@stmt_condition_or_none =
+  @stmt_condition
+| @unspecified_element
+;
+
+@string_literal_expr_or_none =
+  @string_literal_expr
+| @unspecified_element
+;
+
+@tap_expr_or_none =
+  @tap_expr
+| @unspecified_element
+;
+
+@type_or_none =
+  @type
+| @unspecified_element
+;
+
+@type_alias_decl_or_none =
+  @type_alias_decl
+| @unspecified_element
+;
+
+@type_repr_or_none =
+  @type_repr
+| @unspecified_element
+;
+
+@value_decl_or_none =
+  @unspecified_element
+| @value_decl
+;
+
+@var_decl_or_none =
+  @unspecified_element
+| @var_decl
+;
diff --git a/swift/downgrades/1a6e9325bd60462e669e524438174deef4476df0/upgrade.properties b/swift/downgrades/1a6e9325bd60462e669e524438174deef4476df0/upgrade.properties
new file mode 100644
index 00000000000..c1ba8a9be36
--- /dev/null
+++ b/swift/downgrades/1a6e9325bd60462e669e524438174deef4476df0/upgrade.properties
@@ -0,0 +1,9 @@
+description: Revert adding missing Accessor and AccessSemantics cases
+compatibility: full
+accessor_decl_is_read.rel: delete
+accessor_decl_is_modify.rel: delete
+accessor_decl_is_unsafe_address.rel: delete
+accessor_decl_is_unsafe_mutable_address.rel: delete
+decl_ref_expr_has_distributed_thunk_semantics.rel: delete
+member_ref_expr_has_distributed_thunk_semantics.rel: delete
+subscript_expr_has_distributed_thunk_semantics.rel: delete
diff --git a/swift/ql/lib/upgrades/abbb8c9e8408841c2bc12e3deb2305f062f5399e/old.dbscheme b/swift/ql/lib/upgrades/abbb8c9e8408841c2bc12e3deb2305f062f5399e/old.dbscheme
new file mode 100644
index 00000000000..abbb8c9e840
--- /dev/null
+++ b/swift/ql/lib/upgrades/abbb8c9e8408841c2bc12e3deb2305f062f5399e/old.dbscheme
@@ -0,0 +1,2478 @@
+// generated by codegen/codegen.py
+
+// from prefix.dbscheme
+/**
+ * The source location of the snapshot.
+ */
+sourceLocationPrefix(
+  string prefix: string ref
+);
+
+
+// from schema.py
+
+@element =
+  @callable
+| @file
+| @generic_context
+| @iterable_decl_context
+| @locatable
+| @location
+| @type
+;
+
+#keyset[id]
+element_is_unknown(
+  int id: @element ref
+);
+
+@callable =
+  @abstract_closure_expr
+| @abstract_function_decl
+;
+
+#keyset[id]
+callable_self_params(
+  int id: @callable ref,
+  int self_param: @param_decl_or_none ref
+);
+
+#keyset[id, index]
+callable_params(
+  int id: @callable ref,
+  int index: int ref,
+  int param: @param_decl_or_none ref
+);
+
+#keyset[id]
+callable_bodies(
+  int id: @callable ref,
+  int body: @brace_stmt_or_none ref
+);
+
+@file =
+  @db_file
+;
+
+#keyset[id]
+files(
+  int id: @file ref,
+  string name: string ref
+);
+
+@locatable =
+  @argument
+| @ast_node
+| @comment
+| @diagnostics
+| @error_element
+;
+
+#keyset[id]
+locatable_locations(
+  int id: @locatable ref,
+  int location: @location_or_none ref
+);
+
+@location =
+  @db_location
+;
+
+#keyset[id]
+locations(
+  int id: @location ref,
+  int file: @file_or_none ref,
+  int start_line: int ref,
+  int start_column: int ref,
+  int end_line: int ref,
+  int end_column: int ref
+);
+
+@ast_node =
+  @case_label_item
+| @condition_element
+| @decl
+| @expr
+| @pattern
+| @stmt
+| @stmt_condition
+| @type_repr
+;
+
+comments(
+  unique int id: @comment,
+  string text: string ref
+);
+
+db_files(
+  unique int id: @db_file
+);
+
+db_locations(
+  unique int id: @db_location
+);
+
+diagnostics(
+  unique int id: @diagnostics,
+  string text: string ref,
+  int kind: int ref
+);
+
+@error_element =
+  @error_expr
+| @error_type
+| @overloaded_decl_ref_expr
+| @unresolved_decl_ref_expr
+| @unresolved_dot_expr
+| @unresolved_member_chain_result_expr
+| @unresolved_member_expr
+| @unresolved_pattern_expr
+| @unresolved_specialize_expr
+| @unresolved_type
+| @unresolved_type_conversion_expr
+| @unspecified_element
+;
+
+unspecified_elements(
+  unique int id: @unspecified_element,
+  string property: string ref,
+  string error: string ref
+);
+
+#keyset[id]
+unspecified_element_parents(
+  int id: @unspecified_element ref,
+  int parent: @element ref
+);
+
+#keyset[id]
+unspecified_element_indices(
+  int id: @unspecified_element ref,
+  int index: int ref
+);
+
+@decl =
+  @enum_case_decl
+| @extension_decl
+| @if_config_decl
+| @import_decl
+| @missing_member_decl
+| @operator_decl
+| @pattern_binding_decl
+| @pound_diagnostic_decl
+| @precedence_group_decl
+| @top_level_code_decl
+| @value_decl
+;
+
+#keyset[id]
+decls(  //dir=decl
+  int id: @decl ref,
+  int module: @module_decl_or_none ref
+);
+
+@generic_context =
+  @abstract_function_decl
+| @extension_decl
+| @generic_type_decl
+| @subscript_decl
+;
+
+#keyset[id, index]
+generic_context_generic_type_params(  //dir=decl
+  int id: @generic_context ref,
+  int index: int ref,
+  int generic_type_param: @generic_type_param_decl_or_none ref
+);
+
+@iterable_decl_context =
+  @extension_decl
+| @nominal_type_decl
+;
+
+#keyset[id, index]
+iterable_decl_context_members(  //dir=decl
+  int id: @iterable_decl_context ref,
+  int index: int ref,
+  int member: @decl_or_none ref
+);
+
+enum_case_decls(  //dir=decl
+  unique int id: @enum_case_decl
+);
+
+#keyset[id, index]
+enum_case_decl_elements(  //dir=decl
+  int id: @enum_case_decl ref,
+  int index: int ref,
+  int element: @enum_element_decl_or_none ref
+);
+
+extension_decls(  //dir=decl
+  unique int id: @extension_decl,
+  int extended_type_decl: @nominal_type_decl_or_none ref
+);
+
+if_config_decls(  //dir=decl
+  unique int id: @if_config_decl
+);
+
+#keyset[id, index]
+if_config_decl_active_elements(  //dir=decl
+  int id: @if_config_decl ref,
+  int index: int ref,
+  int active_element: @ast_node_or_none ref
+);
+
+import_decls(  //dir=decl
+  unique int id: @import_decl
+);
+
+#keyset[id]
+import_decl_is_exported(  //dir=decl
+  int id: @import_decl ref
+);
+
+#keyset[id]
+import_decl_imported_modules(  //dir=decl
+  int id: @import_decl ref,
+  int imported_module: @module_decl_or_none ref
+);
+
+#keyset[id, index]
+import_decl_declarations(  //dir=decl
+  int id: @import_decl ref,
+  int index: int ref,
+  int declaration: @value_decl_or_none ref
+);
+
+missing_member_decls(  //dir=decl
+  unique int id: @missing_member_decl,
+  string name: string ref
+);
+
+@operator_decl =
+  @infix_operator_decl
+| @postfix_operator_decl
+| @prefix_operator_decl
+;
+
+#keyset[id]
+operator_decls(  //dir=decl
+  int id: @operator_decl ref,
+  string name: string ref
+);
+
+pattern_binding_decls(  //dir=decl
+  unique int id: @pattern_binding_decl
+);
+
+#keyset[id, index]
+pattern_binding_decl_inits(  //dir=decl
+  int id: @pattern_binding_decl ref,
+  int index: int ref,
+  int init: @expr_or_none ref
+);
+
+#keyset[id, index]
+pattern_binding_decl_patterns(  //dir=decl
+  int id: @pattern_binding_decl ref,
+  int index: int ref,
+  int pattern: @pattern_or_none ref
+);
+
+pound_diagnostic_decls(  //dir=decl
+  unique int id: @pound_diagnostic_decl,
+  int kind: int ref,
+  int message: @string_literal_expr_or_none ref
+);
+
+precedence_group_decls(  //dir=decl
+  unique int id: @precedence_group_decl
+);
+
+top_level_code_decls(  //dir=decl
+  unique int id: @top_level_code_decl,
+  int body: @brace_stmt_or_none ref
+);
+
+@value_decl =
+  @abstract_function_decl
+| @abstract_storage_decl
+| @enum_element_decl
+| @type_decl
+;
+
+#keyset[id]
+value_decls(  //dir=decl
+  int id: @value_decl ref,
+  int interface_type: @type_or_none ref
+);
+
+@abstract_function_decl =
+  @constructor_decl
+| @destructor_decl
+| @func_decl
+;
+
+#keyset[id]
+abstract_function_decls(  //dir=decl
+  int id: @abstract_function_decl ref,
+  string name: string ref
+);
+
+@abstract_storage_decl =
+  @subscript_decl
+| @var_decl
+;
+
+#keyset[id, index]
+abstract_storage_decl_accessor_decls(  //dir=decl
+  int id: @abstract_storage_decl ref,
+  int index: int ref,
+  int accessor_decl: @accessor_decl_or_none ref
+);
+
+enum_element_decls(  //dir=decl
+  unique int id: @enum_element_decl,
+  string name: string ref
+);
+
+#keyset[id, index]
+enum_element_decl_params(  //dir=decl
+  int id: @enum_element_decl ref,
+  int index: int ref,
+  int param: @param_decl_or_none ref
+);
+
+infix_operator_decls(  //dir=decl
+  unique int id: @infix_operator_decl
+);
+
+#keyset[id]
+infix_operator_decl_precedence_groups(  //dir=decl
+  int id: @infix_operator_decl ref,
+  int precedence_group: @precedence_group_decl_or_none ref
+);
+
+postfix_operator_decls(  //dir=decl
+  unique int id: @postfix_operator_decl
+);
+
+prefix_operator_decls(  //dir=decl
+  unique int id: @prefix_operator_decl
+);
+
+@type_decl =
+  @abstract_type_param_decl
+| @generic_type_decl
+| @module_decl
+;
+
+#keyset[id]
+type_decls(  //dir=decl
+  int id: @type_decl ref,
+  string name: string ref
+);
+
+#keyset[id, index]
+type_decl_base_types(  //dir=decl
+  int id: @type_decl ref,
+  int index: int ref,
+  int base_type: @type_or_none ref
+);
+
+@abstract_type_param_decl =
+  @associated_type_decl
+| @generic_type_param_decl
+;
+
+constructor_decls(  //dir=decl
+  unique int id: @constructor_decl
+);
+
+destructor_decls(  //dir=decl
+  unique int id: @destructor_decl
+);
+
+@func_decl =
+  @accessor_decl
+| @concrete_func_decl
+;
+
+@generic_type_decl =
+  @nominal_type_decl
+| @opaque_type_decl
+| @type_alias_decl
+;
+
+module_decls(  //dir=decl
+  unique int id: @module_decl
+);
+
+#keyset[id]
+module_decl_is_builtin_module(  //dir=decl
+  int id: @module_decl ref
+);
+
+#keyset[id]
+module_decl_is_system_module(  //dir=decl
+  int id: @module_decl ref
+);
+
+#keyset[id, index]
+module_decl_imported_modules(  //dir=decl
+  int id: @module_decl ref,
+  int index: int ref,
+  int imported_module: @module_decl_or_none ref
+);
+
+#keyset[id, index]
+module_decl_exported_modules(  //dir=decl
+  int id: @module_decl ref,
+  int index: int ref,
+  int exported_module: @module_decl_or_none ref
+);
+
+subscript_decls(  //dir=decl
+  unique int id: @subscript_decl,
+  int element_type: @type_or_none ref
+);
+
+#keyset[id, index]
+subscript_decl_params(  //dir=decl
+  int id: @subscript_decl ref,
+  int index: int ref,
+  int param: @param_decl_or_none ref
+);
+
+@var_decl =
+  @concrete_var_decl
+| @param_decl
+;
+
+#keyset[id]
+var_decls(  //dir=decl
+  int id: @var_decl ref,
+  string name: string ref,
+  int type_: @type_or_none ref
+);
+
+#keyset[id]
+var_decl_attached_property_wrapper_types(  //dir=decl
+  int id: @var_decl ref,
+  int attached_property_wrapper_type: @type_or_none ref
+);
+
+#keyset[id]
+var_decl_parent_patterns(  //dir=decl
+  int id: @var_decl ref,
+  int parent_pattern: @pattern_or_none ref
+);
+
+#keyset[id]
+var_decl_parent_initializers(  //dir=decl
+  int id: @var_decl ref,
+  int parent_initializer: @expr_or_none ref
+);
+
+#keyset[id]
+var_decl_property_wrapper_backing_var_bindings(  //dir=decl
+  int id: @var_decl ref,
+  int property_wrapper_backing_var_binding: @pattern_binding_decl_or_none ref
+);
+
+#keyset[id]
+var_decl_property_wrapper_backing_vars(  //dir=decl
+  int id: @var_decl ref,
+  int property_wrapper_backing_var: @var_decl_or_none ref
+);
+
+#keyset[id]
+var_decl_property_wrapper_projection_var_bindings(  //dir=decl
+  int id: @var_decl ref,
+  int property_wrapper_projection_var_binding: @pattern_binding_decl_or_none ref
+);
+
+#keyset[id]
+var_decl_property_wrapper_projection_vars(  //dir=decl
+  int id: @var_decl ref,
+  int property_wrapper_projection_var: @var_decl_or_none ref
+);
+
+accessor_decls(  //dir=decl
+  unique int id: @accessor_decl
+);
+
+#keyset[id]
+accessor_decl_is_getter(  //dir=decl
+  int id: @accessor_decl ref
+);
+
+#keyset[id]
+accessor_decl_is_setter(  //dir=decl
+  int id: @accessor_decl ref
+);
+
+#keyset[id]
+accessor_decl_is_will_set(  //dir=decl
+  int id: @accessor_decl ref
+);
+
+#keyset[id]
+accessor_decl_is_did_set(  //dir=decl
+  int id: @accessor_decl ref
+);
+
+associated_type_decls(  //dir=decl
+  unique int id: @associated_type_decl
+);
+
+concrete_func_decls(  //dir=decl
+  unique int id: @concrete_func_decl
+);
+
+concrete_var_decls(  //dir=decl
+  unique int id: @concrete_var_decl,
+  int introducer_int: int ref
+);
+
+generic_type_param_decls(  //dir=decl
+  unique int id: @generic_type_param_decl
+);
+
+@nominal_type_decl =
+  @class_decl
+| @enum_decl
+| @protocol_decl
+| @struct_decl
+;
+
+#keyset[id]
+nominal_type_decls(  //dir=decl
+  int id: @nominal_type_decl ref,
+  int type_: @type_or_none ref
+);
+
+opaque_type_decls(  //dir=decl
+  unique int id: @opaque_type_decl,
+  int naming_declaration: @value_decl_or_none ref
+);
+
+#keyset[id, index]
+opaque_type_decl_opaque_generic_params(  //dir=decl
+  int id: @opaque_type_decl ref,
+  int index: int ref,
+  int opaque_generic_param: @generic_type_param_type_or_none ref
+);
+
+param_decls(  //dir=decl
+  unique int id: @param_decl
+);
+
+#keyset[id]
+param_decl_is_inout(  //dir=decl
+  int id: @param_decl ref
+);
+
+#keyset[id]
+param_decl_property_wrapper_local_wrapped_var_bindings(  //dir=decl
+  int id: @param_decl ref,
+  int property_wrapper_local_wrapped_var_binding: @pattern_binding_decl_or_none ref
+);
+
+#keyset[id]
+param_decl_property_wrapper_local_wrapped_vars(  //dir=decl
+  int id: @param_decl ref,
+  int property_wrapper_local_wrapped_var: @var_decl_or_none ref
+);
+
+type_alias_decls(  //dir=decl
+  unique int id: @type_alias_decl
+);
+
+class_decls(  //dir=decl
+  unique int id: @class_decl
+);
+
+enum_decls(  //dir=decl
+  unique int id: @enum_decl
+);
+
+protocol_decls(  //dir=decl
+  unique int id: @protocol_decl
+);
+
+struct_decls(  //dir=decl
+  unique int id: @struct_decl
+);
+
+arguments(  //dir=expr
+  unique int id: @argument,
+  string label: string ref,
+  int expr: @expr_or_none ref
+);
+
+@expr =
+  @abstract_closure_expr
+| @any_try_expr
+| @applied_property_wrapper_expr
+| @apply_expr
+| @assign_expr
+| @bind_optional_expr
+| @capture_list_expr
+| @collection_expr
+| @decl_ref_expr
+| @default_argument_expr
+| @discard_assignment_expr
+| @dot_syntax_base_ignored_expr
+| @dynamic_type_expr
+| @enum_is_case_expr
+| @error_expr
+| @explicit_cast_expr
+| @force_value_expr
+| @identity_expr
+| @if_expr
+| @implicit_conversion_expr
+| @in_out_expr
+| @key_path_application_expr
+| @key_path_dot_expr
+| @key_path_expr
+| @lazy_initializer_expr
+| @literal_expr
+| @lookup_expr
+| @make_temporarily_escapable_expr
+| @obj_c_selector_expr
+| @one_way_expr
+| @opaque_value_expr
+| @open_existential_expr
+| @optional_evaluation_expr
+| @other_constructor_decl_ref_expr
+| @overloaded_decl_ref_expr
+| @property_wrapper_value_placeholder_expr
+| @rebind_self_in_constructor_expr
+| @sequence_expr
+| @super_ref_expr
+| @tap_expr
+| @tuple_element_expr
+| @tuple_expr
+| @type_expr
+| @unresolved_decl_ref_expr
+| @unresolved_dot_expr
+| @unresolved_member_expr
+| @unresolved_pattern_expr
+| @unresolved_specialize_expr
+| @vararg_expansion_expr
+;
+
+#keyset[id]
+expr_types(  //dir=expr
+  int id: @expr ref,
+  int type_: @type_or_none ref
+);
+
+@abstract_closure_expr =
+  @auto_closure_expr
+| @closure_expr
+;
+
+@any_try_expr =
+  @force_try_expr
+| @optional_try_expr
+| @try_expr
+;
+
+#keyset[id]
+any_try_exprs(  //dir=expr
+  int id: @any_try_expr ref,
+  int sub_expr: @expr_or_none ref
+);
+
+applied_property_wrapper_exprs(  //dir=expr
+  unique int id: @applied_property_wrapper_expr,
+  int kind: int ref,
+  int value: @expr_or_none ref,
+  int param: @param_decl_or_none ref
+);
+
+@apply_expr =
+  @binary_expr
+| @call_expr
+| @postfix_unary_expr
+| @prefix_unary_expr
+| @self_apply_expr
+;
+
+#keyset[id]
+apply_exprs(  //dir=expr
+  int id: @apply_expr ref,
+  int function: @expr_or_none ref
+);
+
+#keyset[id, index]
+apply_expr_arguments(  //dir=expr
+  int id: @apply_expr ref,
+  int index: int ref,
+  int argument: @argument_or_none ref
+);
+
+assign_exprs(  //dir=expr
+  unique int id: @assign_expr,
+  int dest: @expr_or_none ref,
+  int source: @expr_or_none ref
+);
+
+bind_optional_exprs(  //dir=expr
+  unique int id: @bind_optional_expr,
+  int sub_expr: @expr_or_none ref
+);
+
+capture_list_exprs(  //dir=expr
+  unique int id: @capture_list_expr,
+  int closure_body: @closure_expr_or_none ref
+);
+
+#keyset[id, index]
+capture_list_expr_binding_decls(  //dir=expr
+  int id: @capture_list_expr ref,
+  int index: int ref,
+  int binding_decl: @pattern_binding_decl_or_none ref
+);
+
+@collection_expr =
+  @array_expr
+| @dictionary_expr
+;
+
+decl_ref_exprs(  //dir=expr
+  unique int id: @decl_ref_expr,
+  int decl: @decl_or_none ref
+);
+
+#keyset[id, index]
+decl_ref_expr_replacement_types(  //dir=expr
+  int id: @decl_ref_expr ref,
+  int index: int ref,
+  int replacement_type: @type_or_none ref
+);
+
+#keyset[id]
+decl_ref_expr_has_direct_to_storage_semantics(  //dir=expr
+  int id: @decl_ref_expr ref
+);
+
+#keyset[id]
+decl_ref_expr_has_direct_to_implementation_semantics(  //dir=expr
+  int id: @decl_ref_expr ref
+);
+
+#keyset[id]
+decl_ref_expr_has_ordinary_semantics(  //dir=expr
+  int id: @decl_ref_expr ref
+);
+
+default_argument_exprs(  //dir=expr
+  unique int id: @default_argument_expr,
+  int param_decl: @param_decl_or_none ref,
+  int param_index: int ref
+);
+
+#keyset[id]
+default_argument_expr_caller_side_defaults(  //dir=expr
+  int id: @default_argument_expr ref,
+  int caller_side_default: @expr_or_none ref
+);
+
+discard_assignment_exprs(  //dir=expr
+  unique int id: @discard_assignment_expr
+);
+
+dot_syntax_base_ignored_exprs(  //dir=expr
+  unique int id: @dot_syntax_base_ignored_expr,
+  int qualifier: @expr_or_none ref,
+  int sub_expr: @expr_or_none ref
+);
+
+dynamic_type_exprs(  //dir=expr
+  unique int id: @dynamic_type_expr,
+  int base: @expr_or_none ref
+);
+
+enum_is_case_exprs(  //dir=expr
+  unique int id: @enum_is_case_expr,
+  int sub_expr: @expr_or_none ref,
+  int element: @enum_element_decl_or_none ref
+);
+
+error_exprs(  //dir=expr
+  unique int id: @error_expr
+);
+
+@explicit_cast_expr =
+  @checked_cast_expr
+| @coerce_expr
+;
+
+#keyset[id]
+explicit_cast_exprs(  //dir=expr
+  int id: @explicit_cast_expr ref,
+  int sub_expr: @expr_or_none ref
+);
+
+force_value_exprs(  //dir=expr
+  unique int id: @force_value_expr,
+  int sub_expr: @expr_or_none ref
+);
+
+@identity_expr =
+  @await_expr
+| @dot_self_expr
+| @paren_expr
+| @unresolved_member_chain_result_expr
+;
+
+#keyset[id]
+identity_exprs(  //dir=expr
+  int id: @identity_expr ref,
+  int sub_expr: @expr_or_none ref
+);
+
+if_exprs(  //dir=expr
+  unique int id: @if_expr,
+  int condition: @expr_or_none ref,
+  int then_expr: @expr_or_none ref,
+  int else_expr: @expr_or_none ref
+);
+
+@implicit_conversion_expr =
+  @any_hashable_erasure_expr
+| @archetype_to_super_expr
+| @array_to_pointer_expr
+| @bridge_from_obj_c_expr
+| @bridge_to_obj_c_expr
+| @class_metatype_to_object_expr
+| @collection_upcast_conversion_expr
+| @conditional_bridge_from_obj_c_expr
+| @covariant_function_conversion_expr
+| @covariant_return_conversion_expr
+| @derived_to_base_expr
+| @destructure_tuple_expr
+| @differentiable_function_expr
+| @differentiable_function_extract_original_expr
+| @erasure_expr
+| @existential_metatype_to_object_expr
+| @foreign_object_conversion_expr
+| @function_conversion_expr
+| @in_out_to_pointer_expr
+| @inject_into_optional_expr
+| @linear_function_expr
+| @linear_function_extract_original_expr
+| @linear_to_differentiable_function_expr
+| @load_expr
+| @metatype_conversion_expr
+| @pointer_to_pointer_expr
+| @protocol_metatype_to_object_expr
+| @string_to_pointer_expr
+| @underlying_to_opaque_expr
+| @unevaluated_instance_expr
+| @unresolved_type_conversion_expr
+;
+
+#keyset[id]
+implicit_conversion_exprs(  //dir=expr
+  int id: @implicit_conversion_expr ref,
+  int sub_expr: @expr_or_none ref
+);
+
+in_out_exprs(  //dir=expr
+  unique int id: @in_out_expr,
+  int sub_expr: @expr_or_none ref
+);
+
+key_path_application_exprs(  //dir=expr
+  unique int id: @key_path_application_expr,
+  int base: @expr_or_none ref,
+  int key_path: @expr_or_none ref
+);
+
+key_path_dot_exprs(  //dir=expr
+  unique int id: @key_path_dot_expr
+);
+
+key_path_exprs(  //dir=expr
+  unique int id: @key_path_expr
+);
+
+#keyset[id]
+key_path_expr_roots(  //dir=expr
+  int id: @key_path_expr ref,
+  int root: @type_repr_or_none ref
+);
+
+#keyset[id]
+key_path_expr_parsed_paths(  //dir=expr
+  int id: @key_path_expr ref,
+  int parsed_path: @expr_or_none ref
+);
+
+lazy_initializer_exprs(  //dir=expr
+  unique int id: @lazy_initializer_expr,
+  int sub_expr: @expr_or_none ref
+);
+
+@literal_expr =
+  @builtin_literal_expr
+| @interpolated_string_literal_expr
+| @nil_literal_expr
+| @object_literal_expr
+| @regex_literal_expr
+;
+
+@lookup_expr =
+  @dynamic_lookup_expr
+| @member_ref_expr
+| @subscript_expr
+;
+
+#keyset[id]
+lookup_exprs(  //dir=expr
+  int id: @lookup_expr ref,
+  int base: @expr_or_none ref
+);
+
+#keyset[id]
+lookup_expr_members(  //dir=expr
+  int id: @lookup_expr ref,
+  int member: @decl_or_none ref
+);
+
+make_temporarily_escapable_exprs(  //dir=expr
+  unique int id: @make_temporarily_escapable_expr,
+  int escaping_closure: @opaque_value_expr_or_none ref,
+  int nonescaping_closure: @expr_or_none ref,
+  int sub_expr: @expr_or_none ref
+);
+
+obj_c_selector_exprs(  //dir=expr
+  unique int id: @obj_c_selector_expr,
+  int sub_expr: @expr_or_none ref,
+  int method: @abstract_function_decl_or_none ref
+);
+
+one_way_exprs(  //dir=expr
+  unique int id: @one_way_expr,
+  int sub_expr: @expr_or_none ref
+);
+
+opaque_value_exprs(  //dir=expr
+  unique int id: @opaque_value_expr
+);
+
+open_existential_exprs(  //dir=expr
+  unique int id: @open_existential_expr,
+  int sub_expr: @expr_or_none ref,
+  int existential: @expr_or_none ref,
+  int opaque_expr: @opaque_value_expr_or_none ref
+);
+
+optional_evaluation_exprs(  //dir=expr
+  unique int id: @optional_evaluation_expr,
+  int sub_expr: @expr_or_none ref
+);
+
+other_constructor_decl_ref_exprs(  //dir=expr
+  unique int id: @other_constructor_decl_ref_expr,
+  int constructor_decl: @constructor_decl_or_none ref
+);
+
+overloaded_decl_ref_exprs(  //dir=expr
+  unique int id: @overloaded_decl_ref_expr
+);
+
+#keyset[id, index]
+overloaded_decl_ref_expr_possible_declarations(  //dir=expr
+  int id: @overloaded_decl_ref_expr ref,
+  int index: int ref,
+  int possible_declaration: @value_decl_or_none ref
+);
+
+property_wrapper_value_placeholder_exprs(  //dir=expr
+  unique int id: @property_wrapper_value_placeholder_expr,
+  int placeholder: @opaque_value_expr_or_none ref
+);
+
+#keyset[id]
+property_wrapper_value_placeholder_expr_wrapped_values(  //dir=expr
+  int id: @property_wrapper_value_placeholder_expr ref,
+  int wrapped_value: @expr_or_none ref
+);
+
+rebind_self_in_constructor_exprs(  //dir=expr
+  unique int id: @rebind_self_in_constructor_expr,
+  int sub_expr: @expr_or_none ref,
+  int self: @var_decl_or_none ref
+);
+
+sequence_exprs(  //dir=expr
+  unique int id: @sequence_expr
+);
+
+#keyset[id, index]
+sequence_expr_elements(  //dir=expr
+  int id: @sequence_expr ref,
+  int index: int ref,
+  int element: @expr_or_none ref
+);
+
+super_ref_exprs(  //dir=expr
+  unique int id: @super_ref_expr,
+  int self: @var_decl_or_none ref
+);
+
+tap_exprs(  //dir=expr
+  unique int id: @tap_expr,
+  int body: @brace_stmt_or_none ref,
+  int var: @var_decl_or_none ref
+);
+
+#keyset[id]
+tap_expr_sub_exprs(  //dir=expr
+  int id: @tap_expr ref,
+  int sub_expr: @expr_or_none ref
+);
+
+tuple_element_exprs(  //dir=expr
+  unique int id: @tuple_element_expr,
+  int sub_expr: @expr_or_none ref,
+  int index: int ref
+);
+
+tuple_exprs(  //dir=expr
+  unique int id: @tuple_expr
+);
+
+#keyset[id, index]
+tuple_expr_elements(  //dir=expr
+  int id: @tuple_expr ref,
+  int index: int ref,
+  int element: @expr_or_none ref
+);
+
+type_exprs(  //dir=expr
+  unique int id: @type_expr
+);
+
+#keyset[id]
+type_expr_type_reprs(  //dir=expr
+  int id: @type_expr ref,
+  int type_repr: @type_repr_or_none ref
+);
+
+unresolved_decl_ref_exprs(  //dir=expr
+  unique int id: @unresolved_decl_ref_expr
+);
+
+#keyset[id]
+unresolved_decl_ref_expr_names(  //dir=expr
+  int id: @unresolved_decl_ref_expr ref,
+  string name: string ref
+);
+
+unresolved_dot_exprs(  //dir=expr
+  unique int id: @unresolved_dot_expr,
+  int base: @expr_or_none ref,
+  string name: string ref
+);
+
+unresolved_member_exprs(  //dir=expr
+  unique int id: @unresolved_member_expr,
+  string name: string ref
+);
+
+unresolved_pattern_exprs(  //dir=expr
+  unique int id: @unresolved_pattern_expr,
+  int sub_pattern: @pattern_or_none ref
+);
+
+unresolved_specialize_exprs(  //dir=expr
+  unique int id: @unresolved_specialize_expr,
+  int sub_expr: @expr_or_none ref
+);
+
+vararg_expansion_exprs(  //dir=expr
+  unique int id: @vararg_expansion_expr,
+  int sub_expr: @expr_or_none ref
+);
+
+any_hashable_erasure_exprs(  //dir=expr
+  unique int id: @any_hashable_erasure_expr
+);
+
+archetype_to_super_exprs(  //dir=expr
+  unique int id: @archetype_to_super_expr
+);
+
+array_exprs(  //dir=expr
+  unique int id: @array_expr
+);
+
+#keyset[id, index]
+array_expr_elements(  //dir=expr
+  int id: @array_expr ref,
+  int index: int ref,
+  int element: @expr_or_none ref
+);
+
+array_to_pointer_exprs(  //dir=expr
+  unique int id: @array_to_pointer_expr
+);
+
+auto_closure_exprs(  //dir=expr
+  unique int id: @auto_closure_expr
+);
+
+await_exprs(  //dir=expr
+  unique int id: @await_expr
+);
+
+binary_exprs(  //dir=expr
+  unique int id: @binary_expr
+);
+
+bridge_from_obj_c_exprs(  //dir=expr
+  unique int id: @bridge_from_obj_c_expr
+);
+
+bridge_to_obj_c_exprs(  //dir=expr
+  unique int id: @bridge_to_obj_c_expr
+);
+
+@builtin_literal_expr =
+  @boolean_literal_expr
+| @magic_identifier_literal_expr
+| @number_literal_expr
+| @string_literal_expr
+;
+
+call_exprs(  //dir=expr
+  unique int id: @call_expr
+);
+
+@checked_cast_expr =
+  @conditional_checked_cast_expr
+| @forced_checked_cast_expr
+| @is_expr
+;
+
+class_metatype_to_object_exprs(  //dir=expr
+  unique int id: @class_metatype_to_object_expr
+);
+
+closure_exprs(  //dir=expr
+  unique int id: @closure_expr
+);
+
+coerce_exprs(  //dir=expr
+  unique int id: @coerce_expr
+);
+
+collection_upcast_conversion_exprs(  //dir=expr
+  unique int id: @collection_upcast_conversion_expr
+);
+
+conditional_bridge_from_obj_c_exprs(  //dir=expr
+  unique int id: @conditional_bridge_from_obj_c_expr
+);
+
+covariant_function_conversion_exprs(  //dir=expr
+  unique int id: @covariant_function_conversion_expr
+);
+
+covariant_return_conversion_exprs(  //dir=expr
+  unique int id: @covariant_return_conversion_expr
+);
+
+derived_to_base_exprs(  //dir=expr
+  unique int id: @derived_to_base_expr
+);
+
+destructure_tuple_exprs(  //dir=expr
+  unique int id: @destructure_tuple_expr
+);
+
+dictionary_exprs(  //dir=expr
+  unique int id: @dictionary_expr
+);
+
+#keyset[id, index]
+dictionary_expr_elements(  //dir=expr
+  int id: @dictionary_expr ref,
+  int index: int ref,
+  int element: @expr_or_none ref
+);
+
+differentiable_function_exprs(  //dir=expr
+  unique int id: @differentiable_function_expr
+);
+
+differentiable_function_extract_original_exprs(  //dir=expr
+  unique int id: @differentiable_function_extract_original_expr
+);
+
+dot_self_exprs(  //dir=expr
+  unique int id: @dot_self_expr
+);
+
+@dynamic_lookup_expr =
+  @dynamic_member_ref_expr
+| @dynamic_subscript_expr
+;
+
+erasure_exprs(  //dir=expr
+  unique int id: @erasure_expr
+);
+
+existential_metatype_to_object_exprs(  //dir=expr
+  unique int id: @existential_metatype_to_object_expr
+);
+
+force_try_exprs(  //dir=expr
+  unique int id: @force_try_expr
+);
+
+foreign_object_conversion_exprs(  //dir=expr
+  unique int id: @foreign_object_conversion_expr
+);
+
+function_conversion_exprs(  //dir=expr
+  unique int id: @function_conversion_expr
+);
+
+in_out_to_pointer_exprs(  //dir=expr
+  unique int id: @in_out_to_pointer_expr
+);
+
+inject_into_optional_exprs(  //dir=expr
+  unique int id: @inject_into_optional_expr
+);
+
+interpolated_string_literal_exprs(  //dir=expr
+  unique int id: @interpolated_string_literal_expr
+);
+
+#keyset[id]
+interpolated_string_literal_expr_interpolation_exprs(  //dir=expr
+  int id: @interpolated_string_literal_expr ref,
+  int interpolation_expr: @opaque_value_expr_or_none ref
+);
+
+#keyset[id]
+interpolated_string_literal_expr_interpolation_count_exprs(  //dir=expr
+  int id: @interpolated_string_literal_expr ref,
+  int interpolation_count_expr: @expr_or_none ref
+);
+
+#keyset[id]
+interpolated_string_literal_expr_literal_capacity_exprs(  //dir=expr
+  int id: @interpolated_string_literal_expr ref,
+  int literal_capacity_expr: @expr_or_none ref
+);
+
+#keyset[id]
+interpolated_string_literal_expr_appending_exprs(  //dir=expr
+  int id: @interpolated_string_literal_expr ref,
+  int appending_expr: @tap_expr_or_none ref
+);
+
+linear_function_exprs(  //dir=expr
+  unique int id: @linear_function_expr
+);
+
+linear_function_extract_original_exprs(  //dir=expr
+  unique int id: @linear_function_extract_original_expr
+);
+
+linear_to_differentiable_function_exprs(  //dir=expr
+  unique int id: @linear_to_differentiable_function_expr
+);
+
+load_exprs(  //dir=expr
+  unique int id: @load_expr
+);
+
+member_ref_exprs(  //dir=expr
+  unique int id: @member_ref_expr
+);
+
+#keyset[id]
+member_ref_expr_has_direct_to_storage_semantics(  //dir=expr
+  int id: @member_ref_expr ref
+);
+
+#keyset[id]
+member_ref_expr_has_direct_to_implementation_semantics(  //dir=expr
+  int id: @member_ref_expr ref
+);
+
+#keyset[id]
+member_ref_expr_has_ordinary_semantics(  //dir=expr
+  int id: @member_ref_expr ref
+);
+
+metatype_conversion_exprs(  //dir=expr
+  unique int id: @metatype_conversion_expr
+);
+
+nil_literal_exprs(  //dir=expr
+  unique int id: @nil_literal_expr
+);
+
+object_literal_exprs(  //dir=expr
+  unique int id: @object_literal_expr,
+  int kind: int ref
+);
+
+#keyset[id, index]
+object_literal_expr_arguments(  //dir=expr
+  int id: @object_literal_expr ref,
+  int index: int ref,
+  int argument: @argument_or_none ref
+);
+
+optional_try_exprs(  //dir=expr
+  unique int id: @optional_try_expr
+);
+
+paren_exprs(  //dir=expr
+  unique int id: @paren_expr
+);
+
+pointer_to_pointer_exprs(  //dir=expr
+  unique int id: @pointer_to_pointer_expr
+);
+
+postfix_unary_exprs(  //dir=expr
+  unique int id: @postfix_unary_expr
+);
+
+prefix_unary_exprs(  //dir=expr
+  unique int id: @prefix_unary_expr
+);
+
+protocol_metatype_to_object_exprs(  //dir=expr
+  unique int id: @protocol_metatype_to_object_expr
+);
+
+regex_literal_exprs(  //dir=expr
+  unique int id: @regex_literal_expr
+);
+
+@self_apply_expr =
+  @constructor_ref_call_expr
+| @dot_syntax_call_expr
+;
+
+#keyset[id]
+self_apply_exprs(  //dir=expr
+  int id: @self_apply_expr ref,
+  int base: @expr_or_none ref
+);
+
+string_to_pointer_exprs(  //dir=expr
+  unique int id: @string_to_pointer_expr
+);
+
+subscript_exprs(  //dir=expr
+  unique int id: @subscript_expr
+);
+
+#keyset[id, index]
+subscript_expr_arguments(  //dir=expr
+  int id: @subscript_expr ref,
+  int index: int ref,
+  int argument: @argument_or_none ref
+);
+
+#keyset[id]
+subscript_expr_has_direct_to_storage_semantics(  //dir=expr
+  int id: @subscript_expr ref
+);
+
+#keyset[id]
+subscript_expr_has_direct_to_implementation_semantics(  //dir=expr
+  int id: @subscript_expr ref
+);
+
+#keyset[id]
+subscript_expr_has_ordinary_semantics(  //dir=expr
+  int id: @subscript_expr ref
+);
+
+try_exprs(  //dir=expr
+  unique int id: @try_expr
+);
+
+underlying_to_opaque_exprs(  //dir=expr
+  unique int id: @underlying_to_opaque_expr
+);
+
+unevaluated_instance_exprs(  //dir=expr
+  unique int id: @unevaluated_instance_expr
+);
+
+unresolved_member_chain_result_exprs(  //dir=expr
+  unique int id: @unresolved_member_chain_result_expr
+);
+
+unresolved_type_conversion_exprs(  //dir=expr
+  unique int id: @unresolved_type_conversion_expr
+);
+
+boolean_literal_exprs(  //dir=expr
+  unique int id: @boolean_literal_expr,
+  boolean value: boolean ref
+);
+
+conditional_checked_cast_exprs(  //dir=expr
+  unique int id: @conditional_checked_cast_expr
+);
+
+constructor_ref_call_exprs(  //dir=expr
+  unique int id: @constructor_ref_call_expr
+);
+
+dot_syntax_call_exprs(  //dir=expr
+  unique int id: @dot_syntax_call_expr
+);
+
+dynamic_member_ref_exprs(  //dir=expr
+  unique int id: @dynamic_member_ref_expr
+);
+
+dynamic_subscript_exprs(  //dir=expr
+  unique int id: @dynamic_subscript_expr
+);
+
+forced_checked_cast_exprs(  //dir=expr
+  unique int id: @forced_checked_cast_expr
+);
+
+is_exprs(  //dir=expr
+  unique int id: @is_expr
+);
+
+magic_identifier_literal_exprs(  //dir=expr
+  unique int id: @magic_identifier_literal_expr,
+  string kind: string ref
+);
+
+@number_literal_expr =
+  @float_literal_expr
+| @integer_literal_expr
+;
+
+string_literal_exprs(  //dir=expr
+  unique int id: @string_literal_expr,
+  string value: string ref
+);
+
+float_literal_exprs(  //dir=expr
+  unique int id: @float_literal_expr,
+  string string_value: string ref
+);
+
+integer_literal_exprs(  //dir=expr
+  unique int id: @integer_literal_expr,
+  string string_value: string ref
+);
+
+@pattern =
+  @any_pattern
+| @binding_pattern
+| @bool_pattern
+| @enum_element_pattern
+| @expr_pattern
+| @is_pattern
+| @named_pattern
+| @optional_some_pattern
+| @paren_pattern
+| @tuple_pattern
+| @typed_pattern
+;
+
+any_patterns(  //dir=pattern
+  unique int id: @any_pattern
+);
+
+binding_patterns(  //dir=pattern
+  unique int id: @binding_pattern,
+  int sub_pattern: @pattern_or_none ref
+);
+
+bool_patterns(  //dir=pattern
+  unique int id: @bool_pattern,
+  boolean value: boolean ref
+);
+
+enum_element_patterns(  //dir=pattern
+  unique int id: @enum_element_pattern,
+  int element: @enum_element_decl_or_none ref
+);
+
+#keyset[id]
+enum_element_pattern_sub_patterns(  //dir=pattern
+  int id: @enum_element_pattern ref,
+  int sub_pattern: @pattern_or_none ref
+);
+
+expr_patterns(  //dir=pattern
+  unique int id: @expr_pattern,
+  int sub_expr: @expr_or_none ref
+);
+
+is_patterns(  //dir=pattern
+  unique int id: @is_pattern
+);
+
+#keyset[id]
+is_pattern_cast_type_reprs(  //dir=pattern
+  int id: @is_pattern ref,
+  int cast_type_repr: @type_repr_or_none ref
+);
+
+#keyset[id]
+is_pattern_sub_patterns(  //dir=pattern
+  int id: @is_pattern ref,
+  int sub_pattern: @pattern_or_none ref
+);
+
+named_patterns(  //dir=pattern
+  unique int id: @named_pattern,
+  string name: string ref
+);
+
+optional_some_patterns(  //dir=pattern
+  unique int id: @optional_some_pattern,
+  int sub_pattern: @pattern_or_none ref
+);
+
+paren_patterns(  //dir=pattern
+  unique int id: @paren_pattern,
+  int sub_pattern: @pattern_or_none ref
+);
+
+tuple_patterns(  //dir=pattern
+  unique int id: @tuple_pattern
+);
+
+#keyset[id, index]
+tuple_pattern_elements(  //dir=pattern
+  int id: @tuple_pattern ref,
+  int index: int ref,
+  int element: @pattern_or_none ref
+);
+
+typed_patterns(  //dir=pattern
+  unique int id: @typed_pattern,
+  int sub_pattern: @pattern_or_none ref
+);
+
+#keyset[id]
+typed_pattern_type_reprs(  //dir=pattern
+  int id: @typed_pattern ref,
+  int type_repr: @type_repr_or_none ref
+);
+
+case_label_items(  //dir=stmt
+  unique int id: @case_label_item,
+  int pattern: @pattern_or_none ref
+);
+
+#keyset[id]
+case_label_item_guards(  //dir=stmt
+  int id: @case_label_item ref,
+  int guard: @expr_or_none ref
+);
+
+condition_elements(  //dir=stmt
+  unique int id: @condition_element
+);
+
+#keyset[id]
+condition_element_booleans(  //dir=stmt
+  int id: @condition_element ref,
+  int boolean_: @expr_or_none ref
+);
+
+#keyset[id]
+condition_element_patterns(  //dir=stmt
+  int id: @condition_element ref,
+  int pattern: @pattern_or_none ref
+);
+
+#keyset[id]
+condition_element_initializers(  //dir=stmt
+  int id: @condition_element ref,
+  int initializer: @expr_or_none ref
+);
+
+@stmt =
+  @brace_stmt
+| @break_stmt
+| @case_stmt
+| @continue_stmt
+| @defer_stmt
+| @fail_stmt
+| @fallthrough_stmt
+| @labeled_stmt
+| @pound_assert_stmt
+| @return_stmt
+| @throw_stmt
+| @yield_stmt
+;
+
+stmt_conditions(  //dir=stmt
+  unique int id: @stmt_condition
+);
+
+#keyset[id, index]
+stmt_condition_elements(  //dir=stmt
+  int id: @stmt_condition ref,
+  int index: int ref,
+  int element: @condition_element_or_none ref
+);
+
+brace_stmts(  //dir=stmt
+  unique int id: @brace_stmt
+);
+
+#keyset[id, index]
+brace_stmt_elements(  //dir=stmt
+  int id: @brace_stmt ref,
+  int index: int ref,
+  int element: @ast_node_or_none ref
+);
+
+break_stmts(  //dir=stmt
+  unique int id: @break_stmt
+);
+
+#keyset[id]
+break_stmt_target_names(  //dir=stmt
+  int id: @break_stmt ref,
+  string target_name: string ref
+);
+
+#keyset[id]
+break_stmt_targets(  //dir=stmt
+  int id: @break_stmt ref,
+  int target: @stmt_or_none ref
+);
+
+case_stmts(  //dir=stmt
+  unique int id: @case_stmt,
+  int body: @stmt_or_none ref
+);
+
+#keyset[id, index]
+case_stmt_labels(  //dir=stmt
+  int id: @case_stmt ref,
+  int index: int ref,
+  int label: @case_label_item_or_none ref
+);
+
+#keyset[id, index]
+case_stmt_variables(  //dir=stmt
+  int id: @case_stmt ref,
+  int index: int ref,
+  int variable: @var_decl_or_none ref
+);
+
+continue_stmts(  //dir=stmt
+  unique int id: @continue_stmt
+);
+
+#keyset[id]
+continue_stmt_target_names(  //dir=stmt
+  int id: @continue_stmt ref,
+  string target_name: string ref
+);
+
+#keyset[id]
+continue_stmt_targets(  //dir=stmt
+  int id: @continue_stmt ref,
+  int target: @stmt_or_none ref
+);
+
+defer_stmts(  //dir=stmt
+  unique int id: @defer_stmt,
+  int body: @brace_stmt_or_none ref
+);
+
+fail_stmts(  //dir=stmt
+  unique int id: @fail_stmt
+);
+
+fallthrough_stmts(  //dir=stmt
+  unique int id: @fallthrough_stmt,
+  int fallthrough_source: @case_stmt_or_none ref,
+  int fallthrough_dest: @case_stmt_or_none ref
+);
+
+@labeled_stmt =
+  @do_catch_stmt
+| @do_stmt
+| @for_each_stmt
+| @labeled_conditional_stmt
+| @repeat_while_stmt
+| @switch_stmt
+;
+
+#keyset[id]
+labeled_stmt_labels(  //dir=stmt
+  int id: @labeled_stmt ref,
+  string label: string ref
+);
+
+pound_assert_stmts(  //dir=stmt
+  unique int id: @pound_assert_stmt,
+  int condition: @expr_or_none ref,
+  string message: string ref
+);
+
+return_stmts(  //dir=stmt
+  unique int id: @return_stmt
+);
+
+#keyset[id]
+return_stmt_results(  //dir=stmt
+  int id: @return_stmt ref,
+  int result: @expr_or_none ref
+);
+
+throw_stmts(  //dir=stmt
+  unique int id: @throw_stmt,
+  int sub_expr: @expr_or_none ref
+);
+
+yield_stmts(  //dir=stmt
+  unique int id: @yield_stmt
+);
+
+#keyset[id, index]
+yield_stmt_results(  //dir=stmt
+  int id: @yield_stmt ref,
+  int index: int ref,
+  int result: @expr_or_none ref
+);
+
+do_catch_stmts(  //dir=stmt
+  unique int id: @do_catch_stmt,
+  int body: @stmt_or_none ref
+);
+
+#keyset[id, index]
+do_catch_stmt_catches(  //dir=stmt
+  int id: @do_catch_stmt ref,
+  int index: int ref,
+  int catch: @case_stmt_or_none ref
+);
+
+do_stmts(  //dir=stmt
+  unique int id: @do_stmt,
+  int body: @brace_stmt_or_none ref
+);
+
+for_each_stmts(  //dir=stmt
+  unique int id: @for_each_stmt,
+  int pattern: @pattern_or_none ref,
+  int sequence: @expr_or_none ref,
+  int body: @brace_stmt_or_none ref
+);
+
+#keyset[id]
+for_each_stmt_wheres(  //dir=stmt
+  int id: @for_each_stmt ref,
+  int where: @expr_or_none ref
+);
+
+@labeled_conditional_stmt =
+  @guard_stmt
+| @if_stmt
+| @while_stmt
+;
+
+#keyset[id]
+labeled_conditional_stmts(  //dir=stmt
+  int id: @labeled_conditional_stmt ref,
+  int condition: @stmt_condition_or_none ref
+);
+
+repeat_while_stmts(  //dir=stmt
+  unique int id: @repeat_while_stmt,
+  int condition: @expr_or_none ref,
+  int body: @stmt_or_none ref
+);
+
+switch_stmts(  //dir=stmt
+  unique int id: @switch_stmt,
+  int expr: @expr_or_none ref
+);
+
+#keyset[id, index]
+switch_stmt_cases(  //dir=stmt
+  int id: @switch_stmt ref,
+  int index: int ref,
+  int case_: @case_stmt_or_none ref
+);
+
+guard_stmts(  //dir=stmt
+  unique int id: @guard_stmt,
+  int body: @brace_stmt_or_none ref
+);
+
+if_stmts(  //dir=stmt
+  unique int id: @if_stmt,
+  int then: @stmt_or_none ref
+);
+
+#keyset[id]
+if_stmt_elses(  //dir=stmt
+  int id: @if_stmt ref,
+  int else: @stmt_or_none ref
+);
+
+while_stmts(  //dir=stmt
+  unique int id: @while_stmt,
+  int body: @stmt_or_none ref
+);
+
+@type =
+  @any_function_type
+| @any_generic_type
+| @any_metatype_type
+| @builtin_type
+| @dependent_member_type
+| @dynamic_self_type
+| @error_type
+| @existential_type
+| @in_out_type
+| @l_value_type
+| @module_type
+| @parameterized_protocol_type
+| @protocol_composition_type
+| @reference_storage_type
+| @substitutable_type
+| @sugar_type
+| @tuple_type
+| @unresolved_type
+;
+
+#keyset[id]
+types(  //dir=type
+  int id: @type ref,
+  string name: string ref,
+  int canonical_type: @type_or_none ref
+);
+
+type_reprs(  //dir=type
+  unique int id: @type_repr,
+  int type_: @type_or_none ref
+);
+
+@any_function_type =
+  @function_type
+| @generic_function_type
+;
+
+#keyset[id]
+any_function_types(  //dir=type
+  int id: @any_function_type ref,
+  int result: @type_or_none ref
+);
+
+#keyset[id, index]
+any_function_type_param_types(  //dir=type
+  int id: @any_function_type ref,
+  int index: int ref,
+  int param_type: @type_or_none ref
+);
+
+#keyset[id, index]
+any_function_type_param_labels(  //dir=type
+  int id: @any_function_type ref,
+  int index: int ref,
+  string param_label: string ref
+);
+
+#keyset[id]
+any_function_type_is_throwing(  //dir=type
+  int id: @any_function_type ref
+);
+
+#keyset[id]
+any_function_type_is_async(  //dir=type
+  int id: @any_function_type ref
+);
+
+@any_generic_type =
+  @nominal_or_bound_generic_nominal_type
+| @unbound_generic_type
+;
+
+#keyset[id]
+any_generic_types(  //dir=type
+  int id: @any_generic_type ref,
+  int declaration: @decl_or_none ref
+);
+
+#keyset[id]
+any_generic_type_parents(  //dir=type
+  int id: @any_generic_type ref,
+  int parent: @type_or_none ref
+);
+
+@any_metatype_type =
+  @existential_metatype_type
+| @metatype_type
+;
+
+@builtin_type =
+  @any_builtin_integer_type
+| @builtin_bridge_object_type
+| @builtin_default_actor_storage_type
+| @builtin_executor_type
+| @builtin_float_type
+| @builtin_job_type
+| @builtin_native_object_type
+| @builtin_raw_pointer_type
+| @builtin_raw_unsafe_continuation_type
+| @builtin_unsafe_value_buffer_type
+| @builtin_vector_type
+;
+
+dependent_member_types(  //dir=type
+  unique int id: @dependent_member_type,
+  int base_type: @type_or_none ref,
+  int associated_type_decl: @associated_type_decl_or_none ref
+);
+
+dynamic_self_types(  //dir=type
+  unique int id: @dynamic_self_type,
+  int static_self_type: @type_or_none ref
+);
+
+error_types(  //dir=type
+  unique int id: @error_type
+);
+
+existential_types(  //dir=type
+  unique int id: @existential_type,
+  int constraint: @type_or_none ref
+);
+
+in_out_types(  //dir=type
+  unique int id: @in_out_type,
+  int object_type: @type_or_none ref
+);
+
+l_value_types(  //dir=type
+  unique int id: @l_value_type,
+  int object_type: @type_or_none ref
+);
+
+module_types(  //dir=type
+  unique int id: @module_type,
+  int module: @module_decl_or_none ref
+);
+
+parameterized_protocol_types(  //dir=type
+  unique int id: @parameterized_protocol_type,
+  int base: @protocol_type_or_none ref
+);
+
+#keyset[id, index]
+parameterized_protocol_type_args(  //dir=type
+  int id: @parameterized_protocol_type ref,
+  int index: int ref,
+  int arg: @type_or_none ref
+);
+
+protocol_composition_types(  //dir=type
+  unique int id: @protocol_composition_type
+);
+
+#keyset[id, index]
+protocol_composition_type_members(  //dir=type
+  int id: @protocol_composition_type ref,
+  int index: int ref,
+  int member: @type_or_none ref
+);
+
+@reference_storage_type =
+  @unmanaged_storage_type
+| @unowned_storage_type
+| @weak_storage_type
+;
+
+#keyset[id]
+reference_storage_types(  //dir=type
+  int id: @reference_storage_type ref,
+  int referent_type: @type_or_none ref
+);
+
+@substitutable_type =
+  @archetype_type
+| @generic_type_param_type
+;
+
+@sugar_type =
+  @paren_type
+| @syntax_sugar_type
+| @type_alias_type
+;
+
+tuple_types(  //dir=type
+  unique int id: @tuple_type
+);
+
+#keyset[id, index]
+tuple_type_types(  //dir=type
+  int id: @tuple_type ref,
+  int index: int ref,
+  int type_: @type_or_none ref
+);
+
+#keyset[id, index]
+tuple_type_names(  //dir=type
+  int id: @tuple_type ref,
+  int index: int ref,
+  string name: string ref
+);
+
+unresolved_types(  //dir=type
+  unique int id: @unresolved_type
+);
+
+@any_builtin_integer_type =
+  @builtin_integer_literal_type
+| @builtin_integer_type
+;
+
+@archetype_type =
+  @opaque_type_archetype_type
+| @opened_archetype_type
+| @primary_archetype_type
+;
+
+#keyset[id]
+archetype_types(  //dir=type
+  int id: @archetype_type ref,
+  int interface_type: @type_or_none ref
+);
+
+#keyset[id]
+archetype_type_superclasses(  //dir=type
+  int id: @archetype_type ref,
+  int superclass: @type_or_none ref
+);
+
+#keyset[id, index]
+archetype_type_protocols(  //dir=type
+  int id: @archetype_type ref,
+  int index: int ref,
+  int protocol: @protocol_decl_or_none ref
+);
+
+builtin_bridge_object_types(  //dir=type
+  unique int id: @builtin_bridge_object_type
+);
+
+builtin_default_actor_storage_types(  //dir=type
+  unique int id: @builtin_default_actor_storage_type
+);
+
+builtin_executor_types(  //dir=type
+  unique int id: @builtin_executor_type
+);
+
+builtin_float_types(  //dir=type
+  unique int id: @builtin_float_type
+);
+
+builtin_job_types(  //dir=type
+  unique int id: @builtin_job_type
+);
+
+builtin_native_object_types(  //dir=type
+  unique int id: @builtin_native_object_type
+);
+
+builtin_raw_pointer_types(  //dir=type
+  unique int id: @builtin_raw_pointer_type
+);
+
+builtin_raw_unsafe_continuation_types(  //dir=type
+  unique int id: @builtin_raw_unsafe_continuation_type
+);
+
+builtin_unsafe_value_buffer_types(  //dir=type
+  unique int id: @builtin_unsafe_value_buffer_type
+);
+
+builtin_vector_types(  //dir=type
+  unique int id: @builtin_vector_type
+);
+
+existential_metatype_types(  //dir=type
+  unique int id: @existential_metatype_type
+);
+
+function_types(  //dir=type
+  unique int id: @function_type
+);
+
+generic_function_types(  //dir=type
+  unique int id: @generic_function_type
+);
+
+#keyset[id, index]
+generic_function_type_generic_params(  //dir=type
+  int id: @generic_function_type ref,
+  int index: int ref,
+  int generic_param: @generic_type_param_type_or_none ref
+);
+
+generic_type_param_types(  //dir=type
+  unique int id: @generic_type_param_type
+);
+
+metatype_types(  //dir=type
+  unique int id: @metatype_type
+);
+
+@nominal_or_bound_generic_nominal_type =
+  @bound_generic_type
+| @nominal_type
+;
+
+paren_types(  //dir=type
+  unique int id: @paren_type,
+  int type_: @type_or_none ref
+);
+
+@syntax_sugar_type =
+  @dictionary_type
+| @unary_syntax_sugar_type
+;
+
+type_alias_types(  //dir=type
+  unique int id: @type_alias_type,
+  int decl: @type_alias_decl_or_none ref
+);
+
+unbound_generic_types(  //dir=type
+  unique int id: @unbound_generic_type
+);
+
+unmanaged_storage_types(  //dir=type
+  unique int id: @unmanaged_storage_type
+);
+
+unowned_storage_types(  //dir=type
+  unique int id: @unowned_storage_type
+);
+
+weak_storage_types(  //dir=type
+  unique int id: @weak_storage_type
+);
+
+@bound_generic_type =
+  @bound_generic_class_type
+| @bound_generic_enum_type
+| @bound_generic_struct_type
+;
+
+#keyset[id, index]
+bound_generic_type_arg_types(  //dir=type
+  int id: @bound_generic_type ref,
+  int index: int ref,
+  int arg_type: @type_or_none ref
+);
+
+builtin_integer_literal_types(  //dir=type
+  unique int id: @builtin_integer_literal_type
+);
+
+builtin_integer_types(  //dir=type
+  unique int id: @builtin_integer_type
+);
+
+#keyset[id]
+builtin_integer_type_widths(  //dir=type
+  int id: @builtin_integer_type ref,
+  int width: int ref
+);
+
+dictionary_types(  //dir=type
+  unique int id: @dictionary_type,
+  int key_type: @type_or_none ref,
+  int value_type: @type_or_none ref
+);
+
+@nominal_type =
+  @class_type
+| @enum_type
+| @protocol_type
+| @struct_type
+;
+
+opaque_type_archetype_types(  //dir=type
+  unique int id: @opaque_type_archetype_type,
+  int declaration: @opaque_type_decl_or_none ref
+);
+
+opened_archetype_types(  //dir=type
+  unique int id: @opened_archetype_type
+);
+
+primary_archetype_types(  //dir=type
+  unique int id: @primary_archetype_type
+);
+
+@unary_syntax_sugar_type =
+  @array_slice_type
+| @optional_type
+| @variadic_sequence_type
+;
+
+#keyset[id]
+unary_syntax_sugar_types(  //dir=type
+  int id: @unary_syntax_sugar_type ref,
+  int base_type: @type_or_none ref
+);
+
+array_slice_types(  //dir=type
+  unique int id: @array_slice_type
+);
+
+bound_generic_class_types(  //dir=type
+  unique int id: @bound_generic_class_type
+);
+
+bound_generic_enum_types(  //dir=type
+  unique int id: @bound_generic_enum_type
+);
+
+bound_generic_struct_types(  //dir=type
+  unique int id: @bound_generic_struct_type
+);
+
+class_types(  //dir=type
+  unique int id: @class_type
+);
+
+enum_types(  //dir=type
+  unique int id: @enum_type
+);
+
+optional_types(  //dir=type
+  unique int id: @optional_type
+);
+
+protocol_types(  //dir=type
+  unique int id: @protocol_type
+);
+
+struct_types(  //dir=type
+  unique int id: @struct_type
+);
+
+variadic_sequence_types(  //dir=type
+  unique int id: @variadic_sequence_type
+);
+
+@abstract_function_decl_or_none =
+  @abstract_function_decl
+| @unspecified_element
+;
+
+@accessor_decl_or_none =
+  @accessor_decl
+| @unspecified_element
+;
+
+@argument_or_none =
+  @argument
+| @unspecified_element
+;
+
+@associated_type_decl_or_none =
+  @associated_type_decl
+| @unspecified_element
+;
+
+@ast_node_or_none =
+  @ast_node
+| @unspecified_element
+;
+
+@brace_stmt_or_none =
+  @brace_stmt
+| @unspecified_element
+;
+
+@case_label_item_or_none =
+  @case_label_item
+| @unspecified_element
+;
+
+@case_stmt_or_none =
+  @case_stmt
+| @unspecified_element
+;
+
+@closure_expr_or_none =
+  @closure_expr
+| @unspecified_element
+;
+
+@condition_element_or_none =
+  @condition_element
+| @unspecified_element
+;
+
+@constructor_decl_or_none =
+  @constructor_decl
+| @unspecified_element
+;
+
+@decl_or_none =
+  @decl
+| @unspecified_element
+;
+
+@enum_element_decl_or_none =
+  @enum_element_decl
+| @unspecified_element
+;
+
+@expr_or_none =
+  @expr
+| @unspecified_element
+;
+
+@file_or_none =
+  @file
+| @unspecified_element
+;
+
+@generic_type_param_decl_or_none =
+  @generic_type_param_decl
+| @unspecified_element
+;
+
+@generic_type_param_type_or_none =
+  @generic_type_param_type
+| @unspecified_element
+;
+
+@location_or_none =
+  @location
+| @unspecified_element
+;
+
+@module_decl_or_none =
+  @module_decl
+| @unspecified_element
+;
+
+@nominal_type_decl_or_none =
+  @nominal_type_decl
+| @unspecified_element
+;
+
+@opaque_type_decl_or_none =
+  @opaque_type_decl
+| @unspecified_element
+;
+
+@opaque_value_expr_or_none =
+  @opaque_value_expr
+| @unspecified_element
+;
+
+@param_decl_or_none =
+  @param_decl
+| @unspecified_element
+;
+
+@pattern_or_none =
+  @pattern
+| @unspecified_element
+;
+
+@pattern_binding_decl_or_none =
+  @pattern_binding_decl
+| @unspecified_element
+;
+
+@precedence_group_decl_or_none =
+  @precedence_group_decl
+| @unspecified_element
+;
+
+@protocol_decl_or_none =
+  @protocol_decl
+| @unspecified_element
+;
+
+@protocol_type_or_none =
+  @protocol_type
+| @unspecified_element
+;
+
+@stmt_or_none =
+  @stmt
+| @unspecified_element
+;
+
+@stmt_condition_or_none =
+  @stmt_condition
+| @unspecified_element
+;
+
+@string_literal_expr_or_none =
+  @string_literal_expr
+| @unspecified_element
+;
+
+@tap_expr_or_none =
+  @tap_expr
+| @unspecified_element
+;
+
+@type_or_none =
+  @type
+| @unspecified_element
+;
+
+@type_alias_decl_or_none =
+  @type_alias_decl
+| @unspecified_element
+;
+
+@type_repr_or_none =
+  @type_repr
+| @unspecified_element
+;
+
+@value_decl_or_none =
+  @unspecified_element
+| @value_decl
+;
+
+@var_decl_or_none =
+  @unspecified_element
+| @var_decl
+;
diff --git a/swift/ql/lib/upgrades/abbb8c9e8408841c2bc12e3deb2305f062f5399e/swift.dbscheme b/swift/ql/lib/upgrades/abbb8c9e8408841c2bc12e3deb2305f062f5399e/swift.dbscheme
new file mode 100644
index 00000000000..1a6e9325bd6
--- /dev/null
+++ b/swift/ql/lib/upgrades/abbb8c9e8408841c2bc12e3deb2305f062f5399e/swift.dbscheme
@@ -0,0 +1,2513 @@
+// generated by codegen/codegen.py
+
+// from prefix.dbscheme
+/**
+ * The source location of the snapshot.
+ */
+sourceLocationPrefix(
+  string prefix: string ref
+);
+
+
+// from schema.py
+
+@element =
+  @callable
+| @file
+| @generic_context
+| @iterable_decl_context
+| @locatable
+| @location
+| @type
+;
+
+#keyset[id]
+element_is_unknown(
+  int id: @element ref
+);
+
+@callable =
+  @abstract_closure_expr
+| @abstract_function_decl
+;
+
+#keyset[id]
+callable_self_params(
+  int id: @callable ref,
+  int self_param: @param_decl_or_none ref
+);
+
+#keyset[id, index]
+callable_params(
+  int id: @callable ref,
+  int index: int ref,
+  int param: @param_decl_or_none ref
+);
+
+#keyset[id]
+callable_bodies(
+  int id: @callable ref,
+  int body: @brace_stmt_or_none ref
+);
+
+@file =
+  @db_file
+;
+
+#keyset[id]
+files(
+  int id: @file ref,
+  string name: string ref
+);
+
+@locatable =
+  @argument
+| @ast_node
+| @comment
+| @diagnostics
+| @error_element
+;
+
+#keyset[id]
+locatable_locations(
+  int id: @locatable ref,
+  int location: @location_or_none ref
+);
+
+@location =
+  @db_location
+;
+
+#keyset[id]
+locations(
+  int id: @location ref,
+  int file: @file_or_none ref,
+  int start_line: int ref,
+  int start_column: int ref,
+  int end_line: int ref,
+  int end_column: int ref
+);
+
+@ast_node =
+  @case_label_item
+| @condition_element
+| @decl
+| @expr
+| @pattern
+| @stmt
+| @stmt_condition
+| @type_repr
+;
+
+comments(
+  unique int id: @comment,
+  string text: string ref
+);
+
+db_files(
+  unique int id: @db_file
+);
+
+db_locations(
+  unique int id: @db_location
+);
+
+diagnostics(
+  unique int id: @diagnostics,
+  string text: string ref,
+  int kind: int ref
+);
+
+@error_element =
+  @error_expr
+| @error_type
+| @overloaded_decl_ref_expr
+| @unresolved_decl_ref_expr
+| @unresolved_dot_expr
+| @unresolved_member_chain_result_expr
+| @unresolved_member_expr
+| @unresolved_pattern_expr
+| @unresolved_specialize_expr
+| @unresolved_type
+| @unresolved_type_conversion_expr
+| @unspecified_element
+;
+
+unspecified_elements(
+  unique int id: @unspecified_element,
+  string property: string ref,
+  string error: string ref
+);
+
+#keyset[id]
+unspecified_element_parents(
+  int id: @unspecified_element ref,
+  int parent: @element ref
+);
+
+#keyset[id]
+unspecified_element_indices(
+  int id: @unspecified_element ref,
+  int index: int ref
+);
+
+@decl =
+  @enum_case_decl
+| @extension_decl
+| @if_config_decl
+| @import_decl
+| @missing_member_decl
+| @operator_decl
+| @pattern_binding_decl
+| @pound_diagnostic_decl
+| @precedence_group_decl
+| @top_level_code_decl
+| @value_decl
+;
+
+#keyset[id]
+decls(  //dir=decl
+  int id: @decl ref,
+  int module: @module_decl_or_none ref
+);
+
+@generic_context =
+  @abstract_function_decl
+| @extension_decl
+| @generic_type_decl
+| @subscript_decl
+;
+
+#keyset[id, index]
+generic_context_generic_type_params(  //dir=decl
+  int id: @generic_context ref,
+  int index: int ref,
+  int generic_type_param: @generic_type_param_decl_or_none ref
+);
+
+@iterable_decl_context =
+  @extension_decl
+| @nominal_type_decl
+;
+
+#keyset[id, index]
+iterable_decl_context_members(  //dir=decl
+  int id: @iterable_decl_context ref,
+  int index: int ref,
+  int member: @decl_or_none ref
+);
+
+enum_case_decls(  //dir=decl
+  unique int id: @enum_case_decl
+);
+
+#keyset[id, index]
+enum_case_decl_elements(  //dir=decl
+  int id: @enum_case_decl ref,
+  int index: int ref,
+  int element: @enum_element_decl_or_none ref
+);
+
+extension_decls(  //dir=decl
+  unique int id: @extension_decl,
+  int extended_type_decl: @nominal_type_decl_or_none ref
+);
+
+if_config_decls(  //dir=decl
+  unique int id: @if_config_decl
+);
+
+#keyset[id, index]
+if_config_decl_active_elements(  //dir=decl
+  int id: @if_config_decl ref,
+  int index: int ref,
+  int active_element: @ast_node_or_none ref
+);
+
+import_decls(  //dir=decl
+  unique int id: @import_decl
+);
+
+#keyset[id]
+import_decl_is_exported(  //dir=decl
+  int id: @import_decl ref
+);
+
+#keyset[id]
+import_decl_imported_modules(  //dir=decl
+  int id: @import_decl ref,
+  int imported_module: @module_decl_or_none ref
+);
+
+#keyset[id, index]
+import_decl_declarations(  //dir=decl
+  int id: @import_decl ref,
+  int index: int ref,
+  int declaration: @value_decl_or_none ref
+);
+
+missing_member_decls(  //dir=decl
+  unique int id: @missing_member_decl,
+  string name: string ref
+);
+
+@operator_decl =
+  @infix_operator_decl
+| @postfix_operator_decl
+| @prefix_operator_decl
+;
+
+#keyset[id]
+operator_decls(  //dir=decl
+  int id: @operator_decl ref,
+  string name: string ref
+);
+
+pattern_binding_decls(  //dir=decl
+  unique int id: @pattern_binding_decl
+);
+
+#keyset[id, index]
+pattern_binding_decl_inits(  //dir=decl
+  int id: @pattern_binding_decl ref,
+  int index: int ref,
+  int init: @expr_or_none ref
+);
+
+#keyset[id, index]
+pattern_binding_decl_patterns(  //dir=decl
+  int id: @pattern_binding_decl ref,
+  int index: int ref,
+  int pattern: @pattern_or_none ref
+);
+
+pound_diagnostic_decls(  //dir=decl
+  unique int id: @pound_diagnostic_decl,
+  int kind: int ref,
+  int message: @string_literal_expr_or_none ref
+);
+
+precedence_group_decls(  //dir=decl
+  unique int id: @precedence_group_decl
+);
+
+top_level_code_decls(  //dir=decl
+  unique int id: @top_level_code_decl,
+  int body: @brace_stmt_or_none ref
+);
+
+@value_decl =
+  @abstract_function_decl
+| @abstract_storage_decl
+| @enum_element_decl
+| @type_decl
+;
+
+#keyset[id]
+value_decls(  //dir=decl
+  int id: @value_decl ref,
+  int interface_type: @type_or_none ref
+);
+
+@abstract_function_decl =
+  @constructor_decl
+| @destructor_decl
+| @func_decl
+;
+
+#keyset[id]
+abstract_function_decls(  //dir=decl
+  int id: @abstract_function_decl ref,
+  string name: string ref
+);
+
+@abstract_storage_decl =
+  @subscript_decl
+| @var_decl
+;
+
+#keyset[id, index]
+abstract_storage_decl_accessor_decls(  //dir=decl
+  int id: @abstract_storage_decl ref,
+  int index: int ref,
+  int accessor_decl: @accessor_decl_or_none ref
+);
+
+enum_element_decls(  //dir=decl
+  unique int id: @enum_element_decl,
+  string name: string ref
+);
+
+#keyset[id, index]
+enum_element_decl_params(  //dir=decl
+  int id: @enum_element_decl ref,
+  int index: int ref,
+  int param: @param_decl_or_none ref
+);
+
+infix_operator_decls(  //dir=decl
+  unique int id: @infix_operator_decl
+);
+
+#keyset[id]
+infix_operator_decl_precedence_groups(  //dir=decl
+  int id: @infix_operator_decl ref,
+  int precedence_group: @precedence_group_decl_or_none ref
+);
+
+postfix_operator_decls(  //dir=decl
+  unique int id: @postfix_operator_decl
+);
+
+prefix_operator_decls(  //dir=decl
+  unique int id: @prefix_operator_decl
+);
+
+@type_decl =
+  @abstract_type_param_decl
+| @generic_type_decl
+| @module_decl
+;
+
+#keyset[id]
+type_decls(  //dir=decl
+  int id: @type_decl ref,
+  string name: string ref
+);
+
+#keyset[id, index]
+type_decl_base_types(  //dir=decl
+  int id: @type_decl ref,
+  int index: int ref,
+  int base_type: @type_or_none ref
+);
+
+@abstract_type_param_decl =
+  @associated_type_decl
+| @generic_type_param_decl
+;
+
+constructor_decls(  //dir=decl
+  unique int id: @constructor_decl
+);
+
+destructor_decls(  //dir=decl
+  unique int id: @destructor_decl
+);
+
+@func_decl =
+  @accessor_decl
+| @concrete_func_decl
+;
+
+@generic_type_decl =
+  @nominal_type_decl
+| @opaque_type_decl
+| @type_alias_decl
+;
+
+module_decls(  //dir=decl
+  unique int id: @module_decl
+);
+
+#keyset[id]
+module_decl_is_builtin_module(  //dir=decl
+  int id: @module_decl ref
+);
+
+#keyset[id]
+module_decl_is_system_module(  //dir=decl
+  int id: @module_decl ref
+);
+
+#keyset[id, index]
+module_decl_imported_modules(  //dir=decl
+  int id: @module_decl ref,
+  int index: int ref,
+  int imported_module: @module_decl_or_none ref
+);
+
+#keyset[id, index]
+module_decl_exported_modules(  //dir=decl
+  int id: @module_decl ref,
+  int index: int ref,
+  int exported_module: @module_decl_or_none ref
+);
+
+subscript_decls(  //dir=decl
+  unique int id: @subscript_decl,
+  int element_type: @type_or_none ref
+);
+
+#keyset[id, index]
+subscript_decl_params(  //dir=decl
+  int id: @subscript_decl ref,
+  int index: int ref,
+  int param: @param_decl_or_none ref
+);
+
+@var_decl =
+  @concrete_var_decl
+| @param_decl
+;
+
+#keyset[id]
+var_decls(  //dir=decl
+  int id: @var_decl ref,
+  string name: string ref,
+  int type_: @type_or_none ref
+);
+
+#keyset[id]
+var_decl_attached_property_wrapper_types(  //dir=decl
+  int id: @var_decl ref,
+  int attached_property_wrapper_type: @type_or_none ref
+);
+
+#keyset[id]
+var_decl_parent_patterns(  //dir=decl
+  int id: @var_decl ref,
+  int parent_pattern: @pattern_or_none ref
+);
+
+#keyset[id]
+var_decl_parent_initializers(  //dir=decl
+  int id: @var_decl ref,
+  int parent_initializer: @expr_or_none ref
+);
+
+#keyset[id]
+var_decl_property_wrapper_backing_var_bindings(  //dir=decl
+  int id: @var_decl ref,
+  int property_wrapper_backing_var_binding: @pattern_binding_decl_or_none ref
+);
+
+#keyset[id]
+var_decl_property_wrapper_backing_vars(  //dir=decl
+  int id: @var_decl ref,
+  int property_wrapper_backing_var: @var_decl_or_none ref
+);
+
+#keyset[id]
+var_decl_property_wrapper_projection_var_bindings(  //dir=decl
+  int id: @var_decl ref,
+  int property_wrapper_projection_var_binding: @pattern_binding_decl_or_none ref
+);
+
+#keyset[id]
+var_decl_property_wrapper_projection_vars(  //dir=decl
+  int id: @var_decl ref,
+  int property_wrapper_projection_var: @var_decl_or_none ref
+);
+
+accessor_decls(  //dir=decl
+  unique int id: @accessor_decl
+);
+
+#keyset[id]
+accessor_decl_is_getter(  //dir=decl
+  int id: @accessor_decl ref
+);
+
+#keyset[id]
+accessor_decl_is_setter(  //dir=decl
+  int id: @accessor_decl ref
+);
+
+#keyset[id]
+accessor_decl_is_will_set(  //dir=decl
+  int id: @accessor_decl ref
+);
+
+#keyset[id]
+accessor_decl_is_did_set(  //dir=decl
+  int id: @accessor_decl ref
+);
+
+#keyset[id]
+accessor_decl_is_read(  //dir=decl
+  int id: @accessor_decl ref
+);
+
+#keyset[id]
+accessor_decl_is_modify(  //dir=decl
+  int id: @accessor_decl ref
+);
+
+#keyset[id]
+accessor_decl_is_unsafe_address(  //dir=decl
+  int id: @accessor_decl ref
+);
+
+#keyset[id]
+accessor_decl_is_unsafe_mutable_address(  //dir=decl
+  int id: @accessor_decl ref
+);
+
+associated_type_decls(  //dir=decl
+  unique int id: @associated_type_decl
+);
+
+concrete_func_decls(  //dir=decl
+  unique int id: @concrete_func_decl
+);
+
+concrete_var_decls(  //dir=decl
+  unique int id: @concrete_var_decl,
+  int introducer_int: int ref
+);
+
+generic_type_param_decls(  //dir=decl
+  unique int id: @generic_type_param_decl
+);
+
+@nominal_type_decl =
+  @class_decl
+| @enum_decl
+| @protocol_decl
+| @struct_decl
+;
+
+#keyset[id]
+nominal_type_decls(  //dir=decl
+  int id: @nominal_type_decl ref,
+  int type_: @type_or_none ref
+);
+
+opaque_type_decls(  //dir=decl
+  unique int id: @opaque_type_decl,
+  int naming_declaration: @value_decl_or_none ref
+);
+
+#keyset[id, index]
+opaque_type_decl_opaque_generic_params(  //dir=decl
+  int id: @opaque_type_decl ref,
+  int index: int ref,
+  int opaque_generic_param: @generic_type_param_type_or_none ref
+);
+
+param_decls(  //dir=decl
+  unique int id: @param_decl
+);
+
+#keyset[id]
+param_decl_is_inout(  //dir=decl
+  int id: @param_decl ref
+);
+
+#keyset[id]
+param_decl_property_wrapper_local_wrapped_var_bindings(  //dir=decl
+  int id: @param_decl ref,
+  int property_wrapper_local_wrapped_var_binding: @pattern_binding_decl_or_none ref
+);
+
+#keyset[id]
+param_decl_property_wrapper_local_wrapped_vars(  //dir=decl
+  int id: @param_decl ref,
+  int property_wrapper_local_wrapped_var: @var_decl_or_none ref
+);
+
+type_alias_decls(  //dir=decl
+  unique int id: @type_alias_decl
+);
+
+class_decls(  //dir=decl
+  unique int id: @class_decl
+);
+
+enum_decls(  //dir=decl
+  unique int id: @enum_decl
+);
+
+protocol_decls(  //dir=decl
+  unique int id: @protocol_decl
+);
+
+struct_decls(  //dir=decl
+  unique int id: @struct_decl
+);
+
+arguments(  //dir=expr
+  unique int id: @argument,
+  string label: string ref,
+  int expr: @expr_or_none ref
+);
+
+@expr =
+  @abstract_closure_expr
+| @any_try_expr
+| @applied_property_wrapper_expr
+| @apply_expr
+| @assign_expr
+| @bind_optional_expr
+| @capture_list_expr
+| @collection_expr
+| @decl_ref_expr
+| @default_argument_expr
+| @discard_assignment_expr
+| @dot_syntax_base_ignored_expr
+| @dynamic_type_expr
+| @enum_is_case_expr
+| @error_expr
+| @explicit_cast_expr
+| @force_value_expr
+| @identity_expr
+| @if_expr
+| @implicit_conversion_expr
+| @in_out_expr
+| @key_path_application_expr
+| @key_path_dot_expr
+| @key_path_expr
+| @lazy_initializer_expr
+| @literal_expr
+| @lookup_expr
+| @make_temporarily_escapable_expr
+| @obj_c_selector_expr
+| @one_way_expr
+| @opaque_value_expr
+| @open_existential_expr
+| @optional_evaluation_expr
+| @other_constructor_decl_ref_expr
+| @overloaded_decl_ref_expr
+| @property_wrapper_value_placeholder_expr
+| @rebind_self_in_constructor_expr
+| @sequence_expr
+| @super_ref_expr
+| @tap_expr
+| @tuple_element_expr
+| @tuple_expr
+| @type_expr
+| @unresolved_decl_ref_expr
+| @unresolved_dot_expr
+| @unresolved_member_expr
+| @unresolved_pattern_expr
+| @unresolved_specialize_expr
+| @vararg_expansion_expr
+;
+
+#keyset[id]
+expr_types(  //dir=expr
+  int id: @expr ref,
+  int type_: @type_or_none ref
+);
+
+@abstract_closure_expr =
+  @auto_closure_expr
+| @closure_expr
+;
+
+@any_try_expr =
+  @force_try_expr
+| @optional_try_expr
+| @try_expr
+;
+
+#keyset[id]
+any_try_exprs(  //dir=expr
+  int id: @any_try_expr ref,
+  int sub_expr: @expr_or_none ref
+);
+
+applied_property_wrapper_exprs(  //dir=expr
+  unique int id: @applied_property_wrapper_expr,
+  int kind: int ref,
+  int value: @expr_or_none ref,
+  int param: @param_decl_or_none ref
+);
+
+@apply_expr =
+  @binary_expr
+| @call_expr
+| @postfix_unary_expr
+| @prefix_unary_expr
+| @self_apply_expr
+;
+
+#keyset[id]
+apply_exprs(  //dir=expr
+  int id: @apply_expr ref,
+  int function: @expr_or_none ref
+);
+
+#keyset[id, index]
+apply_expr_arguments(  //dir=expr
+  int id: @apply_expr ref,
+  int index: int ref,
+  int argument: @argument_or_none ref
+);
+
+assign_exprs(  //dir=expr
+  unique int id: @assign_expr,
+  int dest: @expr_or_none ref,
+  int source: @expr_or_none ref
+);
+
+bind_optional_exprs(  //dir=expr
+  unique int id: @bind_optional_expr,
+  int sub_expr: @expr_or_none ref
+);
+
+capture_list_exprs(  //dir=expr
+  unique int id: @capture_list_expr,
+  int closure_body: @closure_expr_or_none ref
+);
+
+#keyset[id, index]
+capture_list_expr_binding_decls(  //dir=expr
+  int id: @capture_list_expr ref,
+  int index: int ref,
+  int binding_decl: @pattern_binding_decl_or_none ref
+);
+
+@collection_expr =
+  @array_expr
+| @dictionary_expr
+;
+
+decl_ref_exprs(  //dir=expr
+  unique int id: @decl_ref_expr,
+  int decl: @decl_or_none ref
+);
+
+#keyset[id, index]
+decl_ref_expr_replacement_types(  //dir=expr
+  int id: @decl_ref_expr ref,
+  int index: int ref,
+  int replacement_type: @type_or_none ref
+);
+
+#keyset[id]
+decl_ref_expr_has_direct_to_storage_semantics(  //dir=expr
+  int id: @decl_ref_expr ref
+);
+
+#keyset[id]
+decl_ref_expr_has_direct_to_implementation_semantics(  //dir=expr
+  int id: @decl_ref_expr ref
+);
+
+#keyset[id]
+decl_ref_expr_has_ordinary_semantics(  //dir=expr
+  int id: @decl_ref_expr ref
+);
+
+#keyset[id]
+decl_ref_expr_has_distributed_thunk_semantics(  //dir=expr
+  int id: @decl_ref_expr ref
+);
+
+default_argument_exprs(  //dir=expr
+  unique int id: @default_argument_expr,
+  int param_decl: @param_decl_or_none ref,
+  int param_index: int ref
+);
+
+#keyset[id]
+default_argument_expr_caller_side_defaults(  //dir=expr
+  int id: @default_argument_expr ref,
+  int caller_side_default: @expr_or_none ref
+);
+
+discard_assignment_exprs(  //dir=expr
+  unique int id: @discard_assignment_expr
+);
+
+dot_syntax_base_ignored_exprs(  //dir=expr
+  unique int id: @dot_syntax_base_ignored_expr,
+  int qualifier: @expr_or_none ref,
+  int sub_expr: @expr_or_none ref
+);
+
+dynamic_type_exprs(  //dir=expr
+  unique int id: @dynamic_type_expr,
+  int base: @expr_or_none ref
+);
+
+enum_is_case_exprs(  //dir=expr
+  unique int id: @enum_is_case_expr,
+  int sub_expr: @expr_or_none ref,
+  int element: @enum_element_decl_or_none ref
+);
+
+error_exprs(  //dir=expr
+  unique int id: @error_expr
+);
+
+@explicit_cast_expr =
+  @checked_cast_expr
+| @coerce_expr
+;
+
+#keyset[id]
+explicit_cast_exprs(  //dir=expr
+  int id: @explicit_cast_expr ref,
+  int sub_expr: @expr_or_none ref
+);
+
+force_value_exprs(  //dir=expr
+  unique int id: @force_value_expr,
+  int sub_expr: @expr_or_none ref
+);
+
+@identity_expr =
+  @await_expr
+| @dot_self_expr
+| @paren_expr
+| @unresolved_member_chain_result_expr
+;
+
+#keyset[id]
+identity_exprs(  //dir=expr
+  int id: @identity_expr ref,
+  int sub_expr: @expr_or_none ref
+);
+
+if_exprs(  //dir=expr
+  unique int id: @if_expr,
+  int condition: @expr_or_none ref,
+  int then_expr: @expr_or_none ref,
+  int else_expr: @expr_or_none ref
+);
+
+@implicit_conversion_expr =
+  @any_hashable_erasure_expr
+| @archetype_to_super_expr
+| @array_to_pointer_expr
+| @bridge_from_obj_c_expr
+| @bridge_to_obj_c_expr
+| @class_metatype_to_object_expr
+| @collection_upcast_conversion_expr
+| @conditional_bridge_from_obj_c_expr
+| @covariant_function_conversion_expr
+| @covariant_return_conversion_expr
+| @derived_to_base_expr
+| @destructure_tuple_expr
+| @differentiable_function_expr
+| @differentiable_function_extract_original_expr
+| @erasure_expr
+| @existential_metatype_to_object_expr
+| @foreign_object_conversion_expr
+| @function_conversion_expr
+| @in_out_to_pointer_expr
+| @inject_into_optional_expr
+| @linear_function_expr
+| @linear_function_extract_original_expr
+| @linear_to_differentiable_function_expr
+| @load_expr
+| @metatype_conversion_expr
+| @pointer_to_pointer_expr
+| @protocol_metatype_to_object_expr
+| @string_to_pointer_expr
+| @underlying_to_opaque_expr
+| @unevaluated_instance_expr
+| @unresolved_type_conversion_expr
+;
+
+#keyset[id]
+implicit_conversion_exprs(  //dir=expr
+  int id: @implicit_conversion_expr ref,
+  int sub_expr: @expr_or_none ref
+);
+
+in_out_exprs(  //dir=expr
+  unique int id: @in_out_expr,
+  int sub_expr: @expr_or_none ref
+);
+
+key_path_application_exprs(  //dir=expr
+  unique int id: @key_path_application_expr,
+  int base: @expr_or_none ref,
+  int key_path: @expr_or_none ref
+);
+
+key_path_dot_exprs(  //dir=expr
+  unique int id: @key_path_dot_expr
+);
+
+key_path_exprs(  //dir=expr
+  unique int id: @key_path_expr
+);
+
+#keyset[id]
+key_path_expr_roots(  //dir=expr
+  int id: @key_path_expr ref,
+  int root: @type_repr_or_none ref
+);
+
+#keyset[id]
+key_path_expr_parsed_paths(  //dir=expr
+  int id: @key_path_expr ref,
+  int parsed_path: @expr_or_none ref
+);
+
+lazy_initializer_exprs(  //dir=expr
+  unique int id: @lazy_initializer_expr,
+  int sub_expr: @expr_or_none ref
+);
+
+@literal_expr =
+  @builtin_literal_expr
+| @interpolated_string_literal_expr
+| @nil_literal_expr
+| @object_literal_expr
+| @regex_literal_expr
+;
+
+@lookup_expr =
+  @dynamic_lookup_expr
+| @member_ref_expr
+| @subscript_expr
+;
+
+#keyset[id]
+lookup_exprs(  //dir=expr
+  int id: @lookup_expr ref,
+  int base: @expr_or_none ref
+);
+
+#keyset[id]
+lookup_expr_members(  //dir=expr
+  int id: @lookup_expr ref,
+  int member: @decl_or_none ref
+);
+
+make_temporarily_escapable_exprs(  //dir=expr
+  unique int id: @make_temporarily_escapable_expr,
+  int escaping_closure: @opaque_value_expr_or_none ref,
+  int nonescaping_closure: @expr_or_none ref,
+  int sub_expr: @expr_or_none ref
+);
+
+obj_c_selector_exprs(  //dir=expr
+  unique int id: @obj_c_selector_expr,
+  int sub_expr: @expr_or_none ref,
+  int method: @abstract_function_decl_or_none ref
+);
+
+one_way_exprs(  //dir=expr
+  unique int id: @one_way_expr,
+  int sub_expr: @expr_or_none ref
+);
+
+opaque_value_exprs(  //dir=expr
+  unique int id: @opaque_value_expr
+);
+
+open_existential_exprs(  //dir=expr
+  unique int id: @open_existential_expr,
+  int sub_expr: @expr_or_none ref,
+  int existential: @expr_or_none ref,
+  int opaque_expr: @opaque_value_expr_or_none ref
+);
+
+optional_evaluation_exprs(  //dir=expr
+  unique int id: @optional_evaluation_expr,
+  int sub_expr: @expr_or_none ref
+);
+
+other_constructor_decl_ref_exprs(  //dir=expr
+  unique int id: @other_constructor_decl_ref_expr,
+  int constructor_decl: @constructor_decl_or_none ref
+);
+
+overloaded_decl_ref_exprs(  //dir=expr
+  unique int id: @overloaded_decl_ref_expr
+);
+
+#keyset[id, index]
+overloaded_decl_ref_expr_possible_declarations(  //dir=expr
+  int id: @overloaded_decl_ref_expr ref,
+  int index: int ref,
+  int possible_declaration: @value_decl_or_none ref
+);
+
+property_wrapper_value_placeholder_exprs(  //dir=expr
+  unique int id: @property_wrapper_value_placeholder_expr,
+  int placeholder: @opaque_value_expr_or_none ref
+);
+
+#keyset[id]
+property_wrapper_value_placeholder_expr_wrapped_values(  //dir=expr
+  int id: @property_wrapper_value_placeholder_expr ref,
+  int wrapped_value: @expr_or_none ref
+);
+
+rebind_self_in_constructor_exprs(  //dir=expr
+  unique int id: @rebind_self_in_constructor_expr,
+  int sub_expr: @expr_or_none ref,
+  int self: @var_decl_or_none ref
+);
+
+sequence_exprs(  //dir=expr
+  unique int id: @sequence_expr
+);
+
+#keyset[id, index]
+sequence_expr_elements(  //dir=expr
+  int id: @sequence_expr ref,
+  int index: int ref,
+  int element: @expr_or_none ref
+);
+
+super_ref_exprs(  //dir=expr
+  unique int id: @super_ref_expr,
+  int self: @var_decl_or_none ref
+);
+
+tap_exprs(  //dir=expr
+  unique int id: @tap_expr,
+  int body: @brace_stmt_or_none ref,
+  int var: @var_decl_or_none ref
+);
+
+#keyset[id]
+tap_expr_sub_exprs(  //dir=expr
+  int id: @tap_expr ref,
+  int sub_expr: @expr_or_none ref
+);
+
+tuple_element_exprs(  //dir=expr
+  unique int id: @tuple_element_expr,
+  int sub_expr: @expr_or_none ref,
+  int index: int ref
+);
+
+tuple_exprs(  //dir=expr
+  unique int id: @tuple_expr
+);
+
+#keyset[id, index]
+tuple_expr_elements(  //dir=expr
+  int id: @tuple_expr ref,
+  int index: int ref,
+  int element: @expr_or_none ref
+);
+
+type_exprs(  //dir=expr
+  unique int id: @type_expr
+);
+
+#keyset[id]
+type_expr_type_reprs(  //dir=expr
+  int id: @type_expr ref,
+  int type_repr: @type_repr_or_none ref
+);
+
+unresolved_decl_ref_exprs(  //dir=expr
+  unique int id: @unresolved_decl_ref_expr
+);
+
+#keyset[id]
+unresolved_decl_ref_expr_names(  //dir=expr
+  int id: @unresolved_decl_ref_expr ref,
+  string name: string ref
+);
+
+unresolved_dot_exprs(  //dir=expr
+  unique int id: @unresolved_dot_expr,
+  int base: @expr_or_none ref,
+  string name: string ref
+);
+
+unresolved_member_exprs(  //dir=expr
+  unique int id: @unresolved_member_expr,
+  string name: string ref
+);
+
+unresolved_pattern_exprs(  //dir=expr
+  unique int id: @unresolved_pattern_expr,
+  int sub_pattern: @pattern_or_none ref
+);
+
+unresolved_specialize_exprs(  //dir=expr
+  unique int id: @unresolved_specialize_expr,
+  int sub_expr: @expr_or_none ref
+);
+
+vararg_expansion_exprs(  //dir=expr
+  unique int id: @vararg_expansion_expr,
+  int sub_expr: @expr_or_none ref
+);
+
+any_hashable_erasure_exprs(  //dir=expr
+  unique int id: @any_hashable_erasure_expr
+);
+
+archetype_to_super_exprs(  //dir=expr
+  unique int id: @archetype_to_super_expr
+);
+
+array_exprs(  //dir=expr
+  unique int id: @array_expr
+);
+
+#keyset[id, index]
+array_expr_elements(  //dir=expr
+  int id: @array_expr ref,
+  int index: int ref,
+  int element: @expr_or_none ref
+);
+
+array_to_pointer_exprs(  //dir=expr
+  unique int id: @array_to_pointer_expr
+);
+
+auto_closure_exprs(  //dir=expr
+  unique int id: @auto_closure_expr
+);
+
+await_exprs(  //dir=expr
+  unique int id: @await_expr
+);
+
+binary_exprs(  //dir=expr
+  unique int id: @binary_expr
+);
+
+bridge_from_obj_c_exprs(  //dir=expr
+  unique int id: @bridge_from_obj_c_expr
+);
+
+bridge_to_obj_c_exprs(  //dir=expr
+  unique int id: @bridge_to_obj_c_expr
+);
+
+@builtin_literal_expr =
+  @boolean_literal_expr
+| @magic_identifier_literal_expr
+| @number_literal_expr
+| @string_literal_expr
+;
+
+call_exprs(  //dir=expr
+  unique int id: @call_expr
+);
+
+@checked_cast_expr =
+  @conditional_checked_cast_expr
+| @forced_checked_cast_expr
+| @is_expr
+;
+
+class_metatype_to_object_exprs(  //dir=expr
+  unique int id: @class_metatype_to_object_expr
+);
+
+closure_exprs(  //dir=expr
+  unique int id: @closure_expr
+);
+
+coerce_exprs(  //dir=expr
+  unique int id: @coerce_expr
+);
+
+collection_upcast_conversion_exprs(  //dir=expr
+  unique int id: @collection_upcast_conversion_expr
+);
+
+conditional_bridge_from_obj_c_exprs(  //dir=expr
+  unique int id: @conditional_bridge_from_obj_c_expr
+);
+
+covariant_function_conversion_exprs(  //dir=expr
+  unique int id: @covariant_function_conversion_expr
+);
+
+covariant_return_conversion_exprs(  //dir=expr
+  unique int id: @covariant_return_conversion_expr
+);
+
+derived_to_base_exprs(  //dir=expr
+  unique int id: @derived_to_base_expr
+);
+
+destructure_tuple_exprs(  //dir=expr
+  unique int id: @destructure_tuple_expr
+);
+
+dictionary_exprs(  //dir=expr
+  unique int id: @dictionary_expr
+);
+
+#keyset[id, index]
+dictionary_expr_elements(  //dir=expr
+  int id: @dictionary_expr ref,
+  int index: int ref,
+  int element: @expr_or_none ref
+);
+
+differentiable_function_exprs(  //dir=expr
+  unique int id: @differentiable_function_expr
+);
+
+differentiable_function_extract_original_exprs(  //dir=expr
+  unique int id: @differentiable_function_extract_original_expr
+);
+
+dot_self_exprs(  //dir=expr
+  unique int id: @dot_self_expr
+);
+
+@dynamic_lookup_expr =
+  @dynamic_member_ref_expr
+| @dynamic_subscript_expr
+;
+
+erasure_exprs(  //dir=expr
+  unique int id: @erasure_expr
+);
+
+existential_metatype_to_object_exprs(  //dir=expr
+  unique int id: @existential_metatype_to_object_expr
+);
+
+force_try_exprs(  //dir=expr
+  unique int id: @force_try_expr
+);
+
+foreign_object_conversion_exprs(  //dir=expr
+  unique int id: @foreign_object_conversion_expr
+);
+
+function_conversion_exprs(  //dir=expr
+  unique int id: @function_conversion_expr
+);
+
+in_out_to_pointer_exprs(  //dir=expr
+  unique int id: @in_out_to_pointer_expr
+);
+
+inject_into_optional_exprs(  //dir=expr
+  unique int id: @inject_into_optional_expr
+);
+
+interpolated_string_literal_exprs(  //dir=expr
+  unique int id: @interpolated_string_literal_expr
+);
+
+#keyset[id]
+interpolated_string_literal_expr_interpolation_exprs(  //dir=expr
+  int id: @interpolated_string_literal_expr ref,
+  int interpolation_expr: @opaque_value_expr_or_none ref
+);
+
+#keyset[id]
+interpolated_string_literal_expr_interpolation_count_exprs(  //dir=expr
+  int id: @interpolated_string_literal_expr ref,
+  int interpolation_count_expr: @expr_or_none ref
+);
+
+#keyset[id]
+interpolated_string_literal_expr_literal_capacity_exprs(  //dir=expr
+  int id: @interpolated_string_literal_expr ref,
+  int literal_capacity_expr: @expr_or_none ref
+);
+
+#keyset[id]
+interpolated_string_literal_expr_appending_exprs(  //dir=expr
+  int id: @interpolated_string_literal_expr ref,
+  int appending_expr: @tap_expr_or_none ref
+);
+
+linear_function_exprs(  //dir=expr
+  unique int id: @linear_function_expr
+);
+
+linear_function_extract_original_exprs(  //dir=expr
+  unique int id: @linear_function_extract_original_expr
+);
+
+linear_to_differentiable_function_exprs(  //dir=expr
+  unique int id: @linear_to_differentiable_function_expr
+);
+
+load_exprs(  //dir=expr
+  unique int id: @load_expr
+);
+
+member_ref_exprs(  //dir=expr
+  unique int id: @member_ref_expr
+);
+
+#keyset[id]
+member_ref_expr_has_direct_to_storage_semantics(  //dir=expr
+  int id: @member_ref_expr ref
+);
+
+#keyset[id]
+member_ref_expr_has_direct_to_implementation_semantics(  //dir=expr
+  int id: @member_ref_expr ref
+);
+
+#keyset[id]
+member_ref_expr_has_ordinary_semantics(  //dir=expr
+  int id: @member_ref_expr ref
+);
+
+#keyset[id]
+member_ref_expr_has_distributed_thunk_semantics(  //dir=expr
+  int id: @member_ref_expr ref
+);
+
+metatype_conversion_exprs(  //dir=expr
+  unique int id: @metatype_conversion_expr
+);
+
+nil_literal_exprs(  //dir=expr
+  unique int id: @nil_literal_expr
+);
+
+object_literal_exprs(  //dir=expr
+  unique int id: @object_literal_expr,
+  int kind: int ref
+);
+
+#keyset[id, index]
+object_literal_expr_arguments(  //dir=expr
+  int id: @object_literal_expr ref,
+  int index: int ref,
+  int argument: @argument_or_none ref
+);
+
+optional_try_exprs(  //dir=expr
+  unique int id: @optional_try_expr
+);
+
+paren_exprs(  //dir=expr
+  unique int id: @paren_expr
+);
+
+pointer_to_pointer_exprs(  //dir=expr
+  unique int id: @pointer_to_pointer_expr
+);
+
+postfix_unary_exprs(  //dir=expr
+  unique int id: @postfix_unary_expr
+);
+
+prefix_unary_exprs(  //dir=expr
+  unique int id: @prefix_unary_expr
+);
+
+protocol_metatype_to_object_exprs(  //dir=expr
+  unique int id: @protocol_metatype_to_object_expr
+);
+
+regex_literal_exprs(  //dir=expr
+  unique int id: @regex_literal_expr
+);
+
+@self_apply_expr =
+  @constructor_ref_call_expr
+| @dot_syntax_call_expr
+;
+
+#keyset[id]
+self_apply_exprs(  //dir=expr
+  int id: @self_apply_expr ref,
+  int base: @expr_or_none ref
+);
+
+string_to_pointer_exprs(  //dir=expr
+  unique int id: @string_to_pointer_expr
+);
+
+subscript_exprs(  //dir=expr
+  unique int id: @subscript_expr
+);
+
+#keyset[id, index]
+subscript_expr_arguments(  //dir=expr
+  int id: @subscript_expr ref,
+  int index: int ref,
+  int argument: @argument_or_none ref
+);
+
+#keyset[id]
+subscript_expr_has_direct_to_storage_semantics(  //dir=expr
+  int id: @subscript_expr ref
+);
+
+#keyset[id]
+subscript_expr_has_direct_to_implementation_semantics(  //dir=expr
+  int id: @subscript_expr ref
+);
+
+#keyset[id]
+subscript_expr_has_ordinary_semantics(  //dir=expr
+  int id: @subscript_expr ref
+);
+
+#keyset[id]
+subscript_expr_has_distributed_thunk_semantics(  //dir=expr
+  int id: @subscript_expr ref
+);
+
+try_exprs(  //dir=expr
+  unique int id: @try_expr
+);
+
+underlying_to_opaque_exprs(  //dir=expr
+  unique int id: @underlying_to_opaque_expr
+);
+
+unevaluated_instance_exprs(  //dir=expr
+  unique int id: @unevaluated_instance_expr
+);
+
+unresolved_member_chain_result_exprs(  //dir=expr
+  unique int id: @unresolved_member_chain_result_expr
+);
+
+unresolved_type_conversion_exprs(  //dir=expr
+  unique int id: @unresolved_type_conversion_expr
+);
+
+boolean_literal_exprs(  //dir=expr
+  unique int id: @boolean_literal_expr,
+  boolean value: boolean ref
+);
+
+conditional_checked_cast_exprs(  //dir=expr
+  unique int id: @conditional_checked_cast_expr
+);
+
+constructor_ref_call_exprs(  //dir=expr
+  unique int id: @constructor_ref_call_expr
+);
+
+dot_syntax_call_exprs(  //dir=expr
+  unique int id: @dot_syntax_call_expr
+);
+
+dynamic_member_ref_exprs(  //dir=expr
+  unique int id: @dynamic_member_ref_expr
+);
+
+dynamic_subscript_exprs(  //dir=expr
+  unique int id: @dynamic_subscript_expr
+);
+
+forced_checked_cast_exprs(  //dir=expr
+  unique int id: @forced_checked_cast_expr
+);
+
+is_exprs(  //dir=expr
+  unique int id: @is_expr
+);
+
+magic_identifier_literal_exprs(  //dir=expr
+  unique int id: @magic_identifier_literal_expr,
+  string kind: string ref
+);
+
+@number_literal_expr =
+  @float_literal_expr
+| @integer_literal_expr
+;
+
+string_literal_exprs(  //dir=expr
+  unique int id: @string_literal_expr,
+  string value: string ref
+);
+
+float_literal_exprs(  //dir=expr
+  unique int id: @float_literal_expr,
+  string string_value: string ref
+);
+
+integer_literal_exprs(  //dir=expr
+  unique int id: @integer_literal_expr,
+  string string_value: string ref
+);
+
+@pattern =
+  @any_pattern
+| @binding_pattern
+| @bool_pattern
+| @enum_element_pattern
+| @expr_pattern
+| @is_pattern
+| @named_pattern
+| @optional_some_pattern
+| @paren_pattern
+| @tuple_pattern
+| @typed_pattern
+;
+
+any_patterns(  //dir=pattern
+  unique int id: @any_pattern
+);
+
+binding_patterns(  //dir=pattern
+  unique int id: @binding_pattern,
+  int sub_pattern: @pattern_or_none ref
+);
+
+bool_patterns(  //dir=pattern
+  unique int id: @bool_pattern,
+  boolean value: boolean ref
+);
+
+enum_element_patterns(  //dir=pattern
+  unique int id: @enum_element_pattern,
+  int element: @enum_element_decl_or_none ref
+);
+
+#keyset[id]
+enum_element_pattern_sub_patterns(  //dir=pattern
+  int id: @enum_element_pattern ref,
+  int sub_pattern: @pattern_or_none ref
+);
+
+expr_patterns(  //dir=pattern
+  unique int id: @expr_pattern,
+  int sub_expr: @expr_or_none ref
+);
+
+is_patterns(  //dir=pattern
+  unique int id: @is_pattern
+);
+
+#keyset[id]
+is_pattern_cast_type_reprs(  //dir=pattern
+  int id: @is_pattern ref,
+  int cast_type_repr: @type_repr_or_none ref
+);
+
+#keyset[id]
+is_pattern_sub_patterns(  //dir=pattern
+  int id: @is_pattern ref,
+  int sub_pattern: @pattern_or_none ref
+);
+
+named_patterns(  //dir=pattern
+  unique int id: @named_pattern,
+  string name: string ref
+);
+
+optional_some_patterns(  //dir=pattern
+  unique int id: @optional_some_pattern,
+  int sub_pattern: @pattern_or_none ref
+);
+
+paren_patterns(  //dir=pattern
+  unique int id: @paren_pattern,
+  int sub_pattern: @pattern_or_none ref
+);
+
+tuple_patterns(  //dir=pattern
+  unique int id: @tuple_pattern
+);
+
+#keyset[id, index]
+tuple_pattern_elements(  //dir=pattern
+  int id: @tuple_pattern ref,
+  int index: int ref,
+  int element: @pattern_or_none ref
+);
+
+typed_patterns(  //dir=pattern
+  unique int id: @typed_pattern,
+  int sub_pattern: @pattern_or_none ref
+);
+
+#keyset[id]
+typed_pattern_type_reprs(  //dir=pattern
+  int id: @typed_pattern ref,
+  int type_repr: @type_repr_or_none ref
+);
+
+case_label_items(  //dir=stmt
+  unique int id: @case_label_item,
+  int pattern: @pattern_or_none ref
+);
+
+#keyset[id]
+case_label_item_guards(  //dir=stmt
+  int id: @case_label_item ref,
+  int guard: @expr_or_none ref
+);
+
+condition_elements(  //dir=stmt
+  unique int id: @condition_element
+);
+
+#keyset[id]
+condition_element_booleans(  //dir=stmt
+  int id: @condition_element ref,
+  int boolean_: @expr_or_none ref
+);
+
+#keyset[id]
+condition_element_patterns(  //dir=stmt
+  int id: @condition_element ref,
+  int pattern: @pattern_or_none ref
+);
+
+#keyset[id]
+condition_element_initializers(  //dir=stmt
+  int id: @condition_element ref,
+  int initializer: @expr_or_none ref
+);
+
+@stmt =
+  @brace_stmt
+| @break_stmt
+| @case_stmt
+| @continue_stmt
+| @defer_stmt
+| @fail_stmt
+| @fallthrough_stmt
+| @labeled_stmt
+| @pound_assert_stmt
+| @return_stmt
+| @throw_stmt
+| @yield_stmt
+;
+
+stmt_conditions(  //dir=stmt
+  unique int id: @stmt_condition
+);
+
+#keyset[id, index]
+stmt_condition_elements(  //dir=stmt
+  int id: @stmt_condition ref,
+  int index: int ref,
+  int element: @condition_element_or_none ref
+);
+
+brace_stmts(  //dir=stmt
+  unique int id: @brace_stmt
+);
+
+#keyset[id, index]
+brace_stmt_elements(  //dir=stmt
+  int id: @brace_stmt ref,
+  int index: int ref,
+  int element: @ast_node_or_none ref
+);
+
+break_stmts(  //dir=stmt
+  unique int id: @break_stmt
+);
+
+#keyset[id]
+break_stmt_target_names(  //dir=stmt
+  int id: @break_stmt ref,
+  string target_name: string ref
+);
+
+#keyset[id]
+break_stmt_targets(  //dir=stmt
+  int id: @break_stmt ref,
+  int target: @stmt_or_none ref
+);
+
+case_stmts(  //dir=stmt
+  unique int id: @case_stmt,
+  int body: @stmt_or_none ref
+);
+
+#keyset[id, index]
+case_stmt_labels(  //dir=stmt
+  int id: @case_stmt ref,
+  int index: int ref,
+  int label: @case_label_item_or_none ref
+);
+
+#keyset[id, index]
+case_stmt_variables(  //dir=stmt
+  int id: @case_stmt ref,
+  int index: int ref,
+  int variable: @var_decl_or_none ref
+);
+
+continue_stmts(  //dir=stmt
+  unique int id: @continue_stmt
+);
+
+#keyset[id]
+continue_stmt_target_names(  //dir=stmt
+  int id: @continue_stmt ref,
+  string target_name: string ref
+);
+
+#keyset[id]
+continue_stmt_targets(  //dir=stmt
+  int id: @continue_stmt ref,
+  int target: @stmt_or_none ref
+);
+
+defer_stmts(  //dir=stmt
+  unique int id: @defer_stmt,
+  int body: @brace_stmt_or_none ref
+);
+
+fail_stmts(  //dir=stmt
+  unique int id: @fail_stmt
+);
+
+fallthrough_stmts(  //dir=stmt
+  unique int id: @fallthrough_stmt,
+  int fallthrough_source: @case_stmt_or_none ref,
+  int fallthrough_dest: @case_stmt_or_none ref
+);
+
+@labeled_stmt =
+  @do_catch_stmt
+| @do_stmt
+| @for_each_stmt
+| @labeled_conditional_stmt
+| @repeat_while_stmt
+| @switch_stmt
+;
+
+#keyset[id]
+labeled_stmt_labels(  //dir=stmt
+  int id: @labeled_stmt ref,
+  string label: string ref
+);
+
+pound_assert_stmts(  //dir=stmt
+  unique int id: @pound_assert_stmt,
+  int condition: @expr_or_none ref,
+  string message: string ref
+);
+
+return_stmts(  //dir=stmt
+  unique int id: @return_stmt
+);
+
+#keyset[id]
+return_stmt_results(  //dir=stmt
+  int id: @return_stmt ref,
+  int result: @expr_or_none ref
+);
+
+throw_stmts(  //dir=stmt
+  unique int id: @throw_stmt,
+  int sub_expr: @expr_or_none ref
+);
+
+yield_stmts(  //dir=stmt
+  unique int id: @yield_stmt
+);
+
+#keyset[id, index]
+yield_stmt_results(  //dir=stmt
+  int id: @yield_stmt ref,
+  int index: int ref,
+  int result: @expr_or_none ref
+);
+
+do_catch_stmts(  //dir=stmt
+  unique int id: @do_catch_stmt,
+  int body: @stmt_or_none ref
+);
+
+#keyset[id, index]
+do_catch_stmt_catches(  //dir=stmt
+  int id: @do_catch_stmt ref,
+  int index: int ref,
+  int catch: @case_stmt_or_none ref
+);
+
+do_stmts(  //dir=stmt
+  unique int id: @do_stmt,
+  int body: @brace_stmt_or_none ref
+);
+
+for_each_stmts(  //dir=stmt
+  unique int id: @for_each_stmt,
+  int pattern: @pattern_or_none ref,
+  int sequence: @expr_or_none ref,
+  int body: @brace_stmt_or_none ref
+);
+
+#keyset[id]
+for_each_stmt_wheres(  //dir=stmt
+  int id: @for_each_stmt ref,
+  int where: @expr_or_none ref
+);
+
+@labeled_conditional_stmt =
+  @guard_stmt
+| @if_stmt
+| @while_stmt
+;
+
+#keyset[id]
+labeled_conditional_stmts(  //dir=stmt
+  int id: @labeled_conditional_stmt ref,
+  int condition: @stmt_condition_or_none ref
+);
+
+repeat_while_stmts(  //dir=stmt
+  unique int id: @repeat_while_stmt,
+  int condition: @expr_or_none ref,
+  int body: @stmt_or_none ref
+);
+
+switch_stmts(  //dir=stmt
+  unique int id: @switch_stmt,
+  int expr: @expr_or_none ref
+);
+
+#keyset[id, index]
+switch_stmt_cases(  //dir=stmt
+  int id: @switch_stmt ref,
+  int index: int ref,
+  int case_: @case_stmt_or_none ref
+);
+
+guard_stmts(  //dir=stmt
+  unique int id: @guard_stmt,
+  int body: @brace_stmt_or_none ref
+);
+
+if_stmts(  //dir=stmt
+  unique int id: @if_stmt,
+  int then: @stmt_or_none ref
+);
+
+#keyset[id]
+if_stmt_elses(  //dir=stmt
+  int id: @if_stmt ref,
+  int else: @stmt_or_none ref
+);
+
+while_stmts(  //dir=stmt
+  unique int id: @while_stmt,
+  int body: @stmt_or_none ref
+);
+
+@type =
+  @any_function_type
+| @any_generic_type
+| @any_metatype_type
+| @builtin_type
+| @dependent_member_type
+| @dynamic_self_type
+| @error_type
+| @existential_type
+| @in_out_type
+| @l_value_type
+| @module_type
+| @parameterized_protocol_type
+| @protocol_composition_type
+| @reference_storage_type
+| @substitutable_type
+| @sugar_type
+| @tuple_type
+| @unresolved_type
+;
+
+#keyset[id]
+types(  //dir=type
+  int id: @type ref,
+  string name: string ref,
+  int canonical_type: @type_or_none ref
+);
+
+type_reprs(  //dir=type
+  unique int id: @type_repr,
+  int type_: @type_or_none ref
+);
+
+@any_function_type =
+  @function_type
+| @generic_function_type
+;
+
+#keyset[id]
+any_function_types(  //dir=type
+  int id: @any_function_type ref,
+  int result: @type_or_none ref
+);
+
+#keyset[id, index]
+any_function_type_param_types(  //dir=type
+  int id: @any_function_type ref,
+  int index: int ref,
+  int param_type: @type_or_none ref
+);
+
+#keyset[id, index]
+any_function_type_param_labels(  //dir=type
+  int id: @any_function_type ref,
+  int index: int ref,
+  string param_label: string ref
+);
+
+#keyset[id]
+any_function_type_is_throwing(  //dir=type
+  int id: @any_function_type ref
+);
+
+#keyset[id]
+any_function_type_is_async(  //dir=type
+  int id: @any_function_type ref
+);
+
+@any_generic_type =
+  @nominal_or_bound_generic_nominal_type
+| @unbound_generic_type
+;
+
+#keyset[id]
+any_generic_types(  //dir=type
+  int id: @any_generic_type ref,
+  int declaration: @decl_or_none ref
+);
+
+#keyset[id]
+any_generic_type_parents(  //dir=type
+  int id: @any_generic_type ref,
+  int parent: @type_or_none ref
+);
+
+@any_metatype_type =
+  @existential_metatype_type
+| @metatype_type
+;
+
+@builtin_type =
+  @any_builtin_integer_type
+| @builtin_bridge_object_type
+| @builtin_default_actor_storage_type
+| @builtin_executor_type
+| @builtin_float_type
+| @builtin_job_type
+| @builtin_native_object_type
+| @builtin_raw_pointer_type
+| @builtin_raw_unsafe_continuation_type
+| @builtin_unsafe_value_buffer_type
+| @builtin_vector_type
+;
+
+dependent_member_types(  //dir=type
+  unique int id: @dependent_member_type,
+  int base_type: @type_or_none ref,
+  int associated_type_decl: @associated_type_decl_or_none ref
+);
+
+dynamic_self_types(  //dir=type
+  unique int id: @dynamic_self_type,
+  int static_self_type: @type_or_none ref
+);
+
+error_types(  //dir=type
+  unique int id: @error_type
+);
+
+existential_types(  //dir=type
+  unique int id: @existential_type,
+  int constraint: @type_or_none ref
+);
+
+in_out_types(  //dir=type
+  unique int id: @in_out_type,
+  int object_type: @type_or_none ref
+);
+
+l_value_types(  //dir=type
+  unique int id: @l_value_type,
+  int object_type: @type_or_none ref
+);
+
+module_types(  //dir=type
+  unique int id: @module_type,
+  int module: @module_decl_or_none ref
+);
+
+parameterized_protocol_types(  //dir=type
+  unique int id: @parameterized_protocol_type,
+  int base: @protocol_type_or_none ref
+);
+
+#keyset[id, index]
+parameterized_protocol_type_args(  //dir=type
+  int id: @parameterized_protocol_type ref,
+  int index: int ref,
+  int arg: @type_or_none ref
+);
+
+protocol_composition_types(  //dir=type
+  unique int id: @protocol_composition_type
+);
+
+#keyset[id, index]
+protocol_composition_type_members(  //dir=type
+  int id: @protocol_composition_type ref,
+  int index: int ref,
+  int member: @type_or_none ref
+);
+
+@reference_storage_type =
+  @unmanaged_storage_type
+| @unowned_storage_type
+| @weak_storage_type
+;
+
+#keyset[id]
+reference_storage_types(  //dir=type
+  int id: @reference_storage_type ref,
+  int referent_type: @type_or_none ref
+);
+
+@substitutable_type =
+  @archetype_type
+| @generic_type_param_type
+;
+
+@sugar_type =
+  @paren_type
+| @syntax_sugar_type
+| @type_alias_type
+;
+
+tuple_types(  //dir=type
+  unique int id: @tuple_type
+);
+
+#keyset[id, index]
+tuple_type_types(  //dir=type
+  int id: @tuple_type ref,
+  int index: int ref,
+  int type_: @type_or_none ref
+);
+
+#keyset[id, index]
+tuple_type_names(  //dir=type
+  int id: @tuple_type ref,
+  int index: int ref,
+  string name: string ref
+);
+
+unresolved_types(  //dir=type
+  unique int id: @unresolved_type
+);
+
+@any_builtin_integer_type =
+  @builtin_integer_literal_type
+| @builtin_integer_type
+;
+
+@archetype_type =
+  @opaque_type_archetype_type
+| @opened_archetype_type
+| @primary_archetype_type
+;
+
+#keyset[id]
+archetype_types(  //dir=type
+  int id: @archetype_type ref,
+  int interface_type: @type_or_none ref
+);
+
+#keyset[id]
+archetype_type_superclasses(  //dir=type
+  int id: @archetype_type ref,
+  int superclass: @type_or_none ref
+);
+
+#keyset[id, index]
+archetype_type_protocols(  //dir=type
+  int id: @archetype_type ref,
+  int index: int ref,
+  int protocol: @protocol_decl_or_none ref
+);
+
+builtin_bridge_object_types(  //dir=type
+  unique int id: @builtin_bridge_object_type
+);
+
+builtin_default_actor_storage_types(  //dir=type
+  unique int id: @builtin_default_actor_storage_type
+);
+
+builtin_executor_types(  //dir=type
+  unique int id: @builtin_executor_type
+);
+
+builtin_float_types(  //dir=type
+  unique int id: @builtin_float_type
+);
+
+builtin_job_types(  //dir=type
+  unique int id: @builtin_job_type
+);
+
+builtin_native_object_types(  //dir=type
+  unique int id: @builtin_native_object_type
+);
+
+builtin_raw_pointer_types(  //dir=type
+  unique int id: @builtin_raw_pointer_type
+);
+
+builtin_raw_unsafe_continuation_types(  //dir=type
+  unique int id: @builtin_raw_unsafe_continuation_type
+);
+
+builtin_unsafe_value_buffer_types(  //dir=type
+  unique int id: @builtin_unsafe_value_buffer_type
+);
+
+builtin_vector_types(  //dir=type
+  unique int id: @builtin_vector_type
+);
+
+existential_metatype_types(  //dir=type
+  unique int id: @existential_metatype_type
+);
+
+function_types(  //dir=type
+  unique int id: @function_type
+);
+
+generic_function_types(  //dir=type
+  unique int id: @generic_function_type
+);
+
+#keyset[id, index]
+generic_function_type_generic_params(  //dir=type
+  int id: @generic_function_type ref,
+  int index: int ref,
+  int generic_param: @generic_type_param_type_or_none ref
+);
+
+generic_type_param_types(  //dir=type
+  unique int id: @generic_type_param_type
+);
+
+metatype_types(  //dir=type
+  unique int id: @metatype_type
+);
+
+@nominal_or_bound_generic_nominal_type =
+  @bound_generic_type
+| @nominal_type
+;
+
+paren_types(  //dir=type
+  unique int id: @paren_type,
+  int type_: @type_or_none ref
+);
+
+@syntax_sugar_type =
+  @dictionary_type
+| @unary_syntax_sugar_type
+;
+
+type_alias_types(  //dir=type
+  unique int id: @type_alias_type,
+  int decl: @type_alias_decl_or_none ref
+);
+
+unbound_generic_types(  //dir=type
+  unique int id: @unbound_generic_type
+);
+
+unmanaged_storage_types(  //dir=type
+  unique int id: @unmanaged_storage_type
+);
+
+unowned_storage_types(  //dir=type
+  unique int id: @unowned_storage_type
+);
+
+weak_storage_types(  //dir=type
+  unique int id: @weak_storage_type
+);
+
+@bound_generic_type =
+  @bound_generic_class_type
+| @bound_generic_enum_type
+| @bound_generic_struct_type
+;
+
+#keyset[id, index]
+bound_generic_type_arg_types(  //dir=type
+  int id: @bound_generic_type ref,
+  int index: int ref,
+  int arg_type: @type_or_none ref
+);
+
+builtin_integer_literal_types(  //dir=type
+  unique int id: @builtin_integer_literal_type
+);
+
+builtin_integer_types(  //dir=type
+  unique int id: @builtin_integer_type
+);
+
+#keyset[id]
+builtin_integer_type_widths(  //dir=type
+  int id: @builtin_integer_type ref,
+  int width: int ref
+);
+
+dictionary_types(  //dir=type
+  unique int id: @dictionary_type,
+  int key_type: @type_or_none ref,
+  int value_type: @type_or_none ref
+);
+
+@nominal_type =
+  @class_type
+| @enum_type
+| @protocol_type
+| @struct_type
+;
+
+opaque_type_archetype_types(  //dir=type
+  unique int id: @opaque_type_archetype_type,
+  int declaration: @opaque_type_decl_or_none ref
+);
+
+opened_archetype_types(  //dir=type
+  unique int id: @opened_archetype_type
+);
+
+primary_archetype_types(  //dir=type
+  unique int id: @primary_archetype_type
+);
+
+@unary_syntax_sugar_type =
+  @array_slice_type
+| @optional_type
+| @variadic_sequence_type
+;
+
+#keyset[id]
+unary_syntax_sugar_types(  //dir=type
+  int id: @unary_syntax_sugar_type ref,
+  int base_type: @type_or_none ref
+);
+
+array_slice_types(  //dir=type
+  unique int id: @array_slice_type
+);
+
+bound_generic_class_types(  //dir=type
+  unique int id: @bound_generic_class_type
+);
+
+bound_generic_enum_types(  //dir=type
+  unique int id: @bound_generic_enum_type
+);
+
+bound_generic_struct_types(  //dir=type
+  unique int id: @bound_generic_struct_type
+);
+
+class_types(  //dir=type
+  unique int id: @class_type
+);
+
+enum_types(  //dir=type
+  unique int id: @enum_type
+);
+
+optional_types(  //dir=type
+  unique int id: @optional_type
+);
+
+protocol_types(  //dir=type
+  unique int id: @protocol_type
+);
+
+struct_types(  //dir=type
+  unique int id: @struct_type
+);
+
+variadic_sequence_types(  //dir=type
+  unique int id: @variadic_sequence_type
+);
+
+@abstract_function_decl_or_none =
+  @abstract_function_decl
+| @unspecified_element
+;
+
+@accessor_decl_or_none =
+  @accessor_decl
+| @unspecified_element
+;
+
+@argument_or_none =
+  @argument
+| @unspecified_element
+;
+
+@associated_type_decl_or_none =
+  @associated_type_decl
+| @unspecified_element
+;
+
+@ast_node_or_none =
+  @ast_node
+| @unspecified_element
+;
+
+@brace_stmt_or_none =
+  @brace_stmt
+| @unspecified_element
+;
+
+@case_label_item_or_none =
+  @case_label_item
+| @unspecified_element
+;
+
+@case_stmt_or_none =
+  @case_stmt
+| @unspecified_element
+;
+
+@closure_expr_or_none =
+  @closure_expr
+| @unspecified_element
+;
+
+@condition_element_or_none =
+  @condition_element
+| @unspecified_element
+;
+
+@constructor_decl_or_none =
+  @constructor_decl
+| @unspecified_element
+;
+
+@decl_or_none =
+  @decl
+| @unspecified_element
+;
+
+@enum_element_decl_or_none =
+  @enum_element_decl
+| @unspecified_element
+;
+
+@expr_or_none =
+  @expr
+| @unspecified_element
+;
+
+@file_or_none =
+  @file
+| @unspecified_element
+;
+
+@generic_type_param_decl_or_none =
+  @generic_type_param_decl
+| @unspecified_element
+;
+
+@generic_type_param_type_or_none =
+  @generic_type_param_type
+| @unspecified_element
+;
+
+@location_or_none =
+  @location
+| @unspecified_element
+;
+
+@module_decl_or_none =
+  @module_decl
+| @unspecified_element
+;
+
+@nominal_type_decl_or_none =
+  @nominal_type_decl
+| @unspecified_element
+;
+
+@opaque_type_decl_or_none =
+  @opaque_type_decl
+| @unspecified_element
+;
+
+@opaque_value_expr_or_none =
+  @opaque_value_expr
+| @unspecified_element
+;
+
+@param_decl_or_none =
+  @param_decl
+| @unspecified_element
+;
+
+@pattern_or_none =
+  @pattern
+| @unspecified_element
+;
+
+@pattern_binding_decl_or_none =
+  @pattern_binding_decl
+| @unspecified_element
+;
+
+@precedence_group_decl_or_none =
+  @precedence_group_decl
+| @unspecified_element
+;
+
+@protocol_decl_or_none =
+  @protocol_decl
+| @unspecified_element
+;
+
+@protocol_type_or_none =
+  @protocol_type
+| @unspecified_element
+;
+
+@stmt_or_none =
+  @stmt
+| @unspecified_element
+;
+
+@stmt_condition_or_none =
+  @stmt_condition
+| @unspecified_element
+;
+
+@string_literal_expr_or_none =
+  @string_literal_expr
+| @unspecified_element
+;
+
+@tap_expr_or_none =
+  @tap_expr
+| @unspecified_element
+;
+
+@type_or_none =
+  @type
+| @unspecified_element
+;
+
+@type_alias_decl_or_none =
+  @type_alias_decl
+| @unspecified_element
+;
+
+@type_repr_or_none =
+  @type_repr
+| @unspecified_element
+;
+
+@value_decl_or_none =
+  @unspecified_element
+| @value_decl
+;
+
+@var_decl_or_none =
+  @unspecified_element
+| @var_decl
+;
diff --git a/swift/ql/lib/upgrades/abbb8c9e8408841c2bc12e3deb2305f062f5399e/upgrade.properties b/swift/ql/lib/upgrades/abbb8c9e8408841c2bc12e3deb2305f062f5399e/upgrade.properties
new file mode 100644
index 00000000000..b1ad62a1a71
--- /dev/null
+++ b/swift/ql/lib/upgrades/abbb8c9e8408841c2bc12e3deb2305f062f5399e/upgrade.properties
@@ -0,0 +1,2 @@
+description: Add missing Accessor and AccessSemantics cases
+compatibility: backwards

From 52a117aaf5265fbd8e08647fd9e8aa2e55d2ec42 Mon Sep 17 00:00:00 2001
From: Paolo Tranquilli <redsun82@github.com>
Date: Tue, 29 Nov 2022 09:18:03 +0100
Subject: [PATCH 0765/1420] Swift: optimize bazel caching in CI

Previously the cache would become stale. Now the same incremental
cache mechanism in use for the QL cache is adopted (and factored out
in a separate action).

Namely, pushes on main will populate the cache using the commit hash as
key, while PRs will try to use the cache of their merge base, read-only.

To avoid the cache growing out of control, a simple cache eviction is
done on pushes.
---
 .../cache-query-compilation/action.yml        | 37 +++----------
 .github/actions/incremental-cache/action.yml  | 44 +++++++++++++++
 .github/workflows/go-tests-other-os.yml       |  3 +-
 .github/workflows/go-tests.yml                |  8 ++-
 .github/workflows/swift.yml                   | 20 +++----
 swift/actions/build-and-test/action.yml       | 54 +++++++++++++++++++
 .../actions/create-extractor-pack/action.yml  | 11 ----
 swift/actions/print-unextracted/action.yml    |  9 ----
 swift/actions/run-quick-tests/action.yml      | 18 -------
 swift/actions/setup-env/action.yml            | 24 ---------
 10 files changed, 116 insertions(+), 112 deletions(-)
 create mode 100644 .github/actions/incremental-cache/action.yml
 create mode 100644 swift/actions/build-and-test/action.yml
 delete mode 100644 swift/actions/create-extractor-pack/action.yml
 delete mode 100644 swift/actions/print-unextracted/action.yml
 delete mode 100644 swift/actions/run-quick-tests/action.yml
 delete mode 100644 swift/actions/setup-env/action.yml

diff --git a/.github/actions/cache-query-compilation/action.yml b/.github/actions/cache-query-compilation/action.yml
index 9f7569e5f0c..e39216c9b7a 100644
--- a/.github/actions/cache-query-compilation/action.yml
+++ b/.github/actions/cache-query-compilation/action.yml
@@ -14,39 +14,14 @@ outputs:
 runs:
   using: composite
   steps:
-    # Cache the query compilation caches.
-    # calculate the merge-base with main, in a way that works both on PRs and pushes to main. 
-    - name: Calculate merge-base
-      shell: bash
-      if: ${{ github.event_name == 'pull_request' }}
-      env:
-        BASE_BRANCH: ${{ github.base_ref }}
-      run: |
-        MERGE_BASE=$(git cat-file commit $GITHUB_SHA | grep '^parent ' | head -1 | cut -f 2 -d " ")
-        echo "merge_base=$MERGE_BASE" >> $GITHUB_ENV
-    - name: Read CodeQL query compilation - PR
-      if: ${{ github.event_name == 'pull_request' }}
-      uses: erik-krogh/actions-cache@a88d0603fe5fb5606db9f002dfcadeb32b5f84c6
+    - name: Cache the query compilation caches
+      uses: ./.github/actions/incremental-cache
       with:
         path: '**/.cache'
-        read-only: true
-        key: codeql-compile-${{ inputs.key }}-pr-${{ github.sha }} # deliberately not using the `compile-compile-main` keys here.
-        restore-keys: |
-          codeql-compile-${{ inputs.key }}-${{ github.base_ref }}-${{ env.merge_base }}
-          codeql-compile-${{ inputs.key }}-${{ github.base_ref }}-
-          codeql-compile-${{ inputs.key }}-main-
-    - name: Fill CodeQL query compilation cache - main
-      if: ${{ github.event_name != 'pull_request' }}
-      uses: erik-krogh/actions-cache@a88d0603fe5fb5606db9f002dfcadeb32b5f84c6
-      with:
-        path: '**/.cache'
-        key: codeql-compile-${{ inputs.key }}-${{ github.ref_name }}-${{ github.sha }} # just fill on main
-        restore-keys: | # restore from another random commit, to speed up compilation.
-          codeql-compile-${{ inputs.key }}-${{ github.ref_name }}- 
-          codeql-compile-${{ inputs.key }}-main-
+        key: codeql-compile-${{ inputs.key }}
     - name: Fill compilation cache directory
       id: fill-compilation-dir
-      shell: bash 
+      shell: bash
       run: |
         # Move all the existing cache into another folder, so we only preserve the cache for the current queries.
         mkdir -p ${COMBINED_CACHE_DIR}
@@ -57,5 +32,5 @@ runs:
         rm -rf **/.cache/*
 
         echo "compdir=${COMBINED_CACHE_DIR}" >> $GITHUB_OUTPUT
-      env: 
-        COMBINED_CACHE_DIR: ${{ github.workspace }}/compilation-dir
\ No newline at end of file
+      env:
+        COMBINED_CACHE_DIR: ${{ github.workspace }}/compilation-dir
diff --git a/.github/actions/incremental-cache/action.yml b/.github/actions/incremental-cache/action.yml
new file mode 100644
index 00000000000..20dd41d0ca8
--- /dev/null
+++ b/.github/actions/incremental-cache/action.yml
@@ -0,0 +1,44 @@
+name: Setup an incremental cache
+description: Special cache wrapper to be run on pull requests and pushes, that will try to restore
+  a cache as close as possible to the merge base
+
+inputs:
+  path:
+    description: 'The path to cache'
+    required: true
+  key:
+    description: 'The cache key to use - should be unique to the workflow'
+    required: true
+
+runs:
+  using: composite
+  steps:
+    # calculate the merge-base with main, in a way that works both on PRs and pushes to main.
+    - name: Calculate merge-base
+      shell: bash
+      if: ${{ github.event_name == 'pull_request' }}
+      env:
+        BASE_BRANCH: ${{ github.base_ref }}
+      run: |
+        MERGE_BASE=$(git cat-file commit $GITHUB_SHA | grep '^parent ' | head -1 | cut -f 2 -d " ")
+        echo "merge_base=$MERGE_BASE" >> $GITHUB_ENV
+    - name: Restore read-only cache (PR)
+      if: ${{ github.event_name == 'pull_request' }}
+      uses: erik-krogh/actions-cache@a88d0603fe5fb5606db9f002dfcadeb32b5f84c6
+      with:
+        path: ${{ inputs.path }}
+        read-only: true
+        key: ${{ inputs.key }}-pr-${{ github.sha }}
+        restore-keys: |
+          ${{ inputs.key }}-${{ github.base_ref }}-${{ env.merge_base }}
+          ${{ inputs.key }}-${{ github.base_ref }}-
+          ${{ inputs.key }}-main-
+    - name: Fill cache (push)
+      if: ${{ github.event_name != 'pull_request' }}
+      uses: erik-krogh/actions-cache@a88d0603fe5fb5606db9f002dfcadeb32b5f84c6
+      with:
+        path: ${{ inputs.path }}
+        key: ${{ inputs.key }}-${{ github.ref_name }}-${{ github.sha }} # just fill on main
+        restore-keys: | # restore from another random commit, to speed up compilation.
+          ${{ inputs.key }}-${{ github.ref_name }}-
+          ${{ inputs.key }}-main-
diff --git a/.github/workflows/go-tests-other-os.yml b/.github/workflows/go-tests-other-os.yml
index 5d99a170be3..edf6eb63d49 100644
--- a/.github/workflows/go-tests-other-os.yml
+++ b/.github/workflows/go-tests-other-os.yml
@@ -5,8 +5,7 @@ on:
       - "go/**"
       - "!go/ql/**" # don't run other-os if only ql/ files changed
       - .github/workflows/go-tests-other-os.yml
-      - .github/actions/fetch-codeql/action.yml
-      - .github/actions/cache-query-compilation/action.yml
+      - .github/actions/**
       - codeql-workspace.yml
 jobs:
   test-mac:
diff --git a/.github/workflows/go-tests.yml b/.github/workflows/go-tests.yml
index 685c28cf3e0..eceabb0410a 100644
--- a/.github/workflows/go-tests.yml
+++ b/.github/workflows/go-tests.yml
@@ -4,8 +4,7 @@ on:
     paths:
       - "go/**"
       - .github/workflows/go-tests.yml
-      - .github/actions/fetch-codeql/action.yml
-      - .github/actions/cache-query-compilation/action.yml
+      - .github/actions/**
       - codeql-workspace.yml
     branches:
       - main
@@ -14,8 +13,7 @@ on:
     paths:
       - "go/**"
       - .github/workflows/go-tests.yml
-      - .github/actions/fetch-codeql/action.yml
-      - .github/actions/cache-query-compilation/action.yml
+      - .github/actions/**
       - codeql-workspace.yml
 jobs:
   test-linux:
@@ -64,7 +62,7 @@ jobs:
         uses: ./.github/actions/cache-query-compilation
         with:
           key: go-qltest
-    
+
       - name: Test
         run: |
           cd go
diff --git a/.github/workflows/swift.yml b/.github/workflows/swift.yml
index 4871442d4b7..47a2d2bf6ae 100644
--- a/.github/workflows/swift.yml
+++ b/.github/workflows/swift.yml
@@ -7,8 +7,7 @@ on:
       - "misc/bazel/**"
       - "*.bazel*"
       - .github/workflows/swift.yml
-      - .github/actions/fetch-codeql/action.yml
-      - .github/actions/cache-query-compilation/action.yml
+      - .github/actions/**
       - codeql-workspace.yml
       - .pre-commit-config.yaml
       - "!**/*.md"
@@ -22,8 +21,7 @@ on:
       - "misc/bazel/**"
       - "*.bazel*"
       - .github/workflows/swift.yml
-      - .github/actions/fetch-codeql/action.yml
-      - .github/actions/cache-query-compilation/action.yml
+      - .github/actions/**
       - codeql-workspace.yml
       - "!**/*.md"
       - "!**/*.qhelp"
@@ -35,20 +33,15 @@ jobs:
   # not using a matrix as you cannot depend on a specific job in a matrix, and we want to start linux checks
   # without waiting for the macOS build
   build-and-test-macos:
-    if: ${{ github.event_name == 'pull_request' }}
     runs-on: macos-12-xl
     steps:
       - uses: actions/checkout@v3
-      - uses: ./swift/actions/create-extractor-pack
-      - uses: ./swift/actions/run-quick-tests
-      - uses: ./swift/actions/print-unextracted
+      - uses: ./swift/actions/build-and-test
   build-and-test-linux:
     runs-on: ubuntu-latest-xl
     steps:
       - uses: actions/checkout@v3
-      - uses: ./swift/actions/create-extractor-pack
-      - uses: ./swift/actions/run-quick-tests
-      - uses: ./swift/actions/print-unextracted
+      - uses: ./swift/actions/build-and-test
   qltests-linux:
     needs: build-and-test-linux
     runs-on: ubuntu-latest-xl
@@ -80,7 +73,10 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - uses: actions/checkout@v3
-      - uses: ./swift/actions/setup-env
+      - uses: bazelbuild/setup-bazelisk@v2
+      - uses: actions/setup-python@v4
+        with:
+          python-version-file: 'swift/.python-version'
       - uses: pre-commit/action@v3.0.0
         name: Check that python code is properly formatted
         with:
diff --git a/swift/actions/build-and-test/action.yml b/swift/actions/build-and-test/action.yml
new file mode 100644
index 00000000000..03706263d21
--- /dev/null
+++ b/swift/actions/build-and-test/action.yml
@@ -0,0 +1,54 @@
+name: Build Swift CodeQL pack
+description: Builds the Swift CodeQL pack
+runs:
+  using: composite
+  steps:
+    - uses: bazelbuild/setup-bazelisk@v2
+    - uses: actions/setup-python@v4
+      with:
+        python-version-file: 'swift/.python-version'
+    - name: Mount bazel cache
+      uses: ./.github/actions/incremental-cache
+      with:
+        path: "~/.cache/bazel-repository-cache"
+        key: bazel-cache-${{ runner.os }}-${{ runner.arch }}
+    - name: Mount bazel disk cache
+      uses: ./.github/actions/incremental-cache
+      with:
+        path: "~/.cache/bazel-disk-cache"
+        key: bazel-disk-cache-${{ runner.os }}-${{ runner.arch }}
+    - name: Configure bazel cache
+      shell: bash
+      run: |
+        echo build --repository_cache=~/.cache/bazel-repository-cache --disk_cache=~/.cache/bazel-disk-cache > ~/.bazelrc
+        echo test --test_output=errors >> ~/.bazelrc
+    - name: Print unextracted entities
+      shell: bash
+      run: |
+        bazel run //swift/extractor/print_unextracted
+    - uses: ./swift/actions/share-extractor-pack
+    - name: Build Swift extractor
+      shell: bash
+      run: |
+        bazel run //swift:create-extractor-pack
+    - name: Run xcode-autobuilder tests
+      if : ${{ github.event_name == 'pull_request' && runner.os == 'macOS' }}
+      shell: bash
+      run: |
+        bazel test //swift/xcode-autobuilder/tests
+    - name: Run codegen tests
+      if : ${{ github.event_name == 'pull_request' }}
+      shell: bash
+      run: |
+        bazel test //swift/codegen/test
+    - name: Run qltest tests
+      if : ${{ github.event_name == 'pull_request' }}
+      shell: bash
+      run: |
+        bazel test //swift/tools/test/qltest
+    - name: Evict bazel cache
+      if: ${{ github.event_name != 'pull_request' }}
+      shell: bash
+      run: |
+        find "~/.cache/bazel-repository-cache" "~/.cache/bazel-disk-cache" -atime +0 -type f -delete
+        du -sh "~/.cache/bazel-repository-cache" "~/.cache/bazel-disk-cache"
diff --git a/swift/actions/create-extractor-pack/action.yml b/swift/actions/create-extractor-pack/action.yml
deleted file mode 100644
index d020a41a071..00000000000
--- a/swift/actions/create-extractor-pack/action.yml
+++ /dev/null
@@ -1,11 +0,0 @@
-name: Build Swift CodeQL pack
-description: Builds the Swift CodeQL pack
-runs:
-  using: composite
-  steps:
-    - uses: ./swift/actions/setup-env
-    - uses: ./swift/actions/share-extractor-pack
-    - name: Build Swift extractor
-      shell: bash
-      run: |
-        bazel run //swift:create-extractor-pack
diff --git a/swift/actions/print-unextracted/action.yml b/swift/actions/print-unextracted/action.yml
deleted file mode 100644
index 5c59fc61b45..00000000000
--- a/swift/actions/print-unextracted/action.yml
+++ /dev/null
@@ -1,9 +0,0 @@
-name: Print unextracted entities
-description: Prints all AST and Type entities that we do not extract yet. Must be run after `setup-env`
-runs:
-  using: composite
-  steps:
-    - name: Print unextracted entities
-      shell: bash
-      run: |
-        bazel run //swift/extractor/print_unextracted
diff --git a/swift/actions/run-quick-tests/action.yml b/swift/actions/run-quick-tests/action.yml
deleted file mode 100644
index aca263cb996..00000000000
--- a/swift/actions/run-quick-tests/action.yml
+++ /dev/null
@@ -1,18 +0,0 @@
-name: Run Swift quick tests
-description: Runs Swift tests defined in Bazel. Must be run after `setup-env`
-runs:
-  using: composite
-  steps:
-    - name: Run xcode-autobuilder tests
-      if: runner.os == 'macOS'
-      shell: bash
-      run: |
-        bazel test //swift/xcode-autobuilder/tests
-    - name: Run codegen tests
-      shell: bash
-      run: |
-        bazel test //swift/codegen/test
-    - name: Run qltest tests
-      shell: bash
-      run: |
-        bazel test //swift/tools/test/qltest
diff --git a/swift/actions/setup-env/action.yml b/swift/actions/setup-env/action.yml
deleted file mode 100644
index 83c65d6f82a..00000000000
--- a/swift/actions/setup-env/action.yml
+++ /dev/null
@@ -1,24 +0,0 @@
-name: Setup Swift Package Environment
-description: Sets up the environment in which to build the Swift package and run its tests
-runs:
-  using: composite
-  steps:
-    - uses: bazelbuild/setup-bazelisk@v2
-    - uses: actions/setup-python@v4
-      with:
-        python-version-file: 'swift/.python-version'
-    - name: Mount bazel cache
-      uses: actions/cache@v3
-      with:
-        path: "~/.cache/bazel-repository-cache"
-        key: bazel-cache-${{ runner.os }}-${{ runner.arch }}
-    - name: Mount bazel disk cache
-      uses: actions/cache@v3
-      with:
-        path: "~/.cache/bazel-disk-cache"
-        key: bazel-disk-cache-${{ runner.os }}-${{ runner.arch }}
-    - name: Set up bazel disk cache
-      shell: bash
-      run: |
-        echo build --repository_cache=~/.cache/bazel-repository-cache --disk_cache=~/.cache/bazel-disk-cache > ~/.bazelrc
-        echo test --test_output=errors >> ~/.bazelrc

From 8cc66172c3bc0cc46cf521f0f61550b37b7acb03 Mon Sep 17 00:00:00 2001
From: Tony Torralba <atorralba@users.noreply.github.com>
Date: Mon, 28 Nov 2022 11:11:39 +0100
Subject: [PATCH 0766/1420] Add path injection query

---
 .../codeql/swift/dataflow/ExternalFlow.qll    |   2 +
 .../frameworks/StandardLibrary/NsUrl.qll      |  17 ++
 .../codeql/swift/security/PathInjection.qll   |  99 ++++++++++
 .../swift/security/PathInjectionQuery.qll     |  30 +++
 .../Security/CWE-022/PathInjection.qhelp      |  58 ++++++
 .../queries/Security/CWE-022/PathInjection.ql |  25 +++
 .../Security/CWE-022/PathInjectionBad.swift   |  10 +
 .../Security/CWE-022/PathInjectionGood.swift  |   8 +
 .../CWE-022/PathInjectionTest.expected        |   0
 .../Security/CWE-022/PathInjectionTest.ql     |  24 +++
 .../Security/CWE-022/testPathInjection.swift  | 180 ++++++++++++++++++
 11 files changed, 453 insertions(+)
 create mode 100644 swift/ql/lib/codeql/swift/frameworks/StandardLibrary/NsUrl.qll
 create mode 100644 swift/ql/lib/codeql/swift/security/PathInjection.qll
 create mode 100644 swift/ql/lib/codeql/swift/security/PathInjectionQuery.qll
 create mode 100644 swift/ql/src/queries/Security/CWE-022/PathInjection.qhelp
 create mode 100644 swift/ql/src/queries/Security/CWE-022/PathInjection.ql
 create mode 100644 swift/ql/src/queries/Security/CWE-022/PathInjectionBad.swift
 create mode 100644 swift/ql/src/queries/Security/CWE-022/PathInjectionGood.swift
 create mode 100644 swift/ql/test/query-tests/Security/CWE-022/PathInjectionTest.expected
 create mode 100644 swift/ql/test/query-tests/Security/CWE-022/PathInjectionTest.ql
 create mode 100644 swift/ql/test/query-tests/Security/CWE-022/testPathInjection.swift

diff --git a/swift/ql/lib/codeql/swift/dataflow/ExternalFlow.qll b/swift/ql/lib/codeql/swift/dataflow/ExternalFlow.qll
index 9e0433958ba..ae507d93e3e 100644
--- a/swift/ql/lib/codeql/swift/dataflow/ExternalFlow.qll
+++ b/swift/ql/lib/codeql/swift/dataflow/ExternalFlow.qll
@@ -82,10 +82,12 @@ private module Frameworks {
   private import codeql.swift.frameworks.StandardLibrary.Data
   private import codeql.swift.frameworks.StandardLibrary.InputStream
   private import codeql.swift.frameworks.StandardLibrary.NSData
+  private import codeql.swift.frameworks.StandardLibrary.NsUrl
   private import codeql.swift.frameworks.StandardLibrary.String
   private import codeql.swift.frameworks.StandardLibrary.Url
   private import codeql.swift.frameworks.StandardLibrary.UrlSession
   private import codeql.swift.frameworks.StandardLibrary.WebView
+  private import codeql.swift.security.PathInjection
 }
 
 /**
diff --git a/swift/ql/lib/codeql/swift/frameworks/StandardLibrary/NsUrl.qll b/swift/ql/lib/codeql/swift/frameworks/StandardLibrary/NsUrl.qll
new file mode 100644
index 00000000000..91110435e90
--- /dev/null
+++ b/swift/ql/lib/codeql/swift/frameworks/StandardLibrary/NsUrl.qll
@@ -0,0 +1,17 @@
+import swift
+private import codeql.swift.dataflow.DataFlow
+private import codeql.swift.dataflow.ExternalFlow
+private import codeql.swift.dataflow.FlowSteps
+
+/**
+ * A model for `NSURL` members that permit taint flow.
+ */
+private class NsUrlSummaries extends SummaryModelCsv {
+  override predicate row(string row) {
+    row =
+      [
+        ";NSURL;true;init(string:);(String);;Argument[0];ReturnValue;taint",
+        // TODO
+      ]
+  }
+}
diff --git a/swift/ql/lib/codeql/swift/security/PathInjection.qll b/swift/ql/lib/codeql/swift/security/PathInjection.qll
new file mode 100644
index 00000000000..a58681181e2
--- /dev/null
+++ b/swift/ql/lib/codeql/swift/security/PathInjection.qll
@@ -0,0 +1,99 @@
+/** Provides classes and predicates to reason about path injection vulnerabilities. */
+
+import swift
+private import codeql.swift.dataflow.DataFlow
+private import codeql.swift.dataflow.ExternalFlow
+
+/** A data flow sink for path injection vulnerabilities. */
+abstract class PathInjectionSink extends DataFlow::Node { }
+
+/** A sanitizer for path injection vulnerabilities. */
+abstract class PathInjectionSanitizer extends DataFlow::Node { }
+
+/**
+ * A unit class for adding additional taint steps.
+ *
+ * Extend this class to add additional taint steps that should apply to paths related to
+ * path injection vulnerabilities.
+ */
+class PathInjectionAdditionalTaintStep extends Unit {
+  /**
+   * Holds if the step from `node1` to `node2` should be considered a taint
+   * step for paths related to path injection vulnerabilities.
+   */
+  abstract predicate step(DataFlow::Node node1, DataFlow::Node node2);
+}
+
+private class DefaultPathInjectionSink extends PathInjectionSink {
+  DefaultPathInjectionSink() { sinkNode(this, "path-injection") }
+}
+
+private class DefaultPathInjectionSanitizer extends PathInjectionSanitizer {
+  DefaultPathInjectionSanitizer() { none() } // TODO: Implement a proper path sanitizer
+}
+
+private class PathInjectionSinks extends SinkModelCsv {
+  override predicate row(string row) {
+    row =
+      [
+        ";Data;true;write(to:options:);;;Argument[0];path-injection",
+        ";NSData;true;write(to:atomically:);;;Argument[0];path-injection",
+        ";NSData;true;write(to:options:);;;Argument[0];path-injection",
+        ";NSData;true;write(toFile:atomically:);;;Argument[0];path-injection",
+        ";NSData;true;write(toFile:options:);;;Argument[0];path-injection",
+        ";FileManager;true;contentsOfDirectory(at:includingPropertiesForKeys:options:);;;Argument[0];path-injection",
+        ";FileManager;true;contentsOfDirectory(atPath:);;;Argument[0];path-injection",
+        ";FileManager;true;enumerator(at:includingPropertiesForKeys:options:errorHandler:);;;Argument[0];path-injection",
+        ";FileManager;true;enumerator(atPath:);;;Argument[0];path-injection",
+        ";FileManager;true;subpathsOfDirectory(atPath:);;;Argument[0];path-injection",
+        ";FileManager;true;subpaths(atPath:);;;Argument[0];path-injection",
+        ";FileManager;true;createDirectory(at:withIntermediateDirectories:attributes:);;;Argument[0];path-injection",
+        ";FileManager;true;createDirectory(atPath:withIntermediateDirectories:attributes:);;;Argument[0];path-injection",
+        ";FileManager;true;createFile(atPath:contents:attributes:);;;Argument[0];path-injection",
+        ";FileManager;true;removeItem(at:);;;Argument[0];path-injection",
+        ";FileManager;true;removeItem(atPath:);;;Argument[0];path-injection",
+        ";FileManager;true;trashItem(at:resultingItemURL:);;;Argument[0];path-injection",
+        ";FileManager;true;replaceItem(at:withItemAt:backupItemName:options:resultingItemURL:);;;Argument[0..1];path-injection",
+        ";FileManager;true;replaceItemAt(_:withItemAt:backupItemName:options:);;;Argument[0..1];path-injection",
+        ";FileManager;true;replaceItemAt(_:withItemAt:backupItemName:options:resultingItemURL:);;;Argument[0..1];path-injection",
+        ";FileManager;true;copyItem(at:to:);;;Argument[0..1];path-injection",
+        ";FileManager;true;copyItem(atPath:toPath:);;;Argument[0..1];path-injection",
+        ";FileManager;true;moveItem(at:to:);;;Argument[0..1];path-injection",
+        ";FileManager;true;moveItem(atPath:toPath:);;;Argument[0..1];path-injection",
+        ";FileManager;true;createSymbolicLink(at:withDestinationURL:);;;Argument[0..1];path-injection",
+        ";FileManager;true;createSymbolicLink(atPath:withDestinationPath:);;;Argument[0..1];path-injection",
+        ";FileManager;true;linkItem(at:to:);;;Argument[0..1];path-injection",
+        ";FileManager;true;linkItem(atPath:toPath:);;;Argument[0..1];path-injection",
+        ";FileManager;true;destinationOfSymbolicLink(atPath:);;;Argument[0];path-injection",
+        ";FileManager;true;fileExists(atPath:);;;Argument[0];path-injection",
+        ";FileManager;true;fileExists(atPath:isDirectory:);;;Argument[0];path-injection",
+        ";FileManager;true;isReadableFile(atPath:);;;Argument[0];path-injection",
+        ";FileManager;true;isWritableFile(atPath:);;;Argument[0];path-injection",
+        ";FileManager;true;isDeletableFile(atPath:);;;Argument[0];path-injection",
+        ";FileManager;true;componentsToDisplay(forPath:);;;Argument[0];path-injection",
+        ";FileManager;true;displayName(atPath:);;;Argument[0];path-injection",
+        ";FileManager;true;attributesOfItem(atPath:);;;Argument[0];path-injection",
+        ";FileManager;true;attributesOfFileSystem(forPath:);;;Argument[0];path-injection",
+        ";FileManager;true;setAttributes(_:ofItemAtPath:);;;Argument[1];path-injection",
+        ";FileManager;true;contents(atPath:);;;Argument[0];path-injection",
+        ";FileManager;true;contentsEqual(atPath:andPath:);;;Argument[0..1];path-injection",
+        ";FileManager;true;getRelationship(_:ofDirectoryAt:toItemAt:);;;Argument[1..2];path-injection",
+        ";FileManager;true;getRelationship(_:of:in:toItemAt:);;;Argument[3];path-injection",
+        ";FileManager;true;changeCurrentDirectoryPath(_:);;;Argument[0];path-injection",
+        ";FileManager;true;unmountVolume(at:options:completionHandler:);;;Argument[0];path-injection",
+        ";FileManager;true;NSHFSTypeOfFile(_:);;;Argument[0];path-injection",
+        // Deprecated FileManager methods:
+        ";FileManager;true;changeFileAttributes(_:atPath:);;;Argument[1];path-injection",
+        ";FileManager;true;fileAttributes(atPath:traverseLink:);;;Argument[0];path-injection",
+        ";FileManager;true;fileSystemAttributes(atPath:);;;Argument[0];path-injection",
+        ";FileManager;true;directoryContents(atPath:);;;Argument[0];path-injection",
+        ";FileManager;true;createDirectory(atPath:attributes:);;;Argument[0];path-injection",
+        ";FileManager;true;createSymbolicLink(atPath:pathContent:);;;Argument[0..1];path-injection",
+        ";FileManager;true;pathContentOfSymbolicLink(atPath:);;;Argument[0];path-injection",
+        ";FileManager;true;replaceItemAtURL(originalItemURL:withItemAtURL:backupItemName:options:);;;Argument[0..1];path-injection",
+        ";NIOFileHandle;true;init(descriptor:);;;Argument[0];path-injection",
+        ";NIOFileHandle;true;init(path:mode:flags:);;;Argument[0];path-injection",
+        ";NIOFileHandle;true;init(path:);;;Argument[0];path-injection"
+      ]
+  }
+}
diff --git a/swift/ql/lib/codeql/swift/security/PathInjectionQuery.qll b/swift/ql/lib/codeql/swift/security/PathInjectionQuery.qll
new file mode 100644
index 00000000000..1512fbab052
--- /dev/null
+++ b/swift/ql/lib/codeql/swift/security/PathInjectionQuery.qll
@@ -0,0 +1,30 @@
+/**
+ * Provides a taint-tracking configuration for reasoning about path injection
+ * vulnerabilities.
+ */
+
+import swift
+private import codeql.swift.dataflow.DataFlow
+private import codeql.swift.dataflow.ExternalFlow
+private import codeql.swift.dataflow.FlowSources
+private import codeql.swift.dataflow.TaintTracking
+private import codeql.swift.security.PathInjection
+
+/**
+ * A taint-tracking configuration for path injection vulnerabilities.
+ */
+class PathInjectionConfiguration extends TaintTracking::Configuration {
+  PathInjectionConfiguration() { this = "PathInjectionConfiguration" }
+
+  override predicate isSource(DataFlow::Node source) { source instanceof RemoteFlowSource }
+
+  override predicate isSink(DataFlow::Node sink) { sink instanceof PathInjectionSink }
+
+  override predicate isSanitizer(DataFlow::Node sanitizer) {
+    sanitizer instanceof PathInjectionSanitizer
+  }
+
+  override predicate isAdditionalTaintStep(DataFlow::Node node1, DataFlow::Node node2) {
+    any(PathInjectionAdditionalTaintStep s).step(node1, node2)
+  }
+}
diff --git a/swift/ql/src/queries/Security/CWE-022/PathInjection.qhelp b/swift/ql/src/queries/Security/CWE-022/PathInjection.qhelp
new file mode 100644
index 00000000000..c3dc388d64e
--- /dev/null
+++ b/swift/ql/src/queries/Security/CWE-022/PathInjection.qhelp
@@ -0,0 +1,58 @@
+<!DOCTYPE qhelp PUBLIC
+  "-//Semmle//qhelp//EN"
+  "qhelp.dtd">
+<qhelp>
+
+<overview>
+<p>Accessing paths controlled by users can allow an attacker to access unexpected resources. This 
+can result in sensitive information being revealed or deleted, or an attacker being able to influence
+behavior by modifying unexpected files.</p>
+
+<p>Paths that are naively constructed from data controlled by a user may contain unexpected special characters,
+such as "..". Such a path may potentially point to any directory on the file system.</p>
+</overview>
+
+<recommendation>
+
+<p>Validate user input before using it to construct a file path. Ideally, follow these rules:</p>
+
+<ul>
+<li>Do not allow more than a single "." character.</li>
+<li>Do not allow directory separators such as "/" or "\" (depending on the file system).</li>
+<li>Do not rely on simply replacing problematic sequences such as "../". For example, after applying this filter to
+".../...//" the resulting string would still be "../".</li>
+<li>Ideally use a whitelist of known good patterns.</li>
+</ul>
+
+</recommendation>
+
+<example>
+<p>
+In the first example, a file name is read from an HTTP request and then used to access a file.
+However, a malicious response could include a file name that is an absolute path, such as
+<code>"/Applications/(current_application)/Documents/sensitive.data"</code>.
+</p>
+
+<p>
+In the second example, it appears that the user is restricted to opening a file within the
+<code>"/Library/Caches"</code> home directory. However, a malicious response could contain a file name containing
+special characters. For example, the string <code>"../../Documents/sensitive.data"</code> will result in the code
+reading the file located at <code>"/Applications/(current_application)/Library/Caches/../../Documents/sensitive.data"</code>, 
+which contains users' sensitive data. This file may then be made accesible to an attacker, giving them access to all this data.
+</p>
+
+<sample src="PathInjectionBad.swift" />
+
+<p>
+In the third example, the path used to access the file system is normalized <em>before</em> being checked against a
+known prefix. This ensures that regardless of the user input, the resulting path is safe.
+</p>
+
+<sample src="PathInjectionGood.swift" />
+
+</example>
+
+<references>
+<li>OWASP: <a href="https://owasp.org/www-community/attacks/Path_Traversal">Path Traversal</a>.</li>
+</references>
+</qhelp>
diff --git a/swift/ql/src/queries/Security/CWE-022/PathInjection.ql b/swift/ql/src/queries/Security/CWE-022/PathInjection.ql
new file mode 100644
index 00000000000..41f26ba5211
--- /dev/null
+++ b/swift/ql/src/queries/Security/CWE-022/PathInjection.ql
@@ -0,0 +1,25 @@
+/**
+ * @name Uncontrolled data used in path expression
+ * @description Accessing paths influenced by users can allow an attacker to access unexpected resources.
+ * @kind path-problem
+ * @problem.severity error
+ * @security-severity 7.5
+ * @precision high
+ * @id swift/path-injection
+ * @tags security
+ *       external/cwe/cwe-022
+ *       external/cwe/cwe-023
+ *       external/cwe/cwe-036
+ *       external/cwe/cwe-073
+ *       external/cwe/cwe-099
+ */
+
+import swift
+import codeql.swift.dataflow.DataFlow
+import codeql.swift.security.PathInjectionQuery
+import DataFlow::PathGraph
+
+from DataFlow::PathNode source, DataFlow::PathNode sink
+where any(PathInjectionConfiguration c).hasFlowPath(source, sink)
+select sink.getNode(), source, sink, "This path depends on a $@.", source.getNode(),
+  "user-provided value"
diff --git a/swift/ql/src/queries/Security/CWE-022/PathInjectionBad.swift b/swift/ql/src/queries/Security/CWE-022/PathInjectionBad.swift
new file mode 100644
index 00000000000..9ce9d0f42e8
--- /dev/null
+++ b/swift/ql/src/queries/Security/CWE-022/PathInjectionBad.swift
@@ -0,0 +1,10 @@
+let fm = FileManager.default
+let path = try String(contentsOf: URL(string: "http://example.com/")!)
+
+// BAD
+return fm.contents(atPath: path)
+
+// BAD
+if (path.hasPrefix(NSHomeDirectory() + "/Library/Caches")) {
+    return fm.contents(atPath: path)
+}
diff --git a/swift/ql/src/queries/Security/CWE-022/PathInjectionGood.swift b/swift/ql/src/queries/Security/CWE-022/PathInjectionGood.swift
new file mode 100644
index 00000000000..8e0799fc486
--- /dev/null
+++ b/swift/ql/src/queries/Security/CWE-022/PathInjectionGood.swift
@@ -0,0 +1,8 @@
+let fm = FileManager.default
+let path = try String(contentsOf: URL(string: "http://example.com/")!)
+
+// GOOD
+let filePath = FilePath(stringLiteral: path)
+if (filePath.lexicallyNormalized().starts(with: FilePath(stringLiteral: NSHomeDirectory() + "/Library/Caches"))) {
+    return fm.contents(atPath: path)
+}
diff --git a/swift/ql/test/query-tests/Security/CWE-022/PathInjectionTest.expected b/swift/ql/test/query-tests/Security/CWE-022/PathInjectionTest.expected
new file mode 100644
index 00000000000..e69de29bb2d
diff --git a/swift/ql/test/query-tests/Security/CWE-022/PathInjectionTest.ql b/swift/ql/test/query-tests/Security/CWE-022/PathInjectionTest.ql
new file mode 100644
index 00000000000..3f8faf7ac9f
--- /dev/null
+++ b/swift/ql/test/query-tests/Security/CWE-022/PathInjectionTest.ql
@@ -0,0 +1,24 @@
+import swift
+import codeql.swift.dataflow.DataFlow
+import codeql.swift.dataflow.FlowSources
+import codeql.swift.security.PathInjectionQuery
+import TestUtilities.InlineExpectationsTest
+
+class PathInjectionTest extends InlineExpectationsTest {
+  PathInjectionTest() { this = "PathInjectionTest" }
+
+  override string getARelevantTag() { result = "hasPathInjection" }
+
+  override predicate hasActualResult(Location location, string element, string tag, string value) {
+    exists(
+      PathInjectionConfiguration config, DataFlow::Node source, DataFlow::Node sink, Expr sinkExpr
+    |
+      config.hasFlow(source, sink) and
+      sinkExpr = sink.asExpr() and
+      location = sinkExpr.getLocation() and
+      element = sinkExpr.toString() and
+      tag = "hasPathInjection" and
+      value = source.asExpr().getLocation().getStartLine().toString()
+    )
+  }
+}
diff --git a/swift/ql/test/query-tests/Security/CWE-022/testPathInjection.swift b/swift/ql/test/query-tests/Security/CWE-022/testPathInjection.swift
new file mode 100644
index 00000000000..bc33ade276e
--- /dev/null
+++ b/swift/ql/test/query-tests/Security/CWE-022/testPathInjection.swift
@@ -0,0 +1,180 @@
+// --- stubs ---
+
+struct URL {
+	init?(string: String) {}
+}
+
+class NSURL {
+    init?(string: String) {}
+}
+
+extension String {
+	init(contentsOf: URL) {
+        let data = ""
+        self.init(data)
+    }
+}
+
+class Data {
+    struct WritingOptions : OptionSet { let rawValue: Int }
+    init<S>(_ elements: S) {}
+    func write(to: URL, options: Data.WritingOptions = []) {}
+}
+
+class NSData {
+    struct WritingOptions : OptionSet { let rawValue: Int }
+    func write(to: URL, atomically: Bool) -> Bool { return false }
+    func write(to: URL, options: NSData.WritingOptions) {}
+    func write(toFile: String, atomically: Bool) -> Bool { return false }
+    func write(toFile: String, options: NSData.WritingOptions) {}
+}
+
+struct URLResourceKey {}
+
+struct FileAttributeKey : Hashable {}
+
+struct ObjCBool {}
+
+class FileManager {
+    class DirectoryEnumerator {}
+    struct DirectoryEnumerationOptions : OptionSet { let rawValue: Int }
+    struct ItemReplacementOptions : OptionSet { let rawValue: Int }
+    struct UnmountOptions : OptionSet { let rawValue: Int }
+    struct SearchPathDomainMask {}
+    enum SearchPathDirectory : UInt { case none }
+    enum URLRelationship : Int { case none }
+
+    func contentsOfDirectory(at: URL, includingPropertiesForKeys: [URLResourceKey]?, options: FileManager.DirectoryEnumerationOptions) -> [URL] { return []}
+    func contentsOfDirectory(atPath: String) -> [String] { return [] }
+    func enumerator(at: URL, includingPropertiesForKeys: [URLResourceKey]?, options: FileManager.DirectoryEnumerationOptions, errorHandler: ((URL, Error) -> Bool)?) -> FileManager.DirectoryEnumerator? { return nil }
+    func enumerator(atPath: String) -> FileManager.DirectoryEnumerator? { return nil }
+    func subpathsOfDirectory(atPath: String) -> [String] { return [] }
+    func subpaths(atPath: String) -> [String]? { return nil }
+    func createDirectory(at: URL, withIntermediateDirectories: Bool, attributes: [FileAttributeKey : Any]?) {}
+    func createDirectory(atPath: String, withIntermediateDirectories: Bool, attributes: [FileAttributeKey : Any]?) {}
+    func createFile(atPath: String, contents: Data?, attributes: [FileAttributeKey : Any]?) -> Bool { return false }
+    func removeItem(at: URL) {}
+    func removeItem(atPath: String) {}
+    func trashItem(at: URL, resultingItemURL: AutoreleasingUnsafeMutablePointer<NSURL?>?) {}
+    func replaceItemAt(_: URL, withItemAt: URL, backupItemName: String?, options: FileManager.ItemReplacementOptions) -> URL? { return nil}
+    func replaceItem(at: URL, withItemAt: URL, backupItemName: String?, options: FileManager.ItemReplacementOptions, resultingItemURL: AutoreleasingUnsafeMutablePointer<NSURL?>?) {}
+    func copyItem(at: URL, to: URL) {}
+    func copyItem(atPath: String, toPath: String) {}
+    func moveItem(at: URL, to: URL) {}
+    func moveItem(atPath: String, toPath: String) {}
+    func createSymbolicLink(at: URL, withDestinationURL: URL) {}
+    func createSymbolicLink(atPath: String, withDestinationPath: String) {}
+    func linkItem(at: URL, to: URL) {}
+    func linkItem(atPath: String, toPath: String) {}
+    func destinationOfSymbolicLink(atPath: String) -> String { return "" }
+    func fileExists(atPath: String) -> Bool { return false }
+    func fileExists(atPath: String, isDirectory: UnsafeMutablePointer<ObjCBool>?) -> Bool { return false }
+    func isReadableFile(atPath: String) -> Bool { return false }
+    func isWritableFile(atPath: String) -> Bool { return false }
+    func isExecutableFile(atPath: String) -> Bool { return false }
+    func isDeletableFile(atPath: String) -> Bool { return false }
+    func componentsToDisplay(forPath: String) -> [String]? { return nil }
+    func displayName(atPath: String) -> String { return "" }
+    func attributesOfItem(atPath: String) -> [FileAttributeKey : Any] { return [:] }
+    func attributesOfFileSystem(forPath: String) -> [FileAttributeKey : Any] { return [:] }
+    func setAttributes(_: [FileAttributeKey : Any], ofItemAtPath: String) {}
+    func contents(atPath: String) -> Data? { return nil }
+    func contentsEqual(atPath: String, andPath: String) -> Bool { return false }
+    func getRelationship(_: UnsafeMutablePointer<FileManager.URLRelationship>, ofDirectoryAt: URL, toItemAt: URL) {}
+    func getRelationship(_: UnsafeMutablePointer<FileManager.URLRelationship>, of: FileManager.SearchPathDirectory, in: FileManager.SearchPathDomainMask, toItemAt: URL) {}
+    func changeCurrentDirectoryPath(_: String) -> Bool { return false }
+    func unmountVolume(at: URL, options: FileManager.UnmountOptions, completionHandler: (Error?) -> Void) {}
+    func NSHFSTypeOfFile(_: String!) -> String! { return "" }
+    // Deprecated methods
+    func changeFileAttributes(_: [AnyHashable : Any], atPath: String) -> Bool { return false }
+    func fileAttributes(atPath: String, traverseLink: Bool) -> [AnyHashable : Any]? { return nil }
+    func fileSystemAttributes(atPath: String) -> [AnyHashable : Any]? { return nil }
+    func directoryContents(atPath: String) -> [Any]? { return nil }
+    func createDirectory(atPath: String, attributes: [AnyHashable : Any]) -> Bool { return false }
+    func createSymbolicLink(atPath: String, pathContent: String) -> Bool { return false }
+    func pathContentOfSymbolicLink(atPath: String) -> String? { return nil }
+    func replaceItemAtURL(originalItemURL: NSURL, withItemAtURL: NSURL, backupItemName: String?, options: FileManager.ItemReplacementOptions) -> NSURL? { return nil }
+}
+
+// --- tests ---
+
+func test() {
+    let remoteString = String(contentsOf: URL(string: "http://example.com/")!)
+    let remoteUrl = URL(string: remoteString)!
+    let remoteNsUrl = NSURL(string: remoteString)!
+    let safeUrl =  URL(string: "")!
+    let safeNsUrl = NSURL(string: "")!
+
+    Data("").write(to: remoteUrl, options: []) // $ hasPathInjection=102
+
+    let nsData = NSData()
+    let _ = nsData.write(to: remoteUrl, atomically: false) // $ hasPathInjection=102
+    nsData.write(to: remoteUrl, options: []) // $ hasPathInjection=102
+    let _ = nsData.write(toFile: remoteString, atomically: false) // $ hasPathInjection=102
+    nsData.write(toFile: remoteString, options: []) // $ hasPathInjection=102
+
+    let fm = FileManager()
+    let _ = fm.contentsOfDirectory(at: remoteUrl, includingPropertiesForKeys: [], options: []) // $ hasPathInjection=102
+    let _ = fm.contentsOfDirectory(atPath: remoteString) // $ hasPathInjection=102
+    let _ = fm.enumerator(at: remoteUrl, includingPropertiesForKeys: [], options: [], errorHandler: nil) // $ hasPathInjection=102
+    let _ = fm.enumerator(atPath: remoteString) // $ hasPathInjection=102
+    let _ = fm.subpathsOfDirectory(atPath: remoteString) // $ hasPathInjection=102
+    let _ = fm.subpaths(atPath: remoteString) // $ hasPathInjection=102
+    fm.createDirectory(at: remoteUrl, withIntermediateDirectories: false, attributes: [:]) // $ hasPathInjection=102
+    let _ = fm.createDirectory(atPath: remoteString, attributes: [:]) // $ hasPathInjection=102
+    let _ = fm.createFile(atPath: remoteString, contents: nil, attributes: [:]) // $ hasPathInjection=102
+    fm.removeItem(at: remoteUrl) // $ hasPathInjection=102
+    fm.removeItem(atPath: remoteString) // $ hasPathInjection=102
+    fm.trashItem(at: remoteUrl, resultingItemURL: AutoreleasingUnsafeMutablePointer<NSURL?>.init(bitPattern: 0)) // $ hasPathInjection=102
+    let _ = fm.replaceItemAt(remoteUrl, withItemAt: safeUrl, backupItemName: nil, options: []) // $ hasPathInjection=102
+    let _ = fm.replaceItemAt(safeUrl, withItemAt: remoteUrl, backupItemName: nil, options: []) // $ hasPathInjection=102
+    fm.replaceItem(at: remoteUrl, withItemAt: safeUrl, backupItemName: nil, options: [], resultingItemURL: AutoreleasingUnsafeMutablePointer<NSURL?>.init(bitPattern: 0)) // $ hasPathInjection=102
+    fm.replaceItem(at: safeUrl, withItemAt: remoteUrl, backupItemName: nil, options: [], resultingItemURL: AutoreleasingUnsafeMutablePointer<NSURL?>.init(bitPattern: 0)) // $ hasPathInjection=102
+    fm.copyItem(at: remoteUrl, to: safeUrl) // $ hasPathInjection=102
+    fm.copyItem(at: safeUrl, to: remoteUrl) // $ hasPathInjection=102
+    fm.copyItem(atPath: remoteString, toPath: "") // $ hasPathInjection=102
+    fm.copyItem(atPath: "", toPath: remoteString) // $ hasPathInjection=102
+    fm.moveItem(at: remoteUrl, to: safeUrl) // $ hasPathInjection=102
+    fm.moveItem(at: safeUrl, to: remoteUrl) // $ hasPathInjection=102
+    fm.moveItem(atPath: remoteString, toPath: "") // $ hasPathInjection=102
+    fm.moveItem(atPath: "", toPath: remoteString) // $ hasPathInjection=102
+    fm.createSymbolicLink(at: remoteUrl, withDestinationURL: safeUrl) // $ hasPathInjection=102
+    fm.createSymbolicLink(at: safeUrl, withDestinationURL: remoteUrl) // $ hasPathInjection=102
+    fm.createSymbolicLink(atPath: remoteString, withDestinationPath: "") // $ hasPathInjection=102
+    fm.createSymbolicLink(atPath: "", withDestinationPath: remoteString) // $ hasPathInjection=102
+    fm.linkItem(at: remoteUrl, to: safeUrl) // $ hasPathInjection=102
+    fm.linkItem(at: safeUrl, to: remoteUrl) // $ hasPathInjection=102
+    fm.linkItem(atPath: remoteString, toPath: "") // $ hasPathInjection=102
+    fm.linkItem(atPath: "", toPath: remoteString) // $ hasPathInjection=102
+    let _ = fm.destinationOfSymbolicLink(atPath: remoteString) // $ hasPathInjection=102
+    let _ = fm.fileExists(atPath: remoteString) // $ hasPathInjection=102
+    let _ = fm.fileExists(atPath: remoteString, isDirectory: UnsafeMutablePointer<ObjCBool>.init(bitPattern: 0)) // $ hasPathInjection=102
+    let _ = fm.isReadableFile(atPath: remoteString) // $ hasPathInjection=102
+    let _ = fm.isWritableFile(atPath: remoteString) // $ hasPathInjection=102
+    let _ = fm.isDeletableFile(atPath: remoteString) // $ hasPathInjection=102
+    let _ = fm.componentsToDisplay(forPath: remoteString) // $ hasPathInjection=102
+    let _ = fm.displayName(atPath: remoteString) // $ hasPathInjection=102
+    let _ = fm.attributesOfItem(atPath: remoteString) // $ hasPathInjection=102
+    let _ = fm.attributesOfFileSystem(forPath: remoteString) // $ hasPathInjection=102
+    fm.setAttributes([:], ofItemAtPath: remoteString) // $ hasPathInjection=102
+    let _ = fm.contents(atPath: remoteString) // $ hasPathInjection=102
+    let _ = fm.contentsEqual(atPath: remoteString, andPath: "") // $ hasPathInjection=102
+    let _ = fm.contentsEqual(atPath: "", andPath: remoteString) // $ hasPathInjection=102
+    fm.getRelationship(UnsafeMutablePointer<FileManager.URLRelationship>.allocate(capacity: 0), ofDirectoryAt: remoteUrl, toItemAt: safeUrl) // $ hasPathInjection=102
+    fm.getRelationship(UnsafeMutablePointer<FileManager.URLRelationship>.allocate(capacity: 0), ofDirectoryAt: safeUrl, toItemAt: remoteUrl) // $ hasPathInjection=102
+    fm.getRelationship(UnsafeMutablePointer<FileManager.URLRelationship>.allocate(capacity: 0), of: FileManager.SearchPathDirectory.none, in: FileManager.SearchPathDomainMask(), toItemAt: remoteUrl) // $ hasPathInjection=102
+    let _ = fm.changeCurrentDirectoryPath(remoteString) // $ hasPathInjection=102
+    let _ = fm.unmountVolume(at: remoteUrl, options: [], completionHandler: { _ in }) // $ hasPathInjection=102
+    let _ = fm.NSHFSTypeOfFile(remoteString) // $ hasPathInjection=102
+    // Deprecated methods
+    let _ = fm.changeFileAttributes([:], atPath: remoteString) // $ hasPathInjection=102
+    let _ = fm.fileAttributes(atPath: remoteString, traverseLink: false) // $ hasPathInjection=102
+    let _ = fm.fileSystemAttributes(atPath: remoteString) // $ hasPathInjection=102
+    let _ = fm.directoryContents(atPath: remoteString) // $ hasPathInjection=102
+    let _ = fm.createDirectory(atPath: remoteString, attributes: [:]) // $ hasPathInjection=102
+    let _ = fm.createSymbolicLink(atPath: remoteString, pathContent: "") // $ hasPathInjection=102
+    let _ = fm.createSymbolicLink(atPath: "", pathContent: remoteString) // $ hasPathInjection=102
+    let _ = fm.pathContentOfSymbolicLink(atPath: remoteString) // $ hasPathInjection=102
+    let _ = fm.replaceItemAtURL(originalItemURL: remoteNsUrl, withItemAtURL: safeNsUrl, backupItemName: nil, options: []) // $ hasPathInjection=102
+    let _ = fm.replaceItemAtURL(originalItemURL: safeNsUrl, withItemAtURL: remoteNsUrl, backupItemName: nil, options: []) // $ hasPathInjection=102
+}

From 1576ee9410c3ab81a4158111f8ea98a9a34b3667 Mon Sep 17 00:00:00 2001
From: Tony Torralba <atorralba@users.noreply.github.com>
Date: Mon, 28 Nov 2022 15:19:16 +0100
Subject: [PATCH 0767/1420] Add additional stub to avoid errors when building
 on Linux

---
 .../Security/CWE-022/testPathInjection.swift  | 136 +++++++++---------
 1 file changed, 69 insertions(+), 67 deletions(-)

diff --git a/swift/ql/test/query-tests/Security/CWE-022/testPathInjection.swift b/swift/ql/test/query-tests/Security/CWE-022/testPathInjection.swift
index bc33ade276e..f55635aff2a 100644
--- a/swift/ql/test/query-tests/Security/CWE-022/testPathInjection.swift
+++ b/swift/ql/test/query-tests/Security/CWE-022/testPathInjection.swift
@@ -35,6 +35,8 @@ struct FileAttributeKey : Hashable {}
 
 struct ObjCBool {}
 
+struct AutoreleasingUnsafeMutablePointer<Pointee> {}
+
 class FileManager {
     class DirectoryEnumerator {}
     struct DirectoryEnumerationOptions : OptionSet { let rawValue: Int }
@@ -105,76 +107,76 @@ func test() {
     let safeUrl =  URL(string: "")!
     let safeNsUrl = NSURL(string: "")!
 
-    Data("").write(to: remoteUrl, options: []) // $ hasPathInjection=102
+    Data("").write(to: remoteUrl, options: []) // $ hasPathInjection=104
 
     let nsData = NSData()
-    let _ = nsData.write(to: remoteUrl, atomically: false) // $ hasPathInjection=102
-    nsData.write(to: remoteUrl, options: []) // $ hasPathInjection=102
-    let _ = nsData.write(toFile: remoteString, atomically: false) // $ hasPathInjection=102
-    nsData.write(toFile: remoteString, options: []) // $ hasPathInjection=102
+    let _ = nsData.write(to: remoteUrl, atomically: false) // $ hasPathInjection=104
+    nsData.write(to: remoteUrl, options: []) // $ hasPathInjection=104
+    let _ = nsData.write(toFile: remoteString, atomically: false) // $ hasPathInjection=104
+    nsData.write(toFile: remoteString, options: []) // $ hasPathInjection=104
 
     let fm = FileManager()
-    let _ = fm.contentsOfDirectory(at: remoteUrl, includingPropertiesForKeys: [], options: []) // $ hasPathInjection=102
-    let _ = fm.contentsOfDirectory(atPath: remoteString) // $ hasPathInjection=102
-    let _ = fm.enumerator(at: remoteUrl, includingPropertiesForKeys: [], options: [], errorHandler: nil) // $ hasPathInjection=102
-    let _ = fm.enumerator(atPath: remoteString) // $ hasPathInjection=102
-    let _ = fm.subpathsOfDirectory(atPath: remoteString) // $ hasPathInjection=102
-    let _ = fm.subpaths(atPath: remoteString) // $ hasPathInjection=102
-    fm.createDirectory(at: remoteUrl, withIntermediateDirectories: false, attributes: [:]) // $ hasPathInjection=102
-    let _ = fm.createDirectory(atPath: remoteString, attributes: [:]) // $ hasPathInjection=102
-    let _ = fm.createFile(atPath: remoteString, contents: nil, attributes: [:]) // $ hasPathInjection=102
-    fm.removeItem(at: remoteUrl) // $ hasPathInjection=102
-    fm.removeItem(atPath: remoteString) // $ hasPathInjection=102
-    fm.trashItem(at: remoteUrl, resultingItemURL: AutoreleasingUnsafeMutablePointer<NSURL?>.init(bitPattern: 0)) // $ hasPathInjection=102
-    let _ = fm.replaceItemAt(remoteUrl, withItemAt: safeUrl, backupItemName: nil, options: []) // $ hasPathInjection=102
-    let _ = fm.replaceItemAt(safeUrl, withItemAt: remoteUrl, backupItemName: nil, options: []) // $ hasPathInjection=102
-    fm.replaceItem(at: remoteUrl, withItemAt: safeUrl, backupItemName: nil, options: [], resultingItemURL: AutoreleasingUnsafeMutablePointer<NSURL?>.init(bitPattern: 0)) // $ hasPathInjection=102
-    fm.replaceItem(at: safeUrl, withItemAt: remoteUrl, backupItemName: nil, options: [], resultingItemURL: AutoreleasingUnsafeMutablePointer<NSURL?>.init(bitPattern: 0)) // $ hasPathInjection=102
-    fm.copyItem(at: remoteUrl, to: safeUrl) // $ hasPathInjection=102
-    fm.copyItem(at: safeUrl, to: remoteUrl) // $ hasPathInjection=102
-    fm.copyItem(atPath: remoteString, toPath: "") // $ hasPathInjection=102
-    fm.copyItem(atPath: "", toPath: remoteString) // $ hasPathInjection=102
-    fm.moveItem(at: remoteUrl, to: safeUrl) // $ hasPathInjection=102
-    fm.moveItem(at: safeUrl, to: remoteUrl) // $ hasPathInjection=102
-    fm.moveItem(atPath: remoteString, toPath: "") // $ hasPathInjection=102
-    fm.moveItem(atPath: "", toPath: remoteString) // $ hasPathInjection=102
-    fm.createSymbolicLink(at: remoteUrl, withDestinationURL: safeUrl) // $ hasPathInjection=102
-    fm.createSymbolicLink(at: safeUrl, withDestinationURL: remoteUrl) // $ hasPathInjection=102
-    fm.createSymbolicLink(atPath: remoteString, withDestinationPath: "") // $ hasPathInjection=102
-    fm.createSymbolicLink(atPath: "", withDestinationPath: remoteString) // $ hasPathInjection=102
-    fm.linkItem(at: remoteUrl, to: safeUrl) // $ hasPathInjection=102
-    fm.linkItem(at: safeUrl, to: remoteUrl) // $ hasPathInjection=102
-    fm.linkItem(atPath: remoteString, toPath: "") // $ hasPathInjection=102
-    fm.linkItem(atPath: "", toPath: remoteString) // $ hasPathInjection=102
-    let _ = fm.destinationOfSymbolicLink(atPath: remoteString) // $ hasPathInjection=102
-    let _ = fm.fileExists(atPath: remoteString) // $ hasPathInjection=102
-    let _ = fm.fileExists(atPath: remoteString, isDirectory: UnsafeMutablePointer<ObjCBool>.init(bitPattern: 0)) // $ hasPathInjection=102
-    let _ = fm.isReadableFile(atPath: remoteString) // $ hasPathInjection=102
-    let _ = fm.isWritableFile(atPath: remoteString) // $ hasPathInjection=102
-    let _ = fm.isDeletableFile(atPath: remoteString) // $ hasPathInjection=102
-    let _ = fm.componentsToDisplay(forPath: remoteString) // $ hasPathInjection=102
-    let _ = fm.displayName(atPath: remoteString) // $ hasPathInjection=102
-    let _ = fm.attributesOfItem(atPath: remoteString) // $ hasPathInjection=102
-    let _ = fm.attributesOfFileSystem(forPath: remoteString) // $ hasPathInjection=102
-    fm.setAttributes([:], ofItemAtPath: remoteString) // $ hasPathInjection=102
-    let _ = fm.contents(atPath: remoteString) // $ hasPathInjection=102
-    let _ = fm.contentsEqual(atPath: remoteString, andPath: "") // $ hasPathInjection=102
-    let _ = fm.contentsEqual(atPath: "", andPath: remoteString) // $ hasPathInjection=102
-    fm.getRelationship(UnsafeMutablePointer<FileManager.URLRelationship>.allocate(capacity: 0), ofDirectoryAt: remoteUrl, toItemAt: safeUrl) // $ hasPathInjection=102
-    fm.getRelationship(UnsafeMutablePointer<FileManager.URLRelationship>.allocate(capacity: 0), ofDirectoryAt: safeUrl, toItemAt: remoteUrl) // $ hasPathInjection=102
-    fm.getRelationship(UnsafeMutablePointer<FileManager.URLRelationship>.allocate(capacity: 0), of: FileManager.SearchPathDirectory.none, in: FileManager.SearchPathDomainMask(), toItemAt: remoteUrl) // $ hasPathInjection=102
-    let _ = fm.changeCurrentDirectoryPath(remoteString) // $ hasPathInjection=102
-    let _ = fm.unmountVolume(at: remoteUrl, options: [], completionHandler: { _ in }) // $ hasPathInjection=102
-    let _ = fm.NSHFSTypeOfFile(remoteString) // $ hasPathInjection=102
+    let _ = fm.contentsOfDirectory(at: remoteUrl, includingPropertiesForKeys: [], options: []) // $ hasPathInjection=104
+    let _ = fm.contentsOfDirectory(atPath: remoteString) // $ hasPathInjection=104
+    let _ = fm.enumerator(at: remoteUrl, includingPropertiesForKeys: [], options: [], errorHandler: nil) // $ hasPathInjection=104
+    let _ = fm.enumerator(atPath: remoteString) // $ hasPathInjection=104
+    let _ = fm.subpathsOfDirectory(atPath: remoteString) // $ hasPathInjection=104
+    let _ = fm.subpaths(atPath: remoteString) // $ hasPathInjection=104
+    fm.createDirectory(at: remoteUrl, withIntermediateDirectories: false, attributes: [:]) // $ hasPathInjection=104
+    let _ = fm.createDirectory(atPath: remoteString, attributes: [:]) // $ hasPathInjection=104
+    let _ = fm.createFile(atPath: remoteString, contents: nil, attributes: [:]) // $ hasPathInjection=104
+    fm.removeItem(at: remoteUrl) // $ hasPathInjection=104
+    fm.removeItem(atPath: remoteString) // $ hasPathInjection=104
+    fm.trashItem(at: remoteUrl, resultingItemURL: AutoreleasingUnsafeMutablePointer<NSURL?>()) // $ hasPathInjection=104
+    let _ = fm.replaceItemAt(remoteUrl, withItemAt: safeUrl, backupItemName: nil, options: []) // $ hasPathInjection=104
+    let _ = fm.replaceItemAt(safeUrl, withItemAt: remoteUrl, backupItemName: nil, options: []) // $ hasPathInjection=104
+    fm.replaceItem(at: remoteUrl, withItemAt: safeUrl, backupItemName: nil, options: [], resultingItemURL: AutoreleasingUnsafeMutablePointer<NSURL?>()) // $ hasPathInjection=104
+    fm.replaceItem(at: safeUrl, withItemAt: remoteUrl, backupItemName: nil, options: [], resultingItemURL: AutoreleasingUnsafeMutablePointer<NSURL?>()) // $ hasPathInjection=104
+    fm.copyItem(at: remoteUrl, to: safeUrl) // $ hasPathInjection=104
+    fm.copyItem(at: safeUrl, to: remoteUrl) // $ hasPathInjection=104
+    fm.copyItem(atPath: remoteString, toPath: "") // $ hasPathInjection=104
+    fm.copyItem(atPath: "", toPath: remoteString) // $ hasPathInjection=104
+    fm.moveItem(at: remoteUrl, to: safeUrl) // $ hasPathInjection=104
+    fm.moveItem(at: safeUrl, to: remoteUrl) // $ hasPathInjection=104
+    fm.moveItem(atPath: remoteString, toPath: "") // $ hasPathInjection=104
+    fm.moveItem(atPath: "", toPath: remoteString) // $ hasPathInjection=104
+    fm.createSymbolicLink(at: remoteUrl, withDestinationURL: safeUrl) // $ hasPathInjection=104
+    fm.createSymbolicLink(at: safeUrl, withDestinationURL: remoteUrl) // $ hasPathInjection=104
+    fm.createSymbolicLink(atPath: remoteString, withDestinationPath: "") // $ hasPathInjection=104
+    fm.createSymbolicLink(atPath: "", withDestinationPath: remoteString) // $ hasPathInjection=104
+    fm.linkItem(at: remoteUrl, to: safeUrl) // $ hasPathInjection=104
+    fm.linkItem(at: safeUrl, to: remoteUrl) // $ hasPathInjection=104
+    fm.linkItem(atPath: remoteString, toPath: "") // $ hasPathInjection=104
+    fm.linkItem(atPath: "", toPath: remoteString) // $ hasPathInjection=104
+    let _ = fm.destinationOfSymbolicLink(atPath: remoteString) // $ hasPathInjection=104
+    let _ = fm.fileExists(atPath: remoteString) // $ hasPathInjection=104
+    let _ = fm.fileExists(atPath: remoteString, isDirectory: UnsafeMutablePointer<ObjCBool>.init(bitPattern: 0)) // $ hasPathInjection=104
+    let _ = fm.isReadableFile(atPath: remoteString) // $ hasPathInjection=104
+    let _ = fm.isWritableFile(atPath: remoteString) // $ hasPathInjection=104
+    let _ = fm.isDeletableFile(atPath: remoteString) // $ hasPathInjection=104
+    let _ = fm.componentsToDisplay(forPath: remoteString) // $ hasPathInjection=104
+    let _ = fm.displayName(atPath: remoteString) // $ hasPathInjection=104
+    let _ = fm.attributesOfItem(atPath: remoteString) // $ hasPathInjection=104
+    let _ = fm.attributesOfFileSystem(forPath: remoteString) // $ hasPathInjection=104
+    fm.setAttributes([:], ofItemAtPath: remoteString) // $ hasPathInjection=104
+    let _ = fm.contents(atPath: remoteString) // $ hasPathInjection=104
+    let _ = fm.contentsEqual(atPath: remoteString, andPath: "") // $ hasPathInjection=104
+    let _ = fm.contentsEqual(atPath: "", andPath: remoteString) // $ hasPathInjection=104
+    fm.getRelationship(UnsafeMutablePointer<FileManager.URLRelationship>.allocate(capacity: 0), ofDirectoryAt: remoteUrl, toItemAt: safeUrl) // $ hasPathInjection=104
+    fm.getRelationship(UnsafeMutablePointer<FileManager.URLRelationship>.allocate(capacity: 0), ofDirectoryAt: safeUrl, toItemAt: remoteUrl) // $ hasPathInjection=104
+    fm.getRelationship(UnsafeMutablePointer<FileManager.URLRelationship>.allocate(capacity: 0), of: FileManager.SearchPathDirectory.none, in: FileManager.SearchPathDomainMask(), toItemAt: remoteUrl) // $ hasPathInjection=104
+    let _ = fm.changeCurrentDirectoryPath(remoteString) // $ hasPathInjection=104
+    let _ = fm.unmountVolume(at: remoteUrl, options: [], completionHandler: { _ in }) // $ hasPathInjection=104
+    let _ = fm.NSHFSTypeOfFile(remoteString) // $ hasPathInjection=104
     // Deprecated methods
-    let _ = fm.changeFileAttributes([:], atPath: remoteString) // $ hasPathInjection=102
-    let _ = fm.fileAttributes(atPath: remoteString, traverseLink: false) // $ hasPathInjection=102
-    let _ = fm.fileSystemAttributes(atPath: remoteString) // $ hasPathInjection=102
-    let _ = fm.directoryContents(atPath: remoteString) // $ hasPathInjection=102
-    let _ = fm.createDirectory(atPath: remoteString, attributes: [:]) // $ hasPathInjection=102
-    let _ = fm.createSymbolicLink(atPath: remoteString, pathContent: "") // $ hasPathInjection=102
-    let _ = fm.createSymbolicLink(atPath: "", pathContent: remoteString) // $ hasPathInjection=102
-    let _ = fm.pathContentOfSymbolicLink(atPath: remoteString) // $ hasPathInjection=102
-    let _ = fm.replaceItemAtURL(originalItemURL: remoteNsUrl, withItemAtURL: safeNsUrl, backupItemName: nil, options: []) // $ hasPathInjection=102
-    let _ = fm.replaceItemAtURL(originalItemURL: safeNsUrl, withItemAtURL: remoteNsUrl, backupItemName: nil, options: []) // $ hasPathInjection=102
+    let _ = fm.changeFileAttributes([:], atPath: remoteString) // $ hasPathInjection=104
+    let _ = fm.fileAttributes(atPath: remoteString, traverseLink: false) // $ hasPathInjection=104
+    let _ = fm.fileSystemAttributes(atPath: remoteString) // $ hasPathInjection=104
+    let _ = fm.directoryContents(atPath: remoteString) // $ hasPathInjection=104
+    let _ = fm.createDirectory(atPath: remoteString, attributes: [:]) // $ hasPathInjection=104
+    let _ = fm.createSymbolicLink(atPath: remoteString, pathContent: "") // $ hasPathInjection=104
+    let _ = fm.createSymbolicLink(atPath: "", pathContent: remoteString) // $ hasPathInjection=104
+    let _ = fm.pathContentOfSymbolicLink(atPath: remoteString) // $ hasPathInjection=104
+    let _ = fm.replaceItemAtURL(originalItemURL: remoteNsUrl, withItemAtURL: safeNsUrl, backupItemName: nil, options: []) // $ hasPathInjection=104
+    let _ = fm.replaceItemAtURL(originalItemURL: safeNsUrl, withItemAtURL: remoteNsUrl, backupItemName: nil, options: []) // $ hasPathInjection=104
 }

From 52ebf66d21192fabbdcecb63e701661e20b56e89 Mon Sep 17 00:00:00 2001
From: Tony Torralba <atorralba@users.noreply.github.com>
Date: Mon, 28 Nov 2022 17:23:44 +0100
Subject: [PATCH 0768/1420] Add basic path sanitizer

---
 .../codeql/swift/dataflow/ExternalFlow.qll    |   1 +
 .../frameworks/StandardLibrary/FilePath.qll   |  17 ++
 .../frameworks/StandardLibrary/NsUrl.qll      |   9 +-
 .../codeql/swift/security/PathInjection.qll   |  16 +-
 .../Security/CWE-022/testPathInjection.swift  | 152 ++++++++++--------
 5 files changed, 120 insertions(+), 75 deletions(-)
 create mode 100644 swift/ql/lib/codeql/swift/frameworks/StandardLibrary/FilePath.qll

diff --git a/swift/ql/lib/codeql/swift/dataflow/ExternalFlow.qll b/swift/ql/lib/codeql/swift/dataflow/ExternalFlow.qll
index ae507d93e3e..b0406fd252b 100644
--- a/swift/ql/lib/codeql/swift/dataflow/ExternalFlow.qll
+++ b/swift/ql/lib/codeql/swift/dataflow/ExternalFlow.qll
@@ -80,6 +80,7 @@ private import internal.FlowSummaryImplSpecific
 private module Frameworks {
   private import codeql.swift.frameworks.StandardLibrary.CustomUrlSchemes
   private import codeql.swift.frameworks.StandardLibrary.Data
+  private import codeql.swift.frameworks.StandardLibrary.FilePath
   private import codeql.swift.frameworks.StandardLibrary.InputStream
   private import codeql.swift.frameworks.StandardLibrary.NSData
   private import codeql.swift.frameworks.StandardLibrary.NsUrl
diff --git a/swift/ql/lib/codeql/swift/frameworks/StandardLibrary/FilePath.qll b/swift/ql/lib/codeql/swift/frameworks/StandardLibrary/FilePath.qll
new file mode 100644
index 00000000000..5c0c9f0dce5
--- /dev/null
+++ b/swift/ql/lib/codeql/swift/frameworks/StandardLibrary/FilePath.qll
@@ -0,0 +1,17 @@
+import swift
+private import codeql.swift.dataflow.ExternalFlow
+
+/** The struct `FilePath`. */
+class FilePath extends StructDecl {
+  FilePath() { this.getFullName() = "FilePath" }
+}
+
+/**
+ * A model for `FilePath` members that permit taint flow.
+ */
+private class FilePathSummaries extends SummaryModelCsv {
+  override predicate row(string row) {
+    // TODO: Properly model this class
+    row = ";FilePath;true;init(stringLiteral:);(String);;Argument[0];ReturnValue;taint"
+  }
+}
diff --git a/swift/ql/lib/codeql/swift/frameworks/StandardLibrary/NsUrl.qll b/swift/ql/lib/codeql/swift/frameworks/StandardLibrary/NsUrl.qll
index 91110435e90..e1849d227e7 100644
--- a/swift/ql/lib/codeql/swift/frameworks/StandardLibrary/NsUrl.qll
+++ b/swift/ql/lib/codeql/swift/frameworks/StandardLibrary/NsUrl.qll
@@ -1,17 +1,12 @@
 import swift
-private import codeql.swift.dataflow.DataFlow
 private import codeql.swift.dataflow.ExternalFlow
-private import codeql.swift.dataflow.FlowSteps
 
 /**
  * A model for `NSURL` members that permit taint flow.
  */
 private class NsUrlSummaries extends SummaryModelCsv {
   override predicate row(string row) {
-    row =
-      [
-        ";NSURL;true;init(string:);(String);;Argument[0];ReturnValue;taint",
-        // TODO
-      ]
+    // TODO: Properly model this class
+    row = ";NSURL;true;init(string:);(String);;Argument[0];ReturnValue;taint"
   }
 }
diff --git a/swift/ql/lib/codeql/swift/security/PathInjection.qll b/swift/ql/lib/codeql/swift/security/PathInjection.qll
index a58681181e2..5b81850c71d 100644
--- a/swift/ql/lib/codeql/swift/security/PathInjection.qll
+++ b/swift/ql/lib/codeql/swift/security/PathInjection.qll
@@ -3,6 +3,8 @@
 import swift
 private import codeql.swift.dataflow.DataFlow
 private import codeql.swift.dataflow.ExternalFlow
+private import codeql.swift.dataflow.TaintTracking
+private import codeql.swift.frameworks.StandardLibrary.FilePath
 
 /** A data flow sink for path injection vulnerabilities. */
 abstract class PathInjectionSink extends DataFlow::Node { }
@@ -29,7 +31,19 @@ private class DefaultPathInjectionSink extends PathInjectionSink {
 }
 
 private class DefaultPathInjectionSanitizer extends PathInjectionSanitizer {
-  DefaultPathInjectionSanitizer() { none() } // TODO: Implement a proper path sanitizer
+  DefaultPathInjectionSanitizer() {
+    // This is a simple implementation prone to FNs by sanitizing too many nodes.
+    // TODO: Implement a complete path sanitizer when Guards are available.
+    exists(CallExpr starts, CallExpr normalize |
+      starts.getStaticTarget().getName() = "starts(with:)" and
+      starts.getStaticTarget().getEnclosingDecl() instanceof FilePath and
+      normalize.getStaticTarget().getName() = "lexicallyNormalized()" and
+      normalize.getStaticTarget().getEnclosingDecl() instanceof FilePath
+    |
+      TaintTracking::localTaint(this, DataFlow::exprNode(normalize.getQualifier())) and
+      DataFlow::localExprFlow(normalize, starts.getQualifier())
+    )
+  }
 }
 
 private class PathInjectionSinks extends SinkModelCsv {
diff --git a/swift/ql/test/query-tests/Security/CWE-022/testPathInjection.swift b/swift/ql/test/query-tests/Security/CWE-022/testPathInjection.swift
index f55635aff2a..9eb9c5ca6bb 100644
--- a/swift/ql/test/query-tests/Security/CWE-022/testPathInjection.swift
+++ b/swift/ql/test/query-tests/Security/CWE-022/testPathInjection.swift
@@ -37,6 +37,12 @@ struct ObjCBool {}
 
 struct AutoreleasingUnsafeMutablePointer<Pointee> {}
 
+struct FilePath {
+    init(stringLiteral: String) {}
+    func lexicallyNormalized() -> FilePath { return FilePath(stringLiteral: "") }
+    func starts(with: FilePath) -> Bool { return false }
+}
+
 class FileManager {
     class DirectoryEnumerator {}
     struct DirectoryEnumerationOptions : OptionSet { let rawValue: Int }
@@ -107,76 +113,88 @@ func test() {
     let safeUrl =  URL(string: "")!
     let safeNsUrl = NSURL(string: "")!
 
-    Data("").write(to: remoteUrl, options: []) // $ hasPathInjection=104
+    Data("").write(to: remoteUrl, options: []) // $ hasPathInjection=110
 
     let nsData = NSData()
-    let _ = nsData.write(to: remoteUrl, atomically: false) // $ hasPathInjection=104
-    nsData.write(to: remoteUrl, options: []) // $ hasPathInjection=104
-    let _ = nsData.write(toFile: remoteString, atomically: false) // $ hasPathInjection=104
-    nsData.write(toFile: remoteString, options: []) // $ hasPathInjection=104
+    let _ = nsData.write(to: remoteUrl, atomically: false) // $ hasPathInjection=110
+    nsData.write(to: remoteUrl, options: []) // $ hasPathInjection=110
+    let _ = nsData.write(toFile: remoteString, atomically: false) // $ hasPathInjection=110
+    nsData.write(toFile: remoteString, options: []) // $ hasPathInjection=110
 
     let fm = FileManager()
-    let _ = fm.contentsOfDirectory(at: remoteUrl, includingPropertiesForKeys: [], options: []) // $ hasPathInjection=104
-    let _ = fm.contentsOfDirectory(atPath: remoteString) // $ hasPathInjection=104
-    let _ = fm.enumerator(at: remoteUrl, includingPropertiesForKeys: [], options: [], errorHandler: nil) // $ hasPathInjection=104
-    let _ = fm.enumerator(atPath: remoteString) // $ hasPathInjection=104
-    let _ = fm.subpathsOfDirectory(atPath: remoteString) // $ hasPathInjection=104
-    let _ = fm.subpaths(atPath: remoteString) // $ hasPathInjection=104
-    fm.createDirectory(at: remoteUrl, withIntermediateDirectories: false, attributes: [:]) // $ hasPathInjection=104
-    let _ = fm.createDirectory(atPath: remoteString, attributes: [:]) // $ hasPathInjection=104
-    let _ = fm.createFile(atPath: remoteString, contents: nil, attributes: [:]) // $ hasPathInjection=104
-    fm.removeItem(at: remoteUrl) // $ hasPathInjection=104
-    fm.removeItem(atPath: remoteString) // $ hasPathInjection=104
-    fm.trashItem(at: remoteUrl, resultingItemURL: AutoreleasingUnsafeMutablePointer<NSURL?>()) // $ hasPathInjection=104
-    let _ = fm.replaceItemAt(remoteUrl, withItemAt: safeUrl, backupItemName: nil, options: []) // $ hasPathInjection=104
-    let _ = fm.replaceItemAt(safeUrl, withItemAt: remoteUrl, backupItemName: nil, options: []) // $ hasPathInjection=104
-    fm.replaceItem(at: remoteUrl, withItemAt: safeUrl, backupItemName: nil, options: [], resultingItemURL: AutoreleasingUnsafeMutablePointer<NSURL?>()) // $ hasPathInjection=104
-    fm.replaceItem(at: safeUrl, withItemAt: remoteUrl, backupItemName: nil, options: [], resultingItemURL: AutoreleasingUnsafeMutablePointer<NSURL?>()) // $ hasPathInjection=104
-    fm.copyItem(at: remoteUrl, to: safeUrl) // $ hasPathInjection=104
-    fm.copyItem(at: safeUrl, to: remoteUrl) // $ hasPathInjection=104
-    fm.copyItem(atPath: remoteString, toPath: "") // $ hasPathInjection=104
-    fm.copyItem(atPath: "", toPath: remoteString) // $ hasPathInjection=104
-    fm.moveItem(at: remoteUrl, to: safeUrl) // $ hasPathInjection=104
-    fm.moveItem(at: safeUrl, to: remoteUrl) // $ hasPathInjection=104
-    fm.moveItem(atPath: remoteString, toPath: "") // $ hasPathInjection=104
-    fm.moveItem(atPath: "", toPath: remoteString) // $ hasPathInjection=104
-    fm.createSymbolicLink(at: remoteUrl, withDestinationURL: safeUrl) // $ hasPathInjection=104
-    fm.createSymbolicLink(at: safeUrl, withDestinationURL: remoteUrl) // $ hasPathInjection=104
-    fm.createSymbolicLink(atPath: remoteString, withDestinationPath: "") // $ hasPathInjection=104
-    fm.createSymbolicLink(atPath: "", withDestinationPath: remoteString) // $ hasPathInjection=104
-    fm.linkItem(at: remoteUrl, to: safeUrl) // $ hasPathInjection=104
-    fm.linkItem(at: safeUrl, to: remoteUrl) // $ hasPathInjection=104
-    fm.linkItem(atPath: remoteString, toPath: "") // $ hasPathInjection=104
-    fm.linkItem(atPath: "", toPath: remoteString) // $ hasPathInjection=104
-    let _ = fm.destinationOfSymbolicLink(atPath: remoteString) // $ hasPathInjection=104
-    let _ = fm.fileExists(atPath: remoteString) // $ hasPathInjection=104
-    let _ = fm.fileExists(atPath: remoteString, isDirectory: UnsafeMutablePointer<ObjCBool>.init(bitPattern: 0)) // $ hasPathInjection=104
-    let _ = fm.isReadableFile(atPath: remoteString) // $ hasPathInjection=104
-    let _ = fm.isWritableFile(atPath: remoteString) // $ hasPathInjection=104
-    let _ = fm.isDeletableFile(atPath: remoteString) // $ hasPathInjection=104
-    let _ = fm.componentsToDisplay(forPath: remoteString) // $ hasPathInjection=104
-    let _ = fm.displayName(atPath: remoteString) // $ hasPathInjection=104
-    let _ = fm.attributesOfItem(atPath: remoteString) // $ hasPathInjection=104
-    let _ = fm.attributesOfFileSystem(forPath: remoteString) // $ hasPathInjection=104
-    fm.setAttributes([:], ofItemAtPath: remoteString) // $ hasPathInjection=104
-    let _ = fm.contents(atPath: remoteString) // $ hasPathInjection=104
-    let _ = fm.contentsEqual(atPath: remoteString, andPath: "") // $ hasPathInjection=104
-    let _ = fm.contentsEqual(atPath: "", andPath: remoteString) // $ hasPathInjection=104
-    fm.getRelationship(UnsafeMutablePointer<FileManager.URLRelationship>.allocate(capacity: 0), ofDirectoryAt: remoteUrl, toItemAt: safeUrl) // $ hasPathInjection=104
-    fm.getRelationship(UnsafeMutablePointer<FileManager.URLRelationship>.allocate(capacity: 0), ofDirectoryAt: safeUrl, toItemAt: remoteUrl) // $ hasPathInjection=104
-    fm.getRelationship(UnsafeMutablePointer<FileManager.URLRelationship>.allocate(capacity: 0), of: FileManager.SearchPathDirectory.none, in: FileManager.SearchPathDomainMask(), toItemAt: remoteUrl) // $ hasPathInjection=104
-    let _ = fm.changeCurrentDirectoryPath(remoteString) // $ hasPathInjection=104
-    let _ = fm.unmountVolume(at: remoteUrl, options: [], completionHandler: { _ in }) // $ hasPathInjection=104
-    let _ = fm.NSHFSTypeOfFile(remoteString) // $ hasPathInjection=104
+    let _ = fm.contentsOfDirectory(at: remoteUrl, includingPropertiesForKeys: [], options: []) // $ hasPathInjection=110
+    let _ = fm.contentsOfDirectory(atPath: remoteString) // $ hasPathInjection=110
+    let _ = fm.enumerator(at: remoteUrl, includingPropertiesForKeys: [], options: [], errorHandler: nil) // $ hasPathInjection=110
+    let _ = fm.enumerator(atPath: remoteString) // $ hasPathInjection=110
+    let _ = fm.subpathsOfDirectory(atPath: remoteString) // $ hasPathInjection=110
+    let _ = fm.subpaths(atPath: remoteString) // $ hasPathInjection=110
+    fm.createDirectory(at: remoteUrl, withIntermediateDirectories: false, attributes: [:]) // $ hasPathInjection=110
+    let _ = fm.createDirectory(atPath: remoteString, attributes: [:]) // $ hasPathInjection=110
+    let _ = fm.createFile(atPath: remoteString, contents: nil, attributes: [:]) // $ hasPathInjection=110
+    fm.removeItem(at: remoteUrl) // $ hasPathInjection=110
+    fm.removeItem(atPath: remoteString) // $ hasPathInjection=110
+    fm.trashItem(at: remoteUrl, resultingItemURL: AutoreleasingUnsafeMutablePointer<NSURL?>()) // $ hasPathInjection=110
+    let _ = fm.replaceItemAt(remoteUrl, withItemAt: safeUrl, backupItemName: nil, options: []) // $ hasPathInjection=110
+    let _ = fm.replaceItemAt(safeUrl, withItemAt: remoteUrl, backupItemName: nil, options: []) // $ hasPathInjection=110
+    fm.replaceItem(at: remoteUrl, withItemAt: safeUrl, backupItemName: nil, options: [], resultingItemURL: AutoreleasingUnsafeMutablePointer<NSURL?>()) // $ hasPathInjection=110
+    fm.replaceItem(at: safeUrl, withItemAt: remoteUrl, backupItemName: nil, options: [], resultingItemURL: AutoreleasingUnsafeMutablePointer<NSURL?>()) // $ hasPathInjection=110
+    fm.copyItem(at: remoteUrl, to: safeUrl) // $ hasPathInjection=110
+    fm.copyItem(at: safeUrl, to: remoteUrl) // $ hasPathInjection=110
+    fm.copyItem(atPath: remoteString, toPath: "") // $ hasPathInjection=110
+    fm.copyItem(atPath: "", toPath: remoteString) // $ hasPathInjection=110
+    fm.moveItem(at: remoteUrl, to: safeUrl) // $ hasPathInjection=110
+    fm.moveItem(at: safeUrl, to: remoteUrl) // $ hasPathInjection=110
+    fm.moveItem(atPath: remoteString, toPath: "") // $ hasPathInjection=110
+    fm.moveItem(atPath: "", toPath: remoteString) // $ hasPathInjection=110
+    fm.createSymbolicLink(at: remoteUrl, withDestinationURL: safeUrl) // $ hasPathInjection=110
+    fm.createSymbolicLink(at: safeUrl, withDestinationURL: remoteUrl) // $ hasPathInjection=110
+    fm.createSymbolicLink(atPath: remoteString, withDestinationPath: "") // $ hasPathInjection=110
+    fm.createSymbolicLink(atPath: "", withDestinationPath: remoteString) // $ hasPathInjection=110
+    fm.linkItem(at: remoteUrl, to: safeUrl) // $ hasPathInjection=110
+    fm.linkItem(at: safeUrl, to: remoteUrl) // $ hasPathInjection=110
+    fm.linkItem(atPath: remoteString, toPath: "") // $ hasPathInjection=110
+    fm.linkItem(atPath: "", toPath: remoteString) // $ hasPathInjection=110
+    let _ = fm.destinationOfSymbolicLink(atPath: remoteString) // $ hasPathInjection=110
+    let _ = fm.fileExists(atPath: remoteString) // $ hasPathInjection=110
+    let _ = fm.fileExists(atPath: remoteString, isDirectory: UnsafeMutablePointer<ObjCBool>.init(bitPattern: 0)) // $ hasPathInjection=110
+    let _ = fm.isReadableFile(atPath: remoteString) // $ hasPathInjection=110
+    let _ = fm.isWritableFile(atPath: remoteString) // $ hasPathInjection=110
+    let _ = fm.isDeletableFile(atPath: remoteString) // $ hasPathInjection=110
+    let _ = fm.componentsToDisplay(forPath: remoteString) // $ hasPathInjection=110
+    let _ = fm.displayName(atPath: remoteString) // $ hasPathInjection=110
+    let _ = fm.attributesOfItem(atPath: remoteString) // $ hasPathInjection=110
+    let _ = fm.attributesOfFileSystem(forPath: remoteString) // $ hasPathInjection=110
+    fm.setAttributes([:], ofItemAtPath: remoteString) // $ hasPathInjection=110
+    let _ = fm.contents(atPath: remoteString) // $ hasPathInjection=110
+    let _ = fm.contentsEqual(atPath: remoteString, andPath: "") // $ hasPathInjection=110
+    let _ = fm.contentsEqual(atPath: "", andPath: remoteString) // $ hasPathInjection=110
+    fm.getRelationship(UnsafeMutablePointer<FileManager.URLRelationship>.allocate(capacity: 0), ofDirectoryAt: remoteUrl, toItemAt: safeUrl) // $ hasPathInjection=110
+    fm.getRelationship(UnsafeMutablePointer<FileManager.URLRelationship>.allocate(capacity: 0), ofDirectoryAt: safeUrl, toItemAt: remoteUrl) // $ hasPathInjection=110
+    fm.getRelationship(UnsafeMutablePointer<FileManager.URLRelationship>.allocate(capacity: 0), of: FileManager.SearchPathDirectory.none, in: FileManager.SearchPathDomainMask(), toItemAt: remoteUrl) // $ hasPathInjection=110
+    let _ = fm.changeCurrentDirectoryPath(remoteString) // $ hasPathInjection=110
+    let _ = fm.unmountVolume(at: remoteUrl, options: [], completionHandler: { _ in }) // $ hasPathInjection=110
+    let _ = fm.NSHFSTypeOfFile(remoteString) // $ hasPathInjection=110
     // Deprecated methods
-    let _ = fm.changeFileAttributes([:], atPath: remoteString) // $ hasPathInjection=104
-    let _ = fm.fileAttributes(atPath: remoteString, traverseLink: false) // $ hasPathInjection=104
-    let _ = fm.fileSystemAttributes(atPath: remoteString) // $ hasPathInjection=104
-    let _ = fm.directoryContents(atPath: remoteString) // $ hasPathInjection=104
-    let _ = fm.createDirectory(atPath: remoteString, attributes: [:]) // $ hasPathInjection=104
-    let _ = fm.createSymbolicLink(atPath: remoteString, pathContent: "") // $ hasPathInjection=104
-    let _ = fm.createSymbolicLink(atPath: "", pathContent: remoteString) // $ hasPathInjection=104
-    let _ = fm.pathContentOfSymbolicLink(atPath: remoteString) // $ hasPathInjection=104
-    let _ = fm.replaceItemAtURL(originalItemURL: remoteNsUrl, withItemAtURL: safeNsUrl, backupItemName: nil, options: []) // $ hasPathInjection=104
-    let _ = fm.replaceItemAtURL(originalItemURL: safeNsUrl, withItemAtURL: remoteNsUrl, backupItemName: nil, options: []) // $ hasPathInjection=104
+    let _ = fm.changeFileAttributes([:], atPath: remoteString) // $ hasPathInjection=110
+    let _ = fm.fileAttributes(atPath: remoteString, traverseLink: false) // $ hasPathInjection=110
+    let _ = fm.fileSystemAttributes(atPath: remoteString) // $ hasPathInjection=110
+    let _ = fm.directoryContents(atPath: remoteString) // $ hasPathInjection=110
+    let _ = fm.createDirectory(atPath: remoteString, attributes: [:]) // $ hasPathInjection=110
+    let _ = fm.createSymbolicLink(atPath: remoteString, pathContent: "") // $ hasPathInjection=110
+    let _ = fm.createSymbolicLink(atPath: "", pathContent: remoteString) // $ hasPathInjection=110
+    let _ = fm.pathContentOfSymbolicLink(atPath: remoteString) // $ hasPathInjection=110
+    let _ = fm.replaceItemAtURL(originalItemURL: remoteNsUrl, withItemAtURL: safeNsUrl, backupItemName: nil, options: []) // $ hasPathInjection=110
+    let _ = fm.replaceItemAtURL(originalItemURL: safeNsUrl, withItemAtURL: remoteNsUrl, backupItemName: nil, options: []) // $ hasPathInjection=110
+}
+
+func testSanitizers() {
+    let remoteString = String(contentsOf: URL(string: "http://example.com/")!)
+
+    let fm = FileManager()
+
+    let filePath = FilePath(stringLiteral: remoteString)
+    if (filePath.lexicallyNormalized().starts(with: FilePath(stringLiteral: "/safe"))) {
+        fm.contents(atPath: remoteString) // Safe
+    }
+    fm.contents(atPath: remoteString) // $ MISSING: $ hasPathInjection=191
 }

From 3cb31ef0301f6e2e81228ef4f6075c646eddc75e Mon Sep 17 00:00:00 2001
From: Erik Krogh Kristensen <erik-krogh@github.com>
Date: Tue, 29 Nov 2022 12:10:00 +0100
Subject: [PATCH 0769/1420] use `withFileTypes` in move-caches.js

Co-authored-by: Arthur Baars <aibaars@github.com>
---
 .../actions/cache-query-compilation/move-caches.js   | 12 ++++--------
 1 file changed, 4 insertions(+), 8 deletions(-)

diff --git a/.github/actions/cache-query-compilation/move-caches.js b/.github/actions/cache-query-compilation/move-caches.js
index e86b1765cf7..5021fbf0a21 100644
--- a/.github/actions/cache-query-compilation/move-caches.js
+++ b/.github/actions/cache-query-compilation/move-caches.js
@@ -13,16 +13,12 @@ const path = require("path");
 const COMBINED_CACHE_DIR = process.argv[2];
 
 function* walkCaches(dir) {
-  const files = fs.readdirSync(dir);
+  const files = fs.readdirSync(dir, { withFileTypes: true });
   for (const file of files) {
-    const filePath = path.join(dir, file);
-    if (!fs.existsSync(filePath)) {
-      continue;
-    }
-    const stat = fs.statSync(filePath);
-    if (stat.isDirectory()) {
+    if (file.isDirectory()) {
+      const filePath = path.join(dir, file.name);
       yield* walkCaches(filePath);
-      if (file === ".cache") {
+      if (file.name === ".cache") {
         yield filePath;
       }
     }

From 7c1435b7c622dce99b4772e29a603477a4257b15 Mon Sep 17 00:00:00 2001
From: erik-krogh <erik-krogh@github.com>
Date: Tue, 29 Nov 2022 12:16:38 +0100
Subject: [PATCH 0770/1420] use withFileTypes in move-caches.js some more

---
 .github/actions/cache-query-compilation/move-caches.js | 9 ++++-----
 1 file changed, 4 insertions(+), 5 deletions(-)

diff --git a/.github/actions/cache-query-compilation/move-caches.js b/.github/actions/cache-query-compilation/move-caches.js
index 5021fbf0a21..67fc503cdc0 100644
--- a/.github/actions/cache-query-compilation/move-caches.js
+++ b/.github/actions/cache-query-compilation/move-caches.js
@@ -26,11 +26,10 @@ function* walkCaches(dir) {
 }
 
 async function copyDir(src, dest) {
-  for await (const file of await fs.promises.readdir(src)) {
-    const srcPath = path.join(src, file);
-    const destPath = path.join(dest, file);
-    const stat = await fs.promises.stat(srcPath);
-    if (stat.isDirectory()) {
+  for await (const file of await fs.promises.readdir(src, { withFileTypes: true })) {
+    const srcPath = path.join(src, file.name);
+    const destPath = path.join(dest, file.name);
+    if (file.isDirectory()) {
       if (!fs.existsSync(destPath)) {
         fs.mkdirSync(destPath);
       }

From 1ee04dc0201841aa0c722bf0f969a1633028fff6 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Nora=20Dimitrijevi=C4=87?= <d10c@users.noreply.github.com>
Date: Tue, 29 Nov 2022 12:36:51 +0100
Subject: [PATCH 0771/1420] Update prepare-db-upgrade.md

Clarify the test steps based on my experience, where I got a "database may be too new" error when the `--search-path=<codeql-root>` directory was not specified.
---
 docs/prepare-db-upgrade.md | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/docs/prepare-db-upgrade.md b/docs/prepare-db-upgrade.md
index 906c47d9c6d..42c329dd947 100644
--- a/docs/prepare-db-upgrade.md
+++ b/docs/prepare-db-upgrade.md
@@ -69,10 +69,10 @@ Although we have some automated testing of the scripts (e.g. to test that you ca
 To test the upgrade script, run:
 
 ```
-codeql test run --search-path=<old-extractor-pack> --search-path=ql <test-dir>
+codeql test run --search-path=<old-extractor-pack> --search-path=<codeql-root> <test-dir>
 ```
 
-Where `<old-extractor-pack>` is an extractor pack containing the old extractor and dbscheme that pre-date your changes, and `<test-dir>` is the directory containing the qltests for your language. This will run the tests using an old extractor, and the test databases will all be upgraded in place using your new upgrade script.
+Where `<old-extractor-pack>` is an extractor pack containing the old extractor and dbscheme that pre-date your changes, `<test-dir>` is the directory containing the qltests for your language, and `<codeql-root>` is the root directory directory of the `github/codeql` clone that contains `<test-dir>`. This will run the tests using an old extractor, and the test databases will all be upgraded in place using your new upgrade script.
 
 To test the downgrade script, create an extractor pack that includes your new dbscheme and extractor changes. Then checkout the `main` branch of `codeql` (i.e. a branch that does not include your changes), and run:
 

From 7dcb813ff3c3fdc0346442d1a9115ef62e5fd2d9 Mon Sep 17 00:00:00 2001
From: erik-krogh <erik-krogh@github.com>
Date: Tue, 29 Nov 2022 12:49:23 +0100
Subject: [PATCH 0772/1420] remove two more claseses of FPs in
 rb/non-constant-kernel-open

---
 .../security/cwe-078/NonConstantKernelOpen.ql | 22 ++++++++++++++-----
 .../NonConstantKernelOpen.rb                  |  4 ++++
 2 files changed, 20 insertions(+), 6 deletions(-)

diff --git a/ruby/ql/src/queries/security/cwe-078/NonConstantKernelOpen.ql b/ruby/ql/src/queries/security/cwe-078/NonConstantKernelOpen.ql
index 036fc0d8cbd..bdb3527ec47 100644
--- a/ruby/ql/src/queries/security/cwe-078/NonConstantKernelOpen.ql
+++ b/ruby/ql/src/queries/security/cwe-078/NonConstantKernelOpen.ql
@@ -16,15 +16,25 @@
  */
 
 import codeql.ruby.security.KernelOpenQuery
-import codeql.ruby.ast.Literal
+import codeql.ruby.AST
+import codeql.ruby.ApiGraphs
 
 from AmbiguousPathCall call
 where
-  // there is not a constant string argument
-  not exists(call.getPathArgument().getConstantValue()) and
-  // if it's a format string, then the first argument is not a constant string
-  not call.getPathArgument().getALocalSource().asExpr().getExpr().(StringLiteral).getComponent(0)
-    instanceof StringTextComponent
+  not hasConstantPrefix(call.getPathArgument().getALocalSource().asExpr().getExpr()) and
+  not call.getPathArgument().getALocalSource() =
+    API::getTopLevelMember("File").getAMethodCall("join")
 select call,
   "Call to " + call.getName() + " with a non-constant value. Consider replacing it with " +
     call.getReplacement() + "."
+
+predicate hasConstantPrefix(Expr e) {
+  // if it's a format string, then the first argument is not a constant string
+  e.(StringlikeLiteral).getComponent(0) instanceof StringTextComponent
+  or
+  // it is not a constant string argument
+  exists(e.getConstantValue())
+  or
+  // not a concatenation that starts with a constant string
+  hasConstantPrefix(e.(AddExpr).getLeftOperand())
+}
diff --git a/ruby/ql/test/query-tests/security/cwe-078/NonConstantKernelOpen/NonConstantKernelOpen.rb b/ruby/ql/test/query-tests/security/cwe-078/NonConstantKernelOpen/NonConstantKernelOpen.rb
index f2422157327..c51704eb383 100644
--- a/ruby/ql/test/query-tests/security/cwe-078/NonConstantKernelOpen/NonConstantKernelOpen.rb
+++ b/ruby/ql/test/query-tests/security/cwe-078/NonConstantKernelOpen/NonConstantKernelOpen.rb
@@ -25,5 +25,9 @@ class UsersController < ActionController::Base
     Kernel.open("#{this_is} bad") # BAD
 
     open("| #{this_is_an_explicit_command} foo bar") # GOOD
+
+    IO.foreach("|" + EnvUtil.rubybin + " -e 'puts :foo; puts :bar; puts :baz'") {|x| a << x } # GOOD
+
+    IO.write(File.join("foo", "bar.txt"), "bar") # GOOD
   end
 end

From c66569bd4329eba3a9c0d42878accc2d1412046e Mon Sep 17 00:00:00 2001
From: Felicity Chapman <felicitymay@github.com>
Date: Tue, 29 Nov 2022 11:50:26 +0000
Subject: [PATCH 0773/1420] Generalize cpp changes and apply to csharp

---
 .../basic-query-for-cpp-code.rst              |  64 +++++-----------
 .../basic-query-for-csharp-code.rst           |  70 +++++++-----------
 .../basic-csharp-query-results-1.png          | Bin 0 -> 193081 bytes
 .../basic-csharp-query-results-2.png          | Bin 0 -> 256165 bytes
 ...-query-tab.png => quick-query-tab-cpp.png} | Bin
 .../quick-query-tab-csharp.png                | Bin 0 -> 49564 bytes
 .../find-database.rst                         |  27 +++++++
 .../note-store-quick-query.rst                |   5 ++
 .../run-quick-query-1.rst                     |   7 ++
 .../run-quick-query-2.rst                     |   7 ++
 .../setup-to-run-queries.rst                  |   0
 11 files changed, 89 insertions(+), 91 deletions(-)
 create mode 100644 docs/codeql/images/codeql-for-visual-studio-code/basic-csharp-query-results-1.png
 create mode 100644 docs/codeql/images/codeql-for-visual-studio-code/basic-csharp-query-results-2.png
 rename docs/codeql/images/codeql-for-visual-studio-code/{quick-query-tab.png => quick-query-tab-cpp.png} (100%)
 create mode 100644 docs/codeql/images/codeql-for-visual-studio-code/quick-query-tab-csharp.png
 create mode 100644 docs/codeql/reusables/vs-code-basic-instructions/find-database.rst
 create mode 100644 docs/codeql/reusables/vs-code-basic-instructions/note-store-quick-query.rst
 create mode 100644 docs/codeql/reusables/vs-code-basic-instructions/run-quick-query-1.rst
 create mode 100644 docs/codeql/reusables/vs-code-basic-instructions/run-quick-query-2.rst
 rename docs/codeql/reusables/{ => vs-code-basic-instructions}/setup-to-run-queries.rst (100%)

diff --git a/docs/codeql/codeql-language-guides/basic-query-for-cpp-code.rst b/docs/codeql/codeql-language-guides/basic-query-for-cpp-code.rst
index a233b9afe82..b49ebf385b1 100644
--- a/docs/codeql/codeql-language-guides/basic-query-for-cpp-code.rst
+++ b/docs/codeql/codeql-language-guides/basic-query-for-cpp-code.rst
@@ -5,7 +5,7 @@ Basic query for C and C++ code
 
 Learn to write and run a simple CodeQL query using Visual Studio Code with the CodeQL extension.
 
-.. include:: ../reusables/setup-to-run-queries.rst
+.. include:: ../reusables/vs-code-basic-instructions/setup-to-run-queries.rst
 
 About the query
 ---------------
@@ -16,36 +16,12 @@ The query we're going to run performs a basic search of the code for ``if`` stat
 
    if (error) { }
 
-Finding a CodeQL database to experiment with
---------------------------------------------
-
-Before you start writing queries for C or C++ code, you need a CodeQL database to run them against. The simplest way to do this is to download a database for a repository that uses C or C++ directly from GitHub.com.
-
-#. In Visual Studio Code, click the **QL** icon |codeql-ext-icon| in the left sidebar to display the CodeQL extension. 
-
-#. Click **From GitHub** or the GitHub logo |github-db| at the top of the CodeQL extension to open an entry field.
-
-#. Copy the URL for the repository into the field and press the keyboard **Enter** key. For example, https://github.com/protocolbuffers/protobuf.
-
-#. Optionally, if the repository has more than one CodeQL database available, select ``cpp`` to download the database created from the C and/or C++ code. 
-
-Information about the download progress for the database is shown in the bottom right corner of Visual Studio Code. When the download is complete, the database is shown with a check mark in the **Databases** section of the CodeQL extension.
-
-.. image:: ../images/codeql-for-visual-studio-code/database-selected.png
-       :align: center
-       :width: 500
+.. include:: ../reusables/vs-code-basic-instructions/find-database.rst
 
 Running a quick query
 ---------------------
 
-The CodeQL extension for Visual Studio Code adds several **CodeQL:** commands to the command palette including **Quick Query**, which you can use to run a query without any set up.
-
-#. From the command palette in Visual Studio Code, select **CodeQL: Quick Query**.
-
-#. After a momment, a new tab *quick-query.ql* is opened, ready for you to write a query for your currently selected CodeQL database (here a ``cpp`` database).
-
-   .. image:: ../images/codeql-for-visual-studio-code/quick-query-tab.png
-       :align: center
+.. include:: ../reusables/vs-code-basic-instructions/run-quick-query-1.rst
 
 #. In the quick query tab, delete ``select ""`` and paste the following query beneath the import statement ``import cpp``.
 
@@ -56,27 +32,17 @@ The CodeQL extension for Visual Studio Code adds several **CodeQL:** commands to
         block.getNumStmt() = 0
       select ifstmt, "This 'if' statement is redundant."
 
-#. Save the query in its default location (a temporary "Quick Queries" directory under the workspace for ``GitHub.vscode-codeql/quick-queries``).
-
-#. Right-click in the query window and select **CodeQL: Run Query**. (Alternatively, run the command from the Command Palette.)
-
-   The query will take a few moments to return results. When the query completes, the results are displayed in a CodeQL Query Results window, alongside the query window.
-   
-   The query results are listed in two columns, corresponding to the two expressions in the ``select`` clause of the query. The first column corresponds to the expression ``ifstmt`` and is linked to the location in the source code of the project where ``ifstmt`` occurs. The second column is the alert message.
+.. include:: ../reusables/vs-code-basic-instructions/run-quick-query-2.rst
 
 .. image:: ../images/codeql-for-visual-studio-code/basic-cpp-query-results-1.png
-    :align: center
+   :align: center
 
 If any matching code is found, click a link in the ``ifstmt`` column to open the file and highlight the matching ``if`` statement.
 
 .. image:: ../images/codeql-for-visual-studio-code/basic-cpp-query-results-2.png
-    :align: center
+   :align: center
 
-.. pull-quote::
-
-   Note
-
-   If you want to move your experimental query somewhere more permanent, you need to move the whole ``Quick Queries`` directory. The directory is a CodeQL pack with a ``qlpack.yml`` file that defines the content as queries for C/C++ CodeQL databases. For more information about CodeQL packs, see ":ref:`Working with CodeQL packs in Visual Studio Code <working-with-codeql-packs-in-visual-studio-code>`."
+.. include:: ../reusables/vs-code-basic-instructions/note-store-quick-query.rst
 
 About the query structure
 ~~~~~~~~~~~~~~~~~~~~~~~~~
@@ -151,10 +117,14 @@ Further reading
 .. include:: ../reusables/cpp-further-reading.rst
 .. include:: ../reusables/codeql-ref-tools-further-reading.rst
 
-.. |codeql-ext-icon| image:: ../images/codeql-for-visual-studio-code/codeql-extension-icon.png
-  :width: 20
-  :alt: Icon for the CodeQL extension.
+.. Article-specific substitutions for the reusables used in docs/codeql/reusables/vs-code-basic-instructions
 
-.. |github-db| image:: ../images/codeql-for-visual-studio-code/add-codeql-db-github.png
-  :width: 20
-  :alt: Icon for the CodeQL extension option to download a CodeQL database from GitHub.
+.. |language-text| replace:: C/C++
+
+.. |language-code| replace:: ``cpp``
+
+.. |example-url| replace:: https://github.com/protocolbuffers/protobuf
+
+.. |image-quick-query| image:: ../images/codeql-for-visual-studio-code/quick-query-tab-cpp.png
+
+.. |expression| replace:: ``ifstmt``
diff --git a/docs/codeql/codeql-language-guides/basic-query-for-csharp-code.rst b/docs/codeql/codeql-language-guides/basic-query-for-csharp-code.rst
index f61edbac0f9..e9a062d9e0f 100644
--- a/docs/codeql/codeql-language-guides/basic-query-for-csharp-code.rst
+++ b/docs/codeql/codeql-language-guides/basic-query-for-csharp-code.rst
@@ -3,7 +3,9 @@
 Basic query for C# code
 =======================
 
-Learn to write and run a simple CodeQL query using LGTM.
+Learn to write and run a simple CodeQL query using Visual Studio Code with the CodeQL extension.
+
+.. include:: ../reusables/vs-code-basic-instructions/setup-to-run-queries.rst
 
 About the query
 ---------------
@@ -14,62 +16,33 @@ The query we're going to run performs a basic search of the code for ``if`` stat
 
    if (error) { }
 
-Running the query
------------------
+.. include:: ../reusables/vs-code-basic-instructions/find-database.rst
 
-#. In the main search box on LGTM.com, search for the project you want to query. For tips, see `Searching <https://lgtm.com/help/lgtm/searching>`__.
+Running a quick query
+---------------------
 
-#. Click the project in the search results.
+.. include:: ../reusables/vs-code-basic-instructions/run-quick-query-1.rst
 
-#. Click **Query this project**.
-
-   This opens the query console. (For information about using this, see `Using the query console <https://lgtm.com/help/lgtm/using-query-console>`__.)
-
-   .. pull-quote::
-
-      Note
-
-      Alternatively, you can go straight to the query console by clicking **Query console** (at the top of any page), selecting **C#** from the **Language** drop-down list, then choosing one or more projects to query from those displayed in the **Project** drop-down list.
-
-#. Copy the following query into the text box in the query console:
+#. In the quick query tab, delete ``select ""`` and paste the following query beneath the import statement ``import csharp``.
 
    .. code-block:: ql
 
-      import csharp
-
       from IfStmt ifstmt, BlockStmt block
       where ifstmt.getThen() = block and
         block.isEmpty()
       select ifstmt, "This 'if' statement is redundant."  
 
-   LGTM checks whether your query compiles and, if all is well, the **Run** button changes to green to indicate that you can go ahead and run the query.
+ .. include:: ../reusables/vs-code-basic-instructions/run-quick-query-2.rst
 
-#. Click **Run**.
+.. image:: ../images/codeql-for-visual-studio-code/basic-csharp-query-results-1.png
+    :align: center
 
-   The name of the project you are querying, and the ID of the most recently analyzed commit to the project, are listed below the query box. To the right of this is an icon that indicates the progress of the query operation:
+If any matching code is found, click a link in the ``ifstmt`` column to open the file and highlight the matching ``if`` statement.
 
-   .. image:: ../images/query-progress.png
-       :align: center
+.. image:: ../images/codeql-for-visual-studio-code/basic-csharp-query-results-2.png
+    :align: center
 
-   .. pull-quote::
-
-      Note
-
-      Your query is always run against the most recently analyzed commit to the selected project.
-
-   The query will take a few moments to return results. When the query completes, the results are displayed below the project name. The query results are listed in two columns, corresponding to the two expressions in the ``select`` clause of the query. The first column corresponds to the expression ``ifstmt`` and is linked to the location in the source code of the project where ``ifstmt`` occurs. The second column is the alert message.
-
-   ➤ `Example query results <https://lgtm.com/query/1214010107827821393/>`__
-
-   .. pull-quote::
-
-      Note
-
-      An ellipsis (…) at the bottom of the table indicates that the entire list is not displayed—click it to show more results.
-
-#. If any matching code is found, click a link in the ``ifstmt`` column to view the ``if`` statement in the code viewer.
-
-   The matching ``if`` statement is highlighted with a yellow background in the code viewer. If any code in the file also matches a query from the standard query library for that language, you will see a red alert message at the appropriate point within the code.
+.. include:: ../reusables/vs-code-basic-instructions/note-store-quick-query.rst
 
 About the query structure
 ~~~~~~~~~~~~~~~~~~~~~~~~~
@@ -143,10 +116,19 @@ To exclude ``if`` statements that have an ``else`` branch:
 
    There are now fewer results because ``if`` statements with an ``else`` branch are no longer included.
 
-➤ `See this in the query console <https://lgtm.com/query/6233102733683510530/>`__
-
 Further reading
 ---------------
 
 .. include:: ../reusables/csharp-further-reading.rst
 .. include:: ../reusables/codeql-ref-tools-further-reading.rst
+
+.. Article-specific substitutions for the reusables used in docs/codeql/reusables/vs-code-basic-instructions
+.. |language-text| replace:: C#
+
+.. |language-code| replace:: ``csharp``
+
+.. |example-url| replace:: https://github.com/PowerShell/PowerShell
+
+.. |image-quick-query| image:: ../images/codeql-for-visual-studio-code/quick-query-tab-csharp.png
+
+.. |expression| replace:: ``ifstmt``
\ No newline at end of file
diff --git a/docs/codeql/images/codeql-for-visual-studio-code/basic-csharp-query-results-1.png b/docs/codeql/images/codeql-for-visual-studio-code/basic-csharp-query-results-1.png
new file mode 100644
index 0000000000000000000000000000000000000000..51e30bafac39bc3728c75409547f49d6cb221e36
GIT binary patch
literal 193081
zcmeFZbzD{J);3Hj-Q8W%As`)#?(Qy;mhO<2lx_rJ(MTg9-AD`4-AH$SlU--;{hsr@
zXFvabufHFz>0-t`#~AmBYh1%{B?U=j1OfyI2nb|pDUb>T1Og5O1e6rqbKsj$2sw1%
zi&`r&F(qj+F*2pM_7+w)<`584;fcwxYVk7|{)dlXZYZiC3hFZ&DO&%8QE0lB2pK7;
zAPf_-LZjqvY&}E@3M~yIbx^xHeU%2Nk_-w#YxJ46+N4V*#EYa$=+NZ@zQdN&O`*&A
z!|b8VRIicDjBCi8(Jv;BFBnmU)96$&R@a6jBchF0v!F0WAwWhbaC!zIDa2S<5NN5X
zkIbe55NR2QDe^ZrmrIW&bVtwd`5|)1g4V9_n>m9NDc4>qGWNqjsE2R6BwI$%UK4aU
z!+#*_@QKgh`9>K}B-H)-EJ0o?47TG1#B#r0ITboY6-ln8#W4oDkeOl-6Uh4`obftw
z!>9cGQ*?<{D9SF0$fHkw8h38K7>}DA2AlDN@(IUh1_dyO^h0Rix0(;xy~nN8OzOOt
zoe=ozRN?k;>>RNiP01e)SWK1gI@<7YPQd$M9_d{|!Omu+m=yd?CxLr&YgOFmLk@wX
z>6EAO{qX6=A|aaFNV4N%W|bIJB>VWAG8StxsvYJxRFIOJLVWa$Z$qks&=D<pD5)p?
zrh3E*lBLAVt`R|k2i1-(=3a_}S9YzU(KfagDk&8<hx0Rc&nPZRM<VI8?YslP)1~qa
zLk1Z;%<rickUz{Is`!}QM3ySe%*w5c4woZ;$TVi3W_cYFKzjrQ+1ClP(uVMZvJ(mh
zI+k9G%|kLkve7*sl#-IrZ$_z3WAqlpfBHp^0g-_Lg2vkQMy44twOBmN(N`lmdJ@eV
zsVJVfy77tvg5U%~$%D0IVh$DJC9eOCMV8u!mu2aUwEiLw@P+;;Y5_E(&m`KA`oE#@
zKyp)=3ZcPu2y<#dxs$<vf`r#X(FiyvL&fs{X@pDn3|9CV4^;HK_#DWLXUT2q4w%mV
zc1LJu@5qlZBK_G|Aw|$oa)mjiu*U<>$W{9gOhlMtaj_tRg~ybL65ztg=xY#W;jo2+
zmFS((iUWOvhlP`K_LOLyNeTQzKGu)Y;ysHu<}HOJY&$i=849^yVRdKAfMa=Ay`tyN
zpa+%Q*}Lp{h2f2P5OTYcd_;$kBSrUIhR{63<RiaQKp~zQluV$`y8%h;yaDBxg*0jm
zyC}t^=LqNMQQ{M$ay9s~@IT+9NS=-kj#`iEj^=MuZhJZ--k^9w2n0Svd^DP5E5MUP
zg2fD$?qcj+H;!NnWpznmNU<A2vp{;^&Hgz=%d3=yiy%GnTf1HRLFbeSiwR%lyC2F#
zDBuW=?pJG2j(U1D%&7ISZb)vB)4_xtK5g+wI_?b3+=9<pI_%qU*J4&j)|!q+jxb?7
z0tMUS(4>|zH8ASXU%<-;%>|Knz$gd2mU5;EL5~mL3#aZPSj9FWJthtZjg!BM4U`rg
z=T(8<f!QIj@;{3!mEt1ziZ$(5Ing*VJ`q3hIpISHHW7Br>r!H;*QHla7)<C*Kz+;k
z%IQ@!k)d6gUaDS;Uh=&4i-2N9bJb*}>Z0yR)ycU@%@Y_8Xb)76@;icS_G^xlmXkaL
z&S$d0!oi%uObC+L<qZ6qUGxNWp7bZ!PS^}sEDR{)N}T#>uu+n8QYD}CKO&D+I*aj!
zX34SSkb>(cBonX_Z4xLFH0ToPGgWsjbMT%cp-?7PMmc^M>%96@`f*4Dht6K3T=_tS
zL^CySwSYpYU$aPkN8|d_fZDl=yz;`w*_<0G<T8s~oYFcy+tyj^T1}^Ir;N>`&GnI2
zueJhsOYL$=a<lRbJ}wpr7Jn>S$s?cok>{wrmPjKuA<v;*Ep^(w`58xkP+Yc9{gaEx
z-ZRzkev1Nj*%YQBbXyl&L))SYk)N(V;fcjE9Ws%5Yk6aw!y6eFU=}DAEEdoOm|C8B
zmYfxzlWb$2Y2QfSG@a|7_aY-9Qy_EUbK>!HtFf))SrBRvUf?T7>P02tClW5a>>;R*
zRE@mEcS~ubsiTpmF{i1QH&*3S{kS7IG5jUv3yPDt)8N)cTHLoE7TOlyEuc4%P9aW_
zH<33hwsyX~PpvmK*lVu9slzG4NyI^A!e+W><ksTS{#wgkxvHJ0y--`A<)vFuYgglI
zYWjxq^NhXINRmZUn`^vn^-o+rFTQa7sD;lhSw0!}2Db({nb=*k9gUm*jt*{Gdk#}8
zd3l+p1#8m1tr<fZDjCtd0@?OFhODh`A9AXrIi|03oLUhlsE0Q!lYKR9HOsBP>|t{2
zbAO#9ueY=@b!ETByRB^sZt7|o_L=V-Gp+3vS4;rMSbnu^O3u}6&@7rZwI@CV9lkk4
zC)Ld+%6|V9&(Lp)_-hLhGD?hUH~w+;rS8w^RmBU`bCz>I3?mFO_}4lREJwPZokW&I
z?}KxLkpswLF&j9Jlw*xYt8$hCE89id&D#~l7{xS#YeL3FlS4?5i4mPp=Ws4q=jrqa
z7Kucn!lDWz@M6v)86)>&(r{~ecP(mkYFHcDp5tPoJJDG<$4%$zzYj67H9a-)!Xacf
zsJyztsHHBF9cIdB-e4BM4h?@F$wzRRO4!G=72V^sdf5|m#P8nZ!E$YPNAd8vO<Rf1
zJ!v^ZDdmWN?3JVCs>26s6~}RgkD;H{u4rbsuZ2(CWsC+^66}lOifXN{Y8q-dD8!W`
z3aRxue8fG$Kh!d44-7XOY^JNw!&}#to+niD<gvv^b4uE(Q0}0P2QVg=R+XX-QYK~V
zeEck0lWUvbKk$tq+uY0Y@x!~}l?~2{af4dl?`>}`cHdd&ygar}o8B$|rq5S1Y`GA3
z-gQpDXK(xYhf>4JeNSJM{1<{Rdv9U=j;=rQDl#j6m~QH~ng}2r6GHH_S+Z&I7}>12
zzPlrQhV!iZS$6$V-TYPm3HU?yS6lfXvtPg2%{~15@iX_Q0H2;45xpAS5Hr#I7b8m_
z^lG}+?fdflrgGdlEYctH^Gpj1h8RlY4U+aF7XsO`@iI+=^Mh|Liw_r?-MmTt45xkT
z?_a`lqF@nSomC%gdBOUiOeGU0;A$E%RK3X3kWj08=(x$>jh+1%C}xQA9_5l0{?)jO
zxuLp?+WmIjn+6>n0dK|&tzO5GwWyaCFJZ0mYoF1!!S96Qw)Wi5I*mV?ozhPgrA^#`
zFQ>+KPxe0EB%V_uOC#S$jYVZz-VJkdzk2!o-r`|yrFzzKaF{-G&Na(j@ba!6aRyg{
zC4%K^V}iTYXAi5>&Oznm!#bGy8pGq(w?B(7zYmt}Pa#fcRAjasxZe*UPep~KyK?W%
z+05<Q%`6sM*IQS#+WIwBc7Dt&a`N4}W}YsWb>lzOYZ?6FRqbW$W~t~t(z5tt@xklP
zYvd5T=yyuC*WT6X;*;|APVyusg0w`4`ElXua@M!$!3jDG+E!6Co1bVM`Rg6!TFi*p
z7e#u-_t{ngC7yQYcl)0&9eUr3vxFE#7%DUm+^VjOv{XbHWIqi4tf-4CjQhy_fqQAu
z&I5dNaO9PK`7KW*FQ#|Aho<LLsL+?^B<{TOTy-66i8&~=CYbEa_Aq|-{n2`<zQ%s3
zOAp?y7+aVeT0sh8`KK`i-5A6uF9aEL+CdQ*ChY+wh2kjNz40&$gAd|`CnVe;B-t_!
zgqKWQ63($=)HAZMi0w=W8(Stqj{8Hk3PJjl-dL6oyl#V^{l6}~oC@&kb0&S%Uwq7H
z|D;KHG;(d|<^|VYkUnDv<gqs9TGAHs@(?e8V>k#HNCJpwz!4<yBM3?O$FT$?9R&0*
z-$MbZuN4H$Z|5igpHF{cfuE;qe*J{Xf%^Rn1e_e`-;bfBo=z<{A9)LWz&l83J3&C;
zP(S@ZN~=&EK|lyYNP|Sw+#&ZfpJh;W&x9gQ8^J3qlU=QNHjtu(K2H{gI|x7{3Jh9y
z4JB<S4s2?Ab`M1qgoZ(cBFl4@4rYFNc5yK@JT!bTJTGu~SU)GQp#J^4qT7gb%Xvk8
zkCx|7z8_o~3>6t9yp%8$My&sTe@KUpr;6~8uK4}#Wavs-DN+py|KMT2U)mNHya@fj
zdFY*#(f;M4*JH0@x%6)@%Bq8j$F^EBc5^4-0WXzP3m3_~cvYrOZcX_YVSu1GzHyrB
zeZAQ&!HD~H$ygYp6{=y~QGYBXrwon<`>n1%GXuk4uKllMx~&a`fasM}kuUoXH2?@@
zHp0K7qpnd;L*t(*?@6Ac)i78%7mS9o$^TptHQ12B!L}}6N=yHHgZW*DIhOErjQiSO
zlbHXxtX?w!vYOj{tF8Ty?KM_-1Vc&dN3}PT{{KQ&8i1_ozHd}j{h{;!T3G>E)H$C&
zTVCrl{x4)z21mzeQ!;37PW{ifsDP}nvGK@Bt@HmvR=U6*{h^UOI3V+1zvmy?^h^Sb
zGHb(n=YJuqItoBmWz5NmiT~Uv&lmxt6d0Ty|6j<;RveJk|F1T1K;>L<-T&w}B<P{u
zJuf4i(y=Zhc?F)cYZB1&IsY!8QWyO1j3Pie6;QkK^{%Jgf7ZKB3Pf&)$h+sk6<=?P
z3v{A|9<JE*%XX%9tiPogI2y~l%TxVfMt=%Q1HkS}Qf{F5cfb4Xv=(Wj+V2{OOTM?Z
zKOB2A-|+5_e#Gr^ZaQex9hz1zAQyWc`dvf!dttDCz}wb;w-Ni$@i;DLV*c~m|FoXJ
z9Y*%RL~8L67<w!I=2}JvU<%US6tnhI#dGR)qY7S;dEe}Sk+%-tM+!Y&k91}~oPm!P
z+?IlUE*H3)Plx#y%6lsO?)O-4_p3wemwfp$-VV?&FpogpMEg%y9sck#`^y&2ae=QX
zel(hQ>_s;8yLXZGC-mB{>_lKFMeD&cjXWA)s0i}ATO$=PsHp5AU?7PJ`&4GL7RjLy
z>3h?ODpd3KWtlDuhL%-+BGe_z2>i%<nm@@kU@TQw7ZH&*#VAmCtyy^t0$BnEaozsB
z$M%6H(|KHatw3T#z%VQOw>?%SVN_C9kHS#itkU_N*Sas(q0?oWJEN6_J<I!~-#AVj
zCp=W};)iMH6!r6k+NHZqZsP%ZFp{D7ad1b+LC5~uoq!KhFQI+&_?Z)5Nc%h3>4ods
zA@;!_wq7ERdB4YdAG!X{zXrxU!T^n9(ow_8yOY6CZHrXu(M$g@)XLdpLtp$wufvw3
zyVH?S?j`SPMP^i&bjvJ{)yjCI;u&m_W*(z9|It>zN7jd{wO%fY-m8b(!_F{t%3R^S
zl~B_1*+nAG*GgCYioO_v*X!{P6Y|_In<6Ut2Mk?j%*9%L?+2#CiIGm$bp%d_I933C
zSvR{1s045^I&Y?0qR6teICrP5If({c&RSOlj|e?Bn>4!4uq}C?b{8vf&6wHJGG@3;
zX?M0h-X9)iKi+|v=P?y{j8p6ycRD^BckT{Yn*2-40m|9JbMT1a>(vi8d%-gn>1Fe*
z_nYbVCZKFs5_eYqlRirIirEC!2gcIs;YQ=H*PBsMJqao7SzZU%4xPx{K{0|ibhgYa
z{q@rZUWr0rY=Z7=p9}4Nwj<wtsj^Kxo};#<&~TbGI&&sHl^8Kpfl>!j<a%{YVm#lQ
ziEP&&kAOfzfGyv$`o+God(-&f%U1NQedEq1ipTwLk?6HL6y;YE^oQH*M=re<`&O%;
z=*Qx;o7-0uFYNZ1pum}~Iy?GK-&r5;PGLcj&B;?HvP`vVJeTuMYfaZZg!V*PJ{L1O
zRjCqx4adT&a5aICMvER>$e>qZaw#tb75R_5jt_BLuf(xR7XSs%P~~;q$Z>qbLVL!(
z%xG^T_M@Q<3bE^Av#fqmN4fN6ClW`OFJYITfUzv|7c(vI<8H+F5)RU22wfj#87n~z
z`&EOvZI!IYuj}F<ON4G`MqXsSyhVG%TtEMI1<;FS1CZ)56xd!8&y!}bP^cYjXt0BV
zubj2mk4{@3%f3|%oQD74IyZd5Y?EK|M*k0AAiRY6n!%X7qwyQpTn*++iN|j|YmtzU
z3mHzs_#r671d{C=m?xqwohYpblMS@Q=8RQ+9mXGnagZ!CU0mH)f^m7xNd4~Mq4MG*
zY$E6j!lDYgaSa)pZx6iK2$Ynm+O5Eub)Sv()ht{IUFNJS1lHK9<|cTf@P>W*sgvo5
zZzmNp+a?r+#7g;kr+-`2PtoO?aeD&4ym+>-fTGyc7gmq=m!z2r3r@C>P`LWe%KI=m
z9Q#8YBS?HdYgCh!Tf!wA0l{~_#sajY=)RMmtg|dv8u%A?$;ykqZT;BZfyhE6{wn;{
zyXQ+DTbZohS4V9_VlW6~futb~c4<}x;kmU5Ul)>{zP;2W`jiAp%n)iPyfV#vzznk5
z-?EQ-IRyuj-1{kFh4hIMLX167;?o`o#&0*pB4YJaL)R9Yx#ev9s2!H{6C<-M3|>%5
z<|^R|UGs;+gk>^an@aJ9^$)TV{e>}3Lu``Ge&G%?Z#qONuqj@E$ikG+99J|Aebmpt
zZZy${BcRKwg#5+7F$UD3<D67wfr2^pNWAuskGAt-LIB@u==df8nM+HEH4WL3EDEo{
zVQ?0(F|CN^DzSNx>BSB>8wD^#GxziFnt6C}R<O7R?jL_#%~*knJC!Agi3f+1;--L2
zf2Y!EWd?&wkbZwVLM-mr?61i2ZF1$P6BQAb*x4cDE$c=<b9m|1$smg*cjEN>0<%Ta
zn1#VyQG&`C{*%}4C;hahl-^_FxKV+kUBPmdp9h)wLgN($^YyYAeh*DGsE`sa_Er5f
zKUIybd1cVu0YP=v&DjyUPZRSv7y(wtA#<42q=tpdT=&CdB@mH0EROa72s3n`(w74(
zbkBz4e=B5ut4}0!q2Sz;09Sf)%@NFEQd4>qkqPRjL?G$l4GNa49hmI<X?GT0S~c+E
zxS0o+;*&nGr7~|M!oos+L~cjn#r;g-N~U-A>I^GP!Nwl1aQ<04?fT|WLEwCHjOCqF
zbnE$)E=vZm*;|ym>t6K$&IXIpev@HHprr$W0c3ZUPR>&{iJCOBx3!68bYt2T1ozBi
z%6+&v9MQv9T1+Ra8}N8Jn{=VyiYoK}R8iGH2Mjyz=+;cl*<O~s{T4PLiFX6IeU9j8
z&y7UQjxkA6RSZNy%!whsL;j7}1$xYhFVuXu`%W^%1-L=DhTd#kM^<eU0iJ-tgQ<*r
ziT&gZ7q40q0ll(u-SoR%F1UrNDhe>|w_FOY6oIp%>3fLX=05|$dZRi~2=L+d38$(O
z7c5JoI<G$l=NiQhg(08{-Gw>a{;Us;5qjW>zH0heH`ietN^Fqz)#GBuGDac%q+Rbf
z(bv!iNYi9eEsvI6^cn?baTP3)zhNI9<D`~SB&{wvNzDos!L=^`Vi7qzuYR*QF9gKU
zUO1$Zim#q2Z;FdNPe&n{?{6<rtt(nwjR;=ss#LHsjlU@=!+|ZHOs`)&bEY9*HqC)^
zv47^Z9w*tsHD`nAAkn!psjA3SO8D+=NK$SPrg`Ay81PD!s+0Q~JfwSnEifW)U~b0!
zgwI;AiedsZfY|Cmt4yxBeB4VKV+(eE`5IP(BglPd9CTLMPn+HB9r?y%T#$llT(PYR
zeeDOw2*1<a-T<oToKUT0ID}NIe4G|5Jc_E(vy`&hDV->_ijVx09Qfx=yTv8E;RrL2
zK->;)z1v`+w>pDnD=Y^`&J-79``)n5*;IG$=^Z*Ad9ikLUCI~|-s{0ld~j4qEalt!
zcG~9D?lX%rHFv(DEhg9J6K#YRM-J7|T*(BFCM}z#16CML-mv_0OidTQZz=O>Tf=Ql
z$>;wNC9wb`9?DvXq9rU1%TSJ>NkD)E<zF^uQ=(r7TM?}B9W+q#1D-JWI@@D2)nP=S
zItW`+kDRM9l{ZD{s+M3CB)T!eHCM{kL6%q5NJ!(i+@`*|g1>SF79uv}>E=LoEs%eT
z)N2XD&Po$u6Tf?9IipZwUrY@>kNje=!;rFMFsy8xzgI^=x?Lk)l<n}Vt$ii_Lvp_T
z&ti8A)UyzAvA5@YnhIi;kb#woLiaVfKeGG!L4+1LZNS#n8on(tynjLDx&85&L$vHJ
z;RR15K7F=?KRD9a0PUy49*~{cx14Lt&To8hBYrOZDLOD-fwu_j`f8o|6r0+J>haZ9
z24;!`w@Y#CLG_3rB4ECT{#)dsL>SfV%g}5DAv_<f+$uX!_!!w^NZB8!fQ(ak;q%h{
zfm>!lq={0mwq+)ElA-VQ6-i3fTU!#}s};Op7E-1_D=;9rk(30wxP-xN&tYg?w*{9@
zz>AWkbih(Jb~PP-C7eEe3_&KuS!#FaqOjQ?(9m=2cDOt4b=zM5SPp<S_CIXv7fjR+
zq-j#A6ofhjrsjZ65Yz1izd|-0y5nQijj@*1a@2vi=HoQTRNuu59{#vkUeX)?*UE7;
z`2l*ivA-Os1d1o3AAZ{VF(|&0Nk?sM3nleUsp_Q;6rQas%FJ>dC!uVE5`ld&;|~c9
zMbSWYMoH`gdxkxFIhIHclh-l;QB_LLmD@6Ke3~>nWYc=wLzu@xl}+PQK$Ht(S2HFt
zX77Ip^9cEKC5w}X7M*~oDJ}Q%(C^U;D{vLI4ag9)#`iT96H27`Qul(;cZ3e@jc$4O
zN->}Lm1YCke&&r!3Q5}ALfxstCBw&?X%wiI8b2Tdje4Ldr>}-x9+bL-pW{KXbxTp9
z-PJI205k6YtY3<z7|eB!vdKG`Z^i5F*QMN&#}8ZP`eF30kKx+($FK+HHO8a%h2ZK<
z8!jO5TLka|O)drWi%LKk49$S(99za)fjXq6v%1?U#2&tr_U)_{II((4cj;{pO&ROG
zV}xFxzg2EA#SIag35XvGx^|}LD-h-Q5BA;+tkbA}Gx;O^0l=u(w!W+hoQf-dNZABy
z_g-SRr0G+J<|`7%uDF#TOa;0YxJNp6t+)O81Jd@*#|0;zV=}IsvnsOpDHU|KV|6xK
zcjn3WjtD`yHTt$<{ILX^AhA!?jURx>v9)n@$}uuuF;8zm-!k`meP1XC@p1MW_Y%=b
zuIO8!XkZ*O?uUS4WXN4}db<p!o;yj($hqdcyPzE`2ix-OpdaMlS@BV}6io|U&SPpA
zcx=>s*~Ngh*HG(&2$v8KCW1pJ=p8=IsW$72B`4k$_lY;h$I9f`shX?aD~jB!Xcctz
zUH_tln=8Kvq}cRU9;s!}(4070M(fK7Zv)2>n&Zv$48gXH;n67rCNEaXBc<ZEGTjVd
zmB~E{8Hjo0=rdBVGOaZ?xUGdUX>{$rn0r5d5?k-WRE)eN&R}lb&gI#L6@(+l#^!q8
zxbdez2ORzc`4{>Y5#MYi8$K_X{y9+Id@|4m!SoP@m0jzbFY+EFEN4==FE|@6w;_95
z+J^_x(^fN?C1+Jg`m@2N>uU{5(<f3Wat#ADDFTqkx}py@J?R7@c+HVH5lZya8KZF*
z1SrzgA#REKz-Cp*B3R}k#_ui<^Afm@D$Nh07+sE{_EtK++{0HOT_~NVDbodHnQmLB
z4TOZ-<u8C8Ng6)Su1*>VBJ60(y`_RzKelFrmWpG87OAp;E%eu3O*)8jE|nNb?@OPv
zZ}rK*reu>cKfxD5ysdtoXLijmK3Ban@o-nAleYg=VmDn#gF|q_Fd`*(3weo1RP+Gx
zLCccxRw}RXGkzD7*dOIWWFw64ev93TQ-<em+{89{sVR)gOD`b9h4#~yrObOh50+w>
zxu0>7czcW?PZ>%lcuvr3G>J;-3ukO-wx4%LLAk0_Oqo}&^6pcT#5JM)oq$5VBniQ@
z&QMeq-k`Z(EIS7hipRcw#$s>W?d)=8^*sv$OUv0?V|uyP#*HN1E*~I?cI+N2e@ga%
zTx*an#pDwwrDtt4i~^mwGhY#vMX`l`3$EIrt}SV_uWu-u?_4;qe^|uWBM^BU@1iVc
z6Bjvy{N_XP^6rW-p(zS6i4oxt9i1`nS)wv3)PxG?h9eO0yM2LDUtMN#!&Rb-1*lTk
zh^K?#5J2Q@sRLne3*1d2R<c+ng1~eEJRpy(1BNIGOJ3X{$7am-D5rVzWPOAZ;VrmB
zqe!LRj}e#|Qb-l851v1OYGU;kkC+i~g6`luP`I3gv;UhOEKUb$1zTRVhUqZ0Fk#1*
z^Qrf7#3hMi>9=8}U%GL0LF6krBJWJV&(I0+#-g?2<F0pFYPt6|D*xmLr~vc>P3D;7
z{{C_)F}KW+<l*q~q2hC6jVafHb9_ULGax|~W8U01anS*iKw=Th@f}NPm*G)_ONX2T
zW76bm|NY%X%|v)c_6>9xm1L0E?3a1ynp5;QY(JUMS6*Mz<dGD~4|C0?&AWx&H;f$N
zs_pFw^GJGe65j&80EwlQfBaC~tI<&Us87%W(@2S&gVSi{Ax2T~n#!(ZV@Z<K2g}lz
zg2|=gEOJssgUM>VO=*0J;z7=Q)k|7bwp>xbLlys;n&{eBN>u!SkYb}f$QsGs`}vjf
z4~?!6_Cnlyt)ZMYB%J=&y<j?TI5>RHbnbFm39qko2<G!M%R*gsJAxhANlyui|5(@F
z(&K}hkp}w>0y-8&Y+ePjA7Zr<r!HOU?#RiwEKAh+vbIP@=;M3(+De<r0gWP-bD339
zp5u%)hEA=mR~G&@5hi$USBihwyi|@NTumeCN2Z`)XE@Wug6zHB0R`TjzB}MCwi5(S
zL<E{U4f=`MOCx9f>suSmeQ?SnhH+y@`0VSY4Gi!ESHjSh41)#NJBnaBXC-I#klSCJ
zX--O;1fi`KN$R)4RcKWHLRRwJ4$i>z^ZSdrR#sy3vpsIr`OqtAV`EFXu%;W)nl7me
zP64*K9~$~D->c$rAb$V}G6A?)9vYW-y7^i+B|1zh7|(?wP=vtwslMv53PeYsa5aN~
zzQjctp)gG&E@180i9j!lq4#St1(nHO%q=}|J)w&`rWtj3%1Z#`sJ=K=ip?vjQuCbX
z!MS|dy|+Qb*`5DvR4fj@*HUJ))RgZ#G%TxJsvxbs^ZICbr<7m0$AeEoAF390s9#+(
zV0^7ZnE|Xk>G3>CHz*|hJgz9zp&nfJhGjwk%4U4}jhh9&m<6Szv`VJ*`Dz~!WWait
zUyIXw|BO5fGhk@>-Jf?LaYPb147b(fLdr}MRxTrP4529ooWDciZ8&nKGws2*jJyR>
z><JR=VJwXtWUh<EM}HB`{wFl5W_I-La$CTL$m_6{u-7S(bY5X2<5(RvVyT-6r#*e?
zU3xXv0It%josP#E+7Qc`7<u6k!7NG0%AoU!`HB+FmfW3kTo9VL(&kb6Ynk4TmW^bN
zq!)?o*YK;4p%3Qo_{q{rzoW_07_XSc%THk$lfM(2@DXzsv4D~4ap{?kzazThi3ke*
zB<bJ@Kn$*FBK~JJ3tzI%lsAxDB~D&Vc2XEBj9GRiTiqC6&^o@@TX=Q2ZrM%h+KsKL
zq*wD)CK+I6As&2_K_^hXIbasLT7IVmb1tmacN#j%W?!bVq{b5T4k=e$E#-z09lMH&
zAxv&Z|4;bvnP7m%C1vEyt<<g%MHEz|6nm7`z~lKe<(q*A;P04tf{B;r15`4U-o+c>
zG3B%56P0-&%Ts4QFR6IYHK?fhAkbRbO9ED5um24OoDGCfaP*ZWyq8rt_f&KZ#@3*-
zd<A5NgSj0w=;U}~8=ey%a^9O}Ids6AD;w9Lgta<6Ongz=$qa`J)K*@JlO&n3RVF9a
zvl=kya@1BfE+&nGQU$%MDZ?M!uNeWVbR})IlmUt6<jh5Uuy-6=V5^jxluiMYLQ*!$
zD?a3tm(zOjAJp||+F!tL(@EuaBm{(ENfJ4NZnjnawM~ERn!F(!)qHqI#hVv#4!0Mf
z0KY;IGD^$vLe2_(jrt?bR(hB0zM|;M6ASTRdX_O(D|?M9tYv?=&@1ed9^syK%RY(6
z!7M+4vAZgl{-ih|yJ|s7sLt&eY1L=bDy|qG;<(t#sSRs6XZ8SmGTB8Y0*y2LJ06ct
zf4$3yz@;+=c0mUkok@n9flYGeb9_<-N+3eL?=DJ7jZPJ!U|nTtXGsLT2Mu`b7J&!4
zx!0PHQCFu22v$dcDxe9g)KsbgsCBEGZoFF-cIUR*O8=Br3lCzvejgSb^pdtwAuldK
z<-z9l!y8Sr#vKWTfV=ChY)x4WM?+qeyq<{2I5VIY291@Y%n3eR_3l8YtS--3mMF%j
zN?a>Tm8r5g^W>2J8fhs4O3E8~KNZC?hzC+~OpscFMa$L5%*}w01Uu)&uOnY?L$EbT
z@bfFsQ7jWPBDnS3d=|8;6{aXc`JYi}t=;ExOH4U6?{juc8yb2mIGdP(H>eG#9Ox)t
z$e}+&;Xi7_3uaCaaq02|LV&ZcQ|O5ETO!vV#*VrXpZZ{Pp*7ffg_E>Q!eyEWXTMIW
z$R?g1XEgv7e3B42aeq=Ra+o>o`8EKv$oBIwp(Bw1(9_tftZWpIlCrvpot+FLgxzwR
zf>a3!dg?|B^z!$S^dacpbrIwtRDn>LbUZt$2&p?24zYaLZ%g#3_sIVRxsS@gl($?o
zo~ZR{8hDs@7qi_vy1rPKfv2Yg&dqnuJH7aNLTZ-hlV9gbISt9Cfnk<UcPGAacYo*?
zGX^`;n^65!-$jmQKfhJq!xXkjqA;@<q_M|XR1V$uZ?NH=_1DsXOA&a)f@ewxkKe4v
zD;g{&!o1%=7Wn+ZqEq;j<e4bQzE(>^E(IA*S$0vz>O)xkJ)nAf<0^QX6f!&TSH0?e
zwch<USY@VJvcUF9%>-a0>?OC=e-D%A90LWk%1C^<;wrSPI>_MO7~6V|YT-l9OBctP
zY7E6@Q=(n+9XH@j8p12&n+=a{$xXGsGS^Ej(%;K+2~DW71IgEj#w&nUh;9-)>cGlg
z=ZkWjJ^hBVYf0N7(o{+#+qG)61grFqu%zB8T--H7yigXY`PRndtDR<%ljFadj|U8z
zxO&<Yj~7-!K@s%=0LK%d@GSe=XiVz{K}^7#%Gs(&-*x*ET{(>iaF+<!ISs$E<bUoW
zLpi-CKu7$nsM^0dF=Le{^^|h<v^NcC8w{l56=jvqzIH3PwX6Hg>bP<x*FK-9{&toU
zqs$D1?R~Wp3O$B$IzbLb!KFZOK0oN@v)FxI>}t5Oo^ML+@<P2>)857q0Cqb8P<iXh
z?tKn6Ir)Sk8`DYSUO6F{U=~;igM{>U6t5@J@6vdBl^O!bE@qJ0;XoLLrq#`wjX?pI
zz<R7$b-JECIuuZ7n}4C1P~c<N67ditW(b1;ijMVsTdP#;lzb8AGcT$V8mz%h`5kSV
zkNA5vVpg{r99{ZhUE584b@}MNPo0bJRY{lTdDG^DbhNKe5JWqug4Vpz^S_(GG)Zv*
zFmBE45j#AgDx`iT4RJLHOTVe~HA`Z065Ju)XqYgYmmez`$93>k)|<&AdGlu<6H<e~
za3m9IGevg?S=<!ewskW!5jynmPnYe#Y$Uzk>UX1hD3tLnSBqKHsZ;SmAE$WHMVeS3
z6e5;}^C}$C8hh>nM=a)Fj0*|w-^~H=LWDQ~#>zuc<oEah36`avdz}|06BSX^2?&mq
z#C<s+Wj~xYi*dt{XVcK3{aLZZ10{lN6>YXRd)ZX8p3C=ujT!(`mGWqb!#3DN7spui
z0nqkH<SI_{MLnl)*j)1t@3a`lDqrgj1F-Ee2MP><+iz5uoJ{x(j~@J$d8c8kE3Ajp
zr76PN`R)EsW9MNLY34v-tLJ{)jSG$PqZFBtixKVF$25Us&~#jK$%g&Z*Y$>i<~Nz>
zNH<1)d8(>xnQz}-akPv8{S=ZggOn~mTs;SoWN^@FQzlaT_UK13)2%_nhm+*b0N~ME
zl#U*TK@Q<at}5b$>^f)5y(BQVv#O){XY+_Ofw>v*izPNn!v5$2YyYxctJa68diFu)
zR;8v>ZOaD8EuyGb*=}g6?onpi;LbB1)l}uxnRy34H&^yETtSaxHHHybW8)M+V5ouP
z$gsr0ap%ZtCh~mgLKoaGu2zX~wTuGX7x1XUf5Zw_J$Y|;oiZ=!1U_%*ezfm)0PK8B
zDJn&=z9H_r@XCI`q|x-Im4_B8_R|TPB6H2CXaMBrAuNq=+zGpL6N5lPn=2ah4zy_I
z`m$WNaZAgRG*B$*ET7A>;+#`)@K4N>Z7(QWaz<~U&t#I9IDAIzdga0c<QlRp9hqSI
zEYs*$09MRMTD0i*D5XqJibhe;$1-PIuV2J*6{f^_67zf%N7shr^z_8=u#hSDXtY0)
zEsA~2y3slebEn4K)8AGmuj)z7T2#nl1g|4e=7DQXCqH4OJpxUJ-2>xqEWbMBZ6_!>
z%W+)QG_ump{wSwRIEX|Fm{rCyi|-)+yO3$q=6F_ubas5(2Ma40cgh|wwBbc{4Q=Wq
z7oaTw3u87zhj_W<=cf(Q9ArboF9+JMY&!s)B$^+9&*RrrC8MVTD=a8<D5k3L%6xuk
zIX3Gp8Ao66HVjY2gma%2ff=tlbJKp6_jg_&38Dx}T(E7e6b|TzLSVN-@Y(qDa!M2F
zf(Db_*SQ!pjtuJluoHHe-(syte7+1aH#u(`?dBJI;{DlH0OVlIZ4~zb`uT3z=MIEp
zgwd(am{{yZY<&U?Vws6ajFp%+sF`*j?J<2pKdy1Z6LqtD=<iPyZL?Dj{gc{hgLEOA
z?vaeg2!?Vzaf1v$10^mXd6p!{d&as4t-N8BkcpEF86#jjB>I7Z1IJP8O;P@;TGQkj
zP!1pf5Rb%J`=|EEu*&U2`l@DDj(qwPd$I#ib7Fxh3BS98%;Fh!X*?;7d}yQ)yx5R5
zsM7+!nw>S4<GSpru4sekHv7h7KOj8RN17{IPPx_1(QX-3VO>_M(Ezl5CyWONorwnt
zAL>73PVu!?G-WrbE*+4h-_4tXoIyl`E$P`ODGwu5%%2S7YObKMak<`oHU9%u2~ds^
zKJ8dMBO~NxulTZ=<_^QFa|vJ*!s{J2q4!mT%$Uzysd81Xfn<hdIxNmPS)Z#)L?r9}
z;?`Enc}#pTvySrw$I!d-Gk~fkNb;gT`;3$Rb|5>EV1%JdiU|OB#9s{pke{}};qU-}
z(<$54Fh8~Xs=skXWsYS`NYiE#y|+-q$(4zeSb0LDrtfKg%Ls(;VH_xEJL$E}c=oC(
zr>m_#NTJdi#I5X?PJ3LBiV2|*-~nA~<w{7AS$NtEw6OAIUal&5M}j4nY5jZ=0=}SM
zdRe$zvDvva>ENVupa!YWh*Ta<EFG^In`tNMAIoNWx8wGHA83#;*%xr+(f$OQv60>2
zo!AK}zo10G7HWA%rQaPNXh`ezVRiagJ#|qd)%pZHfejb@gccs%xhvqEiEb@CH5@{a
z@Kt>44+d|%Z2o3?E#eT43K$vW1}0qjZzKqwm!RuMJw#C*P|%5{>C}z4@earbf~Ml}
z;&`dpOlzAHXXn-xd&_Be$y~@tCrV7tnrs?(3LFLQy#Po$??<H72lxTud;I;BAcHH#
z52(}|JK@ytFec=bt`trlph1q4aYA>(FdjbuY;I7!KZ0c@1=~>FWY{r+QT+8M#TSlr
zGSdsT^SV1)a0tid%P}2r>ti-eKx=9co#V?e>yS>dEXOe67|8?n4U#GuN_1k2U$v;|
z^Kcw|xkgj^Hzu0qlPXK)1BI4Cf?%o_pDJopI7JUkFXEm*l6mx%{7x!-YNC)S<}gv<
zsO$ieXBpz%vk54Q#2>2z8hO1vWXNt3o%zY`1Rd{SQTwwkiIBO0h#YF3q|K|aQwJoQ
zU7VbHv}vz%QFZ{s%4&PvF5@~bO{+1BO?WI8lA-?QN3%K`GP=PP13Lje;3=#<G%?T)
zS|5EKyOsbrf%r<6d~gu{u|6=xpFP5+{TVJ2kjO}kl{eT<>$@><e`cV08~STEHzyfx
zzpnSd_<BP!`mSOlR+7|3&7GGLp_E!tnLuKjqM+kq$?wtM=?q9-EML(NpHQ(g*bkMm
znvjB-cAlC53VHW2uQpRoyku!~zklaDY~~<x9u;Bx2J}?X^ZHsYX03@&06-tx7-*<O
z%tb7kez=NqL(C<o9O(QwxE!<=BlMNC&14B><NFOHEMF#G<T&k(@z^V%>$9VLr3G}k
zbv6<;bc$3lGLE5PQTA&xk=>Sj+^zupp78SiIK~eN<T<RU2ukRAYDKVpqX%bT6v|S%
z0>w-Zy??*gl(uD}xU<a&VaM=yO+$f*pJC3ik#XlwdF`D$K#+i;fG!wD<{D=0L|Taz
zLy_+H^7-<_J9)|uqitH(qWKylMf+;!fGC`Y7DtyNC*P$umbj?ubsxl^^Vf#B4%#-u
zBcucR<|pmQupd1}OtS?ZvVwtBG?c4G8h4-sZ;BJj2MYE(ruzBuk8mJ+t2UB{$I|RT
zL5v{1^?YVf)(FA%YkLj$u7I$rZCY*L>y1u;7c@;y?^5uy7lQM~@HHkaWgnz3L?rJh
zPESmrqc1=a^72S}cPGqy$I@baM8R%CP}7&th|~ab2xB|N+PjkEnYNXAxBX$vVg#ko
zjBgAVJ=7#2@i}@AGQjuUJMmGlBAw0*2syI^@->T<-1p2fO#`ye6AJnwlJ(w7N50Ws
z)b2$PguBC>$CZ}rzy91Z({umcFHDeUILa%fk=FXG`OD!1gl<>O^;TdiIS*}C#roxH
zN|;W(GPs!yFJ=2<l-91_S_+(OIB#0%*iFIRg8oS)`*!jzYP*r9G8{VY2O4;E?UT%;
zd%In`%%R_c?=P&>2bft2Ex27EJ*O=NQ0{z*{@u#Xc-%|QllRFU1pZ+N6H-8@&^V2k
zfOM~no9>g<yJ}>90->NAKS1@T+I-G8n{MN&3TyYrz1d;J^NA8O`Og&u{WP=j+1!rW
zL%W9eJvMhp2`#LgwFM6Wx>V|t8U}&yl2tn4FLi`4RGETNvtutJrkvKT)XaLu;eiKw
zc+}V&Pbm5zdTo^QXc&B|UGmtuGmctSFR33t@A!-#0MClkQbO?*Sd#0ILBs66%&6ws
zbR0c>5YrFilxiuY9loY|(RJO6Rr?(Yyai+`=uZItm4S%bGmwe5U02v-Mpp_*e%&X^
zD#`IP`v57VK6U4DdI22G{rR*ZX|%w_kL{H1kKxOe<CCIcJUgF1u07wPA66O;pm%eZ
zoPRsWWU9}@br=zqMS2bF+WRY#a4}wa+MswY!k2N*dP^V0LaPY)G`CZvhHZzfpHN-O
zc6|Jp>Le@A21_(AyU*><&D%{FbCMt15x00R_lEfn^`bqM%LwEug52ZjAT#)sxl>+f
z|Gl%O`;>{cUAF*ynI|I43(5Rmd*R#cx^cks;l86H!=T*tnF42LyM(ptgYNRaDe`^b
zI#_zRsQ+P*1?U&rkG=t_<1>|AE((&wC;buM0#ce?yotwg#lS)bz%D7Z#btYGgxcZZ
z_Wehr1H9n!dBB_u(6(!(<i(wqV-=ij7<pMkC&GNVj<|kjnV%j~QVP#l81`l7s$}mV
zkbFxl&eGRm^)+Nr?Rh?h*<5L&!LCBD@+uoPY$0ch8JKln(}-pC2=kT0`_g-JTv@%q
z-*A*Kgf&qBMLt2)ShN&FK`s%2VcQH0Iwfir`9H7fj!GO9sfBQ$TK8L2>Fp`!j<bI@
ztVJISu9J|-SYYULc`i=kmft!0G)Nx5V!dbg#kNpdzGJ<CjdzR=Gs0IItPWy{nGtrU
zDa7^tl)$o4<Py$8ch0c7<^j+H*91WNgk|<+y$3HAoG0XQ_asQE1;IAX-();g*F_Jo
zhu^aU-BJzuFMssEfc+vN24y<LHMifr@>2)zc~mIA<()@SrJ%m|HJDsdEH~>pIx@XM
ztkvlF=lp<ld#rj2D1swSZxyXeR6+Mv=Yzu#fQ>=L6^kZG;yl`}9voZdZZIYN3yh`n
zt}P7RuvS7`rnU`UT5VM)$}K=<^+9J)YRBP%vSv_m;lsu0aJ!dS8W%NRKH9JX(Nup?
z*2yPoXpFG!5YzZV2&*psTXd4ALXB+)Xur<Vv#-i?FQ`SkCl3rV)2DmW^FrJ@e84=1
z=%vlADE(P8p|J7V7s=lU^va|~A~J6KJ18FMKq{~6bStE=T!%`87x4pTMqktn`aMq|
zdWShU=tc2U_C7D-@CBfKc87U?TJS#omiO)pouMlsRHF?@Bq)O3#6-posMJGk*~gI4
zv@Q5}x6O=#e5hf$h;in{cv`>o;^;e%sX2eQ)>fE|!j6`vZCh@Cw-?PT6^gnwxgUnP
z7NyCb@6N3-QTjXm2FM|qB#ioE+Z|cQF6JH^3(}B@Jw@asJ!ggWwOcma)U$3SF;c7w
z@YfJJ8o$<kJtK8Es0l`UrV>*g8DNQoBd3aQIk6^5#!Gllnuv6a^={`Rgv{YurKVjb
zBo;M}EX0UykK2e4>ecM#_vomRU=j1{t!RF@(yFiM1EpqHq+t(+liBZDjWQg2iV|u&
zU4vq@AB96RpOK=SvgI&`cOZOl{?Ua5GsLB2HdGpWS!p)W{(?Ak29syYOpZ?$rcdS_
zowVc)fRAu`1H>VE-7|fMnD(gDk~eJ6y(paJC5)n|E@bE4XtRrTtH?58$78fts!WQ3
zlIYVYky2*JwDY#2;LzI5Uy89l6~U5Anlhni=t7#*or)5ftama%ci8*Yj)B)t>}e0X
zlXq&V;ZTN(Q|{#xkvLIP+`0yCQvly>iq2sO(WL1GrjWT}7{d9Uv-sluAM(vPhj&J?
zpT2R4My4$wu$UyJ%p|}!7l(a00W*HxUquWG)+3NWWz#tVYU*e|fJv-_C6VPiYqbLK
zq{3|+C|>`1rvO*lHhT_AGwXZnq(U@1xJQRV+^Es}tF@Rsh}a_g2qa4i$^yqpOXA*7
z@&E$tywQv)AYMmlyQn<E#f#_Qx;ePP0a*3i^>Bc<&VY1?Kcl=OND^*>p8E~Y7CnQX
z0>JE)cXr2o)%anoD9{KMY&S*s-be0x2IF9uZ3bzx2Q4G7W<hAK-8EhG%-aYp@S1rt
zKrS*4H648wThB4flSd?w?nTD%f{Lj_z5sDkaDZ?pwXRsjCt{ezP{K`+BQ4wMjoFJe
z0QCC2liP8S@!sS2#`iCy6aizQ!iG1fIdZyD?XF1sdB}QZHTLKoYz(S#g|YlFN;&d|
zRB)?!HMH+R!Ryo!gvysyw)%BWdKA;<;8><Nx)fSwv#aYBWcKXi9ElFVHJn7y?F2qd
z;@7ILtisXQkSFEl2()oBC2QXn&VAX+A{?O}DWW3{Y?fIS%H<zdjAscQ0Yy+Em{50K
z2E+tCWHh&bAj2C9ip9qM5bbk53ur@oxT9qztS}a;s<*r+GoUUUzGJ`!t50Ht&=2)e
zbF8Ji63w4oz-<xSbuI#vdg<uEyq`C3HghUFr-hTbhse^5mR&0|1_5}*i-ra5-em1F
z;&JuVb^4Qcu8AZ6G8kc~Ji&lEfP%eih%=(}D+oWz4I>fxIx{TTM=a-5Ib0{Dpt3zq
zK@y@zt(87auU7e5E?pL1&UT_S0Ews0ad>sTKnyDMbqSvGAzsV3NdX?J2{q2J9pA^>
zrQSE2lsFc93Y=CFxs)AU+Pcza$=~9qRzyL<xvXtzdx>sj;F>7La6EZQ^h`1&8*P(t
z>K8bj*KRM($DSHR;G$KcR9@O})6^;iSpKcpgUSe4f^IjSDj%%Ywydl_a!ERLE$gzE
z(8{%Md@g~BJI`?-$v$7X*?UhJ<AF{<IVyvWNXYjtYfxO5c!j8%l~otx=f%2g;dvnl
zm6Dej{by=^Si4nXm*Nb&RmC_-rcG7<D(67h#GC$Prgs;wBfd&KG#fFb*S*ec9^!3F
z7{EKXOoE?n1CRroc?n$~fbw9Dt~3AR{o`^M*7uszFA8vzuRAGsO-E^5x+5s2HcF&@
zEh3irn@*tDPgljrSvb_mIZMxZw+4&OUJ>e}8o!vpt`B_axv0l|z~t_zsE%>DF%q}7
z!XU~YT9Gfsnlhp~Xqjttk`5Ax0Ch)A)hC(O%M#r4{(PHX3jRX|g>t|chB?>4ZzQ=$
zSAh6G<=YRyRZ|A5g_%_v#>Nb)4FGElYU0sI?tN$2brx%Iu#n1k$a_k}-&wC1v26e|
z#Bl{^B7Ua?hs8=L8=sE7V6+jO82i{I&ox6O2e4g_)zI}QZfswQ(S@Lz0{L5%dJ|9^
zthIG(lvrw>i%ix5|LQ#z){{|d%`NoPPh9hbcMkRU%{&<8sQ6>KuaTil>m^>62LJI5
zurqaHo_JY!Q@ZvopPwp<CyKg8EF6pg^$QyTs41yGH;DukmjTun%AM8In&p=P<~|b0
zwChb2@9Z3?aC*ivn>g%k=yw9_iuyh69rvMi;Ym4fJZYlvFjZw^Y7@IZ;b*{ui-DOP
zt*GeR-}2ZeFDPLR^+YuIVN?BW04ZfQq$uO%--`67vvw)luxic~%Ji1d)8f<W{Kh8h
zzR|Z>%Hp#c31=Yi5kC`I0eFIOf{lM0*;B#=25wwd*em~deLU&qgQi0ixtIw%%IVwP
z8v%g)y#l;OR46Hzjh3N$-oe^epyXZwc*@96P_|LfBS4Y5Jp!2RQ~C-5_y+(q&I<5X
zLy`?Vi?VDA{@jcGt^Z`iN&Cb$e&X;;`h9<*k%<Q{0rk>rh3<*J%7cKKwFh|d2eG`=
zZ@;4}ZH3}SU11dxWtb;6RAd2lG^~s6YxOSoWzB!Q!;{$5e;NAYuLX$2E@}eeBeK6J
ztx;OIRe>8a?Oy|AH4p)8x;ZEsB7auuAA#(D9-RunAqQri#F>M>15f;u&i<>z8Yn>Y
zWe(V-@BZ<nQaR#JLuGM@#xMV?NBx1B{Q^*x2?INnLGRh$=%Rl;=|4!|H99c8r@Jny
zh5T=f@c*(FVFol{A`L;ao%g?b)L%ua69kMV;e0{U_!oKTzrM>T0^oz{I@CX-{D-&t
z>!bei8vjql|HQKYpNjuyhw&Rg{F_LDT^zYUasHX$Z)VAh_B7RulKuOb&fm;)lmzB%
zucp_fD(R2wa>CkxAtC~9!phHK(ZAB({>egs?28_7MtM8Imo<M$Q2)B#|8z@nV0+;x
zJEs40KW4-U4Aweuwj5>E{qu`+!T^^5Oe*~i)A%b1{@*)^$O2%=(FM4R6G{KXynj6x
z>nTWsx^4fE{(q9opHC<!;NbuL{{r|$p8;bD!1Bk=I=p88eBR%5{U2T?fC6yC?+Y8`
z|Bs+G`W&W*z`B&HFkk&|q5f~T%2@!6&knop>;Lg|V1BR-U?Snv&AusN9pOI>k|gn<
zLL%m^p@;_NFPV<GZGL=q0P4ojmCjI2xjmHsOC*Q|LX{kq-k%6Xzv)CLqwOiVemDvh
z3VI@lPn`iw#zLJn#~yszAz%dN*dCZYgnwf5xC8Bjl1;~dC7J(TN=jPW0>8hdur4~D
z*M3|D%hNb%%(NFUjs^FWNBuG|2#f%r3*Mhi*pWH`&^E#oqRhCJW?c>sWFh+XgZst)
z05zNiKq9!0`5R^Cc5i!$oQ95oCNH}jFcGr?G+TaQV3ugU0-6J*Y{fs2x#!UuF(A&*
z`j76;_NFUVI*%BefqMY+q9u`oEUn(cO6LG2DmawHvvBVFa+5JI-V(jR4|GRYGTjz;
zTvKs?Vkga!$?FuK)HIT<Bbx63Pdu2V_3kYXu*^;%MbgD4SxN+^mq3vY4P6+rU3X!K
zbKg8yZ(H%FTNikA4F4x32$wzO;4*JG6(qORTUB5=i8X-X7eB9HkRegErozy>Ulby|
z0D~rqOvJ;=2=JJVJK$-N;1F416byaN)!l*7mrj7mk2Af;-25I17;><>L#CPm_=Z@+
zK<kV7t#eEIsZ>V?@C*98EuqI9Ue!$c6bdI`QUu|Nq=Dx)?+D#mf=AIaB6!OP(0HI%
zfWrU4DNZ*Nj2-{PhkXJcBlhH=ff<NUE)}_ojR1jZ697?*xjX=xV$<MxKdz00l}Qc-
z`>VUwtJU|PkDn8AJ<X_65a|E|YHJ^-fgy&g%wvFE?OO8UX+n3+4I{W2=*S}=Hi=i;
zbGTjVTwHJ{_-p~=l}A9|EEpK0<&WsGChzm{Tn(oU0VXQwH^DxaPigFjTJ!O<u1i0+
z3cta&N{atugZ#-W29S`A;&gO8!_guGW)g>k!HPAxPvrV1Y7gqPo|CORKxRgqFy~fy
z`8{E!FfTeHohHkDl`e_zdR?{SbVMjy9tRNa;Scg9V^dsGU@zo#2t6FfpcFj~N~k2H
zJp`B<S2Ulz;o1M(x#~IA3UnYS7=gCY#+manjTlIT79-9Cjq+*4&`Ps=10YkN`JTjQ
zCk#?9Q77x^unF*`FarZd7f3+cQa9ywZumeTOfInxfTFMLSC24f_A+D+@N8vN^Vu@Y
zKG8gbfhDzemP^FUd_)ua#Vp$B#Eqg~ZNdSQq_%k0rIoyyxKLt2Ay0##z#IUzY^!Z@
z5FpfY)y4yxK8fVPayRf$*6`C<P!eU)M$EHbV7Q3C6qr^}F7<etOz@o+>Z7&Z8Tt8^
z7z4EH^)#ypXADAE<5=zZT16^z_~G$haSdAB(>hj~<GN-}U}DIrzBG$=bZ&%4*}f8-
z?b~RfY@F-gkl`(tAIVd>5ELvpxFhrTy5@H`@T<o@LkXxu!%+~tHZxb&L&wQIL9>Ej
zTYTc602{5LSoOZF=^zJXL!PxACSaS|!*~S%Z<omR$0|?fKDe{mN}hcNOfE6l!zSA_
zdIs8sM9|w^X3F>#fbqKU*nJ&(a$ZCHr$ffq;|X@)EKi+`sbVq6RMe;GE`aA_Yat8A
zP*$U&ZoI-dAx9hy%oCxwNIfHac-lv@V*x1e$@;F^RtO#G<K+!Q)3u$$L$CvVI&RUa
zOua6@>}xz1IJ88&czG`R#}EoSGEZjZWVBfhZ06Qf(EC;U_e^zRqBj<DPHA)oK<CNv
zh1qlVCnBzu(;#yyMaqsre0w+~Dv}JI-`z1KOK!b!^CO^p!F;!H)n6u=6Y@8bLAn_h
zX;vKo&jcG*yT&_M7TXMMD3)BT!`}Baoi1?0;43i1eEVsaUx=`@-XNQ(sRHE&P;8f%
zIY3E8d19Ds+tqY@<wcE|YlQJU#ouZo+<SAgCR6j|W*gqWuKQ{6^Xh)dF0$-jrT4#a
z;$*Tp04;h3!L3#hC_96N?spngB(J|>#{*-KxtSN=UTqO6CyegX!7-G6_SQy=6WGoX
z*$eq7#xi7A+>lj<*%59ABAx|GNg2@yrilWDL4g0zG{ME2X8{0~tU%mSxcwpg|M7K}
zQE_eCwhjb>L*eca+}#Q8gg|h2f(Hu(cX#)o!QH)Z4<6jz-Qg|vKDWJd-;ei;)&eb1
zRcp>U#^}9&lfAc8IC>M9%*^=|Q7iXQA5;P1>;T|%Yo<}|xb9^^P+a+!3-bpJ>aJ|z
z$7aNE$1geT5sXM_Pz<fK$}*sg(#i4e=h>sbht>t$VG8?S9^8_E<gY!3|4dp1(<J&b
z3osK*WkU@_6*rBL`U*V#mQV7#E*?OfFzh{iwS}fDVHJh%xHFr-B%mTkZiwVqeJAp|
zAJ$tqW?!gpe>0%0DaHvaqMqRbz6+tm#q!lxp-dmk|L<0GL-x6*G8);lpm$XAy5!a|
zL{JR(Ug5-Ts0ldWa<d}_Jj94nEX#R@eIbWP-6nuj3<J=xiWPdtfWwwh%z*}i@X+zX
zG?#!>|88H=D>b%f8v^F3{3!)i80h6S?%C*oLG8Do@i)J9(D;5g;EMT%g=JGezr%t*
zfil<tIL&*hMXmByfOAu?_i(b~b!k7EF!8XwMS&X#5Aj)Tz6Xa>jIFUvk-xm$!UVDt
zUcQ|mvwE-n)Lf-m_I)W7$HsDHPV*+cgs=0k_@n%$g))u*_T>w)?>3w~H<=4;__yPg
z;d_0>i1_yN;=rF^2r;0~U{`@7WY`WkFK!Q9FY)D}1YTaQE4+GPecCjACcE?#5g|UJ
zUVsd?jsYVFW1Amhgs;fWxnSK!C|%&slP0RHTAD0WFEou*%lB!(2~}GD-3!=6{~7zV
zzP>y<p_r}-MBa*=py#l90xlsA!n7_7M6mwCYQu^for0dWavvj_QdG?tFCDN;BO9cc
zB!<lG7Nqe?c%9?~+nnw+J<N}Ls@A33c06*rU#&}ionkklQj)wU4<+*|(_g9pW+@)6
zdT+x*n>vkD55ZP8azqJpdA_{8dz%{;Wmk`Tf<oTu<}IS#CMpsB^n>TIqHAvPePEr9
zBMZ_M%jR20?3AeJ>RptpP}Kt|iLG-%;j_WpA9Naep0^wiEy;JNEXfaSKYnp#l{va6
z{ePaKKP^zeXNra!CB<!)<)QH7sHz{Yc)Qc5q(|WtsLr^7BzzN6!lweR)h9^}sU&}I
zpfYmYo2$@k8u59r#(;r^M#DV+#$(WD41rP8vYtT(i|}^bml!)PsG(~{a;^M;AT?s0
zB!leP!!dqXby+QILr)m%1}e<Ft${3B3459CNew*}6f(9+mdqm{J&y>OD-@r&Pg^ew
zMhO#P5vrYmXmWyhfK>-@!hnH&3=7z|3X<vRL`HUu+UNvnJlLXAh8$`BIiru|y}J+x
zUx1PXh73lP)t^9YXAwxv<lqFa>iT<1J9c9X0_UCAh$o<;V22I^f@RtpTq1eLrQ=Zt
zgYCiqh|eP*mh)XK`?!ISSS(>_>sQ<knRnA25_9RQiCHL|1c5*701cO{og8u#P`~g|
z{HP1CVkq{h((S;>L0$N;EK~RW5lvoRkBh5d9hYUyx6E3j8Bjf+lF*C&9<=2LH;W?k
zP$d1_lB_3x@Dqv&y6kJ|bIYf3k&fe-)B_Ti>%icC*e3E&lF&&--%a5ICv&v19}*{Q
ztD*rc!s}I`P%ljeV3HhYj9_JKzuRccd~N{L+#nz|RNws*^ho1(s4m@857dnQfbG4;
zeMIFW7~`T%1CM<|M;1(8Ag*iEw4Gyq4ir8oHdP$ES=AJt0$zL2U#B{*qZ+`Gl;=i@
zxbJO$ybiY)UW|a0&e|VO5Z=u4{8w)wM>~LA5MN>sj9+_qkAU4aY~0;d(lp>F)F#pH
zy{tqEV*JMQ6^hrL=z_NH_YPz{c4~O*VSHJ-V5JnnCS3?>6Bcv0+);a=>`UxW+vwwc
z83q2z^JO7orF4hZt4Uc|KW|UsaqGLYbssZojS|6rv4bVg$73T7R9iA%#%g-eI~Pp*
z*i*&!;q_iO*7kn$ZW4BiVg}VKkIYFIm-(r2ZbLhIq^IJBb{aj}!j&f)kK9%Z6t;Ko
zTGj*cd22hA=MjmPfNp1_9|&gi3i`Rfosz?-&U7BH6+i=|)R>WRfXhO;J8G-=;=)f@
zGs*gs*!foDB<!@^QTO_Vaf5u_1GfA1eYZIF^F)WY;_fSum2%tCP;heo_Zj?mvH47d
zygSYYN@&h8c4vSPz_mR+2dwwMNkPPjuRgQwP_2o_KaW#&93BMDidd)g)n?Uhk!mO-
z0F7z=jaz`ie<s|N3Y_%nS4kU2+2griK(r4=u<U1m&R@GdBEF4o^9%E7<4&rD^+P;>
zBPn2+f3qFHBswP);y#uv<0qUHni9;hhQfujj6tmj**3T9g*vo2sZcUImr*%)BYD9A
zioY5Sc&NfC(XBUtuA=n|2BzoBJ@z`_m#?_4<S69Z%l4Bs?5!D&dHR@Y4#u&jU_#Ue
zOuNG-XgbjYt~A9YLSJB^_WoK0lID##f6MTEz|E&Q8>5%h$745d3njFeiOj;(ijEu`
zBhxa9;228VUnBE1Lc^Mr*2CC8%Z=idD4f^#yWT_*B0Lz3<UQD{U5GaU8WbAL2GBoM
z&>kuzqVd`-jwtLIz+P~1B_P`c05wzwZ={Wmwx^XTyWTGvrDk49_vzsuTw_cwvGV7E
zQou+o&t3OIo(Je38ake>F)F9OBTric@e2Ad_>fAMos?cBpUZwxv83?Zw4+n!g-pE_
z-~ltpPf!h&TkC6q$bqBJu+-eSbWYg$2VfG3asKgQ9#}3!&>`J{NQa*td5Iut@hSn)
zE!B#!I)Ef|07X;kF@(AaD47FtqXc;+JY*L&$PBwew2XtvU4V+0TE_KiLNY9Nx-KHv
zf#&-<@N$Tu@qsf;R>!2)(y+(*%`T<lk%?Q5AF~r{Qo*q}`5f)RsJ!sRn#JXzFl^<v
zQijT#e^K)YVkLcN@)=24Lk<0?!2Jy+0Ay7S`z02!xgGY@2j(KiVfTRkA}e&<l6S6F
z?s}MUs=apP<gjS>E<sH<BvLdz`<eB9cXhw10MY<>UcIO-ZnV4h<jHdjsek^B;=yM&
z*`9ML|Cm~JRAffLLIP=i6v4G({=1ll7`cV6yfNpgP0!XK;$p12;)>pEYPve}K;h8^
zNc2b%56fm^xA!-poV4Apd_KIjX3N@ce>izBLf#QJZ`ti24mHqvJzbM76!||SqJNeO
zGcQQW@56qfG08fxTxO4_OgkA*FM_2pu$=MDvapzGbz~QI@NF6mF#4Y_vtEzZ*t%hQ
zyf*-el^H0(+2qs23ly1j(UBuN{N6!~82j213c-wXfce~K=6&YpyRT<F;;!JJL<isz
zCXDiY{_bXZdG@A&&H`BV<6mNcR-J#Xd%-A5VB;27kjodw7zr8CdyDDX*7!Cm@({7I
zK*&!cCAke&h<+Tqiy1c44v6|=jGeInmf9pIwvl%t9a^^Pbw6__pQrJ!@pK|tZZK;6
zL$DTE!nrQ14N5}_=$$~3@zEZyy^jVxT2cN?M8pK`&ug~12*~3#kUpsa0j&e9PB!El
z;5SSGh#^?v1ZW2vJ2BixIe8BQk$wsQER2C*_jpAr166e?c2ZuLxMiogWuK%(3i_=e
z9EdHT!ikA>v`jgk7C!2{zodM7Q~JMSYZ%9*4(ZvpeL5e`WO{jd-VKRCR_^O3`pN&6
zg4j259c(%?iU}V;Yz_AS>NorNcZ&das7xUSISW{1UwR4&mFw?}9Drx3*Ic%ujgy`q
zc*!iqVhkC@a^(H-)8fuR(mjdqD$R8y$EfMwxzs|Ka7Xwb{{g2uJU?jAfI+Z#Y-Q!_
z({;h)OoiuHtWPW=ATt=$S<ohZWhbPPx>P^EZ~l8^?(A>pPc~EB3OTeZ*f@2PMip4H
zsL0Y<ibhdBFf{OZfWOo>-wkzpZ?5CTNdq?EYz?p~hwg$~6hlv>dRU><?jb(Jhk;<b
zrOyCAr8t#HXf>vb%3Z@B5d@%aXf3fr0nNb2P#F^V2f$K?z`KsH^v8=Ewi16-B0Y@{
z@5>#NyA7`Kqn6huCo|v>RhPQ10h6!b7TL0;_hJ5t=jzb<UR&DMm%2SJPFJ_$BJNsZ
zy*aOdDlFaq+{dv&h}$QIwEeOtFWT7OHgMe=j3$$jyb;H%M4V}KppXXf$%aD<us<8t
z%1y4VZ4y<8?`f%gyrm>(RbDn%JX?{A7iu?ZT(w8L_P@Sz7`cU<!><<$8<C75H~bdr
z9O_V6VlmRhDXlW_ESu+CPQGf(zgXK*ZJnE`pU6}*KhC|X_r`vB(%pE3qtYjr5WKkb
zcq?H0_p+WmXN}4R(oXNDUv`Lu|BSm9{Pezs%%q&OvsDSzPUB|3)Yy5<t!RJ5d)AR7
zPzT<ORe`&JJB98jUyetO$bg6c3a|p>VjiE&i{bDcb%AFrQg21NQA2RJyK8q)ceb&6
z?Z`XdaSun1Cmd#B^(3yRUD%lWZm%}L44e44d}*<`&*p()ffc&Nv_%kS>#LD=R%0A7
zeixwc4T?#TkuW14z+k(fhzx<gMHke2Im2c-oFQ~!mqd??T(2I54QDY;cFgbY_D8V(
zs(#Kwl}Rhde4BlDyP8yi(rr6W<$v12Aa~dYptnZBBA?gT1%bvxW&_-28L2IWfyFz$
zpDwDBjQPNUe@a*JROVM{S6n0$x)5GgGq$j;*c$zZr5}Me!?Wmp+JL|)2#eK_WN|P{
z*B!?s#y>#pt8rV2!V|FjHEN$84FQ{)nmryjS&4BjVxEKB^~{`1#t(;n!%$uugHKRF
zc`pk6vO?_dKhP67FP(F-Y``eR7t3#lgJNkwVMoA`9+HuBWVyo<7P-y&&*^5)1X&a#
zRfhU^=G#*yFjX5^ZOlYl%xfm$CfCFXBnhXHiG_`gbip$gqZ5Pm%{A`yhOnpYiWlmj
zxFGd)FI||<zIWeuNd1s9-dZv9ZJGxT;lAwjAR{mFdx%8x%BLTv1`AWh!B5G)K7oQ3
zKNQ~}UQ;K?vLD!{`BL3-BP5W`*PbJlqC%jDfgvSz=ywqAcdxZ*Y1GCdMb;dR{NvUJ
zpmI%63Xd)4Dn&))=>7pi_MKEjZsk)G5v;D;!Vi=agv|`jkgZIwmwP*aew0w+0}C4@
zk^1ddYi^KQuu2M94oex;tvst(8EgPB58TR51140}#g);wW-DDRVl8sZOBp`{sEsUW
z?H0ZS8z}EWD(yC^p$6vfGR(B#4rh8srX29g3q@VB@xUuD#|ejz&&P~fczLE2IGOQ{
z)B9E%i}4vpF9PVeEY9nNYK?JjGOnH@9A9n%uYKL$x5fjKFMwlN5MIS%inO4-e}5sg
zb&7rNtP!v|53g>z@9+^Cycw`Z`zPPE)X}}%RCdgdfB(0Cf(<G~U1ojM&i5GgOjK@S
z{BMnfxfxa8IpQreb<^g=@!Q_fX!Aa@87dHkSeNK7VjR?Ac@eOF$_p@Lx&b1~B;CuT
zYMwg~H--{(7z|#M^n&|@{0AG<1+vNODh$c0SuVrMB2l`HWnspTki6ib(mMqLM#`}h
z-v-|ul1FmqjQIV87Gixbwm)UK#xaiDnk*2udjuF22+MF>t3x_*3_>Fq5jU?N?Kx|0
zg<RRfah%QWPA*-*>gb9(q56&5I6sGCd`LhzkplN4>)m0p3t7Yu1zt2WOD3zJ-?Hjb
zn5YGW0K$xN=2lQA6d_5=X1)?o`+<$~Y3(|1yL+)f0qi)!j>MdG4=JC)B34U62G<wG
zEF_{M-WwcJ@}%W38X2Q+)8=IS_X6mw8@g32-vE?AzI}_9^6N?+7=Ad(^PMNE=WWaT
zAtqg#>*A6Z?p^{V_z-&UWnds@Vn8Ya!#jBy;{wn$HvYm5@lbS`&?Zp|af<on)m#BK
zZ)<K%iTaUtZqu8)@_*vQ!iOL!rQ+X80wN9UZRGc$yW2cU2=acCA#F5F)2KIUQ_%FU
z*W-o+$#Z57rc+`Z$VM5F7OVMtrxhLM73<)WuO;U;i68ilp)=}sm}G*I(a6F2sw&Bo
zWOvy<!@*5QB;mDLl)GJfV7G9~Oo<jUkZcav3Rg4`5e_Ii?3Q|3<j_C`E+WpL8CqLd
zTDR_tT-cun$;+5I9JF$Bw>YOqKth>U@xum4Ji>BHEAS6SuEJY_tgxHxY8!W#rwFSm
z%{+1NT%4V0C9Y*LGa1l7hOc?9r<I4TlWJpN1Nn^-K3wEEM$rF!;E|{eyNlh$+BI7V
zHVn3}aH6ai$H-XlctXYq$$IPlI#r0ot<#>WeqK1(3Tz6vA_IFqP0rM<5GwAJ%g;o>
zHNONREL?J!A!EPksaaB6^;o{w8L7_AE!=A&lLsoaBNm<iwqSJbNqE=WsvWORM1<_}
z9iR)#g`Lq@BEnM15VI-&A&y{j`IG$#p!xMayn&2vQYISgrj;b2Ka86q5g!1dZ~SMS
zI|-cH3`jzgsk$k*)MHdHff~_m>$A14HyP!q61QUw$V;K&<VCP_q6>%#e4^vU_}fPe
zcmWHme}kTffdS9-I__r50x*sksu7&<%CD@9VEVyTEI1*e<pRP)?yzq-TYY_Gk&>c+
zXwU8bQBw*k_-kkW#64Df85ENAm&5&hfM%JyT4OOmco{6B;P|)FAm5@bvVxXT8;GF3
zXMzIq3Kroi>WWk@xy(~nYBaBpr?1=|WI_dRz|95BLYXB%g4i%C5SH!3J~$|;zyh4G
z54A<Vwt<Y%6e;l(F4ZQ^;J1);;N|}8+nUZ&80DB%Z=;7Kk-K_x#^6kHCP+716>?`y
zH5Di{#3wq8A|TAW0DW$sP!3*s^FeX`=OMO!3#b~W!X;p|Si|nLIq;CrIu(l?3`9RT
zJ&r2rQ{9Sj`;YAYGm;n9LK{HF5bpe3Lg@qAzeEnv9RAIr<18ajc8H04Dy$O%72==R
z<HUZ&2mpd|a+;SC{llIV=FpXx@aJO&G?zJ6kS2eBnN@cD?cOB)E*3M!bPAMFmKsc#
z##vUlXXYOGDc`8@%3{Gna5GQJPsDD3xj5?3hx~(qhU$;x3ofG&l6dm~*n!|Y9g0AU
zKKp7DIkw~4^`~DM(2n!$Gqb4SHmzNOGqD&ao7z)OOl~N0DWHIx#L8%1%3s({#f}+3
zDR83F2Bw@~iUUQ#28dx9>npAV^9CtbrlRsNil54^dbwwvdwel=e`VKF|Eo35Liq8`
z<VJv-mVumN5p5r62uK>56BaIi6LUhG6NpGTP^o`TrCx`x0)u;{zjXlWs)yPSAgW3R
z!6sg(qj#WhnZ>h;$ca_T@#&S+k)0mhz5?yO=DEsSRxkANuhL;ncwFM%Q$qMDTEVAX
zj{>HS$7=0^XPuEueB~as8dHJcnaFj){}$P<pdl8v@2GKvgFA9`^}Z@j<96Ur`6{sV
zVoZ2>qm+FO?~+G6=zjInE5mK?(;ScR@vpr<r(s?zU75c;Ltz1>e#%L3Z>yWlPjtM4
z-0#nCo6*`RbUa-X?Uw{sg*~aw97J_|AVz+f{N{I4oG>vX_>lNUC1tL~ut)a7p9^fa
zgZ!`^A!vKk6$jA>MWat*sfVNa{^V1p^xZUH7#u**;pY?E8Xl|cE){lFBHayM4gVb|
z2N6#C`%p$5mhCByAU87`d0C)Cy$kP!(&N1k0qy;_%ignPcVOxDdWHb~2g`}6#HdV-
zgB`I$*;&GwN7v=&!>Wt^ld;{*yA|+iki8&)_0umjOFtel^tB0WCoQMza3c1&Qkqd-
z|M}k3UC8wDwAkd}<o+w&qQ^2hb6+ERkhCfRuD4&Tpx2)NSPuA=(69&pHc;`DpIWYY
zh<GD0i@wd}Zu~MS;I!lSi6W6vsXbU-`H2i(r-SfC^=|zTuOm%%iY@9o&cdjt=d|5j
z$o+Pn&q-3s7=E|vW9CQqNBbh%irLMVQ+FMekAI>oqc`r9#I)}gS5FpczLQRAuzW=)
z)bA&H1eR*kK$dEUb}fP@Vr*H{4xR-E<NZW-rg&eJyo-N8>z~5NP8H95qjR#L?yRC&
zT8;YLpd^EW3w-{&k-GrJOaQr-D>@4VNApW16!~Zgi4CBbP!sUP#CYW<koWyXjynLj
zP@ZA#-^wS_2C(ct@bhtt3)lT81T}|~^8c~}$`s!1eqx2Xu9NeVcEjTwqz$o~d^ur^
z!--xUxAHh-;7Sl}KVjFkSD}a@LT=5Oa2IzPCVB;gOM00vbM;3gC@c2KZq=#hHa>pT
zkL98d5@Z`Dz2>dx7iy!`IWpy>U_yUAoCw_<jmv(g^^6^0+oBEkRX@g=xiNv36!Qgk
zo|0xK6cs*Ix})J0{F(HY8L>~Jf>D}>(=+yQzoQ+OS`tq5$l^YBY3H*l<NKQVJ%UPZ
zJObk~H=VfPP3i?T7zOSL*uLW!kV<G#!qHlUQ5tF9m(z>uP!d{C%LL{MKJqEi=+xA6
zJ>vEoy!H#dumDq0IF@RvRr_mh?<v=qsEO5J3sj}KMYx&J)|%DVx?m;ru&3%-Gh74S
zxrWq<n7~|)NB-*@7rjJ;xr~l)iNJy^IQ&*AQIq-q9#q15X!?IpmBma~W6n`nsN=gd
zU^Cy8R&KvRpgPhir>$Z8Qy%5VDhruK)&k5GjhbqEtEUoKrDB9B2&j-eM|TPdeWfTC
zKN<<09=-|h;b*E*QsG@+0IR#|{O#MA6Y2$z1&Zn)+7f3!5Huz9%Q*s&oNwgbLq{7J
z0y|-K)0CJ`nm{VOTZ9yAY7H5OnMBnRP@do{?3{|Ja#)838(j3e=uzI7VltY#nE;Hr
zsw_~*1Zdi#j;$V?ScZ1F0sf`Kky-Dq%yMY>4Uvh#n;GB2xoH)X^03kxP;n97Ad7rZ
z;PvE@v+sZy5d@6tSPMFUE-x1)TXg4xkcweXn}iqr9OEgzuvO1=^It$RMhj3&vu$_1
z_cY*pIx|y6vyCa>lTc{}(u#~&UG${$o6OXSKi}J92-cRa3w61~9=ojCc07w*a6RvE
zb?j4oF&;AU&&QdIIZUau^1MRPP@?>l2%thgFcrGPl7_G*V@K}H$7XtZjKOWTo6Kfx
z9hzxzcwt+AH<cmr;t)a|r|~1v_-LvvdI9PxpS+c9+m-ad=Qv1wVt}PT<S>nv0gF66
z%>N9mzH2A_Bbur~mN3rt1Mp%5peypTSciu1F?nM`G&lqQav`XCha@#l2Nr9Wtq#2L
z{h9nUQtA&}T$FEC-Lk3`KW@(=HknXP^Vqbjd{**}%q|n#^tMwnJ$#kBT?=?gH?>9G
z)iIZcpS_9Q(mU^JDpZ>_B!+q<T0IqMAlHk&M%`zbF~M&tG<;6ZetlqBhH@xJZ+Aaf
z`kq<j>_#67A=&Ebg5!B;+nq;8jM|swV63Ml!@d#m2rg_O{+w#s1V(Jge|R!Z@#q#q
zc%=<zxrw^fx_enX+h!B(HoGN6S07)1awtRpsP$OexbJtV8rq+3{>vJij4r3E(04T^
zX7seP9JzY94OKoZmu+A`Dv5);zNSdn6X5>IrsLV!-nf(a^@sLR<?klWWvSr54EP-H
zs612AVt7pmA9M%<k)b^+aRa7<&nGpa-g;U>UAu3C!%-frylD3jn_&c67WtS{<%~&{
z>yn9M->rZ_51o7kzom9zoY&bJseOi5tMLV-^gYcG%Dt;b(aoj`V>Va@n8AvCU84U-
zQDG1!;VWZCI@YuX#5N`>>p-b;ZS^i0w5?0Nzw}16R7y8E!k;Th`DJn^Kx5Oi^u`#r
z)uo~o)+H_}*j!)n+9X8dT~b=vDpxj5rp%&r%B&*g+b)ny37o?PslKqCMif<zaGa>2
z8Lbg?c6l3BwIpH^pzgy_L7i%}8Js5dh^0M$j|)V(enwg4N^h89E!a(V<2ckPK<aAq
zC8x9HKByko_7uvRa`;>NfI*mBVm)sbQY&yxz~-BN^TC=av&z_!Q=j`ZOd_|?v8)xC
zXr^191N1(zAdc1R8G^oqI|_SBrNc`?n1qYkhnu6Cbb{Z@We#;_xK*xb5ZHu4r<dhD
zKg91-+ZZ0{xh`7NEj=W*&6-p{6#SP5?M<v_2(wVXJpL|7&TWi0c2%B{xPPSllcGc5
z*eqo-&txI#Vk>Ic^8*c91RavFoU1ySsiwXUG-QrM&XigjCE0eaKpZCK8=(*>41S+D
z&qn+`4X*xMz$}P8SLbDEl1I6MKT2gzW^sO;<xTDrVVt%EB%$C>Ul|*-H%AC9B#?$A
zaFQ{j3pOWLKC)7vj_$FEtH(E#u0^*`m0JM{8uA;0xzKnzNXmhLNh48yVRj(afe(;Y
zhYZWCaJ5lPDY=2U;Tw{8@mChM=ir$}MU_PVn!r(RWU!Hi5IRT2eBw2n$-EuG7|o&V
z5K-C-lz;P^%&jqf3y_k7wqLoT6DY@JXLkU<&4r|Ux2u6cDynzA=f!di#0247`2a}G
z-m8oA&}*>TWX;Su+Nhque*|EFYA^Myd5GC0xFZ4X8F^02LZ=g_a#T&<QhTJPj(c6B
z#PCwD0LO@Qz4|A&xhW1ZVkNvo4(`pk^%aS{WDft_V2R6B(Y$qBZD3eIPW)lrFkVze
zvYja;IHkeoJxn4OYAZyahUb%Ro{>qe)Xml{7G_RX@NVWR!jH);CF3i<Gquq_QCq!7
zdAoul=F+b+g49yEyJ}@bCzgUfa1Rw~j8|b)W3&}&TBJG}>fE>4$Y3x_A0C$}VJ^kq
z<NPd_WQ;+3>A9(f;FIH}B_w1gar?cZr%SR`1UeWh|2v<Cv>o>Z*<uh2RXQtTM^SDk
zSNQ#=?F>MXQcd<c8hi}MvUW1MTYLHnZXj08+%K52U;Yy!+~6M&-#0vC-|vKhjb@W9
z6>z`DmJzu!iu81Mk=p`*w0lhI8v$xc@l%Y#!;vfw6ZyTuI>7pCWv@2q`c6bP>&Wr-
z3y-~xNeJZ!$G_kK-_~EjiisWu(u>6mJXuzf9|+}unWC%>=L3lF=H3EFx&|=%C7@JY
z4ACV71U&s=eP-#q0Q3T+aAzsbQFdjQJC+@oV!j-aq2n;4f=l~<m98>L??5c&pOa^X
zS2&PJ66%zqj<E$zl&lkg#SK^dWL|<B97fhXpNJhFQ$E0=7B6JoO&Ta1%*$H&ONo>m
z84?P95Vdy=YDM|4Y82{uq*Q>qrs*ZRJvRrWg&b=v?yiKJkgu)MR`2xPXkx-_96F<i
z>EK?Au~?=h#drH5y;C$8;z&lsAnKeHw+NTHE%hAK@b}(Q-v;+ZjGh2wSjc<x0|vhQ
zarnq&-fS-MfN2OA$%#6J>%$_Go0Wl3@5_F=X0J<&NsqMEv3R~~_0S=CqRb!(q=Ins
zH)MS-dI+^aIQvcujb->oDSIqiTBOs^R!it<!8b#(8?}v?A*=0O9MbED!wTYYpWP&-
zCH|j(fr&<v!moqa8*?;rRrEzn9*7dGrM0n4&%QXe=9Nc*427YjA?Za+9nLtHiBs5X
zsnw>s*^t#V_My~WCM4!k4lfzC!<uwky}~E);r6E!%f3^?2_8&q%f1?ImGb{(^!<|t
zwa1t1k+m>!7h=9h&MLAdI$hhUo?mzv#DqSfc%j2ek|s=An^J@>_{CqRHb2BXIjT6J
zf;i?L2Qg)+n~B45?~i+Rst|e?OWo$V(Gu{IeY#p|r_LkRDvl$^^S_9L&W(E$@00;l
z)$E=c2`w%e=@TWsb*<7>jp-wga*DPY6gN~#*J{$WDCiTjJd-Rg?97EkEq}P+WNYKc
ztVGW>s}AOgs}rF4+cWY<pIVt*U6wQY!=Cf$2?LnYMGks9M#7Mn6W&6J2$0EQ;m)DN
zV7gDal2MEO2_@xyL){KPPm7zdS2N%T2+>_Vb`!sV9-eKzX>SSU65ZC7<wU5Tkb)IL
z7=wv1gzVAMQ3o0Cy^63!dan4-crvgLac(u?t>PmH2C8CzM|Zgw5y5^lfaDt578KVG
z9w)Ue67svu&3fk{o*F``W!CQUn{5KI0@%^OdztsuHCavAcimpTuvlIYF~VGc@#`)f
zBp3XWTq<0JyPH%d%5ZqM!BURNf4~9Bly`b+^$Pz22D;GF)+i0-J@R$F%u^>*mGw*?
zIMfG_uF;k9x%-6xA~_lQN7)J0`w^CVMul;h#p*}fmSaxN-k(KO9Sz(c47=DPIAb`~
zG%fP&0G3}5P5r!H)I^s5nExa4FRB;b6BGaTbT-4ABOb2JpG}z$DfRY{n@^6$dSsOD
zmn#Sym{-S=LhwiZnTCmAeld=ocGug0vn;b$g7%lWDT5_kEI4$=T6r9^;-+r(I63T(
zdM<W%cL&74;p4dh(UK_cv+8-}cDHfP*3EVL#1YOm`jqd{;$P+U5H|VZ)ZIYbhSmPV
z(b!+)!URca!zJs5&HZI93p{5lgxQyFKEynD0poA)CHSR*W52lHKZ<dlB(3+F7tT>j
zec*fr@YYf@E}3Pu8HpkI2hN*|I?WahZ*{y}->}dcKG+YKt%;M-?Pvi6D8g7~m#4>5
zuRjKh<Wc;ZZs)j~FG?D~t!H>>SY!vXOcMm&#Jj-vv%9PAn1MW}<R^;5Cv^tEFP6WD
z-YXPanEsu0a03O|7yRTp)f8tH!J&Fu`3kI3CVoNiAjU$P0;gDN>yxg-Xq^FI%TVlv
zR)53ZoV!iJ^&+U=+`YkKd8~nZV>5ufEky^9=T86K-KJvjAz)8h?^>e%r!2A-f7kW&
zh9$*6;`X)+UeA;1J0+TusEq1EQbu5nWro85$r?kWi%m*PY*w3VPF$rWPde3Y-3q{+
z1Eat$1xT`sO>SXoDL;4!4b`6bA+tPEr6%+6{33iD!U1+TtBM&r*!4f_>gfm~garD7
zcIE4cop;M-yuqbxbVAScbMFd`ouN!<!zfEFKJOy=kdaf(ClT&NE6$;3*$=G0>$0QZ
zAfq3d4f_cz$>3EfqtxCAShDb{O4oudo$t4kuz3^kXj*12?QGYA*H)w_IKmD_r1oVJ
z3A~rm#1nIDu#f2$`dXN7c_TRp9QlRB6$H~|xalR^>0F2)!i^Gw-^rQ9OJr_3f_)Oa
z>O&8dEbv$TxXE2JLD*OxF6Yn6gA40Co&Xly=t|%(`NlS%fJW%=OhGlxi{;b;o!$A0
zcqVb}3Ka#m`r940OzXHA<y(o%d?Uvs7iU%PBmE{7LD`c>xA0RhUN`0w9~ns9g-&;`
zHQ0h&I$MEr`rB<6y&5m<%hu|wv~zm1VTb>l?E(y}9-qATw59dM@@Szj?#P(^spTGr
zNEWvIjv{zB-pfxplSL1~$AidO2q`~(Ia^<E5usMI5T<#o&Jihq>*bpHz1}Td(@R>q
zV3PD|c1pi?^t)Whb2cub1(MX<n@k*?Udp!xGZceKwH3nxp8!7Ki%eL3V`BZMu)-&M
zI0X?j5s@V)u9Epz_tW8&Ha@=7<HZJBu9iWbtnr_04$m(;kr|II0K8q(;XTt8#dOTk
zBGZ)HAPlLDbmoZCV;=Vo@x4UXS4K!B>PU4df(L?)+{87hC_bw(CxZ1T&qMVtd}&b;
zjR%1-a48^(la7dJO)S#Ju!Ng$AmiANq3#^n)0J+foQjX37;`-MtRQ?(P(-^Z>A2rX
zJM3Y(sgx*!BH!_=f=_0EaGAOMQjjThwIH)6Ha_60Mwb!J6KwDGa+#HZDd@=F<HzwJ
z=m<gY9LdPvJ6gh|Z5ti_m23Qd&S7^mmqM4B5Hot#k)YCKg6|goz$l&7#b=CEfrPDp
zzj}@L5B7i->;vMGl7phK<Ur04kjSeWa}A->>*n5l3kec6Kj}l>Bd!xX^nk6dnM#=>
z2<zkqpScty7eAxYKd7D~DXs;oW1Bi41C-T|@;hVryMgyqV{Df^>3jz;dXBBIP-3e(
zt@U3Ke19KCMFC46EY1=c&o;Gm%RsxOxh+_c_m!UGLbM{H3K4c1G&I4-MG<b@7v5o>
zcs|<Z_Y>h3`RZUVJI3m|;+M0A`xNQ`!^sJ}Mw4O8w952YRsp@MNdo!Fwv&eBcX*bw
zX!IwvQz=hDZ4{;-N6bY<<&Irn5jv7EH#3uT3)}YTaj}qyh@z2PU<bV5Hkm>1_>L1B
zxxO-`QC<@BP+OrJ_gzR=NLMJYMlVJB^v`#G{VuJ~Q&rFmu9!Topw}U}Bo<UxEmz-*
zEJ+%RhE^n^1A1zyz+Qp8N<CjhJ*Hgfya-{N1sZ&*fu8vaPbW`1zk8=2epV#1aXHtd
zL=67eJAf;Tbyqivn+W4&RA9ZJkg*7u<b3wH?3EijgooOgN&t8fc?w@%NjD^09}ehV
z3`%h=<U2>Rh>t^V((qpa(?z+oXw3lL+a**0+2yz}D-tP+#sO%)?fXF}m2O)I=qYm3
zBA~NFvu*#5;_mU>$GoV=eR$kSlNN=t#ri;RQhit)NNa2e)s>>N^HG=@_&li9VrF=b
zEM_n~t)627u>s(lxy)S>q?33Shqy-TfjT2C2lty0C>;PPrthIt@q|dI*!xkQ`XXds
z0(@pC{v<~6$A6|Rl~F#F_xAvdyT5)KuS9&tp=ODWGR7ji+i0O)?`ETIL_1%Fd;0NA
zEk55B^h4z{VwG=dLVIK4U}E;?Paz>|nIf2Jp7-?8-nG)p)JR`HvsNu!1M~byfut9{
z9NGkS+h(mSyB;9m&5sT(-F!_c+pq4y+1Nh${Jb93@R6=~V!f4*jGExh&FXefI(T0a
zlM6R3!UZo_*Su56v*!K&sk`=O2FyG69)9+>u%l6{1L56Ve3n8&b-J2rBe^zlX{dsU
z^&cj3n=BV&%y`!cOJstLa+c94ta77r2%TdA>d%IBed<2fa2r=}CYaAA(3Mfp7T1~^
z?!C)3B<{svz4O7F`a12+`4hF;)`E>=rqD2QG>1%;d%Q9};F_vCIcgF)knooX_*<A#
z*E6}upMuftP37A&PN$Yb4lJR1qJR}K5ubK=0|`R36T}RK_@6I6GXdU=WCfnV`VSG=
z$3C4<2Dy~tZ4RHQws4+bW;nA8eYv6M-;3z55>h<CEg&1f`*2TTd?7Wt^XFSadVFBp
z=&GpVRk+9}FBT$UXcXJ_LlJ~sb~iK$gO0HG<rttY`aI=B1$O!7$U@glhM8rRXE0F~
z>rN7OpC=*@V;>o?KacUch!>u-nNsDKsUi;d)2&oXO4r_Dx&6^hC%Vj)b@_W{C3P^g
z7-7j?P(1x1exHv@NuEfDU@$;`zZp+E7@L5|Ay-v8wAp*aB$qOzJ>Us3x>f*R=QTUQ
zTFKB(^II_igZ?w-Z_rBQ$tc0(nBVvjs8|xW4hQ~(d^*^0UthpR+XS*BnU3L>8tQi8
zL&+>gBBg(dii}IVG<A8k4pf#2R}%5a_k8X6%5G)H$Y+(mPQQaRTA>2|r(NCg_jd=+
z0d_N7_qTjkGT)*<!G*tE`mx3vZQP0v=dbKE+u93t+d+$I5sptw{_KKFI<n&fEYKZ%
zw(>oc=#KS*z#DXLQ~dlWQU6eQ{kJ{^G%$!znnGzc{&lqCS~yX`I>EuRVsz;SZo`dz
z6>O$}C>?+obhs)0DkzGQpS`NO?rHF<*$o$_2fNZnCf1*@Eo(A(*nu>)dppm+bn7D1
zCx{UX-+h+aNjJ?^f+!B<5!hoM%L5sr6zBSaHHhn>6sZbN12PdnxdJxirm?VVo0elu
zvyFW~B#AUdiE^E|QWHLESZ(hby`EqeY~Ear<{0bnK@&0^d1Wsi!@};a)gtD986F)<
zxSntGG$k@@9q@QO=DsD(KGtWIC05DX6_=&be||bLa(3wnUce@oy8sOS2#oW<G%F2}
zSdc#%QGmxPD=X`vvij{NkXcvidkegUsGBOv1FPTiShm210_-b)+(4Z}*s3vCeu!XH
zx~IENBMzb-s7#0EgD+YNji>d#cCVW-U|iJ*^-pkJ$dEDw^Ph)h>jTug`f-U%+^Iz#
zKF#~1L2$v;stKvzCo5MgRbRlGL2uZ4J!%!k3&Z^YIBh(XGR6F!1jcep;neG)nBmk~
zpFzT(AzQd9Kb%6fL(>dF89jqwm@w?zp{5vvaf=4@N`EM$VVq)v=6~3FZ~6N|k`>Ux
zRdS}t8#s|-6>(EVH~&r|mf?GNKQE?6^{{FDaJBy{zZPf==bHRUhyiL_KkTV+F}=B5
ziw8KS{IAX4b3My8*GFrG>}*TDCBb9*V@NdpdjEuHkWE)YRVbxYIc^`Zj3}YQ;DM+H
ztU<yPHJpa{@Q`L{+9$k8%%{PN{(xLDGY+~<NLe#r&Ya2D4>E3we0F){MlhRTZ9<;Y
zvK4UY$dN0Dj;~Egx5cQPMnOftU>g$YBc7uQ#lz6#&CESsYb?|5UrK8%{DV#D+OI)i
z!YWcma5lP$o}<)RGI^V96p0GENuRjkIq>%aJGIwfX1X%5wa*FsKEU#0&V3`3DXn~0
znx#*(EApAu#81X8VT_v64MooNxZ*bT{jb<!>XpWF_HAcvqje+6pU?Xv1H~KWTNBlG
z+nA<y4Kbn|Bd6LDr)Y*J|M}G4PLux}DkbkBDDe$E;Fk5$v&}BcHhc32O_Q5Z3*_x7
zXb*gu^Ye-tn>Dr&Vxn!Cp=2EdY2+@mCAaVy67;PVm;E1BHSBxXh71_dS)*cmz9cLs
zbFUr{tj5^q@P4?Giav68Y0i@zPa0aL_5b8F8tOUi5>y(7N9w-sJJ`qx3bYZCHU}=d
zG^#c(XK?Q@m32JQm(IEbQAOi+L4^Ma>xFx`;qF?ChJR?5gIXrKE@4*nFjx}3`1&d9
zH&{I!{es!n8+kB`ZTAs}NeC8;tg2a}W5yDa=v%U-J~HHU10K_74@!QhK2~2B^aSIu
zLyk;q)(uJ<OMEm(=BGan*{5bP1yNjXD2`{-J}a0fpH$W`DW<w}bJthAUz8}do~JG*
z=fSd{rA?k=1v3ExU+VNeI!_dBIMsk3@6LqKzP4ELAqruvCY9K3vDhk&asjvDIdBm~
zZD^;uGI)q`PRN0DiK;XDyszfHM|u6=t@||EEdyT23CNJ{mhcBtqv+24j-DQY(G|qF
zYIp_rxpa(YYX^?5Q(cc)u9v5P{CxlST-$Jpa(dWg`H85$g!zx)Z)kly=9V`7nz2s2
z*5ilMLUO9gRs2hH8L7qJi*&Ugt^U~6CpdiL(NqUSs1WF9OQbY?jY{(~B2UhSs5+4Z
zu;-%G_Q-?S(-3Z!c`WbZ0p(Qp=2DJAb#-1lL^HF`ah_QA2|BOI<P3HQ-8#1mc)xb9
ztf3F8^onJl0?FoOyiu>Xr=Lj6l7)tGdB1S3+In;2xf0M6289rB-{8h}9V~pU1f0`?
z3{ld5RV?ngH~NR+n3njNQ}j(@br@RAHC{Nsrg%0tKFb}3(+z|Fb6ze8LYAiT0<<fU
z{10?|9>W0>L?Wt<k0&j;UEoVpO4Kbhe-weQ@D_%_@-Hw=frSejL+^9KnrXNF7GL*1
zGFi*GTr(XTCzQrs{CLU1I8*b^|As<5+A1m>D`MZ*PX`a<Ip`lH>UEu2;0Fu$D>BMp
zKrs6HuILXF23j%3lwE!FmHJnBmRQd0_)ulJ^L6=VEBGEJK~o??#u5<qBMYa%X~GsO
z{`cCf_c;VlFtN<Xuk03h^{pj)p=v_>GlDq!a8W3h^pZL8P#rUrmwpMA9lTU^v43sx
zhZ?QmLZ#xrAJk(7sHs%-$>=zlpqF8bBh7Lu`DVup0JHK#3In;K$wmdS(Dy5rO65jf
zu@1ei7YQV(nA=)QbvfrRH-OCeox&hqwHC%CiFWzf5$V`LF`Hhsa*{K+t+;Wrl{ysX
zu-#B<b79B{5hAwz`!VU#@CHV(V9b)9xIB@no#@_{CyXj}s)q@i#pk1YcoT3nDT7Bu
z$(JbUaG=GmRl22!A8iKn5^g)Ox~GP6p~D<-re6kr`HM||Oan2AqF6WXkohPy^kobV
z0q#ybpeo_u=d5B@nWd}K$|I`>;{$hIOV&wUx{Yh%*nibPZ>5mAG}K+>=M5d!FQms^
z$uPWCji+Z;4N0fZjtkSD+uRW@lqaAqf!YL1`jG+^>9(Og27|Kv7oBVXZX#k$(^{0n
z_MyE-<3e;caX1>n;AY%Hj>#Idq?7yugFGHqFO3onp-xOJXfQ3*|2Gzz^qk6he~nvG
z2wmKZXsOR#QP@`Qe(bhn(v*sHoj%rg5;vPww1NXa9EZUL@w7jiEQw7D6KpxQ6mr*!
zdp@LCtdj3k*WNY3Ba*}vx5skVaSlE;hIafQ_AOJao?(CCOewEn!C@tmjKJFt-F6Fv
z3Nk~PF%roE%SIQRA4ZYme{)aI<OTK(fPQ$;3cpKc(^aJ>QT@o|W<`(va7pu07q&u{
zawh@%bP4B^@JQ4ni%2beHhcd85jMMU$_xy6<abLUHdG0IF)bt}Hrw7mZ|c4Rm(w*7
zukWpq;E9w%i!S&hI7=ni2Nq9vC+dBCwBO`Rdk&jT8f2NX6ZLm4&#jA9$9boz+%ESW
zGFHd4;S(8;kN9fp)lSL9Pn&dZLLV(-C#R#Vtm1q0r|#y*PlPkF1#so@2oJC9;dBI_
zTUL*wI|A1So!u>iJW~&1?_UfWQRXKo_+X*PdwW1qk?+J1h}IepjV1+_rIWWPISFcb
z53Cx$CW8O{)U)$Z*SZnFC}I@!xEvJjt(7^<3M3Tg=i`!@Ow^=6t`FL5VjN}8<F$KX
zb?%4ioyb^rS-af`t%R!kxzB!>USx+No|J1lzPa2KSKgn?;SW?x7Q&UmH#3TbkM8>S
zq2fq|It|OtX*H}k$N0o4jS5PX#_XA_cIfYRdCai?hXwG9^`zB@=h$dlpEX|s1KS!~
zOK5C$j$OTM!%wLE)&1&wyZ!hE!aB7McT(**_Jd>=ZkT;Z({ru;<5tiBnA@Blj=H?H
zAkb$xPdaY$<(>|drpa~B!=+vq+KsybIOjyPm4U=TVT~OQp$j!k)k6_l#GKLcH{N<`
zCsO!JWIW719w>pOfV)kGdBJ<!IZ$jZW4xk$xkj#2FQL&sI;71~ofyG!sA19epT1c)
zLQ8z7;U+bM-k;i8DqYCs;lF;{MHud@+RyzM0#|#m9wHTu<tN5`ll5S5jqpSH@#&jn
zSL7EqLQ=vZk<7R)#X1?jj0@J@v}&bULk?yc?GLgWm3bu_S>u6YnD;pN5AGMk!b-4J
zeBa8LzoxuZ1aoaDh^(%R4|CZa70DkL3mh1zhAr3sQw{vjm(ByRcWs82=<PvQY1C=Q
zMi9AZwNHY%@4?j4#l*ZFGYtCcn_aiMONvf@J)b}$V(P}>!W1fB@;h*NmZ7)HL60Rt
z?+^fSX_h!_^Uo=v>sHKIr?(<)X%dg$yK5_`E_fxNy!-u!^7lzn?^Uz`>EC^IqnP|q
zMJuE9-UuNus6LvahGvh>oGwq(Yh7>_v4*rH*Gp!{xXPlM=l#QnL|)y$B1@tbVKMKe
z90p4ZW7SRzk0dEI(kpV`k_PF&pmiEc?e`W?ol44787G#DSBfZ4wI<s4S$M@A2LY#w
z6(QL#G*S+okBhT^ggTZ-F7w<HS&~3AvJdxjSI-Ceb(uXEEhq{lEv`OJ-RV#MCQ}E-
zs;`q2)DM_DTQiLAzcty#W1j~^(^s842o`NUp%(mm!8<`+-~OuuoDF?P9P~sYS_!GB
z23L)i7)2_`JM+x2GYn)t57fWl`a?pw6vYRCg>`}{9PEposJa6Oo$2YSo6#=M)iH9H
zRAf*FOrB!l{9gi9w<(8ZxvhPrLJq}CU8*Ky1#`EubxKFNbtoFECXp?_0oN`+CkVTD
zipq$n`-BH@3-+m?!i*I`p@D?x>x<@H1q+mrDdOI;7#b=#$Z#O8#v<dZy$NvCOt$;p
zCB(RTh?ace_FmIg^4IZbXA%sN8@U4YKdngCq;(G^n)osu1^v0fMqTi8h`TTWAmYn(
zsy+=`14LlN%W;y5kD)#-F|nPsXl(SJYqJQ76;WucEmBQeheDZI7(-qa``XU7tJ#nf
zDqldT+=$tzbaL0&`ts1KY_4im;>JVv{os<Vot~fhSeqOb%+vQq1>zrT5L_P{J*y5n
zbEtK2wp&!rFF70;pKAwiv@Y-pvp{NqjKEu1DP}SFJf=n=xd<oy4BX)1+*P_q<)uui
z+*+qQko;7s5>lP{$Z!kM$K^|R_&d+xb@v4v^%G(IT{(KW$=5B3VXM6-vrA1~!dt;(
zTcfP7@HmxQZU(Mq`CZM(ohqaM)z3qSW^<5qa=l-rJQ!ouNDID|=Ca?955~a8Zs_D<
zBs6e$se(mYPDRs*&9|l|5Fla%W`GipHozSuX41NYid(N&Q;He4$$>+YKZ1kzL?*(D
zzj8-hHtezDp*hB{5o6Z<-3xl$4dvhCNt0!6_WjB&woF<A&E9UHyw6i7zgC>HMI&(2
z@C|wtW!N#R>OH4>ZoX#inEL0#usv%nP4yo{It0nZNbakL$+>!irC7!15Lc4zGaU4C
zHoyh&3fNs7`B2RC^`v|6t^_LqV@pewJook;7Lx`>QCRT#mkZzyw^;fTu+#glnBKm@
z2k8LyJid)!@};)n*N?U`Mw&TZo{x=V*P3P%cC_oM?l1Sd%9KUuyN5|%biCRVB(AYU
zK8*zY-u^<bQ+<|k_~AK0cM%i~h&sw#K_cmlkT-`mA&*#C4_6vK$N~ypGFdpv(JVkL
z*a|rVT7q(>*&Fc%_!SWrs-g}M5j2+aa$20{U-$o7D$j9fqo^@RMH?w!*O~hXfcL6H
z>ckG2ng0&zeJvoyI)O<<tx^qE87r=Pr^T|VOar@wPk#Bz@?`{^?U(cQC8Zav>Z)0)
z^gr90Hz`Q`oe7dZUj{)?^t*k8FC-NBP`)D50^e#01Ybx%G)2sKS%WOZv9&0^BD7x&
zKAM=N!az^@!=V!hs+)tq5EIuRU^B))o^}XPP*#cX9N_V4QiX~L9weyXL?}AR5nWu!
zO3o)1m-hAj;x=@`D^XI8fzRE}sih=-{va85ME<Uvn!d@j6L(wG$lnrK)-OV!0cobI
zsZh>yA9RaH%anG$)Pj?wJ(p5jR;Sxfy*RDIJEZlHEY}zrN7KuWa!#GvG)`Cad2=?N
zVY~te+O96oHAQ~bEI@-T&}O369ZVYC)l)v-NzbY5_05TeSH7lP=EfpsP9&M)x_ODU
zAxz2BTE1<U%L?1Ss$-e^&bzIF_y0cT`KX^Wh$y%y&BPX?ttRmH<MSk6xP4TDPpVmR
zcoktKWD-Mn08wZ(Bfzb6y1z+VJjfgK6^O}kJ}Css1r{b01S_^no1Vj?sk6Gox9`H%
zkziXZvVI}sHSmWnjv%#^7`ENR(fP=$2PHxp)|e2S#MlIf78ScYZEdaH7M)m46N+jS
z2{eJgEw}Q&m4#QQ7ka5~j{#$F)#&!a;X++WSXlF3;JbomUD(`cXVj}5+HVQy*t0VH
z;cgzClR5A>oIy)KMiGoM&etfeNa;2{(Vj1prl2i*HE!DvRML1v8$2J=z#baA(7?m{
z@)WEHo5#R=k}Nr4=Dm^@(yt5;IrsqZP*Ez1s5KNT27yu2C*~RZ%P_qsa2?Hj)@wK&
z1A}~GsnYuBa)$&*A6lW9esAN1f%~pNd91HsT2Q||-@O25EF*b2LawU&W0u|OYFCbd
z?wr54x={MFub`IyC(IhblI1KG&LyV3%Q(ALXH8<rqAanpindv@|Nb}*NY8+L<*0@&
z*cZKIR_+V=J5(qWvLEL_PHX}Dewv42_O0&nIU=b9f@M5(Zf_p=-*%Rfm@D%Z)`xV^
z`NUWb;{f0RIDRF+aDwLO)w4u#GZ;(^hTs{#mx*+iZ`U0-YMK4_=u$lwRX^s}+wBZQ
zo+aOK!Ys}bW95MBYhkc^H!1)yO^t3ffIg_uO}R!Bhm8Lt!YtPLyG~5%=ibe46s`<=
zgc5edNz|~>_$^NJKO|iY-wSePn+H%rC}kj_g5GWpwm5GWM6+dAnz!#Kj6>Uqe@ZBh
zRLYeIK$uoW4b8chh&s>o7N*|9ConKbSCnw@=_1||z9LXU`>i>e8xDjcMdE_A24v<x
z{;o<^qqN~?a|U<|GV&Yz<Nh#Zj{Q`v8EywfRbmUkT@#eG?7tbm)$xUUP~sB-5FAFF
z$rMF`o?&?3ISPIV(#ECh09MC!x=acZQVHnlBS0u+;`#vSlzrxoe*HfnMH+X;0TNN(
ze%0TiEzPXbG<H!uRE7zm4qRZ;j)21QF~+*fjToHV0YGXFFj084mJJ=UdJJ=!fQuxX
z`TX-_HG7EBqp@d-DH7#TVV7ST$x53}wO)Y{rRc^H1PnoRJPFD#XTUy}E3Htg<Cea!
zI&2a0_`Sfo)*TM2^0WHOGd?MSfagv8R{bd!(Ia1zct(DIm14-&PRm;8KC$%n$kt`Z
za+LdL_uD?>AsTb0W#kqv`ugv)Np+998agP=%HQGn0_~fXYrAwOcbBS8=4|5Lv;VDU
z2p2Yls<q2k&G<)C_|MKbFZRwvK~}4K*z{3NQp0`8)bQHMsdnao9eBJrP$0CKf0=*j
zs@8TCuk4%W<ba&7y-I5S7{&oWGWF-ad&trE{I9kz+nTJ?kRH}8y2GyKq4PZoECo5N
zruvrO4>Zb~djZOfX2}5Uz!`RWXpu(1JlV}g7P-FT2&f@W$3BQ6_!|6uw`~3esN@pC
znsk0RMO#=MIxm6`Q@}-NGB)k^rnmA6o&zK@1s7ACwNbqyrAzAp?_>cGfK!rirz_z5
z%*bzuA(t$0>^?+Cx1T`VN2T+Q&f`Y0Hx{*?0<yyg56B-u6sIkxf@U1ytT4y~)IdF0
zN}U3#{u;lQyPa2Kf=c24<>5CGcBdR%n&yWdVQmHSTH=k=g8Qkg7YeVtZeoHR^@VQe
zGr<43zf{ax9;>lBRn0bEeV6Ib$=ws1A896~yf)gTb{MwS?P_@}!bh6t%P~jxe<*wF
zu&SeO`&SSprCX2&r9nZuk=TTEH;8mggEUBYH>fmhy1N?*flZgRbi-Yo-+AMld(Mr&
zc=Vw*`@7bfYs@h}V|vzc$UqjG5fS6nUW3o#O&KWKnwjnPg$gGuX6bNa36Ck)+4W4j
zISAsx6wFvXIvpvsY7@N=#UfW7#$$|x0co=SAf@664!jiFF=ZE9&#M_W!m&sS(LjIM
zP78&ay!xB1+E|C6<ts_1*6SnLg&_4ojy?`RGHQg>S}!2f{&wN<nM8e~HTqu6u-UqL
z5kO|RNN{+pbEc7q)c#1k6BvR2?66cz=#B}if9}Hkm@9d(IN}g|a|Twz8tfGr*hnad
z@C^4E%DNh>r|y3=S{>Zy&!a;UU%`j!wJ5ti9DBA8=*ub4Z9C0rL2nlXrDoS_jW?hg
zG4mCXxFxNPj&mE7{Y(eZuN_U|8NKdr<M7s<$r$+~+&?@D>UDhgA}H4n$~>0t-`1U^
zF{=lEv{2#w5<naLsmrM(EpR6hwQ1bH3)6GUxNM5^@F<Iu_msCs4b5MmMU?K%-U>WZ
zleubTE!(eRg#W;3snJxz`S085e`rmTzE7kDwWYF#LX_I5`)gDYa|sPQM0HN8@K`_k
zvTJ;ui0UVBdO4xJ--}lzM_pXN9FvOLC^Nv(^fE|OtL38lv>L``%vAmFiwCTsC;@nN
zm)`WhAhe3$N8(pZ7XZMTe)9zTxwVv?ED0Xt?-ku@5ZD!={TL<9y&C=9NI~7i#3UC+
zVTAXB!4(rF{_iCiz1F_Gg3m@+)#Nz_r~%ZxY(R^ir3o5)Z?`HYAt^=In)!V95;KeZ
za$KNK`Bs_yGm~~5Yl41osJ<f{CJa-O`_@CF>T@&|+?B!J$%|*qQ5%!8?^JQFuHd~u
zq-;Ie<R4GT4^j0sfb7D02nZ>p2fOI__$uTC!nVr%2v>*A7rNZQqo{*Da6Cwb*(^6X
zk)4p(j~_MyDz&ZsClCv}wPgEtLW>kD@p34V0j7u<EGd^P&AI1nwL5gz2{k6mrer_-
zy?M!(=p?pK>zHG#-~zi1{cz0Cz^HrjVqw}10z65bM=SWdx^^QZ!>~gT`9#x1mJiiN
zdUFBbN0#L<N1S)g4^^a?%XQx5u%HytmWO+HiTkF_6bq6ByBV@G5&CAp#@gZVVe`p=
z^bh=D2d@rpw$)qsUAQy^R!bfsn%C9Ae0^4TQ&<yPv4C4ttr=mhmE*0MXq6h#HZbvw
z{UQ7ADfY5pdbJ26{+GoY^KC}8UVL4knc(x;#R(zE&|)H=G@!-#0;zQ7X-z?5F%LN-
z^Y#0LOpBc^CeJnV#Il7zDg;BrL{IBNoH9hzOnw#Bgqh~^cOx~!kwVrdY6cwtRM-Di
zc#g5czrO#tyyUu-Zmr_o$<5deMkf#cimc2etOM(evvf0H8<fmS1uXkwN85GVOc!fd
zAs2Gas&+Qo{U~8ty3xGWv?hTj%>9?076@!4@KLTHDsj#&4@)|k-Q*jUK20St2HXqi
z%Wd+UOL#V95!@~@YGShLsEw_FHu$4Z``nIN1XOf+t`&r2e)liwpPAlj5`<*9ZYGae
zJXyzKB>Y5)NmDU`v`tH2^^!4n|M-{iSD&w<+%02ekA?3>j#BYkk#ETYo(-8(`@c-_
z*$mAvF_2rjR#tj@_iw~R7z+zhH3gZ>$fwEE7-;a!Q^s>8P*oAOQ(3CEKmcu|Q*`mR
zVmd??r`7~!=apkc!E|O=f&taU^?u-*b-B2SW|Y-VtzwxAtb6w&K$v))q$_=p+hLQ7
zaqU{BK5C}Qdp(ls>(zk^MF1^Mv7^0iHJ>1<m`P8$X2m3zpp|GHKPZn5Zo9EwR`c~x
z%^ZSgjrT85YQH&=$fdkiNs+n!u>qZeatsMhw-m*zP1urlg?y(OS&D?DGNM_0U&alh
zF(N|E!NiCSISjl3C3aaNTJ8MKr;NVW1}bmgU3iAx3lsNJ=6Z*l-&vl`ZPjO6=Ws0c
z&HzEH=HB)6B4n`2+lza95~4#ZEAb?;@8n?Vmj+sKfiz$1PCT*t8%ENb@}Xw$I^_{k
zHI_LHb&VFWO~Ja%IN4&GjcSjbM(A<{Ro?fUu2HCY>j(V1twgDL1%VB#<cmnpyxSl)
zr;}-y(O)S$4R&tIm5LX6pG;!j8KBHd1qh7*@{{((KBtO#=-Yp_p*e_sj*tEAEy54-
zoc_Bu`%kSR#s6!A-#f^ftnWDcOZY$`h7V6d<#$VJGpJ0%UcP5`97mo-gqW$X@&dec
z?72Rmrr9Obsk?~JSt6Z1#-vOXDA7rv464@8etxOiJDLB+Qx$&n5vvDI$oe8f!0VIO
z#B*8ez!~)Hmo(^Scm6ZhzLEbTisUMvQi+CvPJ`><r}tTrUj1hzNx*-yfaXo)LkPAC
zIW^#e)BNBqT-0mQ1if3R8iWh8_s#7NfcrK2(VU}!MHE0lK)@UJ8SD!=XCWVn@ETIy
z8W6=;;97+3Jm)l*D$P#`u9otO%IS$DV^Lop`aY&sN~KM1#DOQmW}O{Blrr3~I$&OU
z57LraQFR2sq}BKVU(ZzLFe}W@fvh_grK`bmiDkmd0vwB<5v|8+=dF32M}5}A2RFGW
zT^g*cWf~Ix=o!r!nJH0yg{<G|ic+`kHpKjDDVmI9ir(q|m1n=mRZyTE&F+xt(97f8
zkNJc^z|$9!8mso&)#t1|Els;X^VUe{wRQ$HjFp{^#Wn=S^194)EU;U#np&L?GwP+R
zDj7U@vDrm1ZHlrM2Yn9k4*efL$p4oQLJXo$22F3-@rv6`w94fI8P=v>V>XndBow@R
zW+SPs{@N1V2gwEa;2U!&7#2a8)SDs=sIk<5%fQ#k-ZGkJsBR@rd&b|M;?I&-9BVDW
zQzYm)AbZ{cy#Q8Lzayz)?Qn(x&k4^Krw2jG+xiYGf==~pHrbfH+!{_zjApPNUW&7V
zoR+=WuWWL{YBMz0C>~uXvzGZJ!7+uW$YJBL_7*V#vFIr~g<$M-z*j6(t(mLx>HlH-
z{I`zf|M0SlX%Wt04)U`gdd(OFQ99z&oArRkM%)DPin)2AiUm@Y6hb*+@R<<x4zx-3
zOCPb-V*|8}I1K#6ndMjuoqw&E|7zp-U;iaZ<^$5OM(P=+Nz{#-0H^J2?9rw(CWi1h
zXWJ%g9>MVF+4yW|may=j;y5=JtD%8Ij)lqpuQ#xb*ryE)NWH$hKC{3(P@9L(QokA;
z9ZftwKCT&qm50AI9f=!B=SB7JK*pivQZxWn1!3lXIuy!IB<R&dr5R4j%Q@ez<r*kd
zB>LoHWQYB}q;}EVX}|J05m@PNNO4~GKi9wPFvP#zn~i^EX!Ta*KQ@wIoT=6&od4QK
zEU7-~>L%<{mhk=GDysk7M$|hoe*>_eP9(Wj(*O1bwxtBL1-`WY!()t(I#YaN-puyT
zpYT8arF}REeNs}0SAs5Y7}QD~d+!rGi}&+l<aVu@r%Y&KVpHj+@EE9B<Ea=J7+&j`
z7Z%abvB)2P`<6eroGIO390J|zwb8b_O6QT(4O%6)%C9W_<<Podya=&@SPQol7b6`b
zZmd_^5X4ombCt#oJPTFi=v+++ZUYFYy<&QfilnN_T8=>_Gv^^};{RpU2?c{^Nc6R3
z?|(a&|GByT(-Bk?AS5TWtdv8+6#44?WNJqQe_ml$`YD;4e;i8&4t1FnChD8o25D7Q
zH6C^YT?6-(9}_p_SkU!cmi+nB`TpZFT1jh#>{F8Z%24J%iz@U4%n30^vH64OT0A)`
zVcxfp%DEaM%&&iH4aJ4ftSI`2hpn<xivPR5^G}nKx(?FsnTH*b#T}0S=QjaP6r^{N
zV^B5>X9crD6lMe_To;(~8k*jb<0e4lybLIr%fHpJljBbp7bkSb3MAm2e3v%ZS~O@$
z8K8f&H!C~veI)MuWige?ptP}xYXB~S!N{C}K9k+H>5{aZe*4(t-BI&BJP<E@Kt8R?
zM1@iB^ukAr|8hV5$C?)krPS9<#}AmN|9@Sv<Tps~rWLbm^f%o{|CG+3FWl=VpKOO-
zYUr9Ev#oq_UAes2$xA)!LWM(SW5KFnmwbtd9G%vry>-upMWM*EEuryuj@Rw87I@x2
zn;@lu@`&AjU2>+d6@Y%B9#_Yz(;^lT|Lq#^AG=iBj!0W@KoP2I(aitrGoc#TwilTR
zX%y#BnL3-8R;EJ=BxZYPwb?DT0;)__JcVr^MG%r;tR_Ou!WXSs;3PCQ5lUzQ63jvk
z=k)nBJ_6@&{ij5nmPwDXkfno>{O3s?;12Bj@-mdUK@!Yq^4Eje@O7a451~*4#+-i`
zA)AP<+cu5sLH%iFXFt6lpqAukWeEYQs1mq6PoI%I0$%b=M>E)6kBy1=-5jCJlgNkj
zwPpGm)eQ}rk27=0g5F-~mkB)jSP}*X*>Q=9rphKa=ldqz-|&bws%2)y^#K(j&JUfZ
z5AV8<DzfS_i3iL<<v|jek3p$B2;8diPzRWEUB+8d=QpT&p;Yx{Bw(~0-3LTM3m$`M
z+;_ahZZ?~Xz5L+eP@l*ATstl>;dRoPcRKhZ&*NB2_Q1>9E;6gBQ-|ARO)qZ8<ZY_<
zcRb8UuoBnoDn9;iJJf$)lG9uW<gahRIA%16f-AN2v@j0>R1In$TSXjot7fph6RW@g
z&Gz-W1UVYaZMP(Rz$Qcs5&n@l4PvH<oQR(uAsSL3v;kS{SGNvGbv&-jyepP#kU=M}
zO#?a<GXuU@Zx|63c-_N!KUqibZw?R7Z_ajSc7g-ImR^U8hu7cadNM(auM4ohP=HFT
z7f1)Jm*e@Rd(J%zhr>TtKE`v+?#@2iNZhsqac_=+EXjNPsgUzAp&bgY^@AW8gkgWK
z+TkMMu|ihddCaAxV)+4IMzjV#1yN!%{~G`{mx+f2fMMFNk3wLnbAMlTv)h?H^(GJw
zxY!v&1_uU=!EM7D)(pNQvp2LAos_3;3+w9U;_z@l9cmmRlg^_80zqE5g5kzk6CH~V
zz?@vOMY{#R4U-5X?D5bA=o~13ngku9TD(}E9<P1{C;1f!QZp-K)}2`FH=|n8vf@&)
zw*7~kl01iY@eH|cN6J+AoXEqI$>Hir#AHB9`o})`KOO}C{7?OGp(n@lfW)|o#B3oJ
z1cf2@2_ki6IzG!8&rj5)?+n7gsB}Dlal>lUYy6&U4b$PNs;Ulz5xrdpcNgdMwiuI|
zXV^tj<_I2Pw|A5EDX&5|2EfH@SR?cV(s@koUt&>O{{e*Ywf2LcrDchr8xTLA|2UJp
z!o~|@A!j)D({=>>6Ns6aS^B##<(rgGDjr)q&ZM`X0cBV+&Gw0$`K_vlPf`P*`=YMx
z0DhyxH1D0uLT?WJT7umUYL~hfP`1PO0NT<Xtdh&|8ZzN!@HWQY-g;aC_~!Z}daLWx
z7o^SqP_#(84ISAH%|7L8F@x=ZO8=0z<Q5^{Is*$;Y0aqOAKT*psRywT>`zcl7MgJw
z3bs6tQsRbEaHR}_EGXgc<hjI98l0m|GQ(p7Y`mLjzl>iS|H}gQkMGh(9R5Vi_c1xt
zfXt2o#SR7P8^V=?VJ#Q!r~@-}{R5bjevZ4-!{pjeF@FO)V~6fzBParf^BjTqQP?D{
zFkNo*IR=8?r2^5Rs9}CFxRyd50m`&m3`2DkC0uJ{50?^KD9JY}Mob}}=9naVysv*{
zQnRp(;<34(TV8>(GOw_30IRYb9`Oj(kQ|>jm-z><ThOR?i}r!1Z>bMdsB}?y6`Ict
z3Y-rYBa(h5$mtl~XyszHt$r6UC7e<4Dc^}jAz;#^#>8Zxrzc5v0$dbk)Y4x>&f_;9
zGX*@?A7wX5Y3&w|da4gBx=p|9ZG#;9>K4EwMIw9zwx>wW_6RkKzd-Ao+;`fUd}Gli
z0%MX-dDpM;p@)?7!egW)grc02yxhK9MC0`ESN>g;Xx{0rX^LfutyNnw$JuyrK*_eH
zy4Js*=PVV<ukaywd0?_D+F}W6GPn*Xtd{XsRv{lY@SLJrcu7_Z3)Oi>g9Bdu5!bnq
zv=-(qpx2>{rwMINs%f2f$kd^!{rT~j=L@JG=LOTJpZ@y>CxYN+#jp6S;WVK>^G@xt
z_GxHRHiw5Q82mU;)Ts~|z#nlmLril_Qf6X^9uSA*m#e+M(5*8(j*L;$X3TH@0*>Tj
zZ3X6Z?}mC_W+K7a4Xq2hd5A_o`*!P*d>$kd?syg=UynR2>%5@$N%m5jen2`ur%H@-
z&P?9<c1_KRprY9Q;7GCBxPE<oYXG*j=x8#ntO8l)1-~&aq;{b;QQSx%CIb;I(Q&SF
zW;?OJH<v6STOytLP|!1zp{$`$(cJfV&S{TPD}qnE#brZ7<DElcXr-Vi`L{L@WXK4x
z0L`d9PK%xwG(A{wfE|$Fz}+X1mj~!I2@9%JI*ngm%)?7<KJqK4QSFY*D6>Pg$}d|V
zZd#vHw3{#|{Fp4n?FwhsY4GoTfgdI83uNSh`e>S6;1{JM^G>TXHB3ffNAVSZA54>G
z6x&1bH#YN@dgw`uLOZC|>*_Xj$L9_R##_opjC$A)=Cu?f1g`%?0bJZNfbA43@$Ww#
z%G!jZ&ob4MQd3_F(2<MY@2IufGk>mrA{qJ!peCuu95mqvkGFza(;WJI4I?}sgKcOy
z>vy0G#)q=BaCrni0s|k(12a-kz;<pheeVM@8loPF_s$m{vW@@+8*n9fx%{*qkhONZ
zD%+l@tyY<U;OQyL8Y^K0ml|!5zCD7yqaZ;_11bP@)M;xKBKRT#A81G!iePL_kdXDf
z1+@D2zm+3C3Bq5e{6vG$@l+!#42d>a1yy5H2;uFJEUyL|O^PZHqF-P%zhj>Jhe7Wj
zPqU9|&=cd1iF!fF%zbn;q(INShw@zCrRWi9?i>2SmTS2LF9EsZx!PDfB~$5c*fYxZ
zE?4VD{UfPH%5Cr4_KBOQ<_@FbnF<NA?aAguT&F+O4s?-;I+22E&(UTzQRWF6mljQL
zKLp<G4gFO=nVNl`v8;N_+WG8Ez=cIk{;>0dq}Pm`;$&H^Bg`<jYW`P?5`hGL+TC4k
zX_G;38bxOWx6&7ZbH;7Ls><H4XC`BuqPxmAh=E@zzvgEFz8vo)hD^F9MCcKWmCivi
zMGEu{xytI4eQ*w^h3W;P{NW*9JE)y<%prQ2GrdE;39e5y?J4B1-W2==A>Z-feBJWJ
z>)XT)e$CSZ5@^-8$Flv3tU=)ex8#-|>L=uOP`?#uWifJIY-Y0dUD*Vj+6}2k3CFgA
zBZelV3`7L@#$6(`)`~<=!{b-=DW15=X=ihOu$_gZM=`&l(%Bx*4RWY$0MkT>WvEQN
zq~Q>YIhpylc*Q7`>Mz4$P>@@<zo&|HOoL05<j2>`#al12qaTXNvGPvAnM@_q3Zgjz
zZo(J(jb&^F%F~e8Vrq=|*>v8})7y{o{Iv=jbl&OGeAQJ426`x)ob$C<w%O}5`YQWr
zQ|pe}k}QjDUsX^dAxE~n7YCuL_%SMAtVp2Z6L62C5zy&(GmogSQLAOV=lk&|HAbsi
zCyf9>grT${x3rVurCg@KLVmj@8}-b0q|ujiUqd&!R&=`!(TbfpHy2}NVQX{o`{g}V
zi57ZGcsW}v^ZU?aG#^LIzTMvvDAzVPj3h(1$;op3;Zm_mzlD$8t>~XM2O;nTon|V8
z7j#Z=qQmi`hIbAs{_E=8rs?~Htl^QG9Lmr#2j4V>mk+gt@s<`0ey?o_iK+RTT|NG9
z&--Hm@tFxpnK7Nk1oe}oU1mGfWukY&$<NBf#3{Z~yABHFv-}h!`#x$1s1)5z0g3_^
zrMTyR==YzW#>X7eLWD=H6?HUe8T_Qipxc!T6`%IzoU?H8Z0IZLJgHE>Kah9pxJ$OS
zxvhlRWkR+VpXN0g*DEKKM7b)_HW(ox)qP3jv`S%s-wokz_jf)!R@{d2C*+xTX)vPE
zDx><jF%U4ubS(127X=PZn9J)5M=K{JO3hBtK>J6iVE#p#jC-)6OvdE*N)2Z^5~(&?
zqU2&vY@P#{)hCxQcVU|6S)yF)QT`_0*sNZycbvkyFWy%9rppW7DT9cHb=9$$=~;ha
zzvuOV!<mAuuZXBLLMccM+DB?t6Bw;HJ03uCI8rGC1)I=w9zfzwWB4@i$nW0hKxJ{9
z61r@+kJk{9#&9YRWv1@IPC~(Nsq-SY7XY0C<|GI7dYNbM`!ORw4JEDgbOAb-`%#I1
zOawdVwDY`SDf4W>z6bRYq&I@pq}}(KJqSU;#6?-b3?o1IsijLv<c=9;+f7P?5s>Uh
z8mx^eYqwP(a#!_mK5sLV<u<Q(yGr1zBIh(;h+Nmo_MD=(8yO)76%ZM8m+YuWB*sD+
zsEB*+R1RAwWm~a={oFDhZ#K!?4&SLR4cnET!DDRgfmD>~tg4!**X@KC-TeqTEL&XP
zu)4U9DUEu<?B@S0fy)RD5R4;Htr_bXezCz}?SmmLM=_QI3i>dz;=KrBjsdKRcd(_^
z>*OW{cp?O@4CgTCK1+q{k;g*GS4*Q+Zo;4%!?~?4BtlxLlx`r0c@CjqxQqb%{4vz|
zv(s4w#nWHb8HZk8rKAU)cKEWpc-Y9lK^@bH*<+!6dkLn(-{Z?4=h^Fp%^UZufnyDy
zNr11X;ecoN-M!9?ARV6;kR$lUEy8bnb#s*w+M~CWPG9x$3gA1%^1po<%A1f_-%Ig`
zdyfOAQO}3Sli>Uh2)j9MR@Y{Znb)}o(?ln3Ew)Bs&lKZ(Y7#xPZI(G+yKE71*=D7B
z8yb8Kp%|M$s#-cF-)_2?iqX=BG?c#4qlM@`G{?!hXk6<iCEaM9pEE&k{aXEpcb)q$
zBKFjd`=3Hjhb=m6y?-o~{b=aiAX{V_ymvMtoZ6jyPt)4_T#@aLO5?A~KII45k7G6#
z+f6fv`Q_dnc=ds5OlgcXWD89BdII^vW>%rK_w|lMu6_`$X5*Bh=J(~qT1x4vx)5ao
zI4b<<?#_sR96XN;*cR!pLUEB9L|WQ^%A=TmGIFDuh?bUsj?ZCX4$bH6KZUk`DI7+a
zW8$Lu4nOJyWIfLoRS*JFcs$e2E>D~y22Dp^I3BlCtFv+kGP>L~^BlSTU5s_!EuCjh
z;+)l(D%42+_$ShH<%s8~&iJh4r|iu<j?=0GeCYcKA*{*N*i5?6#jDBg%1k-;4@({u
z>zf<A$J9g)_I@55Azten1bs6$)6Sk6Kj6NUPgB~04EE`9WWMV^xfJ*<PFy`(Pcir~
zduHY4g`PlE)onx`lR&D7UsT}ch^O%mR-yEfWBE@%<_WQTT-qkSRD_>q2aX%rEAT8E
zuXcru@VtsvALvv$2EHV1%^OI>SNY$ekbL}wTgQ6=SLH|~9}Fm&f8kI4Gc<y_y0LTd
z!3p+v=p97ViChq~D&*S2sNXrpV#633*on;oY~Q#BUa}ebyT6i<de<dN-$iMfCM4+_
zg(O836UCyQ=Qo5`68TR3$zvDUXziAL^&HQ86_?@MGpyog9dMH2XiG>wfP3!{7Q-R9
z#_-q`psU+1MhX2DB`><N2TX9JR%Q4CNt4^lqlWqAnm0zPfPmtVfRY<;+XB)7UOMZ#
zW{5w_IR=`(#um{}Gx7>6Ktlj*&&a;3txUZw(uj9qEUjfJkxX45`@T;S(G>1fNA;hH
z&DK2$93sSXys68U6(=O+w$Iyzz_>Q&t~OY_L9jMgsPFjo?b<Ns{1B-~Pna&R*iVKp
zi&Sxa&)efIf_5XWLSD;xUG3c%Z+#}|)rNo^tBO!x{h5!hUPNwk<svR1rhv9Np`yv<
z5fjk!HUUuW*e_uImU|G|x|@rqR++$k-QSVB&2@grVRz)EkzA!VXnbp@!`kDLaf0@q
z4M7vzC#StLf49BbSh$4u$In<t{$);$#kY2uwkz!y_M{pn!mM<)_wI7(j_q(ub56!n
zc5=FRO;`Nyqca4(r=#(A*OAeI2Q`8D=J}y2+>vd6k=k>f;K2U6ZmoMpYCKh@6iU=r
z$oM`)1*|AmbG;uJPqS8^#U=W9-CYlWdDOJy{Eort<pV%_Bus)^Tu83I2b=S}{xt_h
zJFuTDtDm22jmDaSJ45OocG1TO9zed`d=?S^mQw)gKtJPu6irH9jQe<M4kML!V0Zro
z_h+((qOa<8HPS&XFD19mY71uW#Bmm#r)6`n_T5Y9_}?$-(5o@VAB$J!FO5<8Mh0sq
z^Pab|ABN84jh-V)l`&nQEUpz9pZAUq`r6#9{Rs9Fjf}f(qnVE>(0hJmDs^aeE~_qA
zfP%}S)Dp*?+43515P!0NjSScE4{ft|LzyEnxW+b~q6{Qa4Vs3b9ye2~FeF?_?e1-X
zThzU<R<x^L%fZ~D*;vAaLnyzt2HqgSK*!PH08C!jF*b5eo{9Q>>)3wHA;07_kyp<1
z#{Jd)%mFCbZdqGN>}x;2G$G+R&q&gIm)x_wyDXm$Hhg3J)`xmVFP23ooUNQKfkw$*
zruTN!IzMa7kJ#U&zf-}FxMJ-SWHEu*qoU^Rj?7CZ?$<=++&Aa%^(M0)Zq()*->(1m
zs22~IaQa+6XPG*jc9znF-mQo=sc?N43BBxO$+Mg*{_R2hd$*0Bx=hqv?H<a~18H=+
zma5gMMICsFt=?ULR=j>o?r?u4txrRj-N&@3ud_{36)t7nQP2paU#Ui?oBnV8zl{6o
z^bjwp_3Dex=KjMK_MeK0Pc@v6FS^dtaPNrI`E8`+yYW9+gK!G0E|HXI@B61Vd^RGN
z)t6dl?)uLaRiQH1h^mN<r$pqL&8Kmxxbu!Po+i`&WqCQp%Jk9@<J|Of$6i6NvkJco
zo27$xV;yV#`~r4z_DO`;&sxun6Sv`z^(8dwY&BT76LByd7m<rOhEZrA=AXsRr03`4
z(Et7tox$(U1Cdj&YL7|!2CA+d{n1#K=tv2{Js3&r!>K2;G80zK?r)7664yG9qk&53
z=S^h^ddr#S*7DEvwOQ%KXf1D(PX9Cy3$X8(1Xa1r6T?%$N8ykk{#^d>kqO)IE|9Iz
zw>m2Tm0%~^Y90w*X0HfnH@pq0_BYFZ7~jKeN+tWk)b$i8si$G(oIQ29vg%z*B10g-
zWV1M|TLaso^t`&;o}xitV;87f&eU(NZGr57deDi5l)C+`A*h>Y1y~(7i~p>M+-3Qp
z+iyLasaF5pk#8pIJ7`aXx2j8ONVr9Gk=!NR;ERizEf*r`m24h>#ZKRa7hC|VB&ViS
zA2J%cTvrb+l&0^RBfBbRejXC<M$RQX;`{k|{YNG%;jcNKJm>1vLJt%>6S@Q8nk*;t
zbCaHP&nR}mG%b2bw(x8J)4;KFphET;j7>K5MeaJ#P{?MGlwm+rF|N=-6dWt@okK&+
zc9MSB+C8BG$yc0FhQ3n$r&9Jn3h{l$wFIT^5@x*JHgqoy0f`wp<N<6EUuI1R-lG#;
zsJ}ZcskdVxuKFf~e5Kfn-No6{dF?~PRelNdkae&Rp60~#pLNwMC{h@$g8P(%)u+Wo
z3#^%*Ite*i{o=LD00Ldx1icl^$KVosV1jAjVmxNcSeqkJW8QcZcn?o3Skl0S$S}ua
zKKXj9Q1h42Wk4Jf79K-kcypQPdRIs3q7uj%8rnRJ{}?*O-xm?)-R;A3Yl?Xx+=IFW
zxA)k84I=9r1tA`t!_5{CDNmi5co&%bTOrK#T{MUc{wGf0wo>O=JW%*9zggSeyaIRi
zCl)H6%6tt1eAH<JnQkLe;pvG){$69EvB@m9S?##wc6ldD{#rz<Wyp7br*)?tI{wH9
zXG!`lc7xeV0$)z1FIM!6*Dn25OS0c;dF1H7dy+G>h}%SKfAh9?6cTHirTLj6D7-1?
zmNco%D4)@8NGt~A|5su`B=)xYA)kMu)&tHCJoc=HuH~o3X7>yG&CPyK@R#8_fej|m
zWDboKCrl^q0@2KtMY-v=O2u$x(fttbH5U$<n#a4@%f3Y}Eu0>S^Re<6Pzq&LQ?fcA
zXuE=t4lRol%_bfGr`Y<f>F8x@Hd#2)$%l89x-PZhHHmPIz+KSvizgLQRw5z2b>@ZL
z<D}^vst<)y+cus{5!M{&(lv%OmsZvg^tns_rh?nPdBLmL;`wI=PNV$(+hVEkLMjPq
zaRhpC)KA<CUA+b?Xe`?AGcKZsOBJZ&jvBFw>3pfyQu)FLWK*)$$m?)tMhu(*3_8<G
znkc+yQD!y*fBGWq?x+Qbb;k<ar$YirIW_dATldiV4=06F|J3Zy?6T-M&uP*}@JhDu
zU+nPM1vEDde)n$TyToKD#9`ij{`<LDr$A6-97|-Ym}-LBWVoJF+)H)e+4Y1$lI)K-
zRWE<5HK5-V$TV*CyCs<aw5e>3n8;hHS@<dtaXWL7bZ4?jm1}a~VB>E$o_;SV_*)}a
z<9IxA!gZGdetawu{bd<Tdd+Y3mYXv&ZQDfB8ppfkCl?+%K~ph?W)`&zHHqD1mQ+gC
zHxh;uFqWb7|KgDy#8h|gGE-D(m~3{qnEm2?ao-3v42WY%-&)jje{gKoXX`~tKF#d%
z*X(`enV0o5{oi#CFT$Hr+!~fItqXFu@r)V#ItfF`D-n1jxsi+fNqi%yj)A042L(2K
zP|IE05iFv^h)%?XV$_Lc%nu1=poh3JLKjX)`S}}AOARx9pCVW^HaVkZ-AW)u1tt`2
zdLz?i6<JOEMox#M!1nxNsbTF=6`3l6VR~I06ipblU9*2q%?9KXUtO*6sE!eS()y@w
ziK}iMZGoG&2sucs=j3mGvT{ef6wA|V^@{kMWhZmIn>5KfU-JUNcIlg~mmu(KsxEw<
zy99G-{Ze%4>vPBk&qDPc$#S+!+MAo%<TvC|7<Td@@qDrCNXsILner%s`o8TUG6*8+
zho1;9lIuRI7~x07Oi<t(UZMKPI6lUn$^x{U8mtoQn5v60Sktacgk6ZFYYK{jAl_#v
z8brG(N>QMg@eR9^&=fP3{5gfCMC2=`iv{OQp@_YyqC~15p^u{E{BP_~j$h=x91v=`
zJ%(I8W@a8=<M(JA<3F_dUGd@VnCyurt?~G@<yyya$kJ*RKVLN`$&Q?yCu}dw#rCUT
zVm+UTm+3*+g7oKwi86koPsU9gsypk>f42rd!5}7B-61L1=(M|;g6KL#7wgM{@8)_S
z+~imH)0mf4(Vi^f2)N|-#!@Jpz=z6X@Z)Ej=Y5_X^)o)<Ja_Z`Sm;}1l3CU5(hLx>
zX{MC2Yc@nP(x28Fx~<AkE_7`Dw1YQzt^xOId$mUTn8q6DMs`vn7HL4@p-PEz=pt;R
zr0r@_w)UhrHDpEfLHjAD-oxlGb?_qj5v-7AGX2?$G0&VI#^N!UuARzPL=KI4uGWu9
z9lhDXKi3i%K_R`{fh8O2zVTUIX@0k{Fi_0g5UGk9K0Qzm3;Qym8AqMY<1nK9dVpIG
zauw&C*K0TGZ@^UX%j}}9!QQ|y!r}_ixgT1KbHX>N!+ishpx$%Z*)4rT>dePWQ&E10
zFCm?Hhusi5z`fMxOBaD689>7{9?sDa0pn<J4&O^_S>|Nd8dxt{Oji0{(Kj9Pwbam1
z`){_%TCP*ZkLfvjRpetkJAgUo92ojyu`ds)F4C$k9kJ>Jv7&fhV%5qEs*#}8n)g9}
zw#vr1e|;2YGka=RfFog8aWCwJ2e@|hUB_9{K$4tT;F(9i<Fv;~GeI@&gN@#Uu5PQt
z5$22cf>)6~PSFkPbvdP;#=nfpUPuMx^@<qw?;YY?`JSex6DG;@(nFrIvzBuq6|lJ=
zM?nML>X6YVve?(#+hdoF51M*yF%lYfN0FIf1;-G7*UIGD#^yLGyUT)ujyn+q=5>7I
zMl~LvCqu+X6pX?1c_vI<rexQw`CQLcRg%6qt@U-e`DOBuyImOL-QK*uVl{iTKskP_
z49{}}fnwZ->%}WERhbeMFZ9dql@a#*%=dI3aSP&xlW;Jv1rl9Znl@@iRCF+BAN)o0
zX6`#VG$xqDq-pR}nYC9L2@^&$5+%uApROV(Qk*eftuttx9{i4CMLx1`3km8msbKy0
zj=?lDg0J)M+w=51sH2pxF@dG)L$}J&suUSwUT0T@??m;XkcRUhsmXSe22}qVgWY|i
zc7ml`m&;~AY#ZkOH7=1caR7?9!lt_T`~~qklmLGd5eG`cZq#$Dujo{BdZ2ToE9c^>
zKm2j+jPO`L2%Qw>|Fc#9<&4$6n8#wFjUO~0VjP<;!KL#GAGL^nAm5?P3u?S5vpwxh
zx*v$^w7q{`y+pE1IopL9OxZ?VcW8|>Xlvdb#??npFO%~lWqro6#>x{(Nc#gmlP0dF
zzJ+H=u@x3I3x0Q@J_ioO5eb30Pn14tB#x`VpvFo7Aqn!$f#vowDmY%`R9eDO_nSMW
zb)aW5n^9n8IZ_A^R>6JuR4O2)2jf>g>uPz@b35cKklQMvn2oA_7PP^OCwTZh)w;0V
z9^`UPrz-j773A%)8sIyV2VCcgFwN0v7j_GT4;rIxqcxo^Mozt7O0gF;fwICg_#kZ|
z*3O1UgH2^!0S_h&26sB!4vu=sW<*U@<S-`rS$fmdsy`MSMU|2x*vk|1ekrc3k{~Jl
ztwK)Lqp{ui&h|&Bij3G{dx}JDcymU1(vNi&q%ga#*4?sJ0ctsO{)VY@TQs7N{ZQga
zQ<1&|ZD%_Zi-tc5Ukd)Fg`kLulPZC@ROcBAE1y&3gC-mO64fQP*BFMM=namZiphIP
zpHl%lrZ<_p)eri?$hEYe9D;&ro{T}1QB<DbwWHmWUnj)J*NZZ$7QQ1m(DbUQm9=7-
z3D+G=Bf}BRqQQE-*BD=fe$fU{EAt<L-t*>a-HYEc+G?e(3qBKo1>hA8d~yG%X;<s#
zFcN###CbTD#d$silBt-s-fad+&D=fw>7Y0Dq(yxt*dZC<ggJ2A_KxP&7a$olX&L<f
zAx{Ppz2*o!Sfp~D6<GgPv=x2@8h2+2zJ()2f<ZNTTj<LiY08&mMH}y`W~GBL$PNT}
z{yZTIc?=Cr-G@LpJr0{CkS_F%gGg&Iw8y;0Vy3ioK&vwf-X~xUepUOgsO{UP{chwU
z@;6X_1-%9L(&D6tTuV2Y(}Yv!zV_wJL)}N|PjYeL5p^PNmMy7(#U+&_&`|lO@nWO#
zM=84B%<KsPyMAIOcW9ucr<%#`p|f0)^#FtO;2y>U&MOSqoy!WrXEWnw&yhGlJ#9`Q
zEb^-}xZli%<Qs0^mZz1zv?kl5L-McVJYRTe^N{Kd0iGWX0na8Gm+LuJd51l;hCgxT
zzmp?x>B=uJKDi8`Q#T0&9V*eGC3dN!h>_!YIZPk!c5SV1NQ0vgO`t{<3vIV+`qeV?
zRd1vDQX-;`$G6HT$*c65xyfi;4yUtYY}0PrbHN9OcvO6g^7&0C#ssE=#zhUPJ%>xA
z<co<Uo}+QUTjq3<E4$+}=fPte+Q4z~JGXkb&L=jAiWCWGb~9lgdp<eek3=)LA2g;8
zdF*i?>HKlku=;nOi%&JY&!Gez?xBIH--QVbzLF3r`F1sPp`xetVtt`uw+8jQ?3dUf
zOswb%mPt98#;+>gIJBoI#V5GWry~|oX+0eLLdM11WZ&AYqSX%O6_R1J!xg=kF<!ft
z-I!9-o6@Nz1>mg+!a94EMjbM9)rM|C*Q;m8XQ`u8QV(|ywcN*f&l^sQuCokkI1p^7
zf^X#UXiwuw96{_R&qX9Lq5^ruWX@5IRWp(huHv!eB)!6}RW%pHppHqUU6#)6k4EJu
zZuoCD)uEo(fvC!{o8nKfJ>opX!=w7hbA{X#Eu3CdBfw)KcxHsF%XQM6fWsFiuM_#5
zo+@HU{F=<`l49ul^eoa}<j-{)s!;PJF6bK0Ssd510uG{a^u!^|-4xMVfvXMqbRG`A
zJb78HMJZd<;w=nH(!6@djjvD9qk#JbMq|qO*wK?hw(cJoGM3RVQ0S(kuprc8EHBUx
zk!LceR|q>vvE(ywVl&@XVPa7H#C~xc*U#1S5pn-pY>%$IK*(Gz%2wiw>`=RvSObn%
zF*MV}uC%sR`uR~OLry^ulhQRAu`-O~>jZ_^`0mR~5bU~-w)B};8~r2$t|0QJ4^T{C
zt1t0ax{$5=rdD6$qf$s4dSYX5{Zz=+&LoCd=D(UFbB^rnh6+Gt<-a_PbrYK-D-Bwr
z!`5v3Kd5u|Aa4<Nm?|AYX8%OSSDceaDUIpc^U~t~R*{jn&TjPBai1_~+;r8I7$50p
ziD?=^)|I=8JbX4DQeXSI0eYy5rp?((_yRq0-o{RBnbTFzS)2P}{;M*fI(>1e;HXN|
z2HS*yZG4(^LW^sO^2jxxN=!BLNN~X7n_k&=y?bIsowI+i0PGV9V$v4~bY0k3-=uj&
znf}0Mph-nKMb}n8neYpHnfOtC?y`@z!@^4=l%R6;v**nCY^7<*73qi~#@0wWPH9sb
zzq_2Ow2AnEz)hH=3IE@=rGR)LTCk0bL6L;$#iX}n&_e=f-qO)@Y~C*i2Ph2sG22fq
zU5qXqkPV#HzDl?kjdWB+c1J9o^Ds2<Jtc_RgfF5OD2Rgp{&1+U{r(h5;&zwKSS^{l
zAS6JY?DqPQK*|L9;#9NUd~hcrBGrmKYC9_C(CeoJ{p8>N_tWX8!wlA2$A5#)+I|Xk
zX#L&18DHk<%}e%L`sLKI$#?UO3Ljg2lI4>1MKM_+==j?)$DI9MQe|PmgS|9T!R*lE
zIbKVToTk8w`Qb6mcM&?+y52b|sz`C90!iqH5iG{FNbGMRg)e-Woz`#-8?-R^hd1QW
zVNx89wC6Newy`#j!CTw$*uM9BGU&|#S5c<ZI|AM4>)Z%c%Xp!KV#8^yzZ_FHRL>N6
z3AFE<{yeF-8z-Z5&z6=qBG44D7_~vyG+ic%l|QNOV0FN9sU<X3>{HGOaEl{LA<3Ly
z=ZVtV+KDGdye^2Ul6ExCJeTN>q+@m?k+tcypo70TNKHzcSQH&nRP>Q=qj=Q`Piut(
zhaXa8+$md_Fa^^>@+bW8Q3Ug18PH7?51LNoB))QkVP+AF)F=XS*Gtv@ltxbri>rdu
zQS)qi9m`S>!Mr6v7^<44=eTfd>(k)4t?0b8l158~FV6JKtl5q1m(jvCKGOSn%eO0u
z(zg}8CnQoI=&8{O`lU<Pxl%=D?Q*8aS67K~0>!!e(xn4az!Zi<L8>)T9bwM`O9vMr
z9%du?Hx5;HBAgZzE<P&`YIFW5fgcXKYXiS{xR?4zUR;$oAy-7X<E}}CH-AnBXFd69
zp?(Ex@?UEr2}bI>$KXN`Wf^LLv+rB{(_g&U#7I0!&q%EIg=^iHTzG{@yLP9Dzj8kB
zn}06nkU~PJK7`pS)YYAr*k5nEwyLUi5~B;KTl&L#D=|b~`!Dq%oov|Ul$M3~>HoA&
zTARTBphr<Em&!RzV}=fkok|b?`@KdjBtTku<U?vPnrIdU0*c!U<XGir*1oY)g>}ZR
z>@QgUD7i27;5mHH$rDKwB*&$_X&F6iPR2!-BovZTRnzSi!1n$DNiZ757}Ysx{QboZ
zi7FkBq?kmZ#*3$9%cpY?gM}lB!&)vod@^_XmRN~^CF?X2uO}Q!(hJxcN;+w99NL<a
z%FR)BO|PSWeZ1p6Y;s6izq?S9FAYLYb*1}t1b5))tHSVTV9;HkLU3_-=WInpwyl2w
zTp0~2*%*Siwtp4*_|q8^XoZ$RQ&P*8^e^ZsOlok<;@Vz*eM4`)<>i3@91np)gOtmy
zO=@bzlFF}MOF2$O2d>O<$(0kTSLc*M^J&X@pr^fEh#!P+Mht3vBNoOb>(<2UXd<G!
zaRlwNxqU(_m5o1OGu_|Ey5)5wQK~^c9tG|OoQ-&GZrHYFrw@q3C7^pp%V}9t-bL_#
zL~(ys$00($Ig}WW6&kqlb}Ntu_f%2_Hwdoii~T&FR3v{8Pi?OsGoQxuhfTDL-SX{g
zg9(^WLA-P!M6GZ2LJ$(4r%O_roeTY2g3+1v<>__cO^wliv2tO`Abi<bl?<qCm1o2!
z`Z7eszL)gYWXotYCSt)|DiUsYFv}`1@Z;H^ac*1pnK!n*b+u?jP-`JVb)qPg1cbbx
zr||FX-228Q4w)rLtKC`KgYjZ1x&OAM!)zY)LtZ1=O(%F>#>p>eKB~TLKn+#>LGzg0
z<#bVpeD-WN@NqFNnV4E6V@M)OG3sBbwvgv%X^AKG9&II;*Ia>~a-LFgzL_|Z5FsC!
zCrOXzLsA!D!vf|@(l1GmBZm=5@!_9tt{r;N@Vi#MCdKPCWtG{LIp@YS2ixu{M#4qn
zctMi=FKhafme#9b8<7b@X3MD<?YV$r>7@Q7{fv(^2Oj2xX1~=a$=76iwYB(q=f3PW
zw#womx?(u@0%S>;g>KIif9??jBi5sSe^MUDvDF<*ij;yT;9zXfvf0&=_;gUq=8M;v
zYTfW=2p*1KYgN$UwNkH&BP4B6@3$IQCDnVIzd5U$dGsPT<UlceMuBO=QO-TLJxZ}D
zxqnjl#tH9qUK%(ZO)RnE-wMVaA1=vUb<$Ky=^%s|tgOJj*#R1#9R*0bE`>R%m7I0-
zl6em`lmBgNzQ2Ciq+Q)8&v#VEdkKQ~Ha1fqFh9V&AMV<}!3<4_FF{=Ri%uuRj(IRH
z$EYwtf}yEOO6@Q>G&uN-Anow?ttP&fDoPW;%=<tB#oTY}WG=u2xaG>)ocEjMeAJC4
z5LZUn*dVgI+IfD_`jCE8KAy;^8_{=jvlMB+KUH;)uZFEoq%`P5+zUAoe7GvU1)nvQ
zW$O+iQF*W_Hb8Xg8++h!=>r{ly{(PXyu3-z&jmz>td+GONoBr{>iQDM)D3qvoB~{G
z;N0~o?~t+kL3O$f?ksjiRxu^?cBIx_OLLq869La-Piey?$YWL9!ppktAD1G8V%ZzF
zxLC%6S`<xrygV)K5+m@N$x%@_L&C5;E*2)T9Y30Ig=g7ZH>yeKCks5MnvGD4lGEx#
zEOpi7^jlpWo~<ArSFK;djc3pOhc(z}R@j-*KI@w<LLOpu5z(Bfhk&Ap2BV3Li{HRg
z1U(q`la+@$t3pb8f@vpH8O_YkNjReDd)^%s!s+e^s<dmP4(fVdn0iF7rsfNhYJcjg
zi^6SGs)ggRWG@AEwD30*&i_~AY9GVvn1N&VH(Cv1oU^X}zi0}&J4TwX`(s?+=4&lE
zrCEH?Hb38=*ZCG2nik&?{{GdU(~l%Z-Q~r_l(vUcx&wm@PvKYg+Ma36w1qF`=;u`M
z1+zFF%qMAg52u4hJu%i-_26e2a8I$9^#5qvy&23=FZMSWMr~%B05;)S;9-nu@URTO
ztK_7?{QWsM9EOe%W1Ilfq*4XUZfVj5K{4Du)2QHb?LUKWNBLsyU-imc+?1fgF(&ha
zC3VoNjd7wD<>PqpqpnW<aj<?%wYGri0k|^7Uf95ZWeRXYwq1>K!<%sQ7tnVd`u(|R
zeo;ey5qE;{usK^SgbQTG58rtKLMj&6*qEDC+vB-m-zAND5kk2p4HuE=(xPhA=r(a&
zCH%T}Vv~NE@j4xAuX{Kw#upO~7mca~e^Rgr7_ZtUc^f%eN!b2dmi^-V1(Ue}-`m#F
zNLO=4xmQk;3M*-RSCQPCgpV5dFEdrr_Y=$5bm}+CiT&gCc7n~`FRo6`o0N?7pC_{#
zh)iq|A-Ih&UEsi|Od%dnM(dyTEF7vSzPw4%g7oH2Z;3O)*S=S&jplkHnyksF6Kzv|
z<Sv`WHuuULj{P)vQH(?@uZ;ULUWrgXBSMx0L3OyKIt__}RjHuhb+qfnAw{#CJLL1z
z(liEBFJ^`wLA@V+cuV&Zm&xzYfqlWv<%)sx_~fLCa8n0o+UAs2kB;3QQ#Lj=wQo1E
zOvCFqmI>Z|`I*5L@d!SH)}ulDuYx;BJw;;qM$d-;I08H&ZzBgGT|S7f2=mIK=`vhI
zDvhi1hijL-wDv-uB^85NIXJiz7W-L~R;(dGiGW)`T*+0!zP8iv8XP9Ox2@FnIHGa7
z{?LFU$EAC|<n1j8sT&O)2eK_;Q<WOR_pBwf&RK=M0s;@#Y!W=l4Ab<p!LNVn$!#kY
zcfXIy|G2_u)+Q|NIU3coAR{~7NU<nQ04AcV1^b({_dN?BRh|lr6}vWH0zP2L8Wm~S
zB_W7Y<JXx0W|Vg%5-9`@YoMfa{cA8aoUEh=29t+UIJDHw^2qYSwu~b0l9dp^xLq&1
zmq!OvZ9;oOWId20MxSMK9hXpjR|?X@zld1rbjD!JJWpiS;X#ysK)I;60FF?ufVfQ6
z3!<l~mQXu=4yWMCqyf)wk*y&(bb)!=vb?s-LbKpeP1}ISEpy*vgM}*`m}YwMsM@}r
z_#vM;X2q6g-h3#G`HJ26SJvLuG4PEd;&VBp;MS%#x}#eEu+u<C{;fCLi8u~Y6>wmX
z&}w9#jt$!_bAy!*@fwl$V%^~2!xtm}s6L4kX{^q|jPx-yaJ(+1@EhyTEK#+@(k#ys
zhJ~Hu3D(7>0%jIuj1xbP0%{^|HkFKoZ-a+0w&Fq_TMigu^3igu@$A-`@v@l&#30ij
z`W|?Ed8}))Ej@nGDDv2Sleyg|Ra`5HIUCf|P-%3V#*nXBy6E%Fzi4--$?;<=znzyF
zdEqcM;h*zkutrPr<_xjn(ilOBsnPykWI@)w5n5cVs|n*ST6Z>w1(j}Ami+syiUmD<
zu1$-&{ZrJX9aS#6_bg);2#50RjoP|iJ|1_Q4o(dtU2MKBXr6gqgRPf_9nz=SK?fvJ
z6pPN+PbSiBJA&H=J9*oUO{-5VMXtHh5zS=Le5Sv)J&wQoDCZ<J0gngo4>gg@Agv()
z&z{NldKeSMz@y#sED|lr#+VLVM`B(2>V@5Y{ZR`GsZ3fZdw9qM%zlJODfVOwI{TN_
zFliWCGHmHPRpGFY{jM-tz|gq{sofYeVRiLcGIPD!UmJD<+LD+nq8dJpX6*Mlhcz3E
zK^MNvGsS)?ndVE>whysv+^;Epp`Olrcls-xrpA%Do5Ky%mH`flX=Pv{`A00r{=4lk
zWNr8&VZ2RE;<f89JCg<NX{+*i<>h11dlW1Z0rjPK=a3;K1L0V1%1w(&4rZ~|IxkTK
zrCi<u?avas5T{#k2>Xvm*~DT!5IYRB9-adKcq7?`T5vv6f<bIN8K>bCdg-o8+<HN8
zLqOOMF8dNOCMpXa7+KNfM$8uIOgkt53Q{rX**;Av9!YQyI(`McYVkE7*N$|+_>9)#
zM7%|s=hrAd;8%$$p?{VcuX|*6xO1Z?N;F|smeB4|oZ)B8yvtEy^}@%J@}p9{h$?d?
zLp`ZGWTlNX7GI}ou{_U?LuDf-R*%{>{igf-n?LnZmM+k?lr}57shl@4OIA_1rM&OR
zKRxTAGu(U;Iz2Cra&1k)5pSZ%e%|iZ&E$0?QlKj!fe&P<Q?C0Z=9XO_@0fvSIQizf
zo)O~B@Qma%fV3ckEPwJrL>KU&2RjfE$(%tdn75C{hIj`Aj)jk}m~+v^sP;M-&jd;A
zRiE3n0aEti+02q{S7!Q`IjJx6R%#b9ZoqEXf4cpPCf=ka(5()f9{zbEx=C#Nd|tQC
z*73cd53r$&_L)ko6_~C$(u+5a75gv-t*VZ|9F47YINK<?*|#9>yq^TRKXuNkfD1Md
ze0i{|U579A9kBMNr$dYf1VR3*AAx^>Z$RJAzpT&okTgA5TY)(s0-+y*x6<Wz_XvOI
ze>>gOMPIYz`JO`4F_hGlN8mF#ON5_lG)l$TCAeE~rPa)tLuTC%u||A1vxIk_eV_BD
zafTgjh22zfMnpQcuXffu9}1ksygm22KUwpw(7P}gWD|s?oY-k-YVP1h@w=TmCWr*R
zcu8Dj+#B;bCxcj`A-AJvGW$iBESIXt6_;|mCo97^Ih;30cQ_N^tS3mf>)G~MElKDT
z)y1`2H|RcpBsa*t{#%igR1O_<4lN~%tP=e-h7sTHH{-lA=``?$4$*&TP9-vLt5<s9
z(O#%+C6TO|knl7^66~b!`u<~3bpY$@J3_jvee*+p(8H~#Hu0G^j_;7GzCeCqq_rH7
z$n>)e>Esuf={v^In)13D;-=KXu(P7y`=vBsI&7tU^XT&ija&0Kf2K8f5W8A3ZuV*S
zXZ8;VUN3%*I^}m0Oa`NM;q-4cRu_Y)L4!t|#Cefp6~^Ws5_)}(5)z<myH_fY6ef#_
zqdwMb(ad8vSggp_dZdcUQT90c_Ae734(4m(E`Ru?<#v%QA%YpR^kI|PQ<YFVKO@P2
z`m2D6(wip*>McU_s?FZc+Y5Syz5%W2Zl?)3=;<csU1bW=lA})V<2Fz?kyO!(o-V*l
zAv1}kT8?ov4mhDPnJ)b0%!_Z-Cns2rMixs%-LJOM+eKotka0|zqE>U@3()X=l@U-i
zKfZ{2K8+qNpu;1nVN#8YpjsYsxLDEbh%_;xMJ!|Zd<7zngDO2oz^*{YUhZzHQRg9!
zsYWvew_=yxX7aX|rnHIJOfBkgfFh!03(*bz9I;gTy|;#8h2p4Ocg248D=XA12S4Pf
zcF%_XyxEX$)~j|yhXK)6;Y$n$f_kGDk<+;@GDxhfW;#f$3iqIu@r>thtac~Y4;OM@
zM)-Eap(M6;_&I)Uk_HY&!it~Mc~<0K@#y1gL|Tl{*hiF;B<ddr1}Vg(G9BT^;ZV(J
ztuWyFGzo)2X#LFr1UdDsX@mpa07*JA19{UM_<GbqySR{06(pw?JobUWCI>K2*vKtV
z++F~O8eDJw4867;lp=<I(c9m0QVby)np83&pG56!z8W;f9B`q{qZ*Q5Cc=Qn>TnR-
za{bj$mPq@H?Fd*G8%~6i>uh`2O(wfp{JAr%kUm(%u_6j%8d4mCAj|Rk%}-%J_1SPj
z!-k$Yw8ZbBNSzV1UIsv(M*uEK1{I09K+U5D@={_C4C92z#s+XZ^w|#y8&%j|{#`lX
z-Y4(?Rz0pY0k5QkUz=d|@bw-fPCHaw3~%#j0x!6h{vMVTSYhI2(G`q!aJ|+HKkDh_
znP;#VE>LjEd{6;JV@ql=YC^O(IOU5y1hwwe|Har_hE>_FTcFaVFlm(rLFtxmkd*F}
zmhSE@rMpGCyBidwrMpAAyUxQ}>-*L|>+EZteO>d%D^7JfpZC3E+~Xc&j|q_Xt@-e{
z&g_68^N`?Xl5x7);dR%!H?~+QS}8eD1xi{)ePx&7abaWl$sTF7hMo)FF8>#e@XfaT
zeh)e(vqjlt*R)~?nUHBJ2+*7SnYKeJ^5Zu2qU*ctd+urviv$jZl=$^6RTnC6N4WBn
zFH5k_=01c@5^U1I=uwU&gg0rg66MzDaI9fYr8i68XP+KX8*FP#P5eq&@_^a)9MGpL
zHhu6{)%!MP3`<F66dp%jrbVvx0oHJRQ!*lhhw}7bPD?qSwm>15;2#C)d(^Vx+^6w$
zCvI+qKA#=Eta=CVID4(iJSPQQlc{i7Y}bR20#1S59LmQKnUwdms^~6BMt0QvKf~`?
z%AuVrP`H3#ak4PYIIa=$?Y@=QTe~d^iV_#u(^Z$Q7gJ3Lwp&BL#5vuizPxsDnEs$#
zH;~TL(?CfPiL0BTir65&QQGvdQ=GWX2-^XanAB0Z_GI&7xd4$Ide_g`%s!2lz8o+K
zEUuVt0My^)S{{vP5|NOgAj3oMjNV!z&C7Z!y$mA0?AuauG$sNfuoI6d_8C#a5A3?W
zv$tWeoUdONIg9fqb`9F)6CMX{=~E@dzp|~&)~<SC-|`KQw2!7oBddusyPRBxJF__-
z!H4e!=Ew)vxf_r|!mnkQe<U#CDM9$_g`AHK$RVTCoV|7+F_n>GQ)n6rK@&1$dM!`B
ztHAiGWZoQkTja%%RF>VD<Ky;bJ_Q#G3!do3E*w$RJ}gQA;Qokx3Lvha@^)3cvMxlX
zcxg10y3sqXkoS-;M_K2debPmaWU<}_gF!~!EbBNz!P{E@a810bAGe!EBuLbbL=I@#
zpAf5Gz=k$Xkn5Qh&7D7|AcO(dD9AYU<gseJa^>~IpFXM^Ys_=mEWIh$6JP6fc0e{=
zCVpFfG@4qeC!r@F&&g>;plWaNrb2cO{+Ct9?qP$@R)!^oAN^xa*iQ8Zg&GOYCUzYz
z`7!NHo6HXSU4HR>roSYkg+gtes!;b}6}@NLMioZ4BH!ZwoBfgk`BQy>Bj4&=dsO<R
z=2^}B0+^RA*f@wJ6{|9QbnY1(l#~khlhL&i{q<tiI!&|kb8B(a25P1AWc6}=`~Bpc
zsVJpJt74x-e8bwiT)rWlRYdQ8WkvRrrRBv11Hbl?lhyVBTTcd(X1Q`cV{vhQ8Y!t~
z{K%TG+z&6&aDZV-K}7ZI(hV!#@`Qc_xk#3K=rjQverQdcdYw(@x$|3bC4MP$T>m)O
z(&RAYllclVX7~+d1e<IHAO4q9gtKf`CI#k@NO;OJDq?g}e1t*!?jNC<%~||9KE*_5
z5ss1ZN1u5@gCxzpN>HJKSyd@sGrg&34->cJe(|kI=n}|jY6M_TN$IWGz=Q=_2)KLb
zzo*5m31}VrV82fFk#RKBu(}&3joQ@!dw!jY5ek~7TL_y*xrY35Xx4I0VmZe+H3gIZ
z@aymAL)6Mkh&{we@n^w8#5RVKgziTI96$nH)8qSxueR_AN7eq)Y1hnRD(dtrRFJ+z
zW<7H~XP=6oew|>sNUbO5YHMl5)9OvygWT%^hAD^xW2ucfi36i?7(<W^7zqYVQQA2`
z4x`bjN$hzqHMPP<N;7+Pa`k;1ur}>olyz0%^l<kBUPgRFL{#H$f@~^ldz?>{Z|0@D
zQXM_7DdWm}nYGL<<lMzXysi*zefC0^SM^Y20GBc0OOEhQ6z5Op5sY1@b|5&%clcr6
zXdHDwTi3$+;c`y71M+m^EjPSsqNpA|l^jzkFXHBa5Lx6|VhRlPjffYCQDOI>hl!?r
zSb*ih4;ubYgly97P$!fYTdr-#Kk*hS8ixo0pW7^DajgTdi<b(*3+$EfMDy1<pZ4T7
zKtqv0Mj>?7wR!@w3gJ+KO=;CfZsXrS2%P3uW{0an8~AAqq|>=M60PPt(UB%3%9k#r
zY%W8FxraIUxG|GtHaxqhhZN7;<#4(!7x(MqU(O}fs?2pZ$aYxN0FWgbk$-l#=HUQ(
zyL5~WSKQJDjWXq^avZk1DeJ{$d^p!cbi~@M5_&yupz0qnw;o<HN$nQF!UQQv2)0v$
zYUtz~2c1S=d5+Z*&HnpYQQJ^X@t}Q~gjC10oV~f<@>)zXq44`u1WsZD8gjjrPLHvb
zG^CPzZo<e2=5P1exD;*YoMJ3RdEcQBqNHy##zXLE1~AxRlbwE!@k@tzx3crwHUOM*
zH|NJkdU`(40~cs$eM2H%E#SWh>w61D85IN}!YP*SDoku74#~CnbM-jGg~CqR_ZZ<7
z^1Vr+G3N~yk_f*dO?SKW)ioOg3r<n650yq34jmJV5rPFJAfKJnw43j@b`$>Sp1zUf
z=IH2n=t$pu<*rlK;Idhe<Z`&T_|uqIr@3I{ccmf9t`Pr8iueGB^ATiW&xxl4qm%=N
zQYI?=rPIgdj{&Ij-@Ls>5L5YXIAEk^>)PgRNsAyO4(3Ctd|-oyqvvRatQd_YqmYfY
zzN+t4f~H;zMBT?u)OGTaO0b1jy{567cU?S&w@M_S5yL5OnJ#Xz#jU6ihc;P*i1TrB
zP@u$a?HnD8IAKUE3Lg*eJ7EH)LaXf5t45L%r=?avWoVC<Z*}Kzdy@_W!C9^K;8uRT
zs~WZJvU>*23!8q)>AQfC9+V^LhTm~SLbR#?%Nx7Q;cY+Qti8%A(k9*$Bv6k+dU3e)
zRv}MX!SH_Tx9DS@a1ex7&vPpwIx5N-Zp!$bj;YU55K;JLGN!LtFmo6#eJSs=wJ@xK
zuV}Yd<;4L3SLG;|O7KXL{1+sVZL*A%$|c`~38(dlSTvv4@H1>0RJNm<#8j+P%c@FD
zSd?fgMSqF?b&ZS@hcOwE8+?_IxXU^%u@yfQ^%Aq-LZ@6Y$3A_=t+CguZWcSv^)hm;
zjlPx_^Ew@E^o}B%N$I3vu;~b1tYLtd)z;NNNqPqBbh{yJyo4m6(2%CccFJD9Q@ll{
zxc{<#bdkG`;~Is%DH;xg80ufIUJ=+;G8u6nJ;OJ@Bq(EF;*mR}Y2}-<y5SWBpJ*KB
zU>0AFILnlLm#x5v|5TnToX$=0+gMs$^;@U>fGs_@+g-3NgMW%{);WwZaLO>nTOwOV
zP`Gcvm-Y>o7vX09sg4?O)mo8%uFXQzCdz`y)^-1uyHgPH5z=@cOU}Y=h6Ll#VvHlF
zC-jBu)hojWBAm#q_(ZfN>+}l$fa&m>`4`_;S4$45Pt^7J&7}Jw=yO+5IJZ;xXYQ_E
z5XR&l7=o3RG2=L9(w{=!iBrjB12=@QW*)qH9xxFW9{7#ghk5QHS$%18Ty#74wrS^x
z?f^iX{Cc6kZ_ZZV;V@mUyTiYN6U0<XMl<`HVK*({5S^q-#uC*aQeZi7=g*%%G!dQK
zVt;;pW>q0zYlWHE@<VpV?NdBedmuS?^S;VB1L)OU+eW+AnEmuP%(2%wSnVB2G0_$Z
z_Fu|#J^S;mbuNe<A&hz17vbAi)cQJsz2LKBX9EBJ1V`5ikH|{AEK+8>Xv=<6Gj_UU
zC^?nPcC%m{9Kl3*^mJ6jL+B8U<Jp+ky1MG6NcCp|!tg?fh(sheovUAt*LsS^cNz)x
zYQPXd6A8KI^VvbuVJ(y0LP=9TtA8GVW|LJGfSN%jtRE{aBkxba*w7!(2hbQ3Q>xNu
z=o6XJ(VS_!4^``NNCtlB!E56UPDw5VF8#2_`zg4dClcC-HkrOO9PO3BJa-qzNT0gX
z4jnf4h>y<&Ys)a+Ze?~wtMZs`HiRNa_{A`l5iBfi&>;P$fK98%sgWJsLpcB=Iwew$
zD&7)9b{ViuCo%ZK)A@NhJ4_jzb>lcXl~ZB_{}qxCHS|HiY=`XdS3I7(oQz42`AIR7
z(y`1nn=WXdH~2(CJlZWp9^a8YjoAX48`I1%dc~lT-a7pPMoZaJWy9l^q1v{9c1z~C
z#Z9T27p7*IK$g%-9e}rx4;!M3og&uY=2bZ-8(cMyK(d2E5t)8{mB5n&HrgmV^rCW|
z5OIu!t#0H(h||t3=g_MVBvgOoMz@(0P|9v#P})o|a4=i>Yp6`-_&y5=DDaL&*E$Lm
zSnBYx|B=hzKfm<l6<=~n;TJX!PWw=}mXayR6!DQvlic?}iR_?#;LBFXcKWUfE_^M?
z7=Cuh_-c73Qvhb-9IF4})#NYP6?*k*)f^Y=l&)gG#6L$XT}E+QfteUYzN`o=iCOhu
z@z|z4(%|ma0`rl#RK{F|8hdOh?BIFF>){sjSNw3~zcsc*wWqKO3k&-vSpTvp{Zc5|
zf3Axx(;rX!{osu)q47-Rug;p>k0~>qouD3`v*l`@pII<-t8}QF4aI)UZ=84baPC0V
zU28gQz2q{zzws)uUm_@GyA_*>5pAJc=JZEI8}hbBV+jbbn00=jT<gj<2_oF%Wza_8
z-P`r}j(Yp}=Q~p4jP{yKkXUtUXYR*a>9|3@{IP?KtE^{$9s?AXBZUJJ*KQB<Zn@cx
z)kDxSt}+3+Wn%0c_2X&1+K>nAQ5&?=^v=ktlY9P@lVa8jCmPN&JD$MZYRu2}moL@$
zR%|x1e2JLoJ^xs^je4B&5P91F_(ndK?P|PxaMygDZIW?m*p>aT)ARc-KvHZ>^e5$S
z{2M~ms~p1U(%r<Epd9{?6ZvvQk%HM{X^vXg+U^Xlw9?yl1F<DHy$2>rHzh6~>QCP<
z1Ah(45sB?ZS=W@gPofnl5j84FRGZV_5x&+tY?GY`m4DpuvDI6Y=eSwZ6c1)EnvKM0
znC+^YaVH%UHxD}N5ofIEtAUVq%I~X7bcZ^`pMH$SGLs*+6}!vuFn^`=PV;-HV#6f`
z$61cUR^7Qa?tp~Wq~Jas-Cee@<!qE((`NG<e&~O_B54s*x%3u3``}3tw^a%I-_Uu+
zjfh$8*4TWwWqY%97rgUMQZv7GP0>y*tI6W=b&E(}9Q9T*FJzUwyTESImoWHvzLj~w
zw)ZrB%FI?@e~NL~X88-GDLm~gHQiXjS_5e_@b(+(R&8mI`r)t(H{J!2(!#@xgY2L&
z`B&xJirkCYjKxVaJInYgT&O!lG`T=W>ducR5UO?$q$Lz$tt`i%1tuO&@Ey=1T57k9
zKdms;?_e%}ojtFcDmzOg%2INt4`^paLQg=w3;Yg4ns<hkvh8AbGute%NV9wTes|z-
z;&&;LopB4HS!tTb-PeG%m-xNQjk#q?JZOYo27d$^4Yu4HBidXS!fO`m)Pk^D6N%c8
zb`FIcxM2OoE>WSfn3p%<<m4V7?mfbBDIG|Lep*Q(*4-DvC-6}?Ri(b}QA!O$wJR=_
zEOYoUWI?E(KLzV71UVm-q^I=3@<d>Q33qhnvB`}VA-c=G0n#mnG;UXqM(|gid+?-!
z^ZcvN?}q)SKZe~6IA))Ia5ZFa=Md5%Drg8?xFIGZ9>VTqIMqDHW9*K(8qz^Q88n0K
zf$B)dIpYv1e~G3dkVZA@GVfEnGM%rmELglNRaM+0*o(A6F$$Z~6YglO*5p{?O2b0N
zgKEYN@0_|)i|F*>ZqXcm2)k`=jj=<YQ0mWp!}0qqpJN0<m26Zew}s9_Kj-JEQ<C}f
zQON`mn4U}Tb;_(uom+f_avaxLBF5Z@k_{IS%2Z(BpUdhGx;VJy_k<naxcG1Jzk{c_
zd09{4Ba761kV>Ctd=Z18r7a)sdBLshSl+uq)YqUClf4>awr^S$iRB?5F4Lebv2+$i
zK5v!<L?H<}+nDWw#D941@+kc@wp6m|*jsa#&mz<-!<05xS?!Eo_~43<zK<grVSQ2V
zph@)Zt>E|Bn;lXY!m2O4y+5sOchclr4@rN;v}IyhoM(0)XcJd7;Up@Qr%FI$;pAc{
zx;mNt?mPvQf`t}0nZmptJjCE*`+2XnO9Ei#t+_@-G5-j;65Vje)V&aS^@#5vp_KjZ
zX9~Ur$_vJf)-X7$>0@|IXwrG?EgYYRSB)*l-qsR5AlNzlHg2()bL0|%TKv+8gaV_6
zK!(lSO$s4dK_T{d`y5s_S;o~XYS|70>Z#6T$k~3j?T8y{SH~Ggw_`SWmL2PG!B|JF
zT>RN;vv#+O_t^d&7M*7A&B&<OOn#Ru;ha(tMOfgm=9JYa341r59-_!`PL!u#k;q5u
z=i?rOLX!Ku4DU%h$!cj;N}JC=G_+x$9!^&%ytkNLcb&r0MuA-MZ`WGQTfjEicvX0~
zeI`ZS>;G8%#Wh=>P9e8A0dZjIK}`m_fc#mHq{n3<2mG*z2QK~&$$^923~P_UmhF$p
zDan%EbZee~utr`|ReRw*ZR(V^m&I&jhA$X(`#oc5d$1%kjdIk+&<R>)q%E{^*(PpA
zq7Q+rCYz*cRJ45koye%s2paF&>X3i`Z!aU)uaae7Jx(e5exPYUf1oC|?#^19-chSG
z+iY@W9^CcAY^xh3W{WOo%E{&rV2ZD|&QGn=)L!mRoO0z068m!UVDnzav!5r&T7c5a
z!?-5@AztD6j{O_8!{c!2M=h&d7mxMZrJOz<wn7(E-up}pY;^<^kHphEh_AjsJ5yKZ
ztV#f0lUM*=X(jJx^;_1_S%RzaIUBaFa39Q=XGoF%eDUK@L|T8=%Ee!Z>Po6inQw|A
z)*`W`&#zA7!1sN)JC%u(hA@+)k@*K8vJVlj1q})N9gb7dD1NToBl6H^L1k!>|F!7+
zee2ZfLmJDdtsqM<zq)3<KM8Sk_vJw23uuzMLklJ2hhxcS(AYE&&<CoJxrQG=b7)U_
zUuo;`265deh(-{?LBjRw3;!n?-zgk-wnO?mg6}hYIlK^geSyF?G*?>Cw{U*^K3f>!
zxNYQsvgv6hjI2WoElf4}X$_QTSTsZ43{*L%(@joRp&qHHdUJz=!zCFS1l>}qOjLpm
z6xK9XgO0tCBs+C-ciLZi5J5d@D9y+F5dNwSMyNP&Np^Sq*dW5!4DTlb@&HN{k!Qq@
z^JjJ_&6WcGum8N3?mtE9@tfjfM-s9Qe4K#PcT~d*(h-QA?$HzDcl%B$8(?=?&0e+8
zkV`*o3f=p{p~T9*XnX8HAI~U<c(eiQT55%9#q(Qk&+qLv%XN$c=)rhDNh8%?qj;Y7
zSPe1E`qZ<jGJZ3DKfE-~P0`5L?WcOghcbl%9l<f`i4ZE=0RD<1Q+3U;tNpX(4!_z@
z6CYu}4qfrQ9oa<?&W7NUE;ompN$esi=A6HcU9%X={klIJT5R?l<Eji%Sfe2DJKH_Y
zb*M^w^A9R9`7_G6(U)wmHz^~FMQyoSyP1R5uW%>b7P+tAcqPqF-iKV1uZ+{}UQ$N1
z-yNB;&IgKL<)vxuIvCzXoliEiY24CNTuUm|X%Cd(nMfa0dn$yEX*EwC2Tg^xd3@8?
zTbJWFQT8ZfoJaf$s=9ABlBe(L-M8C=e8%Ay%|HG2@iMjaVMBI~3B0H><{_f_ji$$?
z@NyGB%qvuyae2Cep4x_Fac`<bqo)-Q_13$y&0?-LzU6#(2Nh|{-DFO>)r@_F+vSwv
z6mfjGY0$%RtmN>pO~o1QS9ghQ85(|;3(s{E?+BXJ!*9=%bxQNX=~{~-jIwQuy7Py7
zgyurKvGWy&RT9f(7nnJF+5yQy7QoMlAg3`mb`arQ$Dtx%T<qRq>6J`y4Ko#-K{(KE
zIc#++K~o_wF?*L0$9Y9s(~gZz^xW%qpN$@>0*5{C?A!09>wudaWzE#B7a?=aZ>3We
zJ3BiA!s=P8!eIqTAv-m%M~5npGP$qiALALV9-w!m_NtpF-B1W1%`UG88`mojj7w!K
zwP~(tqdtYa{@5ZMfX=1zE8Z$FMT<v4!%4BkWlOuj>y{x7^;KN%%j5M;@=A}Je&v!|
z&z1vIrf{u~>7jg42z7lwhts2WRCtJg6tO7}g%rHRkxzI-y)c{mi1%&&O3_rOS*E(%
z)uo$k+K(SX89gY*j!DUg5RRCNQo<IO{(uYX`3JYgtZmQjQ8I*Yd!MCfbA+45M!S6^
z;xs_I$1|B)Hz(9>6iq(^*WbgMmiwZgn}Z0CKJK9YD5rTbD1%^nDlWsZZbz%kgR~~y
zW!kRvn)?v1!)R(638O(bWezeK^>@Je=Y_WpG_%nFgvL_0v8SP?ip~t3!3%8!`ggH|
zf2$~r6K9?GDJFi`OOAwR{vRQK3?2D1{m7@iz5B6j;JDK76(}G(tWa;+f{`j<@vgLf
z4`jy89#6mRzE)*oK1yNJ<P&<)TwAJEMKQjjz1IHB(vM-lrx!y{AkQp=<Jo=1Vf7x7
zpxE8dD;+pbq30V;-LehF<Ga$%&d&V)9r#vd+AZUnSNkTj)h19|hGa+v+&-uAc*`U;
z{?%otA<%gpXW^$dQ5aq{r%R{VmoDqs;BcvJq=B+XDoVGj<x2I5!>;~hiH1|h!&o5;
z!P)??rD3yp_X0oU{L_6ena6zNb&1;sc7)!N6$0Oj`Y<RI=x}F%(0`4qtZ8W+gA(j{
zxX*}2AaouX{xhz!Hu$8XRtUe08d;*T;I&txQdY{dU8q#FU#Zr<@a=)uz{H09pq%ND
z?(;%p91jpp>Oetx+}(viKwBZwe2EV12>grYQcdlzVJ^k%s%z=AS_*CZ!GkbLV#$4X
zBt%uh7%0T=x~E#-2(Pb~Mf=-|yg)uDba=pd&FkzBBRR6=WN`ro&T2T0u(|n{;h-DY
z3!f%<U@(fgae>gmAYYpB&L?)qWt>0+BIJ30t};m=M`(6-b;V9@J`OG90O+<oOLotj
z=+wu_-bslC5Brm?(AlE+h=k!F#m^IpK0L^k!(s*{JQAx8uvf0W?a=#hHOt}qLx*3i
zcKg&At~4NLr#Al0Zg?JZ)0DWLW_25hat8a%$$1!blzv6wi)`7M9Snk2QBpLEssnS0
z)`l(%-+X;HgX><i`DA%5C&$MR4g&>*k%8gMc1NeLOes|>Qn3nD#xO=U;u7yg-?$D#
zMQ~*@dfgQ;R~ojfk{?iO7Bz0zt16%1Qj=DQMo12{3i&#ERXi*j-?J9n)YP4y&V}o9
zpDb8S9#2F<Z}f|eU+`eGTt+TD_FlHl7}j+*av{_!<rUJMELr#-2bifOkg^v2;xJoc
zyfsOPp>p06{;M7Nt1sb5^d6G;880oc@$Tz*=WP1VZY7ET*^sL>nec~fpt-F0^DABg
zlG_GdB{Ed@@}wH6O$_pqn?amtV2=Rwn@9|wagB`}76nwRsc;doj9r|M$t*TS7a9l~
zjgB#Xk-hdw%m@zKwsD5E_g?YdN4ibwc?5Lw*})hWGcS@9r|YaT$oX$n5857~Zt<;E
z;P$?Zy#~s_)p?&s*Y%qAXg<#waMQV6?Ag38+Lxra*i}c%<Gp83=ZxE%3>vC2osic*
zir{|9wOefOVZOL0?)DY4LyJC%faCf`j9N1L-8<#ydOQ&umq2swJ1>9xf%{_fwe4~{
zR9n-C6V}Sdx4hQl1qvGH3zddNQ;F4kFqmoVHiAZj$vNq3MD9mEm5!o3u-y>+9ezI8
zy)kCy6SY#4@=~WT`5f*Z+Z%g-4dz`jZ`eu>pYCZpTfH?w>ht3h?<~Pn77_;Ts!JUK
z<khNMww!lVEImd&Ox-?tIAyUhD9U2vLms@~U8&1BFKhJ6Qnee^!-v&qjHfJ+p57X$
z{-IBQZ>xJgM?0%ib_>N(vwGvFGiYo>k^SI$9{$}^{__wcVUU*LjXeB3-<4`{K#*iY
zV8KTcBlbgDzTDa#%PVTp1XF;%Ju*M1U)xm>pREip?fb=0`(@0x(gT8`KZQsDS_tgS
z-_blD=&}47e1xbJ>50`zU_9?Il{Qp}Rae6g$!hNKL%2S(nlArF{?1*P({b-}!<Cj%
zoz=n)I)=a>5KTWfEz)oUGa)cy-7+muuPL0tQgrF`k1!a`4msIOv6`ifJcoshC0+a&
z!s=_(VKA#lFcr{=q4-*IR+e!49JuDp?Xgte*c@*gC@sHG+n*&oj+^1t>$X0Z!E<oC
zJg7<`W~WguPMk%Z4AmeKRj%iiLg;DrxSb}IxD_tx1lj~<Iz&8fi{|g)l!iV|iOPPu
zvoF<dX<S&{%$+IMg=tz)o31nrvt{@9TUJtWct1)^f4=j&kM~mp0HB@B8fGP{aR~^%
z3kS|Z$)ea+2+{fqb8dqBz=Z(jeWSxJ6$}EZB8u?HHjvNN++x-Ob4uaEtv_-RMOiX$
zi?Z~7AX`opll=v|{*Ax>eF1>j$PmN1S_|dL?2;2e_t?l{-YSUxM?ShsfTfU0r|C@&
zdK4IeX0Szr`b>P(x(570a4pnh-G<VQlhY7W>zIN>N;0VA9;M^1{C@rXG_#HGT)Ztw
z>~$lZU}wzbe3aSf_Cl|fZOL7T_uf9sw$IOwP&i<tFAn8q9Z=_+n=fXIB+3!y=72X-
zUxpW5xqLcd93ZY1DR#NavnOv~J=|{Ff}L$DbbMi9tCsUz8qIpyNbOe#K|tuRdNk3s
z+h4YMZCdC_p1iPuxX}%~cO5`X3MQ%mnIZ$4!x5i<>p45uf701T2iis@^G-`GriFl4
zpb2srt=D~x7&11MK?n`kG@biZ5SMOekEc^e4>D;dxnz7Va2ruVHntX`G8PsT^d(PD
zHHctan6BnZT}Tupq1Ga@el9FwQvX@7`UbF+e}OXBaC<a|D!>t#;AATmNshnrAt`N;
zC1cYf`o_f6ljN&}7>Gv1`zB91O<8XPkiLIQ@a!D~7j8|rxYdo9Xvie9S(O$7g}WU2
ztX;=qp&5j9lv!82;cctd>z}q{U**OG$ALdVB2`Mkuc=}+vJ#ED+Ii(uHPTMY9f#+X
z6<wX3<HxL4i-KQ$sNczlWE+DZqOy-U#Ujs6W{Bk9ji@=6TaV+A%S_qbC&pLuqy4k-
zzgnLEC`JD9%XK>FD^F`6xZALs?Na;C$6L*}Js6#=vfJi}m?@zhl-|rvLGyS>{u0EL
z0;Ha9bmPDA6JU^JRTKLVu%X{0B9kQh=&yJ~-M4%Ytj92ykY&dKJM;Y~fSdmgp#|K)
z>RI0!wNLf*BjR>0^D;bZccVVIjAVA43~^Z%trciCRGu9yXwW*oEs9J`eD_^6g0aY#
zuIt<y@FXNyU@Njtn;A(iPG^i`{L<%^yun5lO6nu9D0%$@u9IS{LM|eOWt;g41X(;&
z7t)0FG0KsMi$%or6=WWH08>pD4!T;Cv7ZM(WP8bxgEaue>Sbr3qf8CVxdO>qN@ySf
zzT`N@Qt5XM?c_}3z2N!H|1x0Xd_c%YXo(cXGn5CmKZ42qB`Zr$n+x$$p=yGM@$>qD
z3bR6|U_B1$Wbtv!12{zgiW}BqsiaDvsx0$vOEz0`(qwjRRnPEzXW~Y7eQ!oAiPIt3
zb-^dN4*XHm3NBT+)Vag9M@!|LhUXu|f}Y#t;HW0Y3?-d5{kW=E%jupF7Z=~r>`N#k
z_P9B#fK7^G^1Kt(zOR2udp{6WAB%XRVt=5135p>=B%Y`uxTrChD*r37{%4f_kDo_E
zLq#N$2S}Ua_>e7)eCvws#}+m*;=j6F4HMcg%zks|xUh^LbOX?0wQxVHrqCv0$PKWU
zG3brlg3Efz9O?V=mfQYMxmrozG}>q}kosm;E?jEi-S1GmyFG;8Uh?v;$q?d=Z-!tA
zMvj*)Da5y%e4VPc+}fGwm>t<#pL7Cp1b`^ZykFhBIsNC)XX>wqSV>$?rE2>M@O4T>
z%Gda8KLKCut*;&PcgqD%Q_P{TKbTSmHM=lUHd8REC<|AFT#f@6HLav}n*&IjEFL$T
zxw~Ck>q5m~$APla>(SG!ddopD4Ege4L0@a^6nZGM=VR03ij4#B;n}k61=QuxU<%vJ
zuw-yP36(!Pq~{j!fJ2!VIMN@*Fl|@6ktSpgiMAX!2VQL;7AjDDAKX`$B3z@~o`Unb
zUt3*`vn$-p>=Am0Xe_^V`g-5F#CO-sytpR--QoIFK?M!<IYw_E>;s`)3k{LWSM!Vq
z31wa>LJb^pYlB%DH8%~unm1~XTrdBB&gicr>p<^SDAV?E!q&7tT@PLqqy9499lX(>
z&|hzJ*qDy1+5Gywd8TGnt<@4?HR7Oyd{L#ruW0!yqmSgRGqn~e635$RWokOvV(0~6
zgs_pVI)HIQV2cfvd_N}t0gUm)>QJH-jD&L}uybrTsQOwUw+@X_Nj*m={rVPxKr*_{
z)R(;wq_RE}40lwb3v7KsVYo{kSbuT-o^U0@QyIq=Uh5Xpd%NqC4aHe40Q|2pZz5cz
zx_Tr|37Ga<&+Gv~)13#9gBwG4s8mX`wMDHz3f{$|qxbP1CCgXn!AUYW%Ok-mxM^Zj
zD=TWP;3O{sE5AC)^Br7D-3>s_$<OVv>8!wB6+x^}z_eC*O2e)mgZWzmrr~7NmyB?U
zYS-*8=KuL+Mrt7a!Mhw_?NhbxO4t4lC<Y-I4cJPhoQI%2X<BSfmxI{Hqqs*5{+%TM
z=S8m?to=_d_4ltLc0szXtqUhWsp}tthUK?@Ep-?i931JeI|;`_o7%K2oA?T9OOPh%
zm1sDy<@yHS%D>RadW5TK^m-lK$BhS6P1;2D+CW;m1ZN6UvZoJxF|c8XdPAV9Ezq^T
z8`C-C+Tw7(3a+ABr~@%XTfy;g5%a9Vz(12=L|~cS>0tg<ewYj%VOW*%@XdIY??0+5
zP+<KZU&KiOjKEcuN<501T4;KZ|3dLypYknw{n=>k#Wsyv<v88<kqUj$hOP7_7Y}E-
zl|Vjd!o1E4Wjn$NI1}Gj|M{){bx;2NbG3~2CpOh=oDvZ&lQXFFR9u<ICPChh0X$Ka
z{X=kmkwBxU@c>V);S&?o_ph>9pE`UoaB;V$-gGRbmZ;Z6OQ&%b+_wT%dCyCodg~Py
zLocBV(w8s%Uz^PERT5*rlO>)|ixK4c5KiXv2~pE+zed^dM<B0Iu2hnqA=%ntH18)>
z5E1#Ilcb1?^)M-|e{bluG(_7K@m5W~ifLi0k`C+aM9ChECDy1lN2mERFO&%s?RE^l
zfB#O-#5B6wo$|hAT2irhw+jW04IefXht_n$SvbJ@XA0w*s3@A{KdYqwl0OYZpck5)
zE;))56JNGHjh|<0%<_KTflA>7xINu|VWallMmv@TwZiyOgWXp07^1KT(94eoZ!20V
zk1Rn*`t7(kP4ZOlXUFRP0ZP1)8dfbz#M=JO(#E&fKv7`>)R!?=SI%Yk4Hi$ETfSH>
zFS#t|*~{oaaTNPxVoBHdhm=w=KXS)UU%kz<<w;x7QzY0m8Z1dIGTqmUhT_s&5-t6T
zdAkAD!D9{k<F_qKckixG`vGf?YA~5KMk0<1sn&)USP90uoNhibr?q;vCBC=-eoUNo
zkyH|s>EqSC^>8}RlaX9MXu<8L>~-{){NP_;1oL2GU_7b&KwYAnKYGV-yaomlmL^Mt
zA6};?vfJpj+w~mk*HgS^HGQL0s3_+vr5OY1_PquF`ne)W8GXx{d<~jZx!Dw*%i32q
z=ppQZQ`%+W4{P9~TN=`u6{lN0>DK>V)y4;+l8U98Y9U^H*Xx)_Kj+1W_?U8lW1Xy)
z*K|L?RcR)QR4!*$biD3GbibitD?gnX|0d=;)w&ccD?a{xcGG({TiyfBO(J2=gD7xQ
zFht;UkU9%BIv?v@pAN%q2PY~RQuxGCs}!)!b}Tmd+ZTf35X=3O?azn%+Y-frX5LiI
z$~DLQDN%;4P_*hR>kzJ&Nw#b+ZGCQmChhPJ3hX@Vum2fF{+DZ?FK?cayz;~otPeT+
zqzVm1=x@hK*LtPb*4g>#R(}XU`uPPU^UPjtJ3zUa`(j#O;wbm>h0P}bOk{(ga{|;p
zo>r|utI)WhiT0AA9fxMe^-B+<px6cQSnUG?Uqj$0+BoA-GQ99>3#g|ZVPxwvYz85s
zN`~RkjvwFN(jLaCXv<~s+vUB~sWn%7#c7`pSd|*fk$-Tk-`)YCl5Ai`qCIHsP^?y!
zOZyU^+31T((_+3tUii~Kqwj;!CvC*d58?QfYdsMONzBH{gWK|f)0n<usb;36(+>qn
z3YSm_!J7m6P<&olec;&NSuPvE`zNWY*P2uIUa>mvsaA1J7~=O-4f9ezxgqfUWO-3Z
zO^+q$(#o-AJ!d&rTf$;8D$Kfa9k|sWO)fd#IO|ZqxZ)b({pmd9ZF>0}H1=}p)9MAK
zF3k-ngXeK@K(D2KPZ;isFA55CIfH*at^9$I%<?1XNhp}~AxL{FiyhK3-S^l77F(_?
zp!_jbqCRnd(l6D~+4}$srZ&DDcJ7cs*|?}ySZmRDIDljGzf{Wyo#ADFX#xEE4F)Vw
ziHKKrLc7xy-!V8kkmy;_&AoW?9N#bpxLKe0<;x=ABLiqRFBM@$PqkQ;kv!B5aG>GB
z?Tm*~e``&+0+$2Z2_=;o2Z)Rwx3C*TO5kPS23UKH2i;+RgWUlt7X%R~&uJn$w5PpT
zrG~}7d~Z4bPNU8e8*zg83v?A|ZQj`s&hMu}{l-p(M~5grfXK7MmH;MK$o?sa>>QnN
z!-E7ErLGWlk|Vbl^DDrSBYRW$f(db)7#>XVw_+I-9h#321b;a#x`-~L2920o6GDD=
z1fZ>T5NWQUCJ;h7b%M@qW-DPdwd114eL4J8%wpMDN=`S^<|%DUM>p~@b*(s6j^)Xq
zzy_&~OnwtW@cA?TaU2Oftxa(eq(Y?#CDR{v-*}gx)4p3afri^bu4LsVDY|@wo1Xp4
z>J4m4>?)AOsT2tqYQ?0GDlY<p&y9*<*!u!Be;p?TR{k;^AfGdF|A+iXtd9iN!>IM0
zB87~C{`d+&Z;P~V|3vsr<gfGqZc|r6#7kmgp+w672-7ydgl@LZBvb-Vwt9dy+A4dt
z!vmna*jHhcCS`Sk0IV}Gg&y1{t5T#)%Su=pWc|ku#V#Gdcm;HjAd>`<Y!K>n5T7~l
z*9Tpb*!q1Z9%Ufn^VDRcmU|=Y$N3~7tyZBIu!t4hNC=GRYrdWX$I7hkphlRB5|MzF
zl@+i@M#NY}tOe5NXq%VU1OcT(n$LAjK4c5lCg+tO0$Ti2jw}S4vW!~(0b&Ix=oyYT
zephIFXSEGpv3~mzjF4Wv`2vMJV9QL1UT*^*`lR)%jh}W9F;tOTwQ{o2KXJ{ERR|*;
zV4d834tHF{3=E7(;wJGTuuIvPl^En7R&B<!L=aCReWb0pwvf-SH&c5o@TO=rsRzAP
zv7t3iIhp4c`p|f<GWoAk<bmBMEv17l*S{VB17x4(q)OZa|Nq0O{G)8CWQ3|;AR$h@
z0YcsiQv0vXy}tgGx-LvRt|mtFxY(OnBc~E3fHleegfwJf)ZQW616CJzz|VMww!wZB
z7W)thajTzXh6eEl6SRJ0JofKWEiR2CI5q(V#o!B%+lwa?99c!(P((Q>1R>g&UDruj
zg4KY1KIr&~1|&&#kuI%9djU3VGMX*nylJzcR1Qa1GsMefe`9!jY;?#ahe$xaXs8iw
zA`lIuD;&iab0`w=w^nWjd9ArSeuw~ejz~HRf=#-7l@P7^LW($9nBV&fSa9UqX7b&<
z?m0)$%{0pH;Wu{%NMB7z&&Rxx$$bdgs!dSj<hCACMP4h#^7CLbc1A`yv~#sx{SL<L
z&FgJu0dHjM-#uAnAI&fKW|-UGE#-pD-dQ&)=hyRsF6;Rdr>^%i^mV9GY&jJzxlV<|
zs}|~v>r)&`YTY;uv4=_rav9IzK`h=hXvKAU6`ijM&94sg66$2dk&4EpP7(@equ*Zs
z+G9$$_C`ql_;&&KUoJW@twT+HGknNEu_;LMY^oaUYW@P5Fh{$^l~Ni+IH~-!N2wJ;
zSUq*c0L4K|-CS}<<QS=_W#Eo8A6R5xZ7nuVDv+&D0DR+QmXcY`3OU(PO-WwKWAEBG
zq2SOQz4AjIc=1-mU*VHc=s6$@D^2uVZvhcdg>8Geh<gFz0+_9!`=0LZ-h+iEhnlI^
zz9RJkq{NGy0Bu^(1`Q1>VL{5h2w*DNo{pJh-k+o765bJavy9Ebzb2CM3da7egR=VG
zY7zglsgGp#0T)O-8>la>y(j8zHzYP@jX7U%_AGN`D!6gYwJYirNi$O2tTG1dX5mb8
z_Hfk+{WBX)KH44Q<MX&y1D!&&J`YUj8StDnzOX6jsu`;>Q+aAy&A6ymR(qdvJxK1d
z^(!v`sv`+)lM#MeVN9-fU>!2^UW4kz(Onz+?bI$t!=1;12o>5qCFCScgF|j;fXHMj
zC7^HEWj>Vb@j+~e&V9yQexviFt9S@CyyT)DcJr)W?IWG>!%M1=DAAT36t+e=iG`!|
zLX?bYrO?{_CsLY07<z=qyg2eile&bxr`$Qmc~=)kRo6Xht^F{P@{*Zi8`&XC)TvE+
z3T3n7XLElgb5ioAHq#K~6pASda<O&346*g-x}5p@Dq39wf{?j3O=)*KQQHiB<*ags
zAf8Naf`5}b|CgHPZ{X4A?5+2B$5SOsn=5I8)^Ra)+JJOP{CeEdwlTxbBJ`Y?idiU6
zIdEiP#^{2}=^(WQ={TL47~1a?Uk_9*j?Dfxlp$+pF1jP}v>JOA@BYM&R#a5*S_U<e
zY3^3b4pAx!?QFyf9>Uy%CT?q@MWswzd(ILM41N?QD046!@phFFwweH@q7CxnpUFK1
zTyrn{EszV#G|w57n<Q_f%$3>)Wy54tO4P|!2V$oz^<@#>_V7dHeawFTf&UHSmIQOU
z$A#L)xbw-n_>=kV%p2<@e?*+su5sb~;kwvOz^C{!Xatbd9d1yny#b}OLP1Xy-Rtc-
z7&uM56-1;Jqr=6Pdt?+6Zu8$+0m;b23Yt}%B2JmtGasIslmc?u@{2h6ou393nS=>>
zpKK^6)@VbjQ=jekrVP^+cEUNebGvjk?`qYau=l8Y5L0#Y&S%NC9AGGatMK=lT)?;^
zZ^K2`*CB6w9^=c(b^SbI=A?+0hQ|H4q_ne>`?@n*Hm%gu{BDJnG8Fj~yNt&0FkKhr
z<$jv_^H8lDFZp&`*MXQe?>x?>fSLtLW9)Y{18Na(hXem_p_>>6vH7v}5bfB<5!2jj
z01iDyIs)Zbo`LaG`?Dr4`H^HO0bGAy$a~h$Bm8$9r%9B)QM^;HjFLBhgyC|f+*=BL
za=bsEn%kG25}}<PD@fcA4~Le=7kY!lsKNjx+O1w=T0jDs&rvSUz4T#eW=H5Q)oQYL
zNS*|}FRH0~`8^{CY^*do5a9px2=s09O|w}7HFRBJ=Sf!H=ZlnBU)%izM(yjMTe4Fw
z+6UcE)8uW@^Ns6GE4r!&P)<~`opXG8p-Tci^%Lm7=wI4U^D83h8W$;-#EPMlO0)SK
z0>-~?(+5vboSgtY(uR*coKH7CV#qW3>-Yx4ES~qK`w19T4)Je(2)~<Z%d#M<5w?q%
z-QQMwCtFfNOXY8URJ?J8TW4IcPAjJt%Cc**-_``g6SexzlHa^-ZBbZvj~)g_5dKwq
z>wPlh5A6~~_swt8YUW)q*T^4^IH_4}?I;!NQf!s5`qf6h_|}x2jBCVgO}d-BzmAPc
zZjd^(vXIl=TO`M5dC&;qs})C{{7f%0cNPUbL4W!xL4o>Ya~yNc<=+!$epd`c6chzY
zf>Ar^A(8)_zWvYG4;WnmZeW+RJZ&Ws)$!(Rd$alkR6cWaPqL_5?@<7xior}?f#aX#
zF$<^#?^p0Y51CxpPy?KM-jTDLT|rT)`m>xyb<kO#k01(K4TMovXCd&=5x^n^Y+7Sn
zb6@G;*ab{&UJcFZ6dEObo5|V%8MFGDY{5Q1{7V|ALo`V8>a=2q+$N)M$YbHEbUd#`
ze6f*@u$|fIVY_{-2Zh_AFi2H|f&Sw-XAa-;w=SJVeeMW!>x1X9bZWz0tWVVltWf4v
z-0<9LV^!EvbT9`!qOjeuC>vs}jC9l6#BJXljhmln-1oE{OCe=$zc{GVtlh7SLKZl5
zqzC_)m24F_B3>YC+c)gai_5)z<F1EG{o<Hw(uQ8S2UU&)np7M+{`;qIvnsBAKbJaj
zmsV#gFNmtnRlfhIQ?1|Lk8ZR7I013`T$7sWS|@DvpoSs67im|-m$0T_sR%8)6va^$
z*x8wSU4K&iH+VBD_KXtYsVxF!cOK}uMUMm?0T8KZm`!D!J1e$!z@GZw9?UmbD~sd_
znxs!Ajadlj2^y}mE~ngl)88>$FY%cSg4YLA?i3j3Hz=f2-$7Qk8Ri_)a0t^m9VDWo
z-531r`Ru?*KH^>8`*DFU8}|8Q1-8G_qst*#;;^Z>3e<G|Dfq%M!2sGoAfKj^%ksDV
z-t_>nE|lDUsnlbBf-n{CxHwm3EF){4ny1=eYxv_;aZMB1&E9;2LXNWI#W3pJ*Vn9-
zWz2b}YasQHQ({rd3nv51n$_*)S&)hocY?MWPOm4LUF<r}169jE`KX_wJsn~8TOa7S
z<f3g1>HVnQoHh5{aISK}AvH_yZ2}i$tT;gB$u|Lsve))uZm%kAjQMuXL05^sqTdKg
z4^#@@0o^%#kx8Lil4O)5MK@O<eC8r0H6r4Dibo$DRbBP2w8vwn60eoj_a}Cu^!=T`
zik9@Em}gyL%y9J9KSK0Bp9%qt`i*#v@dW29Vk^&f(FTC2+5*WMaiHSnmm0Sq{$KF7
zc0MSDdW4|r*sKp<Uo+`-BXW7{0In9z?o`?3D|mrL1RxNNQmGEUgnZ5Q)~i*N4NF8e
z*6dHxQc{YRCW-u9mD|6Lv`orPl2_UT57p5VZ@2R@E^NBFTv^oK$TmCMv~W$;Eb_e`
zPUG5|?J0)EOM`y(y!>$--jWxz9nJgI!HTsIoz3i*ET1De2@vI1sFLErHi91pq*T2|
zB4;-63d_grbwn2swMdBHevGM@Ex_Q)07o;$m^jDqPVA#QFxW1{^G^WNys9ZkTKMaT
zAHYRsbK>WVr)Vff?Zd4bU}2*(?_+?gztvpfmcUsw+WZyk2j>Y69W9)h(}h}RVeP0^
zHh<iDrIrb{-X$$FTT9>8+V?j`xA;oNc|xrtFt?cfzaTc23o5v#_hp?_b+TVWjL|eq
zvSgYZ{Sle#{DU+tIW*GW{=3J96@R9a4y-997sP|lU|7v2V_na83e>FM?)$(X7y!3W
zfuX*G{~6K#^LqK?vreA+43b*&nbn0ql}Z(QBCpsiQ}<CX!9WxV$Lkm%PKB+Hw@Z(T
zxb;VIv>KBK;fH)Hj_l^s3`)3|nEG|!KINKBQtGyFvcD(RW=X>$q3d!g8RAzr2rjVZ
z2AHSadp8TSEdhMIpRl1|>#fhxTi6R9Wr&g02X6rATnkZZHCFGSvhig<9}@SG;!*Df
z9-C4~XlOEH+ZOZna)GD>JFGn*D$)QeAvx*9de2CBx0TKSZI8+w_)^h&#2s&b<uC(>
zH0`bm$h|@%#W6mt6T2U1m=riZ>7mwJnQlq5bEk9IeUKUaM>Nbv@hLy~y61usZdu(w
zB$)Z$cxl`cH{U&Ep++pM2~IK-v1t7OIwg9Hc$5U!)H)3V9jDMEr+Y84$Wh^HRom2q
z_oBFa|D0a>3}1opmriXs6$Sp>dV%dV3W+|T)A`6U<sk$FaNMJBUjLnP{DqgnxX@P-
z9-tHFuOsMNQHgkIKzNrwztZ#R6r>lP|1Sk3qL25(5V{a9y*9ozd@zK>-LEM9fKRv6
z-&=nKab;z`!A|LYJeV3w#!)H3hWn(jS;d#N-bfgl`S2s7qoaSDycq_jorPgQ%Y2z=
z^SEUjd=!hfKY%w9+b7O>FlQn!>~?`e-d6?X-7o%yb)d)+1A2=hUTe?2rM9*|EPYT2
z+Mk7Q49W#k0TF{(exMY}1~}j3!cbJ6eD2{MAI{)gYW=32VLVZ&<RAxNPzo?2!$D+O
z=>Fy?Dhfpx2q`k{&;=|icmDwE*zUFM=0$u3!y6+YlVJXv&e2l)amepi0)564jLl>=
zNn;!{_1-_o*^&$oL%7A-ZoWc4s8Rd;)DnC=ZT+V~AAq$biOWCpW$XV+p!w)mPtUmH
zzsqthIThO-d>`$+nQ7)G5ofK@edmIVgPScBSUw`<hhOu6XBLVzblB;Z8G8|zG8;qG
zGH*Z0t@7_8Ud*RGOC;>>qCLSJ$d$=bMjyjH_xo?DW>g{*7$aU_NhaLLh=6D<@T6$G
zSKTef^VC+knM=TBLjr{eaE$rQ^I;0S21k-KiAU^m#oymf6ex&(h#<5GLnd*)11n8~
zbi9Vam&=o?pj_D4#33R&97C`SRCf<ZX}kaNk!|4(7#AoHLIz3hj{(8r&f&6vh}AR}
z!~Gl7)@+@Xjtv)KhL2h~w4Pi&oiB|1zNvr_2nrVQV*R%OaYx{G4Q8nTYd1iZEc0fy
zV$>wJ&SGx!GT9qZiA!ENU$(=H&$_1>=!z(E&9iL{9A{UY?VJ%=w9CmNTnXImJV(^(
zK=aw9BiALlAsJ-!4+sXf7-H#O4=z5z=r$L7YBs!wiZG8)fE530r0yWATH{`wiV!VF
zoD-GiX|;`}w6;vEG^Ln4ez~ceD<QM}8wEbKgATWc%DS;SYi(jen%Ug4KlZ&~I+X7K
z!O4Ye#k^VRmflcLY!lRPOFQ+){)KHB@Qh#g+fu*xi+@M3NG6|HdAw|H7`K06VgCy>
zi4^JW95Qo<bQziD1k91L6rjs=+7=!CP`ZzRk5bIjn83kjYz07y9*si8aCv+LV8R+i
zN7X?zT0@$uroAVv{7pVb;$%|83JHH60+EB07%t{i^NJM61(8-_FEI88B#A>GV3m&8
zqdywqM)!9Vhanv=UbBdCbT*tj6m@|GOVga>$Z#AJvjtc~OZ_T!EwFjKr#R$nz9P$R
zGMa7ACB<$I{NrLwTLCqwzdHm|YwJUwB`x9)eZ3FB&u*MzmSmuxs#7qS!VFOF!e31J
z;1nkJl=cHmzs8lfa{@g)g))bc*YmEPxaR$4P}P=_ik4xRe-u^HKc1CW0?$nRV@M;!
zLED_oUt@rvx7CU~SwF94Xq6!o9LF7>&!7|1=a{C3NIlg)U)_Hk6cZ2tS6DLyzHr2D
zKM0P*;+?O3Z$Qd?Ryd4ahks1do<6c-`!OkjZR=_rxz#uMXe_(gJU1Ux3y&RJQ<23~
zS3Pd}e?L~e@1U(IyK$Wn-I3b=OPC|}sfKuK=p3*9n8333I>i;Ee11#_y=@U?$<7Lu
z09Kw-3Jrk<MX3-m1~tH|Ou2xH0><rjI02XAxJa8xB#Gl4FrSHCBj)U)Jp?3}svbD1
zCwRi~6sR1Oz^Xe2D0z2jR~Zc|Vq0E3033P1NGXu`XvR3B=C&OPb;ej84=@_aF<icR
z85m^SQo+{ky@q&qn#lBIcs&$^Robk5c*Sfa)&9di=?)}C#U*sI57T!1&V>QKkW$l%
zqJ<T~l_wy+h&Z2FA8gEAY%X~{S|mK~b^_~CqcD;L8a0d~Yx@hbU^1ZGbK&jbK$eb&
z_~jMDCvU2?#s~16DkXXSgC$0W*iCe=@-Zy7>j#}zpD`{ti>Ry;qT_-oY^0SG#foK-
zgr-JJoZUos7;i#9R(}`q-+78k75#(><;Y*3{#U_eo!|SjS22rngcHzt_X|qAogt)x
z!cm(}E`Z=`J3dRVly?1Ary?{Su_9ufercpQzMkxtVDD%Paq{rmM0%a|D@u>GTWtpp
z7r*cTj_cnW4S%OH14O8_+-ETeja+O(jzi-ArR1~4_W_9d^p^j4h2=4@`+Mh;X6eWN
zyg+dQnly*L^{Nvm{%KCdaV>BMr%Rf;yNrAVKnjVON<+9TPWF*)>)f9rjp_vIVmWmc
zfefQk!(jQCT5M+T@XEUDVwmsIT&6;|3!cMz*}MJxg&s8`mX7lZTwLc%UonN}A&M1Z
zY33imB+g*HH>&pK^DQ_w?)_k6u-|g40bpmXg(4ODjx3mhd_b#GZrQF1%$E*ZT{d!>
z(sC-`g{-YiR|&o$C;tUZ$H^e~E6Ge+R4c(r(VtLFJfj|7R(RYxW;{S>S6}-tV|wIC
zC6PjcpN0$2x~996C7?pKl#`B4gqeCXs+aP+Oo#8uZxo<qit+S1mhbQLHb4VEdn+Tp
z$7V6h!o|ZfkH80P;oXYcpr^Z#Fz2hAw!jqhJ~!rq4Q==7`z3w}ZTx^wyJ4nw@FPA&
z=NMH+a*@=K+-T06g9wuZZr3qRFM%ATV`1}amHg`<CCh@J2`#5wA&IBWZ$9kdk}K{V
zeZeaJy=akG7<RSKLAh{>IXvBzE4f~I8EZ$9ina2fl64vuotL=<A2v;3cRv)99GK6l
zkS#owko}23CfVgn$RfDa{F1x$WFMmVEPM>E-l~Xo7Vs2Oy51{N&hF?sXu}oO#xvE)
zRHQ=M;$W%M?4cwTkr=ahm05{{9)DeQc7lX4;@Z_D&?4|_B?4O};;*bqi~{*QUtdA&
z07J^no!Z$+bCh@l`MVSR&kN!v%=){N^>IJT&K4j>((AZ4wq=UEVxQI!*h@`H+F9xf
zhNZCKc4A>DHY@$~ZRT}JaP<WOiN+tg0twkN0ASLX3m>R}H`>1AozD=-fR;t2pc-rg
zbXDcDXubqYqYH`{r}BEJgAQe*Seep=L~I<YBE^w?++p+e(rI$1ATu1xO$RHZthXNy
z&U-M8V-$HTb|m8*J;{CZ1;sv{vPR$tn95pFbx@a5Ya&>ddO%3PBcO;RGRPs9k*qkg
znfQf{jNA!eXycZ|pMD%Z^MUpN0gM8hN>R4-D`3t>KXsO`vt}bNUTtSMTuG9b%r#Iv
zVW`y@-YH9e?cpkl&^PFmC!#mmr6&*%n}=!Mlww)hf5&(e2r$fzgZp3R@%4VxaDv=*
z!85#~q?@R5(OROEj5^2E@F-vjm(EQ`?~=|@8KH)t#Uu~|XGfsI?cqe+IJHbzNkcK%
zQ+LwFOqWESH{<R?nsUk5N8(<y+~|pjy_zHx-GlL#w8maK!aNQ6l~ZE-BA(Nj{UPDi
zpq8{3v5V*5$@!H`re=d})*=4Sg>>+}4_&3%qW%4w|KAI>Xm4qlFu$(Lfd7ZGw*ZQ(
z%ho^>LV~+RaCZX1-3jh)!Gi{O2@b*C-66O;!JXjl5ZvA0W?ua>^XAT-`zF;@>FVkt
zq0i~P*7|Hw2&F$>>`g0o5U2$G_;H#5Yw_)upACHS;|e}BO0+uf{uPL$C`9iz<nVD<
zV}#yn2!@5OTKVE|yuvrF$y;>=I<SU@2DXt&JBX|?SL)zh1+1ZyXQpl465i5JLVVjv
z-i7<uCDNanK~uG(9yZ+J=+AbXVB}E#Md9O(`~@`9%Fj3|Htwmt$#r~>S*o}ghwngU
z=*`*Io^IO(U{Ut%<&TTP<Vz2vlwO8rHsG#xfi5s%NXuYxq$u*k^Dl=C;W?9Xws}72
zZf~ON@*^A4)AIQIr_ny85dp<*Hg=kIb0=Pn)=2TA;j<%JN|Hq*T63vZusD?vr4=b6
zoBZ3f&fu%jbqeuwNBhyeKUJ}d#pP*dflKD@HIdX%-80R7#`{@Q&SN7<i)hkEG4VJa
z`IG^Ws|#O+*JcH**Y?y&9=C-n)nfE&2BX)t7s$8J^xWnYgd(kyx8&VDwz);83Wk7u
z>S1Ns*U)p_pXM0o4ki{UZ!N(>V#7r%dc|+nl7Hc1$i$vAGx7K$8>xo?u#Dq4tP{u~
zY4dk<m9^gfow4xhyOG#mZ~cFTFySQ7+jtm5KxB06T>wNzLP0MoI)9zvGX%eoLumg+
zQAzksE6nIujrlx-Y23o!;0-{QfsFtK54;kP4y}VfAYQ}v0-Hj<eXZfp`xpq;tSe2x
z4;uptyv_V*qc6&9+BUn)4ldgP2dq~$@j6Cc4l%UFueN&T^1uB8ODbZY)pB6l{5gHL
zy*sM_CZ)n>w)sVm*4i_9ldWEg2jIz>SXXMWHC6?>5V62y`C%HWRH!ixftkSXM8v6N
zf8&)t<9KpLmO2`2*2ST_iRCb2ibKYM7Per*BPwxif323fe3kWT=X4|L-oS)vy2VGn
zk@_JGFCyjcYoB^m(}wqa+C{Ta`wo{^bnni)P26}I9gO!y>+GjedUyocOIX8Kt_y6<
zI}O9?b-^1{va{_`<bkm-PF;1Aca>K?f=IOcc2S>!v+Ihyy_tOt)mjTpyX#qIj8mX+
za}0#FVkQy^MQ;*)$Fnqz$-%*+!fF3k%jNkL`@-TY?_4O5EEK%@wdjwI@mL!Mb0ziv
zy-xomTVnI&ZL~kwmsf3Zt=Amx<p&Lr!5V`$4aGr^#P~f}Uzan%r8&1M6+bx!+nDlp
zj7~ry;5(7NMHtZEv_ecS4Et?KKmTympf)E@D!kb6c55UFR+NSytFd~^Uy&%X`Ad^x
z3IX*a4`=1tvIKMTs2G_@$?wZIrg~%B+ua{hqp3=p#<u7=Ko9#<qkb$e6(d39g+oT0
z5<8Rq7--AFH%9Ps50zAbG$R*V-xqc>$4ENNjcH8zaK3hA>01~sAgQZOtnVG`B+?$e
zHIJylEXia&D#S#cbe+YZ=eKo8Z-i$7CGrBVPFGjXUet89BB#M+*x4ygnkOZ{q<ZBN
zUG1C4v~c<!MHQD7Iv8Y>h`%@berr5n{`J0GzYle`-o{9YQvnz4AK1&k4jsJg$X}P5
z>fzrp2oCvF{Q^>c34hfG=}|!XH_{gu*d7FqmH*C{C1Uy@$C$=uLyBWG{3t(JqB+kU
z2%;2+Xe)Uk-U+P$wm-5vgyxEds!+K!Rkm^UZ+`XgV(2!fGRuxVlAmH!6bsjeBjrTR
zXUmMa;(M<W4t#u5I2>vYTvNz+oX_9xAqG^zz@@nys(L!Ylmpdgsb*(aS6_EXQgnJ7
zdbX2Yzrlw(xGgZ|D>CnZ$`cNx+l97N0K<y{ta{(K)}h$VfhYT%F~H<0Y8S`}^-=5S
z0I-5ab{E5>6^NmZQ8BeV+>j^~3!?=^M4-?ymz=gzAYN`p5aH?&l*Bzd0Q3kfnbx;Q
zvnq7Ec%~}&b@jX}J(#xoL^r_!(@#^opxZoKO!}-N(hz}xfr-sO^8xz_hHk%e_r+k~
za?G3(wcPHS{#vw6KzS?);hmN@#KyXMR`{Mko^FklCd00(1hgT*e_%H2y~eTmPle^_
zoo9u?fEZYeJ^82;96s9K{*!v4!y)_n0lr+X2eJB3nm&ZuitloLg?ESUX+&kTCJg=q
z{cGRZi_vu};EL5pf0=DZ>ojDlHJ+9_yKGH7h%Fg79cnWpT!V@kOQkFo4lzs99g0H*
z1`BIb*g~n+n-2V1k6ydoi3lJ~;Dbp7%fr8vv{2;%sU-vOWc*s!eIuv~$hoLD2)ji&
zPG`OhI_;2^;x#k^kT9|Yx@UieOf)ME5$;}L_>c|ny_p9(_t+lXJDyETR?sdo(SlXZ
ztA2a0*CaH^3|G7<u619Qq7Z4FqPi!#sUn87J?903#hj7g1dKBO3e83thtiwGQi{q4
z@FR_so7;=M;;oTF4Pnnb@&ENWsP}*2e)sFj%dm}?FiQ{cdU9Y}19gH}?bp#vuXTZY
zpip=hLO4H!R2c(uNBUZy9+M72Q=pQ$VA{%{4l{;XU9Zb3f6V`_5;A(8!IYy`yB7wK
zYz6SdGwao+JEZ!(+*;2hUcF{!!^5LFSyd-CS)4}oa5R5!DB<*VqTw5{_RjlAOIyAE
zluD~GGZJdot3@lX=z`&EkRf1jx-pV6X}rYkc3Z^-B`D*#4u66M(OwVO0`)iWj%tL2
zg!}IGIWJx=f?c{sLHomLJf+yUR|oTSLO;+W-ZRmnE)4m8AHWt20NjdmP0x6XTLs2L
zg@L%{NKcc+%1VH#QqZ>ZWs|BKKG5TQ)9m?k{v7WqVu=-kIJ4RDaMl?ZrSyKc@L5d!
zj9QVnQ&E>TomQOhT}5x|ZXdiT=&{D(^dyx`%r~Xyyl3_G{k6Uxpz-;I@$VA@TnKGM
zUw?n`#RfaK&nq7I@<exEbYB0jXNo=t#0clvpojG!IPCAGFOw2e)*ODneDx+f*R*8+
zlgFd$uXcRTLBfwtryGNF7*_(|EAjzGWyhNc*b(MaoIp2#%3YwIi|ep)io{^&@iaMH
z5mIIetk3;jgD|iT-TFRX4i@UkZ(5&R2J1Nrz=;EoeI1P2&v(!G^|#IG{Tbc$`M?gw
zvy%i6d8}sJzjdtlXXs1E563ns|E7ZsFEALu6#Ez(AHO|G)@WY!byNd~L6G<Z^L1h9
ziSXgo@|I%?=AoI(c7{JBC-QT2Hnmz+uNa2g?;>rf<?mn0fRX6ZcsTwfi*@k>!HgS7
zHOm%@>ECVG0m8*ltHvtnWDuU@X(o`)?+bfbzV^q9R<mJdez+ZIE=Xu;hgFBn|Eha`
zXWakyC%v(dP0dY}+Z6bAyWU9LD>k-eH#l6*!P0KRO5g<21Uxs}C`7%<WZ}&s4y3_n
zZx;~vE(Tcmn5eYn;de9N*T17_fKr*QRIDbpg0+9RVmno1{y|+L;B1s0*k^!)tO{u8
zmut-Y_0lLP$MsT71DGP-)G8Fn4U@Lc?^wCJlQ}SMGxh*yFmeE#JQ{E_oB|?)l0M@Q
zWNEo*o~sgV8jj~;Q7y$#xj@=;r!Ztd&_>ayRfPlc|ILNtwg8oCMRvoVXKkyZVxztJ
z-P|jlynN&oLL#DK^j;#fnmDaFC21_nkUh1=lh^xS8FMf0g9}uMflej^QtpmDO+Y#=
z?>~~B&tKcWKf;4x^qqS6q1TqcYV<UJ=pA_i%6qyo<c<s^2!Vh-&`3e9m3H_e&G!T}
z7^OO?0anW}uWd5K^5X8e<D|lFPf0UJ4wlH=($%#IxQ`y}n`uEJR1f6^LuW8hH>c4w
zj2(Oy4L$*ihEu>^@0!?|y?S%5y!J8W2Uf_OIg(V^Oy0ZNr8)5xRR6a?aI)}RYWU)D
zL0rCoVnYwOC+0dpCuta$;tMMI*F66P!0A-ZF8N)f9{O4S9QQl}Jwv^A54$De<^B0W
z#?OHmDzeY!!N7PX{#)Mlq$_R=D7~2w5ksYPaNa)ah`9+{e0(5P8*B@L@tz`@N5C+k
zIvw8=x;%7KYC2tlIpVM20nJHZ#`tPYQX?zi8M3=tmaa_#$D}D6H8(l(o5W{K^k%=Z
zZ%VIX@TbydUlfnL*)eB4_XAY*w*WyDOG9kdW7X1|<ips)bzh#D5pcZF0q{OLKcBp^
zuPE3Qm9P`ogJ!&hH0FU@DzaQp`*IKZUH^^KLHzT0QSaB5EgEG#RDUY?AK;gN9iH2W
z!#90>k6Ji}Ikgo1+AIK;CbqCO9xsZ~6NXoNrO@imMW?eGPoEVdpRxFh9KU$&cLtpr
zMKsiWJ6Qla0lY05MSHz;&_TEu=Al)Qa%qi`kGl5rBzu`5;J@#TE*$DAYNFOIVZ<B$
zTBHd`4q)XZk|KCKPDw@qLQOx;oA>}!{N_hkUTs$Eu6ShUJm3K5y~ZTRp8*_T8jaS3
z8^Ky5Sg8?>d<tAOQ<InM(Px!V{xV?Xx4$HZ#`Q*k{)6xO%7b&skP+xxV_x2_(C<tX
zL|Hevo(<JblmQ{|ybS?YrF`~R+#;!EvqL08VI1)|Qn=SijK<Utpn{&Mq|+s%gXJ19
zo@Msy!bgn1>kv^aU%G+}XpNpy^;)TmUwGN*rNHgXTB^GEOR_0{{`~f4%l}$q`Ag7N
z#{gYewNKP55>8GH2jxAPkrC5K_=OieppL6&ZVHQ)!Pkl>ztSR_D%Cz}*kZTaB|otQ
z{*MXM&w`!r_{64O!(rx|cG`t2sx~__4d7ITRHum*4uB6zA7J$rrqdSF1js+^4;NG^
zK_p5uDMq!=pw;e-r3R1$oxk^<F621cr(sP4M(d9E@}g{FYYm{;3y?@*mki_^;-;sk
zw+21~^^p*3lM+A{K$n~Wd!*yg(BIg}{{*}K%VFsmOcwr=aNyeQbu$$7`CxRTvloFt
zY8>d*c88wy5#so900=!PB%aSQgNY$5A~LYnB_7?Op2A)oqmDDy&Ts2&<FZ@u*l%?*
z!h@x<6G<m;W4ryE4|JOxE-kd0B^3kY8dgGNbO2zO<d^VO0brck`bd;Cw{cL(a7s|c
z80v_8X2zePB+==T#q6)6gi0<5dv9-5Gus>vtPEdf@&~X2ol=gVWbb{E5cfdb6AiFS
z$So4c6)7FqC9s`g-RzYLz3h_sbKd|DL@f}tK#|%990nU;uL259=-$GO*bOM_G3k<F
zqG4y_HaYfgeI#-DCCE_x-!aUh>9m*Je=>>;%8sLYfDB*WMsv`RO<gp1qMGBxA>zyx
z*|sBNwHq8i-W^4a@T6rXlM+~TC0p#&tuhq6;^zoZl5`MzX!4@U#=KfR!R2%;bHhf4
z*zKtVLh+h2l9ChP^Xq1Mup7-3nzW$b>W?YX2g<0LBJxWle_2+7HCHW{14X7MF#K+_
z$8o!Rm|A-Go`CtQ8aK>NE=w4p3##Y)ncIH(Q&gPRdt)T&u(L|Cf$tE4jzHj9F6h$L
zZ0KM1wjlKbi^WgKY~&BSZD$)`ugFxAiDm{r0SUD56A;;s{rP5JD3j47HcGqZbik{A
zFlRUMOuNli8Ar`(HX~{SYk?Sf{s&l0>TI8EWaf5Rv>?Q$ZpFe4r;tulH6UQHi`wi}
zRf`$o9!jb$8_o(;OmpP~FJn@JTSK-~`x5dmaq_<<Wd7ZY`mCN3XqYV^fE1#q2DGzc
zlcE>E{AdB@ue286NX+F8IM)^io<T+DFW9dDDZxTes8n1yhL;7;hpPcot@plD_mk11
zNzPZ`7v{HIcL9OI8z~MTqYU>};Onc^Gzw~;toV1xa0#O&DI(zk4L4^`3X;fNCbGCb
zdeS@(Rc^top<oKrT!Dl+!GH`wBXy;=gtK|$^99+8FsAquCY_cU3>;ng>j=Pc#ylJF
zAHl|+KClfVx?`@ib@<eZ!DcwCmH_)66!VMR_uA>a@u=e&sCQm3&?2<9@<`#<kOVWJ
zv*(z)Gz(JJo*s{68;f?>VGJGjQ7m^|t`@KM-7UQZDA!jz{3(8E1B2dcikNZ_=%?`0
zw_!wrHtfwGO9WCX-l6e1!g^-@$<uuJU85&bF|N_-E)BS<U89jlN#OnQ%7n$nlB3e|
zV4ZrV=(L<RF&6i${m4%ru6T|M$3Fn#Ny);C)o^fp7Bxio*BSKmEJ!pnnEE-ZMfjO(
zs^0HKwa3#-6Y9BeTpS7R+pkURMtLg?&BG&3*gMs3AcS@<v;C71;lz!PFGiV99@EdB
z%5c>1CEIby*jL-|)#9APY6@@PIVs^^cG-=B06vlmpN=nAhsx@@o%$IS+*5Padnyns
z!~-doao9Y#B^tP^gfKeGcGH?vjw#>2V|wm^?I#UXvIM(;zR$u|J4x=L-x!Enc5bfM
zs8``<-GvW;rAL(VtrI@+XnU7>##%ZDRKdk1Mx4v1e=h2(aKVx(_FS4_orP!2^uKxZ
z;zKxn`l?lG40c|Vuq;@51Eakr#EFF1%LtgU1@?82GKpLpT{rChu39r+hCtlbCdK;0
z1g$6F^Q#@8PLe_a<KB;nvCIB*HT?|=L1yeGf384dH(Qs?XXPK)z}`Rc{?OpFXpsQN
zh>)=G+#25*E2-q|V9B&zc&a1Nl{t@FXPR2X4YdQ#=zx-P!fnO&`tHc4N$|@G1XR2I
z!5j?kl{EK_iu2`ufqz{I!52ml)*7YiaMC4dSB?5^H>4^#EtQDLH2d0D2Cm$E{&E7o
z{EpX^$z<a5fLn1yp?5E=R4hBCVqyLd<Y^%MUJNxgTWxQhAiX9`q0>EFa54$u0YqBW
z02oXZ4F>b%?Q6d+FIjw>`k8<ll%d-f*=5fqhem`S%>@444ln`zJg+S`sT4*C>y@kB
zVH!T@K<e3(Ok)Dy%p#B~JW+&T2AB{kWOR?m8~rZ05@%0cASkcNm$~XF$K!TYF*msq
zT#Uut%G(k<Vv<Yla6<(^1^1raAsWexXKro-2%fQ^p-`$#rz?c=Z=DeTAVYNsq46s~
zM@^S%8*wSo$8vn3U>d%G(rbCJFGQuF1p$v-Pb*S8ft)palr<5zZ%b9<ku3Zi5598{
zKn58mo^^+CO<(zn?kmd4Ws>+kv|CHxi~SkA=|CN6$V2IQv|7}8c(@whtQ;YoU+XR^
zJ+v6<f%snsvwy{Y{@*i=w;Qe3vZtNTJ2eVqTP$)%We8|1(Apc$Ni?4D>nzkcBrC>#
zSauaRW1P$5&Y}#byapu2aiUgZ|4u&`qz3@4n88x4kn?$SC$RNNN=p3aUYXxVxV5~o
z9C2~Liyh>8JgOFSa#|*Ow?Rw!BZu#}@w56UG|jZ^77mL+Lq;T|zCzSvPh=G34h5)3
zepP#eWa&WcMK)fy{dn$B^n8NFxG9a{#Jt5G(1F5X0%5N08y1mq8YKQ+@E;x$3sRHq
z4twe~hn+VbnGIlUV3(jba85}}<zU*oJfN#>OrXd+=!f$KQ8aDhoI&R`YCb<`k!_oS
zu@1tD3_@3t8u}AgMd8Ose4Kq?r^+x1f4p7xV996fKsIQ9Kw6Wb!4y(c?F9Wgb<HY7
z27#ap`>_gvCAHd0K#v3*85}zKiu2GHc)7Pk;lndDa_fJft$=_2RkZjLP3<{)!0xf@
z@8q)XlNJzPtz`0tz`oFM>k$lM2S4TJ!90Z?08NiH^IaDFhxZW2Gb%t*gh^~?C#14J
zU%+)0EBXk<_&ek+7zduS8;F;9m>!<fSe%H4D-DOBhb;8keuo$y0H$nmtE@T8dry~)
zmNx|Hc0mX84%cp>dyiz&spn#wq0SoO$SfU-7-2*u19f$*Tt24%-8qBr2~QlJ(cTVV
z7<FSQjyr5_A8%0Jy<^^w&sW3ajJ~l-e24rQ;REx+&;IBN%nLS$H+-0K0c-Jt(RFiO
z2!~q8{nv2Ns07*V_m)@QMGJt9fFz`PmVZV^&BQ1>&+z&9Rh1&APUg!B&;k=7$g-NN
zDxm3BEBlhs%#l)og^>$FLs!V#UJuc%IL6KK7HUvK*WD4=nE)r|&xw*Q1sq6mU<oZB
zKPl{o^H`9}%7pPEsr_7fW|K6ptqDZI3TU`4*?S1+k0l=h#0Zdu`qgl9)w3z!#}AyF
z0Y$Ef&RJ@^ztpU5zPAPM6AWxnGDDVZolLKE2z=~56Ckj(0&=a;ULz}!zJvq^nSIIQ
z$<2A(4uSqdr^}qNyo1>1&%e9Sr)Qq>(xj^H_&z!vR8On$E02J8%!<>6gag!P&TY_Z
zeh+Hyf-S*qeD8jcZM-sAVG24R)GCDS)z1~JuiXG-{MpmuS;#-<$Qc$c{FcJIn*8_v
zw^$&{)wh^40D037Wta(b2w1SlNK+-6>ML(l^JVz<8Yr^`J-!Y{^(?-?>WP+PEhSp?
z0KlPrgIxfQq`%6d|9^e4&&j~W=7)wzbFm0Vg-f(hvg81@-paZMr@47}8~BpSeT1f+
zC;4PpzW!c8$0==klQaHip<?j+Z^U7*&uk{JutVG#u>{!c4z&HK`{?D^3u@##t6f+w
z$xsnX=$`AIWimm%bJdL!lL7&dA{;o#aXZk&h(3<c2jG4kTLeLcR_NGMWx;Rh`QI}h
zL$9uIUT&qqjWvZmt=(5;VGj>U*5yjW9^|?ZGwK4dAVzl5q;a5~_ST$`w4s9)T2cmz
zu>k?2k0mnUBv89hlvCWUJO8qS<s+JFw5=D*$(p2am@YokP>zQp<o<N8$x>&CpF9M;
z#mZS)2GTb~a`^omQQ8&UQWATx%-E=swbS*cjFV2-!{=tIO>6BmX)1hr4`T9>N>VNH
zx+24oOG^Z@DIJ2gx8K&9D9aMD^T)$vl-(@Yq_pKQ5D<*!Of`z-m0p%$(49C{n<!FH
z+d`}{|93~UKC&k~2Ig8k!H*A&&};2h_H$YjL=QV)_tnPDmUdh2rkGs;3BRin2-gK&
zVQ{>KxuLpnEWxSER*Dth0R*iMP<+ct`55#^pX{jtfiDRY9i&?Bj2WP&e!yYh;ODk$
z1b|^<)|3^Q5XT(I4}MMzgeY<?v`DPZg2=i3a?siPpduB9?wpG>PU^59<Zgf4Rn~S>
zB$Yg^8%vP#e!R`g<<1%zae_y7GhW5Qo`C2A^auW9r-sEkxK)jmLG(!nEeD*M{tstp
zdpi&a^V=TFrwxAk^%{tIuerwP2|geFoYQPLq&B~ay3=L%Q$5ZV`|0tn^kTtPl_h8X
zy_YWZYXbXoGUAS5Fl<r)485w;46Dd(y_!&F_k05Ti(#_1Noa?58i?%Le9SBT<nfSv
zfgDC?!1i{v-2W>&VgLP2M|4}6Lcth=-LAq`S$fS0`#1>fagos9P!&IRkjTu;{5c&<
zZajY}*GMzLABfte>Az+t)3Y;<($M=i4d%ZupZ{(!2<Lr+_PM5Jpbe*3<s^*cy{lBt
z8Iyy}UU6+dFl}cGsw3mF>s=qC#C9yE4ewGnHXDzV-p$Z9R}}+!zGbL)8>|%wuBa5P
zpUZ%7v#48rGwC-`F<<*l*&v(Umk4*Qu!x-sq%MGTtM>lTp`@s=S6*4?h+y63ddT!7
z1HiGrj|+S$Ac|+KcMhIs2N$MZIzY>AMNMiXATUri)GNLc@J{Y|7PF_QjR+;~>?_pJ
zpc01JH9O-veEy_)rtLu^cL1;*xkLMz?|X!huI%`z-jxLW9J;$T=W0mr&yyPrmz?(`
zW29JqH+2QM$bHR1(g3?26Rg~g*@Pd|zN7E_dgGG_4&J|60buGpZg)iHWl_U&S|=6?
z7NxBl4$nXWiX%`S!t~2t0CNJChWh8U<f%5(AL?K8WU2@bSpK7i@n2!0XT6CHwEmAW
z<UB8hvR6>tra9XZ$LyaD47brIp2OTvfvMc_Vrch6Zrc&?gDMpmr}V%Rq+;H(`Z8GJ
zjSqW+_PP1}?*1z>mQK*gS+IiP0YTCG0;oeL8_1vMRNr9x97W##9SV7FW$}?zmLy4v
z*wyg-*P+O?K*2m{2cL{^cfO-n3)tN@+Ps|b(XB1c8elA%Q3PSJWdl2k-y88E4$VM6
zoIO%ync2AZL#hyWx~Ds&uU%HbVy29*8n9~WIb+@3&)Qg=N08_ssHyD8$!@!yz6(Yx
z)7rguK>jG8NF_Y`I7(`!E!$myx_g4@lTN#cy_*SKrO}h2!}FM3nFeLQ>C6Az759JB
zOp64LxwtWK8_?xEK$%RBgaGQSo;wYIbtcX3hzjBnghCSv$XFesG8}QcH=u>qseenV
zoi}%*Pz%-Qw?{xoNjWF70kf(N63@I+#`1WyM8x7QS*sF5ELR0r8jwgOtJt6h{(-*!
z9ftjnPky2G9xL?zAppR$bRgWa)0TOq8i1d+tGP_4%$y!BSekY#I=Vqx*lS~bpeHO8
zlm}_`h1Tc5W07F}bq};Z+qSiq{$OKKpH|-ME&A-Y#R>(PVh+LGIpT3n7YRHbsU(zU
zMztN~hco4trQDzUp3fK$xT}uZWp{B*YL)!4KElc84kBBTD(n?5B!|aieVeJP3G>H4
zfX-CV^oM`<^Rm`*RU0&=m=rSU-%&*t9oG@;#SCphAX2H^C%YeR4D0uU-rv6<p}c!X
zVfj|#DE_04S1>M@nC2&-ll%&t2D&k%jc#{{V}Py+K&Q2;lNyZYd6Fi1EBM0<a?H`+
zpG+I=bNxY6Ni5ydd@_GbPuSDv?%;RDkVVs4E+L!gDvFvO$OO!0GcwK>4P8<&;Gi%}
zJE2f~W+PA&xijT1Kqsk4Ds`{meq)f^wqpY%d~&VsZZW7hYa#*oD3*H?NIm?6F{4}l
zZa(h;&=CQEVX6q+)HGx~q7cr`Wbo<N#$uZ6f;AQe=$$k9ibXXf-BiVL!f8Bd#6XlS
z>n0XWp0Pkx{?bV7z%T#3z_rc(jO?CWQ7rH8nL<S>)#f=O4U38V2ojkVQlEEj{y^xU
z3|#2AK%JY+2=ctBfXXBSm4x%Kq>lUlZ%oeLZ>0nge0g7A)?y&DpeUa&Ds5SFjzu2F
zH@CJA0q`;=H0)~IYp909#ZsjpCvIft=HvDtR1_2)r6LAM;anA?UtX`Z+*XwQPv$OU
z@<cCp_055ubxMrm&JQpfsyI-87`G-L$fO?^q$2lk5C6&n$SK;Bs|41XLb1i7*FTWy
zb*<pAkD%~e$&s~kmG#eWcGi79Ryv-nnb>R%Yc{ZJPJ>KAS$?%_SikfV(Wq_{t3${g
z3!W#}AC+^c(dL&8q%{_cyW>U|yNb`Qli7>mJy-<G9#>EdHUR9R)brAl8q)~>;&lF-
zOOQ7RJU4H>Kc(_IgH)yl48p+fk1iHVP5^;innRb9ej29h6o{%cA~M*WFdhR*!CfsN
zfXb^2J^+e<dJ<r6a5Pp&l2eAbJEQB)dnX4vZ0+3u#(-!DqJgNQ;wNtltj^t(2zanP
zT$oiWY5EA)nYKm4@{4#ce%#PKNMRD07GM}>?F)TH`S~`diw?^q%4Po}>GAKE=ifgG
zUxggYeFJlHY&aNC07$5-cL+wsppE#fp^+@DZm77e(1|?Y^Bx(2AHQIWVaqdWVS7~X
z{>T2xE|8n^EMlMH3yyoDk6U=UA>r;@q1tjFX8Zc~K3luBI?&LfMmRuIRW!8FmW)g*
zmCP!-(z1=Y{mQ?3EA<2M)5wxjn~1Er&VBfj3rYBI@$F_&ELlNF3a|9<(7Ih(Wmi|J
zuQ9q#6(IMy;mCg=$nySBD9AwjOwfFFdRU*t!O=J?xfp(#a?fnDb$PeEIGd94ZCIx?
zWJ-c3x0?OWh{({ikw(-_T`VgCHmgk17?4C(RdN4n7d80fR(RiEb9Z%=w>hv}M$WwX
zI6J>APS<Q!{h?W;mgjLsp=9YfDqyobeKHY?7c&Ah2C>Ku1|}DZUR%Gs1l_~bT!zKP
z#1!p<)G_&%?B@?UwUB8}{s?2!rU<anY2F5$*X133J}Q<?o0_KgDBd10Y2Y@ssqV5V
z{nOJv4-f}2B=1~P@|cVsp6iuYas*NJ2>zUpfO%#@@}m}0%xu5E=Txh;D0W@Ue>82_
zTpt1h98D^morWQw4xCl;aNOC@P;oPsw7X_`tvn_rB^3olF4**}R{4jhs1!pHOC9;e
z%m3;zkNS1AT#qa(vZKaLd2SvQHQ%k49JOXPo02>r{4lu-;rgZZde%lqMkXCzdO(*F
zG0&wuWD5lsSIX1#CI5DuFg5xbazPE_B{MLMBJG0gDdZH4&pMl+2-5z*&!?Ss0MK49
za`oVDZW5*%#>Q+Ui9f#~l2vFZBEJfTG~nj2e6w!eySln=aI&U#NLT)zoWevwA!xt9
zB<A7a*`c>uZh64$imAbkyK8*AS2Wb*?d@%F28TtfFozHXD<B|{Q`=EjS7*IiL3NP+
z17ik`%HKp<RJ8cwtdn3I>}Qu^I|UPQ&X!~~BBu2z`<DxW@4f{e|Hp^q=_k&+_@ZFh
zIuXy6D0dG0rKP2X;6NXrFa&*mwA?BjVQj+wl7qv01mY3l?HdUE7ysk&y9&DOF{oI}
z*O&7-a(2}1YLTivi(7EN5BUuQLSUQvx8iV!s{MUz0_vs$0!aj$m!86sZINYVvUK?{
zlDO^dr04p&6#w#rB_qFU$@Ic0Wb%`cE2u-mC2fp<vy(-}R1@-s_#eLnxb~hVs50&R
z{w6h*P8Yz26PKKlLO@x?rfRFA4iOp}+PU;<c4mMG9+LOPfBi^&<>`!t$*=*U&{&|R
zRP>05ewS)%zf+6N1EkQQFtdvU*57_++Z5!?IH@`xpJ#ESMf3xk^L2zrEy@PwTPb^~
z5^IDVvMZUjNA35U&hN*vHRo#xOSvO9u-^;PV8gF=p?X|<TZg6<TP7kdr7BQ2QO99o
zD65p#V_r5}V^$xq1XsvMeeF0UEAl01>f!x??ezMl+C<#`^0MNfW@I@hs*zc_2v4Eq
z8d8m}AvW3TUh<70os^N5YnT`;tmNsQOV86-#>QyzD~uc?*+GBpX%lu<+_xuo*qnZE
zBva^`o!lO``6(%TSum9%cUiwOh9r7O*Q<%t-b*C$n5eYs)!kf=GKDpfZZ)hI#n`&u
zbz7eazk&Y#;y*nU{CR=VLCL5+9}WU5h&Q5++yjgaYzv^q(@mAVg@R0c{Swo#Sff62
ze}A8xhNf8c=er;?S4hBr=L5(X9UWbemX<bgCb=Wfz{qGEh)4l5DIfAphdJJgccgq`
zb@%QwFa6HY=un<2ESx||3NJNu;UH?uLk#Nlx56^Dy{^h$kNt3KJ8LPyI4n%qM?U3{
zjP#<ONbkJHOV?=3I2m^hh#d2I@xbK=sjhmb&D(W&Ok6fcCmB&KZVcjFm7jWhgST(x
zi!(-iOeubvexszN{25zzJZJPIp5h-WzxZ{2CjS*P7AAY6iyZHsz1$0o4;Nv~N}8m*
zdV{+^dzdmws$I^ftR=<Zg7QDIg`5uejQf^))ZD(md^Z)hzX-o(<VI#sJB%Quvdv<R
zU+-WnLgMQ?iG?|J>e$Aa4Dk@qX{4bw_?oMbU0nO;I^W%6M}cPRsx{8Nb7^Q<nL(Tu
z`dons+nX*Sq30iggPvRbiQ<;n$9FT8N&o-2G$8WZcap^KcF3;{REYpQa4vW@5QHZu
zYp~#CDI=Gmc!D4pS+JX@en|y+Z)Znzy*nfeXpYC8wPusX{qO8UhbJBj8<|kl`Gg4#
zdeWlBr8q`8c~~^n-b7`EDd$Kx+I;5qwOin*W%>c@D^k5+W2F%P1^Iq6IhfhlbZh&w
zrj|=5J|qJLigZXbPJI<@M);1h%wfV?v1Mb`^r=53^&6wjXfYdq#(7v4zD<cQ?oai^
zSF4KpdlE6p61db4d=AJNB=+9kUErH<U81W$#C*>@fS;+(?E;z8oxpumtr}Eab3vb5
zU9Zw#>)=p%`>0ER4R@k4lXSc&{6q7>yq;E9*-adgJC$L%$U)iqXs$&gr8`w8X#M3U
z_#_UYOjg@7J%#v4tu2-J9VhrEdm|gWn_1;=KRT7zXL-g3LjI>aAAI<XvJl9a%%fzO
z0}y`|rhKlKmr`%ButezT`IBQ(r7SEgCV-A{r>o5O7_qCpqqp}nSQBV@0A)(d<yf^(
z>|^Rz8cwgyon`ZZ$Bg(>X`^w4Q5&jefY~K`_Y(H3&6nLjt<|364mcBIv8dbvw_j&_
zaNQFIyL{9#K3CNnwUAQk>wLLQ6^O1eU;!aA4b@0-5JH#2(4SCQ8w|Y96=G9j^#^|v
zPueUnsfC0cCQ0U9J?0z`S)IUa^pMDPFA3<bVCo;OlD@98I8Yl1EW46I#2P*lX(su$
zkb4mOL(f?r9dpewovVvkx-*T{Y;CpbNwE@S!HFb=c_Z@u=VLaV0QGxW838v{JlbC$
zByTg?Oq0{62fzYv{;>kmb65m~9MLG!z6u~tVx-c^F#XQg*%2hoR*{39_9s4~#trX8
z;2j*~L2^nyD~EsP^1X_Ia)TWrLZqEaxJpERnQt?f)5RX?9%gR#=&E`eDq**7@zXiZ
z9mQePQSVjcW3&Ua(!jUFz~ZzP$@~1!n;J$(8t}(6zl<F;dlr8lv(PI~O{10say6x}
zLz8Ka`(-zMd`V-HRuDs>B#%YABL9zClJ1ENeo0SGl=#0NmAoB<G71X%cKrKYWo2dI
z*g~voczAjNf<*}Lo%nj&iuy)})Jxin%<0UTJezx>w6`+m+zkh1#W-5z=aqrs?s8+=
z;BCy0)_5MC2wbH46pz}7jkW2>Q@M5W$0NIFcR9y}PoJ)SBclIyW2}dh4!j(;h)%MM
zWynO5X~#w6(=?HruO0uQ8}>uhs;6&~C-`2d(d%6B$HN|6e<%lEanB&pk-Zx^4~^&W
zH??A4OXi&o!o#xbk6%x7<^oC%)QpWuqUGKhdmQ9&qP$O#bk;z_MVXECm^UP(j7~6k
zlB<pP+hxKVQS}iwG+o`uhpFsOl=D1>k2}p9o!4FQiO@gVkxIA=MRw7*Mbk;LkxI_F
z9`V5EAR~iKb!V%uHWy;c8<rh}(w4Q7D%me&)+?-^Fyyd4)ZEx!GZ_<-QiFZCxZxmm
zGU=He^6sY5Dzxuwwd0`SI!WECW+c0OJZ9^{Ui=o>!(qYg&S)_z2WztI%jx<m|07SB
z<KVbU?bz@)C0YBzf}T#<v!jTMI`ci;SB^yH`<edabe|*-<N}ey9*^hr=G;q9<O}R-
z-EALxxnYC1c{TmCrBo>btDJ`R(A~aZX*ylmpwr$CNJyn?FFWyVyjxCU!jb>b^pXS=
zo-wUf+F~zr?oZ0AD5F=A?qg{A%|$`3c!oG^6w5Be?Rv`k)VF6JxB?c~g~Lsgl-6d9
zq;ITX`0vR(dp!;c@{Q{m5Up^@n;1@Ae$ePFeq#uBk_>}d5Lv+>>TMaUEXacnDxr4l
zH&BR<DYg&vnPGeMa2;fdSAIH-6e)3Rt;A2fK_||WYp-pUJKQ-#XE!BuI^UP@4WvLP
z3q?upQCjYK)v+IV3sdSHK|~hrQB)J{`pAege@S(4ZIVM-vokgP%hPY9MY9FVO`wB<
zhb(9<6fb*m*-e6etyw+6_v-Cut{%zUmCJ|?jJN!3@4U_m$mgm~V@&+TjzHgFhs!L5
z=yZ6DJJ-7E5rYtB{qI_}zYfF~o`zB{+S?5uA=*y=eqIzxfA7Gbhx3G17lP>Ay;}IF
z?i1D=v5%cHAW5s=rbz0vlXt0xj(Ka3%dbOJ5@i>KXqKJI(kf(+_{Iv}sNs!Y)VDl7
z+v5k4XbiNRi&>Km>^1)-mF%~_ZQ!f1*;5cp8`5AIqN>+^6Ug^bW%}2Qz?2+~TfNxK
z>5M$B*~XlRb)CD)TBIAv&TOKNy2Y~T`86LkGoM&r{=Jv8m6b{a4Rem|eQSHs$Fe_e
zDs!d7j;~=TNZZ?g@0CPm;y*NLbf`xvFI(_~1*?}9Z%$Ih_hhX1koiQ8oTa2PnDx}u
z1nka)7s><$bC?4@D$cKE@)x!9m$u35a*Q6UDPB0uXZmW^-zNuGS-10B40v&$(Lc1$
z$rM?*8Lvd&oF5f6>^0`<R9X<Yz-1_^Uh7*p>#T<Fz)|FDVnsQXTN+QnQBjBoz;L~S
zZ<jq<`Pi@;BfTB7^D3t;;_l~8{GT&p=(`fa^I8VP7&CFW1gqD+60Pmo;>rZ+7dZ6a
zy-IM!L5_I}to)c{|72(*@^X!vB?=ofU&)dNky_-)%8~;9lDz*n4>4_hrXjD+(2-?<
z-G|{!9YoJzrSbKbwFoI(qG*(-EfwDf{EM<{CgI@N_Nzqnp^Agi2D^%+S^C4IiQ_(c
zw?&1aq&7E<{Yr|3MJlOR0Jmi7)<jRNeA1EtE5#61K1uZfheW_tNygQ;G=36{1%>oE
z1-lP#M<f0;Ka$itCoX+QUTC4Zc+V5^c)M?Yd(iq+Gn3Msg(m4?{o3xmb%7{bYpM6V
zT@G%XRPK?sd;I0kr-|%^ImFVVU4O0Eo?KKb_ys803?_wMsK4Kf|L)0el#g0569$AZ
z|1|P^N%-E_$Px0E-V1cC`n~{VQ7xJAu|~Um5R^)Nv=*Z7*Q4_`qb8=N?Ts+5|MqJ=
zT}dT2plNkkPC-RZ0l(9oUO`R;-`Dq2ia$OV?fdJiq%Y_gu%%y&$s9yc(v=0J*|1Ut
zu9CE}xCSJA{Y{#@28l-<TH;OLR+m-AWrAE6TgpK(0xbbJ7pT)9YywWa$Mi&vbDE&n
z;|`BmA$zk~pJwY}U*@TNyIqE=a+TT^AgWa6HArnH3VbawE1RbnJ85p$J-~&gSB-b6
zu#JjIxV5{zPO`Tt+!L8qT8l1Qo*(d9P-rJXzlgqADmT*02Ff8KDk$kE27c2m8*2<!
z?`~tSlsIPULvZSQb^Ak#`RE^8K6hjDY?@rd4z~6fne9eQvO2>2)Lkj8f;l84=)W7d
zZv1PfTRW>uGHV_saNYer&QSB7AHzi(ob({c@}-_UD9V{F2APx`o2h8X@Zvu5>B4hR
zP*NkOj#_^j5A^l5U%Ob64!~vcIQQG1$J8@{s|yIkM7-qxyhScjb!AO<C1qYP+5T=0
z9(DRDBgZu97>{L;oDzM+!|!;iZ*_=^kRviHjfKr0QZ5hcFh_ueN6UhInptP!WVW&T
z-V3g8jmufA2~#YPE2?5;cxn8&VS-Xs^w^o>Vawf`;_PGM{eTkt)!~-fK_V_vop<zd
zZBX@F!Edyy8P<}?X*bg7F&poEf||6|^x><A@0`~y_epMi+ii5xSxe?bWp!kQF)?xt
zdhJeax>r}DJRXXc!k{?6VPaT+J&W(S+qk1@+TyiFCT#gF#kD<`x11v#x0J7~6*7L$
zt#Lf1c5odPMcc%J%R$bS=x4i48iq!FEE&W@*Nl~jRCQczC&xN?!?_Gc7A7Y)Xsml;
z`DK3CdidVG^hdeBFeYbZdD-oQdTH)8nt#z4y4`>7R}$G?f-(CB?#000zZLn(ZNNI8
z1Kl<<5~iV{QS~MvA)yNBkIh>PNQdw1_|?_6S4_#*Duk?`Hs<0aINzAWP=020dLz>x
zQEYp^hb0KDO%iRwm*Jh)Th`^5OOs!H97!$-?TpyuL1xf{8`nrZ6_9*|>Qobo4$<-A
zGz?p+&!6SPZtR26XeKH)qT}`l-BDd*QThXS<J^2%v4_KlVC+S=-bVAITMWz}mcR0}
zU8R#;{K+iHkWfOah)dguwTon8zx>i#x^bjn)FnWIi-(Ppqi~yk**{|w&v1noqsx3|
zkDXday1sL#^K$(}Bn}280}CwPP*v^Jk;=lo4nu!`sqv6Gc(y<3D<?#5pdMU+*V?dy
z6elsANbPv04!bv}K3^OC<s__SDAU0sJsdGYff};x)>Yh`jgh{Udsb@y-kaO$Yl$e6
z0}3Xa^+pV-Q`1>%p2hfSH?1qLBU+Q<p~uYzjUudF|5A@u(_C3e&WFr?pKy})PrA|+
zpPi2zy*Ks`37RV?bac#nCP-Z)&>rJ{An&f}SWsUFX*S0Wc6cOB7oD~sv(+YR{)te;
z_73H`uOK}%ClK7kN!22J-3*SPQH{BpW>U@C`W|wrAkDL4X!WMi?BuStU(>-XeU(*u
zTWb<2+OE84_g2^IGfbwEg;VE_Z7Inf%Wq*>EZ4rmf(hsn=i!ft5*Ph06deWigip-<
zl97&W0d$h<ajr-<Z^NC-h-d_TP;O4y?>9a857$hhm7g6aH9uAVUfF+nd^y=V5Wa&W
znEyqYPP-pt)z8#4Zm>lX4a0hS{R&e$@<`+`t^;KRnNaxBjQuhfsvicfF(frV5LT6O
z&|H2!vznruH<63ZkhIIxX$sXlk0yP<g2_jQj<Pq;0ZTGHdpl~XkO=SpKyoCY-<G&0
z=<7iJ)BAW)R^Xm=baW<wRvk@Nho2w9?W7A!0l&%TSE1B*0W7?`(|0NP;q$R_3zwx#
z5t+*KS{o~C1RRoV4T@+O{fX^1<9*){)|i%%a2O<~#-9eHrGML>$s@D}c?A<kC{v!X
zQ8OfY7v(K5cYEZedL+$I#WVE0(1xvZg{)R@h<A3sXAq)J5Wg%DM)_H&JYReosuZ6{
z;4848J#6d^C4@NC&rigBc3jF(8Th2PnqD!J|3Fz_UMU~7ee_M)_^w7wAC5k|;%BsA
z!l0=1q@aYD>&BYJF>S#vbB;M2O6Yt}HNkl$&D7>-G0|+}2Ts`BgPGDm*!pjmyziP_
zLzpFgXVa@CqTxmy<Xmw}RU%JoDCD0?Hy<;T6~AxwXlyzyBc%*}y7#xv<e#i-35D_v
z6n?4Y?nOZDremFGZ`K>OwN4w+EHc^jsqkWAGnOk%7;mNk;nz`^<{tbAna2`RLb(i8
zk!0pm_N>|&9j<zIGalO~lRY}yj6uEhpgb1PKc-J^cGe}uncSsuSw{uthr_AhU)OKj
z93csh#HhW})V)sTV3gJ2vtTZcXTi+m$H621dvEw}&o4@{7dkqd!7{J@y2|PA(7qfA
zTUlA5<Kao~?CdBI3X+)d@$oSNL$b9U27#-NA}Mm^&A8ZJ!<(w9UE=)*QSl-{Et6zu
zV>9F`);q`|GxGt0@E8oNjs9$I=^Pvlgf$_>T6%LhRC%AgvL13UKl&Ka6KssW^T)kt
z&Q3cfzYZo98^f5URE<o^tEQu1a7?D|qyH0etkgXf?jtzov&V{J)45%3u|3$u=sJ9`
z@#jFfC+oeSut|8PYln?2wU0=@icjaCjXxz7?+;?RtZ_XyFm{;ECR&$cN<A)TdRDz=
z*R`&3rsws|X^Vq<VxmLl2QCsk2t@sEHzD$P$G2vR1$>lv9tZHMZS7F)5fLXgFGQ+a
zX61G6pO{q+GM7T3ZiIE3VN*0R(dOf#V_34+e?6u>Du=FzmMWPzc@pY3&;)bgRg|Z*
zYWfJV)Veh|`PlDT$n9%kB63l&WoSU#NBzLqxBb8rA-wEZ`t#Rn*m9jt6?~%x9~!#n
ze?$Sl^RfXXBv!x+{vV^jN0Ks&MRv7Ddm6XPS)(ctlFIJBfE+u$xR^rQdT%}6KT{OW
zYkwaIJ5c|7vNcADjIO!~-y06D5<!<;Tnj43GJMZUMZaT;yo!>7A^QM3*+5nAL0L^f
z0;}al$d8cg;}swK-L5|adWB^ONnEFn!u-Og<=g>zeu7!!gn%;Ek=~lBIu*>>pz@?7
zZ~z7~yo~V9ibB3v5V>-z^vAtj{W#=wLUam4-%?`Um#adyL5WI`G&`Y`JK*EXnb&Rc
zx}8evvi#E++L!JUZ@=lM%pS(06nCOGy&o5=HS=t~hEMsPHsl#Zll&M%z!f;)l6aj&
zi=v}8x$ucztw9ZDm2G6SXIp2iD6QalP)_^8nv?vaBl+e{bgUB<&FEH4&Vi3epPz1Q
z`wJuDZsYMYL<VjTHA4i{OM|1@eMWCGku%!Jk(7xFi1rX&VMH6Vqc1B4qT%^Wg~S<G
z>HQBv=h!NuaOmFu$7OMPzAQ#w*#EdJWn$@{9gXMftcY@Q-uamC*Z&?WUiERRVn2B!
z7oMhzZmE(K>767iBcB|nSFUE|Nzm$>((G&PT_%MY9k?GoGaPP|AxbntIoy{sQS1`X
zQH0xaA&O!$x5D<j+MH_MPf&^TqRF=IVs?oBVa~3@cz}#bKVPoeoeYb`WcmoTVSRmw
z@nUq7a^7%$tO9wtLg3;)zqpr?qINbPA&&@AGP%w@ikV<UOS9Tm5)DyHxE#N=mO9~d
zX|{doJbLcez&1=Z>!*3S@xsl(tulN9p(#5UxZK!jZOv-?OeHsLBr)-RL`a1D>bSTB
ziwGhYGD92d;)gA^AXv7a4C*?mo6|`CRLZ$cA5L5RTV*E_<4E|2r`uH~@~4<KR}Dzr
zrZd$UU;n!?;qTPbS7AtrQZL3VU%i5Vuo*HRAdE&*CljF{A-@_EQ<BQanL($i%hEJo
z|L&V-P#1B)oAq7d&=GQD&a3dsR_NzM&Y_vDE;i@1G{zy+iQxt9kGbm+&-wjk%1*O7
z>FA*yUKA=6a6Qk*7v;M>tt!oDr5i$?uA^4_4QF_&HRQrH$MNUA5csTq)`H!{We^*P
zB^?ok=fYRCi*9yvouinKZ*@A0VSC<!l}|jqg2MQ9OyxAdOq&mGK!_DL-nx8)Em}aD
zir`BwG>?Wl6=te{xcETlqL$wX<rz1?1gd{dsH|TFR@K=gzWx2F?QNubkw%xG*x)-g
zW<BJGhXcylb}2`i<f~mQMY9l-e|!%AlQ#mde8GRAL!brok9Wzuf*2m|mMKN#kA6{!
z<GHYLre<_VfKy$?y}DtHyq_Q5d&`g=Xq_o#`gXtAabkiqc=jEqsWHOtM_D|*sa0#r
zeRk$uJhi7?qVqISuAS}JwCaWwx_6~HLul+q-#Q6o>HH=Q2SG?;@^k#|jpJG%8Ev;M
zP3Y>1@%hJIT=-&D;}!x1#<<2R*m9+ibAF-ATjM_LhbDs>*ubB=8>#eu->!BSg$$HU
z)d|~SjULfRgnaWJFKVW07CVAWH$1B-dtNmwPh(>3d@AM+h0=*|V@#zSEi~1RA;!E^
z)F&}0r7IN^^mxtornJEs$>-L+qv3MO9&H4BdMufo`fOqkYf2az*Yq-KC@>`{U(iuy
zsq9`<EF>uQ!NvnEmQ#-b)BfL9!GFA%P6)wt7t@f5EBjAmo#glLTC87Nuth{fOqQ3n
z*(kZWmzrQNP5JPt{^U;qiN8KgF=|VSe|Sn3pKT0|2fqPJ5{<tWLL#G|8taU@X603S
zs+#JsXch}KjXW`|JUjs(z+EAwMciala`yBF+0`YO*tuICSc+?+iew@43}Q*nQwP-S
z>AC&?TmY|N5<T#^O8}u#Oc==ap0!q++@)IifuiQt93VA7ExwWZ3Ad;j>ii?!)TK>m
z%IKJ<a_HC?<uCIaw~knsZgQVL57a5Ozrz!h<={95@)n%wiEAqjRsE&q){v6)%Tt0r
zRl8gpMithu<DwJ4Z>P1{0@E3(-o&I7_}brU&}S`J`;F9V4sg`(Nz<59L?k7UR&u=(
zphAD3pvUv)KjJjgs4sC2Nh{nG0{u)5o7L(DO8v;%TEy8Q1BE;Xw#97MIKG9V(^L%}
zZ32OypKnFo)8w@LJhwoxq7e6A2=@PS;Kn1DxyE#4!~WBSOLs!~g5(2SP+7*~xw0T7
zpl^O&-A~lk+By>mxyL}RusAiX{=nd1b~3|=;82j<VlguvNi4$%PVB2Xkhaqp=wJeY
zcomCNus-2m{VU7ENm_hbxjn~@{04Eah%3654ik6h%p4^%W_pId=~7LLC&BsWBa-iM
z;%8vkVmgVGPsgkFI9IYZ*E_CIijU><EqI4Hx{>n9S;_Qnh2I+X6f0%A_^SQ(?fBZ-
z9=^@On#lH2sl#~w%~iM-XK!j>_rm#i=1eX9d~l(4!w#n_Xd5r+!66>Wex;#;r)LuM
z)3CkX0NLpxFdAuD{8qlVYM@|VUD|jFO8oScVy{=UsQFK7FzIFj-O4G-=|e}Ui~I77
zOP%q-={g!k<KP~d3$vNqnZyCtpDFHS!o$?O$q>zl;@Cfs{<u<0b&`K(8|&q!H^ZWA
z0_Zs_n;WTom#w($oDO88>@f~HU9S-^G(N{FE;QEUwFPEX?=o}X3icSg)o8JLFR%+L
zkZVm*P7})F^}HJSj+}VAZGG^`;JE7bg!^~C_{6vbDJYhbB1@qyq=Se}Z1$U)$qxm4
z#{(4jP0g-VWuJaDvrw}*A1B{lCuMV@ThDCnY2U^#G(G6^+&_v3v0&u6Uku`?k#C|*
zFN?-4KSEk@FkgO|aT_FV@HpUp&uWl5ShTNgD97p6x{p#kH@LM#X2gPIjtBFPGW_>)
z^3PAogxikys;cES{!!L>Kas8+9Z3W6O@-KZ0m2fH!Dqq-Ya+FBemh;zlgZ*6-;?Tf
zE0vzktt=yIm4U4Mw#mn8MD*!i*r`C6USde3NK+h><p!PxPYZ<8p*ReUvrEq%lcjh(
zdCa++qwO1fyiOe05V-83Hy`rx%zJv!F6tmQpOM&?4Y@l3<1yhfBdm@}r|tD+-p`t1
z<6m9aXBij%5|HjD!<UGm=hxkzOq4C28m}pTaM-sImo{*O(w1x-u1ixxu8EW%BX=`M
za?qz%{M>+KKfk*&sa?2iFUX3veq?+mwo6jE8MnH^Bz8HuazpxBXzWecb5k&+U2Ec_
zs<}B`>`C2K7*B3_PR>6lWWqU^X_d0FgrT;~lXJR<#$>WR+>sr*a^f`KITiQSJMiQU
zKRJD$AxeMB5$N;SM}DWKbhP+sbEK8xi9d2mm_)bpZsC~%JU>J6(&Qnabqy8^`jMj|
zQB618r#MNqd^(q^Ml1A#Gp+0c>3~e1)2OhOrFj?>b?zWayEvxQX%k1YWocj2rDW^4
z{xT*9)|q2^+P7MIW!a7GKm|293H!_LG(mT#p6mO)y}j|}){1C$q-KSdQnsq&^St1U
zLLLt@0wMDUA*C?xW0n+-sw6dsJrTtA#uYD?))=i<7d_sQYlLc7nX<M&yZb%|XYnYv
zN)c_nZ^A%qGUPtV%Exc*=3jT?aVLNbRE8-(wOrG~2>P(xcwxdsT=S2@`tQqc#0ySL
zwN5XIzwSQIKN8<xdxP0YK|{j~qXXnK?SRbMoO4?NR@EYmBo#hm<G`9sIm`;hE{R>m
zVo50gyIpld^h-;B4917FNz9iycTjSq<UBbD%FT)!Dpuh15dIXLmu6~Qu<E3!uD6(&
zTUe7j7WreZz?w@>{1YV&d3Gn>6Y-_+S6%l1hrF{6t8&}gzG4wlQc8+SmvnbYBi)U3
zmvnb`w{&-d(%qfX-QC~hyj%C)C*Jq`|9N@oa<SI(S@W4W#yx)bXZ8LZ3*^)9&V=i&
z^5Mi+iLZtRhVTXu{nG`ZVb!TlSEGjYgGz<T_|I>0%~?$x*=gTME;KUfHMnGzTFda7
zYa38IipcK;dh!qp6Hll;PLF$X%ur^6(NLjQzuI0qdv4O?6=ZZB34LVlfgr*;E=?$u
zTPiVUmK*W%^t51fR{Hjc6;aws*l`BXAU14>=*9`nsfn^zgW{SpjOBRb2w9$*Xa9V1
zjGdOSJg&N*>$nqFfn2tQLEPObA@5c2#sGB}tLFI4FxS&#%IscAGJDnl<zq5l3RTT%
z{weIHe)xr>4|q=Zb!)hx+|hYwH%>xVdO|goC<T%0W-2~d8NM~;&MT;~<zt5~%*>ag
z7{fCfX4XM;CX7CpO{JQ#ZI@e&GE!nEwk1I?Zej~}X3+LRA=u9tvUxm753aXjXY}^r
zwH>6jVP<9nr0gvA<OKcLay-#w#sn?*dHWS@JEW!?_B3}L^MhU}wZB`YH+jtsm6iUr
zD&e+dOZv*R%d%U5-Ya`;u(NxZqIIw<F@Cggwp3gqHe-ElBx8x1cIKegWGVv<Hpam{
zH;C;2SoGvR45n#zh+b`rqLSbu{XUx8B6NZhZ)})?cH)NmdLJBYY-|b4kgzbWoSYmf
z@GDS7yn^m2rV?vcy0onM(LqM<F+UOgXAf#JB=ND#h0MY6A3g32Ecq`hh&`w-OVE5+
zi%@iATQC$P9}T&T|J+&?T4cQnSCv!5RVq#Qko^3R!PDTBkSu*DuWC&v*~bCp!$f4C
z6=A#utoKKwFdgd&uP@$QVr!bIOZPD{xXdzDBC5RFCEQnHSxsUT%V^^(QIx*U$;S?Q
z5s63@<$eB|W0Cd6@FuGw5nny~_ArBk8A#5wnW;a@AZQ)VQH~dR>K+-`r|v&<@`j7k
zsIIfPYaQ-RncTr#+c5?6DM!jCqB#A_jjDvT7cjYFQ6o1$kKf3R5DWr09zh|YI$aoP
z`gKe|x=jo8b^UWs_m^ZkIotyQveWe~X+1+dCG;P+fd=|PZs3;%75)^QP+aW@iUH+o
z$@I{0XlSS$s6p+Lk??=b0D#m2lvM^Yzm-)zB+bR5AoM$N9609oubUVS<p*Vz2Unp`
z_XftVJNfI1;$A;~@#4kN@$raEh2azxS>XRAjCc^HaE!eDIY<-bD*dl26{VLDpk^|n
zrI`K$oFf_viWQ|-+w1>h7W>B+Lkk6x7BoaUuitu$KbB9|cF~`mq3<n$k1ySsw%Xl)
z^I<3m9E2;-KT{z8`Ro4MTk@|@#$h~!(r2iHPXA4N{%Z^W>oXkBp1vi`e+1|Eub=&2
zJ(E&{2&4x!tjlr~|HnZ6*IV#E&q#5A)a?K7P4GR{jq3l3Z$0$q^mho@*z?(I{$1m+
zt{WR0wVSUS{`t;xP~$!d_Uv2nZKwL*1DgNw2B#1|bP8y^(Z~O56ymSj#=kvw{lfK-
zZa?DDjQ!_9Fen9Sxh>8S&mIs7@4O!d9c^{p`%->C9qkoyzBkve-NFC%-@bqRLh}{T
z-(Fda^*C5YnNaKJ7!O{CrT(pflthe4U4Oi;Si!sN;S@dk?y&;ZGsso#Oj+9uIMIF@
z({2{%-N{6y21l*B-d33MGxl@o8h9x~?5Fkhvl}HHYn^RQH-~)FRr@^YiWl)h;e;&Z
zK2)VUgp3VK*Q;<zrfJu_%7xCmtMVt8&x84@=Kb&;x^`x=MfQJ0pxOjAI&16kO7}zt
zCfK7{p;J{V-L;>qehYWLmnUyxqh^9bFTlcSvb{6z78S`I*c|PdJQFP(wQk1Zu_hyQ
z>QLzRV^p9x{+{yBZTD+l{h#Oi+`&B5w`|)^{QE8&@~HL3P$HwE;@dMjUeOp$mA3J*
z(l;2hDDp~hoDZ3+>j3gwb2BkZ+wK*7mT@|Mcbp=dU3zzOb5x@JaQ#H%2UN7Jg6!h&
zYt7B5WINf~>)7ToAO#YU9G-zwDmr{h`6ZF`TbStFoN~6+_FG~yvJ9Y)moZSaU42`7
z`K4vMRUZ%LSx=NBZ_|Bau!AFOj%t%=DJWjiK~F3`$PHy2rOW@+?>xpN217#IH(lQ2
zDdBN3DE5`kLBovL@iP3yc4B-0h}=Ox<FQO}t548}fnk1$&YPO}a$koPfi07UMjaOi
zXXX@xJZlpPbDYJ~v)>qb&>}!91j`<?nd{acRqt>8;%}Yup-;slxfBnseHz03HCJ&+
z;(-Ar`hcO1THoHz%LsksdiCMs?jb$MEvu`L<MAe^EH!g=fAXukEQe^G8F51~&~9=r
zv`wTdaA;f8jIjZS(71s`jU52qcpXRE^A<gh_4=8gzfdKEp=mLN?bm7r(mcYEg@wGd
zB|gcsYJ?Z1C@4q`cLHPMCksXO8$U2cI_D}Pj2r0O=P&a0chO-Z&_yk;qxU~=@7-z}
zh~2AgF)jI_pLu-w-+Kf2sYoE`5F)#8+U$N0>@5$Mh6Yw;yUh%%VS1)#k9mLIq|RAd
z-^10!$A+bplFZq8mxozNET`#R?jS~v^Lw_7s0}0`ji$Q)u*h}7bAN7?ib|&NDcBpV
zl<=W;8-s5gPx)f^=4xErZamV&CkLEsK69%36BjH4Y41i7#&FkAYQ&mIzejO#z;x<D
z6M<8)r{&Ibb@exBhQBY0BPI1!43#!CusIt9u)7Vg?>EXGX|4bB1^-y{w_;r4<1toO
zRz?pA`--kXiF+a@CZ;YhY&`);20Hdfs4_3rQ=bub{$(AufQVKyhhk)6>ZaJd(Z+fX
zVa54#bdRhxcq>L$EgL!9EPiCnP%+U=ylN3)vTEO>?Vt_Nn<>l^%u{Y|xD;wnZoR10
zG5S3k;E3(7c603m$;ff9?%?U;sOaJ$9Q|{2vLLS3W5Tzf|6T@=Qe6D;kkyU|1r2Q^
z(PlmeadG1ra29-vf`T#x+&;^1u0APQ^wG8sA(>lP;F9JC6Fk!V+pNvOif9T#G7p;e
z?9b_)V`I`PXiF9m0A)qwqS#<(<w?D45dRRx0UBBfP)+1}EhHwE^&pc4G;+QNU`(;2
z1yKU1x>6#hb}Jq{$mf=uR8qN>Blz9X1EHQieJT!I8?@~2%pHL>=U8=7`)KiLHpYr&
zIGl0X?6(cUENrF=baT_glmH8F!rPTS^V2!*>F@{X-&`SlB=VYM`_vQ5yWrrQ@^9Hn
z%8`pdw**`p+Cz2n3Rloyb6##jMW9$jEZG#Mr_H{UE|?uJ+Wu$`Z!C8CMj)bi{e}6-
zLHZ-gO4SuSt@RDA8YrEOn>8^)3dT$&#R(Tv$^k@kVS*x#ZbU2U2N7Z6X){uSIKk8;
zh?WVu8Zkv~pAL)_Npc!n*EsZVFz%s4@2f+qZmlgBjp?CGMdQyO*H<RTCU7|C+ey#J
z`l4E&(U|YO(x0(;ZTrllb0;A{%8%X2=kCrLr7f8uKexM};;{B*T>wz+32zzSo)~Ei
z_!_D!+e;>sd=a-+fX--5$iy8%lYm*gwO9yN9jv6dBUv*=v%;bF_49|;JGa5{F9{@Q
zq{SN1qN1HOv#?0TFn-MspjZTAV)RUQCzzl%fzB)}QDnLOG`zv-Vo^-uyAIn^`<DPw
z{Q;nGf~L!%Qr+CRn4DO=#tW|f;jmdWRT9?*a45)M+I8Pxvrg-;`lBif#KyMQ!TNhr
z?Nv-Pj&~cyLc*SA<rQIb-Co<EvVUS2%8@)Q*JxwPOO3HLOgb*tYiSEcKwRR7bQToo
z`li{@KNLsXBw=oTdH!XhaM7|2<w*uT?_Ql`mW+Awgp#;8k2idB#)Rs<7c@)(4*b{I
zdF3Np?wmK)$kAF9Bht6$mtuPoa-FB^O0m4~n8$hgBYctrU1Nz}eG0-@&;4+s>mAzc
zFA;W?@84i89NH)5|6tC>gH5!huGpFNXSspUzBrvszkbNS5Hi!|3{$q)zeMgR>q4Go
z3#$hNx?pfFOw;nQvck+M4=;sw&+O0o?h|BgazCItQsZ8iJ6+yvXZ*v6D5XQr97dnJ
zf8JF}DTJR9O;lp7=6%G;fC(x)+QqRSyM<tz>Q2-^7j24F1^YdOT>$QasC#R*QQP_;
zksxEKbby|nVWH^~;lq*TAHTEd9yg|jG(0|PV{8BlE3P#(RMf4qP}HZ><$CWajHv<u
z5ysDYpZs3&5ywAe9Y=#W)YRTK9QQM?EG=maBifH^KA!E3rPe$6`NML-@m&5yqjO<K
z6*#0)*(5Bjuk+t*jAR8H-rpRzZwui+QRjapSO2wy<%OWAXeOGfL&=o5YjN=u%a|PD
z@1ZIJ6@bI8LdR;c7Vwf@YQza$v91_#qKk;R+IDCYXFl8X3hWn<&8FVTcNllj1F7&`
zXiHAtYE{h1;+uJ8pXU@AjwYljVQCQIRP%?MA6=OGz6R`ICX`c6d^ZhUNLGN0=lq<^
z$_ez1`r21KJ*m{4@AJ!$an`a_QwqzHN6^BN8Le@6nUflZKQxW`OpWS~p5oiG;KRTw
z!o~7=%g#}>1>&RV*HG)<HMA~aS}-5<&|5A_U7A)ZnREtta`}vm)k8h2*nWqTo046e
zl29DtNe{DdnS_~;AWd6y3I~@y7&MmyN*y*Akm@9zM5AO>#ty4FPh6Gbia(mKJbh3o
zG7U2!`I`CTq^d-V(8g|~*szJzywS5XU1pN6$kg2G$PtL+wcf9{Km!Y`ejhj2O{=m?
z!^U^lk#DWe7<4yedn<J*V~ad9mAEHIJ^o!C9W5W&-@TLbkk}_7FE`4hUr;iTpfebM
zy(rUE&tbgMnS_7(HH+NClN4I1V(W1@<45-&?sda+HbupRUYN|4!3UF6Bi}^CLxK_1
zsxqOFo)1|JIC44Plq_i7MJo-v<BMXF9uE(fZd`45#70opEw<E+R7|iLd@k;a<bLAU
z)t4bv=`Th;(EE)WhWR=OUG>=AZcRRWsJd*&L+t_te!E84<rIB_A;afa!w$=r^WZnK
z=#$5fj6yfeHj!(uexP;r&tH^5;P5|$>~4!1lkUz(3y>>L(fqlmn3;x72xP^xaHHcQ
z?4eUFOzR3qmxsGfZhPQIl1`K3A{1w0Zw^Q#O#4<zbwP3uEnm7o#%bLk`NKlL*F-@h
zu5;tl(?pH}zW!8hlKoV-UM)w;%kq8xE$VVYf^>ysXR;m4>>jIuPl%0MqX&#Mf<7=+
z*`$WQcb&k)2_T%ciZH*(nSfer;4lL9^vgfYbw<mw7H3y44wn&7<CcD4|LWlXIE9YJ
zJ+eoAsQ#q+jJt494sgDL!onZ!*!tHgt*xyk4%(M~0MGa_t=^wM)gGJyw6MrK`};Ei
zm|0vwA+Fxl&!kYp8_FSl?0qoHJEsNuhNLgU^3)59@%;~#Zhg8SN^y+#BntjdMWr7{
zlhduo_fB^~K|$S-OcCNbc|#bg@Xju37nT-Sw9mu}<vJdV5HBYLm>bKKq)}0#qL77f
z)dbX&4w`A?z7|@%J%fBrrAyUjeB1mjunIxDxR~pWJ$<hLgGk|BLB^z8o0qZ<yO_Od
zvSR9Ba08Nc>}AAGCIh?TR}~fl7E~sf{m+X_JYAwz6jdx8A+EALGy}A|7YkgZVIL+2
zu+tM9-EywoCUnn9NF%6y;)R*A7yF?W1xWLSOs1wKzwVe%*uE_vUk&ZUpjk{Vi}%K-
z>V1U`EvYe}-$xZLLg8cfBLQtfH?3J|5i6k0f3}~V)QyYT5{XNce^Xj~o99C=6LysV
z15$=bZibMDZ1YMCbsRq>DrXcj+UKRIWr<I%C@)l~Re|bQL)hp*{{!F}h>A#cVn3Pc
zQ8O(rV&H@y<ME8D)uddk+n?t?JM)@AvEOAj|DbTzroq#n%w)yT){*teHFZmKd)$2~
zh=ZaA0~Ph{a1vFY3f%EgfSV#*hYVUK%SS$b0w0`r!{1(T(bMZNF4XNO@xh?hYf<fN
z3^lX`!<1FjOJ*%?%+@?Llht};weuRk%`2E4B=`CQGmh7hD(tSF`a=r|2@w%*)gvIH
zil6U2XH!wx)2Ju;R>kA!7}=;%J><R|`<g#edDY0+35J+dpEC$90~uAzKItYM_C8x&
zdKqQ}Q-46FT|*re1$Avz;^aqDSKFMwg7qezGcr2ODc_}vj!A0eM^r*F`C8#^;>#O7
zL6i>c`|;gQdYXitHZ!gEk^Nx<YHtZXjRYAnJk-VtQ6$tdf=M8b6fDY|r7JelF-K_T
zhQEI+-O#*yLa>ll_`Wd2it3eyUfYeCOhbdrWT+?C3t9J1)zxpKOP57E2M`L^@H`Gl
z&z1)~RjL~Jo$t5NLk%u1Qfrf)cL`uhY7TaK+Ltr2XGG!p_aqGWCr)3*20Q;g5m<4%
zP-K^saEO`^-vb)TmEpJFgY%C~bxJ?fgT-}R){lq?<XV7W;zfSDT;UG(twflX*49x=
zT&NfiHj43pP*O(odGVnJ4w&miPOwOO;&OWprU$bTJM*s@q<uvANT6m(rl#WN_~%he
zckQX1cy=QXz%VRuJqo92r5igB8<V5_!iN)<iXq=C8+%#4ohRMJV8H<dP&o)8yQ(E2
zM-s3QNCZWXw(7KCeW_8P_v}4mi;JIG#W*yj<{;o;T^+C?-W`T)`PF;)P@3=gml}B!
z!FQS$43ehSV<p{QD*MgcRmkY?@9?E^XX;<~&vPPEsfEo_^a^A-&o_EPmr0Z#9SE7E
zMR8~OhIBVJD=t}<UFwhNN60-S#O8c3q6V{VZ49o*UpW^#1z!AUhe%eGL9ch)y<DVz
z!!@eFjEY;z|B((ArIBIkt;*-qU5}X?+z}IEg6^EnuepFUY1$#>7kK4utWYB3m&mZc
z{K7b8#Qr`FL*+7J`UE@87p|rkRnwe(tmJU{8p(fVauQ?F?HPpu!KB5S60ztcMb-4&
za<D28&E20jv5T~txw_7u9Ciq0Yy@#*TF7a`-S?c0N-jBye}O?0eS4<XdA1UsNAi+a
zX}lFbK3erIY`kaz_uAaj5}~<+;M?1<2FRmCKT-&-<rCI(;c&fv#oCi6W;ze)<$JG}
zzQ{Jz^Mu>1r=zpxX*|-QEld;&C(wy(SQKS);x%@s?xk4v+$-W;QTbNIlpp3oCCAX}
zxSYIyu>erblQ(0nk$)<Zws}UiXN#x+vTdt{(y62&9HqKJ&p?0LgbsZ4zR6zQa>@|R
z@g@9+8A_PFX!TAb%C&DVS}Ci0>6}lV-`=@?c41m9)XBO3#%SIv0Dt4nR=Y3?V^}qW
z1diLrU(g$>zJ{%>M$~D!t~|)}zl1HGrnZ-qH|(kA@l39VmJ;$pMlaMJQW2vjDHv&E
zI$eNcLWHGh_{OjlL#K)z_X}0-of7(#4qZW};-RJDvCA6^(?bN@2>vc7KXYo`g(Hj{
z!hxTx<L~ofteQUiFt%NT!r?!LkvRR+QIU7{=jg1<$2MwWVl92_Kx|9>vldio<J;KS
zn7I#gUShaq*sa;l&(AO6Ck7o|j{p*zF9quOI0KIYKrpQaQeZmb;^Sv_E8E%Hc2(}2
zt^oU~)LOX5jsSTu1dM?))+30;B&4+Z0XB%%5dc}n^t@_+kK>02gSwChHb+7fw0w^0
zpHoz%I$;*~uS^;*@xdo3n=4a)=}mFI-Bz7O_lCv5AGv9`1Mr0LBWVplFm4w3ZmU06
zTXEv|8pJd}Kt8v6TJfy7b3*3$=%{m;F(NN7k7eQKamrRwUa?P@$qittAY^1^$=VyE
z)p2UZ7tyjwH*KjGyjb~5?iUH~J8sBj^P{?F3xEWSq?~c8osl>R>PL6v2iuD9Ksify
zH&zxo3Kuk*9|~7Pz{qp*ZcTM3JGTR2UF7@h`Q>|+EMI8GqPOpTOErSKOxxi0GO-&W
zYJ=Z(l-3_RI~l$sUa8z^_()HwVCR2iI481F+}SL3@Z&TB59?-*N2>F(?UK>bDg5&w
ziqj^9NWR%gdIo+PSD~}hh(7MySS~W2?4cC4Wg}wJl{<>48oM|0S#8M_^o9bT5shw7
zcFiv<JJmkpDlWw?#}yy+HtteUELuh&qfYxH^<S00q2|+T0TBRnu+qiiIG*Go+y>&y
z%IXvZ34XP&liZ)*T_v~Qq(*DU!_R~X&broS&_dmVeKTC3l&v;4(Ke6&;hTOM7j|87
zu@A84<`2h*4V6?MN<Ly?(C+?dcG%CmR>mMfLA=syGy^Be#f5Grw?b#+wt6V(`${{#
z)ER?*4=kz)C`jQSa0(Qj>CeAAJ(XtaT-eYyb(XqZ=N!w^#RylU@bpybSg7*|8`&k!
zRVgUFy*>{wDl&<jiSeGyGjD+=HonuX!6#nP@9^Xw<vG05fKSDCaz#d%PYO#DlNsb5
z^P5C^r|1e9TZo2YJ`Z2SCfGocO#aM`^fg_T89hb=jni4D$U~DVN`;6evsZT3$8I)W
z7$(*2Som$wep)-GT*1Qa)ix;uT1Kn|x!oXkZaKNmH6oVR3P`9j>&Fz?3r}~;Hg0fm
z3_x4FCs`xRNSq~OK|5Ple*J69=K>4)5{E5eZ6KM#UV{=V`M%6-erKvoJFd;^>IQg*
zcHRK8h`1N_G8XDHwzEmiqq>ybo=XRdC16OY3pSPYiv1T5IQBT7-T0(&-@oVfVw$P9
zE$hxbssvUECxhJZzWd8Y!qW%5t^1AFL2Lm15bki>KbXp`2Q2BD{cDri;?2#?Hvqsl
z4N#U;dsNGHLm6~F&L(70fvJqRz8u5&CqU>7v@(wJ=XP#I@p|68X8HP&6?o7|qoS2&
zA9$jvgrqK1Tll~fyyJWP>uWuP<lp0e)E#`=x7d}$YQF(oGf-uZ0SfXJJLweg;p`e3
zDrw$M07*v)Io%vbURw~n38$AeYt4u^uJu&`w3=N9x8uUvE#d;k<UG@-I0oy)0Oyb-
zBb%&7@Dcc=u~ZoKga+?ayxVgIZ*9f(W!y@jVjEbtfT;xho|&b~$rwt_4FG5kw^DJw
zwVDP1bz#Npj&)1BEQo|V;I^b?g=#07#3FB?Fn6gBi(v}U-2D7zMeR?$+$q0H!%Gkw
z>V%TJrc!Y(t7CY-&5drMtAUDI`>YB@qXlvLX+-fLZAwLN4{{p2P?SC{i@DSEGa}M*
zv_-$uHN<iGnN#DL_*u7UAIFww*cFSW?ZXP?Z_h)lBd|=A2`$dn@6oqp4i?C&6J^lp
z9HKr&2X@qGcY*WiW^DIV$InACgF&BHr1)B?XsSEVo0Ex!wfhU@yZ$yt?`U!%pLjD#
zM<vJOg|om%4ycSz?&K}*iqI7wHn}{an9>v#ZS*|=pofh?`K^Vf@aeHi%q_Xts;U=c
ziq`&+WGO1#UInjK%o-XUnQ30DFD|yM?z5~6ws$L3o=kXnhK3qRRYJnd^)E3cCcMmw
zxk2BaZ-52lDg}e|SBh2WtRcDe-@aLDsHeKSA9_EQ&a4y-;(Kf+Q@E5Tm{-|HK~rgA
zg;*qn0S$AhVeU9{Ruq6{Kc)m{q)=oF`Eqx(Y<%A)d2oEX?NrkKPNF5oZ~$vs#OV4Z
z9y6}6j#$nmmrHi9G9=~{!_#XJ?U1srsH9GE;`ee~<8x55U(X~dUlyof%GJ<5L){q5
z%tD^R@YrvkK(tx>sc~SbpHsKxaA)>aTif^ANk+gZ9z;VBQ1xj-{)l<IP9r@K_p6EU
zvz7SQxY(sRosk5<!KoLU-WYQZaQLUs-%CeVVfqC;`}%Nbd&l4?4??RMkHjf>q*h7I
z9e%pL@OkFta4aYt$VzhL$$Iuk!`K1$5P-Nt(Pr6z_3yEUS-O;o?P1@r!|d#=Zg&LH
zXoe7)1}C0s`H1Qu$wX}DpsHn=RN>L2B(As0vZ)a%a=u?RsH|WCQL+>3?5h^kza>56
zUbzCCx_-}ttCR4t%^|2#-<qx<;pOF(w(CzhSIM@@6f$*o5Q!-G#E_gFRK<1LkPNP@
z#;3x9h^^xRHA&1OtDgE3Fp;gO-)rpq&ISz>^aif?In>(hivr9`gG{f*=ghUNvoRTG
zwsf&P^W%by;}6pO>?$H_c~^R!fc=4SROVjuJK!@4^VoW%&!)Wi5N+e);=(SL-x0nW
z*VX^HtZRNMv3}+x6UNz@e@8?-Ru;p(gBb38J{O$gD{<4?n^J_%Trv}X7z@}sE|+ig
zvP2(fR*KQGyL+eTM{A44eI`zD0}D>uQez`8tr~dn$c(29aM=xa-}Ef0S%ui@E;DVh
zo$1>y=7AuIFHRe;X9Q_|jM3L+BBnBv_&$Cz6atTK=wtKlFuqVZb*Cu<&Kw5mRsVYF
zdC0QTQA`nn@ADU=@)L!8lp$GJB&S>22P(Qb<m;XuF?NqiWcD>yI@<7}G4Pq0#d<8v
zDD6UD!qcl*u72!_l;`0o=2ge_j-{)bRpP#w_7fdMk_<>|NlJv)ok%@m$B#KTXv9I)
zbs%fUqbnF$e1&M9)DRS>2r9zJNQy=H$&^QUbYGky8x)scSP<)#_EjU~?Y^iA{<iUi
zd6mtZvC`(FM~SG|$MGRzS<1ytocys9Xh>Atd3U1sl%hRl(r&!Ri8^dVPd(L9th<t-
z#`BqyoynJuh2t)Eh{?q}cr^!X^(s}<OKiUVI@Vkw{tQvYOmzw5_3C!IzqN@hj~T$N
zlKQH4W}MyFa^%T&meBEz?abu|T2*xb>*J$mba;F(p`b!>JEfS<-agoZ5=~+-Tjy8D
z<}?|ek4lOOz`IFbinvjHDanGxBVG~z0+9XbHzMxN3qPGM-2i2ML<>7OD}dYgP)?t1
z=h-Tlgx{YjG^<a1Wpm&RqEITe;XLDc@ISk7e-4L9c)ij%spxamFE{2N+MCQudeqjR
z>jTrr>p3gK>aEW@`S&b<B<}Y`-$*PrhnNR+*yWsxqs=;1;~@b#xu{dt`mxK_>*V<Q
zlVPDa(|xeS6pC6DkPmnd*iunb^J=9V;m;#pDrp1L0{nI2o!#JpH+%uFQxo%qli3pc
zlUPXx0;M|W=f9@YRRK`$Ah7J>A|fI>Lf-=vJRg(7qx17DC?tGc?5EO-ipIe1^j!<j
zu`N<^crj#{Nv%dtAMIVxjQE;CPlbi5$hM$g!Db5kuLGd#7Xg?3QCXYp1NeK#tCJyy
zjeVBGv$H5|hZh5`Poh{)^<Xjd-jU$@)z6&b1<NF^LOU?SM=G9yva~14Pu_QyS$(Ul
zwM5Ju3X6nXRFDRo6~#RCvQ-N*BeGB|n^^@!6ex8qX<=ItEnMxJg$3DJp05ieV>Qx6
z)#fcEw^ucImWDGXG<TI9U2_v}v$ay;y#*UUJu=bdERo%HW{>B=$lH_BQ)myB%miBG
zBoMk_o`Qx6T%x|!y3`s9yS%c~pYn!FL?meC3wBm;B?n-o&vPob_%P7jFhlu$oh>aJ
z$|oH-uw0Y|R*VZ_Rb2fPgxObzF54vjLR5ZL?`Fn!PB+&zzrqQ%ZWqfjkd|j0K9fIN
zlK_E+6zPVa3XyE5i`XZpjOE2tvSQ1J(yP)oc|jPn<P;<=8prj9nvFUxpF_45O@tK<
z3`)3RVo8Nh;Pi<+c7tf{Pw$5e%Dm*WrH@JP0=BJ}sTKnVxveE)A_X^f&LlbQAR?g=
z2^1%NwpV17Jn0R|Zi@QXlN-twPt)sb;%sE|q00J%ihqZ|#E~EXQw`?Oy+F0esa1uB
zLE{Ht$>mznt9^g8Brd~#e^Z9Mr}yj~;_KIhGp6(4Y@>alA$<qz+Yw+8<dr&`-XH8k
z3l?|ILq@K@L|u9yN9Vo)Wi2ztb%BM|OVIM`<BBF3K=Q6cQWX`$Xpxx!AAQ`$u*W?G
z9Gdlj`1l0)J9g)ToL`(${<44g7Cl1YIk2P3%Pa?;tQz}%n05iXz-u-ljjK_u6OHbY
z>su+nP<66YsE!#)w|OF<$V3uu{hpqIe1rxC;sz@wu!#E(c-%)}-}FwjuVa9syOVYd
z6NF^;)^>%a)Ob$^e>93H<pbLwCW=K!NdReQl|M2zW=pDYWW%WjmY;3=_nA#|197xM
z%(7rF8jz5_<=(=)KUv}~Mf29Us0qq%fOoR`!RSSnHhf(N@S4MfFO)I?E6|FVl*MW*
z0#k8Lt-b!jp>r0!+o5k=dd3kF#y|*R_jeQ~4)gITZyZ`?<5LBN56-FUb;p-5T9PQJ
znTfOSJv~K}9#g$6&T}RqChA37s@u<A9n?b})TAMT7vi;*Zw;PSP!SAxS<`#lYIw&J
zB)iOJh5MCcEBzzAyWC(WM2H23tc+BJKm-=D3e4pq(y*VM5>xDz3Zs9$d&|o7jbc?g
zlu%OYz6#Z>(byzfzBBu=!o}0sxYbn@pSrb#HqVx$)RyW%6^`uv<=!{xvLk)*@PlZo
zH>n^GvI&DGL2Ke~(pVE@ZXS>XOVR$WYR@Y5dM&djm8rb)jzu9JhCj>NijGimgeqVW
zA%CpMm~FvI@6IkSJGj1{<xNmw8q*k&WYVL)nd<A;tfiT)36vCtXHFpEsDQEmoeJJw
zAqe*e_R~nb1V0G@L4W2fPtA#mAz~@Y5|ftb@;&zRkpdFu3>P1`qYJCChWoUA6{l=J
zRw)%SkP{M-dR=vEz;s=9=*C|4MXVvNxcF!<S1SE2Ybe-^3KmsIp)=TCDt7bzjy!Xa
zK^5D;o>~5ApMMg0Xv5q%*`7HdyLyEYET^@xw8V9TB{l`n!8|t~=~t~hOteP*p`{z>
z7aSz*1Xu1rZYaH!WcF-J+lTObq#U8HF)4x;JkE|)$V4j|&R8Ik17cVps}ZpLqFxi(
zd^q?6AZlkwKT4ulq=8&uKzHjy4}OB5``1aI<_&~{==b(@e9SM=fvgZmu%7`8J!BnL
zGE*4W+M{`B@<K@iun3o`t}*2&Zd7%3v)fGD9MVTYBDgnC*1#Ef(XH}$&br<ytpc7a
z`2;~x$8-&}s<Za;>2VDr3{qrUYwKVFqs6GP`y^fEr3?zXho>~2r`_+EL!Z~9`xGN5
z{y+s5Rnwove1<pALia^K+hk`miRi^!JG|fxs1qR18Oz@GZJ^Rlxb=Q@e*ezX)2Z1#
zH8Fg#6@Odlvd%)k`5nRH%N)~IP(ed@JewM4DOo^wnR6&1xAAjpD!T<!)?g^jT;axc
z`eq2@XlQwuh(>#pYKr&kfU8X1u>Ei;zE<gUwbwIRtZ<4wU<uQ$H3|&GMs$)Lzl3F3
zQ&E|JD<16W5viWA`3Caz(jThEoA0sN9Axq)8Xbkml;?P+7)uS;Rz?p*#~3_HppR$M
z`4!Cw7DKnlOJq*ZG0igHEt(E;GLXN7DQqk*_V4dmY)tR3h!f&A>`fMHOkIpXM>C>o
z7!+*}IfBXxe8(Oxs6oI^BH05SP>fB*c;|5_hch|;vrooAE(%h2PNhfim5TUj`{H1t
z(p(ose&EHY5~Sn|ysIVR44b0sPvh4Idv7ey(U`TquCmGYe`|5R;~==dD-(2-lIfym
zk;r>>+hebwfXC8ITBIB~p%ovEo<+O-vA0HGz1&f>+WU1)9J1Q)TH+L$r@$Vp;^TL_
z$EkOG+(KyJynyC^$Z+$~o_Xc?<r!QjuG{_9Hidr^2?I0Cz<nAUMizlcoR-<%mdy)Q
zRaO7hwOGOY&dcSFV0wzEYZiXGyZK2#d?tFW6+E-0foDG=gVwCYJJ&S8Uc?gT0;*HO
z##=pSr(h`R-*V$614m^q(Y4yY^ZazTo?g_|&C3)j38*?<W<<3m4Nr~y1QR5|Gk1p|
zO8rs7y!mU8($1cvX`{z{_UsvyH+16zgX)c7Y(sw2#gf0my|l=It;d~`;DRXBJH~<O
z8o$~hA?L#8Q~86=b#ezyWPki%9ClHFybXhI{G696uNiM5eMwuNCoP@G_?Jb10}FAo
z$(jAIC9FhfH{O^Ea(8KIY2(2{UaFvLr6k*xo2|0gCS{OQa-}xxLFdp~CZ+V2Jmo3+
zUdWOgz&(ZJ!Ms16wAQB`HjVz=stvRG^V&v!H_bEA9a2ci(KXc8Td%|Bl|PTd<dozj
z9`)u;GEThg(3uf!=D7M3frQB#f#VNrKUWN`WQa=m5S7(1wwK=LVU4DwWNPM`s$Ah-
zJ{^tQop(&Y7k*7hQQnu#o;2??^BR?zW>nP!>7$*~$hq0c2IC@BiQFu$4#ghAjtDR$
zY<h^&E({HE`h=1-ebLkmm!jPo&ZvM?x8|HNf%IK)UZ5a%fQyu@IUN^3frcSb&@mb}
z$8Qg1@<5Ytp*SW-nH6!C%gNq1bGN8i+P}-T>(nUtj0Xir-@!gBHI_d|t1xyJwG}9D
z%I<i&gN4r<nqC-jeY4zu*<vr!eZp+VsR4*ZC%pKZH#@?_uTqDxFg-gO3mZCzrXrz_
z0}bcuZ$Cl7!I+n}Qclx&TzH1_XIq`$wRXgUI;J!c5>?90WSbq{1yF|(5gn^iD4ZM`
z9>ulLXi6{QxC0yOxJ!MX5uJ5LkfdqUC+e_AWC81!k^qx6RyfP2RN47Z+wkVys5zii
zY0IX%7o|!rG<_L1GG%YE&<pd$`n~H!NA&UW30W+yE>W4KH=O)fz<zd<8o=#Uawy_M
ziYe8;=*jrujs4)y7v7?4FEG5{F8e!R?#aFJ=8<WKXyNrIz7zd{HVy#byz2wWvVGk~
zH9@rq9iEY=T~=SQcYH&*IY^fM)lQ9~T0to;FmXZT@jSiVQFHk9{{ta`tG|c~Yg*p^
zRaaLR2%yoT-6dXTM60BMc}wOCEEdyfZgEJ<i@f5NTvnL#B>O$aO)2e@jiGXjb<uDO
zZ0Vvjviq}qmbC5d!_(Ka&i%6LF{f6&BU?(I$H3-HK!m1iofY#a2FIa4JSmC11>YH1
zoyoA$#GNZoTn8F8O0TNl<|;_rbFlvPlJG^|5~K<X<2II;WnfOdt9p}l-c@iFZD;5$
zIIbU$W#cBd(E(yMp0!Hnq$LEL+JLWzJgUQTTBC_)rK)yNoYk#g8#r|oi`pK`8wfaE
z^iaH;8+-4M)`nbOG`-ubDam{?W>NQ`7aWHDOmn%Yy@I86lHY+FTI9Hf)hEQiGjuDX
zqwtOk3e7)c$PnvAaHx8OGD}0jcopxDHgt<NKdU(JAP{%;4WG>;q!|tNg5T%dZ*ndg
z%P7u1NDp?3TqPyH*(u|1Q?@iJzj8S0b!$0aXbK)Lau)5O7c1uY{08P6;6@3X(HOGx
z?H2YHoFzOy_(UD+&M}3^<jZNi!k+Hy^8})FZdJ$Ar;Z0d9IdDpY?`PrVHolcvC61&
zY1`}bU^U9zno&=7`Oft#3ItaHTc_&)3DYf&7`}1P(7+#)HS|ifUevmWYcqDBK@8Lg
znctrz6+}Ysl}fzQR%T<HJ?PFFB`&3S=21leB0Tt#bH}#?UX&hy;Usg*SE$lxzR<$%
zV|@8jXIHLtx941V`mkSiU^dm32-EB~(eiRv%%`~7Yl6}K;||-GS949)IIsy+MM{c7
zZ@iuElhW?4cu`B_%=V~ezK(P;nVjrR8ZW&vKcn=p`I73GwHX{{pS|ljM#O)g1}Hr>
zQ7MhGAwZ->)u*(A>A+2f%kk%a2NrVHtOKhYcpzWu0-J+z_wMC_`7*C=dU$F~6coG`
z6UXB|daXUmbnTv~Be#i%<A5W(L=xnf%g*88uzL^V&c|r!FAlDOINhYD9k#>)lv&hN
zFBdXS7ZXTop@dEyDJun)I=Q$|k-4P4Qf6!ZrS|@jtJf!v{TycMk*mH@kQ^B)G%7y-
zvGv-X@@AsxE`v4}prxZKdAY!x|L&6zyj5Yd_LbEUn>Vx50}{GV#twcP^Dfrp`Es`O
z-Q8VfjDEqjuHkXPmK#RDbZ&0{>(jsL1<8qBPbBSW9`mXQz63(Go<l(E0`dlKt=ezd
zE=MCvMs!8t2CA7VRkyN`&<&kg+|FCh_tCAI#Z!z7ddtXdGwtaR_M=Q^t7W5BXBOHj
zFhwXyFh!9nZ){mmH%2|@F52n2sx?pKQgN2o&gnL6^k&fZhbc_hO~Pd7u<RF~1$fc}
zT3KlDtHr?5Z*pIqMr;X55z~GEYFlb^;rZ>wv(q~L%IdG${7CzboNQ9=Maha>FPs(g
ztc@xgUTdzctoYU~IDPYkA?UOnh@lL-NF^m9i3V1MV})JTr(3GJE1fE>i(w57bDO6V
zCeZ{(q)b}-j@>5&jl^O`Vu^l81RVm+?*&|{{Rc!mFstQJx^`nIt=^AQzxfuHNRT9l
zCpwA~f}1{-_s$>EHqekXS1Kx62c1u0b;A1k@;SWSTBVe^HF3seIJMqXT&}MI|JlHM
zb`$Q-Ih?BM&jNZzI>R4lj)Q5C_HC2!No^Idt44$AZW>kYyN3k{ZkG*$hfcEQqfSBA
zlZ(FbutNBF`z*Gk9cIsgbc@vqow3F?BpLyC{(e`52w0o(5A=P?0HtLr#=QZp46*Fy
zg+DNMzZ<L}vHL+Ei3IVkqRWIFwk`W_Hkw!qA!>i}{)A3@kL{m?K(djhG~_wAoinz9
z(K+8G?KgWpTO;U%f53(TeD^lZ0}VpW);dr|&9+)fU(8#BJn|y-Cj!)L-g8~(-$_2c
z?|}UfkuAEvskCZFD|8uU4A<4&{fZv3fdXge$5ogRc`B%s4TTo#MLPrFZca?muOKWs
zZSh?_ysyDi*K_Psu?|Ag6K|^JT_F0(n^nLm%-7_fSz!3Q>Kh|1wZvuRdYtNw{qB}m
zx@>FmZ&m!R_yRvcc78Nd1f!;ML$^ibK9Wqz8GCtc4c}yRk!}{vUad+Cr18Qhs4vd7
z;DQZFsM%!~kJGl$&wmUpU;Low2CjPXayOHCvJ^D~>(+pHo&mO8RZ0_U^wv4hY;0cf
zhhvRoRTZ&CWb5iZjXz5UqiBZEe&s4S!U<B)o^6hZ*e>R1&p)vZ?DDSC6%z5C=35fx
z-qTThbrBia1$|Y%#krbO(2b^eHd%hXx=m=-bigGo(+|Pkko}SVlBI3`LS{lRnWi_7
zX#mk)ZT5KUGy=;;Y1@bQJ*dg+eSbWQD;RhsL{enr#_cOJCWoxsC5M@vFO{GstraV9
z7!is<B8E_d?R^D~R+1Y1gWb$op==*=Gwz(eo>ER<Z7N1YN8(<Uvf=xqPMx5Wqo7K&
z%Q{XEe@&1bqdeU`MSCXAmOLu0mF!d-nq<57evyw|aXBJdmIGLo!QY;YkQWd|$IpN?
zJJb+3&<_TQHJ_$6@9eN#?N&9c^$DK=xvbT6<?hGBm@(U1a{|<PL43zNEXSs+a$*W{
zIx4F5$cPBhZ~}JDnJS#2wGKBf@U0mc-Ny^(a%;mCZyB!cr17K+D~T6|&yJH{&OdKp
z71X^M>}IVt#epaL6s}B}zP^xGhXYI6S5<f{*v$otw(<q$@sacDar3?rh$osho6LQc
z&)7FeS_eX&jpGhf32XhZjgAYZkE+}yke)Z)C!F8TjdRgZ0PlvVr{MIkBUg5_1#g6i
zfR%S!!I@OB34xn{_p5b7&N9?`Y!mrqb?MstcKO800iz9qy+%P`NzCnFw>=>{E9W*J
z6co@mZ6;S4XG&Pz&^jM)o}cQCg?CFTMp9IEdEcdE-<R27A4o^YW3X>F*l;mHHMm0z
zbMlJwNFkHvqwE*}Iz(RHc5UrhB`PxK?b9ANLTQdrVu_3o9FUt0Ve?Jr_0h4+RT<|j
z-V0juDtFZ9Uh%ejjCo0t9be#mmox;;Zga*4a>&R^q%qz;{xt*#-@4lG)p!>+Ug=+Q
z2<ml$;6p$#2xqDQACamE^Sy}>X&D*6`(u;$#^;9}IC&zG2c4ur%cfrp7tyd0asw4Y
z#kuf~xoL&q2YO)#wx#RenRjXnsle#;#qsVG9D-CBHGKeSSrz?#?3ji(A2G5SE{|uR
z3m5ILf$)&D3&tx3Atx)7C(mDskF-PG)u-OD%55K-fGoxdh(L8NgGd(bUgp{p2#C?U
zwWPdkSjCW^pV$riZu2#aiSOz@I?Hc^#Cs<5UNyH-+9{VRptnc8corM{Xk?l~nkawF
zm-ItisS1p8om7dmrDebwqiVDQChC*ljZpHGn8eC?c5hOi5(AQk@4FwS<5h@3@}0y=
zhYC_pDN;^lX?{r%Sz%RaCEogXNOPzi{t6U4snBHdHQ}@?rUsv)Hg_A>AWUl-hYN-y
zDBlQN;bVz@356X*;$Gohh`enkA+-`rdqPrD(op}ab#{|<pjs3<91eKntY?~v$z|K>
z<JA1Di8<rj%3zKpQABJG+GpCyns})r?{%l!tHEOR(B^o5T0HzOpOutKA@jzaibVL{
zXQm+;NOpFmCM|{U>b5Jd-7}=9?JTQu+p~*BPtndOZ44Ay1{OnhUrk^27VSTdRubKF
za<$Yy7ZZ7fT=@mo8cr0Ma_bee4?4%2tl-Z}p^n4XYLXq62rBR`{6PfwK97%B30E)n
zmG>GtyC{Ue?(OnhH4CYSBBWNW@8gisue(5Ql9ha*mARWA8OMbMVu?B^LN15h*b#>V
zoPtQ|tV>fHoBg@(c3pcN0dF*4`Bkx26+#Y9Zu8307`<Nh8m9**Q@gv%b?tCaaGZzD
zf-fBNwn4?T4LGrler%pD0ZyU9vMRP24t@XN1*x|@H>$X3GG|}<*lDP+?*Velg~Y^4
zRmND3Cqw+tZ{=QhYVYv6w^?Cc36+3kZ9;v0{kPZRBu@3feBO6rASxn4OXkr9$SVu(
zW6yeVGm~J8J!EP9e0>)++^xDH4mE*l7${UJdh$#7dCvMfo7pRYs=wPzJJbJ0{A`jp
z%3b?!b#okLPzO3s?p`6x0PQg6{kikK&d2BW<f_07=4$F5oO;9OM{5x6DS*v+0n0I(
zpIm^fT=w;=M(YqXm9MUR!PsQ}7iBOo=W!YU+z$tGYh6vO2RiR9tk)B5a+9TBAt7zf
z+warrodrAJaNp)XxO#UE5Z^F*^i08FGN>UG%D-`GczuK|FKpWaOW&z+mwyH9p1W!G
zA53utEo{H2fL(XwPRBEl#Ks0;W)-7!hr(rqp$Eyzn7QajXA=_>`AW-8iBoD6v~tS^
z^J4NVclMD|-=fBrzwYNaQb>@pv;695Y%KvJkwY%di4Pl#R)@b|QdW{1>V-{L`up`=
zV+%7MRbHu11D({j81~qPy;M|3MDI17HT!C<Sp8A^69mHf`HelWh#NoD!?96ty*q~~
zz{f#cVkqh?rM}}gAq(rt%dJf7SQvHO*zY{GK2f^4Vyof4_YOHrYN{<w5Z#|64vy-T
zmX~?=EQHi;Cs!sZoX5ekJW@OHJsSYZ{4tn!`CXpH8s3D6V4w=yX16ytq95LqSX7!U
zu#J`B+7qt45C%r086X;p4pOhI7eC$gt3Y5dTMrfE!3%NteJAjQ(C%DOb-s=4Ph=**
z;UiP37WblEgM)&C(r@y51tKhXeF=<`Y{D;LVA6r1n0TRQgY5zLC#TL#AF|8Tco|?@
z$%V>1?MIOvfXNsJT!?9>OSSzkG^FrLyu))OvvMU3&VP6w9v<o|YiWI81^S9|g9&mb
z+oNw6%|o^oaR0=FaE(IzNpV^15**lMiHwO!+5&NWznLYLOx_bgfqb-%UT_f70H4HQ
z#>MdBHJ_-cXsfE!6>w$F5D&g@8c4Qh$T$7;$p<s}9;iL=z|t+cS_W-zq?7u=*_i3;
zLCQ^jbFy=<ql|B0Al{i@f3hULSQ2S;t7@;GzyJF)hR)RB$l`&UDPhVxH$3McO?clM
zZL&Lu7S*RD#Kd9O+5>@t>=|N`1DBVV;B?)T(w-a)EK%OG--F&Hl2}JQ^FvczXSieb
zkJ~fY2Kil69j)%I92}VTy^+423~lRmhL|2MUdbLVo*{s>#^2kb|75^<p1jAF6GUy1
z$W$9^S|+@pen;;)T%Znct^x;?+F!7s3eq$jfxpmItXF?TsORVf@jC5zx;`^^zB^7H
zd+sO8>7?7H!6<aLl~*LejoVed0NQ_rn_~AhDT@}xTUgJ*C2twv(HwmtERkbfu~HI(
z0aDAI2R*Q!AHIZs@TQ?dB|UO)f2a)jaazpZ?2Y3j*Eo<3^9stzG>4^As{2wMkG+1|
za0Hr=*`6%s?_@#+L6?Rb`6I~e0C^c1KA|YmP*qEb?u(tDKRIq{JXvArv~J`VV|9{J
z)A@txMtf5ViLha6o;b@~0)Lcm;)80BM7(%IcI1_><vn>_9&&}5k$PcGgO)(oDQRq6
zsL;j5(^giikS%Z!{o|{MVc((L*ESSc1beAbbc<z*fRYN!hUvpv357#B-Khd@Sp~9j
zh+hldufc-F@x7-fvbh<e)xBw3Z@E1h982$g#2*jjr8U>rA0wbxf4BOM{CjLYJQzfL
z3IPGJLbIdHWgy6CKX1?}XW6+}Ts{vMdA395u{{~?RZ_wadxosrpNGR9a|PCAVIEHw
zuaaUpW^#5+%^@{?{oG2q%$fy|+4E_!(!&`gg1x_3h9@E=B_tI08>NQ9V5E7?zM^?p
zTEYt2V%Wf^l&)|hGjQhp@7&q{T>l^o#D3E~8!M0sJy&HK4hl(36u~r)VMlt6aqpbe
zW{Qa&)8^gY?$!uYwwIUbj6e^Sm2<zpZgm(PF+4mRkQJ?Yu#R{q5qYQ+8A&25SdyMG
zAOhTSqEmw^(zudbSet<s^qzK#q9}U%t5RF9WBVeL#VV-p`UYf9U4uP>&SdUUg|ct*
z@{$%yit|+7<iq@-p<r?afDLO1OJRTz9?XF3O=b^8rDzP8olSrpZ&MEi+hfSv>xI0y
z8}%u*M_PYQwJCv+gwEyTNsN7<Q&%Fc7&E+l=-lO*cBC{rW3`y}5N{YvQyj=j-<H(Y
z)(Si^ht!69-y0PZqx(}YUEoQKUaNZ3yLa!t5pbfSAGvd_vbG3YxW9u#Yo8acX5CLu
zOKVP<muT<r4`N|q`8Ls#kbo)F$5f7q4a1B~kN@OXJq{49Y&?Rvakjd<>A*gh6Yp4J
zy2BijTE4Fe2Gu!UP+vGzWn^R|>na79b#!ztZCm>KM4X8H*o$J24&R7<F)|XNq@-M$
z3XDI2HW4+{o%KFuSpecMZ9*+L#a^!N%8z$DE%QsjSIDPH>Wd+na?v3}Vyr9+Dwo`3
ztn6cpKje-aXzu~x@z-3Dh4>TR@$qAoR_vDpNg~m>q0B~<F|Yq<ZqR@<Pm#?+&U*FO
z-ja^GY-tNX!oX5|)d7FXx+uv4+L*d*HMHE5zic`m_MJ8#QXpZB>Xw&EzWgO<_m5`K
z6@$1DXM6u%411RmzWw=Mn&w~1Sbx3MweZvTS`u<-gTItO{`%Q}^M26km;mQs4QJE)
z`-J>!p#E(L{^uu^!$8rg@=>YU=l}8z|NOE+Mo??MgSi)j@@Lc5vbci%8PbDU$ba`W
z9=Xo*ey_AKLaY1RiTmHZd86xTSa`Vo(OEJ5zxnhH1c(E<N!%DpsK4L1f0V5JZ7230
zp0R{~Xwcwo59z;V`Tm=C{_z?P?*}gj?vI+U{>|n6H_fqu{m`J;6Hs}-%iaE)xBdAV
zS2$eId%e}#Km5zRvV^edr^rl9&KRjG(x#o>OxLl{n&~j1Ff1oS|F6Cyha}`AT?XRx
z-(JkY|EhW|hrX+=#~W<9M6d6w>boSFtE-2|?l0Z)^I@CVC1YX*7g%h>!aFvzy^u_5
zgPZvS(o35it`_{^twzhAANR&uPzGXSaX)+3cGAym0J{~ki3ve2dV11|<*B8kC`J?;
z=&VITUXeMNf?lih!&afDKak4Yh)HMhul?@NY4I0z<d0`kIuLYkh@^w3i0S^aqKOdv
z+};+FRWjps$I8vk)dgjpu$7$JJ&-Sxn7s3ic02orYUG=_2<YLrsMV^wzOki##@AL(
zRom#bT|q+?v7#MI#3xN)z1Bcy_!yzDuRp^p$6$ZPTW+~2Ez*4Z;|2Sm7wmQXXk`ON
zO*MnWCm;5)iHQ+#SleYy{Bcpl7DvGAsdNzxU;lEeS6k&~(!VfKUQkAcXaAloy71D%
zrREFaUnkf<Z}2}23s-zl6<^$yJ&5pY1g6j<np#?Z(9v0cUbO=Xu+><JnUgpKoZxm<
zk7Jn*i-p$1)AQ=$_|ul5E-r1u@(e~)NM<YZCewIF^cI^p%^B(EPF`titypyqD<y7k
z`1xv^7h335S`rTx4%r_2=WmMVKMBN^5=eh8Be?I`_2wdbf{=mcKVINpuDAHpBe8hW
zG|p##4$lopEiJ7<Fkgt67I$#TO}rDAlop7ew-r^Ey6`zfK+UD;C9vLQ;**vhlaiCu
zXyn9*`l7WWDIpQnh8T>=Xi!pECB@<(6netadF^P#JK`BN05jmV(3D6-$!ev8OXm2a
zs_JbE+n>9^f9e~5`RBANm<)Fxp>Y2m`zNFj-tah?5fMSKp3`NJ8uZGs-(^*Ag&izC
zjApBo8!t2r_=U%e*5yp)bCm1_Vrg%S)76V|rbVzBwZ%54Dn~n-yuJjHOvpT(cK`D%
z{QF0J_+aRkg{J;>-2ubvU=xFLxv(jG@><PN87m`+g~z_>F2+2pzr2TvPpQO3qkZ5*
z(}6CdlQkD++g)vFkcsNVh65d_p<eW=Bl`Li@(6a9f1Iuoc!BT{*yLv|OcWZHH&wb;
z6p;1RUkjAljCvx@Umf;HeOCHrG`w`O)D|6@p5DOed?r_IcS`YGdyR^c($V+&#dEvx
zx;pB}C>e2;dE4odWq2T}XgY9`(=1dh>oIO}M76c61$KfRo82TGpDisv;(gE>tlM`I
z6BRuJNsLHj)HN|*UwI&bQ~mroR5YXmDe(1BaHbdzr<K*|$=Qs7?%wPnjqQ>6)<{Qm
zSa=x_9ciAlz}t(ATh16ohet=plj1PZa1}IN?=ea#<->^edRA0eos28qOK$57H2OS$
z2}w&Ni=p&s*0e<m8tyD|9+&;rGTf{J`B`n<c-PSr0@$Kp0Zr;>P1u&-Fp3CqnP=?c
zKBl>yVVcp5K=b~-4d4N5<o9m^NX&)?bvFB(#Wf!h|Ln1UPJSHg50kw`wWiEpCVN+W
z1k>ZQEPJ*&uJKB1eS?K!CmM%wtCL-ebBP^MNwcWw;#eqq0yKr2c4BD1H~NF&o`FvY
zR5{a&YJD3ow#lRvjo6-AH~D7{S`9Rcu>_5?Jh_&bJn+{$B7+|`m<Sq@kryuG2tD7$
z!X%&hfH^z$1#D9f#uX`07Oe|bCcA^<;->jLJ;m5+LdY8|%ZGWB935tfXhxIyf_C^N
zv*6PCu`j=;G-kwNm?ZF3R?<mGWd|T4{NyFQST^T<y}7^7i{pF)NhWvTHXQJ!ACs5#
zOcMt7|1tK}QB|(r*6IQ2F6ol)?gr`ZmhSErX^`&j?v_@%yHmP5HqG~X!gKDqzkBcZ
zkHgK@G1%{Zo)vS>HP>~lpiutg+FESymyqaAAsq`ZuQmk{V6rLEpcEVfS+M|?iIx!&
z9Uc=|pw>7%-fCkb#_V$EH_~GsZmqm`F;tV2_5*2Ew$F}juIJNDJ1{VjeTNTPJoT`h
zg0ZEa{^O#)e}s*np~bi0=O(D)ym9znVQ%hsABu(f`TnO&U{7vMZSDTg9n2XE!!X0{
zG)2zyUrpqKaq8;`5+^qzqGZ>^0H6&uhuxz2r0Heya4wvr!UCpcdxlO~UN0OGp&*0(
zeUFP5L?jV5p{1eSk8nELT)G$c(gDY8p}xr+pGvtQH|b;(SqX$NZ@q~vBt%Ohb|q|V
z5@0lYuN`fvf2AX`EM%!Zx&8S8Iaj582#+tL2>KFemHJoP&m+N6$l&Eg0;qc>rAP9a
zOeXtBMnZ^)-VDsmbqSZ5wo0JSRacFrRl9s&*1E*QR8({j=A&zpQB_Tc=qoFGv(GRw
zFd#5GvT1CBkperi3ggyBCQB-BWW)l8jZV?y*A*m+1Vi$2UHPK;a0G}ITH98PGI(Iz
zJq}wjE_kUZuPQ-{iyHL^WC?U@dC)MG9p0hpdg~)>V@eO6pcNUGa%m|X<!s}~^ocOA
zna&T$K^s?Iy|5LQc`POWC2(f#BHMzlfE}Y<qyIhGHuLyi2HdUaBZTt_9HB3LBl`Ql
zW<5cE{kq394p@6Y`^NGCYe%C1fQ44Dmb7lI`<*)SM}c)R(5RxB*7*-U)1%fNg>Ke|
zY>d6s-4ppkjg*h)_(62WrIb|JF4oB<(C9q=-%eM@8lux7#c?>?k((aCC+^Z<{fa9d
z9z4vw#|{w84uj~5-DIlRx+uc%S;?6a?QHE(aypN<4vxu6Bdwnk+I{XA9HcdsZ^ni0
zuiHVZejDEKR*tOzuU%pVAbgq{9nWkmV^HwX!|T!5H5QfW!k%h10QUk)iHj3yT)DxA
zhQ27E>+qCt9_jDTO|^Cx55?+u(b+Awoy^NNl&R{==>&}ARH0#-m|zf9D?9~5Q46K9
z1pr%udaU+4{FhrT?L}>ukpw*0rXNkaD#&AI1NQcz<RrlAPr=8${um+QOukAGZ~qf;
zgX4}yGYC6gydxK~J$bG__xM%2M`tbc8bfa)UwLsaI}*l^Fbn<1@buqmTxJQt*XaXN
z_OAgLej8F?9GkMWXj{R}tqGB#3Cd0pQC(A05+RVuWHj%mjRFAccrfKSuRXYot=Z7`
z^)_ba%d67H=z!(+jnNlbm>FM`Ba~>nlzB>`q1o%nJ98dC+@Pd5UOp)dv+ox?m_4P+
zmL3}b2}%{;CwWXdlnn{ZUgYr^_d<><S)9GeLtHjs6pzzx)%TRI5YC3jpulJswYrbL
zCjy6~^!?1`{#0?dsOD0WL$ZDUmoJ|CZc#$)WTeIeH5(iD`q_9vA8sxt-7uIlGUo<Y
zq0tN~15;U_WE^%QFe(i!QrJ$B@9z(BC7i;>N>!eueC~$cxJ3ekwE0)79&4or*QfYI
ztyBkKgAnj(tdJdLtjJI<s_E~da+wNE*j{oq%J+2CjYQyYuD6aL^|BLaCjU+l<Jgc#
z%T1+S4Fj2BEj4b<EzaB9dRBkG|5vVWO9T4)n+xn$OTTud?5%>aF9SP{eWU?l)m!Z9
z+S*(|wJOKY{|Obb`m60o3d>uoC^N1%+q*DD^ixV@32r<7SM;V9CUg~k^@!&6GQ!(v
zs3o-SYmJ#DW+c@nGZ28qhg;^jSiV|@P*Aw?C6`KjaY1TqRZVq1MEkrzL`5@w>rrtP
zRS2{j-N3*?iAfjRT5BTjqb<+zyj@&LsYOcb3@+Dm7BJ+NY&G^qz(GZ&0AXK~D$aqL
zh?-_52-Y~#-|~oLJk4tU<DPo-5-?&c2@S)6i-*@=sIt@>{;)shlOgNu+%U<Nt)lkT
z_1x&-79jZKrLoEUN9D0#z%<QgSU7>s+-G!Y@;Dp+KV{N?9aVk^q`gI5sv`o(q_=;C
z`&VFJpp=xAlY^m~q@A2ttmdnH4-Om$@d1t8W<`G^p>NG)fU)RQAkhs}2>nt4M}T$v
z>l!z0X_lF}Wawo|5m!UyZ#x#`!Z5)&MKbaBk69_!GN0SdC~^c(FgV=x9hzOlmW+m2
z5n&$YJw2EAiwn^wcSc^&^}I4MJ~vw!nXdPu+XG8Tju)MlkE(5S%N9=1(3H)a?BVK+
z22*fwuk}97z!QD{EM@@Mpeu*5ciU?&Wblw}$sMK3LD7xOIS(hjQ_slMl{!D)M=zwJ
zt&MRK<PxtKrBTFaX5YV8RyyddVaKHW?_u>n{3Pr3PZ!5m5XyfaxQ`L9!r(c$8L@+W
zfJr&VIanhr{;cMl<s<U?8Tabs+Mvh<))9(2hjHz$MXaG!(1C@M(~V4XRKwt{j5VG_
zOz5SQh^4s^F%<epJo?UninU;?>-A<O>twD$>E*@fROa(lC~7ao8$KQ1)YRImXV7LO
z-C$LxRU758*5LfkU>xTrQ;;MpYq^WCj*sR-jS==twsnhDf)oIMzuPy8X5xFSQY~jo
zB&VMB;l}0>^NCEgu&5}r;SWFiQCvzvF%@Z4K{NOtKI=c~^FQCsB7EbzIE{!q{kN3-
z6Zo6$ZTIS!u(0g$VL=Sk#!sJA>I#of_I8SmYf)s2_Y+75h5L<IH6b9vgw&Q62RKC@
z3z@0KWL08N5n1@9+1SokE<sZsVTFp)@w8W`XG4{_N#{)1xV^KpDv)zmqPe&l6Q6jV
zR=hxmMAN66SKTN>rl+g1dBIog!slKf?efq)4F>5{XE<2qYcW8ITr?V;s+m`ynfj48
zIr+{$35hr-@9ehukaUPUj8L`wzUey!U|;T`jf1t~skcrZ{_fl{=EU2|R#53z@9}q;
z`LD|XyaYZku;KWXpZ?!<r)lt~!a|+-gv?45WR__>CmP}(8%Dg-buO8590XzYl%X^*
zU8rM$N73Vh8r_NYA0<qUsHiM1V2>;&DXZ29>dWY<l%*YrHizw4_&#oIn>TYn!GHI(
z?{jZTw0W`1T)b`uEU3v`=vZvh)ap!;$~7BDf1I70wLyq(x_!CCf%bfPW_Q2em))-!
z!Xtw}9|Ba5(!ag+f5&z@{rKa%9_b|lW)4DTdPc=1ve~lOvPQ|m(o)HOFY=mKqav$b
z_BI@wRDLj|_TCW+Sxiw)P4oAYwU;ss3WQM0_9{8556gAf8A{mx;Szs;;{UPX^nDA(
zuQpGB_xH2BQh9^3F&}e%yacFn9M^3CE+SY&rRs+8qs1xzZ=^cL^j~WW+1x-gP+bx*
zj)cW<Sf-43`{IlyBpY2fEvBIbz4XcG9%?j6-hH~$bumfK4+au3F)z2;(heJdL7BPt
z<F$)ADt+_)ZRs(VMA~Xgyo}|G0Bd!9ZDEg1S<QSJ$jB0IrKQ(ui4q?_vjE=6TH4%*
z?ETJg)4ZVy`Xhz&*$*=kGg}$ixi!rZB*_Z(TFvVX*E#K45mS9Y>{+c}`~7x@5kiJt
z&MCa2P3665MR`+AwI9{=#&ySmNT@j>^52o*uhjF8pY#&=Jpbhd@K+x?F8n4TGl|Xa
z74zRHgKvh|j|i@ltR{zD1y@&gitGq&ZEZ8alaSft#?omBn4D0U601Y-z4P%1LXGr2
zYO~qzOPvmJ_CAkDVNDEPDz@=BURy0VhdCi#8z*;TXKyLd_P#rkE<w}zZQ-qKrX+^0
zN2&(f{tg7W`?6zlWd(Vm*BZ6rA$xS9dxRQnzwz##aHMBT<{P4G!f16!x2Ykj{pWbN
zpzra&Y2BW8VBiypFz@3}WEwADt6Dh~=J7qAjRE#qn?$e|rpnZPM7`p%fs^yqPunT;
zep~08A?R~#mTK=uQe8rN48{o*Pd}qWSm=WX2?FMj*fT72TI}iUQVg2%@)Ur;xAREM
z&W^(Tt_?JrKarbTOpyVjZt4kG=GD`YNk~%d{SfG4^n05!eA3lSKawrLf{MFX6(l6h
zc5zdbi}d8A120QDuV~gJlT~Ep$Nc}1;(+Owc>XB^cNQn%x_^8Fc>JHh6@ev07gcrX
zWo6Wy&PPf4=5dWkuWvM5L891sXJfsyGPw2c=~BIQTNFl8CDU&2L{r>Au|Pv21+2Pr
z-JdMn`fe3z^N^wTt*@6b*2U`%Pg?!ago3~2vE5|9#v?P@2?tNT`Z)73=-^PAN9p-A
z6JbKA)Hyabm8{A2emuq~wWy*YP}rcRy~-G!gmuO>0u5n}A4L5kUe=dFy6hTx_T_85
zf^36Mf3x>f*w)t8#~M`ll@_mu(zn}^iS6QrvWJ3v4w>y<PkRGo7=yVbC4omrmP+68
zT$bzhU8;?wVfFkb#2_6Ew)B+BjMd`+O7*nlu0ia~owmdC3*-W~27I9_;?}UoX?ZQX
zh@jxx{DPfOo`;y!RHmn0K1tX`nam21zL^{$<4}TCRv7JMn556$c99)Q*qsl}WnQs?
z6KJp&ggQPV%Q`Z(9qWP~Y>|z96CTeQS%OaXPw44?iLlIq{4a5J(Sb#O1NpwI!dY2a
z-!_~Vh<_i5I$o?tU&_j{g3QC=<2SPt-TJ5@uV?%y4$Q2HOQ&qL^-S#_`RW!IluTx|
z*+CxSQmy8(ytu1fYxRHT1z2ydj^~G!t0k9AtS{MyC4-XtGZr7Fs>>~u_0sFZ%PA?#
zP*xFTA0PcDwRq;{W=qUAg{?2t7u%1})Q9!IiqO%pS?7%Am(#B%HbhKO6Ihm*by3##
zwS_{bi*lcgtv;Ye>qtw}08v^s__UoBvzahE+s?otXJk>MElP2M+PqI`a&W<QSXD<|
zn)_{~a?9#&hNie?BObH0byUa8b7POiQ{Hl8{y7|{R)2S2p`u;2j##sP0Iya<)6HUy
zVu*8GR0+zs4r9${tu$&FmU!=3K{<9CjpX4S4E3pmHW>-D(SHP>zk<$xk4@u5Z&W5G
z7{d9A%_qk9!2bG&<13I#Dk_eRB#npeR#sL6bBS&7P0@aSevl>_5=~7_g7iwu6_?KO
z-vRMAUE)Q@%Twi4VmDzFglxJHOK0uJ<%$si%$lyS*svXlHXv2>(xyp&dQu&fm9(7o
z#A#>u+ybjX0?GC6Z^n5(x|Eb6;lX-*0tdev|MZ#=73WCO$Oz4GM+(bs{>Q;VMQukP
zo+g1{g6?}Wz$$fZi!%rzk_f)ub4!f7r<b(xF#hbyG5@sPLk0S0<GwemscSv!>Gz;K
z5eQ;5${cHV$u(I6nOD7}Uxw``lW;OzX^-6r011lbuLQ*pBFpkz7x36&#(yM1*#=0d
z<&~9|mx5})4^Uq)nE-b`7;LLK6}UJ$!gOA*=JG(xDLX+Sp(RId*kAr9|9G@k;shK`
zUYW}E&gD<{*RetbsP-1(IedQwB|tqTN9_MGIXU@auR8UJ6q|}qmmgx*YeKKo$i~;R
zZn|bHoru>x2S9+4@K;76@OUHvyp!kb8}|&?#=%Snv&SIH`Aywn6|pob9?b3-xs{Td
z>k@bRd~zFZr>0)5UG6{O%ioKaBt%=#S=RH@gQB-LZ+iIdSj^dk-Ww?Je;pB?3;=-T
zc}6zy`_~)C(g5uo{^m{V-l7HB#B_1jwj&Ow`_uiJ2J^MF>@8c<8cE}gnY||Sf9Fh0
zlRlLOYcW_IC@mDp${~V>7|e~P8*>5Lndr(){H8EooVy$q*H9k&El491qhzbdzg&#>
zLVphKP;hfEA5BtHQJH~GR*Vm^sJ@`CR&>(1##9s)W$}32FtdUk{DE_DCIi2Gy60<p
zp1&USA9Wk><(>_YMIs0Bt9%hcY`<A#lR!85cNIe~Nx)6?nW*Qxikg}*kZ0reqoNQ)
zBO(&^V`7jOJA68%Hboy$-Vt!4nUC}>X{N@TSy*7Fuv$?zH6QRnP=;%1Yf+>UP%F9q
zfc^anjbB5#dOSp>A`YZ7VPIf5^a!iWGP_@qQ&gy8#lcknXm9g~r@m`2)T(Fuvvkn@
z34Uv@Q+|Z|*R!|!kk!zjf*S_zjjQM6)a>Tk4iNo-(-Ag6{deIqu<ZP+4%_Pm>+I^B
zhPY#4VL6Zy6cn7Xr=p^&#|gP1i^_-=|Ni~^fiQIpeS<f!Ju?(Ke5sxp9|gsrDzL7O
znbYguQ8LIvxdUMOv5u|*wQXE#>QV{A1m^EeV3r5U8FJ18)MlTgP1|C663Vj0Ve}sX
zde8eOYvw%%OZ9ia{vALx{qzmn##7YOF;ClNg^$yoa~S-u81u)C85e>yZF_}=idxcQ
z?=t5Br!N~=6+s-8ksu*X)M{sIi%&^MSJ*{VS6zK~e~*cJj<F03D3NoK1xbWT!X9YE
zoL^s)0QN%lR6*HC)Oy*OAN5R33M+b~%V0VM(I9?*xZ}i7aR~_}r`L~MVisLN2#xPp
z)t4fs#0SKcl=DyVN!#UK|4{+#>HPc@I&(0k|2Gf%8mz3W9FF_R(CDyhmy?~nh--LY
zKxInI5!RPj6dnaXVR&SO9_#`r<;Z~@P6`fjf3f6^L{Y^47ow4PENV<I9osdMbR@vG
zC%=n8M)l<6?x4{!$j;6{)9l}2)@D+`pT1?s>3hll*_pY&dkq{(d&fzhD1<Wv`gvRr
z2zzHcLRnclzYG2K*O5bq{;I9eOnPo`Sj1E2Z>W>@rbO|fo9fD>f{7TnzOEx78Cn@x
z{rDb9^;Oo;FwQbIEk=rEW`=Qu@8}4ZoZwrgr<bRptHsUdq{K|w1@#3b4fDN~aXx}i
zz|j{!9Ej=r(aPxEfS3Xp;yEx}L!C%QU?G`HNI)yAszzsa@C5|=_d8Yh4b_@#!kwf8
z=G+G;)1qGvrH&|Kg=jEPw}u$v@w2n_6mHE8402HiYCFz8nvy(MW1cFbZ$SKhq4^`<
zf28upe-{S5keYongvevRIgk4Dohy5w8T+po&%dt3ua|r8-uS(R%PA@ntBoB=W9YKH
z+Zu>9bko+xeLCwxFkZ^4I)((h-WL)If|rLdoaio)=G0q1)9aeHx5}|uYww28v^#gx
zmzA~b5`KUr{J`As<0GLKjznChE`JN?C?QAQnn}<<5m*n!Xe~23I(m>26BFalCZg@S
zBTp<ErE=T1P73VTvLtx?Q8gGHjpTTHrYAAhpH-|_Am*FP7}D6-*h=PLZ*LZ<7N$?!
zGrvPkPak#rk;|uD3@+a6SAXtK>Z@^X6!aSeLQG34HUQ>UnOGyY{2^k90xSFe`fteQ
ze>^r>Pe6deb|<zR{c@%<kE4;k=Dg7zVk{D{7=Qjme|RxetfM&}dIhLJ;DiGP<z|UI
zw}IshW*a1l?}DM@-FYAG?k4vp4C+M0{yf*8pnN}nezRET#$*It%?bNQz}Q9k)YqBe
z6J9O!cfd78@|8|y9q@iEcm3sW^k<}=BaqY8mG!KmFypNyV><q>Bg~Ef+{`@<urET8
z=BlcSio~@I4LkTNTVW7)Rih-|=K2Q*2fs-YR0glv#DjJyk=`Z?={y9F_i0d3P(<TF
z^YHNW18(c(05y?YH7*C3#-e9OOAY`AWQLyB!>5OqI1&pncDj<i8-jF|fdS<L0-Un`
z+yK`ZuN5>)Oq6H=($Fq%F=@j2Bh8Q3LMhEnPYSH()3dPDo7kYX{1G?k2|hkg6$_vk
z{*RCQA1I23<VV1Y$R3i4@FK-yM)|-No7FP!;D9nYlgR|0Vxto{dx{bgHH+{eqa;<{
zPwq{h)N74@mR`+Cn`HX?T7s=92yD<k!>go?R!ar52&jbB4<aJPcb`7JqM%-G)5HjM
z?evH0^vlZB7|V_a9WCVUU`rf5Sn(Md8Ak;Hv#lA-;=wp@eu+jVyW{O^H{!lOZtXUM
zcU8WK_&Yn_T<9!+wacXj+?X23YZX(*&r!&_bx@|c|4dVD{`_9J!U1ht3I?e^6IB+;
zD*&2(JNd7q^&ei2kAgiuJ<VXwqofm28h+0PjLUwmsW#_&-;D73#=MB-MhO!WQydCv
zSJ;lHCxe>;!78;utgs+oT%IseSxHSSSzUdaj9d&ir48<6r4)ty0vdGs0=OL=NYrPb
z;NhJBxynK=5cXf$|MWdT>7KTp%>Prs{>ORy*Pr}kNRZ=@Fhhfb)5@l8)76ktNH`^M
zQG4iM3W^G5^W)iXEpRC>JgY#RojF8++p2=dr?+sL(E~`Uko77GT2gsP=qjOSy&8Z`
zTzm#hcpH}a62ZS{=W&mp$cRTJk2Cz=S#X3X%WHh1EW-4U(&1MjIc^MgaCo?_wg?Eb
zKO)801J&sf2@G%&$5|j@v01+WseMboP6uiQunz)w;2NN2)z+pCYh$No)C4-%SfTZj
z-v}nmz|;^^2wG7-eE5)5=DU{o+Z`fd@SPVYD{aKaSQ>-bT+C;z^(O@jCk$_sBBNfn
z`ZxcQv%W^8|M?wLpv3(z{o0>z@uwm~LP9b_I+WpRQISt4P`wd$jhj-~$J;mPd(PU3
z(GNYrkRBbCF~%5~b2`fs08)-Lpp0c)dK>WX6Em*<GZ#}|Bw_qt(JX5Y5s+J$p6gs*
zTxu?3;BrOsZ!|e{2l@FCgF}D_`H<c$jm;%mT3W)Qqah)|>t(-2`u9a`e)BWWb}E0v
z`gMbw;a<zi%Kj`qfDmI{yL0kYt}*KSw95riZ2oTFaY30Mw$z|Jza!A^53KM7$GptT
zc2sIFP`~e@O_$Z{qDy!xFDo-#v&rnpqzny9VS&eD%ls5nORUXN({YrPqASd$k1``r
z(c((aF~6u#4{3CL-M(q=W`Qz#<6P&sqsB4Z>_@bvqB4Xpx45)8ULN}aagA+B=DnOC
zRj>JRJJunem+kxTkR#&Mavns<LZ%C>!<^Yh<ID!uS!Sb;>;VsM(Lu2%0`}H+nB~iE
z!nkYf6LjBFcXXM>(D5aPv&#EMvDgIgz?$FtTJ*vb>9U!GN)Kgg7sfPiVYLkA-13+S
zs}XF+$4!OmBDlmGC2K=;kd5H-@XtQE9G)uaC|fmX%hJ|eak))?qKCddkJDVU-C{<I
zO8^<d&SL{gJ#0jF*FE}$kQbo`Xg&3{cCQ&EKr@;I8KNn9f`^BSnT?R{vC$1xQZd_h
zYHVy=d>p-Z52hvJY9UHUs#I1~B<KGDJu|ucJF9-T7|?zxmtezbo*o^QH5?!Lx6EVz
zkzamA)hw5vLI4*nlOyE6PD>UV*v?3*=v1LB89qM#HTL%P^)*lhe)#DHnO{)Qpzr9&
zBKnPk;4^p5hg7ARnOR3Oz^BaQmHHBgg0wo4aw2+4SqBeH?{Hi45l(tPU7aqld=HRx
zT>VJwh)K1{8kp2-^IXzW+dIJ!w&s0SQr7vvA#NhIV;T8*G^v*3VQ+K$!(1dbb&DY?
zIyNMXO|xMV>XBW(iW)mFr~gStHp*L8lZr;x<9uSlydBbRtJr{XU|j-FqcWgHr_kY$
zAp0^*Lwh{g*(rG+G`R-}EC3NUcdqphpjk1|wQ;#0lTM6{{gGE6dXVxqAV6NQn~CrP
zC@OmQWUy1v#|6V47+=o0kf5Y29k;I4o}~7IKR=H$FiEG&m-vosES8m98RC3%7(lSN
z@LdMdjE9hV`ZGgp1~r%&ai?GK8bWh(Rh19E?lq_vqb0%_*l;hpa+=^xM)!_Q*h`i(
zIsr~EJJ|#Gr(h!xY;wxchwtO-Y<-~La6Czqv1GOV!JnUG-h=UFV{>zc8+j${TTwLe
zz|fGSHnWd_(`5pUlCCP*keXOYeN7FcRl;ricuH6p3>+q-|K#LUao$%ov^4XjI@RWr
z&Xo9bAt9mSygdJlOPHdpEPm8EDrNRRD~`Xy_Z9um`mYKm^!QhRs>6MK^X>X}GcwF3
zI+7kU?r^?^UrGwrKY-LxLsu@&Hc7!-CmSA>@md8Lnu=vj8Ko=1o1gVYM#=GppvU{p
zQB}L3xq<_sqbL+wy)HS`GofTqqKDYmos!0~34_b&O>TEMowuOx(_49IWs)b01eq_!
z(|IGc=?o^RHl3#Y`0H@PLn5blokffKvx=^w{!Y}sqPto-q0mE=r2$C{s;*gOxj2NK
zM-(?VnLA>7gkdU~4=20MYYCZ%j2CH^_%?j}hX|S0AdZ$LFkCO`W^DYjMiZoOPph>R
zWX`|6X$$!j+1S{;qECpdIIO8SI)VIgC6V7!3rG4LpU%oBKfm8b+72i&U;A|tEJ2@M
zX-Hyx7AOa{X~@gTMKuKH<m7Bc$HfVYMyTC<vK}vnW2AQ9x~2kTz%(KeX=`mBY}-3K
zl>g~52WD!y&+k<I@(_59XbR^misvSbhE@~Q33OId=bL>YFQ0&h*$0cF-D`Bas)0-{
zI`e}WSBC-wd`4XqAnOB8L;;w-i!~9#3$NqJ8Qzox3`uk@Z8XdEwbRvx5yOV}EFc{i
z$LZ1b=TC!VXx8?}Wo<C?BgzZvT5NV-zdK8_b82x#p~lE)xXBQYcBlq*Wth{fka<`c
zNcPiaiSn+^E1rMUCCEa)-M>}WN3a)-Wt?Gr|0}RdK~;e`dZ3}NR!>$|R^s(3sizZ5
z1H>G$-*7A}#Kp!6d3$@mwU~vzii5s+b~&h9$1olZjRKq~C(O5C^Q}zM3=9m+fC?)e
zXubahckCGgC(-!={M*&9Y^ELiDK-`*98fmURx~%K07I9UK<S`_@c_*INcd*kvA?T-
zjZ8599c;G!%C^?T(S9z#h*C^8u&8R`inCJ4Q-!y!%`9`^4Z9<4P##TX39F{fWHuZ$
zJM8h$p>xA`F>R0Fgrg}T*I>ib21^L!$>y84)trc?#BYXtIHo@k>%IH4@ZMVht6M!_
z1Pty*7MBh?<Pu5z&8kKT<>=bWW|ES<C#J8$+&ylNvd72iu{a%rLxKeHGG7YfqHH5%
z(%7vTwZm^Urz3DX2HSagc`t0_Byu&@!L=DSoyfBjX54ez-Zkzz_Zm5U@KPhVTY7$C
z{`l?H#dxr86WudyFY52JK0xU+jme=y|C~PQG4OHs=K~sdfCQ=`hYAwsU#igYKrmoq
zP9C&i`{RY=Z}QoU(l!s9#j!S!;Ncw+X`Y`4W_x1I2g8a>$Wt#2T;!jN+mz@8_ca(J
z`=hroy^xx2_GM?C;gwR5WWjS}zndxA#pN@ks9KA7cbUX!&LjSu19X~+SBgOw<q-AB
zsi9VsweB@&0s9aQ`Xt#;QiRXp3NG&?{yN^cSFv~Xw5Wt#*6L&n<3qb&VUb%;X-=#U
z`@q?VIh?#+rvRl4Z#IRQ_GHgcVlUm-A;YMvuY7x35!a;KT8P}XVBxL$z8WSTgmKZe
zi0^dn`a7oWWi0Pb!<3Y*u_{=|jmZI00MYGjU{q`inQ}scoShDO&&fQ$D61E77Y@~L
z9PBNV`I4CmH94}n$qm)DOv#a5^rwKdqyD&V37-T*7C#iwI(^V?3jUlEB&Q-sZRHJe
zt8uX}NS4eX0wiy7v95t?O6n?kFe}R`95VwR>YaTv$)pIdxf4iU{R`hSHkd9=uU9wY
zR27U9g#9}(;1J-Li<f*@<0oOR^p>Ttg5OvW*0tyhGs7Xk<h?>rUC7I-6C54Td53*y
zV?BIBX)(atCw!BgM4;RB9vz*M^=l;`4Upqv@&&7R;Y4A1Vv6F^qu!BJJY9W9LfzXZ
z?I{*90_p>w3~yey2>pN{sq%n(*YWPxdgg$RXtNjn;Lxl}l$I+kNpEsZAXt|UiD+IP
zNnmStN02t+CXVnV^|p+A(StJ}<}&nasjvFRpuPr;$w}RvX={&1;%N(me&xgl7Enr!
zs}oK>NiR2cWU`=n>u{9tHF0r_XFKdOTiL#c+uM{hVZ7KY<>~9!xoXpUL=1&JOE9n%
zGlqAv8cks$t8Kc;5wK6vH9!dv`&uAgIWnt*;&5nfo?QCXn<+>*nVBz9ar}K{z(^BF
ziquR%AkXy$3j>!3F9XG^?eyJ3=mTiO+sjP<MGhJn<f9@F^+euj;b3ZGu-PWlVN2&9
zJSQMyhnWtzZ_kCz+1t70+c~g|;o;C>&qfCNgY|>>y|pbl&?{$CC2c(r>|WB5Kt)aU
zT1?J}3mTdObML}N&=hs3!1K53&igSp9>01MPU|jrEbL0=2Q2{g9Oa1gsHe>sCZ>>3
zkA~NB+P<(k>yu~B`3sv{6Z?eHI!mH184lnPQ%1wlDCX}o7K`UNmbyNLd+LJnk^Cn_
z;;Vvq`}}Y^a?_w>-M|376wa@|!LgA`2zUiM2+f#l+uI|b3#iO)9d1fjSX(P;Xnb%Z
z^0d{~E?*qg%K3WBUCkaX{Rj#;>NeTOI^U+%j*twQtz>(-(^ZvpyuYGwBX@H!dA_hT
zNJx$r@T^h~5yN{VDQR8|oLieuD*8j8v-b=JbR~p;jR*21{sg2!i~1(N0%|z{z5A8v
zLQ6qGV9I^phKkhOcFSAoCzQMJWQ*p}_TL6XArCKP9wkiLnNSPt4A2*Qv|iXKD5sr`
z*E3%Fhw`h=uGn5I<>HEt=i=&e5#PYK0*t~B%#Y*CG=_-a;i<9|ONok$6*F(0BzgxI
z6Nq-W3FZpo&XYyrPu9B(U#8Yt3A*E2jOtCMO`$Vd#g>!`j#oUT29K9pmz31z3t#9{
zY`c(Sn`%)usG(sXq*}E?ufA|`G`l6m)%HjBcx$ABwhoz(Chr!B>@T4R0Gc-R9f$8*
z>2x6~eD$K)mIv_UFGKMv8@|wC;PomRNhSo;X||gRHP!V@rn>;em@PyXv+W!qQ^OVH
zqjPco*4^Mcd$P?)+T!(9g5#$km?uy~X`Y<K0uzjl8u#UVVk$X9AM+ztm}mta55HMO
z#sbG$%9_DUtKH`w78{xjX_*`6x5|2gL2QDM?LV85m9v|<?$y^VpX&`XRU<LU!8v*l
zO@Os=p~}HL&ft244~m}GJL;$;VD=h^hsU&YLmLHbtVc+lS;F=1hOUS-K!rF$1!bd3
z7Hf}=Z59yXiQwrtHzR>@J$xA+4qXs{5;y^L6sgOi(%XZ-WsLT-AfeZ&9h^7C=DDh*
zE4^3a=5#Ox{KeZJyJSixT)mr&Hf;6RW1TDY1i3jl8P!6O({UX^3}N><zj^IFZwDe6
zXfhTSBIZ(FR-c`RA~8t2TQ%&Yn7Y-yA9>TlCyi+~84qp-7a(Lk&}PCY4g*b#Oe7e<
z5cI|8a(3bE7dJkGZkFev#MJ#Si0V|mZ~Do)dAjG68LYV^TJd&Z81}*}T#{DkU?g97
zeNs>tDW3E{dz!8$y^f<0{*rJMQJlN=<RTV~I06NOA&W=Y;vPDeq@q^Tsxt3j<)4{|
z%1r5S=B~~^dfHg|T=d}cMWN3G9l70oiu%HSA}r@FBa`MtNGFJ-MXObI*<oLVbY|Hl
z29a=$(Tttvr9*emHFOmlgY6^&)G|OS{}(DSLMW#z+9W8|FDm)v<)vE(w&ioRsxUfd
z=O6WrJMC*eK0Yi~DG-Tz#2zZP#hr~eoIE5XqAo4`_>;6$$kBwH$DhI-N1mV6N}I)J
zv|mCV$JcLYX=&}z_V@Quk&y*|u1x#x2Z0hqGB`Ap3pk)ng`!bOb@n*=<~QCUYY7Dw
z<#f8ATis87VN#005^a#N-kK!)5PEXEbg*N&w{kk*UQt?1p4~b10A8y>!CdEXLr|Gy
zH*K@3I}(aK5<aJvT%Jn>*8wu9shN0UYb4?eA0@*h(G+F7IN;Ms2$Jdurwp?v2hBUj
zuD@NqKyC_xi{EaYyA<y$;$}-uYxNsYhD5PCO79;P!Qf58j?c@?d1Qa;ayxxSQDYIU
zkIz?fJPH1O8*mN*dr>}uYMdvxgV_er{mI)eukTY}uQcxsR{$(#F6%n;i$Gy>P8#DV
zj_MGHyhah|Q}^9#6gowbfa?ukF>mvnv`mqZXC#KL9c=Pm##RJ1>V5~xUVSl54~V;F
zaSrQ#;)i95{Nw=+x@(;3Pf-t?&CNsiIc3a%Y<P7*WOU?OWMN-_#fqtLfQU2e8@at0
z#IRU55o&{C=OMbs0Tv$md+u)>kaRk;j-V@stLcMs(!*dByra&5kN)98bhTt<1@mi_
z=>?(C4grO98BDsaBCzN=j5k|7pK)(Y=XDC;dL~h4X%==*6bF<v<VhO8W!%mmVqkmd
zOO4XRnLS6VDpVAVkkldUUkQv3*IR01!gQj_6T(E_ro4xW^re1<gL*`F3XYu%0!;~8
z)}Km+ax!>$Y=V$(=0T$N1sbDJH#dbW?UksKXn079-C7)-VJVe}%-YngCDn<wJ+Yz^
zzH10USEo?Goi<3lbicc&QAG^HSdi$x=7@@taoX^*bQG>yCJw{GZ`XhGwA-g$6Ml|>
zo@D2P-b0yF`reMGEud&f+BJTY6CJQ)lZ_0mcOKnoWz}?$j=OHSN~1e5D*t4wX3C%2
z5$0Nvu<Svjoty7XN1a5t=2BvAPLV6;s)ufZzIOhQa?@t&kBIQ>^{nLd4qdutFQt+T
z2I8*mkmLN>8C2tR;jMyI!zN9uikH?MGN)SdbvG!4_YuorUE2e5t&|#eXKp(>4|YF1
z0X)DG<soQdu9K>~+GSi7UAtg)?P%pJGEZv2Z*5bZ-)!KvEh2o)Kz*x!RVJ+Gka~Gc
zu^oaj(+7H%x_x`DjpL9O)Y4RMu~u2%VKQ7Vg85%j$ybn$7;hdu-xCoD(k2qK)hnsJ
zLr4E0AW#r3+YAFy_QxLXPmrC0%m1KgKL);nfn2zKy)H@DCd`T<$YcK#SJ`IJ>jZN@
zC@$1^v~s{J<w^=de4*&ofkLzKlEC!1tVO}Q|1#n-538)yPt@|2?&ZU^6Q``9$}B7M
z)@Y+h(gykZxoyoE!L4$vAS(8lURq@91);K1QtPpz#M)E+Vz-RH4c^@kXw1;$Hsqc3
z$C+=6IYDQ<MZwUep$_}EH9@eQc(rN_8=()vYKCn;B80Fly09a?^utl{YtAmN=IDwX
z8byi7_F=v13?n$NVzKqb&o>Iuu}DUbmSjB1Z>D#q3;}5^H%jl634(SdYAO#xayE#u
z;rY67fBe1@cF``_kYu`A;rn_>{pRY^#9L_8H~otTlz#U4ZA}i=3fyfzOHvoG(Af|j
z%M_`ohVQ4i*rZ9(S)Q*Sa%(KV<*EOacnn7Mm#0rHb1s&CX=|c!-^J$e48J8#pG6O~
zM{k^F5dkkeo*%vf8mhswq~&lC!=aN5vK|sY{~(@(J2MfKW#dZ3`19|*`Xys03|IOT
zRA0QScG*PcdvZFt_%tlWKZ6_LST{(xhFH-(G|m@31%T{t-pwZg88kH_gOGQ=ZuM>!
zpI78i#C4_sD~NIhE%AM-YQ2GLb+x?LHqK*<bqJyeW)PJTgZzi=Y*m(alX@LURi3Z>
z(AD#b1WeZbYL<1|k**qTvi^(cAm3T`;Ug2tT}gQ=kIHFi7|pJD9$8AzD*k}_RphC6
z!6Hm0OZ(}(5Vi+xtFV9P(+-;~3SBz&TaS%Wnhln9;h{tw;>5HlZT?8lc6n&H4tIXg
z>cAVOo>~KoU8S$g*Yyi27CFN+lT0u%nNKP&9@{S`9Xi4Dux&9Z*exWWj3zq`#a_K1
zcTUfX_bVlh65eB}RNOTe52)C?!0m1Y%&Yu+W)~kad7|50yQC=awwyH>SUnCDg#$8=
z*`+KH_FB2llBmrM1)Myv!btEnss*4)-SBRNAAV4;yzH}2gC6*fRSP@BS~2Jm8VovX
ze=zCVC>~Z|a>+q^&%DV6>%ePYc8Z&YVyLR_Q%6tX^?8C_@Z*WmKt8qitMKm7yib3e
z$4C`cGfy{70bl%|M_~8F!LCl;xKCD8Vf=%e0)Gu~vDX6hKDiMh0f0u~>T-;4Dgu|Q
zC?`iS;^gE+2Jnxtr7}Li(>~_8LTHzqyu!<in@QX)7<VH+_0+;(y_8wVt7wjq@w#>a
zZd||-9KG2kL`{azZDg~cbR)Cg<`2PDKhlAdR+;jmD40@77>dIm?!f8*2sET@YDB(H
zx~U+vh=&dnSiqIGpuHgw+1pdnm3%oD7-}>@c=_nm5h8j6$j+nf?%x5EX7U3K3mk`9
zX*gj#%#<0Q?2(<`l!tB*m6T5Kbi16Jr_2FCR1F(miPRs`v#OE0y!tkLD3$2*)QyEq
z3Xci}k-$mc=h6|MJ%7725SmW?VrLr5dgOvZV)e}I3`*Gk?Xpg<o;BL+G0m*yF`lc}
zpho?=n<iHU5V!+t&UuWfDYxw5eFiu38frE!Bq)p-(a|n$kHpU!Z<RREJlrj)3=o1X
zsa@}PQ*@Q&2@}ts8jg1T(&C)=$Gs&KcrwxO=I5a$hGsxn{xC+=L<%~MCo=aejm|O|
zmAN{p+^QyOqH7*IH~p*V>ca(I;pbfAAc)Or+r`+ofiRT`%@!>hu6I+R&~8#UI{g`J
z3vb^(h!f@v2jj;=_z%5bBMSu{uxkVWvBo+b-)&kk1ljvsa4*TeFY<spvt>z25n`gc
ziI`Yq@AeY<%mF|1IATNg)A#@{%q@)8_2LWcnL+_QhfC1I%H*k`aapTwBQSq~V)%Qf
z^v~HSUsjT+%uLxH5)$Lc&!0b|kHsfunm9{kP|?Z0fIp+lev0^`cR7}Mg$J{Q%Ru@!
z8*L2+tmK7F7+#M8mgmST%T;;a+28;0LkI>BmY0`D1-1}{goM2Ha#tuIq6=6i5*?y}
z1G<&Cx@{p!PLFwhz(Tp>h%hR=4dtd~r!p<Z?M^6mt5vh=*|(ux{!)QfK;9g}!$mi=
z>Dh+JM=uA4Op{ETT*`V6ozp)Q8NSpDhui6m1bn7ef|Cr5s35S%1nVsV4k1(6nwGRC
z-y>W4a<z^-zNPF3WuyFqGwPGNn)=*9g*FHl^pEF_`DrUlba{ErpYW2{Nrmxy69_wR
zD0emw3=tO<DQr&Ek&LQAv^Pi2m)+}v-`=f}8nC(0m{yWSDQZdR!Dmcfu5LPzO}Gf+
zbZ1K~EwN7@0YCui(Kam)7w7y!KgEJWmOc)zGF7O;V5-LrYIfVgJoau^t;kpRaLgx4
zM(kNls-hC~4J93nuwYb0;Sy^ZPT4-K)kO}sFA?rm7h36h=}xC+p!*S<zIyfA{XPCR
zQRAC-4ARaA%7SISqv-hXwY6J3V+3!{j`OxoXJLO-R#y1eI&vD>fq1MHHes#RkTHGK
z<z+E~;<6Z`eiV;%kZ@sxlp$RN*h>OPvuQ%)Y=+)~!Mrm59}un_W7kI(h{>@#R-H_S
zGN?W7pJ-qI_(QYs7eoyJ(~f}N3d$rTvZ0~&{Jb0DPlEj6=TO~)4p$it*q;DpRyt&r
zi(q*hV1ZOp6g9M9u%1Ap3Cv|S)hwK?cX`xR(R;jLUEn(9!!jIgO(nji_7pft?E*K!
zUwq&Bu96XwVmMwQj|{J>)(%qd)EC8QaT0-x%|=pLn$`vCsIZ|PBRd&8b!vi1&T7n}
zu3;)fmhxh9+W!3&SObkmK;USa=<MhCRM}VBm($o6<aD%ov3!+<Bd2__EXwis@K$jp
z72`pY%EJC{jRY;lh|+4)b7}nzu%(wQ0@vvadR25tl62@r-sNs-Iy}q!541}7zcV_A
z3u@l>YwNF$vbv)S;uIdAO}Pejw-1T9&hA#ElQyyfgvjkjI`5-=+v`<>x=TU!orYyD
zkIPND+R(lJ$$9EwWL|I@Wwzq9F8Rx+USkUb8ql1aC>?P%TH}m6Ebz-LGVUMC?B%1L
zD`^f7Tsm)A#O@xN9)9r{bB%;j5BJc5yqtl7;^6i)=*@VguJ&%L7zEi*B<Rqa@i@HV
zu(Qb8DCH4p{y?d(P2yOouzQmCz&CzppRQ`1uf<`4k-YZXTy53GKq=W2Bq5efe;HjX
z`bho$K2YEB<o=6?`b9{+0&D*5C#Be>+==yT439I7-^!{S)^|8tb;OPMOL(|)KmZPH
z6Pc!!8$%CGOVGWRb0#eQFdpQ>(TZpBX<TaY7zxbY5vWprH3XOPEthKB90h#*vfAyB
z!OxEMHj*fzLBc1xw&wWp+wWP}l_oga8U@SAy0EHslPG*+S}omQWSRDxP1XuOk)sDy
z?*;V_jKqEzYYX`>szcBn@RA3NA=4i(ha!_aRy#vF7%jTzrONPQzp2}A)0n+LA;jZO
zOA>Gy!;$pGXf>!NFsed4Y<0h+=1h+km94lRAW*UzG8U{XK>mSPAX~XA0n&0uy1t%u
zb2R#nUx=UX0JXyF#LRPfts*hPw>C|PZRyf=OXxT<?^^@c5yA0=I<nkf4-W-XDjK5|
zoi$6q+!o#{KQSyeW!vp0U0nWh2RYf;zhP%FBww?xA*GgBHx-?2Dgq7H>oj>uLb216
z>ND5LOZnN}LJ~!Gtv2p89yJ<6CLrb5;M;Vj8DIl}^3oAkYt)-h>vTB7=Po<1naD}S
zb{C>SgQu4Z8}&-G{+pJyqTPs>Uw?cX|JpLFnKEZ-fcn2oe>lDazECb$7SdmCA$u}l
zC8eeLRaFHaPMaiKo;UQ{Zijn%L^NlJr)GNGP#^A46r^?*U0&UVx2AbQ$j0kD1N=wv
zT5E@#_Yo};p8BqK2{)Pgwj3>(H-I{o-rY!4eUh(!{JIk7a79M4wAa)u?Eh?-A1qfx
zP8f}SJPm`rRY)=^>N1wFUY^@4mB*mECLwP?78?#JYe^F^bm|cZ|9nd_qwczLC1^Nb
zgXAkDXj|jBz`3436w><vd@3!PA<q@eKyR=UN@zb!TQuCAa47>!ZQ14J0zZGQdOh1$
z5Db;3OS!g?@221;81WtN#a%C}dMAqk#DLwr;`XGhH)8h3A-G;RWI`o0y=(yy7$yog
zcZBY=lVFchrX5Sd44Ko}XrM?OnVp_VreY;GIM=%kIO|)3)FWJLk*@wC*v6(-&Mv<+
zr@+xDUsuZ6l-Yn0UE8)D)fq^WnqeSYKML=>^&Z}#0BzX(a6u@Sh*D~hCND_U`h8Dr
z;iUCW6gkO4{%Eg`;({jC|9toOzeNGKVIX(Z-@^Xa;#pNyQEz_xZD3RevOt)<moqnL
z4A4SS7GGV>dMqhI9Bzc%-*ZyRa8N}0JK2l}Kk$)=p7J)+4|r!Q0SWRXtD#0JP;>{e
zOQxN$d^Mg(&G8DlhF!(XxK(2p2Qj-KHKnMSob*O(52qjDTY2}y1;lXcX@;dI&j#o;
z3gYxK+Qx@W)rJp~l*9EKqy&fex5pd0uXi;ugfb&+W|x!bqnH5T0(efzCpw%gbKC=#
zQh?^BocP=48XBMOAp=KYe0Sq#C5|7qND{Tg-MZzPUSmfipNpSN6t~w&J9E4n9NS@4
zaSk>o^5B-V&RmU)8Nw3cY`+6418Ja?ltr>t$MPGhKOOE}*9w2APGq_9@70U)qjNQ6
zww{{38%>&;#KUSKO}KY*bh9{ZyV0^ykjcgpOcklDHsg>^iRi+qo#RK}3siH3yZd^;
zV~&NOLBsuWei)z|);o&_vTt{l-I*(D>>Vm}){(3nAtby%8>jN&(FasMb2=UY9<vpZ
zQzK1lJn6XmwH`azu;<UR58J2j{R9nv5p)0kOI9KZJ!pGZCj#v6;mudCb7(Xhir%49
zt7R3$cLN@>@$X6Azc1QfO(2(<2m)6U+@yp>&CZO~eb@9Bq#7zcsxliMc2?rwC(N2I
z7A@ja(5r)dXkKC{@-2xf0D{Nso#5u|&JMNA>~T-;YRDV96pLk%ohJM_&6-8%^dKUL
zF@8yDcSASh)*D`WA1~KU5^zp|w;t?u4pqa|G=%kzqi1KfSS;po?!c5zE=^)UH8Yr6
zQLg{-)_8x_D4Cp=j+x4>iM0_48pf&%oqr?iT;NdM>Ng@<f3DevaQLfg@^6z3Lv$31
zwF$tO=5Ntr{j^c)=wcT*3Bv_&;A80wh0eOtZKR95+9WG!9+kwit$c*i={pS+xzlw`
z{^vY#syUba99fZ-lqJgd)mhEipcbNYEJG$TqE_>`?H5IgO*W7xC$Xw?bz?oDPU>u$
ze^9r;cke|amU6gD%ad!TuCLh&TE)($LBf(JF6f?EsrAW>o2>o+qS${C>!0{-h(8sw
zwjGBWbo_$krHQKCE{&V_3sMc)w*U|96h=ly)4mAYno~HoWqyD-Wz<$z7YEoyv&p2D
zdikyEv6y<qDUz29aI}m&ZA(9%GqqUFTlx!JPVGjT_4q>ODY=iB9XouTx!I##OIez_
z*|lpO5^iKJCGXU1-*NAMxWHsimZA3Xmzb0(cIpke+>MBemDR;8aoy9lQJkEWEn?K&
zrKmaZtUx508K55)*W}F!UI0nTub(|6OcX1RmFS?ljhsXi7oX+@0ElJa&C8G+chcFW
zCNt$d5#|n?=PZu`e^UEyD$II%d4KJi=>gjd6w>S+(;(+r?m4niI}xAX(aMt{`}Ri$
z*_-TeC2bAU1}hh;*26CRfz^p*U?7VYcd1#05wIW425dYjy9h76)o>Dkq1T>rqf9Q5
zC)yOs!<Vbsxw@NtQF6AsGMpj(LSWvaH?3UDKJsW))ivw^P<Tuw7?_xiJjW`Lx4Ko^
zxsJ4$e31_zBNI{6QR_oeBjk3rW7mK`cR%_3DzYta1P4o`-FnoXFj?e2s$xeafkLpy
zUK7xQG(T^Azrd<(WHm6TbVS?uajyQ!QCy1rI7~MBa~C1u>#JcF#V;*MBY>$zpT7KT
z-S=q6Gc8VB@xeU%_4M(ywkA7-HlGLOnuAOj<ME}`n~9UD0dqxk938S*FYy<8cK}#$
zBvm9cRK>0%n80)}Ph6O`$T^;x*l+j>;?y63Qop;vGpNQ5dVG4QpW3^=ZV^YSJ@;Za
z<4<Z0k_hO(nV@4W9=h*X@fr84?HvF$s&+rD>2@qr>;C3B_H<nmV$S6d(w+8Z10?O;
zw#;C~>~(P|urGNBp#98lAHO!ymQz01&*3v`w`R;g6V2Wv&5N2pyXnglcDSUXY}hR+
z?sEzd6;`5t?&~62ekz6`>M0dP$U5wU+bMCbKe6p-q<RGlsPR5V^RM3pz91M>6aVKS
zU?l)8FCmZm)xEuX&EpH0I%u@Hv(RYNiSbIc?PhqG?oZ~|_};7^0BiI@mTnAd8(c_t
zvrMt7&fJ<t7EA1FsvY8p_>9)fS~}3htv*TQgg!D$tek^ir`t0D$|JceCt1Zh#Ecmg
z)ub!c-fBmg)f<Yt@UK$PZ?(HM-mYBO)b9_V`D6nSxM2pkPrFb-jOHGq{n=Tep5!xC
zfbY?O+@YBqRCyUZ5i<2FspTtO3aPD&sC}Q9pk<ribfD`E-rGF*2QHr{P(vp-B;CqU
zKa9VXxIMQbSt_Y@v1MO*xuY}gJB!5O_gTv*nw?Qnp6oELUu}tQi-ozn3eR$rZKp-R
zo9i82<+rqTj78LkjxHp5aN1sCK3QDqajMJBO3HQ|yU3g_$Omt_TC6vi_S7WN;3NwY
zm`mA^m(`rbo>Ki1TtLFqo3e7hF+d!G(DN)dn$zJ^D{ahyLkgp$X4(l6R9KFFnyyvw
z&ZGU_ICJ$OUttw<H{qm~X?8J%LmTJF>@(u+`FD`3n{qg8Pzmm3t`#+Tqa~H_ts**J
z^$N4ySMIo3oRgHUFv<q^Q#-rJFF-`4s}_se-G1;ZFRNKJ^j6oqGC1~SZw3fp%#u5R
ze1bL4d|9J&6bpt!lcXarQ1*zJ2uBH&V8}t04&gwH&b@JIo-C~29Zgbf+1b%TvFg|<
z@bb^Pif!3VKK{vkmwP!zYxH%F1)O^3?ksJrDneN7c57mTCOsOpDY}p&p%HTEPFf;R
zWxbBpWvd<HIZu-$o_A58F4_$yXu_a=f_-Q`lvdQ~>T&Gy!P*P+LhJFw28Jo8s^~1u
zoQp%Anos>G8T^fSe3AeSEzYpnqTdnvsWF?QW-L*{j#1Y}XKE;nHrDc}+ahIdu=3RW
z+`Dpndfb(!_^{}qjl@C-A7FP!Nq+2+^Va^!6#bWMn-zx4z9uqf)JhEr6COhF58Flz
z$TH2w2xw?%(}5TgLkkNFf~=B?iUOB4uSD;M<3_x(QucKM4p)fSaKBNHc$KWa&uxx`
zl!mXfIW{kH{JT(Ve_+-)oX6=4`#l4?i+4W!!H7)5PO3xZR6~3HT#fQq*FMCF-^l#{
zXA8jwluVuvIM5tNH7!P5HzkGXvEcqqeGR1s7AVwG)Z*d!N!S_jox&AUH#9@Mg`w~2
zpW>K3w7IJv<tfA*VKCpf;Zr(Uxmiab_BKPU^Bf*vVf1BieGOao0*XF)jL!MlRe==+
zz>olU^^B$5=hCcxSSzQbHIDbI1G={NS}iJreJkp_6pKQd(kW<{0Dj*Q{;k4<WDMp8
zLzxT%VDX5jf)xO`n>Uw|!hU70>TiY_{u;ts?pQn(EEI4u^vyEWmX89rPB12?MnYnM
zDhBWC?XwYKG7;(KjY)tiJ^E?Y*L*59Nl>wN3wk=o=wd^9Ja0;xc$d&`+x0&VH;%F}
z+-v3p(7|i?>j(`He1IM+#2P)P^R?Gw-u#%t14~EddjO0`q4HPY&J1S>BCd~l(^U_l
zA3#tXh%WQ4;IIPRl=(*qj}Ii0KH3O2SMYK=4pv%hOU0tc7uQNzNTi&g+T1ivDs!XP
zGlc7ABWW%ltRPLcSqjqJEJ@1Kn!c2iIGCTJSZS~kb?985I`mdb=fh>DI!M<&rKDQR
z?5S<if48zbWpQa+Uj4zzVjF4J$4l3V{Ic)I;<#pnF;ORgbn!gV-eI@IyuNZ8BovsD
z=yv;%_#!q2MHl4fe-<GP<@2cNNm+es9Vb7pw;=ZT(eA*f=g?+<xZ0j~8^qf|i;t3l
zz}J3gzA$~uTijx6V7j^!Pq?kVP-8!<(%y2%wgK2C&|$p~i?6S7jS}g6#4=$zdDvLQ
zy#m+^Q&+XDGS&IB!-IHyXDFmIx&7mb+l-kC?bHOnVEkjZ4(w$J3{vLCw?;HS1%!_O
zkG=N{YiirVg%v>|h*$_H)e0J_AiaZKDFUHak=}a^2pCX65EW25A`n8a0YXPaiu4X4
zB0}iBL*UNreTwdVuIHYg-}8Kb6i8N9)+}R=@s4-ALy7DP!7GrkwQ!Fu^Di|^z{F2o
zBhUJfVjOw^ii$S^5&!akZoH8(Nwt`&Gd<C19J{--b3gf%^m7T1mCJxqx-n1*V{&rs
zqoRuRe);l@=yniwt=^$ts$AqmS(92+{ACHUzN-q15`}yb@+Y0{8lN!GO^Cf%$tX0C
z5gF;4Gx~#Z#Nat&C8~f=J_l2Nx%ys8LG&#R{aiarctU$}S7>2RPnAMUQmoJl1d=Ls
zB=D4%LKYWiYO4UpRqlo7OE<N872KZq405Vxod-E!Ev-wR6#Ml!B-G&RS&}h$kKL$(
zS6p5ASTYISR5wm~$14+bDzX+HyNaQmOqXjeXaqEj&ClH2zA~Xg-dvZq!B5ZknS8r>
zsVV)|K+jDFTIaW-)V%MBWR)4=(O9~Ig7b3+gIL-n6uKgO{NRS%v51Q>%I9}gPs%Fy
zAGLCG;m*w5)jp&r{#eJ$?Ua|!Cx7U$HUo9RckPpNP_>g>&r#3UUXxQciC3R#pJ;pX
zy7lt=dva9-4|XR)pOf_FC>3^lTRKBRBVI#+SwJrVE~!|)Sc%@ycr>sPd&8;TgOh7}
zwF@d_*Xh{8X?)ezR|0or*u~lm!p-?fyRQT1gE+{UFSi>NJN?Dx2h3r|=m&8{tpdOo
z)}8DtlDJP&vDoutH5iztYshh@oQ@p-ln{-+uq1a_sAatrLWF-W$D%SgIN0A!VYU~D
zn-6u^?7VvH2kIw>3rwbW<7W<zqzx9DrEj&uFuMZ>k~(FTc~COS^G^@`^iRgAFD;q4
zg9Fe>RuA_ASg^0_X1SE-gRWCC|5FQq^!}cEhy9T*D+Q@p-TA)HGv*I!6wZ;0=eUvW
zT$&Eyt(rpLoc_V_@SWl2h?7#K)3;}*WDXrBKPi*s3VC(}Ig?BaJ<XLB-_NO6c~SE$
zHw(xdq(rY!k>2sg+y4B=F9wR5_jOyZt!s@j`9Af_7nPYmJplR{2Ph{8N`k`UT`P@a
z(=<Ol#xHOF$MapI|Dw3OKPdUj+mzGEJvSHTVF#%0c8S$ci>pr<e|i0v!TIA;*Y7<w
zG(waQ#c}@pMzyO+M&ajnO6Azqe}0C)JQDbI;5o%vh{vU>(zyS2qrW^u6GS<mPwRT$
zoqrC|Ooq((=a;k7@12HzdTS4>-}mp2yB~a2nyo~kuFe#LVw}ygjkUOhUnly{OM0#x
zhSB$>X5KRR#|-`R!+)8Hzdyy@{6n>MbVmxkex0(vzwy_>n0XB@D|arQ`ep3?(--^o
zZ-1LQ85Zc5mX^#E$@Jl$p53~Ftf8S{;YZzKOkXB=c=!GyeHtdA5%=pN0{`KQ`n{z(
z$@TCYxA^VfKJ``A^Ow3E-Oie7Wn+r{X%|aAq~fFW1qB)lh8GRB=65u2ce_ToR23Er
zu<};wQ#kQEGHM0r-zh8Z^Vxn2&3!QMtNgy(<hhB^qT#G>ye+cYTSazJGgQWt+;zm^
z4iivX-laXYP`RnEQ|*JOJ7x=7HpRORSu9BFo)s_+<<_qd8MDdsYLGu6`e_4fr&tM(
z0);q{>kA9J>$7H_E>j(~z|olly(?T69W+eY$*3SbX@v8&JQ^0oKzUhw`O_KhOPA`?
z6k<(*(78wCMs&{0S<C9~iFyYx$$n4BDe2i$8p?kf#$U&t^1L!H`B1Ty8R#JF94QU#
zf)#_Vy=<k(qI1F%MZ$$X`)DWJ1pytGVz?43BVsE{*UEF?QiSr@M(y4QI5iB))yg7L
z=eV0-c#G3FUocVn^c*kz%zK3)t$JzQZ)BmIYy;dAvY*xBkL_kll9|Oh1lm-B26t}e
zpaZ6m>zpPA2ej=?Kmnv<cevCJDqFXVe~kF@?Daa(;d`M^dc8+=e#k0U!F{+nO9XK2
zTE2b-$rIB-$<2{7b8@vg#^I8E2v#v?ltR2%FX$C^imU$<XxC<m*xh&;)Bo|_oAa9P
zKs{UsJQugLG@hqw>pN<F>#2+f*|g7z=Gg~gQN`w+b%DpveLoQyAFpQy%w92mx-^aX
z2w3cQ)qyQ2c$^jfvkCpnNHP`I0H4#WK9HucwYBx-j)c|D4<L`$JTF%tf9Ez5(togL
z^l=BDK4E*t&d4<61dkfZWcwiG*>jkPZ3W`8xZPI<CG7wo4sFxIjXwL1yDh$6Y6VzB
z1o;Q@61<O>RWBOeQ*l%32Iz7T(F@Z}FD(_(<d9%#&6=b_UWH%DmJK+1Z{7os*nA0r
z=IB=rfiEN6(lV@^>WrN)DeTME!On!-o3D7yNy{oR;EG4MVb;G2<Kxtl1R~^NcQZQr
z*QUGY%LoY%p1kp_RD@U5ZTh&E>jyZlP*F|cBU!{<i&7s%56xrn2^~UN&q!y(QE)aC
zkHI>Q{f9mGPYZ!^I1Fzr|MB`kmRWm(;Ar$thhJTpo#uW~ESFVxPRYg_hg3yTuhqk~
z70}IFfp&Ul^dh-5HEVCC)b^JO2Gh6a*KIGt^IQeF!=5ovk5)D?E;^+MPB~>|zc`N9
zEwZ*1oR7ox-0|~Rodl}*>KUpUCOr5kUV{aWfK4`^tqbpRnm@(6jZO#3^({43kv)cQ
zXmpl9Y_4gdg7e2p?8oGoq<t#p^BY-7lKxR>^|Lu@BDNzUu{SJK+?|B=G&QG2yP?OK
z_za(d_DsVpg`ksKFDus?VI)gSz#o~K<2ro~zI=bvNx6KpH6xP@yHK7vz3Yi9cOj>q
zow@Z9PuZgi25Eh*?ibtr*NvAaD<kiX4t@mI4(=h+Y^~AYz@t9qAv{**vNvX<d$(mI
zo-D``t)@AsY}CiD$K@5`XDe-GCN(?Sy`Hj!?QadfcsQ-qx&^oV@ow>_2VE}aVTGq4
zZw1%#0&nzfzJ;yOut`annB~aeBQ^Bj7Z4j427>n2B$<anixfl81}hdZXZylpBB(YV
z&;DLDT%3eL?V&RqgiTE=>F<Jv%gq<{AkDF#_5~T518s+MK#JoptN*88dp_1A9_$g$
z-`r~9tscN1?7Qg{nLko+ePL|&R?SSO`g{6)ohNpcN_q3;gS-^o)9<eGaOJtIrj^SJ
zP8B4xO^XOM%A7xUm_|G+*t7Tgo|mFx*!paLd%4T3dMa_d10N%3^;$GC37vvI4Li@8
zyN!q{mKYUUp0ugjo+MTGSdCVAR5U~;q|ct07Dd0db-{oJkAq3F0lF@u&Br4v8|ZZg
zfR54Gy|&PKyt<B!3A*duLq3B*F@t%xHwr>8a3;t^K|1GyeWJpqqsvGmlr_&Eik=mH
zE*ZMPsYCOUHFtVM+-<=c9mWyj4p$tvN%zpPElZuRSZ!OV%yLnYtOn)t3nR`6FG|oG
zI-7+FLCsQ)k<(5e2%kN{Fv-}QOnPi&Qwmu-{LfAD>*4vwk!-0e1I=Mqj5DW|+A@5(
znJVRc{t`A>P<leu4Nb9#v$c{cA1)YLD@wa_OM~9JgV>%H9pmrm!5jA@?aX#Ww~GNr
zyK}`u{VfKtp3yEWaPHRWqI4}=)fP(}u8%hcp1o^k21Hb3>W^naz6%XopLrI(#!?D;
zw_tZ>GHv$vwjW`omTHdJOm!sNjw%S_o-9@}NM>zG?amoDvU+7T9PI^(UsG-0zN{Y$
z2#O<6o?sS;7K{5-a!?j%u~q_l5;BnWSEMKU4AI1ASqR$fwhFYDS|I7dC06bVXS4Yv
zMpDrWS#*6OwH8-(=V2b|su~4KY1r{FasT_zF{7TD+mPV>Z!v`7=cg{s5fXhj*z`~f
zp#p7uG#1RZKpW9^fB<THF2Bp}7+CK&VDs*Kw)3NXd)ThJn3|{byyZ52e?wS&Dk&gN
z!MzrAeSQKuUKnRs<sAC{?z-^^8ogioxB-Geh|FyPBRC+~uWJl?jtGH9quq#;CpI!(
zPfm5F%mcI-!p8qjJ!$sS8KoOEr&w&o`iPr&yY4gv>UP)eaLJ8#)Vj@z@@Hlxj4=m$
ztL^iFOtyS%7qde(GLGCa{kSUnige!S$!vh9cW$@JRL|DMI9Ic{^gNPffM!X6OKgHz
zT%WJ>3rHG&KF$P?`t1uf0WW<Lw^|JLAA^@Pdl1P)E7US*8FJlq{o88g=BU+7`%G`<
zJSZQdoebi*!CaQ}GADh37GFnjt)t=?aOu}GgUkdj#)FnKy*M3edak9|Ta_9m_@NgI
z^AC8+J`G{)*w!nPAsL_-kt^OWA5R-Ozj{VV;*<%~zHQfXnAFY`YW4dOu)&pw$x)h`
z!#R{h+5fxa<X1%P4O*AFZcjv?fjvz3{v0T+YO*!m`Wl8bak(TQzC5FMjz*`HFL9&T
zr`F75o<DV!+IP@?Bu;t#(_7ZJ@t0mbtucw#Gi4-`Vh&RsP?o)bY#l1GVJc>zi1wzo
zOYwk6W;9z_qm*0dU@A)w{R*GN(5`P8YP#$Adanyd&|?$W^aras3TU%an$01qF4J9C
zniX1l(xvytXkFVSH>XmpsuK5|=Db91rrP)3V$f5AsiADtwif}DrNnn{oUN7zHsm(v
zh=kBeu63ZEzQMnTm0Y_4Wimf*u&Q6_IXD)?rjPdj;BN;(f|JApoW;AhDC&z2KEGtb
zo=@{f<SW4W!F@(ll4Y{fXB__Uo^BXpR&62CFmfg)SkDe(XU$<VA1~Bb-@dsB<=&h{
zDm=zyED&lI4G5gZY_K&1Rkc+aTGErL`r&33nrUX|v(+(X`=``bKdV#r<O9`WUpJcX
zz|8EI1xuQ`BdS{yLkuRRt;+lxJxlh=eOQnObe~>oY!|?YQE$jHApAQ{OO0;>7F;MS
zjjP*X!-Rp=mB#NZz}lcV$(Z&jG&MXQO8+hn@Ux^>7G&4{N}Xk}6`Aer?Asq<+ISOo
z#l%!+Yy`vQYkBYL2lubd&&1ysTWlKQ>J09~E*%x<y78!J&a3c)oEz)=`H~0Sk3^4?
zL8;A4dnQ_<vB99L-%f_hOivS>PW6@)(n?KK$!In>#^2a$E<Z>|!AJ&v)eE#M)l<G(
z`w_6Zu}f{&8=1#pN$?`+YH#5C@VrfvV(;RqSd#0vgWG_P<H&0_+<V~~WeUbeo}rsj
zut2ff{0h)>h~lc;>ir>PxSF6tw4Q4|Feq*CM?HL1kVojDSeP8_c$%dx`gn$Gzn&Wf
z9D*p8qj*R6c16JlO_|a0X3yKuIz8UC0JuxTA8v&_j3nc&TvNfk2umS33mVrSb<afG
zflgdlYUoU1PN$At<pk_7tTnX?riogLB1;9=YAZW*+U2?-^L}jAQS%PmVMF}z_d=6p
zbi9q4zS147@7V;mRZG2X_d%xb)E(wiaHCF*(AC<UcB$RgQTK5gw=ZBVb;C!y`6&$H
zgO7S=AIGwltM^iY?d+mzB903IoPq3}kI4x5J^pjK1LK!hMB(jzVcAZdlG(fKz&g1>
zDeDm`hg91OWBNL)&DI`fdX9m%U-JtsiV=j}IH$IJa9Uj%P^*1xfK(HJ!yQ3eyqxl+
z9KXP*zE>j|)?&gq>T=g|H`BJbX@7)g-<ssd=!K@4xy^eV@pRA5!sC~U`}GTfaAyNf
z9CB<{tHUYHY-P|ah4X65#X+ge4`~}7%MA?J#T$|VXisz+XeS9=holnflU!Nz8qfDH
z{5{hCx9_liE6KeQ${ow(QgVwT;-qqG1q#}{^{Vqpw_(%HErEdPB1Jj|t<K=>sKJ6a
zCW0?=4n_C**z=J;CcojGQ5PUJuu@MeUCQ@5FcEIg?n;S&_cb7VcR`1Lq|}sTY<YS<
zPJ<RdqsS>biP`?#MANchcTNp<`V;E-*A|RB8eeIhvZf0H4fa6~TNBSK!)i?r6%LEj
zq|C(1*@*Q4-^l`PPRLxnHkBS77_eajT2pO+Ldl)*g-Rg5BKyUm>*KwR9#tiZ79c$+
zFFu=9XpO<SI<3;3_FgC>=sxG&*mLGKCRn7XDoOU*WEwfZ2Nf?!2~w=+`)r#q+*YGh
zGD2UF4<zsJ$X?r}waJ`$3h~L9mY_STiux){^EGRx+EP2mf<nPXdiz_f!6xWD=bC&S
zq0YwYy(C-x1<49OteSiWd0H?V9lab=_uQw{l)E311dB$uq0*A0pj>KG*Zb1Acriw=
zrB&9Mw``}Rx)3LsUiZ4Fo>f#JWS>k6WKmaDwg*ZpKtNwc>98h+jv!#Ska?90S@M@}
zPsZYke7u)xkClL&`5<V-#M=6x_nBPE3??TcrYeMPWL+M?dFY%id>TXMQ}C)2bUwpL
z&TnRW?Y>cxqJjm$I+%DhQR{D}3&T<-bM-2`I<sqNNoykt0@g+<L!j+%*9N7U{`r(g
zvxei}_h@>t{_ibft~TrZ@JIHU%XeH?2%6-he0yyPw09&=maBeUCxrfx4sm5P6^fXw
zm(g|`w!v^0-!mcePIXmjF}*sM_RU1({8eF!Z?JB<nXb&N4RFAd*VX}Dk#a*Lt=Z3Q
z8gOZfj2^nR)#SP*Pjmu^mp03^7=?uODGVqwyipx?yKUl&rFpS+7Le&}<z#~#%Qqe#
z9%-<5=u!sT^2VMbMG>{B{?1q3kVh~|b@eZBqedWGwWHwgMj?R6Q?A827pX}fgY4}X
zYHxWTJ%0A2caPv&vYfPPujoW_a$c`mLkHf<W~j(v)p@=ySx#7BMLt;pN$t{}S|GW<
zH7<+lV7qhp5!|3>Q+e(r4h*?mB&cxS47#?SBa=!NgMK(vh1gYTA%;HLox_a(Vf#bK
zKv41>p3?sB{q~=Jnt(hJx<;j7p8BC8hMHbm_Fi#8YhY(>jH7tF9JvZt(wOylaYG0L
z)-bv5F}g}a^X$21Y@CqI(2efAR7)_<@sfK>^|oj67`)Fg{2}$RoaRA=c+EAO8@}vS
zB%06CTpgL{oS>Sn=yJGhM(l-Rgpn20Qst~tZH@g^rAEax3lSYWT^EG5Y>p6wH|C_?
zF=4zfQZhX>lbVzoXcpE_cS1FfZ-j2BYpLBbh9^@=>Lkz;ZdsbFE!tpN+*diIRR0xi
z;4?L2m_n!UaYa=5sfs*PqgAEX<_S|fzyfgKhQH{-NFjDg4U+?HH>y?%?VBMFDl^e0
z=m4Y%g5lcb3@;(?b`7^`(5=_Xb960qoA4DcFgE_V?s7L_z-Bv?6#5F1VA1*DPJ`cs
zz93$LQ1CO_78u3XRnT->B*0*r`i`F-?sG+(dY;e-dkX7luv$icXwYeIS530s+gg?_
z1+tYi>6y`T28^dQpxt!J=vf<(+OZulq`=Wt%ncQ1dXYNM!-He_O@hTW;L{IEiY<Ga
zdCI3Q&JN_KP=C6DMQF`tk|o<QstCDiYE`#ZbH>r<W&{J&#y(Lk!hRsnXktP8FfUwW
z4{YEMeVL(7Jtxr1^034s6x8DsS9^)sB||Wgkd$yKv3ERHb+p~t&B!W?ft7+GAT`Jp
zL5wO!+*)<fH^J#Zf<BkbOkoz%o!Uej;dW~m>ITN&Zi)^{MPqoQNITg@_I%mF$7G(k
zQ;3`YcmI*(m28qVSgDgAJvVrzH{bu9MckJ!M8w^}4=bG2sre6>A%2$7cYH?vOs6&E
zvn)}M@O0lgm%f0rUF)R8TFcCLtiLtmf;-R!vi)LCQRS^_QX6nW?8`#cuC3}_zW3lH
z7iI$ZT84HKdM;yosS7yIHchXaHFV*<_waN*U3r*geeFB_z>7~W7c}oUKXY<<C&k0E
zs{IjDPZzD=GV|4MGdfyfqbiHb3#m(pxy=cDi_T<!M#kpKj(Q(Ig_dCJ1_&<wEu*wG
z{46E$jAAi?B$((Vcix!6>CV+{5?1opi2tWUP$nLFwQZMs%IkK0lzIivHtccj2{d2C
zAnNiHwF*}_bfYefvd8u?{0$aZU_B1u!6#=l^6f#_KH9)#$se!e=ScFFpsQq_YvNss
zO4V<6;1pU&{q`}?x3A3Nt~R1iIUDr<OwjXQZh+2N)PFY)6J<Xe<qA+Y+jkR79d(Qa
z8!tE#2J&Q2s~UJOBdH%*yaC+_YV-mw3n?|B$BYp0rj;10oO?|UmXFf`RtDs8?{u%G
zrFCS|o>F&S7_(CDTk0PQT38I$78yB<wY7eJ!_}i8F>}ZcuCgv~#d*_f{H5>^kcIzH
zo;)^U9JCmw?MDj+L`L!qh=V1u-{N?FH$KX2<iYAe{>Yd2{TT!uM$eUT<BUS&i5V|^
z>>rYMT}eV4knnr}aE#DduiAj~cJ&QY16D2&@>vhD-s}4LoEbUc<5*~m<#M2Y@2h6Z
zAv|0|&tyzFd2$heU7neF+m=CNP;g+^e=~Nc{BCGU^AN=!musz+07ql#+cU+&--i*t
z0VLyi`ADuowPE=OD!n7pbK6lmwpx=jz_q{T^q#G*G;1jdZSon5Zy7Nnqec%c>bVYH
z5eY^=`y2>?9#?chDIfkL;h-E%zSW0*pb=7a@uwy5_XTqKvT__oM3XnOSE$x`?xy-I
zYt-<jdyDyqm}`W|j~fL?B@Z4C>df2HGdgzVYL1rp#J4JlVVgcw-11ScTZD`Ge5@9Y
z-w0hhurJISc^2LjOnLcIk}_^<d3?V17+aD1;Z%T_QDAk-98LK2`q@3#rpDS-37#8+
zX3;ZMu<Mos`o(p1Q%3FeiN{VbYg+0^%SYlL2WX<z-M7Xf%tZY9a`dn&RwT@t^3{A%
zw_+d04zDun3@~a|P%EGTT@L2Vxmqj%74V+84<BX{b2iVAzxp=KC>5Tu42rmUiz~!T
zKdqwYe5__fx296U{dp2Wm6$BD!_f4}chHyCIjrC~{y{ZS{dASay9MC1QrUe^gPPCx
zW@=<?`+O$379af`Nufg`OGTn%^R)<rSf)VB6ZC2hA7I22o9O@=PW5ygvPh4N(a;mv
z+YBHB-J>~On7?YUHB&pQYxoY(f>rklbx8gK2dsgF%lv&3{`EJP+lIu~cK%hSHuO~8
ztvgCfgGx_slLaXp?8NO3*w>sZ@z%Y(rmFjcL1&z}m^T;ZYoEA^ujuOYSq6!NTf>$O
zp{6?TOrrKgZHeCpYfD}zs!eRslt}k6&bvm4za<OI<VbiwWu!&x_l%<IVBc$YurOW6
zw+HnI^l}X!?8#8Y<<$T-L*jI5nx*%_F8*M|S#NI{pdPVxwve6q^4T07K0$}?H@iC;
z^va#{PhGnGF83)z&S{iWytJ>6eKRAgwrtip0n-71@W!`*b9t6b7b4lT1lE5cXyVbl
zv$<#ou!eVncB2vlQlrmc?HLB18Q;eM{9#G*WbJh+ngL)Y(oYECDgOcz43qkq8o93Z
zmot^B7D20F#R_?~T?u#yKtE^WkRVW2%P^R61B$5gUoM3ohc#{=(s6P5a51-;IXx}m
zh{v>k*Q*AQt|<~<tmr0%Je$YSD+vkGxI300tFy5)n|mx>7$gKVY*aVnVcXMEq_|Mw
zuptuCLS1XgQGVwb4daiEbUxh>dhUm^jllIN9jjG^UnqnT`-nJT?)wRE6vdj>*8x`T
zx;b+A7_%XW(~5PXg4xi9gJ?J>W){>a_UL;r-|8-0%w(V0y;a{dtHmtgp2wu9hv)qx
zUP+^%r0-jUe%t!}%IM`$j@yidawnR-=N8j;-DUZ{Anmo<(GgLma0yO5thqd65a3cc
zY=c^e#8vsK<>h^_DSi|8Rp|I7t*v?A03y5CqsVcB_4V^24<}8R+od)AsK{a0mH@wY
zh?EUMd!|L#iFr1ZP@Q2XhY}x0_afUNx2u-wsAU_3De~*;(K}AcS0AvCr6u))U~<eK
z0r6#V{BmJI(DBDzhJ7!P@KAuBf{Kh-7k<@kC|KG6aFG3K{c2q|#C;oLhUQC;u5%}y
z4mt`%b(bo{CaxbDMam6ybCz7A6Y^O3F)(;-J4>dQga85%uFC1r0a5fBZ7IO_uw#Kt
zb%kgNy$B7H6UuMeYe^s)u)nb+9CqQHnzCx{Kw5J+1hXyVH2KgAAcOwF5x@--s;pB`
zml9!4$eq6ThW&k=d$}1jP}LpIi&sllx}b<#?HxpS*->ypwR_znch*5D)?4X)&||QU
zE#J)|R&NYh$=c_;%=WeEHHz;{rQpWIU1sRWy#<YHo*w2YougkNC2UZ#eyxlWLP5XH
z_*rH@^}lS1UXg#`CxhZQ%x}2P!*fo(C)md~_a;N%SC0mp$TADem%Ps}AIux!=3b~5
zS^CB1y3{AjedXG+f7m26+dmL99sc&=!G0l_S8dmHd{9uRwL$5(Le%`3ZRN=E-0isw
zg<l+c`+VG^y$Fq;IlfgV?rp+7%+BgJ(zcw#`nbn06)f3TjoGZOuIkB5f@qQl%B)7p
zVAw*WGF}_G2>P}yZxD7D@#ER5gC6L;bf*`>9}CIk_|Hmtms)I%*>~qvV@4c9uAM)d
zivV$V+I@dOvA9~S**is7waPtOhIb!-xv_v<JSxw+>r%hCiE~TLsQa*UZg^#7WiH|l
zYkp_SojcqRgVkV(7Hw7lot$U$Uh>P#V_2+k3D2mT03C%btoq)1hi}jCd3o$^5SJHy
zm?}BGL-nO4ScLAaJDtp39IM*0$aVuUZh13uxnvtyCLAL3yrH!h00k9l`v!L9b~|@~
z-SNu1H&;b;5FGKC<3AYLwPNtfe%w!c;&jYayZB}RmG3lhBw9=FZy9I!4o`1afMp)A
zn+;~YV?m%@!Wf{ZkobwfCZLh_*=K*-OgIGyu2Z}h<}!hhW?a-S)TU&bp5U9&s~aT3
z{|}#{C$1(&kV4SSK8)nI|I4BSa5MSo!4Zuuy>8FxaJzl*AN+>1KJwTTq}YX|3kv|;
zjw-1_e|W8J!;+u?H#etr_sbHJ%$k05MV^IF?URvBoYAVjIwP4PdxldVD`u&`bb(X&
zHP6duOd*f}t+5yUn6F<7=+nKe=?C?b8!8SG&Wv&`PdBp~-1*Y_BD68?6xG=rg+2GI
z7cx-t8_bp@lsIV#085-u5p-RSRd3pk9%|LPFYEm-;w-QA+1&b<jDn8xd*Ij=vVFxT
zEZk4ig6@b3Gzg>dZWuOmPk<#);{$fwWJR{<_3uQ^1CZAa()9JcKqFlVdb*^EJyw&@
z7Oy9Kqr%QwL;y~F@F|nOF(-o{6L|!_tw>0ndFFYv-snp~+pSF}ATX`FE=ytLLeosW
z(J&mIaExe2OGC|)6MEJTHxr`~>0<@LJX{~+4fAh1%)H;U^@yRk@Hl5(<Z<Z5<HFnz
z%na%pO&Jf9cX28+`5Z*KecsX6xTL9>aJuDBwgJkF6p0Q}5S)JoA(Psurf3^1#{jG4
zR$gA4UYq4CUu~WFeSc&pt2e)u>l$@b*|boJl*)DcUV$s}C(`P#q<1IuZ6)O|C}$=}
zb@d&HU1ABEIQz>aw@}R7&wG{p%4+-N&CNgW{vVPpf4l(WeYIH~GV)m~cD*=D0h7HK
z_IiZhExmh$9<6>C#dl9a{a=g>@P0o=hVz=5<Izt~{IsV2gAeiXz9F%W*9O<mTZR*6
zTxnNhVYjRn)mgOCvcWjja}bp7wO>yWtNAsBniNbn2p>uK`t$JohX@MQOSY|=Tll?B
zqA--J#k`|6xIgEig|7gkouyT^XCK7ZyD@l`A$?7Aju~u_e?RwKBw%N#p$e3K{^P%2
z{>M*#+Lx5$sz0sZOE20GwZzAli&#RA{EE<IoHV@p<G+5;FZU*W_zVi%U(9oCO6Zpz
z`5#8_*Rjnwd0z7!1ita&*PZ-dt^*VjFjIGUnQ^~841OA)KL_AE6s%I!<YuY=G7Enh
zI8+MRpi2?nndxtj{nH(;UU?NAtzpS3@YCP^aaU15)L|zy4E?-}|H~7C;jr!jUsiag
zrKRcD8TxOZ@+uBY#g7Wj-+tS_JRw;8FSVZ<j@?Fhh>HGp3H@ydUY`Lo7{_3B>AyeG
zPg9@w2!O{UC|+KUp#N>=9l@ZyS$%BtzkNv|O91XLtxrt+_}lFKhfVnJ!MUplNFt8<
zSug*mFIjV&TPDvwrK%#1`G4CDO(arNTS)Q$wmb(=6a~UFh2y_{Ha{38XxuWevp$=R
zLZKjDM%|@k=ic`@r@!IGD!A#aFH~pQFUNIdnoMd2aJz<9>}aWXZ>X0(Daqb{;yt|%
zd-o=ydmv_w7^}m%xZ0R)K0gB~K@EKm9G){C<i->fOZ!?{`R<@B#f`1V(f162<5n`8
zgDtPb0jl2umb+6AW7Xf*Cbesg`I?OxwFG|tedlgVgGHc%jsY3aVNzb47i5A)h_kxu
zGXVGk0{x^cupP+ZI`o^clfC$Z8r3PKVN!XNhH=0mJ$}-4d1KgaxRK3QHxid>Gh9Bj
zSajIoJXjg$slasKGt7tmX85i5$ix>)Q?8W))jI~jFDQdDFbuCuw2)E&q(ssn@SDn)
zFMS+44z02(X+$pE70t#D+R@Ilx%7n2=~}J#`|1RIb)%fjHQ0WT>W@@7un!Ytv40Ka
zK4?-$IQ!;Rt0_DYva<WSQQkvw))#9f(;N_*Ax68Q<3-*kN?@J^ysR#k7@&HMa~-y^
z#UeHaIVkB#3Hp-94Z+Vg-S)Q$I_(LPxSdP4L-PPwAu(pdS@>Zm%f15?p($Lri>I4o
z1P<e_`$`kXFez(Ql}L1~Gyn)mU$yVS5|<SKjZSi@$vDQ^lsNdwmvx=It9BmOF8hIa
zzt<BKknkbwP}9;yC{94@8(LJ;yR#7jR=L_Ou;Srs1N48}=>Oh1LNLE0v=SX~LerNo
zlx+{XL4lleZ!U=jCk{xX^RaeSR8azt?)lv{EUf5r#;m5uA+07W&1QWRtF&Lkj)7!t
z$y(%UYp|*Tf`74lxzD<$DQfUBwN?49v~`1(##=Wumwb|(pAT_I3pj`{U0zot$jmmj
zp?l0IvJlityB@v7oNtL$UO>qFT~E$B3+oAJj&^Y~J&&$AK<sOMb~ffoK>IyV3If+)
z=6~{Bd>{2F<u%0lXgrVEcR)ES2K|Y4*SeMFNmLe5tAe{^@MQ>ocg*6+Db(F>Z&elZ
z730MQzc+-;e`d1FGIxn0S-0ZbU}&<-=$y%aGd7kg-;x4OKmzwvrRiAXK<^eC08ppF
z0)Ya(3)Jhz@u>qM{vZ<l8vX{68`8+LWm=H!zADyYTlq5E$JaVT^~*fp)pwh-EW<jF
zYFEBF@t@(|z>a3?mzo1+;ie*gthx{GuDe6Su&`!JfGvidsF+uw#2R*dd{1v;voUI2
z-*921Eb9Gxt!CL|Gdys4Cx2p1fr#%%pqxI&HXi5D$O0dP%MHVdQVqwzN=)g~Xc%x9
z|2zm<mEQ51h}5``pq<4IVL*aoh(rpOKDsD&tk{{N-gVT&Y#8v+aMz(H6w*{a4x{|p
zAn|BHtG-Y}BMNnGU1+Ye^f9Wq6PZ1y{6K;LN4x_=B9Xv3{34hV3w-p8GI_7We@Bx!
z`J9s3;nOL<0Dplu><SPmE6SSP1#CMY5LjtxY1x|B00xSfX4}mx<QK=Vy=)_TlYxT~
zV-dY-8F>ZCb#v-EIsswgSmKYbckQm^`imY2a>8!3w3e_RQ7WFuja%HQr6q@5vY$?k
z{*0R&G)pYL{gQEz#J+fE9QFdM=+df|v{*;|Adn|Fj0i8HW!nj%p|`|>N~^ZY@AE0f
zjbXMWC5a*qk1OE*dEbFK9p^D)Co`e?xGQ=!ldbhnfAYK@S?WPylrziw@t@ATzaNmr
zH)V`uX<lZeH5-!9%Z$267<8v(*cQ8eZ&da2tBCg#8x=kcd-vIrA7O|AHmlX%QtuQS
zZ!VX6>#P!W7L><)K8_DC9|1(ra@ToF09?M%Id%O#(HsXXWU0|O=wz+`FM8FCe;~Pf
zw_6GR&fE!a&HSv1{MqPrj}Y#XJb-I9XahP|A1pE^xB2Y~i5dq4dDSi1CTxlZO=Aah
zunT`=f#9a7Id05I*SdmVpL@0wp)C#e(u6x4^YXY$l_%WviyiU+K#S&#a^m_X?e2{a
zCn{z<Pdwg55u05}lo-7qQnMp~24tn`A|ctogHiaPkgQ7_{v70V2A3n&Ka0a+#D(L{
zK4hZ-=#xcAE@*c!*@>Gf%Vz~<T$zbPTw%%~L;U-6{@YJ}jL<0nC!Un^05S3ShRNs9
zbG6<y;SV!oWNs^78lIcevgOE38!_j^??z7)&Dvy#`-)mNzVu=<^32HI_6g?p*cm`g
zOd!k$h%%T``)OUyW*yy8^fj$0X|LB4wvwOt9b>gzV_DU=hFjk<2gP4}mGw06Twh)e
zm@=D_QYw+vR~|$ST#43w420}Lh9)iqF+b)=^e%|qZ1>#<45L{3;=QLwPUIQY2S!5B
z7VeW)xs`oYfSrX}=iEselY{cCT&P*vLDLU|R^&Pr?)fZU)=itW!1&JvDsIeL=osYZ
zp-^9L^i<mY$+of?>H*8w1k#R_*BR<3!HOr-#S%cLVVp_4n2Tfge$eE$Yu7!FK|q)K
zAziMF1NflT*H~fNNsA94(suSC5mERI4wnOxmE=|y)p}FnsxaQ$7#umzwLw;(aX2}M
zbw;<Ida^xnG3U{opvIwPzhkWSnU>Xzby~wg^<jX+Pz)B3NmO*SS$dpf@U#@=v0b%$
ztAKl1vb5N~ln<Q}Bd&GhPUeqow?y*_)0jw_G{0T47A6926;=v`Cm|i6XW&F?36N_K
z$BAwmTAEbcXA$AQ6yNT*Z+uiTu^gi)v3!%1DhcRFog_{x`9jK3hN<Wn%d1Oy)d|xi
znng~<%6*0s8X-!By?Hy|!b{;2T}8C`B40fx_%ZIxmu%9bYj(--O!cz)@$5}-AFNf%
ztjAjConx8L+UHRzVU7o5f&S%VRheQRt3m)0K`_KF-89+FMof+NAu^0-upPpP#VPFl
z#z@&xcu70(RQ$JV3OCX%4&r98Q($(Tw)h_YaY!gW4Mr9(yzaR08xQp^riR4K1#~4>
zUSht4KDEa3wOLx+a*46Nw_j)|jc*#P4VHn7ICV~_bR;U$9h%Y_$jyzlQNmzdq<vKu
zY*mZxaqWpmv9>+Lr-m_9<d)hpM%5tGeH%GWm-k5du6!+Uw|LMYV<+|8wK+)~CsNkr
zEd*+*1zLgV4JiJ}x%xpML=Uwd^Q*h?QH2v}y0uQ^ViQt*e)WAC{_qa*WbWy>hXAjp
z_1YQ>3eXD-(5`LmxH<6XLVadVIa&>+oGENQ&~XCjQ!#v7jSa%AuhuQ*3qhc;8YsB(
zpNy-ZWVOzfTwkIUxS&yWNnxxCoF@ZFVdL=3Ln!}ukd1~C0P2p~q<dX1$?zPZV9@;r
zv-r%j+Gq}t5<Oqyda4{!+u$%3Aj<*+H?(pM>)*Xt@~P|A&Mr?pvY5NtyM8VAbxMvO
ziED+o!R?}LQ4`BC`?!>+`g4_NCsq4L{YhDq;S&IDBP3R8W-gThZS2ot&Qr?h#hnx7
z;Ak0Fugbb#J#hn&gu4-oyM)~wpXn;KB%zWRGm~9ruj9U4mC<Gl`r#H}Mw8enU|R-e
zf`fu#zl{k%DM!SmJ4fR^7ArUXE!fdYhPYgV0lV=HM{#QbYsVkC3xg$-!~Hf5O#P)E
zw<tJIOKG|ev(}aaA6n#{BH`xPYrC((7spb+c>J*L6OIp>)TDgNnKY&XS5WT713KR&
zjd?{VK`laQOaR`t+bF&NXhEt-c`TMhvs$M+s&=dDfVk+(bM>QP7vOh}*NH<)wqbhE
zg&PHRpio#3F1LO?!nIG!tjs6VGS=S`LZk0KhO|{RNbXoP0~N(-X#amvuiguomFGpl
zBrLZE#_EG&{cRzpu$vi9aDz3i-pLz9`7vaVtL`Vm7BZTYBbU6r=8OAvZ{0<PZH#)^
z4FfM-_s~80ZzUGppGoBPSm5qb7g#XC6Vz0Z7$&=lPKC^v6wpMpIQkFvRYXoZutf9z
zaFDJ{^6JlPfP5z<#|O7;h*%i5X$>Hk`G7rJLvrvAHhm8WJE>2j^!a;<A1$LG!P6Bc
zAC%vtdo$$X?9gY^?K5fhrdidh)r{=Eyt=@1Io(A2PI3zcHT{-CfSa^)Hu{WWg2W)a
zWOtnHV2aFPNFC8t+*!sx4rM<7;)R;zu^E2=ofR!;z}3_#>g-jwlmPt-c5`O*jaju1
zQFlOfOp&{P6=(xb8LCo*AfPH=_r8bl&ViUk7|zfmc=m?5vOWGN6MXeqo5Eo^Vk6@j
z_J{U}j+3}Q_*Z<13G*{^7`YCqj&y=MiDd+=e5q64$u3X&wYcfsS(0a(A)r{&K2u#+
z3pp{XJ#}u)@2h+5w92t3M@a`_J&1&@w#e+=e`9D+L^6nh^K9Q&7d6>vvqVG*s4G6P
zktcGxj#GC<Pp!S5z<W)Q*AmGu^+eF(442mCY;>)&Hb-zsmi?eai*0WMe{6}uY_jNC
zvI#2lEftFD8_%+bz?oqOF}Ijfp)jk1YPSq4xj#3ed9(+3I;FkU#0?!#n=q{V^bWMH
zN9~kS{WN=559Ucs;68lyf*f+BnbAk9ceok-O?~t_ys4E<zV-oLAF&SKU1{OfTbDpi
ztzqTHcqoW#kf2M1*7wH1%UF*scZ2t@UT7o{?N~vA(6G$^kIcn2W>nhA^g6}mHl=?4
zQBlr;k7*sFfYLRcQz$j-$=T`xHedP4ggP~_$?fcEio@)NHa>*#I1(~E3QfN{8dckG
zsnuoxfxQl!4-+wcWm7&YwZfot*oZfU$og1<*TQnh$WkN3_gd05C7Q^rv8ZuD3JA1s
zO<~gyrm{c5>+4W>qo=?h+2p>BxU!mnCe&=oZbryG-QV9>g>I>(J`{|{Brs7N>AkVH
z_D5yi;<b<I9dUu}8%8CC?NZ{Du9j!*;8Ec7;^nfnIeHb6J3-=qQ8o#VzXjRbPOkD=
zpMmxw(Q7)%vT(DvouCGq5Gb)Bu92sbtmT^v`f%~t<|)r|bepl<u>l1N3wrG;6@(t{
zAIC`RgPN4?stb{e{&(Q^x1W+WC{Z)*q*z+)qcmj@C!r@nzw3>rU#oH+SR{&B8Gvp6
zh3hm|tK~>}T6vAbsjF9#4#m<!caV@_R7?V_GNViP;#XR&EEfd4YRNT{Y6*$SRp{Q?
z*HAs51NcCX4$GEh_#2qS_}h6#_Og2Xh&Zo#mZ<<{#UyP2C+>m4Rk-%>>@eMm7dVS?
z*6@pKV;z8-HI=sXq*UQOe*=;g%G^`=LmuhFLIH!zD#7^>F0z18`!1%BDhNVc@g>e0
z@Z8L}Zx=7_wo#Ze>LTgA#Z@6=beoM!ZHb44ySLpB<_GfiF8Yw_?X(L>1gfK5^_Bt>
zsU$K+E}ZFmuwPr5c0MB}M-NcDOmF*KEy`#{N-570G&XnTX(j2NL5Nk*8u)-ZUOr#m
zStAt>fwMZbUf<_S9fhLQWK<*X0dHybf9GVqqCbqhqlUa!OC<<*jgdllYKMK5MYF$x
zqED7e+12MI!H2C@bQlPc&lm-miXZwIm&lyIMFx0|J|mJ=@AQyWYw_vL`c=*9BaxQ`
zpgi4tHI|T6Nl;I<0Vr$(z^;zL(lS&=K6j}h^W7Flb08^lx)A9~;6g1xbM9;QuFiL*
zhFm+DK4u3+cVX?&-=YDltDUY(47BEL!AX=9BpGNC7>Av0)>RVexr513<2Ts2)~e-;
zgXMG>#Rin3dpU5vmSd}K0zL=H-?S=r9~_pTAolP|JG;1J)gGpkI9mMr=hX<EpxM$l
z=Nogb5)arubqDXzUZHy&Sxp<)7Ap*Rv~!<8EElr^=y_nl-<wHTucyzn>&4m8)MpVC
zHs96ddTwq$+$zoIX<8F?)sZ6kS1t-52-m|tUSs%85Z-k$Nm|6}suJ6e4*Qp$oil+l
zru7Q`Vf48=EDzJYKA@7GXx?x6(e5~1LU1>sMv>`Ns6Tqe=gLHJs_`WgA<(dwAD%u8
z%;m^~<XjT-82*rx^DGowJ+!A)PdTd#l~PewlxLkyHPVIpdlJ|CaUIq9k>}5dav<x9
z4iqE!um|yPzPLiO3+qpalV`5Y4R)`=a*^`pW9w=S*%kD>-!%GmKoT`A*+NNlg6`n@
z0+vi4f^AEbmbNTo>k_s!r9s@Ca7qH>QUz()b_IU;ZWBKq>pDLZmEo9d=Y!He5Zwb#
zYGRPI`fgEMW|miGUS3|$GCBoco_He*voRt6EcJw18(<3Rw&iI4QQ1Z1*DBWeK<u|b
z`^QHzkydIE%^GX(#at{$#u&Q?uAGScD06Zu#5(%DstOBdlb%}3%(=2^+G{#$VwWFr
zA2Z~j?8&QfYL_I`xuBoXpYXa?)17jM7CRYZ<&O>&9O;Fz==;gixJiKQKZE0{{3WaO
zop=Y3IUWMEUTX*yd-siJYXP)U=4kpUd8AZDk!3GTr=oNPsv&4yXovou?(}@KORU_r
zSIeW5O?U&RadB;ReErU9k9Q)mym-5kJt4pzURl6gnL0X-doZ?JDzy7~Bb%S7{t902
zvj}(;vMA-<M@ibfg3&yBj9zE|SVRCOsjt2~BS~@ScVN0q6W>cn*j6&5H1M}TAqU+J
zmxqSL8Ki8u0ORez(|S4raB2a@Vn^at?Lz)3+B1~a)?{dQH=Ij<S+`{`Ix<reWu!&q
zD+yxrDXm=VdayB@TirLUs_|{Hfx*C;7g>H|udq!)zH7z_;2d+ncPIhFC_J_*G4||C
z>#;*-Ut=bi;fLFWDMk)f6A!k+?^R}gkCRig1jhiTa&M*Oo=swK<hppTFio*n)0OD0
zaF=~aTzf4b(%8IFxQ|{1?YA9xZp2VN-eP=~$@<xriPcin_5A_!3E>@&ecVCgxqT-%
zp2X==UB};pbOLfh@kXzP!7Y~u^<|kWFdEVZOS%cdnGver4O7h`+0K!&I);7PcF_9@
z1Kb$qM6s*NMV|6}9EA>!&`;=9=R(E<R<7gg>0+DhRVPt4WI%Q-9|Xo-VWN{~yWLQB
zUJGUEi6d7>q5OM*C!xz{yR|e{E9wGt$=-#<KNns@2db)f@87s-C8CDfmJdAMse}9)
zbf%uOYID@9ws9%%OKmITJLQQA&=At?2@O$Kl{-PhW#bA<yX@9BBcGv69j;$c6YH9-
zQw;zd6I+c@$??oLQBYPjljcAgrl_*TW-gRvH5k~<Z+RqyB11WOKj5`m5JWIkj5H3Y
z2f*2y?dtuI`<sz?rQ!z=<$8do5yGwmegqaIyH!0UToc6n)|1a0xX!-*rdW|;f|<8a
zI2vaTs%YP8$DKMSSLTqI!i{OsH+85xG+{IA7KKBH#2!D!LM#X#&2-+o>+6JJef+XS
zyo<lUiBpWO<rL~|4UoAqByr@ZPk*Mqn(-mVj#Hx#hmNoGTnEmL)5}dS*~qhk*10i(
za2m`K0hEy<8Ez?X+SAogeLen9EdZuZD(17Kz^up91Tg^EB=-R*Y#srnk2+powb~{=
z4ERAn)L1dXJ~41Pp3g{5*`=W8ey@aatv`irIJ(3Q;Lg!QSUC$ub!~(vuu%`VbHmOp
zSHQ6N7|#<@;3P?EF^hLmUt+sOE^z6L@BV6Hd<s{%*bK_BvkrL$j)0p8j7kzg?9xdp
zz%e8aydV+zzjpb)y6(R8ZJ@z*^1az@9~*Vw=Q(KN28#`d2NREvf@puvu)Lguj#<6i
zo&X47#Sd5SgfUxy#@F3<NOk$joaARAW$L;|#r%GgwGredb@ia8r9v4Rl|ta9zB@;j
z0cvoX{9awlyBroWWC($r#Ujr`y5->e`)`GbUu+Ari$%wvoB4x0muzZTB2M0NXkt4M
zES$JtoNW{>DQMARP&u$7<<+V%dk65t;<M;kTKOOBGh=MW9)7)#hEHrMxH6l5J!Y^F
zhG9R=r@NBaH5UI-tiGA@)2S_x$H)ffv~3fpT(bs6ORqo~wT`XkH)()&xOT`MD>K<?
z+gtQKU^1h1F^=+KyZR#?=2kT`NX=Ve$XM=9Lipv`IQc%(1BO^TBWpi~RB=8(4xCH@
znj>7%Kso|@C|XXFzehQXL<j|*V@DXM+9Q?R;3XEYfE{KB8K2%9;LNRf3_$>Zs69K^
z%JKUPj`COie>l|PIh_C_#ql*U77T47KzWHn_#>QvUD*UZ$=e@6Ts%X89`#;T=(ocu
zp<Smr8>d+_+tdM#C=9OJ?w3;-i0ymT07)GMTMV#$a?7l;YLfm*4<m7szOC6-6J1r$
zt8B(ESimj&N=R4{5<)yVRD1OL83EH)%DzYEm4>T<UPM~Wq)`xy=>%LnbP%q>mf5wK
zp_;B8&MG;wtSC)%wgNTy*hSBcxoNU@dRSKlG;dQ@79@(1U4Nd0Ndd;w=w$2rGinMw
ztKz1uXE(Vlzf6+o&WP&EPRILhfpnnC1?83MCo1`7zt2kdoH~qTe9XBzMLRwr2zT#d
z`({zBnq=N9$EhpUUm!gFL{#T(PFJeF@W2P(j_uG9)2QB}>}&%qm3t4U9p#57TnDbf
zG&MU*hN^1m#iza&`wyNWJ^@5eQJ;k<af-$!s(3TLH&o<kSwlc0=Xv(=<Qsj+>=bl3
z0c48ASU#yAQtpKy)@3O2y=(Zqa{xn#@BOo3!0($WS%p%ORKvSxK_bIpOd9?}^_^lQ
zUI_2)q>;~6L2Q>kn41hDAk(2sE0L7zUJr8@t9IMkM8=O}Vth1;?eL=~B$i|tv{hWn
z+@X_n5Y?;KSx8Bpe9{(n1;BZ^VXU0_vcEaRSPz^Ty+f(N6)>l~81EB2Wj{`npmJ*f
zE8Djx`Nsg78^|EUNFYez-8?8+qJiDs@oMDl$CBmz$rmHVbaeN7B{L1tb(x;qX^;eT
z-#Hy*H*fBo7knq%zECc6C&#h}6~O{dvxSM>5Bq3*FV1Y<pgjsLg1**)x*v~bhsg^P
zgSe%>WwxVj(ck$0u-F!UtuYIS8h<8u{LNzouvv1%lUVdY2aH#l8GYRR))o2Zft%`k
zyA`1#Ep@Yz!g_qOS1=;!3T`dd9Uptp+X4om<W#;6tE-o01Lcu1Wi#=^xPtF>f+agC
z$8bdlk2*`Vc`;5;C@1a$$#dWRPYN8XDX>O^^-d8tT^73utlMQL&Ax1TvL<iZ?PO0E
zPapS@0afl<ET4pQMPfyT1Vc>stE{o@q1>Gk>p^}7R<EVnDFVkvX_NN`fqCH#ew250
z(Z|Q7BJ=({slpOM`&r1NStj`kjWn|@BfC~4IrL;`f0|O_Lfx}v{~5Hk$m37X4GY}~
z5<p@=^-9UotCoC1?tOD~9$>32szp)*f7eVy&m}T(Vzhqq?p*Op?dvNSHb5I3JkRI~
z*sT4wAbnMO7-5qxlZHN;t5x`Uv8{3!v5mOHy+;f%XsizEzxRo=!pB`~j!nu3mJr~M
zpxtax%2a}^q8*J&eSOLnq$xz8<e@f<tlNN-esvv@L^MahZ>({9SH%#*GsoHh5J=GX
zYXnC(#$&GRlg~yYWpy-05rD6=&frvu-C@T1N+vP}iog--c}sv!R<!hLX-vu+_}v@b
zO46ca>#}}^e;9rya{iLRG^T@0jF2wX&Y$TP8Saysg=s&0fAsq2bWr>XmH3H}?T0Io
z*h#6<Q``TL-VyOK>if*zQSIx?FmkuwBjdyCm_XZ)7nFx79EUav`Z(UIL3B5ox1*%T
zGfMT^o<BPg(w`Gn%_T0(FXni8OA{!Ld7K+Iy%{KDE4;$l^4vPN<9h+aeGP{YZ2i0U
zLsk5ZZrG+)hu)gt{@j;?oNTA=zI+-e-`i0G!CSm*AE<d`85Xl&Ipb!8vBd#`y=j_^
zaz&m|g}$Ke$N>C7w|&L3|Fg2Pvc60WUWPT5V*c#thgRKbFLyV;fjssD3Q3}m+MptQ
z(%I(5r@}gQLEMd-Bzci}z|%(<*T2u0F}SE7De9^qc?|8|U*=?{aZ0I|O7Nyr1)s&7
z=(NwMWoEXn$pea0E;O$Zu7LTevso?a+-h&~X}}mxAOIv{*pl*zq!T*n+@eQTTUFp@
z>eyF7?`<?ZlM6^dReYgAB(zoCWQqHu8sKgXEv-@>-?O^Q;8+IJv91SVH$?Rj5#OKZ
z0X0uHCX>7~1H6CbDg1hnOeMfAHaN8<iGW}x88&A!4mB6BE-=9?n9g2=9$}F5G#^sD
z;Wm4rZ)WM($TEGn^ryc46|JGLuYSMa8-C4@EyD})7c|sg&HwVk-_1Z}O~DI7xzwcf
zXgiqXyE?wH^NvyCQE2FC*h41qV{$)nMEopI1L~2&tGT0p`<S0^lC(jUrNf7VnC>^a
zWHtB*r=<qaU?giChc+GRIda|SgNvBo1pJyC?7j9%FJ9c(;5Qy7X-W48`9Tk`L&1HM
zTDNaUnfwsKd>7<Y8EVL4kJa8^^Bs;Uv(tGr`r$2WNc^vqoc}kfm9iCiAA!4M;-K;>
zpokHhw*G&L*w6F&(@OYd{{J5-VjZOp<0`A~{_2>@*Z}FSmP~HFYZx{)F0SYx<bPQN
zzpfn09$u0n$*iYS$^UlUTTYq0JY81$-xsd@<!0xVtAXxNU+(PJ!T<5P96(HS^w50%
z8@K%L-(QAE+Hlo5!e%6T%3r_BpGN*ay&zKtLbjF(qYMAbMZiWq05*zPJ{rgUzg;&0
z3SR#|FmVO5{nL*BWt9}m{Rh#k1$EOf6AZq#U}!x*G;RLkthbq!nS{P)C1mmmsd%X}
z%+V^FxN?nCKU$-f9<CGj7ul@h_<TXK-phHQc7LeG??`rO>A=5qv%LPPo29O%_Qd#e
zXg;V#<*2Z6$#ws7A!q>L@D^`4luBNl;rNV0fYi&w+!HKfnzFKfIM3Pa1<8fx)|=;L
z{f5?<FAq$>vZLO-G3H2c|6uau$v}}s_Z;Y_liRi5RqUWQ?^f<Daso{2t5C2IpA>2S
z4nh?2^aGruVIWvw43hiVB(Hew*bI<87!H@-H&;!2m`}n9QiSg|QcXIuKBjRK?Pq}%
z!Zmc(e<XJXeQhpI3z9rd1+`^s<<%}uQmL&Q@w>!@S)@`gT4B&x-M&=2uOb*R_%U8^
zubzUZrgX&*r^5Q=VXsFXe&~`t$kh&jQ#;-{$h1Ad20#`r!yv7uF9b>%g^8fFY6#@;
z&Wz%Lj7pZ*=7KGeRD7OOxiRz%lieDeawoiGWJEVs&?*WC0Hs<Ux;ZhB#l;bl<%5O*
zMZl&Z7+UM7pzArEN-FU}c__r(pz=ooB(~gTeyDe4b#)$KQDNHQw3Kf-UM&!kDylvj
zYXQQZHOQhZC=U(}y0B|%YV5{`Sv6k=w$bkiNHnl>e%|@b=FIDapvrpz2P^AQ%I!yl
z0Z_5iovD;41(<5Sq{Mzo)anHfAb$73QP{F{^$SXQY$s7VRPA85XvF3_cdK=0EfP}9
zb>JIu@)1SjOHB9^LiYCedsZEbH(RXxMj1~qT5Q{e-*;um3YU3X1A^(rs(=rs>`NCm
zuv~r$-*Y~|f~t_|#EKaojpr)xF2Hhs)sq7#B6x5k67>hvF%(u*(7^9whHb^IaOK6B
zRquM*ILlVP)dtvr_qplJy4~UTYrA<O<9w=|0SV>;Q4UXp!pyqZpTx0gPnzZ?j>~*N
zZH82}%dJ=50|MHOXC+2gNGO^RB`Ald(eRV{js22&NsT%kCCB#u{renVz<Vnop&@Y2
z5#W+pw{T;eWurkJe-PmN5?CO7ZduXpQg#ICgwNZv5Z3BT)3cf97{4EXe`E59zX#_+
z$Z>o*dpS%iFVFwQ?SNbdD?083W8^A6({SEWo0*E2zQQX+aFlS{s)L}ZbLL!Cnfc&|
z<&Y>gBb*FSR|>PTvQ*M@nsuu(3M{R6fn3UCGx*Hv&#GIgu5Z8HCaG?f0wpFCH;H-&
z+BIS%HwNlKI<NQtF!$eKO{U!*HtaAW8Wd0oD2iCdLKmedNEaIfP!f7aL^?{9Dkz{x
zvC%>Y4G?<oAUJ@4(t8z=-a8}&-gPtc>}ST=+r6Lf_}=4q|FR3oedoHbYprvgzdLQH
zkAW!UbOE(ZpKfh76fJFEG4NwB7q1HwLw40>Fyfs<Lrb|VgrH+FN<3TFamCG)qi@~L
zaHYupUAxun83%<o-JP@rdw%vXc7OH((QiCOAro#z^HoRUIMk6zMms2#7p1?TKeI!H
z+Wp3w#dQ2?aKW$Cbblga$(Tab6{cVNT-)oN+e_jnuMgU%g`#Ds<U+fGiiU2!GI<{S
zZnE*H(J97rrek{hjC<4dq*Y#7LWz=H#G0A}=t=F{X>q%1v88whd9yGWYaU0ZB~B#c
zbEB?2dRUCpOutU+<5Qc4XR$Z9*KX<#eB3fi*qiN>X#$$+^j3{l$`~r*A2icnHy9@J
zx{cA2Ghb1en%hXkS!ALIxEciuR_aIC@|QtU?!K=l%qCUdhNz6(=+c-yXqIcSB3o`F
ze8z{C)~v5MaYk`pq1o7VVgE0D3^%Sxe56Z?jZACDf6mRA9QpoT71mYoE?eNbqv$Cq
zYFTGi7=~R}aICmM#WwViKv_d(P<79l{$i+4_3i@33ra)*dHKzYHmu*zR`>Sy-kOb1
z-q!=BL6S>HmXSizXT>fJvkcGa{2_myMwZz_#JMC6KayzZ{Wmf7D&)SqZ!ib?xKtIS
zC0Az$25fj$s$Gsw<-b1IwtV#WW7_1v6t8Om9X2!2)f2>3zwvZC_ATXzh{6`(w#*2A
zBM*ZVdkV&{95lyG=gk<2(g(WubGD3LZSY%0)}!v@5|tI*R_HNAc=SJQ5L)vQj?jc;
zumU7b-Bg_qI`D{p-e=bKA?m|j`%>1~qlDc(RxR=b*!s-X%pKKR;$k^z1;;jxT4XVj
zCB@A04_lsZd>SuI(@43$eg!zO@K0yj3jK*pBR1VFTzQFxIWrcM%wLG@l&p(8IXI*B
zyl~VHpiZ}^;yQ65@4uIFMS8ir&6bSmRjzg!v5CN%ElZ6kxkkMFq69b#oOH@1T-d7V
zJd^3JEHz5EXB#VNWZr#F0nWqT#Sz8=wFJ~wPb^6Hh%J7;I1?x311_z1I*e0U7s@Nn
zVDO!26-~WAK`|IgGKF%=b%tAIP-pz2qPRrUab@6|?;$<$t&Oa$F)3Tb<!F3k$cppa
zIjfIi;tQWnm7951F+QdjLJ%=nFSkXK4jB}LwnAp}yPh(iJD-Ls$>`Ah<##@Vs(c)d
za=UCR`+w4L4G#}@{U3c?lTW7j`7`P-+L57h)oYPIxNGr5bFD+5u+`mb!co5#AWtpo
zyHF07TP@B7b%L$zYR~QKtZ19t<+pIyekc~kZY;|+gz$X?Rt~-Qmt$s2<ll8R7nnt+
z(m%$|&`#?}`<1PIdy$bu69vS8wvwB2nzlJ$<<95Dufz;~vNg96wRKx#63aU%f2kZ`
zNMR*KA?Mi*m};HrS5Mb<AK;oO$)vQ)+gR#6tU28dmX3tkeH8E0|9`S^vFum;DlPdG
zCMzpNOQn88olO`ID9<?In}38a%gi02#cJnTLQmsRb=~Lw?{cobBKrVTHM?0t^h>FG
z<~_N7-7h?3OFe(J#m6_kp>mxk4zOe2eGR2Ds^Mpwm@iMC%iUa?usq3aC+gysw7v>S
z?6%m$7(F77R^inG<51F)xA;am%nKfKvH7yv;^yx{@14MyS~wQ_;ubu+{W!K*!85ZG
z;I?t9Q$~jDua&Ae2y7t>+G;^WsZ!9Bp#Q7iplLspHAG-;ABgd8?Q$W{3gmGIL=Yv`
zLr=Xw|A7JX?@MJO0u4gAnk#^s%X(7fXtoVq^FKPyVN6=46xl1~V^4H;D#o-=w!{Y%
z1yBStj=7e)rQI*k;Wax@1ezTh*DYb4!(_#nS=lwMI^1+q&zfQ3Dy~nlLr7cX>*HTF
zC2s5GS+)FW=&D%!*z$*=i}l}zuG)VYx|U`$9Rhiink_H0za$=y6Q^;LyF8|?5-qqw
zPR?}k7v**1>W5Jd_rjB)jd*PPzIy54U)S^>A7wYP9&dg~vGPr8g=XP6tFq9Scnt$@
zjj}mTjrFn3nYAze&#|{^Kj(sMQ*E>Lwc^!zeBho{Zqt^T@<PwDx7cfY@4YjQz2CKZ
zPsVfR%7q^DU_#u(LpwQ`8m$tcoNkY<!KUN@l#v=6!m+@v8CUx#SjY8|r^p>EGtk~y
zO|tJzKpDa$CV>{k9>VW1r_0=bc_hR@lR6t^zeYyEmgHd!Kf;X-dNLORH>Lr5Le2Yg
z#H7@RVO6_!;{tEv_S*X1#dBOB4g7*|p|os?Cf|69ru3^>?ZcB|6ZD+XvDh3T+*9l!
zxwc;H;XBjtVL}lZNhY4C^X%t_!#1${@5G#4U;of4FEV{MMI$d)<^@wI2emfrRV@wz
z<T6;{nW`U4XyY9~CYqT!T8*^gU>{zGqr!&By5Q0k2f3+lDTqvGM}LbQ(4Ix<)y#V`
zYo~*J_7n9gmikT%J9mpLfz+2!>ql%I!!Ujl{`TxtEC(0K=Yd$~GSJ{%2s=Rsl&n)>
zt&=)oM>2;9(NW86QM!XDJP7?;3!+)P)9uxWTwD}?b{gr8ugcVe1MA_$QHg5cha%f4
zBv2s~p`H$ku|G~6Rl`gs6uyfz#_{$#&6f1Jbg?fuM?tf}4)$|9!#Gr@l3tn+h_~c{
zbU~1@#>Qrr*CK(KQG%0Xhx}?i%z0>~D>UFsy_cFr)gmZj<L};hFvJlLmO>9@n-_Ds
zKBy~7>sY@e2a`26)P`!m^%&t=Tg7-w*YsB-2u6xHg*NQ?8$@2xY6mrf915yQ{IA8g
zA2uB~iax+4Vc96}qcLyYvyU^u$BV`1RS=c?w`FB8v$p!bK%G1h9rEZl=iB)caW#bU
z*UK;N?P@WOILDJ2i(cf;GCW&nazN`Bo)pSg-QB<M24>8Y#wC3iTHscCzwHxG`YJcY
zP|6oZ!?xO&cQ^mR7YEpyX(ilj8F1Swp>1M!Xiw7-|MCz$ube8!bu_v3bPNAdn!3Z-
z_y6AwUboA1BEdtUyAI#OedtF9LBGnvB2vl&1b^YQ^OccNsfJTm%xxghxX^r=EE_n@
z_)SUa`0Q}7j-B3B&pAc{%Z0l)toHTYD%)zzCDJ8)4aV0?>z()Pc5Z3>%;vU{K~5OP
zD>q_S-_Vz?+d_NNjG3jyXn7E%97``W$8Mv~qaCs5ZnvOTs!dU+NQ3ws%~f}zCQ&#J
z@1?Gst{79T8kSky>vePUMw|85q8RdxRY|iO${iTJOTdpwg|OJEVkFDq^jkQp_=_mD
zF50ZEvD*YSHQt?2Gd2=tY1cxUhp*L%$OT|a<9Hqv%_u+OK;bnL63-p04*KPk9e49_
zz%H%TNL>S-&UQ6>Aa7<`L2UiEguO%w%VOP_b_GI%us^=cZhl54k4hZbMX7T@Z74|l
zP@(64S6%t@_XN&HqlD+ZRIsX5-WN<#?T=pG@9ujo<w={*q7Zf#b&p^id(QF|D5v7~
zNmlc-;y)f&Bz%A-;{gDxZUI8(6UotO9MW|aPyefN9}FPpww?ioEU^0~cUVk%m`Cv7
z<LF+-$4PQZ39@OK-H6e0CoRM}jeB?+!iEqKGRAjzlp1;aXL)f7u&E*U3bP2Rpl9{N
zJg{QevEUMDWAjWAtngBf$S;$+?`msDvWKVnI1Lh<<S>&@5wL9E<rIeZ9=e8}nrOSD
zB6i6Gzd5L!Z=s<@7t3CkUAB(?kVa4NY%qd}w({#*(x7&{h>K7<#)8to;Pz5V+6kB=
zLJA!`M>%XRo)Ty5#^x)oYI5|z)c-MfjSm<ZaLY0-^p$i?T7j;d*vrmqR&F78W>Hv<
z=)~H0(>-~-IlT=xavNMl{&-THgEyT=TY&V#Wc%NCvFvEY$5L(Kt&BdMHZ2&8w5Hv7
zb0y-7ass2sG@O1FjM+LLwe7qR_V($S?BE}qU&IJjjZ=yOzw9$Qk_NJuPHI{-lhSfY
zMa3t@{$VJX5JJ7UaZvJ@o`Pea-N&^Fkvr&?3iqUkc1mZNz$RhObN4-mFAE+wcs61b
z$_ZK$sfF^fN_RWeJ@JfHO6SiXt!>G8W6V<DF65bAA<aWxA6)IM^>7XKI^b_!nCr-X
zKXEX0NWk;sk_i9blwXH=zo(h!%sQ+FQ#r6$C{q@sRZJ<^T&x%kO3~#0kOR^nFE^uz
zoQ{0Yahud0ufWF4)!O)_-yY1it`8FJDI(|E$}2L#TKBqD^hoJwQqcfxYXn3s9ji7L
zM`lCk9vJAo9=D##bw-AUC-6`MDzvK{<Ne7Y;hm;Lc|~Uov(wU;9y}`x$Ogq;?_1e|
z&}X9C<lTL}!pz20_4>WW`4!M;F5b)fXWW8hFN%6|UY9_ReamscHGNAN9c5P(blq4x
zu9?6P>ebRF8^gQrd6JK@Si*E((u-Lr*4TaA#W@D@I`9SbnSz@)^-k|wcBS3|;w_!b
z6c}0H$?nfExX%1c){dOnu0ky}!2ix{Dm~LR)J^3Qx3&^GZ^C3yEb-(ZOqJC3<xpu8
zt=6C|CX=Facr<|(JLHYLflO7jibS%8c@EBs3G9_N=e63OvJo@_X<d{~kNm&r0lRZN
zIz5JnUAF_pAo*s$X^g}?9xa)6AybxUKz*_K(yLcw^2<z_VHH<dgWyYyRBasRAzWVQ
zw^T3HHpRG7_78D`uXu~5GLJiq1-Dh&Q+M(A&O-^k_hl2xd7V(}LBneEvJY-b!b{x?
zuwAeagpR&ajs&htX>ss9Oak@1J{_2rPb9u6WlwmoXE{`o?VlRqbw=LS6i(BvC%*jw
zlEn!oyk|4{c3JU5Ti(A(vd-B$=tF)^Q&O58UQS6iL}i+UOan?o-Nu!ZO4a6ADqzFE
z%}5<rM`*Ix(Z#=|U~EQ}kaq+SYX>fE%AU&Jee%X_hIhL=86>$lnWp@3c3QSu$~NU*
zE*%~vF`ae#<(ax#ue5GwtmZPAojWIZRYpR>_~z~t>!YF$JodL<hu*#S`sM7SNWGcf
zhcg9H1s9(yXuHw;u$gqfb}D*&*?E`^v#zSvmI|2mz|!^m6h0lLv8IVMiARIH<zF-L
zxw#9t8kPOD!U>g9c3A=^;uc;H=Ztwu?@t&&=r!o77D<|PJK(r_q5b>B*csFjCdi|b
zTQxn}Rp*94oYL1>*eKc3Q=b)}WTj%1njxnmC>)>!q|Bny($f9q`q2kh&vQ>h`%?3<
z=#`vwLb3}?kaQe-`Fk@!l_OGE;qQO~*v?8G@Qyd^n9D9D-aV|vdWrk&7sdF{&7-jY
zrzbRo;ib~VuB!G8dks9PC6p<%6_zEL4q6#3l{TGd9-FQyO`XnPF8LncuKdhysxxB+
zn7XTbrCSQFD-5t^{K|_w!mgcxLcp~ZFYAK;xejogfit~DUZlY42^Ae8XP%-fOS>J?
zxV66|`z^{QP^#_8K0{8a@``(=9?Z6U$;lh-Gugv2^R1PaE}f+cJ)qc@2In#)C>c{O
zIKc0@QP|3O0egNXvyLZAN&fQbe143PrrHakWg-EqtmFo?L!zg&r+OL8Mo%Pmk0h~r
z*<%m&=gl$x?y9AAC28AI7KkgXW@_LJ9R2+J=vOFT(|h&8K(B5=A$1AOrdxC;*k3sN
zTqaZUQf<PbD)KY`)Rb{fpLgGv!@7!i(8FbLQgPCrs9o_Q*n}P1K*aqURL-UX@9bY>
z{G@9mp}rFlmkJHX3J<`J^$CYY)7c|@`d8C$1$x|HR*5dQx_v%BTu}7M@R(<Kt_xS$
zKvPg#vH8-Ox?0nF7}93fL!rZF=;zHL(>T^i`+DuNFbytF%`uhJ8=6UrD!xK#ld0$-
zwtGQuqUJ7l?T5KVMq=2d2eD9zbz$O-<~OPjk1hfqKXu(c^B5=(&j{P5KqcbZ=Q-T-
z+bt_Z8Sna!X`qT?v`&Ue6-OHe**28-zNEFiXB!a(c2)=YeLZ$`!92AQ;9xJh;$gS5
z0_w4R;xn*qKlr?2lROv5i8G%C376kxPbp)(vU(s3B8>}~PE_6BkVK%gw~fMBme_7D
zXP}>|D1C-t<+K08T(*&U#yRbLAIzW}UK(O%yx-@%_=QpzGK$buwy4@^xaNF4fTA7V
z2sp%d#55yTaA;-A;F-LRq9VgZAMjVP-_s&0ug%g>s}H%TOk7b<<HMrI<k}p@kWcar
z?Bm3j2LttgwmnxhqF$oW!KF5_HH8V9n*eGWj8O7oQ0@#9cPpheIBL@<S<d!EfHjj4
z_^wUIz3oLA-LBx4n3Hmgm2OWuTu&68wCY?)ubDAyagXnOJ&%rwTDVZwg`ahLF>JT~
z#7S#u;<WNYS6q4SgnygA8ugJ-!?bnl-U*p34}*hR318O3%xvEY^sHa8=b+xJA}1=)
z)RM_YwTIRj_65*P(8=3EOnfk*6OFLu7V2MNS*Tu8R1zpfI3I4I-`z?#7G#w=F_PlA
ze4K>wL~9};@r6*IjncL#9px~{;a=Ddn`*xNyBPYE<L$_p96Zfzc>uHbBX`A#8D4s{
za5s$4z-!;3^B?Fge`kQn_hpZvA?}2Q@T&LT9LK~!3cLc&WSUW2^b|7LXCMYXvnh}c
zJPbf{D(4%&7C0lm0u?Nge)c=1@@?NzOGze1F<--|a4awqTx4%40@bxAwGYHT1Q8{%
zqqsMVt!<+c+J(XVh8eE*1yC@X1|;r5lq3k9M-^6I;ax48wyqBLz;j762h(Ry{2ou9
z0*+RI`Z1a#nPX>?m`woE3rH3598}LSF+>UHf(ijcADM~@%{iPmGYdxY0=_7#iai#|
zmc{d4MWe8V6QAraDe4LGcf*!v!svMFBq*JFz`1Konj#aQlU$o@7D!y+!<?}Ywsk3M
zL{_^(Cg_uP%<dTd3G(Fbcp_S&8oqsFK;vxPIz@rf!~~2H6g^gGy=7uo2W|Uk-!gCN
z8_JHT+9mM>^*jj6|Fw3S5ifk9%uuGS!cMtV-!<LRf}GP<@=%2C*={Cf`()vo$#grG
znr6#LS`x-4MsT#D=f18Leu{2BO}x{cdMAu&f;6rZwv_ike&!9Dn5%ivp*xu{#$1we
zqFDL-9X)HEd5mQ8TsCo&g|YVa&3yK;<#=&Q4K<l@lLhi$oWfm6<1?e5AQ0vr@mazL
zJ;Y}O?z4I5Raj4coUEwZcAufDCu7d{!^3IXt|cEAq0r`lR%ZbPoYPZsW2TfIqL)~j
z$Szino&YX93xWO$?r&_eRGig>QCkFM8^q;kr`9K(Ih#<|P!0z`3%E1iAcAw3UFg=<
zQ-z5OaTVsJU&1f9%m9fPt^b`#!%WZdX;`we)um$XIyn0!v-`$7DX#_s%eF??(vvRZ
z9gkEnO!|_KPR8EH4d7Thpd2}J%+;ACttw)IFKG)&0ocuxYu?jdFzJkt;vywmeJufo
zUq85m`AlbVTTL4%VW$-lviOsQ8yeR)b%$#Md7j0H2Qj13m3uL6X38OR(ER`il+1Nc
zg!47yZrm=eyoJsubscgL%2y^{J#%{+kJAwyTB+%eR;kRc`eLx6BVbAl<c=C`HyyA_
zP~?0uQ0DT5FG;1lR^e>2+9qWH)&+|KEw`v+ncvo$AF*9O8ujT#cevYd^=cR{TqWf@
z#jVh2Q*Cu8)>95so;RWHz~&NFX*%dq(etro-7BEY{yiZxLeN}Y&Pve$DPOa%y}RX=
zXtIePS{|*QjT)L(YOw_+n(1?)_y46tBY_evyG*Fp>ItGm8y|hnu?MP-{P(hmP3+F2
z8pWn;aBM@)dgX7cT?ghC;c+s}!DSNOl#-s_h~%L_Px*N#qiaLbVzQZ2@jU5GF>vFl
z723s<?V<!!aD1dAaootdSQ$6qdS&ynv-3&qLCVKEy*D;)bl?0$uP~J*Q|g5$xl{_y
z_wx}8lgY|uJy-MKtliCM=2yzw8n99ZtKAdnSn|qfo6Trb&&FtfnSIkNZfUdprW7p>
zUekj~Z8kprrxe)Qq<R>P*~~0Hf?DaWRSjY_sL&wF$ZUOKc(7$x9a1;@5+Tx2!o$O3
zCpn^fiWc@R60E4Z%TryP^&mnUe0E9T&m&7~=!e?CN?SV%`5%spiY413G_^X%F%Y4_
z4_F~v?Pa680ba+W*=Jx7GtYM)4jtG!F}Y+$lzKxX7?1M@>P)t$XuVV%WKjQj;FEDj
zwfd&v7i_f*Z$R$r!vWPLkCV@ECl}w9=`{~}qr>NYS7vuoGXKoVt$;7J8Oo>PL;Y3m
zXUr8`96F{mU5k&@VKo}XeXb72?LW_zxWYg6Sb}3GKdT8eZZxCkprGrw=ji)yN0(#h
zDO|0#OpJ{AQQq?vUh`F55W*u=X?gSJ&EDgBuCAqFLAV$JOxaP^HJ=V6hX_!jtx8g~
z8R$wqS8p2@`Ll}Pr5=LvB#_+<*I^EOSD@w!3-s<g4vbmdE368Brh=*0Qi=K%M~592
z(F!IWoVa+1PFmTHyD$pkUZ#lj6ZWhnG&pMVx8=BoC!0OeEmGc`r>c5{aFZq%Em(`d
zexL>o%-)b8YE319`Z3q<?-n`kCNSvb8*7}YJ|HGk2Q-12J85n)kI31+TF6pfL44b}
z?FxP@aSF^xouB%xc>cy2u!KL}R7_@aZO=TmllDk&PiW>Z2f2LT$r+}f&ot5&z`A>U
zj8|RRC2DRfQ~6=|O}pIXkmsf~lZ8nF;=17?Z41?OIc<yaM&Gi-5h>z-)$b+>B&7E+
zT|hq+Eqiqc5hnbtWbn6NN_?S4=?FKlhPT8-4V$H_eG$2}@M&XO{^9im^%F4_zs+|d
zZt;Kr&zeBQM3hnQ{h!#UKmH~-FOry@Es{!|Yi$S2J_U{oW3HAx>RZhX-<N08a+bLy
zGSvFo-p9;;|5muEADTY8;{A70?QeetsWd63QTy~4ch}0&e#v~um2}fRFqlhr(jg0P
zseAh3vAkxs{@jIF8DmlAACR|k#4bjMBmFO~Y9Xp&nHMQzfiEr!M!p`WH=NQ8-~HEj
zfZ>Ms4y6<E(t%?CnV9K*G$2Sv#*S2{|7ZUWzFc{QO+xe8pI*j)l;!qe;X?iDGIZ!a
zbg=#3-lhM#AO5^EqTNy71sfk+H2ce~^6#7G&z~K?7M-4c{vIpmKmX)UDO&$OF82R?
z<H9RWZh^P7V>~bTh4jyF#~=Rm_+_Ym*F4G)`p@3d$!xe1wxsFdZ~u4!KYW3||ME|7
z*wjxQ0sr`jeh@~yVG*uQ1($yIrvCj)A=l+k2b<IX@-h11olTdgW#H0`AJFEZ``g|A
z<CXsL>$!hNatB8%|G$3eBxZzNY&CzbV3VLQeyYt4>hVkOwJR}S7s*o_k4@9B4vjFv
z2zKXwYZ`c{ZkOF$nPpb#eb8Vv=^jQ|+uF2gHq9cfLg83u=4*7@(c48|Fitau1t~%q
zuM61JY82R7Q!n~ogL&OwY3Q;c4zgz14i4+x02&>fDS+%kM8%PBU{O4OO(Wk*ucDgZ
zSPep$E`)P~?pzML65;o0?GEB~7+6dOOfI!xgoTrX!>5RsbN>x&w3rLs0ak1C70`P<
zkFaUJnfd}^u#kvI<*=Cxc4pG7_EnEB?T6d^<x{wKe@pK~|K#GbL`i@TWP30M@+R$(
z{d86xPf_x`<hwN=bSY=&ux5v;c8~T-9ff=?9CWAy-A7jv1je&5>8{I}QKpPsX6xP;
zQ-(hrOg5`g$lZA2<N>JNORdHxl--eOD&MjVYu)ZAzT<^-q!e)~qsT{u<*}wy<G*~t
z3)I16!5RBr=vtt6(jskljY1pa3Q7cQ%l|k@0xdQL)B3m8I`LBpe4I!5VWduJce4<6
zkrzGNjJ7|-NWwoBKsJ#BQ<2M*D<GYFW(zZHyFENnH^7D8LQOY(OZxb2cR4qB%Tx+i
zAa5~n+)0|7mp82(7UqfkmSwSKr2eaT1nG@64XOU*W2ZVw%>%hXa4vJQia27Cub2K=
zihE~mUDB2O;rh|5Pf;rM>rpBAFz1}#V7HN=INf1XFUZN8v{0Pbsk+v5mGjW0icAgj
zyWBKeeL<xT4>$_n2VCPq<_v(}$23y`QKLW#aiDqYEtWPo>_8^yM|ik_@CrDOmUo3c
zZd;U7Ql8Mp%>#jjs-B)+qXL5Lz%fo)IcRg1DgxVv_J*X(dN&AAI*lINyGyIG0zp1t
zSYV~;I$IaSKd4tmn!T1V-;RMithSSQ@X+Ol?+|)|iCg_HP=+ZM_PNLsvW$q%N*-|@
z+WnK&vQ@|(fxSpe<4OZwIr6^oYm>}o<4GzS7Cn)<-})Z#b-aZLXx+XIjoi%4Z=Z;F
z%d1S7)Tgcedg5#bxi~`??F5|S?_0|_JQzRHp+5PmMJ^L1AftkQ3&-cTn8!X5Zov}w
zVX7;OTSP=;q#0_vtjVx%9q=$Ln}gFmxl&zJ2kIXd9N(ct4hF*BJ4vMnF000HQ`5@c
zx^>bn3hE)-+Mm7+2x|Ks%h?N6p(hlCNQ1`L-MMbwF_zW~=)FB~9y3cy$$dDAy~H1S
z>(xxO$>!}bY)W)Ayaxix-I_<zklQE!sGad~swXt`f-XA2K|u$&%#P0<{&;nVy8t|o
z3J(74=>StEaJy%12L!2=IOaeKYV#c&g|mK~Wq{~2*XOf3ldx21%}Kbftn|JD?}f7N
zvB^85WoJcUly5LQo%Ss)@**dvKwW(f(-ZmZ(+%N6RpsKlTd(RuipT?cCm4~z4B%k=
zEB%!JrIRyaiK>Yb0|le0p@mn_6kLZlJw=9w*0vXdAp1^fvw=+hL6YqT^lgTw4?IOL
zm&i*WKa6}pULQU}{^NZ4lFq$zE9Eq+QOr+eveE8)G{G4I-lx%PqIwlikNY-%;E5}z
z6XF!9_H$WoW;1o(_r-Dg$We`@bvKV;Ij*;99GQUwB_s0aW7p5rf4K}4S~R38=0ZWG
zI^|i2oOpL0lv0tjM=*ier;rw7#HkD47~>D9VsLw0*qW-z>H3B}ajR)l%h!&W-$mq&
z5R^j9)H2D|4rCubTfMQd!Loe2O%kFn(~)I2xA$Qki{~(s5-21HHMbl%8-x=1m2*Y=
z`7X3BPuzaPUbdX&2%P`|d-f1+#n-;xCRMg=^thw%gi3CYSr%sL%&K|^eBkZDSmu&y
z{jh!Gs9%wF>n+cRU{o?%9PCZ_a`;gJgiq$1w%DHOHW9JtYam@|U9#4E!*|xvd<t=!
zw$dOm&EEFzeE)df|9b}~QF5Ts1`jn$YXbneqNX6dGz+Sb`PzONG4y9R(?V@84bj>k
zuG3*Nt=qH@8_pT1=srfV`Tf1Xz&8bgcX#cqc3x!w>*0(NA~VKmc2+QWQ@E!V#f-}_
zRnJ9#aco~GqR&X)psF+PsJ`VE8XC0N$WB#*x{uexOcuf+hkEc7ZXFShX<3z13ql$8
z84ptT2Mw6jB%;=Gf(O{i+*zoaLGE#N<<2&K(M4o&fx*mYon?j0cpmKFNj9pzvuU$K
zu$Xj09d_!|sSanhE5ImPOx!Jt@?S>N*45Tdf&OeR%tOo+K0#fX@3m~(aD+L{OWE&B
zk?B#P%EbEk6~vVWKD&t^in#h{&z`g4x}^1QVZfw8^B&50j;?`Da5xs!8W4q?;AEA@
zGtdO5(>9efSm@XQ`%Vu$I8NrWxhyr!jH=q)p9GN0X7=`y6XZmKXmpaKScb1q6Q}v8
zSIt|t(ac!E%f*!qt|t7<6RUKEKz?X9T?hjs$M32ewA6+2uvQ4kB<sYFg4r#Ekm(9%
z%#TTZ3or`FCbY|s4B?RJkf3mGWDPo}1*Qw-t$2sZ@O*ulGvYLG<HeDkC;EjU+-VwM
zF?y+Bb^EXGG`pm+=^%1iE|Trki5dr-yc3z51bZ3XZtjicG`AcukMOUtv1i|;Op2=5
zHr96k{`{c%lYN5eNb26u(DZ7fG=0J9wb@bV&>ovQP?}q|G0aQofQZQI)QOiQ9=wRX
zg_Wj53}FbmCV93x6X7JDCCq>bDYf~LA%leg>moE5Khs3EMFmktu>+P!Wa7toy~D6k
zNU*2EawXea?)mkvLr*{KAlwTX8`*LxZ=*<Y#Zm{eTWRkarcf^89@XR352>MBcBynd
zJdmdUwl6zp*rKz;HqT_n8)p}m>X$U)%4pM<yy{whfp&Lm&f^MKB*}SqHM?$HbR#U`
z`p^##IHZ5+DzkRGJYp+~fD{nE7%6iE$)@dLw+fP5jERhmjScze%y90glus9XcE#+h
z%6fXJ)YTe(+%=^T4(-#ILZ_e-zXFr(oMX)@#ru@6azAB7UnmBs%0S9f_#Ip*2n9`l
z79}%i5Lal+8)weQfql#=j7^BZWnf|w$0Q6c?S1bPgmi<hg0l?rzpMtpwJ}=})-;OS
zft8e_Cdc+b$n3Cxi|Bzqtmq6lGrg1E9WMD2h3M;HzlIM{j9F3nFar$#J~~W0=cV%|
zCwdhe)QaAdtiMuhOB~&Z#P12K66ILSA@39?owj{BqS{EZsoXCmV@|jZ!q?dTC$)I-
zU^oA~sI4g(4bL>Bub)>RAyVzDH6V$wo4vKcP(2Q>3SgU^aS|63xAT)-eNUAG+lbYq
zK5I<%Q5S!!cwCp~s=@Ykm324SoJ{8Nt}6J~S(HCYU-4fqfFCaK_AlK((<aousbDZc
zOk(B`z#GbT^_1ukaXqSwcgWsaWnd<s`7?)y7iZa{uAtI~1sW>K#r%4qz5B>J$w3?Z
z+^Y58rN+Nmey-)HkVSXA>d?bbf0m1kvOb|0`j{Y#6OhEYk)hS1nInP=N8%$Ju$O0H
z#NElzn`RPS+67(RK2y(MaIa<|^82CW3F<chJ@KmSmn#?4dCz$%-^UXgMFq2ZegLFF
zCQQMDKSgGw#|}1aAEAuahQ%q4-XJ8Nj7w`5g1sYi`yJ2g7&Z|=Fq9fG<#L|qY*ScX
zXeV`t69ko&BtEOKV=F}k4igVVS^_>5n*`aBO~{@c$v>mjGDh_xk;AZL=p*hZNkP`Q
z+BYV|x$T(qWE1~V1S{gfCUiIkENvD8d(NYp1H<Y?Mi`Cc<NdInPnvCHY^nwJ-4!-&
z{tbF-tC}(cTja7W>!Ca6Z_|fPxZV+vrLMH;yKp-}u5AK)qFxB+tCZj7ooYjGqKR6h
zKYZbL&+pk7@;RHsv!m%z+xd|WgVZWr76`oOeu*`SZ@i=_=giP>b;xJyLNOYaC#i_O
ztOFiZ)wtt(12BW)E|G266L(f4uaH+~XDcE}F4uaNA3;*RoK=EHWhp9A*%i`)R$x@S
z$mEqHJz{0}TDp(!*1Sh57|d{|k(OBRA%2-WF;mj9J0S{D(^!9v6ZhH1T1M9plPYA?
zclFuhrPQOSUFw%8%P^@@rTHM!pnVNZr);G<>nZj`Ed4O=C01)GW#nOK%LTNH|G*CU
zpJlKwUzd>FNqxDM@qPhlye1pIvXtMb<&<)G|Dwz<zqw83g+aT_lw!?`aHeSw?xYd7
zV_ZfyF~y&6xrG@Nm<#4i1s%D!)Ed6mow$?V1yoe{3gu}ag)UNO^V=qRTqM>9-=J0C
zOJ?_pdNgv_z7vsOB1M1Nxdf>YJjXX<;l8W*svx<R)-n^Zs|hbP3|n}U95oEly+q-7
zj?i`Ma}MJ@(4)14*Itkm8PA}Vrd^_$FDof7S~2(uN#cPCo@sj924d={w7-Jr@>`_k
zQf^0GgE*j-E-7M8$a_Y7(~9b^bLdFceS?>B3f6r1+$m~VeKxN`6Y22L4zkPTK)sq~
zHfCiWQymG{b4EC4283c(e;Uk?PCskxw0e8aw!v&5O3I>?D!j@HQea3J3zC6n8Drzy
zc*3pJ<cH~0o+wiifh>V$hdgibA{^dC4Q8Q=opoxi#7|m(t&S$&I3eNYMqWla6Ymi4
zsTxs7Fe1qW*pxUg+*EN<I3eme!tatxpB3?->ab+GQj0@U<~z&6*`=bFD>v<x?k`!o
zku@0Zx7oj<a&sll!o0v0{oSxoNj)LfpNj*Mw;l6n>c0$TEd1xdU`9TB@m|Drb4Y}p
zQHy%-5T%s&$_;kZ?v4lzb*z+q@87_RANJZ4*S^BI65VEF>aCmEUYsvkQA|N9PY+HK
z1JOMENxPXw_$@V5q`wvejd<?E2moJk5F|;6f1Jbd<#hAL+sf_^m0?;ol{Y(d*49Yb
z$r3N|R1e@(<+poxEe5?|(#+`G5|=56Y;aW%v1Ssd4wY$xxoqhVb6Fpl%ixLLI{~ih
z%6&}4*szK>gGk&_QDdCPlfqy~m7I-}c+WAGh$5u%jOC3VQ)&?d)i2~In&%ZTyyqx^
z)SEA9{toTr!H-6R`%o82x-lO1q4&o(k0u<rZ<C<d@qRAM5`U)?Y-hr_R;=n8Xo?>s
zA?cF6rl{A%@e*2ZR9~%+8<1ziQfvv!lS&k4Xj#+5NDbss<)eBgoX$D=%yj!|#MHw1
zpd#wbh?@H?YJOa3Hq;vUdMG}3tEU2nkVnM*XGpd3TTxZWzn&2P%~Rp{Fctnlvo{0d
z%jj6S+UFO$_2d(zzD`u+w0PXJVL+ed<kdWA^4X$YxFvqXc{i404q|Gm`Uu8$Xwn^3
zxxf<Vz?6Ium1JzbT+5Cm_O~mr;P>>qlFbq2v}Pqg&PPK9PdsmtQOWc#XBpUWXZC}$
ztY@+hXt%zGlNh%o#lT1xCF-)f>X#e{FWV()Sh2%{O@Y*u`oi`x!m2X8pYdRY&ko!0
zktd#oQO-*DWtC`>j0-aP#y6E{b;>m6$>ONU%AzvH4@!*+LkmhO-T|`J4}~GSQ?ZKn
z>4b1@zvJZBhy2rjNXz{3$J9<JuaiHFhhMh#5Q}97{bpP?4J{{`=gy5gtI1Khss^&l
z`2zd0#4HP|8C~15%8V*T{p@bu``lE$0GTNa_wOU`Y_~|2!_VJYl5{5Fn-V8CcMc3t
zyxTZx6QbrmMVO>H%cYZZQnh|bN^Kr*%+4JqUT4@HxrpP5M%m1(+e%i988BWwD(+ew
z=7H<MMp&ektURRmEJZr)DtsxKx>y^x<@FrG{`MRW=XcTJge&dR;v$S5j*#Tj*IL#D
z;<AD>o)xWb9X_|7)p*e)O}HU*DuS!iJsnF4L_}Lg0c{x((Ux^>BHFS<W1t+yb*fyH
zKgjBJAl-WXqNrveeM8og8>6Fu%+)%heHN!-`CoYvD7HG*^wC^tSZZJcTe4}pwvHsn
zmdUMWrY2=N$(Fs4$;0|;tiB;EE9;0|J>(Ke)IKXRLL})Qf!aeO!_Lej6~_;s`biz)
z_)C!4)(h9+Mw>4)(%pU*W7H72pI%4wW{WQA@wFvJm+_;gT+W_l*h%7`tE<;gV&yD2
zb|=eTd2?2&HmK6;w>#Fm93`VIsLv=wPW@Y926SN&D7Kyuy=+CAyCbyRB{B9_KoAQG
zGo@2WDmW1lSjMMywn)M3zlF%PFg61K5e0daphlc)Mp6WtV(}`PZ4I0Q*h+;ChS?aG
zrT+Js3$fysOIcfL6CKq@0@@ST`N%Gli`H7sbQQQ|4(p{LM}K=>&)Ff;)Dh8Kysw6&
zGKO3Na1wQl)N-6e4$*WIR+gstL8SlJI7Z#Rd8TQMeaBDAweD3M(F`$`rQJbptd!*O
zU(;ZACC?F{3#f(U$;?(vIv!7Vtn|=jRKsu*4sa)i5k1wubmu>Ko1)3&>rK70T>#0b
zgim0fVGbBvaa^t0$*wFtNVO8m8HSLvYS|c^`e6Vr>G&~}tue_+D~#~2Z4x;G!j9Pz
zm2|cnQG6}_@&UF~6_<%rk(Q*;MNpe|l*vt~p+^~G?-apA@Dw~=<R{i_rZxa%-q~kD
z?4#w$Kkm@i$b5lvIRu=sDP^1ZiQ?<5wr^?u&gdU<rLVxz#|7+D$T?c_rHsz|2t{~n
zDqdqH&6KR!^I&pSWGmtw!}PxnsE2|G)+)m|L=p1%0}GtSAD;cmQ5<P9SW_8tw(qje
z3_GhL$rX6$@)tLHCa<bDwVUI#?xZv64)gj>-(OvydUnb`9mLxFhx!p{o-2)(7IoMa
zNH?BCLe6V*Utbs6PBL*_=lwm*5!b?=lqimAVxdEuP+p#pUc#C$4*ovpk0k#A<!t=w
zNuX_dbnPPu%bWR(Cl#csUrEFIpFSA%WNy?HP=G!3I<t~DZ$9rSlMUtxJf_ly_{)@;
z5Pum``R%sH2)5ewLV1c#9*O3xdWs4YvW#3&j3L~PN77^V-2{!>zVSZ&<e#)#UNX4@
zn%xW}m5$*6QR2P$Yt!0d#85s>1{Om3(cUAI^18O?J_YyW2B+Zj1ivyK!_9cPaJ#)>
zO}SrnkcsY;NmQ~A``fT(R+FUQFIiCRF;V6-)X&G+CJ*rDeIZ!z6<U^+5J%M`%1#!)
zEE}I8C>qXxKAT)@V~C4~54^yEM*A3!$iSeWZn#D4!!8=hUlk`N<hChm6xh}U3G@;p
zKtoiZ1=Aoi!dL<G&mnyKI}&gC;&WA$4o@0g&G*!S4aSOcSHnJP|D}ufhHG=8aGtqz
zFz01uAIM`r)_CGxPlYFKpHmz|AN;N^GT9Au4Y$6yCmES56SBiuD&_O_A*UU}BC)$4
zCakAm1j+Z(dnscWZ?$h5=9fv4A|_hQ7n?Zx7m|)5Ab}mYON;cP;1ohY1va&)ZOsR`
zWdo|xKD`JBb)@h*5yZ@;stcnf8A+K)-@mH21vIwT=eqnx7XVgJi<ghkd|wYg>jV03
z_*tL4=rUIJ`m@yBp_M0G=g!T&C|^8m6uzG;-chn#Pr&8+xzC3wT8ZZBZpeH*Or^|7
z)u~@c8e$U=;-jZk_G>uXfAj4AS086W^DF!tK~bU!2-|Nla5+P9hu9rxzAO=K)1*><
z4sSDIDHDZ3X_GyB?ZVWG3?d)!(%N0=8|k~V|1pQoVzpa}nW#;;K%b2YclYbjhP;XZ
zHk&$9e4#;(f_zf_y)IL*o|%-(rQ9O6jcjn|iq^OHP)^#H2KIS(e%tcDG0{8aD{+zv
zA-c@rL2uCk-%URNHLgJ5bZB;t0kD_-E8V3J=1K`8fab}*t8*-9fLR#K332Kr=e8_p
zkc1F;W*|{BjHK#*BF8FFqNIH(zZ5Y=FVD|cvxO0U398$sPi0SV9X8=;2Lk3ZL?Ybv
zKIWJJHN#rAW2<U`qx^!N^NbG8V40JP;bqfoc6tc4)S{Oi;P3y|&sK6BHD!#yi&2}d
zPL)tPgZJ=7&ILsZcVi{m5X)9o3i+m_lsIe3Oa?Z0qS)kND%=iZF3KT_N=%$@9pQP<
zgE)Wt4KQ^n4N)_vau$4aH^A4%pxF<b;;GHEd;07P;{{~W{k0Gb20IqtNJsZfJp@Wm
z=>b%agg4=K5TF)B`zH~*^{^^8OOn6j!&`<y2HQjikW@WrLc|o!A}VZ@?h3S35;K0w
z%HmKp!8_zY59c$;y0$u1bX?G&IvZVu@_~Jn45kZtxrMXAck9bbVJVOh-r2qpEGO(p
z_-U;dxwCFWo2^rEQfzaFQwQ1>1iJ-i&f(4YkE=!n>gZnP7P4vEL#f?pe6Svo_hOq0
zBi+wz5-jE9j1&-1mEWeq1{{jM@;{21+^d}VSOT>Z5`V^|ZlL(aW77SPHBG~Hvqw{6
zJA~eLpmxaP`PmbWB^(c;Kjf9B2SV~QZ>*dEFYbF#x(&L^1wh5Fa4w4YiCr!@B4V23
zLj(|FgCETy{lvoM_u58U>SFA3MNHd?WyGzA(R0YDd2?2y+Mm@N;W=YY<APgG6|yrD
z6!qcCZV(x-fDDk?0lS-9n*pPj%$b^h^1U<>A;FS>1lxAfi&<nhU7NX>5KTDNWDd#H
zXA}kiHMA}Ql2^0xM#|!<|3In{wWiB935Fc>Xx|e}VmuO2X%mBC91cWvBVxRCDu7@X
z$_NOCv;^Y(g=<AOLIkw^MA{6Lw@7A*K5=*|m`qE&m4;d&CN3n=uTA6-!#MKg{`hbo
zFG{8Pu>O-x<PLWrd`!emHVaPp7KjC8T)`f0tW~bwo3pWMtM(wba!Rwt=NoV2Lyd**
z<=m+=-1;jV`1QLoFXxQ%N)z;TFprK})D4t&m9+9#aEj&g7S|9(lto7Ed$=!^-ktH@
zUww8VR&Z2jvwTgLG-Np2`})&(XZ$ay-xgioeektJW&dvKT3A13KDa#S3iJM2_vMu`
zy*efx{4gz<99Ljs?^RUP*yfu@(`lEloN+527>S~guvZj9&X@B5ny2J&zOY7V7mC{$
z;l224h`%K~)-7IvtpUE`DUp%658Gu00lMWA4js<W;|k@-@Ql~=FLlL9DS1}TiIpnh
zcv`bRx)P1b#GC`JmgTv!Z5?$HE9+-twj@J%fB|GWY4uLFKS153V-vfgZ*qTmlDyzT
zw)Tvoh;3dj=H8z+w>dbR?zXluzIOEYBTf!nu4)E%LR122KMpPS*lvwqOgOG<;{-L3
z?a7#5^5z7W<0t}^S(by7ZNhHa82e)`+AcF_2QDDDyszuXE}6Rd&spQhtv0=mQT(>q
zRY&{E#G*(?38tS>Okyxn%@lb+?8+|8tIchVncu%OW^6k%L0_0NQsy!F@&2KI4Y9W-
z0_<hFc`8kwro85dTYv*S=jMzOH&vsjNH)L^0nk%PYcB0fpV_?^Fj;D$3$`-Egm;9*
zBgVU1?cIy_3FYNhCnqwl^;{fPZCY}xW__qEGnNi?*M@n)Iy&o=%FfK%Z!{SkB7#Z!
zC<x|lNKf_|LaT3>-!enz<)8IcPaHCR=-Pp?i%i<3Tw3@WQAPXY%VWP_yorhK=+YMc
zs3!NgrEr18k_jU{D2OCOS(I_N53``J5OL&7Sdob_-d{-j<#}=OZ7bon$ZQ%!W*w;!
zWS6-P9XG!{j-)?CW=s9|eT+O)CJK#xI%oQdivAn63n;#nu%u`46HoE6m$gIqNq8G^
z%gmZHshRIRo;lLLrc7DncHNr+ky$;6%*L$WFW8z_r5FfMXNql$%oamxGrY*nOC$JF
zXQ1#vLc`eqogmimUG=1VJuS3^kN@^H-utZTAt}B6+mBWEDjq0IWDNYGDgM`k3B0pb
z(TWDkF;Z;jmKsRX(ExZ&l11?N`TbmSey2*3i>Rjkoys5ftYqTQATkrPvZ~_YFC#OU
zUYydlFO@mytzOf>W;E6N1AUZ`_?R9cyD-$3e-3Iy_tS0&E^`T070Xk&EkBAKK4Mw!
zA75adh+tj58P+HN+TOnL3h)3%$>x23eF^{A7fVnMstU|1aYnA|2&F5NeZPF#5oVDa
zHEi44jfpB=s(f+rp}f4uzZ+Tbvv+rn3k60rG5_@cg(fpbcU(4DP3>lkq2aKq@}{G5
z=|f|6?~oS#UpYxjw>2)4_i=J+hO}EZUH;qu^pXyG_2Y`~fBwL7cRZC|X!VNw(M++g
zpAo<t7wvfD5fApiU*S7x0Pb62Zbkj&_x}B-|Krd272)geTk<pL{LlU!d^ue`VeI%%
zN5KDamUG{QjA6Q$KG^#o#yQ%6aYoLY!{w*U@IPKbqXhNCBV+l8e@c)soN6q7v>0NW
z{Nr~UUAmi*iK#s}278%~gGssO<F&uua6kU-e{DzqUC(0)hFh{~+0{DdAK%yy=+fVR
ziDifP=+-g8|M0cu1I8qnx*C>*NMHZ`UHor9i@pUn0B#}ukG0_c`Y+w9PQy3(pkzSv
zKNO4MKrEL0+S~6xdrSCv;G6WDq>PyS@TmA-UR}Z+xJv`CnEjlX{P9voKY-v$GtF5c
zmH*Ju76^s0r0;q^t?&H(S|guJKiT7X543pxmoKKsyE8MB+bwK}D}MT(^2R2s^2(%8
z#>d+FtX}^fRe5p>cakC5$E7p}kk85)l`r_@;(P6P7t8WXZi#K>1*UN%k38!(ukW#W
zW|-E|rQER9ddqDy-7ew*KNb6dPN<-m1393qt!;r6=~J{zga;!5QI{5hA$`y%eMWr7
z8jz~C&37T{EvONgAh}VP2w?$>RSJ1kNL1K<#te@9c5q}b9L*QWI^e#OdZK0Yc=?GA
zlRU7&ia_U>o0GE+>XF=J5Tl#4=@95F5{ByE(vM2QP5XL3@U6Z~e}WtTe52r=0jBUg
zsQ2r>q--{vg|1ViD2&%lX3G@v@}%`Jm=+GH&G2`bJ9aKyr}MvJC|{a$<*t-Wf>n~P
zOV`390Tj~+J&WNw#Xlp{P`syB;ml6Td(#s|GESx>Z@2s%LzzzY@=h=Lv^pfqmalK;
zCc-oNtY|cdOS_Oc%?DtI4l{={xy3rfhNVNt?sV?}q5(r>*IO{p-ISXD&F5)AN{v6_
zecRY@CPOhFIdbnUR7{_Qu@RdzXm6=HEq)O)hhspw9k=f>(Qb&{W6nqgH-u#R9K0>L
z$3z`fZ{L0u;kLQHpFB?my&k9=C75u9cD93Q><AJ78R#lxa<06>OL#`EIDQ+QzM&jV
z+PWa0dwu0612ezuWQmr5h9BZa+T*8*P6zVwDsEhUc-Sz|qQ#3K5`Jtyho<N%#b?5e
z4fjZ{*sm)^xJWT37hQtgf08%?!v;6(`f3}FWt^b|<V|__x7(0gQpWs}UQc^a_CI6j
z1iM!<lpyv`9(WWpn}g-YU0&iYp6Yl{Qaf=AcN59*yrTt|t$%+^1xzn>BK=2CPt&Bg
z76rpW?YZU}DlUA9^``lYP-nM*`j6dp=zK2Uq!vDS`Mt+ml#2`CB#2-8DxGmFxwVSZ
zdDc7lh`>4KsFxog0@4U@pbVr{YEimA^3-4NEG&c3Vu-7ZewNDM$4~iRR!MhZ<}qN1
z&U*oopkZumJSXg^2gF@dl0(EhiSa3w<gt`VE~6*MlotlqLgK7N_U&!wE-BI{wFkb!
z)p+=|aq;(19_C%|icL#is@}q7+4~5pJY{|{P*9Ga6==tsxx7nB4k;~|%Io?Q1cTB$
z*V(gYN1Ab=b$NhdtW|zpC(oAA2bpGBLHVLE@uh%EX4+%buuV9z{1*hK1#%ut_@ySu
zr(;Hrj|N1v7bn^u(%=w@_Oqeo3b#BXjzb7@)T94`yZ4ehWMeMq#*~eKjo8DJZ`N+g
zr`y4hWX&Mr*v^l2N2sDDmlBAmfGxl>=5Ft9{yWGzyW}^T`IB|__?>8JZ@O|6j-Ldl
z+$SAe?<Av7I;$)+i3Zvwe~7_zpy59c$=W0Y6*V32P^kG_-DgeMWT&jiWM%qTnb@Tc
zTRKU}<or&1!PcZciw=bqTuvwOTXbh9CVfIGjoDfSR4&jqyxC0(nCbN1WUP2@p>SpX
z>G=LMh*0QCX`e?%pNh3WM0TXMmY9lXS=Ch*G(oU076C!#?d~hGT25A;JGAq!TcjU1
zL5kH>)7?3=*XE$(NmIww`bwf5KVg;>yonw9<-6Sg=Ow$g<oIpYE10Q=c-gX0NubMS
z`qG657WM8D7pU-ds_5m+EYq#{Az0id2g=Hp0g6?otTzsT(C|&c+h}4O@c^+<zj%a<
z4C)wsOHm5!fsyMj5Ir(mTKjd3yS$7#y12M#+N)qllM7Bp=utaO_T;6t-6c->33h*i
zFkKDi`+oNR7{RXJvF~rYcU%qIYYRSQ;C2+2(sji#)S|i{cC?g)`;ae<<$KX4l8#=D
z(x%iZE5%it7Ord~Vna0`Np5kdHtvJ;S2L&{K5<Gli?T_ZMVvx{T98ngI|K=p4bm9#
zYJtPnu^m;eu+mDnFnmg(f1<nhXHRMgEn2huK`)ElsO(ljt2-SX%?$NXfjzD5N7i2*
zF`3`8$PHxc)w?`RQm-q!s?228Ob#G;<2@WbmE^7Jo^QPAFtE(i=z4uwSvmjQE9pCh
z0U#W+?Q7#Idq12#ZJxyJ`l@+ze6KqmLA!90fKM82$5JAnaS-ujhWMnwr>2Y*s*f`^
za3GEVwBuEa&n(C#?VzGvwX+RLX=~ZkaemcXlBOG7A=9LE!gL2Tn9Fj^x|*4Iwawhf
zJp;WV5W~eMWSi-9dp^KFg5UVHQ{wCrU`wr*C{l9Gsxz2@kU$eb&(Vq)?&W1z&pUzd
zIe?Wy$OyzYcD6%!07<Td0o`R@t%Mmc)$?JDk6OUf(4u>E&%rZ0lh7>NAu=86jUgKX
zZtwuumPhH6q3NQ6n3}>d4j-ZVj)1Fvj~dVt#gvtvzEt97KFHPVoi9zTAuJd&#3v&o
zgHUUs2;h|l6Jd}FYJemPL|sr-j-G@tNFmIARtw<{z{w0?m{i#zN5d6-1zKP4*x~W2
z9fw^uAgV;aL)$53oxvDWtS_&baq<m##{gyiND+I8h+`T|VIH?P-KLBJsbG7&5_E?z
zkA@o{2;tK*u@=M^36Y5$Ayii`jjei$Z>=}jLFM*pFY|<slArkc_cu*NG-(i4!_(rR
zoUE#c7#h;WilfIrE%%R6S}B7XYujxUq!WXY?3*jO=(g!>ZwaVR0~^!4X3K-5gMB^B
znpW<%Q=NR@oTSlrknEV!U*pQyOoT^ZsPIyS;6~rOMOJ7|?C+>Vj<nIGds;W$L=r7k
zes}oUme8GL_nLSo`S^>?wImL0z*h3s8};@T4!^A3nc2P>%2CH_l$Ll$wd+Jz!E=?_
zT9fWt&-K=hiAQWI?S|?d!JEY^#gAepo*Rp@N1S^3_yfq8?t}f&ADAz*gjq??&#`5T
zjG7DFM-y6vJtG<CUZ_yyV@^^xFkX@+tSbi4dwB*dk9Ig5G;SiVj|Wn$PrBS^LohFs
z7L1UeRg0kCIKA826C`8YaU9PU4_&UKbhp_xZTlaMRz5}9`hs-~CZbnX%eF+vVhc;-
z@;I>$aA~ja40kpnb`lz~Hqm?=k>I=<L6EQzln<(uozV^;m>x(OIk<nX(iXhQ_S?i)
zm}_aIZMzy@jKp;O!~+=qD<mI2>Jt8kacm5DuK`%3`dp?0{8r{BDb}_<6j!}BV+MC9
zm**&xj)qfi*XIrPh?^E6IhAFY)l%Y-35s6_6eq=*6<cRT1_{=)z@^NH?oOlUB{$%f
zE`KDinQy9Z2yUtOps%zW)y+<>-d<CX>;>hR=|zh_lw)PP+~ogIj*-a81Oxw49ygvy
zcoMmLolIX5`rvgzzv}0KPm&+J4`TI<!DY#_duZ!ra!aB~E7XjKIktW~a^vPltBx8T
z72XiNx?`OkS{mj1(Sffsty64POqHQpqIh+^)^LxGef_SICoZyX+DeD{RA0q-W)74B
zuWZ}#s?W7<Z$x0rahOIV$Rb7Vq#Fo{t_GqLEg3#YrO3Y)xCq{wSQA7+7OZ9WfV{0B
z18RndD9Eyb_bHmI2c_pA2Lz%G&Wdp9l=gZy^H*K%hQ7dLRSMBOMLp+&%XJ;3Bh)xH
zYl<_(qNO8Fg%W&xOVtNJ*)k5gMLb9-MY_QVI7~ce!lL7O4mXWKpFr<Y5)i_9VacQ7
zTZggiOKm8$?j6Niq4mU*@1ztK7Tq&|=&DCjr)ima_;IMCqK?@jS4VGaz@8#0B*D<H
zE)NOYRE*J{6m>)z7pEmW3;2~mr_+BYdg<L8c@zf^X=pi_A?RqlT&O<c>!h7YM7@(z
z>Lz&0MLABes}$T0WGQ*>>c0t*wmu2zW1Lm%x*dS4nxz#l_=pU{fnkDU);NqRoj8>+
zVcYaYK`UwEDeM3<6Eh=bWcuudl?|F(ONqaQ`l>8FI`AkWwZXkU#k5H@g}e;S16%a&
zj|O*kC`B0wOvg>UCdnl^BAJHcGj*xxsM(7RS6ZOu<@Hr@JG(Lki>raUTOVl1oT3xo
z3!JtW4ok(Xdi0C*iCi?Qw<#BMX<rh3=RH${^(Q|)D8F0EmnaX;MBZ*BO=O1E^U1PW
z<EUIzO*LCUax~YAyVc1)_=!cx__ZG}Cha9oB;q+-nqj4JCn2@7(lTjZ`kx$~FP!|E
zB*1<sR#(cVh0O~hf@Kj)u$Cu}&TURdaqSMNXy=?jil9jBlgw{E42rFV&saGgy=v2c
zqFXoNdGX1xFVEXxwXSA1?jl>2I^&Fc#A)Bis5d7RpFbw>;v5=jG)lKNotUpRFJ+<X
zuPO{`+!RWUO&VB<+S;i0#4nNHgJ^w1n7V-kn4Ddc{ZyvmbI&INxp(mdNU=m4<!E*-
z)j>Ey*!U|mrPCJ$sHgb-h?c0FaZQBXN{o$2tB;S4I)<m~7V>OyTN|X=Y8G9c?BLyf
z8CI1ngn1F^+yqY?5|4ThO4C^y@h`sups)3emqc39zLwS^i5RR!lv}<LGb5y&O;F!O
zfurW}O+dmdA^vJlzjR*9?ADknjs`m?i|L3tA0lO5YHTusK*+(}sfN^GI$Zx6Hn8e@
zvEC|%ucZADoDamxYCMnOeo>0K?s*_5nHW5euXyHKc+b4UC7L6cSf4;h3_^2Z$N0Jl
z7kKS;UvDL3W>_X}99<K$Wg8cJMprZ8qI5_e(~-hJAh0ScDOv$XFk_wYIFc$Il{?|~
zT2V<?Vb%}tn_9N%n3wDZh8Izw4Em<vfJWE;-c&N?wx7oAD?Ip_dY6@4ICmVj04&Tk
z;Eks*g2>GnBTh1U@s0EUa+0km-1{sXfOnhy*7w4KW)nH@P9#Es$dOcap6e&|nor4(
z2{>#ETQ`~oX?9Kd3H4hAnlnx)4zp1t)s>zSGv7eq3kY$PvvSM7*1l+0o<%9&yC0Km
z6$7HOtQ^Vey%Bg=wGtnf4j}y2yL3O|SfWS7me^7chtrDQaq|HP%hI<?y7`!w@WwG$
zN>7NI_ag*dvhPrNLr@Gp7MO!Pa(6SW06;@c%h@C3SVAO?j|SmAT*W~4qR`d?;s%Sn
zTP-8RZ(24=FKdDA$_2E($FpzgqSESXU`VEkf{CaPM32NjO=V=nRK|w+!&DZyZ7LJ8
z2p9j&LHQ3;S>09H)&HlxuMUfHUHer;sbzp5h$4s}EvU4VN=erYLxX^Hhae>=A|M!a
z4mrTksUo2Wf~2&xh;&OypZj(1v(H*<@9o;(cb)UccU{LnyvUhh-sgRu`~Ka(n3V7}
zpjRL>Xajro2T}KqL)K-!hKrKBIlDC<>hkJ_Hsl8m3Rm6*`k9W_^3xk}q|`Hs@@5{8
z#pkDzEdG=r1z(l9cz$2p>xT_O*o(l+>S?JbsU1{AU7Y`1Xl(jMtH?O7<N`m^6&#fS
zoam5S7!Bhu`h_%uBv5oLFl~)h;#VJLywF%<_U8hha&794DafBBlh2%?&h;iWd5Jk0
z`)R6?boLU)ybkOKOa(%I>*-SFlkUb4@+R0+l$p0PQgdox6uLL$<T-HP^HPv_ES!aW
zw?_LK!oi9ApqXrqf(Xkzhz`AOy#=SLUV|KphL111M!CEdNS&RBzp1&9>v7<6QJJ@l
zL=GQ%pDdDaEe1Dj?WHcuAu?WMK<^!z$2s-Vf_?NSh3qgFpQuv>&OX}De-!sA66b^N
zbTl>o?%U9ls}peicx3lo2)z`4za~y(uIoKB^CgLwD{aLo=|DP;KeV^(^X*{6wIgS&
zPxPuquzC$ZWuRA}qAuVu0%WOnyHIyDs>%5u3^MB<iOOrQ*2IIRR&Z_6`xToW7d?l~
zqfI`X_2SI`d6-{>Ei<{&_{krH<bNvLIvDMNLsu?-JDU^*VW!HswOF)0*ooOj;OISp
zbFgzKaW+N*-MQ8qnpt8$@AxRHF(@iW$e7<JvWZ7DBm2fbJj>=Md%?5J;cM+r&oW$R
z_swK(|02|7#e?aOhM{;K!yQEffw~D$msj-&vzfiF5|~K~+NgByKEw|XwzL(6WS7HV
z)w(r&KM5$Zoe|B=foUI=QgE+E9T$pA<RXemWZ~5qeop%!H%f2^W_*n6*?~@yL~NeV
zTibm7{Fe#BY4<M1SySlNAtDD(&9W~U(`X=(@!GhX+JNXRQnosR&S2=Co~G$WWKD8A
z7ZtQ*X+fPcO##HIZR*{#CiS`~18Zb%O6w=#xG#V6<}1bzzl@&flK28%8BP&pDeuWf
z^E46~!ItTvH(lGBOp@n#har#FYb$Uq<GAwbSw!`nARCVC^6xrF0&25P$Y#9-C~Fi~
z+fA7rYuP1m*o{~8JCwRKgvWQw9{tE+h{Ihwhw$^RX!~-HXlN~g2&Mpu3Z$e^z(EV#
zgkXhWTL#{Oqs*wf5Nc=T5+78;s^WDnMUOK-xnmZVU!4UE=ssgvhTTe(TAubT>R_?6
zU!9WfXWK;x-IEuse-l-+QMlM7u36f$sIJ+D3dt?90n4)3c@WKs5mQ+j9LBG0_H?!L
zB3q}gtZ!-cEy=t|s$bl`44=#iDJPa9JSjPItb@kv`SPdiB~#y7GEi&l|B&bD$ie02
zdZNCgYW<E`7CsxYR&2<uFmdO)H>yH7^YVU`03@g06KH@gY~&wiVyI~pl|FD`RI0ht
zV%yo4Hs*@k$^-nuV)wLqacmZA+UlhUGV?E-#0GhrMzj3+Oy?msv|{}}QzT`y=3_Y|
zQY@Dm<@&yJ3;$vqn!UtYs_sR-tGhxf%%)z$U6l9M&ezO@*DPK)?KH?fJ~Yx@YX9o;
zy%CN5M2!K5>=$^fw$Ax}h$!m^9~Sb<){2woM7{3T9;-mGFWQ&`RAguR&a{sIVz3|q
zrwz7Z2A@56Q~evNhj+Ko?x-lkSiZ5I*Cict(o_68Co3|8ty&uG=9P5L(JJdbdEmtO
zjO`$5Hx}CFqx52fl-4UYz|>w3o~<pu@rd+;9-vjOjcgf&y=hpMh*CH8d`me~zO}m$
zyrvEDmuqhp%Ci&kHdXybZuQWZi@Tjp^b^Er5s~44o8-_zn?@`o*R9Bn3te3n`T_OV
zgY#gqE{@5wy}szXPtVLh>^3HM7wJ_vh9)w2@;F5@En}7!Hsr1;7~Zt0uY^+hh?#1{
zC+KMW-c28)V!!{BdqDf*z=-yLKp;bs<RZBZ)K!%tGK5`bD4i0I@_&8{d2(+JcYzK=
z!&$7dPuNICefUA6MdwvasD6XRK>hb^IvcH)0cpD;1cFan#B$vYdv_<9jb%3!Y{WJ`
z{@=3^qvGu?skBT_f8LoGU~nAR=M$Lf8xbQZ4={MNpf#q>Owbpx?~bkn1|ub514ufq
z&GzOSG>d@~eHmoZzePz^K-FtpmSOCFd?LFa5q6w$B88qLw}hQ<7~(cA52zP1CTc2f
z=VrG7nbGsaZ=1Czm49P@c!Y!F)cS~z&m?QpQsrtBw^hvsX=mLwJ^SB`#NO*kakeFj
z4pgF5Y@rnj{EVZ%AQPJNqwuvWej=LA@)fv=9ebLQl*Dj{kR`!ct+`wycWLA}X~~D}
zye{_=edA2_PciuAPsibgewGP#6)fy^2rBi5k>~F|1@V6c^jEf9O1teF0CSZ9H>v>%
zV&~xI7C`k2gEe{%RFkb=pdWdX<y@>Z#``u{r}D?FVV4jcdkwF_j)2=dbrA<a0N3%j
zIemUQw;-<52IO08+$(Xpn^i9{wo&4*dZqI9Z!=>>X|1ytF!Rx<g6CT6vEuc)`n(*1
z{O$hz@zo#EGTOxnZB7|#Z|&>4)K7|XZJ&QuaQ{XhD8pQ~vu9?JXkf&XI_{Jk)@%K;
zXqQIFPeD-A(Pb>OLLHQ@>YwZ~5?md9vmgdC7I$eFSmHLo6Pe)n;-3wKxV4oUfq%9V
zBeQ2)WqJ>spn)f+uUdn*D+0)ThPz_&_|xs2Mkm^+b9gu8_8EX%j6Pn|w+JEYgltx<
zv=$?V)1rXWjN)$fMDKhCmCXFBN!c|yR4@Y2B>4N;k!o1z(!z+NavlhPN7?H)59r`O
zs3d?HjXIdoxKHbMgx78Degk<}siwYro!1eRyE0aMNXBwYZvr;4W0&lJV3gO7Teyb$
z-sy!Kai=_h&Md&6$PsQAoyq7!)8v8Z8JA>?RCKFfrt#0T;v8o87P_;et_nhU@E~Ty
zZS3gXHYC@i2jG^sEZt;y!#+5fd*>0)eISqVdaZkPOL|qC3%h%r0{6YU0tw|+2IdHi
zsRynQIkR`~ul&MILZb4-D<D2uhbi)3R+P^YpF^VE7sy3lArc_4O3In)uE;YZ827Kn
z09c76+K#&pUR;=RyylM!ZMM@=EiFih$d9I<iyQEUoS(taLyUg@-E`SX--UA$q>EPL
zCjGpB`pvEI)6&FWd~<VW_PDFzL0?)@5#Y_hZTTh!pZIs;7^Dgkvu{b+SrO+`J&C_!
zDyQ<-USgMaHoyWfhMke!{&Vt8B8bKG+<}?);MP+4QW1fERZR?g^Yrh%#Oz=O<0?LI
z<oG%3dy?QwuMg7ascsART#0U%UOltPc&AXO_8+@^50zg5JNOMq)!t`YR_ekfS5k?>
zK7df<LB#Js(?Sb-{V?C!V_W=ArhS|pwALj6$cksuWLdWS3nQ`Wt85kc06YArj1w9A
z^jCJa`o((h43eVROW0XL<oDk{K38Q?L3<ZWr1ntb{Y2CQWj3>eE>&<w4klCqou;+@
zzvUz*;iDi1_WDTXQ1F@i?XJ7mb&O7Mby~8W!2gD^9WP9X*tgY1JIx~AVOuT#+dHha
z(6UE^Lr1JFx3>zK4D_jLpY2#<bbd($RtZzQvt11rc*yb1o|vdf-E#VhSg4@bbLvu|
z{l=$@0@;H3+8?*~o!fSb7f3QmV`Ba6x=WYDBD@0pH%K<96I%s5tzp7P)}R1%-3brX
z|E6~s)D~tqIX@s#hxFxGI+KoUo?7e&R-hGBtV%rNg(Ctxh?Qa7f7Lw<H2o7E&GeJl
z?3sb5_2S#ctMQLD-S(FpKQj$sAGjGGe_F?FCBEBstX%Ue-B0v(gq@gXDA9Y%LcM@*
zt4c+@e;-jX9}8R<z-o3T$k?r5J@$vCsx{lUiC9RuG)k2f>vKK4Y9EuY!^M3?8k*es
zx-G+-NTD~HsviO1xeTgAJo^ndflFKV+G(=97m)Nz4QH)Q4g$=QdDAy1QPiVule<*-
zEO`dve~c7?!Y47Wi(a+1wgmoZc!j54@(CyV$tPQGLHJ}dxYq2wCv)v52zl#<fMXq5
zn2b+(q3xBBsE9IG>jt9x9YiLXjY|W2#qRUDMkL=#W{tV_i|*jZQleyZK0c`*)0aSp
zokHsuF)r{oeaw%(S;RPqLDSy#NUy&$j>&%BsZh^Rg84BR<M1@!)l{)9KeTv-eZsgE
zPfQc3;X&&v!9Yb2dklp#pyEXOJ7WTwEI}Esshi?tE(wPZA6}R=LUJ-4_^o=H6_<6?
z)F=dGqp{dUoGHp&v6EYdsOsz5Y5fd2^DQrxYU+m%>_)wyJ~5%Y=F02;t!itAL;W*8
zZvgZaAW+E0O?#!jkC~>0uuMLoyLw*7G=x+l7M=C*N||kjg1>3?fzS?^rp4J}nG89@
z5Ac3o%UkV}*Z1d>M<Qw>$j9d6@Gj6ohYkTykOM8SZSyigUKXvHv$$i2JJl79$2@~2
zTw%r}*f>+d6Ad{MUOzT<x~XP8^g;}cP;x(;7J%rVBcuuwJHe<wkSdNUN%*j$e_k9I
zLN3fJ^xY>pC9Q_Lf}!cVnoo<DcsHuf>G2@3tUTrRm+!Z%aA%uqOTWR4D3+e5HNkSz
zIG}%Kv-7HhcIzKf2-kFzk_pLTNM9$8$o}>#XbxW31c5(y!sM~m=}&Er{GW3s=$PG2
z_FP$BU(m>XregHMZ7%fpRfh`#__dA@9Qn7k$j@&)yX4zVCiW6#AU0lZ$N#O-IpJc;
zNX3GOPU|C`^69W({kCSI3rF4}!;8NyUt|p@MH0L&6-j*mr}g{$A3=UNvzI{1PTyuc
z-T#i3P-J)7+eZ1wbe9UP7J&lrw$qtDZl~kko>Gz+-1>(H^8L?9R9$C$zo*opR~ze2
zpHcp}8gS+RQ_X&TsegX=Kct$eU@$brp;Z4=$v%sR<}7UGw%s4r!~a<s|K_6}3z*l>
zt`0QSA+nf%dendWHF&yrHQy>e{})+!E}+L472aKUbokGo3V97oED{AgLfq?r->H9Y
z*MI$=VFFmdzEY~L{0q~ofBM5e4vW_?9XN3D(k;pB8nEjqv<6rH;ZFF==f-3}2w+~P
z9XB=NdGfnH<KMocfBS}nBQU`J2V6#my9rgozxGMXOqT%rEU+9ch^(}Cdm@1@D;>0b
zI9@hu(=_tBMUL8wsyNtmQY$Q^EZ1%IWqc%EuJbad&hlvO=Uu#3SVZrj_Ud-_K=x8t
zKu(T{6rW6&ty5>BhnDTEVvfmz4ElQ~QR(cHRC3wpZvo)7L0X<lBmlGQ-rCGV58IKd
zN<@*p5DhA$c1YukUMkEQcKBRiR0df#KVu&o!`U3(^p?)Fr^{1wT)I?dmG}BXP*Bj<
zg(f*d3aU(H>;uVq-8cl6xD5^Fi`lOLoEJa~*o}Mhgl<5kKH)OMPX;a1d03kyoUXrM
zP5OQ~Zx6EQet_<5ft{0RYG$URr4<7MdOLpO55EC|F`JW?mgXRlw#@!Fm$AE#D#|M7
zqP90e1a;81Ri#36s#YBqafZ7yrsBP<n9tvjn`t-svOqV1wcaG!_!|u^DV1uDzyC0e
z&*tRY5~9<cE_ACpK7_3h1culpcN~gEA~2yHTzCc9m>k5X04%C3bDr*axP1)@_8hyB
zD%*X?qwJHS)(c-M<m*#4MhluxG{@jhq}h?WBG^pjSukydU$!bU`AAXSCu#uL4FCUQ
zpRo)=O2)H*?gMp4=xcdN6|lqBk!&sCu%Fqk7vD32hSR22tU^{TsiLCskoJP7l4Pd+
zc>I1J{`E&qd9`r~f6{JmuL<ko??vowaX}&e^ok{ZkUsjRTe`<_X~bqam^vdxXUn{n
z07!^;N3MUQ$oy)_uI)axLaVPNHL|>=vcwIf!&rVBT05uoSpY5eAFGTaqSkkQhsjZ9
z+iSCCKm&5}U6#8hH+lr6c@_wEv&)bJB?lNp0}oL8NSj((N|Ds1b6~^sFSut7&oAUc
zdx8M_XRf(g->5G*3A=_0JrXSZmsUw9RQPVtvul`t0oiFG0yqgfPZ^S~f18|)V>hs1
z{{)bMpz*u#d%j^`uT%Q$`f+)!SvJ`WbfPP+UBYebv<?u>PK*>qL{Q0~naTLk#h)y(
zR)go#$;`Aq#=p$&yCxOKQ4=gb@~TIh-oChW%I67{_mBJ_i+GY0oa{?g*Q*}u)|#Sx
zTVH>AlBuD(rx3ewnS6Y^m6rg%V+69$=OT4%vsCFno=sacI82tB{k|0|J_1fHcEGy{
z5QTWY%iW|fKOFeNOB#sKKi*kYCt0a9Y4BKs=}bXxS$|`K`oT35cB%3Q_)Qt{xGqvs
zQV>-cr?-?YH?B@H_%<0u9bx2wh_22J7YhrvcQr@8Ctg+{Jb}3&QSj^<Qu6<<Nc!VZ
zn0Z3wa}r<^tvA%^_mT8I=oXIflTumAwZaYmS&`(2&;EuFVt8P9jqDbw#=}K)#a)?n
zqH(ms(;S?fKi^TRiLz;1#qzl?TWs-(eRBGB2BKzYv}I(171xmjbNNJ}`j7`cCo%)y
z0@g5gZXF0VI>4Z`hS*uxT5_4%Ar>kQs;O%mgM8{y87b8>TT98+Q-;Z*aU$+T9<{Tn
z(45(phGK<XEGzW<3cdnEY|Pe-nIMA1WXnmVPZ0Arvk(a!VbN6=#?}YFI&Qkmd;yrh
zOp{n63=JuN4mhs?6={Fq+DTS6ywlT>(|2f29h4%XN+h{vq)MpuB$0{uLj?;hQ^l7T
zl8>J?2+=-25pr8YlHp?Q;i#lXkArBbDZ<Bn?`N9V9wsp|Fd-qLjPQyvIvw4+e{DDg
zSAOqKdB&RzBA*c<#i8=qyFRGyq4>SFjUn6A7FoB?5Q~{F?*Hv%Lt~y1i)i^>`I@j^
z+g<VD&oxx)m5#!sbuy$a$su+F={w$O#x_0oB}53d%d9PgUFT?M$uB3mcfGvR5{rYo
z2A!5m`8_c9<nFYWz&Uj}!<ZC`av{I51k7c$M}bey3WPmIgMRugFT@3-qaM!GDKg%5
z2u~92!x2|d>$@cj!4O)JF{_9<FUpRh<PmUnTb`uwey}`#=E9>`b#5t_C%ukNPKp}~
zLm_JBniEyQcZV>$VQXgzCwnVy4*<$$7$({~4BTcTN;>5>mk?TJY-)1Cp$Lj`@5yT;
zmzCnrm@73|fPdKBa7kN`w&^Z#<tER!PYRM_Im!jLt{)&c(LhKb$=Uoc`~LA0_YV*<
z95_fU0bl*+4>i~h?$V4v?%(WtfMuJ(C;P^3U!ifp=IC)Bnto|hPr@QctGKI=a?2j9
zbJLiuSMFzi6s>$9Wb?LJ?PT}#QnfU9UvdapbE~E|8ef?cradxa6Bq1ibETftHN2aT
z*~Z_>EUw~Ir2<-CG%ReShtlgcJM%0L8{t>xB;NOOv;BaXDSM`|`hZ(BFSsrR^i{Y!
zWwC9qP8%a*ZXE&0n^^(BvSN*Ga4E6`#zr}7a%{&{@VV}X)mEgj|6M8klEzm?7J}6c
zADGWs%iXJ_-=8yMUL-=WpR6!F@emhsGG@YRFs;%J6EI_}sez=3k5A~X^~j1$QrlSM
z0Xo-<6YRcMgz(02a3Gh>?Wrad8|-|gz5~jqg|46(FvPT->CIp4&az+nay@l-7hJ^F
zW|))Cz|iS#o}Z_q#~w`Kn-v9yH1J*kcH-dZi_ESz0`Jdt+Qa#;2_GYZ#d*AYM2*(i
z?(KR$tDa~W;&oC|QbwP@`G{tS$lD0ZXc0=w*T|_;)?A&Y8JRSTSf8=ou56Sw0^C|U
zD+k6pU-HYwVSQ-Rf7>{8T*MHL`Mk_!7<m>Bg`LD*tl_X6m6a04J^)z!lNh%AC4#0Q
zx?g4Ita1b)b5gC5lj1|M+l%{%cFIR`UIqlb<hG98{rsgc>`v_}M8!(qcI}Qe=+$k%
zZrlfqiI%L4M9cNX5xe?;H4lg-oGWc#s{jzT^3q<Vp8I%&^d!a1mY1fpY$f&K{f767
zFEU4H^F4Gn(tEl*lCM@SPF2dy2KkOqthx7>SbQK!<ij>D2z74{fOWvA!J{j%GJT(1
zc=iJuXflYlC;nF}^mpr)N%{)_#v9(c`X%Pi1p*(^ZneJzgTr)h=M7;M*=PxL&oVYE
z$SS<HrXeWp=%r3e4Ur&K*W55grBqkf@(b8Ymz?@F_|9#v8Vq-pR=Z?r;tu%YFESJw
z0L&{FIL1`)TxAL>Dt;v7jg5MjQP@W-!Fwfc1S$D0%V}hm!FkvhG|wa$TpypA0lv$Y
z(I*KurDRnTJgM@kvmI|=4Sf9dvXpdKG&?6ne6;7H#|W^1R-Oo?*Xo<bU{fU@0p_P1
zo~behMyaO2u{S&HX)Csm(VP@N(kH9IdQcO?Bq(JaX3oxPz8aiN+5R1le0FB`u6q<X
zxj}*3wZt65zvaQHsK-$oUchaRfTDC69!%yz=QajL_Iji{ek*&;2m86%-co?LWFTp`
z0l^yxsjWRj%gt?PnDhl(Z-9PjB2E-qy`DX*j%Je4J0#`dY#l#PzCkslGH-+v4}T`X
z?Urw8M{#L}w)V=)$ZL<*oZ9rCMfli(N+4QjHm5knv)AJjlD<Z}S#-raxD%}NLKZwG
zu`7Ds(^cU~{4_0BRk07OUX?m?1}9Y0n<5(z>Q++xegZ1pD(C3G+lc;tnLBPKL8jR7
z4cLWC#WUrnM!jXxsf_z`{iRKNUqpbFiR|#?g5NhCSH^3D=N@kMwuJ1=BpM&f#oDb`
zx##CzbG5hgr*5)v-ibXoyyf6u&s=QW-n#bTZ1CeK#_a~tu|X517Tpt>ln2x0QM}is
ze8Qr&87-ya)g{FO+bD$=VPwE{_h_J<uC`m?L8|AANR58uJV_YhAjmQNyr4yDn*DBv
zERj@b1goMLy7m#cIPRjm_({5%Xe)rwHuuS}>t^Ls4t!G2<9f>H?NYNkrIry?R%|t?
z9red(c^hP>E*jw^!~3&6+h3=&u$2}n5L~8CS0Udpxt%HN)(YxPvkN!moL7N3JmL)A
zMWoNd2?RjL=?QK!(pYthqK}mBYB*xMu@51|rczGMuI*CPTB^ydE+Nidz{;fK$e9^>
z^HP-ErtqN~vY~OE5$K_#>QhueNODM!jT3McVzGOx89m%2C94$bL&`yS*pj2yxh_&f
zuxTeS)(WZD3I^&VOv!B|?Q~39Bl1#NC7YSlwy$t$UMCN?r{|%ZYoMy>Z*YaFZsG1u
z4`wsXDz);%`z9TR&>Q%~L$8x6k*v;g`_UU`d_OJ5*81E_Gz~hD<)JJB8@+X1;=RzW
zyvb3BS6O)^hnY)xhIa&EsPu>prJhQ!gpd8`f{vZa3$p$=!iPa}Kl-imwdliBblPHv
z16Ju2+FY;fMiTdvY^|O}26~<VIlH#WozFG9-WD@ljYOGd($&uv??ee=YK-*AL?0*>
zoW2+zs{M@g=UP-aU}QvPa3C_^SLdQc(hP~9ub+sjGd+orAC5kZ>awig84^|y3gsG7
zw{qM{5@f95=zpEu#VJE}SGqf5=EPW<^pI!%c*7(|g`+lEUA;p4Ld(SrBd0JgwbYVJ
zEw@jw2H)?9lKYWPSymKsMu3*2B)nW>(Iu!=lYAwE1|9Sj(exO>G*sZY=;|}7CDt3!
z3gpY-N-r5Nj(okGz84`xo;;jtoNj<#EyIuxHfpOsZyu!GI%^MhqGyY5*O8tPRc0&)
z_Kc20)I;xkn|06O@VW}LX~&!Ms_kp>4GuspnE=<AjecgPH{+2yPilRy1PU^{k`6#Z
z=jTLb>le351RTG~dL+2y&2nAth273V%8f#O_Y0BuQeN_wVCQEDmKa)4cgfbwFS{*X
z{X?TB3+X|QslI9K4_;tl@pM|b^=;ze_V-bk8QClH?-te?P?!g0s4;U4IY!@7VJ*a6
z9U=;n-5jIe|BPnqE_&#{yyWOq=cE9^oSvV&n8=gfRO?j|VuQljI;++OWocN|x2C5%
zGX}&TJ(E>V5lU}!y<G<GIPNt{>C5OKJ8)WHvP5Au;v`cMi_Uqz4()r~FTS*;Z$ZEA
z#YW9O_EPdeP%EqS8Gh>mwx>hiDA01evkRplq6#1->lQzUEe)N6UTHnkjBQS+G-T%x
z>`x4bNEkSq-$GjRzbKe~cO0cf-4~}yJxL|ElT1G@{^QG`IJ9ck22<!W*&8>G@AB;C
z`_L)7#OXiP$`v8#6EiY$kc`KmTyqTHTqZX%3K7mgMUdr?`LYsF6bPv%TXlKFrcASS
z#4)y@YIPfLuN@7xjeLARpK%r~MNi^qLQ%_S(_a!Up)yGMj+;DeNiiR@4&07=H8n{M
z>^(G^-0c<eKAi30wGXd{H6Vdo#oa-YQ?<!^-a%6rm(xa0fj^2k*;-7d$HzcYJ$e#$
zs_V+CJiA}LN@vf7Wj!^}Fz2|iF9OC}Xvr*DyCB@@JLTt;JSXg;qT5Nxm@DK1(zk?E
zm_8+Cs%*db(GsIZdQCMsTU}By(4Pp>>a)w8r@szaQM_n$p5IBip>ujuCPh)|lCz(-
zCU$NN)c5m&q(g%gU*xQ_H<As578-wWsgCpY>W)PQ3d^am`QjME_`&=MKZL5CEk09E
z4uyb(3)B6A0%3hV&qu$!Q5mubnVu{SRPXQFok{rEJx%0ViRce5(Bgf-zx%`~VTsdj
zIitZR+)BQ<X@7ElqphpLXxW_S<yandN0hjhiQ%1dG+Rraq`|$X>L%ROrW`r>GfbD%
zX$@l}Ef6ZOI}9e9!4=2i0**~>Fz|K|<W=4zI^(a(cqtG|`5Mjbqfyhi@X~!{LfTJ|
zWSANMoos~a9rw8vvNooU7ZO#RWYVXcy-ItNru%1@v1N8oi8F6DlaTFV3n^^aTnZG%
zF=EquVVfIv993H~HN^$n@&qCzyWgVZ_2%iLf*jeghe%l86DIe|z!a@=o^{@pMxLcs
zT_#;7@-b>B;fpgsV#8<O`R%zecGuKk7Nsa|%_O>51dr<!?V@S#h=OAplXrLf(A7Pc
z2fAOEg#;s=kX^7l<Umc$jBDKz^)G8K-?Wp&xJix1dLG0@>ItLQG|?nFSKHqu`O-~d
zlV0Jvm9!rX2lL|>Y6>4PTd*nei#MgmiO$wtOd@tRLMJ}s5tP0G1p-SyWsaq~bGiJb
z*R@qlTiV5ULPDZX$<t89bBDD>NMk%Ae#qVsN*C#ox6ozwiv?$K#oaSc2(_Mz-lD{9
z#z`}t|G;sM(`rvCLD;<okddqRB22x>W2><#uOdv12&yr=%(hOrt`cDGI%Fivcn!<V
zm4g&gZT?caT~;Hz@U3wt1|uWRDvCOxGdza(IX;M#f!L;u%`y3E6uviM`{~w&V2#*y
zs@Y+7$N|t6KJ7j0-Emi>WnA*1Dp`aod48Lzg49W*Shc*)@CGV_uwU;C5)A%?;g<?h
zCK#`>y$F>g$K0V<BJ?8PC~}fdF-G}kXt^7thl`%#dXY)$gE>j?@!}H1w!aUWr6g(L
zUVm{v1J2nAz|z)IXfJxqJGZjDOX{FQTs(pXbuCRclg!P4yupW5md|B*&Z(15!vyTK
z6q$3%4Ho_WYM<)9!VAlfv*iZn6jXOg0t%wGruvz$eoxU6aC3f6tmhRijt>*U>WwIf
zq3fKI%$l`0LqpR;jW%BFi@7?X0*o2GXRpO|cpJb3J~2~eMOGzuDi$ha{4t$+8D#BP
zFx&6MNoq%#UPeCq#XIp#h!7Dpsh?>|b$dv)w;CE#d`5)aH<hSrNy4N%DDAwME}tq{
zv86zX_t|SDZ7Tr;gi5>wK^Hf`v}@Ql8}@nr+sPe8<-BEbbou7_Kz(p89WE#ILF7K%
zf#u<QS{~|h+6le6I=xRItl&3#v5K1Qvx4?X4g_x@n^Y$>=>DVvn-#<tq3+W5s*+DK
zrMwUY#qS+}ARR)Kr6xh(>fXuToyT|(%Nn^bX$Uz16XEJ|DJzhBP>SZ&CXd{+`ttN1
z&DmKnLbG<7^ma(ic9My*?Mu*H$7oekDRx(~Ourch7^VgEb@H#%ofm>Cf{_0Ez66Qy
z7=`QOU%x>IeDm23269uLzJ+U0FZ5>Btdyr>^9>9pT;;2aY#$JF{ql;3<&BajdF_kW
zg|seJ6sNX!ZcXeoANEzakVIU7xafixvQ=|Oy1eMdz16AF2<3-<VuzUIqIhgUJ3Sl;
z0PRG?1OI}qY`F~1PEWb^8EPtgm1e%aaJUt?11<gllDtR8UP*(#DHY}FYj<dF-xR5d
zYex7l%i*}E-Hz?FX@Z)BW3DRi-RS!On|(Xau``$JBV5{EO{EpqJ_u6Kg4FtGCzcKs
zt?KISp~ZVmV&L1Sno<L^-!xr~2KqF&sQUzj3@VDm44gR^sYwOS|642qd9P&Y4w481
zUEPNI)6*&_amn<oA$#=0F6$0R2UtpuN5owJlBwJf<)j^G&(d5RFFmg?l=nc<b!aDZ
zB1e{VT$nDO-@S$V%5yUMZv7riuMiYqI;&)KdOGg)a=G-&0{K$h>f3XB7dcq+E7Hva
zByJGy{iqj@1<NbUd825FTjbsG^8=b*sji6laY5aq5^DOv$cj|P%fb%j9r&#lA8*jP
zZpX<*to2b)-o8}=2J4y;Gt{%+Knd{JvcJmf4I4ZAt@nF?{0+o|m8_~)taPoH+}Ji$
zvF@rYslv>!Zv%_ORa$D`4Ul?M??kaGTBMJ6BF<IaiBE!f^aERUP;Kvk;y(3S#Cb}E
zn-;5inoZZCjw&)0qYpi|ekZj-xa1ltyrsZn3lRY#ePFLR=JP9u)Z7kw-PO6itDmjC
z*Rl=VN1{?_IaF1(s)ss&2J0lXC}{neCqI79uga`3d_iQcQq2aBM5`%IwkEjzT(}Ly
z1Zg)~A2;1U`HLGHE};gWFNg?fcAw=vRzp&tpNf2cOw}|M;2}lu;#DeazCA5pzur#W
z!%R@H_7}D~<=q);#o2FCE)G&TejkY5@hzUSs3f!HA2=8Km^Db=dq;Epqu0e~?G}$r
z^Y!M_Mx>D<c3^o{Q8=TX`cCVENz~5SyWfIQ_@E~CV(+1qysK*-!=}C0D9LFSJo&UM
zPDWjIek4KcyEfY!cZ^Q>b0m;{Mi6iO3E*gzsT#mZ?&#EK8r8=iXsHhZ?q{d*GGK?B
z{Y26`$Z;|y5oQ1_tS%0)n5}1wNgkQ(vHA*Y-qSVn+FC7i;?ydtWj$K(3c^5oNMA8=
zQr=9ztykswdKw}mr$J;Jk}~@tfR4&tsp{4f0FyRippriwSjBHQZ2e|7_P28)pMxr-
zL(f{|Kh10RJw#+3Ym%PhTE&eiV6YBM>lIykduSp#;9Sv0V6?0X@b2xjs$Im{`qSlQ
zvOPFs(C6|cd+_*4iC!)8sE8s=N*7Y;-T?!>by|6zOe7#vVMJ%5HDT7qZs*6cw4W?u
zdltcnG2WQ#Gp;6kP1!$uU&5%b$W%YphU7c%9-#L;6xMrFGU8WErLO&^K-Ftuy5kL`
zocWDwTyF1=3Pgi$v~N2PNj|whT{TuWu5$PqhhKU}Z4)9W#VI9NLX$BmrP#Hy4IHmN
zGgY=YpWRu5fsH6qC1nBROklg9@?AV8T(Pb8*NaFZ>E4NFZ*OKT+kz^T!_~Y!#b43k
z^s4?Yw5aDec8JRy5`_pu=l5$U=le|@l`JeB<0NIKUu5vbIWM1WZOk^ajPGhVJETc*
zOa7>Pm4myP3kNeNr(Mp6Uh9rqL{>z-dsq(i4@}J3%3gNdOQk$JtUmK$VkY0WfNbRw
z-(tL2$<))%VeSJik(H0VA(PcUZ^KK9!@2zsbFCx6&FX!RjRn5jUtbD2O?-B^#ApNs
z<r94<G77(nOMMHAR(d`{D`0DVA#$_c2W$Y!h7BgU<-d$GlC#&u>qE!Eg9H@J<IEo-
zxjfU*l~ZxCmFr?23I*0M$teVQegDXE2P_sR?pALnP?g<!2+jv#G**y0a?2%4L_d%d
z9nt2i<{-XYdlCmH{QBu|74`h2>8IywJNtsDIGUk9o0fXwyb)^Et4g5Ba(2BpTLgxG
z7gX^JS|sYs`rS=2jBf1OW;~=BR?4fG)78wjk>;pHh^*-4N5r;XLI&URca+N7Vh!3N
zQv@5C%r(-Kq)t-Z)PkB))HlDCYDlBT^f%-%L!E5Mvn0aM|LU}dO~Hippp+FYulX}o
z?Is=$PEKC98(waLO>IqVR`3IfLhdU`Law})Cd-;GTIX$46O1*^>WaQE`!?azWYU{+
zraRldd-d_NrK>syG}E(iQaSE>jM?Zow4Zk}Y-iGO-47Rl)cRN{HC7pgvEx4FpCiXM
zGp@`o8t}H~Wv{Jsc?u?)PV0mavyy5_wWQCWe4@??2%-tfc~*M2C)rq83sQunT-SQ7
zj%}8CY}j&~i{s5&T{&4MEj2rsxGVO$Ft3G9&+AGkk}~=l!Y)H<A6!4FeEFIAt?7VW
zT-!-0if{>@=EzHWmURz<D5-g+_$#JyaTPNKqE7)#W~GP|A9u9h4|<3r4&D>9Rg=0D
z56R0^&2NP1b~j{~`nR^T&g!<6zHu;`M+A>PTb)?zha$ZrbbLyF3SQ^vg`FEv1F3OM
zEqeIn?32Cqbh}>cHBBQU2J0&u`PiUIhUUA~+<BZ>rU}%y8`VB}dK*~6cnX3eiqp^c
z*I!mgl=sY}x_23nA5GZYnB6khOTTtJFMCqouO3`0`bXbY61EM|?ip)&QLO3oS^!4f
zGx=rbo>;^qL6n$022mQ)`pCIeAGhksxeO3vDe<=lgzspOnpc708EloaK|TY`gin_b
z{(TMjhLa0AXMPiRXVbYK_~%1CNsVyusq$WG<GpDj(YqR2`2comT8bXgJWhZ(V$_5<
zyJtU^yOM4z(#{3g7J_qm0?=9_PRJqG`n7I3_`Q;|QcOklp!9r;#UXjd!wZQn!ECzg
zj+t+?$lHyUM-PqK2)RF>YakyTD@<8hr!g*OWP7Gu?VkQI=t-2h!$!#zt8MbhBkX))
z&)4R8`(E?YVwT(A`)UdKOIQ-K(&5z($$Mt-Vz0kbwL~lK=WKCWLjp#YW`5#x237@Y
znh8{bu#0sGZ~EBLlN1x<<1rvL(@Bm>iO4b#!L@OD(GQkdX@-C5Y)Nf!4Z4zHl}g!0
zp@S-AlgddUYziM1U~N^1@Sz%wXy`|+on>`2M8<QHB2p|GK@&WeE$o%cv1@uV&$*Z-
zyZ9b&^x1UcLUyYIdRAqmf6I$#UTOT1TPWw7W2QvT`#!PWWNQYS4IT~rUYmQn+aY^~
zb#|8W8QgoNY&W4`S~_VzJxYFRD@*0?ZL((zpcgx_BL}Sic(*pV5o{%6CdBbMQQkXF
zG7)PxFwx6Vyllr9ITc8yFADjRd@~T}{TAQTe>PC^x4}K#k&<~{sFpelM$}y^>B6?7
z-($IM4fJyo{t?1uP$f{p$g+QvB)M|zFSZ8>hB1=4z3S1P`oRwgingg`7Ar4@58s^E
z4njZ9<gxjz^~V8#EXBcx{<jD|^8Upka)2O4=1W6a`otH!X0GwkJr7;&vpL-pYGEFC
zWa7l!7c1U$7F`VfQzb5Y(Kp^i>4WZHKK6+QUILF18q-j^OFUXyd@#uJQuj2slheyl
z-Ox~fwaV;d-g#{T^KLynukPEQ9!>2!V2$jVS6F^Af&2NoBtD!F)Gl~G=f1mMvgu^F
z{H-Ln?#4eo*nN$Ltfa>HKYjh*5BL7@C;M8;!3*K5w14$i`1`+jFxkU!8UDvTFGEJ`
zR>;6#yj2WA5^$fV%w+!aVAO=v*U!&S!698i{4oY|@f_`+x42(+zJKd+3?TZBtXjV}
lZs^8;@Y8>Kt&L1e`yySF+4N5|pC5pKx1^LL^KKaW{V&lkE`b05

literal 0
HcmV?d00001

diff --git a/docs/codeql/images/codeql-for-visual-studio-code/basic-csharp-query-results-2.png b/docs/codeql/images/codeql-for-visual-studio-code/basic-csharp-query-results-2.png
new file mode 100644
index 0000000000000000000000000000000000000000..e03df573fe691a3889792fc18e58421f4061a4c1
GIT binary patch
literal 256165
zcmbTd1ymg0lP^B_;4`?xpo4pGcL<)~?gR@GB)Ge~JA?#xcL@?KxCSR7xci&$Z~yz=
zo_%M}|LyiUefm!Kt)A|C>sEcL>eG>GDsq@;BxnEt08>F;S_1$8A_4&LCO~A^8N%;0
zMgRa>ldY7Lnu3%Rm70r_m94!c03aWknvU`=c^N0*^tGH1o;HM<?uuTXAs}TM0ooO%
zC=VZkV@CDGBz*|q0G*mzN6X~Bbl-c%dM)WXDtI)VX(ZiubD!z}Olh|W;lECVPP;Dm
z#ctP5^CxmMy{B?>?%@ii+svGqSg^&jpqe<_JCiX{ai-gO@Ho=|X%j4<fl*inIUXJW
zl$rU;W-bEA$~nzYet5XueEkMJLn0Oi6i|ii+!J^5gs9T&@T#(mA_Cq=9)3!<j$*hc
z>32g-qU!fe&f)(-lT0QyWOJ3GtP_FK&jk22YEVrJ2Gmm&SzDdsfW<6SLs+GK3W27(
z<gF#8rI%pYZFrhN*_g8uf2}7EKb+TnZlnF=apjcrE2A>RQ^pBUxr_Eo{>XU`9qW5R
z+yMabE^VX}kc&HkyCXg6gxy^IslS();G+C*IlsamQqh4<jQ9-VeOHlZOFK<M<cW_#
z)7dna$)l**rV?S=hZst;QWkYMv=o1d_Z6*n6gB%TA86s^_Qix4SzN*zLcr+O{4{iP
z{tLrWW$E%#7We4Vq9+Z`U6$Ue<9Cidl5zG9RvH;K_NQyhPe{}^l~XZLT}Pk5^2JK!
z)(NAW-)zxzDws*j=o-Ej4>6T$%PVhpB`2#flX6YD7TImW0vXQW;l2+bZuO!q(G0*N
zA|x>CaC*rF%C&ozN@rxGj9SpVr#Eqt7QSqI%Z$#<44}7je^Bg1&-^MA;q0fC9ybTF
z!>C9mZ)m@x29R6;)Vw&p{anQc@Dc_*SmnJ-;;qVNVF-|TLH!bd^)8Tp8cDVnWAq0W
zKO7&exflr8FV3R_?@5JP0*9)Dr4@Khg^d?*Y(fY{LJ>#ehmQ+RE`ZBHO7DID5!Wri
z@eFho3^~Jz3E<>_lK^2AiSx+g&jwvVG{2*nNw6gl;sHX%XVl12fRR*;jc6-CeDP2<
zMmNycAivN_@$`ZtH3m0Il7O(nmT3keq-0aUN;uNqOA~^Lu;(ofPtF`5dvL>+fhV&8
zeEPu1ug`ZlKDZ}gk6Y<yP_zPhD6%4{Wtdr^uv*|3qId9$L3+Vsa`?q#>bzg*-!cEe
z`bv3?b`6e|`8oZzk$465I2udta(aB)Zd!l3^pNK8vm5#Y)@Oi7&`VUI$sA`HksJmJ
zZm7Z_%gC;26lXZcrwrx{#|e-XM)VL@ZJ3UCCHota?3f>Yj(sNs3uf$QLUqAQ>SS2u
zQQSiUJMhj12J~#$Ehrus9&n4Hr2W3V$!B_=%$<Cq$n5=2y@WgQ+fzFoXH#dmh+aXW
zeTg9XU$|O0&0r=}<&f17NI#-_ppCp6eHb`7@+gvSkYpR*jPjg3QhF95kPxIGIV-4v
z`Wx{#iEY4DVx{~Wh<AedsK$lXh3SRNh3|zBTBw=0bMc@W7o$Go`;_sNkrZqf9syT@
zI5K0$DuYaeE`#(nJEp*|s+OARY7G@bbDDFjbJ`b(UI<>;Ue!+|_gwef7hM;{Xgo+t
zq2i%Dp{!_f_|?q9+JlTF(9et)_^$ZOc<jtrvuZqsStzk`tMcDU3=1)5>fEFR!}H#<
z7f_bB{FF<<OSMm-PSJv<GUjUju`VD&#=xRUt&4R|ni;q&sVtn(B7iz+RjZ$9P-tfs
zZ<kT4jcQlC|E+ajGWPCTLs@;jaHZfu9<$1-h@i6Bz@cXaze(Hm&^2fOY=3u3K;R%y
zu+p)JqA0J}sBoi9^lM?oRxxB@sn}U}CzW36r!u#0gZyRZel3CWxQx=5_a&bsj*v7X
zN3F`ZlrmT+zz&}rj2$X&B#zyWQOTupKjvZzHVMYNMYgl7Bd$}gTdjjdSi6uuf4lm6
zO>u~OrTd`p&~dGQJ%WjWNsal2n1@K1?;YnZkrk;H=?$@Zj6rM~aVqIL?=VS2jAqO&
zu}4NPeKWlRy(N8%vZ<z!X5nwqpObAFZCI`{uHy$cS&2WEtaPpBtq}GxE&-RA`<VMR
z2fu$rXSSFd9d*_aG!s-1q!M7W;<G-p@aeqK?QY_#+ty9hU2iJW@z$?ta%}W7H~&CW
zyX@pTm1fn^>z?e;a7-xVEfi@OyI$Ls=bQ6v^k_toi$A#1-@YH<{Lw?_=;OjxadEDB
z*^a_UPtHV+MoyfdNWK%lF-MQfOF=^%_u_qlYY+NQy2(B3bU$qe?P|NWBV0a1zV1~>
zi?zMEJJ%!8V^c?H$6(i_@7lnOdDDoDYD#&$b+>g#dXaXkcEzH(6Zxt1>4#G=rG7qH
zesnjHvHvD{cNZBZR=nmA@p;3o{_*0r>J9ca`?Wug2@VyijUIsgOuyDuVpH-tv?vra
zkSYPUmHSLR!F0O5U^A$$PomGVPgROVN-MN6Y*sQoi~^G!-4%P4;D%!jYCy6<CJ`GE
z`z4Af{wjtg=5Kr!VUyq=t46&>j&@FDLR_#b)XFV!vB)qw%*?_3(#)HHl+CE_?g6KX
zu0m;&wUlj-O$0wYGCD?x<TjJ^JL^H*u<Q2iaQvCDXNMR2z2g)0OKq>N8q_oGSB_f7
znedE&v-S4JBs&e~S?0p<+IM&K%Y66Z7oLhHV_PXs6^Rv1ws(!Kjoj2S>QP_l47q(}
zK9?`O%V9V%-fy*EtOrN-?5ZKB)bST{Cdcu}IcU)Q#-0siNw2K0#2%+f%hxNcm250>
zC><U9!JKdDZT*@QJh`>UQ!{JS<Tu~@;pR`UT><a8UDo2C>K}$ejg!{viPwYIj7Lrm
zwM%NPThGJaW0l)T+KyaM{Lk(S1y$KplNLKhZGQ$*&WNG;+i%);c}?xt+&?{$A`u`B
zA?3H6HLu-`UX&;0cRMIAt#tozTzxrSIxadE5i;-~V|)jlU?W>=GqLssH$Zz1pQ}qd
zstH%|D3_GiSl8E$anxp8<(#H&MDmrA6+6b)#y{MCJzekg@S*fKUi52u=0)Mb!Xvx8
zYB)RaM)Ad3NGDAp)HY$RXUfx(eb@Zb|4{lTVWlug$`~se>y{E#U{=G@`2DAM&xg$)
zTJ`iqd{}ODMx3X1VtK82QS6ADkQjPVe@7Db3_q{9&c0e)GA>kP{d_3DU6}cEaa8z_
zdQF3=fcYFd6Ps)OG|9s!z&rnJ^|HFvuwp$v$(Xz9p64lg`_zKIOeo79#opbX;%Qs!
zWqUa=uAY9{jM&m>eBR@7{PlKzyz1`)`eIH^Zr6$D^91HXY*@BC-_ff5>L17Djjwhs
zb~QZ?{vCA#g~b)Feh2q#i`7aV!lwpZ<89sz-liVbs-9C_8%rB6-cR0Br{x>|msCf6
zg9D#@GrFJTF5;sozlpKEuHW6R_;tLvBIF@Bs7mGwlkH-5Khf;OPf4|@GO9-B+lqYq
z?0Eh3xAykqNVE)lm{F9mO6S<4=GIhKO{`J=%lL6kbK;l8LcS!v%?(Gd@`sZ%@9f(j
z#S+EwBeTQw!<S-T{P-^tuj{TgcgwAD$HjI;(|tH!X0PU7?KWE)oi+yzP(8lli$f4p
z<N?2qO##puz_cKMiY@D;q8u^n1uKL4EZ?*JG!I7z!1NgoI1WekivZxQn3zUzt{RI(
z6%loq3$S-!CFOoTeODvOcrlW|o+RioUK`N8$-5Bf|J{x9)o|lAr>{ht^la+h*uxvx
zSC+l(2*a`VmO2Vn%E|yHSQ`jHgd+hU!CG*zT@;S=f461fpa6t_orebi!fgRC9Q?07
zDzM`}TLNtVN9Ny-@CESy-UEnOfbj2acoSF;K&HcJ9PEJlQC`;-03e|IXNObJpgjWs
z!~qJ@67M|W{^la(7!F;JFpzpM&`Q8Jwn{~(NJimS+9YnP)M?ylLRs}zG@=M>>LdfV
zwHiGGkv$ZEAb7~&dPB$Pt1m-Nc0<FhXq)QI@rgjbueZaM$3Yxf_M4-smJJ+h3m_4E
zn0P2yr`Du!%6Y3F34e0Ao*NMZPO2C5g$JHo$o;EZT3SBD<X`>3z{<`GMbVot>cvs=
zLq#O;VF9o!jTVUZahpk-)$>0<9RDWDfv86U&&ygRsYMC9(f>aAuiO4V{Q5YF2VaQ~
zd$NCS|KB;Vg5WfPHi7K(U;p)D|2^>x$$+MR-uwUI0smu{0wih^G&t6?QoYpw*Z2EB
z;(_km){{JV|4A^g9#Z>pE2zHI0hRPW4}$m}xK_Y#kF$jg^FKVSd~|>pP(C_m=>MC$
z|ML(3q0@hH@+%Q+(7tS^o6GzUglGSGdE3MW&;RyZg^A<Sz+~S)xm4Qx4}|p)-$JNZ
zT?nTByYmH8Y%`c_L6mVE{(n%||1<^v<*>m<nh~)?W^$YOKhMnnzqY-Pfyur*AFnI=
z9|+rmIYI*(zv~MB4^%YjA6X_p0WF^YzAzOld>JT#Kp@)szqJ(qHKp%3;g7S5?8WX!
zRSjNWo=GjAe+6T=!#3I5W7#dB+ux-bR)ba!>p@Z9ht}hk&5dyH`@Qt_yYn5_VMdvN
zrUkumn3?)4T7g30**m|uC^vf2b-Ph**x`QiQ&sHKY0s;lo0#zZZ&m+4f^LTi+y+Eb
z)jQxX6&21;7x&05%T}a(CcOYY-v_tb3GS&u2A!}D1qT{^Zzd^DmQjKLaZU%%Sl)$?
z17Vo1JHxTAw;SG0$ptf|N`x(|jvc&X*<8=3{;zg!V)>+9pRZjyPP;ogUSA&9pYAU&
zBa^f<%1Ep)m<;eyR@_$|)+aK#*H@i-42Mb^i-sU)U8lZNRUIeoCy8<t&Pr)4k?6A@
zPUvD+O92HAtIdu*&o{2@T~|quH>*xci6y1#)QA})>_(kSuP$`DlW&qzJer*=GVbB-
zQ|(xkzeca~{kviPzx0%f5;02}VsbcLh-E4(|9U^=FMQddS*~(2h^y*`fP!@uGZ%@=
z@CGR8abmz{HVC{u={RlIZLs3?T+m~0_c%QPCDhdRqg7i^<zdk?zO^~a<S-5LzM7FU
zjG)n}YTb@HK@qzP439lX)c{hdssla$){U%ndR-Q2w+s>J-(C7WKhQBDvb3zZoXCki
zBw~ki!9^hmopv@9JE-3(B-8VnNCpk@ZTjpC#FFrSo##G8vaj8+NLD8EyjX9t{W;8>
z^fp&;-uLNz<m7jGep&%$9EXyvD>V0=2861@!NN`z6U~t@tk(mG_cIJzU>6iVJ6|9X
zyrymJyJzJ8d>yr;_zLxHnIx02&<hQKY0FAg&&z{RhVxD=Upo>y!C{GJKHofla(nN4
zP@*$gC?I8nsAt3LAeRZ6iVvYgB$88KAQtwl)votGEDYDX&Y`hgn?xBmFjYggz-rjf
zvTN^oeLkhj9iZ^qO^myO?9XHou<Gr0-)*D!U{%a@>K+)!9yC6R+$;@LHLrZAcG~P#
z-wbsjc6CXK6TABryi}Cl5Ibm<(U$38z+~ko?zcyxWE&6d<#@I7$>TJa4gRB?$u;B)
z8*hq(m6a9bslWaIr9}&*R|kTY>d3$lUJNI&D3y%_F(9a~@#$h*DdiA2fEvc!pV9Mj
zT{H8%;8{P$^sUuAUSvUk{^%i?ToTFeTTOR6OoboUvYomsf_YXiW8bVmnL0ed;-D}t
zKuCZP?Ft?|&&v7_zRkaC7&cYXtNhy$G}Klt!xD(OKq2*&)|(Z(Vkgb;23MFB`KU~P
zD7CDFUPQ!jUmXoeX&_=(L*suqEM8aUTesNs;|w4G6HWnQH08)Yr93WA`R$KX!PZwz
z1Rm>$Qjm%0c!$u--41z>O0_x~2a^aqQ0%<F_8`x@eJ4(6(hxSWGwnr7YdY4zp(-gY
zJzKi)5pFy^*ox5zuXnL4g_(f%pDIE>n3HWWh?3O+lw1}OuXV__Of`b-2799Hi#lVS
zWR?IR-A1jUORRMg0v3O-$nBad3_#{FdAw)!{jcnxjVy4E$5Iz;W8inc_u?^xuT9(D
z%8>J9(g~Ty*Yny-U5DL4uaQc6*3MDRKs*0qKWZWu;ABHR$rFaCI<J$Uy1gl@{;$vL
z``Jz#YhQ`<jqu2*h>r99U%ZMrT=yp;S0?^0H;^wFNVX2iEg`vArTX2E8^2LQ?)?gk
z2SBw=Mv<yP6GO(Y4~td!^xs+_py*zhWjtv?_k?LQSx*@i3xeg-t_~XEYfP2LhF7`N
z*~C&52MH3SxJ=^LID3zq=LeG~!Lwe3b!1ZeX&$6H19aH{uaV7{8$R}&4VQ7&E|l^h
z+&Z8a<ZO(&rZt?>ZwZnji%O#c;i(C!M@-@c%579_?4t$pUDAT*tQ5**L?t<VPudP-
z#{d(Q>RJQeP&d{Z@r4xIJdJFAzpJQw*P^uG&E<izdEC4@>EtjsTi5*XU->uj7a&hX
zcz{pT{jzm_8>wS!p}JaSbuF-;nvCyW=%lsSd^~VL)*hEis}P9Yt9S}G#a)T+T!Ci#
z<7&mOhSxh|kSR>$@6O?E&#Ny284#i2=4=4lL+4W<`hj)6ue-q&f$!<#=BwXsAVS%V
z*z3LO?I=S&&lm1ZyqHfRfgH=~y*586@JRy939BdqRmGm?&g~*YsCKG5PA-CwgzF0M
z0-Cs2gNfc#z~Mc?)OkO{d`$v{e0NhRY4vz4ebQwj3=m|_vQTGW9Zl0+<^TG)xm>i=
zkOHh#M!P#{S~T)I3F1N?i!G%}sbXtCERt0y<QWpK*Kcv$&?A+&eXnge4>eHg32bS0
zKTcy~P#+$$BVARol_d5$?Yg~jb!zr7IW9|Oa$8DsF*>Qkqs#c{O@)_tk1Tzk&Aa)J
zbK$BXX5CxY5&6Hoz`tN?;6jvm@@F6v`3hzo=hvM_$klP`r>xzia$!N$hQ5%QVR(Ti
zkv5aOj0(7VdxMhi@AKm=JHP5!EVDdfyQJ^K)p@y2Xvi2q_}9z2$L6ugtVGBNog3Sq
z`ETj^*14a^miCl}7T7m^KHr`k-_p}P9nKVA#_m_OSGVnxFeoDa%KVXpQP~Sng%|mJ
z^<5}m1I2<}Yh~i=x9UHclc8nt7l;nVf5b^~`f0?!VDvUPb>Ei-Mw{Q%Ps(sm_bE0%
ze#bY;Bh(jDC|{yEhLh!e>!)5n%Akx#e@DO9!A9#S`uhNFK#O>ne6i+S#q+f_0Ode3
z;&UL1@3+QW$!&&E8P4zvtH+z9?cwV{L3_??y4*$wo%BMy1LbGs2r2{#cyodvwwro(
z-cn*~Mb5mRH#Un38`y^fhYZPiBU@_Kr=gwQFAsKN-Nh-+XMHG-rwr8?Lu)%77CF$y
zS2kKzj_p<UMt16W9_RZ!6l{vWM?-6>&3H^D6Uz^aKC^wX!rrU?kH;-1BVsRgn}3+{
zJ(a<-xA{J|I(~$TsWx&7mS%=$F#PiwPDGK&c7IvHc4S>n_n>~9EgEsP=nDy9Gv2e7
zL3`*1^9Wzx+PjFVQAtZcUSR}_tMa})^!qOL3gz=h$Ys379J_WKnwJr5<&8=EVGExH
zXu~IXe~#vDV~~58FU#ps6!>fNUtzUWiGn{Oh!(+tT~ekA1C5j%CgQ~f9MAqQm-&2V
zA8BaA`~1dPTkg8V=(e5wE=f->aL^z5$IsE(T6<4JQ3sH23s!h(Y~_8{9$nZ{-eFzz
zwFh_6O9|fZCU?;Zc|D)U`@1pZx@ipJ4SbbdYmGij6mGH(;ONqK>YDFc3ai)sy!~k_
zT<pmdVGDafJ%w|W*FEbYbdPygkGo}7M=?l%KzVwY)M?Eo{)g#6n3t6$EYJ=w&-Yu|
z%F_ZyD>F{zzdjwv64-vWgJ)Uz#|KCLi5GmKd^tnmb69CSyl3n9yWPC;`A9a%sB)wB
zPd>l18D1K02+J&+N%yR%^AuB%*`HV$@QFhxNP`yKFV3<VQFF_LJwP)jbUujt+(L7l
z=&nS@GL*DpS$K_p$vV%wA?v>WX;HRctWv1YYa)ZQP8VV^B837EQufJ*In(M6n9sU$
z@K^Dtb?otfT-_W#nTi{NL_tBPnw5uVLG=SzLU)gibSuB3n5&5x*$sTJ=N<np)x8J=
z)xa)IpkM9fo&_}8nCtkAa2}%u_hO+p)EWVsmrzLQk|ZPFNOv6uH>$<Gi3-BH2Fs8u
z2yKccoDI#T--R}thA7X4Uc7F;K2s{(vFhG!P=#m!%eN!yWboSjZaX%4KVBQNZX)iL
zIX0TcWjnT4XrmRZ&n+wrzyDU?T}oyRHD2>n3G5e5d=sOlb$dM6^}8(lspb3aTmOO{
z;x&%f9m-evccRQAw>T*Dn{O2TM<~22wb4vg(VD#!q&%nLf=81XI;``&hL0PjMActM
z?)r6PU){e$!tZvMiw)zwlNj>Cm%fp-|AUy1YI;tlq}G;`!n&21bvR@@&-&40hd0f(
zA11h851p_?uBK(5DIG#t!!jO2cQhc+-*%Hv)l=XP`I=!M{#987h86B*<NHU+lIzo5
z;+USf^8(yf8O(>#Qxwm|@ijz`p)t5d+zXsqiR`E00tlNHdS)k5t1BLxzFp-2VV>!i
zF_}*Nv1oWC{-Tgx54sc{F_k|pWA}06*UE=4Jht746fx0Ua($2bI5W4?48Pl$?8x>h
z{)q?d8+kT;>?JK*M?2USb+X>A$x-_9TwsKo9cZeG%v0H9-P;8t{yS!)!iS&8jpyG6
zicxl5j4^ALf@S*=u#qv(!eFS(KQ#Whofu+rT2I_n$wi1yr@h}Y5$LL}*+goA2NfCM
z^ZQ+zUSvkCDt@oM;J($a58sa~Sx3~(d8Ayt4L)3Jb47SD(};rBH_*|A#85d_<>R$v
zJT9-uYIrlzi$!OX2fjHL>Y!`7Y(S|mXC(-<ssi=uOUR=qXZ9sY;L1{ka2(BPsyg)E
z-C}dSnh0~*zRcJ7?ScBo0HICTL52Kf6a-BDIn<Pu=tC=^Zfy){w^_vUIhra0rEoL`
zV-lhq;f$BKs=|<#XY~-Pl+-(*)eg{#cB&W9#}o9OzsT{a9*myCe<Y5KpYaWf6Vl(?
zcs;HaXD~HLiijJ-<Ji$ex-1cl%=_K(cHQGv@(!7=rvrdO&)P`1?7lUCEf#|Z-z&D(
zZ1z0?qOO7AS11X1YZ1XCWf?&G&4*|LsKnm3n}m$UI%_45t>i1rI5_h?k!C%N)bWtg
zp=n;rh*73HkmKnek9?*TY`1a%izQBaWpOtV(lUL_f$6&)DI7pi^s4+p);+LknteIA
zOo=k62to2ptrfi+cw6Bw--&|w#UzM2j{Z4rdmD$~@3#ENIt<9s6uKDbJjB#G;KuQQ
zbaK4*GwbwaDq&FH2uP&;hGn!?rEE&#OB#D1!Xvs}Vc;MgWylV2zNYI&?=({~Pr(;8
zxeA-sXXODW{R-V-pxwR%t`3M38t~)IYNdKM1mn3Bicnj_wUe&a<b$h05qDJwG~plH
zm;!1>tE0(tPnHl*G4^yaOxmtG6Aaixr2NrvmAzFVSRtuQK?a@UzXW771-c1y{XA7(
zbh3-_0%}DaJJLB+)|#$3C&+bx!@j3DVRs~Qxp`Q{Q=dEu?zg)IW5y{KeQ<$jp;3{{
zwzU}+PpFZf%`nFwySJm5NrV^f_x~7^N>5yxZFG9gbdU<VeR(bG_cE?78RL|rQ+=3f
zZKIqztg(6hh0g>T6Pj9xlc$Ny7`L?yfW^#JP)ool%HI2j%IBL^b`3OnjeunSAu@HV
z<Tf%pbX|m!-z{U;apU*O)9j-UC=#M$iq3<6w^Jgw25ZHK6n3?(ZTOcc!&Dp0MnFkL
z%^r?e7o&7@mLFP1`?k9Z`6y*svy;Z3NZcL&&AlaH1-ecOj9daUC<l^J@tbE$#+J}G
z!#|b6GBgskpSK%JJR+%?ge^QbpdnF-=r-JP5&~Cy>BjD-otJSv)p;$`ZghRWtYJR;
z)+lzXi!*+wL)HXK>|#>rG=|jxwl2re>*D6n;E3QO_&7Y}D&e+)d(izmqKZNgpofeY
z>zUZj`bP_cD8I?>Fne~Qxq%Vubso_h)5^ITW3kt+b6<$QxO#RK!%oUECnCt4J5O5?
zLZ!bd|3Q`YdYxCMYvo#Z{?oImmEGa{W_O1UtIo7V7JO9pJnm7}r_Zg~mk-y~ju+p{
zpjms%h`>RmysQE$+lG)#3{I+uX)r4<qA+zp5%*yIWBXCHE0EtbMI3lf{4r$1=TceV
zI&Ei0W*-qQo*vOJtF{+Z)~-`E!1BDu?oZ5!z)?`=&yvf9p~T4UEliI}r+{n4j6m(2
zv1>POF6afR{81-QI9#$eb^Bd>QW`S`<Y&UmNU)oNu>ZA8V@|a^{j`mvI#UN2c0Wu<
zRvjGL7(lVbPjC+khMt0vc^_@<h7fo-yf#4uSs|gjc|G5sf)lG*sjs!LL*T?ri{eQ6
zREqAK8TwuR$aU-*nv^moQ_sROol>GvPwSCT1T`@haHa_+rRbX2P(xTsCMsguAB+jx
zHH6Dp$eCqQ{4Y=;+-6oMAw8YW?uUM6sk-Z*ze`2RyD!#fPMjN}=IK@*W(lWHV4=|g
zvM!ZPe`veUslC30!3KDxu70WS0*sX80&<A<QIm%_Rk|{~&G^+&WM704Aj>(%tn<qp
zl_dx*#Mtbad2fI#-FK|isL_jn-2Mmr0Q@$wFNWzQU1fDC`|uI`hU}qnp6|`_cV+;(
zO#cwr%jyW>=YsZy;?FR;YSAFE>)>8vbRxQ(7lOu-)DQRcB{>iB#(@CjBPRk9mNidf
z+lpyt`eRRuG;B*iH!-3{qgYBy3FR*F7{FlsPR@V06@6x^o`3OO^{LDO*ke*BPy^sf
zLBv`_MM(H&QRKm~n|&C+^7?*5J%EX>uot;{7JG)!_Q)g!2`Wcc8W}yC1V!i-FErAL
z6nlNTOoYeUWRM)89b4$39~wRAh9XgkTW%1>v9`@7I7fcGBF>tfP>)p2XLn^<!JD8z
zE6NZ14L_4!$P*AC6gS&Q6OwdA*C@7vvSY0mPv~q3&%8f2aTzc6awiXFX0xxm%{TzY
z5^?tDmmRl^oyUzoD}T=lk23f28z#2)ES2AIC>&f%^@N2udAAlJBf!Z}6TE(^`FBwd
zzputVsR*&}>10*q1kso_QmgV#7&oM@=KU*voX!H77;tbQ>M_9+QK3!&YSN^_Fe3fV
zzMW6H&&UvZy?C}(+g4=I&PTVM-XG+jcEJy5hTYO#+AQcoL7ba1d60|vlE$oY--Vri
znvil-b=56%P1SWP{*h#wBaA!zGYLJRzMg&nrT{X*>qXa$`>*$XM^=VYEmm`5V4LJb
z5eNUoBmXP(>hT9LSBDPl2@Zkub2qzo)&s$sXU)aeh}Tx54#W9hy3BIbGTQ#S=r&>V
zgY8DhV6cHEW=J+h5lAbebuAs0FH03zRI4NNMR6n&-HBxr902(qa*y4hq3<1@7OaE(
z0f+C`8g5G)5H!ezU^-*`a*+-lgVk6%!vhDn9UBW_xuxR1y!e-Wk5@ID-Z8<+C{kq6
zg(j|#8jgM;L)2(WMnv1NGQym~a9%Jt8KX)9nZC6t42)sKAuuG^`0hHI^=-d0BTD=T
z)G{LESFGc}5<#ID_KZA!ze6WT5wNlfzh$yvKJy(A?ShD_vx0tN1BQk^j)Z9?rjSE;
z*uFqElHXqO3~1u9ds5oGi{gTpTYGcaJsRJP<od1?Uw(NH$o&LMyd{kv0)JA%)$a~i
zD6P>IvkbI^)N)-RgXusyXUa2<AraX0&@bXZa8o(lXv@-rf}d^tTWIK=ETSBuBM`xh
zkJ=uA28?AU!W2bh64GlB;W2pY-;c_0cV{!a-Toerme!z7uG<NZkf%7EXIW5Y>}_5M
zm=2I4rMA#31PFRVAJeE_!557IHY=`*y+{IGOM{UofCFjpz>gP@6{h1TcmMhK+A@*?
z55ysEt+~i{V8x-*%sCVSP2*hELI<6Z`2%PO#t)rW4a)8x(+wdk?zWHY-FIeqO?ust
zU&Q-R_himP-pG&^u%5-1KxUaNaukH}!Yyfx5q}pwzkM{1N%4z1v&W=@7s)FI2KVEg
zYKBZCIkt5ZDu}HniW2k*rmeDsW$KrFik{@xcC@43XZ$Q&$SzrkDGONQk_FOGReC_2
zf7=Z{Vvec#Km5$6MpDCTsihbH9o-!-K-w=bJdlv|u*hMMWtW0y6As+YRGk+4>9i{q
z!|oGYnpHgOZ$=I%WRVg|s?zU`c7AO9sdDL%-}XjPUtwW0w2@|C^q)kW|Lt6OGs~u>
zDE}@gvcdg{|4l=_R}D!elA`j&qlt@TBb_?G%BoZ91G)BgwuxUSEaNA)3Yn?y&1u82
z<9N_mNwOzQI3oWg5G;@hGQz#HvLp|yFNMyfe)UVzZi_D^Q))<k-|Pa3xv@&OddXs?
z^tSppSFJ__@97!xiW0AKNrJ94BuNVY108NZc;X(i;CHq#_z`Ub$LGE0<b8EymiDo0
zI)Q4Y6c@Y`WZ_{VUw5iVI8cJL6^#5+n|Gj)v+ph~U?lHNnBYye1&7urM@Z*(5(sB!
zhPYjo2)Z%$+zRbBRP$d!JMvi2uN?YSbCx^fs55n$D*_8rtH4a(8pb{M)=%FoI)B&L
z(FRmxiw?6sJrQe*d3V~aI*1RO_r9q%eB~9<f+9B_bwy>nj2ICsEq@-UL86&v5kWK|
zhu4%s|9HI{D4_{d5+~xw0=?b(pbgwFNdPV#O7o8LF3f{+zcp(l3WG_|q!LtgBA&aX
z`biW+Rxli?EieY^%9V1s09&p8Ftq<LX}pNLPi!em6?uW+ofuuf@z%K7avQSfGPfW`
z@=ar2^<wlOLf;Q!$kvwbhN$1jx}5)>Wy?$3Y$h6?I70%++{hJB5~;+OnPQ_PVA>3(
z9G8SFqfp4UbdnzH!YeUBz-vFtO2~j^CRpK!mj=))L8{wKH>E5WRZ7#cZC>$^HDUAm
z0BTHl_)3Ol6$Ivs5_iVmLv2n-VwqQV5>6F=7`zBwQ#>R|TJJGYL!&OI#5P}fRLsa#
z#fnnlXhl!;Yf*lxdCB+VyOta)8JGSHWMr52#<v8tjU@Vhx7B`f>j_E%@K{ggAddlF
ztoA7#yE1JgA95c^bzf#~18Mq+LQJ#N*l-|l@Z}}VY5!V`hH;WBwQ+=b#lNVInHrZ$
z<I`W@&`s4Vzm_>sSE|l7LAU8drrdj`on?o$W?9^X7x%>PDACBl8sm?W84P0pocMDI
zyjJN^wY=0L@5C!t^3pYyle<#LEcDjT*Yjd#44|Q+F1;=It~r4tba?(5E)9W;@aOMB
zJi3wtZkKp-jn}UODStYrofIB?Gm{kscH0vKz7C_u1Bx)HY+XVm=*-)0s!Im&X5%s%
zBDesGK%Ic_%~F+)CD(fuv>^fQZVpa$wxMyN9pREA^|w9mt33=Ror2mxXndbl;Mkzd
z#XiB|k+6J9L1K9-$a>q(65v&R`rE6<abRdp^`hdcZtghAFMw6Owl>J-^|Od3=H;TI
zx&8gWJffO1u(zQkUshq`JIIC=NS3D_6xj0}yYzF6lG+%d5reC2%9%b*-zG&8_)2Ob
zIFo%R5!aOci5mj|Iz*$y>~12;yp#WNm47yr`R&6Fe+5?B@vIep{WId~<A=gGT##me
z`&e3Jo4MR;F`Zv@r14$f{W$o8_!w!C<y{;`7J|hWW3lZDFgSK*lGk@hTbvt=T9<zK
z9$E1n4Jobd`v2W6Tle=wRD291ZFSVo!82S{7?(DwKx~XULf(<nzoz2A+0Vu!9j@2e
zb5$j}2G%6qeCxAh4aT;O{Dkcco~8L4q<}z!j?4%zV%lnskBSiGVgiSj9K|z;3((V*
z>@V08#KTe`QfH#VB#HnQ^Qy}_FIJr%xzb}{WB`*))wo)zJ(IX_3Ftv5x?q<Nd#Jf_
zP=-VAoapS&lbHd))FQtmt!_Efmq4XAxAi*YxU%x*eIhGiMiC0_!aq-9+7?32aO}N|
zft<DU<;Po9@RFL?i+_bjTu|YiLKF-Jh=#@}al&#51S4_arql)do>kxU_jAS7ei@TV
ziKcw(CyYpi$Dj&X!Bs@x4csfRx>6(}dT^Gs&Z9Ar0)8dVEB%_kYdnz{Sq{aYnd10u
z#TD8_x>@KbmV_+{n6V-#>k|GchZtR-FB}D3UP+0A!EB&!|CyeG9CzR+{?5>lg=f!~
zgwM`-b0^ZeGR%XAjjp-HF;YS_qGAtX>#wslQD+LXV+$x{RW&6)>ZadR?t~q%%-Im?
z#9pjVpC*Www4hIKz<vFl4LqV*ys~ClJI4~w4{r%*e0RvNIpJA79)Tk(-^jZ{cr6vl
z6z5rfWuC=!-E}B@EpUv^cX+i3ZLm0scI!M7K5iB=6<n?!I`$!wZRX$VrtolUmE8IB
z5^(If{lIx%CM^o>8Db=$zpiPwx1IWpaE=AIgugx0<D|~#Q4)}wAN!y{L84|LsSwka
zZ|{tk#=Yr2DE!VzDY%{pO>&Q#$X+L&gRt#>KU>p!;I?KFaz$8pL2^kY90SDv>6Cgw
zu6>a$?i^2fX|O<jrTO_~#G@Nl3c9}r+9mSil&+p-Ix^HdQopVEL%6S9eWVdr>iIW-
zlL@ano_JMlF5%P1mHTfTM|6}z|Dvx<&w@<+;MoCr7<P9bSy%9`OQ*uL5jP_Rvaa@&
z)zdgshfVjV&yX^>qYJn&wBzjdEhdaJlk3YY4E2DV?19GN{T?_qB?(t9p_bj)rwAKl
z1e>W;wnAqVnPQ18MAW<4VwW%13;I)+gI8Isn|Jpi=Et!k{4AZBe3y>D&?D<2RDuPt
zrh0K-gcVy0w_C7`Ctdej8YQ|FJi}H#Li2rWv7heTGj2cBlzRT2bHP-=HlkKsX&ny-
zy?jt@!BL^?i)jLR*_2w6)1P!MJq(o+dthTwEvPyBEVlAr{UC~%9=1eZDU=F-!*Mfr
zZZp!!yg+qD=!1Q~U;2~rrjzVB?Yr3*Y}xoNzRBltwvGwrc&cyPU0e&Mw8^oDe7!L*
ziM(#2@9dv1MhE&!qzaV79jiy0$5X1TdM*h0{0F&Idj;o1i@EcL@&y*J*S5_3J07*l
zJG>~@_6VjjOM-a?oqjfV*{xdhPH9$UpEv2(+x#Xtj)f27<60%E{RBsW_UAyw<+@>*
z@NZ&371oNo{>HrW_;;s^AABrw%-z+WLjfDg(23OB&;leSYZmQLljdoN#PZtiPl?&S
zz8w5-%G<p;sa-*tEcIQ0ApZy%cw8fT8K5^Ptq9Z$ALIjBe$`A5e!TxnH#sQy4oKzL
z9ZUeP-`FdS8>2#5Mn)21BA;mzXEsB@=N#XFMdM$Gwr}ty<vN+?QXmRIhTH^P+1?JF
z&?67Kjd-7BC47Mu+Ncq}mP~{DAtM(=L8ueL5eY{_UkCJ82mT@^IzIumbKh+fD6stX
zqz^)6Wm(uGN}9pjOOKTX(_!G=PWE%S#1>#IYJ$*(5SKmE5)_ahcec~?`sIb=oE70O
zgdI5zzdk5X43X)EnBcd;(kb^AhkRdz#5PDzvrdh<rJ7_atklBydNB*ssy(1vXaZ65
zE<|!Hw|$}ty~M*?dW+Gh?$s|*H{<=v%;-a<%(oe}#XQNhcgY_WMoL6E9DF~C!qUd%
zd?z`fWF)O7()u`o`8F=e`2><$Kl#Aglz$*&fJQIjw}Y{i&dxh0rR3JLF$aRL9}`RR
zVOD3j|D!?rqj%)E<_TwYG#5a>=X;J+9-+&`n=pbTmF8Lnj0vCNFOoZo{^DLs+YE%G
zo@8N4e~bq{h8n?~T<7<K33d4nnjVcG>IzC{W}V+}d^tw~3;TtW1myUecUR-&r8K+W
zB9k+0x>jL`=f8&z@J}$<lJ`HFV-4kK><eFI&eviUVqL@u)Xeb(%7M<&f~EmOIjk*f
zTqLjRdSRT5j<1Z_YB;WZwmEF?pJ`uRD3nCfG!{zS6<(v@JM!!foxdgAf6GHi$E8$S
z{intrs7M2d#~#=Jp=xSi?HG%qf|yG5i33~kZ|y+QcAYOyC;6Q^aDO}ExK%#At<wE8
z7Dd)mVV5QhRZz5(EktPLCur*T;?`C!EY%Q;C?@FViA5P+_0__tU(4WW78FEXnI4Y#
z#JDd(XzWw>PkBMapQn;^^;4vouvWJ-{JXWGarbQdQj)kwV6XziMD{iLD%mijpBdx$
z(ugpAv>k>)$f?r9?&aN1{3EZBWs$wJG)V~(XSJDcc66<u^&@S{_t5XS-MmM9%b(*}
zQ<t_Y@lry-rw9n#8-}gTW`>NyqRsYZegQ~5jf7)JewDh7;p-YH+OsC!%AMg7XG)($
zf61)|#P<s;CfkpGiyd6j!-wMxvGo07(7S+mb_dxg&SP*^9TB_uP9w6J|2Vxx%#H#z
z|6r+ol8iEJQ`j#T!D_m!@pc9Am|&`AWtv`vKwKC|A@*dxZH;?&nOnckA=ek<A)jOX
z{6{<TS+4L}U+=5iD<kQV88nt!)J{kp7_eEkieWpu*~<?06S}49?jz)0bvJ?)-j$pz
zUV_2Grg3K<&p(t!a*B6rcVj=`D1Rrn85p#lj7f@Co8{BB?~!?+J`He6jGdCnCcKw<
zLqV~LZYSf}CmG{>Ri&`HT2hf;;xIBsHEny1p;~EGvE;EuIMpFAK<dr5NS6t#VO9?m
z#2Oxay18i)s%euOj_$3m3Q8B+;$<H+z8i9N98R`w&s#M<6s&4{mq-1Zh3vT~`#!&c
zdlgJe<YzJV^LfO&wK|*Z_e!Jw!p7RRAm44SJ~svW%P;=LIj<@agPQf4^A`He&fKYn
zqv7z5tjVro6Z_zR+u#*cO6l9bv_kMdBq3B}UrY^(z=YQ4>0Rw@`AKic>5{2JI)I2W
zCNyusV*?h3MC$d{tjVm-0uuqfs?f;uNB}_?*3=ID2#(l~L<O8+!sJ+38k8YxNqys^
z(~;y)r>KW>6$_WB+Bc+}oO5qK5H(?(aWJ}aK6=I9C;0We1=PJW+eV2*rzJXgE8Lrn
z%66LFjF9|p+pg@3)rq>__AnTM*MWYufP#>HQG}6s&oZeA<{R#yMSYpfe$@xchCQ`D
zEd6&@b$aG?47gMqKN2R)(ordsWeK7~)w&(NB=B6KenY~!4@u{E==#WB(F31vf2=Y4
zQ;uUU#wJgJ<gJmE_FqBA>dVIKAE}O<Q>N6%FjiN$ad=%IAl?ss7>xJXXJ!eV&G|n4
zC_8>!>ExUo2DBGeI8qcvR1}PU{Qj~@yvMe8n}mr{g#nOKh$mm(Zc4MR=P2t|I1RDB
zU=4lCnU@;f2m|Lq6F+8SaADzb+PA#W67&HidYM__@`Oe=9d+aYFFzQgBF&--R4rv=
z%u#zdWl1(`3El5ZIc=@zK}CGxNW6RAChR%8WU3A1d>{4lt>P&C)SGQY2Q8WHok^Iw
z!YdBb@vgo~f9daZG=<Ine*p?LOknS-cq`iz5hLy*6z!L<=KiBg3J2Fs$nBnh94d{R
z7rk@8k5}9_?LtleX%asfSh9aWia78%>f#)0ctw*LK^V5+DpKJ<k{ZowZOQe8Cedak
zo;PSm^q=VMBT#M&N*;x2rkHCwxd;fynx;e_@7gkM=A?!196`1;(~D7*FB1Edk{ZIC
zCXE1gRnkxLL{-p$X<@>xE)>E8h&lzH{GbwaiuaA_on&<d>4vJz_pdt_q8wW7C+$a_
zBRZ_Ycw0PM=RgkoB@XiWd`;ODJ&=KUsnLg7N$*(9d$n>1ah?HL9h+?5eo3-QRLHr#
zF&!El*}V~uZB6ajYyW+hr=taCp$H8Xi>k(p1XS^{pR~qE|AYM&X7nwGA;shtd1Q-j
zj0;F5*`I9hVpd-NfIRexcLQ>q?RUIn9`DfTuAte|da>uNx&hweEMrXR&AexFAl-vk
zhWZrz1>Z=8Y>^J$;rg6mp(kR61zn{(uVVjF&<5UP6CE{C?u71^cD+ey*envRB)mT%
zX79z#`$X1vL_qu=#{O~0-g*pIv{^%8SUCDlX7u?touf=jv!6P=y9O9hu%<yfWh#g7
zg(BBl2x3qIs=ZMqg(5cEuJ*|}B!dTUh5kC%kb%nPo#zXyPy4X>5pR_~9E8Rj)|mP`
z=W_pkQxsDqzNj4U&TIJ4K^)KfZo-*&Jmsj}!P&+B$-OJQ)h}H15B+9+@V9KPuj&`>
z#hmc(Yd`_lZu|*+)x-5dZij9<Z~r8%W#eS2=!f{PXyjO%567G*(+m30zb|THNXsLe
z$ul!4-ARdzcJ~;df<z&a&DgW>s=uk&Nnz9^0rq|}0`@MelJ#MQFa(+5!!xOi8KO+e
zoCjSRWQDYjvV@FI>{7;KgV<bb5S&Ypc5H0XIq$ef&FY4QAei#V#+7EJB2=^~qhj#l
zRj7&r88K2UD^b3xqJ_UGlga6&8qw)-6ha7?lF{jjZCN`88kyC5IHn91b=s6D2L{6w
z$SH6vs4<ZT!m)2pMx_}ec!u<43?7Q42OCP7rS%JyL-0lrfdjOL4WRPpnI2QHcuxZM
z@6Rw&;2664MPxcNMihGy%<%`h3v5Q^NjE@eJogke#Z>i;b7d>0h=cFSep}npu#hw!
zxpajKcxmtONwnEW6=C!SwKAr_!T21S=^C1C-Rbswb7O$NsjQcY_RfmeZ;3vbex8*J
zyUqTS<<4};%aZEC`1<~9jvg`K*4s7}uB0=Dk>e&Rvp9*slXHJYj?<C$2MUoA)jsnO
zkVHX>$fJ{CAOEjEFu3hqNh(||#mw8`MlTMPaWY6gkK)Wf(MbAbwn+{MnPH->RUp<R
zEEE-uDgpX#yrFUA!}I<p-!a~_qFSsSA>-K{t-8xapUcLN|3;0afu9ho1(o`T{X+V+
z1>T|x5{TiKglM)M!5ITgbI;&@G0#q!Pe^9!C~@U+I}HSj+YFJUVJms=OC(XaPQeHj
zyclV>ycD?KNzE!pl$gTs&!%cWTd@V0G|ml@y=PY7s4>TOj&ZJqmu*Ec#ys^Q!iX$?
zXNa}I9mL%k(*G08E*m1zr?*y{jC?tlFgQ*bbfpF*2$T60V_6T9RfLt~at>$$aZk2}
zKFaswd54t8)*7e4WsoK^tePiL!mzFlE^z657bMpywqN^;8J2Ao_pF7YufeFW8{D!6
zPmQ-cl=A3@y5pGlD#QVAMmkCj&UB;$MoI83!Ik&A#l1qMSe>pcBiB#4O^rU-DewQ#
z?UhxHX31Szk1D0W>7XkJsD;4cexxy6VN`_6nxeBEH^_V_1OS|LItTx7{XA8(!g$a*
zCHxQ}q5lg-40{j%?(JC~j143Hn#=JT+*6E?uBa|nVcjivR|Psn6Go#GURHdq!bIBY
zgK_chXSkd7y*O#0<?-dlBi>vN$Zu;S!h4YV@^>FgD3NK76_h%&L2<&rqxT+v<@v=;
zATfFL$WVMIw&*|=*0*n2clYx?G;qP$4hwmUzKnW|g@oxT+-SLLFh@+sV|W0g=&%GE
zrlSPj_-e=FROjBAy5$|0IQ}`9*>U&Pik-YhH9{<afq-_e)0dyDB)82+wf$w)<1mbH
zGhTJPaznKH`P8c`+x?a6R59eV`CcKBqsQ?Nq2uJyV%y63Y1_@XQ-aqG`eOCzhs*=-
z_V$YWHi4Sq%Lq04FZlusKm6{e9B25P+On#j4dV-~JFu7?RS2pNRQx|`p017LulD=}
z&RO`c3Fk+V+6lU4wubSVZbO3QzjF+>!&ARZ$8dnm&eHpkqX}8KsgSvyMM~H4&)<&q
z?XpA`s<bu^ZU>;Uh}G??C@SHhcp5R$d$k=AF39k_X{%v~Hf`lud|3ajV4IP~;+D~A
zL)gf1--g1e0D=>Y#)3E>hXlM!k(WGnG{mCs*rT%LZZ$OLn3648X8JTv@Fw3n^^39S
zo;(_YRQ3=b+x(TJI6;sOQq*v@eFZ3;pq~Wd0Ipu&q900sk=`bBv6y8KF`<pqsr}U-
z7Yb*jM)iPLp<O|AUBaB~JE@zpO)q3Xi%B7zF;W3_@YS@`5~s~j1es$*tJ{ikP!E2V
zO!_wL6yySnWPI_W>DJv#|EBVf@h7_rv&#{WUw6@_zE6Qut2K>3ae+pKdi~T29qb4-
z80Q?_>lUuLQomiEZF%30Vd|$x93XlI<5WA&p@ccR7^Z)S`}(M=E{$<%g+&FwM;jW*
zp)$+sYJ>N&ru*TKd?3COhCy>$kTfwMj5QCgzs;BN;yYig*<+PP*N%%nE(e>XN~DY2
zo7tlTNj&$4Qr(jW%W<K6>v^6u0wMn&<=q6s{|a690{{!P)I=6WLBA0A9)R(+ZgM7i
zU!9qZg+Fq#pHzYEHRut8&pM^2p=s;DuI<WoI`%wUOTd~fVKD~4SPJiHD{}iBC8rmC
z4Qf~ITTyBsO0lIK;etGt1U%P4hxAId#(r~$<k5kTmZh)+21g{szhg_bGM@^nsHt|9
zR()Takb8SKLV(wA?zfk!y_RX6_ZzceiI4)0Z<Qb=t5<#nA&Rzj^PsEOycI?(>Z~=u
zdlPPf_!lUX9C3{9+0rQF=b4G`Bt55O5YI5gekCgG!l_474Rxy(1-+o2hCAVmd#sT4
z+piQ<n(Np_CL#FHgZIN0HntXYeVqCm=$tlsI)zxD@b*aW3W3?@$m06Fp3!d@giTi%
zjZl(+bhIpsjAGX*pU_Ujni4@rY|Re631L-oHhjw)nS;qRr@8JCV6@XX9=8tkO;cEw
z`~JWc&xrro={xBJ!wZZ$LV@&?V&vl@dzeS(K*OZqICJY+H;h}x)pHzi)}-r?#%@6R
zw}8JuVT|e4!rQjZ$YcG}GvgSkkH1>mBkRR4{nTsvMNe6A=V<p)ExgL{Bv1a3MMV0m
z_g92aP%vR0-ykSJR4v9fQv2(}Z>}XTFVL6Yvm*?ho-b}K7Bg#4T)GAaNGFJnKMR>(
z&3Cqn{Qu;7w|P-+9Q`Tt-P-s47*9C3I7M+f;9>B|MpnV3;sTowwC1t-@b)!^L(_3{
z{m1L!OU&7;E8pu5%G#We-yc{uW;ef~G{BSQjBl=I=(4Px@pWzB$LlUwTg)y;8=CR?
zHZbl{Ej*C)>$H0oX5io1UVF}OcbPyV#%&mbmJIW+h6O$5-$=HSD*DzDX(?nhbs(^X
zApsSLA)m<~Lg4*Y50Y2>9$(IeyC`yuT|u0PFy0%(MMI@=fTuxuL?R-9ASYp1?xa*8
zt;5eWQ<^B=M3F$+G^2457-Y%WOU*n-L}y6vNnJVLkCO-1&e$uWiwJm+{v`95I9iS|
z*~qJ0(kF>72`5QlEQrw$ArNcKv`42Tm&;f3wyqx()ls0;Cp$AB04tbYb{R)L?CBE_
zV7;vczl`{L+i0WP9vjrPms6V7Q_M0EV=C#YUHE<oYqEjI4Hx+&CHYNQA(9b;)T1hN
z+@@`KK6(_gXP!uRoY`mrnWCmu5g!P`j7D4`XCt_TWLn@7bV?SHeTEQ-PJJ?b>+4!-
zIN|yrdvB!%!f|lTAcVaC$tST)R3l9sAOkCT6afg+x^NahcPet{rGJaryEEDz`<e=;
z^UId5q4lh^z1(>bO(jVbT}l@)-c=_0p+-dKK7vX=J^EaC-@s-zJ^Ao5PGFzt)DL7=
z0{fPP8UH5@i+RQV7m}KF_f=Li`ae%5tqNiklfj=_eI`S<5L_j=%e)vA&`|G7l!#!l
z5jV}+2=}I&BEE{hnC(NAOXrS@4{i*YOSIrE5uY`Z<}m)Ti}qA(be}=XmdjjCM*aI$
z9Yw>a%pQW^&>`M`J~=7K0!=Fx11CfB=`Af{BnylbW-qBi^th~(xO$^ocaxMl3&O5T
zj0Tj5;?58lJ1T3`6Qqfoh;X`*ZGWX1U&^<l_$hR%<Pl2gc~;!+r}1p{M9HaC>RC=Q
zP3=Y8B60d9c)O%r3)qng`+YDIf`^3sZIfr|+d??&mXrj=K-3u(YDRjY_EU}IRs4{k
zn_3K@brY3A-jM^&Ao^EfCGTAkQ=Y&PINNV$<}!e`Wvgr%g&k8S$BhVp=3UuCSD_D_
z>DyjGJ^9LtElN~by;k%oS@{^DyF7Um$uqKYyr5}aXk7RN_xT-UtDi>S4pNJZ0NGE3
zem?6~qYc1Lh?gLwz?GDQldTQXW_$-r&V9Zo8`Vs)zY_jmguP{0Ty2-FizO5iB)B^i
z?i$<)4hayP5Zv9}-Q6`LcyM=jcXxM}?8W=_*L_a!?sI<CAE>Kp)mrnJGR8gmv+BVv
z+0i5~6lbVb6vE%<Mbq9Cli<2MvNOUhMv!}f*G6kUl)YD9qd4NW=!IYuQ9g+~zZRBM
zlKbF{)kM~Y$=7n6fv8JgG>xR}FOGofmW^qWR7Uc=SWG-S>)-_6zD*H`4$a5Sh@fhd
zw3tpt2Y4OMohe_IqKxWcJV)6*?Mj=UD^5ikN;*sHI2tfAUi<U=+Q95ZbdTUYJ*!&!
zg__|h1{h4I%{4UQep{z_?+85`GI}$x>||*dwkJPT$AT6U9&{V7<nvP|Ly@0pFrs~O
zHs+IN6?_N8D2$&Ji67XHty9ha9`wzH5?4-!p?V2SGYErkD3H-)oUFG{5Hdgo-OAf{
z=_?ga`QGvJdu-Pa7*&RNXe@qX6c$KS9|Av>Wl@QrSedL7-HYgT95P=}W|<Y3sl|zV
z{LyLc;&Ho0Afba04fR|Dw3C`V8+n@<Q|LlD3Ouz#?I@c_L1NNr1MG496=GX*{-iRz
z<MW7c($*~mg8k8n15{|RBq<ex>=MiN9qCl~@MP6|p3PR20`*l%j##x?8FG`{XR^)o
zOw5M4UE4(OIR-JEC3QdY|LBhfht&57U01Zn+0HSpZ4xg>!!hGVH+xyXcVfcy;XBjt
zVy#~miAxMX^nehi!i=qd{hphj;BUS68|&INx95|$k1X~om4(dZa2=8!S8|ICyb0B`
zpRE$dA~QUDye#G5^*i-?@C_*;6z(JCd3F>e6*}UNONP{Oz1I!)`VbC|wXs#Vvy;*^
zMOWQF8P&${Q&No#K<C0F@sNN1!ec-<-qHW5mFst+m9G=yAOxM}1Ork+*5;tjs9R6u
z-VTihcWY8bi8{{uganZTAV>|}ufw*x-%XL0A{xN%NcQp7{5VyrWPo^;Q~o`ZYU!>&
zJ<KY`b-ZnGHO4(EHy^7|In?Z}!5Z!mNQe+RkoU#z%WnFxL<$wld%c4QEUaA&XRqui
z%(=~QEVUmAp~;LL=smI&-P*-(8gVio1Cj@z85545960QimKu6e_xUE0_CofYAcTDc
z_(UgdLW`&>Qo~sW1i1+W3q&>OUqT)WsEybo3#LVSOWCgG*tpd2|8d{^Muq&A*3pJ0
z_NyWtG~Rv4<*pKG#_XOWBgHFpFK*LJMveT;j}DPsC!*$RrdQ_gH`dk6k5{>i;<U)(
zMCtxf9>foRmf4sykZy`LS{(c|@Tk6v72a}wCM=)Zu=@;p>?tN`#z7AXSRWGvnbyPv
z@y<zvSBN^}UqU)??aB^oNsCQ7p6g;==20MD7{ZH7X-n3y6nAfdwQaehlxufA89He)
z?}*8pO&SVU^3uu3H5zO)s$VIP;9;=ULlhFv&%ds73ze{{`6*gmn8OOZ$AQ$Qxu_3I
zvzPQAKEE~|istw&&60Wn+4hu_&qVT>mdD(Av@w{dSuH$rJ;S6K^|~{U3>ndV6LDJ&
zf#TvoZElJ)7~lU{`fFPS!$Mh%EXZK#F_b4)jj>xj;SMb7CcMvRky+DvPE+OKbxyTm
zCS2kmCKPl-#_LZK3d`Uw)9ST5evPIp>85||eMf6B>E8PJS|dK|hWii0BZ0Fs_9v#+
zgR?NR@P_k`LQkP&rNh}-W({H3Y?saGH&YMjc9B0}HdM(A{5D}u+GZwV3jzzLn+lg$
zc8c7sjh8$W(9H*O3sxuc@KWL^91yf#!ppBq_nRFzB__CMA2*Y-U$P6fsFBSYuN??f
zU!>6G<V+jssea-}|BcW*sf)naH|=Y|2$-O{VQmXxFynD_3fp72nMYlzjuQt}O9nu^
zm#`TS*^}I($Y>CU5RyoLPoRfgjbj}k+{=t6TzxFcR7~~xqePOQ91aD<Ezai85c?mU
zrDuC~kre1?uGRiH;mPY}5uY>OqopaG&ZvhxN<A3(_Okol*rMQCtDRk~c6=P+EPbJL
z`I8mr2+er+E&D*~Ymv}ke!#m-I$;+gn@)~f{k#!U8GjQXzcJgE@<d$DQH6I&JOM%9
zT=Ws$okY7%I{tBi*Uc@Y;#!y--TT&Xlq8P>@-qXYJEAO~>u(T;!DhTigq$ea;g2(C
zqqpgM?<q65MftZ{nazd0QX!9#L?>9PfKHGC-$Gdab;q++Vi_v8U@SN2HHzcc62$?r
zIjHoVLbRatQ$-ij)y?-x>^j{aumxAY|IGprmZ^6SZXD+<YrY)hmtABNkX7r?qfSqp
zoaMCeeCQQ<QkzS#5-=fE2W0<S<OXG!1`rjqTQZ9mylYM>lJ&Okj67bgaJSk14gTkJ
zA&@_};veyMKlrK#TO|iH6n<~h%24?=S{d5;-Twjeg=ecFb4ZFGR9Ax$xXjoSW8-t-
z)5G#~-(gIbz~UWWj&Ap5($^+@NesP57bOR=PabWHsElrFmzGB}XOHPvfn%#r6IR;w
zHW>>c!hN#qv)_xX7!GkrN{YOC0itrKXYrS_`sFp4Gt_s&sMzf?Q;F)hs;$u2RZ^Wu
z1RQHuZ^7Ai-+G2CQK|L&Zh52UzeK-+c4FS#si5Jwc*r8WRjXtT<Brb_hr{^bES8-?
zBA*<!s*jj@iulZXQ=J+0Os@D?KCD+A=E)n}#P;O`Nsg^|&Z?<YosD3u4psyVsNlSS
z2|ZkA>mRbj?-4HX-x;GanbQ7nAtV%Y@qSu}hwUa4!WI~*u^iiMVPGIQL?(g?_`r+=
z*G172<n@&fZj6_K!2hvCta=ZQc`;{%0_Zs>&y6Pr%poEBxy7eA5c6{GW}Gjz!{eib
z`a%v8b#`r~I6Dc(XiDOhGmRxQl<^`*l?ZGVp&*(>?PYnj$_Jj|Y_N-)k@}0>hmd6Z
zPdrq<O6Jzr82>s<iZ@#J*pR+tu(j|@p8lJQ==&4GqN9xd$sjGP{<%gd!!rw<Ieu12
zXsFetF6Mj=zUy*JV)i*nt!zyy#V-nrFHm|(EW`770bGz<UdusNe!dX!%)t0l;aLJl
zn78TR-ksA1ea=$)TU$LZLQ5ZKx-@FU88`%4!`O3#{y8?FN-Hhgx>@UtWVB|0D|k$8
za!=&sv9y&<&G5;4903CPurU0y9A%uu%W!3x#TbUxlMtT71`ndP<Eq=(QSOrz)nb!3
zlCpqPXlwYWq7oAgqK`~i5&xtgMur)#uMHeDYvh4ws&T|dB2~ymQH_<JE9<^L`4gIr
z0Q&1^wN0hSdbvbfCN({bf+<qV)|<ji<4TswX<_LBoypu*CiO0<=3e!zpo<+II@LuW
zX}WIM?owQvE33FBmkmN5D$Lq(iwp!qt=Bttcn5oPnr!-dOKvJA*4whApbYlbdjfW^
z7LJm9DjO~(BpA_p^Qru`HvT!i?R1_=hAm2%kAWOf#AKs13KfZY-4hZnUN(A@(~Jxj
z4OA{RrDHoT%c%G%l3n)57rDc_eih_$RfN)B6(MNR(U>nCfHD#{sdSE^z{3A5(YaZ*
zG~^fB_znC}ahFY`7{m>H<sNRS5u2!kM*KaPIU9^pr^D-#JM2wqS=$qsPa!eb*{zY3
zWmL_GY3$A^+}Ql6nMp-3HLW_Cq_4TCw96E}92G`(r%Sj0s)7l3$;*rRB<p`r&|ru!
z^a=M}jS{>xyY{1IlA?ae7#z^rm|F|sj~e0}R_-KENZJGH5ptbgl~%k*B6RUVp@l<n
z&u#g?M5A8qp+@q2H($QcMPvb&Rl<jr>amp}sI`3TDnuH4&_@`Y31y!`&aVP<eYE%q
zek^v7_yV3gmNC@+y3%RcM#8W0pMfwic8P_xgXDcjz9Hs?!kLtKX>z=+z0AyjZ!*N|
z-@~gN15ffun_LDyFwlQRk1h1a;N1q_UGV`bV)7TI7JVS)vGTo6iDC()fFlBRC3i0S
zwUUKwE=po^xDyo==_HqLlk`;}Hk75=(v5tr1)@a5WbNL+x~rd{K&-zbu+4rnQyV;3
zf2H^Rs%7N-;heDQWzfJoZz$#npN@?XWWVXzsl4%R@rJgU8T1Z9F>pMPG>0Sr+5GRN
zI0P9bOxdNr#n7YQN&fjTP_|vlu}KSF42I~U$Cg5_53s6Yyb|`l2UikfC)EaWekGxg
zF3jku5jYjXHyDBr(K$xV#4`}X5y#sO-dp_sHkAwc_`W&PoL8(O{<afU8#ho8n~~&r
z)R2zk#RQ*UYK%<>dd#T$!v!zN*pDS+=10^#F~rj!^oj$Xv}K;lUBn1obI{1VOzK8<
zI_TJ3^3pR30$PsFs|&p>=>EdmiIHoQV@F02VZZ0g#(qz@)W+4~SV37VI$R4K#+4jj
zeW4qF0A?BdjU|BMk>Ul^&8l?^&drEN_xXK|0)h4cq5M1CdrD!iYUl|l(W^wCAS4mW
zNGTT-PF0-b?rjl7lq7A}UyQK09%|2(XOwOEkOzRTbCBu)jOaFX+4X{osjQaMb>ADC
z;T{VLbSQHrU6xUDCSGB?@sk>5jNBX~!;O)t-ejAR+yk7v5z=MrZh$CLAIdwC%8$^3
zG7FCIiN}DfWb$E01Wa_EhZr9q_1@1->184_qKko=5vCGL)7t0Gw&OeM-52AcE?o((
zXbay!TPcP{z)Dv2p1RtTJn>7L`3bcK2?`g9r1!XB-*3VVn0a!Kv{*tJ3(xMYCPU!}
z2(Be3dK*Pb?{i6?CKgO8QfsM?ua#UA2<TF@r{Ei5ytGybMwIQCvF`}t90JwbJue^E
zxIB#1W331*G!|KQP%Nx$rZ5V%B#Dv>TYIYYG!OPf>MLmcC*9Ek^0R2^EGoXd6pa?6
zZ^@)y@MiJH@ICxdEOSzeJQExA<4m<xD6{#z7owX+bOpwyypEzP5mk#aJCDBX$lxa~
z6JVq)i}!mV@HKoC*!8@wVggY+O)i&5zka<Oa1=eDm7`|TNEgmbu#JSL1WWB-_%>i(
z5!$5SsMfkKDK5JuUK>jci%fpJBBARZ5&~R_mJ<Vo2X*9AN^NhAMexvNUU_>H%9Z18
z%rI4os$rV4ff<>vL@kp^>x22068{x6wd!(=lWJroIzo?o3HsJx{uu_V*UZ6u!#@<B
zkq?mf)WZfnCw58?E@c4*HXEYe*mp7-hkbl=ci2Q5UVm;eA>%!@`?>9CG>`NHq#xD;
zHczDe6Z7BcMA3U*QlNv@DVXH_88M9ZMb$Uov1&A`t%Z^nAyE;2yykl;3$6l;f=7K6
zd_hq(8bO1#kl$^FA4!P#gLjic$63pwzdPXHm5jSp6IA#RC5#+FTL?81w9oxw(^H7e
zXTw#++>MyrElN6%=&U%OAl~(9)M8QXoT9Z;YNbY99^}X#p2{a`cVo2Bn4BP_OlAz(
zW80lL50;j7=LBUj_e=eza`_I~`Zi5%m3A8i7xE?)Wib$~HMk$y5IQ-iwMx~>3@5S4
zlP=x;Y#}vPeK?1|pFrOF21Q2GiZ}cF(jt$`zvNvxHLqVC+(9$#gjJ3xqrMo&0;UB#
z1^mKmV5>yD-enIvqH4%vfQw<%>xos;33nE~rkO|Wdeu*@x>vKu!>wGP$G^v&vtPd`
zpUZ^6uTe;hu`--q{lp;a!N@b_ObW={zkKpc=}QpXT6H{OU4jr)eyz+~b8Od{Z=)2+
zron*v9Pu8p%Y1geV3d)XZ&1+`p^%Buf7WEVKj<L8fkE{}EqowfLIdq5wLXar%Bd;B
zn($^K3tgNBUkAOxVtx-ftcApcGo8a@!z8WKi|r2M*tg(3JvA_@e04NJ#E@v5PD8NM
z5NV=L4td<B@Rk9>*k+hcLs9Z$VzG?LWND%msqDfK!B6$xtBOqEZ0Y1py~JI<$!(w>
zinUt3h8@PC;kN3pGoQgOE4a>@3AU)Y)=0RgETSF$GNMpA{ppwJ3(eQ0&)dqw&ov)+
zs(Ak~xr1S$zy+aZ#{M)m&zXRbjnXi}n!rH01*;AzoCU(SUl^2!?4JmFk80anx-$38
zh#;ug6lAs$E#Qwqz8Zkyy4e7WwGZ;S7$t+s5gsJhOZhv*k*b#br$9{-WEHo}!8!}l
zt0bVhmQkYAMT&wz@}sdHF{~hU$>%0LhqbGaK!p&&LCxNyjTgNS98Yrs_sZB9#FUb4
zWfnBRimQcB?K&g>`PnFEmKVWs2_<uyQ}pem8(#^X3NQ#3i!WI#dA16KZ)Bh2iCYh0
zrh+UKuLb)NHX@WkjM(NiLn_F_L^;-HF87C*C*FG8=uk{-IV0KAfC3$)87KLeZvMGe
z3J_wc=6dqzv_$Cam&yl8+c5<Cxx+5B3bbeyV{XS$okZRSR;GtTUXKWm@m_`B&3Z$@
zg{o9Dg3<pZHLVFV!yI{mkS)x~GDLH^+ONz*U!^X#PJwQVjmu(-J!qKdBKW9whnn9u
zDl7d6(}Qn$M(&x5xzf?2?acMm+UDB*l?qv6?-2$W%EGPm_|S;%iGSPW3G!(0mj>JG
zioxF2s*M(>mg|CNyQ}3yeQ%(cqVA_(ASiZ>0SXed>MkUJ*zz||WTYS<EjoO~asyOx
zk7{ZO1xH;+@DINVOaa9t{^NNYjL@yLt7q~*a3jW*P{u=_k45N(34Rf&WWBkNH92@f
zb5Jkl^SJZl<oO#EQ}vS1)oCY4+L0e}K}&C@jVz+mk}dy0TVy?wPKC;TLI4k<|Kwdw
zK3mx>@O<8d=K=*0WS;p_&Djn#QcD$?Q3gr-BgqyTi8Tn#A*r=*|G+_QP0roT^Pmf(
zu4A>`2M9<glmzs@N!W#7{sE7m^z%jL<_qEOrQ1b%ZjYg|kg73IY+Oi!%lM`o=k2sX
zXO1&+i|r>xd6Acy)SWC<CuM54L4mT>9*Q3Y`;l@ge!qL&tikBP;T;sJFPsy_1s#$s
zcjxh<eEiG+GBEKo-_ZaMJguh*Z1|&n%-bRn;f*q;Nb3f<@D_=_*fZBI+Yar2MD{PB
zEZHGheEw#XF#~qlhX3OM^FmJek&W-^xa##|0aT38K8Mew514I33Pu=Jx{mfVp=qr%
zEFT<j444LE>L4y>{Yk^YF*Z7b1zq{vN%k}oj6bQfdcFlh5JF;lUTE6qok8B!zbTi@
zJd~y?gO1$R`9^2xYVdTfNASvSmkgjh2okUOpH>gAIUttJrdq3xTIN{JB5Jk-)@!LU
zQ~(K-jRlW=oWw-smg!OhBvs3nSH|o-d!rTAj*#v_8iV{Ix3a;w1^|4?vo_Y*-HN0R
z)uk$hf?N^5_RanJWtGO{%|IfE2vt8e<)JTw(q!;2L&^Ue40lcdr8Y*^FJV07dI*45
zZZ&vF)q0=^eH6jbbL*&b%fV#my`OQ0+)I`hocJT!v7FZ52t|y@!uW&ztutyBq`}L2
zK?I~bR_M5*;DVuov5jAUZcsI{NUBNrh4E2+4=Wl*nfp6_r=NJEwEv+%@@2g}?=9|#
z{B)W;qt&7U)}@7x$5?+NUEb#FriPPDnRkr-;|CY|!Q3Vwfx+a@44KNGTo~_YHuPaB
zo(KHOS8-H-9wk-Ku;_&F<oe5?qiVd4hC`JVr$&!2cVch-ATXicYmty##JKw`Td%T5
zFpjh^DYVGiDR=%};KC7tf8kb}(P3e-P=b5o$(MbNRONbd_k0y1(cA!*B)SDq^57cu
z)cG-eX*DPXiR#89q5Qrq^Z!xq+_3wGsd=R506BSzKlq>Ubwty{?!!8+dE9}c*ydL~
zpH5!+Vz4^3fPcB4yuFX?@OE8)C%nHAv{mZ3<3iGBJ13tM-~_wzP0>m}w+rYQ2_vo%
zubp!&nQ!qmRCvH>H0Fl;u_QEGp?h~)Jpm}8@J0XXwDHF*$DUfcOWx5fabQ5UNEmA3
z4vqb8gE_D@!zLK;34J)Ps03&V;-AUE-P=ts=4DO_r;j^>YncG~DV%D|euw~YW&CcF
z?K>^|JHc4b{kLh79{a^tgV(LO_<*C`LDK+l&ZBrrOE#%h8cj!Y&yd&EbT<6WUwgy1
z&kyMGmRK~Po6i=J7v~*Twk79kpOoGe2k5kHVn%rIea`c|t+PB``rGf%-C1+O+<)`w
zT9NZ^1aG;sJg_MhNlWu5yQAGoEf@8m*F<tsUcI9d;Tv<yyF>O?BgT{&drAri2Z{s=
zaa{&JWqT`hsQ;f4?QA3jLN`}okfYh`BJ-ce|BK}3O+pM>=XeNb9kup)Inrsd1_{09
z1QF6iy`Z-Kkd=*a+F4l_+Jy?US&l}=W$Q->h~$4XW@L)DR!i7gY>l>nt`P2}ArOO5
z{K5rrrU(RNLB1$ldm=<0*D+Xzgf`u%{9L~GKt@A1qw*WTG!%+hhv;TrlECax!7yT}
z-q<|NceRNGN9p1UC-=&uX@LKH5RnAAb-W{~GymzG1m&69es)|nHd_bJFTn-MQm0*B
zb31E^nC!^&K@k>0NBbcw_Y44hItYM@j~`@ma9vNWfhLLDL)ZbTy9H=qVODlFCn>z`
z*k>3c0q3UP*<O<3sN`iMipZ;<PEsxGM1<?hOY^eaEK?Hb^h~PGWhIGx=kSw|X8$^)
z2&zS8<4~Y@l8}UZTn<omEpeBl9#6JL0n)f4fx%sB2!m9BWcA6Y@!>t#=>_mNl^qBW
zKjzqu15(?K1P+GgbKxk1<vWR1u-`L)aI^XXv)DafsZU0cS5Hr(h(Gy)1y4%yHFr&T
z1K}NL+Z4>*eN(K&u;|FF{hgeETLtimBoTy3=w3AcvK+MNV(EN(YH@<#g}I)8g_`Tq
zLP@&^`XMXRO}BQS^El8u?^-@p>l0YZZP$}V#XQ{`95KHG<P8%ODL<pC%%=9fqw5v|
zeE4^KPLKM2d$!CcK6%TV0ae?Rkp{xqg)#?*vWX!x>~oq^>wW&|kv;t=AXLG)h+E&=
z+?fBsUtZyEZEy|N)PG_N{~y6WxTM}Fr@3Jamx;eWWN~pC4r4QNC3y67?SUdumC%qN
zV<}-mK`cGv)b51p`G@tOER^|JOGyxa<@1lUdN?#nHfK7MKo`{g)~C}e?e|;~#{PZY
zZ2rE`t0*Xm0iq2ZEObdoLF@1xI0weL+Q(i5Mh3JS=Yif#VIIXIxueeJ?SH(k_a{CO
z_H9fM3l0aUK(zaQTW&bY_D5}HKl>aHNsd^yRk`@nG8H@qK*(^L61@F~ZW$<KmSY_I
zp5TUr)h>H@2ubXM+gjyJ&l(A(^fm{{9b#Cz0|p$B^#sm{PqpOIxhC{+RE;LZ_UUfO
zJk!@zno1>7$U@FTJKPek?YYpyjk`A4g)<K-8m!&cePExT!jvVWuZ^SJ+vaq<T9!j2
zeI4-SK7uup*>2+Oxj!%3%Iiq4^c2JE-6L&Ec3#S4^##Z_2Hl}phjzu*hW8<%zmJu)
zQoR5sHSF-cx9EQe5RgU0&_WbWJ;NSzjssv}ULrof;_oaOEk~cAZ#VR+W)0azKJp#f
zWfqiX$x&sw4-6GK!_4#OUdk@HBD_#Iz}e1)t9rYfJx|FtniLghu#uV-hGC7`D_gGg
z(BB{b65qh|yb<8M0npX4Vm7_a(#zLDQSx+soy?341ApfMBEV%&-~of;)<NuJ;Mlh5
zz;|vtX-q2r5aD?^Q1w8)nkiQpyXOCRd%TTtXGn=H<Er4y)akiYY=H5LF)Bz`Z-9Rt
z^i@0@8@1t&xMYw4OX3-T%o;;GYV5@|a~@JHQHIliCtaIS(HL<!TU|l0lTNUt9t=z<
zuYWBZC3V)9cUo|Ao3GFd`R2n}R#q7=|8bX6>~yiFI7%8vL2f-s7L*z<H|bGp!L<{w
z{HzZXl%(bOO-W&{%4n=)X(iX2nOxr^k_ztDR6;O<Df~}Z0OwPjj_m+Nh)cdp`|H8F
z^g}<^4i<g8Oq`)|Uk4iW8h91CTZ<<YEGy&(i|qJ}Vi<|f{b!rd{1@#Ss>ZwZ0vIvk
zT6q+Tc-y%K&6}r{Gfymwhzg*pe7aLRZLElR{{mi$BSv9#@QSf|7+SGXM5;wtu%D9k
z$nvwr)WGYew%*a$74H0+>lqN=*J&u>T?)N;qcc=<R1<49)sUp|N4Kyzi+OfNj&LJ!
zdUOoerCsXm-r^m~vV7AW3Q?`>5>lB(?_!&58m=nm)=@ZVdwPk9DDqPEh&cfhQ=E32
z431%aV+u||Tey<1;tq;&EIl-hD&Nq+|H}LO4+yD`0Z7+mn2|ofE$*kRL|+#!cGBM&
zNznJoPFd-m^^sd>XBaRnNxJ|*D|4R&<17Q9xNlW@Pp#%aQn~f;HMT;ne6}_Y6E@yK
zfq!Fe+Mg7m%@)<c<L}GeOSz`Y59vD18xb3L;T%653Xnm;_s8E#36<$DiSag<+XKI9
zOQP?4@Byjk_dz2YJW}r<Z$N<dpwmTlP?k8&XzLIsfl0`%f1s142(@lB%?3&q7MxnQ
zZ1@j0@c$RQ_X{@Ut>2oi--l(xG>ct6;pi7UtLB)Q$F@$f>SIJ7!w3k>N3|o7jakBx
z#_uZ5|I7?inE@E-c(_g`#>)TSRf7~E_JTp;*(W}m)%m^-xdHH(qNU$VUxG0p^VWx5
z9H&hScbYd&OU$ot_W$Am`X~_tNZJCyiOK(kmHY4K3;1;HZ%m{2Ncd_PmV;@~(P}eQ
ze_aZ0c^EM$kLg$QB#?th+uuC=EP@sm7QbSx;zxboAv~{Mfh5-e_@wyQNg&Ca_Y4na
zL479xOWW9Frs@$Js`R~&%h}3?X(QvAY2U*9%tvk4v;+WuC?#DKJk#;NedSOI-J2QJ
zyAWb>W|sej6Y8@YA^3@nB#kvEVDXnS)m){%gsQUg*6vu=*?6NU0zHv1Yn5~o!>h!y
z%hhf}PZ*X_#Aoei0IIs)g&M?b*E5uA%<3}V<Yc8Yc`)^pGw$P0+QJ!D0?Qd}vy+;+
z+n&emIQid|&J?uDW+qhyP$eFHqh)v537UI^Ez98-`YXdyYl$=m-S&&q)ebGNW&4eH
zc<Y4`cw2_@DaqIzr;rzJAFz*I={Uz{7&O;+<+3&nWi!_k>B^!IPS0wN<_G!?mh<Y&
zl&5+}GB|oh(s@^B3^w<q9W?NFH1`TT+PZ%|Jd3Gb-Due2xE)WmB^@<s5^)-Ie&O^u
z9G+*gwUbKXFY~-2+hO6U^>|R9D|Ga<UrCiWT{K+%dnvs%wv3~^GF_=-=y6xj`CGXz
zv+OLixW4BmY$cyjqVaK2>>Y*dvv!K(TBWoqr`7JYOjFi6=I{Xj-8SCAVpH4Ebg3KV
zu{o#FA~~ngVSe*fsgB2|x*q`%xc*kG7U5=3t1ll;1F*E3oNR{5E7H?g&C1fQPtfar
zNI7OKJl@>eOFw$G39(r8dhIVp-pl*B6}0Zp6c-<@G`aQW{wmg}E}E51<5&VXp;I$P
ztBM@oGkL9biRQ|6kU1@vzYtMr+}9heuws|~8GJ+C;%AAMHCXjUo~(F7ws?GFT`(Ht
z>66XmCDRvD;Xf*_w^e;=xjk8WxK&ZDs}>O0&$eJaN<$*tgC%lbz|yIc7)^RfFV?Z3
z^=f%8iIG*GVNcXq8PQ-{E3I9oDbuNIJ$<bsyxjQ)pfFia%CgKje?W73P6t`a89x68
zoOLhO<y|Xy$Sa42vbb3_%NdV|j$udpZi$|8ezo&+9#4laa*<(%vKJR~>Spw9iTW0O
zkH<hxaCyhMwAWwqU}-mR;;H$v-yossp;c<ORMryJhy9s*?(u?w|8<TCm|s)9EFF#O
zrJPl)jyxOsJOSn?*0uRbTZ#ZcL<sd5f`*Xx2|YC^;D6)g`Xq)3ep(nRXiz~e90HJ9
zFY<Fa(XJg#n^f_%r@3NbEQs^Hh!>g{<S)DKqL9$02M#r^9D6E@702K+!C6DR&B?`b
z-E(<DRvO<N(i8oG@0>47<<C*!2&1fMUcLU6uUHto5<E9yn1(QYc@EZI+LEj68I4U8
zTCVJpd4>9Q={s4Os0x>UwmWl_WbWVaw}p6Nl2iKAYhBf26;-BBU<GYA)Zxc5M>BR>
z2_8J-zvQ@l^xE7blDOa=NO<4*R{@e(6+c5rHfS_rQF+8Sllv-z)2J1X&-NDtbC&Jw
zk45u&OF+{*k`l#WmU@-Ky2tHFveOBIysTT3yAjyjg(oT;yGchBC-UT?bd9Ht5DPn8
zp0A8!-FTqS)4WIwFefm|1wk<Ixj8xv(a$ZZx*tw|n{eAqQGr(r9R4`xI0;r2F!nR3
zOWiMVnp-W?e?ls=dm24G`lX+zRML3(`!p|#-`1?GCg5niA#BNgiEQP0fmJI=PHUO6
ziQrhfeustVc0Vub)~pdgxIS)aIj!uRAuqc#s&abOs`?7US)TecK6`MB<4~kW8`Zj-
zE!Ns~oxP?lJ>*}pz(YD%PCPf@P!ze&wVc_urVrx;Gsb@zU43yijGsJOc`6ULUwc};
z`&@?7p6awaT(I>!z979168e2StINMEfBzHKn<iNB)0la=ZeZfqD{(=X9r_jku$kuc
zX{G=x0K%*a7vmEr%%w#3Zh_e*G+7BF#z@8{53h^1yJ^8N6+dj#QYT6g&PBf6voMW~
z#&4ISNT#5IIf_v#ezc~gWmJHOtA~TEAGUnHLDa<9Htg&+05+#<bGLF@_gOOJO>(%L
zal0B(l*Y(oQRT%dfZ(=`THEA~(_E6za>QYMrVJ?Xy7Mfv3&L1Qrq*e=V5Jf@5Q>h7
z_PR_SW6`#JZ`2$hW9NWlMFzU#hWB{6ne+Usw`=K2w7KZQx)K|{<M~w9qL~(c?zx)J
zsCC9(YYjYmw|ya2{4`SCgmIU^<#%BH%wWgT`Io2efKcF0ZIdKhxsGsE+B@EEP&Mnx
zR(exvCp|`SJz2oZ=V-PxEsf6&SVxgZqJRNPcU&}Swa^9vLF<aDSWXGbKa;ore&S<@
zw4+1OymuJt?*}gJ7T;%j^{ywj00@^QN4Ebwt9(p_bl2NkaY$UK>P{Pr-Brn#HyE#i
zFE9G^m-D4qaltSs3h@xFVcW=HzTL%Ep&-V&hrBaB!nA9kB;9+%19M&`950#hzSxWZ
zA_;7Dxp4GKDz*D#5l1%PuNXU+aF)!h+E|M-_TKrOTI@xya@+tcg%9~>nmv)f?wu0f
z>_*sE`eS69JVcZhPCSo9*Xy?;?cQ*-<<Ee>^gBFcX%&uI>HibB|4)99o$yAmFKvcI
zSAUr$7JQFZY?MQv=i248Ki+{g$_w-5?9-pv|7>ZNe(<qsO*x*`u=+Ze(=~ZgpZ|)0
zHQNX@G)G#VFM|M#@ED5ikRr?~z8ES*Ii#%YQAw3tuauAgu&(U2PDpXy^aS8<SXncU
zh;bM|Owx*jbjo=#eki~1SFv=FAQKPo#~cR0Nf=_ffO*6IIXsc1Vt_KO{tbzJmo=wp
zCp#U*fS_ko3hDEf(OWd^BqC8T>;tSb`z-g%5F$4KhihL4Pz#%YG;G2Hn21yO=x2G{
z+I%{$@N?S?p;~SOK-jrcya)MlnoqYUZ?N+dz(Q4!J4I^%6@+gaoP``t$hXJ`*w<Vr
zfNwPPi8rN!{uo15Q}NQm>5@j266K28S#nWXvDF4{uEB0Eye|78K(w;LK-l{v4QN3*
zWjz9<W9<tLhwT^%!&<1LgEzp|aH1KJVJXG)=hnUI69%)*(tDDZK_6JceN^ZBjUZO-
zg;u&xxRabycN4I<I8eYvmRnmJaL_hl<UI3pTkf1-MAv#rW$<7<I60a6#&l_;D)6+F
zJ7s<XS6%#mSJBK1ZsgZ1KxDt^u{b#CJzPjvH@N*13ao-yIObYV{#RP~7B!0Sp`4a4
zG%2h0Sccmi%e?+(zH&JpZ%Z;Ij5WW5toD!7-!UEM`gt>_(-y-bxTWCO2V`qBJ`lbE
zZzyNWF#6geQO6OQs5j^*2{;$I<?wegJk8Tv>KlyQvEO$5X9zyj%BL9GC+qe4=jodh
zP5~Rn5e!3IzXo_}UaH<mcLdh$kRLh=8U(=((~1%gMb5|07d==jCEuzh$$?ffhk3F9
z5tp^@3^mL#;HX5BkBFm^AJrgPf9o-smABNEPXYAmLr(xxD(*mk7t%}=FY<VOu(hWG
zy6FqY*?I*al`aKg<_7b?A1}Z4^jb(94yOn1=+UU;t_R5hs;~oF-B4m6A1xo0!1D%j
z%SR+?WFr3NTzE)8o?N^H;5I!9V&lI*-kqH(@T;4Z)-->F_rao5Tknk`I$K)#`+6rp
zByd2qWW!8|>NTD%#2=BuYSaigBL@GWa|0AF`Ornv(>JSxBA)J0`DZYUc}2&2%k%XP
z%dQWc;kyW>@2!iCizOg7JkDAy&$;X$SCK3`XO5aE!getOq?=YnG~WgpQ$<-93Dhv?
z0lSm^yCm5##I=Rw-Gl0p^fjkS0^I6+X^c>%JxhMoU%5HfI1MTOGh0wchPnaLK7Y8W
zJoqCUO}bH+{su5auqs67pbI+~rkyLPG&L7~Ap~g5e8GqGp9P@Ei6Tq})7X%;Og<<8
z9{IZRt<?rV6OGXeB%%l>8Zy|3V4SVgak6V`XCv@9M?HWato0*HS>hjYS6)VgMtW-c
zh!}oGCxQ!f8({Z=+mU$&R^ls2oe}6^IROFPsF{<mkVs;$?P0`fIm+`oZ$B075g{J&
zo&=p2@RY9rBz|1~%CN*R2zZx1e7o@Sb-)^iVMZaBCbR)gZ)3GA2T1UdjyJ&m17|B7
z8_A6he@E$0GycK|Z2<qh-vX$FPGhARCZbMw1=lyj7;g!Efo8Cl6A(jS<fpWJ9{{R#
zn&SQG86O)3wST_!%6A;7uaSa*MtWafK*>Sghh7q2zY15Sm;atqwATY-J9>b(b*>hh
z^VdW{Gv}nQ?;9}Qo`io2ry?$>Ty$a_);74afvV3$3z*&(&@_4;$_I_#JOc&ogdiZ>
z&j505QGNZI_`1m;q%?_;AQj>ErNg_Zg0+Gq?L*hQQ-Tdssu3(705Z=;^ZXY518gTE
zh6hBD`L^HL(w0>CHUZ#}o4n~ga8~pz@Zjuax?c|Dwm|1INMcAl59z#a)*)uM(M;P(
zESl!v+XLnmo{a*TWTuW5pixj(RyK<8rLxg5GeD3i3Ta~&@lBT11y4Xa+DGJd%>Qz&
z925(w(s`bnsA0)nu0WhAHkmlH$xZ}wZcVa<c)~-DE?dpgetj@S5DINx*;DmK{FcxQ
zLtWIGNB)4#)c$th#;|mxbK5lwPlW>qyb2W<VcfEA(Ui7a?HnMN^V9iic?Got4CLdn
zMyE4vmH>!Zp^}hu(e7H*>xX6yGLdX{;tJ<iHqMtEea*d^Tl*{i#&Y8`h*HR^!lFEC
z7`AtZBV6*8>ZS*sUyF@cE%SvYG{S@hfvT+Is7CtV@hrQCESmg0=_wa|d|GfF7n`$R
zs(OK6qVXb+-=38!@=9pYVSnEgi@v{Jp#Pa(``A!EqHcD@V~gGWUd-XfQXz}5%<U(V
zW$&^~GorzLMw#l|sO71zSee^iq~&$DiRFb;BHZ7Hed%&KAM1{O6flg>+k%7_z^Hew
zXw5vtzbQ<WZtd$dGQ{554ea(1B>dV_sameB$c<u|0mS@O4e#SPLO$~Xs!jOJ!#3b7
z;Z|&~;Z4l!{42QLnK^Eo!Rmt!ISRy#{v~*~kv8Bb=f|KELM0Wt{tNPV?h_9nsQ@U@
zVyNw$<h(HP`m~_OP}3vE&PL81c8e4XIU1>_vo^1ML_x1}07ji7bQ^C3j74tmu(7Iz
zA)c{tsFID+Z3n4Wzc!J3|LFh%xN14NcY$@A=L^l@AMHWCzCqIV`Sx2>6boFeR}z44
z&=%So4Kx~8w5&Vceeiw0?-RJy=i~&!p_9`aPMco`iokwcNbz}2+igV4enRX+W*&Bb
zB3`^foGeF-v117_R5-mktWRAqfK44+0U87t!z+JSU{W!C-evKf+~a&@gkqo3V59xU
zPTKCDn;y1i`m1WDN_|!IVn;WJvh#9Nxp);_T{^9Fl~b4Ezt;Hpn1k&1mwPUjoa>-p
ztioQRY&4FY!j~SluT~uUGBL#X-u5*BXDPN;+vS1ksaIaBquGbkGgm|Z*S}BKW?p<I
zvznZ)llDmyaMo95N17hu!K@CW?o=C<<N8(xz`ck9Q!%^*42@dGu{s#tF5pRIdR?QQ
zo`IesN!0J%;O|JY{UGcL8QN}o&zUc|;qOq7tYHoT`l{S$Itn)YU%!`hWd3{Ipt%6s
zk5J?$`qu%+Xdfzna(9|$=G@y%N>Pa!&>Fd@t1p6#{pSx0)kyhj5AI*@+H_*?d?etP
zL#{Fr3K+B+>*;IfJDU(0$r&<P`_T;GCi{~fZ%>X^Vz&s2CV8=HJ+p`7`RMg}ko8uG
zXrQhCMtME!lN<Les-kg8uX&%#M`8Gjq=b7c2RJSmU~$vmCl|_|^C!dRj0-OGC{Sh%
zFT93SBDo_h;0Ewk%1LCu&DX>|RQX*#C$p`g+03fxf6&oh{E^e`mfs2*3tM?K1%C7J
zc$rMk#!5kRAcjZ9!&l-)*&RgL!f$=pLU%wbK>vkx2IyV`=;=W};V6K-@S%6D^Ha2W
zTwWKt?WnT|&io*8<bJV2WQWH4C5&z9f^NPw-Y_^-NtcIPgEEv>pc|)a^TDSYRDHtH
zUPDwJW41*9lAOYEmhTKqTOCdw%MTVA>k{qQPhx!+URa2A384ldOr_<ND4T7~e>o&P
z4on;_xT8h~{AwB6eL^bT{;%A992;_%g9(zGBgkcRn>nk2aOi_0D+?hM=1A62>))=N
zGRF-lpb5gpX?Dp%tD3xzfW;6_!^^kz0U}4h0iW5@*51ojoJ6;``JH6|zuk&fmw@%p
z<K~8=$;y_vb3fKH*EDDb#en1d0n~PjYhXnIRsu9<bLV)_KntK*5+Cc0Bsk&+NPYW_
z>T<w1(!!}5RpN`Z&F?aN0RDMlkji54nT+JKk{&ANcjmHEzqroC%~yff3*?|Mqen)6
z=eGME#^=O$`5wUY-1tV)<i~??Pzz1n(eo_wBRE}R*K?uu7o%T8hQ|gl)LCsKpCrI^
z-HuQo#J&i;y`^s8(c4R4-R72<)YUQNi?sO*OaL5K8XfF_jXDlMk_)OM-Q@Qbg0b9e
z%?zsMgYh%}h6?|Z+n<64QvnWMzf})@rv3}0yd-tF1jqu<)<IZ^HdYLf`)kI2;e9s#
z>t_I$(d>)U@<|`u?A9dcY@+S+U+L9pJmGc5vx5+-OzSnzr&8773AdkQ&RZETS6P1%
z<3?N~E}^lvb_GHd#)XJ+zx%hR)hon0<pb|OegeE7zf6wsLbU}HB+JtnS@w(_@glOe
z#psy1UGz402>r)kJa|u3P1e<k)ve7~Dvg<SPpv(vp32xh3;rc)|1ZOLqUzgXDV>eE
zybi#<8nnRPC>|1I%i4Nmdv!97+~<N~5-(}3zn9?@c{;8wGC5{dzY(a$8xl7%BCv!o
zPPlN#A98M31+b$j`Q)0**WmPr0LS3*wnm;#v{gKef{d>FWM)YH7zeC#g%mC;LJxtw
z#I?;hFl##69ZB08yAfC=%S0t^cImJC)z#1a5VRCKzPsbGaY__LBpi^K<m_&>-jnWk
zVze%uHx4YU`-1B;YIb_+YVPGzeDFu+o9RI3g5_@2Uc<Y*O#7j~w!dtzj+0)GcbjkL
zikzXx?mH0<_F5gP(r%suCOkY?&i}SvCfRBKO-p-OGaz()B)Vxfn{#5X+fU<Mp7uKV
znRkD63(aZISNmzq0lV6M2nkMs)1o@<sdsI;8Tm9u!-b&9+_~bYVT*#_9MC#jPJX~)
zq?bOt3SCl%PI(kF^SGiuDy5R5jx)xbD9IezWZ(HJ>6YZu@x$lez2moP0!#}<rt=Ub
z?{y?1XJf@{Uwkx~7v=Ue@#)18k{w5=BpRf<lS)=Augc4;xfVLw)^Cmmq4hFtHo@1~
zRn6hFh)V7l3kwAhJ->9{Q{Dq3Sk#`$*?A_{E<TSuZ%3sXkS=#<4LPt>h-l}l+#?wb
zxs7Gk)n{TcVsyn<Aj@b3gjA37AhdJ2i|4DcPq&n>z@)dCod>y6#z@*nF;D!V;+7Ey
zlHNE9fdX@yC!L=v5*v@$Swb?3n2o$7+y-Mz1ud1FUP>gB1T4;lVU!}1Vl5DP&i#cn
z`X0=^zR17r7ES0DP38|Dpwlge1A&Zf<4=q#1{EKMa%$2Eg->FhOr%#)|95Ha74u2v
zC#n;}{gq6`rlx*4tRJxV!KMik_0=01=^P#vI4~{zj20MffqgONQ7^18S17`UvTvAo
zf;Mx1CI#c|{utZTD>a$4dLT<^0d`HGt<H(#S!}P-ZheykV`~AW{fAybIKOijpnkBg
zTk~xCbTh4t=aQM@anSggHxg{0O)i|7;~V0RVA4u8+55Hi7;>xz1<HK6#z^^k9tcn#
zTAPc^YomY%<gBfU3&C@M>hx_B($f-H(SHpI`Nz=5T~ty4A01#7bcS^Fit>|*s5Bp)
ze=F6><gF_og%ZB^S^g)<8BFnC)-hhz3yt0>NR9dK4G9e%pu&Hy4~dN~WUD`V6&(CI
zwat6ri5+RSGS|&FXHr02o-g&Z)dWG-Yu9THoVKwbdrgO;qnbVzlD6%YLVc$>v$>&_
zbWiCgIIlLt1$Fm>8>JYVwA9`!d?|@Y3)~*9RF$;ah^^YAy1*kRYs01*>?nwn$C5+W
z)ASS#1N8TX{4Z&U(8P5gWs`1@gX19&3!`k5t;WDsX)NB&soi<NPC@@(!fp~`X#M4E
zBCOVi)hbtxInKHIWtN31jwNioCjI|X<BXs|VuuV{+}mh>@OL0$sILqj5NBNRtnqr@
z?Wz;&I6Sgtyw7WQ$wcpTA7hn5nDs>!Eb<<g1vxcsLPD6a-g;qn@>nfa7leXs$0BE<
zyg~ES2LR?KR@JAH#tL2-4$@3QQ8(MGr!mP<BBeqw>4tu(M0W<ys9_1+pnR4WRY7my
z5r~(|2%OY=Kn+dR$AO0uiun**uh@sz4qW-I(%A)5|Cd%5#(L+zT#UK3hTu{@z^H2>
ziL!s0X~R0g>R$k^A_ieW=E^BI6K0G0w!;N{e570G!$)vf3|BD~>JW{GtSF-*oNWe*
z3uIp@|KFfsMR=4U6_})W`9(sFSOqV1b1>sU;B04ONl&IS!!EBp|HF?T9^s@Aou<Km
z-U@j_zwcM1{2Kls0TW<m{*FSb`OV53dUaS_F22_wH(3j}$h8C`SPgCcy;)f5ow<Ug
zt_D6`Sq&8|%&XdT7zNi_H?VHw2xWIN5|9|ut|6J+U9&H`rnVaQJB1>HWhFI)iDli|
zFLCJrm(b_6%t}pU>XEzdCR786#qRTsE{~MT+dYjR2oSZXlB7(Dj?X}+!9|`Hob?8^
zI2{*3z8S0V{>j&uz|EjFiG~<gdlXYD*dF@lRlscyl1OaE!^#yoA5|EDdDDPFxxq?w
z^A$&Hky_?p#~1V97LOt@nAA7eT}c$BKr)Vo;#!b6!2kNvYmeUQ($Uees)?F>L)&v`
zxS8L`P<l7h?R0w}&fqgFJ7F*nG1@vO-4|)z7fo15=unPB)*T>6R~2!q{wj+7TnH-#
zdDqqnX}7;7bdTTt;(G*f9Fq#G=3QX}9Q2DZcC=7VQF1bDfqAbTutf1I-WZ5;M>DEA
z2~P?(iYkdWn=L=lg$3_*g}sFn>Joe)(vK$e`I!p`7tbknj@1OkxDU{mZLtGx8Z$cG
z)-0!0dn0v3p?b7g`-q_h;fRf%+$#&&8Vbi5=Ax}6(E}V?Lobn@r4}^y8Z}jn`-a~6
ztQ#y8uHVb?yzUs&j1Ji^1kqXmG+@H;_hjuLCa7?T|Ms#@0cHJz`0^K<uy<0I9jAD9
zCyI9*!st5#=b{e{x@yA0zV;|ZJiO_DACJmsNUVxcp`y8iHXdJr?$TG+9knfB*PuzK
zKb&obbs2Fd=0h$k3rl`FPr5x*^n2p1@FIJTJ&>R&A!EicbYFDcXBKP!BirZbl)&kG
zgQSIRn++NJAQW#&4eWI9x9veTP(XndW?$`B4G~0xU!vj<Vej2VL=6|e@q{g>z1<Mx
zqv?AQPaVW?%F0E)G47}L3D_hE6b@13zepGu<anyr)dD-d{ld?*PVM*>$gG>jVUY`H
zx#VtV$XpE!xL;v;?Wt{t!`z4>Et}=nos|#X53<nbUdO~j2ikQvXJUUrN6&%H;;g@0
zX16+pi&j8~gSjI?rvYAmArN~-O(WDZ3aa?{Y5yWz=grH_-M(DEo{=JM#|q`TU-j$4
z_lMpghZP^Bj*`3vI<{R3$nEKXz@QL_^cp<PKJN}Q#FpJ2J)uxVag;vpkE$$}%ky5q
z+#JoxvsW%{wyKcBG+U8al_O>~wSUNmfC=4rzOMZGskoGMFPnjxdE$3SjwfXL%ncJ~
zH+v@^#5;JdX{~`ZzhG!~XzcX+&~{%pOi@^O4rjBWM0(cAnSFi17|{{GF$67Y=rdV&
zRUdC(4oPZ=@6aW=)^l^aqx>Mb(DPr5WFLGQN=lAqlzF_LJ9<H1D4|gOsBj|h!ZCzD
ztVh*_A6!MfiZq1Kf_G^&T*>oteVs_(!?EYJGjU7rW=(<hA832SAEeUAA&E~5bqu~a
zpMBE&2qnxDo~KS`PM-Okr?KBXmjuVsPOZ<oY7^mIeq>r^0D}!F?v1MZ-(EDyyqkxj
zs|@vFe&Ydz?$RM8vX2^KAM%joC=HzNPYySlP5YL92MLB@(r@P~DJw?=@BOYDjK%2S
zb~~PD&V!)A2!0OixPbqe#ljVau_2UjQM-xaT{ZGKkchi3p+o2>k~)Zo-;cPjd<n=o
z@^c~6v#i(Eae`rZa0F{6hQ7e?9RlXTATslt!<qLuf|%*A$T7Qv*R8-dC&eB%n@v$a
z#B6w>GKC*BUsW<SqPgu^ym2+CJ{N&pzV3}+j(%S+<$ppo@OZwrsSENoh0VRxtLK+w
z+z4^8lP`KcNQN~*L&p&uK{z%XPR>CxK(FIbV7cY$b@&>J@|$o}iR<zr1%?8=vn)FJ
z(SZ1anplsBBOwhs(+y6^V^QhPGb+&{+DW)zSQVrvpb@l6%v<C#tx^ixXT3=q8}?hL
z-a3ceZ{5R)z1Gxd^}E*KIiEfU3gR^1*K%#X2mWq#!C8pY`xZzC>>E7jEgyxAK|ysG
zA!x>(e2J%(CMS*7I<1I;xsBAKeU}#eCxt_ApXuy4$R9cP$S@h{>G&?70FVJjKof3T
zbDe<}<0|K2OZZXOKX;3d!>6GG;=J-W$Z6b5q_RR~GXa&Lgg+n5b;))y3yDyEK%}wi
zWYw>Cx5e|^A@S5aiVQBasFnX&LN*adHPyK%`j+VRgD)eQIdK5O5tQKB4u~G~yXpVu
zJA@d8h=`FwLyK*LMm&3v1VT!`{|9ZCpYzT%o`7d_yp)QAbGy|}xYA8?X(On;<7Ybm
zF1Y=7lWA;BL-d`>d+sB4v)S<&GKu^x$*9;K{?QLg8|D~c5MOYI<&=j(dyMIl)+)dE
z&nH!&`UoZy+7*K(4e}WTe=ul&&Rv?pR*_Syo`Z9x!NuKa+`>Kpp%1_~s1$yhPv}DX
zfo_Cko6q1a(o8BNK;`l5@pOw5#P#zJcK^rdG1WO_Bx|mwm6|Yy#^By?9I~`6Z9xV%
zjF7Wa?A2v71#yMKxS%gMwZYCRf&ESex;gmG^<|@{R7Lp70Qe^sve!N_@SXl9zxW~o
z-%X@CY;9(1mi=WMVL)jVoCMt|LPmG)p-^NydxsO$DxSi-c86X!q+hV-{I|W+PtYC?
z6d#TBH(uW+6mX%0gTy0IYdF@uTXy*&l6?@JC%=?uW6CAxa?ts+Q6PMwrwIjHy&qvm
z2b6{3XMJxpJbFnmd>$EkTC2v8#r}L5L^B-@ZP(IMU0u4Ym$!}(ng$>3DY<0fMX6Sy
zp2LAi*3Nk@$*+)jRJ#XP?qCCMijvRFSUdS&g|@N2$z$%F{uME|I27J><o@LO@z)1W
z7A(9z5`x~)YbdP#t!I6WcQ}GzX!KpY8&j(4DGYQ{CHVS3angkfuQ4CWQm5y6C}F1O
zrH80`|L>DbaEG|!@or|D>Q!s*uW4#q2PNY%Ek3^3W)9tJL8fhZ;_vi?3%YP`I~ZVp
z+^vFCjkm~GZfN^HoI@-|N5azF$E#XXQYPnfU46YB5-LkXm5xu=&myJ5+?VTYgq)V?
z!zW06Gk|dOg98E=!Fu{co;R(ti_yt>@Uy)k4e9i^mWF45JQTz76inQ66R-%a9Stww
za+&|U+`;a!i^3-1TYNFIm&~K0!ME84EDiQgqMbV918_w+I1pRJ3Ere)^|*6sJbZO^
zt2$z2M+U3MWWIR$h&$c>$Di`|R@fykL@<d0pCFLFaXIt79Zq~7@oeu3QbK3@xSQ;>
zN_&;<HeEk8aqPnuAfP~<;{-fOQJ)tv^LYsP2<9QeLyjUIK$L(WjRj05$x~Pf%{mdt
zp~ct)U13E}wst~(J-zohUuDO`Kdxtt{|w=&y#E7YhVYk6wv08P{vIOD_Z|Pr^yQOz
zo%zCd$;)Efb?5*XuAPe&SW?(vo=ogXvTrG$QGIw&puaRi71x5h8hovDCqur%oR01?
zL|y(VQ$>YB?<nG(?bc_4Dj-2YnVU6MBHq5vNGawq@@S?<4rY8<79WJNl8u4<;UxqE
zW}vCYA8eER1Yfe&^+yilF`zH*hAP8U(XNi2(f}gaF0^2GWT!JK`_J{Aq1<WLzwd_d
z|3lYTheh>u|IQ3Uw{#Dolmddl(48XPtu)fzUD7Csba#q$mx827cT0EoJ$&Q6_r1S+
z|C(ob<^krMv-e)>Q_JI0t?|z|YvCe6-Am$ekpJhF;XIv%jEzH5x54>w!?R}bzs?;d
zEdL#3-Pfz02J$!22Z^5|_XWd~CoLq4n^#Q##F2mxaD^A%&Ck?YzlUp57nG5WL8pr8
zA&u2%#cCzRgEFuc)tKU74%FjyHh6_9{<G*T8~@Z1t8sKN{JH`dKS`2+)l($TAbffZ
z45i!xsLBeb!p}WP9alvd7Z@}yW%}lU4tdI%sb7k1-^|gx0p-rUwX=IvG}~l6qdAS!
z(OZTVxe_$&ox=*qJRB94l4{vYc8dCbA>H)($K1S`ceLEIOx><jdtawrQo;+LuV~z6
zx^gexx93FK2g4ifF$Frr>A|q##l9t&dacuza?MWV_;}bO4ykxh3@QdcPJ14Kc7Hu)
zzvDwTD!%D!mPoty>S(P3mUfgL?ksS_@@jvn+^Tl-y30wn^Fd2<PFu+OomuDY55%4>
zYLt666sM@h|C<F+jw!t<7q=m3GtKaD=+QUd(!Gvegg&IseDzcl5eEemGvQb*w%%Xl
z8LET1I#NSIx`5}Cd*M!^vg@NjRxh@<M~EmtshB^IaZ(a%8_v8H94N!s6|cmI<NHO?
z6$nnC!g!)Sl>2dxBx3fT`n6utaP5v&v8jXBBq!#<7C(<%)@c)j?AbDr_EhI^{B;xW
zm_}Xz)<zV~Lpuzuj6lqH;5L)#MbzXwf8iFcG{!77snBH6BjLRZ)&kymNAO=Iu^Bpq
zgoh;lW0Gi6LqVa`sLe;>U$4p;i;lk`A`1?02ZK<+VQwnE!>ez(b0^z?d5<I(QJY#%
z&%&F3A|PQbwOy1<KK)!`JzbSI*Lk%1+@X;veIkl`!F(e&00C9ri2or#+0W(?QZrF4
zUI@7;c?NN_;jvxdzY0L8dOumNd<P!6h5tC|1K1tizTw0(3@)2FX<#U7Vi)Y;LP3Zp
z@z3~1Cuv+XWMnPu+{Ls|MV`&fy7=7{khd90esP)VCmQ&T!Q$jPPJOvyBb{TRr2Q<>
zz~?3R$>!9kC&UtoN%RhIyFS%Wy0{iS#Gv?i2g}%8qiu=$<~{J?Ktk76*Hwa@txjXH
z!VV{896Vq>&-3HN$BU>dwzgf1lsGS7$x3c+n9BF|tCz?<B^ov$piPQ2m!djt1K_qz
zV2-mrSCC#qx(&EqlVprj)e=0gHE?<nyB`$#AjZhCJJ&F}bwLtlTVH#5t0+il=IE|m
z{z*5s9GvkwU0cfz*;L)aKE5xw;Jtl;x7I{SIqiaxRiv;9b!>+2$B=HJ)|OF=yP87p
zji^$g0xw9JjKa_lM!0&mDoCoePCeB%{G*Uy;);#FtR{jo<r>w3@bv7)G-guE8FFXD
zAgTXxma%5co(rRon{Y9<koIAycA0j~TK{+qZZAgGi+i|+F-R_qmCsAW>0m*x%F6k?
zq!o6n2_~!j(A$&q3H%GGXK$9zw`+6tmF1XpIfD10vQYaeSM%`S8;_z7ia58qY{zok
zF#*158ZBF6YuOuVW7VrS1GFz85Pu40qLFQ$3^G=YIAjdszaKU{2o>u?<e%~kg`Fo4
z`4SJevi-HJ1zII-v}!(FZ#y=$TX5U}oYR;tMcX-sQebWI>@qsktNLE=aaN1^YqLb&
zx^MRA$l(rzu$hWR;xMK@`yfu*j3aEJDN36a!Lg@dajvbrj8v+L@9myVd>AH!a(9d%
ziH5QBH$BI`0mK_oZ-w~}yFY&XXzV!WIV25!G>_4Xseh;iSddJwkjU?_z8ip9jEfuI
ze~xu9^2jJ%>R;{xn34Iuu4`lC{EswG(ZnIC!&LfO+eN`?em1sWu%4uwRT3V%&ewTy
zQ`HuqM&x)lqXI_x+yrBsh}krXp2>5&zW?U3r=63Q4(VdxZ(056iG(``3`u7OkO%A2
z<xnb8v7%QHN&g6nTsNgZ1Kc3`Ms|$@0w^ofXpcmOhQ7N*>yntg>Cw><l8A)HQ@e?U
zd51!cLVSw!r5!6TSG&oyEr8jsC6|3DueMT@&Ei;$Ye?bSQS%mF^NT_I^Sma)vR_9s
zlOLC1XgEK6z{sJu9jPS^i(;%kW3+K4Kv!#nD9Ld88LYO(q~TlVJL&_2*kpzh1hO*%
zEZz5sPKv8w{Dm7Av>lh0bwvxIH@TeyIq~c}q&cnUz1%;A%A@QD`0{8CqkOjR`pOU;
zW+SPD(o?+)o03t4!rO(riI~3p?*01d%NK?dwJa)SP+=<HHT*J;18_-*>0=rRe*j?s
zjz=V;k%THgQgpcrpiL<jTVVfB(=LoD1+$n`*M>V+9Wk*yFI+YoDCl{72K_uyU>_SF
zgmuQKJ@D}f6qUZdFkm{LCiX852T|Jj0@&Y=<3rE|FrqTHC+vrQtyPjzs2OS)v2lqY
z3T#_N%h^78m2&KWga0O(cRXJlF(7dNc|afp_ovl3HW;pDHk|&#AU1`Yj3yda4bzcZ
zd!9e!idbHY^I2{$uAB)Me};r58obuP>qsI;n|@4K-+-q{6#>5P^dyj}qHh)$`1(PW
zmslJkMgm$y-6tlWAI*Qmk^W-U6Dmt#^3wJIb?t*jh$?a)YDHfqVjRjOJ}bjA!zjfK
z-~jOL-6fYeB*Vw?8wGZ?_x!ArKcBWM;UbRJPXWS=5+tp6ljV9I36nRW*i>BUH)7O=
zfIb7ui29=GTXp-R-@<Fy8(>!eo|A~@G#KK~?wUaOOCQ&?GG<AH8DUzu<-zZ%7maDx
zfyG_wsVbWyr!v+(I&1T<V_u_XKu6L~Oz89R_?2@yOu$e0Ef>5q?ho{08eq#KEp6>5
zW$<aGX5vMoM80DwLwHn-f6X?`)Y0I(HR*F=@4qn_8sktEuqE+7mV`ZQn)2lOs^Xy?
zY<#(YRw<%DqIY1m5U^HO#Z;&yMDoGbhDh*G#8IiJ=PK07n58WY8cxptGpohd$uYcj
zg*lw~lsMR>VJ2%q-SD+ztm~z%?872nEscS1c*8N-F=qLCE;dmLE_{^{ArmPRL&#<M
zOWn1fhV>ZX@7qU3)saMDUq|E*s;x;q*R<P_kxUT;H503jOO0ZPPOX)F>}_Ds=c~}N
z5v^G;!V?3hOMgEqX{-MM6}6+JMxiWqOxm{Hxp1ZPW;kLBgV^iCpjNZBW&C8~ts-$a
z!$f}ulEiwk%P8Ti%fK%4AXijWG`=$6ES2p*ry3EQI7)MKx@8o33IJ+kH)`%1fZpS)
zqp66zJ`esgxi5wn&1l2li&aR2iX%NuDgZ5%^>Gpnd1ct`cSmXXh~h%A8Z${$S?agO
zlbX_<TYxaw0xXuFPXJA^mX9l~84vl2G`$@lYax?=E0D;Oy||1Yl0$$7uD`(1L_}ti
zW&()2m#J+gdPXLvQZ~*4ZP&nowj3KSW`Laf6&Y*F0c(}y5ct<@n-xR`L|!#>h(g1N
zf!TsNf~o7Rbr;a|xK%B#){@L65TjQqQ4kkH?h+4QYm*_2_=R?L?-yU-%PZFqP2!`q
z)(-(>B%Sz5;Hv;(zEm=dT%0qlYTpMRl1$`0)VYFo1f}zOv%|X&phnZd<ext6$l-kJ
zCf`g4KXwEY9{|?7k6WQctoqN#z3r%6b~nGQC=6o0n*!#AvS1(7uVP)zW0l(J!wqnl
z0Ay@YPt1^7Fk<<Wv~*>3F(MW$3K(v5;EH2oSE?+BLB=Il{^p9#kNY<xGeQ!`2jlk7
zj~hEcYW1-h!2pf??9dekssf0PD)e$^cf22&VMl-}@aNfT6WSW`?fv36vlu$KaFkZj
z@#gyrLRWz|Kr(^7_hA}}FNR>u+z~b7?SPJR3){qN))qS7+2xiX&)M0tVjjB}@zgB{
zWVDJ&D5<*F<li|7WNACKC|@r59AidhrKSm~*vs=G))31sd&^3TsqggRvEPDGMI}&%
z&W{$Aud`)Tzxepkbr`lI;E&bQp|lsbsZIY}XH~K5UtYt*7kMjSOP#SK-8apfh^FvV
zMe&nA{=$w+j?Rxh?kI0FKCPX$%=T*mhTQqQHL@oXN~?kecm`1f1`ZNKjdoWS&>=WA
zNSVWMzCyPF$c2w$m3PH3upGMo@*SDC6(z0!CEAy*ke~~%$8fe|sn_7^yWn*v;>85&
zG?5f8E*`Yo&30^4uD<~+|Ls8GCJ`c~6mVCeO~m;c6|s2F6W3q0>q4VH3{3e1K7>$s
zDAq-k=hpvt!T6jv8tvGDk>|*O_i$MI`lLyr`yg7hz+2~>C#F%~EjX3+#+YeOyCqWH
zYkh(0`<b?Db~$Z%riV4JlI9*DJ#UUVx4w<|?E7+jJ$0UiQ~~%v?x|6zgwKs@q02nd
znDv_4SmVPLJ`S-QJ=T8Scd9lynTOA7jt(9WwbFM}6bj0Qb|@4xt#K2qUo09Ld+VXR
z8#7HN^Z5^hS$8Ru#CrjvU5JFMMG^;&j5N>Efp-jdn{Q=jYJ#~~lHY{ZTC>f3?!hX5
zTkzKC5E|lhclgx(U~{#0lT*6<sSte%q3>yxzR9kqCsoiybpDBLnz(avUDjctX5a8&
zR%tc<Op{NZwD+L_Z-U3%m#*f~M(6i@oOHcP+t^5hdskloJa9-KisPS4Nu1HbaG0cF
z1{J*Cr1e-1Cc<EJ={*tzxU%DToU|x!{@fmPG>996KE-aF6lD=se`zIW@dj5c#n8}D
zd8K>bd&6%KQ1;tp<G_xeIYR(MHf6oo3UH<4IAAyqZeD42O_pgEvv#3MK;#|Z(#*o@
zZ<aU}BL5r~9dgW=YU!4Qsk8wTV(j8jmHt6Hh$e`PtA-vBZX<0CHp^@pb~$TJXo(SK
zpI?e}Ho3%53If67m-#h97KK)SM5%;g>3E&ji=i;|3-}kh!F_Rwkvk!&HEv0db0t18
zN~`ju4gf=13g{pVRXqSJ@WyQmsS{;w+gZ#K9e$mH@`U1gWxD?A3jQM$kNd@oHwW7J
z-py2pS}5$0eF+@PfhV_@R%1e}<3V;+CA_D>j+Ct5veNb=xh8cejC9vaktx*|c{KUR
zX91T+!hulp!?>BB;Iq`Ni$&iyeY%SbpKFVNj|jbluy;%Ps!-&Xmv+8@sWs10hn00l
zFrG4BE{O(+imOLb-;z4i0-2ziEUaMpVxf@9f;}z|mxB^*VCKB9M>Fd<4pyf_lw~@c
zyU@Fl7@j|#c%d|3l2PHs>2;C95;TgjRiVm%=0rz~gg%W1Ij6vkFZbFi99>!SGyjM^
zPmH_jnZ^I@5>NL8+Fe&L^?pxfdF_L_FML(tW$sHjz+8kkz0IN{4RUD?IAqs3pP-_1
z@6fezPQ5<~#K&2TyERHyF>JBHcVAF(ayT+B$=A)Nw)>%iwA4><%)LHXK6z5KWo2<|
z_#IpS3rj@q+m(s(>*J0<RtB=lmwy*is@PD7Sm$QGh0w41f&!&b>O@7WRYFz1Eb5wV
zzIYb*H6f?fv4f`~?Ot5ma%pe4o9`%`DFx->fB00&c+VK}MO0*%;1B0AP7kgnj7%Nc
zq&D3G!@n+x1PQD|Ul(|ZmPEfgOm5m5dSD?e`lRbiVBmIu-+0wRRdiEWf_g{uz4=Y!
zX`Tq){wK$Gm_wxp1a-0y;fJFKsl8zenTr8U5rpzau_vT<LxY~_Vs*_z!&(<idJ9{(
zBgb<r%@u1gawh@E20}`;U{o5qs#+yX(H`29hpZD@-_&H6J*lrz$tvPjdX~Rh$<FH6
zwB3D|l0O&J2$(_7NWBHlNF5P^d&caE8+)Ek{`AmgW<EI=Y;O=^^Q3TYH6(vpy$c)W
zX!OBzFRw>FNNydl<jujbly=iB)X$NM;o5c!{R_9J0Q196pJAp7A{}r*%$|Vx`6p?&
zU=5|@7-8hMKxlR3ddJn<b#pe-L-_<@kUZ~tb>NJcyS9Z0-NF!J)dvsLV9zH*8YZ!9
z>PQ>L?z|ty>p8tkkO{YLwwuq`9hsDz2M5=SD_S}0>?eqDTkU2#wrsg{AI3{G@Mvt(
z)(yCajVKX%ENxn_lrI!%e-VhQ3Xng9vHAW<GE<HFDslQe)n9$*JBPZsZV9K>;Cl??
znGyTRi?g$>br092+yN~zHG|LA647N9{j;7Bx2`zUJP`9PF8rb!PodZB@Y-vt=dAf=
zzX^4?eh|s4&SqW~_LH%}tpzjn4w%ATx1Q>zkChFfDId(ADBLG<Z1J%gN7{fW$CFCc
zgyK;K2?#_5_{3yVkngo?T@Y>FDRBejf!f-+dR*PFj&S1~BnTLR@!7z8DS<xNCtpC_
zsyQKM0-7Xg#b@pW4-s?|<hHf9EPW_C(_Ai#LHPb8_DQKAGMf-SL#!m^{rI5H+@jkm
zW|3&7FQuXGK=3e=8Sdq^r~0DCdk8ANfA$}HwU)Xa3Ex}!pk)C==Zv4S_c6GI!cYfS
z)~xEQ3q_?`nGw0%<G?N<>kb5YGuA%&tkqE|<$K&Cl6SIq$f4fbyJWAglLLztq&9UB
z2MAIxH9kU)V@g@Kd_5}IR>R~FV!0mln;3k($-SxO!_iL|P5!tsu~d3b1Ua|)2P9)k
z5~QF*y@IMEb`;%+(wMW+o+~F*U<(mDaTW8Oi2On1af4kTBLpf9Bcp_TzRtM^u!FeL
zDL{bJuPdd<+)j0UDY6`%2|6dvH8@24K!th<378|q*tM3P98*<sP%s=AH(os{<<TH=
z&|<4xdS8|H;^KMvvU7#+3yPJgjH|U5pGWq%<x^;LT1Wm&pClU^O?7Me$`&vHXK$6U
zlW*K5x$RsL5n_0uz2-`Y+N(Ps&(D{88MmU&$+h_bxBRj^u&K|X7e8yy<oUMjLErs|
zq^b#g>j{4H-cA~gaptB@FbGv!)2^FjWJ^+b&fsFlrrdYwu)ex}YqtAIC75<GUpTN8
zxvsom0Ix@U%$L5Hz`&q(@F%}ah5qmFHu9XkX`_j<zeSZq1W~v7udc7~XnrX?ql$Bs
znvlVH<89s-n_nEEG5e^_w7BOj0mo4AJ)^?V9B<G;Lgq=ms60q-_*8qZejKYGb@Xcv
z6aR^lj(#E$i+Ndikxl=((++a&IZ4kahV@^9A5f*iQG6Fq6sM(071cDax86$%m88)V
z-Z86IL)L1pPFXgFj;ZVTMf;{7&c_iL_j<ui%jI78cp|bSH2nh?rF9n~!ip#YjfN5S
zg7m@4-MCqPiqC!8y1A_6Uk0GWvF?9Qlys@oiSY3gT61Q6!?xby4$qGHc>^>KOO%l9
ztkl-;g8G+y;?`ed5*<7mxINbEEcNOLOx8_QPI%uia`A_>>hMXiK<FTa6<6F_a#Aif
z`Eps>%CU*GGRh?zUh;agwKQI~)mzi5Ox=6)PMVV7gnacU<a!4DZM}GoQ}=Ualdj|x
z`ezhH){EtPdAr3N^sm=x*E}Q(7e%xxsxTbJ+03xDnBP;Fy`zj>j2~mZ-w%FX%g!I9
zq1;Z!WyRpwYR<`G%Zvnu8{>>%h~bx{M>M=MeSTA@n5}5ZY&X?OjUkq#T-yFJ3?dax
z-oc`SDFO=5SKJ5>3yZ}aP#>xdhpTzDEg^=I(4;1GT3R@M@9B9>153{n-CjsiDXX@x
zU*Lf(EZ~Kahl)L!M2VY$SvPum<4i|ytkq*5)lpqH8GXTP+rkM8H9LaEsQwVZ5P~S<
zFS)X{eiOi)=`v%E4?5Bz?M8OBuj+&nFFBIMoxn8wV5@z<D7P?Ux4}E@X4h3F{rsJn
zKCyuIw0H3bY+W;sOSdem)LFV9=ms$aP^TRLoobIj)JDeT8!L%dN9SHED=TY@>WWo<
z89i3%rFB4akCcTroGqelXapT1hX}3_#R<1AJJa!iem}&HU!Y>-G+tOI^!I5VHNsGv
zO<KgMgpOluo&`+b7QvijmVy0o*QZFq5PmgDxb>zxV;hmNDcF(9x9*!7668MNrHsVz
zNQHq=QX86(`k`_N70guBUq6ObE^Ryp`$D_MQf8X6a=sKF3iHleGmgzcw&MQ2pnh`v
z`EPzW(*dXcU7r-?n=!MwH%KHPtV@Oc=6JN=K&n5?_ry&*ZLjmRK{SVPl%OI|{GM*j
zm;3uIGHqJAiRIKu>(gBBqSaro^FFmqenCB*+#QbG?%<v>URbKX+Fsr<A8sV5Vv&=s
zTfAGhg?@)Hi>>)SLdt6T>d#tyPY~ljJN+{E_(@wKQxmXsD9!uuKv^JhApdfEfX_~|
zOWo%#J&oL3+8960_0t}8Q9}%Uj~(e!jF#)0^(E)J7PY3uwq#Qrh(}CIhd+*Dodll@
zlJMgE`@~tyxTKGAvl`E{4TRi8V!==Lw(azUNx|+A+`Bwn$S$u&yNK3);80f&sj;74
ziEj=`jC`dI^$<Z3$JAe}XdwnPyEB`C0TwF?5jB56J%X)NFK1C6W7k;#CQ14b<%|=X
z+}%j0IKpS~jWNy1;Vu<%*hD$+n!=Esf&<!HrsWCoyRG1?s>$^gZTH&IslUu#5g42G
zj`4;)gC|t$d@gxGIaX^v(z%D6XxY+Sc7*~ntNhm7;Zf}}D3yJkL7h&($Q&h}JCnAx
z2k3v^H$eG41Ngah1|>jPGVlrJ*(J@B5Idxvl7gYhKEb+e!3>~tCQpWem)47@x5?Z3
z`8fwrlRO1%n+uHGMkz-ob!y!*Ah;Q2VZE%_2uLt=QBkTjluMEUrQ>UU^O%Nyb|Dmu
zLxogEgty&#zr$K3ZS5-xhtt;9jJ@5lZqiFN5LK5*mH^`s`HvNdWTpcyj>RMgR)3<#
z2_exFnw$RF@Dp~%2hH_|Ka2+_h0&|iqD#fAeKnk`)XFU$XS=;1H-=Z9=T@PtPX!#1
zj6q&-+HJ5wx*G!&;Zud}V(Uk87<%<XEEDLAn9AVzUsPlq+264o@3&Ydnnd@lnQIJZ
zFNh&fw!PCey`%gUJjq$-_=vgs`evBC7i9izsf<1<AJ~dtp5uO?)MnPEq`$j~5kV3L
zAJ<kSuc!X9TkhUizrdUsa@$4XV+ZvSHecm_{ft$h236c2I4`}KkH+wGnWk6SD&X$B
zH^fzTGF)xCVd|%9-oC||&hQx{WYlW2Ch9sW+rEhyL+MiwllGm@tYX_K(xCwUeBe%%
z@3%ed?aWHMmRXW%)_!kLXj@emANe}OzWlw<Wrby@&fl~czJGm~rsbz!A@ZrRS+rX+
zKXm(&GEy%qq$5-^s(!052yxF&6^B^R%PTwlMs+r~!li&FaMh?0Txo5o#%H{~@1RMv
z7snu2GgegHY5hScZYyo`4Jf#U2PK5p4}+l|CgQ~tx^!0q|B(B0B1-_G@!68>kYWxH
z?(aJ-b8({hfB8aObnT}CX^8jr9LtR8FX%)W!-39WZ<KV>V@L^RV+IBWqGG$i5(80i
z*SG_`+E@~eqW?Sq*l{j2k5?d<Y;&=#jh`HDmzkDJp4$X7LmfSV{Dc5S&|iX+%-^`0
zw<G;dD}FCl6f$mCkPQfVR&!2i8mRD1RpL6R%rsg~8)Es7M`ku}#GO;>Mz>{MQZ9(4
z2R$+K3q7J3O4TFdS6GV(9MTImgtc1K(;|y~Ki`_~mQdh8klxfQP|R2xk#TWE54RkN
z^w$ugJqc_JtHp?5vA-ovljA#iIQdePdy5r!aV$4=onbbzv_s!#em_JMnS;5asnx%*
z(WjTI3a_3YA&HjNWzKa9BlvwK-LXVP{QRc-l@(LnC3e+~om?6tbHBHpxsFV(SR1o#
zBJ_*%iK#SwO4CN5v`#M}lbGexzwwD?5yJ(fo-r0;WV-ipKjazeZr|}d?_G4O=Q6v7
zXkjB$Ipi>jr7JV@)$gKf?XK?7t3d{=v%kY*B>@!<v48Rh&{&D(Wcdq)p%jMc<PT^W
z1b?f?fDR9Y%m%?{ZM$_K<+3972JB+&0`?L^KaDgfpwHeU(;;|fYL^wH7V|Q%B>(_*
z`*gH$6bxFb`L%POm*xUH^{Th#mBX6!_35aB2@C91z-b)&+8+@?*?CyRScwL!43pxJ
z?-(sT?vEhqYjJv#UeW*K{`uVs9%H6h1Aqn(4rGP2?iI~GHS%J;qpc%%(`u~tc~C%*
zI)z1Z?+GQPN>6#(Rl5e9GX6WKMUe}l{o9JK6)wl(_bv?Mewl`~v7>zu23G5`UiX-I
zWJR7z_JOPdvPw%8ivIiCb0e8TkWULsnjsE^)Opt=_ubU}jcC7$SYNPw*AF-Y`WLdB
z4+jq%GC;HM?e_{yA45TiTX#lh5AA-^4Ah#NOP|{;?tLj=oV5yz>zVWmCRc!|I3AaS
za3-J+`KWsb*jA_0aB}tacy=-cbI6XHJl;tY8Jd`hexA0Z(0vp+5Cnn(#50jl#pKQY
zL7c#nnd~^10P<NR^XZwgJMnfmvqpJoq=kDllOISKzB~0b5D*wqXPl||KRtRv41Ns_
zM|WU+KPrd2CK>NrNT*kBV#HFagffOA>UR~sM6IN%icdX56%M*QR>O{N|D}v%A;TQ#
zM2C+o3{jlOdribc7(M#?x3M5h4SB`C3OKNT@~(krnx{u(@@9_yb4ufem3}gmLut60
zfB%`RN1cxz>ofc?P_)aUGlj!M(5PBs>}r`Jg@KkwCYP%B(|l7@v#gDG^+6DDuxf=o
z90%h~^o66N_x1?2XZ0O8Y5B-=S!?kQXX&#t5MDitK#w@3X}Sw{F{c&MH#aYwPc6rS
zVPiVzX<-J1ueI<M%75d+U(9}Sg<2ETdCR{o)GD5AdzGj{k>7B*z&Pf93D?4^>i*g?
z%eZcsEtlojnLm%Ls47aURe{HEEb{b0W8!A1tON<|Njt)0nIQ_MmM*7sZ%Fyz*nCs6
zXtDGA>eWp{6Z2K68!xa?!pU$q$BOWheuB(svAl+WYFCj5CAXkpwEF`dvl)AO@ZTGa
zAMP)lFZ}LRF5OK4wHyOrS<?>1Ug_f${@D;&gG)PSA$0vVB9t*{QIMVRD>4)?o4{`>
zc@&c{$*=5{4TfRxpl@x`aBUcO0S5NBR1(ciMPk1|e^l_0;)=uH+clMc7oV)OHe=}d
zNK8fJLs!A%mmN&@_CE%`nLMmh{kO;=L2)$DO|ua9_+W{iBE6=v3PchR=5g>hK1Ced
za5QuQ?UMPWZDB8ZwcIypyyN?xRn-j+4i4r6UtZ>MI+pkh&arN0e;DqU_U(Om;Ji`U
z`X#jibTtfn(jQ8zNh|w<HG1be1H6*Cmia@uCY!JGL{JpH`x?I=KuiQPmy(~u=ROa0
zs_Oo^0mXfNE$AcBx?Qs`t|z4{vNzoHMOeM#fPB|h6CUAGaW~J;`M5NIOIeNr8`M#Z
zjryWmj&Nf5|KK40qhV#iWk9udoi4pr+r~~g4L$VO*AYL_NeXv(jxSFf3pRv3@e?*Y
zQ-(sSyL8PFKIr`m*%k*1pZ`={)~%D-o|HG=9O)!=*|eyBSk6O^^sX7L))A_CUnkId
zV6a;6lQQ(9b>;(6+}_Z0+NWCTh~d4Sxd?{eB$o~{T3?pGcg_0!tN1{XF(zh$jA+nh
z6Q4=><t6%4@Kkx*XWm$_BIRr)371XMbs7!{*+G@}e$gjM@3PD5$KM(GLa9>GWa{&V
zH%KiaW5Fv`pJZHSZCl@1Zq%dQ&S<fDwDPT($9}^`<RsuPHMZ&O`Rh{D2ZMe?gq1>~
z{(Z*&ZxJPMv;q}SVJ&6I(vqQQP!`7y5Q3$Y5Fc;6OC{u!TJ`N4BOP6kcCD2RvwCS|
z|JD;+ToJbpCr*EWHhrS69#ReEUiA7_%ImO(0ytu{XQnMNSb(G8QLhPvh$&+q6c8`(
zmOXVS7Gw7Y>gUg&n6}*2whDOG$f|c_k?+3_S2*48#gyc`%zCG&_a6|8zjKA#;@`3F
zX*FGUaL?JgmQw8!ypOQ>r7GEKV7D<^4b(<wmQCI#9(zp8%S%86z$wG_H+~t%Fh8Ms
zX93RbsZZ}nISarVix#OzeYOkS=i^w)Xbch7bIN<9I&(yEEBAJjRUE$=0Kl4N<;hwN
z6HBf9yk9)DFZqmE`U9DIkyv<G+3T8ZF1F~iwD3mk`#Z;%H6(0u@`%CcW+8K-fT4<`
zIEC}Q<Rec8(6@hI<_KX22lf{_wF4F>xD=tI>1!=xEi&BK>lqR&H=h_@u?1BfR~0FG
zO%O%+wyxZ~dcmw0jZ3bV5pFy~IimRL$A$kTEdO>uRm;G))10XnE@4qJp`w%?g%gIh
z2=cX0m2zew5$*BO74^3tQT>u2Cc)Ey&ymY|g@hb_$1kf@t6d%FkV@Pp-R$Mv%S!hp
z935(*ds;DHz-+SjHLp$Np;JYxYKZlf=8(ogaa?@O1uU;(fo@VIK26N$ZI&vOllNu1
ztz9g6o6Esac@J(li(>QWLw*9nvG4zXJ=K2@PJltXdwTG4&)<T<Pu=5bX=zch(-SE8
z-4rDkS1*tISrbQY0J<;>0U1lt(z4j8ap|oL;6p_*>cnXX^_T}_0P-*l!}18$)-Qz5
zHH8ro5!oMJMkiR$7<;<qM7#I@qn2pF{UWf=(s<T|cue=B?ULl~c!;C=yoWXFlPLZ}
z1Gj+mo2IjZ3d+_Y7zX)FtJ3GJ<-$<?EG>n3$)7aWR6NraKJL5{leX_7vkr{&3Q&&Q
zNta9aCEhB1b(&tg*laS}$6wTt81vl49BXVFq%OHox<M}x5K9Y*Nhm^VL}&CG;CzUZ
z>AZUDXeo|{e42@RA(P$lIq#$|U0wLi?)QmXft~L-Cfik(6QLh*Kr4tSWR-Zx7s~P>
zgBH2i=_v^^hynPZ1P~5OtmzV9oHP+$LPNfqD#+g&d_6Bzziw;kIfTO4=DTtFwED6u
zajnHanjVTO%v;!f?_cIiW^_j4if65LOiMBUP4A<MjfZRbuI;N|E`1JEeucj+riit<
z516l4Q?MBna<lx#ZD)grni}X#kb1#?cOI!0&;W!01~^Q!Ilx@H>BQI}fkK9_$gxZQ
zBMuJk6OkmIq|@(I9BayW*C?UBE=a-MoP^P5Rx-p4y}U9vgx(B099##Px78ToP3Dz$
z6K1bB_*&_`pwuu}BbSNIl}0UkSh+;2h(EN4zjVns|F)@WsPIHQgC8xDAP6i%*ejGS
zTTpwDRmnAI{4ht`)2jeK^F{=N?nIt35TZG@`hy)>-yOM{`^YxJu$<x?ktaTUUi0H6
z%AoIICNxHfG>A>#a!56mDcA%ipJuhU3pWV<TiE?iK{zp30k`l;kl)D=U(C`ix6a;7
z%@$DjaEEUUXDEbXQLsmg&;aRFiC!eZz_f!1B0dJxQiHbiWNurQ4LNCPSnnc@0Ep%;
z!Nk}Yrx)qp&W#h<KUYuZDHtSgDD(hoJZ#-C?`}~+QCbbF3e9QnQ}^PGTIvo~p+rM?
zxR`#xC}5u<T3heqEdf%l@8R?3N5gA78>|#P3b&0qydUg$`<61(nSbL&dU_;lCbBw{
z*f)4}Bw>Ds#DAT}nfj`%i#^JzS%51r053~AG1&IJdQmmyg3ZrdE)&-*$uKbdGv99s
z$C0~#^{PT4d*Uu6yc)>JBzBnQcv=kQ$Y>6(<kI}}!N|$!f-Bs1L4AR_&bwJLpI7lh
z<gG|+GyUMF_;tZ{o}lsQEXVQ|sa7`ReY;XMl8G9VEidQI%JC1$g=3>^Jg@#h{;C-I
z{MtLl#PG>*#poT`3x#tpkBAmOk)7LS%VY8>izxZu-lC#2DZTnhBn$q&;#ekZbs|q$
zkXhKc#wv}_*E#d5Kr{;nl;F2=3n>EmN#7qvm$j1?bPhZ(9{-kO_Xj!7VAXJXuxC+$
z_aX}ewBl!&^EyEI{=+L8Ap_n9ALen&UwY@mJYU4YUzOOm7bgq~@lnqF0_OO6GGduw
zg@~6@K{CHdCU6*L0`2^cAUi+$j$V@?7du}zX(*@^48_&`vw5Y{+5wiIj};Yni^@IG
z6giKP9VZ=qQwSn&0MxXM{L!pa02J6-(P4{g9@;AXk}PO(>I7SF1nyoews^Yo0#YaA
z%JH!xmGucr(!xs7sBs;!?TM<w-UJgLegx1K3pe-V?7E|nWab<$@ymD68jIC0?;HTi
zJhwoM<>G_8@Lv~`7+i;g5@xI5A9XEL)2Xr}h^LdKsfjsI!=3$6zI~J`S94;2zA0}_
z$Y)Gj%fo{gu+!T@QGLHHzwHA&Gh0ALYPQFjRaHAL3CM_5uW@W{aO-QUkN2Vla```p
z`XMR!&QV>$fDZ#H?Ja%n(jfijqFRK-0G<jX!*kt_pruU>q=Kz1>zysl6?ru}+LAW6
zL(9f@eW5|*r)&wKluDZ!bM8fSsO=5tJykY}PcE1K;5x1HIYwT2{gN+L!o|!znSM7o
z`}sjmrGi9!viUeTOEmM(cXHy@%X_`km@uxoSDg7X+FZpX!A+AaMA26#>pzA4-vU)(
zYWmc}g0DUkmlL^1QS&`a;}S&*``Y@}q}J}wnqtgrE9^g~H-nb#yPt|)S$E<DtcW|c
zNV*K2(}-}5S^qHN{xx_on81jn$Z|krZ_V`(?nx_JzGx|Edk_fl(26&XQp(ce)(sf3
zhVgIHy~!SOZRr=Y!k^a(c$`);KLE0lz38jIwhRAbQNzInAos-ks%P@}28$8F320?c
zH~6#fz3;jg7oS>yf9>~T?7XrmYOBDt-fJrv(f7d)bD&zL>ohaoJ@j{4@ug`=jlD>8
z?wrQvJKWcpxKp^mOEcjsc@Tz6>s{56vznUw&R*u%6kd(Pi#laS3YCCiESlgxlfRxu
zH~)6P$VTBo{j`Wf6hwXwJa!4*ge<z!Lid|%wiTl}9=|E&g$Pj2fP}`GGW4O#uSPwx
z>#9(tWq@4bb={kh0Hjbk0JAnz!%Za&cAl%ZXWzp}UD%9SDi}=R9tBK?D-#!eL8y3z
z5)p(|2SA{T3HNtER%`(z)*SPpS?IkKoPgGh0~VuMMt5OMcA%$j{FD6Nct*XZH9j8S
z1JFKMj2EjFC#_Ey;H*6=cea7vWxR|T#eao(*aKHQq`h+bo0-nJO7Ldj5*u7MCnslp
zF$nP1K6~~X&^ejU^X@Ft75i${ez^h2_Bh6iOm$CyvZ^N^8a-!0=1|l3J{uov^YzWa
zFIv`3<3kCrrw4@7%ozoN(*B-L#0i&LjekBddT#3q1g5;$5PlHwJpTnm`uuTVP*|{K
zLH^BT;C-eBU<_&ebtUDEvL#;^()iuksh4na(}12S3@2=}yy&cp6)c3bFEj-NugGGO
zaXAs2ULCK?q1XurqyJr+dO-uUQx$OU==(l=<N9Dm=+31!(P!|%jN>{i6n!W|(~WC_
z!~&C$As*V<)wPb@US0hvNf0FTXZ~enz$$=;V+-d}z<qA(<*1hA7r%Xtl3n(rGU1%Q
z<bOXjPQhUs$xl+b_ZQP-<!;aw+sk12I}aN`6ePB!u=`MK3Q_9Wd&{`37Smt?ZQkE$
z0>q~D#4P<M?uHAhX_3u)iVZNYd|j`_Ix>|)DOC-mR|13VtPTLXns=Zow_SlyoxM0{
zEjoYxTBb^3B}7QVBeW(uiYYT!e@EV7VXa&5^uXYC-n*ctQ8!1bB|+P<uc7ea{D7dP
z*FEREnSrxh_09)AfanPy505r66j|M^Fl>|NvD*PE_CrI8eA}-vM8C6(UYs9QDeIO1
z5_zGnr-{0vk5r}@FZYEMyh&%G!eCMUMMd_A`M4|tBg$;Uw;-6-h~x3)Ur)Iz5=5E|
zEf4|D$SAYl6?X?XwEMizs9H6a;mC}yr^5-DH-X$x#ZVU=h1nbq@{PXb=**`kQ*Eo!
ze7QN=30pewHY&Fzung9({_%UDOUBIhXBw@8Ule5cXy@mS^bg(ulMn(U(~;%57u<4`
z?tmo4S)Pwk;iG(ty6x9#5_fH<zhD1OvfVF;_Py7_Sq-M~Pgv%86l$?%tZR?wSgrRZ
zoC1}Bj=I>(bHJEb_gbrjyZfNzV!<;eQ(0#L=_67YMk70*B+=h=B2}2>qv*|sz?bev
zCn2JK9PAQ+aO0^>`(jdqhcA35r|)ZYD5Xaj5;kRNI0_UuR<d*;<sxMq{)e3bx2vN9
z;{tb|UL${j-aK$)9mvp0Ecqiz;q_z_T@)R|m?Bof5HPQ%98vl&(lRm0eij1qBUog}
zs&F6v5^4es?lMZyMcXh8O4l-7K7#`(4iXjCD#!BaURf_&UMBImO#D%L=Hj*g@5h~S
z{Wz#bCfyp|hX&CSu-ZOfSEMORK8xel%Ukt5xE4ZTtvwcjF$;Xp)AhL;Sb_HeFbfK+
zEymUh{uXSzjFK_L^Z`^0W$^)q8-SPpf|1$2^a23!+#=g+t!E33dZOh}4vBg8|M7+@
z;-bLN=Cw|b+Wiso9F=*tWm6VM&n@{0z@<W;#Mk&!xB4<sD(zP#Nw%=ZK~V8!*J~i6
zO(g745b(NKGSva%VHh=M2|N5`go<tv$o9k|Z**(9T#0y0H+rHxs!2jKiVMaP8*5{S
zzg~U?OeBwVD&ce4jV;mwtenr&Qh<!FIC*FBPbru~%Hro;OI`-wOruo&zuN|3QSkOU
zFwn!c=VYV6^6%l&Z(-yx(i>p=b&!jlUec5tyXnFfdX7p_wY>Epyzh20$Q>2`6^$%a
z3Q&lejPYF~_%4N;?;f)i&dMjTe}}jI{&89@@T03G{KRguk}?frso22Ft69}XagT$8
zW1Uk>kunV8mSxlK2ZmOK5s)AZ*#aYV*kdV0T9xE&OSn9e>JGTQG0biNm3@OA0m>0T
z-khF@R$}cd7^)=uKi}Eq_!EdN$krJ6YK7%z`)2pwt>vRy7ZEa^j$>#quiO21OZ4x>
zmxNxQ?U?b?iQ+$@Z2kI|RAuP}BsK|f=vCCsH&D^qsncZABn|g{x>(B9lbG^g!{9c7
z(n0=gy25vsahy%lYc*Eem&<==(y(iikjM7nbVR*E>=TCi(eaS)#}Z3j2LdO6y4vf|
zZ}Lcw@^a}1a{p06lSi@8T^75cx};*@*6Qv3%|R8h{5)XO=mVT=paxI)enQ7`^wIKK
z5b1j>t5Vf>YG*Kx_UVdU!10s?h%!pVfFTrsKRB^xYAA(!SW#A#`j5J?AHdKwu7B3q
zMd|Mf!OQ{l6bk2|r_IxBt+FH$ju1xCIw>me_#vJRaxFksU+6#$751PUawX8hE)b|x
z>AAk0x~LYo_L~auQEY7iVwGNFriz_5MAMchFb7(-(jdTs$%l}Qu}r+LPpQSrb1<cu
zO#>UDzYT;fur5+qim)xbbfq{2$+v1O$JwI?jofd1IAV;PBX0<|aGVf+Lc56-RF7@y
zmyu+qMtZ)^XoTmhJO72b{=MZvA*}>28Df6^_Z@1%ooe$H8cgPV-Fmq6<5SqDZSOzL
z9*<is3Uo<M#Kz!%qqI!4nGVHW%U3{H1K%6m%%P6a^WqGasB)T-1X>E~*kOHogiMTR
zV+I5UvD|7KMGQqGXVx?fKZn%OdDq1^VTU0d7W#mBv%&Vh0!VMGLh+70MxLm%HRw``
z*z^WI=y7}Jr+eJzv?0`&Nt{XE1{eD4hkIH0*a3loKjqFz*o{$=WdfD`r)8SVM`&m<
zq2&8v{F9hyNNl%yM$Zs3$%`=JbI6Lw`??<I$#-30KMmX|ZyJiGdz;=hdLDa^Oacl)
zx%r(s&<-_5CdPM-qbYx-asl5Ly45RWQ@#^^0(U#i<nMMK9kt5Dk@wYg#W5Tx#)VlF
zdP3qZ>qF7e(Z_#b>C_OGcBEYtbb(mV{35g?8oBNHJx<MuTF6U~FiF=m&6zr!Rf?|U
z)Vz8hFST$3%@Pr%0{E=)qk-GJ1I1)ohnJWU11t;us;3%8^#F5ioT@pBv3`2<$@Y6s
z%?;9IwqIjfuTUdNoWh`UiU$8jm&91?e+Z_3UWySQVQcH=3)^;iZc&lKXTt5fV}+C@
zf7I9^W`y8x9J>SMA!cUKAxbDtUZm~<G8TE}=NCGkJyz0dd;FMw>$}!>eJx4NlD053
zY4mEF&MM@)*ceDM8rSQq6^j$*xuDj$2cmg+s;z(Let6CYR1wRdklZ#JR8{~#%ECrt
z<BCT&H0`O}H}(Z+5)-l$Um(CIq3VR8#|y^A&~^3p9&p$e_!jt?gU%3%Q_FctUcP#z
zdM*`?VD>pZoh4^Otr2Rr$IsZqiR3Su=<hnd_~{%*lG);5Oe^t;IglyP@}?7=wb$HB
zV^66LFjtT~t&loTxmgm(R5tvw<5$$EF-Z5M`a5TEpFhoyFE=SME$(eeJ(axbiw$nr
zf){g+r*{{NuWQh8bWDd*EyllBVO$LT$`acG)bll^Qq-z=|Ip6TP|+D(xj3;5YWR8r
z!G@{gb%lb;&`?IvzWD5g#E)YQ#*<-JRXkZYJMIp!ujL-Slf%z%k`1k&4lCbKFq~9e
zFs{}SoiQ~~{q}h-f#nhJ)wMG<zJ7ayo_4$VN%f2SSUG?09z(JBk*e0`+n<VPJI>6(
z)h*pHT=JVkax@#BNSa}9(OQ|i`)7UACU+!coYx2==a6ZZt-*8ER5MzUnKy+Lk8(oo
zE(1bizv!oV5{U5)e`x!3uaLgWUuxlyCaWy?3vG2zYQ$F;<$KDZ6y_5}Cl3DC0{@>8
z3G1Pt?CpX#DW>p_*JRU=XCZSaU+Nu`hfWQLtusAeYDZ%cJ{0gw?VP$4$fvPmEjw|O
zrPhU=hTH*-iX<obOde0oxO>(pa2Q6lPAL@;IXF5}j3KIuiGN^5uAA<N#7E3aN=DcN
z>|W-R<W*;RB)>`9aRdw~L!?iD?1Jc8tLc>qJK#~|r3ZMmoT(9wA|A~*NM|4kQmr~0
zisih5kjm{qb_V)-b_N|`Z7QS<!FU=c&&{mRTy{}eS+qA9f_fD+g}i>vkl%iMfA((5
zs=oq7KBkq+{v6}55s;({bi(vW*$5T{vH6_|B2U3+7%*L3AWK&s6%500+WIYl6@0<C
zua(f(Iew}8x8I}*1<FY#S0j}Gzfu#*$V4gj9@&X!q&dJmIpc6yAKEhaqFMyqI7HA=
zIU0-rr24>Hla3dmD#B?l@wd}<%Z030FMx+BPAok;^I7ewz%?<?tS>tX7_b6sJ%M=L
zLKy0=6sKQ2^j<6f1o_~i;ya#^2f7&!(6gZ&-1*`&#1nYkB3OU-DX5do*>30x^4oTw
zcN_l)ANc>hC`O|+pG2=BIB9fw&QKb4TopR>c5Q8bcmoXdFvlu#nO_P6WF=TXC(3j_
zeUo<6lci!mF&!Nxc_b}$_fCnUmjUNE>6vK)!n&0PBYI>=K1D7B)R0v@cb;zpMGVM)
zlhXGN-Z$^eUSbc^h;j7WoBk$6kZAGfw(=YU$|z#;Ze)(D4t~Z;!11(W@-p`!3rmp_
zi4#fuf|(sHdwcM6e7tx?^Kp2CCgtPQrO)d_Xuw+KA$!f*21K+*iaBFV1>k_XT8;qI
z1F3bXi*N{tI>+;3|D!JGIGEt&1~6BEO_dag(IjgGO5d`ORrbG-ie^#J$BW01k!w@y
z%a0B&&oi@Aok&cmCU#twcU$KRS%=dA7Ze6Ni2R;}rc;pB9`Q=@nWA|C^Y`1XpB3t2
z;gmOwX_uzWy(X$_Yy!O?MfP6Zo0scUy3E@VMGRtv%lLm(?&G3pf`!e{Z0uWAU&3&I
zR_G{xJF!~NJ{-GdJ!1;>&SeX0Jthmph;6ccYGQjGavWowm-*w4v2^1F{#0d*SlhP#
zlFqz>-{e1@y8pQl|Gllk&cf|Fp*IplddA}K#JIfAcc)znZh*~-q^DQS)}-eB<mYHd
zwF2^nZQ@z|7LT7|;@dk$+t#J$kK$)BEzq5lnYpIsmt`v{Qiw)A3PQN>QgK-^Itohc
z)!z75HBzXWSxxY90FaN@oR;^ha$AR@FWqeg6~Q;x<WL>Foa#7~MZ#g)OY|G&b-h*a
zaS1X2NEfBjc`r-QT;Qz4sn?1{ej@hZHT)?*Fv41G^@Cq1yO{;}P%uP<u}e)G%!y@7
z@<^u~LjA)!K4BEN{Rp3A^d4D-nz`PO_@eYMek(sRhR4iEMkSlRXC*(QH;v3w5p@v~
zawl8g*B32vv>}-NUPT#wo+)|vyoaTaSL9~~2Cl=MZMbtq?0ewMMsf&zh1)?jXH{u!
za3hr4MLZk#MaZm2K|5;IM!Ki}r%>^S(q6t>?!1BK<f^(mX+(OLk)pPT*F6O>AG@JF
z>Elg7sNnIN>!a<z{?Gqrm<o?kpprk770Y;4>n`%}M+ya&;dJG3bJ%60K>;~C5mj)s
zVhYxaanv(PPufTJhGzB2BR8{MYo#!9mZB&Zn2)bTFT&|KRqQiTFpJr;_j1|?z%s^a
zt#wGf=YwBuZ!eDl6Cpaq414Q3liL5|^jCcaS%A+qIqygUL!Lr)NmDD-+4m!eW+|(4
zlz;+%>uV1st-<0)skX2`_rL&%-PVIs59fuj>d?IWd}XCLqtkTD0$U*5(3FHEiXE;r
zh`TJSOnC;>?7}X7B3tcx%Ao8z5f{I``KC!)srSalxsmrjyx7D;5^E)=E0b?SJ*6ZX
z>7PCG2#UJG$9wXGZm3<mh%s{zfcQ+%AdWZNc9Dz0+kza-F8~NyKV1}Hsc#20XRekO
zfbQmtRmerd)!lf5qgm%25<sCO&HY2g#M46_12mS=l<^o(V(Q34hWP4}<v(oR9CKx~
zvmIkr(1s4)?s(%`v<<!u2h_VHCg8IslACKRX=reg)ESMDkmrq;axqAnEHfpY1!lG(
z$~5Gfc1_QgRWc%Q)<o9r^VL2wEqfPV_U?$KsVdpda8#ri)vR;l|GB;tpW+q@+41Kc
z%nSSYQy&v78qt~TF4A0}Ljo8Zoeh|JhhPs&cE?92IRYn(pEq!cpUArD*<Bd-^$SWY
zkJtl(ImO!+eYvX!p40wnGZQ{IO)TCOfPB^NOl~xjG4j!-K?22!ZhA|K%r8i<VuhG$
zBf=oexp?$kcxxY10NDN}<zzu!hRt2+pT#~-3Z7q%4qN+OYQOs9mHV-=nCUIh<mCbl
z3y)JEt@li|g%i-m^fme;Aoul}uGxf&spJ9R==1ovUy8_zxW6pf;LK`#uA?Nd6_Ts1
zx5PI<Z{r#!EaXwWw(KJ=9+W)fQ1VCWY3uB34#ON}L=eKjLAgH;3a3B7o=zivJb=9!
zqw@qJz}L3?q#*>MRZ~I_w?^>$W$_A?g6La{U{BIXu)GZiN$&F#HA#a!4F3ke&Sk>=
zG#c2IU-Sb>(+a@Xsx7JGz1(j)pmRqK`T!WERG-MH@+H)QCszRZoXYp+zw&T0b#Z|F
zjF+j$?#K@gyr%oDLJXxngYr8qMSk&Z?2EAsXqGPJyw!6^6FW9q=}o=~COl{nC*K%0
z7A5fKu0=zu!4861<RHG9BjyI@GXr5!A}zfy_TsrJmAJTrdm`zD7N%l_`Dp|h*nb<4
zNg(S9i~G+5qZAVVH<!$W>R*~GfS>*=fE{}eM;7EP-q<cGJ6jX7eby8y8Ys#r#GDq6
zeq03C6eqkyCM}Vbzts>wU#^+?PZq#rLFp+zZ&Io_ScE!0<I@{z+!{J+Va_00s^2Aj
zr#^^R?hZg$p**)VpS?1i*+JEjWIdk-Axd=N?Z0V2eI#J`+;VCt;Mr*z8(Cdl-2!6c
z*|WcH45htx<M{^c;xe@@d$qI1cwTkiySs@8kMvNT{R`4PWIwO3#d{HD3oDpq=8i@U
z5%R$(Hv16m&~yYcgs(wxk+11fQ<@QRvf-+^LK7i^<rr6!2`i8pqZii)U=45FmOJ1c
z$%b;xP<v4RzUKUC)38pc42`@x*-!yQ5lQm4K(5j$u(ixYjbw=-djJP?-Z6BaDmUU1
zh>G8xQ5{E^iwT?2KzbKJQ&-4d6I_fxljx$bB7icN#m@<}Jb^eMNU(CBUv}ruPxRxz
z{&U+=!rs4+RIzi4_-eaguV!Ymvu|%G%AI3jo>+p)szIn&mt*2=5qBp|1`_piGlz{L
zt?gc`MdST`TRKMwRN)JP8@Z6#T){P}QQdt)@>xsfs!J+pQ1-4Wq$4Yz7!P9Em#}v7
z-@Eu<?=r(_?5w(2MO`bT`NeAzDFttP>Rgzkci1CugWma7?J<iBz1{IWerk|KuE-#b
zP??@6pXq!e`{e-$VEVYeEi|q`QDO~P7ITe^hfWczP}l(nB{@u7=GoJyMW%m$yGM|o
z2?|aqArGtos;G5x7<T*HC<d4DdjJ`+n?_E6VZgYr0AufKAn2gL<7^w3=CsawRuaI3
z2>{f(Uy)2&L7|RJK|(CYZk%Zndu&<S8%UCj`uZ5hO6xIa^J^5jR|lIt=%ZYnWgvSV
z4#)&S!)4xias+^dOz;?9%mKN_xxX>%w+psoO+i!b!0<K^7?G+*pb8}vPtP7QNrJo0
z7SF0x^(cw3a195-xVWRqUYQF6Tq7+GbE!0iq}V8yDuOV(lDI#B-Sgr=GMD^zELs=k
z#MG{rW2wb3sxY5T9{8TTyX`*sg-a{>D*&-}G4_v#Ge#$9Vb<-zKN8_A2nc+^-PgcD
zGXz-AhJW||R1&D}r@dzFPX-@KNaU|NOYuH;T}p9gb)F)qx*f-wcv}Q3a<^X!ir@xS
zgJICkEl3rY_lppQ^;>yg!bC2OH>Io%vYbb|m#P2V?*8*`2oCukocEf>DDEfOF2#-I
zGVBRHVSFs=#O<Mh+WN@Et>3I3k8#Yi<sbi6R(^O;AS2}c*ew8A{AhJY7Ow$pV~cjt
z6*_g%`fkgJjvNI&u`^QQaD7t*8DSE-V`mjCBlyJN7WC9by5?lgahL>49*4l^>bvC1
z=<L>wU1J~)4k6*QoPv`RYdWD8%rS)c(bL{IT91VJ`$q&C@bl+A5By(@eFacl+qNz4
z!6CQ?cXxMpcMHMYJ!o(Z3GN!)o!}0^-4fj0;cs&8IrrZ8@~VDSSE{S&bno74ttn%U
zIc5#61sJc?1B=-Z`d(2l2<IG7<VgB9Yr<iH!3Q!3z8B*U{%#K=4(y#|Fxjtz*WQ<8
za}Y;JeaVN{PT%4BMs;fZ?y+>9^i?#X7)nT(Jd}wymgoQ~6nCZA!kEB$RS)#*!T6eW
zBIRM!1Z06d8aAFtlR{+SPlEa*gS4FW;aW`QNkN>0(vp$}j-2pleSi54y(x-AoF_D3
zliv0>a9oe_JfGo@h(-553q_md^iVL4RP(-^Lgn(hlq()c>DuBY1I+O6dxWzW>ZCUQ
zfGf5lg#pd~;$E+4Z`_~?ds;CyW?_=)KY^2v=#OS5>_0U;it+b-|DTe4|M=!aB(N~d
zkS51Qks$()qa^2NAjOE>wbCeU1P0B&R)DHu6Cr`Ta%TcBT27Rj29Q&IE_BV$C8*x6
z#OHCv+S*QUb~%^?Jg|J&myqvwd(=?@`+mC<#Fq1w+0M!$i-coFHGIItPH_~|nKFdx
zOKLK(v^ik3Wf*`CTUx1wa5cL%Y|)2U^ZZ&V!~3r8Q>u-f7%d3pUz~RJ8cjFRp@m}t
zC#(U_4v4}p0j*ul=%{JTaBqLB9G&qDzAfVY4aExTAdp!66jlq8xsV4z6xqwV(x=w|
z`i4{$J<DDxW%=doXFnAalTtJiSrky}A14CnEFieQy%a_O$gk@N=9oA;cYHYOiKRVs
zp{NJ0G8*~;GD0D!(+Js0Yc%AgMPMl;VTp+<g<{~|K_GwMLlX9v#zmg=jnqX;dxWI&
zqMb9R@9~Ud?_?ke@D8+6QIbz-`qWvOETZMYa9Vau(RpD0xA*zuQ377fq9*m<bx#_{
z|1mp;FbQn!ZX$3bpywQ+1Z2P|dTvTVz-9q*Y-Qb0$C4m#C?G+90YK1a%BP$`iKt{#
z+2zD<bD46cI-X|vpJJH8EOvm}1&4IV8{F+!ZV;5CbZ(b;8)O@PKn^CiZ83oK1?T{0
zUL-olDMntd1LPB=xXpj?v#_X8gM&2eTN2q4RqHKG=F7~`19CIL8Gg?m$qafkMnFxh
z`Up_5jA9bRQbP1amPeQB{b298Q{HmS9KH@S_on!3A|R`5V0ja1#{eLHfjyOuThhq~
zcL4rl#wYpa704d0FF`$dgLN;P#;J7tv;7&!G=K5`Rl5)rBZ~ENuE7H|1vZ}WR5l>k
zccqN@Y+bosgwEBq-cA=~=Hm$7cA{=(@WbHki!BsaQ?`z$qbnAc>C@e8cvm<*P=|LM
z*oEUUFJ!N-fN?%;Jca`Ll|u#SMAtR!-c-YvFOOY6AwAYH&tt4|->T><!v+vr(hk`2
z11-12KhW9s@n0j@bptf{kK+OV4qE=aWPtPqfZT&e<_j6G48=y^M?09=?+ZIF53TDy
z0<$F$LQerGoSbxLqZTq7ByKaTYpvCzX2cB9oRg$I=_}bU;)8NoF2Nb5dLq_c3j_eO
zfh~TMR)(ZB`6>s%1mQSJ$m<@9Z1#qNDhx74;JGpJo+AN^s5lxOyt&SHB?TB4qt*Q>
z;zIbcDO_-F$(Zn>OuucBQry<7HIdk?yV2q2bapr9nElp>_~k7ynt^Po^HX%41|$tN
zb&geeQ^@+ae!l!tVWKS&i)h<{4N^If!!^Gbmk&tQpvOYUY!j{k9Rb3)KZVT-CMceO
z&vW7nlS$q=cwZ;qr%ROP6{m5&SILVXKXN7Z02PMm(y`rV0Mm=QlX03HPhlID%=Q29
z0$ld|?twM*yod)_BNbZ|P+8@aYgxC(qyK#zI?*8H>3yO%Q{d`|0HFyidx5)<KE+qS
zkCP((qc%eRDL)wmeW}Am(50WCu*QPG`^SdF_7A8S1%yOWj98~2kZkl)Jf_E)?WacJ
zI8Sk9Cu%iRPBW^-=pb8QqDvAP4-j_{Vgt5KExv4SH@loxPtM_Z_Xv<|4f!TQJBM^+
zJtACRI*E?A^P#GU?{bAyU!_>8IY#p;k2wY}0BNwm9EME#MCkTxusBy@#aLoN5=E;d
ze9Hkp0NNvd8?O-fdyf!JaAYI#Em)zNVVM3nJ4CBxv7s29XG(~dCu0))PZOM`1cBog
zQ|NOL9lvPIbQHp#^LQvcG&qtQt1VRPbSKo*SJ1Yvd>;qU>@sL#e4c!Yi?YJP9o{_;
z4-O=3eUA%>A2w)^tF_Kd{i+b0gAWG|_C#5)MW>ZP)(5&H@Q_z#ps49@jfRN<BuK&N
zOYfBHBkVB5K3T;_x|TuBCjSf;g;3U>q=Lh+LeGF%eCjtkn@BAxQXC;eIOz1g^AIN2
zNHlo_W3tUIVxXrbHxSV23GjIO@rLwpTY)Q<xL@VPrKyo?D`O}(fyery$nkI87*&Da
zRVCWRp^a65yg(|f&o+%eUn0BK#g&?oVT;}d2uKIP*bVdtqMrf>1IOhaF(-LLajr}b
zSLYJXF-=Emmy{XDac@Wv%6?0+AB&q9<cYxRkZDg=Yz^qukYZH)Sxh%cCHs|G3?E0Q
z2-jaS3qjs8pE7Ic(x%1r=nw|fvjn0xP&$AH95EbuqTR=fG^VxG8Lqsqw1|6PE_r)`
zet20i^>*Cvne-ENV}(7Trr2O0?<o*zOMeXICmdRlqRPH0-u1~V4~vfeJmv2mpO$v$
zC|%3tdWbbstRhkJj@4!{@%nh>pc;ufjsVmGHIYlEDQo{P!l9rRir}U9P?`><=b^b{
zQKc;!48sc03tR7$ci{5XuT_rNMnZ~2NYL9Wyv?;-U(O?R78P$-{qw~MiS)~rR0*4N
zxO0~Tf@dPoh`wFoM(MT&=Ts%p4+!o`3j6OTrZz4MU9T}zw*&1wEg)64Vu0FhP@-L*
z$}-)sX?Rc;`3|yvGe!olEdNJUe{=-4UQ5{_5XPg<#*5k5%u?E?w)EtOzoLx{7>IjF
zRQ<X@OO=Sl(Y-Em(%oF*6QxQ&dk^_;li%<8S75M?0*2xuO!ZR}v$$;EoA>M;{!+U5
zvyiW|@-)o_(kZFHhN0bbU9>mbNrK?0Cxv3DkzCPe(;GDw%Y_d9nQ}t;5}&}as_FOk
zB9@bM`ltx1O_qh+_4t!vDL2Iu-!}p_F$^zn;7{|#SEQfUZ&0EiS4yK5)jczuh0$Sm
z`0*a&&a%-l$p%0R<wgr<=eAozrd#bkei3QysTV5byi>j^$@K75E3Xf2NYColQJE(G
z3-1Cl0c=pR<Y)_&D7};>%QZmCWdT2W``fqp6J9p*oKikECqmI#Qe(m~8JfU^XP^j{
zr2OK^hj%%&5F>dO&djNf!c<;JJ+bq#=9Nm-5ShcCS-LuIY0!bGewClJ_jE8<!H{b5
zM$wouqS#@Dk5FOBtD5~OL;d2*g9t1b6(}%Z)J_ULpqsGg(`$tJinkvhUsdtk?pn=`
z=hsSQTV`1g#*<mjZMmLp_KLU3Pb(d$>g2}F2Yd{rhTby-0vgY{m3B*WjREN2cEdeD
z@c5W4k^O~0q-zZ;r^tW(R6*y|U&(Zp>fcS(9`uU`p8*{*>GZN<Osz-T!Fw<6{Fieq
z46}vOM?<_=3}r|y;-5DfS4NQ8`l*GQ$cHPHB-!q<Efw!pWM-jsQZU=Bj28Ka7On)e
zAOL6|)tP35Qx*UPa{+DLOXH@@8XtcA7vsd+r8Uf~^@%J=9dn1h4kY~h%xo~i@BCMf
zbMGPPFeg=F3&EBU>%DGlsf0|~@EvW1P~oiSDk~X3iV%h{C`ghBVZsS~)O*4b9Q!5|
z2sL=e*ueZq2`z)k%-`JG*Ebo4LV8IO>NCRUv@IKYo}!#(I;{KTUktl5w4;Sqo^ymZ
z9plZXp*PCK)6a5-Qe|iVECDOrc{{5y8Ajf1mOJ<28-e+5(Ql9IdK>jODE-@O7g56$
zg?_xpd~n~e!>a?jh4+bl)wDW1@S}ngeAd?bC2iFB(jGjtAeCW>E=1YQ-kA@VG?(R4
zGOCK6MRcgci%$EbW7Y-73xa+(LUQp>?;wmnVkAg}oJ2Gqx(;iEW?$$EK&k^ES1`CA
zwhxow)do8ese?A#XVy~U{y3o9@R-sdVfSlw=at_=g$2tsGb<`?qsUZ27~O>AiPNP=
z<Kmu(xH`4drv%65_PPqH--ID?70$q9X#yUM5=xW}ra?zw0E|ea=&p)@60^v`VRaYx
zSYxU9LX<u$?L|eNMuV$-*h88i`qdK!NDCQ${|M<wzzK>XXP||Ng(dk)dr7l>y1!DU
z?#S6eL_#VA5Nnj2B^705n9RLc&j#j!EP>lBItE4<aQkQVT4G4SWO}_k<xZdy@d042
zBmUUJXoGU=?`I+7l?YLB>w<WYlyU1XqB;Tt1N-F?5gwicKxKo|pln;qC7T{Z_z*DI
zjFgP)K3%_YRX{fEHr7D&W28Nx0+2NM@-A(TKfp-!roGHDEE1yvKE6|Dw)^fj&d-?z
zo6I1#S>pC6owL8pE5S|^?~b@xpSOZiQs!MABBeq^+p{@b(Ug2S&EBXhA_NrM+pz}D
zlSBZox(^XeFfje-FH!UeyD99DEvHpEW<xVj@!9>ogJvG{y<@G}+P<nLnKIP+28L-3
z4u`FEC_dil7%e@0G?0_;DZbgGtkiCCJCTnKNntVxiIb7BL(rm@yk3`xTo6R;j4@*&
z1`&7!`uUm&qqWRB;V@qN6#|BY1sh>0TZnYpR~H#)h#**D8mbn6PH^78;IDuAeQq#{
z>!rNY8TA<|=r(Tkr9Av%$A&HcduP)l*o|*D$w6QnM{kkdN&otYWG&mr@<s|w5PHc0
zc1JG?e9$+&vBM$b0*0;*%36r`^a}h=_i>0Cj98?CZb73Mk^QArqZ~;ZjPcP2?&HVm
zz|@4JS)?ma4OeT8ly8U?21{xz<$pI;Y{Fa~EzM~fnQbYJkBq!SCS3mHKRbm@YtX)|
zX(e_n_$I4l@I)t_p?&yF7As`Ere@{*;vyYYX3W+4_VG7JU!)C#j+V22c0MFp>-!z{
zL@h8}o(xSN!w9IlNil=;@z-sO6q<reCyPS~;!={Xt4$q6qJaT3l?4Id<p$22R}-|`
z<>mP)=uw$d+?3-Sq!=9xkeTLxdaUtLrPXW-!%;5*i!BxI;pqc3P%+u;R(0dybm`zm
z)P8+n#zhDFSBV%71|3F=Fcw_+QG`;wa`~@U{{=m9s=yGPw>jLnFE$((RrP9j<$Q!i
zxeR+`KwUbVQo0Jel*r@7+YBHEO>CvmlYZ!~Lmc##yn_x)1gjdg9NfMC=8RHCM7?oq
zH%}JrO3Op3fT8sCVeOlnp0uu4B3L(=X{}#9@F8ABpb!vuD(Ro=wm7Mvt$QFBv>pp*
zL4!d=Z{eB9o8-+81pP*!!NB|I(0?XRyp_x#+@J9%y&{;8rJZ|&0a>fTDVPm%`|D7H
zX7iON^-4+bAesP>`>*2!CPMlhIZj?k!1OdtS1q!gsDL4dLO`U<k+rBmo9~3Szqn*Y
zQCbWg9+2ZUs?!l*XuK!(ClZI??poggn(Kd?JY>J{2+5aNc2cS=eK$A@x8gUbc|x}b
zJ|X>bzjdh)-OT{HM-oCeaKuYU3YXfvZiWaCJj;n##WQF)A1hjpxuxJfOk@RgV*zwn
z#sQGmjtmSM_4zuXcG5}#J?vj?v4o#~_Xh=(L<;&U@dt<bweyEroBZnnelN%R2oVUZ
z&%k<VnYI`Z3!tN-h(g{4CuXWBZVn(Jp}z|Nvz(;}sGhQ(3<|yzh7)}J8Y20W115y{
zcFgSsMBp5)#~-mfWndbtItoYEIyK_?!wJJ8>p{9;KSULgpyVaTiH<`3`0x-#5loRo
zZMh@Ie76hhAs)p}L?lwu&)E}XnSQh>DqeEY=$jKbof2@DRr~AiN&?N{=PR>^!-V=>
z2xLOn7vCV&W8;Oemw#P3B@37$B0kXAi$_60QP>3ws<yCkd~%{tXSJ00!S!fS?Y*_t
zBFGSvjv|q7A&eS0yLeU(ieL%|IhZQz5HCNlnyMTSvCmnvkQMWEJT}ih!k|P`<&j8f
zr1pKVptnDK0AxhF$&n1G7)hJAUu=Dz7JSnw3#C{WHmM*j9gifJ1qQ%b;)U`Hj-u<D
zPqE+!Gr(U>cB`XHBL60*|7SwM2$n&Lyh5Za{mgN!-cSDI=NT3|KvaDBIa!S;_iAQ<
zxDK3(gi=&|t9y_TnIz{(2qsqP=_4{x+GD?KVO&KAQZNh#2<NpEpdu1$zfQWpS~+z@
z{1EfZB`ifG7>lOr#ku@L;HUfNWoj{y*tdom<v-nX6ywnRN<(@fhR@^)_{8e=LzHaa
zx62u=Uv^D<{6szw3kS8HdUcKx^$RedifI1T!a|dK(XIbN-zm|+0LeX;k3rLdFp4D~
zmYSR>h<7~I64UyfRK6jxyB#lwhvY0q#h4EPa*G83L0O}v?&4!91z4$i8Obf(2vo1}
zUj(S3a6tzldNZ38s=@2K(Am!}jnW4OX~|-c{cg$*zU*5Rc7@-fSSVixLg3N`tbWe@
zdOPz4F50$u!h_oCltms!v%yv`IIVQ(DCoNj_6q=FNpFE90uxzaasT>!OJ1<-=WMoT
zygP`07b&y$N$ia~<iZVXW~4dB)<{YBXQ~#D_03*7Yow6kYy}7Q0+F*48c<e{c!)B<
zZ(+3jHX<5u?G7p)qOOZ1_CYw0Vyt<HmuMt->(#gSxTmoswX(usd)Ju^jZ%s)K3ie_
zf~pfEtktN$xDheNGmtJy%?fw_yQ>Kbg1~(}fcf&e{or*diq8(*@z;zDd0<-Uw{@+O
zlT(?`w8X9Rua0RQ-~&{AD|ROU;vk@x6q)&951z2x)m;CJ!<Tpgz7FNN^t+u}>GX;m
z3Z9=q{^$JP{ry4qC$hnX?%_Xw{VH{Lch|@28UC@SN7Qnv;0<7l(*Q{i7)wYB`Lryc
z{4HGvmYdK!mL(L3U<~SLMZ7i-pah2l(3mTYVSmLTVnia6+oDk7%5#nMN!$zy{}fqY
z$%)Z|J})7O80m7OCaKES30U{GM|fH*MMk9IQBh<s<mr0@W23K?KF*#9N?LAp(X-6>
z;^p%TM@omXC?fltmE>^BzCd&W0+I$QD(uA6RE9;A;1DR47=kiW4`t=>Lmq3a$=<t(
z`>U29OI<{l;<=Bm?+NmJa~G%5xM(Qf<$X>QD42s88k5ZRd(pP!V1R)MhP?Z=LntVe
zy@9^wPK2=q%zrTl!%}lOc`;ztA%AFRh^;&^qOcBM7sfz7&@OA4dDgqvHmIxfu`yUH
zJ(`-Goh|fnX*kAsi!LMviUJAIg-A?HY`S*i^8Q?)gN4iOSeBd^R?7eMY42Bt*Y(BM
zufxj^59w=m0;7$OP}F1mk`nc{u?LJ;kv$ie-!i$KvUTSM_AZLs>ViM!8gF?>%I2hH
zcH6%7!L_)Nup4kO*S!J1zc2F(tAz5^_8S2Q10w?Y!{dpJkrn}r85oxWDyXQ4d?o{n
z3+@d-@B69*S6e_=KmrtK$;Vz}Vs<PnF2{F10G*Z36WP#BTY4T>$l00IftRr!iw_{1
zQFoz02!cS2Q3kX&^Gd@+Qq+8xO&}qk3>ezjSlx~k?p^=q>wU<PF_FbF6TW^Ur`giT
zm|iR_D3}CFryrJYJxuHGr}A%}QWjHisTg^saiC8>`>E&IxeqnfROjVsH+$A=(+PjI
z%a)<XripA3DbC4JZ#*AO@<{Xh86^{}vu(m^HLGcy3-k~%S8K{@H)UpirSI^j-`cJp
zIy;CoPy*EU>DmsA8XSCr@&ojG5b7Hml%Ai{9iw>_)PDh#tcf78;jKqw<^CZPw=19E
z@16A=8QD!5Ys9UfSOdh72;QQcEvG?o#-9*vR+_x(rPwdZn^dmfq9zb|9D3iy;IO;{
zZo(fPSqu;%!9pMcqLVbc*dYCGo<P0$SGgZwEKuP+N^AqKJm>>R&?qha#tfjq;ObZ&
zwpTg_aFk;2v;)T=ZuFFtghoe4CqZ5Z%<v~NV<FT6it3&Kj#}Klx`#SdLpLS_e6b-V
zEU(+CSPDV9yn1fZbL(wPZT_hY^#{s4buXGW&tF&BX>fgDpvWM<ADl6;qL5<oGijn8
z7!*Z~^`fNTZ`6Uw^BHcDA9K-)itEGohh%yXJ!tA0SQFSNMXCE1;PG(1mx4+7$;h-R
z&n|+LTq%2df<EzvdLPX@1dY7U9T^{^&tWn_rQ&Icl_e+b?F)fN0>j+n^Iw{oWrtI6
zWcOGb_(>s`AvWqVGrdU3JF?fe^&obQyk5CP>D5opoI>ZAaTwpZ3FP4Gip=mPpkwCU
z!N>bf4_|3)6GI@BsB(Yd=-?bcKojl}`wx4p(7DvHx;`_P3G|A9hd{vigZ$xf8RxIy
z=veK=*v;?CI59K&o@K@Jpsaf7@$r$K=dmrS!SFj691;@6YB3=e7A3*$7gM%S`?5xW
z!$?i#z-Qn5D_$mV(%|aiwJz)SvY$rCI+`h9kb#MbIT=dmTNK{YO;+Qrsit=nsZtE*
z-g@G_!?S6m8ac9g3c7q^kIvq1h<&V&TsgLJv8UJOS*JS!7{ZY8ocqRjA{C+)o}*A_
zrAgF=&oXnm`>xSw|5_W6fSOSMaIOjg#}ota%-ra-?c~+dyF;zsV)HIwD1C-1<#COf
z86ltrgAp?OEy(<9-TwQ<x@)!K*d3=_r9@b8kltRy)1)2Ug16;6_MBRK7kpD0KT93i
z$`hLG7Z@6E-nA9mArqiB5?<4H>VsZRt~7J$f?R|}eIjocz^4XEBawL2G&EL4Aw8V`
zoZSC>5-4h@=?*jB>{5!G0gFaH(G?88RsJ;0(2@393Al@mq&X}1CF||&we15*8$YIg
zRd0@h<NTbjzqq&<W{@$tx+)K_{&E4`HLd8qg|Qm`zjkmDOwX;v)RfG#`1kjPZizk^
z4||%UOqP~zdhnr^fP~23r)&L@j1dsD+kD6a0)Q5w^#>X=gigqBlnqO|L+9xyZNJpl
z-q*CG*EsldoPFCVL)`I*uGsg8E<JDIxh~)j#ov|p)NaU-a65`a`h!^ne(4Gd7A6#E
zMg))ZE^=^iFv`ibIma^|j{k+`{AgZ$P7X<uGf#Dk-!*4vi<l?PBhjaB7*Pocx4zoi
zW^BUCdctXN;E)9bytCiQTVgZu7dY{V=O5AIh+WBL_<M~(k#{iys8kA^nV@#nL{$Gd
zn13D5fBxm918Xmwxu>;FOGwBamG3agG*P8Kt6$0-cJCL6hzWz=J6Q4(^*jN`3q}2H
z=FL+&8!M|E;jR&R$^^~^zh)rzLH~2;6<~jDZN>E(b17)Vm<9gn!1#B5C7tlHx%rxE
z(jh)8V6A*c)|5LmBwf}K8;eX=rf~c4Fs#xNb~JFt=|z*Bovl4nQUc61_<j7+sKB1d
zcdo1zw8$6m>RH&{M8f}ld+jsO)+<4%sHk?hAZZEzUdR77mmwLQT)51g<Kr>f+S<)z
z0Q0y!36Kr=VBvZ&&U06$P7_7Imr`%LLcOW#`e92*NT`PavyB6k-`oy#1sewF7K>+Q
zT=#I%h<ONjwFRAuXhn7vg!{xy1phV+A0UQ?hb;i#w%BBDJf_y5<S^@7LPeE@Xq1SL
zOdw?=7d2_6<D~;XlZ4^L9=FqG1Jo8vDQQamT~GMQmjKCr|5d*i8V`nnj15fsG}>Vq
z>5_r9wV02APrXlu@O5={5y^6^@HkQJB=7V<s-T<qL*P<ao$zKbYbU-3LKl~p%U|cW
zj(ViiGQXPa|NU4;K<1=D05di=mTa2m_$rGN0yqh2Ik}lJcsRJ8?l0^fzN2h&lKDIW
z-drB%@6<FjhM^fB?a6_<aiapJ`iN7Lel#AJur*_+iJn6*My>4%clCnx=J%KmUJaL<
zqou<5bN7d%1{DhnDhGan3FE*3paU8}Jn&vQx}_}uIQREjN`XNUc7MeqF!}d35v+ju
zQuf?aA#?J;R>v0c@a>e+0*}b{ya<Rx*m<uqt22R_V<M}eZ2-6QytUy-TDl}(+3)V0
z%d~+f2&FNpyxo)O>!`TJJHtBdpdXFF>fZ*ko*tZf+p@)iI2nID-X#>Zw@WSGXbpZ~
zoyg!za$fHQ9cna%!tUV;6~<z-M4y?R9rD=P*}1W7D}wlYYyEd*BO<o`jS)t(+Vs<W
z0Lrr2=;24dg=#bHXTVxZ0w;Nq3m0W1gHNZuRyL-mFABHC9d*9O94S9Pe~=02!VANA
z!XxN3w5J-|KRDQuNAhtyB=$eJDCIE<3;<vXH;qW|*Yk^|4CX5?z@=ZhVj;_x7ihxx
zABUPO;JnoY9WPx_u1-x=LtmIYB56@4$h;v7*#bGM*(lh{%Bqw*U!^XU)dH1`m382u
z4cOuy<Ne`234@gP7KMk0BseVOafpOtg}b|o7POTn{V2`H&G7k3f;Kj!bqz~-LLj(E
zl}emzp_tnkQ(p!xCI!<@@T0_YFW+a$A;A9oQvR_az!Odxm^2J1P|xJ2wypSt1X8_c
z9a_u^Irq>$Al4{uY%H~sa{YM=lv*d<+Ar|KV`7qzuKGZhZvb)PANdB?!a&wJOP0wp
zkM<oX_UGS#RA9uyzAk`>tfBU_sxkqX{A`PtH1=k(A?Lp@U^lKat_;`oE+fW!Py@?y
z$>!+Xd$uIiVs25RuKrc*;`4S-@gmnDyH-cmdY<a_!~OjLsW}cpyYi<KduM0ZyX!vO
z<D0-_eeQ_I$B{%J@faK&ygZt1J7@EKbT>wF2EryXpCWE9%I7~ifB#M`!A=R@kzG#s
z?H?ypnq}(73SfuLnQms&)6)Z|pmcO}ZTkssPZDBcO78BB)*4Dm#NE)&b6@(`D<J^;
z(iNO1c8t8i-b(Y!8yTZ(<M!-lw`Y^)&Z&nNFrJ<6Ex<fV*{CTZP-o`%##`aqbA`Ks
zFYM`rDBIS<J<0xA*R;rm`j6W*=KwWhEqit8){);{T{=gMmH8B$M!7DP?#0P5>e!KW
z%FhMf<e(r34m*!PzBwk7z5(Lu>S`!2%F92xDaHYaF*qd9!kWJA?f07+e!+wpRjGcy
zSK`*}smpf(D}-&?!Q8KFBuCUI5K<s2KO16G&o)&9oe|39FAnj~P6=QUS_jBVujEE7
zh&0$+EVMsbrdD$MF<gkWxf24+-<LxG!9093NxJkLxWBYtTvC@ZlsYuHYIIW+tn%+I
zfTaxv3JRK-3U4PSB7>hB@JE*ef`R~cO7*&31B^to3hF}YlMk`PX}XmEF_0nPucB-~
zSMQR&Cfw|QpZI_7@D4gCaQ!NFZ^{30JAc1(hadppRb_f5^hN&J?iyktpW;JVb)x?B
zmH$6acwst;I>BM&|NNQ%+qwg<0O!MBsMFs4Z57nN@6vys)IUByB{IC^?5Fy-ANyy&
zBTxo#X{?C%YCRO!*D79HvFa4Hl?4}xJf7Gq`j{2Zoqf#R9O&;4?W1c|t*@Y>B8u=M
z(gG;3`BfR#Hf5VL!tL!)=WHoOB}5w67ZW0LO18GJK4-lI)eCs0toQL99fW|zwzRZN
za?#dVvN+qMN=#A{ba6opkBrPKilq6)>EYG>*@c^%yE$_F;tfnpUVVXh3H3<A)#v3i
z6-$ev+^nz<uc_z&Z%bMFw(pJW;@$JGDeI@J`g+B_I=8{|iFr{jztEy?6Z=eEexox-
zE`GPp1FPZ+vSaA~Gi?P4^nZ>Q;rU-TFhC!LQRnHC!4yM>{wxwqR4m+S>=y`2E8Dyq
zf~TsH*KXjVs;W4Bzb6-u_R~HuDz_VrYPyEZrcLpowT^_5F3L{Rv)rl+hJyFmtT*ro
z<bgjV37_|Ns?%4Fvr0<1o39t)gN6Ll7nf{m{ru?le6C2Ssfr8s_dUbI;qtq>;HtIh
zy0D0%5%D+$3#P%&QTiY)GoFbzY=0Vfu2pP#gLmhKMWOLO{v7}1j*rN*u(VY4ZYP%4
zytiZJJz5_;DC@~Sk60?X@z0RfHhGc2&M+)4zg$g`!=g{WtQd#ROS*J-w4VY^?=H9I
zhI|pre3Y&u1pe9n|Mg@-1B?-7m!|5XwcWj(oJ{sG414UO3u2~Q!?)J+*4q)_nf1EH
zd8q;4=IkELiM2CNKkUDDS6UPVo@<NKj(cbzp7Bj%AjTL;j9bLgVy_I|($Zp3PKz4B
z0X5uMpV<c|>Tw?N?>}HwNqHeEK|6OB-bx1g7c5ej&@lYi2i&xZRjCuSfca-r!kk8?
zgyK{C0_&5%a=oF(W7}+NLW$*7a`ZFb0HGdzXh5=0^v#<$s!B>SnLhQYebI99P@vXC
zukKH~-J89xwpK}2_RIQSR%<J2cr;>ub+tGg3=GjWK@xK~wLC%c#U(t9E3U!loN1M^
zmrM<NMobLDS-IaeEhCU4-mRW_neAR8Afuuw;2XDoZr0YaJ-<l4Fee3Ncb80W68uaf
zZ@u1mU~&R_ik#)c8~evoxC;%M33QZh<e`9pwUNd$lc=eGD=j_H3v{Ygx3_1U^@whF
z%b3dGbjTUu2Ko}sQO3s6fMwuRSp7iz+opzK2W-4Y&RWe7<5*GPS@nq{XK0IeE%Q-p
z9=c(}YF6{a6~zK!4_n8-<r}P(sUTOcKJh*wYp`r@Z%+@wIBsZz3ans-QA`5T*iT+2
zL!&&zQDE~dpyLTi&-Z6qXKO3oKEa`2p{H=2UHVYmK}?~yq;4-x1h_2D6o<r}I!*f&
z#Qgg1EcPKfyX7$fBZNSrcSsK;dPFT^2LH8v{<fRu{vf;%X`s7UsQ=R?grEf^(P&Hp
z%?En`-;0mlYM4f0$gyp6)%L(yWINx?&aL0P+;2(7Dm&<HAH-@<8~AR%oV(7z*w}3K
zG;dwx7zE8-OKJr()Ov|0IFwzu@3?PEY3@mX&70q;;QzLrSsW1FUMjFIf3VA0JYcV2
zFu-a4J3#xx@&&Mnf)Id>A>VE=)1KsEk1;RL6|S~i7^UxY<IFsKBK@~*MPLg6;Lf4Z
zQT%<Q|I8i!vAMsq3o4jSkxnX*Y^?uzX9Tm%!I+qsL~wq#?<{1Y|F1v)_0t4V{6j&+
zz$E@<!#JT~A~|C6JbV+17L^oE*sZyt-$zn?{OvB&kRSkY1V4USG%JX|Gr9lzfdNj@
zos~>5m728Z=;)#t7#L5UXb4c?!9hWaYHDhkOQ9hl%1%x!b@lbvO>{WFuO3jK?P7wr
z(4I`BpYrfKk#KG$sgQZLAH>2>lazW^nl`n{wxdS8vCsk)7r?<y6OH?f%zVfFBE|PZ
zQyAJ3Dm3{=zu+7s9jO2zi;d0dQehLKt66Sl()O}5!`<y|<C_^>6|t68&sjPo3VJa9
z&6`j%qA=}!OWm)M=^7BXG*dsAoMqT=@59$dKvgy71f%&8@z(7yoQ|>zwm)a5o+3xG
z{#@i4#6jI=M+I1WG79l!Z#qs^I@clokK4HpR8Z8hA%G-&3g2y62#6C=f0gUC>=M4*
zhH4Z6!@8V@=^7>g3PB#Rzp~(IH%~N1yV)?NCqUmFv~BRR8UMPmv2oc6j-+U8OyV#i
zLlzYkRqJu_-V^ATRZ~y?36vZ^0L%<@K&#GLwzJFREdT&zzC4;!Q&R3uLSeri9(#7Q
zFY%mT$@`*Cn0xi^zIHDX89MGtO23KBbq#G(fC5DmR^F`+TKGl!JQdOLgZTp#=v&P~
z850l!JDCfDr%H2PoAZmpiJ(OK3z*2rqj<M=a|p5isYDD8ML|=9uR+AY=x4YeF=Be5
z-KMe?R>^c^F1TW-7^y!;zK5@yo<l7D-mSOR5uVc}Qe3to9>aGvsWtdRpi@?co={;!
zDZrE+cVJ^T>wXcFyRk49(G2s=P#Qy;Kmz8797WAw-j!X=g2l~qcdctTCfzs-3YDgQ
z&AD-SRP+RbZ%=;`PS43!N5>=L3|#j|C%qi;D2l+rWixE+U5G$`dd*nSKPO{E_R%P>
z=`1kgZ5Pnh%L78%#tj*%y%J4DjMvT-0R31Q90~zFq%#DPv|0d*Yu?H5D$374pf3R0
zZGMo(@CuW!h$zi);6l^tHcpfZf!w?RQ`vviT1=_B91WOR>vkUa3;BmY0>Ny6Q&6XQ
zXh+szH6GUz<BMXmpgV%UJB8sn+XUHJ4XcU&{WUqYmBaDrm<{Fi>MpC(0#B#dbB!s3
z#Nv6;tb;4nhBod#rQO4On<Q8j^OnRFZF<xZv;C4(*4`3v(Z>)*?MF%rPbf7!0bwy{
zS1Yj{OXCeB0&;`gILnB0i-VV^@mM-i65620N7~IBLk-B2Sh<|g0I)z>=NUSdUOUA?
zAu5fltE=o-MjA6(Y%z5|mZQbbb0SDS4B8HZ#wkhsRWc&EKLkk=(3*dhA_#mxeOYm(
zbKq+Wi=lypgi=)Wf2jm~NxcW(9c1tTnRq0goOLZY=pPNjYb3oPydH@Qq3bltRtt1B
z_@4d3zuVf{az0%bYGPU2u%B3Na-ssJyBsezXqR0^7(5EMUxGtGLr+!sUeO#Gd24B5
z1I?qM=jZ2Pd`JLl8PQnAad#Hu_YE8T^mh3epcZcml`}-)^L(D1n#wN(v9pPTe%%D-
zECGSNp`Q$BnZEzni4y9pY6h!@JpqX#F%`5Un`KBt;BT+y4#l3=uJ34&d(g9MHlw`@
zf6?T(yRTn+LQoe8ElWrAeXO75qnW8)Inh48OApKBO(@X2^LZnDHTYB2(Vc;9MpapK
zh%!8tRU`yyf|`hl7WUhte)D?-MZF)A5=e=Pm5fkd7{w^FgLC+NY?+fV=6(z=w})2k
zBhE(_%bzej>Ua!uv{>A<lcLjhL5*bcMag!3$mMCe{pgXxB<NrP>GQmWNL^Nx!(>5K
z>%Qu|5uDxDQm~`yJ2tCOdney$%7y^OisK^_1Ra#nu^=sHGdfNDoSMp=8l4ObB5tF}
z!%e>E0A{DMmss2T_U-7p;9{5`6)sK+a}jxATG*kzki#pW<8QJoX&ca;R4j%L?v&Z7
zD&hXwvdL!(-Y9@5be!m4A-{cFIP=QRZCLe;@V(3>wD4FVYX`=FE;hT+)YUilU+Dtf
z*i~IGfXd2eaZqc#b*fh-&G!hEJ`b**o1Z9_OIm?}b;{pQK2yohOBw>B!kAMDC7;fd
zI}*hqN>%}ggmUSuTOH=NE9`6%GW3(9KPzQGwS}E6sS*0FI6z|6j90L%FG68WCc^Zt
z56ch?jlN0x;B0<7hUy?9ruHIU<ZD;frU9$vk9<`PZch52b>Cw-O(1fN1M{FkG6YS0
zXv#dyk`<k~3#S&1b1%8ZDz)~URG>zPh`5<$AM{#Y?AdLWt3?ns^;CcY$o1imcl7Mi
zvu338eveLX>LM5sXqViMk{LWc3J^_587}mYIoH06_#D|0tG%dG)L8K4QPy|Un`wau
z&y@WO5GE%&TYj*~YjAy(sb~E=FUWun5?A!Hf)DO_r>IlInBs9l*hBovX8Dfu=M@ml
zB7_)g6cY6DX;Uo`csQ&{Oiz~s(1A8>D4G?%C{WezX6~xe{a;czOvXW~kNtgp%2J<H
zJd7E!^4@}$4<mi%1>Qrr3b3=6?E~LSc8Y@^Ds`%~)?IuHbb9svSk_>8bNr+>h*8n<
zxrwLmEbHo&Y{dwCT)cTORC(Oi-(2Du2b%20!^%*pyT64whtKPqB`>io$pL&!qK9MV
zGRpkQ7qrd3$zMTItjr|AwBjsVY8iPWAAM>Y4DDT472t8j4zCRuMvWUb0|*en3qoVa
zOTUw(zJnIElA{QY&Qo$t9zNRKmgeT~Gy;G0d7>ObChzB+cGbmQ(jhUsCV|70PIS!{
z<vL%0UM(4Dg-zBcGkHIUzWrlx#lY%{^HFZO$2mNcwsk8g1fEO|q>hbExoy5l%k{9+
zzoi=KlR`mHu~W}2zVq$W%_qJ$yJVKr5a9%Tafe4X#(XCS5w*2sjA7zqZLz{=67hbT
z?;LKyTvhz6hx?7qEz;G;SvE*pA0qX=vBe6aF^;=L%$R60_rn#GSEK1vHJI)D2+k4;
z(8d$;t4fwfu>{|{J`b)|>-+70mY2?y_+dh!q?kDMrCJ{g5uI=>FXw5MPrOp%BjfkH
z{Pxe6JXvamr0*FD{KGz2QZf{vt=XzAFgt(0ji^Z6xoc@h&CDm4{#qAHGS!E2vb^Ph
zWTPn}H&d?Hq07bU0C9$wbQ`v&OZ%81+ul{Yt74WfaigR)E9Bz2if3-x*kyEd%dEiy
zWe8$I(QAp96TIR7V^@ZKX%F`+J1e`@)1tL}aQkP6@E~7_dS)n2u>{|@50IflC!}tQ
zjdsv#>GmO&XNQc`HoU#^_94gI&1c{qKFTiNgyVRHb;0kP>|o(AJC=NUZ^|Mq;V$-i
z#^|P%cMy(p_A`$irgLP1G-3=(_`m+VS{zs-H3*E8jy}vETBfb&KD%OfT~>vQmP03I
zmsK@Tf5#hYsw}kaT5+ZJ-cXfREGk_XzpGT#ONWL{U1Kui#z3{#{MUf=%gCb-tJN>r
z64aKLyBl#+MTk3{$H85zyynlITKv@S(H9QO$BjK!nc$-3vvAH%5DWq(#@hvPAXsPA
zmGnG5-O^*#c~!DhGa|tKIa1i+3}CTEJ_QuCkl=*<{QSxc*pU^PeeRw2xctW#h6N2w
zfvNS?+yb&IfGDv+N)G+2jY7Z<D9Vz&9~8S$GBpfZ`jVTYY_V`lR!e>XuI<*jMX*q&
zETB;S)t5|<cO!?sZ0f_iQR%NjJPL;e9exW}o_44$kbaH3h(-wO1WVjhv~ifxDHLzO
zGFH#6WBMTUppL})#2ogzOocxvIZx8-V%?Y`S2B7^za<5;%^={Ho`e7Ksc#aL14fdC
z%+e%rp|q~HL6ntdqF**%3@>ywRXG)7{hOe<5oE<G(RzI5QyjwkoB4xpMexybSwY1$
z!PQ4#_uE?(!JDi3BXRgw7YfTk&NxiwRo3Ybqi=-=b@yh`Xl|xGTd^S|IUY-GN%Fn7
z`(|Sq;p8N<f9+w{nvX`PdfUh7WO{cE)dmZ=OH!|223td*peBn-<s5}b5WY*D&*w&F
zcFZ_<_<nF0aq7i-^BFoUisG_s$Xh*<eEf?7&-0yX^36LNAU|%eiVNll^#AczSN#2p
zpao+V2h93S>Vqj045V2rj9J#sFr2TiLc8zTxN5qeZYnAbn;H+D$~#%(oeJ}IGRE6h
zR+zBxqf7cpp~O_Ra-)<urjL){&TBjl9@5fL_NBRM$0j+&O=4J>^Z5raQa>f8pbt0_
zM4HGr#SAFm!Yxc4KdSc8e_@HLw;ksdi+Fxp^8?Axyw^}UyJKr_&Ev>=a%&Ej6z%LJ
zRTJE6MzL#^t&hG*H{DX=Sze+bI=415;=|3-IPBIVf7ziknzdpNoF9A0#z9$OUO1E1
zJl4Pzk$=aWQ@dZLb*WvyRRlJVmbW?PMEy=?Y@g!2qkN2B^+(}&aYY#uJ~sG3LR1DP
zAc?CZ7I>K(V{;raZ)hdz+Q;hYSQ+!90D3CN>7S$2a`uZaNOjV0)FNz~GhJIBNbaCR
zr^@RphU`JxyDC3i7O{>t>ePMzO^o<c%6jwLr<@cnwxj?6sWUJiSH-#3>4w~k=!2!@
zBo4*9Mpp;NfdGJ3H__^GLCMdrKTAVTUjWF9%6ZaE;JA=C+F>Hv!~$|10P!j36B<Rl
z7NtB;wA}+DGeD}2VGt`hUC#bBO$;C=>#Xwd^Xg^zCC^LHSlh1KytB39F@;Jo{5UhE
zuBc|h=9AFkB)HAa{=W7-!a8yb_yzUFp1T+U<d-K4QB$~H*m2Ny<KzO4yO<MR+To^e
z#buwaF$fZ+1F5=nK)kTOP;YxbJf^ncpt&DZG<YmriJ4-yU}$ZAL(y(7ytbxA{!l$c
zt@Ifgj*TaY!5U;@w)k?rt2HFRZAV}dt3obH1nTnL0tsfla#oDC`zKX@k6DHE4%K1q
z?JCmrBnH}6nl!iS3wry6UTGsLi%EAPTCSw+wP&>Z^Ao>`drlSDRhLZP8M?*OR;RY?
zoJ6oLQYuZ#E3Hp_Pc02U3gXw4P0YTk$DldcHUs8ZkpOwV#^28!Jvc1AdHFLR3_@aM
zyq;9MEl2y%!QOzh2vA54!J2_=s`k{Jlq`;n#9~T$um1wRcs8WM=Q35n%noK`R8Chn
zqwHZ(dn?7B5Nzx^{L-9QuXeY9{yDQG3N7Q^q;S)4_^S4Xix7jE7W8GINJjhSrWmWG
zsd8rD)7slL%+=z>`{}-#>cL-+zIFAB0~^Tdpu+RWhKqPRx{Hg4n{N3v@`{yHq@T<Q
zpSafQZjeX6GJU0ek5;DbOI&uhd!g@A<FQ1q%}Jq$Gexh*o9ueRBW!KRh(%JtwdsX}
zj4dMc!(lQI*3b2_3yO9UOVD%{4vD}shUCyuKb#TWUcZI9xGnz^7^z9V5rSW#xvtw=
zo2QPKI0Dhjr;JaRn_hlW`^|=SR=Lz0W?9{~g{O&1lQPhL9p?IeZ*BbU>};nZQ2X8-
zQsvbZ3weI|P*$3sl7nU};Zv&9_MKA;U@so6w&{2p9~Ao`G8rA%V@K^pfqGgtY$Z{c
zosHe-PnIkMCr6S>M1R<k{4Yr5KWYP)>778b)A;iI@CoC|$jAsC?=bveqz@#9@A?aF
z5>N^_N_zu6UG6tlt4UiOv-W)5Pzz8tEU>cFFk!9S^CCe&1VN-kg;doaYfeSV0g*S=
z3)W7LPoF-WC&k4H2>?@_0rt?x8sgWyoiPuhUEl_46l*=5?_{bUT41IR=^Q>s;M@J1
zufa0UsoS~|YvFni>?_fHWyXYPEb)aFbQvi6Ag&R}pq?9w01J@#p7v`-GPe#36eo!>
zqQKdm$|9mLJJIddc_ykC+?OQgbbjtiBS8`TR=;x^8~)OSx5}1=X|Ah!#wMSvZgwKW
zn4FCwomL3n9%n(N4wJdL9Vt)<%+FcG_W2}cc8P$T%x~)*eXEVa;ro72`AzV>1xAYu
zZV=D=wn{6jYb?bKC(TScHyDH4+_kWkn+@fKvExQB$NrO9cVv0a+V8(;Z0)aUpY>Mn
z7FkI00)`>^PAbjFxM=dsb-hAUH&YfU#qa>$*S!Ez(`YP4C_poem22D}pk%t^ijunJ
z5DkU#n$|H=fNFjC61+Ai=l2u^^GT6md;txN2ICDmOI3XA9P0%A509)TD+3Bd{LW1p
zT{i}wQ>D!-0KOO=hphM%ECRCI4WbKx)x-CX*bmx=&itwGxR|25x|{WrJyUX}zCAg=
z0rU1r&ycb{Dqop=YrrMt_^Z{fVOzN`Uda(hh}f4;u5iw*eUk^7a0kwb*=CY+vF?O1
zom0zuh<~2P->%RoQV7qk%@>mI>QSfAdTtHwu=r#5*VCKNe4)RrU7m3Jd<ym=zw+|g
z*xx3!9;NQ>?pU?BUmGgmu#`86$Xh*Dt6h%D$oD$=?RYdFiH9FVG(%OrO|HoB(Y-kR
zK9>o9{Dfq2+c~$dXoRJho|*dwo3smplB>!G4Fe8|^603H#M-~*EU1Jfw!b?RX$n9@
z6)cb$V@-1YgYNO)klhpoqrJ|WydVA3vC&W>RbqVn=6i&R`FY8g=aUzCEiEnECvh<`
ziydo(PNb@v;}seakfP>qriSCM6tRi@`@2so_9U6X{mfyZE&%O-`LOe~kelDzq!a!I
z_4#P+S<Wi-Hz@-F1GIF$jh}@}4>4KCp=%V&pXEU8aCNl5e#kN6hp>q#!dgIVQKw{C
zs_q7Mr;7Bx^e2qxjPsRCHRjUMS#iI+O^et6voO_p!1I#Nro~DvB9j^OiO67QOaq#$
zXwYGQrHL%`Mq2hTo?G|ua1NfPZ@!mJ<}5((p5*K5)Afa3Bxs}mOWVj3Fb0CtxaSMK
zO(-*|*|o97Wv59ss*)W-rw0%^tJKW@7(+$JD15>l+aWI<?#yZG;}Zo<zM$7r7d>~#
z3er2N;apsLm?mp^r{QRQ(VxNuvU7G{dn5WNZj`(SPB%&t(g2{z?F%A8amP;G1Q=uN
z4$e5blp>IJ7sF$tg`1P%{B4W(x2qn}R-5TBW0~>70SAxP`B4!C10M<-;zkc*;KonN
zPa6EzJKbR#cV<hes8-F8hXu?#{6@FBkY_D+OSZ8Iam7rglquiMb7f8^LNxE~53jWI
zRQ-snm34=kh|qG!Uw5@2MZH>hlFq!nmhmXt=#$#JXud=dF#A06^W^=H_H^5=!|Ipy
zemgfNsC8+wQ06*s_G+%Foc1}ymZ*BZ8w%iN@AO*n)UIBgtc7VsEEf#-X-c;S2Pv5a
zI+)s7G&RWsB8fi)?*9x01L-6ln0!>{`X!%f8v!skq4^QOchFH$g~<~>-3H94DDa5^
zO}Ct{!eFTpi(3`U?u9SyKINJ@bGlA%fCgc0%r#(I{pD#l(lDzR(gb|yo7+JJ-yFVL
zZ$P_t7f{<IX2+A1k;z5r`a;COps)sE@jHiA1smL;H<Q&Aq+F@lMa=h#Z=v%z6^xKU
z;pVnP$EW7^Ty&!TMprNhi)JPupyf%})?^j6dlQ!Waczm{dzT3){0V=XND$=ibOKjt
zb)PgvaU7|O`Hn%n2~*8Hw`XD27^V>jYT;;{4QI6X4D8(T<aCpaDgVphvt!`rS&DfO
zdM2N8dzDNQx8jtZXiv;Gl5{<{OerI`Md|rnqhmUxM)c(LOv2Ssda*R8BJf@z9MIEp
z*Em8FVR%_B2XOqgdZp%G4IjkYDkpjTuK9e1O~L|}#=GqZdO4@|ds!9;m`M90uoLB~
zOl&qt4?S&m^~P4|(?{NJCT9!A9_%ukBXml77gw*FZyerdbzd+#LgXXGcW%B&{IUmy
z%4ML_-DdqpMOTu$Y=VKFiC!W%V94pyqNl!EgPOV3xnW)MtvtUMn`MC3muAhkoBDq3
zt!~ScUGqK9$5eqMzAs`Y;jv)yCLr4%3STkU6^EZm)hk_1Q+pre3AWyH3PAsqh{-$A
zuTp&^C%=yoc&uQ5d44y)o>zYwbQz99#6M1s0_86PTUjZA&_PtF5jupnuxMvL?f@n>
z5CCDs*?IKzQCQ3!ey4+C-*bJ*BJJmbE#>$O+l+*J_t&d7FWou%4AGrB;ZX`oa(%L`
zxb8+x2>8zqZw;ilHW$@gA1`0%lJPS(k-W44=Kd0u<sV8Sf7LwJtw~=A$FEvu9OW8%
zE*K7+AgjGE>w!p<bPdZSuEtz$zg~%h0KNQ`IQRneSWaPR=n_Z40qk;BwY@ijJSd+i
zGQB5{gx&#tV?cXuo;heahs(Yy7Q}7<@f*OG??S|PC)6?tml5Z=ZB=0GqQ(WFG}k;+
z%tcf}$n@(GiD1~f`$N;WO1P@8sEQc8x65_uTIn$V07jtWp~rNOqrf$XTxum@`eN>R
zTyO2niDCSn5Dh!np|cnPoYU9UN(5gEERagMF<zr<B<bO<U|+gnWxGWFJo0YRjH4y{
zM9RCjqsm-abFVN+Z!S}sGrEx(X1%#}n9uiIw%A)HB}3?ObEP>7!^~OnaI9=(lv^#?
zhkB=dfhF)9ePXFk8g!^7q%9a{oe@kKjb>G6>tkz!&rJaV4Iy8C+Y}Az4lZ{$mB%bs
z!p=}xha6?{IJt!_z`!?Q$KC7N`Z@67JgE;fv(-)Tvlh7ST1!EndYP{u+QobBmEpPR
z*{ReMKav(~9%?Zh*q&a|NilfysXhj`0dEW(|0pQUy$S>@eV-kZJ*kbP27#QVas#rf
z84d$4$fu182IW-7cEu~GaJOTQOqF{#y9B4r3495G7sY}pOns7=M+);&CpzsANqb6U
zb_8S6%nZ?|r74y4@3aX7aNJ4H{9Q!y!S;K$vNau3B9YYN3)k4Ave;w_qtBqswZf67
zkIDvG;%n_sekF@pcyqw4PRgg8|6q~)x9j}=o3_r2(gsL%B!2lKd9gj3AP)L%{Z*&=
zo4T4>zM2LxSS>=F;Y~Fg8(U8{BySt+DIyg+^E&sc>x+}F93oq1mk}h<@8B;HVmjK3
zfThMz0AmLIhVwByo|NzNO?_o{U7YXrYQ^4l<jF82M7wc6smvEY%CaxjY4oX$k@~my
znYE<jTN(NSbH*sjh6?Rdy*_RxpE(lUG@SK+&GDqvxrk#67thbmjJBy~vnWw6TNJ+6
zeP_}r5%ZPOq=iC0mBw|Ldo44erRDhiSNe4VLx=oQ_99R<yD}4-1pMVuO-P7}>Z1D&
z3_*(~Uq9iYQ?yaVuU{D|Czs`uz3bbqUaKB)(lv+^K{Dm2A!zBV)InVtZa>G`?tFm|
zMOr7rV|p~H0jEMhLVdYL12P(E^{r9}HloDMD)GFc|HBqC3OHS>$%Ae}PP}6{41D&a
z<D4D;I9m|Fvqo+~+08%Q>BuUoO|EOH=*s~0?u~YN5oC#iiB805u;Z66qmv(-1u_2s
zOaGyWhcD3I{(GmX<MXtD`}7vsFMu(h8+zQLMt%O)d?fGN&pYSpO3}w-muNj@b)mOm
z-k8rvUb2Zbzqa1~m|Hu}kJM7hFZ2g?o78ygB?BCi%kiR}Emzy!kWdey>yyCM(1{Fq
z3V@fe1^RPlU%szus8b3~#y^8UesqJ|WkojzPr=!+@E6gaUrYm(p?HTaIvqnQ^bYp~
zrDXJ?=8)-1mgx~v4tnb(8Em57Tpk_x6;21gO{nN~!B?Gw^U(v?bpHqJ>ko?{69}R|
z4+!xBZz@z#QMn_^&*`e0DyyneGHbz4;s9M0>VX1zWK0acxNB{}R|Kj%+5&jhAisGl
zB2rn6vs-;$ZocF;JncRMA?9`<F@D$Ys+c+l22g74r+HJ-NtTsyM@^Z(?AAx7?k=Hu
z4gA=n*AviS*VRn8`yM-brHfZIp)OwYp*77jk@%Yi6eyRDKoS(_GNsF^*d&o*&*7Nn
zv~bhcgWjjdTeDJD6A<+;Z;xJP-)Mw?sKAD3OuBpt!YHG6K*IQb*LpCQ$_i@&X;m~e
z+?#!M^5N`z+sqMt%v?XiF@@2PtaJvy0S=$Nk2<Zqw(pyxhjq4!(L0Wh74lUB2lkC+
zy=~ZD)`~`$K;^IS{IL5NqnXRf$~Mt<%FEHIJQ6`WIA=mm9woz{5A*-gbrw)nZCe9|
zLw9#~N=m1Kgh+RTfOK~rQd&X~=?3W%=|;M{8|m);H}~Cs?;m3i$L4sH9c#^=-$a&l
z2S3oRsmq@>6@3ZUJ@r0|Z5LQ0B1~Q4_t<U7=V%yw)%+pgCE|()m#VCjoqXmLwcyyr
zT}88+8<-bmv`pT1U}S7gqO7^<lUsraIM5cOdrQwVDk8OuG3ciWhZ6+a;>3RG#*^E+
z`b&PU#4O5odJ2{#79F;5B}v|n$%&~tAGq|c?<V7YjYg+hMkok$G74;o_xIID^0O5I
zy7gPSSAF=tD2dH(r_;KE7M-$EbWnAIY)(5lA_S=kthRb^Zdc7b1uq;3HS7pH9cQl|
zi<Sy|1%qqh>{}%Giz+iamR$8Il8*)7ql9N=TvKy6IhO4IaK!%qT-g*J=#+Wr;8h1;
zXlS+S4p|O~fXlo7sHmvvv0HJ4XvchVA`rb11dHh~Br`3Bt7@HUJV7cL6BG0MI8bN)
zdo?aHjNkn($ogw1+w_H0|Grq(;8fn^C#2BHvHZ8??IQX2yiL~^MduwnKJQE}HY*W=
zVM5R%$CG$!YC_mRLnIaUlmiesrl9UQc?+Bw@(iA_sR{CUSsflhK3O+JHbsSEWqWmX
zE%8g2Y0u)@Gqk8Ly;C1=S-K!9)2S2uQZ2?86%UwsLcpBy>L6QZ>k^hDxP8A?<$M38
zvYN~V6NrvI0TT1lf}H&qMB8T~PjDus?$UdVjpHwBzGTWQIFDQ0UdSI!=|$aNqw1PZ
z8z&x1WEh{X^{br5b$^+&&<w`;)Cci;nZEW+Xj4!Pb2rEpuj<+<`<e&YUlQ`+n(<(L
zo~I1HaM4b1YPv4&{{GIXqoEXVEO{tqFWgxfiiKW4)0nWxQ}%|I?y<TirFzD??Aw1D
zOoKdZzOmrL4aWUeWIKUOcK^^oxFL8q>>5NlXU^=odaoHrj|`>3Z97jB1$9EV)i3|u
zM&d>7SBaf=7-L(_viJh=^RLp341$Qo2k((vr$w67F-j^E0#E5%-%y<N>RHrQ#%-Zy
z4;h6rPJ($<Ny+Au2&->yf-eT?-z-PH3m;a{m4@83UKW=W4lvZk6Ylwk8v9$~HX3?J
zGr)IbWQ272^=5rKQw0;42AKAp`RhaesUZNE)WyEDqRv1D5fU!A&Uv4P?yYWcP3vUW
zPkfR|V3{22jv|{L`z@5xs(`+ddU@cI4>|^_J2r>z54*ThUcc%Vc#MA+L6RTqE&Ks#
z9fC%9qxnvtrO&*z^&^OisvfP%p|Gy-G5D;aT~F)<i5!eiSj81AA&>!y)o_Em8Q43-
zZ177xdbRXPR?nW{XVdKN@|)1%!*A}v*0yiLg;={bNKO`|jdI7$0{f|y7ey?6+A=qe
zeoFc7;gT&3!ZBd6XqLq4MKw!gPkY%WZq5et`b0DD7Nou}xIMo2D)Mp`y!|P;f!^S*
z*^VjcLc}A;OY1iP=~tL&=b4tD+pX&q^hGVSLWV_Mx{yDnB$sbgXN!Y2+P>d8m!S&R
zA{|cm(w8>=eY~q1T0FkER79dO-N=CXkh(&K=e;vml={+Rbehk}fnLkwRZz`Kn!4R=
zk#4AllxZOwZSBQ(9;^_V7?0TK+sJpVtDtj$>RnV=uQsnMEZ|M4`LH1Nws^5Ts1{Xb
zE7xzT_)aGc?@L@S)tL^Eu}@S3CnafbM{>#KHd?4Fs)|WE%6((Z_clg@+&#nMv4{N`
zk;;5$Y~rC?(4Xy3*fVN=-@aw2hnztB0uL6=qOwqtN7DO=@!cyP)!wPK#{6;*cAdA$
zEyWEVCa49W%FE#bdnPItr}lOTC#<tyu}CFiP)QyO78*i9LG?1X8*04H+Kd^8tT5le
zBP}E0vqlYz-kkboteLP^<jFRP_vzWX`CkW=*mHsWSAJ*47urAGHM7*NfUHe`;ukI9
zggr7$p_5Lma{!|^3K-<CfuST+;Xf%|59Jd%f*!BCMPlblh8xPB>CPqca^D=6cAfy<
zTUxPN5pxv4dC-5lo#q$>I`+?%Ukru<C?_*gD78`@>2SOT(r7);gX)(6f>N`kx;p-c
z^&VmJYzb$|Z?#AeSSyP+wuf3&o+dmGPt|J)Iak=Nhxc?{k@>+ak36^Y)lumVPSp+R
zIF}+CZbUR6yOhO6d4n`kPqI|uM4GqtZf|nY#^M5{UvD0%@SbU`zwaJdh^aE>YR1J=
zX<)KXyW6Fign78DgfsgP)=-()-Q@WA;{5zV{@jc$!<l0MYhF90!M!_4nSN%vfyqK1
z+I^nKvd=m<Zp-Zq#&h9GSLGn7h{-q>1wJnnf2nV?8c0&=UbosBr+BDdsdUG7Bx=Q<
z7um$GB7uU4e0+8~AXM;bBP5izbft>XO;>s6kq&RoYu*Z~;ZI?2^w#e)dNqfT*&rat
zZrulWOJNCwCkS8Dzqnnc(h{a~n?5pWar4hBd2A+@#5qO1CzxI;h}6{nS{5dE*TX(|
z*0Q*}FG)|kwcyo~lAgpl92&`uyL84GM$9Kc#A-RtKNwB!GlopacLgf30uq7J2N55l
z(CYLB;_C{5`U#!*98I2uZ2KreE<aiwk9ak1jnFS1`Gzq-c^0jn3s;3-w}Fg?8Cyx?
zK1j>G;Ec=gUEwr^JD!)Kw0oKU&)lJ-kJCf9(TUFGDvjxK0iQ?gz)95xIml$KT@dOz
z0<vD0DXAn&JZx!ssKoY!p>{n*;D$R1!WiPRL2g0jz`40p2}Z^$z}KZT7*}7871LqT
z_<&&KU!=}V#f@rUXoPQ5bk+LP5FS>m@6%y|?y0M|F6a42(c2S7hbW8uQ01*!0*XlO
z`q<b!Q?t$dw<@8Q;T(uz=`TO$71#RBWB`WW?p@)nS+NtLT=|+XkO1hj`o;One-k_L
zm(5Df+_C*ti{6NwsrM1-dnl5oK-!#<l;p$Qa5A3=N(ufWRuw?lfkp4b2!&o5^NFwt
zuPrZRm`!^Y?V_Hu)6b>v_9t~}97=M@Nl3uHk&sYoZ{K4eH)MX3um4t2IYIGsY@R`Q
z-Qu9fU0TK_^J`)Pl94ZdSej3w*E7Bbm}I5m%KM*+zW=rrkkS2?Y!itxAe)@eI>;WQ
zU%y_!d8ZSF0<r<-WtB(+wFh|vTLVB@Vm*-D*_0{Th;akxuLXsDi$RA#I9onR*t?#X
zlaDX)nUYzsy%n7Mc6WDo8`zQw{PB{gWXI2~9Vk2t<YXV0p2=*$P_BNC2e~!?xTncU
zY_|tN_nSA=1I=yXE$t{VkTW`JuH^o-cXa=*lgm|V7!o(z(v^NI^{w90Bfn7XxsRr`
zTA$Mz9ukw^q1T0Q;x7@k&+!rxc_R;a{AIx}D2XAWa$8t@ypEN3(Vup5RRXcD4VL+}
z*iHBnBR|x8t{zNOWCUngm*~#z&8OPjK1J%jQ46S(;h|mST5Ur(T+&Y)zWG|Hwbw8q
zghimwb(H;6ZOgN~CrOTs+l4W~^J_%Mlw5Uts*{vXtXdJHNVjZEK2AtyCW@sQ5bWtG
zzV77=)!)C>KTxW!sg7w|h)-=si)Z04PwskwQ~VPZtoAFi<@)W-+G*Cq@>rUyUYx4-
z-d<q;-fJK;9&L!CK`|tO)Ta%3RCvTP^-x-qmizPSF*c(8LWpTZ<7PO_6_?vW;eDBl
zy4tD7Opsf9-0bPkb!Xmv4*BX;A5`#d8b3+&I$&f=)jT!MC$^BSe<_V-E%3tLS_-@|
zMY`H4Ho%Syq<m_4`G}d%q5ni8P_I}keROV>am!a>#2Kmo<83o|Kj}U;U5I6`$0dtp
zdipAJ4rSt`{917Eruj^Z{r%AUwS?GMDo^uiq9=v?tx5YmQ_b(&?<<&e8aI_q>3S1L
zMP*H}4(2s8hId_W5730OV|o#=@mE-dpcjA$Q)T#YL&qWd$M3qfP&N%dG|w)6Upb_u
z$SfraliM)^mPEgL@=T~L<}%svFiJ3r2Ae6N^<vuWQJn|3Anj|YV=gJyS$&(4bPID-
z3MJOpnb1Ew`z<H-iJsCMaeMaQ!8O-sL(@2m&aW)@V+>fKVLV+G*1q$d@^^MY_hn>g
z1|DDEhw59rK=rQti2Jx==spB1aDtUOZT47t>C|M*^F-(3!+-*LeapQgFg=#DIW4tL
z=H9f|NJ`I&Fy~8Yh`ppW;MdlfDH;2LB_l71(Zbv+gVxYj+087tdDl0;0}E=W^N{0h
zBI$vP3RDH%kL_)<LKZ$bKl|*?YRP+C^u4MY?wIT*Re?$#U(^$Uz_JFeS%KUd2v2R!
zpxYZoIk``}sDG5^{@ZHvgQQ$p*yR*Wy{I7?hMQTu$aZ10cmME#_C)UfFefkXBY>u>
zU}?Co^D#1_TJ$_>ic3G5yUFK)1!mQdFS@47%;u7<1MuMt02m!+wFW7KB!aGr_GbR4
zn9`-r^I$7)tlykc11W_2)z5U>lO(nlt59w=%}e+hrMYR`q_a+ad?XCLS>3`9Nbx)>
zQrZ58g!@c_qJsx=HN86B!y8-mEMe%d#pn8;Z~Ufz>0I8SfGN|kko4s*4(6?_zYB;c
z54BmsJ@mYUCvC#fuhyN;_Iq4@Auk3ORS4yxwP%(gW?fg=0@Nb+Zm%o3UA>e#<k7Fi
zA$!{8tZ{rmII0(^J+!u#<WFD#9L^sHUI*st&S;xeMXm93=QYbp?n8!#DkFz|*bHjW
zJ3)8W1+G7365a}qf-@ER;!Vk1)Gj#mWOPxyfrOKy=9lBN5zQe)k*2YzJE024a35Za
zf+8BVeRJ#1Ayc3PWQ=~n-PZF_J|{>>0j56t5t#YZbVF>HY^(nyK=QbuyGHVm<iz-N
zozh+U!bKgH3`-BhG2NKc#Cp3-I^Y6q4#~75&a0p6?AkbmzGt;Bhy?b%pHwmW8#!Ob
z(rGW&ZSki*>@JC98Xw3pej>|FEfao$Q@wP%Q@XgbQB|qUin^$Eeq+ips0V7kz7Am{
zbxvoRe;1ECIV!*kW?F9W`%2{qzAs2HKWbyXuul+ph-VkAI)*=<ONuh#i`t@VN7V7$
zq;c4`<wP5GENhY^rW6g;beoP%r(mC^>UP*+eY#3|$+mJD&f1f4`1<9yOK-l)*p}*1
zljzBTFx!*VBe`bx9qB?Q;R2lgJ>Tobvn`Rc#RT2uEj=&V%jPS@O{<4MtCG@c0Rdd3
zY3bDKQqqTeu>&p2mE(kWKkiPCTBa>L?(WI1w`Ff0M!L`sHk?E5(A&>GK$U(B!z>|_
zQ%N1LZ^+}H-cd6dkz+hdJqq4ZMCp;3vBFmPQs*b<^N5*xeNGnFaA+HMaS2vj`e^#y
zXb29Rm2&kY1(U27BP;uARVBG9{PJj7-U|)x|EosD*8mB>4{p5sT;g{C9`Q6{1r-z&
zIPf3_qwoSvtR|+WSGR_kM4)#`FQqSI5)veztNFj+4hMsm653eUXG>^AHl91Naj<Je
zTCbLN7lvdBVi@sSNwGENI&DT*>F<{+RaB58!dI%|M{ml9&Ykj!Zh<L}DJ8ZY8AIWV
zcTo}OEWb)#sZe0w1#!`+%<n5TqHe4hK4xN*VM=27txhnyfN-bdLr%hiDtqdT?o^C4
zgD76T73cT~+pXZNj1oWb1>F;aSNG=V=`m6pudLDWkkC5l26nV#m8bur*nCEuF~WBq
z1h*0xuLJ<N5r#p%6AF6oOlE^~@_iw<>$_QItcAPBKfEyjLJ$s;woxcfLB%=9n0m03
zN)r9LO&2CVRkWR6(>D=0S1)`nmI{|5cth;aYK4-~)u&X*!ux8FEB+7%ZfC&wB7b|7
z@<+pQ)`$X27j9Vd6l?-$V!nL;haiV_<MqL62BINz8!U7_CiiX#KD$<Px>bgv_6A3Y
zpsIEp8jBxLdz_o|MnP7U6K6vef#)IMswzeIk&d<#7??&piL^eG()fB6A!D3=1G^s?
z6*1#GMkqFQqhl&PbDn>@(jfW@wrp@CFS+2`+F3Fxq0e!ov(rUKJv(x-9Yx1iW32Rn
zyv2Smd3VL~7ld`ZBm=V6#OE1zxPqGCc>_;SmrakaQc<!=)|QnoH9p{d6qT?atb|5F
zvt097WR6I&=nwn0F|#BbG1pSa!1;c=vsCF+(7|?xX*^IpiI$OHhhcDMpL;d5eeGPl
z%{-u2{a%|=5X#QvvEveJZA53QF&&>zKn-7<OKIRMTi?89)}&>DYrNz50*M?|=y49Y
zg>7}eaGm~SlzzG9C6Ry}K4HjXl7)7!F?V#Yg;UY+lg%~0SEp&G`%(TaQX~@ksxfn1
z^-p(OJoLjYZrdG0v0@p*i|wh=L~K24ub-aOKwbQrn~rw!nQL?sSy`q?JH-hi(qaee
zMSl9y4+73Ef@WGKrlJ~I1+@PaU|eCQ`K_HYS10)3y8${|<B}FWG;-M$R?&%^0WSgc
zF(NCPhA2|W__qZ;*(mjvUGLEznBQUsyjuw8#^?rEX}wnMY#F-vTR)Jf1cj$mkxT6z
z6u!48924az>4J;-cU~GNdAun+MpR}(F7Yp*Ec?=q2`bny<9d@D6wTE`iA+q~E)XWh
zIIk%^WL~Q7HAApueSQyJ$bbP0nJre(^i$$h%%f6b+Rdv^UaT+t<j`>XM9F=;0>6gK
z5~ABZWGAQWrF+dv&Dt8&s$SwzAj7$RlE_S%o;Edt(Kkddx797(*T2BSH;?avp^;2E
zOLE$QuetfoRSo#<L!qC~l=ni2F(|uHK4DPscY3&|3EF&xuWog4I@@UyVS|sxKlzjP
z@b>^MP>UP!U=~38r)z5((i$A89jcH1dm|10ThQw33h(!>1i9~`Tm%aFLLM&LIRpH5
z-x4uUbBi9v)`TtIP8o!sJFQq^3v2~pKrl^cYA(&qu<S7e_}+%mDo!)^S&zAiPAWgt
zaMuQ>SA0xj=y^Z6TjXJJpOghVOXj&m-(QgV-QC{iLKYV_d>xT0=e7t-50#KfH#1sr
zt3wYa<;+Pxm~fi4hk3fFYtxb2SAi5B@Es;p?EiPt){lY$=xC&9i+J_#O0ks%8imB8
zbLbU!6{bF&y@lT4hQl{;Q27|XQg{ex5G24jjQ4r)JmkoT;(qW4?QI}&r3vNsCFpZX
z!CT9V^Bcz0Gv|u8^(69#FQ&Vu@!Y25lL%=#@W1h=Z8GWyp(>o&&j{q0`elhxzVx>t
z5pMq>S}Hk^JY5thM1&32W@tp_6@&ZcMJylX3-9gbL6UJ%P9B{e#U|CU7THPpuZx9E
zg+K<ulCZ=6m%-$iEGqVfGj{;}?SpQv?x)7e^LTR=CYR|1(jwYm*+4jSR+s+aj}UzG
z;RV!1NdszBC#as>aM6s8j~!uPd$UqYEO4mA(5KwF_Za*J@9;Mdm`8UD6d--t!y%@l
zNbp$pxF&zZN(Vx*g*MM?A2?W%E=!snyBBvA;?9=MWe%I%zwdy=eNq65lfz@X5J_Io
z4qIzTgt>2dYrh4U9$Tz$1`@W~Bp?^$kSUu8c#(c4iTm7l!dvSJ-h966OI=0eM*&R;
zzFr3zUqhSNp`#ztZROV5g~0qW#gn9i=0f~`LM<aa&n=iltP`+*3-vue8^5zpq6*(d
zDjGb8vq5bvr<#BP^l*twL=Y(8vvi@azUvf|&dnotn8NcFStUkY1_6sIm&qHIs&#A7
zS+$ZWo1O<ArloB|rk7Iil|oKSal(z?I8@vA4MJseA<ugcWYyH-gtx8%y|gF@ZeD76
zRW<(Jdk!WoK7JoY^Na4c^FWE|+^kFP`zh%qgA`llr<`w%Ah@2S@uKXKgDtu<(PpT8
zXP4=t4hCKLz^coR-WH@Bjs7fNzH50?{S;VV$%v@!di+jx<vL*bH1Gen%J&lnx|~JH
z3^Fa$K_9B>EPt`}5ghI*+fD-7`OGkK_o4G|g^{pHqHgaq7T%;&#+?H`8_6VZ<57D2
zg0(ES^>m}^{x4gsz8j5-`E=L1v!UCrLJ7oB6!eR^Tu4Z!iJL}^KwN`@GBe8A(ke1l
z`AB8;T`PU%3G%%Pir1QQD7k~-+2rA>M9b9N$9IU?&@@vDRoZoZTU11-yjDXuiJgQq
zGQMSP2^xuIzmE9O2wsa$C|}G9K$H!0fsgi-&%R+TVG}YXSDVw@SP-WLd=980E1~?W
zr~gkW^n5ZR`TV}A*i`<+t^B?b{LUgpO?;YkDz_Bvdw@;cRyK4)k8|)^dZ?Y{UVxw9
zSTFe4e;5}e+$?u>Kjb(>RmZfH=<paHb~WUY(oy<YCw!HgkWwbFc<cIsRyHzL4_1X_
z*dZQlAeOc;TlTBlagF4O*~Xk*l}n#xzC~D`Gi>FyP$;1yWx#22x~#0h{o4qnMHA2}
zbsvVR+GoH1J~a(FrD>h@xrF+^kMlHO8+!~Ra{W6ow$eyFqA>dIKdO0*MG}UZjV+px
zkkAa681B^g?KOR`chH)i#Z&JF+3U+6A6Dg-8KV}uMwj}&fQ-wp0eH<0=JLK--mORe
z3FNe4lgLrCdVARE5<C&=xkTKlJ^}tWN1MGbmtWx$HodhAQ8MR>kcZui?v+U{4kolN
z_C!=Y<NiXC{Qb&(>43g}H_SG^|GFDrBEJkXa3LQ1kx*2j5)ickdLv_cjk9)lE#7Ll
z2~Ga`5DQibQz)Ki;5Ff>o{Ed5c_~3UPh{CcOe}4E5wDUCj`okG?J2!S{4om9?ahEG
zUxk*$|9&uk=qI@V;K|8BE#1t#<e0t5U^x}k6r6HDY#C+bu-wh5+j@KtYYrpnVoQ*d
zHvGwk%zZ=Mv|F4F>37Ao4F$PmU+R)t<P_ZT3bkT=sZFvWVE^^#ka@$RoDZ%ena7dm
z<Z-7ce?`MP$Is~;LRx7>Y0s>e(b3V3tu4uvPYk~~xINQm6l4K0`z5ktRKEOLud@JJ
z2RH7w-X-Z@8Sp!N<SO5Xdv^$ZL?Z*J;E_#1zyK7Q+?*T*00{GpZRv0?&>;Hfa}-5`
zzJGWC4EBOxLi$}aKft3+h>)NHiae8lSP?9FV8{!z!5>rm|JKa%Pub4{iocQLc}$a3
zEhsDuyT&0TWUT7r;0gH(L8;>lkI?!SEPrysRlAw&-(FzR4W}|YwxWr%Mb1VJ4dlPJ
zw?v-mUS`w*MWEHfpFe-z0VYyVCJ#!W2_E}?0n=g@sh8ye^k@qkn~$$r6WyTLX#a8D
zDHMR@Nj$9IW2s;9N9wVt4%0R#bB|I|Q=`S1W^K85h~hMY^4GSh3wrKE1Uf`J9{{|}
z7*I)V2E@J3Z?@8}W*)s5beg^DbQn4PU$x$xmKvr0W5@p%UT>mYSx<laI2yU;C*ELp
zu`J<de%9Ol^wsH!^~bHu&z80|`4{cleta`PQ2%R=r0;b^QNi{eSW#Oyh&Z?d`uh4>
zX{Hw0f>~JN0A(_13&PSVtk}rbJm<$pMvhw;B^gyk(}r(D?uf$(`xq3IX|-tp-XUw8
zHS@E6BXz%eNs>GY%3!-po3w=`mLpg4MobekFEPnlTbO3be2>9#Za+)1EF`4QGqu6b
zPtBc~p@0$$7C}V4%<t;Lo&B;0FjvBKp_|uM2VTZpW(s*$nz(!1($BI`8BsRf9jeto
zT=vroG=y+l_r;;v0SE|_WkEi<yPK2igRwiPVbj(2UWaC*ZrV|8TkEV#mxldii|U?R
zL0n@4cxH`q(ZgndZJ>wyLW}xret!O9RtgF9Ot?d%A?Ok~Y79^yy;k{$1ZpKm4*@a>
zEl&?eW9w<no=d$$VSB(t;7`AR(ObY|?+o=a$oqx|U^)=qRpsODF97n$qQA4VQ~7Y@
zb0tvYkW!0P3ru<56jCrTp%J>AF**$DSV1NQeQZk(q4~#e0t85_0VW%qMD*Z><f_qD
zOi5iD@egi}uO%<n#>ir`OA@vA`U-@f$b%visrubnito$%=eM{^0)wWNt!?tG`VYkN
zhvF_YPKLK&t6GTZEOt2nK7=eMd`MEg3L(kYd$GV*zLA88QGFil>%ST<$Os51N!_4F
z;}{B*GHoipZm`pSbk(g13#Kbk(O(v)pn$B@ef26x<+2Ktrq85iJo5NZxArP5sP+KB
zA{l#g<FgT>ytXH%5~P?=_VGz%RzJ`f1%~-L{ycPqQ&pK5i{xR!VS$edT_j*QpHzo4
zn<}or#=&94e&nvXiA$L7yZN=ji$ZqTeCJSDWSRBl3&7lIY?K&s?D+U#v)3uTjPNc^
zP?P(;>%B)Jz%LNoOyxm$efHAV8eYEnKq}yZ3=4VaW(WI^oKn85uj{GE!}&N+i%G<2
zyWE@#z_mibQD@%BMBkWlpU}Y9Vm0hW@856Rg71=xJ79pO>UJriWB@0Uv&tDvZDb2&
zMgGu36*U5Wx&k*;cZY^U5QSGwi*Zv1zw!-7Qu^=RwuJyGV}^W#ga&aSTRlP12>nuh
z1L=*=%h}Glg$Gtrg$d)MoYqeJ$_2tiYL_;Fo+%}H!}gF2r!6h%!h#K6n6AiJL~k2g
zgwQV+N&WIYj}bnQ4#eEN<<OEboC=UJP1VxP@1_hK-~%AI$POo_S1KJ%(IATBc#<QP
zPD(#jR|C8JZKRh}`&)Nh0N1qGou4B<?g!<LO+vyre>h_=zTaA_KnP<eP&y2hX{fun
zWLn`75wY~oHbB%UUtGUJBEl+9@C6u&xjYcu&;|j}4~-LEGi-imv+%x=Xfu{T)cjON
zrYM&pAcgHQ1sBo>y{kRUy6M|}aWS(u_t?Lm2T<;IShq!LkG8WgJ8XDu({R9TPd1wu
z*`GPAv1(hPk)sGfgg`9fqr>z(?iB#h0n;ZxKJK+V$}Fgd9eby80MmYMf3o@j7>N%9
zUo$K11<?>{(^67`!@FbuTg%DGW|+;->oLV2oKTSI2P{+%;~;W3QSJf75lu45l>;c$
zX>w9j5G>4iTO@kB_K8t)qxzNW-a}bo-bA?#-jo=5q9I$n;D<d=j&w1&V%<9~08u9B
zZu~|d7@>SN#c}N=)0+FV2pM0Fuilc|I?@A!uE!4Z&f!zjRkK6?(P7}-Ci~4R<a{36
zC8lo0v(uC)QxOXvp2hF)K2pLXAY2vup9y2Gq>?gw0*#|um5`DO3JM8cCH^dJ&fT9#
znA+b#!$ZYFwXfu;s?T|IP*Vp=M3KHAYu((~fJehpT~t3b2~AHYdq#mRGP%3Et7vG<
z^namlH-zs0(b#Xc-0a=HVqzyovtZYOat;h}>`#5$l$P_YCj~$_NtZQUYUw9s{??ZE
zr<_UQgudpv8Ov=a(#tRB&<84=XYaM23i8vk$R4&OE2n@YzSy&<6VQ%kV|MizTwlI;
zx=DX3*evP<hRMppz`(@C#Zfn*Q`6BQMY-M-)(%Tvnzep}0k~B*S89b+MU#w2JlDeC
z%B~o#?ptB!;m}C2C9bLq`>QV9N(b>^Ax#e?5wQM)BBWS3+LJ`O&l`h2lR`YNj-Bj|
z61JX`OHOh{8-Un``6EPOFoR`Kvl|l=^SYvG*1P0&%n-}HP_6(?i|OLwu01%-*(B|l
zKO^CAj_GF;zXK7_Eo06NG8o<Jjj(wH#*S7cV;;@k`dsWB{#u_6Pg-Uw^I{C|tiqNe
zLjd~sqivcl)MmrtSBghWR~wJKk32aBB|x|LM7E8JzeLVQ#KzvxrI&L&CA8er0IW81
zXTEe4ke<g5%`H$Odi_28IDl{IAR8G&C8)lhe+Tm%08XlCHVM<x(vATmIhkEycZg0p
zS^)m=*fZaF*hR+F*ciRLbAva_!`#9m3&=>10J*PxlV#^=T}rPm#Df$ppb9nK%l<Z!
zXDI{xc$S{BuQ-G6t51A%ZYpx8Sq9Km@K;79$>Ld*+#&E`&O-=-{=Nmb0QQpOFZd4U
zfRu-45DG9?PEY-G)-)ZXrLh;FPXyu#V3~aQ;KB68eR6Vgj67o=aS>Y($gq#m&)L-c
z2C4wxuai~ZAq+LFg)x2q;#GEfmJXzhJmXE%z150}<e_0<$DTDCA)iA|mw$iVQ;BxX
z+vx|7C^)b5?kim8VZpPA>AMOVnJ*(iMuC1$@Mh!lcb^B3#KS|h<#B>Y7H7Wv=@M<a
zqAI^<YX0{;@6@uXV`iyZH8<RMznt<~^$CBxGq<rhROhh@?O*|N?alfDSs2fT6fy^7
zg=y3wN?j5q@}Ydppm5$RQi8=lEpTKy5V2%qID4y|7Wov%KD>_GY7k|Lm{WqYJL9%0
zjM_ERs#`KMFt0Kjm@~FKh%P$0x&>FvYidNGrneW=!dhIb-UWNh!7X>aBM)Y57oQki
zYVy2zBa}D$8B!#AorEW?9S!1{vL>X|c)b>$_7j+}^YUh7VBTv+XeVA>Px`qyfje*|
z*m^h9IN=jN=Q&z`eNo5FK7p@pT&1@1hY6x=h$ePX8=KPo?0j~Ge`>BRM!%ooc$Ugf
z+u2dZN#Jn#uWWwLW+1@57upmGSkm^LN@Qt!sL1EUO&*-0JA&AC71@)&(aUM@WN7Zb
z>DPZ8TW>;Sy4DA>t&0O8Gun_f>z+*VtL~iX(w}KZWqB5JaL#n%zTFf!I!`PQZ;ux)
zoNXTnOHYnQO{d=!`V4(s*EB(I<;k+*E47((3>0We6=*u@TuENltoop6WmW7%lfQ)R
za?yiJwBH`}!s7f3Ra)!pASpP*O%NwLV6Qyr{_)|iL1W_B#xG46|Mn3W3VSA8cQ9V_
z=C>|(*f7ybb_q_{9vjvSG{PSWCE0#+{IJtp+oFSH4}Zxg66l%9^qS=JDkGP#Fz`+^
zt)=WlL_{W#L~!&sYe?$6@U}PmNlJC2rnaD60tk_e_0-*BuPqX~dxfxmw=E$Nd}Rsf
z`v`ws=R%i8qu_M3<EqebmimwnLn#dXK4;0xJtTKDG&B|#i=;R1a7R{(T@d@HXX{ZS
zU(n9nf|0NK(dwJ;7LWP_N#zk57B(s-yxgWo0VrdrD?){*QW~0w)H>X!#^iL@$Fp!0
z-wyyp_HLuu&Gpmi#}RG3?16L?s%r`p+XxWQU|(C}fi~%3_mB7*fWYuwyk_D9G6xSp
z@yeH$gGpOgmi4=kwYB#*$!SMWx0GJCr`PLImRF~iQ^h+njwLL^!AI@@`Z4sV>U;_Q
zT5q!q{7^LCgm_fC<@xbVIIj5>qq@E~S1Pal>m{OsPqu)<wYGWAR){?8$a8cOF0U{6
z+#PT<YKx0QztC^inXf3DL)|#>gCmVz#lCJ1J(8Yr^NY;YJWuW!{&I8adSD8Gp|zuq
zWnV6T+YQoHa-maHR2*|oH{}Df-Mqr-E;nEzY&JA4!joS`!|2XlPj;6#T!;8^It~6-
zr~gQPu2x_5ZpYg5cib#Fx}}q@<Sc&1gwHLz4BUIYZKyxw`pN=jbZY90qZqet7HH@p
z7!WW#k>Mmf2zY0Xa4uChfUl*QENshRkP!6@W>l%QgrRI3Cay(6vQ={fhK!peJvClT
zX>;V!5WyTnm7kwG-9GI%A-L(7x?g!)zRdR4XYOyHu{}AQVXug+I!WwoqcxOyEz>T8
zkejJ6H+ETXhLoG@6<73KU7OyTA+R|&8it+%)jrn895dvg)3fm?c2oAQl)#+Zd-#b!
zNYYe-Gdo6bPU1;`Ak{JLthj}bbKUW95TCI1Zdnk`7xd7u{7^cHY7X+bas{jZuw5?Q
z^ZLb^9>WU0>7TmM5O^LSnT9sBPC<Cf=CIL&G1~%exd&8h9n0-RzA(;ZGzuC{q&o8M
z>{(bda9jRnu<)Y@?#p*e`H_&v8E9zKClI4jVqyU-oZX=|SX_u1?4nuXno-bFzJDC#
zs_^)!R8C))ue*4@cYAHj*|qrTTs(Io!d#&N73@*P?@7cUqh1=KFKm6i!{k+J0S0Db
zzDW8y>GqXm0nO`nJbemv_OkHV5-9P+;l(ugB(d`Sd92hPwiUgYXTu4{;Tv+h)5mta
z=8UToxGPgS`Lv05cC1y#y|L_E@U>1mv840(9|Q0XgDFia2Y4LxLP_OoUqQ4Bk=HDl
zLEF9sIHNya`f&+=GIT~QBGjQSPm>H0(HNSCDS$zjLnEUGx_H7@P$cz(82OBxovTga
z-_K>*YK+ala2(*P;xgnhsBqlu!%-f1fe;OW@DAUPxZ9vM^@qW9;9vmMXNczypFg(-
z$;!%}-tLuk>vWDK%5)xFNL@q(DSc6A6cM_1)WwrnW;++wchy~%S#4%qxstAT9AOjS
zq?7lU)23!B6TM#&-ci3&)_sA(-rXKr96O77?m4N~Qp#gF9=v(moE|o7qgC@-MAXd2
zW@_uk^cJ&KNRSfw^-75?G+Os@H1c~^o~>1!_t0ICA#5}A^Oj*7n+f_;tVIR}-EKE4
z1VM}VtrK@!;78L}#-Q_O*tasVYr}^@!aYIk`xwwqVL^+P%_y!_&EU{4A;H1uZa=&(
ziu5C`7y*OvGuh*D@Z1Vr66eoo*lc?IA$s2~h-}|JT53_ypNDc9#32HCEzc`n4|u_2
z!ye>puLU0RCcN`6BbIA=YdqjH9_KhmUA{GW6BCn(@<%p1VYg!g@q-u=pDlr9g7?V2
zr2AKl;A1#2TaI!u-Bc4|8k%Ui&jL|fMr#jX$v`X4(|vwdeIrqsY!?8b(<5PE=#LEv
z40LCE!(Maz?&k5TrA&-xhACA9tOsU$9*Sp;&1O18d}rPi746oA51~d2?`?{=aT1<)
z9hJa|g#iZuFn@ipX+C&xNPk|-w6UTYBD^sjj#ilDkiQ*%*t7~M+RTZi$h|HmGP?a4
z_Ailt#0**Qb^GXBpdQ7z7uhJoLi(I|cu;@CE-f8kE)eh$ow5N-4IR3_v3crQzg=+D
zM`I8o1K-<|a1bMk(c`3h>@vt!oL-`ZERW|#z=3WjmBES$$uCH$nYF%4nW0Cw<LUa#
zh;4{Ef^F6BiH=a6unt!7iD5IugR>ziVFUpe6J+Zph&R*VYC92Z7@}s@erp66&S3C_
zW|CA802)^umc%8bf{I%PqEj*X7Zsr&e5>0}Kw&=OA}`ShFe=9dTf_EOfcCXe=C`-@
z%-Img=NDyQT>!75i8u~TO(G;f{hz!4?a!|{&;#CKiA!ic$51yw``dd|XJZbxOYo8B
z@_3lfg3$tCK(aS&+8<dTx*O0(IPKJKwKlQ0uTmAxE(5)nS`T#f0eA4@w#Gz8J-(+J
zSBzbv^FC$%w`?k{O-Sd}Y%ab&c%R_i6637C@n{+s4)Vm#2NFTIwv&D#efC}W_6;^;
zLsmfFwfE=e$s3_hkJ~Uw@nYTG0{MBnpddr$4@lo5XUKmOsj!I~yy<!I8k(>opODRD
zA@+}L`Jc@hEn0|4Kg{}hKcY@)-b>TQ3Hg_JFedty(FLBI^k%H;tuPV>2pt7N5wt*3
z;$Zl+$KkpO%RpZ?(VZ$AaFE%#zqdDzu~5#n=IAQbvfCZ6O>Mp-XU{VwbuuQq1~3`s
z1+QpQmq#YHTs$yDjS&Om183q-FSi4azq9*~B%uq+lna2!kwsp+wj05)=HRy?`75Nl
z@dkf~kk}uFF~C2bZ+V#ir84n?G^8z*LXSmZf*oySq}R?n3-uRd07TAPHveFCtQVsZ
zAT~OD)KPqctYwl<@_+3;YPKcl3^J~#DM@O_26o>>r1P)K_rG{H%bsq_oH54AS^&H8
zm(vU`>WKdBSVDVWhTYTLbaUQ#KGhn;Sjg;=dplz{uW$3qB&?U`B_AHmEXHs;w<YkB
zJ#mP=HktG*B1r6(13Y;f?S{ukM>EHf?zbgH!U!-ZmUxZqZJu9R8}QOPD;YymwxyyX
zaRld9^OoQpRub>sYhTHIT*(4PFl8PhlF4~wQU@^J0lP~I)^Ff@XGC!<JMQz3|2e)k
zL%WbXm`wca&>$p*l5`cZ6cXK5R}3fq<b*@fYFq7o&}(Y}<@dR)i5xZlaS+}CPU3S>
z*^>fZet{1<4Y|@=m2IaSuk3g7p!B<iEn|SACWZ_2w}XA82oT@#rJ(Mkbq}Qp6?Lcx
z-ye7I>zFDk#!UK56>HwUniRTPpn{JK4L0sNTUL1;=w}8pf(+c^;bY96WH)hR`<M`;
z;r-qU|HX=zscC+xjcZn`V|Xulj0EIYtVl@O4uKB7-`Cl1%PxWk@_rtFr<Yt;w_^NZ
zt(owOsFu~Y=1B@#5$f@m?PC`Q_Vq}xFt*DuXKZuUWc6~9s0g9#3j8NeoRpd}tZpf!
z<L0X-d6&b5g49M?a0m+;)!`NJ$=nD8EEd)aW$WgcM%o2(a);MEo)O6g8ja+EA~_8W
z0{gV{X;~14)F;sy_4QidZG*^waKu&6{M;O7+RY5-&p%iIh)OVDllPSK<!BZ@;Yb6D
z+@KhN**VAo%`hbc*;_++YP|~lrwrVAW$-f$2M88(Z?u6Ts$%Zgl=izIei2i`iGm(G
z$BEx?!itjhC`u(ZL!-yH(|1IQL708z*q3Aqo(AWvB!b3p)`HMe0oScz6Da2_|H}60
zMt%j5>k!%x$%MUTEIyrsVwU)(dNKA}vEUp<d*rQvd_YW~_B;t2E~{ROT|-5w84qHs
z#yc#wsm@uE-?i=Y<8C#kwmV$l(=0deOC!u$r=h&O!_R>i`~Cv{wo*WH{%)?uHr+(Q
z_a&$|w#O4^0WVTzq#N)>&yhT)0DXcOfeXBQqc^@!<022rH-K@$ma``nV5Qt<(_`Hi
zTiuj+Lu-keeLzQp3__=bf`x#WHAIv5OWs^;a1E}gNbe3Zxgu;G6hekw0UC|8ZFkT;
z4I_<+SK41X++W*Q_5a6Mp!XA${50V3kr`PVDs@aGvubtaPmNjd4&r9!AZ@asQLWVa
z6w3|ZlATkp2Au*$=R4kkGo9YT(4>q{56e#_R~VNVa*(0$V`|UXvfB%Q&e)SLe8I4Y
zYz}RJ4)KPE7zMpzL~uqXXL)s(JQpHOw{-*(tqC)f*;kldUmRIf9F#-b3dIeG{x~2g
zET69??!9psK^vOq8ZpJKmB^0R%D1olmr3`$B<eA)m!BT=4<MtQ=bhtYi0xVo1-A}J
zFI|`1^U3)Mp|5xVBk_tdd3PNk{uVVYO7UB4V&Ll4IlQq^#JH94D8sbIUnpwrA!Hr6
zffKp*EB!$EeZBQ?Ko{WYl@Qfw8ku$QTWtMk7yo5hB)r=2nd-xW?0a7r<o1i%_=noe
z``KY1+LDqI!zMgzY>n<~Uy1=(W>WwsOdf&{(U#m~K2B>*oPo4<?+57@$`5pmppS#-
z<nRRFJWEAss^ijPoYSQg*Iufd`Hk?OWYZ6@s#d=G=Z!Jn*=I2RT14WQtxed-#SGMJ
ziSVroKSLHh!5tq_@-)zWIFr19h{QCXU^*~8`Z@Iytn$i7j_Q)_5om6!udS`s$j4@L
z9>7KP7M!^Sqzuc`h5nOC*t(4@^=rYR>tOJ8@HgkDHP*-1SD`*Jc^&YiBd?Bc?)zKr
zWt6R~F&5XW(jSV+FWRO`v`ZZJXM`fYu<Db#un@qx*@zkW8b=$G{kc$p6Xh6)v80Y`
zJkapN@^$1gekHOvqF5LQ6`&;98~m|7CE8j5v|Z>XK@|9ih}}cM(W^=uD;4buC<u&t
z!mk!s2)<v#YZ+m6Ec3sMPJcYlzYPj8i~)HUX(lg{6EdJjSS{3!?rUiu`}?@Qd>@gI
z5!5y?e$F{}lXUsnFc}jT02kOU)MmaA8wi55jC;n20In@T*DR?V6y3^;<2lPR^YG8l
zCDi+5c|FOi<)2_tfg3Z$X#qM@r-WUfmzDt~d?Vc!cblc|FD3iDT$#wDdavvYk<Ey!
zQ}K7fMt^GTcUT}PBsTEly?Lb;i(?@=TNs#r|Df*xz?SdPh!PxJ-DR`DjY6+zMzN)Y
z@cJ%%achPM5>CVMdf3yinR|s`3ytW>ODekb^mx^;-g2ut`@=eU=pytRNaTJM&AIRO
zx#P|l%{cSnrKHGhjFXGYF8_7P1E7GDy*8-GMt9Iwan4hZyd+n+0);U$TS;xsfl{}l
z60WtIpUV%6%e_rkOGRRKk4r}nX=&*M3(cr;v*X^a80%4w+ff^U(}LHK9c2EW-T#+P
zXzfApS|?gACtOWij{;ta^LL1a;Qg5jG0%r&FnGQBSGUMxg(?}MqtUkrPrL=o)^dVA
zOL5g_Gpp!`WZ(hqP}z<(=3U#@UwSZ#W6z<2-8c)W$xoi~;D>2&q(>P@3?xp`!GBb{
zj+!cgEYTBU@$u!scK5cUY!1%=(OXX=6=W#*h2>(c>bFeCBFBDcX0UmSQq$(HY)?fk
zw@hsh$?OrN2VRo=!4<{ndBw!9T?>u)`rvQ7V2(rOy<XR}%32xsJc-x06B)<dT#G(O
z*VHrwbu{4hA^kAgfFPqtPXF?4$?_P_7<|GN+0zM`*ibS^qtWa1bNU1x4JjpgzCmIC
zt$<6;EoPlC=GQTxyuKuM?c6IdMvt<_n0dtV<O*)1A$7RdWI6JirGVqLx?;bk)E_1e
zn?1B$woP2vhZg<CYuLL<q<K*VP@C^kw~)NrhptXpZoe2A2N`NQD(wZmsJBKFtTpP^
zaWb-8V-u5B)m`o_TAx{0;#q8K^jg@je=y39r_NTH_5(_w%lZPC1vhF$k+ftSCuJL{
z;TY)PGn(~AtK#9V<>^kX8c5g7`v<F<4yBB~wb>Kz9O7xY8LZ6|P<+^*tr9!cd~N<{
z3cfT|(-;b|xu78Brr3l?6TollcqxwC8X!!6f8Y=2@yszPB}<y^Ke%&aIe8WgV#p}y
z46By<cUlWKI*o3Mo}>h2_~Wdkyh(7;dB|ykCu#9tJ&c;FiG(9AH1>b<PW}|mU16=J
z!e;~}_fgX=^9Nt#!MEdMV`G?VC^4;e%ODsp!M3LMgywS^f>5Kgn&yiai>!wj1}W$=
zc4eRkv&NT3ZZ;=?v=ZLe+pOp&{VYl9POVl`Puv9?0)S8julHN=(K{{RCB9-oGmQEG
z;XN%?eXo-@O;J)%;8QyA`*<TbMcj9Yu#TVwgKZRo120*9tR~q|c*q!Z47uUJNMD)|
zp(_bj*BVt|knY}8vv>E#N{H)8mM|$Zz6{oa;BQLCAPZrCPl$!}azFlQ+w0Y1?z*W5
ze+c$*+d>1ahXwJU_iI3iHS=SQl%bzB{^{&cax?qLL#k3IaW|gkYQZ6Yq0Xx4>)BOV
zv-(oiJ?X;;g_>}yc|?p183p7<YT#G4FL`wgJek+B?i;wIC-8f=Q7i_#qUKSK`q%Av
z?_#Qh;E)8*BJ(4hUmvXajXm8DKOwWjijp*7L^q*ao+u#o`Cutc_>dlaA`@Y0ITL8X
zy7V2Kctx*-4?S~co#e<S)e6NSm=gXHRy38>=Old2u6+Q-<kFk?pK8<>T0$NIqa_+N
zV8d*6^xQ8^3cf#~=z{nbz^(B9IT8ZO_LK6XBsK3eh!Dgyf;j)Y-EwDN=KmdbG-75H
z?og7=$2jo&^W{xQAXXeE1NFsa<McC;kZfi854-B8tWT$`VpHK2cBl`8p)OGYj-!36
z8IR}V^5LTx*=eb5W?SJtv;jHBfe^lL=tTk@eOG>w;Xy)Y(mvM%G_}|+3wu-SLd~bc
zk$EWq<MA|BBpcWi9-b{V6O+>c&S5D}&xVqOi3O8D-w7}My21&X<DaonGBH&8ab%fZ
z6*mHkczy7YiWTM2zsG}U;~;GK2P5-m)B7+$!d~-moB42$+QQCTw$hfaMHAI}G5-6Y
zL|s9d6x4jDOP8IqZ(C^Bn^|QNOv<eKALgiZLL$)7AMM}0d@br$lq}%Cg_4D`b_Orz
zFP^OqB!S@D55%Gm*-j0o%svERha%yzOr+hhp|?T_pLw(EfZ>Y}jwq^7bMU3aqd#So
zmn%pT02H~mIlW(}4Fi4IB?ln?+(^JlS0cn?$)^d^W4rDqsJOM-C@GcWqswRG@Np6C
zjhC31SeEQ(B{T+z@{jlTUe*H<ckvqhYInX;IKEQOX2JAUqY=>i7lXoGVtu}!KB4k~
z9~)aCC<**M$#^3>dWpMMVmRh*BrZAAx`$4PtpvN<2kSBJA}fSaV3$VB{E^`Ok?5v^
z!iem!96(c)<8AolgiK#zfKZYRsQZ?shh%oIGxJeK{Rw6QjQxi_4vC3x3u1%y^*T})
ziFU$i>LEkkw3c`M22TI>5>n!wkhptMSsBmIh1k|WEZ?oc(QHXcL9`s$@~tdldpJcx
za?`xfF#JuY1xmpNUZ-t^1^!XFcHok`kVkJn5d38qJ*zI!5Qwap<#*x^K%D`=(!=_Q
zrHF{$WR(NbWmc+>RAF11w`~y``_M5J?Dt9#5C!WOd{bM*MnbI`7wPfwI5m6DdsCWQ
z2WYW&P?p7ffH5yf9ZXs*f9$_PEAXYYy{pH}wo}&A=06SyeC-|9*)>7Y$t>$1SJ8S-
z?z?T}xHUxLQo%OG4eS{!9@ui8t^i++Rm_8n+P^!%e+xuWqo=p#grNH#-yhcolcxm5
z`1^yHzLWN$Yqf72dTwV1f4_PJ0Qt^tf*b7}9l-Pij@d@{Dx6a?HA47wQ#?T(|2BxO
zxjM)E=WGjq6d5Jd$_#wFc_(HLsjtC6k5^#DTzSgx0VAy>!X_}KX=}yvP5gE!#X}s1
zqUW)mE-|T2_d5e`^Disl&+}Fl3N{90&~wH*^^OIT&_Ty){>LDr4*(Y0n5(v&Vvm65
zwpsY5uV&aeR8-c?7{hl0)Hh{0YP7CoR8}ep1Cf~Ba|oc?L(MV=(zoK(%V!_Rq}C3Q
zxq*&w5_{n$&$c7m7wCmH;i9{R@60>fQ6x8=g*_yHTSgR+3(1oc6A|S&MSlh{|8=bq
zTz=9q91wb!R5%+WA$YGbZ%CfU+SNJjj768mh^+%rBn<kqNI)8m@C<chx;5hy$fCX)
z|Dyf;Yw#^W2W@heA@PZmzgvL+c}C=k(C8O~HjSwR&9iv_>*+kZcH0Qg1MO@#=B`Jh
z63)NO&d&Nvfq+!>niGF+Q<HAAFgXXKXt5s&YH(aaf{e6usLk}kLh(3UXQ2o{cv-G6
zs;64Hl{R>b(et)Hnl;`_DaAY!p8lYX#T?10cWKGUq4>yOuRpP)B}vJ0&G`4XXTXo{
zJNlhHh5PP-kwmLpzo{Grng$(t`$3ePTr-hi9J2qr?mD3NyC+xP0|@-2i#o?GS{la-
zVk4!Y@Xv($AZKUibpdiosy`wczlS#b7~UEv<sjD*xR6Fk9ut<V7-|6#b)U!|Xg{96
z>eu@=qh^`uY4RdgFz$-9*WOqf5U(v3UelXj1Cc?rdkcK5f4w*0{|u4v4O=l&(UADV
zJo?+}A4PcQ9^kv(|DNHuN9#*rH>XVnp1c+6b=;8hqf$Se{J}o*LC#U;fBf6OI~>pF
z(OJ+yL^8{kIpH_2$_3PeGLGZ4m(Y}Q_wTR%?F#<<s{$EcSjd9AC5PWu<KMr*W&{1J
ztSq`en6T4|{n#G`XKfEfYJQR>vEheKDY5m~d|o)o+8&bB2-!s0_wO&IW#m7nP3Z|O
zJEO70rr}0SG>ua~`1yFF(%}|9TA*=DO*SxYuFdl}=_-DSYSPtfN>`3!$ht*@_0M$N
zWt|(=Qe-6I@#tI}%}0dYV_o1KXOwJeCQY|V&`zO&<f_@77h6|Bi<q7#AfziI7aLO<
zOzeMKd|4XdWN#vnU5ezL*=(B8L>dVGyXyGs+<+K<gxr9b+!6jCF9~>0QYN4qPKTVL
z(H9>qr;_5+DH7culsI_w@l<V-a%(i*31SaVWq!uKH(^`BQ_oW-?jv8B3Fo@?a;=gi
z6Qfur+sA9+`BqcPoX-urZDqIT0km0(rXux>Zn1v6K>H~?XR^V2F|~ytRj)K7IptbE
z=3GaxHSwgLf0tO5_pb7cGk4P=UzmG+2kOG~<jd@s&OAllgTFRY&c)jV-bwt?smZbk
zbcN;dS&RCWFTabgzi#Wd&Ds^@YosHwO8)0N{quxDCc{`RO)Vt3MDyGDX0(%Oy>MVV
znZLD*;>Wmwe!Q}IR!IGx<mFZ3MxntMy-IqIZ^KI;yQkuTU^<dcq4l><>I4`ADqYZe
zHS!DAncqO$+AwhF!JLDIwsWpr4K&*B7m`yvn|Y+SzQ%aQg;_ooT?F{7PHH(-nUaX6
zzrxJPRJ!0I@#c+6`zLq~>S+G8<Noub-w9<aJmmVDr1gKvwP?{WOtXT$F(yv!ssXGr
zov8-%PcIJ&Y=8V}oE_3tE*0E^Ljgr}izp$SGhKOjHk5mtK=>L_b?X<#-_#5N>y}7t
z9pyXERv9r0FplJhY&ysKSC6AcJLwvp?wENdDU*zSd^Vm2odurgE`yAb;{J)6=}qDP
zE$brSAPJ!(;7mTf`uC1xc-Oka__+bRXUO+`Pcl|tD<ke4b+aU$w*SWx9nTO+Lj5}2
z`7W8;(}$hI%br9|_0GKuX^D?Aww`64FnX7czv2pvT5^h{Am(dq<J9$qUI2-gHOqR&
zgF|6W&a&56j&*gqWUM+B5^`yR45_K9T6{-mH#wIE0dM$~4ACCEMJUn4d!juoSWd(x
zSwqwfSBQ}z>Hk~+|2Scb0VD-m%sC(Tzi%=J!tX_tV5YkL@>VmYo_y4`hmew^Ta>Z!
z)^>vCdri&ExVVk}-AUE4>8;NL?-G{ORItOl$LVZx&yRK;WB|gfjgqP=&GQK0v>}%h
zIRCNDoym`|O~Nh0az!QaKq6XNQZo4b{9H;`H<cjlH^uY2)cwbjcms%{M&#$!ZIFbe
z;j%|Eo&u5ZhXL_9N|X(Kg!Jfvk;R)WL|qhA$h>kDs_))*H#xO+5jH%XUz0khPUnTO
z!;(-dpp{!ypyx4{l<UyTSm$#44SV403nukal^Do+8UX>Z5~^>MP`uR?zOyb)=Tgeb
z4ZJGGkm*X7Vmd7OYNuPjeib@W$a|KFkV~N(++UrYp2k7GO5jbEv!>4=Iz{{U<NJN#
z`aWMjF5=<8*D(Y_#K+b{@NFeDluvG)YY3H)t}CS2M<0_Og9KaeA~iDM>lNJDYRmNf
zg*s{57#0X~(EZz0v^Jj}J904qlbPQ?KxTyOYZPJsYk)wr-l<?>dODf$zp^KP7%s@@
zQmo9(_lV}v|3}wZheg$HZG7nNaF8x3>Fy5c?v!rnM!H)XX^>9o96(w@8flbnkVf#^
zsONp(bIy1EnQN{guGxD(v7WW=`?o|2U@blwC0S|A{>NqqrVi|RdwCC&2o2xFrwb98
z2H~-S5@9eE^2V2WM-r2!4#tX)Q_)ZyQf}kmop|3S9gZYTF1_46IGlv}2s9K9zdUwN
ziC|~f8k=j7&16^8txt`lr3~tdlWI)$&uHG`8ve+Ta5Sqd0g{lkvbS%1b`v;wlt#@^
zQM7e{N34*SpD&s_TBc7sR!Kyh0a33mE&YrI|4LukkWQz3_2XLsPXAQ1?I*H8-OqoW
zh^o6%Okd{<eZOe6qEA3QKgqpdtM7sRGRdY_F}rK_!4HaII{K8EMIqW<dcGce((4uu
zqgL8`p_-g0sCZ-+g7i#5Y|b)IBsd`M0D8^a!J%1ij_^oHR5UOyghjv8ESs5;amD~>
z*hN(#cPaj#^ZRiIv53Ng$&G^`F53UKdEh~RskSS#ZKdF!TVaMWFIq#n-mtspZC!9z
zV6H1KmsNbrLr$>S9AQL&lKgy`%3moB_TKQt_)rteMhbm#hw41HAz$GraNKmN;(5JS
zR&ws-q>~><p=@AKHM+mI=jvtFKJI_{{!tXb3J;?ve5q5$+ab-c1LNPVdEJ))Z8}3N
zOlI3GOl5i1LDBqr!^!WcwdSXZm7=wbGMO_loeM@gk4R2k-K@SrgP~nH47K24d6V*E
zux5|170OnxMoYi9Z42r(iU|t~8#z99Tt%bG%*qn~cJfz*|F3cNdsxR{J+6dU+V1}q
zn@oj@$SGAU?UbgOzfX-4-boXAtsFN?{62McYKpS8b>w?jshBgH%ZKfw1pjU&flqEp
zDlC2FS{yEMXJ3t;J;8X;O%q*T1q^xFj*h#y@g-VsWeIY*@+t?1huoRFt_zl&M;SHS
zZ&6B$fH_TUPo6g**%07bBKMDCATb;Ws0CisJ8#PF9v!8=?S1*>I`C)Ve*V(BvNf7I
zZa`&+uakwDtlFU$T{^2?uC!OBSLfw|OOO?amzURDPhVf4n&c;b1nw6)TKX4>DX$3r
zZ2|oi9hJ%Cz4v2TSU1x)${ZQAQtII$*!sXL{}Outc%C)Va<J^*P7@+Fm;qOOlkn#Z
z{d~RSl$@a6ZSjo5tFp9(+YZCio7?lI_cwb*+AZRtKj*%uo-BThi9uDl%5h%r4b93d
zVTIOyobJ=pAp|HN_Q4~saRx}`iQ`;TY<fs%CFWFOi0O-jc^0V^szwdFF1zAOr=fVA
z*IIwt);t5GY;snHESfwnTQL@Rv!XG<zq4uiRw%6HRE?g)Ny_Cdz_E?Gan;OCDmcI_
z(M<TiFV<AlxSjx(MGT_dF?#UkKf{lASdYMW86BOBj?)1`6|F;!0Tgaq)POh>J5V5-
z9~E}lT0D??F?y#6AtjpRj6pouls38@PT-@JaWyPa%8gsd35~>}r5}>3q_F+B+xC0R
zL0~cSL?K{NB`rgu6TVYVfx@Ry`K0XZ?9xj@3=DE7uSPwyVr*V<QT*CP(lud;#{4%^
zN}aL8`IXR35;SH@dTH;dc3fnxQr?npORFZZzt<un5IuF{Ev{iSrBa}=H_)m!a<;^{
zUq05@-?tx$;XnRyBbb!KtG+(vM6PrjobNl~#1HNtHjCZ;h%Te)MeFN6-e|Ww*eF3B
zh=nQBe;kbU{Plc!hNPhr-t~-!V`hsZ>Q)nJlSvTX$#ROpM8#{EHm2>kFCL0PQ!jKI
zXDYM?IpAd$$POa@^Iram>5M<XKGO&RZK!ns+8XnL7-jU~=qJo0fiMUKO!UAMebh{6
z@VdMklSB#yDo>QkpK}3m7dojBk(LUE`9rqHO4(rFyi~&CDbW4Z`Fux34Yx`1`a>)s
z_uh~AXJ*B#$4@qze*jtn#?H<?DALehU&FW;F}d2|NjL+o-yy-I7poHn8|_+tLuf-b
zJ#IIRptbFg%1G`~tAmpToCN%Nv$BA==<4EIx}&g4@~CCI;`9EuxA)fE_LvFW%tfH^
z0s#$F=(oIq395`=4T8S!yn=^P9*|^5-01+CZ$+TLaZRseHSqG^=esD~e<l(fkmVn4
zT=Zs3-Ld0V9=;?0wc3hniRrXxW}y+`Ro<P*@lIEv>ggR>M$3DPbEK~KCNU|cq9S}<
ziz%=(7wm6U64m^|Vp-L$X5O0Y)4151e$leGui~mD8D*X4{vR7Pkm#334h{fP4v$F%
zU_%qOgG1yckOS-h=BHo##TCUxF_eA+rHs+D&C$)rtp7+2K@K5ytgM{eCLoT(OdI7a
z!T=+XZJ2We2LKWdE&S)&EJd+XyU9Rzala!#GM#jEbVTl^{rfz{atXV}o2>#Kxm(oW
zKIa!&K}9ZaYfR$#ye$KCaMIQ7POi3pLhD2c7bW-+k2!adZsjuZ6L)?0uKU5EE0Vx%
zEUsq7>I!W3X8v{f1R~Y@p%OG^d12GW><HFD8^*F(M^U#lGX`pw<W@AtG{wEmb^dCr
z7il@BeR{>Z)`Dd;0%*_Dstam9wp3}<G~C+-dOrOoP5VNFN(Ldor!+G&Q{8}K?$_b*
zzZU>CAVoz8TdCiw+GO{Ijovc?{`0~@x!|Kc#?2K(ySY7<%^*YmsMP~tx^Et<t{3ss
z(4;@s5c(zXtgNjQ0p#0m7cvS;F`$7i_dr2~ieUw*!oKDAP~46PS?>i@zOeQa+xJ(i
z%;Q3LcJt{1zXL-sDfB=eX-;;ZSLC8)vc}g&fdQ;uULDoi(nU7-fcl9-fpZ@{Hn=e8
zv88|wb#GYmwL#sbx%U^hc@j!^f$L$*KF!9W@n>fw&oKHRU$Ihpk{%kISP^Ar(}g_R
z*6u@KHO>){kz$fX=>17!l0`di{i^7zqM|yml)EXDKOk{%at`m;bd$UfWG@ks93Fl{
z(7eKYarc@Wy+n?nq4b=_+IsJbPWoPGcDIQ)lsYLzi>zwSrtnfj*|03LXxFDZV3lUK
zoRl(y*K2ZWrC{-{lfE~u&9dEXlg--BE}6tK=ls(3g=Do{RCM%aRrAWE-?c9}rPvfg
z^M5~r$4?S$U;!-wNY<4S=sC(K35g@-msk17D4^5@$cidhTGwThzi*GD;66Nd9N<Du
zXSW<n5aP0%Hzt62E8wNN;`{wmE#Gm+_c;F{T+LGSR3-x(JaX!uF2B2T)-AMe0ZP7K
zaoUJUSTe%ZHDUe)ura()8-83P7uBP|WyaV9JW6zL$XTdPI4r0q&93=mwW4dMFki>3
zWyay|znyqzV$_c446&p)4H3bf!byKP)C(zoR|F5GFGox%6Poz6Vv9cMMZhY;sdcX>
z&Bp*5f43Zk1jqp+hTQ&_&ZL|~YP|j9xhgi~kq?VA6b5cIjKKknq<&(6NUNU>(euaY
zU~x%_G-fDT{e@|6N@kyr*-H5$RUSo;m!KfF`c=q3bY0Ee_muJbF7`gJ$v=Jiq}o-W
zJ7?YM4>T-;AQIhE91{Ls^M0qf{_(1s@i@}YFE2-c)Uw%lj^O0%?7NhkNRYH^fQ%_<
zYHa^P7T{Vvc4KFFaB*?D=p%U>jsToKMV1_{Fik;zV)vpy6N9GVrHo~apLnK{O$NMh
z31}lGCcdO!qWQH$flZ-rU}W$8H^1zbDe0Hxs;uE?InWlpzQQZ!A-%<6DbLvFfPz6^
za`;Fi)xALIRz!&kCL}uqeW-FCHeHsQoV+Xa?z~I!XsxmRoHaQ;h;JVQ1(R%oSeC0X
zOH&QqJ)&`h=@>3YXZNzEZ)HyAvM%i7%Nn!N&-c3-qMMvgr|AfNmlbzyN5O76=ZPOp
z>gObNk=_(832906M5NRZ*}pQdrF^1+F_`(jZRMW+N}#%ZJvj%AGr|6f(R8&W2FsUz
z1eU_!1CAe~#^v7W6g!M}T*S`Wp|WX{S%^W!=`F!9??+}!iyAIu=TgigZSH{&e0K{e
zgUyHE!)?*sV$+jJB3KgnM@^$Hxbn0wdQAnyjD3@J%7sXIq1=|kW+QCznI)hiX%uJR
z;pG!@2)~RZs25|1?jg^R-d-@kkjLN3XGM_6SO$#4!5$YT67{#N;!{Ka^lg;>#Bw2Z
z;b&|ba`EjBZcZ%hwvrE*#wbnATfGSRRUGwN6zA?SX2;Jxza9G#<+*&N$?2<TqheW6
z;X=H-y9nN|olh0(Qxa3f{pQyF*nB6R=@q|B2s~DsLYN=$X8yE|;-+wmbzqr-+NH%4
zw)P!6{!JGNuAV;5T8vkqeff*eHM82v)v6n=rTeoqU(8)*1htg?gkg*Bd!cMwPY$GU
zL6pk#R~KbhmLhx1Z<9u-D=HD8BAx}%LLJ3vw$}c1%V>8Fc8LEr_RgE(jr_z%-lUB8
z@?-RXcR{tQCn8Ji|2vY1K$j^RpDV2;No;-27k{xw*O66ODJqGH3LEqBEw7q1I^?v@
zbWq+&Z1L#GfsT%D!Yw)~s_6ZD_DW(@j2Osb$nXEk;t!kW>AZ<Se{rV)zLw}`qe6T~
zXTGp@EM0JDIuo2U9^nF6gAlDwYcf`uNrr146_830)Dptvp~_0Wu_PLl$`f(m$5{qe
zrcXh84hDGN8yVzPBEBtsA+Z)TOm0xV;JdnP*Zp{2S!J;M#fiy?P(YieWL@#0gQSWj
zPT#vwwHE%iz-V7a8j6}mRfEUnM-unAJtu+@__fIHJOSkbXyHkD@)P%o<7n0N?J+0W
z{b8}?=6iw5{ORX9Wib?m@+fnd$;%1|;y-hu?D!YHb?`b28-edv4V6!%t8tL+U8)ub
zLxOng^%<@yQK6Bac%a?*=8;O=1>`C0BlXjS)f2^h<Y7sm?QUdzz8vcR8n@zIUq4@)
zjHrf3`lJp<!9zMO-4=Ke=zUsvBUH;S>#`xcqVF+JWTGE*9BhGi1AA;;wAKkv)4rCu
zpOu)8CZ8v9#bF_P_eC^V&u2O0az?9iJ$>tA%2C^OqVmZ@=5c@Z!V*hxKtb`|>IK%^
z^ObIGc&M%Kc)a7!FEaW@nOKTW-6go+1~`R~EY5<$v|046_|j{VSDJ9te6L1qe`*or
z@Xj1->@@RzO015BqDZ?~c(aNs2XivQP!poT+jgfTddr1~icD0VyC#xL%YLZTbs5C=
zAd`0UeM{Eby6nL3*2qbhFx&`G0F^`pWAXm4#W4GEF{C1_9o<X<`X=v%3+)if`uZ5k
z_(TOQEa>Vq*=3OFn|XP)lIcQq{J<a)C@sX37&`>g?vEZlgASm(O;0ct&I?c&{Fg7}
zN+c5SClx0tzw2Xxr<BIYw<pjfk(SiB#Zotwc>5!?WI8Xkl6v}{c(vz)+Xw;^MTg7L
zZO4=Y+zd!KWZ3=0kx<REunzC}f{F=DL10Ws7Ew+Q3wFS|<mnl@HLs>wTUTq<Co5<y
zL`-zyye)JL$B$6R9lg{Bx^$@x>ge3u-;k`)im6&e))edn7H~39wR^#!m9rg$sFec(
z@?+1c=UVX8i8(XM51He*6qswe$mhl31*o*<Tm#GoGfWEMy?A#mLeW~N^qQwRHq3Sx
zt*%=X3nDEA9Emp=S_m$z1E6$Uqbxb;9tfYojga8>keqO7N9|#hi)URhPM7e~#d^*c
zAv_IA)z93p$fl0%Z4L;yU$2>ZP+WqNy4MdUhu(?D$>B0fJPY7%Yt|#!FSUlWAR)W3
zJNlONc*1`jQM<<g3$Od_VxZDzn$pEPUfw}YX6Evv@S*z<zyxGxpz1eGQ|q#RU;*s`
z5Hg-nyK#!fiY);f8Wd|3G}wQgA7)iy%SXVFJB)DeyzJ@|ljrKxq<9RwMgzQ`;5>uG
z!ByF~YPawQAq7dt&#QIi=+zz{hnXU3vE__W1NJqg@091LQK2As6N2^h)5im`J;$fo
ze)7f6KwgTMl1=0}QYj*I9o5-eK)~L>>IVIgr{Cr}jJtnWrdHA$=k+@b{;$_EMY12(
zGq?taK$5EwO2ps4Yt0;X0Mzbr%oXl!D~wSrgbE#FW?_Mh3XjjEPwUuuF`Ix0?U^2;
z4#l8ZnJ_XUD=H-CnUWV9i4Jm1kzvN468;lEnTms==sYXL@_3@pQ{%a99)3X8SQj_!
zwLV>K=P(ooC<W&Esu5x;aQ*HXs+hfGAd`iBiH7isxLKikR6pP_)SMic%}GzK7{e>>
zWp~x_38*5kUsK-2c%V|}BGF+u>U#R^Cw#XNWGND9InKhPWjC1)sNGf8U4S#yEZu=p
zjuXun%tnJ2lVT#5<iw4a98I3|gAJ-ZVEM|j3+J81o@^pris5O$7%Q8H$eFXP?AqK>
zNFg>au<Vk;?H_nH5N-k;!{y2s6WB_2AXu%2SgoL6=-%TKiAy|;`z<A2Xi*VAWD;f`
zUW6VhoPmQzE#^2P4#jIrnIXueA=qtUv<exE|71@(GtO#PD25e|=cU8M-h6v78{q&F
zam2K7)-&9`0mKhSH*seLKN7b6wu?JzuLf3X{DcWs5vm4J5WdVtuz6a|%z-+-Q1*i{
zjRikRN4tH1o!(W=y{K=rZ!<8<njpC<JJz<x%!?5Y!?|nR4n7T4I5_5yNszzA)k~>0
zD1u@sV>hleL4`gsT!^jfeJaTdX+-RM3O*2NQ(wr8ilw)Ss)z3(QvF0mh767W|D6AS
zWdUMX15ap<O$Fw)-Hd=F^LvX=$bgu2=ppz1z;be7;VGA$XipvjP7KuA`fEUF%KK_9
zfb1m*wv~$8exV5Oz72A@{fT=Ow}T8lTs+=31}b6k3}`q@!uGC;*W-6daUeh>2f4(d
zNRLhp8*ih6d*r!iIJ|vp3(lcwi}#@=^7CVp>Cicv<f>xZ1@o;f3sKrvv@gPOrbP+A
zts`%0JU0zkzm?tSF!GWlGzF=xlIRL)Z89l^1@I<MBo2Uf2&33&4aiw;^I~#D2I26$
zm+<eQb5;gk!6Uo0i{#tuPc0_kLo84Oyd8>4!8<4;*6rYNuVl&Sut3(k1-1hP2k%v(
z*G9OMcoM=b83Gp*&k(;QYXeS!r>sed0ZC88ICTk#PdV3A=KQIArj9)wO(4@HlWN)p
zTQ>2v##is8_poq!ppjjQlvskUNW+ANaX+F39n1KZ5Q@@6(O!P?cs8Pd3nf^Bxbkip
z_~QeU7$_F5E|gD}RD!mz1iuL~$4USH0SHwBA1r+CXN7f6(L^IvRSKX9R8m?RjSL}(
z`o1t;h`!zZaMJLHh1V{9e33zp&k-+h@@a@la4-f^Q@5V`vsGukD9qa1#-LZnomaZn
zFvju$959L{YVnbXFc`u=YDwPb=l9qQ{;q}x)=`2aaRq$HDK+w9XA_L6DgrH;I)vAE
zBTo)a%s8Rp@SR_oJ`DBQYawUw%@^b>SKu4YxtqW3bf~|i1S;Rm9sT)v613l4H;HrP
z1GRWN%JP>&RmVLuEKx(G2DK5T<1yEh6LD%8%oS|)vsfBlnT6O&nKZnFovUO;XEC1_
ztBbxGqV@m83r+$D)<w%6SEXbPTtnW<ZOsZ<oHAzXuG>xGQn|df@(UH1y1#Af-=<Ja
zKsM&7^ZALP<xwzp<u)G!1^+BiokD7IW+7H3e%Z66na=F9>7L2rV&)R&wc+9tCKN~t
zF+I4;9RdDm2U!x69sa3dyHl{AGfpjOG$SpqIz2S<uZ#v{9+Or%ktB`Dpq!YG$*`pq
zp5TGo$IhbH@GphKztTwuNJRkH;dGw61yHUsDQ}4fcAE~Odz}r_z~%oSCyDp26(r+!
zSV9D*)G5FcF#~L>x;;jknil1IhwUpDOrzkny_t%$vr*>gRZ?%OF6Cl^c|fWOSu+Ms
z{wAhjZoM$Sa^itS*q>KE!U$3jxfMWf68C0{C$#gXvI$K*e4SMre}bh+%uIWg-!P(T
zvg(pBXt3MN`eb9#K~M$UNvMIa{w3CouKz|`3IW11^n_F)Phu7xY6OKxCkXRgX4yCf
z^zt&gMQWIkYm24Kogy`@Rb^7zx!K5;mjy9`vW?M>13o98l0LwLOaZ<chjxej+P7y2
z7E9peCuuFBe$x1;qr@6j+4OPzNgI)bLE>EAqC%GMgg_V8EXb>3E9<%1T?}kiqdGzk
z31T~JT&X*Mj=A`p9L6o}HpWbZF6OX^Hcd<uinBICRc3%#M$q%aSSAD!#DZ8`k_fpn
z58p!>FdYynbR;Vm2@;R7Zd?;72i=k3FG?_x`Sj7%3cvOX)fbv3vxugv@p+Ya-r!ku
zl>N-yZn{QjG(VJiNtwJ6fv{-LAjSFgkT8FyY`>(LA(?`<L?%O_bjYCxlD7`~cX2#F
z1`ZHIZf!-^Fy|FO(ZS$foVkYG>a;k$t2U}D(zd~v4)0>JJFG`$YcQDpXilx!{kuTk
zcPpOE`?0fx^V|`IJ*Q@_W-;sZb1sPlBMt*vX=@9cc=P7Gk_Yekk7-<2!SFqoqXp+(
zp&B_cqU$tRnYDL_8)fQmJXYP(j!aW!5h9Zl93O7yRPHLPt5fUGoavP9*HE#Q$5Z1-
z1nFa4p(974Lw~0+-n;=(JZILfCEMG;yzm6h)GFg>TH1|PiO<uynQb_EQ~?`0_Z~0)
zZ&`7Sa9}d<L_fIiP1DgaG2wgOiHpWhgJ^?YJv{VgYK*!a4i`Pz+S*({1jfX?ax4XM
z&pS3O(DR)>&E{qSy_uO$?d5B2X3EJ;7w)!x7ji|;5UnuoMiP3l*W0n43aAWcvzP81
zl*>6F?t8if6d<hUor>)o5HvU1^lMwxX)$mxN-CSt$YOxZ83gL{&x5f2p2tGJ95WR;
zeu;rb$~%)tv|W0IakJA{%ITdv2_~PuLzv_isYBpO&LU$GBThP%4NGd=)`gbh!n$uJ
zVo+6K_P)5Y5gQiQiM9ftEJ#H~Bo<wQ9X6E_xk;X@d~>V7CEIf;qIe>*))`-WDl;+h
zPSqow<)H6^d&%n@qYwrshXmR0ocN^tI5%({VPFP((stmGE%j7kN$Q*5WU9l<mi#F@
zF3_{a53lSUE(Ho;*D{0a@Te*{a5>>uDHj4>5WJc%)Y(DA=H|CbTBryxosv4U+>p^K
zWCIb-XNG!k`@qT`?=3Q<)X8*TcZznpne#TXidY8AniiOC`aCIhf#SUt5b%;L=l(Rg
z2&gfta}x{w`PF@Lr6n^}kne_W0eyt*m!l`N5BWvHcefhLE4#9D7x@vn9{Z@n%%ezz
ze`y+4{?;^HKIBag^2K#(7v6DxV^o&Hv^w5JEv{$(j(i=|*5T=%Go5Sy=4?-Fcx-$c
z9-Sx6pwu5QOV^QNKj5PWq&sK9p*)dI@fKZJ<li`17xxBs{nmQV)0ds`+qidE$8&c-
z*e_vI%Z5PibQ)MRl>O^6Y3;{da?<%R0%>VkG_k#<35oii^1n7U7B3_~t{7IV*EBv|
zB;J&^>*wau?0;XiKs)yKJ1zB3y}Qc{aXLbUZcW>NWyNR$lQ|GU5FjgW6AU_76ukHG
zhW{?_(>Xy}e(jqd9(i&mk_;vBMC2*-8;88cM$V65kf}&Q8wegM!P#6?k^FZiNDo?>
z#pa5S6E!&|GKz}|eBvu*co2E^Su(<2f`-Lw9&3wF*UF=^;wGD-iZ-_{U&E(OEHbWk
zu5OQJghErWa41&5QNXUy`$0-maSfaZMRxMkkxyOVgAY;8d`3T#>j(N5lmW^oE%^B#
z4_n`L>`Rm93_R~aIVKfoFuBgB#Gr-qdI%!H<1+L+N)D8(hs`a%d=E!qDVcC4BE6=J
zC6b3az!@zAcX6k_Q9?y)<Yp5M*o9g4A~_radIHQb6CluP3gmY2&+@vZ?X0O#(M=mn
z;vC&k;$MS-G#jj69}8%eZdvPnqlv7hH7zmHK+lhtPX(3_B<6*f0+V>XoNrzge$<ln
zu#4SDEtMfTDc8y!&pSKuFn?#O<RjfC&d}E>>m{s4ciQQYi$@HypQ*~Mw%nuS1O3sR
ztV_?1GmRwt_-Lnbgb_{8qAjdW0wDE%$xdYNE*zE}l?jMB4DGbwky1?VTiFt~Og>W#
z#8@t@@({BjvfTG2K;2W&gSN5^63QmOp6?48!y50I(~HA{pDMp&3WWQ<t%tFu5F%P>
zakS*6$(tjnJP;4LAiQAnxwNwtq2;D9pD5TX9RMX>NcnUC4(D24{dRYSv21?sg(HXZ
zW&7r3{HED&gYj}MF5eX{h6jExhiX|Ob!@4N9oBE+;!KT@COQAekl#HE+z^b+HrpTn
zsIFuN4~wB0)6me6Za}Bb`>o)GqT&!C6Q(jbHG(P{*c3D!@Alq-IX;F7)1K&2hYFNs
zV{$;rLeC5WYUDx>4;6pVppCpJOxWvs8-Q@WQ^IQ}SCi@EE?N2%6|VrPL*LJU$*=sv
zEI+x*cIu9rfxqZfWH_C+`7Lj-*G3g@ndQs?gE!R#xbhN<Uz-`X3G*tp5>P_ZHv3$B
z<;mG$*^n(X8#f`T>EgA#dKm`I&l6-je9k&~C=rvfLj;qPAR6Fblb;*muk&o0xcW`b
z{+C-grF#Lq1=1keC&L_wwMy`b94A5bU3T_aEoUi7+6K0Y7b~|j3twfSZ_`m{aub1E
zYx1HRQ@Zzy<%N~_;Zot=3sWk})e_V+u~mb2cF(WL6hg5~Y2gcTipl~`aVg-_kF~&o
z)OvP~k!>o7{IZwIYHi)AZA^l%-*ZN@lKgB*>-E#i6t_>AB*t#45z6J^a{f`QJK6%e
zQ1Eei7@0V^eR8$TQqtRWGS(c;#ZepU0#}AQt(0<~gMC4Hm(~7GKm3l{FXOxNR$*u2
zw|3h~w{(A%?KU<rgb%+|9cjV1w^o@}*+I)Nv#TZhDeQrvhrNA%16R72sAyLsNCG`C
zhBR=0u6o3L^8>5T<@0RKvj|xzOgeM(bwv_SAy+`sVQpuVbX46l^d|8TTQKaKtY{#c
z1rcV5Z4PZPh^GO9G$7NJ`2-Cb744S_my8n$Vm;|Q_l<jq3BW)k!lB^LN54EWs&0R7
zcx-%kGlH4)C%4CoL{%-AVfKA|WCVL7Kav^<x!)_!%+2ZDUFU!I6iCX>uIl^Vd9#&e
zg5hzdVaU@#c4-9-MghF(U}arhdgW_rDX?~t^A^}zl{@lJ?xv11p|In1tZMgrcUb%p
z*|Y><?xN)Bn=yU_Qh#c{CY$G;RlRC_sj7H66;jxd>YzRZTE2C2G;{BXBqnQq!E2U@
zbGP@42LyhTPNMfDVXka#?azximBYZ8V3VbW`P;a6*Wt~~xPy_%0*mbGIj?ZI1lHZT
z;4CZ>JtPLGBjd1i#;emwYFH_^G55hy>YhE{I>$10RR*3q6~KycTl$ciUPPV=;mryv
ziRB6oLfmj`{Mp7#<N;PO4c}6Cc@ZTtZK%U*VSIdXJ7gnp?)<7;1H{thdH+W|)1r#g
zH+WT)IxYiOV1bkTfN<xoyK=U+dIQSV_hNG*^#kI<ECQ^iy(h4fB{9GWUk2*(7)wI)
zMUycqB_*c}+u^%D_a>L>7C8Y`gC^w>{NxcOj0b&YLJYKgFuz~ERQ(xp(S>eRXdf6p
z55%<+0bT2D7~0T&XBN9ap&;EugcoK&{72|zEjZ6{Q8k9W6loV;3KNNlics*v>~82`
zV!*KEa?Kd*T$#q!h*VUzjWERTSd{N{a^J|$%E5^y^@+u;l~@lN;KE>aynNyBe|--(
zDPh?1id@qz^^blSl1u?w?gwyoI9!%L+BZ8Fn~=_#B4vXo+t=`tIPyhB3O2NVks}6j
zA#2&Y*YWnT+A1pK12!uTDX6x)K!LMj1*l^)QvVRg5G=ww_uP5pE?C>zPDS|%$S(i|
z)jTD{<ZB+sC)#d(#vs$frB*dVz?~wxBP0P2sY^5+jLR_S?8l(K4OM|WQh=B{PJ&vN
z^TRU%eO9vhXsXUdVtv4$A?ywtQ^K0;lt@x~D)p&MISiIQga<b2qAr=Em?xyStF~OP
zZO^$_iB326jKzSiI-lpGx~w~5vXy(WYKK=30|7~mva3bP#cnc8PS^*>`L7rDW1<B5
z^&R4bgpe#^+3JGg?EEQY(vB`i&CkrUsMODKKO5(FdT9J)!4!cFNklwru{8x1k4owl
zC9<rKVyOzHT8X3TW0w<GGtdSnjzCE&v&Bhzo<@S%XKyJ-moL8X-NIAA;%a&@^aTW7
z5sD=9Om8DtGdWwfYsdz^t!;p2nHGgbPrl-^q^+4vcuAc21Q{RQdy1Mp+-G8vsn{2N
zkM%I;>$UF&dJ%k2mbH*izDCH;nd3nbmGzewUK*=tb-0I@R#Z1O3fUvCq~<i_`Yo4z
z-}On$tRybOkRB^7e(}v#{7~(xv|>ehjFe02D@{;XJUMe1rILeue}w7#b4z`IYlry8
zDwy$=g7sy-oT6V^NKEG|;)Ow?;p2Ye<GzEk{ZZev9z<wUPYw07y6Ypb#j`iJu1*eh
zW^L+LzFJMwji@WR>;A_dB5~?B3zdex2-W~OY@kVR3)klXKMK^wM|whM7YbU{R}9$V
z(L(?66#myW<2CV9Hnwo^3j<Tus(ou4s+l0?aZB^?2Lnx3Q!><PNR$)fcByS!X(>;P
zXxbT%w3o71{-BF5qV0!Z6`X(q)7i?NWGKPCRz-0?+NhzRP?Y}shf~wnT%m!V-<6l^
z#_M<#EB=5fd#18BGNe8pWg(N{OcEH3^j29{y?l5eOzPsE^ZJ-{Iy*myZgX=>XB?so
z-{X<J+pR(n;p!1uQ2sGfP`cg@i{;dJbo;yPO$-5><B`4~vqXA}=c(9yBm4V$RSS(V
z)%&f|ZS%vRWLRL4pQg^ok_1whHE5a#SgcMCVNu{b`8(Ifp~lRnKkB?95-7{ITW<Lf
zR!{-Ld@LA13hVzew#t)2zv(4g1JWW$C@B^vPw?=Dxy(~6V39qSK7f1BrU0za#b~mm
zgOT6GOl=m$TVdyo2z4#3eO87Ug-IIWn-`+j+;<AfX>B(_b%6$k{x{|~^MgX~(4Zd+
z$^ZgvCJfffQt8Pn_0TMFpTDvOLrll-#XiNWm*sLZZwMkwvf`e9BWDqzRgMy4<#JH2
zM5nF#cx`VfwY9nGU9N1gG+W-;5{>T>sYKTo(~INP&ag7`vJHKaqS@R0ChrL)?k1o&
z2%BL=P@WuLntU#!V;n>K3O(x5jIQnE0k8Z<JnzFCvRVIN$ko7|*(C0ctkVP8s$Y((
zs%f<{>H^;TPtsAQ-VdgX*)}AIjB!q<hPzjCv2buMqjd#5g>gsIG6S%rv<rp9F|q5%
zE`zPUPOFtp5nor`+m!Q$LQNvpp+ae{(`m6LwkXSmVt5-)hb9w}aKl(H_YtBN&7Q*Y
zyd@9D#<7Q)YfzLlxr=d|4e_~=95WycD7_;79#RKmD20huc(arD72aegcu%)y8`abz
zrAd3lxMAX3g^MZmRy#_rlEegUH>beTO{`H`I9hh)ad53-I4{H!Ye2RI-?&K4BFj{4
zZi3}rnjbBg?0d%Gg?WsMw;mf~FvvGelKmXwK^LP*0XL_zIooqA_f|SH)rwB7ZQr>_
zgzz)1X}QMwfIQ<dF7-ub{M&7HUZ#J-FJyOC=KsY405caTt8*>Q-Ds3f1f9v+@&X=)
zmn0$!ed%p?Vu_|54*?H!{Yvz(H}YN>_%D09apa6|&NlbFf^VdauJs>suR3TtjMsMJ
z_?z|wc{mOh8X0Ve@t?(uY*y;j+sw#Ti2Dw9oU0Cz8GqWF(QNetjFh}VPl_rk)a2EN
zX38IWLs1SjF1i%I*U1(&HY!{mEEmQKzIs`O+!qs(k_e4}$6hj;#$2%jm(Ky;T&+iV
zS&3|tp;f7k^{zJ1R9<67?7njUHkQzNF55#lk(pI7as(#Uw!W-P=d!#NtW$Cu_YBZ0
z02$isY+{avDEP=<R)mDFuz3u;o;wM+wBpSG_m;X}YjpE5-US>-n2QDuM02DW@vMpY
z>w%81S#ZC+D=ZZMV|!8EpfguEd}Ep8B~=Y14YJ<@^-9OL@wnPvg+IdDdf0+aUIV0=
z`z}DUb_RHXv!?z`))*)#oFu|1ZrW{ZJkJ@zO}69(Q$}SO6QcI3I+Ce(r6JfAyUH)l
zefOkBvCIp!ecI1Zx$g0pNl#YdRk;mSo^Lv|t3D@$foW%J7WcZ98qFecjPcxFy3m=_
zC|rpSY<wxC%ol91U7Q#TNA2^i2RjfNGpajLCLY<=!RY-A*O-s-48f*if$4yEd;xmJ
zwGLZt^vSdn^@ta358+iBVzm+_-`lQTqsAV~aZi&hKL3=--c@!h$MQv5>UR7_QM1Td
zoX~gPs!cLZ#uTD?;<S+19<=J<v1l(771RQ>sQoGxKlIZaRFA_vrWlEXMCb;npuPEH
zciA^=LUpJX1-1RxeO)vY&#W1Op|FI)y_Z=BYBiKR=lrW;OBW+XjA1E}o4vbDKzWig
zb*Ogm2h`6Mk;YlvC4F2G?~a2a`GQhq$gvb+pi~=NB2(8FW>?8&GV*3gwJ1FME3>RR
z(~0G)aoXb^RCAVps(pFA8=!C9X`_HH%e<u4dAY&8d0ykLw^`G17S+|vrnetrKNyD?
zH4We|zKl7i!9EKUc`=-a^+m=KvIC-|=Bm3`y+87h=7g^uN1p5RyIQe*D6<vjEWg*N
z&<rJjNms-i#!h5e?KGE5XAR(uxA*eO0C0~zh9CU?D0snQpu}_|)wsk9F5;mC+2_Ai
zN9oQ$MtfdyZ5qIh?PA4uS&ozRprp=3P=Vqx1!Qa-9p`po!rBwLQm<O9>9y8B8?(le
z@`t2L+y-b*e)&>{hQ`LmR-_&p+&9mHE20M`SN@%b9Y_TUh{V!ZrkxEDMQ$)77JCH-
zjZCF4VcykkLDi^qU|JA=R~$$6%J1#N<vspJ_rY~KfW6Keoz9H1Gf;(a0D5A?^orvg
z70gMu$(LMla?<bXr+mK9$Sj@}TMo-R;G>@7op$Cv;HgYYXbS5J<_`D!5RvY&Se7WM
z$6`QsC|0k=oZe+>k3;YtP=B#KM9hdEoUJdA+lUE3$yIe|wJBIO8NKC&^6P}Zoo=j9
zb(3hvU&~l_ZP6xlBl{H6wW8q@(n@;d9nYQSx&6v-4X#*V-~%UYXyrppf4XJE!%6F|
z`T(6L8jZH_^*Z~Zs(z4-09Yk`+~t0yzQrJ&cd!a~n`%JRHCBS6DCY9cxW!!=GI*b(
zvWiDM0)}C>-zeO&`v4}m5gcyE3k;N+zA5!u@?;mV3Caln!qtH%C>zC_yTg?@&VJi_
ztkkhe_I-uI)pHs{w*V*8>|$*KnOPI8yx6~gq3hKO^N?`WeeYXv2gpkm8|e2FA?er=
zsExLy9|de7@1w0I%X1i%pQVCUD0%$mv!z%l1;p9Lo*QnW22EpnJ~K-L)Dpy4d8MT+
z&yk-^VtmZyR>Hi2wWd4~psRm<4&x|~n8VtS-4ILd*%fM)dRkP^ws8~Bcm2>WK(YPO
zs6wgOJpZ>$S{?&h2rqCyAqqL5;nSb9(=;XKJ(DYP6%M!TsY7a*9<qZgz@tC6ZE3sw
z-r^)y1oCMB-FY4Tj?-h%pm2ym$gCTDO6qLLezN%l-g(7>OM@bH#Ewj&n`K1m$PDdT
zP93*zHi?ph+#MI|GM}uBn}sEkR(L6n`p;Ox<s5rb(|Za#RmE>#pu@n|c*m9ilZRQ>
z7rKQc#;i;oK`Kl_iIt{B;RQ5e1+g`1LK4bm!8<`HiN=5;y3K<-kD~@pz+LH(eMbxj
zAP(*t#9=NmNQEf0)D^u)Hpor@s-&tC(3<rKWi-S0>xOk%t7}i@Mo<I?)GJxh5n0OS
z(rK({^>SHCfMUNu28v@$0L+56+qf<ybcmNn%eLs>99F%3x;ds-6T~+2oCjyC_^OIK
zMNLiLbX;8OEku}19X6v3a6xZ&kEZ0;^e?xItLPkc|Mb_`V$;|Nk<Hb?p<Z~W5y<~L
zw^H^ZPguqjus>V2(m&4e&#>69>*b7p|B#9W3DNcK_#E%Y{2$R<`9!u+$^zu^>}CQf
z$#q+O&X2zj*uXaT^~7^d=+C4?2=GNQ?Tf6eX*-c7iRaZ+i`Y=A871<Xnz-a!rI@G^
z_Fw`2un8kp&Z>~n5E*h9^d%w`036X2Jd!7de&$w`!Ac>nuAx!ZkiuDBYNS|!`^=MC
zuiCKv9Z-pK43A3CsUgz0(9qQFgY25Gb|siVeLTH97AE8OII0~pEvc;)ksd^4*ns+X
z`KpL4PM)ZUY<H(V(c=$_NCGG5zti;k@LcS;NIqU?0vM_&T}0vu@l3yj838IT8S(ZR
z&VEFrY8WIG<q51cjEzm+^TGs?J)F{7pxyRzeuIWKrz-x_z_VE}aypws34CCMR`tl9
zMn&(lc3I+Yp;l0b^u=cOhvsr#q?)JC&@+>-x((Xe+a&DZq5SAGiw%NAi@1={BPon)
z`u?@B{$5DQ0;g#JY47yw_*St$E3QmJfP$VSt|wBH8Rz3iwKyW>i61Fyig;(zB5!O|
z+E<v;xZqEG(rtRiZ21l-i7p=nm@Z|KDK6&Am*JbAt4UvUs~Yx1KP74Thquag5rK4x
zVtJVaK-)%*ygpQGZ87kUURvof?l!ZuEH&*Oi9Ad=T;wjtTq!B8td#dv&?;VDrm@`$
z6|*#QaF`oJ(W*>*LoeVCFr&r*f=6o)fSJ*SmWgHcIMQEUB7q|VRM!B9+`+(5S=rbv
z{_U|0DF`_2%JG<W%s_cOivgkXVxr}h+pH(>lIcR^JJd`4X}>Au@=`t-%OzEH<bd<X
zv+rdRy;y$oEOF3;=0CL%ECxt`F|n=dyZ*n_$`Y6&x}k*KB<H%(JfFmWjm>nC#odHn
z2F6Y!qUt==lXov(k-3TVX4iggps3wUq&fFKzFPu}WxH5LHPVmFyO;x_dp4Gl5#-_`
zDkIIB>ZC5ATv_q8$;GIsm#3b$AF7fc3=ACbu=%yPMG=p2XcT3XEZeVPM0d~5ZN!5O
zbB#z#%GBYb@fnlQH$N>-O%=NMX4SP&2PR^dmZlS=qC-|z91x9}xx-*s(DUROp@Ejp
zZ>o=&bULi+Ha5(pvjtY>@J7?3DS>`1W7)B~;eX0Oe<mX^R9R*pt!T3$|AvYJJoReO
z_kkQpuwXRf%&vP%L-)2(YCt2mYge9@(_~SmUoTsoEkqB;ZZSHN!k}Rm;6MyTmWO*s
zK%i)kXxv0hEI2tmUETNcF1eoct21w7k}x;7RyIoLm&;oiKC95vvQML<YVfcIx{-t#
zIKCfHjDxL}$QT%0rcrfu^`w_m(P-jCs$_$Mv@9%A0iCDZh(>vYGhPanpx}>Y$Ms$~
z4#f19=19taGh#y;9tXPhYb4Cyo`rwB%0CZW{&{YW1pi~iXO%n-O7f|g{Z++}Irp2{
zW}6FgRRkaqf8>W1HOo8+;DGWkJ_$D#HseVk2W(1H=3DWs@DSDkp2A))W`j0$fbyz<
z=kUT<9TuHfh=R$oO;L>%04G+&1NoE+TShXt&`{OJS1ca{CN<JI@GdUUH2sd`{h__+
z(IisYpjjp-CaP5t^(UE=s|?x|x5i0-9Em;+^h|p52Iu&^1=tg93x981f4vsr14f^s
z*}LJHzdri&22w<M@(8zD?+f1qo`cFZyeUZL^=oD52jgkJ%iisr#X^iv_y|CZeFrcQ
zJUb0rU#$nN#9wZo?@qOWrJ!)JTXdl3Y7Ax!L{1$)9AC*Pe4_UA9A#`yf9Vzr|J5){
zQ}Re&78*E7&;Y2!*`?dt+l@^vLlr6c{9_Vuz<mFq`y$57mBtP~pw&u3qR7{8_cv(M
zn8r4xeK{7ti65ro9*BiUQQy$i^g>TBi_e_9uzqgiKb)O_yB~ONWoL>`Ie!n!-wGub
zNhFceE})Q@4iBZ~s`Hi$NrGBgSM_BIC3R>bwqEPtH`e|oMN#OI6yWHokX4ysX<;z}
zY?ta~^0%&Spc3{UPK$2EJI!){=}}!%b0NA20KIiH8Ff7e@^WbW+^GmGnvfr{JVfaB
zZv(yojsIj^T;B8c|6-B-eXk+7)R_L^Y?4oUtp7v=IS{}K|J2X4=`Z#p7zg_P{(eMH
zXd}h?a^35xI?4IT7Aif)b-<Yj01J(M&&EDrMl!sIyHdkRKh6~j`wj+5|5$2aVc}CX
zE<o(MJ3I{D)Fk(KhZ^{9Knj44C!L+0)$%Ul?Qg+$9FFJkTcTfF7RWN!0_8P(0ZjLo
z(CEgsjb7ikkiZ$@f3cu`f9IGdP=lUmADsRu5B{O7en%4s(8pTc4;Rk$1+)YY5$8Mm
z_6eU>URau;K0V@~4P`TbiFl3>juGgHS`TjtCeb9_^tn1pp_Gn8NBZfw05RV04UInA
ztEh=u-DdCij{e5Ia-G6OAA$PCQ8g#;<%R$-TBdY1bSd_w_bI`3{$Q?-&ez?puI`x*
zRrVW8l{ibkt8VG|ut6~JBNlZN{+1tke`V7Fq9}JDM+%|cHGlqaC;XTL5mF_fkl=|M
z$OkTDAQ(jXZ?<1b%7AeDt-!2b+!U!M@7Xvi7J%;M#969cZx)%;+lpATHRPo*&FcJC
zO~zOiOU6Y;$2xLjb6ZX+UQbs&{XQ@1Yf|Z2&)d;W)i4<UM((=!-AVP40Kh+w7y0b;
zhNeyNk5@At3{A+j^z6Omcs+bgRaFW=bQ|PT98=5`IDy<%RU4}}+0HTTr~it6Se6l|
zXJ!=2soBjTMc({81b?>NKYQ_C9@{`VNs(d~YfUMTXROqudf^Z)bm1-yfxWRWSKTwD
zVQsiSn8yfd5S^oDjbT;AwfgkaqIiN>b@h+QQBeeKbTPw!%*AigKxoj<j(z$v{+Dp;
z@1ZO*iMX+~H3Fm&++Lq-kXDI8e%yR7u6MSW-0F|}b3}>@Fg<9q82`_?_+OgAfBpiF
zWB?ZQvnYYVM`w8;E7>c#0kIqH2fxY1<CHPuX8jB95!)Q`$)`I+!4vb;e@9bPQhBA$
z)s>46wL}XSl%hN~ZwkG?%-(Gbw0=|d_z`fl(}U0~<IyZV_O_M6uttfEP2YQQb+zWq
z=}OMsJ&f;C&bv(<fH>3Ebb0HJjEroYhdv!1VMx%3-Wmm%CB^UGt9^ziSEl>tSEXXf
zMgrC&Sy2;Fb=Z}zuF}m&+@^*m8AE@=>GIB;mD0`Uzh^b@-04g)6LNB@N$|}h2EP&D
zy$J6k&&bH2bO3lQ)SaC_oCxt;A1!Y(d{A1tZ9Fp!%#3<xL|@oOb(n0~(}uM4a&aAn
zNh4^8dH#mP%0xg?rE@-C9Q{9WLUwWrp6rVkT_e`I)P8<KZt+{c;sm#vSsDkATvxZ&
z;#w9h?y~aoBp^^2N{tsHfApF*Ha6B<O;GIa>;T`Dq^zQX-QYiP6;nx&V!0=9HD;sz
zK=jG{CkeSh!%~I{?d<IQh+#`3V7IVxe!^^+41*w+Ly<`P{rmULrbUN08SIwG&MPAM
z7=ceB=JsbWLIH<cWrs{qqC%A^?RUV)q9{l*!1dL=ee-Xdn?bvKmA6Qv?q?xJMuqr5
z1jW)vWk7A)FGo?}Db=fv;~?MRJIAEsp~Uw0bEEb;qtuk2iesTKuX2dS%U(VId)6RQ
zCLB3OwijyfW$hK0RO!&CRVLY%#LM=?e0lVi;t}NONrMn!gGS~T%g~@cHWe01XJ#&3
z_~njo&)v7_D^{Hk-si0@(!gz|(BB5=5umz8PVG)#*_hz0{YOy$uW&(L{4pP#mzO8P
z<+$=3@bX~zpkUszrUKxU(Xai{;cvr&NOB(b=W5b6N7F{*U;i*Yy%WcXIY^QFmnF@c
z7LSevUAyk3q<U}wKmra9syl=>4FTZstpH6DE(|#wowz>tw=O1zFwmb9n*yo<mTzNw
z+0hE<1ZJ3O$m8I$Ci3^7#e89WCG4jY1l6rN$^Rk0pk36sW0@2+MC1N3d|~~s@a1)>
z(4}}743Icq5qPA)%C=2W%i%Mt?!u1^O%}@)cXbI>I+FaoD*WrxA3uS(Qn9SVL!H0^
zJlN6FdCI4tvsE%wGXQH9haQlS2>4VrFrp_@JYF;b3?2pd;}zmrVO127I>!QJpi*9%
zz?<f31hn8#1#Hu?$h}X?V8CFYRK8K*`z@BcsI^r`nr^<$t%3w-AB5(7f9uu?w5>LC
zA$i<aAuZU5G9rWsWMU$LltAG|p9a$N*B15;4GOGBDYghm;0vk=20#f94|%XZ>Iz#j
z2F3-OrH?Zi(E&T#r3orX)U^c##zYpzKliPWpKe+o?Vk$Pf3II;Y`}#oLkO*{tUl90
zyC2M(M7?ydwXxZ_Tm9MPjfs1t;{5Q#3(t^E{1J~`m6!X=%azx_Jpclb>dD-zzU-A_
zkL5eg4ypx$N8EFPxXM@XF7#7E!cCy(*knnfD!?HK!+n%O<Gg^Zl76OxNoHP=Pz*Nx
zD{?L3fujAYRi%qJMMl=2HvTKG`p@U_`#q$H`thlBc6K@+E^q?=;rNEeMr(6_iUv$#
zvPnSc9h`>PD-Pg#0Y_A#T0LOU$_*n23EY!AH2Xxb1_<Rp<o%Qp{Q!kXflS6+Y{23n
zfg+L#gOg7-`{Us7zsXQ)*`T9V;|7J_oArNgUQpQS`i~~KHNfv;Dn`Y?FuL~y9$E?@
zT$WKHtX<F7nZEO!w+A%j8VI{c1xS-mAY^2~LIBi58UsZdyr2Jq_?$ii^d9hk(sGZF
z*|-u>U0r<$Xy!3k?sF*zZ34T%-`@8>6ziB-kFJOhISV^uE&5D4t<J^Csi}MDZSC#-
z+uwDvzo_9(&(4kjBlt1k1I(mw6Ub}#uTR!QiK`$s98uXF9Rh%NK8P?281htU0VUl^
z&Qx;vty|BUO)vj}3F3lg?mSOAjA*A~X@WgK2buC?`*6c<F&kLAKQdInVUW%D(qUyi
zQ-9CZM>|lSOA;dsz`+F;kV-VrTEFAfMmQ@3P}ub)ERNS0v}+Q=rXvFz33PBEkPaBp
zbL_;!7lq_dKpfPK7hXn}f}}9n-u$Y&;wa<^eWobh4gD%Fmj+iYTXwOWzC-8a`}YC~
zJe(Ff=;iE*!pmj#5<8+aky>HKBd;7_4+B#{j!Q-Hm;Q;INGF0-1y(nJhd_aMA}A<$
z24Gd?eeM@k9<j0E5$K;+SDClRbJGAk8!@$UPY@j6#?N;OSsQ@;wrz<+1QyDZf{YO~
z&<B<R+z7NVQWV>!BfoGmz_Na#IxeJBSpZ{Jnhd3c>n{^`WsvYrr2YB>^Ur-Do*cDx
z?SI~;|MmWxJcM=ZTkP;F#QWFZ2GEGNR*Mh<#2y}-=>U6CSZoHc$+`akpufYmHJ#6Z
z78<FK9M#K%FQ(b6z{=7XpDiAat}}=sc%A^k%r7mK0W6mEq_>~LD_!QDcvPY7=QBMY
z&%GCj9PkSpKke@^cqctHm4IXxMJtVE@KTn`-LxL6<!@Eme=i#U{Dg%9nhuM64G^`X
z>YW332yVoecGKfvo?J=jrU*7z)L`)2skWPm#OL{WD`L~_$2u*r+&Q)C^I-?vQ;p?2
zO27;a4JFtwHhob7dMY4)GSDp_J)nc{r9b@@v=1bT)KMDw*X)=8kgHu4=9}ta&ew0w
zFYX4M@QI@S<y$A4LBiD-OL1EyO%-qVr@G%;VNh6(e(Xk7Uv)Jc>oQn;bPW}|_V1C@
zvR3Oke&S+KkN@!4nDU_i3nh=C%R|D=87-y#J2s;!4Qr39;Y=^Qw%pNAhqs>VQJl_a
z8!vVb4yGqoV*)+Pzi-|CwKo6T8!{DWIulIH)_I^{U|oC<oJwbci(Ex*K*^%O?5x@Y
zI$Shg9`Y-1r6ng@6?b<M-2ranN-l7KiHL>8JE2&0Xc^{L0CD!>vrRjbIP!0uwLC}Q
zVQUtnX~54Te}k1HLDmViuh)MKAUYZ2QA(v9jpeJ>nuxh6$}YqBX`&TMf-k(c=BfIc
znx#jLXXY1s^t=1t%Y5knKW0u)sU6G5BNg6n_knq?UfzxQqQA=I>J2RbF=toZQD#?D
zOUp9s>;J$$$%tUdya)z$ya(bZTrjK%5Q(1SzdlJA0wN~Pb`!mC8qo3h5(F$0aPr0X
zcULHeJmE6Xetv$p(_v_Y@_2{&FNt4;KR(W95fFXLp=c&rQQmnU?;wjFlfPu-?_dI5
z-5fWLtWp4T;;yxADqvpRSlBI8Wif5);=cR&g&*UZr+nX@)LxA_Rpa?$(h@6E%QrDA
zF5+P8eCm*ZbtSS8WpN~O*fT6_F%0tjP!eoZC_<Lbbcb(2bX-TvNsPm(Go#gAcPkgf
zpQ_z8v>1l{<NYgIUG4<<+1vTImt2hBqG5mxi|4OA^%pQ9c5-qIX4_-Sx7?c90Ig@q
zA?@Kl?A0qEaXRhQcwrc+QU>2ila!oXgo-%wVbj@KJh1c2(*GZFfRGNTYsa6$rqA5*
zD7NHsKsP@~sj8_duo-71B;;Ln8am>bf_x;w$d7?UJQ44t&0qqQyQ(~}hq~egwt(YF
zycL%5Ps@dW2e!X<Ojr288;m6iA;(VD5g=shXb?T|DeHN1egCZofqRE71U;Sm*oAku
zsLVV16%-<lat-bSX3>2Z49W25=#<x%(YG4@pWsIs3=BGt2r@FVJdpAE$3gm^L;e!`
z)ww#hlhcFe{Q8!#!xB%$(1UR)u<*1NR8E=$i;;bO6csP8&PmXGC(=%g#RIYHXVI5i
zA>dSZ$`Fgpx?cc_0<pZ2?JG0vlpY?$e;tn?Lej<nb3G|5i}13=7!_n~brRX!rPv)5
z3w01{<h7|*b;7Op!=DWxJtCNb5Ifqcblyvqh~Mkgy$pRggewHK*SVLref;P0|MylN
zc%LZJe1iGN3wQ;C6o}$a33yY3(i5csx<CObqRCGHW;)HFnCH6+=!k&yn4B=8m}h|X
z)H|fx5MvGGk;9;HNft0fn<m>e>5)0Ix31O+VFz8tJ~!%GqN-vf39(mpqQ^=C!NY(t
za-eD{;DQiz0I6=%9{VqHm%$52zUHpV-#0R^5HP@!3VOS~S=A&yOgsEvx0^3bq?rXV
zUC6IZ<c9RQwY9bL`GmCI7od+`rrmPe%tAO;PY(iVrIDtE@>c*p{bp}(FJP%yE^TD3
zC-@>AfXh58M;oF0E0$Dm4fG1w^dI`>$+X$n*^8BOh1kqTlGiBgQBQy)k)9Na0zFIc
z<Gd`8hv0nc{xrvVt#v5r<%#~652rRB6XI9{@F|WdrThB+zPtZN*IS2GwQlXhiv`k+
zNS8E7D$=k3B_#w2=~TMALqL?021)5gTDnV0x*O?~&hJ6b-sik~e?R~5T5?^;Vy-#I
zGsZpc_<PX58;7q0VO45;Q{<-?YH9O{GF?MMit+qTMFkpFMcuWpRaNQlQWp$?YlBMs
zEFr`rT_9?EuAcu@<;jEnrH^c;dvH|D?7tmfzP!*ascp<*XmA}No6~wpp49sH#J??r
zu;9~YnOM(8MiTb_kdmGlL1$aUn$Xzl2H$jmy=v|PJ_QBaK212t3S^CyNiC5$^VThf
zG{aLyHPyNNYFo5MR=Lj3&fao-{`@(gJIvanOc(&2f^<{5FM?GS6jH_T;`n}V>|v@n
zU3SNxmhrNsOQ~OSCYg*qQ5m%;AA0fM2Og$@QU?f*78WfRe;4k5yqNXA`()RV0|B$G
zIlms->fO>JdTnY!L1;CcC0kh7?|SzQ*j&*1#BR>6*#Y9>$~3vToU<2|;{+Nm|MRo{
z^vp1O<Tgo{`SeWIv|<`74;fA6>CfoX*vnB<D<X=qPZa8spD1U;aM1{!<c=$f`?XTz
zPX=z92Js7hBD9i~k>z`(J-bDj8}|La{JHBv6xXrbWLp1Z9Kw{8Zp%9qPM1SNvazF2
z668Oq6g8%mRa9a$9VY>~au{&&XxiJgPD%B^vuoRiBhdv$1Zu0g1Mw~~LSfIkh3L<p
z^9g`0#$G)OD>m9B&SR-2@l<{-q)HP9^`RZd@6QReXgD}HTn|=3mgB66!SmAPWWGH~
zPF<b5Uw=>qDmX`(T8Py9`#P4e;i+j<J-?|~<H|i$mU%6fxqTAzQU3aW9<1MG3yMN{
zzXPP-G1}PJC~9ahga6t?_uj5U9L(W@a59ox=2R&qoI3vd?ft>GeyuF+)J0KK8E`5M
zWsXj@=+GY9x6&^C=r&_fl0zq_g*SZ6iy=F-Zin*20Z1M(GZPz#$Vm>Q+f|p?)mMk#
zjrJFsEs_U;p~%W&AjQ~DsKB9QJg3nIIpNFgGLVchws})jy@X06<X&CmwUHUyLvef7
zsZwPjf5(MX(l;<L0$}#xfY;6NCKPoNIO5Ci=~y@414^lsu4F;C0$Uo(hVwT>{Ep@@
zZGHVOM%cd>paJMaUkE<U+7HXZ9aoD%`*7Z$I1J8cet8*_kihi#P4A#s^QEmk2l9IE
zuh0&+9*(=pLrDsd^>@^*zx(NRAA}wc<<e3|F|0)1?El;U{h+p<vFYsgC(zDmMHaUj
zxwgp&c!O2*=rjXj02xRg-BGvDp@>ZbHq&ZTQ*TFae|B0pDi%I^@klMTLqNLj>qaU4
zsiD;DzCN=?DKW}BI_p6Zq>b>bG?~`5hl!>%8EI(;HD9x-e>mj`>0Ws&caw+Fzp|OA
zGYAuW+C-T8<%=j-PB2DCN2`1W4#hI!;^HHsb#f^}TA2LX?1DG5PV=*LV(4Z=eKfid
zIHR3AuN;tOWtm0y5td3_x4qUNC|gQ1hzsXl+zXC3z1+RV+nboYvfsA6U*y1y`ck4F
z?w<uW^({_UvbAs9@h;nRqx0*;uP94}FR^B$mnb_nA_xOzW~5A(3X8%oHf>GzT^-1D
zJPJp4Cv&lme5pHRT$Dprj54~%A_NbQv!J;Jxsitn>NX5U-e7w+<yx$==u$6aljpHg
zOL}vK*NG9y9a9+b8V@T<wLv}YvQ2C%!q)4onnX_M)#j^OdV)uzmJ!3aOBs2U+CbQ(
zR^|5r{y5E9a=$vWv{LT0(N6yPfGai6G$vk?>BwD>8mE5Sd(6{zOm#YJ)lyAG5H)*z
z;6Y<D%`Zzll7U`vc;W7l#Is3)@2VogjGO7_`NfQiMr1pgLjA`>TxDV!qhFenTq|pe
zKh}_?9-T>Qj`BbJ!Ereuk3uPsJG^0Td!&Y9mQh|lLQ}W{$bp6S61aB()0jjH$|=ho
z%P@%xv)saS&49oMwRe#P$u2*MctL{B>Q2?X<q}!bF44lBlRQ8VhUYZ1x3;#9pQ@wI
zg7C-goR{fGao|A1;YMcfOiWCC;pa`a=Qtc3y8i*(%JwI{8@ULWyertv*EK~&a>m$$
zO7qYAKO>x2K%XE_RL$#<ll|2>{3(E-J&J?b?n=%|oV3L&R&MZj6MNO2ndX=4!GaaF
zqlz@>j(2&I<`)VH0{K-o^Lq?`A<1tze&>GBwcBG_81BSq<mIYZ*H)utdo__(>aLU)
z+_y)~)k8@sK6-NDUW0xPU*;-hrCg=Wc&Ue8;@QbMJKruL7rt5J`pxQQ%~e>L2y#DK
z`9rt7OmHk&=4uW44re5uy~oJ8=aw9=v$e1wD+ct*m+PMtntBGKl%fc*)T0(Ljk3mh
z@AsQNPv1R3U{}fs8~7pRjA&fU0rPOL1Rvh;HO=-}uRU3`g=Wx)ikVc=@^+q#x_J(_
zdc0>w#+ap8xX5c?D2i@vQd&^Y08ZjG^+^oJYpbxzQT?`=jKoNAx3&3he}Sr<Mgvxo
zZ_}^&_nvS)5l!0|&TddrkW6Jk_~JoUZe&^Tm#ZEb)xx@@LFK<KQzx*HbE1!pJ~yhm
zvK4P@mq~6i%VgFVepdfctTJ0GfcrUyh0(>-DAAQ?55%51<jtt68u;**=wt==^u;7<
zcdLI(iH@M5zI@vqkW_1A?O0Q-b%Xy&tvf9GhK}NcJ902G<?3h!r;D}MWO^Nj`TQ&)
z!TEPCjg?v!{(>u}RX7MDVpdY_-Z58K#PM{&jYIZT)jT%OYLwEW)!UPu>D9X&g^ZjW
z<3`?_UFTE`jvKRiWu=+j4du+RvMIXzETuy~B-_qRX)RArU2`^%nw)?BAWSg`hnb-?
z2@0!}@JFpBg?<2$2?xua-%Ipb`9@M+j*X8z@zgQyn+Ybk=M3kqr^>+L5x|T!O7}_|
zq#PR^u5?F4MBwIC&$>8MG+~i0exn-#+6ES-tQSA#tf%l4zvwi2a_Y4pY(0ML?0J5E
z4lPEu;K+d&BW1hT0Zex5Se9LC!xk_n-&?b#>0f?;WS%CPQRKIvH^?^e@SP+>^H(fV
z9)%KOvPZqg*m;)L+P62?Mw=tKz80$8zzr-X45M>WePg}OMrhg9c+X)bnYZd>;tz-Z
zi<CDx^o!JIgTGs*|MVs>ESi#^US241$2H>=3TXOC5ge{HJkf8xeV^MoxCE=yZs{D1
z69y9A8}R(1@*@D7VcSDm3QHc&%CnyM1ffPy6p>PAl8PY=?xrCzl#m%?{C0v{zXdtY
z-T6Mduj@KgBl32)%FN+53$yAH3obDQbOHfaTROK>UYIp#Vdc$>pLUSu^WTQo0nEnA
zLunJ&&S-6&1o}ofp7;5_Z(B@J_#E@i1BJO6IR~po5$}B0Y@SVG4F3c(ylz100sz-I
z!vXIyXmV1jnXAN0-A<lEcj&wao;i~d^4aHPK4}xQ9xu|eowlgzj$zS&UI>90;Z<KW
z)<G8#sI9a5k*xulLHK8!!Ajk){z%<>zW_{i?-(Rg6Dc%ik}({m-ABhH@^-vKG-zmP
zrGRz#(>c*O@Lf5A7*rS{(}3);{v;T!U*Ok^qz>WXw{GZATs*wh)5hC+*oK8_<(J|C
z;ag2|=LNW9vX)!H<vF)K{N=Ar=%E7Cs+u<bcSi2prbcJrxMH=wwu;@{G$kWn1hxQ`
zrD@yOAk)}<huViX-as3y6g0iAkKtB@0nlprvo}5=q+S>3Xl%!|oVZ*D^mz6`NY+N)
zeq{-u3eL`1W|V-i#&5v7FB4#0*wkceK3Y^*1Ne7wOzyY!^E^F5tV0TI+V(%5`zoM1
zHmlvy=G{SF>4|xgCoq~XPeYh!_7@I)Tzw5%B^Hnls?$d3RUW7s>7y+Eq!`|sgwyc-
zQ}grDV$aOtagb^%$dYLFHpwA|>p9^wO{ZB0PRp5U$W3)t<M~gLZ_A<lZSQ(Yh<9YK
z?($@Z<@i|^>R`9X-5gePbqkwgH`HMQ598#YKle}cx;a;A5cDY_bGF*|T)JY{7p_dX
zy;?iW7QU9!)in@y0uFA+-;@CZCgGm>G{2R-uN?{17qG>F?vm`20}e5h2NrsRaJf@I
z2=r-$pP1T{CEQE2>qp^X{jHk>t@?WPYh%^E#N~gijluI^j{$eQkCO)H$m#~n-I|^e
zFYsx&U>Fy|MD~<C>Kp8%Re*$ljBcI~K2_L_7)v<Bc3wy&$Gse_pZj`xnzMcnPp!`R
z>zzI56U6sFH8AqYse5#h_3NN<+Y1(AFM#;!OfyItWlv{gomGcoM)}o=pb<%dO`cm=
z6_^!Zs(5F!d!F>j(fX>Ut&$K_A%?)R(o$#^vVS^`8_9~uYm{Q9W}txc<HSZaVE8co
zP@L%P{hE`?H}1VvT)3J8@6g$&$BumX)Pm4y*HcCOpw(&Ub{9XwJZZoc6#kmu-aEXF
zWVO>H&+r^Pg&lMq5M#gS6Z#bQQjq@F__fA3cW=R#5I)g$GZ*fI)G(2Xq}U{p`FmZj
z0f|sj#_SYNSG=%$3Tk5UZaWp@JvN<W1gV41Z&6TCro5r3=ej<sAIyrrWd(6k9G9qH
z0w17}WM<!KB1?8up9AR<4#;L0(PQzH&MXUdtVpX$mgvu}j&#iy4?W1@Zfxpw&4b~3
zHMcdQT5Emv40^10TR%hQ<`ryPQ0R?YeHZZ02`|r<!^ZbSavZxJk1OxTom^z~l73`-
ze8~{lj9tW{G(O@pM2`3*O+eP(aBcxX4405H&Vb#(7rx(tumxd$V2XcjVVTpw=J&Za
z8v<MAuHSw7xc@iq^xrA`FO1{iGfK^Z4P=J_OLeIxrLR(@G1nsFa~waNq?Z>IEKeJw
zqcGSu1Olt_q6KrYsZF0Z;K)z%MFww<DQBuYZ6TB<ldw?qeAW3=mu8R@t{VT&*q7NG
z*d#E)Bccy7JAZ|eOLG*w3jFj+2I{{Dri7w=k)SaAW(v=<G?jgkG#-x&`$BvE(;2(t
z56dwZk5|DT_4r`kN^#5TMMOcXf(SWTS$u}e+kK?ldK$F@EH-4d_ArjAhx^{TDxJ6c
ztyt<N$ZYq(*cf@|PBLW%H#6IM2A7||=mRIMS&$q+kJvSTd*k$-+4}$!(oTIpQM?I@
zoG`TjK{$O~@NB`4mYP~Du&lY~>a$hDYwl(q?6#`FKq&H0qm`0Y%;65mM5h~o9Vj-U
zPZe79i`bF9hwuX^W3?RPR~MVgJ0J8YSp#FmBKPA_RrN*8Vl)NEFX(LS9^keq&qi<-
zXMd3@DYzW`7%D&<hd(7wRSO&)&p}lEQMd%D%{%RlP)@?4rbwvDN2HH72bfk6(62Y>
z((?8{PjoW=$lH8RNPxTCUv;0SaB{C;3u3UWW-YhuehsW4jz4%^ChGF|Y!UhLoeBAw
z5zj$Gg)WRev@sRNPe)aCSiltx8@-Px(y@iax!A4;0Df04;W_wsy0G;R{r5>p`tQ{_
z@i?gzsHNc_R*zXzw4kjS(yVzLv=eA_AnhaW@7C_2iauYQ@p*|=bWihbHJy%Y_w8(J
ze`=v!0211f%djl>h8uB_h%=E-QyJoKAfg5h3|aQEPQJhH@DU%@hwScGdRk9xF9Wo`
z8H!vIm*W55wiPyxr_f`kdK~KQ!n4`)dF9?K<g#Tu?wVOgRdW=j{IW8VHf1H6W1H7Y
zcG-?6x*+dKT^3^5kaon4nhV@jO=%y_l#4CmZ*K}|c6O4x6(}Dy-d@WyQ-Asj^6d++
z0$K>aE>fxaXse9X43foZXdtj2Qqhq@h8A1yU+q|V;nhtssqv!w=#%btgusYGzFO8F
zt2Cq9mJySqy4GPoZSDd#97cc`_D0nTg#DTk(cj@3hv04+XVNJ*{&aOQ-WUTwfLCiG
z-)_N2Vz%nGf3R4O-Y=Fe!&d*Q%3p$}fF|&e4Eh{oA2$|-Ag2lh;@Wov6OFm$Fz;Lk
zR;q<y`LiH&!qKuu{Se1)fy_BlGDr|3KIBOWZkZaX-^|M|FD1B)^Ami9)q>Epj1Y`}
z=hssA;vFs_PFx8hL#GR*7<WGaA|eR|5^y!DI9VR;8a<L*hcO4;ET3P<Ya%5!Xmi{Q
zU#WO33FSerhk)w&PQ(`n_5K#SrU)?=1EoUwa=nlD4=`314xd$7FN*RWc2Td!HeO{$
zkH1DCbkm)q8$sNC&R)$y#i3iR8ynh7^1-D9l8!<0blq<1D8$YU#C^ojV-haC<3xsC
zSN0Mu!+PBaHZ@1^&wdLUYvKT9rREG{VgDZx(BJ>GpkMfvp%y}VT&N_fj`1+gdW3N`
zm=k$_3jO}W3BlTjK8`qX!d?wV=(>E~5$O42U%|&Up+PMk6j*~qY7L8|+j&{Xy^-<R
z2quN$hf=FgF_T(t83rTzsLCUPZfk(euHS}ifsI{cX)UDkLktep$9Ikpequ|n;t&|-
z<drRG3q^I3GQdJOyiG1A-=>(*az*th6y3QBVeVmqK^$6)r?zNGkZ6EC@|6TWjt{vH
zvW&!F-Aa_*B)JIc*;Cm97IY>MnSB4}kMRBmOx+xV`#mSi@lQ-5Dn6bL62iy5aBhWQ
zy$kkkGV|sg2k@f<`5Zq8qwRlnt7{II4oS32Vg#L29rz79eDsj&$QFd|llFX}{uRK{
z2F%_1*kvo(-+AlZ6YyDCS$V?9O=OW&X43haxn}<s420|bdzfqgv&#H)WoO^PZr+(s
zR#z+dR=sg`PF3A{uf+U`bO>@fDLsRdyHr?+n@z86^=U0X-^c2eO$Xik;;}~G?&W;b
z;}4=oBER>+*!xo|EBw*1K1H|^TK?oyYtq|!jMkdC#-b3*c`+#)o3Briy(0+nXTfYM
zrd)Pdl0dRsPn9ka7L%RqDqUN93(m1)RHNE2Bc>x_c%X$F?s@4f=#6H_z+#hlmm#lW
zF0l#j<I`OQanT@5{|2r2xiRMz>q|?7`S$HJlot&iBy|z<QO&EKB@6ZKXo$D~o@{P+
zrI6MFVPp4tRPa*BHmvP91JJ=NeezR<*dvgyF_kA!!?E}KJLeK&2gNUsi{S}{C=p-`
zL|mp((ZDNrFZ|Ksd2?4Bhe5drM3j`UL8J2BX(~J$ZW6djcC`_f5fjT!?1YAX^#cXB
zrd4%E@9~>{qRZ-ll*vk?{w$2&W@m%5fIysD+bEVu@qa5CXskGVRtgXpr(ZHQYdmJD
zW@zvE7Wau>YU9EvB0RoW)YOfZ)~kGEn>A{p+`PUpe}W}B3O$#FIi^&0Udpz}>$&1g
z%z!=m@Iv(4EU!P>^ZRfq`8NJ`!Ky?g4xe~7nXjpt{TNVD><OT0`lSYzX)09Q+;16t
zQvmw#odMFLQ=Qa_)}vk>+KFn!@W8ER#$_#Os$S^+2zwkM=wv;qF!`fm-#3ODwC9~w
zO1rw&%s4NH028Tf{7DN7iXtJED-xfrW8KrOtX}i9SD3VFTx5)22T;f%tabY>Z)yYd
zACTXxw45bYC>BhF=X<{(_f{K;9U0l^%zI;PZB0YMrk{6BZNnM`uOFHW4W_J<-~mO`
zDue4fz-(SoD3p2T+r9Kq-Jmuwx@iHS<&=i+%NwMy;TcbjwHZyFKa_#pXWoskYKCi@
zzx@|h{twj4O%pyREG7LkR%(Cj1wMzyK~q(!ZW7HZI*zJlgmZ-3$EqwvHw5<SiIGRM
z2p!Pc@kc}A&}jar>y>m*OEw~Z=U^BIdACmIM44H;s^`s_tYQ@Lc+I=jr`u1#w&M_L
z-Zz0{sXVRDR{U>4@}aq~g8+7DBM6p!<mbbhp#LnuA4;qT_d7;?9r<}7PQgkF@CFBo
zsJGY*r_&Ds+a)rP+*PuKk0O7HN_^u^$4yI1Yq7za%33Et=;MpOyC_z#fV4-ZdFE8<
zEZ}pxtnf>Oysh_J+1mY}o7yElZ@mwntVuCs%*B#qPJT@s8CCX0$Mb1bSXf#v_UyYM
zEHY%hh}U-sgJ}_pE?$VgzxR6?wq1-s+{gj`cAojWwEq2~50_zXC9IFEjw@t;AE%fw
z+m<_D1xiH&iMnaVUA9JCsf`@YG+fkVEZXH$oo}|gBksZms1|Z8UYR#*HI{v>LvTKI
zWwLg@MlDJf3x7=OGlti+X@M75r&_E%CDwG%Nn!P^HigS9rtWx5qZH7i$DF1x%tT+_
zf{%Wa0G%A04z3e%d}kt1<`>xIt60`-WT_0?fYpA*OjR+6-VCHJsa*&(JN3G~oG;uR
z&^`bOYNI{!D}rEzy$~#kb$ULvdqbW~ZP|EzQWPhi9Za;dr3+4G-z^NN0e<?G)yBg1
zo=7!2&N}>>lZ-yMG;$G%`4x`l+}L$!KS{F83uIKn#=A&%Xsb~z<+hY{9GV;NZ!Skk
zF>Y$0x5shPs?ERff_KPK1j<sNjH1jX>`IVDvRz~KgikyRY@_>T*wpqyYC!gBJLmp_
zkgM=hsdiUcdyVtt%~M+1$Kp$h0uhNg#Z{79s<z9UoaI5Xw%>goAJWXJB*&3wpUMUr
zgTqU1VDvnfH)tqdCt@^(zL_?teyQL*&M}U;g(_9>f;%Go0W%Wm51oNoZOaa><#@-5
zj$D_|j#(6URe>+iyUa3d^sAt|cQjGvyMY}nt%Z_4dTB8`Lfmy+sG1Q!Sl`48x>drc
zELOm{%+>9okG2e9D7OM$_TK<<UufVveQS-|^PE={3pO}UakGyEPB+Ti_tc?HS<gA<
z?rq}}u&5jEOlci!#A}5&Nt-WAec@F}60A_Dd&v9dNs-@P!)1TMA)o>l+RLESA<+p)
z0*Iznh2rs>7ZaSzo5G1h6myKCNqc(y=FdeW)<W3dh%ZD_PY^;71(Ph$A+1!uZ(Dl_
z=w<IL3dR1x!NKe&j<siZ7D0l(O%vK;E5UWG33awhVx6&DI7sbMe-E+G-a(=kjrf@=
zhGrVLl2l{HHq~m=Ly0I`!+P;!ry1qK=4n|s<F1>PYz_BENQZlSDA<KGmXr)=t;}Oq
z$fFpuD3ovlAb#0L_}SA`F3V*FwuHpG^Y1t2$<`u7BJJ8D7sjp=ZUSCx<zt}ry1%Hc
zrpfG5MMMIi1HDO)cT?9wu17oGo{EvrDk0MK=Ytpgk3&t~UMvF2K&l<`1pdAQO2}!<
z!jDbdOBt7b`-5*vz8^CH_|sD$mceI{!DMFNXU_C=d~5`4oW`WyTBQ5<GMbr8e?2g`
zLwLAub2oX2LkiW2BUfn#A3zlXgn#uuJ}maSmJwxq0Q?mV9aL3*o-!C39i_JYM#Atq
zT}PEwx#D>RDB|MQfFufT_2e3GVv(XIol1uI)O=9)AYh`csaKz{cdWeCHYirm)HG-G
z1W>jvSgjP)t7QXg?N!kGjA|o$f(MYBaW5EsnGu>l%~rkOOD6`458g-H58el-IX7e2
zGjRs(ot>)uBERB>i=KqT%vfzxmz5Gu<)t<}`4Q6QAy3vj`w3M)+$(^-R&xI^A^Z|d
z8Z^)_SgO~Gs0F!q3Yw<5j3JN>igtb7C?$gQn2*z{mfLS-MSR)taprf{+Fly!2Ch@2
z^<2?eW)8|jj=-Pj91n#!9Dk?Yx}n(Thr^v&i@L`aJi3J^YYQ*e;GLT1ni-^*O`!3(
zIQpTY)p3Z*p=WAlR^hN2K`T?fnpscwXd~e=wQSr!dL9&@Hv>Z^ZC`k|OInX6*hRe^
z=o{Rd^`mUqJ}>Aag35<Q#m>Vkfk<;~!a1#Mq+#f$Y!m7J=I^6uTNq*JlD@lxmY+t4
zaehZbEVX%@Qp(id%fcw>RqUwr>z77N(r#ut{!7O$B+Ca0?kT2?20NDBq)~Y-m~Cp;
zYS;PmF1yazuNYh5Q^v>DipUEL<|FE_`4ce@#?CWp%Ef1T;+lKWJX+zsiN?!6$}5qh
z>Mt9~>-lG#NJZ^16C0fK4btVzEFPY+xpn3<98^7CZexOnmiw*w)DRax&0_yO`(yJ$
zi}IlPWi=Th5BVF*Ph`Icr4?_JdZf>>?0NYfy|z!1=AH|b4$ykUWkPN5vU%YpqrXU>
zm0LdY0Kfigk2haO<6MW<w^7sSsb>-$#a+Cj(!T}<#gwx{Vvdx<${p3lsC`uM)EYhO
zg9#TK#dkr%vJ1e|RwCtve(e4V<KN|JM)O@u2S$_H`IkGE_+Dp=NInt7s25_Gyw8~V
z=AD-@d_LZa_#t-Vt7=lcX?NNGwaKDUsTSzRj_NFT4Y*caV7<jfAi&n~%b0<=c^@E$
zF<?H{rjtu#$WC%h$jErYrBcfG3Z>wv1NfN)`c%z(YJhl1hBulFzFsF~DH}I;%h+>}
z`FflWHfzFWor%3OU^V&JZ9FNaV{=>hdP6?p-u*F!clz3Kr~8YotAGkou3}2kZkIu~
ziYBc6mlwb=Zt+R*u<|&Z^P;A&nb$fEx%<Az?=hb1ee`bijWxMQDuK)G^=V<N+u34Z
zg%et$lNxW>ukBVW;roQUV6n%$j1Ta;`!&SKQ4_hjxlnlj-rg5v;^}1qiU7pnX$-_5
z$y##<!}r!VPhh-%k;uRJ4$ly*S8EC$--yIU0d9J218Ag-=IUJ3RSoOzFWmT+FjqeS
zlG~!z(1jb(yN2Dz7-#(fBHS5!OQ52sr)QJRTSG&H?P;g|=Eoq>)GbDiMCLmR9^E=y
z{@uJWQTPN$3^4$y5XWHDs2B|%;;z?>RD$E)-Rd67x5==R*|f{_edMmJc_Y;D`?S;M
z8<`n>N`4c;FVb<cS;y8rn{;pOZ+--}WU6zdSG&&s*vM3MhJx;WNRSOoYCgwYOuHGY
zw&Vv^-a*OG`)=;b`Nk@#)AVGGP0trM<G;q@Gv*Qw7i=25R4eAEg@1Aw+fp!2l}Iq2
zeJpelc}X#2xwAIy(8yp`GD+ZmIfl4Zt<W5`CcjT24$FRj@Iojmn2<n;UBJHc3cQm+
zMufzQ%%!|J#$%g!#m@!kP*KScmie_{f?|5*#ERO&1cz?;LVJtDaEPCG%+wdX!a@(t
zZpHlKF*-g@Pg&b#yRX)r^HVM*<S6f`K>{&b7ufpererV0Gewy@-}?^wLes)jEY>ZQ
zOLpTpfcjLl5D(<->~{8Xz~WKq9DRIGf*<z}&fD$xIs;0;g~MvJs%hpmfY2HCVcu`M
z)Mg&kNq+-;^R?;A^6a!YF6Iw<YTg7<>*LyPg+&1_23%KQVVEBsqSh6lS^|r|1e{}p
zw@y7m!IZ%Jv9SmAFWKL8Z+;SP!^cELb?Mw361b@Z4znDX4nVYA$Ywk*cWmc9PNl$x
z=GXxl9<9#zUh;#~sHdg+?WlM5qbyh$>Ea={b=y#tj)l(Tup<C@F)DmnPV~nm5vK=0
z&Mra+fump$<5pKC7(Yc2?76E|^|arncvO1EpX)ZnIc2N`-+-T>^?d>2%HrJ7<h+(>
z7fSBg<P8_2hsjwo5se5(jByJZsb@jn^Y3`2{rrg$DMYIo5lP_R<&l8w1~#?$M*9s#
z3!*?0p$2rK=R#4Z5)>Zxurd&di}FaQwcc^h^6F)^>+z;{<peKSaTQ<%?@U*j<@3A8
zb7CdwihRJ5`rSAjJ%N(+psjrTf`3s_9rqwlaOZm2{XdKC)W<0QZQMB0bmd>X82YfU
zCx(SBFCEa9^=5-*D98g*MzhBCeY~Kg)u$7h)3Mcqc$XU1P5N9RN`)LG=AAyZzUa^M
zMm3?F3f^BD?cJWky!wtmmM#cwFDD#g=$vCvzR-%a`YCGw;jh?D3V<T(&wbw&oF?bt
z*Ss&jJ@(Y?mp*abO;mky?tG7h<^ir&nVbvM*t+AX3BFF<1SjOZs>2STb0wA=HCW;;
z=SQ~rVmVA*ndP!<o{M2HP}7ahDOJuru{f@zUZ%J3k`MdX98q-<mOct!rXNP7yDR_G
zb9AO{$D#MvkA;g9z7x(%UnaL{K&L63PzS*Laqnn(>kNp_xrZv_jQKt)&H!^XCBAVo
zAa8h1prE|->pN5rNIN;<U9yI7SY;U8>De7#2>VJQUE+++e0sWVLac(2-<bA<8yEOh
zfJE%`t6u|!gOIEukIVJ+FjN6z-Q;H9>TP-9>+-t^6YlxRX&r6yVvktgIC?1nlIp(*
zj@T@d`bh-crE%-)kA8N1Gp#xQM(B;%l<qXK_Q}Obd6Lvy9i+6MmMI^l(&xCwHPZ#}
zy)#u(Q_C69VA%ItJs#H~Ak08WAy`K`26f*vU&?y^jpn<1D6Egi>s|JI=kpgX#waVF
z**Q${TP1GAYT5>w&((eFcH-Ae;hwSfb7*+(+Rt7IxWu7A(lH%c%JB_siY9@TZhuZu
z(HNp+Nal;Xo*%Y`_a2Y|%dYvhuHgJ6yrHvdS&OY`tg&}I_x#1yH#b*<!o~|I5S8c?
ztT)3|oy$MQOiMIdk<c2jD^%nJk6$qxHY>>s(pK}5i1bpc#fj)zoZg{?_csihzQPhd
zSB<6y($SIr^s;hYKjO6jg<1u7eN`%EQY>`5Vt(!>`q6wvQ8WvG<5UkV8lM+-=wH-h
ztrrlioL(`eNK1uA3wP<XfO#J4$h~712ja${C4IppzGcHz$9b}?k=?zW>4-kh0XQ|0
zKqO6Pp7-+xD0l-=L&x7~s2=MSMx9Da-x%jkYB78@nRL}q{i;C%KN5p4GnutV!#lqB
zfyeUu+o>c*@@gewl%uV2c`)Bk#r^1JTsEz!EmAiv9B-8CDA#fDT4>vtJ#pT`wNsY#
zCONtq8WUtj;TOW<9Y=hd*yc=<axlTn#WQ2QMHS=YTd$DWTB)1{t(32k7$omNtXHXG
z!*s0e?3~e0v~K)@4i7a*Kq7-WrAz9ztL{nIl&@pmt6CHbK>v|)uI4<NsK|Cv_HpLD
z^KS6+vk7%~@&Ha;WG><dInB}hqEi8i?>aj=Oix$OZUXL^HGh~=@R<5la!3fwx^h@X
z>}*Ebr4JJmNq4vi(B@KUc1)Y?j(y;-$zLxZQhdDnLRGjpn(Sgf>HzUTQb|~@PEBdz
zGUnDtc6!8<a+fkADo$9kAZWZ*@o@_-IT=T&c{hl1Chk+$URT|Z6L0vaw9*R;U*5nP
za%zrF1rKk$4u2bOt;TmX3?F}L0;?w%Fv9$x8YC0)+L4%ArGmE>YxBcs!)`%Bv5YFj
zaX&yg%|z0v);;hKq^mwymLb%qtDv#QkBpAa%m<xwS$Cf+V3Vj2l=PH;<S>Pi3uzuK
zl3IG6INs4<!(nf62&13EE@%y<9W~i<Rj~pqRinGAGPjK0I+$dm$CH146zPf;tDQ_E
zW!)}Sp?ZB*m>)IjR@s$MTDYW)HPIsFsb7gM-Tx`E+TMm&Q&Fv6rs}oE&#FX>@zC?X
z0fQe@cPPtK)=8@K<?EuuzOmrYiMTTs|M^#vZwU$_GZLwmtlOo7hiT^$qz^_%)ij*p
zjTPoGbRU(t^*!8SY0}W3HOUjy>{YzmH>Fk}%;0}+SFX_7T(-;L{1sk;2)76v&oNa_
zx#<_DRI)<`!G7*@j>=Y*>J-0F$FMlMR?SFuy+og*U^FE7_5`U_kU?hJfDkDR)!84f
zAm;|)>8<!xaXPPFjp&mRnj}Pbv8aS9-V-<ti@}}rlq_5{DxRORSJgrq<X)(?)o5f}
zb`QXTXz$<`Scg@De#`jdKD-uHALG?$=B*FkY+wALZpM-z*pCrNx{(qRBA1JA+XMsq
z?zs#UbaYB~@si?xZw^QSG^EK5t_5*o3s^VY9X6?DC>f0YS7E=fVqZDwHz|1FaT<#5
z=^Y+~TCK?76H`XmK06_dpSbj<(>e*+V`){gT@4fjO<W92jOmqQ?&u@>HMvL;DPA~>
zvZWzI06_VOG-*~Smhc+*dI$VRK?`;%>-VAUpRbZ30Lo==^J-@X8k@H}Y9}#==f%Nr
zqgK=m*M77ei|AcW^w~1qE#DM1$)?)hSiAkUHStb@6?4fmv%!taSRBG~W!C9;d)A#t
z7`B{zlM(CSoqM<^vfG~g3&tdYYFT1qo8W@v&f2}b+1jdIV$0X+Tdo^Gg+5{toT;@x
zvoM4L<;E&u_iNhM1=I{aj4k<Ue_tBfa|4}CvYX%99|oNF4mGR3&7DC?--_OC=dr~0
z;q%k<Z+vR*_HejKd!2sVbB&+5Q-xYdA!n%{V}!n-gs9{{N?R)HLj7LV;N&Iq%_1+1
zx1^l=>yR*seK4y8q5x_E^L&ve6}Pb!917D7{ZDt%#%`(*lmfZ9zgfBK_RwRDjh=R|
zLR+tC%7gfLT)dP=D6jDqb#_kMep-L4K=Q7J$BbUt$#+nL7)h}pqd>Yp+oaupl#s2+
zbl+Ef@_xENp5FAH#M|!5fwiu&djngpKXugQih}uX9=)zzr_L>6h}<kyG}6GPW|c1(
z8D)x{H{~h-l<h=Q&6TYZ)J^ULC6`38TKN<Y*jmL&RVq;|KpuUPrJA(9N-cqGUgZv&
zNx`%1i1WS_{%cs?P^XlZVnYqZIgNvufn>KFMI8L!<K}-}z(`QG@etwOtD?X|+U#4t
zBL~C%97wTp{5-3F-1zd0`UI1l;T~EG1h!3%1e{XRT5+3Z@mk199Y$W(U;_FT;@v0m
zp3}#`j_!2_1kLeLtp9W7LLwT5*m?r2ct*>LhkNUZD5cVcQ(<jAmwMgTg&aREt~CRZ
zOE_Oa5#gj*8^1;gdOb4*o0t+QB9`9Ca#-hcak4<ylG|Y)2{eIwq^Sbv?l`9&+5UVb
z13@N#3732Z5iaBewHU9=+BH;Jj6OFgeK>W_b?THVhL5r-znF1kNPh;}vRAR@!$$C-
zwJ+S65SkKHcZbMomLd^6jKkpOT*<^!MJ$+6MFWv|R<>mvYBT00mqJ4#rONsvk7b0S
zMesan9JofOkef7g*pkl>l7vk=9_1G1h4bM@U~)R|>ykaS1p8svlv_}ZPCTHwBx?-g
zw_KaBq$Q<BVbbG8Ek_C8fPq5vbVqmAubIqkFI67|u}&iW>zP1>yTu)n+u(Ce!X$no
zc>z>3y66f3-@TKLIciKM#0Qgb_vclD{+8JS7x1iw?OPf+kh}W&qHnIRKa>DQiiEH=
z=dlU4uB0_s&SSGczhYLQ%N)!{R_5bhI2u5D(@Gn}WA+Y(?N50$hlHsfKU9)AeiA^(
zkaJiJEqBsXRH9QjL;AkR)C<Xw`-bD`GTa%%0XbZtUAXq`a61q&@%!{&CExl(C<kj8
zInnN|Q}JsWaPUV&a7)*5MJsC5DCsMe*}IJPhxD*h$^bH3g^hQ-WiTh<zSAJ3kP$Lu
z4{l;iHTFCN^~Lk)vD~`G%;OC<7bMvjU#@wX{*oV4VvxKhZxV9o3s0k5)Ym1Wd)LT2
z+l}+)TAWf)ni4EL>yc=gsT!~R@v<aKbVzWJKiZMnLHoy3y*z;@f87^<i1R)kK21W4
zRJs5*j{r07?5P+|SP5KEP>}7M%UU<!re^?s?&N7t`iyi-Dg;^#1qm0Xiu2A$Fu0a`
zz|G-138dpr3}(nQ9xtx&+v(fK7`N-go)Jduc4%zmrF`qdy80#grjW)@Hz-7<U%w1)
zSGs9vmPsJeuCAX5_X~>(JyN41dDSSi%2&qg(+NecgQI)|Th{z!CQHg6ftONLbvIi6
z>Bt7T5SS{9B3jyunFl7c1$``1>IvCDeX*LW>QN{$$VDa0sKX_CeYrV%<B{1F$T?qq
zKHhLEOIwlTe&L@-k<#n6@St(AX^!(9V$)tp5dH0|2Lo<$r$15~%y^Pmy?D4sv*GoS
zM;-(qwgzHZ9XO?0sL}nCtNVwxp_@WmB2S3m4u(27tHJj;)OR57sPrZ1b$jsS1s1&|
z?<?fnyggd~F}8Vo$0_*Q6eB7Lp$43A+b*g=WOS4|rrp)cy~g5?;Z_-?r9(7-q<uNq
z-fkY$)<3N3?#0zDSme<&^5kn>qJ329Iy*|^dnHms|61-l|Ep7_B29bN`3kv)SF6ow
zD2lT|(yM!_7yJgKEd5+kL_Gf$d)9=)n!kMO!?Z-dS0Jr$)r#jWyX_$AZ!9*-rsLW&
z_Jsq*3KIUjSYR|RSCNh)e(pltpe>r2q?PX8lLgFwK7fBJ;r3gE6BIx1g;R9tYwdd1
zJ2LIa2b^qeGF-VIVU@tZVnk~pZNzEbgJ3490&7+HLPl10^g4Y3U@=iOe7CK+XJ_L6
z_yQQe-y~%M0&Y@>xRlxVN~xE!CS|P>E&LF~oWrpm12gT|<x9CSJ>-%l3TXN}lX&XY
zh2X`*pJUHUZRHKn=MhwwHE|Sm9VQ>l(#<r^R@7w&82sUv|9uYq|Gq$$&`o)Q+|*q3
zTOLZ8^y!n2tR&FpJxK48F!ljHA>qg2L7XF8ix5BnGwMs=Qt=?9B1{wUrfLRDUsyTv
z{qfze0qU9ex94}}ba$K_zZ4Wn-_#z6?O4##H&g}7kubC>9kvx}-mBG5v~_RvGg6*>
zgAYom{5?Iy;3n(EWwQA=t>5j-UmT!+vx5G7<>52k6byR`lC3aV47tUbmtV|hs%<8W
z&q4ns%emrsx;v{Pw4~YqxOZbhxPaw3b_49#3!mWKJucW7Q2sop*R6&fPXn+@IH$vN
zesR^D?T~#Q+Kj25x6FSOQB}zjajDus^TtTH1v+t=dp!DD4`Ik4Qe#$_`ERiQpU2=|
zglF*e@?==pF*Y^<0sZLcs9xAe(Rydkt-_M+HySoJc>-X%{T-0D@AlHV?BS7->8EM?
z#RUcBJ-~m5mZh)Qd%D6*6&9}?gmPDr)}KK^*3taJDDz=w7FLY>NS@nvAa0=I;3YBf
z@;2f)V{vh5=^<WOp}hv4MzjqqfnJLHBaRmX+%OV4;esqB^;2bwVIw!?AV$=Q$|vLA
zJ^$0ZJ%OI%l^QKCiGno}Tx3K<#u!ev03vVH%gS4~0Ddavx(el`qqZ%U&5KRbXUe#5
z&3(^IuNyZ68kiWFnICHb9#<c3$?XHH%7<vw;<^XE;}6FO`2XZD|L+a<o)zw`sp)3n
z53<q?W9#WK0?l3U0cjwj6Q(ljWtu1}NB2v-2E;?>de7CdZ)?fSU{U`ddzew-=lIBo
zvFa$0Dc=dKwr&PdR1UoW2w4N{U{9<@a$W*mTE3kp05%_BKmn#;1jZ9SLkPJexa=tC
z@Zrf|@8>K)K06M~Mly49x}FX-L~ef;HlODuBu7EnHb7ViZk*C!_KUbgjasK3Iy6#R
z#mp^G1p<S%9Hc$?h>I>85Bl!l#Dl}<KTwk>cIV%ZxChy}(lp~|tDeS=L<ONyK}Nps
ziY#=V2Y#<UqEdXR!%}Pd-NA{FnT<mRbAUX((;^(v#pyD_JFW87Zq&hsn8Tb8utmo!
z3B>JENJa_Wek}Lq<nu!kCe$`U#`_jlbI#1V*uP1V;C5<icm}%`8uFSztk-0Hn@w(F
ztKvH{&d}P*quNwy8Ya9lRc<nTWK|Irl>Ko)gU!T`URv}71{n5<G=@KA_HY6>Ei_$)
zr6`1Cmmb@;YbfOo2l0y0_EpIsVv;gUS6S_iEU)J#WoKkO8`Xt2ey0NdN`m-AYqEbG
zDt`_8cMnYoki6|<vja|CGkmCS^9MJE(~!E8DYH_CEtN9nyJK;`8EGpvnkdQ{;OZ@|
zxZWb(pMZaNykXfisCcTOf+uQ)3kiG<c?(7a&eYyEaDRwdzD=cCW=77Y$w%^CQTLs`
zBnq#qt)irgxS{Uz5L=yhnMut77$Py=>s^r}OuA^{p3lRj-94QVldE4mGp_!(CN6=S
zb?W$*O@+aT+vIQ$9u$^ueg-Z*Leu9-FTRuJZl#QP<@H7}_DnQQXVjat{_U#-8^@O1
zOQ9i&-44GxcnzoV_%rZzkOms6Z6-B(DPFO*#ShVh*)q)6i#U)TFLMK>vhq`J#ABC6
zFh?E$SS}fUC<>_>q{AlcR{xur|L699kL@GAqwtQ;T%KEPc1WeU^-G#qptQNUc~_QN
z-!0(o`D^Jx;Ss9O15<Z_sz~$%FEOYD3j99C15hoirkOf8Qnx`KaOvUi0m7$<a=#@2
z%h0@-%Jx|b2cNsQSmD@d+mpFn=27Vz{LIhliBnl0$POt+$89{YVho*p5Bady59jSm
zirhbEbkfNbaH4xpU|?aFLOLJ{SAn=IRs{@EudlOB<Pq2(mQ)4WGzEOvnR0{Wocvd?
z`5x0}N!HWp25?4P0r7ePe_0cr+k)@Uf<8SMap!z@#h&pskLri~YwZBvExVMzG~xd!
z;i(1)`oK?WswiY{A`Zub?6>R>QgscwQQ+Xg0=g&EEquxdKZ9P+>kAVDU!c1qOQwvt
zcIs@PBYj%NFZa<7R2F10%9r0R2ZHtrqjtV3s%wBez09c!ueeRJ9y!}~8F9_L!x!PH
zVyO4?vEc~^s<;EJWs+KlVJT<Y5xY_`r58+$xswL|lqFSw_vhmg``0WmL5~s_4&mVe
zaMlM$_o9c75(c*LiWRG=LrP3-zTWH`C81DziB_6xYBDry1oNJ(G%KoVv6(gQ*IrTZ
zaA-VrS7z{|TkD!)tCA5lEf~oShv!<YSPFHJYA-Ss9DP@=)=l=Ak$*g9)Ak4s?^)n?
zss`7TLz#@w`RP=2jH`ygqcGLu;+kHHJjx3BFPM4@$^r_!Yfbiyv)WXXt*+ex&+n<Y
zWlyJdo-ektxXvV>U^VjZ%pLN%-LwXri?tW3SLBri>finilKk(Bq!+0+-Ny7-Bd=#w
zm6cJnwWt7(6&-63e}R_{9NPIPuNbT#W<A7Wh2=GR{7f;-w4N?5mwTNR4SYVT(7OK^
zJc0jl_9G0`pQxRjsD(n0nBxlVZjyXa=oxVv+1gMC#0{0%A-b9-jA!;Z!c8II{#D6$
zPGmxX3M<$-#K>NuJna=HQr3qm%w)u<WS!$RdwvJc#!p1PHZgt2fdqs?f~t9r<L~L4
z3x6?x$Zy}U$-BVpR$9c+WU`o=UhDZ62=JeNiw%MF^1II=&%ayIDGADYuZSpf*2smz
zjY37n)vp(GWLr@aG*vu_Hz^4q;mM1lLS0y>k9xzUdr3L}W?2bZPsB5_>7~?=T_Ret
zNkI-R&r!Y=TBT}Q8CMyTTGifzG8C(7BkA(!9)AD8<ZxRNeeCJyTfg&?U^!!r&MX~q
z`#%9L|Lj?Gy(kBl1rfHftZ>6V{qyOliGUqsaSFQckM)|2LK~TH_U5NER9C2lJ8%p#
zWd+UC;<yiYG)SPEspvlf4(ScSa<|7UTydS+(6?Ix@q(-LEOV5PD7`csYZ<P#EeBeT
z#ZBO*mG$o{a`&$8<ePrp9tT>h9RH$}Alz*x7(r?WxXC9B%>tyPr4<+bdW_EY7fUTQ
zKDD*+L~&}HoJLpUy+Zb$Vp{DN{=?CGseVQHo1|As{Cep?S?cxcc=NM7g}u*Sj?cZs
z!iOjvqWX12*Df&-u%G_FY;Z2A0X=s+Y>zK2{-4)p3P#DxEYjon%GBxdq;NwY9C@V{
z(@$+`XG?+Q*@n|PuVRg7JUH+2@o%-Ix+z$=YSCz)vS?UsF*$yurxi2({vp$R*eN2B
zU(^Y|YV|SEQ}eh-+I185eSe<>|I@hL-B&Oq<ZX=J2_N!_sDHj0N!=8>|B}2&kASlT
zEi0>BX<1ojNr?gz+L)ALKekOfZ4mvpDrYmM3JFMAh-}}Gtln?*(Sk<dn}Of1!Om1g
zmd5|H%jJ^<A|XEH@V<Y3gt|KP3U#?JDD?NoNS*FVadb>fR+-}?H<@+>g+=HqNyxvz
zHZ5|^=*#~t2LJn-j1t@nm`w&s|99?%!=0c&9^uYlCb+Ets^Zkjpa`L#hPhf#<nO?e
zN)I84K<K`Ts-%lcP+R6{^k#$w@ke@IJGNv*Ai<<9a?%kIw6dr$4B=OK>a`!m+PF|c
zI4NMA@aT1^IulbKFkMxg#BBpsW-10_Qet9$BjcCAnql32`_dgFB5FhicxI10l>$D(
z{ESRYQxtQU<Oc6hC`bHNlTw5TzbZVGq3ocNLehCy)Vrv7b3UKZ;OsDbLuPq!^f^^~
zxjjCL`j|F9L%;j6>{dlM-m+YH+gITq6-<qu+U^zjEamHJHZy}@j*DTdn2wR&87t-+
zBhrY3y+eMH@I>lP*El;3LP&D<EDCpswLOb!HkoFB0=3Z2(7?#Bys*|CkKF~BNErev
zF)A#$&JU{E+Q}e@;X9DWyak?UsIOz=X$IAyvm1QIJBj>?1Iq_pMzLC1wP%2#;`U;q
z2#Bad>r~Bu>mSHy!SxTtHFW#e_3s3ZlY9C3(XJJ~6wEhT2U1f&f7`S-Hy=5ou{moK
z!TZyg@qF>|cS=gT-j`D{-k?(_LKu-bAEU6Z-(K`I@^7xx6H8OPsm*ZOyB`$d@V(%*
z=dw2nUVxOWY|>L`PVuR<dz}OcMsFO4w%}3mC$I$$w`#mr!NtWj><XvS%By4VY_S-i
zWCt=ipB9tBR1qMl`w}8|*I^%TjvfMGl~!QGI+4Us{achwm%~Nwb*Y-i0p0!dVOVk2
z!OSW{12<vL7olZ`^+wavARp`~J)hQOsC|ifmT6T-(DE2CxFu{uX((LEo(fEypGqZJ
zdJn$tZ1$|h@&TJ{b+4ET2l0HB!U$khCeO_egkg{Tyy=sjMS;W4@aAq&?Jge?hyJ@F
zuXcRZE|#j9q0P#j-1od<xm94D>~r9Y!(jM!Ai2<q?b{0OIoJszoW8A{ah$f`v{`!Q
z7DGcvr;Z56Zhj|CdwL(Dii%Pm11m4~8|%+6+sw?$Lfs|7CX{5=uB$E!_+Z>9=rD)l
z-_(CsK2t-0Pwk+%Zh_oghkQxw6D{*#+bpnc`EQS^_v}7|u@cXKpYl=!O~-~JTh&}~
zF>9nY(hK}-PDIJ~ve-bP+?HkdLAc5LJ>Y{j&Kxi<0c9q@z-q{|))cM@H|B-KD$N-q
zggl0#ZG~0F3MT1V1CGbVq3p=}Zpi!U=b4%KrFLtUtFo!0%#c(B2Ij}<3EJOi0hlQ#
zaPX|27*m@em@*`sK+WQ!i#n|9Zh6^X#g!E|eS)hnCy)@CAy$mWj+irf<Ue9zR?7)x
zJ_d$mlU%pzFJol-Fi1X?_GAu79%jh2eVUSwz`P9Eb~!!8*@#WrZbaw^qhQ<E*swr^
zq*qHK3z>yX4AZd<X)tWt?1g;%Xr?q?9XK5V2du7)fG9!n^=p&k$Bx@--MziR32Ow-
zj{&nefc!R;f7dvYDu8R_4Xzj9rbfro#6AL!wl_d$_e3f3IprXZ_KDqmGTm!j<DjNH
zDi#sDuJ?Tcg6~>Rv!jZCf{S1yC{KiZf-VM0!~a#HQ|YmDCTgTn2^x#CQL*5{2?Lef
z&<6P{z1Rua6-)M&lOCzxB&%#Pvn0)7S-PzyvBlB3ZrSoWNP0)gCo}!}=}|P57qgi%
zyfJuAx1(U^ov&N%3IfuNU=%Y{J_-n6^J?;~<2i5C4G6hVonv%Gt3#x`LQv^y);f{*
zx)`R*R}?$$uG>e*8?U2w6S|75<_wT-kHzB7CH&0a-oxy^KzX2yR0OR=)sV~}KYgo}
z-e4R(VtG;EKZV1jB97!Hbn`KzuTBTI^H!57Rv@#5tl*=<+V&eS8lZngwBaF@#U$&H
z76&b}MZ}mR2xwKQp$=-iIWFciglTCd0Y6Z9vW+}ti-Xsge%=7G@xA~~c!v`PVcjn!
z$Y{Z6VP#9vQ9soMFsFhB`rgO2V-GqZK{29EU{7Lu=Lo=|H}d1b0D8?!v|HUrP>?s5
zB?3b$P?*8d{?UM`Zo^YBB!*1tIH5OHUEa`;j0h*VBDnlSO4o~e@GRqv7r!kz+rPju
zSU&PmktX1bUQq8;jz3`!fO|7<jzdhTM(nGy6<}sIMI``PiB=WjdhKd<_;p#n)eNF)
zg9KZWD?{k#Sw_z%MJ>LQs!s({HQhxCgJ|KNv$kBV^@g*hk1D))JCvzK*B|_Ek*5bU
zTaaN3M5*;1kfNjJrS8vpm$_GTHOz1GRU2u0xIWmrEJd_+$4YNpZ5;^!8OW5_0-yn7
zPHqFLpdyvsQiW=w-GCssVUnbwD2`Vv2KTcs`6|bHQOC`QaK?a}%C@DN6RL}hEON;`
z=S=+y|9e-{*0EO#^6Q{@8f@RYB7&`?``|ynzdfo?)|>1kPIUf%kB95I2ql{sUq=~f
z1|v~m-B<)e*adABfaZ$DEWJq7)CHXTOe1C-ap9cNe4J0sO-_*yT0^U*R6I_FnaM()
ziD^ZT6x>Q;8Kp=(>G(-_$HoNf=}#O69q*1{gE5{8<I4x@`%D0<-Ba)qf32gWG@QlQ
z<RFA_YCbGsjnvUasp(>UZGCxtaU6MPr?V6-p}2qoy~56-d;0Wggw|HW#nA?JAgS&9
zU~)lqe|=Lo$)KC-%dKzC*tAjTK>oadPo?RS^Hlf!a(ljD8i#H<H}E16$q7<Oej*w&
z8SnC`2Ge)#y=Su{K;@dByHa!tfn`UtslDd-ndPv$4+loWG+}zeSmj5<`j_eA8wRa5
zl`4FER*3`E<Wp{BRd4$X1)u)5z6FpuAVC`s{Z#wk*5&T?AUq1pWr_%^z>N}B?i&&w
zA+K#lroaUtgNTuLgWJVml{y%b35L#@gQ2y&=$gpGdrnf51YUSfCk)*@^Ax^qN6GA)
z=*?(~Wu87!b<W9*rZyzpSI@MvJ;xCblpj>72@m1tsnj!m^?NJ%!o0Ma6D#T>iTR-*
z!X-6O{&@3yRtpO+c*8%+q*56LMq*u7UY8n^<t9q7MvzJ#A;bFZ+1hpE?dk2xusnSI
zQKEGVitVC5!PA%Q)WLB2m0p082X|dj4qr8;fJ(etUoTWw22Q3;wVAb~wML3Muu0}?
z^Ue*d>=1*9B2m!<<NVe&WApt41r(d1ey2y}=oq+>7^^N2V*NgmJJGq969me<09Eh%
zSfNH=kxGD$T^|=Xy7gD7UTSHv@HBK%c+K<#E?wSS?p2+9YD(<oXcZd*97h}l&ztkL
z@44B@dEchc?%bE=(-%%j1K{Na4&D`g@Wk1K?Ci{+1E3A*{7xMU#7Dk_8$4LssONWH
z&O4RUZ8zs86eJ%e0P`z$D!N9nvAp~h_Tinj4~Us>0Ocfm&D&)jJX}DRTlK`G5m-oj
zyy!^H5Ufi;FW~&*Le_+gGfv-M_>r|nau@jPe^-OL+}S$aNtv5IB8$G6IA2cCt~8II
zaosAMlI$?mmAP7>7yk5kKtL(*8Rz6W#U5{+&AZ<*KY_29*x1H*#75n~FLmtZclrxx
zkH6+kgzXfR^$#J&vX^`vAe$q!W}5<po6-Jc<Gs2cNc|Rxv4nW1qSV!U3)=oR%}uO3
zNxx>k*|ifgr3q*BIec*Y!I+(>PZ97NGFaz?9$^m}t@E<~v)CP>L!H+XQ&Q$1(|vy(
z0V9NhV<Hw1PhU6ghx12GsP_50!N~H+eu?6}4>EDz9$7dlmI`{gd;A&y?UpJA-_lT9
zG?%E8YL$gl*{q|A-fU&2%J@O6e90eevUh}M+j|^1X$yu9-R*bbjFXd-a7yLOjXNf<
zY5*9w3QClfKDu`)aF8yf3H(yc0=UD<%F43;A6;hw6;->o|6%AHO1dP6P`Wz=Bm_Ya
z1PK8F>FyZ1J0%1uk(BNZ2|)qr?(WY29^do6-#O>|e@mB3T_St$dG-_ceO<rnBPnv`
zTer#FxF?-s{Mxe5vDWl;kUk+?dZJYylPTed-`cuu7Zwyh&Ca!Yu}fh{aTqLqn;pst
zn(poH?gO0grH>Bs#XWT5O&3rqVVoesvTRK~qd=a7jP@WjX9hrFpYC-&h0p^cfnZob
z*K8WL7_A)fM4n>t8%Q7odX~3!5>78spc563w*ce1dLwL+i(A&-zTy^uPT@>Zg&m<%
zd;a_|t*NKknHA7X?Lqb%a3qu53+Oe8|8RTJ<^eju0HBL}Ltd@~5<vdZ1r>DMe^`Tp
z91G`=Du94H2~dxjmNpw`o*Q{=W(NaMjoQ9hJIHmf_&wgpsEph?_KRrI^OVIV{u6G8
z-X>eU4qV1b4_S{53XvdE%$fDcsU6NgMbBR}KRe3G&6Hq9e-#)U8DU6r>9<hph=@b1
z1bVrquHLRb;Y9uZV2!sYZN=QtiC+IeR2^|(8Nx38!PMR)H7AJISn>VSETrkYs$6mI
z1L<YA){TZTF|o0awVu}k=hnS^%8cB#)&9DbVZe(g7PlS7Rrr+kH)K~gQ>(D3L=y%}
z#5}qdvTK+H%sQXQUQxfOCd1wHv>@&SYN<?s*UWIE3yg0Dfw7h~jeI!oCf3(7XQY+O
zDm~Phx|)n_=p4jcc&Re*R;}{fYwDzZPiXjcbHQ)_`U;$??Q!e3mU%g;U)Z%-m(>;I
zoGA9ijB*5ddTC+r(c4M{G!Klb&tB_$<-JZe3gp*plQxe?+-|-4Ve@ehF;MlRGC=&9
z@W-bvT3+xt5G`5smpV!@iu(2Gx2k-a#<wTVUs)0o6V2H{DMl8n6Rr2vnf#j1rQ5Mg
z9<cdmv(m_-LHX348*MI-h+jl7RHRBF@9wZiZ~8EzF>EWv04N&Fj|}Azhj-hzcTXpK
zx2*#}z7pRon!pBu!bn)(j%U9E+08|w91_~DKtEsr&RBaCZ2KtsC*S3KHGmx`@s%Za
zb@w%Rb_Q$~^G3V7BdK1($xl{TzThS~S0AzaOQRB8xOL}@X#Xx-qIJ;^lZSjRbdOq7
z&3`Lh(7|}ABajQ&vtDhf_<Y?!?q<<52s=Tar^{OGw)00%XxE~QdNd_lE=4ZOEUO*n
zfP2#6(g3GcukrP(qW0h;BO~V*R`WicU&3C@aGC$b+7}Jzl}o<M>I|YEU`JIyX(~pT
zj@bnK(&}yB7SnsKFd(v8M>fRJJv&k9#aM(5D%U7#aXoVLHYnm+9o0TSwk~4E@{5>&
z7y}C0+GAke#?(An5lsO|R!;M8B5BjxzDXWI=mvn#OJf)zo6WXlNeqcWq;yYyh`dKp
z7B6~-<nd<!PF@;KnoVT;WKpQ|Zb$s#N+q7odMBOJhvckn5%mDMRMN-{uYa+y&vy`B
zw}wISCQY%xhuw(Ov`u}oTZ2m+z=A94ClS&0eXUSDX@029)g?1!y=2m(tKBZ{pM`lY
zNTRGu4}a%ezR4caQs`RATLx(8w@`gtp%JKUvN(b_Y8gt~8Bg{n1yXr-M6_F1)k%4l
z<kViPmrzHz|CTma@$?&_<~2$h)6|g9urI{C(hTHi+ZH85GNZU9ehgOqh(*q)bb*5W
z8!#~wW@k=CW=Qy}Wlkg)SDJ>_e$9QZClSaYJk+IBlv{cz%u4xN#$RRI#RmWNHH{s;
z$ulQ299aO#<(p;$wOrb!tN@(Yuy>E1wqzexc*vNSQa7@C*ByTX485f-&U<g_0T)r#
zGB&F{VAIB_Jt@H(EO`R9d4`*F8*DG6n*uIQ!l`}NP|x|zelh~VADs?3KiBZdbbW9V
z@$WH3PN-1*xnjcqL95xl+5}`iZN%Hi`N9>j-me1fE$(M;5IpCcCeRbEaY^(go|A50
z9_j@Ny@%32zASYDI6>PNq&Kdu*#Tawv2s<%6be592G_Vd<Yh0~^gLjRycUS91-RoS
zxwYhx5=->}cYO|NO&&1di;)IaZ$bLaE0@U}E;qy<%)=a0Ku{|~Erd)oX5Vt8Y@{F%
zM+Jx935bfu8#sIIum#ZjN=oRsrnXF1>=o~{4I*sdC0wlE@?CL^`I=&&MUhWn6JFy6
zn5XdDWa{nVG@~WVp>Z3Y(!GA`l;~}vO1$)Rv9BEs3t|xACzSDo<NUJq;YNG_7x{t~
zx~(ja72sH*2+Y1F;!Tfze>FJmIGTY*`LSpXcHa$E13sW&p1+;h03h*{XhQAF&MV^M
zKgLzZ$1rOXT#%x$R=$bJm5;<yc-~bU-XPj|@MT3Ps$zK)m!^K*(y~7R|0RQBk`^^j
zz9`#<pSZD-_94-D?qwX2!l4OrQd|!ue#_WnAPEnCOl%;4iM*}>L_+!2;e$`~Y4Td^
z3#|@)p6|VISkwKdXzTtIHn@rvda>Fc^f|Jkxymk(Sd(+<f~+Pa+Jd;iT`PIKptXw;
zEBRlFlh2|^Krr)dsedpiUSInSt%oy_d<7ScgmAGn4`h7Li%S{2$KY#<4CgXfN1Y6}
zsFgH(RlMCGu${yLlO?>Ad>vY*=EnLG1z{*4qVyxUmjT9zbf`26xU;38edX?ytVKtb
z)x7U?Z*oetk%7!Ps_w>SF93mY4}sBo0P=Q(FfZHAu&Z-4!g1HYc)(6I&4p&R=U_2P
z44BGEv0xPhvY>YG+HK{qSW)GX$P9@SU@=GLZDOA?0d{9#BV_2U-BV=og5bwUEh|eN
zsoFnmrU7+yR@59xTfzeXBN*+0XlaYuE=t5xmUrJ6CiI+xfv&$l2s)VaIKzvw?L-#f
zibP>5SkT!v+e9EJQHf}^ecu3vU;WTW0lUvmrR^Xjzl$MjtSs)|;v_n4>b{%-oL8~)
zVpps2%8oo7>Fq9Vv%!AS+JO9#BS-*Hdv{WSu^t;}A*j%J-JE0Vl$AK(%-~`Eslbr`
z@sZSRsig6hJXcbvOTuEhG~noW^`P{WY{#ZdO12I6hsby|LF*P^OOh5{_mVc-E0{#r
zRDj9aB*2$T>(d`9VOAsF=E{er=nj&spEFL7z6Nsg|Dll3*dwh!!L*{lPA<@bnQ5LW
zi`_}>UHjZ4)`koh=~^B<0z@+XrGJZL$dP!yXw<%V<Un!7B2Cc`C5Ht4+J{RKStpb{
zte<DmA!VJmf0Ywa@ikyr18hUWBMdXLp}wOvv<o^@n_|KWojRR7udaPe1(!#QMHuC?
ziqJi;){-9=fLu;h$CopM6RX~9SbXniAy6=^8wi$2y#;pDuf+hb&>x!*hRK~^iK557
zINJ;EVb5&Oz>#C=M_lOajl{lDRLmk!$=Jw^G1sS2C3tL77U7eRdQ?kk&)psH0r&b?
z_cs*Gd7UPX0$aV*2ua^7tY_4&d^VY_bd=UF7)zV)F83UKI|RnAkh=vlXN>eV#mPoe
zClFc|g1A=O>>^3IdxS&+3edVopg&*Yp+s?rA@~?UE6jlsNc3VC!1x!QqoJ8?M(e>A
zF#RE=GWcZVM79pBYa`HWP~}%5Xu7+C;$S|I?muJyr)Ai{3VX_r)|SjxcWxfN*om)c
zd#T!)%mw_bXcE~=DG-CG?!sgV)lvt;7%@7xm>B(Fa?B#T6i|<{2arjqp7N>Ae{n!v
z=wlYmZVjsjCTb?#=8jwinEo!X!uFqoilz*H-T|FgWF=gPWh5sEqs4P8)YrZe@h`QH
zNyX{-s!^{_85ZI>#%zR|JPkh5Ar|OqStJ<6I`Zf<u)U9}(;Jr|-)1RxtRiUn(0cRU
z&hg5q#*A91cc%xbd|5c5${2(@i-Lj#-*Y-^L~#|Pz}Z%(n8R9dqggWzYq}J7UF&`m
z#N|dnQ-nOok31XU(67+}%8utlSv2Y|%3igek~R430WksZ<JF+Ka%0l=AN`(Rx1B35
zlk?iQW-3i(ex@IyDiCYbyed4APY>Pf-iFT7*4Zh6vHftwR)6Hqjql*o>8-&X3G${6
z5MO}AgyAZ1IOgvw*9jQ&1KvWsm67?~nOc3HyJ|1~W%G3YrJ*M`v@f`A>DMDq(3jYM
zCcnH-yVt3-+DX?LW!m}E8gZdn+}?gZIfwpO6Gs;^Wpo^nM*Z%G$o=KYG}%u*R0U71
zRseM)KB`|D;X$iz>L11%`dUEnY)rj`wrlAdW=k8%0H>C?H*iFqu0&`?oMeXYyMMk#
zcm2&G{Kq`=uYETPLLC`4AIfHg9nhJTi34TI86bbrmJGgZ$etyWvsXHQqzz7@)pOdh
zWeO>)v4{Y_dw0>Gcfso}7P=c-!H>WB2F%`iTj4C{1Bms^8PeQ{!ZvabryYPz)Bvz~
z$o=%&c~420Pl)gi4byfxl&SwYQ%3IVqqM|>%fU7WBNAze_P4sT?q&37)rSCc<XJE+
z2Y0{-UJt3Oq#=es>>RCwoTUBhm2Lm);-(<K=BB3ER|i!k+E+FxXr>Y{L0*2-(UwL_
zz%tL#fX0E=i)UgGdaSy^fQ94!xyp3Dj$hK$n8<Uv?iVBiV(=vbu&Ot^)8Y*MX?_VQ
zWgU@A2RDAuM-8D1B~gMyasl@7!1d#KHJiHFVEe6T=elnIDu0vR>hdQKC#%jj0cUtc
zMTH};)*W(hT^BKrmOt(IAfPaE5)BZ_`s<1Q&#!IwN+8*ZJ#AQ}IQPmomnR76Wf1Y(
z^0kpmp!AMGs$Xki+V@L`cClpAP$M){{b_9@KwA`hJKXtNy3BH%yrWA@4pdb8a9SX~
zwc<yt0qt38nT5_TYMfP1=n=48Zufzo-2v)IV7MpZ{pGD+7d%nspQE49bx<yXoNTbP
zG`^fI)2&x?=&CfO<52Pdyl8{gX*F6)R!s-@0IeWqLLWleQ>dKbT+St?9@)ll2QRHu
z&aBh|705%%8EE-8P=#O)NLcsA!{CC;pv=EYlwQ&{b*h$}Aw{H;S2po|Yt9VduD@V#
zQ1O%762Cu+KEAtHKvlvtR9V~#_>*dILyjQ#nwn$w`O*Mw1OhFy>OMIPCIKuM2qY|e
zi&2!qs{m-VJObg(-$Va3en{kz<Juub+TSH-1M$bc<sd*@cGLIkn8QN|L1Z#$q)UXO
z=imWID9$UO9`_dX(SMdB^&|FY%kSz~(1y~a1+GDw3jMVSHGI_51h8ht0-@ja?|g#X
z0ZOmq1aqy09uV77VH~PyHk>Isvu(842GbN0!0VU5H$<h`gp>{f-mLGRIE_&Fo`i9-
zl)nx@)uB5-L|`mqtx<iG7U+x?`%?oy>^1!ce&kM@x0muqp2FXwy&eXRv~F&0hBLe_
zLn$%XO9}UfNQM*b0hGDe$dnluhQXBYBb@==4j(6qFH_(U9}0)wv*J*WKa^~M*8=zt
zWIiH_g&a!0pJi*uR<kfNYVUr8l!-cC`j&jF@S8Y%h7A#dA<jnXUwbV_USIxCVcy_@
z#us%4fNB{|`e%6mvN4{XYK`d}ZdJ2U?gk84go5Xjp>e6HU-j>9Oj*jT%vqv}eZp^V
zZ!O=BH@bw)f2O#a)bqKUvR_Y?`@Z=L(d1_q#qX!m8y7ptk4Z@jj|cRJMx2!0^z@Qe
z*WbUnYY#C5$jBq6$INl*{A$Nh4e}z)sX`esyb^ib^nARE@KVQb{h)I*Vn8}afmtgW
z3@p_mG(a82y@OS=IELK1E_*{MlN+06v6^}DEva{)jznOyaA`4KoWK^X9sPSg=BSt1
zDEK|;bl?1=2p{n@J$G}kQZ{+rAl_3sC()izUA6b~@<R)}Xn4EH&Cv5`W<-^Z30^QP
zx&b(aW{AG3Vb46w#w#i^cNmOTzsFt+*cE4s5iee~xfWr2k6SK$;xbXt8d4=hVO7nx
z6a{d_oi*Qxfv~*ZmZDMM<UdU*<edK^<7?{#(rZ68s{MT+6kcOsK-xA#{-D!?9SQKp
z*RRGg&aK>x0nV?yjZ^rf|L^8_AnxOhI?yoiu_EPulgeV(&s<;@<?1smw8K_}7Eb>7
zFq2|CU2OYH4w7MO2f7rWw1K=JU|whZ?R{3HUl{!(|5KVWOATjE&Iw;91JeQah7s4;
z`PZV-ioIui=>F6pqgx587YYfF9{~DX0s!tbO8)c0y=3?aIF4xTs%&Q<h@jckJ$`o*
z#KBMEts2sRv1{1guHJf1h*BqC16w=v&u*O=Mla`g>U2fzn&^5VKO8|auDoRb=AYB1
z746T(ld#%S&36QGtChs}hSg7?lX=u!nYJCqXEAdHiC4V5PTRGqI^At0>O}(|*3xXo
z2L@BsU(L>tHMbh~eK^Cl`ts&m?VDO==BXTSNd6{YFa?)Fe?K7YNKG|AKAZ5Cwo#Ar
z4#wJI@<+Y+edl%b4CV<eAj_m;O6i%dXJPTX=uGk^OYVg(MW?y(xsG>SunHrfe<~E9
z3y2vlr>pveP#E2bU~r-|Y4l}cZHgckc(+JwPtG5;5pGY+163q*&WWOp5tr34E^i6z
zeQn7w+Di*yJpuLI);~<C9#^sEEh6OInjMN)$z@b&LlkGT=wcE^YHi~BO@_C4?yJX$
zoYD*H6?B$;nlx*TkSnI?DM`icIs)Uk?ubP7BDt`jZh3_xCCc%JCirNQpzwUzNU}Ud
zc!d>iyIlj?DI=d2;Dy%fh|IzP+hI@O_$hVzle^;34YVernV6>01H>&os=K5Hx}`XH
zpl8%wEiBYGwsbbefRDH#8c_J5&#w6o0HE!v<wyPM903FNo)0M^ZWUaXBI@u2g_9T^
zzy&{>CDXe>lIbF?ZP60FC|bYyIlRjLd|b!o_W@*{&eK#<03pDc!$H5?K=L~$ZHC*h
z=*4%hi@Abf0uC7MskDhmnA?h{p9^}Wn(zqb$(!ZhnMQkGcR)?JMBvOwL#1P&%i9mH
z4J{Z!ukG%ZMEq#Fj)CWHL^%&k{OlaYZEnF1WSOx)i5|xqVi`y&YhnB0FL<6rYM_QW
zR>2Wz$U#JK=e}M7>DcN+r3<62y@tuOPtn(+uNV9D8T-4!&*jk+<+c211|WDQTCZ$>
zA|U_5Go(OyDc9}Qg`D^@*s#kBQT*8}i4Zi}3I!S@DVi9s1rL3TyZMb*pSE>siyD9*
zUxhO^0{fdUW-IRx>NRQ)8q=F7a0(XSU{kGv;hoaP7Y{XG_)n~VeSX$s3m!fR#FvR^
zvuBB6_u5iC1`?t4_$()5BGi0uE`V$R{tMb9zUGZj<bSgO>VOD@9~X+**PZTg?MRz4
z%@J|9@EM125B13<f+Gf%tM^6Y0z)T(;BelIOHglnC)uBKF%Tudl>9V_%qB15LSrCK
zV)-#YBj=S-?@I8B?WE~Hn`cg`wv{7=y<GE=xp|g>r?<pg^G&h_ZP+S}soXn1!oS7g
ze`?u%${7T5#-xL7Wa_XNd}@*D+~M0%bJ*kZx#yXxv#Xt=5}EwW&iA^=bWXd0$Wv9{
z*4ZqeE~Le=l)ndDQj&2^dqUy`BjeaGqz6fZWgrq>myLKniZxV|`M*Hh46{?TM<HbN
zV|?;%<+?%_)=B++C%N`EIb>v2sl>N|hXG`C$!=p1#D26|CJH?>2>s!gu5gF`O?q65
z1@_qd5;ZRCq|1WLl$v;0;XvG0ra|H*%h^r#lcoAF0!g|0#nX5-EHDad_%W=I$-pT0
zCK7eedVFT7iaOm{t%9=ED7{Z+KSqKI?RJ^Cm7`z!R&N=Rfn3bG-9u|f@<7Z*fI`|X
zdJ{CRLyhsuf@E>m$HJn>H&mSpSo_p*hS5}~TTU_#cs@aVE<0t-ArMz+`;xh+Nk8Gr
z<6X8^j|=PgeI<u|Y0mHvS=`&GCB)zw0M0j`yHxuDfEpj4*S5}ysJEvHXUOp<)K3Ww
zr-lU|L6YLH`(L-v0{yPam+~ufjVE`FC1eV(icd0CNFydxr^)(m7P&uNMR)@A6k-9M
zWvT!evY0g-28$$80;E5@0BVdw#sMh8F1v1)hAHo`z0<cQd%1==7~9hWCD9{Z9Deh=
zq5Q=;`;vY4D%(1E)P{tieG(}h9&`xI?>y8q#HYk}LoT0Qitj&>QTA=aMTq63jSVpj
z;n^%NHpGd-Q$|9O`xAK%C4zAp;(~0jwe*+5DUt%qYdVte;ed^c1)tVQ+-Ip-9Ub`M
zmbgs`A3l8OPe|N?PxTyM(bLsiW&x<$3v2X)B>h@ZwjbY|)4KjmyhWJNrtjleB=j>$
zUP(Xf>K1|E2`FQ--XZwqtVc6dW%K1SppmXKUHx>w^{O&Z60|zA&?2Xw<@Upyjc9^+
zo9e7CoV-k!9^e>6r#hTduU4B_eRRO21Fs&r6Fe3rpAg>@$(X&kJXLwGfy<^_*Va_7
zQ*O|n<)hDt>0mmB=Uc(_8dghbvWc{eqvH8X{;{>>DQ>j;gvUs_!^RKC+2(tMLXk7~
zBNbifyhLD^6eY8Eqh6!_@I%_=S4PF;btf`J8l#)hh1jo^)|y6HR9mk1OoEBe))#jx
zl}HmHdwLmaVrl+MRSWmG5QZ#8N`rde8q=0EWrsn4sPui!<9lIDFfB`l@%2;3eBqt;
zkMpW=aKZ?$f_Z@yrkDS(G5*#oW!}00uls@>>XF@)46h2eJ;BE6t*c2|7OaF=c<@19
zLxWJB!eJN5($&sBaT0;=#{JFwMa!!2dsD+=#AuEscw6u08KML|0<_C80%SK4Sp{ry
zy90!RnFQuNq-R%xH#kdYt~Ne>8Z_eC7U%G70;D@XDiHXvbv7vM^c+m78V{_8^Jnb0
zhTzbk_tu`9($w4h)(LQeDYC*Ykf)`SF*V&_ImgW80kNcNbXxBVO6G2LSm;}r@_xMU
z@95=n-o2lr!qIUByn9~;jGu4@F`QG>r1&fVS2{B9uO$m|xEfJp=M5^Uq1g5W#OTUZ
z7=s=m4ow0zd-H(!hp__@>rF8aKYyBFbRJq(yj^s+m*s$9E#eyKhgQ1`Tk2(DbVYwb
zY&Sz!M7l?w7{5$Okd)E|evzzCLdS<V;f*V};?QXF*W4V?19hxe`ja6{=;tf<WL56B
zey!?|zSD1w_r+))JcLEh0(=GUPDhm~FCX6=Mf;?m8}@?(1J^1{(8KMD2jUe2Kw7Eo
z(^%Od-pBD{;uKbQM&=&Nq@f%JM&?QsnCKA<;DV&5v34yig%^>@If#{mKWUG?%uZdS
zP7%$=JAc`EP0XaLJKdA|2RsCSQDTxndQ?-y^3LL=?ECM&>UIv)r?B+re3j@FyI*I<
zMj07bFP3p-UShZc&NgAcSMh%1h;$r+zi9zev*#$G6a|n_TSag<!JgD`!6b5$Mtxo9
zSaPR4{nTSji)NpTsGKxgHQ3JY&6BCz1grcCj`wDDOBy*b!QUiLyzZLw)mi#&ImXVF
zo%C8?x_0GcV^wpfA{{G&3_J0ps56hzf+J01zd=>KmoIR`M4`tV^Om{5p;_ST(p$R*
zH12i-RU&ph%Y>st9N89KBn&wb@{a5uC2iGbi}eUYHg$Yj7zhd@u|xtVKQe?T91#r<
zAwZQe;i*Zd1(cGs@CJk;2t?!ZQEi5x_~v0Po{6Oxh)GLE$>Vd-wDEpFn-4T(i@^Mu
z&yC-1U<KK@wY`q4_(`yoDcu$3c(G!8&8Mo(h6olVPFHDcXi%$I*5$m38xep21;;2e
zuo114?+r%F^>z_}(-t7uM-h+1Bz~$?`g?gO+(;xq@{j|WRrOEpf}#{Db4xF6_nPg&
zxV~mRLv8t}PncyWVdmq(i_DdO^Ng*=gY@`1jY3fnu5$YufNxXr7<az)1ug1AOkBg2
zn%(RgDK?mk6fq0i^#Vel+K=+Sb&3Qr%W~r@HP)+c-;JQ@mO>t)q?c=3+>7#V_H4Mm
zriZ`=tfxa2g#s}lPa1s#d+kO7!_~DD!t}8NhKP!?%m1Pyq&y`kz~5P(TLPxb#!yiy
zK6PlnKJ4t1yN^f$lc<kWdFpqCMF;W>V&RBjuE8o;fQB>R$x5N9T|ykK>970wfK5dd
z1=!0@uV*sFu<(6eY3b1Z`3xTq4++F4y=??s|HkCJC<gt{w5@<<`8x#k;~U>-+I5^=
zPVVbn0AKZ&(6&vB-j`t}=)}*CjcX|dxce}<tgH6u)Sg@Qq_Ece&Ck5L)yoUYIw3f?
z)0O#VdlirW-h%vP%tXNd9@v(`izWdjVdWdk7j?E)5m*XXT>|Pl39}o29&-dTnEisD
zEyyWQ_h`%K&*}qjY$4!7kq}7UMDwXsNkzmv0Zy)n7vQC4cEt+|AC8P7x1Ew_TgF>{
zwV^)8cJEVR<8os934BxkWMTcS6UGW`Gi)@LFgGuBba64Is8s(28Gdk7Q&Xb_B3?KO
zfYlEm%0GF_mk-xiw;3vCac5q69G6oP3jfg!{&_yzXvMnq_G4$Elz^#0paQK*?3y7o
zP^ddcG2hMaH~vANb@M^C+OdXGOlk7Nr&CKWsdpLO+L#_+yi5fD^KroF(%QZN@MnH>
zDJ7{}Z=d5ZxF8kiWybXaL1;=rr>(mc14uh<z+yjCtUfh1MjwLYyM_SZl^=g0@DoWL
z|E3ENgYUC9Ij?}-r9qAVow~X@9RZ_~{QJtgvnx+#FHy(M7+cX4dPcY}DFO^$--!xW
zjPhe`fBHXFr9aPRHBF*QeWCOAO8u&o&&Z3i$S3xQLgl~yQB0c|Ee8u0cu4HV5_Y`s
z1c(l{2jE<c@zk!1ump|-4qAb&-1tGJ)V}HyU|0V>g5GwJvzOkXOgnz=jZH75OFD&@
z<HOme0q)}N4$%IlRRJ(372bb5Q*H9Nn-OR9X(fjV3W`m1ZiAHn`K<mPKz|K}fBg#k
zrrah>7KA!{uWJIBu}4Nn3pVYOgI(@{^9NHJzm4-Ju3ip_FJHfM-F%;!{`eMJpMA<}
zg_`nb>IL+Q6gxN8!i)m7XiqBs820|-KmXs~5%x=}joYXvVz&AyC+}i9x}t(hk{;II
zuK;A9#jdZvZ$Czuo73fQ#7*An;(iL1sV)X`x3VOV6hslOb}u3Fp`|(K=26wp)vJ^<
z_r10C_NUB7#>?&-r;e%rzFF8WX;9GjagwS1UMImSEnV?RStI<&XFt4o$Pz~k3|=|5
zI3GI-F5S8e<ZDDLy2zzD)>fyOOe=sT(SuKIc<y$%$<V{gx@<;%Ogf6RNVFw*?Dj4w
z2}eC=(r2Ue;FDK55j#R2V3;1AN`|1Ui&_P}7NFQyq?Yyo@)ngtlU{FT|M(=nzylmd
zYzP~e$5sA+elk@9aL&6v-=&CeMMa8-*?$d^Q>LGkkUsVq&3==_4f*=oS09=+)+-sB
zbo7z}Bqbiyl>QOg(!jFu1ol3a@glP_@q~zLu?(;`NYxa3E3BtqGNNBNlGFK`(bK{z
z?Bl%$1&N=3DU$AZ>c0=5@nwaCgjNB9IN#Y7*yIC`DkJv5)0mpQom~5EaA=XFO!sOI
zJ<&G)!ww|n7O==szv<QfC*|@#9Zfw@Sm!*AL4+PLPB^?^aV)!7{gdcQZ3U7yqVx3k
zJVxQj-o2Un{I=;c_$&X{&qeyhlbbx}5gzm;_Jn3~{lvbL<d9I@EC8Q?=8J~F*Ib$R
z@(pA+k%gB=LXcH;S2#IjN2pvG{QIm2Ez50%r7*+ev#Tcq{+4B|>W(DysF@vAbT84y
z{}l?E1<z#{cm!OX{305SZ?)m{yNq=QB&=lVzw*W5Qz92Ee!;DpWyk3Fr;B*O0I5t|
ziIF*o&8~d6!zY$_{~?hREo7$xRZL@@?kz#r&Pl4HX+5BF5zt0;CYun?uy5L97w70f
z_<&49Ri?rc{gKJzVqdwh)Bl@dR#TJbE>0BP|4#oC*hP1A7D^JLK+egQY=hRJ?SlVa
z9{!$XBi@6F-#W$?>ovatVv%EO(jG47qDS+AFlgi7)ZR(<^Z9g~WG_2?DUb({NnZN<
z)sfK@>$i&alBHz)U7-EX&npTGJWpqoLh*0W@Bf;b+Emg1SQ(A`;<AZM|7(8z=M9G8
z(E@^fJn-;)`04uJe=gcShQk(gYAgkH8wR}pFNg3cewHMt;D6m{Oq(wf85x-|kdT77
zzV!U>m-wIW``2$^zvQxvPn|+V|F^xCL>Wo5R9En0Lubo>&$WL)OylRkg;yYTTmH{T
z{AWmV;3F*`UCQ$ez!&)cxUWBd>;WOjqLCmH$4bK|HrNubR^4gD5}~Q~-xmr4<AyxT
z0W;W&P{nIueflE9`-BW#k-nIEE=c+@da%b}&Dr7*_|#A1|9UPI`$!~@7j0YpcE$gD
z5d2^F1N?pN<2Ez|^DK@(#lru%?5t>s&QP295%f{x;mV7!peMLxt*_q2#<(_#6^bv3
zOkH$*>LO-KHd84OJUB|+tj9lkJ+4sIC`~)Jhd+Ua`rY3?dmJ(UIMwDVMy6pp*K%2D
zORP%$O-)nE;K7k=xB7CjmO!o>?;F3Qi%ZXUBh~jQvT`YoBhM;ae&2Dejk)yio9;h%
z)Vd-5AZ&cTp?@woI)5(bZFap@_VYfVp=#KMcTJVOCnu5dCi>dr%{kNda_j%+V*x%N
z+Z2K<$u>i8gekATANJp)0?GsXx)rWWP&t2%7g{Jqso(@XR_wP>a__9b%(c1^D%5xP
zUTz{ok#Jk6aEp`~a|LZ3naN<I`{mC@^?JYWZwJxL&KsXMGa#V9dcko;p7an;hFTmu
zEyzTV1%72{(~qj4?Eb8i0{zv5`I|`+M91B^gpt-rpSs@^H>@9C)%!?Tw%#SK<QBMn
z$_!7lhkbM(U7+Gsm3ZiVBG5gi;t%qVe)#`>co7I-T`mJGT^StMe-Abc1&K$;R>FFT
z@}}XA{QF7e)=Sxtqp!8zB1DPnkwtMEzdz|W-yq@_Tg7aX_L8vQrjQ{C3}jpWJ~hg9
zAGag(GWdG5T6-n@S6xVn@;fTKcS7x!q{gbWh*;~CY{Sf}RG$wOUh!WZcuIX_r)x@-
z^XdE$t~1ysgsEnHbXuPb|65t%->)7Rp(613zRM6o{O?h1p{BYqZ)Mm2>rEu#f~5rY
zMi=3WP(?py3sQOY`6E$e00aJbv~_28On^pxq}5J)hO{+nf!_xbUlZ_R354@zx;FPT
zvrNan=8}i2ZC>LdRUNG}`lyXtoV+~_QOHbk6@g6-<PS=a8$-yY>k?16j7boyyH2)b
zRc>G|@Ko;^oq1Xp%?M961oAo?&E9?l^h@SDk^J+}H)-`euK;_JqVqcCbFljXs!H7(
zPbbV=kKYf^i<$9$(B&!WwI(QuNqS=Uh89#vo>(URoNiRBFm_lxN`7u|)TliEvtdDA
zq*yV9Q1#Yf2+!usF?8QUo7MvWfH7z)gQo}t;4w}BRh6$b6(GnIxH*5XarE+P_FSbS
zLznk41td|<f{xH{w=ZhePErp(hd+&j%XNWLLhE<HWtCF14Md`1h>aGgB=7HA!&StC
zd{*xn<0O)hWJkSXOp=2We;iy4z#S~n<5X~g>MEeqC)4!mX7Q{$Z`AUf1UCC^n>0VC
zv?p8T>?s+NvA!pgocyE6{MRSgMndOHd{FedEQwOs8B2r<y6zE)5c7*=Ek4kFm|E+^
zmaA`d;AOk@OgRd24OiNJ6|4M~f00j3Iw#cjbmp{hB8x`5fKlio-lU$J5xwopqUeEJ
zG@Dkr1fxnO8;~?KGV*R82E=<D90Mk==sr7Q57qmr4f(CG=+yVkD;v*m%GjUp`LRQR
z-f}$|B1M`~boBvcoTS9zYP7=P<%MFgRrG1o>4~vd;PjCukNj4em^l_?+S}8;9UB*e
z7iV199Sxp3#pSX;n=XvBQX;%x*O?%^Q(U>4p#FmMruBA>J+GwX$<DPH5Hr*dkPejZ
z;Ux3>oz{ESoeJr`%jz;OWxw_;V0F}M0WOoN$XDt-jJ1@b7p~$G0aQ36)6*YCqBGzz
zGg0FAmkCv2VPUzFZ2;7h2_TurmzF-g0@}S9anY#s9JsJ|3#f=^c_bS^m2MRfR&y#R
zCL~bsp&$fXw1(R$PyIRP8PjsS#{zq9GvlKn4f^Zlx33FRvSS&D601d1{N3kYjrZ*(
zPX3xoncqLuY(loJB}yCocrCu6n>^%sU5SkQM{wtt!oz3&)sK%}%kkt^$_ZU0JZh1w
zQRM*7<7-fSjkgk6Cw)WyX0Yf&ijAx5SlS{nuYyKZjSA1ROk%o5;|qTE;e;9e^dPu9
zrSEv!q6`QGQAFWKBjKi7mxwY3A2K$tCF$fAvz-YV-CiE~4Fh3HOan<z;%&TkbmX}5
zn<Bi*&B*f#=40Mr;m(yPM(?_DZqzjMj>1(V&Z1xYTPY%A?5$NXPn(V{(Ak=0n>6C{
zP7}y;cS3c7)UXF)B;witXsShve;m5@eqHN81=~2g4sDzY?Nt2&yHO@Skg|F4)%8<a
zcslU*F!z8cDJkt2+Ys#BmzGlVfy1?o@b|p^>~(kxa1Efha&#Zf#D+hX<+JJlf%~W7
ziSzqFxUgjy#V@y@&H=%Tj2k%~RU9!^FrWslHsi52|L`I1z;i=bJJFC4zJ5R%VJ`tq
z9j2Gow+?(lxKKyC`h&(BDnKA!;dx~b&jo1%kL{d&^t{Xt^1BC;S~;nnqB*P)2E@V1
zo!rbTVl7SZQ`)MVNY-bzViQ(Y)_AMW*dm*ci-)qPc>AV-%v1PErV0fUL|GA)i8G4+
zKro+smFmQu=Op@^!E>~T7k`Va0iQ}?Z@Yd^yVi=k#_~&?YS98zk~QBsb=5WvU|k?2
zatn14M?AlPEq>uggO(h`9tT<Tq8*OVw7tNZb8oUU8iVDUUHsh0&*@K?TNKEsbijA0
zxjOrRUJJQRA^C!?_@gPHH#Vczgunyo0&i%EstRmk_obV?B#jldxr{@F^*0Hl>Z7E%
z<9Uu%GDDHiMnN$7jm(j3a*|1$Ek4zvyH9Buy{`rso7vL{b`pfYl8ir%U=U&Gmycxl
zoZaQHTh78}Z|Gz4YS-me?~pyVoQ|u%uT)j2Ti5~?T11(Ua~=z7c!ZNoTIa$mU`t5)
zORU@uABuv|WaC@W(;{tVW5e%2{R;swk}(6vO>T^@K$}(r$Q@w30s_FaBdjB*_-J*g
z<4X%#m|M_K=&P=S?|QVkOx(Ci&QQtLo0xuM3b@(FWK>kPTH1HvSjBuFGDYpnC>Z_V
z`15YCHt+UHt-@j*Ypz_fU<j|x5B0U;b$R-7uN!ArXS~iLx&`urhBcftDr_#_3$L9H
z#vy2Z{w_;FqV`Ois6%+xF-r61;viWc=y4pwF9_&fEP4MzNRLJEzU-v#2Q1Gw)g+<x
zNqj6xQp5*eq6ODUMxz0vSra+ZB<G5k05<sg?Y=j9=aR<mO_u&fs_i7cz+TlT(!zw{
z+xbXfn%FZj?tN~cL_l(>Y!e%#2N+X;#yf|Pr*K*TgDGPwAQ^;{;qG3nNa8Q$m%ktX
z{49JGuzZf3@e)8_-y?!6EGNjj5X;r)kD^>s*quzt&W~sj^v`WPW@eBK8{qL5E<{v+
zEdqq05``@E*%1L%R>R6LR1;`I>@TW=EQNvgpcU+{n}k$<6X*2cxELw$7Mg+e#E=TK
z{6bW?okS^jfPaj~^+*TV^Z7GlRew<H`nM}9B;Wq648IC%$*%Cl%NQk!1?Z2RqC7=x
z^%3;_xuf1Hl9k|uldl#}nZwEak!9+Ae+}Ap7lawiJhX31&3h_VlhGv<9w{nCBAnkD
zNwpN2dTHbPW=CeAwv3FKKCl&$a8CipfK|Y4LB+kYBq2{j0CQ>HdHdW5BtQdqy)aYd
z!W*@ofN+;zfu%_G`zzwnN}4Q%lb_+@{V8}sU|bm#lCPY;HnSAWsqPhpOsCTagEd+Y
zGJN8nd%Ui9SDwT!hEk7hB7I`k9JMsX!v9YAnL7JHQBg4x^%hm^5at(25q8P$xrB*a
zwD9(u#<;ZGdJ<ea<EJ7dnLv!z|FFjH^E|m5x@z082TkJRCV1W^nKgL<%Q4^o*VbMF
z=or;Wf{K|8MR^I^{q>EEa@zcA>g%UO(1udE<qi$d!ruf83IP(&HNfGfpxNqnvW`HF
zazu+Iix>kWH_;CWy5Pb<XNw5g1qE{Ne|${jc>#}D+MTWEHqtf~on`v7|NSnGK>nV3
ze(f-5SW`hm8yyIq@6d<5UVJ-Os#j@Um_A)tIv<L=P1$(k@i{2Cp2xRQ)MK{L%Fy#l
zHFsJFvwF{bEGBl_isHA0JTn!7sSK6}JJwi(y4yAzrvJx%e@P=%T<j~PAVkIw5>Cs{
z^!NNU(W@g5h}UScHcATkruSxbSW+-+qK^CCE|=}vSaPURSBeIk@N`h7Qir1oC0mgX
z%7Jq-B!mtce$AVnM<WGEwUw4&BaZ=oh%;{u5#aXWodg1A5QcyZR@=g50vPX*z9~DW
zq%mk#qHngAejsRJGyFJ3iEZ(P$jFnWJ(Vz@@l^bj6CyGs!WiBnDk_A4jb4utV4ins
zyZAg+<;U;}FOC{d6F|%htX^jo_ul9<>HK(RNr)`qTc1&HDOxk6v|-iKUIV0{avr39
zt5UPr`AM6SYk@cfPZ8tBGn**UN#^!<bP^gp^!5O3*7?IBpx?g}L&P=*xqse|6{;)0
z(mO3_6#k}^!Yxj_O|v{SU2QR%>9SsZV~f_6vNRZcu^lp)7H-goM6#Vt(Ze&+Lv_^v
znZ*K5I-!CQKpvW3J>q>z8c-WZEYYcb-vpU8IZ{GwMyI8S9;^HT2r{3L(CrsG_DJlD
zt+>|R^?3Hw9o_LK+_*x$Uhw1mRZ5j7_<p-yDKF{})I42l^GTZ)ux~sisdBnKeAtu|
z-@foiWe}6P(RW)*T+hZACwb8xO)r+Z3Rv-;XLd+OsvoK?0!EnxAWL&D)spHRaF_AA
ztQb4k@3|P|nZG0cIby+@@Fh~bUGb!+YtCNxK*qGzig6ssf{@<cD5Ca%{9PZyaz0aY
z%FiYN^$hqD6)0*xY^rgE%azCdf<%h<88g^~ODtg--?yNFMgqC%sPZu3JdqL0tenF4
zt@!=o$7%1STf7g{hLf!MP6}t1&BImRB#U*}?{@8xNqCdkHm4W(QE?xEP{1K^sv&Fm
zs{9+eb{ph6e}JX2w7#udN3=q7iq10y*-dOUCiTh;i_FZ4+mKc>{KijrQKupgKFeu!
z@+=D(+kMnpuHP0B0od_L3*_US<^9pH@UU@swPmu_Mz&?xDlg<SQX7qgU*d9+4)mA*
z&dD2bRytTVzVGs*m#Dagzgd1Q=^_ViC%2sDd1JKKw%+a815qBS>*c!rmBaZ@TaS`z
zo1VcF)Qz+jcL~y~VtnqdXV=9DuP?=dRuXl*uSY+TnFvy}i=AdeQb&O=w~6GMT7NbL
zh~0WAqy#;uOp>S6`-Fnu;rf~+h&@~lljjw!1%<tw08R*W3wQf2@%@`K){Q@)WbxQL
zI3vZLr#aN{kgOSLf?wwV<c&Ds-UTCJUyEu95SqJjk;+n7ck)90_ENr$?K1)Ktj6BE
zO&84vkD6Yik{2vy@X;>UCAM);)B!*^Wlb5Kwgc*Zy6e(MBwn6Csw$r>vKAfXN!!y#
zf02xgjALNK`~#|EMY=&0<O)|Ujvx$YO6$1RMl-n19T(}}^`9c_;&xE4RN;8?9RO_y
z`i09L{<t1O=_QjLd+TsFYG3jQdXC!ry@mT9vt=v2(fo6g(~ZDg8BZAC!q8-y(ru+M
zd}c>~8p2~rnP0}mBRg#Xy~{^3V$MUDW6^>xfH_pSGJkgg;FtT|J32akhqq%B9L_-l
z&WqEF?(e*{?4tJW4t!cY0ZkUKEY?sx;#=HxA}sQeKGmDZ298?slhonwt9|k6E&K)n
zzG%ajI7o;ESk=RTear<zXTybHx)Ja*XZ*1JqrH}mXbT}nT7;oO7%q=`5t$RNrqH~1
zXZ5FRD5&U<q`^Dvx8D~fam01~(Tg7p=g<TJH-I>1FMwpAHF{M3!DBRS-gw%9OwgFE
z?GIs30x)l?{w^8|wy#ip<T-^Q62H`qWxkLdgp|YaK|BI2O9p#W=s-&ogrNp~W!M(;
z0{1he-jp>gTdMBK*_y8~B&r>$|1~t|C2>OcA^1Qn;qdmw>-PfYS{`~lj<xE`c+uv=
zsY%w<ncKj5A(AtMA7q4CrhSeuzb5+QS~vEMRRc@K3+WJ-veKI<G~7$1Gk2t3!x9hd
zZ)H^LZ*LS(ajMJu54oD3-m@fxehAQxuBVy{9wTTGUV6N-8({@8cV@=gO;*__I{fxI
z`q@Z*fln8@huDmj%nc}qtl+{Yzk)BCTgdmV5Y1asl4-ySA-YwjaCXXnVPHenbe7Qr
z8fvf)y<TEV9=;nv7iFAA$xk%QeD96?;Y|411`^T$oxuxQ9?|u}N922LITsGy39q6l
z2Lr8T`sL{sqYl6cy<+QcwUSjy%t%o@TS<+W_AuA+)}N%TxUYzjekTFn_1tYu*faLa
zhwC2<oO&sazC~cywK*j|L0ouiHY{i}yB0K)-`FBWy`uM&vTS9HbJ<;1$de3NS`ho)
z<m%`FtLJb>$`h&!v<TCNDy)%jr?OQ{`Mpz>PfrE3#nB@kfnPjRZs3%>Ld*jrvD?k{
z$2*#&@PQCi7An8??t9#bp9okSCY>^WPT$%(7tQ09MUQs))od|h!tDCSSVh0lJ5m#<
zllsw_B5LDb0%CBBrml=BK+l6rozMx-1GoPCY5GJ};Ef$iM=XlTTH3<xdk-NKOcR;}
zck#=1NQ58f+A0Y3yt(vj-Q|7tUQX*&i14Q~k(wFHZ3!xYBuVsxS0OVMn*{TB0HZ@o
z4EU0d#xp8uz0FQ6;@N~hR*`~TMu_!Xvyb|N<H)(R=JroGP;7-71aJIYR#lz#fZW`X
z@g%JvoQ;eLiWR?!dY!EDATHw8U@gtwCt4qgQ3yZXpB5m?V!V(vUX1qIHDbol_MpN;
zgonNYVScf%_1wA{(@NGf0lo!c?TcqMKhT0j28~GGO3aE_iZxR1HvQNzUVa*XaMLy(
zedKo}A%vVRH-=hkuutu=`)&Pt-f>iUfAoE*QGp@shi?s#cXGSR9j)wQz2{|87JQOE
zSG%#RW!WIw<3@rdDS1GYyHt-AB)>0DsP)n9%UzG!2nX#qFNd1&`ha>I>6C}d=m+`G
zOwKW}0*l@$#tV1}*Pse_(_@4@o2nT|3PCm}g{WzcXn&k`7<xiQUyQZ-#Nfnux<d>0
zN0mvhstZ=_(qf=XxK=GSW_>OV*3fj?-@3W`UgMd4a^?53P=EYAp>oX==qXFSb6-1g
zZ=Oc6WTC}GTCGWWpj5T_T^kC5Rww0IL3}@H#z<Xh4-{`SgZcwm$M;T$S!Pv(4v-;D
z;j6L}7T1gdJgBxI&##6;t{+p`4DI2RJ*28yozhea8my{SpMT^}d>v&0XRjjaK(Eum
zCKlEAZx@=f`$-4|hNsTc%_nOWjRZzd3~_Naav-&mpoGiA{otw(W8qQrc^nFkdQt|)
zagn}hk4U5h@&>b^ay+nKY(Gt24O{WQJ>BsdU;e1ifs<OEJCz>&rJ^NgLKQJcq$b_L
zQ`Nh1)X*|+hz2ykI5wzQWwpZ*L@RW_lAoC3F)HI;&g2x%m0~0>w_pp=k<^xX(&zZ8
ztqsKp)-i*TFp=WJ;Y})UAi`n&QnA&9%7DiAV3sK3AY^bcX{l<fw1}j)ZewnOUEoEo
zR71oOVhj7x+jXK_J;P8eT_08h{~e>q$c_(8QvM*tU>$rY4nk8(klFx?ACOcITjuc$
zsK%dr_*!*$?8&|T_2P@^=UN%yV3=IW)cSs8S=6ilYx~bjMmDAQp}WszXyq9R&6&oV
zo)NQ5YzR{Z*BU;LePhB+&mn*Sg=AX>qH=uB8T`mQ;Ck3$hoQjf`qgLO;S+fkE!4Aw
z6aFaC?q?S6-zRLSLNfs;x9rkQ=0y_|lRt<}(6`}NujQ)v!-=?Z>k<QYH*>-r{A{TF
zvUZvJg=q+xFP}Z0j6``WLI^Hq-s8`N#XxmICMVF(9Y8<yC{oS;4rv1+V!Eo(;Ulj4
zJY4w1zeKQf1hGwkkP99iN+Y2_b=x5rO3+8ywq->{@&2fgk832>Em!Z=k@h6YJ)h7L
zO8jJJHBGmZ9U%ctYyx?H{6j7rw!U)WfJ3#E0^>9qC^z<@q1K4haG-#C;l!X!pL@4<
z4||!n60Np4)EwP5bhHdKNW!$Ie&~dS2ksM%YP4ip5UZkBdX?`ZMb0OU^80{Y$Ea(=
z3I*2dtg+zQIvoQZkR*>U9IMiUfa`#Ff@AWl063=qK1Geis#sgIW=dO;nnN`sH)>Ds
z@w@|k=7u8o8D4%%0lX*@R5A{2qLF3@T2DzQ43g#-08~hh=grK*3!=AmwuW5WsQ7qX
z4+lOEjYsRfyjlR#z~E{{3Zo~e9<-r6NGYHp^*GuCdqMir;Kh370>|Vx1$P-lSHKC1
z^ecnY#bC_e1L1;nzYo4gx(oVb@yXEBSICgi-_6ehSC%VAH+g4sf|L<n`jnu8AI2o8
zdf$ERh(;@hFe#-NL><v>c|!-s7{~o#i;6Q=zfuY#lzXFV?y}pZ$^VE!<+JLLiq)v+
z7xz_H5zmk?xN=lSl~iSLR+mInMFT}lAI+;q$u&0PzdA60S}oN_+estr5kVi)^~QS;
z#WhfOp1zC9HmC*iV-V-3RWGILgEx`#-$qLfRXXlJ89kyW?2$Yx4N|k^fZ>Ih`0tF5
zuJX^Ht2T8YQcv)PKZcAeO`jaj2Di-!0wi^YM=w{_!g-*Uqi!fF0xf;EJZrC($VWDj
zNld3?&d4UBI($31<fzcrxv<b_?iJ324$eOJR!7R+Bt%?QJi~JNFou|+U!z<_{$-0B
zr@eY>GW6A6g?*4r)t~`5(0<RaCHcl$8ZyYrn&Qw+G)P*|E~Rh-K=OGEe3`rrbPHeR
zCKqwl>D*wld!QvWa$NfwypSTbq<huHV;?$dhS;yqJ^YAny;Z%#Jc5m-py(((((kjA
z5sr+9CwjDx#>k4d@9}*bW+-m_&~<rqO_pWUIX#vY$9l!JOc&TlBxk{AANq*Epl!qg
z3&g-%8hI2n(UM&FSdy{bWweWc{D%wS@gf!MLU<hu3)i+~{R>~{vT)BMbi*%J@3$2n
zk1ox9;z4P18iSIA%o^qdk>owZ5eb&Rd4fa%K6mQnO}(M&Gw_v%Tn_og#@^vL6EgQ(
z15L5f5S%|vvF)aA(U)Hx#B)!kna-HfnQrth<Gq8oFiWX;S$>^R>4#>r{;Gdn<WL|@
z_o8a&B2Jd%mk5;jgQ&r^=s}#y7sEkWbKQq3!ShYb6)lnlR=arWUZ^^^Y2o?|&2R2#
zUZ(^7yBKrR{xC(83+@XuA6zTCmpFSnY3l0M9iO>*n&og>j<pnSyngbO(TQI}*w-X}
zbRpc#z0UM7N^LVQ$Vl>hY5mBUggxT+b*U~hnzj-%2v#Ti{KNc5HM?S+M3>U41T0b<
zkw>8};sTVSmv4e}kzYhv1biLOST4z6XbHOp^Y?5&r||%XBw^&WYRFs7)ck<r;pJ0e
zutOayV^4+@*#=-u@S1%j7ygab(4&5vCdk_cN9H&ssAmCc!}GyI$aPZqq)YXS-ZG^D
z!rS48+vvskB8ivi?Ty9(<h5WEp6Tlj;ueFZZ7X_G=;l#-1-fQ=1lzco3&warZ4dgT
z7eGw#ju&YLs00KhOF+;Yzq#r@fJ|tXz1pXuF3l6h4qUu~v>y<Q^ksVnOT^w6h~M>*
z;7PdQFl-8Lq{lY}F{&SkL&G_?RVSr5aG-YC5jB3B=;QT}jc*V{yupI055CKUuKFvY
zqDWqseJb8@B9Zd#S{UFS3=YONF|6Ye^a!-w3KW58H{UP#d}QDxdS4hg;?b-n*O9`+
zkb!w%1H`g1MJ{A|Y20YBK{6D(z0Od?FqzNK?*ZT{@LW9B>a<0^$UUnG{!BT60+wC4
z9<Ln~yZ;lU2XIv40JZwlRLw7xBpz7{b+Wjg#O;ecPeTzpkqZFnnChTEGKt}o*`PUV
z$_%{qqT;zsz=$3su!RM-<w_QtSu5PDR^%tPqW;6qg~ifyT$0bm?!Ha3TIt0>0crX4
z)uRwlRZ+QbW*2{e<>gj`=9=6p-F*AM8rU%2`o3w0{H0w7vfYrfl&UZYp{jfC>r<y$
zAKsVM7H?w~Z#eL+g=G}jmAJ3b-HIBAfA7kRMDN!9Xo3)f9L87NY0aSOApeNTpLNQg
zz&)|GA2IA%0WG1Eq&6~xaZ8?w(I;Y`NS2;#9tx$bx|)%y(uQai8`_RSk2|3l@bgCZ
z{@TLcrbMzcvS2@wFcVup{4or|;3RRW4gOX=6BSbF1R-7`-<J|+={Rfi1-Jl!K~d`z
zgRs0>13k}uXT85lub1yYwHD3ETIL3v_hg>|`mtovOPDCPAROS_SEx0AUs9%i<qx(H
z@x85+%cgL~_-r5{+fReqzx6RET~uLi;iRi8AwV;uOj2Y1T~wrSgT{H;h{v-7K@xv0
zK8`Wi@f?Ph(1swEfq@qIz|OSc$HA;rs!fg*&Dec*@(1-&aasYIIK+fAtt6U^4bg3X
zgn{g2i}>_LUW&WAXJi@D$QQaZH7!?IYgLi&5$HnJ&%73xzK7rN#JAZZoS-g8A^j}1
zQqmna+b1At-@OTDv3Iu_U8+hgWDis-%beS>3p!BLxE78yYI`J0Z4k1+RFEAWS{Lie
z4q#eFRgoNi)mO<pzBwpu{NTQfd|6!kbwcZlqK{ky4_G;Eh?Up!rMZ?ftjbEC=}d80
zB|Z4vTm8ivOFcR~UMdN95i-s&kA#_{$zi2>SGKQ;P>MM8@cG;mzFY^Zq^a$h=kel1
z*lF%w2qY4TTgRB{hkQDg;%{o`^~_WR&oc6Lv-0Pw7IIKfHz8O=&f<4EKYXkdZa5Sq
z$REY8=dDuLE)q&+P~F*Nd8ZAXeBx9AQCaNshH{!g>x;Qe2BifCQ8$^36r*V7f2Yi{
zpT8(R$>KzdsSra9e0Krci}g(d&4<1*0(sylaJiPOh(epfD)EZCr00<_iB4I$2)jL6
z6=b!+2|(txEz5a3cGylfTEe$WWBg)CYiuwP5NwMD=2~+q=nS7{na|Erxwt{LF=5*R
zNxHhZrZggBs9Ind42uHFV%g`|d0gvpyeQ=xcyrm6m7{DEJ2)=Uf+&(y1)RQ5!q2u0
zZ$Ze`j4OmB%(Fmet47`)(;veE7Zm8mnfvns0n4daYDzG3Z6KKmVuxMw|L8gksH(no
zZ*Ml;DbkYC4HD9w(j_e*UD6Fwf*>K%-QC^Y-QC^Y@h$$|^Nn-Q8F!357$`X03+9|_
zuKE7n=VA7i6=6d<ZH+`n6G1Muvs~}&Tq&z{{A2*q#O}r(HPst_qj+3@P@Ku^Z3!Dd
zIJ&e71kXp>?$$2xyV2g=w!&JlKK+%!Ukd!Dlsk4>e!n?ytoiF7t2NFLRJWgCE09SX
z^bN#hE7a3pGooKl+!;UG=ov>4I^HC`9qarF)e9t5L;N)vw&G&`i3aF7L(v#t`iJy<
zgP23Wa>{B#aB$wO|FbeTt+eYdpZq=)Vl<W}B~_q2IZqy22saM3ELekzdg9E6rtV^F
z*=FCHWg3BJVF_%#v%BgDef&j(P}p{<ncksTa17ZO^kXlfgE&>FqgvB+X)(uM6pyDQ
z&Bp&54mxeB%sUeg2TeJW>QDY(gU;CzTvfEb9E|m%F*&yO3}arlX>?!1Z*VA3TL_(C
z!(cIG+WZWaKtsGSlU%|Tn`3rnYgYVy`dwVvyNmv-*0ed1UE9$eUm^)HHwa0LSk_c%
z)G6PIKO_My4dl^lh&EbYMq`TPU5}Or5r81S{PBb`QFszWYY8mxQJ=IKKvG_qYppIq
zHwrQIh%m>^t8UO^>M|}#(m&kMt)y{&%zn#diTR+dP1R4*_)>HR+Z?uZ0})N*BM5@p
zkYa}0ed24qDV)FoxhzzxhQtDoO*`_XYBI?=FtV`hg??&eM1Es{rI8Ipb)CRb9C?PQ
z7JEVQ29KnOJatR~FH?*6F|9K!Pf&nuF^SF?;eh`KNM2EuzRX+9YK#Re_p<z0tz#Xe
z8=AN8P#3bq9me(rj09i#F5>tDZq4eXVV#7rbh+2A+}0#?w|d*O@j{>=WI6;?0cG|k
zYQCUg)-UGqEHN$L%Z2Ndg)(VSFsieh5E=>S7YrP9s1s7k{bbH&5M^@sYZ24nZ7U8=
zTuu6j3F9=^HyDWVq*IjZ==UMH-Js7X`bcO3vp4qNc1KAJ&_EQ7)6!ug_ekCoTY(%L
z?QX)+bQ+}m4|5|jwQla>?ZR_;RI+N%Hd4O7ah5Mg_aTI0g-wHOUvU%~jF#a;&c;LW
zMo|&+>B4Cz%GnEWm2;E6Ja7+I(ETbq<4_-#>XHC^^#xO1SonigTU8e<3`QL3x=`NF
z75N;2xnLs<;@Oc&O7q_EVNO&d1*iH~dIITVy6$uv>K!7re<P~iZMft+ABkSo)5OSM
z6r}v>ZHlN&a00uo15P``N!Ru*^vS*mmT2L74FEbJwqlqo<-~JlW(M(?W6|K+v%;=>
zt{7j2!NW0Ti}^J!6`~4$T1gI@PDUAJ^fPL6l`W;}3<FN@PKmz<suceAKNW+NBt~O0
zM<GEaV$;)zDO!b{2{>wll&VIDFE2{D`x~8tc@OfBLSFgBUNliOm6#WhhKFI8Un0N9
zOYcFnQ62h&rlIIoIWL;g*IPm@h{j4tYz)@gnCioXi}ymc__u?@w~du)609(YP0QW>
zhxk#qVj9OLoqNc~s!{Xdx2L0@IK&%JqTcV6S(77!Cm$9OusY!^Q6SW;;iGEmI|Ib{
zOP5zTcM^Yc1`r4PX?zg;Gs{F*n!K&P-j<_tNN;^9D!~NJ_O5e?E#mX7*BWk00r;I5
z{*blufg)T{z(B1(yqp_V0D2oq%DNh(9j%z@^1wj0zB$%|8Jb=OCvbk?F{oKX91pjh
z!x8Sfp+_Xd^l8&pdZtZJ@$7`hc!zu3J&Rdz6Ulr~??RtJ13vf55*`#%m8_;3b4~1w
zs@~`Zw)?x)j|d9*hqW?9O^zSFh}D0)_587W4so4qJEPgV5!&)1mhP&8(t1F&{ESvn
z((gi>@N%jBTeW7>;>^_0yQ$!qH3u!=9V4s5hxx*<4SQi8X_664rg#2d?;xm7lkScp
z!F}z=p1UIL<<PdsLq~@z!#!SkFo>Q8rK^P_({`&{;)>@dx);XU2Oq!g3nt4vRd3Z1
zE<gb(XcUEzEU2>V56iTznwX4!X;7&^sy%t!)`RfprP%YnH1)hrVFSfjG((mU2@pOe
zUWz~5)#PT}^tne8Jp}-(KQk3T%XOrOJbcb?gGbL!<*Q*-A*a~qM?8+qby?T0(ozH3
zI)RS<!5yH<mnC^l-HXt`U(LPvyVDHQhXjD>s$jVDnNP{n`B77F*TL!5!EM;;h^66r
z)@qGCiP82N{^S7gaqmME1bo3phju)g{}X9Vm8eA1yCFz&0?E^n&FU_2V?3M~N6-a$
zl#>@nDh*;PY`FPJ&lTQlG&mL+Dp_Zr`(_zv#cgAUa4$xNc^dF70T`tBpTDa-H!R@p
za?bFfD!(21Cv6X8%iljM`uxdO(whq4Up(9LYJ+~;8wQYOL-_NlU=LIql2Pb1E8h53
z)B*5NS&c^<1730`s$z?SFMNLsKxybq$rVka3j}LZum#9E!yoAEYG~{d`xo2#u^-&)
zn+5M;qMqyPH}kZdR<DRAuX;(g_Pc^nqblVM$?m^T0CA=Ii=-Cm3~uGU_+9x=!jime
zvwp_dQKqL-$MPlGF*-EX+CLm`0*{ryk|{SUF|82CMQi@x5*iR5i)~S39@ar>4s)5>
zVJ4EMp+L`SH$_AH`5wk31Ygm?D;u3k2%TjG0f{`7NnFC&FCp+ty;7)bVJZ=(OKQw-
zS;lGXC)pgjcZE;IPlCv>s0P25<+1v~5s>G+C#lNSUozxp4Q{X%z#-se2kmj(^wh#9
z2Ieh-KYuP6Hp2U6sV1}>Y070g5kp;>!_^txHgU}oAg6S5?S_9K>@{bMS+Px;qphkJ
zcj0PxxU779Fb!c-Oe##wL2N-4^(bKm;rYUP1z#rfmu~B;eM?Cb?}wl9VJEhsxZ$_I
z>d+XT<HzbOhs5nt32UH3LZTvHB?pl~IQs()P$_JEz=16ZGC0v&Y|gWhQa?P<%0<e4
zuhiyPs@@%`5A%>6CItDhAttO^9Tq+W%ICEz-7T=6@^Y6F8i_2W1Gn7t1=nZ9^Sa_Y
z4-)}rA~b?YLp3i?8M@+PGiv}P|1xU|aH{nU0J=&T0O~$TKu^c`dWiL#Xh9Dui!6i{
zEe!%e2?q&D6m6>w0jn@ge*MHH;cLz5tT?$gXUCh*tL{5dGA9FLIX?G?g$8VgVVxd&
zJMX$vg2;w_D28(qV&F40Huo7JlMYfEYN;Ww=qI?`IrMQcjVIwZyF3COkZ<tP1^*!r
ztxAxO-gGhrh@ocjHP50e!lwD^;c|tid!4O!y2jnws@GU)tCF9RJrp}N(VC9E;;ZA?
zYs+Z{W&UPFT}bqVlx_la0-P9yI*n=HOc1P<)`VqlQ~V?<5NcKj%bof%{+g&dTnIhK
zJ`z%Z6Ft6-$KE)b&m|eK)7Q>zCcC_S-sw4*-#e<m^et9G70pG!id6puVP4F!SHA<z
z{N=}vjcj-ohuffOufA)-ZBLw4Qy^i^&w9i#FXv3*HF#k}iQF#h#(3KmJ%(8dyhH^&
zn0@l7{#Xv=90Hb^JjIztCp;*DGz4Go2%-l8gI@bj@812!0H})ulyXRRJ+70!N<GET
z(hQdceA@5Ev#w}oWArivIFYsQhxeJTo~0>uymW<`25ke!onmYmgaI1-k^}a}EZ$ve
zQ5(+O$@|SJ1A<&Fl5Mp44B+mUTb2<pQkCoo7n;~7?KqXM^8P!tPCMBoozW%64<{lC
z$6=+<AHTprESLL{G7`}=rqgrj0WG`{@U3nO#lpXCihrQl0F+S5jwN0DG0}6Nn5c1m
zvZA}0yj8<RwGW&=nDQ|>dz0aI2iy#Dc3bzof=piP0~J=cKnzfB9A_2CS~3L~52HQ)
zkg~g3ax&IVVcmFbOUX(67A*N)iJ-Vm;wS4PFR6HK##xB{OTdI@*@-WZL?nMR%cP3i
zOV!H7u)`kvx}{L==i9!~TW6E9*>S-4svX&J<yrLHaO=Z^tgNi;1w1e`2Qwvddoa<w
zwv2WWkv_1mBZ5f`zV>mZdzh-M`}dn2Ztf35R`_^$k>+^%ram&NQ6KoLZ_^qs$EAm`
zd*I&fTA-T#?S}Gc$IOk*2Q+0#SVEr0wB6yUP9BHJ+pW3CK`BSh=Sir^<AFNGf12c`
z;^?Ellp@eL(-=_ujFHN-0S~yA_pUZqoS0p$u0q0fz|H570Jn^<z;luY$zz{7<x^sR
zm&|haUjG|X`tb;+Lcv`p{AWUR(snaCu%Lu1K7$97QAvf@sYp$~ZjKt~IVZAA;@Vl#
zmiUI}UMCUeS?e`&@QQ7ZN$=`q{kH`Aog(dMh>KhUwYk)kM0^RQRt8MHQ1nHO#epxg
z7h}cE{ET|J?CM_3HHEKt?B-a_okRybLCyy~+_@9-L}}`s9|YlwR(_;LoDZ!Y7&rw`
zpFSS3Wkh*@0qYdUL5YE`w{G;z&5iSY_qs^X4s39sqCyjUQYh8UVF;Wqb2y=95#U3R
zAn0mbUy%erOa{V7XdZ#I`WJ<dEeLB~_kKKP6R1bap&;wOuu9gWZK=D0zTcx!w*q_m
zOW;@;GeHpgm$j7-Iskah^-TDHp(*lNfDPO$P>8TpW8Zi__m%k=GUs9);AK@D^A-EB
zyC;6I{M`KwXmrx*w)-&Y^*)O~T`4o+1ebPjz0>BQ=}T9zA#KfyryIWk2<H-O9tRX4
z{Lk+cN97w^^}kpEp-|n2HNP)_Q#m+XEwr6_wz)zF|99LXFamxcxM@s#zT0?_=l@CT
z*?{F6=eEEh<t#(<vvJ%$Ot;epm?Y=ad+-8xa3iN*wNE@&DjX!Us;}_mbj>yuJL;7M
z7N!x74xlPJAzZ;5s0EEgb;<g9-koG`g>rK+y+m~-ta93!D6CU9s%WSchc~ZUY3_VC
zFw)-JB8@nS7&2{)R-;pZA}#$u3vF0i<pxMg`JB}(>Jsh=)|oXwQkkrL@Dg)H>fOi7
znbB!*V32=&j;P|~G^D|tx+m!lC;j;tx8FyxG%Re6wa#!b!W47#DEKU6wB#_ikydRw
z@Yc>elx_5D_QU+ImF1US^JtUZrWi<-y^ckon??W^$e#*4!#x536!x?rg$<y@9&>5t
zP;*-Ha$nL%?!2ua#^~d`lV-T%z7ZyM+~DNyATAB$bc1plhdrcto>}1O>XoIwCa0l>
zJ$aeH(wNg;{7SHNG)RKARGePWuPS-E8sS!Yc=^ObWw`X7HBx{9Dix_m5d?%1<j9l0
z*gjkz_3Z<BxyXmWg<&A~V%Z&3_T1z3DBf~RcJ8Bnv1m!R&GY&&^6;k$p6P>KbA=dp
zI%MNTk}Ik)iH(Kb0HBbH3|{&DiCYo~>pDAO$MJd8KLVL*HU+rXAjQo`-5*f+)Zj64
zKwpvXDZ5Je@ba|s636%Snvrqhdk4Sgj9j%GQIDGHR{9M<Qf7NNx&Y+~D^AjWKRX6O
z&Tyu9UyMhfcdK%WyoO1nEaLa?pkGNqXeXWwpz1wtb9@{ocjSLuL#0HfdPpJ=Yqz<#
zMCKmjiFR`w5a&BbcT!ybb#w!Xq%iKGmQIqHfeMNHWwS`Q@W<;zy%yBH);BFmu?LcA
z-?Hd{z59LT%Z>~Fq}8^L&(!N}z(K9$UOC0Y>Bh}3r$(|ngL44QF@VU}7|t{Dx0lan
z9i1v=GD&&A#!8lIz1&QD<xE9Zu8<x9y8KFgIR6km5x!rKiWl|m$x(8&_ie#A?TYw1
zOS=hlzaW+Un*NDS36U6$Dhu^o8ByJvlxd@;Jj>6`)yLOv@t6@1^8835{rhf_vU6FG
z;j3r4(Ml(b_{b!2c}}p>TzZFS8N^2_!Rxi=UU@WQ9|y}Jwvd<J(=|7|>xK1<{pq;m
zmKo}&SGZwG4k8rapbau&`@Yex$ekvR)&w;szDklJd3ePpO=05kway1APM-;#AVnQJ
z!(B1P{#X(xJA0^jrd8}x!i{gBQ$Aq@$CG#*21&r?sHk-`yRz7tXx82$jjHDxm<l$7
zUIea}^Mjgh;Cyz))0ZRh%bN}<f3d_pzSw*}_{o4Fcd_Ksa(jer7$mFKHvtsWXkeGt
zsk%b%3azvo{7>!)!z-rcJ9BPVI<zwn%3ib%vPfYiB3{<gm(N90&5pb5Rx@sBE5=){
z`~jCvY-j0b`K&QgZfaqTrA9UO{-k0#*uf%0_90>h^^@@dv&gqww{gD>H=4yXSegXg
z?{B6$%sI?hZR-s0Nbfo>N+e4=DXR&_&lFL&J|*xAyH+;0l&s`4ZWt&MT_(6kBQ`50
z-hC8yMXt2aR;jbU_RDIbj8Z(-Tj(uhwR#vh>P2e>GJ~OA1J;d7wHL!5w*WQF@2LW{
zfo6|~5R9#ML`IqB&aOnETciG63N*{b*uzBYNSe0k7ZMi>r$#d>d0<AwcZ_e%NDrW@
zXuLi7Ij`*b?388LoiKP;+~Of9RPxBLsSGebLXz|I>cd^vok(1FLk;IFoPay^>MU*M
z;iX($wjR#t*=mc?0^LP~z%&#9NGJV?P0w;?UAKjOH&x<E@k(%kPkEWHX;wM)X?-A+
z&L=892W|_9%Ws4Q!+x+h!?*xM0%(%woxwP=cfd^iE#1T2bk4jCAfw+0h8kg=qPPHB
zpzlsStKWOeZ;u3%^j<Z3@mrQL^qOCn+11q4C<k&Dd~!JM{ZUDgcpgtXwt1^9-v+O~
z0-z^f^5i`FMJhx^7JmIgsYnFf8#ZkL+_*h^*-c*L<v9SerG|`1RhR}RnsWL~IPjq3
zIA<g&XIbDptVRj5!5-x(w$BG*9Hj8O?x`5KX};lgIV|fL<b{)STJ(w)N8_n!y&dZ(
zbXwF;*VJ2Xvm?4V1c+=2tu{L{>@YaJ&d?5e@LwAUprdBl+1b0fzO8o#eZ>tG63xW<
z)WY1d1Gu2k+)sVqVO?GUr#Vb^$ClP^34=f*|9am8HaZz#6|vrLy4z0J0`SHhH_h7R
zpcO`SN9ddNIpY+|Xu`G|#D6N2!J?@rvZ`gDWhPJxuPk!0d1lqy!mx;H3s*^c0xo-m
zA&GL)KEPr>+_rax5k<qcq9#^>M3QB&pPXa6P)Q8|k8gEch$c^CYd-pSSQ_<$xp28*
zp<UP*G#iY+D2L4yfvu3vpYBw7!YKY*dh~*GCNtE599$HCT04zG$0x9u4jO#vp~kSJ
z4upVIZVk)Fs(^LEDFzcIQI$ceu%vz|9I$|(u?V|}BSF`J#!K{kjT-rzJ$dqXT994w
z=Tkjs&c8K9xuT720^T}J8#Z-DsIt~*$Lo|x6^@|Ls}oU-|G9VGHN;mGM$8cusH_-~
zAW7{%J^T4NQ|ZqG4lLF^4kFfaR{mgd^2821Dx^2o81t%UA(s?yaFpZ{ylg#|$e*~M
z^3TGi!ESGFo`7Ti3#(p8xg(ztB%7kdi`@I%>&%;vq$cYA4EI_sJZW&<-`>C`ze@>0
ziD1#;wZY?=H1WXkdQTPxbYqCsq4>gSxrM2vh&mN02%J>i<exXm+$qcWg8|y#+S1XM
z>tdPGLSpo7a+msHqJO#T<2ppN=qO*6MPcN;f6;b>WBb|Acw;lS|GV@MpyOK|KeB1$
z(!~s=Zb%C@hJ>Hz!qPCLQp4Utep^^?a@>Q;1W6!uwj_Rz#BmQ#1PRBhl4bwTHDO+a
ziA|B^M~D6#cz3pbSpk<2B`Y!tm5H|r+4#}g#Fh&)l279o6xjPL0T4tUrc<xIZjV{-
zd5J=In+PWl=HGuLdWfUGIj?RSU!0>?OSb)fXf3&TBEPy(Qk45Fi>*rWT+o0bk=G*9
zf61Cxt@z@JdAF)TDdogT%4oe}ykF-$Hzsz*ukhwhB5<8(OHcmv!Fal#J^tMl^rb&u
z)T6#7BukE`melj_?N96u>myC6)lSEeb<|s)SDVt=1TS3Ya02KTe@fg%fiSa?POr|l
zK8o*QnyE4Zd<7P^DLZGo#Aqix#AVS(>qT)S6u;#p7V;vgr60z9|KL&RrFVYBSmEMS
z7$4n{)nswe2o`MBGg4UQ&tqKtW~g**?u44-@iMu!`yKrx^KzqR2e1I8VcY^68+zj;
zhv?P;oOe`nr?vyHgqKX%riaBfn-Hg7CX5QAY3G(hBz~(NkP%HRCp5xmk*F@WuT++d
z^}D1Ob!!3mgD3ykECivzI0%3ltIrwk<3L9o@?IQNu*QJ`QU};QRitGvJ3$8h691$f
z{RyVOn{}A8!+r6pZQ+s8>+a{rI^rH@j%T0*s>BC8tK&25wh;POv~_oj-F0&`ugTzD
zKkGFHjJHZG!>aG^0?_Cdqy8xBZ6d#4;CD5|<6wJoRUoLv{)%Cb4;g(00KoBmf}k}&
z-H_>d23ioHrR)b~2WfGVRt=y7qMdcx6GvXlj!Zwim*G}acHc(-_{M<g|D3*Zcg))T
z0(g+fkx^1Jgba}?odC8jKF{^sMEU1t_c~_I@}9rc*fjXe<}-SGbKLzvQDtuF-ud~@
zTtHC!cNP%FftUk?yyrM#P;mZ!a_@bN%(5lG!|z(z&8H3XN#lMwKozAP*$s2`5M3{{
z!?octUViL@`g@q9k4`n=&~OxgP)Bn`Yiu7|oi>Qu>*l0RNU+wfUQ@re*?gKee5^Ng
z(T9n-oG20I-&lU~4l`1tw3|0-Pb{rC7>|ldHul^QC1RSMOT^G7YM@fHrE!ePeQC!w
zlrm*`MlErrMe0qVd}aahBTr+tG$pyvf&txE9f5~Q+PmX|B90mQsJ<jOY3K<0QSp#D
zSA~W8)bMHq(S+^Ad9I(#9Sff8<IVh+5!NG^m`QVijVH?P85lW&-mITNQDaY7v;9QD
zZtg7bJOvY>nC_{!fofbK@~M6w(vNULzhom^gzGTN?lgL`NbV#nW^8u5xWCMvwb3q`
zE_$2)Fo9q)X~jw9<Ud`n&0JsB@VfCy?VOST!$`?*Zx}$MQ=k-&eN&ARoG@o+S)2W;
z#27+*>eB{|b?FF?mB9N>a}rtfLvdhI#dNDd>3xH}MV7<uC62*c96XY5P`9yel{H`|
zwxG32F7=dhE>uWpcNmNvkLhZPv{_g$oC5DR-6o;K@^U?&oaYOm1BLaJ{d?h=f<a;M
z((#1GnB6ePCreRC{@kN)XPKZ*)k0%{22;bw_BUqkcJeLOW|t4D8F-T)a@CsgIC8Q1
zvtb~{Y-&8iuISxtE+>P=rwPY*LHZe^C3I6%xcP-W^hgHYCUgu1?5+X=WS~hEwch1z
zM@$l8Jla3PM@i$wMsmp?WglIMwm!4ZgT|Z8Abh`FP|Aka5IHHAHy_)CP2;nRfqsCz
zB|yWESM%MA0cY7dBABI5rCSL85m&!F!Rn}Q5uyNkLAPH^)d0kN@&?5j;EN4`%|Uju
z7_t2b1qRSlp@9=E-#J5EFQ=60^cN@iJ65UJkWnRV=30WC+TD>~bQ#WU+Ea(3ky_4D
zlV3`mX({2)xq(i|9Ji?>#rtfzbwqVno##6GuhqVPM6)9`tUpDKokukJwrENj9zQs7
z9^Dk)<uN$e)N3#hSMGZ~&}=Qol7f230PwhP5G!i)$aoNI*hM4jVN->Lnp%v4g~vK(
z3R8q~VGdV+x^+=e(K&!kQY+U8o|;=0cyJutJD+`Cu&n11mi5iy#mbc5Z0HCTE`tqw
zDe-zbcq)eWWNZdv;{$F$lTu}{2OS6E$kT}XHtW-}Psam3f-Rj2NRs1P)4ECJ)d#l$
ze{7#^_v-?d|JFyreqFo%BkHtK%TBUeNSkj($VEJAH|xZm{Zp0YYxhNW#uJd8_G+;;
z_|>LK7~y>Q`Kmf`2}POX-nTBcSa<HU+_JXj(|iAB)bXpOrFR5mD?NPI%o_?Q2530Z
zoX`rt(5|SKcyEEkh9nIw?biBF#!qo?b1@^{djgcT0l<#up_J6XU#%_TD&Ple+(1uH
z|82ptCT@#8Rm(}2)=7K#dH%`g9I0w0_CWm}9wv3S!U0A!fvK@=@pf^C4^S_hFB#)3
z$i$|4RhUe|Fgd;2!i@l9c6TY{Jq^zJKYIAoSSTJm7XBe!!>+^cIJESBiMTR}Fc5G{
z_LB<YSDH?J(?0LAUVT50B-Rs&nmEMj2XvbbnvUET^G^WimwPL4B0Fc{i*`|&37XA1
z?%Pa!hKbiwP--qzA$YE6kf;z7Zj0ASL8uR|M8}!=t!8R&U^@{)`qRi2_4?A24b9b>
zHX?L_(rN_47V%~(4MCF5!*Ka9%ieWbl%wnJ^q}?cawL+1G^&6dYX)@O@v6N~=A5E&
zxr%i7ws=s)gM3&vdsxOeZ=;60e{v@TR}30F%;(wVi0%NmNC-$Il|`MlUPNKU4eAr7
z&jQ@h#U`#*+y?fbO&@`~pUg2+PKY5KiNW7;(pe(hc3<Xgg#;T;<|bXZ_bPqGAdowd
zv`}f)G16Rh8lcRT)AsRF`ZDAax8sTZ8fgMq;g2WGuD;7TX`?rRZy1iB))25BPQQ$Z
zp{2JN8D!Nt;eS#zz(3-f)q9i&H9*hgnyI$m!d(#mUc)$^l2So1zy;-C)TIatSVPvz
zq2YG8#^h8MxUZEhS2t-Tt{s}ct&Gn_iEFmgYxIVD!}Q2``OQ-552yF|Jnj;N>1{Iv
zCgzx6n7(q<alE(f5Kri4ni#58+YNlP@5C}?hsng!uwGBB@l|cMM(_h)hX>~;WPXdN
zFhh3k&241Jm*LfqNba^L0;M6c4LbZbzRaSzOBr^Bs=CE{in#af4B7oGjZq=_7<}oB
znPm0Ifs?{S!M01)M2m42e2gE>h*!_@&prF*)+c&FZfX=d>MqKHDb6m_FZJ9D9uM#r
zMqASOY}V^tj@gUOk~<gs<!nG{xNK|ElbC{V=Mj$r6aa0qqMg!^j4^~i(O9NKfe?)<
zp@worgaQs@Y80T0o|P}iU=N{gY(A%eTL})Yv61j@4-f<0k!m)&x?_e#_d8KWL+#!l
z3}LulIho?$K+%vBNj>u246IHVTjEf5jx%!oDJ$%uWPj(`MzyJLF?zRy|Dckj(k{Os
zzNOQ`m#}*wVXv1_U3lLnLmmzd(byr{soW^{PdMmPU;3<m40OL-2xb7pEw6~7w*^$d
zR~zyUH+>xGS_&Mb_|q-t;tm#QCbnMDRhJOs`0efO5OmzrMJB*r=Ajc3n_DX%`Kyw6
z|M+mOLY4y!=4CYPFr_VU;>N-mIqMlXGSP!#HlL=$q`(~m*`RWV;;@85U$_9Sv~E4<
z5$;+TNb1drDc=VO?l*KPt05xc4A#x#0Tb3y+NF9vP+*9O9s3)D=KH;3*u+sQH#awa
zW0geOueysK8$cyj;0!J#U`2PwMBHD{yF$3`c!LDdtF~hw!K-&eAC6xlE*-r2ng1dO
zfQSgtpb`PqF02#~mj2fxD@#0tdWe~EM+fWmAldKo!(x5#CC)V;+Wx#q@cHFbmnhR8
zt3cqYbQxDl^Yg-wJdSlkODR%KrfT`8bKx#~VCm{!zSVh_PZxrZ{glTu&$%=H&W$&f
zE;P>;CaUG@^QMig-Xn;DwwSS>wDVbgBMNaMs_}lfC6g{4*dcoq!N3QEu`tX!#aHjl
z-0dTZg`Oca3)`XFg{kiH<}2{(#d^Ehk8%ghePwtW5ZBpp_iytHHH?&9`q1vn9#tlW
zmjvsMXPf?6_x4w~pumSD<K%So*Gt@Y$Aik89?a<YBQUjfW9sLfL7q=^e{@4Gbb)O^
z_pD(obqDPfn?3L47AJC3L@!oh;rqXV5_(aXIF>LF|4@dsSpACH1OF!8Z4A*$b!z0l
z>uVobKoeat!Fc0@O%h=Jo~ve#J{OGp^Ha#2ya%Q03zazZmc;d2O8_J{qW*@pTK^a7
zO|4zs_p*L7iH-4-5((p=JET1KV*g5Bs=A~IiEnxBiy1?8xah65`ka>A<1Ox+gv0Jt
z0ia#j5K4<mpRz~72-NMuf8J#x6!*KQC}kbTu-o^9jLq<f<gU98JA2=cVCC+A<l&D&
zm>|hB4Hm}!#}&mweRF5!7@Ss5{GTrbNT!MkGre=ooA&D)>B7fe?xG4rorcVL&Hn<g
zRtfZ0MHF>B$OxfAy*n^I1gvRNeIv}@pfB-9@YvG<`Qtt0d%HO<-M->cCcC?xWXk4y
z3IKjq-10VONZ&E8>p!3{zvRJz9)8|rm-V)@uk{C;P7Ivrz<vE~QO`~tLzI8sST`pG
z-OXyrVMH)>kc9CM480hX*3pG(74qo0-mY`Y5Y~;;*ISJq6Iff$Q)L}pn{r_TQ!Z6%
zJ?(J%fv9j<W`}nRll*f3guHyiG|1_VG5w*8hd%dz!eNj^ykQ_9$JYJ}*wf4E19Wj#
z@PN|60)@<=Xn2z)Wolko2-(nhyRJv$?I7gxBY%(e<#|43RaL28O&X#wwe>TRm8UIs
z3}lBOM)|MRz4(YXyQw_uh|$t?la|4-U$n=kRn@l=k0@(^s}_In<E)lp&wG8Bj?7ni
zU7TLk74UjR|NheB1Z1&H1g>=d$bSD8@BV(|!Z2A;V7UDu-npaJRnNgNW~KY9YLmlF
z#iOqB=mhI#y1E?j*v>V%)i`6n{I0anAlt$;mI5Fs`*G5*z!fNS{J{^4V{|_I-0)R|
zk+1M7vwKn{(Y@guqvyxFbKp#DmZt8%rIWAx9)JP>hOkDT*ZZG7t$%-CR$$vuNVM}`
zwalP;cF)gQY{w=CHC5U=EuKwL(a};n%R`D>F3C|*s#2+D-x(}NO-aGCmZjOtSUzO}
z7u_n|5~+4Cs!EPPQ+qY{|EaeQ76C{^!BFu-|1(7YMJNKWa1=HsZlsAVZsrdQv$IsU
z&hGdQvY=42RB5ol-U)WtOibi)2_9qU$P#5>{lb!li_E{ETEH;;_m?~rm<^5!Z1~|H
zeEq+FDI-qcp^YKV<%_R{o4#%f{k_LzLUwS^LBx^y_0P^GmYb-)^1XL%ooefU)XCrD
z9STfbWegDCLPD5M+!Mnlzl1^!NEx>6v0~nN;Gqj%kfl6Z|CCTO@7+xC7$-NKn;=P|
z=fw!?&dMRP81IoQiL{YZZk!MNVWluz{nMQ&MSS5(aw!o{iD(RkIBN=G;**B#Xp}gv
zJCE6@H%o>6AWk6qk(ZNZ`nwCc6tjB`)i>eWO@xZYTl!FE-78M<g%e>3RJj+c(b!5S
zNW7oa<kG)9|JUI9d%0xdz|<h?Nv8iV7)ma&yoxS^<-^CWrmCa@95tFVXRTi@19U-t
z>EBGu3%H;=yiGX2Mr}x(sCMy1olO(#EeBJV-(0;nU79gHm-|@!sXzZaP^Gsq|2a97
zk8aWM8Gq;wqead=e^$KdOkGRI!>~b;u?XqM$h!!x_~ofZgYi*@%BSA9KRaa`svG-K
zUkDuLm6clZUu5qB?l#C53DLbuMH<b}Mk`s->so)A4|xO`A?wkV?gjC(>}>XRI}^iX
zK&mrcN=c4V7WEHY5BwU@4jcNvNIfA~fJr_C%cc6ielQt+t+%Fs$}O)v<LWB;jLaKm
z#wIOEp#<(w81KVrrYQ5iEft`HQ)5vb0x*}a^4V8f^5(Fmo#zT-nul~%3E2XmiypW$
zzbg9UA&^(Q=}6;1RT3UXu?&TcLddskQWqdgsFV(hzzVo|hH~p6fn6`UDs@d}G}k4g
zPUuYz0?|SJf!t)DOQO{Ry)KuoY3E*+zy09${sE6;ZKNHCtC`tg9R!8LXHT#ndGAt{
zy}Z3d7!X+0BgW<(0Zs7&#r?65{Y6=W>_6AQ@K*I#jd+=>5f{ThM-Kl2L;*9sH?lSD
zC<yK0xQM=atxx;wTb*-t?pB%uV|q*jfz;2>QTCe0S1m_u$+sU`dKy-!=GKzl1^TwU
zC3^l)6KewI6q4`~Aulc8i(4*zZi26f-aCgeYXx;c81spc+4TR4L5aOja<L&IdGYWp
zIdmh7Sot*&?XeN0J#T%K_yLpw5?7On<~?vj#z7&E7AxJd;B{>Lkn~R=^zTaa?;mlf
zfjNsqeQxnL`uT4QsTjP^wXb$JndbuH!@Z^DTL3ze)zqYoO;9E9;e;<&%B|$klZ@uM
zAAX&&B*G+Dy5lJ(j=sOM9dBNjeY07wu2X0!J6@nr`nBW+1AWGq<F*hoSO4agn(|8T
z;NoFX(lm^fdRw1r6^rT-{Y@+N5AyJW%mT_8?%01?WB=Eh{?FSwmjve4U1r}axb=U%
zR+-3O=N6px$?|*}&;}(0NSf(ATXf^&;|=%sVx$M6*%kS0vt38Uvs||^_Dq*4+vZ^^
zke%41Q|mtoSqA>Y?TT;iRaU9LFpUGS2aQ1gUbWf(xs)PEfSA#!|9yS?`?)xi&)Eb`
zmaTX~Z4Gwc{nbGhAY*+c%&jzgjMq6;D1S<(q{#Y%ksD7umi!45z17N>{VJO(1UjCh
zm_-bn^iUJe{lRkHuwd)|#0s_o#J1E{Zw=o69FHN6;K1sdIEMO~>Xp#Y(C>1VmPL~D
zE!!jY@4W*iXDA?2FP(n&97s#v0B0`UJIB9;myV7B?bW{x+kYPxRK&n^#zJE#_|I?f
z>G1K+asL%H<0L_jF)jZ>l9%Wf@7&LUGvXQ46S}?v@ZFA0lt&)AG}k%MA+if=l^yx*
z!u&p?#_LB%sU_q>{EpT&83*uZzfW4@1EIH?d=#rlPNn1qJb!!bKQKf{Xa-g`-{yDL
zyUKhllUE<<q96(i&grCVE?3Osc1*LkT4qp@#)cc_;Js^{&gh1lXYajbm1A*1<vp*&
zqv_0gUbi!R@$j0uu6$a)4`<K`%PVo)Sr!rezZPtR#MW45xYIj#jL{fgZEbDQ21656
z3<Uq+>G$~m!x{65AO+w?5$BRi*>}~JZ!p4K5vKnL$f`g7K|h0@JgBUR6RL?D(tCV^
zo)<g+qLI-+O}qsAeNLIV+$G9r@0N&~IxKjmB)N%ZEL@J;F&cTcB(gj=>XWi)l2lJ|
z`FEWMh>t8%pSJCYpv;BWOMd0HPm(3M!8D^}7~Tr+!!&<v^ojLbkjfN4dE38BhL)R1
zjP8{eqHB{6F!IQ;;rE<u;s#w0#Ff*QDR_%uU&k^o$BUsI5gDBFjO4*|j1mm%Ri%^k
z#(|u4&vIuu2s7;C%%-phz2>yU(Ba0=G#*rCk%xBskR{8OE<@DlvzU_F;G;)Yzb8B2
zk3h2VGS3QUX~=b2WW21G=M_Hk2|nkz$`TLZ?@IU~`U0tGpDf|NupI3>Nme%WBnlf{
zy-hB9LX}LlYLrBMXTfqcMohd_e)b;|_U|9{kT7vnU?8@(w!Q%>6bTQHFHMq#^mS%a
z`IWZ?`T2%-=UXhM<K%g{xo9Ob=I32gqEHC;Ko_v6YKcyf0v#q}gC&J@48xzUpKljB
zAZlb~WzPYp4Ecpj61NJFJpOVYc*VLF0T#pu_)h1C6(jxILkYj{>i&i=m{_3R6D(Ln
zCH;$(L@9OPnrZemuy5tkER=@FT_a{Fs_gjo{n@SS(p$o~bY4CsubF4X3}U-PysC!h
zeiKF9<+2K`bblte(UfW6bQ2l|!pd~!1EQ(lsuklBGuECFGJFQyj*D~dS0KGdA5<VD
zog(*zNTr)HSvS$)joFGC-k<u7%VqhjLZvVIC#f(HOv9x&Vl&O-?OJZeIRUj{%tBxK
z*^Au~DehuntF5!HcomE75N7o0@S&84cjZq`W9#I^LIu4)MFdGFTq<^EJ?P2n*>7SG
z=AHf2l=;?E{B3VhbAOoS>o4CbWW{2l$F*VXt3gyCetVSPTN3kw2>-<E$*tfOZkkv<
zn#fp?P`rG{9Asb9$H`7QTeI)k0S<oAyXrJ_1@@Yo2a63FG?XJs0YR1<1#+>EZxDB+
zl*yn(K3?&Swrse+*($A_whMxTuzk`*9E0R}#yFb^WmSOOUp{}ow_L5+zx^pjLaBiI
zXA2~{Z0kFfj^DyV7?vkd@mta|T$682EjjkqFXHdJ2mLn${@3FE|A&qq8aSh!IJLh1
z^D9D`)p%HD&q_PV)x|J82$Qm3L7Z^vgf8k5Aew*TITO(U(8`MdM-A_qC2}y3ol)O8
zJXB<gtc&_$XXIo?JTZ_NjD$7Jd!zMAWCDoL;~F6ke;094auDO!0vW4?<B`0reXb)h
z{WnKv+g&)IP~iwO-o>OOA0cL-ulP%_tM&(&Ok3^Hi%awdRHEy9!8_D0eY!~b!(Wxm
zAO@-2DMotyhY%UF?fuWQT>D7{JJphLG(KsS%Qs>0q7BpR7xTZnL9rVo?6E#1kReLl
z-)|>J(>z_;8)^Zh*515s?GI$&_io^Gx5ft(Mp-<@g5gEE`jIQic`9`vxdMiA?>yAM
za!Kyx!x7VU%PxA@Ob(0&yz0l7YsB9pnO*mGuZ=pBXvO4lUN4BK`98k_o@dyqGP~c&
z1zB2~yB$m6V9a(OEV~8}+z<RNg&jSix(MT%I@i)A2jjrTGBRm{LBO#}x)-Xe@?O{$
z46%dtRqXwG{7hW3V!%HExPRaI|NWdP;I;9!mAQw23{bkvhofykD;OALSgbT_$0sBV
zA!Yy`rd~j(1T75*xQcNpo`g|(qYB><Js#&m^!=`%7#$^M!t=J6Ep4+%dPzM54%%PY
ztm6RZF9Z>oyT<7-tvC>3$V?*6S5s<9UA2Gt#`5Ig>7TgE)pM>E8Rl6VQ?v?AY9xD&
zB11v?j|PpU?33J3=#cJ$$Za}r6)B{(zRx>eS!naSNPC@3>a)41W78*v!%3r_95=}s
ze?TJ0YZHt(zFaR(o=PLi%P-|df=b&XVJbIqr{I8$vdNL-cB0%aVISp03eYNL0M_hQ
zVu{IHiu@G~0}UpxQ$j=o1i*UYO=ZT^>-l)rqx3P?%TB`pv;$9d#~Q@iG87}Dg!=5W
zx!T`?YCoUY!2-sGemZ*XT{iX@z6{xN`ToCmHvby@-8eqz9B{dLdu}96)+>A!BCXJG
zwV0^3={2i+!#pp^kTnwSNfD$T1&E1(1u}~nAr{E8Noi}=SiNy)>7$6zisY#R0^pl`
zj>*pJ@UI~Q#c><&E%;ZG;w!R&tHx$c2oLHqqw}Bo85Iu%6;IhTSEi+=<CvaB35`k_
zqR%>!{^JF`x@W3~xLJx+wYbrGxu3Y*T_yt_6qWsf558I2I8%xp+5pz91dJF&lEGHQ
zFAUQ@{ku?t0{-+0GG$&q1MSjHSR;E(PN4Ps0Ut8tn4!Yyzjsl8|3(81$JW;yz*BBm
zz5qTgNhPJ<3fsnG)|kkxmPmR7{`R50O>Q^+uYe@Zm*8N8y<G_^SBqr(h4FF4jlD2C
zSQG-Z%OUFFELgy+B0lMD!%64a!jG%pniSac_kZxGcqOHXo7@!>OuL{cAKW;Jwl9oQ
z9sS%qMJDqB4w>LJkQwcOUTcp~IIy}B0oZ!p#_c}EybxMfHRd!oaE4=lAduKhFpi;V
zwFI7$$5n-E#Y3VgwgSuf?xBG6YaNvHec*yrNIR?ciyp{(7fH488Oq%m!{E;QWn?*~
zwMRwuC}q%)W$t&j#(d^Ov!JQ8=6wHjc^@fh$`2~4pXuJU?kS$nZ{FCdVF^CTYlz50
zz40r@(#XW>A0PKWHjm7<jL)2_k$m5`>6PqszPwmxXUy_@(9m?`&f&cIW@%-IfwgIe
zYbO@Etf9zuO%P;jz~^{_T!LuE*NqrkH8o4C!JOlUH8PhZQ1nOUxiryQ3z4DuJySI7
z6(rVb9C!8&hd%;Yo56ab=FRNXcIF55kRAavS3%tw6txmjhGM4*DvZH1y~0slOt!(J
zHJ1)oqQR?P+HWW+zZp<|f{Zw}VYmA-=4fGbSBP;cqbL^wXazX^GwH5pBMx<0g=ljx
z`ZiiwR_M~MV-qKaZ<J1w$9g&rx^)75SD#6n83xCPZaj0%r`?g)?ps+=Ze%eGf_Gq!
z%do3kPt3i>78ACst|-GU5*IJrS#C}YtuYB@Jup3Ol1QOsNLNa55N9BgNm{8US;u%r
z^tP{bY^^tvJ3J1%Sby{xrSX_ioiMpSN0vX0XlRwpzPk?C;p&E?EFSzM_06qU+;Y=&
z)mYaO=rSm_&gBlzMt7AJK|_Or@`)u4UroKF;86OqOlRh~Q!}Z7c^DMoMJ2B|M*2)g
zZhWu4U$`VrpYXIMnXV!Io%YZ8r-!Kh@%y%o$EC3ww^Wnvnrhi(PY8;ya^%)`*yltZ
zE1&6mzPE-GmpY$)>A*a&_Pj_S7S6Z%`F&=x1kk?a1KHO_;i;*qwfLT@W5D~PtfQ;z
zekS@E&|4pA&C>D#x&ZkTn^*5lL=Wbzm&C#^MJhNyK|RhTSp8_+3K|^MWq@>K#)Bhl
zHD5{n)u6{NHKP95`3tE5BKW&E@#tIdHC{loYgZ|sjxLM*u{newF~;i?&=_D+SjPDy
zrXP#c4oxfrK~7*xJcy=90SEW`&zL|^QKSKXM$xFQ8Z_qc^KeAKs-PO8gQw>om0n&8
zf+U%5isesDyU?SGa0!G!SMn$-*0@F=MO`BT$GfZY>o*d<SuBWX!bP_2D(#2H&h4UZ
zF$ghVW)TEpcugk4h(a-qAX1PsS<R*h%I_yYBP<Q(4Q-SD5!bRduM2$BzO=l25zpR4
zEihILD+mVzSL$o-UJ!|8_f_^{1U}ujib$&W^2}4~VZI`nRSUtt$br!$?82PBC*D95
zPJ-}2p%dj`zLej+Qtw4RT9d*+=%=FU=YfKK4UM^FH=@ET&QBZWm^%<svQ*#1M@mpl
zV7>{^VDiyS-vs#EoL9v(r2eu&{!BrULS-jaVP^fFOr%~sWTuTA%DUr}7|L+Of{o|H
zZqquCA1PF9Ng9-Rd_CV#8jUw4Q%^;EwDUxmn^H+Z3w1B|9BcgddS7|P8cH4#Vq+cO
zluFFW1S$_9+NtBg^k?V#Qe3N6QDTP8K}$F!!uFBaC~))FyE=`I5n@^h@Qmy8czkNz
znZ@{cDWh-vfThj4ChCZi_-9&&N{7gq2~kP-MaDkqsz8U6=PY0?B=$r0ru={|xN0au
z%*&hf+WUd?QW6-^rtP%kz#@b`!7FT<Y<tZy6<fTBYyTL53LBCVzMGv`kdm3%4lU-Q
zHc{q@4j$*fWS7!?<T__3$lAVn$I|^%tviA_nq|027#;Q3%gTB!Cfa%xDz4Kl@hQOa
z3Pp=%`#cA*{GaY;T2z-9YFEL&Xs4$gs7eN8FUKMB%>d@3fGO9+6Oj8&IJG=1!MR<R
z;7%iDEgvs6z;8m+%lE!&*Y{7i6RcH<LeQ$G=$!dp<8|Al-vwjeLwV0KdEDEJVu6ZD
zzYAo-Azgc*?bWYOp)4nyEqb?(GV9dGtCx6X7Jr=P>~#i)Eis&kZ)-RvI9<bn-14l8
z-Fle^kJq)*Y<Y39knV<T@1xtb#S~I9ED8}1j^x`Z7=F%IH{(_)2s#iI_0&?UlT}(+
zP~deXfC%+g-S3#kk1mfuz#91sKk<z%OKxCCqNl1_T4MLTJ2Cv=J4kepd4M8LI^C4Y
zuNND1tesLK*f9vpqe4;iuORSGP4_P(85-y@z0pf(mU+PjR98x_jo7n8kce}QqE-Eo
zZ?8@*R*RgdDR3JJQ;87V)k6~AxRhd9^G>@pPbRCcK}(-r&kInnOJIKWiNpen(rk|h
z%O}dYduuPZbLYDQnyc1DC#DNNof?<0Rz>QjDVO7=kJFRr85cjw=I0{o8zxFXa(V{_
zMt_F4I5}Fi5r>141h|S0Y>+`CCeW%Q^2b6ppKN8<?gKGYR#06B4>dwza9c|nou~nC
z!J7f<kT^weSRF9>iNesz*A_Y67rpGFH`F1%DYvU%5p6$Wh~!>*(?Kch1l~ZcLr0y|
z_MFP(EhOQNR<+!GZ6$u<1fh2-O}U{K9E^N>J`9jGj{JST+V%%W*oA-X0qjTSEF$lA
z<Ptr9bz+Tc!{RnRx)B@nwq7Qu_ScZ%+i*he)hmju->Z9I54$)dr8@n}`Jcz)*;iyd
z2*=`!=CvrRvQR6C8Zz0t`!ZW60Xj%y{2p3}bvS`2+n3%VFktkL)MQd2At1}bw)c>z
zrsgxnRe5J`-_X^^wjg$ol{uwsUqtlZuwmxZ-!%;N-Bgi9q@d3|YEKCzSq>d`fps($
zT|#v{w+YlB4YO;hhmu5eiVybJo9ge}(tkJM+Z6fsO&QDJivuC`y!<kM#ot<!`&XFc
z+_lK}NqkwOx#C_q6KV5=#qi2#ev979a9|JOQy>_T0_a7}D*H!_Kg9R8qOb0Va7yxD
z96%U)Uza=OW$?Hjh^X)TB7yQWFZdtb5#HkjXo`F7f3D#X!~JRfUR)JDE9DB=%>Byk
z30LeM4h#bZbV-?siMv6|d3j~<Lz9;Ex<f7oKFq@c`lyh!6$)zPN?JfH4#E)B_)wIe
zpFXY1pNDUd=s0g06%zv}cpg)rV^08yX^u*PDv9)K>sJQpm)uVtk9TXRUJ^k;L6t@W
z*sg%h^1+0D3bJj${V3t$d;aS^MfbM-t;u+%q_UEdaLa8M<GmTf)j#tOi5uKx?F;L%
zKPy`ckdH+{y}iA}?v<;sYw_&nm-@3<YtWTH2iMoXyon^%3Iqs$%1<U;s16sXGuhei
zg>E6y|4u)jHetY<WDE@tWe6%*=UkLxd4Ju=w(9hU-ZsP*`R%;{pW(?j^!}IZ@k(!_
z>T|xzk9U)0mXpdD>ZlwOpB3I9Ly+oW3_wKf2Jxn0>M`rI<fxUwW$|Gtr-?-1tEa(~
zxq?mjqQqQsW@wD?=>q<IZ{AsA!s<kZ9S_xC`$8ba#i*H<Fc1opja2v`n8}2RWY13b
zSoWT3HkGN$JY%8zW7n0*G9p%+JofiqJ%+F=ZX1-UEq=O4b`sDgR7LuS$;Rh{emQjk
zU8=*3Hy)wW6;%~;3*e{{ZaSE5Kd>^Uod8VkG7pVjet;j6s1&mstbni2F|%HzAP-ZD
z)1ul}I#La>Bgg9S9XAn4c;>S#Rdkm_t;?I6<q$){wRu3H-BNRd8yTgN5p}<IpE^9G
zPZ4#>3Qm@*+`;lnOOY9$BEknp5n)nGz(E^BX&xmks9$umM$90bAk{inRT3O26EXgf
zMAJBg?vk0@J^m(dr$JM7+5|W5t8uC=-?|KG6P6iz1BC{*Ny)^nRDu=u^SpXcoRb!S
z#ROyYmZ+j$cIp#xVBdwD*-bG)=jckw8hxbpS_^a`BoalE(33Mo?$XSg=pvb|ZEPs`
zow8;1-i&>0ZRVx$Uc1f^rO9m-t|*q-r~Y=!9iwH^%E}m(txvMDs4y~8J1D9>1$89l
zQ^PN!99)Aqi8TX)SWa)x`sd&Y<AP^G83cikBv75}hy6G^NlrwjkPw1o)o_)B&i;5a
z&wdzoIZ6X=H?YXZL|y?3sxB*eo8|}a`X~?5Q}S%N3vME64lNA^Yrn?YkKS&NP(O^j
zQCqGV=Q&)Ya4ibjYUM<=$yq?5HTSH+Jz9Db8XFtq<Cm16J~#6NnkEJQ@WCagl_DV+
zV)A{!U&IlfM!Jt^L<<L@I#T=xX!Kn5Ma4)SaxO8yLMb&FBQ<z@IB7`%6x3WB>c*w8
zy?WI4K;T>~C)qVW9`htP<7_aM`|1qV5FKvW4Ur@jwY1ii*ctiSWAw%<vr9q{1e4*c
z)8ST$1{Ukr`0aoIrhE%btRk_~<{X*0bbvTgGdeyl1PGd<z9Abip#A~$u09IT)kd6c
zVJc{Fh2Re~o_<ojAX=7hbgw%)0e5r><C*QxXbi-PK3#dLscm0o@|}b26Md>TM)Uh=
zy<G?hrSVkf<gq`)Lzo_-=)lva^AO~4W2eKz;S}W6s!4_!P%T$|C+zvE5KMdh738zN
zgoh2PZGZT_Khp21#!XvF`h&zOxr5=I)ru?MrF8!;j-rtF(!5+YOClmGF31g5vR%fo
zjXg8#w<M`x`;;XCi;y2LPbmiyu-*ya;D__r-@=FMRYtnx9uN5>Qsyk2q(S-NHW;(;
zXd%IlCF7Px!+7e%_kpM&=isMbi0fNve`u7Jynin>2Y-yrV|~U0GdD!nM=Z_M2Ks(N
z$Aa6qXLno@I-&c_kM;vp972%KUmEf4E4}f-i`n}~qX;tQppF5o(kXr~*oy&=cbMRM
z?)h2ipcf+^)lDO4Pb-+f%Qc>;JIllERNp4(Nw%u-$?pX7x(dQ|ai)cbC)q<3Ta|j_
z>QaVTa1xNaPPNqvQwPuW+KG;|9myhanVFfR0N|CP%D@@X!rD4VU1K3xgehQ|hIUBv
z!y})e2WcR>cPp!aS05;dONrXForV3=!F5|zqUFMib*+WI8f8#a_2tjW((MB?!gF!7
zT~x5sqHUlhN8?Io1;Pn;N!>Qy!iO>{Kho!fmCL}}A6?EKp=p1vRE0qIuLzTU1CDM#
zcuZyH`xc-V+ff!N5+eBk*g~=WvxOR(&nyDAN`E){Xiyf*wJ3(QX?ut;Mb(qyi~PVw
z6947Zb3na|{=k?>tfQi@pJoOw0XsN2ti{th?v)wzVEuf<-`h3}<@=Ta8fZZ`6BQX{
zE@(#~|MSmH01gZ(2I^;2*Az~*_rsu8++&O&9zPp8S{+|0tu>|{=`_^gpuN}s6Cb%E
z#!x-TZ&el?(2j+DRT}GLT=B;(Oq40g{d3!<K7}b85&EEc`Sw~oA(-X6;~Q%$-@3s}
z2yJ84&s;9Lr2$h?v`a9>8&%|GHGb-7;7jLIGjC?}&m^B?R$P%JHv$F7$q5}+ga&&0
zKP{rl7q{Pg$wwugEx2llSy}I%A?e{YRTRy9S?(J_3|)|4Nyw%UOFX(HFQ<ekIX{kI
zFVa94|MCWdVv$sU&4dR>!cWMJNB5MV8X<Y^^CFzW_nrU8*IS20-M!nx!%#zaH%K?q
zIfPOY(ji?6(%lV8OG%d?A>Ew{h;&PLcQ@|`eV+54bFT0C{WX_>%&=$n-uJ!My4SLZ
zuGIfbB1OO^J&m?2YIuxc43nWpS+GnPu$hb>G&#KBIiiTti%_gF6&e^zel;}&yTRzQ
zEUI4>=b)r5t9XH`Twz~Rq-2<w`Uv0VE7mw>uz2H#{d?f?rp2sCe<}wx1LWoLMTCsp
z-K2^daS78}Fj)%ltAU9qyZt6{O#?v%`9B$W?2v&&+<>&tZ6JCAQ=%Po6j95ZK@(Hj
zO*7)cGn3zcRsQL6@9y&_iilUPp`kPK3zV1R>OsyBDnkzC&jL4r?bYwb#+yd>XX`Mg
zBSja!3}%XDF3~yzoYp-#MxO`0ClMHnnb?2V3(^b<Qn|8<6)(7v*$fn){{9i?9bl{>
zo`FnF)>TTjKr@uYDcPdBP;0F_PB<O;j*aBGc?5DGtP(sV+zLJ4(1w6X4Dit=7II<P
zpRNepTd-Hk5KiXknJm$@-reth(eJuP6u>hvIXT0Fq8)O1Uw$Voc1BTbhnbC!`|Y+}
zP_#RkAfmRG7mvDAC)x_}YITN%ojpG`Ha6zczlOb+yFO!CJ-4{HUq^(Y2XY?a_|a2t
zG2dH3c-VQ>qr25!L{}v0jE8UMwrWGBJAwCay}}Eohof2oMu3sqtq0QtoHmjzm}o`b
z+=>B%Kt{gL(g5Z{t|3|+z}E0MGztPIzTLAoD@Rl0*dYZ@Yf@6b0cM-e%6!odd?h4H
zRQupzfck}h1k2CLja6YUKtRQRg|H%p>cefs)y6R{MUMlYZj4L04-)cF@w+{?G)X{z
z0Y@vg5@6NQ_*Rh5)J(<FC{-N7(X;aMt-qFRPHlfpefi{SsKZ!E7iyNCv1R_vmZ%FO
zu0aJRLr<jzZ=u`Sa(C6%RwqwFqZUm&ag&U!Adp2#fb`}tSv6$>(c1`XQ7sWa_f_P%
zigcfw%TN(WC1(3IuiE7XwEVqjd=W&MkS0MSdnr&Ei%elpKSQLwdI}zg8i6bG00kSq
z_$KgK&?M22AnVLnglMgNx~zYYU$s5yWRT?KTWmi)3iXiF->1FY8R^Ym5A<!Iy`}bL
zekvIvFr<q&4()35Mk_8>d94kBdPF<RFwpRZ$OQhZSs5nC86r%xopjo}-jOfT+rSJ(
zC^g)f1<STcG&F!YxZBG)y6C<BC5olTW!)N6l5|6+J5`qCPV*zR7v(<fZovh`6vB9@
zkW7a2$D)H`W?BO)r)7iANRoHy7K`#>m@!L(S>Kxh#j2NUu3la`C8j3a(lYMB5a5GR
zh<liXnk&el_T-w4$Oy;YcIVItj7LqR_y8u@@WE0*qH*|k2#F1ZT7fE}14E$OJNHoS
z{Oht2UZ0Xs9%V+4TThtQ9LH6_6Mx)&t4sQ&>;e<C&anVvHDYoRiU~5QdKw9l+eYpT
zz>f%a9kzonO&9^JIUl9t=oCg3)WWz}GjHcM$1lT0^_$%|?}6{|nVDaNOiGZ&w@ohs
zaCvTO(PjVTf@hh11S)Qa#}LrkXU*ESiDW%Ig-zd(!}6L7IIMjTl-8i-h`({OMenGm
z#PlP~@7l@nI$UUhJ0X>U|L`elx1DqboWTqjOR<4}e^&$u74f<S4=d;vN_C(yJ{1M9
z<p{>n4ks!Qif=XBZt%Q;{BpFNHXymAhF*c8!}I#>F>*>03c{&qJs|ZSzyD~p`!&@j
z=P9kYZwqTz0&p4EGiSk)b8^G#uqAl@P@gZ}|1?C1C)>Sc*ypvQnwj&hw6Tv8nuEN$
zn$|@k&G3Xtt0kEeD(AGN3qM?~?#wND{c)&BNxHoFsN@x3hl(BOzJJv1XMyzr&1H1a
z*@WfIY&{z%eMYd((OgFr@+la$>dbXu80TFMcDJPdV!j)`H}JmkDABn8=^8>%VaAxd
zsB|U!>ANM#BG@55^#dt9%zLDcn>VXQD=4^o)o<Yqo&l4*zA`<>0r?<%PD0kOQT;#2
z-xikgLAmFf%`SEC&p+jA%SJ}K&+F$lLzH>Z6Syh1X*uhq;dMMEkS1qv&_Sj!*4D`I
zL~zK(T8%@KtGcVzR__~s57eadziE*p2|{^mdii@<^oW~7*&o~btneIx2$Wc7r?9Bi
z=~$Iu>z7w{Uy0ZVw@m>9cFCZVa1N}j+X#H0cQs)Ros%83$_L;9ZcFqY+(gHpd_HTG
zs6Sc?hxB|^g~y8OB2*48&I#)mmp#M)M5z(KKk=k-z%V~5cVSb%elxvv_x(OC$r4e9
zK*J9uge4;=IxN*ou_lR6<k;BvjxMg!K4_@CY+RX?9I=?~DDU=(Ne;nTdzc?Zz(>S6
zd9&NT_;lr-_vI_7YNo+fyE21czuyTI$x2^u*eR@POub$pap5wX{9&IejerlA^8zI2
zL8y?NFryq1NiLECL_dl$F)%;~N9P99q`v?TB9GZmM)Mcm^v33rvgj}DxpNZiUGTSb
z{4F%dLr8S%rmU-D`De;Y%cVlFamn$D374(_7Wb<d@D6#TfZ)Hqe%qJS0}@!eU3~Px
zBmxb@#l>v{5Gm>v8`mWd+B?&dX+KoZk8cU6e(2>fA(dltQXI^j%jYl|wgaZ1Gx%&c
zx$CFIp)e<-bb{|_m<(Alb$x~T8AUhC#1+WG2zQ5%4`nC3MkQm8?aYTy9w(GspczR{
zpr*R(-Xdnze<>~BEgU5fZC=re!Tm7JK8PVq85)Zkarv(o0CpNIrW`kKBU!0;ki^TD
zbigo|f{I~MoPh)70-+OTP@G}JaeKTpz4fwKEBW#QFshFNW-=+NU4#Rl1{%J_Fich;
zR@y8*H4jC*`ejPd(ay__a9G_%ZQF+_C5~GSF(F-pbBZT_?<xea_Z|Ctjzr8%fh9r6
z!5hkkh6XD74g!q12T4pF=yMrK7l<m1tI!Q1`bKpnTbEM;(?9LB4`qzT_poE~7MTLK
zewQvLYX2zrA)Bibo3#C#@8A00JKN^3S(?$hGKJ#%wI>LEz$kTUGb<86@MM`pTxVrb
z9yqukSfv&YOm}kkFgP>zHfKk4**AIpb?*J88}VBv1=Yl^4f|~9IOoK`I@98}9+V;p
zf8cC4*JTVIp~B2tQDF?Mi&Dv^$O462q6Yo)qx2D!(D1vW!X^Ss+S|UYtvo6*EHtQM
z)n)A0+Y_Z2f(kz#HHYqc2Vob?f5P*L;h%EhMEdBlU{y;luc41hosOLWLwV$9?=@CH
z$xeL5W*3c2t|0OyS#mO8(|@T{g&L@Cc_HmZ*m9`7fK|ko1;lCYxEy}U;nxj;QDSbT
z!~%yQnn$bQGZ+t{#0HQ4Os6$GFNLj)AKrf{x!j_o5lc!QoC&;B-dx;l#+V{(>-pG`
zX0U+`Cqc#GyrX8;3}>}_x#(-4{kf}?1pi2xxJ%`pWbx`{!NE&`cyngWQneoCl`il@
z&6K_>vM2*CI{=KD`J)6^*M{*3hW?~n17&p0v@^X@RX+!kU$jd|G)CPXk<HrZT(lQA
zsYzLiuQ;W-!59!7s#ecSn>^ECX?VAs79jOCA>0>}3F_0XUx82B)u>C7D_((8_8bU~
zl=P!w8LDXpvb6hPVdH~0Gkrx_wJW6<(Vv=5cXxNEyDNLVC>Z3o5MdFh;cK)Lc(?_e
z>NFrUA`I2fB#kC5lW);Wl~IblVGTQB<(?0B3kdUQSzd--N+Zi#8r}@~KEweb##zE!
zUO)ha#x6J;L}3`V`|keceCN(&QF%s^2zA#^%hbw0m{*2TM?1_4a~F(c3)sfUHAD(l
z!)SN1t+C6%V!FY)ttV*4(_RDS5c#;jx59ar=M2jr23U;x9+4xt$Bh`}2z&5T+@(`M
za+kFBUFsA<p2&d(M3`%71~vnd4H_b>k5-PpT?R&k3P<pQDEH4{gE_K-Uegp`+oKQi
zucEFt@(BLm4{Q;C1ha#NL~o0AV4HbX^}8G)a&B|86>s=@<#n*4Z?AyBJL(|c?u_Mi
zqD%0>bK$lOualoyWYSIM#T2>Zm_BxFb{Lj9!DP#fZzUL?5Mgn{7)*X6B$%5X61(ph
zk;-6%^h6BNE2zb7LdxcNM5PbfvvlC6p5WsfDG)Li85^iH*IG{`ln{P0StlEOIWEa)
zzTTuC=Pm+yKD=#@ZS0?KKMm?K<K_$C@nL}{$LDAjIH-5``uy`nZNuFAYvQ7^25**=
z4Z>L$&Yf&-R9bTkNO{%;yr8-AakJ!kO`-`)lsOspbE{jwRdOzQXfi1STo!}1i4yje
zA0fyV6Eg-@0t*cG*|!I#N8@4i5bfV=DbJ-=%%R(z^VW|eCSF|2Ta8x<F^)Nmbvukg
zdUlpJEAfRd`>Bka8uXAQh=mQH&}Zc+h1s$OlMk)6`X>pnK?Ms1@RMKvpbFlUAb2n?
z2PQ+#ldZa_hm11|)|UCYyM?uVdyHPjOje~I0u_4NJNK6g(q?Dm6p@3lKkW+Q2XDCK
z`jaK1&hGppo_WIqoEwO5QF(gj>i7c>`VXczUXsi3R#!6L_rfSj@1}~izch9b?g9Zn
zH7d;=)C6D@r~340sq)&laBL@3I@cKMP6ZtB<%#HKoMbkNTIjn1(4^rfZwuzK%5sg+
z6VL7lA~{ABco9)^m9B^T+d@FG=c>+F{F_H$`Fb-m|H+B`r3h}j!Q;&olAJfBmq1x%
zW*=j7)MiLoM&bzlZcyk@ZIh^ne^I#;07!k+`WzX=*_)3fR!MUr@z3sk9}gdi79214
zet(HSGarTEW{~jNsOc$33tt56$}$(9yD2N~Uao3&Q9K+W>g9F9LEoVm!yie>_$z04
zK;b|?B~VIX-Tbbudc;b@Fk?YMes7OPO<u%x?}`pvwL8PDx3so83w$6xdIi(bYQG50
z#t=^m0ZKAO?Iy_vbThtAy0^4vKn15B7~^k8aI}^MKSkz)lC97TZyF73+EWB9_#tYB
z9p?{-`z_jKCX~A&l@tq@ey{EAE0EE$df=(RrUc$4ta^>(iI{#DBgI6gP(i`FN2MPv
zrmmSqF9Go3i5I1kGW?DWZf}(E%2PJhIGg1}9l;QjJBv2ppfp;hP|P}-V#_byKYC&E
zu#97=XeB0q|FmJCm|GO!LX#QPJRg&H9&3T+*t{mqi-I`FX<ChQ(Oy_BtQ8on*|>7b
zex20#oZrSg<4^1ut@C9@P0s1hc^l$S@N5dRgMz6QQR20-S4>^GK7p3uhB2O@74zlF
zTQPK)WPjsf^vaHaeb>ptgx}K89?$1#W|!v*=k~$R6=eO%W(S)qyoJ7EGw3aDyq^A}
zPB!kVCGVi`Ol!sTn!(h!ODW4%JyG0WMmQER0$;oualG6V9QIyKM*rDDl#h0OMHF~D
zm%uAry`+D^_J!8l7-eGrM3;TL(r^53?zzb09`57EW-(#k{qM7T)C#cj<m<Gy@=K0G
zrAo!W=-8ODBvYAwrtG*I+HW~OJFOb%7~-X4Ew5LpD)_ZaWuX!#_j+UZZ73sd+^~wk
zUF4%D$Inep{rE4DA1E=E;97x*9U}H#qhtmy2Q0fJ2+aH|CPJp;8Vwvys`g~!8Oe3!
z5`_&BcPzgZ?Kl{2WaZcn53=tJS}xMmGc{r}mdtLBZ4V3!1NWh-`XmX<>BqUUabVor
zb~OCcdn|_HV<g&W(VGHsNI8?V<oU>YdCrs(Pzb^ywKFLXKBbYp{s9PlQdp@#_~Vnx
zjk}X2s;2M^clNCBxctZ|q##<wt9)6t8&l5p-IQ-l=wP>Q79TF^!tVTB?*Nb5$saI`
zgP|J4smxG`;UEx0KceJ{H%0qt2vDhci@z&@FTLa;f`0A@gqIP`yx+4>9|5A-Y~EN=
z`a$gu`b|OVy}r;|zlmnL&aD%z{Al5m58?>JCV~90v8Wl6lgjw8+I+p3KzvYS1|0)D
z7Wjs2%N-d7C2+@CyxMB={u$n%!<wIlg9QR(NAgAQJbCr^(l0|`3?9M9t}3^Uu&i;1
z>HI|i1yd*n1zmkWXEa>>jsY;Uj)jP_2OXb9n%h`HM1wPsScVgWJN|*}`pR%od>Nyg
zc`}@W+>mCcX7yM9O`y=+v<m%S5DilVyp3}w=gsh;`Mf1;xAkSf?mMzjqS6gS`K-GM
zITHpRqj@BPt)E}C8AoX{F!3KVicI@bW{Poh8m)`F;0@;zX&B>02cvfjen+ac@T4yB
zfK2_;8v3D^zGgeLXJ3n#Ecs)^e^(LX)qYX>mVYCX3?t{UM@B`S^}fu_Vu@XDfSihp
zj!%_lsBC58l(_0EcU6;hTk7?~i;IoMS8Fiek1u$iz1D1!)ZP!7w>ZRniT)kcS>Ij%
zJD>Cxas>RbJp@6BGqj*LW#Lsl`ozpWapp5KyH6QHnFe&6$+<O^Q<lV+kq%`Gj{7yI
z4akgMWC6H-qV<zUZ$LlunwZCfNgQ$um~R}(q(o$W1yMU%erKAc+^(hT%ePn62>);k
zSxQb$+vVv6ZQL$CF_!hw_9ZJq@IxniL<-|}9P{-H<>o=W9nUAGwmBq7+jsq26<<eN
zs0;PNdzC^l+Z~_9J8@U`5V|2P$qNSmG|lkfb3WT@9e*C}{Q5XP;!e%7$dcBoX!HAH
z#}YEP(Sg~xa%F<bDV+mDFk4@m8}eaAY~~|8)BfAS%}sN*#Y~=Ywc0pY565xLpVA8&
zlP)go73ZX}$lwYns5GwT1Qdo=u@nYhB*_;tX8LJyVrEy=vs`n0e#e(mNF`v^6yrk2
zR8$;FbF|=jxcwfA?0Tj=xsuMXU}pJk((mP0Scc$bHVUxW$>QUKs|Ub)Z=X*YXdcQO
zADl~Jkp<u%bZ2}0xLv8SnktI^jnWRi48NSeVhc!hYkr)hddpeLgYRkJn2gu0TuOc6
z!Ouxjojm)yg`}t92clI`Y3*Z0Ay9yj33Ufms`pq(i;kz9H94I=3|Msvxisyf+`uqw
zRj@^f5n>PBf&?R#+x(v_V%}pcGwzj-BRg?R5yHeM`L)r71)*3qoBc|x#{o--ghOrG
zdA`lxn%r0D^PMTyFWN==R|lvWJl}BVtkcfXu4>3!`-5u{4nj~-BtUPdw37`%Xc%wz
zyD@qUYj+4=@gsZ$aV8!i(SA_C?Tc#%98Du^0A(7_$uif~ipXY~qXch9bo`SMrD+Sm
zh5l`3Nd4oRUAopCs^#v_kXS8YlxL_H?hTPx5~Zs;pT~1oQZvSff*80(_5{gpLzW1U
ztF%z!)$H0Zn0*=4PYI@o!@jj{oRGR!b)sjw<c$ZYV1%(3<C(k@*Jgn$UGpyPcP)2r
z&D460Q?9|V`r3lNoV(j&!uh-P$>;F`=YT8FNS|O+>m(OL`B=CP9u^o`;5k;d$1jFi
zWqfO4SH3uW=qp+A_f8LQ#jnD5O1_*e$K+{`rS|T%bT(rynI(pJ6UlK}vW4?v_|Oe%
zB4nz1+07SN^*Es~2ZPxryJP`A&5X+(p>H}(6^!?dhr+aHfJTOU3g&<rld?GA)^snq
z2R7^*?*@a4BGf1zG0@xA*q#3~{NBQ%V(hg5FK?M^X1yl!B8fG(v%_MwMDz_*7QHe;
zKn<CgH!+uFKa^|iyAkT#`+?}w!b7t+`IrjAk_$J@-Iw?WoDc|Tr=iz#Vu;d9O#8B!
z_%zd;jx0~%1Sew&iIy?CrJ?$`2PXwC?-reVfatSgD6i(o_uy-oLUIBdlhf1F!qS|i
z(H_NB<r$j=RqD9hB-{>i7^j`VKFtMKD1HIJqQr8&WFCU~{hlo3^AW%)2xGOQ7}ggD
zx65Y<=vxbKCRD73`q4C8x~jT{KDzqcnWKnQmX&O}hMH(Ko1?TS7YY<&`u(U&KYIZx
zzku;y0wNLAO8Z_TS{<RV)kD3H$ejQft4~58USdpe!A>-!$$Jm)FgJVY<y(-~(LBsL
z?MhjfV2fCYp<8~$F}*?xZq29|sku3O1BXu+eOgjN&xT8O^U4mdOPIT!g+g}xB$(jf
ziLO4&wnqNJBE!Uiz#Z=5ZOcYd<RyFviwTxkw&G2^>$eac+q}qENc}p~uIh)sKdMiW
zI_3|cKhb8Nds-#*bgx*=6SRs+rf@n93|UI<>IQKR_-A-RN#u9_6gq^8kZ0(jKbGX#
zbvl0KY>(xKdKIin&yd(Qi)Z`X1^8v@nPgiV9G4uu@T)kAWyV#-5!2zIH+K5?&vy8Z
z0ke-z9`=kOga%J*)ruB{r6E)$YcD7V#pXKomq$sTWXaF2#DWw|(6{lV`uVzK)G#K7
z@6WZ3&_?>awAO0LSBK$6<XD<)4;tr_EhDwZQsTK#<+Q!3+f!jLus)t$RNA7!>kQPs
zUr&HG%}-jrm^(|^*Nz{`h08OnB0?pHw__#LCxId?`A)Z?dt)MX^GB;6ZgQ~gB~bn%
z$%3mk5K!u}Dw~P#k^*Be&x>H4Bk^eDuESu$kxoY&irQYVzRLURSS)|8B$U2$qRc2m
zTu)G42cO1QLi&P&L5&1G_nX!8aYBaBO;n0Z94#}UIDuz@12dg~_(P9-%HQ4K(;z_y
z<1Sg>S9_MjfrXF8aa9>KFMN!RKXra|-n~hV{C$M#&xeg^Va&!`ZxrRX;s;BIaqJv^
zOR*?RiO}J&_zDi{8<bapt*!H$B!cD>633j<`F4Zi@%#4Ykc<l~x^6`defl^%m7Z%P
z^Sxw)$ZQ#S7cyfl4b=^LPAydt__>6YxFzBCr6am4TEX}S4Ou(8BqG%YW|~k-zT&Sb
zytg8{x4$YVIWXZcF?4ikBnrRG6Q%ZypC4ftBrsjI`4}9c_M6D~9AR?c9t-Dn1#>);
zlth-Xv$*2hN71lBB`4;Jqr?=0%ka5*hv#_<L}shY@iMqmDK`&fh@|=e7GA?Z2+|7-
zku&8xd`<|B<VbWm=m?k|Hv7!T>|=e6zPrL)S}%b`m9-Q?@LL8x8{g;QH1pe0O(Vtv
zPhgrq2JTl%)HCTL?>u;o)9m=N^5&2LZ;l1s-9wd@Qe^<AWSmQJeq4@4|KV*|Ym5<0
za|DxEP}jtE`^A$8J?YY7-i>!z08S+uKLYjyMp%C7xuqI=vU1%gwLjH=9E|^h0jgyE
z>{Be^&hM!*1Es4as%S*v>B1`*xJv~H1tvftXFwj4>%t9kfjnKG+!Fm39lXF-ei$3y
z36S-@j1+}5Qk_ZvZ3_qq!R76flQjzO(MTgrU!62{g?5tITp>zEwImS4y_@^p!kM=$
zCzJuUvS84_`Zl|Lpn}Y5h~Q7noYqcEM8U9$Gu9YCiZWRW5y|R-OtqcN_ZkF11t82`
zZ!k*7*(Swk8D3DuSH*<YIZ7(RzaVGnRyS}Ni#$)BkC9{~C^R&1ZsMY`E}il3AJvNe
zD*D=a&%y*Cp9Xr%e%!PqtF_f-#@W}EACFsyz=u$}K?PEh`liTqKMG9;f=kKLHf2i5
zL|A0#KVd65WoqSq(nlP5v+AMeoh}x`cq7;b+roFQLoIu&V_VO;WDlm8OQm$?zt$f8
zF(v&uRBV6HPVY-;Aa)D;oS-gtSDjHT6ld|*)sp+iO??TlLDSu<?X_qha&3YsuV)E5
zNv6S@EPzgg{LQWowEg55Mek9*97+eyP^T1e7Mk8!SkAuaer9Ra;VPAWK>oS9VMY>%
z0B<;3Awisx?v35Gnx)l2R%|3*f3BVKLOhGyPY2cClT2b&0f)Al*kV>KudugVP8ys!
z3Ol8H79WKgRIwR3KZ-0KY0ReFEuhn}6G@`==oHjsr`zv+b*Yig$sLz+XlQ6j<+Qmp
z;eMzVmU9x=Uh))4j1eB3{w+}CyKf}+sUy96IoJ(NH8CnrMW1GJvg3X>Re%&en$KT^
zB5Q7JD^tuuI8Ld)^-BrPe8kCGzdnWt!_=xF`xW$E%+jl@M4h%vf|lq2qA%c$nkXU9
z2{`q#LEgt?k8Z6R3X2>HdP5d2J2*qNtQWd<J0@1hd`&>|W*w8y@ecx|il`SM6kt8p
zyNK;iL8cF^oN7US@uW4#22GF2U#6ZFQrb~dfgHw_d`@s`^3u{s^9Vz49ZKAqPWqS=
zT&Mc_`mkE8n_+zp8aBrf`?P{&+ZUD^$$E~oZcA*v!=YT^YM3D!%m>TrNc^2EZ%|qt
zGu$_byb0BjQEY=MgYO<L+bHletQLJAy-hIeWFPl!eP{W}x05?sG34as(cmwDaTS6J
zSL9Ox4o{-;6<c&!!;-NcbCm$Lu|jnDtZ2j(bf@_%@BB>JVVwJ;P%%_wjNo$m;oT2^
z?g+a|s;7nq7KW_9yTgS7j>}&Q5p}It*5EJV6zz9`4x*K}da)LE{LEz+^#u)_%`xnN
z=xtj@#}<<OZ#9=}G;uAMs!;};(<&~o9DP-+a7sfK>G|ZXEZoT1u97ap!qIj#YObyC
zMx3ZOW&2dRN(6eOy#YnI5N8qM=>jRlnC5r^&WMV56x`Zlc)V!f|2Y}GEF1~vV)^xr
zkWGOP(RJat+JxMsTAh;JGY0tkW)!;D^vw4pOgaUhW_MS4HL4{A#2m$2i=;^yeq<k&
zPV465o-@og&QS1zkbUTJAX$Wm7tUj)n!m=?#u5pNF2;sfsFg(G;Nua}3mys<yZkcB
z^1dpZPwfVF&d>J2MSO?LyR$7i<6z8=>&{I1)(tBTlk3-F6<xsgb6d8^2Rn|kNS-7K
zb151_beS97y?s}9P)23F_(5|&>!`;E%4WwwWjGs7Yf0LIA<~*LC0JTI)T^L=H6G7f
z^e`<pXg@!wZ=AIdmkSiE?dY;P9(a~fYUtvlZcZ|W_FpeB!LN3SVuO2g1KKI6K&uRd
zZp(p3%zp$v*J+M}+4PxS4lx>7kME%9(?G(~4JH0H;BQUOvkipDN-ElH=8zg8QW9d6
z_LpefebXpG7RYFjh(qo-J8ZpWn+G)AMUZ9K5J?7It)eb1_GC#3DydH8k7W84Z+;oh
zAp&l$G-UY3$16YjgzTSrwhQ?22;*J=VsXgt7tz*JAVC7Hu~3zpE*!W)dls{-UD4g*
zs)+SD#~~4MQ;?g=2R<UGCmtt0HPN3>PY4ni=u0_X*~OdvTb^Ts(Qco|lh~PY&V7OV
zV7fD?kzWaso_%0yph>1Tx1Qd^)VL@oA4r-ut{2rb4M|d<hDG{Y*+amesA8V8rK4My
z=6o#X=F4w%9ka)1h)pkcI#kwppafNqyG57;VHOB#DVdl@op{15nHYS|?2qZxxNOYi
z)OTjiCWRBF@PrJH{?NE$2z3Q9^pU+{@B=UW>bv4Bj-OiP-hL1vTej{<=*+evZnj*A
z-+R_)mmfopVG7ei?lf{9nZO#)Ll+sfe}MyjvzH7a2RRAIfC!~8T^p`%Q>SuYlu1s7
z5^GNFp6}ip7I#p4Z}DXIZa<CL1W3@QwXfi?*DZGv9i&rzh-T#y#@gayT*7g*P?r9|
zI~z>5F+_FweSPis`FqeuP$UljIJ7VASK+t9fEoG86UY3^<iHy{@7EZz{mD5h&&9>@
zq>e10r>9lpB4)Jys3Wzv+B*mDqYYoaqlQR@f--{30gLl-Td!3THH{7W?d{iw9mPm6
z3JNq+^4-9^$2LHHwa(xd$BR30pa@g6w}?pmToLMI*;oZ!0cqAQ5paXAqBwEDS?^l_
z=zpLqxIdccIbA_1FhiG4!qD~v{sVTZISQ$~@YSi`<*uLnN-g)BT=rFRgZvQe`3njP
zDEm=@PX_oFN!JPq`qmIByp**a>#D1Vd8XdroT^VRPb|uY?1)a68^L;SJkNan3t)iT
zUL8STez{gXMMvlDmbK~Qi2#Hy0%LwrkzBBJfM)p9l!N%x8G!Ly%r$KsJGJKK1_207
zf<;6EvnF;YYx26h!A<N*lo?z23!kjrNvq-IoO906r-6u#uA~j|EB_@T80?U9?T>=-
zzI!GVUz~R*8FR4ur2f|0EO0@X99lBJg#UDs5HP2BR$HH!8Qw3AU78n|^4@2K{*ON;
zNzZv*df1<spuY_#FPO*df#7aZt<2<6*XP?CpP_+gybQPZ$Tj;`a-HN~#Bgucn=I9Y
zM97;Fphqin6oMTFuqZy&fG&rkj=-_Q*dW~5NAID-@rNKuys>bLzMlJ0x(QQwqs?QJ
zh;#F94Hr))8($e3TKCY9>N2L9$-|e+>}cnr+uc>~-Mb8=;@wOqK}K-*G^dHPsw|>k
zI}pkQ$+UYiFe3^A1u^0hEkK+m_xSLW)aqk|g&y9K?!Gc!c-42iN9>$bamTD?Poc||
zYO}ZZ>o9+fakJni<a67L65Yq5ldCaJgKB&8NJJcn_D;b}$>`e$RMUs*7ktVaeTPNc
zGx?=CGZr>c=9cf6AyPr@9f64N7Mk6Q_5nXhc@H4}GCqN8?t=l~T<f%*_qj-r0l>)*
zeWkfK?A})c^phD9+K<Lsu9sI@^;gopM3~)KTY>FNi!63DW$OUWuDJ|TYcnrr_Zj2O
z#r|wQZrPO{Eb4NlS5FjKwbQl=;FSH1ftgv}wN9ZXk1u|UlBrm`DkQ6T0$DmOF4d+{
z_THuu&<#vnyRSy_LBd>uaG-AyTU;2Z5hbC}C&$f__@C`?VZ%>=2_WME!$5T{SBb;(
z&Vn_4H;9XFL7PO+K=l`h$!q?I<XM^q-s<Tl3^(?V%Yp$*uG@fzukrgs0I5-5d-=w-
z{_C<Fg*Ra04>1LiS$1w2{sbl$=ikD<5WHyvBo}Zw@bNRt%_v$SVLNt|yFR-mb#H+v
zd&^e93NPX0^mM|R&ti}iY;QbM{qA)MZA$kMp}!qdOw&PQI6xx!jsWZe8asTwuP>mb
zDD=e2Mr*yODJ$HR=XR9Q{d3GB1o%DrvcM9F-yr{cR0crzu(l?w3;1`ed2B3M5(zCT
z5OrSS{zcC}!1-@jVknqiUWf9kBjh!T>F@CJ@s0IwKQF9rPBD-Zy84l8ka{3Dki*8_
zw5??P%}bH06}{GUogiM(mFc?Kx`^fHCRLSlw)%4EO|mdT(oax9ppk7|p+4G74+S$(
z``nyP{$^F;u4t&(ma{?Wuf0*_`;uLD@3zs>rg-2uhhl(RH<)&cne)ECj_Xyg?#2I{
zOKm=RCKDhOn6`c0N8-okn0nLD!;VA=cQ!#_@(ho4Sn~C3D?y}JZnA&>A$i^Rq;9jB
z{MQUb;*<!Gr$ksecgQ-8sB-19Ndj<H%4rYl{*vzF#JzmH+Z02y@@7!x;cRb44Eh95
zXYLLdimHq4!z=-u|1+=FqhNN1JdxtsY&gV^VEieA>pso?`NHPrHwlQiDd<^A!Rumh
z3xr3EY;1Hf)09eL_uP?WLWyhup_%tSh=)&9!=H=5G@t_$^Jpn~GfL<{Sqh#ZdLOq}
zIp-l}wYf*-rt_PaBig$65m2}3x@$2oF{xZqLh!G&p4^k^mkP}QsoNP4Nc-CTEi}2+
z#Ysd3Q<ZzU=S>u#pcgCaeO7NS&H%FwN5OiO1anAOflk5^;~W?dSBaFN&dA8<H19lB
z7_I+&GTgbxV}Ow262F-a3YGG+Ky}lAp+W>JF{dO2nz-S>EX({IMeC3-TuYKe$EW6s
z{x7j65XSXp+r)OGP-!A$WZW(0Cx|Y#okJ^!Mf|BxgArePCP7IfmXK1U^E1T~lE`kL
z2q*;lSl{dEk>RCZ%gQmQ$X=tc<uqS!js>0C<aVx8@TtT{8eD5L@!zXBSl}r?bYgtN
zV2L_Iu@$KW>Ka4pELjFYvi=68?+x6HGW!Elc-21+GAiLx8?(BpkY_H0%PilxSM`31
z#~<&jx)q=UUA6eQ)w4>#Cgol4drnZz?bkIw(mUdvPY^`T#|`n^c>dx;Jd0j4q&($o
zd(6V3%i2!ArA}6yiGaf8xRZ;I<iUqA2#wg3lsIoVobrFzM*DnWr)R?^?OTj?@GJZ5
zek>DwNU?i0Lb@vgT;#XAf&kp0l?!kg4BneUi&PBvC17EHnD|J$F<bl~9KUr@+*_9b
z{v%45cCJ~bqi1#iAWQPY#q){DdsXhm8%kGxK#|yU^w!Yk3u16SsD5*b3d^bCnz$lE
zcm8Gm<h4`7fraKHzyS^e;&1CF+cVftD}aGNDkR&_{#?uBy~t;Q32P_I(r`F-M^DFv
zh&J~Jw>d-?E55Q9n-z31c1w)y&7ykIyBL?0xK|qP7r!mGpA5cLUZw7GpwH|c$rL<4
zB<S(b4}z~448J9p3a;f9E1YU1*yZf5lB?&v*W(++kzg?#m^`-kT@j6#N)d;+t$d`H
zh)u-`*x4HSf{aiMBSrpqY61brAI@cpW+%8q$}4E7W~*3U`U>6j`kzbk--q@i>GmFW
z*<);!KJI3}(~3$|_U%SNp@KM8T|t5UBaiDm+a@`ZZ_(eKRdEP5n5WJs)s&Dglgfkq
z+eh;ZM`+gu2QAoVY~<|dVwqV}n<FRU<CDLQeve13sk;ba60E%7d_n5B=_eu0N+#;X
z&%j%hv1zJcl#D0$6BFZ=d4E!NNN~6bmbhU(%~D^cd_(5B?#5KvwV-?L<GjmHq*wS`
z7q!z<$5nElaJ(*%$CbTt_|>2tnl7)wmx#Z!e4NWCs`rBuCC(0q?kovI<+T@GT-{l}
z^kq|GQot?olCqs;bB7AO|CYlcT7~{lP`=S~NwpFq`N={WyIfb@(z2*hF=W<52<$hz
z|Fyw!lL?;H=XtgsckJiS`93rOe(%(mcI*vhqZZNm`5?g{+HGYNA7(|sZh{ro=BOk$
z%&mkSyZPq%rSd#tIY*|jd*#hMnk@)oW+)A=I6#^@1r)If^hlTxJM^3uS3q$no1C0%
zsaQo1-hERcOy1i#LXZu%8|p9#p1&vjRg=;qK^T*p`)plgVD;EjdhEP_q`zj%o%Rob
z1%<#kph*S$VS;l4<ca?bbN-{*etNi<Fsuj0^&C|pMzF<&&W>&Z$l+8mpexod$VgeN
zegoDxq>61P-}1}1imeJ9x-56zTk-P6d0~JhATjddn2>1b0$Q1}@d4_NA<F$u+Z(J_
zdsM4=Rn6Cf2^in7tjL?vntN)y?VO0@{+=v<hvNR+VsQS`l<l_f{?=lDj-CJU&0&a>
z%VxQA+vk$$M#f;)G3@D1F`l+yyel6oUFn=~ue}mV_l@Lu`}blsQ<|NN%<id{<5@?j
zOHTPJnnJn-_6=R@8v8hDY!~QuRO&V!{<3gva)XT22Kk?nKkLb^AKt~4=-<CSSds;C
zE!QfkYNF`=e)cRTzdj=N<YnB@thmDLMa<CH;4@f?Nd1}!(x0+wH8)~K7}t%Ap1;AC
z>ldt^VfSVtzN%FY3<4r?u_|M|vooEfA#6HF%Sy^Ba!f6!mxyZ25kOL~{MK~qzFNg4
ztXTrVM_P?`DTk+(w||lK@Z<68+-?Sq=CXvt`q0;?qIvstC5()UyI)Kwhad@r;Q~P9
z`cK*UUk_bqFjR1;b<e4HvHsrf|9$BUlc+%OEoEKudSt*9Q*B(DEaUjL+}GF7KQpd3
z2PRxA-_%VceruE^nC}epz#wzmAh4td=5C5^*4gjMnL-07_Pt4OKq~cjtK;(%g&)A_
z8FZF~`~`g@<PKNoV&8D3KnA)(&b*vh{_}ox&jbs1D6HP@xY|(Js+UlcWEuTxRhjUa
zLwkIoH`jXqmR2BczNr7s;s<@3jOSF_D+@hWp$Sb=BME=8oP|&G5By66-rI^N9y$dZ
zb`{h}?GvmkM~Mju$)TT`ftw1I6HJCTTVQ?pJYM+rOT6<4d%?}fRjAOb40q0k?m-J%
zhV=2Poy!nHnB+go%fE`5KZX61(qI?@p`zsGRiXJG3y28=_T()K&r0A17SI1J=9W3L
zhZm(FhP<-@pKpxIbwPN^?@!Wq)26N}++EW1yi}ihEF?g4k5d%W1-Ms*?~fNpRLY7U
zs^~Jich5d;UQubBZK_&W!Mc-ti*$EtOVj?P?(U$NZ5fS#j?O;(Lm$TL6$G@Ll`0EP
zw^j&y4^o2Fd&M%mQc{#1MsJYY96t1QEr&CVG{&<dwBTD!<VOU3I$S#zYdRz+o;sDu
z71e^Oiey2{ox*(?_yz~*ZKH_lv024rcay@F;Mp2?22RH0G~t)JCa?o<>_uyM$5mF3
zkp=Y|Gr3N~3%XRl89S4}%De<NUI-dEvTXjxkiSN&bb9>KVD7<1cYWzVGH;6TY)0<I
zDBsVincL>@-CVBve`|#QenvnkjXHyn9_n7*Z?Whpio)Ti<M}4u{|qhK)B1N;6aEI)
z+t4&qO#A*w3K|D07fh#+lW0%+LGjw=K6|<@4lY#n6MTeV?V6@p@ft=<hQmU<W!Wti
zw_hd*>uPZ<r>Zo&5A9nr<uEBfD)W6)GOoWp_M4C6^UIm^9Y0sI-k@wqYFjKde%5z~
z9XkAi_UI9mMtYF-tw$B67m1SYZAT-iA|2t`_)rQ@xSX6^0pLHzM-*ROULMo;>ldOK
z+bb@UZd9HrAd&>ZS}|GX-<SR0_s-Mlvl8g%1_4xyTt)w39q3WPcqE#k^YWOlLCC&w
z#`9b68K>@-^x74pN<HUF`Jo+UKS6H^p$N+G&FCmZpdW`K=N#CyI=`b~fyt#FElo{}
z!x^9v2sHj@I`MygWdHu_B`P=yt4c+?;6J>8f3M!B0p<TX5B~cXr6Pc1o;pO1`2X(<
z{?DKN-@kwc5ja;O(i~}-|6Uva*Ao4^!~VyMr+!Jvxso`l{Ga~QQtk`Gl^n2Obzy9A
zA;L3YsJuDKR8GcD*|kmyuj#+ZShjZG(%VS=({bp<4oLz=O-$^*|M3a``J!=XJCY>C
zPB1+_K3<AEn%-rrSLWXZfu>>cpPwkH%9-<$u`fve*foeeeb03V#p=xz{cN7*DLc%8
z=UF@A@5~OLAn*TYN$HWn{{=oC+5)yxYWn($NRI4ZLSjqeQ}{kLdh5jt9OGJ+l|6HH
z@s|_Q*<oaS{<&G<j}(Bbd+4>~GYTM;us=yWmDhSyQjQ4{Bt;1%u9&9(OIQEzRhNu}
zT3PKXvr`#97`=eB`|b<@(!;)?A<b}Mw<AjHxq42+jvGoEnm~MZ{Z}U45!uz%+z$MA
zBN&ZMO+R<fN2ADu-kxp@tesx7syej=qY#V&XwSLPbaiQIREF=vb-A^2gTuNU6VQb0
z1N&kN7*N@%ist_3a}UU>^50y@5(~Lz?=(L|i{&TItct_3wp{S`F$GX}N|)W;`3CNU
zs)~;=hWCEj%E_&E0`8uC92{fT`qD~ddbkORZQ39|O0C?d&7(*O=g^%umOY@(ZExfQ
zEvl=x7$QG^tZxi6mZK1gY@3~nUwV~WdZDq71<gMw_F5MK4GrADk}xuwRG*N>q^G^Q
zdd&Rre|@%rm4m*=BE%2!>+gRR@Zu*>BEh<RPE94TdoSAi>(>{6D@_eo6ZO|qYMi&x
zseX$!ko-K9-1p9YXK#;t#>~P(HFpvY@NIk9rksp~LkCxEGG6dHJ4LSH?-N2%F=c-J
zq|tN;BWA3iuR%}cZLEu|QH+B3_or0;nE{Gb8I7Q#V-=8ZXyHYE_UBe<M+$=~Brm47
z@l4DD=J~W<*lCFTbfCD(>qj%?8(rFtWmE=Nvo+=YkO{T1$@kVwJ^y|*|I?=Agc|lD
z!2s{&7d&Q-Gb`pJ1i#OUW@ct;1_nckbo1P1eYnJ8KEhN%P&ql|bl|P6HXk51xm#IT
zp)7-WNo#?Oj10+z=>@<8b>bb24gSOCQweqXfBw3sCrmShaBGler&~Q3?OCpDQy8y*
z9^+4p`1`?U0uM}(r_>ktp<5TB%2jL<S>V6c%#T*#iY;i(30A3^3&Sn9oyUTgwX99;
z&P>d2Mp3Sd`<lU-h~DZNAxt}DzeP$RP&rmm)e=6p&9<||?W#h@Lu!>h8RC*-Lr(4A
zo3NHkr;qrIhCMjey)<!#cdTB@UA2-ScvG~oMW+Puo>KMm%_fNuvvj1c=d_YtFHvST
zAZy!IQxJ*NpYS<}<t)<ch<L5mSRug*<2#e$u{(0K6=mtr@Eb?sb97@<<3vh%v{aqy
zKBBeXFMvYoRrwi$oUjtzjpN>rIC4H|qR#mLI7qe-!IFxQ-o8GrL_KZoLJ7Dx9@}{@
zwF^++oQj<dOWv)}4)4Ip-2o+bBQObr%V;=PZx160SngtrX0HL$avVjqwu?4v`&<+^
z!=b(F4p=KtsU7Eb8&XD`|4^gx)5Ltrlv7YIF;zHE!AV1MIvOzH4#qn?n%OW}=cf;O
zrKeGFa>|w@mA=4M#AvP71F#TlPR^sabP%_l*}}%$*JSjKX=|onKbytwFb{@f9xBQz
z%1Fy!#P4R1eYbe$OZ|UBBAW;8PaTufmNbF_Yz+8#G;T~Tx9!h6&+g)q_LTKzpc&md
z>UpyQdgv+bM%Y{qsuPWMr5B+*42$YtE(EOIsnqvMRFQrAVZF+uap|Cx*0%e~yVLg`
z$(CiC6Z|_SBKid;dTfRN_ii1b=2#2z1E%Z*J<b?P4B9ewc6Q>q#9|fNN&FH}vu@p6
z^ot4#vT|~$9r#IsrF;p5Ff<C9ru5r01M(5|`{UIfBr6nJhy@4W=dOMaP~9WItPp-t
zVf;Tm45}nt_n;os#C#yXpL3Oeup&HxbX~2&lbP)IjehS$R0>CM0+^XW#1>VT!#pNh
za+I4)?4`5W54Dqn-92!!-m}n{J0iz-cLD41JT9c}y1H9e{(4SJ1D_?U(OF*h-yEZS
zR^`o?eMdB|<C$iOL6&vDtB)+S8T5i#t=UsalC`Jqk&l`FB~D*=zo7blL*Cc0i{=X!
z9`aLNTZBQu=ID(#SDYHS4TTSH8OavzqV|pBo>#rQ`AwnWEG;(O9!ArKjR^noz%=;9
z!&$@HU~i5T`L8i$=}5fLZAe{-m`c&jj~$G`<@#%R_j;R|`@Sl#eJ427bUtfzBUU{!
z{h8C9Dj4URthOm}6&=9=(Z?_Gua%{2T74SbY;5J9PsH!#jiT8qdsZ#VX$+Yt_CyZk
z!{^`l9%eOH7pK)8n!7Gh1E-PQ=o7`Fr+ukpx_$*5+_|b~aK)=e$LM)(9yVc>xrgsj
zp4kc|aW9#{3l#6Qy#FK?QgWDWH)NO3V0BZ9e!&rwo*T7HMoIhp=UWUH@re!(5wg0&
z-0!B3z7_+k0sO-%tFKK~A0yam#}Tz*p274_sm&L4Prz<p6Eo{FSiK@9o86~}+j3c$
zRHWm(@|YSKt7!TCNUEui<(7U#4#I|OhBc%RRQTz{tmM+zlA*a;80{<~jBhw-z7Y8T
zxG5_BoTb1W9QH#rpxe*E00khEdhf1JBh3NA>-mXGG7wm(jMp^_5+?cZ&y^g33YT@I
z=Q018!E-Lx4?aJNSONaIk`e83=+?a0B0+Asp3myk+wm(#7;n26UO@val&{77(F;CD
zpT~7H$;QnOeo*Ag$`A7PWhaF?)IpGqtFCiLa`>Jf#(sOdVjQJv8yjEzn%m<9HKqLO
zmB;3?r`GXnv!eY0MeSC(lCrVcQW-duhux3`xk00$233oZ@Wn?J=(P+#LrPl^&|SWp
zdnYf64F>8Kq&SYm!hN;<#dq&ff}*NyTe|osi7+8ABQuMS*nDnzX6{egoF@FnDje~L
zbMqdoKx>~S8&mu^=~)HBPb~UX&0K=~9`q3@{n8w^C&Z_;brdsZc60MKhueHl#9*vA
zDf-iSA`@AT%23vW;oT)59I(&apAf;Uul-8om0yViylu&8L&rKo=fiN@8?QjWj}KMU
zqsm&~LKg#}&_GPY(7KsAvB3;DOkT?IdJ18Kz0BxMuq;(Psn=#w5x6jG_WN$&M4R?m
z<A7Q3p`K^ZWjYifOcGWWb)s8l2FmQKYo&GZ=sI+${vY?{8IC^{J=~e&JXKRi@FSoU
ze0#PvQl#MM_}tkEPG>oIM;Nf^QHLLbMFez~SUR)pI@KRW$Hsp4BxXH%xM%<xoIf@6
z6XgnDT1PwGD9}N4v%9}H+bX$*xNY32wZ9xldRiCmK&Pmxv8oJVzaA&R13)-5t$4{L
zJP`5~e(h)|v;qTOgr#h#^?dehG`bZ(3p1%#&Qk%wFV7fOw^~v>^SM#cPCf$Cu|<ck
zo>K5Bexc48u(c)j6(S!5svO7Dm_;w0J=QH2AxUF`X>rH=`zD#{KgyxDCh~4>FJv~H
zQ=0{Jn_hU`H7FT~Z@(+Vsw=a7n<FMtA-Hnkf)>3$SB!g!zCh9}LOR<(TR<dC1vQK`
zXvqJ(wJEdLB0597JJBE&whNwud7~Hj%HPNH@ziU$K2UFXakqV2F2|jY%Wo036HDXO
z^|VJF)EmK*9hm5&ghaf7OZg`9vftAU%wJtN%0Jm8ryxsv_lS})9`@_owfoM}A$?oo
zd_u~P#U}ELgV-FEvt#FK=FZr$bUD$oMIqfkrF+ZbJ|%wpt)IGAx@Z6a4C|ze4pN!w
zJewNw?t`5%+2S1Un?>bQSS6uCp_%uZEN1_AZFENBzreS0Pj0*=#AeX?1`EW+#RZ{Y
zbt9?)Dj;t{-WP5#b+aWixCB)^NDEifkPjeAI4G~poXr0I{+g2@;BWZp@0$&6#^S%<
z8ItDtv1Z1M#sxL`fu-}fG%wc?EslMq?K5b-sIGBZ-YV?|3IY$SG`J!rSbL<RSA;w7
zx_*C0af^zV-l)a++X!C&<UnUW(lD<ys7;es_(HdcZQ&a_mcvro?4erePGt92RACI<
zLA?Sw!P(ij^Y>!QTHjkV)=$MeN-CpVY4eBoP)f7(9(`uUg*d`n#L-*N<@|(ha>uz-
z8cr(PyYKm#jO$KDya>MLODmE?YDj~0hcj^K*hTn0VEQRzmd0~W++THwz;spf@u~dC
zz<4|KYl!eW`aEdUY+}mi`{XzD+AT2)pq7MfKwlDpSwnzGsJ*}X^|)<agzHHr)Z-fo
zuh#pw-{FO9C0$Oc@%?!G3AD*baMnQq%z~$J{|KMCunNPu=rbht&lA=L*_7W&%Zt#O
zZN%0UhNSelsB~WmSQf0&*p5XIJ!jC*SUdCh2XFk3J)o&LNR&*v`BgGkFhJnK_JV-h
z{tU2dd~IDKhG1%t`UdbF88Q8pXvi$7_fZ+fts&~T&c^I9;pvik+Nd-LFl0&#Qxmeb
zVrR^OsD5be^6jOcAKvZ3%b8d0d0X=&wAS%{K=tDl(!XmO;kH<DqRA9+NprA@4hS&`
zMdJcRVb!$+&5wp+SEXJ?`nHJqq56pm>AQ_;g<nu(TC&7zR;kSGge}a@NX%yXQopJD
zuoLzxYP6zn=Ytrce3TToP5sOAt;_M-wpFYLapqR%%y$<0SyfJk^YSmriQKfO&%VO~
ziU{?d&Af|Ym<fH)U}Z$fGYiToacs|$VHMxAm_cI3(he26`oH%LCKC9AyMbr@$Kt|+
zCZJ7{n63>70OP5Y)I7;%D=*X6oaFil74-H?`e^(V=e4hkn0vwJh)Hh;O#LT|RCr$U
z+gf{w%Kp()|8EfEpWc{Saw+HtQ&~qxPC!6lXB~^>$|xZgsI#W@Jy`*>Ku5LLud(nW
zftvOO1C+)M&+kQedViWgoP(pI`UH?aWjQ6)_s?%a!15O<EB%_dvt)6{NO6tJymCLe
zys=*IG563Fd~A%4f|(_CP?0;i|GWnmkg})nIrFY7q$(7W29j~^vCc#AZ*?kB=yzBW
z4yR4moDuAI@-rPPL{Vjoh)T`6`{b>skg+AfO>IhYL*ojPUuQFJb$c8AHH2^0hU+K9
zn%BwJ{b45WRuzQ;?TTq_Z{8&Azdemf=ORt`=v7LW;q%oYJ-Qr2@!=lCX@XIA3#sBz
zGuD@{o)W+Rq+;@0RWnVAvNOJ=Eu*>QQ_~my+l$+3>nTx_w67Z)H0)2Z75)ayVa~&n
z!j~{o@4YIk?v31wY9CTfz;^YZhn%3%MJ6P43+R6-IBR<|Ur%zb{}=G}9~PgI&>trN
z^Jr4n7Jl#jKVA^Afp~DA^*tCx06T~~wmym`t}LUW4#xa6V+I|-6T)mN2uj?Z6jNDQ
zDJqLl8z__g&x!R4tAK4m5^dc~++?s}OO6_aic-WjLPai%6SwyZ{khHwB3e7VhJ?7r
zGMvuc&(xpkpUkG3>-xWADmz|`SC6Zm*KYrG_7HI4k{D0A*?LJy@^;&*gp!w%1q1=t
zb~+|?p-tBk`3KV;-i4a`DR<mvR<E%HV#YkTFTx7THm+;oqX>EfR3P849x!UW5pmc;
zVlg>lc0op9VKisBO4tkkBg`u&_ZBtR+@#u)2i?r67oJU;?mm#<=%+Hh{bwN5!WF&g
z>N0j}R)NvoJw7H@yzrWJ{P$!I)b3ehJfh!PvV}@_#eLrj#iBg~32-F=<qN61BSZg%
z@B0k?!uM^z-o&S=ekb>8R;%BWWAfe1yi2<fs<E;?@{OkZYR*&!dyT^WH4JU2$WEjc
z{Xum75FBwRKz`Lk>AC0jgvk$o-F)bS18CK@8*`7%Lkwl!(8PCE@2C-deLGDQ1##}}
zgxxzF1Z!=DCLG^VRrlB;@cGj7kqYGspE@}?72Nky{ADfv2k!OH26+kiD#1~;BlE`J
ze0dp}<9@nPnABZmK9Hjv=5q$b=-R&ckTfjhdQgp?AEg9@+tY|TczcT^OQQO@Wzhnn
zh6!gEmr+3V;9T*f5qmoCBqKoaIXX)=4_6)YH^aQvg#tG5UCwuvLq5T2uh0YAcbc>B
zFpWqJqOpBCbMT7L!(drU*VNK!^X~YfJf6$_ZtsJ9gNnoWbIlAkL7|=x4=Nf-Fu^T|
zdiEOnxN8-$1&FB&+LD_yv$KUoGYce2TlyV5?bU@lgl4#Q)07%}(Cz)zLj$cYtBMd5
z=ykJvsc|&;|D)@zqpEDT?%~a*yQRCkrCX%CyQI6jOS&ag8tD{Jx<Qcc?ve)S{BC^C
z^PF?O^LzhfY=?W?`@XIfbIvuF?4vwxb6=^m_4e<h%bQf4Mpbi_ecE<O(u(&Jo5=2b
zV+U)OKJEPmSj>fVKS$JMILb+8osLtq>&}0AsN9YW*KKD9;2+uz_yW(!3PukMUg=+z
z{ufb^P4y2^VfNodg_uxP1d70K#QMeHNf!0Ta~yxIRPoOEt2Tx9;8w@m{*1Yqe-jmV
zxq@4#2LT#Z<57xAM=RgFP*4=B-%A@a;==Yomj9H2({j4RQU4g-=33-El4k3rOH>rk
zOzMfEa}_ztupMyr<#L~gjw<zZ{D|Pz=Zo$A+d+AGHRDYY6r2~nfELY2CElkKd28si
zv>ic!VjJIcD-mmOw?w2VPQq6sA*uo#$B!oG_5lJp(v-09l~^*F_wdtG&A(5kmeCDI
z-&WF<{Yd1^YNG$9yjwGz$f&#k&_I$#<9Sk4SzCX50Z6>4T_jBIH%XqQ^mC;)Uo#Ah
zjuz?Kub((j_dFhZwC88y3zv+3v092|27E{OfU%gpR850i97Er6_cj0l#1Pu-k1qlm
z?<QcpQ_Xr&3jsO^4jotFS~OIaSc$_^rw!N(n^MyQteyB3f+~bN<{2{WRZ!_ueVXX?
z=R8*fiGvc#DE~b_ycp<B^Q|WA2jTZl8A%%+CoyASgNDqn$!|2+EqO1eRNY?FN)!iE
z$$ls%SrLPS3zkIq^FQFSLk(p?=~%~4Hds94pXpFD3F^`*kFW1F#MWI}wX2AsCZums
z%fpSCNwLMh@__sHRDJjjleSs(4ak@@vwk6VT3!zKeZKG6R}yY1mqfWuv*0dN|637C
z`FmRz%T2yak6+XK!c~sXhCnYbGY=^A<dLUza2_yh1at$$*2JD;SD#3WhbIo~Ip82l
zjgg)LUFR6!Tj#R~N9sQ#UGQ~We!Z@r-iKtt*~DQk>hg+y$Yq+#e058qyK<CFYWnT<
z3vLsXj2IO9hPs!H40QZ_fND!gd#XB5-kx7*p#5keFBJQXx@8*nK&CPFHv@#6@ZSs&
zjgP5u708o0#BpqxGH9fMTH>{3Rn@yuYGPADPgF;X9c9?~cz3$S&1oKQ-~3#<kObBW
z<oYSkmf!(jWX|MBQ_>@#5mfe({Yrk<X$pGjvpL#-SfZX^2O--G9IB6S*1eOY1;6+v
z{&)y@P+EKu*8z?+XNb*M)+?ALOI%*qR4mU9^;D80oYwvuQ5{FT%PCJak{L*2_gTHO
zLnr2UqHvBZt)G{Q{66@~_ZL5gNJ8#Lb|+F)1SSbzv`2Z4U7Th((UA5SBeHL?imx>+
z+UJ+37QJmP^}D|sf4p9;y88@_{=4?!Srk72o-R1n*49y;Er8F=XCpP}+YOv{DdC58
zREp!p>~P`7Uy1`q?vsF7`yOh*O$ZwlRxKPPV&l`@0eqG*0Rcg*_q*fon<&9&AGA*u
zUiE-}09dsQu&Rn8zF&OxZsyz2FeM9IsDx4VNl0}xUZ@N%cco6f%y8)HTZ%9=R+U*n
zxFWSLf6_52CAd}RI6?lcIkdl$HM}o;mF#25{Dkllj)APKtW+&Xk1He<rc=+6g07PC
z@n-NZ>2o+D*b%l||M^QCKGAfoGxbGV%I#W4fAC$Ld9*XXm3eQ-hr_%`wYEn;zv79Z
z;JiT7-=aP)`Q%VM8MbJz2?HA^rPEm!A6^f)-q3GP;1$HoG+A%cfs_bujl|K&9XnAK
z!3mr99?*#pN?Cmx`H2WAhKB{2;?g&!<`Mg|^DAXTG6N&Z2b|yJM-DHIjG5!N-9Rcx
zLi||)!LRfmdGR@H+A>RxW=hE5A-wV>$9s4EerTyks3Sk#yS2Mjyhx*fT80kIlDA2*
z@iJnANag8D7<{GQ`Y0U5n1fi>;K)M|p-M85SpRe~x`A{2JMH)LN7h#h#VHl<AD<mK
zFpJ+ujWmS=V=Axvf{Fs6sL?t;g5F$n<6pe{VBi&Uw_@nB>VZ8DA~sxeD=h1$2&!+r
z^!$k!baeL2kM=|2tq_<ME?vOO`3*ski8LGpx+r!nx<5l$@|M|Q*v~gGd-SV6X0CL*
z+-fRZ-o<LZ1F3l%m~I=A{9Zu8Ff+c7qoK80m*4t<D?4D}8z$iJ#50Iq&`1h+?ja>O
zJ3E6BDR?Hr70@}67keI_raqxAT7gnYh1Wh?bFS>LE{EY50JK{N{~{3iRBddkG||v*
zjYwZHhaQ4H5Kp;n52m`#Xj_z=zt|2bqq7CWe5C_HfCm@s78}MV6@~34#iEAbkf2z8
z*E@`S>`!YUHHzp!=3Wv3bkM*W3BD#k)OVCAmGM_*j_P<%1w~0iLr|{B4>cV1q{L!>
zDvp3^1*i8w!sq(Ko>m>ER)n@IFxil?vmRw@uEz8N&`X!JJp7BV$2EYftL^pIVfG0h
z7&K-$&rs8EnRO3ZxNNE9WB>+K<@1_qP4o*V=5e$bKYLr-pb~*p<r-C(KY8#SdH*U2
z^ye69rCgiyRnl*Xz@EI_haOmpt}Gy8d05sXO88dEo#Tv#;(vX*nt_XRs~Gh<PL_lL
zVj%xm3O=YVab(whAp-|joJ8+ADsdK1E8ALnlpz1>+o*#sLW8bixWqGW9Xei$XchLa
z(~St1T^)qM;Nv?RnJYXBYL`_tYWO+nmdcP)KYk=Jk-W$^R{D@#qH-SvR%nTng>~Q{
zVDOXBp%j>*=wDyaZy&i=MuOiGVLg4ZurGFAW=WYi-D~QPt>iN$*1Vo|<MTTyiEz^>
z#BDE|#8G;6+_6AB6HQJ70}cxd>w62VftYRv<#!~}F)`Jr{4lPAbN$e!kag*i>~g_*
zZtu@p>|?TSl3#uX;qJ1sVo4~OEUkSDIlZL$HJdNKg+PAx>D%_M%p!k#-V~z0sPylu
zLia1{wKA5YXU~b>1(G0RtJAn~`s&c>iLtSquW#{>{l1LT1`h#(V*+e;kTFbMe-K>L
zWi$NK36xmiw62Z1I<_F7I&=kuSCc<k+6lLaIu7w(W)2Hps(MRg&rwA9%jd5-D3FX=
zEuJ;&C9nDU`FBD=t-CQXNMulN94ldhXN^{2(QPF&W6+>pe6&0bLZlc&1JRu)-em-L
zNQaATIh<_5AuU~XS75%;U7*O$$dFe3A}6XbkVqjJLlUW}@0M!fb-dJ=j6xz*p00V5
z2z#}AzWo#4RICF^qV@Ao28Sd-zApm|&_9PYxC1`4!#pn4e+Q?n#J%oD)ld!LPMlzs
z(;bfCDT9H9LhHf7^Y9ytan92onFOgw_bt%gwLWh_LLCGEBAXAscdulA4si6bTC`LQ
ztLeHY0B{(Ehc^sU(?0dWLwv-PY~+B&C-Leb6e|7<0ap7bJbE<<y>-*dBis4qWlTs6
znJv6sJ-M)=PYT=ouaSAmMT*_tsQ9;hVNNo4vQd4wvWY_LFx*cO9C0|CRZ*27Dlh*g
zW8p*4U$%ogEr$TLZnCk#0dD{kcz`QJf+*x4QZGBVdDl(FX^zrdy45)PG~r=2$}oCf
z?<99A`U4K_6{(w~w=|{dhtIP8H=npPh}E}3u(R)*_N(x9o{+ZqK+1)dPZ;z*&rI|N
z&-7#uAgF>58D&ByLr~6v|KQ1vwWO@(ax7$MuR=XXNiig$w5*Po&y{|_i(viBY;#0e
zmA1yR1i!zTKOwLTVe_Ww>y5hqSx=OtBzYr_UtBAuFMr(EfiW6BaIW4(_oXmWz7a$K
zAWZH<hN0a6n7NVfu?|F93<pOo<wEy|Uqj<R$B>-RFy=oqR6!+oj7!GzY7v7EXXwl*
zFoS@xpSRR9wbuU<O(nkXs3wK#sK7{h)_}-A2SlUXQP}}cUI5Kf?1Y5TnM5T!)lXaZ
z&cNrWJ|PS0WgSZ0N|RezV%lF+UvNic<O}izh5*SJ^)O_44A58-H-C(n=84Ols!tAa
zc>0*r6Q)8;3^USpi6UMSb0y?19K**Sgz;R?;vcP#&!4h!vvIOg1P8%`LZhVQ;J2f!
zb8|+3?Pd26Y!-@|G7m=vl0`rl2B-QoKz|MqFNZ><DkNCRq5G*>Vyy=W#|u(Kx%=em
z6k}V&K&N&ccz!hc9E)I{l{W(ao-A6(DOvgX2{VAQ9C>18N-7pxlFmggu}Nd(VdGi#
z9fV+!6Ec45V@8l3>|6*xQ^=R>N8`&*!ov>T3U$TFm8p)<q~SYO+E~gqXC<1y>~>zL
z>2Nl%msjf>1<xByJQFC4Pu39nv8^ZGdHTv5QwFHYME6<o4flZy9v%(KlJmM-nXV{Q
z@{NFU4pK~&uOAcQ`>v#Akbbi}GT>_&)3}yIVxWOS$TN0wmQx-f8G7X|?8H0qXv2bV
z3I;jAxaajFsXNT}S0WjhiHOX#`gkN1ft#-qKk(l8y;x+@0tyJD!!NT0R=`L`r;<H;
zM8B1-Z9!5J#<{1r_#7Z{y_ArUfC3ZEgrD+iWbinVZ}09-0^OnALB)|%jK}jF$BG#i
z4i3YnP_ujP;Aw!W)>AhT{}t!dyLhc-*qKKYy+h1dD6uzM(6cC~{q^uwKTgfDez^$&
zmYHsX-JZ@snEz@qssWSxy@=DPze)1oOk_6p0PmVDE8sg#Ug}dh?*eZ@>z`y767+J|
zEZ<sk5(oi$1o>>C&r4)WOI=|zz(jJc-pyicGzppGS18fNCttihr{M$cUANZ1d)PBk
z5nV%FNsDEBsrj?6WT@yp=w~-Us-|RY_>S_Sh>5x<DLSr8EiY42Esgg3J%_!EGGWE{
zqNw9ed&XgHPo2%!(x5^8gUmH)BLGDGg3bLH&z7yS^P3!%b=>H@Hr0Ro>u?@}yIo=Z
z^|G{VW$W;%SkA6`^qSD{bm~i)=7xJA8DBD)14E<Gc^2Z6VnWQ{<#Co9dmv_SfBo}W
zg_s~p!5F9hfnDq~s>1lmkD2Rqy*0CmAKHSC-Fk9MT>utn6L1e1+#gw|+z2t~UPf>b
z8^5Xu5c6n|Xc91Myz%ynQjr66PnV0I$^b^?R6&`?fvi#G!5|&$m&EW;fM-_b#N(i8
z7;~*`kzxj#Qj0}^RYwisKN=7UWC&VTQYFeacVNGQBPX5;ZZftE_V#KCrjny&pOVMN
z)npC_l)?b=u_R%u8A*5&IIP2pGU1~0#0Mw&W+krQTq%iF_0&nsY<7?=5TsD2sB+Fb
zBYBnkf^0;FFqlwx(V(Yn$SO$BfYQ{x8(~zeQecOJW`fvhk}PxX%e;-e$Mv$uWb+A3
z`0DqyV8p$bdEy@M@67#!1NftS<SNK8p_J^I1PI*wL`h=h!SjU$ojX8Z|NK19kJ>@I
ze;D7sJZwJsIu;9DFjhA41_HX*;8b8V%7Vp$_wsQ0>*v(3-}tdFFQ&dSz-gf?pP|C#
zU7(<gVI(COcyK?jUVnQCpC7QTm3HSQ@KlV*xV>DpFn8zvy>cQrzYMrupP1stH<9?B
z1`Tyv@U;xkE8Dqmxez0c0b`ZKC9djAW6TS8fZ@wthDFwR%DAG?ZGjqRseg@RW)k2!
z`~lEIOwqk4_bUNk;iJ!WgMkx7>*&Cm2;|f^tQ#*rxAiWBBIxBiF&>+MrDd7oQ}*+N
zMJAtHX*{d}RtLBl5R`oTzQaoB`E<K$MsV5?c)eL%6|jnu9}i3HDT0qp`j+n)lD06l
z!=;xZUVuEcf?mFzMA*LtsXjU^0N8%RVLp^Y67Zm$%^1JxeZa&EQyqdBFf^$}lIus}
zbI3NFo=4H5<I0H9bxRmX5JTzcpzkuwb?ya-o>IHT7PKus7b2s>paXVl9At8}S;ARX
zxaI<Y7{R}r^s`eR-UVP>Hn7_!a{ql-2hs0gLY4)+PZe;{$I){Pdj0AVqRV}4Va<C3
zSQ?(a2$aWCsKO7`oF-%Ot;NMsE4oizf*!6*xRA$3{3k8R0P5%~#BCH>?f>X~iw6he
z{cA6M)oYiCq~UIq`hweTfzyxMcL*vSgt^BKMmI(~ZGV2OS_Yk(LJ*Yeo)tny%lNWw
zNYeVxWoonR^LM6A0iQegsYJw|<#TA+xp|`L0fY1q)YaK&H|@^?lRI+les@_KKd~IN
zBn$<7la-G9RjpS<oWEEo>q}(lbt1EX&1?AsIQ%Z>>?W4IW!#0GxuyoDSC!zzca{Pw
zw7D{1@<A67*jsRzO3lqFQ8QHu_WQHLHh$QcgChYuLRNu+{;Hv}4`1$dO6i$NL)ioS
zK>=Wi%O`T-_Q|%Bi*1rtGO@S5lwzVtc|1<~IfVUO8nw<>KKs?fen-a`cg&!f%hc_Q
z;Y|+}l`2BKVDL5cu|z(4q;>>RBdQT?F!HsRj6#6db0=JGDctplhSiYKOqviAi;u%6
zvxgdi`-79q`In!o!~ZR*hb^_8uFjjj)~>+z0sIQKjlz$t37Ga>WLMuQow;Ws(RgZ{
z<2e<Rwcu$}uwF|Ndf~U0jpPZsiN=46ZqrH+ObqlMuS}8fwBq+XHEP5^Pc!r<`;K4^
zPY!YBl>?QHtWy3u^<C4qx4d$b!x&6#(kk%r0v^V*p8l>!ON&+do(x7Ipsx(QR{ElA
zfUo9<vYt!7ZYfZ9h!V=nSn==Mp-CUuNro<ElEJ}lRAIf<6!)0xS|!}}hx4B*oyBH#
zPB|$~=4G4e&l8@_vF-_Wj71v6Wqu&}ALLq*NK`EbWR?3SauG!CxX2_zpO~A6Z0ZX7
zN(OPSy|-yn@{}4r!i$Lk06;)O*?I0(c-?dZ8%ZDNWwcfM_c=ex;0Q2RHL-jB;VIM9
zK+DY@i?%#>s5i>lbDv8_Pwx|F&iBnYez>;?-a#HKK)$Kzy%fb`oB`&f4z|QvQyKia
z=jiNj?BF-CeKiTpwtgg@3x$tE_x$MAYOC;7HyG{FqL~{FvL^WrZQ7H4P4nY~p+yK6
z`uYhN@S=@nw{QAIZTk8%Fa;qL4qXbm6Iu_&ELe|};W(alDXffOBiW@_9F|B`-u)5L
znSgLoeqJMqk7Q}|{@v8JtN9XZOAvY_{>L`OCE4$@#&9l=m$UbtqkDVl!*}D?1O0M=
z@T@^nWN7Fx5TAn}(j<@Ee5Nv<zB6MQfq{<>`Jr-#`u7jS7Va^sD&{+VKn-zlCW90!
zev(j8&l5}s+cSxGdPP)0eGB^<%iG_|(Lbd`1^af*p#S>e7kIB1#%!sWt-Jvp#L;=6
z54wEyTq{$~b6TI{py;Fb0r=u$`Hl>9nwW9xf$y4MGkKiy^dKzo{MprQwH2IxHFm8H
z$VWE9Dv5ic^Cod@x0QVPl!rN4TvM7-dajws;gfDlZhkL@&uNJUxVfou4fs%_VSuf}
za-(`<Q{(obS^0Vpe<2gR{*mf_q)r+3uH)V)|9E3s?Q#`!Yv|MNQ1Ahhv)yCdzQ5<2
zFI?Pe&;mBP@nkyMvkFx-U?ws-*sOD=_hi(&#=`=na;?tXayfQjCE_jydJRzb8XXIZ
zV&z&df+uZnwF)ph`0Vo$S#-TD1|p}YKWgpv_bz72t`aRVomi)sljjKUZrx8(5E<;)
z>ptA~OYVzy&P!TU$h~wz`6qydtoHPcS8T6|R!5l70>x=yP7DO#RZNo_eyS3<$_w~f
zw&^8&NJ=8t958j`5@7A<0GAc5M?$=;X16qeNbvwMT80Fx!ryd4LVgb-!Ae)67hBH)
z*fT0BDt5wdU>OosSq=$Y%*<LYDA<WE0~p~jM+&ros%q4dim(Yi;r%WbF%E$wS_xQ$
z4R;5X#tX(kbU5t{Wn2J5UYJ<Nr%i!QWT*t`<OM7OR2|UGCc!5!NW^k~evnRXMam%D
zEHGiTI>;Q)vjNvQLFC1%7o<W`)*G8AhSW{);*3-f?Yk8H{X_}JG?Udhm=IL}4{Gq|
zoFeINt~bgU_fD`6{`EngMD$ivz+<`*Pi_o^63hzWsa&@%sEeuFkz7$=m3zq%Qt+$?
zQ)ik?JlxViH~}v07V#BhLfNeoG78@w>FvF48Co#p5b`y+1+=yzS`4DyIxAmyfg?B`
zFp499;g^v{bpRO#Jl0>3$NIp&74&>{`e{Am;Z)o(UP5GSg{}JrWY<Lta}A#*>WLRr
zy&_|>769as_h{hd6;e_$o^w{<uRj;!B{?Xf<G%i$eIq`{PnC8Pauw}`cwKUP_73<b
zmLx$_LhyBV+HBi#1E=$48f(<Jm2)0A_FqEFA;j8u(Tvsdek?072!e}SDd@z#Q3Gp4
zZu_XPjt<ELVJV~2Ec?{WO6^uSf{ZYfav^iag2Xy$J#(Yy=78D0Iz99<jcWX#XI?aL
zoXrEOZPP^%imgg3coV(|H@r1H*JI90R5o>+)x>b|v{{2k@8m})bX&M7CA98$N74gH
zz>dF>3)@ws03=DC9)0}_5dsUXD`etk-0$#hk@<MxCoOskrx>1NC4cd=*XBdGl+v0v
z>gqvwmqxZn=$HJWUY?@*0mcX~`#rj541)47z`Z<6u?#`%_<qYiC#@6WOiPpEIXV3>
z@%1uBYT>v?-lB4zW}i+0%gIUL^CB}Az@63GCY{qNNiM|sIX_+~Y0zWy!I3G}syH<D
z8SQ&~zl<~ODw$HjXqKQZKDvk(3e_I40<}<IT-$O~xHx+HMrlrr6_wU0H%0?|0zc@9
zdCL<X1b0kRSgm1JbB8}@0M~a4)P*ICR^@>DV2~EI|CHUBnw4D17&#&S9%Mk3!VMKl
z85jhP!H%(gIAcF3s;E;Ege^5(l0027=Ctp03&9`=_UiToXT_5#osI%1g;0bMayPa>
zvUR;6*3tLZXsq7A2Fz`?CvCvWTpmyeJONw4tgUkS0&8IVVr`&0Ezptd)ufPcnfD4g
zHv3L^szLb`y59zUbn0V$eCBJ-Tz@is`$37jk&XvN`c=^MtuUI~(a^DkcHpz|OSpAq
zg8+mM8;Bjt91zqUFJ%mH=twc(vC>k;gR?&j<k~&91}^zLdB*qDoTmdH!wCjW_@4aq
z+cdb0QMaCBY>0&$i7Vuq5Dy&G^oe%FMll6Zxm(buGG$2@ULNUo7VZDeg0D*hX^e}W
z1``fG0Rv$ZfUPeJwvJMtQ6Z55Wp@WO16|ER9F;S?mdRvYC)ezeK2sT0_^%FCU2<eF
zt$S6FSbEcreR`lF_{LYY4^)bl@=mKh4tsO|x6=0QA_EoiIl4(NEs=5y!Q%TmmvYaD
z&QOCIRC^^ok2g6ny*r9%A$oXFNCdCt@S$!PY~=dsy$d}ff(`H>_kJ4Jvy1VGtQin9
z48?+>i`ik6ynuaADKgf+78?dCeIR<06{0mKSOc1v<720IQKh#INICoDLV__QIUSc4
zpTHDh0JWs7K7PeotONt0lpY~2_DI;FBuSTY`5TYh{*!x@O>qo_8hMLxAgtJ1ku@%n
zWt(5Wez7CZDmWmKV)hENHUuhzjvJK*0bZa253<<bXbyq`&liQxR6cb!!>Jp01L#MT
z<?H9V(ZJ!@r%*|$sng_!RCOLhrNk#0FK;VRE)W?^e!G7<_a6~s4A}A<EelV8`0_eI
zP^Gf_w0~7wQzr2bqRBn7hG(@r0bXp{KV*ibY#WsQ)G6YMPdWv+SB|R(ocT3Az@aV@
z)9XJ$%;!fEI<cKE=_<})eHVP^@g|X?Q$ZftUS=e!XpRy#)wU#ISN^g~@EfgdeI#~V
z{sf&6RX9C@1Z_@z^8nL=ThHPE)qbM{KW!Qpr}|a9nN#i(g&|VP9Z`~mZW`7xUe$YH
zn{R_oQ|iY=9=#*@gM=v?stUslLeu>AWy97BRrG0@M^k;VZaSrY>V_k_1=l#6^L3U*
z4OOcgD7=<WG_+88`Mt<AP%O(e^a>}=cx6Pnl%fyjw3+}gUXTP?W~)t}9LTj&cG$5e
zP_J)+CUUtl-8qB%e3ng-Od4-(NDcaSVy>d2Lyrv3*^+2+O@mXM&Fr`oSn?5H6Ws<}
z(&Jq{P)+H}m1Y=ZbZv_Gx9nD0wCN?+FG0*hxph4P0XORrf#L*E?4vC$0wpn_7(@tu
zt?c@Ze5eIPDM5=KR7#cm;+Vy*k8M@bgx*`-+il8@b~T+MU}K~qC>ecRs6FUGjZo>p
zwYk;w6tWP6-Fyege#^zfr!Ehkm^)Tx?2S$>?z!DuUlgO8Ks1m!yGaimQ=?=&@fXJR
zTTys1!46VT<pK68uvnz*@Rg5eB3!*_VEZUJF85m2^y=?UVs0dXvzB!{)zObl78j5B
zoplyNeNDb2FE{<Y8rT*Mtwb}tzxQ7kAE?a!6$OAqG!ny8N?%E}xx&*D6mj(>sRDb-
z#}mI1f4R<ghg!S9$gM;#@iRrrH5x9QNC^p%P1^S4J#}L907dFk@vPS3o3I0SRXMRb
zrHN)*U`?`G)YJ6s+JN7?`(g?S%lS=J(~?msf?htNEysnD%9fzK%~0b&ONZeW-}&}$
ztm9+(&TmMV(HA<zc*&81IhYhah-=5#Ec>2BPtrEW+K!uGhJ){%tqrV+EoaLO)fHm-
z6>-%A74-`>ol5o*<2Sop#5mMnO%IZlw&Js#gh;-?(J3t1HT$Z-4fYn{TRO=CwvMpF
z+j|4sdk|BH@8KwnBBkf~$<wZH=RcygQ7ArU;qGbp55E%HUsBbD8ZxQPkDI68npp@Y
zzX6;)reeT34`GX5wn{Ty=?Dxdxmt(E=RYXorLOOkl)8;fIsze_oA>gfw+3x{4EyzJ
z=-XP8GBahqt@<}}z78Sh*9yjdmRa*&-t*VrE)h%_G!Isv?8JCXUxQfNh-R^`x1u#)
zS2hCt9fY>|y5@_5NV7uEc>_fQGXTGu?2jMIhF=U47HZldu}8pJ;1tr92x09S6KLp(
z%Jw_ELQ{jMW2Udwa-F!`$26XvV!AT7t1~>8w?{-@+n7oIM0)a!K&~X%epAzzEb#YR
z|Eu5#s-#I+pa~lEuOi<xh((IJF19RFvYb^?8TBj~t6J8tsx8TFlJ-Va+RllIU^h(t
z_SWl}GmH$hZ=4!nYr@$}Evaf9mt3vV_N7jNUvqm5q6O-3#enHPUf%Wn^wY4x2`JA`
zUE#6{CKRXYO6wyhLI;l;FBh|VWody%oOofGGreKq{efnx>Tjjr>c2{b1ZX-4#PV6+
z?$NcN7q`;)->;!-H98mS&0DMS?fG<AD^YoCw$jI5CyM7Zb`nV9QPjTi(#&`7-D5;?
zphZ|WDPU;Y70M9#0q+YyA`@-`K$mv2wTBhO9g6<_{<xVdBq#xuI+RERBDNY-)p8z%
zR1vs}C{vvjus>A-?45ax&RKGZN5bcP4-5@?b?y6_A?2jRor;;7=e)AKKRwTZLeTgg
z!M&&iGmFCfAkH*M5WnAVD<Bn8%vM&L*m4rJ3ks)`d2mu=tl@4>yST2gmOaw_scP0_
zy}B^>u-yrQUZ({%7F6Lu<}f1Vp88Vsfd7PTqX4SvYn<*UnZVuQ|GA$=;0g@d;i{zD
zzSh#Z{W3d~NFNUE@>ewzL?tVxsa02{pS;^q%!CGa<A!tWen!>57C1I9+3Po8QEzTx
zi9fSfyP~SCsU@zJuw8k&o>AU@2eB;NKC)2Gk9m1jXK{#XfN+sFSW<V1*pdacu<tRc
z$Zv+twc4;>=DPx$21;SI-X=r>KZJqDs<OD~xq|u0?JK@QW!iXH$!nP;l{A(-mbur%
z@HrX9Ued#UBq-w_N6<6_C(47eKhmRk$;d=qpgDHI(^wuKuWLgSt4BrmUVCxBqTLsM
zesF2*T!S#iVCDX9-_NU;x#~J8@7hn~0VVL$WrSDKWwi|eV({WbPJ&4)mjNK=bKv46
zPG~McN_GNZOu|Lpvaq+j+U?Q<i7Jpo;`~hr<=O=_D&e_8%BrC}_}oCcUj>1r`~ZJ^
z((uM1#fXvMa8>#<5w}2EF&Y-De}<4BUxj}2jKv(Bj|q~?x@w@}pQL(E3vq>39dDqO
z_3EFZ{GVb;>m|L0P6#E(_)H6>oS&V+Lxu5aAS`^gdZ#E=wAaJg*n54b$X3!y%bZWb
ztKvPdX=#BP6?G!YW;I{uBF-VfKN-g0QDh5wgrEAml;zM^De&cpo$Gu$p({FnJW}_0
zI#+LMcMiH@=r1oPQ_DATD6jgt(M^i+V_+aRg4kQi-jV7+5sg|z+C$T}#OtukM=^GU
zlys(y^;cA*4&gxUqWQ9ClL_GxVE=^!QC|B9Y{J+B$_g^tf>gOoPHCcJOdniWkzBv$
z$Lq;yO~Z;|_*I&xo*@ZdF;t*e0T%H|dYgg@NSu1m=j!POn*-a{03xMMwYAKjsRj|H
z8bjAB$ud^GIKsS-A>A*0lUJ+WI`#Dyn`xhAza7yUJ}qRwkl)=6laTY4RJ+&Ubh~h&
zaEogC@`*nI5^4U|%`Bh`pFwPK#*KwA8pE_U1>vI9{E0~9iJ$;Ji4FC2Hnx8kr~isp
z<nIGHDB?<^Y=Ayqyyqw2ro`D849_CzqnP>jtQA(ZZ*P;%Z;LI(<$`L;W&>}5*lJ$V
zKq>=Po=Q@M+AM}w)Lzi%ssLECR%-4w3Kc8^VskAkYi0OeGx1fk%7AG>(snypQAk_%
z`R<^q-c;zl0C>2*a3ROG1hU?AGl<EKmiMi`$cOKormwUQYp?_lk)j4aAG+a~(2ncq
zt50Qa===RDVN#ZcIN_gechof*<rj;2<|O|}u_n|=ifM@oLEF9R`&-`osDAc`Tupj*
zb`_VV`t~Jl0hMchNUnIqpqEJ{upPoLI<Z?su2;aL(YHHfZxoexE8&%!I#@%80K51U
z#c{!E0}n-nor6O+g`SCN8mk?!mST;?=PH%RI6Sny13&_XR<svGGNyC!#2lpk>ZZrM
zXlCni=#&AtcF-ss0K-}WE6bob42bN$m1TthT$wh(IiQ#-@!A^0=<SrI`Ao?hT=-<L
zQ2*106PD_G1{o!iayTkUrNiK^C*W9qPKa;}U}H-(s5F{-PGP6DW>$$S^PwX#y28Xo
zlk+CD05Pi`U1vm9JPM1Om+q&LM^a#lQ~~fzHUdj1FL$X!Do`8-H}aJC<qsoaifZ@y
z;78j&0sVivk(^d2m3vC5w5LYXmdeLzgZhwZZah4^(C?plMi`gm;I$!t;BS*gGes>S
z*Kb)_k6pzTAk_@6QfTxwm-udCtP|zHHWD1rYEP}!StVP4xRxW`gL=iJL%FQCX?6s>
zV`+!>$JfKz!iG!n!=b4a7TJCcE%D=L0I8%~&WLyy_`OpB-7(E>YJbrifog6+vChTK
z2s<1MZxKMLXxgVQk6i_4_L;jOQZAZ*9WQE-SB`jgxIGPDv#qRDMb}MvY~zp#T;gL`
z)hIh_;|3|XC-*!Kn<ZJ3Y@epz$(mz6!WHEHb30w61IkE_%XW@co7g~O1;E7b)+0y?
z?jJVeg|n(ftM48^I<zJBFP~)tHeKi`Q%Ykb-g~(!<Gg@dQgHOM|Kr^_un0xgy0_6^
zU1%rj1Q-s>2SM*gVKeLjHAk}E=^{*&CM`qfDbNMyO_ym-ioz1T2>{lN(6X^9t8*`#
z7IOE6Arr&2J)FxfG}wKdVZrKr0fKCwuNEDOUZ8q=xY!U!Fm5vbeODNw{5_mIxrW8d
z0=Fb+tQn<H6FuDP1TyixA&${04Qqy8m+HQ;S5<Krlj@@op6dp|HUSSK{x8lfK%bL3
zN~+PcdE4y=)#;D{=s~R}eE?(0LJvg1xO}D8FML&ibt#BV#HNqI66(4bK@x(>T}1_>
zQ-n-VP(OSeE>$vWB!=MnI!82wGUO+7vs~OIK!~JWFGbR16^F%5kV2n<-j0`)te}Yj
zlnxHCo=WyfKfeWQ?KiZs<|!kw*H$9?A)Jt*)}PS6PTm0nu}(hx_}?|qOT1~Kduer}
zgf|W3i^|Jms!P&8_x@}TG#9CC2%A`?eN`rp4_WNm%#k|yYP4X&`()oPbp!weZNV(9
z7Z}?+I~Yscn_-7QilX5*6$TWp1prPvo<6jT{x+x49mk9Qd>}JLTv<C`UJ_?ocGqM+
zk+cP>K-EP)QR6ke%Zc?uae0U@5_q9B`t70Mb(5~U9Y(g_QOd}L!-=56!SKSQ?~@LM
zkP(=O@`ZDV|00(mrezj`Ec4p-?d`>+Vm<anU(2y0N=SGHhlMpmd9KKGGl`~4AUn3)
z1sM7WAcvT-&y^Nl%3$Xg*tlTg2@tK(c#;O@f?CM%H0f|&y&81&`*>$cYd#%ig8RxS
z1mh9dPnOinYF{2M49L;8JQe|)Mfi`(IYW>8WmPc)WV{jRJwVT-__FYg3Ma;JSag-l
zUswnbhujq?kbLVcqabqKb~){UM18U1r4l4q#|sUDex2Vj2~L@inJL#6uWEm4+R24j
zNv!?_U7pezFGSQ21SMY4$T*)@?HNX{!Se7LJ>56pYhP9X?+6!#ijnVt-we*Bc}<1O
z(noa2mhb18y1&}qeu$7YxrPV%2-xz;f7#yNmX14r^S}YnyjG3{BS6FlUOpTbgiSI3
z+SQ*n`oF8-93M<at|Apz6F#ojeX6$JaZ1IP`QKv%GQuy?rwp7^1BTWpeq?ZbIy@Ty
zlKgneld@Cf3VWm#IZGJffZ+9%JSG_=d%<qtT#O#FN*!&)MOMUvazlj6MRdcsgPgU4
z_G;oMx_I^8f!*g=l=d|~nWM=x431h_Ho@p5c5h|W<;Jg))V)-ND%K|ggS<wBW*0yO
z949P3qq<uh;XI%{&$+$vaj&j9J3rFGknDhG(pzOTsC&DHzUYqoSdo|`z4|k+Ka~7O
z&m4h1UXvP=R1(=6_%*6iyKl>HSN*O(muw*1dZHs!p~PwPNsD~LXwS&heLd3>Q4_hY
z^s{S+PM%<A5XmN9wCgcIFIr6gU^k(tN$E>|`3f#5@=`YIdd7)csoTN9GyeKvQ9~aq
zdT?>`t@e}$HuH4}$q#9ZI|r>NzDQK1dHKyG9PqEWpRVFytxLq9t|q4Ow6klxFD&^E
ziYHeFhTkeH73dp2FzYXDxS*Ss0ZxgujO)ClT6sIRGg<iU3m;Q|S>kIfm@=E^qUOv&
zhR8BEhOT`vWO0mt?!i<<!@4)G1t$2r1|I=m*;n&gkI03M7+)I|0V*C?a8JX;8AxBY
z`oh;h#lzqhDWj!5#&WOZND_PX(8vZ1FK+x|S+#8`P411x`H6jG{<}{QCLROWd4XJ_
zby=FV@NK36KYpQ%Zw|Ig*3clJ+yY~Nx5M`EuBO;DB_xsj82c+9AVxTE3j?px0-^zG
z+ydMaVD;bm3v{Z{JJ+y}V=Nluwcn^YJK|Xpvt6&?3R{u-Ywx>Lm7)Lb_5~2MWaHtR
zj<<eCt_J4fbHvyQ-K;?}38c0;5IQV<PXtKXcYqYWl~aWM!@A2$IuxOW*8*@2xhHZ&
zv$Q354{BET^QmJ2Ut)eBc~V31ybFZKQZV^fLpRn7b*duYs-@aLywUqvl6Lm=d}#A3
zL6>&SF(xgQEp9I%?)&PLP1w)px6a(ts_IYlwG#bFWx3%P-tcLkx{ynz&2bR!I7?X=
zaxwv*OVgpqEp#%_YkzkAIEL%=pT)MzV*6~i>|D+I@9Oz~sB22FVinKTelqd7NW2{6
z_TDVG68wdq?P@Usm+h|#t9UvSk6z~28&x=*El6=6Bnn!}>!Z2OX(~m?y;00%`srWb
zZ;G1#CEQzP@K8S1jZ5uobIQ!)4HXq!VSu<Bbm2Bi!QciMZw0h#`s`TAI7?|TBWm(F
za!N^8eA=wJATfx8DP$1wn`}3@?s}k``-k(3_N-Ho1q&e|<p!5G%LSEyu99XvAV7<G
zl;i8~cf5W}X4;*j!tdRx3`p<jFs9yZTXU%_r<+V`Ru?#|wuPqu{O*9J0Adc(Zo+}k
zy;G9m`ALA0W51$5_5DtK5?(8Bv!t=6k2BsDW!**_m&Vg~Gq|kF|3Jq!#kE&O%nz4f
z%76WlQRx!A;!zjiYJ}Y<vGIiMqzOKbLu3ycK?_`T^wbU#a|BEcn6Sb=Tk$9Dn{Wy5
zMDlFi2yt>?uo5`f+LpV9t<KF^T7%Xcc?#~GAN<AB!TEVJ<??>`8pNC5jDekFh>*zY
zDD4CQOAR-81Tar%DFymWfE8Zoi5}e28bK_*7+0H!r(3~Er8i2oim+liXMf8YGH5hs
z<$dR>o})0Zfcxk46RS}tm!&+J!wgCmY$#EO163;x_-k#a%)!uiWsg&%Dl+CiTk~{`
zawq&n2pU|Frluxl%Conq0Z)J4$;Wsge!{T?N!>h6kEV;m>{*?%{ZEq=2wz8P6o~-?
z+eHcp#(#1%=Ne#+=I}@oa!tQa8%M5Bnes^S<UPu5(q9ZU7J+HBW+<+yePh$VX-ye%
zN(rj?E{O}(QJphC{iZ(bBORFyNc}{M=AZ<j@8Z>C)Rl5OFSSAF@rn%+gg8jk6mnW4
zB~do!o8zX!AigU|LITn3Gb@~k_jaXNt;BqxiLf%DFz-P|-_}t6b;ZQFmOyu|ml~1=
z`lvPVd|zrdWwB>ztTZOOha@<qq$)3e>82*Tay9imcTKY_E}^0MOIB!R9Kz4C0cr!8
z(%&oO;j~y|jQWZomiO~;IR{nZ7H`*9>ca&J34Sb?l1iZRFIR~M8k&M!+bmLB+nsL8
zY(_s*#zH7n8Q<DGm45rY()nc8o%NwCXz@5fmNh62Gms3VF?ezSHnWmM+FVnH_$b_Y
z5(-dB(}wOJe^F8S1Q^~jAW?KV;$z$qL<kWfY&p^;UOvJAF-mA`6L`%=Qox$exdn>v
z*~U<T75Tx~$Lk+}g2`?DvV@_4D=fgqOP@{SI2qtVA0t3MaB~5bZc65Z#NgoIL;_<l
zx<sHL)SId8wa&i_q6DZEP0**}&B_b3F_$HhV#{B)Oi+Pm?Aqn8R|RqpKUj&~R`r-*
zUhQr467Eo#Qzc)2xor}?N~>H@xxY~EM+oyn!e-8(OD@ktbqsa_Lq!F&APGp7-x%^8
zFlAU^Gn6fLrGvcYK1TMMU>l(Je7eGAEoQeQfkBp0;|(|}cJ6xw3d;fv9R~p;#(ZH5
zR0wZ;%FV93FQ@ZQ3LPKVK4FYJh?o@n@5XO2>*KtlgtusuY>0v6+a)4pq}W#YQ{??e
za)+Y<T6r{ug(aMSH5{y*O)Q@e1hV!&hS~5ba@l!cPkwWgEg8~p%uZbU#r{v@*-4p$
zb^Nr@gWyks9_1PeGZuYD=w)tIQFyS}eO9?`ct`mw_40>O)E!m!gCxVQyB9D@n)M-<
zKTtG?zDV|p4Mqg$;qUm&`+*s2F4-MUAfWR}b?CQ5WzP7$z3Nn@yDEk)xoe%|pHo?z
zK75Q%?gPPbD1BS&>|k(~{-+uG8><sZhd<;XgG3XCb<);x8Nf1cSR#6PAkssqL-KI5
zlsOE>niQkhLIdSroP%udiD`XO@jni0c7*vQERp@s^(6fP1#r?@p%~~+wY{t2A1rCO
zxHX^~VOMt;odn-`f@e<<OBySuxRXc!|39Y@82t@t9ugR^TCse%IZH`QBts{AH3HxR
za!$OT74W(32`>-llQ%XcmZZ?*(ZOkPv9YmrK+e`_u+4BqEpad!N@wHry>awQS~czA
zx&wBT);$2dJRhJqsB`%WdGQEHGcwJb@c%sA7L*33Z9y}^v%G>0p?oBf?50V$a$PTT
zEZ|jIh2ZtP1o1zQmcszYIh(4y{Ovll;-C-PA)<oi`2GJ6@Pwcq1J-XFqa~!LOJUL|
z6f7<2WjBgIoG1cQ@m6acK}@ww<Qj$D>p1{iFi~yXy$8_G)M++VWrJH=TY;O%P0MZe
zET$$V3+2G5#-fSbr$5*bfVI5Y45JBD@qqTzd;H7^C$ehQP~eChbpMBW`}=zRg}MH7
z%>Lu30vNo$JsK;3`11kUCjL;!6%bJ7&<YD@0|Uv09)Up9r|j<jnk*EQ^1GkV1!?#*
zzot#VOG0UZvCP;Y<={v*;sniC8;2}?eEjONt58~Qi<eA54F0S0Nfhajx3?k$p+ZE?
z+(_YK#0UNJv+VUjIrp1SG!#m_TPmZYqNG&H=L%<hRd%yDM3H>tB)w%{PNC~szC<xT
zIYp}Ht@~r=J%yraD<jTPNq%YRSkv_fqBG(Dc#{8m#<@{A*G5qhm5CMgGN689f73Bl
zqPp0Eq}yPdi^pM};Djxlax*?Y?h0tjWb*@Gprg8aw*!r?9YqDfOEo5&-YD#anzJ=P
z?vo4b0ayk)s+X?{dQZM)?fx?XLgPGKJ+ip-%;=x98e}gHh(09Md+UM6f$!MV6%~ch
z4$qdu*8QNW=grLJvy_tV1L8`-Nu=OaJ^pAtNXN$(i(e*FLLY$5`!!;K+N6P{Kr{qq
ze4<cRJ-Nl=e<AaKy*@Z_5HmMiaaC0j5x@Hwz;H`7dz^e2d=S}zJ^{To1*xN!T_7SN
zmUx`3ysOut6B5b-hJw@@Rt3et@7}%p@c_tZ(fj(k{s--yTZJ#Ul70bl={)4ZM-7~`
zo82oObgezs&1HVzi_Fl%YTGJr*%zl0LrkqCrjWJ5c4*}Q*hiH6RYDeIQtzq>;P;_2
ze3tdk8~(31@)9?spqiFQN!1uca+WkPiV2<pU41G21<<Wq_51!g&U?pDgygoMKhX5Q
zq7a`<4(IB@$m(~^BeE2N*U@(Q@8L<ipx-Bel<o+6P3mt87C)D$HF#2|&S(-upZ|e)
z{tjUORyVv9wrGEj1lrEpWazSe5jw?NrFde&ciwJpfI%47ZOWMkyX&4(24GoXSE0ZQ
zfDUF-V721%@`8;G6TD+mrA^2H(>2#WB{D1g6c@J=Vec5o$DQ@#cEi69!DEbwn>5jO
z+;D-NY_!f{5cx@toOP*(s<wY2&sUYNH{a%&TIvh?lvG1>Js})buZmrDxC8j3k|_*u
z8Fb#uqy>o7z`w37;x}uoYk5;T_v`XF+?zN}(*BjPkx`9y@t2{4UM6Zbow`-V$uWbO
z1U2odLyxL;F}+&xE7&R+G~E>ShRKrz#)UddnqDg2cLB)LvF|)QpBdew+iJtT7fUKE
z(J)C%tE^Klr#<rzUyJd^EEC&dHlPmIF3$-b-4Zwe{EKr?i0%|Lp|asa70Q71*FpCR
zjS~Sgk|t+ow1@b&ISmaO{5z2UlPv!H);VtA`%qEPhI$vM<CiNiyNTBaa@ieGFRD03
zH|SV*{K5W_+u@Zx<JnbjJ1J5S2DUW_1{w$^6jK&|;?)~)keCPEWi^#@O7B~*E5?O|
zIu4BRUekY{q$WHFi?@X8*t1DaRbS9IW2hy?I7HD=BjchmvOt+7zLLoEhs^uDJgV5K
z_qmeWN~RUE^pm+g@fd?{DZsV~>bP9ney^PzEMv>HBpIJFR=69xkyqO7&o_+oZDr#W
z*JI`RSxHZr-UHpAl*!)&;YyaXk~(sG71#bKlZumm|KZ4jB>n9R>*)PV8Rf=T&<U}C
z=VVLV7>eF~p0UCTW8Gq(ru!iz7u5Heja56Ys<gOr`V57a{p0>10TfQNEsiPOypE`q
zm$Y+sIv&lUM0R>n4WW8*#{Ye7jwp<Pg;PHmm#Ykg_ovI!;@L#x<&pgWPI$u3j5MEE
z(7R6K5QtObal<HMR}FTHa8B$VhjU~aVei$6#cW>_5cyq<3vIHNjavN)VUFlGEju*U
zwpZTLjqJZT`DVQYh;X>G;$rw|^~Bfw|9zJI0!6H|p-Mp9$J0}JhZ;2qtJIpEvzk%r
zmtvwP=nOZe$@z3#{dCcy;}uXab5~j?2=^QE+d7S<NjfDhnwLOY*yin_*SNK*E%Iyb
zrba?PEZDcYrDeHOy)CuRXJy`_i$PMm*NQ|n4Vrrsf$RKrM#0n$bNcwon?mHHbxSFs
z0Ho29wQs4QTO41hBBAUF$b`6bc`y$@cotNzc~t7%=PdQtvH5?bIT1;?mo~PiECuk*
z+p}zXp-BS)?{`R@^?*6!2xV()dgDTWF)=WiEeI;=PW!95vaxZl!1XoiUCU_~qC~nZ
zVrN+gU>I+vgSEYeXLNnMEOfhfQjn~WHzapbiW7=@bF&%mH+aZEV@jjAtofzuw-NXr
zIY=uyL_s=TE}tmGZ^zeWz~$Wcs1{o2m+!yht*ameZBFVeyW0}uQ`;G5G_udS_sS7E
z^JOoaSXM7jo;crLXq}eW9B6aJu;^w{CYHpEu?t&BW8XuqR`N?U_Kn8EolByvSp7+r
zern|voK@f{gt=+pI*736*YBRw?R4X*9GvMaq2a?h9s~8a_0cX)bP^;hf*Y_o0qUr^
zcw=ewX{o6a(9qE50))>1<tXL;70B|AuKj-hkKgg-T9Z*$D~2Kg2ad!S4QT&jsO2-?
zXq2UXQTQxV)pl3f5VcygmX!>N!XttYx#oJgKW#4YPRG=g!k9xwRTcBa29O!pn>}x#
zqmx+!m;HwsZVDBNnwFlW&X#bR!JU8J`9f6JT_25q<%ztPB<fW3Pg)oGMgcMnT&fW(
zVaA&7Yt2N8`D$z=`0fYVf}RrjQ(rBDM6-umyC8GqQfya+KTs{?#}$=`TJ|u#bLmMe
z8gIrIUQm@(S645UwtK#>YOXUSq&0<X#V|A!DJ*McryNUD?tfb-JW&`F*oiCh1=e!P
zh_Gt^=bZglAH@;kW=OwQ^W-OW{{J%@i{wCE!H0l0-{npzN=xSgIYo;5$&+k4GcVxg
zbiEe7MNJ2wscISnM~rEeR8+(ON@0SQ^!4ixfEOFM^k>+g%a%*-DE9DX7<Vmy|F*8!
z->kT4!~Gw)Fvu_c-yD?c3yY=KiE?6fT0G-3!C4AmAsZ7ey@MXyR6E2X$lDTIQX?t%
zUoxGe6y);zN>xe+4JAenjcZHNj}YO@CexVpOEY%_|EGTaJ70>>!0iRIy62_Bl{Z;U
zQroFjRLn(u44^$BgJUw<fe^7Nj)iQ60Er=1|2Zj5nIi5f+$oWcjB>)WRloMv9iRXG
z;<%~)&F{-w94*wdhY~!s0X~>{3thu030#4BCK$8}^C1ACGC>izz@NnaP8}C9#X*le
z7RoyM+u-YqfS)B-*Vlq#lz)BOKY{7rWo!-w)Ri<U1Zdrnhm&~lbHRrkeq10Nx?cga
z71sSkyiy7ZGo`7issEH0^kBAE4g%}3@{0pZPp1D-A_L(fWyfdvhTyvNY<6wpZ!Z9*
zhsO~4M|riD2SjvCkx)dmC|lacSd*Fs--)9UHF{lvWSN7qSc%(D|7XpUg9+7CAu1v#
zhcrFwvniK3Y*@9|KN!Ff85NZWEUwDfc5bu;EYZw+>p07%=~t}0OpUA~eNgT$eu+y<
zOP?cco@<V1#gG0u59_2#yXb7*+W+xOjERCPchuH5+Lb-kY`)B0xYqXY(J|+T>s@ly
zO4y|6dxPHN2}FM4=l+5HOet1NMhT+aEsid69AI>sk{h<?*0${;6*=@FaesyVZ~<|o
zb=tsK^dx=sSyCSPlJl&*eN6GBl`)yf2_C?}n2_KF-o;0z-o8f9GrEAc7_S{|xkMGX
z;;en&zNq2<yJV<;(0j_IS%1qKD?s>l^s|JYu4`TSt~(d}M`*+fv~6{vk^DTOsRD+0
zXEylAl!Q!$OD^>(n=y!#l=+VhjQ7e}vzqERb<t-hOVvp;{?CnslD;yi*5%kO_yq47
zODD*=)U*BWicR5HFl97`k_CK#ZJFn1bUifxoVx!i_yFN5Y|wjFxIkU$Z4(kUnp8?^
zYL#~X$0<6y)i!;XUjaKA7BYqRrRrsSfLJiiiGCd(v<`vRj$tR3lP=ko@uKEydk|d-
zM<y7Gx+&0i9-x|d+y;oex4_<=yv$5|87Zk8K)O4Y&SqLy`||_SWZdnan>3aRRsO;6
zHM^Xq$#&b{H~G*5%3GdCp0=1^U|CI3{kAMrOz?x=6|M}PfT%Y_^}=D75ozrHPlR^{
zD`%RCMKy6RC}?d|lssu2nIH_@c1!OoDkQL;n(BA%sgK0_KQ<MLdM+3j?hX{$Z*zn{
z$=))27)vh!WaO3M^ic@!gs=|L3dEfy<BIlc^$YejQ?UlUL#PQQ+{CQ1v$&OJ92QLV
zDzScVDmH8F^ivf|Q3bTuL`X{rr9ACbnS0Px+@HzH>?KOOOCs@Zd{%4ms&M!337fsI
zW3WXimdtKj;Q3^Qr)Kc|^G1@2S)(Fxn`qoMFanbrpxFj2fjM8=d7r<q!IUC&jyv$x
z`M`nw^IuBP|3`umk%WH}D%t_eH%Ti!5kMbP$Mf#sGTnY170L(t8_Qi*a-N&DknJy2
z_$Y0+I|S`nP;X;!b5jj~HP7ycCm>=l084J|R3UAcRch6A8NM$1lV7@INEbF9(;ckc
z!|Dx>WB$3GbKl^!^4{Q*8>4})pSKCp&@?Lh;kVsX<#`(ktm#TlXxGs?#NC=3;3eGu
z1_(op&|x5pQL7+`jp2*{%B9+4T2nednEaQZ2m`am>NN%oBynj~c}`~pF~v`NJ%Q|S
zIlef04{U%|(aVU(KgCcos1v7O$Ssbqm9)7Whuy!#d!4D5_q-6ruDwc!bzh8=y(C__
zAjx-*$bDSESaWCS4TnaIpyu`QG!O(C))QmUwb_BDY>%C4zbXcal0iPI&O3d4QuaYP
zJ2$`HiE~O#Rn?DZI_X;g*W|;4ueIge!2tZwzO0AR{#s;G(S|s*t!ria|5aZC+HT;A
zbPPUS4StdTXbAujTaG+(Wg2Q~W57B-Nq|x09FBkpp8S>KMXRf=ZKb1-{T<jPBqJ?7
zPGi-7`li})oILm%^y*JvM2WWNa3Zd8Mp7`>%8wD=^PhD)T~H>`K?#8CS)m2eVKMry
zT2MPWp_)Qa^|ot;9{7LcD+Gocj|Fi8?$=L*zi(eZ5$)Z7TO%_m6w<pJ^*wxL1(m~9
zy=!!Z>5+uJ4s(V3N-L}gg7%Rn+k=Ve>Bdcm3)L82D&_3UNy*#ah5;(XI-%E;rhXT&
zrZ8|=&o_%G#PA<Ryk+B{x6#=FAn>5j^CzE|wJlC$bdNb<1U(HyWWWn8?M8cTX5*i5
zFVB&Ex<23R;gIe8AEn!WAKxI6KTL`5Y6p}KhuGl%$JbYeMb)i;6GMu$fYO3=cXvoA
zosuFTprmw5BOTJ+UD7QQ(kb1bba%dMe9jZ+od0>RYd#DgV3@tvUhBT^Uv+kMVGE$N
z*?X$0;>O0s^&P;Ty6T7^y2fw78=@G<!x%w)AJWj$W)v0{8aO_R+zm|;;C$NM=>xEo
zHaRltLh2MuVejN0PO`PnEHqQ;JOdmWnpoYczX>8)#4)l^9sb?f0@Nk_;Eb-nB7eaZ
zt+QI1rZl7cEO6r3GQ+F80_0&31ZcJoRSsbTD&N8@y?koEx5H%9oxpBJd|vI_7gBuc
zubksQr23uC61<Tql6`%c^YTx~Rd2`a*627<Cf`0Hmv#w%G)qwV>`i3RJHZJC*Q$AB
zhBKaE(o<8dva`ur$*HJBhuV=;R95)#ocuK%bA}7QCyqCBsf9rO;v3RdXS2F7ERGSo
zD-5L7N8DoRDdaa>AU&ITTi|jn`pDfh-QGuc@5|WBXg#A}{R!girh^>sN$fhQ7T(M4
zmqRmPCMG5lKCeqqVbXX%cR`0EwlnROl$IV-)6jjEbOBO)%r-}JQp}j%**9+2bsz@v
z|Hh-@F$0k?V5wG7c~FE;zFry)t=mFt`Z+ifO8hs_af)w{NbrEn?T)KP1Sc2wNOGc|
zM=0!94u(DdzxIdUjiv;VH=t}JfaifqoZzVh8QQz@9s^L;o(y^3ML!{wjDPU?C6?Fd
zob$!|%7?BqWHYB%C_=khnM5%zXN|b?7GFN^mCj6)`*`_wSf=~h#6{-4MpC;M5Vv4f
zMN&7#<IS6U_7KCNnS}{h17;*5)e`bTEbEpLpRgE+G$KJ(OQ3m5KllNl&FSL><(rX(
z=NEPWYDNM$iKrCHn$NVaK%87@rC4Qme8%{zDwBupPNFEdm2o<@K?2PHiOfOLbaI^N
z15mpH67h!!p&(3c^=1lxLwJF{*X;y#l`LTC`d;%Qf6&RGivz~(7js@yk~}4QuQ7*p
zyNL_8dv<@1q~XYicOSyRB~Zrwu9S9|AzYmA^Cszpv-lJQ)i@`W>l+ilJ^6ZTd?ldp
z@AH6RDp;C(eYZo&-oe2$+D|9r<Enf+<sDFu&<`MuYZQp$-FpvY_)(BCs7qwNW+%Ca
zz&<&;4^Kp$Y30MBKQ%;ynHD^!TGoDc;t4--cSOb8t^4vv_CgHHC0^mpRqBu2UT69A
z7jVFkJu*%7Jst<HS3tBu;E}v<%}ICr+u7oWG&@*gG*nbw46{}<fMK*|gr=yg`=Yb6
zQ%FxwD)fmYAjppn_gRUH_VfIVH`>V03X5VC0u#_(wr|L92<|Vsg|kiP0EFrXrKX7#
z?o1l<b;x<{Z-<{-qzhbnA?w(5K8lHplg`P>;c&k?@!GN`|GfqBpp=V>@R-@@Lu(Rm
zOq~3)@sXLX67oI2r2iP{%>%u{J-rc3)6PA3Hq1c%FkWS<@KFqX8Ma~+m#IoY@N~SK
zHl~4D>7Jr&@#2x%pl5vMD5CN}CjKkj4{yRJM}t#&BLq%cioB}(xzMA+JXJqi#}?;x
z-T1waL07I};mg0dW0g(4;^+*ok1&tBmG<Q~fR7>@nP*O#Zm_3sXZcQp99sy{lMktU
zKg(sL958q|9T<BG^sgs?Ve=tB^i1{ZFJ?5jkOj@);NagLSAf`)_;WBtPHG><s5@+;
z!P{mMq`(2Pk{7SY*PP)L7DG5<rzP)71%l6N>gv6#2Dd)@RLEjem7*fEs{9@Fb3>xD
zRm<4(er<r%Vf@y@Dc;1#YtMGVDOuj&9!iqAo;>|I{Wl)+XJN-D@wbrEoPnI&8>-}7
zZ&7RVIxiip?tT{8SP}Ma1SmNxQ*#lq{lKUghpA@U`1GyexTcy~PU4Cn4)SAI8WexD
z$4_Ua1HD>r)|pim71K|Vj9}_Y_r~(VKR|tyevLv^_3Ou?{3wA#9}_$8k6zKr`eH#%
zC!|ARGnKDZJ`6&pU+xAUlqQ!f9{61-+F@yB(cDGQ7rfpZuqC>|z}Z0d21J*>FEat8
z9?vT(D!}0^4jjV5%n}SJ#jreQ-!EX2w!bYa;fkqTc#G-fLh61JIoCe}SeB9B^MwJ?
zs_JQCr1$JD*T63cs-<v|x-@vt)j!6L(Bih83S6Xis@~oICM%w?{>7%(dttZoEl9b*
z{2!u2quL~FJB)Pyqo=l%roHZ<;*q4zRRXr`YU^cBO>4N-ZTiprINlDYTjJEJ4kVq=
zhqpmFdJmt-ay7HUuswP5WCP050_K%3O2-8O4SkwSgaYpd{?h~%p}mIXzV&K_&&%Ph
zA0=0s{OH}Hb}Gc2?=HiLZo{93_&kLBDw=W)E)6U^;`1SDdiCOsFO$(=Ec1ldHk)JZ
zRjY@4z^qT@f=Si)q4~3ZTDsnAK0-a18`_)LNblAgk?ZaGMs7fM8U?kwwi6xlmxooh
z2N3T?LCwQ^Fg>nL^43ba;&5u(1e}}`)pF3frdgw2+1`a2;zCCq^ctnv4Gj%=omXeO
z^vzog`Ym%Dt&#|lUh(_!><}Y5div;Y?>nE1GnOrJ!SMhkeGS?2RQOe*VWuX7@ySUX
zF$thrMZZ{G_+~}m#DjVw6u|m$&(!G=@P*^%BK~{~ZTo%X1XQ+o-xsY8h7q2#{|vpJ
z-mu9oX^C8nWJMZf`eOt2O@bkW_$Kk3cmLP$eZvIGKOC+x?u_B5>M$+Kt#H`Y?(OMG
zpZ^U-ducLk|BHS2uVy*>9OieoEH*MoGHNGM8Auuu*T^7G76UoJZU*Gi$_Gx_UZach
znAfLJvo9^Yyy|GLP7*o6GJSdrHRkx2YWL?v)9liUGYD1g+QEc2e1<+8@3cgW_tSnw
zFV4vHM?}A=u{c*h8vk6Q&OzyHzbzbx2#XgGojDp1Wigo;ancdW=6#0k#qUukOe)}1
zuG*9(q&^{@;qoiRu|^RYO8NQ#a{u})N!$)ZuMWFO-5Uge*l`mm4|413c+x)jvWoPd
z0hZu(cC9^J?Tn&FA}s<ma@nlSYiRX&@YsW-A1LPh2^4oTOOG&N)(-%JqxSiSNqVqy
zNhXh1cNUbDOs8vDo(_3`d(eR~`lwD>suj%cVyIvHZzGt=GBxh7%~Ti#@a5R7c8vg1
z&hwz4AnhmU={KD>(EPF-3?iNgXps9Z5t1ULh!@I-DFugX+RX!|IuZW{Si)uyE2*nT
zk%dj*4-cJmF$6ncZNX&NE-^}fZ?NCqfGWDB5CS8^u0=>^;8N-LTJJqRRs<yw0ovrr
zWb2(;gYx7ran?@}7(mxKOx*`~mUo(Au&W**`E3KLuKjc+7snK9_mP}5o1*EBWQXvw
z8#-np@(}f2i5zot3^YAMtOo^o^rg_{oA)1B0=@9D2p())t|s^!b~T?b(091Mee?mz
z6GX^wf-O5H*eN#T%w}LYv?Hwvu;a$Fq%jIhOFy3u^fup~%^m?if|r1)Mh_ebfV;u7
z4wm*nQDFxsqc+pX5grxJ(Gi<0p}qHWaT_>kezFJkK0|aT4}N<QKm*Wv6;XDVH3jo7
z+@Q{g`TPD*N`?WPt`ty)HJ}MP{<bIhdrl8#6dNQE+2iKDn^0Fy7aII>t#^ce*Y7G`
z%QZRq0A{1+!(xS6eiabuBu`gT#)Y?TM}_$T4)}*n>Y?7>91m$<E0!Bn)5mBldKFBK
z0TSW{3#>1u(kMfSFB#slUaMNgC0(U9y+x=@Za!LBUS#e^<B~@Ywe(cl7ak>7h`-FH
z<3dJ$Y++gF4oT1Mrn6}lVMRn(WFHcsh`m?rp&g-bJ?-vk1x}2}Br5%syu4a;-=Qu(
zFHlU>2jg>r=$?K!7EYl|faAwxTG0{R3)-NJ8;fv*XKXPCE`D`|7*t?`uhU^H4#7>&
ze*fZx$dCxexG~`ya!1eDOa2#6N(2D|u`;lwREwB`kN{rf(40z>{GstLNqk+(*t^0I
zy`Z3dQ5uC%I6uyqBNi$zX_~BW-Q9BV!GxA|-dyjdmZII4ypcwU9p^IK&$rl@S(kvF
zZ7h9_=k2M6`{!H^e<VL?QulG`$P!dB)-X(A<Xd<%X6A`7n=&hD&k);o4|H5l9XTCR
z0l7QKWZQ*67Q^1{NS1V;#fJgT$uIfn@X|CtLO%i-1dKoKoy5G6xt01$L02jDtNP_C
za(4DAN&D>EZT<VG^O8fmbU=b!9sribS@Y6YVXRDZaV);xllj1mgt0NpNFD8qKOmh|
zj6GTv|6KxUB7Zs5(A4Z|OZoSH>G#}D1cH;#RFE}Sk?`fcnbIdgf5A7hT$~e)Z@cL#
z_-dzRwZv5lUYkCgQ0Kt>u{N&8)jQ3L{q7BZ(T~I@eib5B$c?&(k52h{5{}|Nx!Ht$
zJ$sw<*{bT5q?08^eW!^dayY!D;XAV42@U7jZC7iBk~9-XcFu8*?;idnvEo1s*h_U7
z&e%&gTRy`OBS@#~!aIDf@$4s3(2EngrzKogmv^gGZ^trI*c7f!hj>npM~^PZGEvZo
z`BVu>=X6#jd2l&^0H3X5)DqwUN0Ns?2ma;A4O0N_g(SV%B)!TTpG|zvXF|xC`G#Wx
zg*QKnAjjhxh;v%1T?-a7bw*}wrysS3)oNr2#87gw;sct0<r{Dfyl3?W?ZgqL|4YsH
z4=HE}gbn?;)!U2^c-0FRL45f8GuUvLUIG|dw_>mRpGj6U{QR#x!bn_qDwJta{Jv;E
znl;JFgb}C~NeE#@eCl~UySP?YA^Rj)h349-ahFSLV#63FZB?@~{4W`Pu@*&aF^f|&
zhZ*+op;o6b8eO?8XuveB!zSj%{m~+IMJtM$;0*luA!rpxI^TgvfbrpQI)ebTR0hJ1
z&%J#h!AH@>g%8YiKOG1nAaFoZNyu21;)TF2?|%+?27J>-LSU^!t=(Jh?_58Uw?SF{
z=b#=^_D0WwSzi{J=qBlcF}MPXx#5-0Pi7zr=mV&~dTla@-{l8fqjcHT-NkdqoGBt2
z+4HEsp>IchPmn`nOuHu<@?fz_n%F+(<g=GROuM5E=<o^)cMUmUyt%!=9xYo+DSWk&
zweB9!K!8*F@aGJPo;K1h5AuYa7r6mbU7k(r9pEk7cD8!FWl2`-f;s5%a>Wq95`#@;
zJs=_{9qIs9GMQ?`T<_w4p27!NCxkC@X%2*2z=+G(FPg`Gbn~hgJ;Y#!N%OcWAnJfc
zA|h)JU9v-NZ9jO2WH$$zwQAr(@aqD24CJNoJNEJ_qzWV)Ff8$Q?6-k&N^NJzEWb$z
zsgxkF{Yh)Wb3(KkAd?agz)P`#gAV1%LLgIQWFh7C^#9&YLD6eR%BB9mtily-w!I0R
zM8SbIEYwS^?w^rzG}jig+ux~hui-IvUp#w7?<*>jz>vsI6%Dj?neAEZZ|Z};J}JZn
zc-iS!Ymv0@8iThmejdvW^Wy+0*0Q>k&+x**Hm?2dkzUtLpzfK%JZAVjg5oP7&)CYF
z%Z6S=D9Q=))(Eau5MkZX<>O9El<>4#J|t<dCa}x;@?q{$pN7Qk)+Y%F9Y@7pqy<u^
z<31puQ6Ce9HNtIz_&4g&^rm0L3wyQz?8h-mq)IWhv6t)m%StJ|MdVMFwxJ-#h3o#O
zjRkLG)0D|yTAoD|38aBiJCc)};#-Q%u{@bIRO9bgq7C~=b5*hUYbUqRcKH(_%#p^G
z0Q!3%_3kxCK0O9j_A;G>>T6<4sHB#^;ITqV1mW;6F>`LZO~16VAZWe_EouH3+ktuF
zy$|~g^mWh3fAXpqiC+qW*+@Z*-$#<9g?!kewOY&h!oprb^(y*R-yxyv5U5CkkrZ_a
z+I^>w2ee(l$;wt;E^8+aJVup4j@bpqlx0nWJl&`M*k?I$dQrW0G@{}Bdpx^OGDEP(
zp{MS;K%~F5qT=Xws8sraPUV}R;*V}bMoe{SF<-T-k=DPk)pZa+W4enN9#g@{z9LZf
zq839XWAILB!-SE-leH#oga7u}G?_daGYSR~c6T{v#(YRfb;$b({2qnxj^cT(Y(NI0
zfQkr<l>oQmhB#)fA)vUA24eNv(=;wGi_vBPw!6y!8T>L6CaO5f9zQ`=x_myuIhFwL
z(i71GEnr-T8pH~?QEBABRYmcv!w!i6DnIr|R1EDPgX?12(&Jx?5SM=lr`Yma*}rax
zIutc+NB7_l@{KnWCFn?Wkz4s4nq9BWdEcE%P7?pZ?1{fV-R?d{gQ#-T+D)iw*uTxb
zs<R?C_oDwt<C5+JIe3baxwuL|sFzzH7*^5A(?mbZKc$;A0gB-swbOdB?=8S}qM*4j
z5Wn3<2Hm{)eN@qTk*xW;`8B|S3nUinyDTu5uw+jG@H}p39n63P@0B>pSCZ;vu^An1
zhtULw+`i>L(Xyp+>H`?4&lN{Cx1&x~FY96mLZ3B3@;^+Z75*}}#;GB34yts6%0GE&
zB%P?sgRGHVx7%@GL*SnjCgsb-1XMue)^LU!SJb*-6la!<uYj}18y&s6d_QIQa}Hb%
zr;Hn5N-1%-b~c8kZI1{$@HIcZ=$pzbF-kPJcQ$6aoRGaZz)pqftODx)gbVqOE&Jl)
zuHHQniTX2Xt*VJ{z*qoj)Jh{pskJe^XRxpDSZT+HP`w|R3zT>LRDhah4Uo0v6P;>E
z=X6Xx>@`4+NnwFwL5(@S2TRA8P5q8O3*DW!INg85M-PudldSc@VM?H@3=sRXvG}$H
z+dHKU6V8*9o)bWfPr6{(lx~iJVoPQfskqqx9F@KOR8iK*T_^-IM$}6y9^QT0fH>fa
zw~haK7As5_dQLTV-GT=2DR@Z2V6bMl?1$f*?Sszuym8V12Clt&j1ay@;t(T*afw#s
z@z?wlgMGjwwI3i5seah;nBY6u9sMO-Hv8)g(QJTY%tq2NuRqAJqhCVF25pLv^Hua&
zn3jIrAJt@}EYxS<wD+Ly9~jqfW)R>2ib07$wv%-l9k2NB9kKA|;2t2>YxFwPEOxGF
zz4*aA#S{*L#8*^GOYBs|ULh38HQ(--Vd=q>IVqLst*q*tQbZX$voh3wB{ljc>ls_x
z6~q_8__QD9&2=xf*2~mD&ydrIFz3x{Rbyw;dWdz}1_JA+iYLk_dLc%x2kl5XNU$-|
z@}^wKioQ>+tj0=u94Ghe(}?#Xxh7pgv5G71R)qsx<>yFoyfUH_+K2^XsxLx1WVNdc
zCyE(H({cS9-H>Cx?>C>5FzVDrwA`M(su$BLxr#+-xD-BcffDdGPhomBXc(7i5t9}k
zh?wRD`8`*B)1mmVSFyQ0krmJNmHXzSF2&NX<t3b~r69(WRU?b0LnWjjTY^9+A&?Du
z*t1(~8WsN<ljxcdXHPiL<BrX6NLY~|X<lD3SzI*SrT`P;$|ZvbecjG$G1|nRD89QV
zlA?N(Ou+B4T#kseD428{qFm66N8Y%VAu*Pa&%=7G`p%HGEt+D55LypC{oo&E5Kg#^
zdeF2?;xmGJwv{?^UUa2#eHNlMvHTlVCL4v0zq0koNl3wYCQ5Oz6JiQ)zMUvnijq%+
z|EFpI+|af=vGj)QuzwK%8P9@6-E;)n1rL|Jea!4cgA_S5{l3mwJTwTGd+KPEV!cmF
zf1bZ;X6{9m_AZR)h~r0}3GnE$t&UJ#+E%~mJ8~UNdbrthoEOhs18)Rl<*d}5O`H&P
zb{4~)N;s=>*|bjr39&3b?Si>_JO{K=zOmI#N&?nPBJOyk(gd&;^1)o0KXae#^2{Nn
zx|9LE$B{*ib=9xC8=SUaD|WL!m^Mu$L<m&2{Xs2EpcqjY%x2dSjdwv0xQ1%%iTc9G
zHPQ{;@j9M9#$VBzf&+%Djz8cC`*5;?Z+^p>Jc3s=;nUgi(NXqO{s=zr7*S-RXMvBy
zOE^d9!%x@C%^NsbRr;^#F>=0O*IBo&1k;ZfY?3V2vM5itxHl@a*t+jWPf1b(dxiu4
zAEf&0op@s{z$|bk`PK^-{>@`2RK?N6JbeObe`OYC&-2fH>*gc&EM1}3D6NOXpOx=w
zH}YeB&%)|sb9p{N=iHb|kj$s%90COYRbv3R1|H}PX%i2y?ch^@@#Q02+@4r}z%R^Q
zh|X2&{Jf4Emr5VAZ7JI?==G%cQx6aroxk8*$4!Zs3RTNdjcpB1o?eKXWSzzD#oxdF
zs4QBs?7oKS^=e)Ofu5Y5jcu)$lZO4N3@z3M(OH0P;!{2OALaozN|OW#nnbQTWv<$E
z+-CvXZFY0#C~m+YaFqBKs%(pWccJ4ea>xbfc`l$S+5lqEY(V1tU_qdGLcstnEhVVa
z+$wcC%hX$p><<g_Qt2L&r!O%vKAfXR5n~hpcgt51BAfof*9MV`M&6KR7;B_9NbUG8
zrcBd0bf1mD%3piD*K;CV7#=mGpqjPlDzXx)s2_^Q_9TkL_}s(Y$b9>Fu+V|RelgN!
zwF)Io+@%bF%UwtZ4Bm{-jLTRJvj<cDFt|WQ@NRAu6C2^H{r+D=9s{`fR4AotrlvUF
zw)@S+&cwGLrMmR7d4cesR{MXmB19NI+edWbN$&Y;Z(@n;63aXub%hB*=mla1An4xY
zCDR%YXw<`_!bF7w1LJ6Nm|+K39btN7MVhW}?;XOt8gn%*+OR3+P90-KMcx$>1?068
z>PZsflCpTa2g0aZLB*7|QUwJC%B<+;>#~RbnDhsw%Brg4C8iH0Z^0~g4H2-7C=D#F
z=fjRKE}R;G0o+Cxp%t1_YT$k;?)gOuBuvw$6jC}be7S~WKT|5G?gSNyRt~n_oiZm1
zx;iv&1!Nu!3EvlUK8QOxXsRlEUYF(r+=9$ecR*DvY_N}eWs!c)X3&Iw6#?lIurKA7
zRWvg%`-+`^Jh;ctZ|TIWlqPdgavtt^<D*`tx697pE9jkv^BZ7nyMs;}&T8ogkB$F}
zANwU*#H>Z*yYXC+N%_%}Bo|nXzgQc44jCuh!JX#EGJj1RFm4MuS2Zu(?#W?tf`WNN
zVpE;kA9jW-MU?8$QM6V+as~z_BzkbEiOr~-7Rf9Og>zU7usfRrc(vVRBHXD=kC7dF
zAzvk67BBAs7PEE+Y&qVt_CVdjTtIE#!4W*{=(7()5N#;Va0H#1I?U8s>9?jN)ze5%
z!6MK2(A%xj-DQRG^;)@Jp&6^DD_pnUUkf*E6&Ah0{)!~=Q52?ydmFfb`e!0X4y(Ne
zqIV;dZo308?TkcyzzQUWS77)Amk3u1tKK1Qm=+zqS{r6QTMQ#0YrxqIwC@6<OHYtg
z`1tp}M^jsLI3IndenkM^7A=+^3Of~{+6aO2ZAE;srnc><z9M#Y{04X+(IR5<kJddK
zd}`cOMT!;{WRCS|GKER>2>Y4p82_<d>{LM*Y;I|oD8hA8RhPGfQ?Rc{r3aIjM|XwQ
z&pU2C-?^YqyjnFD5`dY)QKkVxt~aT0W7i*5Xpa@TgLerMaD}r;JJ(J!SJdo!5)JZB
zaKg#5MGsbpcQZ?%8pdsm+jOfCYO3nmT4AhUm~J4VkFlQ+jvj3G534(Hk(D2MY8oyt
z3s@?HUs7X|V_&E+waCaxd${Z^XdZS1VB~=fLWh$=oY?7FHhKZ=%VA(#u}f_ot6<Zr
zlE64mJK8IGbLPdX*B(oG5(D_I*+m|zLi_yEFv0O)-Rf|CjH@2YQ{aAo0DKRkDzYN$
z0Xj0qmQ3&%GRKGDrkbd+Y{FHUA7Y3ryr*2*l~>zS6Q~GpLy;GmwTNr>?G3{)5a)Bz
zO<dRKa4RZ0zuyJo{JL=B+wjaO_(94~2R&cELc~O2O810;60hKfTZQ2@LRC~@;okN$
z_{H0JYLM~J_~M1kY{xNdNH3Z7aT)&Y<;CIZsg_Xp#U3l2V#Yf`0IRz9Uh=cv4T|#m
z)+tp?QOn1R06^xw60xjvUE@9Ia5<SV7*P>;Gs?>qYmohp*5mXSGVO0Xt^kBd(R~6Y
z`L#V5QXe0eh1JZe4Yh+7yqX+pNI4c_RV`t2&@FtYWc%$@aJ#tbOYzF<GJImEYL>=4
z0L{J~h?g$P=AWuG{v_a&u?A=x1$~DkdcZk#W<LinA?5kTPMzB1%U`M1LUf`#(B5NS
z%Npa5ALn(|^vx5)CH9ks?b0k@+W@Jxvkd)x9>I9KcZtIYy*-34q+bDwbRv(70#ZL%
z>t9cym~Dbr=L&g|<hR;S=DFFBcO))*UGu6MRyoXg2$PAN{VJ<_|0oqPZQ({x1bd9b
zGsfF-pn5?P4T|YZBij9oB8mPzKJ)xJNx;0JF&-voBZdE{+z6;CLPkZ}6=8|JMKosp
z)(MshkBYt!kHk348LBqF7SuAz{EoMp4$`<1mtNP9Iimp!N2Y5rPhjy7d%L75oSGjG
z!AfkCx+VNE3`X1vP-XEuQbd@60TRBuMAw2p$T-<pUPTq6KZ{O!S5jhHU!&~K)QIMi
z0-Q{Uz8r9ZbZbZ-#WDPPrO}`pR^WMm2Zf9-FE1<g%24uxhLJ<pEDO&cn+7i-TA`>X
z>Dm@B(;qC?9^#a}ZaB|2vu!b>$h|lbw_mSxzsoy@=mF66>jUfJC5gFh;4+|2SAX!8
zn0`M!<}r(b*A6nPsZuI1L93H(9%7Ipn72TiD7i`RG{_o7Qn~W8Gj6b3u~)t5_omc|
zdAlB^;2in-ikN(ezNN{>Jgzloy;=<);l0fCg}BNOGdjJjiH9fY?6=+F&GFdbH;p@m
zq6COB?xV_^cpE%*L^uc1Fd1%ut3zG|l>IiB#Gll96|qy@j=po)Z>c6A8BgKsBV&lp
ztAciwVv*5EtzO$$!0xB~V^pXbhD`!yL0G(;4ybS`%GP33UPdm%erDEZ^6c~K14M?L
zl}CuM2FP*iP-sUSo!56z;8_0SWa1Brk`sSyVv@&DkW%qS;Uek9yxnF_ob37zbX@M)
zvGin_8}%y+*%zND*B=ocXm8WKbyg5KgaE8n<wyt?heqtzP#SZ0==El@-QbA2ITF8)
z>Z>L`w(mgmW}ULUj9hw~;o}5wjZHu?{5(kz>>=P;7fyCDe*`>DfX4tZ{{bLl-M+O#
zM>PHxVA1p}iqVbxs<&I0zwSh3BtpR5%x?vh88feI;2$h=tYeV>V{>dU<QhzqBU<-a
z0>Lp_#+LnfuhFo>U#0`)l(1~fhr<kpgaY#=f-TfLrJK}Ko{;O^Fz_0<bO-8{^{T*O
zL|`T9bK}Np799QiVIU`8y8ZNw@<nZ{Qr$c6N5)c8{>358Gax1?o(uAT`KAJ0PT1{o
zS(*l-?{+cT9Zpwgr~Fx~5KB|PeT5x!y4kfh#NAjOj~RU!y#;v!gYE?3K@IRwP;#sZ
z<V<4DWA)y9nO?{g<e!=%**rS`;cTS(!!)g)<Cof0{dPpy`P-GFi$7^^EZz|~)`5>M
zY{GcV3ro^XG;k(j*B*2NcGWj$BjX@Ne=VqghU^Br#Lw<rV>!vDqL$!vG-ho!xiD6b
z=bpA26A_H8-lGcf@_2^h@B2bCuHGZy&I%`)bHAf-)kX#6V(FItS<Six>`Fw%(=hu=
zVP8@a;byATW%ksc1c%&)svOTcDMx^dbJiivY(?z5mCly#-OOHHzpvsVOq`A9#S2)>
z>*n;mZ}{#~=jxnV)G>;PPnkTE3bbm<e!i-;NFq{D9orY8&tiCu2D*9ekgD8dz*&Wg
zN!K#Biq2HKt6hH<jjHh$&K3k8v_wM=9Qk#67Qo>4NDwZBum3e+)*PS^P%komsFW)u
z5ra$JdTqPAAge^{{APdNR*j({Y|lM{3+_{gOpPzvA@7=QeK1-;X)49F0jZBy%~qzz
zhy9T$nF4)bX=22tefj$^Ata02Df{DbY``{zc(;Mk6m4vP(|zzCt_%PPYdn2T>$cay
z@1<RWfl$bXHat{aSsB$P!3^eJImLMbFv$)xX1=>1H#<Vswb&~Fo2ZrB<#g+r2J-ec
zKB)LVxF_Bb1Z!0vkxG4<;<8#`cu1p!UUXkoS-AoD?@{{&6^VpULk2%qQJy!eU7;sn
zBs>arWc8$P=WI@Jb)iwh`Xv}Y3ialgh#i9U$h!eGQtm>tYo945BHmO89EH?@YNh!E
z9Z30(<G^^hwV-r4B_5E8=5eyga|h&k*{mpgS{uT@tr+m6Uq@z-Z2R@@Z?pg)LJ2$M
z#evo%LP9yHb;#Vf=6L3yLHOg{)#;Cu5ag3r2O+Tg#4J7DC)<+>V-(9oF6Gr0lPeK^
zzmFQc|5V_~<mKdCCIe%mA&eghQtcSbO?B<zl$svPNO87FzLkng9S3BXhqWu7y)m@e
zuZ1^f+r#+?Xbk4wVWv}ebjy>mA*)Vko6U34&vR1*y%etetei|DtFX|>M#(1iJ?kHE
zn8+FyjpjwmW_qw^MMS4Lj;upm|Dw?1^+%mtl=WsMhn8JVG?v^~ncsr>!xbAp#T`Z{
zS1e1`c2eEFd1R)!UWUKwG%8Ij$F<zP<nxUEv~%P7UWk5(5wA!yg}I9st;dka;L+~u
zveEgkJ)+D`K@Z`r*XgQFeo0MxEDu$={Y>I}gG?J&m#<%CB>0Fih4CSrwIz}1_h4sj
zlA}k$MB>45pJHR<%Ptg#9x=bx`X~)kL@^26dNs73a`-7NIb#~a1OEi`{*_|~>;q?q
z7eY7&0!COx+l*As-VSQ5XY8`^)|}I00TG;hdQOx1hXvZTCZBs+{of5T6yg|zzMDp~
z`M}KfWxX5$JE!8n(89%1p*L9D$ysH{oMezw!Uvzfub$nECEOKxdiZ5Z=EM6w$iLc5
zIQ!6N+=vD1=7>Od<(P1Fo^f@h=#~^Dq`Qdz+C^N(1C-i*=OyNbxHD~2<uez+Kt4|=
z-uQ>5^yql<sgd$-zCg9cX8Tm@VHY99cnw(U$vf$n;2(TjVK2Vn412H)DYw1<_<)H;
zZHEF~V9r+<V0Mg6ux-&WxGOADUIepJPg<hO#R%!!)$*UN-c%eBOz!&Pyd3ULXM&`{
zEdYmhGoGavhj&G-(kGKT`clM%*D9NZsakiyoq=*c6v{GT{2A)Pvf_)~n9;snFH>DG
zqx`<;!>wMdlB>HOS<}h-X}8PW)t&euQGBSbFrIw~YdbQMe=rh}wO0*`^7`tXPdCL}
znv^I3>|CE|vW@?VPR7v)6`J*O3Ea7$gs^^ck%!@P6by`EcN*Z`9Ct1th9y#Onf&Qc
zXJTys75&(V%_`qA?>AHI4=;uv(RwdG3{frjd)*I6(SxY|ymUI=9$^=|^+w(3W>ZS~
z`im>hs;g^%Omb8q3@aT12l}z(1PBbnH}!emvlO1{pUU$;CJAdcXArgc9>9J&0S-_D
zGrdz%seuW;18GafFd>L!7uW#r^)jYuf)_c+L5@?nU~7+i5CUtE?M2G2sZ_~~dLedT
zYpIWy`m4p>z6|&?^JbWuI_V>?t~KI+%J;Ow=j77LUo>lB)-0?4W-)LH9HDn!kvVbw
zNd}4+sU=U>BiTIX>GE$CA1CRa3Slm39FTBMhsE*|g}K{9i=%;ex@m4Kd!RQ5*az)L
zIjm^c8OUs|87*aY8-vGHrf7Lz9yHS*_x)Osx2IoVPYIJGc)&pzf}ko&Gj5nnwvv%g
znbzFez+%$VWLd4+(=nCqX40oNCiL)<ck}IiC2x^#OSHKI_mx>nbb^RA%2G4!g6HcT
zfjPrf$DS4%MURzh%wR#9BbG%G$b*q`zQ-i*3>ge@8Q%DekjETq5{KCCV!2r@JCX^^
zK6zAENL)<WZH1&m=qu(G^`!`*bbL7$3C^c43VYd*4h<W*EDSBHC>5Sy?PPaWqf{h7
z4?^;}Vyl_4{T2;@S3suC3uZFCd1!B`-DiD~XhUT`D7~bGKYB62CW{F#WF^6;qHOwj
zDxsoU9p6v{a{&-x8YBZP*8J=kN<yQLLA@~53WSjXFzz9gZjVJ_%U&x~JJ25FZ~|@}
zp0L}2I4)_8HIff=4^$(|0WT@Y<!QTBkY}!C&76(@E#fOaDMbH^wO`KtL04bYe(Sy7
z9nIL}suAcGpN5M>_gRqBy>tFU3;fsp10Sh?vICGqlcCh+v_X%>cn6h3I$OY9%l{&Z
zD{Pyn?*rr61(WVIaa$79+A!jd5!VHi|Eh6q{YT<k&a$lAJ}JQ$U-OV3;2@L2GW4=B
zrK9TaFK?stj)v78`yVxPA_%B=ICdSNExvk>qE2q~iP9U6S4Z~EZ4>-*4m0V7jfNl+
z3!Jwt;VW0jIr|Ci6dxT+2udx$Kk`3CAnTI5q(oNS|2PUU{zKP+DG%p*+XShaaQK37
zPIKW6cg~UKc7%d(_3WYCb5He%@?up>LPHe9qJ9xb>1)hIgpW1`?_3@OYSYgrNKA+W
zLQSkpzsDE<p-%YYbN~UaG--BOJ3V*zJ1Hn`$!Zh#L+=uHWTH9DM!Dw4h-cvZYGQJb
zK?Ff8ai^aog13gKo;UuZ5#juFWV&=RrY6+hr!mA@y-YDRu-Xk)o1e2~65sG8e1Btd
z)Y{75JZ4J8J{?W9xqrg$p8AXF*TQwmGxj0g^W-Sr6}k`!`<?K}s-O3@B#0xhaE*P}
zM$f}U;V4D^?WId)JxmN25xrmkD|O5;tU=(~fv>I3D!VEp&ftLi<J`+bHk%a*UEhe8
zx~E@1O?FyflX-iKwwYw%47E8?@jSpLgZ;PH28s9QUWIS1Kh5TOO%GG%RYp7Y3ZfP8
zH7Xjyvq#Z5TCTE~&P?q7?RUVR*bs(85;PXEVxCyH{SGp(DTRggi=<LN53Y@ft`?|J
z=&c0`c<JyQf{5kZPnd!*1?Um`DD{pkRGA2>pbqbirC)74OoTi)fWgi`m$=DDMvpWy
z;pp>JuSZ&9;C=S@#}V*Ax`>o0XFqGm+>G?Iu(PYcovFt5&6JMjOCF&#j@nV;9t2T5
zdqFzFHJ2%7SJd<Z-Lb(JJ~ICutzjCOC%+%$xfi5CF8#22cHC4p`pU^Ba3F=TWFV#Q
ze186r=<(&s^&07D)9HH@?o$P(oxQ=>Tks42e4)RG6aPwXaCdV#14{<tX%AT7OueA_
zqB=FML||Rj&13m20S@iN!{VAof5VG_^gR%1g%cpIg?;`Y838JgNI?aSglEvuFLpJ7
zC>Rtp5jcw)-f9Y%T!%}o>kUj6m^6x)L4SUz!4hT<ojksRee^fd0kp%Ucax>MuaoYa
z&8C!@HaohXTkud$8=1)3xyRPoeLAV=e8o&VjevbH9-Q~O`b}tRu3Gk<lLD{}fMBiB
zKo<{KE*ZJnW=@y6dmnbyN%w=L8z#b2{`n1|@6%gRh)!Z)n=6(MSG(na+9`zHYjQgl
zjB=HMJdTg^+s<@V)-Lw$kt1Kq>so1RLk1pr4lb^(Kp0@PwQ?@)P}4@f3>=z5wpLJ3
zBHG$0t*_JUvJLgu1e-4iS^=b)bF<scc@#jnolREcV(>Dt>git#(c4FY%t|$P{Qdd!
zn-O`aJniF`_b+0To>e(z@~E&sdq%G>Ht>S)sTXg99jZM(&x3I*o!k^iVqxu8OHk&Q
z$G6an8u5R<K7_YL1Y(v0FM;oUePi5_n7P>em(bBSFvE=e-I3GN&*nr&MP(AB4kIfe
zobAoe<~DOafuSoZDnf{a2{EAVi)%S~CKv$dI@>XD&nZO6VX+C~A#MX)370vq>-Rmk
z)<Q0YXlao*kxZ^{f_IfygXW4!;;ViY|9yqiJyFKhCB9yElMXN}1%?I;R4A=O6gS~i
zWnl<zR{>MzTTEl+QTATPGv)0?{Kc5b|9IyA`mtHW;5iQjtS)|58Ym$iIG2y}Uk!nF
z+ZhN#Cj<+gqxZ%8Uo)EwCKv2!OrK1EulPAXh=aRGAP&zNq;fE7JZ(2nlztG;ZI#Nz
z%*2Gp2l+;}f`EcX1NTz8h{3f^)*s{3T>cry^jZ}o(;>%nj`?CfET_gx|36o!7X+Ql
z+nrPBv7JQZyH|P>KLhJu@Y;O&a^X{HXJ67=VG_4e;5=GBOaJ2Gz(;-UmM$;7uf;>*
zvHrbO-_>c66PsaecorYM(kk4!pj^RZvD`zRAIiHD-FeyQ>ti^AGC%I=p&+3krB}#Q
z%fExId<yCZNRl`<YQduWXNN2dQYJHA%L1A*JdI#+Z8&nXht;y?>cN)#^MpYsCS8nl
zgjBEM)M_3NZGePRGDdTv;)#upD=GP)VtgfBvM~h`iX@>a#!d5gU%H=Qm%zV&sF9qP
z&EL81uw}3LD~J#Ef2^W_wg_wFKz-oP-QoW*8lW8;!*_sG6Zys;1X=@@jrz#U3|)~%
zS(pZXv%d=LDB@Cl&s2CmtQ2O2mlzx+i#3YdeN<OIdz=66OWw_`rzqR}15YP))H$rF
z2NNRyTDWbZWDz-N7pYrRLBfdzUkaI(4UONX+4O3n&}B8&{$NHo_DcI=kUjqHy&^hn
zq^hOi1iI9%d$o|+!sOFSqspwo>EZPcydPRerz79KU^xlU{yLM7(Y!9lwMlN+7NA5D
z^?4o7@w1#8pdhA~62UX<CR@gCy%=!aNq(Agl>R|1ELd^4aMJrMt*Kmcn`M<x$ALCQ
zg+>cu6Xi79BsZ|*QB366QFTj2uQ$v#`)xJbslJg~v=Ha+@>{RVu5C_%7p+0Za@n@?
zdb^5-DW)%+i+vi*hA95WHI*QX5^2m*_bFdU^sG!zC)-2?ymm@P#ut+m)gok=(>780
zJ_Qf_X8c<uTrF^6YiCoQBlLl13K7|xB9FwWZ1FgJ2V7B@1d_ae9Fp+CA`AKQ?_t7)
z6J?&RJaOniO4QDl*=;x<=aA8M2xbd$eP$}*Z<d>hFa?ovp<r<_#gp&|&*(on=7fB!
z>dvEpq|a@1@=^}thVY=iX`HaU`|<n(%sLO|;$YcR9H-c0SR$-K?uqRUSZkf(5s0cQ
zg^5lUcS7oyIo$8`1HoJD;KGEqc(L7uE53xub!Th#&)W=mi?rmAi4gSDZ07L!za8d(
zJ=iJFSSTqV28ZfC0uFc7(bH9?(nUgd7poi2nK<Fy6aXSxv8_L0`s~y^Jv}{Qd3w5K
zf&)%AgEs6Q*>E?eeAkZ3wOx4b45S@jUe>=4Po6-CIsMa&gVk^oS&KMJ{3Kn3A&u5%
zYhPBv*N#);VQyox**DWY=$<Mo(_`6=J4qHhVFB`d4%s_*`RW0~i#1}BuV>39zr4Et
zf$kn$v7~AMNmx1&IK$u3BMg#Xn#M7^pDubNJK=qnoA!88hkA0A{l$sRb+_xu)r!4(
zNq8|uZbd`jq=i$W!}jOB;eH2qb$s?AknK0-D=kR|lK+VQ-X#AzbitQ;YaT3tPDF!4
z^aTsfAl^!$*xzI4MuGBWo{FrToV^+gK@3P3d1j8s_^R4m?SyC(dBqqwcaLPwXvgwL
zLm#*$6ko9|fBRY2ukaoV$z*>o!4qoe=9RK7boVwzT*?J;=S-Q)tTOuzejtCIVlt=(
zdVAwSuy80j%P3vGIS128yPJy^SbjRw($dmi_jhzC#Jnb-zEX<ix)3k3VJi<avquzh
zu5`#%Xj)!~=_chLHJUMcnKBV1bm-E~uGdh=-XdHk^Ve7V=bJWJ0}%;ik*T|okmm$4
zJ1yKFiO&JymOHKzU<YrX-vfM3-_H!K54cPiU!Uz(I_~SaQy^}_{sbe@VH8oqaq1|u
zv0TYxHOr}Ta;50_%1}b?UNH7%c4*WM1FB7sq8P%5)t}6((iQSJYnGxK=BF(5?5cz8
zIJm%~&6x(UQ~Y@X6TF4UmtJ3FB~W|#fYVn_TBXCPD)Iqylt1Hol#p8p+eQGTYrni%
zX&JVoWu#Dz({}ZkNSg|MYVbr9r%R%GY{RM`Eg<f%_r(!T{LjPq#H-EA8d>wp+epoh
z-K5jCpFexQQ>VRSS_h?UG$80nl`TuKIPU4(2I6(4G@Z>@teju3%2LGr(7gjS2Fk4F
zgJqoq0G3Fnz~M3L6%(UJFymlQShZZ{GI3A-uB!y#63nmyU`}gt|5*)u5P_-R!)oyC
zPyQO8wOIqW{Im=V<Fr4l^;GM%*gjDQ&u`)-b<k$~q(Z6XkPZ(-94@p)Y12ygSY;z-
zB*Q(BDGi3ynyI|ghGj<#|Lc+ck2kv1EM!D*4cM<o7_hj5fGGo|W$i3(ClTS3ClLS3
z`9{a?n4||hWbxK9Z$Hi7rC`m?i7g=U(2=dfWFiolnVCfb(-7V+v-WZ57QteT9704A
zwQ>`YI-Gh1zrXCwE<Wh{_YsVU2OAAt!X{c88q`j01%%4FcWhs)gN~AaNO_J861{hj
zmanI$SJ)ELd0Ktvo{RE7|7}oFi10w5puDbLZ{vOoy;F8h&SuifgoK0{5q*9AvN4bu
zgld5J5xxydk++-9F_M(@yEzQ^95)Il;#JP0%P%d(3-2C#CiqSs)S8|UWnH1mA@SI#
zjHmExCjK^7+I_R6)DCo8tqC@ifA35L7m#<GtIwK;>DvuHp`MaP^rJlZ_PIqg;9f&G
z@XPYz@=JVAn(QrIIyNskX$Vb%XX=hi7RAqwKfM6%QBXL3Y)Iz5!O!0}ba>2V+~VXY
zeU+uZ`Xk&P71q=x%-09Dg0|ZtX`c43;kj>JRqMUnw1x&Fso-(ok5zdaIXMx@k1FD|
zblpBGrB~iN3+1vuT5hAha9lq#(rkewj=RARG%TpR%DDzYSltK{^ublkY?d~jWrHf^
zaXRNQJgJ{*^`iHKK4aXJoSxa*3L+`hs6V&m`=TQBH#IN<wXD9h%7(+ZKM#Uo-Ih}I
zJ?r8HIH55xvXU8FFf+ah|NCbCa|>+veLFrFw!BZgauaG_H9+o~2LjG^f<z-w;(mw}
z39izTdL)$z7hg(0nb-5;T+*Q;fsN#!JIoCB^Y8s}>GWzxR726}Ls_9`VKE$!8!zZk
ziWKh$LS4V9RA~Fh5|?aez)Br-m85;6A*?@m3T-YnK1q*6nr?aU)NVQEniQ(Sqfg(=
zH8<Rw%B88G!@9m1Ou*mV4w-X%e=$V+gcdeUgWvUM_!H`YG?&sh7|frGKZ+HU&5>{N
zIyc;H@|TX?qVw;R=d;70%Kl6#>bA-KwPk-{?zrLnBA!LGNw2K!vB2ma(Jm&Y`C)gz
zWBiJD`!0H%URkSU+@4k4JGZNs^NYoe23<kBVO1srPZD_TsEFY>IPawYuLE?L5Q5k&
zE@CB;jt<)03<U#yyU%l1ieVf(Red$GdBxLPxC%I92xzyasq~b8Zh9LJ;ihELN*%gt
zIXIse1!FH26(}Meh@li(G+*oQZj>$7$+Jnn7&$dV$eNJ4D4zi~I|Ktop9PEZM*i40
zdRtPqKivPYets@a30rjcV;rq|TPSB>e7nfO9R5DLp89QoSFS&w*_;aPfL?e=BHt_9
zVA*U=T=mK8?9TmYs-ST~$yc?Op)&lFg$_4HL{;dEsqbC%20!oi4z>zs$85dp&{6gE
z;yOP4A(vk-W7{<_y3KhTD#Tu@RZGjgyVCu=rze8(RZYC*|JZUx!cm6F)4P!iz`0|<
zf{7eJd^8-@-_D{o82R_|LnQLn-4{%?emOz^o^Gv0{PD6+gGcx1^XHzrxgocQU}vce
zL_I7M|MiM)^%Nt`KA1;U0*-=E$VoiyC7(&8+eMkMoQp#$gXftQAF-FNBsMZFwI7D+
zgGO<``$b{=4<asb<AkEV+}RIVq#XD6LS2%3!&5`Gq!(gnm4Sr4A;|HUOM&)XlLNAd
z;f<Sxkh`FEfJ+C$uZWF?Son{z8aF&p%iRUneM!DU&%Za2e~vLW5a2!_Zy*G!{-Y55
zV|xyu^j5F#UU==rjaD8l6iI2Gls}((q=EgY?^U>jGBShf74yiIA`6jVEgyV3W*E|s
zD?o4P0j6(RyCtidzra~B^Oi7KmFX3>9kJ(#NwbYkaYM<k!_}sfQMtoH=NJFiVibWB
zeA?zTE%>#2@ITIo|KE=+EZ|-l7zi;ZKl-~``R6J2f4)Bngi%2}K_=yo{;P@j_cxT3
z234P2&vI61;u-FYF`hf^=hh7DFxlV@;Yp7yzwTpDe$OShG}c=Ceo{1OAeM@DjCr^O
zuIQe&gz*LO$%a<7#f{ACAri)nLIuh?SIME63T~7WY;TG%9<eaMKZs?^Q@c9|5PnV*
z!{eurxs3YY!Fpj)X_Pe&L+kbYes)a_mr|7nEkD@%*1@bk!V~awprL}4M0SJ8ydS$a
zMzT8h&->;b7fZrX2&*C>d@=@P%@};V>m;0Z^*Xiy+x;|P5)Ih;8qji>1OUB*KK2W@
zodK)R>ml+K-1z4be#YR+ibu6^#_6(CPIgNE-BF2nViNq(s6IQCW_K_#$%X6`Z24#E
zK7RVOVJbG2BEw68h}P^X@T;|4Rld}Ub)Fp0(&Vo4SD`~Efve>END+OkI=~x$#>iMQ
zwgt^^a0Z|<|9tAhS#0Z2ei`Lo`epPx&N#-4M*4y8*R17!;@=l0!=ius9B{7Y&_~|p
zep0=Xddi97>L7RA?HRhYU4-K*6`4(P?Y`@@<m_aa#!q%K!I$s2gjsjBRb>3t7ezO9
z7+~t_KvzF``%>Ugf)~g<PA>0n7w_#it+s*XKRr~=;STtZvX`3*o-^z9A96Z|JkHo{
z8s{rPZF31Y$fUcdK0D9ibTR=2;<T&}q}oyd6V4Hr<T-$ZvRV8nj;{;}3CS04t8Kk~
z4>GkgFWiLcfkw?}=I|qAhGKYe-{<V-D5*U!FR$&W4E1J4^2=Z8Hpm3U$9v(wVvK%Y
zdN$~#m-1i#??s&`qHfsWRG370_x7M4q%44k=vmEXTHL>i$uIumQGzD99FrPB{I$<X
zUp1XZMd^~kDwH_UsmuM?Fw>UY3Omm(E|v!r154GT=Wxw0VY<j0n~xK4Oo8+*z>7ra
zK^HGgLgKjdVvr3Y@~(ES!)%%S4*|1!LDMe|h$8Td7QGj>i?p<60ebmw^-kln`|EXf
zv^t|)`W?TWpY1lM$I_u2!-1UE__g(Q`^TahL@6^WVfk=U#lLckYs0NQ+Dg}AVq%yI
zga8r2C>a)<R$%%iotTI&fzbZTQB>4B%whQ1`uw{lKpx-)zW5*Z_3w`2bZx(F^ha2G
zc~zVN$AU;`uq(SR`X-m)va$Q_t04@tbRD-mWE}vrLgU9=&-Y@1$~jNPeJT*T8(&4k
z5W`(Xb9IBc7!M5u5XxG7*qD%>{dru0b4?67C42WuiP7jMZWqzORe2)@|J9kg<>&s_
z#vkk(I)7Trf^$L|!XoYXG9!!x#?<>Nw2u-@&!o|NK#uZ@By3-7ZukRmMMcsZ8nl%s
zEJ_4Lo6UU6r(;sFkS*QC-S!urh1~>UYaS{R8V^QgWg3TK6tespsA%-ciX~3YX1ofr
z#44R9YbU<nOt)uNqtAoCziy2>QQ3=$>0pjDiTz2Y(^?%DqcV{3JUug0j0jyiDaVMq
zIMUxA(e8<$<!lY3%R+SY;>}NPK4X|swD>@H!I4QNeS%lZn3%|r*NH1tSAfJ638a~N
zdd};yTqCf>k+38#8|2Oan|^(@`jh}|tMZO*gT#JZiOr}BP0+;B(z1*n63=OBY&=3P
zqGEa9ntHIce=d4WZ@6plwA`Q_uKkz2oZJIqIK(lW?)s=UatSYV*nr{aft>#w8j3g~
z|7%PaTH4US*WU4SD&H24hN7^c9V5%LX=*1d-d00Bb=<v9!u<AnCFv*;;*tXM)y9z$
z*)a4uT!d+=b8gnp;{8A`wnQZLJ61D#9#j#`$LWoOFkyzPoxDeHOQ_3#%DC^8-G5Bd
zS4(s5J$UOFd>u%y`r+gKZdnHJASPu5gM_fyeTNbX{}OZKPNmQ*UbI7y$8C|e8Lsgz
z<dh|~^MR0Ov^yd&%hcwUzK8Cohq|ZLBQo8kzD}A`=-zi8q+i${ssC#W6e+{ra4T-o
zBmUg`&oc9m_lOVv9OQvP^NnemplEKYD%~DhV;y@+RO)KfcrmWbkbU18j+BhKLvV|O
zDIaCgk_h_w%n|jtWsk{Y_X}%Ue#;mo>eZiN5ltgn+NMvg_V%rwWM}g~Gm4-2Uec>%
zMG~|%|Cs4}kKDxj5WOtsmbsH(hr^UC4m(p|cC$C%XgpD<7C;qvr&G;XNys-|S2df(
zN1cqlJ6m~Izv1ke`~~rLRQWKBgwFWJ+xet>ipU4jAO^F1S>e-6Z>AEp=~%DB26Xx<
zTY1!1Ar&q4^}N%HD19$*5hP$mID8~tf1oN-7^ha!l934_0?vz3DJd!W4YS5e{;D!d
z8xD<)CDdBonVC<ao9r8quQr+zgH0hF76Z<=r%za^J(2-84mtB_d?4T9X;5i9=C<Dg
zpaMNJAGLg}Ohp88MLtg2D(E@xqL2FZF1V0>!$4^^_=Nj32x37BvLFq(`84Ct#WQOT
zjkBaeqX20KB@9UpIQ11y`rA9GyYN{xr5<{0>|NLK+wJYlOojci4|r7xBdu!w_rB^A
z{`bbJ{<><Ga*8PGab8HQ0U2dWmx)ZDtsD&jO1)+8Z76KP>>gIQEsK{tPp+mU+FP|<
z_|g0mLYoGnmFG$rak{c<i64tUekiGR`%X3gX5|LEK&MtiYLF%(vE*S?0;vt#)WOSd
z`ER#A<^43fb;#4zz7dUWNmtwEJZ{%1SvPSb!FU1p0~rp4knCf;KyGd_PhwZAY^_$d
zIKBTxVs^IyYlD_Xm4N?kZ%rZLNdF@e1o15Qna0NP;LWc@r$S3S%lrsymG`C%C+36_
zDAu8ZqQJP02Q~M3zRCNttvojD4JKIMRq1hWnP@7>Q2!~l@S7jC^A1TnQxz0ar%?Ts
z{{7XY{WO&20<uTmU4^Q=<dtNqUyI^G{CRcdBI=rru@&5wj*(^H)(f+7ah!I~02*4p
zt6}bz!-pkjU`jGci`Y-FaSZ^A4LKhCWY4?HT)M(4esox13V4)7di&hqq~^)1jBViB
z5(koHH4wyu-CFBGc3h_f1B*{qe-HE^2F_z_aWe#At(?fWR*za2%f={f0L~MN*D-Ys
zK2yLY6sP}t@#BKeE#N|Rk9%&)=|=(0vx;4{`p#Uv3KS;d8sa5F@;Gl?+{_KE8J?QT
zzkZd1%Vjx7BYgQ?;oGlc6x-}odjrlM3R{HCZ8s37^MgF=7t1$25GV0b6;-`m)AMGP
zbRE=B)p*;-t+%^YGfHqfm|sb^L-y~%*X(2VIDEi5NIJhfVPc>*oVE{-6N_9{Vo_Qz
z)v6CP5GP+09oiA_CGwC10)f_96kx!_9i;o4fHI+K*?N2SwlL&v-Yqq75lD4A{G=b^
ztScg{Y%2iDxx<01NzaQ8QpoY4OY_l0nFpt~rJ(2xx&XJ6(BT!!Yu(w&mNU+Jz*q->
z!H>z8YHG0_?|}_Tq9tqh-XNju!OY#_{jEMN6I0mboXAPU>GtIIkO)h;tmChnjjZsl
z@@fw*!=_J64Ly8lL(u+qDILqe*UQI075+bK-L@sN2yWT=7!Cg$Fv4m!4Oh@9Ku6)I
zem<txIupA8S^X5_wPXHG+jU<@?}dJI!NLa|4wL|GgfO^;nZRfmIzi4CF8`0NuYihb
z@A@VN7?4I}=xzx?x<$IXLurui20=i&LsCGxq&o!Z?oR2J?(fXK&->o{-1~lOu~>u4
zHR73b_J8mFD+%8$sl!JrCGwuDD=uPSp<MtIp{C!5AM-UGE2}f4kn1)g1Kxx3ESyC`
z6^>g#5nTXI62}h=iwPlv5DVw*-1yeQ*QI~hT3qIoXmloPsyb^ju`cA92S+`A?RO~t
z;=_k=B*<DefL)rkLeuUqNrvoCdcTUqX3`%I$>B@`8LkG{*H=`q=Fy@?ikAf0#dl~T
zcY0+nZLuQ$Fhmu#*XV+5gp16~&xA+axQMSWq{PE+&EgZA2c-A1evBj)5)2~TW6d{;
z5>PKeH!{sAP@q!ZpbgLFT5?h$G=n+sl)tMQ=9PKe_I;!+%A;I5y|6>P{(;wuX_WlB
zze1Ftd)Q3^wC@P83Y>TVgOvHVFWXlnAdYQUEysNT9oY!AaWpd{ql}o&FggnF?YH{J
z+x-Q|*%*3LP1{-e@lG%9=>sYk_osGu>ScVGLkyvNy9ZuQ?+y242gieg<?1T7&&LxB
z$M89%`v^uGsD@kb1+q!Ta8U_Wf@cJ?kymfzsPZ#?8eLw7ti(ipSKvE*{Xj&u7tD6n
z8cI4bzdV^zlg#TF;lYi%)?zaMg_Cu@)1O8u_jAS|VcM!B91^Gsk)4KnwFX@x`Ff=4
zXqd-G&-CRVOA*5?EbbFI+pMARGhp}m_n8rR4Z#Gq<NO{Zz+}Kv#ZG#4h{Ysqtv=3o
zcG2Jf$GXY-sIyt6!Kk`0%Qk6r)utxvt5R#Ti+*VCXO)oM9D%OVwqMoA>AX{=H+Rfh
zcYTu;>0pk1eOcE=talA$5n>8#OC95Y)qH6(p7`V#hZ{8yWvlt9>o4R^TX0^PR&z=S
z+VZkjQu<0)YuUL{VT)8}Wy=4!(1|xwQ7rG&e_fR+zR5~8`U*A>*Vf#8l+RD2Oqbp$
zVFJhH<UJC9`1{$y$4=763Q;lEYrvV}w2?UcdKRnMX;;~LH9*9EEL&`T#{~%4+9&QI
zW>{P?Txs>5PY&mC5w~eR6&J8Qh#l_h!-CvF%g27%X^`(*k#=UE@G)Ew5U7gJXQ|P7
z-dqz{E}m_VB$az@GV)r&{#fd~fo&?r@`n}IJ;)HJLhJ>Ylz0&+hS~7#Ct&z|tP@cX
zB80JH1mdwhoX&^<u*8()A`HzQnd%m^n+%D-zZWRqz=F=$92V_+EX-hZH+VeGhPW<<
zJt6O2X>fzucTgmvi_01r2-e!qd$77y?4SZ&sPbrjHL~Ct;Dm~f!Rig@(w%ZaZ^c<<
z4J82+1V<wZf@I?PZZaKxeP-L{(;$-HP)-=%k`hu6?px({n^U(}<jYuStAMK$-T_sQ
z6;?Ul`Oh>=IMNux#vhD6X~Vi#Q+F^%MoeyU8y8Ro{0{NcG*5>;+_4#Wp6m<!@<hlB
zJ3z3pKeMTM@z@H)X8qD=yH%@ZB>E^jiSe8wv=gu;{^okN!6S@<m|M0Z(=mUd-R>AX
zGyH|as#=8Pn8OQw&40$&cK8mUc!uzjk`c5640Z-dgikZ*X&xu~?RTihz#2R}LKE~t
zFP)u2Q+OMo#+3+7oRGYY#{yGWDMGt7!z|1!(RN{X8g7h#-Nu0JZ6W59Q6ycg^+54F
z(NO&NuxDKKv<hEdrn*iQq*}O`ghvHVI)B@iq+3;4yPY`4^8UfZU{=v6we#n^Yx&2#
zJ5K;#6CjetE+Wx=f4PUV%f7#QI!fucSV8lPJ)EoW2MMW%@vZsKQgY-O+Xy9+OU4a7
zT`k!FD!kh8dvm!0Q@QhI1BJ<L-FhV+`prmO3Gsu-eV=qBBuam7IPe)-PTQ+La^VTF
zu=0ozS<V{pW=e-P3-iUt9kSMe^E`=DeBBF>QO#eY1-x?T6s-V8gB5!{{Hsh3IT>BG
zA2NZx!I~<lR5B_j3oDQ6Cp$%k+pM4<`#?f2IHT9yjTh582z<RmHg1reQ{j0KB|yuL
z1~QUUWxUfktkfrY)}V@Ts5#5nt;s-QpYPL^?*Nc%=ZqhI2bg=sbGG)BV~m)1;q&SN
zgGVDv+RN{8MBT1n)LlS^((FRvcS<Ba8Yj<7e@nC{e)lA5aL^sx@#3R%d&o1RYOGvV
zO~3-P^{v408rjF0xL2B~wJQ%tt~KBBW|BKIAJ1u3zNO=0+QSW_*wM7}WXn=vb7Lh}
zBNp`R!zfW>qQQQQ2ibxBs^0LY8aF%jFh9;{9K*AtHAkNChPc{voFP(jg7$;XKtIkz
zPrNrj;pvYai$bQ?>fwT)=Vtk}k4A1I!ihr(ju$+ScL3*j6X<K67mFHKS0*W}9{9Vb
zsuEtm{MZ>G^%=GYq4?Z*nRPG#0b;$>sMeMjVbffzQKE?z(FH4!_7)x1d?kU$h$zJU
z2)pHlGyI?XR-}~nXnSybQZO(T?<6e-3?_8`>ky76_hY>Uplf3J6_3}?y3iyc%J%T+
zO~1vNn<WWq<7IA7URfgfN>=s^#&6v+*l)ksH43ZKSFU_UwOWX)@YAx7KtQfodg(M{
zxzN~#lMvu^2peFt20ahA2Z;7pn~IZ51E3EU2ucy9t?*4IIiDV!ux*OQ&|za;+C{!*
z25qrYMaQ>?v9!)^3DSofUwcLnZ`l3X4~I~a%*$u+H^?O&L6#Tj@C^~_M^J;2i{Fth
z8rC00wnM@s*hJ7BHZWPO=U*RUMweK7@wkj_+~I*%G64!q4Y3O&APov=1g~v=@8s7v
zgy9&5$vXn{3lrj&kc4--QBOWWJLrH-8}A;-rCtZ2{1td!GaXizFxS-Y3?8+<FHL1N
zH+tuojff#!6b5zcf!zB+&@U(Q6`jtE<D`;=7|SUUff<ZS$nnyue>@iETQt`4nzhd0
zeKvkqbu$>fg2#X=gfzI5FZ(h#0B@Vb8Ig6P{X2YQ*ELb7g2`B%dnf*S<p48#XEo0c
zEVxMA5RkI2?qc5Zb0_EFJkmdKAJ%Aq-w_NGxa_Zy+4t^~5b8;+EY-EBzfcIJc=)IR
zuWZ>1FD1Wxy5A2S8w0mJ1Rks3Et>^!c54#XFc{v<L2iC0wGmwuv77Woo)9fHIGR;j
zCjRT=&mxcJVo<3qEl7Ojh+-6J3OgI~X~n+2FzhV5e<)UqUr7wkHEd`tUePfw5^NZG
zl=g;L0A?8Of-p%+TD>)rD7yGImDo?5D+;gy2N^<Mbq4~5v(>MH&NpW#mmJ|P!$ZEq
zfB7MYG(s+XAG6ePIjI?-IiewnMm6dU2foXYw6wCS5rqkFo;@T%EsDoG?1h3^;A1oZ
zILHGY4BxS}qZOY!>lRU-$7L(NB1Eq#fU;F%|NJTi>j%+_RK>9CvbzLft)~^Nk(!$;
zg!0|nV38F|S+1*kKE4+}S_%E_r@nk?kJpJh<-3t1esk3GEJKHXmCXM&;%AV!UhdZl
zl<-m-A->_bp+0Ul0NT`Uk{J2QH@5#Q$T85Qr&%^M*gRj5cX!|l_5fcJHd+$!yuxA{
z9vM;S#Rl?N0hQI-JUNWZi%z^1+gRjm$@3af;mQ#TZmv}hEAOGJ%jVNN&@oqY&*0rq
zvuVjj_t|cL+QuEQfdCE%L<WD@HB3Ji!C56X;B6uD(?X`NaQEOc-qUc!)u0=go_>vt
zX1O*(v}NAM)A8zPCrum%w`xNCm#<m4@|ef43<~J~Ic>5&|6><&4N#WmqkCRpIEvOa
z-kX@DtL(x}9@G7QSWBb%pw^oqTk#7hb$iS)0~H;vcJdt(4Z#OqyX6tHcTbN*J1)!5
z_RP+S%821UJ5=VlXY2JI7K{b00ttOod(Zvua=?61NZ~bL;wa*N)|comH*+ICd7b+k
zcc@1Q3TfO*Leas*-7>!ndbGbYwid@GCD8&cZd`m~qNS*d#vQE{Mh_<?xP^q&XK6Bp
zGQ9sYs434=ro{1M)ecbp=gTZ1rdUd3K8|{>+;x147z}HeV?d?l22nY9wL6tw#sc$3
zK__mq(~FSjhM--6*gl{wWk?@OE%BAu)YPb)Nu0WTe-5N<o_aI_oq$s{$mpKyme28E
zFO4rJ&iaponhcYBr%iQrv(~WVqs{krQkg}kqJo0ahA(ykKKE|KreKnfCvTzFs|e(k
z;q4RbbEKNp^b8E4%UwV4v?)g;(wVQ>l4WIQU+&Ze#Y<0T{A<C=3IT(3&QwF5{6f2@
z87%sF77`PwcR%SP-?n(%y5!49z(}SyD^|MLj#|K~f??9JVbG#U+SlY~V&D{QTpOG{
zQ#+|YRVgGCZH^R6!ZAw?5z?<23IiY=Wz(|nn}^3rtA`=9sax*ffR}w;!yBUhz9uPR
zc+b7Am_!Eh%>D!db&n-_Y;~-SG#)MNOOAn%GljUs7PQLkPh3WO*8To`Pr2^OXZ?JQ
zx(A%4J#9J4QAUpgB>E-3@atDud;%&2F19KYwuhCke(r488)CJK!!5%58D8mn9j*Cu
z=nT_f`A=_2l9)`+rCE&6k2_Q9QMBkWRW)1%>toclO*9sJ%w>QOQT%~zn|OuMB>*N&
zigQBT$yuA%e0DH=PT)ldA+ktS?J(933q~4zE~lxU9kZh@fW3G>;1lwTZ{;Skm3C>a
zCNUwQ50Eu)>_l3hcRm<#n;B9PqUPB_b|N*ozIC*R_BMP5UG-tf6E_{*X-7}bFo3l(
zC0X+?x6%qmI$rWYj^WR4I~(Kd-x6zPlhnq#b-2zLkL&AI3O=YUFE7SUtyLjg$cD$U
zZH3mlWv)F0UCmd#dtvtDQ5&@fI*Rzi3a@7Ifiy)aIvjE7;Z8P-DE-X{9rn9CV>?2k
zScna7`ZcQSHVc$;-m5|n>Jv#CnkUS?HFC2At`$|Tm{@Q#V}vNo)^x^%2sZ9Zntx0;
z{;*Ooh_`k!!f%*-PE|`@NJxJH=@qhl_{~p@&|VgP!+LwS@3PzYJ*-?g$UPGZx3*+t
zQ;tkNplqk*4ZK^GxU;Jen@JiJQqUF^Ii$lpckj|^kV?uCFuo)79qSQxW-7sWuONpd
zQKW++&!gUK#RUwPTQa>XFPS(ze<maqlgwcksB^tl)8R%8SB?Zt->N%{V!mez&TtF%
z`()6nU0dR&AugN7jGM_E_t7cetwsMZz6|%IO+;=L+9wY`wcZ_tWt<tGV47Rc<D{1`
zaa?8bfMzEsf|{p=R|w~`pKT!{pR>arEOWZ|zEczp^aGsUm<W!bf~7=&OQBU%Oeyd6
zz~7=zh<@c{;IT{n;MWO1PGx94I~ip4HsfLWs+ATHqB-XGG+(cW<qX5@&y>&Xf=kG+
zvF0DfBuEdd1+7GLhs03ydjSP=NhZA2LkD+VP@BZBkj(pEv`9t--fX76Z5S21qmYWV
zlJN``Kj)6=Z8EJd;Od_JCd%);)LnHEu8$$*$9v8S+Yuww8>pkBqh!E2V@4RPkSnk&
zO|?^2=6?uXZWv}^hkU5x4yg(-qj-#_SR9{F5MuJYB)Wbzvs}G8hkJ}_INym=S;<ye
z1#d9Pdk2ew!S*Y`-;g9($LuG;a9(qBbJfzH`@=tXyMKO1<cCdVubg<c_O#E%i~~@2
zjFW~(`5xiXJiF3yZiqJ*s^su*pHa_FW~IXq{*V<?v6;_VK2r4A+q=@!<N*Qs7i)>8
zxbE#a>1bc}i*pM-ij@Kmonm<%0y!6(P=X4p;on*4-lTvCucQpGNJLVUX};35MLu6$
zY1KK{EwtYII=bcbb^zF%z>5ttaQV>uG-1D3<n*am-PX1_&NKJ&)yL3<W6el@{i%Kq
z9Ujf(1Pknmu_#*kjkuZEm(!K%$+_4>Fd&M?OcpMkwgO;4xdUE}zkqfJ2a+4{Qn!9I
z4gE7^8oc3X>tXG}FCdXPvJCm%Q=C*b=BA_ojKAPplnMaXy$2@3_OGHMZx`J<ws<M0
z6(8~r42iHTIu<o-qtpyWn6S#1iK>K_k)RAtd3OMq96O7YKOss!Cp#siDfNb~Gxkje
z8;~zD2X~@&o`2RqekI-LHa6i-$y5^q?eneEU{^;cv~*&|CZ;G4l%7LJG)M>t-6PNs
zphR6E<KZ--^v8XY4kewvMLGe%q0i;=9uXMs8y3Mr+NTD4u`b34|3rOJ;oz3j_nkF;
zA(!M$%bxtE(;S(tW#MNrysE0@)t`raR`V_*zr|qwNX=~HQZ6Hc86~kkSNet+68IR7
zX2JWrKI|JnC?5Ncx!%U{d>S1z_QtvL0pm%L9%*ujYe&qxxnR<E+9Pe><!(SH0BI|-
zOd`{<(1la;@nGeA$g_%bQIlhM`&9JA!w#!r3-I^w>$q6dGFzC>%?>)ilUSxgRwHFi
zOLib4Mo{_5V_6287Gf!t<Ctdn-Z0+9u`7%0SxlvQ>XJH=ba_i4cKL4O+=5%auF&>)
zHs^H8EZJ)C^u5eTQhVd}TX%~ZuIKxbSvnv?)E;kzz(sLOm|V^8D9R1*ulTz*PBn`W
zr)~hd(VV77U``<iuwd80d#oFn)Cogl#An5t<xnB~T)llx4X+1!{u_v5#8+J05Oh1h
z-{|c^wd?!wMa_lD>1oSOmh(X%FVA%73-xL0lz0>glk1{=a0cJ_Mmylkh0wf;>bG<V
zT`X@Z_};1vMzhjTR`X>eZTRq}$$02spY9z&koLX(REhEQoMJLAp?<u?b`@t!3{WYU
z*Uf;zw3yu_)Z5{Lhm$`M7?cWL%;>qMN6NlCM3RW#oygY-dq0e2;@%a4#mm+WW$K-d
z#kF0O+KQ=Ib~zoai79MZJ1-9P_gk{Z0c(&VIW1e<<e}p0a6cUJdo${8ksGK_=yB^^
znG5G$>G#55Xz#}>3Oz-fOk?#d0$7Buu|qK*F@K4%E!z?AcHjwt1)I67=O>lU%mtJY
zAS2~~iP}r;VVr+$5Kur2NyM!EwAxXxk|p-5-w9rtHk5@iay@A4;6P5*g41mu1d6a}
zPlN8vsn5IdFLIn4jXro!T98S#VPtr5=QTALM!Ji>w<C=bxSTaFGlf(}dqlHwBM0uG
zLzajrO+S}-Hx9iy=vN{;`;qVDzNe%i(<v%Zj1dQ)$+Mfk#5g=|<lJJrTZ*lD5mgWw
zd7J%}$toAc8M~q7MbV)Lu;>fVbeN@%tv#U;FqoOe>AL&DG1hPv2=WMnQO<$7s1`Rt
z&E0H$?^2=U_*;D-nKTRm1MJe)2G9s^y;vUsD>+_bWbjoY-b>9av~-r{laG;P>_9`-
z0Q`j-5n`*VqyC<nsgvN>DD?{As@1c0h|IvC*vSaME7yRX9r6)5DFFBU{>kE_R9RK^
zm8NiYnRDwCQuqzji0A_VZ1OUXqmg+tpRYJg$j#4!11QId$SKgbj9muW0AD((p4}mo
zgW(_?IL&rLG*P;(KzD@{HnCx$r~4iG!^`nI7c+U{)4j;yfD1twmgYpvc~U|$-?P+}
zUZ@H7O2F)H<Q1vD1Sa=PE3kVV+g$Q}df;tD(8rtQiJF-M2rD%k=s*!_9?w|iupC!v
zk4E1{<EBF;71Yfi+bIrtE|9{dzhYuy;-Mvp_Nf6dyjr;Ba0RFg1A)jm^EwVudzh~%
zSXdPH>o*g1e$AO>P91xn-NDMUN;ZAGS_k^3YItl))eA5WlxX4<1Es^alfLGLY2P2%
zyFvIv4)a|_Qaq9fAI-iBz_}ipRCuS<N@5UBkiGzX-2av^L4O43E{6HpSmH>mREXQ(
zYb>Gy2^qRFR2YWW=aBK%UZyx^Ev6T`OkgCb<D#{PR7vt+AK;mt#=Js@CB6{jnhAkl
zOAJWW=Pcs&KIpqHi;)oP`5q<N{AdoJ5iQJx4COOA07u21UN^W7jgpY$^f%zhOC@(q
zu;N0d-)Yxo+!woJ<GpBG8$`<GDE=J8`W*$edOO3jjI+1X+!KIV_Iq4g&xoz7fz4_U
z0^yh;QBUOlwO)USVBl|KxXzM>C)6G|e#5s<Ko^nUWVk$w<_neK8Ex425YxJKJqvGm
zdc11e2)p}5Adl&~<eao<*NOJ!*_Q3JA#nwefbIi;DVkv(UdveJN2qqJD@ahd=NDj7
z?Cex0MD+3`BuVJ;Gzu=KI)=k)x))H=nh}46HJN>Dk?o$$X=p;^Bb&n03UH9%D0%f$
zS>Jc=f-op&Rgt%!S>>9l%)}WfY@r2%xl>oGP|g|w6XuJ~L8P;v&7PjaqffvoDGpF)
z6H!*UUS)hf`2&hILZ2rE5OrBC1We%U^7o<4de4CF<DW$HV+Gh{tipai;l5TL!%q>o
zYsbh>VAOEQ3$uYA;pQg;!o1Su6|(qFg#KAmpu2Y9jr>x}x48ISmZ+cYFWTY|?7?ff
ztQT_=TWc&d3h4z?Z%QtRA0}0Q2>Af|zMWKf^0aGBP*>tB^5c%dnP*-*9aeG2;Ic`Q
z6xXKhCaz6<`08mz$>6nPq=4YK_63G|;_>m^ji^GmE%TG(YdK-VIq!7RcqSxVe@W@|
zUiAA&8uXl6ES%PP-PD|#2>Q-3g3IOkne8)+&KKjY+5=-qj-uBNke66IS#@0{JTZdo
zzK*h!c}*s>7Ev`+(%vwgBoMM{fgk5O2y3Ul7sUqDa*Wl0PQJyl?fdt!dAUp@NBr<D
zaqQBEVZP&dAhoD%iLM?)@H&eu8+Hqy1>E-pb)ELPtjheUs+D;b=>}lYuMOCH0e6W4
z*J@gAE`6C0I(xtYxGPtY)!Y7qLS0G}kM^B&P*P3H#bSTgt;ccLl}L7j&i4D^v7_7l
za$thPzVMfWE7yUXY;4|aXX0_^cC|5QAss^1faXbVOQyPSRYJ?zk3HiaDIOa_ZApo{
z9LDui0l=;N!q(?3wbJ|UlCzwYdwJ1qBVueu$94pNm{W4jPp;@QXobi1aQ<8Iy-%Bq
zu=Hdklv71DssZ}IkfiX@z}TBZx5q<8SvgzZ>e^@`h4_(Xk(9rQjh)^3nkqa{hygq_
zt`sQ|ep6HKE$7L&4&TIRV2GuUL=R5}o(Vh=5!G7tf)#oG>FZ0~ZABlK2F}0k7k~;p
zh{mvwwe7a*8p*Rx6czbq2>l+{G3XG>55Bp<e^$R~xrqI%I+7(s<={3u+K+q{BB;j3
z5|Rr#Y4HgI35NZW=e*c5m+6b1_M6e|CLy*laaSHjUIP`%s}AIPTch{gOgmsrkq#ru
zu^8YL*HvjO5tH5?GINNeI-r7`Twd2w`jcS!sZ4c!#sNfmM;Pm#y^7Bdwt9HK!=m|O
z;P4<*X}bb(dFY==!62#_^2I}!{gX{rPD(kE=C7PF@>cjRBpaTF-rnAXNN5x2D}<q8
zVKs3`<Lm8`9u+3D74O&phbRFw?q5Io)Xt~wc{_{wj7UqaU|sf%@_D8|nZvkYXs1JB
zOA*Sqp(?YbM?1p~$I+=P=4FiQA=tZM4s4OiSDrb|v}fW5v(|=p9cef%q@G5RpPl@0
zx<8d7cl#D+l?iRXCr;f4KC=fIL$dpanld-ZTvXv@hGMe8A?TVLk_SbeNq{|*%Tqf!
z5{ARBFeXiY)knc=QE&(8^4BBOQ7z^V|6td$o`b`AvL$Po%CQ~0Q1ZRYRJFax=W6oQ
z=f-}-Cgy~{A0nrRq%xs3Q3i482J8F)^jbKP^oeq$2QPe$y6h6Zq*Gi|o8Hz0t(Gq{
zh)n6*(x@jCTxrec$gOqhE}1>(@Tr#e);Ca|yNQ`}8t+&3_X-++>p%V+9+%hcKTCX>
z?7s8nEc4sLd0fwqd)~2uLYPp&_N({O86^2OO%hlAki?=39$l9fpVTFq95b{eXBj@O
z@@xBcObo?#U(-j^P$)6Bni_MyO8iF+VONHblyY8r>LfW?Av=s}(bB`ARAp<~t7kRr
zFt?mZPlW=whcnKOUZt-WUAXM-0=_4LJj7x60=}#G6g&(6wqzgPDeu4^i|nEbJr(+j
z_+FM57VcJ{rGf7zVk$b33lUk#u9C3kcr%AjDr=7qZaO?j+hahxkdvLz)eBTw82&~^
zB+4RXg{_EINg+GdT!8>zPiG{fGNL#D-X0}iB?^`Kq(rJ8-1`~6yn$XNui9!yVwoBk
z^Z{?qB?~G$L_Z%%jVG|H2PWtLvY4TD7FucpWXXzI_4udc-bb49a_A6#b2kWs9%e^{
zzdv{4KF=Q@k9;0nKM6nM{!I(efhEpcfB))0%LJhZ{%-vDrMv~6G?zY-81gyGW`IvZ
zz6tU3FfgLRB_cx6?kt@b$x<5X3Bkt*x*6yB6sv~0YtTyNP~|lFuG3kiY2pQY)VS6s
zZG%VxoQ;&r2sNyw!W4QBeWL_+(AK-|R~wPM&BFW7Y72;pEFb7CEc466Wbcg6LP?R(
z(MEBEe8Z$OfRBlaZ1j9yF4p}KXC3lNhUg}aTD6H;q<ERdVWdTxQOwCtaVoz>2!`Wd
ztSuJIimQ*2u!TP?vn0Uj#(;kw6?hXQVhJ1QxK{#Qtd8YvZt9KT;2jSByYp=a{T4St
zarv2=lVZ8N^RkaLj>$hSi*q@DGtYdZEk94Hf^kJR-=t|O=t>=#&gcqka?Uxfxrqze
zkZZz<JIl2wH`uirlTZN?+-AHq#lXUWu(pT(ORlE;>=+X(=g*4h5O#2cFp?I?k7PBR
z_$QVJCk6)wJHw6U#V!sFg!&KByIzNcSY&?CKi#0RGCPN=KcbU`3p{G7OFZQ@^3u<r
zu(|d&m1hD~ekyUR<l~>TObHoX{>Co&gDmvdu)m5)4waCtHi!z+P|n_D%0j6erF+u#
zdEw!xKsLsVcZ?{Cd+HyG;J>$Htk0p^)HlCUbF?<*xoT4<T%y3=qS7BuD<3uliukch
zhqUV))grPmKo{bIo;7bIT-ax}G#hNnd8Q<c1KA&xD#X5F`5h>Fl%BDkh1wd_2&$8Y
z-+$h^Idx3M*_#L`eB%8AaJcgf?!9Drpm0PV^7V3qsCEEDWAG4pZTw3Mw6}tFu~$1<
z5ljLG`LtjgUj=RN8UdB=W#|F)_pi}l5MrsQu%%_u^}}PX`M*SA2g>N_Ky<8_TA6kY
zgUA0d=2(I*r>>2|QBvEi-PO)RIEJ}R!Y4I6)VRG9P=x310Jf7<r%ibzjo+=kqr}dB
zUXZDU8sA-NON{PJA%h3ZIC6CX>%&g4D(u&+%KOgf^4kt)n8S1c)zVB@Adb1Um%#0t
zjw&*~ANyIk8?Xd<!*%IN5wnc>JxfdsUYL}B++p#y(eOiU2GW;(kAzT|4RQq7b21N@
z?#^b`*4<z>R7};wi`>hRk^FhlaL1045d}pn6_fthHZ>m7EWF2nccky<&F~5*L6$z4
z;iLwcWm{G%!$<|}UKEa_de@`?9hwiM?d`noxgl{_y|Yx*p6`3C_i0l6zptV&ocCL(
z=7;QqkjtW|ZW%leUR70<$^G@|*tcVVU_~$v4SYxf7~H@*BoRPR2LP*}3wf+uB&cn;
zFfGVhF;fx{ALrS$zdaiL@Q3&;*CdWsVcI!FumYH_a}PED#lsIs{||Moi)hH>3jy3M
z*HpMlx3nVuRZESJJ)LM9R{p@(@^@~*r$l`B<VM@iE%N>Qs-8Iu85mXNnl#jqH=9}o
zv{yu3x@^*oW{;x^E0Usrs$my4N|;9|=?d3rHI8eQACkoiW~38iV1m7MFY>ybAA}co
zncPk=weYT4h^Gt?qhW#+rV$dvtN6*)1?0S`m9~g3osPQr6mJBx=N;jks87)}Jt=+G
z`T}3Tsy=?0KEC9mq-Ul>pkIlnW3ZsS)@yA*IXhmWOkpUXSy$uJydG!{k|g$fj`j`5
z;dSus2nDK>(f_Sa5r)$vgUZ8RFlke<KK97i*p#IK-fLs)z{nx*a<quw5`@#S*x-0U
zsSR=cJ#SS`9YMtkSbmuA|Ni}Z$6bOJkOW5XG6OChGTPb{O}e~$Jsy8GP=6i)kZ@=z
z>#xO~ViU)2vVRSi<83PPh0U-I?6T`=`GrdEu#yYAMZIaW)1%Him!{-a&9*2BD=v7~
zXSY+iCcxDwLBk;)mZWKaOb`OLr1cxTf2~(ei9na*C5(Ru1Y)$|&x9u>rc!9x4APE|
z=u%q3Zf#0C@7z{@sGBxBC)<PR3db;m+wmVGL5C?!VHQw$%iVr&crTF)%Ppn(Gu&!x
z^Qzih0&W8Ewg7ab-B<L%DBJ{^2=bUgBPXXkuNF%V-Q@pyr~di)r;|gkUBy6aaU~EY
zl=9jlwtnd-P!CYnK~03>mzu7EW5TTvkOE6eUh0L`Mnrt)6J7t(qYEtZ*gckTB|e(d
zX8cn<(N0F8sDst_(>l_0Z$VvEtaEGOpq8_Hzu(!@S>>&1)#H)Qle%%weLjl~)_JGG
z8)Cr!HPTjX?1p^$vN6Je!mlfhGO%sW)_CIXv+q-ihhy~~s|mNwlUo$Y3NL5BYgy6f
z$bg%lGa9xf66_X=yEtUvx52My1{q_PNQrxyTJQTLjd|H0bB!drCv)05O=c{xvXHQF
zS=FVakeUC5#{F3ZM@`^r$H&LZbT*p!WmlXfWn^&PV)qUXKF^<^zqq*I_4ZpiK5i1h
zcsE4zsS`jqgI^<*IZ6t(=o0<4TSRq(>t6jJuug=LE5<I7wh=?Ou5HWWFo-2qY3-hn
zOnI)LMt<_WY5Bh3WkxLRY($jZRW!61S_Pi0G?pj>CCtN2z-6^F{MZV0$K?n$fma^a
zxIhwi*4@D4+HUT=!zRVf>AT?VRoy_ZOoE+aslmmY>!%k7Wg2*Q>>XlTU(4R9N;F~F
zpZPyVGf2FK?=|N@-%?d7%O)xCv6F7+$ApE64K096w2yuR^AH2q!7Eg4t%ikm(p<lY
z)#h2vm_e}S?@{t>Uz{(00ZT790e+qu8>nTxdcIOxS}7!!54RT&9L7oAQVI&k%ATD6
zghim8(j(RA<a0u$3ZWkP*VBF>n9=6%)0xh0ygnlR;T7`NkqYePvuwe}xOw|0*IVY|
z_TP9-n%U+%XG<e?S-TnG8~?0XSuAS1i2Q1TCM6jCnwz?QiubMEyh~1dQr~z7eIJIs
z8(Y6K{O+71iV%dXV>yswa1+aB=oN?_dG1r7uYtFtFz?;kuSskyB2q>QI-fZa`29BH
zvPfVZ<SMFoVwcA!L|clgc*<;Pl$(i4S9#7JS^iz?s(k6iXI8VVVE5gNV*QX%R<Ada
zHo@-xNNFe)N8?(Z&V0ED?f1&#y03@^dENinD*mToT&7^%A%^pK2D<p?vjOyCH2(|c
z_ZLLvU^R&zCTn!NC$W_*sMbGyVM2?|bD1JMoqWA(1)1yoT9Lb%Cz%N3>;N$(8xKbu
zfCRUtN^l6Pw0vbV0gIssh621ALI=WxjK9*?Jp5I@tja=3gE7(c5YSH!ixFPx`cxbZ
z3$ZnbU@;Z6n6qgKTN%WNL29lM+zcPhzWcV>`19M=J1U<vC){^1j%aj7t<F9n%$Uoh
z<S>q`8_5?<%ETT^d3vmvYh$yJHNOy$UC{~MHb}Y$gg7rB7HKy4;=kI6KOZK$6ENy+
zJS-B%(pMff(Orzv?FU77!Qknt?y3L19z-Z0L#H6kDDIvO!(7zfmy#3R&W_cBNSu5h
zmya>(Y)j3z7t7L+v^$Xig6l+b(RYcWYJ`6Bj)QKABA9RtBYvt!-aPg_HJynW?U{FN
z4;!l%Qi}$=OHXOLHO|?@-N!GH@=z-Tb@*xj{7nA)`wj}MICuwzsrD}k$bUXM(P-fc
z4h7{(cx-UB^!&-%I#hPL!YFd#H=E9ko6)BAJCEu4@e$g%Zn?`jBfNXNO7VXB?%cZU
zP`n*0S?Skk?#10(T@Gb&uO`$~HiN4()spGMD(QTyhc&}6n<Or0|FV@^rQFB*^830y
zvp59<Z|%d9tAYDxt>ni~XCg~8_cH|O18M9m<G}6bDgH(}NpuKj-6_B5Ijm1g<H_r}
zmPeHoxAV{ID>HQFW}pXamnIUk{vSUZiTCdHqu74&sjB+-&cAxB-cXpixJclO?-bVL
zuZamk6i?#udCXQZo|rFXD=SfDa8(_kB`u3l_bjfiu1==;|H&N7v9m;l%hz++{&gmL
zfB;-O2lWvaw`_%lb)HXooN7lp;a%MJuJw&eunZ6C^AJFAT1E(!$0B)Ep6>E-gvUH%
zj&5{5mI8jgcu`@+1LiuAH;I3aaA%^!5)yAjuJM-DgS)iQd`C>XHiiT&WFJH5Lbs1Z
z|D}$QkAZ8t_bmd0wy<RAfT?8rc0y2*-tT22jNbKP-&`WNkBz7oS~s88&t9A7`^8r~
znRH<k)*w)|`i8C0>Zms}n&*)2YB31BDH>Ek2eUqUUQO?v?z`BGU4)f4s70Ng6VL44
z=mOO5^$U+p0HU0lVSK8Ru5@JoR*@^rL(8q&2$xVPJf)$kn*8ky7$pAQJpa$@7HL5K
z(h?f?FFlCi4ps$^%G>x3qM$QCHk51p=pI|<a#QEFPd&Lv#j{~r=m+!e^l&bZ2p$DM
z49WbvztDjp=Sy>)&Xax>4q!hckz%$zE;T@nwEnr$cAIx;#K~^^h1fZxfcbWDVMt+5
znO9q#Quk0sIT7lQb=wcoeb3|*CkH<eBV-kRl_$7T-CKH)$ha^e9wx<tE4dJ<$@pST
zNZn+YYiX9Wh?R4G5<+2k3tSSq?T;yyj&cn)!H-Ah^y3Fhw019g=^4g0j^`RhW>S4j
ziCNFNxVTbfQUvp5$HymfYdy*{QYUsNd!XCl|CUGo=SN`{oQj0RMDbXr%gXmfgkM1D
z32A4#+oN6&4r+g0MOIC4ve)@E<?t!EIQo1m#E~CB0`8nFC?k1giV}s&iQ%x(jH~$G
z@2he{wX;v+AJ8|WT78csabb8AUvLgJI#n~K+p)5~F9Yy(P2Y5y_Jr&l#P)X`Wm^{3
zwzq5MK#7%oc9AF4&tba>j*%R6%NsuLtUp8^Ctg)jSEtdb{qWhIKytD?H}@@|sY@s*
zQs`%8=>^n+cW;Ff{y7)_@gF@Wh1L+EX`=simjVv8KfVyD{cnc`ekP>kZ!I&R<Knlc
zBvO;NX?)y+{a&nh0l>a}skMsDO<a<I&r~EL=E>xqM=qjWp6TA`Qz?V7kQ13D%y~zM
z;D>&%C5&A#nbx<78lPN5;il%oXYco-nto}!@5gwWOjge^DEmo#dbFKhdwMr&t0s>G
zeu(nO#c8jR`E-wgcn^@C9Mhf7KUaD_<STPNIsRU2dweO8;r#jfile`1CSz=4L+BiE
z`hgtfztk;R$RXP3m?Il~t~DXBr1C#r0DRfFvV4zDdQq?8cD4)E_7%uzGrkK~I<Qf*
z(~3@)&%dM;M^74rtMmH3MsWCRY<#?xQUosH<zN0&f3Lg#E>O+19)HQdk4?H1*GRT&
zB&Pyj$RRPk1-8?-{))b{NlxEXw&*5R$tSqenZt2sBRm7@H9rMTLGSz^E{6^T<+>w*
zzD$=il<%a^n+BLfG9^~&Mk~JQUir&Y(x=>L`(}(sx!9ppOdH8cn)<}lFBUTBwbKJ7
zqW9!`9M$TX^wO|(qt7Wv-JTWXScy~$e>Fa6PcJq*4Wz6*u^GbNmK%OeUQ_GmLIq|F
z{<L0+-$*(R_d)B_CYNbG-)#4EOYa2D|8%9PPMwc<@^CSG0Z1Qj-QX2?1YF3O^~*I#
zyw8=qTeddPlsS!>uf2zq6<^Du$e^f(!Uwxq!8Z~sqy9la{-68iul6X53wouvER^y7
zYA^qMo=`>LIL$&s*pfT#^xN!H;sF-P_!RTg3)_~!FR4^!i!W<B1zxraEW{fLe+8uy
zP>pKhP{Rha@_E)r68J^me|^zbU9|M{9|N$1g$DU6cH+ebF{}q^jQJZ&hWC3DjzN8k
zEM9VH{rK(af?{6?_NWTBf{ivZq+eZZ&6l~{<_L1I%cRlU%vCuD7~@5TUj`TnAB8A+
zxCMuj8Q!`>i-_N!MFb-lE_~*HYKRg#`WnO=vI0iE9~v6kQXak?e}CgNXNHZ!A@z9j
zPFbf#LxRk%$O$3jEz}3>KfAZTzwlqCF=S+7ilDMRupXM^qCyTQ71A%aI@=l&b?`P-
z(#<FD_`4xedk5L*Ji$$hDYPR`pYVACw&2EQW>>qfC5W68RhfMC`9M?zy?{g5H2p>`
zvr4xwC1>z&2@S`H68g$kc$0S%B@z<3q{7@!(a@R1U_{$1qdxxBcW%Phf<00Xe>27b
z2K`wcDS^duKNdyI?9`Xh<&a&oZm!K!35`&d8x2FEpHc#VS)4JzynZzdKP^a2O<id<
z!)&FLnPDUdRpngma;yHIgW2d62tuB9jPD5g=Y@bw0(df$1;BkF!lbm*uYmL`;rXVQ
zycAc!W5N7J_MCrJ7t>eoaePCHBPaj~_3rc`*0~ZOYRH-0b>NeY3$Fiy2CjM!J^gjF
z{r&dKszaXj)FHq4OXmH57WM!BLn1G@a7??CO!(oyzt!Jf2a&)gbW=JWasA}+3O(?A
zs>3c>8g+?qNy-i9e<QFJLRqEx(Ru%8(|SzpAuk=ka-cSvPI4;Fi+W;S^Q#LW5h#{V
zcM9cp?2$B_kw!kaFEHz$O$B*;ZdZ~ZriLbt&I9<%iX`20ypH^Id%)}JSJTQv*^wjQ
znkxg)hxtnHYWDz}^B8~~qNVS)hM-kRWgkybf{T%Wt^r^&_xIaEc$p(JbvQYf<O)!c
z{4KnTv~;Mh^OTxLLEVav4j`9aChfd*3-91PCSgfKfnK~UB+w4#D7@Q&^#9cjuwH|6
z^YaIwdWIBU=OTdI9kOtk2xxVIMC#&ZfKdOtpRpXZRSc~iztcR!`98wKwCp3>+}ZZT
zds7R?M(X1qzLL^?2j=d*RZTkRuqi$Iv?&sL<ZD6cmB%?k;ujZFp9P9FE9INT_(%>K
zjtc}`g?Eab6_4A=?UtNp`T)44iT^8biw%_fK3FXs1IF^7c|rU@D9ZTk?5u@1)JI(w
z0Qc*lApT~s(EYpoJC}U&E!3Q4KwAMCekN`h-EvSlaK6dab|dEw)sk#i751D0nGJD3
zaNxK$6(HtQ3Wnk4l>PEriVww)@e_zwCaY})DLq}opk@FNz<AjR>oU*$N7`Pz9peEd
zV`Z^JFB-n|2T|xngZFFSG&t|o82K%!Rw_E&(rOMf7^3pOkNys`e=*C4_-8MU<E)#~
ze{ZIuG!^Hq+?piFCjl)v&`*1SsBHJ(PLGz!hAz}7N=qp?Q-St-yvT(jd-=#os{Wgn
z^j0P<lzIsl5u+ERp?~9k>gM&k1Ia44uu#jnN{VbWTeVu674jl~f_ZnhaF50}rNp33
zbZan$YG{ZF*cLH5=~S%(3P|M|=ialCCy5_x>Ojr_&SvJ5Zc%t6y^=Rw-Ga4trex7`
zz)n2FU4{CWS`*S#ed`czEE~T8{;77?S)VrY-Is41M2YutTb~6u#EO!dN$}-&`_j2|
zzNmU0&kr@e6rfd5X0M{A77&G#3zgxfs#0hYRvsVUeDD=4SP-76#u<)Y+80U)RY*!H
z+|OYb&`B#yQRd!uD!e~Qp=0SBtIK~=H^4+vdQs-Nd;IFbeT*FrhekFU@Fq}ER#7o}
z4z+k9aoie=5es|K2UWmiEZE5s>N~~22$Ign41VJ30t_cL?j^KcoV{HsT=qKgVJfeF
z9v6;$YxQ0JqAp0GCE=}dz(YxWR{s>!t>HU4EUhI5M~u^Mh9MZx$Y5u;ht{$3o^skz
zWqLsZa&Rg@_E=S)V?WHj5e_l)18`9(XXlz*{jukVyjIgM@ddry+Ps4(zjOeBM!7wJ
z6mp^IR|r<R6CbV6!>+>A6-j=HZi6xa()(6V#Hx{v;^<G$v|gkcOJz~Qt=vx683STf
zWgVU3HZzyWj0<QJIl2N03K#Y3TpQK@_CQR4VxSH0FWlzcad3<W?xFPmDr<ODPiZpW
zTR1*CN%o{2!wu4_yoh3gP*zD}#I2{jx1S|$oRi6Hr64TkqTV0R`5j)Z-f&v!Vb7yu
z;<*`pvtyIg*L+qUjVwV-oAHIgeQSF!kHn-G8{*ns6Z?g5|JO&-<^3o3R89tJ9k=P7
zUADdYum#nbQg4l-#J17AW)>7+xfK7EUhipjzsP4X>qlhz*49>;i@>k>s8j)i7rI{G
z^sjL0^q71UI-}nkYH(e#IXs)(*4vEMp7~l2S)4pNi0D)!RQVOOo)uq&L<IkMs=VbV
zo*0|LBBD|BOD=;J=zV+zff>yBV7)kAWQq3gZbaXc;}7607H_2n8`Vo@>71P-en;4*
zktZa0a<D+|JD4G;QZh1%f)7q%x!)QtI@c-&jG|h;zJX*?GOB-w9?N;=ybv4fwRH8x
zsx`|6p0k+n7vTjrU`pTYLPp0xkT+0VykFBA9{ygd#xfyyD3j)$Zxu*@A-;ZznR8QB
z@!>j*Z4F67DyxxseKG5``;6_>t+<{?nM0s?;#Ruax}@_y+kM??HlxW>Q+cnwL4*1p
zqbuElQCCQ%(Gbd#DbSut1JmC8VQNjBaP`Jx+<%5hz?oJpG?H5{>7xcPg!2#t`yt?o
z3*N2Yoi*Np#3Kl(0R>x>$L*muz%K$;=_0}1BtkyTfS;~-TQ^{z#Cijyz!0M4EIeRg
z9A-R5JSBF2a}B97jCB*LZ$m@9+A+#DQM)3^Th3g%Bh0M2-qu#AFl_-bEQjqKOyF!f
zjb2}}P+bjrQW*`;<XZeRP;CqdnNZA(l-U$bgrSH}9--N%aCCIcNdne~V~&oMK(>zK
ze9i`-tNx~f2#nmlfX-!sQZIcs{8$#Nr(Ia~tf+{=edlZNFUQQgG$?P@IvbwIz6)#Y
z5=wu7>Vn6t96xdh^WL=#p6?&oFE_h?Y$L?vc6Op>6E*7&tO8RpGKQhUro&9*=s!FN
z?sPfK8b@Pt10EWn%$W|uXmr?sUpyPHrB)RwS+h!{>%aO8zUq;D_s%$Y5WpOa=PGB@
zpKl@mz$5$hnc&s?Ky+l2R@RL$64dkhxvKX+Lpg&yyvU)sw@MR7_Q%UDzky)I8VeO*
zcyinxo<fB2vj4Oi&<Z$HL|Y-b7em1?_{{dtDp4BZ51rq%4&U#GininS7%+t8WsI8o
zr(S+IVh{FfDl4BFhJl>-V4zyDbE4!C`v#@CKM*$_4Ye&Yk@DZ<a~{6%xgqfXO8onm
z^$LJ~w=Cri3DYNk-+4*ToJ!x3*dFZwt_PCjoS5I*wE`j6Am4p-XZmFO=6SU*V~Fsm
za<e91WXHq0rG^9HxdLRH?C56m(P8c2gu&8YW*y9El(Q)gE8bUq0L@EIDRl#w{F%UQ
zpGiM&@qvDO*eup7?SGi~nu;KLcxE_QVq|=e^^7B;r1=N=8m1z*O{LePr%=-U*v193
z(Mx&XC^fzaA)VW_=HKm4ai-<@spWqD6V}(sQuC0#!qUWUfhMHkE)RQ}e6LfGmfPN|
zSdC~#7n5e2`R%ySA->HH1ODuhIJBDc9MwXr3K@NQO`r49mfzO{DU~aEX(a<9Os<SQ
zrB1l8Sz<iOwMBHWtpqhqf=!Aa_q2~6HM*yuh9r)Y&-F6ZS+!g8I<e0^jguWH3bbD|
zXbCxPaXZH?GU}HbJlLQV5H48E`$f$N5y8FrTH$rQroDM^sM_|-@!~?uY)B(Bt|_<V
zL%c(~<zx)PC<zwasLx1-$G0k}Pm&p5?>aiNzIGH3obqAaZVeAjw-G)})hORY;Td1=
z_Q>q@V$Jhpt;QQsPyW(~L}RG*M@c}T^&f4e>En_1#;{nVWvaPYUs0kj`v||%@zLKD
z*zJ@o=NBy><K(j)@TnU38U@Je+f}~im@J&}`gQ<p9V(wm?5$+6qC*qvg`%$SwuVVa
zHZ9z0iX`Dz&2e|Wos;;pc&$BC3LyOP0m$RL;5Dele+PtE@M3WM*ostZY6cbwo=X)*
z-MmzhdyegQYw%J@d#V;7vJli!Ju?`yWsnqodj7?0?^_J0d&oVZ{)>xGYCI77?be*~
z_#iynoj=_}>;{<XsC1`*7P2ty*ZAa$e7UZdy-x5>V0xnxSoA)EOI+E@DaSLZY1Nho
zbY;H*$S*Un`LU%eEDD*$pYZf055P7~>vb<a0VW&JK1nZyaN$3D1z`m+QGM7F4wJw^
z80jn^3!cfiR#yY>Cd*b7qksLjj=(h&bBD2<-RpUA)%K)ExG%@I=y&{quJo+|0idr`
z^;T)$VV8h_DpFy%P@yxYztSJpxaZ*bh~($ai0x4$hn}vI5wzHFu8tRpf?9T_9-8ue
zoY=QE1M>ML3tz7D?9@e+CJW;E-aGwh_>~a;xwa3&$^VY<#U+z}45gan*kCWS;{8KT
z$Oq3&jP?G(2|9-af1zS0@%)O{AN1)LR<32L4|i}{vqgm^p55;J0vvW;IO6p4f-*E9
zSg|~y_LLI|q1%|6FhPlU%0T8LxwUN(+wlW$z2NkFF`m2brg#-eW7i^l5#Okx-uO8)
zUAk0_X3F9f^ZjJYdGy2$Twgc+w6f>KY!4l_-aZwwO%rGQPoY(tUF<Kqsuf0L<LHCs
z;unsdS{H8*`Ajm|d}!m4G6xfn4YXN8Ku%K#5x*CD5RX<q{o%%j54f?tR~d`dPGEmw
z+%qn5u9QT-;nK{1u6Ph}_jFs1U}?5;*Y8fY{@f@W{<yh{VIDAIw+zP5g$cn}iM&F~
z2Dhicyg&b1S_4P}bbVcbZV9T%u^eW|ttXhxJKrF9uhQt$(E7$-o3#IOpX;YBzgH5s
zs&=4SIm?)sOR&mnv?=J=w&~UjgMJ$s{3y7JScP@}P+2G#q{F7qvV136ipO(A-y#Zw
z?kygTP4?*eG+$%236P?(0&{`#xRr9-`f<0@=oq`*iWJ*&am@Osg-O2H-Q&|`8N6Vq
zrDx{3G+6@r*Q-dl7s8=_k}RPJn4@iiKbI>6CWCJeS}6IIu*8(wKO$fvsD?_~VtYu@
zA@4r;wly_Wxzbjp%2oE!*vb2(rZjlB?p}Fqrwv+%g<te*(huU2C}aD4%`$yJ-Y|S4
zY?3wX9gpA-fMGK47ZaIuLIq@G7W54b$(;8lr2=83ao4<Ek{SdSeNUNGwWBOT<Iz}P
zwmj?S@f5J&P9D%lUM<vGGj0_MU#KNggTq+413DI<?-d~;<^97CeI=QU@&{N1BVSQj
z?^kE4{8A(5v9$WKTk2~Iiiq<QACm;zDWvzUMw#T034s4y8p<OFuY?igQxJT+<@zQc
zmk~&eo$+^fGsp8lgAh@?4b-wbg7HmDm53tw78nT1pYd;C-g;#x*jWrlC2S!Fuy|S`
z8C{h<UM35oO=7NLvjZ+vNfl-3<Ie>zjhHPmxihg0K@eD5vQ_6dFg68v1_#`qx0o@L
zU;dDRAu+T|`D9JE3CN=94Cp#C#87GLlawoMR|Jz-P=QdMM0HO(j5_~D;khVM5DT%}
z?oVUbkY~iaPGrrqt6#l-;%bCkCuH_H+(!ZbMiDcd?~#rI&kx>xS#kR$&tdVUs@+fG
z)076ox!zK^qHwIdSd6ZEnI9X>=~?baju;eKI`_kcoyEycS>9=>QB{OHC1FN8--3y6
zoLh^eFIdva!mHpS4nsBllgPyo+kf>pyPv%!IuI&QD^{oQxtRLx-KEubg8uavpvTMp
z8HP7-h1^BQyx$aU8I?4J<bU}fG1`mILI5vVZ4G~T@0?=C;}b&Q+8jNPd`$PQCOg7Q
zzpxRkJDXoDf=GuMx~aDEBrnyYptQp1q4Z%1f>Mknjls{APV&%ZmUh&|mnkv2grky+
zm(@q9Qv8}6=1R!x>i+itOXMA8Ye&4Y&Pe;iBJs^$@f7t7Q3$NrM_XYrL}C0E0Rdv1
z$dm5uw;CsSmWO=Nu!@j7GYa?u&iG2w1zvoZg_FqWOj<CK*vDh>s-1eC&Vj|U2DD{n
z0XSANKjF{6WJR(SVw0#dTz4g$kETzM!C!e@=Z2rE)kc)|j>}bq4=<my?-B;5qgx9l
zo&*@vmSj(48XQL-TT<57L^Q{^nhN0>r#YxqzxmDP>dS%*D=5OzD^!cNNqtxl?NhHL
zo>dL@dyRCpeXZ`lPMp1^ObT$L-lKG2QHqa3?dAF$0He+9sbb>HvE<`4HWTSrqKt!m
z6sCar@Pdh+>r=-9Lwu&XbO$t+5%A6kySv@Dz6t>Bce_t2g9H^d+`;YqOkiDU)zo1y
zd{NpI_S<8?0!^Ah57&k+xYp<HkZTu3mp*5WTz&|*xHdWuwBjcbNu-oIzQDvkksJZ&
zbbdY#We6<LJrm^)tRF)NHLMwNEBC+R(F5Fc-<|}*e{kaQx~||Czdb{{AwvhEWRNQ9
z=6`ZA?-iR-vjGcnF+d1X;AKi7&N~c0=*#H89ZH+w_9oDLK0B5u@p`%iSZGAtxFjI|
zeECMOM7u_s8h-#fYrZmEWNE#o0F(<xKlf~bCj2OlB0e60B}dfy8(TR%gmCq?tAPVh
zhkF2F+s3`fs7Mx_L37AcirJlE;9fZ1$ND^x!DK*Y3~n)@%(iTz)F^Mc)FuG>c-5|A
z{^}^Bqd^>`{&%gEyu8{3g4wMJ?GPNqWbO=L`ehB>xpM&m*|BOx-jDX6SH3(FBjePR
z(&~w*wX@l1ew$g3$I#)8bj5J~4AqH#KlxQ%PKdNQ#{M4f&ldAvy)hnK&BI_;xNyH2
z%oAR67-=VJH!#^-zel+I--9w0D<`qWt@fgyqmnW{<Iwge>9MvuiSRSury=Wm#3vgV
zpZKZ6iO)gHHcdC0LpvJRA{i-bOiYZ!XC$^~l<i<uJ&^jr{ihSgh{;kli5DYyaf=Be
zh{9$YEOlBh@=UJBV-4QOu<J4p0KWo>coxuMi-#pAUjxR~o0mY)X_#CxK0=tfFmE6g
zHFcj<M7A-U7S<~^tzirh;={g@k%Y#OXM+0h_c(Z$lH15u-v|3QZb@C<P2mpB${bh_
z{!2C^L(=BgnVk2Rb&L8pLzW&l6HkhMcJ8DqeA3bI+4Q@~H6KwB_hf!nd8<A-g+>hK
zM>08@pV{;v>*nCFl#?;rykhf9>gifyhcgjbo&9b!Ziy{T;>Ms`Wh(dGl)3HRff5Y`
zDY23=%d?aIx&A9M!5=NHGN+DDf;)t|VfP#J{aX%EHcoRN#7wqGYIN*^s#`xQr(h~7
zDLOWNdkZ7&QANu}*PXTMc`>E&?YF^|ehy>Xg|ic27j=alGN=w`vg$bU{~CMCu(tkn
zTQmd<QV8zuQe29=Q=m8$mm<a8-MthoZpF35-HQ|{R@{rb`<?x-z0N)R?sd*{`NEUT
zWM*dOr(=wF3?Z4nrX+cA-xw{F)SO#1asS8%7Biv$yt=a0FeqZ6VNdce!bs@M3z@^&
zC=+G_W(oA}rnjH4a|>N*_~XbC0naS2_O&%5Le3AU-Bc66%8udNWs8?iz1;wU8HnDX
z67FJC#m(fHP~M-W1ry7FELV^l<xlU~5ef%PcE$%J6qL_!Q9vntYnmg;3fX$>ppVZ4
zf(sa3@H9Z3`sJzdNJzK7^7<7i_A_8Ez)xSNK|nuX=zYZ90&G*vRIScbkJ3`T1n&8V
zJ@5HdZcY6ieH>o%VG+Y#T*cINH7KOAoZ|xq$?e)#fMo#|_Q8kljz9;a?LeJmjX|;3
z8Z8~_gR?Qo9rjJUC3nzvmR~DC3BKpbmlN1+0^T0QUV(y{CU%z0RPvs`#*}DV6LoPq
z#<?dMx{ZXv!<#ff8)O3~$BH5u8UwLtY~<ZZa0i#8>74!eF=Nso^HwiMu2h(deISn&
z;Q*Bt0NzumJ?;SU_2+&zo%q_l{BOMLv(k8Mr(L=l#%L-H%q*6dJf2y={3RIQ)#diY
z@I&NB-um<**S)!gqcjIHJkrO_b^XJbrQ0-*g5xHX0sI4Porm!g7j123Z`J+&?RSz*
zKU-{`+-~RwhB?E$D*07YDYV|T&yo}+@9z~L?sl#EPn3C9f8so-4?AjA(^}sktj+Ju
zH$ifA#o)Y|n7z7u=$ThKFwQKQ`uG?-oolPb&bO=Zz*|{VpVPiG%Mv0rpfX;oR^pdY
zg{@JIQIw^W59B^X)ON^QQ5w{9T1~Hu@4s;<{2q6ET<?!k^p?$)P%v&m-;HJl`z&BQ
zTTsm3hy5YbVeSYOw%lbkfV|AV))u_JHH(v!lO@JZ!cw67la;#D=!{vYB?Il{9Amo>
zSIcI`dL^r8zae+&`&8lk$8x{?#YpX+@2=<%rj7aQpR|(oj#64^^6rH43bVRf!NP1=
zwbu$|C$W!pOX$`!R-$+@nbcK#EZC$ZbizGPyVL7%{4F0jD<AeH<b^z!_Nw5*LVyTq
zcNHpQ1~QhOFU0eAytaDxkyGbh(ymQpYox)B;!0%mC!z=wH`{aZ22;EwvqbLuV)|80
zQTtpU6<{dx>PVIfwEWLgzRSANGxIE<#KXQ?aK&lL$(^}a<**nr#aXV2Y_qV}KCk^m
zhE1phYwss(XRpnlQ>Us{@(^)QVs)c{G|1qX<52qa$A5RUHdvaZV%mO6M^NH$mdbA<
zGhA}kR#I!_DM?T3#jWx#^7^qu&o;%A4~RdNo7Qg_J+>_zjcwLp7o?2Y=lTB0XN<O(
z&<v!0;`9zt4ngJZtIiM5pMKqUo^3`tY1DAJkFF9^yU)uFP{uMp4V@r$TW&rBjR8PG
z0=FauiXwev^F%qQ`RlKyYu@ufE-vtRVEDp8yM%>>^-2QdzPRH=LzUod!bH<<Po>eX
zboVJFnr`^nf-g(oSS<+0Y(80orv4Av+yH%|bDzLgY}?cegqK2mkN%n}H!e%i8Z|}>
zABL3zv`tZQV{F^*_vB@DhK6FV-PN0hoU#vqH2#qV61y6}8cUCvc@40=v)IeSL6%A=
zaZnBw*VXAy`CUREkN}(Ztsj5+lfZG4L>!UkFO^L3`4=Eoa=2`mD!>}id9-FjhO7v~
zLsaENK)~%VL0(gkjHUfj^$S2ExSXMj!&hw8R^y{I7%#_KK;WYEw{bwY$5124h%?P8
zet5G3J<9qr?)rAkN_pxj7fsKWi2>n&g^H-e+8zuTjQ9f&Ix4}`3;_G69H2OixN*S5
zmQnwO3Jwhdb6SW3&o2uz+#6UHPxAxR<+9!rns|%G@#s3IPd6BPf15`-Mi)au>Q%d{
zvLHc#df=dK#uOOJBg-JK6Xguu?8)?dd44KtgxktP{ehV_!W+#&4aau^#JDD<Y{4R+
zCPdjx_oq47)KnLBk1WLtEaJG5<k}yij9Fz?vx$cEce0Qx(Q|-Yh~L}<(23J`)nLwH
zoI45$UW{@|YlNt28i*u7U<ZMkUxh6AIG7&#(u>)Wt#zD3BJ7t_@G0OyHNxIC#Zkq*
z6wW3S^l|a?=0AnYp3(Z<u8)A#AQmL=_s-vB&W|v21jmK|Yee5LSVY1(fZqNK@I+;a
zhp!SN=8Q<+RjJ@q`n%MZ&c(z4X8zp#-`7n@OzfT5WiA((in25jt7a+RzjO84qLcpO
zFTgZEJJr}ggAq&K{yV0slY)8mI3{oL-?e{;u7MeYz;H`g|Jt>?j_1)BRHknl-LneP
zUb7PK+VvwSQ&>n=ISUD3I`&Yd_o?E&?~|9*6N)-nQusRF?pvXLxCd|NafD+1yDB4_
zdai(oD{nScPYF-|$^WvuvLK2fR;9!?Cy(n-?OY%G8TY;nuZ?_GD92E;I9X`X;t^st
z-i4i;wD5p#wJY5|W0JYySj*>zm-E=ks*Yb`O^3%`+uR&h!74mT-kaqnM_iT<{N~wj
zzxopSO_gU)9l#iWQtxbhg_i(pZOEp$W+HOZv(HuVTM5=`<Y9_oGsLth#tSdDAmUaj
zDd)459K@2#h!K7!reM@s3DV^q?er8sgyBv*F)bG?N6~jI$t<m%owm$f=A>b+lkxz=
zyvUm2q+F|CqSFdw+_)j>Q~wY_$!SV<d%l*a<#>0sX|?b^n&FLL&ku?A2H&dOf*|}g
z`LdCx+?^(?0lUYu(4XAJpVkJ3Cj>0sHLl0alBj&=Jy^+LA?8m1qe!N9XyAPo^1j54
zbG<_wT3-QyAvX${jme)@qm!kBlY}@WwJ6^s!mB-uIEd7&+E3a?XFu)wyX(ImGPJ&}
zWF;`0R<qJZm@Cm?CV}HnhJx8J!sOKH&-`AV+`n*I#BGP<3um8Kx#Ixqg4V`kwel@i
zlS$=FJ32}70;z|u(j7CyU$fluP2%I?Ld?p~SLB1=>xR4vDCWVH&gG{Ha3;VtR?+Pu
z2O*;__g60PhIn@Mu|)4+&|?o@v`t-m(|P?E7u09|nU($2V-jo9Oh^2RHzp>^0E0sO
zJP|$7UtR6|RebsGN|Ud2mn|GyJW^;SCHE#l+zCO`ZCH;&s5n!p*z#v4y}R;>iipi;
zU~i?+PsHp*!Ir==p347`%#<m%WJ1I`8*kXk!Wh};ZLFacd`d6$5~e345!kkf4G4zU
z^CztW=J!eRI`q3|Q*y6P4L)8gp?q|cQqpd5Veoyd&5A&QKLsr6WK{MgL^}c!e_6jc
zFjrm^Aj?6Lj>t#K?%bI3LV)A$Md!rw6Jo&#1cNG?jQ8O!oF7IL9wMm)5%UV?Iz7+y
zLfj3L<6VJ4fUc+}C4GY|X=-?b(9{Dk#Z*s0#R3(*j=<@{qJW2{bjgdtfriA9#$Y`H
z@B#l<MR8d$6f7T{YF*AX64in>jqgAz=2<;vpNy7|AgCr<v)W{rghAOx#Hv##soN^i
zjAqU&8!wOK3)GDhIOjs#16A<l9aaKkf;ezqzlmQPf*FJad1GK-;WNRl;<qGOERlC~
zIU}+K@k%F%BnLoYSmXEg4kio2X@Chpf%C&9?7IQ7rj&{*HJykTc5n=cYE266vHiDu
zs7ox7upVz<7E<>}bqhi2v~dOx&j&tjJ&#gu6cgIgRP!2YbP|4Q!|y6+6*7Vj<Q{8D
zvoy&SKVJS0IXxKKo&Hqth`%8cKR@yoB;>nVkQAF2Pqo0c7Rfyz9GQ`{E#<w|zoy|=
zvflGF*Y7MW*JrOWkJo2^uj;K*GJ`$r_zlh~ipO~+O~w!l_q^APV`GJM<vCS-xK|us
zp0DqF_Whr^%cY1hG|iG4%FwOtKNEWr4-is#@+)1p1T*k-tNB>`<z)g7+EuO%;l=NR
zfx)36SZ}H2r=FJY(T6C${8-xaaelwA*8@0e)P+2E$<}Gev-iJS(j{wJKJ*nH^+Qnq
z@KpOho9c9svue@zVQ%~7+P?&d?$vhbb#OEQJ6@*r+oC-bmYqDvMbh*Uw=_?(mj|Lb
z9a-_0x2>w8mT%87sthtvo0A)U*6T2Oly&a^LQA^!c<v<xpAg*!JOYFD5}`1yaklTZ
zj^~&uC434&GDWhd2qdzm`Awe?ChqCbAe!9BdD_6wB2_}<?K9;zg_C8$m^dVR(iTPE
z3#MSyglwOvxWn7%{C(cMH0htzlQOL3)mp_5Fvs5Vv#bru;4&^Pg@o7G1fW~e<ttwE
z;^HW8TbWWDbiCm!D|^<I8%wRDB%12YuF1NEq2QN^`ND!}(WPS8{`OU^CG@Zr?&y_l
z{vVdtYbma9)$H;$aY#K&6^i@~7Ul9OBSM|k4!>Cr5ZYY3e!W_Sse$&OW4(z8kJPT{
z8kxc*!87M-wkUsUT@P!eRWVWtIK;v-NLxcit7UqOm0ytm(9lIU9u9s)DfQFqNKvcT
zG%js$+LkX4w$>=7F^8yXe|zJ&940f>a}{kiKM+f#z-ldUP5a}cARAYV6UVRq5TlMu
zS!{Yiefn|HQ1G_~-|*oF*fAO{Okxc~{H;F`lntBjtLL=&Tihs0&8u0CwnBKsTWZ+A
zAK)Bpd+rTAAzVAAN}$h&@{u3Lc8<z|1FEGV^w@=9dpWVNra6dsfT3kfV_4S{2e=;^
zurcpL)|*KaF<es-X5J_e<eiVn^l_t(enrDu!?tvVDDOvHe7w8LAuMk~&j_W8_U4YF
z@Z+gOFw{shj=#L%m$4MOIUC%tk`#i<owhjN3&73{QIA?NsfHUM;7)&tZz|WUOf-XU
z8{gDZH3Mm&OG5Db*8%6mi*mtCQ)trU5Qy;wSQw;kA>v<gTm6!x5ny%{O!}og4nh(G
zbdWv7yXHdm29t9zg7#@cAbf#8#7SLO9RRGv<xv9~vN+!w;wS~Y<OiA&z!11WB|6w2
zl4s~<DB3@nC}ZSrE}f2-nh^*@>tAi4%5pTJ?-`_jGR$@iM*UlNTw)jXS}X)q3(gjW
z=J%#2xs8r3th-1D{6+XM!8>piptEREP#3JEe>yxt*FOB<K4@)QtT_Z+uFwwJH~$oe
zN7a_r-GUw?sK~PsD&vXR)kmgXzzmEtD%=<zj_LZ5k6k!7Dm&6ydT3l!bitSW@u=Pj
z3p4f#I-c`rdn`l@G9MIQKZM_eksM=z`Ckz#+%_}S{IOrWk=GHVql#V0=1EJ8C*vuL
zho;<GqDS=yHVQH?NiHsV=64;}i%bpJ3m3UYKkww8%B+-x8+=8Bl}_|Gg6hBVN_6NI
zK^#)8YMMIcxBD67zFX{`ow9d|>oDcLs&e#|CsFgAqiNtH(@8_KXm9)dRQT74Y>`9x
zqLg-oiJ5OJsmLXc@tsGxB^-p4n&Q^e`N8j>3*(Pl4Rj|cQG72m+{m(o+YFg>Jj>r^
z@VMR?n{Z=7X9eXTqGYWi{)tK_+OJzBD(0%(#|i>YWy>Z@+GQ^=M8=us%`7x-$yRtN
zsi<NxOibX<Zbz|frD1I0HAm&wIM72t+8kQn)&D$!<R3-weiq?;%PF>TWSuN}dqTlw
z_w}c_klv)f#|<1+>(p9p$VUvPjU1B8u~>;1!K5SZXIj(uhNX5l!D}@TKA(iD%uu7r
z8|6w<5!Q}BDfum-my_*tsy&7uw;JM4wVg)}&EbB*vmFXQ^6Pf~=9w?v_cm$13?<kw
z5HaN0rh};6_|zH*V{Lr-o_M2phy{oH(lYZRG2*5WG&2<JZFNk-!$hhx5&QyW!l|+b
z;Of^y{Fa1f`W~nOG{{R<CgOvi4frTctqHvooM<(w1{*D9hn>3`QT*~dBv`-J5ay+@
zE5{B?F)@^OU}L4T%EA0;+pi;GXd8u#bf%&v4?)Z3H$x>F=hEKndf#6)BcgH=**M}J
z(*s`Q+&V=g>UKK4Oi%ipu2c-y45fylx&6~4$=T6ZlPR+5Mml@M7j@2|wp|}`!0^-*
zo0gYSGa9UgOAAL&?O6&9;6SNLUH?J=h6Ve~^|o^*;dzV&vw@^wA<}OUlch4OgHtsS
zVMKmXiim6`%^_%}8B<Z+hW%c#Xybt%r(sM$9i;UThR|;W=sm?sn1>RO<&B$0!bQ^`
z0ndy{K$T<(Bs?Vwy0R=&8IvPy@MdGEbckCaiBtQv;DKKK;i%krf;dl}ilUg)r^uh8
zGRE#An~p|PUAHi?zdtXp`>pkD?e|7FJD+#4Y6vJ(S)OeW4etS3AwYyRCKA!{!jZR2
zhCQIUgNMDNGGVG`Eo@k=g>iu6Nn&I-67?hSX+nt5RJaFOp-5E5b5tO}2mFZhu5ZSD
z0^l4q)<ZxRH<SrP4r68R95Jg?n*&QIRlJ#|6YEB$V+8Gnmz4@u0~K?duK())9RKux
zUe}@oEu&5IEx=fl+<o)GZSR+q28|#j3u)=VD1Ys5iYhu&mK=f`!M!?5Zf1S=9?<!_
zAWhMtl1*>B!J7jGkvQ%n9pc&^W$}&5AC}fc5xTTHeed4wd)!%;UIs2&W<hHnpDePD
z#~P~z8IfS<Cz{lh5yeF>P`pOG984>JfMf$y_oC_S3jBXQ>HNuf(Py*9gbxiJF>7j^
z9RkTNwO`ZmXLzW4(M81C?*SdQG1RuNKifOJz}q5bedp%+qek13)x8-?HjyScp6lT{
zd2BNz*@CFNVfpQdBEJy;(j!*sE8E<L5nk5nNW#s;6dfi>x@QQ`4R`Oa1M-K@wd>Pp
z>k^oDRK?0URf$`eCpc+K0j?DI`#=m!UacvK9RKey_;9<>z<3SqDN549;`q{DkiJdQ
zj$e&!ziQ98Jb-R0X@4&sI^g~K&N-a2ePG$r#{Vv7G1j%>@%CDcV@xPQ>I2YoVVhRM
zw>~Vkcc$G8Sre^mfrD+atPy!%tbl98jZz6QZqi8rlM4+fUA>_oms(Q8AprSqp~SN-
zrm(UL;!4io?HsPdnR!aF1vc2sbKLcYFfxm;IpKU(s5ut5QG8^(d*xna=zEpC-DhHj
zV93eQL!a%#C{?w3K4I1@=**Fx;&)GVwZE#53HEvN+2)*$a;PBWOWdVHg83a+r6XFb
zY7-@&Y)Fz)%WXnWT|;ps;u#QEM9dpjk#y&=(yM@Q410>dPKK}Ow;`PF$`h)qFPOlg
zs)T}$J;-47LVAYU=#A6^_qA?gGAE;%fI*$U?Ex-iCUNB>2PPJPJF*V*Wl*QC6Fl6u
zj=n)|%ZGM-BVf0lfn%e+xk{_2M-<1<GureEa!q)tsMuG}XuD(qcXYeue=xRdnL|)Z
zF!#oV%$XVx!Mcw^(l7%08<Tfe3pMZlaJ5NvQ;|Sap+0zlF_C0R^|yYZp>>?0Uz^*@
z+FrRo{MMp>#V!*x0lEz|L*Ay@sP5%oCJ}G)6v-QvdN}L35VcBv{?l-2>#Ib>zIo<M
z({irOTHI-|w`aX9&t46n>{+Pj@hyOl+_&b4UY_g`@={`9pWhVv%^mKtm%pT?3=nUX
z9Ku*HN#y|&qfj%8MJyt;ODzCX>p}r=@M&b!q)<3a{pLI}+*?OC5PN~N&N`8z`keY<
zM_%C1ukSz231EQkcuEU?UO8M+^X<K-Vq}z8nqYFzBZue#LIRFBwBOHFa5j8Jzr(d)
z=pQTL(6Rb-RE=RzYY^5!Sg~o^U9bqa@)66yO(K8i<t|7P9!#D@LZba9eADuh$br@*
z0t(7xw)oy`NiTf=LZp@DOIMT4aC?tNN7lUUH#j`x+%`e0Z30{zwF+U(FRq<QU-W;c
zQXX*U*L<P0i5@_c@l#1#CZVWM&|u!D65yd&6kAK-XF94_7uFlM`8{iA9_yQa`3r2@
z*5LSn!+>@MgYG_a3R+WqzIBTGR)H)xx7;eW_mKvuHKu)RV_-n)k5`!8D;P)sQ<;nj
zh<5=#c(w^JYq-vUYZiwRB{MUvQl_lKMTyyLg^m+W9*mJ({tr-^qz6FFKy23^fudTv
zqHq}Q$-uNgdB?r6!H)g$nO{Ue-?}?tGs2eQjwp^u<KG~x*J-|ucBhHZX*Q%<z_rIC
zl}|*&ZdBw0=tJ&3r+2l>6+nNKYQy{{)PLQtA+9$yD}5bSl!Jd@O~Y=S>Nt)X|Gha>
z-7{O8bfu$Ko0AUxi2Ikr>J2SL7k-4c*yuvzD(;GLUp2s9o_m8>*v>lQhLjb};>kp^
zt2*wj+jUFlo?s7i-ra3b2t6){VPoh>coBF%MWUN|!`}t{)S|wPn^=x1bEzL4s~2&X
z2<pFk_X-I{fycMNZP2(GD1yCv`o0moGo&2yYQDv%c2wp^WYD8v0kfd-EizNJPu|vC
zfBH>*FVoJDNmHk`=TZdb`Wo~hB@|-<V|S)J)%bPzMXw@)sLm+aT5|`GVRToa=~#Q^
z=Fz@SZbZM)pWp*4UP?YFPzcJ&&9^5J%QrWM8<T>AMj@Gf7_Ao{`r7k#g9MR6`%E8}
zsuako)jC)X&nGj62}2{1{~M63`M6I)I@|v@^F$It-<0J${vHN&!UZ7<cUPrR;Sb6T
zB*Xqnj+!KO$#d4Rr+9}v^3liL<hV6oO6R%UFB5~FjaJK4^QwIK7ttI{6+6wCgQRec
zWXFu>UQ}AeLRHjAT@29;?NYc)HI^mf7OY1~m-5ZMHqK4PVBcRhOjL@($RDM&gp@H)
zU;F3)OiQizupS7wdTaecB=cEIG7t9xc<ltTdu_lJUjR1+jHeid3L2nf{)GLxGBU!I
z%VAA)=(G>TRL)n|tt;}MZj%O;{dtOk8!YZg>teN@2cMK;`~qdeas4gmX~cT;Sm|+_
zsEMa<CkKI)TE&MhHGLKmPM0W<B68|6@ae;iNVSq(P9d@EshGz$D4bwo)U;WDUkH^%
z&{JgM%P_O8UyFf4Ut`D0U%IJ(@kHWXsDi*~MzJ^(WiPpfL)V6$hZi*6oE%NwcR=#;
z`UXW*Dzotvnw-_EaQyH0=z7rYIE+d1A%PLaO{Rlrz5CFvfbWnIaR@E{S`YDT9gq^9
zR26~2ib0BC*SY)wr<&Foia4RBntl^Zj-lnZp^&4xj0<5}*SnN^l_V|%sq$vx^X^fS
zp1deud;&!&(M$def%xWB%!<{hfae}G^N-U5O(=g%CHfp1)zW_ZWovi-2}5P8Jy)B8
zm99(o2uN_s1J(;^fJ?SPFTZ5-81wk)813Rsr{gySE)N@#`K5)Nxv9xu9u6m?nxF8D
zw7GhpU{q@TY&zI8P32}TuwEI@n3$OC0xq8H*YHefE{m;mZY%r4ep#piPN!p^bF}#D
zVk+p`%(Rh?2bp662w;{gIrQ`eureDXBO~F)g*?V2kP16{`N{|PlH*1Fyz(bYm1`WD
zk6w$5MjUyUkuN^`uptaE#dPrnf&Pe#*@Shmp^$>tI`kM;fUH~zfYqwJmR41n?){A-
z;?qd32)=$*wOIR#>U%h;R|F71K-w68xHa_o6$c1n)rDc^NaG<AidS9-VQxF?K!IVn
z&akhL`(kd@THy+<Q$P|t1NMu(*54LbnI8DNGJ{l&f@^l8uycdU$zYd90t^riykx=7
z*$X`Wo#igfLT9!`jan;?n;nJ6a%^L_<NnWTimSmjbZm@3F9hJ1H6MvwuQ8rvhos!;
z!C*}GoV6e%W<{+iKScvEHl5<uBX0MC;Xt@kAQOf!0TmMy)67OO0cB}#YKh05^DhQu
z6e?O5!BA27ev$az+_z@oau*Ys5u$f%_rA8zd@*!mvq?o;LOi!G<MJHbo6L=^D&ubZ
zRek-OSA<n2We-4Po%RZ9zw}zqBS9R5Y-v1|^sEuX7niy0?~ggl%h0UC8!DWC^Vn0<
z9`ev>>|O`LB5olP(|*Az9bKXjRwU%Hu~c$vu3T`{DZx&Mzl+2DQdHulgnKkM{`IhT
ztTd9)Ct^I4Z>r{cFq~E|S;7<4?F}!85Xc4LbJ<OxhBfj9%KG7=dv9+&2sZBltAyk&
zuwsRn{J9-9ipE4|-3mHerj`Bcue+4-RPf?=zGgeCNlqIPF(`45*RawH$9O#gK`g>O
zs`#qpvRImlS;j)m2Fu5Y^Wu@Dj1cW%iKv+l-J(!Q2)xWEv#;9Tb;Cc$l4wL1&cAO(
zK4`dNC3qMu!^ab~WXS5JX7Jjx+#F{zAY%oDRdskKQR7(@n*WlqXXaW!L#@LoK6k1d
z|5%W#9a(11q(+{Jj4fnxb!c6Sri}W5L$n_M4f=VTIOqmMQ$;)Y4uJwTY4=K<khL5E
z48P|V`o-RoYdc41BRTLc6c+>h{mjFhe2IZdMGg|s^|)7@GfdW2xh4eq)o5?1TVo_f
z6Pv%$3d3i#IS_juej?~IC^pTTJp;LPS5A(vfrWlY)cW&*>G}ETp*)`@HA=J!?;c<q
zXwHbOAY>{y5SUxdFfD!P+S$*8*R?$(pG`|+4nV6cjLdL<pi9211MFRGSlHLYU6a<U
z8jG5qr}Qu+(VRshf?{j<-m1d_#{gqN)cZG~Eov`hO)f8g2sB(C!45U}r@iJzkvk}1
zf&*S}90x%`fkjcA-6NS!&Y?r@g7m<0<qgg%61sO=S2}!*5EM*4w!xl$aLV%!^IHY|
zT}PMD^1Wd>mH&Im8*x#)5B%`R+rmkX(K)TFGYQ1!EW|?d<ghk(drZ2Q(^+VDffUAt
z5E!qpsu1)lV=b3Ga~G+cY_x5YO8!@7zv_6ib8Xg5+5|UZ5>&Ez^k<|hbRYGQmUNi#
zE~<w2JOTXzO-*Jy4S7@(CP1EQ&1(pw4@=Q_Jql@?G8?pM>kh2>f<GHaO;*u*CbddJ
z!7hNw-@{%(yl^7f964rg_CDeX_DUkq0!@e-*?xeUlnmP&+}U|oY#&f*>e5(2F!bba
zB%dp;7t;|j?N`xH^Qu?S+3niMbla)QeB}kQsDYKXotv2by+zi6cVJnn&#2$A<m^X9
zhRA*)+K`aBq<&Wv8|ow%+xuuJ%TAQhInK>kcQ7KJbMu!kU*sKxMEsw98Y`{!)}8n#
zl}1m)iO48Ugawo_18d@(spx-)*=l~kP0U2jzYKw!Pf8lH5K`WCSf~x>bXcwX0=jYF
zT_UDZVSzhc(xeuluUuPMAg;zIA;-@BLKnbf5kh5L`USG}5!vG<EhWi&>C5Fd*<4Bx
zp`m2@Vkd2uWI+2lMjnFrLR{|S^k!044Q7Q>c$TY%7S3h7HKW!~+j1YR5vQy8owrkd
za2%4ean+@4tcx02nS+odB$%ca#7N{2H=kZ&L63<%k~Ua+anMS0S$P)}m133rmWMMu
z8D^fyAm{Ws-XfUgo(EETs%}o>Ark`D@MX$JO{zQ&`&On_tW^6!Ia`n+{#DW{BzCIu
zJul$69W2r8k(VU%TOfu++L@e2{ku^%$&+|q%!J2D+eMs2>a7yMnA{X`^S14-XZ)Tr
z3DwehIGuG3P$6N=TqAK`67xt6+-_w7GT{pU=3~+N0t-w82E>&(LM}`4b|B~_?=F*+
z%_zX}X#c3x6<?HcltU11?aAuye49~$1=up$dFZ?Spx=@99IR}qepf)B87~hVX+3UH
zSUf*0`-0Ntihvn*XArrPAnbK%$;S$*!}u$`0b~!6U3?0V3AzHk+B;WVV$zZ^$(%#i
zf%9KeS?oKR_2d8AXlqlPUPZBec{BR;)NXP5OO2UE^>?dMaXFmV5EuvUqw-K#`qHeh
zBUZL3pDRU2ch9#i24-6aOc1O9Z_eY4$yXV>Is;y^Z!ws<#i53Jq1=|!>)?fpLF8!F
zO!avP_SOQnL5Gq!(k)`^PFyAVoNy!o=3;~sx{af^mOAR*+K(2yImgDePgHInzX9Gh
z6WK!EF=Y-T5psC+7Z~64bo@&aq|=CdykTf1T*MBg`xg4p=fJd<HGR}rOKM&U!(Jkm
zlizaKx3<6Kuu3BYWIU4p><xdXU13&KB+DTx`ziy_+Vy%V_I~(7-F$TP024<L*Nmy%
zy|%fMet7p}L1hL=AKjbYLS!+Gjgq)*R%5U2b<25Ti&`wc^s>;8!}yu>{FDca3zC_1
zm67#DSJMYZPdjc7U{t+*@+BT8Q1k#4aN*z0qaSWC-3OXKj)<W3H`p#owel>+s|}(o
z5}L~KyA9`6cox)O`>cNF{E?||+kk-!!rDuFV`dCj#t0U9zNG>nz*si17`|X2r%}P{
z<pIF{so6mnun_nNkKgiu)$05D;St6N(G`XV0Ue|Es-)(b<5H<tb0Q5m{YuYDcC$^p
zO8n1dHD<WR@=4Q#XSndZM@+nGejX7VJiZlmC50{YyIS8UBID_G=y+={*X4(&{Iwey
zuqRL0=iS}DJ-ghOzkEIbbeX5r;Fif56xKFT@`7G@0(tR}w^B`-kR)SBwXQz=df4eQ
zLVrsg2f`f@%kx=wBoxNl4`1`HWp}F%kO2PR;jvwibVx<lb30jijZ^KR1s_I!VZYpx
z3>`*5fPuW-lus(+P1;r2?{R*;(wx+TF$g!#`yCMND|-4k#N=8IwsMFIl+>o0<*r#1
z7Y+3`{u*KJWFE&d0!!@<Co^p~8TTQA1L~#+`2NT-AXV30ZdV?F1_}64nywMkxBen6
z6sV3q7#-lb9OTH56SB4g`oBwdh$KQL-kaied9rnM3<M-I5RSEYGB4}dtD<4iPjUAi
z7T`(nYI}=8zh0x@BA_bzV?6D>RN1&9@95}w-X;-Y1*QAKYj2R9*Ia=@rMi7}7D<<#
z`&ahYOtsxiIClcr>rzxph43^1*?!wk{pJOkLx1-W0f-nSP3e5-XurxB1VQY3`-+!{
ziJXnC9^Gmz&RtHSt>zX%9jD;%)aBh>%ex@UYua29mCH9OV+&jV0?_5fjh-6Fhkst=
zfnLOe!ULibLtb^ha|x#1pz2OVSiQHuzfP9Pa@(e>kW1ER&uNNhw3=u@Az5fKupQp+
z${=(5J<D6C`k8^6GSP&PyEwOo5Ke1Bo*xyTX49tJ);BT%VL9B8?la5FTmcIb%)Ry%
zPg`?bJi~SnuDm&pmJS(~9&5@qmA;ntfvv`@ms`|pzw-EMGWeM?iTR<y*s6j>19@3@
z8IHum@r@sv?YlM%5E#DFVtVQpn9#lmIh}J15t#!P_j`9u1T4P4b$atPQO#!qL?lrr
zPLSDWkH)S+o)xCkJjB3$1nnybtZ~C^z%~M{a~LWC<w4#fAT&9_K>6@p1DE08iChci
z0;cFHB?p(!Ma1lWb3mBiEFu=`!A&(bjsI7&aFu_%T@5)>A5SgQ@>R=92icnTfyv73
zMNNmvSoE~>QtbKjETEN=v*SO#A^T&Z-fHzxUMNeJV5r!9<+*bfKgk2(4G2VREhj0a
zZr&2f#@y+5*-{&uJSH(fbTg_Je$BTP7y#e>L}EZJny(V%Z6y_guX1FH6pwW(zBW1%
zY|v0~@K+Fr@fpXq%LHK#hgR41puDcZUgKn<gDT05C##35$Lu;$nV7B<G3L-#{lRYC
z$#mJ;+(`L-6XMqEyCNqDq2?yNJz<AG+t7hxm<zt-Ln3C$dmk;`hATv?03t$saRR<{
zN=5OGCR4n`>ZY%WoT_G6-S4hSMZ?H2Z=Beh8RQHpMR<Sy$)fn+U_Y!pp8NgCdx(`f
z4Y|(whm6NZ`X58dS5H(SI|ZXQi~;b5ftK$*Y=9>VbcOie4Ri!!3luhLlYZswoL|x3
z2)ilh>mQMOeW1@7!-0vWHk`xraTC10*UieT{*hJox@bY7_>MrwNio#3$BRupM($Ee
z8Jf3NYxlm#u~`H{06u>&s{MKx?}6p!-C<4>zLe}&pR$<^Fmf4zjNgNQ@|D}+Tk<{b
z(wdDGSQ?|9$<7SB7CA=xwb#&L48=kw^ArLE#VwPKtfGBNm4p;oPmAl%{$_&k(<dMJ
zCc5sIV_kA`3AgY_>DpmR`p7E{RC-ZJATTsDQbd7QttDUSKf3QBQE%^wlyrwmufi<&
z5k|K4Ks-Q!fUUILHbqkWt=Ldlj?S7Z{MMg+#<Uy#CWk!ZN_6-#N`&19fXVEV#Pi4x
zN*3urWU~<ZFp7WI3Itmh{UX&|R0%RQAXp7^U)kH$KLe7-IrQz-48u)uR}-Ngrd{aS
z2X?JTJn7efFM=wNe`mEjk#|0i@X>A?Lk5@r9?_g-<uj86+Z;Pk9qP69Nrsvwt$c3h
zU<N-|QtDPnSzgW~xro)?01-$FsJW~GQNig2lWVV8;6h0Pi!no_{r(CK!VwBfon^L7
zkxZh_>ne&(efNG9B`O9v<DMvzXRQ^(%?Y5AJB$HqYEHX^L{T0XrPFIJ#|_Clwas1+
zc01*Gf}_oapgA~51mrX(u$cntM1J}`KZ5Uf7%v7iP8--924Ivh!}&0kQ)xY|Nf7f&
zK7PUOpO^BaS5)UuX_*oF{W$_93J*!KX6-{%D&vw(_qBKiv~4t9|8f}h41JW1+p+xp
zeW}ldD#P6*`n~8V0gZ=4gWa;O?QjD8075k|E&|jZ8l2{fxp%FdI&Zu#SKV8u)B?Vd
zvenMBH``|BKicfX#kd|jEQ*Rj8gD2YSYEZ>baHJjl5kxrJ%kf(1T%?|&}Wd>z-0rN
zU{o0yYh&f})Ai7M4uYHY3=7uJg&^u_`{l^6)t3qloOFck`A;MnTl^-;%H9_rk)vbS
zhY^vK5%H9pLXYoEgqF{{(WSjKbOJdD$RM{2sdj&ADLxPiXDeJt*znrRFBm__D2|-P
zCn9606d1p^=Gic43{UZMX<YwWKL+1hYTP-LXaw4h@RxOTxA*F`z_QtaPhupo^GT-s
z;*uhdGyS^y7Z%x2vC@2n&lv`qxd<dk9$<L>h^qI=kgbT3*C=U%KfY>{pr2f&QU9_p
zW2<#tS8)TYZ?$}OKKYBLgV6hhh%A>yqFOVfKV`N3Jna+DVaJOqfCFvu`~WpZJOq0g
zaw6kYsy9A}1-@bBVSbj4BYogH>%TkqD>^p5(seB?&&I~$Iq_G1+oET7$O6Hli*AFH
z?3*b7<N_ZPY*dbiTR#w(19S?8DG5_}gDqDBo!}MBIw_KspD`Js%VKA2Ta+%J_j!{I
ze}yL3t8C%Vr-G%BKyFlK3!~;BByz>y8rTG)vHnL+0!ViEoyG6krCqmphe{%~R4#bl
zn$;dw5HGa&g_oH$XA1U6M~n<z<yEIFLJ(5m%RNnMAS77CP-Z`|=}ub_!rxV7{nHU&
zjkBr~IzM{rzfPg7ko`0bP;u7otw9@zFVTcoIpVPh$T6&h#dQqiWwh|TB@*nZhT?&>
z@5Dc?8b0Sg+~k*Z2$ih3_A=N>`dhP^Gtb~0)Ji-=)!`|a1Q@ajvO{<muT12U#}(gD
zE@~=-EdCJ660i4i`x;SoL~l1OdS0#3Yl+?$*tDKXaAYh9^9iHDF~U#7|28i4DtjRZ
zkcDl3tDFodb@HEnHeTJ==Sq1D5@(=d7xP0bAYHNQDKLqB`jdQ41uB2j7F?-a+mjd&
zzQap9wcZ^*1lk^KRr%J3cQzEoT_PxWr@e*4bVyC{aYr>B3%dBl2R3?DhSQxH0}eza
z#-f%aWeL*%HQPqXyKX1q`$Q}hEngPhBlebsbAN{z0CY(Rooe4@KTpke+J_*?>OYi4
z8@wq8R982|?owJmHZ%I<r`@CYl$GZeyKfkhmL2q~iVK7X5IAU)I)EBU1Cc-13g0TP
zb;v%KRi96*7I~XQ+BeFO`A&1Fqn^Scc+A1=y~hi|3fLCLe$Whhb4m`gMqq~Pf!PEU
zvB#Q~`}zS^^^lZtFH7*n^Cl4v>8neQvUeWH0p5N%m|{f-I}vxk%Q&p9j+Kkby)^GW
z&Q%owb<`_Po$t^kqe|6^alP%eY)cz74DVHw-zf-<leAr)-?zkduJ}voA!?e=4d&0X
z(<V5awim=JZ*M;Kazo%dbb!=?j|4n#MP})P-Bd_P;gWVA%7=3eL*UtOq7O(V;mvET
zR`4zw_9YBk7}aJSH{Ve7fd_2t$mZy(dZP$AAuw#GlM=<drlRy1=A*&v0Y7?s{(*YU
zDc7i&x0e0OD{?<|Zz$;~wCsb?8C<8}S{3>)oiz~coG!IHy>!~TO0_v6=yX-}L@yCB
z!4MevQ#N=4v7C~DXkz@-oqQv4lnvA=XY(9Sk?~}zy(Y4gw|<{{mR;WajTfU&Oqwkg
zep(r(>Lo37yINHJ>JTq%e*M-<GqkcXYP^VSr8ahZF1FicIp)nshgVFxc(7eP!_4#T
z2CVM&09OBSY}1S9K9@&@;>-SCtJOvPb?P`zd-%j}|IYQ?H$O*yVrUlEcr>iu@c7;k
zy!Jcxo0m3{#b0i<ET9IJjH$@<7mke#@tmXC>Bu;r)F^Ki{A}&imQlfE5Ig)RV$4^J
zvfyp4q97!vi@AE=nS=Di!~k`rsA*FRYFex|@Gf28N|89plv)lmWNOSIn@I*ZIU-M-
z_Mmt|95qtSo!bCl8#D6E(m0;nD|dVRioez_vUh^={Z*l+*3TrX#T_BpFtEYb+X;Ad
zKRLgi1vMmEk0J{YyIjbSQH4b|zoLJqu|-mO-F@98h~C#`r!+e|-6i4KZ{*Gukw(7J
zTNr0YG}qv5mHo@AZ_zoAN(Ia(kfz`U>3)nI_k4a_sR6nsQjK2N-^7N*r^@rQcMx-$
zC7gp3=nolE2-UXdtk<SrK<z3s_Pk?Hi#}470@*qv=|jX5<LLP3Im@^jLjMnz0vd`e
z)!Ez`y4U;mg*waV33s!vU`Z;L)^)nx1JqBKIt3*g5AoEy0%_wJAh(0}dC0wFMhcc>
z7)17@ce^pPXt{{|5P~L%ymY!CzUf!7SxR_svCMdX8yIP=#xl7YbK*{TV@^GM@UF1n
zRV~e;qL6El0pXm)Y_|xs%`W|-VCi|=pB2lmWlbl@0(t8qy>TK=V|8zSz-!7bb;5Og
zUKT2CGC4f9>X$oC>g@M6V?<yvY#W!BXy$6SBC~i37W}kVJ9k`^w(u_HE$r$|_EW^O
zZfidWS)^}^#bo$5OmpELxaH@Vr*umJ;RbIo@(<Iv1KCG5isBUQ!SSpUhWSsa&-xRE
zL{cG=DrVZ$+mYUZolU&VdN(w0+irD-F|t9{p|gop-roJ*PV>1ZSK>p-OtQxH3_FK%
z$WawkQ!jV-@XZyh*iYh2K+4R#i%)msw9&ryIZifsjk`<6C+BXif&%+~NSqH}wz)Vl
zRN3BfZ0FCr+4W7h6Bt=^TLNWI1`G4M>9+z5<X>^OvlUZDCO*V6_|6F<myu9a++Or?
zj;7Y3krbS|y*Bd>bTzRdMQ%7sKI--cwSi@o;pUrvEs#BN3uh`u1b@NvFI^(@sO{#C
z*rB;bf#YWu^BTd+hW!<Pl*fElVM9hncfh^Jo052a@^wmJPC$c0R#fm&d3kYd<5mw(
zu-BL!kBEq=H-`RZWar*5N8tevIu~a`>(AuQaM$`k?>u6W(z-+S102e?H|zN<#-mIP
zKZ~qx;p!_{60qQI2T*}Q5VPQ|{zlyfLsiOs1t&>{ht#8cgx@Rm=g#u`VHX52@#LV!
zb%(roPj!6lbevGqy+UNJpgTiBbar=CDFeBS0qY;+zP<be+2)lH&@F;w8qFv}FaPhu
zK+XD1o5&rU6<7e_R*T8a+YjiAJJBL03K0)ToL&TL?UVnKSVLG<1OfxknuE1;?ymtT
z>JEah-b0TGCmq7!up<E3aRxx%B03}}!~s>_`-oDHw1aP=_&73``L_9evEZh(K7Po?
zm*DPLpm80)k$;b7ENZkArSj<mEa{fUA8mO7H<oc==-goeKWiAzonor#0vIA|PE+1{
zB)hVRBIiSG$57JY&Gn)mAo_zb1roazK!%>%;rlQgPPY*F(TK+5wo2z)n0`CGsK*dQ
zogI$t?67LBXi^?I>R2o7M<w%oy-2_{30m&gS5A8yEIQb@s<M0Oadu_wxK9SU<g`C3
zCCS_ahmaA6Gv}%fB<6$!#%m6>qI_qb|0;_P&ikdORQ7+i-soCQ66#KUg}!qI3OOvV
zE2)aak!lN!t%^|w&i6wUEcY`E3E1la5kwxMPybWB-@%v{j;WA_cBU|I9ZIbKqpkJI
zCI=tPS1cG6=y0X0p}*zyq?QY@%hDwWPJPu)akZAZf04D8NcHRNpJ;<BtV{w7g(N}L
z6K?sZEEGvZP$*~(*>fCE`Q2mg`$AQj%o2|Ana*I5c2+&{oUdM~dQvcXUd&Q+t{2}p
zEvG*6szf`+t7vC^K<fiNrM2!aYLNck0!*>LrgK^lViE9TfJh_P_My0;w{K1+@`7C|
zBk_GB$PmXtfQp2@2bmtvH4SnP_-<PP<q2G-1E`+D1td_s5ytyw4V@d<n5$mzs!ulw
z{I6|>{ap3Mn>%mkA4+eorjW9QD#n79$+8*Sf(2!=5EmmP_Wk}UM;js^#zG716CAK1
zQu!<^ZDhM|Ocnpw`es^_>}&+d*cBRV+81_wKKUA8L=-7a2b(EemlJm~|F!JL_WBXg
z-VsBv<*yMG$j$qt8wN_zyj7q;NkOFj;=2TiO>U<$*%xuF>}*qLl_(}i$8;!~)3WO=
zr%fO8RDG!-r{;r3ntf+6)4`ZYR&<CjCH2oo0$ymFWFL<e!+`CRPkq^eovxKcMbo04
z+_qDwz-{`AR~)I2A3wLH>UiFp^OdKQ@b9j{%id8Ef%&nB#mG|i(5{#12cA%mce8wr
z+Nm|&PC3H5oQ4JhLHlb7{vPI^m<%!xHax-NpIBsswM*>fZ(cgY0$uh8S0!~G?iiH#
z^G@;1K<fjYX^^M9(Ww!lP(SY3X=HKCOr7?3vyr3@j%OW`Vo<~_ZZ(&;Sr}M>5Vgim
zOaHBo-4i3J2f7btwpUROzmt5_XWyT7Uz{&glHiqxbt|A#1)O+<oEn#QK(=V@3fexm
z4vBoF33dIlmIPgkK@AWJcL!;0RM;7P7EVMBXdyVT38B?GdNacG@ujXEEGF(W%T~+@
z#t8s12hUZ$*MfPiRY{x2{5o2|o_<xIVNHy3rODAW-CfhO#&rgSx}WqetK2C$9TDEi
zoZ-{elM^Cqdt2+lN(-7%e|4K&i-2ZQ?;R>8$j=-HYRdQ?*g{T+Hp<vXFokxO3);sd
zKbXPc2VNisGOknP3Oe*!lf|^1o;vV#$Az=wCk|gJcrLhU;GwcMAxp24Bj=7^tbZ6w
zxu_b8+D~=wARga$H;amI(!U_SzkZeRairOBF4w=4K&LGMQSDK(ZATg?cYA8kheSQ~
zg)F<6?a&%G|5@5E^vf8VuF>Zm9+Rcg_Wh7u-+$|Bp-qADY5G2K1gS63mML{uc)2v3
zLxp9=ZY7M+{g7h+L5`_~N`N=D%-{WC1E_@pF_qSM{bb;(LMkF%l1`^XPthwSObM7l
ztU%h_+$^FbV<Fdnd%xQX(ex`;$}+>$dnS3~AUa;<bYR|0My@C8vtvMsE&Jw3_lZiZ
z`=~0n6IbXS*+dn~%GK{r+QW{DYa1Ckvv@S=Q;BBQJqL4_m{^3o$mVX)bPS0&D%Ziv
zdk=-kf+zpVqJq{2peua^ace;rySO`?l?mdESMLp_vVP(gy(z7L+#=qpg&*6}^Rp!K
zJar^1Wz)}JD7H5V>I$5c96C*o8@ud$b2|aas!O8!M!G(-H5dJzycbEq&_V3ai(@_Y
z$vE$;EF?gheq&2eEja0&&j4uH6~9>F0|(xBDNKu0FdL-XLHoKSIk&DW$la56fTt$9
zth9ZOwpLo}An=b$;hzoqU-saiM{gu@7qGyYNBG5BsNkJwaQe+RlQA;8dLM|-qavj~
zr6649+lwMJQ^KTb_Nt%%eis|qKx!@2TY2(#;9k<_1BoLU-rPfCnG+FU41?7$14+TD
zjFgE(0>I4xAai-t$kVuN0DnV#n27|lvnIB!fBpvisn;NHjfaZi<`$R#ZataQes#&n
zp`3}{sqcNyAxFGY+k7xGhaT4b=#^*2KaK_eNDlvjFMy(^z+v$&-<SDhZp!2Ee;w_@
z4E#tI^G$I_^8bBdi63O?!iQ_!y$WKooiYf&*Bk_Uf(TG29_WGJL`1~k`3QP~)5z}N
zq*RQr=aETb47It;?F@jJ2Y+)8(NM~tvHy_a|LbM}_e|6i1F($n#Mrw34>vP&2Qpoy
zp8?2@oU;qMTK`U=E0W|Qo7hFn8SktlWLMu*|GM9Z`}ddl3&s3XpcQ~Yj}BIZ(4%|l
zrT+Vw|2pume;qH+-qL~p@zB4X%tfYLdk;U@Ct>oJ{{LU6{ck7vKfXQCiLxsszzO_g
z<{u^5|Gzi=*QW%QMS!rtWgG9-+5agX`QPu=Un$vtZ*BkIN86HJotan7{Qv2NU7m5G
z<@~Q1sOUa_>F3T%JGInp^7|xN2yiplSXdI?Xrwe`WMtO9dq(^X-Y7I=B8p;p>q%Lk
zq(kB1v7yA`&GW#rg5WJ5!QQmRudF1meYmH)ZM|@x&H&Ip#}?y4&6a8U@#X>3q8xwC
z;5G&%u1p!;lP_N}k6G(~uN$xg+&x^*x8zcf9BBX3W&Z0+&b)%5g;Q^&8rU@dpFcou
z6a|z3S56Ej5E~OJj;Kt+AwBoqN^POVl}X=gIV-8gksCfNWZ3X#eQvV*^+Cx&G8R1@
zXO^lGaZ$wY7Ii9Gr9^li-zREzBS6xOcIU}AUuT=_$8(luBZC139IvGJ_V%!GacNTl
z$DP#egKJ_b&-BtD$plvay}_4Hd)CeVFMif5ZG2eZ7%HuLEpZ8n@@tT%%YSIVz><#}
z3>YG6Sib-@>_upZ=wbh})dcQ`i`vBEBO}?!J}8ssnlcQ=lBf*dZF)DV0l3xfkGQwk
z7<3g^7Z;W%IZUC00b(vZdvBy>>=i@r;FGelrJHrq6Um{(q+$dN#U$sGY;ABQE{5wA
zpd)%dk5h7U3kx+Bl?1)A%cU4>#?g_YfEwMc%^hWeNF?m}GQ91~w}~UCF}_J(zLZ5>
zB>vB<`**u^MgV@1OwRB`_mKbaq7(8Ovnk#b68nYkk%ZjVk{KNjG02jZAno0Q^Pkb^
zpR04oaBy+u69cltUCGD{!+i|%MiJ9Ri*`_GI$1;>PlG$GD##4@l&c;f<FJ3&$*IcT
z5-l`47rz61g8q;F?~NApR7lG$<R<t(T#<B_0Ob3}xw!kwJ++F9%uM2iR(Do0NBg1(
zR%Ye|PnGlck$i^9YI~ZldPO?1Fx&2jzbWL9s`i~o|1Yf)<8P}REEq8T@E=+wGQ~u#
zsm#JR3uPQa4D`_dbWQ&?kbod;6anL~|7lzabfTyMnin!MGNTreUi$y#BwZK4S-LLL
zoTC3j!^_lykTZ({o0jo%-#=OZp%4AnmE`i1uNjgc44DE86`;zD5(+_PF7&1=p7=5H
zi$U;v02mf|PdiaWpQF@3%4N`&<6o29Kf{j07-d3Ik|dK>l}n4i1V3uNuN>0!>kg*Z
zi}$cNxR{{`VJgx}wA*-FYI(O8S7&)!G1&9c4(h&)KSnSP@^k6+=!X-2jK3A2x-dn!
z`TBT?D!<r~`Y0Y$N-hxY^Y~OkPN((fK_)~^>;n(ZR@4!A(#;|F$H@O6Un*0#H~%O3
zl40&A_5t@UG}QVCeyBs;n?5P$6V0G{TB@>No{3_9r`I~h-$8E?Gj8PR><S%fYo_*Z
z`US%%!k1}uyjb@&OK$EL$F0T}Egk#u?gGjYnYh4zRrLMGVORwhZj3-YASZ_m9sxo1
z!-o$#4)o4hfQ<y;^vme%TlM4b>?N`G*#fiFyVWKfCIl`LNeB18w}E&{C^1yB8>V{$
zPx5K;nyRG9on-ZG7NJ{GNB|)PH~nj-*gutblGpDWcj$*l6pIpm4~W-hGa$iw5?JhY
zp`Q#t29$ikh7yQ%zuH&1AM?eYtk0r`+sc;1h`ItJ+b_mAVJc%qz})Es;ge(E-|dOR
zutvc8bwg~|B*d;v7+U;Ub%Z(BBW$!@qo5$u-?$*p?9b~kKErP2Q}dDAX^YGo<dKtN
zZ*8d<$bYdJ*Mfq4g2B-XBXp}>pn1co&Asog2byJz7mUp!yVPuyVc?IFYHsI9=jfFT
zH>}Es-o}2U<~eWkWBTCsr@xn0xbL~TtM&}cB(+(5CMJ6^{hxj6->vjJ<WXdDoMc5o
S*VP#W{K-ivNmhv)1^qu)$7nYI

literal 0
HcmV?d00001

diff --git a/docs/codeql/images/codeql-for-visual-studio-code/quick-query-tab.png b/docs/codeql/images/codeql-for-visual-studio-code/quick-query-tab-cpp.png
similarity index 100%
rename from docs/codeql/images/codeql-for-visual-studio-code/quick-query-tab.png
rename to docs/codeql/images/codeql-for-visual-studio-code/quick-query-tab-cpp.png
diff --git a/docs/codeql/images/codeql-for-visual-studio-code/quick-query-tab-csharp.png b/docs/codeql/images/codeql-for-visual-studio-code/quick-query-tab-csharp.png
new file mode 100644
index 0000000000000000000000000000000000000000..07a5ec530a2841958a59dac018ac08c64183c6df
GIT binary patch
literal 49564
zcmeFZWmr^g`!5VgN_V%kba#U^2uOo~fONyq(jX}zT_TNir;^g$-OUif5CiPx<8$Bl
zbNu(-&&T)6yFF&)a+q1O)^(lNdH&*DMyjjIqdzBk4g&*&uJB6cH4F@b77Pq51~MY>
ziluR8Aq>p(dTVKEbp>f@Ds>k}OKUp|7?@X)$tg%$i3>O%z)wZ|a4$k==zh_^V)&3W
z{*1Bxqv9*L5F9hA;<qWi_=c!7G`erzYRml4W~zB3Q%wc;Tz4EnPixw}8ix5Z<XQOo
zsW7<xa#tL(49*$OO7j`Z%Djcm9d9;sW`2n&k<O@zv$-`I{V~>bGaC+P97g6X2C|`X
zSSmRl9t>7m+7p|(C`@`LI928D4zl)C#(0K6ECQ2D6|!|p+{P24M!UtU_HqCoMmuuf
zJ;mxH!!1dd8%hFImtSJ0zzA(3nRxH}Ur8#u5lCIkFzW+`6)&)1YAC)~S)Suyi@#F~
zVU_XCLpI$eZ~9tLaEUFq2}j!_7k&0M;0@H%ALnV8+juu|NG0j~mvJFHm}wZR$VKNd
zr~kZ@j#XO-w;P6d`$eQ9G8cC|cWX+*DZ9A_wCg)D!9~$=k$}P>saSU#T3jmeuB+&S
zg{>wb;;>WDcn0ld;s8p9sbrYWKAO^`^t)=D7Zk_DyNZ@uike*(cQ0V&cg2O7Ub=+U
zhG3&w3DD9_2h8?K7pA<Des_y1BX(Nr+-~8cHgx0ADHUsHZ}~d4(hj`507am=E+30#
z)N}9+ESf7<X&N@pJYb8WQ$<f$Kz;4^?k>7qePK~~TWYidJt51KYmWVWSRlh09PH0-
z_>J$+=V`m);Ge}a>2i9>2g<jA3S?4KlLp?=YSX`UkrBCUR%StEVS%By^|(`PLrp7{
zjd1pVlM*|PWs6plNM74=Ljyx{0i*84Q8u-N3BybH;m$H!D}nc0#!H3|l8-3GA2756
z>BkY|zM~C{U<knSzc3faLhh2_(S-w1p?rl!(ZzTZctwSY_u=F%AtM5k1cCruY;a;O
zY$ig=cWozJw+{|ySigd)&v2qYaB{#(Vqtud;CY2V8T5-<^XGFjNw#=GJeW|433ak0
z<VY%}y620?_!6P&Om0}ELH?nm5-GVy>I`m_Bp<@^8pj!k5E4y=%3(>rU%n+64tv<(
z0C8p_vj^917=l;~;ZnN$*S&9Wd~r|1?l)4-7@z09VnkFVwFooI6HyN=Cenga4AKuC
zl*i8>)Zi_q*J3%uD5bo5euW()J2kFcN4$t~5``guIX*OQJ8m#uuur@1?S^`X;SD1i
z^!PFF?KEd0kvtj_Zm2@f%l>WCkDTEg?x`%P4#QZMXi>dfRbje5<?MVU8POv@9Dba3
z&ziBD30DWtYmi|SedO*H+=6p9G^A(4Y((-z^MsuXCGGP2o_MAYVrk<SLuBuA{7$$P
zw>h@edNy{33-1*q_Tv-Qt99HrI1Sj$C@LXKA=F*)8iDU$xzUGVCq^Dc()EyR;+s*P
zlSj%-QVYfhDM(EUy+%2JKOnLG@at3gD?VzUc=LhR7jG_1FJv$LE`*<lnn^h4_o#C*
z88B%l4JGv_VY=`Lx(ddUnK*niOfzgZOj)*N4lGr(&`eRUE$N-soL-vNxq$b2=7s51
z0VTQRy5+uTzsP^igP;^D5y}(F`dl8rf<;89hlzyIo9P1I6`uu<odsi3oyRC0DMo(j
zRoPdgJoJfbH))~pY-RRb%A&?8`6Rq#yCj;VH;l<lS(=AdxkQL)7_`aNG0q7S-8Wy$
z^M>CLFgm`e&^Ucfp_7)sSxBQkpi`oK@aFdGpw`uE6^)g=#oW7B=-({A5R^9<+IKGE
z*Xy|MyJqg5?QV|=3ho68l{<W)_>!G(oVQviR+?9`kxxB4pYN=<l}s-^rNXUO`|7f7
zw~9bzNLHy>`>VU;5rSsqfMp?<QYz~(w!OQ(iG9hn<cY@#3b}NaQx>{Vy-=K6WXsDH
z_!XKJ%N1-<)^-H%vR|cF6#KZp^zIbyTCWVQ`q9zQY0&wId5A>#wK%tlEJ@#xUK49X
z8^(MlP9|O9?IWp;){KS_d!~M;Z=hG8x1euSG1U~-%sUX98f{K(#&DH&9ooB2|1>gh
zsb@K3`D_>M66O+p7k#&K?_eY<t<l{0sI8KqfuMvSnE;a&pY`D-zb>C%M?F{dre3n%
zN`0ZOk3nU<L!H05xeaaAf}`u$XUo>_9*Op~CxpU2!jVQXD^=~;ewh!(_r?TS_&tkV
zExR9_oji4qoMt!j^Rvtgw-ow2Glw%@XT}PN<~RzNaCEvn=GMk?&)w#_cA`$vjqX^b
z`0Lo~RM<8j;qn{tcPvpiTG^R<aNQH#*SChY_Oy@sEq70t*Z0e+B^AY4by&5ge9>vr
zDVZ~OBnQiYZNS)+203IoQ5{4k0c+$P?PTZ}ahkov=d}=nletZ`Ys@S5s{ow0I8-R_
z^<mi0460lu*Q6dozl5R(QpMvoai3|#n~vAyt_4;9ko;lsLrwan^qbJSut}+uFbZ^X
zR9DO;f@_XtMnjTSGRc^TnBtE_alfKpMjywe6V?kITGr{;akOwE65?XJGFrNQn)_lD
z6=r5{ere`IK+0xZeRGFXPgkNe%38p-!zPL!9vKxaOae(G{mHr)+vmCo>5DrP0kwLu
z-#S2P9;?3VsWXB;uV<>Ko{3BdI$LczCD^`po@B`juhP1qU*Nx$xBw}>9o$HAEcsMY
zZ+%nORL4yttMRdz&WPJj*1Kq4E0f{WWVgv~t_C}@b6XuTsahbPGclG&-u^Z10p?`j
z%arn(a?Byx&pG;eRZ?|d><b14M_6(!e5{@lf=4%Ycq%82>-}fG+gu+8+vf6~+osPQ
zR*V=4*Ns}Oe7fqnVmflPubNkH+IZ;u8Kcrn(tPBC6mWK%C#1%vmN3^kU_BK`IU)W$
zz;4a1-D_;O@)imuMIb=vMaXG9YgoP+xF|}<>9ALsU+frhSb98}KlySZDs1RU#-znK
z%tp4{{MO13yOyzY|DmFwwSsU7k8)mRnRR8w1V??cN#1enS~N!~QL%MsdB_G*3SMdR
z^rZ|ine%Ua;6>uWz$3f)ReQGQgXD)Xn?jmIsPmSkhB^C<oL0kQ*ImJ3{9;~^v<XHO
z280qtaPqZ<iMG4e!+wKJlfJ&F@5^i5e&?~R7+y<WBwONo1cvV@2a$xGeGiMSlTYt1
znPyAUr|ya%vlE9GM|pS2SG4E~=npXyF<Dm7Q67Fl-kAr>$EA(hMXRAvrmQ88Y>*fP
z+K9S9D98Shy`v=wWL@QDec3&vkpgajZ>%#p?{qmSh0F|nJDx?I%dE_5KLtGuqtC{K
zWq9x(E!iy{IxMV~+BVu&cG?HDR(I#+m$>@x-LlP9D0zy24cmvBeQJG7J+0J0W9_T+
ztB*cVpD}RJYQQDc(T|>PcfZsQsQg9TN6IpBwx^XF$fAGiqwBNmXZC7RIU;1+=p9hn
zt++AiW;G_Ys2pq2GH-_~=y4UqsXt1VJ<Rx{iE7*6z2?SPdu5Dq&g0NYWy7c9PkH<a
z{A;TYUPX7OXFeH_k$lPgxc<pL`o2r?Vt;{)Pgm7fn%hNIxI^MwVky3ykCVS<o^00|
z>m1j53{gBw@g=CAslI|)KQV=2oPZe@f}vtdKP@SOPk+Qnr8&z1wScp6gkhMyVUdSm
zsn!W#d=x)@COB7%L7<BGxSs`MXU|H?{Q%ag6l1#Rk7rL1@*JxA(6Pol8yN7@jq=H8
z^(phmR~^!`v0D>QALJi}84C^oj<vJURj^c1fnf&5$T0A*BrpiT2o`vX!IJ(xmV;%4
zdG@c@;b36GtzqE*{T@}|=kGu9!1MQK{``c?h5PFr2wJ(%{u;w#{C?{PdCA}3i{kW3
z&lLuSfbRDbR^j!FGZ+{N7zG(gEfDN+7E&r+?`&8UnU+jVPz2-054m5yFg}k6!p7f8
z=Rg`3G;$pkG#fR1whQz4k?LbEl_K6V8XB5cI5J!To%L@txtDM~Jv<RRE=5|iN=wVu
zFs2@6N;L63*8Ctda`bRCRR8x!e1b%85>t`{yv%=je8-8;Ek%|5Z||9WK_$tnqOSN~
zzb*Oc#{4s5#0TWR9&}Z12RNUwV6m|R+o;vQ>0h;#L^0F+bGES`M6}3JRAm3lxltj&
zqLebhSl9l2(Er0g01oH>9p|q}|9|uIpW*cX^Y}?#i7xynKg6rSlkmKMYco@t?4E2n
zmTgb)Qa9fH@#1IGL19L^@M%+bxnc99q1%M)E@Ul$-I-Taa0jn;=8Zwx!BkPk{b_4u
z&rZpQ3));)J^$l+E9~Dp`(KYU6s`9YW@R&vAEnYOHS)ts^y_VADV4NKwW=v?eC@vJ
zR)2}dSg~u`2y5sFz0T8BkJr}w{ZU;cl$S;=FC1g<zC^L}8MU4yyZhaV-W7Wt#qigT
znotlUp%K0HSaz0gJ))KlOWleUuIQN|;<ZUCG3o5kt9$>+dZooZa!3<)M?SZ1%%a|A
zMtQBnZ-h2Z#OyPx!RLuUkHhH!t#aK7G;$%HeBTlrow7Hg+Bo)vf1Nm1AQywW6GbV=
zfy{fKx==QX;JN_aY$%1jk%BD8UuYPOQcQ%Y=kDq#Eg0j_da+?;ma14NKiaXA+;-Lb
zh?U!Fl&n!GGXV^}9K%dm87|c>8#W1euy_O#p<iI8kbCKpmYsJm{uA%fw?^aYtH<Yu
z&Lg~YcV%6-E1qjBZs3l%5`#vErr0#`C+HL!nE>NPHKptDM4@)s8;|=|a0g+c4(h+x
zFTN7~Gn;|UqaIXkcE+H(t%^iRaD1i=wINIR=<;jyt@L^z5(V-qZ)=9f$zs}+s_;mM
zd68!8ipSE3$axR$HGrJJtCqv5oCohTN&Z<nMqM}rx?&ne3is(xy>Drw`Ro^`smL1a
z7A8e5hq)2+xK}}fB3ILz%AwEkH~ICP-TTRxGRQsVSAQKrQi=H;43*OlXKYg!>uvkX
zT~XZ+r#VN`dAZ4jj_oW*q1_%uQ5R$@psg5b?D-uPtHJZEfJZM6N{xe~nKG-mcJqFt
zV81n!<DEw5E&7JjW0Sw?OQ_U(;5vUyr~APBwt^w?)xZ>E?}HY%eW6(qsxx4+GejZF
zQ^)ml#=9Hglzc@w{@#PehONgnQC=4V3@TTLGb8Iif=5D7a4*(hX(9Z_)f&Me&=xzi
zU(M#Fek9zBz@{A`H1Rd{zdzxhYV&fPDx1qIR7j+k<Zr$XJ5_YkzOb(yNk?QoDO%J9
z1w>PbF8bc?=<MEuI~!?Ut{g2kuKjqPU6ivrx9m1G(qPw##{V>}sfIu)G;~5^w6EXj
zV9~2;{DPF%=6yx$slMw@vd%(<J6oK1Z=%O$Pvm2%lNj@_@6CJJxF1V;f=R`osFyQ3
zCVHlzqAU+C<dTR|Cjnp$hT9>`V*1Eh-2V;)bqRR?hbtY|9&C9$^%(7$`pEB9rrpCR
z44H31b1POke#6q3qIhiv*=g!pD_(n9BU5VP_Q>5=0Z)*CHy?IHjsBWs;CQyefkD_>
zYC;D+XNK#cf);~GPF@$=1G~E!j+_ixZVC9ZjVlc?C;Cr7J_xtoZ`eMr?x(<Pfdm{8
zjLcV?pRDn(`I@VW-M(n;a9o=j*48m1FFd#Eiy?LV%w|MVad)#7cLI%M$bOGtwAqsF
z+;^~hy#z*{y5Sao66rl1Gf8>xA5QL3CB?Laty$T6dPf9a3Veo?jwucu|JW1)_jWw8
z!G5XG$p6cOP5ZwKTM~buKItqMZx98|fZZeXma}tUVA8VHJ{X;^$|(1M^I|8(gyiXg
zW{FEFz4CQ|qU8{4V_m?n(lkDMeTArDy~n|1mJA@uiM;#9KZx4SmS-ksl~Og08$`-k
zc5$er^DyNRr52aRk_#^q-RJmTD3q8O#E|gTfbB1LN4SCAT~8kUQlov)Ms%Y#R{Rmf
zl61X4(Y+k-^ssweJI3~gKNC9}#XEGST#p-Bl$WFAO#hAhoc}-gE4LgOFC@36mtbV%
z?x@l+t?l7@iPNkU^RSoDglEaIGwX`$WFo(nm}A|&l^CowXGD2EL8$ovZTpEqvApbd
zve?_lv?EQGIN@$RVpUa4z}iqpQ2?r>3Hsb~y<p{-kyR1kx$JBeoq9M(*9N=t%&}<$
zk+cOS4o=1_?cY;~#}%llCd#^#tJS#dmPkzS3(APT^e$1Qyf{Q+k2I#GDBHXAVP(aA
z&d7dw%2INl(u!6-7R|eyrzY5P@+Ywca?CHbG+|GNv(p;C)R4Xf+luBsHg17&BuZZ_
z2Xn;g3m{0ijau9yQD{SSs8+wBnI%Uy4Yp#SceC}~13MS@ms>NxWzGQ`2i3$@oVY`4
z)cr<s1aH6qT?!G%*w0<VoELp1!fF2T9_-kf!X0o@Kc~MteDATJ7fx~*X5_J8Q5f*_
z_-HBo%DU74L3wX9%e-lv<=}EmywN!2JoqKH@kZO_Xzk8AzH)OWd+f8Lh1w#ovmZ$4
z=l9hZ<U;UyS(b~pHv!_0H~D@@N}lVL6-KS;!r(S;dNwh4*&f-puY_;D>DLcO6LX`@
z>FO;3Y2vs(<n7?CUb9PqMK9h~x*ssrC+?TP2`&lAU)3-ldD{m3Q)kuRz<*pN8nSWJ
zJGDwNnr(aKf3xvK_tIh@fo}Ki$dSWy#XTj@puIMh+|#voH_LMseJ|e<%PtH1t+?hE
zZT|v=kDE)ap33ce7xwdfxfoR<sSjOGceZ&yx(SwiFD*CvVTQQ=%4vba$m2`f?U2>l
z)!1{vbAOrruN!!mz0#l06MhwWP@m@Do*3#krmgu~J+>J@Muow;KPGoPkIu6TjC-n%
zXTN0_WVwCZKZ+{hL9=2htfB4Uza}4hW_mUuPZ?7}c;&v!9U){nd3*HWrPG(;*g?z_
z;mLaaC~Xw+V=OoSe0MG|?BJw<#U=?d^<yb*ZE4_}xi?UV!k%SKT8JfM_kB#wKM#(6
ztrHtqaT%*HU0uj5uCsLBcRE!R=l3MCpBp?36hiyku1MW70pagRu)1b86~$#_e_x#x
zb=B@S(Ky@XD${2M!uk*Sh#41Us*N=_6&Ai6Z`~$bS&#fF0w}-;A$ps6oAsYcsxiA@
zvHI(sxB5OUEXdtzgoQ_z(FPke$Ki<gNNS1As-#`iQWr9N-GK5)zbgNW^HA}_19%1B
zEm)KdBv;AB-gf58ai-|@^4Pv{g%685wp!Tl@s{u-y34+eH1xzg_P{)p##^^Zj<eB7
z)BN<g$jvE=Oy;}KhwW5)tM8VKy>{@s!5n>#_oR+(roFU?>!x_F{#yqwCZEIB2izkb
zfG}-P<$>2^fM<u-mXSilrGZ!HvK`Nrj80W79|kgjsNUzVOJ~2{anMG)a=jm?x&-os
z!9<l#rSbJcNX4%L(`e<j7I#|%p4F;lHR&)kPM_oIaC~?#hM<fnBob{Tk}5Bx`~Cd5
zAh}z$Z*!c~1^#yj45Wlfo-87~K$2}STR4C20kFq`t$A9hu3nVQXoT<eVe*V!$JF6u
zW};q3UOS?_iFc{yvDI*gKaeQxL|>mz)1e{K@EUiVw%4~El|DrMP4Xo4a2Sy#lL<{<
zYVen7edj|nt1{)bgl03Btc?1nBN#!J{ig=E>1dQ;ZVw(QE!<d?c-G;Kt|<NLaz=K=
zwsmt^^q4QFroS1;2iY*cU1a;s4vDb@pl97(#?R!*-IJO(KeEue(iXO?A`F|jDExYL
zk~C4iVA+7y_WeaMLB9gw{soq8gvn{k#+KJyyN~BmRyGNZFScd^+d{>U2GEFW=Wkdy
z%blE1G6mFm!Z3+1Y;NKGOL(7B!VD@Z0bs#YLlZ)hYuk)k6yiy5w4`JPViIb-*^C;o
zt!&>Vu!s2e3_rsVpfXG;BbIsB^A7D(8rzfW?r`-`CQF;8`28{WP{;$WHx)A?8~P!~
z0{}?ujGxv#*Ziy+7A#4ps!XMQMz_}F&*yvQ**Ogo7Yb60NnHA2VZeHGj1qptTKJsv
zkZhGV#(H+7+?LUTcl-IlVP6S{SAD?to{@~c8=-_@?(9+C?<xODFaVH${$;4sws*{9
zT0JFTp{BsP+N8m*S!J)qpdfibX&bRz@pDdGPqBDP$|kc8+acFaXae06hl0)HxpqZc
zA&b$Z@*?BEiMW>{Or?asQtg9ly9k%4$Y!EY>(#7*H0R7WX_)Ses+S`uddG?5avGvK
zSnXI_VHo5#?X3BS^8BtQ%5;z33cb^XDj8u$7uX1XoHH|lpEe0!>aG*G@?CY48hY&{
z=cOKce0YBl&MDy(!__4$6It@Lz^9}3#^K4|^9lADV$(a6BGqCBSg9&pO`|Y?XCQ5q
zRd`0FfBZYbJ|J&11qPj|7nF&w;w^XwH9;d=*86iZRQQ+<4?CSUx^7ggSz8~*PhJip
zZ;HEYr)XrD&5mRVvm36OMX>^aSC;d2cd|1#$XdWW9`#QRlsH9hyF0WsO?i^Z4mgf+
zc=QKGyt!zdLjhmhjxO#{*;^Qa@;Gqw3w6_@<Ek%XAVJ2#{FjRrxPz43hdeJ9g1WbJ
zFqtwt4Q5ko8)xixodo++<b*X<MU+$^jpFMVnzmzXO;NvI^}QT9FEjs491#KgwW|Gk
zaY*$xoc}#dhJdr#D3b2Q*2-lzs0)PwZ%H)RRFD=8X4AT@8MbC~t~OfT8$d3)l@q{J
z^;7tik4Vu9<`KMJu*|^sD%euVc)zaMGD+*U7ex(+%bo1-*y9NR<=~Ks@jSMtTbIvT
zn1AQc8hUlCpu<c-S9`)c0H<5^hO_C8B)I*6p!R0W_>n!_?&Uld*6k9DeBa3t6~2T%
zs`_fwd0kEiF@Gtm^}3vmsCLNuH;Y`rl|WOR_FH3jUv6@?E}%s`0?^i})r@a8mQ%IH
zfqu@bUtdb63RO_e(?5I67&O>fdrD>z-HMV*tM81Zt+DidGyk|R54nCf3j~eRB~XsY
zMz`|Pe<Is{I>J68C%jfD4%Cv1-eQy{Q+o&c<o|fP$CoML+ZeFttXMvy1vYLo7vdCN
za1Ui*Z?Cz?TMD?pJ{fTx6SZ2i$G*T;Uuv+o4ZX=0^;y)d>KWT<Ns9bCioUnV<Wj+F
zoAK8>b_SE%MM@&kE2qYvk&y$nIgr6t`tqdF{3I9d1@vO5G6;HN|9H~4##U0q@a=T8
z<L;1!KjXU22jbUN*By?DxmTNJ>h!YbZOh(CRrj^W8Oj`Qw61YD`Rouu6#sN(=cCQ<
zX-+v$pNO*O>q(aXQ)P0HMaX(qd^gYgYbz!<0|>0L_}92vbZgk6HP{aOskFBG<Jbux
ziK)i`7j&I8;(+rNBQj1HO^E!$<54Rr_E<8MVWT+zVe}~sHFrroSaajsq0AUSeT1~J
zHze|zaCa5pLR`$oD;ih5!+wmhHLb&uet|K~Y#Qs)qT7bu`#{v<4H-_vEwcGrDM~^K
z48qdte7H8ahwGQ`DJjY}t7ti7zMM1ZZQXJNNK&Cv$|%9|cwSBz4E9?ir6&c3EW9>&
z6GuQhAb0TO1`3?>_`}8f)`&U8V61m$Afq#v7;H8e$It|lFE824NbT!B2|nIzq0>Um
zqD6*sanTIj0pO&^PTXQ<+8suB>R^StpYs<eg$eA9A|!nrT*Sg71yqWyph+W<Px6e_
z(usOp=ZR})%F&)UEp?jo?GA;iS?LPb9IRkTv}gt8H-j{*OkHW>>bRV`!cQy|VZ@2U
zR25vgxD7*Wt*J8TlMZKvFJu=yGm1}m*yM@9(pN`wjT!Ip)aXm)cGNt{W9~2a#`u4I
zc3F8e@(c*+d3?Apdih)<(@7mvaxt3rlW2Mxr9N^p>Dqggmc|)ixAqb6ZR%OYV;vik
zAe1&8L5QJJ&p>jq{-TxK&fkS`8#VCb?dwnPuGSGo5$^U760!BqwXVdquIKX;@d=p1
zQx2-l`@>{6XBIl2o{qV^*qXP^Y5~?B%3kI>?Y3W4+r0k;RT>Q2CN@?5TYmr`>ilOf
zLhd-<gPsY+BB*4rSl#AJYtQ9sKMou4r)#=Q^On7AAA4+Gn`w@S0iu-=L`(|1y(_i9
zWL+v(H~>pN=cXe`qxdlsdV_-dB)ru#a5z)e?^rYB)+%2-*aMya3SfArcW*)j5X-wV
zCMk7?=;$5x<SG5|cvN$2e$(XEbaQ~t^BX3V7xq}V%SBJh%mS*%PZfXK#wbpboOp*_
zjcb6(gp{><oREyB^bG^J+C0jA<?-Mlgqrc*EZ-<?eT}^nYSwsm`uUYs0gIm($+`Er
z@(u}I!?ECACa#z7G6T=`)c!=iJm%$ltlFlw(DjS$LchOfw%h>zd6#suCcyNihd&!M
zaJVh>vj9AKtjf3y6f`*rmb>V!{q;$ng4Kf{@}T~9HzPwe%cIdKMO9z}lo1w3(ZY3m
zecm5DGG`KSQu#5hb1%Eq{PP2X{_by3a=Vja{dkz_rT+^To#aO@qE)uno77d5A^;~u
zUM<f1K~~TMhCZ{R0vy&?Mnf(Md+!LS_#YSF&1JdIF7(P}sHEzW{+sRPCZS~doeCDZ
z?y*^ecXl%zxbj6gc}}98QO?I@WV+bef4#m0@YVdd5F2q!t*W8x5%l1zLSi`~(*aT2
z-qoB5gntP(cG*X1IP3)~8e$LQ^*kUJ*tR2X$rl6wCyGuTSXB%mVz@hZkOUL<ydp`q
zPHG2|YH-+2l-;WG(+2C%J*M;axkrr9F0iiSR5x;Ilw#j0*9Qye*2M11QA)OFxgP+I
z-aTK^xZ;tKXQk$g=G*4N-g?ZHanf;r$~{d-+WPc(Z?EHdaeXw$j)$p7>4?1eTM5J`
zE>cdzaVTtUi`p7o*8~N*h-LCxPxcu4UClUD4;N(#xpS$BoQLFbu6JXKD<8NIHk(s%
z!0WbUQ~DfpO1}z`0hd_#ODyL7qgN;4{4VqE{f{6l`ID=;HI5#F-W&A|x{Np+8JU*-
z2S}&Ri|Bh<&vGEn#eUs<MKe(@U?DU*%;JB!ly%GA>X4OjfgNbI|2;4`2v+XVmZ<5)
zU_vr>^6EF*)j2?#um^Mr%8v!-&y<?#@R{+%3(9mVy)--zc<}$ofq}jZ>fda5HS;ZF
z>YkvWbUHyk5il};2sO@Tf#<{3+|nwmRhIkbm<d(Ly$qkr_D?5VXGJwYBK<8L)dDA#
z4roc75rO`?O`<ErGD;yv!zeA$BAtM2NdhlzW+=poA1B#j#=vb>2Z(%}8$Jk}`#zA<
ztd~lY_WomJZSVB@%#&QOy|JBeiKW<$HaJ_Zxo@zg%%ccchX)vP?A8aoBDi{N32Q0h
z6noA9(oO&V!<rb@mT(3`j_>62q&EHy(c3|mN*VmbSs}CO*7+JXU)c69zU+F>zif~O
zo{K--#^KXF99_&BIHGsstRLJR6y=aqFnOyw$Dot&Fyh%vm1@P}Vw2)?;^*B(bC13%
zLlsv=H4JXcaXtP;llULSbWt@|DvH2Bwv~JL{1a_1pM8t<xV8=My~YoD#QXyKi{WS?
zJh707D7j^gHp3#d90!obsOJ`4%Bd5e&DCmWiTb>8I_3_J3oo;udnvQQQrX7bw?w@b
zr*MV)ueJC|38$1oz^lJ29kc%iEGMg0B-V!7bb5X8RqZn(ECyKEEEUM)WNrLZA5Hyr
z+~Ik;z&xmCS#rea)u1zK7_Kj^Ygt*RH#&ySp(A1A1Yi^(WWiw+v5|xHIk+YY!4k@u
z8a<t$>Z4y%YMAZ();Dw%^fVTHVY<<|pMPS}9<YY=Qj!MQa*b(_q+~_J6rBR3jq(&R
zkQf$gLMRP8c#SX}g<5u5?HHh0eEzzjGCNdccNAZd>wpMwR(3%w|H9H%>#)*7yp}<<
zasL2Wi$gKmndFki+9T=mNwr0*p3$puJ(x^-Hz)=m7}8(Y-Y?AAHQNjX2_qJp>uhGe
zNLy{YP%<n1mAob3x#-lFvpA=42B}3UIo(Q%WXUSw5u<*}C>IR2rB0E@ric}WQWd^-
z)PExWu<=_730Mnw3dRqi1g*m!(V-%>alQLDe^B3tzp*cbD6|AL<7jS#tw;Xs@7S_G
zU2f*XIH<Fp+T>rb5MhgC8jyH>-maNx#dxk<eFGt!W6iNgt~{56YV~yAxaiTdF&l09
zaVA60tsl6sN5jyF&2*^4HdNBTZLGY~JMZuLo*VK)k<SUYi&M%1n)^Dbmrn{u;F7pH
zb}N`49HP+=aN5qrio1?fMX}CI#@Vltjev5=XGs}?710<@;r+Aea)@_5s^qI|RiS~%
zoJQNHY{^QT8HU4~%^}7CuDn`-Lc5k@Oj5p=duBEYv9ezOn25PND0pAPZLHxm7XE$3
zRcyFF88Byj1u;P-4YqTmZ>*p<=cdu4bH+ZbzbJl*YHb~<K%53sIZUNSNt_Pg)Q+cA
z_*bSqq>HL~P0-loH$x`<C?)RztW~2eEdvDyJlXDTiE2HxO!*W`hhrd~djV(|rB_xw
zE+ZV3A~%MVzoA^vWFaEBqV0xBG~^7Ypb-!K4q)E4z6nlgTYE$a#GIOqi#9Ai(fRUm
z7^3AUl(M>|Ak3L}7T>-tZRfQ#Wb2Wq{Dq770{1^?h59L%{-uBd_-#8H#(6S}(26gV
z3rnK{9a9co|M6nv%tgj+cow<$7a-nPB$Km6R6&!&HYSb`@mhf#lyFLuoT_LkrFzcr
zXOsQ$ZWvzz?kVb#Z%M;H{E`aJ;?)Or#c(p02x__FsHu;-cffk3n6lQf{KYDOZ5rrH
z1GvIDqhW{t;px)E>%e<MPVHlb4vVW)dqU{m1^!W4{<v~)SLmoD-B&~*LN0$DDG&$i
ztrMe}2iM!LFL?t2RFuwX-Zvkj5$spMmgoDL<7Pex0oBfTDktD^p)U}qD>fx>!s3xs
zGWbS@;xP)m*O?9f*(T3JJ|Gq_$Kw{*{F^{Z=wXfLYFS9?-2<2VDh2qhVoK8F->EE#
zF7Ts8Gxy1V?6iNR+P{p%=V>3{XQae@N?ZRaR)2%&e-9+m02f`qu&JK=uj~5TWBPj#
zC`C^tSsy=^efTe#<3H#7pRsx&{EOnxOb#diIc<NP$zQ-C9_5uf>vnBX%ipNzf1b|=
z<Rm7*I=A>}ApD=J{b$Yp{+sdL@5R48E;;?@1pc>n0t-cnAe*$!+0p-fX8wNV|4q^V
zms6zP9M4kuKi9sz9WV%uYOX0VWB(4F+_xw{rR(3SWikJ^h@1T#alFnae{+TZ5pKXg
zfdc^%H?LXr@xMhJ@9&6HF}(k85vTh*;;yGlHve11sQ?kDhdcN9cYOWtgXf=tO&KKW
zUfT3uHl-deuqkJI>c#)drVIiy(*I?Osw!}cwMr&iVkP?7f2(B{s<|#{U=3lszqj;%
z41T6doGjLl0N#h~Vx6^l7$&7dw%2Z2h{YA)51l~(qa&Tr81!Q}M_k-g-~P`Qd=&>=
z#4iD+<p0ApBnb!7tE8s_Bzt1IRC{RF0)S2mM_L7n_)~S(n)i)BN>2xX)1-2an5Z>{
z{hxDs^#_>I1>Dh(Ret+>ifyq23zSl}A11Ua45umD%z8h*uCxVGsWN!AedM=mJ;dH=
z2Xq6dZ~8gZj__G7**Dhjpb>F=2O0uudMpZ=a{-0i^7dlqTHtlT2;>Bx<qgl%?O1?v
zcNqG}Z-xg*%tgMHH4837tltP13>@1nUZYSJ_;D<Y1B7|Vn|~Qqvru_JD8S3&c)7V&
z@)ZfES;#Hmmnj;eXQKlqe(eq#Dc>*@FjVN+G!c?80}V5WYTEi)w2I$400!1nsWuC@
z^QO$@dN5{s8n;zpNIy4j+^mu3%FM2`7Ap@+%w7Q7Xh5E`mLC8FT%>dNqh9b^lqA(B
z!H6%81Q9y=7e4_q7nk7R#k^G-S*pjMiWScZ3!e*kIsM0VQ>ulQBk5t7%xI=ofKT(=
zD7Rey9_S&q)us7P;NmCki6hkjhB(yevIke~>(5W#-2EHyGl0rF_tLmcz`YPna~%KI
zhi4cZtOgA{fPK#ktuTvd40yOoxdkxh$X-r>@#&^<Shz(Z7~pW0zg^GEh-Y(#t}1-J
zNqQ9Xu52Xy4tA9*{HvgR!{)g%leOii@nAj5r!TTm%3$Mgi>yu&E}GQi&ZkF@IV5to
zct1-hfGg=r2MaSCY;qLvF8V10fGvtWaxr2!>8dvi5xA07&f>O;Z9Z)|vNP8cf^Sv@
zcicMwY8hl6>bs_rCB&Om?v+@`ll?>|`sDRY9v>SPo6!{xfx6fMV1v5=qmBp(_8jaA
zMI9Lvf3ibF1Fa0F^RjSdb=F7*-|Yh5TT?b`65z*z18CKLmdEqe{#>qrTs@EZDK(ji
zz@hD&{t}3*p07fXW!GnwA+uqArilyzjuq|K`ofe~m1;TW!xTQp*oAw&GsKi}P|zmv
zclr6@w16fRlp<heQx@I^qjz2WgltB!(<zT3wuEK^-2=bXd`m!^LKW{hb4U}tSG$}y
zk3;C^Y}O@?6MxjLcGqC(xG@XyIxHzN<FjZTOO>koQ_-s4V9$FWeH;00lz%~7me7@b
zy8<{o%KfqA!D|hKBaLhR8B<%3c9e(P%+nYBq3+;S(O;QS>?E<jb*uxxL&Pru&~)Is
zr=N#!O`9=W(&akU>$Tt9>(|NBoOf7tbg{m1gAgbMYUO;5zHKqnl&vHd>M^o?F|YmR
z0GIK|C({^X9uPLB2sFtNNM?S@|AdiQkiyk+XK&>$DM5~q5W@nz6!-iXn{czYcsy+!
z@AafYpw~;)fNSokwpj4ZYAo1%uncIh$*UJKR$qCS*vEPB<(j;6G_ue^l+p+2x*&U=
zP`(CSC7Qb`9-42W3SZ=cqi<Tz-~ymStL)_-O+G-x-*!MRlp0&jre?nxWW?~V3RpfE
z`<x_esoPH%=bgymbecSu{I&cpG3J?Le3{DA<3n(T2e>bZJeh(1M<;61hJnKMK}x>Y
zzfx*oeK?G9gglwE%nj*aI9@y5SxsKxr_(5?<tBO08fQP5IVqOwMAn=JbnWTUsueo*
z;eOG!vU$c!xPV1uB|Ym$WSB9DIY7i6yf(gtpFjSNA4D(?B!igSvgxIlcyDWiM!sC3
zWH4fbvmls-Oe?<c36P_vGd&iq-$3{D{VzxOhYAjt#oI9izZzZ}84G9eJ7%}PS!{H4
zl#3;^Ry@qoH}21S*kum{(utRc`GMPI9L=uO+_+EPcsW+iQ)r*=6~O;r<w!^(mmW~Y
zasoM=7ckI$&H|k@y6k}5rde&zYT#fm-siG%I8&gscP2f)cJKoU!ZRjvS>DOK(PqLR
zMwGQ-;W8>{g+v+ew_IvA^$b&_YF@}cB=WMGF-{{4QqCS-^JFpfnYhJJ2$TBId0In0
z4Y;nouTh#_$J~eW^{Rg~VsYd%1KH!(kXHFdPz!SlrlgLNw+0aPx0c=L{B>pTsmOtj
zn`$>Uzrv|z*FAmems7qwpC}xS0VM>2A*#4(KC+qSHmhf~u;%7J2efs(Sc=!Da38hI
ziReLI3AIFKixatsz}G%6-4$2`)I2HS=%8=l@jPkt04{7sR=AdarKsa{7u2iU&Rt|4
z1~{53KI~Tp>O0+Gr)%fNnQ2|$mqNHUO-{L)_MRTWPv!C9Mf9vAOLkLS(D*N8ZQ9-t
zvE{al!Lr_u7H-leFWpdXa@TieAvPP`-vBbq7MW%2e`~S9MM25lJ}qu&`MZ%OP7g>P
z?dG3Xy4YHe6B=^8fvH)t1GOfAw-eQBjOoh1uG%j(sDO-tZkinrV(ycLODfknBhUVF
z^FYkk5RE~u6_}^{HI`^pVF_rHG^Wwk%y%fz0HZu<CP$d?_>eCSf)dOap4RHp)k*zp
zl5?q0#^3illF1SF0;&M}>leLK(I6+Z3dwFtIJ+D%zhf$L3$Jyk+!p7+nq%jKrKr@9
z%hNHc<tSG6dBpY>_bSoCZJJefwG{IbDCcmozKmD|<m5Y<`I6RqDlx+K8L3&5rCA88
z&1zdS`ccxsck#CVbK{@xL4<6ao>QC^bR;<kt77(xb(y^)1r!f=SKPnbEe@tj5=F&B
z%$Sw7I!Xbjchaarx4CQh)>U<qr+GdiMKAy~a*=}Bccs{7P@#h;!ZN_GR1p{MX-OjU
z{_Upli^Ip!D>1;h^`dMQ`YOCbve!{0PnF5#xBIm<r`XNHEAC#EU&CFYj%~>|a*#!B
zHS(~>yKBjboXYKzY>a_r%*v#pGb)x+RHj%wroqC?vH8K48SYkw%3cy*?Ue{6kfxo5
zg)I4ys>j59mQwr>B|*^hV<h)fp{o>i2{*WX*2ZPKbY5G6H?}!`E%MJxL197$Ep8?F
z&$Hey=F3BfB$HG8A908&Sq9)O<)&r7yUXeKs6`Xfv@{ptKAYLuE3m#f+xYRUJn(AK
z`RMjlWGPa1lP{J4skna|x#?#Mexk6Y-9lgW+iReI0+^*E6Td5Mpfizm*fPW3GVyk^
zEGO<(%h&ME@N_EqcPa&Z9|=?3T<p1p-|o;Ep2|Dl@0*cc07@~y4p}pXS7qSCdY)_4
z>cMvpD1-P+rQ`w7^Dqv<d5aVyOIgERp!|4}IwpA?213dleP2-k8G&!N<+9L1n1;ih
z-h+PSWQuq2`_^pektEt%_&qH-@67=-WC`T))0_MYf5?jGZhoBDbMtQ=`{UGd>aw}J
z{1lSshh>$q%v}}o$01MklHkvvEu*dYTw6hFUs_R4nf%QaoULq!VxIlU536N5?A`Zx
za+%QIO_^bAZ$oUOxr{*@2*Ti}CE(QT85y5MBTkZjcqzYF<-Fq!CT#WtRBb8-%9vg{
zUWTUehaA{9Sp2_tRsunW$Kze#{?jzK8iR`XNs4u$Bh}sK&l^tP?{fnDo2<^L$hqD{
zG(X-Qom6z*?vj#{F3bd1886d{L(hWS_g1_E26=;=V_csE^OebDK;rG^eWWXgPJ>t8
zKu66IVwjT!M=-Kl>Idae$H6YWXImM;Kc)ow?4ncCK*#s0)Q0?ITT1Nhcmm?kISSH^
zo@D{-V+Iqjxk#;=*zLP0xQX<>9L7uHF7f1W&N;*}7trmPdA7N4H&xYS6l|1tw)_lr
zhI@fu+!S({V0eo1(f&oV3)cvE(rPFJY)T?l4Y*w_yZ1}UF;jTd0UTW?PMBsP6$)2S
z@I-#Nebt3DiBqT3GW5FVDRwC+5qeqKov=EzbAId^{`mk*LxKX9p8wt5<A@(@)3V2x
zJ_^Y1iaW+0?z39(7g-X$ZY(!|Sh_^`3+R{X^;Rg%7%MoMwP$B3WHW4HB#QKmH^{0z
zNY*jN=Z1UmKANffHgqmL4<y!ZZBQc6q&K(0wTkIWv@?hm|3G;ONbroivWM%zb0BZa
z8nq|dMBh^+`i^Lz0gT<S7qb;yJro{<>)9>yLm4V>QfVAcaF5jjbml%A`#5#HHp0KQ
zX*FikA#$CjEt{<HCzUB9kAFDwkGq9Q2mIv0hfOBQOqu94<0r^!@=n8ojPn!L+x+1%
z(&XJt*HNbHb5+6ZGRo*e|MOnLr9km7gRv&^?PEZRQ&;ZIzt{-R_X+ITql<0hUUkHR
z(Ok%t43-*G+AO`J`6B#=KZbe8-c?h4guuYgR6KR7S8H<pzyna43^3KjF)u4#hU5cn
zw_Js)Y~Pf&iaeK6FD8iCXPZwzSUCW|&bv9D<=)wP7?;M3S!U>W?jyFEmn?vaER1fM
zMieolL$ZWD`5uK08Y~DD#bo+`PcT3kJ+F4NH`;EqXCIsCvwSMA!AdFO{v<hbtgR(E
z*`BuW*^GfGut*#C08mA%R1<fc7NKtR<;4HQZ@`J~$bq<f*{gMpf*K;dN!4oZqN&5s
zcwFevF7CdxJiYctAHw-;NoZ`%GFv*j({XpD@wu7q7cjXv=7ti{`vD^c2U4j!fXR_w
zzKj(zP7x!Vnr!KBmb1S3LG)FC)b-Y5)obtPo>7a1<<OE<&c5;W)K_ls;c#uzxs)$w
zvb`a$NPja1m)Gj<g)v*D6=i?U2>45Y1BiXA#np`2!mPlZoiMrLi6;IDp1H_CR$t<P
z#{UPx9+K1|6CWun{(<gXh0(DDcH8or$I?kyg=I6J@oRtRdC~XF8Wmk0cKMEQYruoD
zFZ-<YyH6_vXiA)Ea<~<FkL{0yem73XG*PFN!e;6(c46olJQ56Bz#%@Wm&#$b8!wH~
zKq=xjX0y@~b7ki~AQw$!{Rq8OYa~(?BxorW%%_W;h3*WcECm+m1^{hbc$an$K+=N4
z%;{juIKjD|H-9J}zXSZ7e@S$2dfpkcvvIE!Ah%;#0MsJ;q@t(6@RZxeL?3_-0O(fN
zg@<AuE6e3FWJZ%ZMP}ngzcWnt*o<UYJPkPx*4^Tn+|&q1t_E6^^(2!qaYE7owjg4y
zeX}A45QgrH{p<)UW+^G5T@j#hvnjJ;V*N0Lq(#m$fqz2m%tml0NmEKA7_$PvQ48i9
zE8!5%SVBzRkiwfV?Lk?XA7_kN9Hv1h72vkg<1qLqWY$o|@bii;-VcN<n|zeP$fd~r
zAlNm4ujUc5e<7yOAOa_$5y@s9%>I<;FczF99xGz+xalfnIS~I>KJ}D46n0ww4y04A
zr{T2#ex%dJfJwIlV^0Ot$oZe`E46#+t7e9dnY62)Orui-=H&HAg6QUG_6WOKGKD6R
zlZ7-WPt6ZU`JbU<4;%wLv1)bV>ksY(Tahfp*kZ0`wn)$8!#)T+cm(8r5xwEve^kR$
zUI#YMM$L4b-y|mk^G1ZX*~U{(%a=NlXOhZLMjxeQdu7UJJ1#Hz2HdX675sSFF>JWD
zCDI8v$vF3ho3}~d`bBPkj$PhNDzVqEuKEi!+-ybYkIJu#Y^^}}=U`&0$%<MLLG0_s
zH0X13U$UQ{f?U1WFQJT;f55;q%`S$wB0l4xpu)WTx6K_X_IY;<a0pTWCP?1euxvi6
zXob_b3aXRU)?c}eUoU{?oFNo&9eIDT4K{<HK}0|7Ki<p@#z0H)(%TIU31?*&KJCpS
z_-2S)3NpE&<R8WLn6EOuM#}oQE;|(GQyNFuawD_Akb|Z$zY_V`ty6n|d<wYFAFHhm
zuU9+9+cdNnK#L~jJFzLuj~)vJ!3Rqa9^qVkV{UFM`dH6U7-gMKMpDr`+j|L112zb8
zJ^QymDiok^1K+D}g#(FR(`-wun#3Wt+xQ_K!q?W#5mE(I$T<&9t2E5m-#y3PMHjHq
z@<^QHiM%pf2a3{PhjNNh%T=(>$J`-SxM14@lAwBAt=lZME7b(mW>8LxC)TPDG%y8=
z{~T_oJB6o>LF8P<jfj!N`Cv3N5@=}IdI0Wt%YLr+J%mFe0z0D2kP>9o>?-A#=?A#i
z8{Vr1CP25~J@)A+e>t|Ii)q`ljgpTrBf^Y(!I%$|e5=7j-O#{YWSuLZ<vn~x0=nK!
zIksKHBa)bfM7E;S?2t*lJ0&sM==iBt5@4~30PN~G$B3QKm5c~VFk}HG3ywK=6ugID
zU+g>M+SZrFa)o59#ODVT_)+3cc8BWaP0$#tyLS<VcmF&sDF<#uFvU653*oT>HQwc!
zEZ^0n?jBOeFXv-pN+Z80k7_0062-Xq^aM2R)OCrhx$)3oBT^d;$*;0yKI=aN{DJT>
z=g(fVwC{2Hkh(8<CLA%BT>aQn_G;Oe)?@{4t}lkz`<Hbb3@X4DIu*dZ*vRnAmih|t
z%|QJb@;3W=_y`#BKJd=HvGrz$-x^onl$tU3ODf~8Ef0M%m@6D10c-1PEyrQ8rj8>2
zQnhtbh`BN7@H><I)c<4sM^4DSMJwghj9Sj9ZwgyhFk$^tSBiwV8szjoBnnh8nGkaO
zO!X{qFF>LR4bU=zVzj$aC6Xp;!XfPJk#!9_U4!O1&Bcv_e^j}jqOg0(G6QMIz7?dj
zx9{g)s<?Ks-hVIS7)<=!RDtXTZ9e^`;r<0x2uw+2&5f@)u(xUiY8-gCPT%!h;4;*%
zku8IXhAT|IguSq(=4QM%pYW12XT_tCtpDi|A|9YU=r!7W6dS>TI0U*}xT8*57N$Nh
z$^?nCQzrC8?o_^jOEa;Y_VwkTDduU`4TsT5=(Iapui#u=06OfF!=J&4mJUv0&2t|9
z0+c1fC0_Iw%UgzOph|kKwv;U72*@ljd-|KUy_8WKfSwk28<tA}DwkU^k338rxSQ;V
zvo4o#>-*BdaHijj^`yzmHBPkMaeqU8)~jXk>MTxoD6+%eFuf-A^Ngr*dVfM(8%pSU
z_7iBmrH?D;*}1+~pA$R7<xkcapXRn~Ke}6^Uklhdf`=V6Dr{hjfSh!~Kq;#DPvND)
zxs(A=&ixLTqTih?xZb56hjp#LyMgT2Jw-IRy_!Am2iy)@yqbJ#Ek`_R8+uz6lbJWT
zjNrzEj+9%KbttVOLhnzPXpwav3JsEH+~P!qdbjhJI=JWT!!7t<g)I^A0<Gki$2Ny?
z@<#yVBK2<OqQVc{e^|f!dMS>m>(PH`%(v_>Fk4(<`wX$o;ifyP9&p=#?6+hX#9?%v
zCiwu(We7%iQHOhjZkiNrCIO;-tbNM)ExOxgIh?{1L4QbuB+eP>t6L|fxl9fzZ-)7T
z4E`yAT5E_f<wyT;Oz`?1k2J>5z&!c=9uPC-@RMD#aP4lhMtg!MA=@LN^WR$oFN@7r
zy`J?_ez-ro>U9-IUj-e65MEpgIP%Z_pql6~qL3mJpw$YtMU#JT0Yf{AM7f4+)3JVd
zv2FGdE7p^_i&(Vii_8bZ<9_yh4UP|brIIDkU+0&|JMBK?1f4=VT>XcmKGQzAEHIqQ
zgsm%glc}#67@RbUWcF?W#aXq*r!6ZBCUQNNfe8csJS-)Ta!t@*cnI`d$Wa9X-SX<Y
zd@%@md~t|PkSvzvZsATzn}qX3?7RlPR`U!X9OEMoT=9x?wHuh6`Vi9Ztfyab>WsJ}
zHBKXgyg`ACz2)=L%0(Hf8lRI*fIKcRfMrbgJ0Uz?<_K&?mIFQdk$ekR2dhJ9K?;t;
zGJUlnPLyq9Nqe<pdkF^sAhH`ENqm)3=CiO?v@4s7h5U}L*yU}TAx){V@40NRjCPCt
zI9(v6zldgHJ<JZyYu}?nN*&9mhdH$I9<kd`h1nW%sX+<Ir4jX~2tSi^-kbQko#o~$
zY0z8-tiOl-GPDQ)QZf%KyM-D?<M<&pWm1!ycYa?UE+r#=rtjw?jJ?@gQA~3aJ)GJj
zYGh%l2}5<}76Ac4d)`!ELa0<THeJ9H`X>lFaC0R`iP0ku+#oO7pYk$a`8w@<b~}_&
z_ZNS-v(&F(3HOcc$#ff(>2coNeq&&7VcuMrIJOp`rF`u+cs6wtv(&bA!?^`@bIA5Y
z4PksT3b$WyQ-H_{tfJg1S$3oj3(8bUoOK~1$U>DL1=!oBd;wtn$+&Xh`jcG-dmU90
z$8#@*iokdGgW>j%^*`?IXq4!~UJNFl+_@bkmHILiCdAtEPh3SYwBSC+O+M(LZsIq5
zRr79)n?!2fgst`A-ca#UtZ*-rR6WiSpW($N>u&TJQ%Uq1ij{9ZJ(twan@-%w$sHTN
z3b1oWiDT;tA8AnBO_9hJ*Fo<_Y?SYI5q4l7ElCwuweR+c_)}u!VM#3aiccD%;HV>4
zJ}iplOlQvE-NK$LaN9-7Fmz2;+^AIU&~RnwQH+-zE>wcbRx&x5#b%;~R!(cD|LM1|
zW2AnjtTGFir6dvI>(7FX$v$@#Cv=NhqjkR{IVi8t0K5Hg!&-9P>tWVPkE@kGcxEyU
z3Z!{VBP}<rY;TdXh%`hZMRZ)Jg%t++rMo_y_%4fF{LD8MGrowdRJ<K63x?L2$=7#<
z6Kf79^^0k0DP;U<5E%UQVa;z9ESpfO$cD&t;6jZ-zm#JevF*vB6BbTjoXnGHX@krL
zA~i)u1Q`~ZgMtKyWS@cBinn}7TOT-Nzit@ydClG})nq{+S><-uD(#!1F5y5+^jYjz
zD-3YV*KUFSk)SwrL^cwDRC|HjAvNF3QpX7O&yJ~g&GjNnYT>YVil4}^XX&QWw99lX
z(&-$hTJKYz?;aZO0u3jj@s#IbH#=*t=SzAX5Yvi7-1<1JBdAYgU4c90)J_f<y`#OU
zKeOI`X?Ao{eH*dEdFi=@zCJ`?Zxg`IXkC5eb~#rI$fc@Ug(+r*W;Puc5b(|oMcTrw
z;6l4HZH6s0f;nf;iy51X*`#9b7UII!8FesgW#5r9Ws&Q4L?4KQQcAT&4W!fRFU;q@
zXUZ`UzMs5iAtL&7LLSRAst*^PcQz_iE@G<Ca1`<3bM|gw@G><rYL%ZZJjL^p7Wk0J
zElUsJ_Lfv$|2DS99|(<B3vu1M4GbABB9G59Dc>*@ZVrNdGS2dF)>h(qfWBtCrYMJ%
z>*omCElMpvN>f#{p?=ECGjcH`eV~F1SREYBWJO>ByMyPV|7^uo?A#1qBVBB~2;si)
z67eo>%B2cn{%l6Hi0{IIV7)FRtE7o`e&biPS(orpgShpv>T<}m)1MGm><|oFye>^W
z=1padimj7&L_^)vh$vz~g=P+idqv@qm&{Ul?_j995St;iH*#K!^tkSZ5c>de|K-;r
z=(PtWn<*&+BGe^@%d%!WvY|YR+7#dlwg!gm5Vxlu*HQH4(7oj|K<C_&D6PS<hlCQe
z*rpVuDrPBS^7(4~^?v~zYG>^?z5WKNMDIMO6*HN>BF*VDYCJ#Uj>$UqHr2p@NH-u(
z0k?fFVJt_b2I~-s_JR0r`QDG`eht>YwPs4R!XGPqNAvQ3G56L1QMOy#w*o2%l2Rfe
zEg&7zpdx~#bW1lwcZak{cPNc?cXxMp!_eJ)=iK|g-Fv^!^Syt+|Dg;sb6wY2Ypvt>
ztr@IC^R=~O7cqED_%REV*#`SiE(Z0-MV~t^h-^sdv@}UWheAZ+C90+}Uhg{1`lrOI
z@9){G@+o{*N#0|Pu1$3n&hm9y&rqRqg{V^V?(uIZMw+=s)6Y3^-d#_xg~UaHLmO^G
zpmfLcGJ4!|OW7(A&|Qk9w0hD!;b23&3CePWm3eT))?N0)RN>#QMTF<!n*54}SLbua
z7$HvauV(!9lUO6trp4C{qxFpwrAgvE5Kb0j%3`q0eSWZZgigS9BBQ6BYdT{qkEln%
zPYz474^CgmiM^;WUvN2}R#G2C|FRM?<7P-wpVN@|R!sU@n30n8VSA6yF*C(?Lonrb
z9PgT{?e<%CFIPKoC0{k%AYoB{GhETXkapTi$6ZmF(dCQ6pGE0e<1_UDam!!v=pcdt
zbpj}fVbff8@@*tonFMjzN!{!b+Kft{!M_asL2qr3U5&=Vhk1)8#BqRhdAJ<3%?EYG
zn&bN-e(7TO>__W|AY6&gkU<ZD?tPBtScdt^qb<GfxbnanXj*IMs_h?Y2c$!~tSQfk
zvdu~@zd!QuY)VdeH9SoAXvOXxm_VNj)9b4_a~StOoad}1{(zsWwj<)k-At#>X>v?p
zf6JQACJ7<N{fsG1Parr}Krn&MYk!gYYSzJq3DYGfCeD@fu9l(HydTd#5beUIsgm7b
zb7R_KepI?+w?jW@;rj&cIpTy~#AQ)%YI#RN%WHRILWs_biz<cG{tl2|*NS^Y6p=>E
z_*KA}Y26Erudwb2_-ZM*<9LwJWexHC8!7^HC5k;aNHpOplhNf;lhnGjigB7<cq~^x
zK~0gIUNES(ped@NRg?SeP$uQk*CL*~{&LRuRm(XNEv}>6x44g|3+K|0AJ|PztG!iE
zsSp1_o19IMHKY-3lC;r4(3fQF-X2K3LJ+g@<j{I65*?Cm@mGW}(GYl8d$XoG+vDo+
z*9lUJNg;C8X9=XOo>kv#e96(u`3?C+3|C7FqT69cTMS|?=d`!9mckk=ijgV<$YD^e
z7B0SzH|TKmYB{jtOpr(z_1=sxaXa7Y`3wVl`)>_IB90sB<cpPcAt=xSBK=i{UE*Q!
zdMwmI_=5Ke%1EdSjGS}y$4%J$p2Q61wJArMtNX-~IvZ^mI5-^dud?{n*%Q_rlk-*o
zCRRL+ZUn`740)oT@DD)&Q`?mx3`^qeD-@ykaTn4BxAsPa+_u(j-ZG8>7r{T5zLB%I
zW)XRZQ+xOc(r$`)J%|=9T(eizW?e>t|E8mbDDK?*b_Q53-$Mw;nHs~8;Tvm)D56y{
zpZ-Gp#M*eZ{upbGqt@m6?2eLq0o2Q4?BMtx?o;9s=Sge+Kp)MoTz<-((#<xZx}yJP
zh({|N+5dy{RhGFVD+-xBOH7YpW+KksKG1X)!aJ)2|6%CHu$%CQ2LtWSKOYTn_d7(`
zM~hFzt}ZDPqR(n<-Oag9B*s2ZW_`2&9S=?q6h#8kg<hU$-?dSh^A;bd+Ns;RzThZ~
zX`mmgg-Un0*bR$NVSoPK*m2tLvdFWzj8$d+EJ1-MhG~zmJ>t{4+6xVd8|MAaegnl{
zVhfAtHX&84KIX($XqA<jeQ-n5OzqGG2;NGJDj7EKb7!11n{&(!+U;1IUZxJ6S*#`t
zF}pa1bNlMkK6W(`hwFX;>1Wgl8^FS=Bg<QVsD_CD;#q1t+R|lX1#?4}bOYK>Vd>u5
zk>gq9svT1*7CL$Vs(OE^Njk2FGsO=qw6S5nx99M&2K;_MdD0G09qw<@nu%qH_ltxx
zV~A&gZ;*<n{d?{<55cF>{d!)wrUM`EtvUD!$wv5T{25=A*Yihhw$;Njkd4cwimU?V
zvT1A#&b1CLpq~`9s}o`83;+Fuf4LqpsB%Z0X9fAiTl24jmh*2^=dxv}V1AeBHJ}5W
zvEG~Iv`6B3m8%iM7^CUt9Kl2#J5$lXn|OJlO&92rA;XXkit!*C?L>pKw^@3$;^Z+b
zjyFJ7eRL?;zOQ=o;Aw8iKIOJu#e0L6z%`iMlPKTWUf4f3oBBYo>j90m^jZs1k=HzK
zYfBoGvH8dGV5|0sKV4UM9Z+-kfr^K&j|9RbP>|4X@*bNM(=pAU|J*v;_RauRi|I2i
zd`#;@;TR9X)b||(`v~<N=rfu-)dMYod(qxVDeBHYD6#4`oA+9Y=NZrs>>&cPf;$54
z>t6Vu*#&&Xe=PCW1|A43Cy?kBY20nrwH_XX2B!pFPIR4Yjl3VIEa~U!X%C_zUi;CZ
zMpk=H{*)>-H>ZBE*~W`XJLh~xXDw1k#itRg@M9n8-ByGQFFL=KE=sM?dwA6<`NNyF
zq@^qE2aI-o6w}1oEF`1h_dpy_KL5);ZmI8^qGw}F_7a72(<9tTDBM7K$pGI>lJ<+o
zl_9rw*VG~97q=F~X26v9Z6oryP`Gtq-I>Mq;kB@P#?VG_4}FQv%H0S1w5E2ofy2|U
zRZ@G}N#Z;*Z*e9nvDY*u-iIF>tj2dh5VfQd%;o~>O+k=zKl#Jxt^Wbf>huwz$uGr7
zYc-|$6?%64a;>_a4l5=VS|rHcqqDyK2MurbVgsoI21P=!c%oR?9Cc6j=4SL-v}26}
zHrN(sz^WI+dp|8wnyd<n6PG(ZXLd{&(K^tPy6Eu8pQfZzpAeqDlS=P#l&v_m7H~W2
zLT}OFIs;1Y#}>Kj;&CUPWE1wCA1HW0Ml@AkIG_7$a)oqa!J>mO6e^RK#x0n0RmE(7
zDHatK!f<DAnC?@kG^o`ZNI{I7Pq7fWCK(>Nl^GZ}V4EzhYY6fOu+rHQmOao<>@3pz
zy~L|ybCw*tAX_EtL%UolKfeBy`-LxuX<6%NgTNED!69}MR$=26QHxfsessJ+VDqj}
zq$6ts#9o*Ip*MG=pHP8FH*u#tG~5oc_0<QY4^({A;r_{fX)ten(Gi9_1}4TEbWZfw
zmsaf-Lydt78nv$^ND;^oWuEjWbNjj~*A6ga1l`v9uVd7rs~!xldA(%n#%)#Q`|i~0
zhha9v81{DJ$uC4VZ?Q#&d3yy5^}@p$%r`9$283%f4xYnG9VM6(n32g_SN!?|>>CLV
z^3zkB>`An#P4H-z6TI<^Pw68(XPzWY+oucTYw^yH*>jRbTx!GpNHXq5vXs6|9Y0k6
zoU6eT#i@`$b+`QNkbhg<U$Wx})R=V$gwcbt23}_-XaS23ZY1j#R}xZ$4ah6ZR1c*9
z14~E@kDswBl+nN9T~!E%E2sP(Z_qd77j?^h5P?*Sc8+R$GM(ev6&}*bn#vq{!e^TG
z$NnlB!-h(*JTBu41P%KopP(cWzd*!8Jg);?V~RELO_bViO#KAU-qbHCZFvLrO|gUP
zhQr-HU}2oSNO>69V81dgdd3UQ92l!pO&X{-al>^%-RjSDV#riU8uk~c$Lg%zqFM;~
zblUU!As?gRs|=MF!~|P+7ZGWgYefTLqY8gZsYQJs5RV}eA~L$Z9R1+5lFB~xl>?E9
z^=UP|M?Oj`({jv}n(-Wa2BL5OjYGvAu(6a9ryugND`uRd6p0>wI_YERNTzzGl}5a`
z*a(k?!dra9jM>++1;`TRaF#bkAJ+tXE$eh|c1HsRZ4YRI`Pm&C7(J_w!vYp0IK4jz
zeEQA>Vccjr2jw^Mw}rYq(HGTKYgyLzubJL{96cnPHm^^1y)snrPAt9yf|9ZgW_8B3
zi?@3DLOhRI*p7}L4%qz2z6jl_9~MEw)q0S59lbgKNnb<S@GXZulaR$n^Yv*_omm+)
zo&)z&gW!febe_W_TbzbDP+R)k5kbGf`r`og1*E^_2Gmf+FL?YKP`7-(p|6|?NtR~O
zcOG5`D6bQxExp=S*CIF#(BJCr+PIz^8xrR{??<G-wGlgkYh3JRdk&dRJuxw#owM!!
zMU_g7(`Kr@oy_kxFBxu<bQ`(Gi%M)i6eA3;EZZ5IbrrVvE0DgpA$(Q;L1CC;dF>Px
zFTw$4Fr?6fVrG+bsh2<b?(%R$P5H>ev~q!}B8mARAYG7lo_h>-pCR=7upQ6h<<t%R
z)p-iPq(c{7q7$c*t0|VpJ5s5iLV<Z<Ak~?cDy{ZMC@=cq>((#@MYl#=EXL=<mn|~b
zEi-;-pFaq0@cJ`;eA!FQ)HfDv))e7G^-|5xO4Hr~GZ_nwx%*VxZ2i}bNw>h)c9p<E
z_?IkVS-3>x)`8YZ9`^k_z_%@8Cx{2n1Glw=Nj$-5*#4D_$kB`u4<RMX!{$q5=&mgf
z;o+whvRGpuC>ddk3VspXE9}sj`xHs4hT$~I#?vm|mdjVpPduqN{Glio1O(i+Ce8M@
zvsQhcM6&jJdX{FUO(J&|dvm8;Y<Tt@>IWiWWuqJx#4RWmUfQ-cHK00es`y~9kHD<*
zl_u}eB_H4AYIsX!)QQBWRbGEw+5wOjvCl`^)2I$#L0NwJj_b**KGg)Z7aTW*#7IBa
zwjQ@i_tzkM9Ds30ae9$y@!fs}uMV{Us9F+k?;;~OHX?qY@IV|;bx7waxOsV0E}kv&
zEvbLU{T#mbrq6Wk_OHcTjS?iiwxTkvNq-C=1e`zX+L+EU`y<AL(mmuWy$Iw$V9;V1
zHvNIdQvL8)Fsbvva)lwf{mIu~S8JC1u@OFqpXjEuq}!A2myu|dG2%n>OS}a>;SiLP
zs|Wb;#0C_`zSJ)+^_#iTHL|Cn#I$C9^LZ;3$=rps@HjfyVxX!isJJVc8f{}fq$Yt{
z%^{aztArNR-CG55aS){6Ow~n8q#|n3!c9+`us+6=IrAg?UZ{4Du@#1&6gA7>jcgD6
zW#Z*tP$Ae+o->m^NKp22DnE57vcb9J$n{M3x+Vs-Lu_x&x*O1hI_-d{_xKhi+x5>y
zzD7cKdJZ9{tN*Rh-3$E+$LD^iW5tAQb!kzDx;**{sEBn0-4&xxxCF#(JQqP3CR#`Y
zs)v&_!%B4I+hNO`N?W@S%%`Lb2Cx{?rh0!w%y7XQpi|C&qyMGj)nDNp2^^I1VeMFV
zG418Fdz{&i{GNkpa~`h8z?slY+GwyR@hN@Xn+%`LNLG{ZL((X_!rbcds<~`199fD}
zRii{qPCN_v+E(AbJo;k?_?L=4!utU!|Dhnp^si>Qh_szDHio%$|8#t8Op4@?*pG~l
z+sMcfy~>%)Wes1vLYoy3qt7=o+=HkwsMNC5z&*X3QW!tC)YFMnMi32wxe<8FX_Wpd
z*9#y#{Vu?VCMsvnD5v?~ie!&6K<X<y%CeUFa|i#IAEchbl-h8z*suS-0sqTu3T=TA
zq1rY{f$)D575{A$5O|Fagwao><kJ4y@Bg@@|MQ2&X%PX>?P&*f8`=NmWBzdoqzeG4
z_G<yT(ErP8jH!Sw+<3!bO#1)0(SLuNzdkhr4!kJ+ft=8PI{*Lk1>oo0MA!&O+>jHd
z`2W8F|4-he6wB8U*`$BgULa>5*Mh^QRbUgZNz@53KdZRczq`BbD7!GQG5Fp{>Eaki
zW5dph+#$wn#edtK2jnP!6!7DmVAM`j$>hW1{G&eaj1Wi{jqJ6ZG1XTtHP9>p>XgCS
z^LeLOoRaah0$Eeu5rd7SGyAApHWkktJH6jyW(G9!*=F)|>R+Soc^78BT$G$v+c9JR
zmSc+?*O2ryT1u86^!R6J2p}N>VevyA-M@X3fZJAsB%7x^21uXtz%kY?n_Efw<qLo$
zjqkxv4C#uem@Wv5r{}QsdM1C27hzBjwc+gkhc*ElCO;a$V_e^_lJ5I+QQe^eFgbdG
zdYzW{sAaB%`mW<zahu*=+JH$Sjzn^Vf{l#spBKY^NGXLG5=@(EH2%3WK-ahEvt9cI
zL^u!@tyaX5B5h%^eOYb!HyTFuZl~>@JOw$W|6J3*hFpX@f?UYgNE*4nuyO4K9LxiJ
z*9oya4#gF0*Hb{m*$8-7N$a4H!VdogwYNS6uDc4neLPH;&wrm_3MA2W?nd<)Irfw=
zj({z!L=DmFPsoO9KTE>w%X>B<?Eioouqy=w(G}~RtCR}AdR&5lr59#^h6bfn=TAEZ
zmot{JFVs&i4P4(Lm+16E+Quic8e+3293@L`k{f!59a#F>YtERlJqwXa>WK{SI&+pJ
zp2S_5o-_Ye$Y*3}aO~)fWn|3=3by0zmCctQp}WvE`EhSI^7Wc1;|yoFF9*A)S3{;F
zj{jqWe$<-;tndzvtm65P8BM6Xy^qDqndCTfi6ahul}={TNEWX3+W3)g)0mE1edoxt
zXxW{1gv<8`SdERh%eJ(7l*<kBW3T5n^v1K!dx3L2h+9Gd5#Cml?FB1Kye;2&UirwS
z%*S}25z5xwp0;;BB<+wydP1>2ocP!meQ|hE(RX}3z4yxmEN&MQp*4%DqtN;qrH0+{
z3?r{<_P&5i<i2HMHzq6JAe5tl@4XxH^0~@wqw{%nQ|2A)8Pk-{dczD^dUw$H*xcMW
z+9>>EF`dfJ@@Ha|XDXQGwoP?t@)Snskk5)PG7a_aIw5^w8g3yX#0^sS?(~95FUoIx
z00k)rQe8BaHS%51VJ1edCn~;y>fYqe-t>o3)dg{U**cE6cwUNGlSnai>iipb1<P2x
znaN%3(QhS2Bj-kau^Y2ex__@ch8S6czuM$~kBC;Gl5_18s+SuR`*uH(U8v8DzQ`hA
z&4PeT6Q4@|_M*>T>B!ZK$Hj^>yTF*vUS>SOet&Zu!g<*GOWGZIH^vDFXJ1-&zAB#v
zrgSerHH^#;d70Q+wsh5r@f4d3&OsP<R&!9ubj}%s8BBO(qu;3LB>~rkbB=QMgl>t8
z1RKG=r9siH*!3n7i}r<a+c;$Ska47RrmJndWVt}2Jytp1l%Qm{COV(>*zF~DKGb~8
z$>V{_YrKQ)C$!33KZhv<6caCYC_Fx0C8}Uc7*|Yonao|s2`JL-al6~Sx&DPJ{mr~~
zHydqATxPxs0KR@10(9BbeQ$wRa?y-t`1igSEQ4YW8}rs-8Hsvzc^n+^8jd;HwM~wp
z4pFyE9b!Dt>KIcw=mgW7{pwlST<JG@bq$PXF@e1~={+}c8N0}K(}LMJ!T0mB*)lUv
zvzd@QeKf9b2YN3J?0b#QCbpN1wa42SdhPGtut0Z1Rup`DcCQw+X=L+taGW{E>EhWs
zNDA9$`1vI{!WpXO^5-u);l*0spBEh;`-U);apOQxV)(((JKbC4L!BSe{r7(L1IdFe
zl~yOr_>FkrVyrQ(52=-!P-L|GgH%p!Rork&@!}B#krMShD4DUfLvj&NGCy8gJ7_^e
zu0h#wNk2~UBruho0m+Sy!IY+~Z9wMoxOr80FoC4k6v1@HFjATAm%M8CEha#pCMl!;
z#h!gid~j@jg$1%#OtsD)<guXT5JZUAPjTYPyGE>yrs&t#vgv2yJ!B9>ps`!QxIXVq
zHmOR3*zD|PbUT)5pJ9~^k{>XZX&C`|rp_LU6G{(mUx^5<EVW~>I;(c^sbZUPBtKPu
zp6ZoduVeY8r^V<UvzkJxlJ>}Q`|*1w>_hAMOpQlG85(hJa3RvU!;jelv1e`qM&2{o
zTqYmGF^n_mojJYl)zGGVy!0{(H@!gdry^g4)-Ah=64Th;eu?yYvPQsJ+gW=Du@P^m
znsNp<O#w!E^v#*CU}wVZ9+hpi;~Gu8bvPfd`0Xv%%%#pf`j5nzYUe#TXi>HGdc%C_
ze4~XczF+o^ep8l(-u#A!?>mcKwQ`o=5Z+12oPYTW{@U3-1vbW2#FvH@%=rVgdSXh=
zeR~GrhOGPGs`qv^^(XPp)B;SCVDvq&N%Xx<6E_>x;!(;EarUX!aZfA1t*b)369#cO
zn6wbs+Y7VtU)}sJs263~s7?f8m%3dRyr+NF9mX76tDk)kW`J|}@O3XufDz@6v3jJU
zq0nu*jNp7yX+4=gGd4<i&cFy#mD<N~w{_gNz~ajI#_@Jy)U?i5so`)OsVAP}5}D<4
zjZHl&-j;Wsb^aC++SGkAA(`~-*sOj(cIjqRFeEOPYyl-Ye#aqbX#n_|*rBd*mxre_
z&8E^UavWL4EziX4&$LQ*3iw;d%PMAH$1oWAWg<5$1iNMS%ri#jj57vixarrst$kyZ
zH0))qS!^ww#2;wDx3@<{jgA#`HnBH2kFl|?E10kRspcEQwRB>vRj!aFJ2W~~;-y4r
zohqs4{V3*aFz$R!4>!pGo%*$#m+hOpx6q>k)su=-<;2TrffDC_=Za|w+B}VsQimH#
zsLS-hU|rwNxo@jUh(=cJ(qs9PM9Yy>y&-Sn=DsoZe8@RL{(&C4%%Lg;-NTRgc|?`d
z0YDkNqp4SWQLa>{l^*@R<Ub}_0&KrUD;g$pF3bvyuBdJ;fyoA!B<0^CAdUe*bZAFU
znuw4Zl8wvr{>vWUxc=mjCnM|SG%WgeNoaC3eq6nAr@m7rC4F~mXTlQOwJ<d8-dtd{
z3kdRL^bVKXIA1IHfOBG+<O3#bm79(TDXCkh_7EYc-mS@_F?&gwn!^P*{yLYC27?T@
zBUSW`6Go`dbjqzOlc!PWq+#z-8?sib?9&*&lSc$S*i9vS?1{Z0lvODK6<ZgX^o%|C
z^hcsLkumq$mmFbv3r5IZetsDItm<Mm(9GGREb)~)xg4drz8AGZE6)xs`WG3N6*}m`
z^{!S5T63?p8%b!hii@Y)1--NucehR2nj1{1A5`o}D$pyN)Euq|1q{Z17k66p!DEW#
zX>}HVes0s$33<m9SxSpT$67K^X!3%vz5v^jW4f;HbXzz6kH=F0VfYpBVH1k#M(6<u
zCL^HqIV`eDH;E;@9U@sw*B<+=zyV{j0y-{p!`;>I%iHr|EJ)T0`;3Wp20%0D^(v0k
z(Iz@Ff3XBy%-);J<GxZuA!7Nh)%UX|z{%LC?L+w7`z98TC!PahwmqJw?Rw{sV?mVJ
z)jbLPQ_X!SAH&e1c26JLT`aluH7XZsR25s-GLA<=$r7PUD<Mzfvt`_hn8Nk@;vyw*
z(vc8R2(JteUdEf@N#BO>2e@tO!~0`Q{g$J}M5l3@lPG!p*#R8zn5haK$Kn<eB6|WJ
zqtI;QXsj-6jkk4tvT@Q9$iZ%El&@#P8`T(TkAKFo&@Y=UO*<>Ad&@O`9f5tk=}N45
z>~_J7Zhl^>MMp}{B!@M1ll&1IO9m_b4fK?)g3icUtAR!1mSlI1AsM%jd|m3mwN#Li
z1iR>?zeBaj*=%W#;#o(sEeSP$%P_vND>P?xZgAmwze28hpUJ4j6PY{<c$qTw#K!ot
zfH`^XV@l&;1h3X_nopX`jP>xWX-1mT5IxW#R{Z#ekL1P`AhXo2B~kxA`;)+o*+fLG
zDIG*m{R!u@sg3oYzT@`4>raLQ<u_jf%R?1Veb=cP>s_C_b<qRo7RP$|j2RjSjN_|U
z_mv#x{fT24;GtFB*V`O-1o*H?!Gu|^43te)`-4UAr6-$Vu0Wt12ZI<4==n?n_tc}G
zj{~-`N|<_lz~8l4Zw@xeBB@&@VyHZ~*n`1d-EOh3f36HO<|z~;RjtSUh8HZ!*X`s&
z;5|~e>MKL?SpoUnVaG^LN$Dd^#5V<X?2Uj{Txj5Pe&0?2VN@|G@_BRbjU~Yf04W($
zpxD%Wi?gO-lH_ux#9}hZ$e_Qob2fwfOtp~-a8<|6=t`kpR<JxNzE%?{4fje+dr0!v
zy~>sE-aBg3)|t@h(@^?okl%YfmnOP_5yMR3=xxB@uLo}7Q$KfxEUrUL!O>Wi4Xv>1
zQ?qK5rI#E8ENbNk3-lLFke5W6h$U>>9M4ARVmVk6&h?}EHAWO=Qq95{%X5<3`xx$4
z^f}_~Mz-VGP@yLSqYKTK)_Qsk{G+1_4JFue_?7<rk5iOyMp#)^syKF8l{kAga3Hhl
zYd(lsi**dumL@@?w>1dwY=tUl9F;jIlUg&sPVFc{mNwsMP0%M+QL1{)EEB&U`*=EQ
z^dDe*k~bh`;}x?%;{5$Gh;%z1D{UB`oPtlh&CToTdab4yP<F*h0+Mja?5j-e<#vI|
z6J~Q<uZHGx{FcwVyif#2Qh3etk6w00wXf0$%^M#IUX8&ZsE6?^${GDYE^UX0JUoDc
zRlUx4GU&AqB)@?tiWK)i35bc<4ZT#_{mNp$0ya_8^=4!*X`MQ4GR<VZju@ErfHFiS
zB^Q)}*wNvmA6XbasTs4~o-EP0XbtQme>cl_ds6Sw$lD<nQ<%XWr}3l57xDW8|H}=A
zg#xr~Ctz`i)$`b}thJc0+{<scbF>0!qYg;FfrDBd->}DMrG<9Mgu0sPFz~;=s{O92
zURwrarl#AYQ=N-!oRIn2#v11gm_hda&v@u%Cs|10#C)`dt1e&<aYyqe41X<Ja0QA4
zU=?X~w5tx@+G$DG?Jh~R+TewUtc&-410dkfULjCUtMwQRvX3zfu7P)o8!uosPqCh;
z8AS$zJ>A+yw~Hm;LZ;^3R6uslFrJ_n^y;8F26rfyUX5$UIAUXJb4Vi|s6uDkC2i)8
z{dISfp0Ng*l!*7F?C|#i)5cdIXu$;zWaDd-SG90IISp<UtF41G@tI7VPBw{xI@L$y
znohQDvP{hZ6jvQRU~SI4P7f?$-F}S?4cSai$E{;Ar}y-4(Z(-Ke|vf4ConZW-^v+P
z9MN@N8{Rx1Lcv+fwG8mc#`G_ycXN=SolxeVz3oo<>_T}q!%`6MvmnMSF0p5t!=7tg
zf_ZIyE3XolXI9rqcc+<ixs-G5>5(vQk9)mV(9Jk+klNxH^Z3cGoa_hlXLNBFsn0kH
zmkWe!=f3UE;BBPGeNwc$*0|HZN-Cuv$f5W=Yx0)D#G|B}ptU};`t(1TivpxzykdpE
z_B!>m1>`G3>I_l==c}#4l+QOjFw&9oz&mf8<$K^r?*Sae-{ta%czzKQV(HLZV9qpo
z6apB%6nGDQhhx*Bacv6Bu<^%I>E*QSj2fN;s|oTckfox1NbJf0&OY1cW(eHdevJ+Q
zc8EiZy8q?wU^MkRK;V^3S#+Gi91BG@CZk!Q*j_hyB``hca~TYl24G<I>R{}s0S3NU
zfIFYMO|Tvo@t9<pSj2b<@%wf_VFIUi219ew-Z8($gHEAdgBBYT-$)LQfwO{Jhuh)k
z{4Rqzap3GKB@A$9%CU1|?yvXTYz0`~g4k@FaTD#AWr<#VEGTVt%-Sv7lJ|6vw?WC&
zr0jJ#45U~$eUp8S_W}EdIrxR?PC<E3t}$S6!rW!136eZj(D6KdpMF614Sp_r_>y6I
zz=)Rpivi`ed1RJGgDc5AkztN}-nRUd*^xKq&qFW4G62<lVW#~}e+Y))1D5Jw_a;Y#
zFGm0b)D05Pv_Gl4-QB)-0nV7&d+8rUEA=f|zMoqx-Wtz4Th%1FB!UdF2f7;hgTlm<
z8;qP45FjFJr+vww?TLh!G--L3T9aCB4STq&Xb)S5seh}w^p)suc}}r+g^}>MvpkLn
zD5jaeqOkf!5U5%|_FKMksy3cJ5yO7ktRgs1VeH$f=f%$w=A0D`Fc7f@s{3W9vZAuF
z5#vtJ=2}J#lvzpi`*8ZiQs=MZ7Opokma+v0NSUx1CPnl$ASRO!3(Ch{jG;Y}gV?O*
zGI)Qa^ixzym)O<1Cckkn(QR5({X;Sa#cuD$7ty_9mak1E5EB3_TwXS<u%LlRJHP%a
zPQd!6Gw21|^sLRqoQFa6$CO$9<hm9YB7p5LzviL!iw*FlB2ux}e?>V9lF6FW+9A7G
z{rW5;WyYbtgboGO+eXkK|4tUYUOcNdY=!BV3}jq-l;sLa94bo5B$NEwBN`T+PV{)!
zM)wI=|9}_rPZ)R?&}|ZUPX=3>4rg&0@pXlU0N0?e_OLzPmPHGusMrQ>5Yl#ax7%m7
z8Y}I=74TkamR;#l`2L6O+*@f_pfJCZ`TZs5ugSAw<<Q+z!Ccu^4ircoGJR#EBaLJn
zYZpKXF~kSbS5u$3e{i>Jc4qG=qgN-MGCw+ARN88l-Ae@iQ_9NZdUj+Sy27plvCO6>
z{AX_zL8eUWomu5BVlZA(+UL8|#x85(Rek_dzQdM5LSmW+@N4cSE5lNy^4v~%6g25(
z^^0);;gS-&g%&&#the}f?XopYDoMig#p!HkOCJeTT57b~ED5f(cP1fyA^bScB(Nwy
zG0K$aiPL6$VK_SlC_0sW^{|o3_lXJU+&0^?EY24P2T4@Vwv>c(<pEMvKodQyT-pRa
z;<wGIqmTuMLV>Dg!oe1D8XEz-orrb@8^Lp44y7s+K|N9(F~Qe3G_o{m4L)ue{fNd=
z#x+q(&KWFz@vTyc&P#di#Ek(LIaP(CY{qz0>iq;bt!WhBj1$HT$|;=%XEPG$xb_tq
z7~PWnAD0}B7_0x2{S!cNhD*QB*w`02ZbKw-*7PH>n|IJJ+O-z$s4<4-sZ7)7(0ecl
zkXp7Ac<un2J%m?fizoy)7RpYL%sy5O-IJ&W#Ls?|7bluAKFolCcVx~vB-Y>>f<5zL
zLcMx!BpqL~4WCFCF%hprvfAFO%dEx*g=gRe`6=`DLCbyMb3?zGE1+yu9BK=u+}qa%
zG|*PbbOK8UrSb{k>oaa|Iag3o4{WQ@l_~((+ZeL%Z<{k_%xY`}qxV8Jlf?93>kAg2
zv?0<X_eH;sbFlIde}f}&el(xNDluB1u_`3uy7!QW7rtSn(YQ`+@ii9>U6fPfv+`D#
zeYz1Bb7Hen>Ch*5THAnrXCjRlH4E=exLDt+;(D_A>lR%f5AtPaLL)O4Y_4tnHEu4~
zNqTMa2pZiX#E7OtzkI$yN07?tHMnFhcyA8Km~@8+M{6%}<WF|d?RPOV+>0?J4~;rj
z2vRL5m3lX<&k9&UP^bGj#q#vD?@C-bPH3b7*)C`z2kT>WuNoQM@NP1{R?hgmrErUY
z!tdI_2a!2>`bKP~+C573_JRi}>La_{bhX|rw9$0M*9G!5(nz00lU#->yEHvN3hzMf
zUY;nC(BbkERhJZeVj*u_2+#0_m&br3!Cm)#b|56C!0u%%2l-N+yL~#@63}jzEM|%_
z<)(1ME5bD3!XEdhxyL6MMaJl3dKer7E63z8OnxFw;i}(HFrpDM5nV#BR$Vz2lYLCy
zA`@8YMK8YzdM{wxcTl(*3X!y|j5$=l;xnnU3H5D0>>!5JERXoOP8JSew#%N-diouK
zMDO+QW`{G6Md;hYCR}(bF+Ado;N)0l-2iM^&U%0nd6b$h87!&w@p}*s68;Xdpbvcm
z;7CXpIa|xMAK(SydIV6=r(;u8@i{lunayztqI40p8EsYbmT1nH&V2LS2J8ev`wCmS
zsCkV;;BZ9H#H$CmjW%eDerO*oj}gT<Gg-9aS%_2fBq>TRcX8mh)5h=OlfpT>X?ZY)
ztlhMsunJBv0pibo<~iSm#pYv=>u&$Go%<o->#AQZug?j~nGaB$)*^qIliRj6+$(O>
z)*(Gy<S|!!@p!i9qZkFh*KpfHJP$3vg{VT)r%Sgo<fUw`hh-5&-?=Y5eP{pHD%h3v
zIV+^T9Uhb6@B%u!HdMNbP|kTp$x^-$tG9I%`&hcP&;Q)pM}pwS`t3k((0~S0ye((H
zY?fk|iBq?i-i^!#{&F_x&)8$)bmSs<E&C|m^=c4T>uAkLvuk!id`$UN9F_`Okr0kk
z(r|;7D)<%JeAfoWT|jItHkV)XqE?{7VbSP#<QZCQI!hqXaVZykGjv|o%osn*>%G95
zV08!4*Pw|_kC0w}M@t_u#8pS0PSKzz4eAyij*50k*B#pViQ``GbCfcJT<gemjTr>T
z`O*|U*(Oq{!3KHc=4hl@n<g*zMZBpN-gD!2WQa-=o?e;VRR5mY)J_$9hOyzU%G#fb
z)nE0gs1XO<RU3WK;bN>WBZ1VK<Q*58ts%_}sLs3>#Ku4<qK`c++5{-#cua;!W=5Xn
z&E_8BLy;}MK=XGmC#XMD#$1qo?+N_6YO>raVpcwRa=q`yXsyt35D|zedpInv1F|8S
zKrfBBf*m+P`R!okqB4Knzni-6bV{9gwCnt0cdo{++o+m;h1_J^<oHwQ6odEMnEvrH
zXbYhoeFi9pR={%(MJ5*_({Y&9W)!vJvSBD=RAY3yKqRTw7hi27NHv&k?WKOId}E}O
zrBG1M2~yQ2UR{8$qC+W>U|`_w$C301FBnVuT2FwZ`7wDhvFoRTKsRUCGwiWXEso8o
z=qh8l4a>*IN`PAE?t9EW^Smwl<k*s7ukJj~oQKuu!)eaJ@$)0+7D6<}_<cM1)mN;$
zw#7>WQ=Z8UOyNlly>Hfa0{p6PIR`+B9$quQ`@X`C$o$K5Lt^^oFssKRVIMp<v(0JD
zNs~BVW=Qf{agou84zi?>;t905BO$GuCs}63z>_{ECn6E?53`z9i+WUlHz6fHAU06U
z$+y4HF*7DNHYPW45_FMVF<(*3uh$KXydyWnw^rEl5{?6`n@1esvf0(yiWS+M)%Oi6
z`JZR1`*SbXQnR3zP@O3tzC=}UYR=Qgv^}*fx1F{x*-YK(ptoD8TnSLP)6H?Pki{k|
zRjpG_%5p52f>H#9ZI~MFFIW}Nbqy^nrPsFpPN$9Huo>9Y)F{8tw^rF`pIf;lfb?C5
z&OObir|KBHzv^YJUZvyyaLlKm%rq9CHl(T(m-+#yRrl3J1LXF5v3MBN_v>{<uPd&!
zbxu%`8$93;NFF>y6nFrK-s%3p)9A7JQL%`+T7M}8e+gx%5QDzvJKt&Y08u*GYtT?d
z&5qzH3ANwlv+Jjr6k0-qO<ul=(x*Uc%LKY!oUGJu6HP16R9Wf6$U451z5#^%#v4v7
zV|CVBw>-=?9=p%^YzMiIH<GFJT`N`hV&^vAk0A0%`X`~ChMVWw>T=tae{FK6ovu1A
zTsc~E`ydycwn1jJG{rNt@zKIFkt8-&GXk9k6IWs84y|HluWWAK^!$Fw*MR92_qjdj
z^%0~+PrE8$IPm+oNO;B>1%thRDopD$ibl2POIW7c(fnbuHz+)+oJEs^B0D@qxkxMB
z+r_|LKpsiwT&Zu{<*CzsZY%s4yHjk#?d)}h4~tu%i|ic0CNbF0zCCx68OIX-%?8Dz
z$S}Kf$%#E5zirAd&$Z7PNv<9(ty<)(+0}>?#IRkN713L|eqTF%aJ@H&)oDT;lS#;f
z<yKx016dEMZ(-$JdMZ;U!VP^L@845ArYkv3e++#FpLd=<*PQQ0<w&ag8ViGlB8cX>
zz~FF&8ArBTF8h&eWJUgNgXE-a!>UkEU$MRhM-96fk~+?7ZlWaW*q?3QUlh6bK8MSu
z8tKH>?Nvz*MnrE<-@EFb?ak`GxLGh9I{#!2e_tg!NF-mkSrpyZWT#4~WE|VsK+vW)
zw20exHs$Z;jz$p3_18#ne}F(j0*9ER<cv!G<y$PXrhXgf$&|dnyZLHUfs(rOw-qpr
zj(?Wx04P~@!GQxK3Y+flua_d#nH>a-2plHzJCv5>;r2m}&j`qiyLV6sZTbL3o@Zc$
zzFfkBY-0fJUf2x8IyX?vHcq)(VG6CMEL1ecGlj<zat*29xrX=o94yBljd{BAu{t0n
z9aTrpfi_7$=Y7hVRzqroTgoB6*1<V6uLp!jf0a1=`d~0!&k$~2Z@bHNjgpa(5p#7)
z5Ce=LZNYSq12*Gv$KBI9Vh%24K{=6MIssJG0AiM9Tx^Brklt`I+%sMy!yiFi`l-w)
zPXBd0`e)JukOy6I@XaqjpDv^Ads;1_7#t@+ltg|Nv=tReE9@;xQPWKFLj?gWX`4P(
zu`wzw*i#nr_cuR>Xlcv0Gu;U4Jj)%A-li%Hj`v;6Zbo*Jr`&Rt7tC!JRAxC1+r{Mt
z>Q5_X`{zr~jygc*wY9V4IXBT|e%fM%7n}J{)mwUO5LVp_?-oMCC+L~@dGUzpsd6E|
zs!e+~CON5$2KpQim6*=puW2+IzGshCS5du;V$beTh>xI9S9~p5iV_$0uCK<W5Sxvb
zXtwp(B+s;4K3m5&UkUOhIuAws#ajOTLb{6@)5+VFoB5xoIioKX8qTvh8uT($=aeZO
zmN3JMt?yAY!BWDyRAv<8Ftm$bu0LAoG7jhD(uN~0mcAa`hq^xxK2g^i$rK$nRAB1|
z$$Pk^?XTaWBYHnNWPN%oOIOB-+@6PG9Fiw<X5;Xr`?D0B=&x33UZ<q5+A-b6)~lTg
zJB-unuy!P=CKE>=!Y9L$LGLhTNqdK`T7c4LuL>Ved7Cv|ouCF`<8W(Rjld%}Ua0p%
z3Viju9JFZL{#x<E*YsRL1(<f<Ka%U4s0)c_-#zaiWqYz8n4DwUtF)vXlN3^A<#zgx
z^#i6E^-IsNqt#68jSaHQm)J9t{@H=J4CP%-p4zs6)+H+?N9>Rd+DzfgAB@VcM7<#^
zBG~AQCw|#XsoTBB%lczk;5#w@{P*l14|yFEzJ_aUT}!@$`VxQiMn5$k-AsZ1=I0lu
zN}mvMSgaRKt3cl$uKs=^OL}Bp^LYJDl{wWnaGRbIc+7Fz#XPg3)G<`Xl&_#q)YVX`
zF7&gFqRvs!6MJWT1o^y6%W`X#8d81+iRWbC_|`p+_d4l3PaW^yYxHZ6-hH-#t;B$f
zQ~DwA@~LWX$tDUl;CgHt5sOrtmG%#Xe|!>B151!3J=tc<07)~~S}B_^>!z^?-+hUR
zbb5;1faDaai%x8;(S4Dq<^*)EwPLdcF`zznsd77~h>76^XJnG~V1j{G*ddVXRf)^B
z?N6jI&=$bit)|pTqj}E)i1vjjP%K;?qt-4Ik6aF?_o$X(S75)FJG<Uj>N(q9m&Qv9
zN$J=FrUYnU$KAWSW{{rP<|nRmynQnnk!~sC$XAR&DX1T9sNSbJKVmvV6t*a;z1|nE
z&#Sz~1k%#Ha5J~5kB)a{Q<X~e)<JM|rcR|)G%QX^K`|EayMJZm7X7C!#Yp(;9rtCr
zj%kg1$6r+-blv^Tf47>E=z3Le`qM*jrqutYGcAYBm{h&gL$5)x!Ik{%w}#+DxIcpy
zY<jTq`$GuMK1&ZXrhL?hpzK30xDm<_X@`&9GGDZeK*Y?<IeceE_K|15jmTy6X{6}Y
z34oErLFzBZvEauicP6L5?C$`fhpkZj60B`m1yTfg5=gi+vS>CVq%y)C+3t@0j;>JS
zApK>wP|s_|UC1v*`4l{t678<v$DpXs1k8R(b7r}#Z=+Q${i8onSti>+#~orj&pV9z
zS_hG8YEQ>!*rQUpW}T14KgRYpT$}w8pB>3lQHb{zHN~{na6Y8KelNZs*(yVUbO|zK
zrde<nRwD7kBO|;;_7QG*wfhNO1dO!uF-d3+el*sewHXxS{Fkd(>oX84MM*i+0eQ?w
zvXGl_wIsal*q;1Iu<6zWc}_g?alDl(HX0KxF&xpmChMEhPu5+Detg{#wKg^llA5XH
zoW*_d98>5dO|DZ_zI>obeb^SuEzmzY5S?V7sdg=NM+K9!BYj(p;d80RC0(H=fXEF*
z)aqeh3928*X=F<H&Op~5B_$-7^i-W@>h{Q=aYmh&y~C!~{NXAPx)qChmz7eTLRGy?
zPTT8wjqzdk-}B(lvO|l2F3TeFxjE5W*8kCwlpM}Z%9h)t@pzC4$Fp&L*(l%bAFtl`
z0)V+B?Pxj3ieY_LZc`&&vYoBGzc_u0JJ@jl;23n?o4#Z<nH*FFs_C;eyQ8N8Xj}#$
zdy_*Ky|y;p;O0gf^(ie_t>W>h%f}F+@U<c=wFAIa$8&H@a@>9$6^KAsrv(srLr7Sf
zBC?^3b18!GWEgS<DcQFmqZW8nXv6e+Y#%_NQEmCZRx$Dt$L+MBp|Jx1^eMvGxA9|n
zy3>F%fG+;n_9NJof6xI;57bstmffqJe2s?w>xY!fTdt>L6ZUY6MEjf!rVP<kSy&7$
z?J`HNk#df{M2aW#wGer^fer1JWU;;_VpOEaZtXRF=qLrJ40D#@NXBKwm*N_b)R=JH
z-|Ps4H93i1XreVR1$-T)LYfX;rs48?KLY}cC@(M2H$|UlWpg)QIeA&q_zf6`EP!>L
zNA&^10rK4M4!(4wy9;QNE#6jeX$>(6AkVPIN-mM3V{?zYMLpe6jm7?Fr4kAeSOpFX
zkWq4JKWYS$vg=%h@Yc!{k%L;01-{MUMPg2FSI<OV@4Xy5W^`ee9SvhV0_`7SU?!J<
zhj-6vJ<F$|Nwf<2PvvKd_fmITU9M)AObs<&Oe94HfK|Z>DbuWCs!n@@;g#Gwq5b&^
z$L9W%EKTj}k8FF~p^dMQq1OOF69>2nWNz2@^`CbHi}c6tK+~DWzgN1K*+IX_%0rvF
zuzdqlLE|wR%xJl!^6hYJT9X0a7*v2Sb<Fv82q0g1RO|d&eD^#Sm_K@R8_0QyW0yi>
z`LsLgw<%C%Zpu5){jg-B>D88bM>KTbde3ug>}H>{oq@Iu{r$YFd3hH#dsf-RA>;z0
z&&QmToy<O{&VF&Z>j);$U&+6Ut=T0%d(rl4JcgdtJ*Oo}h(q7b`do69zpuyOjif_I
zlNyzWY|>^?vT+%-MpXSyba9O?byYqeO&C!CP<3x^4)EDIN1M-yUr+j*pOcDwJ*`;@
z4%68x>$rwIdHk<4J(wq!;R4y?c{3k=dsT5dVi0_u*(iIYaRypD#xAuaqpEq-mOqC|
zseb`k&EDb*9Ih;d><e!&tt)=D0DAV0{P+hKuhRg@EIdEJCOt&xkNml;U+5;${q%K8
zba~|G*)BBDfvnzevM}^ie#}L?ZotzDk6EX1;9xoM-YlN{X_?tvw<AvAK#trYX=y8&
zgGx7fCkheIWR#a%!1nRa4LMCzSY@~(8v5h`ZYFzW{VX-^#0D9+$*SC3nX!UXwiddt
zzyC7=_QC}+M@ovTH6Ps#qALmM+#&FP%9^Yt$2p*->n_dy!EE{cbpx^(klp0{-~uu}
z?%MU&XfFQcR}X1eC?U#iqViepwO227^oV?_B&F=>dyjR@{*SHTX}|-OJNVVe&9+#r
z9SUY7;v>2~QyH-a0FKpjP;@Zzp{VRS5{Ru7(0r=OoF`^I5J?Xlbxe-B6RU?fLAQA9
z66Q7cquDae)sr6t@_$nE5<9A6JINH(mM>p9>qN$X*s<M3EsO55Vi6OQTgj3052w;S
zP4d6ehh36Vt-Z*vS6Jg4K0o3P^who9@q_T=r8Oop&b2^$qP+;Rf9BSoFHO<|R=@LC
zGUZ30Gw<aCEYtK;ZYgScglg-podW&gw9VWtQ6lRu3b&2R10?BAKY>=3)3*hmU(c8V
z`Yygr=Cl8?6+ZAF{pgODb3I>}62k?V=Sjttw?u>~HR<JxWU$|}831RZAEt~0pQkl-
z2WA#v{3>8$$gCk<0vkuW?b6Ht?G42qppCge=7H+Z^cNKc8)&Nn2|Q3yF3#lB?UoHs
zN+OCbTo;fnHC1FX0hNC22{|MOd%oqu=Uo9ie8fshJ0N{v@H|tV>D!cY61FA&IU&a$
zKRc?Wva)hJp`p*;=g+^la&Qz~WqKI)WsT|UH{XB#>Ny1*c{+{gK91FYzxJsoc-F|C
zT<6~Z<1Jv(Fqk<3<PQ<XNH5Eo4F5z$e}~HdY(FU^h$LA!2sV32f2P|%(e&Rhc`gFt
zD4`=$?cqO9?cZPZug?JrPXVbnh}*MR|MTYk>s_hCz+(<vooP>d^-rh{ffErC$xyAb
zymV37d-7i&{+t<37kSD#2KCQyp?;1)o>UH#+yeK%Z1$J72ztUxLdSt5UOh0d^oG+!
zV1Q;Ht$Z=K|N07@{BY?2o>{_iZ`P6c&vjAvBG~SUz3Cn4nW$0&`(=jX={EknRg>o<
z@LcP=3ekf9>p}$%N!@*o4juWGp8fNEs>Dd%yy>G;F73=!s~HDW=Mh%O{A{V&-1K}p
zVDqno=gkOPjn-<IU;gtqf4!%aA`-aU<96R11pmH=QYi@Xxr&-FG0OTtGBF#P|8G$B
zW(H}jic@fMdnXl4+KTj_?-9TO1_$>3dGy#nZ}CGM4vR`62uo&8%4(yZEg+qSTT1bP
z-7~Pr{>Ot#v4=e*qJ6U8e;&O%;?CUXw^wlQ22B5XEU@26k${JVjKIzD&uB}b#`>XP
zv^5;+_Aw8vRMZSURqy}fogcs{k-MkF34OKxd%S{=<#jwcc-0E{vINwBe~CqB>AD9G
z*ltBW2+IEbB-+9RLUCn5eM-~{Fh6j6IDCcvxhAO##8S|$0wn(zBuoG!8)+pMr#_a2
z?7uFFgah%pp`hHmZTE-py#PSa2Tn8*1Uz`~f5regxm2bEAt;0?%;cxZ!d!RF^{oGS
zS02E%g$u-jmSt#k0iS<^UfmAYyA@(UP`(2NSZtOf%vfG0329YSt8af##iwvJcA2;V
z4$s>~U^4Ioa42E7&B2s*xjF361Kr<zEOL60{(L^{qdMQi3CT+lGA(nazOfUO;VC&e
zv1S3?hQG4u{&O|VA`b-FUPicf)-8G>i+%YLwtD~)^05G#>tmOJ^Iz{qJ&w?g(>8Xx
z=Mo453aw=1)7AK8TPPlty}M7XaymClHU06V805&iBi_X8+?_Yv$HK5K0&`aBb?SB1
z843kfJBrg8_&3Q*U;~|FHJhEx1xK{n`@06L`F(JXWC8=2#dsp0iP-r-v)PqZCrJRb
zzZNqx+J4CJcG-^%)^fJa)v2#Dv|v(y*By85o$rT%j~@qQ=x3u|kv#Bt_bvrY>h+uB
z0S>NiAQsngy}vzw$IPAa@W1BxDu)LtRaQ6hDVTGpYpmd`x*n}zxt=&(prJuF^s(Ie
z@+j*%Ej>M!)5^8%o(%i>@-ME)!f?>kI2N=v8->a5M}I2}L@;Q~8xX7lWle7YHf<j`
zp=tqP@P-r(Rg(R$Jjh^*Ydum9z>*)eUNlTz=PMoxN2EBm<7dXdU^9w|h=@RWGzMyr
zosQIb>Vz1wr?skfb7gmBm}g$)dO*|baKtcgTs#HRfrZ(vQDCJp?&sWiIg%!#EmP-c
zle+O~ehoSSflYPBf?8&ph{*XGzZ9ch;EXo}i&YW>3KlN`KCk2@Gm{w{Sk^f`igkOY
zP4AARBDZ{Jrb_fTE?ue~{^#T-k+Mg6{#sDZpX3{w8%@MItdsY};mZ4&;xG6pWP^av
zS@{{(S+E~)qG(rVEjkkQKoZKrMO0J>NZfkCnVi{C!;{h?7x1Kjeqef1AyWdYH;|zo
zZ|93n52o9k?EuhEP1}Iwsy85;Yv|s*gO7uYe>*F+7r?N;@+t!W#T;qP-E7PS!2D{G
zi$Xb(;yxfBj(x6ujOt7xdVqSCp1=#2nP3@k9wg5wlPTe4dWLQ(heRe-ZEbkH5~7va
zU7D)3J(^7s1lRM=`th%|LJM|fr(2o61g6ivmqlw38MX)E6R0Gv9D}pkwf3i*Y_Jzs
z2=RJ~c`gCusG(UyUC30iZs0;e+H>-kd_d4pUrAjc>u^G^Qa($G1iDveA7Umcy*#3c
zxPV2ixDGrWgt%Qhxjr`+D`-EVNPHYelVdE<))w`;JH7C~noa+lz&Y;*NY++rj|7%m
zl2?#@a0GK)!a-#Q-+=>6%A)2IvJe!eI;VwghrEwYH`T_RdWr5lU8i*UDiuV6Y|x9!
zUkI2|l_3E5I~{4f;S;6-VltZV-gg9_5Z&L>$^Pf!k}`=&&Fr}iNd3BX<5~;;z+k`T
zFIAx}TwJyEjX)cs54I-Lz1m|`T69s_orQ+vs_Q+s_EXwDY*-l0kRkfK21FgTF~5vc
zqX1+PX&r<E<#7EN!Y|EynA;TIblYAmCGMP@@(+~g5BRHe$1rL40!0Ur90OYB@BHd+
zKi?fd=3)k$!^u0+T)%CFSxNGUB<G{9J7#P*_Hh*jep#M_M)(W>RX?lZ1VXC7V7rnA
z^QRy{3VoF##om9CY6P~}Im20Lei|B9^nahoVGH<kH@Nh`X3R373*g4~i_gKte{E*u
zIt`Hd;tTb+H#%=cwIVvn(+q3QlkaESsP%Nfs)}jTH{#g$KFO`)rBx8;#iCbUVeA+|
zcS)YrMyd;j9Ms|rI7Hg~vyEVp50GMxm~c3>J!)gMGu@FUEh~4TjWX1G!!aH`<y5tM
zL%?oQSfs^bm56B_{E~AxAS?eK_`Wv+EQC$p>`oSWt<4o`eozd8MxbFI(eMFxrm5Ic
zZY{ByQ9y8xem;mQ%X5Ix?5>2$wMZ+6>op}PAH%zpt5s7!9P<z#C_Ap_G2j0bl910(
za{iMTY>U=Nn;k4D|Fs&s3($GI+y6=P${g?<i;l}@<R~(5T5X*ibVL;+v$E{tFzY}!
z?X>}E8@t(|j+X$yb0-g(pl0aDAWPx^trzX&Y@xN~9sAQ|J)aM(t2FkX0(VSUun5h5
zKNzLGxbdnr<?~QS3Z81v30SQxaR$`s^@Nxz)>MQ0Yrd!)*bJnA7TQ%G)jdF4g2z*e
z(U{G%r{F;r%#ADleCKdq{0JH6Vr|lsxv0kU2R_B&k4-v=yaP4Yh$9TC>P-}|oG^A;
zRa9ano2zKL6b&W;L(lu#vuP+S>vqQFu+#oDK+7DaYxD0C9X|o|(-@#;Yiih#7AD-{
z)wY{FW|WkqxTyv@D3cm*Q>1FaaDzO3*)x#BiFdn&x-=+>B!jk^qVaUy1t(9z0?Go6
z;Yi{n?0UThJs*?30OYcwuA<c<md9ehwgfV2Uo_uazEaO$JpiPd#@gAGR8&vme|3YX
zsUA$TVO*nA6UcOF7l^*de?Bp{9mloNmH>MW=KHUsS<)1Gd34YJ>+y8*c)VlCqA@ed
z6;T8`+;v_S{!Em{MpNZ?z##vQDI1y9<-pwDFFf-EB(R7WWE&r79E8556=W4lh}2KP
z!Y|WR#$QXE$ZU_Y(*xz99aH&yReYNopo?o{JxAD53`eIx>jeKAq>gwus2Zd=2Bx|V
zW#t^xBm@Yu?_4OnQHhD}`LY|9{Y4LYI>}|v0Q&&fR87M_I-r3jbO*FUwj8@-;)WhG
z^nY9e6{o|3u)%n_aH*^^zlJ~tX!|CJ#HiuRpuAi2bv38vMC?0APF=mR_s1Py@H`bQ
z*xxGPW;D)y7WS{`2Ocb8g_ByInOLB#VB4#cdg9POZ`sqwjxm$KIkbd&^0IsN)BzBB
zzNzzDt&7bFyFKSh1^igbvsfF#RTozhn4oMq2~sq+q1pMPDe0?oX0RRJOR5?u^7qha
zT?<*}igHu5GXBxd8YL!zQ^KD*Z#6SMI2@6Kh4K3>Dp;w12kYN}@j0zezVl)X^h2CH
ze#}2zBMCnP>)xUV7JI#+Uu{35Kas%r)Y;%5d7dacb^Va4uV4Jwl0U8z`BcqjNC<a&
z|1bJ%O@_xQ$+%U6UY`++9ioi!|F!q!@ldbt`z=~1DN96_WT#|_WMs)nma$}zV++|0
zAv82ZsgQl&2FW(|eJ5qhnk<81NSR?QlVQmIef-Wj9p{|?e}8@Y>-~C#dC&8H-uH9e
z*L~gh1sUPLetl?P?1r<s9QoY|GzH!1+W_F^>&uyw|G*aeF&JbFG!<z==Hk^A<LBzY
zyw;v~s$Z%7j8p4xbqWuSuFgpq_cI8b_-SFUrWOP!N7dnsBCD?R!?HTqR9-1tIGC-S
zL@C|@=tRzMzR%+g@E}bDU4?y|eXSFZnS3|Y*98Fb3{vJ9{r)M+L|W@-Z7XvUBi$N6
zUZobQfEY|*(Av(6dyp52!F4CycGfzL9BaCIKRjM&`S%MUyopbKPZM?8ULEMe1LbG=
z1aI$kr|s&E*^IqJQe#ql`fG-ZlQFzGojePIl{xgj0&F!5$Glf>-~<ArAkR}~+BV1U
zC&=y2Y5A6#@CK<p=|m3|7-4*i{JC}9v{sj}>zYmbu6DQ;xlasv!%2lEVP#l6@Jq>C
z1(Qf60QqAt7tBj^=q@g1APaf$`RQ07KeLS@3%?&*P=+>49zA~g2jSA;!G=_jhpfn@
zP~NQ1xvAL3pJ-)?w(Azu%}NB0I-927YnvdQOf(Afh=mfB#h;u$Kh0<FJM9LBPG{Ln
z13q~T7nYC(h_2W$d>RG!<QuIiWcb8RmzyPW_W?pXJl<=<9phzT#gkNB7vQ6<bN4xr
zGa7z1=FXEqYTkT2JEgf;V%k8n_UbGJNPscO-DXX&ktX=jDvh#(!*736-(m%N@eLr*
zdOoqZUK|-H^VK+HrpuuCNG+8KLVJEjW736|Rk`spC1p6@&<*n)@j!)sn`-MZ@o{xk
z=$dKj&Wg<HXOBBYz<C=>67@X<4!(aS(tbzy!kztzz{h+s_N(7f&W^!I(fS`sZa}`>
zPGP_KI6mT#Za5!Fm;b)1q`T6j;tBSLRT~aY^xQK6LL~77<<hWQn<Lnu?P4aC??~VX
zZV;c1Vs&a&qr|=EYL*bl>3l9?ORwth(JglFlD@l{?@kCja%8^cF10msb9I@Jg8;%)
zn>(l``V^k;LdVhdA1$Cq;#=m6zpDa=!v_AG-A~N^Y|^(njKKooIro0PiYozJSI*YY
zZ_6$yhm!S21bU73kgYJ;3QU}E+;@KNfd(E(m#YKPqgZ6yr9`136Cz-5<?$L!48W0C
zSH;guG^~pwtby=Z!bhHZbga}DfOo@mT^C!Xn+of3Q@I5@UYxw=YvHS2XH0C5(DF2!
ze8~SssJ}4;Tw0pu9~5|!jPgI{Mgh_C;J!FE;y9@YpLzC3Z7LqkW3+F;G07ov_p}et
z{rl_rY^1+BZb;JUG5ogrqs6shRpyJElvO9AgwHm=&UBHli-zKdEl`1VD$*MOz*!^;
zSV-XtW%O-(3n;A`mob{6z(m$e17wH6CR+FI$!vXm)uLWN0FY-5(kNfNKDf2eGPsDX
zy0FucPMF?T(@vK{)WEIrXuX)&I~tPY2;4;*IB%^z!Q}*ZgOXCdK~eonUR#vMSnk@E
zn*7C%)%s-D&QJOpdJ~bn>iH^-w^kBw1DR6;DakUVK9)DWJ+TF5!rupz%ODSiR&?B4
z8(ZU5KaV9CrdEB)yllDwxZfXmNzpa&-h=t|9}LJbrL@OB<L;l+UUdVgZFdzI_lO>!
z%{)<`xk~^F1WO<WFg-P~$&M8*>IGI%Q-QSEhNOE0Ce}9rLj8TCAjkL`oLi`=g6LL-
z#IP?QQe@mr{Y$vRD`z@=HfET;qpK1tO=aCsFV*nhUQA3uKs9+0Q|C}lYvv-65&)+*
zzydn_qEJ@t{7Y|CL8q<g*P(>!j&HC}uU8v|cO5`Cva#E&4(3EF3?q0SlYU#p03KlM
z85u>X5fgVC)c2r<?Sl(zJbhD`ayD?S{Jc^L-bz*DNJ42D7=Vp^tK6CvPaLDXfyVzx
zkz+E08^s|vW(?MH<gZHQbpmh@c=LXGe?ZnrzGj-XwG_!YZ>)iD`7yIBf`CBQm>Q{1
zxadu(i<dht-%!^8OsN}VynG`<RWjyolNTj1=c)x3*kWaH-fIhGw?upj7Qeg&GEOif
zm@+WV)UJoGw=ywu%I^z_!Kwt1!>dXhH^^4F_3^H?S7CrpZ<0dgQ|TH8pWlk=tm&(X
zpI14DfT};k(1`;(6%A5@T1ara!-?hH*+gKB)E-pE0EPw1`;za3-WQzgG9`>n7m-9l
z_(^(5&ki;{CHS>ul{$|Ig7+lXu6ZA70vC3u2!Shgjt2|;fr0Sxqt)!L*V1E{hFR<U
z5X6c<<#DMz$FaY1|G!wNX9|i89d2|(z=AtrUnOgnJ^e}uXZpxHXR^BJ+S8x9C3>j!
z84RjJT%hn)kx)7BE(m<VtT@EE+RhkZgM@ZYPNHVRm71|q){<0TT+<G2Xb$-A1l|Jj
zfj2=J8(pHh`L8eaDNzfP9b+Ehmjs)Yje6aEK&3MO5U}=cosK5tN&x+eex1jaIwUTo
zE+besXC;)Kt_%k+>|sxNJ>UB=)Uxf3n3t+Tj7?I#=W|>H{WDQeQ%!mx5Dyc)5xbIq
zdN?<Kak|%^+tsO{FC-=58^Gi9o~K^w{}5hh0y>JI98TKu-^Kz-L~g%XV8B~hV&#4{
z!c^4o+UaKnC%5}6ZCayZ1iL@x8<t(+4D2VbMGGt`yTVgr1r0~WD(3Uw3zd9HzzHYd
zr(c*f*l1q6YEWoAE0N(~{Kf>1r7P=xLQ;b@fWD3bgYPng)lwHf3gS`n<H4t3WFj$u
ztGbI$^{jVOu5Na#{^-g+_wI84+v^aPnc+<(=lD}G`z3>n1zZXTQAcR`OW^dT#xXg?
z3QdIDad}bts}!||n?C(pXC>t@K|{g=VRGc3F@lxo$QJ<#^?DN$Ih<!cIDY*w`IIzQ
z>@fr%uND(}7)V?dnNwj$^v@#)-4bGBv-tj%J?xWhX;ft3J~faP0=1y8Q=-nYNp{Jq
zIwm=$4&50%pY&Pv!)K6^bINL<Qf0*?*6z^1E!Wd`qjB2tF!d(mBNf6scv{pHzWgNP
zqnXn!lGThO1@UQ>6b|2~blz9P?!ld7r?PHDnAAQl@wW$(7vwo2D4C8lZhouG%Dc!|
z=FVYF_Bthj02<tKUSrXOdKr+<75VPurE04y_0%I)w&8?kmyeZ)@=TPV@nEGsv}wW!
z)2+k?Oy%kuk$$(!VkRG|E3IWud7U_MOboLW+RUT9X)L4bdM%}{?+w*B2&<#khzept
zL_3=5w*a;9b<prtS+VGKhuu<6y_e^QkiNqmzH?d}sl8=m6sVS#XX{Z8_q~YAX3JZu
z0=FoGx)48kva!0d_mrO>9*jF$*`hjSKFMkC=|HpAQ$RV^-rZBGB-OEM8H_5q&mfG*
zI}Tr47{z(}zAm`;gb^89ZenWmEro@3fl~xbtP_7ijGKX?;cJ@4>uhUGJc&Z%f%U$i
zftVy`z?46di@%roK^kJKd7^ZL&_US)aCW<xn;!98_J}cO=zrnCHeYzQKl;UIpPfyk
z2+7$79+Fh+kL{+tx@-0gz~3%}KPQ=0kN=WR$z2A7*d6!Y83u&PG3b#Dh-yWJl)$^=
zTMw&5nw39ge81q`a_*Ip;`PXPtt0SyR)dv@G-8Vcv%KDsHxQPTV+`#Nfr3p^XR9qF
zX*{#WHClit>}JF9GZ$^kVjUhJ5^HXtWNLI2^ZO8I?cwJBDMn#q&v75VwC&4Gc(I!}
z8bYDjh?ug<N?kypqy6BT9W|O>gSS`sOje5~1+(&&08=U)i<#2E7ETPiT4{UoEsNU*
zqS)jlHk-LbA;%~+U({7YImk*pw(R7#$9;B>d<?HJzob}6+AyOOCXXgmfJ7S0;}jGo
zET(HZPL{$5%OT^CXP6={ci+1=ZONBs_LiXGU+%+2?X&iwjW$nRE9}J$Y6my>s~XQ`
zJ=@c4an;MfgY3-de{$CQI9~e*LMX@HDrgSV)TBK0b$9LYkg)aCR5M*t9cedPQ?8^S
zn7?tYVrGidih<6Ha12W>6>-s}&M37Y)9l;DQ6L2~R{B~zp`bke{*17BXKOXA)&JPa
z6=uW(HRUh&#hHb5RS?Pc*b4f-YAQYQ5)I9zuDHFgX5JuIYHv*_e~zCDThSam+v_dW
z{|Ml@oD0{5rUO`3MWBQ75)?#3<A}`N1y}z#2woh(rL9S+LdQEuf4D^b!fJ1#v@;&?
z5&VUDit?}<Nx+nY1Qjxe_60Z&p@$l0i)4f~{FUwi7t4<{F~p2(ti91woueT7)%W4g
zdL}xk?1Xds!ML5d4@0GO?}m?-5uSW_z~kM}C@fBME;4}{-@Yj>5vGjvSX3*+p_XLS
z2SqDQ-_|I(y^g?n2hPxkb;UwUKiGrmB>P5{4Bm#Zy%f2Ohqk?peeOMp6?`%>qgzg@
zQlLxR1v+|5Kd(~$>f=Xek#sk)^@w0$*Z-E47zO-($R*Z5GCxK6F1LK~@xXdLng!`u
zpY@rz*IdnD2uhQ08lnFu)X_a%ZVwz#J2mceUq(ewoFX$mUgno}969S)YWfDP&B?nQ
zX?KbO$RfC*k=M*&LEVdb1iKrcoMuGW?M|ul<)HuF6<hB9boO)mqWUO7LY%s*x3rXf
z+=RiSd!EvY(*<3ua$Plcxw*N+&taBrd_1Rcgx8nX_#siu*%F9IwZYiAeQi1Y87`LC
z_q=TOpVR!9HK%W24NNQPucoM8jN;GhMkv%(j^7kQm7<dPQ7qO~AvTguLukEiYeX(#
zkZg&RNyyl`sx1(npGZXn$3~*`<kJD4uu!)3bdqBJy135Cpl+Ov@BN?#JTTal2ARQI
zO4=U4pN>Za1E@Q4=VW=ilWnTU7;#6Q|0}To^x5$vh^2Jm`P?ggp14trx)ZrPb>t45
zY$}J3w}flxU<}$p!@?*~&KNbLmCRy`b46xKoA!1{QV@mDNA)Q5Tq*C*37_r2I+Acn
z1t-1&5ShN@!tD=P50zVEA-OxgANV1R#q8*maxlwMKsRLtM`JUO6fyfV4YLVjLf&-6
z@iO;17kc)YbHe5ZCHHto1RUxi5tdL?{=QzqEJf!FZ<8(`&He@#yog-w_tCpUox81R
zDAJJx!{w6O>Skh%>iaq*bS`(S{1EjG<T(||PfnKEI_BmM6M?o)=sBv#NfN<m?$!2q
zNxMkkvgJEM_-*H*`SR~f`nO5hkPOgiBA(<j!Pz3*v9b(mH^rp77vsL$-!>nt9PR?e
zn%o*N(acevovHJ-=~zkD3m6Uj>w<!5bK#_4D7dYo6Y?1zNGaCqH#@v?Um{VACosHh
zY`|QVa%Lz@NL6*Fn>^D6{n37r*AK00QySMIL^hq@dF&6r<92tDPt?HB)m3dg%z_@m
z<aRwfi%<v{e^YLBN7zv($okP|s4ZoVy+TnCkhq*r!q6~5=i}C}gP@Jk{Ky7hPEZ8B
zs45Ie%;nDr2d<e{h)=hFYIT1LqYFU`)9`mD7A$@Vk{0M+1u~in4r8@po)Y!Igz-uz
z#L-X=IX-(svgCmN7{JS0A4Y%+3(F7zc*B?aqZxX690jAiKQnqMnA4Z{7~u-(o1@Fs
zuvs&-`S)L|a9mh^60IGPQk_+c2m7tGs$stH@S2aB|GO65&bBK$v-xGctGDTLGNwK8
zFK5~}{Z|IP`LT`2x(F3JCoHH3*dC|#>bNCA-!;<=vAf5EM=O_n3&o0}x`eg+R6jTF
zZn6pI)Y>S06^d@1NKoz?Aqd5@bWwn91oM88q4Yyu<ZVIgOq6_J5s>L!2YQ%L&dn)|
z8KJgI9GQH><t=})nPq@sE6ismCc^Y>W>`LpfR1*_gBe<peglho4cutW*K~9V*$Wuv
zc|gU&!)_7<gf)pPxg@%syO++@fx<##Ji2?GTp7du^wFuU+tEsw7bfc3`7-V`_{=^+
z&5@OR1LM)l!-Xc_kk0ImJZJ$KETD^Fi@egZgM8=8_+_>;Sc>;)^nTAKNH(Zv!8IWz
z*;TPbkB4%c|5ah76`$=eP}B?N0E`0D1_yFALi;%VIYy4OoJ0#PwYxFxF_1I+nd25s
zp~?}A{2n4Kkix3RNi9rYmW%`?!$R9IvgRPAw`(Zi=xgHl6fg|%fwMP7yKlZAJ>^x~
z>CpMjunQ8ylj2K6aW|Op9k`C?hx`_!h7TGm$fcTdcl_O)3{8vrdUXBEBX>G{_K*>I
zy+hwX*114;a*ST|QVEbSt}%Htz~?z+*M>&ylb#Cv)OcZ~lqv;B%Pf`;Y&%${3SaNA
z+zjMLT?5=f$;xNCqh76vN~a+k4_CvuOOW&_bQj342?=9;J||u;A_yt-?nA;j$<$XI
ztc;W4J&D`*&7`uefkJ+%^(GSIRXu-U7TCTbkF`hH3Mo#EdQL)r_zd2_%3iV3l;1f`
z+L4>!%ZS9FCHQ@6R~9bLASTCGl!uUBtFvDlLMNr)D3coWyJNT#8KUlrG*<#wN0*O0
z{G@AuXEimJWBM<W^5+gO+dI{Z&#!3R1|860b-$xvz=^kxb5FGJ_AOZTcTIZHQU`i<
z-qUp@{@*&>9)ZM}At;zU?Vfd|(3~TJekxfoS}A@Gcl5Y2MCBtseX)<e3do*rp8B~o
zv4u%NaWt`GC)6#~ijgxhIz9_f3_g^2Ijj~SH}BEe3^}+7C;RjD)59maN=Pbem?~dr
z$vW+~K~VbhWo@p0=aXp=9zQ4Ip<&>gmJ!J(x6)mf&Ry3Q=SldS{*nF+!|GJhwXfJ}
zAE0CmFyp@@AA!kkDFY<`I#naw$JgL9gr|ilL7XnAmGT@fvndjO$pOl!4$%To(<1YF
z_Xvwcp@)9-!=FBi+bWXAAIOaGuNhKTT6rP^@ri7thNM)VM=a7#$rOPQ(~qWX7M6hR
z=3|k%ZL~G{bmhvVrJhnggRbY2#&zIJePe69db!MdaJ{Fg;h}?CGLsl}Ze~4cF2$o!
zP*7%lY}k#L<Uw8D%b4UogpR=jmO<-hes$x;|1uOCs%g=2E!KN`&3HmegSQEw6;Rpu
ziCq)Xn(z0bn8k#4*uJ|dn!Y2$z~qEN{s+89=Txz6D_F^}ENGIKYCds<C4l~}MF2Xv
zR~2UkngaU;c4vB1?DVzur8bq7V45W6`dgwH&vtg?g1+MfDbb-2DxiFv5H(O*x!ra7
znqY1|zd(UhkRebpTM`OJk`iBOn4c$ezs$7A^dLTt*CC4|!h7SzBw(=0sE!%=jgrP>
zjT-Pk*T^8}z4(YFFjsBi9ndJ{O@C0j_~@C2M>wWIDbjJgTCklIrSyD%5HW7wDW(!N
z?8NSct2mSY;N;!#cCM+DvrQyLH**z#_vnMmqW$G0V@{gT2(VyHVK$(gNlLqe%44CT
zVeliQa+-g8uXeTxpXfj{Fc^P|DoE1rnqtLW(Hs^ihhhawLqbh4Bh`@cvyQU|_I_)q
zLSwsj2=Bg4+31s?*SRGRZ;09+Q9H@wtdmghC3f(*IZ#++tWHB$O@RadYsxc)^vh{4
zjK=&$bd?1D$S&2S4)Y2Q`Z8BKP5fS}_<ewwCuQf%>e+N-$%%~s6?e!A4a*a?W11L~
zl7Kp3in}=EE&WEzFSo{GCG+8-PW>aX*;h@?@dd`50emC3;GfhaJX>#KO&jhVb89>I
zYJ|+mRuxa}7N=~|en6M<-sebwlJ<l=yV_X+2vv0SJRnZW7!oDz?tM*Qk?>Ox;|h<B
zwFc5txLVv*xRf)___TftebD8@ynK+AZV4!8A%+5(!8Ye8Bf&tdAC#d@7&JBwE?!{#
zo+vaVKLT?`JRE0SThJ68^taz&r9kK2(eTM3f=4SZlNu*`_uNisX@@MlODMA_5Y6$B
zdzT<H-%%NBG()56;!kuj-5T8*%hMMjoI-~<=t&UvY8o1xX0qTX(JopXe+Q!n@<1)M
zBO;*474$w@Q1{KgYCT+<O3HC0T>7Yl5S4470w{+<LB;*sov1i;y<Sn{rae$GOS^&l
zZKb4h6R0Xh5}jgwC5Ab3J}t*x&>C9nJLT}Tc;4)qRi~b$kx!~UzHzzl!%Zmu*xwb4
z@S{LrCG)I3^RJ!3=nO<AB&n`AQR#g_4`2}`!G@LuNxT?<@}(Skpn4?+&fG#Uz<oVf
z`t_0fCd4)->(-X4ZCTF2MQ+_%N146kzuTe!s|{p<{`QIygvMW=VShwRjuNe^8rYI~
zS`%ip1IXFC169suMps1jsD`*M0h#RIm{kC`uiskV>LUI{S9S3DT@xFk&3qV8=dmch
zFXaN{ePQhgr|__y1uKUeD);^tmu{siZ4|1s=N;V8L8^BL=a{^gF*@HW4ShIdbkW?t
ze8~|ld9x*0?04M4eM-{kcat)^X05=hpUjbhx>W;#S@vaTvRt3*TlW>FSZ@U(tS7of
zHOPsrCoa~xK99}P$9~h8d0C*bkx1K9xR}%(I@FY)C*SD&rE-zZ@Lq|Ngl_hZ+4gcW
zGrZNSCxljas*0ry(GM$wk0vY7{`U8~<@fgPA;k)TMu+YTe^w9uj_{_vu(#^EvwI;1
zg}SdS@>vy6?qTEb4aoH#G+fS*x-~esM%7B|)+ljmlJg?ws$WUZ#`=A+>mvfqrMPqa
zMvCsu-p|DuEuUkovW%M<6zCdO&t*{QDCUj5OR@V&aO)-)sU$H?HZeGoyE4_{uAfNt
z2~J5en`7ePGjQ;UZ}4gMrbBSM@|auEin<IdPKciIsF-opb7&vp*DDA}V^s;F`E~!=
ztNRMRhV?fW{t{(rKcixmw0+>zxM9t9TW=s<-q+`FFQ2cINv7%vz?awAQ~~?W&yIVR
zC_$qVbnbXg2osw+g4-?Ly?#jsTUfa|xM;oN|H+z!o6vs%MZ+cr9an4yh|W7ots}+D
zXJ7`EN=yTDZE?_C@d#hM(E0gcUJ2+ZjUKe;c4!F&s#*PIVZ5|AKb7J>{^*tI%@&x$
zaR0DFfl*wqxZr$TLQusSaXpBlK6Q4a5N5Rq+vwUjdP9`E5M4TaseSCbVV&pFHKX%=
zKelp<H>$?fJ!(8jxSWy+)nch~&~~lmU&<DIKuD@^1H814t_~{wp)vvcQym;zhCUtP
zm+qM6f`X9*lMw93Cr4~$4+K=kcM&dEVC%|SHe@AtTtcBHE=d)oVx2!Elb;O)7sko!
zZF1Hm)N2*z+%HxduN+WomEWpXA;xvy92w45_QF03au$6?$u4=KSy#90qYY)|Oq$dq
znX{%|<1FDFhY{&cKPhzreIrCvRW5_>KxKh+nF@}zqQQ)Nu{j&}9lkd?8<u-zyBWT%
zLih81P$7LXbNyEMq-fPC<mAup=m~y{?01XgSH6_GIeZGI_2^2<CEP%fX0kbM!^OjR
zYn*AmyS1<0W`1COVYxlyfR^*D7T0(TS0m^3U$1SNG8l$CR*!HS0Kiy444n3Q_*f$+
zF?zk=x|qC1-}&t|re%&A@I;ad#BlKzUlv*%L|9uzQ}%|D0DP+<e6Q{-9K#mMQ+6Mt
z&3c{EH8wi4^y{3~Tze!0ve2%W&>ria!7z9o1e)^1UbtSqM{Dzya3W|3W8=+2D~ee#
zBPGXI?(Q^`473BvS10&J8SYVNyfT+?WtbuZnPG8z&u?~)2N+Q<vBMA;Ls|N<Up4$E
z*n#y#pn@}`8xqn(#{>N>c5xRFw~}B~Y5p9hD0Q^jrK#P*MLD+Cye4;S`fi<ME1${c
zMzD1kX&{5@OR;;`Wf-6Hpnk(<?!&&tR0SP^9-Vz%)0L#mPFkZ)gV;R%_BJO9sfOfZ
zC9J=)1%r<@I~qz($a{(zF!6Co1m<m@5<GD5Mhk#Q%}ZRgF8OPfAI5;OZh=|7<ugrM
zskiXOAJ0h8-`@whZXhYB!&@MXWjBuM60~ea3RamMq^01ZL5^0K%AXYjw<wkKP3#r!
zrf2hS%pul0%k>(E(@o$q{hYjxow<5WpF25~RMXEq?xVTR`g7-c`xn)jMFjCBlaJg#
zN(U|U3IITSkolz|>v*PMZ;uAP?8O&ADx9mA7aNfcJa655YTf6>tI@X7i<+a>_>lT$
z$(wV0bx>1|>{3^~`S>>9nik2MOGj3=s?DuGCR6V!MWGk8#@~e>Ix)uA<TjwTH@0v-
zStY-4QgV+!s@}=&<!!iO{iN*m*_y<q0_KDK1{k1o5*^r~P50}F6X&{S(|Zw|lsu+3
zKm-yD3iGGyD&g1M%-E&^WCh@8Nhb#)hf8Vh!0wazAwzI{foOwlc&Imt9myf4mO3Sz
z8NLTGciX^ZOxU5=dB<;JZ#YL9O0S&q^m?BGmCVdvM;R1gH+|m+&mMRuw7IFnqtVKZ
ziz2Ll1@`3sr}&nC@!?Q3Beu>nY_xLQplnuNEAi9qUa4HR%c#sTakCO9UCxh7DW7~;
zo&~ul{-lgv5eSUQSL%65{c5CSQ@W|(-p=zKSL;)Ax##)@)o2-muhSQDm0{Y}80Zdc
z=d>r_(Of~1g!BCWJV?1-QAIx$icr-6>ZFWGh-KU9CgU$O*x0`1I1$oNnv7qW#e{WM
zr{XIrpn1tu<GlY=V+Hci>YR&|@j|r00%}zfTePcV!-DALD=qeRGCFUlp5V#^eco#m
zV2Yj}M0I$8h7#z^(PcvhN+!pzw@4w)mR>*?9MgWkxe>d6EyXxrvA3s}6P+PX`@Zn?
zf{g3CeU%BQ?!Qr0SC;?+pbFKTT8~Bh&2^G<vH_Yn36e(cn%<+(n}UL$JnUR{ce2*b
zWhbVfa^}3>c}?3@JeN(d<~Ozcc!<ThZhLyU?+z_s|3tLnA=u%exhMXfi$OWshv<J#
zN_B0pL-rmjn_16o3(V4az95_X9nqw3H`wO%sc1ASSaqVj^U3ltjZvDI9#lDF5okS|
zOnN?@I_x+xD$whY^3f}?K;1gtL{<u`!}C+$d4qp|xFD;sqU$Uv%-6`|o(KLn@ulyQ
z6-GB>sDJpQ#}=pCVm0}GK|fJo;43j(!;7q6W;x@Z<1nGxBh@|<e%MMFR`QkZp7gf)
z+Jc&U&%tCU=&;|t0;8(sT}t3z;^aezEj^Z$fA+g^DY~!D9&O(qpQnBTls|EXr4Ln0
zo<0S!>LF%`ND50-qcz%c7+<80w~DO4cEYq?$40o(mtRs79jQMzlhp25#ec2MRDLVQ
zsAr97Wyh%`Kzv3x;WFuo?BM(=rUV(%Vq~*e#A1(@TAb1>C>HD+O0&sTI=Ky*ecTi#
z+)+lE8gTN+UbDrp{ZNZ}RBzp>qJta{gt*8W%Z;bpVaI5)IiE+aK8CUL{}r!5Fav!}
ztBv_@rG2eW|9U}PQxv?sY7HwL6Gj_k>8m6bj)T&;IN%WkD=q9F^<d9KuLlJZyJ@1f
zT42;Mz8X*DU>bV96+IV_uSmQ?=cI_6CbA6=^`jspy}oafM+bInAa0qXc*L7p_)cNn
zbnS6?Z@g?lRsKA`^H5s6P}tB=RQoZ}<t}<Pn})|xqcv6qX3X_ch{b7v<zZ5J5tq*W
z`Iz_f(~WIw2OBcdY#H9)uCQ(L?f!Ffhv!lK&<<%IeW%JW0LHE9RymmfB_v1LlVyv`
zV%K?p!*&N($<XOlb*_ptK>-MaZV)MpQd`lKE)DWnChAdqjrKXRc)<c3TXes!L={_$
zdzWwK^zl&j^2&5PEHgG_G7(mjHCls+Ng)+3vPrn-fhY`*KimqRsBupjEg^bFjXFrU
zAHDha&N%t+b_u`wOF$eiZ5&L@0VOzBvXAJ{+gd(6?XR^5`n6>G2VK6J)UI;BqWA&q
zy??1~0We-{d{tt=-!SJF0Q@83$?$@Y(e*d}JL>)g)&Klk(JcFi7rwwc{lI4U$EAWM
zb#%|%p@V-yTl{1TU#`%FJnNW)Kl+*vv_weK_5SN44jh#{Jm7ZD($XIMt$%*0x1bf`
z&dSt*i1`b_{qfZll#aA$Ltno<{_C4+ms0ca^T#<J%0Cd@4js7!b^)!Q(yz|F|9qz3
zHSpEVVL1m+slSt({o6XL1QhsGG<yH})nAY419$>2b<)rL9ajH+yC(q<Ju3h^uon)j
z$NuHX%g@qS?*#lkq2Rz-^~dEUkY?RZ(>{<K{_97$-he!gh3Qus_Rl5Ve;hABo5%ka
y<Ii>Z-(notg8y5L|1HLW6*zGD|7mAz%L{V!pLU+ADLe%Jss5&^T&VQG|Nj7|Zhp%E

literal 0
HcmV?d00001

diff --git a/docs/codeql/reusables/vs-code-basic-instructions/find-database.rst b/docs/codeql/reusables/vs-code-basic-instructions/find-database.rst
new file mode 100644
index 00000000000..f68b666e28b
--- /dev/null
+++ b/docs/codeql/reusables/vs-code-basic-instructions/find-database.rst
@@ -0,0 +1,27 @@
+Finding a CodeQL database to experiment with
+--------------------------------------------
+
+Before you start writing queries for |language-text| code, you need a CodeQL database to run them against. The simplest way to do this is to download a database for a repository that uses |language-text| directly from GitHub.com.
+
+#. In Visual Studio Code, click the **QL** icon |codeql-ext-icon| in the left sidebar to display the CodeQL extension. 
+
+#. Click **From GitHub** or the GitHub logo |github-db| at the top of the CodeQL extension to open an entry field.
+
+#. Copy the URL for the repository into the field and press the keyboard **Enter** key. For example, |example-url|.
+
+#. Optionally, if the repository has more than one CodeQL database available, select |language-code| to download the database created from the |language-text| code. 
+
+Information about the download progress for the database is shown in the bottom right corner of Visual Studio Code. When the download is complete, the database is shown with a check mark in the **Databases** section of the CodeQL extension.
+
+.. image:: ../images/codeql-for-visual-studio-code/database-selected.png
+       :align: center
+       :width: 500
+
+.. |codeql-ext-icon| image:: ../images/codeql-for-visual-studio-code/codeql-extension-icon.png
+  :width: 20
+  :alt: Icon for the CodeQL extension.
+
+.. |github-db| image:: ../images/codeql-for-visual-studio-code/add-codeql-db-github.png
+  :width: 20
+  :alt: Icon for the CodeQL extension option to download a CodeQL database from GitHub.
+
diff --git a/docs/codeql/reusables/vs-code-basic-instructions/note-store-quick-query.rst b/docs/codeql/reusables/vs-code-basic-instructions/note-store-quick-query.rst
new file mode 100644
index 00000000000..3638b37d35e
--- /dev/null
+++ b/docs/codeql/reusables/vs-code-basic-instructions/note-store-quick-query.rst
@@ -0,0 +1,5 @@
+.. pull-quote::
+
+   Note
+
+   If you want to move your experimental query somewhere more permanent, you need to move the whole ``Quick Queries`` directory. The directory is a CodeQL pack with a ``qlpack.yml`` file that defines the content as queries for |language-text| CodeQL databases. For more information about CodeQL packs, see ":ref:`Working with CodeQL packs in Visual Studio Code <working-with-codeql-packs-in-visual-studio-code>`."
\ No newline at end of file
diff --git a/docs/codeql/reusables/vs-code-basic-instructions/run-quick-query-1.rst b/docs/codeql/reusables/vs-code-basic-instructions/run-quick-query-1.rst
new file mode 100644
index 00000000000..5f7d077068d
--- /dev/null
+++ b/docs/codeql/reusables/vs-code-basic-instructions/run-quick-query-1.rst
@@ -0,0 +1,7 @@
+The CodeQL extension for Visual Studio Code adds several **CodeQL:** commands to the command palette including **Quick Query**, which you can use to run a query without any set up.
+
+#. From the command palette in Visual Studio Code, select **CodeQL: Quick Query**.
+
+#. After a momment, a new tab *quick-query.ql* is opened, ready for you to write a query for your currently selected CodeQL database (here a |language-code| database).
+
+   |image-quick-query|
\ No newline at end of file
diff --git a/docs/codeql/reusables/vs-code-basic-instructions/run-quick-query-2.rst b/docs/codeql/reusables/vs-code-basic-instructions/run-quick-query-2.rst
new file mode 100644
index 00000000000..0210c84b156
--- /dev/null
+++ b/docs/codeql/reusables/vs-code-basic-instructions/run-quick-query-2.rst
@@ -0,0 +1,7 @@
+4. Save the query in its default location (a temporary "Quick Queries" directory under the workspace for ``GitHub.vscode-codeql/quick-queries``).
+
+#. Right-click in the query window and select **CodeQL: Run Query**. (Alternatively, run the command from the Command Palette.)
+
+   The query will take a few moments to return results. When the query completes, the results are displayed in a CodeQL Query Results window, alongside the query window.
+
+   The query results are listed in two columns, corresponding to the two expressions in the ``select`` clause of the query. The first column corresponds to the expression |expression| and is linked to the location in the source code of the project where |expression| occurs. The second column is the alert message.
\ No newline at end of file
diff --git a/docs/codeql/reusables/setup-to-run-queries.rst b/docs/codeql/reusables/vs-code-basic-instructions/setup-to-run-queries.rst
similarity index 100%
rename from docs/codeql/reusables/setup-to-run-queries.rst
rename to docs/codeql/reusables/vs-code-basic-instructions/setup-to-run-queries.rst

From 9507dc15fd201a9a9f9b9a9f791017bbe4ffdd06 Mon Sep 17 00:00:00 2001
From: Michael Nebel <michaelnebel@github.com>
Date: Mon, 28 Nov 2022 15:15:58 +0100
Subject: [PATCH 0774/1420] Java: Remove un-needed qlfrag files.

---
 .../src/utils/flowtestcasegenerator/testModelsFooter.qlfrag  | 3 ---
 .../src/utils/flowtestcasegenerator/testModelsHeader.qlfrag  | 5 -----
 2 files changed, 8 deletions(-)
 delete mode 100644 java/ql/src/utils/flowtestcasegenerator/testModelsFooter.qlfrag
 delete mode 100644 java/ql/src/utils/flowtestcasegenerator/testModelsHeader.qlfrag

diff --git a/java/ql/src/utils/flowtestcasegenerator/testModelsFooter.qlfrag b/java/ql/src/utils/flowtestcasegenerator/testModelsFooter.qlfrag
deleted file mode 100644
index 77bc78669d2..00000000000
--- a/java/ql/src/utils/flowtestcasegenerator/testModelsFooter.qlfrag
+++ /dev/null
@@ -1,3 +0,0 @@
-      ]
-  }
-}
diff --git a/java/ql/src/utils/flowtestcasegenerator/testModelsHeader.qlfrag b/java/ql/src/utils/flowtestcasegenerator/testModelsHeader.qlfrag
deleted file mode 100644
index fb33b7eb5db..00000000000
--- a/java/ql/src/utils/flowtestcasegenerator/testModelsHeader.qlfrag
+++ /dev/null
@@ -1,5 +0,0 @@
-class SummaryModelTest extends SummaryModelCsv {
-  override predicate row(string row) {
-    row =
-      [
-        //"package;type;overrides;name;signature;ext;inputspec;outputspec;kind;provenance"

From 48290c95a79e78d3564282631b06a132f45518a0 Mon Sep 17 00:00:00 2001
From: Michael Nebel <michaelnebel@github.com>
Date: Mon, 28 Nov 2022 15:17:32 +0100
Subject: [PATCH 0775/1420] Java: Update the flow test case generator to emit
 data extension like model data.

---
 .../FlowTestCaseSupportMethods.qll            | 20 ++++++++++---------
 .../GenerateFlowTestCase.qll                  |  6 +++---
 2 files changed, 14 insertions(+), 12 deletions(-)

diff --git a/java/ql/src/utils/flowtestcasegenerator/FlowTestCaseSupportMethods.qll b/java/ql/src/utils/flowtestcasegenerator/FlowTestCaseSupportMethods.qll
index c3a47b5adea..80de2c6068d 100644
--- a/java/ql/src/utils/flowtestcasegenerator/FlowTestCaseSupportMethods.qll
+++ b/java/ql/src/utils/flowtestcasegenerator/FlowTestCaseSupportMethods.qll
@@ -97,12 +97,12 @@ abstract class SupportMethod extends string {
   int getPriority() { result = 50 }
 
   /**
-   * Gets the CSV row describing this support method if it is needed to set up the output for this test.
+   * Gets the data extension row describing this support method if it is needed to set up the output for this test.
    *
-   * For example, `newWithMapValue` will propagate a value from `Argument[0]` to `MapValue of ReturnValue`, and `getMapValue`
+   * For example, `newWithMapValue` will propagate a value from `Argument[0]` to `ReturnValue.MapValue`, and `getMapValue`
    * will do the opposite.
    */
-  string getCsvModel() { none() }
+  string getDataExtensionModel() { none() }
 }
 
 /**
@@ -162,10 +162,11 @@ private class DefaultGetMethod extends GetMethod {
     result = "Object get" + contentToken(c) + "Default(Object container) { return null; }"
   }
 
-  override string getCsvModel() {
+  override string getDataExtensionModel() {
     result =
-      "generatedtest;Test;false;" + this.getName() + ";(Object);;Argument[0]." +
-        getComponentSpec(SummaryComponent::content(c)) + ";ReturnValue;value;manual"
+      "\"generatedtest\", \"Test\", False, \"" + this.getName() +
+        "\", \"(Object)\", \"\", \"Argument[0]." + getComponentSpec(SummaryComponent::content(c)) +
+        "\", \"ReturnValue\", \"value\", \"manual\""
   }
 }
 
@@ -358,10 +359,11 @@ private class DefaultGenMethod extends GenMethod {
     result = "Object newWith" + contentToken(c) + "Default(Object element) { return null; }"
   }
 
-  override string getCsvModel() {
+  override string getDataExtensionModel() {
     result =
-      "generatedtest;Test;false;" + this.getName() + ";(Object);;Argument[0];ReturnValue." +
-        getComponentSpec(SummaryComponent::content(c)) + ";value;manual"
+      "\"generatedtest\", \"Test\", False, \"" + this.getName() +
+        "\", \"(Object)\", \"\", \"Argument[0]\", \"ReturnValue." +
+        getComponentSpec(SummaryComponent::content(c)) + "\", \"value\", \"manual\""
   }
 }
 
diff --git a/java/ql/src/utils/flowtestcasegenerator/GenerateFlowTestCase.qll b/java/ql/src/utils/flowtestcasegenerator/GenerateFlowTestCase.qll
index 613ea19753f..5d9aa884ecc 100644
--- a/java/ql/src/utils/flowtestcasegenerator/GenerateFlowTestCase.qll
+++ b/java/ql/src/utils/flowtestcasegenerator/GenerateFlowTestCase.qll
@@ -85,12 +85,12 @@ SupportMethod getASupportMethod() {
 }
 
 /**
- * Returns a CSV specification of the taint-/value-propagation behavior of a test support method (`get` or `newWith` method).
+ * Returns a data extension specification of the taint-/value-propagation behavior of a test support method (`get` or `newWith` method).
  */
-query string getASupportMethodModel() { result = getASupportMethod().getCsvModel() }
+query string getASupportMethodModel() { result = getASupportMethod().getDataExtensionModel() }
 
 /**
- * Gets a Java file body testing all requested CSV rows against whatever classes and methods they resolve against.
+ * Gets a Java file body testing all requested Models as Data rows against whatever classes and methods they resolve against.
  */
 query string getTestCase() {
   result =

From 984124b3b5fbe7719e4fb23958ca4cb5f7306815 Mon Sep 17 00:00:00 2001
From: Michael Nebel <michaelnebel@github.com>
Date: Mon, 28 Nov 2022 15:53:52 +0100
Subject: [PATCH 0776/1420] Java: Improve flow test case generator to emit a
 data extensions YAML file and qlpack file if needed.

---
 .../flowtestcasegenerator/FlowTestCase.qll    |  4 +-
 .../GenerateFlowTestCase.py                   | 51 +++++++++++++++----
 2 files changed, 43 insertions(+), 12 deletions(-)

diff --git a/java/ql/src/utils/flowtestcasegenerator/FlowTestCase.qll b/java/ql/src/utils/flowtestcasegenerator/FlowTestCase.qll
index bab34473ed7..de4bae52065 100644
--- a/java/ql/src/utils/flowtestcasegenerator/FlowTestCase.qll
+++ b/java/ql/src/utils/flowtestcasegenerator/FlowTestCase.qll
@@ -42,11 +42,11 @@ predicate summaryModelRow(
 }
 
 /**
- * Gets a CSV row for which a test has been requested, but `SummaryModelCsv.row` does not hold of it.
+ * Gets a CSV row for which a test has been requested, but where a summary has not already been defined.
  */
 query string missingSummaryModelCsv() {
   any(TargetSummaryModelCsv target).row(result) and
-  not any(SummaryModelCsv model).row(result)
+  not summaryModelRow(_, _, _, _, _, _, _, _, _, _, result)
 }
 
 /**
diff --git a/java/ql/src/utils/flowtestcasegenerator/GenerateFlowTestCase.py b/java/ql/src/utils/flowtestcasegenerator/GenerateFlowTestCase.py
index 38d90830bf5..65c485c19cc 100755
--- a/java/ql/src/utils/flowtestcasegenerator/GenerateFlowTestCase.py
+++ b/java/ql/src/utils/flowtestcasegenerator/GenerateFlowTestCase.py
@@ -24,7 +24,9 @@ contain the needed classes.
 
 If --force is present, existing files may be overwritten.
 
-Requirements: `mvn` and `codeql` should both appear on your path.
+Requirements:
+ - `mvn` and `codeql` should both appear on your path.
+ - `--additional-packs /path/to/semmle-code/ql` should be added to your `.config/codeql/config` file.
 
 After test generation completes, any lines in specsToTest.csv that didn't produce tests are output.
 If this happens, check the spelling of class and method names, and the syntax of input and output specifications.
@@ -52,10 +54,12 @@ except Exception as e:
 
 resultJava = os.path.join(sys.argv[3], "Test.java")
 resultQl = os.path.join(sys.argv[3], "test.ql")
+resultYml = os.path.join(sys.argv[3], "test.model.yml")
+resultPack = os.path.join(sys.argv[3], "qlpack.yml")
 
-if not force and (os.path.exists(resultJava) or os.path.exists(resultQl)):
-    print("Won't overwrite existing files '%s' or '%s'" %
-          (resultJava, resultQl), file=sys.stderr)
+if not force and (os.path.exists(resultJava) or os.path.exists(resultQl) or os.path.exists(resultYml) or os.path.exists(resultPack)):
+    print("Won't overwrite existing files '%s', '%s', '%s' or '%s'." %
+          (resultJava, resultQl, resultYml, resultPack), file=sys.stderr)
     sys.exit(1)
 
 workDir = tempfile.mkdtemp()
@@ -127,7 +131,13 @@ queryDir = os.path.join(workDir, "query")
 os.makedirs(queryDir)
 qlFile = os.path.join(queryDir, "gen.ql")
 with open(os.path.join(queryDir, "qlpack.yml"), "w") as f:
-    f.write("name: test-generation-query\nversion: 0.0.0\nlibraryPathDependencies: codeql/java-queries")
+    f.write(f"""name: test-generation-query
+version: 0.0.0
+dependencies:
+  codeql/java-all: '*'
+  codeql/java-queries: '*'
+""")
+
 with open(qlFile, "w") as f:
     f.write(
         "import java\nimport utils.flowtestcasegenerator.GenerateFlowTestCase\n\nclass GenRow extends TargetSummaryModelCsv {\n\n\toverride predicate row(string r) {\n\t\tr = [\n")
@@ -207,11 +217,32 @@ def copyfile(fromName, toFileHandle):
 
 with open(resultQl, "w") as f:
     copyfile("testHeader.qlfrag", f)
-    if len(supportModelRows) != 0:
-        copyfile("testModelsHeader.qlfrag", f)
-        f.write(", ".join('"%s"' %
-                          modelSpecRow[0].strip() for modelSpecRow in supportModelRows))
-        copyfile("testModelsFooter.qlfrag", f)
+
+if len(supportModelRows) != 0:
+    # Make a test extension file
+    with open(resultYml, "w") as f:
+        models = "\n".join('      - [%s]' %
+                          modelSpecRow[0].strip() for modelSpecRow in supportModelRows)
+        dataextensions = f"""extensions:
+  - addsTo:
+      pack: codeql/java-tests
+      extensible: extSummaryModel
+    data:
+{models}
+"""
+        f.write(dataextensions)
+    # Make a qlpack file such that the extension will be picked up
+    with open(resultPack, "w") as f:
+        f.write(f"""name: example-test-pack
+version: 0.0.0
+extractor: java
+dependencies:
+  codeql/java-all: '*'
+  codeql/java-queries: '*'
+  codeql/java-tests: '*'
+dataExtensions:
+  - test.model.yml
+""")
 
 # Make an empty .expected file, since this is an inline-exectations test
 with open(os.path.join(sys.argv[3], "test.expected"), "w"):

From d2c458c06640aa568aff7a4ae92f4a2224b5d516 Mon Sep 17 00:00:00 2001
From: Michael Nebel <michaelnebel@github.com>
Date: Tue, 29 Nov 2022 13:05:18 +0100
Subject: [PATCH 0777/1420] Java/C#: Correction of autogenerated comment(s)
 produced by the model generator.

---
 csharp/ql/lib/ext/generated/dotnet_runtime.model.yml         | 3 +--
 java/ql/lib/ext/generated/org.apache.commons.io.model.yml    | 3 +--
 .../scripts/models-as-data/generate_flow_model_extensions.py | 5 ++---
 3 files changed, 4 insertions(+), 7 deletions(-)

diff --git a/csharp/ql/lib/ext/generated/dotnet_runtime.model.yml b/csharp/ql/lib/ext/generated/dotnet_runtime.model.yml
index a396d121591..9d4afaacbf7 100644
--- a/csharp/ql/lib/ext/generated/dotnet_runtime.model.yml
+++ b/csharp/ql/lib/ext/generated/dotnet_runtime.model.yml
@@ -1,6 +1,5 @@
- 
 # THIS FILE IS AN AUTO-GENERATED MODELS AS DATA FILE. DO NOT EDIT.
-# Definitions of taint steps in the dotnet_runtime framework.
+# Definitions of models for the dotnet_runtime framework.
 
 extensions:
 
diff --git a/java/ql/lib/ext/generated/org.apache.commons.io.model.yml b/java/ql/lib/ext/generated/org.apache.commons.io.model.yml
index f7af89c8a1b..f18303df59f 100644
--- a/java/ql/lib/ext/generated/org.apache.commons.io.model.yml
+++ b/java/ql/lib/ext/generated/org.apache.commons.io.model.yml
@@ -1,6 +1,5 @@
- 
 # THIS FILE IS AN AUTO-GENERATED MODELS AS DATA FILE. DO NOT EDIT.
-# Definitions of taint steps in the org.apache.commons.io framework.
+# Definitions of models for the org.apache.commons.io framework.
 
 extensions:
   - addsTo:
diff --git a/misc/scripts/models-as-data/generate_flow_model_extensions.py b/misc/scripts/models-as-data/generate_flow_model_extensions.py
index 5367f87b1f6..c06e4eaeb62 100644
--- a/misc/scripts/models-as-data/generate_flow_model_extensions.py
+++ b/misc/scripts/models-as-data/generate_flow_model_extensions.py
@@ -173,9 +173,8 @@ Requirements: `codeql` should both appear on your path.
         else:
             negativeSummaryAddsTo = ""
         
-        return f""" 
-# THIS FILE IS AN AUTO-GENERATED MODELS AS DATA FILE. DO NOT EDIT.
-# Definitions of taint steps in the {self.friendlyname} framework.
+        return f"""# THIS FILE IS AN AUTO-GENERATED MODELS AS DATA FILE. DO NOT EDIT.
+# Definitions of models for the {self.friendlyname} framework.
 
 extensions:
 {sinkAddsTo}

From a3a68fe83d25528f96ad2d2b9009cbae70d613a1 Mon Sep 17 00:00:00 2001
From: Paolo Tranquilli <redsun82@github.com>
Date: Tue, 29 Nov 2022 13:09:02 +0100
Subject: [PATCH 0778/1420] Tweak comment in `incremental-cache` action

---
 .github/actions/incremental-cache/action.yml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/actions/incremental-cache/action.yml b/.github/actions/incremental-cache/action.yml
index 20dd41d0ca8..2ea62719886 100644
--- a/.github/actions/incremental-cache/action.yml
+++ b/.github/actions/incremental-cache/action.yml
@@ -39,6 +39,6 @@ runs:
       with:
         path: ${{ inputs.path }}
         key: ${{ inputs.key }}-${{ github.ref_name }}-${{ github.sha }} # just fill on main
-        restore-keys: | # restore from another random commit, to speed up compilation.
+        restore-keys: | # restore the latest cache if the exact cache is unavailable, to speed up compilation.
           ${{ inputs.key }}-${{ github.ref_name }}-
           ${{ inputs.key }}-main-

From 52cf27653f5a5a68595146f24d4d8b72392db333 Mon Sep 17 00:00:00 2001
From: Arthur Baars <aibaars@github.com>
Date: Tue, 29 Nov 2022 13:12:14 +0100
Subject: [PATCH 0779/1420] Ruby: fix upgrade script

---
 .../1199e154f5e9b3560297633c6ebb4dfe0b191ae4/upgrade.properties | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/ruby/downgrades/1199e154f5e9b3560297633c6ebb4dfe0b191ae4/upgrade.properties b/ruby/downgrades/1199e154f5e9b3560297633c6ebb4dfe0b191ae4/upgrade.properties
index f1b4e1fd9f7..443afb8639f 100644
--- a/ruby/downgrades/1199e154f5e9b3560297633c6ebb4dfe0b191ae4/upgrade.properties
+++ b/ruby/downgrades/1199e154f5e9b3560297633c6ebb4dfe0b191ae4/upgrade.properties
@@ -9,4 +9,4 @@ ruby_rational_def.rel:           run ruby_rational_def.qlo
 ruby_call_method.rel: delete
 ruby_complex_def.rel: delete
 ruby_block_parameters_locals.rel: delete
-ruby_call_operator: delete
+ruby_call_operator.rel: delete

From bf023b0aed08f72cbe4d900dc0344045df02728f Mon Sep 17 00:00:00 2001
From: Tony Torralba <atorralba@users.noreply.github.com>
Date: Tue, 29 Nov 2022 13:33:27 +0100
Subject: [PATCH 0780/1420] Use dominance in path injection sanitizer to avoid
 FNs

---
 .../codeql/swift/security/PathInjection.qll    | 18 ++++++++++++++----
 .../Security/CWE-022/testPathInjection.swift   |  2 +-
 2 files changed, 15 insertions(+), 5 deletions(-)

diff --git a/swift/ql/lib/codeql/swift/security/PathInjection.qll b/swift/ql/lib/codeql/swift/security/PathInjection.qll
index 5b81850c71d..834a4254141 100644
--- a/swift/ql/lib/codeql/swift/security/PathInjection.qll
+++ b/swift/ql/lib/codeql/swift/security/PathInjection.qll
@@ -1,9 +1,12 @@
 /** Provides classes and predicates to reason about path injection vulnerabilities. */
 
 import swift
+private import codeql.swift.controlflow.BasicBlocks
+private import codeql.swift.controlflow.ControlFlowGraph
 private import codeql.swift.dataflow.DataFlow
 private import codeql.swift.dataflow.ExternalFlow
 private import codeql.swift.dataflow.TaintTracking
+private import codeql.swift.generated.ParentChild
 private import codeql.swift.frameworks.StandardLibrary.FilePath
 
 /** A data flow sink for path injection vulnerabilities. */
@@ -32,16 +35,23 @@ private class DefaultPathInjectionSink extends PathInjectionSink {
 
 private class DefaultPathInjectionSanitizer extends PathInjectionSanitizer {
   DefaultPathInjectionSanitizer() {
-    // This is a simple implementation prone to FNs by sanitizing too many nodes.
+    // This is a simplified implementation.
     // TODO: Implement a complete path sanitizer when Guards are available.
-    exists(CallExpr starts, CallExpr normalize |
+    exists(CallExpr starts, CallExpr normalize, DataFlow::Node validated |
       starts.getStaticTarget().getName() = "starts(with:)" and
       starts.getStaticTarget().getEnclosingDecl() instanceof FilePath and
       normalize.getStaticTarget().getName() = "lexicallyNormalized()" and
       normalize.getStaticTarget().getEnclosingDecl() instanceof FilePath
     |
-      TaintTracking::localTaint(this, DataFlow::exprNode(normalize.getQualifier())) and
-      DataFlow::localExprFlow(normalize, starts.getQualifier())
+      TaintTracking::localTaint(validated, DataFlow::exprNode(normalize.getQualifier())) and
+      DataFlow::localExprFlow(normalize, starts.getQualifier()) and
+      DataFlow::localFlow(validated, this) and
+      exists(ConditionBlock bb, SuccessorTypes::BooleanSuccessor b |
+        bb.getANode().getNode().asAstNode().(IfStmt).getACondition() = getImmediateParent*(starts) and
+        b.getValue() = true
+      |
+        bb.controls(this.getCfgNode().getBasicBlock(), b)
+      )
     )
   }
 }
diff --git a/swift/ql/test/query-tests/Security/CWE-022/testPathInjection.swift b/swift/ql/test/query-tests/Security/CWE-022/testPathInjection.swift
index 9eb9c5ca6bb..10cf6e73e92 100644
--- a/swift/ql/test/query-tests/Security/CWE-022/testPathInjection.swift
+++ b/swift/ql/test/query-tests/Security/CWE-022/testPathInjection.swift
@@ -196,5 +196,5 @@ func testSanitizers() {
     if (filePath.lexicallyNormalized().starts(with: FilePath(stringLiteral: "/safe"))) {
         fm.contents(atPath: remoteString) // Safe
     }
-    fm.contents(atPath: remoteString) // $ MISSING: $ hasPathInjection=191
+    fm.contents(atPath: remoteString) // $ hasPathInjection=191
 }

From 0def31a2ce2573d0c48f64f813d8ecf673ef4d1c Mon Sep 17 00:00:00 2001
From: Felicity Chapman <felicitymay@github.com>
Date: Tue, 29 Nov 2022 12:37:10 +0000
Subject: [PATCH 0781/1420] Update Go article

---
 .../basic-query-for-cpp-code.rst              |   2 +-
 .../basic-query-for-csharp-code.rst           |   2 +-
 .../basic-query-for-go-code.rst               |  71 +++++++-----------
 .../basic-query-for-java-code.rst             |   4 +-
 .../basic-go-query-results-1.png              | Bin 0 -> 246541 bytes
 .../basic-go-query-results-2.png              | Bin 0 -> 277416 bytes
 .../quick-query-tab-go.png                    | Bin 0 -> 67322 bytes
 .../run-quick-query-2.rst                     |   2 +-
 8 files changed, 33 insertions(+), 48 deletions(-)
 create mode 100644 docs/codeql/images/codeql-for-visual-studio-code/basic-go-query-results-1.png
 create mode 100644 docs/codeql/images/codeql-for-visual-studio-code/basic-go-query-results-2.png
 create mode 100644 docs/codeql/images/codeql-for-visual-studio-code/quick-query-tab-go.png

diff --git a/docs/codeql/codeql-language-guides/basic-query-for-cpp-code.rst b/docs/codeql/codeql-language-guides/basic-query-for-cpp-code.rst
index b49ebf385b1..47a762b4d3e 100644
--- a/docs/codeql/codeql-language-guides/basic-query-for-cpp-code.rst
+++ b/docs/codeql/codeql-language-guides/basic-query-for-cpp-code.rst
@@ -127,4 +127,4 @@ Further reading
 
 .. |image-quick-query| image:: ../images/codeql-for-visual-studio-code/quick-query-tab-cpp.png
 
-.. |expression| replace:: ``ifstmt``
+.. |result-col-1|  replace:: The first column corresponds to the expression ``ifstmt`` and is linked to the location in the source code of the project where ``ifstmt`` occurs.
diff --git a/docs/codeql/codeql-language-guides/basic-query-for-csharp-code.rst b/docs/codeql/codeql-language-guides/basic-query-for-csharp-code.rst
index e9a062d9e0f..b8749d1c3f8 100644
--- a/docs/codeql/codeql-language-guides/basic-query-for-csharp-code.rst
+++ b/docs/codeql/codeql-language-guides/basic-query-for-csharp-code.rst
@@ -131,4 +131,4 @@ Further reading
 
 .. |image-quick-query| image:: ../images/codeql-for-visual-studio-code/quick-query-tab-csharp.png
 
-.. |expression| replace:: ``ifstmt``
\ No newline at end of file
+.. |result-col-1|  replace:: The first column corresponds to the expression ``ifstmt`` and is linked to the location in the source code of the project where ``ifstmt`` occurs.
diff --git a/docs/codeql/codeql-language-guides/basic-query-for-go-code.rst b/docs/codeql/codeql-language-guides/basic-query-for-go-code.rst
index 15ae9caee7d..6280cec234f 100644
--- a/docs/codeql/codeql-language-guides/basic-query-for-go-code.rst
+++ b/docs/codeql/codeql-language-guides/basic-query-for-go-code.rst
@@ -3,7 +3,9 @@
 Basic query for Go code
 =======================
 
-Learn to write and run a simple CodeQL query using LGTM.
+Learn to write and run a simple CodeQL query using Visual Studio Code with the CodeQL extension.
+
+.. include:: ../reusables/vs-code-basic-instructions/setup-to-run-queries.rst
 
 About the query
 ---------------
@@ -22,29 +24,17 @@ This is problematic because the receiver argument is passed by value, not by ref
 
 For further information on using methods on values or pointers in Go, see the `Go FAQ <https://golang.org/doc/faq#methods_on_values_or_pointers>`__.
 
-Running the query
------------------
+.. include:: ../reusables/vs-code-basic-instructions/find-database.rst
 
-#. In the main search box on LGTM.com, search for the project you want to query. For tips, see `Searching <https://lgtm.com/help/lgtm/searching>`__.
+Running a quick query
+---------------------
 
-#. Click the project in the search results.
+.. include:: ../reusables/vs-code-basic-instructions/run-quick-query-1.rst
 
-#. Click **Query this project**.
-
-   This opens the query console. (For information about using this, see `Using the query console <https://lgtm.com/help/lgtm/using-query-console>`__.)
-
-   .. pull-quote::
-
-      Note
-
-      Alternatively, you can go straight to the query console by clicking **Query console** (at the top of any page), selecting **Go** from the **Language** drop-down list, then choosing one or more projects to query from those displayed in the **Project** drop-down list.
-
-#. Copy the following query into the text box in the query console:
+#. In the quick query tab, delete ``select ""`` and paste the following query beneath the import statement ``import go``.
 
    .. code-block:: ql
 
-      import go
-
       from Method m, Variable recv, Write w, Field f
       where
         recv = m.getReceiver() and
@@ -52,34 +42,17 @@ Running the query
         not recv.getType() instanceof PointerType
       select w, "This update to " + f + " has no effect, because " + recv + " is not a pointer."
 
-   LGTM checks whether your query compiles and, if all is well, the **Run** button changes to green to indicate that you can go ahead and run the query.
+.. include:: ../reusables/vs-code-basic-instructions/run-quick-query-2.rst
 
-#. Click **Run**.
+.. image:: ../images/codeql-for-visual-studio-code/basic-go-query-results-1.png
+   :align: center
 
-   The name of the project you are querying, and the ID of the most recently analyzed commit to the project, are listed below the query box. To the right of this is an icon that indicates the progress of the query operation:
+If any matching code is found, click a link in the ``w`` column to view it in the code viewer.
 
-   .. image:: ../images/query-progress.png
-       :align: center
+.. image:: ../images/codeql-for-visual-studio-code/basic-go-query-results-2.png
+   :align: center
 
-   .. pull-quote::
-
-      Note
-
-      Your query is always run against the most recently analyzed commit to the selected project.
-
-   The query will take a few moments to return results. When the query completes, the results are displayed below the project name. The query results are listed in two columns, corresponding to the two expressions in the ``select`` clause of the query. The first column corresponds to ``w``, which is the location in the source code where the receiver ``recv`` is modified. The second column is the alert message.
-
-   ➤ `Example query results <https://lgtm.com/query/6221190009056970603/>`__
-
-   .. pull-quote::
-
-      Note
-
-      An ellipsis (…) at the bottom of the table indicates that the entire list is not displayed—click it to show more results.
-
-#. If any matching code is found, click a link in the ``w`` column to view it in the code viewer.
-
-   The matching ``w`` is highlighted with a yellow background in the code viewer. If any code in the file also matches a query from the standard query library for that language, you will see a red alert message at the appropriate point within the code.
+.. include:: ../reusables/vs-code-basic-instructions/note-store-quick-query.rst
 
 About the query structure
 ~~~~~~~~~~~~~~~~~~~~~~~~~
@@ -144,10 +117,20 @@ To exclude these values:
 
    There are now fewer results because value methods that return their receiver variable are no longer reported.
 
-➤ `See this in the query console <https://lgtm.com/query/9110448975027954322/>`__
-
 Further reading
 ---------------
 
 .. include:: ../reusables/go-further-reading.rst
 .. include:: ../reusables/codeql-ref-tools-further-reading.rst
+
+.. Article-specific substitutions for the reusables used in docs/codeql/reusables/vs-code-basic-instructions
+
+.. |language-text| replace:: Go
+
+.. |language-code| replace:: ``go``
+
+.. |example-url| replace:: https://github.com/go-gorm/gorm
+
+.. |image-quick-query| image:: ../images/codeql-for-visual-studio-code/quick-query-tab-go.png
+
+.. |result-col-1| replace:: The first column corresponds to ``w``, which is the location in the source code where the receiver ``recv`` is modified.
diff --git a/docs/codeql/codeql-language-guides/basic-query-for-java-code.rst b/docs/codeql/codeql-language-guides/basic-query-for-java-code.rst
index 90954ad0e2c..a6b0f9ac9fb 100644
--- a/docs/codeql/codeql-language-guides/basic-query-for-java-code.rst
+++ b/docs/codeql/codeql-language-guides/basic-query-for-java-code.rst
@@ -3,7 +3,9 @@
 Basic query for Java and Kotlin code
 ====================================
 
-Learn to write and run a simple CodeQL query using LGTM.
+Learn to write and run a simple CodeQL query using Visual Studio Code with the CodeQL extension.
+
+.. include:: ../reusables/vs-code-basic-instructions/setup-to-run-queries.rst
 
 About the query
 ---------------
diff --git a/docs/codeql/images/codeql-for-visual-studio-code/basic-go-query-results-1.png b/docs/codeql/images/codeql-for-visual-studio-code/basic-go-query-results-1.png
new file mode 100644
index 0000000000000000000000000000000000000000..65a527b7d44987250f82cecb92e3cd1621c0fa15
GIT binary patch
literal 246541
zcmeFZWmr}1)&@#S#{!Y=mhSHEl#p&vknUVar*wxPAky94(jgrZlG5F0^49j<-~PU{
z_x^j1*M%%`%{8Anp7D%vkNX~jP-R6a6hu5k2nYxi8EJ7<2na+R2nZ-D_-DXRinuUB
zfFIOYiHRx8h>4LXJJ_0AS(`yXNQWjQ!Kug1VfY<B7H~mP1dvglQAtz##g9SLw1mk@
zLj_<MlYBNz>cP@QA|un%FnlH6@rt%mL%f0n3Q=neR$G0_xdP&4;w5zO_XEDemeWn4
z%f-X2p^OyI(TwzK$n3EOWBZr%Xu_#9Y8Y$lBN1UyMr)Z+7-JCPhN$qm`a#Kr&!0n}
zr=&bGng~ForXMCN+}vEQJQmR$!Q%2mWRnD}U*k5j2Pl!Rb12adz(BkT-F8m02&2Bn
z>vTehCF%5zOXnUYk0TK3u{?`c&<cU;d<pS=K(~|v1W`$pV_|-b0TMD*3SbcT`Ur2d
zL0JDOFYgp2xduhvEg5n2$yejf)d%BolTCj!Zcriq_)I?^=8$#>y}&{9A*=7WjgsLN
zFJ>16?gmAuEj%mR2ezi9*aIdLmAlS%+!rSWKMS~JcJT$fnvtWEaW@?W?#<q+VLuzP
z^B+qiKaCqeNHY=%(%eRtn-DXtz@Q-diMuIlzAmfQX?8;aDYYrYM@#PzR22Y1vfw7C
zobsLS70XYO7Bjs@5*IwEvTrf-R2sZ`*CrZeZDX#QTxNZ^IClq2c2PVUL8JZ73tTW$
ztWZCspT5HwPN|3zJBOs|ZF&<?tUNa_zactOiV~Y)#5%)d83d+2f`aVtf>~`xoF(sq
zf`R@(tHt6j1(s@b%M(vdjvp{3e??{JAkKf<AWw%xM+ZUm*5yXF87bw9M2NkQMpD!i
z`dj3}IKryND>4YY69{E@=Ay|3GzboCzZ>&R^;nLQG<s@3kq3m&eyHkTsxer}cI1I!
zRBlKv3KJo8_)cMVEhsk<ginwNTBsV}a}u=Ye*1>lG_Y{Ou-s5l@8hx|(_xd^U)f<g
z`Mo<rKYLGlgc0G#!VD>bj+!IPE{!$ee@3d-k7z8y_yPMlM4<4vGC@3iC<$#f;ygT-
zaG)}+6Z#i_pTH5}r0hLqYA0emzo3tGW7IgXaYnqwkofJVhA)PK?pK-JSkmE{-dC;a
zy3y%EC3W?E_qf9F!aNANT}?WoLClt>c_xc*7G(U9Um5%vM;%Jm|MmN?QdqfPRX9FV
zsnhMEejz?bJO@QeOpeJ{<IW@OhoefJjt!2z9n%@h+a}-ka6-C4^?(rYe+c_%IK`5W
zBZUly87R|D-?w2D#uCizoJ^PeZV25RIlPCpJV?v4n28fFEn>LiUB^M!v@w%0U&Z@b
z6#~?PFt#3^btrpXT`ESjIyhHkSIC(_{7&!oxTDu@bj@6X&zL%G+p*W9*GAWyjz*6#
zVch)%J7UnKzhi1()Pi0jC<H77kaohTfGwq+sDeOop?jf}-FRzQ#>B^jq2d#yJRkgJ
zL??Jv5q4m9@T~mKVv40XNj*Q945*%HoEV)*oOqw`AqE-?+vj#Gv(oC&zKS1=?~6xs
zVCQk<i6Ss~SE8Gu+oGGa`1U3Ei;|gIl5$mH&y?EK!j$F-j61YDntSOT-Zkqr+eynw
zE+RXuT%d3udmsa%6jmu6zh*Zr9*qa>36>)k-E$^7)CpyFy;QhJsRikxPkJ9w#w(n}
zc!M+LnX-us>L#V)pC?$ylf`S$B+zE4?OJ5xJVQn$PpF8rj~(y2`c(XJNaF>KtwyQJ
zfhv(^O72=dneu>U;j0~u>rY?R&s7yvmOjpB-$<jBnCHAGuGO_^o5!lrbli4K-#psf
z80F#F0`nHX%OT3i%+>$6oG<w0W8rEp>GW)_z4m$nmDr>Ln|77-Y4c|J3xz=mxzDdY
zIg9MUs)Y`i=d;QsGYo-joNWwj3NJ+VUG@<O#WL(NP<U&2qn$z<>6c)Z$d=5PKmrUc
zupUKcU(SiPG0(JbWNw<yb<X=xkWt7`IC0r=__@?sHgL@GHSjNRRU&jF6LAypmpFRy
zsv^`PE^%Fx+o@`)WT?!j>J*IB_|!h`2u_YPBsZWsN;nQ~U8Keg&zftSe=~>PL_UQ$
zMcG8zEZf={4o|5w(cfz>dr|wM@I}H4GzKh&dwMP{PVLqj)`~Ul1ns4od@WC%vYL0*
zJ|-q_$jj$!9Y+(*o7!FCY^wIL`8@eT^&*$bTQa@V@AYr>Uu0l)&v!O%`q|sLYVFxg
zujb}vnB=d^^tGiArK_e#@d{+wavLzWIXq-nMX}9XXFIkbO;V2hut@UJw9zbm+pvep
zrN`B}Kw4*EZQ{aui*sAk6xh_=GUC11HEvSVC!rKy5N*+F(Ug><S+7|*V`58qD1P|n
z5Jaq#MUWNVieuorLfG0ufPxyW)`NRob*ZyIv!--`cFuI}i(!aCf?)X?g6T-7+)-pj
z^gb{r5Cu%~0kfX%NacgkSY`H#e?^B#hgpY`7`>QAV0F-hXi^Xn3L%ms+QN$q=0zG^
zyk!EB$dJg-VK~ue5%dv1qf@bKcz4aKUsp3XvOL4a1Ub@}JH^c8=!FLv+nAghd%nPD
z)UUX@!Kk4ulpA5lWBkD=fE64X9>IrqnS$TXuoczoxOUkaeZ=q9<j!>c?vCuCyj@$F
z#x3!Cx^nUn|2U7m#hP90TUGlBx{tx->Q_{AT-U-UZnB17SL1C9V+w1muBz*+*~lbR
z!ah^#v3W~)6wIopQy&;?)?3e1f<oIil%K^{aObkbMX^iSsFLrXO@Qf>iYtrJ2FVk%
zUVkhXt<JH@8~8d*mu2Q@@fiDlWc3Go*@S+L&$sqB7rXD@W^)|BO`X{-9oFNk9<f-8
zIqyEF-LthRpH;43z3=UhRA|6!*mHpMJ-YtLtHh`jJJU2^H3=pj7ee&4Ua@X*AKfgw
zzPrPReF578n^kvIyLdHlQV^TfYNIea-#Ywm;bDJvKWATnPuG=zR-I;ukzldG(83#3
zMbox@Uz*ocioNihcvfMNVQI+#LwTZJ%69ZZAWJSzwrOy2@Xh6y!=+|dFJfPV8K1g)
z4mfty=LA=0RYzN%aNelXN%-;Dnuc_hFEceH)oUL*Z}N6O%zyM3Ge8YTy(C89nNT$|
zc;&2qzg_#L{`G4CFZv6uKKs%2NDgxjxVN}9u+;4cJE7QZz4!Bu6OX2+w9|#DlQ#vI
z)8o4*dmnES&dE_^Q0^ngBQq@SM%cM{IKJJRKP;?P&07qP&}J;SWV#7n-qj(^VM{WF
zF|{_vyIGaHTb*_dsw5rO!qin89Je{_f4TfNSn_ikX(qiaqvgQueh6hcGAPZ3Yj44N
zVfWqK@|U-DZ_C<je48q|KIRrW`fOb@&Xmfz@*nE93^sUHc^bJ|D7lTcEYB`Kc;0!A
z9u_S7o|5c!bay#>C%4{7okWKb7YQ*wE?r&D`!qc`LT5tTD2ZnA6KtTg-jT0IkBT)Y
z(JF;!SqT(*ygR@9S$=8P7cRjRq#tIW*!=ZYZFRJzEK)z~VQ{~!Hs*88N3K||mF0Kt
z1vdvro@tlExgxpIeG|P@y{AH-eYj6z&MVH<HVP~-2Zh!Jle}0SCeFS+zFn!Swq5Dg
zMR5IsB}@vfC=Ky_-w1+c9Ab<Yf`l>kps)ZY^#L`R>?q5v@h}sE58|Z<B>W&G$@do!
zp0Y8CFOHQWVM#*5wlg5CZ5Z&`?hn<=1ZhwDJ}|}dx(=56wXSeXgMIs*h#&QqAJaQN
zY2qJ^UK_Z2!gu7S&AkI~thJezjJbjW#7p2cJOm6R9t14#3KIAdgv9^rwIn1B1oUq|
zhk}3zwt|59<2{PN_oqJ}fUl=(e*X@Y4fW?c5OK1h|9lNa_4L*Ov4?)(8-ks*wj%_@
z3(BW2NEua%BM1m#2pMq^bvMYL8F1<NJ#)dq%c2U~FvuS-m(yrDd;GxP$K<wKlE&m{
zKDws86FuY>-fp=Z!Hy7vC;j-I<zw>A4z9(9z>+NWj+1NbeRJE&QmKoDxkc7eg3I#t
zDBpT<{aTn1oB|Za2R|4J5=aDT;eY?7DSSklw(F~Z|AJpWTpS7!xdrr}-tp-JETx3O
zMtl_S{)+`m3xhvi{^!pL+;tzGhS@r}8|A+-Q^eyi*NQkIxuh2@%3t<HM~EP}E}?ib
z06Pjelq$8}YS&oeZ}tF>!<eVpOkWvokA2MLYNYyobNbQ8%HqJQU;f%HOBE<dX6tbz
ziyF%RaQ}ek(vty<sX0+&{nx_&?avSn$51w$&A}ddBljQp%pWe$80!bsRr=}e+<$IR
z@C(Z9_HqfP^lyp(`BpknLc#{=$;?##7q()M1#A_r&t1gupB<B@N8XkN{Jkl*)a<{o
z)$4e`RxeuYG<5#+lQxzB^Bl*8Qg86TuvIk;U@HcX)#BQ}eC^*pbJ=tVG|WF`8x#Kv
zTLBJ@h^%wgscrLLIHl&3Qzkeu{5Q7B0c=&f9auI0UpQqc1>lr)JFov6TS)-6`v2Ae
zX7&l6UiiP_Mmvspw(lc~Xq(S{<3_|m<KBVYdL);N%-oBY|LXAdngTA<w^6j$AoIV*
zB1=f95Tx77L*mx^i-j+5_>Q|V`<%YzAI{h=CF{o+y>e5a_*Wkt1~|nFm3p#&^?!ea
zYXK3%lA38mp}QloS+gX)BHp|29Z5Y-o<A!rhGtaqMczLPs+rz>`@AbkxWV9Go#A+N
zoVtxF;{PHhVSEr~_W#HQ{_}(?C>S>G<Rhucvq&sC-(9UocVQcNsklC5_FwH8Jo2VH
ze5GCOBlbmxBd`;8d%VBo(~Bf@U1S*&xLjOqxm-rF$Z*yu7_9QkB>!IXljnj+`)|v&
z)Q1}06-u`2MCfu|@t%49y_eYcZmh}mka>iAJ%DS)i|y_->+$D_M<my>+p(KCjg5Jl
zp+AB#`&5?iLqkfD)ly?j`)*MgQN6FbqMJVZuje~r7^W8<yh;%#k74;~hK?wEHN*~l
zH@w`>(4t)cth>H&*^!B1boBSL2{tD$Kj&Ns_%^N8a_~lv*-{zDVX(w`>o7FJBGcVm
z%VB_W{i71^&Zlw(u!x1tR)#C;q#~cq)uHcWQG0n6vnRK&rokYPc0V&SEHN5=ZwGU@
z`j=Es$Qmu$_o1K(-Pxh3ogDow4z$loW^3QUooN;~?tU?f;@N~h6Cl|XtG@WAX%Glp
z!Q6cEm2Ne|b$KUdP;BXiu3d-QPm1(6P7>%Wj7>i)jli%k;4zi>?XAfjBC>pLXd?)C
zSP^T8eD99K_J<$tZ-WP@v-rIpuD4b%7Hn;uuuR<J+kj6D)^G8^D#PT%`8iPIu^Nco
zDaX|Eyi6}iJsTD&!~0^cD~zsGt9J7$9eus!d|GF9kg1J6t@M=(ee+Rg#TPXNj#q;S
z$Xn@-BS%?}chp|@=QA9unNAZjUGi+h&x26#HPi$#e@RLa*D$X&45dx8B01-ohd5?*
zd!FrHuJ{s@-|?UH=dOlQXMT1&&(FBfG`c_Mf=6O%R<`EP?~Xq{87vDR6$=Vb61r!%
zVPqVrJ8ZpuAyj~c*GDcHLBkC%7)JOdfdD3$(8V&@x^h5udXe&+d-rp$<K?*D-a?(y
z)ek1$IrB&AEH8|w(_XpN`Xf;%;Cd@d=%DTXf^UA~{Qd7fo~?}#are&jYIDzaw{#h8
zh3gXjx*5~4+KULQ&KVo*IKoqKR655+U)fIv$wGdZ_iYxDt{9!M^=j?vouFa6-_cq)
zlSbSy```A~4+c*(8}|+liJ@AVWEVH5v-tQLyX{Ki?snML2Q%<3n&6co=KxNH;DU7(
zY&RI0pN^xJ)K1rFT*AcjbcFAao^C$XEK%FI4TY?|wERbsfgpX=5Nm@3c{2qGEZI2l
zD2%#}!yGEx$!Tu%3;pfi4DNR|%|=tb;W;(6%@U5veDCQN-PR+`CTnj{570)iSzcZ`
zu;H$WdhycZLfi~<eY<|;E(lu6e~^<18g_bB68`6b$Jlm<VxVOfH>|tfOsmQ5vuxM4
z$lxIPl;*nZ-u1oX{rczniGXIU!|KVXeZ1>Wxe=5}x@7dNSH`RUNQ}s3tv7Gdega-8
zV_2=4slYbOUU6JK#3~mIJTS8)+}Ch=?)3<^P0sSuuS4&0-`yTGDe+6Xc)l)R>1tqV
zyK@LM$yzF9bK6X@2zB1NO8sMpUcslUT`8>FTC+Z5W0qi5qapM<>M)rs^ej~n{tmcn
zNCu=+ScdPzwb6{8>pt^Wu5nt%hK*R9j5RPE5qw$Og9m1M=&QeDjb17!fqfw@<50>R
zZfX{bqwlweZNx!n#6-!VA%2kJXI<!X!^~aCD$R)#bvF*J*PG$*zs1(ao>GTE`xa07
z`U^+i-<4F2@PaL^mISyXA)R52r6rF-oH9bTl?W$?RJ@iw_DZ^dqf99HaJ3%aV+MwJ
z52{l0B_|2g#7M%RFdby5L)O%D{)U4K>yYWb8G6YCVoFmml->~S4uppVA(OG*0q2%(
zxz3A=(w;O&=Ihw6VEzN;m;;oU{(M~hhi5}-N&<wLUMB-bKs4f0<S9Sy#fO!wBgOc{
z(lzx?JI$t68!1N1B`nQyO7QXSbT!2y6Gbc-H8Mv$pIp~Cw8w<p60jQr5XMF6`E(>-
zx1CMMA)$O$0qI#fF_yRAsoeF2Um>%}69X}7+wN*rs=E+gE%RrrbhvHvv80Qdy@2hP
zO(578(J+2ux$VYO3bM%Z=H%>6di|!5hF;vXe+sGTuvLfqbf_xqN5h|qPk0aAF#a+>
z?cF>tR&Bn?bFdV#H@kJ+k_*^%NznTy05}F^NADUuwPRK%<d_JbLLN@&+Op?iq<{CD
zT%stI@BFyG#(QbQVoJXc7I_I8FEfSIZpmZ^5zA*~rucK#NXx|x`=1xfr!4MDX7#7O
zEyW!TcO*5QPteq#E42-Pw+a~v*$e^gMC~}GysqPmfDhNUC%u;i(vM@)#lhL667fB2
z$d9W9yDpTjKy3Y4!dKQQCj1w(CM*~hR)Gx#o|gxN4db>!N7cGQT2}f(TtN_%WaKZ!
znft4H9W`W3`%mTYCQj%DPx{GUNeNiXM>0tKBMW9@!B<DCt!&gR``oTzzm<*`?3`=^
zp54BBD$TYPSCM<Q+u!miFxmWL;0yYo6UCI|O@=vO73$mEE%eP7^KUCYDv4!AP02Af
zuu~#5{bc3!wqJkL(Dy#CnZ2T3xxZW?9ud4vFJJMw4c^N16wLoE+rDesf1O%#bxr)}
z)|8yZTIrjIQrd%Uz>f$w5K(`WY!Zb6<YU*XpH-u4@a;_pjdTRwXDmHd8NeqTY^T!@
z4PpImdZ1=YHvUQr6}2Smi~Mr?jmc}G9GZ0s1+_q@a~8grSyrAnUKK$6?WGwZ%sU*p
zUyl~@iRdo}mL0s4pH|9;M)<w59SSJ`NHk2$0$9$4-;x=v0PGV6t?_19=dA~C0{RJy
zVL&6-djSAm87<h<p>XG|+Fi_9Y)waY@VrM-=?dlTxZMW4V}dcvg)KeW`Jaxt7nHz`
z5DA_^*kYew(c7|?+Kl=SbVtCZ_SLF2;#EV_;rjEN+mPYSO{ppA@k{3MTM>gWcc=}u
zqwRmrS!4-3IB&px+|Qb?5{LP;LZ!r>91u*~4mEUhzNe{lzWY^7AWo$X|6Tn@;A8KJ
zeXfkI1`Qr!V<m;q-|sbkO>TJugfdhhQfoGk)DXe7!Kv9gmYr3Pj|K`e;BKjp@H#H@
zqw!-e7L*t+=^12lhzBli!NY;@$tdVKYAH#{tOnHf<G<#aUH^ic42P(cJ#F8jom>su
zZqh_q=h|NafnsYq=)+z(L#-tNY0dO&?=A(dC4xy%3$uc)*Qmf{K$3wE57#4*UeSr%
z45P~D-?W&lr_lx?#2A#2s!{|z0NDhW9F<kJsA~1}_Dq|NC=(P7prkhkQ={yQDT>GS
z>rvrq0+T8VCW>*tSIO0^;0%{}p5ofxT`Z;5?)7N2=oe(ru7ShslkzOQ3(cn^3;Ax#
zVlMMm1y@aSXOLv%m%HDJl7keX156COjwQ6mg<|4E1&92=Juh^MlP@pZ9=)Fu_?iWb
zPM%uHcW(0yFFa5t>qMx?S(i=i991)rEvy`a<(8ds=wo=10fZPKO0mJlH<Xm*7juuT
z=cHoju{6~n+6W?-40w;qOVfVZPaYkije7;AK@p=EaB7|%mm(%i=|fBL#kZ+e$$mFW
z8cZ<p?j`LrR{&hW8hv}E8F>h%rJLD2?jw#?xt7h9VkSHny#0w8hrto+fNL}AZisJP
zF2a4e=m@QLYbc&}_5D5Cn#WF?QCCopD>FeQJON+jHw_(zbdTLa8(z=Pd+*T%aV{1e
zM{)8z!)WtECMWEoo$Cb7r__%1MTPs%jpm89D!S_}fYf*5wsLn~<{Rm(m?6HTrx{KC
z_xd24`W~*@Ic~{ekO8ZJ{C;8OK_fjZo|D)ItR#3%VHPbH0Is%C;}h8bBp{g$>yH*+
z1r!dPBtdfiLKEYz!UmAu#Duv1%=1Oa6oYs<<nu)YZBwdgDf>XY)j11{&zH%f4gL&H
zv#yjm!~f3L;VbM}Plqxh6Y;DsD*xcVPv`*z`|%3092Q%*oEd+bt>@*0;wG<=_yf~9
zSGhNU0i!#Grbl`Aie2t`<?$7GrWoE%9p)wJzagKJyX68v&bIAZDr*`<YlKr)dF1+-
zOE9f-&O7&Ku3tNWh~7d|J0zz$%DFpoA8wznTC~+n3(d0Fi*HNdPT7XCz++2hv?esT
zETv0)WsD|prhMSED6VB{Na?cTeHo}};LTB*bXzy0?^)ws>o#)4V00xu!n2ibJpFo4
zXJ|GXD_=q}1{s%IA^uf&7P(YZgp^@B=fdnIfU0`E2^I1dv%hFZ`~`nL2qR(Od~=*9
z!!mH0`w_;`0))Kqy*#>R2x8Bl_N&#CigeBB(J%1n+wKs1J^|+Q1kxWRAFoXymgLr;
zTv{CiKBMoC1SzG+4@tGTHX-n;&>7nyPOp=yK;*6TL3vr;7y3OT#|}G7jDPH~usam|
z^Z{_dlwUGZ^bt4?fe4e3DcUQIc?GGZd|p?UOvSQQv!k@#4^-}1;g5L0c+vXKkM!H_
zp0`7z1#nDjk=vBkcaNuGVY4dd=-ZRRiAMBR$hnVMv09F0bDrn44pbtajHEct?a!U7
z_m<Qx<MD~eHYj7~D52uAQcyB5RyiAH_vVC0;eAq-SJnc%R$8<Ftd67{$57LjXIYE^
zxu3+!F<Ox`QlL5Kkp~wBVa7E(?ti|M+%GsaEh?!EJIr#5NcXwfIc|MFiKVFvf_rR-
z6Zy2(DXCIN@V5+|odA#igQ-TW?Pj;Ay}F5T?tI3880T{jam;$vbP=;#Oh||fd*YH5
zUkt5}Rn`w&=nkCh#Q8W{l=ED|q{#0{7iLLkVkG@9v9M#G*%Mu>8AyEXtM1xyOP6bC
zN2e8#!(l-O<r1cExrXxLUqx%@#NGqdqjjIa{vc!MK^Dwgm;~v4pNUUz^&2yXvlQZ%
zMtIk%04lW^h~3^t01~3iVR}EREoat=0ybRsj)f_@s!0Y>j3&pBXy-z|YNxlCyOiYB
zXxUPr7$J0-B^`;4!TH2`9g!7yul-)7a)RG|p=xLHVZtnrea`!Qs_slH@=D&9Hb*p*
z%gYfSv4QEzB*W$>c_d&N^g86fEW^BsfwSbf1hvI|f0mm+BWBna@=5jr2vx8Tm5GwF
z<NZo8nw7Uzdl5g^%u;(%RlMJDM0L=RNJ4<-1xIJ4uH7YJa@3_H9rJ=@I3iE$Rvx6%
zjidS5Q2{WU=?Y)>8-XEA2xGSfBz?}n!|kk20Qi9PeeWX|Rg)8)fgOyvEv;YsTA6Er
zt!4O74ipy>tIx>`a94|JDD7U8b}rz;s;E)!ZMS5rF3aB9U7hkp94{z7hw4@rhsI$x
z6uyhJ;7vSWhw)ns#>sss#DpgQj7f+Lk8JOTiNYNDiAhr^pK&A%3HO`N$pCed-14f6
zWPe%Z*Ox4WGXWup;*{-$U*R3|eT;WkOPM7@3O<9mCEYWLUPdTdq+-K3G-Gx|Ixc!&
zE;$wnQzIN2Mrid_gt4XfBl|wyu5^_)9pJ6>ZCmneCY#LvpnhY@nggrOnx7Arb9gsd
z(b*!|EgTRA<Y%LZGp)jigGH%N!whwctcZwD#0?))$oF=5SMjunDW$`bC2gi?%3q=`
z*qqAGFzj+0sI4o|z3=Cbd>=1;8@}ZcR?V5G^?HBu1j3%<B*-k>30b)DVty~Zfht&4
z=^Cwa94X~vHeQ!S)>d6Xh9brN6tS==4;j(K$Pc3IjA+B~9lKC;sU|Mmb7>og+VSa)
zR<W}_@1VA9RRcIE-uc{}*~8{jMWA?7@nM>uY(ealx?pL7c#o7)0XcZ#`&7`|>u@{@
z-k(i!V?MVk^lY&Blv?>kChl2CY%Lzh@+Ibq9EPrg_nU#VuQYm{F^9nvS{tpT4n*?x
zy+^$ke#C(`?$$K#J;tMZA`pixV<KF<!oCK7_|Q?6*L&V=Il3j07s0o87rf26By}|z
z>%7^F%bn_Wza{jDFr+GJK-wu9;BZ#6YHOqsCW%C)cCQUU&2JS%{B$8_N4_lII1?j{
z=jhM#^kq!psWTnD%y9Pj`;g-mR8ZDYAAcd!&fvl3m*my)?H{6yiWjS$2=!KJ3kVV(
zg&qsvHJU_;k<$^@<(|l0vX!u2yUUESiO!rRS+M&(Lun*AknMaXIHvrwztYO*deF*&
z5Q{Kj)#tbK)K6VLK-I<&HDw-uY!pnGnTBp}gf~8XBLYX5o)*RGah}R>AO@4yUM@f-
zt}j5UZ*1zBTASQ&?R|T}!21^D|3rY;BQCJ}ee@p2Zws^v3(*Zxp(exo)By+NS<`eu
zoDPy4sb{QqzN=S5Z22ojZ^+ZjaK>+w5$o9`pEsGp0qCk8D8DBAxHDMRT7B+su<AJ8
z1S-ZpZ-ML+%An`|&Qgj+NE|J2p=H{6obrWd@4Mo8I|x}V{~Ij_uhaIB(T31W^O<+N
zG`bc~pKon503ho7Gay;GGvcHZZ%_%inO!g_``kHgl}g&K*20Yd#76^PREGSvw86ai
z8QB1U_uI5CGry$uCHx|02(w|#TIQm3(N{&_xs5>7G=pWQ@W;OcoC1at_`C~Ei0smd
z#$;OCBJ!4V#jA=DYivU!8<z7T{?V^Pb3pL!sH^(*Or=tmU{8l-NNb2)a>QrPkg<uW
z&T6rghxpUp{xosD>bJIS-e>fR$mwFH(y0!Tp4<{?xhTn4Osd#-ppZKBR*-uZWVBZ8
z<EQEp-2*Lasn1fLL~^a6S0BS4%-#!-WEM}OD^P(~)zuWfp@T`^i%)usRg0LzOZPhW
z&cxjjTydYk1bvcn^SJ(zRF|gWcUHaBka?z(faepr;rKaF!ivW|3uKgU6*`wC{-xM;
zvpFsc%Xij!Mo-FqT;FrQ#!bPEv7T#C!diZZujz@&GyzRPgGon;{rgnkCf?+Gkdl}(
zGpuz^S%lVqu+cU$l|5AbrA)g;U~eKeT0D?aeFRw%7>Xwr_NhJ`w&H8Qx&Z!mPM`W*
z`cjQb1@BmmRwy#Mxh+0v4Ind{jSGRoOToTnQTE~v__x2qz~Ucy-x2|eyYHHz<dTVJ
z=B>coa*HQ+RXV_<N!T0Bhmb^AIxbns%=WM-@$FaV)HCbAi5ogWjSVOtWQ2zJYum5d
z_Yuxm*^?6LS-mt6chI&s`a&E7trqaUx&$=%(`hW2*vCypH~Fh%cT&a$?v__3OOB9|
zuJr4CHbo6y1qT<8jkI@-w3KvB@|~|R#*9962hu`=UPcLA%$|+s{R0gB?nCM#*#&oS
zGG3BcZ$Yy^GBBVxkvo($bdx8@zRLMCjBte}&jQ(XV>k>+O+UwEVwv88b_^1Pc1#zK
z2aOk(MT(EY?D<e5emOWzsUx{#kAIHKf+OiGpDJ3PS{aueQ5|Z}as4uHK)(*~;(R?-
zn2$2my$}-)ttG&5%Fd`~#tKpftvAa_xX$gw9IsB90F0$mdQOT}>NPnT`2)tCs!X%=
zMl%4^O0~SmNAMp>d`gN*p<0eQk&s0Ao&^E`ldGwyZ$_u2RRDDe@ejrDH>H#ToET;(
zUGJE)KZQ?A^J6sVXPJ|kd8*aaRKJ1GwOO92*=623a~S<7j`qdb<mkr!o2vb)QAs7b
z_9-}~RxS6NA@<#9(JvXXABQ3De^)xq5EkvaB1siubQxI*Qc_;<@JTo{K+%#veRDE7
zy|_o?CIO13&!4@|?dr3?>k<GwGl#`6ug)pK>GKe~$jk5p9IMge%1NXZkGBsz<0&y2
zrAc1eT@?}a%n~@<Kg+v})f=txra}7|0B@d`w&0atwZ5Gj9krlpDj|r@P@X;xs$6s!
zOjyvHxxmuU`j{Mj*}Y%8P<q8vVp>paT<x-aChWT8tSP(vF4XP_plc!&PbREl>j1(k
zIa3iaKmVW~kcri&RC5?Gj(JCuJ#bbns&I0o$zG17_*Z4p#-_YLl4?++;2L~YN%RZr
zIV}EtGtHJ(G3JRAPAb8hB(o@xW=#6PTB$~nB*(>Rdr12z!g-_l=Ix9lA-WkQkU+j>
zX^sdz97p3se(;u;0P4HL-jI8%F@rooNO22VWAj?;6Dmj|=YG_P!Tem55Hnct+^JH`
zc%}Q-5+$ID>d}*_*IFEdrL%HD?)DI86Tj1lG?NINYe)aK!H`51$}`tCCW`cfD$O)j
zX3b@HkYi90JcR0no{)n^Mj-DkkvB<UagT9TyIV0pl}3N0IYNWI^6XrGI^{H<|7P)f
z2R*Ym5@jV7n<7b=4d>h18!~kTHHw0cHvY1!{&cd2xdWm-@;?AW`>bsC+&w%4CG#EN
zC!%Gd+?VWOWz%V4l04T%RvQ@m%%QMvaEB9j#ozP)c)VIyn%Hbi)DCVZaC8Fh5|A7b
zqw_o4$sPr<_Ss>Q&?34sp5xmS$l&TEemDxY)|g2PfS5!!k#|>Bgz5DmxIP^f5-QSr
z2XIBU{Lh?a$>-h*&=5W=ob+q{k-pBICMQ*&MD(@;7MuQ^@rFmGZ0<_Rv*vNAuI|8f
zHV#KAjS=@~t?G1;*%46eqKOO9XHfAtH=`S6=eja2v#15D<=rA$FcH!hIu`1-G@9IE
z$kBry?zV*bTy+9U;1N?^gzv<1%^JSvh8+hgWHrt=qOMcpCcm65>Fhap5)aZ&4=G9Y
z1_!_yPFa8K#7Ge(ENytip<e;2O&CXteXoiLQW*XlEfM-;dVCHh8@a*aF?y8z+!b<d
z$__0~TiH=ogb}R*LfM77Ske<wddU@uT82o7p8x~)IliWz34fSTN0LS4y(ao|DiMOM
zaPAU3@@<LA)vn-zZ;eSZ-;)uyLpXMlImiy@&3Zfwo2$kB`r0J}!sc$@gHr~Wx-ZpR
zf^1*XA?FQI2uoZg=Z`7=aJ^^-(E(VwR%KCEI~~rqsJK#=U#XS+SSsPvG0($krZQzW
zJo|+`>BDDs23CRzrvVvLt&;89CLE7{lsn9|AWIh^Q8@%;fa~Zf@5Tu41IZ%MmkYOF
ztB!EanZ}8(8{Zr~i5yZy?i5s>08NB+ofLA7tz$hN76TFbHTH>pQYd=GbbGO{CjZ2$
zKA+jsUd<!2r!ZOpG`NacW;wMTpnCCIt!rE2ej!&)kCzfoUnzYTK@OJ8{G++U(hO=V
z%T>SrDkpqbFtDu6s#Rs^JX0ReCR(~g#RY)l!9dx}@I7RBzTBt_N(J<Cj&0P5AhbdC
zL2_RX)%t7E6m7?Mw2K)&GptE^>OP^#2cSM>0b2&iz_`tsB{{pva(Czqphuw+@pHR$
z-T|5m!tH*YLHY#lM;Z_`IxedO`-~yLKb<XAB`}sc|B6Z4aU`Fz${g5So8`5|kp@Q8
ztNA__x_zcPCJ7;V=MhOt`2{U9vRqrTg~JahACw2LmAICidUC3e!}0N({e?&rO2X?a
zUW1JgDMXxi5hP<=@w8Wjd8VtYu1$PfI+;f7$0e{MXCgadLr{0f<$&<5RPZe|NxY?t
z>jSd=K0rL<36X_R80#0#ma%OqXv@Esf5hGrCy7-jBK!Kpg)*ZjrgXi$4pQ}Q@&FL6
zgl>r62kG>o+Fob5OM<<hVs8Dhty3O{HKm(Y*S~~80j2Cbn4l*y!@7B*uoX}VgUF+}
zbB;t8eQws=H&dw34qD!Px;^U3?GE%3{*X-8VGRgUfr_gpV$0IPc%nM*8YG64$g`(a
zbj5#stim<%Fw2>9nntIca38FOTzDaArRTAeS0RlT!ajw=P!D9iZW>uy)5qLs!RfiK
z)Iap#v2~c_%}><%yds9dRru6=Ajq#0$lX@22VRCkUZa%txKSH9ahkE-++}oz9C<`s
zlBBmjK}h;NfOSEJAE;EpCi1yj%}FjzH6h{D1yo$)i6=rS9zPq5Sx-*aN9ha`zq#dY
z39x&SX}A;<ucAz!HKCV4P`jj3@hC*gZ+!)%KDF01E?J<^wXq&|9okA*P+go|g&yfr
zHFz(?GPbZRSv8d=P-a6G>w5=4=x}Y!I~p9c-X7TSrZyISA(H$D_<EAyh0h4j0v`P!
zJzG34qcr_$iF^WzA(##)n2}UcTN6WkVQ~6UPX@ydWlt^0A1MtariGMgZFz_#IfW)^
zR=iG!^MV;}Q%((RYQE*nhMzKFB@P1;wF<f<<PeldJP(dp!Jyf96HWZ8*iX`t?gScI
zMuFV0Oy_O~4O^WHwrzyo%vQ?eIrKN4C&lX7DH9vlT<Gp(YqFE<XaFRqw7tTZ9zcuB
zm+8$4Al;?tG|G+8#={v)xzhj&3lwB^`RS0;d}Q&+J5t6CUI%@COfN}@g))OSyZxG(
z{H_;CJG?Kr?f@2P$#ti7#OFZXo6pnw#4#GQ3W}k>e7B?Cf96XSLwX<fsfYM;e>v!k
zLF_N%M7YD?VL#;K&yIa`pH$%LAs=7$7!!emCBrr6JJ8g3&!ed(2W1SFHJ`{<m`4;h
zZKkTAAe|66je(5{^AcaWEKkhpn5X1*LBjnsAh;G+Z+~MwZ{_>SQv5P1MyGcE&7g52
zkZ9WKms1h|5vO3*O%IU5JAp+1f-jG!fNg}E?Zq$+Lw5pBWEX(eNJ?*&{#Y7#9^t#Z
zVvr;2sNKAURHelvMFr7FGk@2Pb`j=jMV}-Z(e_H4uYLuj5#U1^FG6aQc)2SP?1@$Y
z<sq;Gk1z14zPHETQs#A5;8fz+dy-69aC0*UwHtOmRlOIC?P{w=&i^r71xUP=^(l&x
zrPT}XniyVW<;y6NKZ3N(dt4KCg)LBen{;?$NY&6TKQRC-D~ki^<+h&d5*8pqlr5gF
z^B5f=Ww^a9snNh;w^Tk}YNXyftoWzC2`6kwab6j>ppekHgqOHhIMtHX95-CC{o&u?
zt-j7VK>wuSLcr8k$`RlFARd`;lK9p(PKdB6ktSdY>?Pk6Hhx$M5C%QxXNQ1B7M{bF
zuSCTSeQq&kg5k9)BqJCfUqF|LtSHYWw#r9)PD~P&8+Eq|M>gAK>wCLk{Hl^np3_`H
z>qoL<I=>tUe<x0s;AFzt1^-fm_eH0u7w%OqGn5DW`~kqX8^b7+vLRO`?oNc9N;U`k
z1`2jP|M1?#>~N*{dvZsP`?I(at+1R~72I!Ab-Ao>=AuVwLy>mq7_c)w+$MW}>JXA9
zI(hR;B*UPg98(1$7v2Fy==05V$I|xaeGzsG02O1L`{5aX?)t<aKgt>y8ZIHzmVl7!
z_GeXag2rnW#q-)FmxW$-c0+1_Pv+b?Y<mQ^Z+AGj^x_sIEnwlFzJI2tZ27%ehZ6;4
za5cz=hYvWGl)WYf29ej1h&{}cqKk7S_i-p3;jzyDvmfh;bw$q$q^&Gp{pHen8=!Wk
z=d2#2atQuI9ZrM)*>I^3u=i3DP@gwHP!srixe1b^7E>wd<4OJ``_hRjc=g>c?#$rv
zMw5kB@sxs-?%hx^vp?|`!w%=XWv)x^qZ0pd_nN01l}^vMr(%Hs2z@NW05MIN`}L^@
z!sbL50L(^DBJje=vPmp_lq*sWIr&Ie#UM!_AimZxkFEJ}{&;l@DaDt88!=CfXS~dl
z<$2Jc0+FI=?$Y=JkbztDFw#%FZ_cdhGEjj22Vd@^cIfq1q5B;raQ|rD<O@*E@dq)~
zP^%GuL>JcEt*9Cm<WoeEUq)iA&!)*Y@hl`g(gmv6-0i4-xB(oiCt%wXEf$1~AdV=X
zL13K@bPIF>=qe@F_0|E<KoJ3mU{A2)1LR&OoP-Z=0it?ALWE3(C8aWi_S0ZXfy*s|
zyYOEe<WuQlSWGge_5l5zY)qyK57ZGUqEoFP$8ZfF`#AzWKpXU2<ur6G8a_h$*!O<V
zVBtCViUDP@>oMzGZA{8PJG^-+Q2I=poOplOAxIkC{>42-QEB5Fx9yL?^Avd_)%Q3d
zl8;C>Yo;)K?Pz`~aPys4D$FB?0ODsH@lfW?MtziX#c2+SPkzS4`i&8q2}EQ(B;LdO
z02*;#=rn9Jt)8obrkhh_mlV&zG0W=+uoqh;hH9D+EU1p&8}SpnsRDS5Q@b84%};tg
zl+bc&pL&4Xzm#mCKPWbWC5CxGI0&csvf(wmY`Ol>BP32tu+=LdzZCb)b9wR7Dw`o^
zeqzf%g^ZgzvuxvXEjdIdPNhKAM45S9e6M2av6lsuj1kDL-EyvQ&DXSnYj(tRN!-~H
zm4iXXN}+&3QMtj#aJw`$$D8s?H&*sJLUnpO`o@zmrDYPyffyNAW70>>bYw+=!*tFL
z1H#Ua@y$yL-PyAYu&y_H{E&}1!g*#1!vfpxI4WR}TBERKyQ9ea&8l1I{*0|6w`uWn
z)6^L4@XEM_<QSoScT9zvCxGrlP^#JIi`fqWHB6_mkc9iLaEX)a4;Y@B(Jqdu_?#-G
z`X;7oKxSp`l#CTWx4|BRJe52QKQ{-2#frj|yT8LuV*#|;I5~Z;dfbRpiW-p&u#;a9
zJrjP0IQ53x%6@G9^VWTEBf9$s4;7{KGa20w%nyZc>2OCzpQuz_-~0397JnL~ke(~u
zXix)BC~Ig=|1I7m)4HYEl#pnnLl88#0-^kkj%^Fa6TvYq5^jRIYSKU(jP5vLF9wII
zsGgpa4y|^46jcw1XFZK}*2`FX0zxOgXX8@G0vLTxspjw&Hk@H(JN2#a;n2)ETq?&z
zV$v7WXM*tG;YbCssS*`1OkUcJlH5G?yo7i5XbE#YzQ<N{IhX<5z61w0SCu2#1p!2@
z0?qB3W5*m=`3F4yQ!CDHf<FVeu2XzoCrd2=uZOGb9^;Qa6qKB;1{3!hB82pW_-CE(
zB#nr6lQ5A%Ol%eq%HUrD0b0kJX_W7<8Qk{V6cVh3!J`8AjB=vXLTC~LGcdvmyhAOb
z%RQs(7*kxFXA+l10t@3NY}W@N2&0y+mYN5ywVy_xS*_ZBg<~12qGax!oe|z2E_9=)
z>MJj=ewBoEm1i?Y=>zes;}z?Tf-Iatq8yqn_a}IpD@}BSHRv^76@&UDJi%bq3aqU(
z<QP2YgL<l~yrbdo1+*6NeH<T&LU=)Jtq(VQDxX4xF{f!?lC6~$y8(l6KWf((I?Fl*
z67IC%?<+4A8=B9p0kUzBv8ns^gQwr;6d5n=Lw7ZU`jfu%Rid7)_UfUlSIH{i)2?k|
z`CcBfATvXTQH)l8bGX%%Z2hYk)z<iedCJ!8sj`shEuh6J`V!r_q^|WFQB$rH&;q1Z
zjPD(Pm0mf{Iru{%2Dw3#o9QbKr?pnY#=E3{kd!z`2oY+QW4+9-Kx6xyLxB>x@wB$D
zo@Mpub9_klZA;~;3FaJ;o^Vza9lUyWCprASVfdgRew6Iz2TyGUFVk<~RzK%PMW9fM
z#{%q^xP*u)TV|4T?9&~<n<UH*8+F4fF`^81k{EgQuh;dm)BD@zSyg${AK(vU3!G$b
z-M7BCkSY|!X1swfppM$x&{cAuhy^2vyLENQ#QU-PXWql3qw)PLPj&)QkR>+lF`&9L
zNw&-VFiVP8XnoG$=gmDB>hA~r{8)3^WyyKQ*h%P_D03&lxV}Jd|C#KX%ro~-D(iV$
zLG`7orXsv3v25wmQFEXN?f_7?SwYy>qDPPv!MLQGI{@E$;JrUB8HY3E<nk~XxZsO6
zS_g>0gwy&P%eoG+^aa?kjiaLLnDg;(TN`$J^GI<LVlRqucQo`R0xdV{PCak6<)=ci
zqGT-E+riLpqeP|q(6*+w;h$qF#0!0MqgI?O{w2*TNE(i1gYA{aQTcvqy&8Uo)=HmG
zE?|=#RXlyd_j2?;7k-Fyq1YZ4tf!=-bc4q2IxiXmT_`2h3&H*jC7(8`YUh|7y(ID>
z+94<;OvE`ah}rI&=vjwDP&QfxNst}O9+x4$D9`+6LR92vV24@WD4{$0Ycp^1c<qrR
zA!dAGeP7fEe*~)JY~5+j1(2}$J+zI>rkC(kUwb13>Y&VoIVKwh^Q~|u%cN*wG-Vp9
z#t!#Temf7f3GZt%(L{WC8Quv4K!R8WoIr6d=g{91`Q4D|t4Nk@%#OFLP}UUV2J;%j
zvAA?km_9i^B<e>F30bZDIH6IyJlw#pfNi%QJQE#mX9rzbGwV&ODlbgvRl`?YAJ*M~
zRZWi{37TOtmrJfI^&^gIyjlq<v`6Qrkz2gOb}F{sRX?1~y#c8?LbOlS$Xd#5t>7o3
z{YRgSsQ#vZBm#CJ@P*MqYTHN;-h`hqqOl|->q%jzil&n~n>R^DHocCBE<A)JCX2@t
z5fkkz7Tk&j8w>PTDqh{4j+(4vSor^0%R58eak3fL&bLX1BCQ5Np!az!hb)Z>-qIsN
zreIKy+P!4;#|!qJ2FuSs=V6x6VRX(fkaqpV;5=Iu8TBkZGw;U<ZUHsw!Gxm!M0I=|
zGO2dzO$aI|U%Pb1ZbD6ChsPV}-yJ_zpxAMc+(PUWNN>{4rN3YabgZN&ueJ9%+RR`+
z)J@?GYfO-I9!iYs<0WKjYQ8%eTp)O_=&uSy!PBtu>IS&VHPH#O@1}T02f3=`0+ZSa
zMM}%p35nw=qY(#N>ANXwSAeu>Q(s@swq>mUcL4H}bS&-xnr2eNWQ-8{&JubHcV7p_
zerO_|8ql7>&n+jn5Z-e?+aKV!Cv^|qm3-c6t&_A*kR<IgS7>%Rp9qhgGQxdL*Pj+~
zCeM-%T!YdlTrX)Lr~ja?_?k>w9-4Eq)+5n<OQn!t*X6heyU&sKM|={Rkv<QIM1^>#
zfR-V6R6L6Or7=&}B{(|ZAzk%7We0OIE-4)&1>x<R8lbDKHaXC<ipZW6)-+l#ln?qH
zCMHbc+~*JHnOqM<2W8Ek;U=UoX7dNCSr{{LET)Cg?;VYZe^3o(8qD{y9_l{1=~Zz;
zII0%lJAL~@ysbmchaaN8QYd8-SLb>i{2C2U5vrYFx>z1h+=6~TtKdvhW(U(#aps@6
zQ2Wuc&%4-LP*9zDVVLtF6vuzOjGVCG)%$ArHBA!5vb`fR?u7*xAttwE8j!jAEZ^my
zb+Dx5e-=@91pry^n?y<Gq3Mk6i3oYAh|tN}^jXF<>XNQNc(AycAID75R80EBbQOg^
zJE5dg5Ocd(!;eHd9ptT*adk<c3so+?HO$deHiIJ8>?Iw+ak^Mz-&Z0_<ds$FOO`t*
zPmjMsOSW*fL7OwQO6?c#OC|rT*Apv1OXTXb&MA3}J7|}DOdf>1$M?Q;P(p_glCX-E
z*%M>`Vngop#b<F$^4El*gOr*OkvBiYmFHNk$|i_1-h3%sJNp_k^<^N5;r)eWSg-Vh
z>Z%5(%`&fhN}yk1BFpY*F=jOwsCj?XN7mkCi@XmruCA}Zf9wb?EV9~i%s~G#9wfEc
z_g!H(?1w}-T?y573XlKk&we!JRBU2I_ml?24x^fxhU#>Otg7(~^v|r3_H0@$Tf@%l
z%l_Dx>O3(9J3J2jUJ@bOM>QJ=aB`>WrzxM4@2FIw`R(mn&Pz6DOJXJ46pM6e_h|pp
zk-uUp8){`ndj8S8X~F=^z<e{fc?0~N#BE+stYJ7i^!#1@YEXN%FwW!;X8%??dGM;`
z7v3DHD!YG-(M1fvpyOWb&6LS0f<%B0g5KO$hO=(@CSsw0j$@T<-;29mNY*TVw_qJ)
zh)moYfT@U6<N_3&y^s;Z8lzFW@9S-V5+HmF+#gTl>#hR9_p<LEV;dRro;Ty8#XpYW
z7y(SLZPXhrq+bsvJJVB(7QHpFNTa9H0$>28ifKRyjk3D4%@oBczsg08QSJM6E1;`M
zAnCHCwLdj@0Ns_Z@B^!xLY2#a{xfFubJQYES$)@;s>S2vIWSG?6?3dK21~(Or$hIj
z+SnhsOq~pvfx#fW{6#jF&K3rGt|5(1hq;(44Zq^&yG{Sv7W>Dr+2=?IwaIDT9}YHB
zmhx}rAKcZJIrGm-8O#9AGE&X7AeV&xNiLd@O8U!Le;@OB^K?flU8;XfH`yR8`aa%+
ztsGz5P<Sp>ZMP~tQ7LXf_*jPwM!}!<hCA4ZSq5t2BY-mu0Q#R_GOs<3iJ_r9iTKoV
zCF%D7rG*4E3cqy&WDz=Qr?Owo_2=6A(QyR5+>+haLUY@8fpR-!trM7pV2SH|_3K6e
zu>Kn+jzuVC;#JB9fRePm8P#O}m``Dr#Khq_Szx)j<L5z;&aQ!%XCLn_d1dsL?k`sa
zwxlAU-MVTRZ`27G0W=xF^-TTk`IYGaKd8ZAYx!$wmV!|0oCXQSF@OE!PpJIAj>G)p
z4FU?lT$_>sWHi$+xBfR@T8aXLH)%&XT9p6v;QzEye;V!|cLgXyCE%>hPHMKV|1y8@
zt0M7#tv&SvFce4COrs(57q#~9UP>`G3C#3doM9bZ{Tr+N2jcy0?O>{>K`#WRuvfn!
z)qm4We?0aXI}l9-ykYrU|MPvyMtGVM>kKze_*b_4r&a#*vi|=q{tw*q|KH;O7jOF8
zsR2$gPFn%p_v3$JVb#f=O1K1<rauYhzx!mi48rz|)dZ4B&0p>;i~<v3s0B?Q_h*d!
zBRl*WGyb=g^}cu-08FIYcmFRgenSEr>1SG0zsg<z+l~HO?eA}hU;si%6ocmcY5c!=
z#V=86N*D;dDCP41a-{L^H<Ac-J^1r?0sONo<LCgx=>$5Z)m#67F@L}MpRf4EqMyM)
z9K|zCQUA}wD03~kvLSb^uGOg8e}1ttG!P0o+F1+#M<mR~MTh{#2Zyy7_WtES=3kE{
z91eJ1&z|l1KY1QtVG~MlVSegMYk&<l0!TMxfG`%v;dissMtzbFzT3{08?An&D?{!I
zMq^5wCj6U2|Id9S0Vx|MOV|I;9j=B4Yn!J~-W^B#B0r5>79WoaJ?d6$V#+g%Bs))Q
zude`|xVWgmVCWIRPQMyjSNuPA;%QT|+s8cr%zEHN3g(BaTzwOO-413fdj$IQF`psh
zpaY$|1$F>m5y;efl{49wZrgg@DT>7Ke6Rr+(ddj8dYIi|<$GzE6H0}+;``{$A00Kp
zdHVqLA939sxB|a8M@h)L9_TOWTzP!BG%s^V1}5fA;wzqJ_o4!X^}Jd6g<3q$zuYqO
zBiXjyyDVLMzFhxOREmeL@ze*uTG2<e=frXK?ujBb=7|=(vHX3EG#~a187!$gc;MCB
zhij2u4v<sg_N(}|&7cuLxI5~ABUTUSbN#_K%8yA-#8|iJz#>G}rBPLS^<dk5Zp#rh
zt@(fXkn(RZJeE~28?#9BBYA365%ARcIw5D>EKNVU`9pqlqA7U@5%nxV?@m=Y1}v%!
zrwPAy2(j%m0N(}y>^jRL&|7BTvf0VkU;d=;tO&>2R1Q$B0^@)OBvO4%Jkb=)&A?=E
z*NlPhl6^j&8nd%GFn!z!2sQXr>2{r0I*OnWT&V~g5Rv;v%n{I#c3D4L(mNS8@HD|!
z4m9`mIp@O(022|rwD}7sM~YoF$$)&k-r@;Nj-An58YuADaNjmN?g>5uhHo=!?`<pL
z^Hnkx7p{I9xDf-!-foWh){Dwochz6{0F-^-AqC>~Q5PB(j!T&NsQJOqnx6+2={F-n
zk9VuUCZYhX=km{^HN`&Mo&j1pnnk+3<dD+s0Wg4CNcDE|(@xmo<B0xaKG@{%zg6Pz
zVHo%g5W-LTcQ|9C<t%`T9azv?wt*2+<j1Q%q0XnF6v3PA+(oCkNI<N#;RZ(I*7FVS
z*05FBU4a&eK%jV|Or!tV_UKb#(mLFWDhM2fzF^;n(<~d+eLy}7{LFy_6BXEUy*XwF
zu)}@l&AvJ|HD+4wKN7-scKQ{9lKn?0$ofcRpC&UVODhL~2V;;Iyx!<J>30R@JCYPe
zQS-;=0g15_n0UdW0tBiYX7IKY0Jdf7pZdkNj?J4`85_4dT^3F_`L8$Bo`%nCs*09P
zYH7RCemmF9lAvT@CKz~!4K|>bH@j>Fj-hv~K23!t0!?F`whOOTf!Tt0Nu_M~mE)V0
zdl|G<MW+}03w1c!C1+Z8Ps1Ty&+x6$CDNW~o>kZT^$Amj`-WGgV*b+JOizQ0ED`-i
zUXrG>Y8Q^HdM9aRd&JBWdhZqR1`56%q)28qnK=u94}5w<{lf)-fxcJaNSLtVn;Rx!
zX5wKbRLp1EikcJuqlxdAJRzO!2@iDM+U*t=ybN1EIYQ41?uQOJ(f7GdumgHRG}EE%
z-lN>q(b~q!P$7u3(PH6@uul%zO#C2ha?-&7<?n|OCu*DT<OoOapANCPW{&`2PibJD
z-Xhg1pR<pF!4a5sfd>REPpul}Zwo*l3uZyn8#Uq0E+`~=bn|rk-l0Tv4S);@gX+RH
zPZlI_U9`8^{eUP8!#yd__96$C5Vy2pGqrOnpsqmAUi<Y7Cm$Oz4f)#)9`jm)ncsr5
z;Si~Cd?Vma)mQjo<$jip;zpu&qt6@e%rOMQ+J5Ws-o<CRx5{w?6!u=)SlqFvasT{b
zg(lNo!+fy9GwNr8%-lw6q0~{$A)7(R4^@v3x7f>+BdCwpqrR$%`34x?_CdJj@PL=<
z5m=9(VKJ(I=wN>T3<VJ&x*VT(IWRqu83L-#nOTusi{(;LOKNcU0AaV@QrV3m7f_Jp
z!|TN9VWgB1+-IW?wR9bEx)kZm&fviF`f2uQQNn3Kqe|oM!Iq=<{|;2ZoTn;O*Z;%U
zTZUEnZc)FA2nb7BSaf%XNOz}zba!_nAsy0<l+s9dceiwdl!!D)*SXpMz0bS%d!6fi
z;tSV8;d$<R&N+T#OzU1AO+Dk-pl+IibnV~F0$;5sfw|`UN}I<{230r)F2S2`ZbvGg
zyF&McZZFq}A%tEYuF4DN))}bp$;l9(@K+7g57vnswOVBW^E;@Upm_@(y<lKls$J@b
z%ce68^2dJ!DlC$$Vk)VmVl=>tczG|E&t9jZmr+Hfemu4P*Inh8PuyWQ^Xd7E@b+)A
zWFym2QqWjhse~2qp1+gj+D>r5cmelBgS+l3-DoBQr;7$=@XVKTs!5Ck7BE9=VnYi-
zlQ4}OPytB>5_fVtZr%VEihhAqW%0#>V1m4BT$K%0@&!C{1gS{2ts|lD^{}4i0lQ{h
z+mnC(r$W4-8rm_=5p7k@u+7ZT<AmAIe;b7VbHn}bQ3QJ6X?o_|oUC0(nVh>B&qYzP
z?1;&+L(QSa%hiuL6_JuYqNJ&IZ62SyV1`J(OniEt7Pwd5{!ORysawZ8(Uum3=gDYY
zD3n0J0i3yBKDonnhycFQovi3raH{5Cr6zt838}ko`Sr!B?mC^H9ynB0kRX7_`kWGJ
z9=f$;5OQENO~Rpc1Yos>eHRUVzw0TIC3-;3-P;4^p?;wc9u`+Bx6>?Nj`#16Zs9Na
z9`SM<ukdWxx&OT00}%uKQcF0>wmMF7ZO@4D9CBj&t<_%rqwNXGpbPel+2QvkL_H-e
zl$pm!8b2M_oB-9%K_z^Cr>bT1=INre<+Jn22`lVhYk#~yg0fU-(Y@z{j>M7lkQ)*j
zMkoQb`x5bpI3TAY#=AwK6!0GFz%orOw-_@XDj3E-TI)9&ibiHh>jsVml&87R6(CJ5
z38y<g;vWSqQ;AwUd6bK}IRa>*5uMH*z@u-QKHKm;f`B}m5L??`Xda*)UD9-=nC0UK
z_4Sc(D?(@)tD{cm#d`PO4Y>sFu0*c>#w*a}TlC0h$DB%h5PSI2*`Nnb*I(}K5BEpD
zM<3GiCU&}c*kBA`=W0YwGmpfH*b?XB#~r?l)XE$>WPT*=>n@r-O1F%TPcGxhI@u?#
zX=zGWQnhPy+&(8ia&$4g1;$Q-qZff$UeWL3&$rz4TH8N|5upVZ2?Ri!&K9Km-Twco
z+!dLxrhX)`r=bx}AS)rLAk*`E+2X}+wdwwy&)rFXw-~mLwi=GH=T3$%)=L*DR4~Dz
z3Vcdf7~Y>Muq*3`8SonvkHW_Za*`5l0KUv61jsJzPI>x-hn|!@*Mum>OW4Rk$<I*K
zoPZb$KY^>SH)9{T(XznD_>1^9L1$<ZWeU7?`9h~9;XSIJSUviNpZ+JCpgv3BsMjE6
z9#{nLsuCu4)jiNc5rA;4mIAzzhE*j{mbB>esH@z+k-Vm~Q~%rsH5||3-jd$}QxtwE
zx%wEYGis3?aDGQ-6Z?EbyQ4UHtxUxPVh&htfe;l-$GQY=xPKklQ}~VpB#P4mA;8_m
zVqMW$=m!5s$hoJ4q+}kD!cP^ARz%%^k7(@lHK<REq^v^`qC+D98)U=_*+{YMiObCb
zx~~x-oCEQI><-bpq`O;SV8jCAe_KT#u2m1;FnzTwo*#+7oX;lOJOL<&C>kZajd?Z%
zt}wzHrrqb}E12IfSyYMN0631~Npn~jb+`u=6N>E8;4^r*1nZWQKEF#Eh#&Bfq@x#j
z@&h~F2FFkXh`ZSIyjTOM4}mHe3v(O^?H54GjJQ~qfR7S;7H~itEXt_}9|kVv4UR?4
z7+%GsFnT1asD^Fy@*FngRQIZ8_%8Y*TugQ*tH?ec3aq_u#uSawF@bcf-!t824zY;@
zc7_moQsaXI?c@hj>tCgYKi`YPXE?97;y0ZxX0_~k&Dt8ss=N679iq?fC~{=sWKVo<
zfSr;BWLh-pJ(-YR*7rsRy%8;vE!HkZO{jvl1Wx>V^1+6$(K#5segvdd+tr~Su0gs}
z3$V>01^6LH?r?Zr9e1!LlxSobk-8mLbR$=O3FSl++0jTMx#I~J9K57j+dekr!&x(`
zF+jyf-^Log<yQc<hy6ch_==oKaGz#0*Akc#m8~8U+H_ZILU0g1y~bh9mAmCh93_6L
z(%5~#ZxnBnZ6E{$bTmL6>X$DcHLXhDyj)(O`HH6ExO#Vy@DNpCl%!>P)IG*O%y+Vq
zJXSorCgw%nf?{yxtKTrKlyi@C<@|8;_)spBx&6WHe@3m)G=v|>ivY6S7%_UvR}qo-
z&WYp*_x8BzJSH+PmFcirXqvN?E#mTKx-!WG$qvU)R$iKd8P*-Ytl$UaJIkwvMz|*s
z#pr%lq;scdM|?D;=h+mn?@--TzdAkv*(c87Dr~+XXy&A&2%Z28alX;!dHLOhH5#K2
z$G7YF424W9zfZO147RVdHk3r<0iDc!AB0-4gzJ`G&#4=oQ!|3+>@gUa-<xOm3GzYD
zMP^6^cvryg_WdT?b<$+4n>Vz0D~{&{4u<fou&99dUloJDvMx2c0BEpwSABoY*O|OS
zGb;6sPE54?IIk8ssl(HDe-DW}=T`HF5qu6qq|5SI<j@=iRphih)c)>-3X}9`AOG>m
z^lyF9H2ZNQ#YJUW_Fq-!4+dE1j~Jh5G}x!V3;|)XBsa*w@sRDev%9$DPwXArKXR;l
z4;$u@G@6!dTHbnLNoD#C|5OgxN7jK)6mmA6MI_ho*L^xtTnil=-Qno&>?{X1`B$Dp
zYJ~X^!UlI0cpICcsdk`-vmpB}v-2g%!z9n!B314zZS9T{QBt}$D3=6%5lhP&jSSZG
ztRizrSh5y0KD9;4(rJ^%Qw84iXo?BpbCW)#vfvkxDaK;DIEK!G^m>KdeB^MG7aS(_
zpPp5siNkV};;_b;fNK2pf?J(<!rF)lans&ZfdZZb$@zBbdXov6gK7C&i^;PzZ^ng8
zvpkQfotlwf>npgO%9%eA`*DPS06n(V-PiQ&SLtTVKsXW_AL-YUe*0fPI%D2oD<RXP
zP9C&BKJ<DfW@_D}CwcTM+)lEl<rimeg1fmIic_U#`bqs_zNDZIu`A#4Aj6t4|KrXr
z#|o7Nk$gSy$2N_+Ijmmi|BY04onaf}`_dKyvKbDVzJEDoX#G3cxaKy4rO9+ef9p8z
z$RYQ3uV~CGxvcHxk78kFUFBBh&yVT1Uz3iO#KBu}zS4g^ch;QJ%F&YSux28*p0K1c
z&T3-y-}3?J5(2Y(48OD&B_!Q4kYeJMOlj>acLuH7n_AC<SI&XauxMI{TR;BnOiQ2l
zyLkfzBj_n%36&Zqi)Id{+btqG>MI^B`@osqoKx9T3==Q%y*0Sk-T1_62B${W46Y>C
z2Z<i+8L~P8s~NHLuMf5jZus;N*$Ds2rx>(<Gw6HqK$yRDUCDec4Ik`4Rm^Lp>QiKE
zLjkinr>Q||%$#=!{`Xp_Ne9qsHM~Ll+8IyyZ1{<V`vQRs{FE={6XFFc6$ZX2NDS<>
z!bIC=L1~eKlFlUDuj0X9>3;o*x;v3ciGmM|0bQ4Z^kk9A(Q51GYc#&x-BeRhBQ|&s
zQY6zKme*9R2jAyB`?R}{rLNxzy=Kny1^tOr;&eJv_@1$-CGq0$Q*IDtioSn?N9*}b
z?Pss2d<ra5!GpM}UYfs*Eyw=Uyk2{y2J1kHiBP1Z6%&(AP1TJm`hK>5v2+wV)m&K~
z+dsmSwDhlu4=4|fUs8!y70&`ZFyPaBWU@)doZY5LAAp_q?_zWHfqyPGv_`P!EiTDZ
zH;W0K6pFUrMe)57>HU7(EGH6a!N-#CMDA!%tE@q(Na}&6rD_Ecl<cC2(vewp?AK=}
zh}0Q-CGzPQ`2TyI)>o*+K9c+6bQMqf!EFhl2BJ9}19dEV3a_A0%RwU5_cK$QJ7!U3
zn%kSh=h@mM7ozxn9jMPq6iJ`pM8gD$RTLbWs1tdQz0&$VZnoFt*{InZ4*Z<%Ss?f&
zrL6if?pfGwoQGL%+mpA)?DGNhBRoj7nbk5|3E%zRdPIvAR~>K0BL-{o?h<b<)Xf-*
zA(n8P!}FR7a%tG47ltdHk#ZBytw@w<^d~C*xq&SO5F7RI<)m>*cO0VC$gW1|;%^-R
z`9eJ#c>#MgDtf=k6MUOd=%r(zbB}-4+HoGtFhM4hGlVAe_Eo|f({eR|oZVQh5Nwdc
zBYI=T-oPc^ILAS`^->{SN@CK&Z?p8H@~4mnd4*v&%T_d%K?$F>Xu$aXguYH#8`mts
z@i-&MT3lOx0g?a7JH^-W@%cEHMZ>!xu_`%y+-v&Fe;0BuWb)Jct`0kydfae*FiR%J
z9qFfi|L64@e&w8~XG-7yXBVhKF6jE7yjXLvDbZKzjr+c^|BhdSuVMQAwxaB&bs#BC
z=cujvLUL4Ce>toGGG*;3mZIM$wy0*YeA4Z%{J?!@*vPlBhJ8tZ*5<Q5elXQ&5<&dF
zx+A8#&%+B8^lwCiZ&esrw<JQMT)1~pu}xq4MpA+lC0{Et=5(OaF5w$KNq|22XDP_s
zZJ4`vG6V~vyyk%&F~4~i#vU+fP5>DZNud29kovQ;tIKq%0FXKjTdV27ujT#1?s{lV
zTqJkQn8oiO^@tfBIixh(E<d~cQJeB&34R-I*@2S*<iAuoL8jzC<Vh>@l7$*u_V9ju
zxW+bwe|d}RG16kx_>Z8h`C0JKK>jSk!S}a53d%JdW#}upO~kxpp3q?Ch$5LdXdLnt
zpjWBHnM6^AH=jN@QW=temnTC?LORk<D~F@`g~?lfitH@)veq(^o63)*{fwYB{(~~(
z#H%SDgd@I%io4MJQ1npLK=u|YZ2;6Y_D)Kcx!felap1hI@VjgV4!)WJ7|JIfEana|
z$JT?su_i9Ph<6+xco%yQTIzv4{ai62uIyb28uHsNcX-k`5`WoMp+-Uky{1KXl*3n>
z862;!K~0y~k?>*=^#w^FiKB@dZY-U0AbbApR-06C!<)`y#^wlIuWE3Qt6@S<A4YgM
zgWZ#9GI*TIQC;Z8rgIsBs5!WtLxuZW!v*R2?21;wiGS`ig8AD*(^Ir152l+Ob5r}f
zgLeMzDsUiwuAs-6K*8Cc#ULxeJC7i96`77A0aodf>hMcp?s3cHWsxlbFw)F<pU6Rw
zZJ8fgHv1*k?aRX#rv~s4d|uo1`qfP6a0ck+fqu?EZOe8jw|Mved64Y~7Qr}i?pLGq
zE$%&ifuqiU%MSY1WWef26$m7Jj*C_o_67%Qqs?pZ9egs+vKWFDUOl$Wdcz{%Cf?XV
zkHf|<0RBd;`b=OQM026vVm+bZh5a;#`#p%B#HLH6_HTSdZT88T4|CfgQx6ZT9jps(
zkDjz%m#fw51$ON~dY1a7B@n?gSlBtJT;`w+wL4AiN=C^_h-=0VK#0&fY9xNob3Q#~
zn41}uFQaRcnApv+WKGaMBG0|6phL^J<pmm^g<myFW(JF(S;@)4W8L6)`GK}hx&REv
zlaxaSi@JM`D=tgo!Hs8Qif9&u?ms&>9B8URKBFZ=Q%V~cWgrnG`_j6GW4U3f-T?p8
z-9WNHEL_Et9khX<Q>0FW?*POM({+Pbz<JZ5-I{0$f^N}}+^Ga}NMuDOrzzPV8=QZt
zCU+Pb%QqBrr0z0P{BbDXeAP73SsfwSV-yYs7b)1f?gp3*B(}pGH&qtuW<$EG0?d=h
zxa`zrbEiyV=D${g&Glw*r<kdR5qX}_p-@^DQe@NKpd$J}B2llNssNTrpQQBu+Bw~{
zmFacvIo`-E5$YtWnvtq)9ZC&Psx3CfGU?X_y-%?-kKANXIxx6B189bNQ;`fmndIJx
zUTdQCCG=<?*mr58pL2;WAIgi^hbvO$f1!R0+s?bWtRVW1-b}P!Hk&h@k1E4ish}qa
zKct8u?#ZWavxsU<m2I%fmUQZDx-c`&vY{iIqOSYVzc3hTI3FciADW}w9KGgO(!h+R
zbmay}wj`UST=td9{W7x_y74?554L-mn+GakBlKu9E(pj15y$<dQHEJrNtd~ud2_fo
za%7maa=hN{ltnkmeyTA>IOX!+azlg-toiK**@pp^IvtO3HJDKa;_Jf{8_7Lg7@FVD
zCAQs2%d>!jV2cQ>bXrde0j?^SmstqDqa^1>D4C<#SIc=n`of}Dvb7gQVh-!$0uc}*
zy(ZJEzhBmZn27k^dY$i!8T5Ed1fz`W@ZMbxI(^<b`E26)8e^>L!$~!r5wc$sDKvkI
z2#}-(P36k}a<Fj3t%GR;RALF7IoK?Y1`HW1yPUO*Q#I-|Yv63nR7G>~{(_rwFZ->b
zpRl<<S2i*Ua<UBi!#B2#+p{%AW!pf-nWiL~!l#mn)w<G_BaZ}AXDZXY2T@+&f~x(j
zi2BrYgovQ<u|KIavc3IhBd$^LOc_>xykx?-=30s#Y@2p}br2~c1LGbZNTs;oY}Kzj
zOaRsOEoQzmzDoNCQ_V@VlP;tj;lKGd7OC$jRLG)IhyFc<D3u}R(SJrFQkxVgoT~s+
zXL&aJg^_2*6j4G?6YfYbk(4|(bHH56xc^fKn5wtbq<rTu2&QPCsui6d7WX8dR5goq
z3&3=UJjZ1CUb9RNI~XoiZ4o*vZakn#FD62U0vRIUNleYp`NgKJRnSR-fC7%-dCp#1
z|97ya8qW=f)<P+|-e+Tzl9N@rW>V*)^$#YobVslS%fQ!TPnt}9(3Ifh*56!Hm5ytU
zc9NUpJK|$D5yt=W#y9^!r!rSw>R2peNM{FR>9udHhXtp?dLX<HV;^{yr9_7K#Ive4
zHIAB*4(6Hr?A}Hnv9&3jMjT~1qII85s#TXZXBwp&0t(X+v)Qyj%GA>s)=2%W|5Qm%
zsgft`jA-t@ywx-ts731~{IHe3v+-R34Qz!n+k|1K=Lq&XtmiXvypT~XXJ}fi+r_Of
zAY4owo<b5$E-P~u%{;)M<F)7>lbKgCGavU68{hRx^0w06k>SNMZCJ6?T%j4)N7;Xd
z%l{rH{(!)mCvWEH6O%lIYkI5bI3QoGfWK$de1F*EGa}7uXh8a}r#Q67&hZ5VJ)_#4
zK6;m$>k}I0<C58hzsD#Hl|AU|z&pku&!>4%xhECE6yu}4s8u`iQ+d2nDbxArr%1m<
zSLNBA8jbfVy6<a#{JXqFxTEdu(WPLN@LQaA-0^wfZHh}S*{>5%S6=9nab*|LX*9dq
zyuJa2ue2rS4cX%J8~m%Nfse=&xL+eXs50w)oux=_qT|{HuIa09HIC@<YLKQ=cl@8v
zz-CCkh?j|0Ib^%X2N;$;amR<euWxn<fB6g>g|@@DzIyS&s+DMXrj%_7<Ks}_`Nz^_
zhgSo=Z;dW8$1ZYCR>Ee3_+R+zB%YP;%mnR4m8b8$-~E#KYx`s78m?EmdD3Z_kp&@t
z!EJ(-tPU_NOtl!>-V*t}GSlLh{hKxu&dc9yP<-4?#pN@X<x7iztng}6fkz?5eeA8#
zP0>vT0Y5Ig=WK-`2?gDztU3bj>2PD$IGIEsQE<Cf3Zt#F^H^N24Sy8dY9Nc}1}BCb
zp%4Da(ead8&RYW;bk!^72lgNz|1QjN0k4b8@6lS{8Y&Id3Sfg#H@2V0K20=#$Quu^
ztI4j5N<d?g@J`|sM^$!J(B-0&2aNa1n&mYkWqbq+%`#a^oy=f^L$Q@Z^l96dE3XVX
zPR5hnxrSY@jyF3oeP6(55*1vMje`qyigFJG32LPKFdk65dBLK4`6XLHPhO^F6P=2U
zez18GrD!?Akv|hjtGaWw{?7g^UFUjN$=1K$;H>;FB}T9sL-1>6M4#>3DWf=kI(!<c
zKB;Y2*HlrzJ0H_MEvv>N{L`7qD_TC}?0oXs9ETvMueig6?P#xm?dzkgI;6x^#huvt
zy`Z@*6S?usKOPOAbf?-Xk2C2_)E0r|Md)BokCS1j{cyM0bS&=#a<aC?#Y&tbq;IRb
z$VkgpK$Kxd6Fe<JG0ug_QKa-(jP%A=@hpj2mp{K7q_icu4_6#7nPR2m?aQ=Ni(YqD
zcY24a-0*k58aTn_l5<RwQRD9yRh7^WolupMmtHg+OtEbv+jJwvv6*%Z?&iPcQDoG~
zse5;WQy>T0#CsZMvB4+dx_#5qp)K!hqdE32)Dlg3ZV_iDqNRH6F;O%>OsLVMcAOQ)
zrOb{(<b7lZ^DVE-rJG(7(p*Nnbke=fNdDfy!t(#eOBxRg_3D|9S#UGH6M-O`#LPZr
zlqMvOm{*N*EMXQ8S--B?+x$5KG>fHbI*=9SLZ4hW4{jyR<z9U;QCxhg*ZvHL^d&!#
zxj?c)c&Ef9|LWWtaFN(gD@x3eV~OZH0KFg68wEsls{AY`6sd3p0Dg^?Qwz`#SU3@5
zYf&E(GMAnl`W2JXIsUbG7xnF<8Lu|Lyb1y|YwMEPo4xWiMo;W)@*x_VBjR+US@?Wp
zhFUNkC99h`E&x9jxiUkpow1MDHp;1=z^%te)vIipVch&k5$ginMm^?w9=labPyVLk
z=Cyl9M4d_3sKE%P5qdY!P4tgGX(NB1=dx#LBpLObe-%iwQu~7^=;gYbm)zI=@DwTM
zFPd*E*GB8wf#UlMWcKcSDV9jP{@rEG68ibrkD`0rWz}P+SIAoyCkmjYel{A#JLy%|
zRvJfPO-ZK(ZGZ2{V!9gYQ;Q1N3Fcz`1~e3Lg}I=l^F|%yYfKuymN%DQ3^HM(#9Swz
zPkmDu&@@}H=jYvo4I7#bGx`bN4WCqy)c_);Hn=v-)<1s!UB0_2s^0)Y3;Hchr#kn(
z1|ZX3e2e+S|2zs<(m}!uiym#ry;n4IHQL(Jip|qJLmhZ_7x9zKVg&ZVfzROcc--2_
zK7{ZKh!w?#nfq=8Ydl_k0vRT+cR-L0FaKt5M9`ZX7xaGM2jJ%g0`tO3kiPm}Adv0b
z2KWvFX@n}TbZE`)OqrRJO}-<oQC)F?xx!;ryUA5FX!$QW+DGvNZXbY_$FvkZz;YFt
z+fGFg?d7!w!RL%oVF>BSMY2;}=H6(_=>lbQ(-oJU$(5cf%9O3IFXlt!yIxs?JH1h5
zRPr{Qc-G$2zaLvr=ZrKSeK=$_LZdi4ozJ2fzY{aw{mCot3Wbkipu57m#GVSGQRAVN
z<vl9&X-T*)C>MyFV)ecMQ@Hk{CSyCnDhr)b$6WC0y15*20t*{Sxzx=y#r$H`ApL}j
zmJ;uJjLhJQ;1(+|yf$q4^UDYdx(qC6m&J#k0OiF{hzGOVyuocD^W#*Od=vrpN+;%o
z7DxEAu{(AZQkNm_3!d*N1W3-4Y_vs$o7>e`TA=N6^d+WC?8LTV<;J{T|2pAc+UB`L
zl%Bw7_X^MF>u>gcF!nr)$!48c5U~IG+XB~PVM{FTRC$`{^bF?x9(A&{j^{?o!e;Y7
zF*l=P#5^m^kz1BFK;CDhv<Xx%Q&%68M*nrjGf!>wmrC(c8t>0cLiDpR^AAv%F93^<
zxR9O=eNK``T42pS<cy!h$>p9b6^mVc`$uP-uvuvVKg}~SYOKehe?W}%-PvjiK8yCI
z?n^~D<o>5gJU4W&)MzOA4dFU*_p6SNs&4ZVFBK<#wc{Ohl%1ytyb;fhq)Ey&8Y@s7
zXSG2%e3LK9^fsM*!K}<#AZyBLzVK#?AScIW!7Qvs=Nx}?KDSk9>9ZL<P6jd*Sw7vr
z)LiF0!ifRMQ>j1NeIKuM^rAbM!|1~d^%nhpgqIXKU1%^y&g&g<sdy%#Wl*u$>t1_h
zxseYI56}GuAKI9?)@!-PMkz2n!^)iTe?X;<6p>HA^%2mdm$tpc-9w=ytyTpl+_%$&
zG%J}G)v^|otOqh4($T{{aCDh~t~m(A-zW3Lj6FnqhhEw?S%Q|^Z$56^8wA{-MOxaD
zkHjv+c<;kvw!z%#wMB6Aq?62!Y=*Q)#cR6y3~zj(*pH8F3%7Etx^K?ww(M8cv3U@O
zcTwYY%Bf1?x?w&{tWs7HPW;?u6Z`bRQe&OOyMSN;Xx-R#%Z|>^k`pp-Ak+v-T)I{C
zX*H#p6gz!2OCAAR4TK{~pP0=+sc$tkj?`{^Rf2|*i0dLsE^~{csLv4GKwZ8@=z!ft
z>s2#2c`lu`$5)WhK5L>d{dPD@D0|^~?81%N)VjiEDqSskpvlhz$Kl#&>OMZ7r?wYB
zG)!)kXrda>He|R#vr;x|>X46Ydl(~0a_y*Hd!T^L(McHp+xjW%DG|~7(mP{FYPUh+
zT6erTSsv6P)cGc}F-ieU<Mgp|XwTgW5@&1w&M(~W-jZh6fzfqE#?eMg8%G^Uo9L&M
z112dC8oI=+p-~Khd~e>YWo$31EpL!vb@9z=5V!wlbJCi6nb_={1oxqx>0kPL0t2G<
zm+(Yh_V~Gvr^8IuMNjef4vIaCrbg>8*4`~&hT7Mn!)!+2QDzp~Ic%yi>1b#()pubI
z>9yK>q-0;Nvka1-m8ykWUkTK0MyZW(bV86qXjFN!kIA%2)#$u3txs&a8ZZ>z1h2KJ
zv3P5eEUuT=HE<z9r|N1%J3?cQcZAnw-j%PUaP(75AhW;*Dcd<aq!i8-eu4)vzz>x+
zi)(Ax{M^2~$7j)NCT@+HB<~%2SwC88Z&U1T#V>_JUg^nfbxoSHzr|WHaBQ2uHqi08
z-ritMTVF7fcpR9}$htqx$qApJ($MnUH9^#4%qgHJ^OuuQrZzb<n@iTRoi_hc6Up>T
z$w<1#7-$TNJNc1slF}9GL;|An$r-oAi18vrqi!d6aipq&lNvi32!6%bFM|tvQ?YQ2
zz+6P+1=_1PkhJ~RCL4>?{C7k{j3baecD;c54gfB}Gc<ioP4UGE^%OwO<h%$J*Jj1V
zu(;78eZ!*p+0EZt1n;?c=DPDRM}pFq{ehaA(n<7w=xg;q1J6P{Uq(iFi5JG;D?yZg
z@&(z{LL)ztVjEhdjw--zV7eg2;*$+PcT-oRf2LuFv6Ocv4UKZJPSsf(MMyfIi?Yg_
z%rx~(gmfcyvxK|nt8T8m385G7#_VSy+f)ijMoW7_0P!W2trlp!Ro#33)~(Pm<|4C?
zot3$K*HdGtz7$u5XnVG_+}5+pHQCA3v%OJZNXmAO583&q8$dHgjgQVL6^h$eXxNrk
z<q8aD@DJZvhPIl+kMgCnMK6*!W22@<###LTfY^NM%opQKV`I}au{)^JI|(|IgmT%U
zJx<%AZnD*r1hX^a?&vRPJ=+VM6t0!HEI!r_i=U3&5_}`v<*8rfKKUq;ixRQJ^qRed
z!&h4EpjvyeP5$~U3G_d6p=-S@PD4wxp=Mm=+W!Pa{u@^O%Jb@noA@n%ZO#eCL>(3P
z3T<%-y65HLO1^Ii&!1o>j83sr9aiSFPb4*|MHu`_J#003VfGDkx(7Vl)#v0&L;<AA
z9#?sAD1_;9N>kiu1j;;w0)4>P0EPC*@DQvaJS>h~X%DHuJ<6y$hY6g6$omMNm)WFc
zm3_Dqb0EVnO;o_DE{iR3&_x^~Qh{^ltswwwNGi$>H6eDUeVbio@Hf_#{RPT>$AXVR
zcGU{7XiW4YPzCD!b$d4n<&AV_4nxA39%8{s89UMMsol&J{4JI{$h&z%!Wdx3tq>T5
zpvBS?0z#2JDzmuDBlhb6!cq_7%TdxU$j`IOp=)%P$X)%sR?}SDi5c~!IDfv}@LmyS
zGd+JTzPkT96lq<GeB_Do5f35%LU75|rvA_nC3^l5AZeQ)hDE<_-o9Ad0Ma;?Srhek
z%nfErFjl)%)mX(hNcQsi&DtlUHXe8J#`fda<*En~Jq{;$B&4RZBfP$@r$i@rPcy^`
zqJ(5dZwZHpr|fMwMZ-^=*IeT0*h+9WXg6O%F;n1nC*7u2U_{z3!#;$yvx^OF-@e_|
zq8*KkEmPEVL?I?OwsgLcOEFAyTpzN7KtdPOF8Pv&BxUZxwTU8bBRx;=PWgn^u-44*
zqq%opK|F%5yOaBUywpUCwjVb6$vfV72Y|30Wp3jVo=c={Ls;vdZZWs1M=WhT3m_`e
zDi!WHK4~wdtypT@jnCtHm5gcat%sr6Y1AmkVeS+r+1>q>7|F8^1%VGio3|*s4Ea_V
z85Iq+#QWOzn^(JO?}7vE9_%EqEP8yqM4d`-DYZOzm=DR7L!^GK5qmv8$gCIdFcD-F
z6T7FIZpwV#=(1aD;_<p4a&hq73NzIrk!{;}c>a9j!(KX8p`C3_um2}BlJ$XlB3c9z
zCL{qbUUvCC-Wg3Qcv3P)>p#b9RO2|_+H;Gj<|!R9N^1a_qGo;a^cV&r!G<jS7O{z1
z{)7VLevyc{lr~A}&s!nXbbp>!NTiVi+{04nZr+vgkSf!?>KKN-;cB}E3?8Q`m_?V9
zeF{0L^&&w1Et$4?W&l*+urA5j>kVBH&x1HYow;qq1BSzFn;g0+Xjn;^Zgm(o87{N7
z)sFxR80F)K8NxhG8{_by_juI?#$?^B!}Q7}FG}Dc^W?e;KI~V|hX^0f=Y~TX^5S<u
zSQc$kqK*)+Bap;;<p9!g0WJHN$wkl#U650O(=G5LJFR`hdWm%35#f|nMRYJ_Bu)0%
z$;WV#F9V2Fp(XJV!1gs2nZMSPP?kf{ek2t${sB2pnDlhBFh{ZX=$&v?NeWHkcukAw
zu3@0%7sOBEs0KR=x~1#TuFCF8PHb471#zax{psUPx2)ZlRq~~i78Z?goY?LH18nM3
zSM+ZK!$oZj^;|ndESk!$B8;N?sDjC|3H=P}beBcgIj#d#9I5Ry%-KOLypA@v4<>Fl
zn<+&FBdUYlt$tH}AF0HaMv6aj!IN4zz#J0}wWgZUAiAx#wb-=WI+kxvcZ3a|#k(Zr
z@p5u`zQNbcSxuDSc{k~UUm}X2-xR@)PGE*8ygq40w_Rj9cu71alu0ET?6Icf^_Wnt
z>K^6bjvk3}5$X{?73Z|EP~3NAD>qenwx2wlOj@C)Y}#tkbcQotH)vU8*Lpq4!adBx
zBO~bgLz_0sWHt15|6$Ul?Q!?GvjKkSm50TPvwJ_0^T!1q6lR+6(%0B{8tVRA5K~N$
zkAWtJsR&6Cgv_O56h6L{h)@$%WZC&N=RRX~kxgpai!TH#CgvEd!*R4`S6Wb?UvK8>
zYQ|By!#ggkrl$6%yjb~MZEZb3?T6)tcG<9%Ue(cOp_b)y<Md%$4_sAP%;#c)Xz%~?
z<qwP>=x<i3R)z9~W+E#QAeY}70!&y-BZOwf@o-+4z;M7h1al0|zYHYPenytm1tm06
zL;cl-z_DePCd1fM%V4BD^ENrf&yu^0E@=L_ZbbZhi5j=|KeICY1Jn`Q`d&G%gAQK4
zTLdrX3ZS<9-3Y<fM!X>hLT@}LMH<%CL(m?Ha}lK2ezzq%28e5%@*{sk?&V}z9BL><
z#iih%pny7zu(U0RP{u!u+>-W(gw5{5Z|Z^q_2gAxXA_ld3TkC!TL>wx(c(V#T0j8f
zhX9iS?p(r%x}RU>dQncX@2N-RI6dMT6%y1^XOioLy`nf)DQ=%-HX!ZH8_K$GdG#<<
zK;1txzgT*;X_#U}ZL}7bL~$>1)0jZFgwYv%gdu!m*phOlHm%m^D#)0|>rtgrV^k7(
zaL7ewqt69mSVHY24msZKH~EF=!%sji`yF*py(P3W<58+e<|H_YNZCntqP1-0f^gt}
zQDFoXg`AYAmxUPB2DNp#Q8oG=N50N`KhUe*VyJ%DILH@U$!>kP+=wM`EL!vY1<xf<
zM&#dz-!jw+;Vg<N-tlci=RFiqT`-b<@W%EhM{F^SQBrIS{5^91We=XQv-irBvhN+s
zrLN$T14=8H8Azh*JVXjwo+0yN1tGPccPG9?#7@S5C|B`_$su#upQmll<#*+=$*pQf
zoBOoPW$}{g4;!eZrk4|4hDB;*%7Fb=JWHpiK0YfYUb~R?{p`GI+0MIhxn?81N{7;m
zrapRaV<O*Xyn#oXCXJK3SF5iJBj|NnT>UgIjzr`_rub_HS>F+6!-`;62y#+XWFFHJ
z{pgG2>2D_1R?pcIwkXs-HqlAq<<xUu7n?mGbcjLG*4Sme<cr-Bo;>M%Pw1twv)Que
znA+gJ4=C(#Ny=(2QqtDMB4x4}nXauo3Y2P$tBK5?K4<F=let<HMH!V_<?eou_jcc#
z|Ac^yCOQGxR5I~|40BXefAs!k&TD-n#g5V}4fO2OO>8WL82)`KHdD#WeeM@>KUDsC
zDg59<pRw)sK<N#c<sgp!#jGP8Uu5tNOp~n+BibsGU+QKq4?eeDH8;2n!X;IN8vFrt
zTE&a^E%a*Q`o_M-j&R1L+Fw5Ox;L6IOGjuFX8#h!XByq$NHrtVoed-&kfFdp*LKoL
zhCrD+R*bs=5S8_68J0IqKZcW79WD}^&-4Qu8S)(LAggWz&PdPA-(3vuvxqSCn0G~K
zogyr7G$}9piDl+1owLx2h3^thHJW<JOhuhWwu4sX)TRtBjy#U;!Y|#X7~WBpO7Zd-
zqTZwk;js@m7DkJ)Dejx<uMlX*{ylsa(xXy`+3PX}52qObw;uU0=J7LA*_Ined!vDs
zGswY*87X1s_aEHx0YlW%fE|3!zzn0f0+RIp^cN68gVvT#>rSZ3{Lg0zF?EV&_Lan?
z=`#4`6;@b13OJ~5yy99*n0DN&F6q>Dv)!BHH@gse@e7{zE~wj#xU8Pw#PmUPgG+GP
z%TNkG+ABnHur=n7Z8tStP&n#AHq;h8RmQf5h9(cfKaqY#poaO+7eO5o;`p#4BH@%4
zGRcp`9fCiK<uL3Bro#+VS{|kGpauT!FQkwRb!u27`>4!$Xd|JbgQ5dL3G3)b_9FXH
zS(OBL-?{sw+T3OPP$ZEUg#z%&ZCw><j0}xZzO}s}$Cl<k?r~RmEpKU3A_>`0GNGh(
zM%W5O%Oh@O7UE0&)ut7oSRpXw2Bms~(Un{>j9z6kUvI0HK_8J$dA&lh`HVHco5gW3
zC=U6uXd1_KaIv7GD!}19uhfgJFhW~$2?yS}T?4h>A%0VS4a1RSiJ9{a=@=?UaF}Ir
ziVU$FCZ5`Fgt(d*q&&tX)E~wr0`3n|+!wDEi-sbcJI@jvOzX4w?kaMUF5LWBO{KC*
zZCHYaE{eV{5qbZeK)gh0OB)pZ>E0ea$nx!>!hvs~BIf4mWxs3QXrU6^>+HgW19?HJ
zjKZIjdOD8Z5}q%lzG_QJOSTj8Lh2?iYuXaV+r4*qy|w)QvnX+%29H3t{h)$RLzSR~
zP}F+JH-D%p#h%)i8D*x@iX!s`>*|Yct^2FLb=zxUtWB@~ZgwwIVKd&0ZTZ~h%EiyR
zvK?*8Uh(;^NDzLzuyg!|8M;A2E=FHEnvY&Oj0!tM?jy`G-Cy|gg;Paj%nO{F5FHRJ
zV<)Oj90FMw^;IWXyIgxj9XTvNV<sDVCknt$glNIbz;-@pOj;G*5&x%3aO7StkNQC8
zx@)u&{Fc*<q@)%is0AE|JNhwfJ;9EzsWwzeo~y#`IMT)+Lm~5mXsR&oSI4b)=H%Ua
z9@{F-KEn+0BR{^0v_@xBT^*cZcs~CVkjw0_G5Qb?*36e_Z%<^EGv>aSXYucQ@((;r
zq0hHC@)sXbqhn5XOupdAp<*_S57Nt8yge!7LE6x{3`8A&&$SVhl8h8eZICNM!?cL*
z|B{IUa(d$b>N-S-3Qo*@{afql<REckOjLHF1aI|eiq6Z4uuehaEe9sFa-pG~pg`2}
z7~dU}jAXV@X??0Px@Fc>99pJ0bd)~UPp@<#JuEy?u0lUT#bCN?!(+a=w|)B2=ky`~
zzvZXU0A{v=O72~rO=Z#ux5&3}Bbdg|p4TUF0}q1SvB}c)StD5jYrfaUeRwa7w{q}L
zC5hH?s5wzFiutNWDF_E4heMfm6n0g~axKqiN=!8zu$QLEUQiCF%pja#Y3~+Oi#U$`
zc!Wd7|9#nLe$Fxv>yUT{VP%PrU5G5q5F(7jxt}-<>19iavNF1PIb>$kA645A&8FX}
zytO9EcgLcSKdUes&%E#yOHD_DeE6{AK7|6_V#)yCk=fiw2Orj$F~PRKJNi88cGNp8
zbChK?`=24EK{PR^iozdI+;<$pCLpMTBfDTEyFAupGKo1Sa+AcfP7f&--LyQzPevg!
zc+q~cAF?H5d`yql!i8O!cKhrStMM1>*ViW~VjJc}K86QG-&>9PA}Xcc*W@ZVv>msN
zHtvu0xZcXwu*Q2Z&TZG0H(mCcH}r%@Uus9G1lubAr#Sl0BY^&V00Bz)9D0ky*0-Qt
z+fu<k7=dB<(gu-i{XKSk)Jj-?=S}K9(zh5lW(aGr408P62(r^Ctl{@-82%x*nQz1e
zbMV_tgpDx_jY_JDt0D(Y3|l0EQzKZIqhMKH&+yGbce=N&*#lz8rL`lXn+`=x9LZpD
zNl3)#LMmUS{=NqrwM1o1m%47Ps$_4Fd+?$}QiLpF;h7D!=|`Y;C~SctJ=q?3u?JPo
zVI~G!!cy=jgK~5yVf)G|xAj`SHuWkO$$6+ID-9JDbXCMlI05VZDQTg20~{J%WIq=L
zi4eZ%3lcf>{~^!(JJT8LV8BvFW6<|D`bZ$+Wz#bJJBEAiOqMzGdp${uW5$$R9Cqw#
zb)yPfer=|+d-A09peYLLKIya)n~6g-?QTxrO@hyxnoRM3uV;JeiQBx_+fuFQy(yCX
zTx#ruBd{m2agead=-1*9B+{&zyznk>KWVqq(Bb-}T{tqtAH^uy8R;cqCB?#al29}o
z-PyBC)s}@1zSoSw`!Y^TniSZq&6uLcm>sw3p%qX?lC<gq-(C`t*?eR0E{68tFD5Dp
zA{N7A?}~MISyy&*rTeH}X7ko+rq=I#+nV4P2<+7UB#gn`%Mkbr8t3yBw}Ow@wY%Sz
z{9{4-O}ZP27bBFQ(q}7n8&Mh!??D$hQIxy0MK(d2dBcyZFbt~TJ~gbt$cm~9DIBke
z$i$>%a-Zc7?#G8S#mO#egZ-|Gp0QQSCMB#Z&Iap$W^q)L`e^>Sz}UTDQ{MI=r9y0(
zr>0a`A%`SP@h#~uBX7w9#A0Nbb?KLrkv51qdwEcWJt5dcsJb9V-S)$Eqj=gz#%o!g
z)VFk7yoc?me*xC^qJE&zKsVSu_!E8aGu!|eRC>eM=OnLBPqEo`5lLoGPREAXa`}7=
z_pzA*SUD+A=t=g3A_9qN0+bygE6yz~szHLgzap`MpY?rxff&_-DKh5x$}lea-qbK`
ze!586=J6AG4+{3woqu0-_((32?dLjVxE5!&<FGjLfcO)Lmna?6#Ffcv$((~(FCo3_
zo<1{`M&BoL#GH+>q=nH=oH599=;t*3R*3r7w!se0fa-q2kJh5-Hwh3z3G2|xE+>Y7
zeQHg|5>EL;;#y;qpJe;mu?L57sk1RbICo$9z^<rpfvdy(V)~J{epM+Z@=L^5QBW3A
zQaod}8}1a?(r@Ygs3Z$&V|)=-8uP?yGSqHnIdSmG4X8YgtA1}@Bp&KhSX^;p+6cxS
z%+xOO_xHX*Bx1`1J_uT!c&If-P?$S>VYj^$rrkj2hJ5-a+{ye~IF}%V-M)TAr>vbD
z0qc3@CHR#09ZcqbOVy96ZEuV-hFv@kiVwXfdP!F8TXq~<wk^2-yM+R$#8(cqpDXeR
z?h^w+HSny+MurAQ>w~sTN4F<6MOB_2*qEm;Elf5vnTg`_Obqqx(@L5RX@oBfOX#so
zsqrYCHi-I%2>MN6tW5f@^keiTGu4fu2wJSO<VTZR4l88+Y^vnOqNjbNWZ{OSyXbH0
z1wPlOR<JJkO7fu!npAl)>(tyuY=4+pcIZ&wM0ff%QY6SM>zws{v3;+ql(Fn&Lwf;g
z>(ZCA-4gV>-$j8Q&6--I@4UfPbWbnWh&Ra!eNL<IvrZS$5}IRp|Arj4f<|KAI<Cfo
z%ZGve#KgpsgY=z=8wr)lb?8@a8gh|CML-4D-z%bIlQif>i}OaR=&2LAv>!0f>MopT
z?!jJC!oJh)RTd@6#+k#TfQn};x7bz^#jc~>Z`9VfZhsHx-NOnp{VaY;R#}{svf9|r
zl1XQx5cMOseyNM8c=Wf#y?u?KXMqhJDn#b<showw)!P6Y%S1BNG9(QTez}PO)KB)E
zC9um^CntQX(JWydAFy30Cv``Q|0x&WvmqP{!<@hi$4Q>|e-BHB|A5>LF+?Z#xD-oq
zZs`Glb@4?I8GY8R(q=FP1Dg*H<XdT3WmMBCaQhi1BCpuka@nS^$DC<j{s2p!O8y2-
zGvKA$S3jR1Z78?pe#Hj;iOej`dmubUIMeyFjU^^r<_%5+#I^vk%pzC<;jz`1zqJKu
zePO^eA?;ipdhmJblV1&cNBS%7%>;utBbTt|LWu-?TKJM`#@}8<d*?F+j~=>C1qThH
zd<#mR{~qVpH6+81tnF?Qb-B~DD_3KC>SX=C5wRNw#*|)7BwZQk0wENz@V5jn<O@HA
zzpNi_qNgB`fpa5)oI!BeZ@5JHwBI${GiavVK@tRI<C>uAh)xT*C3MyqPN<}|^Nl?m
zi*I_AhQ39fpYtYh48<8S^_5Iic*ps<+UKFXjC4v6qVLqHQ^u0MoG|^<$DO1kUP5s`
z^NS0a|L4m_0%4C7t;>pwxI-Xp)?Z4U_AALD3=>5ZGp;7oAZ5J&PZmIcKRvB~XQy0+
zG2T#<;o(WizItqQ8_6YAJ%m3+@EG|!b{{QU>W-t1&TYq6?n|*teCKX|iy9N&9mkp$
z-17gb{Ga-OX$qJKy4iP|-jb_faSQyEtcaccD`tJ4P^rSsk(%^f&gN91^xC}cYe=_)
z^TbQUh^qZ5))7M1XpVV2G+e7;+jXe-pP`@ar7VTaJw3AD4c2|Xuyb3^ty}uC?_DnM
zf!ZJVbHqK(Dv|&X`?G$Em2rs`^^*3T|21A0H%3TmNi;LuoEl5naD!YM$onmIqX|<m
z#<_ES<64@`VLzH|Um@R^47aHfUCTi4Z4^qUQQxyRT63XwyFLW7OHh9jk6E626oP?x
z?DeY%J^W2+x>=V`gKpovs^<F>p6IPPlXEm`0mK<55hvRJx8eCj`hFAPIJ*nwlz7OH
z8pm)XBFMZGsjZ>+$?ZP+v=3C8F+lwjNxZzqNFDkd>4bKc^a_X301?rOqNeC}bgCJ3
zgd!uGQw|O}o6iKquzk;wShLCeq~?_{1tX5)nV~D??FbUqfv^F>ySSghCA@zufokm*
zv_Y&YDBqQG9%P8m)WJ#&KUN80MHRqYZgSo=j28|?bb3d;tqr1^(Ic7yA)z0a)h~dt
z8OLYDTC@@Z^U9lIHbQ|bDPfr2e1HcPiNu@oChk>ZVwNTjOkoxafKP%qyXn;t{PC%7
zH0X0sbOBa%k#1BGi&Jt~89DpzJ!XVSjNz5TeqQ@n+PiX?=h8!;m~l%PC+%&7Y*=vm
zIxq#sjF@xEtHy;KRn>LC1B_fZqe9qmZ=2$v6JS49E6b1Gu*<2CDkPKj^Uee{VNj7(
z$Py4-wvGbY3zdH{`VgjnagF&1>$d`Ldx<7pc&YZ0Ax)RCs=#_6#y%l4Tl!s?rprl^
zCyB|aNMjt%iMCxM@{e{FZEbjl%sqiQY#(i{26+2Sdypa^T)#XN<;yz0-PCX~*rs~k
zCMgi+5*hCpFzi0Itxu?<_J5a=FJM~Oj&-}5jp@%n)~V&|{*GJozr`Y#fvs=eYjI=2
ziL0ztw{biZMPiEzp)+VH|Ir3KTMM+q&BhSSf@4aIa-n%c`UHmwW)~J3D#BXEKI%>Z
zb76bO%@rdt!agpmAyhrI<n#?njcJHSNaWiw8XL#N7DKcd?L5XotrZGycx!iw&w2Uc
zdZ?E<5lgc*qbV%iPma7g+ysJd%9tva5j^?q+Yd7jI>|PryPK#A*JWvXeRkS1uy{iT
z>EdMsf5**fgGnhnIrZPS{;*N-MpQ^;?LA)l5xLji5V@nCZ8%V?#QP(HkZ<v6q3FY9
z{hy6>T>%FtFF=0x>R=k(Hy>*LlE+qfxABHj{ZmYTz)7S>YfVGP&mqoMCxLMr`+OH7
z?HcwtbNpb1snLtmoHNtMag=7izfs;RGokjLx21P3d(x@3O5<sZRST4($}Gl>f7jQ2
za9>X|!hF|PZ+5q``Om=M6KM=F3}jKTB|dtqWnTEfA0J@>E}#(AISsc2>kYduW1u#4
zSvSK40j&llTbSO_z-6e+mJm+IbUf4MM5yxBHa`L$ooWd)VCKIn$Q$-K{xET_kk^H#
z7Ey0?{k%}$+ah6VcZXXsOjMb%f$)B1e%hnaPmT>YY;v6Bwf~OuI|b2mdy}7WPH^ct
zvA)?eBU~Y;`YO>jHK*j6MhdBS8zje4ZHwxT2iba#x@rYB;9(ZmP=JfVxiclo!GW!2
zcKnu>c>wv~n1Sv1t=U@y!Re73n639+GR~-H`{^#QvuSpQ0p)0TMsfC#OudS)40n~%
z%COaCj88^M@*|meM(zA2F5)I9QE_gr?awN9&OtPuUZT^&Xo121UB0vt6B~KPtYo9z
zWXtIq5e1e=JTM1n56qjW$oBEFv9e}++U`yjM5~lY)DmXv{eX%H&Jd~4cqjya2;NB)
z9igy#qJC?rL#Z0pUbD@`i;idVb;r$zB^lsBG5S&pHQ!8{s%unkK!=S-umjWwjBQD_
zPNE2+*As;kE>d}kMnQWCwNb9!cu97H-%m19w`9xXE9-ZX|AnLPxk*VPf54)~53t_F
zH}Jw}a^@HR+uS-h7TG>-W8+HVPG&`GZMSXVXYozOgP>xutkkZM@zj|mfbp^u9z6$1
zuHp7#?Vt!HU#2e0BE|Ka7gQO^XjyJ=-?4ocu2Q>9-D_<>vFGd6xmHjYB4F{wxCbkE
zV9~V3qN%sd#6vn<_QCGx`g-MAu9#ZvkCmheZz|tf`-ys=2K~-Cj`Ug6_(G5S9^66}
z*aUrbqaT)?|K|aGzk~qL2|m@)S7KDAN#A?Lp9v!bg#YY~UeL4r*LO`*!gL3}uKw-`
zGUUnxQbtEqYp+lTMn`KAo1Wa*d2Bfj1QECdhwFm{`3U3~&-s$$!}62z{^xRhpNzn~
z@O~d?LFa2K6j4%d-4()2!6JyXl^*g6VBD@2uBtTZSEa5N&K3-m>G4B_eozQ(>7OS&
z7y5;ercdF3+MH5CY5Y#|O@mBXS>uorXg0lGvJ!JH1435uvs*vei9ALP*w9Kt%ObD+
zw*R})-POs1=(&1Nn|^DjOAC!YDv}3$e+qHG@!?k?bmMf9ggN8p!g9qvkSstu@qoTT
zYus*(OU_(b@gTeAFw=1?syrpGm*CS~*$fPbrNt_#&lElqL&d8XmkWZYXU*Ly&{0yc
zM0klgC%6=?!FoF7c8e!uo%);eMo*Y3L1G}Na8IVJzS^QS0KE&s7)OE`tfQ9tmqC@F
z5^->kG3YMZjYyjf{&gHzrVc8l2e6#qkGc!T4USMlgXK_vdeY}Q2;{)g!!)i581)?3
zOIO$BkA6e(IFS>ckUFX<wP@A5&JC(1TCt3fV1-mCltjuFug|H@C(OD!O&QKTo^2u}
z-zyP5?Aa;2%PiiC6klEMZ}!7#*0bi$yidH(Gj(%(XTd3jkV{d7&mjJPq!vs+Zi!FW
zL5r&W#b+7v70)3MSa^7JdZlW*r%NC89ZZ9%A+rV~kIT)psAsRr5!Se(<TT-nFq$Mk
zj3*-%kurnge|;EeI&4w(m9Rwl2H+YFyg(f12x#9*FJDg2KCL7`gcYdIi^&4QxpfY4
z>bJHaM`A{Qu=DhXCE5VMj&Rrvdk~fgwJD~=DPvC_c+Gzhvw2<FlZA(&lIJwyCc3iv
zJnctIdxb$c@8)<aGHWDIY)K8x_6$*jSteft7L(cS13+in0at~Uj%lCcIGrflA2Ej4
zr)1wh#fWhtgE^SRCfMI@a7iHR=^;7@EEgRu0NhAwnJv|N=d=|oakGV;fUY=NUdDoh
zZb)-WO$hCf4NX&GgcZ_OG^%+76aR~;WnlJ%Geq7brmhnzN#n5j(y8_Gp7u+4T7pgn
zMf|aYmb8HAg3=9GR_SAP@@pQc63&a$w$|WjT?L<R3^Ug(Jb`n}eWS}%CiAJ1&5^Q*
zW$|adY=fJZJ6Kq93#@3?oNcHPTxP^_YoMihsC{8bw$lT$TnzViZhL|2(5CxF?GoW9
zi3wPJUO5*f6;HYF5uLD4Nl9sBAeQVPT2<J*e9W7|8l?!nihE9>3|kwoFuu}w(cjU~
z)wOO^`d0fR*f4!?|A~`Q&#4>;#%>T}G0G9gawQ~*uQm3q8s|ftQ>L=1!$%Q>0kXFk
ztL!oGNPJ?Qad&SiYgOFhXUq}?3EivoBqxSEOjimnul5Z5Oz)#kwVB?%-7{-54xgiE
zPQ^R2t#Z3SxFhsK)ndE9LGa(W$<k#Xg-h3;<gvE-V%wNy!S=@>{`S5)-+tnfvR2G&
zYPnc%8pB~*yTw*fy%sl_7)F{|7FBSx?0*iHr|J8k*e4;f<ws_HRGVjXjc+;bCZRvf
zI&`%!*c13Ra^PMJj+kzfL5N^1C+*P~h%kF7KFH0^%@3=#6wkiEJ*_RT8{hs;Qe5=r
ze<Vkc_>U%dLh!EJZPlZIAo&y2eIKmx!2DD!9*WsOkBl4c`sB~qoy_}8F`5ociNRUW
z_-;fbq~a|~947L@UqbYl8)S%fLW%V*d$SraY1414uEBUP1?+vF_IyK3(9;Ieb9zHz
zj7nNMZBRM#Wm63YC2PhhQev>;ULCS^hXyya8Ph+@#_QXn@F^4O2tYt*U;Wncax%Rk
zT3jqP%j%~aaFRACsvwJy2fh!5NrL7ke*M-!4QGLvof9Dv0}@`2E@$eghZ&;1BKBYt
zQSw^;(0Bd@I9$ytihVr(Y!(f6gyLL@9Ns(I^n>!JTvgFpd?w5RPKEb%NSZqP;4!p9
zE&o&Y{}A@pQB_Cl+O{IGC<*CqP(m8%1}Q1&MR%8!lyu9YOF;pV?pUO>G*Z&tQqm3Y
z<bC%!XYYN^`M!S~L&hN1FXnva^W67!gT$E|;JTC>Hz|z5M9S7gbuLel#eUl84hy|&
zJ++=F)F>{Tc!CIDa2=F+oJ2Wktm^KTaSoKXKPg1{N*j#vSPr}0fFpg%o2zr2y-RDK
zhv}+8#v8=Q+m9VL2lOJ`Kr?u3la*Gxt>G8}H(m!BNiRPe^9tlgv#0)Ushi$fy3TG_
zhhNB6t)%5NW%xUfbMII-n^eA!JqeEpn=xcJUMSX58j8NA%~ps)AB_AS%f6@VGn;GX
z!Jd}!wCYE=)PlVAoo?02<+H$%hD<uJ1E$hZ)e!w#bs>iH`Y8ei83(M4Kop^LC+xy?
z!nbdy?A(IpcQ!}R=|{nKeWq~}E)pe;NRNr9Zjvo$6KC~M9y6Yrf0+P*0}&4*)wH;o
zSbz#%Q!XM@^yo&=>&Pr3Qd>eQ$SOc^CR5m3mnN9*167dCJh1NCp@w1~K+y}A>t|C_
zQ66Kgi}$=LJ!ES`RO%6cl|d6YgWTdafWf?~PYKZ2gX|e2LqV6=x#}l=C<IxP>D=vL
zL6`<>Po~~+JYV%Iq9kq*K4P1``*hbEiA02{m#<;@3iX}B(?hs5GEgB&s^Ec5l532(
z_@l1oJUgro$y#YW2_`&=C6Ms0lqzUEDh88Mjc=h@lX(8@{PRgc$5TNT3DktMB~Ai-
zzB!*zonlksWP_D04>HQR56JkB3sPEKfwf&nB5TdK*BL)*gD1e0j(|1B4vVb~CNf{B
z!Tg|uo4tG7n?!m29%#ugbj%j%vm37IE{ht9qiVZ@M6Yp_1-1_=G4_8f?Ko`u;6;72
zOM~zxVtK*tP;@YkQf#9LU-H63urg(H<7(w+=Y1UDmG6?)J+5n_YV>54!sdD5#&ru;
z*Ut|fW{k8)d(>(h-Rh0QFJ#G_gPSSsL6L!9YOW{&AX*vBP+FuNBVjeler;>G%qXQw
z0_H+SJ;7IqHwX@S3&&DpJAbpU`UDvxe9Q90@JQ@KSa5j#BoFCVe};q2$-&XEb6!^W
zYtgZH$2ecZm*n{^yL~O@H?gFcutMqCpnqd}FK@)h-ghECF&?RzbIjtlU1%ANIqIPI
zDjKYOj*^z#QO2Rf$DEO>(o)g0=69T{bA4!^N9R#bY5#<Nr1xWd`CCZbH+tM}U<Q@$
z$r$JRUcbu1zQ-a)?LW_G0o~zZetrg~bN2I=|Lp<(hg>2b0bzwfE$L^`qjUxhM7#jx
z5V4;h$yrsg+uH`xxG>EScR^@DU8G(<JvkW6sh(Q{!dkTyguy6|mpF8ku+WiJx0)R;
z^+vP4*NQY3Yc9iNw<`am(x+D=C);B`yAQxN=1zQuvH+Ks?tK~k7B5+LC7sXF;dm4o
z@AR^Zrt)=*X9~PPrUWyn2O)qVT|7O=?Aaid+UZevHj_S^UhM$m#K;+tlg(IwSTL+X
zOujknl5m@@9A4y>>e%<xV+443Z;OhhIKNVaqA?LIGw=;it)hK(J=q#TR#Q)%IC&_n
zLzmU(Uomj4>XMp|TXn9QnFOsc=GwjGEl6lV71t@bqZJcf{`}!M%_Gpvz$0hR7wpQr
zzOcO${8Gz9A~W}WRj93V8AgOgi47#z%-(Et#@>2V_ne)9bu4j>g{P~?k1s^Q!V5|I
z%_k=X8MpG)w5-{Dp0QFMenTOvj^}BtN`+dQ)~YS6->YA>c&jCxuq4b>7Fox~*~|ZC
zJA%@<vgAx2)Jk_u$co`(6vcktc>AAs@LxBX|M7nTn0SwSP$ICgsU9)RQt@XGXi;KH
z`~vbloxMEzK)(HCfP1*MnIvbX4Q^F`!{5aaAavaNBvV2iBTAZ$j?`Q%a#<?_S*}dv
z<TJpM&6-(S&g#q790E$)#}CF2@pQc**j71l=)G^puE$|BB#%uHm|^8qF~;z`7>nLc
zWL&;nGd~+l^vB_ATowcQ6Ed#)`A_R9BzX4!OccgGk`F=h_p|Yzc==7pQtpmKy%PRs
znEPAEj?&1{*5vmi67EFBhc#A_yN2a|dqn?J*z>P4AMmWkK9Z^fIl?-GgG{m}*w!y-
zv3W1Z%a+M6hW+nMKZ@RY>h*7b&vMWZQ~eZt6O>^;-rEV3-I%Dqdn>7Hcyu1^0k@K$
zDgZ5{Q9eZ`q2(3Fc&GnRj|OxHf562c9UJ-W3*L$U@v{G~U(Ck~$oVMH*T9h+%)||H
zLrW?P`)z0*KnH21`i<!zeQ_37g=@~HsDwsda{Umv<TwBs+eXUAzKlD!mH|DZEePdW
zx)}t1`n@8uik?E`_~rJ0uMEjEP}A5c%IckK{7cRJPs*qN@lVB-c%)G_^jWY-aQKy~
z)agrB*1@&S&7WyGesp@}Mgi8-mEQuiUwNO|DX_7yuoPExudlDC=~P(|Lpl9VC$xAp
zmGucRys)!3007M4sql$Pk?vHjz21(%6~HKRa#;>>J2sytUxIYyorZ#1CCqOny$H5<
zH<!rg`^;LU)xM&-^_bhQWM)xfK=&wMM*K@P)z3A*`{<HlaOA8}FZdn*4ly05N4_Mg
zO&059oV3@7{nwLVl?nlWEYCowZPC9~T>p6kzWm0X0`^HeeHh#L|9Anw7mYfkz`Mma
zuv+N-uSd;))?@rXbp|Or0#oSUjyWeexd?ralwj4x2y@o=CmdZ~{CRTnh0ocv9fh{Z
z)YY`bw)3jtQ`~Y&JOyckibYDbeEjJC9JcotBLpcUEiu;d$u{z6XiC<q70-1`o=uxB
zL&s*Fti$@$>~$p7vkO_F)fE5rIsf??H<FYPLk%Sz9U1pk{r`UY0%Rf{m7WAUK_0c8
z_KEfOIM_yxW~8$P$)w$AL^ZE{Ge?x{V`bx{?+QtNo0=YHei7mJ%1N8Q?H4T#o9E4s
zO1Tub508R>obCt*TCwWL%geJ)<WBsTK;^&5RlXp0G)Nfi{QtfaRF4sZrI`8=BRSJb
z1k)`tC5)Z@N@ZCF_zHBUyT2H170@MnB6f_%n^f5hZ8Ffa&YM;5F1^*TNze7}7(hbO
zZ2L9+MI2llD<jA!09#-X6r6oHHd)L!xM3Eb&OraC>lTpyaMgH1ij)5_H2Lqh_CMMf
zVyv_(`jyLpu~|`8*53nA(z^^>EKozu`@+rlQ?&-JUeV|SxrUOwMW~L*X$J(UD_p7}
z8yp=@DFQ%b<=`%`J=cB)+SYPhjGbGYG30;laR1}Cs(3?~+RD$$f2aR%kK}*8wpQ2>
zmaCg}_)PuEyz;92_XzMEU+!p}K-3MfpUpbtL0AQPQJsm2iK#$}+ridfXJaKP^F{sp
z8)Tm0l@$|LfIUe!?@zYxX)L-XU_<~XyEI~cms}-b^S(sg145wB%?6csk{7TC4?b{W
zEQ@$_Xdq<ox4z~99fQT;O4kNpLMi6v!;b(Q?4!lsr8bM+c=`=Mt@VI<Wz!1)Bc5WN
z!#oWym+@9<<349dNC?hhO+`Cb_ruAOfDLMu2}rs58W!f}X{S4rvhx(SlDfLYd*AZ&
znKUbZ*#rDusP#;B!6mSP41yyzWqPO_l$e;9K~z-qows@1+Im{Hz+TSo$;mr!!|dok
z+B8#|-$e#<AasFZpq0Vko#Nb`h?nL@={>ycRfPL|XhZ2>>ZjSsRM(p?1D8iQjyj*5
z(qbwe(G&4@=agO-|F=Wmf86<hd7@)T9*bx`M9^CN`XU}f5?20M6nuP)U>XQ9s9L<W
z<MW*XAu54d^bD+g>7Z}TZ=*Y}a*zEAa770}bIP979R%E@GMB=$HA(p`28gOa0h~%9
z{63X{Racv5<nnkEeA8t&VAMP-B!Cvl<}`8k7y=$>9S&fsI+x&LfScjZ_5Q?4?;Jos
z-Y(>eZ2=GUVcF&baM$Z{eJeqls<J{9oVE(A=NoG1KZ9DU=LQU^Hb9ykhwblT)Wn4g
zP1zU{bCA_XtKeCL8A#nJx@~&AF~|jERH`-N-}hMcYKvi%F1ttT{mh+`#Vx>Yt7u`7
zN8cJlx{2d$qOEb@%J|7CkbaX@yPPV}2=e?d0NnC{w8)aLn8iUIhW@wazye8r41ViR
zs}PRct5dFrP|0ne50Fz*s<EbKx&zrf7VW{Pp(6Te;CwO9h$VUFiW*wIotyB66C{%I
z+Rs#Tz%ZU?tx9HnfD!f2)Y{tuAdy5B2sE4arL`9q54Z$Boi#w1kB?8&y~7OUBmJ7<
zN5)~gBCRrB&={*QQ|&1mVNtcqNh&&w6tk!LWisiXZgG3Bs;MDYp~H0>8eB9uX9u_D
zxDe8Nv+tptHX8UTxZf@s3A}<F6mI`}@%zuKE?8}<A!1KID1I=B)s;r1@-VItSwL|W
z7Xq9P^apj-t&%Y!mVXZNA9@7rSDka^ofG4@ZqM<aeLIj7hG9^D|2u0MD~!>Z1y1n2
z7WxiL5HUniptjgG@B_Ss<Z7}x^HQz{<ABs6AcNUw<6?kxG@+~>26OSDz}&7_TcS1B
zo=}@*$iwnt0Sd2bQb&*~l8em=V8ymkm&tk#)>M3wW=ba{!MMz3g3*=j5PK$9iKA5t
z%`}Zok;!iggbHlAc3Qp(whQ1#*v`~BQmV50X8JL8wtxp%#H6wKmva3k@~l$5(FI81
zNCVcaUrm6e98dpld!b6-g?eokw1afk#rSB~U4>f!x^n<DTTKDARKuf+G7obNs}_r1
z64HX*3j)U9R=wL+6OASPpzQ<Pi!y89Ss-m|&7jmA6urMxR^SDvo;P^2MqUl2kZ}<N
zw__H~>+9*iHj37sO1}yIZ+GxN*XMB*M72>)#WEbrDZ}HTjEOJ?YtsL1)%=2s=)T}(
z`EZQ9T$6x6yu7@U)@+0_R9ONaeE>!k59dA4$x{82hEED_!<lm!3Oyho@16Awo};Lt
zaoQ*4j?5ViLsuOMoa3>d;cmoBNk16`rPj+h8*axZl8>^}ps`yS;sD1szgr`F^~TBD
z=@$5mA8Ozs6%)`<J0Ac`!%o7mN<|RSH^gnK_v<@zva0i|VSUDx81Wp*pFi89x<@28
znslML{?@UaUIc_+@@2o&RSXXN^Hy<OsCM&2^RRd{fh(#H^f(v_ImGGe2CecTgX3Ur
zR2(d%)-Qm{Yk;#RfyW21dXnCQcp)-ps4i@Oaw_b=`dyb%kZ}BH)u#b4LwsDQ<--Ay
z>wdtttl2`vxRZ$zVF^Ypx!Z94^DyI;b9U@bp+*tQNZic|0?Exo=89-c#{GvUPs@KQ
zengK9$>(<|MQbCYVYsE=6;eXft0M<e`afs^HI#2S`3;3_TrB1sT|^oiOVhuehEjb&
z3#I;ImH5y73u6d-0wB}eS%Acux(smHZ4F;^jPi!U#|Jj@#y+A<>$7TCjjyqM8Y6NS
zEcG3*n;*%|<>QgAFH$ldDuf?d(fr#+{)G+4YSG^@VY)C#=jb$pfu}0%`Oq-WH;Qeh
z9BEQ@X!*ig3Db3I?I99lMtq<|)e`Ekw4q#qwXl_7!u1Yi-b8DQ#rDpDccY4pd{pGa
z25v2A2h+KDn^q|MeegOpaE`2MrOXSbaoYL>Vyc#&nsng5oTS$}DUgspF`jGTZQnC^
z3?;;$xj4JtcSvrz4A^#BqOj=gAM5M;`{yOJekN3}_P~xa!#v|=&MmJxw-b*LKRs`n
zRY}#jWxmCtw>|v5;K!Mte!ukY_P^tt)=XKTH;N)DXieQF9A(rw*rw;^rn)iHXvn<(
z<W}8#?HbUVCOlkQ_v)vs+eS@MM_Y%TV20;G9NW`dSuzV<w_TeB@7>z)vn}}!$tB?5
z<OTrXYD`)3Er4zK>k$}x%5-J~=P4QJ%F3!pM#x_bKODIMFo6o2Q23*_TrDr~wS52$
zK1sp_{Huo>g#DNbx7udnMIyI~wXrh;9KfGSm=)qzk?}pEhzg}s4Bi)DN+!d>`>^VQ
zW6iadCH=t_;k0&!8^Y#dkPWgWcc&oI)gQ?PXH0t!Lk2qEYmD>Qx*ArOu2HuFl*qhC
z9n$Da=a@e;AP(Ci=@;Ec5%I-v3%H_mGeHL?>*QUQ-&L>j&{=N+V}?QIdos6&<^ayV
z-EHv0sL3<)0}F~Z29hA&g-yHD6Myg;%y=WOOPb^<JH?<@N$tDl?-|b}crvtm`ni;O
zVLx^zX9<;91I;d5t#8A9yjRaV_3AhMz+}YT&`eOFPjC$;X@|E?<~FXnzY)%UORiUG
z7NLI>R`lMve!#W$$KB~mf6~YMI1(&tUcczyRFZQt?sdNMc(5*#ZeXpqJ@gz*VkGuJ
z%B8`w(6f}S+|5s&>-9vP5}Evh@3xF);Xq)gZIWlFjHvfqG9^+>pH?Nlajw|wy0F0^
z^fzVThZjVlAF@^dx%7ZT*cIM^V&hC2MreW@ae0UfhG4<e<$K%b>3)`Tmb`)&f#riF
z-~X+C85cyP!rx%K9DFyo{3zCHYUJJYI{N|N%*oUa9ceQ1_nLv)HV4L!yq{x5e&uox
zvKJ_Ev3@O|UkDOLSYjVr{$iZB+UA{BO)yBGF}*V$HOMCWX`@Wx5iV_TC$IOenE)mK
zX!WeORsuM+$T^Pn<vNa!#)dgT>YZ*K{iVlWuJ1Z6jU>bQOm;oFcE_UzmS~6B0bwb_
z&pVd)_MBfa{<1&$wvJQD+r2;~Yd3Z`%Z$kH>YKr}a*Bq(j;`8n9NFZ>UXst~5Y^MP
zLA_M^A45mSwqJ~C9;}Q+<E~~tOP~%q_draEfDa|ug9GJB-9*YGM22uCz@(@l-%-g{
zTZ?n<#RgP#jkRtVPdG&4omjv&<^4sNIDRDqW_H|31#PU*D7T}5d$TlgK_{(F73L8#
z9g4M{Qtfw+6iggQ66-ipk?jd}1t`{N0->*kHn+fJi9TW)=tFLuG@j(cMhvcAHzlv&
z>^c*oeYL0><UNkyI$V?e7G+E07W&*?nmI_o`)t=*WvgSp?BvjDyJLlVMeL19rDxOT
zV=pIrdGFa;ds0oifmhve)EDK$hrfwSS|1v#jQsUK4M)dhFjfepxS^-roDkblhVTQn
zdYBJvKuSFJ6o7V<q$Pfr8Hz@I%V%#0p&u<<YuZ_8Zqzet#?<=OEMd1fhx0Ya>|n|`
zjC>;jRdr49Y|3=7(!4)gGoi=#<1x|dbWlqqCMoX#+a;-}pATX^?A4WErx3;{?IbHl
zc$viAHQ4@Nz|iGT9xLO8*At>mtMtL>gP~5{(DT6)y=YgO*KBlm0JM5?9%5_qYi*9s
z50rB_8PqNkoOpsKza;6cQm~&%PdhI(d4Y`y7q%#@Trbm*45@YC2Rp_Ks$X;yxwZS&
zqk`w>3%7cjQ&26O=Q;~h;@|D<Xa5vp#uON6{I|wMVYC=%vkl~{=3qRbu!)1<5w4}<
zbBR{R*=|n$z+#9inc(@i%|Q$&JVdN5-JHSk(lAfwr_w+ne^$otjHm4MUDBGp<!g@k
zVn=0nH-hT%T1J(;`xa;^Wt?8eglQ-4q-ohT{CU;oJ-AP)F-(+3)%N0l+<bD&V|Q$R
zkO0uXxdA;+cT$`1F8&=Q_eEBr^&hxJBJho!ETQ-n1BMz)bv@ogC6&jAiAs@^>$)|a
z**peb2Dc{FZbQ-AdFKw-sXPjVY2(%Jf(of4Loe%Xna4A(XML32gi0iQ>s{}eX0yaD
zzh%BK)^smITgNNaw%7Fg8?tC%ol>1}R{yG4r{Nb%)_n%IUJ54mV-cGycU^uR0xdU*
z8zYS6FF}2YchfvqUa(eGN_XPPGEl8c_*%&~+Xdwli`QavN||GZ1UrEpSWAVYkj2og
zPV}gUb_0M_>ddHnAn?}C3HmbtCQk=gk>OD4nlE!F2mbf7r8|b}5T~d8{7<`KG8~ZL
zhtn)3C^UC|D>0a<X&s`QJZBSmIHhE;Er^D*!XaHXjA$0d$o$_MLL1-oSb}Va3gv;X
zELW`8vWuuYJFq>K-XM0yPVS>P0{Y6s)t`Em=+5GjT}e&j+axc{p@hz3PgNPL#v@1#
z-;&P@$e}Dl_}WD8E=<`o+(gk-A?-MuH0x0k>2w=2fYCXbc5}n&W*T8Br@w}}&zw6C
zngBnQNJv6Y04tkO`UC|x+e-fPL_J|N(Q<*%z5Pi&d(I62k@hS&zM#!1f!2@ufZ&$e
zQ~-1lHSUsTG7UYA_@!t-w}~K%;l{Vmp=VbS;*U|!uzW_UkZbrEFqD(u$rGDYKMY-~
zZdvn>!WDEsvfgTp>(ghkAkBjCm-aK^2rRv9H0E>2^!^!E;_+6HiH7~lODilh6}z>b
zxZnCU`f^8<@UI_8%Vtmi%xzNjfdX^9_6G0<|DJ!?c><bh>(i#2j!p=$onSa-n~u{r
z!w96LC-j;0h5qpJ?pG<m1Sd`Eejoaj{7>16iB2(S!PWYXTGB7*k50n75qqm(1R;;)
z?#elx>U@BiS`XJ1CKS_<tEeXSnPVVWsJE61M*zpJ<Im_T>DETcbb`juj+Gt)^T$F<
z%?bDR(*2w18fEuca@N0pR}*WT`BdBWiRU>Pr>R+=eW~E3>?Ks1Y0r48eYjxTe>!T6
z&gifrY?K&7Yv$1KU2B7ucY$?G=H@nKViSAJq(>TzTsM!laFt`+4r47&XSJ^Om==kc
z$2;xbEq%_jK6ql6J$I1FQMA~^t{E!RSki>TtqXbg^Pf9-;U6Cb1xv6E^!8Q+u@6wV
zp<v}~E|k~(jdMP8owT14Eb#vKU630W(d<ZNKi<nd)<5h0{i0bA=Qo^yHV@@p-(vgt
zbdw1bb5eyl$Z=a`#O4{i8s52hGIzmcM?_d$syj0}nKyfpMCn5j=hv&?IP0nRb8#JR
zd|+EqvdD0BmnZtZ2(yKEn=@err`0JAqZdX`P<&n%Mk`vZ;LBTaUU&0ZnWoQwJMVZe
z&xk)N^ZE7C!6w!c?ubQMaN5BSYK^VR02*vM*uzQxE)#C!{0Rl<5@0`+o?t$CEHWMz
zM{QC=5%|0_gsOsGGgGQg+|CyqC8A-p4Q@LY`hv<Cyo2#PfGt62c!`F@2W0|UBf$|H
zQfWVD+uk8Gx!`gIt3R`KWp0!TO}4qBfDniQgxC!`Y#!<ZPC|&k0Oh0OWzZ^F+3D6u
z$AiYDMLs1X*0&4kC0YPTu8D5!4P{hHH%mefBBio>$hy>&j@mK!MOC{1l8U~reup_<
zogX+p43+0UH4GyrO6qx^{=sJ%EtTYzP>L1^l2Ro8f#eNI*guSK2dPL#fSUPcM?_=A
zETU2Sb&R+v#>G8gnM=q?#1r5W|EV!Xerye7Ew!SMI93*YZ89lZ3^fJ^*B}|M6Rv$e
zFi|Pi4rb|V#V^$sLMx5`-9?&GErF4+w_ho68@U=KZ>n8?BAXbptqv<O$3=Im#B?1t
zC&f7;R3<sU!d445RCb$HNQ2SuRaH;AtBzw9F~`A)xh#lY=NX&Lm%9{sXC-*!nMZQc
zE<3MwSA<)aHXeX%rQgasg=ItO`1<%aU^6^Bez(7i4ZE4*)EX=Xct3RxM8+3f;j=_^
zW|OIk^xe&T>EiIUD+S7R0oF<Go*=mXNAp}l$$-%ssdBgek#ZU;NHy8}0_&F5g33QH
z$7URCX2_4@doL@aAw8iCN@_QIN^1QPOAApol$1D5kSGVAXN)a!@?A|jv(daI=Z#&1
zY6NFT-#qp$XKVhP`lp|YO0^to4Tvc|8+*TImIa0TZS-55-m^VbF07D24L!|&#!ecL
z(h7Qf>6=;pU*G8d?)SD@bp9ET*?GB9d$*Z&AAA1m)2Ea-7N|=G@fqA$0X-*^At040
zBGbnkWD<YuzA4*wpP(D!nRjP3{C^XU&_`U>#8exZ)NHX-M7)}|3)bpmE~|SlcJKP8
zv$SgxfPVH&SgBE@F{Ay|R`IS+I`8<4>RHfgeAxoG!Vlm6cVw?ds~6o<&#5bVK>rfI
z>gMM;P2`r4RkhqPw5H_lR`BJ$#F%j-j=B5`>4nyrrh|c%mxf$Owkfh}&RU}xj%EUO
zqV3gNwMo5J6AR3y6*}jWiZ2&;@~m!k`K+a0@l@4suhih{UCqzd?y<hNx1F)C3S%uY
znn$ZL`7LYFOIYSL%u6qGrj8~j*I(XN{Ipr|{OeEoYW>oyQ-!Lt*hsDtT3iihdhZ>j
zL77HO?!nqEbF`EaPTL=!t&@M8R#*$?|B$ntZ(q9;SS-H&y23?HDLDI-(k}gcVVrw!
zrcFIa$I)eDfQxzYzJ2YszC5zz*V;eV@=OSr!~rK8C6_ct0tZ5UEa`{wb<7JtZA7%a
zo#D!CL&G&YcgJ;gN{MLmw`{lG17+2(ZcII@u>#nLIkJVqa*5&?bZ-}qy_{92;W;q$
z=Pz}e9rSUQnbx&*-%uG!WzfF(l@uEOXzf|}E0g2R;d70G3!=GFeZgrn(YIyV743$T
zVjW_w^pbEJnF`%|u)}xHKuu?<cpi|pBGkC+!fzY4JgQMAxTz-}6epVV%!(YP-6ZhG
zgwcAMEpE*~s3u~JZbIG3kHOOjw1fj<h)UxsbrN2fNG~58+afshnUxQxp)6>4zk84V
z3C<jO6{ZA5r|!%y?vhGZg1|J^89u^OI^j`?(tvR{pf8bvV~2=^XJ;r5$#@+CrWh}F
zFxA+Sdx`)xb+*%1yzy3*k7x(go>*=$c9;n<VoQuLj}*iJtVbF4f`5F)bD$VC?I44v
z|Ao@ZC<XniArxrIirP56;MXR`HHnWqK*eV_8~uXS%h@A(c8z`Y0#c7H&3kqWQn)xy
zaQ4w3I;*D?z)FB~5t_8#J)+sh{<=N!9gIG~9DBv7?u}@7D<xmw1jp+SMu(s+L;O0@
zD3XL+bKVcBTY_y3zM4&-@%kg_n)cNT-zTRd03kZ}TjQC3zU}Bsl^2O3;{I!1kDj@h
zX78<&tv9{veb+ljIkZ`*?RMb$kcUwcDuNwlM`(xc5XQgAah0vGv?=n_4HEQ$xCA=c
z<-u)|KmK?@W0}=y5C-^Vr&_ZFm#+8()KM~A+gx^GiA;zcR@?KQs?QnTyp@~Zt7xw%
zk4aLl<9UNvSu601kuX~fzF*a-bT?<68MQ``x1D^QW^o(KJBad0rD)0QjASJN-CBKU
z^E{);Fi*E`P|5qiG5wU>R7E%VgEsqt<Uz({HqqX3PYBAK#gsD3xwmrt-<YT-l?&}q
zrSYD7AoGkBXnl;b>-g<mKgEnqmJu8vS<_8pV?KTD?3by8gaUm8+?QyHdIboD%DC3N
zh+75R{#f<W)Xc-uyX$MuWq1Cs!_Y`l*63k!0H&@BzdX41Z*4c@9t$4$ScRM{q^9Wn
zb?%xLBefU#^^V--ZO930!#M{~+}Z1%?d~|*j+l}j<d}cl{J4iMTKcp6nUI7@p>?y<
z7y3g~=UBwtgQk9~<1tgh_qlD6Rrq?|ZjSsLFC1OoUeY>NJtfVEshyjCH^0ZkwbR=_
zn7;Vqe8=U965pS-Izj(ald;RcMRvFG3`M?JV>YXI3^~$z$D7r%tlJ!RqSF-7%8nxp
z1&AFV!}je3D7`*#51O5BndmzFsIlgH$Cxl(-@KX4HWrV*i3kZLCZ9<kEEE2jTX!fz
zCz#wkxRIB$`EkGO=e=!m%T;NWbkM)95u}_5!l7AqkuH;-ria9Ns~>K6j~(UO-Y5L9
zDDd^$E5B_CJ>|du45#k+a-9c}l78gjwQ?6H745p3M<7XT39=J;2Po-E0c@r3;e{6m
zFTB{tf?*lThpsC|Cq0G)ZlA*>)HOz@(Y?gYml+ZLEiv^1T>|WFRz*Qftx_s`8zZ3_
zWuf{K`u0cD5pc>}Y<AI@d14&nXq6byZ%Cb{ioCeX2726uc$<w7X`}<7#rmE_Ncfq_
zs)7>RoT>}bhK);MCWhhB4l4*=3KF!OD_mhC;iNVbhG_cCb~^PokI0ZtvrDl<*U_9&
zqE+12ufkWzbJ_9kUWd`7z;39%e+EdnmK6>+3HJxs1S706jeeq%yl&VSx#I6{z5c|Q
zX%WjIvPQ}<a`#jv5zoI%kif67KU3l87FyJ}Gz7slR?mjIlE7;p%i75r{-ru#m1z>c
zC)QX#cnwoG>?!#T6ZPgLjvU%Ak+&<a?oI?}BAtb(*t=$b8@a+!K)0$E!T3d-Uss(5
z2Ohn1O3c?zl*6Q!$GxIk1bRnwwsOrkPJFDP=ujL67+h*LO3(-rO7`p{)~1vscWIcm
z2E+$S3XhGbXUmW91}&}<L6>&ucX*zYuPf#pl;=(D$j?I+dKtsG9or`Pk8A6?U2acT
zMFx1rYe3S`Ws&&N*B@=@@J*gc!+LkPbvuaG3-0Wx*TtuCGM@^a`0gA-8lZVSxAmla
zrQTGjEi3D4=kkX?P(iXC%~M^I+Pr#1tzx%+%$R<&D4M82$_71YwyqieVFx`Xf5T~;
zXL#U<g-k_lVeeZWGj#cfqpI7rq?mv-z$K<{YWv*|^2bM9F;Ew3EdPPZ@UG&r7j*et
zCIgx_#hRqA_%!X@e*B{%w?PT0@xQauyuYfsE%_{3C7+b+Ss1iN7z7OmJ?3B&au1^C
zZQ<siIX{c_*^Bv(Q=!Fgj27?CuI~7-Y8bUHHSuI1{N!QQyC7?@lYlN4Yhp5#U2lHb
zbfQPOQ?DTY?HlgS#&hg!m8}?})FyoNT@k!eW>P8K-g7r}zuL&qe3BztR%Bzf6|-$z
zCgy^M(ZLdreZx0wCx4*FgNjuv&BS@H7$?o_=LX}^CD9L&b!wZo5wf7#<>TsRKKHIw
zXM$K-GyC=j@8_s95lp0O`hFd8tNn{g;>$Aak}yi1c@29AXg|vtx5)BB?X&z96e64D
z#Imk;F#ToSu<!!@P(N~x!m2W1+Un8fn+;BFJA3Ggw#7d-yC>PfJ;Fuyl6tLrN{s$?
zCY6jCxlIPjymE)@l1dbeNG%}uiLEH?ky#qMR+YrBoVTj?MK+i)H0rJTHNw87_d#kJ
z8rSrQMA181!<h>g$)>Q>k08;rNEby;1;bpC1Ns-OUS(zK9!%HNG->DHD<ZlW@w(;B
z_4W11M6Va6=b!St!q8eU!47SIdrhT9Ku9=i=29w8p;P$-uJbf~CzK>RgQ(DRg@lkM
zM}aMo8$@e1D}PCRr6cdHExXNb#UvwPw5EmMo|%8DnyFxco}ASqa2w#)U8hhV<~;ZT
z`uX+ee96#)3ebO=^W%0}Y7L*aAU!u`x6q+v899?6d*-T-qyUxF&Te5s6d7k&<tdex
zzzg~Q0in<q>Muo3FuD)MFP6PQ@u9X%!RqHimZZ<5p|0~o{wHyKnUrCwlzR!s>mcpz
zuaG)hRL^#NP)Dh0{1iQr`}U}GwkaF6v1DmC{P)*29sDAU*}}wc)_gvQYUy5do6#HY
zvaUbg3k5=%ynpN`2r7<LPFL!#_9qS`hq@crFNzS0vnBRL7+x<RCUC9#saKnPl+x0!
zo$<)-ov}!a8BTM~ibrRr!lO`S+r(|rHzh?yn6=lsJ4_{3m^7pm+4<h!<iwTKmQpAr
z^|r3%D!nYvxwP!MWbYq3x+y1YZH_V8UtXdZ=N(V(h=0&@oS$de|9*MhaU$|ZVC;Pr
zxgD{nkV|H-&flnMpYd;b_F2>njXTM_BD;?3!&#|WS@koE<G#bIN|XAr<!E6n_de$w
z{<GcJnd@Pjw+9AQTUGa0JM-?MGk=4mCS9|}20jteSQ1~M-aq{!5$?S~N!i$nSNxok
z-Kv>5NXI;=8ZP8MPl45RA)Npu9lr;&%q>K{?aO;|OFZ~DmMSZo9)}o~HqEaMym0M>
z#V1+Uru&4*IqGi^FlZakHoJ2a4E7^yP~i_X?>l7Sr8S>gSX3RF_P-AONok|$d*sI6
zSo*KyIlB*#0pIQ9p5~*>6xC;zYS?Exwh4Rh&1m%15lK)G-~x%LC%YW-5)zti-{|&5
zx~R;9abnFH*>+wcV51aDhUNoxNpwhtF2^{xGjYAsvP2N6xz^_x_C>4UPt;!Tba)W6
zBV6GxEcV^LzWA0?j&%7nh-s|F*Smv{H#z@tc64aJZAvR%kx$}@)813+4FJ&K1t6TL
zG!fs1+j=^NI*f6`F6d}sXGN~C3Cy5#oxL=GBiv@BhX;Eq5bf*3Bpc5%yPom8;!Jd9
z#!mdg@D`HF0Y(RM2v^Ss7^><Co~vA)p+C6@GICs)>1?BiWADbx`h|y7Hg|HuY0%^^
zcB_c)BZ-WW_<O?DN$dn9xP><DRO*p|)TwHWz79Y>#sQBK1wJN;h`^+p^#o-RRHgXW
zKLVjqq&m9*ro#@n{^8A&l~~4R-M^5>P0X_Q+=i7tqMI#+T7Z_cC#uit&)9Q)+Mvfa
zNyhGASge;#`RC(_@wg=aIsYO&B}z3Eh98uxL(P-GsGF7Kq8)kdQST=P+qfg;KEFdN
zz)^EcMXgV_7svI`eh+C|qFs|obg1v{v^_K-b@WPi=#ZsqR=@P+_rJ4L^>}q38>^(-
z$eQh-yb*dbbbGsk=664Zh4KXM^3l9RMv+~oS$2kQN2F!G_|{3SYb`Tly;jz9Q8Ytp
za+g{6s!B)rbTrb7Z;6PW$e|Ub?nUE<2p(-zrX3iW>fh3cUgkmtCSvXA0zg$5*P7p0
z@c%{`zr=7pK*QJB?j{(CHdvT4#1k9W_!QVNUf?t|3Y@R&&1-Po&;L|P5zi@+H%1u_
z$xvWtp}qHVC=i;!Pl3LEe7xx0{*HpX5BJfmLrq4SsmU`8)sySx<$JCWerDP~vR&WU
zSgTx75=Oq-C7;h6SYEG5%)G4>S!D4!(imGE;Pk+3bFW?W&!;@SUi<0mLLIl`mu|{b
z)>W(b9xZG^am+w}@X8C*5xaj;9P?lGPjAr!lJ}Zo2L>yZ{PqRZ|2*&bkC9*8cZcv2
zol5rVxi=Z-97y$<@#lshP3g_&8PC#rHKA<rujg$)#;=X$hX*o+7o*Aedsqxxx|{yC
zqwu!m=TE8s>OF#fO8T}l`mF@u@rP;K66>LBtCW}OYU!S6bl6YQbzL483c`7wox<|$
z8?=$S6HoGx@!ej>lh@8NuJ}?{FOw8NI>n4S!*Ou*sI4LdMYQ4~q#nk+Qo8!quOM&3
zFjOhep3+eNahJFV^kD}&lLv;jcJ>%(y8Aqa^bj$THT-csHKrudB~5;5NHMe4)YSCr
zqEJdAyAgo=Xe!0>8i5X)bp*R|1Y|jyJpi+%b0cb9fGRNK!Tb_$w?)dNa|8lU)Jw7{
zCRwh6b_CvmEZMWDhY<y^yno0?&CAWz<`Ek0_2t*iG-?`0MP(;xS;LvEI5EF!V(OLm
z8tD<T!=k+wZ^4snV^3eUn7-|1+|H+rkAq=&u}y=C`(Eso#bCPmA^vFoT9Mszhdeng
z{Pm8$KDRm){XAN{Cpu}@BvO)4l^iD>jVO1FH6nEbjVt_Z=O^fK8o|(4Sl!XYrv7uW
z&PhV%eRw;cV^7@dBWfpwH(;Wq*}ccAO^70p5{Zj--AFac$qx38Q}#7UJc)V&BesGJ
zfvg8tky#J6_nxWnmWA#dpQHqa1N!gY8qC1jPbv9WD+0m;R84(6IP|ktllTQ$oK%57
zIbSC-RrR%GCl0<eC_<|}OfJ~w^+ALN8jr+py~u^rm9i=vG&CD(EXTVzTKk!OdQ43i
z-&9>q$4$5jA)a@~m}iJ9m?o#6vPza`k6u-A9TStOvz=ty0Q-3qEF+fITS6{Xt_s{2
zZ>+V!!B70Idjp?5(amJk%M6-XOtVPmuTIT_oQ*HX#`+s2gt&wSJofDxJPtO5iSEfJ
zgGvVEmys#<WcoU6Vkv}o2kUDse{lpEJ&3x4B!m(>+xxm=Tf{TkOh>Y%-IJr4!}jy&
zq4=M?MphpO*B&C^?oq$c4*RbS;uPocTww%0;mxh$iZG#P>;bRtijx<a1rvmz#PC@~
z1j;>+|BaEZ{oG=%Wzw*s;_%sPj|E>my@<vYY`xQdjM!iBMtVjGn@%Jsw;s=V6xv$5
zm9;IGNRegzPB4h5Tl-RSvviz~*a6yR_D6wT{YoQ$YTAk|x*D@|0;x&U-4BWpJJ2B3
z!T&5vAQeFnB=fAkT)iG1JVPO~M*F>)`YEY@aF|kwNBDZrE{SU)i*q{gLnLl)@Wa8X
z^uX;;m&HW(<;H{_Tg8rP_wK$ghQg`HzPY!l!{tKQ;<ro*?L1jLsH_Rkf3N@)5AlSL
z2B#{*rY@40C(}SSdmEYi)V}*|g0kO{h{N{`efMqComn4O$CaoQ|K50wg^Lx(Oy=q#
zWM!7<&m5r)QlV$Jp&8N1dwp|4Wrnt+=`}Ndv6A<VV`#yd$k8iziZcoQMF%E>RCIg0
zgn|t=K3VNo_k6Tas*%3~!XFRwi6>HogRNEz>krA1>tcw^Fb~<f1n45c#5C!P?h}a*
z-g9v0)!pV~M_C8M5<5P)tR(I%0DH35<7s_L4ETByf=d?Z_WiSay7KNS1uMahH*sW^
z9iar3Z!G1y0=e27N$t@yD*{_mGfs%ZQWFriUC8Gfwcf4(A07{!#s6YCEC=6^dVxNb
z$I)OTyHX;XPS#1e5om^3RI$`Z(QKiH7k6nGMGimW8(uc<a&j59J_>SSr_-U<`^r)W
zawXD%%sJy>PK2b@tDe#?HM2u;>^Z*o$3-+}g4JQgTGW?0S^U+yK(KR`!1<gj^SYGS
z)k6T*;1}_r0Z;=tTqAB`nhE!WoamK0YM1+kx8AU~v}swu2?+SQp$AmE(p)oLRaD3Y
zyd*CX`~s$cnSoy0xYv!uh4z+Aav8tw*P*Ukc}$(1(s#(X00O=Ax<<DO0gLimul%m1
zW5wm{14Ynm!HKxcOA}3rFf|`m#38*mh*%HgXSof<)*5;-i+#q>d;O>$>+ITn_B7TL
zJ5;RJtQU8<>^2z9tb;M@rcQ~pfAFumvaq$@6$qkDMSbRgX75&{S<;j-_Ud|Rn_-E;
z=Y0OWGqFi{CA?!0wCxEGM_&`86R`YEy{VJwVFC@_wQxe^(Y6nSrj)>$qSx5hF#x0$
zHmGh!w8#`$zPugmWArmmYUk+cw~@!*{TUzm1pH^U(B}#CeAgfWb9(OGSZ6rtJs=3L
zEy5|icb$(xWNO2-ohRtI9b52zGVZ_<`ujzkMsR@2@gpf;Ednx(g`aoC?57vCD2VdL
zblKcjz`Z^LPPFuhXSB0mAxNumy1TqTu}qL_q$UDJR<5tt%+~MzvC9Lfg%()pzQQi&
z(!_Bm>G~AJ+h+czEhE|9yX)*?PA$h1Wt(VTAEg{OB`rTOx-25NRxz*Hvv47h&Z19k
zyx<eH_eC>v-(KQl^p}(Nkrzfv9bLhVmC_MmVj)&bPsV%=W~cP3IQ@b2>!n{*<=_4*
z)ym2TlIU3)w>gmN@cy7SR;TJ+oSc#ZAM30KIALDauP3}El67V5-q<YW3IS1pf-=rH
z$#K9gb=P<JHdHgs>zKd`O|fK;Q&6x!HY|9m#n;xKe7(bBkh3{9YKH|UPH1g&^(30O
zN@!G3A=Yea?#?NKAsI-OG^oV}o5t1kJJr<Oh@gK*%ulgD7=^pwN+1%gcEHo6Sy9)^
zKy>De)=&WK@d$N#)bO7gG1m!X1fQ3!DqOfBeKYxdBLZ*0@F@HM4{jm79<xI)A6mLB
zGfK}^Kg$jEfP_a<EFNb2rmVolxut5bvLj%hR;_v1f&l#u|9Ulp;Dr;DULPM@&lT)z
zC;9Vi`s{Hx;GU9lJ0va!efGHo>P~p>q)|h;+n=?o-gDU=dkI~Pyrdm=y4)}CjoIym
zc6^4{(_@zNh#x1in{rCBTm#>~uZG;&6MV^Wi7sL0%@v?9Bbcy%S8g}i%)L(EK_z&&
zD`gl-&-;Y>0Yy<OfAxCGW9m=!_lDcP5_J04szGM{t)3u1seBXBmlUZRWI~M(nsl&@
z%*^+kU!+(6snxo|w3qx=`&9=tSRNd$zIi5;{AKk|yZ&Uc5kP01evoYhrX3?Y(?%bU
z@jxO>jJ?2g57O>(ckJ`w$`)3>mFLkLh;5uhe5=Jm(i?a7;C2<UPP+@Pv}yv%gu~xo
zw|Sw6RPzzv+@@ymN-i`sX_L1<U&$1Ql>o^;-#2QZ)x-gpWmvgS8$1xn@KO~(O*p`i
z^kPQ?wK&ba<hicEST%oBblt=T3}s+6EHo`U>9{ZIuqT>1Q?$ZIUy|T4xlY6g4v<3&
zj1_4OqdoV8OIJ7mXeW#DK~Y(sU?pr2ieM0eaQ87hIWz@eFEY2dHs^1IwxFKNNE?CZ
zY#6>@K0td0X$Fjb8+y#wEEF#}XWGWO@kR*h(Xqr<$DusPj)#8WG+N75^|J*Dahf^C
zj(a47VctCHtH`iYYOUyK@3B0kc`MQl<Jgo!fWsd1uBe~$SABiB_PQ(Aw~|ePPlRVJ
zM_}9YRpZs4L!6fj@stvD*TBGQs+3Bz%rgnyJB=}jpEGp1xjvik9{RgXt;u5W$;;>g
zvn?^(DG8D!$amz*9j(D3>J#D%x3_M+B4>NEleF&c=YJFq4Rlj73e*=X5r4(eVwFEo
zT*mMz;yp)p$1H8DfREklW#!&3#;Mn_UmaIB^+Mr4$YD$fNi^8J;4@&<C(@&ZRkHP~
z4X>wZzd!z+Y?PWgA(5>J+ya#DPr5Go?`+ajUM5S^KJV^RC!JLjnjoye9gcxE{SJ<x
zS>Qs~+<o2}tmFKq{>V)?Y9@`I{P)wCe_a#u1rZ;HyCpX@aw%Sj&2M*Th~ueC<MlHH
z+zK0QGD!`2x3y?2haC=LZp}R%nnccCKY6|o*5TsjI?A5Oa0tTysVAiV`h7;1Kkj{T
zaE90HyX!8>xBL<_u8-)3zqxvm!+BjM=Q(+bA#af$GfW-F>EI=(6iA>ttoJ2p>TI;5
zzdZTrraCVE_@$j){R=mnnHkAPqcQo!)IPsdFjkn+Oif^8cR<5AqjB~1dJnj+{3>qM
zM*md$QHlL%+|J|Vz=deTkzy=L(N)4<J<KkACfCAd2W2U|Itf<&jsuMtO07_yl39WH
zmu7g;6>#C~)iJ(?`RE1jl2nWMUZsMr%%qGcsK?K)7lGQzGGb0j;sV|EzSo13+91Nk
zxqP><)E^u={Rn#ADU04#|JX-{`pjLFvu{$b|9!w2usX-R!(Pr#qGb6=pM*Nim6}($
zQyn5AwYaS3qJk~c=UVoBWR6^6rjX^?wwCefL+ZUIx8>1VFY*!h;>-FCafhV4Hj$&^
z=eG>nA3c}QyS2>cn}@pl2$j9*f6N-xz3e%=YLSAx-UZO+WTO!J#V%FlE>Da0TS2rB
z6&RI^Ahz5jVQEG9f{n&YU+b7Dx`AOoBO*$gT?pv#OKcdnsW#LcSv0gpoy+h$q>q7~
zN`o5f6Q&Te2@Jo3fv1%f4)nD*E&V*B^Na<wGnE2UGRz9Aq>Kn5QT_UqmhOwaYlCQ7
ztwXyN3QS`3JN;d(YP#=ufen*6S7E1IBLuFE6N26!Jn}kW#I;=KUVWO&kzKi}#Z(bE
z6DXd$l=fcJyEFw>*Dng2%cHvt%$zq}uj~_gbK#CDX3%EV(n+pNWYfZMebrYNTtHqD
z5j7#_lk?9Wd0s%~g~2%q_WSB3F%!Y_xh-7ygftAr%zz0l-hBFdmO^JwSFcP6L-hbC
zg4F|de?F;$q1U4-XWeDWE;Noj<o9Sc!_NM~Tvuc6E4e1MEyWP)tt_^}=be9k=Kbgy
zw<ip;(r>N+{$+2F;^I3$-~kPS2jn0D->Y>VtmwH!{`{U!m(uIN_;<WYjlJ-04DlW*
zW%~8YroY);#7!ZHy&Y^e0lmBwFt7YzymOGOcB_9Nco%I;vB37@rV?!ebk~3HkT%=-
zym?a!3=3Mj94qEwZqY442;a1CUQupiNpLWqRgb;l1MH95B$s3qUnmKkK#m1Cvsw(K
za%fUlc^%tb|C%q+^Ke~>VDucl5`16PBRE4D)KJP{y9=xc=ec=d=??P^UcT7{d^yD>
zzT1)}UcbJ4o?rVf?st6XqqR161zX)W3?MdgoT2x4?s=4XwG}hySvNe(s%u&i`<?+G
zPty0`8+V2q8Q1q2$;>+Ww2z}JG;c~JVpdfDUcabsOxRCM`2laD;EM_UXQhe?BCj1{
zIuP$x&Q{mie1M@jJI@uGt2?$^GmlkS%Ek(nSAg8}p-hBP2VO;=*;>{;_i^Nx4O<Y$
z8|!>o7VQl$)60qLso7D|F`NAuH*&MFcl&eQq){Zsa)H23QTHdD)NQ`A+G?`btj5MN
zy~f6L=G~sTuKSjqe{_ua8>#7Xy*hUT9UY1a+lcRElS3J~bN#Myyi=qZa|=+H!{vq4
zna8zHXU4uA%NWd;G@-7VpPueckNGi4)zc~J7u<(;4DA1uri{Yau${?^T5is<&M3{a
z-8f^Ya$_9xja}v49U6Ik{**80{_gz8ZL_7_C5YiH-@&%ZQ_k9V4AOQ5wf^-EN&Y<q
zZWbQ8LXjr2b;ebi@PKSXB5ltt`qk-CS_pqzd@pO)VNJc*uEN&&-fJ-vI~2kN@scp3
ziS^+^Q($(+zPu>yJy?lq#@c!;Nv|9pSxS>~&5EV<g>70c@<VH%2ZtY1L!@{hP9sRf
z@=>ep6h~O~W@eM3p5st`bPb*a`UrktDQUX)^!C?B@Wgr+5ZCwmb^P~A`YCi`G9<~@
z{Njx#qYA!A6-&H5UzgCGRhsJSt*K%nHKc{d-4w_)OA`SD5WAVGFUN<(BEK*qoq2YC
zl{mTOg>%FS^LSue+QF#ANlF7hA+$>&r8s1T3^|R!eDI5O2X!hNd_VIgd<#?8ZI*dG
zT+rZbutcGD@_e1GG12u&HqM2U2PWkcQ&Ik5=;;ru>mCnZ#7MYiCdeVZTYJPO+-XJq
z*V%71dyZ#&^;1GAZevF14h$}^ksjqjJsg-sJXsB#LbGNk6YL&+(AfGg(~%*L@G6Nj
zb54yZo;d>SBQ1S9$;i=snP@S&Ax?$%CxI5T<hGnb@y5R@Q9j!PJ2Fmm?M_HkU+)K<
zW~_V|GE#dq+pJc2EdJxmGBf?OC49Q}0i{sQ*Kd4^d>M6DjI=Z6F?K{6f36LB^~-#F
zPuCOkv}JO>co`dURAPn17mv%PcF|8T>IvUx1-ANeE%ckipIJ>Azm7GHVeepTp_sE{
zxY!A(WTyrIa(;(_?vM{V*l)RJQ(#+NcRJZpUHH(Q;8(-6Xgn9p_@-&v!+s!U8>G=z
zM@BKdl)wcpnXk2jQ3R~KH>u{&c`b)tQf!y*K56d!svUNS4U8SD_NhNS7C-L~V&6?e
zL4kYr)o)CRkHhiDo@4Ffv~{UQXw6U6oTsOT@=mux4s-l>QHZa&v|YhQtsCuC5cpQM
z!Hfj!6Ik;z?`dS3%bL#`!WNa>{Xs&Dy&*&@lK4i&w$pP-EKkP(@=69ctwg!Jj`nH?
z2mBsp-bw}rnO$(sPsG0xr!5Ceye^h2bxg-k7w=ovCaQjuvJjb4zVfsxERDjXcp>GG
zMJRiQN$kbGKUEP_$9l7#l+t4Qk^jok#ioF9wWaf~Nv8tEi*V}&jI*{NkD5Jj9VtOO
z{y%yZFm6OnzCUETnq%(sc0L80ElS}Z*o@18v{mAmXQ#Y^(y+W?H>5N6waFJb%m$Nw
zz49qXYxk_d!9T<OmWdT#r}NfJvu}g_QGh5lwOW%^(c-5Qg2nId`CFDtbepG?KXCu8
zmkD&_p;>+fz4}#sip|%$v$bQ&qOGLoy{FxsXw7oHKXlH!($cmUP|g*vNd?ca9oyfv
z@DXS(#XP=S@hyINC}dGwkt;b$?tdfVem!ZJQV>t(+(}V8r^Gwm`NnTyxpj4ra?#(R
zR&?pLdb!BYwPL7)-<?(A_Ozp=AjR2TVlVG)Do3ODs!Bof-`BqWclG1Hu_DTqG6>vv
zU-0oQ9<QkV&g_cPdcUewB5V$855FSXk$5c4;5HkxU}$knV9{GvWmeN3f5^^fc<t9A
zY+@{^u9oT;`MZqAdQexRCkKc0DFQst6yZWsFR8$uJ+DvJX58jMRT+dE53iiF{{Fei
z`I3*OdtrwQmn}fNhxfF;xz{11$l|08g_5rEg5)_?TSRd&3z)7hq4jP6C**N2I-MuL
z5J}+2-wcrCt0OvnW{!kDV^Ay)Hh=qsI_a<Q!-T$jFK1ZjSP{Cn-iW`*L0$hP7wIdK
z1l1vYU+S|$k1ktVtmE57zw46bJaL-`KZdY)Vx3(h_G|v74^M<DA~~}kFWy0sIA%h7
zkQQmE-+hIJN9iXbP@7;<ip&vmi?hDHVp%L~0Vc4bPp>na(64IG+YZ4tUN@<O_{P(s
z^+Lo0%%y*Zhzmu4B}eChLo}0%o!Lra&K<1LDnhcIfZ@71RP!_36+{Zix%>0G=f}p7
z@sHlUChUxWYa`2{W|IZGwJ0%kT<kZ1amQ4)Q=HOb_CbK4o0AXK$A(Tu>Mi=5JE<%D
zMH6aW8o$8ozlqP)F@mLAN-}}4D9`)6vO@87)zN%1?^xNZkGs#-q+U;vab1b7wLc{n
zcxyWuEGA<y$L-q0Z`m4esx^NmZ~Dr=+!JCS|6PPtAHgtng>vnOZE1b?fh~kW9Bqxz
z0zw~wMm>eQLDE?h*z#eNa&eIVDKrcF4Q@_sqx}*Tzw&vuym9wsn=*zAo5N5J@uch|
zCf9AWEq^y6GNc1&mV(zQsLbftQtH_r)R6d*()MplJ?z#Ry}3DA%s&Lcx}LQqH&7`Y
zXLeRCQHPO9B<j-27@dwQDDFJzTj-c2<LxTGK6#TMdQLt@R~6DbW8yz%cWs)Jtqxyf
z^w$G=**vpb`2@aeOl4N~d9$;b!RonVd4F#W1ZG2W%bE8!LE0ITl$^<QudbEG=vc>S
z$@Yzb6u0B0!+iAhjZ<}Np;mYL8KV+c0c)e@9*K$W?v?TbgFc(y@#IjR9b+3oaF@L`
zR$7f;@%=?8>7BX$^!qnLH|Vul&ru)KwFL#~3Bkb1m~<BdoLBwRt#c4BxmEyywatQV
z@gmW8dhb8?UJ8{8l{aeY9z<Q08I(--PC(28v6@^qsu-0<uqV?f9K^xKw;*pldP;_j
z?;1?W<{x~A#k!m(m8hX`gJj>TBv1d{;p5>SOM~Si12U%vi^C!xDmjhB_@hV=zFfol
z+$pNl#A&N)dai-mr=mbDfm9ULi|YR{_7z}Nu3NW?bS^-;OGTt((J3t@(hZW*A>G|w
z(xHNslysLgN_Tg6!+qIj?|sfa|M}0o&$Aw%Zy~Jpt#5trJLep8%rVwJquFLpRG1E<
zHodkupADR#l;Txk25i_&z)(rkG9Jn;S)X&xa2NAawrPHR?b_8;7@1Yr?OTT5{u9Vk
zOuAZ2pGJ&ZUuRNH{}WcCe&Sv6W%5~_hE=(x$7LY@J2d|nNmcsZI%s=wm!FN^Cy%A<
zF65^eCt-EP+nO2K4VQIsaJcL3neD4(-dwgbQnv`&%yDZ7Y|*eAZm-{&0%R%i*<9D?
zk2d&ZIJx@w<DVNNa(duV4QI91Zfl0#yTZ1Oto6S+8%s%c5D=|RH>nyd_Bc9iy4?(9
z|9folk3P|m6XXRwExX!e(N34~J07X})194HPn@kf!_?+3#z_<217QWX{blnHRy&Mc
zDebjAREkB%{8Jx~J2_Nb+r3I|?8``EmKItJ2bVWDP0!kBWAml!B}MFv-as21r@O#t
zz|Vz<8pG>>X9A9C=Nj8pzEn{Fvl@q5%~5K2Dk}%ju$Rg5d~Ph(nx1qzsyS6ypQ`+T
zwj~>O*zL6b=`%|I(PfiT&~pL!QXe<{<Rb0~N91eEMOr?6T6WG~5?iB&vlItluq=tl
zvbseDiwAf(?^N^AFZr?<TtEmevaAsob1CpGk%-DEIJ|5;>R$U@g-FV0L2x*Js^ZUE
zzxPxPoLH@mc`jSzLGeh4Kp__R5e{;g=Y7rYV(cT&KOlKYx|~AXqjl7eoE=&)Mr&wI
z=9jrdXr`a1Exh4l4wI!+pI5U<ezt(68fK*hii8B3DWMhb7pIY)H*I&+XwvEQ?d%op
zIv*zu6F7f5iXPR%@=1zZzVM-mz36PT8z4_=tt4W3CNRz!2v*>aXuRLl_=g7bmvG_B
z3myolmKYjeW#8en_~>MhKWpUi<)W54!={YMtB2cOCn9$zp9JJTQ60ai03VvyB3DvF
z&53s#Q-C0C6zuONvaaF6L<Xxuaa?ox5=G?2ay^WA<GL{aav&b3MEIx$<7u|~^LCwc
z4Rb?_Z;aE2BY+k$uJwJIU*e<gb1{K+y#60^E*~;<B?u!5sxiJa0@cLvJD*FgKytb|
z4yOZMPxepx%-YwQ*u_3X>jBOmqa2ZzfO{8^a!%O!>9M2~r88ur5rrXqkFLKML*i@r
z{SIIWs-*CXfPx%JGH${ys(UNPn0z8T{b`LS)f~w!YX71pLBR1-_l&(9v?o9sWjuv_
zU)xxH&!$EzP#&Ke2bbYyD%WwYSa?nq6VB63U%BC9v1!A-#ayW4C-3^7j3xzNwYLgD
zJE3N~!tPQrP%Vanx?@MHGug*~UX}85ifo%95H(=Rea@6eefCS7Oqxl*yX`0(n!r3r
z#X)Vl3hH+xdL%<3BdjCxk<ZeXVK|8wo#c4szWQn<O_H9azpJN{l6!qwp)CLkX9L3~
z1&@jFuS+F7A%jjE9ZA6}gpAVotl{!QD6CI0v_{*$vyFx?3-PK?C!bQnikw{oaHMp!
z+C9f&nj?#|%3^xJ>g{~vbf*l{ieV6kH(oX0LG$g|W7yQ>;Kc#*Q@T8TFI$So`VeG)
z%@-YR_qQ0N-PRf<Ru0iGJSU5_T#3Y7xGw~IeTOSd_to(x^XDGDJgt5L?qk9~rouD5
zDZN69d4|YyJ>c19lHa3BysoQa8`3IK>7Uyo8&BEa<LO-~IpXJVp>DB|tsk|TCmZgG
z_Y4O3Z}}L#8uotU_<0;pKL$p|hmd1C8Fgjp;q&)a$_w*P@E@Alj8w_qfCqK|F>>q|
zpe;(2uM|Mv=*cEaN4y_ZT;juKa6NV(zVqUHBQ^YH*!B14wMd??Nj|FuZvvkLCM!R=
z7Ax8+>C$G?kbQOSRMAcIHF+{omL&>3CHG4bsR3Wj^_hkF9Q%A9n?K$7YkG0$|J~Cz
zuSTr5AHKxoaU7O8rW^xfnX^Hs<J#AK*BdGN%j8r&uMH%-swt;!?7}d`Rw0I@{JAoo
z6+4%Ae}ZVf8b%TUue4J5>Ke`|plyn}SDe|rP&B>#$nK62?83;i!(Y)D+j+A={ciJ$
zN(Y7E&}SQ+j&qw3Y3f&MJUl*mtmmte>7QIC`J*EpA&zOBl|ViS5fy^azDiOoLXn+W
z)=~XPiYsqjx1rv~sWWl&gV`zG<8xmZHkQ{88e~s7^DMbq+@e%ElwP@Gi87Xg8&BKk
zV=BJ{@iEkl{OMzrmSMEId6OBZDoCOr&=*UYL$gCw*!0P4hvM!T=$}yWMuQn6t!IQ3
zV!z=NBL(iNas0jBJ<BDNJigyaLvX`Y8tasE*{7gBnR68v5>&u_jj1qHsav9IJr47d
zQXfvVv<P^A{lI;t%1=wFlzToWNuGOtH@hA{ux7F8P0brP|K2jg^`6!FnB};SD~U0^
zMX1{FW|m{i`i&o%JD5zWoao>ttMC?Q=$o8m<weA$uyqFL$H{so^RqL~XY~O>8~*FQ
zX90s_5ADgP*J|5`js$v%6boh0WygLGlC#|?$1!-j4s}epzFKA8D&Hui^8hsOtW#cN
zBO|jcf~#{d2l6yvkuwQ<4`(oyYnb+V1#LGuA%~wB;%G<{BTe$@C%YeFCt6@4)}s@J
znYR_5D1)lA8iLbu&A=;{&{f#=<EWG@Cwm-+_erZSQR@eh6Ei+>PL9`O)n9fx)T@o2
z$)@IAFOoJ@lJOGArg4ux9iL)lJ?gA9)IurtbV~NEQZ*iYN5`#0{KQA84O}N(>H>GG
zR1xEC`pt#2-CoLt@_ohM7kR8}Mip)Qqo?CKj39#!yDMbs3Fn(?L!tExIx|9>58Jm?
z(mOkDOFAeE8AJ$rvg<jxkoJ_Zkn=i?fsu%~cdF}?n3kzgTHPT*AU{O%x5OjZw|Fvm
zuOTQq?kTt@1n(B2nNH7Xdp1QQ6ul{?3=5s*`0S1pU^+C~X9Zd}z5!O@%~22*<41>=
zOci&YQ=d5Ce@<P|Gq{n!6J&+U(DfzWw7bU~ZBuviT~(<SVkg{}7u<iJ9>K{aj?T5R
zj6EprVASx7^iYXt8Wl%o#WtT}&LRGd=|lCnEu4j4ezz%z^GER&mfPXW?p0<#6GUkg
ziY&b}?lcdt889sB08G~uR_!rtG@Vf?5<x4+kmL)#PNVt{^ZY6>UMF;qfTLeo5<f0*
zlU4EQRJvWqvxvE1AsgRnqNUJ^BN=T#ur)ppGq4j+;pTCtdieI^)#^#pq;e=)7`MTE
zwx}JI+7~`v1KG5zxVvocD#e2z?`(oLT~9s7JZ?{+yHbsBe7Q{DS8Ixm0$HlG3J90e
zL1tT`p7p^wBW?%~F=;mym~rwBb-^!=1hb`_7G1(v<d3oP!eJpxKewF6RiE4$nA~Cr
zSi&&qG|uD|+g)EZh)Eq|Vy6}tbPr9#rs&aLLw}ytL=sHCoD_LCaeK$beUem{7|CU%
zd_y5QWqNJfS-PqtX+KZbF75yPxM2LXi@;U5NYl)S6IbJ!xLxYEH^k}}-uAUhNCffh
zq%7K2ofpr?=%d^P1~|&%!Hj*WpzxJF&VHWtVQ~KQq73(+#3fA6RT`Am@<n}(7V}?^
zdFR9&of{!-j$X!b+QclyeytzIbEOkwbrR>jx>GsRN`C(M;UoRy!6}Y-5dh^~MXHzJ
zlYbEvB<o8}^|30KWa=AIb6sYnXXY7`YHqs=1m+4JUb+z(2UVI6v*7&Kuf;9Bx;peC
z)WyYx7OheDe5xL4MI8qnCK)8SL^=$g=c8>)F5F?vd)+v$(&m{tZVRL@T73x4O%ttp
z<9v3U4v{`&uCLQq2d*>d?G6kd_e#rgpU%#!jN^SnAZ_fS;;#SXnpdi1z=fYeo>k;3
z-G<`Q6Ctp+>CBOA-SG7N`|jX<ysiD#KpK^q9I6g+cR7YWC5)GpG1PYR6p}%5PX~u|
zPpw6fp5409n2pGH%gM&aHr?fS*(lEEqd0IHIlQWztIvI^H9+PN`sg(h5Kl}1wB=2I
zil>=}QG{8-m@dB%O@oI%J;fgbymj{oJv3~MWHqYyMh=9+Hbjh<R4YY`ril8IPQxr)
z<d5h|CNjC#wTL?JK!YAOr9nvky%T;#3G0zl<6Cv2oT75RcAW`bNOP6RFX7OZ9TKMv
z_|*&VgS~?v0mgRtcrapa43pxUWn@^CNkE9i^p_?pO;P|k+Th9A&ZOcuMO0qnIsofb
zD5CMQwlbGS{7y#_{)tpdnjQ^CE#JA?wVgHqF$%2p(4of9YLZQf7ku6u=#2aetR(tx
zI5kQe&Ako=2T%tczRIS3D<J3Yntz0tNuFESw@+3K7qom3wg*)I9bSr+4ImuT_nsnn
zKWjy9TcF3F6ytRbP_3Z0$vjm(Geu19eQ8v@;o!es`=Is8&z3$bY!b8$)09F(P)+`x
zp_taG)%W<39}+a(v`!x$ql1PZJ>0-|U5fWOKzHnlN9ork<tr%aI*f1!tKo$^ePqp*
zJ0a78{d?l&y6D?#2)W7_`6K_l5vO!?Z^jCe3pbx-(&d{evM$K4MZ1o8(zfI(<!hUs
zm<(3q2y$4S*5c)3;tYffO)vSG(S1T*irU&|y|#Tl-z)i__zK2~!F0feQ13>r)9els
zY~8oWwD<GKBmZ80v+vbd6c~?)tQTKebL}50E<rWAU%jPs<D+x7H-A!n_JkbOZbw>X
zH`L-tZMqTLeD87e5~ivS3JC>61s(=r+HaLch6zoz0q@VBNr#o@?eb@iHPy}4#?9)Z
zy%?t|J9w2$c-s!TuyqDf3F?<Ac8UuGk_N6aQ9b?kYu2@CvhlwOZ=etBa31>O2HZbg
zz?cQPB`fpy9usQ<2p0yH6Q9_>!UbGB2|+VhfY-HP-ey;bp|fpMa@N;>TaysL$Oo={
zVi>8r{{jmB+!tn4oujVECWQtx9(i{?Thv|i3Odus`w4ub+n5h=di#Avys$-Edj*!b
zMB6u^+{LuZsjWOTZ~=sPo>7mGMlfM6+;Z}pU{?{3{lB*}@tVAnO*K+|Ur+LWQJrwP
zeYdw=F&NG_<)u)nsAf``W6{pVPX3aCst0a9G=8kf#kYchM>J4UEWT1_>1?&^dV5`I
zbJJO^cG`uwv~PIoORoLZue7q$98bw*6swrbPLc||*qAAmiee@n@gMW|VQlW!^{|c~
zN;-VDFv{MO@i8FiWY86T7081NfK!XG^4s@3<O?R{(abJ+n_e>N$Wl<v^qfQc>`fZI
zbFdq}`Y*dS4{AY}KOgebNbM&?^p|R;J+9SFXR1*dX$+)u9gLa!77Ywd+UOSARD5FE
zbTw)OG0}14Jc;+uWa`d_&u<b2=sog{b|!?jS~3Ft0^q-GkZ`?pQ?17$x_I%pL(GAU
zS;^UD`>R40|MTZ^!Fa9qbxH+G70;jZR&+?02Q&}yFbN+uxY5*Gc=8Fz-RriX$R-i}
z7%FavgC0uIv$WqFdd9Y=(NTYy$EUgJ#VUM4if=oDBA)#GEQ4QWi-);Ur;UgcHa^)E
zJ)|zO>I@ZqkwSanP(HnlXx26!i*rq4uA91hqEs$Mr8u^Jg)JE0C7raFm0E)2xk^1%
zn?s$*mMd40C6=IsqWM7Imdt<}U#}Ui_tt^YyIDHFE-qtu?@)I{dE;GG<zpnlFcmeu
ztlO7|H`uM;jtKpjoIL!C>H~~TooMUo0}O=w!gt>grk5;r1cVT#mkQ0i!-0o)8iN<7
zhG+;2?(}UN7)HR^Xq&<`^n~fWo$t|9f#~VcMJ_r4IfIvSi7b^JtoADU90p!x19(e^
zKmcvF=m$3oQ>&#&vvJTo8v1Bym$N^7%Qq2g2V%saaN|{+OI|y6OUc!04j>zrTNN`k
z>c<__qUWTnsFY#AuBVkMf`iGqO7cBB2giu!<)D8s4j7fy(d(3K5#wQneZgekN?>KV
zfWg^r_3PK^C|-d+Tv6;7hS1CeN29a7uCz)ao%+oMDOi)6#qu$$*;*Okz?l<xeX$(5
z3Z`})jYU+xq23>QA@G^&`a&5ox3Uz!MsQ;&%mPF5%((-u+o<`21q9}lQFq=uCcQhS
zCpGnRPm4ki&iHo?yVOaEiQo5g%ix8sr7D|Zcm#MI0TFSdoVLKoBpu$p21g%sQ*&iy
z1sKh>{_A&E7lXp{jqa;J1P+@j*B+>pt%lHv<)^4bSPjK<z}531obNH!&o1|cyDfKy
z69<$AT-!UKwS^|O^u;^<($mESi#1A+o<g@iTvhsuhQ)B0#%-D|U1Ue`mDqPR`n{4%
zpMJALA`fiyVpQP{3o?O15vsr+Tc7JA^Ps}#R&g+=UPJLMBHa=9{8?l#;5p3c8ZpCZ
z=<d97$rP<H3J^kQ)YgKZl$m|Pnp0~1jczq+SKJOU+zJWIK+wLEuR29M8P`@JXL;wD
zB=bx6Oktf7vEBW$yxsjY^nyJY^FBeQ(lI_P?fNtMF#9-*Oh~wd7wq2;Gd}P7zNf2j
zg8sD1*$u*{w_J30nOJ)`0tf9&@;}x~XntERFiD0-4ljl+jxs%G)v_?%O4oaSoRwWw
z_4Q~amg4ZR+jc=P)y10d+wTs>a$<q>TsVLCtBPS5ksOk}=tWXmjy7z(h;3|jotyZL
zUr9PfGyF(lrZi672*<}r!Ebc}QTknGpI4`^6r8TSlnYMxkb0E27GeLfRpH%-UcP8@
zn;sFTwv>_)Qq+cR(I9a}oo+cr#?iG^>9c6g!w}Tin-TkNX$fWK^jR8*TMneXUs=^n
zN9Ks$`cY;%b9el+dm|S!(O@^#gbC;(4SM8cRkxP@d>{;VKokb(CuBbeGH@Rev>G=7
zDgSlK06U|8L}~Ok)>9yJpyV<;^t2fzUk{OauSYWa*B2I7r$9D))B|F*VbpY3G>rzA
z%IKB5r;kNKbw|Y@=t$s3P(|WYX;ITi_1y#tcTzx{@T6x@z|#x)_PX*3+{}cqlde;R
zMx&emW)WH|S5RSL`g&m+&&M5;{@OR^`|~;;_p=Jr_&7>(b(Uh{)p*dI{igc_pw=g8
zOmS0y?ww`xYNu4Te$^XIxM8w9v}s6P1d)g#>zBv*9^b?y{@hrz=ggtulSN8>gV44w
zszi(Qfk1vjp7nMql<_pBhn98=evURY<eL?>#hEp$<|iRY@bP;b;I)2rMvwb}(h5zd
z)cu-+rf?@WWidPphfWz^>ziRDG<t!baQa}e?UX(6$>IbK4n85a=mol~H$}1W2YkaE
z`nBj1%NMRLxEXXgGquo0`^>^;9;Ouo@uq(yvEEbCndHw!uzuVr6vGLcB)M3Z&-IL!
z;&L!Z46+%M@PFrghlgCIB=J7+OXIj93GWwZqJ^r^Uy%cZ5bFU<&a&KzW76!%1?|j+
z^L-k-5Hgp$lb+?JVr^d0p!XOK`-rXuyHiSX{@W+YSy3u^fy;Yaq>A2^>i($PnR|Bh
zidl$HRszYCw+?=qtncknRF4NGrWc*BM-*N3d}%tXD4xPk|Gf;oG24#TtQ1R$-MYuL
zG<(CIIeaRpiO6$y=-6@U(qH>?O}w==eoETuSH44T@${E%5f}Toi;R0nWTv3xMU$Z!
z`WAnwIzl+CM5Yn8R~v!|s?C>rf>CqIR1&a5$WT7|#hR`dNy4MdP_u%yn)*JSnwokf
zm)4d+>Gh*|SG317K$Sz4Mp%&7myFXoldBEzVye_j$ol53#ma#`)^RmEjm_QVdWxc2
zy;EtjQFfBx`}euB@^0O9KClwaIFFH0)1uVs&a7&HV2VAk98y8Pdqm1-b}j$0C+_(v
z8UtHd$U3=lo2M8>t;mM%_H?Dm^`NJAs8)V}eD(HNQ8^M6^>7?C-z?5%D?cPA%f5N@
z4!V96|EN!qoOpYxvcP<%`d6Vi4C!{dv(YD9(d_+`&B3XWx*oxmb1>+=VOG7A&Nt1$
z;q2yCPyULPcS5b<DWQ(f5GIVogA7p$E`GM#RK?d-z)c%l#@{7>l*+cryn93hWfr*J
zvD2z_zedjq1`64;Z-|hB1X?m*akyWx+JXk^G@Ji;53@mMlHvBa71QvC@#0~fB?ap)
zlBy5T%`+HL#K)kWN;vzK^G&Ct(R~coxF)OY{rV#d{_7o9gy_6eF*C`<WNB{r0qkN)
z%@l|pIx(kU0zDw;e)2g7_FhGn7wPB@1|%q!vs6^uk{|%2YEJ{>bN<o#pNr?K@8BH&
zPGm*}GnZY5X`Cn3PnqoUo41i)Rl6dX+N&I%V>(g2(RRMNe#8F8TO<ZVgufmmk74-x
zuf8c&=gR~mjW$$+Op9h$qSOi98Sw&QIRUNDTKV!^!cwYUyE3sh(GMZGMlG4!YR1|U
z8$0XRl)wWkBaV^p3O#<d6shMrGjRpysZ=r6M!x0I<bKceM|nE6YJTY(A_r_aM<}fq
zr<@YJs9*OTwj|a>ZXH_$VnX}Lt8RI{IOeXx8U2zK&IpAF*PzLsY4SeKI|he0NhKvE
zjprsaO<|U!LT)fVs|%e=ff;9~XSa16;bX^+0_*}|!I#Ecmq9Cq;fY>9&tl5?v|tE7
zvac_GrTYF<(%vKrHm}m)Zem|4ov1WIxKf!BN4Qo<HA=gy8w|YRlZ{mdb6aY{41|;o
z??yj)UZBU%hDGjugxP!yyR6oGb9vl5o?IjeBGLjXBni|GY#+wn@W_~s7pK{}mEWKe
z#|Lr_!&+Nn;@+-w$8L3`_T2LM{CKQaSro9}{n_94$Bz;TLUlN*3Rjt@2Q92*Yl(4j
zuOmBTWtlF>V-|hjP*O+Af?!jzf6C1~PflqXiib1Zx<9MnmT9h@SNw{nHrGKx&9c-(
zwZdfip6`0cp1$?!c<{4S-00f@fqPy>O~gUVrrVF)sbqdZ5d7@<UdF*VV4E!Hf6GZ8
zq=sRWm36~lAqznsNaYf7E!L>9jkn(z(hfi+&~KDXjE<(gzs@K!?iduf7e=A7*$E`O
zt18s2dFwo(k>B|0{YE7!5yzX*M>ggo@uMI2=ZYFo^<@tVgAP4`;>u~p-mH4=M<B<N
zv@GmptXiVok>wQac$NUed!Q$SC>}1~ec%(sNJPY8J_6Gs<jXL$Bz)49;tNq|Js4vd
zBZDlI-2W6xMLeXKTk`&HyE9SHf4PB9bJKk36}m|yjavZCa@?{Dg>sQ6_$^8YjP{cK
z)~K??ams#uv7}b6t>At?l#XgcwFCl(GDVQ<1_+fuoDQ+l7<wa{?zQQ1#KM2e0Fr`{
zLvh;*Kq`lHY{`@AL6@aZ&*Lh8$#a52yMFhF#;L}F`}Nr{Mbhy|xJrEo3@b0rCj_4O
z=9>qHsSOY4jCI3<Zfu$7{bM8)l=v3kz!wS@ah8%*-DfLFf5IT%TQmzegs)D;zBP52
zwfX8;Y+ZlS3!J}u<19zZRyGs+*E)Mxa9)ZqLNeTvvbL!g;_QjpKD^zsFFiORQ{Sov
z@K%hZm0R_8(S~MoF8HzF%_cu&uB^WAonx1_=;X6!5k)!pU1nQ3Q7rl{sUi$LaV5<B
z@Ev2z59Q6}m*%!cvLSopWgba)+}kCv&X-%)1%WP;gkzegB5LZ&5l*y`UVJHC5{+0d
zil^*ekGp>R_`+(Q{4Mh6`63!Z=(+{54)m=6xBW&YUyJ!<nJAvK)1`#iZ^@jgthq*k
z2;a*#rVJQ%@$H-G_SaIy>WPVF#%Y1f^X;goOOfh4un7}HtB}{El5dn+dzKuMu({(8
zl$Y9mm{~w*^k>Dc@o6O5d0A|2*`WeB0ffg2cfGrTy6GSW!NORR1H0{ZEcNdp4=LXO
zzjwak*YsOSYxq&AM=nna)-qWTT*1^7-Ec#zdzQe9NcgN)gm1cCHFoRB9G~o99>ju<
zkrQGBkzkLoKT7uuM#c^KC^-Z_f(u|6SSwU3=>grNg8EAKabXs}%?=}WCtp_}`dlP>
z1gQOHdKB&I2Ut*>C0~wH`Sw76|4G1IAy;pQ_vd`=Jy962ESt<CT2-2G4@gvRn>^fU
zY>B?X*#hGVi1`^j=0dA~=uW8C8pXynkUBIx*`Tv0a(Y(b@|=zP%h#{HfRJkXzF)rX
z#o)ll`ci)f-m47*bydWDX9!`dUFN7OIlOPu0buvAb%`#4k|7GHJIf_jTF$B;I{p4a
zs{cAn1$2?@?CmS2wtCsepSoU@{^$z#H%?Esr2oBXoZ&7TEMP3<3(xH1j6rsX(J%>3
zWnDM$9&aimd>sd|)8~WOXgjZ(G)$h0^Z0!!&Jzj>wjPGCQiie5y@9s-TNj{Lby10h
zS>uyJb!>J4H(BKrMSgwr<tRL5z%UFvQ`-dC2LHhL@>pO3bY)*e*>$iPbnzd4m{grP
zEc2px^=`&ie|fc;j*R7`l+OCqzhZ*lDWVe7spq^G-zFu}!*M0QP0DyE8T#r&7+<CH
zKaR;rrX)49!fz~db-CUOVyONa>?+697OVThQh>HsffU6igSoj&!+FPUoU-owBLS{d
z`BzLQZy9fD3--$oASQ0N;{1Za8`cOfm5@+xmF83HVY>VHNCGBbh!Y`Rqq0U=tsG)i
zFE&67xspv|;*lABI*fFz=I4_<zh^|IW4!hmyCgb=AgizI_2H$X50}}UwtR>7lxhc|
zhdaE6zx=Qt@v{w;^lTT60Um0=|8~KNOc|q{?C%i!e;vpR!92xJc(m93{3~MI)NGyO
zun%JnE$^^U(CN)F<4<6>7N*}IUafl~VxofxOYxKy6`BtioU~wT3Sa<y;sQNQe9H>H
zn**w?32eB<;GzH`dmy_+7Pw4k!4Gt7aki**f+-kTL=D79TDKk$Xc&s@2AsSq9klWc
zydDbT*FkgFdnuU>XoMD}fpyC=DI9cqtGzCJFMJ&Z5MSwCpY0C28Viu~rveFywJ^wl
za$7Yp1yW4SaD*r>?FKF^kP`rFBHT-Y+h)id7AENxNPd2IENu2+VaKxdB9K<=P*R47
z{J`HuC*yzhz;BiLX_SNB_2AQFKVedTY0lSWVz<<eMB{Zcl#lqGZ9wr0?`OZ%oXVtO
z$Spyazr^wNz9+;_tGKXbcum8q;j>6vh2^YNeS>?&S24||-RUaUKmiBIPnQDsH;SJ_
zD-gt;(%9Pl!Sp^B9v<DiJ5;BE*}_#TB`x_+$k`hiqI$dY6ZwR@s&>bt>>~V~<7wtF
z5AQqVc!b!Q*so-9=^AX+>VMw74}atxg7q_K+O>!3M{QM3yI&954^m|Q!@l~@Gn@kh
zs~x|zAhgs}B2^sUPWU;vWcFj@5CjT@cug82D;9MN&)UbixrNV&8PPw4O~0vbFl(62
zHOlu7>Qp_rLuk{Qh}n}O_@!WPaJszG!YB52e|OvBrIJza;&ScJq{!QwewWc6?nw6Q
zh^<S)?6$Z*{l}S=#0CVXnBI3&bXhhxqdkf_r%5J(XAmRxOZ?-_siCfo9=?AjXMbmD
z;NTt7<0{~5v~^9ApWgv>`SyN<n**_RRrm%M)MNSv%dku3W%yT>AI6oPu}?<QH^~p^
zN`&5zeUTxe$9=sq8T(u=aQB5pVNw$QZWcy5%;G5nD{FZLgW)$vaZU)%5djRV(~Pgg
z(A)wSW>%~onLFFpHw<a+?(UyKsp+EGS5-K7zu;e@Rrm2~cjNZ@oCgPPYH*N0vQk&3
zI={woU;8UmWcQjp(rzYK68kjZV=l5`>Z>y=Zk}z$F_s{<=?c@L*D0beiBB0)poP8M
z0p%aTa#0zN{o3A@@s1+moQI8o->n)Kf{Tm$ldh!CHV=wyO~Ph2BB2wj<X}NyU?&GE
ztuv&RyaVOG_NG5?iHGm_lXNp=UF}@Lpbe#}lhoAQiQtp+Inv42XhGk(Qh^Wr9%ifc
zeT>+@RBivn{-8+mx~kB@Z8aU7dd9Q8S&hNvv*~^7m%_Z;vAp8XtwG30M;_M7ZBVnE
zZxo3|L`0OI<E|?>7<X5ilX0a^h3*gA#bG7NfEV|sDEX^1^7qN*O~Mwo3ipjb@CaLl
z4dlG_`uQW3_;`>}3qHN*qWT}d4*pIz=)LxnQQ=G=iSDB5WMRLy_+1^nN2vF;?%`60
z?P|Qrw;z_ao1du++k>Rz9oscYo=xIEf~F_Fx@`Mt3og^&AMJlTkQamT@bGvW{nN;h
zxbba&eM3W~<MPeTjZ}Es!0L0a7y3axMpnR&EEp7k6L_qDzodK@(#4O)*Sx|hQhMsC
z?{_b<#7Yui+6diU%+^;R9GukDujM@E`MV(Xm3B%F#$#aniDhiMc`FuPtLf(E*3sYJ
zFQ%E4p8gCB|JUT^=8mL^+R^-foUSYkNYmoM*yFagQzMJr+M7fwU@fZ-k48u>^N9^p
zM@MH@>*C^Yxy*F<Su&sN58Tt59Zf0G2dHeTpahrmA}A!}_uxm_R8ESdVK5O)&*QlF
z%Em7!2+<kP{&K;KFKw#bIB`OuDr1FeROLqfF@1e~Sl5Zl&Y+&{1rB1b09+C`G$g+|
zK`AHN6Eb{!1u9BvcJ|Rth>E6-|AP&(?Dh@{na71*_s^f-89#nHKR+K|{|4616)!Qb
z)6f@^HQ&lMT5)~-Y?-v^WH3k5-rg<&MEvW|=UmG?Ze4P|jobp8CUUT}@OW8oL34hk
z>HfB4&-awWa%Ljy{`Y5TS|<C<R+zs6^EE8Y^(>V(^DK?PCdhak?(OaT&tM^Dj{9>B
zwHFT)F(pQg@DNV>ji~y&D<YqJ-9>>~J-sa3lMQAr+ZBn=cfJ}=5;|%Bb&vVa$AX^`
zo4KCATKFPhaC9M|qjL<O1p`$vP4cpG!p@+Gh%u0w&#nMVp8TjND=^o_Vzcy`{$)kP
ze5TNomVo8Eb%Fb6G7sy$(=Qg&KaPMfJm*Q^bCHu>V1_UQMy0UG$gD^j`%L@LmV^t0
zR1s{*IGEf(fJqG@zdqgmI<0zLE7eB#UJWk5B-EhInl!9}f%7y+I+4K^tjr!TOR<s_
zNLr@6$u>ZM-!fzgM0mNirZ5~G9qHlO{Zhe(#SRw$-~;S7J8HiqJw3h8Xk9M<j1PI3
zup2Gk#Zm)m*^%l`k5^(9x5l!!Hp~vh2=A6(|Ht+D_tO5y0mO9TdsaOl(Hr7=whU`!
z@Vm2d2X+0hoc-2ef3SvNL*Qq0z<mMcds5~gyIdl1%Brd+I<M|8x&&5$EEu#Gt;GLD
z^Tp}b=rBxe-F~A+=srNS-~SM$WMYyB$%0-8N^ERw<v2g$`h)+2H)OD@OZ>r)sRoP<
zS5yh4Jbu?XIx}S16GsaZO<tInC$T^aA!@ff_<<;nhffC61x8lJT4E`t2;8MZ3jIsV
z%gY_6LvFsi(6(QCl|Kz4*F#i8#fSwXtzP|CMe8}Dp|~zG3o4(&3E6v2uuSLA9)#jT
z#lr9vjDBTL1|$9R(s4=y9GzEs!CCd6Kl`_9^Y_!dSKe?axbHp&*<}l~^Ri*R2!A9z
zF$ZX-96t3?Q4m%@1X`+_YjEAx_k#<-A0mvvQ^+Ns^UXukZ~pmHg3I|RmkZS|7z8m~
zMn=X5;|oI|wr50wWzZEd>WsJp`Em{}U3q>J(CdZs;g|q;dWW_yVu@?Ob3VUUjbJvS
z?+)<Pi}}F>xsZ?$i{%Vw8k8sxb}Ev9RSY8QJXK-Jq36TQAS}`L{S0(byMI_r+mi~&
zV=R)^BeaH+dmxmG6$m{-nr`y+tPI}eFrUaI(1;9WTeBP2a@=(OVKypN+;r!Ha5u&e
zop&ooe{Ml<m(U3A^)#IFuz$g`*&m;)^SR1`^5<Vr?*DT9&Fc}YJEW}z2u(16cS?Ku
z^l3G5&4YOWs2J|&#599sfs|K_KMLNb+dvF5%P-LnPPq2?+Qitx{007jf!hZ?FQ%)k
zGJLBcs|P{Gelz~!BCh2D77y+k7T+k4{eBKH8MksGGB87(D2N3->VLi4XKXlmYqtwL
zOe({xA!tk`U=vGre^4;}5)RuQ&QuU6lv7-L4lxEf+wqznDr20Hx0XK8Xa7hOp_b|k
zcGWKAgg<u@L5pV#YZRneG97eZQmU_)I}h>y(gJ|Z_!VF6>=bJ3)VpMWFhX}<I?LBV
zR~zai_JiJY9{J<|v5-+4tu|C#*B;Jge23vgSG9Z)!&v<P9p4y`hFCMC*$T<MkuklP
zEZ6#y%j`FQzrA+c8tHy|L9bTUZhGCH0`2{-*Je+`OQ?=Ehn_-<;mPD0P15cNCe434
z%)1?j&+%M8&dOZ;JfyAzsy|lL17HT`Fk$q8@Am@-?`#G^fw&cZny3|*$cL-ISgb-?
zN{VIu9PHVHjRgZ_0v<E30`bILMe>aBg#|Lu0QmCxy`kZz{I9e1P7nU1ZD5VE3IyD%
zN?4ASF`|tqu>XvM@*j|@C5M_lrFG})UdPD~e!uZ+h^b$ousM&6I$$Q-T8gz3m(<>Y
zPeb4F%-9QjGec*Q`$9lGQNwe?Mu|stCk&TT^arDTHG-JrPk*^!tGehh%eP6%<ffkW
z<N#u-pcQ}i{sQ%IpI14=mUX3_=LxlWAHvdXW}u}?T<kNO5{H<BQoD|?lW?`5VaxC~
zDJ^^WOdy+Vg3^*-C?=y?ZfTxOUuQS!{DWgMEQY%}EAva6zPR~}m>n$v>67-|T26~i
zR7suFfM2=FyK*{@E6t`-U;XEV_J0POcO>3`@h{T|hW5R`7r%nX@R^We5fKdH04<2`
zrhwyFB4uk^hOS^vMtZsND~J14sSH9L>T8<-yk?+cIXwcL7Jl`C+qLt}^z$F)lavPo
z2y*`T7}|Jfu3#E#6==1OEOp88U$(y(a|NCP*m|u`vh_e{V2yE!Ty}PH+ORh_FPsw>
z7ncT$s$#<m?8$GzW<C6sn`Luz^AknuJF1n+Tjoe&E=oY|8F4GFStCq@5kZ91Ic$IV
z>a;V#T#C$FU@%7<`{(-pmLhnt(2X^;jvm<NBvujklW0x4b1Jfr8wx!iHpO6MrSG}U
zQY=Tr-QAw8e?om!Yt>GbTk0N<dmtpC`tIEeH4SqeYp*Jiq?E6bemb|oN179pS)OA*
zF26JnRqY~n&s-#n5bX!>RRR*4+Vncl$TZ$X1^%n7M4k|M3VGCq6CBA%bGzEmIuz2c
z8Y2@=;R4vtMy&P!-znE0nWJ$?GZ0Gob|Qc9iqm$*bdcvD$+$8#HT5lA$k^E!oA4Ds
z5N@tToO>*AvGC+WWreBTmEPIi?X|^LApznBs_%<mFPXwZLt}v!Tz4MBF{y9^2t~@|
zKYd%I$y;A&puzCA4Uz8TWM_v_(h$FhxwvpjhFYadD`ZSoV+AiPEXhYE<up`7+FEmH
z+N1eg&*DJBw}A#D?D}A*OTYr4P=Uk;L7hgV<G&XV;zecC%u~G9Cwf;~Rn*4&lsJ@J
z66Afy`yU%%PwH#7#&i5a4nj<VP|6+eUnZwCM){27EDfKyArT%hdOu>eZ|{8@Wvgn7
zQSvd>7d>=F?P%H2L@v<TCZ&&KlE)M4vMY3oDo5vQK`JupEw{GmkHM*x4ccFY?~n!$
zaIrjAH}`duiPj{~2H>Vxv#qwJpSIP7@CmB(jQ(bW3#dG4x0(9;+8YNxntR_dT?uMk
zV`CWJm;d`B5iBA<7*Tv#kx^2TPRD!1h5aSofdY)vM1f!@=Q@dkjLgzu4rvA*6%k;F
zV8t3YYPZzrer>*0m<*gxlGK8*fK<CNt4?}5P)DyA=MQ>`X-RM{uXixS2{N?@KPm!r
zeZDr!+RbO>4GIBw5Mq8{U!Z;g2uGAT-+In~7cM3l85!Rkh|gLP4|tcEHw7U%>JjiN
zC7IH8+5B9Knyuic0B*|1m?-~<W@eb)QF@F?<uW&0Vl*onhHG}{42eD!oUEv2Y6@^j
z0ytQcbv6QgSbi>&$NL=O{<=)(KM8~D4-vF*S?oWxd$RQvRz0&tXNYYt=?s0krV;x2
z1*3G?yPx`gY-g4e(lhQN#I4lVm1Li<S2`?|x9#2Xo4IwPj*d+HB4stc)Z-L8^%oBC
zG>Y1yzlsg=^e{{qU4sSRz~zq3-rwKAsO+OG`hzvgx{tfmAlI62ZWB7>_@J)-2`El!
z?zBa|yUulb^uMPz-h?s>Kc+2NMNOU5YADkm6``2V)z|n11gMAFyMR`Fnd`Y_plt!P
z8R(Spj1a*oduJ(~7>^`6%vYEyD!ws2@t#0$?a9rh&iOgh)!v?D8iceciK&-eny@!p
z*GrSANeR;BQHuxtDATNL_as9*FWYCr!on5u)*#6?8jOJrJ9y*_z!!QazjcXg`5ut!
z;<RBe#n4FiG5?L1Oi47)3JAL*wa>7QyX#Xiu#Lqw9yxd?ipYJq(8(#oa@`ke=%4Er
zn6m=Wy&luZ@}}g%@%Ag&t==9+DVZ4IFig(<PT*Z9XJDIZ?j?r}V7g}No<nm<T8w6e
z_OaJi&$x;^jyhaQBAB=Piv`Y5c}jN9?@J4oOowHw*L`jNK9<fcoBCJ2v+xE|4YDFQ
zXzC6cG+Le?c+XFQUfwJ1`iXz8;{Q~(u9H7@DsOWaRRtx}S!*DqKAstIoQ0LO@@v!g
z?@YlF5xBq<k6!<^(+a5Xv>rs^k0D^sHkz8B*EwfLc@=zcV9lBs6Qlp7H^oa3Loaf%
zg^7|<co1XmaUdGeGf>)$k=_<ACT@=w7?bL^_`n^3Xp!XXq|ko05-TTle|LNOsib!6
zCCRr5^LL%E9||6jfk8D~ot!wGq}xjicltUL+QBTa0I=3^J-I5bUP1<HQ&xTIPP%>+
zg~z~>Ja_o!ueNbzyqAhSp4}Fgc&Z;czfy{wiD*0uYD1igP+L8)=7`~NjcmT^aK=HN
zWUc?a@_eGfB&!~Gjbz?vxa(6lUxhkyc})8(<C~o}>T3sLt(kY>(Ur^MAE1F1DTx^%
z@^2o^#Bh>m3VCNe;roOB@sB2iAPJ3ERT!oetkt)r{%If&CJAESsTn3Wtknd!t73J;
z(n8sP$wgBk_@M2Jo1KO1Qx1Uot?LlkPYDGZpeYP7SN0v+jo{fE@~HuW3V#&QNJvPv
zNbPP#>a>IWJ%F7{n*y~OGrcBzFg^~ILdG`du#NtX4Ew9Sw^#a^%qMCv(><&gl;OI^
z_0S&fpM%^kdc36U01c_%ud1G<14%J@bU%|{s-cyQg{CKtMu?2JK<J|fkPkKsr@rg}
z-=Uakt0t|I51>Q)r5U1NW$lR%?{SuuX#uYn@aOGk_V{r@Gt<4_hb&TIM3thN;KU9p
z{R<^KDH2k<N<4gA9Nat)QJNF_n8JP?DZvaL60pTMyuigb+P~ET*^(5#i2Hc{_*~(j
zK;tM#F{HkgTWQ1|4>ZY)t`OK+{=KhITf-v}^SQhOn=vCm8Y;M6wg;4!mOjWBY}op>
zWHt}MW3vA9xBu;Sx0c0h=4*YB7C(uC0)JUB0A>-4x*!ChWG`@R!s1bV*>t_fLn7t`
zGH#ebx1b+BOl{vmbo>caLi2_ZOLnAmCjbOD3or1)YTgno>Z@nZo=G`35Us7Qc7qAC
z6Ssw5kZr&5j_PVoKDJKHMz<Op{6yFKiSWdR7DQ4ax+Nsr$udKZWf4E5$k5fA43yFr
zodhiJgU*H!Td45ootDGbF4I9TwBII);xG8>1;S$}6mvCxh{=!SqtRX?#nd(VR;cZ8
zDm!iED}%PL>bgMzVoC2y;AiCm#kKEE^9|w}ge3L5$|7xlXr%MA8oNH@<^N{{91(;8
zA?s_e+G4=8*W)Mch>1I86m<XP-rQn)?1YpGv@K~lT-VbaD;(=%aQOhpF+5GNC&CZv
z6eBx7A~AeD#M2!e4-TUIc3{#%0l{xYm2;8M=<pe{9Z>^`MH@&U^{7uhKq)=-greO6
zwCz7V2y+<mUBSV^nnb$O1XEF%zYcnj--<(&6-2@DI?ve89cV9S7CW9jAw@^?RcSv$
zMunPBkRPP0;shLYfw!=%S;b8T@Vln{FH!D{gaqX*$UrUY1BLS8A&5p9g;&*`8gBd!
zp<8aoc&!MjWMg2gaJV8RF!AXsmvYTDEDtU&j?`VZ7WWRz*&&(s&cv4xDdZRoDUTcU
z!@}_a)YzT*MJYaRUc5Ep3U{uSNxkDGxu&E=wWgf%XSIFh9?ugUD)U<#IAjv+X#V=b
z0Awol2s&x<zuty|Fzcj`gH}Ns31?RnQV<BS0OrJ>eIDG;`Z)kd1s#@nlf)zhqCZVC
z`v>LVMeoJg!S6de=2WK3X&4Hs3%7%Fgls06eB{~0!ksfSnkmnKtL2z8bXCD*Bu|0E
z0dy05(#eFWa^~W_!}TE8gz$$;Kt2A|gDtY3pC5h)`n6a%;U>$BC*Sm9pj<jHEf8!O
zI`*!TatdOrru1V0JeEI-=q(uU`sJ@8WY=ta+qRPYG6Qz%DoOF?33Uh^Nv0oKS-0$+
z^gcN6m7a2M6U?=CresyhD1Bz-z;&fP0hz=C&aV;!8>f{wIQ(jH6Qyi)J-solC)l;g
zjyYJI><$C@6^9?x`9R{l8)nV__tmNlcx36;;!1%EP5iHy5Z4=khR(od2yX6F7fcN0
zyMcbDq0e`te!}v!20Vdnd<_1JOhrtxb_?a`rOt4o{=<b!j75LF^z`(jhY3Rmu~xzX
z=ix8Ib0J|@pvWPTR0FiGWHJ4Y5FGBv(#8J4<d)ut8m9l{HZ!VR0OUD9Ie(cO$jkr*
zo2A{|qR_BP)$Kts!gV~OG-!Jy&^NoBOhS*8{IiT!lFejV&PC=+&FVVc_sDVL!6bk`
z%gE$I<K}VFp4r@|^4JyQW;=XKdRtF)V*Nr~Xzo{2Xs=S<%J*Jv$Ejx~Lk4d>Te%yY
zVbeXLTTGX+kjtw)jK|>7oR{pK-sA93&eg{~@AA^F3U(FbOL-|0wn;Gd24>Lirg(KW
zuWHYDI6uJ%pRy()ol`dD?;K$Vo2gY#_Zf{pE!Q>cD(Zh(_TN5vH8nK>yP|vMhKbdc
zm7vJTNa+?5?YDOTS?f3b16u`iZ@VpnkQst_$T9^n(`!EvfreT;0J{#@hcTY*JlXdd
z*LE$^MQ3tCc#s+h-*W-N!X>?-jE#B2Ab*Yn`{YAia#rC4xIW40nBkD09BE2x;2jbl
z{AVM`1Q-BlP?jGsWC_OFYt4Z|%kO-}=iYb%eT>hZi7iAQf`MTs|7cY?+auFRF`!%%
z#j{_pIDWo4EbeONw=VAYu2Xg6gOfx1&79}Gd&+V~Q6KP~?LS^xT+I6F&D3``M>aTi
z<D~g#Dw>B3L)#=1GZbBZD!-^Q7=NN<B{4APukN=#zV`NT-zKNGZ6$5OXbkSGNe(0m
z)UM-$JycnV7i>f?TJU6<w|B7tHy!6b9f|_$-e@5%agl@pM+$em#1R^J1faKTjzbGp
zO-GTSWuFtyYl@y!#y&}<59-wX^o&pM2Mj{H-f)v&BGp-R9)y|GMMLv1=}@@ug@RLN
zJ5H>VYMp9FKJZJpYM>GxL{(plZ&czMehrc<$ikYi^66Kt<We+-4XB#2Ex&555iPX3
z8d<|`tNEKFF=7rw!fhXQb-KMR+1b^l2oN7Ry#IpuD9P&XOq5~~6Prh%*eoikXc?~U
zVna~X;R5mkb^GI6%I6>S3qfkXK#S?aYn%`lM-4%pA_DU$BoV}1Z&5CpbU-gZI=38=
z{_^sYL4+@dPnZ+<hqk%w0Q~RMV#01$pm7H<UYvevume2Lwrvqlhsg92chQzwfqBkI
zo^dk}7)+7*xdB#jv&U55pPxjq=vh>yMWd6b<FC2%8D4j4ljf!qBds`!f${{3@SzsS
z92{MV7ZW1#uBg9r={CT|>WZuGUcCGn+dfzl?NW8au;;BHb>kR4S7;H%&?5<oAgdpY
z437K;ZM^hMY}`iQ>KmM)TZXtbm$1R&f^oFweSkm|JU>_L7e%(o@tCg@g`+?yDcE7;
zV*xfr%wYh!rqcs~bW0{#+U%NZ@#cZi^vA=D(;L961WdYK=`_OOH#c^N8g%S#Q>mo?
zjK%*B(+I*L32uD+vI_t#+cq?)Nr}e*?~0+ZaW8OXdVh0q7?YH=Vej&=i@RN}Ccc%I
zUyzSv#+<tZd7^b5opcK*Phj=J0L^gC{suT#lQ6gdeTAj4`JQ;X%Eb1Ok#}DMrKP2Z
zN%3t`kCGgUsy#I@S=T=76dClT@r-L?X!FklIJ0u<*=`{)iZc3hbI1(9lF(w)`mJ&=
zp35|E6mTGsbkpV@Q?qH8V*BBlLBDIv5Bq?pM$bU{2yLUL`Ps|0a0M4Cyn4I8GNTaF
zuzqiTwH5YBdaYJ&rQOvxm;5xz!aZx*kz^V^q9)Z{8X#<4g+Hf`Dw8>|CZ|24d@5Aa
z`sWUFXc^eHC@S9E9eOly<h<D*)f`soOIU%sFQffo6cWaTr?hh&;!wCHTL+|t6g`P#
zWn>EW43v5=tWg@lFi&t$5K~tMi(!b{-6ft;`rpVp;Gg~M?q<*lw99jlmyZe~g31PB
zw)9ifKMo@@`5(<s&RE#6z|k?j-xCMqvlCR|{aad_Zw6w!xXWQ(PPYuPJ<4h$_x7}R
z+H`@{?5O*Th<~*6G7%T{ozM4XPv@NxQ79JZ3Mk@in>=pqs}0@cnvJ2b9tYH_O1LB>
z^jfv{zdS>knvTLO`bq%7pv-uXbaxVylx+K3I6kxRvo|l$Q!YS_)B{H7x3}KbF#NGi
zc~8kU&nohYqy(inX5x<He90K1JF?(=(<;_fFpP98CcRhcAgi*qhsQul5uVF*TfOBu
zV@jmrZ>jCEggGNmR>wrY_wN3i>*kXWA&s6n=r*aYCZDNa><1V3_45dVWL#6Jz!pl<
zNsx|5(fUe)t5AeCN9V-1Loa7Ip&|QqU`afaSbx#CQ;HZJ*Igwd8wz<~7ber%+Pbn^
z6(5uEFP&gOZe`>kZ$}dT*bFS$C2aI?N>`cw4)p)?fCk&^YZLI`%UKa)Fk@w9jUP@B
zb+P-E`@6%&#>S_J^5e5Lm1yTuj6YXU>M?BGbACUV;=G4BgqAcrx!%v=!PdQ(NUl;J
zloziSgd)vsDBvYD_zT)?q;T=FKSUqd=hbr;6fvk5;o?6;1Qsy&9(Zhfv?6&4YEF_K
zHTfzezreuW2W}`{jcyAJmz!$7x9Oj!DlZBP8oH<R1Uq`YiHwOL=~Di+LHt(<^q+%i
zCIdD;yICAy2MRHk0s}Ay=X_0~KR>{TD$E0Z|8-LE(84+EqM}}6kd@K0e1%k7%U~U-
zx+s5u3jl0X=2@|6-&FovHMQ~p7!g+n2R;G&4N)m;ZV5)a&EKCL+-o$+{&>Y^0_ug$
z&3rz*R$mHKMixLgTSXo43Z(oyGyP8odHt{u+~n5QDK~g7$A8>lwSvu69S|hatBRVq
z>{K>M?SrUf<5n(jby}vdu&}3oVjmyuz*C!DNp@$bhKe+x4IA0nl#>7$t3mLhd-lh>
z<l(~X?d?6Z)TO{eBlQHjkYyitr_8u;5&oGe|Ht!5fmJTnq(y|YumY9cndsj;fB18+
z@7)hn&f`}Sp#_J>?9WuANS|LmcijBm@7z@-1yIRckZ>tztzKu}5O>eya@GW|kQ6lx
z9GQJ?wm#b#Zyz5YU(9VhpSxx;9_T_}eZ>hyWHT8OWMt##znf8IQu#;bW-W%O34k{&
zT-+~_@zKCMm1p>y5?!Ey$ihHWH@d3ozZI4L_B0a_1jaz(zc$YS$WOTmdRhU2x7%Z}
z4cmAvA3F<~bl!U8yQl74j&OS~=1Ruqs+4G-ZASskt==#KR^lEtYfDH_$hYVG{QNGZ
z(^dPNP~3i{e-MjPF<}%G6xM8DU|?3VLm60(&w@ebDs5?5?9TibQu}Ww^dFzf(;<z#
z^j<Vf437h4e)nUx8A+hxS197FgmZCyEe+cHm0lKI5hSu&Dv9>5{N9<573N=DUUo0G
ziBmH$$S$nraTk`^`Ad|5hMo`8NYZ*Vl{hscV~M8X?nG%0EbK+^)hUtG&NQ$G>(>KY
z;RDuhhl+uLVLJRJ+{wk|=UCA+@s<T)K_4(WwZdI=u{L7&mI27#XN4RwZa+KFizqkU
zVsSDk)M;w8OiWAL9YSA6^hpF<fuM4iK=fDt=ziugd2d~%Xe}a@QvL5y^&i#Xzx<m@
z0aGcaJ5i{{3KRkpNxl<v+e?I^D87A5y!BE8LZYQ}cf0Q?-4=jm5g=^RuA-ex1D&;x
zt+1FD3thRp9NadaA|Ec%(IEgWJpf5gjjXP(_lDrmf$i_!Kv6sSjo~`7&@`YPl0%x+
z(6U1w00e2q{wNTUKg4S~jN*g*CX68kRMeWTyOqDQMNw?*6usNx`3~D-x!>hh&Q_QX
z{)|_NNC4zPl-GVt#0G~;G)F*A6RADvp_Ob8hT_HvPIZCWq8w*mi^)iXt7BTbDwy_S
z2|2wp|L%S9AkR43rBiL4rM(Q)sUL8l#9NSfbEj6h*Nu#@5isjlZ-!%rV_F_xuImi7
zDkGYMu8bLrn7gua!qFU;Vkl<xS1>vQ@{@P;-VaW!W(X_)tr+|Ftz2FjafHx&ac8oG
zi=6(&izuKPAhqzg<Qv)?`~wWN>oDZ810pD`!ZIrsndk4uo<2t~!?D+N??FV7qyWH0
zT0Bi_@8+C2P_^nmRdLdptO@Y*%d6!7KxM}I>`AFEsLJBKc4;cp5zKk9^hpAMz$D33
zPI`3JUePXjR5>2=5<Z?b=j-4D<j=-~>F7RhMnr<3AI9id^jh6xVq*<Rw7-TkV`F1i
zCJma%V^1uodx=XJ8yNzZ4+PU8^3E)^-URy9WaBU0zjDOW0uZ_g$voZ4-XtHz?Mzn<
zW_daz&&<xkrPELxghfOs>+v6-*mz#=LfuJDb|yv0*U|*;T?6%~C@FKn=-Tf>H9NrU
zz)B4T@q!j3PJ@P?zCVlaPcZ*K2aUgS$bb7^GY;=z<WfT3LF0_HVo|v>#Z)%aGJvSJ
zHdg<3Mw|lbcg~8MNnp#8PQ0TnP$@|Oa#toc<n>E>V7Mu+s^fu%PRlUU=wA0}-IiX0
zm}$XnbH1qw`F1<MLw~tz{sn+;g3I-K-YHMkP*NX(63iq7MJ|;yYdmDA4xIh(5B@4b
zPI~RmPJr8!Hh=;nh{z8zp8`HaN*K0Qx@jUmFG!yIaeo!eek`7reY6)6swqD25%>wT
z%wih&>U=H_12Zt?sHmuMKneCIsF?Go2?T(AnvPD|Y>i!_LgDqhHC|;LA`#6X`9aW&
zidtEDx*I=~x{(jt?tfr;3536UKr);Q^ur!ZA2uBT)d!Ko$wc$Ju6Ln&rFx)x<6f;N
za&<EiHLu7(>gLAk@EvFIQFVf4-L5hXIx2I@#l^+ee1me4x}^CIGtEiiKKUb2gP<3n
zX4Nkz!(wJeI|(=#1t(U6`*Mm+_rJ&X|M)d!ieYmu!?Y#pq~|vz%cNb|CpT-_^|MR;
zAI{!7uF7p)8(tzR&7`}fQ@W9EP(m8%?kQb@bW2K$(%s!D4bmXpAl>~A&Ux3```u@q
z{hjmue*Q7%bc)Ppj%SSfzV0iG9IHgN;PRRQ!Wej*PqQ^yl)N2|x^PUT;PK<MwHmsq
za0T!%$66E9g$=t~(8i7-Jv2D1%OnciI6^hy78~rA$=6-&L$D*jfK+Z{D3#jZ-`^zp
z_$3|R6j-J7!WyN5Mj|4<2r>Mlr+)-hJyKeafpfpb6Ov9Jh@^r1d3-_wHN>O6UswA1
z(UK_YoowKZcmoliQ*N23+^`2^Izy0$M+5a~q{pF`Ge}R__DEpTA%qQpl;TypozYRy
za`+=t`PoeadJxCv2E&u1B_IMqsO^9x;rkB5W9)MzQ(zv026NCY6O5V}JsE|kHSszQ
z63LhV<7<2Y@TLJyoh|0C-*;k!k<$T2VA{cmfjjl>?V!rK3__>qmWiQ~ucSe5?*esF
zAAt2=N=tWbPHewsc=>mQ!e0cKzkQJV7WUWhnib^TWqChSjQ9OX`eREK>$U~lK>$`8
zA<_xB?tPD>Ad80(&aH)}<e4+zH^$ZFZ;~PN=wzD>8P<%bT%Lg#@D|jLn7w#1L*k7Y
zI!M|q!aW<JX}lR?R~zuSWusWO<C_3Bs@XRIgd{v!m<1wP44iLQ;6RYK&ltS}gH$|e
zqWxLGQS{$3R0pR@SZ3Y9==TN%(XTa5d%P8m*`<JkW0bcdB6odxgppl4q7K`cqK<>K
z*$)2A+2M2eSEK`w5PZk=8H&bNus)^Z<Cv719$Jrs7|H-08bDSN4%Ywi$Sj%Ymmh`>
zr9`e5lr%?!Y}Q`yhnx57;YTk7vKtx#ujgB|bFM!9i3R=b;{DqfzdAv<4T+IRJWtVx
zb|zba_)~F<rHuYvEsFi^tYwbBwL}YGHubU%%W;)YlmkU?6%UihJ#Pg-EE)MLaU981
zO3;d@G=lUD8Q{8}qY`IU99Gr<bNf_aA-KB+(m~mhc;<%_*(8CZV0dxCfcC48WYeE=
zB;57W?GFK)#PSHYGYXvi>><|YmXnynJ=r7DCg4J%WYN<0n#}k-eKA=1`C};xIUgZO
zaubK`f;Nt@RUpe?zyu~|gYyArw#o|e0{$Ly8e<t5tb>TiH_xge3P0!9uRo5}mt$*c
z3?^UX(OR%y52p*gCw5u#Iyye)3^^q}5y3T{1|BEzonmu5`?FQDD8&3Upi7GbQ?dC7
zp?}$%|0hpDsvX-(8!(vUWCa;6FUTPfFvnQTAbgf9Dy3T>T*z+Rr#$)1LRwNnV#gk>
z7)L}z4V#4I;LSvlmRbc;JDpm!<L<i(1P>(3$-+8p1L3fBiwah7y~rln{LIhWSqufI
zMSq#v0ZL~1yF~M#Kl%-Lc#2)WdB1&oB_jUf`SXzU^mM_>rl^waQXiKJhWKPHhlb;F
z+WuGJobpMS55>z#T>Rwtj@^Q<UiC^Pxx>9c7L_tJb=n#s)A_x=PPwp94I^&4r}0l6
z-oGCFe_L#V7vHeKrJ(tc`T0chALoj~%>!N<mdGW?3-rgVRU}|5nN6rWOYC|2ipPG%
zPu|thC^|aCUj-nweTK;i{i39WR?<#%<wavu64P2YkJDHgZEfw~IZ%!c*r;--L0dKB
zOWoYHo35FYXVQ1Atn^}|U-@N&`9G5u(2Ven1BRnLC=qtv+Wnq>Tk#97!wQ?_&xzsx
z^fNqu3`6*oGDt5dwUl7mB;!omr#k5db{Co&_%D7{u(}?v;y=n+;&6}jU+4h|4Re{>
z9n|cN|1<aV-yBWUp#4z==&5bsC>lOCjI{e)ss4A3@xmGN1Di*Cm>dP7L2@`2<eTIE
z5?C#bB37vX543i9mnWcZc6OC=;bm_ZOo#W$=?~`4+nOlI(YT&^Uk%d%O$~?7Mhaf-
zQOsTJml`9;tY89J+3x3+lNucstGqI@vK3&6Z+E!87!%EJ%=^LU$^W8M{=W!Ss|KZ=
z1V1i5J;<u&km0`!!mh#t_lDzy>LXEf%dQDRIy<MVC?D4qiZh3!rsV}tb@Dd%{kl2K
zDGk)i(=p{|?R@T{H2M@TZGeF6cfp_s&@B&~1|Sm*d~n5xOQer*1QZ`nDZqt*M@DvZ
zy9A7|WJ^F}FB#)BEhu$8*|;9b%gc*SNHAp!2cH-@Oo{bzX2EDD@4Wx3H-kg0O<1@M
zWgT2-&VFrIYOC?w44Y4oVNBel+An{5KK#2Eeee~R!Vr*zSHb4p3utGhYnz*Mt*;sh
z0v@GIEr3>h4B~ocVpW~Nq_^dnF9(R!OCLx&3(>akq6r3_8z_D<fEhgWXSuO#!dOsv
zINQwvko2PL%~o5}e|oO-wSQUMZg<ie#kx=P%}gC2zjyGDgVXejh{$)yZaVjoFa<qW
zWSnEBd_Hw;mc#>zhez5b$_vn^UJ}#$vP^hX0d^RxueDw7&Zc;@3336dmjI5@m+OGN
zIpw~K3a2(#WmyvXbBwJ}Rqihg_+R11e`<;T<*&x=U`!dr%HulP{Sm8v98Rd2YJ{%)
zB0is8!(q780L)o)WhW}uXV0Fon*TIvy9Fs-m8LD=(1z#iAno?$;<T(a{k{*#t!P1K
z5Q(eClk43#eE>0u0VGp8w8=lJQcXi1>k~D~5jytzcz00V1G;Jr*cA0Zr95fbmXyGt
zL9SJ86$iY3dY9Th$)QF_Mi9ou(W}L~M@&p)*e*72jDSt>)tJPJwuvDN%`UMnm-qEH
zH6D*cW;16`7~c01Sr?+yLz??9KZb`f6cw2R$<RXT!OnY)U%!!Le|&R*cviJgYfteg
zjkqTg$vNAd;yE?`|8Z};9;CGE7Qn@)0j^@CAa?1?XUA#V*-Gg^Wv5(j(Pt1;5K6-?
zt)Sq<ZQ$ls-*~wqt0}hrCJzB(gWWFGL7@%0>@_goj{;b@<*<KRT9<DTP@41s7Wj%)
zkVBlRNiif|;P}UP6ZK8t-GRsFR4A8xUa9SMWvs~_(EIV}#`~B;Kuq8G0BTz6?4n?3
zTzH(Y#u(uBMP<n*<i8oK10=PE8(Mq)&tGl8U8fLu4dyHBoxvFO#c#iNI{+(d+9yXX
zv7{IHj(2`r$BbH>h$5L||C96VU*2PZ>Qk}OHq!d^z!fe70XTG^qoc32y`Yw{u_+tr
z)pVvBgChWmwHH!ya$zXJ;6$MXBm8JUGu}1_K<woD2SCTCDQUS62qW?Sey(R`4L9sY
z|E@3!Byi7ZYUh10-bjj$CI^~RKZE<PK)*6#LJW~Mu!5sIIX<@9K|oM&*BuyUMv1W;
zTT;ocbee3QtRCuS6-&;woXF>v<A6=q(9jr4+AXhW>&Ay^%;boxBEmM%X>cs__ZOeE
z%K8aXuoKW>?kNG2A9UricYJVdR)De;2H4u`(*P0~JFE2qS_@S^u6a&2Hc_yh7d7JF
z@0T<GyYczIT%*69T2TFm=E%ZP$--h*BY7EUEaF=Cz;qo@FN8x=h9>=Bo<7Y2g7@n~
zz&?%_4MgEd?E^qRDUg?FdN_jIJYMTh?cf|WpDav7z}lrPE3?=9x+TM~;Q+zGQWa1u
z%mG--ER?MAfe45sgw?kU=u9hdGYW*R)(kxd29s-k014-&-7Q!zPlH%7FR!m<5|~mQ
z`$3-vFV=kioH+$9i-?4zgx?msqQ>?Uf4497z<0?=gwD!G9rvs>DK&Ki(0x?=C*1ds
z?bHYA_tD;av|bWl3tY%LNqmC+-H{zZA8;%4g!d`y&`V-sP6LOx{9OoP!rv96OAHv?
z1;j|<RicHkiUDv1A*H>CU!6Dy=jOEbn=Xj$q0lj|6&7kZ<f2EBG(dR!z(mQU$U&+@
zl$0O;U7+fj_A)$V+0L?Fql2PE=cZ<CJFUPfrJW`VvOxO+374jp%w@rK)AEVFl2Y{k
zvobxvKpIRQ0hJ<?eI=+_6TbaI=PQr?yI<{Z%j3UZ{3?N#iv}YKaRu(zRX-s5F~iku
zP!cf}>)Fat@(!H$9>S#P{0?hD$0A!r{I?vVy0a{bjcB((kCIwNJC$AcjxrNKs9!o5
zK}RpAg|SITK>w*cd)eHsKYp+;RA24r^fVR-{ZyM~biY=Ur*d`o4h+NsB@>>;{$Eq4
zzt-3P=Yt&<AAB_OI;vx21cYem7~+_X!Q_S%T?K^*ez0N9w0O7lbDDnp#yMD(?*jDQ
zTIl%rbceMrAegV7@Lbzy6<q?4ZVB%goC<XM*7jyGV>%(Rt>?LqlPTWJp>2n3@Eh#V
zJqeI<@-$f{!--E$-mM?yQCY>pWkMrjhCH~*ch1i#mhc-N@CGkldT&DfXKThkat^+9
zxO_&wW9-{;;6>)oWBTBRLh?(}x4t^2u@jSr)7fk9lUu~_^nAapL2--rIF7WmcDZKx
z`Hb7g5(Iwao=EKB5mITL2KnfCo(qHh9q#Z0T<V3lXq*!+8oyh^F0xp-hO<-f&~p`F
z$UGZl^m-<v(^KerTCR$CQM<|t5?d25e<7MpiF_-$4(yPLR<n)ud(hf{qdV!#cE&X|
zHYa%<)+}wH>5SeI^+uqn@^Y2+A<H|#G2coJ;mIxIr$?QfVbGe=(!{bwfK+h@b%N~Q
z=v;g%#J+aB0DZ@<v+HzaC3_<Ol|2@x(?<lnx%UPJ_;8&T5bf5OWuU)#bVPc1DIhSv
zj%%9#AK%57-}4P>fU0N&HY7?ESEh1WG%4CRa2BFjEiW(sthG1v3EBWhro&2Su##JO
z(&IATVe$c$mdxf*>NB!cpgXK`HY~(O{mshCYBZ6rS`JRrdc?1OapF#OQkvmPs6laG
ze^}_=XKco{vN%k?&f{_@4c5EBD3S4!NlKI?uYAuHT({3!@f%2#r6=zxOq%J?7tY$d
z=BFf&mB)x8Y=xS=lQ+;gza}sVa@u-@LvRfQA-LEkAdeQNg9@W~%CZN3=4=azvAj~q
z^v4ZnAv0snLQa9wJL^~q5|8!584X(K#YLPO#q({$%~ZL3Y#;s3(kC#&sKqCM0VFzn
zKt_DuMQ%n<8Yb?O5hpb-%hk9}2fw!{kC<Px!10VO1s!K*slK054n9qPj#{qZc(^AB
z@kZ7z62<LTIUJIG_{xcn=TX$}?>(|9eDwViU*`*ZSJ1ZJTdbbS^Q|xKLUpS7Fw)(<
z<O!0zNeVG&`-V$mTMy-K2dzh{Lw}vls=<8Dm^eOhpk=9q(f^O@`?vQRV8kIH$?`}8
zBoV`^s?B0do4y~qF_6&D(OK7-t*xicF5zNs^?zrMpE<2(rND@U=uK@y!)^j96M&-_
zyYGR)Fd@K~VVs#s%w1>10JxWo&x~j9eij{b5j$L=ZoRoS_fo>++iqfiP~)XX@J;&O
z8N{*cO){r0nQ*l6d2W(egBq3jvg&L%QMvQAmMR;KBo75Fsni()@?;Of-lEQmx8}-e
zEu<H3?>Jg1rCL7&3ezKaui!2uW^Gq<jt-0qPXZW<ps@TNjf0B>2R~SP!<nxhczjal
zFlz!YO7NHFISjU3VGdGDi<||wl|E{3Drj>s{h+3j`NjXc>70)k;=MRron<{sR+fHe
zra-ZgBs+MZYod=Vug$S84?a*rDkU}Q-e=!NerW+bHBr+6^Zx{%|D_`R&!@HIuYEG;
zS^r5B@1qR6RK&u``7VN3fR2`ycIDuJxk$6>r!Mk*?1dm4gzv)^DR7|SGyU?6)9gF(
z5RP{ofBkPLPovooPsRC9Y<$7mlJM4%`C-XhEl%1Zg56<#m|*Y1&$<1~KVe1OoSkTa
z`~AdBW^Cn$@Wf(xc$YLe-6~;4O2eu9Bo@kKo|g=o<{P2oro7Jrs3Lelg1O6p_IJfk
zxk}FhboI&VJ-svoW=iNVXz41g^=*n#K5NIVIussb(DX6Wj1pLE?0=#}aibEv0E&NW
z5%Z}Qi!bMEnk$_aQpQprC<J0Mr$vvi9dX8^H0<&JO`D2E_S#2ZJom4`XjChY=o0WA
zi3RN#U!gNtf#?_*6hOCFR}2b@c^*oZ(@-lbR_R~5e2oIh7{x<=$1dwSLL!arqH@g2
zXrkAun`k^vM5IxkTVGI+!{6lITPN|n|BTLd!)g9?7xJ7>&7Z7T`njSlupuj@k`IQG
zJ&`BfZPkzQD?!I?@3)lRz$45pfJUY><Z1Ztk~&o(=+g5;_}(SG_HxK4bUPVCi0l{^
znA-B)?Sj*7_t|^j4~EauW&b_cYViWxOO`#ZD-3@fbVKMqx3?Y%k^yQR{8&4KV8kIJ
zDymamK#w)*DG{9DU1plIw4pO-Jh96u*FKkKx-k~9AGJ2`o#;w|2ANlCpG##H-&q{Z
zdYB-Fj52>)B|Sp6C7qEjL$BFzm!4^u+%njIYM?1?ltYI8m7m(}@=|s(_*1l-Sw)I^
z;G0fy6TX-2v!@s?>T;3uj9zHSlp<&S^1%s)^v$th(*i#)+ml~riaYm83zA93dl&>b
zRpVv)CJqR^=xT9f3nt_o0l>J|TW<l)?x8#Mk!sgqipPBr?i0aCcAbm3pUioNy7XeR
zB)XRt(_y^{$71&@bT?h+iXZYifh@6-kp%kj6i<ZZyCXa~jVHt2pGcrP>7v5_{`oE>
z_6>vQjc)MGu_-MbO(|!E^i7o+gZ@)Di-Ry?ujXh^T<APKJYrl9H)Z7qW3X#eiuiv<
z`8^`@>(~5C#}1SUQ~!buEGFCO=Hw3~g6~+PF({9=ytcj1_I8p^qL78WY3W-$6rYEC
zzv0z!sl!~`?42bMjN@4JR9ZGv74NB(=cCM2#Mw(k5D^JNDZ<VbxyC0GP@dv(lRZN~
zj4wsJ-m*l}*Aw@D=sf#m$+|t<^6Z<K+Q#w$^%)bvw}O~huC8Ag@aSKM6sKF$t~LGO
zs5M-5Dq2wPk~m^X9S5hi`jQx<G2Gjmrw1AeqN+0P8l>$mP*$=wcF>lX>-uEXHWoy$
zxohKP*a~0Ww%^nJvgbQ%c>8jDZv3G4fsuKFPse<<KK}yl6vu_S>!8&3yBXu*z%R$w
z3istI`5j}a-cq&NF1syfAMC8txJ$KWk!!{3Q3xnT8Tq74EXsdt-zPJq-qdTh>>cDK
zCpVlnTyvVwR+WfxSW;Zo@t`-jhu+@Z@$)ohokGs#c`rUQ;k+k1o3QuY6)!NP><#wh
zGwzivf#d&-H+d66kmVKX6df1OfVk-1OXD<++Ta}Ga&_4^N<?6M=gUmEQ_w(a`SA7x
zvJh`~ZjwRiGYrS2h^iCqIsGckvgxzv_}Na5km6BY$nadLPt$nSFI`v40Su2Jl840-
zrKm(>Jk`@hSm*SWVYBb#LX67jI3=v*oHuSA%#cWBk)E##)&up|-<dz(eh4+~@)aS7
ztTPdP8Cy&5@rI<$H1K_>1l=!an$f->X|U|O(20WY^63sH0l$u!;o-ugJ|$27*jQ{~
zta83UTg}vOD2{d@e|Mj9;g+{&Y49n;Yah?D&D6v$GGb*hKW{1N$1i7frAe#!@s=7~
z`TP&w+4ma;KXsUzm6AT}XKfyo6eD)vJ8qFtkhl%~kkM?1zgk^Y8|42}wD)(2B1bw<
zWpg|b+6Vl#DRRXA!C&D*^9rW$CCI5s^{UI6So@|Gd)eEQ@&3a>zg3^od66?63zFsB
zdwktP#rgBK4e_7rLp5FVV{^ZE)k=cVU!2D=lJJvmOFAd5hd<Y0o-TY|W?+<nnAPU0
z)?Xb-6920bwt_eN0T<rJjW?EoZbY!s(Y9BCpDN%&{2_M(eYQNO(DMqvci4%sne_#e
z=t?F!4Ch;zjzdH@OCK^ZX|J5dA>r}2(XA}k`QF@cPsxmYgIIRTLyd-&OJ-b(5O-!3
zMtT;O1V)<)$%J&^kwkACV*+ZljoFaedkm204$_(YWyCCPM-2mIPbWI8L#m|So(1Fk
z*9~zBaBC6>tB)ES&u70uafBF2=y+wUsg%`}qI{B&iu~L)mF$Ruvv^kfp~)yrj8;EZ
zzvCdCN<*f!%6RlbVia$Yno+CZSpYZ7kaS9FE5w(-Bl^A)ITESOWR<TQZ(@UZidgLH
zE8tFllXe%GX*+K{se!TZc6oy%1}FXH8F8IFV$J~P4lj}lIkmRr<0+3V+6dbg_r31X
z3Yr(Y06j>Dw~=Ea17&4)NjLTMptY>-MCV*mG6->Q(5oGgoV;ovCT<6(H7`B;nF5dK
zmH!|!stB~L;vx3p`qWUBkUJ`B{D63X0Q*hV{Ik4f(iF3p=M?`%hMyP*3o2US&(R{%
zKf*qfm<U?LOLExKb2Z++XS`-bR3$Grr{Cs3MbNlA3q0OU9xGHeneFJ;Do(qOuiO?I
zXAmW)Vbz3(pWD3`YUY=oygN-Sww*97t=xCcP_Wgx{oc7}kJ((k#q;_)qE5W#=p2!o
z9;U;$&`Ov_8}5ZC1B|G4U@ftJL%N5mw}hKyDz-Qe#xh6kzJq{5-}~g#tD2U3GL%44
zyG@E}-+qaj{NZWkg<q#nCQw~kpp-0OZ+m<oQw!t|uSS}G<h73Ecx6_munHeG+&vop
zyI`tbbfa#^#s85JxR8vQ6$Gaa`5p4nKoo+gcSDbTSm8_a)r*9VjuW;_PZU!nBuFM<
zf$Y@p4_ert@DHvB4%8KlGk)?E2d-%|b<mqz6DQ6X*G<BLWp`hmo}n~q$(EZzO_kga
zJ(jjOLHfx~4eb;@%UBme6vE4KYeu)9S?O6A1{_iCJYjAruaEQtYD=?-c9*tz(e;C}
z$XLP>`9)I;oUn!rzjJ#-Ukw&N4J2q^!&YGHJ}5fl;^L!^ff1#a8Tbbx@GrwVpP%xr
zIUf`wEB?_L`TUe7WoK6@ZoalSIx4&4aXi$sf$RRsvwD)QdVB33U3$k{^*T2P*;gdB
zWOD9)T-;`g@xVhq7!g{|M#&*40go_jly-7ygr+~f<sx5PJ8~G3Q0ZPpxCnYi%=Q!g
z-J1mmJ_VCLdr=j$6J6D|9<^Y^3Z<BdFJ>xjQ;PZ3zqhMBg%P9gHFFv-+US#y@yBzL
zcgXJ!NBISQOf>f#$~X<}E&((_^*Bl1;dW|0+DXCa`DdvZ_{ceUm8C=!a-1f!5}(7A
ztdmn-<2%lp1{iy?ZhrG|Y0a_)OfEeV@|*V?<0uB4%GzdxF)<G|ah>aya>8V={PM5V
zUYrzQGKHtPj{s@q7*4yNNjEhOSva-<FZ)TKNyKv2;q<+>J&_*@k7@b()`B*Zj!k_J
zy&+b0%-RHj{BUF(Z;jIq)h|dzn_Zz2=M3W3(%ZpzF7I3!<kYJ*Bkmf<A+s~*Gd+hk
zGnYc&Vac0skv7R1%a=X+g7~t<)HDKKh^qTTr}*Z3Xglbs{2bL44#GxfT#M;1*PB-Z
z4xSCw8459$rMh=Fw^<-J>E`Q<$!6(zzK;6j*~jlDk}7)G_xw{}PxmSbI-GlxG31!j
z!z7cI$uCFDg>l?hWZ>y$)iM5dkucHqw&2ziN+y0w!Wd=vp7FXAuRbR^kFedO>Zm?d
z<IbBCdHZGB4%zAR^_IToGy3tX2sg-$jz`5V)bp}IC~2j=!W4PfB|y(^m*j-fX_Lx_
z6b>8vtxnNVna4SwNqx^AYNEO2w_R(Bfk7dmhxA0IeX(~2<@id7`*y`<_GAclDf&KD
z&<kekMY6cf9Z|%yH}P>%h0WBL%{0)<G*VRJol|E@YQ~Ot%#n(4sAp$$zo&8|1wRN*
zN_#)-jw2So7+mz2#KbYdT@Y5hy|0-+YubpijN25?>3%lw(Ns>|EbfPg7Lc;g*^|)`
z&u;J^c<|BqB4FL#jk|t?w%PlrsjI#FvP*nz&buwGtnIS#A^#=*lzF4e*QS0EJst1y
z)ZzdJ6<z7u4VxRN58-sBCZpuV+I{niX68v*z=bOQe?PN%JwqOK^C8D-FuCGSVx6)8
z$Gbnh0035JK+OWe?mM1*Msp~&P=yDY)*eM^>CZrG-~X%m4aSXEFILQW;~G_-ca}VN
z`DP%OTw8k14Kak67JlwNT4zy#1y-3C$?;j9Yi~GRN?B1lg3{DsQtkj`(kkhdrUFSB
zd^QB8a(&)b%4I&@x0zg1myWu67LkBVSDR~M<Er#z`k<4GRNWt4=cb$Vdw<2xqa&Ub
z5={*{4l`Rn&HEY7Ay=>VIg)l*id)-Ew3Tut>SXFJKT7)fb0mHAcKvoz_UWTev0j<V
z;J~OCWmx<bS8Bz%jZeG1ANb1SzEXChpV#gUOm$JyjKKNSy*JQ(cr$Ud_B5@jTIe`r
zTNsj&sMU1ii_Ru-zQ^RoKapU6KgHU(Ov@J0JCs9RP+C15a9Ma1Y8aa!@sJ-E4yh%2
zxt*?!Ce0{1@=d^nDDkRkIm4!`h~)cl_plIyeo@kNb?DN`_qSaApNR<8o1ML)G$mXV
zrVFVLV!wDl#Pj8Nkd5v&$W&d6b2U>p_^n2n__3oDzwcMKm{Z3K(?9gc5-6d4HDBj3
zZ>u>#wytqFeVf%spET5ipZ1~+2b<#%e}?PKFwW`X3F;Tf{vIp8iAkyyYe8FRI(FI4
zfDwfiD>iN?Ly?e&I8L2T`m6Q^k>8jXgD?&EqkpuwPLec!<L{iP-A15{{xF5+SLFWQ
zbC{vn{zO#?`o_DfXk+P#!`7#gfpQV*FlfbnZbtRS^AnxbMWsc)`S<Gm5<f5fUs()X
ze?L%JuOCRZbn)Ozb<q|i_6$YacTb;j+!dUfBZ|@LZlMqiFvG82Nya<g<zr5CT;8@D
zFEn1+-DLKZ;J5aBmR=-6y^B!9M55=0EBa#<RZ`a!2L*4XG`Z(aO(~*hn~Lt2L-)2a
zIxardp~+U?;k<9E0<S*xv7>4Y%?WAwr;l=>-Ag<Z7PTfFz7`s=0o@mUsmmTcXA7fj
zW_p7b+3KUSlWy`hm#0$7W+p|3@+3(|;dStlpQ;Y(-&&J=Ij^JL;H2k%xf4NX72qn!
zx+~dW$-Ob}Fnc01j$D#cE3rDOtUgy|5X`<au6$>$QX+3kNe-P-TV<;Ab%c8_`-ztL
z;I`*XCG6n#+Nb+st_=Y?|4CAh@h~88LV&r&@^;T~6{XB_ELaiFZ|qQ=@ODq6#IKYo
zc=4BUdK0C(-le?f((0m$+x#$8CCIU=4fWqBomr(n5+n7m>91z~)!K$6|KaBkW<c?p
zRTeYBh^wos|3T;&kV|&XSxHmVAVMVzclNrA7S|3E;Gr+0Z{`4sC4x$fmai;Tp@(6)
zUH<vm%Q}|B7bOL(9^=2=LK7#0!`56<W5dLfX{b)t>?ww+W`FA9-uZS6x-CehT<+OU
z$Y(BZqZ(jL2a8wpS1lhtd6I#>u;*%?lv)c>UER1XY@8$uX9-#0bTO<5pbp4oa2$TZ
z5%!*vz*~Sy>|=8V=YgGcK&jl6=+#ULA<yArVtqb>yOj-Ya9@IxO7h`?aR}mP!ys-H
zx#X<Ake#P1BGYA_oIZ3v4|kr2M$TkRHa~e{p%YCa?M*<;qThW+H2|kv#7MZ(42{2>
z(oAKaq9v&AAGP&%M929C)5$Q?OPg<F*THK-Py@f}^4r5HB<2#;SJ0)7|9!s#595oR
zVf!7DyELA-{Kg70<Yh%&r^ERfr!L7&CiV*w17chCxP78Q*G|u-Rt4>#dqwMcitRwF
zsrZo%<iUe7uI}pdC&T_Ef_ACk!>=df-020JNqm{zI#0+op+@PN4o3X!daPb(rNjF^
z?glR-il~E>;zLn2&+vjNHItZ^lSzOFkBy&l(CS`4POb@@w|0p<&b+^7&DM+}JbqbO
z7HmhP;qB?CGWB5Fpust6k)HMsaF<cf9VeXh<da(=-}wCA4fUhkUO;n7S0Sv#@Aa6S
zh6_+_6Z9V-21L)9Yn)*0DNv_;F<S1j`pBfF+GXP221O2rdb4P8?0Wep?sHu~!{gj@
z-}YRLF-bd1nR_b(8?dn!!u=Mb<s^WN;e0_YCwWC=t&M(fIdYRckKvmwS1NyrqxAho
z+EnMvm;Zk5@l^%Aw2q4=PI)!+ABgAIQ^?0w3IM>lZiCrvJkWw;5!V53C#%^AX(FF<
zab{LlTpE1BaU$XUNvMY@E}=Pw$5(^f7R1z@9O`bF$vm+m)B<v!xKz=W4I|?()*mj7
zEz=Zkp3Q}B4M_OQwNj`w1s=RvfE|72#|TlVs~~kL;4?jJfBve#eDkL%vZ4l-$J6kr
z1T>S+HR!#THQbK=rCns<yY$RzlkH!5>rybV=V09?9pJFg6mS->i<TwnFRzoxOcZVG
zu=9+GWm)DlZcZfdGjywrGgFnMJ<=To`Age87&F{eCEz_?-q%Sid7{3nvve12t)7b)
zq{eNRSaC4*$;dbI_~@E7WKBs*r{w>;XvvT-f%K*CcGaxi$rH2;?3eX<D{)o>Su!=D
zDpIo_f8=-9ZIoOi+eFd(ie2h6{!xLF<j6lN9Ta-3tmQ;MY-b^KH2*5%<VsyC#?9p9
zkW-#AS9kE&!Dih-b|iK-{#@H=)w6|{P1cf5xM}38k!v&7O`NF%$8SWfT&BjEkxRZ^
zYZ_?1@ZSjGB+wq0_ZONB7b%$S9Dy@-vpd00O+CQZkDSvn#&B^a;s1H4SJP(&?Pcs3
zI8Cp}PTY=`%G~3#BADb>Xl@hE?okQagG9_xbB{n2UnEbd6DiHiYomoM>|{*nG_4HP
zczG{Lb6y|0rw(aY!X1rlgb&y)`X^diDES&?=g7Q%6Etq?UN$2RS_`!W_5v<5s!*Yn
z%;R04Z75nMW22`SEYymIhf6c0QgG(+PdPdKy#*ZDc-q*#5O>3glicOr9Q~>itFb>V
z&O1RYXX;)2<vS4L_}A9>k9GIw)U6K%K!g25Wh-)jy-DUvD;N@+4YdwKC?3^8N$lq2
z85tRmgwcM$!Z3|z`^@DtX3x2-qFd!l;ovW^9bDYSp^+04+d2}5Bf?19i3^utrL`G?
z0xh>TClN}%lu<owf6-2yHd`)R8CZxBdf!_y^#{evGR{3$8C$+$G#NBReqz^tR^+!|
zzprPeudb1Lj4U+05uzBXBRZ~#QKa?BuvMqwjC+Rf%ViA-tYe)YQk}V4+h&Q~qUeXT
zPcx{w#M6HmH7JCt%IH1Iplmm~QALUgA=1QSyObD&S>eR((+O7fgn63T7Sk~ZRZw+0
z@?n|0(zy1TTCBRA1@T|Hd<ADM+Nu4n)hBEl$?Mur$=|8PyYjaUNNm|3@{%AHtMywE
zTO84toAADbu@u7&ZautgzAZ_p(wc6Z)R%$F({9lzp6=IAvZ!!SDgH>X9Erw@7oQ&W
zR<+!N)aWG7&k)@N4wK-+Z~b`Eu%<L+rQgC>D>DoXK4P=Y+RLV2(VpWOyiq^Sm+xC8
z>2z7PPEKw&b0Ht-XN|0Dj#!__=I;CbEFezKHekOSCD;D`+nM1jzKODkLerD_+1#-#
zlU$pJuX<Q?7t{ATAWuiWl%S?xV|?GnOFY$k@{q>GZL^u2NFsP|_%8n4;mP2|mo1is
zO}4z~+d+YJ*9yjeQyp(p0&IL+fHMW}&o{lMrHV>TWqgd5vY5!1Uhj*0mWCuMBJz?$
z74eJA(VA@AI4iorNvi*QDe;OSJY`%Hlf2GEIf4TO!RGU47W8UjCT^@1ZtNA94Q3v?
z8a*4#pO>zyVj&}OIYO43kifPjwB5`0^-1zgcK(BP7v~kzaOjNkNx>I-{7w%YjiI{I
zZx9iS3b%p2UI&3RT8r`U5It*w+j@6DCnouTH=U}?yX27jOV~?#=4f7RyW<^srkvT!
zt3Yx0Cf}Zx*t0oGwtGLkl`74awCa&b6yLXMsTv)|4Rk__jk#LIob9F;WsZh~5EpYf
zArBRJ`p+79hL)q`v_a$Ai4D;8!u4NDo4;HUkUTp&29_heE|L?S5=sM*oYitzuHYrl
z*XI}tWgIJp+88a@JADK;stY=c<75YZmj?Z+-p<hu<r?f`LQnR3(5*)yWP)q@wHCcl
zZrNpE?tI3W{lf}WJld6X3x%hjs^3iFa%8?0U{g8X-g6HhnR=yEr}e@oN-fY|Q7HDp
zRwZ71K(o<3`oe5hnb?A|WX8y4WN_YAjZv9%-!4w)Yh#n;g9=Q?$0!zf_V{x(RFyqw
zc|~Urq}Zu(-|1>M^kV$V2PTDNy|>U;SbH~G&3XWO!8RXsabmUhMqSejN|fCt|L@8!
zxsNa%tR9Elj(@(%Cz`s{`@xHnrBjZaf?~bZ=P9L79xKbI6t-e<lgT_S@t`Mh<dnOW
z6+JW$Z;~&B3Ti|wNhsq4>ud_Fnh!K010;haTnayN(>a~<N6yBoP!>#yxCBA5WYj{J
z9gv3K%ogt5wnN23>Ip4bzTyER=c0EoqNQ*LBT9vhZ#K-}l8d_h&0j?P7<x!H3VO3A
z9)s4@fDa?u6JK1@v`sWN0XI=n6O3r@WkqoIO*wb9HP-@|0;#&MUDflb6@E(!t2NwD
za!*M|BPj7}H?#Y&FH)8^M(n)eA7Y9$YUYLA!mLJ9eK-8<cvy{OZK{(YFi_YJS<>bF
z@CUw0b53wevx^!$(pwS{QMe!Vzw8n$BD~bRPCn=8U}*@ru==xLEmsui+MMjep(gy0
zRJVge5>4h(S&n%XT<PiRe$23QAgwQ)Niu|mNmcTT6kZl8`VOah_;%J><2Xj!t%pXn
zNP0>TeLkZ=hWYx?vCd$PP3A+AolDEiV0_le;0ISJb@8<A7lxth&S@=m>&pWxg8v+(
z@c+yLUmu}=Z7p?ih5jYi^g#@Jt*2+>qT?r@?Hc)dHdxfeG~=!O+UaMVjcNs0zd4Zu
zauo*+4ws})wJ2o%O=$PEz9saw5epfH$OH(?&|?1TE48A`=b}Fht!0AXE_?z$(&j3}
z4pnRIIyog~>3z4EuXlL3yGUjW4i5ed)H`4178EkAX7l*puV}yiVZ{i3?jY7d={xxW
z+RmZtQEBa<sFZi8nkMV$QkMa+^gcKN3b)Ykm|Dmc?+3=8`wXQ?yQRe&b;c={Jm#D2
z9t~Tt`fsZ;kQ-_0%TJ#M;P9>Dw%Rp!%;}f|#lQnc&b#k#W!d)3VU|0d`if>*?3t}v
zTKMS;Su!gP7Nn1_!3yUZRTfRv$B?c$gm*Kl#9TJbQF0;G?dpOuj1oAoav&}f;fB^Q
zo`^-mP85@Y>ZqVt@gV5!ZtR)X1aGd5JoHE9mro}3ofx%FX%z@px2d18V{RJov|Fle
z-evAyejx(J*wu}NEq?D_>B31VvWXQR$fhqVBDC9cfrz@nCs(vRQ1PhAV62O(NnWS7
z*~7THp2H^TXxgFn_o+3;1dH+%-&{YUMbD?ktuJaj-*kHXdDHz1GzgyhL{l#DZm9GQ
z1%Lksaq)E?nI0B|SD_DB4&ifH7@72R)p?oOywm&k8dia5!Dh0=^$6KSlRBS$mrn4W
z(`R#=dkTh3r-r>mv3UMl_6uQ+aDtKnXufOki{TU*RqN%^V$i~D3Rdh|+_@*3r{<2=
zg(GZ-?p1o$iQrh7;;j&?n^io|{vl_KOM=C0VO~Avnq^D`6uXbAmb%kz!;@AuqZ77H
zvAhQBg=R=O$G~C!b11bhUveUSJfgV~hJwZ>wxgvG<?qUkI2HVbmC8DFbdgKr5LicX
z9Lw~j*JTLwZ@akI)%}~rd0SY9&EreUxJ~CZj%No=-tO_GmI#|<eEzZ9U|yuAvfVK^
zMgJM++Sc>xk0VqhC%)Jcw7%)li2a%Da#EDW-}{n;p%a|5&-~|LJ0q|FjP2hiBK2!d
z_xg1(=I64V21OMwT@t{U=4g3;S?qYQAW*X7&(zP-KBmdo1t*EpFT<bLNTAtYsJmHs
zMfo`(N8DQY%t1Vgceq|b2$LEv1|_sMKk$gaoM!ab7p~zMu?|G4LX8Xh@$18LWDBAe
z=fLBznOvx1mFMl(o00i0uOd}8x-?Wqb^jn$L~Wh$-@UJTW#rz;$ElA(_8Kb6uakFe
zyubYAd;DL=J8#N?^(lkKJz?sfoyb>AjE|D-k5Y|C!<R?Cn@YZlv;Yk%99$Iet@{D;
zv8f<<?Mg~YFF7Wt4(YlYRI;<<)9l2QP-bCC+a`9TJDz-(AC)mHqWZbEku!M5b2t}h
zQeQ|J;dN1v!eh<n{O$R9Op<7^Y8uj+7wMYaVB6Eo!JHE5aqFoqtDGuq)n_UtbR0JI
zN*{6!azZvg`;=D9?&A3AIUbO_#PYDJ!6Xack-n2W;B*%{p1Cl=51wZB26?K!LD?mO
zCLu^<wLxCLbsOr}Jt?+Jst}$;kcrf{qbJNAj|Z%;R;F&9u)<s8TgSg6u&d+683;pH
zXho!GA8#iu&-+#N$+cLNW%^R6nx!C3u3}l4;$^7`hw20uw^WjXOS={JjranY`q()k
zq(eMCpTyNs@$Al*h3l)P>X_k6gt2pCOh3LrG9<?iQ<75p3wR`mU%Jgz%Vt)vy+T6f
zx{+yr`S3$d_8*@YzwmfV>vSZ4tp-KT&prroL`vD4v@}}`j$PKm&1Uw#Q_X4UmRa5P
z@@Cg&N)5jYyVd*+?^O%Qq-+AgK{Y4a7zCZ1kX0_U*I~%0|N4D1=Wgr=a_bh)>D3ql
z2l3x|-DQ&j&~dtei7U#gcWLay$hyv#ug~UvxcJoqMg}DXuN1I^wWn{3Ob1yOe{`Pl
zHtImlk5_Qb*`Uz{ObBr`-W>=NDEig<$zC;s`u#s$ovz%cZu6@9=X&lRhS;6)01f)4
zFkrFm+HgO%x`Jwx_O)1Y>>!`D{E-&#5j?!*yoyeP-QCZYp4`?&Z2~H<|MqzK1KuU@
zW4d#_KJ#C*#g}%==s`h25I?&QraU}6tlnM=zSz#ziRoNEU#@IrlhMY)0ymnK?!H-O
zx&?YgL#g^9&1-H;yv_EXGpV~b=HJpX`IElf2#?Ghg`(1xse-+Tg&$8h!%rOx$p?;~
zz|BBX@L?39AyAwz5)~vq7rgio|7mP<Yw$#q#N$EMoO4^6qa>(#{^d7CwGOCeb!twb
zpK(EI;}6Q)GMOcLR2Zos+Swrw9a8R3QU&bE*l4>v7HDw`Od%YdepLreUB$a=ah#EQ
zPKn*m8<X1_^ws;j18`a(=Er@8eV-E11BHJZ1~n5#MjDd%&qOrtDCI#Hi<pup@!gvA
zMxFW~oxi=>sJudNOftsnS9w)2@1_Ol2-!DspDCLvjlpKbp0K&RvN}5F&Vj<|H^$uS
zCYVC~7{b$Q)brm@Nroc|GhyTMw_1Cjs#e_jn5WC0aHV6l9KOk$ZuYOda{0DRHnc;u
zKhVrxAumlC?|B|y**H+Ez-dNB7MI^AVC(%|?2~EOK~8#?Wk$ha4|QZ$U-|GteE)vA
zEAwxMF#%snJ~mN*{vq4+H_SE{*m*OVRT^il*&G%gY#s97YMTwsZ%~ujUc*^qNt|md
z^mP;M@cGI6DV=9m-JALHdK2DsR+ZdM+0Gf;daq$gJ0DiU>2tMz7wz18Usdj!I)yy7
z$g4>`aeZ0RpCuC+fj;}~GkO|_yJ6vVS}F%WfkhiD-AYZ5R<-pEv%}~|vV1;m3a)z-
z4BTQ4eywvn!AU}s{-5asm4@GHho1J>BbMt-?-Ccw+P}XecM1NZhiFQW$Gzr=&-V8D
zbG#OxO~1sn0m{kCq7t{Ot{pC}%nUTI>#M*)lZJHfxl<>tcizy!RDBTm^=I$<uMfVe
zpdJ1;H_l69r562%mv5KoAMI_^)9O5i@VndG#~Gr5YrudfYRyRN2XD_YqT?Lhn<I5Q
z$DxL}@ZiBQRWA>v)r;Qi2jm!l8EUDnk~IP=j_WyF7p7l#cf05FDOJH#L-;++Q&y`Q
zn{MZYjM@ddo0E)seKsllvm0ys6^_JaPo7LpzUU5}2*vgz1%kF|K%BggInEEadGT6(
zUT1YdWyROSpCaDSev*}WzK%yoRzN4-YbnTz;4T`yI**?agD7Au*V}00!l8AgNV?`z
z5YkHG*qno?k%hfJ=!YDRwQH3s?p>)IhCFSdc?50|DbSu@4g<f3F*b!CGxZYc4EzU`
z6Lhi@xXP6kWG9crD%9X2NV`9nzAEt~g-Dqz_jGVGnN>Kie2`vrR#0DGarqWL&ttcL
z^Zmx5=KN)Bjtyc)Vf7`6R{|J+y?S0ngqN}k!C6TWxW2P>uu6NIJviu5v>7TGI0C!)
zeJ^r7<f$W9@uZ~5J!zoOokF={S~;^5F2=f6fDkpjtXdNE`TLU;E=^NHzz{k~n7x3e
zX<grnb4~7Ad(Ag<{ieHG9pf6b>pc`S!@@C15u^m5<5oFA<&DumQFKxYK{O6oOcf=G
z0E7EG#))Kw-MB>$qlAm$gt5Kqd22v~|50qVz@I$D*C5AimD#lxV68ZB=~7my-sh$j
zWM;JNvSE6q!&SKFd5d_cyU7z-I(aU2@Cvq`8vDWU#A(+qf_Jj(y!gnrHv_eWv#azn
zO{2>nqDK6%j;bb)7+2%G_rBZJ;zohGhbWp&qk31>O{P3WhCBP(PqM#OXJ~=#>?5Up
z(FAl7`os2deP4&)T;rS(SR-g1&6&ex0R!DBOSoRPNaA5AK19ma{ZgE#iLINzx!z~q
z)toSL<#uoaI$}v^YwdLMGg12=Mc;psrvMjrtT6AD{0EqH{zRp0s-fP$c5zH1pRlmg
zZ@Z0Q=h|fk;%$%S4aDE5U%r$AsQ^X<X&Gi+qOHu_+U+})Q6Ed`q8-c{GKoID?xZrK
zNyEb&rh%})N>0TuJ$FQUC7smjjwNCgpB<H&<Y%iMgce=nbE#HLljFRnys%hlCpTqZ
zB_TCe$|;ZhB&#GvyG3<LzOZr@xFpg6GOhAh#|07D7#rJs=$(v%&@BaB!C_K!fElIn
zm_qMyIW?#4K0za90DE2ue_<B>W`yCTreb%yE2fPL7MP9V_#rbMpZtKpK9f*YJ}F*O
z7G8=&T9k+LlKHM$tfBU8&N=QdXvbkiFN|=eOgI|pD1jOq7oBR9s2+a-l3c*~f~(}b
zwut&}msc?0D~hiOktWW!J2VQ3Era5w*R3rw;*L76f1C|mVnlnfyemgnbjvV3aC#eG
zT(#M-S?lzSfSC4^g=)fp-^*SWv9;PX%(%F$#b4hH?8q(({L3dfeySgq$LdmqKf7S7
zL`;7TVyj=$_BIf^o_q^fgiZs=)=7Rh>))03KCJ)RZqv|#cpq#mjdNL`s*8u?4oUaA
zTz-)#IL}sMWo$0QqlQjH3j?awIG`#@>;RrHtL4^O#azM_AA=E-{wS%!IbB{K!g}?j
zpcEo%Zl8gTy#t~M#63u5G%i4FQ2EpL?f<7~{Li)2`t0@BKg!&gJ~o}%;oOEtsZmHq
z#3pfkUjxa9F+_Y09pSFi{{0qHx_qzQ&Ku=GR=`VODQ2g!DboKN=;X)qlqG>B85MNX
zON+|61b|16>bLwl;DI;{GIe@RI%Fk}fy-5+pYQx%|9h+m3`EF$*aB!zSb^KG61S{E
zFl-;wqZ}eJCNelUqjn_oZ8Lh~WPHi$VAG!y+`qYqH14ogM~Hn3jiDd9fe~x!huuk4
z-~#w4ISNwi&ev^9Lc(M1gv?FE^BoY<0WP@ic1@)-tKMtx?TKAhpQyq@&BbQVaX~#H
z2zJb7;6=omznzy$<a77G>|toEVKr-PtleO)fx9X$dQ&A4=}^u9Mr*&>?A&B5t#aS(
zz1<50$&XXB?e>QBfAcH;Mfsp%f;rXO@?|HsbD0bIDr>9w`L2#^q}kJ5)%OHuxgL0y
zE@zu8SGam%rs<g5;-R5sz*d`^=k<kBx1*09Q@_cQF~(zA(iHxp>mnooLP_q!)&JBj
zH_H979EFEI)Bk3M2wokIAJ{3!Gg9@_Khd@9-~GJl_3!o%EU@P4xs`<OxrgB*wUsT#
zbIH=Z1^dOreNBN3UJi))jQync^F&_eWM*PEVpP+h!BkmHD6OvGw!3)IAl)8D{n6g6
zTB55nu@78M3U!-iJL1<Hz-3j-wPc|IM)(@Q3|jo^d3)18hj#sSRsP!tKIo)?*NnIY
z*2r<ogFN)DgO`TT9sB#z5rA&{RihvwsbDNrTQ_K)+|uy%l&}x5)6$N9k$B1xS6e&%
zlO>DwRp902cOX5zgZ_$eGaix$BISbOdZjZC!*0pwq@<lVuNnA1;m`lFt^T!C|M`J-
z?qe6`FUiTzul=~nu;^5xinMAFV6D^CfuD~UFmeY&$8{hyKqt`pU_doc1|;APKq(CJ
zPlBk&*mi->f)sG+proah2BDjJ8=DCqr%S-1e;#S|s4cNbe@|e^;{wti-jI{$%g7A~
zjuOKcITDTm%_mm{h=w6y(}@mlPa|1E@j4vB!@<d!#!;P~Id<@JaUf>UtW*c)D9neN
z_&^>ljWPKO4%iE_uJSrbDWnTBN=CX#>fr+GI=FyOnD2#z?r)F&M`<Jf_<nqD;oj&k
z`$9V39<&JQ#4)_TPmoKF-yH-lLK-rcK)Y_@3XF|(DzUFtLTBi_fx+(atYypqF9@m0
z0G2RPz=i=V%np-g1yZCffs0=hK)E=nVUZdiPX%CSCxT);G7l10qp<NJt*K%nzhFch
zCUz0FxeY@#^&jDZ#BOgM`Ts{37hLY#?&pQ*1x?pGu#Z6<i3eYT!op%V(@AXMZpkr4
zV?~#qe_lQre&{KRayVRS>)ZWu{xbK*|8OhWcB2o3V19_N13m!>nZQ*i{{iT6)rh?=
z$+myhRq!y;r3t3eJ^E(e0t+4!z8*1P0i%L_4))t{I-SWORKfz_z#ukTV{2RUFrD+L
z7X!+){rDz|$Xn2MU414&)oBKPWvOfRf51LQJAIrjl=(-|`H$x5zjpY4y|QHectesR
zDB8{fF1Mpn(eg9Yja|$15>_HXLa>6SXEkr8<UxRlbr38`8OFzLR+sr5uo1JH{}cme
zC*r-my`$pbs5gNldXMeG{DB>=|1nErT*xwrxW$fvX@qlw-*E>sPq(RFnU6)7X3Tu-
zo?20WV=_xpv@)IB-j}Qtsmc;n;&77N{HNtH@Y9*zBcMYeatnNP>~OL^eSTfPTg-=S
zubtg0n=--f9)>6wu_8O}KYil!LISv6V3Zs8zq5q070n4_A_x-?xZTR!T=`rzU#=jc
zTf0<$U?=2CaefS&29m0=h^}X|OeLFv)KL~w#f+ZUr|(ovhi-rIM}E+9IkB3^k5ehq
z6kk$he)VefP!OLQu=d&f)49`M0K<f#Ce?y>{pWktcJuY9g=9-j8%bVtmc7xGeK+Y$
z7e+`rIF{OcZfErahfW%@bgKC@czB6G00gg5X5ddK=rOH1A-76s20WbDZ5KpbdpjKw
zbVY#Uj&TUoah=z3N9tf9fdFQS@G;;?+sl>NF=EB78hBG&fp0t$IK`T910{62u`U5A
zrp@TLy3q@Ju%_N;T29Gkg3rG*>uWa-XN>a7PC_DpSV5--(D>-UEcn%lP4g8M<!c2g
zDRz;m2cr$P|E=OaN)~|h+SruwzCn9=Iccn*EL~&JI?q9a;eN~1@SAnr6{Y=qwtRBm
zAlD+pW2j0JJ*)s^&)l9&1nc4chMe+``n71;Ow(c6ILI;hCRH=SPL9VD7Kh%unWKV;
zS7v{Z2v|+#FiQsP;NyIr+N!RQ4xstAz++JHI=(pgq`uUP3=IRAFYpZM1Cf%s8@O0l
zS)Fge-n?ivSF$*fT?<)h244+4zl?#m`{@?b-fWe!BXB)82}(zYC8i)kCg(l$=aTf}
z)&*YB=%VLf8oB<R@V8_n@hYYRUfN5JIdJgsI_X%=`3nfKw1L|+&+rpFKPQuBrIbBb
zCPk-v?*8Z+5|UF1uM8#nf%-4p!oU33#mfZ&ftU|i{4A>wZ7%H9pnlHHO>#1x?*7^6
z3cb2qjilt@P=#M6Cnt|PEYYedW_lKI$Y4RRS%|)vG3FbVLH)K!lS6cXTOAmQeTYY(
z4;$HqJO$hHEZqCsK#c&{VsQ!yBre$DWv43$(l>dq79S}ntm3{9R0}Gg$1OmZFCwr&
zE&dW%{ON9FvQ+<RTx8j!I#cuuUPh>j;4Eq7qoH2ObOyw8r}=~Np`R*%>`d(+lidC{
zf0ka8PN}AgKH&<DYz2;5dTwIcHT%GM>)ut=@1g-@F1({sOfv|AgFbUt({=UdDNDAg
zf9p>m(cSjxMcj+mE~ma1OhJ|l9w+h@K#z{XG3GCQx^I2b8c+?kInd%j7A_aPAL1Tk
zKhF;qnSp>vsqCA3+0bM3Ro!NHFNg+Hy{m(^#DTf-a0*Ietp+kVwe?tbli}}St>-Zu
zGA}{SgXQtO^J0NPP~?7#w_ov2WdJuw0D7-v2y~w_hwnJwr+FOHb|J+r7g<l2x~I+x
zXJ%Tj_hIpB{N4rU8wYSS2^!Tq+&G^$jHFeJ2V$id9%yqcb(%~2Y19khd~9WGlNbG~
zS8s6@COHoqbGrO5_pPQ&7cK>hV%FA-RFTtU$yz6#FTW}T1*sERpCgZ-Gm8tpoT8%I
zwr_-w1jsg;=K*(wnQc6<QRuCAw4`KXQ$B-7^@YQ*sRC#KAXmmv$Amj2!!BNgA<gkG
zl^p`Fuo})+V<4m@=J#&~EIQBCZsf<zg$jleF)67abQ}X+T+8`-$G#hi+1J0rc+B-5
zQ!&;KS{^uCPI5n8|F~I=G@j1<H%hL5t~LI8Tub^IHGt_WrZcvm9!rq#V-i=+GFmgv
zLQ4{dWifx^Ho`k$VlnTC=RPZ-*@)W|^}`5AcxCBg+;i<}y?fZ2JC-5pu2FlaR>6Bs
z$aiiIozpS6KD|f{fgoV%hoHe=i%?h}az9@tLAr@_i+D~2Y7I927}eo1#2Fwv-%zSN
zy*+sV10F#Y@|S)tPL-idJ73F758&oBmEKLCd^hX~9ia6-9qoY`j(G<%iJ~7Jgn+-A
ziW5lV3xm|s7pd|qB!D)+klTii`~xej3pZ1`C+8SaYM9;P;d8h$n<@)VX7??a#V0N>
z?6>Iny7F^)X|PjY1XlSVxMqkk5eH4x;43@OkE4rIg$5zwFsSGLgd8sOePkKD)NN1R
znXRg}2Vuf`0~Ja6&WB4+u7Fj@>7fO%W51K}fP3=tI*?_?B1a($Zb*?)uQGl;;dzVm
zg6mYVB3ucGi_R2_!XeNlLYu_%6qSQ3$>IIY)7clX7<}7p$n(Fe4r95%!5x2y7MQ^5
zhY|pcg@0h;@hHf;?^bMd(0{20u5H@Xdy}(cxcshFk2X(dZ}e|3?E@|<X&UM$k>R?D
zy>H>iFz`FM2a`CIRri~3Y_RHa$pV36Mjb-0mGv&&|Do)y<EmcM?qNk@)0>i%lx`3N
zL>iRtln!a6yQL%)1SACk>6DW0knZkAx;x%`&pdNx=A3!v_q_j{5AZq4_8ZrIU2Cmt
zEp$aikQbCs$%P0XnfQo7v)vB3K{!ugB!GxjRXEWdJ&@nqq@0jZsQp{(S=^T|S@05&
zD6LE>yw0}_<%}Fliv5bXYbw<t9Q_+NB`6A1lzH92(sTEj^b?xL2;jX0!=lTqUG36s
zNs_XcWe07lr(r;$ZeeNn%B6vcV*CjhuvRLkIwF$7*%n`-$$Q>OJqX*U>K6?;gc4Ob
zZF4)rwSp%ww}JdDkWJx@aAyfhq@7pOxm4II_B)S#*$JH_OV53M(|%)O5wkZJV2a&)
z<Tg!ACqiS18Bx=}+#ZHX%_4UFt|4LjWUj5k9{5^=1@C%yr`RTiPwia)%gqqFq}2Dy
zt@qsJJs+1^1O)ZCY}Oy5mp`yTl-J<Ugo8VFJ_Rjul1@k44(G@vHTjJno%{?a1-a2S
z6W{`{BLqPagzLV<H7h4zRD_nafD@2Q%*<K^$5lr3mogI=MHpu30>psrhTW8j?tE84
zI?Wsb9D_9oBpi{<KJEWn3%}%LaPWOyN*}`dagT{*FXzZRBr@+H5mM~U21$EH_9Ss!
zhfF*{Z}Rw&L+RbI75K!La>~Jz;_aK8h%Dl9<8ojCGqCyc^SE`^j`gYk`}g00DHOvA
zdy9$@$c@oHEKyxWTA~O@g@$X@KZH#Reek647370_T=JbI$b|BF`(nn%Ty7^ruVQ>%
zfwM&^a7Xf^n;5cX_H8Eqmj43>8(Ssbq|@2mV}fNsgmU}JJ>rM<hc8i|*!ooSCE_Vo
zorsJ6dj0;mkpJ-u6bW#3{SS}atzB=2gP<KLL}ITr0K0eh4UJMbWJ4k4v%QqMdRlZL
z9DCWKHXP-XSBi`I#c~Rit>9#mBzkW19bPWyBRe#-9N4G<_mpi|KxOA%zr%IGt6eWo
zdpFlnAyxaipJN`twK<=EzrTkI)x%q#X#BWq?$Xa4s+7)8L4lRj?YuXeCT8V6Gj_Gu
zEb2V9_WPz}=1|0D(Ss8>+OGMHjIgK`>smw5YKg|MXsYW`l*13&`1p^&VP`a<YS0nS
z>yS0;wxNKRKGoSd0ioBHXFm9h@?#N<3_AgBTASgeE%A(s>9n`TZ{JoGIxma)V-p}E
z1y>ce{v#ywpTp8$IoyB!iQf&#fQ=WVisK@mb}+$XRCA2o<$l*16!A7;?0s^=Z<>e2
zKH2iAYPx7Y8ulBOY%FT}Q+N)!CJ-)HZDy+!OPUrbFb!NlZ&f4~1mzbv`bAKEz2|ZC
zoBDnkSb`CxAhW9Bf!aX-!nx{91f+8qm6ZYMENmG7*k6=dCt0$FXc>Qi{+jlnn0DS8
z9ojJ*%kxJ?lfJrXTBUdppe`{fiurP9_&S-v@$lihn4*@snjDKbRo#Bf+OI6D9VG_m
zdA6Nq7!>B7H|$Orz)VUqf=E#*UyV6CWr-OCqPS+%1yP(?XTS%2ec_^Z%E2-GwIvq+
zEt)H{*ZnPK%();W7%Q~iu-(=u9HqO5QY@;>bbzA{sUz2}tdt|RNf8zOD~*mA;a-Cg
z0n4*d8m8X<eung+ssAEr`cDIV3?^JkZ7(Ak|IwWEu64drrWDIINKWiFX{hZD4@XnJ
zKoE`^+fJ^KO%<qLYepht3kYcKwR-XqmMe>V)9Y_2MZ#m-1f{HJb(wSeS&ixE=O-25
z*r2RY_BLWl9C+~e0S*Inrwpi_?W(TExVoNp_?>Sph*Pdl>||tmPv?VM027<T2f0R3
zjLTL_?EeJnN#cma#pZG)>g5fO-WLE!WmT~O)BY?uFJ*wVP#<p$!~x8pCr$Kho}zH2
zIgEk{qz1WRS&#mDOzL)h_GH|`Ucl&E1`e&<FR;s8(69pb<CQ5sM`2R12Lw+mV5)&~
z|5cUAQcq7183M88Ra@(>tbR&OUCU%j1JXYZaUl64+C&Q{G0z&7Bo7ZUneLEn#r_*=
z^>2@~p9mI^nfOkAj<)v43!o14?Hme1BixCP-LHI%B9i>vc}H396c`%XKv4Iifm7z_
z!IsMh%?6`jSq1p!0mkAwtMxZHAP~<7W)+o}3Cv=~)8R6+<$dG@uFQgDQuwFPA_`vk
z=JXShj<J`Q7O6*a)gfCL=z%9IqNHRlIT4e@HJ?ydjSN3qN}?lHU6&r6cv?(j{OJB>
z!;Q1|<n9)!mlA^6+R`$52C}PrJ>{|8Ni&x~_^2ZZuy>`;D&Knr0HNOF6_B=6@)(a!
zC#C-roS&U?HBhs>{lK`N2%Pmed!FEc2upQR%q7JVm;D~*rKtPLe64u)t%+h*bseYJ
zAKK=$^T1t7-B5HFO99n^{o7+vN*M>xr0%Z!Mlcp_GRpHG256B7on@Ww`$Q<a0O$$p
zW&cnHH*1(&Y&fva$*b*tONxveA_TH?O+dJo#cyC%={No5XZMnmmXz^!4|S>ayF+v|
z=6AINxBmtH{P&x~A>HJZyueZWLR|0=7$E1DltE8rQ*MGhFP6~OcrjB>$XUX}!<i1A
z0;3n5glE6GsAnyK^Du~#4J$S7Qli4$Qv3~U+falHUIYenS}%BVsspi1W}7V(M>c^&
z6Tr=w!jmShqIHKI#1RKs+=@#emMOU<d&`?&6Oa$-SN<0^z+mI(bV4uxpa2U?b?xJe
zJt(s-zw=JKKGVBNe7)W%0K?|hxPx>=;8rSEYBiOLjf-m>!t4=p){W%1a`Jn>_6c?;
zieU@b!;uCdq(vex-V=-Px0aTbp&zckdh3zz!oADf&(uq+nAnf$3Kh#ScO46Gb=n%G
z2br5>M<C%ce{dQWk?gqR8Z}MD*2b%@!6?7+%79RFMl&!UiqY9Y8r9bJlv)esvlt%P
zR`l}wmcZg^iQNj#FfeA0jg5)P5y{%NFF@r)Y(T9-Y(DsUw;aZbw*URN1@ZD*K|!C`
z${?nD@QWfMm%pOz=Qjk!AD}or5zVpk@$unm1kZFn_W^cdVq)I#{1u3v`9XxU@l50e
zaP|~I4jmHgH_!j|*iB776Ut1*RPh)gBUu6tfx>qo5`<F4%ZAQ`W%IKAw>95CkBSNb
zFietM8!|=C6yS>ZcSp)vQgVIzoL>(}(P(Aj$p-|k3yyLofD4K!|LA0qo)z%xl?Tki
zD^9Yd*i?6mg1XCf6|Ph;PQV)XQA0HjY}5YaC}54yo~XL`td3mZbW~Z2AATr(#XCbZ
z{P?gl6}Rf03p&hf(~q{v`?g3;o7}e4-F9?W;A+!Iv(dYLzWj}-F?`xv6_prlBM}WV
zt{C~mXI=e|jDX!r9|Q2OdNz{sRB8kU3mtXm!?Mo^{6`Yu?C3NM?aD!cP+8<EEl~q6
zXA4JZWvk2i#i3CU`P4eH(`3mtny~gqyOir3iv!%8cF%EVzT5MKdpbXgI)awF+lk8?
z)?NbWuPsZBu{^A!K~YRb`SgZ{hPM}Iy}f9fKW)CIgns{?{29cAOX;|fukVgzf70qj
zk$}6dv|SRh9CyoZh8TRNC><4%w#;t4s~ObyoK4IW8wU~x3%xwmd=~IxJr798UIo)_
zS$-!v_ODM58gPJ~tgo1;=RfyN-(EwSsvo3BE&43DO2+@yCsM&3nIB|;1R=J`n=^l5
zexv42o7mZFW$}fdq2yP}1OAf;;^(?<_5M747SIO*=d(PVjI^B%+W0(`qIckbN5>3M
z)(Nd6$GzJ9xv=^>I~6O$s32&tjo|oKl!j%clo3gQo)?I>HUW-Ka%%`(ljY`R{J=V`
zgXdL@DVyaRkj5ZG^wK??!trWCYgJ{U=wLQzo>pC3;ChEM;rTu-r*>(D7jXQ-nm^~f
z1edySO3vK&O|5g`i1y&!?YSUyCut1U!f`Ksz;Z${%-p?sF!IBwlR-YH=mLbQ5HF8^
zI0BH_W8>#vx4vW_x0-LDCLDr~*#*#ui1EtpfXDcI3ylLj+4yTyj31NE5JOhBF6u`j
z!24I{W&;ul>&As-c2`z1#Qfv;%gy&gj0hY(?|lF<2D8P?%kJ!K_{#65<OUf_i&0$P
z((bi3lK#EzUwf61pxGUrxBhKLlno-E`EkKAW<?8uwS<t6yEyz;>nENFcoZo>n;g#B
z^53IOV{ZRPk|ag|E@X$@dit3g@Z#I02{uFg<pcPwog-<(m8>KiC00R0*?+F={!fqh
z4!g-=5XADyfkOMFf;`<)m)mwxXl>H6KbiLk&}xJjp$*SY<dwriGF=ish96nzk#@tf
zUGXC9ntUIcIJ+<cJ9EX{H_+vnw^Y8it<f~~S=?#`8U{D5O?PC-i8%ZOz|d93Z3skQ
zsQa~>)sS^MWlF_9<>S-(U<;byToE6>al48q*x2dwTEHli6W-^QcIZQ$3Pu@H5jG=X
z0^N|Wp{?oZ7O(pfD`K9DhHr0v?d1zb#?j>>#2~b<W$=HUCmG$*ef;#It%EO&!!9l0
zxc~vYRB^*qp41z`?yXC|W4wEKa4IVWt^|^EGcxwnSn5ja<$yZ-pn037?R5z-?yJR}
z7%L#mETZC}rSNA&VeBQS$^uDTb5IN#y0mZE$9akwL3yFibLxRqjay-Byf8aJ=i)tL
zkXy@pMzL_Hv4`P7B>|wUi;BfhUmh5fW>$Yx4be>8(42J$19(5M=+{Jl@ot{K8YIoA
z62W;|>E)>XocL-n@$sE5gLx<BYHbo1YqjK!f6MA>GxO&<(?b2)yI3lf+6v{M*FqY2
zAIzK*R4gWi?MpdUSMOx)H$Q3GbJNaPFL*aEDHYD)Ve4iG!mH=A5_TQhZyh*)cypRz
zoc+~trpO{}4_hlE$~c*y<#5~k@qI}iwt2Wtg$X9;r#_coc-e0bOnvrVE>R|Hjyer@
zJ5w=2R4Jgzm6(f0;+DKgyu|Rg$j<urRd7E_+HZP`WkpdP{`lu7MCMFjCSW?^we$T<
zI|#C!;#hy+kM$l1suSFO(jh{>$7If#bDpv0aNJbr>hJ$TY*W>2<qh2La_C4e^sxCM
zU%vMx^D2ugwV)mWT+&ifPCO!FgOCc?WL|>;oUePqdMK$$<GX?Uhg|sYPcE2C02n?S
z5_whXj#z97T+S7>-R4Ab`@liZ@FcWoyDI3dKDdW)NP25i-hkJuxCY(c7l0HDW3+<|
z^w<VujIX*rw@$UC!{x#gvMe7Z0E(VeeR$Xj^geJR<gTPAmDIGfJ-~SjWtN$rzS+pY
zjvxS6BXneW`6J4g7NWbT8lzY9_nW0buXJmjBYM*Q_ONk*7MYpFr8g`Af9q0FK@92y
z;+93YMC0{uF?~9{4UJYv%IX?);@NFwKYW-{U#!LrEMY5_)K3A{r(OA>%7h=qrBDJ-
z<@DpDSp5JAC^hEyy0&WI)RR^{0MFu_B;EZSHJ6TE@Sb%b%JY%GEPL8O_dZyBnI=zP
z%f$9NeKgL5Ts$!i#XO5Wy(gyOok{?(a?Wg3*|R4+a-KJEy`_s5r{OnpO8M79Q|udV
zlJl1P;+pCOW7gjS#%!|0LI}HFWw!4YZ&FrZL|8n<D)i{;j=P>&oA~WkJNlbzlm*jB
z#8xAJo4NFK<X)NbRV~WwzqNLMyE}Bp@PPHnIBPy^Xaw*&Lt~Y06{|Ekz_94RT%oEQ
z#EB?|oBk(wF@_lqm_p;YN(Psa%3F1W6Dn2Po2cTkn(fZlzxf@q7zti<nxJTEz1B2E
z^aK#UFza30#~x36`{gI!OOG=ZlIBRT65x0Odh~%kYh9PLS3QF)c6kWowukLHz0<%Q
z@@Im?@~|{(?2EmsuN%Qn@NBB6^pCYC=YX*OLd04Q6i2!lc(mey?qh2BZ7|<6&%97>
znljBIiSs>pEebL7i2tm9d~j8X#GVsfZW*hr8iG2oo~-EKlw9DLJA8tjySPnz03~ob
zM7LipF5a0|u^3fM#B}TGegCs{^nw8SV@^IlxrpQB@|pVD!q5F~<pZR5fqh8z->!J0
z?WPafTn7*I3Fr=#a#}~Xh1oiDSSIpid%4UfEFM1E@p*lUh^<i_R8D&KrHMEL!>M@2
z{;z1fLM8Gjh_={$5MZx1a+x{yCc~-dF9x!{+3-*kyp~G99L385kI(M_cwVnGT80IZ
zv<JE(TLL%>&eUR>oGF>xI`Jq#0}N`^&m28JNKdTQSV6xbi3YD2qvMr&T{}06Fbcva
za$Dy)KTe}2(J8MqADNcZ{&k#jlZ+oYH3Aa;G7@C9A@Xh@AI{65#()?I#Fa!IP*hN`
z0lcnWD{!Ub&GWT(B@8P?iU^9Wo&kpEb-xPi?H6b`3vo;bjC+Dyf~4II3%XHq2<Y)6
z63n$Z7+*((UGYND7+<dt-wlk99`M(!MbkcQhtw7nrc=DNa+}!BvtA)ig>69F71opO
z-Jg1W&^avB+#xm#(A;+~tA3)9TO;PwAZKlwNz>DDP8wODjQrNEzTsT5(B>yW+LwHS
zd7O7n@x_`Ef8<X6fr$8VNC|l?mhh4JB7Fk8k`=GUJ=JSNY5)$3bK?VDDh8f>+NuuS
zt)eeoFNHkBwwoT+A6I<)Ms7Zu6XkvoY=#ERK+meA`5A@Z1T+Kx+6?k%j*8Qf6r!uZ
z8#HnxTOQwxz!ui;n*go}!J@N!Qec|mA6@`|YN)y4LQZnq13}ydhxd&un9G8-UB2$R
zB{0f?Y`$k@iVF-ZVh`H_8t?CFr(m-r@O>9xpTT{G1%-Y~88h@Q+UtTA5uUSF6*Fws
z%LD2Qfi=c@s<ho)5QT4GIY&?FIJ0SRX|tofJ(u`=ttYMr<dZ#-s@7D4z=)eg0o*iY
zRKtr-bQYc@ZeCPMV6Sc#V77j#2u;bXurV0;<i7*v{+kT%s&C__bo2g^J+*rvizMeR
zAt~WEi3r#J7ba@IV=CXlUl&M%cU|?~w^zs81!$FW)AbU_XiMg7ITp;4@;vEh>0NyT
zA@77DN!Z~%XpOA2%aK}vw6Rs$pmJosqwsDB7eAd1Y(?`r8E2yy?ciHDWE2sLSME{Y
zZ5&}RCz*hy-Y2e{GB2Ekpfx;oEOm?`lU|R-S#~ehshyWaRQRH!7=phL!F4*Q74NfA
zYqYJO4W$0S!Kd6G93J?-PW@a8flM!Veu)7E?P1_wT4Iy<2b2@Dz=_oYlRU5WRuIjN
zFC1Sic>D&`7|}7et=#O@$sa}x=yr=$b}R7nypB4!Li!h=r|bqRjyYSr-j4h8I>5C4
z;mCC`iy)8))Lrk@9&M!hY%zVBaOL4~-q8RF&Xtyrq897ij#o2236%Eyv;o>7S&5G%
zzgG+4?=4|DG3028l|UyJkBR0q4<l1G^nq1j6uA7_z+?b~aUdufq<CMMe-aOZ;>&?-
zQfNA%L{!?FHl}~8-F}|PRx_2dutZ@e%tw9(x`?vqDM`!iIpBG!DnKa|GqBnk&E3i@
z<TUO71wu4wfgd#YzI>$1ZpB36-10n<gR{&2F$h6VbSgyViE{%Bo0-Dz5gB62SVZp!
z!<sXw(x=T^y{Pt7^?~ziO3!sIh)wUok>^j_0uH4!r68{h_$K&yhzT}oPmvCTho>wL
z<7FHA^I3gv=1tGOAYGZ&{?V|nU)G9%*ZhxCey{#p5<kG=pnUP4CVnU5JYzgxmm2QV
zaI;#Oj9?Nh^tXqQ;%*7CnW3*1{y+lmF%dE@?L*fmK!u?qx-6S?WHzqQ3DHFJGk6_=
z7_?cE{XrBJ?LC#XE`~DNVJf4vBNjI=)$bf^f-53}@WRJxwF%XlxxyY){C4F(tUU%Z
z)FBQ91tJK@5f*gWE3<kY=l55Bg*K$A6kJxA)C!qrneQV899Ae+v^i*Bj6l^8iPJu3
zME(a$QMy)mmc|=<n9^Z{)J#6;BLWm^0Vpb^F2<rN5s6Qv*0fBcPQXzZL8K1&MANe;
z_jlHSqf`oFhWB*KKIBQN=aHn}pe;B+`Ccq=@iQ;`k?_0nBsMlS&N`0BZV4wa?o;f}
z{8Y#6)9wSZN->+dLkV+`$u6YvA=vs-+@(Z-$ssw+i8uunK=*k8{!lb`N{;eSR3k&f
zm~&Cf)IT30t`ZM?<UwV*J_2)=$9Pi?;6V#Kx0iLLX8=3m#IaD(@X7bN)9g%D?eo@`
zBY^mh-KfWee-9FBe$2%KVp4h6ws_sFs<V2hwC6i8!G$%5WdsgGSsU3uPp92|jAgg&
zJ1g?9S#&!2bPd+?uMgJ~;Y8mJ8|(d11@UnoR?Tz})3eoiJ(90n8-g-i$aI(kEGkxN
zXm@RM3)ouvPcumTRF(|DA5RO>K}J@jU(q%*o_oB_scBv*EBe%|LZ6zhd@W$Y(wf;m
z0i!@^q`qko^1}+<X{YoN6%IvGg{pPb`Hbd)VaS?QKjB<}<zMheKMsipQLh~}bhjUs
zP)mP__gH2iqiAxR)OUR`iW$5<kXp?DTeueq^RX*kAcrer+k19qsqoOy&%jQ2$O;6A
zXf=yIhn!!X{HFTK=cHr;i~c>L+w8i3dH_X9;V7><0AZ3xfRM|%H($Ib-o(eOfi2O*
zntJ^Tj?^cR-tPn~k;zcHILMZy1GByAar66fAbg~I_x?a8WDOLVNEV%%9D#>u^8)2R
zC0tTuWJ)%$7coDD0bKUvwecn$i`W}4v?tf=-2cv63C+VV@^mHjM<3V^mkkKyi##?m
zKH2?U@8^_N^}P8dE~UhBLm!a|#<{>fNZZ=o^IE*cTmkV(BX#H1r{iy6Bm9=G^tl&!
z(L*2Ow^*(K0b&fT#4IN){YG3RJR~I2vZ%V_gf3^s-QnfiUIO52qjYXi)#*oo&FauR
zJly~C1=nz<NdqoHo@nd8IB?j~_&z^BC8lwG0Im#D+2_-~D5+S6+*08D>?eJIIt2E~
zC}N3ppBgw>=_2Gm+s<;vnZH>SXRFfkqLQ(bc9@7hFW?#(7n5`T;>0;n?(>?u?B?Kz
zwXeLk?f0b4Ug*;q=xcYw=`c$8SiAh=Lv2s)PAL9*&8ze8KI4CcdjC;2>2%<M_5Jf^
zxNV>)Y(hn(Bmf9i(z+OMMrVRZo&q$1;bE$#{!@U*WKEM}V)jGFHD=WHyr`j+BE}*2
zREzg0T2+w!fazldc(((BbaaC#GWSi2-xI~DdB=<IF}s1UxYLiBQyALisqheUXfU|a
z=l)h56ai{jhF>=k@V}oEt%QZ5-;hDJgl}@Jfv~T8hEgP?`RaVXxGm6i@F$E|(@>fL
z$gOJ1{F&o!?ytyY5%~|L|DI)vi}?_OB6zX*=(H3&z~d^AHvA)goa5wTOE2O%K0py0
z$&E|KK>mx>{51@gvmN+u4KxI$AmfPexlMAnh{tx1>cLY?(Nyr%RY|QpI`;s?P83KG
zmYpN!0-WV*gdiCGYqX6&(NEN`Wb3nL_P6`XM@ne(Peh}M7w(Gec5>9GuG;^-kIjm;
z*Ugek8VXwUS%EUxCq8(MN6N#K{&CgVgn+WnO(}nd8GCBo9+`t5(o#AipWBX?@4uQ!
zOQMz*KeT?3S~lj2VE#^h0{Y0^P}7_ip+y2hfyq+olCUS~@t<yI68z$mM<8VSfF=k1
zp4hhv`nGRk?SLZ<-B8r^+iQ9G3C&UfzE#8%ZeW9=rAl8nXoiQs<qoI~99KCppP`{4
zz83>dwa%50M>+7#-!g>hAec`ML_)m$H?c@@3;?yIX6f4P`a3gDW%>%_NlGLDCJ*H_
z9G@wy<p_sRNm~PVbc*)hUd3dxhqGlWxk~N1(H9r4Yi<e)4m_#{<SQVb!4CMTB%ID~
z480<A+CnD9oSVB|bYnp~cdwf87g7ZAD#0*ZdoU@}P)BQB+Rq@D=LydrJ+0sH>j(Ff
z&Yn~f12~wZ&^<_y;10kJyj#U4sw2lGYt^J~8TXWHRk9}(*mXreM_)hh{(;^|?`NRe
znvo_i6v-gyG<dn2*i!O3Vu6-V#?DN|NRqcIlWh(+M^?fx8Jw92!JIdCe!qTj{M)|=
z$VFnT;b3_{t&iRW28`olOcZFYlt&{YBQtp7)j2j@FD3Ijz|X^B@m&B#iu0upLcTiY
z_u|?;zHINPwEO+VErYN5h+5?#rC>hpR>d2cp}Z>|0>T(STPW$P0|jVMq~X=WFGfgu
z-U&XA4?DRL=A3Cc!~}6@WE3c3z=@{v+GI5I&(kN<!yBEC9@Mi&i+6~ux-gY6^ZBg9
zr=wnPFuNqMK6m4LGaIL|-&e4^HI{E`Q&W3B#2Tr&?==WX*|1{`z%M#51X*ge#vmol
zq8U{`vrnqWlb(&q+7xl)k7XVO3kZ<@2$xiG1ju!ewU&Ub9$0>Mz6HLF?)2e%`!ktJ
zm4nmhMEr%Ev+axZ%+JnNjmcdyoFY#*?kG}MY547h4W904Q#i4d)l;k7cQ2K?bx_&V
z<}9w51~3ZvV4{G#CaJOeR!Uo=wv(K<+)6F#({JYokN;5U{P6`Yy&s7BLT%A)E}(4O
zo2yM)nRm_DB_$w)P12XHgjjGQ){qzBY+47teh3t?Kbk-)G^OC}Ni;cHDR+R>IHJLF
z2o}{zRu30x$QaPogQU9EQj&z646<(qFB%0Dk&b<vplN9pOG~PfNsLhx>!T$GqG?qn
z-#=k={=2x^1CEf85H`Tn_JX`+x0Q(JF~8Ut7^G6%x9Cq>B6Tu7xyjia*KVOLLfiEN
z0J%B-O@BU*gm-_OdjAUyO>{t;t9GtfMcd}@kpl!(cyeyz1)4xLo%pV?T`{e^Hx90K
znP-~h9|CkB3t)KwmwU*LtyT8nNH=6oa<Wo;cdRS^R4G$a-2oHFrRdqnMl{cp+Bf7E
z`Lo}{D6TA7`hx42Y8yRdOGlJcehS?AVNcb>2|+?idXoeQoCI2PD}&<(qH?5daDj&t
zwN1eyK6&sL@3$fN))d7zqKwj`?ayDUY*<Dd3<|P`AGzU}BK^_C{LdE(_V7TcNewtX
zm&B%ccBAB@$h2du$5RY!vp<Z2Q8JuBpj&Q9hpR$nAt?P@!m5CdLrAMVh?Mc58Fhkw
znT!?o46$uX5t9MeJ&fDM%g`!>T+tf@<EqXPtrKEyOTFg}MPsK8MU`%iTKY%4>E9R8
z$bH~CKas_O)1hZ)sw_6U39Og#+)E(j7}THJ(ZZuaAPVOKbn=ovUcPCAPD&80-rZjJ
zfQU*)P|djaGl5?9scY9xH)Am_1RsXO`D)_Hjtz6@p`eAWUzDo<vt_DUggo8XF~uPu
z@&N0-8UW246(C(GpTs3tH#U`$P)eRS^BTa6&YTk^3(>O`&z-G`cD!mVMlfpf1l@S$
z4$r=;hHs?p#ssT$*o+?UM*9J`Xp?Kw(QwEi1BeBrsQz=71pstb;DN8Sc-S^HS175!
zwKCt+mD;gfIa{s^M756km*~HAKZyi;$>IQ&>4+fi0jeAXgP@7RH>TXLc-COcD>H$z
zO=U>yPyp|azehwrs$#U9{6Qldj*lw+K~p>^ei+Pm2yTByCqGmBLR;BpiK(AHtx87I
zHS-t3q==?CYweLsspDTO<&@4^smI(aL$TO=H1xY<kvbo=aXqlf4W>YysZ#e`PcU6Q
z>?Cv9nm!C<*J-{=Pv}1$zw%t)F633v-(>#06a0@o!f)DGzMT)P$IJU`p%Wj1o;PdF
zy;H7rHq7typy0-KzM%?2MO>RYC}&Jd4UEm(fV_&^uE^wP<kB3MBc((yenK@ieWq%p
z5f}&*sLPRUg*WrV-HGK-vi(V@T#dEQ*A>hKE)bLzeiK8JXL8vGVnp9i+jTBfyUF~i
zg2L)LFB~l4G?A14%Im&<x8VrLjK2VUILDJ8{u-nssuCIGf|qk;NPtpoGF?1u)E)#N
z^&Bj<s)DV~AfR8U1|h4U5&XQlY4+*r<U6(qT`Lt8X%OD((vx-6PeBLqAqu^&O+iQ+
zADzK)DGhY32&dVyN$VN~mCe0LS>i#P(aR$5KAZe=NPxXx3OsPGx#l2CJ?{`Ea|HSc
z$C)Uum>;L&EI-ltnRr|ezLlE|r8k`m6xDRrW9q`SDrHEZ!(_Os6+jjdKL(OU`y2tr
z(^t-A*T8D2S<j($?Ih#Dq1VYhKbh4uNQ^s$^p7)6sG7=Ga6U^uRk!Hu#ah#2&BNs}
zxob~Q+6!EBQ<WR~Lv${`>f4!mY}C_h%uY=uTlvwpz7&*+`WB*vt(Ko~^c2DxntOP?
zDkG6soAtK>-*d$9i!b(@2#fl`VRU2;A~w;OMn8c;{0PoR0;9d>A~dEOW636eE-6BA
zCLuzA>F=A;sz(LVnXX<vKzAlo((Ki2v%qrgQM_)tXj5V03@aF!R~bJuUII(%2B!x=
z{P09z6x#D`iidvWM~euLTKEDEx(6z4=JMc!T-i>+icvRE-mH$Ug7pLSd0qwI$N`Y(
zrQmenTLhFlaQk7fQ6^fw9h9ps5c^rM)uNoPsvn<V9`?*v1OlzM#(nIbM0fpfjFevs
zPSfoJe*Ez~Rq45ra`O=hkgKpdY5>5iQE62=A!2n_c3!R{HY4!QlF|?HNClKZPv$SI
zbFKp!2r-E1t~qb^LO(Ka^|J!(K0~1(NEOJdn{AD*ADdYQ`6y0!;B*FdddMLxurc>J
zYWcV}+uM5g(_W8fj!Ki4kImpn)xiA}RVesZq(@;GzF+F<L#qXSQG(EG*Q;MF6}S`e
zB!9ete=nopzu#Pu%_u0~ebs)zVxh*w$ZdQ2oo~|#>z>TJZx`l~@>7DVq3V5q>w<@}
z^I4iD3e?=B7sqoh)vOD`4|trmRGJ_C*e<G-3slmrv`PTss5!x}-y>nFEqxqv1r`4-
znHx1sdjkf&SP)Pt1r}Gv!lL3)#i9>nTwx~!lG-K}HFf)5^B5SnRzZAZYEzOCSPU^f
zTJ3^Sn<xR1aXQWkCtG7ZB-1ryzh>(_erf{wx2W6l2U_FHqcyl@s+RPjKS}3UnBaig
z=lRQuM!;VI{RMXOZ7---W4AJ?0$w}tE&yvfWbjSkG)+7g7z$E%txFE{NCk&Oo(I{i
zyl??h+5ELoJfwKLYXA3CSvJExsB2?&OMXy_D2kK!<^yN1Md3rPMO?!=rS+@yT2SAD
zy%7KF4p@Y$Rqz!8dq8}L*V7#!$;O?12g;-LoIIX$0|Mc~NDVH5yHx1upFZthzh&Wp
zo8F!W-SF;Np=KG7J<Z?FP63JdXe(U+O^}A|;5T6lyMj;dYWpG3wfduO#-p9GfjnpE
zse#=yek+le@@Q#cO9?ALz^;JV2V4F)C<$q|fJz%`=Tp=jfeCF)V-j<xcHYOb9<)!t
zfcVt9Pl-|tf=pp0_9g`DhbIWo-AYT+F|qlh|N8qEF>Y|s<|XfyM9U(@YkRPif%;he
z47^W0KNq~W^Ku5=s?Pm7&wyi1jt5ztf)mIk%5R^hZ{Yxq*vQ+*0sd9;&0fT4l%mYf
zo-q<4&n^hHnN{51oi}m-*f2Kmpcks9wF`p6u(7ZV`i|&sVKBlqk4h0hnP$NdxrOk&
zF2q^j_|)tGPUVPRNJs7et>5uO4Hb$Y;u^hcdJ!<@D8PTXW^ynY9Q;;oKe$GqjxrrB
zg^dKAlzowRFg8vw<N+*Ic?}O9bD+Q(tX@^*PK<N#kGcbjAKqX1m8e$$3o!_MlP(Sc
zQNh40s;y0|Gs~a1NgBC@VH>JDF6C;5^p1L*S94^%=Fb3Bj1AoQLDODcb?c)mkii~<
zFWA|5Yd7E<m#ORin;LAwIQuz||6p~Au-iZ0%=i?#5@rYtfo**_JuhstJyL<tL<XGq
z8)pJwb4L{x=gI4RQ#ChuFnF<7yDw#7k*6cjAwqaHw!W2uY*KUt_=@0Hu3DpSO%x_C
zw;Jjyiu9{2R9w<&<=5p#-+Tqp!~X*b_?1eMQ&H7h{ikFtdl8}gvZ)#gBGfyB!im>L
zex~fxf$|U1yrV%}ru8c?Pb&d5z=>;G89g>8e}bJ)Zr%UWMqmG1QxZbMdnk<-S?}7|
za}h&|IyNh?3Mz+Lc4V<#gtk-*7W}?7+(SuPaH!VTK2YqagN(-B+t>2vJ3iufcXvv;
zO4Msz2cS<$K~r6I0_%JVt46jD{_%<b&e-k4FOEGqCj$dIo~tdZ94Y|I&RK!zZ_9*n
z_Pz@Hn71GKyd0>*@XA}0b?R@{CJ|={ioy3%+8=B?4q`UZTkCN}cvAVCqz+0GGr$Y_
z@fP=O5?pJGf)OBn{`Nbnnt+tl)sIYn@85BUNTCGUZ{i}b{bZmIIu8Ch_yVj`zO4BS
zC72%YeUs@2(gHG<=xj0mbi$b=`08n<cq;aLfxV3OfdReh-W!0NhuYJX?SCd1AxZvl
zOzEq!=gNu4qGs1{vcI4QUAYDF91fQv7o)D!39<iXmib3b|H~KrPr;`nR)B$R)QXB+
zG5Wo-T*YtW+TwNR{OqSSL3+(<UVf2^2j<UgC;<k+pdM5Njzt=bg4wi)E=m9B+Wzv_
z{<UoV{U_Z#FoVR4hfJ&^AR+O`^7b|@AhJJ$$v91A*ZF*JuI~~z?x(ba5Y7MgH~hDs
ze+z*q=xd1SPZhc#ms`)MIT4VOs%^ms?M_dv!(Q2`Qj;(jm*o1t_IiIRW&hz@A!Mur
z`ZPOUCS+|kct9LvoUMUciQg+=_v(K>Qj^poP^Mrr{i%EYgKhik7k)?Lz;9Rj@(=?V
zISL$wl5gK;!4kEGhllwS?f$&kO1!Q3LZ=IuP671^Eg|9WQuC3wUw7^2z>*c%&Wzrj
zae1w#_N9mKV?w+-fX*{T0#RT|JCc%;A65G;Yk{QD;$B%v$r!wCqz<j#KP|?jU<;}s
zYVNTsb#D&<^=N?7HV+nHca-NY`~@U>e*jUU6Q5Fl8Y~fri;018^;O***EJ&*JcvD~
z0SG*fr#uM9)RK7HXa0x#!Jn>OGA4*b#z>ZTsQi!hm<@KvLPoxUZ2BYE&XFAnyxB^p
zU~!vSoVNWBFxE(%!U(1=paoBMZ#)^6h6#ohF3CI((wKDXCUY@3V1}9?3h*<Sw`=Wh
zL{}>&Xe7bPt4_mwj%xlFptvH)1v_W`N|uoO$1K`(WpDc`dpbM7>G2el{?9P-2k=ld
zU@y{NrAS+IOmzN<3!19AW&Kj?t6xA$OGki7DQtasc*tSU0{<cGMPAv?xK52@l*fMk
zD=;h?$6-<|f_O|yuy_9{0rTN9Ol)gIrC6-{@^Tq<MnEY3qL*`EIu?`2F$uQE8MHXG
zz(UqiO0S&N4Lie+P9?zoF!>ePj7>sPP&Ud3QqQyGzA^ygkn)}hVz3l6A_*2JGZXq5
z6)P-MK{y+_9|ZTT@417?-fXoS7rm+pkg0t^A|;@Qs$29=O-<R~Tp(WpcGMX53>Y?C
z?7;}VAce|85UQBRyL26DR0CTX2GN&KX=$@ndMnE1;U=OFS2}rRarl*$<hp=}%=qpm
z^$3sZg_A-!A&6k)Zfj*8tB8VYHH05X`)@DcU+O^jGmyE*vbeN8nD+i_m2Gzny_9x{
zji;v-CC&GWZ^-8Pn#W#VIxE3d`+@j(D^FR(1fi3{j;6b>&N1KF(>VY#ltiTD;UmOf
zV7J@J$)WK2=<ra{P?VYF8Dp}v#<pxSk1%LqtN|;^<%;16<}ca9<O<9X4{~ou@Mq;*
zU8};0PD_qRb7nRVPbyc4jw^`T0zpetPw!s#MHqtY_mqH_2tKtnXl@()@|V4*pkKj<
zKy@^M<XeS1KrIEbP0}9NcvJdK<^yVR&6X6k5Q0223;Y9D_VCa=3ZqT|Y95UF5=;SC
zJ)qlD{+pb**76V*o8gHoPTZkK9-%UfBZB-y1hrmjpFvhZF?2W<6G{(<qSS_>CM2Yw
zps1iCgo_)S?mO(UPhTDo8F2Dof#0EbURRn00dmm4?*eYA`SpUm%hX27Pbs{sgI3HO
zK(x?IptP0nG!AVf^OhlZt{6y}bjL)=;IrPftX`OOHud$%>b|J*K4I1V*&c=@jkN(9
zCu(Jg{4v#<bI~O`_jxmX`~w_)I2m7LwudxL|F>`S$(t~OczJN39IhZAIniNh=3S%c
z_4)pQFy@&mEVvPG2@w#(G<@DS1Y8!QuS3(JTX=A}05ew&fo7XO5wSuVO0{o)Z?pi2
zGx{gjMBG+D2=|gQQ0?mrLAj`?s1tz8TUx6kE;9zOG<e_g?N0uP23Xv8?gS=9Oc9YP
z+@d!>)dEOfN*Nd!3_paXbB6Q*8N3Y0g8wm&aSC9cVq|QJj+wg4cZB`~4yc%zaWgbB
z1g!AM8OYb(K&qU`VG_C{%DfcAZQ4(w>3nLDJT3@t1jVOpb~*${P?Svw1x0%%57eKh
z<Y5M2pe_2HAj0VCl4E-?kD_CLSD+F(8%-B?;4RKhaaTIH5gi}7r`M^8(T)fU8@U>N
zH?d(i`?mjCD62Zyo(A*$ggX788_5h114xpZo12$|X=A#<D|i)niC7cy*!tp{FY`1d
z93QPQx=oXXOxqR-w|$8YxGHYoQ^a{p`qDiHOpG#scc7?Zbq0nGLH8YpuJ^Z^Eo&t{
zm1!jo9Nxl3+gn;HIFFb4DxQC@_D+3_8rMBKs-me<=L#9iQPc^Iu=5rwLC&Ij)nGhg
zqPn22c6k$TsdjtJ{eQjb|MG13?I4#lv3W?80&tIOGgiGrvKa^7>RlcCdvfg>WqM${
zU3D8V93T%yw8s>$eem{t_obFpfTe9_5`_p26|nn@@bvOB5ul{>?}+daUq3{m`~?c!
z(B@Evi6*Fm1t@4gu;3boGCGYJ`TZY2Z*!q#@tvSDRYZ0G+$F{+R}d@$$F+zSv{vkc
z0<Mzu9SX(pw?z)HGyn`;AoRd`>ZhC8a!d?v{!%DdReyT@K6=q(zi)IF{>MH6W_tGG
zqJCG7NzdbxjntsQQR^9^ugL1fx`nZ+FFn2hc9T_`9u-TQF=}xZ@i0@$_PL6GKL`ZQ
zHOvQ?Cy5GVeZS%QBM=^Bj@2Mklz_wK=%(`qNV^zCC_BxR0ei%_J5?48<14rM58H4!
z;D4w!Gd*J0vT3t^JEx)Z<mHu#tag?6E!hdEGM1+>5E}l+s~qqv0=6Ic&w+Dy7(9hV
zV_l!Z?HAhWTh!nl1$^n?wPaok!s=+}GS8Q{Tv;tgTb={JaN!h~su+)<PHOpTvbq~k
zAyK+y)$YE#xes^te4qT)1Q}`SBL088+y8T$-Kd-3L|;I_x|VE^cVH3`yl8QwfOyUJ
z)X=jDRb8)BF4U;OKvaA&o;kALU9=wE-mR^cpRoyGKmf7j@b@k)T@%prQzQ67@0tlQ
zJ_bvX<ZS6*w&REGVtY5c4b<KK9?8ypfGNW7Fu}_Mp#*?pd<d#Z+C`b!(8jPN)Sq<?
zC8yHlXTUb4nBZ&BnGCfBUO59k3g7={b!m=P#a3dZLL(;d{}_B8bty0S)l@MH1vCKZ
zr7d0WYQH=m(DyETOV}Q$2R`X7*c)CSL%FHp>m)}T4MQDkqqw`dIcCk#uC^a`QjX21
z*5(1HtPn8cK60g|rtWgE|2_Qf`$$$EQk-NmYt?*Yiq{z-*7UV`jq`4zW2(w&0W(F3
z^71$czQ(ajYq$e#nE0=QSD7pGAT&1%84UnNbaMiqNMB04Yq-p6_|VI$!KN1~W!mSi
z_hJAvOj6(pq0&x;J~S$_eHHL)KfyF5c9*=WwT}DUJX2B9o0f?354cJGD+fzd<#szJ
z0f<)uL$G(L{9uLWG1!%>$DPRQ$9hay6v)t*`i|!(1==m(R8{SY;yB;dNy45@v>^<3
z)|Tr0>*%d=(}9%HBAqvGm@S9x)$oeP*ZV&D_85~d)Ok$L_V4RfBaA*>bN1uxywGN}
zrk))MMk54a*6V)UV0#$<JWX6}--q`J($ZI~qbE!0%_PSy^_UZ#V9S&_3y+})xg=Mm
z%hm@GKO`BjT~s<E%tW>i|2R!-<&jmGQ{|3zId3Mjwtta_MzC5r2;6({`K4^xe(l$>
z{WgySXEnZp{(m}r=yKr0Eu#JTT0QuSo0^0Y*$n(?oc#~>XR94t9Mzym?VX)(o~!`z
z#t3|nExUI8m8oX2*avK_TL1!DxPkP=JMx@drOZ-@pQlEnCQ3SR2eDLoYiR;z4YlXg
zG&EA#f)D~#e=`N%bFgb5Nf9%hrN?lHGka(M8FcxDs=-xQBKZZ_ZTt+@GiSw6zn4_%
zOATOW!IYB!1mkKWmD%y)zyLKW+aj1+?A2@NXNvFT6#-uU4rxhA`Lk#gnH35><I|7J
zOIw3KDFAHlI}cPum`5~`b|<Og_Ps3z%a<$oG{#v9EL~y>r!n47$12DYiexS9b+%Sz
z(x9^&FB*d#mOWcgl$DyUU#};&E-zere*7r^!iJ<RcvbD{K|C#l%j>uawf6M#c=wKM
zigi7^2;tUw)u9D)s+tOt<bOg>48s9b9I6%AW~UXl6<~?!pf1U-c8;K$5=Si-biD4x
zQ0r^!&`<I{2Oj~j2}5nE7HGW>XMu{|n(*irv<~*sFCBJ=R*?Obvjmp-{h~oTCz?5_
zG)H#obaQhfv-f)vQP>P*00+>OK9x<r$ZOzRb4&)59P;^8+_Q1p+%~TV8_2U<am;Td
z!1~^JhcCqL>cpI8S>D!fk?<C%#5|1my)?IDIREiT>^*#FYWiv^{Vv86Q@g?<AG)7f
zgH%@aLbN}DKs3{zlYYs4iK#s>zOOl2?wQ)CxEBOHuDIupb9Zhktd>(McYGi^TKz$L
z>b$7>*`2ow;+o?Bq22NG1l6zA%2ot7T^@Qr_Z$8d>l=EY?MIm=$7Rqg{az5n-=@WI
zx{YL@IGzi}smE}l<t4P`3|k;pLi5Q3L!#q=A1WfRmv+{JZ~ZnQ*B0`5G$hEX{*MTB
zHL3OV$gDY&7rwCQFlZm4$vG?n$^iAU#arY6e&Th27Poxb&%jV<#}rB+YFZ?=eOkS4
z@7sAjVZDV?6V%ha+XCEc;kxl69gn47KPCCvb?V*6)=!#|ZERjc3SYYHWjg|Lj6UZ*
zIVPM+)#HYPmax+P5`&<c1<x`Sfp2$UGyhpsazSK!>fqq;^f&-vE!->#Nj&O~80oY5
z0vhLQoQN~Ci37td&>;8ZErDUw$&XaK>8Zvrq#^J>$ZS>XTn{N<f<?6D(|G=U_p_a}
zAMcaE?y5n{<pI}JozMNln1yprZB*NZR^DR#m#t$;ywZEq6>s>YDSJ7@ynww-)CMle
zO^l_nvqPY7HBckl3mO_3nP@mxQIF>;2Lm0((*#EV7UAgkg#Nr2A_=v;273lka#_%)
z%XLMH8Hmkp2h|%X86ZQpXS$j&+jM|-%`I$&-}?r>rQ+ekm2z|C%nSoSS#$YO@YG+f
zqtUa#Kj+D6LB}hQfC#fpM-Xx*N<_G8^1a+Te}C)}_aGn_QkbIJ!qw<`c~p>h0BeW#
zl;Lb_Se6}Jd_C`ZoS7(l>T@*9lA#|3O%-WhzEt+asG$*fBQflc(5RrKlqdf6y1uEW
zCqk<dEw0w?(th?4Bb#TP8%HcMyXS^x=`__$Yo%Q_stz7Tuz>FK-=}GIC%5nRo}v|!
zCE{unbK==CNPV=KXJYd-`^dLX_eb&kmv-x4`*MCWcn$sdRw_QD4&syLu-1a0p<V;^
zOSLEd{B<g&)I|RA2$XbI@-lTrc?*Zs9b>d_j^AIPh`h9HVe;}gu6r+vRY;eAwkZgV
zSojBJhqtJ}7|hC1&H*n6d4Z1g6gysIlhdHZ_3CniODXc{^AJHOC4;(1$l8u9q{n@|
zS2Jwz$5~}#+$ni{qJS5lY~nLXloo$~xWJ_K=pzKXQDEF*)*ed6)DjGge8fxJ?0nW@
z5041+1!3M<^p(VdcX;&QQGi1-TwC2v#-~rkRz)Ji>zT!~<v=Hvh?_ZWf%<R{Q1D!c
zdAhm;X#?y=9Tw?&0Z1LZ^V#z6et!u$o+Mo=NtD)&gT9~?E1f6AnwSHW0Ua-|I1ayI
z@`CrZ4xb-Un^&4MCVI9Aj|v#{L&giQWoxsryb03l9zMG2vBaIItGGrN%LftlBs>(3
zo?x5Egy49&{k_SB1vOi5A5Rra<RW)|z)wi?4e-y(0Wu?+v^C%w#yH1j=V`l_%x7Zj
z&Ib&|>eSYI6PWj>pf6Xd>}y=$4;mJ?ENs&&xKNYdC4(~K%7)B;EW-$d6|u9`z|18K
ze3**r3;_Ys<$0T1Z(r+J#<=ftUx^@{3#sj&H0~;=FyGNt!PB5dkt?mEr+;cZEVoQg
zy<L<nK53M&5q~!nCQm)MV{%qemhVv1_J0}G{9efTA_O@<AO(0d)JG<^1+Pj^Hicg@
zq=3eBYPhRQMJ1cT!~N~Py<cQPC3f;{OgtM0hmu;Y+i@1|q|gbX!BCUmdn>L++BMJ(
zjC8!TUG%lxahHBG@Ci-iC6x@*Fwjn$-ChaW&oa+q3tnwfO<}-M2PEtbroD7?CnCLT
z#<BrqPGXn_@U<ytuY9+VwpM5|@9~ZXW?)y7zceYEa8!evE8^(Xm<hUH)Zi+L;g=YD
z4h+d$V&4HwdxT&x7EDH@VR*lY5)A)J_}HtXI*nw1Q6RhJvKz7bBBL#<ie}H*KR+Ag
z(9+T>K>fL?Z;hLQ<KZ&3taeTZf;t2ZD2%_vGUi!C>-CgBd+$Ki=Efi{E-p!{Q1Owv
z2q6SIHoItS{;q}hctrjSMG3`&7r@$V9KFcI!H)tyK}tJE6*mD$F+#VG5a=nD(|c#b
zAF)%!|FoIYLdn9)A{1#22!Lnbh`pi+v`laI!t4J8{s_Z2Z)0QJ=GZc@@SYbRhv3@;
zI_1^FXQ@(h?T72TZeNkv{E$8gSy}np9=>2kIJ~=S&k+fP+S}Vh1xM+a<{kJ({2rNZ
zUf8v6Tp}6l7wgH7X``O+d9k%p1*=PCKOjqE!u@?-SQL|Da1*7j)@gfpo^oQp;A-z!
zB|hLJYwTyBR^m$h|EeTl+*eqHfH^Kn6s~!2tw;U)w}bbX^KmvxKon0K5ONFjnX+1)
zoq8kVkKoW))U=v+WdLs47sfQc<PX2}Sd4Z(SNPHUNQ^b$8#Tr)O0J$Jf<XV#ZxXd7
z-v9F=6!8!bUW}o@!Db^1pE*}xQR@sCQg*2Z81+XqDVzpU!;3&!mjZ1|A&g<8<>olD
z<SN;6I+{U(5OWJggGQJAdFIw7@0-I{O0EGbVYay|9rcF!ntm*uhc|$7UqiiC0?3-h
zcmZKxplVe54?t*#u$A4Kfje(62=#xAeA;k(Mx5~T3~Be6fh|0YQ~P}t;@+8)KBHBY
zw_dSMSzXqTm#pDX=V|^W5;e)qi#-bzG_=T-=0l}aIJlcko(iiej$vvQ<jhki`_G++
zPxxJ-VCP46o^^MZm8E}?&sgAb+raBhr2b66iAHbpJ~3Tt5pVIbP2R}{*gyb&Kl*I(
z(m}2ZzxbxvQwT*_4YyPbB<l1+zM0(jU>yq!3&Dtk9~GQ7D9;{-?7Z#O$m_!r42T!>
ziMcQkj`U0=;4OWDPJH&G^45FcDQ)&}j$-Qker?p+&5}sYaJkz&L(=Y1(8X>~qHNJ<
zp%eC{$HF%vyb<$zyKJi&JB0t!P>%}_$HdmVPDeh<fZgKVpLp7U`%%B%s1rkpEge7Z
z39ljU%~+8R>X-~R2_hEuNXkhE@re1w0TzuamizGs+LXa=u+5RbMiJ!K1YITwu&boe
z1&mh#?#j2J0Aw8GB10EOVR!^PihyV1Z3)mrp(f-`A)b%ugdC$=qfm(n{^loWMaGbO
zv<8^l)E@n{OrF6G7z>e+5?Wg5*Lms>JJ6~Dl1Hly=<UprNx=Ow$BRiwn8As9Y5cZd
zLlaR9$tlJDLQnfLK*;NKY{KkpNB;W(`Y|D&V-Doga}d7D;|*MZ$jQjw5yGkMHz2B)
z13{?_N-7wz-wqc6i<6^C%9t|y0M1<7U^TWzAXDnWUq`~CK6_{=Ld^#65L=}86Ri(j
zT_J|i?pt0`5_NLB3JNM}84u=YrGI5FYDO*L9nTA!s*e<W;w>+gsY4uL+uov<8E6h2
z)$c8l3@ws5c_nQbZZ<P8O<WDeF#02HBU@k2%*>oU@^O+^-yK!j7s#H)b>PI<d&ye=
zOez3lpT1S_J<?UH7jiMUDuctBh-rmHNDd{=){8G69S@hO9IsL1xDp_jlb)d9ogSof
zdQ=Xlp<B{@m*N?7+aW|je<zke_#4;DitJY499`;TqlJIALR!mc$%YVvPT50*0JZPE
zC(mkZm&tdvZ@I)tX3do*rloSXPIDz@if}bp!ufCC)A3S#WJwi}AZ~O`U1mw1NF3ds
zj)Ut_%Zh2UJlQbaw^&<GIBTVe&L~3_e=_&V!&}Fup}MK~=Z;|FZ0P0ikdJr9w7-vS
zpoQb_6Ra!ivuE}UTT<3RGEW<a*M4_T;gla0Dn9O{Dt<AU@ru)8mM1(E{~X6~p$8}<
zysvK0zk*#akKec#8>zK{@h_&g*!q$ta0Ll+CDwZI@#XwKww#`&U!awxdSCY)@w?t#
zo-N<DE%E~sPr|~+=J#ZoZEeQZw?PUYy-tQcO}ncl$Y3eEv;+i}TTNM(YP}9wdPOik
z4Wb&9JQs3UMH%oJ*X4$W*oV;%^Na7uPcMhHUc~V7@eL}=SA1hol~T-AdN|B}IGoAT
zWwF-HT$za6Ih*_mnLC15y<+pYxbX~PYTC0;1T+rhBuL-I!^T6&RH!w}#f2w|WOJ;h
z^t-Og2D~eB-W!c%bW$0TNryQ!t5+e=h7Md{!3)@aERSVdsI=bxH9(o_S*nzR^n`B|
zZ*Of0KCUZ1-j%S%y%llgoXJaXDRyMlLR-Y325RJJIX>|tR_`t;375doWB*n0NY#o!
zW!`%3?9g2Bjb%B_r_Tnft9U|zZKj8-JsWiNTLkSS7hxQqSD3F@cQ$1xWK%w`u_HYn
zj3_rg%Afxn8e1$ct{oulePS0nd%~4TJB@+4r<j*#M%BTr7|2nimsy1~^ZRJ8;<1t4
zKS%rjr8@;@itRm?zMlcc$0@J`V-6#s`I!<U2-uSWJSGZJ3^j(RCd=5^6e-am#nrrP
z)S(fj7tw%g{=kJKFg3Y@*#@!&4jx+1RtZB0KPg7jMEs6=MLIMss^EH8cbLYV{6nkU
zi~`{~w7CBMj_D9;7wrnI*5h|%l!HMkYyJonJ#)DDh7$s}jw!eTBCp}?Xx4%M61T{&
z$?jN2)Foq=<~~^^9?y#qLiFL5O_3(x*$E!$RG+R&3qgPr$klrYG6qV4R)hj_Fz91%
z{~0Y64WGSTm$m<e!+HS;*&`8Oh^at%EB{ayfNt$spkly1Pk3ENTl<+ow3~*qW^)Hw
z0Kd5FCRo4jy2COgD0&M@;;0rH(X-e5i&hj9mScI;{l!0~D-$>uqD3-+-b9jp4PZLV
zKe?<XeW4x1$Qwcn4Y$SujrV}Kl-N55mR1EdF2e9mz{R#tQ7!_LRt_Tl+<MxIB1gsP
z$P$?boHkK&73L#+KncCk|4A9f_PA~XUjViQe?I)vKpt9qhJcZu0}MXT2~D^@)!A&1
zbT*ORZhjT>ID0mGO}>}JY05$oUWxtcWb-iKgY9$*Z@JB!R4t-<fd)k~>%<4kIr1}K
z<#ZGmn?lw%%c49Kd5)_gOQbO~cH}w0<K^QH2HZ3tzO-lMr@OZCDVG3DA&J6-)lZmi
z9^(HhoK3sc0;A3tPNwOzPzEiM;u0kW*!J;b;I<GQn{njIT~*H`i7ilz6L70cP$N~y
z!ahwnjlgX)52SqbkYxJ)ymjMbCfWQ-R;wW-1LriEL;YhWUTAo*UL+J-Eoyh7H&Lk8
z=TgmvMXwP-)ofB~ox-=y^{AvFp*OB@B!-B8NN@dXXw4ju%XY|PW>R8&RMO6I9%N(-
zAa4_^&Il7W+rv{x4uTj=BFS^Bj2)E+TrVW^QW?h^j428UvF9mgr(c9?>)ceOeP-&o
z4y$e|F;g^6<aG$aoz1P(Kt#G$$dE8tMk0wYJK2;E%z2?aGn=pe|1tK~VNrf--?t*d
z&_jo`(o!PbjdXVlQqtYhjUp{2-6h@KjkI(l4bt^4?j7&Ge|taAv;Xk$&>5JSYp%7{
z8Q<^cq&s#UP!yPIbVVtS?4O}y61f|QFMVhGf={WozCMpZI?je|Z#=vF9sW5hPh;b2
z5@thGQ88WS*%DPixREYxSrmudr>I0}!#%%(q`Pze{+S!$vXo-}1BI@R=(N0tK(Z~>
zHOTM+l*ymLG(NZP;C$NC;d(liz#hvFA>eB)yq$lpy9v`VRcsML;>l}i=h2#LxA7H#
z!k-<dti3p{`}wCw%=`;@*kY|z<Fu3~_fHT0oqs?q&eGCX)9Dh-f<$e&n*~y}c&#_y
z%u^@xO!*&;jSm&pn9by0PD(~J;y$0+5iuray^A7nb3~yQ_L|g`@0%L=IcBY!>0fap
z1847Wn)BtuNbj3qlxMrVvH?WNm0VVW8@(+bw7AM_I4JbEGGhy+dtWx?8A&ZTe`$TQ
zu2O>fe9Bdsu&2F%fHCp^-I4OSiFtyAZ11v6YE-D4{}n4+u#C;~+QIF(%Rp0N6%d@>
zt&r6RWRi9oUBlM!lB5+a&@Q**U}3$|_4)JXr`&GR08gjH&)gORMO3OXHC=o;07>?7
z=tTm<LM?}W2`^{P-$--ScF+M13wlP+#m=MT6AcNyACK|Wf3yUu`i&|W)ne)`&u9P(
zkuH=90N4dp@4%C&nV96kLVp?H|EMZKWtACfKu1G#ma@&5I|9N(Bn4gjoqD+3@<*|8
z{9H+#4V?0@$u-j?WF$EnR&WK7d-Fge;>Rp#b8i3H`T0$~(y$9r)7h;?3=Iv9Mpp5K
z#UvsX1(QEifday0>$So&a5&NA?o5OA5m<3mf~3RY;U!<)U80l6P{Rgtc)2849n`{K
zh&nr?aREK3%eEE%0j}k~40I#|t;{dUIGR$%bO1*xmpHiD#!{c}+NK>66bY-wTQ(6y
zPzqY{O+R~Wn;PHrAAibtI*ds%Iwa$M$_9)u361yisLn$EQ7ZYs!|^8URFCmUG@Vy_
zXiKx=L+u_wmTJ@@-%+3bmMc_+v;C~euGh}W#KV((e!%KTsc2|8s6%v-9O>6=YbiAU
z<9&~;Ysp%&zs(ic2(e+-@a?!js7*1?Z8JO#Y~O*hHBJkwys*BugjCo+W<9)J?hY_b
zfy<9lJ;;XeA{nr1C2IN__>+R{MS^c6RZ6Lx`B<4#F-moDh6B5L7kZXNdRH|EgWwo1
zMME(ZuH5#FLwSD0YtQqF-qimfG;FcJed#}XgoKpf$EPFnv^@&CGgX}Aurr}hPv98X
z=qDA`0%hQWJk4mZ{xo%vX1!?+(~&cRnu)CxWcEurXH3aYCGP&-tvYVR@&hOcobXO9
zo^$9?$tIgxpMBiz5=$k6AP^-dQ>eWSZov{2<qbn%7iOpF?mWL77@Iwh)d^r<bkW7c
zZAUn2^<h!e2Q8F5N`}hGp05;ZolR3xR<bfOz^7Evey8c5U#y@Se48Ag<!I)1v+uKN
z|C^^cj9v>h^g^;@>)RJ7e-wKyetRsMXI>T`Nx|7(oDG&Tzxt=vVIG-p6I%5<>4a&C
zs3d$;L|4lUczE0Nku}^yDcnL36e=x`9A9pdbK&gTS`px&_w~@D)!~w_X2&JYu+r_G
zZ+Und5D3>tmXbo0{XT<WY0hq;p2*i8&6b2-8hWFFi3jju&mz$0Y0eO2{Q#w;NY&x`
z&+{E41n~hxY@u~dW>-7w6;pgmCI5T^VFyH8vf<~o#2<`|B*kn#O*BXqUK5cp-zGfW
zHOVAYDPI_fsT7Kd(g-FbvQm)v)JCy%(Cwu9dUe$*k7hV!x80G6mF?>rC5%25$UTp+
zh2)sN`jWHR(!5{{2Jj+HFN?wT+;;Z9jB(m0ca1HUi7aWi)r2$-I1q{j;e2K`+j?;x
zOv%vbcnYV(T^DVYmHWlH3r=}r=?H%`>uKq~bitPyFpsd7P&k?YwE*{z$6eGRue1le
zo1io0Acbau7>o>J!n)aS4M!Q$LSnlkiRk=aTKAhnM_k<8g3FBL%+iI*pQ1s?m;^7S
z{kugKQFZM^FSdS9a_n5P+pR-R&R9`W;K;^7Cp|M{!C@#XZ}(BZ!rlPtQfEo)m(YvB
zB=#ktPGg44H)eTS<+-}5j>{hGpx`@hfa=TX+1{Z6*@UW2Yxb@HH@dvd3v%H|q04|*
zU%q8M`lW69u+ZqVq-+zsUWy1q0TVJ$j+*4HX&DHTp5$tyD!||PLVInrf3+-apZFZL
z{7;Lc|J&<|)iSrUk#@n{P%O@srz|3mmg%qi-q&UnAT`bK$U}sejAcS2<geu=C#=*}
zJ_BeSgo_k0yEM5}9y9U-rTx?Qpu_1cnac@DU7o)Jx@^-P#G7M)^9l{>4-5)+JDv(e
zNppAz{|5`;MRo#~kl@}f=+(wp*_-}sc{rWOk$J({^hi2hpYQZqRqsf*1)XHY$`2!6
z9=FF-LL%Hcs-7zW=|a$DdeQ9u6;!K?OtGdc-daEn>(Z<N-QO>=_6aXal#-Qz0!nfH
z47|GO*$H>FmKbMBPb?j?CMHA-G|A{k?2DO#@RN~j)QUl!IhN)<G6|=})a&TfWvh_-
z$F}pZA1xshY!m1cQaVmbs@j8cdl9k@YK^+KRKG2BS`d(3RB+kiGsRn^LGuI?RgEh9
z)02ZAkhO4!%d#=s*STxU%{lWTE5whc0SkN6*&o@1Yl}||$i}@NEOB9iy-u1>hq<kh
z+ByqY37CSl$s$!QVCG+F=u<~w2lKlHDRImRjfS5d0V?oU-(wi&K6np|VXFfN78XBM
z=@*pkf9^~6E#<G63MR5rsu$m%Xv=6{9)^mNd;C~wdWsDaJG0C2p>f;Nvt@+J-7RaQ
zZKKIr^MRhX0K-hoNH{n9itr7rqnz}$KgN580?Ie@cADdk?YGMxOzFvzSro^s)a&hr
zCy0hL@Amp_^c-!<9@cm|2d`ochf}iZMrzUx+bGOB$6JhRAowWo?{Lxk-R5ci{Ioa3
zxg>IX8^e(lQtYVxYfJT7oc(VK$p-0Q14%sJO1tZ^lfaY3#@0fI13LmeUk4cF!Q0M$
zr6`r460Uug!5EAdl_Ps6$#85k`dxOlhYarNO$?3RcmNWJp_7excy(l8KW(DAQb=Bg
zku*=l=ulGShKvMN_$$>POOa~d%+-|AElP!rBQf$Y@Trxu;d`AJWkw&JY`ieLzh$NT
zwPH0>ns!Xk*4-F+HNf}~GBW+pXS;l#+s>baT%^@@v+VOMH~U3qX=!e45Dw;{=d=T>
zguS(h&R&q@r3aiXIYu>TbJe*pvT~($MA&tQ-=AnFa8;3@;4vw&R@MJGvWd0F=XUbh
z)D2;VL*0AT8PYu>U0~ZMklC>j^^+49FC*=;vweNbQ#ce^rRAzly51#}ob7cw(!;$3
zJIlCq{rPK5Sp!exG#Saahr(1|Odj5>`3~+Imlr>Gen-*U70VmI7u=1jt#2R55N8*J
z{193-z9m;JC|+?#ZcZk;UNx>~5MqAGiFNk<=z$(X%1>Sm=Y-_Hs17YRztVre?7OkM
zu;bs+ZAvYl#WSoW6Aql4zXw|srfx||i6Rs(=q1M`O%SGkXjR-`&+XDfpcJ!go!!Q|
z@LT`2fEk)X|FS-y$cuX)&!F>-hi5+EM&+%jxcDzD3~<rRRdvjN?d8Mcb`?D`5rka?
zKj!$0CR8jQ4{P24>B`FRWz@X?(HPXEy>E<%UgIR&MgA82A$+Yv+D1rDPQk!Z`q^>9
z6<D#?DLJNN0k<u%DzJi-Sod4*$;Q9{IU$nPUHjyl!au{@hnfq>HM|^2D=U=e8fm1#
zzMl|QU*9!CGaB?-w$|%l$W~J%ZEXGRaWALym6E`q1bZ4LSpMYQ1Qv|QFx@8zW0nBg
zvjhC7vC|!(TW8EoMMYIS6oN@5O?Wsu0(w!|)F`V&l_3!k*+4C*uM~$cjnKY%zWvlW
znfwos{q^ET;&uv1iXa9iP__RofK|ZLJ|@++n6Hh3TCv60i*obYtMIqP)fvb9JYLa$
zzCzhaZT?`>oEQ{5T%ZR&2f`MNNM{f#zNlMX*wHG;_+ov>M)<TyyE61c?Zt+A8b^vY
z>p?vW-MlIDBib0PNFPVZ3}Y=CE&31FG<9(u4ixfNT-{>ajtA{SiX-H?YXTA>Hz)__
z(AR(;q&7~5>HBt%5u-i0(Bj1*3Un%x<RP@t3w;j%w8tYxA3|;lDdogQhN=C$%&}Ix
z>=k}NP^-Pd<Eu_!73+M$r_Dr-6|PZ~#5*aX9jrn2svJ>j@Armq`U=X1(aMipT);6|
z>3`1Ec#Mm`i6`q1sq=7&J{E^q21&<Q9-GV-K9lJTpdOHx%iM^Dduj1C^1dR{y!w!A
z;RgEV^44d6?wodrOH%M9BI=znE%Hy=4JJR5k{QH1tKve?KGdKCGt0AC#Ely)aLL!*
zUmfVE4HL&3+r;@pD$5{=dz<_5h4*I>sjfM(PNll#h82{6n*xD3_61gsi5hDy4dnRx
zl@5L&FQFEh-J7KYU*s-;hXzwJb-L*)t#uo$vJB$crcu8V^|29DKICL(K3?V3uj_+m
zit(mfrZE|$htxu``EQTlf&4JC=ouA%6DWpqLC(K`#NCLDLFDRuUwi|}HTL99&hMAG
z1I7bvl0IZ}yf+^$R&?+Erk-m<2VxMu?rx3f;iL_Orv)`QT9ET);xEd1-@7J(-;Gjj
z$^E)36iOc$2q!74;prtMEsf5PoKP4Mf&AP1Jn>lf`x4%=g#*#N^B~@Vx*k=7$HWG?
zqJFSjvo1Rg8=rRvd{5e(sEdXag2}m}*f^`51D%*vTi_wf)bDI<&fE~B^1G=a>H5lD
zT-ve5nxccf4LP%8xM^G5C8*sw;+Ku%TxW|_A*@zTX2UhL@iTeVW&VFO=RuFFRvb3e
zwSFlx%2oY8?kdh{Pq^_GJvUv6(N`;g#%n8|B)ISBh$9!_J)K%<a&^;-GqUxuhWQO6
z>0s_3QV^C1HCfC~+w0Mi&3!U$UkExv#u#^05hq81?MDQ)Bc_Qdwn?^9sX-)|7Ia_%
zRBH=7NiW8bNw*$+x-}0v#n~ZdlL<i9sXQe<V=gBrM?cR3YX+TX&^D#fOyabUv&qM&
z&_O?DA~qy;$Mp9b8^hhM+qyP0NIENdUkmcOlNn||sL&abEueL-`HwE6(D-)M&WOi!
z++i{VLNRt0#8vnT;b$PlAz5+eJa=z$!<F^S^ADx?ac$M5$H8ox*C{W_B--w0F@5Le
z@CuX&g@cQs7?)s7EDHi>@$Vv?hDcIspbpDj53*U8fX0zmz83jD^|iQ8NSWJm&cU{*
zTQXN20vAQ990+xttIW3}vR8Vy|EzP$2DURnvNOmH$|by)8%Z^{@gcb{S`QcI4;i_L
zJ7!&Je*n(bC{T?thy+PZ#;ju;<Ut={OMbU^cdWKq^{LCfW>UQ$$I(mY6=0x^tGAJ1
zVJ!IYhX_zPcsK(8*I-huO5D#BiZ4;$gt*nbQ#ME;K1E-XpfApE^f|FH$Qgy-yw;fy
zKcq7@XJ<pltG~J&D1a0a+S=s)ru{|HPAse+JdrgmkLhF3LHw-p+?z2abK~@D;#)IC
z-EUj@mTq=mr|zdBq-kGu`rFtj@8q~V^L6M~@s}F55OUFrZGP~I?l&Lczn`&G($9l6
za~To7)DON3f0sse>=z7O%kk(XBP_=l*l7S9A(>VCu90i<L`IEqn?-|c?*~-XEkuP^
zLYD<!h6*tK-Bou67^e$ARu43WCt7Z?(F$xss3dW5sX((RFr>B2{UYb&6yaNmX4Pa?
zP+6J0B@pBM$XGz)5(|94vu<>GM;Pf`WuE>frh2OP_37GYxGk9q!=ysl$Zj;1X(j0q
zqNIpHwk%`3U)YZ5X=tY!`gwtV+anEj@9mCJ*&t7l@cqL@labTfCKM;98P@`!V?5cq
z5mTYbJa=z>(k%q?REh0vGUL<|>D;~E`=tA}N&Uxl^Dj$GALfGjX$NM)jSIZXZ|P+#
zj6AJrYW3bimp@j+-26Sh%Lt`kzCiH_aM5g59trGquY<0B7nUM02DdFA!L>y$@{Tq#
zSAPZ-3d9mphQa(^#F9@gZG9EM7NCfSsIU!W`C0m-9z0d3QFBO)jnq9|JY<0?hLgow
zG9(U}DDxXXK={n^q3Ac?fUzu|@g$XcB6miC&x(35t~M3fb%l5WB3VxHy>iPeJy5&S
z`@<9lRG5B;vbz18tuSGw;;((LDWx%lP1bR9K|&gk3mGB;<7z@)6c0IehqKEBe%eOg
zVuH=GX{wC1<3jcK0qUV>#$a}4xDpg>oVhuU{#op4MF9Ws*Jp_(Cr6IdpZaY-yFm3N
zHI<>=Bu5Jwd1V^}#I(XX9eq&L(&Pi4r=a=95TJ}OT|laBz4HyF($ON(P>`a^(4U`y
zywgtNI6fkSpjZeeu~5Ne=X#QEodGt~`1jjMa~zCSVpb}Sdx|dOhxZ7@woiwQvM4QB
zlnjNU-;i;=T0z~}UM-j$u!M_rkf`lxcO2#s6(d*(KKn%~-PwelFA>$=u2Y@tRUx`K
zKzC?A=^V<`1Ia}u(>Y#kp3|;(vJ|3Ivnsct{&QmY^P35~+8(YDkFZU!a`i_r`f^$D
z#v3*|p1JC&eUwixbX6$)^BU~5XjUW<U{Ob&ePey-Z@gA2h-sri+nw@HDoEALSb7Hk
zv4X>cV|S#afTXI?t}3`+F(P!Q@>G6U2U++Qr3Z;fr}pcEUKbKKmr{1FE>-D|s;WB8
zq2P<xS~UCLR@Ap^mL%A94+993D`iAIrA)6XEpV$E`{xI-4pUauL!<SukH7vG%F$Xh
zg!Kodh#M%3Tq44Z)ORn>4q>^82cU>MXLBdr6&wu!TY55-Ornxqur*o-vR`!VTT91%
zoLO~_ccEMNX)`9O>dHh74&6{zG->wCY{aP+W;HfCW>TB%%V6JC7707mmbF#44+l1*
zJ7y==X34kn>J7Jx$S3|mHdCS;&cVnlqX=qpvd)oDU_E9joUJpVG^?Wwp}f{w65-9V
zw>5&h;|tR>Y-eu1s#eyUtt52$W6^$)^mw|rA4RF|@50QTwgm&i@c5h#?;R7Hbd0so
z$lV~_`!bMIl%A<uiCU9HDhuOHN4tuHbt9<9oOz*$)8?;OCiD%+yT<oD%%`-JyHQbB
zbhjeCi});Y{mi5gLf(2R&=S&v+!BHLR_WwCW%-vxzJjl6Z!Bl@cgU&O7w_#)H|baK
zENvvjqJn~sd4eNkCe()Bq{TB=>~SPTNX6gNJP*tZgw9wuofXdnWhiI(w{;yKt(<;y
zQFPomu!4LJKdZ8+DKtzPDC!I_b=VBgCLR7@V%QOYm)XixRFu8VQ&?@DB**O6Do@Ba
zPQ+KmIWkbzeE7v(!gv;~(-RV(OzZE>{uB97%IAzb+Apku(y5AVdFTcHRA_M=wk<PP
z+hQ+MV8xW0n0J6<hR7Y;Fw1``gZ#xgZ~^}m2XB$2C&WZU0HR$Bm7$VLedVuM-E&p^
zNjfR_?`8w%FQ0VfgKhS%&$v1EgnymMaI6_eGo-O1_C?+|MOJ%WXt2?TC#`^a9fYt3
z#9lt#C{CNz9yj?|co|&&fl$1u!#TNXv6hG8%lYBdAEoDyb%mA1ic*vnO<Eu>Uq~%*
zZj3}!DuwGGtn}1={~nW?V@8}96XJTdvNyK4w6tuKcda<^zK2{{^_H4EaMAsc+w#uJ
z#AXjnK8rM;q-DH#e)F?Hg&qipdFPZB6~_bgCo~Y@?YXA6x77=@>$3I=wd?e`Y}=bj
zeAbPnEm!M$^}Rwu`V{eIYi(6#g-23{s!~;pW{NgcHbLib#eeUm+SZ^3y%)8C&S=hW
zlbXTaGS6WRiw5J*ND(`@jO?+Di51nR{@e4SDJbpp76{cuu*DIUa*6ikq%ztG9vZby
zBP5gu#$xES*GHw3sS*(6Q@ZRfd>vgPonpP9*9?P<bMt8bPr-+eyEy4X+Q<0@&y}de
zRwAk+fYAO4T&7*mRyCYGUK9V_0&;)`0|_ct)Fo6?A!!`s_UY{q8&lP<D<gEy6S}+h
z_eWIF8s=l5>d~X{mlUH_DP|yBx6{9(wYxjn$&9i6^-daxC(9dz9cF-sMp+6b(9Th!
z_~WbQE4+Lr1w=O@?o*0FLO(W7;05)pq8E$M5Byx;^^ZY4kx3ROvkD8<P$Cnd__QX1
z(TEyF$sFkUmH@K!EpCJX?2Z+?+ztClZ2R#l^YhyN96zuCep#(V__D_ACtuhmZTK5D
z<x<^l!<!U_8PCo{EAgzHFRjT)$aK5fXcxpot}YvU=OZkYfvOv~X=z%)NJt2{DpVKq
zdhnWC_0s(+nXRMrc|}%XWV@?M^BLht|BX`g=Ci<XYQm!TO%Kb5|KCI-kP2yK9#W-M
z$bfZqb?qCn31V?pt(c4)IDGAsm+8LqA%|?xq$=)nRHnT`(lZ?N^zfmd*-GL@=$$@8
zY3_X<724w5xM&^a?4@PyLp4A0%KTpPvfi=CWYyl~c5SMhR`PwEVIp8Q^j|1_<dnG*
zFt!lj(ikGM7G4kj=F)2MiZ2iw;a?IQc<JXvuN9aSv!k}W7lZ{}mI1rcsP&sZZmu~T
zR59@v!c=te0@2-^>YN^z$q*$^jq0NlyUg=_lngGcy*WprxDH<XnKFhq*1MmtJZe62
zW~l^Vey2}uZcf$YH3BKkJMlX8tLt6<N>x92e%i<=!J;OUk$1(~X|rW*)Lb6NUBlNh
zIIi}5IM{X?Hf;USl3yb?flwcUdC2~Lfu*o;g5ku2Yjk1L&|Zl%%S)NUUERj7AU47n
zN~N%6Q7pXrAsvddwP*R<N`U^S1?Dp>>v<Nv?iJbp=9_VsYCXq1b?0Uz270T1Ze7oP
z0pR;t9;nk|5fDg1e8Sfc4rBrIDjN*bGqZmL2gGd+Hc{9p`TttDJ^RRs5PU1f@Jomy
zAnChg03vRBfshM_!<hBk72HfFDa!|gYn!3FLX9-^i52fsB?EZBCn%ADlbVh><%Q>p
zcUB|$l$25s1au7CeC?(Wb|Is~?$ch3r&niG!1^K!YNQu*TyxuOaeDT(FYfl{U6UE~
znkj>5wb&9q3=v3T)B4M+tD9Zlo-)5FDl2xCPP>n--YKqu3$>^#uZ~1cJ_S-bredv&
zIGLxbW0~FZ1JG*0yaZgTj@b$|b9=lu>&*20Cd0Jo-CQ~)&Ij|s-I1Q-oqeNAOJUvN
zu3x?G&ScznvJW)5jmTe?j#gU+87GE?VHT@1C$>sv8+Og_q&UNk#p^X^gs#6~eE-cM
zCJdWU$x*wbW5A4eJ0M6iy?5`Ib0~1HFosFS{mHGf7ynvQ6QtTTIT_$~W-bbn;(8v&
zN|dVvjUzt;9)E7)MLIHZUjAtcg(<laY7x4JH;wV@d43;h^*(bIOhU{@W9Oxmr>6W~
zIOTp3cQf0)imi)^6H)tY6}!Oc4zH9b3uS&G67Dsrr68~$dBuu#(eYnsAm@c)s*AY}
zR<c}7|0U4I!h*4Zd2IGEYT4I2>|hXqIWtoq7+T<A*}SjN16U75o*L6e6~?3SJ{%*`
z5Hym3>I>I&I~X&iImiI28FRNAJrj*fQg&K*2P2rei92R**2_hoRlrO%xST+rtL5cb
za(e6MQff{ha=vGO>W>px22J-v$8f#BRnYv^*@<;>RCb`~dSX-w>1tF#L>j|sZ;X1`
zpdi+bV(0Lh9C_h~vjey1wJ-FjOFjg{%aBlwOoA{YB0{=Q^}X~|g_eTvJC1X~%js%M
zB44TZIl(QUq&%>FHht6U>bR$#b|loRKgioq*L>Wqs9C+I!YTfz!3OkS$O#P9D#aCH
z#8`V8!)HtNxZ4Lb-A?*&{Np7#Q2pRrN>!^i4qFbh7Mp&V?)LSWIUFr(ST69KUhhho
z_I<TguFR`|2F1k~3hh1nIw!uaq=bT+)4OG&**u(*gBJGEBv<Q?$F#`xGTkmi&gOfz
z(j-Yf-9Y!DIdAQq55t3KLk$)6sZRSC6v^BIso8}f>flz{eMq;llgVut1y-M7dt2i9
z#wfDR@wk#=Rqo1)qxtLS>pJC6$zbjE7ka46hBF;@H&N=WOmMaT8&4DUGVDxS*(Vax
zRN{XgjyBc^on2kC$xnpHt$$TVsFu9t`Z`-Q_~Im>mA-9$@vXIh`&=a~`3t`p$bp}m
ztpTWkb6swk7cQhPtVZ$DaNZYG6Ol!$go0LHZnd>?A<n>qs)v<gwdIvZ^x2K)#wLni
zp435)WsTUzoT=sq*G8-DUyE>2Ixff0;D_ZO?pbJPX~pb={L7G6TWFNxOgT#R*aOp5
z0zm)yrA$Iu@Yk=3#_0ZTHl)hFynpPMTg|xK&%c@*mV@dlUmU6rbUSe`S7Yb}d-zS#
zBp<!{QP`AS>yylZUz<ZW0m}#Ub!i1K?RN!rhI{r~3}brU`wB@_#*&f*Km-$TfBC+K
zt%qE+lha#EJNRzC%%D_N&)ANe^17N`aL|mNUawgpiLTmu)^1djwfHq9Woo^XX9^fG
z5j=%@lY5Si4I(Mi$pU)K7oK9?dw*O#Q}#{<yjg0|-0GIH&LikY*e&*Z&}u2eZ1WrI
z$`Yz*uN0j=&SHh~Tk^1HCCDcqLee}OW{o799j?!L2C*XD($DsHHTcP*Z%Ud=@?Z_t
z7CE2MyzDFc3}q4eNR0|jxw9m0+c-M^e$Bu+^4~0VaahDhY8#)9ganiS$NJBk!%D{g
zJd_WhK0p8r-9mNrUUJ+eZC|^-YHJ$wOHN4%kf#YTG&H1UK3=)JooH$xBiscoZkHt@
zZq^mh)S!9Wi0*m`C;zb%Ka{WfbBRv4a#DphS3|v$X|Y&4O8JkEn6@@S3zijo3GAES
zKBc9_*TStCyK_8|P0)uta9Pd6_zHh7Uf<b~Tv^$mdHWWiOG7h(u0%9=#}}WApuOFE
zQplLvwDxT(r@aqAS4Re(XT34@&HDAS)4AufID$zl%QyvdVYMp}OJVb=`wNkHAcV^$
zVC~1~jD!XQb7(3C#@ADK>gfCLg*=sSd_%dGGNQML^3O=$Q=3PJ)~JQT8;w_&B5%#e
zdDo9g9bRh|#+4e&rh2UtD~5z})G6L3^2Ve>qf768{YGAMi_I4`Lr|kusHJJ|`-1tm
zbu+I4Bgs^%NB$YtYwvqp@7l)Bj;je(XA>?2=JD*bn6?UgIBXAJzW(fRTf0B9;%q>`
z7DTO55Hn=i=<_e9??0;=t$t$5w^ygmM)B(UF5+c&x&L_Nz#3>$8(Ti>d5zo)Lh&})
zF%L?Yp}^~k>u*|?oGc&D5bb|7&8Jr9TLI4#eG?(jG92<&1_Yu7cSZ=I5jFdp92U~A
z&rFj<cJKr8G%qk>;!-`;4{jphN8<nXMh=LcHkCmu<X43#UMow1Y^CA71EbgnpL7~W
z9K3HQ%dG!$O#CBma4AEWr||)>-OiAI`!w=42ye}?#NK!R$*Qt&9u37#3V1o-h>rs%
zVT!Zbt{ksLy=Hh_8+7FJZT9OVv41?T*&k`W_OQQS*?+vkU-GDPOhE2>PE+&oRMloA
zGQ5&eD9ZI05U62fWU5O6y><5XwlDs1_nb#v_~RS0VF!lXBdhVv^1nt#z06OYFEZBm
z_XS6Ieo8hkcV|9O$$!{H`NnltNO&=T^4I6<!?==-7HO~?uTgcpj{_PvC67ij9!KE3
z1o)zNPEEk!6B<(YHQu0>{-0ZFD=aY=jIORO+r{j!Up)n_qx_^_3IbJ_ua=HiUW#vz
zcZF%{rKYB8F7m9Y6yYHu52YV*J^t`A8%P#U^8czO6!4+6xxY28_qZasx^eIGMy0V`
z0S368iF{K6ey?-~*4LxlZPD-lxv>BC5te<(mw#_kdO<dd_m#lN=Rs~RuCJw~V_nyq
zLoYOmhX2=vUg!7G${28S+*Jf~V@0=gQ*|j}gu@WE|Nd5-fP^t!C!rSOUq0ghyvjvr
zYx#S0ARw~tUGenfrC}OPV$iOYw6zVnFqh<E`0LZrIDJ}M^&?t=u$Tr|3QOSOo||p-
zcIq}sPWc@rDz9Px>#gSV8j{TIEc=T9A3J}esWDUmcqZOnm|FTp4DPU)<Vmcw+ga%A
zlh)PN&gAuV{cXK`rvffrUX*`J&E>x%baqohbst?Qf4Q?Rz6yM58Ovs(r<X~R)ED>^
z2a4n-w&`Mi|FqnJpXufG0kj9rw+u?vJd=64lNmgPzRzwhERq0?Y!F5`0?y=relc)q
z`4~)jxX}IeMgFmx|JTc}Kih5>4VA#SX6mJ($@l-#C*kGgWf#H^B`!Dt{l0ovzYYou
z8;)rDr(ky8$;rw1?=Ibl>`RO3N=N@S28|yv)u~^<lF#2~Ryi6;#=L$f8!4+f3rdV3
z9ZnV;9Dk1mFF1X^tmX`lv3Hsjlh^PUE^IY)|1^2LSFkw1&hpwO$e-%JvCd$<g#jS)
z?DiVr-#c5IYilx=zbeOY`x=9Sf>gcsW^B3K{sfB>G3dioLzMH>ef~ry0K{A+;As@Q
zCB8Av1MKEGE+I#NdRNd_mq;#jG@qWTeu;^W-UcI#N#5B0x6=#_(T7g0WE6N-#ex0F
zC~C#ePTrLtTr_HVSmd@1q=^`pH~;Zc{;%u$_<Rmn?a+EnY}`5Sj+q%e_d+{fN>T(7
zQL%4dKIyBZ0mAxO;mPfv^Yf{G7>AX5g@mXmGTogyr+=;r7brwPzs2IhY7Us!!?sEM
zpY`8>#US8A0Z0$e&qt3s|N4@Dxvd`GrjM^cYfnSMkQo@y*>7pXUb$%#9HC}tXj#35
zBHc>h)0;<KP;5`?U}HmCi?N6yg!szy(rA*HENaCe*oc9t(e13Dp!=WYa5PvS0Q1IJ
zTv8VRK0w(;1h7~TIlzvAbM&n9=U<oqf5KNB(E9-5qGpwOY_bSoTvAh0OKg^EhoDDt
zY8f?uoV8PKa$`*dw|_2xy7lus7{Jt#Js~rYG^fROv>p2fe+fUDErr|HH#=*7DeleB
zUtCi9`E#5&oUf?tKfV;=S1>Me>wmwWoP(YONi=gOyJG$8vi@i0`H!FZ+l5?yO1iwW
zlfN&zr;^E%o|aasn)>C-_YKYtSUV|FF^KvZ4HJ_<NuYns1g?cEJ3Bl5;lV-4MpTHQ
zPdWmcuEAe6zg91BZ&#*aPXn3lf4UO?>&qjygJIwjuam-!80PE>#qXf*>9*sT3%Y&V
z7r(&oec$+wpRYy-!Oss_Ncdx;&5ExoJXt+&Q=@-Fx?f0#ft}qC98HbFLHvLFke^au
zIYfS>e6J<=FSdiDBXsIlB3eY;4&Ol^0v%S{B_E5Jm|>t?x6)KWMLL#NCChH3zyGXQ
zt42Ya5DAr)Be^_DKzb0no<@kG&|bC<<9Aol*04C#KWLcz;~T{g42tc!Dwk+xL&I>{
zB+3^q0snST>p#{e=bnZX{;#9p|L_kqs;6MmpdA?KTz{(DPCu+_XT!wfTbCMRREQYQ
z;`0&VRmf>iM~CnfonjWGt`>`xlVl|W-@WP;HX3Ri7-<00+c(yiwG<o-iFW+Auj>=S
zy8owR6DLlyF310%bzP3c#GB!by4NL?q5GgyzxMw4iS)7;1$3K0z?#)nxLKPhyhL#7
zJXfRl<&VYD-+slGn?KwIzUx-Kbxr$KwhiN2x6}yFvP|}mUu`5u+PcJlBgtmo>dEku
zcc@#H;RDPpX01ctpBw!%g2^f|h^MqeSVl%h)tg$v>q{4lT@Lsa|K5L(b-rl9?CB?H
z+094(^Xj_fA=K8^%8QA?Er5<``erM)w+RGjiF1f~zx56CU+O=npv;+1^f~yc3&ewF
z^R>A~ct2DMtH+x?b5A_wuFovQBM1UC{xq15Y0j0eC5YBFJx{1<X~EqG<&ZeWr37P^
znv5FL+fNqj+csh33@2(euMLj7;X_-a<=ArF&S*n|z9RsM$H0$;8uXQiOgA6L9S=iT
z3X>0>E#dXV6uTMs-ncbCQ|a6*_FKLyQ{!lVHFw0i_%a&0?!bM!nos2Yv-%JRD~4v%
zoETn?Lm}k5G_7{<_S$jz#9`Gu5{DhDkNf<iaQTE*EomInaOai;>G1fYi_72c|1!~K
zKo@qnbIX_y|I$mFot-@f;8^SC0E|+}RGpZZ2vTT4ja1s-HijUwvN^bQrPXV0oC>g`
z6%qVcME1wY;Vo>SqY;t6l4@iS^`~d#RR6ZF1au)sN(GIhYt?KBq}s5sxR=J-PG+s2
z?$?)>B>;6N7aUZ^YP@>Y@UWLkz?o>QXE9xpeY%QNFZr48nmU$RLFhi?5HO{cyKn{o
zA5tDr5Oz*Bq<{>Xj=tJna2P?LC>nsJEjz$gsQ~<%qD@+rHY*toln3RGRz{9|#tkgm
zAd2_72^9eAG7rpEQZ7<w7Lp)%)i|xw?2!oO`Y@8gu<(4WEp-Z|(jrBeDAtP7tjwd?
zIzOBCo}plRt;6*t6vq(<4R>{?KlT!)PH!NtNvxz~cy@SydkjKGT1lU94C;<?^eAX&
z40@3bFJU_1P-vC9LMdKvYUV5U@gN{;RTYTJ%A&4sY@`;q+H7vC(=c?t${A*<ms6Jx
zMM8Y*)2N*U#)a?;xo3gGzS-W)mFh*+hatPSp4av`zs7&Ebh%Hka@mr9#d&=x%A-Db
zUr{Yeb@BblG(t&Bc=+JQ=YcAo9eIM#<`+<U-fPS13SMmQZ?d}Fq8nkcnPXLY8GJ3g
zjLj<Z{nZOiC8K3MPt0%HEfm#@)4~dKM?4vsq~Fnryr{;_o<dQ~6K%pOkf-&NO|BvK
zRctv#lUyv-L?UA<5@sJ)QrExyPN=+y2EJxu37B{9rn^k?ckPz`2(_>E$c=)jFGj9s
zzs1z*z|bU%4YXI##ry`z<@!r+%+#8^2hkn)&*7nOix%tO(X4v!igrEBfWom<{7{(7
zzZN<Fb_RTT`FJS!0F_ZWEIOv5h=~8YVgMrMa@b~ioQEWm@Ii5hOp8W24|=x$OFWbT
z1_q{gb~X_V;-&D$hqt%~ncX-DO-y1Xlh`bcT;=7LbujVb=+tz1Dy<oMA~5t?&tN)$
zp-vf5Tv1Vxn$E|dRJREt)E|b60wbKv2-pJSbKRYt344s~c!2CE+*pn2HQOJO2ln+x
z$vOZj_`CETP>{r}OgAwzm#>m-+iF&B+ZPtu>><Ml19Q&~`|5N@p!dOoSx)tEMA2|A
zH!sye8n_V~#J?L4#0l-mj~NQw((+JK2Lt$oy1uDk5Yhpq&vPWPkP%8$hg+9dC`8vQ
z3xsnA<;(LyBN4ONU!W~}1@p)IVCq9+feKRW+U2#IV#Np6gUf{Lr}H}2iaj|HM^OjL
zexJw`PnS+MH&iqszMAQrq@=J*FYE%cJe`KdO9NGO&{uL8K07`pb#~rO_bD&_ySw5W
z`=QA((Ux`b2s{}})-`F}3!3&ioA>LK4Ng0|nM<QFfzi~x^ufdkW|B#nh-{c9YR={?
zM!rrD((i&ZXM$Pm^yCi8tkd>k?9u3CFv-n<dwJ3Giq_G+kF=;MNNF|wA3M4_#q#E6
zP90W8JJ6mP^NNd8VIIfR*32Q`zVXq9N=QhMT3Zj0q^{KYUB`K{vc(Ar3B7jXcfL;+
z#mD{k1J6zfn8evk0|M|n(qmt1jAy6<4Ie0x_hgru{n=*rXLLrhIQjD@3!i22OFJU(
zGaeo%XXjiH;`XZzeM>UE_t=emaqV;=Ol&9-j1;8|2?uNmMeX1p8RXirSFV0%0C_VG
zxLKq`Xe~Df+{&J&KLIC43~Kf*44IIS&|jWPzPZ(+KPI0NW;6&#o$tT}ux>gze+vPa
z@rUZG-q;4WGK9AlQ_?^qUw#Bwi~gf5wLyZ~>W_ZoBJVPqqs0Xom>|@YN$sl=UC*Or
zX6yOd#B8MHu}m>%GmH60|McbFLej%Z6!T^viu(rA70{#~)VJCwr@7dEZrc{Ah{Iwr
zx;zvXT?XcwZ+nc3_H$K*!eIF9Le{(o1sj{7Hc4)m-=PpWp)<4VeLHIfX!Wl)NSJWh
zEQe!}C)G5NOouf*S4xn><~%!$EdBnX=5<&6)Vak#Kyl2MRDo34)QO6A%;&oLc$$Ui
z*bIi37elFf@jpjc^vbKXE*xiPP2st0hofj?hQDjZ{_O48r=+07ZZ5qDq56B-3yspJ
zby?rC=jg#_-AH&_<JMXrZFP0^PhqkNj4LIS;vUVIfk|3ccB(S~kCdEzTu2|XCCou;
zXZUa7;CcYC&Fp^%bOzR99OB>0YN1d;GC_e0Fy3l3Pk~X%!=nvZG*{*x)rd4JiT4Im
z<|F*H5C>l>KM7g;QeCKxZg%hVv|1$cG-ojS5<nkvGetN2dbE*LJ*~0)Rj_e}f9Lv4
zT-^Ub#jqaiB>j5z3|iIFOY7-<7dt<-IPx6E&v9XNY9+e6b+K3Sg{j}ZRlZ-v-I@lX
zQqh-U;aDYsIgwv9-w&@RJZW!O)o!$-2z(yMnbU(pEC%B;QVOg-^Jidm{L1Ygzdm=q
z&OiYCWk*6L>5g7QJvc4Vq4I~`b`lY;EIOsc#0X(hG4!9k`Wmg&wRI?Gzi{tmdTGSn
z;n%<07qGJ>Q*zM};~IG-{aq$$?uR%Bju2t+h&3=^j;QKG#`eSUrK)CI&p;(YK{-eI
z%ijC--h;OvXL{z&Z#aJzd#G7n)5(=ioy-~^HDUX9`b=IcVW;(v_Z=C2ZS$mVsJ<|C
z7f9@%E4!I~$lD;P985wA8^irs8hjeFoxOPc*0VWVc*L)Ir19@sI^dc-V)$@-EN5Q8
zEE!Q+`nj5gut`j~Ez#qZ&HcP<0p)#Zq1@#|37<}*(N*HP0b9>##R|{g;%uHlSS#K^
z?vb0}$E>oK9qjspaK?&?Z<+x81*d9R`R#{6Q<?-n$ZtSu3kk|9)tqo2MRL11C=Nk7
z7Ig%$E{CfV<LCwObzuYDvH;&;feM{AV$V@w-3@0z&~(ht9>09Bn``X#gCSTu05`@?
zBMun?4kk<&Qb$0eLsSHzqx5gyZ936VtaM;$v}m{ju|?nf5PJIp7+k7&yxMls_{icW
z#=DTR>;XwmLaV3ncK|xoyvzi}k)&XxN!jJQPfGXbHcqGCtI4rmjUVX6Df}tFn{`@r
z8|9$=tq?xEH!B&$R@7JB>>BWB%<YLhGd@n{ETpEV?`RC|tB;RQy7c&|5C;Y@#>%FK
zPgU~+OA47JJq;hGP9{(Y3D;_0Lz8>Iz0H@Dm5s#0cMZT{xQ&%fX1YTjZT8ebL}7Jo
z63Er_s!LT=3`Z-O5V+>dL?$QCTGrQdyV@XrQ+oe#!7cc)8m`Hz!Dg)+{f({o(UKg0
z3Xl=xmWz#g9&xi~iX$GNb%p^f%-nU}si`F~F)_4WufGU@rgg64Znct|TaIfqPciU#
z1ro5cc_#RxK3rRTelBJ4Y{QAa_{>;Nqa#qoNJ7&_MnWQI|JUd7@oew8pE00>`!)AQ
zM#Fi_fU05cyW+mMyTY;LB+b3u+q=87kF+?-zUKVr$SUUJafB(_)NCincXdZZ^)Brv
zrxwSOta++Exp^)d1na7U@g-tunf5pLnL~P>LN!(&?q-SB9{t_EbgEQ`tJyRxyb-G+
zH{LCJ61mQInL{lfQ*yAT=8s-Rx8MwAtzQ<-v3cg`PJ3agS7T(q(#_=OcUNnnk-Hkt
zezudJtJym`Z8PRSuynCx{k5IjpFA?Gfq^gHs*)?PrUw3O`xv5<uc+xEhV9{Bv3<OT
z{%2CnyZ2OgiJHGeCKzELj<t3znFpW3YaK4g!5ja#I)5CmD+G&5T3rGJjFg2z{&-$b
zJ`~d*=+xqpXW5k-9<&#;i`lh%wWs%Jw)2))OjBavsA}HU4hlD$h>3NNf?{2z-3HFF
zFxfBu&JJeRlfKO#^v#U>3+{@9elk;m<(gBkYNKBBgHR9Sr~PLCkNwpaAe}`W9YLe=
z{=wDVMEmjhc3}O$5`wGu!;ROHpq8(o<{+aujlV3K7;9`r?^oEk%yE=tg0*6U7>%>E
zzWU5qqDRL!h4K@}zCOB7gxbInWsXH5n)ZF><%4{GtUZCACuN=&uAReK#-l~a#);%g
z)k1I)`-Qy1($^S|D`cJd@^2U;T8nxrB*R@WG~b=5PG0MzAcmaY&E@MjxL#;hCC2|P
zzOzY#&Q#e`tr({Qlo=i0z#c2(rX%GSYuGn$#vh&68s}7eV#Zoj1E?-9|DKWiz<+A}
z#>(l<cl2bB?GWbie?hVdig*m@X&kn`z_ld)=wR}#!=R9y*+W2+1c5_mA%{)_4kJ;A
zzK(Yd=B7e{GR^TQX99z6BlT94QaVZU2+(4fjiffg;^y|pM#v(bZZVcYaScfT2$vDC
zgmE5QGNE0h3^!-fdKL4Y!EDS^z#aXZCDYGHHR9y`!;jy3EiwW8kr5G9zseEO)*s=#
zB=h_yAiHg#l=-F}ygR``OiV0fB(E8$C1(1Ju)>{8-)Gkdz(_XAfh{|Hp+|T>C_X;k
zMITQLs@R?l^%OJ;hV|N96^a3~AyRUr6UjvaPS<Nu2qtQz^wo2u@pqD40j#Y-W5e-*
zN$;_m!!rZhAJ53>%*4W?)Xc~`<F3VYevqS&qJX8SAZLB;)sLhhi|pG;*`yoem>gQa
zA*l~BNJA8_2Vw{Mw<X0sTGhzYzaK7^&@llvMjDt=q!jd(mBTNeidjcn`TBY0SuKRF
zio?H`=}+@+=6w#UUe8*r*Agb1)~v6HODB`0I=%UQX?sOsB4fU%r$b0zy)uslOpq3V
z<Vfx$g^h&rftk+<+nMMQ#CQ2B>C65IO?j5TxG48MJbAlJhMpYPmGV@XDhLM?ZY6#k
z*+q=}e3h`Rv|aWC%%Cymx98qMe_8*oE!G_EDGqGn{@i4&frUz4vGIj!_aS1>@C+l<
z$3GMLC-e$|<4Rw*%_lV6497o4lZ8Hy&-&q*H2!DGSf-ylB3ah4;SV#-DKfQe`bvb+
z)haq~7ROjt`+lsr8(J>T$Y+e6wznXUR%rG@;;P<o*5orQD~jNotV)UVNSPXO|Cuo$
z6c8pKv;z2S82<8aT3`c*zD<6g);oO3uT>yOW(9`LrDC-TCL~2gnW^Z{)H~82`~Ape
zMQ5CYhsBB}Z+t{0)wEjsmpP^VW*eEN<T4-2$YGm~cySRXZ+f6eh(KnW!i8<OXM@<r
z(kvxVyZ!rj#*j*yPlZ7|L&TY=9Y0Vm44k09+?4RCY!*6PwCwzx$F&`1#K$zMHH^91
zX7;l=!~34oQ~^F?sV~~y;wA(UsvxusDYtX#>*(`?(SBxB72FxTSD^Lrb3Ji!>?A^w
z&N6JEj9Zg{C?R1LXF)i|PQlq~tT`VOjPM?2JGnc8k7LO9TkL!~UFg*$LAgk=`9Ovj
zMSyx4S*+<;(C|a~myDW{(dvBZ{HZ&H)y_*6_k4#NG9h)-TYh;3Z}g^gb9=6)&6kB4
zf<U{Ocfw)~F-Tu&V7hid%a`tYarS+JW34W)dzIqv%lj|2Mt#Ze0MM%Wl$;g}yEWV8
z>;vK`;amRx(e|G|UsB1`{ZGGQIh_))?sy2jfS$k<5|xsfnTZAVSACDmupeWYdX$Z`
zD}s@HZ5!4H^Kt=&9n8ge>4E67c<oI9Bxtrldpc`^WF+w+80O~Bjs+Pwn9zM!0G~~5
zXnh`F)<W7lI%GD}=P#f?@ZSGc`b;bb)n5Cu=(2_apjh#gZ-i$pN@X&DSuUikWmr8H
zfsEWT8?ci4u4lZCzHf9;OqLjQz>V)iQJrWFysIs5rgK`6lkMxh3l8UB-`(Cq$Ua9!
zf;!V0L-X}-3q=@V4z6!Vd#&HWs&8lR#It(lColu>531LHl-4?~K^hWl|FJUJkCmzw
z;B+CWcN<O+UNW1BT<}Q0J(e-#s?M+rZEh3r3d4c|MlfN0uVWGtB=kJW)d{05uMHFR
z8ZVLh;HKMv!;-ouP#p^arUL-VzWp&daH64Gy!W%^yE3Y_5k<@@f~~8qCKY?F*PKkL
z-B}lb77IwAafE71rTtqU9+b6o-#n!}vO$->C<pcbUUxj$Bap<$9hM#+2a=$IdeYX4
zuU*gu+e>;;uK2bnXo>l3wq(RFbCt;Z(}uW_cW@={060yP)aq*05m=N$MG6&ZcOUkC
z(0Jfk-rgo9EJ=$xQ&jpXYI^N*Ec^_fW+p1&gZHT1Mn7D6T1!j30~$-A;SV>UE!gSI
zK`aD$aM~GDTpf1?>qR?-RCiQb+KMN!B^Z26$7ekcP16}beEPNGvRwRsJjXafg0)1n
z=_KbQvc`C5?PC7=qG_9Ho|A-=82oIX@WwQKdw1KPOPMs>-N;4Txi~mERn9Ipj?5qA
zy7Hets*uz%aeYUkUTy`<yiHkdg(!UE%{SXuE}rwjl+|2Z4EM{#bWFNTFG>YQ1OzpP
zFMiQ1u5hjBBY)icFr)d>3+PGW9jzDY-$eyojGoO5oXnjfB1c&TKHDtGxTyCJJ6)J)
zE7>1adzAQAnzfM~1Kv!#%tRQB|1+`@180&o+r=8I=e*}9Ny@dsem45M<|_K?H)FY7
zSMQ;82R93sv&t`C;o>Jpy8(~#EI7*E<tjkllQC4rl2Uq|O`22<L2txFAbeeSkH{_>
zE`Ny<y%tj$kN9Z|Ouse+6$%btH<wyq@#(L3F#G!6hpdF%QHQ*<*3}nEa1-i(dVaKG
zuec5`E*$)P<pYQF0fhP7DEctnhEc_mG_SiVDItM;k?I*h)2@CUsWclI8%-xc?CFuv
z!1cEI{4)$`B&FfiJjVO%W&HOBgL{e~<1FsK(uN?jSbtDd6vL?FtXEJ;V=6B7{p!P^
zro+!imQH@im<tC#{%69-@>{Oc$Eg!Ep-n?+bQ&iAFoQ?6_=C&vp^t_w^{WGZ+U!md
ziJJDx%YpU19l6EW7gA64^Vy#5Y(_}eUoJ_iOd9Q|blVhXb?JQX%*$N=O(I$1V{DW%
zdM>=vpSmP{5FcsPmDgWkO@MWrp=#J^&_1&b?<+q2L|7|Y@ITb!|EJl?L?$nWH<b74
z-ZR$1$6)qHx0kZ_BP`^xowSF5_fYZ8Q>VlrKtNhLTvfB&@cFSo7d2Bd^BT%ZtGwc`
zk`Y)~SO|O4v_EFIi_DYf<>at|Q=OsEB$_cI;@)<28vu9JjJG*FJwA@w1yd|FIp2Uz
zHa6OOVVV9iUwG-sLN&}^xglRPFr}-xIq>8n+Wg?dg3`O;{jNi8DwWpAkxzi7Cu^x_
zV?_w^R9h9Hy$R63P0^Z_b%L(|iiUy2h+e%+0NY|<elKl`12?fd0>z+q6sx@_nG&*f
zG>Up_+jxdxz){RBKtve*IM^YmS)*bxeh4H<rDp+ULz{-8ciJlICU-7SmV!#hLIo!E
zDs#N1KjRW%?|tfRR0;WRy~!u^V2HSk2<{QK$S|~@2BEl*ncsNcgdZ?KSalm+Y>%17
z{v^ky1oKacgqtU6$|iHPt=__ECC3Blcn(xP65ThFuAp9f6O@^_>ip=I)$<ia$=>9X
z2MpM>bn-0|mwUIIF{J}fbu_u5w|C30j9l2`BW_<dt9j}XbgiHCpiXBqRzTH_@Kt3w
zCd7szS1zr54pyiT$Pq$=ntfJN*C~a9g_!I`hmkVgd$u<fsFmg#Co}@!Y#5v1cp}!;
z9cZJOU7Z|eQ7h|F0q|rkcNOMzVA|gA`ML`7*Gpc<t&5ien*4BEiLDEypDv7F%{RE8
z@8yRiDg;`PgQgvXyde0ZF3mrf`gvFKiBD@+bWpx@argQPZi1yXHbLdYZ^B>ox&vFU
zp0y2~?b56+s!p_zjcD@QWC{afb3N9EMq#E94j9@4cfD7kS4j(9&pYY|>P3$u9|h@2
zU;;e$i#op^!f_3TJ8N%S@^aT|gy(>)Oc)bz+C_?bdJ29f9s(xmc5XDlV{@<;CK`0_
z`>NLI?)TZnnubv{97<9E%g!FV=<WR+K=ZuKRT$dfB0V)I*x7M48(oqoX=|qj7l;(l
z*Ye6qCzMuni=FHmm>6#oRa!JG{V*vo&fm}1KK}+qCUa`JcWbP*<}jJmwmPMA5-zOR
z4UUehVOP4W-kpuJ=Ep|;bZ9!X44E@;#j_-0@H3z%j^5pASFl-ZMRnNEIOeSxpkvAZ
za6`PldhpIt&n4C?ja$cJmr|&PZI4r+L^!y@@OPLI!%;v(x}1brF$!$x7TVsI;oyVj
zr|T4iDCol)X}_Iz=+)Y+ckKp7?yu|5H^n2|gl@F!%_milQ#QnlclKsGj9qk#1>)OG
zB(bdsPZK$g?a8S5GA2L$+zQ9PGhR~4J;$6rldhv@oX+`8xDpt(x)yB|Z0SEMmgkVn
z4-`<!tPOFsTLQ0(#zDD8S(Ra>7O_VpYkmDK;NZuN4I4-Qg9TtC#~$jjvKS0KsO1MB
z+chE6TFt305{M}n7()UUUy7*(t+v0#dJK)H@j|*V2@5)1%b%~u3E<RKxJ~#NQ3Map
zrSl&+#F{vBmutI*w+yi_e8}n}8i_??8|fsY(jyEGG>${_J1Wby&<Jul&)O&1587QV
zfBD66zStLt6++?vgpATR=<H+g!7jrF?>3g4-CKAEq5EO$Q)b7*Yy;{Mbph*j?gcCc
z28Iwq6J983lOGnHul_RyD6~8*!sICl&fatMG{fgzaG@}WlEA1uDwT(jb<ya4usJ+@
zFihFdmjiv^U;1z`?=>=C#|?6sTQ9+h&HPzd3`2+bhCK}AsEhW<mYt(UXY`mU)7~(w
zxymqQ4&?l$K!zSm#dpeu7mx^Tm)k>ptd@g#-?!}MY_~Fqk!I-|8&6)gLYQE}|1W=G
zqd&!bkw<>MN4tYLk3#47OWzoilBYBZNs#RlFv4M@tlxNo(Oly)uTOkDo?&Dt27~zn
zb+iog=8j|SkUs|t1BNZ`7gjhoZjS9ho?~tXnoW6P&5|-QnE>M=eExp1(beA*Z~ll6
z=nggUcc1hI$jgW{$+zCzp5hbCn%udaJ~RF@`8_bWd8O@31)MKgzt8qL7{G@h8W!@V
z=r<Uu7WAql-}9pmGoPntq(9K!(pRjIy$n_#)&%1`0zap|#eOOAeT3(<G7gYM`9dyU
zSWBk^aLl{s!j;b_+inh6c=P;DvdHTQ>UILT4gWvJ-a4SFwq5sCy1P-BlynHv-3^m&
zkS=ME?(Uj^ba!`$AOaJlyBh%k>BckMXYIYdwb%Qdb^g++PUc|9c%J*Y?(6<t=Ac#j
zq?jl*mYRH=av49Kb%2Y}HIIn}lTUp&C9T$czRhDCw?dVJ00%dGQHJY+v6t_KB%Ygp
z2M=p~QQf*;)Gt%TZc6bdfOI&n(Q+a+#DFfiq@)CjLv+^WgsB7hJb1^%;ChZR9BTSK
zhM<Cz8+9)2AqkA){C*w!`uwz}Qz1mqxAFP$wiFn+g9-!&ii$~2Ymt$*(U1c<(=FeB
zj)LA`W3xaUPnoP}MVjzIWc%}_qQUlQ_SMywrab~zlj7{?)S^wW?DP+jH~el#W-4&D
z`etSjtI`hrnY^+{&Y6`Jy|PX96whl<-Ih-@WMjgh`SE4vRUj-YXm>^-t{s4C61ZJr
zP=Pg(K4z=#T4NQwx2)e6smI!Q4I1nh=|Q+p{o#i6%})CrWAL=jwU=U3RCq6UCfS!8
zQqB{b&m+WZvqjX9&oqI~jg3uR;|Lh!T-e!HyF6{+Y_5~{_pe12h}9=PKHlc4tAwop
zSQ^~~)I?+n3c>Wrx{vhIL48QUCR>H^N^`@Z45vHsKUl+7{k*l(wVr1>oz{ESlJw&Q
z!1Q|U(_gS^kLW7xWWVcV35iXyP*aN#gjN*h45xhg!eoe`vjuMc+Am0_pl?5&ez{NR
z|As+7;cz%rgJ4%oqLh|qI_TDDvZDQbWTDBn=ZrR{4n#;f(~oJ0<I8qU(;~75#y@?W
zj4r4;JlNg$<ggnK9d5OmSI@XDNuP{pYZms2ifv*M{{hD!;c<VbB4IFd?|1mk7^<Mi
zWzMwqr^SwRlq4^%oR*OCVos~KQSY%YFdNxSdy(9~suB1gKtt_@TNtSO^5uvmmAwG&
z&t}W&!h!_TT92SoC9;_iQG_1|ez{R8I|I3YV`lr|kr*H?r@_DejURjEeZGzF^!!{X
zsUrB=r9Xri_<qcuHiLPS*rMxHc_oMtngKY0e<KAUCHk?5O~s*i!)H7BhBm%;Iy$^0
z?O5i&Nl{r+-qu(2Xf%BqbV`irA4-n1b-VKhrkgP!<S>tMUu5T|ws=|2WR$#;98I4R
z(c7`m_ljuM`d^wG6w5G{8=t!L`8qyUNM0OjG&cKg)LAjdh%{@@aGKa_cEssNKzu}1
zKVT=<4}Jf4ON#~EZvkFjn!(@69=uaoQzMi3=P^Tu-C8x&ygH<omT*L`r8YN$Mb2|H
zpS^$6yB2|I)!|qYkVJU`04#)j>o8LA7sM2?;yi@u#ix7JkmLCUYGR}#Aj^A|m2BCE
z4!<vfd^Z%RJ0ikGg$q%v!9+89jTWgaS$v;=<<YPj*m!|3DdSb^U;}@Zm*z}AMEE^j
zFHnk-Jc5(Pfwm`z?3YgoHcb;$;#Ei;GVV(uJ@e7b--HWbz~~($e6EU^dDSSk7?Iou
z+&0@mjlV#^q+Ql7J)g#j@&`!U`QWgAri+8O($(EfU5=4xC6E2yfK#aYJt8dNA4=uj
z3L=C$k1va3#?D3k)SwF_juS+K`hu?LgKgFTOme7gYuaA$D3Aa%HJ09J_6T|v)CSM~
zcGv}a!nU99ycgpof&xI{8pFtMMEODn2h&Gh#|z#7g)zkouuv5^^ga`aTK^=}XDJlC
za@!qF6hk+Ul51J4(P<15dRf#Kw7%HYD((P1#CQQzb_!vh_)R%aV3ZbU<mWn{>Zse)
z!Lo1RDhrgChh_6PiP5c}<N>J}EJL3ZyIkk)&^or0%7AW;mcR!tZ0)2Zg&M8ykW6u`
zK+&HA9tdbepp@xJP@K!BPgS4zX=rrlbnFr?3xF8m=}^YmIpDa=h=jg>E#cN=*!__7
z!EtvOTU5OpbO5VPGx#Z=)S*k1Zu-{@**nv}X?4mt)xS4yfz&?Ldi(={hfNA35fG8s
zoGP}A2LIxGIWE<4kTb<T9Ymn|$A>tdbiiw;!kg>V)83h>t~Zgz%ly!^(Lr>^0aF|m
zpqr*a^`#fgpxy!`xsU+RS5VL$lo0jzbifpE-o@p-6WnLk=ip60{CSB4<cYUS%FQOV
z$xzFPW7h@k<<=usIC>rdRr?*x)6|vimzB2jfHs6mR{W>DbwsUP5K-VS*v`FFjBW38
zhr{ng$CPMrh5f(Q+*9OKjN73?iiss`7<8HK1BAsE4{XSk?KCPdD3K`1m_kIfH57z^
z4Va%vCQ4W1GYr@y^TUWwZ2km7e_~}7^$wE~Ii!IG%3{#*qXY#D?X0u5R<X-1B)pUU
z-NL=RVs*v+nJxpw7P&*DS@*iBJBMm8ng!t!#7!H%>C6iPCgBKQw~2&pb$mQ8tsSYO
z`m@bd18TFoxxlx{U$d_R3AB*9=1NVkP|HNuu$6f+a83b;#ub2L+yj(Yhe3;c^*W72
z%oU!OUO_}p38(t+vuW4YOLAv<(l$$c7HSH0)3*^2Fh2Btx>+#FY_>^dT9T^P+tH0h
z`etO?Py|Iv5pQE`<r?c%7JeS!)AjLBABm!pzFCOH)=}JnBPP}k3(JU{e~8))0>;Ah
z<hQBxRVz8+PsfZ=XhW`t%r=BpOoKS3=%JLof|sAU=VGtMRu#OLP+}*Be@sqyoB38r
zRJ~SJ3Y>MF$r8U5S`RWeklWunkv3j%rP`>|-NnVBNI{%Z7g6`EmULHkfR5JtI#GzX
zNwvg<kD8jVi|$`f|1jvPqC5&T;O&w$pK5WO$jVNVF$^prtZRb9_%{{NA7{AD;_45d
z?%8qE3O*d|^AW$63cxNKLt^_{M<h*19R$E-ku|FMn-M<(*)EedFvv>8c&Pa8;6dX@
zDB~ae3LFmVb`+=?H17^!yMU7(#a_V}@Jti{oM99g)jV~1RqD6J5^0p$Pf<V1&W6&A
z{E7!FTQ*xf#<O@;-=aA==2vP_tKV~dTKp)(qJ9XBf+T{}sF4-C<dR6Y&jZk-Lhf9F
z=Rg1?ml*P1kX}4ROAm|qdRGiTo~P{QtBGl*EgY{_ta9_tFoBI7=+jp~y4jV%X2z7!
z24o@`bdnDVP98)+?jH%WAp3OD(d(q_9Q`u(k8#!7^{Q>G$1LZenHzxBdq(&VQ(}nl
z?lI8)7AQfwJ#-P|O7cL&A&Zkd7`F&AjwWDky6?33VUteyCvOsdKwvr<)x7BL7Ra!L
zeikvTQX7(J16$if*Ne(d<^)P0O&<X~Fy>kHF`IXN1b3UT=7MdjfX}r8lx0w-h0ko*
zrA<Xxq41M`HN}((tTvm;_`S4tBE`5(D7>HM*X{`JbZA|V-xzrU=J8x5;{pa&(wyh3
zF;SfF1PH1&KuT0d<=%HO=1FZ|SWo}EE$QgXPT+f(#^(kW8fF+{T!ge?D@^h+-UQ5)
z!EfIt0ifcZeWQgU{E|ht+;oel*q-Tp)!7G_s??A8+U?FM>hc;>K=GI&p;<)_0Cr4+
z@?pYS&BI<HJ$UJLxR(2ARg8-Lz}j$QOV~*NX!Tm9-aUymXHG`OP0zgmf5S&)Vcnxt
z)5vVV)~rqU<YD`3cchuK;~EZgH_vN2r&u!ILM9+42vv04kfo+G!%D;LWLX~vt<&{A
zc4y)%lWf5OzDjov8&)HoA@LOKV}>ztwk44YrZF+GC*~x}F>Sg?2|84op+8Rt_V=%4
zZI>F}Zj*c@!<WPfNm?yY+&{LAM$m6kn|2~7C4K+iLUmyzxn+SBq-kPE_jJ;nnDwrv
z7=A&*qq0QgkAR#k<HtA4j34pixvpyBs*{=xda-6k-$j(oG;|X<;05UBcY@u1;D(56
zJ9<D?_suM<oY?yV{hdhD<el?-t%SRj#5){UT@BWb5N3EW=Dsms_PXSi6g1A(I&`!E
z8UUe!P4IlNhy^N2L)O7C>~t18Rez40n%)?%78Y7c2YFoKI?ZJgjo#q(B^Iy$X3i4X
zS1kLuogG$L{BI<j{Z03uSM0KZF7y0imAsrA?hc)eVBaddF>pa&dV6a@hH=GV=!(5s
z=0#tHixFa|1yc!G^xqFFVql};a{Mqage@%YG#!AVL{{Nz%gZZ5TYO(j$?uA!Q%pA5
zx6ErkN!BB!2F>;O;Yqp?(aFq(E;z8REjP1wl+nJaIL7(*7?v?F7b5!ZL&LAxQ3bXS
zFkw4D(Gr0D@o(+&kH6&ggZkhGC@~}fUp;7WtZCT1+QM~Tq015dDK52ChhqlTLE_V5
zol5iqqKNh@WRzXvHWG~%AhJ{T=(Q)R1XTjAD7BhhkO&-M_ab6G<}Sa$u8P}FS>XkJ
z(^F|}?J_X=ac#y_i?Q)O_c0KWYAnMBS6)x|2+XD<lVdUE`5>4i846;C4D+87QI43+
zl=|CfXREF^DgluwZ3OUy5U4(<kVY=m3Xs`ky>wMm);t{42argW!3Anzh&B(1BOcno
z`G*`^CWkFS^E~iy?cFHSns9=)2wTWkW-g?#KEz#xve!Y>DAROkrxwNlPY(hoh=qaQ
zj(r}57TiNuKoyrx3GR=rp2`vhpr4`ix9iT*w-eZI(g|pQAy2kEgWGCS1g0J1Ah;h{
z@9H+&eI1)6lh%qQ%k9VTCQ!^(7w*0k%OfWN$f5vrHfNw3A$1isivb;db#`$<!$-^)
zLrS7UJAmYT3vm)VQTFd)GJI+UeSBfQBz+!u2-?Zx9y<o=?vb*Npr<ONFaYJ3Qd4v7
zsX=5DW`hwVV`~<UF^DhAq97v!90dx<#%L0<@{^)=B0SSm%quBPX5S6Hhp7>JWz(!Z
zR6m#NUg7tAt7R3)UM06<H-gpXalt0Z8B_fGi&R6w!-8ANN>|pW3#_94pYNE<?MWM_
z7jpJmp!(xiugpZScJi9s*4$#PPFFRymy0W;))73BN|1O!=K#Qe#g39=Mj@##v-}MX
zCFR&Rmo|CksGsgfvy#z<h8+-z+l@b|U`;ZXS@goDGkdHi`)>S&pcA-}-|n(z4RqSy
z`Dxx-I(48fG(*|hV|r_yLz(hbXVpBbTho$%g!FU$Xs{Zzm~ks`6Y_psO20WM?m-);
zBEo~eWnz4K8X>g(*rTM1eHvrTyOi#HJl3nR;md>^MmKYx<8-w`s+{BiMhcy)Vypx}
zi=8t?lHMnX2pRQ_?n?XnB$Y*nqc8WR=VyGroi!lBu<&pz`xYl(06j_Vi@SUuc8?ya
zv=^kEiwv!(?Y_y55qrBcgqe6iGvDIA@s<(dZnR*zuurwm6fqyFV`$jZrpYO9tCaiF
zc6VawC5lia-WDtD&Z5%w$}EEr%o);YIfeeCLLGUwA4E!;-fdbuk@>~?bEq1B8G#*-
z-qri*H0d^rgh-<Fl+5Dl>v>O)-cQ(NTBA>Eo)1~a4mxwcxF9yJ?A>o@F!*TRZb%*y
zDub1DlipaRNS)Aw8hWfJ;q5o8v4;tJ7v69x3ttMN>Gu*5>(e&A|NqoV038LKi0$~i
zwj3p}Y;vQR_*fMk`~`lYfVEd(s$Zi<)h&3M5Q*ak?VAKv1z31??{9Z}b(4i6q59+B
zj97aj@2j8mx1v(PIB$`x+>U1dx@6>ojDZ5Z8Bq~{LnnBiE4N=r-o^2s_LYEx88Q+@
zRVGw|Q4M@Pf**tB=Y)J8WZ3bxMf8_@{d-HqB6!T@VpUEmnIq(-_AAbb=j>Q(0NyY=
z@(`K54=RWECBm*MmgKcfA_#$D2KSqK)^h)I6_D1bV21jO97vO_!!)5qllXEprx?Wu
z7W|g=`YRS3f0?c5TCMfWJ9gInvVI~LSz@I4+cj?e6B7ILKAflk@cOKtQeZ=@(6}Md
z$;6lQ&{VYTU3Bg%TFzQg2JgKTSuquxm{e(UpsA7Nr-fSi-Wr>7v*P^l*wvhfrN$UU
zZW^aUTKBMnIU4@wZ`AP6`fh>aa012jHQOrcKuR4YqV7WB&CU*Ud}dVmGH4Ztv7tOl
zOD_Rwi;V0jp{Ga4#PI%TR{lo_QVO}=RXJT_jx>Y6zJAtz*xMrMZj&nLfSy#|2kckn
z__mZi3$Y5d&Jk{Z<%~CL9a1=G&p{Ol$|6|sVaS{s=Z=22NuIL}8y{_aF9p?UpjT^Y
zDTz|nX|c7Pc<&9btLn}G*AhzvCyN};L5Dkc`7;?W4r`<U&@I3Z0V+Jcu_i-uL6X{v
z533~Adtt<*JQsa|$-2>{%0_ss(5IpkeiD)P_onN~3vWQCKvcGDnIKoH1Wm#LnV-k2
zAGy7TYP>E@hFbeBgFM+Mn2stI6DglmcEunYZo`>1b|#c`Tn;}4zG4*-OEd8crgS~S
z(koXv^!7eiQAsul9Lh%GsWT_}Ji#>aNW)rUp5$Ncj)u5&I+Y4FXb({oHg6yMzc(Va
zN$hx4BYM5C3<}sWHFI*>KYrVG%E|8Uztc=A(LOAb3<aXHdew9@ma=P91ZyHlKa^EU
za(c1nNCqvoU(YLj@V-$!wu<(x5<ly@OxEw*e0ZB{*j>}?xRsrgLjytbrFNQ3zkXF@
zE6D<<DIVTq?DD3=-GRPGoVkPAuk*`-64jo}?tHQvvwY_5Hp`GTe{-;nt+6z$y;wc}
z>cmz5TBO-!$4@KIaV<V13F$Ajtu4Peg}CLXoz-8rvneMOwkp1*SjE*d<i86+!S|75
zW0DnzH|M|^vrS0rP5)F@yUf_<VK;rS#r8kyoO_Y4aM9k1kRR!I!ERy51+TQCnxpe$
zHeB6jBL|B>GBVzgnLI{^i&Rs8W#gJJl0Zr;WxGOz6PJ7k_z{9*h6bqUR_SLt^BH2O
zk#Ml5adB`oRMI|)CIxMi2m!uFoElxy5wCoSmQPC;IISvVJJFGmiO=5`V~{@CfMpgc
zWw(jXB5{WRL(W{1OvMGU9jZ6kr}(m0X-y!aphcJl8-UkObBK5U-iS?EG(gnrY`wdv
zQg<)PeF$TwOUy`Qe<rirGnf~)K+&3RWUH&c6i^U8cwYGL@#M{y?w9xYkB2e#-=Q2g
zIv>Qi^{MbX@0NYhs)VCxZ|s8_bSQ<B&<pVfg#>%HSxuP?98J%}k|(WXT7s;C*s6qY
z(HOZR)a|d(lA7qSjA9j(DXVojGLXZhKu-GQl&@d}kixXZMQrMYq(#cKN+8yALJsm_
zeL3cr<ulosP&pvJx#8QNPpf3hPmfHpY#{~tr6Aq`mN$ZQt@D3Q+YiWqT;DH}AJoHG
z4LZ!QOFy^RMJL0FCwM*FbSp{K>Nd+WM1Ae1i*Sv)Q-xgQRy0<%IvVJIp`j_3rNq7n
z{G^UE!1?`q?BgEd_0z?uM847+>S3eP*&<oy<?csq*$P$_9j!PHn!%^+atKo_pZinW
z{b2YzMVsif@UeycVa$sPDlP||SLnSok`{KF6WYjAiC$6A<SfU)ez>obD;pdA&rT|P
z2{}amsyJv{DC%eXi-`@xjShoivN$)$ND!MM=0}VqNtcF3tFtKhP)&fgaTd8j5Zf$3
zOia8@!>s1X+yHXCcaG9;t@k6{ia#dlj{fND`9`@|d%4Tgz{#LnIro=qTbT<k{^w&0
zzpWv!7tmWcjf7m|Zf_$!>aSo6ygzwXcjrU#&^2lD?jJ!Pza%73BZX}xnMFLjZMPSf
ze9QMC<$7y_(CEqha)l@=(hFZEh1fpv+#t%d04a(=(eC6eZc5zAA%p{xldR;I<EKu$
z=ow_(M%38w<Dj+dW8w;M)YPf4p`!A`?YV$5N~Y4+q5&@3gx*T^N1!*NlgLU@-nG|U
zjblcMN~`ZwdZoaf_IY4{Hb9{3*({sTow*rM8!7U<1k+lOZ-<hunD;x4Jl+m;bO$R)
zXbnijnf=?U_&-YJJedEtIEESa1A;w_vD=xF^GP&|<?zcZUTa0(42!9#BsPE|biu6Z
zpMP(@K4c+4@dat*vn&Ef(Ww?NbqEP2Srrh3qwrn)Szg(T$MXWBc>{Qr6RE}0rzHRU
z7C}04V=Jz)sy*V~@Ja4@nl6$k&?0L}+eo~dCd+jr7kN>IW239Uw*YKy&GJX=46VM8
z7|eX{zTf4;vePxt_dEJleFETe8Oxvui=#kWpC_FYQSt}0)@jH3Zo8Gw_ac~kX)K(T
zIlmT-Plsv@IswMU23WD}6KX3Igcg+WF&-TD9U!VR$sl{fsjz6apc6uY=^JJhVW^1@
z&Edxuk30-c5zdJ>)u_~}ZS06rJU5{DAf!Edvb$g_?P58Nhw~xwx7Fip<n!skgKce1
zPe0QCyyls|oBVD*^#i~Z?M~HP6>)S-FjlDwh5~q)f}k#QI4Ig{x=?`bsMbPAO3Ju8
zbJk$hX|2ZbwV%xTN5QKzo*0p*uLfc|%;Bqo0`x7nuXOAuriFiA^_=uG+Y-P_f2k2q
za5Nib81QoHHn9uEF5V)$x>@Ojp2^Z(e)ap~n+>+Op~XV${LGy7WV)uQb2>m%o|Z-%
z8k#O!d$TO;vY$kKBO#$)%w<P1oyr`J)>t6q&7u&C@@+7iU<3JGiW$|fSSZ9ItMWTB
zxxehO#pV8c-9^4Smjmor9$*t?%;2)ikxa#=deHl|va-}Q6yD&nIy}meoA*&$_p|G$
z&0#7LEB%$f2PN~<Z<<a;PY+ME8lE%ATixCe8*T?icZba1WWGW-1Sw|q=xEV-5cvb<
z?Yc&r`61v8;du5Qx9ReJv8AB)w(21DTIgt&bTwC6G8B6ih1*_VzN_k^W@YE)_-PVW
z<wR}&XzED<L*ODg_vySCa#(0KV_Z(AkdR@9$#x23c}Aw`9C@=r+iy2fpWBkZ2{X~;
zaa~s}?q^P-O#H0sr&QGW4Mx4k-_BBgG{|NB;j|4Kb;CR=B=_Ud;xuoZi&s1Q&coFb
zch}u9NcpEQ9%I(eMVmSz8&KlvYY>KCv^%|eULLrTWULLoTltUPSI-tpS=wN!=B^G3
zjE{0B&cs~k4soJ#`ujTwbdK;XoeCL#>C~+P+BiX1cJGoFa2a+b%d^rB7ENq+hutuJ
z>CmtHp9C6hP5oghjX%1Yio&?&RO#Yb=!_7K@bhE^*>EMpNq5WdGN7*{b*3q+XgKoy
z&)a7duzkwEegWpeRig>sX+#2*>r}4)i}?%+WLKmqNGBOv6FG$+D>UICRZju)XcKxi
zNih>_L`N@5ff*$Wz%?Oel(UVVjeD@!fUeR3$qMDVLeT02%8Hg4KF<qk!N*@N4`$JI
zFZoi&_Q=dA`1NYbJB{`|;)oo9Hak*7<RUr?rcIc0_{D76fPPcR#D2PLt7mHszE?vi
z7EKTkl^R@)jN_Wici-u9-eZtui;0PW*tpZ74x(e-Ljsvf9`f<nH8Lt&CIoM*Jcx9)
zG;jM+S>?EQZjLZeP-c@h$-0U(33eD|$?FMb%dnXZO8NCL$(S6L8YKO|Er9>5f9@()
z)c}47#~$va-QBH-xsmkDCqw92?Xbqc=(OXwCfPpa+G#wjzJy2zu&EHByKjDq5z(P~
z74#XfpU_0Y7Qy%+GP>V@Z$c{A&?;&iWheG^;aGA7CG)4=lgOH{h~XOZz4R$n;M=Ma
zNkn(1J)I_niT0~NbwSL)W(cHZG&}`R?;coEz82Y%Kf_p{iA}3ZiY9dOB?8qT!XTrV
z3qRGx<l$MECDTq6O$d3*y#u1t=<+{tDPz(9_{LIpCiq*#|J+1O+$r`p9sc#X{~vF$
zgiN0h$_wEjaFfP1{Itcv_<{`gNEsecYN=N~iHq#_@+0s{NQhbaIFjnV_gQQ)F~>_0
z1mY^&7Zb0Xuq1-A(*0Q0hEPk}GZAbxU9=^(_Nn9>>^F^%yJgi&`|^UzC2A*SZ)~*r
zGcmI3)H6Oe<@8@XbDrSaOr3qcxVbLnYQ>;Zb|BCA^WsmZ{B#olA1<wO`<RorXxKWP
zWA3lrreetPsCEQeB|%h2E-aJ!Vf}5E_rs$w6+P9`hXYDdLveQnoCUNr)+s{F4U3sr
z#)AoP(p>=En;EFWBFy>ZT-g2dvMrT)vs$STr6DMj%5a=VWWi_y$bRjZvUlPC{D#10
zlD5oxW;rS0afCL029?!^egPKm;`TPBq9hp69iP>}Y`Xha>3!Acl*?sF=CZBr+vOHZ
zptqT)SxqwBCFtGKqylZy0{WQ#g{|u(RLQ{pW)Ta(vYC*=LCou3w$e_|KV{E)g{9Tl
z(J(QwSvjt8dj<87X&z28^xWur7=pKtGdR7efzn&>;a$JSucg}!*1~#Ihg8$M?dWrp
zZci<JBMYRxnPrn7?E{AIGw(dZ|0KYPJ778-sWg%@3%0Mmi|>x;BuQUx&+<(FY_Mv_
zN;;HA0mB;4>8;`6P;%%O$(R|gXO{4oXM)6Ttld}xsq<&vJJ?foR6w<HzBSY0DxGt4
zUTRhM@AJUH%`qXr3;67R9`Xwj51ka<Pi1uIKLoG9Y0*t*Rk=g;v1ayvJ|+L5g!}SQ
z8wHV6qPO$3Lw;Vs^(XjHNv9SZ5fX`Olo~=FQjN?3rW&2_mk|2YzL%PrIQR||vIgXg
z&<SOm3GM21xFU0907Ho>d9FwRYW4#FNDi;julE`D89?WrTyxKS0OYP-l(ey4>%C|c
zk@qUtZ$&@Cl&iKo&8H0x+)ous+p5%18bNOEnlK3AmRmUKn?AY&{EYb#nswkTIg6S<
zfAh02ej12CVm=CCHvpbXvo~bRXG@I>ly6b=fFn9~&Bl?en>_W)<%F<q4p4DKgnM8@
z?}L2UBon6CBm3?z4~ie{67a(@$(4YV*=ivjh8-Y-%sXil#bhTKGp<>N)dn$S#c78u
zX{pW^D1Ol+9RT5dQigw6A7W#sa#C>x6eKpKJbGEAK)-8n@~6+y%z@WdNo`8iL$b0^
z;!z-o*c(}rBEd)0Ui0%$aF%0Qw+a@q!Vt;OOvYH%1z$rb3MCUW^IDib5fxIv=_y&9
zx|$VP6%`;_V`HAM>g@(I(4t+g=TKHjzFs$m(~o(D)a58yBNGN#4$>H^?)+vdEkqUP
zvGM5%-D{_{+)aRZ5w>q4`9Z1a7G69}muE(tLB=_b$o^Yx^)N<GulT&VR9xOx(N6wa
za>;^JY>gxnMyWNgu{#<pSEbiSoyQOdLGpkUK3%0;KRzQuQxrhd=>)w9(76La2V!@0
zdfi^!-A@+_Hd;QlIf)_tdJZSlDg8MfCRjjzw1{ZxDE<Z`8G(x)qdL~B5gZ#!+;^+Y
z!a6!)PSA=mBY(T3;}*B2?b8i+BO_7ABU|mKIDW4P+jTNslJ8s=W8Tia)H|~bOh_Vg
zCn;K|$=)D$diTaVzoWHBV&+F6Jp_Aq;9M2IR<D&{+v^u|J=gAv#>fncF1%r`iX;vi
zw%~cb1PK>KKZEp$yC`)Qx48g%4v*p+7k3-Cfwvd1p<qm9WnwLD#@;UWxKm&6RL9z1
zlFc>N;uGU5qV3y0u7s>yc|t@;VK<+Kws~jW77KNqQ+axoPr1sEtP@#~s`OgZTI>a>
zksBRfKV8j~Y{*m`#l$el)~G!`oP3MinB?9NU>q5Ad=#`Cmx%QU?|_(_nN{Zfn4faN
zh5AAv9eK+O4x+yX--HByv)q-_$u$b)b`YYgxn`B8k;Y1Vys{Se|I;lQX9<One{-1i
z-fQ<CKtK5w&2U2PNnkqbzfj&$7m9jFCB0pIY@L9+;p5U&g<6xRf^Z;ZZ=aJ-vNa)G
zi`AR%EhF|prqloFyn?B6NPQ!<`*#cK3Oxl?pqQ`tVa|7Veg(EFLe(@9^>WtAY}{MM
zy=Y<SDmHk1X=s`o+40Nv7j^Z^^YPN0lWFtYasA(U-QnHx#g(O6e#*_Y{vz{hj=xcp
z^y%I)wj(#2Y1>;cd`)R!Jn4_~FSEEc-c>8^a7|vlxi>;Klh$N$rGe@b{;y)>2K)E*
zb#v}8{Xd(RL}<i8<&f_Ka09BZZh(ZWX<th9*gTS(c|C_|XiB9O5CoX?1hA{QWvRty
zz|oHY37gsLwKI%<yp)vYLWBuWoi`4{vQr?1IVPjQP8~majv}r(`ogJFtZs{;V;9u{
zNw_lHjgDWJOO?sDa3+c(!V%F&Q<>A;crP){5zyK+2-4ZMJeSsi*lFuOFVCvH=+xzU
z4&9Or$K_s@KOU6e<(rtJ&ky;Lw#k@iXhQRNe%d^40ECy?9zLCM;x~G9`asWKw_^f9
zw#vnlBi(hXK$43(74Uz{2IXhqI-dD%1$ioobdP%(0uv%%Er`IS-Y3mksAMcRgm6Jt
z?=9zL*-Zf5A!KD(Gy`=5D9e^0tPC*J*}x(wTVUeq`oZ^n5ba#VsfT(fTfj4kgwsX>
z91Vx8DmWJ6RmzBmHq|;!W~8#i%H+G!Vi(kAq6+ivKJps2$e@ki9!R8-Vo^{~fb5FR
zYP7Q8B~{2ZPy1})*l+YaHz3nxiT%JqD265_psEZ33*xs94K2EBq|ibxyKmwT)e!_y
zLW+a1Rzs_TP?*psSZw3PI^)0o163UkCME?s)N2AW&15g+eMC|!up!c>H#$QZ4|o0e
z5&7cIn}Lp)Gk>lHsyc_g+}VmhSUOIt-}iK3`3auIxP^=#dgORq#G+d<h!W|eD1*cT
zSr{19H97rXysG6A_VK>fvAMk;+yLuU2Z_Nr@*kBgjiPdw;=c2t=&^Kw)TqtfmUVjp
zD2kdkp*3mN9v*d{)<@`>0bLq>u-s0M@6h35y$ge!{ghI(4Fw6sXvbK8C~2`+mLx^x
zTgy686|B@ZoC$BQHCLUEjzv7?Dh#fs<&CD)l+ja*=)CWOTsduKJCg#+9It<~C06%5
z+9RWrtty&We&D{gBjeeZlveUo>CRZ1y<bK{`8`@X>#CQw@xTrmkx|o&me_flWvUkL
zR%-0<V|KVJXL}Fc{O7?Su2Ylu;TeP63fV?|;CgRkA(LLWpBnKQ#c&u@glP3;VZvs?
zqVr~GqHGjA6Rjb$+G|m-NLGks`>X0U7Ao+3^{1%8ve(aU@Hz&N3sH)NU)r+rdbCQF
z++umkSp5N`(H5C+0d*SSo0G_)1!myn(~^KhHO>bU0%Pfk9|-6+!_Gt#57#%fjiPLC
zg#99Zq2m4d2)dwW{1p56s}cSpOL`rVtW6YHNe$bbOWQEK#Tnj6No$Ei+7LKv5r5+9
zGXa{9VoACG&X7OD=!Z{4%!PPd+QREz$F%uJ9^LBxO*u(rXQ!P;RAplQa~ujOp%3My
zrJd>=5M;@x%;rDdUR85cc(_cnn-yF|!I6@<<7f6hrB$5V!fE^DI$#OZeY0nI%ZNdF
zcXMOUj-6;*KWVfD2B<B}#Xxf3!}b2z2k9faQ32(3Z^^cHuI4*G`ZB_b`YfGC4o`T^
z;<6jq;(|QAuhFXD_c2Dd(V!P|l^<lc1ZJ(&W;Tn2ZfI4sU7)(tJF^d*Z*TbE=i*Y_
z7@du`1KpBVwTlDqL#5`l*8igvYC{NwP>&Mo7^pEW^#8Lh>ZudU5my4+bLay-{rv{#
z1*O#ANjO<mG8x@MsaOWeRwwp|(9rgD_$|~UJE;&jx}if^ekv&>cT>%x7M(^5IT##W
zMC8L*?vh1UI831p&x5!5Q5L_v)bU@9IGvkZ!gd2iml_r#;_&W*k-q`fJNL>e0=-#b
zzbB8_GOI+Z=HPRs%$rDR-J@iSi5J7upssVkv@l0&ZJdJmEaDHrclQAz^ooYaILeEC
z0LSMC|DOB&>8rzB88K>^Oe*ON2)fARx2%AZ#rotDh5A8YaAf7f;4m;!tDB%W=27uN
z&<r1m#u9QOSSRJ#_SN?w+a0}fdLj})_aNgJwlZI=d7rU$oJ%#5wy6|Kk>cFebk@Xr
zc)Y0RKL^O~)8=@nCYfna0Yz0T^?)eN@AIKt@D!I`!Ze%GrY=Nu%VqnUY!Y?ph0y&j
z?raSZ*~ag6MI`&6Zf)}jB<mohkl=o`zx(~j1SNF$k#d1O!RN|V_kXh%<cbWh?(Oml
zvl$2xr~QG>s85kOt}!#iBT)4N8!8IsR7cQI$Kp@f%94Ec=xYOjwfNO`fwke_-vJE!
zM*hz<JEkFWTbo~7qw6TS%EIjy2{Tv=46xwxqwX&!-cbg&wzl$2kR|UCGHHWk7+Nr)
z*PbHlFo9FU)6=Rnym%*dDd;fi={2;fX^Io_z4&xLw)F>nzIml(>EGAp18L>df!X}-
z_J^=z%n($VuU}tOv6<hMba+rus9<$Z$fOMP^Woy-ze5sf{&o*m#B${LIhjARO_Q9g
z3bZGj_tG`9oKlN=`w;9Cx5S7Uyg&xLrVAg23qohcp_E1ws0ER^U+_Y+%LmfC$hIHy
zTO0++)_&<89^E}n1-p9v`3%Jm$t)N%NT{{tvSWrwu7IWFl9=3YCUXj+QsnvcNlnqi
zS6miX+morS@rJB_f-fD=kH@zjkg59!n2%(q8HZaPwXz@(i|p%)b;No$E-tBx3Ltq4
zmGk+Ia>8!xTC@5{zJXnzhJQzl?7%#YrT(Jz<YI4S@Ybe7?QW~hXT$#;5C&B^XE{Gv
zbe)XKO#bVwf{Vk8?0$Ovqx{2G9=*O*e$Y3|T;Ei$tDpJigF-dwj0Hdht|;9?PnDb9
z%hP?(<b7m|(G-lgpP*#mi>K>;7p+@Yt5mr=CPQc-XJ&%3jGG*9cl`ADTjp!7setf!
z;m}z-Nf4J|+zOKcO`7b$s!Xw@$g|YE1NL{s5SM02BJ!@7Va<E&zR}7y2QAGK!#;kG
z-yd~257qgB)Jk3rWJ`;GRy%8O;QBi0&^hFBAW|n<PTBjUE^+0sMCjL{gob#ht>012
z>-V|LDCkCgFGgI&ohgoV8_Xi5*h1vNw$2n6Z}>mQ0I9F>c_7TCq!6rlCjnq?Hfd}Q
zU@&I-1rVJB=9=X;u6f3fcsC%t>)<{QAQ2sPFgiah<o)hf#cC}h-)e9uqHpHU&P3~|
z*YJ^p<hl1-HEx|{Gs}4C=;xW-q@8xKfvV|l*$h2pCjkBjaLmVtqV{bO*x=HIKP=Q3
zFdoEqd*%H`pd<p6&^_nMKex9V{<d)9ZKExvC`jBJUvdY+H{?Y{MIRW<ghey~=Ya#$
zaOi`ABdqq9K&zYI1Mx`sd4%PkPnNkZam@4U>V58=d4;Qw`xTwcAL^n8=Dliu&P4GG
z6}AU@894pY_#?uT!|gx@IABu5#4F{dbLg3k1iF+6cDr+#^pOVeFK#y`2%vnevd&~=
zbqvlFNG4znevdjUe8Rb&ZsvJXtY~}S3>oyGC^1k~rSJe8*g`Axj5>Ekyxnw%c09!C
zn`D!}Q;w+n=YVl|fo7!R&V9K4MAhhTAu2E#Qb52dL+i=jl)rs4Hk;ThIC{D-)%w;D
zn>U1jREc%KLQJbUxwswENG<+)<ft@P6R$H$&}qHNE0fg?8zn5*t2CAGD==<XxH1oo
zZ_Ezs+{5kU0)A&c$|sCe56#m=asOIZu+LEgFIqHM%C7hMGsaiJu60Qtm7PI-_b~Oc
zTFe6)h;p<o56hXubAsWSKzhgQPlcBpKS-)+ZqZ_`lF`!a-q`4se3r{M&!-kG1j*+p
zITi_Wpk-Rq!Qijw`*MG<+*1idw(gficks#Avwdk=vW{V4rvpuv<=ac4TEDt$x&0Q(
zJ#>q?csWdEuRYxwIQUnq-~cv<e=e#2&yWDv82cmq06WhIM;8>Dfrto4(Vue3C`OKr
zdh=m^0b}@NhKe{45uzYHX)Tg<B)h4CcJPfAXxLIGsV$;a>jb+|f9bPzoWs*yY0<In
z)k4luF5^&8$L2VSnJ8Vvx1rpW-LZzgDX%vg73zu4A_8OufxnMzDuI|;$3H7#SVv-^
zVo;Uk9$&=3S2_fLCAkqEV3vp_I@nAL5~xpvk57Y~d47J*W#1IdaAw6fyRz9YNI_Bm
zZAiBEW0^X}91q*ZdyJL~(Exn3QN-J*Wd=qf%~`5}XA|JLmBzmN)mR#G<ksQw-ZT;n
zCrs_1D-!#=y7jvi+yLPC?VV0Wd^;F@xkR~1ug-T)iB+RvtSod-{TB?*WeOje&g=3H
z(7%VhdY>*(eeZ#$z?se?;lBKB&$wn*I+5~9Nt|N~(ZOGfGc4S!FXc0VvCnU@l4Z&m
zOhzJ-0Bz(#?XQy;c@07NG-O>v|5PY|+yCDD%DX$UH8e9JALz^^W<u+4dgcKMgI>Sj
zCx|BL%@OmD^FTIaSkYPF)^_^=RyR0)I+D~@QD5iBo0H;Y^tQRdQh_R_?^;Ptykbo1
z*E?UorgK=%+LznquYbP!S+82zTlHPV26i**e>oigm#HbQp8{O1Tj%P4#@)lF??6{T
zbd$fSvy_7TUa4i9YO>B)T!+X7k#$PL%$b4@1qb^9#Q_P}ADe%9hu$CT8ya`?zcv25
zFy=K-PBz=7v6C)ma8`}!T6}a7|K}e!5nhTumZVW+5Br-V(Z119c^57Hb?T`~M9x$C
z|4WVrJ7Fz$-2;#j9QmG}^#-*l{V%DhvK$snMH_y4YEFEkg5?QFzgAk~?K=)jP?oq0
zl>mTAAKh}XleeXi^r>Nw(n5N&*U}-o{y$o`{_7v+Jz;$eGQKySU^b#bYO<cuRpSN_
z1EU(#wx{p@uj}eVqJuN^fA%H@keWqhWo#Gc=LKzT9Mc9xe_aRx*p3*1ySUz2jD79@
zd7uC5hyBZ|8aY5c^UxsUI(5~dOh`^<Boq2R@@}EZ*gU!6Th2<w6Ox&^`4q6wOP-#d
z!nx0V`q$eEc?Sd7|6QN%+NVDS9siph>c3gn@>D4R&zhVYk0)DkVBh|aOk{E{;Iir7
z!U48qbv}HT>VN%=|LU53Ld6DV6y4HeNmyeW{@s!yvL_Yb{|u<3qlKpbyleiqYx<Wv
z@?ZZhDir8IM8lI3{(X-B*@O3Q-}_(Rz`zXyC>pCnY104r1pZGGQ~!ET@K9e*n4|zP
zP5)={{2$*Pz=-YWLYr$Voh04-9a4X&29+211zm2hkqZmRRA%#>w-P6t(@V-s6W)8H
zr?f=709EmtKT%v)v@fpecA-1ClS_+Ptu%CS#;lR_EI*)soD?fPzOr$}ZGQ|`JKZZR
zsAbGznSf`)j);iJ0|r?~hv88PCeL?<m^tto!W#fNw6Lp70O-Au0D5P6!fFct$mnP^
zKnReux3_Ns0w<R1O{Mq99C_o$Cnn;jXJ+KP5rN5wzg8tRKR+Sgn<Yy~W~Sbeon{Hb
z_ZVVv0O@?8-^cq^vmOfx9sO^BhRUZ;O!p5D(}2^}`h0tkAo~iKyY<ZAc2ELvB!vLY
zbuxySgXu!O<gL&F<IGgmqN#C^@t}~<D*ylA|JE0LBoAcOFAk;W&Q+)R=yZGGfq$Z$
zE<xGSeav(jL1z!K!?ct7+6ic)Y_6B6#Q~W@spp1n-YU}vK~~Ax7UNoD3Cfx8gT@wv
zE^4yq2)<6X&dltR5y`e&a;ZRjvp(JpQ^kV;1Y))j4q$XFI-DsTbw(%UDgq4PBfo)H
z*_1>=H;bl#2?1B<CO@340C+6t4tvy7VJIjlW;@*-c;84?R4|z`o;d*!#5Ae6H?lwq
z4wZw0gY5R$_;?8_Aq&?21#9n<7+_O$^W+BRTxH+#xh7nXXK+R*B_|uKOPSZyIc)Se
zdn6_%Cb{aR4|z4mqHmA_r!78D4-YE?#B{JS8(iXTVZ2ZQKv%Kx1lO?RqTOdLU~nSJ
z5x;&%l*-<xFZkcqtN;28|K}@_DWu(l1N`hr7YNbo+djH{JYKQ+<Yot!J;T*A*X;F$
zRZ+4axQw*ViR`UD`>yv%1V~*v31fKeY~0BW%2oMUGo&aLKUl4=^?M-Lf0^Z?p->%I
zr*HTO=G=d)KfptY{i?nOC=UOk6aZ(t@d%@9LD<D7J-17s^<4_I)GG|^PzQ$rooX0!
zS~SEYMF5=)FzSa={=OJxwcQn?n+(e9bU9FpW(P(Nn&8`i0}v`D>`7(@mn|hp?KFL!
zH#J8_f18wliV<_dfBe(d`VWt$h@=?kV3A$U=n}&-gfp+II%Ofnz|-`U;Em!s^I6K;
ztM<A@xPb^;I^iAXC0w*MfnmX_{9pd-#leuL9Z-QlBkJVSm4uw$9g-(!S7gJ@pCg>>
z{tF?Clxp9$%2`Hm`MIc~@=^+;mO6NaZwEn#(G2SgV10K@L|dqr!=3_>N~gRE1T49@
zakO}k(2S4TId-rOX@*{rz~o+eep+IpC_wh49XkYiBw#?(3$%)G*#u&)ASmG+mgBP*
zE`L|NPuKzdHX<Sc3No^?`G{m5eUs1bf9K?hPHO;{Qq%JV8sxS^J;(H*g%R`b!Y444
zB>itRivRq9_>c9hZ!S6j%r>@sGdQ>6f9jbI+BBq*vZX!Vgh6%Amm3yp2>ESX`2}gw
zMHbDyrl+R|lA8K%gsOP%@$z8eZ>E%7rB}_ZQOqkD2`}d@AddHNCti_d1)mAn!me`v
zJcR?OQJO+vvPcB@_h~lq444kUPT7a^dT*Yr9?&H@s0k^V>FAJ1gPe^eDF~q$=fYBX
zIKV|9fA16jM=v&=C7giZ<>ADkrS;r`<<I#X>(HD1#LgtM9vz1))(_;g|E+f=LQlE5
zuXIY$JW{BuM(NHvMC$CqNVo8<+}ZwRZn)6P#rcw}e1c~^PgIF+F?5zPemHe^-&RwA
zV_3%ul9|@~E4kBOJO4fgXYFZVgi8P8!Im9F!BPAd1>VcAVp4oD;ebSGD_@oIAv*bd
zCmLeqeEd#Im9h7{8<cv9-j3*$PH54#_IzWP$x8UGBsv(E*axrTiZfdyA>aZONn`HZ
zkDkBQD(CU}pXgeOJoxl_fLr!g|F}4JdU?}ekILWz2rMPQ@{KKHj6b+((rP*sr;0w2
z?gtzl)lvsqco6owG2Zfl9UUE=q6l>n++dCY>WOw6H*-@$G|m*)>gQI64Z{wW&j@PA
zEHQ8SHKT)6OF7%IA{|dql1{$Ik~Vh%*0h;^sXzc?%v&oeSEburp_1wxIgr)&9`^m>
zaNgo#i=AHQp_IA0K0sC2bNcG}vuta%&&l=rO{n+hm;s$%(ca^bd7c2&@hyP&!jDp}
z{|LZiX%;Zv;QIUfhmR7ZOr>A0udMiV<CBv+wAyexWutWZ+&8QVFuXqS0+f8@Z=1k$
z87aeYMc2HZ&(LP)YYzt1LbsfYb*&-v%Sqyar@pofPFtxjk8vcw)$RB=hQR(#6Zq1P
z7LZz=10C7@7!~rG79LHuuH`tQ+qD1g;txcL=<^?<QEl|nX|T-vjPHl*@1Dgih?^qb
zJa{nvLVvYm6ll&@Fj<mK-=>5LRq9qK)%w9Q)6!la6)KVvc0yOC$#H=khlM$$$PJ1g
z{}bWdIL)XjEkBtV@p>UyOB-Kq%|C>tc1<@ZqmAxA7iDz<IFX`@<L3^L269l|_(jqV
zz3I*e=sLGFp)E!SykxTfM(c2+7pl{VnO_$q%{g^CO|d9zhw(=`s+hf@-|m7bj^})5
zj)>n36Gtd}%MZ5p`5zMt1#1Gn^d7&s+H>n)#G$KC<*DyrPsw&yoCNOsx@&7N@3oZF
zj*<>W)>;|vH|`S0GT0xvpxv&0>Izu5K~goTTURNysy#m&9S$sMwiKnJ{O^~nAw51g
z=Hz$ck|WGA{siV6$r9u_IB@+k%trG)?T|n(7xrQP8~cmniz;|gwzG@(hYj4^TXmXJ
z<iBm$1D+(Z?O$(qs9S<J<&DmbpvuiYyrU(`7;!_LOIR1j*G2}Y)cgIm7s10#gA?GJ
zulEFp^ZZ{6=aE${@tH~9b+Q%zZx+B-g7nRZ?-j>k<*6<S49MicEgQ6ozwr@U*^?L2
ze5M7}792Dt{4P{2oe0zh1lM=h-f6!B&8s}4*;{>S1_H$i6Qt+7ATAah#pC#wgHVy(
ztK*j>5DZtV%t&{g7TIW)$BaOe43mj;j-DWGW<+sEmkz(B%J+_2xA$+D(Bb}W<Up&X
z1w_yvyAKc$<$>twW~+;mO#1==2r}H}zU~=5Uu)!$xZdhu)N#A+Z5M$LssahGuJPF@
z3tr;^mTy@L>FmS9mR|0^#yeRu@e=;CE;Y6Nj-5DuB=W^k)?TI&GT<wBy4EsM4GOn;
z0w8qkzXweQs0F{-Fc!%Ns|3Y%0QWjW?yp_rIUg#D<GB?|NXNhsh3ACmx%qGhOgLQu
zjV7&Q)@`7;u$#gdHvW59O)^Ud(ueiJ=75=wzr~(L#g_&AA{rW+DMBM3QQP?{6`kl+
zz7;N+j4#~tMek$KPe>ABQIG!;^P6~+)6->Hd+tn(mx{elk83)WaN5|UH#=6A!!X{;
zaj$z64t7c90O1XPZEV(C{h{-czfMiNc7`(N!DEDl4M5;?DF9GWpFck=&7Bth^F%f9
z1rb;)lD7b`upU`15ZJs_U<4#50FG8O-l0IoaVkL_TxgM6i9-J00E#PYr#=jq`<KVF
zQsBb|!hU+5uJY>K0-+DgP!mLZ7h0t(I^<Tbh2t^+3FLMKjIqe7mMV%OQU)vqV+zRx
z2JU;O@w9v)2j);BjnT(*I4W?o;szc(0u#dBM3f0&g?gWFG6gI($glL;sQmzCg=R#}
z|4ky|5bVKFk8jDDzb~(J|9I9dFo{b9;E;b5=sqvEeOh8)t}_n)RVjqK57G6W+yKzp
z+VbBQb3FHnJ8qV3nfI-F+TN`-+Y)vIWNb)sa^c<rA|(}-xlV%Rb(kCM20Ab&ks+yL
zxj^HaJ&0_Y{XJ{&Hvgq9-ygU^96z%87wnt09UKkylD(93g%p9wUoK#34qC@F&hHbi
zvlGdS@GB4*7-h<G*=w8-Dx91Iw<D~(Z}`q@K%a>@EQZhUeBwVcPwP2NG$xG^`#x%U
zFJ9V^zq-x+m*p>TTH=)h#*sr7-aLW5`j%K`wKHfFn6q4`z}`j{7b-RqP~k-wEOaCZ
z40vU9K5r261>xRxvro2j&!MBd`)<pxan02m8F06Rr!ueDv))%kVxo=|b~-2|KEr#m
zy_jst;f-=Xs`lf%qu}qoi&HGhC4^Ts^jkvbF3=E$sb^y4Z|uiG^F(J@yWf0ACe=#B
zpZ!!Z*I@l~H>p-%j1A3tA;>1KXQ1Te>C-vrdR0=6-z#c-LQjlWE6MJnjlJL@PiS|G
zmF(9-xylio_}OppId~)7IZ0K{SAYEDE-{`+>_+CM0(LsL@u62#uE8Db=TgSK|092i
z@KSBgePX-6&G@v4dYeagarVq$jv%e}9RXKX+59TTUimewg?7S&I!VOm*R4<S?A(4#
z$WaVrX6=0x!n#=J>LmAYNe<z(!;MPZa@ic}(estv?d|QEJE&rQf`$}l7OgAaIzuJY
zHuKUU%?Fk)86YZ#QCb&+98Ufut?qRO*_EJIhZ_gXP^=@DbpGC%ZD#2Fkpyr~v9@N|
zTyw>0zYoP3w(hYTDz~yjP3w6r?pLsT=1}}(HVPzo5<VCSOO94z=H=!XE7IK~swiQB
zQgp6H($76S${EmF+mu+QU5^5}JgaBAU=&<L#+XTQ?L3V*LInCrRH0eM+b{ApiUgSv
z1rG-nr@bW6h9}^;1H)z^`1P0WEuR}C2dUSvz4%`+i@HL1G>V3q$AkO6Zo_lI?#Z4J
z3@F%SBDi!6NAU)WBL(=FDBg&OCIpdr{iIM00cj9Nz(B7;sJ{j3!zZOA2Erl2%pK(V
zD}fGpO&%Vu%`km+e93&fa&}*DZ*eXlX{a-b>tIc?eFvh^YYiAkr@`~f;L|Wt`-BRE
zd21VTs4HOD%Yv7cEY5fMi78_VsBuM7Sxwwh8cMyfv9T#3+=Y*4U@mU}EBh0g!q^0`
zNPORS8e1-h;edv7rR+>U33^>6$k_oDq|~*WD%^nP2B2V))7r4vu*%HJVu~y@Ha3<T
zasBgrE8h^WLMg)z8V~pY*PlyOG9>Mf@pJU(pg^c<B7O&BkJT17A9Ys*2<V`+u><$O
zVq=}=W0G^>o@(&_BuDB3z11PzUibgwD~mQhJUp3{|NS1onCN1?)u22&nJ$jbDlL?b
z*POy|7#JAXTb<tt>j&2WBduv&MgqPMuF(%sF5`JHTJhrkU3p>)fa@UI&jj%<pf1J@
z$2Ozc_!N-nSNL>KcRUm_KFH?u-pE*n!All39&~4r-yDf|P<dYMy;siHx3bg5%(Fn5
zJ_d$v?XsCt-oKZQ#pAEH2e1WMA_1`PFP}VTMk(emhe}ilrSt6Q7<EY>+<{vx<6K9H
zaeNt|&*Qi$;tL@N>j1HRy``ULwjJOl!o@Xx%N&n7j{?||z^h%Jjj5$=2T{6>r~?|s
zIup@JS(by@9LoWWvVA_+>aqym2L81+@6$lq6vG#uearbA&m}$T*b@~kB5_PwrnK?C
zAy{vNTux^sjltfs-Lg2WPw@7tp!1ANP=JK*3Oy>GI|uRav<<iE8+XDyzBdH>UTN$V
zrwyw;4^}}q{)HodT*eef4_tx{+Y{61`&e_oucb?n{{i#XIpUvoA+)2&?s(Z;<H_N{
z@Af~fz5yCRxz6lxvYJ>1d-H8y)aniMDRwmmJq&{*2#HoADD6*WEiHZ&UiRu$So6$*
z;i0P%33noF3hVW`7`+d&p@-?2t!ZnfD%!NZHWGNLW7hv$_34`n4*&_>yZfsgyMNDU
zr9XgxPjGI9yF&W&CYr^5$nTz8GY<3c_Y^;&HQMqT(OuvtbWUq25HR>(?)F%^BIeuN
zm6Wf#nT9fKEr=B`XtZq2n3PGej4fX#gP4_yeez!pi05<}mfOQQlZ;tKmq&%#HILJ}
z1C%Qte*h<Ako~iM#k&sVIkDOf!4bVOlAt<Gh^%uyctV~K>d8y1SYa+y?;de6V6L(;
zK7nN3-5xZVX0L`n9NI_YJ9iB6{@e+!h{oUT<KDgNHu1s|f@I2CkJ750rpKB*aSqq6
z_#>IZ2TmPie1$WYGAC29`v7!fLegOhvy#Oq*yvPa+#;yOf&_>iM@u0<HM{M_sf<6@
zG9E+g{l}r;|6%GJ9P0?Xt=~5GiJhF-Xq?8j?Z&q4#%ydiw%MpbV>Y(a*!-sVyYIdC
z512D^X68I+KYOqBTW?LfG^-fT`5S#xW()bDELpi$6^vx)F7L|S*i4HNo@fr&E}tCH
zUgaO_0&dd3TTamElENUrd=u0SHO<wOTYC1#Bp>q)vRTaV(OxB6MdL)@Qs3Qp*OPv}
zhI7{9$*;_2rQtba5|Xx&edF{2JDXPe#?{BA4YNO5VxK0lNr=3DzPQs`_L%@OB=-mg
zZ$0=uBX<yzMaORQR?Jnd++S&!#vk|t+Qd;m5gAoR>cU1h+)d=KM!^g>sKYqg@qH~!
zvQWx#myZ4iE|S)+{TirB-_NJl$%Whpadz2fTSX@A0T!eI=6S*JGr$g);t|HAQ$I*G
z<VkSGA?d5;b}y#t2W4#ifVDc~Fb^%)^ivo~2k>aGAYx#_W{F%Tyfld2az<3eN|Zcl
zN4;8?296St$ncVpMwWjlq8FPJTmu&i!Xe=Vwn8N$=_&_na+*&NXd#A(4g`xr^9GVh
znlg8J6)IONn<V^QY5DC)Li_|xL0<&0<76PASjlebcIPt-ZG$!04ErFp1V$lJ|DlnD
zLBr*W=#aQD<lONO@G4<*Ehvk5qXcSgjj1TKnTlw^y~QjT%MPb`f?@pSJN#y2IRDa7
z1E)0Aq5DALF+kPUL5|pDv!qOGYg7$JBEA6vO&_m(AQ}6^P*O!XKz`7GbXqEK;dSux
zS7(4U$*3?P$~DnwE*H^5G(Kl6;Gp5FqMk|Oxq*N|mh7_@2Hu`;<#N=j!gA9~&RCEl
ze}H`=#hs$)pzhFWm=Fnak$!0r4c!EHaD6d1a(sWS+vbbf2{=3y+}|t6{{qy7#iUu$
zp!dA)vf)rJ`_K3P1l!-7-VDbF>mZL1M+3m0c#H<Q&+|>5fPW%sD2>W4<{JsZNuY-!
z$x@??2n9#r3}>CJyf)V%1MR4lfZ!-AG_}@jo2ly@00o=+dAkDw(&SaQ|HT{7MX)<<
z0p<5zMw9s@(UB3ZRVp=t6I+sS9Z@fVUaE;1_Dg?8>@^DGpUc<K$2j&T0FP4dR*4IQ
z^)-PXjpP7>U*!^=dS(0&eh6<CPnwA4q7d2uclcAXAp?{?GiYsI_ai_=fnR_a!~9yH
zQOj`FMv70n-?N?bZ;2f|H4A0@1=$bp>(T1`pVbF2rRKnHN?`kKR%8;0`zm4YwdV1A
zUKJ@}#R5(DK>v@QbXtDFX%J0wklAi@N9c;w<^Y6=6MkTKV9a4!-3;rI{C9TxX7jI4
z5KPs^(asd;?cSN0kNpMS({q3JwS^*;rkC099d9d!E~;J`jo_Hhyxa#?)pkw^nO1-)
zm7~)w3O2Pm1n|uiCb>PdS`5W>l0mlBYC)9IQe(lEJD%HyxcEr-=k*<^RnZooe$m96
zH^6k=FDX&!yF%jdMY2PeQREEK)9=Z?VsSwk5YwGW;bVz;|DTycGStVo3(6wh8#6fN
zWYT0qpSFX0N#Sh!A*wxxe9bgpj|9YiD8}%wwWkn0Dht);rkZC_yk-8dsl5(5bk(+-
zZrq%HQL^_|At&^X#T2XieWCR%@pvlxe1ac2<uOC(?S;CnCCOp6#M1ZiG~yvt_K{~-
zi3@cn%3PD&_qZP2Skb8wDwxDt$Do81wVuj3Lp~Yec(S)kB@V2LgjW1=?oh4wjA}ku
z74eKHv2N+4qZ)*GyvAUb1TDbR@1=H7L?CxaD!lCx!Q(Q7M+Y_TYZb<fQnq}2MUX@*
z(5L3!*QbA2qt@j)AkYzd3mQ1UoDJr+YNVLVASCCWDhLW9lo*0w`TDkJoOEI!R{_mf
zz16p*6ijEU>6a2ANxR#F^xGSOo{zLT!P9xtrl3*aSGaJ=iQOiQ##rw?Js3pYb$tI_
z6j%ilpsL>T<$P9o$C)04P-oKLo?X1OoiDSxZ%l<CU$m^D>=LdAAACYjOiFFM40x1V
z_55^XTCfAkOS~m*)3eZfl9m0j$p?e#%qWOT2!tXLJKgJwGabB>9ewIRKfAQzWq>wQ
zQ8J97T$>am4FWlNJTZL3KQq%v&)ZW)2_g&&^lE;P;C#EQbvhL_^|0cIR7D<;zZ_Aa
z>sR0f$`veVzg^HVwRVUqqrwS-EjY97SEC>PJSxZ!AmDz4t|%sdV;Cj}&js+hp8olK
z1g}*b`~W44uWQtoCt3{qZ5RRKBhoixW6^@(W0K>rK%A#}4TBNpx4>aYG{kTQa0wW3
zMp0?sVg)RkuaC1F#FE1T;u0DNIx+tWV{`;4rfh{ul>i@o8v3Z)*=kwP;BpYS0`b^@
zYhhGy^P>_B`R5x{NbRqx>ffHTeoC|r4SK>TgC)5}^DLT8qmH~j9Kr7Ri27r;$?VPB
z3z0+RtD>gG5(_YPjuK44Mu5kUksw8J_VIN+>4IBm#&}9kg>VXhn?pNN#sC|liI5a%
zaq{<X6%AWZQH5?T_I;MnS}|WN3jc%PgeyC8X^?OPlQ^iqwpvIHM6Qk_X&U(xz8*K+
zP&x+1WEJ2$q0S)zl_b?7Tr1aN4MRCnp{?VDccl<eJys%Kk9+CWt%u<|o^ZvlVF+Pt
zz@%A6f+OpCZMhb_D&@d<WR)1KTPa#?Dlmph3XKps|8(u-WQFv#aBy%512Phe6zm)t
zHb9KGNYoAz8buOPvW#10AQ(tCVj)31;7EG9c!lft3ctm*2Gv636AWk<XGFFI-4cIm
z`_wWE_UQ{40Xp`gY2L#yx`LacONm)@^;br3bQ7NHiQFn<cIt;lIhgJ4tK9#0_%n+8
zv9rv0a<g3!718m#)azkWYVHou8qT{St@ZWJde|Z~XZ<M_RT54-nX?V;*6iW@jF5RV
z3Ub^CFp)wV&@6e!IK7B>8jOm))_9oxxn72$&z`EyHd>Gk(?!T=kQjZ?!a(Zt=dBCY
z114;w_eVAlX>&<fR&fOMux;v_Rt5VOrQQ01uN@*(3kP3m4fm7$mx~(=hPC9t*^M;&
zkdFHGiZVtJjDqa*M9J@41Fy6oZMKxlAN=o9?QYE@1E~L5n*}L^!S|=g4KrE2t%8lp
zkRox%<Lp5s5veRmfgb-}Ak$I7Gnq%r+U5CXJE&tyyKWNY5s)Z{DNwz@iSkOwCAL5c
zp`_I9u>$?}atOPaF1$7R2rJqN3k0-G)C2~dQY`79d}>HjezG8vIVgZdG>@d5;Snr_
z276tdH3bm%2qR;uAxMk8B?%dp$9V!a#qppq`C@cS_dr$#QMnW~pYcr*Rbld@&21@g
z<6QNsSHoEH>*pR(tV4J(VTy;6LU*VS&pcU1S?i0p9H*~3s6Rl-;Yc=l0hhzC0<!1|
zjU-9JR?|;5vp>=53Qb9B{+czenIDw)cHgiI$Ue3Ckz27og1ByWh1GZ@UBThKn|I0z
z-720pI<K#Kt{WP;Z<j-R?ubB(!&Zn<_4QL3R7g6|%aF2Ay8J^6#X%j9iyDv@0-H#Z
zR8omll<{xA@kM(DMhF#>5X4znP|)Zh0iie$B=jh&z^J;nWrk6%4K6rL{;1|9)eOwe
z>OHizGoXOm0=G?2d!&}933ruD79s@FG6WwbiAH}Qrxfdkl#&3B_00mzJiKR$A;BkS
z^=$DUfP2{lL=S0uy<84a1cI*R5)jnB#Ijy|Yo`v^xI>iodb$QZZp!0IJ1d6Ge&@P%
z4PcJ+EEpmb{gDV_64IXgj-cipuELmCS4|z1PdAZ1g9C#>nCz5~2hptfLG>X3^aJ)A
zIG?8fsQ`FN$U4+fq)4w~S`t;flioLVK$e@f#uk<~a845=qXP25UOi?+>GB7nz@tSe
z>PGEJm8OaEbAqg)SX!P@Xx$r>BEiBPBxUMY+=aPt*x6gEjF9aDZF`4xTBrPO9>sh$
zyT;E4n7xW|2LQA@F9G4!R7hOi<UWhQv5S5T^B}St$-I9e%lzr{7asGhzl-znxp3b!
z`jxi%|94y>7%KWffH4VI&!vKG9g8?{*bQR%w?Igu!r#IoV;*YyW*9Zwxty0iE2ZVf
zLKnB$^CX|X?)G>MLA6MWwOqh-NO2zTFe=MSwfgm}&{+pdS>CH&Zb;Qz61I9pS*B)s
zk8yN<FKm0hEV)?}s!H(lr#F)Pxs$*jrXzAa5yWRh$V%TCealRHR%q(|Sfyp!WnmWR
zOOjbbWoXv=2{9a;oqr&Uh%05M{G}l+LESSkRes4|Yka)da&fxfC-n~Iz-#;~wDlQj
zgp)Zf5q)AdA{*awuZ392OgmD&`@A)Ecx5q8{(M7d1?#PJ@C2e42x0iUE@3)1(c@nX
zXuFQS%U}@k;xI~QM6~RcM`Vf}gsQ&FJCd2OuDKfsT$U8$1Aye@?d=Ji=IJhP8OK=$
z^-{zIkbSz>be*wzsP4PGcH=NsE?{<zXhD^;C*ZW#*Ql@`OUoR{JhEK&tNuFd`>>^J
z+tV7j`PCnf{a9Sf2Vh8UmkjFnms>5yf*3{HM;d$HmdRIJ1d(D6Q*^$--(yVo{S^uF
z2zFsWB3zc~jQOLv>T-=<?I;hQN_sLV*CoPI)8!w7zlg@Ux&pVz-83LKBIwAvS>PdZ
z2|J$k7&ktScJc-KhS`|K+Aq)5DgRl35gxFXnc%sp!1H-CH%`4!NLBi+jqjfASu2Uj
zd!gz5>Hb41-&42{vRy62#aYqP6)JqJFT<}^@w>c11&wBJOlbOSBPqc_dxN0t4y2XE
zK1|1))TeV(lBYdBkbx}(t}D(KkT3gzGBv0tL&NhoQq230<Na0s;e`9>17LZKF!!-k
zt@2bTpUETqm$hDgcv6Ph5b1(`PDyn4t>suIa5@Iyx8zu?sKlPntgE?L#`)HF8#FCr
zxXE$Oejy}aeDaP?ls_%F&cqJKzX}Sq8v0a#r`Yr-2Sc$i;X-&{;m9bfes!To6i%lv
z5Ad*;yUDp%aj;_tXjKvQH+ewH*SrbQ>S~L&dr%qh+6dg8Vb2*Y@F*V*{b-N4uvm*W
z=+ahgigL)*=;82ucvSv1;vv1{p2o<4%E^g<p;Y<X1M*2lvj%x#I?3;pjpCg5D|#HP
zJF$Ia>tC;QH_uzF%j{H=<t}+NFyG5-$kR65m*?x;r0lQUVLsMkO3Cv3CnTJg94v^J
z3GNvS?6@Rvy|zxrexNV5<DA;Oprh4{Pk8ebHMO)!j-Pg-3uU4f!_Rr2ufavWGFMR%
zC8si}6oIo9R<(x;*5xz#$qw_Uaz_O@&OP)6V-MHOF<(&88FjV1As>_$+M<Nv919(#
z^7}yCtvw%RV`flti|8`lM|`;4dKU*rcS5^WkN!joFE^2IEGs4XK|Z?8?zsjfDTZ&Q
zeY>+z_!x7NXg@AF+MXt92@^Lx*rTp2?-b~yNV3Nr@t^*3ZP*7`Rd8$DBjooE_jtvN
z3abfi!F>@?KlOUWZ5|TL<vbG{ULz>ezmH<ARQmGVL5<WSuKS7F)XxL(S9XlLOK|sf
zLjCV0^!b{p=q=&(3Q-#oP<Ba8V`7lJ1!Ic@p60TVlHy`c^0w58U(<|#_}EEzsuy?s
z92j<jpTlLC8F01k2J3F){Rt-z?`-S4WrqFsXh%6nKj10KHYARxO3HWQqSEnAhtE(U
zH=lfGdU5Bt*1Y#~@HWYQe8L_@_(nO@uB>Nti@$NwxT|BIZG$qN%Y9uOw`3i2+(ij;
z(_co|Hs*MXYu0L<l#$*}b2@g&N<h*m0^XzP|Gh1SD~aon4;%bE1!O*a1BOCOYX`z>
zqZx|Is=n2-63=(^jEwSVIeEy~=;&l;-h|(+3?kW_j^}8+#fpWKbGVF|$Y5zo@pqYh
z1f`X#EtBz0y-lljl;jgGLEl!i$W&h4DFTsq@qE69ZhZ<B2O%0NR=I?HO-oLufOFwO
z{yCJ<NlxdynVYi-i1ChEij_Wt&IOqv-xQ%jV1>1C_A{G+5iQIBVQVZqOFX0yGyNEc
z{klyWBE1lEV~({%EJ4Bm(?EYV1CX+49nT^oeO7;vf`5?8LSXK_KgO++vBTxK9b$-m
zYa;u#Lbgr*S2yWm8Cw%n8_p0U`IpjVZlgWV^@_JZ`bxwNIC1MZKVFCTD&_!qVnkz3
zQaw_n>&0~faWAbjKKCOofh`U^Yp4am${O(W@gn{h1exs3tGK7B7q8<wE-q|!P4`o|
zQX<yDSX%)mt#}^SLAqb`#6-H0OI;r}ARG!65M34e-`cS>9JZAB?;-wrXTyDA8|mGv
z)v?Oobux;_z0v8vsy{Y@gETFkP{Teyga#+gWXF!Z$4}V5&YEee;WZcka+f9NM7gG@
z@fX!AUv7mEbMFef^M5C$AZ+OrDqL=;rdI}qRF2O>_FFZbsGMXD24fpWTv8oYFZLA0
zhvR8C^pX-R3Gxo3LUs$Rd&)<}m9C_n`QCfOml}C~Z`96)o_l#(vFOiYvYc*ww|cw{
zq)lMA{Ik+P&Gto{Sk8j3U5ZXh+voo7g!->jkgWZ*IXDn@ss0_*0ohM<FCbNA*DA6v
z&}f)0)-||xd2^FzIZO1N{EM1|s3;~$&qjE=n=RuyuMK_SCD~HO*TaJYGJyLaDVMpR
zF1E)(OPln?%|@JaV^yiuGfiGgtEA;1-s66)E93<6T7+1w*83idw$xTnh*?%)vLMsW
zifQ8l3eIUNPfGjs>1V5BOJwGtoXOlwF(oI|pSF`~qHVcL=F5G96o;4@waz-CBFug+
zq3W0Y%)zTdio;KF0{r37h=)Z{B$rsmm|O6Lfzke_b(Y)TPN1S(UgdY%wVXJ4hGOdL
z*KVZ5zO|g+PhU0KC*+69kSX4O3!_MoF>u#+Gs}k*X`;k1N4hFg&eo28RSoY*Ti0J)
z#ynA!>{`HJ2>*@0fg^Yr%rc*|tf3>ZkauirSJckQR}yKVQ|Uc#<gHk>P9}S@{#gc_
z4{Rji-XXCMvjhr}bXUliRQdWb;g+V;lz5qaM@gE;+@}yP<kv5ExKviZ-tx57Cyg4J
ze7O$AzxwyH&1GctGqoxWD~jby{WqK96d4P5cB+LtUzeZ9S(7{mQ*hK9o|*e3><`VG
zu)0dce~{Gcs$Ws~vZ$49h~xj@@8zK$qkMa5?m=9cPjwdKVxr4*nw^1i95;yH8fXI(
z2_8xXC%CT)CWzS8T8!4%$(1ixF^C}^$~mG7)RVlBu)<n6blBL^c<%rxcs`LJ*<CIr
zSd)IM*N(_@19UCWZJr)z6`B8?qnMZzy)9UqV|w&x<r*HTF5<o%&j<ho(oAMVhkp)e
z#c@RV^_WjScXXn$bsU6ow2>D}zGSK=nfJsLt0Luef=zaDy!y>;^)^JTvw;Vv!yp^)
z>OptCHu!30{Gh6wu1F7|?{jc=W``yj4r%vOUN_4+=Q0~(8`+y-7FSN{qJhlN`t#`a
zLj`Z|B1d7GIZ-Va5jFN|IgJ=%XHKmA<Jg&_n(IZ%fBqn*$Ud;-=Q_L}Yqg}RoM~@e
zu^+~^&DhcpJMi0zkDwfXqcbS&-Xkz5vzKm92}LU)pMkr|cK^Pz3zP1|bc$(erV<M#
z+&{p0)%i(QnV{}&7wB!oAdEfS;iA}LPB5m>aQ#d<bjPz^@{RO4!(L@TKO{`?RAryg
zn`%oXtqr@ita(DE;8Ig#zuec+_C&uar;<UV)w|hxyEwhGNJaVcOkq1NO2?y2+NRPt
zZ`@`E_h!mFrhXxKsQoeQyI!=CcJ#bRj9ObOM=84it5hqAg7a}FYw5SbQ?SEP;-0-=
zGLk6B9P!@6d?KqX0a55%5Rasf!v-8}gu^3jXlXr%H@Wl;gq==u0iJ#&%tz^WCm+KB
zR?weKyTxG#6aqUorBqUMygg?QWO&U{K^I(Zr=n%{)dFHg{#kT!B-SsWvLP`Aj0VPX
zsyo~=E$xFLe%*Rn>~gRrZdo{PazpIwjtWj4Ms@JkFHC68;!r~K6AtP6^Ha|~3mvYZ
z(|M%(3ULn8QH-N*Ome^hh0kUI7WfARg5+xb{);=xoNFS3FR0Y%-B#7WaWZ{|Agt?F
zsqL+aC=BSA?t{aYShM2N&cVq+Ng8vkEU%r6C)fHh`GES9*1~;lmL)vEsVZite7NrJ
zVlI_#(!tQgqS7-G9L^4JBKqnWh~Q++xw~LI{r%Q@k%P~<SC{7aL1$5A)p@X;$owwK
zIS12yf@`*>f~MwqeopI*?te8i%%3o!KCY_%gkr9&C4R&#?$PiT5I$~B-0d41@CfQl
z$=OAlwXbaT{OYNNV5IQ9gUWih4<mow)o^Gd$?L8*<P&*@S^oxU%?Fu#)PokLf{<71
zT`IC(*}PUKlT56*8yRo)6xyQfb1%t6ge`e8imgw2Tz=s!%89bR?wsfwFBKs(X_HtM
zyL|v|#`67m(8cE2YpZuuG|k%oS<=eCgQ0F{b|vhWZ-XiswwZa6OjG}B1@`pdj-xU+
zVyl;DCg#Q+qXGDNbL&WKynVwYT*x@T9X2>}JCNNUf8UV<z{yJhAD)$^yWGqW>-P5x
z?Nb^M#_)Ikah!9~YF8L^!2vkH*LgRn>}b>Nm<^oe2s2nrlf*9Bt=)b<O^XW)*QdB0
zPFXS#S&B0zG>yqa);Bm0#8}R*hIoA~6lb@U22_YA3rMCu($ejQE8W6X2)n}3&a)*D
zjsEX&5vcIMcE+G=(?ai3h6!mFm=HMwU1H^>%hfi~bj;Vs-S0!YNMBCs|DeDRlldFW
zLNxv!Njb<@@;hk-pi!Sbqhb*n`V>yJ%R1hpBUe&n{eIXrE9Oy)X|M*-+B;2F;I%Q+
z9R=xfZgaj!r|xiA9(ycUYe+4CQ8t1&W9sY#>l_ZyzI1GHmc2#31+ay?PS$8MoZ@M#
z4y~B-Q*#(qsYQl?tz?2qglIs|)wq{A;*3crHxtE9<DoP3W3wBH9^tKNZzz_#!lm_;
zM4Ac*9FwWXjgmuOh@O9jk(y)>hX)5rmL(tzY6en0mBWU1=d)A0VT@{NkETOlowSl(
z?U|Km4;aTxjxf`;XfJGU^YOYcD9XjZqV6bRE&OOm*QMV6-u$<CU_O&wIA6hpi`~n(
zbJVUbbQGKfKQ9q8PpU$~gW7VFXwp0vEMc0-Ek((@3VGSS4<SM?T{1}cgAU)_ig+F?
z{QHwf$oH1>2I{EnLsa477QrKCgVH|X+w<-1d123~8^TjURB5Eo@_}lG&`o__lLFKY
zd4C&4hD-=cXXU8jQ|2b#y9ZQ54<(wq^^hu}K(t|_jAI5RL0CHRl=EEZi#ElbWAy3B
zgM)`#%|(hJu9H{uN^wR=DU9+^=?FA(#dzAT3biJSF!%pa#(TpGwlN&8i_OH;0-{Em
zOa~Q&`KC^pFzSQoIx7&%z8<%fl!1F;BLx%uVtogF#zpiIV}$nGqC(xnI<zD6-a!ZT
zZQSQ1Uz@hj8ImN>tG8Uq&knz2_(&{FywgLe&@+;|8q2Na2dmGV*%>6JB`>*MCjoH<
z$K9M=-$O9aU_rv?U2wE{0kA>vrFmc@je%e0@6SsJ92lpi)K_J&w6uf?`l3aW=OD@8
zkQ@EC^Um?i?6omFHx)44{XS<pXH5^Q{rVX|($**!6{eZ->i3YInNXBEu3Khl#9L9o
zZoOYfXJ0thG^638YCq)&N`CLQEHsMkmV~9(Zj@~I3bjhk2?+M?ZKXn7%#+@`5Ozbo
zx3x*{VoRz^wWC9V1h>+h&HjiJXB5?suMk`aqMMG)`0-<}33jnS9RC=`5z2Dju=!VP
z^J($YaTF1{ger;cd|{k>BXO&{2Myjn>FUcw4xdiD`TP!)YcC)co1)6~A=L}l;N(wk
zGqalEDo6N{;jng6gI>rkG58T8<Q7tfy=Bh1_qeaD{<hpNMI)}SZ*7f!Dt|#IG}tfh
z=_0*U16s|ttbNp4rC4KMTgg?`#312BR)B+#Xu<FX#_@?;C4qn8hGl<AdDeUM_5b=W
z@}NmRSh|=#wcx4|oL3Ni1VP3zdP!8Y&i^?mV!;{?3KUL<Cr3B+A{~p^%au%wk)BPe
z8IZ#+B_(=1l1mn)O7SZSC3{|#lnYxWivteTA*->#E&sep2v*IR$StfXiOo-9rD{z1
zqRT!iyk;?WO`Kp|CcKjZWiS;Pr@wF|d~}iTc>-(lv*OG%qxqe3jvVqxVd+)@K{!6_
z$ZS0wg2!^ApHoRGFyb(PS12LoC?!?kN03iL;=q$9v2vUex(Ozj;Y`Pxl%V`ee(fRp
zS5jM|*A6SmG~gkH3WE;pdS2xKZiyVnQocx|gVIZ$+!g*RT-Z10(N0AUp9`V<JBnc+
zW@-$-*W2&Hk2T$@$0B;(cUke402Dyu>=H1f*Ca=NgYCKK<LrwGxWvDdtceCRcr2IA
ze=)QMi=;%3(#^YTOYQ#D=46y_k0!4$%-q1>;&QvJ*w(;lOqAf)D2n<V6-%-F?z)c!
zoeAApEEN{?S^WGks}0?^r{~@!0tdI>q72B<fV_gnFqbBu_t!<Zf~^{DEzEE`i$3(B
zAL!$|8p&tF{Bj_4k>IG|{<XUpCy8Skrpf%r{gcA+)>P_J)0(SD%_5!#XhS_^QT}*@
z_jJQ{JJnFeAZmhzN2?f%(rvm1=s-cj=YvIzo;@lAHPJaeh4{u5IS`6>sF)siATpDW
z+_#uF!lz49>7^be%HBbp7K#1DFn?w!wm<~b)yigG1%@HsLN#ZnJ)6jlPC*{=569mW
zt>-dR9X1H2or|JBML6D5-Kz+dc%HGhJu&8sa)~#u)NW`-u5k4<wnix$W!b<-h2g#X
zeO7CA;Ane?)@oQQYLPq3hY+SITHAxX9~)(n|4U&r>cxNCKptS0!!P*MmOsNZ!0)sQ
zD-^<s>U@nhk)DZ>tAJ$RHQ_@4%k%Kay(r2^^ygpKs8phqYA3#97&!M1z2B{i;|kIx
zg-rgX^NW`!oN#ur*>yYi{z8_*Whnck>!SAeBT>7ks&OyN9GnTz(!@5sdzX&cD?9Se
z8;MrYOJNE#mn~*1wrEAIwT6_O0pQO>S$EKwS)2(+O0`=dN*MfCv`dT__}~4sOdI%%
zn?3eVa-|f`f_09Vh0-c3du?5Ip6wDud#3VVX)F^=4W^J+vHR<hiCT`Dad!KH6=bm)
z^L9-1sU?~-A9>s0o7SeRtMghtd*GpdkfuW`o6d$wFCqutZyjv3C<ffvFJ@_XKGgCO
z%l(i~Iw}cz`5(<*ZA^g1j}_SC;M$ii0p+uO_fVciRp*bFuS^#oWv=qLm3+|Yhx3D8
z5%wtgaf<1T&Kc21`1Y;R#|y`)uej>I!N=0GVxyl0BPdj-;`49lp0topHghIwNL&&s
zmG%dM4rk8=lDeMW$4n80#o&0FG+SpFc&}64Dp6X+xbOK44DN)(5YXMfPt~QQbe$T~
zhOfB*oOs{A5$8;U2XSyMQ&qzZMNNO*n5mA%Ms5m3XYUnO(&=)QT^3$uWY#CRlRA2R
z6iWM=qPX?Rf5BslcpHa$m5QHMIT-6+2$Os;tp*gd5*#q0jMO;D_#CqB(BiwLN`)4W
zS9=_5Cd<cEsvq*5%x$G{e}B>UUj=06m&&D=ug&UJ+Ll`GXKYoeJZ`5`+ZpVvulm!Z
zE+4yiRP`DO8l2=1g+~B33x&QJU*06Co+QtVdzA3D;09-@Q1?syV@{0gdO80>%U^0n
zMR=EiO;XjZvb(+H4nVd!_&OpfWdVtb{Ote<z}6*i0WPT2UOmci|EKG-N*(n*KkfPA
zyF1;ta$a^@l)Zk_-zg(VyG&o>tTC$P98XV9WB{2f`n}HheQmihq9zrs^Y~nn<IiFz
zz+6<!LUPv(s{;6nl9<1g>;LGvW4v*#nc!R%rb|`=sR+S34>;IuZu5Y_0XOh|u}NK1
zo)@PxDbM$ZhZa>l(nk)HIedwdu^~)780)nI=9z_VSG!W&8V=cFqN3sE2yn=lRi{ls
z;x_{VC*oBjl}|3_H4TvyxW1XLG&b$u^-{$LjQ`8A`QNU&ybM%WM8r8eN(xF!_{DNF
zWp#E=-w|~b*NUAebM5H&v8VG!<MViNZJfY7EWW+Z;dF`@Gb=|;8&=1rB(_Y8RP$-f
z>n|C;?~(|BL$u`}POQ<qDPk8&V{lsUX_%iXm)}l^QPkvV$wN6Z7>w3@Z0)s4h7j&=
zThpoz9R-gt3Zz8E;}Of`uDZtT6X81I9-vV(Tp|X|mD*xol1*G4i1u8f470tgT>PbH
z&`tmO0Ell=JvKk+)PBttXB_wp8yJZZZfu>&<yadXbi5^k0+3Wf!$nsswf5USF7{#1
zGRHQu%_8j+@o8HctNY^dEsOT`t_E}%>)hQg{$>X}_yLNgt3ZMo2CbdbqqP{ZuS?^?
z#H_+(^S|V%Xk3J*mL?eF(}Lt#m;yWut1t;;zQ$VCKvpR`?YsD&Mhv>&KTT8%0kVAU
zd*_LqnLgTpr$je;s?&<mnOHlj$|$eY-{og6TV~y0IyIsvv1Y|-(>rc+1)!!UPr<-e
z-o6{u=CAq53}h{Jl@N|}bX&fThp%aT(+%eh7r0ovhP7JQJ?5dHfk%bu_Wc#48{Rr=
z-923kcm4%KY37*yMD`5GhE>E<{r7R<VO|pcp1+fnUg9tqQ>+son_@{y=K?{nGrARv
zM1|0tX$#ah*Qbf>+U~C_ElGd{{-b;6lEk=ksp#qyFS~Pf3a8I5m_b)9aP^NzjBfZB
znGkK!tI-(k+Z+-h?N*kLAlN}t@`?{6$_l^}?YoyLS|;uz36@1s2Q`~2dH|!Zgc@q9
zRJ47jI<<i<kIfuf3>d>4!`qP#C5Whck|3ATUq*8LbLO%u?J8v0q}|L6!HIqb3=M)L
zEUo_T3_Q9#!2z%`502?jZ6L?==UC-4%h?#69*)o2&yvRfQ^?qm<b?;2t0FirblXTV
zVuY^Za|=z-G3FJt+9oyal8nB+`c+BAQNA`hq<@e!?+bN2`^Fi9w=Kx9R8^PFQrsq}
zj&6TAOm?oX0&5k$u)lPr{rTJa!ZiDxW)0*K-qPRg+u16ko;}qtJ>BRgS$G+#{OXSh
zyW5se`h}yVe6T-+#r24=1~W$#X}ikr73b+E!c*tlHAwacBi={9>}f(JObxH%XY`!l
z7CY;Xi+w0}LBOKV`=|B?Myx%po{xL6YcivNP!#%yZk!crap1*;!$~R25Ey5fW$zdI
zeN0lOE;T!iMzxX>C25V4=WEo>lgpkLw&Oqd9Bv}Mq)u!+Ld;zE6lXDVnXb+8N_Bay
z(u##flPwB%D}g#RXF=>Az=2szXS)maXm$Fh&MoSnVylzdCzIUy?hJruEH{t8kaqDE
zkgk607fe$+Skn*o+N*;`qW51ccd}wE+gWag!2;L(lajFkje@G@dG1M7GBwxnyzVIO
zSU{LxPGTvl!BD{Vp`I=0doO`&jCX$Z^9&>2*^M!vl5acL2WRvOPN?llpNQAW3joP=
zY_7+uM;yyv2#3T^5|z3me;uv;JUJ2U0JHYjLYGg%ym}S7r&cmq(^X;{)ZM0sPr~U&
z{S-CSPq!9pQ)&?-4Iw4l|3S7t?5dv5y(39%r9-r1|Jr1Wv1;(Y4dAbkjNngCOotD3
zqw24)yYP#{gP|#+6IsqB#4Z+VDy3>P*B3Q4d?o@+u+-uyUJp$0mj1;q`H01z$%JE-
z+7K|Y-5s!tDbnX+Y?_vej8Pay6ylNW{m)^t@g>m>`&TA?AbPY~ezOhsUYJ#}8{w|v
zoFpSON!voY(Pt|_Q1a0xqw^TBesha7Hf8Y6Bm(tjU#CN;Ioq<?T6Hho?!;NEsVw`=
zm-`Rsl#MqU`~IAq)FBGWgXJ8q#<F9P!zp_i&(uj&ReK3tWzxDzRg@v1PKK}PYQ_eF
za@05sYI2ywBr+Yi{CERrW*cnXPErj<Y4s}&-fK$w{?wb29r5F0vf0^CM#<&)#E|fV
zjer<pnZ@5g2)B3o{ORUdD`|?xSH^=KJ=vsv?F6gxrf61c&==DAhXFZXQ0yn;cBLJm
z@6?vhXrnSR<qLiVPNfjgEp5@A!DObI^oaFxoPaL5i?{YEl`=ehp~M~gT#ISW2+<Eo
z$9hSjCi6$=Z-fU9kV&bswaX(HD$C?Y%z=zJes3tT(#i~4a#F#mMvkl>L1Wj-k5hER
zoo<>39XLa`FgK(&;?TuEoqsP_ORX#IcmJqdFBq&4)ZgZ&m6S^z^#gaPHJP4r>z0gm
zJ~U`&g@JMQb9rhAHP|-S<~q+faQIZ8brWxs(NJVUP8hKBZFX^ql<im@H(r$Oaz;%g
zUo1np!n#Z`w}J?~tQK0dUGqgCdlhkXiGJ8VYXCH{qRPkLUm}&?R?FM^@9a!+&bt}L
ziy{JItA;xwJeUn45f-r0DxByjV|@$ol_oA{O^**?|Nr|IST6JdWsBHz7d427sng_P
z_q&3++#q%Z)>g*i;M#ZTD}*sV5INI%&V72ED+x8a*F6SPQbg((C#cWU+Lkrcd+{k9
zT$7?jj!1Umeq^%JvX9UHC7nHThRJp05<a;gMvD=dPRL|?+QJ#c`vP0)2~XD!8MK)f
z@%Ol^W<PK;s-92KFqs$F^VV;;)<Q0Zenjp&xk9P5*L`a$d|XvQfinz!`^hn}5KhH|
zlWeF&it<Fe2Ez=U4;Z#!bQS+D?}bmGRAlJB9N7_B@1?Jd{P)#;EIDFxkJQ2e=eEe`
z%cEN-u1U3l&*XK_9ogSj=6tI&G7HRQSV1IoQNb4I?BRwr&C!kfLQ{E1--nG0%r?kD
z#Rv!D9B%(;)AnA};euBAuigCuMU}Z!K(}=82md3Y=Sm*A#5^0MptKd`+#5UsLNT3*
zH6}H+w-6>$2^I1(J`5}lV5e>xa~fw~l)U=R?;l6RN8q#p&$1fBxh^U2dh@-z)n$<Y
z&#Ij>BPYi$!R_u;ODg0e?nT`YQ6XS}StRxS8SoJ@l$UJQ&p%wW)J<yz0wsJBiU(Sa
zH7!$dP-3I1PF7l)G`>5J(rt*)eF`|6sS>^<X@l8#A~_}KyWoY(+^97^tqu?st-OSs
zd(LV$R$Gckp8qeglPjL%c0f5QS{=s19jNW*dU}pHx8*q3$bX-0^lZ>lNnHU*IKJY+
z_p7K!P6o*;@O!{;$RjZS6IgDYzT&@UXjv7GBu~r8D4#cG0xaJA3|b0#stMpvx5uVF
z=fZnsQr=lq#nP~7hd>aY`840y=PdLwA>G+|Tg)yqt7R@ht`0yZN1+SY=!*a&LkbD1
zuq#GuA3*e>ypMgUm^fKaxXZucwj($bLtFEIf4zE|L$^m2@Of~MdJ)6fy$VIZCZ)cn
zT|D?VR=a?9NzF1~QF;NAvGWgdyyX*DYVCZUs~)>iuaa6A%e-hi&H?AbR>nt6g_o4T
zEnaFFdHIC}eBF2Inj{A`qWB#E0pjX8k#F+69mO<S1StKYm?ge~RqfY1+s3rxCg%Z#
z^C)i^a=IU@>W#J#1>n?*w~7GE>U-`bLmIWLpLLw`U%#^I35(S<jE>>zUAs~q>YI!A
zLHys!bn_E9fT{a<T=0e3b$9$H!c^6l4N<?RHWuSKbY#6y{I90`hWjvAZ3pP8jf4D5
z>`FX$a1o@fSXEMPX9EdN9S~4LrVeGRjSUeudE1ruLZ~rKrKNXkO%B`B^_;DZqQO5?
zh|On{TLeh`i*DQB++x1|DKcidy1D#Lfm~@|rdV&Jw6!Hv5B5u<Yw3B)Ncxh?k8B7+
zpGQ&S+zM)RKG<K-qK}1u@MVZ)`qkU%=|9ELf*Ak$&D&fIfabl?0s{@>--6HsI_?Wt
z*r}Cb?ABQMsE7~{at8<zds`6nTk3eWhks=Y9;r;DeqnYfEmDu^n!ji{`#!lby8TIK
zm%L?vt1+Oizeh?mfyM6qBWN}e%_B;s;b)fL{bN+s45i-XB=emPF2?NymD9i`-OpCl
zGxDlIO_4uj0a^5CjS%Z!=9LIn3{f%D+m#Hv_6p+@zEvsX;AOG}Yty!a7^y#sRv|Lx
z?z#0S0;)?<U16E41!MF<I=ij**vU#I*O7>e?G{^Kw4y?<^h(Ha+8;A(jP;y~gB<E?
zYzMhLwUeSeekx&>Xb6Y27xD$uS=#)Zm>Mt-Y5G)P*exv@WD+q>#}XaHcq09SKZ}YO
zPh?yXl}}~i&9nuo@LDV0$PcuOYuL@<lfgE3oLF7fM79&45v)jwgD28o_g^wPRlJY!
zLX-+Qx__<6lFv#ZFfj<;gEuL0BOSX%HVQil4V0Cx44vW*MfHU-rx+@;4H?8P-z_2o
zyBB?>mnw1!3TAamxv13Q8^0u;Z*n#{LBU{+I5-|lB{CWc<(ypCzUb>Zc+g<}$WCH(
z>|*l&CCZ4=c8&5<klcbjymk}oP`4@^4+j%pVGsL=$i}ximrBFc9>kl0GA%KG=rD17
zFnqtPRa`XUnbh*vm^ONidQGVVZaddrK*$UVPDQi#QlP?yp5o|7Q#)`BWzE_Buv^q5
zF}7`{KZHd(;wP>lJJgbM;H#8GJ>FoFRCC>ijAi><eD;id+{aqaS;e~}?>XT|H|Y*l
zb#WsW;saSS29~7CJFMT>)gon7)R(S~+kclB1NVAek>(09MQ~$^gbppjn)YitRWRwF
z9zLfz{9RRUPIaGR%l&Q5Yk&Uf>XcVWp9*X<S{KO`Z@*Ufl<1y1a!S<33$m8{a&}Am
zX~epwOB~1~LSHB07@qv#L-aLx>+LtO|DSG&LgLtU1`A;0Nl|8cG*i6IAJsuFfk^m8
zHFwPpX8@;lP_Mx(hTJOvT<VYO2P6|<?Fj&}&t<#cp1&wY2R-W~L2;v*-j;h}K@ENk
zcN&E{UvuA(0}NP@*gyX<Mt~EijH<LlNFkr88G_ed?pEwwZVr{?;84rM!Ic5zpM+5)
z!@<+Ndz8x`xD{x~gA});xo7TxY*CWWkhmZ_+buslX&c2Y;jH$WaA#AOo^f@5vxzJz
za7@r}@E5^>UIGBR1~)h~gf7VlzV8()Rb~k$#lD!vAC>~^_YnbwwP&?pkx-Y0u48B=
zgk`IFxh~z#pBzI1hwJ0>bEb&Qv>gkW0oC|O<{k{oF?~LE3Z&`^N5a5xI5f%&=n3#=
zAYxE*kd2+FOIpYEwx?iGRt_I#_$O!~pq=Id!V&!h`WK9@P<KphYzni{nRX4&-9;6!
zV(WL%BAp;eZYV+zHiewr0zt1yi_{DFm6xr4hONy&G;LL+bOFimw&tQ>`>!V;g`M{3
zig19pvP_!${9>!$R97aog)yH5R5i_{TM@Zi=K3?@!`!E7s%St_xG`sr|10!5ujRb^
zSso3_5sB~hX4Z+}msb`b6<MP~0lF+Y_{=Ctft6iAd}=z($r9kkrCC(2RC|d2=~ezO
ztviIySyQYAGYLwm9gu0lqJ^I+&OpL}a+Mrn>|{dg3Kq3Y_oGiu2%j}rbJyoS$9r=9
zNB#;}6Wl=`+7w@@2a!;l5rPG!l=AzLJP#!)#5{j-4n|$oH$JVt1~od!!4(Z;Q@7B)
z^_qQ>K3)Ht<TLu_!`nIk0wx6y=yK3C(I*V(?>usAx!gSn!N*yOAZa&JaBlhG!iT^9
zN>657@a37+$CNMj^jfB>*F;}e-HS{M-*G;eVN=eQZduRe*Gn0&%Kp(F*U;cRD7T>L
zSXdW9F4>puXk|r-L}=AsmXK>eZ3lnaxP+vmxx2q_Z5k9jUPK3iHk549V7kJ<P7QCN
z|BdEtggz!fgD=75mt7!ldK)YYDKZU-%a&iSH`m2#9e;c{vX_gtip7b42lj+x7s8PY
zaG+bgtWHnz-2d?R)hfe9q!L)LH|(}EcQ;C7DnCKmG-hXJfHCHsOmu_w$%?%VU4vIk
ztF}oSA|sUAU9&pu^RU#?Y|9e!C~zQGc{@$%7q&xed+>Ls#NdkYT7QJLJ!j~}VD2qz
zZpgqTfGHNpqh4>krS(m_KbqIrpWTiX^%mI7J~m7k(CfbU3AR^Q(Y1ZBzb%}s*3YRw
z!P#ls!#_n4S$(1JB{l4~*)k#X4lVrdrz010-lnDdn`maw^?09fX0NH7`6yM5)}oaO
zi&LdaP9ehug*n%|<pX-chevdOeM`N{vAXqSw{+3i|MvZrf<Ac&0;IJ`E0i5tRVgI8
zr1$gt-Fd%Ca`iUOuB_Uls*Bwx7Dq`Y`KaO`UxeYpH5{ps>!$nx$`Ruc7&*1bb4TtI
z1N7bgqpLq1_o{tnwu+~}H|)!%Q64D%!vgqanl0g<)pcWd)pe|PWx*~?%#i%Sd7+b9
zUlJ6l&=mev)8Q0lRPP?%)8I0TJkQhMt`!HHL+1DMvx?9Mm(%AWQ>mT8?NgJoltV09
zKM~l1Z1)X`h=G)bW6LnO+(#JydDZ953_KkvJKEyOGixhVY69UV=C3dI%AcpYr2K(v
z5{u}d@m?}sn4Wjj%_5RWN3f@O|Ge@0@pRr4&9H$3MC8mlSsTm2k7YO1;Flx%5j`cN
znkl$0BMBW}x=CV3nyZ--d;w%I%3L90yw?V5hK(;{F=!W+DQW%CA{OyQAx{<xh8`gY
z{jNPi8bGIhTw(>OZz^N&Vv7Y#AG`zb*kZ3Fe&kV4=l!wia4W@r75Hdc;$gf<kAm%5
ziCm#82xM@l;AfOf7V1->1O!WQ=<OI%5@ADB6YeCXW5d>#H(+_4^?$o2mO_L`9~stj
zmX?N>%e8x=|7<lxUESFX*cjSSbFW(!j6x8Op=kaBZ~``~J~IO5KyC70(5Hg!A4x!&
z35Gu4uiD>nu$lB_9kP+GD2_h}sh+E=&fh*B<bE$?%u<4W1g!s+k9~sR(Dt<TDPl3i
z`Ju%DX6F7*AcL;)GzaK-l@2!Pt*K92mz2ana0%suB7Z32hO!XDn*F)?)`qNRZw)2r
zOLXGks(-&=yY%JPpFC}N&Y@Ou#~8zgW`Ii&RLeov??LSU;`jvM{mCg?<!i-_X7MFE
z&wJjx`K7=8)=9ls5h)w|5?tmgVkHN2gq7L!k7Jd1S`|0s3Mr-vTEBdmUC4kU-55<y
zxi76<2-FO}B{Ih0^{8FFxrN}No}sNcYzn#p(**4jp`wyJ!$XM`7lgYshEC$0OqPu5
znqy|O9xCXuUeD&WbFdJh{9nDod_ce(WmuD}2Rqx4n)-*2t;4GOxS)a{EN>J&AG<5u
zsKyKjMRLCn$>vg2(!|T*(Ta$xyzkdnkrqc068Dx{Q<QhfuZ_{|KbyszEguSNBJmxn
z=Ztr48(p_j=PEmnNQBIs(29Qz9Xq8WZI3H=EjcSCWM#=GB;4+e^RLP_bT46HnaP6q
zJf>FvQG=#+?8g^5wT$}>{JVtPoyB47dwjz^PTVRy5GF;r0xOKY_xDU?f6aY|zm1IJ
z=6>9!j7%j*R>#PFa2B3dynyIct0cA{g<n1?bj_%Uav)YZHsfaRI*w3Y_^WrgGe_n>
z8=LM9E7tXdv09EIcGDi~)1NtF7l4SvzR3}($M<7qEePLGjB!l<i~PIaQ=Z4~g+vhE
zf*LicM<$$1vYo0bkV%qJ8XEE8L`^`MfTuYJYZvyuJ19$2R}=i}J-J_RL}t3`JTPB1
z-n4t<2kj*_MT`hTeRGEX-UKU~W+|pw5^kh-UIaa2YG>0tJZt@MS5A-OFip|J`>T4H
z;U6+$^>U+%J_jvA*8@$dQ^X!SaNt**xth$eWbZG5SCb{0$+f&UrNpY@mecbqGQW%5
z`LeNdMfv6AXum}uq{`g?))xOyfV3*lCq?<be!ttVqYJ_1R_BtKoQghg)TUz{DL!H2
z^o8naJtz31OE-*A>jqECDiM44&!_Y65=23p`?K$5ERbc1jjTxxdxSy4`Rnk=Z{q0(
z$O)5Q^U<J4GbaQ^e{b;QI<<tu)II^o&svW`L5%`7%_M~-I!Ij8afDqw3^~U2US-TW
zE<GP?OjADXBO*{#Dn?RU{NuBuR9#GJ;f?Ld6_@ft@l7!f+USb-zVb3QHl1z)r~N&z
zRP+rRq%1Y-F_Kk4Tjn|?2=#VfGWVtxFNXX1{&_^EwfoM-JD7a==)|2Iv5#yb)cw9A
zblZSV3vzS^OFdpJ9l?$ymoA4v<^==i0AcXAu8=6^2TcsR^E}bi4Tqe(pqXn+w!4C&
zuAmn#shg8@mc>uH?gw_66cfMSAv+eX-lEl0?W#+=vCMzTY!^)aOdXv|@3F2<J7FF6
ze>o@jgO1u-P75xtm+?R`rAWJdB_@*ue&Y?U_EH9MfE&N2hKh<x0&OeDV;ipQutc9t
zg69xFX`TOJGnmCLR!zX>uaG1lkW8X=QPfd^MuSW$6ue+1MJo3J9{(yXuxGtpMz{!<
zco$lD04(|rn!f~9gN+CQ)f_Yt;LXefa*fjYUvE^j<l|7o699}0lh7XWanKVsR=zf{
z`L>@1V6#jDbn~9GoXBX>l9J)7kRs3G(DxaNpiDN)L{*KsgWlG>4Co+Y)tRi%63f53
zeB+}9eL{lr*QYpCVWwLmaaQB{<PJno_{fu?9TjGmr=WkKxN`BGJ^3iI_Ul5Wi~FC&
z!yFs{NRjvhMFVI<UtbFedqoO}2)JVla4bzfcSt#ogXcvrjA>&x(JOmloW|a*x6YCH
zHRPVno_mqJE;d-TcfN_#yv(V!+wFWEXkx}T=8u+jk(u6j0z)X(TP^}_gD2jFYe<~0
zgdzC$)O}i$hGUMp#0%Avm~MA>m|bVLzH>WvYgqfZ3v}MsNTNcmi@!3g_?ia>L_fiy
z(8ex6*V9T)|AgL^=`!pN6og~Rn9fjJZ-@NU#xiDUE*l54un#~7bxMm07;jL{a;o5h
z$_eA+0zbnBiJu^?iUo&TnEXUb6I9ZOqk4kE9;@lRg3snQ?zY!Ww}x`vehDOxouu^j
z2AdhlK}F#8>{K2Iiq){rn~Cj5qv|(tPh5@Y+Y-UuXa7e`2vi<{R^lJfj#_Cx^`k`0
z&COZaB~;YFe)0;6vJb}Tr^V=niFmY>`sO)MgTk;rIPSBf5Y;&xIQ#5o!DlhmnT_Q}
z?qD^!q1{}P?PUo>RKC-{<$RO#P0(FiEqe~Xbm2e4XhWb7`BROF@K+t8><K{eEt8_y
z1uT0-vGMb3b&3%%T;Km)Q6IiOZ=zlSLcXJnUE_0d7$Te<;t+$3#N;@U24Xgk-yd%l
z4PZh}0(G}O{nF`NT372Vv+3>y2tO$(CzV4X_*905fi8D88Dh%6Q(_u-jEBY`tANNQ
zA!fwy<RWDEL)!UHpMGqw(NLDh`*e*j%5sY}?s9xKbDEogFiVU{$&ZDEXHlU(%B65Z
zuv+@Q9PO<YOJA#{5n0Urt8h-P`)VQ2YdX8}i~Q?lv1a!eibBFBX|<YykW;1AZ)x5V
zHQc#Q7z!>)<}sdJFx)o>W5nWK78H^uZ3YN#Fk4E7fvAiK=WNc$d=?m8ibeHce0@{?
z@q%H=^ohc5DL%C7MC*dK@Rsb~tgS}SK%jTd-*y4UngWD0eNwx|65BNjJ@V(~=#nQ0
zFH7lYbN}at)f}8`g<OkkyefhFwjTptddFYz_Ue&=Bv2>(ZN&fHM<k1XAV(Bq4B-)p
zN7~v3q10J*NZmFQiz5i9!?Zz1r5ZqzAlgL@t`Iv}ST-y#6Oh7&B#MUD2dz>aazLiG
z-whjz2~RU$dkcL<XDV%5K!?Os5I7QFOu=7I?9;8EhiTmzydT<Lb)l8#mIX&>WqJos
zXsb?pULOEZKAZUpcnot&oPEb4o8<#OHTG}Ml^bWDqcsx1I!4ZyNE8}9%(V==o*#+C
zffdvyMq)nfCQBffidvvul5=d^uoLX}#TY8gkIIItCQU{BpoyF=B99lYShU4!yCZHm
z$}N(0;GU2$VK&_@>N^T<4xKL{?uIrk!_h2=F>*sbeOue%5;5Kx-ElD8vA{m1rwp}*
zUWS@@nN><xG@HM77ijKM2<z#$M>A50n)&bz>pRM$!^);H_ZkvxrZ|qJeRjL<mm}k_
zhB!jbObGn?ar+ZuHTKptbWtb(isKdyVJSy<1UK~NNyDTjJoqT>66h2mX$jt=?84eS
z@LJ84Cb%3Su=De^iKgly1cl%2#0e+^2+`tW^kE@~=hD%oKGYBy5WC<ekhs!BE>*w>
zVlV_|_&*lDDSfzquI*)Kg-ubstLJE?`~?j)WHvr<kjQ+4RFpKDMrIpq6NYqvYg-rx
zke{4X{-`#hfTslK5hC@$YXQ-a1b~)Q3`l9UXG4y)KU-}JL9){0I%s`&-yVSTJhQz;
z8g>3-gNyOAR;UYUSDn2FGZ4W}tqQ4#PUl*5uM0r0s7*Nt0As6ukJ8O#b1=pd3#eBR
zV~}_77QTRFm3#+RUaYdyu|Qtuzt+ROf9qjgT^+|z;OC$KSR<V9g|r^cj!hQqMRTz_
zv98)k-TR+ISZ5{La_?1`P`8$}i1mcsE5<fJj~Fsp?f)@$mQitS+qMo4!QG*73$DT4
z-JK9Z2oT)e-Q5Z97TnzlZo%CxxWilQvya^S?rZP1#vf=&QN>zo&M`;tqkl!1pEKss
z8Pz<Wi6G63;x`+>=MYhfq6j{I&UP#suS8zbNvi6ng=kvDt!dvC!h<nHdG?zkeL(Ov
za5=(*UHP4Lii3+w^V8dvVUE?UfS>c)4$7QnH<`ZlR~<Mw)fgDUJnx*kI|ogll-mzE
z%(gLFR+I0BiuhZluW(uxq5+S;{v+?w8w?yscAflud%Tbv@KLb_g?f0L<hx}iKL&Yx
zo$d->-?JHO$k6CW)FJx;h(|9vLp?A!S3E8$5g0SJ`H*_yUpkrk#RTa%{?MS}lxW6q
z9aj74lvP#n@cnG_kKu@)q2uy$B#qoRSLeBd>Vz~oVm#7Z$~Wa)YgrHRaf#Z{WYIo?
z*59XoQU$<5^}aNuu9}HG<9ED@vKuwdcifk=?60w?*qC+L?l_*$={mVM4-n34q97<)
zt_xl|6b~19=;~HC+Tc-IdP0UZ1n7jOIR&Z3_O15x=(Tp4lo6p|JIRkM704OcK=ko4
z*80;Tm1$oiN8mZ6G~(`xcs!;K=ANI^Z1&f97=N&bz>)j$;wKjMaLqdE)cVuu>RWmu
zG;dB$_jbe(3^4(PF6UETz81`}VXb9L6bL8P^0(d`MH0sen`4BL9#tgF?a*Y7m(EdX
zz>zIzE8ZFQ{Y6$I$?>i!KAp)Ns7?EaSI=C$t8*HZzmi69(5IZXlKQJHo;q55<aEi9
zB~Q8<eUM*^0v|2lx*S$Uex<;`))@)viFjBOE}S1#kuttvs5tfY{?^RDp{}j<<?M*U
zP=(Nlc)7XKx!`~zw;C;SKh8{z>v00Eyu+{uCf=r;;CD@~xY@`@LrOif0EW+5)U0V)
zgL`jk7vogJ8O0iw97R)A7orHYVHZo9v7jboQzfP5rosqC7mA1J#kxhcjI~{QwWE2{
z3VhpcD9axDo~G8^OD?UX>C&xYuUyZzO>W5ibhgQN0fG{#yKfNd|A+x~cn9Y0r4Mw@
zg!qc&Qx(5LNR<i)R{O5+0b16l&}sRPYQ5Ywm5PCOh^92THJ&X=?-c;L(k9kI1}{(A
zpp><QOt*!FMNRCnoho@fyqWLQ*C^FJNdxJNn&ENEv7pQ=El(f#xLk4pk;br9gZzku
z?es#@pFd|kAq88(am#2CxB0&(Fr%Pjew>_i75o6k44YOHSZ&>)tEA#D>b4_<ptOzR
zcAqY1muHc_cX*)=Ns2I7^_$iR1Z!9-4Pgq)pl}pwnCYvjiC)G6wB+z$svunuw&}mC
zS<E`D@GL5XBbNC6POn>DUVdL0CVqrA=*^V=T5`86#D__kMykydCMC8jZCrtQg}gl$
z3beuisUjuxs-_^prreZp^W{HNQx#QE6|GP<NJNY+i)LodXY)P#EYcZ+AdLMYoyO4^
zhth&&Kuz||CW+#;AKPwp(t5_^xwG@x@%j5i15s%|vG;}c;rk!8V;Z4C$8PkjS>^Q;
zx_(>f`Mm_cx#3~(p|B7eUN|m+KI7hiezzhDODU*S+;reHQ{R4eMPXtK{<Xl>5LLUC
zzslvs<O0QNRJ`tpwr8j?O2snpg!B1&hY%6SxgxQdW>@<f6%vx?wAvJvH3%e2sho4H
zuobtPlvX4eWR_9@iFJBxw%f*w%-|M_Y^bNYr>IuP?F?|iSRwf^Fi6R3)o$xPF)RiS
zbhu+FHM-HYkYI8qKrFAm(-$5t`)|k_t_6j^-huDxSgn*A);b)44Uco8)<tjhAP3Nu
zEW4*TZ4b70xAn+DQivEUillR#P@XGZvu}Le7RS{4`ufr;IFuyPtr91<S0YP^j~XYQ
z5*%_5#c(xZmhG%0@r$Y!?%Ms(#Eg5J=;9CjoH&%m(5M7|MY+%c)$8n38N^tbkn5(N
zKWOz{qHeMz?AVTsz1cn8Q8&SdH~U>$tx;1M+V%+pvWM8}HNKf#BYe^?`ifU%hZGi_
zFp>3NfoH``oGSfddM^0vMD{`C_$9K|cFWEa<cIg$!W-g?SKc_LO*A&~sOF?1kN)i0
z$*3w&R#WymJ(Y$sW*;9+)u1x8O&1Ch72&~M;7n+avJMK$om3&&+i$UaqD<4<N7EFi
zC8$hugCBRX>2=Y;fz*(ojm(Yf;;sl0$tGKlL!HfWx+3b4D`>W0`<SiDxGy3J*v4c7
z5m}K29a4b8Q<}s0z`yr}05iSDT@yh~BpLyzws<YMgxpsX(L6<<uk*8%6NDQz#+FUm
zX;SSzBu>3Dk2)1m^z*uPD7vwE{1D;++JF8RCtshFwA;VBnzyvxeEhqP?zDmYqlj!t
zeDtAd!iL&Rb!@quweICk?-oE7H7Bn}Vx2lY54cOb<c@ZnUpl6FA)5to{r6bq89~S_
z#rF_RQ4y#`#jrE!RC(-}B&YwNy8T_yf%^a+wu?VZO+$Uy?t_Lkv$~L*950ff1?M|x
zG)Zc{A5S4!fAZtYCoZ3^YJ@G0oYMT>#Zb_lqTI887qf0!*ciK|zp!*Uzzf?7v#B~w
zyDeTxm{)eLncK$K{Be2*WHceup>2!oRO38XJ0^uT>WyG2CS@BHo9?Z~W;t)woJ}K+
z|H{hg1`n$qH2(s_S&;_-bHQ<y7H$kik?mA<)s78395TtVe4n6`27h=y6scQ?i$|(H
zOq1IC05rY*c>_+V&m_aX<hOr%ID?NGBz4Cveb+W}Ml1;YWj3Y@$Kmoj6elAq$&U~0
zknq^#yfi5`YHL4iM3Q8tasp36D5R<JWR4utYy>mkdGF}e-Ih^+4hptKctC(yH|Dr-
z7&ppoKmOXZ*DH_EE<Q&YwxM4t*&ka-V%6l>UFpY2SLH{n`<Y@j{(yPLoIDIxrO6zn
zm97Ln+hWhGkmwqFKSoR)TUv*Ybi~K!Kkk*q#+xb2;5;%LROObgCs*R_80NT3RR$E%
z{X%I6J$_4vz7N=I0>>?+^{qZkxn3*oVR18=%W9nw1=sqiKOG6FY!EcWnrB-|x7=cs
z3Exe-7?fkKwiJ?2{Ju^z8-r|4sxk}OSC(3r4FHy|D4k&LXqBW0LS0WpRVps&7|^RR
zx2E7-cW9N2=ODmN)gRw&A{TA(5fAfjtn@z2J7}i-%vgGc*~yG*P!lT;j(R?ZG2?rN
zlWK%-dSH3qR8q-R7_e#g>q-yOPg1KP0wY@iahQxec+u-3mb>=%V}rSnp68Qb7~R-V
z?h5*AE}@1P=yb`Tc=pIwln!BA@cVGAhDFYAg$|9N*l4Gx6UO3uJLLEh9HathP6R9l
z<jX;^aCFN!^AZYreUS*u4xuCcsY<VJhAm(=^np>Wq1~1E<nbS6KJ+`g)*tM^dfclJ
zd&*dR<&`-F6ZUA5(K)=E#ov4kKj10yWWdN^D(yNPu}l8PsWfX7woJFFdNZKuOC5=#
zwL9jHrE^^CqX5m4HGCw=cPz@8${Np(AMX_`s)BbR{?oz)jAdjMkiO$QuPRYwEGstJ
z_5?OVv(uHu#VGoy|G*p^qJRU?t{HI^y;HPWXs#@hEYvMXrM?QS;<m1g-AG(?>g(Wz
zKEF)e<Z3Unle={!rF;+Z>GmcCDF=q)TI1Qkl^0dePtCmtCHw}6Yj@i{MeRrSK~c(X
zu$k7Y?e5kx*~QC&%0PCH=l#*z?{i_Xs=)}L_~L5C2|xVZV>X!tN)IuKSN%f5obe^B
zgh~`JI2Ut2f;PU#+qEqq%yr2g7#0@NX31cU-V*F~+X$$v%SlNwhQnh0`XmaZ!ax}t
z?+m-+kYT`Lx*%OYJ)SXh+mI@i4sbIW55v^DT=Ey+6fQQ5867p|On*K9TvIA{h5Y<s
zoT=ZyYvn^t6Wr%WJR?_EtQF5kdpS5|gYjmEmV^2w{iNR|&W$4K#?1PS0YGGbkTl0~
z$5rtGG;HJdSEtI8kGYIbGZ~b1BA>1nk3k;F2|;>-wRSVonCH=YEm#@4e($TNsP~R(
zq>e@S7=)iO{6&nl&Vvrt#))&D!oOe|H#&Vq<i2}`k9Yj#o=M)Mkd6{vitPT%YfMEH
zXAz&$^Y9Z__BYz|b@8~)q7e#()30R7a~=P%lc@`wN>Xf6zAo=yh_}P9!47zu)DYr$
zO^P!Ks4Yoj#I@w}!V5NgWjt_)Ayd6LYC7Lu^As6)FGh4qhHY;bKQeHdK(Xv=)jU)|
zsO@Bi=02+!P!=sp^>6`ECE=`=r;PSyUl-Ul^jeVENZd7!Ea4I|d9=o|Dibd|Z%j;X
zV&d%YUcX9G@JnDkv)mHoc-)5F)66`?clA|^GhjRqb6bZ`y)2f;(%+V>nOUW1zr<9e
z_u-7tq_o=RCguVj&FZMoqZKe7j%PdCE?0)JLOe29KMDQx{9??*QX1Luyf!BR2^#ZW
z6Jb*WX5`u?5X)X4#iW*y^Ot{FHW}a`d-n|AeBjJZusfE|-tUnZ6D%{s#!hpe+Ae7x
zqxPt`(z;|BTFEIPkYiCB*-(Hq%6EkP?wXb%A@yf^dU)UdQ2)hJDQbZg{0(V2p;4x(
z<ODNBR(cKFXn(e<w~8yTFkW=+w*mI=s!VVe6rE&3x~VE>p(|q{vEGkw6)$pkKqW*}
z900u;;*~qMO*o~A;wi6Kph)50tgcs^HQ0}_lFta`@2_HeY!k}U7^aLa&%-w3Y8W$9
zwq)E*VM|UyC?HAY^s2UV8cBE<43Q!%0&%e1#Fk?BXZ_Sy@SE-HLofOdR9)JoYS(M`
zVwof?48j#}H1zT5$y^)Agr3xIR;@PJfak~7j>qBf!(z>z|ET3y+AW)yc%UTOj>9}3
z)eP=RvDYh-YKP}LKpRim+>(Kl<}hcX$kGi$nw)xOizkU9j-qM|4$R3WyE%e^n`v_3
z$HZt>JUYUQ<Fm>}?14AE)J4A$c-@eQl0~-33(-!3`SP)25KDN0QJ9(<T2ig;xOYo6
z`r!A+;z4h|qkv)d@zLp|smL=Fv+_M!Wx0S6XBdgln<YtQ<9bcI8uUoGe2zy*Eo=>^
zi->RHo~ZOil8y3#u11biQc7bl%Mb-GN)|)Y0?91$#7r^VBP5X;&Y!S<f|fTQ>deH6
zgs!QN{=g0MWn{&SGJI|*X*H$xdJyF#{qa?)+rbv8OU?eY*!eug!s|uVMS`G+smjU3
zjN?Q;h1KvyS^CbVcvM-@#=qs;@6)9MB^!PI`(8H6wSDU8`)~(E3zcZJHq!3F24fYW
zUWe>fXLNqCk56qYly^yjzN8UHx3ES%@C0U2O!cnUhkD>ee^A`6_JxXz3$Q;jK;l(Y
zP<B6Li_~`n83cR&HtU(6Kh|GWCz9AQ`ISr(KbrgHhS{i}OFR7XUx{@8mbc$(A8Z7l
z<Kts9(=a`94frzM{|YY>loNV)sAWwUT3(@J=KkRXLr3hx^LO48?e;2CF-B)xF$U2d
z>x0tcb)iQi1%+`+>YH+%Lg|@b9-p#^ua6hB9gz<GZUzIy$=;Ft85eNEqgaR#X(Hr_
z92~V2#}7en$C5tU>x~I=gOejj5i)p2`$R@HxrHtVIr#*R?P@FTk#=w91|IB?VuCb$
zA{+tb-yIJxOFI*VSP_!ppnyPXsJ?92bZ|t=sGA%oR2=k5%cxVXz&QL1>(J57{F!SQ
z|6Q=ZBDlROVpZ!y39Fvn^9M;?OeN%BsG$+R(^;rF`lyCRi*3_W{-X=~KeBmzq)FdM
zL*Rpb{}%}<%N2Ehsew=~jUzFUVMQDss|-E#L(2B)src<Ot1dMfM^Xeaw|#0>vxW}h
zR!DG>f?i8K%4vAeH-=CEx@ce?h>^A~KRM54Q`8aFK`8wD_g^E8Mf9-Fkn?2Y(AhKV
zfh5~2MLx%l50THR@p^6oZf5W|%L@N(yZw(%^{*FbY=mX%`m?z?Ue5Zj!05lB7=j;R
z?;alkqQbifVgX4@>)Sn2T`^j^4<B-{4bn@I%y&H3I~h_-P1xTxa=fg)s+Wqa{{0%d
zqL7PTH=$xjeN8SHj|WazHtzqudj9va_0Qj?C)!!ZfD}5=`yV}?zt80`J}QN=)HE~+
zf*<^8Yz>u^n1!1D6r|}F+}&+!^L+{z)3UVWKUsG1r<6;T@9W!jPOxm#Fb)foyVESZ
zWd4UpDL6}_sH-Tb6%;w`GoWASivgsyxYZ@?&pDk7ePyI8{D0i_|9%D($=--%crMzF
zD*yiB-ybUrh0B>K(Xy#8j{p-*ISP*r7R$dIgWHQ=#JKqSakkV6r9Sj`Z-|w89!}EV
zmOpE7pA4fy?wF-?cEcC6?*9INe(ag|kjt&Xp%*1>r40PnLp9fu3-VntJF4lp1}7G_
z5P$#f1c@vllpmPHYnTL3$N+Cdpu#;sSEO9<(@c>P+o#TV+D*0;^jh5=R_1+DTk?P9
zTPY#}*SZQ%aEJDPxI0lK<>jfq{}<ZUzphb&NN3-46faLW)%cCk;A{t&5)A+$J~yBZ
zeM}R4q2qSSvW>urcZ4^SUVZ)%Pt$ksQ<jOXGdLHx!`7$7KP@-f*aIBLxU@9<41N#o
z%R?~L^$ju-5}%vX6&b+0$q9_&=rdIT9!l}m)m02aLOFmtUjPKS>Q&V@Wrz6*Iy-a8
zB{K<ec)r<K0}=75`7+K%_0wy*%K!RY);6f0d^h^~e(1ab>Ha@A{9o3MbzjnTqS>S;
zaZmAWv+HEZXoMB~o9Hx+s7Gp(QTX_dy&(8SPRsDO$K6MU&<AjxO52iH2Zx5zLP!8K
z>LQIweaP<lZU8zCzy|2z3Y*D7!@^2iLc-Kvw};~3aDE7QWdae|&tY>>&8tjXy7S{q
zQBlCF9pZskI9LEI!2ivg{Kune1j+lkg0$nPgDnm|K<7&|tQ}`N#m$<E%>_w$*0?wJ
z;NIbUozXv~T3t;@L0cIqsmXd@U+^%ba3a3c)8-?Fu*O4f=cDq5{k!w6s{vxK2_Sg3
zv@|75->Sp&xkw}kX{J!&N7!mo*oseH9(gK{69bUJAKHGm8Ahwd_$8h3W?|>%uY1NC
z39M9OI-Ty<{|5E;j}__&mO7uZv7l^pcN13-urf{tDq4R=G-mYh2mb8WyOXv!_ehxx
zQo)%P6@}e?9ZEvSlpa_}|6EDlK@vHygH=;v)>|wkzHzt!j%*^|{#u8?XeM9FqFasm
zJVSTCqbW(%w@K1}Jw?{0WWYKs^Z0bR|DU%yHMY;&<QgwP@Y&hj`KRpi@2A<?5ar#F
z6l#Vlj$3rrm5!293~xJA+on2>PjgtOQ52s#74+V$32ltE9|GN&Y*zZtXI=Ge;XF(N
zeQ7N%scomN1}^e(OQ!`2oMz{{SQ$Yw+w(sKo8iv1LsFDKC5Ni9FNq&^v^zdx{tytN
zxW_ea-rOXVtniU5;yS@d*e*zrYQWyu#22r4*~mHFQdN$&U@T26xTYfWk**#$J0}1}
zJ{%yIS5|1axl_Bly8%Y7NPPN-x#;(rZ&HQ%5-_<Zbz48DHdCshP`|acB?2`1<D;Xk
zyV|LmnwynnWf21W{UtF4se9CBZqC*e05BKJn?D37y*w^%ZwuGgKlLzc)J6=)LyVm)
z*2Urc_-I$aqNWw!#|xMs!w9J2F);7fNaMPMoShqa&+hN<?Ju^6;6u^J+`_Qvw?8hn
zI5F<*XrVnIHXm8XCnaImnNA1l>gw+APv*wQDBakN6|r0u161UxXGb%$l3sG2rJv)>
zxesMqg5KAE{(yd|nA?^)=$k|`S9(+Qy8-d1h2ut_K4qyE0Lk&dfFrAgo&Mhs4k;zh
z#fQHh<^R5+{SQA}M-%KUy}n+guEAcR3AXvT_|qYa$&v??;+VW4m|=Uhu@W>b_FnmO
zs~AT^@YuH9J?r*dR-BkSV2RqXcul`>gw^;ZuelEKDm~l#q_?Ix=4v$m%SYvA1n=@C
zMXo9BmsvPi+zW<BIH-ta*CJC0FuBH=OVX8J=j3?-&M7igz%_Lm;Tm_Ar7=WN6_co+
zo*~=x=KC6^&?W%Sq_3p-p*%bA>oo!twJS1Ia|vmCjx=@Qla)+Am?|daR>$ShDTBhs
z*CI=*v4&z-3v$FF&=dP;{z5kxrM2sf#0;K<0uDg!uCAsPWGMKf1LJpgcc*{^XoexX
zhE><naOiCL;yw0n6W;tlxG656NJ!sL^>z9{P!z+($RvKq2K-Ky0>I6aKNLqLgO>S0
z^#OUiFan=*s!XfqYLcaF&`nEA%l`4CAxTOCQWe6_*EerTbEfhbm{W)rrEcA~dE140
zkOgFcS*gTc>I5oQ*0}bELptpi$MR5HS7K~zDrR9J0Re#sYXD;J4jzJ#_cH{Y3U6+y
z+E~W**<qR+esjs|_0gcm{XudYz|-gU0vG@1137Lcw*xJhdGtuU4<zhuGh^FTtjejw
z-e{TxXu>cYF!|&G=>p21%MbgAE)5^94mhOTl6mI!-O9@(43PG&-fRVzKu|tlzSX)S
z+|mR>&42keu~;s1c{sLgoUXJ?$J3}#gFv06#Je}4m~{JqCG=-7<C$R8Kxt(=?fJK<
zybv*Fl&>58c;wP#5JH#5g_${kTsL%|Jsy{wOkD{P4PI^mWHH2o;51flm+hhw%YN(u
z`$OzyF%Zm+<&dkd+p?d=Vqz0mYSsugP*>1!b!C50k2_ygcW~Z)ZGF~uix%9+gn~fq
zB3i^*^LGit72sW}()5w_Kh0JDUZehpLQ1e)q?5jkJ_dkvaR&Q|?L{T<1eW!wP@8W!
zH(~DO>ufv0TZp^}Z%m}>2FrrhTy7tcU2d^LL&lOzrLc2*`^uk`^Iht~D=3A-N(~y1
zlQMx}Ov??zq1S?dZB#z*C(C3bV5F6M(94?m1l0}`iJi`d72UYiby-5cjkp>Z8zoak
zdA8C9&7kRg+xgPjmjLXm@~cUFmQoC&If}7Y-`LZ^DJw{eNC1Fl5-B)ffe2O2n~sC`
z@oQ+{<OAmAW@=0n5V8175k+Z?6>ITXz63)t%jO$K*%wU+Z;UT0?s<bj?1xZgR>@Bd
zdV>xZSQ4Of@&F5NKNL6ttn!?Z{~-wW8vquZz;>V|0KmDIeuJ=6@hm70pZ-Wrx4PJ2
zTKpttH;Z>f=uRUmAWq^Juzt638A?|{ZATQ1ML$CW4BMy_rxr4rFqTz8$%Cl0<3<#*
z7;=P)SXoe3EgLriS+<3@p>WatCjii-4u+bAwy660I}1N9b2$c4wd5r-iAc6|yPH&H
z50QIdGDm~fL3=MMI2aU-%*;>LquYC(bvU&LW_k-CvZG4^flL&O3@6N}hgHu<3$3|k
z%b7<YDSpVN)V2Jw$T^p<A_~}{m;XG8OrnSi<(f;@fz1k|7+^L{6d}GPoxc@0)(Bvi
z4U7X9b`1aPLc&Ko&^yywBc3`QoRF!Jo58=uh|Ui2o1|y%o>ZL>`OZnEM8JRsd_%|3
z_FSHTi&KY8?4MTGRYpDLy|WA}HIZw==774mguU<XX`%8@G(&Ey5SdgB>o^NkYpBE{
zSFIMrDnOO$`*A~FUs!J<cNP}+Y<A0&mg^?S5GJOO`~+d=yGK;$rc-dU$e;uY%?e(s
zq#{3r0mc{ExJ5i#YpdUW%TPp2MfhJU-IW`S_=PNmwI)lCzAR7<ChO~+Wi3Zc8}q*m
z!0OV%^8V?BfW+j(fwfKJu!uGD%+Ai9>G1NB!ZVv4E)zC`$8J;$JXxp-ay<SmWPR_t
zJ&1}s5AemMu9Ua=8|C#oJo&o#m<O$s^c+*jdjVdh4BFULNl>+~^b5ogoMl>q@@BKc
z5v&IuNHQW=q9YUFSAk>gjsI|JWd8)ICMwpf)2>@)%>4)$Qz?qyD}m5_qrX}J6QHVV
zWz!iS+b@Rc;6zz8fjD0Bcp*4si)GspdfQ(hyH%S3LP+IeR%kR_1harrjmku6=WkZO
zs|?WusCR|fZGb@p?K*%fP>4z<YtD^<(O|hE-AP2wn(oBzSajY+c>Bha8WE-dLibEE
zUBqKqnHdwRjpXGc)jQhWEqa^fRI{7UO(fFmd@+DQ#1mEI=xyyx?{VP;kl@3I6GRL@
z4Lfli099-)HW(gC0R?aJm2=HqC064alOI^Q@Muttz=#xIde~uQ0cI*~h`%C*`<w6T
z`QhTGJ9&WXRgvZi_|N&~+dwqHv_BmB_H}?=)W?e5>|Cx~d0pbehm|Hfs%O9qTTRy(
z*z9;hJN<I@`l2ufC^Fh<q&nSdw}2l_3>b{EHv2wzeg2PASrQ9CYHW=k=a2d?2B-I+
zck_7v_fZ6>^MONP4B^BXYJVV1G0^DX;QjvAb@P$I2h+%q)}L&GNC59?8PDC`+@L!e
zT)E)id43L2H&D6|qUHUW3f})r3m43<@j|?FrX#4TT((nuDmZpAKx5FvjU^qSbvdBe
z*77<98`Ffpn%A0PS8MsD@(%eP{#vMrr8%G;3oX1`&HRA7)EEt{QE5z<DN)*1Iz$lH
zCjS1C{C%TQhAOpvgDoavfUxmG#~R(pR^$G$rxeE(1-31sCFO7`tTHX*8Lp2E7#K><
zr@OI>Me|D2(<syiV9ufW@wCMhsOPvo%&%|ae4#UkP?9b#^O1$3U^fPpWfK-{`E){d
zFQ$LA+rFhtD5Sl?Sp&Rz3cxWbarR`jE$uHq^@NXmz)xYlvBC8cTv1M(U{g?4HUff!
zU$UuOIHb!lfR9MJ7woRC2mbN5HAJDsk}^Gy>sf6~&>l_BJaAPh4$zGtnB`GP>wY0Y
z3(~4E{8ZWoDz_<m7L50XiorAJ2pfso3jjS_5TE0_Vo<CmjK%<f`bpe-Zht(TUVia)
zhlV&n3p|^ELE^e~fx94GHs}HFM{(=%((eG|G8V@baDR<Zqda;(98e`3{~>}DLb<uP
zxcGt_{Sli%S2CH-nhuddWG2Gpo!?YGsoG}-AygD{9URGq<R~r)W@ctv{Z7JjV6vQS
zn(#Tu4k=&o6SQC2t{)7tbTwJzQmv_92AhP9C%{FkYif5s|9qgVJL_|V3#n9;w23Ey
zQ;{5jkhgie=Cwv0vi0{dF<r28Hl#H@;s4jy`PZQ`3ybt!9iOon4P{Okx1-}3ks)ar
zMqy?Z2)o2Jbey<wSuTGYa%1>6`|sakg~JB<k2$=oO;xp<vAzVfvdiV{aUEw8^kv`y
zg$=2`IUNkElmXNU1vgM`?W{nKb{<F`ivZ(`G|uotU~2bWC7D`tA}yU+2r0c=AKUPg
zVJ!&%MIvnX9ho%^=$)}}zBKd{=Ah@?4e-#ZNK1!0*rym#cjCst$DoSR;pivN#lair
z-NAfLR2CKS3fC<!X~kUe`%*9%@W7q*t6)%bvOA!P-j9|r*yVTDZsB0S;E#j^v4ewy
zKn5G3FaAE!-%cpC&WN-WyyKu~|0qO2h?T=dNCHc4s%miWsuo1Z1pql6u6d|_@D%A&
z#ML#V3(qnurot}aUGuoj5ce&kK2Vx9ZiAUbJx%&~@K|(_ZD9<YDpZ6DZ$N!OUN>!U
z6O&Otf`jCnveOOFt0ubF+%F@<8D>bu-qCu84!+OHuDR)WeO5>tFZmFh75d$Dn?ZZ0
zrp^j*Ysva*ZvpeHYLxh}2>^?Xg(x&jJn){?ZdW#!{9l_S8kjnhJsQ*4*gsn<|7vLb
z&*c<QM}Zhcj;c!yxKggFYN-bxEP<H4Z?5|W7`F|hwgKl$b!@-^K~+~uIagilqmMBD
z=?|HUDLINumSS>&QdxS6l=EFKY$K1zZmu|dIXiKcBJ$^2tewpRMqRNqU45*~MZru$
z%NSG7c@J@@&BpbKGgX|H0O{)CX4@Is4Pc6B0CgXLKyV1Vy>}gmB#aw&(*ElAPIW3A
z;c!&C>;B60lHDu=`_u*oZoaO{a-}(jbXRMybpNNmmVyC{>b@WnWEWx{mkzXTj`EBM
z5da+xfz$0EMcC;B5DZdcJYx02{LxG6k=S2>D_gu^{N>9VFWWeC_{lGA6*ylH(`I=(
ztvJk^GE|-zo=K*GiVonyOAwgANRSR46i-wNsHUGE&pK$Ee-UkSHm(QIk}s=kKp`39
zp`wDK#KpyxfwLNU@aIYd3m)^%?%=9W*DRc3Sq0kJI7Ew42^1`5VrJ}(<^`=D0w$K3
z5SPPaO&fWk$N-WuC!TUEi5MvhRIv@$<!>+hN9#=gD1N<-fR5D!b2`_5k=60Qt@pgs
z7$5L?v`Jw~FnqlGPiPK9&y5ddKUT${H89ekkE60<`>4l|%&<~QJO25BZd3dEOA8n2
z>bd|`PiN%MK|Gsw%d0<vMqkHVOg3AqIUOz5DujUkHTDiBhI->-LADTEo(jCy%MxM>
zHPzZSZGJcA+=lNe(W(8~Y}=rkGsdIGfDkvv58WUMoyVZBXLtnDEqpFbEh;{Zh5}wA
znTrCNeyH|%?quvI%V~!J5@v_E@cOC3O}M7eP3E36I~J+RanYcKNeUk1$@?+_+_}oG
zrKlg-5H<xct7^<SrQE%Wdz7g0@tI<p#0!T+;LICcGv!($W;g_br}@a81X^n=E4l~6
z^^+KcSh7C+1u&j_EY$~T*9lHt>HrmpFJ}m%St<Ii{p$9dOIssgE$(~6APsQSD<+{*
zk1>03I>DRDK@GeVO<1pV%aWsE1eO};sHfYC$^i4F!cf+6?qFqk6M0`%3FR=8&|u1s
z7#M~dB4Y<Sfkm{fSvGcnNbUihLsLo}ZRadQ!NqMCUO4A~vs!lDE4-7!+gqPx6iWz&
z$@^0gRXDCtF4gS8^tH6>Fhwc9UcfbZ?OeIsZIP<B+VM#QBMFHR8iG(P_)qvR)aHI}
z#<`CZppq_%4>ONh--F$)70M7Gxt9UPQ92QPql9`dePd+#d%v(1;1H&?H<n@S06OjR
zVCJ|Y+^zv;U^0QD*p|JW;t%`&31nmISMw2TeTJ4}mJ|fiuWD!r=TGYZm$Lxq5r1Q7
zwz%$Da86gzfhHxafI%?_Sao&ZrB{&sW!*}$xCD}eKo-7VU>y`C5Kgq|XiIFRF_j2;
zn&*E=gu{eJ-ylGWQxj<etqb!3eZKU+JGY<k0UY^af1t{Lwjd`^aF{>)w~}lg9hIV@
z04V?mK+}fJeC|Vwz^^)Ku5~u>cEnVrPj=I3^$*>BVgc+xpfM)-s^|5eg6?BB+Ck}A
zr{`G2Tl1B8aR)210pj(oVpN3O!};8w9*ZM)jhDDskUcywj)gBd>8#KV*tZ_%bUWBs
zN@;=F_5mP{&UXEVTxH0f`iO3FEmVi+mvJFV9B^3t-Mt+th()oH8L|)>HF+kCRxvYz
z&#p^6N+_wcA_R5J{<INDm3tB(y@H)>C2hxRzWuUqg+e&W^Pk*HcG#WGJLDHl^!3Pa
znq8cyW?YV_L2Nk)_Ag!8b%~$2>J?ywnAr4)-NwmHAw|ma$z<j~30OtZQs5wcn-Aya
zumsJE0oe8w`8xj1E|NA=>w#(pdSt5K25aZ{FLUK0Lj%)2;C{M7H<eP5BGF|+o}wLs
zvE?C-a(ju}2dCnznWq5TJA^9uu@`oR1u~R%vzDlZW4|bX4ikkz%p&#9qhCC}WkZhk
z_ba@MBY{LFeGohir59XSm}1P;A$ve;^O{_WKxA%?UHwpMI2oDZJOKKNm>v8E!q4P&
znX(QBeNzkA@Qk6aN%~qUtJbGcV9^)>G($^NX;o?6=bpiRP=>9B<ya(xTyF>Au~Z4q
z@xMr*AONei482bMOt1q;0Vt)CTyIb1tXj{Zg_tjdQ*!TUomSK)85>_c&-<|1IY*1o
zA$d_&{_ui{@}i*7nMFnx=UmUn+h%5FV(Iy87RDG_`t>INu#&yvr0uc!d#}P2@rDb;
z?1_;1w@}eZ;om94*e2S@{K?`}c(z!t#gPrz0fG7*519ScG1=Gx(jOeZ!}Pt}*Qv{F
zfuT!P>D6wf;_ch7QEl%Yh?q(=Oux8{&&^oQ-Ff<mVjb_D*bC^HcM;gQD(VV~fMii_
z_>;+rhT$IFuh(jw2T174DWNAcP!OClgA1{-UbN6#oTYBwX0?EHr|7xy3~uTB1ua$5
zmuh7d1}RzRiEwXraL^&0EeX-*3~Bk?JT`Q=Gszq+u#skhNMhnu1t2<h4->Zf{$qBa
zwyX)O8CD4L^YKitXfz?`r9^JFHNjuIfWv#A9M+}Ub3rA=R$MAg<eS-rmF}fDw;rNu
z-ItAgWe0^y?R_jW*BIGSO>ApK(_%tQO0L3BM~9Zm9kaC5h>gw<S`xFNTRC6Oa~4yv
zw|5VTrA|j-;+z_I;K)U6FG<%nh?V>2DY47zJ_{~OiD$*a3Qi(1+V=<o@I8gCwGqXo
z(xQ{!KSk)?V>i~zp7GB~T1*h#|4M~4o`F_HwV*i=6HV54g%BE+Y?~<JKWeNo8JE`R
z09^>pqV$RwgHUMatB2*PZKDW)Mws4aNvqn=H2{}u=*Mocs9NvQhp8c1O(+@tM%`U;
zT(VG`j34FBl7tf`D+79R0EQN<r}g3SxqkT(59<S!?bF>kUK7eDBrxY(5r767n|^CJ
z$kW%yWviQxc>lD8k95gCo+(y|oq;tLj>fkr#t}wD54_(ma?Li&ExCO-!nS)4sm}3_
zzJX6z*gJFtMuwMV?tgciW~?EhkqC-n;Lkr{3VcsuG+<ckZapk1WlI7Z=YRYlm%@@C
z7*%lNz{t6SkfCMOzA?3bVY7W`d4Kcy1RwMEw-V&bvRk+^3;jx#AYr9b7`2v|wj)v3
zY~gBXpTm2n3N;If0JOE;o}bl=_SvEXZ_8&LzE85{^Y%NSianSmDTj4?dw*4;Sq5}9
z+P}PZ>8XmQxXmUFg;<V$=3QR>Ue1ri+H(K<!I%wyrwfCfxgh=4VhwXbxkte8ZxA?c
z#n{^vZztoY0D7iEq8KGIZZZiK{yghIJKh#Cn7l#xB3o&Gg=~}vE)-4HA3fI{%SLST
zHW9QO<E52vx@}i(MM<w6Un&OEmvSEeHs7|!mjrI9CtM*ki6(=6CP+KPj_zkR8QoYK
z?mZ3bZ5`xR4m!I&nvY8Sphe2pw@=r6P>`0FrtXo>YS<X6cKSItNA@;0e7J|Nf~BoF
z)ArshOf)!Yysb5SXrhGw`0?t%NRr9_0uR=QNynctMRQC5sNYf`XkF$`?WU)v;Y5W|
z2G%K?018&B+cuzLB&gW!#AZw111Re0!XKW}z;rB$Gc@=;Jvq65Y}`plm1;_2gT)e{
zF55+wfp1R&fhc(Dg@dJ?qls=`P;S!MJ=zpmR4*lGSpl&SvuuLMLl__6A<(GkpUD%L
zB@Dl5bD^5=FLpNj!qj5x2Xxgh&xPaQBdi0>zdJmuC&U(WX#P`mQiTQE6TqaKLBRg}
z9|ByKBk4Qe?CQ5h^3}ogj!v@k<0bHJlQ_GhiSY2G#RdG;wB8hB?@QRS6)#_Y&HBF2
zY0rC(<vBfYdmpBvo#rmeRaL()okXbr9_rli|KfT%e{DN5Y?OpA-#xH^3)TX=?t`X^
zA8+fo@=Gm#UxiU~4j5mWfg;1!54TZA)zuxP2o)6B*u@DPS2Gz5u;wXK)qmmtdQaL(
z@ty)X?Jso?FF^2g_qO)MxxOuiSKFYFPzO>s!0l$_2S*INnDEQ$y(rXIip3nRX)D0n
z1++ZPl`vo`x<&^ds|V!HfoV<mRatxLI4x`?`_nAmi{L{M2BP+643&wN+Zh%c_K)4K
z1yC4FhE1x}<UYj#aJFhTp^+fvF9vc`IUk6D`<?(Sy4mrRjV5igg)CSzj!Gf1#0m7&
zrGo$)m{8~M52*z;Xc5JGA(?WxSZ^V7_`(Pq<#uyCd6CX#BOGWmemhK8IkTy@{&oOw
zzb)a)eXcU>A^$nfeUhM|KY2>EWQ%H{*Z<($?GLxTXQJ#VCo3CY;aq;{-3kYheGa73
zBpOoBs8MwN31e)}Y65ZufYW_elXxOxh!@wqE4Z;kOLYJm`7&w`xBWf{uIxha_AF7y
zGNvRdSXxeQHb2?769&3Zz-?Pq#d7O4d43L3wFo<sh;Omc8~rB`@8F)&%slXx<5rIK
ztP6dhywDqhju_IS2;1vy2<(_D3#ASQL}OA?Qq|9Z_VmVvAHISjUjx|3qO`)Fk+{tP
z%sGHP?l3^J&Y&N;|4Yhi#CVh8WzNeklm9L4bs9qc*-~4`5erjQJUz!E)J60Uf_LKR
z{zIA3d`?bwxG(Tyq90?y3E|$Kjnt_FMEh$f>#3F;h=cV}MzSnG+c29-gzC4?&q{0?
z>@YOn2pI~i-i(@XQQCdVrmqiGWmygA<~EQ6ljDgt5QX2kr-@=2C&;R4QCD`{Jhwf%
z3Hv60y>vwen2xqF38bJ>_GsufVEe4}CGT;Ev|WBw6<{o`y5}kte|Yehh_gQ`+ri*0
zkF+QZS8;P-9)p3A_e_8C72e-IwYWMf`7u(SbyUZxlFN}nLr;^L@+1ZS&n$pBFP@s^
zCkJ*BS!bqetCe_e&WNm5U*Sc!hYubd_Xa}gOzI3r3$3W^?-`C9zYL9u#2b8Tp8N(+
zM@=7jIve>JZ>DhKoxy^>^jD-4?gT;e8^Xe0%Ozwqj$x5`yEz$`3r)3$Yt_gn3|7<e
zq~Omqr|!@ey!O&Z)g28~5yzIcCN~3_MpJ~>oj1&oNy#SDHQ(lkM7uRDHvB>>zT?Yv
z7Mp%U$>2(p*6|<S@@cfw#uo=;++e^d(Odz>{4~9Z??XI$!`i!6c6UX7PC*qqG!Zc)
z7OQ<J3Wv54TQJTcdS>2CI^z}|QXfvD6&Uk~`ifYbUo<kZ5|Jg_biHr7=vaFQ%OvM-
ze)a-xXH1mOX_5vT-hX?Pm$TzJ5aPV()qh+q{sT6D>@=rxw6`@NyV8sBqugsS3lQa(
z;|)W{w9M2m5>rwyZqcGRZ@3$za;i_60B0b?MsWVy9BZ`v?oMrZoLPXkL9(p3D*(rY
zqFKXO%%<(ebTU~x44C>Vqfqo>*G`+r3j56+#*Sbv{3Tid>i&KLIKgpK?mkAw!A;dQ
zwngd<);T)QtJ}79;Wbck#8lPagrojI_w{$W&@Hi_w>)y~$640Z`}VCcai(4gM=XRT
z#kb6pnm=VObR4pgr~(P1U2}d(EI{e<&qF*Ff6ID_bDbh=f2xIr=8yA*{14*sN?+SN
zEx4?wa@OkS4sMh-u*?n2)GMC8D_tMnc0wJQ;Qtg43LYO**_-M$aX_PAa!Afn{64<i
zE3)=>uq+KmX|mkp;#YG&CFB*uN6MTD)sFi4Q?te}bF(Y{8t1$zWc)bwi{bUt{vpz6
zacQHa_fSRLd9Cd&s!RF85mo<!U_75S$BI6O{9mnCNHA(RtYaNPqLcnX)JLRD`Fr62
zCa>GqBCh9n>xCun<?f{zr?a3T_KC8uX$>CrP{K_*t7NyyLa~thD|@K6*KpasTcyQZ
zJSn`XH&m6U!hFNCSFp4u<<{o=S)c8dHZ5(<LG7Gj)t;PV2@C-;ESp~pT3z`>Pb1_k
z8R@xI{E$Og$D$?fP!_z_vd@%P1!{`-kNIuS-;<9=Zb1cVjI3h!Tjs?29^>(%o#K%x
zUc<IN9G1pLLp$)HRIU$eG+nBd_x1O`jr+}JPd@_Sxad{qEkvpGL%?JJ1qC$;r~!G8
z^FS&@I!d8_q*k+iF_aK8ZI~jlKOdk(D6b$^*!OgI!=486I8;AHSe4op5qG#uo<3Y3
zQG@_s86n#!7Eq7J%l%$`=yWo(5nDF_i%)GJ_7#v?Sx7TRLgawI0Emy<Ru<6%@y$fb
z(0+FsYS8(j=~U4;0Hf04VIznbHjkqS6OfBe@T8FanavaWN)G+nGp#zF)yeXF?B`pY
ztlqR%RYm`iuld?=$}~WVDs(KVE?iHh+v&%LlZG|eQ1AL>`lAstVqMm)){dJ+b3iN>
zkb;saf(Jfq#Fz2DpY23$hS6{)qp4zV;sj9=6OpryvcLFx_<g}KuzxGFft?OABfl|?
zwQIg20#?nC&!0b&4{>mFYkv*e+&o@L{Bd8BS+bfG#9FZifJXJuY=HhW!yc+ANN~_%
zx*&p_gwFRQL|M2h*Q59P@fYj(;4y@M$#$d7R>@VWbuDrFn?nZ2XVD)hNzJDhHrxLV
z<?Do!0MXOSt+EOC+{HwsX}iM1!cHKS`k`d2>5G8JKu{`aM#UJrq0c4?Lv}H^oN;rv
zPQ(`Z`~of4;XS64V;{o%bz-kN6p`Z)J)C2<Y>Rq)l;~ddMfvU6jlYdK(@E+kxaEkk
zuqPg>_l%jb@W)RqmD?H>nI#p`OY%mp&k)(xxNTp)`YD^(04r}eg5_h8i<6mspR<QL
z?hOJg4f+|XV#gF@&*}V%bi2=W@vN~QAt?@0`z`JT5^Ua8UZYInCugnFe*4=jBCNfl
z3=ki}_qA}My9-W{?sfl>7L>uybM<P`t%BNB#vVEx1ymKRYgy{|sbR&iEUUj)PY!OP
zyp$&sR@Xp-AVPf3tn?>v5wvkpW+W7}vAjGT6a*pe)?x*i1<#tQPYay0xG2zWu$#Xe
zR&=Jf));aT=o%(Kmb_kD@1*8bjRp1JZHPC;s-Hi2H0}?WI7LlK3^7Skbbehn&e%V4
z;Mw1^c%;7wKb%yLoFr8y@NV>#vjUB4q9gD@rTiI+Ns{T#<Yydo({TFE02gTWQlI%g
zjMmGJFb_GPw7vY{h2MD74=QCiHQK+OpY`zlA?e|yj*L)hQ-PgK$k|edRjtg^Owv{r
zoDauyka7d6@w{nS#N4?Kmb=iNd;-N0OX3dMpU!ptxAq%7*&Gy#aSN<1<8FD~sE0M+
zKP}@dgVCI}UNLIRcv*t(x%bST*DlKk6`t@XNID_yQ-%bTtl?0>9ut>8g{i|<C)Kf|
z9G#dq=*p42B+|;_>_zY`O{LfIe4D(1nCqi;ARvKFV~l7EtvWqKB)5$o=~$@>!}?z5
zzCj|1(ikzv7)@5b#cF#&4;vU+G2P_5j(pKvx3b*e_k=Jp05R`bo;Gm}o@)Y3y$qc_
z*kkr5XSTgazyHIG8l=X%%x09i?C4_BY;{w~vY5i`3(|=LK$tsT&I7PQf%YmQ<gL8S
zIp*fB*GcTYcV^1B6KG<cE29Y&=yw6|-CxD!8PE}~*R7LL8+%a)^)JEio896hN>S0^
z#&0-LImqaS<nqhJ;@~VjuGK$CdTG67@}zmje-RuXLx)YPdy~DSo+r4w`fX0@qXygh
zn2OW)vF0M52F4l&wQydMn<N}-f=h>BnsiKJ+|bV-6^oc%*@#ISSe{2m@|NYSl0tT2
z#n+Vu*8$ZXL|q6-i@!cMf>yfxWDN~Tgz_tMpywMv)O?S}HL-u7#CX2XL9;9;8F-qa
zA_fSc5DD!<&>X!k@F3q6h1Q1&9FRi_pUI_$hAMvuhH@K-1jjmVyM0)E#t`d^gu1GG
zB+Ux`P3;@18iO>&<1gr{(EhO|C2b+CWvHOx^3T%oaucha$xFkBDylu7OMHFG_4Ys)
z(i5vJ?_lItlectq`geY?zmQ;;nL0L=p<%Y1IROUz{UP1!9zapwt@_;ezQaM}N<D_z
z@mO;dCmqD*50TH)S^9y&?$pM2LHzxvWN^WFXqe&LD1PmZWe<|$+G*e%((!Z=w#6Ot
zOYF{AGTl6QLOK*kLeO3h582vW^x>LCYBWov@`E72CMoe_2CqQ8y$17Hhd}046#WqN
z_#N<IE|P-@D{`4{8pDjCK5X*Dlmy3eiIl;09eUiZ6rLHtlAqhc5U|9!l&~2V#`QbE
zXS4bzBcOr6&_ICHmrVMR3ICJ?_~!4g=d=jup7k!jj9SbhKXlX==EzQ~rToIeBU`;^
z)TQ%J61vGhl1ek)IX$r}ZNA>CO>KE}kDy!=Q|a3bUR!Z*cBhA9%$lS+qW+S<d^QoA
z&Xkb4y*#}=)GlcL1O3x>fAs9*W_P%MdA0clhLk4%2r9E9?>Vih&0t987P0gFWn?3Y
zxt#86!*TL$IeCR1s7b5+l3;RTk2VlYxxPHsKcRz%F~LeDDlIMLa3<yX@g?KT<=2#|
zr9q7<r`7LTv5=K+vfSE66vT!yP1Vnj(&mbtkXuU(qK-{dk>${VjVLrk8!ymc>8P<?
zdVh}FAKi%XEM3DA{IK*<a3Rs}re0TT;QIp766j{fht>W_P;mJiVZLnr-dn)@^-XOa
zdXpbAJ;zh4c@A}7DEVTUf(kojkg$+=Cm5dO`;$c<v{sd8nm%zafe*Ma47yJII_lo0
z4n@hm$Va-=nK=!jd5JNb40JBVE<)5wis6sHAeZxH+gv0vc*ONQ1IZZt-L}Jb@N4}v
zK5G|PhF-5Z^iQ5z8ZYXXPno7Qt*<zZiA}N8JRknF%Kp5I1WOXph$2i-1xD3qN!oc^
zKkbh6{<M8(rQUM-0!eM_!AhG&;W+6d;{xu1=k>R^X2$IPQGwrZDGp6bORH814w<=R
zWWXP4p1WeHW42}*ve!x9*McnGw}<XD=nSi3>b3xty=Msh^H(R;y_$Nb!Z~f-MlxnG
zfyeJug0RRUBEnAvVdY7TJS(W!-6U8!?0>rMeM|e)N{Dp{=xEoE@A`vl2yI9*!%+A)
zTa(8-Mj}6|woEJz$c_zOxyf(bM|Sd_?BNYtXVj7X-eV)MTd_HTdnT|U;fLR)HPLFs
z>c&O$8PCBE$|xXYT=5{mc<sn8<lYoc$G!~be8%Ub#vn@k8Zphgd&uvpW@%L3c=J=d
z(YG569Sn@x{{S(UG*oskFb-*+RP>m7$fHTpL_PW)+>8bI;aZcazzWqt2S2IH&`Y<F
z$wpI3Y}+o3)XUwMoyNUac)<cW%O`264C{dHQ|-?s@7EH(F+ATUksFPf2RK0GyC<+L
zz_DZVTuiI&dRH>uM3^?HL{w`iB-RdbVsbb&kp^x*_P>YwgPj@edwy|QzJ(oGAd3Zm
zBtl+kt&sK5jfM7kJpU8X?~J4>@mK+Fsp|RX5{~x+1N>ZAyJe4Ju`l?^%!|yDSq$id
zK$Q6=NuGq~MgVrL-J%GPZ3DPAk^mv?G356903R%}-0$mxF;5BFT|l5@|3s_HwY2g3
zw6pQ85%Ybqwm4W59{dArJ!n@L@}U9eMu-3kEVl*mh4CIJ(-OU2?qNosa`M=PV4;;T
zAG#^dfHLj+=xo*d-6Ui(qkik}?}>+e6Rk{9I+jgh^_DBzUow*E{B=+k={2jeR0l+i
zI62+ku@YZep84&g;)Z|_>|t2Y4F#47+cp75;2ijTd^|?wO5Yp_J9C9$BX_gWP%OoR
zE7Nsf`Dm?8$5v_&`wm5*NIeA?1GH_3e-`$wA2wqn5&wBFdgc~%YT-QB={?pwCC-@L
z-dF-q<gLU}Rg?q94mHb`6OKK7dt!l!WgCU$N9@~1Y=v9RWy-hp>_HwRs<nIgY9cR9
z`#>S<5!7=X_YMxY@X>-E6wxUuN(M=%O{XoV%`$~bo$^n97z}}uXP=I5&yg42{C(<`
z42S)jA3xETiVj1GKE_of?0SsN7%#OcXcQ4!--anhdPo5&D-vO=R5a)79?kEC+Y)~8
zA3ha&NPbHua6kE$(B7D~`a0giiJ8`X7aY_vYZ>gO@k&wJei!9|(_uRvMile4EppZ&
z&GT8Y{`n=LMnE{<;neO?f?JHW*Y{FF|2P<Fl3KnAm5A#}YlWXqD__X{6{*91ki>9!
z<xjZIm$i<|c;`RJCb})wcYf&PA6T^E(KOs2g4;@khb45a6Vg3Pt)90|8#Tj>z!BX$
znG1)b3;Xw1)_C25K0G@pXB8x9M=^Hfsy+yb7Cb0?BBSha3`ffc+0J+^CtmGvrr)j7
zS$C#&SeEj#8Wx-$U2o~`Oh8UTgZqZ+49F!CKDxg$2hW6^mD+%gJF&0(7Y5A<X1YF}
z_QxU5w^%)_w|FB3q69A&F2kcvCwOny5x>kBUqZ<1SvRKTE6b>>^73ty4|G}Y9}V;M
zVy+t#AXwq@EG#VP<*Rv0h3Lz+o=+P@LXbkTkOloHP+>HBZ5!_UV~|jd0k$zr)u3Cn
zAOvZjyBSlW>_O^UZ^6Jwoek4S%AfvI5gztB@Bz%JcqE}{XXK-dv4U-C@!Z)b*3*9Y
z+9l;2>05%qok>R_cdJGBjKmo$(0qTE{^L-F3Bp93HIbX`lfA?9efx)Ahx@5N(-~~N
zPM*AdtQJM)gUS}3HjgN#S-Rsd>YH;^Ge5)N-7HW9R#|R%s4_To8&;bi2tt&=(cG~j
zoK1YaRm4QI+)yt2>)w$t^+qOO0$ug;D~zGjCV{6dGq@<lgC-5em|IKUfwmUq`qIxC
zD8vES!OtW})2|!3>MF~ujjdtq<DhT|r+FU!)J@(I1=Rx=D-GW-kdT(vcQp{3XDM`Z
zJi;_J$O_T(;^{lVXpCOwtv}+-9C*z;RBu@b5KtwVd0h_)^!kxu{URD4imkrhg#;<6
zL`HJbm`Fg11}MB(rP}GQcRqx>25zOm#q7+UVR;@D^2DFR=-S5!6P=%zb?l@yjby|`
zt9$;c^Sjoz1_(6;wgGVKtM6e%VQFpXT|C;k{F>k2)Rg7zvGM<4B4+BeLmoHG8{z<)
zyuTmzLEg}ZKm4QneZCeobP>*W)7=XUVHuH8-Lg%g^l}r^STA>8GePZkmN1E{A^>G`
z6OYv=e$HCFe-F<y#jxyQxz7Yr-x`TeC;vuXse3X($7v+bWrSkR)_~LKPunS~H$Hs2
zMG5Wtm|s!xD-p+QW;rcU-8EPCXmcq>dj<ttecg89srqJnz8C?#jINHT2wd1v(K130
zIiuRMt=b~P6P0wxN~lFv|NDp|(m|H!7AwDCG`_hT*bviVu7=pBctY+BdkX{PJq7R`
z5+>_)!RK2+*q^PU|A(@#j%sU7_bwEQ7J^fXyA&%f#ogWADemr2w79#w6c6rhE$;5_
zP$=;2&Yg44%-oqZ_ggD}?1Ye=Y<b>Ce&US%-k)NN9hRc!^4Z@-ODo-3G9n@(9<Y@^
zP_=`k^zag+kGO8I74D@^!@>ekn$rVa^MYRxe@I`XEC86(Pj7mq*u9nehA6T=u&ui0
z@!%@#0qx6X1>}`>FOL&gm<<)_!H3rae4}tLr+m~a_xJbNb5RbFN6-d>Axx5JV(Jk}
z?f1`mGo{Lz1_OEn0N-H3iQ4WwFc}TvZWMsa>2g_ipU|uA@w4AL9Zrk4a2FO99>(|h
z359lzSGAt_Zy?TzY&nN95A|{Qyx}6ios&ewvGi#m`5iS=#a;<K42K9jh74n87{>lj
z!2BIE@d(d>w(tI$TCc)+7U+JU5d|wX{x!?ZNPJi?!MnM|cXY-_)J2x?wv3M92-Q_r
zLvx4ZZVM?jhgSo@%1^z41ilz>x%U2LHgktqq%|v`rX(n;72>wIDG-s8(Jbpscdvtt
zjH0(S9(<2iI#R;MzC^?8F)FJSg7>qDqsIEu0-`TSW>4b7hYS@;)McM_s_~d{@RNAc
z?pUb(X8j$P(<hkp<9OAv+vf_cB7QPVLP{w`Na$8eJ0c|WLrGMuL{s;*GRFuJtq?mx
zYbJjV*hXq<oB<&Y!KbqH<7J4u)-ZIe<^lSn+tq1A;EOR5QU<Jl?+ub@)!VESY&kL|
zYUsFk2qmHGWnGTPRIfBHu6^w<1RJruDNqOTK3`Cn@0FrFgdIF2lJA66@<s@Pe6YpE
z(*c6qwB0b#igdNcYD~j4l!9<TXsDNj)csEa9@W>Lm>G6z$hBq5XMU&rAyMC|KK2Fe
zWOBotllblxb7bAl{p|Y`@brdq?~RblZ7r?<H;Im5s-6p<r-|15u~+h=D~*>8GFeDN
z9%oj)-p_IRtK)+~RS9ORTra=*G0QB&mANXJpFJp82E1B^M4lpqUpa9Phu?#U-rH^9
z+;A9$BQUZC4uNus2#KAGQs%fy&j%6)@OC{5xf#7vv%sJ!z@G9~+s1Z)S4Xr#VQ|xX
zJ0dOr72x*@dJ)>?yendD>v%TYFlE~P$~<@9_ZDhWe93NC|I>|0q&uBwhgm{aK;25D
z@$X{dm0xS151HvxRc!q>(@x!;!$DsVHYu0#x><6IMG7ia=|tmY7{X1jJ(<m!#?VUM
zGjc9c2tsxKFJ@TwBzY}Z><D++^@pRXq~8WF_<#~=M%et@ZSYp4LvN7n5ls~sv?b^Z
z4Z{Y`<=@6C2ZOu-#HntEOe3is(V{zaWIez=@H#F<#}b%#-APbAq}sre@BjLKkEIR1
zA|Q@P>%E0P7=$3GVF0EW&*JS++7!4Bx<~ZyoeV?xfwhL$NsC(fMMoygOfi$eI$rDw
z7udr<z&eV+0-(q*IZ@Hv7nH2XkZyOTU*W182>y<Xb@um?Di$s<X*rNq%opnKkL+jE
zPMfQ)3{Xc-Sf@|-I>G72a40P?vB0@zh*-`AAoHKdQ7>eblU8k7%Y3*fD|^>D@*>On
zd|he3uenWueXW6j`x?cT=GdDj(1yp9Nw?tn;FsBSyPVdRQew^bZ&n*g6ER;k#U{cD
zlu6KWYu9PHo2!{V=gGiGZZ>yMcgah83P|KD%Pcjmnybdan^Sw4s)(ctv4+Hqw?#P?
z&Yq=j41XZj(l}}Ckn(sD)?Uj=n&_hc<d$V*TF7N}q^a*`&*eB!*{gK$qp-<d1<~P*
z`s(&UJE)_}`)75qc!PaVY8$Y(D9v5|vg|GHgvd!eHH1K8P<EZwrbDnmTIASPdf`+e
zMw@8#Lv5A4`3E|NT}Bwk#9Qh2N7G62DD4h<;TG$?CI|^(@2kLG((poA`iH#JXPj4N
z9fh+~VsmFz>6N8Si!3yrtbTc1-U?KVRq`c5D0pcYnJ_LbsjZ(Z=NaB{Iu@^?f4xGX
z=KXcvL#%t=3h0%61k7<dcv!sh+RLZB@Kq?2m|Z$I&~rD)-?jzyfRUr*N}}yv8bd8e
ztKSk|gQRgpxCHyC?-aR8uhd%vo0yxkq&1a?UC_o145j2d*i^gup_c85(47aWBm&)v
z?NbE_zt**}x-986v@}qo8?vf8__gH1U5y5$m51t_Xbx=}1a1^+8@IWbt5cTZ=BB?n
zVYnJo(e)0Z+M{k1!^qkoCv>ekLaFlR=yrBtKGLo{ZCS<Blze@2hQ=^LKkw%OM>TR0
z@o6X8y17-);arB+#IybH+3fG&Y>bl34ydgKMO?%XzmxF+t@6i1H#V7!!M|9CE0sn}
zqA);8gWrpaK0a$h#^9|iN({tQi2rd_dO}e$Y$xzRlK%1N1MwZg0+G(<=F`oz;<(KS
zpadFf4?y$|(4hb%Yexh&W3GZXT6OY)@<FAx1BF<4yD5SKlqlO7Aq=9I1_6P2pbKp}
zwWg`hM$%_&z~@eu!;0v8)q>x^zI`?U%2)W8Ee5%?*u(b?7oq$==oAVp=?;?Lrrx(t
zi+YSQGI!q<c=TuH`ZL#+P*r<8eKz-5*PqN)WcyTL{S-B`DPSqY9Fmxr;W2pn)goV<
zD=Td*l4a!c@N}6meuGC&3ZJ`k16}vq%3Mep@w7YA&nWmpj%;Oh$*x_Y)<3?Sa2kJ0
zV$aTv)Sa~>^t^x{eSc*38P01F9URSX`?W6RbY4CB%c8bT!v-a65l_A)Egd1OQir0p
zRvhXbk#rG9$A*564Ez)yUfLTFAM|J4A2-SLkeg&+vF6uw5$lmG_0|g0Z^u{K$*tKG
z4mgNbk<r!CJbbLAtkiU8&9eshWRgT8OcmIcyrNa^8>S*BOFB;6T^3dvfe`MYL~ZDj
z%#w@0X~uPqC`?Lem#jKJG3qSgsJ*)XxrwkF<43+V60`LY`<esA_vhhCn;*q;(dv_0
z7fpUicFf0<lXsFIk`3L0QWDz6!?1b3uMup<!B<t7gqeCOlrk%3E$v>>D=`L~Gjn_r
zq+}=$Vd`T1Gc-|$b>@r5<pVj4|BIn;Z-4(GdiU-9J=-}jo0U8AJ{Z*zbV?wa7y7J+
z2EuFybXrZ~&i=e$Nad&@(XkWZvEKiAO-{2xiV~bSv<%Ca3`AG<$QUyKT2~zV*#SoD
zoqigKjIQT;?|8jEGlb*QGC$C)b%-x!xQENoAc_hI8RcP4ZrqRLuXGaCI8Tn$m@Y^K
z^9xz#(7aWkq$vN@v#_T;xZE;U)~w{z&xn$7TbW8?-ol2t#B1l3<B@Y>nVdJP8E3fS
zudbno{SJ*r{?KXuK=9h}%06CE+BNX{J-3$k%P%~*sF3L!i(RR*p^=j7rY`YsrJIpa
zg@fu|w@Lc1kz@A7vd~m51H?E~IBxOsCb496>NI%1O<t<Zw1#m-Cdq+L9F!jLg#sXh
z`Qu}}(Q;}6-QO$^L-vuqMoPRw=9N3^Pl6IdZWiY7AuE|43VGIEqCp8fYm!H4mes@#
z-5OP|RVSeM9>pgx!goT`%u~4T&PZk4);~~>2oYy~G*d`Ew^55$;(F}M)E6WAu&lNr
zu^}@SP$yAOdpN>*a^>&Q%<Sj!^z0C6Cj=-J-VH5gz{O@md4lE}KI75^xI6t2bpM20
zdZccV8QxWnAz)5&DWM9fU-d03<!i22)`HH7e}#oXL2_2vvN>BH1?JLCmNZw`itYl}
z*KmgP+rnRM&GS7Qs3WyJo;aES-{>Bf%Gp<=o$1raBhIi&t|Qvp8B=C%`1hK03E-l{
z;;Zz73rUDVg0(+`idZ%$ETJ(2l+ABTq4gJKF30_BZ3OuauSaL~`p*ecfN21$4c+tF
z<qYFpY-A|<=>5w!AS)Z2s<P<K&`aOJuNHDWK8WPY!T6a1A|Luo8O15Wo4-}>ui%tm
zAm9<p0yv|@|A<*~G_akFLtsjPm9QkMWroRMI*v=r(CZ9{uSq*)cumNxlF&RqW<S($
zD;aR%64E}VlhY#M<ZHhO^pF%hy4{I)hb>TB)trToU$3O$Vjf8BH@YpVnYPrxgFdE;
zsr_s@*1`3JPdJW;+U`<O`9j2VC(I=G)>D_&s|MF&!OGp_)0=cs?FYo~JGyHGR7K18
z->%sYg~aDIC@ZyCw;pl8Va*(5u!ilLV1*9O;`l}}XitqZ{9)*CeweB0Q!YL!_4Wbf
ztL;SsujUO9svt;|hkIjl)q4bBs9LP*B%q_jRAj!8N9R^Mgp)(y!KP_iD-}k$@xGkv
zG{aJ~zvsQL6e|_YH(-SnoGRizvyEf+yQHYaN*lxZiR41f9x05$p6Mn%3C=qar*bU6
z{H&^YG+VAt;=1so(MDHP?|#8FYiK-!>tv<AMoV{AJu{BUQqM-z^KSb7phm8#b<uA0
zIRnoxN84st`Kg>`fOgEI^1%Sz+QW9GHpu4|`<7|SnW=6mz7UbIK9s|vVURh&zlmH_
zfm6Xu6mF6*>Gs{%>1nT)x|tD+JT2|UlZu57T!q!ES28+3zN4a@N?d#SSt0CRG`;ov
z)Lv|}4E{xzqT`^4_xF<xG;HF7U-jDLiF~D=0I^h_0sS9ZS7lRfU<xqf=8E6q4;O*U
zQR6SVZTt6lB*zIk$kF#l5Bqoic}@rnL|+%pf+yH9prJ|ldQBW1>pWaCR>mhL;<m>|
zj8__~2AB6H5+b0ouCisamTTf_PnSoTDXi=r!y{$9)Dc9$^Vub5BSuwr3NF8nlm_Zn
zC#YaF2ZzqRIPj(l(+*KlE!ifV*X7l#EuN_TG>LNOE=<LH3Ta8XNVK1SeU8}P*%gap
z#VdG33Apy2rWo+xLVt_HESBlE`)<#8a&kZNm%KG3$ldc|0JZ5b!)Ck42fk{oU3)RX
z!;;BYToOl24EC-!wp)hDd{F>o_;6aS;9=beg$t5vCW+<)jR%t}?~h`<4+}wHjGW_M
z-lBo~hIU$4G9KwKkZN!7(c1Uq)9#_QZpxBAwXlP@zJgmo+ey3GL%qe~AbMY&6SW$l
zpN2@bq-2&RRiK=;9Z_P9&(bb`RWWsDJ-=-K3<DX7;#?h_82#B|h2mUlbA<;&pI>2R
z-Pw_IiEbig$hZo;zM|^XstZ}cK2;xU2t1`0GV|WsmOIXt2XxrC8DWG7{ccRtBjmM#
zjMh9muuWGHc{fM1ie7Z(WR6sGrz&6HyWg^9^{Ivb<bqgraPZ1X230csxi<alMm9H;
z#PgRt?z~$1zb=w#14uYHI2oLQ*$U00c+}G!T#w^wnVDuMmL;P86f-jPST=eGk)W0w
zJdty(m73b#hPAcT9aSVaTJ?ye0$g+yp6cAjd*sScHx8c0`q`%ml>`6R;bpCnDXl||
ziQfjz%pH35Iyh3_UiUon#iVUK)^L}Kr}0Ts=X;+yXK8Ldzn1;6Wu<-KV7gRqo!}gF
z=zMS2%;SBv=sWP9LC?4I(`ak-Wtuz(6lVDyoE@XPBY)~f82jWYX_h96khwL)NM~k-
zKdR;RN>#?^J)bjt4?e7-v%?cH@P0U1noDXf;;D<TB5TkT(usbU_nGa*$7)@E9HZK=
zclcJRk^{ST&IzU*UG}F4g-^}eJP;BTEUb|zl*>oR)0K5MRM4kUrw&^z<J93-(9k9M
zC(c-SZqc<(21nLKqmXdZB9Ob87PAZ*%bRrUPH)^3<LhRJ-DeXWm-!yqF!L$D=sjj5
zRfI8fU482|-CfKG@^2!38&K}6X`#YDyv#IxH4n~ocVgS?w9r+a8Pjc4CV<b<zhxRf
zx<CE-Tw8K}Wp>{w7_KF15+Rb<lU2fW*8diByt=RY<H^aLqKC^IU7FaA*Co+?U;Oab
z{Xtj`u%Sgq0CPlGyft)I2^YdMj~)(o*Jp&C54fYI(FX%Af6k}=b;B0z{N>G1Thh`$
zWF`}E$MYKwUI76czjfs+G%&mwxs3)v2Xj?ff@XlUgG>`0X0y&Of&-pkFZtq8B-59k
zn>-<K@6TM4>)5x2)?yPJBo2{$a&|h<L^#>qwJ&m+&y*>Ldy!y~TXfHTaWBsE4WL8J
z((0aVS`X0sgSFT+2)L*#6V{CbzuIyv-%nw$AZ~UG+PLXjQV7<CAI-`l;atSxKCiPi
zXFM6MY|o{mPiV^k`453ZNnqd?3}$&Mq?WrR?>lcITK6m?mn#}m()&qn5f*dWlPElD
zl(%X3CsoB?zlQJa=S1}E#_E#qpBOW>UzO>y`KSov#csv(y`u6R&~m9vpD8NJl7rZ6
zu#lnj)cIgv07<JqZ{Sk3DxduMXIIw%=YbQl*_?ni?^ChCV`>J-xs~Bq$#fj_syhV^
zLNuR#?*ohUPL)rim_h1948kUSKBF)nVIYqcB-oLNw#H7y|N8_cuK>fvXmsaYyo0T>
zuN;aYkqmor8RGsAdBSE`^s49c;97)%PP>!Nrl!Zyyqz*GIw}=kvpXtjw}Ez}72I(}
zEE+#OEvW$Cl@8syMfIfx>V(@17-zf1%tE!S;@NPqk<r8h7VeW0COb?q!dHIM7mwHY
zA<dPX?NPnx%L8MEhDO&Rwds2?s&|L3v+iRg$w0Y_#W{xGq8GiM642>zms$HpVgyo^
z6U<I5?e6w^Vi4K%J`%3MM#rfki|a$?OfXer#~vMrI#0*R<|TgR^3%)R+($-%V@ViX
z;v_tWViN0tbyt(z(^^gX#2itAO&4z1V;}X+M>2TucDuugp7~P#_XCX07On|wLK~_#
zeg=wuuh1U}c<$I~d#|1`68T7!te!~r@F@DnFz-gMk}@}?UVS*ZznmZ&-*tOJj(>vJ
z63mdm{MQioM{OoXC<aNk)C<J{c)|SDi_<23CBFgKd6A0+E$0d&yaSwGwzs$Utw;{L
zn~CU_0eu5)q4jbq=8qx<i?`9Qzwi_s+1E~zeGq^%E|0g@^m&mup>d=V?D;)<HQuH8
zoo$mc6HB;jU58xD`4=o7M-V^VboTw4zdj0{y!@tEPopo$lBARLk~QW2Q}j-JQe+LQ
zglkVW5fcVERwM&ycC%-dt+hfpz?QWx14eq-*c7BZD6>NGzObG4F~hB_^3-(`wo9_A
z5qnO+BSN~vn-E6#Dz)kbPE|tm=3_N5{Z(gkt6TUm_ZYV39o=q<JY~oSbvrS^<G0~I
zlr<tg_h~<(&9dL9=$KAO=pLa~s+7;A<)Pte|L1_@OXbO@q^Db!z55xT>m}k82AiPD
za0LS-*r7_U>JD#y*kIG3ldwAJ0_^7&Na!!MDwf~7dGZOqFr1Gp1)HJZ_tLOufzq<I
z6dY|<q{5HaJ&h*-H;yvgi{N)#ZRS@ytF>O%Nv^@ZuLr(mg%?&lJ?~^m?hJ1sO)1}H
zI7DQ=-^JF6=E3gf2oaJ93%ybu1`2@L0Z+bA>J!()w0AY%?ZcsL@=My4;1t*8g0@!6
zBH^k@k`tIsJ&tSQc^^(}-f{e5UU34W4y_wQn%Ay9xK%DFabFsxH)mS2AJ~4XYKcF;
zxSfL8f4b%Hyqj~Yq^MvLs`vm<TcuUX&sPMgsCZ!JHJYMP$+dyh4f2iYooMZIqI`zz
z+|nK;n^NnjSExkDxKyfhks^N%XJ-8=2UJU&PE+x?c8hT2{wzPQ17W5kuW8J%S449a
z4Rs-%4#@!CcXfBF0U=my-L_4sr`ECYF(-wYEwzSPOJTg0x-C5<dT%z#XNQf@hZH0%
z!B$&Zq2dmor3s#@>Ve{kJf6pT3|PgBpWzc`=c9@fZddAGCKCA=cg|)$0%_$6X7`9o
zg4hqJNtd<z=SGvMvz3$PgT`7^Ho(>H=+L1K8!yWooOn5HI&kYn^?>#2Sa5)%XlQij
zs6cnl`N84Vb*JurEVr|A)>$|4uWIAZ`{jQ&I?4H91k>J({Iw3O6N3l{=#hEuvn^L!
z7Z%X)btuJ##>W!@ys*})+a8{&k2Wo7l_p_Riuw3uom>^47VHMTP+(foSEt)0=wnUR
zTYTEpshiR)-Irr2akYyURFa4Em*aNlcLOhvH)W)5Bk&Y&YZkJyvP{DsycWP7#!vBV
z>CU!9b$vk~)YD|Hp{l3_Up~8`WKB{gyQGrKqqGK#HWCv@9JQeMin42WBG+qFMh)o^
zWv#|_7h1v|!ceXT${&UFERG`fx%s5Wvxa*+yMvJ|&ylRR{4GvLCN{$W2V<{Mdy4fk
z9@GWZ`?@b^W_rV@k!__-C;`L*^?pO;vpyIu)iHeErbw&T&Re%${PfA_^EW}586<T4
z$3xYDpGX;mgTDLgKgDa)f1-<8ERPBgCol*SOu&Bpc5!gr7m1d*s(x;GTl)3#xHm<k
z*N++&ifForF)QspZEAYVxx01eqj{Iao~K^sK7!xSebf9NTFL=LSjst;&o2_g1i`u0
z>4<EokGhmtMZxX&3+g1h@G)OdumoTq_EN_n8O4PMaGa#q=SLcj;XhaM{%RA+R3R4M
znuHY*(TmGWpp7bZ_@o#raiq{mdk<g=e^gB?=?<TjYUpO#w^fuDk2|UC;*2>ga4W71
zd~B?7V|$!Ck%~_0cv)$hl}G+T4|zAT^^#UNa=(G!(wte}-UL?Nlv2cM<w-l&>U9|8
zMmyR2AoQJ$5@iXA3{*DgdOxBIWnjdegyI^B-9F#X^ztZNCWnY^(r*0>!G(VO4bJVt
z_D-~P%VIz(zWy+k!LKRRlwjAd?%ejf6U?m3O0xK6#m$2M1V#_`BM~to`n=D`{Ln{1
zxC_KGKC6?5*Gr9cY)`wVjd_r4-@Hk(2iEANKCHA#p1vH5)*jsP2zu#w-ahjBPaywM
z=>8s7|MMe0fiFbjsOV*lo@ywmp``qEHNhWm;aee!PB}nJna;pa9+kjhv;F|Eo1=dV
z$FzGr8UY+=4Og>v&x+){=~j6FL-~t50S%M(M@2KGY3FQgkrv|A7Mu8D<yQ%@JxTS$
zxp_m957Z(!4M$Wz#<;{(6j~2E)LU@fnJd1PhRmCAKG_TP6vj5$v}D>iOKc>~_u;`-
zhF2%sgh$4v)M+X-Rwd{?VzOCF&tsJa+JVq<VlcGW0VLByDnq>nFHAmdV49vq0v)?j
zC}#sX=}`a5BWVR{$2zj&9vWR>h9+ywjzoH`FkUT~Zz+lHswueb;|?;dM!?iePR7#y
z&&pMNf_TEpa88|x23n(;2G<3(=*v3rmH~kl{0|swMfUMGeTAivdxaipCe(dKhP3Uy
zO@5t4<Zs4dgg$_5E9M(CZz<WR-@r|?K!O6CEOtDcH*^A{5v?=3gn;pBK#FQM>v?P+
zQ*(<1T2^!{9nFlFc6y6Www;9LTAhBK`!4I;!50^5B9=)=RUyvZ$#Ih8+xrhovW$nN
zJb4NU;XBR=Cf<3eHs9ui(#WeHuAn!4@;7ukJZ$8$jJrn1tQ`Q4_eH0v>6NE70;3H3
zvhuJ_r!~<g+TG$uql<n#4Q{jNPyQ}f{<TEIt^+i<#8b&%lo^Hb^HSli&(?HbJnBme
z{d^P&RjQCa>{gUEowNTH=Kg5m0<R<p`a<>$Zw$--JxXS)pk;S{Q^{(F&uZ1wOHLH=
zlME89EQEkT#3lq-V95@S>>(-41u|p^PKmxro!`dk5)pon1b<Hj;YrW?l}#msO}^fQ
zfcm;i8aTT#F*ol;w9Ep7c2`0WFAx+Xnq`6gHTy(13H)nX4tzxMXGp0St(jgo?tl7Y
zF%i_8w>aCQMo$kn=vbW0YX4BR+dzt~EVrAJnC>m{PB;yJ_?J83ucv(4q#zwEtUi{%
zGNixVH1Sf|fX3Y7!5do9uQ<x~Fb#iwxSzXBwqPy0^s7@}1UAbgX%EyR4ivhqKgKlw
zvYKR9{yuV*S^AYx|MU(>5O^n16Y^N!$%`<$C=iAGxTa)_>(Bd99`bi%?q?nkeRBZI
zzdc32Uz8JtlhacZmHm(;{6{zIkCWJkqSk0pm40_=+Q+iN^G^rvub=WiXXx+e$z29G
z2kzbwwm<*cpPU9Hpkh&Q(tZ2aYk%7VhSV$b)C+;+kE>Ugm%nrXK?C;|f8>dc|CEa!
z!ufr7uaTjP`=^8OpWgj%Ue87cCJi5;Kd_Sh<Cp%wZ~Hw606*`+zOYH=|8Ow=-RDw5
z`<*M)87uz7zx%n10U+-R{K{0x->{)SAAYIQguJ}EvfsT$-&M7?a_`|8x8g9H$<<=@
zF8s@d_UENIEe7exP##kh6i58$=lp+d_#Kk*!So#NOyvF9NdNQ0|M!M3pIC7(zFk0I
zBR8MIv!|f_Z8;GZDy$e`9e=uzGrJb?;%!WHvD%Q<W0_Iqi*%#S_buj7o_$a8$34j*
zEw)eV*aZtevIj~~SMzJP$<Ly%6V?(6%WPy|GHEudD@eKYD^ic@6z)u6d?0_Dq2~w&
z9}bJhkq-eJgQxfCwL$HGY(o;@=L+BgT8S?%F8b;!ms*HPNOl0*x7qM?7K_9W06ff^
zKDq3QRBq`s^m6$n^Oc(V1{A<;Ab$;m6#pBm5cLGm<A*PIMxG*ni)L}0g17Qr&Q?+J
z@Mt@pZquYvKK4~fYcGO-`?7O$Yhlu970+oT&Gy$%BLg#s*{G{g<-br0|GZfKb;S6-
zlD~pb&D$cFc8D<hq39gNl_xTh6j#Orsc(l@uoFTM|Lt20Q|R||Gg=13aC18834*+%
z_l~^6&XK3IZt5j6Ej5@p_-?gA4M!v#9&GXAdh@Q|1yN^<D~zmD70;l*0I66bppe}*
zU1R`gJ6#@@RULYRD$?B#OPX8FrwSF|5YGTJ_Jf(Sq*D(-(ryG$PSrVVnod9h+?kLD
zLPB8S5l8F{3=Isn3zBpuNk-E-6x)AYj-ZP6)Pn&!hPZ)2E;k@qM%GYO{-*vUlXBuo
zR~?bVn#k{JoJ+P6SXjH^l>ztV(5%jHqEYxCKTlJ_As{#`@}FxZL4N_1n+kO-TAWWP
z863ws5$Z!<L4T<~u(YfEmw@nZp312L6u!BcgqdQeAQo$iw+V`*#8wwrv9%t;C3{#7
z`wTnGO&!|>$FcDoHi^wXZd}YQ=K!uFIV+AT<-NCJcN_1`x1Zfd#jTz+Ek0}QUIps4
zCIvi*P+Ax$KWA(E=~R2?aeMwpG@MSmc`);nhtc+6jB;2(bL3kX*7A4NHf!zKP+z<r
zu44cN1wbq|@>Eru_xQ1sPIb=Hb$L-T+it7hd$ara*m9xSsjOVPW!6R>;0u?N(2b6a
z#GNcPj;#5-oXi!LvJu|4ZM<1qi)w#<uz;^Ddw@E3Wyu7N1j{qJo&Uf2>3>AwzyC?@
z4$kP;V=d{Jt4_D(b@X({YULwBWg$lQQ<eT2%ELYfS5kty9`=u2(2(Ss<_=^}^mkjQ
zuh-L86RT|sx1NrL+j~2l%vY1BMrVOX`F;}O>FwJ`@OJc$Z%lIpU@hmr@e2qFhDSi>
zB*4MeEmzxZiMS}IG;DkfMjryT1B$B6Qik6YFQB4tr(yR>HT2Xn2Iw*+##Tl=a(6S+
z7FlbbpB}jszv!I<ydCETX$b2QK!($uiGxEOP_8XhoK1V0xk2(Hnq(mXTK|H6`c4_J
z_>KLjz`E9-i6ay7-$VK#ir+78@r*~APZ|tK8kms!(svHc#^v|3z`VuTsQjn+xxus)
zWE9Us@m_C#6al@hpCmxm^hcWz!H@$uo-%Id{JNaC@Ys=p(R>vYogTTfS=~6bzJf>`
zy(uHVE1CF{Za*0Oeaqhv43Q9o47h6G41l76GX(L&7Uqvt^*`O=0G?MKk|+lVWpQFc
z5!=00C_^Ji);UB(rMjju=Vn6-S2o|D1l~8qpZA}Tc}(C8O-Q^wRfEvz>Y|hSih;T!
zWq((h)Ebd1V+zsypd2j18h^g~iIl>wcDvx@Vo7yU#LSWgF5J8XyZC0?1j9U%xi^QA
zHlAx;V&X}dvpDQ~@-AxSGW1oA0;%d4T#1h)+K#%cd8A@tLk`Mkt9FOPq-M#>SQkot
zy?2WKUxe8e2c;K}<3|)=<>&a4n==Kc3AA8-ridHA>#veE3t<0L$P?wk7NSwS=54J+
z=LhInN!*>T7;kh3#ipn?dklW69UK(n00IIuk|w~L!py%Yhx-A5#|{?j%Pbdagx3$T
zk6SsN4oLys+F37FfboA=;JE*t|4tX+k&%*<1GlOj-sa|JzNu^$6O}><IVmanT&uv{
z#{4>*9gQoovc)$k8b{(j#5V)7=jMR&5dbmc-Dz(K=TMSs={#N!K%O<XaXFqxQ6k7^
zKl_mv%xw0Z?>7bA+}xc1hDJKCX8Fa~STkh;X4wJ|T8iHpNrLgJ5*8MQ!@bw2|4ar5
zb4|^C)Y2GvzaC(BvD^hdnyaE$0l~TmpdHOtFbQ|KjLtyyf1t9paXy-rwq5Chz@kbD
zczeyi2D-UZUFO2*BAqvcnL@hj<A=c`1$06eSs3RZbL;l{GQ*oxQrT=O&-(K7*Pl-n
zXFd9OoXtmeli$8)MfbdgdTi3kv?#1|D3?8<Vknn2O|$r~$w=`W6tM;#sr0y~c(>-w
z<yLeOSUL9DRk|SlX|ih7lCZ)$u2wf;upyX=OlxCKvT10E>|!98)M3SOYT6B1ezOm(
zn3YhBUj)}{Lw?B=M<&dHQ8?<R7+Q5HT^}eUB$?Kta(EKICL(c}&X(>)2{eJl^S1Eg
zzdTjlW(A;rIZ3mR3KU^WDBNo+d+d$k(yno-_-+h)r?J*7mlWsyGisaMCQc*(Kjyqp
z+Y!%uo9c(*q->Pf!zG*y9>4)`dlx#ne-A@iF0Wany%<{swY9sKFWJMBR8mb47k%DM
zKjDBndl28I5q)q?{XvMpGlyB_$lvToWCRPZ#N<Sjxb?71OY>m5zqagXjv(1--OJT`
zn$w6Fe=LKwZLaADiiZ;yo4WQBo3VxI0Jo(_FLR441?QphMkKbDYp&Vp``#C^YY5ZF
znQ&CB!jkL0p{Xn+&LF$v7&fZg=Sm0Zac^zyq^hIpxI$i%lB?CJoy0krxO0;gQi~C-
zg{y_W=K&Q>aOC@}U-3e9pQdeeZ!3*c-DYQ@y>GfK*H^>1o}l>;&A1e>A`;@&dHS6{
zjbKRr&4Xe}hD+LV13n$J25<*|9#HtOjW|qvQU!E1-+b~j&GJ(5etB}~7)p2BO|ie3
zQAG$Oa3-|6Vw&L26XtdHvNL8UBQ~br%nhfzL|6WFJ8$?A5G+{PO?Mc#>*WHV_gJkU
zWbSic%pAf5Ggt5p;`mqsparC}>PGSHk)|IT5EGs6&eEE(8IGsA9AjJCzj*y*2Cxyi
z0YHt07L;FPXnH#C*hY*fzTIxP7qG%tto>q8#f5=@7<1dpC>q%v0F-ip;==mJLA*5H
zDv_QikTvWyu6fs%h0`Y8&JW;wl&?3N1Hk?@u-a0@J0>H5{NsHyQ*C#@5j^tgZkYrS
zK)B`d6cPEtb4K8K?x*Opm*FxDNXeEqt^qvL;FhWEYzBauWDYn>u68@c#Ksc)ox-KR
z07O)|#y+<|Y{a>2FPn9Z2LN`r17s`C1QIrl7IQMsS6MG+UFj>YDnr3p*3AdxzjGQ)
zr%bPgquTCMIjJV*yN-8-%$Cvwt*YBsU0zYh_}prdfR;dq2dsZBK-N-!{&gkmfg|(I
zKq#N+6cBh;3>IjAcm%+#W!nJlD_RfQ==PPXPN!9aZilxw)d?e=0)e5HW;q)mpi66A
zH_%yc0y)uyCd1Az!+jy7Sg>aG2GFRiZ3PrC$DjEudh9kL?*Y+4E~}NG-_$DW_Max^
zv*jskbe?ol8Jx<;9xz!jV3=d@c{c(yeJ_@-C(8Ll!()7*XD0-V8HF~iz=^N#-vlE*
zd9?am6aXOw|NR|t<^m{U(a)5rw;U{c;_!Jfen+Qk50!@rvS6rxez#VCwbkume%IAC
z82cTr?ep;jJ}jc0_J-RT#!iz-YrkOzub<qDwDo_g8~#dEfn`h>lCh0G0h6Q<9YAhY
z<P2+94!xt7$TK{ns<|GNd7VGw#6()-<-@B_fFocwcbsd7>T!+d{nTxsi6Er&14etD
zf=(zex>)3p{Z9N!|K;ikEmsRedOH{c-b_k+xnx4Jhoq986Nb#&lINNxbkQc-yc7vl
zMNOq!2rVWfDzR{{V~>Kamj{-RC_Cc7A;|pjF?+7)4=n(X#z$ukk;dx2ATxA_L6AA;
z{abV9b89jUkA48E`?N9EEO9l`ff2&I0%4~g$0Uk@f|aZNnrzgP$I}zV+hC#u{Rr+t
z?~si^lKoKC#wJjBQS;e&L><H>Kx|mBa~>+(7c^fI3EgE_OO!>qVfMq}EBPsG^+btB
z(IQfHl+7abo{&ptJ*w7k7;1nR2(Tp!&pfs6v))QI^Iixf-V|{BJby-Q?mV=2h;Z3`
z^liQiTssXV!+AjJ$1s42WdLHwUjZahBReM$aWPd~>5f0%0`Z~E9#E-&fGd{j0FunX
z!5EVI&cW$~YwK``joxhx=l32R+Q=y57^+$u6x;%uqXZTNfV|eq43#0l1At#X7UB(g
zN2G;_4ocwbeBJeh_MFdSv;wGMG(1hh$Cgiyt5=RhePHuCXYg$CdY0D--&w}*&V!`+
ze;r_AZK|m){RV=Agp^ISfO_h3J5Cl8IPo&J5P|nYnOnV~L68?r<Lo^ShahSkyWjfJ
z^#Gym1jvAw<_O2<>gRMcw^#Wd0YxSy1mP8!zWNJ5;q&)l$J@OC$`H=I4)E0;{@g0v
z$x~E&fw4uTYRW|LQB{WyA-Fze3#=D%b?ijHz6#8c98v6u9{ebTEN$9uRAL?p9wp&n
zEiVvl*BY@KWwUsMp}@CJTP&=zJ347C8Eph})Rh@@bQ`1(>u%0n&{%`Ys@gmF0yc);
zpvflSEQU@%FLQycQtK0#?_zH~WO9=wxLtJI4+@C=r5qPzLtkuVUgOmQx0lrGiD>}S
z(G~&*J#O^7&Fcr7qZGLDBzqgTsg6EbVy9iSuAW>)J{6_ghk3Jh>i>u^eAsZn_c!o#
z2Iq0lMR<I$_CSL@wK-n(QkVSK7RtZL>j8pDr#y0`6?tqSFO7QIv)meAFm-U3BH8Wv
zQ9T2lbLUAc=Zhea#9O3N!*G(-P=fr(o-T{?X`e)#!a*T7sp&VRr*r#e*N=P!yfQzY
z3?6h2z`qJ;pQU0=qhdXGp0RR-!oJErL<!Y#^C4j7-Ezr%oO{{DrI8~7_CVTvN9Nw>
z%=hcaYDkSsy6Gp2qCl%+0Z>9{e8Vj6C<!)0K6MkH%1j*n$}{&7b_M6QLxj!TvpX-g
z{n{rsOPkrrFyOSvj843RhiYL7^E0D*Ix396l~QBeHG=t9w1gwQ+g%RS(n(S_o&&fx
z6<BP>mw0vhloBzc;NJv43|l#=rzZ@Sq6O5_-p`-_gUUsYOMhgtjgg$p5@*TUOh>2H
zk8Ho_P);67x7y41Vz?iThtxRKlN^*6H)9R%U??QbgkGDwcfn||hq|5poZn+l$cmGn
z*VZN&qkj@WP?ZmLNN>Nk7+P#n%DC%E*gut^-JNpa*mGLoIw<UJhmfE`7?61QOct#?
zCo|=+Hd_(v<H7$?MRvxxaVl?)!8YHL=h$M;T_)qP(x}|8MY|nf)o+TlRrQ_Q7|nSM
zz$9?K-|I-xD6^~R<&e_-6=YO)JujaDbLcT5Il9lnJDc$J71TRh`G8J%>p)O6pR0de
zBZy)d&@kZV*x(;@Fz{=^><?hr11`9kP0Emqb)?{n%GOJX0k;xMCOR+rkd}4a2E8sw
zKr>dij^Pb480eiJcC8D+G=5y#L9DdxFG2Yltz*AfXTFFB$}P`}<di^&h8%k%AW4Fx
zUTqNM{3P(8cO67Sq98|1Mmz8MvtZ&0(_bcJjWD9e?Ug8rft0MQ3lg*`H+b&d#o(`>
zS1cCgC|iQ_fnH{>{UjO8T?0O`P8RUwEYFQr$FMr>j;7QARud=RzSQ%dL#m3ys)soQ
zJ7OwzL2HFK<l&5SR9dAYhuB22Z^CN#<Jut+VlIEv59l;T%Vk<d15x^Q;N2$kKHulH
zmGyoMEM(^e0MP*sy!>jg`lyh({Xnrch(c>nX{*rd<m;<Qd|Cw1Q$~n_adU;!ZIyb;
zxaAigJ3d%4b_{#-tT*?5^52^$@cESkoecJ|^F{%&>3IL#X^tQOX>7a;dVC8ZDyBtY
z8`0DDb?>#1F=&Cm7>2Dw@Ach>-2mS$g7jV6s7<%mN#f~>$H8KEFV7Qu5fMD#+uurw
zd#SDft?{}()b2MdjYhR{dfb8i#Wj++P&TV_g<YPtB+BlD4>8yj5%OT25hmYx;3?D;
zs`3nw4^k`g?{^r3f(o_OX1Qa_)CQjd3Q}b$>kIymkDafPr#FvYp6@y?fe33hrvMf;
zkm?281&k*1#hbMf<1d>HeF?<azIJl-c){NBl_O;F0<&O3o|j)&_5g$6@vB_ol|KX_
zVQ;;G>!zEZh4IB^pZ%|kff2?5+`Or(Eq6Z#w5*hnnpK)+2M+H}{`vF{z{_9+(8Veh
zE?_?c!`OQ9MT8%{o!}O7t4y(%s$X>~==`>tVNaL*-|Fq`b`)5f1xb6<=a~^1<%7_v
zB&<Trk=2VRG3RCpp#MRP78&%etZ=_U%nw18P3WP<hSX`p$LU?@*B|8kp>N(3ynxyl
z6i?g_;_J*n4(o2sc$2%tK{aq8IB4z7QmGldA`3#o=0#vVs4p^~ms@ccu738(JQzl#
z6$JWoc+5&HQ^}_Fpg-bQDeMXmnh~2XDxxlaD-a@JR}1eYj`z@>z3mt~?RIfGzL%ws
z)=Id<j;XcDlhL*0Vm$r1?a9(;+|Kj)B~z9@p0$x)#k0Hq+jwKoUG2d-n-_Gsc>Tyi
zTX$oH0+%WEg;6a6?=>727ao~>M&#_KU`q!TObdPp#MSh2wF;V>gi;9lc$Y|~1bs#k
z&R$uy<F<+0ZPck#<<@RelX)cRuQT|Wp(G?OZ9ICzJ|T0ru__I|1-%!h`u!g~6gpR3
zj5k_6UIy@WL(+?zZk|=o#TLx_`V@T*n^DLTi<=V}g<|39adpz0@gOX^v}(~+Lh-3A
zhg%rx-fR3#b^{ZujH)V|+S&9^7NlM~E|ZrJ>cSb6uip+nD4-1j?Il1zTQ*!($`tm3
z=kb_{md{rV(f~JK<pbUEb-CD2cp?k~VC=Ri4F~xqL=j{wK`pr`ztR-JOBl#sDuX7r
z<uS%G$8OGT1CUsG{Wi2+R(3*|2@l;*o4SwQ2?)W?eD9|r6!MeAR=}vzY?KL?k>Y~I
z0Q5(Xz<d1hhEQM3!Wqn2iNpe2`|&{J@8+mOTvxsBw2R;-i3OKKl<GhzL_swt(|gR0
z82+DF72w{xFyM~B<}=_{zE8gc@?QDc09Sj!!k*Ks>d3awT7WO;N?C#L`xb_+nv{&p
zY)eFEe_c;g&rPIbEo?|Eq7Q7z`uG<M45}V!c!en}D-?G6t$`@E8U7AI29u(SFYIW<
z0wHd8Qn30&k%D?}L9xWPXZ)05M{w1a3m?5`NrIYCG!O8M?|;XXa!Z=WpS~V%i1|Xs
zL9VBxDNLf|QgWx@LmkJKi??{3O1x{|G5s025jr6u+OvF~o7&&l(F;1lK%{w{ItoS+
zuoHkXh-_EaHO$ACV#y>OKO5waeKC7$D9{S4PdaJ3l@J}h9s$pvqmE3?h@>Op7{+;R
z$4l~!m83k-b{12VP75se{BT6Sm+}gwkd{G6!p^~Givyam8g7{jEHd^f$|39#eZqdU
zORLHZxvSbk$0R+>)g_B*S(1GY#BBHsK;pk)!jl+(%q`!8_Uf7f*9%0$K(sfh*lOj6
z_uu#*A$H4?EYlpd`5Pv(*shK_TmU`DnQk#A%uENc_xdgZ1aUewk(_Y+UMl0(Rhtpy
zD$gj{ogu<MOdtN!)WA<efY9TSIF!Jp(0gH1fa$5u2R=w8#>&fDXg(=Rb>AC()!rxJ
z3+trgk2BC+9}NswL`J=FWi7q#$af(DoL&x@FD9lsht{F00^HZ)8F%d^NcZ@wb>W!%
zIsC)vjlX(>3KbV~qn?BU3Rj<yP|}j3-=4aYcc-430-(c`_of`10=2Jmnc0bn?Qg9q
z(XlX@ee?2A&V`GWhR6lt^Yno(SzF5G99Ph$z!YEGS%zm(Eyj=4J%wE*boAj`{5v&_
zCcF|YRO#ak+YAyqW+z+s<;Ssl6U9(^ge9(o1iA0#?K9v7uEhILgt44SOm9-RP|X|i
zbj*Oz5LT~r6ORF1MWYHga}Uys$8LuMW|N$5SU$BkMB!ZPe8%1EPbpSaE=wnGON3Ya
zrsF}3>&gIKgx&S`fntLdyggpXWBW?kbIb&pQCG*zYnQX|0<^UdddYMky1oMvcGnsk
zW;;l*P7!*wACMevdj$E84Z;z|><BeR2G5&vyK^dudq%OwEk(?XqLA${=Lrc7E+nKa
z8t<qD2?MV)$=V_$lROZ$T6Q%8Jd(J0p6?Bd4zmM1JD_~wVQmTVg}_s!1O5G+2QeGu
zrsG-GxV^}*1FcY>8$zl*?oP+WL?XiBL%v6djhSb|+e$E9)gMVJ0$IDRN<+evr?1&K
z=9V9XkRIrU2$*0SNWp%W;-j>LGAu;8d#at_v0%k(R4gLqgYef!vjJ+}n5!>GuQsjF
zo*wVm`rthp&p7B&m@|28$%WRNzkp`~^#e_@(-BwvO!3oMiO5+E!AnYgthlNxdx%Jp
zw@=o!v=eTA#gjtW7SO;*%g=WzM191)D%mh$XQh4O{GEvw)|i@Nk&F{hS_F``4?Bz{
zSO3)c2*HV+I2!T~e7AoYr2hFdTLuNzYFY-UStW~6Uwsi_Q;D>ahM&Vi-HpFuimS6l
zBIad(*U;=%ng4VZWIz9?T+={n-|Hk3>@U#2ctCAcZI3Na7gS-LOlv+u0gsDZ%lfjD
zFYkN@SBLkbJ*$?+;)ol-iWyn|66D%wIyyNir(Jz=Ky73nTi4mcP}khWsu-V8eCU?i
zk-<8pLKT9^$464F3=tExBF-JlDJ;gj$!&f}FHV<GC5nDk#eHOlmn*<F#u1=~JQuBM
zG*ES^&1>soIVY=7U{qZ)$Id@jQa7eiUdjoy>0*3GXLy8M{Tzx`DR)JMT6(Tmm$y%1
zld30b$tpcWc2HoqKi0clne1hQ+!N42vR%-Kesxv4UN;HOh5;cE!~~7l`S};r_8lni
z+`fiR4~i0a)nO8Li6i;bfLXis5#_bqCxpW>%|+>}>`s~itg}TDC%Y#9V2BG?fY{P5
zYK21X-4g>Z)G%OBaBB(AMhg|GEDuo~hEk3`U<`CAILTNe5n_<p6Uf&^V1jF6AtTMZ
z&U@T~Y~eqwXPPrHT3fMWPJ#dwzI-#~04FR{^#rW*@%5mw9X&Hr%qh!;D>)7e^{-z-
z@ET~K2{&lqdc<Emy7;WBrR{e1qPL)Odj-)=SM_ZwU~84hJdn%zxHwHP#G>WRq9LL7
zN2qiV#qDv)Gd`-&yZ|jXTidBDiB7*Q$Y#mlln_bYAPzvQa9FMP9$@Th^ehrK1loco
zFycPq%o%5!vIc_tZ>B7chbsfX3;DNB1PIo(w)=v5+O|_bAZ<;yfX+2&3{gg|^j^n*
z>zI|w+O<kk=%v1DM=OXM?htx}w+A<&>xtBZ$3jCh;xJ#M!;~3N{gDu0lDy8{K>F{Y
zx0nlxkleC-vO~m)w?OGY<IdYFs1AJTk->^d6=xXLD&E2Oro>Y*!9#DCQ#b6RAdTCu
z1M0%9T&Ns<K1?LXJ@HewcRol)^S(O2Dw*^rHH(8dN=`bO^!D-3IrQ+>y<>U*dQ@UI
zrz95yGSm-LmkyrR8W2kuU=iqLo0D(Q0gS<Kv0B5zLsWuYPw6JyxnasfByNm-gdDQM
zm7P81RXO%RVXEWp(x{c`cqEG$&968gX~3W#rE<rpm~--}+RT;nBz(9CN#glGk+45k
z0G*nH6^@p$LO+(LOC@T%{9+{K@q~yl3SXr}9eIslR@iR9O3*6<6@9Dg-O;q7><m4u
zGU0ZB1C~~1Dd&1A7G*>y=#l740BF>?9i9|X@Ubr(Yio>&(9>f-C-_=TL~4KGTYN%8
z8fmXLKyo*%Ceg#U<qixtbnDqQP>6E>YVJ@SWUph@c4*s<4`_8(X?r`7e{Iw??t0U!
zEq1mj913lPlB25GV!hcL>d*Xr{mao@{sYfJew-r{tm7~-ECQ(klT6$#uAKGE@ZMxv
zTwI>we)C<L)pExU3U=boGq9ilWeXIlx7()yTk8u?f!=|E_wmB37t8)?2vniK1VYoO
zLls)ci2Qf`r-*oO-J<fwQYj2iEe!=ZS5tffrjEZ<3l{O@@jX?c#b>By6GmO`y$H%W
zK!ao)b=Y0!*n$lEN3BDrzkvEF#vOLS%5M)4V_<su(1eALPiHI05?KtI_r6<kxdb#;
zIC~QJQtjU86H!72bx>m{Ik5g;AOgi!Q0vRHm(3}tD@WX-+kwpWw%Q}1x+h7i^KA|3
zUhj?fG(`v72~LxaPo53pi>)a>=coW(HzJ>`DU9x}d)e{0z^bZg>tOP)3^<)|jHlOF
z@n&{m&T@{N(3IQ9>U+m<;WUo*cGL*)`qBs;=q`Ym$C8AjIWaGjdW#ToU(I6>Yg1?%
zSqrv)!MotIJ~UXktEQY373*1(_m5*7j8?BZuyn5cmTYCMh|hs8_aNX-R0XYOtI7lc
z@jB21@F1_-vNyX`?(?uSH+tRVnBs;pHwOs52;ScT71<!r;>Ifyh<I(v1GYI?X_;Fg
z+qc@1GUMcXwR6+$4L;M?H5Rhdk}%MCcU3(g6n0u|I3NKS6al(GyHM5dwBV&REL)<e
zUM@%IBQ0{o;}98fmQhiz_B_BBspA;;*1NEN(RNeUIIGS*SBttooObjz6|;~rhF~W+
z(RA(#N(A4>kGZjWQE#ru;8{oRc?a8K_&scI8)>sT&3~KA0fc}FZrztZ99w-rTe@{)
zoZ$3`(6f!-(}6Sj#b>2bsa2xb+haa+at%wN8X^Ns-A`O1N8HDtQePjn!J$7N^?C4G
z{6~Q5pDUp+)MpOAWN+02rB*c&pdumr*@#6-zk(V<*`>MU@w%mL+q6jhA(s9|QmJ&I
z80kp~e!GmcbnhTl>beU{;)_IDdiCL>fC9Cb?e4?72j~lZq3|cNhxKr>!igPDr;q7J
zI9cZ*m~@!V)EdK!D#@%2HG)0~CT=o6L`um^x8yT#SgJq5926iJoHer1h;*ckExsV3
z#G(p`0L`n6tJjcKqS|O1(w_c5EW<_Dk#?5itT+%0M?GX?i+B~=A%19TZ*jm`)Q9Wa
zS<I9S9_XlfuPQS`;^t@iJiB?-nT(~HW3lJMvCvsy>A2=dWpZ=ql@9Su1tJjk>Yw_y
zsEPY2rHG*%U^Mh(+NstF8#P=dv~*-RPp!i2an<U;a{uN>*%jpq!<%pAn%vQrSWdhx
zp(k+Lj)`qnn)iO3@3Z3%vqYm&DQD=T_W0eD<x39soqsczcf#|g3qKvc4N^deouQiw
z)grKXP$udZ05x%UDm!nUDN~ii+G!8j2UsA#03(}b%NJiJlF4ip<M?3OU3K+|;7Nu~
zj{aIG86R4WI@o!Pz14gY0KVYS>3karOcKSW3Z<Pe6mA5{RTA`PznCJ-vKtLXXCvEW
z`s{xP+=;Rum7N5)P7j>4!1XxQ=^5UwK&8M<)G74&X0sBbsww_Xrz_c-zllRe{O;5E
z6HriO>)s!817oHgKm!0X?)2Sw%Df2t&ZQQU36CdoBwx-icJQs`|3ZlU@Al?R<g0c<
znu;q?X@B&U6ZB7bU`+DoU&$R{xf7}cc6xfvk8EQxfuU?--S=e~#;p79t%`ICzWbJU
z65^@Pb;s^Sa<JGl2g$_JD;S)#_L&nUg+Dr5psXWKLrz)Lh`HX{s?N=yd>DcISmX6_
zm{v40Q&oosSDlW1(!Kzl`~5rkmb%{A&?8Cl%R2f&EsFXQHSf*`EtV_P#=|XT(yL=D
zpCiU<6<D}7;+mcfotg47XsBq+TcD8>4OkZ*pr@M*2fTUvvCm-bYb_?u!U5fhOuzbg
zr9%=C10uSJ*y|+fI85|h!u)Pw$3yh_pBN>=ZJWPkAWC)Jb`pT@e@LP~3KmXI1XD7#
zo;7(zB}(?fBTebClO<Ro)evi7Cxj%@wopGDHDg$U?)rE^kpQCmU4BUe(5}{>#DhtF
zqd-q`euo(%EX%$D)%Ld9%&sKIDG&ZZKfLX<{n6TwrjYA*2b=n(McHj((Sq{qstdoY
z&N%L4D}TTnNTNDbK1z$z*RVVRaQQf_`jeBXC#CLdt!}kE=)H4(P@i=i{CbK|gakq`
z_s>pjZ(HwHJ$7a_ZEkQx<`Q<n5HN7xULSpgw01!Q_owoeI-%`w(1R$538lWg&Q`^B
z{LY^W2gX+Yak)(6>P!Two#xkjqT>LhZcImS*_H_n`y=d9=O+$;#AaOY1C%g;l*?wQ
zM)_~J2|h29R|6S)nI1CXlECnT^tX%By5!?;1uTt5Yi$}kU>r?#*D3bWL=&Uh1JU?%
z4#To51yqutsl%n6drO0!p4`uIQ6?oHiizgLA;p1q$WyADmlx*kmX?&5t@u6H&N`94
zB7-SJmA|RCVBBY|QFN^S=eG+~06PR{u`E-h8Hwjw#LV&NRF%onKu2$wMRFPO=@1jn
z#!WA#=?lwenhKkHL5;N<KAfy;p_nJ*iouDC(8%w+HG(-Ig-TmgF;v8)r7?khm~B{q
z$r${bw9J=G-3QARdTxnS9XVSWW#QRbfh39Js`A0*Q-{b1%Q;bP0BD2z#(&5p$-5+_
z5o}-|^Q42JzT^cdcsymHFdpF?*vFg%uKj<Uy#-X1>)t*r2$I4O64E6hDI(nsl1fMm
zC;|dQcejKz(x{Y3BQSJ#Nq2XHbbt5kbIv~hv)}zL&-bpyl7V4xc%Hj{*Y67HDK+LX
zWkj~RvoBYBp0`8&Zfpk$IHm>{<<KJ7O2g;=79gCp_|SI=y12y3UJFlEk%Qi_RxaaK
z%f%N~u0E8;jQX_hdM`-|Fs}wBgI<xl?TfzHsY!GD)j0^fb4~b_5m-%kVOs^&(`p`5
zQaXr%d~9*x#Qbw-A?Dsd5I^Pa`TEz7NNKfF%xji-@2WG5tY$Xx9{P5}4Ihn(P%RXB
zGeu$wC6b_b^9sCpFcF{dQ{q+~4a)E2Qon&IJgj&QvnmHI+lqu|7Fv<zv1-5u-;-xU
zq45In?#9O0Z*Gvh$3Q2D^>VM!Z*>Ge^Nluff8Z}>cVNz@=osWRW5^feW#RbKAH(-D
z84yVdICse$rxzIgfD6mvQEl+$&{pL#rgEE)_5D^}mz}aP0qMrMR%^GKZIe(Oy{2O<
z#+@02;uDLCnMd@gPG82w%zlWYJK;HDy?hJzLY53@cXye16VH1LLI`cUz+gWq`vvxL
ze$%nud6@dVD#jxSO_E8@g#M%}@^#M|&h*3DY4pOns(r$k9_xJ%xRXo&0^A<6k8g|F
zHJ+7Cw`%yCufa3`TZuXE&B;G%!0)8vH2f{B;_V`JN8fD5?XWle5F_p*+xR>WqBJ4T
zyJ^4|_ywB!qv%hF%{?PO)oGZu!?M=u7#TgoB9qTXa3^-zg9TSDS%wd_WKQDF!;K7p
z+O2DLZ!az{tdvfeMx|-$DDII-?V_E${!JL`+U`tx%Cy+mB)M(tQ`x%3fZ<MF*D-k~
z9eTRB%Z~(EpRF$jZ+Wjn9{<5HOFE4J=Q-JT%>=lPlZTRtCV4la503=C%D5}!%Otzh
zzdIn4h;D9|-%Kmqdf9o-yP<V9cIGEdrkHShqx!nLLt%P36j`rWIzO)GekrX+=0$I}
zoc+lIjSg8&HqhPKd<2*m3aYDNILW8Ue)d(Y?&q|zVy=D?KX@g+@R89eu#sjDntRgm
zR>#Tu*}QM5D}servGgTb3o!3~dQi;fym~m8e#yuu={RkAOaHpJN;XSwCnX8?swwuX
z;nEVt%RQmBqN9~1Up`vZK<;hNusS8m@uU1>`JM5J^llMTr?dOGT}K_F#d*6@&|6ML
zZ^-LV5^lw}eaYYa`PY(d!->2pTL?k#!bo|jY-TT<Z<C=Ca2;2stm;P!bRf1)Xbgz=
zL+vtANTFU1Ha<{nR)_NDaq#TU*n=k0pfCFq$W-@*>gN%W7f@RK%U{IlOP6uDp1kMy
z7H?I#Lf|c9478tv-!<60VW=C7As9T>#A~_PsV;Jlo`0e=AI-B)h5*($9b{Yt-~Xr<
zg8JGGwzWXoz%j@}`%t58G2CSD@y0k0tDb=qXb5cC6+vbj=^%YEkZ~_!#Cpwnf~oQL
z+`K2#tCTk_0#FueGA=(ZNCx$rym*6l!Fa&;Q0Nmle7>O?kwt_R4_(U3?da_t5o68Z
z^=H5}R1FH;f8xyx(scN#U%k*z*aK85_{_{Z1aQ^ZZVaq&fd>VFK2;vlf<?qG5@H-?
zz6@gQk;cT?y<H(j4X?2lN5S5rB+R|f?5B+1FRBxWnp_WXRNhao<wsUQxLu)#6jeT3
zf&NtrNk1#hklKGA1VoXkP_@izrlG+M7heTkl3?XKja~u2ZXf&sScUb+BqHJ2TU+ve
z20Xw-Nt*_Yy^B|<jRiP83$KpbNUYZ1LVKGJi<!MmnEHrU?`4Y#gzP_WuffSFossIc
z)q~EZd0cD^0)lS}6LFdafR0844l0pExsVc2GmPg-O+K>5AM1&lB;!pVItA2%JDo_p
zO9i7A(;;F|I09CWD?#c9d+cuE^ADSop}OD#?zmW<dG|lS0|bj6A~&`Kz!UuMCcDHP
z{nSNy7CZ<JH5YN+C*SW>64+1;A0y0Ush;@oEO!MrCEX+a;9d7`1nQDIjy^Ut0*zLQ
z30n)w>-vHBcrTwZy&jLpb?=}PvR>q!ReZm3%OE;Z@Su((cFAC{P>D%HG>u;#&@~>^
zOh=ZQS3bNnceHQVsl~I3fpJR7*%cmMO)h8d#kQo81B&7|HN<8>wA!#6vCbCAM}8L;
z1G~@Wm~nL;V9caqA}OgiNltg9&AO29va$7f!1@$J?=ou|@5el+`vf<lqdb!83+@+e
z$$=?_6st*DHaydZt(k+HxoJq>d`axcGW6?G{Dn))S)$zM2<$7F->Vd7PPed>td)jj
zw7%JtH>KMS6}$pk9tvci_KXCYnUT~f8UED$73Gy*yyAyPT94Z>%%?@gjI^D@8@m!k
z8&L5nzcgYr;jkT`N-#o{knv>3&=AlDhpG21yRvR)YhBAA&F@`n#g7oIsr&?`rj06^
zlR*veM#Iz_-H*483gW|6VMHZiF7?vXF+drOS{UjjgSIGD^SogL19N)U<t?0kl-~Mg
zJRkzewxhEX2ev`AUwN@z+7E1!nW)Ne(?w91V+)84MS09)AIb4OlVDX6IPeoW3o>%G
zZae_p(y#s;nY<2?W&Y+geHciepj^J}BjLc*hPS}ap;otz2tt%N4zvEcWcF^8>5}XV
zB}_sH9J<5jhe<gZ8D*uyNx#hyDafgp7CxEl?kazhioNoRez0wEFBjyAe6GWeG@Bu?
zN-REb^ET2qMeGZN#~~?ZhnU=vXmF~$D<(Ak^#PeCNouWBGP=q_5Dv{zw-7<9s0@`Q
z3MnSXEwDn>o11g8TwK8tK$(v+K}lA#))gBMa>e$MsQGCL!pEx^lkYb-yFYonglqm0
z=Q*)$i+dR1=n7WGlT(`%mMv!l`u&zN#0s%1*SBZ;3m0!F__?^$=AyF-@=nn&#9PAp
zDXv`6eBMnd;9VZPZxERF?&pKyh|PzuakgZDH@LI?bQ{c<X(L;HcJH4J)v&<d^&!2G
zHYvPASgSf-9f45RGVOahQhH7c$k%U@&&6<9X)Hen4HXAG0K$XF8H(f_39s%CJ<Rqu
zC?$?QDPIQlc}n+C=!7m$2s-5tGN*o^cpZ|Q?7XmabI4#zqdZtr920w1P5uUTKy|f-
zv09i<K7wgnq7L^FU*wuF%JACS+s?X9$Bu9fSJ|ufwT{`s!iX88@aPn)qY<oN+}VZ=
za%kQ(X?B=?qmV<L{d-q(go^<Dquz?Ci~D-)sqUdZ*QOytaV-=SQ8mL(_2lDTB=fUq
zW3s=P<A3%FDSGh+yED5AB1_8>d6s3c+~|Zn2_fYPLPsUHW-W0nWPWea57tVPOqr|f
zH4IYp5I<aBv6!mU?+a$R2z|1VigoDC+E$G8y#4H3r<$%O;hr&P);Vjn5orm`pobWD
z)*ry|%>NtiF-MQ)+xJ@ym9kSmpaX|DT0DxlpaZ*d_cV;qu&wx_be-l7cb-8r!5Om6
zCye1XOREZRBFHzB$Pa@B?aA!iK|+*4oMO=iYv`Ymr|Y+mlGZUA$%M4$aY3(c8i|nU
zw5CY#O&2~(%fZ9D8{!Lg0Y(!D_duf0C{|$BEIA1?rMj5byHjUx*nOXh&``{oky?sa
z$ocC!2PRX;YCxQOG5>6pZm?a4vPS~_9jde(ULz?<6TVy4QgYSZ_JFTcNI{usNonq3
z54ZzN*WUW-o82*Dd**q2U6B?NPu%QIidqjXc>X+@X8>TBQ%2)kMTI2Qv*Zm072R3A
zfYNuwW&~$7Y1Q~$E&wLs*y+PQUu#9q9be~)k4F77yCgXZuO`&n4jWUednfe*XWI1e
zCg(3&?G5?Q66#=CluhtFs}BOM&yz&<cpf2{LZAEqEU>-l$``^I2bk7@wOEC9@2m=&
zS*MIdy#iitKgz7E#WrttZUIJIDgC??vmf0dkHmF0umqIYt%6vAxASWX*u-guZuyW)
zJl6`(ZZBYeX;f!btp%E}>Ri;o0F*4k6Ku^<#}DnB9}Ln@e6q1MkOiM!iw_&mo4L#m
zn}ve-Ee3vE3N%pN0AgfZULNz)Q;ZDBwz}%Qx~W2P5-`I)V78$vAyRE}?;OnyM@2;m
zk`zV#YpSK+;B@pHUAK!|Yx8P6|0`js%-8E&$>kD=jrJ*yR>7zFriPqLq>IzNy>m(D
zH~FM}<Ut00II&!TT||UmL^BHg%<t9tm8M|!9z;CD>SI8Ku}^GNJx_XgP5zJyr?;B%
zwMK!WHs)G=y7=*ZtJw!;B(bWFy3oa<2xT;@L0K{ChjP1h_eHZ8%GUhsYN$THj*3s9
z<*nA3s7|(7icTB;=BQF^^is*YRLA1O&j1#>JSx)NU&GESUsAV^<kCEXYz{DjLnUvl
zSgx465yW3!%taK*&@nt8p;j*B5NrDChUK9Wc4Tc6RUY?hdY#MT)t1<ohu>fJlG&XK
z(Bb|-E__4A`7|rRueE%H*+xxke-NFa+ePQ(yAz^};N(|n?45W1!wHr+60gF?tL)9;
z^mc+?r(mCL4yyg?<tTZ(2h(Zr6zXo70W@j0j3a+#norIPoYerM9RvU`%auq~uffHF
z*Luis2gGNAvtRxwi=JQ}W%_#rH8&ldBqi1XdPd{+XnxYHe<hWLrKALVdz*7xF^6<e
z!aOShbJB-TMzTg;{5nIFh(7zB@^&u<iAIVkZg1A7Dhh?3PUG#^6`r`wW1++g=xFFE
zzHylPz#1QD@kW56t5k?*Xko&~oLuZN>K@agR^wbqBrB0(2Bd8vVTnLK-ek7%sC5$h
z@tN7M%v@S#rF8Fg*pi3@;X3hhYM}LOb3Mv_9+!8_3UsWwzM`LZE!jr+F*I%7_8tNU
zYie|(gmWK;j_G|RQcfbmE&vI9dYt;&0Nqh6$lmupDPfwh)1##;WY?Y8wL~-r%j04)
z<bdOYJlo!XiCGXq-$VXR%gkQ^B;{VDegAt+K=a0SwN~v6J^`n#b3e6#1;Cak`Y99p
zZjfV9-U=pFdDjqQX%f*9KZDo^u29gpWnN%$+4QBovhp)7NZNI5=)jVeIecCB(osg5
z<hJwN<FZl|KG@5`L@2#qTWF)KX$zxKUNa`QQT}YIm$n3)!-;ttB`}9B?a;L#iGr@>
z0>Hfd7>__h*BsUDVk4U`Q*c_eu=Zq9i_=Om28qeXi;dSwGPLF2CU$?LIs6CEnjVKI
z!dKMji$Yk94wFtO8p2NGtJ4thUY=l+A3B^JxyxPsE?JJEM!n=&zZ$DQF}!i(-TXOt
z7}-c6^4~spBO-TLU7$LCQzRZ7O91a4R-A%z`f1bZ9L#3~c-=Wjva0(Q@ak6tEwG?k
zB|Kg2Pt&gof3JXO?*&e$_VcthXn(!le-RmpAgW2v_wn!9VLby5X4ySrD>xmRhhJ%x
zJf$9{?B@u{IF(xZ#Ovq0><6827UC_F3pHEcKNprwG&sHd7dW%a1GPw5^lN}pmR%+Z
zM)&kQ_l~9-wBnRWe}pG8she>r3AoT@kCb9<X}smAM7&>T8my%M_PyChHoP)Pp%Zky
zP(9wAs!#$lAAQ33SBIk+stwry6Miy!MSCBM6buCHi2c<WwSqI9&e=N6lJaYoS0o<M
zpbyGrwVV70Bo*V`03?59cS)-(=lV>vi6JHOTzE1dCk|9_y4j-SPv1rSu$t2Y5*1n+
z8u58!nB9hI!jm^2XzA$G4xc+a;W8xLK?;DfD#^++M(tKF&%PH$EK3uSsrR`4RUDd;
zu{>G-u;5RSJzWgd`0d-59XzCd|GHTJe$EDU`SIube+>ByBF;UAr8la)YJKl{%oM18
z)_Z!UxD@2B`r0`L0nAuqgzEb>4{-7xQ52w}qPh@*_qvc6V~PLf(gEe%+0C)OhDN*n
z?`hv6$dGkFg%>zqj^=Bn2q58ni`nY`pdnWL|7C{%<MHr&xa@KJu=#&gq5k=rmz>_9
zLEQblu#V~V>(?%iq8};X))4*OdmV#okjMJj$E5$dAN}>GmER%)$>J}d@RTz)&LB4e
zq>5kgL_cQ%2ipHhTJfHg0665NT{(}&?>emBOf--O59mO;RC!BF%eoPef$0O!he{@X
zA#91ic~>I};5Tmy-4zh}EyNi{19|w634m7NPfZ6U`gcGj90{PXnzr6jq2~<DS(Q(P
z&Se3|)(Cg9!BJ?lxvEkM{%&(*k$}>b9t7$JOaoB{m#J2=JRKffIB+}{cn_Ogr&D@y
z{~y<fD?!9bA(eDZ>TllYU#{SYr~x=i4}#syef_~>^$uTbAx*NOoS#O|_-;hOmi($@
zNkg`4uP~0s0g!rWSLZ|Qs@-2uL|pY`;9kCz@*OwYjr`Oca2e3oADcmJ7nz6IM+y|#
z>2D#h#Sf2{;TFP0MeGv*bq31Z3k6^lV^IR1Je(%spulLh(tl$q0BmvL`dX0O8yovr
zqYLD=K0bt!R^Nj(%=s1o<Wex2#1bY7uo%YR;9xF;x5<cqT;qn@Qb+QA75qIC&%Hs6
zTJB7SLD5D;21F(%CiE}(-TDxm2ait*#$C@DKirqx{*vS6<AeMjA170OFU9ZZV$P)L
z{pvH<&Y2ZNS*O|lwUX*m&Qi{~l$ns#1!wGMU_-)wX07+13j4oV(9?DBfEz7+jF%WT
zE~5A~ii2)eg|oBsFAx#-0LN?naK)5lE;r5TJ6BW(Upo>ld#L44S;LPT-?QdZ1l4V@
zBO8=y=NjJalC)04g<sxsV(CWh;c_}b8(?f?bmV~;V<wRQ7#&F?-37Q88FjuNUNS8q
zx}B<x5^<TucpU%&{t9R#732*GEFV&@iF;u1+<}i4)DK{d7hN#?!|?jwGV;Hf6J5{e
zK_4Oli;VB=xpjjVf>3*(FW`+14YZ@tg|;)=rbb`YkQU>INBz3|{(3t>7ruOmoIfgZ
z+|%P|bpt|~=#Gvi;RCp^1{V)+WkjR<X69_%=wl}kC{V#u)QCCX##li!iF7}b3ud?+
zZ$?E&+m2&kR#?rk0%}lJGC*RU07Y%lO@Vk{re?-_Iryjz^b%RHq6nN{tfBqggaVF?
z^oUszG(W9Z)`ryBl+`~EcPmV>bj}Gw<X)7+^Mkz66%59UUPr~ou5bpHTTFEUcxeT^
zMYWY$mt#H##Aaj+0#u>U=8!u#ILJc(bjxl|0#`8b^m=Xkw{25Q#H42yQFZPZgNWcp
zvUq!O7Z*sVn=(vPYsh-2o1v9;pZwtF6QwpMW8sx0q3g$`zlWQe!xNk{Dj|R~5LIeY
z2HL79gQ50dfHjFwGBL?zW&)070VUmafo`?f<^xlU1u+l-dfNpQ$sdjoPU}~DljMQZ
zf1ZB59>_o0T*A`K5GBH>(JLf%KN?W|uFkS@2h{|o3=cN3=@&fh054_(`BgC>O|{HE
z$u?(<L4hA?IaZKj7`itMMIP-0DwOP979IS%*C+@;GXCO}Osu!ee5|S<3>r2tfxYY6
z9mkR>7t2)QbYR%o(_^QOcFyzYkrd^#V<&+Uvk@j)MMbO}wotTwv_Y$8D%;*fuBf;;
z0_7<YriIxhz1Jyxt;OCyPBl=r(3x>yw~YmkFx95dE+B5ujO?r$tNS09cp9wx>wW&2
ze_5mc_RChte%n~orim~MN3Y_81A?1QMmG0CW9Cb_C=)^B%x8USf)XPZEM<jf>O0vt
zyn0cdZo_43ElY(_OtrgeYbS0l3C0E2uMD-0;t~n#zIHh%3Fw!Uv#MUgJZc9pMubSQ
zY)`EsnFRMDJ02>i5qm7ZGHhQaK9#u`WZQmX+fJgdoqOv1(oie)4T1dX1#i^TYX@0@
z4Zh$#yWr(D<F4{GbieyT51iqm;V0feQSS`)<`_H*301zqp&`&L(2E4ohu>pr80x_h
z^ZjWJSlhe7X(K;ZDe0MlML*9HCY@PRBS_Do182-cruL676nQ1300zuuHeA$Q<ckl3
zGwI=HQlS+dxZO7H-K>m^j#ff_on--Zp|knBv2xr1L<+zpHXL&X!HX-OjKU+Qr*$g9
zj<HfcWf^TbQ^iR2sURjXkqO*~Xds2(_>x`$*%LJg5=k^>fn9)I6^Z(Z&Js`^+U!)Q
zeOEuJp>nGRV5sg^g8xV18<^epxXS#bYaj30r|jXI{EFFJO>v#9yVMQ#TceDkv^>ZU
z_1zBqMMMI57jLFPmHwe@g52^0i1H26A0VHmxIEs<zTlWzNEJ&Cwl};N-g`7OKDLD+
zR*At1Ysk~vz5yK~Hqc0n1eN>6aCb*X#J3mOUD{T)D=+j0y*uwR?|Y|@hJwWT4j`@D
z)DQ@~^jSltR>;HVq;zs$O)!aJ_{rRU1Lwa><W)QF#dWh*_Xt@O9D?pBS~v-p+42zg
zg+CF2(GU(ZXoggG+mGpLEZ-OjE)ZXUCcORF$>_5GnjP34aVaPY`@{{LfG~5)zEb>;
zT@^xvFlQCsFj++K`}HZJ;q`OMTube5{F~hJSB{AvVGx-bYcARw*lqMfLQl%n4kAfL
z*Y+o!@+?rg5Oe+pHePoupSqso`dk-s@fwENpr-ORkE6($45?dgw-)~#RPN@@wK~d!
zc0E0iszlzVZoZx^+2YSbX1m;}>U#FPd!*=d?hZ$ReL62Um_3=a``{G*xHy`TRU#fr
z<fpll5v^EKIFIkKfu~z#r&3Uwm7|c>Tn_3~Ie|5N!bQ>xf$O88*md;wx9<?*W)s(r
z>d3kMqTa3-FJ57=)lfoYHma(~bx^28e7|btAQ18)`Gt}^dtX%TEl+_s#<Q98b=$@k
zrAeAhOCtN@wZ*YOiY)>Ssu19nT7(GLQ}CdS$)G+X;kL{Rk)Jl(h2FRVNkm9c_fLe~
z9S||PJvj!{TbV7f5JtYcfLf{u92DNCz36jJpg(r%dE$8qd*)ZFXic>V=&MWvjD8-C
zAZJm+1~S6i>c9RSbnbrvh?c4NoAw;MSvv1L;GSSV|Ld#;Pl>@qyp;4ZF{Cs_Z;c_4
zk|;c=k8hpOP+wq(&(8B=e41}+=^O@V^tyY(r1$q=OIUO+T$c@XyC?<zPVw)oKbMk!
z{Kra#NUwa>--&3|ocOnk(_g+B$l=XYyI0ZbyK(ErY${(DQ4>Sf)yw|58yaiLvl<l5
zjIg*7Rcx3`9b0~OS9aUQ*9p%|-Z*76s?;_CTQv4<r6q}4T=9{7w+DOsnwvFBv2@zE
zP5S<a=4g0pxw!{qfihz8k4HSzx*u>{&-LdGx1$V-Xf>s65{AZiB=(M+C+j|@vu~V=
zsyx6BE^mX3d87mT#LXAe_Rir*GL%mdxo7O68ziw2yh(LB=2tbc70EUxO0#iiHx65M
z5lmxopbJUdR;hC5RUo-SZ4_8MI`224Sa{=a!W%LrM(tQ|)h(DO;=!1pxtxn+lC|}D
zGd)I_(#8kE%+If_>j=)}gL$tw>C7Z}{nWt;=K;@->1m?~E1DD#5m&QR`Ou^i1DH^~
zAee!K2bzu>p0HMoO~{Ybwz_&JTk+o6(vKlUJeVBy$<9=ELEsS#)&>+&tT1fISJ7d|
zy;@|fG6V+}NF>#~I*;w@^A$f7m36pq`AqZ&YG9YX$9e1SFW?yv4_qm}8}TpzwtXSu
z3FLI4PTV-q>pR(?wb2ZvWzB(<8p@(b5N9zfm4SGJ8fS!8#Qm|c1JIuCp02cwoxjhT
zM4t@xnQTvNb_d_cE_nD;onPGt_^V%0dR`p_CWDipPaV~}7E&rRGQj>(@`SpyfGh^G
zCr<NqG#1>u6r*%V8SnVr&Y<=bYAbg<49LV~P~)2zUu5OruK;rpjcW;M>F=)C<q&pi
z#FbDke`|BmMWD(WNnS_~=4htFT~kK+(g*qn4~SV>GEjM5-<(WYF_AqT|0m|)Ll0`_
z{ho23|4~-{SzrF^0TZ)#$EGyXT3ys5$g8b)V@#<*?^ZBB)fxpG=ie#->0sH`%JwUk
zS4nH~JKgo_Z#Wc`ijf1pg$TVw6i*JS(7{YGjat$=ExnYzyu9lw{4+(DLWg!jn_zMz
z+C=buF!2`Zg}?UempgF|E-N{F7PRHgN^0DWx9StuH^@vWPtXTX^CFK{=48SUtmL*;
zOmg_H02~9+Lxf0BQ4;u|LJ*&j!DZ-j!JBab8e<$4GM_Q1;yEb|hYMUGFHF7hHWyrm
zvX$cDEz;l^N=*`Bj~bB(g1&|;N>%MTx5~{E(22)Iy#tucYIJ8lhtz}hV(-=o_G(X4
z1s?@{n@2(!AV72%*IdJw5)*JZ?B#y^I-X!C!JWpv)FFnmGRfX&LU=2$3IDKS+9rhM
z2sCuB>j9O4Y32t3#=Rl#O)=mHU(E-E-NLa1ud+P@#4{M#{X`T|25+eEmtz%quUqfW
zH*VI6Z#!&c#^(-!4z7xJ5G&4nHK={cDAuuIOuKXS`fAd-o4~<nLV*e@UiChR6bI^d
zb++_z=g@msgc4Q7?CskuGkD8C*JB<RtzC+Tc=6$<$B2sYTFU4Hw4)@dgfw7Zrzj)0
z{y6V|=Di5Sw~yi0X?);62)YE_Bhx}P*gID3^5^r3LGPx@^Jmo3lOxNut7*kxXJ86U
zxz9TXhyY-tZj-n@`KnUP=kB!XKf!}cnt2vo+w%YLp!%Q1!yn(tQAWy(X&wkuVmR=9
z*=`w`1{j*N{2C4l>svIe!}g^WECfL(kb(Prn}(fJ^^%lw66-HJPGrsL>nudO6nUuL
zTId?5GFekJiM`OtA<4MC{5BgK^ssmPdc6&KSC?V@^!T_O_Orn27vtEyl`rqgS3rsF
z<%tM=G+bZ|(X9-gj<Df^Xb8h_s)8}B?NRd~-@bhlS`<@zckR_p-eQg#nr+nHbQ;Tq
z*^C|3^8@yC8_QI?>=O>7-!-z%M#Sm^3e+PYMLni^DlaEzqYzvTeeFH|Fx;i@Y3ExP
z;}>_<tT5?fx17_-byj*Bcu^a{fr=U~5O!utcMrPyA=CTbAiP@TtJDc2&(((A1T^ny
ztA7=)M3R;PO2GmqDjA1{TMx&k`TQi`^MMpr3}XyJ85Y*z;}@!`F`DWWjvx_hk10^x
zeIJ~*CT+*wjEkM29#A0`1T?n!q2X;G=S>x8m30wlS7nBb9$#75%USSXB`%8T-g@3%
zrWqR>=ZN#LS0RsL4@&*hp<GT0B;942bddi|wfe8w|Ieq=7a>Ke*d_&R&*?X;=2h$`
z(FY0Q@n_ExaaGESos4ona2HfL<ylC?-b3zX=J-l%iZK^$W+M1)kXCxc!U7EoW01Dl
zl>L{8%kr=!UhgA>9TSVhH7z!J(`en@;BSU|(p=0kkpLdg_ncZ;#qx_G(tmk<@|NQi
z?4fe9cNlf;-%%wCJ*$8)B-r=by38rm1lmH^hgjXgQR3%F$oqwov1}y@HLMC@9?Sqv
z&`w>NBx~{R?Cg}|(F7&V7$3vPb9TXhc>%Os+1Q{DwbHCS-ZTn%S_jpW$TfkTB$&EU
zS&H-N`Ee?gIFvRYYZU6`Z^o>mNPN*^b_9aA4ljheF-6#Y)~&_Z%ZbptPmx2b6x7w@
za9bKb;}*E{^&G2C*XjT%t=v|~(@~iPQY<VN%vFL#6<|nUJZz}qu2*foxg=6<uwd0o
zqg#UYf_D6~IEpUw%_t302;|pmi;)7|sRD}iaA%9s`$$D<xi3{rKllEMI<Z!w3YRpf
z*RK}~G%C#}h`zx4AeOOR?$ILzQ~L9Od7F!oci;T?fE@^-P)6jv9PLh3DrB%eQd1<S
z37)Zp7OoxS+8&VIBm96iV}23ymibmI_t^Pm3odzE*^U(kX75o4IFT$4J&N$19wyrz
zu|Zdr;Zu?tHO>6+Yw#4^&+mrXbqpOH^SbdhFPfiBgWa(BLp4wDm#{2@p8Qk?cH30W
z7k6oNzt^8#?umI@1FxKGHH^v{7=E>O`FoWn&J1t=!_*`rn!y&a=WCd#xe>F(tX9xx
zZp)F<#z5-lz!k(vMd_E*YwUg0p#@u6-8FFp91>L_8m|4~cJl990OM2whKw0PM3(?0
zV}$Nb{rIN5PxkIK>)n%xXIZusswkHjK}Voj*kI3*j3^#-6me1w{LLIbSb8p@mXn?i
z>x;;s=s`wD3-#v;vSzO5m0_-@metdhr9ksS$L_aZ3?v>Uzz)jf!I+WG*hWsy<HSWx
zU4jnv5Cav$Lt-wom&Lu5_^qY$I!2%M>c>M4{y-y0vp_iUIeYCv^0VI`{{6%n@Nihl
z*sfJ`?dmI)b>3A{uV(H>!9|?rA)Y8jHF+;Pul8K+Ct#!3JKgPNk7YiFmRDX@Osu>q
zi#89#`#dPZuS3vlE;ai8HMtEig`~tpdal9$;{E#eL&SV2(qP6#i1>!3I!LMr(}-`j
zumqg{a{eR|X%@<-L$uAh%I$#^9yyNkwY7j&xm<U-i-*c&pQ~&4A*K(|DobikCe0-W
z>EkcH(Ahy4^n-?)9?0BY1JIvALt;lc2iZx+NGG|0O~)t)^ZK2Mm>?mKN0mF2eCz(&
zKcU+<@?gDr(;Z*?dyhboOlru?k#VruPnBLq*D2wWy(E&DqMymeDGQu*B|z`rF{^a#
z8rAYcKt5AHyd)XPcE~~g<xKge+vJzi9hWzi(PhqcE#yNQy3}2Ay~(u}){))LH8`WN
zNqj~V1OQ8Ipf(H?c-|s<b0l{Gyl`XkbHeIKnHY!v;aY!1Kea-BJv-Un^fZ15UYe+Y
zhUyQ~Au0F{I%Wn))Gt>cGL@BtRnKhjcgKsxD@Q~lkTt|nvF$}fa$a<AKJA1)lxWzv
zzhT}?j6uK*af3j6`GGV$)1*ID&KNZuZayfNM%ri2cj-g3!kC@><-=5kRUy*HK0clR
zh;m^4QQd_b`_$tCnAp5bu$TNIXx8p7Aq8<Af|KmMp-d%R9@PsB_EFQu3X8}1n{bIO
zud&!Zs-vVQwRDD!l!4&AO}%w1=1dmuH2sXK0I%3T`d75jcW8b};hyi-8o&Sk2HZg-
zMM5l=P61Mexrz!x972~bi&r34j@@>KEh?>2{}^Y?!K<Z=uP|M>8=1qXb=c?n$xT9;
z^JjN|P;W9o-`GiwaHc_&j6+L5wf|9A-f2v6h!;=Pda<2ZT?bmA830wdU|(lZZQVTT
zlqR+In>&G@nce&Fxi*GtZY2C5N3CsblNQ%Iz@KpD7+(iDa*}94X@6z%r^=^KpK|2p
zqt>3MVIX`~Bo2An33<PH)G_CF81^-LpPZWI7}TEWNd91d&$Zpp1$eO&+w%Gj$N;O5
zx9fUa-7qei`wj_qF8^`+z$ui#d#C*UE6P0SddN#Yf0yhO2Q34#^KZyFpUJCBKO`uU
zZnWAn>*+A02PS1`1B{=+o2d`zqr3Cv5@IW@186>bcr>pVYrVxYfd8em&`*%`hJE(R
zf#gU3#hmxOlYDIlcF=WQ*Cc4u$VuH+cx=H_i-Y#fmpVx|xS#@?RMJ1s2e4oDGc?E7
zeJ8DP=C8fKYZ~{is@itYcMY&p*TuDvI+uvp5zXB!LiOXW!7iYQL|HdzC=?Wu>h?<(
zEKV^twfr|{OR?I-NCBB)y-D2PS#fc3m&5sY83uI$(!LVPiH<Y`5oo$rL_xAaMXho<
z-OUf#*#Wv3Hp?c4>L%|LfaWNnT_&%<#W9;CD;I#hN=NpQh(qj00~D<14pqjbGvKt7
zk442?vs<+_EJV85#K?XHEZ3HS%rhEjsl@HHz}TENA4=hP{8&DXDVn7qHYFwhV)y4~
zU%2C>WPvTPuaE~w>&wcGvz*6<J*YjIJl44dd*z_vjIK<jPA1?~q<x&;Mee+e<4yS!
zb9xQ{VKb~xB>l72am};9673*Z>wBEDHv@nmJL?2X`Nce4BJ<%KDh++zqf_)CH$W5D
zh4<qO?%yME8k@EoQuvZW;%m`=@yDHm;TU{aZr%yEt@}$|{x@GLqazZ3f2;YWK{PjT
z(>*QrT3C=O0dxyHw4`5ssS(8;+ik*iRRT4SERTnuT=cdAGn7&O(%dk3r%8=UxL;28
zqLWV5<m}W8bKw5R*!9Eqa|bJ4rni=fY#h?b%i4W30F73~bDH-?F}^xG7=&3Hc`KuS
zbF=5upE(ECh++gzpRsw?7w#_L`@MxQ0T@-jvg;VQo}O%ubQ7S71!W^Ey~Bu?+!1nu
z7cGw58H4%y^>sEYkNe25ckD&po%C?_cWh6Tj+906!GKMU-1A^QUS3{cM^(7KDOnE5
zNcbX<(O~g2-TR06Sf4|(_*dYeQ7og44|k)26V8a<Io8t2$DQ?zl)Z-dLlylX*woxT
zZ-DF#QH2B$o~t&QKxZO&)8g`EM^cBt7xuhCZ4NlrbD2Da?UYYtn2#0wYQ`4MIckJL
z{E9FUR5pN|BIl%+0>TLFG+sOq1l^ur0Hs8gaFmZ{<@#Q^Tc}g1O8LIU-ScF^WF=Zj
zC=wur8uP492d#ut1+fKTcbWYRPJm`D4gjT!X!Zl#qcH?zKAfYKSOU^AoS|GHCa<Sq
z)*sq|cYa<=p}`=)C)5NvIbZ03+HdB^^9nj^kKM|(;X{l_wm}P{u-7T#5h2IIcI(R8
z23!69gL6m?i=P9@RkJxfkF11lZzhYA;pH=y321DR_c^B7(*G}Y&%e7W-jry@1!><0
zshiK)zG&fno9)*ijgB|V)adENw<?qJaP6BYo!q?}3l3FsqgldNqii8~&cw1Mm%iR{
z+6x%CBl|pQ^2^(rOs?6p)M)K`Ok&=ju}R1yL|~}XPD^3GfZlOp@zD&Mgd^ygsxDRo
zgIiTXlv@Aw^+ps5{Gb-fGoO773KJ2`Q((4qj^Dh1?b8kh6O#%-^4$Ia0-*@c3a{?w
zk@I^hO`lRq(m~2Q&Fz?|)097$S?Me&!yO^T-tpQ7m=OHLL#b<M8zA8q5Sh2vgLY@O
z%;~&+k)Jt$P%>>8{N7<MKFwHYYbS<?_a$-nzhVY8I3dqV>WD0oU1!Z`MTGZ}0qO|J
zN0c7T_QekK5hiWGEAnOKD}o*&QbH<rKTQJj=1L(-NQ><Xe)mGEmnWbE#6s}<63;$)
zyZV(|7KFd8h3>?+5Syk_xF4xh0^0D%A%;qNQW2q;B#iGK-djG?JZ;nzsutsaw3W~3
z0jvIIVjuJOYx2v7i07&iCmg~Rl<vl|c-<AGSKCFTw|10a2L)&*vTYws<9yn3jMO@G
z__ZAr1e9!sPIETT&ymN5Eqe1eG(X*ZjD0eJI|W0YzPGbqk+#K;RbA(N?e;b8E+8D{
z$LsE$#_tr`6}JQscJ6)*=s3~%7@vaI7nhvU-GWDK;@C<CX8t~|jFOUuSOJxIK*xBo
zQS6;f;Hei0;BFDPJfF^QP~$1`3yAB67eg*gv&g_(u5tTOqL?;Mt*F;JrVciv|5(1Z
zhD4r!9p!jeM~5;vnjR5yPeXle4sAze<>g=OzK6!y29y>Y3bfUNgYJqPiuWR@B9qnJ
z!WBfRKC$V*ey+KtqpS+DPZ?kV+rW5*q-Ts8B8Q}HRlwnu_}TkU-#_)|neUq4Yn{>8
zmA2|Vfe3nl6Oz#G#|t+zv)uWsAEu*@pX5c(P6nhYIsu%vQ))R@r1X$qMgddhwW?~A
zidIqey8-G(m!AtCvxWA`{k<TI((Lwa;bi>FaB<NVF4_U*Ztax)f{W9bu4Cng?W5_G
z9lJ_f(p76~d&Gq+u=F#cD08Q30@gtfBq*Y>71LeUa|@;4&(hZ<c~LBy99}-kG^BWC
z1GsvVJ9T-viB0A-m-$cQOdcITuOPVk7}@-$E}8zX1LNgW#EXw_R|zi9=0AG6gt)uq
zs^@DBWOW<_h@^uB38mNmUb8PhHsZz|;y@0B?gz{zQnvCzge;Yp&t&w}&HTL<!W1Jq
zsw{>zZKJv6Eq@V=S&tEOXwMJBu`{~d?Jcc9f3UAK;(2`~t&^rCwZWVC+ztdMO%Ahg
zWK$$YBQZy>w#r66G(0>GY}t=RlV3btDZDib=asq^Le`Mr$$CJ@R)1Aeg>@kWx;tuW
zJ!PQv!X(Ms@*H;4_@T6qubZG;R5>`N_YE=BS6s_Dqhtn<%U<a*rPnRcq7uqZ`+`ni
z4*moJ*AFJ}N`)dlRaI4_#U2Ah#t?8Q_&$vt&!)f2<be639*#V|T!bKs<pqmW0p6MR
z<3NQBr~}?W)iHLv5D)PvD8MMoTinGGx5SCPp;D7(DP6=ytbOO4KP%^}EEiivrb@}-
zSC~{0UJ*g7rjj53^@9J&|M>HPU$ht9d#S1=bi!GgZ(L_I@{A;m=jwcGDOSl$pzyhP
zPIHi99t(r`6F;s$<ZZtTCe9!Z5l9sRR<XH?5vgZ@Lh@^)2$b^WFo;hbJQtZ4NfY`M
zlTJNP6Gx7-`hH6QxRqreu}85a?D@(#ZxFgjtZGzN;{&3pgjVPx;)v3ezdT*!<XQIL
zBp~k46u1BC_npG8<SZs0)sJ)bE?uyzZ;BG-*!^;)QTXcb-6aRu9bGOayllVYjllN`
z4MecGN1gQ3<IY*<tke<F05KWOtErpFZ5E9DCCy;dQE}>AE)@$Zksi&9OmksoKvh8v
zYXB~wk2G|w{mle`Uv}koN%zZ1ji8cw4`B91CX?BP8h!^U5$;}#rz9|-$aM|q+k^Qm
zJfV3C|6+MS;k+&#^uIaP{10ANAer}dDTRt*6RiAhO!RBJW+P+@&UrH!*pZ@=UV2Q!
zdJe49keHYdP%$H`%E39p3?0PTG5HtqQt<2oFHgm~^Hq}4PnQS~7&!Ff>+3#Hv|y{*
z_Yqo-gKwVy`0$|yaI`W^GvVLg`t!NJK1hE8>FAb=b$?+M_oH4o<`Y3JU9RQh?y`N<
zPWdSdUSifLAl8&$O`Py?0sVQfkcxB}pw7-Kjss2<?_v;52AIV@HW{Uod<%dZFA9b-
z;VcG)-z?l#6$I;G$!o1C2Udfs|C?4>t_`zJrA?+`7zYQ_BX8%!RYr~eH{Ee+J!sJ3
ze_Xr=sei04=bt2Pe%+u86D$7fPm-Y&KzhQ-*))XX3MUr)=LZ8GBJ@b~llJzKuW-*6
z%gI3_#V6v}G?92#U1OluMX~szSE!+j(S-cBfhr;^w95PXx3RXC$q#-%hyI*Q|M5U1
z2t*oS;*kD7>0JN2L-l{W@*h7Y^5zk^WpC=LlS%%MZ^2In%oIptG4cQL^)KIoW0(4B
zb$8`|gL?hlpAdvZE&jg!?eAxSvLzZYVThk9wl?^iABI>W0{7^JUDac0l;$UmU5fu`
z{QY&@{y8xIw+HEl@U#xYIpOfs|6&^a-EZmg1JnAAPi)HXg9ZNfW{b4KZ)$6uC#m57
z@utL}0XkGS(qsNV_t?LT{NH@({Q=I7``~`d<MP)z^P5-xYl4BP1rnXn)E)jH2mQ_M
z`X4LYUw-BRoXzv#^2Yk;FHiipUn)O>r-k6<fzaLm-(%p9yUGOTls!JVURwXZj-=<P
zfEM{kbAs{zcpG27M~r;ndiGxp1CdP1`2)G0;%2%pCmc~6dt9AU)m5s`L!uc-5K}+p
z;!YHmN(^r?q~<tvzB>JCY;~ok%Um*HiaV2=X3TP}V>5b78iydkC9F`RmL#LMiPfpc
z#j-B+RV$Td_KYv8+A5!GG|k7d|6U!^=4k$7kiPNKAE@wRkGIAy)frY%Edc37s}p$I
zY3MmiI_%BrKHuqb2gE)(sZb&+@{iK1eJPJYndrEZ%5Jh2-;gfq3*P`XUo~-Neg(hB
z26WxJHb=g{0fk}JxXBb~J@X#4;AMhUKKBY<Vgd*Fkg=`Ufv?i?prl%!ah!_<ziuph
z<})8d@8yzm*g3S?5>(%r+7*_A1-ksfVPUaA_NVr?=hK2O6(By1n9kMJ4j1TZKYKq;
z38%3srF7Z-EYue^orV=}13`!oAW(EY<?74y0k~0-&ol$pe-Tu}#Oci-k54dV5t{g=
zVpS#Tm&$FIfNoztK9YdiL)no={SPg)1Sf{Um{jaXEh900wl~>bUlWhxmbn#UuC{+P
zxlrx4+L4<E6Z6aH4Fc6#K=F*_11m%K&Y34ls#vz(R7lcr1Bna8Je|rx0v<9z7K3ZQ
zN7@0O%omqv7TSD&FjwvI$VsAk0g#b9)2<i4jJpTt_`&_l73iNli9&2vogRn5c$|UI
zlnx})1Z#k@+!9d2Fk$W0yH)a(ZocD(DUP$e>!%=y9<|(IXOb?fVIQ3R)esATEVK(?
zILm;JcA78*R0K550rw9XwLuI3F432MazU3ITR`|>RPE0m5EX#m2}-QPqFVeq3Ub$N
zj^Lo6B4PuJL_~1`E4JFBDBv;PT;S^faxR=eX5P2+tnBO;2JhzVcS)baYxn1qHUAAa
z$Lq28)s?`Q4M9LW;O%*@;J>20*QxdFm5n0{_66dA1zQ}dJW^tOx%?BtQ0yvqQxe)#
z^U8Oo)~_wIjIBOB=1scg`Dx){T5WRq<PqQ%qImPG6(NYq@*pCzldaaVE|ni41z=OK
z!m-fpnQ9F^w}aL}M<NOAz|Bd`G$`Q^LSQfG0dF)LRzPa(cc&)`Y(aa3+|K*6`+=du
z{DrAhER&j>gzv<}M2Y>DI$&vq<+iPLXS806puss+;0SDP31`&;VqV%Rqz?23QH^}9
zOO7{~Ls3BeTqu$kcAyBXPC^AsALH^IfmKZ4=+ukm_Y1FgbE-&R)kKugDRFR)eT*?n
zUJc_e)^XU$OAFcoGPW1ZUNClJ@7FWsQEA0{^B9<dIE(rAKOTC{?#7nfE+J4mS3U!Z
z-P)*U7C$7&+{2AoZmF4f{T<e((J&A)il3%@v&)7K4MoPpWH|0vz*=bFMUPx$a#E5x
zKlLQxf}$oWfQWUW!c;u`<A}}T&K7vH#3so&MGX+fpl)+GL5WH7iG*+I+umQqtAM{~
zLIL;B`}I>Cd!l{(9Q3zifBpb{SvVE<Jb4KL4Tj^z!$w6Vnj$AF8wrO{_6r>Dk#gCC
zylz#v86P(G1_5I$4rET%z)8jmnN9B=e8s<;v;C)5>hE^ve{KdK7&XrK^{BoT@<h-G
zHaFtzros-RNq+JsXo1t0j9pQlv3JoUcrpe9??w064_quP3c+$+W=FtaAp&mTm{(;|
zPn(VkDjd1?a58y2>QJ!afKzO|wi&p|6?43wmQsb>T_SlK05eSQ9vYIINOqz0HHg{)
z5sg8%kbSCo9ZkI!e=`w4q=@|lHoMrfRU5P4?{4#Q4NDKKM%osG<szm9Z(mX8zaKM`
zL>DCgu8a3ww`Rl=sD%X%%38HEy_a`%Y0h7LldQU*dk4!wjpPG;LDuq)wn^ps1A9J<
z4B?(e?Na~cy*b0oiy1N*yy|fJx^Tc`B4qFAE$KeS8icqmn#=9(s!_A9*$dikg%#4J
zGToOf8KUJjjUHhg63|`rFkO9NxR#keAEtUramp-g5xBfF#~P(S9LW&T?L_@$$Lze5
zAY0Xsp080$UOLDrFY`S|fB&TZhgtMQ7sK2S6<T;J$)75$YPpo=V!mY7-Qj1569J%p
zCOG8FL1Gh#r#Y9mdB8R@Sz*Nn9k>A8ik1ZO(O0(yWZdt^l_SI)0nN1pWcYZs1DU--
z;!_oiXBOx;6W$nPlfcj6C7>=h^TAQ*E){7qI`S?4dy397`EEssV*w-&RY`s62a5x?
z^stGav=s6v_3r`VByQo@ckH{9ac_HMl(0rGPxs;h%Ra`ez)8w3543pp0)FIc6sA5k
zAAO#m5BRonE-o(0*9I2UEZn0eIa~BGrzpE*PGZVc#+|rmN3~z4fC|66<V`oCB_S%l
z!1ps|{W^hp6E3hJ)oN@GfBTw>z|*$6yo_X1iMxelYxVUjM*UKx<&^%suJ?F_Ra!lh
z1FuAlrZ!Z~-<NeZ#rs|=*N@iY8^CZX;y^pPpd0Zefr2X#J8uKle1t;xJYlzw^Os0_
z0s{4xijkIMW9G<vxOvVs@`zz2SLD_t;yL}VOh-efc$nmg!H8Q?v?2ffh*L)N4&uuP
z(H-ryUmPB%B|2YL$hD;v%AAz+yLTOXXUow9?;XZSjBZgbvRoai>UBMnO}qA5&bxi3
zQC0z`O>dp2OFR?SMZ?{}OJIyT7)wI_W`B6NW2j`D_mb>5p0DrhTCy|wHql*i$BBlv
ze2XYp)J5M2^ISHG?l_RYl|);7@v<%>H_Oe*n{HQI<!2A>t{SnB^iKBeRnW4wQTUEW
zH63E9-y0O_Io#vS+p~1z!ZR(xZ!8j?LKd9S`5e>Kvn>}6wRvx%>F!>y8q3&KQ{e(v
zHEJA=6Xzhx$Px{-Cp&{pDLLwE@*wn@{<G!l&t)hmbw_FBaaY4+LMxJO`15XGrgUhn
zYbj1P9`F8;&OhGIVUka>PBJdMYFn#0Oy3NeYr)f=VQup$8|WV9XiK>2`*y;+EfPfR
z*rlspwOH!jMaL#x66a1uY@3S8<8R$#4gS(8qBM`iJ~#D!QR5zWxhJ<S(mV8ePt>T*
zp2jD$9MajBl<AS;s1(+=q`0I>3|s8kK5|@BwP&*}C&&{|i>4#ZG5J2G`Mtkfh^v&K
zo{hL(aPLK%?>-)pkQ*%7VbT<F!50hlZe-j@!sszb9*G1@%Wr1=0*9ejfCyC;JbAJ)
zBn>yvrsLsM66x@{fb1YWg!8BDKxmGdbeiRtZ*V!4A}}*jGx?b=THdh)cb9U5fCgSY
zycNq@voFRWsSELQgS*rLYTI`gOJPa_5_SWTNC$uhDl@*HnOuK@>I>j}a?_s;xC#`I
zqj^$Q3U~(r?%L;C!*ILbjO||FTkHXv2|SsTB2beyS^5-O8mZ8T%@K^b$2`~wOMpR4
z2e3n~?}XJ9+hu^U$fU^)Sk?O*gtpE0x2N^D=P`jcKS3M8TjU#$=qiv`kVD5ZiNQ-!
z)Xboq4|rKahuivv_io9KfvGpcXN$UH_pmZQB5uoMk)XG20G%?UXv(x3_#%mTkgOPn
znPoXv2~d({;NWunihKPXFqrW<>QUri9$g08(3b)(Kv`^r0cFISiZtMjQ{3+>C}Twb
z=`_&tUMg_!Do;7Ga|X#N^Am%Iqbn{UT-G2vC6~)e=mq4FV&YR-_8XDr^KiHX)IevI
zA8{`^Ue84q9O%|2S&;O>X-Z}Bc_|`Htmp(#%TVYjIWJLHXa6|q0YPhNrOWMx<2+~>
ztpGx|@^+6L#BtNH2hc26s<sMBl`fM=Qmvt>fL^XUR%r`_E==^gLF+wU&AZ^H?b&)-
zD*^u?+0sPZy$$Ppy;?00mxq;hm?_v`8+sYAhs?Pzh&-mu^RWt9Re8=~%ED&5xcve(
z$-4f4)d@Vj`oI8^mI^1uKE1o=wCH*OFlBoSlI>H}iyJ^J9dQiT-n4hO=p|H)hm{k5
z7Bb0v#kqR?c*_H-de$Z9efWFJLT@=m%G_QNS<<JKAkSeapxWTd^rOsnFgN~Z$i%wD
zH<yVD+=+P}iq~moCTKgjeXhEON(@)NtX))b@-@bZ5@bXD8ahGI9KpD*g9=gX^X{Y%
z0#<T!nvJ%%N?@tjvOUFd3>^@{#pG-)8d*|y73z-yk{V^3662TWs^eD1O9gSL2cCe7
zHWIk<mdLa11@6!SZZ(;M+vKy2tj$l0V#C3ff(^Kpg7h5pq3U0_Ug!iJ%4{S-2k7JY
zU(=9YAhq}(WDBcE=mg2B^eRO&-4$YJ>Nk1b*hBy2r)if71O-a~tH9E}1&YmVGwa-E
z)Be0>ed)`h*wY^c4`xoNWqEE{w(b$key4U%M5YVt$1@!pwdI(>I+nExBZzWZK!H=n
zDO9q<XpcPmZOR4YG_c==a7FU$Hv{jor{TNMZzF3+Ti7f9TkPqIuNVywA(<kYMgVOk
z3O5|nu?>TF@Uz)ane7^`J44|a9-x2t3cOi9NMjfozdEG|=F^^=g^Xo_w`7MkjJQ7g
zP(X?lYN8sJ)b1e@Bd=)S{lRrPxYGyN-IYLBKb`pP32H3mOYi1bM!zQ6qcMPL(;fL7
zreS&74zKlEfQcF-(grB(WI?~!pADlu^{I5oR!l)!RLX`y#+s&GPPQ2#9sv)b1L9su
zFJ79S1Y6V6(&kXZ#vc%75_3*pQ$lS%U|0*n?BKY%kRgpNsf&A}xk!A%agY0TDEwbt
z!mV=8+Z)MI`abdXLqHhE$JyVgQ$cyYFTgj(-G}_Ju}=8s9$eT2=pGu8#S5g#{Xn>}
zR^<WjtgrgnoBWdCuc@cB^LxkqlYQ;}z*D5^x5O8XhrzCUC(N$}MTk(=q)iOmplz;T
zeQGt{&0E{!8F$?(7wW0A7K-4jy06LrrW{d<=gqmtToM_dT?AOH)Ii(g=>7onE*p}?
zMG9UI?C4Ccw6)e5q!fGz!Wf{R&4%Yax>!}~-t|$bnK~Y~Cp!vuUP`dVsEMX3a{Pdy
zLMU)RP7Elr!};1{+0G1eH0vV56m-Rsx@$UO?tOBlZ`s3}sn9)L`AFY(^Zp)YYFLnI
zuo(^!KGt(xCALkAOIC<8k3U9fW$1pbjCPvG$I-4&li*ozl1aw;oR<(oy6)~`!BJY9
z7OUrrVQb^B(aaj+-Nnc|RiPz1X!M!{YRDTOsfLHdYVzpPWZEd$<m*;$P$H>GcWTPC
za<3WWf5g`wXt?U!I2iKjQVm$JGV|OACQ4QeV-g=%w1`IX;w7{T0w8(7zj&unkZs1M
zuX{psUW;I8*YNxGO0Mbq(<x??+RnJ|dM=R#UlNbibp}11pW9Thl(ZP{Fk8<rncb);
zxS|Wmm?xhsX?D*1%I3Naz#Ut%<kHAs3peFgp6|(_`66mU$J)X{iqFX+#Y@5x*uZq0
zU#XXY6aZ0rlzf_);b!e`o;zc(8eMxO|NT~<uEc{rxEYq;z*VZQ@Z$3P+tf%ojDnFO
z`TJ@TbeD%Nxdrw@NC>KL6KeNEU2eJMW{+us>7sj<UAiRRld6(GURL6IiJ59mnQk?t
zs14V1v^473Onry!M|$%EiO!onZBUVgwxnJAF!h}s^LB4oXHE7iO?~@*G1GL-anN+S
zbDUhc&(isdzdJXLEpqhQU!Ho@B^E<C<~q6$o!P#;>;^Bd((E-OkqI2Eam<hCctroI
ze>AqhP^#W{IXE3nWd9C*JzQ=B6tG!H+F(oh_7vpy1>*w=(t`**azC2vRIT}@;G0>u
zLxpo7)It8{Pt~?%5$sFpLd0j6W5a;qlAihQ4hIEk*1Q}tJzMBqY97=)2*k8e<)<B^
z`ABZ;&M;UhYOet=ze@qz0x+Y$AW8770e!uFEX%aW9CSylOO>4uXpmzg&>7!Q8D3o-
zBA#laCQugnG$0E!;$S(U4%MpgYnkGpP4BX^A+_CeWJ!h#_L2JDLLWV5M67k-d_2S0
z^7>+O9vHdRcYq#bjPFBIda6&}-)WKbTPwvcNbm*)#D5@1ZUMp;HK2@FnXBc|A?@w}
z$_on!nRUq5NaPSVxTo=irKwS%@u81YkQIjzcVzaK2o`>m3Z4a}o_`T4f@9N6wc~g9
z416|5%I)SVNrM!)Fk+Lp_3+*RB~pN<Jd^`Yv(tUSYfdPcQQ#j!JUxY2S<YK-Fh?;T
z%vE@I4;7YfD7ZlOxm8<J*hvUrCYj&SXXRaH+=06lJT4@sEWiXE(Quk32#M+n@RUoY
zkV|~I5KkrYzQSEo&}u39T8JQkjq`OrVH81>#xK(#w1G3A(rX3Wn!;4^pf1XiW<l8b
zYLfjBZpG(mZJs#AG$GyK)gxQ)(+AU(I5Os#rwy)qEN8j|hE_!_{IdL7n|7V^K^$9^
zjrZ}c8}8%vJ1T9F-CcM%O3_txVkZ)cF{bXGw!eFq@F>i|iF@H1+QZS#Al(m+5t{kD
zf~+t{>iy(KUfg1ne)6*WW7s_y6g4jzQFqfJ5r)?b9!8cBTrp;=|F62Y46CwR*M_AO
z=|&nv1ZhRO8)<<_r*wBoH<E(VjnduSDJUS_-6;~2<{Q&z@AVyP?`N&`zTdykAM;=y
z$eeeKdyH$G*BQC{!Db|Th;Si#T)wLf9jQY=_jcB5Vc}&f;u%?!g>VuyqH@xm+{=r&
z6LXB=S4F?*tj>bfzp7JA{rL!cfn(g74z>f4&0i}H1$nZ?p{|jJ|CzJyM~N&pZf=~n
z{i9M0qNx(h?BL4y*1vJO6v>A#*wEm7_ekaFuOyT6u(D@+8JOd(Jhi)Dy{&W5BxW`D
zqMN0fQk$Ipcqk@*^VNvYYJXLngnMf^@R@-o>u4~Zl3^BSiHr%yw|zuD(((g>@^d|l
zJVA*z?iBA&&0o)O=DsKj6_jn&%2mM9O!BF36Z(2^)nu|Y)4zzlvnv~1xQiChsqd)~
zq@Z{Am@2Gn{u&u;@nhKOo$RGmD9+C;_@SeFt9+HF0i0Kw*){#aX{gtg=Qu+=zxuR_
zmd1x!DiF;djh1Q_q&ZIBK0A&N#mw#r4epaMTKn{wYa}lK;gR3aqj&8$UVG0tTZOEA
zH>K<&@rL{!Dw$LNu0jd?8k@2)D=_=6KpAPvCW+QuFFMd)q6SIu>$_4Or$UE}2n+jM
z8lL@iM+Ft}K1^*~3I(H7ujfAZCR2NJ_@ulq7i?;j`SOMvmvG>{EvAGt*F7!0D^z!l
z>a8Rwc;}^?ZmPW&moNg$cotlSCWB(H;%JokSf`3xifH<9#GmVOd<n(PX}eP==ko(8
z*EBrBJPKr3#ln=x*m#J-SYwGIs5-;*z=t>Kd<BGtWOWnLsW-WlP~I{iA_D}7yFn8!
z?+XYSD7p<eLl7ZI!@-$K1yXZu5DhdShuR0^lr_=qSlNtBv7m(rk4=U}NmWvuB(IXu
zMIeF`D*bWR6{xN0@hb%|4Q4xoP_2RScwu!rmNT|g(uejIdzlyL6*yOtLQk#$K{ns(
z##jAe=abOyl%G2Uy2WV3GpBk}YZ&6$tXY7yywcM%wrOE?9)nIqHG8c$YkqEz;GdTV
zB0rjXh47A)>0B6PVs%p4ycdm@n-3ur&@~FHTkBbnL%)HfWf?#Pksbel;|=uka=%^%
zDZAZK7NWdfW)AbM$9YG`SA{%}Q2aQwYB~LJ2i|B#K%N$596O?ZmPGjxX6SpWArZ5f
z%vKJ>R;=H`)gOFEY<{nQv!FO>=a&@n4TFBd81JZhSSM551SUlKl|%uGeu81rK!Ypt
z<(8mh*~(GoH4VowsYe*3X1tmrtPi28EzG|nsKpOJ4?SxVkdSOFr<dwQ8tM`S1+bp)
zwG%tG3a0h}Ql|K>zKy1O17MO+*gu<`@<&45hZ2e<=C)(`o7^&Hl27JhG;>m|djRnm
z1bY$Fjisq&i}KDf3IfHAViId`i?)Dc2pqle_6?^zWKVq?qpO+c2TYF*xZsz95^3G2
zM+jbgIpz<kfyaJ+PNgoMNpWzFl9lt~q6f?l?Nr?ob70dm2S20OCOIxHdV{^|sG7`<
zyQ;`w#AX{r%Kqpdee!?PE5c&+o4591$m6d6k+dqZ;P;|BEPqOuP;2+2wufF$r1RH~
zpn8^#Pkx2AOw3{k!*Iv`w6)0xM)|x03Uf4As|Jio;foVJ-gVN=&h5f44LjT@?6Yh>
zH@GQ%fM*{MDj&fk+&!O(x6H!$`q~Ax9@WA=O91mNF)22-`x_D~*c(a7g<h=#sitY%
zH2pmB;P7-N=4wlI8$CA0t$qZ!Dd9T0AD;79sA@!r0X#}=4MPO;JFh@KuWZw#Kt%D<
z&qbC&vbfE;#s^|Go5@pC->VU;HN^_{b{+3(W6pS{^G0(u9eF63$AjF>n`pdDR$9h4
z=7Xaj1RCeoD?-uUreS>bW_(dy|L|;Cegh3TY1u49!TueqX_Fmkm){^bcmb;Yk*6%C
zS6T;$53|BwFppcW2q77K&=OL20Gj5)1`#X3^S7?nuL2s|p)nfrt~3m|1P++4N95U;
z9wsc#Ahunw<7*5cA=ZYb!r8~UC<jgtGSw7UMb5pP-#JZg+|JI%XtFaOgCD^Zpu;<A
zI)fy?1fdf&>w;LWi|%>+&vhPd@q~_Gm<XBWA?0G(o7-n`KRodK@XBYHr5ln1k_L~!
zs_Is@4SjG}!6tC?OSCB;u$;~X5Dj=J{YP!=8qqpcZ@+iMF;6E7`m_Qmj&;S|@~e<`
z&47N{ke&F)k_s)VXYS3M%kcSKOZ+2SXB^s4RVd-Wq^C*6W||*#Dh!`N<z=87R`lM;
z5nHp*$9FSCSmP_?qWSsPc9Yys`mj#HF}0E(Qq3DWCoUP<<&49v<P#9?z6y>0afYTQ
zO18-(ac^UZwDeLR2HI;ys823YzxUka7~d*>ZQ0xGZM>8hU|`(Vl}hoS8+}~JZbh#Z
z;W-s#A;%JG6{I&7c#~X|o1((rlioC`0sWZr!H|&KXBsjBRin7~blmY~Z^QRcNC@|h
zZ7<$r&uJA<l$=&Tm@{5z#2e}WKjb&(o9-^e#-=1bec0$I_x(wAIqg(GOKgU61wZ4a
z&vEO-ujP5!45;deHxuC2^>Z%|Z96gxD*R?56pZfqF83_7u|aj$fQx<8<LQ1bwlk`D
zs@;bOzRD1<A?rT8{iH1!Hj1hYyCX^RdQ+@D1M~**Me;#wj8)n2w8lQTP`QPx$MxT(
z=Ze!Fw!FMc62%J-%^%~*ENyv&*kBj%eOSuD`cr`OFdZBGopv_mz}Q<L18UiGMGa{H
z+HTo2$=NBe6H?0&5Wmt!K2FU>X(Nm4c<du0q>b{zASMbQK08<Sy$o{hGJGzQwiMhh
z3nlW)9_qW@3Bam5L&v5Tz{2jp$1w<Vys6<F{3*}7Yp^8CX*oHz=E_r+<m|r?k}reW
z6t)H*BJq_(9OQmxC+Q<ZIbcx>Ck9ow>E|zOj3l@;1gPWRrueg*Xy%ZyjlQL(M4osN
z@#C(dY=Jdx!`M0Ebe`v<=EM^5h;#MW7lFw+JLG2R>$`TgM{kq8nPs!eF0F*xk$#d-
z3ZzpYTiP!jdtU;f00?*CuhXw{i(lx}cC2SsLZ>c&j*aDKU}bX*Sg&*;Z<@6<Ypr%v
zbEGut53OUO0_a%9zuC1pq1KN)W#w!}I4)jY+=e2gV&1l#tV|c`Xf0d`JTZ1NS%8O<
z9FaE*$_W>|$n1h<&9UX_Q2b=keqAG_SBBp#`u)sEmjYhRGc4TBJNlwY9>Bf%mc2_{
z^p@NJ?mZiF(EZPFuRfM<BI}U!J@HJjtKyDk%<r0kp7^eeI1Yk$^@&5&<BxQx<5;wp
z944<D4=8IGQ?cSc4&i(huWJ<Y8iC=HML$Af4L@L<IHHV}WzFk}jnm(JaXIum?Y40~
zaVc|RIDavyFt_7qMX_!)+vM#kO=>BOqThB9iHjX<sOQuq?5|+I!v8UMRwGa4#NLIV
z)Nn8QY?1f}#I`{d^jr+MZ#QUcakwNT#u+>wb%o9b?e!~{#5_xdHZElq;Kp-J;_6A>
zypo`?EX96b%F|OLQ+Ap3O_lg}b!Iwmf{prmh_B$!&o0v^W5rT0=QBUbD}|%2SRvV?
z2w)|*(_mvL+y(N9^Pm~}31Z_hR{;Gq4Qsc6cHX20yy%!0N`cZX5~7&Y;4T4{B-IA}
z)#y8sy7wLNN%Ce`C++B^_3d2CZe}PF;YE7$+@DanE>Z1%8Z`RuR0`FpE6gHc6ol0n
zK2_SX$d#(n(*A7nUH=grMdy;EzoT78;7Ni!dU$0enj?C(#f0>)7tA-018WA2?X6{a
zwxVV1kD`;=Em5@ZqqsV+`Uq8tkAx6xGGWdP76@=pM#I+vfWcjnEZ8FC6rxuPR;3HB
zr~y@+hTMUn&hl;W2uA*H`!T{1f9O*x^<XZ>kH}Lk=<Av`&fnRiPiR{76d%3gK}Mr`
zKI!**a)X_cQq0242QG%}FoEE0_F{}AL8IBV$5zU1joD8TvSiDirK)$ej)z~oG(4lZ
z$_&XLU8lyG{79VQCp~|`%13(mYD?<BDQ^F2>9$kH^>x%*6{leE%S7*#R!&K<X_z$9
zWDZJt1E>lkZ~IFP57ud{Kd(RLfA%}S6=%#_(a-FcP*8tv9*V%sV4l=0rt8d(0Trq2
zrBk^W`A;2gA_+44N{2#GHZH1OC^>_BpN{zi(K9SPe8SxP5v`IB>qIsICcHickw17g
zjF$}SiKI=!){Xb=$%qfNyhlyGDKOcQI+S#G`XalL?zF^=&N6)-G<XT^u8Zu0ew4&d
zZ~y#4`7`R+az{X1xqOp`u<wJc887GpZ9c-vbVr1z<gWF}Y)_hK%j(cIZ-_fJP4y0W
zXd__q50Ig*77?>sBz7UY3G(pF<}oA6+Q4zX3|*W@RI)h>U^?M+Jyo7>&@V->rwuH!
zdl)eIY!X{c3r4Y6&=-6{TfN!~0l)6`WZjjJAQ(^yYwA-+z`_RRA*2xoNKWWnm;9$A
zqP3!Q#47?Kr$Ji?!w(TdZQx>FA=<)HGlYyR1oZ5LyBm}h_#qz%f0~L%{I;`Qkp_$9
zHPTvOKkk<EfXBQbnVTwuGGZs<Ne|nj=efV|jtHtT<KJj_N8`ELintHKudLOYgpo)Z
z^Qm2ImPS;qrT(9gYM$kG<<!=*T7JumJ)Uz^<(cvdGGa{Vu$Us?;lNL)n;smNPuMrk
zD2i4uFo~(;tR36HnYnR-P!&#G;?x{Ue!CmCdsjL7Xsh^M+-v!Cv&6kxtd3m&1Ky*e
z@o!j&z0PfNqb3Vm&8frohqdD8FO_ySt?tGII9#6+XXum1@7<;zgy&E;<V(%gaY~=}
z>J6T`0XQM`F|@Q|RHW{6sAk`VZ5aF88cK1)Ll@|H)E&tqA25TxYI?hw{W$jJ)|+dt
zbu!DyEltNDkWk_n<dIKHFR(sXzS2SSAg>t~0<VMjl!xm{y4U#(JrX?%nA$xrft%S)
zZrCZOCf8&`gS<KIOP>S9sM7{m$hajwoAXY#IMUG|tPNbc$I`+`Pl;cxr9Y&3^BJ_&
zwJ%bc!=$Ll`lr)wQw#%0)&b=_4KlDl-RzR7Eu9h!1(<C-XyUwhshlC;g}9U8ysN}T
zlbrp$?n46LUKa?bJ|YzL$>!9?-SW3zbtExmHMR@q1(`=GpMYzF7QaGAwcuyx5DYSl
zaMTs@E70C}fn7k3D`p88m{|ghl|8)6Ezm_}ie}tK&|@Lgw)0D?d@^JYwr7~qZkp>)
zY4G%Q^hs$-P>}~HxkN7<rJQtk6_>R5Ih#{h`|hvX?j13H9#wezWc$1PI?=ksN^d6~
zJ8>ilCh$q=)c)!@xj`)%rSepyu6F3vEruUSwjk|WQxY%Is3UCU^1|yLf}PgzaQ*bE
z(c+}lUPU6{q&Q=3+$@@k`=6_-&#}G)@L?O8iFae_diGfpu0~%dyWQPqVw;T9zsfi1
zj<z=Rl52e4P~GOF<f&46V*1^^(?N9KSS{R4Nj3$chEnxYGrU^TG_FLrLt>Q&-Sh{6
z#xnL0T(X=ED66YvR^r%PCM(U7FonICN&)lEalJ><Iw@Ar`=Zxa3QqV_mO^&)@#Xk2
zO*M*W8=Bl`L3R`0=h`4=ctjGL?sKSzImtyd&z!>hgOOgaE(}!^d*TWeegh^cvasx^
zI1%OO^UuoiKbv}NYS;+q+0940YiuYBBmrlLP!ky;;YAt-H=rMI7iP(=^&*Mr)}2eC
z?-GE0Z&f(REy1@BLydXGj%A;fvWDNAt33C#$4Vn;uEt)+>tMBhySnBH38G)l<F742
zO=R$^Drx>CeYnqM+jFPs4nX65sq`u&B~dUY%e^g}Og2#-rV=^)CR<=h7{8VVizkl6
z$bQB})R{FJ0j#W&LwXLo4t@diyU!^$jc)*nhpefz;cmZ^^=SL^nmVDT+h#K&V*l(6
z`nv(4Y`%He(8#-aJU+kaf1O2!856&7K<4janra`c?Q?tP0PK01oWBeVXqL~lG+iGJ
zUkLa;z^*VJB&g|$29l=fYZH32rt(CxP+aV7weT-#6USso&;Q6Lta{u}T5v$)DV;^E
z#$sZ8^0F&~Yf%HU&yUYEtCXm253>0RkoQg&Hs=51JSFnnS5P(zDCoF3Tkh|!e**w+
z@Zxw45+?h#yy&Ar&gPkz#5KkOj(ZQe;6UAeJ9g^hBJJ}ul?JCqG4>aDsoMh$9w_(A
zsirxa5^k2S8O#i8!grLamptR*FNGSriv2kn1*b|ja31w><4>yNGT#Vg&*?HQc0W{Y
z+?br4E{m&YL!Ix{o=fQJyoq?GwN5m*Veuh<p|GE><-=Ld!2OR{`mQZ0?P!m%RLq8U
zoY3802?Sah(54Bm?q^}3Ssi1MtIxVJuZD;bFMy3r{lQDGCfuPmt|fqqId_4Tde`~m
zHV5I%RGn+_7PWo5N0|F+PsU77&q3n5pBIi{Lld}a%Bxp=%G!i{YVyc1Z$J98mw^H{
zt5rZ_J59|V6yTCIh(WsRl<GXG@qTL2WoNXfY<sZO=s=$j;UOAp__#o~g;ZO(l>E6I
zXB&`aL!yo<wQL&14^lu<tp#wg&@ei(e2a~;ti2IoS=KVCvF;dAU56anfp{tO-~q?t
z8!=%Ot9f+`&ezB(%ZFQNq5ira2kaY&P(VTBRv`4y9<8afp39vLKn>Ix@>R@LD}$%v
z1F0oO401wrCtDdvLru=R<1x4jj96W3cV;W{Z*IYC2m+Wh7H$Fc{;k++B;nW>@2eRS
zR)&CUl=V*<B}w4oP|!a?+23=dYlq+o#C>6@g5yYT63aqn4-wU+eD(<vv>iUYZ)<P)
z1@w80N<DbTB7s_y6~GPT8V4YzZZXbqTb*+@O+QMjz?RUXtv(GbstHUCc8tCJ?}6E@
zPKXCk%M{cEof)@&sUAUto~L_+-5mx&5dwoQjvgorZ8b{)g=MO^0e`Q@*bW`C@H+6s
zve4_(R)$HR2Vns)YAcI?ac9W(a;oAIL+oDu_}SzDn4gOhg*?l8{BkbI{T!L$k7zmT
zI%QZ|#?zx4aQ`4EhPrK)M@{!t*#iQWL;uka(HAj{%2&`z5ZKteSa9j!9|~TypFQrx
zN|R8|U@4p1uMx}#O6rJk!4vmyu+aI17U`#Zt{<Na;<IMUlT2l8+31+@KJ3kaHh%T;
z$y>L%(gC8mH)1X4I6l3fT$=Vbl*hdnThFqUI(t<Ura#%JtXA$r#%Nf~TckgbcnmB&
zjb}xVskxD<VcL=GEgRN+5g#3!pUdAvq9?QZo?qqboAX^FoQZ6OnBTuOKML&WemJ@o
z+*nPpTY2^^l~dk<V+jB2mngGo@ztg!1IGbfUS6xQeuYINDE`DM+J_xJB^^%NBh9^8
zzYoNA(J{|Su$Q)8Sn{_}(+$qm$;TO&q|*OX)jSMsv@U5NWqG_6nNXaQA#*sC0}mBS
zJyEgzy1UwHzLG&t*F^!?71VEkcog9+02WB?q>AG=jq5KPR`qY6TGW1?F0E59NMkY;
zXLzNCSG*M){HbA`?Zcs4!+UwkX%)ws0m{}$tN96O8iCZE7#V+c`Jt}cGPx9gSE|K(
zz-Nu+cHE>}LGSj{q(naM2KGc)Bl$m0Yhfm%Lep@PyvW;>iuSm~mwRsgAF2GE`tA4v
z+7aM845RrcOYdMlB-hhKFfzmI$1#rrS+UGBnYv@lih^teA~8sB0I_aYldE~Run4iU
z9_RwaHES$rfC(+rOE0=qiW)8QKw2r>=J#h7bC0oYR5iyD-=ZQ40PX~g+goI*4d{=x
zqN|P0dl(V)<#Lo$U@w8DAaH3EheEuQw<7k)9&G?5-9x3rjp3UbJxV^{(uTQ^j+L6}
zc@s@TDc&QNDfXeo=th(Cj~}ts)517|nr&F)`m*Y%@*N+q89TL545omhzEoXwKj=Cd
zQz_-C*Q?RkJ$nQG_=I+zU{*p)#G?<u-x9U^{Y4tqQ+>{tc)b`gFO(>#e?_Z(^d}vr
zMs#;0kc_0ic|_!<JHWI2eHJieX<i3N5$(ML3Rd{HuNNU)k6c9&1Iz0<{d%)n>i`Af
z1F>ND&kL`+oCMuikXnzbMA_wMyWH+q`-O27*>+at!ULO&@_>Dk+<U6e1Lepg)brT8
zz3S^4;EIekofFvPU?s02gbV_!%zS8a>%&E7%~Rx%j+chL)7Akq!uOyOY}OQQyFE|2
zIuwz9cOdb>-7f&6S<Bvb<tF4h%-#QS>)NtJ_z`EZ0b<~UIw}tcjd$b*49N*zGTGyW
z-+<tS+PXxE)ypduZmm|LN#k+8|5i@sgdbiv5jDLE)b+x*2rQnGUBY;)BA&Dj;{V`v
zS;BZ-|3@2rDr{e^hk*f_h`xfOE76*EV_d)cspGKVeSYl%pY-|ndnLcWvu!M;G45qV
zKg%uIm^R_=6DM~MyGpbJY;mQpXj><-9Mb2b!_NR?gC;N>y4IcBZP=uS=VZ=}k$e9;
zkw(B%nyfF~Ens;qVqRyE#&X8Uv|?$kdWTaQusWnw1|7Y2*G>07oq~vk8|}U5Mtmv#
zL}0Q1?cx&q!-0JnPG*lw7e!L|T^6_F-Cq0yR?pS2=IRCb^8xmsnwS+jwgeRdJ4;LW
z<;!fAJ!*f&nXCm|f4nhKgFKJ#G8iDdr-cN2Gf9z=x_5uuRko}AWqNqt6MJs`*0iRR
zcx7QwX7TBZ485lx5CoO>xO2zw{iA^s;rELJB-4uPiZ~a(vv3B+si7UD;e<i$pBZ)1
zqH1-LP<f5_bjY3{taG3NW60$~NIfK)Emt<_=`78#`;a>t?JHz<%1L3N2maASSl#At
zLp5v;MXT+>|7U;;CGbn!qH^-<??yxJ2T4Ktyoj)btzRz@I_a1SUk|=C3B75Dd-oYQ
zjTc3iB4DFGF@uX`p3(|caN0EqO<1lC;=p?IlybDwm6mk$mlq0Ev{s`DG9>+d;c}B0
zRA;pItL54?X*N~;r<GY7Z9DX@?_vE&nMQ4)Eh^nWDVe-)55qyfl{vFEUnTh^aNZG1
z$6{ZB5_1)S)b#PK*=4j9EHRl!4CN*-2|}%?HvR1e@oabO+uf~!na|a)kG6uhr^<fe
zWa_}5MK9GR9V<I)p2#gY#^lLUgW@KT^C9Imzk3S?@6c*F1+_I}svMPWk7I;~-<GoA
zmn(la!6f<M#^(A1@C+uB1bQTrOuiNiva1E+=H@O~yjhjhvObr~zWPS;hwDHnv%pY0
z+a-{mbA`uEtF#SLiuF8tYJLNShqsgzG@UiBm7=A=qqOGP3_b0@@?0}~xETZ`*-i9w
z7cPE8?p7x{9~sTIOdNh)ig4?<1tWQ(#vR}KMiX5e<$zYyPiFcbP-L-)ZPa4Q*@+vc
zt-DrE(LdaZ(?pDr5~y9`v;PcZ2*LZ|_*Q)&AQaJO1uk(LBL0E{uq3eE=u<nWP<_rB
z>M75oD&57!iAo<Oy$#B(W}C^Sqc^+Nd#K?js7hM9{?!`LH?yvFQr^25I!3l9pE!yf
z?bg_+J$j~Mf3F}(_nX8UQixQ4M_QxVSVJwj{n|Me&-zxf74O$XpG8UvjX9gmr}bl<
zXQ0Iqdo=;6^m#||#=EG==pI@^Gs<8$`_>tAo?_pldz+I*GL89nS99%K+K;v5gFj@&
z(^)vZ(1-mh+(@<U1sso`!AP4zr(0<CaJh0MOhj$hC=2jJpDvQ3TP0>Wr=%uh6_}6;
zD99VLGnf#g>j~YPP?e3gc(*dr=wD=@6L8@XJl<=>%E|RM&yjFmQTp2Y_M`2%s}60x
zhyL9q^U2^sMK_M1?#dOTlu4M;cXtt`=Xy33-#ALcm@&&=P4A+(ztD=a!^Vgl>c8^H
z{wm)vYN1yy@Y_+;@NmEG75N_2f-=e;i*LLCo4u*Ux#3~T*$;2ZZhtJB4u2$Z#K0#c
zVw+fI?K7;2zH|u8Zvl1K&+w~E&~)inU+O2?U%ww`qeoG-iU``gblz3*qa1Lz{&fKe
zi(cK7&#95AV;<sVb9w1G-D4>(02{(uw;p%$GuG!^Uxn>fS(aZT5i*%tn2z@~FB7}m
zo=we79ZyA9@qM)H`i8c&18fx>In<`^0PAr58!al?`*0P97pzB-4P{0CAsBg2@HXxy
zb8M88Uv{;i`O9-oO8KB1e<ZIu@lM_oi59nYCLwK_VA#0<y*er&u4kwe_(?HIImw<%
z@`IJTL1(OZ&vuD4VJ1UkX@7415epY{V@057>Wf~-%4Xnui6mmObrQNK@;caYn|Fk@
z&*m`YAUuU((HtPpO3sG+SeC+p+hw*VJVUpNhfG(jeU=Wc=VddyB`17hRf#0p@M(S=
zSZYf^Mk0N)#TV^?W>EE_a?F`htg8tZI%DmL^?UWwrKxWl0mGB$SNdZbJDnS7sQjMg
zxt~XvYl8flRk|oI-=2D&jUmuWHeE$^-K4^8X?=GGDv=>&i&Ck+h$FPqtS_&Zr~z+Y
zaTtE_=a2`Q{T7+4I`fkE)4%#B!;17e6@RqhZ6mRtplXfZ>_z^8QfGm%lkdnSR9gRA
zT}X-tf8|q|@<+W%unp9k#|eddnP~BZ+-8W&X6xr6zblD-36?t|bNC*na*Lqf2$LKf
z_X+2H3O~f{MEuGv3bP#%*qLxjb7(q~_)sUoCWHR5Xq4a)%`4HlUAdA1jUy6<92=ok
z)@ZdHiE}a9{MU_sxhw3KRAgm+BvkH1-(u@b<J<=pqpOryBwd?j$!H_@jBev*ry6=n
z)#Y7bB>WWp9M7(%IceIo3`eXxiZt3zY11?_>|?qWQ#vy{y&g@%-B!(~ic{sOIMjt4
zI2F4h`pI=ZMeGW$Zxb!AU(uh6slBztUD(R8I>v7fc9T=kMn8T&S$C+XDm-8&ibeD;
z!OA5Rxt$E<9TqYND0bH9`;lGD?D~Un4}lgz=4R1%E?&MMOr<ZJkVQ42%T?ivM5Kze
z9x~H>;L{=d6<**1VW%2khu~i&G@C_H&A*vw_>6}~lY6J(aZ&0NTlBF9-K>ZeGIpF+
zdq;%^+n&caln8Wl!!B$;Z4xNaRPPfiiB4KYj+G~dbY1|@Ru51|#gZ1r!wYj`{QNRu
z{9&mDI`M18HNSH7)vv$FrBK7GSFn0Y)GIp6^1oY?n}u(oSeEe3hX8q!`D}H8Lr>R9
z-H^k=32m%nih{jy$kpPi>-+EM%xPGQNGB0{rs(%xkskX;WSbm5^>x`~ch|D0v@xnA
z%<*&-ugw$-me}ns#*R!w@0a6=rP|r?WLYJUUmTMWZZ|!MN^moM{`~m>&}MAWcRNL8
zfg$;XA(f({$H#S*0s)cuFSe>*R0-o=+{E=K_^!%k%l(x9k`B_-!K8rOk!$7uLkfsN
z0)G*J*g5}>g5oAd+O{GZ6IhV<jb^rwKm`&c^pVxDZaOgDVQ>;+YCnF5nWkFV`54XX
zEhO{{y=W_rZHYggbAg^76Zf9aIgzVaz!2bgUKgV6m?;a8tU9JYf;|O_KanqRpQu*5
z+cp37P#_^L?;{Jdr|N^qXgS7bK;}3gt^Y*h`4{87e>^q+@&`rX$9%v8t0#&SgBS?Q
z6rGn3D}n#oyS)>moySHu$CcesuQ$%0?H2c9n_MH;Z8S2qQK)xoak)r$`?dMr9y!ST
z6R^MG?|T>GgG$KENVv8_DMk4N$haPghCBa{tMtDi7z|5zU|RkOByyuD*-!y(dP-Mv
zUq`a%`Roym;m{`>kKbgwvDoa%r~(28IrDP2o5bH{So`u4|6G!P^c3vq9#f*T-^Jj(
z1LaAG16?!6<3Lzo#K-dg99-MJB9sa2jbB+!v$9VBm-RRvqDNBVQK#R)c8rIVmGp{R
zvzd)h?jzU$OMyz2CVTVeWM0s^R(9t+*}e2oZBJ~Ied&6R74NCx1~Tjffy-Mwiym{4
zYKaoR^-?Q88h_<q(V>2#;*<gcx;YZ^K*j{5_~eBKzZ!wbI2cl*5`Dq{@?QP-X~v~J
zAVmef{JKWTz^f-tJe&akg{kliPQT17UD8Q!+=2KsFAO35i~#?~=j^|1-taTp0oq{<
zTz>I=o~Cvf$WUej=os_ec~X)_2os|GAJZJzfww0J+1Nzc!bSh@+eD8BS6@g~K0%Q-
zP}3>vkAVKc_w4?fhMJoCYi-u+-)?+`M0e_{<kUduY1IW(Hu3HJC{fgjoJy$^`ENz#
zxi|34fpHNK9#R-I5%B&E{Tp~G8JU`fj23ruII%KfV>A4XK>VLI(xjz`z@p|kup~Z9
z@&<-i8$imSwi8SBDix3ezNhg{<zZm{?-P*%b_KswgWuR;{Kw1v%&r_+$ms%r<1-0>
z?4Hpw42)p@Th{!KAM#}pxAoPN4xev{{L>ThHy^J^4}W}o>;Oc9g#s`G+T(<G7K_d9
z^yu75&w)KmoywGv;op1%T^UTxR^}SK_BYq<pO1%Y8?n*#h#5wfYCHsODkEV2RBGs(
zkF_cyCNCdlNk$MHEd&N}H;JC41GFSA)md<c%wyF;+A85~{4|@wtF7oy0D8PmT|Dkq
zi30>RnrvOkW3e8s1E0_Pk!^)zF+b!#ZL8isv)tK=t-3Q^2-E_W4zHfu0jC+6;dFju
z@c6y5o~?e>s@Zdt-b{bTkLL0aSSLtClQRKLRt&7i57R8^H|cx**O?-dfZ^X29831U
z*Y*D~1XP^hfnqQgn_5CjOe`=JFv)&TsOh~?QhNI{nSknDE6kM~Yb@%3M*_%ZYP#JT
zVvqY6z{(71UyHJEFBPldTEKxwNKF>*#J21%qxipTTA&AVpg)~~C-7a<xV9g+T>?-x
zV-l!|+630vXcgill$?JhJbn2gXd}KK3%FF`;tpMA&_`QLYQ-*bz5QJ^hO%c5fVE6n
zWT8wi5J6nf8iG#p+;Q`J%=-HJs|Ho$?a$5hT{>vq7`InvpI{={U?A(j=41FPsR9m%
zO9iItR9Sb|`I{U6k1+=O!OuaGl9N*nHnRX5>A2}>br>xihlp9bUa=Mga-{J%<J|mg
z0}42c{maWsm<T7K$-N#OS>7u>5Md|PvGTsHg%_@@uyIQ8Zcr8(jtCJ^OiV18p58&L
zBF-Y?ywJ|FA%B7gv!n*Yx!s~D?JEX;P3<HB{{59214J=AEa4qlp`H6U3VfJ<oUr)w
zq&NMkO-uNbLjuYUucSL&`G>#Fm>$%e|C*ugJo$B{rFyek^DUU>+}KF7?`0dB==(U{
zsk-;=tjF1&3N=f}i(ls07t(rfxtnc@7;An<Z)x--bGi(_A*JAcl7dX>D^&HE6gYDm
zsP6;5UNtaJc|BJ#H|7Vk`W_qtlWsWS+?aykLb^>!2Q<4)uUe(6A;*ZD86KH(#2X3u
zN$ry9U>cS01MvQDUxcU;Z9sZ&6IgGoL2^oI><R$-<v`+uuI^#47l3V#o6h@(Cm?aE
zRrysKLsV<ub#LP|+~2lLC9~<vT1%BJ{w(3mT#xklPCr=ESU4}e<V|_LE?m>|{qRv!
zYoXkrbsz4%HNle$)fUTe{5HF!4N|_z0Rgw*-5~N{S42&9eNY(NTwcO(qEv3j^RV3@
zP>@x!c<so@yJUEsn=7{4+5T1v)hj74w=2VZ0@FQA0>hL&pcUc==*&<~gZJ{hb}Z>5
zI7F;z4@BfAhy26Iyy6eQTcN*w@q3LZEhA$MCIp)TBP9LbCnts`1p_M}%0f<93`ua-
zVvxkUFs}8)t|cMEqZ{cg>N5MG%F(P<lWrT$&JG)t2<tq7DFYvu`IL7+t=Z`PPb{HK
zXCz?NY5xA_C~i9gf8P1)!otFV!v<R9pJRU=#54lzz~C_bWd8n`{v50yzk)sh;d2w>
zE&2A#yJR7Gi=dm%K}H`zzeQ&6-2&J3y;C55VJm;T`l^o2k+I57aIpW#WTJ<p*rM-B
z|7>-3z|WbClDe$Q*kxu3f?GV>$djlBnfk>8H8$D^zAmccEEzD8u<<i?IkcsR)2KO6
zE@HM^{+-K>6u)3-r(ZEt=u(Pa7LJaHC8eOhJ(3mw>60Olm$nwXx8f-Q20FE%7u3WJ
zEI}1a!;DQ#X5k)@>L)kZEbwU6Sj4?hS^StQ9fX90RIA_NUtLy1)mLU|Wq8<7x_0RW
zvd(M4Qadvc$6$SXwcNI2UJH6>jTY_3#>TZUoVC(eCYdcofRTk|__XE4ix(BZ-5>?t
z<Hv;4J}??n2huU1^OrPN`#R3&)pow%st3J|eIqU|UZov>SDHN#_-fM8V(5C}1Qfj=
z!NbU)`uc(!)|P?%Qt2^WU_*yp;LL-^Sgcka!x0P;e>*V#x(TXyBZ7Afbfb%!62c0D
zhu0LU6`Mak*TwU$rhdL&bv1IDpZeW)KBoU|1=r9O0#Tp29#;Q0Kc~bjnp$(DI4Ecn
zYkWpZ&Q@o2Y^eI`-u0!|Pt2K)-#?Jna_dXe#uTas&SV&m`ooL6wk@-}81Ds-oLHRW
zzc(#N6AG-KyYe{38#|Mk;b+_qhNTPennVd0o$-wS?z`cuFBLUBhuCOa(3IWw(oZr+
z>`aApp6FJ5mv1TYoG4PQ)i2!eS&OH9O%#Y5pjxp?p?cc6VUt3Ey#E6pz~|+lA@q&I
zcF{`kq61ST4A!SXO2XTP1<&t;u9CBXAkw|3a=Z2D*Eh_W8`n2Y{$6c28!S4Z3=9l|
zu1z18frtMArq6}w=yF`A#+0r{37LI2HnY(-t*V;ZTr7=@cF*hu<+OQTn#ucu+g-J`
zN|?*nLk!X<L!h(2cQ7i$;!Gv!!`E_u=vs3x*94NaK*EJU_@R7b+JH;|iO29a`Ed{)
z-URgi3#BkH3bMx!viA(>FL!5d4s3m@Kv7P^8@R`N@|_Kq{qYKEH@hT1zdzk=^|1$#
z5p^C0VDR*NU(YQCXVhe2Ek+QrX=lKDf|irc_q#>`PiWIp&5`F8FZ0LUz8&t}`Nq1s
z#rK1*d1rSCZ8tp&A?afvesI53T!v6Gr8EB%t%5vJ`q-;Jm`F_PHy4k>)Y(c1MdQ(B
z6j?>b8DJd;%TN!eaI$QA;I=%6aDR@zqYX9Fsy2&R@b>t%rK1?9QSx#~?{Yv*n|<rT
zkfHn<*o`KaGPH`99RMvvH87Oqy1Ap%cLS8uUWFAl*z_z!f|Y-pqE1q;&W!ypXRkj4
z*&Kd@L64)T_%Z4FM9q!8N$m#N`$k@kp4}<sV1xzVOcA|2<qRn_LJL#7)OmgGP5)06
zX!H*zA9~O89bk02rO7A7V=<54&36q|`X6IHf_#d-|D-BmXSLLMAeFI1c#<B&MXPx*
z68&TU{YU5IUv47xiq}==WCYq%)bTUcA1QRN$yMxB2I=?r4rfA8EgzK!J%AUu$wRUG
zxp|FG*Sr?R3sRlD4fKbjm67GCT41?c%z$A66Um}pUanohUENHSc~1adh`<v5Nh#%8
ze+)J5P|lt*k`@xhS_(b=mCHApgnE6W*T@B4$5ShP*U*dOR>8Xk3fje@7f@0k3@_D@
zQBDXWAIP=uv`ajis*z1(?P$HfJ-RMUbVU;Fi>Al`XGj@D#Ztcvf4#}sMl^H`C2;As
z9<LMR(Ox1#dirHp;(8-jXivfWH!kl=Aa1tu?!x)7)KVRA0AZkdmXC0HxG)!l>FjeX
zH*t-Z8G%V-ky>gA)PF8Oy4pK!sdw7?Wo~w>><tuPCY&^ZsO%=)q1eo)`PMZThU2G`
zcM(fv(y1uoy&<UVqWI|ec;kr|n`Ls)k_Xn_-rhG@0@SeexLVk6wvDQ~BYZ0s``;`L
zaEQcoiV&Ne@PIH`;d({<2W-Eaw9ZQ99zXg<gcrzKX;G*U_b~2)=bR{swbvQZuTg&O
zzD<ijBV$l7-ExD1&oGW;sjhfYQghK@$<eR5criq)5BIQo_5Onj3rdt8*7vimf{S&Z
z6003$)yvCQgNyeJ9qhV^ua^^UL@eG95(rvs+^1V>EMQhd(JmhF$lO7h8T5{`=SrCu
z)u){5SgH)6l-d`GsFH<WoH_zjv-EQzTIYU!P4pj7<O$>xO?dAd{2}<XSH>=a(_}@S
zJu;;Z1{1Z>C55kBj5Qa;yeZ2GQR&=rD6{Ch_`zn}CTVS@D`alQG~=Mt5ar|Twxpng
zAItDpuhw^qz&Sv>h6f@=3e5CS2VO)>)L5!rPu8^>gJSb|Oj~gm=$V}|To32X3+L<X
zRz%c(C<=4^00L}Z9j~*Ams_ZqSXSGbkQs%EV-;@sxE+DZb=>P8w%&#?_K4#!{}hHm
z{bt)^pR2Kq&cdJ_6_$u}TJNR`Fz8Z^G9b<h(Bo*I8|q?}JpGldkVzG%xF0YVY<h&N
zORxc}0aa&1v}QIml5?>fOp-r>zDMz&tJejVxfEJ#0P7fS=VcIju;j89$=S&LTWPM`
zAfSk&z?#3yX%^TqY@~ncwIH(gvQ_a??`SRaI<Q=c?Ja!G4O(4J7({Fm!*4;wYkj_3
zR5sgocg6zppFWeh&fBZ1t8c@Xq2TDc%owlmc~Rg?pBkt`md5A7E@SG)?bTG<Vds0E
zT6#)d=LyKlyb}lBsq&cXA!sqWw86ruDqwbeL4-9%Fh@-5!o?XZQ?Cr$`jv;SXk_=m
z2d4t&V3d+;shXp38+CWHCFn}kX*6hZUA_SbnEPPbtcG+rtW|#bQ)X7n!NCVxpETG{
z{ELe7Pbn(&1!;hQe-l2KN9ZuiRDCDKN0v)<F@~_QwJ>dOS69OQ*L3-n{)VZo#<63E
zL!L05c!|ZJG=tt<v-8~|<KXt_lmo`qFr|}QJ*3p5?_ijWBg^G-xdyd(dnUZI!B|V6
zGK`XLdS{<IK4uKWdTdELYsBot#pr0U7rgHyE}CtmPusDPUEKZ<|I>h?u4QjS4>7B6
zXGNPST)V}v#2GnWzP4FDo&=FyW>XFWD#=;h?6@-rm28@pc;NRM2~SfA={3^CxN4cM
zH44VnhEoU{5su?CB&-QMW@WAcPNXtecv)RU1^uacf%+0&yOOaeI}=UOiTR~kO^!@L
zV~!_2vP$M#VR7q(&!6jWe^T(|#j8)^l>f}lOw|Q`P3TQE&q_N(e*7eM97g9p0^Uw!
z!KmyC9bAydD$7c7yDA;>R3b}wizjk}Z->DS-^WR~i*1Oj3nHk(br2$WlZ8sWd%1fl
zHV3lzaIUhiKUp)J=9=ayex--sy)1xndd`7Izyj#ez2kp>YG=>}aFHfo!^*YsiM&0f
z@(C8+Vnac&`j$H6b_Nz2<x}Q}#98E}I)oL(X3PTDMw<jZZ}$tY$@!hJyg39+zU5ML
zz%Ho+2B6P-=j4jFLi~NaH7wC5Vn-VVATcUn9YuM<(XAmYsfXkMFxhipaMNJ86A~}3
zDx@N;1K}U9jb~Jt)b+V_zP>&3$*>~y`ZIW}WhveHFF9OrwPE|2zumw5HJYyAA-q$X
zJ+vnaff&?7=#%CVx3ttuw<!}}o;NEumUF0o+($z}yHY*9$uSTbftqt~rm@`6-6Sq}
zh#k0;b#)%BYIGznbcih#4EQ$b-h8;9wm6!(CfgZ;G_15F+GVx*j?zSHL9kw_oEYA=
z{%R?Fn(xWQe$)RD9{IJb(8RH4{m8J2n>6I%gbF*ehVu3sgAz0493iBvYQCe4`<pGh
z1p1N7+{^?_!mCyg_BIXtyLJQ{2dq~@`h(%Mk5@YT4+)m6`uX!bUKWz(vub#TtNM^~
z+3DA7O;CB!$q9Fx)sJ9;AkE}U3)gS)i)U-ZC#73?Td=w(c%^gOUibY@&aW?>p^@gA
zQPUx)w>R0@PnEI8IQ3TEW&m>IZqq@Y;H`NlRKrgk!h9+>XwUieg)Gsnz;(mVqhgV2
zbn8Ohg50oxpLSV-QSncq!gCi(?1B<gE+BXDBD(pnmC7ED{z>ieqyCLQZ~xWZh{UGT
zxw!W?4vlt!TsUCxF{_Kzb9lzMUbwS|pouta$e511U+mvn_!FbdLlO?8cxo+9LWH@y
zQ0mt0;(Ob08N*4dzw5HgSQkpabN*KQ)sbPcIj*{`hbMq0gRSY*HDvhvTwf(77spP)
zE1q$coPpUo4j~*e^(^|x3HG?D>{}~pU!nK#n*JOb%E*d?1V#S3)i87&cu8+w)i9QH
zh8AY#W@;7YXh8giIUzMLF6d3)FCEB{Cke>ADtfpjcnvkf7hIYm1`Vq%r?NdTz032w
z*7SNi+`-B8b{|&j-k5YYrH98aPn?X6jx(s0%03wz#~{<fXRbLd_m2RBL)yEwAl6tk
zrL(k9AgQ?J_I%F3wOYgkWGQR6b-JMxJ-4h>dZGX!dxS}zY9%!w5M;e3T2EXYmaJK+
z)uG&G<u(w|eK2xybCZnHJ}ZCDoAp9KHkqET@LJBr+CFcM`mb^k+w3AE)q1_RUiM$@
zb^qGZjKkw+d}o6of8U>8a0n2}!hB+~zOHrn@zX;0?~SVB#%8WFVSgbplc{7B)wq=S
z9CE@y+QM2Ni==C`@?za4h9?glt8V6p4HNnz$nzUttN(sg9~{j1i8O6#<e-?m1`d;H
zPy3f1biymNm~U{qz6?TW8$qO|6H^~y@%@1SC~T$SkUp(4^jvnJ$kSNXEx4qZYv>}S
z<4qES-I@o?D4_IJR(uJ>xNdcI_CA-)t{rYAtJ>4ni;0*#JPJb7$db*znLgGs1Vm6Y
zWV;MgJx39$ODBW4ebGNnnH)<tawmXo!%Q)ps7^pUtE#%nlHaBkugf#ckv-C@)`1++
z5RAzxQw3MeAW~Eml=<31;arR4q9X<1Qq|Q^(Ax`@Y#ThjCcfsrB6SulMA1+i^D10j
z0c+d4;1}ysqOi@PnIL?{y_V#41Ir=ezpu@i{U}e>YMWy9T{6BfRyqE76~-;v+aw*3
ztcjz-ZPhT@yb`_HI22JlpC}5kzMhV4na>=}e6LcT5&QsNui3X#Rr8@c3<aQxf#46-
z4W;qU)!VOG4Sar4T9|ee9Xx{fTl#F&?VyN(ZZmo&88${I>s#}^bhg5;rr4R&ykLPS
zx2uG0tdP{xKFAYDhhPxGSWB+Tmc{OkO5eiRm7}BKJzDXet4Qmt!e8fh53j;%bw8ZQ
zEB3GV#c+tRD4&_UMtLGyXAcHR>`M>c->UA}xyjXJ1CU3qj3<R2*G9u2Y2lHUDpXVn
z6Oz+4#4aPQTB@hQ#;h(-|0=PFKG^xkkN&-RiwRU`15l7+9(_4Y3n?)=wCx(UqV#P~
zXUep&t1=ySVS%Xf0{*^S2OCpR@o*syr~Rtf^~|vMrj6L(EfAJZSTm$f6Lcw|w`|3~
z_t)HoZhwh(384TMKVH9te-BjuH1<_y3Rp<AOl36?;eru0IJ~Z$2$@gQU^yN-PCv!(
z3<H+%mE<N)7nEuQYa&T33uks4@bK{)HkxZx91C+Byx*(>uIE?cNsC+1%Rw6kGLNSz
zug#S%k^nj)^uVu0%@-xu<EUzD=--s>`YeR`%rhn%6nD|e{kNm8Obq!(`Nn<|(gd>3
zM`ySB>d+{XSdID&<8^}PWa%>p%jNX%HfCpkiA-G4)HnuE8dSzFm>N|c66}qQ_Ck0k
z8`n&aT#drhLJ+_lH;6*FoZ~w#$GKpXpyQ(9RtcQUL*_s_oNm3>dQ8d5b$UVqVR}^q
z=V-&$ra+$HA}n;2Q>UEm2CFVBr)a{d1Wa5Jb6O`L@`AzKr%;~hL-DWtKZ|>`z?GS7
zz2YqZ;zqT;q=1gr>>8%S_*=;!9hjwk{Xqh{>cz+-jjpsNPCWlJe8L2lGTLzp!G;eR
zpSX+YbM+qbUNwz&E59WBvs;Zs1+dE+=Ep(Fe>c36pDJDriL#GX{VrZ^J1m+hWke4M
zIV0mGe!}>~wG8Rahv^p`_PlAQdF5sA77kH@g%vh}lYO&XTu4*6IH}uGHhlJ?>})Kp
zRSq%aOwM?|JA|YqyUj*0?wu}0tFItAmW-LR;Xua%9>AB-vx4LVLVD%${lcPBX|6i@
zE^}_Rny|1iJD+O*MVbWdcOX&pG4wJLG~;H0tJ6G#Ce84X!WRGgAr_y@!5!HGS6RcO
zhD8KUhj!3;DQ<3_|DoE`537Dwq(D|{BWUCep4l!mvKzD={W84Sx?1!SQdo0vaKHhA
zg{fh%7R8S&jbJc!kWyel%8&a5@9f?3L9xy`uiNNkUhlP6QrAeIY#>>lH4p@L5!TZ+
zZpW*3P3#;>+}F}!DB|g0%6yy<o0fJEPcn7X0|L(z%iBsZkl4?7oq;J!NF2!?@vy+3
zfyyuHOA`x?*lLITs}=iCVWk%;WUMG&ZZX#vKa=BAk7vIVYcA|wFpDLxL#SHo8NWg9
z5)Z?*RD?+J1M!aPDsvQ&WYAgIArHm{^zbWgzHo1LdGMI*c(5_Lc5?#@NZ~UvPR{M3
z`R4h`YqEoQ%c1^)0%^z;`)g=x?4_&vQ2W{se><bQV@?f|IzQEl-xHaYE41+w*5%Gz
zSG)Qe+nMx+Bhm>!tPaN<`M~s>*$(!7vRSl2gLqcT%lkoux~z~um>Io}eGmR-QH?mm
z0q|~`t*$OB>@OIY=ZDT4mNowl`vGcW6ciNM!QHD}r-_c(Uw~}sfKXO!ash4=@enUC
zRMi=g-GXGw#@!H)5qk_ra;r5u0;A3f){nU(X`P=z?IxIZ0Ft~csU;^>zQ%2UUJ?#Q
zk#BZ7$kMtyE3+O-<<2$5JCjMobIP~Kimy}ESD^X{vfewuJ#wD|43J22{@K>s1KW^c
zK_KM0#(RFVMsdI0`bbk+9eNUJ>q(79MxO`^y$A|Pd1)9-2C)9a<oBoBE3JB07&|jX
z+1clpIdL`G&}R3O&IYE2w;3mZ@oXu8Rlu4FpWMj79}WOg81A;|E$9>pdaV{CIWU9H
zA=yvst^i%)FcS#)Ge@;P0UI;D2wu~FgN?%>o<H#$t;=hqOl!-m6pz06akW%5V7<k*
zrMUu4XJh)5x^Q1~h%Z>-aQluS-OJg^Rq;i|cG5}luYLWbP0H^HR;BPCl7hS#zhs*3
z&lB9J)ZDVoU5+PB?tE@*%t<@J5F9=Yvu&&eL!i&~ga{5%Q$vWV1;~abJ%faU2EgwC
zDW<&bj{Tw~su~t633fi#AXwdgaGzc=N6k|?hXb->DXVOD4Add^9g;``@_=^>RjMy+
z{iR)a!oHENOjcEJ3%X;K0AJ=2gcQnvLF={*r&X>m+_|H2Yzr`&QlE=oE4c~qR=BkC
zvQJ2svV>L&@+MVM`GE(!Y?&F@ex;oqF7VDyWLiVCRkl?ix2OCkOYA-$M@N+aIJEZ;
z{>yID)oziTA3wh<1dVSkf^B|qc&w>a?Wc6`PcNnlos6n@_f~*{&9lEKE;3!skU4!1
zgI<B+$fLSw@jw)V`x)t{LjQMMzJIMI{1UK-G*Pl6=-)o1Otc?Yii{u=jJU-7$}^Rw
zU134^mW#;1#wYSHYGx>3Udg(sx!+}oYe6N8H47;Y3-Ysk+qUCX_{4{;(%FW|pi7lw
z*48+t_v2wEx@HqiWett5N(<ku>lUujGpkAtL98c^LrO23uXR_qEKE0oq5jM3?xi?}
zo$I4%s;{6NbC;*wep)|bGreVd4^K=G@f*#MDL-lp;qS-RI2B&z5P#Xw#3xV*Wo<2Z
zHwS$3tYKn1&;)&9QWpgaDy%Pb_!iaTef!>Z9uSQCzK1h=kS;_KRbL0t&n<xD>fDc7
zhMM$cy^D^8mZ6K1uTX!4M;#B!OGZOshN$0@*t#}izg&lfhs#|<l2|oT_}nXhWC#lG
z%p0wJ@lxPB4t!C+onU@`?G%YZ0jyybT!RLUL&(gn=os^{^ect7dm~8>dP!_$uNDA`
zlA;6jHn}K4$8y7GAneD9syn}^SKL~eKU`%A^#|1Prs>L4rtcD<8&3Fy5TsYFJF{Sy
zMbmWidr*$~n`WV<GDOlx4rOulPlsnVSV%(A1*G4BOrh>Jvzkb)W%~cB3^E&#K))&Z
z`XedkKUa>KL`XM+)8b1tB?)&OLv5B?WuV&QT$|w@Pp8kMA%*DV)g;s77MNdt<F7C$
z5}hS{hNbfK`|kV{V_kcpOzmVK{#vI`K`A43TamHLuJr`Iv1*MoWK`%~VFS}lMvRtO
zQrdNcvdX~?V||%5lRHmT<O6s)ypfEz0T0nDJ3B?7TPl?!29?TYL>q7j4-@07Adm*o
zIq62+js0P6mJxppp=qwHd{q}{E4r0Oyfp10@7%n(t=7}t>UG^X5LqaepA#`={r=$<
zZ^@kvF8W*!o8I8FBBk`sub{F(L$KcY9!c>9D=*$kbp+(jvN$(EA{G0lpyCsEcu!^X
zc4qdjbN0q+zC9DbN*c0Hc9i8ADx8I-N;QsIB&}b3v=J?%1??a&T50Kvy8PhTm*n8`
z<tqpo+{K$AqG^f589x1k2#oZ?+MNG$V=B}{I3ieE2)nw3a9u9<7s`v2a9!%e@WB=2
zo+5u0B7VWB&rqLm+|Ygh3wq6TM%1L&@5lL8a&p6k`fm}3|J6^mmiF~ENO`ZV&G>)!
zcO}#x7kKhk82=r-@&A6A&>S`_QwL<z{{V%@qziL0!(X#`W)ipv9BgzUe=7QaizLI!
z*IE`<_uuQaKDhI6e;uwIp8kjR=OD58pNHtbE7)M4b51AJUd}H7Ieh$o_jk`xKuP$N
za_rv}&wumPX3_A7Xme}I8|i<Zx&PxAv+M_OUH@NB?&AWvZJ5V@jh4SVL%$ZS%=&t_
zqle3f|MOJL9s<0C1L0}Nf4Uj}{JEJeuqLIg!slz@zqtbc`m-{LK!^GN4_|jfk)U{K
Vt8G{`^Z@*OBQ7siDx&ZI{{XC7YV803

literal 0
HcmV?d00001

diff --git a/docs/codeql/images/codeql-for-visual-studio-code/basic-go-query-results-2.png b/docs/codeql/images/codeql-for-visual-studio-code/basic-go-query-results-2.png
new file mode 100644
index 0000000000000000000000000000000000000000..619408cf0f069b75e7e48883e5644dcd0a17b873
GIT binary patch
literal 277416
zcmd3MWmKHawr1n*7PN61cL?t83BiMFf;++8-Gh4w?(XiE;I6@;ai9LabMBp4cbzlq
z-uX4X*1M{@dhf2P{Z?&zcDSmt3>q>KG5`QTlarPF001CDy3h=W@Q|i@^Ct@cfZSju
zA)zWKAwjO{XlHI^Z3Y0yh9{>Ys3$IA`<=g)@Iq4uQPNz~%F_8IO~ZgXBIISEgRqUs
ze;B3?;OU`IQfg@!ev<6@L|>~RSwjwutThd%t^UiU2EdSV2NSw^CUD+ywJ&nFdY&_$
zmF_u}mH7abJKbXJz`%qd`W^HUdwXXxDk8>cI~y8%8X#$ij;N;}l17S)3&2cIe`7Hb
z0({RrPg8n)yxVvy16{xo3IcM;gLWPW+qr^NsCKwjm_}d$pThsRq*_GKJrMOeBPEdc
zdM9SSpP))45gD+&PEyheL+E7yY>wzvQey#X$?`4CFR`&iOjUxICB5<xjdn?!3yX@b
zu%x%4srsd(E((1$p51(~-}X86_Y=pIk}j|Hi(${{$1zJBHD7avF1u)$Kk?)A0SI@g
z!|f0`IO90mQWMTtP1K%yy9x2ZB_}2C<&KDj``S@s(+KySgkH?Pek6b&w-1=kpt?#N
zLCP=^3(@?8sxT{IT7ykZc0#x>Z@we{vDfU88cJqgM1Y>jF{CaC3&r9+70oZ-`9X=|
zR9Okr2NX%+vpR<kGf$PVd)qGY7;78z4{24_=c`N4aFn;@Q&AvoTQC2Tg>t3lasA9g
zmPi_9w1g#;58kGaQRS*j%Zj_=la*)*Sw<WStd=4EbQjQ2!+o$@-N=hnebBHlar9d3
z9y0zit?osVX=zC#rc|G34IL!~uUZrtQ5YEkv|n8x<=auxe@cZp_-LfY{KEW-TAD~&
z*LqJ0AOZtaJ=n_TRxkkE1b&a^+3E@06&Xx)eqygkKm5?u{b{G+q`Of^CeYtQ@lu<J
zU?TR4a%n-klOq*EA!(s&_}`FY;QE~!5`f?kMB&~;#{?$kLS@3Gc7L+RarU#lz`PEm
zxWJC`V`qaB!$i*)<&wpl4Y;QGIE-v8#u7(>3kVjSQ6))23@4|rM_xw66Af0ScgFk~
z;1fJ4nwop8O6LqD@(ampnx=aPmuSRa4n^F3Wr#l>^0LL|&Yp?L8d$fb=gz1Ho!U3F
z`RyLt3+F84X)E;tgq$l2f|n;Y3o*_URQ3PyP90i4Kqqii2CraLjr#|!I^z-gPv8ym
z4OX<&+_Yjn;WE-`B)ZJi^w{**Y2E3fKU9CdIiozHe**{wyhh|1{$ekFCxeQB6D-%y
zG_-3J!5+%ylE#>3JC13N8acpG9irt~&dNiS5jD|c+jG`8Z_H{eP!qVQMuJ`v!8yRU
z1MQ%vN6UiIgy4qi2DK1O-0R()c%kFY*v=~q&)RF(O|TQYJ+;$zF?E3h>k%N_6OSpo
ziKBtth{b@U6togV(F?2QZz=0c8-kS>ejHBIPqd9^47?-_mz<^GiwlqwpXL96bO?J$
zWaW1qUoOi-;TdN#@&T*?HUdk5y}<&=!N#Hv1^ucV^t$w)lE#vTk}w>(_?-A+NDOQ%
z^wRY@^io&9GWh>gG5eURT30&o>*KGLUz%W84;T*&kIHAF2aX3$a0j>mnF~%KSTvX`
zm>F3HuaZ$vv!9*_^o<^j=Y+?I%gTs8tIGBHJ3_R~ifmco=RCBT8fOXq&}>E4TwqDl
zoJ<mKvUL(=k_IT5KI`L=MeaLzRCKE3nrMfFnZEnN^1N{ke2|?+rP|pCGR^dY?P5yR
z5zW$1hZ+xsqv|&wl+@PpmUACv(JIXI@yi?aY`T{58Z@2$IA!i%?C(zT@g4Z{m)qu(
z<!2Y@=dBkD|I91hDxjEOEO5}?Nv4&UQ{vRFlf7!+uf|szlT!HcsnA92817^Eh<P!G
zLK^cpmW_*zflcYH*s1F&5~)O%eHI#j1AnY@cq`Ky>>A~o`5KlGa|hhFvg@BWWPfn3
zwIAgk+irAkhR{&aDA9Nbx!wu#s<ZFDGbh#{z9m$P(u+<ZOeS9A9we%Z`WSUb=$6(^
z+ej-%Yew6oWb{$sW8R_g++<5y3%Zk()7Zi7_xOoLb8YkA<}mxHSAZ+DeYE|mgTsl)
z^d=Mi<Mt~2M*LFzWPA)}JmwcBUM(K&&IXQ}ZS7?3wT5CXPu;2p+j<`plP^@&OLk6E
zDduh6u8B5vrvw6?0^y&d*Qz_Ry)$3*pY-vw@cNf~Tlf7O?A^4E?dP`&3bIU!cjSh;
zGRHGNWXA9d<=DM9VC!;x&8>^!TzJTJ>Oz^LncTBT_0hD^to+(?jKlkxw{wM}$->&i
zmE-B%Q$t&DTYtx-_iEpaNyCtoN>WLzMW;nuYQAQ(X6b^79qGB``ImDnpl%LHPGsjh
z1K$nO&JGeZ^w^IBgqL-9x~B`<Dz_LntT(>chS=mtmO22|3*Blbu?_K;;QU}TfATn-
zX3h(>IHT#>+>L;m9<d&?9u)~D360?TkXiB65Hd7U6eo-o{9CqFkRH)GiCA=4^pA*l
zvDZ;dQ75tA2^#p1%<FaP*;?7*32?BSK<3Wz3;CZTLyT=qu8ckLiCOe(?jNxmXi60(
znTuHVScLFG!y}^vi0;yfhnWvz2A#I=24gP--P=4^A8el~U#q*dRYC44o0+O<7lJc<
z4i?+?312@r%rfSMR;%CBF7ZByg5Bi}N4JvfO5;l#tnTZZ>p3Z<)FOV+eCG6)`c|^2
zo=JCRu-|OGP>U7bwW|uBRP(-oJu!w$#^wXnA;zpfQ)+o_ImQ@ON{&umwRnBLP0`5c
z1Y?ewr^Q=B;N;dGSJkY3gU|2oFSkd5Uvs%HzkXjhs+{;NP(Nw07Jt)!Lw{^%Q@yC#
zy!A3T9Iezs)N<^I;Cu0q$FIVolCaP=Vm0RvoDo6xwcfDq@R-`KdU$>&hQo&&fXivR
zXk5J?0hc7?blNB_E_Y7YuDqTup5~tl3Fx_z(5r*SSx8n}3@yB|>Oft8UMh>)DhXC_
zfs0D3%xh}~*s8P5GImq9LOBYF@@-?QV_)ump0BmLc>#S57JQmsxDmL}aY^p4>n;vF
z5xmjoQ;CxZGz}SR8L~B`)f-=XAB&FSmh%E64A3Ld?|?{rvmeY1KDnsB{Av8stfM33
z#dNDR<S?}p&27$&@RhIuj;<T&Fr1)k@MYO)_RaK)e!lek++)ez{LB&fIPWp}h6+s%
z?In69I?LjDl8cv*`}d3a>&jN$vc=dWeb$O=w!84%a}&xEfi!CbYiDbcyH&M^)m7h^
zTIzWtY*W3#WtZdW&%57a6({p33z=0}9cS(@<7o5IAsMc`$1Bz=N487rKfgA8t?IJz
zZL8_aD=2mHIe1`Ms8nzhJlE?OYw@h}G;*_0ai8i~UtE9neD<6=FIo4!B0uiw?{o1^
z>wK00$3_6lL|ER|?(dd;+FqStvSDmg#B&5mcF{VYsdi$gBwAGHRU&h&gv!3z-aMaF
z-`NjEO0kCMM;Iu#k3N0en(C;E*3WqzJFRMr{}G?Zo4~uVZtGF<cy{5LaW_#QRuDTh
zJ4ictCGx}PJvjcR=H}yWi3QG>$c}KT7yIk%_3yW@8%_0g8~u7nZa?uvDPWXk0h^~r
z0MHCznjb*U^8Ku|1orzYdK%?Lj(h8QHnsqO;Tsg<7!>&?KEP8xJ_Y|$B^r)AEaFcV
zz}kkHnDgaay-JuKJQT;8!0$Fz?bo@%J@4;3><oPSy#AKiQ>aONG4){J=84!-oUvpJ
z@nfycwB*c{lmHBnJ|X}XiU<G)=|MprVJPDN>`Oy|05E@#LjwSzRsh(4(kMgPzdmu0
z=P#arw9vWG|3QHW$c6cjKJ;I60PblkOCb%Cy{xtq0Dw>P*8?T@f%*af5CzCdimAIp
zon*mflK#FKI@jSj6G!xCW`PR8N27p6DZIc?MzS5K7${QB#YN^)1)ZIpeTaZV%2U+~
z7+Q1XU3!_iW3jkBI~n)9dhS?r63)3BtbE;{%o4bBn`|-rTGioNpr!_k3nfK9g~+6@
z_tmMq;&bLfCbxi;D3&TLI8fBZW$4+oumuDi;YXQ^2!hs@HVno~X`=VJ93aqE)=vER
z7qcjqB_raWJ7wLLL>-L3IsY*jiI~(hAa9lR_czslQ2zHC|Jx8h20(q2K;_M+{|VpU
zYe_`>0WF%*UZF$(zt{5r`?R8anS4&mx>*gK{}lA!%`S=m^6~)RlmzF$Sbr|&Uoxjq
zT@b|kYuo>%2n+T51_%pH4EgXsm76MT1QFCH0O)9?Ao!oJ^<T{TpA-Gp-?k}okpY+X
zv#S5+2LAKh{9gw})u<r6Qr@2R_WxJ9e;mR8LLw>%s}4m@rc5ONA0qg#EBp7y5A+4X
zoBP8q7GL>)&J2+>1E9Z8PJ;eFF2{da*}q)wKL(|uA-uRZr!&3(56qXCs&Ibp@2x=p
z`>p?Xx19R}3&NY<DWvoMf6h!!2K^I&i9v@}1W^S4{k{H8iOUV091L2U*R`{Gyg6QA
zI1UB+EHY`=7XJ1SQX@jNt{K2LUouPO<}@E?W9_*9V1=urP>Q%q=+8Z`)mPqeyUeo?
zO7?A->2oWWE0Tt;4L9ePU!bcw6_NC(^DYtBc5C>P)t0&?kAo~-8oBg!_nl~sgPqJj
zOLZlLLf`5=E_x6q@}(lTCByNG-Oks|cZcJ7PJCalfLCLzUHuUY>oC#p*n7v*IfvTc
zUY|}$BNEEqMj5NDLr@8g$vjWk=N1>W9QUTo{fD9mO&Ay%Ck}FaZH1pN`mAYf7#JAF
zAv8w%o~PVbS5qPu+^2de0%~G7H>tWd4atOThJNYXUsF7`f(fu`5^o#4cCj>?!C=R_
z1%1z@N1@Apoc-gfuG>H}o#NA`jrHq4GkuNm3kJSxDot9h^`sVW%BIWav&?END-Nw@
zv+n;+@Tyv{$oT*^uX}r#aNMMWY|qIA^q#A4dPImP^>fOuwcd}{hd%+TL`{kc+5lLd
zWlJgpsLc_&94-_BmZ;AWH6}yfkB+{SSzfKVZKPlB3=PF(RQP#6-E#k;0Aa=+G5}DC
zdB)4@Ci&r|{D^Ivdzkdw-=}%$3<V-!+>Y^^jpBX+g!xmN;voY_`JJm_!9hqk#{IM8
z1Ad~~+UcJr3Arre{87K{#>*@>V0Ra1*nY7?@z!X>1E}sU8wR3{AC*<vR<@nBmfteB
zFuCQse*e)G^y_54BBQjTVxkmUwDJnEOvFXk_vPla=;dx>Bh&M&#iv^Fc%m)3)A{yf
zsrVfppq})piT|rWdSkjXO2U|HrfoV`_TN_PU&ss>-#>r_YI=IwkWQ&)v_F7Bw@}51
z!X~GMvnQsA6g<JZQLlnoKOZ4Vh6PG;IbUsYdhyBV6d>Lc#oF$Ad#Td)dDxrC3nlx)
z?|PCZL(R=d0LAoX*Lq0%QB%{R!Z;M2^hkgHg;LtjBHokN<wzYSy#2Vc4d1~^q0JKL
z`&@HVJ6)te;M9*Lqjh{aTdDTM?9H=oR1}fjxbvaIsbXv`d&S`^*LBptTfd*E7#@H;
zfu-x&@u_V)g0b8zem!MY(y-%Z{t89dVO!GIzzw4K$UPBP9fnBfU)}`H+fDBA#H&q{
zd@^i!^ll4KT^ByP5kAJ?X=wG3I1W?H&xuhSm3R<cK~ABL3MvTdq;5*se9dLyla@TJ
zzsJ>ny6?-e0emb$hD~ES1Jv$Cr_s#IpMqGTBtVQHSaz<<_l;z~SndEBD#gLDB@yUz
z-?QqvV$(8OY&rMaRj<B@wkV+C&NUNTi%9EVYg<b?L|juOKi2@8wx6`N_E=1+osUOl
zuAkg0$|>VmVYSA-8|dOD0nS<u$W}sgRfDhr^W)8#8Y3dmOzb_5sG+2;X-jS!-lyI@
z3W4&MRDRgq4Ga2Tndf*nyqx;#Ztizt34D7Ls)Lw3p*!F1eBUgR0jizdFoE)i<lQfA
zck7-CCEa|W(#9PUzwZas4WtKz_7nfcFo2+7k&mFr(S^&c1Pr?YZNk^x{xCa|R{u~h
z6%F$oWfhIz57#?9%Z``$)lkjMUewFE6ODogmY2U)k%l82i#lc5kZ7Byn_07!2llP1
z;=}MTsj-<3W7dr_lu?&sZ_VpDO~|HpHq#wE){e1cuw^w9^uU){EL(i~^l8;{{wS{1
zJ_n*pEoA9(dcU9VGAoF{UY-3eOZ7gpKhBPr=1~I~*(_TNR|yg)@qT8Uki0SLu*rs+
zuQ{J9QDOLf)5p@Z>KGyj_6EK{y9*?dMrr6d3<NZ9SwIuh0Ls~YuQE2$0x^UaD|1d#
z*omKnJa6l5IFk=1I);*%v&@h!J?oE;j*h0kOxw-LNPWhLOe#AFZtr}1^>li<S<t14
z+IV}tYqSYUrbu*h*w9Yjr8sYM&Yp1Ip4EUyBQo6>5M02+!=on<QS-&2tARtoUu-zk
z*0&mCZsLNRRHsZ!IHbgA3r6562syK9{o9xzMA;U9U8vMJ47hV>41Nvi40MfG-bg$J
z?=lKylRoMWUM!Jdn6^DfCDT)x6$zCvq~Go=S-vgDeC+so+1HfnN&>_}EB$wt>p?X4
zhY%o&h<j97uML)Jmm`Its`K$D-*I^zlk|D#Q)LUpF6eGad6jSQJO7#9CSobe@qP6O
zTp6>LqZs`L(e2BvN*O#8?H9c$=1ps^SK(Al(<~4}rYpp|Y7#4CUco2ec6Opk`n4y+
zu5;-bau&@CqIo#lPHH1_(EU@Gw2k$B9?UXAfg?-)ia1dYq@+pWhE69nL(4b)6u57X
z3tit$V)zDg1oc~;OZiUg=d9V+>>*aDlkco~2erQ;t~$uf80dD4$p<lrT^%eg)ZT(*
zhV&Uf<JQFxNKMn4lb>Z_npUO+uM|z6f=tbAEVf(3wMFhXVVpL+?^;SuUwxiV585t;
zpHAu~wg)10gZVDHVNPLr2)aYB<4zk_Cav2}8(o3N(q{*oJ%KMAvBbQSt&<H<?Omj<
zi#@_kv$XH0oCJJdy{?9-V$))UA7uj?7sUllqzKCiB=Il*GM4yTJ0#O?s;sg&sX+yT
zb><Vbm9<N)3G&`@SAH<))yODkLa=S=oEADLw}hPL%_B{VbdxhOK%2`Xuo_Q_OrFx#
z;0oUS_hOcyhq;_rQ`Xa#gY4UuJ-^0LYM-=BpT|RZGth3P)1=i_tM3r08&_Wl+Sj6S
zF%ie7)21c{8Lh`9ewj7PK5O1pdx<hwKRUn1$H%C;T)P#ByYTWF0qX%2eArElS74AO
z)^Yj$>4k?CZi~!>kLcu%{CiQX2jpMSY~Eqdd()CH*tK6uKQVzJn`m1JahJAh*~7nr
z*bG@$=EfFxeI3(_V<_7iHR$({U8BhZm?SPCHiMPPa@Ogr4Rn+x^~U3RqLqPvURHf~
z4Nq)sc)RXtN4(#I0OZ;kifwulTP;z^v3+9E%nJ~HO4ih8pAvqujs%-yYhveDT*Qd_
zk94Hgo2}!tTX^I^<mbCH7+J?E54a}&%i-`Y&i-~(`d&>pi0^8g6Ybn%R9OT&N#yNe
zDuf+warUgViV-`<jrfW3P*Ar&dM<`K_6M^mvp4TuI9T8N=C{Tc4TD$hmEgfI-@7%p
zrfk4Px9HQDx+?l^i;3R$C~McV@dm5Y{<womhT{4SGq(H|0Q?l|`&=MmYw9&|l@-p0
zp34F%Xz6uNzLS{7QKo%?N5&)2v-h6}aTv^UTR${Uw+9xXuJ?d^n|rUw=(3z2FRkl+
zo665R8%=D6Y&~;HuR7KL4oXF_hS8zD`q<ti-oEW6Yns!{u$v5OnPBguopnB)l^2$V
z<HAFAqz3nVcCwM)#PGcj{KPXv9=cbg4vqvkeHb4D+pLs+r1Qkc_Ib3@MZ725-{YH1
zag&K!RDQn&D{wbeyP7^}fa?St6ny+MQ^1@uZe^~s@Z1<BzNcY6${>(7NOP3jr0PbV
z@lb4AoG`J9Qz$jmcr&ltL|K?tzGfWB%oNT%6Z}5Wq)~9O-wlbNMOg+JtA2zwW4JV`
zF_@uDi;(?tn16z0WJ^P~mtAZMAynZNCnj72(Gih>mLu?xO%6j2${&-q`4}H5p+2}*
zdKvZ<?t{pv<2c$-Bu2n58r$a1Au`X!#(-K;du%dm3V4d44_LU&g?hF=g<=^+-pEM%
z#gVB1+JQi7J|hrg(4jxs7AbBi-9g}koR$@xBa<#K%PCCc>klqf^hNUw8yz9Hppx-8
zlOUu~dBzIUV`2?frX6xoccT(Y!2`^XhWqpWTp)})B5YDARL#}uk)tu8AOPaF7?GC0
zc*G_%rM!KW{>P7V`Cf%^dE%a^jlA?3894%MZ>M&?#NY9z+T-5b5B;w3{hxvC#*$^7
zDaTsnb7z6xA^j7-@x{@LSd!W-iQS=P2XsWr^%R>g&Ja6sEa~E0)s9!4Vyz@t_7jBD
z#4ERp2Ju={G7FxKreLSA7Qu?u8lG(4vh=g)jVf}9uM`<mk-D#&!lOnI|0U}NR<tvG
z*_o}<lgV2#-z_DGB0JJVi$60G8N(s$x95eowEGzXkgl@Xqlidzc1wt89%yfOIp6z&
z9+6>J`%3$cck;3~80EC%>98bc{9>z5;%US5u$lz6SBu<oZL;mtBSLl2Yo)!iAW~lW
zA9?;M{L8&;x-T-e!ad%je-hrxpJK$7iv#jEVK4*@bH=D*1vzZ&*gl|V+u`;HoI_Ra
zFz-Tiz1>Yz^C|seiEL{?4v9rATEZLTI{I?ZzR};&mt@XHJeOn|_CAp>qOb9{ylZxG
z>g!)}+X*@4H0n*`mwm-axg3Rf>L*RVtM3nEJPS__8{evHn-A(qi3?7fOQj0=&s<mH
z&lvv^l+{abMsZG7?-1|Lvwa^9L8R~3D5}Sr_S9a!tNNu78&4pJ>~yc@WKyI*WXvLR
zCG`%#E;HWFA`e(a2|8C!ku^h)=j#ReQ2l<qoKO<B=O1S_Wf)iuH9~~Xe!fT7M3Twv
z1800+Z`&}3ClQ!IeV(JP8<#Uk^DptTc?4dz9yaa)l{`{Ax3F%kXQ)(@$N+!*-r+`i
zJ?y2L_XZ(_grD3j7;LzyF)sw_%97O=V}?;P#neQF+*1gfqC-Og2yd4xa+Y?SAsAOV
zrWWFStCsmTnBePiu4o~p<&_cpQj?v*QvjVXPI1@M+WCpgY<EQ3h!4Mv9wAj60>tO&
zI_-R-!+AA4HP%L5WQ!lCrnfoRi4|#Fp0`~x%dyvbFAm)f@hUZ7Y$5vmZtZyt0q@-o
z8q}D9J~`$YBJ0-+WF0s8$DUJVfzw?aAG^+n;u~2pFIjnEczTQ!BSlw}%Mg2D+WkIJ
zfEn8<5sIt+qC_Zq!yVR`G%jLw_C%woyYbp9<ZY#~cHZ|28zj=HG%gwTM9rd!>ynRq
zo_APWmgsA7d~ofZh977pWtM^G`@qWd6edHo$v9sRiE)42e2E{<UpId}25S5kzYU<U
zAyBYcX58~vhjQvQdLg6@KN{<ZGb69IE{gsB-XWh<(VmqY<X%ax*jH{o66-lyha5gt
zC-H4nAX{!U#CVE(K@UfR>y708qsTJy<;cf&URm-aPsy}Zf;^F+XPIjKz0TZziKUht
z5I{6H+kHEHe>;-3(TLi%vT4<Km}_(Z@GhTbJb>Spk9@ovF4A$n7QrM*tvjkQG+#y4
zKirjmtn}CX{Nr6(EY&jRLN_rbjtUjHywwa^0bFFTl`d)&c1P^t7!7nOLQ`c)LL#rE
z_(btdI)=o`w&O-aWJFJh)dwC+0CN}wb<yKL3tb4ghCW1C{FjH#=jHvS)SdDxaGL8b
zf~ko8BHr8q(B#<~dS>rDd!7{NSmfowmDEa1RvyKKb{9-)7RyA)dTJ>>;g7`hy8OCo
z(4uP5uc;Ocf1oJTT0z^x)Bx{6rzxQW1Plh!8H>3|slvDYv|Hu`h?|+^+W(Tvy7f@t
zy%`+nrriiz-tAV^aSIlLV$+wEc~?NuPxpD<pk22ap?&4gl?Pd32i5F|fHDa!nckT1
zptRt}bYz#EgWDF&c#txOa)E(lI(*rSwR?zMNju0g?}BOv{|svff6&Y^wpm0iA=*bU
z>lXMad(*>aXc-c1BCLdv{qypgB0vr1G5jNCf&x8$7uhT=?Wo+;A_ZWz8;7E52d4R&
zbQ;8*DyO`y-o>@$>{)ZQV2kFqn_$d&#tJC@?sm~lZET-azkX-kYWpqfWy0gqy3W4$
zw4(1YJzqK(ga_znMi>^GZ<eIR8PfuC_!HB_l~I<{F=x>pkROt3Q9uV>V=d%h(<R%~
zBqj3?Iy?mHYOK~#D$+_sn9wjMrYSzQjM3+!lAn32k;ln75m3pZ!8YwFdPU-*@F<Sg
zl8AFSl4&kzes)R5-AH)XET1Z;H`{VjJ9aXbCb~Jqtp@U6bPC51$?HbPS<H{>Q6Rm$
zrBuw_Y1B>vke6B3A<pL+Kj1lkM6p7j2_B<8!%{F1gk(sV&q8<ONAOV{H0gFbGEzWs
z_UM||n1+-m64nKofzv$X`j}yyvg)v9j0;&<H<D@y(9vv6Smc-1L9o7<WrpF5H@?q1
zK;fCt1cdjT-O!8_?tKXnKUt|OK%LY3J(A_RU9XQ{pQ6N~M5#H#0<E1d<J!rQSzC6o
zedXX+`6Y<5A=!pTYq2rMaDr9wRZhbaVNfw_DwH3a_`6>nM_4nIaqEZ&6bl0t9J-JC
zg4BLgHYv`1N90y}#tJQD-~Ldn#8|=9!!`NJ)2Pe_fSj1UOG^ZIK>V9#qKGur2kFw}
z7k_CkT{Ges3J+CKj{-~~t0`Utb#nqT@`HHhoB{c6EcO`0=Q&1@n$sM1uAGC{`Wg5{
zUsww}`TL6UkZw6&Z;*pL9~MA+*g6^UG%2s1ZMtyQdR&PwPb!!JstcP%C^Y_+Kwa9u
zN9fNarV78EUVJWQ$;hM|gpKJ9CCMMb9G4*$eq<N0HOp6Al}9Sx&iR_xmA?^2B}jMe
z)b8uP(Si(+2tl=qmsHKr!9_r%R^T>0UZR{(U&b<%amqf3c$`kzYoV^NMrsDH7Qp(=
z!i|a@BFq2mrxOa|84p5Teq6<v&paR<Y@^EQT^yo$Qv-P%7Nyo|z&`2?>iz<5@qL3p
z3a7IMyJ!#53AAHPxZ)R?RO?djp5V{1&b8NbILuK}*mYmr8BRsCLQEm|CXpiP`J1lg
z5UA|OKhu$>2>y{Qt-~aLJieMD0o(+$vVL*n{hjBWmFdpnL?s$5%=tMO6$rSB+x~=J
zK-r1+`8D9dEk(+V3?bOFQ>2b!{D8e=gaqWY&v1(451#Z^><Tnsvz9vYabNlM@`tdA
zDcfY^P5JBdWRlyF8SC9U5C76XjpgZg=hp`<)WEfU41e&m8J-B8gN69eLBd-CG<Dfm
zIog9IY|Z-OG?1Ai6G%~Ae4kSM48E^lh$W<!gMFO;*GQ1P_^X1JEY!jmZfkEt*)KtI
zSDTWUl8uT15gCSZZSSh{m>}_#Wn^ke5^FPBhOGIlHmrhodQhqp%U0|sdlH9aYH|%Y
zk#H2bfY|{^3iKfHO%LaUqP~wwmV%>NRH9i^jB-$a_#*azCF<ENr%f)AHW+(Aa16vL
zN*lfah=7rcF+@5~c)KmU3*~?+BuWS?Z-UC~a@ZNvMomvE$!hBbAOvH;f_c6q2><M?
zL~(w^p?F&p)Z)!*1v??w*}e-CJ1b$t3{A+^x^G$NyH&G{Yb2~6ra@zh#L{a)>6xfw
z^rqS6+(Si%O%Kyj9&?~*TrG2k125CO(U9JKrW_U2b2?}DhRNm$08jb8&S};nIsH~~
zAATht8AeE6Weqc=c%$)tG_@iCQ;;t>-n7d;jx>I-#dVZ)pwrIWbeRpinnWH{*h`De
zug1{S45#^_M{!s}v|z&saz=VMFFxq>Tyv#0T9m%wwN0}=EqP>;>jJ9FCzvE5VF_x6
z1rQHm{zBA8ge4%TQp~P^oamR-xVJb*cW)%&)W%%x$HW8bPnm&BS7eFxyF}**NqkZl
zwQ(w2ui~#JaIv}8X-eQ6E<#qshbi{n#gUu&K+QaHq%#7k-ZQM1&hiD&)~XH9<E8p?
zSB4wI)9h_MX-R;N(_-UvOvcv&&wr*S(<%KNN%f<WEJtwVqN^ZTiY4jX;^INb>(Nbq
zrX(LU+a2|!w0?cp_oE<&f7Hj*qRe@GEXQ@(YW^NnS+ZumS8<4o0WIX#K2G;Wocim#
z6|db_^VPc4^t+s~@c=hFHYWqYA;p$&-kfh0=2Ih|eV-8Kj9Q{2O0abj3K4O$5Fjx`
zP?Un{46IQ=<U?*V&KMIZCQY1goUySH(g+%%^ubUINX!8+i$HIxy#^N3XfCYvoLGyU
z#l}&Pq#ZB|SdTtX?j7xjKW@$@a0stA?g<%DD7Q*P+S02v=#|h3%T>k3rTD@J?5BOF
z5z~TUh<-UG$!{vc5~ilnL&SYzrlO^Wi%BUx>(nGj&^#hV4u>rSW82>RBo2n{t2^<N
zrF0v0-?fKRk|`y4+NS76>+8h)eaLVksxFF;nFDNYLndBrtF{3B>^y7zVI(h|<T07a
zC)a`3j7;5+MZq$K>5b)r@f8O<g&7&W9%VkHx0TR1<$%y(?ad?^w7t$L+XgzJX?K5&
z+wrn4710M)zm~+BPiIu-reV{bA;f@~u_iy|hSy@tq(cwjZIAFD^a!f9A|l&F3x__o
zyp$2gcoL}tMi#ENQ~K6QylWcyPT?4DCB5T`S(|}(S$I*YqYl6Bdp-&0lNlv^(Q6XP
zB@Gf%IO9KaPqE)f{SflwRl3rmwg{vD5x9-5B2q~yndy899|VmrN$w&>5n>^kBziI4
zb067>Ye!Ml4vw(d0JTt@J#p(!X{@^9Iya#kMT)Cd206^Ed!E~DTv;BKFoK|3kiXmV
z*8`b0v67g&1%SOT!Z*J@zH}nNb>t2aj*98V6(#16N|E*^c_Fcmxx(&nz#n)Idtyxy
z2V<)ZOY+6vxumHgq&OkTH$GlApNgdUu0rDT<(QpDJhYO(@@S&;RNVrkQfh;G<3&Le
zNV{!5<FVz<+Yzpv3FoTo4+E6r1sBYHT2XeXxp`77V<S!M8(3a;mo}^+@(x$K0wHG4
z?@VMSw)&MAmEU)^r3Ln?GK^zVC=->2#5eZ6Pd_IG<HN)?Td_CwI2Mlkwr)&1>>%{9
z-xdjRb`5Z*{6y%n{zb1<{A0%$#Ap)&oJxJi5|W(ypx8NeNY$Gy(TSDbwUt4A(wadl
z|H8pa%zc+k&ohprYMza<kF7e0u>)Lngu6@E^+O1lk}Di%wMo0h51~*vHA?cwQvZ3%
zu2pPJf^u7!{G|&&StOgN#bSIXOzgAzqUph*z~#yCD&2DgD4Z^G$mL96BY8Dc@{TDD
z|3&beXkYR2JB}+b(BXZG>!?t1`OihnkPlZa=#19pKQ)QAa?&2UwdzbC30`Zu<`y^U
zVfDT+JXM(USGHFOtvMYym>+fV+yqLVCb?WhVLX)^6Ma4SPE*%)$0U#<31{QbS)Lzw
zBdn^iHo=tjlxU^JRxxn%9wE6y6HJshR62fr-=6j`DA$DBhnocrfPsnsA?IG%mN<f)
zUGcSu2rtAQHK?DPd08VLfGM?&iQpixFP_p+%BA!se%*4=d%F{Y5=rc$EGwxGXxEaA
zfFmAF937Jz1vXA-@E1nAykGWIEWRp0i<k$(U^4YN^ssE}MA1^RxU)z6dj8o%KeV(M
z@yU^m`L0Dl>ae?lU<!W>mKt0C)$4t8p-uipxn0+94PEVC4z=bVU)65#RA3b`C9#^-
ztXdBW;HgFseR<KAEFNI>9s{xD$;B_i8ChqY<z()%XEg3<uqnXU!6W<JM-;mvHrW=m
zOQ8z+&wWhyNI>p)uICQ8JrZ6?e)rv*eDDQ^p0c++S@K;8#|OcWlHm%kkR)ediewCO
z#)%ipx>S!~0qto1Srf6y@8($z*}y&B1i7T9uph6q+TTVh+jd3tjaAoWi`L?WUq*)G
zscbY9Gq++$^MOXaNfwDnl(@n7pwPJD*eyP3RensY_CF$=9*x_LRM{$;l7}-wsTJO-
zTt!o(yD-8(r}E3&VOl~r$Li8qjcQYKWYymWO}}Bfg;TA7Fi2JxB)x^E=#bmhkOdQb
zDjN-1MzzD2Sr;sK6u&hmRQL$mKDk}Rv{jupBhlLoIp{`({0++ILfl@G$YYZ`;?x>E
zlliWfQ@ec#s@lMk{xC1F=?C+ST)Rtrju3{KVu^~AvQPbakO>qVq33lu;EJB$wQ8oY
z$G`K3b4qaTE|=!u!KcUG&kVX?P#=4KP28^<HZ4k5Ydgw-A385;OJ2!v5@2@M^}NUG
zY8z?iXSk*XuY`*2y5a41jK`EFq5!TjrR=Ru=xM=}m6%1^N5glIL;cv?0Rf|!dWPH&
zrzJ2N#vZ~oC1>e??KvEkeSbo0gOPT4X2sJKdJLJ;tA7C%{KX{0<LDylyky1_LYU}>
zXC0Q}KvB)WIK$PpO<tA_OeUD{&6Ws00=-xT&n?0G%Tsqq)b5m)a4})O?s1?ER_R2N
z^K%fEcB!9&>7Zf9OcCh^FC{x4?GCD#bzz#JZL4@dvhliIYtxOF!-S|q-lo~(d$i=W
zJ(%KIW=4kwdgE3*_5L77-}{R#VZAd!E;`PEkOM!9Ob@vx#lneaDBC}uS^TdMv++u)
zHs-E%-Bscn!=V9VAK?4^3C5~hLQKY|;zgYHR&1KGqUjDXb9{CoZhB-xVeJH4q%YI)
zP-X+8VBj-m`>WiWM3=vt>VDi%4C%3q!xR4_X-vAEV-5TP1XC?b#)7>%51>-m?UiWe
zfI!>FQZoaQ$A<D<K(lG-ck6^q1LGQ_;=Tdc-H_A*$pecC-%dfSaO*%@`nBa9)8VLN
zn2|VHJ5@SL>NBE@uhVJ6LWtCi6B%^Y!qU)?(OKld_g3KG(~yxs9Z+QXT40w(VO-PM
zU|#+9^Tfw@mSEa(Y-pGmE1llu;+wg);?RT7xj)~&Psn*tKL>=nrMIx=0Of{L-A?Vk
zMZI5e*6S!@m+I>!bY1cf2Ci*nu2*>qxwiju*7sDI(`xFz(x}cp<olLc`Z_URTwc43
zp(}96&G}S{BP11Y_}X$?|54vM8Lw$I2_>IZ{v9ec4!nSaBtHVY8R`XvVS!I&#*=so
zw{iy<OPbdH0pN&m6rp5%Jp(WY4CabhZVid15nNsl0XMb>lHU&$mpQC>W!8T{+W9hy
zK-Y#-1Y>oC+^@J8%Z7^ofx`BF+9XRql{${gvMN37m*!)P;_Rq~9xdY!ASG}b^;cT1
zXh1fb-U(bP=!7qa-n<c${jK}curF>;TC;tJL%(A21f0`3VKPda0XS+{XaXM5%Q<3C
z1c%_f{Ysf9!G_bS*<1gYQ2bLb&-;f21#&%bjvSsa$()CZs5vq{Bg=tQxNHgr7917D
zJp>T`QYP(Vxj_&~;<oC*EPG;|tRVZ5*2=DV3%+evzHwGLNtt3pLeXpN#dRz!K>XKx
zoyihosLkTfe_j+XS=2?y2zYIVCS<JyYzM{f{;p}UR6sQRjH0%g@b)X#O)vr~4i4Oz
zQt``R@TKR<F{>gdzCthYy^#qLE?rgY(NB$C5r>*iQ@v=gKT{Wtm9$MdjQxmjJ4=zm
ztHh>S<9EP=$~vYJ(+u_cWPnQ|KMqeA!a>}RD?ON0#;SG>F1yj-q0&Hf{;*tT*ja1}
z8$@<U3?RyZZ`L_{^JhQA0S^Y7`JCE8I+o1lcEwI4r$6~BDb#^;w=gU+I#a<yLBL!)
zy!xr{rF$B28?{}}A-3k;;+0AET1`4hi+uM3-f$P&Y^or+@LCb$o{t>a;k?{-Nh`CY
z_UGrn;2M~vqwGZf<^$E*EuZFHku6CzxC8<W)1HGk9-kR0f(Ev<r0b;!0`1NfGi~jb
zY$TpSv6X&5axL0Q_NgG_q_%dV1FS;=wpr7M7Q+>5<liLdvpGI%G;c@}x~<RPu?a}&
z!I$LDfI~mlsgpEz6Y7z6o4`}yv>MOPk0?D-z4GrS=Lq_e;cDP5lBfb)Qkx5D4i#Dj
z3x-IX6wBW0A$(khv*A$$p~wqw|JLY@L-1xkUo;d#lz0-}iQ?4h$Y>dC1E>TU50CL_
zvNUf(KfR*QXYuDa&&v4_yY19Jz0^9+IV96oB^cHiZfD6+7=`=6;n-gFx#*bGciD|*
zJY@Yen`ieP5?)VurYp3F-Y|QCQJhjs<sEXmy}+NoyTfRre6vwk=>g<-&Be_ld%B~D
zl0SP!x6G6+pfeBqR(@JQ<$OW+nUU3+Y@oB^*`ZI+DOej&2o2?lAG2Ec-KFbX-};9O
zb5%kKtS1qS6zGFBqZ80Ay~10GTU+ihmNsVZTnL6nYOVirzS!SG$`O1M`@sHZQ|d1;
z<SByHOELPQ9!gtR6A^z_=~@qwLZbOc;}k+6CSMRvyeIuoskOrsE35Hn-0)LKMx`$6
ztRL4%$mVzD@)Ppo8J%o4BXN{eA4o-z`!3+UHX(TtVc4unUNuynnq}TbzY?)+f+ZE|
z4?WG@Gosz3<jw>Pp&%rGHr~lw<LtL?^<iJGPbgBaiM)Y|_PhEr+TR@Cun_NZZ+si`
z#(rNV{K#Z^h{bPoPm#r?(_L7_z~)ur%88V-WCZ7h(>hl&J$$UFQ+VCk=lBdZ0Pkh>
z!eR%pS}9}|DOC@^Km%QyNpMv}K^n6n;kesN#>V~_TBGBzh$&c#rsfKIv$$ivnn)aL
zf~J(*Or1~cXxT;yk#0f{tBzyLw>v}_s@DsOh~OS(d6uBOD*1){@Y_CjYU@n#<?Auo
zUpIPp#8LFa8631=qQQph@M!Vt9sKHdzRNKUq(hdpM3R3MN%$v7`#F%CVw${zHDfJj
zQZpTJBEMqSV%q=su1+j$*bCLfqTR;(ek-(5(QA$~#0)hk6p*BigJjCPqb3(?=cjAe
z!L61Qw2(&SGGyTX*c%t@p~;j&m^#QlEuSVgEH$VWwNOMBRh8qhPk5{htb%r@Gg%EI
zkVI{Oz|ngerS>@#Wo)e;5NwmV7#nfGRhA`)>s}u*!u?~v{QFU``Zk+P^lUq##>DvE
z)^C(dt$ECR-VA6g)Rw6x!d^EhkL}y6=k731nGC<M0Tin=`?q_27=uze$vTj;#Pu4a
zJftRCTv_l^(pNaf!?k>ro?vPog2C9VU}5~|0h^X7_c#~CMCO$nKg)^)8DZGaj@L0b
z^>2pLg+nTobkC8s0_P^#CwCxbeH|Vn?}99p#4+qt#9ae|Apo6TAF}ssMDJZ??CV$t
zl}RiD&@R)7OG`_Q7JNi5qh>qP>P#y$ydGR7Mh-RuG0?MA5?g@TzWc;!U(qw%5``lK
zv%PP%1?VC^pj?gwJ{SaXUA*>?2&UZD3Q~*;Un4!>K6(oZv9U5{oBuJO2SQh2Yg)pL
zuWdnSKc~czf41Kvg@JePKsr7M@L<cCd=ay>OG-RQ^?^R8zqZ(wN$<lga1VK4ADVL6
z&u0Hn@G^s*US&SH@OeAAc1~ZGpvOJ<j{G#;C#o~?>$reD>lz>CS;6)1ppq&&mKQRI
z!>>WW>hR+nsoeIuCZ@+Ke6Yg7Gp1EMFsRH2Ec055KmYQoy%T@kwp1XMBWRBA{g`Hz
z_EcA@@6dc$dx=%t{*iUgYT~ov3oFh<z+FcB^kR3mxcK>+ZR0xJd;RA<C-W`e^SZOQ
zGR?(R=ap^KzyQ%HHDBH&-e0=@C5C_*gQtnI?EGG4^O1VilUg_-xBHBqI)KN=kOw<6
zJC^B`4%pX-Nf<y{xD;2Sg<!eZ7EKTJr?lou6Fm;DcN*|NoY702fA%=bmzMX`T6|*)
zVm%D1_`I53BZsFe44ST&jEsTu3qy@a*CJT>9bVr_BY62a($3AM=*PX0&di4xQ{B53
z6E*@G%L4H1!48o>DDhjcHkNcz;z@gRF)ayD#PAs1l#g|taZ%;dyY4W_8!4|J+X3N^
z5d-D@BfnEdP=friblN!(x3wj$dXk&(#-kIDy+@gMMUKZLUfXPV7arOU+wQb*X;zO<
zu4c%oEt3L7*_3IATE6M$k5cc700Dnx<n)sycRR$=`#q(qy}a)66La0E5~?gdgCmz)
zcSXE6JMPw3equyL5WDEFa)6;m`q2WmBi*I9weeIau6w}B4o^heyH88`UW(>XkZOv%
zgn(oyVAT>Pg_1{XL4OJwILEO?9>2%2)jOfg{@^yX#eE?XMTZt(77i_ZrdByzJZx&h
zrnH=d`K-7Yx!bl8x991OpPvL+Wv@+2wCQ|u;60ao`b(YAeF1(``dghe26X#pLlSUF
zgg|4V7&F1jnwsn&^5Bc%l1&bMToH;!5YGH-oImC!3Fo9Fc^P?qLC{x-{ye@_9QI9p
zZ?qb_P50iPpjnNFkU%P#e(h?!AdF*>S_O+x^S4)`@gh`u^w<|H2NUL@vlI_F*$>-)
zL2b7~E@9#=3r78dLGkr?59p3_XlD|YNFH!o(Z4w)sU?~F@hd0mm<_2<p$4#q_0Lc?
z40zYw3uxXXtr`cZj6>0g@wH)-+*+FI1$?x&N8R9WB8XN(Xh2u@<4rpcxHQ;ouox+7
zm;szjwmiqUDLxl^HA#2_)YbmDMK&Sc9|P#dj4t#F)W>;+orWv@c<-{0-$7kkV`5;{
zuAr$r#k-O{+fKm}cQ%;`Cmcj|;+5Gyq94f`P+mcM-AU7zsA^>E9{E%9kIH~#f{|?A
zAhlR^&#*3`&nc}q*$*FZ$t@#6(ADLB?iRZl%Gn#$^-c~ke3Gai_V}nU5WOZZ6<lJl
zK9D#*htp+OSKe;n{|S}MN445(wO*t7!d5K79_9hq@3{B@-GXjw$QVI@t=U*l^C)=+
zb7Nvf(u9F}OIPpxFe&5jPs7~20E(&(3Iq{h(*B9>|NJFX(4BYs{DW-@u_%RT5jQm6
z=kFbr3vbx3iVZP)%o*%O+EBUe#~emtCw#+CODbd*U%GroeyKeD8VCATq&vhmIe(Ct
zdsp_vbD$FoND!r)+Vc(VQ5u6{etov$JdW?PS*4j1=0sU<8yRnQvqSpwEy}uLn3~{g
zm-p{+uRr8vu+`4%Q|q^QoG+E;7{K3M;XWAhL^ck(Nyq?8{BY~8m)m(#ltRkH*Ek91
zXEjpJtT@zd_m*HK%7kJ?#kRzd1Pg|h4-8)!ZX$48hvO)Gs;e7<mN|KZ*(d~>iw<A_
z6WsNVfs~cQ@6UC9g(vd`QfcE1M@Je*c{N{9y2{aOdOFul@HiDLdBa1iv7Tx8ODK!-
z4?7Ks#=3Y0^pZnw=ZNK&dD8)-FiVYsP+8r%)@IcEi$0P#RGf7)f;NM0eOtHDqh@?i
zsdTE@Xn;qIFG{Ts1JOgFHC~%W^yKr0UepM|J=DNU#FWf4q4;XdZq)2<;Tf5Rpea*@
z9F|>?e)Qe0xbXDC3|qZRR0%I!&E39brC9%xdhU6V@zC9E4<yDWg;!3%)I#pk>6>0K
zEj<;m<g86*lECq}5wBcElD?lAM}t97=DBgnocQj;{N3Rdy1)tBv3zXo4g_$bGXdv_
zgR@gHEY$#rjh+u-p^8ZkM8Jj0X7|0FCG0&`TJ<#~)w6Jg!Zx$0wsVM7>tQ=629)R+
zND{Hd@(e6q#IZD&SQpN}wY*uUOD5k5zrZ2eEn%mKA!8q3H&o{PgR<i+I-k(o#A7_E
zZ9X4O32bD&kH4y&&=g^Lpjr7MVEa92+I7{`f$EgTz(jLIrRnc%^)3vQrZ$12_#jUL
zuPHn1H{k)&SYro96HR&;g{`el;@ODv#~-ihH8^Ie9_Y9qDG)ia(hVrlhIto`5}Y=N
zW|LbmQ^}!Ib1$MP#-fb&7&rEM?6s;QX5=ouk0)M46Y9bH?ZHWs<0pn|IdB5|UXYOs
zS@f4`>CfEQ-@&bL+6;Y4!W8Gxf=@E)2XA!H77`!y4x8|npIo7_nwXrarGa53**rqz
z8jo;OT>sJqpW1z3#|Q)me+*?s?(*L$oe9{mHtSJsbmvo(J$F(H>#Inva&K}D41V6;
zf)plmTvv$sXQuFtY+lhBl@b^Fa8T%7@R<qE*jVsxoM;ihea{`wm@}`lN=hkjZ)u*?
zleu{5dG@=|cQ|<7%T^t%=HpBHM85VA4lPwJ?Cyey96^%6^Bl}*T&Un_#_}Enq6;rk
zg5);r-0?)ys`7KtkiB!q6A`K!4tBtkO6%4=xjsj9HF=ihx`y`@?pTP4AyReYnFmvr
zE><JgtmEwqRTop5H`)Um=hdsyufh>9Vx>9H26Y#GZKsE$!i=6Nv0F*E&%Cc&Xv#!7
zl0znd2v}LO^JE>pudE1CO|XD&39jkOQT}<<=hYsdk^7~T%OvWDAX&+b6e!q0bS4)q
zPicNOeN0PEGs+_MdBr0_e9dw;LiJY3h9H}%MMQWbU3lwlWrW_uR5tu0%v#JEOj*h^
za*_p`X3w2I_yK%bT4Al~UK8?jY!=kjRf4W#M-4DJDyw{UI9m~bUSgH`EJ14l)d)<6
zL4qn=lTd73*+}tyh4KR{ydEY;+@V%EIO@tc)Q}+hSMxgmFoEVT#3_MezO8Mt@`o_A
zkEjXY{v`--ycrPdGCJYCr9VBzW}nwND{@(r&I(SdjcntE7e{=_EQ>Nxd3_9(E-c3i
zab<FNV1J))3vwJbWRM@5S7KfBX2S*N!~*9_62!i=TA35YV&Lj&<axovHzVxw!67^f
zFUK<t^$5AHI2U`+MdU;t(4+xv5blDtUJHbx;3PVOd?Ig$IHx4hgMjDG!a8an#Qa&m
zIMNxIq3%l<z+FzrFz%qvyY{;Pr?78weUo2f58}VJV5dHp#EQ=?dlQ%@upWx)iHj<9
ziIRRcN(g=ZRLRL>FVc#nJ8Xecn;9$afl#*&)WFF%Jea3h>WnLn+f@9L>z8cPLlo6;
z=3Wvnya=95u>fpm+|nh)x^?UhaE?%Oj@n*tU58uVSrm9H<ctX<3#aZ;UocRNa$jRj
z3EgGl4m4hR-4b8RMYUb{bW46;r8<+jAbSXQb_LJG3M|pA{&p=teXk}k*sCb@4`(6B
z&x?vvI-2NB>;rYJ^aKx?xR+`%TSC-xwfQaq%{wL0`^YxyVeHiQWcN77O7Wshw<fPA
zBq*v4Ha)k4;?;|&n{*u90hl`-+NZPDO)r>`a7>*jsr0)6$F*eB4SmdzZ6S_kRDg*s
zY=DBSIIoRc&bfIfOuQs=PgEkIr<p?Gsb~~jR|_>p5_&gORDQcl>u5c8Y(<$p<Bt8^
zx5Z9{=aBd}Yy{(3G{ytY(vLq+S0+R@%#t5#@ucwY^cFkIPM8-SAkftvj+2!UG?wy)
zC^2G$p(wFKDqQkakO~5^_V@IAwJW)656n(?AKV?9-Zt^J7|tB5-><=3`x!#x`RfCU
z`)sSveYe^=qV3BepASf!zE_G%sW)3^$9|KU4!wLHB@wR`JUqUn4Y;rwYhrX-W>OIa
zD(K2l8<KLnP4NoY#Ghke-I`72cyC?pwpwrDV_v59bzX0r$k1!4=|6I4Ld9L2ekMB3
zkoB?$o%53mlbGSn<B4Dq9pi@#){(*aG+blA|9GnLVEV{yPkK!1$Mz}kd+P9EbuWI8
z<!!V0=wZua=&%9D&X~rQ9tPamK#`L#I0Z&)P4_mpA^rz(WyKjm5j4PX2RlTJDUjuk
zW*`v7fAl*~Gb|F$d~2SBpCYww8Z^|UY+pkrvI65|3&bR6KK3I?42_W!I56i0IIK|d
zh@l1yd0}3Fjf7~I>1>nx8xn|9?9WVvSyj34J+N>v&{o-)^|CRTTt6F4_YJ|@Zei&s
zoJA%$VOBaI+yr4DA9C9FwI+k}EW24jr~!Hl9a?eQ%4s)&VM8)<i=jw?_`L&IN883x
zCBeB(aPYoHMAZ(nbf}5>mTeO7S2dx%2_R-UB2;zG->s?j+qMovyYtC%u<+VO0SYu{
zgj<BD;+8>H!6r4t_1kC)tZPo7uc{%&6mLajiusw4B#TCRpg#y1OY9uqvU*!b&;S_)
zQlnegY3)H9^y~{Bp`)Vvw)%c){h$MiJ#tz_oUJwCu<p1xxxzb4m21)ABNEcoeV~D=
zDsK2}0(ywjP1<YX9ZaGb(^y}SM&|#b?5(2W>bkAnq98cIB@jHg1_A_vOYmU9-9vD9
zcXtTx5Q4kAy9IZ5cR#D%v;V(+a`we(t!~o71+|!K&M`*s{h5*5-!F7+I!lzJjtp(W
zj0Jhqm&M6BG6Z?msd=+BdLunhku10`g4mkWM}NEX5=}VaUhw^#q^I>ry}SyP@;lRC
z9?2Zv?cXZa80u@%y3mts=};K#>!xv!D~ekSh^&ef#O9-f?R?N!_!PUafv7w=Y}^Jl
zs=}yi(qr4_igo&}^emMXeY8$W)@C^p?lP2X#$m}XtafwH;r+D3Rr5dbk-Q+#sTpa1
zPQT~D8`WMsrX#}iV;5GOaD{w>dlo*bEqL8`lKu!^5yR9mf=z?z4Cpr>g@3KT1No1b
zA>0n8rEENYN@9*g{|+MgMplU^82>Q^FGP%}^wCqS%z$hV>?fH^PeKG2lZU(8xR~D4
z^j(GfV9X6|Q~skoLO^H;)0PRdTeiMq1PgjaIJiZUCDth4UZTbwx3ZWqz}h;1S?0sO
z+vAWe68fnJD$t}GZmAPwod*5X)-X;_;SGLCXuwL0+I2ZgiL}+l;LuQ6`aU)xN_i+M
zGEYBUJ%uu6OEk?Z-xJ{K<?Rc2$RawSN%=0kMZ3m7NPPSt=b>x<H_i7eI*F>M3|~hR
z0^{H{o)45%-1sVx5tXz{7|qzo*jqzCx6Z4yteSqAypI*i5s5y7acDvLj`IFzSlxH8
z*~gSWtwj$e*DKFTo_s$GekR$g(SSZN7P5s)rX)xq_HL@VCRlkQi1_ro-!2<#da_oG
z=5n4Wl0K6{Eq9pDc}3KG8(*^5){$q>Dn-jJbx6^WbX4!J46x7Cy$(Xe4agwKz^x5B
zYFcm;z!k<&s`YQDR87k@8|ZBKCB96-sD7JDFoS|wJGR9(W2$=`o5((^a>_tW4a0xn
z7abnwk9$^<zL>!*V2WxwqLbe3yB8|IWp%hc!$FTabLHdp*2Bt&m6$M&XIMU&9Y&6^
zv~a0<05fL4%=6jwsDt>t18+#6?kN>c8<tM0J+%I~9VMf<b*n=(oFL;9XD=)CA?h1A
zQj3R^);NFjKfBBIZtac4yVSxI7~CA0(FA6=-C1S1=4&TRiJgIGAI2K7S?E%>euw5X
zozC>MIG(inc`x;0^3SnVhtb%M%XgV`oV4Z+C{4zexQ0LfzOZ4y9YfkDi#p`yPzlQ<
zi9r(o&T&ER`4GGYhpb{9?(wy|XRK#oIkDVq`O<=O>GH%Qwcao5eZAmjS0_VkcR>li
z3tWr0aJ;}qUL}P#R`H(gN%Q3>j=eNRny{{BiOqt<84-G-{h@F+FJeRbXcfhNrG16%
z7~E}F=lRkg2DwzgIur$VR-2v;Y96=aNbC1WF`R@}w3wuUUzyAUAxJOfwaMX*?r5wg
zQ<e5ZUAe!hr!GDceV?=LqFhL<9w6X|)Rn+qVqFm}#mLG{vS?eMnO>&Sq=_}7V5+6&
zJmbM&x5zR-dr7?N+%R5<lw7b#l3$*6SPJ`9yJ>`kCP0DiO{!~G^#6+Kr0t*c=KMbT
zgke^y^2TBLd)Xcir=sd#3%40ux>~q2EWjb*qVB|Wdawj`)Y$E!|Kj*ck}iA?g&IS4
z&%PJsCTV}@!fz$MrQ`nd=TDyk7T$0FykqZ_*^v<Vk3zsPZe!w=$AknOq-K)DNxxCI
zlS8#t@OwPoZo4FS8}cT-DEfK4V`{>a&E*OtGl8jNZ0oBjZ`B&)&tQ7&u-nqa=N_}p
zHq~8U>}m+OS9t!ZbfZ4CDpRY#mg&rSmS>yd9B*)rp=Ip0qk0`mpTsuc_pG7@T36Fw
z=0+%8#Do8oLqKlT>ccF?4;?$e@agl!AaY})wWgeiv@AE^O9&vIQTP!vAvb{@D4n0L
zUMHAveKjQ$sd!|tZsnOGws&{muu-ajV+TdQju?!BxoQ1D^|RP-=1#RqqYdJsF*}&-
zRAQzke9N;Tq~HOS`=DTnSaA!FAHthH@1@1zwJEz}TmF))p>rD`<A3V^sf_6SPUI#l
zY^`x2oHj8v@$6zr08OsUAa**c{mJR3r-lpjC`xJ{@dI9GB{&XlQn*?sX9-&Tesc@q
z9t`DILx-PU+!t7DU}etD!7%t?+h(lkQBLB0eRK$UqK1uls*VR9R`%V5j1T55;?Qz^
za=(Y5$;mh@X=5b=TGl|i4E&(*2Z}NB?h@C?cUBjS9n-qM#(QJ7T^CFW{6((ED4GI+
z6Y7I)^X8UdOv?!UO~?OX0fa7blUCmAN=GVjbrUbF3p!Q47n0pr8?AchV963px1CwS
zPd}wp&YPKGNETuvdVN@U#StTu&2YN;+tDW5$-3;kIADFZH*hYJ9EgA964Vh=&{7@m
z0j?|CRK0+JEK6ZdHe3vP4%3;eToN1=DN14YD+%XG=UJ))ru%l84=V5mv>n`~4LkT>
zT6NvJKL;9f%-`{(dHA}%>()5HppQ*WWQgT^a+-Muo%z(?q>z3KXw3>f0TxsHeVetf
z<H*odHH39A!i(024)1rOizt4&<o>h#fe0SZ6Jeogxm|umn2l9^ZQ8P9P9sS|Z$2Sn
z_4Kudvn2^0-0BTpFg6P<a%;wr=f$Eu|FaW8aDUR{Zm;1jYZ&2sn!<djAx;%hLq~Ki
z45hqLfeoJI*<GRA=$DU$7{68l_iyWvi7KpDUI|+3=EksS!zDtnnC0vw+tkIBLwkU8
zhww~)^&9K5wBW?j`fbB~mIO!Pv#|D5<6nN^A6ZI(3bQH75T)zG>aGUIjhkpg3?MXh
zy)VBatd>a%w7=BJa5nKfEy%oXYmxQy1Z2Lz_1PK!msg0RdU{K10}6Ee1PRjZLPYeT
z284nrMk0&X0dDt7%O4!X+}aiuBC$<Q$cpD$1eDoJ*bXHv>82WL##YnXY*w0M3?4Q1
zk!=PG#^URH^%r7%!y8P=iH27)E?*R(XB<$~kCd;~yZCA)-&p;f(@Bte?fmYd1)BTT
z<gCsYb^>@Kv%iDd{XZWDlB;M5w$@L!d3vrcQ$zbvlgVuGM>OJ8*zgiS<}vICbSC{S
z8g5ec#8@_I=B_=xJtU*NC)PfQjMf|HS$mA=XjBn?9b9SJj1<eeZ#(HVkB@&pFp~_}
z$zsH_?~=yeecn<Y?DT5-4!eBc+n{o4&6u9(rk_I12mj}{fLpecfAd%Mj;^3X!`!HC
znw#d(>v>wrC0TZfUH6PgM|VbRJu>(*{6dM=$8afYi^J#oB|h^$AK_;6!kSH|n*ZSo
zVBtVvA(Dbga!8lDb`SzliHTIjc3Neh$UT1XzvQ&1hGcRFd7}&=3I_O((3Dqa({uR2
zWv_93`HJgw;8WeDj$xZ0)#~(t>)>~eJk7Vza<{;WTv`^hxpJidfz&`eK~**>jj?$8
zW1O$xuQaG<4E{q#2}EyZg)Q>BE+Smt`VbFy5N%{M{2(3904(z=18eArBC;o0!|?$k
zaTJ_grFph*!^(T}My!cDX9Tn@Tdv(K5r@lm)nsXn(usPY7m!z+eI=ou0Ml<BB89Hu
zfN>fy3D;FIbQ#s`{PY_XMZ=C~8`6mcV{VnC2IRMB4Qy1jQ%#;fdEB67T6Pd1@-<(E
zDDRcjt#EA`TJH1RpJWjioyWZ@pwBY@*c;D^HWX)D{yr!>sEhl2s#^r&Cww@vuS;@y
zPDnR&HyyK*@B1d?z(J_IT(MuS8(jE&vuab=gOdj~ojCPJkO=H(yOx=jc^O|Vd%TA(
z0?E!Vs(*vG1d&=lw>QSJfZu3>LDFMDVtj!(xiH)CP>nbnJLnqokU6I?B>pWQLMTO?
z%0jNjBfT(nUZqi1BRfJlE`w&VPEIb59;Uy4x-!fHBG}DKvTcO@=S5D*U**Fr$R6;Y
zyad??_<F>6Wesb8nJ|fwv-eJb%r&H2R6;KY)4-|M9i%iH$#XNOWKxTW^?AKi9aWdf
zHVp&W=9$U!K6C`Nl47_jJJr{T=jCqmnc^KOkIGvTO=|{LRPHnW!}ES=r1u!k({|xC
z4lB;a9DkOLQJjJfnWOXIF}AHC&JsOzn~&({L<y~~Z)5Pi@Aw|}a*lZ=2I&Lwu*9A)
zzkTkg(?~eXjuXH)PPGn5y{V&4;O{k7ATbf?TmU9iHTgY{-%I^#sgDC(;Z%d@tP^tQ
zfRLfNvn(hm#%-oBZV=yJnR2)148w41ZPFu2?-J0=A4T*ToVkNw-dJ`!;R;O3J-p2?
z=$jW<v-EsSQM~avLOoPIKOu=>*yK6S4)q~?7Lk<&3*Cperc=0!tmW<%p~qo#V%_aU
ziWEw2?AIbdycx#bB_7VZy!p3y++Py>I~8h%x$<{^w>{48v{;LL5Z7KQOx&+9H)V>6
zcUStjT>E)ICdcC;apaNj`CxmR{M9wwqU8fSRFk=V@;j?xn8%{M#xP=K#~5;1SyT|R
znTTmncD82l4Fxon#^@>FHor0S!l5{^yKm^^Zy2{w29`9VL();z6BwFP7<OBCzed!o
z(`wu{gkN0{bgOC6ww!Q~Z~s40zkf$q{78Y<Aw;!Ceb?^DFx1BV`g939iEg?bO)gqX
zwx;<3zV3b}Wl<rjU8PLVITHKJVQ+!Z*$R;THUdK6<=eV6pusyJzK%~%z_DznPzA(S
zA0%$6nf+8JnhXuTT>}^c7J8b#X2SENx}5YvL?Tc*ejhVZc7)-h)&2_*&{i#bQ}6d}
z%R?(j=b~o;ZyRREoz%7-RaXK^{%eAC?valCCJoElyBmL8t@5o4K<zb#D2^Gaom2dj
zrWRFp^dZE5<us;zlc<%%lIq(k!|=9^N7XttoVVj)H;{)boC59uc{Q<QS9&47zA&M>
zvcm8ld;)ch=A*d4DjDFzaffjJhIgsXt)Fu@RsR%M3%h<65*2=Ka8^iXw)wbfPn%cS
zcxTus)3i1(n9VI@;Dd6D`-UX_T|IFEYkVto4|F<0f{U;$ug*P3{06_5VQnCQvUrRD
za2HFhu_`R}&CN?;L_7;G)HI03`_0OoKgD^eV<$W(wZ}Q4sD>C75`bQ2mO~hY5!&PR
z`F8OZYG038YV~$fl1bH)$0^?-vHa~&6HkU|v9^H`pLObfi}6$p4q?LT->WZss?ZJE
zr>a{Ve@EG{d0<n%nI0Q8TG;(YosLnB9e%1SyN>K~;3{h>tE=W0t=gOF8=h?7OF39I
zGi<cjpqbNMJ{?$6W-`m-FW-w5mD)vl%cA%^`-xDQz|iH?p-S~`;yE9XIP<d?`KNk@
zw3|`OzjpwATUX_@Ejm1wFqD@!R&q`0xb@nF5RCap*xC99pF2^yxY2-XKI<`<``3Bn
zf!X}1E1L!eU~__ogRN(&|CTSXuu?t%+nO9eCOZtzoJBI$rv6O>_s{>wt^}bV^#p;2
zCQ@w%X?6f?MXfM&_w&o+>1y`xVM&(TAX0hRa(H8uEyG03nHV)Enr$i{3bN7z1yxv3
zWWGw8&{L=$7-v#|&Sb_lP$z=CIMnU1q%Ik7*7U;$IvLN4pX;Dep&&qK`K)6bkZ#)|
zkaRL9hPv)Ci-0t~2rUQ+lP_AfwLH)JYQL&TAQX*d@+0~n<<`<idf|dSO1)Nr{M1Rh
zgmVVxx1B;wAvm$T%(V)B7<o()m?Q$y7a)6gs$Le8kV15BPzWVXKE;4n(cJ|km(3P6
zR9q=hnR~y8@NU;{MpPZ!=fx}ijApn+Lefgdr0?>T58{fKSM_zubEOZF>h=VFX|h;x
zTmp>lN0@G2L~dPoINcwpS29*Sv_0OSXC8NUBH_CU)KFurIzLq2JDnMBn@y+<A0$R*
z;|%v&caEIT82Pe&O|X%lOJ%hZLP@z1VW=<9ZQr~^G1Hcy|4zF~PP(2WmMYUshJPOP
zC`!?4(wgO3D>FVQcp4jSw$wh|UfpsgrC-Y)OJ`0~B0i>h8&=V#^Q$L=#{{R@);)A8
zT=H;a*!7kj;(Lh$tZRRi7kXdRU@qR`o9-qhp|XXW`^;W_#`pH22Kk}nc82upM8D0$
z%8eULrb%~`It!&cMo6ju_2aWh=67^{sI@;uoy+HOKhvt0{_CKEED3XBC^4%bSo*sj
zu+q<PQ~d-ILJo`6)Sngp)B*4v%Uq@lLhM2OI=a{HK#i};f}^*DU4i8|Ho$8UNBW~;
zDUjawjSn)CX8)&tIpq%{I$D0tYu<3h+vJA}3g5WFM?liu;!5QatwzUx`w__Bt9NHD
zskENfE?Q(Ef?#0j;Gag=7l+k+CBc7@DBcvaYU*j0R`o1GN#gOJ3Dq_UrX?kQaJMFA
znC&`?GL=)`DfBPbuKp2?!0JGTEP+h#E2fTqp*`8n!)E>yI8=YEi~C&Yy!XfcWKrDp
zVWI^YiD~zT;}Y?b1{}k|Kw_;efZ$N;)Z8fFZVd@SGUrTSxE1?A8>WG3(GkVIoFj_r
zi>rzyEGxJ!s;T--Uig5q@BiAlHrHf$HvD357#DS(-)P@*jpc}ujiDv!2t7nSR`Zb>
zQve-hzSKv0R}8m^dP>9iN?S&$7=KBeRr6WK8C~b?gH&}`$JG(0Kj}6rC<IH1%$4zn
z7Fs8~AvQp^vd*2j1W0m~Jh1HeF#-Ffl6$TW;jrihP<$f01M;#ZeTO5fJ35hKDL@ob
zIu)4QULN@J(-(#P$GKMiGe+QxC>ChRBfOrrmmZ>l9`77W)iKDh5Gv1;Vqqj8s+^75
z8@)7fRF^NIB5Ax{3RkTy6G)E{GJd4Ss;>kDn2{yiF>9IoN0iXrU;B<ndX1K@t^4&h
zu^T#<JrqXk-AyCS9A%$Skc{sNj=u?2v-rT6Vfp*_!g5ZR)*7yWvbKL$Ybt8f{WB2w
z&uR#=$QZ#Ju$+Tz#RN*X|1iI(MPSaP5Tj8^&w#fczaQ*JAzq=<vtR{Cuc5^YKZ{C?
zf)O<^Fxd$NTUDeT4`)W!F8I{<jdIMQSSl?(+v5~z&Rl4jmeiQx<a`Ye8AfcjehjB@
z!`sJwH_-&a(-0)G000Bjo5Y|W5^+j%YzeyU3-7#t_^gFsh?$F(QwywT_bP0)D|BD&
zPq|N~R92O;UpyR^r2r``YTDrHQT-C6*0@MFIfufcB1yUuDKcI6P+Sz|P87Fane^m{
zxJ{?6P2P6Mu^O|GiYP#)ardmVeG=UXCs-bNkdobLIJ2xr@{RK(dsU5xTO;0&W+(XZ
zZ+Dby&O0e2DbE()5zfGjD?&f$u8gf=3|Uv?u4?Fsy<&nTe!@fYS+tL(MzpSsmQsc_
zfKeVW%s;0UW`yA0{6KtH^b951V#=EGc=5)l!<A#<`QqRtzf-cvTD(NMz}lqQQC?M%
zN@2o1iso>9`qOaAQNz=&*4JH2)~Plz7{m=IlFCmm0uYVlU&w3!^)K)DWFXEc1Obph
zhPeO&DRyMa{3xHC3!1}e+p9-52|}5n4@bI)DkVEESl4q-H*h|ev<?6(Rar@q1owMp
zN5ke~x49vHaQRrB20?#lml2e~Me@BkA>n-u!&{GirLGr_eia_HhqMk1{KIRY7%X|*
zj%$}V15ARrVp)8|(p94Px^yNY7}+bA-89DwHIfH^ySP<ZCp}J__$&1G$+nZgx?`s2
z@5%b?z*&u=u;GfH_$&N6bU5bS#B;3Ql==S;wpwO4x>t~v<FfrR28@#yKS^T@`V)oL
zaVl;`o*Sg*P8o|9B{FIGu~q|R6JhwF`~=&1C&}2Ljs((k)`AucVx^yQdn1WYPvIOF
zAd17)Ka?QvS}!kv1nA%N+y1{E@P9viv5<Daer>vZCCShI9^lzv+x%Yqgzf}vrNfy5
zzQeVP>?P|<HKxi{z4)fpVkk@q#UsyKu`;!vGfsUWzef4I+vUh}u9ovQwkKcx6j23&
zUS{7v`+fBr2r7<YNu<R0e?v0;PqAR&2U4nlhI{+nar&cN_s?{;R#Q_`{a)$_9lqD6
zDor~4jf|QS($~YoLtCZ#o>1Hr0PZndzSRx@vuqM%vM>Xd;D&$<^g`G>)?T&e+x@9N
z#_%%;=}d<2`7eYovje;~bary)NfLR*^WeiiV$V<X+AO9s^g@e~G4hR(a`xkw!0#MI
z3<GFLzaU)zYf;9Nt_RDsh90?WEns)$=zUuP^{>>xe|@x>(&Xg_e~K0!1VVoQFZE9d
zzX_>qlGtL=T#*k!mSKWw?@u$O@89owGyyoxw1H4cc~({jAMug^v~|OF0xJM4Qi6^>
z^vmFJt(_Lus5B5~mPq+hN^SXxu!vy9YejM-LY?tbTC@9B1XWWq4eMV4;gqIzHPU}W
z)Olxr1%(nsukrR>kRv}nKU~MIWi3Xy!zKkha4Bf1ZkwA*cTKt|%vTic*Nuv?9(Un}
z-I5xNB`SVTuDp<#D(|jZyPPaZ;pobrZE<z%a-0Q-A0tAjJO%*IN2lbeTnAHEdyq~4
zs{(gJ{^Ah{h?LK8Fz)C>e&PT63{t*kPNvn<<R#x6Ob->;%&0|+oJ{70YTClrNrd7s
z{KU2xVVnKb;(BXgpN^UK#j*CJ6^LiG#MtU$t7XAZ5#SFEclPwUJ=*%edzH(Xx9=7t
zaJlzJF*+FD5pRJJ-=p}q?+;n*{ZL@R;y?<Nbt2J(Wjl@{P<gdQ^!|8DnQEm~Y0~|D
z3T%(p3EN@vK|1u&eL!PR{;<NI(xauRPfogRE?4p?Pe6{@WX0u>0m7=8+XT9)<W~1b
zH5UABlej-r-%@`Bpb}eHS-Juwz8;!{0C9A00L=7@({?8pkM4O58WvfMud?_1|FY|O
z`;f`1YH4YWgL6|j4<+pn{tkTY)61wa-5JZU{8LmUEiD~hBelNqmB8Ep0Q8}lMw2<~
zQn3CQCvolXo`-N{R2~b}>nt41$*@3CDC~3X&CfTB4sAS7Bk9V9F7}px_A_6?jXDeR
z=GhmzS|+(@|7~PYEe)fgm*Fl4j$+uoqqwl!AyZJA@4y>_=C_Z0(Q1Yr>s(ztT^aj3
znq>6Hl|lcO^EB_k8DVdY27dUXy=}px_}}SiRVL`moe|a)v&!K8)wZ^dO?)k=v(5m$
zb_fe_7Cnu(g)=?F>jYR4{2l0@*ZnY$SX}`y&4P2R53U#z<b?jO+AvB1MnVaSf9c8d
z<$kw>{)zMopjnv~!Hievi~81q;$Vc8RCM2TId1_~JzK6fb0Hf5i}O`P!Zh>Kl^;s;
ztAbkG%i!2HcCj=4qp|zVF#mhJ(8AvF#Ls^RM^;0_ELoz?8`C|4q4cjmOMs9(9y+C*
zUug(RDs&5%H%>es`pVdk6J1xotlWDD)v;nL5{_)$rk^E%e`skP1Jef%YVDzm9{?XJ
zOcAv9CD@XsRPOEIF5{39<}4qu^r%0BMc-Td&091bn{isS-Wvg=&^y8j@c-9Wc7=Rp
zkm)NV(~gtHoQ+Qbnh_T+mrwfQSh~DhW;~WYqX2s3d%4p`%1#+5T3Aq<0%}G^bq41p
zhFZA7VrtgqCidxS{Tg874|FZH|MwL~%?P8Bt$j1!$Vd7jr}m99cGbOEF{(FD^2s(E
zi`jhRa%4C4Fcq+OxQlr@9%|X%nv*;O(J5egmJcyD;d#)Gz_0CF&z0*cS?~WTDh<gK
zn|`l;EAh@7vX8By_}<Q8D{JWfHI=4W9XX08Wcr#T8d;050#NjvEpg$9-OAH^A@ti3
zQDXPFmJkz(Xn4p@t@Hjfz(BMGkV&EeLo@#294m8Xt@k@KduKqjV32wqm{fJq1H?6k
z$u)xYjMt}v!m=_;YhGfwu#W(EP2^DX9@rbghcTE&btONEezjuEGz-hUOgj(cd+NY<
z0=R0AI{?hiR^EJN+w~7X95G>nmeyz;nWQ1k`~Bxn<tfE|t0|*ubBk1Yc%m-=f2|DU
zhYWrWjr!h=F=QpZ=5xH&UNWmrvtR^<#VkOhKJ0`^Y1Hvp=d_rAA7VFUYI;t)DTN=e
zmsi27%L#&c167xfe6x)|2<pH^+iKJ3+s-4X!>R~U-w7FHnJSS~*yH6%SqkqBFIxYv
zB8cP`o_T<3m8x>Yy)+qeT*hI5r6?h3Wuqx+4u(9v-MnJB_f}q-wSKKv#IJXv63#C-
zb!}|jqAD+2fWK0brWKZv9$b)W6QXK6!e&ky0aQJ<z=UPDh9B_770g?8p^RJ%F<B;(
z^pqpy<OX9>B?Hj7s`!G8W}H$&V^~fARko-GvjQCE&9op0|I!G;vU29TnbVJU)IFN3
z@bG*A=0nMS#FiyXG|{BVg<}vN63QBhKb1_nS<C7QFw<c`-um#(b@2pfvS!qo-S~O2
zK=p6{y;?fiAd&VPuI=DT%VXK$Emv@6GmCyN@~+erV~9*ay33z!PLkh|Uq;DSFvR|x
zHb6T2m|gmkBU%vu0<rT}v{9P<%*QxyeXBbNa!8V?#Q;D=WWnSyLtu++5Clx&d4e+z
zs{T?LP${lx*bGqAN>fR-H+^<G)6s4SY-~aV#qCE4z5Q5J*4ntg+*J2mOXhxpY7X}I
z7M?7SA-*i&dmbpR=*6$K@bedP0ls>P&pZG*!W5|+`ew@{m%iq~LJ4rzBJP3lMKKH9
zAdOrMO|9JifwKq+F+9ZWJ>|T2no@buj5g|iogG$HqUEeUWqyfi&V}^q8fj8&O5D3-
z?M<hO3L2oT2jCuRD72juCXHHPC)G0y{uwn>2G?aGCr^MLTBG#(zUl*LLD@nBVHT%u
z%2+XJRGN<bm-K82+iP=OGlP=C;XeY<zqC783}7ixaQPT&wsx`L9ecF9A_y(_AC=Sx
z6niUmGgKL9qg5vj&)-TGOgWn($o@Jt`*I%X`Kc=q^;RYTo%uy%nMMM}=XBN$8{<%l
z`>ohwtXq@)q0s<2{D*{({=bB1`19OJys~F>0||}j9)TB6H7{FdWZxLF3Tu9R0XP@I
z-$9=N?udJ~>ZA|1zwovwae&P)dVe}yyTve&<W3ksi%qZJ%MPu~W<Ce7Z7Rdc0F&1D
z0zHJ%!t-yc>l05H!8!-pBqDk0xfv7!@vbXr+U@%#q?yy8!xkUjQ|;G>#QoW_j224I
zYUhP4G+@H#l%?^rA}{S?6eS_WuHy`1M1;7Yf%PJ)){R6|e`=QaB+9u1Ec;t$@?g=2
zt3C+*ui<9FbR<@WmnKooj0XDLcN-cB%S!f&3uxO$s!gWUx?`cSJR<;^1Ls^EiCl3*
z3jnC@Kq}rr5Qb=Nk{;duo)S9sdoaT;7ou{+O{{Io703$*hlv!%@umLE@rz;gNbB>B
zdXq3{{bt!wdy$6q?gRkshWF(z0MU|Zvh<emfL9#)KWADVz299VJxV`074A>BObn+h
zuLPJDEB+@)I)oSsIH6-M%rUvCX8-w{9^-mTv(I+}*gj5P5E_iiQXvaJ<_DE01XWT=
zi3c5#BZy#&Vb$Vt9Ri<KAo<1{AnBbtAb`??zqjxi$cy&V1`)#0{Vi*ISy1bktR=}V
z-^n$H^dUR9ZLia`jIqdU7UCozboys>b5?3~i-tT30TW_tzt#*#P$%9wP)k?wEv(QM
z73%@?LkA@52A~`_@SlrND3wQo4p1o}zj{20=}h|jhJr-wyi~JE4g4Pb1v81$HlGvF
z1cYMOc(tuM-oP40e~vkEecMBUo~Yya$c=?5>(wp<s;|^wUHyo*tumgowlN6AiBUr6
zJ2$=fPECss&k;epU2Jj2YmR{4K*-?|3UD*ESBWmU-2k1#fmoy%h}})z(t0@}mrih$
z0aZhS44FH;%Z0<C2zaRt*f#z$tsc!+jQ~HUmtlw{O0w7S3cSzkK#A!{ClU#u_U7}=
zkv5-o&t+claw~<=_j9NPT-V*v%si8H=$sFLzxxO9rB>V0Czq4gkr=KjohLSbdWoii
zrV$#@xcH`$D6AM$^O?^oO_L+`u>}3oM1-i*eDImP^F}b08qM4O>)Pg)-TjlD^5vZc
zT3*j*gUg;=T2_0bhWmrZw>t}u>P>h*hg5zn|Ht{@El7$cayI1L>I#U^bY{%$ZnrO3
z<mwy6t=BpVZBD`W`<|>)ih+m<+I4@`8OJW!W#x=wi+^8nqtKf$7oiZF{lxv7B7XX<
zb{BV~q-t@L=a2bZp4KnnbBZT?a#-Mh*qW;1E(y7mlm8q@C{(S3F0b#jn-Lmpgp%_M
z@z|Lh%%xk}dM=YM>Ts`QASE?~BQ^}FN)>t=PXY)m&TMrVR6nw}n>(`L)_QbvAHxrb
zIY|A?005IS1RzEW#W2fh1RMy!Ek>{sfcmP%c)#H2W@k{4Z+|uco4|YqprKC`G}f2l
zUvy#Q*C8;r$E)XA4O?k?+<tbS7gZQ1%5sm<0)GAh+hDf6iaw%6pK%B#x+QT*yZ>v1
z!uhx8vBn=-^Fm&{1^`C35@C|j`uTV;$vE8vL7r1ICDU9O!FG+ME!+pm{go=iZ3Axi
zq278^3MjCT+W@=fbf;z$v8<y_0B94TU!$2z2Pz#PD1R4F-GRBt;C<sgmoMFK&8$Uv
z%2_;(z9JqLjMgh-kpU-%I!5Lb=noOMh$K?tO{*2K^tT8@bt&zw{jXk5Uth-3$q2)^
za{O*0q|&&iE$;Pca8%{JtlN8VwU4y*10B1|b-Ru@dwm7octHjhyQxkNkjXC}Z^9$J
zFK7lY=>#ZYO43<XFMP$gW9j!v!RKSYsyts`YQrEiZOFuP%jWCcL-1Y%nXC>BKF%lv
zTT<7a_d|QWj`PyuQ&0Iu0qZNU1qv;ftg&NKcteJs0h_-P(Uo4ib8?Ibak!RlD5IVN
z(`HwPRb_R#lsS^Kil&o}*)`2>Rs?28e^{Ce9RB-w4Nw{F4p--gQyRznm45!68~=gN
z-PvaJ43!@%x>Hs?z+W|)4?S`r^qA6dcvaO$_u`O=ax$WjvORlf>51Vf(&^gv`8-%*
zx?(a)i#aWxLw)AEV+o6G!Kae=hNVXLk%RO}?>PPV5xAsu-^OIp#c7qiHv`&rA^ePJ
zIt)rXSR~H(x&kylhPb7=+Y3P7Pn#HGgwz2qceTs+I{!_AE_&`_rrw|jm=36EA#?gr
zqmgX@#bx=7lape99zTo(L6=0GWFjN`ml;Z<(Gb%px+paHT8)GPo&prPz<Ao3`+Y=n
zu`Qt3u@HE%O*g)}-_1xQF#_<YSGNkw9p%9nlV3LwFSDFTz0TACdCFan?web&#y;i%
zYdporep`QRC1#a+{VaNO?r-TBu-V8LXhS#kV^G#s%hJvjWZx9aX9AaUN3Acz28DKV
z8ctR`5oF$>2Pp>WX-rUIz#GzFhL|wk%W#Y7(1(cB&gmh|OS^`$v2SBB!CD9=Rns}2
z80>3tEbA@F<TYnI^;QWjj`#!ATO!{1$Z3eGVwo?KL6oEjtkraVzluO=3QHjL;h_bL
zv$T*dGLWhrgKS}5df57fKZ^7_7eD#}A!m~Q9$(Z`K{?p9WIF0$FV+o48U7{_CrY0!
zzFi1N_rX3(204T~CADoUMp8}V>janr6b+C?`%9Oz*GPuQq>?`szPXnHZ8VM1xaZO(
z=^W<gJcjVo!3@$$iHu<bkhQG*=0+!Euc0s3?21Fh`a?5+hF!?m!RCX|AZTh;h0w$?
zU_BqBdT9vbm5YDYq6UceF~@fZT|=R$uCM{kP5`p^t!KD2M|f=`pTiZm?E`5Q&l27b
z0KFZlxKmIVzf)yNCsbip^!Z22e{P<7!d?hkl=E|g2A0`2H(I4d_ZFSst2!T^kCi$x
zaOqwi7V?Y^W~-#zuw7OBz5W~^n$ByVID=HwR&~bW6BCo}Z4bC*+!=zIIzKsuzyxnd
zdTguQxb8C`=K9un7Mu`DrR|36Bq_Q&KTg+r$VW6N;QS&QvioR{bU6K>-Tv478=B7K
zeGqxX*_0831*wtC?TNX=ydm!E0xI9rc!<t96OPp`z-Q-xBeau+l9XLio&EcF4lEb|
zuNqz49R-u9>7YtS*KTk=+2R4Pp7CZx@*@N2+k2|&#ae+ZafzwHWPn}g#W~P4NpKW7
z;6@s&q+2t8Erj-7YXc<T;}>8MX0EBY=`vsQOXM6{au|5f%K@Q}aOZwVM*uYV?$91?
zlf^Tsbd3?;=8mK7K3pa>8s|9SVZxzvfy*{sC5e^qAc6uul!B?7(BS*8wKx9tTl<Is
zifCg1GT-8d#znU@j~4n8w>Y#Q8pqx1<Lc|uhhyGDH=(VMo<mh)4|=-v-usU)7m00i
zhC17+W&@$0I~udUcX6!__%-Ox&^s<dTc5!TrVCW^sJdvZ0u|<yPIUt_>9c|i&-7WV
z_*a~<WVWGE@7PfQu8o(Vfi#ApYfknl#xcfNAR)h<E7>uu-kR#|$pSDev?bt)b+8|#
zDNxBnn?%b>rC*nHMRE~$Iw&kK`;y%f;)oSYrQU(V)P8dD*=BipLs4V}-Dbs{c*91k
zG*3-yLyjnpEovf1ba5N+NFd?09R-zzo(@BF(s@k4VCX^+f}zhqd4}F+&}yDr`SR*h
z1%1yDqDT#3^T?~|qBFN!QjJ5Wo9U<8tAvTs<JP+Z9}9r`(cY6dM{bbHe5P&fXnbZ*
z-)E448av1beBL$b1n5G;07u$5KFnuO+Q}G=La>>@FPNIcisAR~ID}eV=Y38QP@?N{
zEq9OI^Ko=<obrPgebRYN(({#gezPs{lxto7`NY*1hmY57pPV1|8uu&MiO?yvTmP77
z$RGB_6Q-2nzP;a`#OBGaFd@ov$wSvluA95GNWSSV^Gut0;F~g^E6mSUkNxPwbId>>
z%eU=mG#a{lw{5j4e43b~)z-9Nr{Qi)U;u<$S#8sw73|K~o$~HS6P&hH3j8CmvT}?_
z&?o>!Btd{6`fUaUcsv_Npo>`Aqgoch*Wt&<pEr`uRV_T%nVk8R*)-G7qkEPs_rJLo
zRe!kr_vD8P#>kCtZ0Cdez)h91C$k|@MI;qyD;BrSQl9?q`aR>l-214*BD0VEPZul5
z!4^AGS~|3U2Hopk<jyHNyQx}h?{&{l^Dpm<_>yfb=b@U>Nes88oh9b$XMXU_a_7O7
znbC&um!iRAa03-&K}Ni(`A9dHY5AWx9I#YwU^I5{Pj4`Mw_uc$1QyklDRuf2u$b8e
zwIEZ78L{o{MD1Dw#B@e~<Zf^>1-SKYBUGx&9QR!AHyS!dpnjs2hU;-n$;T+aScY}g
zv3GT&uTQ&t+jf)Y@86&}5}KdbYIKzE1I>G&<@P~uPHFuwV+&iLu|A<_8sj=cvlQ^A
zH}=4$`~J|9ndxLRt*Bf>)`bA4%5JwOYbxeXaGD8+F^K;`g~Gj`zu0;JQ+dCXnIqJT
z2NC7uImW6uZ6tXys#>5UL}do-SSGLsK_z5;NcZ#I>Jg)tB7s*$O1&WwwpFPww`K7R
zpA@zVx9p51+6Q>eq>`BE`MJSGj?tfqWIq&#axl*N*T)~8u%|inJogL<s5DlKa$oAC
z2C`rcqLF0_Z}1M;Fw}=*_8t@aoO338nq*)y$sBIy$vfJJ4!E3;10HQ3t+yY|l;3vj
ziR-r&xm=oblsP_N2cP?Z<;WQd+4fKmU6}5H6ZYw{BMm5c+WFY5GKJ6{j8hWG*3g>e
zK<FKtwk!e_hyvpM*mob$RntWymKhMyuiBQ3A58YANN!b?NTP!}Xm!ul)+8wB8u#~F
z$w=Vsh&=*;sP?+eo+aI5vB5)x`!KyzTk!8)K~>eMrnwX4Pjo+>6QDhsalS+ddb_p`
zb80KCa9I?PHl?KJyqtVBS-9O$MA4W{Fuj?gN)aLEo8yuyVl~X)-LvMsZv$)>BdNO=
zO<3QH$gtOhQ_eu`UP?3JS+-w?q_utvNWH5MLiz>F2m%81`8zVP*Yo1`@-U^^;v$<I
zESQ1uoOH8vilXkybA8UORiaIJ_0fN<fBr=Q{#NT>vU+?GcA6%x3N!bT3LM7Cg(nju
zaf(Wip*_<d+*QdO3oXpTwqf2cDS1dZNvdUS#<X1apZMIH=B64?5Bx13m|tH^$1utz
z9jl(Qz9doD?xfI+JvE8kC@w$D1$%21SsLLyUF6;0htlNhXLJ~un8%vF22j}NSL!RX
zmU)m*RlFwVzdTaX@lj4a+#H)CFkxW%L(hlkd9~aW#qfuQT?12fFgQwRm@Wtc<!@D_
zimj=ZL#K>Ml9Z)kfYGSztbvvK9tz<oOl+rW3hnE}O0%D1<CJUk4aPf&CY5vHTpU7B
zM>7?2GYgz_1_aW0b(_uF5THVatp8mir(ki1Wz#XcZ}!)GAA9PAA;E5-2cPAY!veO@
z^n`n9<U|r}6Y~1YU3@>z5T>|!ir*EqiQI*7_IcXA!c_EIxVdzP{Y{LOq<0lTIFe4>
zxXr+;3JXT9M5?>k3XTEcEHbK!q?8mER!r-y;E2G%o6>ub&Ye?&p#GUnSL#0#VNHsZ
z-}L=LvI(P5FVEd^Zjb-WSf$B=F=S8r+E4~z95b+LX$FOU@kDOx^m`=V;)6B#ONd%o
zjlP0J&mh?f4D0xj+`1-h#?VEXk!i)nKF7VQq(GaYrxN_~wLQZSJc%ymQjW*x(JT-Q
zlB(GGI%%$~L%+p$ONe{qq`20a)hwu<XTH|52^g;`owqkoQK71l;>2>L$BEvdl4QF@
znK(Otb!OD8{E~9L?)*(;(tXUl`Mj5%V1b{Eg<Az@>EN=Nyjn!LBjWb`Gn$W&@b|_O
z3>>)-f*3fbrhp9ga~RL7cQHG_Js(qKxrbRG!wBkV_AdKYTVW^?+GbaxNPIG<+HWEl
zx+xM|__gjN<0j#&_gj28PnUh#`amjrULBm7vR}VI4a~hf@`qsIwz0zwl686SWs-23
zU0YP2wl5u2eIklZ4Y<l$3OW>^5W)7bS{#zQ91K(#T4Iq;tM?K@JkkEd&Izw$sRzeB
zDMA&|3;o(v52nFNL8Hnu+5)y1i5g}(!k=#H8HuGj%1`byn-X>AYVDez+9^EjwLA)9
z+seND$2;UjCYucZ-EPm|?pnLeM05QQV|tON3{<92<V${*MfCl_gk%csj<bmA6{Y>7
zMV-Iu**r)7;y4>n;7Lk%ZKzo;>Tq2hZ~MPqe<>QamE^QxB{)rVP2ny>S+F5y-CYc3
zXSyILUmrC}7rk&KtWFj^V5-@A9Ufb~Dnm-HKkHsl6hWuP0@wRu-}c6N511{LldB{&
zn3f7wt^iKzo8*^x95ACQl(XWnAVD*5Nd|p|7-v#WC(Far<roJbq*RqI`-3`)pt@Dq
z5xVqxDTxjBHH~MJ@r$I-{IPbm$^)wDiK8T(N#azAlRuH1_`^`5z(4T;qrAcoyG`vz
zZ?Aws)y?LH4?fcO1E}bp=0X5b9V0YDUQ<((aD)Yp*hXajt;Y$oBS<<$%1^qFmXNv!
z+<&qh_`3(Y8O>D3&lu}L6uFGVydsL~Jx+;Wrw|db{a?9ON6>{|7!lyk@ovuMvE}(W
z;u_@X7=8rY_c1u*Yd?m*6R7zHMB38Oive94_$Ejm-Y_8+1=D(Zlx-*3UqwXDmj$@M
zKwE&5bU22Oe);A3@v*?4`&P!lB=ACay!W|aSx(9C5vl{PuDE04>@7Dib5=)BPO2^<
zbTq@yh`}X#XW;HcKQAYhWuEDWt8qiBQY#fXkVrg46STHLDAQ4Dpr*C7oC9j-S${c`
zipw4+CM!fcx<YC06JDag`Fsm#QFGhua|IdMG6*)@YdbDgB=qKP9X@Z4)Ury%Uh!u!
z!RY%%d%I{WT~}G9fB*iy3l!J}z53K`^3GnhO*+==cHZpU3J-W01903lgSmk1g53oU
zFi-7k5o-G|+zp34-zU1%zaF;%s$7<pr#q{tzcvZsU87Y|3C(`CxoW;W_ITckl!`oN
zs@-iga|%j&Jn(<HUVAG6PMa~iaI4bkG&d@(v*UM-H(EuZ2x>>9E7s{&#PLOgHDF;5
z|MS*#ydM;gYk}7>mZ|U|wx<3=xct&+s=}mn4i@Pw%l~k&|F5j1DylP4eJT}r@+^IP
zL}Rr6S3F(B6E3AM#@}{$BPqgE+)}Va=yioibya7_<183Ae?kFX<tJ^U9gAX1V@l;8
z%4O>~@L)5-P@@U!$Of^;`B0P91xNm2dwlp7+&<r9kt4(TYRBbUFF3D*ljo;HjA(I|
z3Y|FHMn#y5U{E(LW&xQ><^VTn*6;KB18|XxQf2J5eA`W9yfaZhVG<^-5q-H$I+y()
zZDDw3Yr<jt)u=i$G+065LC)p;K#)O#<clP&V5Tko%%u&(NrEFGOrzvC^u!lf$+7Q?
z6foF=uRTw{>7v4lg;1d01~d5>BcN*xBi%FY{(c4S;bI76Sc<FS_JRLkQ{D{R(^cKg
zV~%@hRa}UEJ~zngr}b<4%OGkcdo6d7pQHanWf;Hgk|7RBwn#ZGE;%z6ipGU@r-swI
zfAnR)JW=Nc4S<Q)0BL&^q8;cRe{*4+e=o%stG@t!jBNS#;%&|t|2<7Cw_GWFmC<Of
zX2bCh;C`B)a^|JyM6mj`JtRp9xO&Rn_Wn$}61t(cVBmzAK~vrf6^@2Ra^ViD7knjO
zQI!4D06?ed8<=$Wgyi6@Gi*z<`u9VuL{dYGibXu)WYQBM*S<+*@GeWw)DM2qef|aG
zfDK9jdP2@LtI!y%K^b^=!gOZ&XoI=@n1lfHN5IE(6Bos0SAnhhdHr?%3+5f|pQ=~B
zd1Z`BjM@)Jk8f#7O5y9tLVlkX)z>XF)|NdNmCV$7EHr*sH!mqMomMKc@5!zS$)qM5
zY(16qLK73b;knOPZAcwxh;<dh5bT%sK+PCR<y=g?Olz>Ex}@JVWZG^^azBqL$bA?$
zs&ZYb>p-{mu@;a}e(sXIw|pD%lr4fPIl$o=f6!b)+0?=QvLs6Jv);HNGRE>{vM~PD
z3$q*@WHpt>>)vSVb1vHWjJA#S8^(kG?4wVh=~F)$GDdMPFL3Klhc7LR?kg-Rk=Y+a
z`Y&HX{bYAnRll+Aii1D!|DVseIQ*9Rlf+o{uE{I8^J+7b?!>vxT9ao{qGSz*K}l2H
zYYpmO3=h(ULt>Ph=VQ%hFfFwT14kwq=)>4&X`9z3l>)hRcGrOS)d^7js`tcl3!r7D
z!SJJp(<&}7=*Cx2P|?*=hRW%bl-o!@>yxzhQVhQ-CO@@yafJm;y3^Mrzo-FtV{;e@
zOzjW>g;DcI3NPG8205kFy>|ktA<Rc#(Za!`(YL3oOe&NhiI3!BLg@N&RFoNuJLqS(
z>ISY*i?{weS8q`jsryJ}4f1kxfB0k6p5+G`e@w6|#|{g>j=YU`3PkXq2AX;X^;)xN
ze<a+4$P$C<NB%1?d97UVKo`#DM{r);`ESuZS9q*}mpE-%<|cA8lF3MP&mqf9nXq>e
zYBw=-`GmDW9_yhf+<sZbftAGQFky3FKi(v-=f78{Ua+z_zHQHcfBOjBS|@O-hY$qF
zDnd-8ASOd$Zf01#d=G`Xn<mpoO?!n!4giHkC<Oyz?)hjvvd+VmAk?rK@x_hyB68+7
zhC<R!i8J94v6son{2I^^M2tp~^E^#I!fE%y^1_V=B=vD=JvIejg7wq*F*Ss~CjZg#
z1nwP78-LaD`hnWI1$ZweLY#y}+u4wfW!!Gh-McIs(64mE5SG3&^zOl%KWSFw6Pt}(
zQ0}}yK~p}xH1@o>`%idJP&6FA+oalR3NK!=uR!%BJp0%S7lh^ODy5KDXqK`-d}!|m
z)-}0q8^Tt7$<b3hdXW%}g{wt~DnH3d+x&iV(cEUmQVf$o`$KBOn44bCm+7x!NZW%i
z7K2B#u6<1y|0H%<VIt;BeAYA^hj>TdEt?sE7blb{$V=93rx*Ujf==L3V-4yBxI@FC
z674NgLOC<Y>zZK(tCRS_Nu~PHPY%k%fGgBarqnt=*>&y}x4p0%1|bUcFCTt>w7JK7
zzN^nwi7lsLxPwl9ynUgL)F@{h6F?Vwf^CDL#mhCga8MGH`YTtvecdwu$kRRdQ6T7>
zQ{jdP;Y+QLPp0^D;Y`p5?55fK6hSbRPdlKwH@`)C^9O;$)b&#~#*9Zk45fDhHQhp&
zRMuV}&m^^h^=TU5H-cmf)zBfRd9DdME7Y%kphedvo?+7Q-l&w6L)-o!N|$1v)n4Gz
ztkog{>Ly~~vPW}xkRi#8-0O&?$EIT6>L`=PIg&G=KG$F%&%%-ktX;O8y34rcZl?Pm
zcDxN=-tAvl1ahZK4KIxj7vUVdD;b?B?>BBj>}emxf9VT~pGGnzCy(#dCs>bcF4Xm8
zRHE3s(QN9z*M&g`Js}{YyT1di-N}OS$w9-O3)LnMzMJMt^>UYNUkP6x9CuR;v7%N}
z`=L%e@E0AK5PYc7nJGI@@sXj*yTL1=9Li5=(6$j1+P0;1e?@=U;w1ym1-5BHMHj$d
z`=EM6R$#RQ`Vg7x&C$d*)kB*;VVV1=ZYp|^UV0?3J_9>~KlXRDV5Ohb6F*@1%>-J5
z$jsKXKo#MoR#NoQwhJadORTWB!H*|~Si=`E%otXQ4UxgF1jxUKZ!uOLRq(qL+evzs
zFwqfuSKWKw6T813slfXBHponGCqzu)?vrA2S8bttrB)x64gu)<?p@@DchsXfg)UDY
zSKyyP)!p2b6y`zCYTqtjCT~n(r?OZ#Y))s=ise+hOe*jU2*h!hAJW9ArL*1#_Jrw-
z0_j;)i*1VhRn~UTBi<=rRoxo24NWVwn8!ZJO(KE9_}9<gFBlz|aH~lbA$+FYk>rFk
z4BrAmt<0_|RHpH@d+;g27h$g7{O`OHhn$>emR=yVy9k7YDnxj&ip)bN5|0)c9&;!6
zrdsb8C~Cqm+;@X$3|{CUezLP}-bm?lSTiP8Kf$@1fZiqsKZ*eUBp=gh_>+ks3vmQ`
z@ZB@SxU>yu9aC?`Z)#ksllUu8DHwr^y3gSRr3nfspOm^{@!PiV+&MxVshh$+)%wwr
z8D%b2chv-<K5+CgKf`p+JZsGn+3Fk0-fYx?Qu_c~q%Z~)^pn=pfpXjAm@Gt>TQ<xw
zQHKhv8Cn!PO9`l%%@PZod`C1`-=;J2I1`nirMxr8_q;D-xKwZL)BlB8@8jv-dXhUZ
zI~?2^h}{<0CJl$DJ{E{DY`)>N3~_XF{Z;0QZ1fH*jCfW_AMA^U+3~JT0Ww&MxS3EP
zz}qI#yX+3ed=t=HPkGkj%|iI_UZbwQO<<`nFe~Dtl27#L1WeYY^e>O4(@fc0Dm>iu
zH>Aui=f<F@^z;+E3f(SPs^f2KyeON{RorZ3xjOT{`4W<I>@}7%<lgL5vZf*kX5Fl9
zoSO$M_l$*uS`65WI8JO`^8VP1I&*|u@s_8bYP-EOnb0Qx*_o(E5CS)N-`%Y{0pXNu
zX&h9(a{R6?hR$A?1JrWY2<iFP9@LBNW|}+<Vs$$7b)uY*KL;eLjg;9mBdUQgVqX99
zA@M@s-$&hsf??W0gF;E?adL(=<ZW(Q%Yzny)~f8_2dyx@bl$PowSm6&WjTVt!0xx3
zr7DAisOTpj7z2}D1(<Q{xyLe@y~#RPYgVDG?B-~Y@tFC?P*%JsJB3K3ZU9I0t$Z!n
z)#v8iEHj}GAayj#c_sP<L#d3<;9ey6)mC>c$=C(*PG?_IQ1eO_Jj+)x2SQI1yn~Sx
z4jIqPxBy%>G9eNJo*VRh{6Ps!3xbuB-YM(}*=J|Frbsvn&UDnw@=BnHzIHp_{8jI{
zkpw=~4wv(8Ds4dBRP8=~J}q60d#*8^J#b||(0d2=G>s>S)be!iyj&7CZ0AOM1A@h+
zeEQrP3bAWFGls66%xdvMJ=X;AzeDI@Db4Hc+!4}6F#Zf*8Xd`dA#6MOuJ24+vW)IA
zDkxVcn?{FMC#+`aJgvPZ3?3E;KL;-h7nloCH=&^yM-)`sHSaWb%%N>ljOTJ9-T?C?
zF3IUN*YHPK{n>&M@GUz%)0$~8l$#~m0C*z;8Oj%mymcX&#Z0$dzxCCLm;VZ@PQY7p
zRcWV-x+7!lfo)?99%|DQ@D0DuA=8iv8lL#hiBl`h1AAz%0hSFRK#(S+opxRvDV=4f
zH}{)uElbOcVlKSYg~NI;*Jcn{=5W$H=suKITyD{o$K_a5wVEot?xQV!-GLJ0bkAp3
z)vY=<*s(j7aPX9Ny-cm|+gw*#wtBi&=*0&5QF7_S_j2Y-5X9G5(xLM=6H#2c81-3O
z9_Is}E3Moh?UQ<Yb+7e2+`pWAz!}&cOyzYwdVYZw;@Z5%k#6NA7YPWObVFLcxJ)Z&
zg2ae4x$C6MsV_^<wiz%B$sj?BO^WjK&whzi+=c7!L1V=kPg_(G7&t^GXC$}R%RdgS
zFP)^xL3zK<VV9~+6sGWNeASqxyaP+oi?Lr$nobWiH3E%F^bB;4Z}~&abawtu)YYF5
zId7r!NK=cU-z;Rzk(Oprn+C7l5|}D)`j$@uw^U`HP_nX4?Y~9T!Td=mS;(kX-B0sH
zO>eeTlSQu^z9h=Oa%Fa5TV?2Z$#!g769A5TPKCIAwp@1!Xb&1xb~2^z3e&4@kVM{#
zaDTc5E|2AEkaYl37>A>+Y328G_pOt6MA^h{9*>KwKfAzxeX|#|Ur#)aZpV7@x-<(K
z9`TS$Nj1L6A}1SjI`ZA{<Q4W3pYXaJ6A#&M7xB?=hnDZj@ZRTYK@$bg*Y9@Rb!!m+
zB1eWEw%<H4{`*_*q}b?m@pir!pTn>@zlBHZQH^=~*!>IO#WM~HN<Wg(`Qfuij>gTZ
z>x}6%&Os^LyJ|Nj-H4dLT#;y7yErddNFo@>VB`$mVlx7rc>=e>avi`NbXdXmnbXrE
z9<0~Rz$cL00k=*5%|yvY0IVot%Dx}HnR0}lM*b0K8yu`7t9K0|{vWokGAhcoYY*KG
zf^;*0NGQ_XDUE<M2#SQ#Iiw)ctpd_5-Ccr!(%ndRcYQaf-V@&+)+}A(%shAOebrvD
zox-oYxiIlsrB`uG5iW;G?nY;Nr0=4t;jKq|z~`|EY%QTUuRp9<M(S;p^UuQO>|(Ue
zKPh^<5n!PhS9+XmVZd}KOY7E7juxh@CXF$b;h}IHwVP$IzA=_jSSlHOFL&<S&@NtS
zykYF0SpaC*vF)q|W73fCyCL|~_nCh3jS-w}AEF&Jf5BhMLQyx{P?|Ac`_{0${d9^E
zQS%y_K>N=-k{1sV*X9_|>0`l+F2l_TcvJ;}AL4(xL<V?52_iar%%>nJU|RMC(gRH7
zhz^VjjEB{tMHV4XRPa-T4BpbwGaAgc8bS1yKC{Ij^HQGdza1t&mE>696d;C^tn#J_
z0pJnf@%S4skj8-eOes>!W8qR9jU2wRlvX8XsTz5E6EnCF2<GG^0>%8c7lKgPexltc
z=e2maClhRLKYxzXvP%}T+K7m5pKd8h2J6<VWAl21mrVJ^eMgnOTHhpYN33#tpw?ks
zEt^qXf2vzn9fCkmhRsczMpBYqe6!=+WFL~H$QM(NBXksj9f=iC?W%PKPGcpanuT{{
zN48DTZ|L{I1mg`<xN)IRQT;QcbHd|frfiZB@4+8zKsNVf(P#6a-#+r0c!_P`(UW7N
zVdD(G0iLbm%f<_C&nFgEge4qi5=*#-@I__>SV+q!=SP}Ne6F2u^=T%td2f%4VAgg@
z3w1^^A;qz|d*kosbqFGvr+<a})g`;n-851oHt6Z{8w}wj+tMU__I#i|J6jdaIKql}
z%{*R`*aiTAui3t?zuaHA_g#KARaOo&aKk+9zSCWC&X#Sq*>yq3_pdv+UQ{Mnk<ZCp
z318q(2P#5g)AkGJ;TA3FXge=;baZM-8?74SFq*GPnig<jbDSiVB&Ot&sC$k$V-#m+
zMVYTX9ljMPE2dN~MQBAKh#e)=;1`BKrtt;#wa}C(*Lp`UH7Aa{FLGLlALk(8-0V?O
zwlyIKcyXm97P0jXWU3s<90{e1DJ^w=xy;epx+E=|NpV>Ro{vqKqgD`?nr!vi{km%P
zOaV_sZ)L|yPsNkX5j<a<fWO_q;5JS<#9NzfsPjVO1M26m9z3(ME-gsmf-Zye%LzL8
z&Ct}>YI_~NV<ItEF82fDEA|fBKJY+=_F60J>z|K))nfu<<NIH36+N#}3rzWTkG;oE
zuz(;~825mv(-YWiw<S20;5!2#;zcG(js@$OEsh`Jzwe#gd14Tg{TVeLjjr7Qo0Frz
z_aaw<*3PgN2Z{MJR;o08XA5_PJFV}wTfqyvz4>pXpymBF18up>zmTc%J^%{5+3dj7
zmp$9>8NB=VI?|690;xukrS@tA2T^(u5<O2QE}Tb0@Hh2%q*4^yb|1#5>`8vJg~ptG
zm$7_BviLEFu@as#xjSF$>)`2Q5(>f7X?x#H6{9u(IaiXs1xgg3U%e;I-^TaIu<3-M
z&+&{QG)oIFairFPD|pd=S-Kp{{wM9yX)qD1!xCHwnsJfH`4RyIC+ew=Ana&+N}GzH
z4=bpCQ1_sN%y!Ljd4P&As+y{~jHHj%XtxiFa9lFW+l$xu0ho%ali7PI>YYJdDSj;`
z#KW}2&8R~As|K}?&jr~E%LnhXjs=B+sL^!wNi#)f^SO_4;Mau5=trZxHzm)tRfbz}
z)3l2We1im^`Jx~raiBKrcaT-QVeUXpzc<wnKStC`w}Q9`C-~)8;=)DXfe1Hug_Qau
zbc4qoT!_4LXT9DGz4{8BR>*$4I2pi?Jd`D5ZH-jN9_|WVg`M{p@{f_GNr=7-4`**t
zqv-fR^*XXc2=x^GImTX0=b!>FPPNE&-|bcS5LV$Ecg(XwQqu@fISCwZAvRK-k@)O~
zxXV$fzhm18KjA{C?zLkNY;MLy7P=en{KTjh2!#_Fkn9Xa2{EdubpvbWQZZp<=a00+
zsEmx#TFEi=$T2z;Ifh%y<_mPnBBa*a5z&PkwQCLbG8iLVCRo+3j;S(Drn2z~2c*)F
zli3GMS1&TvW6NflKP0()9*$d9IA6hut@2EeG*gbOE~B*T{v7@NcHT)&ZT2FfT_KtH
zYx~?)Bw~Ox)X)17!^x6f;!beW`G@F}cwWKXCvr8$KK|{;DvSI|wTTy|%(_<sun~dR
z!dMXgt=#4If7G#eyXXzP%2}H`RWj6t#y_I?tT`Q>{rw&nHoBxs(l7Jl0Yr9_0qj)E
z)aRmP^=r~|D)`OzsK^K|`ynb{rmAem^q`jm*uKR29Js|q@iGDrd*tSyp$UR{&~De7
zi|;=imr%JhAHrj>dqj2|hvLv8iqa6G`WDwE>EQlE^gZsemJ)L}|8=q#Nc<=!6IW7)
z^RPvDC--KQSekFSoxmFok9Hvu^b>9zd*Yp)@uKe$pRQ%05=QQMa8q8WNKOnqRHQn?
z3WV>v=dwuq3X!nzY$l)uP1wfg7Z%NK=zP^VP{OBb`AZBSORd}jHQGjat{<CM-_Jo5
z##^9w&ehtoU|D1-uOM2>!oCQUv9@B#;&k?~DBgnGnc;|Q?!4y_xV0P0ETKoj?Tsg#
zARuhh;>v-}@BFdJlbk>mtr`A{X#>wf4f+q`C2v=8Rm=K}8B=dAvN2IB1yJlh|DZy$
zs6+S;Qmr)&-&jp)eSW<QD<Zn(@b?)Uo54ngN>A8S3Fwld8+sHq<Mkn^U@zJOlg;Mw
zrXIfmIdR`)2M5Y3O+VthTIm*>z_zMYI0oMF`z?-P;Uf3>9db+|-u%2pjDo^p&frkm
z2(J@rl;B`2H9uJD>Md*v60u)(W980P`n*!UAKP5!XAOb)AwM8MGDZAh4;uZ8MVk*L
zAD3Aa?-$zgU`&y;43|~eHeFW|5)!Tzm>OGs5tvSArdO%F5kgZSW9D469Y%M8cJ7ye
zg$w_F%{eY9bI4KCT<vT^0^fP1??{;N#wHUsazg}0T`T%khMH^a7|;gZdS*Ka-JbG0
zh=gG5y-@%_5#Ip(wE2l}$H&V_^GQ^QG-64#O?>w?YelM`eo=b%OGy7fAIGZ9pJ?Wv
zu%;JkJrFI|BC;Eh9b$JV*rk(H)U_&b)*A&_fT0Yqn;QKB!-KvrB6I6x!5ZWk@JPs$
z#vgDHFZWzp0>$C2<sj(D_2WD=`go*d!L-kZROp+BFxfq5KFYsG3c!mkvUYv<3HIPJ
zpi0DC>d^hToY&wKN)n&oPG2bJ(oTA(msV0Edt6Oar%Xd2j5gl%#%c1&ld{8Y<=03>
zP5e%t0-^S(?AlOVV{!}DPCJU_)z!_4jBDnCt;Vg#v`fwIgz|>zF^`r>b`O?&DojSM
z8b5K76D(A~_CFX}n#TxH4*STkc7&YR_=v&9sEAxn^c{KjKkVdOaKw-*DC(c8uDSs_
z3g?)8Cp{NuQyn-L$GUGGW7CIrV{MH^{3NU^!Tl2_&r=-&)A0H@Iv~x$eH`!nX-T&4
zrp7>R-jIi&$=869&_9@%hF>Zg4Vx1Bph|_!#dowfu6X>!vj&j`*c^HOC8Qy|KRw%z
zFfysq#;D&)*tZK;{_LEQ0V~;Mv<-o@N2VG2O<0EaNl1#FQcY}b^$UR8Kb(0eEIgY}
zK?^4cCMJdLfB5`yf@dsFi1_*K-k@|j5kcYHL)&$i0hHv-(D{k#ukDEvhKJU#F?TMM
zREz7T9*>H2{}@*k@+c~--C#K%De}tPC1RX=txBaTXat?V=k5xBI!Cutt2E;rj<b!M
ziFk?v-JO|xL?YCdGCby7Tl3oPL0xE)^u$0rWnE2YDpm*ylpX>ffI%5m`{~vDB)fF2
zYBH9+HTJ6|xZM20y_XPgH-?_%*pvuVb5XknL>YJ5&(u`b7{V9txgL@%4?$82E0IUa
z$6rQkSME?eKjZ%)B7Q2MrpE?4#LRh-Q~Bjt+oab?#TPOBeF8}8saezt2Xl?8_^U1<
zGz1pcn%IJ#QNwX7pI9io$TAAT&t7D<eR-iA@z27A8W%MoUf|^3OOL(QL2xg1UJuR*
z$+#RZFf?vA{3>j_K6whE%y<^w_!W`Hf#ya$r*ec>x&009J;$rF{fmB;Eb8`JJm^ow
z?=K$c@2`Be{X}asMFR&N#YLy^B|h1kwAzJVrobeoMqRfNr=#nW%n-d#SpK5x-j+Ii
zAVjbX51#at*uUEr%V(ebBESa@Gdd;5Hn^GWKC+SuN!t``bM&iHSR+E;vDfv*x~U1J
zQ@M9XSg7d>Gc!wDOK2vZaAWSGb-`SEEDbGQYy4sj+E%KlO;|G&vnf<X<yX~!U^aI)
zjyf^s-u1gu_toB{13#*(X2Oced$TJXT%wXlf+$b2>TN6hDA(7X6|ze5`_MoNF`$c|
zX?ZCHyYR3eJw~E@Q>4D%ae}(x{qDiWEbTikL4?S9CYs&D;(Ad9MC0i<SX6>8DrC&%
z8R2o2Ew&LlS}4i8om0`|t3(3=M&1bKPj;T3DIGa`-2#gTYGXDDaffp~(in=%yjR#I
z+ztlE(yN|bUG-H|Q$~X8c`<Wx(`2?!lgY>Yygu_PXxpD2iY=6=sV8o`jLBdpJVcW>
z#_sZTjMLb$vLp#AozIa(d%v4GNujd+`E)Ay<c6M?QAgaQ?xh4G^meA(6SkeOs|0Yr
zdRM#fe?E9`M1D-Tdem>ERgWQS9N94he7%UcrDRlwChn$}EEWcrw045^aN(zzc<58{
zqHxRDZ?^L(4<|+7pgnpD`?fDI{6w#2d9+h<eATeNte^|7;Z3B}_?os#kbS8nbXlP_
z5m!J8J{nc~<O3J-J!RUT6A{zHLrTeV{n-F^_hA-GfA}(Q<0NH|W5DXjig4L4mwfG_
z6Ydz(ZojmNFQpR>)5H6WjEt|AMJDem;4D{B>z}3gD#cW`%OcJ5^$+zb6=7k>=*Yq<
zHxjyUMFezj8@u0FKX_Iw3iF7q$`&NC5;Mx_*F7ycc`OpPOoB$fUugT1y~5nJ`%t7P
z^XGMCJ{uqXnMzow=w1o8h1EZx*E<;2=R_Wotgx4sc1Hw=TF`Nrea96tug^GLZJ3xy
zuxkV)*S24C8;(dp!zVl>NRNaH{}VV#TwkNENG33ZI)Mqp{1l8&*z`z&h$Q>2p-Z=f
zp^|PZDVo8DSgj9cZd<!Bc?bs4BX@Oo^Dme#KtL%p83)0FOvdqqOaJ@Ev6hAydromV
zczjk0LAmRJeWX#T9g0=8%42zq=-Q0&?l2n{Ja5%O&|765W+{DUl#@HQg1T!iDK`_S
z^so!09vZqVAc;K=HYI{CWh;LC<xzaqxlafkH!grb2OVYjYO3z=DZo{eoW6LTe2jhp
zfImJy9VSci7FJ(Gek!<!aQ)}Kd=`rTd~1N<^EeuiNixeyWW0M1!vvy71O=TKExJ>L
zcVDTcEn+dF$BP$P?VX)HAoT;`$zu=q#mU(YKl=~nBG?rC4nLY?R2oeuQ1x&}uPqgb
z#*g))q<Ou{9OT?JirdO47JK^oEZV84m`FT+{rY8gb9F8(|4|CQ5lv&&I)0G*b~u1r
zYNC;qvucI_RZYv%aoa0~ocf;#76i=!9^U0WN=cRMq93={&%2|JD{ychjoQINPx>th
zuU*Q!SA;nfUpOpe|M}^DyYMLjA@Ptk-qol_H2(x2{tnjv>-AbYq9vsN{Zrv=<^Sh5
z{*NF1v!b~Blm0iT{!WRxc8vf1Ya96ci?v;ayVyZs)W%l9jar00?F89jW>&2htx0P}
zZJIO)%pAEupk0=Vt^GWku13!yEbdhFBeHl8H#e^!vi1}I`z`#!&G@DGO}B-CRQ!8*
zEFTx^x+*g-8R+SsowAD6KD!OfFqm)N5Mkt0do{A}7e0K-6Lw+nZ@}fR&uJL~)+%Xw
z8`r-#4yqBnzFK-FG+X1x=*Qr}j!t@Mxgu2>{1FCm+FF0Pi3N1DaIJR``L3peYwOxq
zmXbk)c_$xD>*QvWY2|i_*&Qn!Yej|)g<ye&V=y(GuGtv&02KLSuOij1+POhrbbTsh
zgg~czvVF!~2G^&2%u0FP`Hr7EI#OBpME?C={&=@O>G&yd&8m1M@c&*IfN^U#C@Hma
z4KoW-8qs_7;i|wyZtZ@);4WQ8VPWs$wV@_!Y^G+|smMkgv6j4?&Bu0T3ExEPK!!})
z`r$lO2*0j(o-Lv(V%o3POf}}iA!Np!^6WVdb5UGE{0vM4d3s^CEV0|z%#pk%-S<kt
zuN=r%c&DR&rxu&v)8i5mF_@d1GrdLi3a6l?d<b+wYWmxp1&4Z(NMDub0bCi|;)lYs
zb_!U=xasL><nteYJ%P1xL|PQZ=!nAmYI-qj=47i$5nWDD1c;!2e0=;SvCPlR`}gnX
zPCcoj*o^-DKm6;bs5?VMU7ak>&(}YBojs!2_GWO<u?HzH7)4~IkVTUtugMM_O4p3y
zW(#l4s`{F$p0NE;>p&En<b@FV`Pw@)Wx--bUb_467v1o{cGky+hfu`a$9NTmtNvKJ
z{iKM>!sli+E1#?!v_WGQe^>9>R+YW@83l-P{lTFjq+J|iUg!B{IGqN!3c>TGXx;Ul
zs(n@Ti=%Zqps@dV$3Lj4tB>p&Ml3BYp>`aB36WjkSR>u0VP=-|I*9%P=50vOKOR2(
zR8?B47RRQ?_*8J;KPJwN_VDqf99=*()6+O$$dkD^-el6RbBfK&W9jPc9bLSe(Vbab
z+;6e@fxYn=_>C)NKayMlQl=m$_g-LX)yu)5Tv+?#$B!3+Tay(%`IH@gH84P(M#ZnX
zzT3}Baia9t6I%yJkM2p1^xb$Rof4CPy5PBM;AGWhR8Gu^<42E_`f#rcsK9Xai4V7D
z>YV+YKvTd6wu_1}@*gYE!2`Y|`%1L6HarqQ^^YNzUF#iflfYh=3B2X__wKDY_yi76
z2snNJ_3gv4U#|MRJjgoJt?FzOpe#0K&{I*NX4Ni?0U$x$EBp9=-|O%nL^X<-2OXc~
zEft)}wl12`^F9`TmCrhoEiO)Hnki`eC0RvU`W-zJlY*93oL4T^GMquF#2d&{@pO%#
zpdj3spGgAR*i^y~fO)sk2DUdZ_Vua>v>ln%)z9udd_G=q0vMxM$Ia2MREa<b7-$hR
zOU-)>&VPO2R#R1FKtn5e^?+z&TytZ$lK*|EQvYITXz1}P;<#bWTWez2Ae4EgQI7>@
zMNU>D!@pfxK`EE(o;HkiR7=Z>&OfCeH+LMSLS+l=?X@EHKeB)4;T@jCyWFA#9NxD`
zTu|hC_^?;5j^K_PM3T4D>zC2h{d6-w^9#po&+i`dWVUh=3vf@y-^`R=?hd2}&igG2
zAO3j6Wt(hUR3hew+y#UHvnfKfa4Fko`-{u&bC=2UJhcqIC1U5c7=&{l<<G-#NbdB3
z!l8u9e9MIToi>~7Sb>FEq>z+{VOXH)ewp-UNu-{&5n!-piyff{=~UO>9}d1ue8l0K
zG7BOt^M+(D*?D=Nky#~Jq^YJ$^C3fe;@O>P*_%~pX=oNKXG#+P_sqgr;lf|8y%B2P
z2Pt+%25&*i!sQlu2LuGL!~kht51DO!YV5^M@EtRik&)qIz9@!`V`-7>n&q%QC<Ve|
z1d877{QfQd@24m=9_o7)`Kv^VDE=4k4w{Q1_a4fr>1$<R!nHEk4rzzMi2~Nne0#Fu
z;@cC0oi;yg^m8yR{Ur{czreee$03MD5J=01Q{YEgI|B53TGd{bUkl_$%SzeZ<@>@e
z4`}xr-H+uXLAFbN(^PHVVh3}0o5%a`aMjd!)}_s&vSSzH45O+|r>@7$24y<FbZrdu
zT;fsLNh}OxRSI?*{)jUE3RnJkYU*l?Gy|&e2;M?4SN(9ZZg`ekZuFbqT5gIs2zd}-
zej*uJEf$!)2IZJuQl442?UD)}EMVa*vlF)LP2L`Ux!sZ^uxo3plfLq*MQZv|HRn|q
zZC!s8>2tH+i{BIgyaFGz!q}e`H|Ksp#GI$}JW`c8$4M7-X^<%K9M!QvBV6W~yj-NZ
zh2G_K_N@usbiBKva+!zo!Kd;KLfI?tMCrDcWNqGMzX*hDjny`opvH%6e5|yqJYZTQ
z8+fkAQW-DOE2F3w^2AIMhT0X5igg#8J9f2w=(9={LUa|z_{gHy0h4yd@fLV)cy;cK
zU(uoHiPDOHdt9spsLv1}pWDC#HwO=fKLelgs3VLbpUPpM+I=B_xO?vQ#<>VZ$R(a+
zStJc<UJA$Haf_RCcMS7|7@k(?8iA+!zp*rGTr`b)lu-xM4fyfG;=bbInR(@+AQtCH
zgZ7tNdzq-W<ud$DT<ZrHC{D`vTaceo0SAepRC(OY0Ws%*aHztaY)vd4|DuHXft{{&
zI+l2{)|B%-L^>wQJR992G4(=T#WYv*IyQgN1rrCGQgADT*tBvgc6X9V_1aBgJx(7#
zE-@v9@>QnYH#fN?K232h+RWM<Nh!D-Eo2A_`txVkU)ltmcZP#QL<PYV%1#Cj*v(a#
zK#f-7{TORPd|pyGf6J!ztk3m?EBpKVy^VE3UVV&;2`Od!JGk9$0@H$V2w>v8yhXjK
zzfU5ki3A-9_B6=P<TqL0ENXh#q0&ok0gxsB_jCIGsW5QBD@D$F0XGyeG?9k*xt&in
z7G%D{MsNTx>K2s0V~+cCz|yYW!fA{MLCFRolh1brh&14jf$>f4`twbX;msf`rtrl#
zd^Fr2*T8Qdd%QWe>3J3S7CQPUmPt5-aF3#W|8>hQKO&y)=M7`qDqDF{yyq?BY$Sak
zsivS4jjkoXur?14R`=6!Og}qbq4>}vb3sx1e>J6#D2>W(2c3$vhgssD=tQOU=Yy*=
z-N1zM!0<q|f-e958-R(Tym>ZA>hpH)`)Aw6^?D9pDVB|ofp-4>X>i^&-`M_H-iW5)
zeV;0RhT}R0`!a$D+1hWTZbmgollWNTxT$sR9D~M#nTZ%fpyJ;Qg&>cr$kSr^jC}za
zkC!k&bRJ<ilc0)znxyQM&M}|^@xKA`Ua2A2cGGTsa!}F;Vsi4dP7HS8I{h7x4f*Ol
z1bSoL<+@AYu8rR(C?$i)@iBoX4$eExSNym7w|^gXUZ2WKg4)pQJo5@T7~@W7-TPG2
z>MTMWXO%p!dMCPJ!!r%;RUQ}X*(_>59cGR|?Q^WgWhzHb@PabfX$nHk$*C$ple%!S
zJw*n+jl>CmD>>v-N`VJAZNjdw2gnb1B8itcbP$(DiIi$5)-_{XpYxUvx1X#E_qia=
zZ+=eCfz%-OWs!?E+be>nf;6zRHmYJ)z}>y_yD|2Fln5O;N|Rj$uEtzldDMWglH&oR
z5aUB<oCOf#E|Lca=@nB`i>hNjmHS<KL0yc77$7U_!A`{a^!_a9MJ9t=pL~9*5)?d1
zJg4VNTPv%yV35o9awSTtB^5u8UxSZVL-sgTsnc^B$b;y43j>Gm?ZkijwYBI~Kguh5
zP4;DU?JL&h_n$vwp9=4Ly*I@Uj~C^D7o~^Dp6<*vU_yRKKrf0Lq*RD;f{MojmTh)t
z8!F;IxYh)`MgQkxhoB*Xt#j+Fps!Rx-$5_$;1Uy~6(_fI^ZY*U$kQiO(;0_Ko-x|_
zCz{-`z5MOOVH6o3Bu)zAUrIcpR}Wb4V|^H{l9^bfLV2RuEeh%Ov)M0EOA|c(a`~gI
zUUzOo;_Y!RohI)Rzh)sJ!soai9Y43O`em{o3-y(i2UJKL(m914&tH|7_-dQSY;rl<
zv|ZQtHJ)_0UwjAh-=pqDY_vp6_@mb%0~X$$yOxM4)n33Xi`dgkt^}f+3W;WNR(DU0
ze}3W)gM(mBy!L4kU5TvNn31=ukN1}#SOVmH<!9H-)bBh7H%@T0+te&Lhzj`gi*a|}
zuE|3Rc`II-8YE>E>D28fHqCXaj~Zdun}$1CZnw=o2+G1<pJz-$s9py?a86pRX)^1=
zuP{^j80I@K%(Js-QlOr#e0-UF|9Be}W9MX=>Gy8Wr<o3yUO(&VOM9|MS<W$B(t`G?
zO?2BKjJ{<+F3M#cga5Xl^-<=lTlu6gK$zGBCT(@1yjre%SbQ^do#z&D9e$z-%W!Y{
zfEuP0dsgQ4Fw&2`SeIGgMlG{Q|45Hn|L~o*u+y(TPmMI0ACa})_+95cxlwlOhxoH?
z>9=3=p;22RnDOm=MY57BFKf4bm_`Hw-_9xEX3msokx^){`UU#+B~8pf+X(>#r~LG=
zp(SG$X6J*mrB$`Ya|yY+p2LUfYlkwKXPY9QShh{{U@xY=+3DKip13JHk){@foaxP>
z;jC~#nlbYI{Sk|B4YJt&EaU&`PI1=|d+$5Nz3!fUV1dP_-kslVe!FmufB#<Y$<z2x
zwYq3HXhX}Uk2+-ENWHJ$50$|yb{TqjeL5JTiV*Wg^ebY1Q&KleY?}Ce$T+-V50^Qv
z5yrt=bcKwJG_}zkzLd+7o{x-weA}apdtfwn4+z7d3;il%OGQ9=c2c|J^ihrsN#tbP
z^6@yx&VUt-#df;OR-K;DHn<}hpOO(kzlI_Z#7&hT;aP<|(5w7GPxcy!KUnu{Ixm%u
z0&|e0cN#Bk?!uc+`e6V}QmUM775!x?jUPm9WOjbA%$Qrno6M=g5vf_S#S&*0pymY-
znr_^F0kv>#l&|IL&z~3Ee-{w2E-Srb`oi2?t}j`L`wMGfb!!n=q=>i-_k5R4tPw)A
zNLlLsIM02aFyK0Oc;ed+o|2M3dYt=(-tam(#^W?i{T`vlEss}(o5*}nFy*}Z13!3Y
zR~45K`rF;9$-_B)<a7k+#pbYkP-(?1a!}Ac2pW25M0<}xTyZ(x&WajfKsq7RZ~I-<
zYBws79b4VQhPq*dG1e|cVl@JEX}k9akJH}CdrGpcx!o+PB?=Zdz7JL#pUr3^h0MeC
z23>nw9ek?&_DS=E)IiC))9v3-L;ozAXjjwQ(^nt+E$R>E`=Sf38lt8d<kINU7&NXI
z44xTe^jtb`vX8Ksct>7Ez4f7`3cek#CYgxVqvpihF!!D;(l9vNABa@TtVBVVU#ck5
z`uu`F5tehHE0}``!H$pnu-=*5{HMB>90mUFe$78Y@4Lcym~;Bvud{}Yh=@pro4R;&
z>ZO0d?L?nfR@uBhNYCz@`o?8vbltPk5m)HrJB1p8ymgvBF)?xQoi04#7o%+nJ#O5s
zPb)cmfN&gIF%tS)x*VJnFe{f)LFQ0wDG4YpM~Vh#ay>BLS6B1SkeWKM-l}>B;c^&|
z03XfK+JFQsW!|~xPR&cgYQl_ER_<Fz`PX5Oiz<m#^Ii3Z&ckbeF#C>ms*p4w_W32~
zcBF~_Xs34cOE4F`s0N(>bzqF`d3a3WO*Zx|RV1g*9qH-gBRY2I#l(%|p7FMC5V#S?
zVVPG&!quuW=sDemurZa!^*P!{!=<u$%ENmTfErDEr~m6nr?S>K11?*IL7d=H{uje>
zpHU{OVeEm@p`)44ceo+Kw$DO%gj>?v4`yhvAbTqBi*F+i4&JhF8VD@GJUr_AhTw`|
zbd9ZMAGvJ)xU&Az3{pp+U0Ho(I@+`U(gdaH_HC*iO<%%M9o^&}ErrWU7Scw%@^sv1
zK~rTvwF+}NXrYF52hYz_tE%2OPTCxHhLhdk&2iWj&-lLl18}i~A$r}|6V*Q9Qp3Td
z+-@Z7RH8TreGp4Dqtc+kMi2=E#|@Qm7z~`vDR@@WnxFsUhoS}S@?=|iGHJZVK06vI
z-RI7RI$^5}l39}b4R$%)n%&hN2}^1<fOwJ&(68qUK!-x_486*p(Sau}&X=I)l4V^X
ze(=mFSl8MesH5d2CH;47rz)+zE<HiTTn-0eq5g3T@)3tqc0goA(V@|>&$1=p^dNYT
zey^3`gG8^6=J?Zpy4x43mAl6=h`;z&$ex)6okBa@)p#8s8H0XKHG4@oLqNEGzB}{l
z2tB~de3VNrS>WmFx2M;c<Q{Ko)oqwqoY>+(Dz2&(@~{9jrM@svv0Fpd%YO@Jm(ReL
zZjtN(0xq{%)=nOad*~+%iFA=mUVV)i#4<tg0h8tJ+Yze7UwH^tAX3ak?&1qiQvFFn
zPWVherOcQwXG`f_8RV$z1t3=CNqQqfh*$!w%9pD9HYSEpy+W);{jaU`S1(a+4-fi{
znArxQdnch-MDp(GS299+=X1{lp3YowG*;wML659rPUglwHOp*%SpE~SnMIoh@%~|h
z)upASQprar<d*=60l*27O99z3f4BBmT?XK9D9PU_-&TUnH~SzjGqyc}6vrN9)#pxy
zgkTB@OUiLC`f-uJ!#O`c$ExL2)`5z8O46PI4SG7!)>EP5nAel#T`vzor}YeUHk(^i
zR`9(B9P-{=bF!w$$U!L)(b4Jov<L9BtW#XChM}GY5mj~z;&nlPE;3YJc+@f+c6ZtJ
zgZPG++ZSBl6q2JhBtHMN$+vEESF*d{ziI&sihlm5VeJN$8_(n1Cbyuy8>J`5!S`-z
zeGcYgS`_9`)9#Ps&zcqx+%!2XvpPlgIk-$hlMIuZhJZJQMf-&(9mAZkh11k>Wt$Wv
z0a##6ed@ff-S&^EuYj1T3*h6&Xm`0|4|L0Ai(CV6H9^$#KELV?ib#?8f17XtMvy0i
ze4o?Azj_SErc+|2|BoguWd`4y=ZqoVrL}W(c-WHN$v;8lo{vdQdASB_&q6{>TwK;z
zp^T-Q|83ylw3A)y<cV}zdb*=tnXN4W0YTD?uP;2)%rqk5nu|p+Dnw3B&dp=5uv1|C
zQ7^BAd;3%m#(0?K;c8#J$W4jY_H#*^=2Z|x5)V@5Hu%8Zr5E_icBfi8oRaMh;2C-#
z$;N4hNvOyeW?uH_{Nx1mLGf4fC?frbb-<^)yj>+U5UGNKhe^%x$^)Qhj-PHLe@7BU
zQ}9t0$ks6%X!DI7gw>ywT(Y87j8*X<brxf(8=OnGK2qkEE3%f|iZu7vAi3>t_fkvR
z<nq@rxYa}%b+0IKW^rbZoh<c03zN4j#uObc)=AFG3oi|&8vjX};n$i*&pTS?p=xfL
z=;X-&IRDrEjSXfF0O5r04h;=)>pio*Q#J|n73tS$y~Czpamm5P!HEZ;UuV97jZL9f
zid0sEnYT8>|MOg!yn`%4zv4{y2KFud`C;m4yidba2qjW*y@2T@vjq1_iQ=r@^$?Lt
zFD2+^_OvmZXj0^A0mpoz)ZF(p78g2odAeIPbeH4GZ8f@9e%S<)NcnX_16rI}&gI6@
zJv7iTFrq=0mG&KoMDgNwtm&rWx#NhYvK4e0uO>x{4W}GbpiFbhze(b|-ARZNYQ~q9
zl+qj6TMp3f(wUZ?!Y-nVOp5AZpmBW*k_XpaL1o;-2@!2ac#s5v6FF5wF-WreQx6XB
z?QIQFNm?|F48uMD$|{Br#PIaJUh6qCrUf<#-uw-U#-<-oN986y@zAei?D9NArhb*v
z2}$voVp7xA8C=_MQ+vm|Jc2UH_tH77gv)t`pk!CzUF&<2E>21UtrC?D38Rq<(ED;v
zF5ZDsWBuaaS?HdTLX2}jP9#}$=H*+bgumeFKe2ZREhN05!Tl7uKZsA`fA<A0`VFuX
zy%GHJ#p6Iu%zvN*k@BoVHMhjAv3u6@RG*@R(0uQ;$Zq`wM<qy9b^K&>4uP3ak>UAF
z`&OcUoO_;|mltISLQKNM;8)&*0`K79U<q{XNBLJg$Hk8!h`}d0Ind~tf^7hxe!H3X
z+@o-wrXkjMP>qhc<s}K>>qkMv!wwN^ovyJ@I=sGPbl?7tI^7+J{qXRw<fv5*uBCCc
z=EhKFFL7f=H1B=f_&FI@a8;*12Tt@+Q$^3STcYD-<!|?xNFPaCzRCVNTAb{X?>KQn
zfkh?!yd(V7KU{R2&Ht5e?D_y=u$Kq!3e{+S2TAi$z)AUzAgNT`zhL=tZFm_B_bG$U
zpKtzLlkULebqVqmzpEnOF0;c1W|u=lcfkY#yEG(f@pW6TL$YlCkV9NXs$d6R+H-;j
zI&PqU-ZWW!A4Z|~(RQ`&vLqDYiOuwy=2bHSjwOy4wCQ#)P~<xZT;7UFr=Ue$NXns@
zoXfSN_xX<S3?AZZceU~np#u_B8*Gl{v^|;G<9Th-RQJt&V&!3G@!Ms2u_K>RT>n!M
z0H-=?j~T)m?hu!^03P4;lnm5w^l-Hzf9LtfRn&~epc30K$>(Lcp_1D>wX-$#9@MZW
zg?$bxvI)bQ+z-&hf~*pBv{^?2pKO{V6$_oU@?mY3t116n&{y-cOZU&hbc%xuqTJAF
zL`%LUsuPrkg;Er57&R=ISymZ)<-c<x+o>uLB1H5+gb1!FCkyJ76%-W201Lf(v31zI
z&k*!>z-FAI5AB<-!E^W&K6;)10Ofx{X8g!-&@zxF^JY6B{Jxl~M|n<q4hoI~-LuWv
zIKZfC-s#WpLgUD7?dzs99zA-bq=s8DjM}<M#<yKQ<l)wL3JOSMEYghpmj34JLWfp=
zwAu%<u1h}?`Gy>_tD1o1{P+y_f@=Au{p2FBbPhEH!|Swet_wg5GnW271`TfOj2z;;
z1K7_3u_>ZJ((=YW^<<llMbfg}H+;C?m{hQz)=&}iu!jRr!q+@Y=a{83o*w9E={b#e
z;p_~~$W6WPAHLW-ck)_pBm$S8Dx0dA6hiT4xmK-NY-f*1{i+LESV(-1aq`}6<||i-
zY6q%JbZs72E|9>Ew7PS*GPm($rytL0EyGzuA|fLfo>}}dzSn)bqWhs%ES#KAjh2qi
z@ub#q(}4u)OtJH?rTbU)0bT&89@GsZ#!CxH*ykXyrEpH@iFrp)9GiV!O~d^D&ER(s
z?6<Do6&7(;iPw^+nXgDdaXjqbhl7PRLbIFHN{8lN<2#bS*>J7c07i`^WIWKX9hRfp
zAJH~k_dLR~busjX!hs}byWlO;1X&0NWi==f6ZxHf#p&5Z?(NwnnXj0{e+hcr%id1O
z6GCv87fHZLP8t0N;;x${YTZRcq}wEUN+$H8(EpMHJ}Aj0|77^oaW8M{Vm0zNoiKiu
z;IB6K5bKEWki3RDw}aRNk%iW5kJ0tF7ea&Eqstcr_<BwC5q;gEW^qOCW6axcSNb;E
zZuNQ)63~rV@Wp?ekumTxeluJD${B~M^gU)=&e<i_n5ljYai&mAOrRTeoB;y(Epxzk
zVaxk_ma;uff{$&UR6iSs-_&~MWHVK%Brh*d4;Xm&8?w!3g7XyCZ0vO+S^qBO|ElS|
z5#hgx0`5u>Y|SuYUfMuuNy#(Kpf<lNkY(k}c$XF14Y;rhlzP>m&*IRYg=Rzs7(kjU
zj9Wx*&!6g)v@YI9*}Vc-zZwTJYW=1NaQF^AxBcR_!R!js939;N)Et$R#C9h-4b!lj
zvaaHbL{bcb6?ME?1=w-?VV{U0HaRb~A?&(Bo0D*1C22D=-hkzq8<D{ti6MZnknpe`
zHlCSu+QA+2c~sBR*#Rp50QB;P@psWU{DW|`Oh#Rhqku|A7WfXJBJOjgxRu=Y0Nr}8
zD;gTwKwI<W3+E$$0&Zc-Klib&pC}OV$&X<q59>1+oCFiXu4Qt^Pja=QWUvGc(>i;P
z-4pT>kCk<{+NZ#L8N+TKSdQRD8$GRkaC_3RxB8B9%vYF9TBkmfO0^6&|5JQ+PqFz(
z!`KFCagE1531~d>OU?F<kNo$Fn0uX^2bQiUgT=YCk?;q0AH1jJ>>RSVQO@oC8lL9=
zqkl;(%Hu0(Q`E!g-Iy&V8Gbx?bP;!1wTqn0gqRlbc=g}VBDX@vW$>?IdF{z>^KHhG
zZ!rMoFK9PuoTIqLVp#0FHNH?0N3>z|m5l`RZZ;3rr}+f}E5m)bA~@0)f8S!@H6n>m
z$eS6nF=v$a*PK@a#K+OWQ7jWBKMrLa9X$LsG>2s`atJ3X9hwkPP~>(8m`h(8$0ct^
zl)3fv+TzI0MAlG!74G&E_sswrg4R}vjJ#6mjaM5El(nd6SaG_VT3Ty5jX#e7aK$7d
z$gj~#E6!l=!6Q@{5n(iw{S5DY<nW@}Z7eajEg!GF;GYd<Gb4vZFZufq`G#%a<d`V4
zn9{5tR9TxshCuzrC%!a4x&g6x(c|OK#4_NZKRo5Uyc$JQcke-mj0r&iDe>BAIte?F
z%i<w~5KOD->u)<VBMf)qBY`WXYKN>>t;4u`28Wj5?#eNkSi4LOq#Qg~$w+65BeKJo
zZ4w4qrY159c4IF$J?n8Q<0V}Hkv8RqDoFVUJW8$&Z@xJfU0fbH=`I9)EY4g7D-bym
z3q6?bl^{*sPbCRgH#o+HUd_ng=3TSW7hIC)+uUkvt24M38PYJ1!Dw4ba^?A8l{e##
z5rqJj1J){g3m*3-v*r9rNb}<dnwK_cyWF!~=)r5WG@Q9%3u2D5PF?P+jOICeX@vxj
zPDooi?~y1QQEqF(gY;KH`X`zmBNc4w+g`X>kko2i3h&>s^1o0wQFtH46opsigv&9(
z6O;BWrH$+9>Y1nC3EzicX@B8h7M#~<tD0-4#HU<Fa}9Z79GN<Jy0oKIICmPeGx*e#
ztJ5hOYL4mc(DeRzyCnQ3g!ejJF4p0ga}dZX-WPX_SZS1E3a3{+3WJMwmmf<m;quVU
z!W1s6dfD+Ok?{DVchTuPC7bEi;5z5sxI2p5{oCbRQ5JUg_~oAX9`3Q{L)3Y>d`sXS
zW3#Q_e+RNU5*}E55WYRi7U=@Db7K7pJz$KXs6$P*bHZP)iHV6fPqP8`U(~m(9{)fm
zEgh5a-n|RK*Q%<KVMgAIk7c%MMn@?<u?!78KOb6GIwffvxPJTC2SgC&04{JU(Vo<H
zFG8RG6J>LfPqAx}P^&+>uc~!!K<6)WyWm<S2OLKY2ir+e=6&)5tKst2FAI~tro%0<
z2DpAxzD16x=yt!kgKUApqhWG`f;(<-nO&i`EL%ZoL3sCI@?9VQED`CB=4(T!;|P(m
z*u-R2V!2$5Z2}Xw)a9|wc?S;pauahPP5T0l&6xcoSGW8Q-K&x4w=Or~4W-*j{Et>@
z<AjRFJu4nl#3U!rIw-j*gbylD(G1_Cg=?O?hYW`rKQb8D>BKLE{o#Ks@LefF?G2=u
zUB5{&tAZzJL&LX|)~r6=H&r(uJ0R!OQ@2<;_sp!6cU{hJLSD!<)KZ~I#iM!aV)$P2
zTYy4*j3t`ZdA{&o{TZdFu}Ch<X+626{Pn`nBS%<fAgkHost(syBIb4tP9LlsM@qxH
z^p(!(oW7fE)@_=fx!Tt>q%FN&*N+@)AqHw8^?ABNg@r;U+<qGeq%$}nWJX4~ltg(A
zw>+?tF~t%IYhcG_c0aA0nMTGY&pEfAt*?=Ivt)MnAyOLfn|IF>I8Bdi$q8>&ig`4P
zH6XN!CVX&$O!Ko?NP>d<dJ4Ewj!WMoFRqz8#u6KUp6yMQ0!oVFJ{%qaf8L$M{_W=1
z<l^SjIhaU%!gdbRr^DYgZ(*XM0aZA^3nF#T_4N|dEr|GxYUzJm<SVZ>@++{MvYqlx
z{jP{)sQ8AWafu+jdDer8{vj%&I{9L}LTW;0vMRZj)Ly>MGZuTnu*UuUQr;TE4Lwv)
zdV@vbiYWhzx<L_+mbh6qEz2kzT~j5$gOcv0bK%%_@I8^j5cr#ZSt@Ho!eRwTIWmjj
z>(*a!|Jkz?k)k_0v_foU-1g6}ZNp7OWCJdW@~zKgDg|K6_13<Evg#YeX7RGJ&x#G6
zK&(e$rFyIkicP5NIBke@SumHY-P_99Xov!CGj6ID8x_ERdj~psu2X)PsuaZ$^KuCf
zG5v|p<3bVVnVT#J((YkZ0p#G`gJ&rsY#S+Pq4SReo+@Opb&N&5DZ%>V_;YZB?~bNO
z-O*zK8c2DX<gv7sXUZx3&Q>2LpJb{|uiriefN0fP4-={NVD$l&(xyfRgosGa6JCzL
z0#1}V2^tpr&(-RU_(_2}Z;WuA|AFRPEf4yIH=Otdqi6YF3pJ>g_o?o)F1sd+7(L?R
zx~pOUs)V?COzXfQc(ON0Y2cNbnk+(5g3Q&u(wmgu0Qu?Gi5iV@CvC47qZPl9mXTQ#
z_N-_+I?7+#%W3O%>-tl068DXg{S+kViys?4xFaQZc-Yuf<>kAVr|qArErb#0?fb7C
zWq+~h@ATHD9Tk7KN|yoJ$2_n1AhJdOct4Kv7G#RwsR$`05G!urRxB`EVONV(o9Ff5
zQ2P054rI>@*_1UN0Nm!tMK`Z~0A&^S7f22#Wwi3+qp!t%+1=UaQP31+N)(0P=}lu)
ze}|tDK|h%BCqQkm=3JSq4IuX1>9X>+A0>PQsc@q9mL(7W!_(pVM4)E2_f62`n!bQO
zJtsxmjiMhhm+Ho)etz)8bD0D}{d#Y*!fF{z6c|E=>`D5IdjT)J+qR+P)3zuC4tx$P
zA{1tZ3y_%b7^~nTM$2Tq${COvo&S7w3lL9*+neie&_PEFmLDLWJE`EJK=U0M3Ii>z
zVx{#V$pbK4=wog0{nHG&XpkcNaG(Q)gbDM$QGwCu&Ry(8Aq==bFh(`swZMaK38E5o
z-fWb@x9z+$z0PezLaTCKq<Z+L;BM_PBJRnT;9F(;T0Yg^dVC)zdFs;LkN7;t#Jy`9
zEWt~AS5$nLNo-;W-n~v8e1`v2>iH;3q?GPO#H{YbRv+Qv6XLUIW+JI+>u0V~;l<M?
zBf(3$_jI=BIPS)vc)GY$Yc0Vpx2q;05cF$MOjwh6bCEzuif%x&U>Q&gM@mk<<ub>U
zEp)-o!j+CU0{iM85RhXk{nGY!V}q1J)o8Iph|BfB&a=9>SjA%6*x1<Z`HMs_;b*dq
zYLnVj-wbu5xfo6wnS`msqWwp9&Gy2+Z8#Y+9EV`aUp1HmCA>o1g8|iOFgd*m)+F%Z
z@=qLf2hB*w`%ag-Sit;h0$-HLB#Qgngqo*inL%92Ml(ON!A1FS967&@M6P-yk%Bg>
z@~evWyoTdl;;<>W&l7J{+}zySkf=USpymI!$08SiBWRtSr47Xq9J-US0!8d6hyIj#
zTnf16LQFqz;4(-;`qp?crGh&s%*Ca)^7C`{VJftfvn0Uz7EJogX<MVisyXOpbtHlL
zPx1IJ!>6bOKCTc7Yk0FL?fGB`r;>(-*XAp5(=g73xC80^q$pg#i`Pzc53IaBT+ZpN
zJ1oY;CWjB>cWp#~9J=UDc18wj2>iV~23%crx8JS=w>TNgpI+C;+;;P#`iKbV{~@RE
zzC%$Xyc9T5qa^mQxPP80DF_7Kr4%N%ksa9#$Pm!vS;lC+c>7K=P^K%)uP&pqP|MfP
zmqGD9GGUy1{r;l5yR4&T=5Wr_N$-WI2J^2wMfKJF`E$jn%ehpPG!@+`kVQo*PO;Ka
z&(&eH4<TxvIo}bwxhNf3<bxgW6YjjQQ8teaLjN$h*qrccco2!EB~?v5oA7Ldsv}5H
zN(#`Nj*lKt+0i1tL&1gKq^GBw15&ZmoFp?d^D%_?q1goUzjrkFa1Mg-0Bu-IQtu7=
z=Vt@wr6jcm^C*TqhPlxsBr{06+v&KAt=AC~(wc6{0D|_TP(lZ<GtDqnl8;78Z5LUJ
zZrsC3*lX&l<m6W%0NG1~sl>NgLav>*N7aoUt7L~D<gu`ttp*o4xQdJWQa^_^d0ji8
z-d0!%AtQULU#`8O|Hk;z)ce!qtK5QIHEB5GZV0t3tvFqV?lRkys;${PcgmC5_0g|W
zZ`5z9_BC91|G6vwU}Paoxa9MTt9$=#J#}SM3i1?#S>{8FXfdHuLiPJ)7}&fGQXL&~
z9#sZzBF_RAaYBP)?3RDxggd*R`{)uGh|p$zcva-4CV#UL{8mnWH#;3(Qu3Qi8fuO?
zTpmkzMy0M4JTL7tT8Qy620D61&UXSwh|~-6AZ70oO^tjgV)rK1x=}?U+{uTY&3FpY
z&jie1a<)?(HE-nNe93>`;coyB9>fLfubunH3sEM9VjkF+<ns+7tJqgFWmn#zCVi8(
z$2Jk@bvRGG=(@VP)YR09yaQ!m5o#-|TN+j!ZRqns)l(lm%6@ir4ah<Jt#z7g{bsM7
zR^M7<8g&<&i3M>%#^cKL*^!J6o*q46XMYMB{BJ_x1VRrfzx;bC{8lL)-tB@_fz?FL
zf371@CYoaNo;cG_>nY_vYPvd%*BY`nW<+7PhI5VSmly!#229`e$0ydGJg)XT`9%Z-
z^lXO)2ir3uIjweFU#)wSy58>I4lK95!y+KTyQ3<0d5%S3hx_q!!(LPF4awkmKc#u=
z@z=%n_ZQp#K<;kI#N^xdA1L=knwo}D4BzAz1Iq(>r`4S|@8S~@pl3e-qri@2cbCfo
zGTsvp@aUw!gXoyeEhhR-g|Q453mB;N1_xqKdd>coabu4_v;Jomz@KZ+=Lvl?D#RM~
zbKt+c{?tCAv=M_0I%%!$J-rfjW-y=5I;zFp(XXE+Wn?yU!67df|4^Tvi)-+sE+9bf
zltjHZ3)AAvtgOx_;M!uw!^7(pCiwej{rl^$64X#3p$0FXj?wk#hJUXY2wJ(fsD9FF
z-y`=AkA;CuyZ86wSJy6P)CwOTKTYD2>T7383bp>XAFK=vQpK3ftpOO}qcO|DkT}SA
zowM!dk~^b;@F+Nwr?wIVasT<q{~%O0aZy#1@8eV|Yj6F_Uk)nkc^5p6ZhKQ)@9p;|
zX)*~gXcq7%eG&G&kOkty=OF&4)N1UZb&6dVL;M=Qs;X-315kLKfNZlMc)Jlzb@QV&
zuTopX!i)@u*rOwj_o1OtWxb?ysi`!R^E50h;ycx*ahO!eU{=OzjxeoxM+ln1a&GR+
z!6q0?4lO?xl_)YLWthO)$jptWLBy@~Zhz2%ldyC1h<wb;cuiG9!{K?jv2$`vOop?)
zz5Vv<{~xS^_Xg_=)jPVK<_{VC-&E=JxMXCkDtmWbVh|#5{!c=ULD%P2U1rfYIt3JO
zI^8`z%fLlaYBR&1`F-x|A(J8ry{oI#+X1O)v!9<Rx`U|2D{u&)*ZVcwl{#P}pj)F-
z<I@AVU$Bj~j?T8`&GFbosnfPDGqd1>5$=jw?3*b!>ZiLX%%%t=sO0<(-<eH)|G%vY
zyi&Aqq!5SpvTnXVu=)SJZ8BU`_1Tly*w}6>5v^i!QBBR*FhuYE{p`eFs-x-3#>S~y
zjVLH6JwTb7Uw<BGmG1KuOzV2~EJs&5MGMR!OTVkcCQ*$JS02bIZL=UDF?3tb7t1r{
zxY3kaJPmt->J8_ukG<<9N$KqaXC~W6$gK7bLB}<~jcU<K0msc#<$uJ*->?I)wwb&|
zK{-)t5!ppxw>K(CKN=$`E9Vkx#HI*tW$!>pBUviYY`k`@Fr<Gola{&LH3PybUh_S;
ze8RD1fxz*D+6P-P<uXDNI3idxkzz~jb({i|n0MVNPKMu_(BtkQZgJcugi!2I!B&l^
z^bW-=&j{F5t|WjLg%lIX{Cnpk=E0GXn=f)?kG1Y6JGJB`W$)$}3Cn<S^(9=C(4i3}
zS3A2PU14hdN}HLyLlnoSaTF+rnFq3UG!pN=cZ8CKOXBZ2W}GCAm03J(2ocu{eG7=^
z3l)x~{}p0?-=~Q8e7wUT9Igju>p=DGusx|cFK2>iz=X<N<FapJjcar;Gxhzu>>XlH
z&&H-ihBMDVI?DUJ;#KVHsmh=F4MW@c&JJ(8H6`e285Oau*&`~bc3*KJKqHWoW);Q^
zPdZ*OcO4eAOe|p+1Pi@ml$(nlOiZ-BsgYypsW&8NJbfSEA`=!E%nHPSzn=Fgh-Diy
z$xAw+ja?DAeUpE!7L)9%Z=DoFSs0NtM;S50YM+snH>-l|=oTt#Bbrm06^0DK%Hi-s
z<bUFm+!n=Pt>PO)ly@nG@&q#PS!8P1nMeT&r%gOC%rNVLVdHbx+1>rAT=s8Gxv#s8
zs{5Y<W#e9XKF<S}<=ER#g~yeR^&P4==|)3dyDGP2PhRi6>ZJJdi2bLHX)Om49@Nst
zbe?G9AlqW>>754y^j2}Y>Rd%)+>#gxfbVWbZAJ}21zX;1V>ow`8e%2u^kQ9@S1xK$
zh*Ih^@wWB7;8gV?29}57tPx>S=iz=Gj8gL2%b~9jk>LcI1dN=H?;*oGCGF*SH<mZ7
zj7}%DA3c2A9qY%yTRsa#_C!QNkyA9u!2BFX6L?Cba5HO?y?IqYt8=)3Z2>zwQq-U8
zGWu;}@{_>Lp7M{QEjxf4G>i-m+A9-6GLQq;{6>IR;13PiKR+J0#Vnurc#lQhBPQ<Y
zO%h-b5i$IVq?6SqeCHuW5+=L=tYBpQ(VzlW^K-y&haG@%F4w-qdZ=IcY^HfBUf>TP
z0iPQE!~_M;)f)t8VThQ8o8TF%eBP&Jq*-fGU#*+;I;9V#&l@N&ZHgk94Ui!;#w}5k
zO`9do({OIGTQgFO`a;7WyLO29qRNhoV~DlUTJ<eL<YLcuIF)PUVu-Z53zzv`XunI0
zEsV#q<NA$4^}&|*K5f8u66XU?&1X@Xnvqf3X)A|^P{;<wr1S6h*56-$6{k+Yf*9Nx
z{i<PlKYDV(xIjgG0s_$UiAP08S8&Y@E6B?BcYAHM+0Eb0xR3&V4H{se><GC}N9A>v
zsy_M=zw6^0{OI}jVa4Z%E6n>!YcT)yxw<UJv2YoZO8^NSl_GK|dS_tCZz*PH4b)&K
zeOibqa&gYz(%0^zGPvbHUE`#elX{Wku)!(z5AWLzm{K#U)OfMM3j6ls4{_yxAC<-3
zVr>3;RW)G)G6cb-x{R{H!NGb=2#_mmYv`Any^oe|HPE_C^#Ru|?TZ=tqF@RSi@o~|
z$C&x7R%U&9eoD#KCPfb?hsd!iy=t_JCMK3TlyXpQPiznf5PKk7yroYZcU75d%}=sC
z8f+X*XC$3N`v>4_Pl94|&g_`^Rq`YjcJ;pGcWg8<VA7hXr)8#9tDV?>kKS8Tk=q{A
z3}<*OD2Z+_Z@yZEl2MS-nor=ru*)qdhd-i*9$8`>1&mdtJj-&9Qla#x@5dZZ3x((_
zxEpbjvsQvLv3?DifNif8xHH$p`P73gKO$wLg%>`mY`ZxAz|ey7+;;ArTRKFbDf8tI
z&I;RldS>ZoCvdNWabo3CO+J@3h{_-Kcsk8^%BC6RA`h3v({aQO$z-pYqaK_P$_=z|
zMQ^|M^OZD2k-Pr}-?RN$W_^wtdZ_}v9_Onc-%~TkeC+oa>2W`%ovvx<KXSJ4F$>wu
z3Vmf~Q(VYj*y2DGNmHs&O|CNLXlnJ9XO*8rqRnw)^Skq+ckN0uW21XPO40xEb=FZ)
zw)@^6N`?+aS_Gt|hVGJ7QjqSBp}V_5K&4SY8tLwC7+OL=Kw^-V9GdrL@3YT)_CC*Z
z{=&t=wP5c1x_<fnd_$M3Y&zaJ*KfpBKmk#_>Q(P+Vj`X#qkyR9Ow1P^nqN=f%{eC^
z2Uy7l8MZg#Iw?WKAmY~{JA#8h^{v8Zzv=$zxdjb`22D`+k*!P)HabShzfXQ?9+}uC
zu(HMB^Ik#Y1KX?o)xnP>jd4?t+>;X9_0JHj0S+JbuGnN9scO;YSj!E^{a(B>T#uL$
z?jl^VYe0=Cf*QZ89_tr@`Ps?zh6*6c{cQF~YCb$U`x*T@dTI;L&IeoZ-4?xp-*`9b
z3eJ+Uub-I0wdqfjy;SD@ARjFQjVe+4_J(?+;$*WvoN7ZS$Rizh$~=Og7ZSHh;^(EX
zNnnJ;d>dg7b@W?bk}Wz)hHF|WLBhY4mD}a#MjDvpHzC?gn{Z*BM{WInC<OYBR6TXt
z<=D-C7M;cYvi$S|3hZ>35U{F7I$(sWh59h4h~uFi3;&x$gFh&c7i6`!1Z1^BeSdZu
z9u#5T4NBI&h=Vf2#b?9!7oPE|Pl>XB2OkCM4;&Qc7JSVPnj)><FS+$knr??XB;y3;
z^x-lcme|W58^wZveVJQh5Iz|JjmnthdAZOA<D~D|m*OXtJ(gzPL=xJG0up&Z=-<rX
z<7GnY@Q}h#YZ`z3Gk-C#T-Cer6|)k9p&FG1m0LE&E?0X7EWk6(Iw$vuLaTRV@5{|E
z1dO)?)JV3R{oaW^Dsis_pje6NkJ-rQfnsza8<o`8!a*BQa-PE*7R8y&%m%7a=)LqB
zNVdK&4si27N~VES?}Y4&zL%5vyeLZ!GAk4PJq<Dfy4-HWS~5AmjcyT7()bS&cO#%^
zSpsoC&dENo^o$KnY;~t}A8M7O0BkJVuP>g7mWk4YScgE-F!g}9KZz)WFs~=k#36<=
zy(*t>F36hd2OUg6w7g<+=PLB$QZf)+U+6JqdHAkt@1P=Dfzg?Iw10dxncER%7s7OL
z?mB;k>8IOC(n<a6*&RuDP2^2@qzl)X$242#(v|YT*NQnFs{QY8yjyOxrc^qWRRJK?
zSCTFdv(93XI%;sNYj)(hB?#i{T_FB7`jB>hwZ$Ck>eU@zg@bdolU<f;-}9eiL+=pT
zu4g>r*ZCE8-(~QW(%y73KAIEirA$Ndsv3H$<R#%=Ou@!1Q=cr#kZ*08TiuPhU2&1&
z!-d)P6!F;5&s&FT@m@=2EAgI^<s3nZs0>o`=50j(b(66xqN=Y(PJD3W_2=!556&jf
zlew0}$#+l;lKA$bEDLi)S|Zz3I>pz6TPm@t)*y}u{f6T0<Yh$MreNoM=bf3`e%f`o
zh{4jmG0FLlEX^N3l$y&9e8!Oeqj3ArOoHDSRq!(s=*iPROH=~RdEuCJ_n9Kg(O?!V
z5ECnF(t=LBtdW^np2BDTw_7PmNw41}%370?@4gM)4OTkN!uW;fptEkil348VI%;b8
z)%TzEt^p-J?m32@%BFfM&m}NEEsUF1A}MPvLZ7<XkwTgZu?2He#)4J(p`+Agt`U}^
z*kGem$k8|I>OW~S?lq6B8QqlIofF0)=IB~SB@>Z3sx)m;@?k@oxbBJf(l1|uT3dew
zVK|uQ-Z(gdl90kSNcrMjpTu4cuRk>y1qNw3BFXBPgC|$~&$<fYQ>Df~0){EIx0OSp
z<+{2AVJ@HwBgPCT`_(SIzP%!>D;ruuDM2e%QlXNL+?xT8lSB`%CeCG0$U(^CI%6;m
zYGZy~If_Sz?BW0q*7(7}o3Ev`^rr~VH$A2l&n^e$sWR5gK@(HEopV}`zRb%1x$Wf#
zrqBgr1n0(|k@Gt~bXlGOzqL08p4(XMT=j7x-*AB1Tw5JcpNd8g7S({f+7`-4l(<CH
z;qpSfM^i?<71atl$yzEDfB6Uv9oQkDHSkIu;8j88bH{Jn82WIC*Sa0!GUE`~9RAf7
zPt+tY=)AF<VYH0zPM~tLGR}RHj^_;(9wI`mf|8!<-rp-1k=x(DR)Iaq^QX(tvZC4E
zk%gqi=+2bwfW7a{WsJ*WIx?QOucLw#?j$0ccA!@TjA<zq9{3y+^ZbZXL9<`69UFvi
zjD)Zs%uGVpWqpNB^7*dq!@_S&KhxI6mF^3a51>CnL5Et7a<_GH-mF9}qhI}We<C2~
zpWxW8<sMSsJF9lT(_+KHC_G18ZI9hnpiGAKwErt}_@CVheqLnCZjjMLwge~8h72+h
z<KUQlYensP57gxOtxH0v0^L`VFPV4S$^olP+x*`cPo=Of0E(bFklZ#aS#p5_b8ro6
z@I61YNE+@Ui{0bAdm{r*^k3{a_k40)ys%~)IxGwJWt=346SgzTIlwa5xI@J(4J!1?
z5lt*|JT+{uReC9}7`fl3Qzfvm=URrXs7bx(Q2{%eOVVJ;o!CdhF)zbth;#N-B$p;m
zroT8S8yzD=0Tlh_dvv#NM+-Y+NNy!G?sdJcbk~2JdL@7M8euHE2{F0-#Gq-lTtrTJ
z$YC4wv94+pTcx26kpJt{vn-dSh&e{wgd^imB0-2fu^W<s<LK2-OFDc%o~66aLkZa}
zc(PwNvpn*$7Vfs{)=9tDdE$qNrWktr452dnYWCJ6<-Ao{y&uG&FDl3ELBL5RFCwnv
zP5HaO{62e6thGWanR+-(HJWUaBHpOmYp0}jlv*X5O;zvx+fjG(3739^tl+Th^s;T0
zS)c#|xUL<L_m8<X9o4YxbKp6g!7!|=CA|Qv_U`V}neVLFgt0X4Wos=bLh*c;^h1PF
z@qtKh)X?5QLzN7V5jX~KP8sWB1Jj7FIQ!qqRd_mN%<+6FreS%W1M24%mloE#AF_W3
zRS$CNUL&3poCCvS<w)>jN8{d2=%DvEU9DZ#jX5C2b~`G-Tq2t_Sv3%9w2?1@7?~kT
z;v1-@6h^~bdyI5tzi(H7QMl}7JR?VBLhuSTtrnZ{#c8aCbPb1{pPh2AAD*z&VaRi`
zfpF!v3U;ZUE<#~@fe#1~gjS>SzooYSGY5b8_XIEM&N_X==uzCrTl}dG+4yH46F0Q8
z$k2nf?pqGqnSqhinV^N0Rgvj)Bj9jwWNWg=A725suoa1k-+kV?^P+%q8PRL)<j=jT
zptk7IoSp`f?#$z3-<)%e97@$khF9D0B($78uU@U{?<;3ha7K5V-!GXl-HWhhPjG%+
ztE%msL>*S~xNsqPGY@T)B(*Zz4|q3!;;o-}p4X>}+>ZK2Yx?POA0XH|`<n2xJW&k4
zlzdrTnhk<1jhB~GYtRK9j+?9h)+&Rav!d}b!&KsHdVZo4zK~!LlfyPIck5j}T7_xD
zYD-pGtW;%Peq9Ah%VBQ*sQ31{&VJa-??QR}4a?#fZ-fV{^w678<^oj0{ZFp?A8lbg
z>-Ex>Zsv`(fg#L#EPW_8#W263_9GUuumu($3sSvB(J0<TvfX4J>yeqsBA_Vb>Gf51
z+$Y`a*!EbrTpoV=X=VPrrJ=!-37A!4FP{%*cY%cus39+$$!quCVcOM%Mz&EzSTB+-
z;$XQ84F{Z}#|JDiJclfGyG<_yn=XVKH6|N}qDh3Jx~u?fw^8^~#z}}TZCgBv`E%zt
z#U}GQ$SAbna<PVE!>tmZwPTNZ?@>uUt6u>OYwZ!gv1Blb#2QxpW55Fc<2}G{M15d{
z0!!E*Ha5&|NqKEk%`7a20q<VFws^YfhXLpGg%9=_Kt1?^VdysVPTfClht`0Tvw0|z
zz%S2X<-mD6U(J>5^7U({;~uK9L~?t6%{j?uq8J$ZWZ!p}Mc$To_=oQ>O9CAc1}7({
zD+dXR2IyS*SR>5y`fRsw<Oo3ncY4_S<PbzL`@8lPNzfJFFp_W;;AoBU<V@wjH0IAO
z80rV;CWZlD0JF25tIC7^YpQAKivZ7Ca)*0h2N7@w_c@E94nf)cBAq?R0S%D+ur6P`
z8;>@-#ETsNXPpVXf!Hcc<jE?&XWFaFU&?FKJ4qX9>q!wcMD#yG#VS<yX%junebX6)
z>pI#KI?hUR$z^)!y}FMi-$o`}*aKvbLL8E%OAgruYN`>m&fNLfxmX^SYJ(x-idpgT
zm0fN2B}NAVy02wunY&DHkVtd;u}u?JA>$;Ey}#GUf_G<0$aDC_haxXcaC{ga6TDer
zG`t;c1K!1efukftwaq5cl6X%<Zrs~%>6{x9LlIsSBW{8IOTmX+iMj8i{1o)E>?JZg
z@|p1kP=j5BU2Vbv6y>;HgPbH`;?#u}+SW3OyiqYy!zx)<HM#yftJ4B7&9l|^snpJx
zCEtN_Z5bqY^3b8f+#CvV0z3yhQ!TSOf#g#OD$M0uau<<bE9wJ{mKU7S0?DS&=9g58
zV;SlD6HvC6eG!g|8DLg#CfvR*y{$h+vSuJ~ES-*gB}<3^JEWWQ5x8t7!1T6u(+_V%
zm4wtgF4`jdAPBvIh~HN+&Bur4(C47a5tt`Dcf?pdERknxl8TOrIa^T%+NFZW3xGQI
zEYD&*v#bHwgRO~cbqC-L+70$!_LlcK1~VYW2^*V4L(;^GA9<kea;~nSHdF<77HZ?~
zcU%_jYVt};U*S>=&OQ1JXw<8LU7nZb{-y6U=Ze-%yy~yKH#ajacYz)EVPGU}{s8TB
zXa_7I)$2+KxXQPu3wMtIWQ5*X8BK<|=B~iQ)Zq$o$R2^~6&sC$fH`jb=Oy{iUgc_r
zcmxDA-{_RPYKm&W_}~c63r^*C%IOsEY+aRz450n+;R7(PHN(Ken`4i8*l~zSaLB8z
z{Tfllv}>j7iAnb3MtVBwLS=^}UX#(pkEvC$qpT_{82t^sX=z}>`1`1Rzk?Cx8GEdJ
z$|uS8hfZqf1LcOIog2JMGL#qtczrqSL6%kQ5=HK`a*NmWE6cBb*rQ?^e2xL<7um{7
zFuI3Q@%<{krPO8K)*0eQdW()vL*<97HVpBF+)D~!n#DA`$KcK|kKBp*Y#~{yJKfzP
z)mMh;C&#(w$q}fq7!3gW=&BSFpIEx|xfk^5Bs}y5KTK^Wi{9Rp^b+<3<5coVsi=r2
z<RhwE05#2+2itg)%i(g1&*8z(u&}L5-vbdBxWerh0j@3Bbe>2t1-hz5jx5LSAy;UF
zmL^UD)tpI7l*4^HgAlGs-B5!t{;r@?cduovyw7dzQ6@ACX;+u+&&ic>0PN~$D0K6Z
zM!D6p7>2q0;w5O6OLM&r1>UTp{dR9_E`EScmS*!!S{)^Ub2O*Tuj&gIg>Pseqve5g
ztS*g6!KxS3q2wR}+)l-jZfok4mo&oN7sq8U<=UH{xh#fl!QMkvE!DH@&$-WABR0e8
zVxqtJkcO^=XHCuVRFyV%v)sG45h>`Bx!5gyI5Dsz*>RH=C$JI(=M@$T%~^wypDXCA
ztDC1?{ICFgC@gv-3Cd~nnAq6dSM<Ot%79mMr>Cry(Q<1(y@<#t$C=o*ZN0#5>02eR
z(ZLd3fn>yNL6OxbfF%<$G-Pc(vTRb3zj(;cEM<{)e}jpoDV5iw1KKpMV`X3%sKXic
z2h#@tv=?YfZOWlQJJM_A#VCgNA8E3||LxiI?>1&FFOge9LE@*Q53H9o;N28B>V5n(
zA84Shv;vfH2~KXw`PSj_fl{-em@H27=tcZBR4n9IwmSQ`p}cnEzo=`@O5k>K!@?(-
zv_k0kbhP~VX5S=11**`J+c=raXn|cQi$txGaiZV7_MoqSEA}FbGVjwK`Kc5KY_9ef
zY_kN4R&uGWlh!62$8w)O5Lqm*bG7q6T5In6b)>EF?iVUZic7G0ES%pGhRy%2g;@uc
zi&qEklkbKDa+~K`Nuy_=D8o?F)5l=O-hG-x!fmYU(7@U07k)J8u(@<*v2(H_ZG}?k
zO!4C9!M+SBO}_@dW?Su5Y{*W2*9$x>(Y|ISiUk-xg5zml46)u23N3%~8K|RmiXY}8
zrf6qu&Ah!PVoLAMXY%xmT!!xmdCtr;{Zy*M!gwXkloL-4CEpUV?M0rwT~+^5;VM)K
zxrP}VbIg3Ng6*gt8VnaZdFIc(H=TN;w}iwTjY@yQ4DvoVKjW(Dso+S$`R(2Buo9P!
z5G6&FJ@zGcG(&Wrz0xo!sH2}A(#ia71#fNWg<V6YUcDF2D%QI9#pW&r9%2hI@`LTe
zwR_H-udMXr74_bea#<33;ZS!`*Tc531IB=HVJ_|9gNvP#tOeg$=Quy~E|E@H8rJ7Z
zP%vt%(9rd#ymbmJB(T%E%_^WrbPQfOY(p4Gd0T5rnV*|=0wmb(^~t$2JpvWf|8O@(
z0^Vxin?VI};+|Wr#fTT*Zc~pfT_WEz`bu2A)7IWjy)jv)`jh~8%VB+tQ~?pR#DK&P
zQ3TN}5+}=*5{>qZj>&Y?v}}#;cpr6HeZJ|84gL1AF4n0w!}y8+{dRQdaj$%6pg7Gt
z`_aZ+Qf7P1oD;Abz2Gt;=Kb@2%#lH*#5Z%ATEvg2KV5sxo_c*#3>vVJH5^BrC!%*$
zlNG5G3{3<dR9Z^Cb0mZ$?sJhTMqO|Yc-*4Lk8+a&VhgXMXV>oB``+-T9KmyDh?b8y
zxi(|cy7;hdk*Qz5L@6(t)<AQkNV%(|oZNFWG!%){!QOV2-~j1kf{0{izbuZ9J<ng&
z`*xe&8YPtzv00+aT=2pVjx-k+$&c1V=KNc;3`mGo4Np0KVj9iJ#GYtvT!+ho8Izvi
zNp`eta_rnJi+Z5M9~`hivV)cjbW4o<v=d&P+@HFwH&@PzohX{B=x?=M#i3-rUh?{5
z>bE^nSeLQoyr|P4J4-ffAnVG-+_AX2WC+Gpv|j$iyZaV+7GzXGRi*>!*3$)P!0S6u
zCj4~WkZ^<tE?|5&QYRJn)t9;}n3M~SuI)Gn|CANy*}lC&&Zf~e#nyq{z2bju=bD)L
zpN?+-|8}U9r>-0kY>a4PCmWc|I3VW@^&_jPIt4J8GE3i|iFl)KT~sd36gSN@5}e$V
zm!8v$&OD~$rtUlS;S5HJO3sRQHF-)lz0OIm`qp029IRHG#G}kQ3%WVYsXG`TI9Ht8
z(kf8mtaUcf(#q!5M6XL?PVW$~TjTm}G=<gU@{5?cgyX)Lw!_7jYEM;`rQbrsf4)w_
z&aRIR#eY@IYe)BF^6?7l(Bc^kuN&39mp{@<oRHy+6#ezP#~*54B~w47H|QtyDkrQ6
zywF=4AduPB=U(xfLz~=I^-}Wdu66iH*Pt^wn7HA6!2OM`NHTO>FMdm>^DrRHlGRM!
zJT>S8L65YoyTr|wLi(^UxqOdU!<VgUdbC-hJkdBv(k3Zl-DNQ%3!1ijvm4WaS&;#T
zS1O6;vFc=AT&<;$vbS2>c`ns&FTXUX4qY=>vMKUnCt4R5L{1LVNJZ`{ITY1;IXNpW
z{^AkvG_eG~KAbHpS5%`&;4m(~H>l7k`nwAoct8^nFt;`mNI`T~3Rr`{Vyn=up$9)s
z<)AGUzzw15NO)DIQ-{g&sMN4SbS*va$4uN$gf$i9$Wl3~;_~rNhg3;FyzRA|$s2tK
zo@x&n9TBk?e~?fVZ&U`L41RCW%5K<tV++UFLKdZ;U`UqrWPZ?KdV!>KW3tn7*yYpv
z<XJ-Pq@DiNnU0$FQ_iLZJ1d{{>;7b63WCrg#UB6ZD}1#w#W^{PkA}DwI$_6x8kV>{
z*mjE|c^}xfZ*ngZiA&J#coqzaO(-x;`B`b5y%!1Av)TNfD+6axe^-yEgK;oAz$MG5
z2vJMlzdor0y+!FJ3>im_SE3TJ$gN;-Y4?^WYK!Hl{pz<f-=SD$x}=;XM*?^3D@X{7
zDW7fdt2M$KPfTsvx;$cKlmfHZdT9Te`(bB=e$Q>+xR|grE{*Ve<;78Qh{e>)`eF#{
zXSjMr&A>T-CQlmkjY-L#a40!0_~evESe2j0_Ct@dVHRXQ8voT?+hWrttA<zIC;)A0
z=l<TB^34hVXGa~D<T%w4>lAI-Ywmn6_GUxxa^S(ej}Qm^0JJNOB-Yi7c$kp?|DpQN
zILyt6{DGqSQQ6D7Fe>+XWB6JOJ1?M#E86~E{OJVgH4dORh6DT;KEMGhK;;)8=nH`a
z0X}Sx;7mg9dsgAtq$ZUlpcAUcsX26afQU$XW06SNXzxs@v}AXI9{Prq>n=*QfqFmo
zA|va>e(fLU@|){L_EW0gAu<R@Y^J7x??D=N?7PUnewUm(`6sHqWp|6t+WpFK&ij+K
z2YYm7)@LJKl8x+117@kZ@0pGj%2QjscB6!@(0Y7CNvDl4o>+c`z&UXb-2&y1kdO0k
z(M~Ioy|u1_X@g{f=AW(n3R8Cx9z3!?{AYXf@+)~3(@GLuI<;^0Tew`NzpPj<fF{L^
zBi;8F7itf`Pzeh`Ze;E}jTntT2UKwfiAzy2?>+x+uA=J`PeVH4{GRrfAHH>+E+Tti
z?E83Ai*SB-&_1ZxDT_&_ost8$sDbTWmXk`#)u3ASx9_F;PrUCCB=fU>O3k!C?KF;)
z_}hqi#A=?y_%K7{mpuA|m4DP@D|Ax@?EBZniHI30{t{5@E`NjDWL4>M-&q4orSf;q
zO0S;1T+rJ!rF>Pn)#-AM8HzonTMwc2=YCG&<6_$QmH^I)ECGHaE^HVQxBUS^kFs}x
zd%UpaxH>5kd|kbILKO5ThFMrT;CBCNqFnR0|MA`-&$kS&edQx8QA2AfsA#j`!ehl4
zODW8CX~T-$%UI2Jyy|EE+xT0~;xwI&CHf^YhBXeozSMKKrlv3-H%jzU>WBrWv75-5
zXVjTxNV4uJY9T%pS?N=)TMfEB50^tD_>V~FH8<TqqxF9U?SKCgq>mCbuN0Ocw*t%`
zVE{emC%eHX<2!bp+M<O`V3lK$!e_54&RD>CL#}7Mkce3W7|g>j-nN*L$Yep@eww^P
zkM)lTM@2U(U-$5|q)RO}6c!t&I9*4Ib3&hvrGi0ywR>RlJY5u7=Tp8lE5&~Llal@u
zi`bVEjmht!BiQ~KrjykUvx16iV<-zGwd=C_qTe|dOJ3GXrLI3kLg|Q=HY~4JSj3)2
ztg@9Gs*0sIL%Ip+ZW?<+Wj#SqwD!JW1l1SP)T2x;^QwJK2hF`8%frouD09$cJu7=T
zH)~m6kd_o>+xg)J+piWf8CoeJQZ;R_4>~^&*3Ngqw4K<S5gM!oby1JIqmg6Tvw-OF
zXIGh5FUu*xR{!H2l-bvLFf8P!-`4Wr?Jw`4o$AI|o134ssE~{KOnXsd76{yNJkUsn
z(^Ppub&&w+BiihoaJLZ57_#d3%^Lf1`y&Q>di%m@{VV}~bmwuWlSVdD2{~tk>QfEI
z<S`xHvUx8mR<54@z3nyGOrcH@W=;fzxR0}rN*~PsF@<BLdrUW&dEM`BU?lfb;l^h{
z87<?8c{jEgUG#1<{|*gpc^36eYAiY@u9+j`Zqd}9fin!3S&1zi?Dt|m4uoCm-|S+&
zD$3UbtAdSYM8)<@&#Q1OmUtQvGN`S;d#>onOSIRlZB8<mutZ)WM~ko1K%CZk`^!|I
zYJZdP{UbK1psJ2v+D^d3u_B5MRSAo?pSIg50NX%bK)`|l=z!bb&tr)K0om-&d@LHf
zz|rIG?pG&(^th=qz)lkz(GaUyWMZ0hlACEoC3MCPCTVdov1*~$QKH%2V|^WY<GLi9
z#mlm2wcPH}9E3rKYAQ$K2w_ecH?Y(QpyCZ-+g@_=@tWL}$%_)yHXgbDBep_9l9Y(o
zl_(WMBJ(LB^(Mt7&am~*m$dV>)=o;${wb-p7BuzR-&T>8JGb!8qde%6?M3XXv99de
zqE~Ev!rglrH=WouCSzCGI1;b$bVzbmlyoRg<K4S&Wchz(G!T=f>K}n!Hm40zi8u1!
z-~3(#(n!o|X;a+C1d485iC4aGv0I<R6)u!rR0#=Ql|!dhVh#Cus$dB!;XRw!MFV%g
z{;v8m1C%!Jwt1Vb_p@178|ape95l%EvC5$Y1#K7l3H~)((*`ugo$ZLhxq~}`fwqnI
z!TAtl?TfxQwB=MU4E^G2mUXP!{rx12n!i*Vbt?Pa3Hem;HRY^Z7hRtXYaOqfguO-_
zNE&9)WybqtT`J$>CqzlhcNmyvT|+(@z@KGuWV(Gd(v#~wryUQ|(lLTzm7k_qsxJjd
znU_o#uLfD)Rv6qai$MLqfI}cky~uK{Z<5Ebv0gz$$v$?%Yb>`=`5TWcw>%^7STd^?
zFgU({5ARP!><HpEj%#h>n=E0RWZe<z#9(EKis-V*QjohW#}sKP|8>>yZx@g|7<shW
z<1q6%)GDI3V)jiH@<f3m`KOEwD4?bItkMZcabZA55IV|?F}Rp7PYghcY&FXDtn2O1
z1S~(=%n8*ur2j<MIXS>rsI_{(o$ei*W)2(darNFUw^n?kh1{=VznDzlpr34NpF*TA
z_$UX`X0zj=U-8R1TiW|15NYN<vRp}?ihdUwaNXK(;zS9WwNmZ*J`l>CJ`;uSW+Dxe
zVY%%+7H0_xksAKSgaeaUh^!ZjeVLjRMd)=RXx4IP+%EW5hCUTu54GNfxh7NKGs->6
z0Adhf-wTaqpuE)Dq$5mO=472%u%B*As>>m8-u-jXV<-!u%^g|GJof!nj`S;M3TIQ}
zf{rDD@QWzXR@_&6&6+aZS0{Y%smWBCB8F$CwW4Rd4wJCBOWRNS3ETZb3P)0K`~%wk
z1&hU|F&o>MZ0Xke)nF7X3Sl+K6=_2w;n1Ls@htmKv#sE7p4w_p$7^Q2<0-CV3xufC
z7f9|^kBn3H?2ZL3S_HP<3l%K5y(;J4BhbY6I$t*1$oo;HY0O*B6tnv+Ta>kUyftNy
zKfztqGETpvT1R{2r8`UF!dbSfpLAutT(jpu0q<eoZbUyba*H4`4K|z#<78b(Ixh5b
zb2ChDWN)W&@8EXbr;bCP=X7^&T;kcjl7mMF-a^1%$E0kg=M#DQAkZIRe{>WOO)piH
z2hy@s3Z-7h_gk{>;yrt{OQ3ilg&~uDk&uP>HAUZdQy34~Hkv(xvY6yP{T$}l2AU~|
zQYItug%Z!cABs44sa3WbR^XXzIFm1%P_)fO<<XE`c9UPzJ&8;qRoHc*@&F2kxfH3j
zT`pWgCNT}N6|?JSD6dSDT_KcEngb@Cfg7?IUzuizW-&S3L2_c2b@8(s9*ge_$)$mr
zOuCO|#~+iOTH0~P<*UywwgHRElYQA)LK!(ExLEB(GkujbH<`M27k6nWH}{O?a>*`#
z_E^ql1~MPZ(0NtysL#;3^7P*qUjLmVl1y))flldXDT69XXT|*UCgGt>35<4nYWAYu
zYvd_<Fk6On505ty_owwD$E6NCL~$5+J^1^hNV0AoqP<;fE&LWY9t@vrD}?ZnwPNP4
zFAVHqf(X3iACc!C4PW=a1i0xm_oi1X_m=vbo?-_4hWHpmV!TdSpkXE*)33;&wZE>%
zyAOEDaur)#D77fMY@}KYyev9D{6t~&okN$%d-PvN-JJ~e%45g!4f6;rlhQlQy~%FW
zMa|IFuH|^R%HrmNiLG_UpV`dZJau?@^gPu8Xt7!*vuK;>)LI#@zf^R0uLtJnZrwk$
ztU@@sxPI21j0ug~&R2G|-W-px`Je41tRDTa%-TOzPUjwa_wHRPd{lCIThR5l5wBgf
zhP`c5qZ@6e_tp766tMg?pDop1AAZQ5wX0}a$Fh8vF)RRiK76xq*>MgXhiqfv67b<`
zcDeogU}xkZA&v%ePZ6Tb&9Wkx4V%!@n*&=E?oQQzVZwtK0@2G+Y#}VX`r;Pu+s1R>
z=BhC-%j@(ex-(8HTUy4&a>sA}wNJB!RJ`_*tnc+$4&{&D$Yz(tT37g~&%qprh0j)d
zLvM3?QRHAQ15Si^RtUneT=9mCguO9HMfIN{c;1VEagYg;woOXUEHc8P)534{`{r^)
z@8VmD60f;AQF51|@z1iPbTq7&FjyMb=yqY&0m(_@+Yk;h-wVfqKz3$kmvRhz!oVmz
zY8B5Vr-7zFpOi(n<AA}3dvb4_=#|w#kzu=UQ;cjS=vNT1)6U;u-w2fifslfMm1|UF
z5I}ZmU_Jq0bsm?P3!Az~p_P4Qz~U;2`JIr}sq){ohTOSO-+_$yT7E73?3V;R64Mzf
zD-H0GOTE8n%(_3~yvDL~<~4|^rI*gOKpl=@{<3|_tFJ3yc*1GHArvPanD!WpR!{r8
zo=%UUzNpWalatJ(l<k+F&h4w&FfH1vDh&$G$=lDOW-9HVjFeBM+}%IcPbtCMyV*6;
z!=^R%_eN*W|50jHF49i4s|$TfnjC#nu5Fb}9LBQ~6C*#`g^tH7Eu8_|nIZp7@2@^%
zQTQe6)2H=R1i%uH+ZF@7%@{y|KD@^BE;vY_wMxuNV6#@uz`!1`0pBCJhTItM<qpNe
zMW3Qxxb4kPYCjRL1Yv=`OKT_UsuH@BCuL<hJV?=2@9ea6ZPAFj?V~ZVu)aK(NDxQ)
z`}%K>9?ZSF+;%-Su0F45AMWllC)N2<nAG>9>0JlVS>{HQSuXctsMQ>Lp0HdUHZ=H#
zk7#xQJ^fyYiwC+4GlS>p_DgXgVtEQWF29fx+hzQ-(JMYJWwdx61`{KMHvoX!Rk>6{
z0|SE)_b2<ePg&E^7tSE-`+RxZGbJh3KdST7AjZKZRBE@iA84^}IZXRg=L~#C!(Imt
z1=L<}93DP?1<H$;1t_+$C6>#rUKRj4w>(bE+M3}-W1Yjw^6Dca0H46tUVQJiJ=F*B
zENUm4Co2pG^QVAnmAp);444%Bbz-R+5~u@`!-><0rokshI(KB|Rc|s}lJb@ym><F~
zdbwh9!GpG7aZ8wz5~_gB7j|w#PV`?{L{LF!CmOMyk%8A{QeahFxTwMnFwe_)FnqKA
z6aP$Pf#ce^y(e;fYz!9_WlRKN#gK;pK)Bj!_f5Qp=ouYLdo{{bTpkC6H70$6%!8Gq
zpIyd290>FAF$4d{-nwGkWt*9~MB)1UQmOMfYgrS~n?a{?l=J!e$u0ro1qu&g(_W+L
zZcOSYx=;|g=F@a8SzLF!;bA#G@-pU-XZyMtm&|h+pJA>w#W};R7ngi&E2)0hEv8N-
zN@Mw5={!)tjr#AK0u$fyRgeM;+y`pg{^GsiCPYqM7TZiz`~1V71(!v;x;JeWAi5sv
zV<`#kb9=PzRgZj*x}Pc06nb=(BORl6b9as4+nr5H{iGx~=zDvH%uJDBeNvcFTB?9(
z+4=UVZ2JzA%VC*wU@7I|_h}<7BNJ0yIjFi+KIkbNu%1i@fMDr|^70fRhO5873(jFO
zlQ5%Bz-q^aIEiNMB)Doued`><eyHf!d)Ko=^f7hP+%kq?7K>D0@!%}3o3%E&_Q1-u
z={t~k!es8>O(D2>fO{jm_$P;5#b5l$`%rOU(Z9H~v^Ex@SK_wP{Z3t704G49C!U0(
zyDpf!udgr8Iu0waSgkM}(9#Qi4e~lkPCq^6hQb3%F86AFz)Ndn1gJr^_d>2#cG1zi
zX)`5!{Cpr0Z`VqN+gHR?Uou_Qlhfis;xaPnHLn0vn<-{lr^Mhz062k&oL3MF)WpgK
zdpfepUf+$DG0Z#~$hNN-B{F7Ezi_&{G{)VKj48OWiON{spn<_y=n}8TY^6fj3;jp0
z{NJ+Pe<j921>xdcyB(7|vW$QE7VKG}_C~Y?ynx~1_zDoh0mp;6RmJclJi8yNKSl88
zA_q>zegSlRhM7#2cKG55-dRNfa-5KT!1NR+!q8{m#k9k`Y%|b{hpys?tQ;Ai@Q*dn
z)qgm)K_e*l3vt*U|2n7X6BUMHn#94+-u%Uj_K$hdL@mAw7D#c|-x~U_v-dy#Br9&z
zF<{4NV9DXXZV}U1+ECECsF2ViKzVC!RQe*A29TE09)?LUz%uMX(N+E)jAkSeDEu+A
zRa#n_4L1fkgU^8ja075fM$Jod1wYQq4-?e}C`9@KA&)36cx~s6j!(9lIZ?q2uk``s
zA}4^*9Qy*A1LFT`DVhqKoAK8`*IF0An%&}Pt*<<Cw_Io>xn)xL{^q)#%Bw)FkeAo6
zN#O1R1$J?y_IVMh`>^$-Y<CMVSbzaMn6)c$q}qV#0!8?|X?&fz@Zo}p_o)?g(VujA
zTF<kcnUN+r6=D=z_rFaSf*y$j$pRVZ9jog9zUG4Tk%IgXKj(l(>@vqsz{k<E&<(hV
z?MKfm+++9F<AlZ><J_-+r5UJP2O!*W8KjQjm+=K4c9iRx+<>8kvpq_Ia@N6AC&aMU
z>O;u(cQs|VST8+{1pA9Wzs9P?wYAe~Tmv1E6nw!Jf@iNDjCh6I50-v#EC4i0tAXr)
zgm^<>tz5zr<bg)cXOFE%+6s6-S^zaWE-FaRWEXWc^f7MjnLUqua%uhLR2ig)(*t7;
zO$7ijmt_Q}!LvhfISW5KM>9W`$5tH&m<5MZU)&e04?KUErwI6>Rsco*G$1SAV(X%t
z5c})o{^1;`#s*@7@<>!zmHz5OLPM&(1fX{~v0mK21#;Tr=x@Ilt5MQ^b|G1WEJ#nc
zsh4QXz6+551b~}J5RDkmMaV88os(;Y*wiej2^v$>pg^?1r6oNElINR|>L6|e!AlZh
z&q~woo<FiRRPv~aLFUN*R&dj|;tLPqe&<)CQCINud-$lXotW-CXZ7cLF%69B8m=;-
zz&`kD2zrY}L1Cc)Yrt_Z1~SH!Xyw;u3UFFm5Qe>|LC7N<PC7cegXaJ1`o;%y*Z4nf
z;F0RmDfo-)ELz+d(3?cu&>H(&rH_1obhNg%ZoDkAv>~~HEExAnIvc2{7#Z0sr*Zc6
zjjRByiO;0IsmJ*AxB2@Y!`C?mDArLQIdXxhDZ~v0KJqnFDBN`bd2$@}A*bzquAOQM
z6}xdUdibp@mEQ&`$_ClMQ`RDf5~|H^!uaRGx8c0NaL$F_kwe383b#x44;jQLkmzM9
z<<g1`QD4;Wsr;ClYM}KvoC_@9Yz<3gOT7Ny5A2^8K>AbUm!OH-gOqxW|Mes8#;8W#
zl6S!07LE@h5ppjD<eWN*OgH)@tMm&zL?EjiKBbJZzaDVxfl#}7i9N(Ob@Kn}!|RNb
zTwQeN-~kd;L>x45_F*LYcb8X!DiBtl=R4XMx1b<fTQ9<P@k$|wV(qZc+}~V1epjEr
zC78D+xcH&ncc4vyNKqHEBd;@#7MFaU4Sg$_{muMf49x9d0n3w3ZsFMk#MSQLC+OJa
z5cXTsu(T_f>d6_F{L*0&3VA#0MU7#lQ5WuZjmEeC>-X_Sol-U2h+`sHi3T=W3R+v2
z()yP;%I0}&6vypM7jOk(W(|k->6T_qN<^bs78>K8(7E46B0f$dM7yJ%%Sq*l;~itA
zme%QQOtcf_`a(6p<=QFbpmrdyW_JzqB84xEWhi=F3!OB+hyRFbQmkWcv2B^2(n*~y
za{<_j(oWZ&t3fERFyd#r`&Z~xFz)sKHhoqD+F0w~b>Q$-0BXDA>u~J}81+u|T|1F2
zSAiWX{_q&+=}|OLi(O5|!-CMCY3*MH+?`OJ^bs4ri&>$ht=B2JX633+W25BD5US9J
zhJRVEduwb&Ngi<h##GE&A<S>I7wr~4TCbQ!?E%91ks3!Sl>PwAr7oGM{)?FM-?<_g
zK@dGF$PvI*W{8~6_i#Sdk+oIPR98;}3~18uL@zoqP``&VkQV?GFfL&6%WVi?ioqTz
zK5EJOS2``!vT35G0p?2wxpUK}d$TV=Mn_f|9W$T(x@97;V+S^&I-ZQykhiD+<HgDz
zKs?$E9YI?FplOZm56%-H80@>YTLHRb7$EkA0`NOCOiau@QxlJER%*}Q{!0`*VW9e4
zcvoiF;@$h;tuPHRglv8Sj6QA%me~D`%L%|F<BiPjO)O>|ZO(xgy!YdEXtr&;JS1;=
zM6dL6`{qP8gTqwjk+gwRpNPfGH=HhkpvTG-#%ztxVV!q9RGAO}KzMDVcD^$+1Ryjm
zQ|*5)WGpQuJSS~0k(XzNB{FfrLhzI-$KQAb{xa}!<GQ_4x2y+PHPUDx<izfveytd1
zK&L9QO<eBkQv{vcK@{uIyti^hjT1hWbLl6wBq3=?OQSZH$^;A(X45bp)2AM-56IRU
zcif(H`CXkxMXrY;42eMC9_P76Uzckj6AW%GdxXVx?@Q0_TNNZZXV^;Zd7F9cmE7c`
zm#JMnjOm_eR9WVawK!j8ItqYD*4i}{Kl4`w`4sm3U#$*qdSpc%kkOyjE{>`<%F28I
z|D^DtF!2HiS3fPRT)P4OE*DVLN|KIdM2JuuNgH|O!?)8c#yRFtVfVvpGZxd)m$-2_
zCj|%Pl~SkI%9>?dsgYrK7b+5r+4rw$6H-zv(}Jsb>Y8TTd_1^Jdcj=QQ!iWq#s-7F
zzoc2<kn^0rhd@y7?_&S~Y;Dw!O)2>O=3+oBuDx|63s6=I9NgMY7rZA0E=tpP`T*h7
z0>Gy;4Xpp#I)OQ`Ef_gh*QYU$DTwquvT)DfEen2dnEL?F^f3UBVSIM#Cm^t1XmFr(
z^79ZBfT#X~H}8&NqMGF$f?*pQwcKJCT|vnNXJ68Uy_)qnsr>n;H#W`Dw*V4r*UT|G
zF^>_MDXUJ0f14LTibJVQTVESpl%T=k#st>3FULo#2Ex(e@>Dac>g^VFjPtO*VSriz
zsO_U)LXq6y$(QP~s~ryTRNZnt%W7SFF3n8+??uQUky11en7Te|d1{Q3U`Gzk5BMY=
z@_{&JP(rj|E%x6B@h3rF&>xN@C>F>hxWmH2!r$*yS91>V?*WQb7j%&6ecmS}&W9`q
zbq$iIBy#p0+#etn{PXmMN4$T5cFaVA)>Rjm#ZjKzlDnE#uzk;kn1$IO-tIRyRv3d}
z823RiDp}EEWGiNXurU|+BZAa4bx7+x(1^dvx-GZNIa~h{7=)6ufW)<!QiZ*$(*UjL
zbdm6CAj;<nf~V5%9^QZt3MHyhmtKrJ(<^Q8YoP5x38emGZv>?9Zu!P<)>>&kW!8`C
z{ptDm$a0>-eSVn$8C0fYo>s2EnBQusSk;*uw=kd=aQj1I+H&+I_hE<FG(hwo!zP_t
z6rJw*EEM>>>%6noYXsJYxMPp(UqdcON&H4Tp#>#)DhxPhb!8(-hGV})3Ix5UByI#8
zTVci#lyEYT%SBIcGBV}ASO9op+<+H@+d)O8RUeOb$&E%kK<5dk3QZ`*1YP`=3eWNq
znbUK1j(Utt;^JAH_Qzg}pNZ4lX1r1ml$69L-$X~gT=A4;-mh#b?_9~+`tO2YHhAv_
z%x#Sn2qXgEjSf~Aek=*zo=#JqVDwY^H_w%7KYk%OVpw~}F?Tz}kd+#OD>#UOgBs=D
zBd*b6FHte)cP)WGD-I4i8A#@TL~Dr`>mdB8vPJN2#rNd><>JcS)5*~XlYsPhVv~K;
zy*0ULAhx#Cslcz*K-0u!Gf7jYqm^2*4R{;o9~{t>w0<?N$Hn{}IPfI&V^4$L0~^Ew
zH<bs0;++8TE=ASq&!?Mc^NG*C-|45@jbccrDyDpS_-OOp<cuLpn3y`+5=r$Im&bK%
zSEti>DI+bnN72kmm=Mq7p@vfCc)s8h#Pap<4d9o=wUy~pdwF-gDbf1qqonv;&c+`b
z%;It36NPC&XnhiJj|kwgvEl+o?7zR3%L7NAgKyb0_Y%-Ygs`>Wo-b-7zzt45W!=1p
zoEAR@-`rNsDy3o@XOxUF*>EF)rdjg#JIrIs`1?YMX!VGgn2=itk+rbZR8bvoi}L;|
z^s7)l92xx48$=7A&$;cucZPD{=>sp`2J_38oR9+mAoshP8dNEyT8Pr0e!Ay7ch+hk
zi2`206Pm5vrs~f#+qSLw)iNHutG(Zx!HZIQsWpPFdw%3%v6zg{^^UN1hj(J*jKZc~
zLp^mfODcUhSx`RN7aEOanOYwb4?(-d<<_=qNt;r~f<=!T^3ugvynf3OKbl^ccHSeC
zvBY+(s8qNdesb(4Kf2(s%m=k>Bj-}~qaAqmmh1_~LDD>YHw1MN1+XH311*xO^a@FZ
z5{)t#(AgP<R<v0F+qt7fZ*%p&0ai1^Kx<aYk_Yn1IJw-QZQ+5{IW~R>v=9#!*4Mj{
z)poQRQpLnJ3M4SaPw*^|{dY*O0m1?s&e>QRm+VJripgR7pUrhar0itD{=vZNZ!d?V
zmxTo^l|V1YFoMdz@nqls{uZG-y)5Ra6J~YP!)RHP=KU!jF!n-22JJ64;8jmElp>2a
zBDCslwH-(CVkrcsRu4&DsemQ2nhCY2Twok*La-IXn>AvjlNI*I9%wfv1PU1d+Y<oA
z0Wa)Qt0ehD*#ty#2Q^jIHF$1emj8ma)0O$e{j`$M=;az4BO?UZO?O-W4YZ@(lEF8%
zp#+W}o0ol06i2LXMQJch*B)HZV}KC0MFa1TVQU^tw;IQ|K?N|-Lt|!;^iD04i^G6>
zC{L57RHEkM&}^CRm#_%G^B)6r0D#>O1qlRuccKSLHuR)+&P;ITuzoKN4o0m-dZfwX
zeg2+;0n}ON5>PpL<87azHMB$7U^YayHFx*fC9d`<&fV^C&xS~?<F7Z<xw5jvafrE&
z06v$SBXknqWnf1dI`D_=TEWjDOm4Z{{qU9(lA*k;Uc#H|w7y(F?oNIk8(TTP_#7y)
z?19d_9e@PpiP={b%NPQ>VPisvBsJrrK02i}qkBJM$^!nx?~^qS#qFxJ090WdA#`cX
z>9^o{+9imqmBYyAJ+qh0C3=_a9XB89{NIwi#bd~o!Exy(2n7HpkGpOdlp@ayKmJ~i
zVt8hSE9@A^W0z@p{n=Whe8~u?$ZVE<UA|HBRq=%rNHH=Fy7?XbB#>KVYq5>3GnniK
z?pTEpvo8#jT^~4r{9qu}53vtL!;##zayp`qndD?XJq{`pJHL@a0`?>}%0_ggM8OTR
zr6MpPux#~HV`&WP0<)}rm8hzFQX$B<c>XnTgF6TM@v^i&5VW;nZs8wynxDRAZe(~!
zcCpj{q&7wTrrq5Dz%SoMBR<B{LZ7>=8~E&RvP>FjV;a-J%~@u+Ur_(<zqtdl;qQ!~
zKQ&pmEROHHZVtHa^Zi<tA1<WC=|l?SXYr(5{l+2Y#EurrkEk5Y^`i@}N~Kjb07$5@
zes@0c#ROmf<mvXbew)^Mlx(cntad4-QCK*_uavG=SMtVr_+@&U^vJZrxCn1XyU4fk
z_x=k7gqi$KCTiB->ec>N{q?U#6O#0Ew132a^een|b;k6jW}BIp11d?oEhkmiZ;8|3
z+cSzkJQe~JP+6o`0!XPr6U~4n$zl<{q|3}HpW;ma;ONo$H3d{qiyE0x2PD43q67JP
z%70#%e6+$-#9ZR%G3`F_3x2J6z)@1r_N@0BDHQ7}%dO`1$nZ(7qWge>2IDXM>Dxgp
zSPH^`#EF%N;nqjJ+2k89A6Jt4s0}Nj%r4+084vz6WSdjNBm$jf8OScg=gl>>W?L=D
zkxyY8t3!*mhuvLCT|(51o3XxP0Gs>`0tMfCokD-0)R2ZBn#PO34V{fcpWssj9udfc
zRuk2foVMo!5x{cyizuqKa{U%T33Mikex7|v@xXe9^?|2ib+1HCk+_b*65<f*JAfE2
zR~<=v_raL|EA=G+5|`4GKSy2a{mcnFZ3aJf-F-C8_uW3#_CaxQghmd=k~{#=?ilHj
zl|29;)YNwl8L;_<JP?}^x8nhKH8n<rW|c_8!D*<}TKGV&grZWu?%mZ8*PR;T#OL~3
zMN(wSVR+|9P2uCv?0ul`MElbCn5UNH`c*7WCPx1w7>i!B)Z=yeetv~QPgurwP0z`E
zkmPV~%<CVQB^CZQY%P0I*A#f}$RI70-}6<SN%vzyhB_ANzRdVQO2}lfH(zN)lqLxD
zIn$E-^loM}SGGtltH^xdX|h^;DEs@qD!)>90WDS&!H}Sby=j=iRa$ObGjHU;n=VPb
zTQMPYb2KL~E`?LC3UgvrC#J`#^U-4l|ASECU@6{-5>1B1j*)L^yRx0Xe&-_UkogZY
zt`B^M#!bS|aIwakmPw?1p82pWSr$JIzsZ&mp(tM;P_8Q2GyEXmMbHIa!p0_<=xIJp
zeby_#8q0<2A#vbT3j&>qo=)&+T+kfzL|08TIB2?bW1wq&4J9uHX`EGQWjTq5eAJH_
zL_s+PNaJNhANdoe1C2iR=$W%ww!I<xgpb4uhh`PUc*S|W7x)eI_$w^>ip!w{XOQs;
z^w4@=6Sm#y!g$>h{DN1EZ0T{8!I)r=OP6OZ)&NdSPjq$$vEuNVgYqZuy)O`4@RSG^
ztgv4(uD70ym1qz((#-c=cL5-NVuoHg!?$rADS^_o_Rf&R_c70BJAuVp!C(AQDYU`p
zrSEUA5h;uw8(*T1l$&BjP#0}-`j}q<4+)7xpmxbunATZ%F0r9}PRGKw1gbGw_*a?2
ze@}g-o=*s`*%I>yNqo<hjSnQiFvU<b%by3Arr(8Y^Ic0Km<@?%H9~)}A01rS?eMjq
z_~5v}?xW8}M$^+iDQ*v=Nzek1A<bM$gDO+t%Q<%lTPv5*T?>%ma+X-OZkD2}i0ioL
z8HuY{i6ECb*9#g}KB@Ye=iOpL1oSFB&|v{2RaPQ7x8ScsnT%bH0Jjo91j{&?PCi+S
zbya<aWCvnj{P?{MxJ<SdV{0^HYbw0fOSvJo_%UIbV6m$f%Bq*7Jo&yb#|J#Fd(Dn3
z^`&Z~#?@~jROHvdc)1t+Ri9BRAk>S?*Hg|%yL{+_VnFIWKDNDegr4#_cwHB~-*rWJ
z@Y*Ogkcg}R8~|R=xReK5JZ;1{p|X>|5spb_YrMTfba?2req>OWJwVyaJ&TTcvJ)Qp
z;BsljQ`&>9G3hqk1{)pa0X#-s>Ay)oPVooyJY0jvQ}Wc0I87hZtFaJ5(ez59eueeZ
zcMGVb;OZ__QQsMOZ%cX{0_-uM9T@9nHJVNnqgjPDa1~<A4huNAE!7Uwn1?f$6t^$a
z4Ul!-A`B_55dAMh8i6^($e_r8J{x;Q?e3zD<|A{NX%sv?O31zZn>VZ>2N|8G?U4K2
z6GtW8yR!;Ipk}Ru#(a5tbGm&}rZTFLviV&NkLSkMW~JTD@#=Vl3jJ3&_64@*L02s4
zNm;@mw-EZM2O_F@oPRx%42^4Ns(sPEh1=+knAoBEY?KQe2+M369259@G?yc7C499x
z=Rxt^oHfTEH74|OTuTB14(Hts(NcR=^isW759tVI>IDZ<4Yw137?l=dY2OIU+V%O>
z0~(gSp`ACDx7Rx*6+mx6P4BiE_rj(0yU)CFL>kcFm_s_rawD_tZN~MJh{OqMy&~Mb
z1pH;c7^N6JsZfBJjGc^La&^2qt)SmWc$&}B87woA@Rg#K_ADtAu;o&fN`tlYqJI~T
z-wY5ELJ2g&JPQk1OUbK#KeSFdZ`j${J&>WT0YmeWo~r=qJ}QZa#$L(T+tGhd;;R$6
z6u0<uKA#fnPgLoK@*}2*GNf-aH2+uY$o(xUjrv@=6@&4`*ZjV4YV!GNrpR;lj1F7S
z%RZUxKWEn=SYKp6n|Q~zfB!Nbu<fp<t@<+$n!qoOM1nXmY^G%_TiNF0XZ0^7+&C0i
zvQ0&JIldQPnf53D%<j8OP_xub^#@}Yq>mdlDt9_fN8XQJI`J`y^#utca<&oj^+#zt
z(2+$sSw5=WUL&GcK!#OZFI*=cLN|@i4Y}Ejce2sg6}o__dn1l_CJwB8u8$?4_58K4
zTUVtF2oyYY3)Hzn;n>(uNmQ!153CjeGiSy=RM|{j1t6(99+99xg6(B_u0_RZa{<GO
zLV*K@&YPNvhprsP>?N2>&kAsTBP=~3=;x0muRPW#$qssni0PiZA?`-&eQ<{?gby=U
zxCRq0DNo%VcywTu=f4aT0vkGp9EI|Vx^*WUvl3mn^*5*J6^=uqeAkvumeV-KxK02s
zvWt|TT%l*Eky}N)Tuag#{Dt~mPd{a9d?9`I)=@+WlGI_;g;_GR^rIQUKb00x*!cR>
zH)w)9kJUl08(vbfMk<ij_h34gej0)EbqI`@v}Bpi0;ZWH%wT*0ct|L3Lh{q}fJ}ey
zYQJ^^9Jb9(^NbjFT<x^yACK`>1059|kNP}NUGNJIq1Epk*WZiP2QyF`Cjtc@dydHd
z;#Njs=2aPVAV1}<v*~eBDfVc*fB-d)c0Wfs6<Nq^8M9M22A;@ibWQB)TonB7;;6&J
zPvCMxvQ#J`>TXjo!bxB?<K`ZqHAFMU_=NI=R#(g6tiOv5F`J_y>%Un9s>eB*&`Hl^
z>4Zo*Zn&}I^{j^8n)l5wHu!tK<su8#(989QeTiL^f*)R%CHqZEd8A;vsB8k*kyQ{4
zoJ22OssnE-6KGH_sCPBCUBWX)x3VHugz(cF0Uy|<)&b!dp^sPi$VR0|jY(Z(_yt$F
z`U9)sXi%Ir-mtT{x+hSkS2W!8TR2`)fgw%lJaVXi^4df2MESJ>9EqOT70XT0`Iw2U
zE{lUHq$(&Ip`Z?{wPz#z;^IMPZ&CF~P{8O$7@#0&R2HqRwMk7Eu3-5uixHvT!I6)^
zdJuP0l^q(WpZMQ)`~Q(q7U3a(rM$aJtbDv7&5T7)nc-h;JScN;e}@n&{8|5)`)vk3
zN|2pyLn>OuGP#ra_O&wl7VDyn&En?S{9>)`<7j5>8$}+t7->}2?df|7(qc^4eUhi3
z)DHeqqNf$U9BJcj3X@kbNNQ6~)Km5VS7CpDKe*VOvGaw$f1iTj+{Dy*+K|;)RQ)qp
zgc%FIiUCb%eLm#=b$owjDpWRxl3s?h*Ft1gIL8_Q2}`W_ettc05`Sn3_BGP`o`P?N
ze@uGbYaB=F(tS6s%zk-8i$Hs%=c*0<e}uhdR9xM*tzCHGg}ZBTC%C&MArM@H1q%+r
z2?Pl48eBqfcXtmS+#$G2p?7iax%=+>?$f^S53K>MRY9$})|_LEr}xgBt??@G4Ni~N
zS;}+IOC9FVfe;@4jk2#)?ZwR9sYsj@t@mT71*Oh?;%f)McTNe2mZ14A^HXNWS^4{%
ztkQ>|Ag2Ypxx5lqHT^OmOT3VcMA_SGOln+IsF%$2QQt{rpcZznto<nlyd&n|w)*JB
zQ6LwA5@EQpIYD4J5@GZdSJu!lz2x$NkfvrO$gXjFFhsy|siFR;;aBu9R{z5T={?%f
z-Ud*akpTsi<JCSjvlf51em`;NK#Z|9eM(ApBNkO?A9V>1kaM;<ll(m0?&BR=3wz#b
z{T<AZm!l8X1(#}JRjpC(l2(HJ{Jv?yMq3vVA`O<wOnU<{Q%X4Li@2H4aRm74-yz?O
zGnu+*TZ9*VQbv5)TTUe*+s&TH)CUj<t4oy$6+>zT$Pe-Zc!h)8T7ocoa36HUck;!M
z(vFp8<O}Tu)~-wT^L_g>H?S_+f3SPPUqh<C09|~zb&<dlh!@VzGtfQw0itq&5?=!o
zV3(pcRgcf8(j>Vl&$!<-NJ9yXO9eHs6Oa+xA%xO6ux4#8l#M<>3QsfT4K%6!!K~wf
zA+`bN-^j-b62NvUgm=`~OU>dpOqaRrBY<AIu}F4WrsU0LwJ8rLW;+Y0d<~jLgF8*l
z>J|~*CpuB<R8-gkj<)SncPZXJfBI`ihB;Vu=QBm>J|&q|U2v<YrX@;vwM#W8i^#e1
z0Zjk;h9k;h?a`jTK^l7)S6vd#)sEW`C)?5Wt^2mpmv(~%iMx^X%QuaD%4t94ECDud
zNx;F!OV%~Dn1B9SvGL3M|CxOOZm6sxnhK?#$sO`vi;%mcX`aO9^LjIRbu2mP6I?~%
zhf4RJOVen0X@_T7Fo;tpe(6K#qpRhf*SrQj)ezSEz%?Ui*0`phTKKThd6Mga{MnL3
zQduYvnXbz!Y5?yOVNGM~SHX#KA(FZRgad!=ql2gEyy+$XQOCAhnJj0C{(abAYs72c
zUjb8{f{Bswv#qocb^%&j&c($AP0h2>;Y+GGG`3G!G~9H9@|+V>{5D<<!MI8rOn@fZ
z*@Cr1_f%AvQAIp?*3U2!u5}}K?j$YsmQbZZJwzrvJ6kGPkO0PrPB~f2DlWnlO~!h=
ztHgq3vs;%%rHAPQ4{swTkfXzkMEcq9inqOf>atg+7l>3LZos7!>q5`-udt+o3W)9h
z%zgd3PlfuXI)~}O#=N$M_^%8)%_g657sD({x0Xd@<~5*nTH#DX?$5DX?vkXnT;cC8
zau(0#7%?H-w_T_~DeFO9a*)g0j?>y(s6|DlH*x@lAx!XC&q`LW`cP5fJg1%zQ;Lbr
zq2TEq*YZzmW~Q{Aw0W1TDauod_Z`lbu0to;o2j~M_VVH|s(jXjv{d$HHH$?qm+t=1
zWJRN_!<X=P3>36`-@8^SFL9UT`@fp~A?MOpy=u|U3iKdeZm{tdlr!bIyt6~>{8LP?
zipc;YOs7<ig<e4n4bJw$003(yTEdwX0PYQ*4o7*FKmm6u_|2#5`gR1T@^A}nxYrC3
zCw<cA^iI;r$V#uY-brvox+u#BUO*-rfPN*-aZ>U#gKZ7v*Dd=28nmakxv~Nuz%830
z;sp4#l%22eY?DPiUEhpY75>;Egn}&xbSU(~QH(@jHVmkysc+tFEcG7wo{MhvL)Rnn
z*RN<wVM>N@w`@5XNOkr<Shd~KPo+PmVHD)VHuBY8SQcZ<7ktzxiphPS9usFi^qpxG
z(7BB646zopG)$K0>X`^$TG^)R^3xN|@3FN3{Mv}GZ{r>xZB2#?*}~Yz+995N89ei}
z9~W4NTIyOKo6tV(POABOv=y7M4`;D2zQKyeDfd!X^^~^wU~jf(J{NiHxzl{k|G~~h
zF8M+CS6!;MJ*)F}VZAbUE9T+hKCQ`Evyz@y=GSWu=A9D$US=smh6RHp?dSj70Qo0{
z^9KR)hYlX}hw+jhb>32zgcxypAcp2g!4W`Zx%w~GTDxRdHQb4uA;6{<1`(BC3KyD|
zgZw7(vLkvabNu0yK76A{5MAz?1#M`AK~QkVmF)q8<aRwm6%PJSH1l4;9wcEsQ9^U?
zii#LqdQEC>b&iFTD#0uqXUu^!pb@g%Qsl_)U`)3W8bj+Vpo>_WIz89SvJ15Erc}42
zA9}wMCE~x67$KXy2HYHV=~r{Iw3fnYm3*GuJ-qt@SM9}G%ePU~+uD?00b*2B%g4Lu
zI&NjWz*3V4`)7k35!7nb>Nx@f_iWQXBfES4cBsl5vcy+L$|fkJ{)j_6PgHr-;gUlN
zflcn_sY&G+V%4ErD)cG<32Ciwo?`kGdva9YUcxD)b0sMi{4MbFmhheYGba^AsR-L%
zN1q!7<=I4kNlEneeqTfk8ofgOCyhf7lMX))?kbI97EiTLcJ_s;wt4b%<_j4y6QBPe
zC3wK-F@}?i2nWpX>SF}dFyq03a6^WJU*;?`9xrviL?N8sGZyUau9zX$RN*-4eu6kt
zpG1{4)`&LNcSZB%7{0ly5DnZwZ?6KElBzu0$}&2VU<5q9qEobNg>g(-DB$n0M2w|G
zIBkdu#CB*~C*-O1>V=8pE&MHSIsa}=qUjh2(d+%L#zS>Wzhyn3q$fp&wRC%6_)Ki<
zPpPTzLt&z?Mjz=Cc=la}Y{eFWu^Eht6u1ic9`3^~86Dt>Igz+fq9l!aB2#bw$H3UX
z9ldw`9_L3{+3taDioLH1?-4Lr^Y(n7ay{!kdg_m7e&?H%{FdOvII$c9m2$ckL(DL(
ztkHbEMx&s=jcn;{S!s>3BjK~<eo~TFwqDr!FDMDnCa@Y+F|*QOTrux(1X&4QF;^^H
zr`VOMj@uZgYD@TUB&6vP`Fz>`qgUC>dHD5~cqoaFxBiM+URG$~W{h9A-iG@f<{ShB
z`DC{|^Ena%_Xt_2@+htbztL_JD7sek0c1Wx*f2{el&?pHgEa{MM`4)%4+8(p$3qLd
zXFThlT9ZpDKONlmNQ!njM(9=336n|tm2VEp+gIdkt$9PKD{PgH!kyboY7Q$3)^;YN
z`|5pLsk*~Nd`p%EXIAXy!33+-6Shj<97s!D$o27eZK8+!+*&T%291nM`k0E#94eDL
z+Y+hKHl>kw!1$=Df_t<{2x8rB$hQDtv<fun+dq%c@nCbRDML-n)&M?ADMj|-e0z8l
zut(Mxl7@)i`JciBDm+MgQ>Yu*ZgIN-qj+5I#_}`F3*iJ@do*JvJuv!jtsA|vd$~XX
zA0PvxIp{aPDXW!HK<AP_5qJ}#GVU}k@`3GxlRrc+1f^!)u7C*PlGXT0{Qa-#bl}`_
zqRqM)M-~Trbdm}#c>UhMz=~ci(sn}Py!-OcJE=_^Go$(nWvrjSm_{Hmg0K71zM`OX
z;e*XbnMyQ@AE(s1Q-N7cf^NhysV9Z{ILpQ2aWGJxsk7v|i4g>ShM&dwtna4;Z+Uy#
zR^YT-$HqcDe4Lj76ybOAwH%ibweSwHGZmP|vhAKX$2P|;7hJ_2Z3}vigJk&6r(dWV
zrY%TmoAIGeQaR(+BH0cXbnI<a^i(D9wX`ftKbE+aF`k;S<A0`A@jjq^UVVOYv#5G5
z6niX+5r`MaFEl&s?vRD70Tp042P!-9=9XH|ko+%}T}ncKj(9N3n|4S*aRW*NP*v&q
z(yr9g$B%qrf*yS7aYUWfqnvdv`SV$=Hv!A~vx=tiz7D&jX$dO$Iy3=hzf+_uH%fG0
z^k>B%%B|*A?PgcoK%?xuv#2(|918aJ?8mNy<sp}%%qhMEUT%U_+&YYl-x1a$4oFFY
z{(g%-m9y!d-nXeWMWX$+VTyXL0*cxfV#uv=T5T;>=A}~|Ho@ODZMaw`)6#+rOVBoq
z>+F}?M0u^-hOD;YkWfKdsDE~5^{vTz`;fiQ9^BZpbfK{Z`>g52*j|r2M>13g<ckM;
zjfVYTm~VSHJI!~$Zw*CVN^wnhl(jb&Xde}7S|wnJ|CnKQxUAXx-s|3w_Xx8DLa<<e
zjW}t=%*O<VahKe1jQ;|4M7H4Q)c*rasyLtmQH0u4=>3v%TXG0a5ff{xIwG=2H!dAG
z-eu9MqChBzl~FIjH=Q989XnPvfgw@W0A<C<!hMC9gVKhpu$JUCPRM7pY=TT|*9y((
z#|{%5KM5t4>zmll1rv&-*b1hd*D6^L$5tH-&uK;I4a<EkpP?7ylNv2YW96-x+q9iz
z;HD?)uf+;L<XYLZs?Ba?!yOGw6g1%+z{bP(E5a#_+2#I_qcWtVyFuoy;$bX$Yn7tR
z303n&!XW)y;ys|HoNz66)yab`30VV<VX;$!WShuAw?R<vn-pRn;>=1UCl&c)y4}iS
z3u^lM%?PSzpV>a)nCpQU73HCbUPj3VI2f2?iV<>nP@qHz{$C)MG(WjP?iO8pQQyUe
zQMGjEV~HYQIDlFVrKr=xVvguZNYK!^*iDJ7^j);wq-#=@dw!aI4^lQS0d4J=_bSsX
zAN&mq3Nm(s0aAQxd2OHVoMRhy0gU-I3<&!WaBV+O^HyD|DQfcD5ee)KycmB@({A(9
zm!7C!zMc{XQEmi?V6o8Xa|ONwx(IR%<*uSulS#AK9Z9p2@+3}|6Zbm9Qb;;Ca8yqB
z$@hTZ?|QNOMhI_{a=sSqFMl^!O;=|1%Z0WV>m^jR;~`ig%)Cu4xix8bF^Yk-jbSEp
zU3!*!f202kyy+b<*X9Oh0H0?nA_1>+yvRzntF8fh*2{9=M`p7C(|10XG4~+TG!NAh
zimZu9Gnf?uQRo&<|Jn}OdO@0<;{j#>`U{gs@t&h#px;IG54N^i&SLb402-&ZZ|8SU
zl1F2=zuCckEbor#2o9?7-;Qrai5>ei#B}7qb-Av=N50HPad4%Zh$T<eLavZIgYJI&
zt!PMGk6V}{u75*$ILn?@1^J!dJ7doM_;pv+ME*$!bKgkQTVUej)^_raRmvFp-0UbG
zeW_X5E5rH`o9Yo?_*cL|Xt$5NtHgG(&gobPA{c)rmj*GBV1!Vimmsd6Bb$sCq@%Jm
zbRZ+Erf|`jKb2Z@DL0NjhZ#O_QTv|E!qMoxe_Y1|BI<sX^oD;p{Ih7z$I8OL+^o%y
zjHhv}ZFwBoLs7F!$=zZtwzwj^8;iitkyj~2N7;wI8GG5-h)|XpPSQ910zYQG>Y@ir
z#A?c)#}KSzhq%4U5aX#;7=IXQR<?zDL`g@>vrMgD!?on@DirBP70IndOJO){rk@?+
zT%c~YXYXpXj}>4a0|S@peJM|(-L~5Df=MLX!hhVtSzy9yK=qI!_PD3!pQg$oAupH+
z0=1MjA2%^~xzO#+uNIQ}9JapjKgi6;vA%A(fcx~wsY<U;mu>y>?BC^8I#!S$by`G~
z$ELj`pI}$BWsojYw|V}QZY^g5opC8iQ@S=}ammwr?N815J*DS?$PG6$@mrAJcLLUW
zAK7L**9C0}sSS7lVoL{saH!MrCWvQ*FN^32OOp4mh`N2qfDr?xs<(<H^*sF76iU%l
zpkKC@mV2|A+kN{klCKiY)PPa@TO~U!*68P~5r#~!Nn{Y@X(Gz!<Cm*_ncr5!9nuPT
zRF<G_L~O&WA|@dNf#hBS>|#VmHn~;jTK2rPd-+IS{0FahnwOlKqLU#A@HPE$%anNN
zV}F}o7nYQ_KP{jUarJPf{r1A%A)JN5&Tjn@T+3THZs%^ULTww%b1;jyXi?nyXtv<f
z%YVYYr|uvPM-BrboCh#7*$_j!a)Zj<zd+0ZA?>2mcr>jg<gL<LoLXDuxbe>=pbK4K
z01M)<%yK>IN;J$V?q2|y|G&J5O7IgvccD8ZN)C)3Eyhr2R!a-iT1EH-?665_0KItR
zBS#^!^a(%XC>DbVJ2j5h@K>J%mo=74m^ksfpIrm7d~{B@=E&B>Ct8&|W<xm0CdmPn
z$vRI>5Pe^!S?VEaLUaiZA31W5Jm^fh&-O2DYqodnU799L<g!bEnuINhc*`B=J&<@U
zNR7<2+;+=*07)QvO8`^z5y)q5Pqr>=?Bi@OZlehmaXr*>`*FQ-9&``hba=R}@C#Ln
zUdy!CMx^%@?g~i!4Rl`L9%XQs-v=1SCYl0o{tA<xwH-JXWbObkOe@aqCh;t`G|2Bx
zE6qq}SceXJ;CR?5myG<pa9@iGKa-CkHjaJp>64U#(^S)pW?Y&^^IBmhf6V8w5gYZU
zPyTxq;|`kYzF~uwGqW~q%#{HkBJ<_+C}1&dhbU3$-T2WpbXD|`;oP2=4OU}L>6E~7
zl4I5RyYqjQAHE1zs{43;F&30hX&n6m3$Ut|)RUkvEH*LQxPSFF)H0F{CtRCVFT-hf
z-2QUkqE>eVj?iZ5uCZTTXdLPMr3wgTTuZzx^y?1~CVkHbQFh1RR1lZ!20Z5`<S35r
z`bZ_k0P)m}UoFPYBtY*jUtyxYF@lpF7rD_p71h!8VWEaTZniSa3hyyZv?EH0?>ty$
zo6Um2#tixL@W}*(#So`T6p-{ruEjraCvkQ0wHM2b!$#EcnmRrpN&FcDw;0+cCxGyT
zaqq+U=~N{A9XcD^`Y2<sEXdgDR?nz`1|IaQSgY4=SCv2)hdZ<ngM^R8vf73k0gL!2
zKkPP%WP!jd#&X>O;U?TvJC&<l=R?-QS3>yg;Iy%0zI|aK?OyUWD{YTg#Z&BmTiLr(
zYmm^HZ`d_ZeE~?1EfRT#-%OR3WU7m@D6x_pYlE2_{Qzk7zh@3rQOLIB?lVypO{{C=
zV5YTi$+da9n^OZgxwZEk$kd;ZvyK>WS+&H4$7?y-IFVUk;Tn+S=_(}{-Kl6D{AWH{
zTLuWwpt-{H8#O=!=}W+f1LiGy{WD*|B9()rDoA9`Z=B!PI`u))9z`qX*;8u<b(}ha
zzFu}(2t&8K^{|_OAT+&bpBF+9TYvK`8OyBm3i*UjxSIYai+=}!q1Wy^P6|B_vyd19
zb`rF`_tA#CK?L72>4y4feUjLYOf<PYuTAbHv8x=pK238l2t&BDBf{+tOru({w#Z&r
z1QQ85k0)z$#$iqs&@;V4Mo#Ih3B3V4WBC70(By3&C51wtG01f8-(nf-;fq&Jrn}7k
z45<mt@VcI_@4QHg!SY~#^n3?6FpTI(HxsaEt)-58s$YJgeKfHPv#6Av4A~|;Mk;9E
zh_Uok&j_Sry#OsFoiXBBzjdAmfU2uw1=$|6<OoSI=%5-c;RRUsiVhw-`ZmbeeOB9|
z_hSynP43mp1#0FUvp8P`=y3_0F#rl<Uc<Tfw)p!yTcSw|#=~$em7~=p9|w_r4ssqw
zzd(2bRqoZn)u-5f;X@!1JWXm`vK~q6t(4?+j_jU?Sd$nA&DlYndcLM_tUS7B)U{js
zw8tbDDRz7{tYYSMG}cQ%A9sQf^0jiY_KhCR#{6Q&x#7<$hnym;9HAIA82%#31#MT<
z8Qy%bv7>5G@C1rCfVgm*_T3cx1mk?Qw(-zCB1}GF<L<vZWBB15Z8nsY`W2Jh=78<9
zcLxfFCJcbgm;=ej#Cb_RTzy3B(}T_2CjyuHccDh0lXo2V-V&O3-)jZ#f}^E!pt<)S
zw6q9YC=@cU{#1Ym?zzKlGHJ>A8U82n&mj{S;Mt3lPOUy-7S^?Tv$&y@2c3Ac+-yV=
zWxGcnE)SEFd%~OOJALT1`LHjyb?l6@pOU<{N%I5K9g#KdHJWAeb8;5s`xTX%;3{dE
z4I*`8KzuWVq_*wEIdpY7DxbNFcu1d>+vm|OQ}8JJG98xtZ<kOB&BV05i6(AoRe{oK
z#e!0QDt?N9`5%p_6#IUC3QN|?qWO!4VU>fn`?R9^A2H{;&g1IPorgF@y}7bx%dY}^
z`>GBH?m(jR=--Ll<vgZ1=F}0(sb}Cp9iCP$N<a?K@8aKIAOZe%U=|DHmpd)>9kSLh
zVRN9kljqbL80B3EpOUV@Ay$vFfGuCo)Px?_CxvDpfTlQXGIBKN7N~8~`=*Bad0|pD
zAR}lz<Q{E7l`!128JhIwjJc1_->*}cIb?jF0em=}hopCcoiD_As{&@kyzJIP;jK$q
z@{2u2I*<r`ELtINs)|H9F(!xl4*&3_W1~}RV>89pM-o6`-~L#)Skewmi1fW`(KxB?
z8rBhmS-rOm{QRRWi-#J0<2{k3{5bs!5-fFNj=M3%F5{5a?c1PzS8B&X1QjSCCn~Ha
zBbyN8H`+5J5BBd=skMn&N4;-aw;rbJZBmR+_T)X;Cl8&@y*gNe2fYD~N=Iee*!+BJ
z?^=M|@T6|p_j!2dcJsz<b1R%XvSORJ`j}a?COn*N=k7p?c)ya#9~#AXk3c|rP{W+*
zv4dFbaGyLA&*D62yie+L3mKLdU9g&qB7aQFB0L8Mq5Ybvmyi!9Kimw=0j$i0+hJpO
z_SrLZZ?!#b*zL6Q>j=g3>#-}|0aCnV-s0b5a8h~#YQkqE_c?dJv>P~R-Rl6#tuRGf
zN5>AqtimAHd^h46fAMR{eTW)aSuiQrA7JDWm8%#btl#2ZTg@T<L}K@PF13Srcfb2f
z=jr+*HIApn<z|LwS&dE__XvQ#G)>8GbCrRBaSY1`#9grZZTzqQdgwg*J{}m3zD!Z)
z*m!<dUIyT@kK<o}FIX=am94zS`)M-tId8@UC3KAY&dX@opGw$A#71B&SAa0_ugCMU
zw?_ac=X`dy|MNg6aEtR@4TaaK{{gf40M!oVtX>Lx?kZA>sTKoPjmc4`jqnBSEGlJ1
zml+KG{az-Rp)t(mRw_3+sz5rV@dhwWiI7*+bqEchBS>D261h%xvN{D6-c1$(yh*}(
z<+l1SNVw@%*F!vK6_9Pn;6)D$%WXaa-hXMBFA1`xW@`1FAzTFn8e{<^%xlv|f0t;7
z&@7T3Z^7q>i?75V9~9spjl2V2;HL(cd%!j-VVF&f{s5|K6cNUd?0)xG#a}7q%%1P*
zi%H>p{8W>@*k>~~uLENXn2z!+?Xc5b%7tUCAn_^+;|@SL(2&<McW&2D44NW|gEkyc
zp>fuSkbuTgoRZ-_qO0+Uxr}F!nVhPR0s6bw4HgYDVLP2o0)X~*u??-c%==?4hUD4E
zb_w$DKx7IbW0*239=|Ixmf_z>8>#&E>vy52*{iC3q~05z(KK`Jc2ZEChAQYqKi<h0
zb&a;J&kj?&?^-w{68s4P&oZkM60O4W47G@W+<fryDv^y&Yy?ZB01{Ts>T`T%Oou~}
z&(DKmzE58DZdmNLIcLJTEeBH!feH{sg?RT>diHUifLX3@IHQ?1f^DxHa{HR1(fqkJ
zKY#inrcfZPQv45W=g<ypv>YSC4jy)Wfr!<|{7)cJYrfzZ(NwXa6^aMMSDUw+QTzY{
z-SAQ2E+iIaD5QpcmY>Me$gBNSKjE+*lMMrME8EH4M4`Z6gT<BC)VfZVDQoHVtJp{#
zQN4;cCC;omNoCqnQiv&$4~Inb7LQ<~Ta>(8aq=*-f7GnEpyBhk!2^Nmnt=hXZlCL)
zS5T`I<VAk038qgO<VCgVDCsDM?c+7a+)JO>Yq?WOg%Gdo7VBnGIP)V}@dj;KXcx*{
zWJX8%FStjtL=(*A+ZCs>NAasa>AQ3PW=E2RNy`M%#r(tiT2REO_~wnH^J0^GPU%J(
z%(<~;TP)2LL~P8lDO93_&qJ_AB_H;?AOU~!Og7BE7V((?r*3X#*pL=Uj*3mJIQ}k_
z$`G#k9)iAi&Z)p>)eUvVhas=2Hj>UyHELJ_dT~1dc;fmf*oDG!n(OT&R+LmzL`mp8
zBE#~T!xHj3q%9K+-?IQQg(JRbg-8-5$0fQ}buzfmOsn#^7%$1pA)6kJ@~?)c@vgMe
z!Z}s4%R}_RH|h(cwOZa`W8Kj8`-C(;sP1z9oY(;0VrhTBVw2Q{QTX#!`M6f*ikR!o
z`t2rW#RwFRG#9oYa4GFQAI8q>k(<niE%*<IL>8oWK_4(MfBk8w92t{{S*UhA3uRcT
zQhv%FOBXZ0em;xJY^+ojGpYb{KIJ0QyA`S;0K!ScMxVE0?ONlC&IZp9V?vouW`3Bn
zD5r3&f#O}k6l0Es>}|KkzssL*o>eQu4}oSQ5+WwhXxvMdKBnD2=|p1CLR{x%!(R`3
zn=7d^wG@?lo?lr1S(3D$lzT}uH@SCZ-v{gp_Mef$Y-K7uPX6Byv0g2ub!}`XJ)67>
zDa&^??li>2yYRLiUL7=`-j={U4xiru+><^lXuRVYI6#@g{OD0wz?%;|C7g)8{jEl#
zY9ljO#df%MW-PmIh-?eg9`CMz1{nT^h<b?Y37Yd!?Oc<``{QnxIsFfX=D<erxZ~D-
z|6@384OE6mnW4dxO0{DnS^}h{?ybN*0oz~`ufLmF2F@f(+_YK9UGafV&mEi;Y5`Zf
z)(u>z;c5V!Ms6v(Y2vlhNm<Le;!PywCi_I=^{yC`qlhtUqlKQ&`*PyrnwoGA>#)I*
zpQ80ZywJ$A9L~wfqtF$1euA0#I7X{-^HSYTW4(d%;JKi)YyXDE@N&#Odh7k*`zfyS
zj>G5fi;-~t41P7S$C|L+6jMFF#wC8X)3IU9PM9;QF_A>i^I2Vc0e_MePKa~7n?PX5
zj;{GD^E;|Oa;LfJB2>LEfgjAgV>kz6cHv}cP8Mt6jL8?Ip(DM3e%yrwsiiRPn?N{E
zi+!v?hIb$J71iqiqiC?e>CvDk|B3N5d*BWnbdMp8$|M1nUMw*_XY_H3d|&g^Yj}tr
z&IbdIR<jW-hJze2{7?dG0dTWJ6lL;F1LZoo5>e0QPK3QE5lIg;5RauK|4p!3I9Xu*
zfk|WdsL+njj(H~GCiqAg$lLL8mIlncZ?nQ(Z+idiiYys2U@^v_i@bvGbgew?s~>D|
z*xY)zL^I;+qctxsFY=ZOl>FS#ySLn2&nz@?63~D?f%=cCs>3cE<dwS$3?Yw63g{2g
z#RI$0PL2*+dp1gA3(AhC)>Nq8k3PYoP#($+-XJ@8siB@7Nu_Oi-&aHthW+uq1+eEs
zJ=y9gN@*w~X0~)-MLT3Q!mC*PRLaDA70M>NZvPUNQq?c~?%N@2v>(TJT*y5dBMCCy
zqQPL&0B4O<hWyYE7Ie6Aek`J8VNt(%!gOH|$4ff5WBb`2<q8tnE@=Wq_{@`x`|4M^
z&C*qY$<MAhHqid@G+yrd&12i|3SC*`<)V%F4&gCw2Rn)v+snHt+nHLWyGL_af*rxH
zdam#?+p*s&GpX5m{OrJ+8#%A@eV)4F#gCXbsF`>el^_Iz;{ga%NMgl3RxWhuYgY6T
z3=dg~JZ-tyAcwK(hWmO~(8T=G4wKHC*r*6r9~;DM54J6}aBK!SdVBh}gG$0_SpZX4
zoWf%jOY791Iz)w;T&XbB*M55w!Pp@rAulJ-GqWX}Ajj7W3~ol>3|;es<|*NeEx*C<
zJv^cG^~_0+7~6>75f?u_=B--B_Ay08$Q$aYE`)yW0w_&__XqXNAvG}g9?7E7h775n
z1}!@#`TB&36@*c3UiW<}FCKUjxj(GNb~a^CJP4-r2lPlA(RFO<U6~Z2OGa0*GXh%b
zX^)b<_96}w9xI+F%${P;8_I-A<jH%E_VQ8R?(-B3hqgmDulL3hNwD-c2dC8398<58
z<rA+v{uHp<w_tJYDZ}VR6##77vYlo79wD7x?hjEw7YaRTQEx4scIrltnor6{jtphn
zRumKH55I6*ohixxMzjm`YMZ?W_3&yWh62{vq(y)<KAGQQ`~FZhp$g%(8+DH8mYVem
zIR@D+Ix+9&%gJWi6dXpds*TZTs!8D$`}W(+@rOd+4~E{EW)JTPWPhCiHdVCM_%TSu
zWE_zxx<Ot$ui1}s=2_=V$&3*>7%p=5<HV9Ud^@I%*a)z*X?7CQ?3xsE;120vWexRb
zsgr|7I@dh|qGkWK`c+|J<UZ%jvt2pRvhUnZ&?h~Ncs?!35trQZ;C4=nb59zMZ_M<H
z1WH^1Z4DVCmc2bG>g`ju02j(xp1u0`bqZrH2gAUQpxwaxVL2TZWjb5^Icmb<C!sc9
zF-vCaZoChAR5Q|~+M9%?)UV}riBL(Y7SKg2SArTMqb=%Hvnz$Rt69`Fv4;9<zZKwF
zOHt(S0jlNB+J;m`7hRMRgz|uNuegK^GyGD0Qd}|TODpp~m4!&V*suSND2+;3JWbae
zO%7i!S>#Czg?h0Fot1S6r9&3rI8?DF{UC(Bsc@RK5Z5iDk8plB@W!*TkvEDNVtfq0
zbs+vafx<@TN?!)q<@hjfJAd{h;8Dz4(t<nRZ0W|H6XCqe$V+ln@ZK^-TR;9z;iL@&
zvj#jVHpWtXFf>63vkuHv8B-z`;bVc#m5p#T4LaLE<>`)Qh|Fv^;7|ovP$*HZR)w+h
zpdNLptbAbYTfQ*b44RuC0z9eEao#{INNVY*8LE|c*E^V1Js{}(GFLyjHjy*TNQtHE
z4*4j4lvfNLmIG*MRxN_NnLu0i@lY$e!}2(6f`fs(ZwaUwLWFl5*VZ(E1D?Uq|FKZ|
zmyQ_Me+z5Po4A+YRu;^`AbCiW1HW;Bm2+`cN{2goA9JfE2aQ~7{%W75waT!ynT8xR
zlG^6|@Ca9gIvk)CvXdrqm-fvm-f+JBT%pZBB<>nIhkS1aUH|LsNd9=lct-kow?Apn
zUb4_NYJ;Fqf%A#E?5x~LijY=bA*&T&Ps3Gf1mb~kloHovm0~-%^jA-@GS!E&j>!U3
zzgaD{f6s5Z&JQC~#Fw%0G|-3SFUJqLwmd}PnOi<9s@Kk^`jJkJy0`pnnBh>JAAp#P
z6{!CXFrv}rIodEU>qej_WPw2=7yhGQ+F5Z%BzE@wqe<_Un2sVxmCOO1!Iu%)Fk~Y>
zt@+RWOF}NDf`m@J=qi?(zwP)w&#zq(y+zmHzll>3sgao<DJTzR%W|>8Nei=Cc(J{(
zrR+8eGw<kSB8XeO-A5!jF659l$*02@Rp`SQ!Q*4;#IuHQoH?xj{(Zrewhz{p*ZuTm
z@N?+lDmfWnT2!Xqj;f&-L;pj2dwqhE&=HpG-CCze=~XJZ>nKxoTF&r~Mt4sAB?!7)
z9C^euI*Fw9X6BP~_Ed!hhT#5BYwMCKr(HhRhbzF3mNQMvV$5XtQul)?dE=j78i@j@
z9sXlXAXtnB><%*VU&u-b_s5HK+NjB*-WkOV6N2aGRYy*ftBr8UTxMU4Cfn;Ci~u==
zy|rEIS8vU#(yOSMS(M?Nz{;YN*FOP)Q0AX4i>D0);y$sFS<8Bk+AEQm1CIAvnC|P}
zCcaTPz^7qn0|4l&xW*Jg&LkP423#XD#TwrcUk*mbuSpKcJsd~a+G6?W5#Ap&f;mw(
zgRi@m>_V>O2~)!<X5m&TzSw%Jy0XTeHw0ViIEgh<aOgK?hOS_qJF#<K^=VnO;v?2f
zV|jb+)M=P+MLU`%^o+JyXl0&}kf>?iZRPT%H2acalm4pU;yVaSTf9q4F<hPK^E$JY
zug(xiyCDV4VdM-Cq)fj(c6`(hGYGQAPu(U-OzS<6gl$7gcg!wgWaUgF@ICk}7Yz}-
z9wJfEkZH8C6U(Sya0^#>ZX4~rSQ%`FJ&_BSnsAr<n&IJhgS^7&FoSsU;|5zay|JD{
ze-BAh$sIGBG&!XKEcw$93Rh3wlN;){!+C<17yMSq=a^e=l0y^9mq*ru6q5;!w2n>0
z^iA%1x1#2Ir=FB?!?qyfGa2{I@z3jQ%xPp!Hlir%H`LJ3Lf@()4!~TNfko=+4l*vu
zWxjHtPT<iP70n*LPwg5j#;5p+Ci$ksBf4E;n;E(1`)-;_jRIsc)*{@^45%z8KoW#W
zwO=h_E5PU+C)omBP4HA7`wIxinP(^6#exabz*V<h?`<@xLj3M=R=MyuQP90vzDkrh
zXz8raOPU5bn$e*6BlzM(dO%q58Y7ue;3plBzKUZU#ngQ_7wbZ7h!=R#6;q<S<gn5#
za7+(h#DLGp!Z|orxkkEqwP8cdpDtA1#m#^gvj0={8A{W^AEI@?AtI6}Y1%S*JKL9&
z*AO9V)$@TeB1vtdQZhoulIpfm>#>`TipOjS_og&rQR#URDgVRD<GRM}swiN<>)BI3
z4iq$pZN`kK#YkQxo$Nbl$VvqpPv``(IWglaApAATHaOEpy`4pD=3$61>MCzme0N5=
zmYlh7Oe=he?nOj5x&L%$ea0c?bbf0Y7V;CX2aF&5ebFGUe>|0+`JekJ_Ubf|zNH6o
ze~&}o(pWZ<i^8g+zxVGInzG2!sS-irrhLfNsU}^?5xmMyOfzKumN0%zN$=~^ZQQ>L
z81f+D7@sel71!?6nDV6z{W3Q{eWkA=lkd%u@JVJZ;e%c6NQ`o`gRZ&Z?PX&TUd0a%
z38vYc9~HU_v@%A)RKL5<?{-`326*a+2WZ%9xO|uFu8KHGoL5g~lW{OuYezm6KiX|u
zvD*KB*eT;P?`qbL>|_l06(~>yWz~sxRRmixbOn#5)>j-=qSq*o0~`tUh$@(#mZIHp
zi`YBcut%ZkZxtuPKrpWd6=8YTZ(1?5cb$O;>FV@inUFUD9^qy*?fS79G%nI}{msZD
zYUf?zy`Nwxj;Nh!pt%R8Q?UFXn~&4MfPDydt28|5fwXI&U!)s=gUR#))+4xJ*vfMB
zH5^X<xCi|Cv$5FE0H1CA;B*3{%&vFbQKl(Vi+3i6x(0s>!>&~H&*JM^mpp?9^~8(r
zK?JkWG9hg3>)%N9aMLW?@Gy8RKE|Pk@oV{=AyXkMf0Uf?z;f=$C+y)bSzD)$y;YJ1
zQ)=&s%@l*gvH2z90K;Cte;-}q`+tN78Qor#cHi)KouAeO-m>+%P^_+p#<GL_x-bGR
ztL7-p*2+}$>asZ?wg}i%p6hUDkB&Pj7K)nvEx~81DQzj<*rzHHi|?+nL;-#HT5|;z
zJSb1XE7$}t(i;P-DcYJ8i%-6;)#quUiz?=F;oaU#xCt1d)j~abDO~3HnVh`?5i8Xi
zsAh8((M+5mM_7FBA9HNv<F3vYW~Mji2?G?u^OD3u<?Ks%uY8W#j^w0Jj;Q%~8_OZ7
z=Ai(-eLuXo*hFCrOnQ8v!&5)<{Q>r5{Ej-qoCsIL6=R6c_ijoi5~{XOVE91E6_>$F
z1dpvBmZ}_Fll{E|Ll*SSvmAcqgt#i@!wP^Hn%QwbetDnz;zq*fp*tdHXvX(30Xd=7
z63P^}=!03^Sk+}SuV<#SQ^Tc^uwCHNUsm9y9{P&?RTX|iT`GQJW!w0fMQW*TNndL%
zgyZ5zlHQ%vSYwx$@Y8x$+2O3MvRRRfm?=MmZ_zP)d%Qa3P0gp2d&X}Pm^dN}p9T)+
zr_yDJP)t-vxXlBdt^yE#l<L-N)7$x1bAY%BtU(+%6M2C=dLsYF3t&eCFn=UG^>VHj
z0MX!B!@mIpp;LAA%0EnClvbw7TO3P>#C*Q%D;ZW(?69(Yb*`O}25)!n`*TpzQIO#I
zcx!R}EE2s_e1_U}D8h8XlJ-u5j^6#EfL&uwC2t!h=>u;foNwmyVeze#8iV-ED`2St
z!#I2<dXm3ZfFTDY2oYE;m~RZ!tYa9k&X*CuQY+)ZF8Dlp6+N<<5XI<-*L+QsJSrU9
zL@HX#;-`L<1Zp4#LA9z~%d_0ksBbY1aHp&=(?QTo8xo$@e_xgVwMJ=!L8~lYALMXW
zmn@Hm`Q<LJq{jf5<LT3g?>Tf;G{@y6Nv`#*&0Cr>(_W;l7D5T>${}Y<a-;wB_Zk3g
z#+>VGS(|ZTZRo3@Up?OWR5daHx!Pb7R>eUozjk6CJuk^Pxsl1cGvXB}miy&|91Zbc
zpHQs3;+0%h7Uf)O+p(p$@Q-7k38&u+wY{2Q#difRkJhu;|BZ(3e;3!5;pX;M{dPYX
zoV6J}SKEQRC3Jf@JerQV$^(Zf*2#6rpEhzx+P`KfY@MnwZetbMutuz|T{rmN)*?I+
zzm%Io<RVMp*n+?Dl6l8>Q>Stq8H{AZDe{fnh_6IzV+ko<d)@!=0k+y`As7HK0xg-k
zSx7~`)Cj%YW^B(dGL=+C!xO#1mnmwhv0Ak`(!JIPZa5ax>aM0jt@S0N4*6h@$P`yT
zrs!i|KvJG=4uhuefZ%`4mxjl2HX-bH7OHT;km24n!{B?d%kI=!TqZa_qpqW490XD<
zz4i?%#>Cl=uHl})gFyP0s7P=cRAO>bK(Dpb&-;_b!Ju=Z#|?5ncfA>DoK<U%QLL36
zQDfG%VfJ?CW7d}(-{drnHchm3Egkad?%O~U+k!^ax4zWx#cLXj!W6L^n6k>ltqJcf
z4=b#Ys7kOiK2SS}0VQV)7W!v=HL%~Wm-+bXPEg6GY4huLnA8H9e?Ggui=)B22k+{J
z+M~7EL&Ez?$=gxcTYhWvH3O5%SbX@k=ALK1i{k6j*53PTEExOe#bB<ArM`Ly>;%|g
za{<Q;<g-yVT5c^DOw!cK1ggkAshDjartXj>*TH@IC~YyX*Hb=3=C(Akb$@K#+q0;w
z=)&M##HHNA;URX~0asLJUeAJQGhcJfX~#n8&X&k-XlK`YH47H|8KLo9rZrw;wW|F*
z*Lp}Af7HZ4vYJ-vbTAlKsEb}=;o56wo%!Dj>0LM|_1WV{NT`nrA2i9u^#de+psHWW
z(P4o2&G&2{uRvolvLMLplL?Gbd)yfMWD)^E$`cZWsm{($3cl4|fytCCGs_$EC^~Z|
zjeKoR`^LQ`d;5#g=JLkG3%0I)!4XBy^6?;*w4u^#m;60I@|*g1^%L(Ezg8H?R(ayt
z;zW2Y_tzxfQ*5BPB{Hx0-**Uk{I95g{$WJH?`gX3+SPGmZ76YZ!E!rlE&YS~-Go3o
znwnBy{L2YMl9DRu<Z1jfn;SiMoI+6G&8WTOxX7bu{m9Zq3!T7Bo_2D__t$T3TfdA6
z>?Ygz*q`2GnY}B?BeDiE<jqMJazh4A+=Q{Tw<lXYZ<NL}Y?mC8Neqw<-D`Hcso_xI
zJ;*SF;6r>jD!KW0dNuQnz>u4jruCcH(?CeIBjA)epBG9uh*3uE`vkS%r>MVUEHshm
zDg;#DJ5s>^%Qu*0=wl@*^#_p;pZ=Z^L(gs5rH=7$;;IEupTwb)@WHb(#0g&ih<#kT
z%fq-3hsgrQz=y=f4ttiUH!4{Spq;=EAiC$M>-mYZe`*DN;oTW-zOm%u+J7<a3+Ge>
zx!=&$iJ-K4U^V0!k;0!WuDDTj;cd}hF9&}CB)Ew{vtg!Tc~|7So1|!q6deP@Fwjh-
z-Rz6tJ~?f?(k0!N5i!&NF-BJZG$l;}Lr!8aF<E(XDvpi($D5<IC;dGDgd|AKVF;Mj
z>7{p*eK5s3sB72;9HQ8csiM-(L?4}h;mBG3@<5bGT*Cq}%P!Fu|I5`ZhMHsVit}58
zp)iy=czQgM?JIkd08SrKPNwKkd}u6VuslEeDF!r3Iw^v8_G#J;McLrJbNFK4N7AR@
zcYZg$z7shz1@KDl<>BN<)gw`nkz6RCy6~hg=Q%k!2ud&^o?R$sB<Vcg>$P;HM!4mQ
zYfzvk8s@c+wKnsU?(h}&?N3dAXpdeqPErLj8MTayJue+D`i=;(Z%QyZJ+SK3Kuj39
zM0FDas9w(VU(Jlz1FcZ$`7*7$ia`~CmDVPG>~E}wBL<(`1i;iiH7L*L@eaA{RbyR=
zS$pYMB!8m-M-a*@|7^B^neBy5Q@Zz=;iFg5jp&8jt$mFQkqF4|VU1K3pD0i*WOx6i
zkpAxvXDbr4vVZEX;^n!*3A}isXRh${Y1@644TZ8h#qM&jV>ztIeFL-~3@ZEj*|JVd
z*fkeEvR(og74S$TDmgG2W!{JWf)%gKP$fHbm-a(wW!0_wsc~`UetwmV=Whyv$&g6n
zKjFzVH4+p=_}{)r{@CBdy}V@lnMB4a!^b{@m3D>9uBD6KE)($okO~b8<HrXz%yxev
zL;Vz@QgWt{3r1ZJc4?uL_gMdyEX|2;uR0xU^tctLrswP~P%q6u`^whC0Z@}Q>juNm
zB7vdInkCTyEOLA030NS>O|#o=5U?AN#(G(JDLrwM_xHJX(h?RO(3!N_zIF{H{I*g$
zKj90N^*b0hiL467OY8Tk@G7~33$nfeT+6sAmJ9&*Fr{zkB<5YMZwW9lUdGI8vc5nD
zot;w`LO3z+(DJx_z^dbj|9#jI;9x=O@WG%y6)=hmYtVoD;gSi4BeCg`{Zmh^?>|hT
zD7oNI?SfD3q_t{{0=hWi1*u>tH{Z%)T$7WQ*fz9uxKXTBpEF%@8h628NJwM@?rdCu
z^?}t~*^jqcYx-wEztKf<XC)^0Ks?A!x3d^*cY$K98x7szL(%{Zpi{Aa_)pE$+G`o3
z+fyGd+XZTY?ReL3pz=4_>1Xs#YvN53K)|PS=ci193m~YG#1S_Z57k2c9MG#LYx!HQ
z7v`_`iH+8ncCG>3BtH1d{^l!Gsy+(#4i-V1<)#@%B=IlUUw=S!{ZT-LKU`C-0LkA;
z3TvL7&t0!01vP;+VnS?G2cYn@#DFc11}xIjcrtnbR~q9<mUrHO=#BoxFBE5P@^I@M
zGd}_FLz(ab?4nr!max=H!V-iFqO5D|8%|<pj{rXI{Q7|~WGp{7Fn;lQRYRZG+q`uj
z+G!A~(UPJ6%b6TSkz<-c)0_jQx(l}$UOY2T<3EHfYk#TzCeHwt%$UAY=v;+=8P`$L
z;KQSV%t16dHA_dFAz;sQ{&0*_;<@7eW^yMkIhoPE<?LJ0Y=eVoz2N$731F?+Pybkl
zpixj~0DcfeufiGh`pScv;$m~_hbkb#`hWXo|7P_1S_f<dHLNxdsO;#673G^PlxlN1
zu+y$K52HFRsTEsz25TNAvTV_ja8Y!v>U@wgsuK6p71gDv_g-#x<JTMu9P7d(|44iE
zCx;RwvD)NfJ$Ig3H~qE70u4O(a6K#;Jm->?lKjMc2L3NPg44b9Ldfm-a3@y_Te+-Z
z0|ojwH);!bdd3?W7oQRu_kJlhqByY!&v91L!v!5=1{DHP*UB&E+Z`KO_l%R2EToUS
zV$aAryA;p2!FzE&$ZEzx2t4p72+t3@Vzzb7+Zj#UiMoMr5P_Y`^+F-5#}om<zY9Oa
zm+l#rMC0h62Im75u#BsVH?Aw?i*>dnHM!Meg2Rj=>hftuihU9!ve8zpn`g%t0BX-~
ziMnD9?(gq!yFWGf$_b(n4o5&iMAUrSc~IK%jVjM)u1p^;Ers_x5TCX+5JlU)5s)45
zqtG^K6}oU8W8+=SA2U5I`2Uu8|NUJ*9xT9MM&RhO>(HxZ*vEqqF-7Mc^7-}I8uQwv
z_*7lMT`U*W_t%T|X@p+t1<IUPfbX^5OQ7R@!050LduzjFJ^QjImY=XF*u|!iz>=lW
z!^3W+rSS~SXxM%I21OGEx>pZ)D^e{#d*07E4@!1mKSC}IxSD}|bw`{s)0XgC2Tix`
zfB9}#oiV;C)!~J%2UCO>E5&Pscv>M$E~CId0-33119uW%5s8BEj!`$3ss~=Y`>I2v
zy$_&Wb?CKZ{C4SUN3d#yzy=<lWbkEh1R)=h<sLcPm>~Ym$CohI#Tmdqa2t?D@!nVj
zV~}kD=4A0FZTDl0OzDn8uO{p54eQHpUJqP;YqXrq3ta-PITv8uzBv!KO^WxA$CNl0
zqdwT{YUV>(VRb)+uO7WhDs9U+;7~r@GJbioYS<EZ3&d&}{scV$rc6$&-ftw`0YYrF
z8FPKq{bt>p=}$A}cQ``o3fJF-fLr*>ytZqE1l33Hsd~jvYy5Mbw#8a2q#IH1@uKY|
z6;IL8vFdc?<t3Vrer6I-1;U=h3;+skOWZo-%#Z*#pWU>iGeD6I)zmqkR6Iy@hj;go
zqt^e-c!pGh^v}I59t6*Vb-b(-kWQdJX>)`m$&ubOja*hqQ5I3pQsCOT;CVl!B<M8U
zl{Lfsq09&u{*B_m(2%P^PwvQUaLntic6N%OujZq%={G-)-epT7;50|~g5ps-#+Z;#
zW23Icwm7^iC_i^0Gb9U6%VhiALF#9*{X>maY(q`UyI{$YTO7aKe_2`fDg;nGO2F@L
z#O=O?PkI6tpzJ*i((skMo7dtNjiS%oBmD-R06EpZW-!EpGgO8}{^$*t`3T|W7qRyO
zP#}3>7)uNr!T<iad7Kd@@YApfgbM!jvvE)_n=n#Vg;4^gjW%$e1MIg999pgac%39#
zp94#H{467iArQcFX%D>sf#j?DW!JREl~!*+-P$aB){z#hfgWZer`z%!L(Y>;u<akU
z=NoKD1JGcBmoeJ{{3Vj8Zs2w!f-8&+e#0KDPlVqD$#17vWH_wWa}tB;TJBq}7p#p}
zz1=a}uV!^0SG*|?fD66xW;xXhH$_0y{#FbZF~9@8g6wFiQ9T()a)2kEw#4YxZ%tth
z2$HCqHxDZejG>Xc+ddmJKN~;sdK5&f&ZPo%`Q^&|kN2@0ra$0-N__L=il~w{n}9)<
zDiG*J!(i?q<+fO=%Pc3<o`S<%k-bTml`&NiBQ=@C`;jU29&+1b#*j!^HZp%s#V1I?
z(pwo>faaK~wP(4#c*n;^IRwL~zSz`b)}QJJf#>}+T`@I%#2EmhVuX~RBi{3^HqA1y
zCufm%<Rs2{`jsLns1YU7`Ul7$C*E|HY-yhYhIuDW(a)Fu*x%i(T``_bCy*U|0b|t_
zo4A7It{~K)-WDUpC&uV3kWsm*JrW~jg<tOm(GZ(IP%zvO${-8z54G-f+%=W|gOFi_
z?Pr5ExVh0R68T)ms4NCV%l4s&p4N+<pfPfbUH+ExpnfKzsVMJoI1)V(Wn@574=BW3
zv42y5;dRr=y$)E*NwxuPKHlLobN5gR=y<aGYxnga0_6}1A*8x+8KOrW<m)kM?TQEB
z(WrA8y@t;Jx0ka0qSk59wwN5`DD^Wwu^7qk-4~OqivM>fRpf!aHv8R7HyTW!2z)K9
z@dWvOws>oDv{1X#0-T!qjQoOpzkK;d1)bl(GJ1aEF<lS0@cWK8OmYIUo;~C|e)yag
zNe$Au*Fq7$liHWu*gywugGz1&gCF`4jC6ETJCp9Tkk%Bk9JhxGmS!!^0v+$V(m<%V
zkY9<n8kis%Cn4E=m@E!CIZpT>$gu=2QVXiZdSB;uuJ?0aZs6P`tzPqIGd=4F5`Mlp
z1{9csxpMvsl)1jd_1W0_A#$WS585toYzhkd<4VB#PHr-9;NT~cA9b)6(m(g_@DDsI
zVw6i~ewyiBp07{XTf#1myBP@Q$zL<99Guz63GLXdPQV=?9CI50o7?Ce%<-MaDm&V`
zK1zAu{q+&|0mR>X$F0r((fvjPrX#G+A-)b3;!n)gj|Knb=Ra0>2WK!Sk91=>cE?GW
z2?U=(8RA=EIbYRwf!!_vM9W#!ZOO<aIB=Y=TO6!UW)j%4;JRnmX;ncwhK27nTei0l
zj^ixu>5lMp2@v2)N{*=gnLzGunOZI<-hdce=B?F&g8Z03xcIRPQUAE(v%v9u@Ft3j
zFneeJDxCiPZ@YyIEVWdKzrn5X_D95=a-Ue=)TyzONY<fFQQfOcC!aD?fN?<P{hO%r
zL}y4a`5MT(e<C}`_>Xt_*Nam@LQrDL=l}gZ{`I^6pC7&nfV{y3(f$3n_x|7OQjq^o
zuD6bANzM81<`vJ!CT~8TjrF1^BTHt5$Hz=8%PH76m$cLYimFNrGvrk7!PHOvI%FTU
zsxRn@Ok!!{!}xE;I@rgUwUM%`HU9JX{BJVob3gH-w;)P<Q$4-(y!`x>Kgk{);zNn7
z)+Pev!tNaGqcwIw(2`H>-Q;sm+YVSX85%=6ARl&XX_8}-XK@jiZ+vz4F5e4p%5Jyq
z$N9<#Ce5)F^LL&D*I&*g*936A7EvqoMa^!EEJ1-CAy_ndy7hJfUpx;=>pucEOakY;
zQdo>C;B=3jl*w!<BphETP<XJY1n;=9d`(4*S3kJo^@w`9ZZOog6M8V%s2>M%J)DYv
zZOa7u;f(4t^}LV9s9jL1J)haSqp)YniHS6*2Q*qSFUQ8%^mG=09PN3VB459tzZDZl
zA;@HUkoEt0IXWgJv!t0pmxuG}`+!9ZGBPqYo(pZNgskkh65V>$0@WX%aA9FPBO)Ra
z0JBCVU_Z-$m#=8Icz9?7tdSTXcy|!Mui?`6d|pXrnf=(|${O9<32D>5{Xr@psSHC|
z^hw|2@52Q4hq@LDVyj44U`5|b#2%=|jkV@06s{B)NSed~6YcL>TX=$Q$1FhGV{{@5
zI9LAyMZ+Zwa04c?Y=GUck~Df*>$Q&57n%3k%y>+&fZbd)KC6zrxp_gnCW0Rdr-P$@
zS~0raYWe-!cNhg*->DQOfbK~naMqU_O1kk5HZwCDygpjo-cB-1B;q#TT9C6U{=5;&
zFa&VYPNewlNH>S`G--Ucu`e9sfDcYv^`U+)=(D63&R*QKZh_4MUB8~9V;^Anz=TfB
z!*R1Q@eV{dagI&U6>K3wkLtz}8y~)OLQo$=j|PjkQLF$})S$gEYWiqqE)V^lK(}d>
zN=rK%S2K;Pprnu}HRg?T)MD!L`hZ%UU65WD-|IQ$V_u;`%1^EW3f)W}t{>NL-%eoT
zscX90YS|8X$O$?BjXq`DO#qHFAD^F`0Rkd}3J%FN$-e!^(e$u0Zab#H3D7)~jUe7>
z1^7l=?9K51#n)FxRoQN9FG{*gq`M_lx)CX9>6Dc2ZY89<q+5{gZs}0EJEXhoyLtCM
z`|R_bcb`9uA!E4KvslkF?>Vn|g?6=>GH`tOQKVI`2qF}$X5Wd6BO@(^Du7lff8?Gf
zjDnl=WM;BZSz1v^$p}o~n>V>H?N?p5<C3jOn1B)Uj3HY@U7cF~<9icA>&?zvI{i6R
zQUR^R&L`w&dwctU_d9V!Jsa9#_4u0e9MC%sxif11?*{Z=)tEx;={^It*ff7^^(UM_
z<0S#`qYaSC6a|bht|xc_GnZOGV38$)7*DhJ2}m^pE>7&Gqd7#5uh*{L=@~u}YM*#N
zw%=Fi?@ILz4#yJH^F~<fo&AZRhZVTpd*wSVQm9(`l1{n+hsZZ4hf4J2+fi)1Nwwxe
zI%qN9wqJQ$gj2_7_lp(icEqcNKT4v3e2+|=A0ZE<aSZ@FbFwEIr-IL*LIIA+hXO_F
zb$%Iwb;rwt1yprTFz<?p>pxt;Raic96ewrL&;PoZRm_LT|MA(#?rgx_O;o9@d7z2m
zyi187sX|0JBl5~-O1?-<ap|84hZf3<{UQGw<8~K+B(7qkUwVnrI_3+!B6a6+S3p-+
zynXMPg(;_A;)eotaVJYHgRkeryQ)by%x-Dq@I<*#u}JbbS9W{NdBlg-7>6b)wgEFw
zhRHOKz)3rbS<{I(O<OU?cnG%Vi)859c5cDi{`WW{uE+yAR?Da-r}!lS5R}VGA}bFO
z>NDLMP96QB$|73FX*S+V2U%uA6CsXZ%efv*=9B|A-PSd9P_c}vvhsA<=s4K&&s=~v
z_K?S3YaAnI(t2;yR+4K*PGoe2u1cva=PCDo)!6%bel(mid3G{Ve}9n3l6(Tjn#5z5
zMOHMV9lrF|t5xLeU-iaAFDjMc97CF{&2gFT>>dCA>GEIqh|tq5Vgq4{E~Be(zqB%0
z+3-;>vYal<M1+TA3V!-U=6X8BS@2D?tU|5YEKZO9Gw!nx5j71m@Xq*n1`l_qBSibJ
zv)3uh%x=w+s&_c;$=t^%YGKXgn|)0yje9iex7HM>NfG!zD+aXz8mJ$7hkgS%PajNm
zKv1zf`YR_Y$6~7}x`%zxO_?E(Fx5$CWAHvS<$W2-WS%(>ERsG}PYmFhB($n)zr)KS
zTHOYV>KIV02tvsk-7XI-d)a$S*3{+kwCij#$>{->^@)#q*$8QSsx%!0zmT2)qB$<l
z+e0Q#IjcjL9}3W)wC~@lH`z;OM%eN>t8v#<aNiY&XZcG#V7BR#Qly(8kU+?;%J<~H
zYmX>A`$T^m<J`BnubE?a{x--7r=0wb`~rJtJV8`_Cc4Et{Z#V!M|zU&F9pbVi<^p9
zU(Pn~QS}p?UojRGM4rJ@vtcR<&Xs>(TBBo8w#V65lzEX0bucI7+uP#?G;RIer-*L_
z4!t99DosY>!9%Go|9trtdPK4bzhdJ)+6iINP#&X=ofO^9qg9i_>u~XY*t&@0fG?3(
z2XW8ih_wwq*YU>hs5V%2usxoZhUVMxpJZDuyv<+=$l~@M$I+F8?te6C^_546{RH<{
zaw=1_3%b?0Svs;L(*lS=G%lhqE7P;>=?77m8^9SM!Dt|UhN;r%cc6a~h-pi_2k{RD
z&_1Lhxh5tXHOeRB&LivFK80P%Y+aDB&63oF{2C2)@V-*`&`(}WVagx3c?w5uUz2*C
zMIF%>k5)UG6kuuoBwFMO<U^yykZ^e;LUusneP^r6{j~|~vW3&UA6#95_!y<{?cy<m
zbUYK=l}p4UP%TFT#`ct9ro09Y5@f0PR>#WJIs5nzYt^=EA!L~!%0IDNGX{K(iDx&@
z1AnnFhR}L%@JUzX4lEBC4g1+fr*3pszfYnIvg>tEd&Lp)J1fiJ?gGZ-*TW!kj)g1f
zZ&?DBJB0oP9RmJY6IW7VVj~=g1p%y}s~=XI0elx<S_Ijuq^6OCruTB2FT3sP+iZx?
z;;Rup0|eJmzlRKBO#y^kB5YE>BU{jWyfJ;azxgr3+?pzGY#dL&HZ$NM0P-1XUn06|
z(LrTEFr;J!?;Wzs+W6vMYMXT%na4$oRF8T5FDT((Pbm{LwFVRfIY_>P0#St+;lQ#P
z3DSCp#na7zr&AYX*iNgK=p(;o`cNJr)Du9QWA%9ix5&9>iTObo&6woOxPBWAbxwLr
zgEsNrMI5S4>PG|f#^;x!`z2JQ67h$4_sa)coWG5FH=?I=a@X)2Bkr#HvB?_=Y))ai
z{dc-^Pd6@u>Knb$W)#SA-*T(yG>gwupw2o)6*|6nE?qk0{gOSTlkl-Oz2a?crmEyn
zfItM%Y3uEWNtSQg5|y~vr1K3%xk^O>F!({pmSrM;zLwF52BN(=EzxalQ7`JYM;xgD
z9)lGa@3=<cGGT0j20Gpx*q6t4VxilG{(^Q=xRXF;OH;bJJhaB^4N8z9EOpo!muzs@
z)-M7~UmCUfFc8UAejxoi-c9Z2$0%Na%=|T4o^9{LAa4TD>$x?&UNwk1TI(mWJ5`HJ
zwr-j6$j5-W0tr#*Jh>o{X_Sa_8u-XdTM_qaHgO4Y*_1q4kU_~6!5qtj>bLaVpQBb-
z2%2+KRm;}DFPDGX2Y1RF#6qELOIsMuW5cIuBA|+FR$0zXYN2~<m8g|>L}qBAXZjt=
z4O35UV6Y*mgmryP1A%wtWhfIIty55Ia2jRUpM6<{>JfValTD83bX%H&Ziip30JzaX
zlGK_M>^N8t3dsFH)*P<=z38MKLI1UAJ%%Fxyfu!sx2w!$;oN{FyZbH?Coz*PAjp4H
zn~nw2vR8lX!`=78c@GdK=hu(<+IXXzz3RnBcy^iAUXVs3=k{|F%Sop!3AKkg*IF$M
zo{JK!<6oYQ2*Nx6^m?*n6A}6Bx(Mq|qia9(X49q4cxxp65Y2g1lD3aNKSh5Se>&ZM
zm>ZO>gBo(EV<f2U1XTcqIcvfB03)M@A?_&`IH9_34$G5zC}&0@S({QvkPEe!Srx2o
zlOgneWR6X@fyOE7pt=zbFL2)EPNi6*enZ#$-f`M}pg3^^wnxxnnstpl<nY;iA@<8%
zfMT&uj=Ao~Ki~JuTTT<bvT762*qDAxCeV^);7_u}x5iEsa%C~Y=bknGU8gU#D9m-_
z5^HjY54k*Lt1-AL%yxu(bEePv%?Ny2%<tdo6~B*be18fqk$x?f)7*(fHzjc?&0G&V
z@>sn!1<_V{i=fLgys5k_-nRxr!#m;mi=N6bdB_Dn+mSn~P5R}4UI&}{NxI$UkcWsQ
z*GW3Z-N7-^VLrou?)BH<e6fll7zaYdbMJOsv?T(}vDJ)=`Jqo8TMa2#o96r#OEnb3
z`$lwLiPun(mTw-baBbyO<~WW<!8vJ87Rn;87*I1)7R%#6zB%nP4mI3L`2UP)iDhQA
zi?)#AIghpyebf&K5BuRVjte2%F7>#f4Em9xx57Htg{_e^UE136n3X+v^w(G;dO*NP
zo9fk45Z~Y)=<zseQ2(Y+iCanl<E;uA@s}u>n!8U{<WKoVI@pt4yyy~KUk9G-@I9K0
zu4M#4mV%dG^gb;;eP3iZ9r?W1?Y=D0B6CfzMLYJc8mxJ3n;p|ZgVVlQ{}+156FT}b
z$(Vurkt|%nsSO($_Afse&2_7_)zx*tVSW>gX_Xfvw2eH98GQnLt=W)|7f)7Y?LCEG
zP+}1H=A4~R>9Tx*ztw8M{xZ#oVMT;~5Lf_nZ0zq*MgWl9YXI2cp|nG-Gy#*R*`Ra}
zzg{ZTW7MD%0EJIkO3|hEkhl*<mV>v*Xa&gdM2bmi*5~3ctG#1#f|gqNb9^<CEX$DJ
z!)(Gl@KRo-FgGg#LLb{1BjtS6+y^9=>;{-i{F|6zrk)~$%wOp99l5=$|D_)s4doZ3
z`ht7KkIYM<srT>@-P+rCTeg}fv8WmTQfe~u7hcYX3X(7h(a|mOx<l7z7{-Vv%tty^
zF0SbX^T{rR%PH>uUI>z(^#?%NNf(v;e2Typ8fRH%!j43baOtZG<zpUgj$EKxnwEi~
z=Wm{J8uS@rKQds=n^vwu)>JH{F=r03R{Cp|5Vdpx#3Q(|He|OtE-P@Y?1#e*&AVaH
zLSR~dT{J2*d7!<;jP`9)U{#}1gpP?%9oIj@!UmX_6X;J|jPQp+LvN*S9fcCSvQQ||
z?A1Lgn;dl6U_d$%Y<ORFq(ILF-5GdkkF$%%eW}1J>Y(~ve%Q6eD6#JH%*tRfJ15{X
zS}Sthfh(R+K=$i^=t*GRV%9QpB`YdVv6}XlKJ1X3ubkZPW40G)<A<t!6`_zIYJ2WK
z8SJyV0y55G5*`51iF}$;fdpA>dGjCgxB#pnB>665oF1b08%p>izPCDTh3yMUZUwb_
z&0TD5lwjEMXeE=)oh8G|2Y%y@>NV_KW25v5`8vwPdb9XF!9SFR3|%TVaZoi>)=}q;
z91Swgxd(P*aFXvmFI`okGN!&JZ>)JQrersg;A?Mf-k%ItTHSo2vblCUM^2aC`*>O0
z<+IS_5%odhJ56<R4TqoB$O>nF8Z%)ir;o&@OZy-E9A#3{kM+)TG_DVYV;jr9DJn5h
zXUfkVyF&?LzQCeRvBY0vT=<i#C9Qs&Lt--{cPW$j^2y)lqiu6p*9Dwpm~v@#Ri_9V
z7V5w}P{Atz8D|q;)TfnAcm*?NQ&*i=FXOwIE<~*|5ilh7W*>CCu8pQTh}fY%Lyh8(
zh8y^%JegbCW5m~Z3fExZUNlmakxJ+?Efx#$JfYRbvfkGNy6;h(ni$AZ41Vwlr!2vf
zxU_Mc&WUiHWLj%ceUSt1FQ^=9t@heN4Sv`nYroJ^>f@iIpG5N=mLKt70hU06A!*w4
zGP9oOm}`-aj8F(0$)ClmC~*?oK5y2x)#Qsvb{BS^`SWn2EzQVX9|5k*$>_u-NTgIf
z;^d~z<(1m2?8LTnG@8gkIx#JW-(uvApYP!1igdU+U4B7GC6)l=XWj(?VTOwoZX;_T
zN$vRcLLE!pM18I150t+9kEPt!t~#TUHGqGSVA@fxZ;L#v<Bv5*>Q_en=$fY2-0wNa
z-}k1C|0crwu9FUGn!~?(<C1g>R$6;ga?g^NMvBJo5P@dAT!+f#z~Rp?;X2*o<>n3~
zl`bvD<&bC<R^jcyT}XR2>`0z`#mfzZm8Cql<gYjok#ptgYmX_PWZbmhkyUgW8Fx@t
zKwZF&#1eI9^~@k`;i93Pw-X%F7L6?9mUAyG=N~R|ZoMAs3BL7WL#sVZ6(#8%Ff%O}
z7#M^?w@nr|hG7YrnH8DuTaPeL@r@whK$_SN>SeDER+2iZyI#eZBl<%Do%7-ipXk*?
zCQHkgE35KDry7AvZYe6){Rk8OCIA29cmeREls_~iqzHqYiJ>CHu#W;S8m#Fom}DsU
zZPlXGeUIen`4K$s=JF5PQx+Rq?{aHLm}`;=sE+SfN&V43ceIUBg7_Cs<kkdh{OiW8
z*KlxmfyuXL<DQBo`qb@&Lae6aErETq3zbSWrT4GY;`9eZCEKGP>+ZbI1B8cH%UG<;
zLelaF{Lx!14tgG@=82=A+o&Ji2DlHD2Jf6LwJ2HcHc<NdkDO_BE#RG9$kLcGh@y~2
zGCHt|ri!0(IX@$tmJ0EGlu=b<2RRIDiX>Uc&_j$E-h8C$K7nOuR9?-Fr_l#<wWXTG
z0|HvJ?r>O`6lC)9B4q~~<gMkh{!~I-x)|><kRp8}D^|27;V+2$9ze~<t$4A{6F;az
zMqcjpF3ImO|B0{`E9#YzAw=S`1f)zKB}IBs5hTs&kxkK#1GGHPC+Zm>LJq8)y?j6B
zg*AtLFFouRgnP;SJllqvadAlN(ApF0mz{|0;C)f5w_ra%`@FzdwbG<MAZM)(j*z)P
z>b#k)d9?`S8a^B3O|?P_B3>!p$t)r`xS|*Zs_$C$73DT)xVNcG1TL6lRnVWsUb*}h
zybQtTRm${vER5$}H8tATSxU@oSl6lE!rZ<89PEka1?Yv{+Ku}o47}5x2nHd7Yj&1)
z3*;DI=9BMqzUXba1^d0O@f5Gv@URQhOqdDnbA_PuQDlsNELFGmR(oOJ439L$IQdfz
z$sG=V4X|5F>hW!i9srxzHALn)O7bx{LS_tq?Ki}pTX}_@Oe~z0M=sBp`D4&LSph8I
zb|f!D`Rt}X<y)m|;xR!54P4izy+;^hcPct`RxZ1N8`{-vO`rR@v;M|P1KU-6`FyI?
zw&eU1NEK^wHAW-xsK6dIYB<%NT&lOu<GK70uke2TW?9`A9{oV<0JFpTsOW8-ipxs{
z<I`T+kw&>RRfNjV(fE!CK?c-EwFpus5;^yo@&x_Gt=kfhe;Zi)7xXPJg84ONf+qkS
zBcWn4?0YH=vh-R{#K>3&J5?0*w=xSQI7mpIRS33ku2L&o$*Jw(Qii3fdaX@7FJJue
zZ#JW$ht>4EK7?9DHX0uE7c1cxE8llh;Iv7v<u)r!mj+a5{e<_8i*r3TT(;C2xOz^K
zHJ4acm=JW2$KglIv^is%Ezj9qw`VIi<egkDC%rszexv1NP%}~xbTqOOOWw;n+I+N*
zLo9PZrg}6D#AQhDi0169L!d3GQI70z<FxtB-)i3$;u{Btj5nRrNF88R#?>&n&x03G
zXIi^1h}zf5&yUxQFuCJj4AJ8m?iB2mXoBb!qkjy}6<n`4Z-5A!O0LT<U`5PFKaRJr
zlA3GX5`Wzgc)2Z#xD--HwRJnh7(*<^%{VyZ_AB#H2%50s0wA<(Q_x5#TKRjFL=m`r
zA7PQU;7+&_*DrYxCRM3i>yB$lV2-})^?A>VAbf1M(yl=#V1Fw@55X8%bYGM&TJGfb
z-D9$lJOW!1i8Z~o*H-h>Ll-)nhO0v`a9E`oRcw~CudP+WUzg0nbh`XPi@;QA>SyuG
zFIyMf&~lI5qYD&*tvIi#_QWw9u<wd~bb9~QxQSl~NkqcyW*gJLZNB^SAQjcS3>!g>
zljL8pI&hHiVnF4|L%dqQaJRc}LAAP69#C~0>k)yb=7KdsW4V@F1h@b#MkSr<^wzWM
zc0Uv3bwSN_aK7NQs3IxtC`(0qoy)}q8!<{H?-b{XDKE|A@2Sy^af*{<Ww362(72KM
zt}U09vXq{*ZK_xzLVayI%RsN2`_1EFh$1LhI<g;e!)R{t1Hs89Egam0dU}f~+Jf8g
zAJ1)xtxNMzrmKfneKt3A*vj3pwEuvc`}h(MJVuGo*?t?RXcMa33SWYbFZn(v=f&_F
zoGrfAHR9YaC|k3P<~1IzMkb_oElS5+k=ygT3bKjeB`0eU-p|D-o2oKk15ePG#O`Rw
zhMdtaIY%UJmfcbPNxYPfnuLDCQw!|Y2iz1C6yz~G_U5Ol7K8_#2uKPTWDo`BLw8pP
zf1ndq2*`h)7NyeO>m_(fNIQMymGLM1Kkt@4V$k6tL6{oKzISFJX(Hg_=>};c3uA?T
zK<a{Je7&kn!SrA-@jVNH2o=_5cgd=a^_2r?iLU4&4x~=iyt%sF{9AbuDikHb5#J>i
znnk0Do$r0w59cB_-it#)3dWjbB;b6INj)SPR4>(Cv0pCdnh&2S(ID*AX56aTyGhDf
zTWqzp6#F~sc_|#OZB8OlY1kqiR~*0enRAjbO3T-wf3J_d@ywk0{h&>+7=jT?<{|N1
z-ab)ca&=a%k?-lxbB~Y6In->mUl3m&enH$S2aL{c0~x@4Szz!G&n$~i7D|Le@++=3
z?9mkA^2gAc*R&%qBW*lvKH$1c!4An^(AYB_1L>x!P>>CL1e_gT?*3;O#godF#FW!u
zVizuJq3AOo{~o2uJblTZBjAV8O5Z^bfkSR=JB5XVNT1cg;EH5fRLMbwmY^Bu2JZi6
z;F3pN?PH95q!bT7GbV^;<b?Bi%JwRiDI?~yRzq~sUK{Fi3v3JX_&5L{&E#z9-Zz8?
z<j<4jU?kimJpJs4-=Nf^x{4=a9l#%6LUldtO#H}|jG^g1A<$3e^K-hmbH{~w|1r`V
zzB1gUAt)$#FP~dStZB-a42r-ok<Y~T<-Vt&^<q=TzCz71H$>euXt*snw)tk~$EH^n
zihpPa&Es~hx`<MJ(*$NI7d$(9uX)H)<S}DJO9#~{W8dgn$1aL*tDtM`HFIEX9@AF6
z$k#lJ9tOb{6=Ko7+wk&G2R`RINm;jh$;#sR@!q?VwM)ymZ;r4ma$1_alcmv5pnFJ~
zNw06LA-!%vFu~S9`Q<mKDJ}aj^7-q90FcTv<44ik+xwavp+62h3qe83GIXEsZ^wue
z9&S@_C-QxM-UmhFFU9bcx=wY5Kn{a3j_9C;y4Pe7tw|?EQKgtY(w|bH-}(Cdg6;);
z!}p$i0n>*FCDwe;UHzTqPh4r3beg8`^7OTEOkGCSn`4eKZMZ-_oXm~)<8AuP$t~mb
zm5YkJ!hhUbl3~G8Xc~p)<Y%kFPlf4RhB2w>$NgMo44G#N4zOnnnV`V)Vrna!{+z4(
zv2K7rIP%Xg>gP~+Vwd}~FXIX)V!Km4r09u&RiQ%kc)y84oyn=2uY=$$mNv)adnof#
zy$bt#DbB`sU-GPYSU>i8pZpk?i0vOXIdodmH`iO}nC`&};X3W9a4B{U8E_+pc0K#^
zyJX8({z^@{PJY9+uV)vM2B${X<H=Xjc#RQ*F9u<Hw@*>OkB`3w6#v8|h#f&w?EG5I
zO;5m(QU`sw-wyKS4IQ+a9UgSMG(&(Hyf3mT1|3Kvw5=rL=%k0d#e!L6F!)8k?rb%!
zQOfOvrPj4JoPPRBuMKkg@gR~0FjVv<{G0By;GG8VENl<0sbfDwtE8zE{F+3ae`aou
zNaY^(tcJe#A?=Kkgk(n*O)gDTR&#}`DLVOcSZ#^S=`9@=IxPpv+wbP_TP&Ww=u~PS
zrOWJBse77{kQU1o!jBgPBgb9Z+RWh$$)yyk&KK>U>};mxnOy{yUx;7H1lgq24UNd`
zs1)t0NM58EaK4g&7R#3Je<xhH#W?VTZ-d{;+C;~iG~VJoK4w$Py;QhE5XZkrLWlbB
zrMoUx|4->Hjno_!e+@h7#^fCBu$cAqSEMh4$s@7_&?Vnna0l*<#Nt-c3?ORXa3Mhm
z0ugU3@=yl6VxhB$8E=S(4+Udkjtt}C8>TQGTp$wPm2}aJjHGWKJcnt;j+o?2M5JfZ
zo21!OBjq+2l{q}s^{y8?pqG%|ddH6maBy^EJUS((r0meu?X%%s)4`J&4Rk->fQp^G
zA{OSt@H4>%P_sv1W*xM`NFzmB!VxrNW#ka~!1b$pnx;q7xoh|+r)MUgIO)Z8XS1Au
zr3s+Er;&yZcnY;Td7QZD<`ORv1MhjZV7Sa~PWX)f!;JhZ#8)vBg5i?Fq=+T{g0mC>
zFQJ|3j?O^AdAjVQF<Zbr;FGci5{jQF<M^(=)muSd%kA->k_r_q<J?`8dq_Essp7Ry
zd@FWqHB*mmPm2@m))M&`zuYf@OrrZjnvHQ%(`NyFepQ&PMMZn<=DaXpF#ZwkkU(wY
z`<`fF1s73)(2I8>RhyIP2~{u6q66z~Lc8)VvBv5Kjf7L+%+^76D*If=2gvd?FiUd7
z{z9A!?=E9|r?$5mjE^<kfN2cvgqi-Dswtt0l1090T~|-t_E2<H6h)1Ef1&o;S5v}I
zPruK&-)5IYwg}Fkjz=d%pUIs$3A1nr^tGF+U2pvCV7JDH;q9`c3~V2PU+MrIGzKSM
zq|fk(<1(iWiF4CsLiH@#UPrX-#Wxft6G3@yYPHmk!MT{0p8XQxjb~OoYM<9uXZ0U+
zN>RuC=QqFTom+K=C5B==GLeu6FIW_rM#)bVF|Re0jS!AyL_TDGz^1z(c-NBf6|D%r
zZsb0A_ZUzWld{tI-TQ&Od{sqMavQMEIPu!)*fSwQkCOwC5qXKu`5a&IBm>pisKcT8
zSzO2Z=0JkL!y3I+{uY}l%qa?TsXy4%m^OsGP8MY^Pg83b5krn|Ryk#E|FHi)F-)g@
zPv^5J*_>mqPn*>2DBE%?ut;d7(<0FyUrN>*<~<;Eynr0RHIiVlRzaHU^HQ`V@`>IL
z2gPt!zxQZ3X<{ukE0C@lYWXAno6}u*t{0uD_a>Y%ktWF>VGyDyz={MB4LEb~!hfIO
z3*(;1eDG*{3;L(q5~_VAoUd<4co1~kU%?~0m5423(#od%5y*Fu6&Y08^mK~aTBtp(
z&}{NNBFYX|6%PI-wm!G?@-95n+DlNu8LU>k*49o)<)|+NG%Jn62q<hkng+iAXO;^F
zB6O}Iln)H86B{x!(;pXn*5(X7Puq4l{O61)C$^sMMVfH#Tcz8hA#GKcI^eR2$b%tt
z5C=y*Rm_szB+^!^QSnpVc!PqUt1M}VtA((%BtIs(MdbGvt2ovjwmeUxJdV4x?ZyZN
zCBgz^s0G+0pDiA<Bpt0UiPq4UK+iW+d;&LgFBW=32DG}l0gGrT{&^+h=YeQjupWp8
z2hEaKpif1tGUSNS#;J~`Q_>0v2ji@E-Y!J_c@KN6zikJG4{!QzN#ih`tvVLE;t-PM
zBQP?VUf{Fb|J-T`JA*&izZj3-eNo;+@+#P*hUM#@C-Y7_FvQLjWoWjPehx|~8<F`<
z9_fHSna-KUzZB#e6lZnYi3}lSq9zx!wR}Hs2%B)ox!@3U2OK}ECl)MqN?~e03SjA&
z8*4GcBZuh)>ANp%7$io@koh(Rzs3-$Ul4bQw__EvF(<*trtRV#k#QlhJ)D&jZXy(8
z7u@`^3N`KDU|e93UeMKY5lq|}62@FxzP9i6op~xX;cIr9DilR2lCq9}i5@vJ84fvA
zeF7lJyj^n*HbKS;Iu|@|>L+51R*iIg|MhaZIaqbE&sEY}TElI?@&#PRlK0~RU5bt6
zvPP;23X-T8xq4v5`WWt77&PRb)3F2QJG9WJ9C*NWx8E8@Ejasm__~y+{{nMAey}ze
zs%AL$k>4`LOA`!fW0lxk;rYE(<mXYxYx&ofGv(`orkd!~%)KsMw@kHNP4qSo$9u=|
zb9XlDf{yYSNHo6J7q$NTEH)m5t7K&?nu4slm;X+c`qwJ%FHT=Cs&B7)@w^*PcfUGc
z4RV>2@C>gQUV8bRi2_kOKP4LlD4qsTP+FN-NIr=LsIv|n2lCj-HS9{A!3>oAbw8U^
zd0*D4Yt^0rP#Q74BmPUckwJZMT#lk6X+8dQE2_HC!^InMiMcj6`xciT!)Dhxf4jNB
zSE*N}M!B8b_yf`O*hU-HO3**>UDB_1=O0zd^t*>n%c+>u(g9)FSPB#tyB1tX(HjEd
z6&}G@7lYO(5TCmcbB#OJrN`&bdGwE}pz$G2<aM=E%@8lG4N)5ds6ci<RDVc&Zx+{e
z=Dcel2$Lb*RVp301<LxP@D-UgiYBlNrU@|+X3L5)Acz=+L3*zC=#SMh(#FP`5;i4P
zJGJ5d-OFy^GGMGd)ma!83lBOLooyU(-)DK1E9I>lvEMFbEqkd6jKmxmc-KGaBW~&8
zZE!PevB5CfnbXTD+4NBGU?sI0_&Ss>4ApUt6btmT0|(0JYkt2DN|iD(X02?H8~?`O
z8Rc5@RNRy&-|1(c&U+`;T=K(el7r_OfS|DEVHaM!o=0b}J5#J0G#>3z6Uxlir~nZH
zX0qgT7UXoAgNbaNIrg_x87EPZIMPlJQJRiQIz&sSK*M0SrQiIbjvx?w(dLEU4FXMy
zY7;dXo$x(K`D5J%%Mn$Ogvp-$TAv;1dMT7yJQleyp;V=}Iicj>=t`s)|FE*$fjE;S
z>_1OgJ^0YnDo~K!Oq&wtxmxSPv_7E@*bNAiLou=*-UIW>I>)FVg-tAG;_ZgJ-R$}0
z^MosWkRDcEWg=DgVMxa9?9WH0@0R>pocR9GZ3jcUIZk8P)RVTzb6H#46&BxGsXsJA
ziSFYVE_A3{@qEyKOw(q6D4#R@^W8)SH~h9QGnJbE4fTf@kB!RSeQI*@6foB>m&{9#
zZ*XKx5!+cgcE*VkX#+GY4{3z4_egIYdop2#Nu$}YDPbL*h>(2&iK?1<&T{c7gfxb`
zMn?p7z>_5@_=kx^+Z}=qIv|r-eADoMIfqVyRo4BJ0T-HhU{tT89@XfYWZGoetL)(<
zIWP-qoeY}o>rX-ZwWf-nMh{J{ryT(iK6LKD<M=MGtvNj7kIHi-2vDzZQZY%{dET61
z^6B~6-IJhcwo3Bw(#^1mv!a<0kW7c)+kmm`CTe{sU2v&5z$8RS+EPSLjnR=03AYAT
z$K3aJr8~LYHBSMOA)C#BYBaR?Yf(AP>&Da-kn?4n)vmlAuD7~T-RmBZH3HaSq~Lpj
zQ_e?`5SQB~kaxGR@G}Iz(G-hMP+<_o*z!Pm_QV{g>`PA&y1-Q%i}RmfluKfnX}Dgf
ze7t|<ur`fwB==dr|7x8kzBqjme^hhcVJTO1pd_!>vL)BoJB*+@!OR$b=o;JT;$>HQ
zin7-D>y}SQvYX-Akrwg=@rLY`4RnY%pI^rEyH=NHZHy8Mz3oL`KGQ-vpuYQwLs$s>
zkBPCoaF~^0k??&P5DTZ3>b{y;|Ly9rhaK9T_<@N9D=wkGM^XDLVsAO%GZG@pOVf4r
z^dyV@e5u_~H|GEAsGoZ)#h^&4&%hRYs`ZHlcpNl7J2+RHhwIxR0?Ar(E9J_RCLLog
zQQGqK+*2#`J`EiSj_5=6T;?vvdsIMkb(u-DRU}`mWvw;c_L!-pt~1gj(+Q#Vq#y7)
zr^f;`s~E<#6IwgyUHo%_NgK5_@tfo56}TkAoNUK1lx>j|D|2<JR=!;ji%w2nVqsO`
zUdxjAI_HHUGG2w6rCae<^GM&5XKG0;B(3<#(6Iau>KnB9FDd~j1gpa_$7E!kQOU7S
z>4e=P^OK^IA!>7}JdW%OcBHTjR5nB^Hkl*#3yhJ<Pb9N78kZ(g`mJK6$k$YqnMfj@
zO|Uduhfmu`E*mCvz9S#<-(^fD;Rrpl({R!}@X3Ta{6!|{tXak9`d{!vY@}@4Z;;~y
zb4#c@lLj=cn~mnb%{7D$TpofX??Zg#)Dz>OZv;){XO|>`NMwLD)9Oy_Qu=1j`UxBs
zDAoM>(tNvLOFZnwM#Fl~92_})5#Mc*9C_aX>HdDiE-is#jH}kPh1&G?5nqK4ah-||
zSc=;}6e(g~CY?KA)MWGFWR2@<n~I)fx#(>G>uEf`GBS)lUviovIPR_^;F-p$6yXlD
zLBLXPg(Pyf=GK|~*)vTGu+~dNpch3&)Hkq^vaFX{Hou6YNtmva>qh>U7r+6WJF}>t
zeL5UA9}g^28Wcs8(;K<yZ?<pVPaHG0e$A0ApS%XvwL>n;eU-C1EOhD3z{&aLu<sW8
zJQYZTL@Zw+eZj3G4}A3cZ6=U&i{59RDZ25lw9q3N<&TCWk|g~fwU7gvdJ+awCL+5$
zIk7wY2E*#>Giwy3eoH3(QMD!@l}R_0_a&o4QKbH~^-bLZVcv0af3$oBvlL^|H~qzf
zH8AhvUGq$0wa(IA{5=gox0jkKOz}KJ;dKK#wHS=Eds_K0uB*5|B$kI5L(dxgTl;Q)
z+UI!f%3>*TsFZkFH5r;1KQD!=@s7o7xw>3%;>_9)M4u;f_Tms<WuSeI4&zzcpiR@t
z#*tN%TYyE?2WTUvO>xTsH}zX-uSyQN)8pwbGz<cGoO(3~4M+yGc30EAm~6v;GOhFb
z3C0&;@J^n@c)6l!i2Z1@JreTy@kz^Fsb_f14c7;y>J-%inLa5t)^NU4l;{=OR4Mi0
zcR8koHuJ>emYW^MSKc?>N-%z@sg<>!%ZdKw*2UMN=gL3?GxY-&2`B!$IC;DIIUm@V
z*n4mUa7htg&fClVvf`%sIs|UbiO7kI=k54|$kL0Rm)hGCKN5rng)hQD7WncA*P@B^
zGIwU^X+)#9fS>8|TC>%kH6Ys@V4Jwpfp>ttHak9d8gyi{&3df7dwe*2oOk*4cs=4h
zSnf+XIo@Sx+_GqndnjZ+6;M-l8Lq0e4U+_KcoLAF>wWJv+A1vQ>eVh?!D67>yQ0w2
zW)CYRxO@hh&V})fyBYJZC_m_MDu6h(4&F7*CgPXiB6CUO0ngYhFG)YO?-a%&(h-ku
z2A@v_q6n{ugN^P6%~?=Z=)L6@F*Y=BY{r@E<wASwk3ZO8;wRB*xxdgny(_<j55@<Y
zJ(M@Gx(`R2_(`5c6W(^QycD>+@x`QHbB9>|#NWnkVNap;W6+7g3XCZfE!Sffu&Uzl
z6+uI-(964=GQ^0@s#=|ovXABH&je%Xz7(h}>~Xw~-LA~>*f3*Xu4wH)L)T@?%x51R
zyGz5ImriLEm90yQP1Quz*;+V_wQ%zK@iO(Mcm{}^qe8!!hHJivvcqMN1h7D!7lF9z
zV2uf3dLor+xO0A0tYM#>7iatrHFfq>C-+)QG&d4?`DISHR!juUj^;njXbNUoDCm@Q
z3Dc20bgn;QbzrdyKQJ`I=Zok4FNw=vl^>SOX5IzjGcG5IxQ~|t_lI67uQx}M8(%5J
zEb8^L)}I45KcSgV-XeVS<N8^jcYnH+Chs9gT-g}B)!;Z?o4PNQeO#t)y_e_pU1TJy
z36@%X&i!H2gKe1FE=xaLui1Kw!}Z|AtHScUf~eDk_ib{VP;Gl)MdiA;v)1ax%<X7Y
zw0vV)vCgt(_;Cu{zJY>G0Ur?Fof1_}ks>e0XBZw6s`l6S0sirNJ3Q&@kky*>HjYp+
zKI5-MjPZIMio~CZ?QjsgBKY)q+!0we`_%l>+U|L=EG*`2-Q%8<g)o2YITl_P8GnW?
zVclJwL$nV)$D&b1N99Y%mELyW#%9lWIa&KW^TY2ZS9>KtM|;)?)X2*CoVJ^JjcfPY
zwdc%9s5N+$!}#lkmWP(2v%_B;bT%W{{imXnkN3`nbO%jN*88ZmSMFY+^P-)eML$Mn
zJ*}HvIu)n8;p)-$?)7ewYK>%7$OwU$_1)#St>>1yM4dp>XTb+EedA;v5#i}BH_cvy
zXK&4K&Ar`L0j}xB_jWD5#k#`AQs8@Ez3)%2+Z09#7qIc7XS{f!Z_z?&(Tk~RRqL8c
zxL@ZaPgK6f7Eg>GjV6X4`w`mT2K{OE77}6E!xl=!Jz8wV=JbjW@ql(X#8Mjbw9Vk1
z9vF@8e+Arzm@tj3)Z1^lz3WR_S2v&@J)G}Cs?M>`8X4=$XY7$SzKA+CxJ9aFE;)4d
zlGAnD&Rsp9|9FVK*=>uRMm6n-g{F&Rp<pA*rAnuU<8L8Y*6A=;pdwCB8q)|ZsW6yH
zbv9#v6{c9AAv0597nEex2-TUhG~p~6SjmDl+RW1Y)5Vp?e*M$7cj^c)Jnl7fLWMy{
z%Ji0n>11*GS>2JwwrzX$sOzuXfc4sQOZUd&5Bv%Yylbf*za59S+_nYISVp(CbQ6hg
zsP`}~Q*k?7j)YAy#jHmC;K<*?BQf|%t$wlLU&#%O2>w4#4@PLC7q36rSg`A2reWfd
z+lp!c{<uM^pCV-PJBA8FCT5!=etWP=t^>JGh*d8<o)D&lxVfi#thh$r``B^w1%($?
z`xJe19DRi|t-TNHO+TsV`>*2yT7s%kga_>-B4O)(*1~FjBq2RGJuZUY=J336NFWO{
zM44}^wO(3u(P`Iq;)3p-BV9ot>))L$Ht*h;sRGsm2EPxB@fpH$-GC%OhHnQ%*(8~0
zn!2>CR1jNm;YSij9;y8}Z4P8S)iZRX3q465xpE2Dd$09Y6xM2Cr}6=1l6H!A3wi`C
z1wTzVWx&SLLJ+PQ%|g(1VfACSK~K11vzsINFmKQE&|ib*tzznr2eQt+1gLTe<Dp<f
zwNdtUD+Kp1YM*l#XsqYu5yal8@}V!cq?<rdxlw&oth4&0l>H7hdyqh?{pT=2>2nNU
zgiFLr<SDWh+0Bu3>k>iD+V3@L-LI_E`sg0sp6oT|F37O2`w4$m4Me6v!!Mek#5^bm
zh73*9ty|?4o7am#;(ZO8AS2*S+P%XQ%}rX&qnhSYuQhvu^~z&1lSw_b>77&lVZ3|Z
zf_GIO&hNU5>ouU&>Z~@Z&AGPO$9*e%Kag7CIb_!-!AquWHo<22m|0}eBjsKCmNz(6
zQ<eEmaH6d;mf_(AbH(Q6b{<NF_kGrkVzm`aUq9EU9U_~en=#_uhdyfo>aE4&#Da9d
zZ=<Iq!a+(MZx<D^(1L3pgDhqPd52QZb<<3WZ8yO??q3YtSw;REf=iTsZ$%0aH-t+h
zaT<^0+Z#!BM0#llk#$5ZZa?eUGgWW6S96KJQG<I|3jM3xFR(J)mPtl@E9>v8F%CVn
z@8W?yVNn+&WZlU}gM<i58G;ZlZQAQkM3q(@$9qthEiu0{`{4NG=`9v0lmRXDJ1mDk
z;Wey{>BGv*A(9T{;MOsAa2|_Kz*Ca9<Zh5N5n9OWrq4PVfQ1boRS*bQ?$OXDXr<hA
zQE#;Lvki>)<{x{z-YoeQexpqPg}@OD<A1}S4nx5S<MBATEz6yo#**U4%(XveFvl}5
zefP>l`ayGb$qHE-%7=~Y#<nNoEqBQs;)-EyEL;35Oj?%NViN}U2S)-s|G^~I;VNpv
z4f!3)Dsjm;=Crg(b_EyYlXG)+k-N@*QoAL$sSHw9y^x*=Ul{loEZmcf$cr!tFp=NB
zy~yf`PAW!%JZ#C}Lhg=#@&6sI*>^NdNCy}4`Id)e;raG&dg$C2zAc`&4LyNy9~8RA
z9pQiZ{o~<pQxGQO=2w5_;WVs3pb3v#pjMuB{QNga<1#q5W^)C?XG``yypxl?5qSS%
z>_QAU2;&XEbreDif8vH;O5*wV(4^bg@z5Xi6aA`j)8D6;<04MAq#s~l)?1x-nFsnE
z5N<I}=B{e*q{uFt&nwZeA8VqOfdxrs4ZxzBb)yvC+1N3ySmVN2<N^iA2+dz#-rvq$
z!ELrdKq^R-kgtv2@S0M-REOUH_a__R5!SpWEhI_)uVQBN0i$iF1*GhG89ai}bukh}
zUnuXpV{vSaFAijEQfX4Mun3i9FO5>K*O?}W{_c<WFO!4}2l5OgNbau3&Tl$sJ3v)t
zL;{y4FNIMy88$gv9!nHY5<nsU9bx*`Pqw^>1?_k-hMr!w>9j9q!yjLVE<Drd=4^XY
ziRsHW+24PpfBC-2uVT=xbqzD7#f@UY%WS9F0DN;0szjr@(1G+jN$P)nwtp(hf!wex
zm}!yORDdph8vIl){6H@(p06~-0u2;wAU~k{j$_2WadRj+nFCDvBldHvpO%XZaC%sI
z0{*|3`sXX!yeBKOT4>-K66J@iBfcyy`rpr>P@nLVitQt<X0xJWUvGb;8SW1$|7kAu
z3e$purCe!b^(L1v$u+HPi<wV-{r&NYiFQvSb#O!JPkV(FvQkot)>tpSyuCa`=Y2ci
zG_)R>O;&EPBBfLchCAa$^QjWlxdS!k!F`vA3D@1G|EcZ$?|)@nVamh#toCS$|4j<>
za-tAfiG?dz*E$KXMK^hu^5!ozD!p&etW}AQirV(5SYK{OnQ7)#s<E7N8pnZL0Eyg0
zp|U+LgvV*`&){xGS9kZf{VcJN!KO8aSbIJyB3q{fV7EaXcjqh@O!MDY@o(D8zkc}@
z0*cXB2vzal6fYsuw;3Y!NQxW{MSC-?;)<h}^?`{%?uPneJi4mt3))N?jZuFr8wsSW
zEzm+xqhtC>igwi3*B70XwCzIkl}%GKvPMvwJ;j5O4(+YD_#9Ze|9_T&|9yAKn?3z`
z6y43v+y3Ti5hB`7n7yABmwDYgaSAdNhMLQu2a%AH9>(K3uSQ}===FpXACxhw-e}!5
z0-Vl!@KUe@NZBMoA~UQQ<o}SuNxgzDgvfszDIrNt0p3r~`~lhf!|(qI>dM20^TIyd
zjin=uFhc&RD9jm%95A{GER_KJ!I?UPh*<UN;eDh-2*xRBgsF|TRAK}j#w#nXN5m@5
z60E5x`DGYXieJKC=1Xn1JG8o4(FS6}@YWm+d}DP^T6#Ech>4ALXd-DK`JZu)LO{p~
z=5s7uT->v-z!U5xA%_KmM!e=G5I>qV#l!umb=X#%sWMe6qZm?pT3Ba{Q#?KR7vnp=
ze?yLvXN7e`YgLGsxs|Oc0{O^h|5UnNSg5nisH@91)D)%h%FLdTGQp$g^k4N@ah?;U
zLJD+B%cpPR%(*5nH8~KF;1=DUw)HuAdHn$TG?|sru9;+-&y@Gk_YJ17d5!UBEI$H~
zv3=Tpb1-h*Fn#N*PP1D*IV&EM+8>u}u2uTAPlHN5|NaPM<d9<wC#y{qPJCv7j2Fex
z70X#{TzZwQM+h43#xozRs1_*xl!2#N#m4#oMTUX1033OI6(c}NjlEGSg8%+EPy7Q0
z5N&k`T3T0B{c&yRqMeKb!mMsaA&2+sGZp$l<ED!$7qo}b&2zO9Uuv|enH@`uboo?w
zs&|$r<>VG<2~6P)Td#IzW}alXqhn+HC3~_m*q<InhsC$O@$qDED4}r~RAPZDs)5qj
z&@j<qrot!}B->eeIXT5APyX|S`e%(4TA>6U>j}fD)QOx$R}9BqNDzO)hKs*0Td41y
z5H3XO;(Ba`@qa%V@`ecS-8@5u&P<GMBz|#YFFG<kzM^K}>9(LBaMF6@WrL(NeX3oo
zQI<B!d&Q_ZB3lM@OiCjM-hi9Ov2CUPM|5wpHvbXV7c5=b%ENgvrY^i_9pIwX8f%i}
z^tVd13v*TjzaISi7A?{lcCti!mt(f<`0MTC)fFuF^*Tw(C3UUh*RH~eAJjKCpM1Nz
z-qP!~czpf#?Jt&g+p+J{=|;Mx9-;WZb!EOp2*49sZF4x4@yRy8Xo5k-{_CYEd)fWW
z$wpJDj85!Yu;3i|)%9Fz!`ync*^G$U_;+%_$Ggfo6P3Jd1Pn4dWS5O!nHJ)bWG4L9
z#4?P~;@G|#Zz9yL-J6xDCJQ%YcR>)Z)I;N^Pa^;J_P%$NtbpZ01Uw5&8EC65Qz-?t
zx;x;I=T}MiWmVuH_^2}AbGID_KV5sNiB5#(zy0TboTK6Hun#u+CZOU@Dnsfjri`NF
zqi8}nU$RZ7OqoV9&6cUTaq!Np3qFoX(>&(H$evI>M!1vV`e21Y@bq2Egqo}#(1|3l
zMWD&(n$(2Z+BWlZbGa8;UlaNKd{<jfDc|gddfY9zSZ|(BbvU!eK{fyO{swja9tIw*
z7aV}|o>=EQQwh@*<yMP8MMGrG<VM`!^IxAa<1J<6hpDAg#rRWA#+xJSYAjDZ9@oEm
zf?!Ng(dpimInw=ii|`f2R}@h)n)^sWseUhzGbrbF{xHCtSoI(hD7uVoQIzl3y93R8
zn~cQqBrI1dFApMRi_vDaEAPGDrSKiiN7c1@`8Q-E5E&qJbrD4)j#$J=+0L9C)?%%P
zNP>`2f*l7bXlPtwJNxRjmt#^=8o_(BwbB>dBMZY}y#2GpyE(Q)-TJ4N{JnWV-Z=Ag
z3{b!D1uHJ?EVRbZa}o(4klr{OlRY&~a@gpPTet)Jq=C^~@AdE51i?adu;1QT)96HC
zH98;011O_z0$9K>fy!=oi6{nay)fZ?*oUiU3k<|-Q($$pK0vjhV=erXzC%ZiV6oJq
z4K%~_Ch4B>3{bJr_Jx6&pk(~~^5i@~w^nq~^YdrW?-tr;MkG`mlj2Cr-Ev~!UI<5n
zHX8WZm(iGxk=Qts{wOy&OlxLwEV+h8D?K7@^%}<OZkahcK00N0d4oZP!`2dg@4UWa
zs9KnW;n$_nqnEha{PB}AU_JYHi>uoyP&DA+K_eo@t+(91WLxk&>0=p|p8T!;YnX5A
zW1rQmYX6=Z0p|6HpTPi0bk19E)v@)df+T_uP#K;fUleQOz3-ivM@^$mf`WqB;<W&_
zHE2IK|3YY(|D>0a`)d$zcKvoYKWpy#2^JVyQLAddArtp6P{QxyJ-mygd{i57Im%nG
z)5l&qoLa(*N1><ztxJVL4;rnO$BMW!Fhae}jqefT+(I5*2g)1FB3k9oltLbZK!i2H
z?BUo?h^0-V!CvV((v$f8dC$FfjqRgcOB^nviUb&O?_=RDlB{rjf$8IQ9TIno!72M=
zDzEc;Zo{N9tl?S!DyVpLu`d2w6{_;G1)wv`p!0$Cnldsplz10VV&cj+R`rkGPN+}Z
z$GLtf^$0?U7RbPOEuJI(SC=PrOd+3z3jskc^kB^w=jR98itnW31w0UFfgRKvBq-lV
z8ft0+&V;7dD?8{LP<||N<KrI!_Y%p$?heT!@Aj$p^+WjZwUnV)j`-8N=|)SXaz@B&
zizV%E4m+0JrCP-*fQDF;pGw>OZk`G;=sd^bnoEfk%V24^n0>dh)^OIH1qVsWHf}A~
zYQTy6rf_lDkI3~~CISu(bhR0^M852hOv3J@B`*UKWagY#(&^O87>!L(FtxPv*3-1e
z<0gB==r9y+<I9EZ;n+luf?@#uZN6yEJ2)3KgxTJhnX-?f*TA-j;jZNShk|JO6<5gb
zD?n83{ZZOt=B4WLZJkkaX(;)2IH>juIAvU&-=w0$YSa`R>Lp|M3=S3<=s;z-dDNf?
zx~FsRh%xFLorY6(SqNm%RnXA=0buXKXqFgqHkE<5^QpV1FLw4ZFgRjsokKQ&25S){
zvnU<V?ShFE=7@92V@<W+p6N6);x3=8#t!$1q31wgSO5O;2sbE*nU-MNH2UDJP<o?F
z5>UwZG|Bxwh&&aDTfL(Z2?%#n;drc<h<`W<E6^=BbL6fQRAxudyPbFy$NxyyVsjW|
z$FXGv+&V#bNKdCh?n0cgcQU||z#l%a_vB`^Zb0A{`ogi`?t1Ip7I%~U=-4Zw(W2-v
z@rE&)PS+*gb-vOcFH{fsG=U4D1&-o-(R=543i)C)kzRwXSy3{*FRlm~7PsLYst?(^
zae&tm5Js4r-Satpi!gYJPZZPI1rh@N@==r?vNu~jpfXncU-N`K1IE?q2yVw^GDBTl
z@K^!-Q*{tWd{XHB%9BaXD8ppg_rsROn9l<bE$!w&hh~(R1KvK2Kfc>q|A_5lEl`jm
zYM~$(l|J2PHXh`xN5eh2oiq3wT%USF``?&JKbk+Pd_scUI$1j7AT2ud@NA!*4y`sO
zXCjJa;7~@sS@v4`P5eIYyO{3gt_1nprH78CZwzJG^!EM8r0c%BmlCmSviyoq%Jq5M
z9^w+LOv|2ANQYUQ57Y^;47;tjuXa3XFe;zI(yB7D_+b+{)l$_W2tAg^9L=B{UN=O_
zo?{Yjzq7PDJ>%}O{!-O+BQqg<s0<gFXGE48^n7!tz~J^O6`jszJq6Bo&+xX)ADb^1
zW6UNBlWMy1t;fGBwA}oD_wX+x1q=21E}SYt*1^aJ_ZqH)yi~OmWwXin3HyA><cBXn
z^Ynq>ae6;5?UXBa=ln%Tv2Oi4=Jpr`|0^@E^OE|_7uifduSEmUh|RzlbFg5J;8udI
z?`2n<Q6@v=v|Ar$asUjmOlR+b4caTs6ToiW<_qMN9{PqTd(Ti|G+-4d|KrbD)B#=1
zKP(k?D}e7wAw*A}x8)HK-6Ws%)G#7I#hT+}sXI8cKj+M~$d;FMM<XL^6N=!mi>~Dj
zs@nN6>NgTkUksl=f|2nww&B9TaT;&T`#?#dnpChu!dt7$JKd{PygzbIT@cR{dO8sP
zno59M%uy<!JO4vuzzQo>1q}&ov0f4Y17_H7KVyZj{_lD{i^9mx;89;tfgD6*v{*I1
z*(TRY3kRLp=$M!VII<?_vQKYGf%GJcNqtrGPycUUWAJi9nG}&V)}`j>t;UO?BKwW3
zJcK+u1XH3=cvjx;uQgN#zwOnr4&!yeFE^9%<XL<~F}i8vIY>5n*LeTNY)KRsqV@W<
z!Z%E=55*uO;_wq1oAIo4xO*C<%J-gr+spkq)q|!}S!W&qC<NN3HyaJ$33DIED#@}f
z2F)YEy%&1@6vb-Af{_d~^BoEqUBS4?>q#cvjh-k()1Bq)0vycS3z9sDP0A^YYd(Fm
zHH;d@Ok5Z9k87E`VDDuwiBeQaE0@MJ&qBA8=5f;ZPJPN<3r@xx#9vzBKlx9-Rs=m)
z#Am82na^?Fvx|nNzfT>4<cb&rD=LN#vAk|A)XU%QytZciFJA@WxsvGk2GvQHG{$oc
zN1NUJ{DYX#DwqmgkMq5hqxtwWFRDAF)=Grm&$b2KFD$a@KI3wX@Jq1uyS&sWg>*I3
zpb(AdE~0{30niC6I=~`M6*xMI-;BN0G5`}*4;>+fhQFMYRB&p56)w~lp*RL*Eh?u2
z9{m~J?01fwq#HQ6Vi_3-dp0=lccx0WoMICHC_yBo3J*73vH2>CU?0#7wWa@cTm0L+
z$nvDf2cj2U=lQlPt;^Xj8qIFik~%i+aNW=d_)%&>80O<hR<5)%-wd4>nB&PDcgESI
zU<_+4W)#79=<pgGD$LN^x0ijIwHs9>EVBxfyTsDf*tcos3??Q<{f*wOiYh}%I~-|`
zLp>)G)3@uPgy@>gjnv=3HTX7BL{988)JmQW*3O@m$JPPMp80LPa<gLDz7!72Z%shU
zZU^+-gm7ZDSu{AlB5#+2+vycA%6fwF1^7f%a91(l4$OeL$jfW=?TAs7u9qTp#Q>C%
z1blg7bd;XWJ7g3g`W?N|U4zhQ1C_kPX7gb`XX1g!_d&toY?`qU`4T7DvKV~kntu!>
zU%nKZkkc!5+vXmOSDpZg(M-<FlM3F?G#QBAXK3HUf(_gP9UKY~mpqMZ%BRr}&jmc{
zj-y5BIAJ$zqI6SsBW?toXV<gWWpqA#s8V=gG7R|pxe{WSHkf2@GvbQF_0w@<zZLDx
z7aUA7<24KkLemMl0(ujCGEcR6eX4#{#|zw!S7lNjO*seBj;*?VwC{saiQ8KKZh=7d
z)MG&Rc^}dnvB3{ez~XxWkqKeXh~`qBYkQXNe6*YHiDms$pYvG=uxWBl6Iv826<!%+
z##NXn7iqFe=QZ6|3Dv;I1nf5u;9pkDaVhk7D@SS*PCfr|XZrt`d&{V*-*x?Wf^>IC
zhal43semA%pfpSn>2AqMiqZ(uNP|jBcZa|v1nCBuNO#wH_^q{nd+oE<KIebloi~nw
zj4_$teD3GIuj_N|HXC!y-J3D~G@rj9W6`!0qvCUcv@Y>S!)k0z<*QarmMyfV{loc1
zF=()Il_fU-KN7i>-+|Rmvnt2MI`-7T+Uo`?XYXaUwWs|?7EibHi&Z72?Q9Y#`>)Oy
z{D{g`Z4Kl_SHtx4+LR3QG{#cOoz{JlFIO8FHZ>hjpmgqrazmFFkEIV5gy2u5>7mza
zQVpr5GdD%pd7jau@bk<Vd8bAU$D$B6YG{ki4xb^PcF{qjMwQyVb)hY8md%M%s58g0
zQ0mcFSl#1CEH4v*Z|YOjnh~R0N>yxe;Z2M~hVS#&={8H1o4cRx<EHkV2*Sild>#0;
z{HhmnwYKwuTzohNVW(Fe-B>Z#7k1*QA}v&jSN0{*MK~G9>2_;#uSI`&Dt$48E`MXj
z&<gA%xLH~Iz_*(kts*^t5fa<2dihG5h9T8sXO<0c`~6H@4Ilb0*4MgiDnwOniS@9n
zg7;HHG4TjX7egv6CInl%->wGN&ETg{Lb~{=Sny#Y%aAzF6UBw*?OfO`-r%XR;0i)Q
zRP>cr@$^=V156~$@vw1>NzG$(T-ocy)^3AaSFSc~!MRcr@O=TLhstWYvc&YO?l^;K
zwMfYx`Hz}~!NC{8JWLH^khoXo;V#>>lf*hczfLcY)>m$%TFuH5uTIstW~*GgDJ?L#
z-tFrJ%V?>li@gHkA`1s{RJ9e{^)U7lo@<#hu#xF2RrjOA1%dXzeS!IL$02W2O?=?{
zXS)Xg@#R96zbU@fP_SQl1Q3t+yME}~*LBqi>8BDrduW<1V-<3_0n#dk8fq20@1Lf*
z4DveJC*${AfXWKY6{2GvRof}eA&$LTHohULsT}n2!ETg$Tsnyq_bWpWQ>&`JYk^5k
zsL#>QAp|XMXwPEv<=nDIbJ6eod&Faf+KG2w|2H{T8<N`d^_>g|2__JbmO%2Wo>Zd+
zG^+EZF=kq>w;d4T?Qh=R+@TRG)-sB8EAnxugj6u*UV&}hnr@BeUE}IbvH#(62ijol
z{cvlqfo=#2u&}*9DY-U23`u|)+FIj)@ai4Gd&f-T!#;-yAW-3ob~K%UsM$UMZi^5m
zm=~un1e%^_Eq>fUZO4xQBuFy^JlPrG%&Fje3JMSTW@B$p^as}pw}UNwqG=@~+FfKb
zXoAr36TnCmE8!@s^W#PQ;~Vdq`SKz-Q*guA-(MY0_dk;qedYxFpIy5V+eqhtxMe-L
zqSyXYPB&A-NbU>vO~0i*uhe?sxzQZ5y`T<&AT5_<tOmy}ehxHVHO&JSv>kECf{B)1
zrRC0BKC9R6K%rBANb?m7iHvGaA*wZsW+w6=z6nwEs>OrGdb|F(!~|P%qELJ298cwh
z>P=4+)8|K5SgwlyRbc$Rl0@0u6&EtK{5{B(q@~Z4Qpv41D{%I8bAvTWFvg4yNds~s
zW#qQKoYz|xVy%@TuktnWv<#K3r;O^Mj*$|gl@(hHD=p962BCDZYC#HTRRJ7QSuS+z
zUh|(0x_@MqdmoCm98?$J@?zb4qvbIC<T*xJ``b#pQHPjD-^;yBEEIwPz=im1w`^aB
z4@@93&QKxqG#Lr+2U%*qkIOy8Jc1j2d-kYvd6Ntd+sXY(j#h}{es^jPCa6X+$~?3h
z-+ozRIYMPR=gN$U@aodsrP7$y&q%5*zDRqJjusW;vD2*59=kH{UYEB*Gb;-H5zyrA
z{175wIWfiw6^G>)LL3jegef+q20xINwMB9#_?q=!l1Z-LUTCxQX_8;Or`f395^Q~l
z8*^tvzA!j}F&lmzs|~5#l9ah|`Pmzo{Uj5o&Z5YLCT%y-u+A&{m!)GMW~t-r1sAyB
zZ|y7scOqh9Twbe&<pxG-E1ONyiIYHVwOAI_jURPuv~Bfj=^F==rrJ~^Eeeru`AH3^
zqiMWz3>@2n1_KufS3j3Fdv$)#j5to^vQrbuDoOM6VinzOG*ZL4B&W#}ri)$C=IzAW
zzPULKA9yXotW1ASN3N~b9Z@&W5bfJpy?uxB!+YVD?ZP3M#tU^c5Dul_=aR+inh+cS
zeE_ReI?Wl7_jmxmFYV{^8G+`x2cmn$!w6Ncryqcg?g1(C9=KtLmgatxI@7w-KgSFS
zUPOpJM}l}vRZ|m<JbEVgM#%ct(?P&@@eqhdrS;j9eSGow5fj0uy8vecF!z6l@&Lc|
zSv8GO((@#Lkt#W9!+KZVU`HkViui?1U%)nJfy?wK;QoF`g{FMG@rpwNFCP;i5;Z-y
zt4e9G&*|o_TAze>qpNBum{W=-y<jPuoLj3?@NsR{ez8%zo}W6)=YX7tH;9YEM$3Wq
zNXL?&rQEm;dF7iVx9`d3#Lx@p`hlVL*v&{&nXJFiA4Vt#BNnyw50xC#m#^8AkRhii
zfsBE#Ab)^N$-CJ5Qb8B;;QkH+`{JPFp9dTJTHQ$xi82LDciE>q#mPR;W;~?uJy251
zQz(-OfYh9ZEVa|(<ANDGZXv`tTD~Ss#_DmVLS%}<x%8xy6Zbo!%em^^vb7J-j|HHF
z7@?5Q&mL))*nT5e&IK`>A-rLvjnB7cUqLr$Pmp8&NZgwCU)(n17c`n({``B__|NfE
zCI&SOgZhO7_k*6O6ITGK4LPgDz)p^BCLq*|l-DQ>ps{MuKu)JsV3VO|sZN_c8dv8!
zS5F%|4mYPN+@Z12rXZrNDKs;UuC4xE<_#4ad2m~2A;guwrc-yzXvHSA8K^vF-6zQH
z2c!%?U>x<J9%d?BQ*)VXS$+ix6i!-<g=A+8MY+Ys`3koj=RCWiQ<>prw@{Cjwzy(O
z$M+WcGEtvna8N4jg5!C7xMFxfm+f_aL^tcSS#6t`(>zf2`!t}b;ep#}tRrK!#4MRS
zYSB!rN)NK%KqF;$VPI9ly^L@=PeB9nE~9Ff4r^`CY@fVG@2=G6>tEo}?$wPK8{|}H
zVi2g%-`3$h|02`Ys)yPA>g%HdBVUUsmbZ?;-Mj5x0(}q;OQC0nr82UK`;fI8R4D2L
z90pTq^M!RM-H)&B@$vE3?~V%8p9;Re0!BZx&G9*N3WNLJq^Lh4M5%iu9<2JWEWb^^
zIvSNo7PR?FEwUJ1F`KW-1d=Rb^L?3b-$(ilNp=_>02tWKrcQs!vCYM}zDL7v>HP$Y
zAtQT^<Ye}ddbh{t6D=kCHY;<zB?~|2BB%Xq^(^EZ_1nG)bGN$zpIsxaY=m5+e#m2t
zTG-VJo#%S_k4-tQ9ndU@=%_+h@?301nyR)-?KS;AO>`3w7tk3(zjXQw6eIT2FG7U~
z1|Jw=c{Qyt+&h4s?vQ|#@46Mzwov|B1E(&^o!y@@X^*tw30SMXB}b>Z!7!=ifVOT_
z#3`>bWk6t+)Nko>=T&85eaSL4qtjv!>}gb{UmeGa`t7KW>Gbdnk-c#nlnJmA&xt5k
zs`U%2i14P+9@L`0{SFGp-XA@EQb__<Bb~F_-X~kUr+2&9Ict!wU^2Y9*vDQfa7sq{
z0{P*WJ-pxPHnNwaCxD?Mmzj{mkqB)Qm+zKca7ep4$=Z%`KxrKEiLvzlxZ4yfP;#A4
z%DLw4NZg>XM+ETduNrJ5Fcy{mdnf$&LPZiFgA$eW1~nl*)0e}-5x*~+#c8ytixAr(
zj#VA6fyW)B1*Ke69(G@vwxx<RKf3$tkZegrnLLE~Cbh=skA-ej$W<49(=x|P8eNWe
z2HT#!kq91!+l4xp;G&yr?Fwl3hgh!_n}z!myH1~oBf@W|ppC>NL_cPP74YJ4pCMA5
zF_u#oKEE+ItdTl4NajH}aDBBEPr4lQZb#3$Dc-&8u3BxYo(nbPBpAln*@iX%^IXIW
zJT}LE{kY(jCk$DBse=kgf%V&i)GXBZ%H3A!4o0dJIrP<AmW<Y&mfZ3=_ULFyi>O74
z2ux00X2xwNx87$5=A`Yx&3p|}k)uxYg<%4}z2elG@{|X}N(BAvugT0r!x)F4ZYgbh
zx82vT-?blh@H1UJJ@4ChK3$Vi$K>?RVB?qel<av)e+6ycp`NPtN@nZWM4mtzTCKiD
z7iU1GJ+K+=?yb1n;>~WhA+jWvB+-RhYHNIYbe@$y?XKpPVEUS>Ps6c|j_=p{@)D5>
z6XiNKjc}f64LD8R4#vcP))lr&L%ylHn(pD}*pMpb_Vc#FgKW{6)PgR9z0S!)?&C9}
zK$NHci%3L`wVJt>`>#W??JzaMNJHhq8^m#aYEf}h2=ED)cidM~7i{M%0E}>FuBrYM
z;hSM`3a8Atg@5-PNJ+ox<6R1RN@dLT*%P5$Xf-=-+vp_R<KG!6BPMq6W3C9X*T#iC
zeF<2Zsb=n76s;Oj60biQw+B-qW?go%im>S;_9jgeb?NfA;r>XzMdmi&1?8o5!_ayT
z64HYlOZ31*wP=>Ri^FYrT>vR5rLk0oXZYt?$P#+i*JxdzdDH57FPol85<8#7tf(7f
zYg!jLZ;4wG4GAe}onWZ0dw28<goDe3QS{SsM8i&fzh2nenXv!`D!+v`0yH+8Sg#GH
zS3O=9v$ZR=2YsQ)81^mKwxcaD2i8{pH&0=QH<t_ORzwfyGoJ(^YNmKuJP8O1WuC7_
z@DDn^HQfjFZ=<I_x_q$AY{umJLZU6dV4KiNQ^_4d-@6@yCA<G?Q)${J2c*pXhsW5f
zuZFuQA=V6zU<00dm)!yC^A6v*Vdim(GBU@NNMW(IH_(TSvkwdyaA?E?-Z$S|Yz_dD
z|4uMH&tY^p0YkGk!Stejh<7hQLaq-!XyQ}kSjM3<+85U`+Zg8ylPO{1nX1p%t+xHT
z$uh*x!12YH=AK-gOgze4p)m1JuY{sMGCn6o$=6xpCB)04{dvSH0rOMg;W?q6OL$m=
z*Yz5*rbF=Wfwf5T^jHB$){kF2aOS}qt)sH_Cwt{xQ>R2e_1v78KOF`#dh?2gt`rNm
z&(|_a$#B0=2S020<xe<iTXQ}4XP670|5iyyz$K;bHu~~G(yijXhA&F|+IYa;enb4i
zNXy!&@x&mpdjT)u{Bzi_EjdEklWZv2#LwqaK2fqIbJ*77&xfyJ=A<n%AINL3A_!|x
zn%A%R8W>JbBqvagw;em#WZxF#sNuJBLt%adEPFfG!ps0?`>uq_fuRj$Ht>f)z?@n{
z&Efuv2O1m}=0B9k-JK*g8}2SCC0uD@aVypx`M!!VqOLBkr%r@JE?##w3t_jSH_Y{V
zZsBQR6E_@|O{S8u<rhq)Z-Z=NJ@-|gK=3@2JFpDJJnC{P;^s|K+V~V9%V4fj9N$gW
zwt->gTPGh=hqge9oX;Z38J>r)6U0)49a4sWS4~L8c3!dGTLo;cIC^e)x2tPArZ*}a
zR)n7Bb1<L;hxGyF{CvrM6f!`4+VMYEXLdTBB^FMEbrLqzH!8t6mp30d7}@JV{4w#&
zR*c?XEr+J_s5qM3xJY^I7#xB(J%Q^k?-|n&YI{xHFxVa$#)#;8pS=kkrj26kegKD!
zeD_+k2|C=-f_@bn7Z)+|FwA~F*MZ*?{Gc_@VyIRoB6{>)`U*0HxS(qQ<<j$N52(gT
z;ZuMdwaHqy7sK#)mN0)jl+G_H-Y6MkLF1hc{f|moloI-+8L7jJS|A1xek)CG1MQp;
zY`Y50S4k#vMa8BgfXn|7Uf*IIzy6Nrh`UUDiotLtdHK6RwEx$Y^f-FG$L@}H905Yi
zu$;MxUPlf|@&(F$0%Rcmahc$nDCM3Mwx2ztH~Q?2lX@z9aL^&q@Yh|OpliZKqMiMx
zX1%2=yEyZ@k7V4)d`OMtN8~rfm4DNZ7+*ihEMvf-`e0evJ3RRNeY7EkwIa1s@Hwzd
zq<xtC;&i|u?SfEAOyqm2!88>;PL#TPHv8uAg%aTxe2hhlbT|CS>#I4G?zi<f9vf9w
zF%ruI1wmyf#)uNV>dxdrho3@KAK<&Ur)eaZQP7qH%SF9R&3zVGpI69{sWq-$l<Xj(
z^}y6LYHU3;a(%@6F!O7|w(0cyTFfNz2h}g=n5Q8n*h14@7Seqo*i=2q-(FWsvuTFC
zuQpuq8*cI8)z$Yqt2os^#pdmXUD7sb{L*OnX`|JdJg};jDqUI@t7|8$5Yo5hOWgb2
zy!iDv3A0g@sr0QhCYqwkdCh_&lcw<|)@b8bVq|tq*17#O&)op30dBgMPx}|R6Nv+&
zDwOb;ez&+Czv#O4`fNd)*K*{QEnaRM5oFCV!Ks2a9532pzhCco%;-kG+!S{WI?>V>
zPbhd*DAG}_n)+7cVJ#QWTSwUDp_uzXTPH|WNJZ90S!&c_@V6x9zdg4q8JKTs2nlaE
zJV189v2oEXR2vT;!g)`v@=!yih?pkNEK;b6=cWUv<@u{BcdQO0OVCH)q9E-Ne@PNa
zNlg6kVASVS+4v);%VcRGSI5}*d2$Y!AaSR3Q_06)Ond%Z+QxM|6=Je$vr3)j7Qx;O
z0zT~;$8&nuwg$cuB>E!t_q(0~dKHEfe&T*Q@KfT%$TA!oIgnlAch*+QhmjLI10;h5
zH2C}y=8U3GOOE}clO+`2$Gu&LK4Ryqos4lF@m!#WO=jbq=h-71CJa5?63}vOe-XkR
zd6%KE7v}<MggP07GD)hHS8cMhQ3B=TV^`iOouxxM>yw4#NGN5~plE!_wuAJWt)&&q
zFuRc`pG~tMIOoXV-?scDNTD)81Q6q(sf9P@hkO3_@Ennmk_Mj0(0^i^n}EV3b+ByV
z+toAn<ID%$YN>WD*C*Hl2Z1X0pQAXF1mIqF!I4KKRc0-eX}my8mPxllECz&RD)Qtd
zh%UW3f(C6Rt(HDA(STCi(;@vc1q-cwC1gjl@YHIyD5Sq%C)=`jOJuZ5J%gVu%Ir{R
z`#Kk^gHznq-E%mlCq*tvOWy=VXrEHE(9IsV-P8KgXZw+lYWLHmYfLAthpm&5!wQ>4
z3Qvthm*wbHY_z&J;_D7a7hrql6{|*}_YoClmxG8hb_b7^PtVAcp;A8mjV=pSY{mR%
z$1hoMPAr{P#V~_1{7MX|^c8I;Sg;`i*70XgK{6suI>IlGMcyj(z30tKX7CQ{tr^p5
zDthP0r-`R(mb?%c=ws0?@hZKu#-7HPyH{U|`=QqSe9HTb4DZ9B1c6=bua%xbNWsYM
zZ}J*TO&(4e6ZKuUPJB){su#I{`(gIS-n@S<^N53>94F4<+jvbg$zWpt+E~>*IadU>
zcJEu?0RQgDxRCrG!oKcTdb^{Ne%vu)*-<)4wZL6wI07PvXf4OX!_kS_OOUcRdIj*X
z$?c{)Q78y3DaC~lWck?#P2N2VN*cUVWxpQ$D%37*C8_BgJNY>=Ye1Tnr5g(gcCdPU
zv4f4Wc%NBChunB;*29T2@KcH_is>l%qo;}5qa*>xqydA54QP+oM4MixKQH2LRYd##
zp7_l;7;4L-<j-7xD}z9GL)xzjF04lVo)JM7&x25r9{jiX<L^p6o8bK}y+YpjsE7~_
zubJm!0D3*4El9I52Y?6CsCTO8cOFKo$KS0!Jn%Od=J-~&k|Il3hVlNLxG@Kmgug!x
zlSfrjb>~yKDa+@M)$tOe_3VR#;p-?Cct<E^+?AZF9!n}Lu~H?vSgcDJG5jdwOm#NG
z^Cit8EF7Euw=Nq0%Y^pM<qguGsjMz6(fHr&N6Os@2APK~(~tc%@IxI%f0lDwr|4me
z8|1SL$rlbgFg+SnKkcxYC^}GQ$Kg(u?wR#CFhcw&+~rUAcCb#S{4O|NX+~us`Fis@
zx>^o0k?LUNThv}}&G&fdv*g?%{iu+!vs#suWMS$XuA;3#MNC#MzkW{Pa)3j|NIIyn
z;I4#c=%PiM3RN|@T3MjsZEYT4t;`qlFw|Q9<m)eU*x9IG4l^x&m9C_u1rc)#vw5`g
zaWU0lg#Xg-l5_CSDOJBdSv2>qF=fDt)LxtmBm5o5O^v42Vg5!g&%Teji3qpVuT=I3
zCtZi5QT))$^o?0^vZtR4q`I{yyn4PVm|0F2oo#xba_z6#*4H~WIrctCtUay*Og1!R
zNDvyXbC<D!cEKi5(ot7eSBZU+MKTuT{V)X8*Mv~}XT9{#FKYrtG`nm4pB&{U@D}K%
zh}!R`+Sh-T1yZq%*}4i!DWA72x`NS+W%G=~?&-rskRrV*u~v|P=Pp~z81R`s2aP0v
zgCI%F?Auf}v?Z9xWvzSRgHn>9_|#l*y}gpZiuylS((z{~A5S~RpHa9D|0USWm7#AA
zN@9HM8`+)9L1oV)bT!ba(j6o%%@#yvq{`#Ow;qakfl@AOe9{RG+-lZ>5hOGEmwIGX
zQysZBudf<Jsp@x9EUc?6)~t`raikolk~k^yP7L*qcsfNk1*_<$!6`0XV!Ydq*bvA1
zT)2bmSn)+hW>w><_0X5|WSa&k!K1^oib2u~DWwkc)lF<=)4O>#ruk(Zo*irK2^<0#
zxFiaeyGlkIA?1YAG376MoHv;?9uCzDU}{!q?W@8a^$gRwlcc7u)*`Np#Y2%ty%*{E
z_hN`ucemYLxbC%DEV$g7D>R<Rr-yDOGmi=8H|#cxv%lkp3sl-}h7C#_w)&rg8M3<W
zQuQuzz4M=}1{7onCT3RL`siA+rdnNBn(v7$qO1c=7Y7SY<B?{1vlmK5>>Ncy)e`+2
zk)Z!s{prvVvjgG>y^Uv2WRN2lDo;x!1X2m!?I|E}@y#zuAuHY{qnGj1j6oQrnUaPy
zzxio>E4nqncw!1uP^s?tTE}p+sa#|*P1`tzruD62!+0__VWwd7fY6MHtTx43k)m$@
zg3qC9$Xx6(8|5f(iSGnn<vHNqKl@&(c$-djc=F;m|FzSq1`YFs@-H_=idTx_W4b*6
zx4m3MmpKQGr6&*ksSGZ53~d16f}hP<2&M<~SA&nihZ}W_&nZ#HrycsiSeMi8MG?}=
zcvd^ql)q(|0uYpWpThw(9xR%`zcdzAp)!0PUrwe=ekM$|#traH{pzoj{W-z}dt1Rj
zDkhM@_<ROKg@$sWY@=@Mgi=^~f`4k>H{6b?{{!3gOT-~trAdq3$G(%v*Tw`jj@`fM
z4W?R^`=4`npfu&#8e$dckySh&76>7Oh3;t0h@gHTg;b7uNE}p>)P2lJghwW~<Qt@N
zQL&i)8L>E|xBt2IWa$IFiJ?p|UfCl^jsz)#EB&u>Lsm?*o+!ynlqCafdRyM5&FFy&
z?R4{-??c_@Q-O6Q;kD?0s@MIkce&t0!0#z~cD>3C`+6d@@vR+Kcxy4msMgVn=rAML
z?>fxTOCAUeB)c>7d`{;|Q<C{j6XZc2s4)n*cu{N8`;j!iQh>#0q{?PBMCE`?rP>`N
zwArtMjA^jI)3mw+g$L?V81i!1dk^ADr;cDz2Zn{ty3TV&lg5K)qOP*|#%A-RA%Rav
zJ97=sc-ErsP$C0h+Pv!ra$((yk4uX<@@0p!9$PQH-_YBAMfvMjGB4%4xhmhp+qa+*
z6UY)Rw()Q!^%e%kCP9^7AT~5Lx;N^xdQVn+vJ(iTHuxVbaAGHDXa9iKv|J}#Os%J`
z^fYOUeYC;qhngJB5e1JrFZp~;fenUO4NLv2a`Ycctp|jY)`i7I{k@aiTV$-Mk7{Q5
zjMNLYI4jt`dHzMsu#Ca@rH|zAdfyfP%OA<fJl3|pALjzc??W7upY3&I^UE8>2Q9Ru
z0S2<hUD>GS1AP=LMK%kZkwXS2my<=R;_TGKEk~>{I$_L)?SNi*5mJlzwAE|Po-3=k
zt8YZ@Gt`c@?V_yWG%n@@!d9IYvbB!_LiqFRmy5;ijJ@o{ADX?g+_)6*9-;6EQ#eoX
zra`cZa$ZMK*?lBf%V>0)A#GbP>B+E3sfsdpw68oKl$AmrRqUw(A%C37brQdSJqx_j
zgejN$)){w`B$6XcGPXVN`$Fy&-6QmRO%rT2Dtq}Z$N9u(Jots|!jnw)_g~&YaDH-D
zPcoiuH@YleovWsK@6;hcIL6S~X@T^0FSpUAi3wJX?G(oc*$C)97?D5PlrnT|^Hrnp
z4-BO)ubA@Md}8vElK(X_5NlOcrR;xAwu`*qMUnVbEJk`?Gx6p4Sc;q~)7HmtKB_%;
zEDy5KBzhv2T5#ge#d7ee>?&j3(g`dWqbZ3S&|}>Jvfb%vCP?h$6`>P+)O-^3l$*yT
zAA@{V_Zgm(EIW5N_Oiag4!Z9J^B_6pNb$L&VU=(5N|d;mom*v($D~Q9o{iu72x&=i
z6pcQ5VD5`Zu#!c86OXG^R}jE0-<F`~pJ2Ze?-DK?fOn?1KYJh}>3L{$J$k<{%b)k;
zNgx4|aNEZ~?`jDjwx_WoTSRbXLtJsYEQY*rvgF}jxi8P-|9x?Une@CJWqE`Cm5~!W
zftlOl52k39S1K$2k-PHkJ>-)0V8*edkNwfn25Bj)wgI~q;eF1MJCTmeCxZ7bNQEy|
zx5?-2YUbcp1?lF)kJ@X#V4##u4dx@<XY9ybt!HbUWGNzVKwo95EV-wf@qFr6t_1%5
z$}9q8|KTsOxNVupxDSy<BU;NEO7Xl-doGRm^|w5qIvVNxn%wfd$U`hA0%WzAJLa-U
z#E`xPYUU@iZ*;!fFl1a8ifMGCqiFiw+nqBT0zC9#M*!&5zqb@<7$rGFf<O7wO#l1a
z0Lshrh9$;NVzBjk5!2&InAB@DS|2$%$vL5I2esN&OqbOeQz8_UcXQ{b^b4}Ex?T(y
zYT|1P=_55gg`p!}X*3E_K^v1n*aq>a!;b(oJ0BEW;~yD^KfDq6w_akFL9L3>^Cq2k
zaxId0LgLg;$}!EGm}|+A9<v?krG`}_KIiR0vU)F#;RO!pKNYWzxhh6~rrmb_7YpF0
z1%-j+o{jD0@6nCbXLDAGk(bFgmt7R(@LM{2-#$$7GtW&ipNo4ADK2!Et+rLCOKsC_
z?QP}_J8QF$VQGq_QH7{4qa|tpB%zYT!?3ad2;&=-E&LW-j@zc?w_)s2Rp!m6dc}qf
z)xzr1zIpts8FuJv1Nye07nhegDShMg&1$?z$<c4lO&w(kc5@hwSPUXYeIztj8R~}X
z_|Efk8<tN>@bGNoyN+Z?q^fSqy+ARS2av<t;+lEqxuxr+ZYl=>MLJ*CMKKIj)5?iE
znmy?8-Db|HOCG<Z7isnGV+ifs9csC~-W@oZ>EWnZgr0$PD!e{<R3Iliq`xTd=i<L>
z7|61xKy`w2uf8zN)`I1)&bje$*0BS35XI+tEE+X(j)JPYBI0Dfhr41oSwDqVQmigx
zXs@K?*hqJB*XLVRlW?~()Xy5h#dPQ9*T&G+F4vN}7GQDJoNCT}<N@LfQIr6szNoEF
z8O*N@sCRb?(wxJZ=p?sGGU#(~!Bicd&WC<yyhj#B#ju-$-CnmH)@N^`1fUc8FQqgr
z24Wjr8n7;JJewwchU|0CQB}4Q2)=ssO$v%1=&Mn$OKb7siT$A;1v<L4KXLB=DwzM<
zJN8e95Pc27)6#c|`o5|gxbQ0wb}@VXk!V7`_3HHcgR&Gn0S~D9)#9QoNqW&>8rcfq
z@d#^;c4)Cg+wzWIpMs&URov_q?g)e$Qku$<zY|!#W@z;5&qKsFKwWVrRnfOiZ!UIF
zH0@Ql!(m<rYF7wi{<Vqke&2(6Qn#*8B}Z(lh6sh4C5#at*VDaApZ)0X-C;HS<EMlv
zgp3f9&eA3JbCOyXWxd+oR2S=p1&kpUZre8pcDZT?jT!08C8$nbR5~JF^6!M7sxG9T
z2pBtETsw#$B;4M}MH{`XWFM_}5e_0~C4`0Z3u$~RP|uKbE2Uz+o<5x|9FSVO8ZbL8
z=JDAZ=1fqE)eDbB&XMvN-E!+DRhVA5EMmu%w)}lrnw)s+6o7pwyc}78gG@2ZkT`FR
zchf)6<`X|Dm8Xwg@|^RARM5_T+Mza9^eAj*w)D-wMy}`8{x<oe&H}Oq1MZai-R23-
z3aM(elUWy=4u|b&BKAcx@2yh3s%`<RkCqRZ;sS7~PO7F%qmdE<7A8J{Oi=y-(Y4w2
zFtsF}judpd9g15FT7dIdN?3AFva9)3tsiqRjZ>3)yXhEL;~K^0Fx4Bs<^GxN;{4b#
zK}<T7?E@vO@>g9oA;<3?U!E~ZjAC<@vX1A>LwAbHK@leRjKhA3lSxygQNA%5u$U0L
z0QgRdTDn*=5W<QDJPl^dik7<gQCAgH&ZEhDigyj}L?MuP_hMM_f>|#5qcnMxR8CX%
zrOS*Rw_ZQSby^J04p&JXi+%Bu1I)YA=f)E*_SmiXv@gn`ZQ19rzmsvabO_{8EePgo
zHfZo$$jXL{nQTa3-RQ@j-(s<=#v;)jgFR`cen!zg!($LTU%wgr?T!jl0W6mdRgnr(
z*N^wQJ^Dk&kb}`j2tDUvx4x`r8qc2_pUincPjle2buPplPQycBEt+{1S_TR1Cb;hY
zB*SGD?SF5Algu_OJRCPc%E)J5egb;^mx1bk`s3&)2p6eX7W{JLf3^b&bvA#PzHJMV
z<~A!ph%)Dh3B>(X;NoHic-bI9^8Lgz5^b$3WN$!QfCWw-;j6NikdVOAdC6*tBnb$k
z_KydmC(0O~(-FMg$~J}1oEi{Yey;H3#DNOU6-1x673rj%@g2`_FC<^8&rNjqRK8<l
z0$pJo*bdU+FEiGBnww2w=<B|sVTf5souO9wcq7k|?ct$!Df6eUQty1`>%=P^#<z$t
zP58!Yzd<}z&Y0sGMwXlO@mlFXTCdY4UFVAa4SK%{84=?4K>l!Gf?JyLr#*FBZ#`sk
z)@`=L9B#2o(M`(Ym_5Mbdo@Xe_(a8ZfMAktMK?b^gh_Y!9FKG?y^dWw{ahKEe74Q{
z&RHr%l^(V?Tx>q_UOk9|k50#HuUI5L@xcOm|CM(R4RPlrGS>1kGPa*r9n{Z|fzW>M
zP|3GNZ-PKahM-*|0L~;5{q~wI$X{9Y`I#ueSWAkf@TgdxbY7lQ5n;)PSn5c@fOH9U
z=^K%svu+dY0lj{G7>BTt+~n~`t&cZ1Fb7H_k0;`O(Y&b+U@!HV<bcxhi#D(4&kbaS
z?hr9AIQ8_G*eh9Zg@<7UiE^^B2}<8e^roO?(8PbhBJpuf4CmVYH4*O+)6@|7MXZoN
zs;&;C@6xysNBT18Hl&%NBJ=-|GC^GgKy+LVq!?%)P&RcN02BlQWQQGx=i)F)?16#}
zB=GzmqT9zH@wvS|l_j&nFC^1pBRJ?+(uw*Vd;CywnRzby87Yf2vst@IV(rdQ&GM6%
zc6z^b%HM>T;VjsOD6TOZNFOon>j~tSZyNG^WO7q{@#}bPt>Gk~dM93SVPR0kr{wbd
zif4ByoUDrz4W7*30|#iUAtK7CjY8?f*brN0y$cXu{WXA+o7pDDWquVT_VFt@E6y*e
zi!7lKS1&$DR*0frH^6#wtaR{WA2bm8fm7dS@j_;~L$PEGkSio~)|~BLV{QTY19thP
z=}E^&+0X2LDV<8RqRO|c5BHaHpyXDz3H!v#Rc#N}z5dm`_g~9JB7uz4(mnPfn&ZoX
zomVdtq{@9VzleQE<-M-y(<)s3tCR4h2IIG`W||Y1oFp}x9#0ZVSLj1MM_Xntow8OA
zeKJ#=d@3TpC+9B`288=K4QhENlhn1Vn+rfDb3bm|X|&!#56RdqNLiSb*M7qy^v(A1
zdz-QEg;SQP>BYUbC2HQVK6Pm7t7j{z-7idS=c|L(B^`xF%OA7ypI>srBfcjMA5+Hc
zYoHrC$4z<Nni_PfqT8EjmFggh@NH|)h0G7|p-JmGu=f@vS<gqc?9vMZqPlzsmZw^h
zr-&8B*^$;$Iy73l#c_nT>+Rks!1&<CH1zt`qg4&Xrudqcs#d0yCL8JtNmYd_5nEp_
zcqSJ5Ut_P(gkxdnt4H-|**Sfe!uvi>IIf3{>`;6DwYsmcF1y;$I|)~4u5VE3`}UeM
zzs=P{)}laC)Vw|>$YB%gc0S)>0e2vttztkM8tIe(c?2~@Ja7`{F_xjzG?<-&e{LG)
z>#)!v$KvNJq~~5JIzM#Ooc~tXOLtvub+naC`N?K38-8`9aiBP7rR^cG>pLazH42|L
z&C1I|o#fBCiEXUt@2lF>_*^+c!bU~ocDhI(icJt~p=?~PK;neB;N`?~!B_B8<*(zd
zlX6^?IgJYPf5X)v5@@nz^VJ1!R5<ag@@5m(J@4xh-TYe?8~F4`iHcs?In}_%=cF6O
zAF>-OR><xNQ)19Y&`Hl5a<5N=TKjubG>)Tv{f}tf+p^(j^#@b=`-ZJ<Qy_qq^=U+&
ze?2`R)?Re*xzo_%`xrT(JWgjvcQScS?mH%AgC79A-pT8u1rvHfKziq9cit{iHU1V2
z_rtSToN{Zj|IqXVH(usE6M@;b)LiC96GW!I%}UQ2<t2n(P$=c2DDn$rNOIzM+CSP_
z3YoSmZRXpU(RDbH4wJJwadcn#OP^UyHNqo&M0FvHM_Dujx4y9)kiC5-ewBT+2bjlx
z()Hg(kJ<+@oxC&}FhJldF`Bk20e3YR8fk62XVO-UH$D4se)N+vfzlQ}466~0Zu};-
zwE6QWZ|mF88EYKRtuGP;1?hL_VxUHcq6{j8XiW$Fvp>xLpN=KqU8GDkG9(0-3XkSr
zy!F2nQ4V@wZ|+0q_zO$84L>`0?aVN(@HJ$V%XWJTnr_q6C#2_A%{a6e26{!v7*7|;
zX*NO;Hd5JGksALi=K8M(I{@vSKNduw40CMhUpM>Dp@gjx62bZW<^{lbtq%>&zSjDG
z{vdD_)Cis<`HKY@QoTaCkA`fP=QKL?x}@49LPhb;aRaWvb8?Kk=q75%RwTEdmDOMW
z@xOm7t^V~3{G;0tBm+*^{Z4@mdXj*8*~Q|SQogJBf1Ccv5PsoAA>-85(pR+-|La2k
z`zJL$2A{Ms7Z1W1{_lnGKhDE3c>s%QiolPy)7dwhXrf#+@nGryC5@6Faov35rsw^y
z+yR+;3dTwarkY6p97v;E|M@S1qxHbx&@cb8bHB7Lp}+6Yy3D;;?`|X%04KEkaykVk
z9R9~$`Oh!=%K_zJ)8n-2^nd%j|NT7qGeVFbK{7Z0XKnL;^phn7;|oOQUec3)_VWI}
z{c&VSJ=%Y`9Dffa{`2nw(ERW2Ie(>J4F7ha{^m~nuSW|G)aL)_(EjJQ`2WFy^5!*M
z_ZD4unC81S5R>5j<M|H|Q^;(5%<Z9W<UJeIO(IyhGH-eK|9TaQq%lZ@;<FH|t9O-q
z%Bw=H<nr?JcYGW)q2RWC<1gb`psLdQ8RjI4-R#30M0CvGPj`E!IQrdG@en|JQh^b$
zLJR$lpXJg;s!g#|#ocuD@f_&SAKA8)l?_+g&rO38q@}&_Q}5nH%gq=FUS!L9cnZ6y
z1ODFNx01Ro1jAL@r+`20n8L<B-<#Clo&V+(TV<)?w&+sL3jaS}_<wowbnpqjOdvxV
zw#vh&jDv7hKpeD+pWkd!8wdy<07=pVz|D(5LFP;Ekvy5~aNQgqFuMg^P{VVTerqXk
z=DvudDC0H%6#NXfLA`XhFXr5G-|0&&`rlIlLC2~ffy~Abk_lYK=BakoPE6E5W~+?k
z4`4be*xZf7bI<fEEtd`w6BEVXU4d){>pKB$h0pncwX8KrOLKc0%x*JY1couevby+#
zZriJq%!ws}s89(@We>@Tcs#Lw5})Juz50CYJz`(~%ZdCyZ?}K_DRYV8c_}KSdh&Jn
z4@xVLB>|iaHB**3k!krGfvDJwhv%`9UPnBDHs(Yy2HfcMMRzCahapN|y@TnQENaGl
zY6FcSzSlc~F%VzARfKZZ(Pa%$IS0niiMyH<0s30|aqKjHh-3?u2KQ})^Wy61J`!?r
z?RqXwofg93s>IYo?Y-3wHHiQGC%ooil4d_od-s>#dH?+auJV`ptXthSZ*EtCtJ1%|
zo7Db^-zH1dF1wlWxz;4S$ZBe)$m)A68@Hux3J0~-eQw(AcNO0ZVHMdO?)g(`+$wSM
zIp56Q7f#!oDW|v!pxTfn=N~G*F<eug$rw>6-m3p>cPYTPd7wv6h{SPC<M}(5>i~3b
z_<%`32_A!pC|^r+iK@T@8k5uUB>8p$!yn1aCq3Vpdq2b1GGO+8pvjT8uK#!wL+gW0
z2hoEt9`UWRAlaV?>D%*YHcn1E%je^N-VTba-~@F&EkP~8%$t?-mz+=cn4fArv>D0$
z0A^*i=PkFFEx~Hp6pEiYYi374JXjkWQjYETbEVSrcVZP)!X;ju5Qqx!WbgxJqYySZ
zmn*&=#knQY!D82=RzR||rS(1fS^1ufge0lyWSZTMRuvS=0kcmsT?<A{Y1r9$Q5Pf=
zQ`3v`jrN_xu>B3LEU6^kmeu|K_$)9s3M_n0U+ydvO|{!VaWkm*EGFwd@?D+&ydRh#
zN{}H)_cyg=CX99lJ?6_jS#A?e@@)?nl1GXGx~`*y*SxrX?Z+JD=;yz=AA+F}m6->U
zcuu(S0-M%iH@Q0j)_B_&hAvhsC+0g^+DYYs`E4?Nhg9N7{^bgs@W5t^+Ot=7m#HNS
zMz0T)wb9QXQR$4^LD_Ae+hS=C6vsnaKhlP#jARStTlStE8$lM;VHa_leSPj+KyzVn
z100(TuOC`6{Ki$ykdkCa@&|8{1>5@d{F1FHiwwIvY(KdX-K}G9EtqiDXJL=J_;zNo
zbVrOV-O)^dvDqvvEG#VsmF&aXV7iS?KQIMnn@AVcTm6V(Fz=!9a2=BZ{cUp)K|eP4
zB&Y;9j!v9bHb?Tpu^_)ERdV3o9k{|2XRdNQm!PCN^SxvC?UQ=2O~jx=j#3iGGJE<M
z@18SSzcZ7Ljxko1)5nT5Zt<fys|o=E!+?r*WsA842>g_}jM_yyOO-E)iH@Iu1=$&_
z{KYD|E!T#(Sk0d0ZTt!LO~>PD>DalJA;WMO2(JJAtLY_>D%?W=rezcHBo>iCCdSKq
z$n_`RkUH-dW$(o`4BTgj7$0D(u4{!R1riR88{6nr{na}7>rMWf3wgC}rV8y>#YlGb
z_=ucJTi#UKQvT1db=_!t`2yK-jmO%WW$quWOo|162@Nb9ZTX*PXjhN(-cWH<l5f7_
z%9;KgRW#EfmZ7uJpU)GKzCkaL6LMA7x&D0vqxDPy3E!*{<Oo)5kea`EY*@`X*9aPg
zZ~)nSRM18^k6aRV9*dWwQ3b#E7JTts`9<Ko^=`f5W@mRn7LdL^(v+hl8S+6$Up3ou
zbTYrxie#;GgnsK@vV4V$6966w0`r?o7k+a%g#}))NN&9bCWM}v{$mzUMmLN8$qc%(
z7AOKU9~97%$(*upP%YMSwHVEo*Q_vZBRU*akAts7w^)Q2YRN|xf(?)P?R8Df$TXD>
z`+a$>5wGSkp$tm^XTE1)^vJ-n)n7{Mk+;8Kv6em57W$n`*qyIoyE@NzstaX^`f$Af
zEL`(vj0W&Dzl)oEvwm|#%>p82E#p>%EgeH89*k8?20wxsrwT9NDXMBTm(TB$?_BYI
zU<vrh7s|-P8caenQa_8H0BpHQqdX;=O6%Fa(UkRf_%ZUR^TRdq-g$864srn2<gY-d
z`@68S4myJ?o6;sk<tgm6Vc{+Zd-7bzcx{FC@Rz3g157?8`Mc~5AepO8L+b&WPkmcy
z+(Av$n3SF^scZQIZ{S}-fcKXW&mYfZW%*EAuP^*;-HO;FC*a;rzFTiK%xYYk^)u(B
zO}isd5G~L@Qx=;1H#~Dspvm}fi5K|3^8GFK($j=bATv<E^9Lg|NGu02QMW+XhHQha
z^I^)iVgNq*-Slq78vu~<WhwUzK)Tk(*TcKMICeP<bDaJW>r@e4D=h*7<f%!3fx#ug
z22W%WQgJs)wh@dgCZ$rT$<y;7d2{nN>q%c);vBGrr2+<a>Yaef$kgFUi8S413Lfx<
zjiZ@}{Q-FdE)$wBQzcBpiwn_mf3cSj62Fq7*3KBGrP8}&wo@S!!2u&onF4S3k%2eC
zH1ff`#=?ZryoyaiRj0KXsgQdD1nkaCrvG~Q{wfr790)AS7g<NGHwyD}t;k1TcQ<Sf
z)Y^Dw=BZAnt{S2>m{W1y7Hc3w`o(u&j|=UZ96U>yXokobH5)P+nqEVBJ6x}(^uiuS
z!x|8Y9Q@neQpP-W3${CnW7*fx8JAzfGe8|}-P*a|(<fX^uuyLDjf-Uvbau84AjbC%
zIk19fMh?F*wEAHj_BQ+2VMBhI&19Z{@#p}65lcfH0f!5X7RBa%c;{Tbn~U;0OI|1l
zwzQA#*N(x&vc9WDkx?dt?B*Nm#CxWNy}!KJ;ha<_k)wP_T(j`8g(cd}7y7ODyVcw=
z-QCj^gXc%VCC8(zL5RbOfd=22s?anWeGB%m^uu}2#9jJ1EhZBO@i2XNetnH3bze6r
zHr=w15?Q|A&ts4f<F^!|D1z2ZH&tch&F^Rob(u5?f_tvbnNt2ZyneGOW=h4%Bl9Mj
zmIfCYNv={+7X@Ig)-H*YY9GJDDGL<cHkd6lf$EzZmn&JK5aLO_wa}(%hmc}Ieh)l*
zldmM*uE^|M+IXPcvv@K(4KVddg&3&xd6yui<g$10ikf@3nT^q>zm4Qwa(Hq!&=T-v
z;c(ybTrn7F{9u2g8yw9eje01uk%!vdbk-E-OkD?k#SHNuYPg3lG0crXA&BWNXt@h0
zrFK~uf(QX&l73*FR4^?X4#i^9zMqk_512oq7TnoJ2nGdO&rTPl&3k40T5&>Tqo@+Y
zxtm2eT@3o(cuDNku22WjUENJXb6+#MBIOv)auW1V_xWhNmooC+uCm|JktR627=qo5
zra87_?%azJK~c%2*0M6zJ9K7$A_;1|^t!F`{xqI|&i>eP<4(6lV&wZpUmxR%GCQZA
zdD@7<#bSA1tFC2*(kfdM)kuKNegYM``Tn=ZkW8s!NuJk|k1=F|Q9+#hN7rEJ6G$dQ
zQBxzTriy1lbAHj=f?T&O!v8Me%bMw*mqgqin|&+f8T`nS9yFr521{+dN(^SfhJpR8
zGjYI6mQ!Bss50q=a7KD4F;f!1MHHo&tEKA8Vz-htjMm?W$+vXAN3p<&?@jdFWFbgW
z@#H7{i4Blps20e4jCpaV<Dr+4iFf&M27F^o$+x*xwo@O2X1K$r6+J#&6o5Jp6XQ2)
znxH>1Z6(i~v9qjY6d2cWI=`8*Zzvv%uwN1|@w8-TLq4Vn$j+84^!2uCy@FO*M~*%D
zY%5r+s23+vF?S3hj`fjBcWgIG*e5ZCI}U&`-&h0%FPAaA#%5w<7Ius37n{oi8ro6!
z1*fdTqlF(l$m7D-LM^FXo(#U?ZXy{qD&X#+YtfcVNu&1sZBJAg(e4pgM)#0?o<U?l
zKPB0LGdIp-l0hr#rad?)S<0k6ScX{Iwghj~Jc*JBA+5K+;CE@)8V~M15}t_pJGEfa
zDHIkt{1~oIp7IBTsd>NQ6=(;!GZa^U99UcdA`%^Zo4b}nGR?|kijP7aIA&5G_tQ~|
zL8G_HHEUmu#_~@ABWxCEEN(T-!Xp%^ph>rtkG&hW81^ySf=lf_9Q=s#iiM{)S_U$}
zZ$GhX-)~EFV}v`FCSfo4#2mM~d~njh%f?Z;;bGue<i9mZW3uD}BxG&$q>wdU14X;E
z7Ldx@hAk#1@S+lYc~oCtP~c{lzo99xDfI*QOdauS7n@>8e9iV}!1ex@{m~Dy013^J
z+?=uH`Qi9A(l;;O8rGT5l|RxR|MKZD!^miuIlNlqjr_evC3O7-h5RC(eB1;^i|IcH
zf!!tQW|6N`yR7&_iJpZ6zs2EB{%k!@7$bZuhauyU<Tsq_)*cBm0#Fyqn<-Igf7;J2
zuDwsBYg$wz$SKU17g=mvncmT-;pykoL{{_}I%RDjI?gl!anaS%kwmQaW2M&Baa)CD
z%4Peze-bMU;g|E@ZP~6_nBPk`cqNB~oOh3ed-B;JsoXHEAl=>BduHm$1{7|tt0G$O
zh7EdZd;qiOk*0(l<pzq)$&&BkoE7#fO-8#8CSy7R+ln@USyYny!DX(5<~MQgs#JrG
zCr^pxWSMEQp0?L3SY}r5D@|~Zqqw|VR3mAF$tFK|<@J*C1HkinE{Vb8lcW*f>n9$L
z-=|cpp42```TEt#AA7=aZBQbEkEsN`D9w4uM9n8;8gBhGojrB4`OBAwUobYSzCJyX
z&MDe^*UuwV^o6mu!>DF!J@imM{V-x_3i6rJmEcn;*UFoDozN+Q%^)Yc=5xg0BfEUF
z>#C0f_j7LgjM$S;I3GdHN-Dk;C4Z6nt!!{Kp;B_h)!}Db-pjI+{d+msiB<TXN=WNu
z54C!d@zo(g5cmu#3pLSHD%n~oNo^EoBqWM$Ap795Njf7paLh2XPDC->oUTf*+o{*&
za1o~MId%qc>{<yPV(z-%Nc~A^i-UFhl1IZ`CmlHz{8P~iH=CvS_#21!;=7a~hzkY|
zh{Vm=s@fzZ@>bu$SIYAAleUzw#b?h<vtTlvirss~j%`$auTIQLlB*sL_jWPV^1yCB
z2D^%~In4h=JxrKPyf@<~AB=Ewa{AtnMoivf*gWNCBx3y8bb5hR;5LNE^!6|Nizpz_
zrz=Q`eBAw3Sb{aujwJAz*9t#?(|o~`K8rGf<hy0+Gf}CB!0#X-DtNcDgwWMXyzC;U
zgqv|7osFx4)k#{vAJ<!SiB)Cp7L?a+$EMAy%<*iYb)LNaJ)zTX6Ncoo`ayWb*pAX6
zI``HMu#5U>sav-I$i{swUS3&`2SNuw-k0m>C)2{7_u4GZv^7LkR#t}d_E4{+^h_h!
zylXc78o-o4<7tA{|B?&e2b<VuYY`0@M>o}2PErm|>NE`O=V_TAa-E(eJx0t#mu~a;
z(h6F~U;3|z!c!D<+E@_;jJtr=w8i>Ltmq$)t><@(u+-axbk+HGt52U@IRDnhJw*OW
z=>N0s%PHnK?D8FEGL{xM4`%^B|5<P}V^THtW!e_SFR8<7;{nD|uaVLGUdGK4)+ejy
z^5!o}O$WYJU*p29vaUuxsg1UDxf)b<E!gx*yIdwMy7XH)Ox`f-8RX1?{hnZdJ&uww
zeFuuY_`XwrtDOnik>s4<=zake^5_ZAxP_f}PPl{QIckSa;*rEGZ*HEtXI`OdDl|h-
zb*+n%FE^wgkyupbE7BQHRu!8)4!<JLKQ0}j^7+ZV+gMmQW3fnHlCq*QLSB+a8oz&!
zU2MlVLBk?v+^^EAd{J@K>%b-7ST&pN$T5SDW++UpVe(vrD+_lVS^CR%u;TVvi_%m4
z4EX)GE`h_S$Q1nUjT2_<It`Pqv`%JngeVUZjwD8kY+F?2Bv>wK>@|)0CZF7v<DNK8
zUXpTdxr7-e7Sw*x(lip{G;iK*ce%Ko!_sgSl7GgUgqQO%WSy{5$H1pjcP6_4nr>C;
zlhSqNsn5l~8Q^E)VW;auc(wQSyeL|w(5m$E#r+Z_l*x=qkP%CK^7#3EV+TYKzSL98
z*xf-*wGYLq!1^NCtHGp2;WUOZI>bt${JSU3JHPX$4?wm#v^5Ga&MsF$Q%s|0_CZt=
z3a`z8(fh5?#moEVa6(1u*j9oEyI{v<>d2oI76k-%Yhoi7xf*yiF16Syiabt}9UGvJ
zRkkbRr*auhB|NAr5r0DzEw0o;)4mlT6EAu)`DB$YNo7m?yTcMOm&o_~XTV!^`O~Un
zsv7rkoEx$E#)$fK<m>r@O-PA^*?_Ut8OW=%so%1fwgE|L_Pf!7fi_`0G(h^H#=ycc
zT<&x398~zzmc*8Vdz_zP{MpMXP~A#Snl=LNLF7a8GQ6E8VfRwSx}fv6>@N%4@%fYF
z@z-)COefpHWm`_bn#Q7A#f-P5qX^=o$}5t3rM^HDB%f`ZoLb}=!P}uA7)Xu2du`@9
zoxS)JwBMXgV`CM=9K22PXQJcYA`*_BKrETk%XZ!w8wD)wHIep1)Q+@E|04Bi6uJ|R
zI{R#lF6NUK!uGwjz(zRw1bW|_Pg%Almv`+0U8Uoh{oP2g*T^~tm<t2wwL}qH-RUs&
z1Q9|(rRCuCY9l(b>1mPO>$b$Exrgm?>}G`a`yVdRhTh$ocrnc?nz+y1v{>LbJRn>$
zOIqmSv>lr}cg|+jufuJ7p=14?a@1Ywn%n4={u?lzeH#_B|0Xg(GRYA~)2xK_jCqUA
z1)qfc+maUmSje8LEJ<}q&KL9<S-jHa_q(jSAGPq+r7D#22>Ts5K7J)n$cuLQfygNI
zmn0?^8I2qdeIA0M2^T3~&OKbWS>{p-er4eUbWdg63%ANVx6+owWLkRsELNvr8;p#Q
zKKJ}ke=^OAac7(~e30aNwG{dR=`f>H)P)Sy{1O}Mpx9y4Fp%%p<#x@=tS9Js4zQ#$
zTL-_6l_^=h+vPq?B(WSBkvFrxSrF#;7!aIbZZgO|j#BcFD)W)sz+aZ1u(%=adB(R&
z|6O8PO%CRhhIN?1%(EwW%liyU^V=r;kdV?3V-&g*O~8FC*JzB1m=zB>SHJLB@U`fU
zrsLL)i(>qmJUFMU!9dlf81ob>np%|4_$H3r=PesC(ZU~RBW*>x#1L%qdV2!aq_DmB
zXC+vt#QC+mMuCX}3%E!_d>L2xW>T#koh<V5bjM44f^LKT`7szuKSb%GfW&<#K2iB|
z)0k}i$wtp~f5zsVbV@;WyatVp+~(i?(s6ARE!XKO_}sw(GeY`pypX*`az{^U-W<Mi
zpoLpuv-ydCmX>#eHuB2cr;3O@)YQ+W3HG%xIZ=uh7c>LA>oSLo)+<&`U0KbF+{-p|
zqZVn_`0sR7`!4-k_@mj8QT+Y&JIS-?>}fm>hvD#VLa9CBZ&&-9cuaN6dXq8XFf4}5
zva%s1bI-)NWjBJ|M7yRB{VV*py^Yx`YUWGb1-e^!JmJD(EK1%jxk{}39^ubSQ+6?{
zG~Lnr{iS(7oU2#=UzELNR9wxvh1*C75Zv9}CAhl>cWqpPLxQ_&aEG7)g1ftGfZ*=I
z-R-V?d+&Sh8DpOx_h%1USgWh5tKN6cXR4n(>P9hr>S4}R)Q<W=CWq|Po@)p5W7oaJ
zHK@nRa(?pYs|?#!&JsffEXCORZ}?hIocD+l&~(Q+_QRrwQGe`ZW-5^8S*~)Zz+1J+
zLkWo0RH;9KhrG#OaX;_be(@*#(b!R2qIabc28tliLcC6k!w|)JKCYeovXtdR`FZEV
z1A^F=QdO6I-6Tyyo0n&AP*8Om?ZeH}7*1zf&S30a8jF{Z3E@;MIkOoqUsMJSS#*u^
zZj~$$8-y*1>Fh|;-<@cVEP5M2!G3cCz#LA#K4=x<<tJXnHZ=v3o}5`p^QL!SNAstt
zaN6d7^LLO;eNfbmvOVAEj>%23THZk)O$u5h58TX(QQ|dLjPdTI0Yjy3Hhn~>v^g{t
zf*Y7y^E}I{2oL&5O#Fs-&i-ICh5Yo8_7z&W=Oth>qE)Ue-*|P(K9*A{$X}URL!waM
zD)bq4!6=tZ4@;7id-(NxA|*3IH$WYxw6a${`z{hV1{^R+7HfI)>H^SGXp*GC1JS#m
zP8q?aV;o|HvjRxI9Vi66K<75$)M}%bKikJc-hquj8PItz(lQ0_2Y8JQ0)lG&&fZ-*
z-pSjRl$*FxgK75R?G%eFHqFgy#~hP&qTEE9t&ToCL|`P0dP9vil}Rytfel{%cAw5m
zR@d!Ky2A7lSm}qRjd6jn=_A&`(yjR}K`j}{4ycYw^QU2F6T@zj9Pg-_Rbskh1rP4e
zGg@uBDkmM4)z}Q2X)=Xw+e<XBjKV*1nhYR(?cIYJiq1$u$3o!ZE$9Z~(SHQtRpF4B
z2TCk4k_KkeK;EGEM{^#cwbcPY>tg8fH<#XnS^C!tz$0!*W%hD2uRTZ5I=f{#^}B<A
z5a(1T?Q`GT>z%sFHK3uvYQmynI*tGKdfwYxHk>xDw?g~l*rxD-2w@tKT<Ky<egiL5
zi8Dr%BoNccG+b^{%V`<BvaY`Z`yXkSCGu(COOPxjLy#H;-ZQ_K+d=dritq@Fyrq0E
zXb<AJQ#k0#%y|MzF)T&+fX@+4aypLl9rCn;Gf7aPKMScka{$Wb#}dudjm>Md{r)4I
zo&sciP6pcLL|WBMdeG^Sk6{AaoH6tjB}D+Svg4~%&CWhfp~6OM3Amlqn|5b^a0Fya
zIvibKQh|yEj{><F7>>;PMvlFHTl4AMS5u$D^>8V&`2;kdspo0a?&%^TzfsmQ=Qo%C
zKW&cWI9r90{0oNP))Dmt4W?xR<IYj$I7d6$OSVEYUVHDUIw_c<!W-IHtaRTVGp)?)
zcfeG=@`k2qd(}>zwM+BFTDGSP?A}1d1&Z;(+*z;|@0a~z9p+qsuzhX8LPss<au*y%
znO%FDRa=uWBHLqQ-pr?pCu5QC7d>$rVx7VDELBM+H9bldVMe9--fK(N*<1!=_l$va
z$+~N<VIP<e9GmI`&I@Pv47Vp<gq9#u<`N7)MkgycjTxlgMfs{PGp-=hgFXd%4RiCo
ze)&=+)m%+x<OhODMhu#(JKj!x%QW%-zH4v4C>UM6yVTNljX4S^7<ramfU`gbJyikY
zE{{2Tw)s_u(~U_;j*l4Qk9Mo{3F6HjE$8Ae-WQkltS3?WYsUu6ygxgSs~7tVk~}8Z
z#@=Jg&ydtwq6E$>pC_>A=z8tH0AocCu9e4}&s)2xdbW!Y`)w|Tw`UMbBLT2)pD|>w
zj`ei-x(t^Wb(k|!_F;U1pVN4L3A_n%e<{1^aD{|qG;gy=XLz2P?SE!k?qZwyywt|X
z#F^#OG_X^tk9R6L&2uH>d-Y+Jmn4p-FJ3YqlYPvZ{$tNlG#aOLsWdrVG-wRxBVsk|
z5E1j3vV3W6PS+iY`6Bxig+--gB1thaqiEScO(<k7K@ssyx44LB2Pa$+{d%32xcGLG
zPgemJeKd=m5^PsMIf`Iy|1^Z-v16`YmjQ$sc&K2hmsBW91YDrR^|Wn?7Kplj#bUC^
z7kcqBEyt|fr}t&ijEU$ddIK(o#hY~f(cjW%<c`<VD(XX?y=8oS2))8bzupLXCX+wR
zGYwodRGpPgTkx7f>V6;Wgd7*cSl}XPjzhst#8jTVNANz_Ri9{g&Ss?bezU3zmZ^OY
z|B(9}5W?;}*vRjl=q{!8juIUj$vV>LPxaX~5XZ(h|Kr#-kEKtCG@97k+%WVARd2!5
zbUj8u`L^5$CnWsAT>ty7qV}z__MO&*k>EYJ`x+2~eTays3V?0;AdwsXqPM5CWLk-m
zoAtR;8yfU|Qt)XE96OC=lU0wL3y!Y;<a<`mHjm&syTfg?=5)64nDj*Q%;LBWUwaSq
zs6Hw6bbACJLpZP2+|smO4B)rk3<{()2hm2Ew^zdUyQwIfRd_P^R}n{%1kwyl5vM7-
z`5aeA_9Iq*8f}*?)3`qcp)hO_fmnZN)pfnl-4Rq7WnnE_yoVHh)iHT_0SLM9K}rA`
zd;e7XczIhCWP_S0Ar0!LI+ao?x}!{K#(Qo0;ry~`9JG&pl;cU)_9@JBptAGzP!CSd
zc}3MNM0llE==I)&Yn}h8>5G=w%2_pJ7l-tV=!#tT2jfo7Iryvo`koiRdPu5{cd5X!
zy&_lkRsELt=W%+8Dc4bf7U0d@@IMq%1Ajkfks$H=keKlfn<=Q_d#c<(+m}T5G~P5g
zTQ$^TGRT)l%=aAfncU>CniwdmPdh+)`IG4vRFLHygWVEqCTr>O^+EMfOj{H2xfMXd
zn5gr8y1j>7UTDv}nx1Yv3xW9w`gOjU|4cT#89zI)q1xhoyqTRzO4M7=tP&5N*}2dg
zCN=cnn0*oT>Qu!WR;yd=O)O<#)@`#qM^h%;nI~uVDmmPJM<9;^`z^(A&o8Bb<w5?y
z0dKb?)X`Mz^?l+b^xcuLYGz8An!JLLy={=Ud1uhB^b;AzH~0?*D!n^4y`hxZ;L=)y
zG~&Y@@=)Rm+j}F?X|{yeU55+~*H@sN(~@E`M@o#rZ$UbhXXGsb=c(2JK<&5itDD<y
zNBFKI6fZ9Cok@vGNdHI1R16Q9`izZ!4IJGp6xx09)#fc9)CSKb>4^iX*Il~rfR*)Y
zT^{M!HdoF|_=kN*yQ`hpeu~%JTZTz(tgap2x|-fEr(xRnoC#ZdW~jWDLXUPfrEdtM
zER1z#ExdbGqnUfmb0OnKX?G{(GIx^nTaeW(mmf688z7Me3ra|{e{ZHNmxbRM28PY4
z8hkX9C@(8|Y={YubP%1Y85Z$Csj~fwbHg0D{TW-m$vT^T@=TYFgpmCb<sfsCz%4SE
zdcCY6%HB}V2fVJTFF3F>QjU*qVpC&TP_O3DfKI11V{I}h9a2pokrwlwG_Yry$F58T
zS>9I<!&J5j-%tD(dF6`FzC@zoBG~9VqG6qBTh^7QZAmH!>VDJO=+j##4@79vNdxD2
zIf<VTbw%7SVq2^w!)9s*ohow?)2H0LZrY<T4#fKE3i|Z%2Y%_^W8d!d;7>|0^q9bw
z)l5f00m};+;Helv<Q2$7DT@=HNUfWwnwGI=`Sl+|%u{GP!OrLJCrN?Kp~r~V=|~aG
zSfR!YAmn=@7|@L2G++zg<A|Y*p^bU>ZuGs722oMqt<=k;dSNHb)qOCDxAzS?ARQBY
zf&{Tx2X!NnW9=oOjO7BFY>L$W<c~4Od{vzwXJ;TcZ33;Rpmq|}i<>ZslAcKhG-0G~
zg;Vi;h1MvSgg*W>Q-to0mLhT&k0;oMqr&urW{H9A{rxkH%@#j|@<x<}!+SIXR;!Dq
z|B`xv^!@@U<501*soeC=#~{+<711To5kX*)-nyjPkm7u1nKs&*mV(ynDsBi9z&{5Q
z3hRA6ws@SQFgmZ*q&x^}COW8OG1NEy6WdM?Ef~}tHjNzRjfx{&+)oV+O){5pW{3HX
za&8sa+pQWDblM-KRMH>>u50><qJ*@Y1c{LZS@!iyn^oc-mK-?#1uxr`&tUase@s8_
zPj(#jMlAOVk|#;+ATxqw#~CO;wjyV^TC%CcErY6R98Y!J++5eyqojSMb6#~u-U=0t
zLpfsfGK9;ijm3)z#ASpe;78W7A?xa1P%7Fom~4k5MeEt(Bp}6B<`?_kWf2reJ?Dpt
zmB+BKA&K1`CVwW!)^NzZ=Dwc=cQsy%Fbdjo3i2d@L=rU~53s>k_^NET<1_S<=83XE
zdLFzH$&as1zw$;p2Va4@Q7vi|kYqAP^w9MV;=_o>u8w1p=4B<@ytewBJY}mkb^qm2
z!7QF#B7U&Fv3u)@G4YR&qY9r4pqswOf#P#kK*NK<@?H`MA1~=>A)Ea`Q7*X>k@2`q
z@mPWl)|kFSOa^WIna2~Fl`*VoZfSB7aw!$^vZ8^8#b%>!d}wz|Hof{)RaITGou_|#
zsI%%~DV9TzmPNSfzBQ6Hh$yddR<si(#d3QM!Ah_;Q8Id6k0(7u=?LXiUYs>1&;e&o
z=8j9pogeB{45CPF$0V$2r=dTgh_+CW|F}>vD=530K2Lv9%P!`AgQ8P^xkSyeJCT^x
zS9NS-fqMXl|NKKkJc7A<H4}HZ-!F^PR={e=pYH~NIjq_#uOAGwSQo!r8GI*&=Ke+#
z>?RUwWvE|Z!|Y6P<aCns^$(%TNBf88e`#(0eflgWf{sXjvHtaYZ=e0G@YcL`JL*?G
zV+7?A(YB6Yszj*O8T!~=jL`bdA?BVhgTU=4Jq;rc;c|DEoXhf}FQLkfEo@qd#bE@_
zvuwX|liAl~j9%py_i6=8zWK`=q>d>^nb*w(%a)saV&wKSjrq!a?bu?3BBs;h-~yi5
zVxptF30+)g)n+iZox*8-vZXub#^oe$OC@+X{h&KTrt`g>ZX1rS(!Xm7t35zxIoh);
zWP4qj!ie$v>cUeXf5`y0X>k!~?mbD6f!AKA+Pc@=pkxpMMP)%D@8i7OXZdiG{s`e^
zxY#1Pii=r45CT@t1G9S1HJ0ptjPm8s+K2r-Mp`R^YNJp|?#?Ci*L;Uf;4T=lWc_jr
zS@>})lgO<^7jFD3*AaP!KElXjlPsaS=NJ(k61oO^rru`W!6|tE@&!3?%;Hr}WX$rz
z_P8cO+;u5|GJMbi{dwA(3U!oiwPcr|YLOkRIBl@^cQts1X~`CHdCA4M!0<ibqX>NZ
zC8m1U6B4h}`KK#b-U_oedqdybF>BlRJg2zqY2TXn9I0J8h@-D|B86vgI~sov+Brjw
zr-CM?Zu?{;PKMKs_X?Dd8MWC3YlOCdH~db#zph!jon8{|=-`Vo?u!d0HT9hup;u>!
zYj)yABK0kP0(F$2M)Nr3=1M&H=(6R9kl-62Yk08-x^o>{1G8VpN3%;&@J>XvxZx^Q
zn<sldN`a(<-WAB(5?TpacL3gV&r*9Z&Mrgqy2C2`)%sbbmLute;gw+a@eS~hdGsof
z_aNo?Mq{vkt1-@&JL71K*rdURYT0Mj?6t45wdGibqj7u`9odX%@3nW@Lg^urcZHv-
z@Y{V}49(2y=Cely>~9Xpj=9dtSwrPc^9jIm^36UFk#`}~x5i3%>`hEiY+b_5SHGpM
zRwehMMcR6ee?l#r%f32=56kPcIks%L#(UM(V<)av+i=ft;r%TYQ=E^uHs(3~a0btG
zVq*<4`DZnbdSWs9gynC~urR{{06pLqO@CAQW9l#svDT)j;EZ9xTaSC+i8QytnD+3f
z6Su&!Gf|ya>Um8Fg+WnYBnmTJ3C_tSDyBLybEdI7=%DL-P*@FjD;1qokS?Ery^B9&
zM?&;cb9ac>uWu#GFeR!t_U91`b9SswiHlF_j;J#P`X{4aFK`|*?da0S4=M2If@=#5
zo4vMwB|(cwLeJ+UPe4!tUQj+{lvL2Qw8ilzwtc6bw~lAc=^x+UOLBL)$Fa?vy|eYe
z#>9@mh0p%A;D1kRTxePRMrVXSmp$eh<SivH?mY|ctmb@-`zd8EQMRe)T9B#j<A^bi
zOMU6<_NMhaS0meyt3HYu40yX^Z6-wCw{!D6jSvcD{eA;-RM1P?KCdpD9E{ueGZJ!C
zMPoXq<EJJnf`pii(M+*a%}UzfXMFW7Zq676o4Z5?c6{`=;JG$$j9jy`AZmF6fB@<V
zqdi(K`B=)y$~Zv6h9S*SQ5r@4Tf9DdB(q!I0#QO4IPGLfye}g!GmBwIfeA0Ap5b0W
z3o8=T0I7hPups9+*IDvQ=gZJj!P(yPxIUZWn>a!ey|ezpTBE9m*X0=IHG@zy(CFPL
zBL;tYpbr2mILqA)XZN6kuW&q_x5)VS%vul}`pWCa^^ty!{1gG|I<w%Ct7ZGCJF1bM
z#0y;AJ_%G$k>BH7v_iKMrj>Mu%N(Uh;rW>?qi`k~0ucpoui4&e9iO+95>a-OU7D)C
z)`Yq~fWSAT=+QnHY#W#?$Quc=;e~mxj|dAc&oH+dEG0;<ma`@$d7NQ4SX7HC;7Umb
zhS00;mhS`)U?by{p_7m8gXfn3$kxguC6V)qQ2^ijASyNvIpSF&M=~SSPy3H(vW-Hi
z;~c69+vj&>h3f>~q?n7ElxvzUH^Id~2+w^ekN<F%HM8#JNHtTX=RqLzST8&2;o5fW
z`#Y=v2%TdTlUTF}lIWWZYs3Tt{6y>Z6dMcxGfCg{-pN;DsK0Z)3Mr4};z_}slvuH%
zmBv`{7C3Ol%EE8eG;0KiCc&!h@m>w4o}`zEV;_};?WS|cZ*6vo;a+mBPHo)O)4WV2
z7#axE^aiWoM)P!jLZpYR5AGU@O9(7#Sfc9)M-wlC1%O#IS|sj~j1lEK8keKlsXK$1
z!gK(A-a=)Ou^~)|+k8xV?oqF`q0i@=d|finqn6b~%v|N~(>X8IF|~P{%KmyamHITH
zO?1_U;Weh_GH>RDx8=K%nie;3jLBB;(P}4G0o@RkIINJg@{U|y(c=)xo2-vJbo|bC
zK`C>k3Nx}{0n@`q-m5(Be%o^dhF6ZD_li`}?_t)gGwy=k$df^`pvfZncc5o%6+zj2
z!IquiR<fUnWCzm3M)BL!jF|p#cOL6~i96+G2Q0LPGg2Rk?{l;K)R^q-NMcG1ptW;S
zKVWS2q6+D9NO(noWs$wKRa3tOxMdf4SS5CxD^nkR<KCOaCi&*&RHkS%xlVE(9Ae7w
z>Mg$IbfA@1PyNDduX!Bc&Mu{W)6}#KDKnq{KN>nULWtDo$jI0R^WDag5d!yC*1J@9
zT?0FoNF-;MMVO~1Vu2ntZ}y+w$i3@7fCdsPOLNwl^XP{Dl%v!gIWpCyBc&f@KwAxm
zPxX+4%nV|Ho1+PexSPKuy@|P0dvSqLhpP;VM914>u?zP8LsRSs`m%n6tW1pVat(Kw
z-kSS2%w!ylOsRK({0J4(*88_6m_Lp~L#n{_{nW=I@Uo>u3lA+<@XvkiBCj8bSV*P$
zTq;sBwW<BA6LR>CTpu_Eq~gh9VJm@_+ZQ_`GWMn+e)^TE#b7)}#c|VdW^M30Lk$bp
z)j~T})gIV_#|CV~8;4i5eHJDF85b@L3o@r%FMT%3K5q~FLL+~*RHP<~bPZLzV;oNq
zt&Wq}v1iRYz=B}D&Ri?RbUV(9uAtv@d^banf17l&a3(6oM>vIiTjk{+<MJ?5_|SA8
zwc>!Ab8&hm6m<2le~vDGgiU3gh*gmzq`ojnowf14=z>)hDc3T=E?c!;J?;K;<xlzL
z4LmvZM$3%Qqn`Hyd&8(`VC0l`Ss$%oQ{Q)A;q+>gl#4I#ES|s2T=>&@j{n}_R#_!}
z5m52<syTz+J0|`?Rv|UVCrZpRt_tTP?e42Tf9uNZeSUYWx_U>!EVcM%W+354iJ9%w
z+=3u=k|F2Yv=0ZB<B8$f_u95$Onz)GHZn4WU4$+OV^f&-kaFo%c3e-kOYdAZ=BlyC
zp_=wOYnJxh^0|%9b~}NR@L})yMPek9U@tV!M;a*UbBJXFoh_BT>tfiQkC3S^hRsg(
zM<(kX_)95y_mUCo7o4`nI=yIjFL#b1ovE8CA7eV7R&OCxeU|E)eN;s6{h+=`bMNn@
zn!vnwB$tf((Bsp^b>%y!{l1w3=Zd-QJUoYyEmLT7o1~-7b4*hgU`T$$Ha{iqm}C^9
zj{+O=#;16>L+tdDJcFSFb%=0Mp|=V-Bix1}{Nf6TU4Du9e@BZin-y92B}Na}*li*c
z0{i$D5P18A69X-PkZqoQLD~SAsF@U+o2x6bEgPOE;yIS6-XKNp>Lrz_!SBq)q=Gp;
zH^a?d1mfB*+(2LyrS1eV*ylrdP<!T+R1o_&>lDM5=Ic>)&f`{yjb3?&+kHOu)iT|j
zo_!y@&Bu!^y3_x#0P1d0E>UyI1$BBUi0?M<_4p@UPNwcIu?XeeYa8rv9=3&s`Zq0e
z{-f{r_lO0hPddXOaM1I8#%3V}d+-sT(_84&-e1^voEu%3t-JRn%~?FEY8?5>ie8p-
z>T*jS=B-gL-QRoSMZLt3+q0ewu2@uI`Q><$GQcq$y0)dY&SHiqzo!uUqt!GKBsfK>
zz#F8p{eva`=tFKaQ=%bWZH?at|MOV>cR%-a=b;=&Emc0nE|Q{rF+?5EnJ7`;qiDtY
z_*G08^fm`5Dg0+1uW?OT=oijJh78J}fA6{N^0AhVyIAcgrexD0!VsF@S1(a}>g|}F
zMZTahh-)PGJlz~8NW2si51?6bh?ER`(mj|~x#=IIK>rC}a(J=Lej+9DMCOx)NDKV(
z8(smjaF@M7@3w_V0YD)<{&KgTvvFBpG+>xyLzOb1ta`uG<9cRDt$ari4h7ZI0SYQ(
z%zoD_KRp@oNTW5B&HJ$HL(hFLHSJFII1)ac{97VhzL;)amg?rmh-w<JUCfA;;+D_o
zd$6HW7jk0lSknP@J+sPlQIN(>n?n9N4sC|MT2HYg1=ycef+P-qi8OM|0t1LQKnfWP
z*Xnhd``ZhSSW|KFuS}O|K|sJvY)t9*hMM}A^U<oP8(w%aJF6V-o^$SPe%SoauR%g`
z&!h6E)JP^?GQZOpJ_GokO%M|Z5SHHU?PcURGtUeXwT8B1dA5Fz#Aa@st`65BS0NgG
zCzs67NL9C0lvf3>q@qHntwMB#CC}<!>%+RM&&gHDmtzOtAze8e^${mPaAhM7MqCV6
z!7_Ee&(Uzx1ZCakz6cGE^K&ZC{YIcZkzo8^wFtFs1Qv7p!ey5mpyDc&o{r<cFU(^=
zj`n$Z<S9{SyHqM%J0v+=1hl!CX8uq}++F8rlElFxu{(PJ1IZo+ndr0N>-~0@LKo1b
z-!>=%Q(U1AMP36fp96V^mzzpo1&2bkQ)*Yhaj(1gO$^CV3wGi@6JY$u%?!P_KcqyY
z)ra**C<BrB!zZN1p8Rb!+ns<T4gf*C>MslvX(?%kKyq#qv>aqjudk?~G9HhlK}j$L
zc&L6&fUfY^)hU5KbR&?NmFeN=@_tb0bt<jM1hIxmn-3)e9T3T?{Nl(V#TTDb25BNa
zr>Yt*{l-QpuBe!81W-z-kdo4P&RHEmJLVLR5KsXIY$&^KswR1q+MFbvx>^5<4zS<8
zn<Y_!`X7m*k{LA696YYOD}i0#2WsxgMim4h*JFgIvWrLvFXql6t;FuEiydX7D1SX0
zn&uLNgz_dfh~I%yeH-tH?F!AE7`KsaZH2knU{+bfQw7Y4HO{S^2f-fnhc;0ek>`~U
zQ+C^w+q)k(n~Ky|3YA1fk+LxuGYGCrPntsIxBK%0uO5kMxT4FtdX~)bn+y*xv`!ud
zSp8%2%r1C7Wp!H9c7*surk!PIsH*s8Sggg@8&^3s)IxT-siMwtIiTmN384r#Zy3Hk
zrW`TgRlpAAe<K-zKenk7iXTC6DOK)~-uGmd&(p?>xtru#{#<L6(-%v9tZRbtHr@dl
zYUvd+>X<Fd6UZ8Q;Ef~rx7`n?OKNn+kkApjeDf57*7a9KG@)X$@3Wk?6;R|&6~rOd
ztr~-w#CQEm4Dpm{F(p75vHB}zGQlD?!ZwrZ<5hO~qNCxW)ZsP_7UxTo9&*0v4IqMT
zB_7kR+Q;j6;o3hwGH@EEgy}rtkWp_pcQPYrLNH>+ANPqV!AaMe2xgmoy{&9t>Nqu9
zTQtO?Cxnd|dMzpV!OO;_mDQhAQVEem=c_+ZtC>A=>EP(-_=}?&gT-lQs7v4oa6cbs
z+lmyyLju+qN1LD{gvPE8{B;+JpC08(jpy2VOK=}D?%iwJC+J$upE-}jn%3Y!ASM+C
z>D9u7w!nv+5n@^IRFac?vTulxfDAqw04)3hbj-_ECx))G7q^suxCiC!f79IT0;Igj
zjMlT)gw}2(yt?2UYM%t}p_F&&Z`Yd{_5(U0w$|g&29{QyIo=Jf`nUFTcWX}`OW?Mf
zx%p&LA&Q}^`|Y#8B&&D5Zzi%xoxO>Tht?w=XXcmG1F54xI~fMjgcydqPmWwDD0Est
z7zJ$sF!y9>d#9$euz~p><6Tl?FN0z7miFHr7N!`;(mhQ{5mT}h)5;kX=;eonJ_0Sv
zPLlA~D=@?qv!J>AgBjAVy#4oLnXivmXlhkVezOVA6X9vHJ7J4%MAru+(uA-?8#xG6
zLJx|952k=Bp>5{_@mbS0lJikHP?zz7ZU_1mr|)J4u~H!0+zQCg0k+B=p=uKL;$Iup
z3k?+el0|ah(O*?~shAe18#&B}{35K*xB?{u)+?1<xI6YC*vrcejGY@%>=P>VnwpSK
zg|mFE8HRo4vUfsZXclv0bwWDi_*+@38EkBKkr&AXU%^~4b*`rl6MIOfN@z2QfssC)
z_4=nJQRqP~q0vp!)m8E6-!Ybd3sA@qW3OVCFO9D^JPDfFH1b)9SD7^u$#ClvuNw9B
zSRhWG<=OU@8*@?!5O(|NBwKJf&%LCo0UKjcr-?aYo0Wc=!i#(y_{U4kJBTA$qv4SE
z=~Nm+AY0oUjW0Ns8jXiXQoAk-jRjROxgor0AezZoU9w^fqc5NGil=I1Vjc{anzAtY
zt*nC;;yK(<VZonrCFQ6k)K$wJVXHC942;I#8rf}h1~5=d^C5zG9H3C}ZP@wdFlA;n
zEIehBY{a9<{4}@%Zl6&`uzb4!6!*{N){<h!M8qJa&tb+zn{Q2Iq978?@HFd=?fz2A
z^q9*RnvS3OBfSg}Wb2PBKq6g6Ur<O%I^0#xOCHM<*P<pW`t&CMtRvAZ=ZWm{fkSse
zhZ3D;L_CuehUMSni$<vdAHww;VEYw7K~3nWK$|S3O-%+m2T(T9bG%^lS}7a}V-A#%
z<S|b*!SE}NuZtOxWZH7dRyU+b3`R^>+bsZ}<w>v6#wiPqY1VaI$xuJW1Yq!ga!mHA
zdLPNAnY!=+&7Wqy^b2>6uYvA-`?@*z*n&75+=t@DrUO4z1m8FTo{BSE_V~MsCdK@r
z-Zj>zH{}KK)s&u>vJoCx8)aw7R#<$I6)1N>;T3zOQ~xfQ%?5cmFr{+*b{dXr=QfZ3
zuIADpA;aBFsUH0n6$NH&NV~(F1y$m(t40z>f()?}rQ&4*ucn8Fh>+3Y6SL0dF@p;Z
z86cJdbJOlNPhwp3(tfZEAo~^wtLHM+Sw3+0Gg%oJl$+gvG<xnPl~uJ|CPlnt$IvIu
z_{C`zuTQn8ilsqYIBh@sX~<gkjqAj6>RHOtujZNL(T~IbZVf-K;aF9%ow$J6uw&%;
zT+A9hNo2s)KOoLNwGH#bs`kO@esDs<M2^QH?Nv(WbHCNOT;7|J$OzwYZ}t-$^JxbM
zY7RuCIHCF0^eWf=_nlza%hA7>^G{1Uk7QEaN)t1Lz05dmJDFdWtl*d#+WMrkt`j_I
zh*<=4FJh6uQ1FxD93=W5$hV;&Pq8TP*UuXq1!3*@D-c;FurMouHQ(n;#c~49&@U{+
zJJ?>u=qptS-{1hEm9IL*t_(2|pocT+uuLGn3JiuJ_02>}CU-aO*p<#KcycW1*$FL>
z=N{u>CV#C(`t0TP?GPgu@lq=8%~9?##n1;gsa$8fDr7VE3Gf*V75j7|yzALlPWtwv
zqfDTV#%tKJS@3?rXj_8DTH)R?Ad-NV`oKr8)S=}IMLF-B!9g-m;b6ISGB}?iRH-NW
zkHy?SQ^Zf<5&&A|>;b<XUo~=_icFG@!`KDv>(9K&?5rAJo{LGM%!MkT_7Iwux;Bti
zfyz%H%~+8bi<pU7h~!*`Va-^Y7PY<40UZ*iQnQH3a-10spdYH%p0fIOGr2am@yX~Q
z<S8TA`%}sHm=)OxW^E!ZBhXWQwy(#5m6b9+yXVo-SedQ;$H+(%$h>%sLKE#{-56d#
zE1+6ZdO0_%tnusjgxFC5Zv=nHE8q`Yx?Z^JH0^`z3s9JdS5?Kw0$Iv4Fqc^=f1dxv
zB=RKUcT@imjC9qkYk(#G<HJWCK^|#?Dw#{IQM~%%uSe`SzdW!uGA_cYvmH(i@>6>|
zE>qtSvyrIQQ=WaEDAz6CBN3#=xjQ{N1F?bB9Q}gm8U(pjlTH|fB&j#BDWO(?glOW@
zlsnt`0f{nd&L)*^$>jVlDz6IT2+nf5hX5Yk6OW}Y$9)giB8fdS`?M{uK|&5wkE!jv
zr=Zkm>u<nT|5f{#j{%i<Yi}qra?M}ACRNe~jPsYjUI6#MLPnCPU*RnKDBO!?DLbCC
zf1PkYjKoOS)6JA*#Je<`V9y}p2qjm6uZvijjVr$^`6!7v0v&7|J*<Nwk>-$n$X|KP
zkzlj!N6O#=I0Iqsu*0{*W|3|KN!M3PBc-o26Xw0s%>yacRbZaR$of!Bs~{M5oz^$M
z_Mu8a%e;DnM(fyohW+aG%C_^wVc7L<*D3Vp$aeEi!{aMUrOL9UR@tipNJl=iA=h#E
zzCLgG^xmAc%BOUYw1s%8vot>*{-j*GPc}z&i@?L4RL|z1nG3Jd1yn_N+5GM`HpGJO
zwL;-Y89IGrDv$rJA>_96p(bGOKc;HL;J%CPLWl&))Ze?tJCp!WL;kC&oL(C;|G98O
z|Hn?UZ_co7&zBY<hJ!KX<?CnBC)LqOI9XPJn=HOvGQRK%7i0%Q;ybpsVfs;s%UxCJ
z4QFYFtByXtP(8zD+~fUtAWbiGTV5+z^{^*Ei0*s+rvw)aL@emhJ-pm`*T&;wFxRKw
zzdf~Td+w|jmF?dawdq$6>$33Jis0zBDP4*9LF)lxbM`aIXTTCgKH8(Uw+$h~PLztT
z?R(oqycvj$_#6@Tg!a1YUX@1~E6Eq{SYn{YD%S`|Ts75fM_dFwzFh`h#A1-!DK{}s
z0|u|1Kyp2Z^yO!oz>jPQ=Bd{x7nrC~hCV9^?#&zTKzmdRMUM`fVi^y@GlaAX@=Q}q
zcWycU+RDoXLXUs)Pc@Yd%D9arAgm+>Cs1$_kpIxEcz=afxdVi{%-tJd4l=1YzG_+V
zXMm`f<v9=b2<4e&b|CYwQC&vkQl*bSgbUzBqcFluYuVRdWcFT@GS4ll{0`MGa{V1z
zKj=B2uBpE}W>JmX=T&tp&JEj$3of0sQ4FfN^nK|$SN%7&qu3pK0jDHP{6l%37oq^6
z`8Z&tJzOh4eA3EbcwS^UGv*p$2z2fq_>qpqzSd~IWPyW|E62s(#X6lopjG#~#lU8I
ziW2aX63l$r+SbtZjxsT*w3?b>IP_LgDmz%I)N69sCHQ%>I@U~}we&)Q9clxryOm3?
z<C60rGBY9&Q`q-8h{1fRPq%)zknzP8>-`8`{l`cT!VI;7;efMpxq$M7EoY9r@jhxs
z^cA+Kc{q-`%-4om=x>@WOJ!EGgIg|ce&|=4`f5!c21>J~U!cZn?4ESE5c5x-$2jY<
z;4mxFO@iNZI%#9y@GO38JPPObQJQgIU%KI3sQ5|rg#jOb?o(~EVXEZlk42|;JsrT<
z%*1@P*Xr&N$8kN#t26sWZa=_Snb`(z3jXIu1MX>ziU$0RIkIlR$K2v7c{M&)z8}#t
z4TzS$@Ow4^7(I9{jU%SOBOBMB3S)rkT;=Kw(?6B`z*6~20dW-o{lV;_e8d8OJm*J&
z5nTVQg*_JJwRs9qdnahQjBcXaty8hJsKyejzK1S;?RW!|b*rJC$Q{D!hV}JRjA5se
zTI$tU2y5T=)3){^@fCc=lWa&$1q`+`Sx<uUE4B80YZ4OaTP)R!k)cKr;9*pW53Clk
z4tzbXMxz~|C~^$-h1fjA)O};HFpeNCAHM8Rfvuimz$Tz@ToFWHU$H#uX(IoGBR!^`
z8i#Gow22`X?={$KnIB_Q(L7L2dYf!Mk$C_OY1Cl?sf*#N^bLYI$EYFP2-;3MjUL0L
z7+W%(<$Mu&^g1irv1)(NfFMe7j{Bs_qK}B`h<@z%^;4n^__nnvW??316K-u|Ob}dY
z(2nrr$VQY?qOZDL{Li}A<;9PMQH2EQ1KZ`aZsfHQ;UHhVN*=1!y7?3%Cw=jE`HP@J
z&ui|ilA1K&oJX6dkLX_62ijw?`;Wm*4bR?M436JdC%qAKX-+GT{hebi>@z$|Ewdx(
zojNZfPUUv`51C%JbTCKzd<fG*w4biStEUVfsU|rGcImN|siVAu1e!tsLmB*6<~^UW
z4#sCVy^W#zoew<Sn!^53{40|VIiu}~o|u!cr$3r3LaTWFej*ju%)^_Zn&t_>ihMjZ
zV>zfEh<ayHeZIlw=9|<$QCef(w&yIUW&aKYt<5<Z_xYkwmqH;nqU$lHYo$4oP*o70
z0E<b_S|1cOR3t6BM(mquX-Gvy)u-;_G%fSg#K2!n<WAx2{87dJb+R&}ZFPcuH|sHd
zn(z~6aBqmL$`ZLe7m@j*rT7)(HNX{XHe4D}rRYJ})6|8|H<ULuo1sG1Hw@s;sM*==
z?e$F?Dd2~MTudG=SW|PqM}gNBkxpu?*gmk~JW_icl}oooKnX1=mWS3T@bc!L16GpA
zk62uXQ0iZRmiFQpoGI%-4_8GQve>L3-CyF)ci1v&*ed@};q1@J96?|}cvCX#wzkMB
zsM&a6asTk!ZK}9{dm7Ntu#YpaC)BW%V(XaOV{}8?))_yx6gUB9k4R2?d2SFX2o?H#
zlvC#-!>q=f3MAazu>EF(`$nCbMA&fk)3FD(+}C@qnWI<{5~P6jYU=1QVSPuujnfCz
z5R3==nd2PN{C-KeD!(ojeyQ-OML0uT_0XDrF)}%>jK(}2N<3I~S(}GBLP4p(z6Z~K
zA8kx&;a(B{D_Uf?`1v!_>Uq|dv+;<2K+6?(?j<*F-R`;9M=d(!14DjiZ}IZj3S*g4
zgZ?BSlR5C&lth)b<T<%<aM|Ip<5*(Xu%Uz+g;6#s?3kuHk+;e>wSkLEvNp{k@k0ZR
zF=B|^ci-<}7yU(D|6)M;5j?r5YK&|Gbj=)OSbQEHpiQKoRh}+<a6-_iw!xp^0!I`F
zolF->i6Zc5gki~XyL}Dsb1sh$#08H2u*<tS_>l&S!U&Px#{IISWQ;J13jYRrLcI28
z+k!y>gY*RQNFZk5%uN#cATiAB01H?#mCAtnZ_WTBSmN`{A15?=#RNsHg4MO8EZs|x
zCQy90x<(6;y2B3oQOFSCRo@_<*l0#c2t){B9q!F*3$y<okv};~Ptfzm8z$1BoC^#0
zQ9qIg;QM$ng>*-`GV3gru!wF1+q4#y)BujOXsFCz=Ys)s73fMu!4PAU)N_w!Df;G&
z@0f4%XF_Z)TNIb8Qic{BI3jU<E0im$X?7{}UYzW)jN7mcy{et*A*l4ISI8e8`h2zl
zu*QK@vxCGPWrslDk}PLx2!6aLuPCc>GRPrrg#W(JHK?B*dfMpvM~g+brSIM9*O$Cg
zgZJAxPXZ=g0&GG#U8mWer*L_6p5;mqqR;@u@L;<C2DAH}k7!+gE!Feq(viP)eRA(o
z<iY31Uot>B<2&p}e(07jwibnYT($95`?@e@$71edsaF2@0iUJxT+Y^tE@lPT&0j5a
zJNGo956L0#ueb8Cw<yC?^e831bD|7oa4fARG&Apy=cwT;SmXbvd?p+W``vx$=^Kmq
zg0!ejVTbDGNLtZM>^u+R@wry|WF4O9Hvd<<T{AfCC3%k#wsm5*cQy%J?%?A1IrHfR
zI5Q)Zug?cCgO;D9tEgEbz}CPcNo=I)@~W@Gxq>J;ni|GSpWJ@CyzCjzT<mAaKe67W
ze-hHOO`Ax;Wk5*W$9~seeyV{oadmjvD*^*)KqPd$f7k1?$X|=Z+=(RA+j38mlQQQu
zM~&5Lfgu0DlB=+8cMMge9)@~y*NaS@c=xmwI&WspwYRQOwSCp+NUiqm71|$qFK;RW
z_aZ9y3jq4iHh(IIL42dAaYx0o5_+sSe%ff<4n@b)=6XXth)z~??Sa!Ghefwz&{1$7
zX1lik3P}lfAfkU!Pk8`<TzI<ydSb@p<50zHYq?N`N{Ya4ri|Iq1!^!d%@{&-K#*sx
z65Y>m9|50*$+P)Dbt#<LCa>#ltI&?_M1NF2Gr!NULOYhJm+dF$`%Od$>?Y6rXp&;+
zh`${=xkE|CfIJ{_+|IGhhHfayh{@thR#At|G4@H95n4886``KP)Jp96m`#_<De4uD
z9t1gw)L2O<Z2wCZR;DtBjR55(xP2MdY?)<1CJ<->DXE=XV2dGQWUU^eB;2=z1_>=#
z<fC5)oV*`YXc_VlqpD=wPK!eyNCiejzpqoB+y`ke<1K?5Q^!cH%GgOeiQdvLwka!p
z<&%i&KhdPn`BJ$~8&(X{q!4Tj)JHw3j%8ZNE#Cg5o0oTuB~N&`yb79!)6xg>Hs_qq
zkmIg;(}99*akq|egWBTJ+L=j9bDS&Hpu-!@2XbOLkn)YuO$rC)(xH$09ImKb2Oo}%
zMLT#i=*c{BcLVtCgLQ*5`}ui4b~{<u&hgGrD8}P}IDqAvJOTx&CqT0F32_pK;fMHC
zlBU5yMZH5tril!8E{!3$oNgZ8mCbidq)EVCa+ICC4TjD$OC}>pn_by$*H|w*=~l+4
z^~Lvg0*XJP^k|#99b4KG?%OXhX2|IbcolI}hJ_ndjL*edRa-XpVehKHlNI|#M8K1^
z(}rE+d59|hIS^QXSs%~J%3@qxy>^(mk~iO*u)WGi8y^$c)fmWj%8^Y1^|T1<rHvM<
z@hN>uD&eU^!Amc^hLcZq$gdh>8z<%Xyl}NeIs4FEyF0pG|3}Hrj%d|&o{#Kv@)5Hg
z7N&Y0p%!=VB@QG#|4W-;QgOyglC?aD`A2W)he~2nH{8BwD+YN#I2H&hrDnL|SnU_Q
zWvz4n(z%6!fNzxyvpJw5h#m~(ei<tTi0`6M<iD-WFx+mM$d#;V&SZm*f-Q(d?@Qeo
zS<N&hWJf2UWLLa$LsJmEPf2~)+k)b8*On&WNA@DC4z@xiL!##CM^ENANqh38;F-Vr
z;*zZ`vRpkr%5Uxoz`^U-w@+)Q92g%Xveog&AKKzDBfu~u*|wA=In{PiCti97Z?-CZ
zG--j34alrH`*9wiIm6n;(o5Lw+V8!o{Eac0KSRBXU2wg!=<_H$b97tHWUI^iVp$yq
z+J`nM@lG;Rg+B?c2-o_w=SWztbKe+P$^)Dy!#YArYuhchFH2{%xjZ6%^(bU;CPny0
zMQ>%57C=_o1&I&5rEDcyz(NQZ_rWew@Yk~<l0m=4o(mC^9&L`F%6D!^#2ip<a=`5p
z_TcfUBAw)Zj>KXdnxEHfu#f}Cdfh^w<<fjG0eQl>hWY)Hmd}S1Szl3JSh8MEYjDh(
z;(T=5>Vs?M9v#rgc>L(rXPge>rjpOBq$5Ima`>>>vYFoNPEJZHV&Lh`clvo-0B#^g
zDSh*Gj$UiEq%v=GL$Ln}p4qxBV~Gu(rcy9@C#^(&AHv`qcJL)~ohc}2@Jd_f^XOso
z*IVB072|#vm@pMcdtd(d9=)(qH(k91o%pFL+g<)pSW}P$NxiJPopNEOxnu>xihk?i
z@vx`l*T`}3Ms>mV;ugO1D1^CyDJcG3-lQ=2Eb7l0=5sPH`f3x!B>ZEL1rh&6rxI~>
zZqsYaQ)bdmHf@Dsq5I0BP0>=>r7EZxeUk&-2y$0Z_zkiIrbPcl!oZ-z4MIo`uz)Jm
ztGosVX2<$0t4n6)z%|Kj)J_VLGyHo<c0s3tfLBsM-rM<OBeWfr<_mAyZ#JLw$mEp?
zylZ>0HezsCdIeL*=vjLG<mB=kzgHYGl-K@_J=Pw>vrh`!XfT`j_NURpE<&$L-;OK_
zQMU9t<VPoMcIu14wuhSqyqOy%`ed8D<7<T{3okDs4!04w<PrKi4r2-0fHcI&S5Kn#
zfwtRQFt<|Xg<mxThLF+<*il^xYX+`~egX$U*l|1Ja$vE8dxo=uoj+?-bR+!mur9CR
z5#k+D@-zlb7|L{O3+(C4h;gD$yhRaP*85Y$D0Q*sh{C$UvTRR_r*LO6Xe^7oDx9Mr
z)`Zs1$OfO3L<o!uU#sVJ5rNa}47MP)Y-h)((-nG3ca2}fIEGE+r-Bxg%@!*M7Vb%4
zD8Eax@e>w*Yw3-byM0uwuclpoaHkkQRm{EsQSbW|B`R5a6KoJv|GtlZ=efVNEGW<p
zw)yDvy8%bP%H|JDk85P!`Dek!SZBxW0=7l28$Y${eVG1lw4#0`86rP4)ZBcVq5ic*
z{O5hTa3RCaA^b11g5eUmAUHuZ_FF4Nz!&wupY^X*<rMmOJX-sda1(|R_C9BsYR~*F
zO~tq(<-pw-50U|ktZk9}_7i#MhgQaT_t3xV(0@L}4^B-3G8G9z1#j&w=?37PB&C4x
zL27F@y#glx?UR7l33E^@Nq1AH#JxS(CgM(|T|(vuLkR1$cDAHWkO;(i&7c)-t<&#|
za_o2g7=%vkDikFV6wGFMW22xgxm3t?EYW)}sQC9E5Y|Tb+ZWoaF>G^l)aL5HVTYiH
z{0uS*4nqHDK>nBO?1COi@cTN43(wP0%%8E-@XzxwMM2r$j}di9|1>NA^R~@sZa{R%
zXuW`46x<&;x5KY)8UOo||JU{Z*9XPv(A<#1vu$>ir>;K!B@y2@exc2)r_oCbdTV^C
zY{{|E`yrV0z~-=?Dx5@x(&_G+bSm^U`=14V6%HCYRQ;za1ICpeHde&Y{8p?UJbbZm
z0cIHXJ&*-9GC3G;p|igm?#%2_U8#X_Z~A{<?FwZVDrkjraQFXy%76Wf8X0gSmBN`|
zz6SsQyK=u)=mk)hzLQ?e|Mj}0OyS%gip|$mUDT=5hx()`Uh8<f(^OnN|5`;TsR6P2
zdk<i{Y<0X)O<5UbQ_Kck(SEDr0W_=rV$#%$CRhIXnn36d*?x^z+C0?%eN6uyAZAob
ze|8lQTpyJrPlyuF@ISGD&S{1ybFRfN<#>c&Ew~aC2QE~Eg8AQ;649L7%jWrxKDzH_
zGT(4EiT*Pb)TvlJt}R<mTaJcCM<Zhh`6PpbgO?7Bo&Z2&oy|PcQj;S&kXLRsIO1W_
z69l(&cBWWeU0vt<=A+Z%Vx`SBe51+Y4;bNR06z(nrz3D#Gr%KS01Fe~*+0(y&pZ;g
zLNkK$n=Tl3W&QuotN)CvViL%|K&yB4W8)fFkc(i(Kc82`#EFt2h{4d`(5KayN~Sbb
z7d96$66+djTr!@z|K7+Z3fMZ^WevJF#~Q%D+Q_>ff{3pIfQI4V7u~P+rhxil`DLQ3
zsECM&HkUH^W*uMzKo9Is=KT1}qVIWBUd1<`n0<l2dI0_<C3RRWA5@Jb181SMzYG1p
z=9N-7tmzkgv6B2E<u9T5^vab@^#AXK>nao{`6<cAyL^cXB(7EZ(maTv`=TCk^c=kf
zg=`z=Pr2lV4__(D?I8YZ9iicZR1(eM`}#@O$=R84iHOIEVijnWVp*Bh0~zsWzW@=m
z)nbiV9l)oou`cR4I$5lxuD6;A0YZl~HoZ&!AW=|L&j9H1KSOck*FdU8a_OCrbH$&Z
zqbL8|VR`6M1!$0>qGCi?*f(Z{hld9*?|-gjHr}t%7qofDL`~lQd$RIN?cDFSH>IB*
ziv9LKpnhU&7dk_t7gs<BK)(Dr_#qYE?Tq}mo8nq$HYyVOBb|6Lk<C+x;p*Q0aRR(n
z>UAEoY@Z)C1iMu0iOl$D<Jg=nYh*+s@VelphxT}KCuF(YaMIrpTa^w511UpQ3uAVs
zZcaVu7_@GG3WbACydHKnY3S+Ya>kbbbA#b%6s5dz_GDM|TlMMBk-lGzpH9U*<*dta
z+$yHzzSWCY$Kg(ePjI#C;=!5zK9q#8;EZ4I7kFf78~@j2+7&hea$ii<9)a|oc*$ry
ziIe5V6agS`9vi?HwvTz%+AecmMAw&(EpNimVfzF8H*_qle|;sz+0dnR5MBAPg0jGN
zt1z9z#(FcsA?^IK&VF4mo!7N=T*R<V9&AT06`znGW-=J#niw4Wcd!J*3Re?)x(odz
z!rs|c`En@H;=mtw%kYqNSwo*QP1T~0ZN21)@-8THotM~fh6k2XHTloio{(7=2ipUh
zt)4s+8ivwb%>14JFHTTZUJu-Cny|DbiR<x#c=lE|6m=vANSgSg%-)SWpMqfMPkWkG
zf2c|_At9ksVnY2>7!WCGw=qgt)<HS}@8@|CP&b76c<cW}OIJ$t?%liLXQe;Fq;Hc#
zN0xhK_O#^WVnr#}$d6D&lK$0@_#m8;bHTsk`}-xD8$jEnx8K+Mqiy|S0}Fm7HQ>Px
zx_pzP-xZ2^m$}LiV_3jmuCSklMfuvv#{#0czRdUPgrz&braU`#-bu@#vu2&tj^?Eo
z{Z+Z*=dqKOB%bY_rlC)Bj+Dp$rn7Z#<+#GJec-juLU#_A;Oe<!p*w3!FLE<Tzu&fF
zLy!D})n6{oud%T)Q?o;(T*s;G7MQVi;4V)=(Z;j2cHIzrE)6t1Ji28#SlI7CM{v4C
z^@lXB8}3!|tzhOyJT5y1!kG;T<VowVW<X5fHISS83t;du4Ymdb29^K=fpc<kl~Yy)
zDO0!Jni7{-$fu1$T|2Sgdm31K-LsAU9M|{q-vSF+kmGY-U!T)%&=FEQbj4JKek%>%
za`PKD7PXzl`}H(Hx6uPy3j}gfq)STf*LB;zD^6{B63)m0Rdo?I+VV5QI;5<K*jVIE
zK@Pl1jCH;z9tT5z%85H*jb}2H!g(dH>8&;y+~HZa50Cw4y<=j8RG$NZ-cW$hT)Qjl
zO=9Jvx$;7YE?^f*VaRfW+uPe)F9P;%@xc#l{JZ^BBZd^=u!)O3&u&ZxU4B3+{N;gI
z+-)XcHE6#+GsSpRR;#Wg+q&7P6!=M?Oc%S;|220L<LmCZ3Oh&|E&H_tf+`pnFY07T
z%0pO}Yl0SdM;b_X<rBCMeQ)bEcVkK?mrLowz+5@VeLpxX0`;QY#%@e<9zhTD>z0tO
zfYk4`sdZUs{3*>kqMKX#h_k#T7bnpa{GTOK8Jf+;bv8X_;VM_@b>H%70CD|y;7*1|
zs*@<5@)xZSBX{MbiF5mmHM`JUd5H_kiRc72aY$w!=NJ7zcteSVha(>~)0?y;AuMlm
zKo6R4P1=iiV+otUeIFXUz~#?m>XI3oyx7g4Vi-~>-~0~>XL&1KG$&1pI%KmLFvtdr
z7PNeI&8bTpoK|(;*}5!A88)TB&s8#%!>;D07OEeit2I5B>DhQiJyw07w;?E5NQ$f9
z=r3i2^5PlhtdyZ>%hy0)7L>d~lf!p!SIe}|zwUP83?C52>SHcp&}qaV!v;7Ux5N*I
zW9}R&SrT6WBx8Zo6Obj5G_2%Ce|E*|dN_2UM*ze?z;&lK`o6uY9E8;Y?2Kt3$1PZa
z76*U8Yg;M)=-tS0=i6%rpjI>Su36C-xw*b}X#v*#@)&XmgF76dPckxbH$Ua=J06PE
z)W{x>fsiXnhfl3QIw@m^$n^B|pQFmoB7px~V$4*jn8{6wn@fU_!Kx410icxMlu2`c
zw*%>3rs)@owdUi0qPf<-4J*l;d~V|w$p%QnvTIx`4uR^oe+_#vy(VM&aEaHj#BYED
zX0q`70)V<?eJmK@@wuLoB70n$iLWokwpl?2L`4nyg}kR(fICnN*K|95B8yLRjr#G?
zd@{RyRZM!&{rNiKz!&v2X)0gpsFrV~1CYf10Z@8*-%zg31mQQ<4BFgS$1{0m!0y{3
z0<l2tRpHXFI?}-CSAZ3s(T<Uvk?;jj0a5}`#yc;$lL?856gf~dC(&#G9Kou~uY_hG
z3OAo{ZhikR0k$nCFE5YbP_o_a%M=%7h0}l<Lh2smWV*rm3Rnk{zgKeVs^`i9*glP(
zdG7>5blqQUM@zWn{N12A45Jm-z<>@Tx*?I6+1)n%%<x~~deKm!+TFSV^UOZ%Tk&!5
zRiOHxG<FL$*Ck%|nWX?dz9Ia-GtUb0{C1MtSMpWz9tK8LI*X<UuM^icxaVahE-=w&
z&O7pCI$*}}_bSHh9-FG`R{q^icDakko85ya)?zWwtj$a~f4l6N1^@1E)}@>MSe-i)
z-a9hni>V1<C+O!5sht%Gqc2{7&`Bt?JgJ2k^V|xCl887+{&KvcelSs_S($x(E{1IV
zvef#O*cRnQ;gg^Oqi%gcwm{410jLh4u<GKda!)Dz>zey}d{E;5L(@Ar<oW;a-&eM6
zt#ze!)v_0t?Pc4xTW+hCmffo5ma%Nx%eK4j^Zot&?tdVhdOh(tjssS$D&&6^=_*|!
z*=!JMn|%Mc@`<nIdjdU`G5;JHEN`=$(I#@}AVw^=B=W^YeL2$bWpWyhI=Gk|neVA}
z&bbw({6j-yrV2UaAL9+g|9jU*sNL~Ey{m@CKg5B_!$z@SH>dYMZH+00aE86*6LRsd
z%d^Ufp8u=PEX;`9KkLy&gN~}&Pc^!43sXPv%UJI8t9W=Z>t|TwB@uJbeZcD{a8|c{
zwk5~uipFO6f(mcof2$Efy9|DNd%L;l#nR)oJxm!^He(8w=A}hi#3Pr+Cu$E49**IE
zzCD(9x(K1wVPg_$D?0tkk0_4VUg|#^?1Piu1-?Lz3?ZJv1bR(t!IN2G!Dbo=XOOBI
zN`I$m_<+E8h0OQ&(*j>8)Q$m?RMTEIyuNYANIcNs$!-%wFNFRvHpKK`1OQIn)1C5@
z;fU5CFc4!MRCn6IsZon=Vf4Zk7-a<l;kx~1f3QqZh{Ht7u;6g%%M}{V&z4nInwuiA
zs1)6g=Nnq~$s0<ZBCY^i=|&D4QJq<o9T2$H_@5E}YK&9?ObXJ1!*rp{&0jnv?NvEm
zhx3*Sx0_P{MQiYWRXKk??^FUDdYTAflzzt8tW1$oJ|BGdp}h6R!2w0T035Eaka#(U
z*Xz!k^7GTx|6l#Qhuv!`XOe<P^?woPiKx-(@cSc(*Os+OuM$35W4;>^+xhlXp<r9f
z6cO4w0z7kQ@R-$lQVbprjo_*CJR&f-Hs0?tZ2!4R#NM|^8=t9{g7}?8!`VAMFuvv-
zS;tRVOU%<bUBO0oq0<Lb%m#9|_SF9W-i&0nV6jf@VQY3}?xRlk58nSY9kHqtgfnzI
zg7mFUKjZ~z!A`vVaSc>%t$*7H3`ZJAC*`~HF^2f4%kBTag4hUlE<7ll$FIfyTy*D8
z5A(WK#C4P4w{tBuFf?Z}`2uM8WgI>JMb?t3A$B2yP+hA}uJO~_=4(SZRzvgP;HO|V
zjdR#~ZVc_*KJFsSCi$xlLlbvmfU%1^^{@0I&kog-l6fkYk)<QrE9wx@QizRcSeRdq
zvaGci#co&zei{+!hFDVT`b@M%BsVafiNaLg>5}I&2gNe{*R#c;bTR7NMZVW`q*K8_
zb%X@d!ltblFhcXX-heWrkjKx=?47ZqFZeBk$I*a=t>`5Z*B|f{pT0Z>=2*2~fb<o!
zFqk62zq25~WIk!@{`uxm9PocnjNSz*jNwaD|JfiDG7nm~<ap(`iqCLBru6%pvK$D%
zDE|{e3FmL+^=CzOIis*r*kQUS!2O^W48SU#*0Rpvr#uKZDmoo?xnuuM)ye(oik8}&
z7ztW9TmRxzKS0H?Opu`ZfrE{2wxUIc(1M#p`meWS;_m=hn&q*3ha87;zVf5=AvrL?
zE`E`Q4+-pRqFn67!Cuh+DbTiL98}|7_h3j3uY#Cs^k2AW(Ixzu905tU4ufcYa4DRu
zX4My&<Av%U{uB_SAUD~+{=vSO3sb4Rc}%vpag6aao3SlC4y&K_TilXxAlUYx*FXTw
zEOh?b0fc3WR5L=IKWxHGcngLa;o{-Z5xia;1zvO`nZG_=#Wy-riBBciUIRHsgSH8!
zBY@Fot6zuHsdGZb^Q6vrDc(e+Pe7Bynk=*CuSEUskF!9^f%i!`kwN0UKt2Ysq{1Uo
zFCH<J;oZAtH;4YG|9$+GDNxjP;6Pu{3$6?UgXgRC<p5zvq71UJ*#t<`Frq14)SVjp
zOT`DSGiUlayT!CzUg1oyAWUdoteDM00VxKlnuiY)1@3d>yR%{2AqMKiamsaOf`41L
zre%4^F;qA!S*Tan2iunt%dZO)$={PKRLBjs$NrMva*=Z9b&)0||M)3Mq(oUnmpMNj
zZi+(aJ*PM$96HDbP9CQcvMP#|&Q67s{(OF?cDW)EcvohEPb0XoMSw+@tB)3#n>OBF
z<}h-HuU$u2^pj6g#<x*rTWSF*57SXw(mrApyn+%FJ+*8*StbxJJ%F0}SnnDPEJn=1
z%T}w`vOSz|d?DxSyMe@5t!*0?iwY)P!{VvE$?!hAo#iYdJdqx#bRgg9TvN~TwS0{5
z*>Z-u!uLNDRp1p*7OkqI^bU<xFv<d+M<kcTmg~%f3I6Ts&Z<>dGncRZ;>zp1lpCY0
zV?{)#+sMV{r>`P8tAns(h|5kpFSlD!dOt@$j#stBhuF^L)z6ez9Z!5@Jrh{X<P~wI
z8}#L1k(J+~zH`RP_h0oC=zCR3{9!po^osek_Uqipc|t1c*<cih>1^d>Hpb26o{$~m
zuTRDG<c~_!m50Qmxr&sBAO~@Go5+|8w_sWp!-xm4Y(A9xj3|_@)h@e#v-`)_N3>%V
z)oE`WZb!N`VAbt@G%FECaZ~b&q&R69!#y)^ANgyz(UwfE{ka}zLYBt=X-SNfqxqxz
z`P8@kqdEL*xa?y0<DJ6^5!T)+Qf3q^tbE%@&jLc${IYDY=bK-Ko$FcFoSUK@S&`(m
zRm)X*{FQLp+pY;tbPc7xySX$DN@;K!93<iHOz6Y&x6DjOmhw|Wfftv{;12;>`LqWQ
zmvuMyBCUO!-)<kR5!}fB)NE6-;O4-+hm&Y9Tx~HQ;XRsZZF(V2h$>~=yOH}o6}uOW
z?I9yG#2sUby|uix@L4J0;sV0&dDeFG@bLJ<&_3XxhxTnRQ@+y{jqr^Tk%ksNhq;eh
zf#oNW%6AVGr8la;3`@^5;pEOeQrihsV1wka=9B3^%fM|torZ{hprjCPiF(A(h=_4_
zvM#PXDUdPad@xBf`&g^EO<5`p80{v9GOaW^E@;`;tcmZhB?P0iUm4~&XIm{~*W;?d
zR$+&7*VM50c+DDOIvHVK5^e1|vPCDiw?xYUrw<PP2d}^9YqqZZAp#Daahs3zTb<Cb
zrqDyaQwGEyK#QUHd{32o@HFN2hge<gUq#N|Si!?XJLg`9Zy$LQ>p%C`yOs05zK(74
z80hMGii6*ZM#2U@lVXtbCN9TZBoa%65KZyW$``diW9~wDJ)iBHRD07RYR}V5@r+44
zPZnhYKRk`>y+*na&`hb^T3yV+m3gaOLUVtMI<2!kHA{?!l1PsIZBL`kk7WH)zi6@G
zK<?iDP>EK!7P8Sv#;y9jKdv-zW8I``gfRI>rgS7G!{ohdK%qL$yawAvB8jjaGMD3g
zvduz#;pixf>}NqSX3eVN&`8YVI-8Y2s`t%jc%h3{BVeBRHpMnXuj#$Ym495C1Ezgk
zR!rHIv7_khpBtkyqPVdrA)O3mer*=8@|)ANL61i%4~0}}nGTg|r05KzmRP}&BFTrc
zejM>~2tF>Y`+ZH(4Ek1X-ytATuXVAMqR|B|Og{w}OZm>sC^u!>flRmB80FEJH_==>
zEMe=n^-5<W#9f4WJT=7GA2EYq7oB?|M9c<{HU+@lal@<n#1;R~GaSGB5*bHZr!y10
zJXP*H+BZBg?<l1w6=U>^xD%!9Kzr-YxmTANC|{W1v1_S9?hk;dYkjoyg!&@6AJYI{
zFAZef_c+vqV81CxkRn9O?-rq(GvLq2<|<1GTznYtWXB%{;su-@F!G06YWpACAGTw*
zDf~NG8uk6^Msq|AnZ&o^Fm}P?1nWzU@M<`sI2gg(#OJ5OWR&i`PCZu5pxraT1K(U2
zEE5;vJ$o6C6|CA&=u-3$pbq3NsQz_Wu9qP--(1aY)<i^Os;;vI`<Ezkk!9@YeH0MT
zBb$+q@@fat9rcy3fLur1erQS%hS(!ueW+@1k3{Juie`(o3xSuy!S+k&AIR)XH#1=m
zH2M;BNI?zk(Z0>Fm(oJNI`R-Z+z@U&V1w5K-<IC)OPDObhzDbZ^An5aPNXq(JUUf(
z4dEn#lzGMpLO$aRAHdw>3Lbs`uCRmhklpthWjovKZ0c=Dz53>Ro*uVkM&I|+%@tYF
z{uD953Gdt2#1e}`4a^&KF~(g0N2P&!U;pk91ealS4U}w4VyDeaf(hP6_PHR|;He2D
zDnFxR?2`XYQ-i2C_4OGK_5*r2VOZohRjHMmG?0$mdZ9x^`tBVNWUI+MGV>yX#9?o+
z#3>1g^UOJ%nCB8-cA-VR)mtyxVL?)ZZlSwJydwg_qJ7!@j+MgOca_dy)y;Ka$H;2U
zYU*s)?c%(MP}WcbJ6bEOI+AwbATB}h0PQau@82E}b&I{F&16}mAR)Pm9x41F#U%sv
zFT^>UY1Od)&e*rtJ@FsO++5+?+9=7BvWW(U7okQ+L8f|8jmUbgwp%?^bFO!<tB0!W
zprD>FLmdQxr3xkU%GsW+$0{KqdTgIUh|X}pD>y1$NiJUutC~-JD*07UcKyv8dyloE
z4hhC}@jpp~FORJZasu}^_PrBUu81sbkFDxhS~2ZfOq-vdxr?Z_!qIEj$9lV3Vk?$!
zEzYM6E)bjU*TNr(%PQ*9|8(Bo(55d$1JPF~q*gyoosL}>4)4$yhxw9Az2_~t-KH!b
zzUp1I{EL*G(8nkt5r(|$NMZbGJ-&)$J|){Xp!fmAjlo+QyO3}Im?79kVLSZce90K;
z`x4!Kl=%Avv&2A14;V*R9Qf886ghS_a$*mA(M;XaAtS=b($a~CBY5KFT{wtO2=mPB
z)uD)oUnUqZ<L4NZrzvYkqE_63b<TayU&U;p>y;F}QcY*hZnwFL9H%{fZh0qXrp|)z
ziyJS9qY7Hj(`kisSuxc7{MruIJl~Z3kQe5LbKCDu$xw=H^HcY%#2rDK?jO2UG*5{U
z-6#Y7+LWCPi;IlmLf^BC)hx7nvf+qby6U!!PUnL9VR!n4axq-;&;?C$@hN#Pm@;18
z@Sn~_W{h~_Kap~lDrp&5Ke5^`{tgcRficWYL<s{I7V<V!l1<o8NF*Qb7MRx+*&VEs
z3;8e(+FXaWN~0fP)PqTBim|Nd+7Ko;hzznM7?iT>c`>=G+n=I2m6ef{i-A#XST~xl
z%h>O{<vav5LYtLwhgHuF=vUtprkE4pASb*R6JXc&;u3=P#9*fE5F-3s{9`=(xop#M
zzAaq=4rK0z^FCHE8K#SC0X@Zl;>ahT<mPhe>%`{-+FjO=<EQBuw#l^T0h?>5kUXaS
z<6}7?-@D(<3Cc<(iWJt<g;1FS_#MVv7IgGv&j|kbZU!$0fHqG%Yrb|!`I2}1p~vZ8
zp0g>-6Dd8qjL-cM&H3eW11+Og8`9E85V7C^Q+NM&BZ<ixae<>LjDCBIGOg;W2L&5h
zyzBr)If?as24Tj1i#gmrDe=pf+q0#ggfD;60v?8ZF3wxF#CQEC3uWjs5kYX(Eg@GD
zhH#;<Ea;%+Mr+pWwf8+%;FK3Xf3S8KpE(>z$a~!a_Q(5RSgPyi4D&Rf1@C`hoT=e$
zb>CQ%q2=$vYg@rNz@|rLh&B0morGa_i$k9-tW))^B0><=Wsrw8SiLi}@KXrCjqbDl
zs-@~18Xe4U)nOn1s@%f4jH`_-gU`X1+@BKyh>7u|N<rCw7_WXuDvvV`Vc2{QAd;8z
zEv^?U2Zm_wX$$h3-)MvG#c$V<i@?d3Qjh;l$1Ll7BDpBFo-cA6i(Uqt+hW8v$&0n#
zMkFqgqSe4Zw$kI?sE<JSH${xfu*|!i9R^<9f!AX^s%2DUWECQ2HTGHJ27%bd>&8xK
zY?h{jo>@r6UE$q9&ZHp!hrrPU1637S!&$gcxU4!{@=S<v$g;aP23@4}OtDUicxQ?l
zRXzyZt=-9yD5{POlqtL2<Tp_qFj%ghak%RG{aolcH~q-{J63umAR`|WPjrw`eLir}
z0=_^Q)rtqfh@V3X3OGOqt4nsV+-k(`z#qsI!_{`+j6Uo}4BO1K5eRKBe$g^FE`>2g
zmfzVt5Y~K*J3ctDN)NL_G7NlexctrO6_f`Tt7E577Yy4Rhz*nR|JI8qc%>eQpa;u{
zz#C)|_-+xnFt}QVG%3)08g`gjND=8T<|V5xN_NHSU+^#Dy@womFGPmiwJ~YE!l&}M
z;b`=~bCm6RK5posRN}GHBB$YR|LN&v5nz>+LcBo3oD=@1OeCD|vv!Z~jS>zEp9J$E
zo0qArC6w`(ga6Wx_w7~rqiB|ESHnM2_#faTS+g(E1~Ad+9jlbdd6H0fqZTb@4ZvPa
zZ!d9U)7k67s()hN=v+Xts7D0hE7HNQ6{D!{ysnwyg8J90e_MlstPo{!=d0B->2;ZR
zJr$)|HqSF~W_CRRQ)g)2KM}SEQ5#OH!plR!r+{V1h@H89{&=dG@oF_>v#a6q5-X9*
z!hly=IQSC>Dd^0Re4@>3y_^dSb*B0v=q$nX?0nvn*r$~&nG7RQIVrc+?2&OrwaX!~
zLZn22cZxXtnZ!y?Nczd;%+A!{D$}8@yD0yorN3>_pnF+J{^<Jpd$!X0dX_Co|5QbK
z{oGtp5u3Rd8ia>u)P#9NRhYMfhY5R4tQ{B@<*f5%cL~46M>%uB?98cxXH=!dcU$Qc
zj&&@_P$RO=d*WTQeHGiO_xR8D%YP?#67;3d72f*tznrgETKC|YVE_4yi~GHA)y>lE
z1_VA(xhpG?n%;7jnU*u$ovF@yk<LWI%u4p}fBck0go{fp_~RLm7XDxtFyFNuhGu06
zE;l?!AtM|x;M=Oy<~+6CHC`WOiZlwT+54W7jdVQr+v<7=-w@4T17FE+!(aRsO+@Lw
zpxYfFXue{J*ky0Lg(+t-{FKF2K?}=^QC{!Sdl^Denp||oiiSk)-$*vt6PVx)KhKm*
zeC~zu`_=mq8n<9rfYhIHtQG$4I~51)+yCzcpft19i(>O*lOo~RFiVj8O$Eng2A=|E
zzu9pkU@JYqz)OuMRSK<`+mIlF<bK$;_{ewfkb!GgMDQcTiikRYnv)=Vl~}ZfLD`8}
zr_HQv+07=-8YcOQ%D+z(5fO(yF`}CrowWV2|G2hVQ9~Ou9Wn_kObqJ1?doC_luX2g
z1GS-vTSKoWQYT1S=1UTW=yo42@wN^4=z7IWHnGjm$Xu&0h`pz`(KpTWwchAr-=CqN
z-$_bJqe%Yo79GzwLO7W%#c{}c5lKmw_tGSd`J^Q=8g#XxV@;jS=XEVUJ@fG(gg7lE
zUx-B>9N;zqdQkE)&cEsZWFUd~`Sa)GP$Tx91H^$y43c-ffggybK(cyAUxOXd(d+(i
zStEE=$BC@0+R7ZBy`Fq-`P6xo>C)xEg`89kpMAM&4%#%e^nsgbLtmnpc#)s3Q}(|Z
zWe*g`N0sbgoyz(C##@Y_th%{dO#*t*UsO1BmxpRi^vBV4#%#Cmjs}{v|7dghg~6;r
z0o46-KS5%t%+CLU1Ayl1k+R}yS+{p&F;$eYv~4wkLcoGKMqd2ElNclltQ^#j5J7jz
z-CjHc0;C=EH<&iHbS)wfN@dE!&;9o#>!+6#A@&j<4wmXlZjdL2IiTa>pMVP;1$;wy
z0RyDd-be-0PaFlAf!GlpKzd>=XWKyapFL80StRL`pVpWgY(8*s8i?|nWATpoehJ_y
z=2oDQ%KKJ1|4<wX1IlOO#GT<tMntNRk`Vj#FfKaF@3%o~LOL%y*;oNf*oZExj79qa
z+}%`;OAH6D@f7LF1>Mt~NlFm7X*gjm;?913o}F{;<Lcu9!>>G96WpAFO|g6<$R~Fe
zTLN#~FS!5PPj0F*D6^u2F0NpT0*#DvU!;o>OD=06w(~4Fv<r7eydOF;*brA9O5%!a
z7pgdcm4Pm>f%&EbpeEFl7NvY<e%pZ+tUYu0ZTBc!)*FL|*B69a321%Sb&msVhw5!h
zV*Kjh+dM&yX^F5`t>M717wGeK6PLLnMN;*(LQk_4dO%aNiB~#sxpnH!Duzr*VP>Q;
z@c+J22B<J4u`6`lZG@$i(~t{2t-rOb?B<V)SLQjb|1qjUhI6EppOF0{df1al``IhP
zloSD+l9#+7=hj-~LNwadQHYD}plPvdk&alGRf&f~f~^4)l6c1~;-mAC8kEz4)lMBp
zWy2Lu2X1i=AYetl>;&SnIPe3Z(uS#PL%=FRDx)hIA1)_AuXxUWDHz+h3!HXjGFIZK
zYEwIOjjYDLDcsdgG}joD0t1>(HbM=j%Y4&pb%`59iIPwz4Z#xIP2aTh{~gBd<07D^
znS(X_*eBN*{o8L3Mwfg5I>=TcLW>`6tO{eG=Jl|GTAk1ap=@>>jdY27by(Xz_+#n#
z_x+mdeToML=)z9;_GY2Sc8-%cv{Cry9rfdr4_eH_{LR!r=Lq&|DblO=LAUW@awiqk
z*E~M$*r9WEfGTW1aO*MCyyNS{swkGwOPPm!XHt%#D8%A3em@+xJk7;Y3D&TS|8rvl
z1cZ!+R*2a%L-j2^g$^A?1fOP9VS<#FpiS_QP)E_i>7s;s@aFO)J>#7V0so*iKYS6d
z*e5Z_;^nABm@+3B<|Z7`u<MTRNOKKV8WVQlK1$J97N2Xw>+>1G`f*PIC3(_$ik9I*
zJPA+7a{%`%li0HOMbcY$^3c^=a`t0Sg|>HQg$wbd_tBx{><52=W3m_^yd}s1?p$T9
z)$=<e@q>>^k6O>>W_{{TH_`xZ&(hB8alC*7Q8xR>U3T=e(rz?#2cd^ax(pM%?1u><
zfvGdD?q@3a`=88kAS3SW7TbnesPC>u9Lz)8{knj<p<n{>ENG`MhWV`>`@9j7732q9
zW3h&WTz6bo`Tl#Hc##T|Bn)M=UumoXPGFZOWW476j)xaDZy{2`F^%Y_<eSqK>796(
z)dhn<HHvSx=q_c)_RhJm9%n7Dnw8Zfsnvy!9X~5?xBK?9Q;n}1!c4efVPAH0cLrvJ
zOB6DjZ2sWL?9|3n)W2@^BHB*Ci@kN;bS^a9=PFXH%oJe7rTDiP|3hX%1E#4JMcZF=
z{tv1eW~O-O5_<F<>V3_V#q8z+M`pF;&vC*$=jTQV<?D{?;{-vic86Wya6rSdZP8*6
zWXDYl?}<&zgX?{Yt>ggG2UtTh-_s(zuS}Vt^V<EwsX6p4pR0>E=}Ww#wh0G92i>6R
z>nY#JI=(vlA3Vcv4Vo+6$Ziv|>MoA#d9)N<_s*Irf7$jYiw4M&xR67*8(`JPyIzBH
zMUJ@fpeQCBwxI=!z=QvC(KcTv`Vd&8EopT#jUATg$WV-FyV2493p3i?Yv1(KMjm-K
z5Xc3Y6*+TpjW51y&>(rr`>PVh`{f6vkk8;RNHQ2`Fo>-HKVX%Bg<jD-&c39Nv>mRO
zf?XFy9;eH?b;AOb8(;gK;aR^gcHMUSM+x^LgQmE$aO!PiKj#kTDR@c*QaB4cjk~>j
z;2z*jzoe|YJ>e~n{EsN<g8v{1Ta{U$Atp-<iU0aF$v}yCG~7t^1dtLnAS;-i@FQ*j
zlYWNEgNvThH|MP!nzzTUo%nDRbpqIiKEY#bFF&&V@{N}nbnnp=kygT2Gob!h!r!8A
zcia`L%m4<-^`{E1!V8G)NonuUkrJt3>8ql_)OfOo6Mx{hG;|AJq*E?1MRf7=sVFy*
zh0de9Rs=;yksR^mO{pbcIyg^V8~TjFF~;~HK7XeK1h|;k4<})BAF<kYqyA**<M@ML
zUMt>alcA+>e!zaop?tjmPxG{*^`1twFQ2<;(l#U4W1$@^4%kQ=<`M%n$#y3PPk_f}
zIFP)T6J48{DI;i=@d-{GncfoXTrG2%Gznhul$+VF9?rpzd@(TS0@_!!>l8x9szc;`
zeCn+^9QdyXIsgoxstJH*^7eG-zD^7HVgG_vx-WO$vw^{jd7qo;1w7ta0lz`S|B04W
zuTjAwT<dL;#)2-^xVPo=gfIDv>(qO+U6E;SyF~_JMFlB746^xYd_UgeA9J=I*295?
zIfCAb62cG?5F*0kVcj%Ffsgg=Xiler+8Z4n`g?52E)vEYwA7`x@$}flXy$@FW9g2j
zb)NxXro`#j)$uysTJQI#C=X3=lSaApI0gFo+2rZRa_)buN0ONuHn%b(Gzo_4N=@WZ
zeI(}hO%aW$1h4<?hr1^-M;$O!1$uL6Xx;f;C?+4C+W#-|sHcNZ<g<9#<$^Dl<4U9c
zXh8t-k{xQ#vN(jToq4*!mPo-n#tO~{4*4Qo&^uc5KRev|)9BSnSH8flkQ3DD<morN
zq$ykFDJZ?EA^T)Ojsfib>V}Df3cXY)eLK-eaOnI3h=z=a^+}GPdeXhMvG|#a=IwSk
z(Cz5^L~-kClVfL&E$~nwNXL^G8SX)==D2bV4eg&p6H2TXV7_KH*%i=9E1UzcU9heM
zOr<EJT^4?l=y(?U>-!&K?q3jqGhHJs$g@$WCYcOhP1aIXTlQ9c!$u4*uvmA+u!K7A
zMEVAX{!!RCSvL?&@9CvOYF6rI@G)2}xC`J58fIq6;H<t%k_|(a)6R}Me6Sid#;4fz
z9_2n(zO&z<&=cABq1)<nz%Sa2>@oBXJMM)-Z)TMGX&ugciDBe`i3qnx{IJpLWV^2?
z9|9aLOL7VCh?c);s?-LyhU3v}8Ao}L>KiixUq=%K<K|E6jU`u?;;P{+Y5&d&VUw)h
z`H-E-xlLlU|0<IplxFF!m3EVqidkTjS4co+AP7<Z`h)5vH1M$K2Xbn3TBtNz8p8n~
zAtr)*LAn{5ewNYE&VRvE68!X^PopH|x-o1@Qcwvp^hCwXyS%6U`1vdL%b)Z^F&sx#
z_2Y!4<?)Fzoa~c6Jv8P%9<kXK)G<tRzhhc+4{dcge$Riom3ym-0=0moKsn{zOY65}
zV_3mE`=PwR)Twmw%WcmdHKrF^ZY!1&(8b+t0k^nA@?oj;5C94x;}CX{tiQDqjj2VJ
zdW+PlBF`WsM|geR;Gjo%^tPEPYX~Su(p$fRSSU-OcjH)87?&`y705@a=fbbQH2+|o
z4(lPc`Q+YN)@D<gpqe+0y+r*vE5~xmHE+5mRn2rZAw_2Gj8f@RE}-apYt!c)l639p
z!1)+PtKaI$n}JIyS{}I;3I$;$p3TKpSSakwXQzypQ~L;LZ*@mcE$)|`HtI_0>xD8x
z%WX?fe+=5pVl@72Ko_aShz;J)n3{~<8+`c!$Le^ji6P1RB)}!<lq9T;&XUG*>?~ZV
z%ay2xYZV^NZKojZboZtFH-18*8uG#Qf}_#Zsx&D&D7MyQ*Mn~@n0@Umz@TwW{0UAr
z9rZlHOJIxT_OS-zI3SD1EYd5mhW^5-D=U>atV<xV66>FStEV189|#k_%PTM%KW|4)
z{Kl0tzGLaexBN(B0q;7aK*1l}`9z!5_D$qXJD0oRHe=2<45?`dTTG5+S=kTrupRvu
zU(!@GonG#T4nf~0J)#SCWp2d9dKvn+@1}Qt>WEmIW$&5}cm)^jhlFt~X2EHgqA115
zyo^12%u|uMZ5|I?R{=V-#X3&^e&!FS?vu_Km40f5L;8h5ko!(+VLCk^__UUwB6^IJ
z+|H-E1sn^pQ|PR*I2FNnjft9kSD2J0W|{**WmaH3eUhzn{6Yjg!n<-^Jbf?E*?7}Y
zs6uUn1&|G628g4-hm~47!{*6*oW?iWN3%2n&nGKTf3yo6;0WVC^DEFZ4#<`X&)##S
zh;hR)=wymk>UTyJ5Y+qd*ue#6&W9_K)R%<7cKyk=4G@`Ix)Re6<U0F^=M)1H?1{u6
zdq2`+>(_@Ww_~Bf*fzJ8!m2mAk=dBMQ*J<DjQ-r%c01=8He78;mXiErYD1=iaN?cM
z+^Y+Q*n2}O_{l4AWH2c2ZQ95pU}SSQwen`>I6+J=(64w5Ea>GL>EC`e*{?`xQ#<vD
zucQ@F_=iT`?IegO{uezelL2mIq2=$|1i|ij`b{k3a=lW-FQFMaR(x@`{?9{7(C}ZV
z_}0In@2rA{-94qD;3~yeX9?fm3`W0-+b5+Ld+`IKWP==Oew~ugl%Bh-CXD+)SB~Xm
zW^O0g&KM6&wEqW}=h`8w#~_20ul|cG<qUZ7YI#0u4cA)JD?}8(#4X%oQblIBvQ~fF
zAx1<r=FFvqDgD8v5x*dxTZ@ZaiC5{)%DmgwSh+Dc=CW?W!62kzID6Ju@?$6h%+Txc
zc2g&#yR<pjvg~1PU-*;HTqEV`r60y0?C;+n!+?8u6D*Y6X6S|PsI8#4H<mj$V-RUu
zKN{h^6Zfs&Gg3YTS2uidV8F!eJ8ydS&(wTLK}f2*y9n3Nuh`4Fom+=$MQ9?#8`<Dm
zxtL6nX+CCLZQR{)R2k+O!mE<clFd3DJ>EMqpk-dCZHfw0V6~glukwQ?V975I!^^$-
zO_B8F1)qJcOK;X<am)o3MgNYe)f*U4-|S#bOwwT)(h-~^+i&Dc`u~xTOfTWRXf%Eo
z{C#|6gvelfKHIQFF+I@KgfxTT(MMT2A$#h4`1Cu&s6n~=QCdpbZFq<Q3Od|!{Z|~S
zYmD7#Sz>r26ts_IY+R*|n(GxV+AB66^}_BWiIF@Y^f2)EWW{`t=x7%sd7d+0e8x94
zo4>?ZI;W-(kgRMJGi56fycmu9UPe*4lACq@>B%Jg+f?czb48C$L=@z{hz41_tPmjV
zwkcQ?^|rUSk<qk8o%EBZHOC~QY(wtZ3$l2PHD$>X$~=WF5f5+7aio;LvS;PWDoqR~
zX4?FgEYh0g=V8;b<yRth6ursAa*YX4A~0ojor(w;Msb&?@|iJ|hbjC~sn>+k*Lb)j
z`Ln>W<7>y$6&fGKUo<vBh62aKYpq$2Uc}pm;!}*@#g@EK%H(e*&+SsSg;wH1Gi7Dg
z{o*cEluxqxM=5W<li~Sb>~ahP0RDD5#07wVn$Bc@T+v`pY<)YyWp;F9<T&qRH4`aS
z*<PF;-!-$*1C>N+gQa3*Sw6{rm`0{y6n3)R$71@$VUv_%vBUl6x!?Q|VXIv}+%pxb
z`C8-Nr~r<6WakqPOqI<Su3v3%t5DGJn$?j-X{tJo*#p}RNGga|y>{Xp#w4qTcgUpt
z2Y92`qc6^7xgFPkaW^FH-E~l1#Fymw8ZcWe9?Vx}()87%71)`-*elW4*5%URs3m<e
zI<VvHlEjCApJ>t$K`Nlh4`x&Ok}mq1fdCz1y<BhY2EZfVo>IH+af?%#<sJdk?)szK
zehOWasR)h_Fg(6n&^%>NjhovJ0F=~>z5#3l|L7J;2HeOr7(0ue9F&Z7;bY5g;+IK~
zNSFFI^tb;y8@SSZTiK5Fl@jVKB0!P&$z1(E-oNWx&@uFsWkhRONc)>VU|gfSaUr(-
zYcrgQafnkpGT2&sq6QK?tk^ZMaWa-^Scna|TT10vOp`tpPuI`tA~UdZG;8z|F#h4n
zF)B+Qw!mgT)PRF18y+LAm*&%@6O2oey@l<V2V(chJlDU=)YQ0s6W{f4dmago{3Da+
zX||(#>LtUYs+38fUzG*7tRZ_90{cuUa%3R-H*}cV#;GfxO;QS#(AvWT)eV(hK!@d9
zotm1}+(7l`Pz?W-sKnp{94#e3EqSV`h5Xo7feZ5fph)JJCo9h;h2&6J|JCL^lgXY!
zD+R@l&rthSrHfI+n+1!QG8jQYg^8M)_7^`}INX0j!`x(cVUa5VRrZW?*KW56NSP_I
zPp9;9O{hwC10z*y789KQIk(wUPi}fEZvl;QGV1He`1|<bl<CFTCy!eg>ME_aqfI66
z^zT<nr%x*9BKhN2RAcG%F<OlDHZbo}4z5c%f2Az635C}PSASfQrHS^2{ek94B|TDW
zKGJX(LuMpLkYsW4HQFmT7Ug93V=?o&eId{X?nPY(5yyQtGm(6mdgTVlJ1NhbmByBm
zSVTLDx*yzU-I0fYyHf*%v+LG|p?EXn=`xb@ZA$utfVJtSOY|E0Y$tI3?#RHiSdGYS
zUE}U*$3W{oyxp5!t<TL=b{15%%of)W4XZ-x?o9C?_UR8xBR#soOw!N-V2xTU4D`uR
zB2y`q;DjM7Hn2CV_rFXGT7NZ#=>OBy5DE>J$F~LX_gHQ6tN9qicw44*>i^<6#@%GZ
z8p5>y6mBrTK~r{HJ+)i)l3B7M%qsSxl<&%VM#P5NpVuIU_JJ~d&q^o-Itq9!=9<A@
zj5h#^4;_^Clw5EhXT=3+q*wr;x`Bra`Zipq_Ffv)hSWnd3U)#~-stR<@AnkR?`G=8
z_s0e^Jl{3E-34w2Bh}vvrcaIMbcZ6@Zr$JNK<Fz~{ls+6;#UKnPdRW&hE1}T=UY#D
z!qLp<0Mk&w9qk`?*0SsjXcLJ4D%7d77;^U5xhH%o<Z%KYd#VvXG3{7NbcF_gRRPQl
zEJ(Ou4jW_5Q)Z~f`;soBY7Ab5&un+@nLA2=&Y)~!Z~hLj*0R#zIlGjm@>j1=3S>Ku
zqXnY8F*75$E`Dn*oF#^q-PR+@8W-@64-LJi<BK)yN}mBg%s&AIySW6yYG@T|aUrpQ
z2TR!?QdR2y3vfdq!AD|Ug@4LFSQZE*V32Wtj!}D2tJ*cu)_VmBh@Br9TDU1(yvHl$
zg#VDu!TdKFskz2g*+zi5QJ5vx98F@-*iT}Mq^@KY>z8rk+ZeCq1@Z^Zxu`2CcBYNE
zfjQx$fg41h%R3$&K{{4}IdV#coPl+Z;;3xwFC+i*h-mYf4)!CZ&0y-oOJS30#`=g8
z7`V=aMKuvHkt@$XCmMEfSmIF0`s~&{1}SfDraf4RgZ)N*u}sk}JfvLysbd9WwlB`P
z;Vd0m^o4zNUl}p=rfhL#VcHySx2%qvRvftfa($S2#V^GjkB15s=E#6U=kF?+o1<fN
zp3(KDke%k<<C0#q)B4wXZmBmqcP6Woa(~uZHH*ly?tO2m+rBKg7%V6r>49SaYcav9
zq1btM+wdBVP3drlFXG(ukEWO{^0cL=SA=h=kX&mZ1a=Ir9eJ!8z8|H*HgaU`a0ZGy
zZ1=rKgMuyQ_7TlGe+&|rRD*G|L2{|MtiVU({&z5mh~O#mn{=xG4x`^@`G&k!EE+J6
zE_SD%j+YKMI85LhwwDQ`2$kBs%}+jP9B%oBC>MY(x&<Aqx6a|yzv&5&x$+;Ihr+7^
zr>L)sf!C*sK{yJDw5dwTJjT;qt;45MWOqp`1-*4_$aZik7_Qt-X8wq0Mhz;GS1RUC
zNnh4kKeDYGAmSVUC4<vi9uD!QBpaB>z{q^5&KB~Wj80*e{5*MDv{pZJOMi6c>pQ~*
zk6iuEvM>FfdKK>|eV*+5!Ahw<v+9Zhhr|Wg2ZL7cKDgz)zQ=<*BvkxwSF!CmzeoAD
z88Cz?hk@Cs@5N68;w@*-XeRdjW(2}(+ffjH>aw;?DXDchHm4<Yz!Y&eM_j$wT3eF)
z`PDSW#Z4A;s%XY}sLJF_8#N=FQ^~&VH-6VLU@{MH;3Pr7XKd@mnjoN`Wy_G{(i9N3
zMgbHM%qhE;x<c>8_9ke~PwHyf%5Ee7(@Iour0{ji-3V1!09M(qV`q7rcydELuTd9w
zScNzI{(Uufwa)=WeY38TID|~skN+tvt#Q3h8x{(Ch=+N=QaB$B!Yi~+jamR7h-jWd
zU^Qtw+6Rzfj<S6gfXmOn8xsICO+CM9_q~5#Smqcb0)3eg3yudP4EqKGBC2Tt(!6c<
zfY{Hqr^^i=xh-9(ZpD`pJQjZG(8ZA>q7zdufI;TBfJ=yR9Sg2>9BC0_eGOI-NB$J;
zw~Tdca`%;QeKACGyNt=L!>;7Ump{FKG-%{ha!QbPx%cp_x1M*%x$ckCgMV(F2JZj#
zw2^i5J0~r`Uo5XKv<6bsD~ll!s=ztURsvLELl+Ne-$W(-yL|ca2c?2>f}bb{Zn^*o
zg+O<~`nntJ)74;P8Isc)uyS>O0y^zoeC&&HfHpfGQb7*%7m9DpJNYlV+WPTox5wEu
zMlgrDs#)wKD#&uxQ5Iql1bIqxfV=PhkGW><Ygz)XgLoVnu;zjQdLRyg*whlGoT}*5
z!xr9guYe7&9Sm#mN4EoIZ>m?o_!&NwL;@o$De>vODx$!+2l2!?AQWe=yFXq?kV>G`
zFP{jjd)@T=zpvJ?XxH6Afcb$A%5xBr{B3>-qVCU1RYyoJR>h8;_xJ$(aHc3G{-5n#
z&D9(Dz6O<CzdH<0=F`}LwY7<fq15%Ox9(!6<$j-@0@H?f?OFo3TX|<P>xEj26{C6X
z#}x{Z$E3GpI^e^kKNg|=x+Je|Al>{>3@VYj%b<VOgT7v`vSq{(A<fPS%#4MNjPkqT
z1(7mne2(A(4<wXom))NU^}rT*W@BbUEwXZc69Myq!gkgkMDfLz4`Qj23#K{FM;6ej
zOJzYaMJNak%eLQ>Tp8BW@XWh7z=3HQV*6Xe!O6CA!b*W{@SS5^kJR@eGD9dwV=cuT
z!!%|F$zue;zs05J_#Y7q@IR)bB*f=kOMl6nsjtn_QcoUw*y{;*1GHvOiyT!Cmgx5e
zW@e?p9#P$f$J&nL+b1Cul;Tp7#d*1`(!l3<cz@gm{JfWxEJ1Gr`{|^D67$8tchsv;
zDV(z0U-W#3unkrYPnCAd_1S5J2ZfT~$714j-YqX)Dr!sfDLjwRJ#v{2J%^bhfQ6fJ
zNNci*XJHI2*OhQ_aT`*}IO~N(2`MOwc2$h28^ZGA5L>VhkBAYG)vbIj#j`7F@8*^J
zO`VW$^8?Hu9oaf%2LvO=GPqJ&iAy0q?@M7=Qw%%T>#aX>v5*RqbJ-NmAc6+sGX-%}
zw5|!qtV=%l<(C^W{=4nZJ4y?v6eFg^kadynFE9$ZS8rcvDX&nO+KgSUwmS|*!ukqR
zD{ex4Eyw;kk2l*ON3<jfG@YQ$x3=f1)_OG={A=~`jN8gaLsBwgJN02N;C7cgcp0UH
zBL!$`Ha2g(G765~`6>gzqB_xmmr9go3iUah@g@;=sqa0Qzx2#9WnsNV@$~aF8OqYg
zz#;I2e&L7j>HBh%<|+Jf`sO)HrS%5{`M?}6$kKpc^5iiJyU~Cx4VKzv!Pl+j^rNay
zjzJTZF}v*GrDV^hQ6>A*S-@b82;;|X4iaxr1hVC_pmov$&ut>)7iZvz4*9PzfxH1i
z)Piu$X=T_5kap~LdX7w<bO6`;YvKR2yMni~YAz1vQgNf_;=Di_EqkC)EaTShSrv7?
z0Djbj(0$fRV~8{_VS%X5D=-GvdDkmWiHM@yxRZ&HJ)@nxDTMK=z9Gw`-x=|ZBKz_7
zXpRnSRdaxFUVM;~p(qz9Z!fUJ{svSulUO1zxzXCcrXm5@M>~rrdAf-4KT^XCT@eB=
z3XfC}^h3Y^c*(Ms41XI1b7DqL6Q4f_g&A`Y7Ia;RiJXS=ceov@vf98E=Y`($RdFT%
z?HfuEc>|Y_NVPV58VTkTNfd#H+<Kz4K}9_1FV2p{=UA}}f`A{K=CGaDgHpC&I<_L!
z#&(o^uq0cv6xes_>t{;<UvMBAAbBDrPBxOYjE(CGf{9VN&<9voN3!n}XU8RSUH)j|
z@7^q2qGGWC-vs426fey=*H8_Lw@-_B{)>S-ZB@i>4Gd{)41%kLCp|_V3}Cg>L^Y@r
zRsNw+VQYr=<c~&k-?Rg-exX=h{e(E9PrILgnPOH$xZ5k{4_k$7Il)qUQ#!VhLQc%z
zdE^e$*Gw^OcOIk$7O&qnn)g$5?><J}*{t;0KZJ+rIth6Gt?dNo{5DS6!=d!tb+UE}
zzVT-!GTK%C6<B=&4am!<=$x28vR(Gg)rX6Zk{WC9TWod`{IrtL+OvG!))!>FeChfX
zsoq|Xj4z#pgO8eXb?e;zX=z5+*=y#w&oCJSUkXM;QdN<1rsarcluDNAdhb<UN#y#M
z+(^D;U`oBtC5_#YK+kc7y#`}30<hRlS$1#kIGumf9B6g_=xu2%y7QX?F6dJzzfMYP
zfP^Qj{qel`@?8d3YyGJ&)G@cw-nMsOU_`Ta#9Ghobi+-Js^aSPSr3}6V~&f`5jhsR
z?tS}9L^IADH@Zh;Tj*aunInWU^_jPrWi2Ua^7Tl+P-mt%1Au|h5gM+tf{8kX91|?Y
zGGvPCm?CdCE0C-w8r%Qi+&=zXTCees9F5p$Ydvq7F~)g)UTi$I*!ikLSKY+4(4^#8
z!I=W_Jj2R}47lDK3!{;db00LJz?+%uVHT(2ciz<4gHn`Ff^az06|9}E3X77Wh70Du
z@{7kgtc^mSXPsYl6$XrK<40|)8{XFDe^kn^K-!eI*^)Q!;NesN<?{@o^un|O#du+k
zu&bs;g-#tJS9DwrnB(73#otYb!@#>PCj?l>N=1swKscXUPUzX`nx*w>a=Nh(mMZ1v
zCrm8Lf2+RAXwIGgqaRq1k>S=!kt~!Sx*buX{q(j~66IhldDMQgvV8-{U_Bk=ttUFq
zP9<UMubKlXssjHG&NT-lz#sK90`%bJhvf=%1va?ntdkPJo1=m1uIHStI>b%Ke?y~>
zIFe^-@%J*hPs#5mi&j<|Pg*tWi~}gH`MfQ&u+a^%r*Il+!ZNFZ9^~;Up`WYUcj;SW
zSy3-A@k%4$A;qY>ls(Y@T>Yo70pFUhF6$3~;$H{6aJvC{8q@>2(<sPX7mzo665$hR
z$-B&rdgKq-xE@47<hdGQ5E${xZK4^ZrB--Fh>3}>H(P;o!@6GoKCa-&$WE!Kf(ySv
z*(aZ+ZM5_GOu&6`j}#GBwu^jy^DL@8Add=g51=--Tl303V8*Xd4s%?tAKJBuyFFx9
zepRu3WhbWpk7a&VoTut-B8;cw4`J1*HT%jbDl?-nXU+_iLw+LLlv3*O1%UN~`1(21
z+SH#i!G5kYzE!ox<hh44(Z8_1DuhN(q5Iv0Y!Vo0oYvpQd`@p?G==)#_=k7UEhQY^
zfILOJtH13Hc1s*Sz^J0Za%!=oy<;a`d4et5Sx+#|{qlbr?-tyPs&a-1hzP50ed3lA
zHX%}~=>tR5r;AL778$h1&};Dnvi8v|zVFyJKp?siBMO?3wq4KD^)T}oTo*4OQY=Re
zUW?gN*`K-}IlFu49I)OG`O{P3jV0N1Eat3*Z0=4nSQRd!dhbj5oy(Kd9SfN92)D)4
z4`LtbJ5rP|R<e;R)n7>{iDb$vW74(x52$#~q~>&_MweRnBaJAZjJpw0o}E^={%o9p
zY6e7c9&#npnka;B@sU_3<2!1C507K8X<ou5!|bs9gS7nCQct<)z5<F8GvWY$61!eK
zaw&v{jP#Te?<F0Mv9zYbXQPM!BU#w6$#dwzJ7fF{A^Oub#_<NxEK64#t^*%$zwW}w
z`n|i#FQ4Q7&cXwwIw0G$#ts@pNG$fRDqbE_AiRvycJf+tNq0EMq9vQPpZi40f8+lk
z8Ewd6cr#Q8FYbnL5tJq3@wp=3`Tot#W&gdb48I~o>d-sq;>6kLR}lfrK%Bw7h{C#X
zM}6R!p_@tTp(zC=)Lpl}V6a#+TAcmB>#g*$ZS|B=_$4lT^lW}t_D^9U8trOkvu9iT
z!R0_z!Gy5kyEkbIRNEWUoAH(VK{v}IGDt4P>0&yya9g8{c*qZiH71tfSF@?OOiX1(
z#q2Q~?CHRl2iwC?tbp$md!;HuW%euD={)rGp>MCA)tV0b;}XlQ=gl{R3Gwl{L+5L9
z0Fcp0{8#3OH*DW5jCh0_p&FxG!RV+RsVj6qSI3hlm1Rlneoa6*TdrwDZ;%m(kOer#
zcK&|lK@}HOTfE;sx^HtzZu@qx8gNROJh!WOwZS=JoW!UmoNJvUpVBF$?9vP8w>PRY
zEk}v!8m0lvB-n3`UpD^c{uQjO0@MO1Xm1tff3S+>iy3l!q&ltvfa^omz8(ifI`qLb
zShK%5_-VuUp27z}FOY$?aE0fJebcbrgH!h9n7k=Y(_LrwB?e&mp~WPDgxMDD=jVTL
zJyBwt1fr$2nU3RGrS9#Avi9JXTf?TZ8GiCy^NzgHKA0~0s4rwi4Y*d+G{4X0-1<7e
zDrQ6~5YZjnCzm>%NGtW-z(*yb!m!4q=*G!vx{y5%pN0gGWp0xK$~Ar+Nt1kHbZj`C
z+kygfWI3<;P9P`2WwKBqbDq;;v|U#%2Q9%<x>ha>2SM7M;@ai<z|&di!uMxts>7Cb
zFc?GmsRv~8Qjjp2j3u1B>wrClmW9D{RLWN5ee$2BhH%e=$=7D2{g`LmdrbH#QU?<M
zy7}aFVo^Dk{kU_BiJ}2YZ{^0Po;sx|p1KaAPQ%tR>H8|T-a#Dm>CE(vvAlhTXsD|g
zCAmO^LEyDMzt_R<n|GNPi*)$7<SYpk{8`lbWohX6W+4x*s(yi+BzHLHpLWhVe+WO?
zwX|VXkqO7@HbvL*d6f*8bLEq|9WP6w3qmWtdHtWqMj||{QZ*fmH_Yu{RlTrFEFb|F
zzs!%v=Ve74F~JXfg4X`RIKd{?HshOAQrgSBpAR-E%hhs!D5h7Q^_g+3k)5eFP7dO~
zWKG>Sj705Q7GO>{N(R+vHI5fs-p*;;FRb4G(Z~>{Ihd7YC+Ly&|F#;j1w$yEuf04R
z3PvqI1so)B)<m5MaR>xm)$GmpIRQyGcGv2O7h6O=KB^gbC~ms8XvvDmv`%(YBVqDk
z9JMFH^wZ#r6zwvon78+tn@}267K}_4_~N{To*&meg)TLPtdIHF34Ip%<8gy@-VcFv
z@yG$^u{nh@_j1f|L`&{pR)s0)nsBi>{q%SEfA8Scipuy73i_Jx1k3ZZ`x;!Nvo0Ii
zK1=|9EE4K9I@3Fp{ynb|%9oAB?jP@*$Fumt5EjVqW0?CvlOkQE2#8$|#r;hO>+QZ=
zrtn&4`lg+~6P_(!9xkUv5q+?{eiw{w3*H;^h8}_wsSp>_#IRIOuvIs*r$Eay(j8qL
zxDse!Ao+6VbJkYuA^LCXBbaPM<fjv`i<I*{Vzx1F#P-uN$Gp?5rEvd$o+zab@a4Z?
zKp)`SYFnZb3$#yASg7J$>9>kNP;_8|9^l(oXim4sWnv7g5iUBtPN9lJvD6%{{?<t5
zpn6jJw!i-mTkuv+ZId30-WmhPgDUzZ`(AN!uS)AwRHn_pqoMEWtWQMk{8>_4hDKRk
zy5Y=>i8foQ<e4d%HHt&I(_f1ZKHO3d1)cUprgyv@IfiuzZ-(^O^OL_`q?ztZ?FN9g
zE1oUe@i@w0{d)F6y(PWIr}-ru3*twmi`gy|ZM&h;u1m|fC!<B27yO%yP*A#?n^c>Y
zJ+W@yDQBKi@Z|Brt_SX0kqyO^XLedrurOcj=gYB0BwQ+EOm;bHh7?8--UnmdQVOV$
zB8iq^G7e6Bzb`Ck9KKF#s-{AaoGr$rJ4=-NWKdNW*z&x8Fn`;3#W*3{x;#%b1I_0#
z;PEyDP@B}>|4_pV6A}(L0yGJGNS^TZSkKY{VTK%*h+CX`e1$KVjm;43K(x$?C3!#q
zw>%R>tK_4BiBKHVL9!di6M%gy^cm)@L#&2avd%)7MzBR8`wPTG`P)x>QgY2_dY!<J
zu6#mHP$M0LdEiSsxJ~}EQed-_B$@jLg9*7z{7;S0Aj1|_t0Z7;A}xa2_ZG*KhFG8b
zyB`)Su$`x^CPZf=Kw7z+E{m$IzY|y@9bQ(o%_LD#-IlH-%~oh>{r*XV#0Y`pnw>6p
zRwCkKw_Frpm6Wm&+O~<mKJ=2aV!U?l&adnWBZ>l+6nN}u+y<CET``nsSGk=}zMm>`
zt#+QzEn|YYXU@szJ-;Hu63e@)OU<#16I0F-x_Wq=`K6Br9<vsp#HbEe_yJTswt@ey
zxelW7$^Ph@A}0RPqaDHdHwd}=yUk8n^e;EZD_WQ>zyN7nj|CeY;3ejNp{FzUY;?ZP
zXI^PfWFzY=={xKQvSWYkE*z#kKtohB{vCn<CwEYijfJS4tP)-sKz45b<$G-+t6tMg
z)!L=1cf9W@^sJ*dKfTtd)e#D_9Joo%WxFiFbY<xCMpCiQEYcZN9C#ZiY54o2@0rrg
z@Vgn1Q`1Q6<gUKJh~Q?-^U&Z}IcyRr6<7-Xh6!Tj%>rJXpm&=;y}$iVmH?n%Gl`&Y
zv&I^l#DgjIhMMl0PO#{7^8Gjjt2hqXDC)4Vrv0%~`581XZ$06u8}Vrs`r*fsO#<lq
za!ksJJ#fnud`_D|0)6!y5KboxOmBdPvES4?92Zd7c=ck-VmFmyoU`jBm4JmvEjQ$}
zo+NaYVZ{ij;_gB^SXbj3H{}i2;`V~hor!CcHN!+KpLD-aTJr8>s*-HrYvt4p{Ip(J
zYT>2&k4DKY$Aws1mK&V|_D9>3AsBFD%A2Mg^aZ@Nw7nv-VK_|V(PP>S=O2TIMK?Fn
zsZ@G8E07HiWnDO?83PXeRIl5K@bSZ?)k*ArrC2t_iEGM0{rJ*xd8+!r^@4kOYE0%O
z28Ah9uL-K(m9$gDOK;mppp(NWaUts31?RTH9~q^T2b1#uKi=LlDvoYz*Cqslh2R$4
zT|$C;fMCJh9YSz-cXxLS?(XjH?iSo>yuZrc&)(;K&)LsAzVqk&>H(v>y1HuBT5HaE
z&+FE~<pyv0GYr!}%Vs+Tu)Q#)M<7gCv~?oP{0j0Ad=u7whP8ejy5SbnIhv7|#`&#D
zIQudhh5$4kbnA>>0U?0yi$T~bRB&fD^NXPJhs4dA61HdBz<g#$bco|F3~nFHL9-au
zIZ}nTu55f6zLm<uC2gDo#Zd9f*B<wq4bTjg1d{?uJUGX5pus#Un##asiYMo)ux{_g
zXglXXv5-5=ZjU|!OPECFR<{g)AzpT10xyJ8h+hUW7kX6?d6lm*(;TO)@L5q8vEp%p
z_eowpCwD^pAu}rJJ0tkq_4Erog4sqW4$cyZ+&D!tQg+Q8kDn-{{($?}0_oI>1|`+0
zciiCYo9PW#ncp3k`;oPJdmr>2vWX-yFqh9KJ#j&%3m-x}+pfT?O$t7V?OHePjFr{|
z(83GaErfRdvI}w4*M@x2rQ;|sX;)ot^aZ39C<a&I+Cl`$SO%}7XCTwP6Z7Z$9qF6y
z&{(>4-J1|zzq^%Y`&41;)|s#-Pda>dCmD$aS}^D&xZsHpy8y6iIAq-i-?gw-{!(6l
zeK;U_yvU8T=a5W2a#6>xjP~-TY%2wWv|WC0iO|2(vx+E|(m--zeQukdR)Hh{%NIz+
z!Yj-MdgQ!cAN%FOENR+3&mxd++4k~5pedpY8z5ht=<EEhyy%@DX?K76eMy-yTMlzY
z%L_QQXt|C(YRYK`E`Qtbd{BJuV0o|e@tp5QHzKK?KR;KJjw<l?2XVTy^Bh-I&$FWj
z*)mzFmx`Lff+ui62Hf1c`N!5rbG#KaLdz`_-zTXF<AZX|n_j<ysJU`GrqR7d>)b=f
zJ_~PDJg4I|kZ`RJhFTt^f<NqgzUQ0I=_v2mkyoYrf}?$NpDS8lS?RT#)LJq^kcI(L
zQ*?&M9W;tb_ahJ0<)CZ|XvD27?SXeNCsEr~!c@+a@Q=34^i|8)`Xy|@`5)Mrzu=D;
z0-Hda>s*R|!x!`!SYz<C1Y_`Toy-~1NbVebkwPoX1=vn6NL>(+F=hzwmHkM3uex>k
zQDpotI@$NEX0!`rEsc7S*OI~H9^4Pt%kxF@A}&<K&&YIap{XTv8ylI(7VrcXNqktu
zK1{G~MWYC4Xe%mOy2f8g6{FR=jM%swPN-&dndH*R%Yn4TjPF1rwjza7tzfy^72*{F
ze0JEialYJAF+Us{lNJ7Y77D;IQ22<O#(~X<erVD+e}s!o_Vu-a3=nzvu(|IG%Qv#P
zLa!ip_<yuJB1Qt=_CuMRcvXV8ZgHoU{M>EeAzck6NY~h?lFCzv;smzcK83$|k2fp<
zX(}XhYGiIu3yrOqCc*t9d$4{ka&wR~hB5A|ac>+l?3#80D&|}ivOnYu7TNhmz9gDV
zf_byLqfWRee58e_H%YTVh79(vG)|gd-$l{i5j$fl_FHP1S82yPxVg9a8w<Z@F_(*s
zz~do(2YrVC)SHJZ7<oNaq%a`fdZk);NML_(l5McCR;c;LRECxP^r_8@-uZsZ^v9;+
zuMLejLFZb0EaglGGwCSZSM&JKzqT6kWOF%ZmE!#M9tNXlYAwOm*;({W%0X51bsN=&
zZ<p5Z@Zq{`cap>%T+(N3VDk|_Q=fGILL#rY7D=NCb;R~d2^4ub+?@d~?LK;g@*D2z
zm3k9F#6GvXzz_I2nk^0z=Pv3GvLFe@b|NI=Ua$`|0yQURNVDA;-C1C6x4v$R{IHC=
zJy+_xKF?6hv7#m?WeGH5*ex;7%}#+9cct6@V5`6~wYt3Y?dJ=R{bDF+=qbZ=PFaI8
z(Zg(1!j1)+Vecv_r)K@~#}txhqGcYc_Y83{>q!k??k-=K+S7kXkE((vns252OX$KK
z){5S`hliR9-1fTG95!*&aBm>}2tbQCdbV3uz-fYXMi$tN;5rB7rCh}m^HpA(OeMQs
z5T2KOg;CWZ@4xb9TmhX6IA06;xWH)AJjU@Id2siqKbLDi)ggl(Rkw!f<-hYq9rdo}
zbae^L*4xwK++A&eS>b&PZMWNLJ89Ee!B$A!GUWik6Sk)~+ZQI}peWdYPx3o1L=Orh
z64$o~avo|1?IKvBR&!^URpPi$z3Cg9R}g_FcE!21C)`<_8JL-9z<Q<_)tM1KvUbL@
zjz#FS`341L<kj-yx;3EhkoaTUxN@o>)CJ&<MBFM^W4<M^tvl%p+X)D1JgGz&m-J`f
zi!3^^LdXae&$|FHIp#+!yN^h`KO*py>&AUt0sPG$vg4ir5h-a;zR~w8FHIV`CT9If
zgln-T8rXdKwfOFG=B?+sP%mD12=oD&S3&0SOzK#)zJZko(!kwq@wXSud{z3nw8EuV
z8Ip^Pap0%2=@F9b+fCdrmY0HHI@(Z*lX<wEa6iP76M_bNi1jCxVF{oQ@2g6&&!#F>
z$w78?nx~W$f%&?d48z$S+`G4?^CvbX>?9~U*1{L+HoqsSn;PZH$(%ta9O5dg7#lnY
zLnSNjaR7y}nrrQ=_sFR1cf7e^$0V>{H&SQ~<oR8Acgx#QE*lLe5<<S$R4(B)8sFd0
zT#jckp|lviq0Z=4jkHPUR<|iE3>YGdlXE4Sv^#Qd14d!5+m%L@)i9vk?e};U5B$0|
z0QO<Ardq3$SP?C_ZWs|aIayUrylhak=vm~ejm=UU%;|<_RAnPckWA&7_Q-FF^0<T6
zKP9feV4j6$P{@*pvC_OK=N_RZ_ZM3V9UkrvQbBg?X1e1y7_>_0Tw_XxT#PryJpqW*
zg%}&S800#zZ#Ai&x1iX7cBZ9*kRzl9b!Ny^Hp_$wm<)u!2#q?B`C?ha0NaY<eR(LH
zf<0s#p;LfO4fA1E(pv)E@oZ6qGWE>nb&GnUwVK_;Vvm%)b<d7XWO&#TvGC^Gg2MT9
zgQo`$4m$(+IhoZsE+&g8I1L}D?sfuexD1v|W;CnsS*D2$%d<#K@4C<t4XG=nTr#FV
zGarJWJ*UgpTz6e%fb;!bG(b3)l78JIz07L)uV4HRA#fc28>#}JKTpE}QGtJq@AaNk
zw@B0(sK?S&J6p8G!4VZh{UsS@@~$T8d<S7D5Pxg{i6PV}?Kc(JO-Ou63;-NN)yNAR
zEc4@H2WA;6(#a-WPioYlpjCye)?QnjKiE^2Y?=M*QZrCP(yR9mIijT9Ja2d~UQ<(c
z_w@9|eMBrYOry4Iy5#xYA(={j8T2&8%TN?LK>630|JTR=DOLO@4cQQ`@(q7{o8784
zg^uLrXqQtl?m|YZoBN&s(6ws^aXI3V+lyFIhM-u5KI&T%EYq79TIkTrNqd`PpgL`W
zFr2@!3X5jt%io@)|51);f80TsiLDM*d8F8;l|d5{;E$^LKbq4=vnBE4pxwLlv-#z>
z8XTOh*{KeE*gZI)OjS4+NP0XD%=F04A5l(FRvs=*_kp~&MSKhM?|c6rPFsg;bE;BT
zkbr|(t_kW+Uk`VrhTHa+*}gy-9qgZVvIWo)B@9pJGarfo^kK|f7ndg)op9KztIPa2
z`GLW&CKl1Lj=*K0ir|0VFScZtU*)*6{zC)hSEN8j#xt67CnO{+)})Pb^Ap%b*}9B;
zFe-^b$HWX8g!?5bC3CgI1I%$<lko2#n0^mUOnff8z8W0K{h6+<*o+AneojqI*#Tj_
z&9U6|{x8vwPj{!Z4Xm0bR7^~h@h6HDmH?Q(_`7yfF7V3~EFoQ487kH(2aN#$^uL(1
z-ZbC-F+CC3LO~>2SsPKvu)v}NjM3#odBxnCRf#{R`qz8oNW529H8?%C4XEb_75@o>
z_}5|ndMy7jNSVBg1v_hw?BZRA|NYtjHj4lLk3~`dt$Y%_W%pmc_P@M4YZ}Fh<wiH3
z>kSwFa_u7$mk4|Ezo&$Me)m64#OoRWMSESBvj08B_&=YxxP%uegu=3fd_Dd(4fBhr
zv;_4^08Qf^&~<NsRQ%*zT_6g*@ne<yPayQqQLPJAyyB{*tD9|5q^*xD0dynO_p>HU
zPENw>PaysiMf{(>N`V&=?@iW~CfXUwzmN65uJnKT$^UE0`|B$cfyc;eWU%o+9rb_s
zocFMZ7a|1B2Fn(~|8VF2+im>o536K=J>D1=hVVZe{Xc!K&<&tg|3ChTS<BcEPEJlT
z03+DhrP)&)p#1Ib?I}K#qk@9|(?I$Ai^%^8sx_2Ds|X2nvJ?xTAgQ>ySHE6nrlv{&
zs<Z4m(*-#trGy^aA4}Ebbrx%C^VxA=fQ1{EmiB!lk+EQQRv~cjf$0D4)&dc8mN+g%
zt;tM3g&;61{G85%WBEB7v_F<Aaxk7=lUxDNK4)8<ZA<inNMsr;G(*C|4BkS}a;E+N
z8#(`arsAXd<5?jfCTnZIh>MD5T^~%y8yQgmW*Sj?dU{kuMEu{Nv3cFt$C5tvgt%w&
zx_<#$uU~--)gLeu(RXr)Jx_r7Sy)*)S&T>d_hX`wzq2RSr)6Dwy>6Szd~G1k(V+vu
zpW`_HTjva4nA@=<ai$CYP!D5LH4;PaNlyv+JFt;2Rn{%+@FH(wHBuQB#+TQzcQKAm
z@AnEaaz^hrG|Oi?_Ud-=HBxOR@X_5h&up9-bi}fx(mB5XH1TA1&sR52xBE)NcQCG0
zPmB7IvK}71ZGelP-To*JOj8MnSX)~gfcU0y53!iePyUijEe63|FD;SD%w+_}aD!Rj
zSm_m^dF{}X*f#u_`a1sta1y7^)>`P7gM)&Ies2JTamrgeK+g0FfUT<S7D;g-@!TLg
z1L`l}{=gj!cSF%2c+;3eTmaGml<t>f;WqSj!1+y~#z^w&`Z_k_`4NkkJM0Jseh-Cw
zbGt88jfLr5XDA9T#1By?-@hB17ARgmEP3ajt4pN~Y&m)KE7fnUvX7)YX-nVCH6Kf7
z-y=;)&ChW0e}r&?{w5QSk~v}r{-rEC9e7$uM5#G)aQ1C-Z)cFLm~<~)+G+%XsCGl>
z3cg5WNn~F8>Kz0iDqv?ZU!L8Q@UB|?L!+?4uEA%w%3AG5ulQNIkSw0*b|v<6t~h@5
zaga1}5|CN`{$BMnnG*1**a`a4WCkcj3_rYop9fGRm6a-g&e5cBIa*Z3Z)pkH>HWr|
zkV;cAd#xV+>-rk@MIE!CH3HE0RLE`of3X05j3#~BhpMX62jCEIA=u}o0P(`C-OAv5
z-@GF;2quF;<RPe;_?kCfLS3FTaDT3^j>7A4a{s`9d?W#n0V?<7?K=pd44pXj#tIoJ
zPwS!LNN2Buq|5YQgZ+PB(&M}!L{#YBa36%a_<xg)3aW(|T4W8pk~+6;w~`(2ylV&&
zMWinzqEDWlm$q+m6GNDN{$p{|9+G3aLzx~k*#b)y0<To*h2biw1$`@j(&p%X+SYNm
zj!}ixyN-cC1FzQw=>tz9oJZm37j-q}$xxHrvXr{|MRXI-L)W-qqNc{x@qpuCbaLSB
zRY$2)GF|FjGVy#z^;|-*%TXzP`>kfX<wpBFQAzVDf91UY{c)2=Bg4@=rygvY+ttu?
zt_V^xpJ)53%?Ld$MuOrTYeoRh=jtC*IeF+1^^1B4Ccxc7$HH2%DLLW;^Ir6n6!R@x
z><DKGhhkdq@~y6pCV$=oZFolF&fYF)6GnlZ)&WIhy&J%>wRTpzgBxb2Oh<R+1B{0f
z6^MTtYD1V?#uHB#VnEOcj(J*Z)SIblC=~<`BV7Qb{+;O?A(TG`)584!=_Tt7nJVqk
zd)LDzH?Kim`>Mku>x^bTWgEHErQLZW*IeV0k8eTc4N>k4g`8TYRX#05Uf!=%j_Hv*
z&xej!gV)$6QB@N$rvB-C1cR+YG^oTUXf*9&v}16V4dN^uq}fbLN{U)GLy!z5a-nWA
zue%F-@wWpNlNxA<-dW($)y(CrmDz*coL@m%p;dpQqgb!WL4(Mqcpe<!YW`7uq8_+}
zStH1gi5fOyR%eh-xI^RP^##t(&dg?uOfBT0655I)=n#t$5XsDjAv6%B#R%D_<#td?
zT+k3&%m7;WbTi;vjX6LJw(iWS3w#EIeLh@yyzY;pptCi981!`rE5=*kH2UJF(EjuF
z`Nu``{zxRFMDwu0t>WvWW+3^MsO*-r%L?I-pzzrd&R>2V>s8?+1!SV8gQ~&6qDTDg
z;`6hc1gx-8vG1Vg>w^eGGgbYXD8530A{Asf!J9V9k1ynAOm7zrVkLdrTLEWsfkh;<
z+Np0{hX9`#7wUn~PV{X^=f|MVpV<(d>r8Dfw=t!qbjL<C<m7!?!!a?aKrfMWUS%cI
z+4R>NQYsicyGa3W3Dj*T9K#U^0wsVk8sp;wnWOl3H=Q5l$31Lbp14bi1qserp3^#d
z^z`1)?NVueUc(WC-kmyQhGi=`g(^dxv#Xe8RRUcmpYZU{CPFUEO_N{calg#-47M`m
z)KsSA*ps{Rj93$I>W?KZw{hf}?L3%;eYlI3@X5+lU46ZAq{U>B&mkL^q|N8YRTiW}
zzB@iV>lZJz@UE#GBx2G>qs~xjtSF28{G4%AE1%n1gkxk@WvZ0Ir!0QGkG<U<z)&%x
zcWi%?OUAaIRM6}$@yV8GZ1e#AIua;*(ls<IDhy^W=jE5pXbt$!jCSjp_;Y`h^@IgD
z{aP1CoVwjmaIUUp79}SlW0+Mcg|C2$$|v<GfXKA0E}<0gD8B-pF$67?m{VndA6jaS
zYsh3)Qf_y;JeL4IEXX8j7%sDL_wWciS7{Kj!f4m&g5+z`>ZwJ{C<XZ<mJi1E)oO9=
zD@J@Gz2Dv49R#LnmE)#UMa^8IBy-@V-l>fxf2J(ryyzWmKbK7TQuWlusM-9b$YyRx
zA@-@`*W&!awYMwc&YZT#1NosV;y41r-3NTmL7;YcqET*UdSYM=O?b4|B-jQFA>(|%
zww>8RFz_WoW&!P-+2h54@tW~O#=IyN60;d~R4J1(H3HUPn><z$*@^@6Ln9*-Hv<h#
zwH8cF8)LDn=5u>v({#PLx+~-UJ_YDZe#W)WvZYyf!3ZdC`fp?ycrKWJHZEQnm?H-N
z8FYfh5{V4f3vX?}z&aTZh-muy3JMBf$_q7cETFXbom9*kw*u}4LI~FYFF@6Gpn;(A
z$|VPu>YuKY|HlizpdeAMAfZX!L|M#wwxh;^IMzhmD&sjb!;E%Ns3T=#xFySPsiBkB
zrXb?Y^tj!zguZi4x{+7x(;OfD5Lt#FO#`<vb*~wa9H)6^su^^j5?&q7ooX0%$jE!J
z)zdx?WiULPU=HEBR!CG2#La#gTDl}LY2T~5bZ6>4&1sm3o&8mofBTBG)OsCoPCjzb
ze^(!<a_;m9g`4@b6)zXVCSmhVi{`M*b&>s*mPH({>0Fxzx+4sJ8`f_m0h1viEuA5*
zHf>y>Js(XQ{fM5HA!=V8&*G?ELvDHmt05HYSyyvf-9I=>!8z-&UohVv2TL5f9bL*<
z+J>)DLp<SmM@0FzeD#h={ZjU{%|z<<(a$CjeK%qC@3ETEd+l%uq)a>R9oNvBP?+m+
zaCnm;qb9TRYm+B!qCsR>Q6Gb{_zWUUUtcIOIPoLs**UjDa#`5(j<o>$WT&iN9kF>}
zbi~zcttq!6_Srge(duc3FX4ujC;#`krNL_rOkacfc+vp9L(4a2PD{+hdbhI)%<G)w
zjs8AL+wQhGn~GHbG8DHV@Ex4$)x+@G+cis1Nw}KxC%~f71hHc^>5}XM*jEfboe#MB
z-cNYGqMcli^3H0zUHa4NMLwO>MB=%gRBc=0OF*umY5-97gt$;znIX80cUEGNcut$%
zsKRF&9uIrWI-L-y#vLzr2!nNiKkoN?LBP5Ds|4y6O{%>qC3bxqAltgy^hIhegcmtt
zzu)vNQ&vwD<(RM0cHYCl!f@_|I7=}tuiDN0{EL)SegCVJ7O?&acm{jE+%D`qifFGj
zb3iS;KAlU~^VhFfaB-a0&YU>B5y*qvbO(9E5JUk5oYBbgFB)t0j*Gf5y6d$TYn<g;
z{Q*^*fIkfZRtJq#{qj#*j`P-QKleHJuBhnaS73VzJq7T;>jCH@!QJz^>p7wo5_2gm
z_hm2IG=Ld)?QaDD|G{L<l#Q>zli4^nV((XK_~8-s&NldES|kh`#bP+4r%c0nFFs-N
z?(?R-*VAE~yi_z$@K?_d74ZGqf#KmT-aXd@)?}IMnvdU7Nt_70;Nf+;&{;A{HQzoX
z&cFehRa4z==afCze3*uTne-fJdq)<5SU0`e9kQ8IR2Hj-s?dHT#JjHcczcX>VNkB6
z@g!d%{R@eZca?_l-kxb8?IO)rWCig0)QIDG#C8L?$~FV|j!=ie{oh)gu$%zAzi;bS
zCveSZ3o=}aS)lG_?lqkNx1OD|^jIm*q4l>O?b(8X@ScMJsX5ci<H@iXEkJu0^u`}i
zTc)ycJA~HY_4!BN?2#5$hsBw2#uAm?eRoar0SBnaQ&KY{WtEmY^L|XU77@z6Wh20P
zr+=wl(-lt^6Ecw1e0kAD<0Cx8C~XEvRxXtTO>rXyHL;oVeH<axmwT(jbGo}^ztuqt
zOC+{&APmB)9cZ#W7zX@$C^y`$!`*-ze+4)NKoPv1?Ee}oD*T`JH~c6nim;WF1v#(^
z0sJ+RNYM@=9h%<H1>cLS#x3eVU^3&tYZ`^<C37!3_ARs_jggb%qiC>!AFQSArq$5;
zU1_6@$r3&^YQ0G&F|ajDmaDe;&V?nqqRTiCFZM|bE-fxU9!-Oxe2;)l{JKoKbP*;u
zZSrmsi`+Ebo1w&{SAF4A$XhAq7E9VPBqy?nXG%n9Xmq?3bL+g3k6e$2u4b0k_rPIO
z%xx-b3EV1n%^b^#<10c*!D7;uHRZKD+x7y%By>^Wvb&}>$Oq|mif`6Ar@ExHo0J}z
z#h)_b0NC6kT64X%$r%~_j6V$l&xjkUJabL{i*AJy8CdL#d3My~{$>Gm<cA^A5Kl=`
z_`Lhmme&4jewB+yh;rSlOt+}}(fk{Sw(dR}9%HFm9ybN(tIV%sPxz$fujd>!UYfi}
zv}NDXO2RwKTh3^ZjoTHe<8?kc&8r$iL$#JHYJ+Zj@-l%H%I5K~U;rhp9M5&RCX)wB
zr+Pc~R)zUnaOQwCXoq+xg8OQaT`#KjCbNpr{btHzis<`CL-!I5RO-O$HzCl$P}49z
zh+q3C!9&s;D$;>?cSD<2yd7s3_tZ$%aOJwXW$Eo(-o&a!QY%p@QI^1Y*JH0(w472P
zCzQxZv2Q^&Jsy?NMuBhOXkFM5J0h_;IF|qyB~7NYAQEp<@RleM80F7K`xS531>f`e
z(t2Sfo@X~ou#_aQZ1gFz$$CN4QIQBd^p)?d^?H2sQQ6_8m4+6o#1$+rU|(e)4y@H%
z0G}TnUC(XQ1nYg%xGV?~H2!A;3ydW^r?1Qa0PqFl%yYT~6<x>ao!`0o(VAW;Jq^|1
z{WV3gML!0CI(ug3xQ5}`4J<XQOu)fX6tUoLl70l7vhKtop%B}ywaUHb=DI*pcX(NG
zyK+2%MQ*We1{XjMF$M02%`vu3hG|OS81RrSU}Y46R&Aw$f7`XHngKq-N<&>dgc?mL
z>$GPc4%jV^IT5e+lmK|wv0>sJH+rLs28YLi?EO{)DP3Li=dI@X+Uwo*UR-vXSPDth
z*R-szdZ5*B83su$feMyg8bVhY6_7+#(Hcemfb;+k;_YArq%~q422howGyad2{g27?
zKmI8*0jm=o(N`0@I<+7%rLCQUv8|w=-4SSDX`e%0UIUXx{jfurIPK%lP*SzYN;U`|
z!wTvdF*ua2NYcZBOkV%F!DZf*W=;)CvOXsyMN7Hmp{b0~e(b4<VcU10{ycw;^DQ{5
zuUuLD+Y@5hSAls>uHkAvK7?g)^uhHbD3j(x@RGr?z~(Vb-UTQ!oW%`SFz%dq?1{h}
zZck`WlRJ-d{-B9an|9>aK&c0DPO7DI+Ss(-!ARa_L1Mm{v+zQ%<owFocFfb%T(#Rg
zl*C>AmtCGkqubTF*R6Wbs;XseUj5R%6mtl*6PI{=TKIQ2o<j!>&E=v-3uW{V(oh7j
zR~?N#Hzr|uADM9s5g&i@Fur%zz-+bpkw^P*6jsow(O@{!9u>ymF4@ws<gpvxBneO1
zX3|66Pw%OCb*|qc_VXK>3D54Ql12WGgUBFNvjhyR1T41e+*9HS^*&URrhaI?HZo!G
zvqAZjQUE&NaLj2v<I@@`f;LxvtC`Pa44kxRm*qF_zR~n~uyg1B@Y9JA_4BDF?gv-#
zpyGFtAIt;W&_@rREeT?}sZ|0K`}U{iDOYM80^3Mz374pg%7`0Z%|}(z7huYDyO1VE
zY-(Nvl|ZK_Z5a7x$a8$*B{-1C6e`4mUV39lU2i}6sXGq(exBg|Of6v(RIjO|QXogz
zy9Bg$8VpGc+LV?Qofqatz|&!w&hH#0`nU;CodY%n@j%PPB&u@MtUJ(?8m~JPURPmB
z9;V2WP$p%SIr@=p{x<5@%M+*pDq8}HP}a|CcMNbi_*rK3sXUiX3(=}7Y{b6OdCNZu
zgpJNXR6tzb^kMUN-1{^Eg40Td$lC@|$3+;tQXJA-LGGAu1h9n$tD}@FtY@7S%=07V
z=BqxQz!c^4h6r;w4Dl;`J48+q^Etfk=+RMHQ;=diS~-Vp>hT+ndSDx}!sNdDk$+!0
zm37Re$P0Zx!;2rvQ~Q~7!}XkpuV|Plgh(S3s5VkIW)i&;e?W=*kO2h!{6${v+reJW
zURh?HECip8!YZY?udzZ64&0ZFin~1L+Q6nh^lQcE2XC)qT>TCffyQJL46;Vgrgqq2
z7!f>cKg4T7A*u<gGd8G5_)#>v@}`C^tZ6J%JQ94<djo&hgjXV!QT?JZp5g0vjEEZY
z)3P~Dhrg1HiHDg$9{~Sj9jR5f>oErlxd}kvPRACw$GVVtK*bCs-Hyk6Ds4|ER=rF2
zaeOP+;M{eNQO~3^P)03*9)y(-nJt345EbNSulq}Vt?G?d*?oS-2p~3f*IYcH6-Rn#
zMw-vO&12Kun=^WX53B(M)hxK>LkZONIzHeFg$S#$Mx?5CV~yumD;`<oMj)Eq0~~}b
zH4s^v7!)A7CN!*_u3B}<p8*?}>KQ4nAs`5|Y{1fO&tmVgq>uyR5X|yEPp3`mg>%59
zqPBmL%H3+M2_}h<YJ_RyV$^rmXnZ!Oq(pLR?&}*OHx?)B&b2^W`kt`~q$ISvN8N3!
z-99S1R&@5@X$l(?7lpq~bm%COM6I_spfe`@Y>Bd5J;!>MJL9x{NFx+Zz`_PSR{4LU
zdqtq^Fu&g3#xMDiw|SsU=GiUJ8rA`KMaPuq5t`0mv^TbUY_3@zo4xeyX~nJ4-#8S4
zk_w;B>C(!?wzH>ylzBu=jWQPkxzU4>KH&k#el~&%)=30+u_nNpYG)p0roX0lxOY$q
zAUDL$1{OqrUf)gI<#r|Xjxo(|2-kEt4(*A|+_f49hz469MxryOSgc(?WxU_#bN4!2
znW$o>aDV+Qm_L)uhwU~^e~B*<^s?b{;a&xy&-@SqeqjN;TNqS~;&7MWyL10inJnut
zuwR*{fw|w)WM8`EpHEC_|ExrrA8=zF>SK^UYnCbVlQ}WDxik)4IKguHiO-wmxw@l&
z*e5aai@%<hIQ(~4|BiN=)5xbm8ul+sI)o*0o7%C3uamz{O<lrHh@{2NHlj~O;wc%7
zH_5v&--T|ph$g&VXhdN&fcu(i^73Wlx+H|}SSiKMe&hPw2zeW&65u(-QKfLKk6W_M
zZ$HTA=}hBJzxGbhy4Z*+WcMrMzL~dRY~1u=?_mtO0yf?As8CVZQHHv{6;^^4;Ym&!
zDJ}MT^?rSF$@Y5lktlSCrrSy@nB`lZ$cl|Q4nC=mfYTL&mArdDj&UzFM4Ih5$D3ft
zLzf=Jy=xrdH$ethLU2MTeh8-9Cp(DLyHLWAt-GAZwxXX4AU5xw9W3&Q!-yNYA+3Lx
z@)9o*xcts0La+eK@^;QZk`byyHP-ulNAWgT=~ry8DbJ@D(UBv+4mf`OW0j>BXw%aJ
zpjRKfgDB9x30T>*6{Es7P<06kXlZ3g+CU|Z4Akkj=azc$f8=~7=B%<XDz7FFu&p{B
zj=|b$4#VS^7N&Ifo4jo><adUQAvDBY7LtX&`l$P!%7tjvmCA-aVh=Euskcq0=fuPL
z`FVb`<7ges(pTS}iM0AT>L#iib|M`xk{d3R?QaQd!s>aR0nD~OI!Sv??x{jx!rpI>
zrEm<ky{G=rb)wCc`e~c5943#c+rH=6x5WaDQmVEbbou<I=zBU9R#u~zHN7VSCLQe0
zKJ10?K+&VE32J|2k>rcdK2;ojFzD)Td;V}}6e>t-XUSeMeiaa%2{^#C!Qo#WiFSs+
zU)XZc^h>9=CXKi8LENLU!>U7r$KLwA_UAM5au#@z8_%6^w)zlmGdQo=n`RkI?(_yU
zSX=bnRgG-TdQ{zZrU{u7t6mq$bByKEBCEAETWbKorDWYT*Jm5?;LC=G4s~(k1qlbl
z2|GvHv5`}+!Aft1CTX@|kaYE)y4SHpRpiI_F10`QF#OUW;Gy}ORD>5vWig5h?-N%t
zn;YTNK`gjjTf&o$^6L`enwY9d)2)un6JnV0%Xc93jyk^%gJ!p{*=UYsmOu;5`(lFQ
z1ZicG{{SB57L1dp@YL9TQP+IEndhPN9)F0b0u4li878LBzx75xGVr?j8AOnzR7p9;
z%)8)Yg>f;YzB=>2wm`Kgw-R4OZ~M;-4}mdoE`l~;@7~v7c*Uacpb)XN`0{98-TLnB
zc8usmAZ&1Rv5%<G8tvf<mBP*%ac?yrU2)Gi;aF8$&BDETIN!dAtGtNcSu2u_pqd~Q
zniuS}(APcE<TcjAdpJ)~<J=OX*5sba*e)W%8Twr-9A&;WxI+_GXLsnP`mFR&_nz4_
zYaH3@{<f{XIizaSZkujz&3Sf8`)$9ygNjw#`=QQ_VG3}S*X@w!0$UJngK{mYq(%zq
z<f7mzC0LX5$z1SN2+ohdwe7P~=Ch+S@$~AllO$bZ6@>^<uG`hd98%FJF9;TM-JZI<
zLxq)#WU_+r3f&A@^cU5_vBzs66BNN&Ny($FQu!8VQj0}-6^6CSHy~yfx;;dbpC*O$
z8MVgWGKZ+Hsd)<mtLV2JV<{*IL+G)E@ZZJ12b}iWvM>wi1fj^PNTYq<Q+VZ99aj))
zr(4;dgH!a>Hzr`})9;3Cn7s1*?L?Aj+pD3Vs?gA#@v@J%8_$7lg^S}yCj>YWR4AF>
z);56GonoWK=-arGG_$7sC4%CJzK(;OxHzX*oux>o3Rzz3ZKiFU07|dQi_so==waUS
z2&;^E>xhAv3l`s!n{!9Pm1PaAID#~?6x!!+UU2Z3QcHQiKq00j6e3{W9kx+tdMkU~
z$y1M1ya#DD^Zl?AS4rOT1OkZ0EN;A2B=h@$cl2Bu7FiEpGpsmMGNjT<;2g_E{yro9
zkp{AeLz9fYB{%P*4{x0bg8t=dacc>+i9n;7YB_m5@zy2O<kqaE!C~YCF2ZeO-j8|5
z`E-w{B?R<W-sQ$UHcZa`;f@|LeS<^B3V4FIAx3WaW@wv+6<?C7lsbsoe(X0A;eDV>
zea){ULmGHG5cU*FWYl_gj6ys<r=oszb?f_GEmxD<$*jMYP9U}|53%s*AnjbU<`Wwx
zmD-e5Cpw|VW;BE&6aX0vd$k-!IV+T&(QNuIc^oe!X78F}U>|86rTHe-tw;@rtT-cY
zXS5zlDY+M2)O=YSRnKBN>INf&@kERqY-qQ%`YQoQ2TpejM{^{DXl?`fNodD#J{v)W
zf9+Kwk4jaUB57ptyzIj&WBE+>mP{k5w5Yhf`MV>TjzW6l>xRRM`ROA|!Xk2x6Hn(?
ztfEnO7WLJ~T^WU!-YUi~_WJyRId4Rakq=@mgNL6k<8nP=w*WlK(~v+Ci!+&7EtWx{
z00i?8ig^4Mv&AZV%idc_{%&u1dni*2I=2#3x`@~=q!VJ+E=Z~FfnHUv8BB{i>)`bs
z6}Mb=ffUkNHxQVm>eZ0|vs*uhhmwP1uOqWj#SyXzpFFCT>fQZL@UXI~hWR<zpsEbm
z7WSIP-LGg{opZ1~0CsfsV-Y!FmiFfhT@DadYF6q%5#TBoHNc%D{=jJV<uER^5NeM`
zdx=K3Z%!1zD5*!`N@L1y?|;-6#DUbyJP27q^>$AFogAJMcAbKv=;%I>?G_g#-K&m(
zc?P@Fjf*Ikdc3_4FV3e+j;7x95b645%Khky%(bHNnT3NnQC4e9jd`O<ire!6zrQ8u
z^YVuU%^41~a$`vz%UXDd*570)=o;S}L=d-t+^{t)l;gMY_z!IA_rfD!6x);p0bRtu
zj}#}pkiAYUbyri3liPr*J+G?j{dDy7Sz$w|x?Mfg;QBuLlZdm%+yU<Klc8s?hE+4?
zHE){$GnXZW!?~^C1?$Q^|C0zO!&RabHZgQZJB6Xqv3D_9j}w8F9JgmNf)YFC1e>1?
zhFpwxd%C`clHj&7xwY%6h@sY&E;9`^-T~U<7%SiR`;za>oMx!W8mX5;N-9{<MxS_d
z%}3$w9$LkMO}{u{Fg{95ha3BaG3+Vb1S8Bckmm|=;Ka|{n48#cUWn5QIYTodn(0T&
zjH=A6+|&;B+0r(1IPQs$DdCuP$)rDx$It1{!QQXbJ~ow@ZoSui0(vvm5*KED4G#%i
zPjtaVF+|H%Zhhi5h6qZB!N7(k>Vqnx?6G<T1&PJb1i@r5l-?uYnow`gQOzg2e$@N4
zj!m>9&HJz`9y)`>{caOFyMB9TTf<aj?r>+@7DCoJce_#RPnAqTP9tsQ7YTz+AKWhO
z*@!DP^9JQZ?$x993GoCg%x3?yy}D|pCo80~99lOk%Fqcn%e_0%YPR6$h@`c3l|2ff
zl;go_N1ZH0;n0gVn%VKwLsU>wxJ!h!xic@ZuGGlZaP$GD0SyBPkQ1IzlD`+c;^a6g
z%++ApngTsWG0C%_VyBXVsFmify}28GMBa3EbS!<%&KA$%knnUK=g1ESiuEvpg@^W+
z2ja})VgkOjkStBg-S!Hg=jsuLSapl0K3>ow%{xny@myGVCd<~#fL4ItAy5b8E(FL;
zow789o1))z@sj<pIIHaW;DCfw@DOwd>zdpc+*1kEAsQN|ss{XKP>%o%(mfmA(|x0@
z$Cu-6XtHu^9@)Q*4zePUJFl8v;4;N$)}LU=$SfAC)EF{A>S<4}R<S4c;E5OYksQZY
z+7aV{SYcHj$10(pCGHjjeC9IfdY<buPa{5w5!LIEVaaY$0hHbeu4`s-@ay#ius(iJ
z-rEnJP}C;$BW2w_gBaem^LwH5Tea^TE#gSh;^;?ev@jRH5<QD##PoeOa3&8yDktDk
zir^Pl8%<f<gV#SD7js<b-IH{q%e)T0{vodabu(UBD;j`?PNC+hP;z<ec)_;cEt|e&
ze8XUFh}V;0^1{0ISVwpeNK1QsaNUD^EzS2*YX)SIz4Q5Qb(SJ-j{v~a%gG!(*NBHQ
ztPk^1q+RKPSP4?m`@~|VvdGta`)cSu;PASj9fw^$cc1sbLcy%x3q<Zrm5+`q5d4@e
zFJl9dkrzfgY+53^3nH-G14BZJr|PjH`3v?M=9T7!6M@aWLB{E^g-_Fc(SemM<K^Eq
z@zMt@76MFX_;OUXr!RNI8`-;G+1V{mwj&1yi1CcldLI`0c#fYrW4dx#LE_A}l*2s<
zyk_1$1u>NcP~6#B=r%wqYCsdPn@tvSSDD!!=@9?8HTV#HxYp9}A~EYe2(DZq^iY@z
z5R~;w)vsu~tA>B`ox=00I}r1G=kVt|vS|J1^e|8w_XhgiYCHy1l&@<$ZUPU;&TCTh
zYdcA;-V?7qJonDa8IB~1clBbOWMV5HscJsqV1Wljl`7g!qEall72wC}A^c-EXb5wx
zBRfteq)!Nk-{73GM*YGiBpa(|@3uhn+H(v|XRHf>-t(sk2r-Ip=^Hy~&R_bbW7hYb
zg2MFlHTn|qQ+3iQn$lqRf;0=Z`@R$|7$s(siq4>RV^ZT95iN3HH26m8lYhh>0l}ZS
z$gs&cyTf3WG=}Z5d0A1^<nsVfg0g6XP+(PRnfu1lYBAfcuO?`Y+&Os+01IjrE3ufB
zW*fU4l!gTZKg6?bxP8v1-4im`7e;c%#VoZgL2aFRe8PWva7VB|NbjU{b{~=Lz|-9*
ztIh0BT5}@S0W!awa4l-ap-{&DCy8Y=Cm_Uy@kA{b6Gh=8x;4udW(~KBt`faWpqqqO
zZSxEAAk%)XWg9|vM80QSr^#j)gfv1JidK&!`2746fnt04_NKZE_Bpg@hsTSb`$~_G
z&D($!TKS*8^e?3q2ZHuYn;);~y5!mcEj?VQ&FPv0E>P)|N}7;PVl__z$~Md2wn7M)
zoee{9aVIeQoq&P{<yx!jtE>)C5Rh(O9UlMPsxMR*+JH8|^SELP#2Q|d@Tg|^a!VS)
zM-t}e7)S4E-I^SVo6no>{(yI1b{f#$p8I~_6kT<A=ajLTMi2S(v$2Nf{EdFovNWk6
zq}+xHgs?q+ned&Z*bQVK5}k!j+8r{Iq~lw;gv7StRVv}SBI}TUXF~r<i2n65*@&$3
zCX~gypGMO4%%UY?4!n)T5J?G^6t5e+p5CiIsi>;noQpN+8q|L)no`;#k6e!Ih5qUo
zvm4Q_w9l&|HEV3Y(*AYc%Fq6(quZB%+~EM~sqyI{<&J<ZdF|c3EF!1IuCv^rhUtjn
z!a|gyn>|;|wlnj^2!nQZZS=AYeT}^k0v|POE;0%2FxFVHXX24lJ{1ra)N3auF=pPj
zmBm(ly%7-u@|Za}EafOfUMtr?yr~s{h-;+zy@de@k9`uFmgn(!dOX#v(W_?k1F#>Y
zf*?Z`vD4i<T-6d>ZZfxiX^ZZ$-{j;HzbHQ5jo>;f<bM^Up%8p+vA0vk5_#NT?dS4Y
zl&&bTQdn`aw=!1_7y<V0_;x+YA7M$3IX3T10~hsh-(@}*m>i7r$+9h~L2R`_8-8dQ
z`!tLfZ|)vd*q+k+WN^}SkU{Gd4?9xUu--hqQT8*mj4xoBm+-l{7}tTIXz7|jIG;)&
zx^E3e_k2P2A-E^L9c{z4K2#lN0N61u8p%Y63lWLjzD2^3(tVS|KIO`l@oAh7Xlw(R
zEV;#1)^jFoy5w-E*opF$@Wx%oA!we*iGQ~BFv#eEm06K7fNn(PduN~XUg20<cMXEr
z7dABNOyS$`;}GLmpi(AA;Bmi26beo&KTLz8QSW&heut0<gUjdiBQ)$Ii#YH7=3C%2
z!pLu@99*9-2l8p?dE;QI`1E>VAArrli9xQ^aP@&-$iEWm|9u!`!IpZ!>Qp)OAhM}k
z9n>vo)woJk6IcO-L5YC~eB3=RdAXUeTX!S34MeyVw@#c(YufS36XRpAyMf4rQu|>z
z;>0GWbpxy~;?SYy>|-i-E6l$%q`)DeCHWFqDp<z`4Adb_=7==G@YuA+&zF(?a^JOA
zKHyT1vEovg&^N=bz!_LN*4KWtlU5jdhpVjCNF~!fc;=as*TA@uxo*!%Ur=MmeJFA0
zwA?VQw@{*CR~Bj5CoF)UtT`f9PQ;w-B?~D4)XspAWxGx0OHJCOrF$o-^@`x4&7tbF
z%V3D<Pm&O$1XpLGwswQ1lcWRxQ3mxS4!a-zMlwHs*bX9KUOR}is}l3j<os~>{>JMI
z7sbv}XJW09dH!Bj%L^4En+((|r~^C%fPKs|A7pncNo9YxOP?sS;?b?9zyJ7U5ZZT#
zb;T?;iU^K58Ny&5{IUUlkYyd6Z-^*WZDqfE?~uI8I};^|rD+!(`XQp_v_93W`S4el
zbB<RBVZ#WJO*&}Q*`12!Q*jc}<uD${Q~w~LFPdJ--_8Swak?!lNNakWQPY*@>eVM;
z5)l|%E5EWJ>jG@EuO{PEiaL@V#ZXt6J_}f)t%4sodLxUG`_+A~S-n9a44Tc0+<$t|
z{abG_F830(-<`E|Jx+-b*4ZY3C}9^}&zeM77dxqZ%1DYB>TfUI3dbe^g(o(;h#2K}
zhupj!*M%e|;--xyz$2cb5L8+-9zs?O=vq8oEp0r%@g(}d|HQU(!(aFfOyVJ>{*Knm
z2NRzC?0vAM{eUQzj!Hh=x*rGFd9?&p{1)PU?~#6iS18>CSkTidOt}A{h`?O#^oJvK
z*EKP`YBZhJuk@PJZqpc-Z|*^Vm%+4|kV({9bM?151HoFt$j-kG5U7{)pDb@V&B}@_
zZEOLHgxKAhqc-1Az@O|p(fG!%0#;j!LMy}%UykS@8ZA^VuBUgj+<w~7C(8g0hGk;1
z^tpd0BMFCngPAVHb35B<6H;CS5zzMmQ&uG_4amfY8>MGmfROT4H*!n+?2o~#loIV8
zDj^3i6v>*bi6^HMbwVz)d#bOX`_Aol;QASCsUL_>-F%W$YE+r#GN&oKYa^vnx)`Bl
z)u^^gsq>REUskJjY~>$*Z()Wg(|RE-X1O#LwWO@JoiqxRVesNA=%Sv6!eiDQ+=q^u
zO7d7ODd|D2RbTJAH`b#m+V0AcH)KdLJD#+wcG<-d1H<E<E6%Fa-^5{H!S=cVn*jtX
zHP+i6PTX%p+Z{g5owO}r%WAXb135j7r9{j<7?XJD5Ugiv9L>jNy0Uj`<P!ZnbQ+*-
zXwSt)A8oDA>Oy$*IO(j>r4}#wx072&PeEAuPG=J_y4(a&2|$FBns~g={Z3)tNHcHG
z-6i*ns-<HKwD1UzWlSwAk74psbB@8~doeZwIJFbIXpTFzPXW<lEJO3yV-4Kn>y#P|
ziz?cc1dJ&+i&80;_Az<IPvE>tjk)B?49A4KD6*bFB&>Q5e-)sf^U{lQA4PiJ2GWvS
zyDb}d0-ZDdQA_;Uug@1_RFj8niYk0MYg~%Okr0K&D+SP1Yk;LDQ8`sFP9AxOCbH(U
zhb*SvyQ__cFX6O5q?od7)e+JhmQ5gouZJiz7wH{{!9Wf%SqJBoj_;2Vk!cc};c#4M
zY$u@DU_jQ<33YXW<vtqVOgHr!fIiUebY>|m<>4zUt~W{KV=_3_jzcEuuc{{e!Og|*
z<&AR%?1dDFdY<c#Xv1VlhjDIvn+6>akhQ78Hc@#(WDr2m6$5|dEH^4!0fa~>PBkj3
za&mHd!AkFGWz`^z2YFu8CJTUY7h0T-p`AApNWt=EAl2a<0D1)DHZCjeTqr*u=m~Ok
zB>;)26R(oC0R3Jg8EFU>L}ag%9ey<gw1(<s;&LO%?rw4natk$jV6V>C{h^)R;rOq(
z>@%LPa<^R2c!vUwgpPT9!z!=y>rU~Ts)H}#foK^l0HLA15*iZ33Ti~VO9J^D$Hm&u
ztBNo*ZbClM31#=AEY|`BZ_u)tO8T{1Y4FAOy_6|7x)*26%kPf6+}7<45x`P*=337N
z*hG}A!Fz4g1A5?v?V)p2cxkHdL{37PfM6AI;YKT)X~EAm!+6mbXp#H0L(p9UvFn**
zj@%C1RQ@8rb0!awB>kIUXZQVN<K^~C!gm`|e|AgwrdL%{v=F63SkeRKfA;_nk#=rV
zgi1*PlImLu1Y;*?ueeT5lu%ka`_-JRkqzX?hYcQbNj9Ed)J)am6SL9>$B5(oYQCzA
z$VgJb%bdf2Mt6Y}3q3k%MA<c$jvo^HK7@!{9H0f2^nN`)P;N=MqQ_`6HK6G5@2Esi
z<yk_YXh)Bba%#Vri_PC#Zx97yyMaAwdKIeBjShvp+D2Jw2tcH@VKFdi12Ux-NYfuQ
ze(kQ_EpatWmTfMirPk!!K)&n{bqQQ|;N3mB*WR+6S~(yui;}&#ruA`z^((_#PU0)?
z;RBfw9RIpRW&%G5=Jk9!M<~BcE#;bg?L!>_Gp5|8)48<eBnDmK+2hivJ~xbd-tn6_
zHmZJMz2<N&K|9fI#6U;2;cFwu!*?F9|A?T)KI=4e-@A>&qI4u-I;ALA!zDDI9gX<*
zjR+CH%_U3~n(!I_M*#~8(#G6?%`QZ)?kRuG2SDxq&efu&@d8Ee-4)^XShS@F!Q%};
zz<iQTQ1D^5#k@lv)(!O(H7vN<#0n7g^MipA6^cW;xAn=V!}cqi(d1M=(lZR@znO%2
ze^dEQ<X*E4xZ!)%BVjqQ#6d(yIrXGoqXW!!oN|gQQ8LP!_VHOs{427Jlk0%@F1@v4
zdi^mCqZU#l1C^)_M%Z=`BhY*RU;6ms#P=Pa3W8mi&-wtPvu_TBGW~%O0VsVsXCZGd
zkB*JS{|WeAK3i$gX{fmqn1-0Ua})mjEVY_*T^^G7^GvWF^)jATV~tyTwe9zIG3PeN
zCQ#j|KHGMFmzCF}twOZiByy~VjXR-Lzzuom322#C_&Vq_1k9qh5C|ZCgTvX@f1F!p
zq(1xmA3!MWw{Ir<IR|gQ0TIBzeU3g4rp%~Ry?h^)L69q9`qS(?VN=C}zJ{)DNd#2|
zJxd$ICRD~KM(N8#2FFQd&q?NngNH|Z8>OZOP@)*lHRwA>+K`~4dswFuJy_!B>+ZJ1
zpMR#xx^(-t<l9jhHL+oo2P}0OpcJQ!W{MAL1EqiWSeOz(0@I=n({EtAu%ec#lWz<7
zUas^pH*5yROC=4$!LwHKUp`a+Q3+tjydJ>wj1Yp8=<xPhbRsD0G28S9w-%&hr^#(;
z<N9n;YK8k#))IZRzYVo+xvJ(YMN+<(Z8bP?zdDb7f-k>FkHhKn<`>_2;&)ROi>7nA
zrc1UpwoGQz<NK3^yE^aT8s-Dt)e*cSYZH^<*3~5M6Ub=v+Hgo-sNaZ$GL%<}qrbie
zs$e<19pM;<5*@h2K;=(G{Q96TeiO>{(LYxzs&zt8sCGljhc|d5fiDB2j1Jqml<sAV
zqvVTh_7)k5jOeBs9oSLM*`h<6qQ3M;@TluPL|1o*54Is<+&9d2r=-K5KBjWnGIZTr
z<`YUMpVWy<a6Nk$6DJ;~s3`G1Ix_-UlRqkx;Z|cL*2TCM$okusW{owiT=J%xQayp)
z7Z%;dKSkM^4dK#ubmd58E#FU2l@yXnZjihu<%@ICRFRn*6K_=`P3<-4pDt%bHi!&~
zO7T&4my3>IQG9Mo&$UvRk++}gbqrPG`FZvFaL%v}fW@w!d^qQ*lZQ2-yLJx&yY*o|
zbzaab6m<L!VNj@^2UZ(v&=~fxyZfv9mozCdGVYh#265Pfr=yYzDAP46a?VGeZ76j-
z{u2d}7!%y>pbfin6O|vhkq}g{3L<XL&m2ms_zc?ExN#r4*x^%w*`9YCetr(c0!A;v
zbZ-|>;o5h>i*$VO#CvVM+<Ae2cH%p^`kukPL?e-5)eV=RvFpJOs1i@x`t7X}1{ge<
zMLO_1&OMfdoPYk~nR;%2QhD0BxW3mXLAp+K-d68ysUD>kotBs4$nUNh*b}qMlZ4gh
zegmk(p25%8k?xpR@8LrEA_}W_K?7TXFU>?jOFw(fm$nK%v6hqC9!2u$WduIkP0QeY
zeITaemj2Bqjw1Ww>jc9F&baA$t;b+llk;`G1{hflS|Z&qJISH(uILQFCX$L(hVeGg
z-!vfcZCuLQ9o=rxVcS>Leb|Laj-wrskHc8)a`N|_o4Vnri=iRI4W&7FK8X&~<2;~M
z6+e(CP&!c_`-t=XQ#pN%=Ua7BVl^I^HlSH$*;|-LRJi~J35U7&!$G{V-Wj}dLDiwk
ze^<aO@j<PM)OwPQ5)w|Hi6-%tVk;<lLRFGnV!0f<_BL7x#Sk+bwJ_SN^5yZKC0B9k
zMvsD^HkZ5TX%d8CmBQM&#1jhy2<1PM<(f+iwkD`FJgbaT(*H7ZQLj<b$zUT7$dU?a
zl@yD=QCcG-&uxmMOG&6rb?%UEOqCXsjGZ=Yl6yWk0Alfm#nYe1Y8gQs4Iosy8r)c5
z|Hx=ER)x&Svd|Z0F@kW^_H^Q$8IwHrimCJ|mjdw@Ht3GpBst(>qCxzltbJadaUb1g
zjg1*sU(;vPQa5BpPsts*YPF;?*yiQ!{D58%hTKmz<DWIGF$rr+da`=;ZK6j6MJD=c
z<yt76b$5@)6_)g0tr77lsDDngKV{ae!xv!)FF)9S?QD6etIBvjYdJS#W+<!*>NDgK
z5@&wtPN{PRolQ5{8cU3BN^vIJd=XvxqhZZS*l4AaTRwMW54)vg*sS6Ofz0l%xAvO=
zVLEF_`xa(916gu?(|D~UVH1PO0Y#{!=1o;GC(&RPXF#5BQW!~Jak0K)-u25=gQZys
zb}Q2T+33rwj%Ii~$2HCH^umPt!q&2mI^jg%av0KxMF#z-bCAq^T5}R@E7r~jLTLiz
z1#a8!;qP^aj?9KQxS$_WQW0%@CAN{xPpJ+>O=vv6-7i)N$8Ja$rS{zkcq#?gZDaFH
zb?!=5nHOBXS#+_biGOxQt<CJ*CZBN_Kh!lT|E8T_V(M!qG)yt@cX)VtV_dFXZCe4%
z<4f&jQV)8(^hyON|NF4|uY(MhxDztIrn!srlQ_^>g)Jn~RPi1a_h+XH>wv0-azW-V
zGZIK%U6y{mk6&9@r+-$Y`nD}$wYt^PJ?YzN*q^kGw_m}Y&Ew)eNOwqFgX=u~loR-+
z5}mcMe@>T^zmj)M=V(N3Lw6{r7%P$`WXtH)3l>UHYc})W%bPsI>NK%itTuAu!zx8T
z&wZ1@D-?Go(%{>LgEAvQWlh`QE1*+{o>hpE#rE<N5AZ9tAdE3dJw9oPDYwAAO(zW9
z18V!Tj-Tzd_zVbL3k9?OKf2yBD$4d<A0E1-ySqyXK^mlyQt57x?rsq2?vxObp}V_F
z>F$t*p>y7w=h^>v@3q(dePJy=Fx)e9#d#j*5nN$PqE9ZRn)`f`0^6dS9XfZO2i&@(
zHiuhxDw$Ohzh-wu6sO;w_A))6HT(*xnsM=)zI^^_8S_!nxD>$@a9XHifR-SQJZ1>_
ze{t4R3Ho`WTQb%rVQ|i%g8N;s_)$F@0)YB6Ru-;9rKq6Nk>qK||1>oclYrOEbMnSx
z91giEN=)8&?W${Hpt$H?W+=PyAH--I3+!P}*X7wFeSb+PZ@xDMj|rm$>4-j_IvBtD
z`QP_0D<KT{_qk?39gjX8u*gLYG05ye9y*=B$P`TB5n!%HTbwFl>(#m8vn<-qw+80G
zu<S+1JYw*lVe(+~@s1PzBR1m$|LDsK05L5P!Ait>P5vF>AyVJ$?IWLba$m2^oNj|G
zBJ1l=bNh#GQPJqg+5aIn(!4{~bspn&0^9+Hy$;JPgkb=LQ~UM;0nI=N1}u-}+#yP$
z4v#|}pyRo`KnpN6?ec9%Dv)^uULNX?9@lZ@e|o5CURWS&sN(WqW<)(w=TAJX%&aS}
zwgDcjdBqI<7DaqF^Ql5&G@=4Pc%W}P_A-8}ow`%wAD6GSrtqhBqL9ws?Xy+%r<ajQ
z-XH2t03TPOZOl|xg(o3}wdryI%KzbU!BaLkB#flGS?!S%RRc{;CJ)$7^gEz4v|Y*L
z1M(>S=Y-%@K%EzJ3G@mqHWpR8-@nu9XJe@#1kCJzIrv|v^M7xnyhUUnv{D0T^*`&B
zk77;ot+;%uJNyk>_dd_#kBb&$M!2q2Qi1h_;qe<8iwIDQo&f}J9yfTvXr2AB1Q1yf
z2Lg@S(D?x6T3T41uLe8~wrq6NjO>4&sLz7ny)OS!YZ&;}xf+c)Q2N~(-2s0-7Z87l
zh5vtP=hS6@FTl{X^_Kv{e|puQIDs+bg2RA9hWO~=Zqd2|#h>N>hKa>Yq{Q$+B!|gU
ze*e6y|Bd|t+d?cF8&EM90kQYK3F+xpheQCBD0KPzJ#V=(+JE4>pu@nZfh>_V#2@~T
z*ZUW)W<?JKlx3bkILJ%DNBtPE=tt1`mMbS0=f3{;_whfKgMs%Fz@r|ZX_aaGr-2Fy
z8Ei>O$%~dlzEr);X3g*MT&4-o36SWD&V^tU@mjM2ViaxdBcG<ix8ZuRyhh6c(*Jyh
zBsj27_g9HPAFDAg@^JKZn*CTonD#YbvHu{#<8ij`WhYmv@$U>z6Cb&-B0{=O@jrd|
zD)8zEu)v4a;Bqwo=k3#BMaQrdp<XRZvud&JE`WQyDBVW(6jSI8mbJ`QfRSFZIVq*(
z1-sXc1hY<xj#>KsU|idi=cLU=kFi>6vg`@tLFji8hgkt&HRKslIc&$v42vU?(^*+r
zaRD*I%*@Q;hx34TYr8ntFX4rc1%%3OP99urCn#{l12X2}=EHJUfN`Dh@=PL`Q_Z9x
z*j6NR_hrX=M#gNH1Rnq%tM)kGMEuQt9Q5y&7Sp57Lj}2p7S8?;NDLo~Y2n<3`M5o~
zQ0ZQ5vR_ya07W+^aS4X<$W#026|*v^8TD60IARjfz1UJW=AKCj4b&N`PxrG;jmiNZ
zA~<PfVBi(idHx=<{j<vxGV#ds?yQyQygs6(a12;{FS0{Lz7<mx3_ce;&@yaer1QY!
z<VWH+#*zp@{Y89*CN=0t3SUNm;DIMZIcAWl+p2DcO=T>(#KB+dB2#>3(6=<g2C+v6
ztdf7XjXEhj0K9T5Jagv(uysp!<I6q+xcg;U9-HA1pg>$&%R@~+co($RKBJ~2a%T#&
zb$78h!rri4-HhR!9IN1{zmqB^`0o;yG6W{mvT|}&84;nOq16H%KmWF>!K-V)b5&;y
zuS1`edzVMH47}xkK+mq^$qxi{Y*?4j1^epnAiTv2Mym$}SBrJ-1`E5LCdc!u&0CW*
zUu;-i6L_loF$8Ti7JM#psx4L9b^V{XOABwz$lu0o>Ty=u7DxNi?2FheTBp10tB|FN
zva@@MH<~OZpn5XTw_263fO@ItZ<XdV?*P)_8&Nc72#~BX+#8Ndx<++SIWU&V_a^c)
zquiG-^15ZtyKHf#<s{gIb6Cn5eC&ylF*<a_`(|7w<6kaNCb7QHiZBCPogUfca8~i{
zipx|Z+54}r!UZvNTOq@&U$6-gi!dfqqnh-F<;T1YhPbr2uAc?KTBRTVIi-zgD;+kv
z8+ngX*mdN+yzaaq)L~>a3kwTQ(5EY?P3y*2(rsYUkOF8G^i~1A!dG-%cCQA2Ho180
z9}yWj2jDR;YE=r~OVtJ2hLvsL;3}DNC+}+_Nc<f6&l#f<hMd%)Hf>bITKWrsf|Z(G
z_Kp1;7kVa!AUh*F0IMqDjY&T;DvZ%PfbM&2?8Gl}@CYRCrKEFPNYh(o0n2)t8g@*(
zK1D?E)WUi+ThJO16uYdoc7T`ck(T_FGBIG}R=taT&3=3GE#4~Uw!Uwt(2DO}-Z<kn
z?d)Ql7ox3rr|3rsZ9?Zug3hiuA?<TJ#2t^P6`!K_&#K%PKmDYHcUvl}a5-I7jfhlG
zPlpvdU(Y;R{|MQYKS)ykC9J}BSJBu}$DaD_^`qU#AG&@9Y!mH*Y{}1=916d(!zjFD
zwHsoROTnN>uEw5ET6f5`fXRR+zu4}0c1u4iXnUI{5uFcgNk3ht6PE1n_~rLz+1^;g
zwy0EvU*&;!1)}2g&p~2~ENa0ctcNFyiBHSrUw43VI~9;|uW|gY#wvZ$NJbL|W)Ptz
zolE3@v`0>2%jRsN)Yr1VvhMrma^U$4AM<XPh?#{Y;!q#(bugW;G^*|+(3!slz7NkL
zCXf$6a_G(-&Ikp`$Glv2|NIp=2bt#!LI8kw@I!u?nwrW22BBuzuCwvLwLc74kOlc@
z#`D^*3h`I4tXu1=Cu>Xr=a}Kud#YkR8LNbqZVa$maYQc~ifywCCWOac?~l~oL0CkL
zEcQ>5z{$E5`E82-=LPV9>My&vccZ39MI#e_F2uiimGvzN^0W1Eno4;NgI<mmRJo>S
zZf@==g(5MuEvNFi06$Pb%CIX)mzej<2bH~(mK$yYamC<^uVjOE>MY*&luNT)6Y2Y0
zp4!sE`zPAgWoGQ9e^mhdh~^=*`^~Jz%bofA7W)<uZ=2=%8rz+cLM_!-kpWyx)=P;{
zOT<4S34f=e^((Em{Fn{LzU^G<W*>LqG!rHrEi<tqec8@pLP832ADUlk^$x-i-jopV
zdMZfBmC_^a5OM(*ta{yaK70M>FULm9^;>;A!1*1av*(&@B&;lWWCFwlyQB+yyJfky
zjc8EHL`|v?07=_rb$J8T%|9T3B5tH8RiEXBWAS1LQf}mYIahD3?XH&uXED3gm9{qB
zjI%4Z*6w@Ee=ZRR?xt9~(sc(i2!UfSIRbaCO`}3TAu*8_u!t&P(@DvCBf*unfsSd0
z<q-uKJ;>VG*>UwnH8g(q&aG^N?|%gdm%`ZeNFFd0eg&~`IUYBuk4{xW<ng6g70vYn
z>ASBgPJHYEYk{k?m*jgvOcvV@xc?L{n!#9>)2JZbVtR!XAbx4;C{`P=z<G*4Ty1Od
z-Pn?`KU?qO^0_@*Psnc*wVEuH7Y5l>b|JnM<s^M{`1w+OJkhE&((zT^=UzX}-`hK&
zf7v+A?Le;_(|PTVPSS+osz#&2MYW6nK1yM(7KIZ$T>g3S?I{8<IZ{XqYlBf!M}M(?
z3Y>vvoIK~Us(k*;cC&o(#o^7{HJ>)=0+7QvcH~%#JNU3cc!7l|81cVK4-yX8lCeek
z(l+~eu&W!69J_%43xM7N#B>fo%VVp1lR6J$>M}38Nd8ogzUO~Y3D_9;Zg*BU2#7nm
zwU7Q__t;0)y56%$m~kew;=V*7<%5<$W&a$V+NNC#=7@BCJ;ze{U)tYc<o{p$`zZFM
z#%=OT>>+*WoW5TzTc(IKLC1x`5HR)RS$cfU%&O1eY!{1-=}3I_;;`@~N=#cjL)Z6e
zW;THwX9~r-0bs1;)>_YvH)k<E1NlXm;0Zz31G;~NqAybPr7fTZv6GWg(g(tdJOLJi
zE#Q_q6#mrTv%2DN{tQe&249q^+pd9tE^|2H3d~Fih&MR|PHvBCCbVN~A_+ND-eU^$
z$hH7Sc!=v3;0r)3;PO+~p$nlJIGp>-xG%^rI^i&p_06nV;tsK($Pqtdu*|G^W?QVb
z@`5oUz<$6q`Bgvq8{a=tgi^Z~v;f&kdcme<EaY?xkdMtNS8o6de9ajB?l8pFd3IY>
z6I5(!HvLl-wrh;2Nkl`}F|==yGnOytu)KwXx+LZXe)h3sfUul-7<Uxcfd3}?5xM0K
zA^yeP<zayp-M(%{-D%Zx4~62;rwi>IAn?+^&@U+U%;pE+*lrJv@brDU6o~bQRGhxy
zl%w5X%j1n=8mP!N0g4=UtJ48oKfvz-oPcsj0jOmp<BleP{Jst-?zn2!_2Ccw^0rg)
zvS$9RmAl$0rBa8dbmisuxxUw0zZnV7&NoGbff+xXl${6J)%xGK$%20hESeny$7n2c
zePqX*)5r(vZTfG7^!o4~C6~M(M4v7{b;#-x*(w%;#Po)~koBwOGrpV~w(u$JdNj&8
z7ydIG#R$Ko*JJGmkb$zkQ~rIP92)a6ZcVuY=}oOHTz$2K0`ymDxwh4B%lAXH0Y%-R
zg!*YdFk=gb*!&)`X?1@Sib^2;#edYV(d#c3-~3a@&Wgcv30%h4hs7o&U3wTJFn!Fd
zPciq6O{jGv9qdkxt=+zZG<C>ZJqyX%t}10*6DOzuvvBxs--Sy~TmHUJ9C6b;q!!SN
z?(~(0WQN02t(<zA5WWEQ;FF{zFqzi<%C|<B`&GAjg@je}l|~Px>SlY+<CrJ0l!?dw
zA4MLvYJ*_xmv>1EZ`ZU#P~$uE6@S?HJ7#*6V@l%dH;0=*Fs{PkyUy&eSfEa?*{-iJ
zT!*MIdS`AS02H(e*FV>PWk0w_Dd;+G9!SP_5zc8$0&?ncR7rMEE8L*8I!ol+4CGY|
zEIjo2-B}dt8IQK2XyD6L{-Kn8kPt*0fuck<bUcnrzQVuKs3-E;IM)M@yIX=}_J-+m
zme)avoHx8fqscpe03AmfCii>NU3wXgD+!%TiY|Ut21KCm)&t;JdT|4*;Zdp25RR-*
z>4Z24C;nUw#46yGgO3>$Gc=2^TEjy3bo1}OxgT#uznT;TPm56;v;zBO8xXnI_Q&<!
zIRRQwsc|XDI{n6vOuK5y7SU8$=f*}6tguE;B_UM7X>5W`m40z?P#;C_4B_~QXJa%_
zFn{J~+D;hc@_;vF2T270{Udd`fCi>IR7hdjQ<vfYQ4cHsxusv<of>@7r~A_>=^=NH
z4|??3s9Z7$zdh}UwaN**_}fJDn+R*(X5xGGsybYeZ|qf>w-;Ln^!}Xm&Zc(-c7cL^
zg>Ol^etr*H_-SG_;ZJQkTiUxZ?HK>_BRFZa`P)qlx!5tJ!Ty#b3pUZ=?c<h;ICdmT
z4$|YsRM&7Q@UP7#_fCfz?1gYy)ch806Uz$c>RXa!z{pRR=Z9Pt!xQ+MJ=ksTiyCj2
z{V?}y^(o~hMiZK*7)B~`+h|2w`M9!p`6p}^b=?FG*!Ju9XA^9fuO_lCgFkp&EKs$T
z!!a|LOnR@2RG*ha<JGg9<!cDa%=R}!Arq7x!%0<?BNGK{;NRQo50uR0b1N#S5P~6@
z*vATq=E(VrT2?yR(s1$~cl!YyP3Nbjo4-5Nh%)8=s^Yav<ADQN)~~G?r~GcU{T?9i
zy@i`Z$^^>kFUE9<9wrOwC&bOZi#?nijs!pjRe{;50y8&d$&{k7LEGgw7tP{Sm*XjA
z2;q2Yg}x8}=U>;wEl1UnFRm-%Qa;-oyI^YBi(SR2>vO85WZ*jQ@&O;)B~5A%xvwem
zW}I-2C<)qrsl9ejN@1@td%PWzE^XdiKAtX#{v*An<aKjm2gY+c8W>yipGX`^v=}U{
z@H6sTOPH&5Pb(}gPRHE$Es{(8KzcPuYcHp-e-u2nv(a;$7wpER4m!-h98&7P_h@ny
z=9{vd^tW2(P;y?Ni7gU#N8bFz*hU#b>J5s%p?+_SHs=!}ZB<}`;P67O_`XT-M~mXj
z@qp*R0FdNat+lruwcV_`{Xw+GAo!Z&xtop}5iMfweO#C7%Kj3OI}9A=_M+V-1%N-9
zn_w_dlMkP5^puSV0bD=bk0$`RYPO7ma;mYn_t!J<OX=r@_|^dmZ}5sbN+}5*!!7b2
z`94rz#sMZpp_!=TNEl?6OQv8pW5Bv?!R<vF2~0%hgS_KBr9gaPOExu%{Mst3z4(S^
z-82Z1nA2S?l&J7YMt@$63*x1k7<5T1Z-LUdOvm!9SBg31l_nwGfwgHUx{y;a`s~{a
zJL?*vmU?3Mdg3jinmkCDR_()UCyL6kPKHb{?Zw{SaH4WMXBH+|W4e~hk?~f4lo3XB
zxy!Vk0G>kR(Y#>qt%31GmLviqI*I8XiF0UEmTcvLp?3@rD5#jGT>4S-=hkX34)Tu4
zI3RAe-dhEft9b8jH2F;fE32Oil14Y#hX+Uf{o}LFjgR|-UZ+TJ)T)Jt)t3R~dnpp^
zyB1ySI4IzB6jvk~n*fa7%J>3ybttS?_AOiw?ZG$hiQPl?3*wwl=UPJ)4nNdjW$ioS
z@t_aZWJGSHK<=ll?gnQC$;H!V<K?gt+nqgR&(Eh!mF%|L-1fyH#Ajs7rZM!KMdfU2
zq`wY|$~UkpTtD-SiL~v1-nvEyT^cZ3h^nBUy8OP+fRs^nWCLZf)|h$$>dcX|e6JT^
z?j{~k*Az8-F7!J2V0#UcoWvS=SBJ3Mlg}2vDmbs^V#zw-HIZ+~Qmm$XU@m#?Wt#zx
z5Vdr>0WffE)JNXvmH5*TQP}~Ce)-Hgt3`5QuUg+&sr>+tdjyoIqUM@a<sWjd?@#@q
zq?(c@swZd<bz82WcW0e&>{W-wxc#VP-|bb`z;E9SLETnd=K>!0mN03EZ%%7rh{s&l
z1z$}*RgV}`=qG>|!NIk)T2<Fj04h4VA-o039Y2DOa=n&C_f<e@D)bW~3cXVnd%nnd
z1c*`EN1hG4%>_I`hWHqS>#a{fccXRvL|TEzr2LvQySj<CB3K#+-eaQJmk~IAzxx29
z5VvSVPJE!ys6*%8YmD(}(2&U*Kyug>3_AVP9$k{@irD{c@&zTN)L_rSNpnVC>l~FT
z7qkZHcDRlb3^94Aq}V?Uw{O_eulkRgeDiCM)*3KGi&1>L&^z06Lo`QWlTIjG&41CR
z)Uom;2!y)}nhUA?wrDStrNvxRa^4+1_rgbOW?wv`I|l}M3$C39QDqXLB;Q{E>CP|T
z#0u0wKaaf53XbR&ggrbww`8z4khryqVCG^d@B_aFfaoqZ8q(UjXAiLFvI)qW2enD<
zIG!*C^zBHSi`evPsW^PsYARCwf-xf_tyh{dFPEKU7VZNIcEY*84tFp3_Z8V!FFmUp
z1q{}&ypprTgU$L)VaB&=RvE>A^IH}ns6F`W(2o|4>BSxT3N8eY>?5t6uk`GqrSn{t
zaQ#7R{Uu3d<|V01S``1O3Nwc`K`I8rfaqDX+BXLjcJ!tdpiehVQHB4B*>qNxOIIUz
zck%75)1qraj4&UU38irrx#Q|<W-Wa@o{rU7IJ2kcmU(A9_}vdr^s>%@t`D}HORt1y
zbAn_vVGP&b?8zxOqjz(i2dhfo<>^kXDzBaV{zS(v{JuHOv-)8uRaR*!Mx1NTIh(yc
zITnb&=ofM}0F0%8E3JXdW5;(FL3l<=uI1!#$lRNf4uF1<olEAUszmTWw||eTHci6%
zS41qtWz>!GOa^ATELHrM;M}(ho%hPd@&}sxL$#OIg8^q6L{0bAIsFHh-&;MHYhyl|
zeJyPC@m>#CI%|!r%W~ySyUfJgyTy4Q)B>ZTT(&-*`%JkBW?n7X`<IG6SJWsm7U=m^
z(<49KH@lx&f|>4z2jg=|+0W)43mYpdKyh3ZMocEXu9aUITL~)-LuXJ!45pu*pbu-%
zBR5H&^WX0=5!kDQu}y`$eXf$#HRp|CY=H8(5)D6`;2Ra3s)S)+5awAWtBgp#);E+E
zn_dz);~7E%I!zB+PBd92%#hIMYKKjcVLgFaq|4ks%oBiu0F9TSs8UDuBMD(Ju@Hy1
z(G){Qv(2BzB{%?ofB~TqgQI}iCqg71LA<`-otfumc$&A7D0!?ZoA&zCe&be5O}Ut!
z0MQ2G3mYqmQ2(1owUZ~w)H%53YnpYvt!}EIizU4cz1U;A#i|9^ZIiIXqhIX0<_R<a
zY-D~W<%Q_C2j&C|Z(kEAVIrPybjIna$Gu?yygQNsjKFZ9o47k)Es2Y8xY=$a+S^f$
z1@!tfpCB>)aG7@5omM6WypEV8#ZGXpIjS%XePK<C*gF`E1Zis4uladfKLuBZuz*7T
z{Bf2t9FwMMOI9V}O*vJQ^IE#1ttl)tLru9F*~@tHE%v8xDi~q602uNdQrrUyEwpQu
zW;I?%SWEz~37Vw_qWZ2CLKyIa6dhwx2e6wE=U?aqhy@8dH4N|z&Z6!8Or*7h2Yrj8
z1$q^R4*^lvZAC-PaJH)ntqWYx{ikC$7)d;~+xMspZOmn1LM$&X61#t(FK4kG_BuII
z;AqQm+$C14(yH%`o^?3cv$^B`1}(=XwRTTXLST*dUfUn+xa|VrS8%s)w*+A&?l!_G
zV?KMJ&*@}4_alWLt@gD8VRM0bK*a6Cu{);Sf}?%TAc;@!H*E3Tzl^8#alepV-}{8E
z@lv}_yxSvtK;Ig)>zMGFQ^DNaI@v2xN;}nO+{^K{6YG@#e}V#rCAJ;k$<j|D4BjEP
z18uFiLL`+jr}ccDQmqvrP~b6q!!_V087^4Y%O{W0Dih3TdI>y`-PDSEC^rNAnt@+Q
z<1E2v0_;v!nA25coi}-%r|_^Dr(cq=u-dJxA?PTSfs^01xTuy(kT}tpW-i#3NJrs9
zPO*#60zblCpwB%b%b$$Olw+^bs8AW&u74%9tK1)YM!Jh(MBJk%=EMV{dP~<`LE<oL
za@G7bDP8XT-OT|VZrx9#0=>XQz~t1izxNtZ6&3>w_X1123^62WRmP_!i}{*0Wqk-1
zw5FwR#VrCwh&Skmnxaci6vVi$tSO}O+Oa!PpQjl`F$SSKp$J@C#phgBquyNh_n#HI
z-~To@eH(r_j1iU#-0I8R+>E~Vy8Zqfp`MYp?MH8qcW#jkVp(xT0v|cKfiUf~r(I~)
zS!fd8K>c24Y3DQH8pXKX#JMc!&jf&EvNRlBvhp7f#lk{5e*V_<h=Go3{~#<ov-w@8
zY(VTb<<RjBozfjz3Uim+VcGt8JrgG0qW5+gEb;6hnRrBy@;OZN23q~WhenPsL;yBr
z{r+OWesJ1e1O<Fnl_Gkws_NJ`Amr`u(Eempj9?@hP}G(<k=s58(3__#WRT{$W)EbG
zue@|1qW&8~f|vwjcY;jqQ>qpU@`F+gsOU)go*j3c5l@9|w-3tck2^@!rq8-^6N9ze
z{wiH8uksY551S7j?<iC2js<RJr%P&%PH|jaj~B=NlAg~8j;QQ91JcxztV^XL(;&!Z
z)VuxBnKo>U?R=7d*)kCno~_H@Eo!>DyGpSLo12-XVGcyXLMZzJ(KtN#%U`K?VT$_L
zi9MU#DYOIS=!)gg0N5i8W2H;;M~cqffSRF_ymyk0L-DrS^fbnvLGs??$@@!&`-_#+
zbL^N%fpR1?R5q@rSoMAffaZm?ElL5Kk8B5d2l3BX;KV+3YWNmF-`sI4zRF}oJ*4IP
zn~`U=%H_L((MHc=JhbrQdrUIy9rhf<)_JJo!?x%wn#n*+9RWeB#=BRKTpUp?3Iq&T
z*Pl$Wks>JxsIpu`b->PM%kc;p-~65veEkbfHM#jAqI`UF9MXTv4;j&9*{JAn@DQkM
ztB4FY#@RFCpnw<+Z50zY+5Yc2z;E*qdk!9&5LM=ee~2~DLbIJ~ItAYI2f>PheqelO
zHw5kOrg>mX<0^V|H;QDR<wj*&$&XlQJboZRw8AYmMcnw=2^hH&Np6i%%loAM@aX=j
zV6;^E(<0D6_u=@?JFnWF!8uEciS2hM@%Iik$@}hn0*N+Fh)noJNEgjc2+B@K>d1)i
zgl`Gz2nP0x7+x$Oz_BEE!S#>@>aaseZ$>Z0W#3B$h~RViA!|E&B6~7{pJliNQ~lp3
z?~YZ=!}SVkKtr;54so63q8S787iKQ%k<U*7x%_xg?l3<2q;|zt{@A?9Y=tD7*H%=(
zBPJIXbg^UxBC(!2^D>gAlLqyf-`K)1lSoNyeH4nHtTEtTV^iH0^<2J@_Ve=t6zan!
zMHo#{zbWy&54EWR$?s0*qIH~PQXtv!vMR_s-ch2+E;7%Flr%&W*5ktq6+LaF#*c_q
zhmp|oBiw1foP&@Rex_ixdd|Z0F^|9B!-fIieS?u6f7f>*e$Wr5V~wd(&`5Eh&HtkP
zI1$Q$DUW}mgQ0u)QAN@a{CMZ<V*9%uHy6*{afs|Ze|^wD)qf~~UOl}p+rHhi=}ppu
zIaPEW2cKJNDy=mV6B3mN!q4*c^s!u|q+BjD`O26sq4M(e6_|~OB|r-=e6#9ZapltA
z#69a`bu##9qyvxt?_e^p7rFOy8BQ@@1m3p?{WdQxMSgw6<wyomyVh6hB;3U328ddn
zpZ*!DV;y6aBb#2F)nLTbunkB&$5~Ux??~<3z!x67^(a-Dd3bu=KlW@-oVM5QVYL+t
zUFXzo+ht4*H-}I{@2B3fKT>W(aV^N0{Gm8Hg<q*eZF?;bGdd>5gSVq~IKhVTq8nv<
zA)+CV7Q&R)e7X((tI*CZFoLk7X1}Q0;&T_#r!k59edQQ}{%{G{Z2?rQL33|%rYM-Z
zy&Hp_@3`0XM$bKqzQ7a)aW5P;^Vl=*OoRMxhRMLke)$3_(!Oj)ywmkGy4OGN=&s!n
zYua#Zh~hl?_oDidK4C^k=L`{xetZdb`?+JP`12rSmOK^FQINtj<(1HV*1AwSXbD%y
zeW*%&w&27=TxGZOJ!tNtI94BR@>+PndFg8L6XaSi70GIVWan#nTLbdAh8f7|H#-j9
zQf!7_t<;R@muW($)3yqdn=|iuQAq34HJ{UA8K*YaQ|;8V2~Rb5v|uwsLM~;C4B!^X
zxfSFSRYl=D#|BDTYe-sg98lc(Rcc%~ImC#W;5^|Q_cuhMO<BbAyQ6Bh$wlkUsz=S5
zz7*srf;Hx~_H4=9i4jhJbJ;GZo!skVoeazsg;!SiOA_nReC^dKT^rIPQM?2R3DyK*
z8gYgjLg+hLQUq+RxG04;ymPv^bX)Sz3l_O`g|D3thFL3W7yq_K^0Oi!KS`1tl+%dh
zlP`qhz!ETzDqFb5z>3p2nr<s_w&7XKjE6NS^HghY4oZD<uYGz#fMMgWjImHf;S16{
z7NlNnQ?9Zkq`-`1F1OR@CtnGI?_k!Pc^`HEVz|?HY_eZ$gxyOCOOUKbs)3PDWQ_<v
zNvVLjDDAMPyhe<MN|JmW7|zwNrlDsxa!&c6y19zg>PS5-Xl9aBuIE@sqI0I(?2_Iz
z+dw>$jnJh6*fwI-sP&}G!VNJO9}&7wAf<l*#ydha(S3^2;k3JYNT(pi+}7MNz@rzC
zA>;Qv9f>#UmChUEVy``C5ckR;sC1fDCH9RnMKTQY(;E;(c6)0|&uC>gvX(dI3oMik
z5EIl>dLO+xOzz<v6%H!G80H8@BDI%Y4Wd#PQhI}AkJzq;>smS3cY$ySm7IV*FsF{`
z$Y5)}^Zn=K0h=QeY1{!uU;f^b(XR`9DZ2oRt%OBzbYb0JmJ%&?x;iUXxi<rVpJ$b^
zG$0}>!j+aCX|t<e0s*sxK_>X#dYI0SqQ0RI(8tqUNF*IT$Gx|%Y5QiMKhim~R+YOh
z4Og=baW7{s`IAy;KHSsD-&(mi4Y(KF)EnMMViJ2swN8TS-m?HA8GpFl)4ihAq;W0s
zEm=T+7HgGV^|DL>kb!+Lb#0x<Pa1uolJ5@>IX`dT3pwS2IQJ?F=b+tUbiM9k{+LJz
zS@0Y~wTD{=cUg6CVSXte`xVoA*z6h)kT(15!Ux>3<tvhn4Aj~RFILDHQo?1zvv_@1
z3w%R;{M$dfvEP{w*b1*L*r=)y^8c==%v<gPuCE1V=SHD$yj4A~X>2x}G0%E9ht0&>
zlcjI9k{8&au<hAtI!r<u8jtl))l5In#x|pvpK6D@bwBMjrN3U2SKUk!?&OnKp^3;4
zRrTamdSQSB^5O^HR@6yHz>3xzeGCg-12{CiR;5Hd?Aa|e1OuK6D*v2rq{l=xcD?r^
zAD+2Wq-rb%g9lFW`M~H6YqSoku~O}{(4o)j+BBR7&KX%YNuW5}S9dwGFougaCUB74
z*2ul_1j<$41up_wMFqm^I_N>4lT)}5FZQ5K$eU{Rz*B*aX&?SJ@6#El!K>IsA)vKn
zPyrD+{6={j1J!Rj8KwHL9*kuF`blt@g|(M{x@&0AS}7Kc5E@>^DNN&?<5r}2TBYTG
zx4-3-?>d?0URDir^3-BmUH8a)o|#9neEhzbR@B=p=vCdT-wp9|IoKK_e+TT73r-`n
z=4(&e{d5<-bdF6Y9A7R-$#$m|VyE4jKa_or$>0!N5vAwbt=KPhpBI9p>R7na{U6`V
zUUPPQz>EO+fsqe)dyq!JmlqxtR3PJTF9Pnsggn52-Bs}d=1*tKd|D7iW6`$cK#&fz
zk=?fkb#v`J8P^q!+v~FTyO}q&dmdzGL;f_-C-*99asSFCP-QX@8Sgvl7ls}AOVJpu
zvNZ7l3Zla`>_Rw1O2Tx68|;3y%|*w3N_n*Kmvj5p45gs!bkKkN&aw}()>KaV)<#oe
zGWHP}jlwAPnhlc2eA)}J(C06Q{2_*(!K_aA=**|Apj*lXyIe&LP8kBMRgW!nQ5NJH
z%}~Q8G6rb4MeJxZ-kLAd2`~AbGAWaT!&=Q*j|54ih9+ESC>PdqyV!iQb&z#mKg(Vg
z_q4vrJ>cCD+aC|@UGdzLt$DpTvAf{8H^#brvn{To?zAns$Ju^cvJmTNQ2M&Jo-Vvl
z%B@6Eg3)Al`Io5h`~WTj9)asi+EdF!VJRtLo)XND^1XQL0s$F<Y@8;S9SWoJDyBVx
zM%|TVLe1K$C#2!`Ckq>s*<9FrJ`?{o5Gv&G5rm4V2%O}4X7O3a6NyK*TOE->64F}f
zwSZ^UN2P0|@Nl@$#MQVIZ(UAfJh+VOcT_5%vlS@e2ezB*gvKAYNePcl=h!D;{vS!Z
zN-J;Lp1!`-)UH&ay2l-YcqXdBP+{`}jJ;_rm^B*mQ<HG`KE2%E(Zi{Oc_SKledL}r
z=lIOog!Pi1);I>~H=6Y}TbU8=8c{R(LKN#|>|dVJoooyOl6kCWj)G%Sc^R3M&yJDy
zk4(C}i@Z<4tUG49gBN2XZ*`G-1yJW7|F|dpytC^TRCDdq_#*oQ{E3H=GiM72g-##>
z7kTa2wFCqTkD2rUT=~I468R$2bbzg-tR^>zvps(PegY+;2N@Mtb#0Y{Qs?=PJ07k|
z?LeX?mqd$EEPT1HnKcE6^7J3(lDK{kfT*+m(?*;O6>%AD<DL4{b#MglKNOu#k^r%p
zQio^|y#6oE>7AkoT2TtN!i{TWMX6<2HTn~&uRhOc#%en}df1js$S#_U^#LFJ8T`-1
z$=>K|Q3`@db;zhE8tg@Ms1KJ#85K4XbPokYTU<wfHApbvVy_102(3ktP}s2l{yu=H
z+V_h*b;bvw%JRf<`LVe0hllH}QM{6{H<H!6{%#7R%mAiH&w38S*oWbeGQ{@ivw+`g
zOoT2=bgTFo2AH$YnWw&SF8g&QwFlMpro55S-?bv0*k{elHtV__4^LasZQTD3Iii9*
z#2p}a+&4{z+2pBgw|w*YooW#c2#oBDss1*F#Id*~tV!6<&z?aeIAjYVc~thQ>%P>o
zKYKtNliCd&jJdap-*5(rkpHOBdwMF^PI-DFh!Z+Fn>Z?@Bn{NrWt;HqZxOz0aXmDY
zb7%8hs<XD@0h>6Jr#>T}G~uGmJ}Qg)R^9p9e5o<Kqm+71Y#d^!ik0bR*D)vkc%PKV
z9<Q0nM8?0r<lbh9080Jd_&b#3C_WaDy0yMBg8op>rAT)JfKXE1-1<{8O$q+4WBq(C
z4&|g&>TeRr&b7<b2&FjJ=cV#lI>L|*;sAGAMvl>2tErB#!7UvMLp6!D%A5)t)$W<-
zYIKv%7FaZm^`z03G**KZT6HAk8;@xT#BxzpkeFs%)JKq^I7cgJhxOG=@5k=9^Pp!P
z?_<c?iAn6rNK5g)u8k5NVQQLZ=cehak)L+4<T{Qpsq8Qw42{R~`NL%nOf;-+SmDDs
zgkd`Vcp$9ZoQ_8KP8cM3PwVPpa}|DZ&;*&Pj`F%%J{PNZlD>-MMvk*{E`v{Mk!Hhf
zqy^AhwXY;5N%3C~?JS4u;Pn)-M{fN~wgi8G|2WB2bX=KA-{XAB*<UJV)kVXsm%>^U
z8cAQH5QU6-Q(DVpkfQjcQtfpN$j<~iZKxfB$0l92zF%wd917O>c4j$L35arPorRea
z(SusXVDwQxKnv*F6px;$SQNMZ1>ONv+9>MmB>P)lm{=Lwd9r`cRhj(Z`tUveiN$T!
zDap02MI_9ivO!7rPU!l86G?Zj%PMi$E8@+Bou)nG)wjXlwBb40E<buJIsyaVz#6+f
zZ+n30lL|1g)XUrNztos*G-}s=Y|9_o)X_V<9QNwECh%Dk2sMRp4cw~l#=85;x+M=|
zJES~u5K?gGhcrbS2Sd^Ela*hd?}fpMLmQX&MppMnS5c+xG3Vz3lmQwt(Lp%GSCt&^
zSeGahr5tX!`XoH^Q>PI59FF5?)~Nx=;s`F1Nq3o%^|(2i(`)pB)hm7h;QVEzR!HKg
zxjm0MDcUSU=F}^N+zavb5gg<U(s^vPlu#{rN9whR6_U1}aTQ4(JoglHSrYq`IDfa)
zqSvp`euouX6Ynvd_{5nS#qb6)lZ-++HF`0eiojirBI)Cnd0nm4aU4vSgz|z#d&kIx
zJ%(Nc)i$GUb7mQQ|CJx~NW~#sngu$Ub}pb2xiQ!}5tis&w(Y=**F9wV*1}|audSgw
zfWPiVdd_ZHu$jR-f~svd3l68=P=5PR>x#aa51Z^e?KHs;$*q36@AGyzJ6y6XaAMud
z%KBlR+Y8wX&YcJqbp5gwbS?v~nye`V9}AqHqn|~s`6eL%Cc}M9xyt}kyUQ6R!5bh$
zsHyW>C|!2*xkBFP6919iVRH*9yDK2MI_ygJHR~4IXhRXgT7G{2!-QNcSA}XFla-9k
zQ$<X6I&6T_U$@d+ymGyL|3{`xZj<u4Pu!q$0J};sbQu;F%}h0@E;zAnF6NnC!it)$
zT_WJriz}<*d#>OF<z>w;Z-KX%lcPdR?n}x|J0m6+L6w{wluJQ$39UuUljDzMiS#X6
zC2U$GOU87neo2i49J-dtAAJz??)!siyM>efdNKauOZRAPm&86{>%6~7G$7Qm;#Vf|
z^Wh&Ax+1LbP$zSnH@dzHB*ZQTbqWV_aYu%SFWY`SoOS+ZF&*Fpj#4ZkZ9^gNaLxW?
zTF6&XPy1T=A0Z{ImZwtUhg|r3^s|5}+dy<aLz8z2f4;{m8r(lkiMQXs!W$#wRD3%>
z@HXD4o<dV(Zvb_yYK7eDWw)v{ARA(zB)wJrB1z0A@58sNx}V$^O(`lO+mG%|bI#sh
z(2D)}njF1JFZuFhMJGS0g?UeCM#6B`r42S#73_FH5v~D(J`n~1)>VL44SydRTTwx~
z{Vx(_vwa^*NSLAP_*->=v0f{`w*D=swIV=8OOIEv$8f^-{lJYa4dyGXE2RU7FG+=e
z%wt$sXI!U-n8o;Xzqdv{Krn>u_o1bF_UZ=sQ{XU^BrX*Z*=>YQW(ID`Cy^yo4T%5q
zQ>4XvybquMYrh>J1$y+C_$_Mg*FoM7K3Cb<D=t3)bO=F|2f(|pmhf<rU8Nh5R~-8%
z5`0#upjr*5Pxa(<jRdD=>+9-yh#A6L3dp;7yj?XqWrv~DLOCTgLhyN&RM@!q0+24X
zedCymu%{Y$=by?-RY(*HQ#jpvBt2AJ<f;0nE~3X3+P<et85bN0O=tG_958R;9hw4+
z;wRWm?1u6yvu`&_xz^Wl=~grsD%Si7)48rq7Hlfu5O$DEyO$>Be))%^re+-DCnPg0
z?9A19^a-J)vMU65@*DW(zNfgO3>vB(2vapfH65DXfbgTcy3?&{(Iusjtj%LXI^itB
zYgR)oGkL7OQtJ^S%EPxD&(0nB=2-1&N*ZxSyd~ru=Zi#Km<<Mb`>pvn_uU2Gz%T;S
zzOo=j*woz^1ApNmgsm861wvV^$nlS}&AQ*IIC{P~Z4Nr|k+}=6c;=hXpu20VVlM)g
zZFI)@LcJ}0C=iVuj_h~c#sQoIWX@6aPcH@tEtT)J0m3!-K}Pm@LgWD)wB!T9iWM9L
zdSdp<fc0k+aaenl7vtTh!2wq@TLkb=Qn`@Gj@x8QReB$G>!pgXpI75AG!GdUKlWaw
zTByo}l!%->ShGYzhS$jNuQ(Ev2lz^=S+4QSVB!x)o`0~>nb4oE&H<C~HkLz8V&Z?C
z3Upv@u+SWsUh^vx13w6}HxSJ6KAaIu_GorgIgDvmkr~6x4GqTA>Z!#3gJy$y;4{Dt
z-oIz_-N)*ssUf2D1y&M}+@O&kz8q#F5ITC+0UNm2h0B|3nj3^leyl%RMBt>jM}!mW
zNL*4!y^SYObzo}eFBs(BpqBpEjuQKJq2DVgU^frY1nT$;*tOrIa1mEngnRXS<3$Yl
zWPYw!BRq{)@&V+Z9%2fTkPCh36*ZKlPg2Yv!=|J9bVbQQbv3?yk0z;GC709Gx808e
zd>E3V6hG$?L7}L7&y*7|SIk7?Kmnhv&P-OJ>(K+t+4^H<=3eeIbYXSO({)=|Fka?$
zG0!Wz@Y%Z+KGV;F;hXcYSl{*WD7x2jnGoirZ}sy|6B(7uRiZoezE)I5VRu7o+$jt{
z;#pBvpdWQ7;7N)}VZ-Bp_(`OS4YwQhj<tAizr;d7_>?=0+lgg2APtVi>l=!c91D#!
z9zMJ{7GC@-(vJI?v+LPQw~28ZV|U-Rz4ZN)1No=ZgOgu;5jU?}-<-9EqL{g%oNHv>
zFfMZpsPgw<#_y%p#r>DaN9>sTHxoW60L_{+-C<aU1EU{soe|)_0?-?Thvoug9y<74
z#Y`NRxrPHw922)n8bWRFw&>CPJAC$y%sR{C>ZC%fR~0kg6T4PglsC(BYw0`aTX=3R
zidsZ14pPNu*Zgy=^xLi`*Bh&|H`Q3P@%^&s{UT?mVOdHU6ED1TT|Hkf`0n3#WLB*D
z@|Jj<_9$WCffAI!B1AW%zDh6w@9|(%K=T`wpO&>&?J3)C{~lyn+i~B7RRs6zlz*Zi
zp^~i?^ek=TytT46rtE)lOvq84(nPtfy5?fh9UCRJofg4*ro9y12+4#Eg(>lh6|S#G
zvwat_2KYNC?oKIpaC5dgB%3*HXFNYOG)OFRf_J>{yn`pX%^z_-bD58(a`d~$#dRso
zE>~p1g3b*TxgVZ2RaM2Af)5VN)CvA*)<2+Wvwf)CE*tF@9?x#oOdnuIM#d6??qfxM
z0mEY*_2dmD8QQ$6;`npdrSjs|X0qA!ZL|4i-UQR)Pw<ROn&J3aFiNO`EclZ{kMg_W
zp4TrvJw1I~BGQH|7s4nASmlK#15P_tKqkajWxo3@d{)$B-$D1FCmnm=_VJ3Fk<*J0
z6=OK(sSQUdIk2D{n%<yq?5H3i9ju!ct`QPdzxc>9b_C2ElyCRvIO{rFaW8a8pbsYt
zL)m5f@F54SHPun?HFuLVTi<4@O~~ONK&11+^TdH++X}5N!xH^4=FZQWmE>cyW;D`K
z3HyE3BEwu5qk#g1<M>s>=jJOjt2|Q*BjL}xf=y2Y%~B|*Vj_l4#`0Ue51Cszd?O4Z
zmJ#N@rcO(?b{V$sI<Jo_Gwe03UmUC(%%$dI-ViuvK_B--$C=O&lxD?Wq+H?-`g%d9
zBloZy7eJhcy7-$Hp`}t_l3SY2-G)B4p~?5y&N_n*zg=L?r+6?9Y{<R)oFpR0&PNxZ
zP+<Vi`y7@vG&eI#=%{^v@orZE8KU<rvV8yxs#cnhg+h3H7b_U>K{<Z+R>e$#VI0PF
z5As`=;qO>)KoTgeZ^P>~q2KeWX4G|>t}HeGkXN_@k#6oQXTl7!9q=-EksH|9)ij@s
zbqmhcSwVRpoPg96b8WTIM<6J@4Gnj9ZtSV;a?<I!m{LEMmoEo}s(%!SyJFS6<))B|
z7Z6g{>(ah0ePuDLm|b>8DV0?-E-)ela7yIb)+uoHvC}b({=@)0>B5U-^0Vg+;froG
zPJUulv%9O-f5@EC_<_=;pia6NOs-x@&X}}9S)Uw$?M&D7DT1|NKSIn`a=o}>STE1E
zb_T=B{aoX4R{!S|!BRSLu3}t|A#3^N*79DWV{p!rI#bIA!4i@yTNXF%e8s_dL?2oi
zf`3&_zywcW=WtPE7OYrJ3X0iR2g=#~Y2K{Q$6NKJE^e;tKSbFc_aqrPZGuOL?seJ+
zo9m$q%@^7oH83N~tv*wJi6J9TcT*j_o9Wb_!Ah8^P$TxXW5JXg+Xs$JHA_-N<3PfQ
z?-E~0WDTj;TdsTXDeQVl1deMzd3uD(P<R$}2T_XqMG_<{K+nm}o*!}r`OBNkf8xv1
zhm-?=TQ%|Pb!}_8N}+%+!%68~eskrA2oLEerqHuM<`o_zVfDrO$f2B-vr`!&xDe=O
zP;A;xW0Pb6<|p{wk1Wy>Ny(_N3RPU^?6W<`=1#AI;Whj(6YooD;X_qBPk|huH&DP_
zN$(r|y~NKVCIrwv<M1nh*ctOs2XNkB!f;M}#VrFfXxKaqBUJqH!V!@7DjUnK4wf41
z4H1-9USsuq=*_T8yzgcA_w&OYFvMd}Xe?XvH?TRk+DihRA$AIW=dil<9vd4%;&fHK
z{+mGY2@8#pZQp2gQyc$lMx%RZ_yKos_gwe97hs%~m;eN=fALVVPB>$LF+mL)A}4rG
zjFD1j={6z$phM&Y=ma_fn-sENE6c=EWdHh^^RI?+7EAN)Nk?7GFRIkP49<>EVYOoc
zd~X#rWZM$XT)7W;^;J*Sr}{tFegaXw0*PAQZ8Ng4YkVR;tG|A@U`%r>?$}zK(5Xlr
z61;5RJ}8q3QmYYtb4PlTlvOVCQo7p0mp31<T)ZS0HDNiECI$BCwS6A<V*a8>x5v7a
zzdjo430$|xIO)M#eX)0Uz^6)l7K)wp;A{rImO|M8ma~h5v~J&46Uxpf(N}7}{5p}S
z>Bv?~ElKBYnfNP1HT}^kg!t=G;rrWvXStFNkA#Fkq8B!ILusX>9OQo*QqArg07UZ1
zy8gF0yC}Om%Z#%+x@d>*LdKb#UjZg=B<wCuyx$v1u0O_^;}V+znN0)Byr2F8@-)Xo
z)uh**7-&B59auiUUcPF(HK<86+hIT8LpvLKW|B=xsMHCBO}MYU>w`NH?5Ag9_XnKE
z5Dy;#!#{zu`}Ncz7s_`CtJf-NM$zIcQOs`$Ko<UGL(cHf$TuVWjeu%3>m#cEoysN>
zE}j|HtO_tLv;U#@>*MpVLpwlTU%rTZ{OW)c^``%wwQ#?vkH~od_Ff-#xrw3U81G!;
zl&<L2!-T)?JH>y*e|c|cejDP04B_t+3(v;RL&Zy$mu~NFEm@gi(eYv6t9q>_tY?>9
zj@pa%E9EdRMle6I=qhz-+k)SmP`Yse9H^W(o<4CFf}|CGqlq{014lMB&_4`}d|m7M
zudTf%-$4zR;9|K=a^>~sk9<Bfxei{+nLHh-ts3y}F;3NgBAoJCx%!ZLe4p0n<qTeW
zOvrZ<?-62sJs=^xq(744O=;Kev$vCnsaW<=tR<QcJ;wTr4A??Nz>rcpNhR^o{Ko)A
zcw<rmLEY1({{)c`%I{N?a_>P7!y3K%SOW^2WZ&q*r}GiE8n*#-MOJU+*(DcNZi_FT
zQDb^B#6%%%Kg-4eva0jmxcF5jFsUqr1)&wV@ZJ?we_q2J`lPd@RyzFtjZIabw0eL5
zb4dx%ZU`A#(q+p!2J}H&PW{Zw$m**ke&{*_cS9QYcq2QL_&1o4U}O{^QijxdfShwt
z%GgshD9SAiLKAQ~wJ`C#@kCVuo~rNX0VrYw1vH=gg(<tGcCjoEdtQn4P&A}C!n#YS
zb|Uw9i6b9k4@;zTI26U45lDkjLDP}0PQUv68bvpnA5Fkj*pKh?;Wu()m%>m2s?D-U
zpBtT$i)cNh_@iL^lmw5ri9Y(J0|Zt<{t#;QDR_cSxA<lw@a>263_In6Om2%nvrF6c
zlT$#b_od>2^j&goHqXBIh>z_a<muQxOj~+hL2mCU`13?vE@$GCa{D-+RG-!lIlJ^O
zII(8Q+j8!4{vPIvJQtb?88eEvhCZPv{T~$*p+0C^Q}%HEpUfgSUgv+Kj0hzeh8-YF
z#A;NXP~hxaW9%Sb`FGL%z}Dn-&T@W;-SJU6R5CAnpD^c9G~!qDu}qDj<?6mlkq|1v
z{xkSP5i3DP_X1_#ZbdY15i4Ojf-<Gqtbk>lRdr5wtk-8D{|GJqP0Amh6}Zu=2p~-2
z6*c%T7=bT3i<h*}z%$h^<`^%r8%=dM&OnlY^^eku_C=~*vz%{I{2i~U!R-JMC^4Zb
zPKFxB?9*<HrqTs&_i%Py29u>ibB7s47=+=F9lrL_M*<X0Bgv8@AwaN&oZiJ6@fYrp
z6xuvwkQie2mM9okV)3WP@p|%?GOfg?E)xQRXJps(EnM>;gESTOG=4{8{sqs108V)9
zuds*C{id4YMH1qf0etWwQ?(=WP3u8u3Dx1S&L52tkv!PMU_fRB{n8#jmE+q@sAx4!
zjO%L)kUo{^fCj47sY1^aY_oz^8d)F-tU5&@l-ualS&G|EvPLsdY~yyk?s^|Ek$`fy
zfkV^)uK7r8Y5K8YSM47;<9BM6i{(lIiGWx^+`bjJr7<f@`DF%Uw(ob$B>pZ)=xzKs
zh$6V$y239TpExky-2mSOI_e#k$$l-s!{6`aQxTY&5&6~ESi6qZeI~~6v0+9ZgtboL
zdmOB!sn`|meQb<T{pKiCpVFo1NPWKCY-@qiYr)oSGsUCq$ZOd^anBZK7EiNUnf%5r
zluJ#H$Ze%bylTtNYt+X7o7tjA?X$T~Ca%42x9)j=gOa$IQuN~~bg2B@Z32`Zu#v=i
zhF-<<t%Pt7s=OD((TCZ1+DKh9%Ba&`nu)4>JXMZ$lz1A>koZ0EfO4=XSoO0Dt=odu
z;3wEJJKO&v$2z!Psl_{O-?j6NTa+tL3x#|AzWc6OR}*g=T+C|}P0PZE($YRvytj#r
zP%OIBmecF&7WMK%E{FBNS-s1cuDcIzc8wd%H4Ym%8m3#(f|_MdPEvRwP{2YuMlcMg
zvt~lyim)*|_(1D#J`s@bN0^CCJG_Q2{&hxBt7C#ktAh?NPTq}}NJOt9rYb5G!D;#$
zkPM+N^G!PLq9fl>>mC_6_Tk%6vU(6SVU_=_032c)D6f!$QOA6+b7&t0f%H9H^?v4A
zE?)8J_mtGjkv(~5dIctRFu3agl@~)-TE69Vr=dfZ%cPvR=(~ZdT&H2?gs~=bObqqY
z*4xcU4k6e%dU)DkVCxzrP7r9KVrz@-y6GMQ1azX>A)m@OO`jP*g#Av|$gwO_y4U`(
z+<c;;qH;oRdbYmdMn(sJ8b(%KQ<wB^k@-$`!R=T(Gm=we5iq8Uc8emT9^!2#=X>`j
z7hRAb(~dNSwY~5Qym*HX6v)66OvUe?0T{!{zcjP6ds;%7&O2{+h!gkFim<8#O2F@X
zzM?y8d2r^D!FLJu&J_LIET&Vbn9J*3S0`Mq)|k!0icl%567xNEpf5~-v+kRdm%Tl0
zcGX1NE&RMU4L?<H-bm_{CJzUDwUV!G`uC+y7{%;ov#(tx7nZd&KyaVi^`MdoYkuh(
zZmzqVqUITEIYP^$q^)ggh(v}2Lf%>F?)LT<hjCAe=M`&d;AQjpnJ@W33H+H7rqzWS
zBy`fawY-Q7vm^R^j_Eva6xK9<jLZ`16ZoUTbZD6qA4nn{YI=^<)=?oS(hZq2$`{t%
zok)9A5cE2^8SCe;fc$R3h5-LFKubMIitX`CW8BQ98s;|Qw{O(HZv!GwH3$%bsNa7L
zsi7l(fc1Z^ypzpdV)(bS1L>K$Jn*+I;M9w;yX%zGJ`UinWo88-#|fOR_^&>$7!1+s
zbYLXmq`j9RM&t_HeLSpKve$&KG9Tb3irAM>wH<utA9?6IJFQCbfXqDVffdp7X<Wt@
z`|M&gz$$HbBG-P-hH$`3%TRBkE%r+)@9V>DChA6A@5Zdcu!jxG;^9P$aa@KE4ir53
zXQnolC-1M}I7H-H9Jj(OB!<tTWb_&ga!>xXj7Y;Cv>hZwN<?qSd)!1ew_lE=7~^MK
zr6RKJ?u{%}n8FXdkLldAZ?&x77wxpEy^2w4^y%$*w#Mi%j$>x#;A)zs5s3kM_m9qt
zE1UuwPv*YYyc+FK!OS%u2;k==rWpJTccJ`h7_2tw0k$hprka^{nMLQu5Y9PHFJ}iS
z@p+13UBg?cKjSjczW!FIf&;2DBIYwab)hLVQ6twS$X^JT%%SVb9C}gVJo~Kq6d7u$
z;&C<J-6WcR$`Hl1;=Vfa{}K0=QE_zJ-Y;}WXe>Z*x8NS!34sutgy8N3mjI1h;~Lyu
z^5E{S!3pl}5NO=t7SG;ipZ(sk&pq$A`>DoYbQe|Cwbq(z&j0-V_1R&MGsG<GOXR6-
zG!ZM!R~iljY4LN$NXDq1J=2Uni=mxygK|0(rxG?_Q+oW1ifIGO<oc{N5emF+PqCU{
z(rnkh;x;?yZaUmV=Rbe)$;4NYdUg$d8-nhTaoVhS8Gg~oM_iGE^xa?Y@m8JGHu2kF
zBI@2}<T8vmjO2n`S1}U#9MS<l=h7O>BQs|7Qzk>h%&L*meko}ES`s5Yz1*A4ycZ-}
zfL28KY}PQLerIde@QQPz*TYJCdH8!z;A@WshH)#aC0wU+mc!%}VEUM0KL7l>onP$}
zuC_h#@^+Zl7&aOEuh^P>GwG%y>&gNTjFB&_5lJ$uz5+Pm1RTB0r<k);it$%NfVAF9
zuM)fjv@FV7kj(se*83Y;_w+FI8NlVgL}kGw{DN+MoQ<zG{*gv=zn6<b8u?tENh$Go
zEMH3!aEZY0{__@9z_T;x>@I{`xb$V0xO%Z74BF1?!%oG5LTxjP9QYlZQM^IywEq(5
z5#zjv0%f%$g93-JDHQ2c$djIq^G=$xN;}Rr++NN5cL}kLjBea-bsg&f9AnbOp>1Z3
zxB5cEmB`(ppCvfNPpc;9qg*X6jzWV+`cjIG=d=cS+UC&>;9RP=G<>YL(-PK_8oQC%
z=n;F$BitOnw;*s*taUNtzui4J6Q@+6*^4HvnPOQf6&2{Ft$O_`Jb(7R6g*D_hU_K)
zsqJH5>PCSND}c?Ss|G3)&M*uNrP6YWGIUabjN@6f_Y)HUHxgw&p#q=<A)LtP2K~H$
z7nBh3RJMjEVLaXGwPq_IQh64*Skt8TzTu+uvQHtunk_5!d||Bnil(qQmpSG9=b9=(
zNiz4qP>XR6@|<)6Ymn>}M?6y!Q4*~{Swp`zPX{f4Ijo{r7wp4kxtn6$zf74OgH!x%
zb8?`S@cvmDO-_ZtHZSHv+(8O5Lh#T(jq~?l1sq5DSG^IQXtike6EDCb(=7G;rt%j+
zTqNM*sP=O&!8E;h5lzeoU&44hz1S}EyFo-1u6T#Hg~Si698SnsHJK#X&LX<p057Cd
zeMGtTVMpYNAjQ8N84~MPp5J?iQ#zj`rq`pgo+gTv`>t?^@^5W?08%8cjC-tI17b1e
zo`o?KQN(kRwHL)<|2vZ5o9Vux6N0Ydn3LU}MdAUY!;dxn*By-T&4|-=#f;$3iUg6~
zT*A}mo07{u2?((i^$LH9aiHR}krxt44WRxYu%tZ5_!|3q1UkAZsrCv<Su{h*W#p&j
zJq#5q`^Ozoo>o-hsOvuzG`#_$4bV~_Z2~fJT}{?S4`Fv%xSOEv-|?E(1gT<53R0M6
zs9-_QHTLarw^F-Kt5QVxNN}ot^3(kvQ<Ix)f2jn1w}FD~$BDaz^KP-gca--9L)SZ`
zYzo>=_Fs}<9Yu9omT24|+HREh0EZrtRqJ8qt@GU%7J&k-D7tTUntN@jeOMhF2^l6T
z%rdg$OI#Z0h?GNOYik9pBHU-D?z9q%mvdfe`oeA-{^ZJcIvW4Q0+53~4L+*r3488U
zkf$ABoW4ZMQ}M=@Xk}}itooXCb0cZ8sjd3*%D2*<`K)B;W$F80Wgo_k?tX{%hgBh6
zdgfAoqf#d23mk_=X%$&gw{+H4XJ3q9;brK-R21u*-PfuOPQ*C&vr>k$U4na9H?p|t
znt!5`&3sJRn-2EY`E<KgfHYl6ZSz;)u>{_d4W8T9&<o6Iim|4>eAAM__Z6+tDg$+%
z0$YCtw`6!G+mL$lW?_yxI84Zy(il@PwQoeW8RJz2vn!D5Ubk7!NfW7BKR>SbBdTRd
z#aqG7a{Z)8cy4Qg7N@g)&6S>?bePz>&B^M1sKG&ld7+d{v^3e>c;{#O6p_l{O_WJp
zj|*j5Aj5lmH;yh+QuzQ_-SU;VV3YV`s14pl^Cu}iH$vObTj_V+oH5<fd*q?cu%K4u
z`d-522bpb5M6kkbH3s*5YU_L}Heu^JX{Wa93G`+2F`{>Tx|LSPhg%Fy;=qz-@$`t+
zt$pP4(oNSDk-PN&OwkwD@H4@kt3qfi_GxxDYDGOj>Bc$Kwd>(w)sJ;3n0DDH=||hk
z;ZxbW4Y<4<AT#J$y5)ggs=$D`XvDa;_GgknZs>eYPV2O^MJ0KAn88!B)0p=)<5*CQ
z`&S*Qm<rlH%Z=MnzP4k#n|r}n%x5NansHJpqCziw-!m5RPHOq9=E|4QN;_PcFOoE)
zA+f(p{!Ym$i?z4L*zV|ZKBb6W>*l%cH!3=nesepl%Kvl1n(Sm6!Oh1kptAcuG;M?(
z%IB@(d1c~%mi(+DQI=d?bQt9V=+S>UoRCoeS^^lmFX}Fari`t=Uf_mfMXh7PQSct5
z)VpYZC4xG3`D#O-KD&I$`;E)K`Ar}WCZbHD%ojMODTc=u=nhDO3%|&HG=?FxJE|yO
zXM8sNW@M5!*z#=2GXCcAPMMPUqkg;U{?%x~yrd75Pw>D1^RZwcV~_7-yS+x4=Kkuy
zgc(XX2qY_q0WyC2m+Rw%qTz?{w%c<X8aH`w9!<v;a2`#4<Dd5}KD{BL@!=~mq==>I
zlyH7{+peLw%*0BhCR}9Uvej4ndwEmlbwP0`StN6bQpJ^z#dcrqx>|t+me=`E?RfNl
z-LT5OKRdRr`DXqgv2@|sTBEe8G>P5CH+<(Y&)6sdh5eyZ&2{65<aYGEW}>pnb?B83
znyaOSiMt7&@XBPX0h;v%64zL%gEOO9y4AMaU9ZNF!by|5K3SG?9m!oX_kj&y8LOAu
zAs}k?W(}`B&+v-bs^0&2_=+sti4?`WYM4vi+4DUL?LD2=k8+I0-8`xM8x1Qo3d|#Z
z{W`9>npX?Y{6NFnx%{GV#F<I;gFCV2`PQEiBnz{(JnR4)qq20@lS`>!q%!mYy8hnS
zD#6+%h@OAnI)VAP%`LHb#q_I6cbeDHw2MhWi3;^r+J#K%p2L8v)HmX&$b0?yi_MFn
zLzg{9LjS>;b9PdA>&87ARp!zgOiKg4_d~7-6Kv?>cA5DL@wXVs8(c^S*xORoC{>Jc
zh;Nzn>8Mn2>c?_q85lv|$~5b&r(?Q%Szhyp;oxK5o5x_Z8_>VE{J8km*Mi@p#5_Z<
zkphPIo*$LHBH}Oev>NT#9U@smuIIDA7+i|WRVW-vrUsaHFf+LqjvA!0Ts&Z`rNI<k
zn#n~++D+UkMH7uK^0jj&M5aCnSQxKt9Y0|s-!tFc>#+^Sdw9Ol$l<p#pSz8OOE+{k
zE}cKJyE<CZ#`>#sZ_0_R+EXHvA6$Lp6+=IJdo7N`9s7QbRW~`CFGIuTm7LsTZ&OO@
zblM_cGs*qsu5f@Yy!3N=kpoN&_$F@ynE^D0t~UgA+h95M7dO)5-F1<nc4S`_Bb{Kk
z0U$O9w$7dsBrzY~3+jrI3i|*I?*bxUbGdW%g)m9IYuMUI3`yxNHK(4twa~wyQn`_$
z4{KosD?7QVY=io+QzZZ=<YR<@`@}!v{%As3Yk8V<onwsR#i85$@WnkqdPMJHq^uOo
z=m5RGAJ2Pp5b(56VUw5AGJj*cp#XmA>GetsQ{1d1A}tk`u`#bw9mP$wf$QU?jr`z&
zdh(9V`KZtH%lzG(ZmW5vlgMan$-+|XA*8UM#Klp=cyOSSVRNuQcv^L6AVi*({x3C2
zf9V-pkSv?0qXhW20<@aILLt~E;i3#y^}pYb#t5TyFDZrNUJ~y5j<qIYY|c0&+V~(v
zOIG?stMJ(IFy61L<kI>`F&dV(IC)+{3KubJp`P;vZj~<>Iq<X6>^Gsm%dT{wB&zbw
zmV>nNHgyG}!X8(IUsXqsH#g#7pXUUQH16<ajH514{V5EFBOO)LqCy~;1d8wl&_mV1
z<_DlfivyyfG=K`<neS7E5kKPh3N8A>(!XQbRx!+A$Z)P?f8$sb5vBz}UM?`lD*HVH
zj-$N}liOUo5exA^IoCuiYZuDh#Rc?5{KJEh3`C#ijyogwiawo2>v>}u_vJ~;Nw2Qz
zGmDQBnKYQYK!RP7qyo7O=)7K4b7r8l?G%~ts%4Cy#{Nh50T63>AV{MmB#C^~GK=?m
z4C_Ch2R8T492OUCS@hbi?XIBfA?%0K26e87mH?c2@`u5hQ~&`c0e1jF7zcXrzE{+j
zT&W*?E-k4_?n^-%Xw3N-{tkj?VFtD544LA>tj#Q(kxzsd6s5TCQ$klOINev7a;nx^
z0$fDgnhka}Dy?DDDu3%Ct~s7zW?uPCB{PM<3?CxOOfhDkcKOOjWDTFZ^P`cmF=EMD
z)>^`G+v^BN$-jlgz25Dwh%8qZD;$^sOq!%&{o9sT|8-xPpD7f1?+m+u*hmp!pA=p!
za0zg~bzHG!u2mxw!_{(}Qm%pcYdC6C*#fRGGmbIy>3^?DA?+Cm02S{#X3?xgRw9!d
zgN~X0bzzT3%6JBz&t66td&=e9%qADJEqM^EZ7kpg{soNLWS#NDQ}gO>93u$VCptPB
z4$({G(`4GK;P#cr%eq%{Hh-%BaqfRG_5S%n{riDa2cfc<h$e2HYx$1I%~-qfyWP&S
zHZP@sJ(YJIOmsXtF2kxUl<#5K{=N(lgfJr5pPdfRlkjjh+{g{Hipa7X=WU6NHtze?
z{%h278X<`PHNH|gik{F|X`DgEq8CRf0_wi)v9j0x{5;(#)#IxC4F>yneBVE$VAwtZ
z{@$)|W@=Y5Zbg6p8Z93)>uuw19JjA78YAcV{_8RShp+zg4F5O~GJ>|?lZg&+_8kFm
z+5dR||7_L!e;>R+07G$A!8YdN%|FM*KczGO7YE>82|<}BD~2s%|M_Awf0HXJDvp_z
zO0YiTdH%yGf1>(q4JN3@Q|~pq!hQ1nfc_so^B=$X-+%N82=-=x;~cunZ&CSA|Kh(t
z`F}jNfBvKBXA<UH-t+(MDgTG-GD`&i1c`Pv+ss@1=iC4PIwv_2Fa-YpzG1+_lDa9w
zB1GPGG4@=zB1^~jQuFU&ukk+9GL7ZvLGAl}SMMgyq%@JnU;oSadY(@nM9J$szvtYx
z{2CZ|H=NAH!KhlwnU|MGpgLRqO-V^jO)amIfG7VY@Gvt!V$x|kD=9V4P?wIRqLUT<
zZah#jHcfZQ|29*ab_1}QhM%io{C_mgwugs-e5EyH<~0%b&@-daao*F4J3b@B21sp)
zIa{qFw@QbI(tr;EbU{8q^D<fM^xp>d@}s$CX`90uyo0e$%X5i~?n=#lH#Ap&QucGT
zt^SAC@!#K-%p***F=V)=qsAh2o0f~AXDV7{)nFO{HV#fwhUaa67>U3%JwkWKe2bfN
zRo82QL|<PJ?KOoi;Niz8U^0{#YrL^P`5kyQe!3xqpf}8MCD$0W_CI=lUvkcj(0Hz^
zqjm1fr}0lUfJ6u5nTLVY=RxT?P&!4&hC4ky9g0y9-W$hE)pcHS#2EwpB~uyzdZ5-V
zkXtb(^_<n9n4vNUKx1=2&P6*CNY0f3oJw~afCnpB1)v=pQ~)Dq5QphVDzcE?JzIn#
zOyF|XkTF$v0tv8p=Si_P$N6zcoGr`%ml#bM!?C8XRJpJsE0s|tHzFCCRNT{6{B5?{
z<9~mzeKbTfwaj%;;%1!UG%YLqzfI)JMZ+?<0qL1RqthRAdH%h(&ccOcYzIJfOTkZ>
z5w}FFp`jsPCV{2Y5{S#+s@DN?mZAbC-Jj}`HN>qj0xbo%IY?8FK#VhW8^G)nITgb!
zmm!U<jm3s1gYOLwL&rYN4zl||+8h043gg!e?02S~)C!8P$I}07E%>j2Xr=|`G((45
z49Sy8NCsMfc<Y)NRf^e&tn0Jp%yPoDc;T8s#P+`^OnyaCNI91PCB6VMDAyXm3pH(h
zxYPvn5C@3>6?6RA0gWDq*tQ*h8}N5<zByNTUIJ-B)B@<T-;1kfH{EZw9uAGrF3cC}
z?N|`npWVDZaG7(Fms`$Nw(sjMJsl+eL<Vj2MLO$4pL<gZvCCrKsmpkA%qe|L9w)s^
ziPm``d-Tg9j9%k2t(67U|HZuS7%1we0tW#abJ30-J#GP{#?l%96G^=gIjY1wd;(}^
z@3|MxkpVcGs!1ml>Bx4u*+rgU6+m@4=)h0wxLMUPGcv{;Ha_p5ZlR(RD*4qr@THP`
zSS3WaA6bSP0Y1|{)@^t`>tF&aPlC3SdQJmrOH`xeDgf1DyWbbs^0cj^2aHK+1ZH9_
z9e?&Gom+YwS6)6pnSV~6geV~OIhwYaJsQ(Ax#5A}tCVs73Bo}DB|QlOso#{y9=R?g
zrCw^L6w|!ShxD2$aauH6&^vFm$S#`%CU(+y$({_Mo9AB8XkWgYE8$NXH$Id5eN|?v
zWg2sYn0)B#l)o8CW~I9_THlQO>7yRNJ>ilhag3EAW;cK)@i~~-2VhIa3hksiq;|}#
zcK8hgOvW#p){6zOC^rD5%)iY2irQRuy#Cm^ut;D#(NK1w)@rG$n}fP~n0q1d+3ry`
zg?spK`fqCW5@aKM7_eD01LvXYGX+yn2P6PJ{-r2Nx4^GSWW;pgQ+W3H6aC?d;~YM6
z`I&Rn(c}z_4YZG3(69@nBvKc)X^C3N`r}*NFVn|1j#umk%X)rjLjb^Yp8Ps=szrxc
z*BN+OUjlx|D}mwYn5;-Y0p~y|WVlw8wdW79Zet@S5}z9Q{Ax1$ot-P_nhEAaK)AhH
zSw25%NxE?Qz1%orZQ}U^bS|ui?wRb4IS-v~F;cPWACxpDzj!^{5iq7U>iYW^hsaZN
zI}1jB5&&JC5vT72*mE@bx@}g6orOb-jx&SP8@(gk@wf3NEf?2pqdbPa?%#CWn6vaY
zczA7B;q#3LK^$(EWlrn(Exa_GeK$K~M>MfY`9qvQ^TY45&OZrGa@}Y<<aZ03!D9YH
zSqL-)P<V<>#L>I;p3pR&AGGO^&ihlD@0N#7f94w`=wfuRp%B&8_nQFyh~sm7n?*@Y
zJPNJY1mJk&Jbm{pE15Hj0W|;DOUse0LrMxl%I|+jHA>%5MevHf_WJ{9PHieku!#Hq
zU~r__(w^gu(g0)FG5%;&@GMLdwJ%Npa1mMDB&|CTdAhG65O6BKIiFD2s8khb0fZ_h
zZ4Z|Yq+0DY<>g~?hxxKe1^|;|3)$n(R8hj-L_wrQg2byUmXO!N*LpjDjDc2V9KnwB
z!?_7<!}>+w(vES3*S<&GT^yLw^|frY+Q}Ze_F{aKRZ~Lpv9kfVk$ov8wetfJPx01=
z&-P5EPhk>4uBs&(TbDE4D*(sXNNrI<fBR|&@DF?E;^J~dxa@u=_w+UG*pG3e!1;Jt
z{v`4l%iDCvYd%TG;kZAE>_NzDo2h98yYIcoxazd)BiR`M_CZZFg1WqGP%KoGHyMen
zsKBDBfPA?(^W2&pAsIouCx}l1S@khlu&Q&^2?f?EeNupFID3WuQvLgxEXOt=Q{PRO
z!Ciqct<SA#=pS}}p4JlBp|9Ow<XLe60nrj~F3>piuR(22=tHAow(vb6RI6srikn>~
zL#R1FW$cy^38c<E!&4IB(Ua)T%2c2X5``x(QYV_YZ+Baa<DRR}P`@9G$S*c?sVNim
zYHCw6_A8Oy%g!jwg&PA-Cg&9TI^SqSyy{$`6wX^Ts=PSqjRgm$Xy>3_3tC6aFLC%)
z0Djc;j7rp+YkRyX+Xhl1&UaqDBG;nNysf71ojipg(J9II0L63&fWvJ<av)f(00R5n
z`jQs#v%c!!Y#w=LYmFSg?3B31!~b-P42P%dUa=AW{b+Hn-NGHHC`60;n)+nrD!}%m
znx3(#$4Bzo-+xQsoZcAk+qdx_M>ZbrWYjRXq5}<ZIsN_pNaT8!z-a_+fHgZ|!$FE>
zfXn119Ap-D0kcgHsbhlds$hP?^LbSQ7qw5RUyb7LPY*>CodAoq<KmJ6Y*?)j{+Y23
zpCdXD8l2B-lKDhUn}^WwzH~){A1pw9SHlUjI*Wi!58Yw&$BdfK#TUM<T0AY=T&&f*
zU=o2^t_7QwC1OtqnZvTnl^VQ#<@Pxs@;ShMMOU>J@COwcUaVSD9UI~CB=Rl>8+-|<
zO^OmHdh^1GZz^!ORla`+r|hH%d>ac%Bv;Lci@I3&{*8YN7tM@jA3W|ZhK1Wf>#IgX
z@azWcHP0-}+6?Q=MM93b8s=G9WTP-SJq0KwG;tKfNFcAEeohyEy20%4fT_D9VHG&4
z3%aUPz5L(+MrKrk6Wt)uFIAvpBX`el1MHH6H9y_$bZi52=_ie1rB~sr^Y-ChK-UfJ
z8s!58%RLa#SoZDzaJs*zlA@E&Ku|5dB6Hcqq{p@VEe_yFs+QJ~|MXL2DYC`l1&AsB
zI%1n1bB~~mWyfgF&TNl=MEXtJJV-udtdB>7{TpAky8_P~ptLEGi<XBOz;_#<luUC;
z0I>X)IsHHqtuuh`>60YfvhLsy>IF=W_D|X9Be61PdbltycYuhpYz%vpW0YtV4s-*<
z_d)XYT>-8DYr(5})kQcf7>kjCJZq=}a`IPwJ+BHpoIi-5j>%e$t_zB35SH2P&4Y|P
zsV}xCX1hatjL}Pc%v74NlW-R&4exFLT<<qNaN@~J8|-7<drmg}gS8DDCTT#%#(6dB
zEz>Q8K8Ls@B?bP_@_blIf^5Idib<H9&S;KYgz`9@_G5}V*Iq~1plY3Hs9!NoA@~V^
zFK1`;Caq_PXlR$X?iRDO)@YNa`@yt0zJ=Bp%SG8VuOH8dFKI}Ed?pk`mI!P!V;@(Z
z9_!@w)s?I`geyjHd{qPCCHbMEu7DXMN@XWwapV9#9rrbKErj*H4+E=<at&+mY%3@4
zZjTb?^>pP0Z<EFzh)Md&UN|e!mrV=Y6DNz^k*g(VQ`USc-Pf1X#tL*-$*GoI(1U7x
zMV(3}8(%R>>~;mlBGGpDnN1g~O9`Epz++n8pt|G3-tBcqqnorwQ;sQO{2CnOiWKqu
zMt-l`P&wA9m#oiR-&RRB;Bw@m*BmoifTge~fbn=X1b~?pOvZDMK^^WX+{`6Wf85(X
z`FlX0Vjpe~2&Ne>-0luz>jfb=_4lV6(WmG{+`S|d30U&80(+^%#Ez3kl@|VWHm~j;
z<-hINQ+Q5Cn-zJ8h}<#Bi(e~vCDl{PJ^?Q|Nah}9fI~qQgZ^7y{KW$hrXxYe!6%Oo
z$6ko(A3Ck<nL53oS7csc<6UnO(5Q0-j+;3OgNn%XtM7Mh_|HeZ9yu@`l>k6_tDV^U
z;%tg<6JA$8Jb|zb5%}IBpuu;-?V0o$%o_j`V?YDF9&?$s0-J5rKY636oZn;2e>lg1
zFI$-bHaiQkv2S}5)J6gidMLF9pj?Ulp%(8txbDNjGdRM%rzC441IDtq_yS_j<yfqN
zfeK4RG(v3fQ^Qpld@0_WwKf5@E-$qhlr>705XAuu*ULFm<GPQv;Qp?SKto-{BOd6O
zCODFqt`Gn)xE;0rIur8(v@1sa+qHB&qLZO`fpl*G?Y4ipJ^Bsi_#i%|0uA&O$%^9=
zGBO79hxF;OW6@wEieHa9>XUGM8-H76za_o1^{bCUi`zZ*;$Z*8yag_{WQpEgBl6!<
z4?l4bLQI=YRl=Hvu|4lX)K8{+YQ_Up%;SVKOKeVSh5H}u=P!P~c}oYU2wcF|zoH9q
z2L{;ZteP6e^H5qjLP=*wn8;3elsGTA5>#ppveX}M8>Xeba@D!lQwb{`%gj}4v^YU@
z)m;i`Pxp&!4#YFDw$D?$(}4#<@%ra>8_lbt$acW0b6?B(7>JIi%9y$cr;QdoRoQ7i
zC9tvlEc*^fxCuMyH-s=p1BLZhDG|zEq6g#e1_h4I=(r89N?@hqU(nHm;wa$AWKnI{
z$BbpyYF;YT2s_q({4VBoGpL*DgGb6c%}F8Iox^raK`oJ)MIOcU(vq&_^#v9RFOzY_
z&kwe=Vq^&7Ig*i1sP=7OkVr-S;cP`tXdtu}v-HO%HS|^Vv1>PL*&U#&mVkTj7DE%<
zM@aE_v$JC1Kffi-1gr+^07EsoMvp~d!-enh8fw9XAcLoS?+wV65ya^x1y6rTsQi`R
z;xHE}@mN$wvwq~yp2?&GvYkO+gV);~^Wryt!Sra;^yemXDM6Ri6xjKYGr|p492M8q
zftI@sboMQ$3fs-G$_`$C)>13it4NiekLR-40ZPK75(~6@T9fd&b?<^j!EV4sA&R-5
zQq4+0NFy)<x7sj3qgfvU2eNJ!Rvx#R_B(#KKi$r>`8uqT6pu-?BiGj7^$rVz<PrMx
z(e!XffK^yW5$y=(GMY!pv?Gxjtca-q2jm1$LfF)w`+U;alGSX{h0db{`tBlwQN{VH
z3)P_?WN(4xvT=23{|(h+J+9WNsTjEPq_(~DJwojlQr4H?>ju_(T&ggTxbX6tfjXRL
zHXFI|i9NYXPW8KQO3i|b!V{i3d#^ny>w5&?`o;h&*gr6P#7p#M>T^_(?jlBr$wdWV
zv-+Nwd26~GH;Y>b2bS%};|+`lfli&t>N*go4+q6j7ZeFA)&B`_p@<I278Lu04&4s}
z!1>gcfskLK<)oKCeF71ymnhU1X_T$e@iWBePT27Jq3#M)U|0od`v-($x@FqOGuv?~
z+J-`@rtM^lR1gx<=Ci}zi>>JI^P{)SC!Vx6>Vuaw7W$RZM*NOur2oEQfA_K76^<_T
z{!?#Hb$bSi&tVNeBA(Xu64+2$#@BF;K3RAGrc{^#?rvE0I_;-TE3%tTc|%yjT?*F~
zSX5%?7fq>{0xrjmT;K3tc-z{5kKjK#6=--JrLU8FK6uQdkJ^Qxi{ej2EkUl0@KzAz
zhCKjtqtw=Atxx}kY>S;IRrh&Vlau;<T!V-6!SkinS`C4b(cCbWHAfpI?RAODT6kjk
z@(zT;$cp5l?zg@tm=g~H-t9+Cw1T?Wng@5~u#Csiw7VvpFU#owv_>I=`H+%nRC^gu
zR~8-m^p-8D>2jWSk?%2r-@Hywr1@;lbON*{va>z<L}j~>5ffweTA)}<Ai`DTW>Y{_
z;$V8XWVKl7izDQ1l<5sHP!#wRzK?NIWXjAuw6*;b4+>b1R8TtsT5oD_w0v{)5GW2W
z{DX1<!S`$f)KnKC=P(dy_#@_{!)sLcL9fN&83cVHrdbNv3;(A{1uu#6dLWiWkfW@Q
zw{I4ZxK?<Dkl76?LKCB32edJ0x0`i#fE49bpguZ+r(kY*9>4S(@aL?#D$^NhIy^zC
zAXtWz;=8C|#?m<tF+R~CMa)GvidHU9q3BkcI*6V(Y{c87NWrWjgiAPi*&_K`J}31J
z?&Ab2Hnt+R&waTlan2?cDLcmE;Oq|ZW+Z*=OY>w!HO!aT`@Js$Ak?dge8CuYBZ?;8
zihAPTJ_cP$=RXWSPPxUW&<2M5aCQ7U{rr!R1C7|H*fM6x^+Qb6$aehN@3#-371BY$
z_9@0+S&H;Xh(tVOV&Y~5A8Oa_4d9m>WBT{XYx>RS`B_x+_SCse1U&{=%rw6(+XfW-
zI?)uQ^{~)Z$iL3$8}=M&6fztQJadp0*;SBFDXrBq&pY~gI@OT=^VXbmID(zWn%~l}
zQghCwxFt|Ij|u&(vZty@Bb>1hvPrP2W3ojJL7XZa!yOs0**fyLoF`iF``GcNgypTH
z25F=nw76)9jWSI>3mRVW;-2)n^TJ;ZWj*}$ac$B$%GG)7+0vw`y&P=1Vi#}2Uv@wx
zK7qf3kmvd@L2(ro1?7<m?q+^LA73k)M3rgM>A|?)K-%P;brruyFI%)J!kUL;+0+#$
z9VruI({lY8wB5-4V)r){teH50hoMEOKz?Muk$<Cr;TWB5lceK%c(a9Si>-PfS8K8+
zZ~~&z(3d1wbnbKDU4R%Vb?v&=SY)5t-_p}A6J-0w?yVsIwQJlDx;eI1cO4DmEnf5h
zx>MT>^EWZy=jCb9U&#p$E*{JF3UAmL5^bv;)j>Gr3*-nGSLs9W_hP9OtUM*NZxyF@
ziuny`3dt^nnCn`d+0q_6t|iYR5aXD|P;{{CA9~)g5lcclez$pf;gtp5Vg{^zOgMF4
z#NTCms`!M4GCIB&x&0Yo8UaLPvq*tq5KeUE7`^3H`1pNqoSpZf?a2fGaBu`5<{JRw
zCH;&NlS@OaHZ#wMi^$wh<sLU%6+qj`NSXk`-l5>_?k9npDp?$vg0$%sjb)L;%bNw$
zj6aLQA*fW6@hDBcsB3BKaci-^3~$sZIm1FKNR)%h$={tk!}PN&dGYRK@vk!}&BSwr
zWa|f!u{xy?yqcXm#Wrl0zehgwkXn!C9mghkh^36>uXgZt5`)*ik;~SDuq1+De0;A|
zu~9pr-Z(G)zP=58-(0yGE_%ygEdE|5!p<wA68HE3aE?#>n^n$dVMG7a_VmE|sjQzw
z7tDAuPIlx4@rBwGLNi4MN+>7@>mP5$=%`m~;3!K;*4{v0i`?7J4XeS3v1Kbbx*4G2
z{zmPZl7&5J8!yVx!@Sa|)xWacU>g+MMnYkyevHEDnu}LAI$qs(@E|7<%c$6rBOv$2
z*lTc6mU8tv>m&J714`58hM)tEZbNW&?AOf}R-soG1MghF{P(7s5CH_{Px<4RgX5|J
z-zu3Wvz;7AhR!Xqf_nC4(78&Z)CT#orDwCY4tZ;C%QAaBuPqVhSlc+n)Kf9t<w8d#
z#w1^TrAW>iuc+C|{||hLhPjHoCoiVJ@~H;2(mo|w#Z<v5kWu8mO#K1~rx+@RN7&_@
zTYqh8&YXFY4d6al#)sb)^jkO9((|seBslMJ1SUnlR9X`Dy@)S}bi88}u3wIw6XsdE
z_(B^c|JBk(SYmKE<hLrK^(J+T*qm~x71^VHrRMi2rss{yko10y#Yi)A1jq2LR`T0+
z)(67?2PxgtyXwrawh5!E4{{uurYdJf)cQ=bs?A;{^qSl&qes{;3+;tmgkB|@Je0~6
z7R~AK%%0f#$!I=KQ|IqCO<Lrrn97$+<017ZAy=&2F4}0h+%{ZS*uS)QUS^QyT=-)@
zk-PB7q5xCXu(WfVD<*bxm}j{?s}q{wT-wUcM0QHP0D!@>x_n2tRpzILhsn6KVQhRB
z&g?x7!t8@Ol^fLJbQ+us8!IY`ZN}qC(YgioZt8+O?5|_wRqR*OON7c~=sY1VC~c7O
z;#Av$gzTmoA2?FvD}cfO_C28m7b<6`#oKBBH+A<wTE7Tm#0uC7b3xQ%Y@y@22y&Z|
z8bwm+FkJM|=ggo?{s`UHBS0COM6&sXP^ONGxcUQ}fv|ywkOQmm$YOL^0TMww7tD*b
z#8i5{yX0CC7t9ttU!kk7S>s{)&_FTI>#xwXF42#-GW^z!4^FcH&<BriYXJIk9UKLV
zr9=M1lJlV145>I<=doVol`8z6@@;|c1DmybD_*#*RrSGH6oZu@%?sbJ*VtML#7H*O
zN6i^JX~H>LK8T9f--J6t&%-0{9S(JYiZ070Z6#*!8}VIKLF3y^qTSW47msxJtnAUC
ziJwmLfC0dc$8R#8Nt8Cfa(Mhd*WHQOt(0pbdwA*Z^8mSVTl%RB>>&C<cA4zUD?#>h
z<g=?NvJ=aGM;Xt#cQi1j!NjW!ddO#pNAA<!munI`fIh-YP1xb<3fWoJwqNfK{xQ{w
z)wG)(8VzYRLQq9*u`ObyFsEYt^dk|NQ-?)#Ts%(8A{EogJkEb~jf__H)1)9A;~Ra4
ztl@+-ai`na_EMP<XJH_aF%yIEJ%#m+9_|K(9)KNL%vT&_jngA4&Rw9ZGyZ#PBcfp6
zB2O!d@JU+d!N=5@*G4H2Mj#KU8V$m@N^yq&_|0x@WbMP3c#AV6!5fxk+b*;p#vBh3
ziaZ|y_vCY=7sGUK+)uFIF9<7N@D+_Do-Ejy-8G<<bbWp>#<<1ee8q$%{7Q&S0UN=V
zfU^4oODBskr)<6vEQiF89L}e`1Ci`dn4z^Me=<uG0H;!nRhjN&%1q=BBV95sV5;72
z-t83_ZTrRIy!7_<g~<5-tQ2|DdR)ZxY%d`5Ox)1AtFsEFvE{j1-|?GlxqIc*nOsgx
zAR?^aa*!Z1&sy6lxUN=LGk+C_0eZiTq&TbXUYPCv71~Mq;;lAQFki1@Ju6$Bpq+72
zF}sTl^<pgl_}uLUv}C($>t@y$=~yIb(E(lUQ=k;|$J+O&M0+}If22|5%5t;}!*|ZW
zK2|mHyZ>2MJx)HbTkQVEVL#kF(L*AH;u>TTY_Eh{N;_dlBl7v}%8zoBJT}~H+q`ty
zUc;|VTxq>LSTnawu}PfB>^j}ULK}P}a$58$N4Pdv-H|9*>}~fIe=-91KpekxwQhEd
zGj@hl;Y5G?zeL%(UJeDp>7Z|>2lF8Om6KolIe7#qsG$@}5-I=6aF-Mc6x0p77%0`<
zXVfeRJtV9uz9-R6|LOMMX_hezOtbL~I;FAW#$TnTb%$oimyOHCl_zVep0OC&GQEoz
z&YZ*OH3PHhtGXi;U>i@^3zMn7E8dqNDaphogLVfgUwb~&Q_aMD0c|~dp7|vvA}6t^
zLrob|2{n111Gn)013M!ZAmmannc-oMfOKMeK8W2k9NMFty;EwH|FxuNI*~i5vvrgE
zx+qhze3aQFuVz{2qDQIYCbu%piCvES2ro4zt$8?-O?`MCAKEA9mO<6uftzqKj3{Um
zFX$0OuX*YaHS)Ui$+yKuUOMK*ZPJ1hN7bgf<_H5FnEHY~=Ai!@rLwqn73GnQf7oBK
zAG&suITga-1!@_htQgC7;9@3fQ`Gqn#hcg||BA{J6El7oWH8kosJUJS<+dKyG$rFo
z3X|}qJIr6O4WpBpvx_XoKI+&FQ#eBF1QD4dTxq19?d+_KaY9a1Fxm5|Bdv=9;l!xC
z<lffk!+nGZO+#AA)vtv&QObsqDt6t(VjE{E%e$J0_1_p<?Pf&IUmZlQt1I@7Zp^Hq
zoG7C1&Q%q7&Hqut&B_3ycM<UJxRu46#V!DrX=!<7x&C!vUQ7*%i<H*iWC#_|M(mz|
zpUrEoTZxWbpyHp73>J4NEcNX!>0#>`QY4SuF|`%j{t6gV+%wa4HoCOUty}S$_cY_n
zeVO16;)|SfpcIQP9-l{MFyy-yc>F~~D-($Q_=S&jI`Nu;-bl)04v(mlJwxhmYr+E+
zf`*>LUb?3pHYeeq-lj48)&q&0IiaprIE{T8^h9u3^hTj#{xSMIFVI5f7xiO}du<BC
z;LV&8<o^6%W>h;eGB37|{G|lK-#`GCe)_sc0Z<-|k&3>rb5BcP8KGx91|?Pf<&Dgj
zbYTNaF<nJsOwat(GRu^`mT*EcPoh)>+Q``V>{Lhd?cs_Uzs?jJ!C0j4Sz52xe_g$h
zW?s~VWc=MKOp<iYxTvBW(ZB;pp$aqI#kAcEO6%8=uXF;OiD<C-vwM*o?Uw`{wA>OQ
zv^j8iTq^A`S780H&(<f#<jOY@W84ou3|;YpYtCNE8CCmX1h>DV{&Ih{6jeq!>5PC?
zKOJ}7+TwO4{|3~b8<IfONuk^R1Q^XV;?cZFdH=~W`a84#ho!L(5}ERtqERg8ePlQ<
z>+M;Zt)>deKWS9|)Plo#JD;Xp^aiBh^8Rke2tdE$R1#TMtm2u^RW_4I5ed6Dr@{R(
z^&jKAbXn>*r&VApNR7r=j^6n#xe`_UW1)DfEu~V0L~d?=Yx>{^fmL?d6dr9*IKzPj
z!ySlUq|D~zxDG3!Pa)wdQl#Q+)U=T`#uzs!uE9*wjBbAMGnq@<pRa_&o~^Q%Nowr+
z@wE-CW|`UL)G-RUC5qR63WV|d^&Gy6Y<iU-EN_1Vs6pc7#vAip^u>1+Nn_pguYU>s
z${m>>3B4>)!(25-jzr8RmRz74nL;$kq9nXnOn9y?=ZO%M(Xo}Y`E?qCX<m^M@H-zJ
zVmm`#HAq5)Fbu+`UiF0g|Ev`!@Nwvb1P>%wYs~R$`xUDX;vzibE&e6dLBoeX_|mEu
z$>@io#&@KmBzX6M*HVSNwXXlzF?p+UE9HJ!MeXuNQK`0aG0$9yX<ijY7YL-%YNE-G
zA{=H``dwd^<0`~1JX%^ziF7B+(@clnXr^I+pHSL7ml<#ttp<uO+^zep(j*{G3rE&%
z!8nC@!-Qn#jMlVXDN2L>PY{gjbBY~D@<ELUo;ip@jA;vqT(LAP6}F<0QC1$m(^GYL
zp*gU!Zl?KYRJZbdMkZClOZ{_C4P&R5tvdVmN2Sw2)9G<H6vpPZer>Oq5f3yGrOE*&
zGLJO+q_c{a#|zo2r7|`xMpBGZH&SDmC3)<GU6bf_q_<aG&re8vO}Winht2_9!B21d
z4`+VIJTkh%Q^@@?d1mFqo30_P9zD|{%bOZJ_rtq&)bmXD!unPK!cRxhW^rV^0Ns9O
z;Xd;YH3aS4ZO@@7?ww*QUM0(uCh=qa`w9ex+i%76x0l96Z%@K;0yKI0HA!rij;_k@
z77~3Qta%0{b;zj=>-=>E^+P-%T?}ZJ=E#?1o2MnjUV-$<kF^V|nvWKi>U=(ufxz@g
z5VoV7A#4!h<vx?n!qIT~xNhuSv3&Z=bSS#uk|S?$A`xZbWMxsO2x<kl@m$XCw^5R_
zE=W79a{TyG;l()F(ljav{G`qiiO=3iKuoUK6GL>s3;AlA;o%ew64fe#kpX#V4|I|H
zast2)<ctz=B`X7G`7_xX!GtngkOkw!_v^`G(~5l~W_b~eFH~^;7}*9tjx}#O%WxGC
zH+`Jt)cB@5V|$9yj^!c*h0%z4+0>|%cvQ;h3jHv3aMvbQ-;q%J>30P*WP=H%B;j7B
zuLiy3+bmP=q5KL7QVVs^#_%vq8{q?73|<v%c<?OMVtQ%=rL<Dd`4<U*>m+X$PN$wA
zcll-DsE_C+kTj##{3vcF9HzJ`0*D8!E0E#d?8mr;@&xd{^xi)w@Pt=s={y$YMVzK1
zZfDK$64vENL+PP<X{^YC*+p4=hm;4FAh3cSytKf4<d9!g$o}a!^D)e6b%8w|27=R-
zgyeV%QQk|IhvTq)q}!|hGxKBb?u8)1nOHNG@ICAUPdY@B9EM=gi#{4?V>{p`)hlRE
z-`W0d8j>F&bg8ELx(pw@{ZL*su2RTsh;aNOjOy9}(z<z5fR3TV;gavK$SZpC;krc7
zPzyzkl6Hend=~{h#mzfgq48^++a1t_#7jUN!f~nvYmIhh?zDs)sOlso4rYhFjBk$V
zrh?*A_=tGKTXZP~xU!vY-E7aVcD;N2bmp=_H@JEseuQ-_Y@200aALilo(1PEi7ICO
zZaY^O(&h~rfi=TTeFxi>hLRnBWm|7}pA~Y__pm*Wac)SrMZ}l&wTIVdwQS?P-%fyq
zZ^qzVVbz0mHgV4^#=7fg1WZAKiRKS5jUfSq4fBC_I*R-2+Du>Lj)P)L_G=kN)g60f
zmG9Iu2DqeO!oh8??YtO#@yBZyf08n64L<y~om?~uJ=NWEe?o4el@9b7e68}-s_gYu
zN5txAamB9-FbeDQ>>fyZZx6b9ieep0aH#w<mKA=pm2lel$!59vuhiO@Y>AH6L&2*>
zvz^C`o%5eLPR_`1Ep9gZ@)MDCWuPzdR)5oKybaa3s;o;@zFK}b&B1?rj9}N#vh&5N
zr!ZB}?)Zi7?&uv=h|w2Z;l5nd(>QRa%R4?3v0u<QByK{#y*IckvgF2ZuvuuuCT(3E
zBYqdgBE5=1p|KUVBguwaEf^HGjvvGR7#b<X2_4hejZ@Y6vBcFF=hg|O54pGbI(ftO
zqgPC#+-MN=g3%>t=jS_12~3Gw9ikBYNjYA!pxdPT03oYY8iuJ^YH<YXCHyPM>-EM&
z;txZZofi#Qj`urF-CbOUUwMDj?{F6u8UJZ~*{_b0kNAI1*?2ywPALR-?{&@m(<#rl
zLZr97tX?)S7F*mQIN*goWq(65me*>g`sp8%-)fHB=05+Y$uPxq&SIKc*m~}dR&Y6p
z+JUy=Os=sk9Z#bU1_fh??dk2oIAqUW9Mys*1R06z&R#RJm4tz2j#VIS=XqE!t{!6<
z(}g->S(3jcAL*2?MisW^O;Zbk+_P{Dtt)Zwt>gfi3_pdnQ;M8ye>3aW_nY|IKoT2i
zyvN;fX}sZggNGMfBAv*wsuSaQkq%<kuld?Gdp6__d{ln7BgZ++EXY?jSe-qnaHv|f
zK*Z>7{w#F65H)5(dhhbvk>@@${8BHg>tE8NrEOLy)Vp}!IOA8|dKgKNpG!`Gn#oH+
z4E`L&g2@14VAQh0SNwvnE<9?GRAt?%(ePa6zprU4|72_25vlm1B!Wy|(bjCdrcDU}
zb{q_#Tyo?*)f<qOUlg4DjFNgfbFRSkDEfe347qwL&V2OG#94eym^-jA|L|fpkFsoL
zkGoj(^p@k-A<$e;*>n-Wk_R~|Fqtb-3D&!)!DUG`2`L#D3yoQpe(kpwH?y=)1-F8`
zhSCcX1IJ>nR>cR{V7$Jfxw$VXCXwnQBJRWle_&fop(2kObBE!(7a1i~#6Mwh1`ir0
z69W1Xief5vtX)8|A^inT)QsUkRFM5vrKfnsF6F3c&?&C?(GUHF7qKxsM6Lc7Ps}#V
zR9Fm86f7tK@7)|lSM6Zq9@%`9`|u(0(*s5b5nwixxUhq+k89x!ZHMj5NzSSg<SlT|
zFu8lppDvB(==o&7m_c!Zr39c7yrC!hSu7Gph7hI~92HjUE~ZA)$-Aa~v-9u(%&jt(
z>G0rI(tETYj^u~_eLk6A*iIJ07Xr~cNAWCA?{DJU?2M^Nj)^husi1LhzQnn;CuS;i
zTLh|xNJ_ep<~3U)O?i9Q7RCZIY90|gAr?hzbvWp?uTv}oIl>xH#Eo9q;jiDpK&EWY
zfd1;L3aA73l29079-4>=I)JUWNMXy_B5L(##r`)T__d#S!3d2Ikso#)91$o^&1r0&
zm?4tkYxR%HTg&zj_lm@C48r_Z$kq%|PddM8rNCy9^7a^6*;>H_jK{38Z{1(QVMlDL
zlam=L1zpkjIyKXaHj_bEC0lkdMgs4)kf+AT1U*V+uw@mE*6+M=gs%uCcv08h4#AJU
z3DLxmhS#Ene2Arf3tHjpMV5YZ*i{tpQ&KE16THT_342XJ3<~)Y+jCGsSN`=vV4bjJ
zUH9*3H;KWiMh9oGRJG-=juAGym|zStA_|vZeDP=Y^0l6g-I(zXfKqOs5d@I7sdnd8
zG##I}=77pfC(1aKnI91-Ap;eMC5kM#^`EAr;S8zs2BFYx0^02%b;ULJ&z~!%Y}2>L
z0mP-L2)`Sz4cuE)vUEY0QpH&sqbEgSeFiJd8?M2=aP*v~RLLpkZ?cQf?8Ongi2mp(
z*5Vk>+BZ(!3LicVAYu)Cy_+cOTS-9TNAWJlm>$JjzTzsi8zjsBn!K^ryhj?!gL`@x
zs!TtcTmR1BGb($q_=gz(7u}oq%*VH)oxI+`<j7>6ZTy;OL*Ijf8Rzp)LkX4kCS&AD
zX+qZJk<qkU{bkR|aS2=Fztsz48|wh-!CbQW5iU8VQs`fzyg_vOLi1aH1-&G}vIy!I
zqVUZf`JD4Hk3qw92m1THp8@<jPXtk!?9XC3(*z-lqZt)S#aOA&!~a%rxWM*_))jV+
zpI5WE>-5?yWd&0UyNc!oyI}NzdokzlpfHcUGs%WViR;lDCdPBSh5V8i3UDkPk8#XT
z!{l@YtVP0ZTG57e^7ZB~cgF^#&}opK@-VFL7_rD>5(GcrgtSVr?e_Z_yJ736v37d#
z9UJs$!V7<G+$|8jX5BdnA~&woOehPiI!z|(d@HJ!h1mI&nK`BH#Ymw=g;exFS2%JZ
zKBcPkP3;ne`EF$e<Wrx!Mz6nju!9iTFfHM!jX_FB9;<WD&T3UwiOiC{N$#?xwa8uP
zaiisS19p=m_4@G+f~j`mbkh=6BsozO0e3*5d(FyqvxYdKjui|GJ$*ATzi$wli5Y6^
zSs8FOI<qbO(Xth$J1+*K6ePvm?&o7ye2;<CqtNjS)S-agK_t-C+qSLYvDUUJfk9*8
z89T;7eKG*f7{q&&5dv30MRv|6Hr*X-4dA?ggtOi!@MC)Vq9N#F_~<HwbC3v>)Q|&_
z7){p%gaMG-+Jsc!)Sg3~^^$L+?I^QHv^d1$v-Q}PyOpJf4w{$>=Hs1J@D6x<JzW=?
zF@^c4<P7X<ml;n<S4ji+l1$T)qVKN{J5|@;ib=0sNSk0QY$gqUy;dNBHH%-fI@*_2
zj0fObz#9GCZLlES;7F8ZqE<|mMWLu$BTc0%mHncDX)hCkGyU}kF30_^31OMU1X)qd
zqmU;IF>+aOb3-59n@=Qbf{u1!?LcqgIO!F}F{9X{GiupuF*>IpnC`gZ>(jm}d||s~
zvc5?&E|u$E?|wkQg-M4pdFd>Edt_5|o2qO&bp3~C@}Zld2>y~(AHmLM<Ckgl9XhIC
zjL%S4B#!M@p;lN?YmZ4plMaA3vb}3F=wT?jNwQgTx6<RDGZH$;H<5p-H?2|RkHf9`
z=XMHZra#6De7YL&)K9yD6frmF^+W>7x-V95qe(kMe=TS$De#vpZX$_;><al{uGGrQ
zyT{kokH?Kb<MsE;xgusM%M~3+mR9}o&ec_w7es`Y>A(o@u8J11@3R1yMIsSc?taIf
zol)L@_{2z<VMatLOOqC9p;ndJA4&I$%?H_wF3)<g>T{r(G{D=cVFHhVOOZNT&_kK`
zC1MCmT6s_JKJZnmQs6SINo0bjH}(sq8_S|_aICk6I7W-BHMFWj6W|awE5RlPUv$Bi
z72K=oY)7^p)ZJpE8M!j9lksk=ZYiSV$8JA^7?jdD#Wu@D-~T|Eaet>`#}^-Rf5&ih
zk5red?0n#c6J$WhmKAq`F@rnGsL@21lgYH&ryx$%D2#z+Nz<?zqT&Qu_ErAW_;uQV
zL`kK*b};?np=l3y!u{XUZtWQDTmqn7CZaQ8fwH_BZw2?KCF5e;+A3X@`fj9J%+3v@
z%&Bk3DV=4y)kjy7DF#Jf^;A&Wx)OBHC+=u$1~*DNMO(kQoG#>#X}IG(!Sd;EU9zXT
zwQ)z%Pk9Rr%U0d@Ql&aPAq9|2$&qNm)FU#yzF1auex6_PR_wvq>r=~U(Ie`0_r}!z
z0f}dy0hvO)+RQD4pKfpfDP+4?v((5(!u9B5u%k*8MfC>C<b%>w18G}&^75#*$0$ZV
zM?m(^b7zZ^;p>Xo2Dj9Jcb~oreJhwNM=<y+BaJN5C0<#>2k16VSDBhC!ZCs6E7sb7
zHcB$+ZTV6{fnjPKJf=lQ!WyY&mH{AGO2In1WM21nJM%<c@CaLW&BWhwxa;hEUFW+W
zIFEYOBb{q|Uw}E;y}dJD^blm(zHSX-U8G<RfxVJiq9cI$jZ*ibB$aN_)8g(O-W^Ro
z)aE_u4;qUo<llj{C1A<Oc!I>|RY%nn&BEo|BeAQ0D44`;ky+tUJ>W~!f^%fW9$H1G
zZHgK_Xcj@x&Vc&es{>QrW+~`|#X%wrOAOK(M)V@ubR%f?GPMW^-qLY}Ob`zozSRK3
zvAZ{Y0naF?-zz+d9>Tilyvzz@-#@=$RVx*Uu_BI~Aakf@3=lLx^&<{zmB3u4{(%Ow
zmYUfu%0IID>NPHRcH?E&Y>rw^UK;L9KFV<QaTy)*I>>Ej<3zkUJ$IoXd4#stdd;<A
zg)#@`(%<Txa;!heL92uH6U$HFb9PKcr$9HEg69HVCQL?x>xLxQqM&e8UAa$ION3Cv
z)lV5tRMCGdT#dxcHyblp435<R`UH-F{@TD2^AL^#I@tvd+5AxS?AnH3Y$TM>XQi&R
z0)&zp|Mn&4HiM-_;*G+#tL3v2?u9Co$)8X~K~~n8RQrKe?xV5v=|5v=mwAtYgFGI$
zT11F$=^p9x3rGhVDloS~M`w;n53t+Ce0O6i-@DzT%=cZs4?wU1$I^7DMl|uj$K%6$
zRPTAIez;$mWy@x*CC13E^?LLr;3r;%mAl<R-wXms?FfB#|0Dqc&1WR8iP74xl2ehk
ze5ZcC<5_X9(%fW+Z@=imu4w!(7QmZO8fXRhjnqbquK+D)nFpFSLRP&t6?*bOy}Ve;
zYkek-_1q8ZxAcWpr_VC>Ql=O&ga~jk1&!9ECYHERx47vSKN$z8|M_QVo;%DA^Eq3(
z^Gd1{0b_#1AD%|MenMn7({Hiq$JN`TOLP0rG&B88>ajIJ%1~ngkkxG%3a{5YD&tPg
z<(+$s^IO8A8k{DfMNj@dGu`#&2zJ}eACisCD`|kaXydii-ed*MDfzDCS(4|*CAt^}
zGkfE-c*Z^VjrCwRULIbrz(!()d>BJ@>I4PNrC_91f%}s_P4F8<e#c1@Qkpfhpp8yU
z8l>cQwRadOXlq{ls3d#3{qhBarTsT=YjDJ(K0E(+%U0%la_{oCBu5+hVh4lq0-1VF
z8<*;us5<N4m?}Fq&iQwrNmVb@<nTsiRYrOp`O^_nGZ&B{XWRlq4|GbW2iTh11WJ~1
zpn(vqBMGU<oYdMSKPBp-rDH^-W%)f{qt*y#hS~6NtmD2ibo)RjhCdb!ru~Zj$bo$6
zJ#NdmefXY#(YZO|2iT^YYb(@OCiB-iYy%nf`gv(fUO%-;i^cJts<b|Tp!1>6r06d!
zzJu6EDlv3Uk!znxWzDTPKuR%f*i&|Lb6B(et410e7_?|yguB2-G|1t4L|OPd7aw6A
znrx6os#N^{u=UnqQNCOI_s~OkH%Lo~gmg$qcQ;ZZA>A=_tAuoShe&rx3rI*0E!{EH
z@8-Mre%|MJ-u>4c3~={-UDsOcT%S|&)qojEPy`+*ITsv%Lkos9#)Q7l$N?Nrc~fwh
z3JOqf7@0xh%+2|rH3LWUT|8Ov&6=MyZX1<hl*TvkUH+M6+V;8SnnJgRob*NTWn1;H
zFRTG&E}|T31hW3RBCAn+907)c8}BMgp!Jc1aGuc+7Go3*H8&WBJKl#^M{jcN-!qzP
zelFwWbsMKfIMEH6z|#rHfXD9H-&3dHC|#jG@rE)%-FSw(7^+lA)Vt>jFxtp(Y<d)e
z0}vcZbq=(01-d^betNk9xh8)>^)_!|vmGUXY(=1F(X|8^F9hwSw@wFzci4P7KckrO
z1No%&(ATSroP(E<YcA$7B(mV{W|O>4aZzr?_hLtx6K`m5CO?a5uV)dm;5QWd+WX4p
zEqwj1_)j+5wm#R9yaFE7WswBl5F$KJk5r$R#Djy=PQd_~8*<%BnRcO*!3E-QeArt!
zO!!_2)ZtjcZKnfo?QGlHADZ0UwC@1f8tSab=&8H!xA`I2`wjp7%8B&WW97c?qiJh&
za-Y9q?#{Yox{uS}BJqp$=T<xW+|g<I?2lU=B~^FD6oOGY$qeG~>1BLBimCb_dxc>s
zT}k3(M9dG7KIO280-z(inaM==<>mJ(3RcRu(z++K^Va5Al-|3!M}r}#xh@pBFKPg)
zwg6NBVihvd#^XzT$BcL*kD%s8`%7k?ghR;t!bU2CGW+NLV9eQs+tJb++bOvxH7iI7
z`J8amA(V>7b9)dG@(8=`uTJoLtr>ZVP|E-alZP}d4YyezaTOx{gGI=~pF!R<zY2$k
zkD^~kv#|$2dJ*}OkVURd1_FQ68X#WWholhTNmUAl<dE${fR>CIEtfuASrUIqaGK>L
zqph03QK-s#f3HgUkl%?c>iBh3uutuR1Al^@_&bT37Y<o{WnZPqq6PIl2WRd8d95~y
zT@w4SXIy_-cl9^xmxjsn2D<i|;U}AL79eQ~qJ00DzLHyo_Xclfo$Yr*bYc%ksnaT?
zUFhm<^Zq~8^lM?n8ea$QwPu>f=2rOquy)tb2AIBO<-HDj9rxY{``JC)i{yuO+Sc?X
zB`mI61F8g^z3TDLi+{pw>O1os!_&9&E1V0B&LzNC-#VNshL(SMGu35*(mu`)>Uq0h
zslX#WRPhupW|^H+Sm4AJ(V6UKFSjJb8kjg#9)F8=Sw7w=<-F6&;s@1#C}lCa^?5(n
z<Y*b~&u2N}YD|QxiX5qzdqNoUF@kP~fu>*N9f!s^wW9J|eppl&;0K;bNKd<`YZA%J
zY-f+y?b$)ElGyljp>12!?m%;ASEKCw(@v8EhP1B~_F3JJ5RX1VeRD}`?`5+UvinqK
zbCFn8vJNSG)uo1M?J}3t3#2Xdn;4RXoPurv$rAZC+lU9nmysHmY%|S@FhgQ5KV#c6
zpHUL=pC%?ToL$HYH+EIcj3+e`WY=GIAUna<z1O2dUbKl3IC8xjZ&CXKI!@@innkYW
zds&E8t)&WJPL6(5ZcBHe{&^wYUSAGBJ%#k#YrS(US#;%sE_iNt_32<hmnCl%xl6~6
z<;w0<lXhNG`sNKNmifOfa5=^6_Vy<PU-m9=_<!@_-WZ0=i<+6|(0c;h+G>}L9<L`P
znLno+gF=m6&^qr5Fi?1U##yo9>{~b$XQ!vDe!zu_abA{cSU2N<9^DjEUrj5&b>Im`
z&a`N^nfDC6>Q~W=cm?=acX+J@J>5#P9$4H0;s{v-=`?3rhA5Odlc&T6W2Hmo=wEPo
zAfP!<o}8N1&rI(bKlAmW%Gse(;YxtB5FV7tcttoY^76nb9`P2P;5%!i+7|vXVqzG8
z#whAy|N1m8o^WFF1k)LoMg%-Kx`V9>O_Fv0f;)OQ12TGcdIq8Kud5E7mgBZdbtj{J
zc!!-;K6zXK9R*BUp<03oj%_qF;)JxU2?c;?b;R~ktt-1k{oChk4%?3pu3}=x<^+U~
z$4`%(O~g|wL?B`yfaneLzj3>9tB>D7B07PjHgTivBv>?ayismQdi*R4<5+ZR*7WQ9
z8c1>pE}5Jvs5Twbwdjs`h4wb4jd`8wu4<r(30!5DZtS&1cxPxr@j79AJqgJ;Mcr&;
zgY?@3P=t;BiV@9PvC*AKef{m8IjlyYH(lB?1YKO%L_BdzPfq%gCxexG=Y8Al+}g2%
z*VDp--+2Cm&oE1IlQr3)*8qbXm%BsjA)gDt^KQD9XT`kz%3k?Z)uF?V!}@~8R{Oc>
z^WQBFzrZ*@SNHk=Jk8A|y46;QP(`b=O830}-$v1$k$E<DHhr_G4$^J^ffn^a2ES>0
zWxi&kD|gGZkM1S5uPnZ^z`E<-e?K~nwvPKGCWOlK$G#;MsFT;oBMvU0s&>@hJN(#Z
zu)1x1inITQ-`7msqvd-#K|NwN#b+HHg7i_{TttL9>pJw^XiJRV<G^i^&Fqc$!ZfSv
z$hd?8v2vpsc1wE3kMseZt`wVwAR&`i6JZG@maMl88P|<_^|V%7^HH^aJVy}94TdZI
zQ~1w&`llUVBIjab?sAbn5Wu}0<4z02ao&Intbx?6SlP!xbu;?y4Xss$<Led(6qcHt
z3pS`kIXIe*(+tc@@vT&u$NdC%P~C8(4eP;7Pzlq1sw>GrTq!|6?78D>Oh>eiGj9P$
zCF(o-;%Ei8<xz{oKo6DKU6R!<0~}F`EM(tYi{F>p#S<r(eK{|bnU&Hr@H^gWQhyM{
zq$)kpIWhft{#!NTb4d?MU&+OD$4ylK_#5-SLEPg&K$6`;eT>+qVSe+%VYapnD53Q7
zsAELhv2kR6k`Uv1Ezirb#uH_x&~n_$>*u(&;K`4g{SqtOsijTq9WnZiQx?o=lq6w4
zdM}>Y`ZkK^<OawucAP9u(|Uz>6~~?T;p(U;`O2<)meW;7+6g86BU-F_2uof8K*FA=
z=N369uQmz?6woWFzU$tH)9e+QRz|O3c2gr{L}Fv3IJ{m*<Wjq|NuyJx#`XMLSgXw}
zINKuaXm7OSTEEy(artOS9$?erCzB@z9|9+Ee^P#cl3)18|L#aTxFIQ3*egwgBmz%6
zwAyDhrTU=Y2!F>fM>ak-1LrB-F|XmM*YbL)eu-hNL@hf^rC5}sHu<LdDf^k3qtP;n
zRRrX(5-#sz5-n@YWlUqZsIH|mE2TveD5rMD(uwtwuMr&fQoEo(vicGAtrd5tCv~^m
zLx{LOS*L&}GTuzHW2_S)yp+#3zk2J=L5FL04&+Y$GFExMld$>e^Tl0nE$26mG+60Y
zEv%o8yZr5!s0*$j1<Qx`68PUx6#R~m7OuWWHUN42mC0X#Fo?pTu7{i2f2p%r;T5S0
zf9EFsg%qoK?&m1oU*{XG{qL1Kc$vk;g{{95Rmqw^z7urV#BrG8YX|xQ!%P_8%7r!E
zQEI6OR>3ryFC{_ByXZi#-$IPuDgxr{c@i#1!7Ey|`JV+C_-C3;nqj;X2Y?=GJMH~=
zkFMEh&IL`vwx$EV+Gj{zK*pN?k@z!8?%&PTIchXC5O0gh$LGrPOqWvD{!UeP(8*FV
zdn(W5%X%O^a+d}PK5`-9t(|=Y+E_)M!J(DWk4YAeeC3QHruvy*a6ETh7iK01n*ouF
zc|ZR$)KKH%K@R`N%J{x}AW%0R{CRfCUHjg@xlY=B&^}gA0}b>hk_4*N&&<Y_W~uuz
ziSMieUfg{oj*+dpkcG`qJr|WgGDb@{NPasRosI2%MJ{5SdLl>aJ}eP^oA+(ud50?+
z=t#d3P<`f01Fgq1s&@KHM)V+T5(`X!0O;QEMPRtkQAPIF=%vD6{x+)BGW9A3%DIJ4
zr_fR<M6HU4zU5A8EEUA)sjSZaOE-eUx)BbEGoZ1U4g3TJu*&z?<oT*Bep1|&`>KW|
zb41b&O084wtcHE;LVi-FCX_vuLda6!!!>*yV^tfV;k=H#wbCIQYDR|-=eS9)X7Q_Y
zwU)B98y}xZ+4WwoEM#ZlGXba%fl*RQ7%t@2fh3_wA+djhP0TYH4>|et+xQ*BvU}cH
zH#uZtxJjIAw3S2g#23mW@pFDE7nr4+`3Um+x;WyhsXC~RP=r5jhKEo>DSP~|@Tmf!
zxxM=VYe6VI#mk@U*?u3i>{oq(>fB~UK!$<l1xN?&#OD)?5Wy}kE+dEzs#umcv=nwJ
zPwATv<{$O!zT+N{d-P$LJ_a`hcQUWM6RL~VFitps<jdTtD6<%FET%oS=HDEj_Mmb`
z^k}lRs@WjTc?InZ7!w}tGn44zwHS!eg+`mmToVR`LAt6tIh-YLnX-KcJMKH<2p{j}
zo&mb#@TOm9Y<wp;;QgK98J~PD@3I3#$CCZ#L^Z^;l6eIJhFR`f{D@x1izGK&*<5|A
zPOG?$9FiZ3D@MN5{?Xfm$o9byM(-Pq|9E$KVs;B)#|%j;8mEB_=hkga$4L+RHXvQ8
z(!`(V)S2-M39~WUxO@*7ymK6>0U`%S1UNuSd~=*#9_yEg2lND6Hge%W1MI(RQ15NF
zZlS|0)#B)+D4>jr5ogbxC=`3MbX_SD%@FH9#E<;iPGHiWJG`$a)CYs1WX$_D%^GoZ
zDo1uYHEREZhIzaIcL}^TBN`b5PJC+2PmQ%tBSq}`gQ~dR+__$}*O1W<$@!x831wvi
zzYxoSk%X1k>?#ztX|Alq;CI_!S4T*D3i%R2iS1Vdk*|IjK3);-v%8p~Br}#p;9xK*
zdp^w$lSSLh{-_>{_g&b$6kd4WxNFmk`qAOeKhAdc$-P?qVU^v$mXKG+$JD0fK@Vuq
zA7gbDY?VftK1=ja8krtUvub@R@401V@*JlAWJb+eX|VUx(X1{_CkFih{UV+E_52zf
zU1SAH1QALi8<glt{f-J`10;|(zpoB&UXpzN&ER309Zw{S;g-@U0PBz1p;z~{jDsMs
z8QW>s^A-K+Xp~O;T>uLM$*(qDF<qD?I?ZEK@1tL77==?S_ydjE<)7Vvrcf2zAU34k
z_>dn!4J4$Zzg?JMJ0Zst`;?s?*(C)>6V_w%)CPW#JKvB~phCrD8H84PK1hLyLJM{A
z={*T@i%n3_4m^AMzNURnPgS+Fx4=LMLYEOXll&ZtA`!vMOEfk^i>P;UO(Pk0)MO#4
z7kh{B#7SAEob5-|1@yTZcE|F=OAV+Q;nntq9!GGa50IHjnuRqJTdb9pSD|GaZww04
zL!G{Y<sLrg`ZJ;O4BsII=RZE&-4!o&9Gf8+yV@sA5cj6r>zX0c-Y|SK#B)WEN^>m{
zT{3`bxWuRQ%HoE}#IXB63dzS<H8pykVd5X7^g!#dPLP(MzJSvQHq*>5_wiVbv?!1a
z&z5{lfo&$Jy!dl}Ssf5dP>~-(mvXZ)AAq7BpxYc&>kJUS1r=4}@CzgNd}TwJ#_w2$
z7pM!%n9KHDv@^N!XX3+>i7Lkze^p7|Jy&Efv4Q}EoUZ-a)%Iq>buD_@Y}M1MzX7+f
zL<?~;zh|~<{RdI$oN-*53V5<4<~Pqxfy&V-@33Z{6pLsK2m8P1(m7Ez-q)o>ja2`Q
z#fIyV%dw9&kK-yf-2+P@ZM{hJ&12sG=BW6nMJ}B=_4+>($C^qcC}!u`EHNb<6|6gP
zDkXv69orO{e17R>aIwKGMFM(Rg$`S_)mHNVo%r%*Wz&6rc+&t#?z@Z7wHm*=*4Qx5
zTdYSy5i?EhJXg_pbtk3KvW}fF?XRFwqtZ-%350X4g7Qx(wizSmMRuu0LYc=Qoj`3T
zb$rWbdby%5mykj#bhTssN74hJ>uJTLt%*Dr_-yoR_Vwa<8k%%eQM+ZDs}ggZj({FE
zzIK~WAs~vU@=!^mzD?BQJr&guw#%Shk{tJ5Oote8qC2s|PTR>^Awd61a7&u&^5CZ9
zHSwIo-yUlF#lNVOO@kppfzRUoxZ*(!+rofRC)?1~SS~O3wylcAX=4S)>H9SlC1|2q
z(dHZr^1jcwWrOkR)>cQP=?cT|_0?h2##BZlSThd67|h6SP?K2We#2&;)HHd>c6#~s
z@+~!=s|5dCu$Bh?MswX!1q>#g(0Dm?^hP4L$EaLM>J6huaHf4p%=FAd0AK=<aIQO1
z&lv9cgiqxRv==IKg`F59-hlaKV#$)UtNpGI0ezo4g!p9-t`og@6dvM$mhaN1!8hgF
z6`{CYHM9GG9{O|UiH9iQO5ulGh#bNNE?eVNCE7w7j-pxMq`wPkPx=K9c)hto_MhcJ
z<vMM%k#lfE)GOvnqm6iyT!@?&3*T*nnBXcTq<15Jp~6uRm3kKR)m;JOGnO!hY0Nj&
z!f8H;6W0MiUpT*st_2a5gRAB6y9ux5L-bNFXfuerIf+_7gY}_{1qy3gGotiwnO1~-
z8IFd4LpmJbgy)3y>4MQOrVe%7&S-6fZ#NStXTcWDPxoBD-E6F8`~@a4gD}Y$3j%8r
z`Zgx;n<%c#H?;DCYCZC>I6QFG18t(h>B7(Rh^`Fl(}VgELPm|#M?)mulW?5`{|DF`
z2`>4!G3Xeps`~3j{cqY3#F@+9n{#&*9kaJ_!{X2I&b=gOd#wBW#fT2p{l3}t%6VQL
zoO$62;LHZq4jN`(6CC>_I(dqnyhMe*5mr1gS3`t`hetH7c#pKt6=1Ho<s}9(JV+B8
z5meDtTI_WKP7=!`JqjGF9EL~H=>b*f6d|6C&W^PiI~~rMrak;vjvT(LB)vFMDjmf-
zZEB{=6L$!Tw?Ee4QjW>dgxjRvk|L}8T(>L`T*W<E*Y_Mp#w6QpYdMP@Kmb~g6HD_-
zfYdpl5Yhxv=V<^^>$_0VgBBtHa!?UT`WULOsrhlkKx{^?N|{p%S55}hD5I$OtTb(<
z#^=y;{hEME5IrDZ{zZaxsTY&<)eDaFB7Sp3r~U9kc(DQa&3M|EM0OCb$q3rt3jesl
zJg*xm;C0h!=7||a6kn$(>*jy_J}IND+RdNbRQXI|pj}e+EAHXU=Dig`5$Lu)l4&LN
z7bTpa(4dVyFO0TI&12zAV-$(2Q%5fs#<3VW2x&zxVl4YkbjLQZWRry80JzF~+_yrB
zi@vUQ@P@9o5h%xr7>l0yYSheO7QMR;{(5HmuG9R2x2U4;l@a-8c=5>#HLER@x%8q|
zlfQ_4N*+O|hF@^o_7YGk0z0-ts0&AkNoqWdQ7Rbxr!zTU4?JqOxp*z0k%nrR@Op*^
zg4?^|?`m$KnMP!^jL99oQMO+9cBtR($gjAYuYiN_GD+ET)cmf9wNqZYG1c!fI%UR`
zLL@7)Kj8AnS4`$_CP{0y6(RxM+}-%9W%XyISihQ>9)CiouR-0!edLm^o#CxcS*aa7
zTw8x_a?h&_YKWu18JVbW6E55NN%IMJavNA3M@9l{b8{Qgr60oQ-_jYcS_m*WmBr~L
z$)1EE%pu~Uv}>XKG-yx~%$qQTO=%|<d2D|@SPTvo1r8Bz@|SEJNe(U?xZHvfBIsvk
zR2stq>_mx3ILV0NMtpROj$-ga-+AuuZX(g2?2Ruv82r7<9)=gTed1KH_l+0gdO~4p
zRZOCON;tzvU^VEixapV3#XCTa@@<>hjK=l7aj>PcfG~pq{k&9(u1;S{At!S;%}42)
zJ#?KyYF!Rsl3#Rg8ff(V*pEi>Qpk1Jv}c72haiE9G0SXeH($56iJZ$c@J@QGS79IU
zrXzIHCbWP0<IrM(ifW69@fMCy8VLa%7vTVeZnEEC+<IBx|Mso4G!g+quy#RftHsc=
z<@pi+Q?sx&0P1l#Tv5uh4)B=B_<NiE=6YP1mqCdOC&(Iy`P-VvKz-NU&@ppk{4vus
zK4|c+H5u5}JdN()JXbO8MYyGaC?izpAd)GID<4b+%JSZ0Idp@cKwWLUnMXZ-fzfmj
za;*8t5u67WRW<MNhYM-$Jtp<Bt)0W&rSdh2!S#L5{QgfoUVqccLzpn5nITRQ0=93X
z)GZpdQ1?DsmJt3PLY9DN5@F=YU10pXdCrH`r-y7pt&CM%X3`uEQzU=>jlrZl*z(Ig
zAMK1cy?$js=YB>ldHrprp#dkd!{2-{H4h?KMe!LM8PS=oX#KmLZlW>xsQ}5KLUNPm
zl)INO?|f>gh7P2pIUP$wlt$BZKA6YyS%EKuAv~0P>2>61{)+gb9!=!(fKg(cZEVq-
zl~9>CL?boEICzMNa1!D;IEaWrUEr=)5ur~wAj5!%%Y`Tu#ro&wI-W@{$BoS&d`{?v
z*}V+`l$2C19Y4B$G-lQB@(icEZsTgnal#J&IVwh7IBIfS2#Hw^^@<Ba!*ZCmt+C=~
z@tAol|8!=~Zo{{M8<r#Bvmz%??Nf?I{Zdgo3PBNRQ`>6O$8T&RcXahpDqO}r|Du{R
zKL(Y55<0o_D>vR-^=QE)5og)HwCJ2lE9|WRB*xq5sNw6l#Usxm-x;C?A7moj&1-#N
zMz+Sh2veuPnv+UO_R%|oCb1E};x7*qW`0G0Fw$iAMWk;`_~Os|Q@&xntJtZNlOPo9
zi%+4F@L8d3l_%f`_`4ey9_EKdHdLZV<AR0IDY*e`shJR`fwA(@$q0D*&JAISj{FTy
zClZs#BTM-=W)T~$;(z`o@@{y^KOO0ZDpko6SF~V!d=t#(7q0y>FdRW>>m`{I>4u}K
zk#l@KO{Y!D;(le!^?f_psQ>I{_6gO`xJbQtQoi%_OL0{+3Env8*Bfe_Fk}WUu<9Bq
z4FTjAqINP4EG@*R2_c+I7^gdrNIT`qA4=7u_Iu;)2?!;qu-$&`bcD0h6Ktm#lhXv^
zpTp5VcY(ra*8uhp3On?x2<7cBCS4LKn$2j_QdBn0yGf*<@t?Z)+yP*%wou1j?I6lD
z-wo%D(%__*yW}F!_F716%zWWwF|pz5C`!&V>J@~NV5Em|+Of^>jYT=z>;XL#ov8x4
zLf#{CRR7?Wb`H7g(cuX8DfSJT`sBJ*@GhZkn`y6?qOUD%2O&W*BV*z9ISeiR;nhCR
zdAeJ=*&0$jlCo}3&jLa6Vy!O#yuPeWyt>9clq^AKc=4O^WvU;4ua#GTMZX8xie+&=
z^DhsuM(&HXa))|KpC;xBBDa(W-cOBl6Z2;?Sy+WcF=GH>GBGHJ3Rzc~O6DXc*YiDE
zce6h@>U24B=is*(^TOJLyZ1l|0?~ouO%@AUuF-+)ynVYKN)}5;>kTsk59ZcMl|`1|
zCFLO120zwDJ^sxM36Bps?=-hI1%DvWn7O;Tejm4%Lehr5eOk1{n8-=xxdzv9*+O(F
z!Zx09y7v|-IzmoK$!*?Ct42-ELrNyc>wLRq6n42U#bNLT?Sxd{=@0!2Fc=;pu162D
z;;9%ng$q13X&tcAyH;7?d;)jji$B0FFT?)WPMSQ*(ufcMuc0`YE5EmmE(V+L+*g`}
z+N6pZp@IG{Av&C{ivV}C{0D*qGLl)vtuLm3)HUIINw>Ox)fq^B%EX~KNzE0IN-^?r
z_HOQw8Bl$HX%%IVUH$T&Ka>$s=FbPEnUmkwvCgE_i6?w?>aCCQ5lT}I>%ne3j^<#G
zbKEa#o5O-{tNiRnU$AB5#1Taty2f^h-8fkHOJ9BWt$UR`E&kS=JxWoXL+Nz6GD|_i
zSbOMNGt-MYH{L=uDqo&EpE+bl{)6%EPFdn>ig#XQ5oJ@K<+h}Ss(OVa(>>ynh{Rse
z@kvi8{oa&cJu3aI-nU1OSEljaS>*EGc}bRz1PxufLOm)87rv${qy`zD@L((xkuldD
z)5p*A>z`T+*{)Sg-SWB-r>3(Vo~F~q=^8Vs!#XO+XHyuGC_=@ASt>?18e&g(V(*RW
z54ZhU0&?>5cBlZV=mRv+jd@s-6eOw41pkz;$8*_Q0QL*U^ATW9`Ei;t$p?#YBM|L2
z$Bz>wDvVpdAa%iUfoo#~A4btFvCC&8By|fC`C?q4K&-*oBSPJWZ{jKfe|gW8X^Dn*
zC~t`CwdthTZ9(63)wKek#Dy}7V`{{Wj*xlfjZ<Qs*$E;$?-)#DjxKuiEy^7a%sV?_
z3zJnd<&E%b{KR0KbV72ckBC>Q5!3=srnQ}RrnD2Q6FB3&i*j6u)#P1>ej#}X{u_`7
zj=({%uQlYl3Gm#Jl}7cUjye~Dbo98uSIv7!>T&9_{xfgje_WM+Wm2-5od;6=s*+DJ
z2l#Ss-9Y8${xih?Yow3UL+s)LrRs#7!r@0&gE#2WK!XFCxJaOh9YYEvknT)iF0xs4
z0wIPzgez>BQAYp?q*B7#XEdCHI{W8<6yGtoO=(&fMyb`w#$W<#jtg$Ryl`B0C=z)!
z6bsB(V0c0>oCz9;&;~rE^{=S~4gt<nCa?!zxbzuaCif+W21gW866kNhGMQFS_~(Bh
zf&b-Wi#X^Rzv8%K8q{M=-YZxpsrPh8sduY1n)blRko6RHWIBa(tnv7Gnb_%<_2VqQ
zY&vU=Hju^V)COx<>v>Z9_uTgU!AuOUF@L<jJs*({D8Pq+aBz@7sVM(-zrdGHqx7nc
z4n}^WjE3?Me}MF6L6tBCqVecG-urk(%>4NJIyGBuCLLdts$kq_Le+Y4$36>+%g+CQ
zwkNJf7idA0^A;mb*vnbZU3!5CQTTbs*aDj}|L6Gr=V;@Q5WO#UB>*(wjFghR{FE%h
z8nUeYnr9#oa8aOhB|eZ4uKYn4D_p`1P*p5{B+$w)gi**M$?s-&`mk&r8Y<ozSe3af
zc_jOp6#nb{Lg3&s(BtZVNwm5jqDjT7hyLqYi|f$_ZVau##6(0ge|-F-uD$%(9SM#T
z@hw~zI$q@e9MAv0h|lYU;W*IC$8xRmZQfB#a=u?Zq3G@F40-QyohX+i|G2EM|B)$h
z|L49B!@&bo7kb~2e{X?R6yDa>_Vvg4nkX?GQi(z-n!2f2Iplu^$p3cxA>trJ?FwB9
zfGIka-C#F21*BcvBDcrVr=_q(-U2)}oj|e|djI`0G6#SoPy)}c6$@nl&n@|%J*oD9
z#o^XUi?hyb3YF6NF6J%b|89Vk#U5PKggiLLfGj_K{1PyB|Ia@>KimKQX^Rx@6r`G!
z9e1Jh-}jG$D31xpjMN6(E7$gUF7FX0|F`V`n^VQb!NCR*LRsEXBmJ+(^?zUf99{4W
zMn-kOcH5QG=@uxG?(41sS=^GGoIpA{x)K058|U>x{l6awb2YHK5%=<YHO2Ywm+}Ai
z0VanB2>m$*4$abY{QmczWI!j9#WD^|>IQpwWW;5Z{tHx!rbtUHO0h!e7KKlBWuR2M
z9~YIExnr?Xp0ro`kIQNyq#{_G425pJOw~2Gia@IoU%Kx_*_j5j$H>b}isgfsQ6i6$
z!+N4|XM9Q<bk2mpV}vKOmKV*Dx6<x2y*ZR%J5}(GVM)Kg+W4gGW`gTC?pqm|sT#B1
z62R}{H2_D{Z*jFP(USB3&%x8sz~=$4Fx}Aqx+#P3@JKUc>MKYSd$|L?enM*Q1GQWq
zN%Q|RvN(;>oB-I?DZuSaPEAeiHz0*d<1&M%6y9amv|@k*)mx4vqXnt>UgHvIwU^>0
z?`X^(G!8X5D*bwhvz^H{kK4~rq{?Hq9-ByPEpkP2KP_I7{W5gP9B@Y=&rbkaSLsMF
zU&MBe?@f}`t2e$P(ReE_Rpz_}I4cZ=p30*F-i@kMa(mawaq+h9jFhmo_pCq1UXC)+
z0_Vhxi<l$s2H0}$wg5J)@;p|fIl%j$BxjJ6tKMDyO1S^mVBkim_tiludK?Ki<fICW
z`kzM;Dw8t>D1d~-XlaA$>gs-OIfuq*`1-bSkULAT{QK&xg^GXk4=&N0qe`p|;CwjS
z#y9?pM+;6whSxEij8+z|<vm>Xi7@trmIo?rU;3mOvU_Xvt+*v=->eoXk+%TOalAy1
z9k+~y#l<Ln3>l<?ZhLQa3_pcdodHl!w#%#DH$*;0Kn%u_>C}VzJ>bdT8$jb63^{ZD
z>y1&x!udHdQJlo4qYjKfVBx?o^s*lq0s->nG@u+S0eGH>MZN$7-_`LGM%N&9fFYJQ
zRTFxRYrI_9#(2s%h17&6{3aadw{O+Ws|VR>z5QWT>N=p4<w<z@A&l1igu70=%k;B)
z7LRkq;YGeX8`9%@8K9f!dHARK2+r`@PEF>z2AYO)0p@6U<<YR_Bz?TF<mBY!ch6IE
z7yt@mo&F_Bg+5EnAPsSON6U7J_Iz<wPjN~BTC~&ZT#f`nnRX>vw;LAz_~~MsSN-g(
zP{}~fp6w2c!8q>?Y$SMQEb+Sl08;(k`|^WH{|jT_U1X(!Zx3HlV8SF>pE+;K_$aTk
zsI;ifQLwrS&`Wp}bV#;mXbC5O=!or!t-r~9?e^R5wa*fh@gL<*ZvnT?bw*0Dqah)i
z<)y#IUc;}}L(Wmud-*b1Ot`6~;c{MP_th?60X0YQN_}4Sox5!$O^_4sk$jc5^@py!
z;tn<2px{6lz(JkcxZ5kQmNx>$yAi`cWor3hGmn5ArPBY|*Xz6AoqOis{WYK?Rt1{t
zFTD?k*{WYB3`>(F7gQQF&Q|3CyD}91>bw~F!+voJz~w?`#15pfC<Jn@xt);o)hgoJ
zk?C+D;%{Wv00Vc1`=ZzO3z|OgBwVH-s0Gsr;b+JF*~+T|XD^erVW#U`q_^Caclb(P
z5N7@w{`{1pcC^slt&i{Z>Q`S3PZYxIa9B><b=7+e8%Vq#OBNhY`jLhe-yR}o)}`t6
zUd&RNOop5NPHlYnxF41s^rf5z7{3oz+6}0yr^<CWVSp8T9P0iPaFAaX8Xc>@AjJz3
zAO%{Wa-KjXSXfvF+u*zUBJo*xd6UTaKFVeLU8N2%7(OBHIMK3P{xhtrp5i{=?zW~n
zv9OdB5<$T6uSBoj>NSAZ05+H{f^OtI#Gu*gZXfT-jH_8~oH;JAfzeKq%I}yZ+wwe5
zi1z~s^k7DUY{ULfpdsE58tuu4B??axuTQs7Y@rh-LfdSWKNI!cDm%2x=jLnmT!i1v
zh;)unpvx5iBh-yFP3JNF(M1MElp!pCwe2g3KVsL7oU(iCv67;q>qn4$cE%ug@LM!^
zLc}0et+Jbp5xH`mYARr<8@pC^AIr~LEvb&=WjHk^A0h7U&i9<ag)xJ`C2Q|~z3@bx
zueCstPy<0yqvSswaugqgW+NZ?AE3^mjB03;qQxEL(@!rC^8C5O(W@*aOsa=5VME23
zHmjb3PjG=0LC}=6>HW=VNW7{O7;M}P)l7AkI3=dK{m;yf81(gRjwBlhMAB5X-1I5m
zz0rH~CvK(4T){j1_Q-H?>Z3cLJ3#{*!_2L>C&1=XB~wtV8D*tB)xIXG*DKJpr5lDp
z9`HO6mKcJ&7M{A?-IA@}BQj`}zjI4#DC#TY{hj*li)**v#B?%)3$y)x*f8&|I@Q=P
zX(vt_+k1+6gJE_B7l`;SnBcdKWYvI?Yxi#IF&nb8@otjlXFLE1o&&g+@2&{4$Z3Bz
zOB`_kd=#Udot?iUc{Cs7xRx2x1p?KV7j0h{7#P%mh^$n*Qop5IfSBO;WyQ|(Nz&Yd
zp99tq>?Pb@Da;DKZyZMYxuK7Y@}HP6FiSu<sZ)V@<gPr?NLaE!<R$MHC08PWl-fGv
z=1Ht3k-OF2iS|4-zMmObAX{}aO<*O4oyHmlyw!Y(Qo5#k+V=WwAEVm)BuzI8h(0pa
zl04EI+Lq(EcX_+|l>|gWLrEOMFZR3T#BsoQa1<KI7915mUB#GTITQej+`?%4SFThy
z!Q_fXH;>GpOd*dC{;v`{Bxy<V&Bns=Eg*+>%$Ii~28rBv<?+)wfq-Fj7$*6}CjkoT
zUHxKZ%0nd-pB!NMW4q!DlyK$aqoe6Z$vq!KiC6O|P!7sDOYQ*r_1ykB@SGtXPQq<*
zb<((W-NQ3_c|oD<rj_s`{uKP-I|SpW>$i<Ilalcsz~!SA8!Xc*|A0+$k`ls={_mM8
zks6WpJ3MH7y`J;O2|c*w{%oYdPVfE(5{V2ah97dL2q1A{FQu@qpMIU})Z3o+vZ8@v
z5)F}phJ(ArR(<709?!m?v|Ien)~x^JQi<ra-aj|R>G)86hS7u}^Xh!$8ca<qkwZuG
zIp9pSJYB6`Ru4K%0$>c`p!5X(h&4rhvT`_Jq-Sr6a(a2=6K3c0G5%>_`YPXWA_NxX
zp1^_}ECg>lF7;XC4>MgUmNdU`<k^pheHWYB%&N;&E0qYj3MJHHu>!-r?48sC0wx!2
zUll!`tn0s4VrA~+@&X$yQDxKP`5(vECs_86=Y-cs({0>@CDa41v*;eu*_Z?7@S^se
z>HD(<dq!nY{Y)mQ-&&3NeyJmFidR*jy2qE+a#Z$O+)*F!nDb2RR?=L?O8m92HdBp7
zWqa$BtTFq&n8h*tI*rBhrwKu-VZ1ZHa&E>gwR(@<1ZyF3p>Phf<HK<xw{4TGkuyD*
zA{yL<gPzrzvm4=tISm;8RU^gXv|y9I3IQzA->}E<$Ga^z*b$2WL<{}E;jJ6A?z`u5
zd1wXKin*j8z~pGW%Gi8C5_)nW_H-LB8a4V6eWykW7oW=H0HS{qmMRvLpI+4g`|x3<
zt=SFnFc@1@4seqR*OpxKUxO{!g|6Cqtaue~Oj=p_hxkE5zvsn~S{`Zw5tTPk@^!la
zR(!k@<o7Pq_*gaffI@T^NMwB{ZahN4rcwl!Xre(o4(c*8$gz|{$&5;A@1=XCs{Ja_
zX>S2UYWcZ%*CRmp(7i=KLdK$ydoC+zlR(=%<7~(+07q*qSrj))9;+BClo-&b18f-l
z+&!a2$`fD(b4%dRo4y=@OW!t}YhpKBF?qh^{}QonrFQ=*mB-q9l)PT$1TRoj;@xC{
zbTrXqG-uhW(AErClORLo%@)BS=8!Qz!3R;;F1=*u!TYO2fPGX1teN}M#8g3DpZq2N
z6B?idp;dxRi67HzstlXIDvMldQX=uE6~TizKTb_ey@ZN=3uUA{le7h;73ivlm0=FM
z4Qb&pqa%Lcw|%#avZ5Hf=%Eota{JwO@+0gn9Xm0}hwa1fDmKdlmHf_5s=xCM^$y;F
zc<N<SVMz7g11YSVJPrd0c@LK|&zxOs?#iSu7KKzawk0Mkc<E-W_Aa`6nHzc|HQW7J
zEv<{D<9HQpSNgcW+xJTj{s5L5Bn(>B(gw-nmv{sDU4I%MzvU$&-;|Md{(W>}*j2dW
z;Zz-<Lwfx;cCchIR7WE{YX{G8{rFE?vbOS*R^!NRaQoxkL$T{hrpn#{roKmA)ZhAp
z_~U}Ogwf)6PuC@cj@TK3Cq!kFHIa3mtFi%p_jMx8n#a(g9Q)(*(g!_awFd84=305T
z%h9Xps!KMTF|h!_b-(e$c=eCI@b(7H5k!h)`}3=;4f`4sc1swQ{Ry4LW5XJdckNZJ
z>E@c0jFzmzR<T+{GomHezkFEq#)4x%WL0Hdw)$sPDj!PC?C}+Rw<kv(Cflv&WF7at
z*0T1BuGXmzTUfhNCA(EBu^J;7bDD2)<E+$gkhUMSE?cb#Ha4m<76}c*IxOE9j7?W|
z+t)6Bd{9x_DP}XA#+vL2-M9H&vYLpO*~kY&B6gj-bw8LdUg8_i>kgjKH2$Q|hO7*k
zs#uj2d%VFOOK%(~SK`UjsaAGfustMnDTeDG82B|1D`dOyz5imr+GXscHi@5fHZi-t
zY`qn`&WcY<`Ra*#%j)8fLoLaf(u)Z(wu<{J@dQRULYJa%17M8IQ1rQ}ITMuz>vON;
z4;url<~z=L^eDdDF7mt6#n^6#3tBw6T^Vo*=(EA5DetYU1POBi3)66A0P`CyQS)g-
zCXL%7>`HD^6EsTrakm@e4zQKrrAM>R6X7BN$PdJwl7J)Hc%Qh?E>J$brPpQHm@mMh
z6x<c8xzcZSX9t=LRS>%iIeYZ?0fEF+GDyG}Rh#sgy<dIMABTc~1X0iE)XSH_>=8*6
z>{f*Vqss5Qy5aKJbcdG6^^Fa;RRA=oQ|<cJR7Ak$7fmLz#{sbRJpYNZ{VnqpDO8<8
zVk^3;d7Esk3$Fgt)xn=MFXV0Xmo{CVFhE=TcQwEd-Hyuxc6C@z`dPP8(gtZ8eH*oA
zKsPgmw*#i}_0$t91*N8<UoSfa#S{!F4WVxoH>Cqq$Oq_I*1&#jC$dB?0DNcZad3<4
ziq{TqO;l`bA>glPYsHdP`_A+P!aZMQBy_lpeoT9oV^r)FSf^v`Rp`%{G7UIA@RUzO
z0ab&V0XVo8!-^b#0O=ZPdejcoaDP{ui0w`0hyPe#t+R}ViKcILgSMQ5syzAi-~!v>
zaxgkja&j=*00V-&j)`e_Er!3qXyJrG_qi3S67}vdw_x!TLGjYvohB$Erl<)^=R*h(
zC>NI?8?n$aPLgt4LbH5tb?tADlO$&F%j3u+%Km(v8Z<iG!UXl4ZH{#OeyIHxd+5n4
zJ+ohsRC8zx%qVU=dS>)-)52A_E0&6ma2fn{uuqA;e~E|L49)zNqsx|)zasm}gm;pO
z13BL}3w~NuIO1w7m@I$u;wc8V#+jdxf-H#Ph{i2A&F}^-CawVcp8d<r)HtqLUz|K_
zN<mEn4;ODBX8TU_r{hXSa8CsACcl7T+xZGfOo9gc7Em90y|JQD1;_?oc)l=wwi=<h
z8{UBWUX_=AG*#g_Zl)44?kBC+6AQ0Zwu1CO0RhBV<1C?H^Tm`x1N<NgwXbQvi)n=V
z((Y=f*s8Z-tynwYu+UITMSvkL%oiUspp@fEU!KJSEM0i>T}hgNA}jEK%t7o9;)5Cd
zW#)-HfYghzkI-*~X81$|nuD;spm#O?;Shx3MbrntWrwi+Y?#dzn2dawQ&TqhdP{=u
zLbyc$H38Ky){;!Ia^`n+_(VnVD?tHjlf%C!@8JrO?lPqOJrM(GsPFVo_!QSW%$97@
zkH>`Zh@JyYAchwM6Fi=M%N7kSWHJ?am8vMsMV*R8;be6d?1gPb?vL0l$D4%GQ~@k$
z&LYHtp>)zRzVonKymY1j$xZOsS+LEcm<U*Y94o-(+!6Atz1Ms_qb`qF*>atW<;QVF
zVpaKj<GXoxda#fFDNYxb*9Li^fa+M3RL;>S`x1@S5t~_^<4J02PyHXX?K=$~YMQPX
zydPX3`Ql`La1!r8XsC+2_#tOGX{BQg&hW)rrPG0N`?DG>U_-g=Wg$84O`{Bg6SOU)
zBBOmYq}b9!l>+4*<Dvv7*RDL1_E13q(VPi(?7zZyiN9JZ2tiagwxxL6#QrFG7Ay^W
zf32rZ4-|F_;G}lzadp%>($EztC#Z7bC3anpwnPa*-q_9Ig4rIS9CcP#CWgOT)>9Yw
zv2VSa{efR$v?xskBM*9L%Tr@($d9#X`*~)KDGMY$-tRJ`aSv1$Ixv)pf7)r))A7PI
z@pGeY2y!<FO7ja5@3fms*57^DOvq0<nRfx!N47@nC$gzlV|#2ea`@!}!;-0M_vb2k
z=?>mnY>2v%tWH}=?MWwPMdm*?OJbk?%BSexwCZ*GV=^4<6(phLh?^FNga|aSbV@g`
zpZ`vgZ9ZCFEE9FpNgwq{N_SQ150(fX*X(Iv-m>CMa%jJVFWgn_FKbcG{4lJZAG+}K
zsRA)HK=+hFJb=pQ;6r@#T+=6e24>+QyN`wg8)>SsXk~oA)Np-7kRqvWKk}O@2BCuZ
zV;H-aO@J7=;THu&<zreZ4FQS^=;%@r(hmv=!&wtO`$=!S5({(~z8Z54^y!V}XpyT{
zY7$Pt73cs<YWik?;jKksKNX*VrO5X?ah`FE-d6~tuUe%+1TSdY`t_2IJD)oA-i8Ma
z0e?`H%9R0z@})TAfWp&rmQGfDR;Xk@%vO{xOF|@&f`ltb6b1Jy>R-Dc#Bc)X`<jcO
z9^{`xX^0c^kL@V?v;n|Zb#UjH=bK^V4yxzvMKkQeOk6I2uBfomx*{YWjw_Q3B_)t;
zulrnF#8k7#-ogu57A^JNUYZ(mL)*K3L+OwZFLG7`o-+9yS4Q<J*hu0%`Ev^3`@y<;
zsUfgd*S~q8M-=hRpnVFL_W0Mjb`rSA$uil#>p#%8UNx=1Sx@bnDNcX~C7O!Q6Q`ho
zx+sT9Xt->;#jSek-#+Eg1a?ThqtS(zibK7_W8`XU^*F8~jo;;bS@EwR^+d8ON#Rd)
zl5{@aV=qLME|-yz;#8X?$~Jd4MgAQ?t$+CkKM6jNo+ZfREKn`^M9kwHW7z0cWb0Tj
zH{{xgxoSfTG001^eLT_gh%NE<d^vQc1eTzw=fLC`Ey!VgD=@s;8kI+$od@#_{&wkS
zX11d`zCM}QdPQ95loR(!=-4fj#csAdv2}(0BkRwl4Z~j%v5FO?Ay3%`Jx>R>)M{Dk
z8LA8D1j`4ChnAoyIF@hz@4^Q&6si;*@9C0y5STq4s29#w-JE!u>w;aRs?dkUB-Th|
zK>OAe=w^DDNY+h{g9|u!L>1PjL0ts!dW;3NC)DzpHCF?Ir~@WI8Ku(L#k?}Cq4lo_
zDnya!af3t;Tm;2E48d3a1@Ba$mCl-b)_%RRKS|XX%?3l;;5tC5A?j<v8qQJ?d-$#`
z+Husf|9zeHOp=AbP6x;2QVI8w&~3E)b*LNPKv09gF=fqT*g8Mhr+~BLrblWG(^7}%
zv3D9iF}2oxK$KWkM?#Gdu^L-dGc@m2;$ZC{P-nm)XsA^IrP>)$LN}<}Zr9%g<s`;=
z1;c6|2Ol9uR~Ao1QSgCPst>_<Z@_mR%nJaLScmPKMSFZZ65{>*2;lUfxYH{(Dm$u1
z^eAOUZAtq&+}!(krTx+$-_0W4c|znGFrYyd$HDH&2!18FLVUoULlEl$zH>Oh%qgHi
z8&8>d0{k5+{SJT%25K7|4lKq4;Zh8?o39U)$^W1ZQ_(P6N_kPrU@{)}W|<uQJ2^j$
z93)>10*&!-6{W%rM%U%_M2F@ug9r#kSaj0B;$1#}HjZ`CoBZ}Le02NxHD?coc=v6f
z0W}Y$i*2z#wq+kHdQtwKbS&$4WgF)IC=;71Lxz&CP&%TfLrF~s_X-nrE0JgHCY7&|
z;8zfY8i|HjS3mre1+9Q+HdkAG;kGQT)jkX+eCKL@SDf&7J>0nPIGZ;`MTT;+_7egA
zx15*qbPY42FSi!2j;yy*1Yu7VCnni#<}4uB&U;2#z_^CTG)-jOpr*@Kx_N*}C$~%<
z$Dvq&@Hjdz$s7qh!C}9MELh`*-p^3HYfYB^xgbfv!E@h-%u4~9@=fJ7vc<?XcA(n6
z+W))no{I5Iqv#kr;>gHQkrvM~1|JW8+nbtoI0BVGml{nVs>tNEcrrdL&5`M~TJV9R
zgX)0>Q3;yPD))NctX9fDAev^H5<_4^Rs7$d`DdLkB?`4l*R?mh97$h7&5{CcPH-*l
zjb-&9WjqE+zwU>a!kKe#_vLF^W@?p*9;;0{rSv`@>k$1>nnC7Mi)GT|Ryxvz54dJr
zG8PaO)wX|c(LmSrm4RF{6_LT_W5w$JewC1{-fxF%bzu_TJ^w;+9W5OsBuJqGKP&sS
z?`8Uuq2BvJTj`LU>`paqowm>hX2f{7oQFGXHrj10hWqkD#MPr%fdwFK(J4IMQf|~*
z7Jd>iU1StB^tFf(hf9=M2$4=_gF`#{rwAW9CtE)cXnzC9bL*$wsJ;#f<t9L{MGm6D
zA-CG(L9JrYyTL9(A~E_IUXM;YicpWl!JaB%o-9oggXH^*Dg{k9zbg;q)`dq2G5Pp-
zh$urC(nkZ13{D;SwHp99RlHPy=d$Xu>6M`#eWQybj)Tbv_^|<#1{S(s5bE%$SJJK{
z4Fs<U{~Sc}2A3p6(e!oDWLN|F0GeVDc8XqC#_~%#u@o&+(_CY&SimrKd`4G?OH*86
z?kqdtv3C6pDEgDt&Dx*E>^D0uEt1Tb@G=5DXe2?T2tDV0pWutoHMqQWZ{m*;Jp%&S
z-u-Z$LmHVB(?CUh==0rik<`1PR`fXah1L;<G-Jnuy8cxChU~=f-FkJ6fVg@L!?uK{
za(&^Dlm8~aP7y^+K=HvACibM25~J<gxh5mBG=;svJ>%jbcOk;y=i*3J+#(p|XNC{*
zd~_0R{wFJMO82>b*QF8^*fft7%zU@nIQpJ4Zr?e$qh$&R3-AKZDq(t6cjt|Oq$rY~
z?M<^m=}<!e!dBJemomdkd}&R4Iqt#BnJCb$5b<7%#iFtPE>*yw?{JD!z80VLlOPaV
z-f!CZpC5XO&#m89(=Y{}L`HC22x~iek~d?0ycpfx;W+wz$4u9eHvVaIVlYv?hhN*F
z>48(AEqL8Wq^v+_h@hN+rOrw)AbjHna^OW@S%>#rHC@B)O2Z)PYg_661D)p=|A__>
zpL<~}X0C({Wxz+w*9{Ok?Zfvz40WT%pPf^cL^ksayQ+~v^zxMI`40=g%qWzX7V%2g
zQSuAO%-HU)qU=+yQiUvZedz_b?vxvIwB|9ySzMrm*#fK3s3KGECf<480&+d6iMr5j
zGU!bt>CfmAiv}m!HqUM5h%{k4?_sv=2Ru$6q(Q<a!qf>lYj*KG)0sWG^c#Q7+A*WO
zg~f2LNOU=+XesXG4v=b!IHHPQUZ6)YrLY<D6SUS|4|-Fg{Zw@|4K-ulv#5sad2|7!
zMYFy#oi*9P#7GyYKGMt&>7M%#xJL=Di9tRZwi~S7Re;3r`p#1p0h@*(BR8VU$Hw!D
zhp=E$jM+*23$l-Y$fp<K_-0S{0Z%$V#oUJJKm9wcVi_&&`iGA?YqtA0vJ|P<z^}4i
zNd&~hQ5KCN&zCEsJRUc)3oGb0F|TT6$X7>zgi1B|qIJjC?r4HiY@yfa;ZlBnvE&d{
z!b60ECDqWY`Qk9a<CpvvBpX$7VOC@uY9MHTLYdq}%<&}Fb}7mJSvCy#wumi@qV&#n
zHum~k1Uv|st1&tiSwN$6evq8|xQWLp$d0@9MR6pjm^hC1;@><JV_M$>SEo6?v<n!0
zV%CpEdBN}2D24WVD!k<U#S3Hl8W88=fX!e2Y?N@i6TyL`HP}qu(eR?VzoJMxrzE!q
z0)TQ4Rew&+r=4#+-z6o00>XE5aJ*YfT}?PVXm?W~+?xfo_NV?^xSLC{*Y6Sj>=m~+
zD1XBm1868{anZVGp1xt5I1)A=HPj+nVtGb&og2aiJ=xeZ&X>!6tAIMWJ3``>`*nSm
zSlAPr2-*19Jl1#;x6U|+GusSyd$)Y94oXre=Jpm191o8*O5!l6eYxJDPMFPXx-+3j
zh=lBaH0m@Bs$U}?M%FQTsL&P^*K4{A?}6J*Hh}psgACpER1|JH-4ET}sMg8l*V2m5
zCDqJ+m!KqC2ayf4=7efX2091g14r45O|1W+^J>9<m<}co8jx7$d{nU1%vlq)?AMsy
z92ik+QOs<2LG4C13rFqiRE_s}rtu7hMo>WDoe7>r02ywbhLI|=HjyD}M4-k54N_^0
zzGrxC1+j!jhj!}*Zt?R((foX01W!V4YIvhA8Zv{n#JY|K2_#FqrTP8000fc{#ebQp
zG=Mp{SpD4G!*Cz2;643754#3ZA^RTienEBtRBRO$e_&*2s70ZOFqAM=8hH0yoTW93
zrJ9pQgFoVb%r15(y<ZX=m$dczUZraBRuun%AVJ((;X#NM!bB$4QuU@}Ns^~Q*|jrr
zfuIV8u8Q~Yz4-FzHyv;;sQbE%x&RXV0tQ%fSySSJEYXFrwOiKiExr1MO`{39#G!mi
zsjW_p*ld-ik)1x>;ykGuC94%E4o|?mft~_%6f0PSx_6QE`aq76o7mY=kw5^t1=f9l
z0Bs-eL9j#;R^S@E5t$^7dz4x|iAxRf6=(su{C4Pm?YJUrZ-i9zGNngAUQ+HK#efie
z)dgi@<CdeP<!a`-kdZ8);ZPH!;b1d(A4^1_HNtK<V!UP&M4J4dNGi5shI;ZQ4k)$y
zO&un_`q{1>ug&qG2S?N5Aj@X3t<va|6l(eKW$0RC{WjE&uv{D!Id8v}Q2gA3^Bm{V
zCE<@kN6tJ4|A%UnjBnEw<!mZG$~8v}&qZolTF}0;F}1S<n7?+SyCr!JnlYdQW}sE%
z4Lz7g5LdNj(lz5TGaBd#i0c)Fm$j9+B?@Uznf6Ef<PH^^QzM&G9iaFakh6C9A|~t_
zaRBd*RvQGW&baPUCEyBuT4Ic=h4dgLrUk1B?l^ZFp5Bj&l(u8U`StpPLUzCt$hmk+
zhxI4fBRyMU1PsqAKg!T{GB%L-mu%EK>pS0p4r=+XHk0t48vJd;@Q0{}{?_9TyZBj`
zWI|BRCLU||9RgVXdiybIAI=f}j#%4p&GS5}qa84iw@M88&%%)w{>xU43atmKnBh%#
za2PfE)2Y-&FSeKsvA`9YUOGO;$JRh<bh7EZpIHvo3P(Ve03sfZ@AJ2+tH1N10(P85
zMdi#N;I$t>)f1pu<8tVnCb;KTUgbdC!v8Mf1~!?_4i!5xqwP@GLg_EoY!F7<jo^A%
zY&xM<xQS=QK3Y+Z_P^Dhi_6DQZWHi?LqKEDER~tr<DcCc3*edIMyB!Yyl5N1A3?4Z
z`cMcekXpkk45=&nq=I#h_n5D;y9m@^Ox>z&i!~~^;vxd!5y222W^{m{%-UZgB+ny?
zEf$RBM}D2i^kZ8MP2fXMfzyOXy+bjVVU<J*=>ZA{Qm;h7L&N{0>@36L__B51G>yAM
zf)hgH5S-u=g1dVX+}#}lAy^XJCAbsZB|w5Z1b3Il9d7ZTnS0L6nK}2lpZck`s@k<>
z?X}+ZTS_)XzA)hb4lTwB8Qr{XbNweK8ii716@}lSJbpn*86z?zwb}rth99LBf^3!(
z<?%2I3tmg3y(vNd=lIA*Cc{6^+gAb8kO#QgF`UaOU156-pK5=X_Ym0J{e)`9bN26$
zls2tP`DAw>K^bpB<A7JiKjiUOgr_~Hm{P1>e;;Axv^Gv>pFL;0#tZv%TcQUVw31b0
zJ|mq<ao7+<^PcHWij*l?8x(d#g8bHJ6o^LH0+)s~0IgquH)dX!ZBRBtKB0gV?@Ob&
z%#koFDHs{^C5rHVOaG*wyY|pcWVmkb6XL%p4ch%uh|FVT(818bawnzUPI9;@x_PWr
zAF7Vb<SK$afBH;Cs=#kRq|-;bUZ+>U1dYyiTusS;3>l9pDe=?CBPu8+TY$6<?)}=$
zXGg9rI03`Nfr|3h8=0natXu={{MjT`qvhm2W_#(r;A@a~(sB!2eL%aCsTG3)R<FzP
zYB$hy=PNCyJv526CDypsx=P+4r#S^B<mJkhFu12!D>lTNDyC)mz1!EScYq}2qf~AE
zkof$iOjugee2d@7FQa*hX*b5NO|k0UqC>_sxoq3Bb%?Vg{M5VVzVi}O2bpWjCYh9b
znV55r8#XELqZ$5qxqKJ>pnhp*{Xvf_+;(jI7!Su#{gS50HOs$uUyHn%v_LQ-1_*ZJ
zW5CsGxlt32%?%T7)sU{PxZVRrm#3vfujd{Udl>@EB50=fDS$AOJ$?dSCH6dh>5H}S
zSDQw+Yt9g&zT|L%yg+t67{|4$NC++x^6;l<gJs8+#_U5treJ9TUs9RX4i~_M$B2FE
z!=|~fx!lt6Dbv6IgJ+`umN51@y3$JrYNKweOQYtMBp0I$v%?%-j2<L5Pe>&ly8@cC
zq%Y|okl4(F5KNHK3r0R+z}mAn!Q&;=K=gM%pDu(U1PR3ET?y^L5-7W(g2yA$Fg1z@
zqB6tvtzU6Pa_%P39GNIoJx>xJQ3^)W`nHdzz#-omDB>YX$?#HxOqn>R>4!_w+_S~~
z=Xx*-KJWIbW$y9R&IWBM^FxRtRjR6xR#(t+Em^1AYv#LiU4BjN<e=R;OU0Cg;Dm-B
zBH9geJ4;8xxn)uWc)Oe~Xh;Vh4-cL%N;7!GZQf>Ax3@VomE9nN>U)KchUg|oLCR-G
zZXxk(XnqgLLv6Pf;TpVMvyant8P!F>UY;*ijRqaMTRLZb)4P7~N|H&%%w{R2EG%L|
zuF{5^QlC}tzMXu=nOFZ4KaEzIo{x=IqxiR|kA7y)AFp46kd04(lkg2Ok81z71-Y)0
zGx2Jh4eBV&IWC_i@;<(=E6No33W-G%Wxb-Pm)>;@7kEaIHp1F6ob+5ZQT%O<pB<SE
zb#?zpy=fF&_}SgCbUUN9B)o+N%xKG|NGoF$Q`hY5qrMC4kFYMLABmWX8Lbix7q3-A
zb!)8)hD7ypyQHO$Z^D-h>#w(jcHcT)PLsXdh-#uj5-hvDAkzpGRV*iiy=(_W8!LB`
zODhDR>UZ5Qhu-P)*e#YqHl!vR+gloHaIFIZbIg`@xAlf=ZM4sA0F@n+D0^^t-bS0M
zZ&Z*b=p__7i(>Ze$8rV<%7s9EuXd<wAOYMI2PG-H(JSb_M^FP#NRCl~=-a_ght_1&
zuST(zVj!<J|C%5?Rg|gGR${C9I>3iA5p?|XxMJJ1*fENu9Pq@pw_}xU{vi|A<)vgz
zB+XMtV$xg2fdlKLI$5L>^~tfY87%Km%|p5omOtQfTw|NPqLDYnnNOXy0BWYp!Uqes
zmK=5%AsBnxZ&}g}1Sthid%r1YAwNwo{h4_Nx6+hmzsSh34@<9j7ba+^d?c@VuLlr@
z@Hka5F0T&lsRx*$7yg-H5kjlhidysjUp{$Y(4xN7q7wa$>_y&ew}0+GzQORM-U89Y
z)S2W7HIZ*E00UEas0ayA_9^Wj6Yba^?q(EF@~DQAJr=s?e>mUdrxzX^w#!m!bR?UV
z`7)WTqPCC&=2Yhn??2Sv(GsLatBR8~n+y$0l*sVtOu|+#j#DR#Vt(7W?6bGXo;ekc
z^Qoqga{RO|my)%gy$Mjd1d13zD0w-j*G*9ft&<&)#h0Uj4baz_Z$^Tl!+`3c#zeTJ
z%6JfqRYq>}2JLVM9;ck(;CkQ6)yq?QfyiW_<Dxs^vp0A0kLfPd)iATm+o#7jOV~^A
z57e<Qism2ZF}?~F5*c0O1fh%9G@_2buV_&i&|D65;kihn{DtPO7~zw~DyBU^0nKsJ
zHuN|+-qfqjCpcg9jv~eqxVff@z`M2J=3j2^I1%M-)BDFlj|jJf8&tKU_(i9?L3Hzv
zs8LlA9C`?-z9%Hme@BL>EIgAQ`Q`J(E~BgDU`cEamV0K<z$+k%(1#n~*-M~9+iuc=
zCu-l%GM_d!SRVmzu~|CI2C1YpydJN`M<ut)t%YeTD&t+)Uer!?Ctb=ZOx?YmYqexA
zP2q_AF`7ytl(W-UbUzh6dHv0j#$)rGMgSia<8WT`djb%f*&JY@UE44c7BzpFXim|!
zKn7c@8ri5D474xGTeS$VXZB6yr?08PWy(Gl7aRd`Sh;4u4zt*sD9)V>JE0d)PEgP{
zmewH^(AxuhTv0x7wc`z|>6eNSjtj40K2<78{vl?)H$f}uN5;=3P}E`*iOc81mt>fA
z8@c*@xK<RkZMGD)2BDAxU|h>&?)uhVG#b|&eIIS{@ml!-IHS`wK>j8|XdiR3scZUu
zy?i!(CX0s97w>P!2d(+786Xv%@VFz~<LQD!geDzOki>`m4a<T|Q`PXdx^@e%5h{F*
zUWL?<ZteB$p}J$(cM_y{X(587RAE+ATg6Pl0dhu;1e$Q|&hN3PXy!?8XoTv>J!bmI
z#hmEgefG-d1f=Xf_4ajmddfE{pn4z~dIz9DS8ZmsFfDa`?fAgmc?xEF<9~}lq-R7A
zYS#&4rZF8%?(XjL<Pwyy?|$htTD{4Zl;FCF*4Oz1JWNqm%v2tcR_?L<BJ*<6Fapi&
zCn9yN3VVxHqKVvmD%0Lzvm{E&l#1TsnT#<5oCAMZd#AVA3Kz(hCkx-7UDOzH@%Mlm
zQeXf6F^EN>t8~EVLb3Bnml%Mfw3NYzCZ&8=c&XwXWQ(tz8-P1zm!G(X1pOW2MG@0&
z0G9cXn2wrBJ0^j{5E<rpWZY1&w`_{(saKQWZ*Ag}w9y=Y@r&t6t**3+Y}6Kf4;p$I
z8s`XTcS>u7FOVxB!lwfqJAg8B>W#rR_K`9U_w=879uzCh@3(mC$=9-sda>*YZ<c1V
z1(kGPJ_MW~%JhD*@qY1aE2Ih;GJ0jSq?39PNQPIZuUua8V)*{@++aBk)JnV35j_`Q
z{CD;FZ<=NLd;04OnOp?6&K2@+`ZlWrbg7C~xYc5c{5vm7k=xNV%uhRHP|)vz2&<x*
z+q<FU^S4^qP%Px1beffoUlI;1<bR<cNG*sTx3n<^{|P|u^fS=wdhd^CLeAtI(7gyw
zJt5#?*{i4<8O{y1k~^jkskcup-%FRbg4&$&7Xfj%?w1UT)O}4IU&KT1A5Xgy0D)59
zCAlYSWW%G*?#v~wkC5Q%raWnoY!Y7Z`Te0sk0-bNUYl1JLnjBb{f6qKXXJLht?jhA
zE6*c#{gJZA9;a~nZmoF^^TFxl7hFNa1<OdQ*)2Pr6?;U$=OC&{ba+iJ*M;3$X~dCu
zS25yT<qME#lC~Dyj#OAOt@fbE>zZZr*%0Gf0w-$S-VR0)Z-GV0AF*bM(I~J8+L|P%
z9jM_V{75>Ui3vfvm0^o#_>fAzLYB$HVha*;IY?mxr_RMHYh+<y4UipRg$}MEEf2PT
zs`>#xTpV`R*@{2GuV8WOuB(~i@+0K+s+cwnOs6YB5^Y!fSuBx{_Sp@Cm5#-g<7ntj
z5H0lWs}7Yp>5AVw^+QP<y^SHXg1<BkWjn*+G$?tU$RRz0J(16APUxDjLi}Sx%3V!J
z*aRvrtY)j}S0ZGQ^*Tfv_pADyeXfua&S^!JwvpqtGNbNV6FEDk)Sq3ulV4S#A9D$(
z-k362^XAfE4o6PEXgx_eDrS|$H9SYcJNmwFB=nw*7Pt<Sj&bp&Rv#CfeG}iC9lB!P
z*d#uTc*|^%ktoem+_i!#=Et2C;1S%eSC}6CvNNpgZB|#4!Dz#^vX(G$RAlw&8D8=y
zJlm4rOLKf<@*QWD3=P@9Qq3>@T*v5)^1e<q|F$X|2X&dj8w#@ir5~LO!so(XEBQcj
zAHtr&UrOLsoc3oZcLv@SWue)xAYDp}-GUeUmkVwbf&fy<lX9jPwusmVPhd=D;|I=)
z`ePuZcWG~eMe`b4peO00yXo`1tyhM<0*Ti_7+w9W<5$OPJ3xh@QH^U-x5I|5Cq4SF
zIx55a11z>W_voSU0e6<=+X_t<LyT;uqYb$b1H)@s{zZW@Tq*t4ZO*@0?m!yGXOUbr
zQ2Sb799Ckx5#r6ek85{o-mv%RJyaa%e>NC*jW^jl#Q>vI(x`XVL}OaTl0c_h=L-WU
z%e7*?4~r?*->6=M-Gx#@fo;Ao#YU|>!*bzp>2L>}SYt&qach=u6o*hWX(h+I*#5o#
zMV$z)L+Irp_c!oItiwNL1fUokjm_tT_&Pp^bG6EK>hdTfDK3X)(J0%#NnTEHq^3R_
zOD->>2*P-GYst=upeu}hAt^WWCo!~;>%*Pb7CRYu0?E9`t5(bipy=Qn9;cpYp&}7%
z=>?YNWYg%|#AFvi`TV^6gFN`xwY&t3llAt)mqz@LK#6V34r?}#FGyhRQ}lhK{-kRo
z_2EuG<a;D6-=TiTW<Y6UNn;s*f;nBJKKWXu8?Y)%GhT6|EhHpQU6>*;ok`74mD-wQ
zsTZSeb=TT>?c^r3a(|9}>)!QI%#Mzpeux|a-0&#XOYO>3bEB!$luK|y;Qy8Ko3Q46
zYG}EZqCcO}bp4jI-gSwXA>lx4-z!x#mqfzedREjVmN|#!c0hGY<jhrp?Oz4Y0r*Vi
z5m3E!l#jHrQH>diz4D|W6W4&+S_>7VV6&_h0@P*MIa1J4UkgKoV)z>&d?+6-jQSci
z*H{Cq!<<r3*s`qxHGjXwmAk*fgyi%mjLc2X&KKGmu=3_Qkm6&wFAPh;**`N3cs?FQ
z2GI7y*0?L^D!vJuW+oA(v+bv&&M-qyLM)X{85TLsN7}7rLRUNqWEfi)xyr$S`X3qG
z`vQ!hjYRJ@IE+7jA`osP9OF18|FXUX$z<@64Jv0p<x`>p3X@Zws;#6~i*cGM*86}_
z^O1j7ozkxt%n0ZQKWTtQOyV*r4j&Hi7cz?lizJR#8kbz$L&+7L?^$SP<JDMz)6j;3
zAQjj~tMJpiN6n{EwoF_#F<1z+(yks+Yxxy*^cL^BkG`7IC9)?-G!@{<EX`O2WV*8h
zx@)r9$F53r$}<<>;b5hi3TY5>uib^L$VX$mT3&GjJa7hove<M<JB2_#ZYL6EeJE3<
zjAzcMf8d+9j0K|vuOIG1-bl<78Fk-QPZq;N7aX$K^waD=iV0m<ZvVIjaQD)Mf6v0o
zOr=^L++Z*xW3qIEbqxwv3{0G=6A{t^&H!?uTf!-6M~FY`#EVt|su&NWjPB;L;*z=p
z$coduNwLogUY^QFPEqNl@p|Jvi197t^?hcuKO8WS&f}O{<pTuG3YMzKknRnh*PNQp
ze6Kw+jr-H)lS6>{5<5d}o4q}^Wa9v0%nN<R|51U=onz8=vo`QgqqWe+4XnA{Mc`^p
z#dE!`X3A_kWhjMq$Z*1H@Qu97XvDo&OYq}c^Z6m+Ae#q8LmWnbXLTu*>fOcA?6^9l
zk?bXzyy3<Z?1#8XZ>+4(#=kxL=xs_o0resg>xwYb<+pF}Zy(h$<WoEu5hSIg=vPv2
z8_0QMjBDN_!k+6i)z+Pe^vB!gv7eL~9ua1f@yA+t;1?LSebko!6tZ%W;kTr%+_|VV
zStNY{Ex!%(c^>!Z%!3G6WQkj3h>nqV+&xk_aGK*LLR$fp(Z3T+Kz;mVSVrmUJD-1d
zx*$1mmGTYvBB;ifX8NG`b{%+<b!tN$0*#DUUzA{dFMva%u6-MdRPaqv=ugopP^T8z
zbcQw^$p9mf-;L$YW`oz%`lO|t5$1QZlV3WF!85<iXjQrDagT1?jE7fUcv6pT`|dM~
zq0Gz8QNp~hXg3}4Hv?Lnx2COzrp<!$dGaf6-1$jTAA^fhRckC)E?F-aTs!&d{-)oA
z1c_X9D$f6z(7u@RxV-+O!%mrak|!cu_&5hEJkXY#O!02jg?$WePLmP@71%!<(rPUJ
z^j$Qe!L?NC<YU$KkYS7|k9{Vh?DAU0dal1EB{D2~T~;V3cF#=dgkZ@tUp4|Te_|QH
zT4ti#pMe<l{Msb<g<^C1mJ8XdB*N{w1=r_EdyHie)OJJP>)eM#jm=c@fk|sTuTS<$
z%DtpfwQ0Nl_9-o19cyCI<busr`W_o`QwGxsDz8!b4nkWPIH(ibqM?hoB)^02(;E)C
z$Hh>DFJ|5wcoFSm0U>;r;%Dxw?_PPp1E)^qW?Sdf%fi0Tc)aTk*8!@D60k)2v!*63
zfpS9tc%Y{X!bcP!ktf}k?n(7p?(ByX)4QD3>433+4P2cx-rxNp+K_D7+MBP%WE%Dl
zLs{%eIRnmEc|1m$RkRqKlG^pya@xOXkYj1VNUjXirst}KGHHktnJ!X3LxPuE69G>`
zrz^wD``6s6Erd4o+(KV;E_qWl22%&*cdhbU6Lc<967H-*aDEN(mJG*9`5id##?{T_
zkRCOiJ(u9<fxh`Fx`0F&uP<!(@yn_(GVRBk(plXkZq_8L5I)$^WzM#>i7^&}|C4Ao
z$6~i&y0oI)e_=eJA>dd&4|=S00iyk`Hfeyme33!_l0}s4y}i&9zrh#3y%U7k*%gVR
zBu~;b?kh~jrGfIrADt#-(1UB=UNSd#8_2yeHYU$j-Yp<TOc^<98$LC6yn?~SXQxO7
z9^~1~sntkFX{4Ns4U-cY&UZ01nGSO6e(Idd5+BY5oSeGESz>~o^-FknLS?#j3o>)9
zg7RKW1*-Y{fPzyc&ElZ&tc&EpXXPqe4~t?*&8(A-e(;<>HWt5J4@Th00Z2WIs|wuO
zumX0Y^mx+rY=&qxeR92n-F~^-?VGH;Aq{+EZE8#ff@|0z@IMV|fE4=~NQo2-iOuen
zH7TszP@7FoTa~v=HC}EFJ%7IQlx5rZ8PxPnLU%<8*nxo)wPvm^_y2rbhU-#`<$R6=
z|B*yAOzO5`L_|Ba1BGW(P6?H5xN7TaRZreD<(nfM)3t+dqi~=-!7vhPrV%+%his$|
zbNcH>Ksysy6;FfIsP@lv$L8Jfv?21M@%_)>>*oxrq5U^aoi#56IF{=Ufh461bNF6%
zUhV4JV%9`XsGpI5R&R!5A3dOeeRRiPdrysR;nxdGi*%c{C`;@WbyqWQ3YZ(Md@tC>
zD*v)-$97y};`jonI$gW!fFGKc`2p??(<0a3Y^6J@nDP>s!;s)mb#$16mwcbWNv_Tj
zei_Dn+_3gNUbky=a`tX@P5~kv18v}!*dN}hj=62AMxxQ27Ys2?hdl3A_;&{kE||Mr
z8#U_47BW+sO2Ye>>XNgcyG-}u*k|0GQ_Wjw`?blj4-Tt613ARnZ+^qq&f(jzNz4|2
zx6UefRtjysZP}d(if{b0ufEo`&^$r+6!W02u$*LQ+3Z+^w=ynar;|^Xn5i?mciT#H
z+jV(W#1%~!G)5<2ChG9qN@Cv%P(QLhNq1+3U*b&JSuaGk#5TC0<bKYpV}as}BZs?I
zesoh=N6$OVj^ayf{G7Z6i2my!J=o#me~fo03ZLojKW}n%d7cWAMUFWL_Mu6q5_-H{
zdfWyi_2a#jNmqaRm&v_-7K7er0CbXvgyn9G+XDdo90$;O#rCdW$6;|}c0K?cBiUj2
zk_GnkA4B~8s|cd@whSx2fQr&{__L6xGQ}yH6Y?-QIZ6eEDG7YDSKLP=)Cex@A-lGF
z?#fPZ@c9gUj-9(<l<<Rl<7znL*=<0hoTT$SQub5s>HCk~?MJ|t6H`rM?C-7=8SDVm
zJva~=nig{!VEfOOGB$O0N86Sgw47lvuWhcsLo$<a*`1JXdfDBHgWd+@l6tX?ZVjH|
z*V_94Nv3@?;I`KD?~}}02^sbeB1I}qtwL@01JBVyCN=WdAif@_4#n}Z6kaJatHLVm
zIprQ65hwi1wUEVD$1e%R4=uV=dsP)IZD(J2T!?#7&KeJGEf>$7iw*qX>et$~0}>`T
zhws&=-jCQ!RG-o}zTNEbF+fGp(^TE)Y<tqShYG=S3YkBav6|_~;Ck_t(yH1IZD7~=
zKFGCBPVYxJqe_mp=h&mnSA6z`(xba?tGfsU&7H!>iXYy+Yt%46p4eY9jGoYjEzAIc
zYyQ+)7kCpgA>sn_!rX)l?_N`kvgN@0V9T8y$b2AzRq3|V&`zH3w2tm2&%%VFg?fhd
z!Y$e|pYPeIk4!y5{tuV!5xIuLz5K43M1VR4$>_elILJ$+rrUL9V>j^JA>8mB)*s&g
z!x%?xK(%&NnEyui9H{vgX^H1s<PzO}+?!u?!c%<uEMpuMO#Vp{&})5ebC$j&mNKUW
zNo1DZ9<@<#>*Sb5J8nfr(P+Nr;eJ4E0|2EOCr{GDX)Mx!bAX2_zWtfC6;?4t0pw?x
zm_)dsPEpBK#PaTZ|8~X<Ie5@J6c76yC?|kdUuQPx$<}m7FXiYJP=;M}+Hi@@67`I$
zuPYmT@Qw_TC&hI-dfyYz#-AQSi-H~e*p4yGkP7KwW~2nt%awGWSBT(;;}|g^hznqz
zVaZ`(>+x4f1sUx^e+wiM4OoM__5oS?6gmO&7=<@XG<r+*>pgPqA;86HSMd$NCf#xn
zgJFFv<&z35Wli+n^tv7q$Fgusg@#_kfEk9tgsLuqVjpe4>?Uak*_y(=y~VUsk66IH
z!i7{KQ>eXjbJ6RlW|NoLtmF)S^SeG(z+TrVq-ByELczugj09J(Q(TMBvX5T<h)rRi
z$rXba!5gtMz!igy9I)>};rZdW_E}PI%hGdAmRvu-G}n}9@6p11<<*9A<vy-96|s!1
z>UW^kQ#a<k0mDPdikR5^fQX~ef}hr8`Tgma{JH4q5-2U?li~16#L!<e`dWGTVrAlU
z^gi=OvMAJLr`R&jVD!0qw@9=XKt|F-j-9q2lEwu~2#YLUU^{yxD0mz1CH|o<)meyU
zae3QAa=PDxhin5r>euFI<97QVzN29PIMt5VIV?r)@e}ufhBfwGnqIw=;6s@bL;K=0
zNC4}FXF(gUOgW(LZfhl^JIK%QrS=w?!CU1sTEHkr2TbZ`7vR&aVX2WIxz8R@!yLT|
z@H^zYq|Ehu020UW&?(Dl)DB|4b31|bUI#UFzK6Srs|fFXKsZHnIVA_*vhU-`g<$?P
zzQ;<qq1;CTh-cp~$)RW@2*{^>XOK)9S(qVZszXEvkWyqlsQpW-0?A_~gs3_YiQ@f7
znt}a~XaS8jp8BU70hCH)U!V3TPfafbB&YpGCib*HUK<|7O7u?QvAYmM2m7&68&iFt
zW17tjA;x^!*kTI=fn-nvCjA~2p2ylZYA2B6=LWYC&0hvesq$$j&8jTXR3-AHBn)IR
z_itL%onWso!7i}+VqQ#(|3Y^=!82%FD$f0VBq+|)cC^S_{rVJa>Gj4h4GI0y=r-J~
z22gPqtntA(m5k`Ync0R*zB1EWXXSecK`0b-KsZG-W8S4f^=s7aX%|spw{%PC*@h}A
z50%CT5=390E$PNXt~vzjSW?*U{=v%mE2JQ10lxK(530^3x+9-g22x-ROUi;*<F5`z
zJJL~{jw^+EJSF_>_YkVzpW{Z?E7|qEYYm<4UEN%&wn%WTTx$04>6QpnPpM3a1(6W8
zAJW*eJ)WNG%hcyGO~EVWys4RZb5EkbIPlm@fi_`!Rxv#0PI1)cM;S@%&@j6!r4`70
zwst-(7#*zD<l6MEZ(uCYuiD{qApr^p1J!&Q(tP%ytf8F|NkFxdVwX1-r+JZQIr(+6
zA$k&saOAi25X;qkd2Xuwb7es-MkVyb6ElB?He`S{|D^5l;dKW;QTz+7&+|Z{nx{CH
zC>bP70b&X+38GShl#N7eao{@)LyTW@MDq?cQ?n+bW0wW(befEEb6y{u0j7oy*v2ba
zP&jzm8UqvI<G8}>$YgGtq9pPG%8KaGMNKw?hx<#z(h(5TqWc;~=~cU!hZjYsgRsM@
zMC1BbS!Z?F6x=2PF^Bgi6)}f`?e<_TRcd!*G=a<)#A0ecNVC>;=Rj!XY=0-i?;Qc@
zA9|T=kS!xu^<s_4<xTPdxt9V&5eZxHfcWI%+QQHG;!d(9^c~{nt5{<ZccHrod#r9$
z!(Iu>7AU0HSF5i}pP>guk)*vl)eDwwbeS1Y`&0?lrZR{P-#K#`3{LlclNSX$#nKYv
zL(&kVJk^dM-O(s<Vu+$agps|&-K5@R+l7orM)R<pQbw@<m`oOwf0D8;&xlis`Pi8|
z!al_Qumsbd`N~OKXVcrwS<5CK1*=GOjCv0IoJW^=ypWOEzBUZ!J0#_hL>qO|h{`Y7
z87^Yh&bnkD0!ThtAqOaC0@BJgbB@)mn*j1k`>|Q!x90s@EewK!mK-FK_w*GWOi;F2
z1|=_1DSm!JFYWcgr4~7QZgl1Mo-@UUv1tn0PK(+5-G&9n8=h)p4%G|D=VZ)JP>><y
zE1mbrovK@3cjMNMUg;v%?}QrRf!~vInBZRMRMduo#tq0XY2HL+hEn)ydEIrA_q~9A
zd{<g)K1$7@Q%=JNwvzFK^xN+@RZPQ|^QoPLXe#&a7yCGox~A4gB!xz+FLUY%U$5gu
z4g%5VqngWZa*&q+Y$6RA?6p5#;ahVgn|hMsP(UQ+xz9RKwY>(Iq9uZ(7!*Q!L=L-k
z+6k(}UOjZ_?ty^OB4mSOxB2IXSu}u2W;Zi^CIAtmdhRrE_yu#Az)J*5lTx4E{71@g
zxO2K$#3Q!jVYtwmjraX9W;8<kw>VNIR%D-)S0>>a{75Vc>&14kaQ_z8MGk1sKQIpf
z1dc!h4kUIDkQdyUZ-^C`9v&WU?FNz8c~8S7;q@kF>1k-htvCqP_r?t}=Fz~ppW3%?
z5yu<4GBSr`pyVluB`HFV=E8%|Zd(bzPTP*Dpl!pS7q<6)>@S?B>tfCIbrTlXXQ`Lr
zXfpN~0;FpxLJg;{I+fvEXB$jO?$3`IC%g*gbfQQ$DheK9wP@Q>!%-~w`mH34cm~ai
zjQsV{JoacKnf`1~zP;}148de)9ef&i!qRIQ5zM^{4`E-?@i%Qd=J&&K2YO9<TalV9
z7ow_x_K(rtu5v!i@h%2IN$V<Tc61DE#7-<h?6ptHkJpjCJE?ONqv4cLv<>u;!*j+R
zvyGYn0>}WrGveA(W5amCd7;@J@p=k}Z}pd5GR}-9w<5EMh80uNtKFpWdZ$FBmE@y0
zj2kSx?|yn&=6G<_SpQMFj10NNZg0C<o!-@}5t=<{WjAT=VRPNb-(7mdw;>ze0BQ~&
znH69xVHsTWfe+8JDD7857HY=edMWs0Me7zW5Dyl8{Buh7_R9V8eZ4fHR-qk@g3Z&F
zl_9b~LF(>s`M$_`mSS}9-QD%>7xVdg>r>D*5{Bm+ZTuz4!Q=)KW`Uk3(Q$|2_X|WL
zwG|FxE_sxqTS0jQ7ae8MpeX!GpUUCpxBeHxB`(H)(BWu$`XZ3e&``rFZn#hkKtQ%(
zR+5I^$8jncd>5(}ks;(GD)*{UZH4`Fk5NowV<WklPq!bU-5Tq*LMX}PnCgFSJtTXK
zWB`5BOC6yHrG#%Lgb&TA@*?o_+Y2CECOBYrbaXpg%uWEe!W_J6mg?})7t@`v9mz#Z
z8(!}7!~KGcslo;yrUpX^ad=f;9Lg4Zxd02tkmiiHfq+Kq4a56hI4d<$3OFl#cl!1p
zB4qZTP!KTOgG4fBz}<xg<FAl*T1&>#`aV8G`pg6kHX;v@{=5~~+F?oNv*`iKOTt6w
z>@7qmw(I(cK~rxa>9xrbh=4}ysW2r9<i+FwwQ%Gz)IT|1`Lp$AS;I5FjJZ$R{+08X
zspa3i`2#Tr>!@a7A-~O232{JjK&sm6k(_-_V#Y$?Lf|j<NG~Ed^v&h5ppr>|A1n>C
zbzHqK>$2%aJ~YmEbJ)$I?pj%WVwRKp6KWM^eH@B)r-zrM&WzB73Xs090FYe@C>81X
z$!3s0wGDZ?Pb6JX-w3&_;qzZ<Jn!YyoVCob&|8LWZ8?k_C%3&P&&@Hcqz6KAUxwCX
zmdbiI?&gBgLxpxWv=aV`WK)4#qw?P=%7*Z@h-(dBQzP#<nDV)!!Z<&2y}Zy@2-N<8
z2@6{xLEo#+lj$Hyk8i*1R<?ERU`hyTC&@5Ex#jiFq(n!v+&==BuGQNbx>L0jyx(jb
zWQ-*PliAfsdI+P(ngJfsV60fO<q!-jv-)r>X9(*BxV-r!{17)CZt8Z122r-{;f8Sq
zzTZ<TIX^eoqC>d6v~rpWvxAZNViLCMf5UEAp$MxnT&Y#UyfqZ?8el!c@_~Pu=%o<s
z^N}@mMUoQxx*v~e2*wtQ)lAN5H6_RM={;z~&2YV3Kepre8B8vWZ^h1Vx7hd7-?cKx
ztYDnN!ot>Es}-AK2}}6*SQ<(d)SXz&gg!<vgtaPy>lGA`N#!yKK9UH7cI=O%8vW2O
zuyLhs(x=kFy9U*=lC@}{D1eq+S2h{vYLiE-TItIU$-C!4K~9wvsND8lO9lEwKCX8i
z3v(9t^E(ipy8vXC-RM16{@jTosfs))Z9m8`BJU#TOziO@HZ4g(o<FTbZ_+I*674Y$
z2!r1+8thm9wB$1XS?}S=j#hVNXXy2&a*yc~s!<D;-frEl2(WL<;`)(qE*bjOyjWmD
zd-k-Yx_7?9n0a^pnwMEEgU>0+QNDHBj!1zwD`Zw{spz!%{=$7D&xb!ZZ%X;FZmtmH
zL?QV#ky-O=#)JrxQ|!rd!*7`&`woO?DAoJwDu`XVua&C#REdd<KiO5wn=bXD7ezvK
zO3#-Y`xY*IYaABKs+aEDmVA*2C~*$5GG@LjCRHhwB1J)<#<Chq#sKLwJCNa=-m#k%
z|8$bM7QNN3qj`J2;fLu9<8N)wJ7fNP*jh;K$<OyNk#A<0b5$AbFEKY!IZ!CCLcF|6
z{3zR*G2kd?Lti^pqfB2Z*iIbyNC_J+z)dG$`^P&A8#nlG`Ck~peP|S_zASw;FTMje
z0KJ<E>gYV=rBh7bH{Xb2?_!{^GQ>_yGvW{6(;f>x=O@k@5b)Zs?5(asxWVKpS$Vk(
zrw9UA=bC+hc<nVIIy|8h@)7N#1zT5YtmQzf*zyv9Vj@FeI*#h(K%PbXL1<P-7~+ri
z>xqKc%5fDAQ`gkrSi!A>9!MvJ2Y_1V?(Q{$z3_pY?J@P$+g1VGdES3eCjPSKl}I7W
zCUCbJP^tFU0Z)3fzrCA|16rcTXW;Bd%T?p+L))Y!_PPp|vCrRe77!^o2iQ`X0@R=m
zUe%hL$Ql^MrNY!zYB{f_)+ak{eoa5ILL_q3_=laP1=q|Qqw^?5ixH2m$9x24^Sz_W
zR{fj!H->jLa6}J#n{wk6e%B1LIu^s1V?7w)M-j0{5ue#+kGh*dwEMbOJUogGwrKj5
z0JcMpRz$Z%D8Q32-MN~_VysQFT+Sy{Qqeuev7B78jC%{Wn-<5UiJ$<ijw*|!l^iNo
zQPQ3dg)oAV>14lAHe;##4=*Ol6lY+=;<;IJxw!LP<*br`9rjG$>RthymW*h{AS5JU
z4ErHRuw)uY2k=VeKnc_g`bvrXD+`2Mgp0hX<iH#n&!jDO6^qz$f<Y+rHz)XC&Gp~F
zTEGVBZ%3a*LNq~aNHoTx%UV*)n_s>`8Sk+N?^bPegzfUGu$`0v53U95bI9QwUEAY+
zC8p}HHN_%>&qb3qZ|Mv@1#1otTxrt2#Yvy~-Mm_F{4R2Z9dk`C#FYDz2mHk<PicNl
z9)c;FIZq9$yRk1scKcrPbGFIN?f{h_t;YdrAEjLg**((VL;$&u1Sm-PMNn4j$e3)Y
z)<)N5{@3Nrozxiy;YGzmC=tsDfcoj0-K<n1sR+7!<xbL0r*?4k9**X}SYZG2?t1wF
zqL_WjFo?u2SBx@O14t&do4v*tWPyU(xrE2VEriF1xcaX&%0#K{_oUi%$nljR@gc&k
zCrUB7w7Sw%l&3A<W8ypk+d8uu=tf5*W~o`iSIpo_C5jaw59mf<2=x%wFaWsQ_D-8s
zC-5*k|0MA4t`5CEnxLq*xgd~oUD;R48o_RFNa4-F>rF>+TGuwOk+uCxsQGt-9`Ld}
zBMRz0UP)}qCSP#br=+C;SZYsE@Pe=>&YPsS<(QdhI}&(rOCf(MKTW*y_>hBL`zj+R
z3jS)Xi^yUKE8`lf?U1d1?V(|&9b+sRtCT5{R*5F&wPVq=9gSu1J=ZUSHEZhotPu_`
z;igxG*39X~#)hu)_4VPkl_Uh&-Zue|grmpkf0cy`xbwa|{pqnJ*2@j9xas9v29R3u
zY-DZn*m=U2^G?3{i@;v(HdxUDpeCRd>NmN@e*K!A@?k|d3cg(#16Y}4EL?Jb&aSxO
zVZ_cRuNSN$%?|YSo!kz50az{n9f0?wRZV@W5tNXM_d??z9~D55CBEn7p@z2M3j9(E
z9clJ((*FQRSh5I9m9AME)^Qh>j#_Wa#Lk=Q(;}lHb9T>F>G@gGUCZ<p5X!`ijU4vk
z0g1JTxX7lLhZpr21<;C63&=7`CcuH8y}t#-q%w^S?<OfoNTdNLW7h6uG2T=fFRI8d
zVQ`6@kpWH*Qn<(yqLs9iQtcYY|77^$U{2O1^J!YLDK%(moR~$=&H5=(*XaZ`c~Sn4
zY3QGOo{};S@;UKa04AuMQGKS14GR)6P~blJQ{AJ8DUAzZzyiNoVjTVv`vn-2BKFAb
z=eNmR1Z!^O;9Y?9v#V&I^G)ynj?VvZ22uzr780uhv&#Q%xPNWh|LR>&4gJqYefV(7
zAgJn9uEW1{#Q*u#fBqqGL@DspC*AF1b^gak|Ic3sypp7Bl+#V<L3kns0&;tx1j%>L
ze|HT5V-l1c96vZyzSaKw(*&S~_`8D&l%i$%8UMBv{PQ#T-;a1{C{aN}^>0i5L-Vp=
zhlPbfiSA<*{?oK6axEo-59)j5_)7j)3fupFzJL7}I2>#Qe}8Og#D911Pb2?dpV)sj
zLgwAmwQoF<NMrroq5fZ={cpef>$3oVWC^4JDiTP5jDP#BS&KNv*WK}z)UIj{Cn9;h
zM;iG*+>xlLs0<z3ACUhaUGQIT82c00e<1KZIDny29ZJP7>bLu1Dl4jnUuhxNWv6)3
zkOFTlLG=HtsYEuUGRNpaPgpj9zAS}<gLAVJ`J5-}6$b}d#s_b2fpZ|31q@&*6cm(o
z#|9`fb0i_Njs&p9aAKnQLVy=w<x3{^oBj7h_N>F%)$eF?Nq^B&q;RlEw|DB8)&JVa
z|JsoDB9voPWnxn22XhHuzkY?Xvn%^$=cKuiQo;brFC`aXHKRSUZ~yxBwn)E;`+R3S
z6u`?FW;w(Rc~Qq~_2t0-K{7uq^WYS1ctoP@exdw9BG(H+0Exxz|ErM!)}>P6_lz`t
zmuvvVg?J8QX}x+Ehy)smB740J_%XgWIBn^ebzW|dihCg<7rpwemW4eN*U-OfS5t4P
zq4new{nw}VuO0Khe?{#Bgdq|PaABX6d-qIHq<pKFNy~};0H|(T;P&z;9|iB_NHUj|
z`C_vNuy0^0-bbNJH433s^1%M(vY`|7Nx)Mrn1Jek@6P|)(g0%-3LbhmW?VKJ61ufM
z==1~VF3#H{R8Q<a@2G5mE2%LH00(SBaM<)8d2Htsv$M0I!oo}cnd|!3JwZPC^ZT-1
zf7gXJUL40hT<XRq)V}-``1L?bg7Q@>LpL}7mv_4vA~+7eV_Ocf`WD&b#c`IZSZS-D
zizI#SRk^rn>jW!$_d7uwb@2Lxo4-Ysq!K%(9ow*EZ?E&mHrb`^?qyIVB!JVACrWh_
zp8VG|z0nkk&$+E(1It^OCPxih<b(Y_2Q|~?KsvjxqvqlFnHjA{pq9cpWxirY8O9RB
zWf<e|cK9hKDC7xvxV%7o1}LNA>#cL@?<dLP{Aj~LA50SQo*<3~5hNTR<5>+4M**!W
zSE1Q(`UC*e_W5v8Z82^RKv&5<7{&*Ix<z8ZHm%z0()MQcGb@0@{J<3GA0m>g1OlE|
zgX^@Rl9C9pmN#vnv_H#b9s$_fWI=axwKhLgsP1^8vBQ+6R?c@PPk+5Pi5JNgp`_wh
zj-)A7iI7Bmk{SK?j`H`TSSbjlk^Ihi=An*UsYdnI_-WsJo?OKZP(VRZWZ^|jM%=P+
z_pba0=Rgfmm`sWEBvQo0@iFsIp1z&)3r&TOapeU8-@n=A&mht%Ej~m_s(=c{ZmGg$
z3KjpPJo0T4fDT(O4J=2qC4WV~11{|BX0LqD5nCw@AR+NL1CVy0?ApU=#-kE&3od_N
zA2ojim>rcdw<_AG{=I{|JwJZ}>lO|L6C@w-E<#myfFz)Fwovih)n<5ewBa-YkkG@`
zdmAPaOA4{yhVu^}$Kuy9$lyprd;q4L7rtKAhfkqkKtIF01E7W`dn!_KWF+FW;g$gg
z8Ld0&@W22*0?2pUvD6t^%^ksid)u6UErR1LNW0crTS?g5!NGxF*uXZSKey}n_;{kl
z%Z;oD2MkPH{Hdv_CFLjOCzSSVw=rCaWiE{)@m;zlUMT;zje$2s5^<CeiN$E6MbzRD
zW4{Y9`@bUck@WD=2%a~8mtP#4|8WZN;mYqkHj_DCuM!qG?DWRN+9+95s(2Js16}Ga
zhrnMw)bzY%8@&PIVF3X9pyCP2(eDyvyLk7ii<EA9mBt=OAXWj`Nc6yz3WO1JS2c;n
zFib{WgAg&!+{L%^;t1l8C6z%H3^9P#SPo*3UQ2&BJUBSnQwB`Frv=vl#I!Q_F(%<)
zrZR|-MQ{5{K9g;_?~O&^on1#D0w>_^s@e{$rbkvYhcGmQMV|N$382>I{lhySL6Z7&
zq>c4;E$t!xJtlw%17I%!Z1cC9vz?rA0Ad|jFb3f!Tl^5YQPN{Ja^-?IL0DxUWJD|T
zKPQsEuZ!W4B2%-!oz454@b!ynO$L1HX3nJ%hLGDmg$nzz(-P~fw7(F5-tD?jPJg-2
zEdycWkd$t|Wn6fi7i6TjnYdP4W)O%Uk86m&@bkm#*m(FtyA<4gvqU2OiJ1ZXoX2+J
zPTlJofDdUaBVm$Obdt_g7shDzI!HFO0$2ecWe4_Y$$c#{TaC&DObH@daZmT~@BmJu
zL}(*E+F>yyW`RIBM)?cRNXeWo-|;UWSL_S$LZi!%qEL}X0HarX$OporVuF9|eZ{8l
zGO14MYYnL*+eXcOr6eO04h2ELvOs7Z=`RrD{Am{kmN}pdi05kS;w^=mqj%H@hY^6D
z@z}~mKI0m5_(rFAaTU16Dx3y=WIzDVjn$0@pX2RxZW1Y_JnJ3L-}06?bsc_MuO?lD
zm}O4|9`jVtb^hasCjcX`^j%%HR9WiJmQo^1sN0#Ib6SPGnqmunOpU48<mr?u@TP|S
zqKW2pwFbbJvvZbj-h3ov;WI@QUk5P3+Z{*?y^+CL{DorJBer8y*frxD35E(!nDkMA
zLzPY8d)1LH38YQFl6qn%Yf!vYNHq@`6iMN>DVYOSJI`M|C6K3)A`&8z*~tJB2^-!b
z7R4Jrto=DXZnWq3y(>-n!-wxC2UyIL01!<1V78`o^(|46H*#|&%qF?XN(ke~8;MKK
zHdC0`q<V~-2*JPave`u9-^^~L9LNBx*tte6J5i!<uIUZCuw&5k#?>DZnpWA|Jt)9(
z!oBVIMY@K*QAWH^URNBUTOgW@a9O#iEG+n0Y?~i^Lsc_#NDztK2Wwo(X=`Z@q`DYJ
z4(9f=kFbBR01~M+(toY<<Hu>~8fW%=Gu-C;%F#aP`{5n4iGJG{d)jHz^jjBKpX#b1
zw~g<rt-E-7bD?70B#O`je0sYN5zkU?lNw&Re%pg7(AEz#s;J`=ypQV_R%>2+Ml(Sg
zrgF+Bc5h6MPuwf26B$e#7ExZbH!<w+_(laDqZ0AA0V$-t+-5WzVK773P*;yApGC{o
zZFl06(Ltl<`EF)JU--B|g$b~py&X*9$p=;;+-7RnXiY$0eqP>R6!WC)`qWTk(mq!G
z##l^p0pfy&n6YAwQkhbn20<@>zc#z2)|fsbI*wVyblzPe_s&v}ibTSEeM6HKpdS5P
z?Tr>lU`^=>(mK)TVg<MeSWESrYG(p<ehC6L#+yX9xjMUifK89zq~Ihc>0vfXH$bH2
z&1%rhyX}_N4=`SLJkZP0SE!pQ*eLZ|y*);bkfJgXYk^JP=*+u^4i0JFu*i1+<LtZ1
zJKoJ%qK?K43t(GGdRBkp@F(o20J4O8hEeS2%g-AY0e$xTeVI%jyxdz?I)nFE4+*No
zp%O+9z#foc`>1%eSyn(3NNbUnjb}pH4Reb4w&h)LB;&xg$}R3Q9L`}DK5j@~T<bzW
z5DbVNwIAJc9xG<C;s;nCuddvmcyg}O-!d{3{T{CK%Mg#{9$H2CqV*Wb!QyiUvO&>q
zR(7WArXwX}k0U_wB(h~?e48s-x)^L+PaOJe<S=~E3MzS}MlBI+C6Q!sI2jH;OjA?|
z?zxO=kqQEYASRodQZm{3dx8im%FarLThyPFxw$4i7L*q&x9M9|KgPEf{`4QT8h(-s
z`#xw^x8BkXiy(n}<BwwmA^xWqTXzUpMlGK@I)e5QcapT?Z8V>BrJpyoUY>5RLde_|
zb*XS(`&iA-If+}V>}uJ3dee>PvCi(1;(olxIDH7lSdn>|49v*u)n6H<6QBxOH~llm
zI!v}1{zeSvt8G;}^NsAz7Hbld668MK_t3L|>B15HVg4ae?7GqZ&=@;=-jKRSm8r<o
zsjn(Sf8NanX|Z14X(UnH?%B&UIfsi;kjgx)5PTqi_>PtvJd+Ws(wQFeh8%aZcIOj2
z{_Hl_2^zD_L{qa9dDaqRA&OdotLEq>+sQH3t3Fj$@_3e=+|J-HR*I16?YAM_jhSkh
zva11c__zIRGM`@;o4p?VJ${bg{DUK;#(gQPydtz0TPS8bH|Xchf^L4iw{g=?Z5Qx>
zY@4N1e>%Ba)R3=+BEfH(DYg3F_NZmEvs4+7Yd`J!t+r~@@4YNH;)jQH6>inDEMuO5
zGYNPfmMX2@DBo@Vex=_$ZFv%1AorV&do)Bl`gIiZP(?Hvk5>X%W@$$$-qE)1Cr}7)
z3G+HVb$Joh>KcxUGmz!jPcgUte3~1vQRpG^>znyYV8;`qpwjWJ9iXoQCJkAOXtmXJ
z6tG&-WQodI1$#_xe32s0GRyFZUvAYWs<)(|eJ3BZe5$r=0b<#qiWa;e)@~6e=e8#1
z0yH*LK(&)d(K6Sau@G25^Tn){T8pR44hdYkRot@vd6h{&AobDnQWT|76gY<Lyr7t6
zHf&8LWYWrPtP%*6@CK46Xs?T#H?pbqZs9`#vFWo@$%n7BvLA>IzEdSK_5`%|+X4b5
z6P^2x*Ozech`;RN7_g+E#NH3rTh+D;{DN~f{6F3U#{GS;4<0%B;Rx&0#hhK+XuZQ4
z>50<`r0*pxLK%Q{)AaE71W|VasQKJpRQED_Isi4q23Ums%VKJ`zz(s`XRoYOo#X;-
z^9fEH8bhY}^U<dM69xM_iTJQT1M@#DeSvT1P>FxUemAxEH8Bx-6a<j)-wbn)sTZkb
z0p7e6pacVY`7jiM#OboD)?gReNAhCe(gd(9QAlHb4OfL8pGwny%>Gyfn%~zfQ0g$|
zG(r<2nF*}FeADQ5q(H{+%qFH-Ae1Q=c*LrIZ3dK2RJj(J?7(q{cDSjo^+Xm*e|yOw
zOYVZ+-VjM4ya;ux;f}e2vB1u!4WGLVegcYgh2C5qv6g=`_;_?ez^D=9>*FB*6xMD@
zR?Aab;!*M?;kC~c_s~$xObt3Z17=8m=a5H?`bA)8bU#PMc&U=~%4GeL318B=<C4BL
zC=`pr7LXx1l`s3Dv~KB#1hikFE&&sHf8{x!hgXJ)$?*1?)2tWdq{O4i(J=6ee`LK&
zSou7FJN4@`F3Vruf>^@Alq0->Q)H0GySN@4PL<f7-Q9&RC{9tpw5aiHzaBq-A}Typ
z)ZYnWe!rcvplV^ZUgljTV}MB0j?4y*0R7WTdt{(UM{-($R`iC#y71HyW66)t0(Vp)
zi^4xqqS{X|3MGz~pcVW2m_J`L1R_VfTR#h#=lGSCX82YbjPhLXUK#0xBF;Ndtedx7
zX*A#0-h7Rw85i2HYDQPDW-ufEm?L(c;glYvqyU}uAV*O5R#GPjy81IN<{%=yJb0<(
z9{L+|UAQkZ6NC^NSkqKkRGYI{+v!skrSOoW((yVy6IP2yf3}zaDHP}nxRYw|lb~g|
zIl~Ra4bc{PAoBQ-igz9Di4eRhG0Jk92BYy&NYaXqM##fF9mRi5dUB4}CUQT(UaGyB
z(@w`09PXyQF87e56oC*D97fkl<L(TT@IJG$9Br4PFq|YvM;ZW^W3^8LUm<_%y-)l2
zt}Z#HL9jO+I_r`Joaar*u8=s6;t(P0<iYKTjhSAe1q2Yb$WX30pHQT=-`J02iXy_5
z^G^x3?OMdP0Ve0!-Rbb_FON|8YoOu;abTc-e)hM(ituXOmMDX=tsr~AL{EYL9oCpA
zJhhl3h1F8{<qgT~?z%AQC}tm`5|ceGWsJyFK<emkzlq*?kwE#RSKV-oPJ%6Vr#GYI
zFQE2ZXp6n?ZDH-pg&$0<V`eE&2G)gpI%l62X-eVp5Xx#8P{st=VP^0aCozsm`zyfg
zWZe1FIqChRsPF_-Tcp4ICM3OLiYVJS7?u3n$=M8fmeGA_8BuYQTFlrlpNfY7ySFuo
zhaB{e$z-oxtD8-qOb#GtAkm1=W|8J<$e%h;eZcF?iuT6mdfsVRx=UFQ%O+DG`2Ky3
zU*(c8K&7WUp*Ub`1H2?-z|^<tJe(~+19$xhRN>|S@@O7<ODxe+CSbg1xA{=XaynbG
zTOe?Tq0$;CT?w~wh3R=VDis++TolRwPEj-qS>~B(hZ|oR>s!|v3XbHaBD2H(Ij1uu
zNk)$A=m&dwDdb!X_umz`c1N_{SPF@3q72-Lw;^LnfVE)W6G3wFT8#Db!a(^llx`;J
zGNkTOTjL_4)l|U@18&&&lbKBfsYNL_^RFAg!_`D8PLH~rfiS-&k|`PFYS|^;kC`kk
zb4Gz&0?JhSE!-O(!btpC+jX6;k%{wK`=1x=e;frghk=;JjE_rRxDJ}j2wjA_&+RiZ
zol#`Rcn(Xi@_%0u314~@GKQC}rf%H9{5Gceh0T7s-ROosn#2zfILYAqWN(%JwxIcC
zr2UZ{M+{UezsZ=^&!d;AvD%naA7|<mPV7^r{rC#LQge|S6uIaML`$Y^7O}yAqf*X;
zFzu~ED2oO5^HKN|s)1&8g)AB?ED^GM786`me8E8Roxf!Gy=L_H?~m3RZIsz)3zMoE
z^z&EDGBfA!`qB+0$;7?jI?jappJkq*Dhf7nAM6q-j{<CzHu6s3>+ab*ErmC(-kcB^
zgHU<MsHRa7;0J_l@3nH;+8xhnucOi3DZ?IpniIznPY6D|isfR{-0@f$rFV9)HIvmm
zNzzsfthbex^2_&s<?^$h;<tz1EDVSCp-C-oJXrT3V*QS1@E1=eC`9-sQq8)(nRTE-
z`_fQazM6;VHpe`lPo)x)RNsTr)SAEkqv@whIo;di!>`r}P8J*i*@Txr>Ri5r&+*6M
zUZ5cmR=Rc0`LI~&>s-Ro9vV`On<}DcEVSo{kLI`XTsYn3vC<!dO1jEtE|l+Et4g#I
z5S(otX`;o%mv5xPY8c9~>OZ2q-c$-le#CY@Z8=%2QsJ&hrr7cb6_GS1K@n&9sTs;8
z{EPahekeQfB1RYL1fHy8jH`T^PGh!kj6Gm-f3<B9ji(u4x`F?lS3=p6;;^Y3;2h|}
z#v}(6fz-TiefGiy@F9LMtAK@WzyLg)g)?Rl_r?w=$$kNAxVEAU32rV^6keM98HOAR
zRIK1~)$8&wj<DW7I=U8S>3_Ltzl3SMIh4kzE4~6gniic{<p)XSegMG>(!!WPRv*p}
z$=SODxTeA$L<MrtT|`XN_`V%qe#?K~Rm1y>pNm^BqFlcz9w0x`m8Mm4$LPZPK#ntM
zZU{B$C8W3KdvxsL6hI{(PQM3li$7>A@V7XJE28Py<Rwd`knik}Y2sUWW5x-t9<HA?
zzCaBxK-klLnSm5&g_ufN(c0tN%hl;?wa{48Tni1w?FJ;wN21YD>aV<pR~Lh~Fln`D
z4qZwxe$rHkJ)1`N!ZpB)ZBGepoRUpo$pv`vG6Dg^<BGz}a~*gHZ}qes&EELKU2wH}
zJzT9}N&j3;?;@pCf_4(iWZL^55o~Bb^TwM3f40)2nIEV05e*D_8_Lz350>?bdBmP~
ztIwD!H)Q?v2<&Kn(;RAJ_g(o0yP@crl{8sRmwlCcGxsD-Za-=dfIkC}t}<9C%fqk*
zB%nG;<XOExr<jSjzwk{DF}6Etduu>1+`MZ0^Y4NeRAOXM*0};*Q7C%*cvz#tRcptc
zgD?osn_@XV`2W!LmSItbTift33@~)Jz)&)@f~a)2bW690(%mU3C85$K9TF0fLx+UY
z-7PV6e>Xe6_u22W-=BJTj5GJFxvsU&b;hhO{FyJn+vnlHJ`9bfvAuqeCX}6rCjRnp
zkHmo2XK5Z~x96V3hui#qnYL>t%Or5O%$poIoWSj|%{hmi8Qn%eCLadh+p+Mh6V$r9
zDQ?v?)djpNrwR)+Zu|Y}(!DRGgGsXjjB(baphL8G6EbQ89iqyo`QS;Bi{Blh&zLU|
zIxi^t2lsObj^!fmRHWCBp4u}KsI~3i+5GK0_4Ix!<o#b}4T?Z&DwO+`arkM@uR?mG
z`bCwg>drRC^+8c7R!l_mT?r39*?q+IJFe8_6&mf)xR7~lxZiFakFWHNbb3_K828*3
zZqp^{X|a6DZlUU-TWYFxeW+|Wh*?#j{$&Nbw9AFUXFYUzMOzgT5YFVmc9Dze+3E*x
z|C3aX@S8F0FnH;u9AEUTd7c9%KG;}(Z^yl_PSp{srMZmB5jEu09l8Ctc*>8&Tz1GO
z@pp)#zuems|KGx``+Z9Ycbd*Qx7nF+BsQ<0dQqStMC2~v;s@!}-G{n#3q=#99HX7f
z<{!?4jWBum3n`a0GYt;-Vn9&;B4ZNj$r;<<Z7;Ejf~W@bGKJr0+pz>_848Wi%s4JK
zV?tkfdBq>^=nTrzO>r|_-Z2{9WT(CfF=RZ8r{H!xU|?HtPSSLMJIpewvx>JquFBcQ
z?@n|+<u*yo>&mEnv{-1O5F&E%jSvB|THkf??0J`qK6h8possh-8;;6NO7DK2J;irG
zxn53$W-DUqktiq9AiZy2J28fh0bgFEE4pyrO&8{`--$cs{Rmo^Z2^3>6AINoiYE?#
z<x@=1he?SwZRbT77to2nV?$B90)8`n8l8DzXis~w2-FC4IlXps^xc-a=;DkjNp!#}
zwZh(KiOJu4gVE~CL5BbuO?A-n;@y<kL9_MZa3RJDmTM{Gpz~<|Q9n2w6E8>}Q*HzB
z0H>UoaPTiD0cqYitc#O}v}pB02zqwXZ&$jawgDoz=DeaAZa>Ch4M-iA9xU{|``l%(
zJs4xa?<q`9D7~$_rQH?qn89auQ?&~?6+Y8d#w`61$m@X<=g~hx(8=x)Dgip9m2-9n
ztE<On7KYi*Raq(qQ$U_>M}R>as6m85-sq-iPeh?+u^k@;g+v3gAm6cbUhC|~k@8-A
zn)W86rOp}ysWG)sfp<G^@xhP4`IxnI;+?^;(6&nAkYb{-_QoYW)JKFIBY~z?kn2ZG
z%~-<$2UsBny7j6aA%y3#(_fo`bp}!p(>y>0aa(dWu|NOQ2C&CZnCrg9P=9pcmD3b*
zmjyy?7sfy%Uyq@coihhi>0r<+0xq=c8^DYR>3p;zJx%6cc`)YXfERrjC=p9k!@D@C
zo2u^f((9x!7>SrD)87Ud|2+HVaQQ7Dtn8f{+3kg0`%Ti)RnQw9U^FN=GK9_zI)nJ_
zhcs?2dI%#)RXf!TVEY&b)xe@%*+|FZxXt$);*rI=5jdkCL@AW7KGP<URTJU>rJ%mX
ziG(WzcFlS-vtM}pV~nt{Y?+&&M6tb>8aj0{#B0GJsO#Lx^&>I)eX$uPQ16*2mMVj3
z_f}YjxW?8&Lp&=YFQw?Y&!8x@Gk?m@WG$2QNa5eD%zpwBOb~Tt``lie*xp#>J9Zqd
zdvg{ELOR2~q?2b!B*~L?n8R0r-TXwbMaEFHmsc`PuFN`2O0U*5V1tK{tp4At!y0+8
z{?W&N)w{Zt#V!6GX!2RBLUyaxcx$c2&YrV480yCBsj;vxW#Lx31?)%Ib&vHD?)2^B
z?u*N#Nx7jua&O1f1TXz-!9oo1AYri(u<8n<5cuLlVqAfvzpp9Fy%w5d^lO2sm)LOI
zY9t>|`Qxf8T4&>FPg-~r4m{%Z)GX{?i&ltPigPPpIn*hnxh4J!Dkf#O#7U}?RRQW{
z#fQcwSAqPVsZz@2qBdeoxYleT8DDF`pVxo5jk7*mp4r-HZb<#04{&dSl?{S-b(s6r
zjnegL#P{K9WaB%JWa}N#O#_E(AK#lQm3+E?YXl2S%r9XO(E7r#dbsc!cz^t6?z;yF
zEs+?QOC}J8-JqR*qvI;p&l-x=SvXW05FQdR^}El1d>G)_U^>pzQxYx~e=LyYGo}Eu
zsjJyzGmuS*iQ(usI8N?b^Wla<_E>dC*pSAjn9-)8xPhlnNl;25YxT-^B?958<@>mB
z1GtD}l0HrLNVWyAl0v_%K#Gw`HppN~kXvX!T*pS*=d>IbzrZiH6pD4~SUFb=S_>RS
z;pQq@<QIj$8G1-M-+-}+KBu+7&*)Ea+V4i^5sWysMDRs8(s+H@hz1BW6yOu`p`hd<
zsz1+;LqQ2F@AYpMNVH3AbM<kH^2^j^C0iCmO}-@{Sidp?(qz0bGC+et2SwX|3I<$@
zL<U{UyZD;|fmiz&W?NXHbH5m$<SmcSxAeAR$(v@93X4o(x^vcBx~wNP_n&S1i{rKD
z<%GS}v>*d+)>Wc<hCpl3jk8oK&78}KL&y(egCY0<O1U50QV2ZR`wMyzcZy#;CuE&L
z{U5{c|33;ZVS-z-Eql51m@ct`7GBg>R(f!m*>9{`=T$IuDVR|+2??PjZnZ{m-Sf)o
z7FOh}Y0Tyc`sP+8%L&!U)UT6kyCV8qr803{Jck*!pTaILjAcH9${J@a#HJf%Jdu6B
zWM<Ojt`6{R<n4wghd-(4)~S5tH`NS2txICcoLWiqWj2%|kt3Rzze{Ekp=zsbiDu<S
zaKbU+t_2DTQ72gn&j+L#|0Fs{$5~qnf1|HD)imUd+n$otP9SO+{^7qwll{stvLHH1
zy!7hmrAi2MTt8DzpuGd3Q$zzi_`>+qhhAmw1`}@1sQ#NP{o6_Bn}M%W=N$ZD0qjx3
zt39#Q!3=lqGGIl0-8BiZIAFq4X*@-L3Y8dsHDNhs?3T<fF<Pure<z#f-c%wpg&J3K
z=#>Q(uU~Rwe%Mh)+q^H2bzj}0hVb;tJX+R5$szXKaMRv=6Lu*cXE*z!OpDKEIufiR
zXFGt$!6Oc0Cz_(+0t7(G^mHR=P`f1;PDp**FaBPkP}d|jt>|o1=J&Puv5)x8#-6g6
ztQE@1dsM3S<8FBE7_h86Eb1E4<r@S&S1lh+dao(EAEVc7{heH#3YF1gb>uv}imB&9
zRU1@<XYk$L^fcBs!kdcgnh-3&4qh2oIEf>r&}ryv-Tszp;R>(Y(mwa1gJOW#{pN-N
z;bn=@8c!MVuO|kzjaFXfqzmH118*CBE|D_ihfhqHKT|_&gLxnxd<N8{L?}LK<99OD
z27>F;D4Ua#1Z<rOSrD*2L1nj2KTcr^P`iIg;V55{UX4A<3J8i7JUTIQoRpQZTv)JP
z*#8o}(XswTcIksA2=pqvB#@iKhn4;Vj!5Iuz$4KrT_hdYR6O*fbeDeT9WNGt`~QY)
z9;$W?1tNAvPPYFmSc=2DGw)n8r{zGVtC9PY-6$auY;E5U8GPoTMaNxw@Ci?_@mF)r
znJ^ZIFH7IlX3!F+?&{M^aq9Zs)+SeU<~_q#I#OGK(M)0<w5kbS%UKEnG#cC%H-3*f
z@6t2`ztGFwM0e76H)~lQAr>@7F>ixv8wo`AnX)=*lDqWuVlBg_<5?H7(MX!5&k~8Y
z-zB}rp+8jkC?a!*;FS=g{7KrZmhmehfT)gI_$qW>iZE7*cc_d=)hI9pJ><Ist6A9{
zVUnfePJ=L4Nq&?nCA2;6%k_|@wZT#d$gEC3qDr-nt-3$hlEvUf$2vbmyZFIT_9h?^
zA!wp2qOUjk`ZOiovr@sGSpfyK4lBt9W$9b4&LwTpI{b1K+iN}Qrmo_aK1<#8a4z>Y
z2T?vSVe95iXb&ks+)zDInv`fcXFf9MWg1zhoj(9J09h{f-Ref*(iudSTGs~*`Y-Wd
z5LA+xZR4jvoxp-q)Zgoc;z6y97v~&_giBN{K@J})KHZdet6thSpC+Hg1U!Fo5<(P$
zwT@y&OOFdsKXZz$ceWxw*Iw<ni*&nVG4b&HUVnK}9{3v^tqM#!f2%T#0uIp>0C+^^
zqMq0=u)|PTWuWr8^nR|A%=xn&lOa{m$bo!_YHt}>(zH4Z&$k@bo()F}C1GAzP`omF
z>itO7_otwjcSZd!Z*JA#g0<c>FXgY$0p8dE|BckOJF<~H^_&7N+L#dm2_ceBsUY-N
zqA}U&{v>uSGP+|zaEk={eGAWdKWV<9d~V2Cw6WY;?)tI%f4%sTl;BDqt{K;O!uv-9
z!PI9bAyEj4>x3EuJPw^jr}1!C|Fh~V&8)Z7Y)s*A<#&wBC^Z`*!Zj8{h}?b^Y-N6+
z*dG?(ll7a-2x1e038O%?-dWTig|P%yCex{AU-@nY6{0$grRNz{e$w$XU1wG5w5cO%
zbr7^M)ygPAhNy=SEoDBQ>(s|A*MB|esL;HVyikm{>G>fbHuJWb_BG5RI0@wJKH2&G
zW9%wx=DH^YfWu*iZx~~E!&xmk@v6X5hrRKPmap9E7h027cINpumio=Ke+?VzYxVea
zHh!0xucEpQfCP^}6JZmnZFn!Uc_rvJhBj@(T#56+)`p#Dyx7m`cy2j?@Y@%f0Yl$C
z*3Q2Z(mi^u=w9h*3g#8;j;`-jV|Ig`NP{G5`yv>HC>}Bm6WVlcSE<@}sOa_xb&Ny^
zz$nY8S&-2h8;vkwT-*0?;{a`hF~qDsdD5_qQ7}gJo$AVdMmt|{s;|4$j~$k3S&9)h
z$6EWPB#5&#KSEoqax!VlTLs{Z=C;u4d^YjbJ|}9)3@BO%W6=fr!lOKY9oMFY;ih@s
z@{P931xAy5^rMzogGnbKQ9VRO2JEh;@$FSS)$5Cb01B0n{r-}B0-o0g9}Pt6&j11U
z8W|g%7cts3h9dlVhTDP6x=eS}<j{XRg5q8fz;(|lgKt`!%%21BN+9e$ckdH<h|6}0
zp}vtJVa5@W+fWi6QTbSK|2Qddl##gDDo)Efe2htiBfw1i`c?<W3IfbDmr8z}`meCy
zZq#U#9%)z;ey=~E2duj<cT0w@w3VDaCo5Xha3lX2xW1pWwo1+U7E|Z<3%<(1;g4U6
zpqUO@ImsvF6lEF(p7(I0*9A}&T$HYoNL!=vQ?Jg9LvAx?%Cwy2<wo%d1@&jxxAnh1
zZU6qNrngH_)<vt*>>=lc;!vke`IeE`=tY&t(|vk&XxneV8T~qQ4@iDrMgwuxk`m4W
zbRHlbxk#~Yu)O;NX*1~&y5eFqWWUO=3qHv?mgFA9slP|B=)$gf{IW6XZ8MIo_U^}+
zm~U#iGV#;z1tpl^QC7|GWo&%y9C}0m_Ehv&3;hO>AA$xa6x;li&X4w&NiXqN&Vc=7
z_IQbo;2~Z(W`(|oeqeSO=983N$4y~OOP`Z1HOYot{W?1?(r1IKYipi>H3<%qPKt3~
zWuAws6PY6&WuT05PDAqgu-(_={`UM2pubk`|0U2wu_VM|I2f#m5HevkF4cXS;*7S8
zEkWUQbz+lpdII)9)}I@tK4n}P<JSLnOZJC-L-lnT?jnZn>O&gsk=%|THtyVC^H{;b
z>_}Au)!k|;@I5<B;X8^AfUzz`_$?{5%^S5-SoQ5R2i*-Sync)0W8Cm*aPHw0+TUoi
zT%b46xki@zw!8_&#Ys`PSm{Ey?DL1t85WDollhg1-`x{8d=i-#VZG-})am?Rb#{q|
z;-38O((Zdx)+<H=gNBB8s3rHGjX&@w+~+W9ta&z8{t)~T&&9PPNxms+JD4xVY`T7+
zAcmEBpJFx{o#$*k6>*h?Ja2ewx~5onzx^Eh`-r#kvz2;kQYnV|*ZNo-i>kx@<J)V0
z1fws}lA8zQjE_V5*hH#Vuis?gocv(bNqX+n(H}WN=;mJUMFS5R89(bQxSNP_V#2K;
z+13$ewP4v`E%-5TX;uciDr2fN5H5K)G=K_iD?0{&_bnj%JYm0hJn=yUpXA~_)|Um?
zl1*3H6{+WQ9G|{Q?;Jml*UqE#!+?{|R6f@_`gQtpVB<%5_&NryM_Zu)5ETw!=a77s
zwN|_3B7x310#q7x@p|WB*6&o*6T@%cxz~?X*q?{zvg2Bu8=UHHhjYg`bXqO66O&&9
zdny<HT3``CWtmYbtwW?*j{JyMuCX$qZ=b}7N*$6v(&taoR<)=RSO;2~D^Q^W(!467
zt*-c9@Kp0>BXnUK%?#1MB*iYJ{?6ZCpQlD~4!^LgVV7xaEa0TJGJhQXhF<lJlQc{p
zH*7b%bTvC}xqsyrV90z+G4}iNAZahLv&h)TY`4tkAlX`s@_ONLTQLz`Nu*Ha#4YX#
z0<V)%0Hl6k^~e0UO*+)Ix4${3#oOSok`9)+w)63t2*7;N{n+EFCmBErs`@}zH^c~y
zUN{l;a_yiVyPj+rGu>W2`Q50qC6QB0-6B-Ql=1k#HTGi9=|NTIh!D&ZApWdx7+7GY
zD+wF_wDa+~4LSAAS`7#a;T$_e>uD;nuH55Z@a7~vsQnPcHiJp8#n0!IseqLaPG$EO
zHJ#?34R_1NO*0<*X8a?RMy#X8A{ARVm$)RPvMOc~Sz9JGSi7ZhT(p#~5^ucB6XF1-
zKgavVP{yKLJ6P+v9WnZWNJcIgWzBewzq`ixjSbuMCO#Ygl0Dm;i`0*@b%nQ8qbVho
z_%diZnAs5U5hfOMYg~eIZGs9A^LB{$Nm}}+t;zI|XgGqd*-J@U1}XnD1*2f7>M7%P
z&97q#lP@!7_^xg{lvucg=^F}zQLg$sns!O?J~Q7y0Xz+l|Gd7%BFnFw$b8MW-em9r
zWDxy;#UvcoF@%xQ2ixp+w*0hgLm0{f+bFHyFBgF1YOV;e+yuD*3Ju4()0+%oZ>mm}
zSJCD#NlC3~LgpR}CtiHAsTZE?GcCZ<;XRpJC>{b-F@*`qveHcS`;DZ@)<bFWe+gtj
zQl)xg-;^>%(#g1uUR7KD;vxSjJpAUJ^ax7IgC$N8cidYj22P+lT4{;10?BC9U73*h
z5|!SveFpwc0OT3=M7EGr+qeM9Yo3G$3`z^&a$0x<J>ikg@x4An&MaN&{#9(YbNd!Z
z-s@~A7Uu?7l??Ozp8x5da(;5Y=&u4Set3{tW|QTHY^;W>)GYjoQw`1qqr4=xgBCAH
zY+Yh0^y|FNTAu<<nM3{}z`E=x33>WiPLrVjIn*)8_M1@J*1Db&y9#B!%%O!T^MkwE
zcl(nAw0sJb0~~0CDH&X>`4E9U2E;HsNh5MUvh-_iwD3B|I1pMz`51IKu69$-!ym;x
z46}>ufTV_S`KKoN9;t^F%41+R?xy~zf3G>HW&A#lh*=>nsrJ5lcqYm3v;lx`SWBCx
zd9N<gh6KQuJP@%7(`8yDHTWmj-jKcG%IW{w;y#Q77Q|o=N4*9o%iI@DumSc2k1ZWG
zU}aQOk7xfPV&(2CQl0T!!{p0r5~oGQ1i8A`iv1CsAG&;{dWuMD_m~y#?18;cH2u9g
zUy)qNkxX@nFt&vN=T2cw$QdqPK^%rrHv5X@6A9Ej85;WgN@UO=EmwrOrt;Kj@aTde
z!&%*Zy#FX0iDm=qB^jHHDd*j$rm*9^issTpSUS?#R%S3#M?PUy_3ai<=E{8<OcKRF
zUI|8U97^44xs>Q~IQdRr=JnvyT<#^(-zK8WG=?fRh$LSxrzW)xu6VB_C|Y6>V+o1P
zEoRsIyGV!m2kM9?rZ-s>0iiHFYmA0Ovjrv8J?$|<b})C$`6sKGhmhD8<0+*ouJTkQ
z#gg6N9{gv`nZM>z@&*q?S~u#vk2{BlIbwv==4nr#u?G`;Zp+oNM(^w6y)Or&anO%y
zTjd!@k#^VWGS~7G549{rvu2?Y9n$jrp4QZ}nZ4c1NN*<C;mh;)RPAik5EXy}Cr5Yz
z`>a!Lus!PH8np`)YVXTcfRz+Kkpr_Um6O+@>7Wr@5$y1yv>+(WaK-)$aKz`bS>;~B
z`2q}3Y|vBg-e4zSbXGZ0?vHHk^Z^mlI4d4)0VpB&?ya|H)PT8xQbH@GUViW!ZS6b&
z4CLZ8sE-4Z;!Qk=K&EFvu7={f*;-qcB*@4;Ack7w3+O>xHx={btNdD^Wh7&6Zr~GO
z3b6R{etOr>hiUN(2?o4EwTh$jzZs3tt)}`jE3^l!5(sp&P<Md<XT?2-k55EZ(5^Ap
z@=9!PfT(lNG179BL|T)-*j2vBwZ1BqIc!z+HeXN|DU^iiA=NbY>X!nuE<#cdZ4&ML
zF+wGvsYhtZZXvR?(*sy^rDSJ~wEFu;uy1%TBhbKVA`VMp=C7x6`8lhthm+~09k>x@
z*TA`wyvW=}eH@68aj4|vIQnkh^9CSa(yCxC>NI<uCQy8&cq-xNzWlYTr)R*M#`G0Q
zMA{cW;q*3uCBojSv-G1SNcDMuJKCOf{ROv9`6Ji;xoK7OATa4ffyLg`_mBhbL3~=A
z!`nl^xk*uFuAa`(nC*+`;-x=tQ@R)-BvKOC{QxoQe^ih^r9Prq21gLH^mCcG##|3l
z2Zo^x5}S5S0$ZfklGi`p*@O&&Cfda1wfC7lGQ<~wIOC*jkb|#IsV@Cd=RMILDg2cf
z0U4?{)ym)IpdW463VQX!1Pb8K%h%*aXkvFiz4njJL<agZ+I{q@@KLluy&@b9EdOmE
z^8mc|nnRbQo2qgK%r#Q}d|W)^M4Q}WiWts{{20pTZysjJL=zYa2&CEaWbRqQXB$X-
zdOkg04}3n6JcxM@MI6r=>1QI$MBT;(5p4J7p0r-~10k_`>e8>yLedvgs|_<`Id>FI
z@nZ@1?`8$Z<W<6RK4*pz<ri$Qq6KuKiVis7nEsMg2zsd*H+=D#d4D(}ktva@O7S<h
zF@e+#Es|SJX+LZP!-&}@Ck6jVm!8q|9312hg-UQsh2xiZOk>u*`$Iwt<{I3VV$Qhy
zvP9J?mXERCqy6SS)#oj>G`Hg!k!eMIb5YG_Vi(g1bIsBcm{-V(v|RH7(wr6z3-h~e
z&*y5+VM6WImAN5=Vz)h!N=a>wXe(m9_XX1d99NI)d8RcR515HX1Qt;m&Oo3VKDi&!
zR?8P&8b<3Sr`@BLuXSBm2oDxh_uOEF(#GAxgh(%oC)?A+<hH8-M!r0P72BJj&??G5
zu25lH+#cJEib==;M31?S>XVq4mnVlaI5AcH2=a)-jUM*#35IS~a7f4_A&)qM*}Jm3
zkepAjRIw|)1}=;*`0SH|ax&(@BVci?E=ctIQ0(qteb+b>epW!Z2VvK}X=yXaA~4g&
zLivtCG?HF;yZn~3QVQK>zo-rC7TBUBmiK(e$jS?h)f4;RwW8HF$5p*~2oChcvP|Q#
z?3a_KYL3+?Q0@a5KsHM`tJp+Tbk$iIv{4HN8HSq<QFziJKv<L9I+kuJI~sv6jt@)W
zwd}Ba$_H2f?ce$9cPR0Ap#(mI;3~3nIXCQy4+jGeM5}}&*sb@;7QN_|?!~?o1%}}g
z3dkET1Ji+S=_ejt_0mG<3ykWv*DZGQjXe7Er~rBCIRdS%Bn%5bODOmAb??@rY{^5w
zpt_}J%>B#TFxPfoEQb+b3xRoyqOwP-d%Y@{1;8B0+;jZ=;HTz$tvXH3IwLG3xmoon
z(pd2Etp&L1{?5<d*=r7VZ}el+J`spdbp`u=#Q&l}{u_}9YzhYT;-4~*aj$8X{%)!U
zi?12K6x(dIVUY8(9(F&{Z^<qUZN#>cHDkYG5y#`E6x(*(OiRWYut}80wskWkI^)Re
zwc%tQE!||q&3S3J$|NA#OxjM`lE5zE*cRu~!w<Vxc+DftO(SJ3QZ5tEJEJ;wKEHLN
zgFiAI;hGnQf~@<A<~FVKy7*~`qy*h{<ntdQ_~h?>%YQWIOuBB}y!F4L&>7&iPZfX4
zzL<4#As0sWGLX-A46)#1(|p@iUYZxXYNnhQn_scH0|&+y#T56!WCdcKY97}B32?b|
z|E2%mzbBp%bL@SNB>dH=?TAJBkSg><nVbz*LJe0(r8KH(9+Cy*D_t}F$k(l1Ga5rT
zjETeo`U}`P30!J>U*k#mcQFG$at;QLw(cmNz9$J+CHr2GXBN1ATkA??m^P`US#`RZ
zdo?=a{QCo_G(wovhn!uFYjM0mps_f2a&mX+Crx>$c=FEW7QQp89yY=YAhExN#>T+3
zOd_y<8;}#MRD#Z!hF&BRn-IRuARjV)iue1M!qPsqb`OOjxk;tVw)!@`*!r$7DmK9<
zsJBTA7fc@rp6BR$Qp1<Rh!0`hC<#+|GI<Rg!<fmf{ePd$u(lgyy$mG4u#!+3cXU0m
zco)|U%uInz-!}Z7JQo6siNi{A%!><7{lai4891ANt=FR;E`f$I6%76w>bfvW#Z$7I
z;2|d8a$b38U!$%ua{M`cIxaMnA<TY&wnwibO*dSua<W>CXI5lBtoJtwkje|{B2%x?
zTL4-XOgAExnVw!exfw`C-e5@C^t!j2(`0OpX?dKu>J70~o7gVKjj1<+X#j+X%@g13
zN#~@DXEsFb9pRTh(ND!mR<F?)N(XZ)Br|^+sThZ4OzZ~0&@syq@3t&;smsj)MFr+s
zlb$NNB^_M!GukzkH*RZJ*#_W#e?ZujytO;gYH#=R@AF*6x!Es-e6$nMyWlRi>ZPwM
zv>MqsCr&j0DFDdOPV%N+?67L*o2|Bf$RJPBlp`JM>u(Oarkcdx9X*n4Rc&c&(aLd9
z+XOIXVEBIfPQ;1^g>LzA$FZ@A9$l<=FEdoLSW|web4QUs<yCya|BWlpIY0|BoNmLP
ziFi=x$mSgdvdbjj#DX|-4%P2oW6p_72+?zukEc1kebl5|sx@FWjk8h!$N+wWq1>Bv
zfVd}(>iOo?DQ;FkP7>PD*T?h74yOfk!uPjPk?v?K*N>G5#%SZ~L|WF2^Mo!TBsn!(
zxwJpOOm0Hlk40Mi5;I5?i#E@<rDYl&s@?N!0bU=aJ9|5iAa{g)_R5+Llx$^tr4jm@
zlbOD!AolaQNFY7atNlE)4=+%!pyy{Iet|)Uu_+2v+P)VT7}Fd}!4m5)i@vioYl~Fw
zEY1pLW+50z#QCR%4C5{uB_iv5ugIcdt#QAJqMi|+A#%MtXWQ!yV;De+!+@TSK#n4=
z(hAX$+77gD@*ay=L4%Q?v1<rQ#Y#yBku$LHsG`^}H8sReIfYpYeIe&40FF^B8+x1s
zjPfF3n=q77vhw?7JF4VsZKhHYduOU-AgYOmoP3jKNC1IWNFex`+U%=!m<P}Ea^CLl
zM~;SKE1r=`Zi8wEsFOe5O;;hWw(>HJSaP40_Ool3!Yhc&Q%H}})#$wVOZ!IYg!tQL
z=)9F#UY|BjGJN!fM%fW$!3KD%MQXZ?x=+zOy@V%GN=>Fe9-!`N5M(cz@Kn>fdzjNL
zPlIej$sspZ&B;Nv%Pm;AxJl=lR{QL(DrPP9%Bo|Bngp*=h7qbvs*zYwY7}njUfGu^
zr3;G}<zoIXX-U_FTB3yGOXn0-Wwbr^XX}O;hpF`%be`zUSs$XuP2aBm^-WF^Ud6mK
z=-~sGf|jUKeGCy;pvx;Ha^>IW_CHt1NI2NT6J<13ZZ(*kY6qycQc#>Mx69*#Us#|o
zkim`}2UY>6H90-%P7p`Rk`XaC%W)|<Ak21HX*^Q&I*Ks$b_HJ;zI{j)woQNL1+chM
zJRRz2FAXumoJ33?i1V-t`XvPvSVdXz=D-7<)OIRmvN8CDXAp}d-}`jORk#3Q&I@iJ
zLb*5KXU`z{Z>Yh;F!cn?9|9_+HTIt;`$QAT2e{`9WXIRfMibQ6EHh%+-{+T-9Zfx3
zroAU%rdwnxy&-0;JV}S(qbRK052bnAjmO0PC(rg08zmp7)p8*DruK;uE@PY$v=S`#
z9Hnpmzm9UiUy3b=nJl#hY8I-}^G^f)C4cACAT@ihX!R?h$^@=5O6ly6iwRK=r1guJ
z;ZREgX0urqTD{%4Uo8LmAHSdlJFw%spTz-)(3}V8Fp?4lpTGnSgfF(j_MiXq|NJRV
zlt9d9edAZ^K$n!P>>q&6e%ymV?y!Ymd;lO+)}yvz&84#+YsO7%m*maTof7i7iGKv)
zmt$@UB8@S?f^n#Xea(~ifoZ%H05UUX?B-uPvAMHz28F5oqZ$rDD1hn1slS22BVctr
z7EERkN?3mcysH4}gRjTHJN$2*a3D2V;BrUUr`Xt7gZo0YTsz%IPO}J&-22>mQI@qI
zHb*}Hc<o*{2#|mM>Z0;r57r}0%))}{fsy{RdoGf&UYy{tS$v{zz~cW>S^T?91F0Vc
z0yHtT=_*TRESRxLXdmK#!IJ-YQfn*_T@;w8p^_2y|Eq{}83;&7q#m50ITV$Y@&QC*
zv5MB3=l`Z)|FhmaDN*oH;!-MThtvOGy^oND31IR`LO=l9EjMcZ3hZz;$CQ(<ude~0
z?Qx4sU|xYge?C#fW&Qssss_S`QRAad=;r^1TL1O!Pe+P9>|pO`y|(BPJxLIB^xsq8
z%`K0R>jMwLNae*&BLDr<#+48(5r7(Y0K>a~Kg$38HTKR!NlO2uOYEF}YpZhQ6;^8v
zlD5>ZIcGO`{O4~23h>Hnb`Sx#Jvn2aBedH0v(MdCo}~=N9Q8AkuTUv>Oird4`CVFm
zePRk8FV#DyiW!uA`p<_sCkL&>2%z46d;FUBqnK*8s+ZTG`x>L)=WQb24T!I3PG&}z
zjSOs&o`8Vl)qCUHxZa+y9~^hdce6)2E&7by;s5c-m%7DG0Iw&_Dhv5KY?;piU^Fa1
z--qRUk$u6*VF6@i*v%RoAOJxQV`jk8E0tBGXf^A0Z{w>v$>2(>gMPOoeZY*oua$Q^
z%-91B>-|mgyH8ZNbopHw{hHq8gFrbokfZqY0PG?S<w})Iks7zZuOlNO`kIMbhIq}J
z%8$|Nl{+N2a{*m~)5(iPpHF}(ol81!CH<>%)~q4Obint)<0bI5D;#QxAR7UpSSFWo
z%N~;I>he+zfW71zz)ddOM4b9R1}%NL>c0~}@o;l_v<_TeyNn`}(vdG2ouMb0KO!X<
zBCV(3`zxMTrLuo;b{#|aWV1|kUuxOU$+$i8-X~!PS%`Md<%)s6yUIpWEQd&Yc?kf1
z_J4{r3LdnLE;kpB1p;aRvzZXHB6#U>2wPrNet>}`QI>$Rch}*YOhlX9+8Q@dAG%qs
z1qbM$Ix+s^SB|6yKQPL_DZM`^16m?spx5~oRx)^%0El6w0TaF&pbEYUy4y_%4t5AH
z`N}F|uBK`9I<@}uHz@p%ClN))S*V&V(Vf(WkIgPF)Y|B}s}4vkp?2<x5DaT0Tcg@_
z^E*k<+VQv0KhdG%@9yBFP}X;8&IoTvWFnjFU7$Fn+md`bj^HvD@Un5Xgm8oUC!rxB
zx<mMu031>PpgALexxvSmP0308pZ-Uw1X7a(=9yFXy%@Qpl|n3$ivioGehV)rp?pK3
zy%4<8gMTu^dzB$TFREzlf6E8h6GQ_}%LUYkt5zVM;sf<L;BEnA-p<K+j2CIh+SQJX
zj8Ge)m@FegHNTrlvjH&1gXnqM6Psu?t<1s6`k$ZM22whGB-EJqAgx9q5IkwZe$nmY
zG0HdAQ{n7$anQWSETfT_jM23^h2wFgAe?7aERO5IV*h6MMM}D1q|j<rG`162U}wE<
z$IkuM*++gsit`~T6vAcHBq!*;pJ?QhHK^0*V#B7<O$M+Gj?VVy2aLQt3jWW*A{N8o
zu-;EP-72uLWimZ>*~PCSaJt4w0#?9XU_2&v^HurYisxS3LHW-&3;|=4alm|Zg(L%x
zkT?Z5n%K0U?iiZX%;Zknf85&u%n=G*qecq=?CI12H6U~6gO$Wk0-a^#4RGWa0C?%|
z2RHv8N?c8DLd-HSV^~~5qFnW&&vWBa=2lLIZKp>{{-c+cW`6oC6)fklO6y_TtEFK4
zM~}w<=;<v$Lmsr9{lUo&dYRSnKkmr5d8p9on8x(H<-+#xi-4P`1&PFDsUkJm@Nzau
zk46w6lSATHNa_66fGc^B*C%{kv(ZR7^}!}%zOPJ$3-ibPHjA-V%;dsY1q1b5&joE0
zv=tKr{at8IP5AUl_^Tvvk!(Mh2fQ~kGZT6n?A~74D5D?pRnTb-nxCKVIi{@@bVQjr
zUiWT#<;Xy5wv@J6ubRai@fmM&35Z~G*@)hhdC9DpoTre)CjTgandGV>34(^!#~+M(
z0sOL91r2v{4}juS><B@{!1LG}MfqFVs*nh$Kc57|Te7UItkYo3eSF<BRC9xZJp=CY
z`?9(Pw#|qZUT>Nx5>^Ib6WBY(Gn9YbVPgB@uthiswm{_9n=a~abZ1^}Fzp)cc5~bn
z+aY>?^XYJy0*nSqrbZ1!x{non{WYu6*FRq9aHQ_S|2%StW<j=9iAGkfAl8x^Dk9RN
z`L|uRQ09*t#Qhu%JM7Q;XSjg32RF@B{a3dNy|?_@A0NLjGB_1*VMTJ>id;Jv2%OHi
z7v#Lq$~%_DA6XO~a$!3^I?a`t$587MI9Fdb%eUa4@Yraxn`wF@kk0?68tnKM&Vv<7
zo{JtUtY~RpAxUW2Pb>jTn`!+t;d{;6W%$y1eC_K7DW^_6mB^@mjHkscT`~nac3SG0
zm-GZb%afTJlj2wA?>}aG%7456Dw>2)NX`~0%gp($^>&2$`;Xk&`@GseqTgyrCh=2U
zU%P(eshbynx~V*Rb?~@<H&VpzXB|Hpge(i2C1#|!LNrcyAh1T%(ym0lmd-DsU$aa;
zG?FAgs^IR^#OZEJI?O1p!EcE}mnrD0==tNMLW3lUPO7XYj{H{)G}C84p(;<)S8^F@
z)gFDC@~)-xOh81Yd<y`#ClXL|b_>hQCJ)DZk9_~}xAcbQbZf%<D?jPq*Ug<yhF;Rf
zgih;sT*JgyP;SGFEHQ_xHm(L0mHqj09lqcAk+wmuH1kK~fA3dy8cW{m@cYFlSZ*Ww
za%+yRD-4Imx0qs?vI;+t_X9^0Q+?BHtG_59B{aAjemhtH-Jomm3ok2c-=(w-V7E{N
z)F9G-?m<(8KLZH;DqTLt#ytmY>hb`wVjqS$?<0VmLog34kbWnL^vBQ&D*zhhtXkX2
zuO<D*z<ECUw{DS(?h0ruH#G}@g$^>b55RcWZnV%!vEQ3=o&!rdH9#}51>6Hk+BY5q
zH^3JA(N2jQB@JM8E+~nT<#Dtk<0=%_0o+P=H<w71S@;-{LyyO#p?hB%fPE2=-0S{l
z^RWjdsc)tU<@1a3kyM!C{iDIUju4N$+$L4vKaLe%WLT#&3PjL)#e(fyCbOTJ9>fC5
zQ&k0(ljyWR)EEzvR637&N97y|K$Ds?Y??^su3a%?^8m?8Lw$fXdjeCd!!lSHz>K>G
zy8(+4AYCMtX+F~jDUaZndvBQ+8tD)r>awLeuqhZ4;|)Z8F!k+hZd#vU6VVOVn|DWl
zXOa=mXgQtG=OHN-A<HnVvtLvO95Eai-u`simbefz^1pTU+W2C<#@q1r9-wOf&JqtU
zlnBMDin$85Hf3)1K2ILr*_j(3B{c%V1izMb1M@4%@)wFAcS6;mHbJbW5>+tA(@aWU
zt3r+f#>xOE5vaZ4%E}6K_y8DgpH>~wt^&M+r$g}|`IsYm0HetZM8)W@VezlbTpA}o
z5KmkZFxvyfUb-#2I+q!bmLutQUplTpngOd6q<PD?HXEQz;_7=}f8-C`QR!#kjavIf
zk%m??b90(+sDu6&%NSqk05Pc-@TfjI`6>fq%TLbWzVZP;SE>YTBX}0*JcD@`CUGd9
z1PuBH^IigSIm~08D3LlqdNB&XL-u=gP3HhdG`0aV^B?m>8`MA+f(!+NYH*Jj(eHI1
zL^K`50qh3D>4LH_Rb4v{$PF00eMFc!T82y0_e)hgA*IwsaDKE@nDcfEcc$^3+Yiw3
zOqC&tZrdFrReJw-wnZ)y0^0m58n2OPdKG@cp>wx=mPFz>ypB2$h}%?NN?g;9C4{b0
z9RzAHe!?LUH({Ml0*YKT2=(%BNW4L%@ec{Z<RO)M(Yu8IdNQuF)H5CyHQV|;+2<BD
zItRhr4@F!l7c<UqQV4%OD>bxAG>nznyW~~RW_VIhFivLSv*wQxD$&)7r?Gw1Cj`ce
zOZv3%v|mB9UW@3i7q0fbShGqsw5`CPc7`aE+go%`eL8#j(=cHoK?3p0b`GpS5HGc`
zF|LOp-#$mdeO{I^Roki8-(p0ru_XOAn>@6QjGj48^!<{#x@TK<{L4Tm@e*=b#WM3|
zj+}RB{P$Nh8QJ(VV<S-(RQ)WdR;7=}{-9k~NaYu6p0<QBJy#8Rg56y@-4x8PKZK&d
zR1W!kesSWBh3D!6Z#QbG?lM2=N#lMqZXr8hcM^KL&vIt)rMR}xbMXah%^P`hsEOwH
zGvS)6)TcG38%&I%+>Z}McK~^UYq%>u5nx<*kV1wHtERu8LpPh}@M!CbB79S~x=hRs
za}mEELC4rGhb-8cDESX?))jJiN{M=mc(29Ft|<~!%Ul5mgWa1WeOAyCvmDSWVRAc<
zNeT*lAd&=H!8HmG&<BYCB7*bJbR>``?l-Mxnt)*uUM^d=rh1kbN)aT`IpoZ9lji!i
zd}k><h37N3k;M{ya_IkP>`-LdV#GXBRSMhw{{2hIw!W(Zbav|B%dxjtZZZ;G)?R3>
zIGo_K%XR@94WApDOmQ{Vi?iozEdAU=J6qb@)7g?W#B2WXvfW>**F6K-IN@1Re35B0
z5*}zKUCN4aFFz611Mb@w7rm75Dg&h+V+vfcI8mG5Ohr@W{bPi~eGl`GxHxFIRiQtH
zn>)gScRSh%j=H2rti9KW2z-l8G~Ta@b6g4-TxH*ck{hXxudDqcWr1Bk<*pX{-j=?l
zfVIEVfM930{XwN-Oq?-!q};~w*||VDJ#Q3T9<P@*Hj*8DEXX((TqOaFGx<DSK!7e&
zs#Qp!XYA*mKf^4qJ})5!5WQdp+9^TNyNld~!S}B};!DsTV3(eeBZz>|3t7Nh=|$0-
zEO#jK(Sg^YAA+O49N1DOp%bZo9a(JNnnXm$e<hv>aTn0OE(Mkc5TOk3eSZGZ2K-|K
z%}h4BNje4Ww+BT&kCq9SYA208b$=3c+Z&0(v7{-z27E`J57Dq4Vg7T}6e|~p4YPxm
z=)P5@g_OXnWem&3zp^;Z6K>sJ63P3SF@y{HpN+HzbqX_ZCPnEqeY^<`5|dN=wL%}o
zd)BIu$6^#om^>&8zZ!GI!op0N7==~Z7dw)lrq#!_?3lCcRlQ_#r8zDWzhi-x_{XhQ
z&f#-=^Cq?AH!_|3KI63EGdk@q+aAq!`#9&EW4LxCiNF>^W7F!IC|{i=-hOv3oGewl
z0}#_I4s{70ha2gDD==B*e}suVYV~cv7G`(oh#j+A-5imnImkH~)0}RyIncpH($RuT
zp>~=fVQA0^O5d}*dNNmLN8EuMqfca`J?Z=L>*aSQ6)qmf=6Y!fpT)j!swmE3r@%Rp
z@9-Oo-}jgj7kaHeN0MCccV@gter;m}k>EeE8XhM5^VzL-4QRW-K|yGjqWu?7Y1y0b
z(nRX@n_emwn7z>Ymb1<t#iKQQG_`;F9sLqtI^kIM{Eufg2TGb^)Gnp&lMtWV($>4!
z+v<oc4wNH&HnFbGmz0<!cwT-jQ>q>fkDTL`4;G~ljZ_u(1P#~;Zbz+^U$T}JwkXc4
zD?MHw1sU-$^lK;5lEqCIUYlg&97}&QqAK<~Wt3Y1`UQY&^#r%XHJ?7y)ba&sRzysg
zX>Yz_iUo&veQ1elc909_=C>kALfRW6&vnu-7%C`-UZ}s^=Xs3y0xUxq?vJt>+z*UA
zIZftc@6%xuz$%K1E<r1GPhiEAh)LAo$TY))Ft@u?l7WM_6yiFD>JIo*tq*(#RL2vA
z#iG5EtG57(p+5Tvzf~K&OB8n>2Ut9+?~ET{l{BXH{11?)?c)bAu|6vF%ghV{=?9C5
z{-XCmHQb75#Wi_BwIQb^st`Cs>GiOm&22P5c!&t$-0l@nnBq@SA3Df|En~v+7M$1E
zuP`|@QYBKOv!;y0JR$Zb4OhVP4iddPKT14VL`ULsDxulB5gos!-*6`;^>o29Oq<mc
znk(=g<JK{QPz25egBAz_RKuLE0g06jz+gdMk_`KKv~)SslQg)Nyh$vwmKK@~stGG`
zf{z1HQW``P9v>h@W$eYly_##HP3_q@``6i7F{;iEo3T#t;@#ElH>TyPa9QXyU>MVH
zJ)bKZ+iz_XJzb*1Eq{`O+eFnSNe9th*CVu_-0S<SI@7}|817}cjl0qcz+qMVLU_uV
zBJ+WVc9Z4l;&&Zr!V4*-det%siykj3gbv!-gm`!o0N{;7m~MpzB-PavmV$ArET)4@
zNiw(z)RA<hIWlN9X$O1K5Tb+4bpSd;%K>P#y!C~{Xu8Jp1#<D6+*})gqIxoE>@Tkp
zdH6Eg9Se4GWP~yK8uN@%NCb|g+YM5~Xi@-@76SlU+v7f$6I^a6)c!Li3L$>`&sZSM
zO?rWQi`a<L5r3J=?7qUdRYc=uM*swfbH#w1qfSKMjsTq7Vx5W%4oMogk8WtF>Ooy)
z&$8*|;c^F&;57aHzvoass4lNqgOwMh%33=HU7{$CxZM&R9yX&%C<tn&D<Vn6CH-g8
zcUGYOI;=}5d`2<ey7a4eQk{E;!c2<~7tKu7LUwa(EH`divv|UH*kra#9L@e|Fr)|@
z+aB6`|Mah|U^Mpm9xmMhbJ^r6c(CA9@nC@CW-9e~quOPuf=`Cj<JH!)E8EM}gCqBr
zEN-tE4xf)$dapp&;?8#t(*rGw{@)rp-cgkmLUfS3Rz3{!rn;%_w8EiQEfY#1oQ2Zo
zE;}sO?R+vBf`NRE$jT+gL<00z#?120macecV4a*MrmSWFp*}=a@|vN2H$t`mE*748
z?e>XdZrOjdB%i5WtMzY451MWdIh6I)uWQ`=Oi}8hNGU(rz=jGT(Rv%sUtY~W)jmKZ
zs5EUY%7oO5hI|2@&1OjX$Fws(#49n@Hiab=Nze8GM8Hqm+?mBm%K)Ha)<yTZ;euiW
zw966htqIo!HWfOCY@jSI3G+d+YZdwPBj@c6!GmM~uEsxjU8_s#=^AqO>{%TzV?U25
z@B2a5qkwO6Z|bFXCo3|SlL_#rMi|aD4;dif6d#R(8R3^%{>^l{SOGU5+TMb>r4C`(
zfmLlf#=gwP8ErG!y5G%^%LZgtf9Upvh1OQPa3JQ&8A5t3gPu!)7;7CBTJL0qm^$*)
z^oWRwA5?#M<q$P%05eAB<2r~J1_Qe6>Fgq>>F`%gO(y@Ul7G4MR5B8%e#6U8n^jur
zVU^~lepQ567iBtKp*KBhjk#f9(@?!cPv|}8RF$en*4<{*oSP^z)6B||`xCU<blHo^
z?S!HxR@zgN9yBNWpkk|K3(Uj){%j_adG}AW{aQTyp~I;x4GnsbwC;G$9>@#Sr6k~C
za$D0Br~*oSCnNFogZO?FyT(<9hoK}N8lV|+S`}#-GqvpDr@6oKYj~x<<5319ur@U-
z1r(1@puzdiO0x(D41j#?YZ@U`v8>N{NI*qGuS$TSh7;-!rzzajoZk&7h2Jfu^9n&e
zH=hO`cF79c=8BkgOY*}6J5%|rtqe@Q_4?Ob1Fn5<08IEdBaEZ_sfe5(v#OjbnCBi~
z<7gD96M_zy4r5R|c}QLYVeo7f2LO#Q+DlF>elcxRwS5KBk5=#IF?rZ}f2(37su_&z
z1uSjWjzty(1ESB*XfQU=(7=17<L7e?&f5TOGwDF(Py`e3#PAAm0a!f_nfR+XP3~&f
zl-@)KPk;)hWQVTe?>(ilpO#1W7rT)xlERdDY~pt~2Mu(Wg@a5Cc)yi9e5i`@s)L}V
zakt*6yK--0py9!PFZoG?2bgx0l3oM^tFJu~Sc3e!=a6XY=2|ai^%S9eQ_A{Rw3A2s
z-a_~w&~^b1eRgpC?fV$Nq&I)uJv<=kncT+vpvqycFZcV$fQQNz`qRdv>%Q(Mr2Fqo
z@~RV{Tn3$Q@Dy#U+Z1TE$NFCzB~9**qz7S5b9}nLbNq&S87puN7`d4E;<0jZbda)g
z@|OR}d_WyE?)T$zb;{2{<F<?G8MMdgKE0rpKNzChHOjul5stw99ecyRZBw%*nX1J%
zM7Q-Eic#luac~M4s<25OnN440%lwpmc79vE;L#0ur{u5G;q!(gsdSnlh25}=q_i1p
z{Stv5!enGBxgPOX@lXlN@tQ;nfO3rXQ=8inD;-Adak*Lk1HrRZJV<;V&u|}KdvI>N
zwI@E?VH7y>WE(|td_49IuYX?dKr^34H<gyAE(T*q6oi%xpH3vL2*2jKnk`o3s&Evo
z6nT2D1(h{F4QhX55<m6heJb#&*$(}JF<hC$R|_nF1sxtY)1gVRoSV?+RTSZ$Xxw-t
zm$5BRA3s~B_XrQkm$ri77mVz^z+S;#K?6zkP;Tm`RvCdr!kc^kb3J1syM+8fNy7h^
zFfwg)26q29f92Au=hf<1tA#7$du2fJX#>beIfU<oy2?GY($&RSy*=Q7vhI+uAKXI!
zyu#<70@7M9HAM_+YZS}(8S~LN$`AXv3~>{{ItXvL`}50QXOF>PIJ1{0!(HK~h!Azq
zt8p~4b6Bc)FG4{dvlPIg)0-I{6sAyEOaqZ+d->2fA*AHXjgBS1=ZV#?j3Er$I)>aN
zB;-ns7A^h*=}#x=*iGN`8(Dq}z@|i<9&F=m;JIcg?QrYhdsL3vPi-~&5yikz)|ndc
zje`Oz$)v8XE`E;$%>xQmJe4p7g2xj6lfga&hrpe#t(7;4x!M^FDQ{H|A1zs>i3Qwv
zEVP&SLEtV@KxKNnG*1-$1O{vaHK*}p2XRda{|%Wqy#RYopn{C{I%e>}?&4v1H2w2(
z$9v`M;82Fhfg@8Jf1k-@+vntQ>$S9gY5jArKSd@sL<C{Ygii-i=^3lm2Mpt(Y{$}>
z)W1;BDiVKhbQf@!c1|iy>+Ekor}^vdcOC#-LA57ET10dTECjDG*?pl`GFw6Bf-ej?
zhp*^4`9e2Z1=}oTH)HndI8vXkv3hNXDTO#-;p6-C6dn(3=5Egso=Yu`{-yqS#pd{K
z(@KFfgn#b3gU?^4>Lm9CPcehRsSeN1Gru!STpf$qN+se*N{VXLkn}^@?Y`z&hd3vd
zf))tR{Q;dd;oPn@Qz5Z-Rw<6+$m%E0li9H&7nkcyO1|U9M;Z7qRfX_|VvZd5AHM7O
zW9lA10}@+mKTL_Ho|=7$`RTFHC)o9+BoehywZ8t>&rpqyR~Adl=wAmXUoR06fOGBv
zCs$`GS}FcHd@r_e?v!{japgWhqM`Zw<sCr0Mn9^cy^BV?lPfi7_+69&V7nAg(aU;$
zo`K}?)#-?6X}OYamYnd9F1|jqVVK|Cp4o(*nX;-EsWS&nqBb$9X9tWZ+tluIqgrg<
zg#G8tN{Di_w?n5E;S=1^S0_es8Lo2p-Ys9rm=LQ?L7kiS8$c=2mQHj*+|5y_Hj)8`
zD5iQUmgtF%8qDiLL2P`_0byQXDaZs3d-EyS6O2-?TSpXka=2g}qZf1D0yBum=b`8a
z!?KS?IS)@o4x0Ylr3Y;y0U!6BE}pWmKON5ey?)hO+J_reX+r1!sPk?@?VQ%?Hdoag
zc8xZ8d(zSuT6$uKbd#DC;)C7M7eZ11&!rh<0d>wj^B3{sjr;}F`mecKBE8-rPilyK
zE3}K$y9%BDD81-=*6Re<)Wt-g6uQ?QD#ud>@<i(uf&MO|q0+OO7-S>NJZ89eR&TK&
zHYMI*ONHr<BnFHLTfP@HmjCYRgrT~k?dutr4QZHu9&Mp`kbMWB@^zqXT}_$(0USRV
zSPW|i-uk6asHjEVb-=R%-e)%M3?CFL+Uu-;>09LF_-Xs>Jxj#ZOstUnMSw{wED@yr
z%BLp*BE#Xy%*-}p@S()H#Qb}zeV-dzfd7k^jemboO{S%!5vVLSBcBQLnzk5l_lxh@
z-z-x*YZV-C@%E%6<Kh{vAe0sCZ*;XfW8K-gu{RpqO$lYl45oh)!=qrYf{`Pjy8FYX
zfH=r!ViM?~ymHek7B~C+e7fd+C%jg_Q&Ga-2rFEpyO^u7_jB)#+Tyt+mEL_mZBQIW
z+27bKA5<B{C!+IhubK&6bz@F6TetsSN=&ytM>eS&;jfC4H0UgQ+KTmc6_|%SRM5Qf
zxzKru@?8R^JhbsGN2GM{vmIhn=7Ur*ti*j}nHz(G`a1}9VJ+!I9=Kv#pb#NYjO*?M
zbIrK<NIUZ)wfz){lL_u&7rAlo2EedNku4?8Ap7^>@-J96jqs4$kDAo(iVH32XH+L@
zgmWm4llsuUn;xU^ej1cJj_n%vqzyGdd5gSsJoM0!1#s<g&>6G@mPm1mgl)XV)4yLU
zkq%dC^O$u)uK?HKd`tdl4Y6-4!B4=dRAL@4b!ArdbTCP}l3WfJ44DmSU8CHa)vcP(
zw%=DLoB<^nvl&^boxHf==Q7}44|wFkMwfSJgLIM8MW6tJ55XAt$y|5eF{(5Y=>xSg
zrz)mUJy^0AEX6SCnV6)sW22*M-abAaA@i;R){UCLek|p*6wAqMal4yER|No4%04_t
zRw`3`Ond2w=#@l_`|hYl{FCxv0x1^+fAMepxv%j<X(>kV9lqCvb>V%MWRbF!m>`L(
zm<%vYq$wtM{pm%4NJP#UKyz&C{aVSuziX2=?u0k?<ZY7h*sbeR@!7Rv*cL6X#naNc
zPRXNbnGDV<a>!5@lAo@8*M^HG7HVoGw2{ZqB|C1J{(psCcRbbK|G)M%FIk0<o5;!*
z*)t?$WnCj8g+$pdq0Ed(HX$P`u90!c9_ePU>^*YrJ$^^u&*%5}jPK*|^_R!{eIM_0
z?m6ea-|zEWFO5R{jfL1JXOBRZi6nDH@%Rfv@z<n1y-X}*egz!SG>*>KZ3+|lgl(^M
z%=mpVNzT5?o|8G6aZgfJ^-kK@V;>jey%0Cf%IJ4%S_^Np*XT3PDDBqoYd-3VXsE{}
z$h|jqv=|t_@(7cVC5-GNrLccmVmu4aZ-)CT-?J4+WWTw4sb~G2uXLSf7I*T<UWCr*
zw}-w!M~S$f9c%I?Sg<6v0s^10V>9K<n?-@*<)8Gs`uJHhOAqVtjD{(j$Wa$;9Xz=T
z5z+5Qxp|+udS{R&Yy?Hcjag=`rpd785m{@tG~)@;oWwkou>1)a@CjQI((pKhhpJr>
zoSB6N@}q835YkC`!XDWjN&TCK{DZ#yISHl7>3P|3%WKZJAvROpg<arX&s)p3y7$HU
z+w#}z(-oexrKkwf*z<gY|Jo$zyaoa;IeF)AX0;@tcoy!QziK0)lkpS|r^aP=O7<hD
zE0xj)ST;b!=A297ba<c|ZXtobHM-Ml@sxDkoCd#i6IZ;!lYh|iyH?4bqRX*VF1GM)
z>zm8xdEpd#>v!?6hUQc-M*=&Uo4V7~MEEh*bsa9x%_dVI=oGa7y_1co|J>+VU9X%c
z{`AQ_xBUbP9Zj(3scA#-RrFPv;{2b=6)LkHZaX#hh@kGbKNcK(=snKw<HmPUM61PQ
zkf?AFotO?u1EN>9q2zjopUJG~ThdAa(O)ljjp!unCzHqRDg~;0L^jC0@$Op0?I6w}
zH56YmRjYbppY=reX_W6y6<<fRDW>zgi>wy^^CR1LenN+Z_ZJX(gJ{oJbZdb{(bMw>
z_$Fn7n%|*#FqRjS+N{OqP`S_M?e7h`8m-+Z0$=r;Avyn_AIlSaq@XoY@5<UUYVa*X
z!Fb@-&iVT#G?i7rr=Q5^p0^*Vyh7UL5mzryHjPC~9eF3aq+l}6xAoN!8nTyVKj=K@
zr?NU3v$eC6OeYxw#glwP_rJAp`g@*&G)b#R4}YY!o^csuR&dAJ>HB*erjh@89!7t0
z@$g9gOS4e5`Zrs$Exe3=$*E1uYA%EUt7c-znDcB)JEFptwgmE-bZV0Yb^;KI4B*A+
zsD0xzbT|=q?N1is_d+sPU`2JW5YlwZ)XE2Y(h+A_X&Ba6!by-`ue4jasI+?MmOJyl
zi79f<n6dBZd|xfjn~se0=vdR2uv0~<NtAp~PddLjOtvUPI;PH1)?;6jS9%gb7L}mZ
zON#h}*Otc2rPIakj2<OPEnv<vPSGX9tR^_yy#{Uu|Fya^pJA!-GVE|^>od-=MS0g`
zM?-Pycn~KhXm{g&v8;#Z58hee8Px#(J+WmgQ9pj%LVQnBtP5)g<CQ{EGM04;c`-%d
zJ-_mfxl=&0bTtnidjXcO<vnzcACOivNq_!m4q!OdTvp7+jHm4ijhN+(xAes~6_fYf
zs=1dW%XL#6L|G%*etuK{$X}#lR)r~7r+Xwu8ZG(>@d+LB?h|V%74>DS8bgOX#9)$j
z68FlpI*9QQZpNe?8|x6=r}iXA>DQr$I};k2ni3Q0q!XUqoP1`b=qTmsV<b`77T}qM
zdg4_Bh{bjsPrQCiIU@%bgnE@et~3-#wLOOp<mO|H(fmmv6Hg-At^1ueNE)J>uWFfV
z4YjBkx2_3_w6AYRukS;MX%b2w5(JYmCUVsqA%|NPmKw`NRAKQ?N4<IPh+Ni8|MB@j
zGfeo4BO}9E(^z!A3b{$?YV_<UzFikbMvn<VE?Xz1$k<IdDnFFgWOZP~hrQ|$G&6e^
zNJ6{a`$UyHP>j>dH%u&aO?=^}_*8-(b=K6ckj1^G2lasTEZnhGfBD|v!)rV(_q8`w
z(fG`$u1#>9!O*nICH<pDVu$mw{!pb;hIR`vxV!u%0hkdNO%M_ZQZL=3y;d~=$cO<u
zIXUw{Py5)hV<i@8zw!k^=d${e-Gxr8@SkFXIt%UDztnL3td(x#(*3@a39Iiy1AzS0
zaCIukitc~@&^?`sTt&d9-kcf*^$Q_igs-$Gls@KhmN|45G1;h&9(5=Uq-!=Y{c>i|
z0xdk`U+_0KAS7@@`e{*097G&KX_IJiw2S5))>N=ZlVAOnKR*kNaJ>pjf+(X?e4|4I
zEq~S_>ku(BkGPX8Hi{Y~XPc^Xn9OKke}s=lUI)phxDdpyX0k;8rt|)~1s;AAxw6!W
zN~(5SFe9N~>FeE&vO^+5?F?pr-a&GMc>?)Ho=)BQ=1&8i`x`IRPn5YvmvUn8UMeBE
z3b^Fl(~L4y`f_^(c55`?G<5wB*^Ua!O>6I&->h5`TOz>m$H6mo8Qg~LuzaK!&(h0x
zb@s#P(Jy$Q-N!r(^?PA1jEW(;(g)ZVMncv+U7knc!@N&dHkS4ri1$kR?V{Xyiz8Kx
z+v4#GXX4vQm`}ww_XrKCPs*A2f7)|zdHvLrE_RC5X1e&KB2QG%^y)NUQbv=y0H0bd
z=8c5+9Z_Ysm!oU;Ykl3xyb=uVtuGt|dj=(NxHst$ZhnLmOp6;fvu#m^Dc4YWSN6w!
zJLOF&WeV@auj;gDdBfLIE_}NGy4XkS+@%s5qhjg~K~TH+RV(eR=Pe}m0&SPDjcO-Z
zY%ag{!llc`sABG_`zJE3N&Sst2xZPdoB*PKf>pAz$D(?cN|Q%{?><a2Xy$M^L{NR?
z$IV$aF1{EjCD~#d_pIe^)1~;2iXN82SsX(RuLFfI%APhS$EuyktLwB&BemLbkUCQz
z;di9guLGoHRs|m*s&{3M*Zq%cPOHY8gN?XrFuCil9*eaaiK|$abH}D6N8XE@<&G06
zzy-=9qbYrmiI{aVVkwpLCuFX0Hs~G|sa_G{wqBpk9ss<rhFxFVK{6+(&WeX$nl0!3
zq=u+HY!S<vU&AzAOHd<gr3aJ*b5<yvl@oyP^)DJBSw1^2+=U~L_cti6aA^6KR|QJZ
z=oe;HHW<1KKw+?KY45|E8pJKEz1f;^drbhfPU;x5mW{&Q1LbUL$uLA~%g&enKz+Wm
zoj+bnNJys@zT)2Vj>&>sihPn}(vD!q!ugT2q_5_-@HAnW?=UbisAXiSNCGO$fX*=+
zu*a3At92^|7w0Zd9L6w6Z!pnvn;H5{+L;nJP{;x*IH!?uCgAb*Q+Eo3MLe5=xC6n)
zY0SphF3Y(Gi_Nq$gMo&^D9F9~LS+!rxmnuoti_FJ#i4Q!`D`|h@R94XS+yR);h|%z
znaeZmi(y`Q{O!Xh0<<JI9+LS#9~=F`LLOfic&KqO+=eL(sH=xM9GN1k#5uKn_Z|Dj
zJ~l=1NZ#_gl^L2u@^jMB)b7ZFfypSK%8S2oj>f6$$h$O}#+?E~)Rj^yrP$!#)`2Ox
zduX{%`*!@wH>!IEoQ^2(IfVxkSBjo)^z_Zo!4|{kJahXewc7+U-6zt8t-eldPYT_*
zw551uU?MZ_WJ<w+P%GT*$cg?rqu6Vg2nv8K<!+QJgw;Z^G{fxN*M|12TPrv&bzEBa
zSl=Fs*X95AkvP1T2tzZd{?tC*k0RV&Q)Z3XNXoPoD38erm?}A%{3)56C_7I}G16P8
z#5?_o;?CE;;!)tk=0Oz!p^?VtDJ02wkCBy_UM1H#F|ak5NiP7L<2%@E598Ptg){XV
zwN_qO$&DuJfH-{00FEC8M7oSjz?Y-}f*;e4fyPk3YTcjo3{Wkdc5YL}?pqIQgQHSp
zkmx9V;xQrLjv4rW7RZ03x?vF24^kq_IRR|IdaAqsRg5#O>DR15Wj^aEOU5+jR1N*L
zd|@bTouuXf5#r{>KwDYHen1=n30#)cXih;WqWwgHu5h$212v>`={daffxe0N0986(
z$cuPQ5C=%TmB&|0OOrpW`fY`Nlbl-}9T=kB^VLjh`7JllyULC$L(&gqk6&te1N0iI
z23hCN&M&V6(Y_5wCPAn9?z3%FFIPOE`KXO26b;l4%Nt&xUd2<7wJ!@$Y=8ytxzntz
zD*hxRrn{R0GroS?_f$Z}v3XR)^HvJSFLU$k*;oTa)F4g@?Ng0$K$G8dINVs913D3H
zy>PhXw!H5iNb<Zfq4z$VBCNw``uJc=d7qH;=mF29F)$y4RDB|i1YuQ#OhK@Ls@tXa
zpzJakz2C{sHzCXqAZC5QNg&&81+aDH3E=&_w(}i|<(Z6!s9ha0vki5om4Falhnl+a
zUWF&MhBK;kl(OxvfHxrP+s(!fUzDQv+)@K}CMCXXPEXoh=CAxJwFAPxFT}9@xy>xR
zfqOdWy1ybOA&ggGLNh}IpN4V|mp!IG0dj-om<V?oocsMni5t0cOoPbnOAQ<%;_dBh
z<6{?GiwwDfro}k(tqhlZ&_KaJ%+gk<7y9VyqMTsuW~poL(f$`f(~L*A8aVWt)b{8R
zgsiNA7QFWCiS&1~!Hag}^UxS{Fv7S>o$H1#swKjf)^Y479o=m4S`m;>9A{={bqsA)
zH6uOjNKOvt&c10p8ec~Xn;&wi3diMoWM4hfrpIL`Wbf!gOJLr>50P$@w;ZZRPDbxl
z@%-HMFD6RQM<Ew#hTj6!M|in<YprVR^0;Pwf#omH#kDt>9<#0Ni*p`qA54@yyoVhc
zBz8omB_7g?r|?0Cnz69-)>oProar`}n0@4Zis_G=8re5ZRAv3lxpXr*<tzwNg#|Q+
z78jiZm1K4^4RM?N?E{U-b6PnjI;Gww#N1xgjH9JiUd$FGZzjnyvEU0RA(dA9&h%5k
zOv+}<>KurZKp#2E+mfzsq`ajQp9(ptv<fqIlG|~HGfi2NkMz3n2TsaCS=fUZ=`UCs
zu--c`6o1K?ddrpX>t*RR`kL8#g^P+~GPfTf_7U9#0<;?qxG+yGUEeH%<+S8qx7ywf
zjK1&98O%2nYNV}`zJ~Z-c|o#%Wn{-gYCD+7d-4%Gw?SbH3Eq1#d<#N8lS*^F*sZ^-
zzyL`k8kVsxnySV_(vMZ&UyOFKA}7#$l5ZoP^_C)dp)C>nb|-)NBedf5a~=9u-*-Lb
zX}{F#^Klk5174ZBtWf)HiKz$gfY0Dw50dfQu-ADa&H*J(WUL#X9=;IN2DmD%ol7s=
z<S7QJ-|Ae(<@qjfSc8s1q=EN&pgumgtK%$SOWrv*I^UonPuq_;2MdUsio~L0MLdO4
zIP5{`fUCU6ek?JJCZ<G`oBAO~#qWunV19lO>GkO&Ad9lODOn>7s1L&d{~kZ_OuUq{
z(rHsFMQIv{Ic<dZ$K8a4i(wp-O7c_-Z7PVf)03<oNa3yV)cfw{VId*W<D7bC;@;n&
zHW!<Gw~?Tt(5xr3n>LDM#rFsYK_v*67@Y3FlY4kLQ}xF-*-)Wg<S3@hr|9wHNPM+z
zR7YdC9vbnw_kh&zoSAs!&z#*Uu*<S7A<pc)d-d|jw(+abl)hSGKz`okf-T1Gu=o|{
zoh|iFMWghd(;Ohz*6W0i!fkZRheDT>8HkfG?pubh%UMI@bis2Y<UKN`09}rWa=N}r
z)|_(7dez=c21zvcDwHFlr_V1U>e-;fO4BaAeJiR+gGjWnyn?=|=B}t&)zf#PH&W8Y
zgnA5mdcsg@CaSLAb*yh9s9;Z-JNu2RdKZhxAMf*q)@1=5r^~WsUS*4#`&9a=W0aoB
zq0GFGs_KSQNddY=gEYIlVJ}}nv8{u|`MC?jnD_&1RjRH0pfWz7Wo`iKc|vL7?3OHG
zMYNkYq4%Vw?xCU<vQ1&AuOl+p;Ren@>g+x2g$@?c6-P;55Z^v<GBY%2TQuJ#U)G$m
zq1)%9zmtvr5p{|X?6o+{5#;2$vpf*+{qk^jNm#}qpT0^)ebVg;WKm-1X2Sufo|XCP
z7UFhJ8QU5I%{TpmlGiRl!NH$R-q<}bTx6p*8hz0EMnn<^^oxy|VG8Q#OXOB+&U62i
z8-~lNaw|!}f3%-z$43jscX3Ccn;8~g)gn2vIFanZayx^Z-?;ikf!7eG&6+u8H%2zf
z@2{FCKSo*{P8j3#^e~ST*0O5<q&J4y^?Oc;BG9up=evbZi~2asR(qh;!^Q7L>9BkN
z!uRkhuBb}KFN<}FZo5KKjCKomtv_tc*$Z)=mmp!ru9oraOk0E)4JGmwRJ^9wn)wZ5
zJR`zgKIlKr&)yvC>d{LE;zUsItZ{ZL{fkrz<J8(2NX=oR?YZ0km5Gq-B8Ullzu+%X
zyi7<1GMF-)0ul5l)zsTKp)VqTj0YK&N?$wNc+pijpH`$0c!z(me`^N?fFTmM2_5};
zE|ykM<|X&ZXRm{2Qlq!)faMZp(MSl7fspi#gsbsg&|3Ai^m8})<^&{Unbmm}2^FCZ
z;ZGtDpqJc%uK}*f4uY{&09#lxH|{@O5B55|v{J>Q0XD0EgKkXdE~<W<&hJz~p{H`W
z-^6Jfe*p-jb<j6TJnH<N()(~5DJMUKGGO|DPSVQ#df+H!w>aaJ@CS_Z7`hKNxaFRx
z*FJLSI5Yrtg!p}&3+H_L*ev~p0vAyIxv2Vh4bC$;X;2XOCt_<7)h0ZMlt`lY>dor3
z6N*oF70tV0+zu!yo}Z(s09xbd!heL-1cak3P<#Bq1NdJw->KB|S_;dmS>B4?E)ncC
zvni^X<L(oe%?TvumEF8)Kb6up@7PJI$)$*g?ZE{}+lAX?zU$;chRC%xpWHs2(32z@
zlip2{wGUt$q%)m$QGBf(Sy4SkUHNJbTNw&A`!s`%ap#h64#hS?%|fCE`E&5`RX`9`
z#}yljwU0tXOf$7Mdmf*W9ePFZMwt1XRa4WYYt^ltp(kI<ScN<L{RaTGs}V#UL<DLL
zolcBjUJ-s1fCCZzf_HTnf>T9vn^i6fH<%+Wb7<N~v6cJBI<q7M^D-?%?sm+R$RDOo
zK_T3cvWvd8$KygF?}~>E-`<=mwHl7x__ps%^Yj=agRJSi&dbA-Nj2sKr-OBGc?nR#
zm*8wNJ@w533kwS}tHz3r$kSt9PU{B`;Fojjs;Uwmjs~Mb&CoSukOPZA)0&ID1b2XQ
zORQG_Yw}`dSV@oKimb2f1b)elfsu;OERVektw)C<M5On48gEc$jBFmC@Tq_3w$0QN
zN$e`g)75MyP;T*2?_HG{Gp*>^IlHWBO|p0M-s#{+dSkh?g4c|I_w_odaGw9jMms2d
zl5)J6J1#MstGAF^Ab|~GD&)bzRp6w|z|3I#W@oKDQZLEPxW8*VtU{q;`c`&aP{>R%
z%zPQf*(*g*Ktt{)w$*=mHAM#F<QTiOn>3NPXM>11(_kx=-{wV|z0o~!kGn0va@O0j
zxIf5ztxn(I4jv`EE2GwS&t~liUMlOgM<vG;RW9@H_9)9v>k&JesJ-X7ZXk7a&*@j`
zQUILMV*A&TZ(#nDqH^~n8ylP6C7KVK0`@I?a>7bS64KHsXpXhD<61tuY)Kqk{0=%w
zh*tTcZ{J=w9)xgKaOq(%ZZa-JEgzwWUqu(Rcu@H@EEggwCRSaTJwfz>1hQzIIxsL0
zeH(kRv%OtaLLxKn*W*wK4z4wEQ(XFIl;Z;#eH@7Obr?bl7ea_lSP}q@Kq*<Z?EUWI
zK>F7{k5jSA`a=AUaSyhn7K(IKf1j02(_m$OQ<R^dnY%;*gY^pA30Mj#pS3og-OtQ-
z#OwUR2<M)kpO4<z*}1BGY|}YDjwpYu?hBedzc#quU;mMg@rC%po_|RO^MViERxk%<
zs9@pa(b3T*hK!pkY+}o2ojW_vFF21Fh7hl=u4eXfpjgW4>L#4V(Yu1X#Q(bB?<VSt
zN%~&xG$ql4i;fU5voNP1y*#|U#w!%k=y9{Nv)jA6x}0@}8_!-39BoccvJQ`oc=*_B
zxsELS>g>_4+xvpT?9ij5lq_6b_i7XMWd7P?&;b7=Zfk36`|z;gGZz=(Nt+KxzrWdJ
zR(%^#f>)?sGeggdDex56)Fh>h0bZFhHA@E$7I_)IU769nqQSTE@$pxskytGDQ@>m-
zSpE<{G^v%G?yvKOkDFRzzuL;6({cZmnYoXT^p~2N)!|@KhHzBD!_whWQ4z(zk03M#
zZcgI+jHzG#_wjL>AR-Y11B0c*hZY3?9`8So5D?tK(W1QL^xx*>&(Hi`3Q9OQ5WO0%
z!+*B=uYo5afkHT;A8-C+to||IP|BPSV8*!+wBBt0I`xmmK|tWcdmr(yE`oc-wQJW7
z2g+alefDLG2pk+8Nky*X$zI_L{QJ4Tt-0UdPgaBgAELWewMhHFI?Q>M6_Q37*YICf
z?_WnsHZ1`c7n0|0x*hWG*8YBk<^uQ~2dP{9&%xIKgI};BC?Sy$79Os*MY8liJKJ_;
Zoy7uoHnvAWN*DtERF&>37RsBy{6F<l97X^D

literal 0
HcmV?d00001

diff --git a/docs/codeql/images/codeql-for-visual-studio-code/quick-query-tab-go.png b/docs/codeql/images/codeql-for-visual-studio-code/quick-query-tab-go.png
new file mode 100644
index 0000000000000000000000000000000000000000..8ea90090ba910be2cc5d07ff320adb1c0665984a
GIT binary patch
literal 67322
zcmeFY1y>x~wl+)%!JXjl8r<CiBxnLb0yJ*H-60U%Ex5ZRxVyW%J2dXDUu8@7z2~0&
z2fpz#n$b0&x@y&2Yt1<y=|BZJNhEkYcnAmxq<2!{A0Z%KAwodB@PLH|{?gN;vH$@A
zUu7aDrtnToj6}i4($K`r00KfP@OvDLQuG}9*W>3rE=UR=GRg}oDeA8=qc3Tig5FC(
z`k?EQ<ZH)uVQL_dk*O+ce-dx|L|d*bUPb~5uR8ilO=;4;41zB9`lbKs5#Mps`L@vY
z;&IwwN`mW1O7iWC^wBz9YdQuL;Y1om^!1J5kf1P~^;AgoQ3!EuWLOQ5Up(RK*AS=)
z3D1mr0uYJG$MLdvch@V=MKmX`aQPw9NqjbLaU0ov<jFTU<Qe*)AU*}|*vA<KQQzXV
z+rdSVw7W+qa}SY669{z~U&P3&2Eeq_L9F&^6jPu<loMqd8J?n}3F*uGyb*WHfYsR~
ztj*5JIY*ONha~Tm2sz32RDN*uK!4t518qkS$i|#rfO4UZX$MjBY*e1odQMv?-+bc5
z=zzf8qzJTxWo3(CYlw?FV$%EY(B6uRb(VLK$Ng>(U$CPQF+3i3+g9Mwz*G?%deF*y
zG>QB?x(_Z%N5oHM2T^)lOur1Bg6IHu`@P}Dd&PExJBk;Q+d_P_3^slhK4=I=+~ky#
zp3~i8xp7ir`nL$;f=3nBO$M&=12+~eqG4v{h9Bcg%#Ii59$t}M{TK<MQL}LK%A5Hi
zTRR9!-enA?ltYS|L-^>fe;4vYVQyY#Q*^i(DJn&Wb%x2<&x`s5@<ne4)LJY2EO`ec
z)XNB3RTgJSFUfkR9P#-0m_B{-PgL4A;{4}zGV}=a^bl004tMVx5fTdD23UJ2$AwLz
znj#iN6IRsUkU`*`K`1yg7fmdnKyYAxy)#TzisJa0#6bO3<OweSE3%Ro)#xjUR>Zy`
zWbPMS6na9au<gR^s*p}3aM>^5RFRdvE=f>ce?8R3rg;S;{E8bg>|1pDi{w{vt)Hwg
z?7mu@pk90<JwXro%EJ6Y1Qj_`m|Y5U-1~x5u@_!fgfRm9HH5G5m;ylzY#<43CHy=r
zrm(L9tsQEiw}<bra9sMn0<|46-dDejno(+;SJ67WKVIOso@-+b`aP~OJFz6gGJUI9
z({Q5KfQ;+tS#`NVcf&aHyI+etp@C1AqJe&oZ{Vk!!LQ(zkD~<n-uv^neo4%%{tq1a
zR7&)F$c4n0@Rw+zZzo1&DskuG4ug>;&qoJFO-I#7b9TsgT<j3;kX;}Iyq|(Hv?p0|
zaU>C8Fnr&2GW2Zf1hM!t+sD(#TMVKaA_jM{mino>{$S$7O9~lkvuHc&nAT;|<tzI(
z`+)#CFNm#+X9Ln&LxYMDr3S_k(ecHMFMhjwYxK!yC;CP%L1?CS%U0}-@b!_6hLe#K
z3@B%B!L~?LsZ|VR^lCIZI9Z<sAJTTH4_?Mnc2s_7(SiGcl%06%n7YKLgn{DYq&yMc
z??lIWKf>)o?c$kyy@>oF#YyTKq1X5EO!-Xb?CqKR86Ui_uCR4hrvfXjI_;;Jfta2c
z6dQIPTb?iiEsLKT2^viraf_yOUWM`oig5}R1znShlM9n7XHd>Bol%^NAMkEjZ`sb8
z&a&XyUrGB4`?CAKftSQArsr4bq{X9gp*_R2#iW1DM2|eKz^<7H6DqkNRg|rnfizZT
zC&ufaD#MgcoL4g;8T0zPSqxc>GR=3|6vaKGbR1|zWb*H2q1I7j9XHuOG6t2gXe^bB
zKOB7|Qc1{K&m~jnQz`hgt9+Z?uXOoQ_QO)feEOXf(oe%otRK}H<}LG>RVubSw#nNk
z+nXaiJYX;09~PNJnW<TzjOARx!i<8oEYj)OENium?^I$FvTSM<Qs<4^rC729Z>94;
zW!sDFzfuhBGt6a`j(;<VW^Qk;WnOS4a_DdfM<|wJm4d`u#T#xHSkJHowM4dLxP&I~
zrs<VS(M91U(GJFi+TFXmhD-I!9wbC0G9*r1b{u{#C6-MbLwsfYE8Gtu8lkbc-|?3?
zy74MP6hp3Y9phW6s;S;l8Bo>8>L~IlX6y=14A;fiA=|#S9ROb?Mh?vysu@lhzT8GU
zhd4*tM%pd`?+yhg)aZfs8%waNu?n!hW1+mkeDlb_rOK(+T*X?puJ&DRsVZ01RlTIj
zqS8Z8?+bb9oTcqZtYJf|L$rCtAvT{YU!Z2_QfX7Fd-5ab9)y*G**V`{zx~zP%29RS
zYI-dzD@8AN<6Tcn@?i4E<S<@=G)rzR<`$c$^olUHncH;R7K91P;Vq*$4;6EjV$-^P
z3@%Ns<^|FkBQre*)_a`$ss`VN&Zc4a#f~w(s-Cy<F?r!e%|;DznJTp^1v7e<gva8?
zUyjj;)zb*lf}3%)JXZ*tn+TAQ!xg)5Pb;p~4`<fpuTU<TE<Mq;(MjNpKSMB`sF&J`
ztcX7PX8Iy|kwjqBvYmX0&>1aHU-2$$6KOMOlNVzUQ}(U&8yAi9BSIoXutizGx?*0W
z(ZE|K5D5(k%@4u}zX)LnIS5b0uHxM@to&TbT+afHje%xMV`vvSlc^c(r)#cvuIq}0
z&j>2JxkIm_ERY_4lf$^hD1hl77#zZfcb$OW`vx4=ZM%Nm9e%>^)Zol?Yw<w#RNAVh
zK;sm<nye6i!av4iZM1F`W%|*2oIb<9ROyClj_X$V%;~*$|5}V?L1aOd$xUT#B^%k>
z4?+2qnr!ZGUGip?lBtihwrkC1%FzN_HWi>_%DA&wqQlrF%|DXwqKtbn#QiA$figfI
zoAx=QRJ1bFJg2XJh(680)#y3u+wj^Jd&xMc%44ea%hldD({zqg)5Mv*;vr4G%3-6W
z$ji=4+I>s&(piPtwa4z>P}w@Xx_uiM&y(8>UU^3OsF{X7lL;^4F(G(QvlX)@=aKD_
z+lL4IS6HvQUZvHXR4?B2o#jQPHJi)M&NmNPEIb{~9%dd2@M$;_&??akG7>D-X&bqt
zRnWBTJQn9P6k{*ECZ3gDe6zHqg|0AOD``1$C6Fc^{k~yfap22!;qg+VqZ_fO){IBZ
zBL@sS@@s;di;5GlD~vnxbR2#Rwu&}=IbEu<gi`fW`(4gn#C(Rgm=<y{@-;CW&-h0J
ztxxt!k2}?0YCnG#aAUYq?Xe!&2<0&3fHB3bdPUs|w;PDv()~DZJN~SHPCH$YIB}PE
zJw3K}wx4nL{gNE%9nxdySZIpT!!SD+569G_;nTue#k|qLFm1|$L#mVD^+OH99JT~g
z5L0t~jFU;Jv&nhKz=ycwYN(n@t<x5p!@}#Sfu9G{2s6ngDNRRCkAq0lp?*mYT>A@V
z3wsuG%Y~*jrX?-ro(*Lk8CeCk9^hNXnPO>2{$q`%fjZX;R~<(qd8d)4<=N#Y*9X^;
z<Gf|hbCUhG&JKI`_~r-6v+y9|A|b}-rJL({kA^4Pm#Ht!<weu@2{w_MAILYtN5tyn
zY2|~{OazKtEG{1oO0TVYg5NUvfr7N;8vE}R*G8I3LP2Ry1BWHmk@=AsTv1#r%NEXg
zcSk3#N!LSJB3a=*<K0x<=R)}&+-H%OWtWPZc}5rmLK}i{ZY)pZ7gNusD>aptE1eo}
zj)j=Qq%Y;9AXX1`AZW%QMtLDf7!!{Q@}Lr*kmJct(wyp#Q_=Y#=v-dF4!j^)#e#5s
z9~p~vDj)iaBp_%f1;Why4L;lBu~La3?O9I*Qxvb`K<U@!6^>~y&t5y?XU*m3<hE=T
z{F9MeEk{?_w%nvS3!slRGf;hJC@Tv=2OPsfK)t|&cm*820Dc8u;Qv0BctHd4@{hkm
zLO}SNKtTO<jvVm*>n8&E{q>nY-yzc>|32dtV*1O!k6(EFI&~@vy&8CfvyxJ?g@C}K
z{Pp|d-A9TO2nb<_cj6*SPA?8pVB%kQP5T8?^nE3J_gbV2Dkvxl>ebsef|E?$<{&i|
zFhe}~cJdaU@FQjyY(CV>OyFa$6`(}C#o;_#s+28<%tj6d4-SS8&Qid0hp9(}dwVqv
zMujcBd4(T)!U$*Z5?}+q{_6`0iZ0muU;hhykQ)*mkr3|9TVW{ie|c@{<h%aMzkYor
zJ>n}rB7&N+?7v=M+8MaV%&odG#J}AFxQOtS!9Xmg2mCbFo6iL2YQ(=!oz{e;S7y+1
zlm{6xLXt%|LKUi%L^|4k^!@9MbTae^f1S6Dg}l^gs4xEet2g2+R0m=kZPLF+LP;DL
zBmMfPDW1T83#PCi6a|hUtlZr1q5bE<uc2tGqLma5zx&r<uu_n;F^gICQ$doE{P!1T
zBrw<@r%(2B|8@ph1nCPnKU{A`&j0?nKp64^fWazv78Tl}|4U3zy%6D~m<Lgl%m4j}
z-vWazB?Em*iT>BX=}QTF>-eq4{QLCNkpY9nJT2Ty{?B;*UR5MwK=j$5^34AAi51X*
z!TtzP`2?o;?@<Fji3>zOo|M}F<6oaR=+|KX-%|PC@d1`fp>k*R_&+OOi68QEe})U+
zqE@Gyn$z(}qrz&fJ>(orwt=N?rgPMIE?41l`Ng)6GA@3_^SP;WYG<jTX3k;3d}uI%
zZRqiOMQi;`N%#nM=ks=0Qy9Zv6NZ^0oHPAXz2s8fW-PPosmG=YRADGvvFx&M@W86@
z^E1aiS^Gd|;isbhsXEKbF^THtt;4tZ8Y0RDzmk(SAw{Wf*I6UazBFUg<iUjfO342C
zY*u(;&9W2Q#zS2%x7Dg}#r;vkf*1-u=U}qk_&dtt?inpl^S!Aeqo=2P%Zbdl!RT>$
zkT#O(l_dt3ds9ORMyV!5&YNfzHe3Cba+QjCa=E~f;mygK$re4M_2nK%kaXtb?=`7L
zqHrXDxa%x*)=MsPzCC1~1x5Aza2|f>^?WfgGT0kQ9<5ubVyS4mli{C`;<(&Lg2S5?
za@>q>1U%y#Hp^xH8Xk?P<8}llM4^W79H!IpZ-cQCgr4H{@TDg5<Q*G=7)qM&=oA|q
z4#^fCktR3p_AO7ieD?|Y9N3rY4=wkmf8tx{ZH)*$vy1sPrkyN?3q5gHY=rU6KOQ%-
zaZ{BD{#6Kso6%LvY<$(K?bN!b)Gy_4_YgP5XNp62XNGPTzkh&YB|T|<i2`LlWRd%+
zNO?PiZMf9@K&gMuc0^z(T3*m(VOzlUie0ZKOqMcf{C9ELMDwzFgF_a7xo2;NmJI7D
zo5;=rtG8g;(&T(KXM`jQY8<=adAwN8{h0IqwBd(S?fucuA&Z8?FGQ{f)@&XRH}UKo
zUnbe@_a+19wgt_~`>1kFCUSGl7dQ>C4us5V<zv8FSrVb5krP|827R}hPHV5Oa6asE
zE!io$9ue|ZqJ%BANNp5bZw#3)@ifc)m0|l4ykNXn*q^2;vuvXx^cx!(TOQ8rcPH(O
zorPC@u|dqP$4xbJjw|j%9VkL(!@T=HbhE7Ht4xhjUG``dvm}tt`>50612L$#+Y<8O
zf6w(UI!%rD8nC3XgM6LVLWv%IaXG%kBygC<&V4ERDHBd4nK;C?!VkM)Vh)=}64PGu
zrp65YA|};>Ys^*1a1iHwD^4q+Kr!!gWaLTO^iRhM?`1Wk6qCElhOXGdxV7mtkGtJ;
z(&z9;sQ~$4EWXby;eH=G{E!Aixt6ty>$X4R-))@TNb{3Y%O-AG!p~%hX5C-#2)#zY
z4L8~B{jgnB(p=sS1_G;t3Xg`gW;M)XlyrYIaU)Ku@bm9Qz(dBY*Ntd9$kG#&g;!LF
z8Q5x+=58p*v-Mg`-SPSHnhQnXLSeL;pE|>MHdhw^e2{Gf#}DrAqyyz=s}!H+?*gUp
z1RJB?b~35>j6dETe3X~w0WTz<z}mHFGw^eJQc=Dtb48A?sxqTRI+g)$0#$kK;It<V
zwmrPXmUyVvdgEZFX2ru)j_**Z;Ssn6^9;yUGrn63SIEO#txWfA?e0dnQ1$-v<FV&Y
z?Y`O|V2rVKz?$x0f9eNTx_&s=Qo6Ev!J<KpG~zM9muuMxz`vUjq+)|G#BSPe--~|7
zopb}IILg&Mi1$o6{8bQpIlPd#=0_(H`5&U^yk8;cdPGO(4B4$f<C|%Vv7g>NpA9gD
zt~B>n4n}Pkeas1(GfXl+ApU^X@^okVE_m?s6Oe`yW8bLbk>T&8r?45xP4_bvlhmS`
zi&E2dbjqai^JL6^&;Nl;$UDnY?2k<NdGA^om_GA{!;+RK))lw&(3AtJ4^91F_&V;B
z-Ol=yVGov@8g^G&T6m5d&x0mIhp&vj<)?nG`tnL_1MwXlL+qy|dxF2Kxz`|EjC7mT
z{?8iL{gReuf&J(EmgitJ1oziWO&3vf_A{D4;<T@imIhnBz8zRJB4~26tS2&I-QAkx
zy94(!OmnZFwT3j=$z|gsZ7P$I7;n7goF+#-787rdnti%IHmbl#v;$(+72sQ}(Ov?l
zRe!skWNyqM&>oP^`qv<6Mxf+`9z%4g1?sA_gwEAg>$LEyfiS6!LA~hb;(a48^k{eA
zu+Z%8%6Ftap>2$Aq~&({7S(!mRIXow8WcmCjYi1q`Sg%}SZ*5cGu#6_$g+pwS>W}u
zE7M{RyzU|}?H2WRyXb6#a3D=5YSwq}dDltJ33&yVa0Y;rEKv)rv<6ueA6tE}<@ry2
zkc=+<J#~J72N)X$ThHtF;d%9Td*AA}BlGT%;6L@>A#p8gCsZ6QL`o8w<l{SZVXDNx
zcnN*ea7f`4E^rmUyI5z7h@JUfA_PaLX?vael;q*w8-cNOYjx^fod(nJOTL5Bj=^sz
zg2p&P_@)ch=FAs^W(`Eomh+V+)kv{>ovil<72$RJ#SOaMIl09FF#)#XW6WYVmMxEl
zwLSgw65&MV$COYa#V8dH9YK`c0{4ryBXjrLOO7j5_F+L$wEHgmPQSBD0tSuo3xiZ4
zYMzBEdNUgLlQw_2{ZhAE8`}w4uB3+J<^|NN{U2if0!xL?_lJ({m-(1b?~D*vlZ(d!
z9IIzQDT`kuq(Sf+<d^#;Jrs!6xhFs+!RMzaGaO3v3)K`H_}yuZlM7e2uC{&qS@YRV
zu5kwSYzL>)%{pYnsqR+#p7baUBS+(NP11^o(Nq1x)zyNfy2$XB<HD&&HYkL2rpi>M
zhG!T3!vr?M?#-YQ!=`Y6Gyz{KO#4h$Tga40Q+^3sn#d$i^zh12NdxP$+xbv>hhrMq
zA@N>2&aBKAY)cQq9j7IOIBz*4A;QL#+c7!|`~fj!9*ShC@QCI05FH1cb0!aTzP)}P
z)cO5*@f1_*EhAH*<x1*gD{pg8BA1<v?NryJGPku(Re!tf4j3;*U7hOuqQ5svFQHev
zvhmSg#8o6dd%orQs3|^2LZB9j4%2A{6MF!QXn@8@ep-)K-Zk!8<SFc~z5EO}^jd#N
z)+~^hdJhh=9%wqmTBjoWlr*vyP};)!d#ZuFJja|%>TH~hkxTh!BiW1m!Z1nbb~D=h
zc!y)V3tI~o`YN0#*dZ^)0UlHyUIXL4=8GLHlezV!<EEyE*wY(R^d!PDMbM%pwtJD#
zNqY%D;C0`RS_hHx#=fhjyS*a66`hckD<G3~1d+>}v@(=FbYq}v#QLT8xCgvZuO6HZ
z43pdQN&luD0NbsPiTELEaBrrBm>i2$d5O?*F_J-g+}$aSMGd-}!x>29L+K*le$Y&3
zNun$Wl1|pJha|YGR~qXCcPB-HO=e4V3`?4>%Du78$!hCPZ!-6UVcwXRh6~=&?ASd`
zx`eWB4gp<+anDwkxo_SQP<>P>_&_PcM=e6P+~WaeR@UB3de*ijYh(T=PMv6ys`4@_
zpyD{Eb|TM*Q)LqVhm($<lBB7zKD*@Y>p8pgKkJH%!kGT<&=puAw>~mwXZTaXzobR(
zlW4<{nguotNaJHe+6Ft4Xz-%7V*e&3SxCZz549w&4pSgBJ9W&>m?Uw<++r|1F|0l9
z@B_R3z6DuZDYy3gAJ;WOy&3TggKuhfz1%Y>ZoW(GT@3IY=1aaDU<^*(jb%;bTpEw{
z!VZV($mE6_8}!9#yJ=&T!5JyASgN11()tom+7WNz6H<@dm&q~m6uUi?q&_10K35Kg
z$Vr=99KoJc1KUzWT!xpbt_9?AyVV<n3NO1;gn#tvm{-(NTGuIor{Q8;dI(5oM}qSw
zI-T`E&fs2*{fR05vGXG$+V_Y}=kx8k5e@oABBAF8+X0^q3_L;(XiCCv=EpUEVl&Y5
z%Jqt;rNgWa%tX4#OV^=|g)FB<9fCL(jA&doExsc=tBuDUam&4dZ1;ea=4-w3vwq!`
z*)qK$>mEXEyO>5}V3!KHN{NpIGc|Mna8;WW>-i0PX*40XSSjW%+YNd569-yswt`}I
z>Tx49xuxDGG>Th@#^~QV!v)>hI@1<^nevXHnvP@A>Lx3=1*=qj(aDz|mzk&iYwn!i
zLzFOjNV7fKg6?)xi8fyHHXK$jh?b3-i><cd|6mw`;~<F6P{|}iLA6Is@<SoEXxhr$
zlf?PKgvI(~{jRH>N;c7lv?Bo2th%$;D${^~&1gqlQGL;oTvE54sK8(cBOG(y@dNF3
zR>;XYO<6>x4+>u}iu6@SBn&daP86jEFKHqaY>FI%9j@VUGA?3?ZS;M9&OazL2G`4G
zS4WD5wP`KkYO~=XP}FB**Ronogyw9$D|o{(=VFe~zcijkFJgzO`G)n2%3$^F`7^wb
zWz*%f;lZpo3w%eYHT^|7pB}3Hp9G5V6>Q_x{JxHq4cW+>FbSM;;;7_&=$JKs3hMVY
zjFv4oQPM#v7ZkW@J>J&m%Pt#3`tQiDS?-G}9G3%$?r}(iu6)n2Y<Hzicm2;<L0U0u
zx7+?b-FZ415}l&hBG#8vD(WR=H+BJ5HH$XV58Lr0GIniHl(WtEN2YNP9Z5`)KtD~p
zkKuH)Av+<*zZIhxM3CC2oQ#$m!i{5T0U3L9=q3T%csZ^9b4JTe^(>G&)wp65PKL(G
zx_T@26{yQej4DwzTtUlc(Tzo1uA6}ZG2s*w?wuhzo{yU^1$f}oM}fbpLi#3De~vb{
z<+2<8`o1Br9QI36GTCS!*!!)u&>g&I&!^kG7Wy1}=sbs8@UW~<izlkq#ln}O^;crz
zZ;d=3Khbd3n|}`agC^0JgD4~a;8doycXPU-_`U}xKn3KSllE!fS+q4&R%*wR?1O(H
zD}EWiVrga3k>QtIxxwV5KvJAD@L>2Cs|8iEFK8Y~gP*I-aE~k|a%F47{B_944+Iz3
zo_HAvq7`=5Ls%rT5Kp-x*IxC?3^-AD`&06Ti*)lc6d%6Dp9rk#JEG@j2`udMFWm&7
zWfC~ebGh0atq=`1;a%d1zG38cGEPg>{l|ZL+2&uJRYaNM=bGgqx$U;}X$)#P87IuA
z^R#EE)BvPG$Cc2EZ_3dp157ROXEoKgj!X7&*{LoUiM;oFMJ0=0`UfnQu23ez2zXdE
zM)ZCAR8aZgi092~G!Iv|8SQ+_?80~p{oi0&#^SOW#w-8)JU8MbkiQlSXT62?2kP#n
zhD3qcSQfbL#K2WC*)7k(1rODPSTIO(4Zi2x>!F~=ppv0sJtER01CZs&JCruW`de+M
zIv#1NyRn3Ur<+q4&E@r29}aRHT^~xeTexLExk=aU1fzpy{byFBNO@&LlOr)$L&RPH
z;^0%w)a_&jo56ClGi?-;;h{$jag56J<v3F+RsXe<VvxLSXmLEQmmI6TM9FV2CR~$D
zOPZz`J}a?nH~~AJO|#yvn!+FDnVll2b;sq4yujsTdZc4?0-vKr?aEJP`m@s>Vk4pP
z{b7=sU7V(Eb|RMcgk5vS0#e>_oCT+i&>;X_nZ=W$>1_)_a~SEyoDcKOxbUFTdAnb!
zty_^K2|xe6C<#zi>+K5GN`4@<g{b)i;*lhCL`o9tT~k)*uM@Sb?c$iDi(1e|=Lhai
z<mE*R$Vl@A1kT`KM3&=NqU!Xf!TPYE@;%ds`Qk?ZAR%Jaf$a_%3gp#T+9Y`wRBoP>
z|7e#gfqR(Ya=ACBX?I73fs}QYS06gO{|W&MCsR{HwH!e*H`<}~>x(Wd-<<&~4kz64
zZ5e%;M6ge<xXF80z8N&MN?<-Yeejt?sXyDAIiWs<U6anFx&~U)P3dUPt4M4G|H&K*
z@1o^vxV()6^|31~3Xij=$FCvFi?xt81AW^MD~UJ846F;KY>j8oh&O4EQmH^gJ9$vn
zL!_e@BH;=&o`aNe8fHzX?*e8(bjl^mxqo!?sh_wEF>gQO_E3F411Oi5^ny_i*GuX!
z6+}d)_zB4qP1nmt!TD+xxgrc*u>L@=B7ac-^qbeqmR|+x6*3!T;vBZf7?KD&)stga
zpe2CD16B-#Ft9>Uqr-0XUJ`lStVOD!CB~z^vgGz$$BK)$J{P>($x1)Jv|}@!W@t#T
z1!j~>BPt{|BzPx;1rkFo^TfObV<z+zTMJsJ^g}n|*f2l^5Z8RB8vsDxLhOEfR3NAg
zRmPoV$U^4iI8Mu>%+<Jo5*-QdawvxdM3w5hm=$v9^mGfBOeG$HOPLF}TWWCR3WwJ7
z+y1;WNXbR0{x{6$`<3ruFEYgZ6U?hkEMRH7i;j|QhpR#UPG@6^`|bQEh;EyalEE6(
z-IFHMKN5B)3$l=Ya&N^%o8#eK`h32*0#IqZW%F(K%IgY`<EHCQw=1F13gGd=6SO>T
zr&b6m<igD|Mfz~r?}6(gP4MZQ03flV>F5{z^6*omj#Xx(<RnTM_d_=~ABxa}!X#tE
zA<*R0v#M*gcg~akRXB5GRvQJuNy8}(*={lFcb9B>{AEmAA=YrGrD7Cq06AfEzU+G3
zH5elU&cX;^FP{&Ork1Y;ea+Uh2@v@P-9@1Xi8NyoI2XD3GFp}yfq6Plo_PNfQ>f^e
zzNAqXryMHyOAq&l;ObXn2m$7HiQ~IYGn$UC2=n4*8+V^N79y`uh!ULWB~sYfSjdef
z5{Q=%<kQ#3qb#2v5&Ye(7t}l+PJ7m7eSzs|AY~=@K>X53S5mtUpL7V|!VxFsou|k9
z1qBUw7hp+>T8A8-`f0nizJO6h8%i5Xv;uL3kwqu1_Vrv^RRfSQ34lYx?hNM!d2%U(
zzlbB$2BDkPZ@Nv;bq+G@-&zA^_I{x}v1*Je#eoMOJK^5|HwH+<C}NHd@=zN%NO%{1
zI%Yy4e%zr_cuN8LKB$`ZQ&Vs~OQaf`w_q(;fh(F0Yy>zC(#;uXw(^yPm3Z5Q#V85Z
zRCj;{BSzHr{H~+@KqC$4el9hkrw+wUSG)k*<fDKXLR`C;^HZr{hZ59KT}rw)Zt{0`
zb1RpA=Q1Tb^qE8P>Aa_czOQbLr^|{4hYSa#4De0Sp>o{Ui?)Y2eLgVM<v{;Hw%En(
z)#Q53scv5NeGXuhhNPLAUWbUdDb)&1VT$wkNDsor!iEp-gphRO*vc_<ZUifg>38Gw
z0dT-=wpbf+Csn|eY9Pukjabbqjy&!3CQHLd2C84&FXCN3qr?tNv?)n8hvo8OvctRy
zbgG6wjaah1p2P;4|E%ld<qQnrU<0(St<gEawy3=bbHG@(1c<^fN-VVIdLhPK)maE7
zRE1sFHrXV+4rrrcf_KLB^|#ks<~2)LezF?{H@kUhct^BkTD3jPp3jd80Wt+2)#N&7
zeFA)8%K*N`;XP@$UB4~LxFC2j5Hjj_+K3T?{O)}ch;v<$Uj}jhScwXo#6Cv`yEQw=
znP?);wxB^aQlEdGkug#$9&+y=w+@iMNJwpNTzJ+#`)2jKxz&ZX;9<C7cZX5#=3&1u
z5*Lu|P!&tl)UAhHVcH)BNcag=wJbATk&*a|_-skiC(iG8qgYmJtp(ZgvCv*{$F$w3
zVXX56mH3Nh?H)95AkjL$u_JZkg|PDCowkau>Plz`Eyh}{0c_a3p_o+Awf-+ANED??
z+#q@+FgRNT!XR0w^QRLF_(#PseADsHtUf=lc&!W~%j-6pNYZMwL$9thd~Y&PKw!wQ
zBK7#X$t^(6`n*F^K&wSHh{n~^z89qvTVy^Wa#*zP!4*2-`@jRM*9=1fssC^=C=(!>
zUtCeF*?_l#|5^tqp(~-dpL=o)0#^qFe6Fdlada~)^k>F%X#1k{Qk}OGL@I~L;j+}w
zzlS@L%|MQECMh?$*cp3rhG&%jhU?yPyFn0M61=1>7slg7gW8+B0lv)XYwv22L-As_
zL>RJ{FP2$buLID?4^}1%gjCzky<mt+L19+uD!&Q4trUosA#s%KySO)Hs1~p;0jdOi
z%iAMqmOU>XE@!kh9D$x>kR=x%<9nwhHus2NH%90B0u!TIygO|0Y4?q9fZplWS%Nhj
z+|p&2=vhzR<$yR29;aFSlF#fnF6~@DM?8bBGz^Rp7XA0-fg-39XzT0LZ!#FJ&{z)#
zjXF7pQI;#=vWD%uLvT4`X0Z|az;PH|iR`CWK(6c}_=XC0a;1r1TF}%wdZEQY@y45h
z?TsyQ7yfR766FW?%weYHkSI4pW8z`j=!o?Z!Fz^%U7dHsZ=HV&l;h+Ir2L2zd<HpK
zf9n`h--QL8adJO{$L0Lvbc&RJ9_UcX#G{5q_8@i)-w#|fhm@eK6~(YvuXp~iS3u7k
znEj@1R_2Qoox{eWg~-Iwy-VJR({>4L*2+&}6b*ZYMF%d8{ux@1nL_cWIM((LH>Yr2
zY(nAc{s=^Fq4-?YKk7gU0b0e4H<V~ZPPb@>qW<>xSBD$XK50Cj!=wo;hHKRe7N#TC
zgYhgG{tO)p%w}?p{yOF5bbG)!l_%+o&i_>9dbuFSUbb$kzxhP`cWQir){6ldqIl4F
z!difip{c)cA}scGlW7GQrg)W1Xohb55D&&T1Tu2Z933b9dN@-+jv3DOr;%fzU=v$E
zq5enw^3uQn^ss&U^o_q7lRw&%7<@>?OB(>n<8<%XZcvaxcaL~zTF6OZV*VXXR4-US
zjU!Jt{@<dXIGXm=4yeh+w*e<QGUChsP@R=1erc!UQ<HW7Xayk<(c#R7L>N(hLDb9^
zi`;Au2dYWTUsw~?rF&)JscLjMO{u1Ia*eumk_Fve3Y7gK4gkcsY0&FjkXj3m{r6aU
zabL)~M6q4)mj2bSZVLVS!}E+3$7?V9z^_ySYH`KY!=L`>5=i2p=)h;Iyni>hzen@W
zfv^V}5EHE#v8q4Y@!!b#p98PtUoxWN18?m=X!D;7{1L-VY(UYxwHHvr|7X_zxxk-&
zJ}qzxPglve{~7!Lb(#M+l>Zjr{~t!htMK*{;grOGIs!7`eyEo5yZBfCiKKzGq5mCl
zQd9&f`u?uK|7*bjOHcTg3J~Pow1lQW|9QFJC8Yd4pm8f(7c&3r+N4<lyaBPt`+4*K
zzBrYCc?0O=Fn=TG|6^9zN&;*OXYP+muK#+YUOHeCsC5;z{~p|b9;CYgIZCy;B<;&@
z((wP>NR1M3OcZf{ivKU`Wiw3pJKZN6M=L@#z=_h1n*Uj6Se%;dZvygvTx*}ii`RZH
z9z&jgtkP_5JcNK}oFAa{;b`rSmzPes%;(w9*Mpf70XRq@Q$z?b_4|y#;P;QJW)l8y
zlwxcllPsI-b{A?&=Bzr94ikQ8HgN9Z0%GbAyUBRx(;>j>Y$uu)v#=Qr%Opzj0mW-t
z0P_3i8Vka6^K#>{b^CDdVb#B<kR+-#2y=kE20YPS_zB@oNag3}PkU4I`q8p7BdG#I
zi5#Ybzj}WxMh(?<y`$0&WJ7>@F5f~V;2!+}YO3!vz)}(ZC1(SCquxkXZRKq<!2I=Z
z1IUIG36Gr_U|g$j0hoT?)DNg!)ny=IfCP)BJ?d(%l=lPY0U9hWv7gZzpzHN>dls`g
z94*d~#DowD%)0@&jItPd1xd5Pp=!$wKz7>zb;)F%Ku5v_Rc`%e;0(7!sUWHjKmtQy
zd`HGW0@o*UI}u@Xy*kicJ533c)CH=dxuAH*nPJZ9V_N9G)-rctGg(A{um}R*7|0wO
zs5B2W97uSv52yg~%|Q0{ifd~<eohGCJIx<c7=Z){OK^YO(lVzPE+F&sa}^>JB2IhP
z+19|&FGdtl0S{a_!@zOY09u(}5w3m&3q7;Q3*Kh8@MYN#cfk1pVq2J6y`71~7R7*g
z{(Kt@v03$shwCrX0j`G%OK0CN1s;&HCPQ#o$iVBL%59}8Edg-I32+}tOG5+4K*N+q
zV*)bs7nsSk-srwsb_Wo!O~3nu%cab-Kha?P5CF%`U9Pz4et8fANUTOhVCKY#0p;R~
zPp>bElCrS>muI3Snr0K=*@3lAmRL8WF>b0hJ;HtYmLZwTGPUls8{gbWfexxp{<scI
zWDDGW{-JS2Hce3A`w!>nT=wQ?X_v=y=rB4mNWg-?_^LzGVXh0nsB@8d;f`$p-8lpZ
zrDo8`1p3>92^a~(E2=FX0uv=#LJcMWc&H(pb-!M+><+~TQ?p@fxkZ{A_n0wki>)+2
z4l=bophp+VrwNLb*dTP2mC`EaCIYUHwqnUgzBQkXA&~1KW^SI&c1Rq#2f@zV7Ns7b
z)GrqM47eWEEtr+ILF+hgy6)!0VdNUYSnOkioV-ky8|w;y^>UNx<=DPh=a~pJRs7uH
zv~T;J)&qNj&4TBdzf2mRUrfmN9Q0qrv-s|O`(s-R`;wI|IV>b7%JFoGBkhD)1$?aq
zr@AHr3M*8LIa9)M^F3n`_}KN^?Y^3TR4l?iK=<w3zSd$V0CW^R+gTldHMA?B7l!qi
z0e4dm?2l}1@p1=DUKix0vKpm2=UyJHv1RHMo0*TsYE-kIBd?b4@efm_ojHu?pD%t=
z-o>EVHzHuNHv>90+F;)>$P|f9@@(9(vPL*Rm)NE6lOLhp`wQ2-M&w$qm7{TZtCNA9
zlKMit`j@%msCFYPo0Q9+(7{Q@8E|#5UvPFK_$8T7b5m(fmTlDVd>Azc8~pM)WUO{y
z0WA8o0$BXpkOiQovh;*9MVHY5JKT^LCIj>FUP!z7;Y`}GmTUm9!Np62;&qv=0N#aY
zct0e3&Qgn`)1Dku@une8)7KZ<T1L=_IH*35O&E#}N~!Ts&mQTBEAMS&S_pprnX!}z
zAe|x!0RzCAB@Gk2Q^N+O2n^oZrw7CJrM49yAz1SDmZMqh&^#S`K39<T*(o$X-R)c0
zE;GVSQ67xrChzoSSCj!`h{ax3#yL#;r8gK$UvRZNUL_4gT}wBT<8zuB1JaZwpZs}q
zyU45EMURUy$st^$WSuVaqb;r#H#X`|;M-m6PBb1KhhpSAz>PEKN{N%$=XTnKotwSv
zTgQt+$mIzav&A;-$QAn@$L2K)S0(f^cx$MC<J!|%@5f#7!Y{5mewfm9>Wh&rfbO7>
zR;AGmO(zV)$?k!z%y(ZNc?b$-)a3PN;(ZbUcp2vNgNl*cB=q8Y`*q)5To5Ec3WH9(
z?YtM1^qqT2{a?>@ha+y7F-t4QtUc}^coKMS^?&z^U<R*=2mtJ$LGzP~jIt=RjrCx@
z?aZGBJFf?lR!dAhnEDlgb_ci|8z$c3Sf@5Er!`;0tWeJKq#XzXArH4mJ4W~Vf!lMi
zdIt59Tb)!mS1uD4y1R(D@Plf&Q*1J@XRf$XRxTCg1*RNcZ)XlC5MZFaCar12^=>B*
z=huBJ)~L%9{!8kox6J!svCrprW7Ux+1NA=mYwGDZnYyZl^Wzf}|I43&!X6mCs?6DI
za!y|wu|f5D!8H&Dom`*^S}@>osT9Rbb+~v9)QPLLV92di^U(^h=O6%)m9te1{m;6X
z<Gw<(g>tRXdtpb{+wa#?I5=;8SMf>PE%UtHda-7toGX`tckT?#a`5eeV5R8{qd{A#
zO38*9XCr2x<Ge}U=Mo6ckH>(&iD%8;WK37mu{VB8$Di=aQS*Ijyt&(|??98?X##Uj
zQE~lzZK-j$CGS~pJIG`jNQyd9SS%WgFo*#bqxS;3bNq&p?~VW3|8*3?d9PcnaY&Vb
z8snJ_8<2;(!NTIiN2m@P@=FdTglcAxPhK(RU%p8KTsW6I^aC5V4Dmc-s$E&3aYasg
zhJyf=F%9o~kR?zB;Kq2M3{VJ~C<~JBp~JOTc_Hc1<mw?7l}{<F&*>PAr>J^65FCmg
zVKma<p0i?ZfHG~rpDbv3K604qA%6_-A#xo|1}r+cfG6zgj#)`Y4R2&BH_0OLBBDsS
zg!TL>IgVYH(_x)*kQfyHu=UNlg>{+YnjT{>W;2Cy0W6k;+m?p>dRZ(p_1KJf;(Ocx
zcy@|(it?I!L;y|G>isnz_0)!V4*h`9q9a{kp>(Es!nU*$h|!t45Mu$?<J&z1Y25Lt
zTe*hEwZUD(&du7I{Nrv6!+_BMq1M1SWki{F05!hA3{X*gQZyN&zZ|tZdsMRwkSxga
zN8YBdP2@eJ!|ThfHUMgo3?Qp?d^v3KtdVL%9T7C5SN>5d8jta+!SNW29A`X#iz#vp
zN1iI3m7EkZhi#nfNatY{!!M~H$A?iU)H{+~5*o$WecyhqdIC1Q5GFN--6=&jp1Ey!
zw8w~RwtfK|+sJ&wX*`Obq1t-|SbK)d8q94gwqn)i^_y#Vz<N#Gf{gB*;k*4n2L09i
z0S#Yz^!VKQh>+#Ug|vPnz->5As~OG3xp}yvoh%NpXY>PQzI+Z4t>>l2b^s!q6LG^!
z)4B_DZLkYqVk<Wu%Tiocn|AP--czU8MG>CQI*XMPM@I9qIS>NG5uU*+%dQ{Bnn4^c
zb1>UDTPnF<t5@sZun^txFWL1Moo)4_quP9-8`cjN5Z=k-H35m|!`s=z0Oyky(g3*t
zu6aC3sEm^A)6k2MHEfP$3OyMNDoKAz!cGB~3+Bo^=I(-KK*a#;GHgD&F{eP&IB);F
z@&blH+rRL1LF6D0u~?7HI%rNTfuMtM;(H$g_3aMgn*tsYuM>Uf6Y!S%$!Z(r8_unV
zOUMuRyGCj65}#(YJUEP?GYw5}3HK_WAND)gzQL@P>U0dsaxLkjJRa7p%$L2>6u@x^
zFxvDd_9z``TsUH?lVm=!P8BkW34954IMM8WUq7@Kb$<!iw`w3=YFSi8^r=F4G<D+2
ztt48Vz}hxM!z>tjgS`C3?s+gr_`|1wK@FMrx}+T3Z6#@u><|`RGQyHt1$35)Z@p-w
z!4fgIh-+HO{xsLnD_bXLE#bFB8-&m=(3tEP_U`!$krT}54~>%Lhz5D=vehNyM!rW|
zc*F@RE;ph~l=-vRHoB%cZk2b^29UmE_ItU8+lliztM>T$XsKZV8CPgC5$t=uT|@ok
zxQLa!ndV6xd!aVm<(S4-W#@@KCS{DGGsuV{MrCfhvS7>$@Z*f%jpnA*2Fj@wcqYV}
zFQ=d9pm%ojuB$;7yRj2h`_0M>8jUx{+Eg9a6GI@gJJaGiPDAJwKmwavZo3I-II1_T
zg|lo0$bYH_nPU#5XER*Lf@i(U)o&<W?5~l98b=kGQuOYaK5W`*rJouQIIViEQF+w5
zg-heL%QYfmyrMs4;t+5lP|MC(DOq_VGIE1^bsVd1aamzhnHsETsPw_$Pd<kR1JX{R
zenk)OCYnl??yB~}j!h1?+p^@@^|;^W-Ym1$6E@_-HaPUXEznwHJM-iaoJ}DZW;Fqh
zg2UFc4+cG!S<BcORw6W5>uA>}9b=$}Q)k?sIov~hsN(elz*vhS0LGaa#qL|It2a<m
zvq)3FGpSy7F})YXVZw@nmd^o<bHgqtx6Z1L2Baa(VpUqyanm`c6AkVR&a^?;S&JV0
z!XtdgjS3p}3u<RJE`VSnK@@$?4FI9TY)X$*nVD16j){n{-Qg5I{Fb3ulY}iwVlupn
z)P^`Y70XoI;-q8ReJ#`RI)|!fjrxbvft$vo3iZ2P6LoTJaX1>-*RT!XWLr5W&pYR=
zX<YPPYy>nGHcW)mZJl*$Er!kbQehlDf{%`J7Q1_!f(<#qDqa$-xw!s5Z9CW*IBZ){
z06tkGPO`r)_Ew18aqk)FIDwbhTsy+3LCJ{6otgtP?71y9n=wf5<ARBD^j_+r56TQ~
znF1MZ^IEgez_5S8C~ZgWY9hP*Xm8MwcH{D1m-N1t`i2NBC<VUfOd7E%ZocP!mhr%T
zG!<(Ixo3QGZKzB&*kc$#@+wRqiX~zYRb{H*X&0v1GY=Lqk?Xpe%L^t9NbcSTwxABI
zZ(sE(IluXQxEEMspw!so!5yUy_{Z|q`&uYs_lvRw7Ck>}oesB160_##Cm6<efw6#m
z3U_{vzOk5*^a>+Z`-xjjr#;|1c^LO1=MEgP$yjF2rHoylMEFzt!!0=NNUwHN12)H6
zLLR=UY|v(~lX8~SpFpFN?Gz~A@cit<c5`OE{eYxm=-Wx`5pUQXMri8l73KV<cF@Nb
z6_3aOumR8dDV8!N^@Q-oR{u#O#4tfVA?Wk6-LNkDCXK$7cQW*5ki7?5KGTjAZfL#7
zakxOq*GzK_2j#(-h$dF#;u=6d@UE!+*da~Oz5NU}t-T@wdrN81nIa17l>Jkd*ccp|
zk3~*2*BHymd%*bZcr!kX(Dln`J>px9a>z1_jY94da}y@kzx9f^gWPJpGmtZR*12nz
z5blZP0x1(iLfzLDf=Rqn9pr$Dh(>z4{>#)L#v~(7%Kw>pK1N1LGzG3<of4%4elG;v
zpZ_7ttUl_=)*EuIuM)T57{Gk*Kbw`^8a+QX@NBkzi^`S0Y?l5k)hU;1Zn)#n{n*Ws
z8H%Xa=vF7xKaRRti(S`@18SNKRN&hacXtXa;5$ZyJ?uLGwtn^U&+N8}P*;A;7ea+H
zN7CK+_Vyd@-VSUaXSW`!mJJRSJmvWjmK6jI%h~lM+~Z4M|B8JpZ5r=&KaACRk}uke
zE#k`7gts0WbK8#to?LWDhNlLG_qgEu{qh0EiWO-$A%neB8Nsu2cemTEICV=+&)WQ(
z^MJeL@W$IP$K#d7mv)>ssYgWVnynS$ct@e)soO_x6}JrMkC8>k%`%?YgfOu_j(Tp_
z=?JGOeqr7Q_iEL?ds@S=`V2T9^(_1VpCBJ964QG%_UxG$KUSgo0N>`Xapv%fxo*Vd
zIMXFsOxvjbL@rV{3Ed<@wQdO~dPjJ<7gG9S%-PqAmW_P!-9Vo-_@w;-t&!yRl&;uX
z4puY<iIA5;hZ|ZT!=vOYUtWQtC#**@g3C-Mo_?tlpm79WG>#gtmS{FqZv$rDQjFZy
zOJ-Mx^;1JsZn(EW<t%#5Wm?<^1KTWFVL9f1`W*pX+%*2<zFjxr`t_u9M9j2wC3#?k
zk0XlTsO^gT^&InO!HM)IU_yR4k}^46^s+%)mxn3yW9}N;-eUOf%t4_&YjCqR7?<RH
zfi0I~-gIoP<$OoCwJxwTPg3dn5Ga6pe6qgL6~<nPk?O|k5|77A3s)o4gJX)D<$etS
zO@9V$(OG<^g#iCWVyBr}Q&IP1;33%;<r)A_j#d>@!jVe{9w`aF1U{_17?kpSx&{hJ
zUwXk92HgG-7=j}Q23+K@MQsBDOw~@Yu{mpMd;IaRB^%AweyXxCtqDe0cDar_qof7e
z0bq1<D@2x5)V-)hdZ$-BOzO)ysC9KUERCJDDrjzt=Z22@yILkfJ%~K3eqO>c;n;{N
zCmp-YY!=qjRi-n{a3c(&k!+0^j~TR!SLLdP`?!*gnbGiKJG!%Qj!fCEM4RN#K(}Jx
zYqY$(LqRIT_h~?KnQ<}M7Khzf;YMKCsCggl0LKuj!<Ko>66L<)kpX<xz%;S)miy+a
zpT4A%U&TVJI?X_(IJS;dp)TA1tyMiB;F`<3Sg-W~nx+bK@kpRDLnDAtr9UxjHsUC@
za$Rp6S67*-?YIY!9X0Fkdf9Xfw_j|3pTv3YuDM>O-(h*$jLulIo;waN*vXSOXp)W_
z77^RLDvjI#?@pUPpOAxmFQBxazHT?R-XQ760Y*tsrQX|<m)HgugR4#N$OD$6%v2e}
z5<*>y5dWYNy$&#}K$J1bVPCh}fAmWBXqqHqQ1L*6bUvg;gcJoRbfqD*1Q%kEmRAZf
zkLS{3MU7Nx8ZTtCvB2t#47+7an-Ay*N(HT<?F9Q4Gk`WvdOIJ6Kh>mBf+LS)dNpjZ
z8GTP)4mh39-HA2Ua+2;YaSwTbKruLZku6cM!X619_D^-}KA4o3A$b*0cqUA@E$LOx
zxtEQ8mxSR%V=*v+?ZvTo0qizG1c}HHsn$o-jVKtn%XxB}?f2V&<U@bjv>xue+~WBh
z?+Cl+)uS`X7MmZoYsPd4#$h4)fEnzP*1C@>w#X<ao>$S)bbZRV8thvgu}Z9$Lgi9p
zZPKr+raa<gk}55DMy0gi{=6Zw%lpj@IV7&v5pl$ZHN1b^Dc1IKNhNCKZ5rW5mV|&x
zcHefz0kPsfFr#EBVk%nzoA>JI(lJ4rv5q?<PbW`~@DB$L3|4mqb4qs+pIp5(*zf3U
zD1mL}=RA=#cF=%?XzZ}SH9<p~0+dmJ4h+Gl01oP<Yz=MJ7Rc2;s83S0j1614)rbqW
zVFA19U;+%;kZ`vV3A9KsKA<2Or*`3<r`4hCbNmK32k@SU%#t<tO#W!1*Gm}OrxVcw
zfTm&Q(_vd6Kb}dkVQM__Ch;ju_b8UB*$m!Fvh1!8XBnWuJ~1O;+a|gDldV-?gu5a9
z+8Cex<)|y|LN4Mxhh_cl!zd^JT4qQeW|T8?1k4B}b>f)UEg&eq#r$-@NiB88ml6h(
zd>oh%8fP*OJxm^C4<17EggojR#`b??cT&t@eF#kJai%Xrf({HjJVW(93{kL|nG25S
zg~A1PJ0n_%o5<K!UpION_OYlBDVbI#$fm-Ype4kw4T`5r)@3~}TuT!6Xl^6_W~j?!
zTVu&S{0mGyB&w@B%ZxcwD5bp(B(nW`yA+|Pn~iM$9`z|WGuVD7$Z;KFOQ*owjiT;j
zFk32UcwyN6`P9Ap`d!TFV>C@BHJv-%LjN9*1g!qUr%qELh6F2pu2g+G$nx{2t;MLE
zyl+t9W95}*0vj@S-r60g&^}pgKEB7+iNidnd?FtFTWG4*kUBU1N^gjr?^m8fHj;V)
zMkvBKZYg!IVvxeL&oBwx;Ijs6JhFM#FanM`I?hC)Q!|3wEx%;A@0oP5fYpD?oV~}M
z3KS9Gdj({fq!wGXGUpwBMmnsogpzR9UGpBS36Xj8tsqgu`od8!Ls;AMrO9x}B<hKs
zR6H{E#`3pCs5VI>Z?#rwZhR*B&w4x7;wcv_wU|Nv10(V1&80n8;yqwr7&Mj-Sp*~E
z;1sC@ABkkE_R}K;WpPA6nm_3}>%@@nG=KA?_byD$ZTJ13HkycIs2wXC2}w1&HRJ4S
zEhvm8jRqU(dOI@WmNXCdi8nLf#hS%+-_jY7edInhUofw!(xc6d8WHlCjPEUoS<5@+
zvozVb(c`?`UF0=K@WE>N+0iT`YUmyr$VuwiH;64==hqlPzN3x!spH1}!CKRJg1N{p
zW=6MMk75Cg00;YGaQ$<XE6H5hnNFIg<!Gv`ejn%xW2?{3wa}if*o_)1D$JE@>@k?S
z45J<W`|dKS6X#;YyT0ZT)H@y!XGfGfW6muB#_cAR*}7&ITux&!kDinNddLc#QDYVr
zt6%MjCpCJ`!1R@w&_<);ipTw-LjZF(@g^T5A(NXUXp>xsj3<TMZZuo(ws+zANuCN1
z+cC93aKMh++C3VVkOJ24>0D`g#a$4)m=AcIXU&TV%o(_(pGI>+xzn~{B&Ob^Q%pON
zwQLgXn>~k>6LM9IXHHmD`yzu>km3wlTi`XjjCYfLo(jQyj9RbR>)8m?XNiR}YW2#}
z$}pqh{5}}mAfe&Gh6rs!zx+i%W|oUvd_(&7Z34DCjIUUQn}j*^T9U|_eNd7-_7sVB
z<+49I4b+<tnq<~vp|9gMWcf61@n<$CKtJhleWdxiUbxu}L7~anS)$)#OKARpY&dXI
z+D0E1)@Fw!^1>1=1Y4JX`y&g#bFx9!H!e`+Nz>aUYgIDQ(OB!$$fstRnMXZp`XoKY
z5~uL~wGMy$#)W_%=}S_)A*PG$PJOz%Avzs?32onCj6QcUr!i5iCbY$y8c<>l!-;!?
zB#AMmDVKon+s$MrQCdzkfaBo}_tmxuy<L4t;ntC?dpx(-ug~WM{O1bgCs~3PwuPj#
z-~0r}N9ZqeIbE;g+HM<4=8|{H{#d>G9%o=8u%QtQ@aC*I(|cC;nrVUBJK~C&gX5S8
z=ighN8G0lq4L*bQM_5y&<QBu}(vHv9#jEq(=9agG1`-|^b3dmAJuu|;r)Opl6l%l1
zZq7ccC0AzG=SSj4*l-Q5Ktjt1T8=~}oX1YEz9}k!hpEpwJrrViIO*iN0=|iY@AKvu
zPdSokdtD>8qtlxHaG@r6ZaqA1!=bh<`t~6F+vXLux{cry_G=*mz=bq5dySP&N<@tO
z7B4r(v3qb-j+r8PK-RC_raz{DWrK**Y?h?EC;~esD!_M=6uZX`T>PiSTKEZ#1ThAc
z4-}7k?T^jm=_doC(yXOTg+i>AO=`VHT=k{vhZPFJ4w3@%J7=DWo9pFcf*uOU31buB
zV|+5s)~zQ$ydq7t;~kgNQRnsZ$4m8%SHHUrM708u27qLk+e)d5-Jw=!<oon9eG!;0
z!#7-4*JxwkWqWCXc=r(#Ho67$eiY`Dssz!8R~O-{qsTM2Pn@{fV05hBvfFG*EwF$z
z)B>;WMIqO+4QR1G{(sE9byQYc`vt0qlG5D`3X)1ANFy!X4I<qQ(%s#HQqtYsEg)Ue
z4KLkr7biUD-246hzYYdt55RZtz2aF<%sHQ&DCbTp&f?{&>vKPb{qBw6I**mHnrl{f
zmpZ-pIvTvbC8wUB+Rno~=Tm{CsI-u6(q;bxs>KAI+8UKO4d=eq`k;eseKPWE^g~O7
zwPPCz7&vrND<tk_$H$xu5>#UEI~|Gb$jEh-$xsK0(V1hdStR9VhHKC-M;jOCFKb+j
z2&#F;4OpE-Zo_1d&r_2>rCu~z3Ai2JFnwV>_*)BrqdP<XxZW1*<HLhVdXJyX@r!QL
z7aAd)Ik{%jj&Wc6#;eLGBkWouwxyAuVF|r%xL6K0MaI}^a^S0yE_FB<E5O#vB<6Kj
zcZ(cKf8<lgNFKx6L^>-RMt~WDe_}dSKUKPth70ExV7D(4X6+;jP`feXII~V0ii(^1
z<XSOiGrOoKSZ<inU2Zk^ch|cwpQHG+T^yfzVBjwPSR7`jk?j^ip|r(Y=^k@}V-C{>
zSkyiHyVg3R;rpqb-f)C8BKJ#xmWCheDu!g;0&HZbMOC^JuKp1LU2=ED)9t??UA0tv
zB2x`c#|0?e;uI{fEL~A7?&lAQbuC8JR@lQ<+JQz#2-<2hY^~>MZ#cH5ykq*cq-{5i
zdGA5}j<%jenWN6<n}#0pM@QG8jH|)uMXqhyhnWwo%U#F*n=WQyg=Y8L(Im#l;rwi~
zv>R;*?9svO0zMR(k5(M+_v;UkjNA>>Tybb7A05EYz{ox`VLMB1CSF1<hCjO`OmI&c
zRi##K4_))yi~(DBGSnpiN#SmD(@v9PU{!4{!QP$Yu8x7iaxh`a7yGAOYYp3G&-#MZ
zLW%6gUU)cGGjTCt8tVQa&2cwY=nQdlsFcONU4z(G%eqQv9npaG!fVK9^4k{ACo92B
zppKUo`dwGi!f>S%1iE)C>4jv8(Wbv#A{Y(Rs0G_|4~q2l$m0Ar5^zHf<Ggv68+N81
z1>1ZS_3GJQt{;Ey(NdmHlO7!LvZx_ymjR@TJ*dTVh7#9px@lfm@CFS#cv-EL+oF43
z&PEj;-yQ(1A0knTfn%hBbC?yCWd$OOtiwM7fZ68Y!-kt-u*7bUD$?+wV#Rk#Zb;HR
z+|x<8FUvk)B52&AyN!%+xlbF!`|J5bGT)KUsd(0#F6q;lb3K2A4b{SmH|riyF0M4k
z>^`v~xIz#3YS&CcOm;40?Rs9k+vpw(uPOFxHx?Lo0JN2`sQl>edSt~t1ov1nA&eO$
znhkl6`B8bFpgqUH(|&z(yRss-?Yz|9wyY>heA*qJSN@P9&;QHvTv9^1@GX2|H-v~h
zf8a9UyJNJx$Vov%ihY-Kp(1d57{Y10`6~!6-tp=>)om$^g7!{^4EBjE6s&h9I-F;V
zd<seLWzCRc$Kz+;q`Of*d@SHHS!{CKG;3w0f>`SGRfN)mOot3afF#3vgpEywuz9Ia
zt@_Mi`jm*rxuXK^2D(C$QL``8&-fi<9pGy1eZB>$jmGp!!JU8?<~>+l{$Y4weqqub
z%2WvKD<LdxE2(a0)Amrc_!bRJN2*t5g3t>R1K4Pgl;tFmK)J-2R4JnUanIJ{*zH9^
zhs9W_L$R?@`wo;%DfT5FGGo-{8>Z@I^qK%X?(o$3nDj15^%V<R^LZh`!?{%F?L46<
za&4>TV*+;M><dBql$4zyn3rAU?Fsw64Nq431Mem9r*R3XW47=KGSisiv$?suxu2NN
zwPt(L?BJ|a?m668N)@3$L$*nOYCK=waT;_r#NR{dVXWH3y^`e=7NhZDp{ZP49_I06
z9#G#fPJMQ8VIF|M*_jC()@x4(1NZ2!?!@fc#ytJCSNpWR2fC`*B%&!p<tgUV@3riq
z-*>hHTE~I=BQ!#o(s2KXg<Ie(Fx<3~@RVa-^U|zzON+{fq$UoXN<;_X`ha>_r_a_r
zc2N3f1`?xPV%CC>!%wf_PO}z@HWm(0HOdVOY00d6<CktOkG(B3d+l8@l#t!OxkjQN
z{(MugjDW|iFZ$zn`pw*2o*eb@+3dm8Ft}a#1GDo-4+mv|Rsy5)l4FA{<5nnFRWonw
z>4gnluwM2DhOED+7sybKYri^wxg4T)1#G}(2sc<lxUhNo*k)JSr*14sd?*@F9_XPw
z7*3@jXsE$oTM*EnoS^fIaCyf&HEiI9hy4)tLEg~u?@mQWjf$OZ_VBRTtDICNMfN=W
z7A^JOWI|t1vF#`&!Ww`@r*l1Z-oY}rJ=smrU|INxenCXM>tBj+;ETPa<HID!pji_Y
z$mui1Y2|(P6bf_iSqFmVI;!$~uuIwFUn@I_eMSue5R#=Nk_k)oyMVV#u8x6%jGZ^v
z4;B6lqp{kJG?Q*qD&n<>?s@VG7c}2`>U`k#ST6nwR8+raRdJ%6R(b(h{jNf5xAaYz
zWZ$4aVd^O<VbNT^qxsQ*<vmktNc{#HVR-2XYG$toDB!DF@N)Y?g!vKq_{1k6M-6~B
zvg_t)H0rdGYE;bB#x`8KSQUOG8pKO9yaW>8#urW2M56&e6V)xckTx!03v55BgAz@Z
zId?j&iLGeOHAfSXD?I~9o=LjqSkf0AQ}qcXgkfw%c5#I-j<kM5(5T01m?dyK8L{u7
zP9eE?ySi{hD4MApYpbU6cE#MZL89|xeE319L?K0k6Bavb^OKvZngew~ULS6<XApMD
zNyztu>GGUGzwQ_37>kn)7RPkg?Vm5tr7~Cak5vGJRV%wWIIxCd76d{m1&Dk7uO4VF
zXdmz~6_ern0EYng?n9}PmfI^Fk@d=NV&ObhKiWxO>KrWOh?s@V*)IoD3z-|ipGhD(
zY%FhY^krGa(!FB9z8RtU>Yro$V@0Gru&aD0(9YnpU*F(rD|3Q{$538n=1;7Y%pDx}
z?a7$^(Id@eriMK?>GlhjRmu+HsE)mj^T<*tC*uyB_%Pl@6uOH+@$NK_JEtAEP5x(a
zYOBL++dd?bL9)ZZx2C|Dy|@*!1c~|K554AGhaUw<+##c(xorq?%vQ*#mYY8^g!)8&
z3DT@&rNlc5vfrgxY1(Qp$6{IpSO7OC1(Q4P$>gwx0Pm{>fp7iUq?;r(zjQz?N;jC{
zqDIeZ;j2ivJ@IpvQfm*$=rA$q{7omm8RkYOPBX)Z5zen#ze$9&G!PVi5MGweJQ|z7
z+nB3ezp)vT<iOV{oMwi0<NmC1L8G%k|8th`iL_cn&{sqzyaVM1c~q|(rdqLKo;B#4
z+#A{1kCV(3R75%Iv_<G1hkiALrv)83E5`!JJo=p;(5TyE^$r%tQ+nY-l#+F!2he?W
zkTwLfd6ZpnW)MZg90s@$QXML4rs?@e4#gTF3nb*oQ7_yek#Q2cl0#!=#2s)Ik$Y9(
zPyWdI`nB7k$Z}S^j&8>&<$xgssTd$#m<kUlI#_%RL&VaUE2EC6Di(bYZ00vbA<u`|
zsZFnDqYIC@hR^RG7<dPdIbkn@+4c+d56a!IOo6?-+3!Db7}<!}cK$wW{eA6)#x%O9
z)^~<$&g}pv!Oz$<&KI!B8BD3$@g`zYz;&h*bBk5_v%+Z$3mNSR=7#d-MbgRqdN>;Q
zk@>05GtNf!o+#QUhyGU3w?BBR!ztSmSUl#<Tp+D5d*VtB-8|`m?%D->+<mUc{fCoc
z-c#%Tdc@W}q!}WiTEdxj?DN+BuM|l_c_(wZ1K!Zjv@S|FCUiV5Zn>}_clN~9PK_78
zaqlD5$Ip1ZUDuj|T@Mr!UM+PPAF40!tiKh>YVY@Ho%}jPEbF!Npu$i?wi~s_HfQPG
z7<cGJveC_9!?1i9TNIg&Ex+$=tF=GIqxf=bsSPJ3?~c-$^#g~ZJYLarO&Zx0RQa!l
z*!F7>2_7IJGC|IC*Cg<xU3^mI#{GQyl?G>=PsiwEKK$1UDgF?EI*Nx}lia<f2!hRM
zB@7nL%th(F&=Yc7#}!l#caED9X<SyRvp%}yu(z`nFKT4*s|(_!Zm40Zu}1F1AErs$
z3ag)$RuRm+Y-g=;qr2VND84q1Dzs@RbM0Ds!oZooNfLyIM*h9&Tm5R3`0fG4WukUA
zMcfOEut0w{P4`1Wv=V*dw1c6Woh>b5kNGT0;&Z=iH|yCKPl|;(O_v)HZmn<Zjtqgl
z7<VAvi0nPcyhps+iHRTh;1n0VHrX_XmWy#B*wIl>uPT4y&s44ObL2M&-C9VyGia@r
z)3&r*2(jZBMp^*T0#!2wr7`6kzYTfihftu<{v)4PAF$FSeAo@!A#HlD+}xjOCW(*f
z@z;z#JcD|<!0IDxGsKvo>G%kxYK^-d;_7&@<R4As#c0A^7a$WrtVCzrrA<wwXkPXh
zIxII3KZurm?AG!7l5B@K$vOPF$V<QK7Yr+~z5z9N2qrHtW3wHh=F+)Y)QSDD`5-Ht
zR_UY*x+`6w;_RBN!|G!sP|t?zY>NtCvG?*8HP&n8z@T$=A>fIX#a+>-=_MQ<4RO@h
zo$k#}`n@_fePHs#?L-a_9~$SRVujKAJ2;UYur;7u(u<!F4)e4gi`UQ&Aq_2M*f6d}
z;cuWFE)d6&kXCTddtP+gIgri_Af^xKB@a<|U3UiH)dL`8+1a(yhXr*x{;tcWH5U>>
ztC!PjOZC2skJ8Z7)*P7_RTf6);&=Y2dB_<=0h|5F>Ag}FbkNoJ_`O5B*Z%-adjcLY
zpaEOug`}5`I?)jfqZ8C%NyXd{bJ3rD=oOvoKFuw~X+Ubtgr)zJuJ8c~h-rX>ANu1h
ze?@fYpb{Dbi(rVYP?zlxi;8N8+TG|I?m;v-tgX1LlM(0|Uet)o{tn0WIepy3Rp}Ui
zlY?-VBpMC+s`!(7TCH@w4hA;U$C<KaMhuuE#7wB3xn%gM8X;SNOwm2{Ltijg-!F$?
z7-4CkxZx<M*Y+qoS1%@pZStqDib!nw7Aq&_Wj|a0=^sZ^o~6Wwic}VN)(aN^o$pVp
z4f_-C2r{5Deb6}9$QEdHZ!z*>kTvLoH=ZI(Q?MB-vuY9bQ=%xS0u03f9ODFm=1PFC
z6a<gk(K2!JYXeclff;A_Mf(bCBI@@Y|4S<Id^fTP`o}!|TWI}@CuoSr=QFv6zXd38
z(OPD6=>#-b3Jf(3$R+xHU#}~4%HyJ<c-nbADqrHvh(I^2fi`4~%aSHh(`ncuR^bqA
znMy1?rBe#wdgrCnSrf*I@XxdW@O!Q$G)gIMdU*VBuH_ZHLz@aaX&VP_KmDg3KROJp
zPeMO>+rNn;s<eFLlaTn3BrIB$yxAUVqMX#NHrbDLaI*jT=w@DNV%XYQKbDgaD(QrR
zQ1w0SUpU?!98cG@6Me#Z3{H*z+?0j|Dz<-Dlr!RgK!g9nPV+51uprLkMKLk{CKdd@
zp!z7DW#j-=y{o(<`g?r--xm?*05ZLPOZnmHZxitUfimyHiZar1O>jp2pAWOj10cmt
z9)a@j{___9ejXaGhXoN<8TNn6oH<DYfcJtHnS#vU0OH>|YJXq!g#m1KnO-6J|BWR7
z|JAT~es|Im_|N;06vN3E)ukDap319r*Dkt!jJtXJs(2^A@854kK@E`M9K?J7qOOoZ
zf0xhGwVyV?9&2#2skb;>?lc5|8==ucTKw<w#b$U_90O_leL^;rIL_Ej&Z*C`tt;^i
z$47nF(<u=ecvS!OQ8y2`bC2TCProtn5k}AxY8E_Wb#^9WWd`DMwbn~L^Z@ZWP@eRi
z^O9eCgN68w!bH9?)*XA7g!|UEYhK*;-@H(;qQn5EULxoZH27bO=ga37s$^4L=aWrT
za*QC!$DZS~@ky7_yw${5!zpxh|6YY_DPT&i-5)Es{k?WP%Sb<CXB@v&FVhdi<#Ddq
z`jO!s>5#!>a;Kt`-84~cO79c)ZzR0T_5<vnbNK}M0i>J=<g4ZY=s=yt^4FIWgdYB|
zY{}##R<kq4SyMSi*0C1P;$#2^Hq6l1vtMvB0steIa{E2iV}Qs4aMcO@tT|f*j?<s_
zNkAzn5g?-zWxon%CG*g3iAUQgzRczS^9}i-9t6@<YAiEu2QL8PXxARP-ERC7+uV%l
zl<6c{&i&+1S;NZ)6``uhg6gd4iq3`gbc5i5pk~8l;XRjx_wSU?Q!M;&sNNfwbdzQ;
z3|%Kx<|`#mYc-m!OA-*t34c8kN&G%;lIYtUf^c+izI`w=|8u&oQl<P;mdb0lluNw<
z?Q-kGh6L_A|4)@{tfvk;=B!h$Fy#xvr(Vo=j2^>D1gkES1*%n3(s<=V7a_?{?K;=P
zu6rijytBEICDrUp4GM2uniB7CVOchITHnnYhFWcG!Rzqj6d2xS8wL+i*A3d&{>ou8
zJS;}ntBO5ozv41CW8JUt&#N?(J04C)7+5}_N_HX+du=y!p!<Ddx`po6IQ!Cte}q*d
z>t(Fu{O#H6N`UYB`B8nb;Lasch1sm`a%Ze~@Cdg#zCyL{H!VVD2$+|Fb_9FiFeW}Q
z89>0kCdkPB>+_QVpap><V0g6JtAdUg&awV+tU!f@7UwM}Mlp52=tq8l@B5ofmAsRJ
zZXaD&kE64rdssut*sy@H*?j|`AZplBZ?bIWUZb4jRdSVy&b*Hexinkd5vsD7b44C=
zEY<{9B|->t7V)=(ero#|`?Fuf#LJyK(aN=FCYP$HuG7$9Llh)Z7tc#FQ_z=1`L2Ws
z!<eJf>giA(HzOa{#B#QlR_{19=E-N3Y^mkDvy>m&?@6pkH4dCJXz5|yGA~eut4vJQ
z=qMjxBHS~EhBYk^EmD40DGr>@ou)Tze7>E8o6c<_G?06&?{RbX3EwnIp|zwn@;X_#
zn`rmD;V0JV0n?h<FvI8}Gs#ooQ;9Xa@j_+xS5l1X#qJtoH|uY+XQ=Gj8VU*)%W91+
zm6cd_F4+d>9Q?X=$6$W%ry$8MmKFO!ZfTtL7;ptZ3XDmYbOD3KaDeea$t8#qBOUQT
z%yfUQwv)Q(%ZolQo2NoKV}B9((4m5jBwizU;F;Wy5>}%W^Br*s&~=ofNWU|BZVw7w
zU34aFpUhDZ;)l}>)<X!<V149v-K#3u*Y>rAm$#X=60;ny^(>G&`A1hqYV^;-pI&;M
zaHTo==P7b2(gnX*T|`cXA@XuWdDfWLdgxKU0U2KOm~M=HiTOJJ{?07ul)Ymof_GFG
z_KSJ4+Lc$Xq`a4h-OSzx8mwpC>L+{pEFKr}hNn?k*@oqVg~~W8u3sSL4&7N9$~D&J
zznCt!lnf7RKGWJEpRv8&3TP21&1EyzcbfUfDItZ$urF5(7#k6biD@aS$6|d(Es>xN
z)a<gp33aU&Yc)6JDHbNpvl@?nOK{s6^&eetpfCMd`zN(&)vx8I*OLV6M#ty6s>zYB
z4-@zPqSkOay*X*m<@AkR)%5&&GGxHlu-Ae&VV$Rl*-mZOV8Wt7qwVM}iMdb0X|2oh
z9_u>A6wiUX%bBDsh3TZ$Qmg#Q5Zq)=^L=jOZD;b*#^Cwe1&BXQl|ePjK*hUi|LaUe
z2pR=}^Ri8RQf%-YV)V~x!*K0JJ{*dUDP)#~l_0iVx?Ydrn*|BC({)DaDkWB~C5RW<
zlgI=Aoqaa(ru$y^BK7jR>5TizY}M4~<j5-3CNOeY_OI%ZBO%>Q$o^y-V5{p@)h;za
zjX+k(2fbwV$oqc?|FfDz_=x;450c_GLjX?wn(-d+Scr>^OtR#1!gPSK3`Lrptc(Q%
zRdo3C^3Q<+P^|#psZm~d!B-RUH>{z)Dx4ce^&#gN75G5tY2|)?$Ky4N|62<ljA`ZO
zQ%|OA_zrHpJC!;{VLFPDfhC3{aC}Uk*g0%sL^B)-kaS5pUS;BxM%W@`yJ4cgB}}Zw
zU{kb^Uo24aKzH%!T*>j%CB>hhQ`2$xxJ>mCDRz+Auv}!gO-JtJXT9SwPRigen4!W?
zOp?T(wY&YzE6u$C$4ItSXd<pv@T)4uy_w24j(xFN3V9zoNtpMVTuiu{bU3@Si_B&!
zn1HC7Kq(7{V!q<0?bS~4)6h%(?oU5+BU1?s+Mj=QDO@?O`ZV5WuG<!Uxbn3d{yShZ
zJrGC=Su*Mkj4MBlGdtc_ejLeER&;NyVFQQLCu$oVSK%ThW^sR;td^a}L?zy#zl9)K
zJS$BU{l^`2HQr6_H)qt}!#m#L`0Ds+KSgd<Xzh5>#5CQLsYN{{IsOT&O6+?falpsc
z1DZ4JrB>9cU;Yexid}3HR3D-~wuWmZd&FV*kceQ!mP@{=o}=SF(|U(v-Eez4t#p{&
zHoSAoWxmwMyPl|k5G-}a?6HZhGlQr08h*0!_i-yz3WxDs0P~t#+}1vT7hA(tmV{yt
zt%3sqFBPK(Xs5P6+N_?puh+POaRSgV(;0o8#wX7jOv_!b_o~-HY7<iKzk_d95xF(C
z;Yxevi|>tTXzY5iB(jUxd}r^G+AD;_4QXM7p4tO{zc|2iK4$`y-_}?YVTd*@Sm$lW
zAS|>GF#3x`n;TFP+1&t8*kphq>;vpH3Sk`YZjc=@22`!qFY{VIHjxo79DKPSYBoXN
zbdDks7#e=WU0Yb!YZG(=4<LbSzh<mtA91M)@Py7*fJUf=A0qCuy>Gu%DraK(@Y{ZO
zcaSg}q)vB5+do!9SsmiNZy-ZNk*sAs-WWcQ_TTYQ0;%7phVdG@2hWE*+I#}nhq&~1
zQjj(Zt7iJtt$RBaNzM-HF=-W{z4x2ZoSJkxEB+oxr}r(`h?6(vZ4+p%!-=!&UC_3(
z^UNa>J+#>O_+$hX<KGLE#+;FuNdwE*S_cMXt8`n5m)4W)*pRzf5!sw+#qVh#?kB8k
zou5tz;kn9`23~N=oy;iYKS3UN)5;zu<o5LCBuzr+W%?xo*|5P{O4|<;Zd`-ke%H=3
z&&)zUyOoA9&VGQfP67<2H^Ow^9{C7z?}CEIzV^L2lL4n^4!bmql9a@{2k);+dmzVw
zg^Dm88sP})DKje~YeIC~KwB^<!1vp{Y5AbUViOzwqD#0QC5r<Q;F7Zf70xfIYg1-6
zmltyx0xtE7X2<c#re$KAr02Kit$Z_SW`Jk44*bqnWLQzqvPIzBubKn(G~e2nFf5du
z!NuY~&t9U2>W?y!p91|h89_RIVko0#cQ-vB*($F3t!(^4k<9u9bFOrUnY^spt?cAE
zs(Oi7AkC1v_htqNx&+TTIO3++js~uKA;5QxCOpxHc-nApe(@dvilw*#`9}ErghiO$
zhE=9_b2ZWKhmLytrQQ4QuJi^#cG%?ZdQooR?e(tQ`a-pPY6Xz!eh6ZRU<K_MotJff
zPWxyET5(N2L(gNkK~Ip+ul1b8kl-wPt$wbQ5YnMCu1ob+jDoZ7rdE|%Dx>@jEdrO)
ze3fATdqKgQS==U0SdFl<adCM5s%a%V?-^OKir+HRU!WdjznQR4N5vW5NG6*b%Pmcx
zUT%;N<jRs4223`&`SZD&=yy_dBm>H4Uc%_;Y$#*LVwpkz9nXF)iM+i?IS`ptvqFg6
zT~D@P2B_tt4D%sQ``wS7{BKuI&!>&jVeE(u@YogxZ1-ly;r)PE4lFmh#q);ks|4Wx
zLa)u43iW&q<LnEvS#<+os3+1bUYcv^?k_iG561JAXs#qvImfxLHuctlA}Bn+)hzBA
zDL>h3s}!KU7of{OYcq_rbcL;j;a5!}Ja5&#=f|nzNQ^{$mzVh3SXagzW~|B#UyVMK
zY{6AY!_H1wid7M4FnkPdRkNKcSu))I`GU0qCk!GY)3BbD|3sEa@dm)UkG)*J<_*?U
zBzQsqNSM_zxaw1-jpf~S;!NwK<vA|LfCUc^k7Rngp>98Zphf5YQPaciOP*@w_i2-2
zscfU+G<#y5b=YplWW!GY*Na?SP5Xot<q-K`>gp7KY7nqn0}uBL)T+%%RMYfbA6Gb^
z;(7j1o($R`7q%QOtk;w0jQd*_Ed4Y3lNIqI)vq!H>ZO)N^NrlFTJ~K&l(LG0vrVp=
zIwwN%z$7UOnGIc5#WrI*KQ2<L4g<*T5Hh=<BYJiG3iQ+sopDazo11}gucMU0i?0xN
z^W?bS8xu1cL_-vlm=>Je2uwcJfF9d-bLaA|-DbH%OtGW&NrY{HCeVVGCczW(Z=m9k
z7}X#+2cTRwk2{qge97ESWw@_5LrDlONolcAiCllm@(hSGVEVAhO+By*4A8J#0MpDj
zqXXp6SPmN5I-CWUaRWEUvc!$lHm1w(8E;7MIFecS{7HV+eQDjRB30J)c?P&c&+St^
z1pJX$9G`1C%vUP%%{%WDLbWo^nJLW;wEWxwlwmlBvrQ{~c6##VcyuPQM;q~)&b{1c
zQ(xnlpftpU${;NZ@MLRGvDI<>#BAnTy%(Qf%<ByMACez-*sO52AzQphERBme6$*y$
zl3T`mj(gO!wRrEYwqd_F^YqkXj!vs-j+s7;C1WYz>(m1$G|l}Aw|=M@F!5;FhjeXD
zMxJIa0VQ6HfZlZf>oFDM`8qoqtRmIQzO-3TMSBuio@e~yi+hPhPR}w5hBW)qg-2&w
z<$5^pdIAvL!f)Vx(0@T;%}?Yx-~G750pv7#m@8!e%0e(x%DAlvN2-{Z*4558*`K~#
z@!`>WR4}fc-{V@j&4y52tj<oYK70nRM-dnI>b{V%!1)$yaImddw>z+?(oW~2y(^(2
z5EGZ5|M*0%@m<9i)$(a9ojA<qSfX?YiRy2?h8_f{*yBtrCsjBq9ILY#lVV@pjM=Uu
zP?f6mngbdvECKY>Re(B5kAa{u?FbEK!fs!Wk+iF7i8DI91~OvNgo_{KtK+4;2KZb^
zyi{nuZO~S<0d6=8<`R!q@O8I=)gy$BGg9^(SnTHH$MB=+;b7Ne#xi;kE*^MWwW8w$
zP|GkI%=9?rR<1Pkb==d+nr^3WGL$#_R$KuKclGVF6^ttQNwsQv#CIY;Y;-fkOSD_P
zNDlbUnW!vkm|BB8h)Ib!hsEPltZ;_eS0ws5<VqvT&VVqk+G>(E<T5ACnHeP$=IKIi
zdLrP|wo)XMUITb^Stdy$?+t`JIn8y|V>>U$dq;^e;r2n!w||oNFSoOY%Jci13AP=J
zCO3&lM?%gei_4qEHa8!JdX#m}*<JHx>JNDz8mp#D#Ke=+RAO#RG1~dx*OWP5E>`($
z+rg9Jy;oM(KQrJRVhoWB7@x0h%)=0Tb}{iqgza8$;OYqXY3h=KS5LsH!yJ_%F){1j
z1k+sA?nY)>@RHQuy3?Ow<!PX@CdXACGcw5)m7|gi*NrDoM(Z$=iW*P%M1Ca;?m9+h
z;O%(VmYI6VkG0h5lS0Kpy-X>-a?l=)Xu;LBS$}&rI{--8`r0hkt3BT`N*xEr3slCi
zI-#kWmNEjD^8EePVwNH|T_}aKdTsH&^fOB|`Ey*(Zo*$B9p5$IyUZ3{p9{~|B@0>?
zsa0E|C8pZXOotHN3cXhlH2o$8@tOrkg1J$Q-!Tv*!$rqS`QV8fNHZDwIB=@k(W<pS
zM4S`oM`<H=rJ7yT&928Ko2xR0QIO7=lMz%uB$Qe^m<7y4onu>~y;e#j|Huwu`aaU!
zciiN%Nwq~pZ_`&8f~ZTM%r1|9Oyuw+4BIj4;;|1?Db=oecVcq6=+fTie*5hQOL}N?
zsN=Zl$Qp&*3!H1moCV}0IB6~IZk7VPf$WAc<5p;kcgfF^Ic|jN2hN(;jy>3R%#?@a
zi^p1C@7oq69uK;-O7xGQhv+-+zIm4n8756na)xnWiZzjEn_aYty*zEj9_VvIkhm2%
ze}lh=O8BPb(2(ccZ+d^Ie=noD?g)|P^t%fp85!w-<Pg_LfszG!y~Rj%^dPSXrl8!^
z^DFAVWfWvG9x_+fPN^`2I<52+>|#d+2W?}fy-{tRH7m%UO9XLpd7Z@i<9wgDJ<yvW
z@dGIJqfGoMiL1WYRD$h=)eAFsOia((P?pg(oy6n2km#Dg2KDp5JnAoQv+HUhFTfLj
zjc%1t6QhV07()<-n|1hoRek=p#l9^%l_^`>s%l)(cS))<%YZj6A5^UxpZj+uM_cZD
zMeN&nm8?&D!u*1vOrms3HiPGZ&6c_)Eqf0{;Kfl}QIIM>VZt_-8xDpHoC9vGa%)8D
z9C64F%|kTf8N~kuoN1BKk)$~L)mj-wZ&q5uaF{YPQ|u#;KbBm#W>0%=U`-GCQE5n*
zdzf#ur8mEc)~ac98|Xuew46Lne>0G)UaNXqGGJii@y0_kaL@GCtivQ*XSQ9kQWYQ9
zP;z1A=$+6}q5A8|o5OJ~9gb=B%hQz{iGH~!I?Rkd;&&;7m+KnGV_diM-Ds~oJk~VI
zWs?;R8?Ra^Y(lpa*Kg_J`_;;I4Sv}vzp;*6H5fBW^wkPy!{2KfYt~(feVpzARW#mq
z<H#`Nd{hZ3SNxrke);yXF9mgN7rp63`V^_yQNvW{D#j2B=b?P?75Q_$?N0yEx`x0w
zSWm#14SNvpHw&mjkfq{T&<85GUz|XOX_v0v9ruoIRLf0)1}ADURyOa$Wi8>Y3t3R{
z?6W5m8^a6)_@f(9AKd^bk#*PcA;ZcopYY9BCCZ{UD;<*=JvP#m3%!<I+!mQcv|Fu}
zZv1H)PV@a+F3`Fuq-U=v@0ci5A~*C8Ul9qe=AhbI`LsZhBlYk?9S5SyM$p^bo-C8W
z2+eK?l;^1fUvhgKZ5WO)tn8U<(WzgoB(&^6cFCr3hAns9s1u%!H6fi}Uam_M>2#g(
zQchvJ%~jqbRqC*~oFXF78m=9v$PIKD(O21py~s~+-P+eIclAwly&E)a-L!bVGvReb
zpUyFRV>y4@S`+q^v|qNI^xpLv-SEuh!0MeTE4bm|wK~gI3VsL`x7c|QP2*qr{TK_V
zBd{xO6MpGNOR|<`N&o@)T^~%bD3Sd(F1kJ(lM;4vh6RVf2E^3Ol>?(PB*WoOocjo-
z^)fTqJja?t|887#3jz>?wNl`|+BM=gPJD9(2pP!8d)&JyIj~vwUBTF=-Qvs|79vW|
z`cEflcb}eDThuH)yX)>bg+isXjz29~At+5`LEzao97w<o%j%&U5Ad31tpUhE@w4#h
zB!J*ELE<?<;p#=|{sc4;Ie=XA001f_o@E>o>5rl#4vVoR25bGmQo}$bI<Poy-$9#i
zcbsN74D1kXmiR+OfX|8SGc}LLPTk<$vShm!=h^k<J3rn<Lyyb2rQzz@MR)BBaedfu
zkm~#CN5(?Gl%zmAkeS|$(ET!`ui9|@{qb%8<P;O)q(wt&o~#2xx#_;`@wtVZw~AME
z_`62iAzPNK>{WpVLBg@cD#tECH6sr-;{ukQ!;|{-Dj_A6<~Wr`ijV1_dTEAB4Mm@h
zIlshqJ$?=~Vi}M({SCB4JB@pHamZh;-#2V{I=WkJ^?qeeA^YzF44*w*3~_wXZkogU
zEXf2J_IBFxCSlw^J24D#Z0u_525YoY3_bDuF%JNJEx|K@>|(LF0Fre(lf~Fl=KNCy
z<;BhPyF4O2v}P;ZiEfv`%V2W5Qb!>gLY_8I)WEjCX-6Jwdu?ve72@@{0v9G|+W)I5
z&<;W1#vd+ANrZ(~tFe5SP~m?2Y^kn!Ih=aU;(QX79bF@*$_$}HX%wjOo$FNfMpOIl
zn4fJ}3cM&_Y+3<AET8CWS3exz95eWc^qfq=`VHAHx;a$i(I0*}X^)#n+AjU1;Q1?g
zQ}t5QH^l12U#S_-QIZmnl4Y@2hLAuz*?uVf!OPl4x)A6C#gN97r(F7DSZ!fK>Avyx
z3C`R%xh0F+BNAwijHi2b2F*8y>u$__ba-51x;p$azqKqe)Bo_Y9S0Kl4+}-Y$pwb#
zdHX^40TbYMF^rY!iO2ycre*wbN1IEi%)H~y_|DXYWMn!VPiOxKTSv+RByR4Z--l(Y
z)uVa3df0a%l^7O|F+A71ES`{)6d(khzv4iB6Y}warZwFRNa4kzoLx{9h<L}1u(OpW
z*x9E~C9ADQzwsaL0cWjZ<*e3?4)vs{;Rt>VV8Ggy1L);lk5>5~TYzNBY5A0$U>^-r
zfoPjH5I14No(@qm4kzMi+tcfI$1e&8Xv7-8=x-!{+WiEHy@lED7*&LTD4W52EkQ2~
ziQ}MJYm%(jZHZZKShy%UIRsj^5+v#}lt>x?%l<;!e%-4SeuefIe=JZRz;m*2*c!cD
zq%#>TP!ZF7e<zvc`_Gz#t#HgNHg+9FZDsfKML#yJ*$Fc|W(hBaX;HIm&22lAun+tG
z;U8N~=DF!O9pspen=-aL?J=cd40lM`Q3f)q>&L@@h%TD`jD^&kFhGg0t(O7PaP`Z(
z4T9@~#_!kb0O)v$AnVe{*v=TuM}o!4P`mtHNcjj*#EcvJfo_KxP%VT3K}$R%fqidO
z);bW9?7}#1zHdZ>ecL^)r{%mwY4|f&ww12yt5=|C+?3@S&`9^qB)I<YhN`>;A%b)1
zvZwYrE^`N?@v}^H%{ZU0x=mlIuJ@m26q^$BIKK|YA^#R<!;eGxy4K_VdhkbvfOju*
zQ@Ph7K!F;-_IBdT4oil4S@v8`7HRaO5Cu=MYq#9*)`Y-j4Vdq4quaCuAghN1;@Ko3
zKI>};MT&0mE2ymg;ejFdDf%6NG=A+E^r0I3p1Ox?ZU`$>rnlwXyz5f~Bj~q*W%YAY
zQp<y<ivS3z+iyG|MAdgf2O&$IFr8W+DnyMg=~#vY+!ynfJoB-j4@AP46xaAr++39z
z7yi-BFmFEpumU$+zTzvqZOPjNw`7$#5bZcVD6=M}d!(7OF4TkpT%kB4s<fx&zQ1LT
z8e7(HO*+wZzDiE~nZ&5XSJR;)IIpMLybQUSNpSitB`;KHe}||*<_PQ_LH)b=2esMh
zUP>GWB%O~SbSU+>A6`&t5mTttxyh=pkKd1yLX{CjdHNJp2(FcnFG85lI9C3#H>=Ez
z3=@jHU|oH^K$6C%c!SG*n=YGksr_Bk!F}$71Ga(Moc-E+7bCkgr^RDc|5i1Vs}tOb
zmzMxC7Aphm`JBkl?W)0G66ugyt;*EiE(`{R^w10EStK$;{!&A`KeCcr!Kr9WB(*e=
zK*gu;&<u{e%WEG|PU9HvXG>@Hn4s$(WN}a8yf?m#yT~Ae>|i#XdW{TmQbu8}NG7I8
zyB!dq5{2`Hn0s5o4!_NJAnxKLxLJ)hwr@8YOro5bE!FRhdKRu@zlVZN$n$!S69;Bv
zI31e;%~M3@`m9RpSE1XlSDZi$$Rze<I4;WsiVZc+HNm=^X2f7JFTEqj%v|lUpvxLZ
zRV}9<4ZIcB<P+H{$>fRcwJGdd6r}xp9go(7CbirSF`rO;e1b&XrC3@eeGss}3=Cbl
z>A49s!ghI?EuG$4BR!0#Q6lENijBtDKKB}p<nhB-z#FKkU}@Z^3=R?&gzQvXLD*$`
zO1ZxL-uP(oDG9IDeDUk?`<?&#WAOJSXkWBHW-VoNn@(9i$bQKestUoe*Wq(_lN5yD
zvuPGw!)6jL)#CWesKUCVxL34}0U-wJo(kji-0uOfx4bP?M9%jDu(r3?$c#htA}C0v
zZvuE&3|+TvHRp}acBh3MEo(^4S($`L=KUBago52sV1vW#@7-7LeYlDc+(@CxD5{Kx
z*<#tg*m3h`IPA@s!DgWkmgoc&a8k^Ux!a?l`y=9JvXkr2d`dXq9MOBWVI{Rp!%Y!6
zwF<zZa+#?_Fn$n25aj0ok$aQxs{YJ7Z?6b(Lt4um4m5?AV|!4DD)c-$4_6l11PV`a
z8deCrpFL;p7<%ltVZ>4I5^@%d&Cpk%Qmzr?ENdm)mH>Etv{qP|<>MrEci@~7E{i5E
z9Df_T1jpreWlMg;UPvkv#~9W9O*SpY(Y-(JmEMrC`uEgn)*Fv6+;mHr-#gn%N*KvG
zemGrj<#Yyx&yx^EJc4`p;zNWrB^YCV_VtP0=8}%wPhTqOc;OF5!!J=YbkOWCRkhW*
zi=&`LKmYMXq6kO9!kjfD_PDi`wA9(_+iTo5IZ{K?rJl=U?3jer!BZXeMCPpL7R@nz
zHUsf)8zgu@F7ADx2kdEs>tz{Rj-p#c3KWqoWYt?~29RkQiFWeH&prqSyn!Zn?09!#
z^V*S>OdgljXh^-j#H_pN3TIhCMkXQ&d*^h53t7|Jpf5(2w6{APU*$GrC$wlu)lw4W
z2{?1MSp_Or8fv;lPoij*q{wYA>i96K_E$EicsaXKG{j?H8V8ghhd>SlN?94uvcJ8L
z9Yv{Tz$fkOPL1>7!9leqM77caYHGVbi)bMP7<9@qJkh16rdzd_Qcx5T5NLjZRGxNp
zcLnvwe+=251NSg?>R^@P#M^RIAB7dje)S_8DO7Wa&m?1_MDzqYwRhN9_k2#t+Z4=G
z-l)2|pmG!9ODRX>t>t!V*G3m*MEMv^)Dj8<5&Z_s@-YP;)IVP+2hccC1P47&c6_G%
zk)IX6S0W1V6l!lS!U{A15r7`u%fyP0BcoHrCB93IIN5Dcr|(g_LiOqY-fe&Gxxc=9
zwva|}ThhlW;VnX=WG7RKW7*B<b*BhuuDI}Ur}I4CeG$m>qVgQ&Y`TNUZ^nE9k?Bl3
zg>t~YAP|!J_r(7>{eOIi@_xjF_+;fRb&mpB1?Kgmwm5o?BodQfVm#>VcH1$oH;2^1
zRVyc-kh@H$%lf9vH)2FL>BT}eaHrq@>kWUuZNwCuC31U*J4~(n-=;zUY6gJ=NxC&p
z>|eJ9EAS@dkwDb#uAe2xKO^<~bN;-Dh=8WSp`vh0Oa32E{^ueFpYl|Ix1LlT>A#ct
zdsZL8QBXXF_k$Bl-=O-#cKv5G|N03pIbZ9KVRP7cf&cYVe>@DF*k>;t{?U!v->-r8
z%2Ph?gV^@ZJoLS*TFZZ|9k_#~2uW7`vx(?`J%%9KXLjW#S0_*u3eg`(kd30QzTL+|
zMI{CQ$^bTm18n`(M{$4c&A)bNB$_CY&98)+sDy#>S4LL({R*(!P#GBxPcF9i7#iKK
z&!WIOxPI^d735EQgD`0cJ~@g0=S>2G!8D^!-Y$Ro=kXKxl$8?*xa=k9H5+I$GBVIG
zFeoU+<K**SDtwPg;jj@#B7U3FlE1q3`@cLqTZ;o&<8DUXk-ul{vEZ-W>GCqSYkLky
z$d`Eq0d8)OyN1`MQ!?X9Me2!O8HA*No2Ng9gMt-G!Z~VcA7@hh?`Mo4fmSTm+@rwS
z_T61<)+&i7rTboDz~guD`z8+;zly<fxY|iws{1`iXq28X$h%ekQZbV)LjN9ZXjU-k
zo^JO}r@ud<l<$$IFQ*BRKaAJY5te%Q_s##DUJ)?8ZKWHDzh5>A))OGfI~vfsd5{L5
zVg0`4!vzWG32*JC6HlL-1w6$-Xx@0SzdsG^fEZx40G#A2{mN*TxcNDU#O`G8>3<#$
z$&-Q-ho6Sv^~VT_R8EDYH!gIR`((v2e=l>Acd)AiiE=<4u6QW)8+G&jor_n2H#IOZ
z|EylmDT)Yv=yuz!(OwZ^Nd;5u^#M|1kDJm8i+gp`vSsz(?@ghN))Vt0`T<rSMW@32
zE;AYw)FlBBL$9j*&wcjy_rO@bAV42!HqmhX_%Y#>aU>>3I-Lp@t_<%C9Ud7u9;i$z
z=l`<?AyF;2*Grmbhy~^s8D#(`6ZKNzrQK40JVQJX{(6c9t@-L-o02bzGJ^Sqx=OJo
zPZlWPOT~N9`C=fXmQY*<f#o9(qU~`zdX+Lksr0w0tHp`fe=cAY59kj$QiXS1-VRfs
z=CQUp^7XL#QCi^NBlX8VSx(@~#70~ax&Xzfx{lY*Cpgm$i3`5;OB73e0GEXWb=1BM
z4|G9eeTrk^h5wi-ltt(d*%B{+ghxS3JBlAM)%or;`eOgD%m2=^6dc7i4`S)a#m_uB
zbtpV8`+}DG5G=<Bm|P}3-nH1?Vlyw~5hUo(RkQ5F2j)FXGMUw@5kUtuqKpFUsIJ~x
z_80#ehX;e?DY&N-KtT=U2JDv4JF!^|_UD|WP77cWp}Lw<w)q(}>M(Gy2l6TYnC}2=
zs8^~L5y1ZD*?^LRIAk#qjq*KvDn73=li)NQ0`0#a84cA_kQN7th+7#n`rY?&1_{?A
zP^{t{FDGM!T^&jlAN?lwmEQjT?un<>NW=R-)|00rX$0s<a?Fj(tRDdm&V=r;r@QI+
zSaIy=y&Red;lH;8xDix1UnT}(x@%dM?fzWvmU*F8vu25fj=IX#$yOEs8@!L;wEXpX
zuE~u{HHRNoPDTc`@?d0Z%xJaE7XgaFr=}#K2s2Y{sm=GP&Z6>0B8$=LLZi!w>Zi-2
zHA(@$6JSM<!u9%NUVLRIc<ZW6Mn<+f6iFro{{on#ZxV_8XZ!OTKg}nn*>jbO(^Pyn
zT4OJtB=h^ii?w<^Rp>bZeOEPJ$&I(FF-xa$e_sS;xYVm9q9p{nvtjG;{nwu{|J)RB
z(F5}D4X+zWkp3LuzmHaSvWQLS_Ag&Z64|XX(Zj$Zeo+bm(w|ahOoctkY~d$6lhW`Q
zG}>&K{E=Xs=u$cDqQDk^F_JIfkG*^K>kBaBM}XQXK2e~uH`CVMZUE+sS+6U{{*;L$
zU`v%$rtwtK!t;y48&@$->(u~|z4Es{UY9h9F1@^FIRear+`5skBK;tgXXp&Vj0Pb<
zUY)}NZZ>~;!7X5_8tgt9SM7^?MT_!OhrK%p^S%cl5i-vFw?PBh7zQn=$}M|FV$Ku7
zoHv_NAUCTZG~nBqRS<__O0vG?#tOPs6%`$V#SjOMt-LI-nI(LOxy}%fkRm}hBy(r+
zOqRA;@V3Q1pJ3O)8h(TO^%f{u`8n)C@6W>G{NarRJb@}V8V>VT;h_A_lD;7J6r{${
zUE~+3_qcBYa<KfrGO%X-=mJE)WR{bvZVboL#*=;sV?JZ7GcBy51?Pgw1F4mIcN3|n
z0<>8Z@a&%L2#mI^96n&uFo~m62{9qmqyDhf$#+AmQud8h)J<Dm+5$8$QunU{DrmIf
zY;LA*)o0$n)@a@@6NKXP>IQs5{Q$b)QhQ?Vp-fOor|Ii=?Y{u0+QgQE%COVvwgTnQ
z7SdhIvtcN1R*l41$?38+3XeNisrevm26})eiUIFchuGcy256=Vf{t9IpgXt?9&swX
z=`QlHG;9^<OZKL1dq3~^4rqUFbL1-Sk$SQ>J01>8jji`Y3cQr3VR-jWh|*?V!pp_#
zWRs~~z_!@O$A|sY=;?n(>MuwAvj=K`yz`BT2E7u1$bF>LWoHGOR&b(7V?&v6MGsbf
zr8}IZli$>`>C^b9=^CrA4~I&i8$`9eKlUl^Ld5O$Irz2yF0i_VXgDC@Mh!AWO#EhY
zFAp~WQZx!YZhcZ$ejV6uq&>v0kfs+{nhlP!8npZxCO>nFz)!~^Q5|kLjM`uN?cV+H
z{v2Eo34sW7ylG1$eBMR`okQ$?A^VFk$n8rDboRNASN9wc2PFZ5#PRQAU%m&X4WmB<
zm*qW>SAOUPY(J)J#tApn>g_+k>Y?+slix@2V6Il6NUM3tTFy1V7xMNNJd^>j@gG3b
zQsdb(6}vsK<Ix*_y$huK1%y!LGX?=}=3UFvg(S#a3S;Xu!Xz}B(BlTs4lAGZ%z()y
zTP#}9?X0Bs9w>w&F0qD3e+eE!5dyklvNi<p;G>ine1bgyoaen`#ZJqUe;t$m9GT5z
z5!zl$9f9aE)gwUsX#+FjY;P7nQ%o(V2}Ky>wy1NirgC#ZJJYRKFcwvB-L8^|KENOo
z#ehRq)>owd=vn(E@bwi~=CH1}0QatYy^JLLmDXML5-x{2+&eH5(LmVXWgpMg02~24
zSj9kO_qiucdD3ZLEUmDzHSw4L@?_n|5oBh!tJjo0?{>YXwmyaP?b^UT#@4h<L)6t?
zY_dqc=F^o1aqn0{nhnapkD~K)?{0#IF-@m6%r|CP?_*P-1$ORy@!8B7r4JZPOGtdu
zi$VQaJvkq$gKxJJZlBS|OQ6N=c#z1@!H39Vv1#5^#HlM}Yg@%jh7i4dLn7FBDhGYn
zN-G%aIkRA!sh`nDo%k_qTE(9z2+7~80s^kBXQpzFfe-MBK_Vapg)H5rC>6k5MT#_R
znk~Ne_p1E%bN==j9xN(~1$0#RY$6>sKh6PYWb=ZM(>5ZEkV{on9h+7@mxNq|6CoI+
zL$V$uv5R0j`OU_^D-5VKUFc@Nz)Ff0)&X?9>=MI55fv9AeuDBK-#TLGj96N;Wz-Ig
z9e207@M>TbeqO|8{H+B*+a_J9GyE<<QL+6E=qB4);MJW@>wRt@uS?nmPTU0ygj4Q(
zrQ#7GOwFQBevLq;8F-AI;^6gb0c4?lts1)>*760dDfK2-j`yV~!FT72!P&~W3{cAj
zP1H5ms&qg1AQL~u94jFCvzf<Xmbw%lJfFfWG79$Kmf3E75SY`X2g2k>IA@EQLI`^D
z%#}m6HXFSFFvegqQ4smiBMB0BBQ%)E?F7G4zW6@&68V1{0JH!H<aVI+ll$XCsNPhG
zgS;|Tlt&Fq>g%={@JJr`*R`Qlik;55E@#F90fn>zhN_ND96_&PL&uj&i}<Zi)luB>
z-Z(20wxOG!@AG`W0a}`(;JmS8i$4JHq*!3V^Q#gHFws9gMoNnb<4=8i2`pzU4zv~e
z^;T`!V6xec)wp5dY^k3AsZ6ZJT)+t@m(}t&IW8aO07G_O%`iX23B~{;*x-qE2GfRl
zy|M8-?;fI1Z2quf_1f<YgZqS}$G~AI$q(N5j0I9)Ze~F-&S{;&*y0BZjUnG&<=MqL
zch{j*A<kA9f1Rn8A-p*s2Herr)!yh2-$YS+<6b3K1{(a&oytp&QcUCrmV4BL2M+fb
zx|Q2W{oqLeYibWavd_im4kRlx=V1<?ZhjnFqn^2)j|$)AS@TI^YFH?|emr|S<K-3f
zQs?P%P<?!?io^u`p(KK&sLaw3$%HY|RQ`|HcR!E2_yy*VJ1$_5$r=*7cD-+}ZFTWP
zbcVF1YTl3PYJSc_!CFrl=o}?5W1T3KjYYt&GU)DNDdxc<>{f4d9xQzi=UInF`m+ep
zMWHQ%l+*5$OY4Y&$3*16!o9!jJn;4qJsmL-Nl!>s{PcQWmL0pFMB1F`?J7+Ih6NWh
zBomL_GGb<Iu!s~1sYs(7j$Bj%DzZJ5G-NEAL-2gY4z&5OkL_yB5P(?&E)<d06uFd|
zX`#Y!{M16>LISV^WoqtU%1gabJ3X<&+S}UZ&K`1&a`@aZl^QjWV)~iJbS~`L;w&VW
zs{hk4lAs)r_KKb{fgbRQoOa)peXAb&$ODad{ho*ncnOf|K(s1tMyH@?D{)@qunXu6
zA{PluS_tjAt25}w%9%zDf@>WcvEQ9CR($$YDCmXZnujkuW?!-bihSiO^^3+|YlWTq
zg($B`JKDq<fV{oAG@P^`p<yTm!JR%pd$Giq8%H;4<7}ErFlu6yc<6%ufRYxHN&-NK
ze@ou%xn8%852KsNSfISjL2vZ96~TWz(%;_iay(yyGtRbndy~tPXNWRnu|@6I0ANWA
zj!4<1QWOkAvyK1<1K?MMja%6_m?(YQJnzCUPS#C4^#Lj7qW;?xl)8KY83Zi4kA%8P
zMXINy$5Z1??uL38zF-^4rE@t*rILa+lfqPU1@yy;;2=9zeaKdoN%Jdg-y(Q>dn*WQ
z?QlY+hQ<oXuYnAFE<K7r5DfnHlaS0KTOu)aJDh;SbfWf{h)%iW^R~C84ZI%}{eJ_?
zKg0f(1K5sw{|u_nAvL#Gr}3bKB8qa9|9rt8obh(=Lm;4wZVzb7ZCmZ=wAkPj9QlG(
zneuh(og>hCjRF8iTwM1_T;2CV#xoUp&`+P%Y5-Yn?2t3EKDB&+QtPU8H=V2oVdD{`
z{kZ~R!wvAMjV6gwy%UP;Kv<A@E+dGw0~&5kQ#Q1mo^Kt;)qVpbn7rmguWbhT<Xwx#
z{3KD*_Tc%&l8TS^#gyLQ>iVFX_05IVo97+;6f5tNzxw*jy^boI!`6RS1ibWUY(}3=
zW`n-(ItkH##$FNZaNhtL)`~tQ|93tExZnX;o}yXws_nWt#~?<J{m5?6r(X{ToC9r#
z2L0Xx5XPYIZZEGqO0);3GMO^*8Kcj}JOI?@XkOi*DE)e6@Vt1!EZyxak<V3N${JWg
z`OPB`GOmIT^UM9P=s5nS6B{<N$7?6Q)3y*)rM^Z+WJjWjSiP!Q2TeOgKpL4AEJmfo
z6g&1K5SSQ%p>LvpGtmtWtNxTRg}8M-Lp`s<vPZ>J5AieTx|x?Y2*mM)dE$Z2YGm8l
z1{wEF8tD<&!B*f8i-4gXoQ0-ao1;ms{_%3nT$y*3*m(;uw%2E7nnix|zZdPlFVMXB
zynHCs7;Hi3gO`DUl|!msY5uTUQZ(K;7Yi=ropmC~ng~(64L}|BJ;sRLgoBR*|E5na
zEUi{k%0nNHsT`|-Bf6hyu>fQk3miZ-|10^hUR6>IQqoYQufkZX0O;1+6L}z(uPFTz
z6*d?OreHC>03<Nht$~)&$GAdYJ_9|2UuKs;fu-!z_)GGN*|-Y|r=!*TKwo5NGk@gz
zAurHYlQ+3H03M5u0z^N|?kJA4C{wfe!{KJ>!#pnb2vrnc{-+hZVDN-KW&El9Yu+zH
zC_qlJ9(31jI8`J*j42(T;VtTe9do@sWuwq)a{bWYXa#ycWf5>Y_RO7wo(?m$Jf|QI
z36)uuUIkvH_4_cWVKyH&u!7q6E;d;^^b6U{=OQu$7MT*7DV>`++}s1w67Zq6K*u@T
zO6O(|-cc52?wcl!<WrLG?h~aGO%oipD#0b}^s<>X-~B$jYzz_3cW&{JPWkxzC+|RP
zB^S=x^(Rc&sM+9AQCW3nR5wg;1N9&v?#joYRaAF-M*5jNu@~sjui4LlMsn{fS1!e(
zsR~Div6@`3&t8!qpX;>mKp3j^rvL3D{l5N13?22*>O{%_7Ri3d98XK!4S?96x4s;8
z+3UpSdO1SYG<4udv>WWd+fy=@Bi)}TmqSpWyE0vFl;;Ldnr(Y<_r3pZt|03giQcdP
zY}nKyN}%vuAg?*K)fmdGNoUh%p&$&|G+)RNm($TV&;{1;#i42_<0NpL^KAAP8oPTc
zcqX=PJo~!fe6TTLxj++=%xxzSv3Pzw_y~y-nmPnEPsCwme3$OG>|N>*c^;Ru0zQHq
zFs&3)4@pP#jkeltcG6!p{!1X~zp~1m@;h(!kQ&p0yYThT5Po#{IL!}MkAU4$#w*BI
zSq`L0vqZw#erlSdoRv_)`YY~?eDy~|kgc{z-}pue`Q_cMqpoaPjG5*P%X{ij?niDh
zU)Q;2{UkP297k5Z&E)|FAbb?H+SQbN8bji^H}mEV{IV8Ug9DJ0c7Jjf^7<sK#J2gs
z-J+}Vu>WL-{@P+Kys#Is+OQPq9(T29&r!2eemooI3?LI-{X9@|(9Ekza+S(q(*;43
zF#CV_`s%2txAkv9QfdIDYv__vx>FhiN$C_2kRG~A(m+6vRJv1Ax=ZOU=^CW_-Q3^x
z<X!Li!!@3>&dfLWex6S~u!RSj2G6t^kN_Ea^|1Lva>5u%Qmpl8o|SU7>yAMA%ZEtJ
zq%3#sd*MiJB7uMs(VXlB9Z_BxC5Zmns|l}Jcv@yl`Ys;U8+Y~B_xrz}sW@@r`LSlc
zNbyYS^fc<fsF-vsa;8_HPtou)!6bwk+tkw+vWhlQ4=Em5C~8gSFXB#qQP8R$MxiFH
z=BR(+w?<zU$Dpv9K)B%#O-PLk#vtrq%&#U?Fd_uSlqj?**6f5A@y50p=XG;)^R6IW
z>4zXpxq)Xn_4i*+G>5N`-nChoFH}h0yjz$do(LiUpJ=*FD!7upwW)r2ArRjaFKK<B
zC1<mmLX-t{K)*`T)OOx=DS2DeQ?AldE>%-k^I>6+Wzk%0+=a?S)bbx3ir5eO1viS2
z>k!flJZxgF5wzg~`=A$NoOr1}3BAOd2pM4{6yR9^beD>FOH@!*TgBLfNw5_C1gYc6
z?kq(%rW6l_zts1y?gtjlETBeE%Ta|sNQv=gWjClNYM14?#ZSe4(5aSND7pXYW{7Gt
zLe>aEXp<nyz=Yo*oN^-HsE9>?xBlRM9BX?%zY>Lm=u9zk>tme**<a7B=q``3YTUMJ
zhtEy(Gi-P6g%~ABD^;ItORIAf7}kbW<Y~%`TFNH%$Z-@{R)`)MdS*H2Dm9lF9ryjH
za&_n4ovDP}3n_KU<ojLA)8YXbyrKRnDEV>g@dD|xDm&h<1)<|-a!XT{h7%C+e!?Ay
zB8>XagDCbHtPg5sW^xSoA=vw-)Kv~IhSK~oDMe;-aac^07dlFJ96hAX$_gc-4Dedp
zAFbkd?qkLoTs%|ztjxe0Z5MZCh!eG3?(i2vHH;kmylE(nCG>ZHi*^TbV(S6=(DB|p
zJ1{4_18|`nU=9Gramg%1d_f_4(Dw+;PRh8GhWjlZcCx9%U+3ZP{sR#!CH^OqdQvCr
z9|bG;&_)5!^U}_@kN#N8X^j!pvlMZ+6SrQVNf!aP+Tq^3A$N0cY(P2<9mQY4ZCZM8
zX!ygkOS*sHhIo;FETyXK7N8?`+?x}Yi(`)a2{02ahO-lAehj%rfkF9NGGtowkODj(
z2B{W1z4!SS<6WbHTPyyh-_ito)e7>=9_pxbt+Ly0@5js7eG;V}kK`Q3wtdA*8*<c5
ztF@B#Hdhw8JGMGVY6c@N$r7jQ%O~HS9p6l4y?Cg-L$^UzidmPI#1FGxh7&u3ch3o<
zyUvaxXjy;0uBmdac`ZBe3n!^_3WH03m+GnUh($!#k?C`~pCbkeSP_51=wRUn^h2lj
z0`ng)H6EuwXlE39-dEie-otTYe@nNd;H>M>DD#O{>qt}iNUfycCkIkFi>FriqO|F!
zDQH@p^+hxuMqw1>r=yl_7E-I^e9SQ;k8Y>Cy0Q(Lm$_gxAuUy@ZkEIft>F%j<M|%H
zqiet07=3v%tGhhYR7SRLl8)7Vst*>}d7nEd&wbuQ-xg`~>qND&BI}tsDSu)LRrk(Q
zoMa->O)pdYO-U^9-X3^=;ey1U2TtP;+JqjUsn0#;XgkND5K16or_r?;(9Q{9A`l7t
zY7axD_>g3YE!*RqNGo}*Ca<Vq5tdU_U~*!WM{c|5X5VupnG~rwd=lrE!0b)Xt(jN#
z9_HbvQ2Kq;>*?qh#iXaq-}ZxP6^t+D4Yq@cyiBq`D<;X6#T8|4VsP)Wrt`9Ougv-i
zDrr?M^L6We&dBSmL`j`_=*E`%)_D>`Rz~ubl*GGd#AS)gb}534S~wGJlFuyI^|k0M
zYbZSw?8xSgk0lq+-#m2f<m4BtveU9CbeU{dBVNqfwl?^)52LjO&*Hn|tCi6|9^^JI
z1T$$0UOT{Sak%ZyyydagJ-`GM9M|m(GrnAcGNOzW9vH6mo`62;Ufr{hC!aD`3P#%Q
zV?a~LPtVESA;t$?iXVi6pTSmWX!O2*T}+=Cf}cKL(8wuS<|m7ZsNA-F9i07P@Pm^L
z;YWQnV&f4F&wh32cQ|!@nSI<ROH+c@=c*CG#?W~4!M-`y#ZCw`f@jY-h{2G1O)9LE
zyYFj98f9D#n)uOB%TtSQ6Ksb!9*LhXRX#W1yACG%T<7ilnysDP<QoY-*}5DR{8@M8
znLKrp+CWP#a&0gg`a~+>p!APg144wPcXLQeG(PZOF5wpG_J4uzXG8?ZKCp9C;bRP@
zin4<({(e}9+^m{qIOa}+``BdWuYr|eyzK=gRC?);jTu8mH%)<HDw7G6d9lIGaWXrP
z{N|@mPL0lSWh}K4O1D9gKS{KUZo9;@xjGm9>)G=p>(J~p0#uFQeU%~8;>`@QQ;UR8
z+F>Z$-(lP1xgk#$1<DO29<;RV_1a1@w)Jjm0Qro+PE1**yY={iu^q{8#6-*pH!alI
zXx9EuDoG3zo$Bxa@G(8D9Ht$Sx6J2*=wx<7k=wc5W?%%l<B|2}P902@wfNRO1OA7J
zuQk+dTIc*2ZcY{L$Y$*r?$qk?37s3k=~=&f+>zhZzA|N6;#2qMdSff{f$JxWU9{pS
z{_H8i??P+7YYK^M<&zBRi}xItCtMG-_uRucEbQ?z6YlE#g@}_<2HYX_H-9~mKMwm6
z&(8?$sVb?&TL77|fD!=@Eer@;-vLx{eU<ji$6+|;?Lqnn<`G`~=m51<_vbkeTU^=g
zo?8du``QprVW7!-J*t0XjJDEmP}Rs>cY%s7ZUVAE3b5p!WC&PJ6}Y>&Rmzyzhs-uO
zjulw?|5@)K`rkor75my-FY_B&@#mv?b+W5Z47e-BR1y6$%Rx5y<351L>(x3l4Gbg>
z;m?1=r$)7CWILnWN^gNJa-u1GV#>bnbt>I$Sp11hU+8<+`}!Yx)_IX{z`)uvG7Td8
z^-8BzZ9|NyOx)#S@)@dX_D_d=qfyIm=7Kc`TVE}ESpB(bLS(_>gYsi`wesz6bfk^=
zb{e#NAWGHMuO7fmenyrQt0#1nKKAABLhDp!BgXjfMo%M2Zs1qcGsHJwcOp%Uz98*Z
z9m{Dz|9&&@MIEN@+6mcJz7c*x*)b^?Bxl>D=Vi5)dd|_~7T1NO6NptTOa75;h066W
zH;GolPfq1+SJY4QKQ=mAR)0)lt^|w{3uPXbcP|#31JTg=8&smNgmieKJmq%{D&0}2
zxB2voT2?jYaT;txm}nv#6|v;hjI7F6oCHS;F`o2Q9lF2%Xl{?O=w_P|yb;yczd9E>
zhwZwKO7R!<hAb<%2J{~U+g<*+2DFR_w7d?M5DWkiyx`fJC~aj$)rI~%G&p#>=>3BG
z;lh_*4Jj@HMqAr576t{1%C7_#Fus<TOPRLzQgw2XcVXNzL7};uLZi>`2~o}_<~xNX
zm+510F|HL(_N=HzO4bS1`JQB1%bQM8e%Ckrix9!@8$|YvsPDB~VFWr><&{cYW%M5)
zoPQJTs~aDfk-^tijckQ@Ws8AiCNMee{e31iS)dg_LPgD|WdIyoJU}g9A2Unc1{SVy
zNdDkc1Uq_dtcmRt+337}x)I2ZVvK|&S)X1-*?p_?*Z0&3Xp&D(->Pi037!75lZ1K7
zkFFF<Ob~gFu{|S}Fd14dmh0vTj4bGVE*%lz`tH&#b`EaPm+<ZVJ>mh)ybm)Ct_G2(
zmU4+afl@)UoF2rBZ5<>fH%3)&xiu_SljA<h!o$fO_r_efF_8LM+bQ4TsWdzk@1Kt?
z&nKMt#C+PO+^tntS({QoXU&Myon(2O@4o1eP$}h-JLK{@Xde5+^EK?rs8Q5O`O&A)
zex_lIXN!|=#mR5NJl$L#&Hquw$TqQ~(}MBHANPIL-w=@XDSe``Dv|o{ChM<6_4s`Y
zO3EFy5T{kChBXQ<MzE=BD<|{4p`}bd+!)T^V%~4Lcq?KkcR;d7im3nknN=Jtn`N-*
zY+ywsSoU>5ycJ6MMTp-jpU+^yoa4c^czKd3RQltg+Rl!>z6aKB(zqd&vNg-RRe%|@
zo;W4*B6dos=Ac**pFP=Z%XTIPT#@y>E$LjfA%Ck9_CSK@%B{E9)%y@Zh>6AdQy$LF
z99UkcJAJOYilR~fd_5O%khYhlE{&!2?*3l9?x3F%`@`X{_<{as=9~RA@8IY!facQ!
znTb-FN&3-8$!OaL+j2Qd==L&>5Tc;3k66ArG7)5u+j_3m+j^WqbHip&J=0~%-dBd4
zq%U%=H@~_jr*!)OX<b$cCEwbe(E4uexpu5R7hOwPCh)vn0!C&qQ86LV#wv+6bLEbM
z-r(@Ppgg+4d;jYvJ}cMr;yd5*$1xDp_v+RsLOcI*==MnK#_RTOL0i9zU{Pu@9Lcq$
zr=WFU(k@B+*%PM#804R)`^$)>@B#9mW_sIUijZ^WR`t*CoNEGUl|BeDW1bGIs5@RP
z$w?9&u)QZY2q2CuS#svTC$9}R7uPfmV(R?zr6)muCpCdtk_WxP$DmNlT<Un~bGQ1J
zr^Z7Qyqu3u-_8j5KC36+YCqhT_+4{}A^J%A1*Ff<++z#+@9KOR1Efkfbqwe=)K8k>
z$2+p@twDN(gGzt?FSL+4q=dt^yDBfYXEUGRxSwxi0~ts;fJz>criMZdxP{Nm6gI{R
zlcpYDb-kf6h?3j>q+9U<3XISn($c8Qe7}|Iz^E&LoT68Oy@3{>S@A%4$gF}VLRsoW
z^RDFpSCEzu1O1c|fnIq3o9EkDmLGB|ha`X&$d2%0_}xi>MN?J+>1$|uXwun;df{ig
zSpl_*7f*qi{vnQVgMH5@!FcEOp=LC5W}`3_ayrl!%;6}v2?LodG>Sx+6%vA%&uu#;
zrGK}G2JFu*Yc$8ZW@<1IlNc0B>c9NPf7fRJAUdGEy6bBu5NR6`$Ykmno;--<4<txA
z1VV)Hw?7XSQSRsK<AKu+{iSLPm_xagWM2<`3CE|251(spOq6DVA$ywc=5^~W%)ht1
zKYqnun?9E7!<vHH@D-3*z6C`Ba0|qE9gU8cI@-pw>AwZ;VqM@2X1vv`#Ky*IC&s^P
z6ZQxESN^*Nik4F^M$F4j1;i*4?zcevnLh`hz<2#gyq^4AC3W1k=Q-!3nD>C4IreCa
z7l{XAApGYm^naU7+g;E{QBav0rl^P{uBM0DD}h{;qy=dOAtZ==3cV6Z<pPkj=D3Ma
zhOb?pwaSAi5DV7K9NnH^jI}Fcxo{IKLiTGGfajdWOn)maTUGlaFIR36lUoDw3LYv>
zL0Gi;<^1qoDF)!B5y2+^d^KW!qN#EmE<b;Lg;nZnQfAg|22y;Nb~=`T;)MHc1d<#G
zLR|rilH;}4OgO%_>13IC)MpOMpWr0FXM~sZ-Fv{?1=jf$P-Pj!1jDqxzA_Gc@-<n=
zT`lUwqvSiTP{ackdVWW<co0$>c1(2m_(_AuQQs=~UjR<bdV22VCwSWIc?<}P*H?h4
zUjC_uxN-(ZnftZk+Z&G05U0iYc6F$pro?fDd3kSwxW;Ac!{vqjHd@HWk1vmW?#Sj7
z#B$NyJX)XqWW@gWo9Zt{-DEFMvCGpI4J^8fN7^9wRxycS!}heF*N|n=3XJ^avgp%}
zFK5+;N9D}}a_bf@wMYeku6zjQ#>(bsz6`-CZ@-7W*n~dllj%SMUn}1*U*q)T`uf7Y
zdht72qW4ze+%5c2=KvuAnkS1OiRm%Z@%3f#7z%q?&{Ma4e2D9LE`CZX=$Z`n#JW%X
zmIKLLCT*`IOM26ZGH8%kBFQ<I^s8IeZ#^0H0TtP)A_zf2H&^y=SoLe4X(jG~{Lr^x
z@@)Q@pxZ9BedDAgi1jc|AtVQw*TaL={&(QbO<E?yxYclIeC+`6d#<C2r^u_~*m_h?
zPKn2(AvROxmc<~_BGhhjt8uOob?RX8VLbR&kLkE8RwS@mTkxB_`LingjXV{hgU3Q_
z;$s4pdCz@U;mU=#)WO~j`q?+wWEZq5cK9|02U`vxN`gb`TlF>)`7BB?kr^=%Wqqzc
znUf6<3mZ~mw%JSI%tW3Gjz&q(0bGO34QiQDGh*lJ3v$zbz&~)En3Q9q;0IwVCmn|a
ziF?<VPH0CArRV@e@sW0D9+=^mb-56Dva(ZsF{w`q5(7>%g!bF;T}=-WRy_a?ido9i
zH$nKzUcYdT+cTNai>&>ba{%lD#Geo&?mn2Tb4#6td8c)X{~YaBE;t#SPsP#eyoI!5
z7u`2sfUb2H$YhuTQE^;fMvpn9iBQgoF{`Hef#42p7ZAE$+_xqh6I^Y3t2XjHeu-FI
zZ8Kg(Jl9NU2Hxzf*od{Wv$g5`&rC@?wjb`IzFge*z^<2!^<4^I&9er?QIDWXwWkyI
zEaBeiw12?@_?CDes8ax1IlUT3>Dze#fM2O}<?e-{$j7tM0e!QELBXjYGW#4b3?!M<
z?dp{niCfK_;z|z1!~&vNhQj^x8xNT`!CqTqwznG4O5b#B$_|6F^F4~78<4g@<Yf2(
zOi0!T;ORp!XI0DhIpjL3@GjMEXh_KBaPGI~F`{#dK!IdGCVZesdKB0)nm-;{NbSSD
z^_TwS|5ihPF?z7h#_Wnn<$~(%qY1Rp2uKH}&}tg!fwH6I7iM6r-&J*r`zrAnFh!4U
z?jw^^Clg@cl3d<07=-75Ng+koBw-XU(#U7fSTA8vsm*x>CMV6`#{j~+?@uU+Gup*-
z!9eRClY8R#Y=Zm%C=bitSRfB06e=v~0CE-uAQbuRvNdKM1-J<flTeqK&eeWO-gb#F
z7jV7tU|vfew>lPJM9^H@n5xW&TIfB1ISY_Tal(VE=_Fo{7wBZRDbc2i3r{sSY8B5Z
zLkHl8BQHUj^^?z~p8Vq6%g7%zvd<(id*C@zE#$BA^lIKx<swN9gT3)bof~_iz!8n}
zK{w+58Jyt0kToF5mq*A4=P=lvV*wa4S-D7540x(8AblMX@r1YazoE&-`?Wb%xU2@4
zrs5qToc9SKa+yxp4PoGR6EFQdcng?c{Vy%B(ouvqZ(3WO8pkh_A&A!mE_-wRrwBCf
z^o5bcBAK*`l7aPO=>Ao#s{A9X>8iqeapQL@L%GM&FBSwUz}xn0bXgCKy5k8NBde7g
zHN~vLI|VdLzwkZI>=Xqz6cufthjM;!TZjrl7E)3v7E1mie|!t^|0%bwi+A;<e!pW&
z{&8#Y%jqh8AYd{Mv-Slf`*U*;>JY+6#MC4Vk`h*rs;q`}gHJLLJqcPQaVU7<Ma}Um
zw>dT5h90?@I>%pzzLxe&-ZKrwA}td7MP>4GzEM8}+xy85Q&`_%;-k8oUtj{KIEXGW
z{sq?Goa+dJD=J{bux3Lw(9{fkkq&Z;Had<Jxf5PK&6q#k-|GeB<>!x3`ucNgx7pDR
za+76XVjrn--J8qA8^k2yQ00`ggsHpiOto7jyWF&ZN`|kpQ!BW55cQZj=qplSwFcO^
z;<7icuP#=m?Z3VAxjIjzcnL|U<lF3ZL0&po#9-JWf^}GxLQ+3{5_BU<&9-%1?!X$w
zN@<6TR4#@hX#-wwrwVCk2lB%Rj#Te?QpEh^gp6neFx)q75<vxfZ-6qT{j{z^qot)~
zBpGO+v>QinlT2O*H#hS}I@BSjo(!o@3oJZ69Z^@&2~9BH&L^huQL$Aju^Ct92P(eF
z)m*<I3<yRkTe1yMIQ0nPo5Gio$36#l01mhd3<>TV6gp26-7L|f{y#kU|482dQoS;M
z6d^u`v|<zfiwf5OKu*>Sd8Gqed(WmX6Fjtmt?7?Nosud3O2~OV_Lrj6DO<gtvv#WK
zd``3rAKSS`p>F#G={}AV+A7czm$+{i!9nzjAUE_7V%&^Y6Z9$#i$Wao%jl~QFk^7!
zY84kP^1q+Xj2{A;rVX{Arp9n!?tYdLFwkKw-1#4IOc+OZ5SL+UjP)o5SG<ttF<JH%
z-5Y0%?-|lRK!)LHv3y*QOxK2tlcMuI|5Goi(3t#2G>wonl$cqd8-6SqhiiaiFC4a4
z<2YHrz(J9U0NVruc|*n>%v*=;BlsVR+!aVf6*-y8@Wl4QE;ldVNxxV6YU78wH8Yyy
zDJB&wNvZ-&(0<lh5a;+Th?i>na6|pqtQ&@g&dmYHs$k~C4WM6jQ><`0un1c?8wvPK
zvDPnm3TC~x+9_YgsugHE&{>ah)wAKsMAbmCTUdxG>NqY>7pw*~><0!#{;ZGw4<L&j
zxvi4k3EpF;{?vDuIJB@O!X<nvX+RgXnA|o-=vNpJPuQqX!KU7GA7B0OJi?+B>4V$#
z*o=>R__;KhKJ{c?>~#SZi$*-ia>`XT4mvF|Xz18Uu^2m}!u#4g73m~4G(yHP!0fs+
zTh}QNr%x=0OZ8#lJRl$-@?{0X_LM`3L#7QbX15s?5fv>bD4>;>A@b;fo$;AnizEEe
z%qG9Qw2{rtLVPawJ3ndWwsL(}Ej6K2=eQjJj=9%Xt9(`X0IXu%Ep5E{d17871*~37
zz!ZBkgAMGT)wr&P^YHfyUs7znDE7%D^duSWfGT4Lsg;B~FTaLrPI7&iVAe_7SG8##
z)vM@mo;LYrSVeSLJ!$WBrg?WBhu3GK#5O*S`T7FYW$HO0v}Y<%?L=IH!LUst^2raH
z&O!QXO`sik?oLd=rYDOYa<2Ec9^(J%d$=O#f-FV$$6ohUPDO(;NfA#Qmm`Fvcx)#G
zIhgacOEZ{=mJ~$V7*$YIs2>uU*o$v#h4C9fHXtTpgvY2-Fv=i=?acKaA#_B|Hxe<y
zR2jDOjaRknhd%2=#^QVrF;kR_kR)L`wdELu*BSv(38KYOv|>S`Agul;p#il?G;CYm
z-XbOR`JEPkqRY_B!nTs`OiRmPlYX{EI}xh<JWZJLyw-GCSiiP{`6-%26fQyZG9ogy
zFJ{SWR|p>Tr^KBqk1eoBD?UV~@X=i;FY2Fmnh26h3QKup$rh(iDyIz8D$D@o!w=hz
z4*7=65w=$}5EUejX5(rZisMNbu+2xY=6FPdw24a)^~!vkQjX@2_T={mcnatY_jKB=
zRA4JFB)dwgQE(C1ZHpSaGO;o!+c+vhgJwo%HFC-{;GCq_EDH+NnO(fD+kA8+U@@1G
zf6r*QTNma;byy6#0$|p`(Wj?$NEY?z#HrsbDp&O!o!tKEVVCbV+Yy!2H@B}3KRRm?
zC>(rOw|4i6Dl&t7(xegy_Ef{w&L>7MfK+=s@9xG~N!=?-9C%H$$S2)b2Noo>WTiU_
z;UzzrnOTVzn*_+*XKRmKhff`&f#gxGWQ|E81Jr)TL2v?1b{MDR<?~wS+*zEv=b;!C
zXC_5bGWM(J7#J?oSaPvcM7rhFbvu11e=qBAuf#iW5%7cUk;7gUVJ1ptnu6MxtM0jQ
zeV;rpGHeCtITYN9m#*TpYHKz&YDwfIy*O!~HDjRQ@C4ORn{o!Bqb1lkj6Mh9p4+`6
zuBPD0w1Hudskuy4_v?RH0x)sH^32You&c4y_0~A6@Ar+Prs^P9vCTT9WsjbW<DH*1
zc|g~jZScl2JCoQNTAyV`_%1x$WUe2P)~d@Ba~IiWo9etvJ0%X|#B71LN5qdjf}QM=
zgMPC3=V0o*l?Cho)J@Wv!ZFY}t!Dwyx3Ntnsg(5yg{!^%3mPCQ){t>e=n~>rh{I*s
zA@D9Yhy}v`?QGSiwQes!V6?&0SiWSWCH?5qLC5ukxRw9S6={eW^ItH;-%#crI&80J
z^(q<RySitq(Y&CR#VqfDMx7~n*|_x{I~wrOaM;X)&axNy$L-Jp_4}>KuOnWjL$;Tu
z!7BBojPu*2Bf|kn2@X_(#ngHNU*-APuLsWGHyU93OL^EQ?HYVsBsQaY8;`Lczzc>?
z_NOXk_XH|7t}t*d(BE`CKgeD)y}9;YEyFD$pa1YaH722~Z7xHXRmkV^E0AJJH(sCH
zoPkt5BsrCm)Lbz80}7(=&=lAVW(cCa7MjHCpq%`u^b%Doz-g2-cnXxR&t$na_gg_I
zob5WQQzcH$E<WKNliKG?_N4NIZJqL|W7-Cvs}Ls|n?J~_KR(O=!`?bU)EY{Iv1rSk
z{otAJ0?x3xQsy4hhnM0nNguyRQ@;Tf9g)N$%a1hiyH4LkoF!J(h#H%KV^%kg{Dzn#
z?b{oFmlO}EX<ji1@<=5~RJ7~{3gLcLGhsq0E*riKQ^xXL!cT6n3#;@ZuQNwB{8s>O
z7{go}IcXo|r|{h7q_N3UdRAKX?P3?L9ovOLC50=Aiq-^2asmkX`#tRMd5~Yjy|jhd
zZU_0i&K%o%0TLR|yejOjDk_<DSHwI-GLSozEI;KE_7~L~_P#HrBXZ=v1Ol8M8e9tB
zTVXr;69dcf*?1?a=djx(mT^;8lNnIy#KCfek1K|v@vR;3jlWN<jeMu@uE@Q0C^W#A
zWnSt=5UB7eY2`hW`@VK|VwgnuS)C!1T7_bIE~02k`^jH0r~mAQ{_;&OLbho?!a7`N
ze&QIXKsM-=lc|8rRV~F9?i{F{06xCxv)B^wKF2iO`*sos3H?lctD1kna?L4$bE7dS
zjSCcN6tYvX&<f!0k)H|R<FNW6bz2fs^%2j#2C`h97Ia(cMF5|CYI$%ZG*=HCZ8<em
zSy7at24LW`=L78UpBU_orx|ZPH@l`N#Iq46>d~CYA6nSCc@wanYVLdqIp&?;hIS#<
z0ZDuuQHFTnIdeDq6qUBm@#Gp~?c*7iut3nxfl+m1IjYvLhULV80|SfGxr%>mQ}|0m
zO<xD&z3W4-rdFKvS-3|qk+AzOS}-;`t_%QN4|=ZGGh;qZ<}^bFlZy#t2SbY^3ziEc
z9{Zs2`CcdM)w$|lq3r`SY~<R1>^j;UM)!g7sT#9ZQNc$ba?h$_EIB?{Av<MVZ<9Gy
zWY;cff>Si+XGuFk&1^$-s?jDIz3XsW4E1;1!YuC@#GomKjz1dHswsO|ieC={GVQ{S
z&M{H2ra+SM2Omr10>>}QssEi2%PHoMnFE`0k>2vSC`Hmf6~li#`oBB+q1%prAKi}w
zIUQmcvS>V!J^0-9(ISSGv*f{oF`wNGAF+UQ4j#3_dq(3h1iJ0j_GSRUnC&m6_Im_9
z!T}z1piC?ndk3H~tNF$TkHk-rh{tQB!XA;8%v0ttCTuc3)o=s|l)RV}e@Vz`wJ+*;
zW*6lWEOm$~4WNC~(xcK|kL()b1ojDsq!-8;2th#Ddcf@PKq7r~=(-t|a>8A9Q+RR6
zzBMFjZ1?GhtBtcJlg>zD7JPa|4y2!6%t)lH`;HYrLOr>&xIRHK>Odt-`Lq<CMV>kf
zP&r~zjtQZ-I#=&@$XDvfHK7_3Y!#7*12rFUx|OJiT6!T>z%g`Wchwp1BnBVzZH;}5
z<Z0M4Oh}zJ$A-`?6Z=4)^eq#Zr6F<ThPvbh=E{#KR4<c{SG}C%veAg_H3}**OJcOb
zS1x=9d>veY`{p)r=iiYozAfnj@##ab={yP=OZtz6=L+@*t@`@|cx#ReAFCFNpp0YT
z)Pf<3EXDW3lr#g=P6h;9`+#%(!gY3m5BtdTWcQH}5<}g6TX_2oXq(;xqXb&xwk}qB
z6W<y*^TN@*$OEdGQv3PpsMzUu$~)h4CmK9s-VA+?>51O_>Vp;xApv$7TQtJyoh+Aa
zoAJ|m|3-Q(Z;%K8_TOLm#3?VyV;U&GUxQ&=I{BY^7OGsfG*=wVY};V8ZcUXsSj1_@
z@b@DZ3cAz6aaTKMcZS6SQJ7RDwY-41=0(`(@(SqE;LbWvtB`*j;L>5T3-%@P&dVw~
zO|9Er2&T8UfX$s~@X#@)e4)|GUU){UbMO<zHrUr}Bd*ww*6>85#f$>iLywe`cxIUb
z1w?KD>a2M|kzx2*7_xo$HNVR`*OZ=c#2eF>blyI0SFJ6(Oe&WB;xVCj&{Rx12f3&A
ztM3_1$wD&w)qmZe4gI_86I^Tv<9{V{{Sva!ewjOq4QRL_wjh!lq*Zl|Ex_69?MlXp
z>h*wOmCV+m+gRWLauJA(jGW6p3eqmr(p@bwLlKX6S}4pCxy&CU)jP4Z3*)qAjt0eA
z)<cf(?Nf`e+Rq6Ac-UvfHtaya14n0^!)`|VopC5Odk%dV1zl7@4;&LY^<eFjv}PC$
z{6nDlD<Z(BGC#kOD;Pvg(F!tN>xokj{wA?7b|Ix(%+AvzcXS31#;P{~h(>XU3683k
zi4O4oj?Uu>y@OOPwRrKPUS}B<e*;b^=EcEjmyPXZ_->S~=WdNFKpu_h5`YU*Un$0=
zrIjRu*2ieSV*x9?K_0h<Oe^)S{n+B5cR@>@Xz@Fnf7Fs;!ibo1$4z+QNEOC0EN&s}
z$8gL@+tw6aP)kJ~SHLSA;>4g+`0ku{j7J1?A_!+qzw`!U+}ty0BoX>h;8|Srv6Cda
z-o?f&%fe>9?c8g@y?xFN)?P_Bx<*qwL-peWz-F)l*FLe7LZa3N>r@7CXPs)d_Iml@
zyep^s_`6xo&nXEd(x=}MV`*o*49ci@yO8cm%cA)*4hx+E_x<k|=l?!X0YIwX$?s(`
z0B3og&jz0-l55MVA>9h?3<jqvk992HBrgH2^TL5Ko=G!4LXssEkAO~nwn(pLDOYg%
zpKIZ*_^=t+&n0=Qo0tiJ*h~zbfsE}BF!S7qb^usTrU0(hh=JhO8CvpMOFT<|EHsd_
zkDj3A-A*T^?=N$b=-)ijUusi-7!BZ*cyrkGzNT@lnhalp4bNdXV)R<ssP{u59tDLR
zeF)sO0nMh3;w{+XT}c9haJ)p4OK5xUfi8MoZ~Odc3;9CIBt|8qQ6@Bbt+DHVjJGV%
z=?l4;vHX)Rh!v|q=h%>|c;oP!Do4TwR1JEvXFto|yuS!ae$eiZNPpob|B5O6=W|d1
zloIhTC-S@3_+3Z-r`krw_{S~z>tF9<o?-sMmH+!g0^qbiGHU<+zW?!4X+~X^|2nQe
z?^+Wrxc^eki2u3@zfV3EGz21d|9VLO_)HJj75aPsOF{qpXBmlp5&wUVkOS<VkDr$O
z{jvP}k2J>){&_tAI#fT93XmQifc!ts{`b$`3-Lnv^Q3<t*dPB!5s|4M4}%RI<m5^N
zM>5^5YZ&k-b=&yUap(>M6OAEapNfGK^)0CB58SQ3X9V9STCf>5(gNrWlA{fq{rmC$
z_azGt13C~!JI&!NC5;%cA-5$NB|z395$`57P{oS+`dE!^bB-PWRBhAUYO*ZYtpB41
zaD+=X4`GD-mBjq>yFqXU&@fyIFWk!zHv$mgTWV=}AW5#iJRDwn5gB<=1kl|_DtLx-
zIjiXZ0-yiy;q%v~7Hj7CAm;e-6snr5M(2{Dn8<bh$w<4V%+?mbxUoPL(t!g>3H}#x
z@t><^l6dD`N*kA|GT~RG5-sR9(DnOc_-p-ZS-Cyt*md-wR*p9_Er8@w01yowE2|=4
zMY4|D4lFhR2^I%TzTL_E<;f!6x&x`Ad;J{cD!|kI8EpD^BpzA-o-`e+V}8%1E(4Yi
zCRA*)_h1jN*<5-S>T-((fNqk$GlnuAtnPwG;d0X8(v2R41_gD2+NypvWDDG$`Weu$
z0%(95PI72g<G7;MtvqCTbA6RkOW$1utdk_&{%RfPR}r?_va;`Jo?!F4?drW$=|95*
z)*_cJV6u!GU2|@K?Tgo)SEKmP$1BY6R{q&k2eQzARNEWUxr(cjh<F9z#aoXT(SfU|
z`DieS*APT`Y&w5H!6NAby<pMiH{iFsygHdz_Evog#Hbsi`M2!yaM2ZD`M}Ik$}Ye<
z?Q9-_@CqQzw`Y2m6I-OV2l)jcWO|^3j?x##mWiRD0|qZb+U@n>?BYnWvlRIWf1Z(s
zQ<Eq6cg_K{uMf-wOnj75qPB$W2JgXKlWwrPY%<rKfT1UV5%~m~K33Nw$T6TFZQ_kk
z0+s-mv~&J|O;4MEwM74JPzO{pWU8{-{wDdB6bkW6>?xv<_zvW=D}d8>JvzUGZV5U(
z1HgD>=Z{<fu-FXv?H%C@&^ixq)nWsE{r5nw^3hx+_?7|(eH>B-+cucbVMZ&X^V2HK
zuriMEsf2;=6}P{39)D<PC@IAUEi-WM%AD4eziG3J2!g(fCumQ;<2s&c<Rjd@U3j+K
zGNvzKKUYdh>a<<=${Y98lgsOrBilT{QnpK}#(CrI<?(d!)9bGbkHv*FAKT4LoN}fm
zpHIs+b5JxNJp1$Y`Ogv){u)G{c-QL#Uat}#gF)%z=Qat&c%d4l_hLF2_Zgq}>!wl%
zZ%zAc*WMbE-f4%qQzeK?l@DaDg;o<zk+n-yNKSya^@|V~3sYNnR<tIcB2<Hi?BJti
zvBT?g$;Sk!E}*jGgl}Jf{3IpLJ^`G@0?9t-`xxID08Rg+d@ZS`P9^61+Hhy|o_6sl
z6@kdnh<a9-xouzxy7B!;GAu+pkT#awCUMxR`y`SGDiBz?JOQ})JZ3b8IW+TVlf}Jn
z>`K69Stc&2ilXw60P#*e=9{NpK+YU+0U<qZCrs@H<oRcS(tl4W0up4<eVe(jr{}q*
zJ_wtJHFB<jNGG)2CsaBBP<}8BO5cguZ#hK3W+v|K3O_4tgxB<^il*Y3-^MW|NXSNG
z9k>*hI@k^TJ*)#<R)2Ybn~Ti22dx9a^WY&Xndr6mWTj0!&Lek<x4iZSqX=^zH<#sV
zz|GAFTvJb}Q6*TQu=;}mRmo>$R?0~GnA9o9x`9t-4SgSKQMgpvjDHBhB4u3s4A`v|
z;CL+qua;8*o0y__4ji<s<_D_}?eJk~ltJP!TsHmlI@~2UG2rXX7CNM&78mk38r|h`
z*?i(*J?cA@CZ5%V<^Vjdqs%`EZSsMk*jke3XQTH#f!+lG1y*L=<~5ww-C$h6p{X>g
z5B!A5l!y?ZWUr^zDmKWhe}DnZs%;`@dPa9;0Ikj=+za`IRjeXxH;~M4tq+j|5qk7M
zXi+eBG~={`nc|!4Gv@pHK2rg9v3{M!fR%0a2Zwoj#jyM8;2mTIR;5ps5r**&_JHOv
zZ>M?u_}OZI5(6OIH0von)}ihzaYgdZ?cRQC+o1n6aTbQ;!VARTzm8770f}^q>F`@G
z5TNOGfX}>1@K<iOZtg43nHV5wCou@q&%hLp892MDu?Oi7is_J4b^B^aiNUa5Ys4WC
zmE<w|UL%6UWa*=2gcKaK5~HcQljn8~X@ySi%$*&&!u^9h|6JIp5G=vU_9+ooApT(v
z@RW=QcLPR1AXlXD1vZQf|6K<tn2F|K-ilDuy*Y20u6evx&%L{JK}PdpFj8tM;;}3x
zo60AoJrm`xn*973nFDibY^OEdfiZk^UxD4lnTaR^H(+Mk{v<+8)-Nse%vqLU%wc^9
z`Y7lt2u0Y`J5M!e@L-1GcEa<LM133W)LJNnE*IKSi(A<AYl&LsVBFQFjBv0_=!KxV
z?ae9mqpEzv5luGoxLBNW5D6m!l(2f_Evw6FXorF9d-y$TRlw)^%(9%~f&#!4mLcOW
zxcs%4FjF)j>XpqGsu&f(%QiB~HvgT_W(YcnLCAJ%H}5t#^eub|c;cf=Q*U5Ht5*1R
z3sOu16rt}UxB8L$YNF+{uHrfy|F1tIv{&pzY_7m5aksaCNjnM_gDJK=rm1rEA9?NB
zPRYdlz)?K8ZSXiQ+GNB%JD2Q(1@GPsa$HVyF>mB(ao<mL=FQGOkgCQuxdeWmeq&&O
zR5cH)c)<KjHPz`d4PkNq-I=4e1E-<$IEcLz<}@b#XBi|F4~mT!5P;?f+^Y<##z*qQ
zrJ2*1v;UqzJ*6Lt?cKSdAc_~ys(ToCtJUcb#k#CC3X>wA0&iRqaAkuXCN2#Xij(pj
zE<0k9I@!%=L@90`L<Z~NkA9*?fMyLDBWq|`SVRR;6+p18@nwGyWU0kvQzDV=RAx_S
zc!X-vHnz1^*-qQN4jyv=-c&B6f{na9iQv~+94{JBwn;Z$OaQG1*xv?Ug21hJI<Bln
z-uMhMuY<u$5yz@i)>fJ{Pq}4@IT)HBIRtS6EPm#3Ymin!X0rkae(0p@lI;k*2yWwo
zB$gIux!B9W{FmID*RYOTFvufS&ySf)@6}5R6C*u(sA;O4ul<7j1Wc<Tg`Pir|77N!
zO4VcJRxJZ}Y4>Gn|3P4?EtGtA281E%)cYXuqHnFhWh?s&*gKg^AyVE259T5uJ7A9!
zj|%h)aRFkJp3@m2j{4v&rhOtZV2d$N>3l9jWb_IDKnM(|viK^x+YY?q#chtl{4KGI
z8aX@VgD(epg66v4Wv^SO&ffwpx9Ja4cnC}NN2plBfPc1KDea`t@C|(ByU)7#<X-2M
zbb~&N(DORyjRM&6-16QdJjTVTMUBk?IPVqkb!(hZZZ#!<N1oU>)S~9{f^hbLDw*Ut
zE0qvwUn$$=PV1T}z^jyd?{SIX8>!b;?Cd@Iy6_|dlnff~`vO=-|BAn8!}ag7k8*Gh
z_{?RSBIIrc;*Yan2+%#?q;T+XKP`)C!z_9Uq6o8$(AZmnTT9x71&H}3uiiYN;Ord>
zAlQdzS=Msgxg)3|Cnf$2xduQvGF|&3HsyGHz=CY71qO?NlVnSZtw#z-ckvYu^P4JX
z1ABn{#4B#?2;!n+KIc)xagF@rShhSTNxprvQ^z9Pt8=W7oMCbD7D4OPKK960+x=x0
z{koIDo%ZfUe&-@NH6msUMB=MHaS?h-FfrF>t$v7%elSlR$(Fs#Z7K!{w>4uaP79?F
zFFDru>gG9BP;>8yHKb^<A^eqVP|2nx#b7Rh-*-w0hyko9gUhU?{Q&C%WU&alhQeb8
z`vLxM@eLF$xlYToamH8)^R*vdPQEmya%?=F%3nPzTrM~7En00qKeTL~igt7+O8=IE
zA0BjQNqWSQy!<8JfJ?qR^5U>AuhmkeTs+ufn@`i_c%L#XB-KYiGAaZjX!}v=^OJUv
z25R%V#>1lkVFt{ysGl-fgfF({bthGV2_%mYRW$P#`Nes*K~ld`c=q{TW+l$sMeUoc
zOf1B`Rvg~PQUemo;qNm%Q$R6CG`DD<Sg<Jl`rBQY^1{_QK>T}_+C`HT0&>ET)Xw)P
zNt%#Fjf_%oL{3%fuj*bZ_x!8PJCy~kQ~Uy)ZqOQXur#&cusl%03q@k~+8^&$QVluH
z*jb5(-iK9zI5PqC5TZpTMw)XY96_xR_Ri=KCo4%b`)6CNM`BV<l^&)KFk{4R;X}>6
z?^e3r%z{{pF@S{G!b&HFnwv@i9K9L5737CdtgPj!fpWzlB(d&D=<%BUS~sCtu5jsn
zO_-Eg6NMkZo&)gqsAPnXwI8*b+I{);(=oo1G#*76UKId+?+xNXnV&+CxX@lg-Y;sL
zo^RRbhzNU3ockQ~k8kp)iry%wAF7cHUE<$=*7j1G-b^LLGe+wrF%qQ^DjKh0wOvC{
zu=Kq*=VXvyRC%qv_fx#5GJ0iWS_P3r^-$|60KPzVJ8*U1Iya@R$~KjIvUwUeJao=|
zjhwq)A-)K2+IJAH<L5?};=UC_)YVcXELv?hn<XTQJBInD$h0$hGch3a)A44cb>XSF
z#Ga1FO3#BzEQI>Pe2sj1kb|VIs9R}mew}8rf?P_Nx^pW&awm~AYIBORWmq7d0C~WP
zf^J15OTF$>RkqnF&u7*EM3~<|29>4OfwVP)ROPArn9Ww(6P)s_NW8Get<Q-IJctnm
zJC3$as(K9eHojquZJ8$ivvV_%05>`2FgEx!ir3>S=JNxG9wMB;rjU3ZH|jf$$r2-C
zp0ct(4ZJ+`^ct4yHJz$O!k8d>dgu?w_M=zcGtrc*dy>SQy(vIQFVVa>8lQj0_y`Fj
z$bHKjz4^Z3%$qRa2lmlG45UCce(H%u!S5)g_2ev?qYKCq6ViV^#fE2ML&QK&LI=DT
z>WDaH)Ijg0+(6~JJzJ-Beez9OdGQ=fN_g)f;xG?-JTv+}ASaB%8;sQ<Zb8G_5L1l|
zHy=!q#OieNgAAQkokU7WO(_hF)<AP;3UnE;zI&UrpgA3HjnCiT$BmA#tT*i>jLU|m
znA-cG4cUZm2(~EzJGU^QL&MF*{7qy7&Rzl{{XqH4Ny;Aear!Z2cW-MLUQ6J8&qz>Q
z^j#{_%n%OZ9ZR)a-cNPc^0lV|IbhZYvB9tSfs(4y_70Z_jh@%8Z$LWxTJstriv6pH
zpJ{%ceR2x{#aPr%m17Q=|Mg3={i?Y<P)dbkyF7gG9+&&FJ&#XYllPZD{7?S{a>VrT
zLD(f$3uqR38v7cu8^c-z%}?RRAupEdRnlB~Msjzgxn@5ADHO5cV(`*HfoC0bniKN^
zE>6`%XjcF2mprdqEB<E+;y0B$a}Cq*9O7&o(-rdcQMBG5s1rM$zSQ_aKS+>##*G<p
zx22ZSw?46lBuXCk@(NHc*5A0v#tWaL+V}7fCk6;lhEgg+KupF7ep`~;JbAj5<&*DS
z!(`V#LTDe))_u#XuUjC`YVCyHqZ#HlfXHVlmX@~FE><E3cBU?KFHa6pSS@6>T8`eK
zy#Bsa>S8ZXnYC|)R&OU99-MH0nwXDE%v+HN`n)Eyll`j%M-UW=SEONBLee%R4l-R~
zEGh@v)Wu3g4twok3x9kx2JgE(&2;MGFH1?~IKCbZ87#{*Li5*%0HHK<z91xM+3Bp-
z2>W5#xg$kbpwZlCIsBu$Xe}8~GKnTvMdu*QVGfvub*ZWb(M{S7z%`K#%7LAFZ1i8!
z2!Fm?-LpbH<PL~m{EXBBh-4=F7!d51bJbjs=)*Z1MLOQE<Fr=go|y39<^fm*SG8B1
zF^h@NI6YK&Z9;V`U$zi!7U+D0!i)!5ye5NTf$X){Ch!ISGz4+6(5Dx*Jo#wpYkpc!
zLFF?7ZAtaU#XQo3brSl7;liL^_{PZ`Fp3TKOCWsIayji(Z^75&J@%A3-M9@CltA2N
zZ^182Ea>mX6Gu3~PjuLCsWdVKZxJbpC+-Ig2?bD@M3xN1W3d;yZ(2isp-X;4#%O$M
zu61MNrHI^WGyXDF+zVyt!fAnVs;0JMYux^89?zrXi<Yi9E&3E=+YmOw;tvceb}k~Y
z&$<r*^dbL}O|u~9*HSPeA%5!>c%+hg`Xax@&kcaEUheqp_84N0zPp1apU#A8*An@i
zJ}i>+iS^%3>TJdsM7cI-y*s}7CQ{XwC`d^qH40>7<oH~M{&O)}`Y876tBAN-B4v6M
zN5hkZMmAdSAp_f5I}m$O`yyykgS)r(4vtt*n!72G(mHO2sPb;n-%M9Op=bPVXt!@p
zXgpl>vdQmSCS=KdQzK36(g$HQ1ErB@`Yq=~F~qP(^z5f;CC{gZ(Z<jnG~@hels)nW
zH|kT(BE8Ad2t4LD?hnRew#%kuB8lv_vw0L6PnVn=+HWD4+I)Q?xBVraMZ%0QhICoa
zTIf#*x>H3g#^U{OVlu3gVj!4ge#Ftnm)~py(g2j1`9mrx%xQJke|#yQqUkSv$QHBM
z5Zw0-9JOY8mB8VHmUtc;L^8AQu3qVsn-vq;ooBzI6_=)B73oT~6^X1?uU{3Ol5MSx
z)r!(eoq*+oX<xs3dD6dRqxXEjwF_Won7H2>@uuN5{%iF0zh=+_KE_-p6~!FYxv(JZ
z?5y{?FU+2eJ@-cP^s(NP=?nd)AZr&;Fh6zZ{%ZTQripW6VJ{-?3q`NnKij)748%i@
zLw{y24e-!U%)F#b`f;)~J}CPbUi`72fW+(hj%_@@lf{a3l~Hr`rUGjtYZYi1cCJ?Y
zbD`KuDMC7+l?q-=bW{a0ZWb((#~huKRBiM(Qwuc#-bD~DEY5q0?jT!^3D6yC=u*1X
zcDA(8lJKBY>erCw)5kAYaiGKWVZudY0c{Yp?^0E3mMK=55_zRrz}h1C5KDrz4Xr)|
z%kv2xOOv)Y`EBbgujhAmak9q%fIh8o2D|yjFG2dSvln|(6;`c20eqsEhO3L*p)ST0
zk?z~2ozF-czZPqkO2n0RrVqT`B9h4w_<DwFg3?lo`y=`c_XkFCCP*6TBm=?1yfkFB
zZv<pejJK7tZCiqH;^HlUu%Ag~95gBUSwL({tP|py&z0g2W?bpugpZy)p|s5_@&ufN
z<GJ(a*gO@)r*|)isHZEiHDpMI%%S%|C{s^Y+C}az1;d`vuOABJqcZ?s;7qysWH&gR
zH~LPk&efK#L-FI|$s)=&?<cLott@P;BE;?O=SRu1Mj8E^8xdFH`)7gLytY%$52}jV
zowanrj>vZBN(s}hF-`2H%(g?;STIu}Jv<S#mdWvTHbh`{mBu*Y3B_y8IJBu=TuS}^
zF4VYKBGnKyAZ5!vHVjIDwV<VT#89F2cFcYFmzG8L1!(oX>+eFcN>cAj(R(4t;Gx;z
zz1JzX$ld;sKml!mgchLKf8Cy>DL>Smb|yAZ1Fr$Mf%|80w`!-nLcelYzi%Lf)~lAt
zT>}?kTu#X6yF^=jAR_5W429{y1H)h-I%dJi1fvI;zayu&j%{~)ki+=`R5xEhZ~>0+
zId73agb+#63>pkZCfUCQQSSaZ!54^wH1%Xy#Jcey$-O{^+FvG$Let<W+-vj4mk5tU
z@@p2Vjqqc|vXEdJG64Y;e>hO3#;v9L8enaKMGM5~_TBfrji^?(Jj!Y_u-CNz43wr}
z1ej1(>%g?vYYGg{hmK13=dzSY=`NvlrFE~Y(N;LN&Y)}(9Bo&D3#;o-QTDn3KAbCz
zUCEH=(m=FTD2~}lW`t@#3@BhG752`3hy#4G$)jMgZo=mdN;5ud<rBuul1>vn9Yx}^
zGBzOw-B%~(^~*%t2jPR1m?jC_7|tMXQ$sk#H{U2m-u|mVQ6&I$tQ$c}jNnex#8(H?
z(bZi_ujrC-dY?OGAFmzm*o>bD*RD0soW7L6oCN_x9%K88OQB%^Tg{2=;<E%G2ePkV
zNil=a=>FX|`GXIyNdqYTUZqwL*0}Vu{xu8Ww%8DRi7!hrjZZ&%wmTp5s`fFO9h@Lg
z9JW3$`U3;gFa+#QHX#`s%@Dbvs#l8=`sVQuhYKFx14!6A03rY}c#(F#25}3B*^*S+
z@0miN#^Q2F5hNu3kUQ<*1M5HBxv0XMau%K=M<%mLs@zr*Rq<X(<N-33IO1^u_8!Rc
zf>o%hh!(UF0H99|<jy06I*8)UEP-4>vm3L(+Zi?N4oLN@R7~Iy*UEJpaRVT>x!hPl
z+OD5Xv$qV2hS%b_1y;5GH=n?wD$kQP1UX2BHbQd`GqY)olrRBB#uVfnvlKZ5ZexRp
zzFnD9Oni~4(=H$^!ZUZ9x0&VdhcKv{?-#xWf@?!x7|R+`q7-QF$B>{d;*7uMP$BA|
zO0rEA@s9L_zgCz1iv1`Q^$WJC#@)=*wage19?yCpr(!ma5@8@&*olC<B~#vpsUJoA
z9&d-wbYer7r-mWpm$xZaS0;4}ESc*?Aab~O6@u3E(O-wSAMq;)15U<k5pWK}to#Hr
zO=lGaJ`;G}U9!*OK|2%|7e61`ogLN%S*hvg)avfQ1=Q~VDSr+c1&TVB`YTt%W`hcj
zpulC4o||f|4e%cI8GjeX3G#+rEF}VdHH{zVp6q9&)-_TIC}`M~Hti{QTQBxvwC3LA
zHJ_rIoPd5aUxXCy{P|zirx!%l0_HN&{SYM2?>o%-37|^dgHcO3gB~W6Y6T0^tEQvl
z^z>~wT+2-SxC3M(OTQ-4k$prm$FzotyPwP?<^D*d=t4~BhXjH|ekP4$Gbt*C5WK><
z^FGA~_zx*TsmJ6+M58Xv<(T1CuLc*+vfBl>zN(0RN*5YhVy58^;zL6#D%+5V9r8@l
z84tRKX_Db9X<xKeM7ls(NiL0z?m7@g?$=xGqn{wp6~V@jZ?p9x2p%4$lf(nfzZ2$L
z3?K$>dHG~95ND3}-OmL*$j~h~Gu}CiATa|nsC4QqX4r$?Z4Ej1p)a}su-ifu_Fy1^
zQ__~jPu@F<D736mCMd}yMnD^|B3Og9PevadY~~MKsAb?FRR9DXT}Y2y+NPp4qql1~
z86sdga4FG`fuP{2oUzo)zLp>B`rbha?(BrwEt50~cf-8!mNADBz%!cwb+lb;GN`pR
z_XV=qd|wEPnXQ<p7Cslfc(^-uZ_j2sJZBFzMRG<<7-yFTQ#5wn`=JXW&EcpC??9A;
z2L&wYczr+X%rqLb7-J~9kw`dw;TQf}!Q!lBk1Pt9ms0^RMV#{EZa=r!Wv9ohha4py
z2mL7qH(2U{CL5_kLv^K(@w5NIq672ux-k)s+db+BTt6jBS_q#QVlF|Bje$fte%u5)
z5a`sJ`D!?;pE((;#ZQ#DQK}UKt9U&u_$vyG#W<273xW>8L${lI9h^W)P1qrx?9z@Y
z5j2;IL;XsR2nkCId;_xh&}gkHVLbR4<sx1Zn9VwX`t&X}S{vm3Q`9|HG&apri0R^N
zjafGyUEZR0M8?-p-<t*r_mPY_YoJ1UHdg{>5-Burqxr)hkEApag}PV+J3&5}a5|{W
zDn%K_4dUcDTHhaWXHZb5`>Y;bdlF^#YG(_2!kboe3+DBYBG_nz<9(_Jtn?$6%WgF(
zikJag2lPLuNBIxWnvjGR>ClaPpR!7cZgYmIdiCQ_Wb*L_ndFaGrl^0bd(LtkMb7W|
zexo~T4IPp6noYafW@xR|>zo9>+zlQDrF6V4F;TA+02G_dsYLFt2tgW44H;J34nkNL
zPm>pjTgK4A39dEGGlmtQed+XWohQ=6=s6WS+8E~5^=;)~_?PRziw<ZS47(ll#PG$s
zOhF*`gS%na5DCQ5SPhc7rx3l^Z6r^54^xQSf<Ll9Qa42g7aAi31A1ADuO{4&pz?eh
z88w|S1FRi&{SZ5q<yQs;_)AsCY6l~tJk#KbjdyBgxo?mH`B>QUk=;q!60`mofNAs$
zkwKJmb1Et}?dATeu<e6T&j;kKk1#n0lYUA!CZn3L4)_nENR8%TrqXSjdaMoT$7y#l
zU&?UvuuW|k6A?b+XZRcLe98;h|7&mGuL7cUesJaOT-2?(t5Lp_%>#8zJp!=r+<|}&
z_YQAj{NJPSv5{UT(eOX}6$`TLANhkJ%efGzpqUOAw34;BlDL2N4FAW|o5X|oeA9Ra
z%m3<a{Ar~D{Uo>P`pe`GBLDV76AOs8UwT0A`ag`W|K-4&fa-;VWB1XYV>tdL38)7&
z`4EfZ_HS?bKUl<D_DdWjP8iKt8vH$l`L7}km^46Mv=S!%Vio$^p@JyyK!DmeeI5L7
z3iv+-BDb|W{B_gKbR8iqzvD7yS%rzDy88=;G?UuX@cUdZq+UO+Y2czcA&LL~S)xW}
zMYB~lFp|ygz>PR0omxJZrWT5>AGV&A@r+sjdh3Gho6Fdo<(|{Az|OnU!8P}W0Uev-
zqk`T8gRSK8t;>NucM8N1V$P=^>=Pn(=O2IgmqEpvN?r<C>W1GzM5FTi#~)%ch)9@^
zOfvBP$A7znXfEmJXFLfTsKEQjxBlm^{*g#%L>6sQbpPXL5s-R9?jW?5?I&B&{m-u^
zMu%|pg@w!i`;fp9zQ;m93^8BkAC~{0U(JO_Wt4!6ANTLG1;@om3eKpv!znB7e}1(Y
ztymKW4LvjTpI74c!l?3qGx`v<rpSW(uL}vjx=R*Z4jIK~692r&x0fUBB^rc-m2@ys
zllp&sb?h5(IU*Bsg8p#>{_|I{NeGpZHc!f<LaG1t)l@Y8_lQTqJ)*mx16&`|W#$pn
zwJtWLmS4Ba6!d{HWfpKcGeB|ix-d2B9$?5F$OThYRJbkrh)w_t5u7ay<`?LLl;zpi
z59VvZU{}tWl=>f4J65|*cWr9GOoy7A%e5~*XT8|`#XxfG41g+L3zq?@M-k{6#2akE
z)a{Tnx5A0QGF9ko-P4ha_rbl6_x^cnT*JT_nj`>QxIlJVP)~+*1fI41R7JP<<vv+F
z_y_VrKId77$p35a%KxEW`@WPEiW5Q-=TvAAC4_86lHJVMw+>?`VaPIsq-5#X_ciNi
ztQkg(rL5U9h_R*+X2!ma<++^uxtHTPf57v@-4DI0@5{IO&NbIupU>yL0W<Dyv!{=2
zy}mvQtpW8t&dhW8lQXfZ3(%aqf&KFDn<I`^qrhZ3LGKXS@%KIS$Tn;!br}mDQxiy=
zE1?3lvcR2I@$TDWa4;U&+nSD2Imra5p?>)dpsU|LcCStp$bL^pnE{*8yS_k$Jd>xD
zcHU1D2^?QFz8dH&5K1g2(vX8j<Y&hna1;9*SS?B)Kz4&INe`tSkDE$4eO-#x_wfXG
znguz=7B0ZVRra~qpHE(S&n5iz(OvY04t!ic@c|L5Sn-pFWAx7#s`RifW?nN%BvfX$
zZI8JNc<-ywpG7uD-L<7G6$7x8dMbaVSz`vkv&VRR?Bosx-nJ`C0c(KgGWbDe1{a87
z0WfOI*g}B++OJfH*MBu-;)GJ^$Ibg00K%TZ;N~A@{INCa-m^X3F^}CK^|&(N=H*_+
z1M&Io?Rj-`6m>kEr8i;_QD;q?pXO=26shk9ywX2bSwFuR@|REG_qQ}woGnj_fmF7x
zq6Bo%R3<@L(_>}$gFXKY9t5%Di(X*aulFu71&4G%V4DCOTOIwJM5zVc#fys_47Ft3
zLQ@ZZCN5qiiurLsN32)V`dnC@xG}^;S5jZbb2oT_P#A*}cJJ&?6Lk&Po#t(}%%UZO
z7Q&NNpq_MI*pS8Z#vm0566HcD21&t?+>=7AhDLvYI8e)LW`X@j_R{VJx;C-TONEC{
z)n?v5;2{pYZf(CFTBT|YBN-e<U7Od*E!>YGFwr3?Q`bhiM|o*M^4L)~N3pz#mFG4Y
zek+tQM1t8&@IB3xOH-aB_W5Fbu{z5JYf~>TCvVllSzI?3qZr4wfn~zjLP?b7S98ET
z_4=8cAmd%&G3T0>a?4(?7eP&V?o+d`)Po08f=A*K`&MpMxwOmJ3IAFmkdW>Ax&yR&
zR>RZbtE>Leuc$3vR=#FeS>86lD+_X}S!ixZ;BS9mz$U2YMX-vrpSop3#MF|LF%E?;
zLns2qjL74=SVqnaKD!cFTg?Hp(OaES4OP1PzO|z_E9yMMd54MWC)2@B%}MpixQzS3
zDxOX&dP;^!)d9nxq<E)F(SAoGFDr!3eR2BNGUlueAo1Hu{(;>(aA37Zhs1+>hdL7G
zTq$)E{@Z~ScjG)8PSSmfy8Z2xLY{5v>?3Sm+3EFeBS{nB71`va?cd&bmnZ+mX#m=B
zk5t)Zoz@By^(k48<o9yFKHo-iw$Pom;XV3okLN#jlc{2<GFCUgAuGt{LXVcxA(!d7
z?O+vf%B=>W2^<WTf{c``&`X|&)xV*IneXPXE$=1})X}lNG-Y$a#s%!J>MHPO+VGM`
zx0}Qgf2We3Y8E_M{*>_5CgAaqIdP00l^w{|8OaSAE4<B9#ZtF!X<JzYvJg1!O+-oL
zD@O4Itaf3yFgbA$(zk`V!_4vK_3!Lm)@V!~WZowkBUn)6q>M;3()G>L@Ro9Zk(4@J
z)zfVjo!jC-czYd^;lE?Q2)(oY9ZL4XQ_~c*xDwiriF28H^r?gd<t8(IPxBgo0<_={
zo_5)EMKX++rSH2JX~<~`<`@;g*{b0UH;vh12V{#@nixf^L1bZwE0&+VX6=hQ0}^`x
zpv=*izg&iD>44PfQ;%~pj(3T@a}?S_XKQqr*J0FeTewL&JYBX_83F;hzxoR|1CFDr
z*VW>MG??r1Wbnd^zz20i5bu{(yV_m*#l|)ME$TGK%<-cOA<Yj?K6U0>GOR9jKA~4m
zFiHIK5|Mq?LQDMggj;8qlEKXQBgK1-s&q_HI^MWpgwieKPeS;I`1kqlLbWb{Rke{|
z1pH;2evqrDJq={rgf*@+R0;-@B4x?00O3>n`tFrLF`!}&^!Pbt<a7c^@V5^bS`_o0
zB}EUfYRr>ewq8h)APWF5uwsJtNcPnJtxyJ9xt+P3Drr;jnx`7C8cLI^t(tS#+QLoP
zPC-q+m(22r0M}?W`%D=het}fipdOt);skj$6ty)~ykt7hpLWqNd>oC;i8R-4R1>0n
z5dWkfEL`^j<GYDJ?{mH=^K+{sX8U!<-0XA|YpvCS987m`9Gr-8D_dZ(dWZU?kR<TM
zw`aB@>&OlwZK?%`@gIN|Ts~y{@$mfY6xfPPwApo|U~8wi8mbW!T%+}N`BXK}!|?vc
z528*X@{7*w@Z11C7_kO}${HOf-svGM4rHy@=Oz4KY@TN2XWN;*yLKWu3ujc36TAT1
zOaaCz^YUAh$2WnfO&J}sz(9j_80Y{;w#ZgmrHR<<b^d_II8kc;Gx#8-Xtjs(JwTyu
zxrMv&#sKPM!8jGTM&LknayPwq4iX$UlUj1?gh|`W0q1f>@uqWY=>dD|L!QR*M=GD(
zD>^J^Ai0dOas3c<ZwHkUV2M_u!FX{B6P|M<pHOa$0=@6n;!R`^fw!LlvcFz3mc|eD
zUU+v}3H!rpS2|K*|LG=>)rZbjJfS!>zY<7)!y*RDR8%?_2S)0~@A*pIH90l<o`wVF
z!D{0(z_zU&e5d^cq|rK-;`Lpb$AT;;CYP$`!h%vd98zysy<pZqQHEKH+Vq-0_3$7G
zy7jmqZ3)M-9>5Yf%$G`1Q#pApdlrjKK^O%JMUVhkE0aHLDl!LXVQS<g+jO<WKV-N`
z6$`ewJ1cFMQE<9FHp5pYfP;EY9&N|+){})$N5+{?$#>PKCM0m2u+p!dj(YsFb{%3@
zP~7nPI<8l4e~VRK9H!)$CJx6wMT8jZ(r7l?Axe$QuK(!xR+*WW4hTwh%~YLdJ?XQj
z1$M80h7HJ$=cx9?j`eyGouvX!r?~@6o7^diU!zn@&hPk448V;@HK6U?-3IBVxv{h5
zzM9zBlya16#0B;{QOsrl^!X4)RwC8S7YPL~vrtYk_uQv8#l$s*1%(_|D?v|uucVqC
zi0LFac1>a$N`qeNuerMcmlC2XzS#JEH1isIANVG-@2CnLD%Y9gCQbJ#XGv&iKIY(p
zoKIznxUE(tt|t$W5Yw1xMk38T3%?)#$Y2OLu5Y2gCX4Y|-<|klCrux%?@VO3?j`>i
z%0VXIlK#!E^-<$S5Y@gnGpm0HP;V#!0U-jGbbl83|N4z@0o2qLibab`jBSE~1(_ia
zfvu09l=VBI-aO&EovwN;a{~sdbY@rSw-ol{<h<Iia?p#5C`<-FDJoIOWbb`_k}2*O
zn+OA~a%WlV4E=@o&bwRK-RpGXB46{K=^RGo`Vvqe9&*8DX_DSgM<wuKgi^s``uA)a
z;8ZR3BI!-v9+1(TrG26LBCs1!D5`}p)lGZbJpmiySA;GD1DL*$n^D=bFEK)VTPvLh
zXQX~^rFmiIf~`ji9IurYMZeqFj`_4@W3^n^>3GX7=I1pK<QrD%a7!I#<Ff%_xXyfO
z*V0gX*koSMkLZluQA}?Mgbmr4Ssar?%IUjmG>R?Epf`JQS_{eyf<jAn{_!FCsMXn7
zFODG}tjo}rV)|ffxObNv;N2Rpt8C`FwBXXo@R;gRAfBp{eN<>U`{vh!2VZS?fuMm>
zap2J-qmAa{EEe6nSh%nP5Th}`(mNNFa(H$J{veN)thYL3*!+xdzZ`XEk(he%L6<%?
znsV6$xagBFo@4}G9wZ{P>|3{dX~|^jNIwXM;IrCP*pK$<J}+!qyFs7NS3myx9<v;Q
zUOVoWuX$aCN^i<0d09M50FmbmE!8C0sj26%6WA%%K%gL&fVFCpKf%fnj-EqFlPV?U
z4GWwBnQo11U?*uvZm|*?GP&9HM9V0j;gkRe9V0UJCgXY}q+hb;JJu>?0`EG-v5y+;
z0aDm)qk-2P0j#6_`R$?0T>tv;{Mpg)snh<b@JPSuoeaicbO9RJ)#1SS0S=zmI!Yo!
zfJflLDO~An44GDIREi4@D*ja{{zu%!?>bneIM9Y{=axqhBnV-MF#GaTjHdS~R$EKI
zOnJ)QAA2t0k`@Ou(|-?+r*U;I;mYaQqynx$cEifwI1o$@<*xxtUpfL0m}9EMG`GU(
zoW{FowlUAGsR*YE=1U`?B>RlC%Q3mQ5eQArO)v5XjkBj01Pi{DOz<dG!H(lK8(9(Q
z#)al}$rkWl;S0i*dp@oFT7JZU*b>}8(TDAs+jxQ$H@EIWe(D!vM&1V%nAJWt{cJ18
znID=P$aPJ#=kT>lD#0QCR!cx~HKim)h}gG!XG}jb^E`JX?}ki2I~^VSb90=B(Ovf8
zOCZt;0}x83lRq9%a)qn24^t#SwLH*YM|_$cPqL$y_sPo|R3%(+P#n&NygrX&_h>xG
zXI{jwbO`z1QKdTppC?>PtZeh|Mqo1W<>u^`g9;aIx^~2#>T@$hg#Oe%=huIu=gw*|
zv%D6-vJQ5yrQE{DGFH4@H!^#(E~`EZ-N^Fy5=_wvY@2gEeujGnKcSFu#nfpGclDH;
z0++R{JgFrT)f}aMfgD~ux8p;pBqSzZ5QT0Qy3H3l|0ZFi^4I3It%`>01y@*6CmDQk
zCFu~$8=R)UeNrE72n=4d>P6_7&98L&QrJD1tH8=nW@omT`;y|sBFBKRd5`yJ2NM)T
zYP@1#8kS&Z(Md2w?e9@cwiTAx@06D<#r|TgQt`<c$d2n!o90v}b#4KT3~mXB#fliG
z3=xqB_8CwS)yRuK*K%pHZpOr-xVl`R&sG72d7afzS%CC1z4PXDHn9>zF4oUh`r`Dy
zr#r13cm_>3IrL#Brdl!#t^<VG^7rKKDI28t`^j=i2+hr>OP2YW@4|w5cl2I)LN~a7
zn;?ilr=^PuxOY@}yEfz*svsuXN*0W?Xy5!W{v4zFT@zkKm{@mMdR!R!6K#Tz&3TqF
z;Qj)w7nf;isfJ;{!LG(Es?(h*soOBl81Ni4;@PWC-SHL^5JBQW1}+2c!RF~&4FQYC
zE#bRd)iKyZn37%rd1<&!(1fI3uU{n(wk|Qlp)<bgnm8?cYDH#=e_nQypF@86a<+mf
z!{?tuW_=V6xlp@4-*;s<;cGoi2&W=Dr+b=rV~PZcz2i!BEzrZTgV5oU!VO0vXvWXI
zfb~k&sqf^6lxMDATsL<asZ^^KJW@^=o#(UUJWdEgwucJ#W@G%Y<31*LhhUvJJ;}&@
z8Z84hJJ>VjSp&)R@`hV2nLz@O3#;m5XSHPt;|_`^qj46H%(qWQfcM_i@fYA2VF(rm
zgXA^jdKa$SVGk@(e|B4TaV|`S>v7U~q|rb^Soty`WH}b9by~nlm+!7PqY3uwoHrDy
zOYo=rO)t*rz34zqzjMX%h4sY&=c<Bea-D9eVW0()=l!`Za`;I<C%i~bOgI4$SS4jO
z<#T!@+aqaX0d-@Y8W&gKb)PGgA+b;hTTZ!ftAMh(z$0N*r>@V|Krnoz!cJEhTV|V7
zrf(oFV{7bz>dJOj3GA(M)@G#rx=nc>q>P;y9|A5W14UPa6GYTM>s6)=@>7cuRU;g7
zwvs~wxuz-y8ojddrq;Pm&31jo)9dp*^HOO*saTIL!L1f8VCbmX>p2TR*%9f_G!%EH
zz@_2*owHuMAF?wuUs&mE<k>tlFtC>shyxlJfzpNaFrjwJ9|IXcgLHc_FetGv+y&iy
zWHe_<r8~vhA_ntRuM~Wir=f`46Kd!5>~p_bBE*;3t`<A|wesgL@|KATr=P8kF~Kc1
zbDm|<g*xrtrQ?hZv{6yIETjU;DYo8yIJ&-K-pB|tmlZCES|<^QdUlFfg`k4)1~IZq
zz^e_TlZhko5I%%+@4j7C{_hF^2}Fn`bz1XsR{0dhU;C!~=sis73W?y<#lQ*SE10Zk
z$%2Y$udmn7$-y)As1kvZxDewZgDyqKPeJk<(qq0kUiXhJe`#C$(i2yI>(zaHCL?wv
z%Spypn>7BgeAmLxLU+@7EPvgXuYUy;&s%Cix8!q!kR46%s?vJN$NTO0&<i*D;M>cs
zO;+(m=D1CbV+MQ2`F1K2=06lxIgh6*oVZtns_Mf1L9{iwAKV0_?tGSZV#0r!^aTnt
zg0UnEtWj3;!MS`vbUqL@$-BE!ENw<S0(L1_3uJ&Xow-xEv~!~Druc*$l*@x5dd?Ig
zsh<|#!3o3aXgXQ4W(vv*?1b)Tt5}4#nxob&7$R0@v~fHW!nGRtrHic|`L(m@zN1T1
z+eX%XpBp^Z#fQyDz<#Eua~ICc3D3{&cr98#*NPM_((=f#*?gaEgzjf&yyS?-T`&RR
zioYkGDQNg(oG}hG(Jz#o$0~47(CW1|YlEv$E(QM&7V|0mjAbjpRE!QxY7o2?RWK<V
zIvVzm8XSCIK7o15q)pHM?Nfd~diK%Fd)eYk@!wx~DpMc2S$KZdR&ZV!_Sr}u-uM>J
zz~DGX!}W7mh_iUo4vZL4lfZGXZWM$9nT*<pjh0M^Cp)!<wLnd)oN7$){-~u|M4jXK
zhY%8E*{w&8u>}#4u8gOD=XbE@V1hU@dVYfd^D?885$T7rj49!E5#w8%;$8PQ9nF%=
zCHILy8^Y=-#Hbmth1LS2hCO-YG9kPXGLJ(uNg}rgZoi1Xb_i1AfxFd8dus7Xlf@5J
zu%SUfy4;BZK%*PruLhGKm9R;|!&GvSr$!ON9xJ+?+<Fnp!jdE-5wMc<UFPau@o=HY
zaWU_vlsV}XNs&YyRimf+v8M|%-vxF0csUT-GOh@WI2*@25VSO`^Fb<@lt;qj-_pA4
zv+b5qOPTbE3GaTKkuv4gT66E$l%l%q{p_x5y;K`oOW+Cc?ToaW*ci?6=UBuCoKb)&
zjjjsP$Xc~99pqXuOMjotbo7!{n8`@b#kDPDuwE6R8=JvON8C%^y#s37nc5o(Yr8U9
zc&HwG=i-1o5}$u$-WVIHsAMtlMLHl!-tm^}X1>B+yVoz8Cu>MmCVRX~Bk8;JrR5>Q
z&{7mtd^f8d8S9<vHu|Jh<>sfBZRZUU87^gTY&6m2l7`B`*tIeIZ4|X6lIMVB48DlF
zd4atermJ|jf}98GuwDRSv1)XInq1REuHslvYV_kN;Ph}-id|w#&G6bxSotw{tR}Kc
zVu($~ILS&NJyC%xWIQTLAw5P%)oQr#dz1(kZ2<-^QhRz6D=RCzzPYnm%QxV95earN
zJ%U?Lr$Rzn#b7hQ_kwxH%Vw@ub=UiwAGi3-`_dh_ff?8S#pm1s=6%lv=6xRLRu^lb
z4Mxi=i3X$VuSXs$a9>~*8|aB?$yyvhCmf6*hjwj?11<=z_S}ph?Iv4Wk5mS!B?v=@
zH(Jdg>bfA1h?kL$k-fJ+F_dVs=4)M2w<2DYGpjdP95zn%;3D?z6kq=9*gjU{8B=p~
z4Z<VVh6nDY6|tFHoDM+w)@!xuF@b`KIj<CoiG}4gfRUEuYK~wiL|cGCb<?ojgtzU(
zyJ^eQt#pk|R?T}IV*MJ`ec714<SX}#5FPr!Qj?m>ucC|9LV6PntyOvAGRpE4KC0iu
zWJdn%oze&xmPh$e7wn_YXgXyNYp}1~Uj4lBXvhvu*zz70l+8x<Q3(~$LrD?zzGYP>
z5E_{QW#q1GjxCyr@ZrPm4Q7+7JMxJ<Sial4!1*!MEP^E85*5%%PdflNQyKdy!H8i;
zBwWQC^u01DPA_jg$uvhf-k0pBY}N8}59(S5<Y(l?iXMhqo1UcAS3L2{ZXoqmiDuhv
z0-+yc%f!85DE3DyS}Uoh12$k7-Z2By>Bngb)k;d|h)gr`!-Yv3SIw>uszxX|B>C)Y
z6DU!DljMyCiLbX)wvEN<g-rB*WCqV~g)1Y+#;css8H>uqxWHm3C_5sW-}WYz=SIDV
zMZNG=9r6t{Q!nP=bE<Sd?-($kQBczihvvR3y1^-0JxMDCa*8vyi-spmu=3J&>ibTk
zJ_<+6lw1J-e62a{B}r_g(1vs*>b4lBNapX9%puqtbQ3-gpc$jua~lGKB=q?;5-rjG
zg^M?N9*Zv<d;NI+urc)5aWWI`3^M~xnmkLnHyfTl1R}_`t0`X`GQ`asOm88x-Z$g~
z#q2zUd*BbYTJLEc8*qyI;*v3zPm4*`xQl2E>T!10PXLXS$8q|zZu8}6#o<Sx5^EOi
z9J<(kAe#TpyCP%sw;ipw$!eZ6pSdt#2ryOFPKomrOj)m|lHKKe)|NK28nE@zuW^cp
zL#p-^@g2V*GcT%V2i#&d)!oxIwVr`vOdIdN$4C*Jis$L8KR0eHHrg;^S==~lny;1i
zVGm#k7d7<U-I{)~vB4U?b`T$HGX-t%1V#NA{h6Qf%bkh-J!=7WA+i&^Y0|tp>x588
zDu&1U+`J4JS1{CT?Q9EQV02Gm*3V1%b$d4K({;8JaK&=Km=Bo;)-By~KuZ}?RdMV{
ztLIDWp?1CH3+}{1)N1s3y5n&?*0W*hs!0~WulE7>9d0R1rf(T;GPlDH`m8;yMNR|m
z0Z6N>;s<(Tp*UN}Q*lqHZ^A_;Rcw{D1;d(1ExIefQIXtQukOX%@$w62Xh*q*LH3Xa
zh(Pg<{eYsgs<~<*6$b_0ugxZ5k&K)!O!{oa714fLMDtO-7`HoHlW$^`tkW!py@OBg
ziID8GxeS51pdgGAAvJyqdrc?px}$a@m_GY_jY{CUw6q#Vz8Ba6x^PYEXROPaypZeJ
zb|>vMKjsvFf{n|-tjvnk*TGN1?Cv`tri@=<h>{{P6LE9((N&^jbvDz(#Jy{o`yj}e
z8s6|x(rNV`&0$!L(GY?s2h)16GjtFF3QkFrQdi)#NX8$ahVfFK`_b3esrO^H?S7Bn
z%~pI=W0|)YvG3pCRef>R$EPGVt(fL*9GIG(h?y4l1VRVch}Wn2@*_y$SNT9UrG)Yz
zd|QzFJEPU+jkG^<`WXZnb&_6y>EiO3GW!)>>>!Vs2XAs#^}{$6K%P((HX0p+Pfq6%
z^b#(kZT7o0Koz|Gtk7mvlf$lk=Dm6a3V4DpnW-T02^Qm5oijyJNV*Bu2oHF%VPlVH
z>K#T;$r3oB=GI0U`JT#HgSr)ybOikCTQ#fv_9wB&3XF1~i1D42wiPV+Xp(Av0CS4%
zW&p?OFWR#S6F&ZG>~M14qml5tHcW#Kq3PK69F&|y^6c9zMlg<?DY@-H5X`vdNb04W
zc^|yec}j3nL+L*n%)s)ihrqVnW8>O1S}@Ih!yBqQO>6GI{e$Q&c~+I?80!Oeu}YM1
zfDtG*@Wl!S;Gg~pSxzRfWU8--W_3#h#L*_R8xH$JIy&ASIc5+4S|bQ%<{TLiX9)W-
z&AIIB(U4@<=Rtn~(Ej`>FsZ7zGW!jhtC{;-rkce}PX?tYEg``GGBo-2R4hCY07W&w
zT)tloboU8%c^l>P_iO)JcYa~9WNQAR^CR^iz1H`a0F|3*3x3P>AHCN{@S@$Ago}<~
zV*hyAZw^Ov?t7>E<^TDR|9)KXr{4iM9UiCx|J#dhW&qd5C_EYo{l8Df_e_xqyn#1L
z3&Q^PBIdAQUKh}y9!0wT1khgs@`2dN^YFhs>_3;G4GC^sv;W-w|6oRcKJ*QM#kVwM
zLyqDYe_pJ)4sJY@Ax66Qm&g3y7r}SPJ>WEi9T`ac1Jmal0v*!K4r?CjKi=Daul+{=
z#d98iUG%pXzvIA-O#_-Lng96^|H%^w<OFMAWvR>lw--%00Bd1EJ8|Q0sRt~FREz&E
r?td5e=nnnw&i&VJ`v1CfCl8KQ)w;)vM*4WufM04VTFRKamO=jmXF97N

literal 0
HcmV?d00001

diff --git a/docs/codeql/reusables/vs-code-basic-instructions/run-quick-query-2.rst b/docs/codeql/reusables/vs-code-basic-instructions/run-quick-query-2.rst
index 0210c84b156..030fb7b9ef4 100644
--- a/docs/codeql/reusables/vs-code-basic-instructions/run-quick-query-2.rst
+++ b/docs/codeql/reusables/vs-code-basic-instructions/run-quick-query-2.rst
@@ -4,4 +4,4 @@
 
    The query will take a few moments to return results. When the query completes, the results are displayed in a CodeQL Query Results window, alongside the query window.
 
-   The query results are listed in two columns, corresponding to the two expressions in the ``select`` clause of the query. The first column corresponds to the expression |expression| and is linked to the location in the source code of the project where |expression| occurs. The second column is the alert message.
\ No newline at end of file
+   The query results are listed in two columns, corresponding to the expressions in the ``select`` clause of the query. |result-col-1| The second column is the alert message.
\ No newline at end of file

From f3f7a89ef802f076a2f081c58615cef02a777e98 Mon Sep 17 00:00:00 2001
From: erik-krogh <erik-krogh@github.com>
Date: Tue, 29 Nov 2022 12:26:14 +0100
Subject: [PATCH 0782/1420] make the JS autobuilder consistent with Ruby when
 no JS code was detected

---
 .../extractor/src/com/semmle/js/extractor/AutoBuild.java | 9 +++++++--
 1 file changed, 7 insertions(+), 2 deletions(-)

diff --git a/javascript/extractor/src/com/semmle/js/extractor/AutoBuild.java b/javascript/extractor/src/com/semmle/js/extractor/AutoBuild.java
index 7f28d93a183..f8c0d4d699b 100644
--- a/javascript/extractor/src/com/semmle/js/extractor/AutoBuild.java
+++ b/javascript/extractor/src/com/semmle/js/extractor/AutoBuild.java
@@ -52,6 +52,7 @@ import com.semmle.util.exception.ResourceError;
 import com.semmle.util.exception.UserError;
 import com.semmle.util.extraction.ExtractorOutputConfig;
 import com.semmle.util.files.FileUtil;
+import com.semmle.util.files.FileUtil8;
 import com.semmle.util.io.WholeIO;
 import com.semmle.util.io.csv.CSVReader;
 import com.semmle.util.language.LegacyLanguage;
@@ -438,8 +439,10 @@ public class AutoBuild {
     startThreadPool();
     try {
       extractSource();
-      extractExterns();
       extractXml();
+      if (seenCode) { // don't bother with the externs if no code was seen
+        extractExterns();
+      }
     } finally {
       shutdownThreadPool();
     }
@@ -449,7 +452,9 @@ public class AutoBuild {
       } else {
         warn("No JavaScript or TypeScript code found.");
       }
-      return -1;
+      // ensuring that the finalize steps detects that no code was seen
+      FileUtil8.recursiveDelete(Paths.get(EnvironmentVariables.getWipDatabase() + "/src"));
+      return 0;
     }
     return 0;
   }

From 136b6db2ad46a074bcc471c4cceb0a9d1046eca0 Mon Sep 17 00:00:00 2001
From: erik-krogh <erik-krogh@github.com>
Date: Tue, 29 Nov 2022 13:07:07 +0100
Subject: [PATCH 0783/1420] only delete the src/ folder if it was empty

---
 .../extractor/src/com/semmle/js/extractor/AutoBuild.java | 9 +++++++--
 1 file changed, 7 insertions(+), 2 deletions(-)

diff --git a/javascript/extractor/src/com/semmle/js/extractor/AutoBuild.java b/javascript/extractor/src/com/semmle/js/extractor/AutoBuild.java
index f8c0d4d699b..d7f8b0a8d28 100644
--- a/javascript/extractor/src/com/semmle/js/extractor/AutoBuild.java
+++ b/javascript/extractor/src/com/semmle/js/extractor/AutoBuild.java
@@ -452,8 +452,13 @@ public class AutoBuild {
       } else {
         warn("No JavaScript or TypeScript code found.");
       }
-      // ensuring that the finalize steps detects that no code was seen
-      FileUtil8.recursiveDelete(Paths.get(EnvironmentVariables.getWipDatabase() + "/src"));
+      // ensuring that the finalize steps detects that no code was seen. 
+      Path srcFolder = Paths.get(EnvironmentVariables.getWipDatabase() + "/src");
+      // check that the srcFolder is empty
+      if (Files.list(srcFolder).count() == 0) {
+        // Non-recursive delete because "src/" should be empty.
+        FileUtil8.delete(srcFolder);
+      }
       return 0;
     }
     return 0;

From 3b31b509831719ab898b6dc191f818e58a41812d Mon Sep 17 00:00:00 2001
From: Ian Lynagh <igfoo@github.com>
Date: Tue, 29 Nov 2022 13:07:47 +0000
Subject: [PATCH 0784/1420] Kotlin: Rename compilerGeneratedKind to
 compilerGeneratedKindOverride

---
 .../src/main/kotlin/KotlinFileExtractor.kt           | 12 ++++++------
 1 file changed, 6 insertions(+), 6 deletions(-)

diff --git a/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt b/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt
index bca94f95114..0dc226b86ce 100644
--- a/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt
+++ b/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt
@@ -1507,12 +1507,12 @@ open class KotlinFileExtractor(
                 }
                 is IrFunction -> {
                     if (s.isLocalFunction()) {
-                        val compilerGeneratedKind = if (s.origin == IrDeclarationOrigin.ADAPTER_FOR_CALLABLE_REFERENCE) {
+                        val compilerGeneratedKindOverride = if (s.origin == IrDeclarationOrigin.ADAPTER_FOR_CALLABLE_REFERENCE) {
                             CompilerGeneratedKinds.DECLARING_CLASSES_OF_ADAPTER_FUNCTIONS
                         } else {
                             null
                         }
-                        val classId = extractGeneratedClass(s, listOf(pluginContext.irBuiltIns.anyType), compilerGeneratedKind = compilerGeneratedKind)
+                        val classId = extractGeneratedClass(s, listOf(pluginContext.irBuiltIns.anyType), compilerGeneratedKindOverride = compilerGeneratedKindOverride)
                         extractLocalTypeDeclStmt(classId, s, callable, parent, idx)
                         val ids = getLocallyVisibleFunctionLabels(s)
                         tw.writeKtLocalFunction(ids.function)
@@ -5390,7 +5390,7 @@ open class KotlinFileExtractor(
         locId: Label<DbLocation>,
         elementToReportOn: IrElement,
         declarationParent: IrDeclarationParent,
-        compilerGeneratedKind: CompilerGeneratedKinds? = null,
+        compilerGeneratedKindOverride: CompilerGeneratedKinds? = null,
         superConstructorSelector: (IrFunction) -> Boolean = { it.valueParameters.isEmpty() },
         extractSuperconstructorArgs: (Label<DbSuperconstructorinvocationstmt>) -> Unit = {},
     ): Label<out DbClass> {
@@ -5398,7 +5398,7 @@ open class KotlinFileExtractor(
         val id = ids.type.javaResult.id.cast<DbClass>()
         val pkgId = extractPackage("")
         tw.writeClasses(id, "", pkgId, id)
-        tw.writeCompiler_generated(id, (compilerGeneratedKind ?: CompilerGeneratedKinds.CALLABLE_CLASS).kind)
+        tw.writeCompiler_generated(id, (compilerGeneratedKindOverride ?: CompilerGeneratedKinds.CALLABLE_CLASS).kind)
         tw.writeHasLocation(id, locId)
 
         // Extract constructor
@@ -5448,12 +5448,12 @@ open class KotlinFileExtractor(
     private fun extractGeneratedClass(
         localFunction: IrFunction,
         superTypes: List<IrType>,
-        compilerGeneratedKind: CompilerGeneratedKinds? = null
+        compilerGeneratedKindOverride: CompilerGeneratedKinds? = null
     ) : Label<out DbClass> {
         with("generated class", localFunction) {
             val ids = getLocallyVisibleFunctionLabels(localFunction)
 
-            val id = extractGeneratedClass(ids, superTypes, tw.getLocation(localFunction), localFunction, localFunction.parent, compilerGeneratedKind = compilerGeneratedKind)
+            val id = extractGeneratedClass(ids, superTypes, tw.getLocation(localFunction), localFunction, localFunction.parent, compilerGeneratedKindOverride = compilerGeneratedKindOverride)
 
             // Extract local function as a member
             extractFunction(localFunction, id, extractBody = true, extractMethodAndParameterTypeAccesses = true, null, listOf())

From 63a5f8965e1df956dd0e00b858da5e7c22293f93 Mon Sep 17 00:00:00 2001
From: erik-krogh <erik-krogh@github.com>
Date: Tue, 29 Nov 2022 14:08:21 +0100
Subject: [PATCH 0785/1420] fix tests

---
 .../src/com/semmle/js/extractor/AutoBuild.java       | 12 ++++++++++--
 .../com/semmle/js/extractor/test/AutoBuildTests.java |  5 +++++
 2 files changed, 15 insertions(+), 2 deletions(-)

diff --git a/javascript/extractor/src/com/semmle/js/extractor/AutoBuild.java b/javascript/extractor/src/com/semmle/js/extractor/AutoBuild.java
index d7f8b0a8d28..266685e0abf 100644
--- a/javascript/extractor/src/com/semmle/js/extractor/AutoBuild.java
+++ b/javascript/extractor/src/com/semmle/js/extractor/AutoBuild.java
@@ -434,19 +434,27 @@ public class AutoBuild {
     return true;
   }
 
+  /**
+   * Returns whether the autobuilder has seen code. 
+   * This is overridden in tests. 
+   */
+  protected boolean hasSeenCode() {
+    return seenCode;
+  }
+
   /** Perform extraction. */
   public int run() throws IOException {
     startThreadPool();
     try {
       extractSource();
       extractXml();
-      if (seenCode) { // don't bother with the externs if no code was seen
+      if (hasSeenCode()) { // don't bother with the externs if no code was seen
         extractExterns();
       }
     } finally {
       shutdownThreadPool();
     }
-    if (!seenCode) {
+    if (!hasSeenCode()) {
       if (seenFiles) {
         warn("Only found JavaScript or TypeScript files that were empty or contained syntax errors.");
       } else {
diff --git a/javascript/extractor/src/com/semmle/js/extractor/test/AutoBuildTests.java b/javascript/extractor/src/com/semmle/js/extractor/test/AutoBuildTests.java
index d472353067e..7c60a05d33f 100644
--- a/javascript/extractor/src/com/semmle/js/extractor/test/AutoBuildTests.java
+++ b/javascript/extractor/src/com/semmle/js/extractor/test/AutoBuildTests.java
@@ -119,6 +119,11 @@ public class AutoBuildTests {
           return CompletableFuture.completedFuture(null);
         }
 
+        @Override
+        protected boolean hasSeenCode() {
+          return true;
+        }
+
         @Override
         public void verifyTypeScriptInstallation(ExtractorState state) {}
 

From c0085cbb1ab847423544b5ff50926a864c289fae Mon Sep 17 00:00:00 2001
From: Karim Ali <karim.ali@ualberta.ca>
Date: Tue, 29 Nov 2022 15:18:39 +0200
Subject: [PATCH 0786/1420] fix expected output for Taint.ql

---
 .../dataflow/taint/Taint.expected             | 46 ++++++++++++++-----
 1 file changed, 34 insertions(+), 12 deletions(-)

diff --git a/swift/ql/test/library-tests/dataflow/taint/Taint.expected b/swift/ql/test/library-tests/dataflow/taint/Taint.expected
index 7404255629f..8d054f430bb 100644
--- a/swift/ql/test/library-tests/dataflow/taint/Taint.expected
+++ b/swift/ql/test/library-tests/dataflow/taint/Taint.expected
@@ -1,4 +1,5 @@
 edges
+| data.swift:24:5:24:29 | [summary param] 0 in init(_:) :  | file://:0:0:0:0 | [summary] to write: return (return) in init(_:) :  |
 | data.swift:25:2:25:66 | [summary param] 0 in init(base64Encoded:options:) :  | file://:0:0:0:0 | [summary] to write: return (return) in init(base64Encoded:options:) :  |
 | data.swift:26:2:26:61 | [summary param] 0 in init(buffer:) :  | file://:0:0:0:0 | [summary] to write: return (return) in init(buffer:) :  |
 | data.swift:27:2:27:62 | [summary param] 0 in init(buffer:) :  | file://:0:0:0:0 | [summary] to write: return (return) in init(buffer:) :  |
@@ -34,6 +35,14 @@ edges
 | data.swift:62:2:62:58 | [summary param] this in shuffled(using:) :  | file://:0:0:0:0 | [summary] to write: return (return) in shuffled(using:) :  |
 | data.swift:63:2:63:123 | [summary param] this in trimmingPrefix(_:) :  | file://:0:0:0:0 | [summary] to write: return (return) in trimmingPrefix(_:) :  |
 | data.swift:64:2:64:72 | [summary param] this in trimmingPrefix(while:) :  | file://:0:0:0:0 | [summary] to write: return (return) in trimmingPrefix(while:) :  |
+| data.swift:81:20:81:51 | call to init(_:) :  | data.swift:82:26:82:26 | dataTainted :  |
+| data.swift:81:20:81:51 | call to init(_:) :  | data.swift:85:12:85:12 | dataTainted |
+| data.swift:81:25:81:47 | .utf8 :  | data.swift:24:5:24:29 | [summary param] 0 in init(_:) :  |
+| data.swift:81:25:81:47 | .utf8 :  | data.swift:81:20:81:51 | call to init(_:) :  |
+| data.swift:81:26:81:33 | call to source() :  | data.swift:81:25:81:47 | .utf8 :  |
+| data.swift:82:21:82:37 | call to init(_:) :  | data.swift:86:12:86:12 | dataTainted2 |
+| data.swift:82:26:82:26 | dataTainted :  | data.swift:24:5:24:29 | [summary param] 0 in init(_:) :  |
+| data.swift:82:26:82:26 | dataTainted :  | data.swift:82:21:82:37 | call to init(_:) :  |
 | data.swift:89:21:89:71 | call to init(base64Encoded:options:) :  | data.swift:90:12:90:12 | dataTainted3 |
 | data.swift:89:41:89:48 | call to source() :  | data.swift:25:2:25:66 | [summary param] 0 in init(base64Encoded:options:) :  |
 | data.swift:89:41:89:48 | call to source() :  | data.swift:89:21:89:71 | call to init(base64Encoded:options:) :  |
@@ -303,9 +312,9 @@ edges
 | string.swift:28:17:28:25 | call to source2() :  | string.swift:39:13:39:29 | ... .+(_:_:) ... |
 | string.swift:74:17:74:25 | call to source2() :  | string.swift:85:13:85:21 | .description |
 | string.swift:74:17:74:25 | call to source2() :  | string.swift:88:13:88:21 | .debugDescription |
-| string.swift:97:17:97:25 | call to source2() :  | string.swift:102:13:102:13 | tainted |
-| string.swift:98:24:98:32 | call to source2() :  | string.swift:103:13:103:13 | taintedCString |
-| string.swift:99:31:99:39 | call to source2() :  | string.swift:104:13:104:13 | taintedUnicodeScalars |
+| string.swift:121:17:121:25 | call to source2() :  | string.swift:126:13:126:13 | tainted |
+| string.swift:122:24:122:32 | call to source2() :  | string.swift:127:13:127:13 | taintedCString |
+| string.swift:123:31:123:39 | call to source2() :  | string.swift:128:13:128:13 | taintedUnicodeScalars |
 | subscript.swift:13:15:13:22 | call to source() :  | subscript.swift:13:15:13:25 | ...[...] |
 | subscript.swift:14:15:14:23 | call to source2() :  | subscript.swift:14:15:14:26 | ...[...] |
 | try.swift:9:17:9:24 | call to source() :  | try.swift:9:13:9:24 | try ... |
@@ -546,6 +555,7 @@ edges
 | webview.swift:137:34:137:41 | call to source() :  | webview.swift:66:5:66:126 | [summary param] 0 in init(source:injectionTime:forMainFrameOnly:in:) :  |
 | webview.swift:137:34:137:41 | call to source() :  | webview.swift:137:13:137:113 | call to init(source:injectionTime:forMainFrameOnly:in:) :  |
 nodes
+| data.swift:24:5:24:29 | [summary param] 0 in init(_:) :  | semmle.label | [summary param] 0 in init(_:) :  |
 | data.swift:25:2:25:66 | [summary param] 0 in init(base64Encoded:options:) :  | semmle.label | [summary param] 0 in init(base64Encoded:options:) :  |
 | data.swift:26:2:26:61 | [summary param] 0 in init(buffer:) :  | semmle.label | [summary param] 0 in init(buffer:) :  |
 | data.swift:27:2:27:62 | [summary param] 0 in init(buffer:) :  | semmle.label | [summary param] 0 in init(buffer:) :  |
@@ -581,6 +591,13 @@ nodes
 | data.swift:62:2:62:58 | [summary param] this in shuffled(using:) :  | semmle.label | [summary param] this in shuffled(using:) :  |
 | data.swift:63:2:63:123 | [summary param] this in trimmingPrefix(_:) :  | semmle.label | [summary param] this in trimmingPrefix(_:) :  |
 | data.swift:64:2:64:72 | [summary param] this in trimmingPrefix(while:) :  | semmle.label | [summary param] this in trimmingPrefix(while:) :  |
+| data.swift:81:20:81:51 | call to init(_:) :  | semmle.label | call to init(_:) :  |
+| data.swift:81:25:81:47 | .utf8 :  | semmle.label | .utf8 :  |
+| data.swift:81:26:81:33 | call to source() :  | semmle.label | call to source() :  |
+| data.swift:82:21:82:37 | call to init(_:) :  | semmle.label | call to init(_:) :  |
+| data.swift:82:26:82:26 | dataTainted :  | semmle.label | dataTainted :  |
+| data.swift:85:12:85:12 | dataTainted | semmle.label | dataTainted |
+| data.swift:86:12:86:12 | dataTainted2 | semmle.label | dataTainted2 |
 | data.swift:89:21:89:71 | call to init(base64Encoded:options:) :  | semmle.label | call to init(base64Encoded:options:) :  |
 | data.swift:89:41:89:48 | call to source() :  | semmle.label | call to source() :  |
 | data.swift:90:12:90:12 | dataTainted3 | semmle.label | dataTainted3 |
@@ -739,6 +756,7 @@ nodes
 | file://:0:0:0:0 | [summary] to write: return (return) in flatMap(_:) :  | semmle.label | [summary] to write: return (return) in flatMap(_:) :  |
 | file://:0:0:0:0 | [summary] to write: return (return) in flatMap(_:) :  | semmle.label | [summary] to write: return (return) in flatMap(_:) :  |
 | file://:0:0:0:0 | [summary] to write: return (return) in forProperty(_:) :  | semmle.label | [summary] to write: return (return) in forProperty(_:) :  |
+| file://:0:0:0:0 | [summary] to write: return (return) in init(_:) :  | semmle.label | [summary] to write: return (return) in init(_:) :  |
 | file://:0:0:0:0 | [summary] to write: return (return) in init(base64Encoded:options:) :  | semmle.label | [summary] to write: return (return) in init(base64Encoded:options:) :  |
 | file://:0:0:0:0 | [summary] to write: return (return) in init(base64Encoded:options:) :  | semmle.label | [summary] to write: return (return) in init(base64Encoded:options:) :  |
 | file://:0:0:0:0 | [summary] to write: return (return) in init(base64Encoded:options:) :  | semmle.label | [summary] to write: return (return) in init(base64Encoded:options:) :  |
@@ -948,12 +966,12 @@ nodes
 | string.swift:74:17:74:25 | call to source2() :  | semmle.label | call to source2() :  |
 | string.swift:85:13:85:21 | .description | semmle.label | .description |
 | string.swift:88:13:88:21 | .debugDescription | semmle.label | .debugDescription |
-| string.swift:97:17:97:25 | call to source2() :  | semmle.label | call to source2() :  |
-| string.swift:98:24:98:32 | call to source2() :  | semmle.label | call to source2() :  |
-| string.swift:99:31:99:39 | call to source2() :  | semmle.label | call to source2() :  |
-| string.swift:102:13:102:13 | tainted | semmle.label | tainted |
-| string.swift:103:13:103:13 | taintedCString | semmle.label | taintedCString |
-| string.swift:104:13:104:13 | taintedUnicodeScalars | semmle.label | taintedUnicodeScalars |
+| string.swift:121:17:121:25 | call to source2() :  | semmle.label | call to source2() :  |
+| string.swift:122:24:122:32 | call to source2() :  | semmle.label | call to source2() :  |
+| string.swift:123:31:123:39 | call to source2() :  | semmle.label | call to source2() :  |
+| string.swift:126:13:126:13 | tainted | semmle.label | tainted |
+| string.swift:127:13:127:13 | taintedCString | semmle.label | taintedCString |
+| string.swift:128:13:128:13 | taintedUnicodeScalars | semmle.label | taintedUnicodeScalars |
 | subscript.swift:13:15:13:22 | call to source() :  | semmle.label | call to source() :  |
 | subscript.swift:13:15:13:25 | ...[...] | semmle.label | ...[...] |
 | subscript.swift:14:15:14:23 | call to source2() :  | semmle.label | call to source2() :  |
@@ -1153,6 +1171,8 @@ nodes
 | webview.swift:138:10:138:10 | c | semmle.label | c |
 | webview.swift:139:10:139:12 | .source | semmle.label | .source |
 subpaths
+| data.swift:81:25:81:47 | .utf8 :  | data.swift:24:5:24:29 | [summary param] 0 in init(_:) :  | file://:0:0:0:0 | [summary] to write: return (return) in init(_:) :  | data.swift:81:20:81:51 | call to init(_:) :  |
+| data.swift:82:26:82:26 | dataTainted :  | data.swift:24:5:24:29 | [summary param] 0 in init(_:) :  | file://:0:0:0:0 | [summary] to write: return (return) in init(_:) :  | data.swift:82:21:82:37 | call to init(_:) :  |
 | data.swift:89:41:89:48 | call to source() :  | data.swift:25:2:25:66 | [summary param] 0 in init(base64Encoded:options:) :  | file://:0:0:0:0 | [summary] to write: return (return) in init(base64Encoded:options:) :  | data.swift:89:21:89:71 | call to init(base64Encoded:options:) :  |
 | data.swift:93:34:93:41 | call to source() :  | data.swift:26:2:26:61 | [summary param] 0 in init(buffer:) :  | file://:0:0:0:0 | [summary] to write: return (return) in init(buffer:) :  | data.swift:93:21:93:73 | call to init(buffer:) :  |
 | data.swift:95:34:95:41 | call to source() :  | data.swift:27:2:27:62 | [summary param] 0 in init(buffer:) :  | file://:0:0:0:0 | [summary] to write: return (return) in init(buffer:) :  | data.swift:95:21:95:74 | call to init(buffer:) :  |
@@ -1274,6 +1294,8 @@ subpaths
 | webview.swift:132:34:132:41 | call to source() :  | webview.swift:65:5:65:93 | [summary param] 0 in init(source:injectionTime:forMainFrameOnly:) :  | file://:0:0:0:0 | [summary] to write: return (return) in init(source:injectionTime:forMainFrameOnly:) :  | webview.swift:132:13:132:102 | call to init(source:injectionTime:forMainFrameOnly:) :  |
 | webview.swift:137:34:137:41 | call to source() :  | webview.swift:66:5:66:126 | [summary param] 0 in init(source:injectionTime:forMainFrameOnly:in:) :  | file://:0:0:0:0 | [summary] to write: return (return) in init(source:injectionTime:forMainFrameOnly:in:) :  | webview.swift:137:13:137:113 | call to init(source:injectionTime:forMainFrameOnly:in:) :  |
 #select
+| data.swift:85:12:85:12 | dataTainted | data.swift:81:26:81:33 | call to source() :  | data.swift:85:12:85:12 | dataTainted | result |
+| data.swift:86:12:86:12 | dataTainted2 | data.swift:81:26:81:33 | call to source() :  | data.swift:86:12:86:12 | dataTainted2 | result |
 | data.swift:90:12:90:12 | dataTainted3 | data.swift:89:41:89:48 | call to source() :  | data.swift:90:12:90:12 | dataTainted3 | result |
 | data.swift:94:12:94:12 | dataTainted4 | data.swift:93:34:93:41 | call to source() :  | data.swift:94:12:94:12 | dataTainted4 | result |
 | data.swift:96:12:96:12 | dataTainted5 | data.swift:95:34:95:41 | call to source() :  | data.swift:96:12:96:12 | dataTainted5 | result |
@@ -1356,9 +1378,9 @@ subpaths
 | string.swift:39:13:39:29 | ... .+(_:_:) ... | string.swift:28:17:28:25 | call to source2() :  | string.swift:39:13:39:29 | ... .+(_:_:) ... | result |
 | string.swift:85:13:85:21 | .description | string.swift:74:17:74:25 | call to source2() :  | string.swift:85:13:85:21 | .description | result |
 | string.swift:88:13:88:21 | .debugDescription | string.swift:74:17:74:25 | call to source2() :  | string.swift:88:13:88:21 | .debugDescription | result |
-| string.swift:102:13:102:13 | tainted | string.swift:97:17:97:25 | call to source2() :  | string.swift:102:13:102:13 | tainted | result |
-| string.swift:103:13:103:13 | taintedCString | string.swift:98:24:98:32 | call to source2() :  | string.swift:103:13:103:13 | taintedCString | result |
-| string.swift:104:13:104:13 | taintedUnicodeScalars | string.swift:99:31:99:39 | call to source2() :  | string.swift:104:13:104:13 | taintedUnicodeScalars | result |
+| string.swift:126:13:126:13 | tainted | string.swift:121:17:121:25 | call to source2() :  | string.swift:126:13:126:13 | tainted | result |
+| string.swift:127:13:127:13 | taintedCString | string.swift:122:24:122:32 | call to source2() :  | string.swift:127:13:127:13 | taintedCString | result |
+| string.swift:128:13:128:13 | taintedUnicodeScalars | string.swift:123:31:123:39 | call to source2() :  | string.swift:128:13:128:13 | taintedUnicodeScalars | result |
 | subscript.swift:13:15:13:25 | ...[...] | subscript.swift:13:15:13:22 | call to source() :  | subscript.swift:13:15:13:25 | ...[...] | result |
 | subscript.swift:14:15:14:26 | ...[...] | subscript.swift:14:15:14:23 | call to source2() :  | subscript.swift:14:15:14:26 | ...[...] | result |
 | try.swift:9:13:9:24 | try ... | try.swift:9:17:9:24 | call to source() :  | try.swift:9:13:9:24 | try ... | result |

From 9d17fae00cdfdfb47043dd26596139d8762b6cc7 Mon Sep 17 00:00:00 2001
From: Karim Ali <karim.ali@ualberta.ca>
Date: Tue, 29 Nov 2022 15:24:12 +0200
Subject: [PATCH 0787/1420] fix expected output for TaintInline

---
 swift/ql/test/library-tests/dataflow/taint/TaintInline.expected | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/swift/ql/test/library-tests/dataflow/taint/TaintInline.expected b/swift/ql/test/library-tests/dataflow/taint/TaintInline.expected
index e69de29bb2d..3e49fbfe3af 100644
--- a/swift/ql/test/library-tests/dataflow/taint/TaintInline.expected
+++ b/swift/ql/test/library-tests/dataflow/taint/TaintInline.expected
@@ -0,0 +1,2 @@
+| data.swift:85:12:85:12 | dataTainted | Fixed missing result:tainted=81 |
+| data.swift:86:12:86:12 | dataTainted2 | Fixed missing result:tainted=81 |
\ No newline at end of file

From 9048d5d79b04846b3afdbf6c14258dcb490a99e8 Mon Sep 17 00:00:00 2001
From: Karim Ali <karim.ali@ualberta.ca>
Date: Tue, 29 Nov 2022 15:38:44 +0200
Subject: [PATCH 0788/1420] fix expected output for LocalTaint

---
 .../dataflow/taint/LocalTaint.expected        | 26 ++++++++++++-------
 1 file changed, 17 insertions(+), 9 deletions(-)

diff --git a/swift/ql/test/library-tests/dataflow/taint/LocalTaint.expected b/swift/ql/test/library-tests/dataflow/taint/LocalTaint.expected
index 60dde1510ef..1e3d799cd58 100644
--- a/swift/ql/test/library-tests/dataflow/taint/LocalTaint.expected
+++ b/swift/ql/test/library-tests/dataflow/taint/LocalTaint.expected
@@ -120,11 +120,13 @@
 | data.swift:80:6:80:6 | SSA def(dataClean) | data.swift:84:12:84:12 | dataClean |
 | data.swift:80:18:80:18 | Data.Type | data.swift:80:18:80:18 | call to init(_:) |
 | data.swift:80:18:80:36 | call to init(_:) | data.swift:80:6:80:6 | SSA def(dataClean) |
+| data.swift:80:23:80:23 | 123456 | data.swift:80:23:80:32 | .utf8 |
 | data.swift:80:23:80:32 | .utf8 | data.swift:80:18:80:36 | call to init(_:) |
 | data.swift:81:6:81:6 | SSA def(dataTainted) | data.swift:82:26:82:26 | dataTainted |
 | data.swift:81:20:81:20 | Data.Type | data.swift:81:20:81:20 | call to init(_:) |
 | data.swift:81:20:81:51 | call to init(_:) | data.swift:81:6:81:6 | SSA def(dataTainted) |
 | data.swift:81:25:81:47 | .utf8 | data.swift:81:20:81:51 | call to init(_:) |
+| data.swift:81:26:81:33 | call to source() | data.swift:81:25:81:47 | .utf8 |
 | data.swift:82:6:82:6 | SSA def(dataTainted2) | data.swift:86:12:86:12 | dataTainted2 |
 | data.swift:82:21:82:21 | Data.Type | data.swift:82:21:82:21 | call to init(_:) |
 | data.swift:82:21:82:37 | call to init(_:) | data.swift:82:6:82:6 | SSA def(dataTainted2) |
@@ -600,8 +602,6 @@
 | nsmutabledata.swift:49:15:49:15 | nsMutableDataTainted6 | nsmutabledata.swift:49:15:49:37 | .mutableBytes |
 | string.swift:5:7:5:7 | SSA def(x) | string.swift:7:16:7:16 | x |
 | string.swift:5:11:5:18 | call to source() | string.swift:5:7:5:7 | SSA def(x) |
-| data.swift:20:23:20:23 | 123456 | data.swift:20:23:20:32 | .utf8 |
-| data.swift:21:25:21:32 | call to source() | data.swift:21:25:21:34 | .utf8 |
 | string.swift:7:13:7:13 |  | string.swift:7:13:7:13 | [post]  |
 | string.swift:7:13:7:13 |  | string.swift:7:14:7:14 | [post] &... |
 | string.swift:7:13:7:13 | SSA def($interpolation) | string.swift:7:14:7:14 | SSA phi($interpolation) |
@@ -900,9 +900,13 @@
 | string.swift:81:31:81:31 | clean | string.swift:84:13:84:13 | clean |
 | string.swift:82:31:82:31 | tainted | string.swift:85:13:85:13 | tainted |
 | string.swift:84:13:84:13 | [post] clean | string.swift:87:13:87:13 | clean |
+| string.swift:84:13:84:13 | clean | string.swift:84:13:84:19 | .description |
 | string.swift:84:13:84:13 | clean | string.swift:87:13:87:13 | clean |
 | string.swift:85:13:85:13 | [post] tainted | string.swift:88:13:88:13 | tainted |
+| string.swift:85:13:85:13 | tainted | string.swift:85:13:85:21 | .description |
 | string.swift:85:13:85:13 | tainted | string.swift:88:13:88:13 | tainted |
+| string.swift:87:13:87:13 | clean | string.swift:87:13:87:19 | .debugDescription |
+| string.swift:88:13:88:13 | tainted | string.swift:88:13:88:21 | .debugDescription |
 | string.swift:91:7:91:7 | SSA def(self) | string.swift:91:7:91:7 | self[return] |
 | string.swift:91:7:91:7 | self | string.swift:91:7:91:7 | SSA def(self) |
 | string.swift:93:5:93:5 | SSA def(self) | string.swift:93:5:93:29 | self[return] |
@@ -925,6 +929,17 @@
 | string.swift:109:23:109:77 | call to init(data:encoding:) | string.swift:109:7:109:7 | SSA def(stringTainted) |
 | string.swift:111:12:111:12 | stringClean | string.swift:111:12:111:23 | ...! |
 | string.swift:112:12:112:12 | stringTainted | string.swift:112:12:112:25 | ...! |
+| string.swift:120:7:120:7 | SSA def(clean) | string.swift:125:13:125:13 | clean |
+| string.swift:120:15:120:15 |  | string.swift:120:7:120:7 | SSA def(clean) |
+| string.swift:121:7:121:7 | SSA def(tainted) | string.swift:126:13:126:13 | tainted |
+| string.swift:121:17:121:25 | call to source2() | string.swift:121:17:121:27 | .utf8 |
+| string.swift:121:17:121:27 | .utf8 | string.swift:121:7:121:7 | SSA def(tainted) |
+| string.swift:122:7:122:7 | SSA def(taintedCString) | string.swift:127:13:127:13 | taintedCString |
+| string.swift:122:24:122:32 | call to source2() | string.swift:122:24:122:34 | .utf8CString |
+| string.swift:122:24:122:34 | .utf8CString | string.swift:122:7:122:7 | SSA def(taintedCString) |
+| string.swift:123:7:123:7 | SSA def(taintedUnicodeScalars) | string.swift:128:13:128:13 | taintedUnicodeScalars |
+| string.swift:123:31:123:39 | call to source2() | string.swift:123:31:123:41 | .unicodeScalars |
+| string.swift:123:31:123:41 | .unicodeScalars | string.swift:123:7:123:7 | SSA def(taintedUnicodeScalars) |
 | subscript.swift:1:7:1:7 | SSA def(self) | subscript.swift:1:7:1:7 | self[return] |
 | subscript.swift:1:7:1:7 | SSA def(self) | subscript.swift:1:7:1:7 | self[return] |
 | subscript.swift:1:7:1:7 | self | subscript.swift:1:7:1:7 | SSA def(self) |
@@ -934,13 +949,6 @@
 | subscript.swift:3:9:3:9 | self | subscript.swift:3:9:3:9 | SSA def(self) |
 | subscript.swift:4:9:4:9 | SSA def(self) | subscript.swift:4:9:4:24 | self[return] |
 | subscript.swift:4:9:4:9 | self | subscript.swift:4:9:4:9 | SSA def(self) |
-| string.swift:84:13:84:13 | clean | string.swift:84:13:84:19 | .description |
-| string.swift:85:13:85:13 | tainted | string.swift:85:13:85:21 | .description |
-| string.swift:87:13:87:13 | clean | string.swift:87:13:87:19 | .debugDescription |
-| string.swift:88:13:88:13 | tainted | string.swift:88:13:88:21 | .debugDescription |
-| string.swift:97:17:97:25 | call to source2() | string.swift:97:17:97:27 | .utf8 |
-| string.swift:98:24:98:32 | call to source2() | string.swift:98:24:98:34 | .utf8CString |
-| string.swift:99:31:99:39 | call to source2() | string.swift:99:31:99:41 | .unicodeScalars |
 | subscript.swift:13:15:13:22 | call to source() | subscript.swift:13:15:13:25 | ...[...] |
 | subscript.swift:14:15:14:23 | call to source2() | subscript.swift:14:15:14:26 | ...[...] |
 | try.swift:8:17:8:23 | call to clean() | try.swift:8:13:8:23 | try ... |

From 86e045916d9c6e0749abc79baa0de7dc69708249 Mon Sep 17 00:00:00 2001
From: Tom Hvitved <hvitved@github.com>
Date: Tue, 29 Nov 2022 13:55:50 +0100
Subject: [PATCH 0789/1420] Ruby: Rework call-context sensitivity logic

---
 .../dataflow/internal/DataFlowDispatch.qll    | 81 ++++++++-----------
 1 file changed, 35 insertions(+), 46 deletions(-)

diff --git a/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowDispatch.qll b/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowDispatch.qll
index 5b39b6c407d..f30f2a020b6 100644
--- a/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowDispatch.qll
+++ b/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowDispatch.qll
@@ -975,34 +975,26 @@ private DataFlow::Node trackSingletonMethodOnInstance(MethodBase method, string
   result = trackSingletonMethodOnInstance(method, name, TypeTracker::end())
 }
 
-/** Same as `isInstance`, but includes local must-flow through SSA definitions. */
-private predicate isInstanceLocalMustFlow(DataFlow::Node n, Module tp, boolean exact) {
-  isInstance(n, tp, exact)
-  or
-  exists(DataFlow::Node mid | isInstanceLocalMustFlow(mid, tp, exact) |
-    n.asExpr() = mid.(SsaDefinitionNode).getDefinition().getARead()
-    or
-    n.(SsaDefinitionNode).getDefinition().(Ssa::WriteDefinition).assigns(mid.asExpr())
-  )
-}
-
 /**
  * Holds if `ctx` targets `encl`, which is the enclosing callable of `call`, the receiver
  * of `call` is a parameter access, where the corresponding argument of `ctx` is `arg`.
  *
- * `name` is the name of the method being called by `call`.
+ * `name` is the name of the method being called by `call`, `source` is a
+ * `LocalSourceNode` that flows to `arg`, and `paramDef` is the SSA definition for the
+ * parameter that is the receiver of `call`.
  */
 pragma[nomagic]
-private predicate argFlowsToReceiver(
-  RelevantCall ctx, ArgumentNode arg, RelevantCall call, Callable encl, string name
+private predicate argMustFlowToReceiver(
+  RelevantCall ctx, DataFlow::LocalSourceNode source, ArgumentNode arg, SsaDefinitionNode paramDef,
+  RelevantCall call, Callable encl, string name
 ) {
-  exists(
-    ParameterNodeImpl p, SsaDefinitionNode ssaNode, ParameterPosition ppos, ArgumentPosition apos
-  |
+  exists(ParameterNodeImpl p, ParameterPosition ppos, ArgumentPosition apos |
     // the receiver of `call` references `p`
-    LocalFlow::localFlowSsaParamInput(p, ssaNode) and
-    flowsToMethodCallReceiver(pragma[only_bind_into](call), pragma[only_bind_into](ssaNode),
-      pragma[only_bind_into](name)) and
+    exists(DataFlow::Node receiver |
+      LocalFlow::localFlowSsaParamInput(p, paramDef) and
+      methodCall(pragma[only_bind_into](call), receiver, pragma[only_bind_into](name)) and
+      receiver.asExpr() = paramDef.getDefinition().getARead()
+    ) and
     // `p` is a parameter of `encl`,
     encl = call.getScope() and
     p.isParameterOf(TCfgScope(encl), ppos) and
@@ -1010,7 +1002,8 @@ private predicate argFlowsToReceiver(
     getTarget(ctx) = encl and
     // `arg` is the argument for `p` in the call `ctx`
     arg.sourceArgumentOf(ctx, apos) and
-    parameterMatch(ppos, apos)
+    parameterMatch(ppos, apos) and
+    source.flowsTo(arg)
   )
 }
 
@@ -1027,20 +1020,11 @@ private predicate mayBenefitFromCallContextInstance(
   RelevantCall ctx, RelevantCall call, ArgumentNode arg, Callable encl, Module tp, boolean exact,
   string name
 ) {
-  argFlowsToReceiver(ctx, pragma[only_bind_into](arg), call, encl, pragma[only_bind_into](name)) and
-  // `arg` has a relevant instance type
-  isInstanceLocalMustFlow(arg, tp, exact) and
-  exists(lookupMethod(tp, pragma[only_bind_into](name)))
-}
-
-/** Same as `resolveConstantReadAccess`, but includes local must-flow through SSA definitions. */
-private predicate resolveConstantReadAccessMustFlow(DataFlow::Node n, Module tp) {
-  tp = resolveConstantReadAccess(n.asExpr().getExpr())
-  or
-  exists(DataFlow::Node mid | resolveConstantReadAccessMustFlow(mid, tp) |
-    n.asExpr() = mid.(SsaDefinitionNode).getDefinition().getARead()
-    or
-    n.(SsaDefinitionNode).getDefinition().(Ssa::WriteDefinition).assigns(mid.asExpr())
+  exists(DataFlow::LocalSourceNode source |
+    argMustFlowToReceiver(ctx, pragma[only_bind_into](source), arg, _, call, encl,
+      pragma[only_bind_into](name)) and
+    source = trackInstance(tp, exact) and
+    exists(lookupMethod(tp, pragma[only_bind_into](name)))
   )
 }
 
@@ -1057,10 +1041,12 @@ private predicate mayBenefitFromCallContextSingleton(
   RelevantCall ctx, RelevantCall call, ArgumentNode arg, Callable encl, Module tp, boolean exact,
   string name
 ) {
-  argFlowsToReceiver(ctx, pragma[only_bind_into](arg), call, encl, pragma[only_bind_into](name)) and
-  // `arg` has a relevant module type
-  (
-    resolveConstantReadAccessMustFlow(arg, tp) and
+  exists(DataFlow::LocalSourceNode source |
+    argMustFlowToReceiver(ctx, pragma[only_bind_into](source), pragma[only_bind_into](arg), _, call,
+      encl, pragma[only_bind_into](name)) and
+    exists(lookupSingletonMethod(tp, pragma[only_bind_into](name), exact))
+  |
+    source = trackModuleAccess(tp) and
     exact = true
     or
     exists(SelfVariable self | arg.asExpr().getExpr() = self.getAnAccess() |
@@ -1073,8 +1059,7 @@ private predicate mayBenefitFromCallContextSingleton(
         exact = false
       )
     )
-  ) and
-  exists(lookupSingletonMethod(tp, pragma[only_bind_into](name), exact))
+  )
 }
 
 /**
@@ -1101,7 +1086,7 @@ DataFlowCallable viableImplInCallContext(DataFlowCall call, DataFlowCall ctx) {
     exists(RelevantCall call0, Callable res |
       call0 = call.asCall() and
       res = result.asCallable() and
-      res = getTarget(call0) and // make sure to not include e.g. private methods
+      result = viableSourceCallable(call) and // make sure to not include e.g. private methods
       exists(Module m, boolean exact, string name |
         mayBenefitFromCallContextInstance(ctx.asCall(), pragma[only_bind_into](call0), _, _,
           pragma[only_bind_into](m), exact, pragma[only_bind_into](name)) and
@@ -1113,18 +1098,22 @@ DataFlowCallable viableImplInCallContext(DataFlowCall call, DataFlowCall ctx) {
       )
     )
     or
-    // `ctx` cannot provide a type bound
-    exists(RelevantCall call0, RelevantCall ctx0, ArgumentNode arg, string name |
+    // `ctx` cannot provide a type bound, and the receiver of the call is `self`;
+    // in this case, still apply an open-world assumption
+    exists(
+      RelevantCall call0, RelevantCall ctx0, ArgumentNode arg, SsaSelfDefinitionNode self,
+      string name
+    |
       call0 = call.asCall() and
       ctx0 = ctx.asCall() and
-      argFlowsToReceiver(ctx0, arg, call0, _, name) and
+      argMustFlowToReceiver(ctx0, _, arg, self, call0, _, name) and
       not mayBenefitFromCallContextInstance(ctx0, call0, arg, _, _, _, name) and
       not mayBenefitFromCallContextSingleton(ctx0, call0, arg, _, _, _, name) and
       result = viableSourceCallable(call)
     )
     or
     // library calls should always be able to resolve
-    argFlowsToReceiver(ctx.asCall(), _, call.asCall(), _, _) and
+    argMustFlowToReceiver(ctx.asCall(), _, _, _, call.asCall(), _, _) and
     result = viableLibraryCallable(call)
   )
 }

From 544de5232c331fcbd7cb0fe33e9070115f3ad3e7 Mon Sep 17 00:00:00 2001
From: Rasmus Wriedt Larsen <rasmuswl@github.com>
Date: Tue, 29 Nov 2022 14:47:45 +0100
Subject: [PATCH 0790/1420] Python: Use ' instead of ` in select text

---
 python/ql/src/Security/CWE-285/PamAuthorization.ql              | 2 +-
 .../Security/CWE-285-PamAuthorization/PamAuthorization.expected | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/python/ql/src/Security/CWE-285/PamAuthorization.ql b/python/ql/src/Security/CWE-285/PamAuthorization.ql
index 3093bcf21d5..43cbc33917a 100644
--- a/python/ql/src/Security/CWE-285/PamAuthorization.ql
+++ b/python/ql/src/Security/CWE-285/PamAuthorization.ql
@@ -18,5 +18,5 @@ import semmle.python.security.dataflow.PamAuthorizationQuery
 from Configuration config, DataFlow::PathNode source, DataFlow::PathNode sink
 where config.hasFlowPath(source, sink)
 select sink.getNode(), source, sink,
-  "This PAM authentication depends on a $@, and `pam_acct_mgmt` is not called afterwards.",
+  "This PAM authentication depends on a $@, and 'pam_acct_mgmt' is not called afterwards.",
   source.getNode(), "user-provided value"
diff --git a/python/ql/test/query-tests/Security/CWE-285-PamAuthorization/PamAuthorization.expected b/python/ql/test/query-tests/Security/CWE-285-PamAuthorization/PamAuthorization.expected
index d2abf9a88ea..3cb2cf2782d 100644
--- a/python/ql/test/query-tests/Security/CWE-285-PamAuthorization/PamAuthorization.expected
+++ b/python/ql/test/query-tests/Security/CWE-285-PamAuthorization/PamAuthorization.expected
@@ -13,4 +13,4 @@ nodes
 | pam_test.py:76:14:76:40 | ControlFlowNode for pam_authenticate() | semmle.label | ControlFlowNode for pam_authenticate() |
 subpaths
 #select
-| pam_test.py:76:14:76:40 | ControlFlowNode for pam_authenticate() | pam_test.py:4:26:4:32 | ControlFlowNode for ImportMember | pam_test.py:76:14:76:40 | ControlFlowNode for pam_authenticate() | This PAM authentication depends on a $@, and `pam_acct_mgmt` is not called afterwards. | pam_test.py:4:26:4:32 | ControlFlowNode for ImportMember | user-provided value |
+| pam_test.py:76:14:76:40 | ControlFlowNode for pam_authenticate() | pam_test.py:4:26:4:32 | ControlFlowNode for ImportMember | pam_test.py:76:14:76:40 | ControlFlowNode for pam_authenticate() | This PAM authentication depends on a $@, and 'pam_acct_mgmt' is not called afterwards. | pam_test.py:4:26:4:32 | ControlFlowNode for ImportMember | user-provided value |

From e5f1fe86e4c622c87969e670292a5b83db40ff79 Mon Sep 17 00:00:00 2001
From: erik-krogh <erik-krogh@github.com>
Date: Tue, 29 Nov 2022 15:02:08 +0100
Subject: [PATCH 0791/1420] don't crash on non-existing cache in swift

---
 swift/actions/build-and-test/action.yml | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/swift/actions/build-and-test/action.yml b/swift/actions/build-and-test/action.yml
index 03706263d21..52a6415fedf 100644
--- a/swift/actions/build-and-test/action.yml
+++ b/swift/actions/build-and-test/action.yml
@@ -50,5 +50,5 @@ runs:
       if: ${{ github.event_name != 'pull_request' }}
       shell: bash
       run: |
-        find "~/.cache/bazel-repository-cache" "~/.cache/bazel-disk-cache" -atime +0 -type f -delete
-        du -sh "~/.cache/bazel-repository-cache" "~/.cache/bazel-disk-cache"
+        find "~/.cache/bazel-repository-cache" "~/.cache/bazel-disk-cache" -atime +0 -type f -delete || : # ignore errors if the cache is empty
+        du -sh "~/.cache/bazel-repository-cache" "~/.cache/bazel-disk-cache" || : # ignore errors if the cache is empty

From d7aea228ce114ab7ae37574f390ded4232d90246 Mon Sep 17 00:00:00 2001
From: Rasmus Wriedt Larsen <rasmuswl@github.com>
Date: Tue, 29 Nov 2022 15:10:09 +0100
Subject: [PATCH 0792/1420] Python: Add taint-sinks meta query

Inspired by the one they have in JS:
https://github.com/github/codeql/blob/097d5189e9bbaecfd0e239e5198ac8e8ac14f2f6/javascript/ql/src/meta/alerts/TaintSinks.ql
---
 python/ql/src/meta/alerts/TaintSinks.ql | 87 +++++++++++++++++++++++++
 1 file changed, 87 insertions(+)
 create mode 100644 python/ql/src/meta/alerts/TaintSinks.ql

diff --git a/python/ql/src/meta/alerts/TaintSinks.ql b/python/ql/src/meta/alerts/TaintSinks.ql
new file mode 100644
index 00000000000..634ef18f129
--- /dev/null
+++ b/python/ql/src/meta/alerts/TaintSinks.ql
@@ -0,0 +1,87 @@
+/**
+ * @name Taint sinks
+ * @description Sinks from TaintTracking queries.
+ * @kind problem
+ * @problem.severity recommendation
+ * @id py/meta/alerts/taint-sinks
+ * @tags meta
+ * @precision very-low
+ */
+
+private import python
+private import semmle.python.dataflow.new.DataFlow
+private import meta.MetaMetrics
+import semmle.python.security.dataflow.CleartextLoggingCustomizations
+import semmle.python.security.dataflow.CleartextStorageCustomizations
+import semmle.python.security.dataflow.CodeInjectionCustomizations
+import semmle.python.security.dataflow.CommandInjectionCustomizations
+import semmle.python.security.dataflow.LdapInjectionCustomizations
+import semmle.python.security.dataflow.LogInjectionCustomizations
+import semmle.python.security.dataflow.PathInjectionCustomizations
+import semmle.python.security.dataflow.PolynomialReDoSCustomizations
+import semmle.python.security.dataflow.ReflectedXSSCustomizations
+import semmle.python.security.dataflow.RegexInjectionCustomizations
+import semmle.python.security.dataflow.ServerSideRequestForgeryCustomizations
+import semmle.python.security.dataflow.SqlInjectionCustomizations
+import semmle.python.security.dataflow.StackTraceExposureCustomizations
+import semmle.python.security.dataflow.TarSlipCustomizations
+import semmle.python.security.dataflow.UnsafeDeserializationCustomizations
+import semmle.python.security.dataflow.UrlRedirectCustomizations
+import semmle.python.security.dataflow.WeakSensitiveDataHashingCustomizations
+import semmle.python.security.dataflow.XmlBombCustomizations
+import semmle.python.security.dataflow.XpathInjectionCustomizations
+import semmle.python.security.dataflow.XxeCustomizations
+
+DataFlow::Node relevantTaintSink(string kind) {
+  not result.getLocation().getFile() instanceof IgnoredFile and
+  (
+    kind = "CleartextLogging" and result instanceof CleartextLogging::Sink
+    or
+    kind = "CleartextStorage" and result instanceof CleartextStorage::Sink
+    or
+    kind = "CodeInjection" and result instanceof CodeInjection::Sink
+    or
+    kind = "CommandInjection" and result instanceof CommandInjection::Sink
+    or
+    kind = "LdapInjection (DN)" and result instanceof LdapInjection::DnSink
+    or
+    kind = "LdapInjection (Filter)" and result instanceof LdapInjection::FilterSink
+    or
+    kind = "LogInjection" and result instanceof LogInjection::Sink
+    or
+    kind = "PathInjection" and result instanceof PathInjection::Sink
+    or
+    kind = "PolynomialReDoS" and result instanceof PolynomialReDoS::Sink
+    or
+    kind = "ReflectedXss" and result instanceof ReflectedXss::Sink
+    or
+    kind = "RegexInjection" and result instanceof RegexInjection::Sink
+    or
+    kind = "ServerSideRequestForgery" and result instanceof ServerSideRequestForgery::Sink
+    or
+    kind = "SqlInjection" and result instanceof SqlInjection::Sink
+    or
+    kind = "StackTraceExposure" and result instanceof StackTraceExposure::Sink
+    or
+    kind = "TarSlip" and result instanceof TarSlip::Sink
+    or
+    kind = "UnsafeDeserialization" and result instanceof UnsafeDeserialization::Sink
+    or
+    kind = "UrlRedirect" and result instanceof UrlRedirect::Sink
+    or
+    kind = "WeakSensitiveDataHashing (NormalHashFunction)" and
+    result instanceof NormalHashFunction::Sink
+    or
+    kind = "WeakSensitiveDataHashing (ComputationallyExpensiveHashFunction)" and
+    result instanceof ComputationallyExpensiveHashFunction::Sink
+    or
+    kind = "XmlBomb" and result instanceof XmlBomb::Sink
+    or
+    kind = "XpathInjection" and result instanceof XpathInjection::Sink
+    or
+    kind = "Xxe" and result instanceof Xxe::Sink
+  )
+}
+
+from string kind
+select relevantTaintSink(kind), kind + " sink"

From 607639c100e5f651d9f8abdfd631835f3c305ef8 Mon Sep 17 00:00:00 2001
From: Rasmus Wriedt Larsen <rasmuswl@github.com>
Date: Tue, 29 Nov 2022 15:10:45 +0100
Subject: [PATCH 0793/1420] Python: restrict `py/meta/points-to-call-graph` to
 non-ignored files

---
 python/ql/src/meta/analysis-quality/CallGraph.ql | 6 +++++-
 1 file changed, 5 insertions(+), 1 deletion(-)

diff --git a/python/ql/src/meta/analysis-quality/CallGraph.ql b/python/ql/src/meta/analysis-quality/CallGraph.ql
index d23ee43014c..49be0157b05 100644
--- a/python/ql/src/meta/analysis-quality/CallGraph.ql
+++ b/python/ql/src/meta/analysis-quality/CallGraph.ql
@@ -10,7 +10,11 @@
 
 import python
 import semmle.python.dataflow.new.internal.DataFlowPrivate
+import meta.MetaMetrics
 
 from DataFlowCall c, DataFlowCallableValue f
-where c.getCallable() = f
+where
+  c.getCallable() = f and
+  not c.getLocation().getFile() instanceof IgnoredFile and
+  not f.getLocation().getFile() instanceof IgnoredFile
 select c, "Call to $@", f.getScope(), f.toString()

From c5b4e87f6ddb3913e6a786c38d0149459c272c01 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Nora=20Dimitrijevi=C4=87?= <d10c@users.noreply.github.com>
Date: Tue, 29 Nov 2022 16:00:00 +0100
Subject: [PATCH 0794/1420] Swift: AccessorDecl tests for new cases

---
 .../swift/elements/decl/AccessorDecl.qll      |  8 +++++++
 .../decl/AccessorDecl/AccessorDecl.expected   | 23 +++++++++++++------
 .../AccessorDecl_getBody.expected             | 23 +++++++++++++------
 .../AccessorDecl_getParam.expected            |  2 ++
 .../AccessorDecl_getSelfParam.expected        | 23 +++++++++++++------
 .../decl/AccessorDecl/accessors.swift         | 18 +++++++++++++++
 6 files changed, 76 insertions(+), 21 deletions(-)

diff --git a/swift/ql/lib/codeql/swift/elements/decl/AccessorDecl.qll b/swift/ql/lib/codeql/swift/elements/decl/AccessorDecl.qll
index da91edb6810..4879a1e47fd 100644
--- a/swift/ql/lib/codeql/swift/elements/decl/AccessorDecl.qll
+++ b/swift/ql/lib/codeql/swift/elements/decl/AccessorDecl.qll
@@ -8,6 +8,14 @@ private predicate isKnownAccessorKind(AccessorDecl decl, string kind) {
   decl.isWillSet() and kind = "willSet"
   or
   decl.isDidSet() and kind = "didSet"
+  or
+  decl.isRead() and kind = "_read"
+  or
+  decl.isModify() and kind = "_modify"
+  or
+  decl.isUnsafeAddress() and kind = "unsafeAddress"
+  or
+  decl.isUnsafeMutableAddress() and kind = "unsafeMutableAddress"
 }
 
 class AccessorDecl extends Generated::AccessorDecl {
diff --git a/swift/ql/test/extractor-tests/generated/decl/AccessorDecl/AccessorDecl.expected b/swift/ql/test/extractor-tests/generated/decl/AccessorDecl/AccessorDecl.expected
index 9927e4ef93b..a93757f0e0c 100644
--- a/swift/ql/test/extractor-tests/generated/decl/AccessorDecl/AccessorDecl.expected
+++ b/swift/ql/test/extractor-tests/generated/decl/AccessorDecl/AccessorDecl.expected
@@ -1,27 +1,36 @@
-| accessors.swift:2:9:2:9 | (unnamed function decl) | getModule: | file://:0:0:0:0 | accessors | getInterfaceType: | (inout Foo) -> () -> () | getName: | (unnamed function decl) | isGetter: | no | isSetter: | no | isWillSet: | no | isDidSet: | no | isRead: | no | isModify: | yes | isUnsafeAddress: | no | isUnsafeMutableAddress: | no |
+| accessors.swift:2:9:2:9 | _modify | getModule: | file://:0:0:0:0 | accessors | getInterfaceType: | (inout Foo) -> () -> () | getName: | (unnamed function decl) | isGetter: | no | isSetter: | no | isWillSet: | no | isDidSet: | no | isRead: | no | isModify: | yes | isUnsafeAddress: | no | isUnsafeMutableAddress: | no |
 | accessors.swift:2:9:2:9 | get | getModule: | file://:0:0:0:0 | accessors | getInterfaceType: | (Foo) -> () -> Int | getName: | (unnamed function decl) | isGetter: | yes | isSetter: | no | isWillSet: | no | isDidSet: | no | isRead: | no | isModify: | no | isUnsafeAddress: | no | isUnsafeMutableAddress: | no |
 | accessors.swift:2:9:2:9 | set | getModule: | file://:0:0:0:0 | accessors | getInterfaceType: | (inout Foo) -> (Int) -> () | getName: | (unnamed function decl) | isGetter: | no | isSetter: | yes | isWillSet: | no | isDidSet: | no | isRead: | no | isModify: | no | isUnsafeAddress: | no | isUnsafeMutableAddress: | no |
-| accessors.swift:3:9:3:9 | (unnamed function decl) | getModule: | file://:0:0:0:0 | accessors | getInterfaceType: | (inout Foo) -> () -> () | getName: | (unnamed function decl) | isGetter: | no | isSetter: | no | isWillSet: | no | isDidSet: | no | isRead: | no | isModify: | yes | isUnsafeAddress: | no | isUnsafeMutableAddress: | no |
+| accessors.swift:3:9:3:9 | _modify | getModule: | file://:0:0:0:0 | accessors | getInterfaceType: | (inout Foo) -> () -> () | getName: | (unnamed function decl) | isGetter: | no | isSetter: | no | isWillSet: | no | isDidSet: | no | isRead: | no | isModify: | yes | isUnsafeAddress: | no | isUnsafeMutableAddress: | no |
 | accessors.swift:4:9:4:28 | get | getModule: | file://:0:0:0:0 | accessors | getInterfaceType: | (Foo) -> () -> Int | getName: | (unnamed function decl) | isGetter: | yes | isSetter: | no | isWillSet: | no | isDidSet: | no | isRead: | no | isModify: | no | isUnsafeAddress: | no | isUnsafeMutableAddress: | no |
 | accessors.swift:5:9:5:42 | set | getModule: | file://:0:0:0:0 | accessors | getInterfaceType: | (inout Foo) -> (Int) -> () | getName: | (unnamed function decl) | isGetter: | no | isSetter: | yes | isWillSet: | no | isDidSet: | no | isRead: | no | isModify: | no | isUnsafeAddress: | no | isUnsafeMutableAddress: | no |
-| accessors.swift:7:9:7:9 | (unnamed function decl) | getModule: | file://:0:0:0:0 | accessors | getInterfaceType: | (inout Foo) -> () -> () | getName: | (unnamed function decl) | isGetter: | no | isSetter: | no | isWillSet: | no | isDidSet: | no | isRead: | no | isModify: | yes | isUnsafeAddress: | no | isUnsafeMutableAddress: | no |
+| accessors.swift:7:9:7:9 | _modify | getModule: | file://:0:0:0:0 | accessors | getInterfaceType: | (inout Foo) -> () -> () | getName: | (unnamed function decl) | isGetter: | no | isSetter: | no | isWillSet: | no | isDidSet: | no | isRead: | no | isModify: | yes | isUnsafeAddress: | no | isUnsafeMutableAddress: | no |
 | accessors.swift:7:9:7:9 | get | getModule: | file://:0:0:0:0 | accessors | getInterfaceType: | (Foo) -> () -> Int | getName: | (unnamed function decl) | isGetter: | yes | isSetter: | no | isWillSet: | no | isDidSet: | no | isRead: | no | isModify: | no | isUnsafeAddress: | no | isUnsafeMutableAddress: | no |
 | accessors.swift:7:9:7:9 | set | getModule: | file://:0:0:0:0 | accessors | getInterfaceType: | (inout Foo) -> (Int) -> () | getName: | (unnamed function decl) | isGetter: | no | isSetter: | yes | isWillSet: | no | isDidSet: | no | isRead: | no | isModify: | no | isUnsafeAddress: | no | isUnsafeMutableAddress: | no |
 | accessors.swift:8:9:8:29 | willSet | getModule: | file://:0:0:0:0 | accessors | getInterfaceType: | (inout Foo) -> (Int) -> () | getName: | (unnamed function decl) | isGetter: | no | isSetter: | no | isWillSet: | yes | isDidSet: | no | isRead: | no | isModify: | no | isUnsafeAddress: | no | isUnsafeMutableAddress: | no |
-| accessors.swift:11:9:11:9 | (unnamed function decl) | getModule: | file://:0:0:0:0 | accessors | getInterfaceType: | (inout Foo) -> () -> () | getName: | (unnamed function decl) | isGetter: | no | isSetter: | no | isWillSet: | no | isDidSet: | no | isRead: | no | isModify: | yes | isUnsafeAddress: | no | isUnsafeMutableAddress: | no |
+| accessors.swift:11:9:11:9 | _modify | getModule: | file://:0:0:0:0 | accessors | getInterfaceType: | (inout Foo) -> () -> () | getName: | (unnamed function decl) | isGetter: | no | isSetter: | no | isWillSet: | no | isDidSet: | no | isRead: | no | isModify: | yes | isUnsafeAddress: | no | isUnsafeMutableAddress: | no |
 | accessors.swift:11:9:11:9 | get | getModule: | file://:0:0:0:0 | accessors | getInterfaceType: | (Foo) -> () -> Int | getName: | (unnamed function decl) | isGetter: | yes | isSetter: | no | isWillSet: | no | isDidSet: | no | isRead: | no | isModify: | no | isUnsafeAddress: | no | isUnsafeMutableAddress: | no |
 | accessors.swift:11:9:11:9 | set | getModule: | file://:0:0:0:0 | accessors | getInterfaceType: | (inout Foo) -> (Int) -> () | getName: | (unnamed function decl) | isGetter: | no | isSetter: | yes | isWillSet: | no | isDidSet: | no | isRead: | no | isModify: | no | isUnsafeAddress: | no | isUnsafeMutableAddress: | no |
 | accessors.swift:12:9:12:19 | willSet | getModule: | file://:0:0:0:0 | accessors | getInterfaceType: | (inout Foo) -> (Int) -> () | getName: | (unnamed function decl) | isGetter: | no | isSetter: | no | isWillSet: | yes | isDidSet: | no | isRead: | no | isModify: | no | isUnsafeAddress: | no | isUnsafeMutableAddress: | no |
-| accessors.swift:15:9:15:9 | (unnamed function decl) | getModule: | file://:0:0:0:0 | accessors | getInterfaceType: | (inout Foo) -> () -> () | getName: | (unnamed function decl) | isGetter: | no | isSetter: | no | isWillSet: | no | isDidSet: | no | isRead: | no | isModify: | yes | isUnsafeAddress: | no | isUnsafeMutableAddress: | no |
+| accessors.swift:15:9:15:9 | _modify | getModule: | file://:0:0:0:0 | accessors | getInterfaceType: | (inout Foo) -> () -> () | getName: | (unnamed function decl) | isGetter: | no | isSetter: | no | isWillSet: | no | isDidSet: | no | isRead: | no | isModify: | yes | isUnsafeAddress: | no | isUnsafeMutableAddress: | no |
 | accessors.swift:15:9:15:9 | get | getModule: | file://:0:0:0:0 | accessors | getInterfaceType: | (Foo) -> () -> Int | getName: | (unnamed function decl) | isGetter: | yes | isSetter: | no | isWillSet: | no | isDidSet: | no | isRead: | no | isModify: | no | isUnsafeAddress: | no | isUnsafeMutableAddress: | no |
 | accessors.swift:15:9:15:9 | set | getModule: | file://:0:0:0:0 | accessors | getInterfaceType: | (inout Foo) -> (Int) -> () | getName: | (unnamed function decl) | isGetter: | no | isSetter: | yes | isWillSet: | no | isDidSet: | no | isRead: | no | isModify: | no | isUnsafeAddress: | no | isUnsafeMutableAddress: | no |
 | accessors.swift:16:9:16:28 | didSet | getModule: | file://:0:0:0:0 | accessors | getInterfaceType: | (inout Foo) -> (Int) -> () | getName: | (unnamed function decl) | isGetter: | no | isSetter: | no | isWillSet: | no | isDidSet: | yes | isRead: | no | isModify: | no | isUnsafeAddress: | no | isUnsafeMutableAddress: | no |
-| accessors.swift:19:9:19:9 | (unnamed function decl) | getModule: | file://:0:0:0:0 | accessors | getInterfaceType: | (inout Foo) -> () -> () | getName: | (unnamed function decl) | isGetter: | no | isSetter: | no | isWillSet: | no | isDidSet: | no | isRead: | no | isModify: | yes | isUnsafeAddress: | no | isUnsafeMutableAddress: | no |
+| accessors.swift:19:9:19:9 | _modify | getModule: | file://:0:0:0:0 | accessors | getInterfaceType: | (inout Foo) -> () -> () | getName: | (unnamed function decl) | isGetter: | no | isSetter: | no | isWillSet: | no | isDidSet: | no | isRead: | no | isModify: | yes | isUnsafeAddress: | no | isUnsafeMutableAddress: | no |
 | accessors.swift:19:9:19:9 | get | getModule: | file://:0:0:0:0 | accessors | getInterfaceType: | (Foo) -> () -> Int | getName: | (unnamed function decl) | isGetter: | yes | isSetter: | no | isWillSet: | no | isDidSet: | no | isRead: | no | isModify: | no | isUnsafeAddress: | no | isUnsafeMutableAddress: | no |
 | accessors.swift:19:9:19:9 | set | getModule: | file://:0:0:0:0 | accessors | getInterfaceType: | (inout Foo) -> (Int) -> () | getName: | (unnamed function decl) | isGetter: | no | isSetter: | yes | isWillSet: | no | isDidSet: | no | isRead: | no | isModify: | no | isUnsafeAddress: | no | isUnsafeMutableAddress: | no |
 | accessors.swift:20:9:20:18 | didSet | getModule: | file://:0:0:0:0 | accessors | getInterfaceType: | (inout Foo) -> () -> () | getName: | (unnamed function decl) | isGetter: | no | isSetter: | no | isWillSet: | no | isDidSet: | yes | isRead: | no | isModify: | no | isUnsafeAddress: | no | isUnsafeMutableAddress: | no |
-| accessors.swift:23:9:23:9 | (unnamed function decl) | getModule: | file://:0:0:0:0 | accessors | getInterfaceType: | (inout Foo) -> () -> () | getName: | (unnamed function decl) | isGetter: | no | isSetter: | no | isWillSet: | no | isDidSet: | no | isRead: | no | isModify: | yes | isUnsafeAddress: | no | isUnsafeMutableAddress: | no |
+| accessors.swift:23:9:23:9 | _modify | getModule: | file://:0:0:0:0 | accessors | getInterfaceType: | (inout Foo) -> () -> () | getName: | (unnamed function decl) | isGetter: | no | isSetter: | no | isWillSet: | no | isDidSet: | no | isRead: | no | isModify: | yes | isUnsafeAddress: | no | isUnsafeMutableAddress: | no |
 | accessors.swift:23:9:23:9 | get | getModule: | file://:0:0:0:0 | accessors | getInterfaceType: | (Foo) -> () -> Int | getName: | (unnamed function decl) | isGetter: | yes | isSetter: | no | isWillSet: | no | isDidSet: | no | isRead: | no | isModify: | no | isUnsafeAddress: | no | isUnsafeMutableAddress: | no |
 | accessors.swift:23:9:23:9 | set | getModule: | file://:0:0:0:0 | accessors | getInterfaceType: | (inout Foo) -> (Int) -> () | getName: | (unnamed function decl) | isGetter: | no | isSetter: | yes | isWillSet: | no | isDidSet: | no | isRead: | no | isModify: | no | isUnsafeAddress: | no | isUnsafeMutableAddress: | no |
 | accessors.swift:24:9:24:19 | willSet | getModule: | file://:0:0:0:0 | accessors | getInterfaceType: | (inout Foo) -> (Int) -> () | getName: | (unnamed function decl) | isGetter: | no | isSetter: | no | isWillSet: | yes | isDidSet: | no | isRead: | no | isModify: | no | isUnsafeAddress: | no | isUnsafeMutableAddress: | no |
 | accessors.swift:26:9:26:18 | didSet | getModule: | file://:0:0:0:0 | accessors | getInterfaceType: | (inout Foo) -> () -> () | getName: | (unnamed function decl) | isGetter: | no | isSetter: | no | isWillSet: | no | isDidSet: | yes | isRead: | no | isModify: | no | isUnsafeAddress: | no | isUnsafeMutableAddress: | no |
+| accessors.swift:29:9:29:9 | get | getModule: | file://:0:0:0:0 | accessors | getInterfaceType: | (Foo) -> () -> Int | getName: | (unnamed function decl) | isGetter: | yes | isSetter: | no | isWillSet: | no | isDidSet: | no | isRead: | no | isModify: | no | isUnsafeAddress: | no | isUnsafeMutableAddress: | no |
+| accessors.swift:29:9:29:9 | set | getModule: | file://:0:0:0:0 | accessors | getInterfaceType: | (inout Foo) -> (Int) -> () | getName: | (unnamed function decl) | isGetter: | no | isSetter: | yes | isWillSet: | no | isDidSet: | no | isRead: | no | isModify: | no | isUnsafeAddress: | no | isUnsafeMutableAddress: | no |
+| accessors.swift:30:9:32:9 | _read | getModule: | file://:0:0:0:0 | accessors | getInterfaceType: | (Foo) -> () -> () | getName: | (unnamed function decl) | isGetter: | no | isSetter: | no | isWillSet: | no | isDidSet: | no | isRead: | yes | isModify: | no | isUnsafeAddress: | no | isUnsafeMutableAddress: | no |
+| accessors.swift:33:9:35:9 | _modify | getModule: | file://:0:0:0:0 | accessors | getInterfaceType: | (inout Foo) -> () -> () | getName: | (unnamed function decl) | isGetter: | no | isSetter: | no | isWillSet: | no | isDidSet: | no | isRead: | no | isModify: | yes | isUnsafeAddress: | no | isUnsafeMutableAddress: | no |
+| accessors.swift:38:9:38:9 | _modify | getModule: | file://:0:0:0:0 | accessors | getInterfaceType: | (inout Foo) -> () -> () | getName: | (unnamed function decl) | isGetter: | no | isSetter: | no | isWillSet: | no | isDidSet: | no | isRead: | no | isModify: | yes | isUnsafeAddress: | no | isUnsafeMutableAddress: | no |
+| accessors.swift:38:9:38:9 | get | getModule: | file://:0:0:0:0 | accessors | getInterfaceType: | (Foo) -> () -> Int | getName: | (unnamed function decl) | isGetter: | yes | isSetter: | no | isWillSet: | no | isDidSet: | no | isRead: | no | isModify: | no | isUnsafeAddress: | no | isUnsafeMutableAddress: | no |
+| accessors.swift:38:9:38:9 | set | getModule: | file://:0:0:0:0 | accessors | getInterfaceType: | (inout Foo) -> (Int) -> () | getName: | (unnamed function decl) | isGetter: | no | isSetter: | yes | isWillSet: | no | isDidSet: | no | isRead: | no | isModify: | no | isUnsafeAddress: | no | isUnsafeMutableAddress: | no |
+| accessors.swift:39:9:41:9 | unsafeAddress | getModule: | file://:0:0:0:0 | accessors | getInterfaceType: | (Foo) -> () -> UnsafePointer<Int> | getName: | (unnamed function decl) | isGetter: | no | isSetter: | no | isWillSet: | no | isDidSet: | no | isRead: | no | isModify: | no | isUnsafeAddress: | yes | isUnsafeMutableAddress: | no |
+| accessors.swift:42:9:44:9 | unsafeMutableAddress | getModule: | file://:0:0:0:0 | accessors | getInterfaceType: | (inout Foo) -> () -> UnsafeMutablePointer<Int> | getName: | (unnamed function decl) | isGetter: | no | isSetter: | no | isWillSet: | no | isDidSet: | no | isRead: | no | isModify: | no | isUnsafeAddress: | no | isUnsafeMutableAddress: | yes |
diff --git a/swift/ql/test/extractor-tests/generated/decl/AccessorDecl/AccessorDecl_getBody.expected b/swift/ql/test/extractor-tests/generated/decl/AccessorDecl/AccessorDecl_getBody.expected
index 918643d76dd..7eccbae719f 100644
--- a/swift/ql/test/extractor-tests/generated/decl/AccessorDecl/AccessorDecl_getBody.expected
+++ b/swift/ql/test/extractor-tests/generated/decl/AccessorDecl/AccessorDecl_getBody.expected
@@ -1,27 +1,36 @@
-| accessors.swift:2:9:2:9 | (unnamed function decl) | accessors.swift:2:9:2:9 | { ... } |
+| accessors.swift:2:9:2:9 | _modify | accessors.swift:2:9:2:9 | { ... } |
 | accessors.swift:2:9:2:9 | get | accessors.swift:2:9:2:9 | { ... } |
 | accessors.swift:2:9:2:9 | set | accessors.swift:2:9:2:9 | { ... } |
-| accessors.swift:3:9:3:9 | (unnamed function decl) | accessors.swift:3:9:3:9 | { ... } |
+| accessors.swift:3:9:3:9 | _modify | accessors.swift:3:9:3:9 | { ... } |
 | accessors.swift:4:9:4:28 | get | accessors.swift:4:13:4:28 | { ... } |
 | accessors.swift:5:9:5:42 | set | accessors.swift:5:23:5:42 | { ... } |
-| accessors.swift:7:9:7:9 | (unnamed function decl) | accessors.swift:7:9:7:9 | { ... } |
+| accessors.swift:7:9:7:9 | _modify | accessors.swift:7:9:7:9 | { ... } |
 | accessors.swift:7:9:7:9 | get | accessors.swift:7:9:7:9 | { ... } |
 | accessors.swift:7:9:7:9 | set | accessors.swift:7:9:7:9 | { ... } |
 | accessors.swift:8:9:8:29 | willSet | accessors.swift:8:27:8:29 | { ... } |
-| accessors.swift:11:9:11:9 | (unnamed function decl) | accessors.swift:11:9:11:9 | { ... } |
+| accessors.swift:11:9:11:9 | _modify | accessors.swift:11:9:11:9 | { ... } |
 | accessors.swift:11:9:11:9 | get | accessors.swift:11:9:11:9 | { ... } |
 | accessors.swift:11:9:11:9 | set | accessors.swift:11:9:11:9 | { ... } |
 | accessors.swift:12:9:12:19 | willSet | accessors.swift:12:17:12:19 | { ... } |
-| accessors.swift:15:9:15:9 | (unnamed function decl) | accessors.swift:15:9:15:9 | { ... } |
+| accessors.swift:15:9:15:9 | _modify | accessors.swift:15:9:15:9 | { ... } |
 | accessors.swift:15:9:15:9 | get | accessors.swift:15:9:15:9 | { ... } |
 | accessors.swift:15:9:15:9 | set | accessors.swift:15:9:15:9 | { ... } |
 | accessors.swift:16:9:16:28 | didSet | accessors.swift:16:26:16:28 | { ... } |
-| accessors.swift:19:9:19:9 | (unnamed function decl) | accessors.swift:19:9:19:9 | { ... } |
+| accessors.swift:19:9:19:9 | _modify | accessors.swift:19:9:19:9 | { ... } |
 | accessors.swift:19:9:19:9 | get | accessors.swift:19:9:19:9 | { ... } |
 | accessors.swift:19:9:19:9 | set | accessors.swift:19:9:19:9 | { ... } |
 | accessors.swift:20:9:20:18 | didSet | accessors.swift:20:16:20:18 | { ... } |
-| accessors.swift:23:9:23:9 | (unnamed function decl) | accessors.swift:23:9:23:9 | { ... } |
+| accessors.swift:23:9:23:9 | _modify | accessors.swift:23:9:23:9 | { ... } |
 | accessors.swift:23:9:23:9 | get | accessors.swift:23:9:23:9 | { ... } |
 | accessors.swift:23:9:23:9 | set | accessors.swift:23:9:23:9 | { ... } |
 | accessors.swift:24:9:24:19 | willSet | accessors.swift:24:17:24:19 | { ... } |
 | accessors.swift:26:9:26:18 | didSet | accessors.swift:26:16:26:18 | { ... } |
+| accessors.swift:29:9:29:9 | get | accessors.swift:29:9:29:9 | { ... } |
+| accessors.swift:29:9:29:9 | set | accessors.swift:29:9:29:9 | { ... } |
+| accessors.swift:30:9:32:9 | _read | accessors.swift:30:15:32:9 | { ... } |
+| accessors.swift:33:9:35:9 | _modify | accessors.swift:33:17:35:9 | { ... } |
+| accessors.swift:38:9:38:9 | _modify | accessors.swift:38:9:38:9 | { ... } |
+| accessors.swift:38:9:38:9 | get | accessors.swift:38:9:38:9 | { ... } |
+| accessors.swift:38:9:38:9 | set | accessors.swift:38:9:38:9 | { ... } |
+| accessors.swift:39:9:41:9 | unsafeAddress | accessors.swift:39:23:41:9 | { ... } |
+| accessors.swift:42:9:44:9 | unsafeMutableAddress | accessors.swift:42:30:44:9 | { ... } |
diff --git a/swift/ql/test/extractor-tests/generated/decl/AccessorDecl/AccessorDecl_getParam.expected b/swift/ql/test/extractor-tests/generated/decl/AccessorDecl/AccessorDecl_getParam.expected
index 8b0da467bb2..e0544b5d4f5 100644
--- a/swift/ql/test/extractor-tests/generated/decl/AccessorDecl/AccessorDecl_getParam.expected
+++ b/swift/ql/test/extractor-tests/generated/decl/AccessorDecl/AccessorDecl_getParam.expected
@@ -9,3 +9,5 @@
 | accessors.swift:19:9:19:9 | set | 0 | accessors.swift:19:9:19:9 | value |
 | accessors.swift:23:9:23:9 | set | 0 | accessors.swift:23:9:23:9 | value |
 | accessors.swift:24:9:24:19 | willSet | 0 | accessors.swift:24:9:24:9 | newValue |
+| accessors.swift:29:9:29:9 | set | 0 | accessors.swift:29:9:29:9 | value |
+| accessors.swift:38:9:38:9 | set | 0 | accessors.swift:38:9:38:9 | value |
diff --git a/swift/ql/test/extractor-tests/generated/decl/AccessorDecl/AccessorDecl_getSelfParam.expected b/swift/ql/test/extractor-tests/generated/decl/AccessorDecl/AccessorDecl_getSelfParam.expected
index 22d0fc5df1f..62143cca406 100644
--- a/swift/ql/test/extractor-tests/generated/decl/AccessorDecl/AccessorDecl_getSelfParam.expected
+++ b/swift/ql/test/extractor-tests/generated/decl/AccessorDecl/AccessorDecl_getSelfParam.expected
@@ -1,27 +1,36 @@
-| accessors.swift:2:9:2:9 | (unnamed function decl) | accessors.swift:2:9:2:9 | self |
+| accessors.swift:2:9:2:9 | _modify | accessors.swift:2:9:2:9 | self |
 | accessors.swift:2:9:2:9 | get | accessors.swift:2:9:2:9 | self |
 | accessors.swift:2:9:2:9 | set | accessors.swift:2:9:2:9 | self |
-| accessors.swift:3:9:3:9 | (unnamed function decl) | accessors.swift:3:9:3:9 | self |
+| accessors.swift:3:9:3:9 | _modify | accessors.swift:3:9:3:9 | self |
 | accessors.swift:4:9:4:28 | get | accessors.swift:4:9:4:9 | self |
 | accessors.swift:5:9:5:42 | set | accessors.swift:5:9:5:9 | self |
-| accessors.swift:7:9:7:9 | (unnamed function decl) | accessors.swift:7:9:7:9 | self |
+| accessors.swift:7:9:7:9 | _modify | accessors.swift:7:9:7:9 | self |
 | accessors.swift:7:9:7:9 | get | accessors.swift:7:9:7:9 | self |
 | accessors.swift:7:9:7:9 | set | accessors.swift:7:9:7:9 | self |
 | accessors.swift:8:9:8:29 | willSet | accessors.swift:8:9:8:9 | self |
-| accessors.swift:11:9:11:9 | (unnamed function decl) | accessors.swift:11:9:11:9 | self |
+| accessors.swift:11:9:11:9 | _modify | accessors.swift:11:9:11:9 | self |
 | accessors.swift:11:9:11:9 | get | accessors.swift:11:9:11:9 | self |
 | accessors.swift:11:9:11:9 | set | accessors.swift:11:9:11:9 | self |
 | accessors.swift:12:9:12:19 | willSet | accessors.swift:12:9:12:9 | self |
-| accessors.swift:15:9:15:9 | (unnamed function decl) | accessors.swift:15:9:15:9 | self |
+| accessors.swift:15:9:15:9 | _modify | accessors.swift:15:9:15:9 | self |
 | accessors.swift:15:9:15:9 | get | accessors.swift:15:9:15:9 | self |
 | accessors.swift:15:9:15:9 | set | accessors.swift:15:9:15:9 | self |
 | accessors.swift:16:9:16:28 | didSet | accessors.swift:16:9:16:9 | self |
-| accessors.swift:19:9:19:9 | (unnamed function decl) | accessors.swift:19:9:19:9 | self |
+| accessors.swift:19:9:19:9 | _modify | accessors.swift:19:9:19:9 | self |
 | accessors.swift:19:9:19:9 | get | accessors.swift:19:9:19:9 | self |
 | accessors.swift:19:9:19:9 | set | accessors.swift:19:9:19:9 | self |
 | accessors.swift:20:9:20:18 | didSet | accessors.swift:20:9:20:9 | self |
-| accessors.swift:23:9:23:9 | (unnamed function decl) | accessors.swift:23:9:23:9 | self |
+| accessors.swift:23:9:23:9 | _modify | accessors.swift:23:9:23:9 | self |
 | accessors.swift:23:9:23:9 | get | accessors.swift:23:9:23:9 | self |
 | accessors.swift:23:9:23:9 | set | accessors.swift:23:9:23:9 | self |
 | accessors.swift:24:9:24:19 | willSet | accessors.swift:24:9:24:9 | self |
 | accessors.swift:26:9:26:18 | didSet | accessors.swift:26:9:26:9 | self |
+| accessors.swift:29:9:29:9 | get | accessors.swift:29:9:29:9 | self |
+| accessors.swift:29:9:29:9 | set | accessors.swift:29:9:29:9 | self |
+| accessors.swift:30:9:32:9 | _read | accessors.swift:30:9:30:9 | self |
+| accessors.swift:33:9:35:9 | _modify | accessors.swift:33:9:33:9 | self |
+| accessors.swift:38:9:38:9 | _modify | accessors.swift:38:9:38:9 | self |
+| accessors.swift:38:9:38:9 | get | accessors.swift:38:9:38:9 | self |
+| accessors.swift:38:9:38:9 | set | accessors.swift:38:9:38:9 | self |
+| accessors.swift:39:9:41:9 | unsafeAddress | accessors.swift:39:9:39:9 | self |
+| accessors.swift:42:9:44:9 | unsafeMutableAddress | accessors.swift:42:9:42:9 | self |
diff --git a/swift/ql/test/extractor-tests/generated/decl/AccessorDecl/accessors.swift b/swift/ql/test/extractor-tests/generated/decl/AccessorDecl/accessors.swift
index 0dc6f4cc0c0..2f645a1592e 100644
--- a/swift/ql/test/extractor-tests/generated/decl/AccessorDecl/accessors.swift
+++ b/swift/ql/test/extractor-tests/generated/decl/AccessorDecl/accessors.swift
@@ -25,4 +25,22 @@ struct Foo {
 
         didSet { }
     }
+
+    var borrowedProp: Int {
+        _read {
+            yield x
+        }
+        _modify {
+            yield &x
+        }
+    }
+
+    var unsafeProp: Int {
+        unsafeAddress {
+            return UnsafePointer<Int>(bitPattern: 0)!
+        }
+        unsafeMutableAddress {
+            return UnsafeMutablePointer<Int>(bitPattern: 0)!
+        }
+    }
 }

From 1142b77f8da6fceacd9141600d1ee7061cf77b21 Mon Sep 17 00:00:00 2001
From: Felicity Chapman <felicitymay@github.com>
Date: Tue, 29 Nov 2022 15:09:15 +0000
Subject: [PATCH 0795/1420] Update articles for other languages

---
 .../basic-query-for-csharp-code.rst           |   2 +-
 .../basic-query-for-go-code.rst               |   2 +-
 .../basic-query-for-java-code.rst             |  79 +++++++-----------
 .../basic-query-for-javascript-code.rst       |  76 +++++++----------
 .../basic-query-for-python-code.rst           |  73 ++++++----------
 .../basic-query-for-ruby-code.rst             |  73 +++++++---------
 .../basic-java-query-results-1.png            | Bin 0 -> 207669 bytes
 .../basic-java-query-results-2.png            | Bin 0 -> 321770 bytes
 .../basic-js-query-results-1.png              | Bin 0 -> 207347 bytes
 .../basic-js-query-results-2.png              | Bin 0 -> 218665 bytes
 .../basic-js-query-results-3.png              | Bin 0 -> 384229 bytes
 .../basic-python-query-results-1.png          | Bin 0 -> 209015 bytes
 .../basic-python-query-results-2.png          | Bin 0 -> 247418 bytes
 .../basic-ruby-query-results-1.png            | Bin 0 -> 231511 bytes
 .../basic-ruby-query-results-2.png            | Bin 0 -> 268498 bytes
 .../quick-query-tab-java.png                  | Bin 0 -> 77084 bytes
 .../quick-query-tab-js.png                    | Bin 0 -> 83981 bytes
 .../quick-query-tab-python.png                | Bin 0 -> 86673 bytes
 .../quick-query-tab-ruby.png                  | Bin 0 -> 81069 bytes
 19 files changed, 119 insertions(+), 186 deletions(-)
 create mode 100644 docs/codeql/images/codeql-for-visual-studio-code/basic-java-query-results-1.png
 create mode 100644 docs/codeql/images/codeql-for-visual-studio-code/basic-java-query-results-2.png
 create mode 100644 docs/codeql/images/codeql-for-visual-studio-code/basic-js-query-results-1.png
 create mode 100644 docs/codeql/images/codeql-for-visual-studio-code/basic-js-query-results-2.png
 create mode 100644 docs/codeql/images/codeql-for-visual-studio-code/basic-js-query-results-3.png
 create mode 100644 docs/codeql/images/codeql-for-visual-studio-code/basic-python-query-results-1.png
 create mode 100644 docs/codeql/images/codeql-for-visual-studio-code/basic-python-query-results-2.png
 create mode 100644 docs/codeql/images/codeql-for-visual-studio-code/basic-ruby-query-results-1.png
 create mode 100644 docs/codeql/images/codeql-for-visual-studio-code/basic-ruby-query-results-2.png
 create mode 100644 docs/codeql/images/codeql-for-visual-studio-code/quick-query-tab-java.png
 create mode 100644 docs/codeql/images/codeql-for-visual-studio-code/quick-query-tab-js.png
 create mode 100644 docs/codeql/images/codeql-for-visual-studio-code/quick-query-tab-python.png
 create mode 100644 docs/codeql/images/codeql-for-visual-studio-code/quick-query-tab-ruby.png

diff --git a/docs/codeql/codeql-language-guides/basic-query-for-csharp-code.rst b/docs/codeql/codeql-language-guides/basic-query-for-csharp-code.rst
index b8749d1c3f8..18c76ed4f52 100644
--- a/docs/codeql/codeql-language-guides/basic-query-for-csharp-code.rst
+++ b/docs/codeql/codeql-language-guides/basic-query-for-csharp-code.rst
@@ -112,7 +112,7 @@ To exclude ``if`` statements that have an ``else`` branch:
         block.isEmpty() and
         not exists(ifstmt.getElse())
 
-#. Click **Run**.
+#. Re-run the query.
 
    There are now fewer results because ``if`` statements with an ``else`` branch are no longer included.
 
diff --git a/docs/codeql/codeql-language-guides/basic-query-for-go-code.rst b/docs/codeql/codeql-language-guides/basic-query-for-go-code.rst
index 6280cec234f..b15e2224065 100644
--- a/docs/codeql/codeql-language-guides/basic-query-for-go-code.rst
+++ b/docs/codeql/codeql-language-guides/basic-query-for-go-code.rst
@@ -113,7 +113,7 @@ To exclude these values:
         not recv.getType() instanceof PointerType and
         not exists(ReturnStmt ret | ret.getExpr() = recv.getARead().asExpr())
 
-#. Click **Run**.
+#. Re-run the query.
 
    There are now fewer results because value methods that return their receiver variable are no longer reported.
 
diff --git a/docs/codeql/codeql-language-guides/basic-query-for-java-code.rst b/docs/codeql/codeql-language-guides/basic-query-for-java-code.rst
index a6b0f9ac9fb..017067e0094 100644
--- a/docs/codeql/codeql-language-guides/basic-query-for-java-code.rst
+++ b/docs/codeql/codeql-language-guides/basic-query-for-java-code.rst
@@ -31,65 +31,36 @@ or Kotlin code such as:
 In either case, replacing ``s.equals("")`` with ``s.isEmpty()``
 would be more efficient.
 
-Running the query
------------------
+.. include:: ../reusables/vs-code-basic-instructions/find-database.rst
 
-#. In the main search box on LGTM.com, search for the project you want to query. For tips, see `Searching <https://lgtm.com/help/lgtm/searching>`__.
+Running a quick query
+---------------------
 
-#. Click the project in the search results.
+.. include:: ../reusables/vs-code-basic-instructions/run-quick-query-1.rst
 
-#. Click **Query this project**.
-
-   This opens the query console. (For information about using this, see `Using the query console <https://lgtm.com/help/lgtm/using-query-console>`__.)
-
-   .. pull-quote::
-
-      Note
-
-      Alternatively, you can go straight to the query console by clicking **Query console** (at the top of any page), selecting **Java** from the **Language** drop-down list, then choosing one or more projects to query from those displayed in the **Project** drop-down list.
-
-#. Copy the following query into the text box in the query console:
+#. In the quick query tab, delete ``select ""`` and paste the following query beneath the import statement ``import java``.
 
    .. code-block:: ql
 
-      import java
-
-      from MethodAccess ma
-      where
-        ma.getMethod().hasName("equals") and
-        ma.getArgument(0).(StringLiteral).getValue() = ""
-      select ma, "This comparison to empty string is inefficient, use isEmpty() instead."
+        from MethodAccess ma
+        where
+            ma.getMethod().hasName("equals") and
+            ma.getArgument(0).(StringLiteral).getValue() = ""
+        select ma, "This comparison to empty string is inefficient, use isEmpty() instead."
 
    Note that CodeQL treats Java and Kotlin as part of the same language, so even though this query starts with ``import java``, it will work for both Java and Kotlin code.
 
-   LGTM checks whether your query compiles and, if all is well, the **Run** button changes to green to indicate that you can go ahead and run the query.
+ .. include:: ../reusables/vs-code-basic-instructions/run-quick-query-2.rst
 
-#. Click **Run**.
+.. image:: ../images/codeql-for-visual-studio-code/basic-java-query-results-1.png
+   :align: center
 
-   The name of the project you are querying, and the ID of the most recently analyzed commit to the project, are listed below the query box. To the right of this is an icon that indicates the progress of the query operation:
+If any matching code is found, click a link in the ``ma`` column to view the ``.equals`` expression in the code viewer.
 
-   .. image:: ../images/query-progress.png
-       :align: center
+basic-java-query-results-2.png
+   :align: center
 
-   .. pull-quote::
-
-      Note
-
-      Your query is always run against the most recently analyzed commit to the selected project.
-
-   The query will take a few moments to return results. When the query completes, the results are displayed below the project name. The query results are listed in two columns, corresponding to the two expressions in the ``select`` clause of the query. The first column corresponds to the expression ``ma`` and is linked to the location in the source code of the project where ``ma`` occurs. The second column is the alert message.
-
-   ➤ `Example query results <https://lgtm.com/query/6863787472564633674/>`__
-
-   .. pull-quote::
-
-      Note
-
-      An ellipsis (…) at the bottom of the table indicates that the entire list is not displayed—click it to show more results.
-
-#. If any matching code is found, click a link in the ``ma`` column to view the ``.equals`` expression in the code viewer.
-
-   The matching ``.equals`` expression is highlighted with a yellow background in the code viewer. If any code in the file also matches a query from the standard query library for that language, you will see a red alert message at the appropriate point within the code.
+.. include:: ../reusables/vs-code-basic-instructions/note-store-quick-query.rst
 
 About the query structure
 ~~~~~~~~~~~~~~~~~~~~~~~~~
@@ -150,14 +121,24 @@ In this case, it is not possible to simply use ``o.isEmpty()`` instead, as ``o``
         ma.getMethod().hasName("equals") and
         ma.getArgument(0).(StringLiteral).getValue() = ""
 
-#. Click **Run**.
+#. Re-run the query.
 
    There are now fewer results because ``.equals`` expressions with different types are no longer included.
 
-➤ `See this in the query console <https://lgtm.com/query/3716567543394265485/>`__
-
 Further reading
 ---------------
 
 .. include:: ../reusables/java-further-reading.rst
 .. include:: ../reusables/codeql-ref-tools-further-reading.rst
+
+.. Article-specific substitutions for the reusables used in docs/codeql/reusables/vs-code-basic-instructions
+
+.. |language-text| replace:: Java
+
+.. |language-code| replace:: ``java``
+
+.. |example-url| replace:: hhttps://github.com/apache/activemq
+
+.. |image-quick-query| image:: ../images/codeql-for-visual-studio-code/quick-query-tab-java.png
+
+.. |result-col-1|  replace:: The first column corresponds to the expression ``ma`` and is linked to the location in the source code of the project where ``ma`` occurs.
\ No newline at end of file
diff --git a/docs/codeql/codeql-language-guides/basic-query-for-javascript-code.rst b/docs/codeql/codeql-language-guides/basic-query-for-javascript-code.rst
index 123336d699e..230d8016510 100644
--- a/docs/codeql/codeql-language-guides/basic-query-for-javascript-code.rst
+++ b/docs/codeql/codeql-language-guides/basic-query-for-javascript-code.rst
@@ -3,7 +3,9 @@
 Basic query for JavaScript code
 ===============================
 
-Learn to write and run a simple CodeQL query using LGTM.
+Learn to write and run a simple CodeQL query using Visual Studio Code with the CodeQL extension.
+
+.. include:: ../reusables/vs-code-basic-instructions/setup-to-run-queries.rst
 
 About the query
 ---------------
@@ -12,62 +14,33 @@ In JavaScript, any expression can be turned into an expression statement. While
 
 The query you will run finds instances of this problem. The query searches for expressions ``e`` that are pure—that is, their evaluation does not lead to any side effects—but appear as an expression statement.
 
-Running the query
------------------
+.. include:: ../reusables/vs-code-basic-instructions/find-database.rst
 
-#. In the main search box on LGTM.com, search for the project you want to query. For tips, see `Searching <https://lgtm.com/help/lgtm/searching>`__.
+Running a quick query
+---------------------
 
-#. Click the project in the search results.
+.. include:: ../reusables/vs-code-basic-instructions/run-quick-query-1.rst
 
-#. Click **Query this project**.
-
-   This opens the query console. (For information about using this, see `Using the query console <https://lgtm.com/help/lgtm/using-query-console>`__.)
-
-   .. pull-quote::
-
-      Note
-
-      Alternatively, you can go straight to the query console by clicking **Query console** (at the top of any page), selecting **JavaScript** from the **Language** drop-down list, then choosing one or more projects to query from those displayed in the **Project** drop-down list.
-
-#. Copy the following query into the text box in the query console:
+#. In the quick query tab, delete ``select ""`` and paste the following query beneath the import statement ``import javascript``.
 
    .. code-block:: ql
 
-      import javascript
-
       from Expr e
       where e.isPure() and
         e.getParent() instanceof ExprStmt
       select e, "This expression has no effect."
 
-   LGTM checks whether your query compiles and, if all is well, the **Run** button changes to green to indicate that you can go ahead and run the query.
+.. include:: ../reusables/vs-code-basic-instructions/run-quick-query-2.rst
 
-#. Click **Run**.
+.. image:: ../images/codeql-for-visual-studio-code/basic-js-query-results-1.png
+   :align: center
 
-   The name of the project you are querying, and the ID of the most recently analyzed commit to the project, are listed below the query box. To the right of this is an icon that indicates the progress of the query operation:
+If any matching code is found, click one of the links in the ``e`` column to view the expression in the code viewer.
 
-   .. image:: ../images/query-progress.png
-       :align: center
+.. image:: ../images/codeql-for-visual-studio-code/basic-js-query-results-2.png
+   :align: center
 
-   .. pull-quote::
-
-      Note
-
-      Your query is always run against the most recently analyzed commit to the selected project.
-
-   The query will take a few moments to return results. When the query completes, the results are displayed below the project name. The query results are listed in two columns, corresponding to the two expressions in the ``select`` clause of the query. The first column corresponds to the expression ``e`` and is linked to the location in the source code of the project where ``e`` occurs. The second column is the alert message.
-
-   ➤ `Example query results <https://lgtm.com/query/5137013631828816943/>`__
-
-   .. pull-quote::
-
-      Note
-
-      An ellipsis (…) at the bottom of the table indicates that the entire list is not displayed—click it to show more results.
-
-#. If any matching code is found, click one of the links in the ``e`` column to view the expression in the code viewer.
-
-   The matching statement is highlighted with a yellow background in the code viewer. If any code in the file also matches a query from the standard query library for that language, you will see a red alert message at the appropriate point within the code.
+.. include:: ../reusables/vs-code-basic-instructions/note-store-quick-query.rst
 
 About the query structure
 ~~~~~~~~~~~~~~~~~~~~~~~~~
@@ -119,11 +92,14 @@ To remove directives from the results:
         e.getParent() instanceof ExprStmt and 
         not e.getParent() instanceof Directive
 
-#. Click **Run**.
+#. Re-run the query.
 
    There are now fewer results as ``use strict`` directives are no longer reported.
 
-The improved query finds several results on the example project including `this result <https://lgtm.com/projects/g/ajaxorg/ace/rev/ad50673d7137c09d1a5a6f0ef83633a149f9e3d1/files/lib/ace/keyboard/vim.js#L320>`__:
+The improved query finds several results on the example project including the result below:
+
+.. image:: ../images/codeql-for-visual-studio-code/basic-js-query-results-1.png
+   :align: center
 
 .. code-block:: javascript
 
@@ -136,3 +112,15 @@ Further reading
 
 .. include:: ../reusables/javascript-further-reading.rst
 .. include:: ../reusables/codeql-ref-tools-further-reading.rst
+
+.. Article-specific substitutions for the reusables used in docs/codeql/reusables/vs-code-basic-instructions
+
+.. |language-text| replace:: JavaScript/TypeScript
+
+.. |language-code| replace:: ``javascript``
+
+.. |example-url| replace:: https://github.com/ajaxorg/ace
+
+.. |image-quick-query| image:: ../images/codeql-for-visual-studio-code/quick-query-tab-js.png
+
+.. |result-col-1|  replace:: The first column corresponds to the expression ``e`` and is linked to the location in the source code of the project where ``e`` occurs.
\ No newline at end of file
diff --git a/docs/codeql/codeql-language-guides/basic-query-for-python-code.rst b/docs/codeql/codeql-language-guides/basic-query-for-python-code.rst
index f8424b00d4e..4c727082ec5 100644
--- a/docs/codeql/codeql-language-guides/basic-query-for-python-code.rst
+++ b/docs/codeql/codeql-language-guides/basic-query-for-python-code.rst
@@ -3,7 +3,9 @@
 Basic query for Python code
 ===========================
 
-Learn to write and run a simple CodeQL query using LGTM.
+Learn to write and run a simple CodeQL query using Visual Studio Code with the CodeQL extension.
+
+.. include:: ../reusables/vs-code-basic-instructions/setup-to-run-queries.rst
 
 About the query
 ---------------
@@ -14,62 +16,31 @@ The query we're going to run performs a basic search of the code for ``if`` stat
 
    if error: pass
 
-Running the query
------------------
+Running a quick query
+---------------------
 
-#. In the main search box on LGTM.com, search for the project you want to query. For tips, see `Searching <https://lgtm.com/help/lgtm/searching>`__.
+.. include:: ../reusables/vs-code-basic-instructions/run-quick-query-1.rst
 
-#. Click the project in the search results.
-
-#. Click **Query this project**.
-
-   This opens the query console. (For information about using this, see `Using the query console <https://lgtm.com/help/lgtm/using-query-console>`__.)
-
-   .. pull-quote::
-
-      Note
-
-      Alternatively, you can go straight to the query console by clicking **Query console** (at the top of any page), selecting **Python** from the **Language** drop-down list, then choosing one or more projects to query from those displayed in the **Project** drop-down list.
-
-#. Copy the following query into the text box in the query console:
+#. In the quick query tab, delete ``select ""`` and paste the following query beneath the import statement ``import python``.
 
    .. code-block:: ql
 
-      import python
-
       from If ifstmt, Stmt pass
       where pass = ifstmt.getStmt(0) and
         pass instanceof Pass
       select ifstmt, "This 'if' statement is redundant."
 
-   LGTM checks whether your query compiles and, if all is well, the **Run** button changes to green to indicate that you can go ahead and run the query.
+.. include:: ../reusables/vs-code-basic-instructions/run-quick-query-2.rst
 
-#. Click **Run**.
+.. image:: ../images/codeql-for-visual-studio-code/basic-python-query-results-1.png
+   :align: center
 
-   The name of the project you are querying, and the ID of the most recently analyzed commit to the project, are listed below the query box. To the right of this is an icon that indicates the progress of the query operation:
+If any matching code is found, click a link in the ``ifstmt`` column to view the ``if`` statement in the code viewer.
 
-   .. image:: ../images/query-progress.png
-       :align: center
+.. image:: ../images/codeql-for-visual-studio-code/basic-python-query-results-2.png
+   :align: center
 
-   .. pull-quote::
-
-      Note
-
-      Your query is always run against the most recently analyzed commit to the selected project.
-
-   The query will take a few moments to return results. When the query completes, the results are displayed below the project name. The query results are listed in two columns, corresponding to the two expressions in the ``select`` clause of the query. The first column corresponds to the expression ``ifstmt`` and is linked to the location in the source code of the project where ``ifstmt`` occurs. The second column is the alert message.
-
-   ➤ `Example query results <https://lgtm.com/query/3592297537117272922/>`__
-
-   .. pull-quote::
-
-      Note
-
-      An ellipsis (…) at the bottom of the table indicates that the entire list is not displayed—click it to show more results.
-
-#. If any matching code is found, click a link in the ``ifstmt`` column to view the ``if`` statement in the code viewer.
-
-   The matching ``if`` statement is highlighted with a yellow background in the code viewer. If any code in the file also matches a query from the standard query library for that language, you will see a red alert message at the appropriate point within the code.
+.. include:: ../reusables/vs-code-basic-instructions/note-store-quick-query.rst
 
 About the query structure
 ~~~~~~~~~~~~~~~~~~~~~~~~~
@@ -133,14 +104,24 @@ To exclude ``if`` statements that have an ``else`` branch:
         pass instanceof Pass and
         not exists(ifstmt.getOrelse())
 
-#. Click **Run**.
+#. Re-run the query.
 
    There are now fewer results because ``if`` statements with an ``else`` branch are no longer included.
 
-➤ `See this in the query console <https://lgtm.com/query/3424727946018612474/>`__
-
 Further reading
 ---------------
 
 .. include:: ../reusables/python-further-reading.rst
 .. include:: ../reusables/codeql-ref-tools-further-reading.rst
+
+.. Article-specific substitutions for the reusables used in docs/codeql/reusables/vs-code-basic-instructions
+
+.. |language-text| replace:: Python
+
+.. |language-code| replace:: ``python``
+
+.. |example-url| replace:: https://github.com/saltstack/salt
+
+.. |image-quick-query| image:: ../images/codeql-for-visual-studio-code/quick-query-tab-python.png
+
+.. |result-col-1|  replace:: The first column corresponds to the expression ``ifstmt`` and is linked to the location in the source code of the project where ``ifstmt`` occurs.
\ No newline at end of file
diff --git a/docs/codeql/codeql-language-guides/basic-query-for-ruby-code.rst b/docs/codeql/codeql-language-guides/basic-query-for-ruby-code.rst
index 4acc85e6a85..14c65b445a0 100644
--- a/docs/codeql/codeql-language-guides/basic-query-for-ruby-code.rst
+++ b/docs/codeql/codeql-language-guides/basic-query-for-ruby-code.rst
@@ -3,7 +3,9 @@
 Basic query for Ruby code
 =========================
 
-Learn to write and run a simple CodeQL query.
+Learn to write and run a simple CodeQL query using Visual Studio Code with the CodeQL extension.
+
+.. include:: ../reusables/vs-code-basic-instructions/setup-to-run-queries.rst
 
 About the query
 ---------------
@@ -15,24 +17,12 @@ The query we're going to run performs a basic search of the code for ``if`` expr
    if error
      # Handle the error
 
-Running the query
------------------
+Running a quick query
+---------------------
 
-#. In the main search box on LGTM.com, search for the project you want to query. For tips, see `Searching <https://lgtm.com/help/lgtm/searching>`__.
+.. include:: ../reusables/vs-code-basic-instructions/run-quick-query-1.rst
 
-#. Click the project in the search results.
-
-#. Click **Query this project**.
-
-   This opens the query console. (For information about using this, see `Using the query console <https://lgtm.com/help/lgtm/using-query-console>`__.)
-
-   .. pull-quote::
-
-      Note
-
-      Alternatively, you can go straight to the query console by clicking **Query console** (at the top of any page), selecting **Ruby** from the **Language** drop-down list, then choosing one or more projects to query from those displayed in the **Project** drop-down list.
-
-#. Copy the following query into the text box in the query console:
+#. In the quick query tab, delete the content and paste in the following query`.
 
    .. code-block:: ql
 
@@ -40,37 +30,20 @@ Running the query
 
       from IfExpr ifexpr
       where
-        not exists(ifexpr.getThen())
+      not exists(ifexpr.getThen())
       select ifexpr, "This 'if' expression is redundant."
 
-   LGTM checks whether your query compiles and, if all is well, the **Run** button changes to green to indicate that you can go ahead and run the query.
+.. include:: ../reusables/vs-code-basic-instructions/run-quick-query-2.rst
 
-#. Click **Run**.
+.. image:: ../images/codeql-for-visual-studio-code/basic-ruby-query-results-1.png
+   :align: center
 
-   The name of the project you are querying, and the ID of the most recently analyzed commit to the project, are listed below the query box. To the right of this is an icon that indicates the progress of the query operation:
+If any matching code is found, click a link in the ``ifexpr`` column to view the ``if`` statement in the code viewer.
 
-   .. image:: ../images/query-progress.png
-       :align: center
+.. image:: ../images/codeql-for-visual-studio-code/basic-ruby-query-results-2.png
+   :align: center
 
-   .. pull-quote::
-
-      Note
-
-      Your query is always run against the most recently analyzed commit to the selected project.
-
-   The query will take a few moments to return results. When the query completes, the results are displayed below the project name. The query results are listed in two columns, corresponding to the two expressions in the ``select`` clause of the query. The first column corresponds to the expression ``ifexpr`` and is linked to the location in the source code of the project where ``ifexpr`` occurs. The second column is the alert message.
-
-   ➤ `Example query results <https://lgtm.com/query/4416853782037269427/>`__
-
-   .. pull-quote::
-
-      Note
-
-      An ellipsis (…) at the bottom of the table indicates that the entire list is not displayed—click it to show more results.
-
-#. If any matching code is found, click a link in the ``ifexpr`` column to view the ``if`` statement in the code viewer.
-
-   The matching ``if`` expression is highlighted with a yellow background in the code viewer. If any code in the file also matches a query from the standard query library for that language, you will see a red alert message at the appropriate point within the code.
+.. include:: ../reusables/vs-code-basic-instructions/note-store-quick-query.rst
 
 About the query structure
 ~~~~~~~~~~~~~~~~~~~~~~~~~
@@ -131,14 +104,24 @@ To exclude ``if`` statements that have an ``else`` branch:
          not exists(ifexpr.getThen()) and
          not exists(ifexpr.getElse())
 
-#. Click **Run**.
+#. Re-run the query.
 
    There are now fewer results because ``if`` expressions with an ``else`` branch are no longer included.
 
-➤ `See this in the query console <https://lgtm.com/query/4694253275631320752/>`__
-
 Further reading
 ---------------
 
 .. include:: ../reusables/ruby-further-reading.rst
 .. include:: ../reusables/codeql-ref-tools-further-reading.rst
+
+.. Article-specific substitutions for the reusables used in docs/codeql/reusables/vs-code-basic-instructions
+
+.. |language-text| replace:: Ruby
+
+.. |language-code| replace:: ``ruby``
+
+.. |example-url| replace:: https://github.com/discourse/discourse
+
+.. |image-quick-query| image:: ../images/codeql-for-visual-studio-code/quick-query-tab-ruby.png
+
+.. |result-col-1|  replace:: The first column corresponds to the expression ``ifexpr`` and is linked to the location in the source code of the project where ``ifexpr`` occurs.
diff --git a/docs/codeql/images/codeql-for-visual-studio-code/basic-java-query-results-1.png b/docs/codeql/images/codeql-for-visual-studio-code/basic-java-query-results-1.png
new file mode 100644
index 0000000000000000000000000000000000000000..e32ce790d7750283c8e462abb53b0543e0497e12
GIT binary patch
literal 207669
zcmeFZbx>UUwl#_+0fIH|(s*zS5-iZT1$X!0?hq2B@!$>#K|=80!993z_u%dhZ}mCf
zd3Dd;`}^M6x86Um-leLGRb9>M^|Lw09CHl9-Y80;qY|US!NH-+NJCWM;84MEa0pn)
zPl0!ycKz-J-l(<~7k?uoE>8Kz*}=lv)*KE_IxI2ynOgh|_PfK!0$v1~ATaG2oizQs
zgkOjZP2sZA2tn8;lwXaKyYTd$gTY!FM(U6@b;j=+kP1o!RIOi6wAIGlD&SruT_T1q
zAG|tjI^7VtoIlJS$V~Ma&dj)m|MaWg#OVbyrf3?2D)#EyP-J+t@oE+V_AfYy5eBlJ
zK}ZT2E-oBaYU(4asSsRR#$k%W&CTV~V-dsA6Cy#lPn1Dx*F=rnK}ytXJW9;HNO0<5
zTW-mg;q=$U?XD<sl<j`;8GM7(@uVVMR%ZzcTF__hFW{DY^-5_#aNo&uEG>?)K_X^K
zK`ap8&&bBV$?9_R@=igLs|eJcl95Nb0UCE6{@9NjTm~EQ{R#=kX9oF5hl~SQ1<sle
z**(WCv@GfZI2~|AziGl8kU6<Nay2B!9k7`y-?g_A;hz-j74XUIkO+4)qQ#^TZMX>C
zo7<=oJRNX+|0|vPG`<%l-S~Bg<`$aVsJK}LHVye6(T1$WnyhNO`3()c)P~3_MrP-b
z${^5lOFnAa@qo#0@%&_IakJ~^5aEMLrzUeBrT#1X7O`ksI}4SRGTX!XnY$<8i{jx(
z25o!az=Ek_g}MQQjBVBkT1E7@ndd5gW;c<=Z)RrYe~S&3qQ_+#b55~Yg#^+cA;ACa
zKw4=<ou=+UKtlY;sKwzW6)5$?GY^uIlF(~Ltxjj;3=ur7muGs;!~{oY<9;LC_&oKS
z1k}l2BRP5;%Lc75o~-i66&Q~A1n!L&d(qe&CL9mJyBmuvwK$%VbY}W@uOCppzQa%p
zr2F+mvK6g&5Q7h%m&Q~C3%OmCTMNOH5+xTNMGHeC@SGA8_uak`0mGALqEGk`qCdoc
zg3ox8+^X(~<ND722<z+v)e&~&I}UdE*H{=iqTJGWqwmkCRDYtHyk`AKfD0EaI`W1z
z0XdA4u?lq-8Ba9$4Wld8xA*?RL!!x_cHhvuQV_oj`CR*pp72S$u|P3AN$aT*{y@n6
z3cDvq1~S`+$`w6NCOw4Yj-F-jD{Nn!gOJ;m<Rb>uPtpueWl79KOg;;~3H(Z^h9LW1
z=R=<q-j_aQp09LjOgk9gD9%yOK~WN8zvQckW>NMdFr-d@_5ZT@rTZ&yi+ao3_4y5k
zH=NM>hw#rv;~e>fQfSX`f@M0Hdwv^-bA+<Hr7)$~4`5lKMRakNhiLf}v%Mrvj~r~X
zZ#(FiG+{G&Rq<h3nG~ZSoU4m}4Z%rIkB$|y_L&Eo2mDkpNxNTb{E?0)QzNhNQ?_=8
zR)V#d)#0^<qv0bQB(L|vZLwI=%Qza?HJ}$L3PE#0RP9L0fmYJ4bRnSlu-!1)PU2NO
z6N+Q9Fvuts|Ht<-Vxs~oDBDQe#MbZ5VvD6;Qu%x|?NvF^I59qvIPp7qg&J%k>hz`a
z4JV^6qk2MrLQevwGdI5re>AC~eTiPGUXxz(yv>WiZ%XE>$!{tPyT(<==f*Wpkh~DR
zFuh9eh_5-XxlWo+zMyhHkqZ_L<_=~-mBK4!64dNuBxdktJi&9pW5Q))!WezSt)KQR
zN@`BJC|Cb8`bdSVxIk!@JliLVg4!{u1l&a11aN`|Ln33Q>W<|n!l!5$)QJ^QPH`h0
zSGmQX2Q=^*95hOm4^+rCQ@^a{gWvRO7OHP+T<7+wovSD)FMOW;bR&&kVv&PiT%%{#
zGK*KO>9XaLv2nEVdzhbpGf<$|K8HLf>x;qX#eCs!p9@#MP)$yManfE(q!S-g;L@&?
zK5g76$5-f=ko&5h>-Kv0iE3D{MLwro3d;b<&dtuyuJGdZzWY83nRupSCb~eiK#XhH
z59S4=1@MB!0!WCZ>4|sI*|&4@Eu1s$8=0GibKUbEbTo7@`b#2iLP1_Nj^Bh9BpM_a
zM9PtRQAtFJBnv#<#Fde%k(WdsDXnxhbTV}2bhQe`s;^W(ZwrqN)u+^BxJbD4Z(gLu
z4o+KWTTECWZlImQouY4`Z<K9r4@RWcni}jjmf_dn7vd-4W3u3}+%xlPz0_{5=B!xN
zPSjqg&e!tMEvvS#@;5boOI<$W;4++K(a`E1Z&$fb@XF^^n10kkc~h2O#=XI<0e&W4
z=WP3rjdxCt9$LGOlPh1oWSZu$$@H{j3}mQeL<<OIJMbB@w>Uq1s*L8Ey8h(S@_dYT
zXx%c|U(-&r)TVwHhgYAsd5)^q($>_S^Oo?ox*@osvuVh0zGK9+x<^7Op&-Vx*|H%y
zN3%||aLUwy>=1JJ_7Fs&n@yS>(M)I<ute6}M2e0PquNDuTzRRxKeeiKfqBk$9)N9x
zO^ITq1IKoxTki6DN$fs2Cm21D@*_?i*OBr^<6qxDExoU3d);Q<rX<cRt`S@nGAfoF
zLXJ-M+y!$E|AKv<L63Nm^mP<8>T5V*%vmIJ<X%h~LAAh+MU_q!`wxz%1UMiU1`F5N
zsT}=?5EDDoQxhM25>|tXs~hZU+CsS@mOR#VRw2C5u!zW4#FwcgKUp@TyIoc<yJL<7
zJsZ5(uI=x@59O`eZx}q2mNVX@90`u_J6Wze#@VPijWT@>Emymuo8i3{J@J$^>RU;0
zD2y$vw!W&WtKtGnD2IQg)#vh)@Gh8E%b-6n+^Dmi`VI<f`Tgc;LIvL!j`(P9DLWPF
zZOqX?=H%k<#hCrnN!dD|%f+g4?DBg12AQ(WeJmg2J`Am_bC-=8RQpe~zP;G_VDpLR
z*d}dir*u&NRn?H?LhO0xIpeN_UHSBzx|RFxpHT|+#Pz$*&jOCFKMN?aD#cAT^jePv
zQjCb82G}myHhB$ilwIH5kvzeF()A>}_NZq5s`sQIF1y)IVS2WC(0=Y=e|kS>U+9&d
z2PvZ(!vHJke7%vSAE=U{W$V5)uc4G+4wqtDVV-4S!4Uh+Xq}Y9@P$yeT)b>U|9t=3
z%WsDZjUK)f0ftllwf8*FxG``^ug)ruHhrG?VN52IBoJsCF@1lLr6H+S^U!{ixASrK
z^Lueaj0lWN3KafP6>~#%H?{k%nzwa2Izqn87g{||!)sAI7Cg^vh^n8^x1wx^5wvvQ
z&$^60nw>IE7N(8e6kJY@?40a=zDYc%Mwdaqj~a=}w7eVQ=H=&^xVLziTdAD2>>pyx
zoO93e6u!KxeLh1V$rjGm{3F5By4=h9w4+}+`LG75w#x9h#d-hR<wSqU-sJPCjIzw8
z1JC;b^vS4@ba&p}Ior7%`<caWHnlcoEp`D76&;_y6uS6tUb9Y>%6SML>NWM(`&9ZE
zdsr%Y4mT}MFFyF(`3xTxEC!rX?zVMyxcQ|t-$|Xsgi{oWus$waUC#P9Jh&icA=)X4
zWebx2MsL2OUW*wPuUBGJipaJWD)P2JzuPOnbnJ<cU<)w_H&krwyH#BoZYqm1$bRVG
zFRO|D8vB_yj(2I%-mBo|;K(Qaa`4ORFEKr%-E`fjB47RaPGZk1&Q*UGSmN}HtO+Ok
zay*QlO+4Bx)mAwyb?Tvbe8Ur^LR6H7Ti!Q@V;F(^B>+dsns!iFfRy%tkpe!-_WW^}
zh5ZWdg*QBMKRo3!KAewiY!d#lQq&VlX!uqpoUI)T3D^ChTA488NzX^NI029T@^{Tk
zJd=R|KV2yv^%oyA+Hy5Xj)t!dJ$#Vc^3!MR0UT><t|eokpaAy*xJHIUf+vQ10$jlZ
zFJX9+|NB}Jo&gT=AMYc;!G&7GA^oq<C<4D>KOcb?>~H@08{reezdnHq{)G6iYXmIV
zNB8b}*nwXtj?&sLaB%pvuot|H3e6E5oG6?O<h7b7{9fj>3>t}<&<JW$(rswmAuhyu
zD6W&5f}b3l2Kg)GHRL-g#S7UaQjFd>JQ~>{Su7;H*Y9N$96PB4ZgD5y%*}DV;(FEa
z%ICJRWy$u^Ra0G4h|J<5Goa}Z!c<zfTJSpl9TE*CJc_g^0`|xM{89mna1=sT^f&+N
zpWhHDElQO`@czH`wK#8})7%0~vVZSs|M9)-y*`IcQ(^5)WsRfTO%AX@pV0??7N<WP
z?(nhwiwXFKMaW@NTDKWSpY>Ixeej<*nMT=KBHPn^x0d{Gll2q_o*ImiU%9VE`}Zf4
zh3*qpMVF|Z;@?_=e?CtNG6RHE-g2(uzcD2`@}g8G5rMNAe}5^A*g<cgd?`aUriuSH
z5C73ts!Dk$)`^c;&HopZ{{L`;RwM8yEGPC%yPg++d(UE9ali*dS)RUi`R6|TJ2wby
zgNRbC8VSrrtN;B)`elNE3erUz-}rwR++WS)hcIBS+FWbMivIp0ed<EO1=kRM9hCX|
z#|7BX!O#!ewy!k){vwG+pfEseIo_oIH)0DK9WYnV#%A1${~L>h4+{?_pI*}cou&Qf
zX9?wjx%&Ut0ZuVvN1y!raicZpwNVE;FY*_un1jSNJ&%R+l~Fmi{lpsjPDwnlBGht%
z<L~ably@kUV)Kq2=p9$bYrDkjzvGq2`zLh$&$ir5y}F=oE9j`8-8D1Dzr7W$a1d-t
zsx_{*zQnYbHuyJ`l1GvGxHH$z**ElfFQ^NwC&YK?*pyhSbsmV`J3M|A=+~D2`{x^o
z_^wpHCP5&}EUyjrLGCfvZPz9e1F!W&cKi7{?}%E7dh3GBm&MIDJ1b*KBIr|w0e+sh
z`?WsvWwgn9oCE9~Xe)!fOK6viJ`OQ+m4Oe`%k_IA7v$Q1ew4rq+FzyqorU>n-)JA2
zG(J)YxLRHHD*0p6rCH@To=<3o0z)go8=SN?{oYF#(c|-Ye`%Andzh)J$Zsyca(3K9
zap|Ec=%0?ow+f|3m^$3AT_X3tY*?z6DccMAQ;7N0gi=+F<utcn^SmhP#(NA&NoYO6
zaRN{CrGAUZ3v5o;ni-3TP|1&;U3i*jbtKR!$9%t|wr8jyANk4vlC6Cg{^L%ZP_NBQ
z-n;w50L*OP6B+RjT`Muvw|U71Z@*>*|5dgWRYIwXpor~l4JCD!CggdmM)=ZJi;&Yy
z`mCby?xcTZM2Z4^Gt<MM?tD_$M_@jGXRMZ`W*R&xVKhM^2I-9U*{{|V#K0+~PyNkx
z$;BAA=)GIwIH9f?{3Tl8TRz|EUga=G<*=~N)uzbfOst0WRDSoYKJ8uEGjdNOEw>4E
zrp+(`3jZtPWxY)Qo9&ehmm%wEk;w(8XD1I68oDfdEsqcCp+~C`Y?333hXIebM|Y>g
znk>9;+-;lACo77mrJ_k4#X8B{r>TI$;f9|5?BKb7Hs5Y><<mav@7aG0YriazW_6%f
z56=!mFBkpFtj#F=u9U~zZi~RNSUf0a1cByB+H|PK1?l!b7<5WBBcaGn!FU=_F-XRA
zS<{710D9ZnU!;C^WR$886ix#v94kMmV<I17?{Fz4Gk{yIMuhd4_C%wHl6zYjn7!9B
zG*47-PqoY<qRVt0WnFvy5!$kyzI10X?LKGMLGH7stUg~o@7yopv|L;{G@F;HVLR=y
z<kxY~aA+`#>nDZeHEkRkeCT)RWBdXACG`Ez(e@9vYY5Mov6@d3%hbqtZtI?62wyEb
z4hvldvDD6ge>)S{{9)I$`FbNFN4<32of85TG^|<jzb(JsNDn12@cdkQ;MAh;d)#GQ
zTE7v#jz>KiJSg_ZNqa;2Yf`KeC;FA}5wX0afCXt>E`0rQH_5ZHUt~5USe`qD1?>dQ
zN5SvbtY^%V(JvP~3~RYsEYqy>8N_JPz+Bl&o@-Gr3B&aN0`daTX3IfjwYK@Z#PQeb
zXX+oh>QCFAQJ@VAp2`D&5OQ^r+(H_HNkM)|-K`5eXUENMnIWUdFU^;;R$m+kIC|6|
zDe^URYuz|Xf*?P+ND3;F8E!0#EYH<2_-qx!h)n<Me!~z2-i507>C#b{LT7ITl~k34
z+_W6qo^$}4jp$N|Ymj>-gv1`Yxec7xvT-NcAdf{a`ey9sLHS2=;PLfjLt#B&mm8mL
zjf@Ou_9-yP9q5B2v0qm%1VJHUkRa%%qnrrVaFfmh&go^$d}g;SpM!cr1t&3n&1msI
z29=v6QQhaDTYL#0QoH#&Cs;7Iiy4}ZcrEpAoC{cM4_y4Xa72#PrprZ=ZxTBhPTfRI
zV2H((O3fle_y>$q#H2st7NhqxqWMrn48BjCFI7;>Y8SorM=^1N9kTr{!b}<^2=uva
zD+gb$%)1PijFWt2$~B@}-~@~BolhBJ+LSf9CrjHR*GkXHxk^X=^lG#;u`whZxp4-q
zQaoPu97Q?!Qa3(6+-735`~*h?^|Q4IhVNia#^!i!=OrJgS(LY2&kXzH*W>bk9J-Pc
zxlxwyjXJ^&{MLK`&Rg_T(y;|ofthJaxaCy7uU)cmWf>MSw_Ag?CrKnKiiK+bn7Ue*
z>DY5KLq!Iw#yYob2Ywb^5Cb8%3^UM_o#ZIO@Xo|s!?KK`Djjioy2Fe2u<`V1hTpy!
z;{qC2W<iE?pYT4ho@3TW)F7LXX70BG-dRA3$mu8^`4N?r{q|d7J1_%es?9W(c3<qO
zeh4ZSHXQt5Vy7nM0B@)D-*lf}PL%ocINuBhJbXc}n4oXJ_zML2HC;5|1{5Rma21ZZ
z11!>W68k!10uUIHe<cW~9awp7qOsbR`~5!enZC0zB?=8ar>^oz9h+b_ziqih(}YA8
z`wq6+gCD!y(ve+$=Z!swr`2VCEX6gmZ%3vyiZIrcVvnF$p~#i;KhJiG%0k>GwF|&^
z9S$BRz4TLWf8^apzdERs^?_1=Eb%0uxSqdbr4T@@@hdj-cC`zmb4hH+*{cEKjlEv>
z<45{s^&4r&I@VS8Mg7^po?bcXz%1kLPx+>;)QwJm@Vs;^(8zDW@Ia&!3eDkvDJD*r
zKoDiO_XW+IL}p#jw*T^vfq)VoxylXFndz}eTl{iomuGl9R*DpKP<J1lW}dbnBY;90
z+7&RGI&s^ubk8cVhE)P$IhZz$DIt9-g@;giyw;=XmcReKpVfG}+!%iIH)BDDN}-%i
zlDeioPjk!7PEm)*!*NWXu!iHWl>u?w)QAqKm=t#xP&tEHU#WjP4)Kq}pyPjjSihOY
zz)+-|x5IiPt`lyu<hT`UL7X)p*u8uSV3}^W&ICTm3SEaLo_z5zhwmb%!y*B$tQFh&
z>Gr5G!Z%hmyhx)69p+{|%)=SaH#ZC)Z#3&p`j{GW;i)8kI`^{>%o$s-M(cM*6g~tK
z7!YQDk=gRP*)B*Hh_!~J=iJ=*fGLdJax+mTa9*;99yzIH8s&+edw+JG8m(P0fV2dF
z4+O<d;1Dvw4sW4!Hj5#EO&BC0R(w6AE}b?R+N+G5CeA_e?oU8q#*DFM;oaP4aeqG5
zq6m-Fzq0*1^OAJFIg{5cxX-0E*B6!kc#-cYIsfu@ukx9%LBRd4A=9~bo06m&zY4)-
z$j_J?h<dRFEGJ(bc(jnvrQ3d&1<|Ev1w35CFKKv$IHFN$k5Jsq+LQ&0WAM}5oQ2yh
zi^$gOmNrNl>UkULfhB2BR{)rV?dKT5QloXY>vwnD)0M;Ghq(#NA8Sq6BSv?1v{ye%
zEo6m3nVBP}GgeW6=s{!@!!*~$A3#}SrG40oSC8y;U>9;{(>WRXOx%rhhh|@wGqz~5
zS1(CNRxVkIHz_Qtg0t}q*{86(&)a_Q6lD7g+%RtA_%U(${<@OmxND0nQ<p^Q?Z9}&
z{IbU>d~%@98j)iE34tD#*Gjy6cbyDkRKUyO@pk?YHpze?;oCj6yzlcsk};KadI>`e
z@Bxl29od<8TM4H3GnUy=>PLZVn~IZG0jf<JEHXWj)A*mM28c*DQ+=?+J9}SV2%V3s
zIvG}f4J+A+-~S`c(i)`n>DbW;M>w8OEXa<pD_oJ+eYFZa2noMP4zfW}@HS*3HhdAE
zRA_HNZ>V%zJNveXPrRa-{9a7$CtA06F@u=z*5}YPd@5%_NIGf5G%u1H-^Pi58?UxO
zv+Y1af9>YFDhZ!*ID+(ra*|b&X?LWI1XF+G;Dn~3P<}9D&3z}1l3L%U;(A|qG+qu{
zeofpO<C39XPj6-0QxaEfDwPmZuBW7vg-un=H6sLvkGD&YA+HV_xdb>s^KtJ(gg3yQ
z0B%|e$GTlL^F;d#R6iRB2SSWzM*$7rUoI`#iSW+ZRuUS=F!;zn9gIThgU*M8A$^Xd
zD$g}>aP3>}FN_bHE)QtLa>;W__G{)?vFgi{IINSAgUuh_+`Wdl>KO;)3Gf6GvPMw^
z;^06Vxab;IRojpJR_J%_=A3%Sm_qCBFXj;a%MSJkTCOA{rb8T<uiqCYKVNYcv0St;
zpj#Re@YkbzOCSN=6Nmgb9eO2YOnT@dSIocR5O6yej?BS!3WQje=B~?zqxR>U4KH@(
z<CH?As}n;A*%h=D?-llWU)h6wIYHi^gYkDdv)uWg#;*a-yy%)zH!v($?Go!SJoSnv
zp^5P(x>6r6fORfy+hI|oXwr)gwEofP8I%U(?96s*k_p7ZNN}fyaxK{(X6-|I>!#|n
zxsM%euQG&sNc~&~v(_s~ZSZX!=^uTSIJ$5v@GD=Wrruq)JPJvMn$m4^kICaa8atHF
zkmL0*CTDy+Ln%<%!7<?@<>xz0*$*=<Pg>#YfKSbM%_k$%Ggl1Kb~KaX7DJQ5sT4Ps
z9G9{n<?0{_)psCd)E^x%w8)AR4*vO`S~3zjg7t@0Br`H^ou11ePoBO}$criLN|E>!
ztWcT}HW1~iS$iO)vpdHr(o7;$b2cl94;!RFS1<vbNFo4kR&4pMleUNdjNLck`v{`O
zW{Eou700mTo<fhMJ7oylAGN%t`crYg<$wT<Na?)krKj+KWc>Il*V!;G;wx|3?Ta54
z>3oIUhZX?8e${dZV4~>enD5RXymSMuL8oCwSBX0ucN&f1-RF)Qsg@ddl2@tFcTz7=
z>EPngk+RX0FEDnYN8L<B_k3r+#K-0sps@PG^o*-BLcU$!B#idOZ3L72Z=uV17p9)>
zXYK&hln|jf2T89E-<+2Pkd5&Gas`(P6uMG6>S~*&5GAf_)MP#9UQt7zvAWQ>32J-=
z^JDb<vzF(~<)UZ7d47Yepr5fIS`?Ccdn`mSvMJ{!5H7I~-BdidWPU`VZ@%|$0zmEx
z05}hSPYLZ;jlG!hfxeLm8ptVWJn3`78KD9}YDT5EGkvq`f7Q^hJ*;2`XdO?89JL}E
zFZo@fL+(CI!9OF#f}vNgg`;^|Ay)^YOUeiP9AWSo4JWPgvkD+77dTJ5Z?loL_b5=P
za`(~*uDgUU5g_}1%%RbEx*Yz;8u5%IFz`Ur)`klFzD9?U(|fmgSYWr9Lx6mrTCoE~
zYSxrl;vKac>rhBDC#f7`4y9ka@jGfXaV$wx^q}AYi%!Nt+bNTq)p5-X+NC{cMv6)m
zrKoKueDZ8>azAT>?fO1C?>rWHz}<15&rKjQyOM(P%uEMfXEO2?duM9yG$qi~toOcJ
z2?Zka9#*QO?~P=Aj#Fk^)s|~pYUj&Nj|>NcE;S}Sw&{k$=DB^_w@7|ruZ9XMhXjf^
z#Zw-@d!`rO0g__O->J@r$UNpj8amc_AG^aVuayFBRPzqI1e*Vy=!F3=Gz$b0heqWd
zv&k811iFSei`oG!f+3C`QYV7lXJoF9+7*N)sGkXICNxZO!AWm+*hE$VxT~>^9&hSn
z0$G+*p1}$Qad6B4_y|83!kEX=+?0Lyn;vgzTUm-s9TY(2EZ&)f7C@*>Xx)+)>&~a3
z)oqw)Sa}xA-3D!B5Z|%j^fr<gR+Ows^hP)Q{Z;vk$?<Q8Z?*PZ>qk^{)L@gQkUCBj
zP-;-rVQE2454lf}>jLFZ`R#P;<YtgMr$iG(PlpbY%iIhBJ9Bcp;vMC25ppcW`iLJj
zJ|u(G>oy@PE-wceHq$HX_2#tCaWjcbbnWY9ZN6IdRMc`lWd8mWY^_<w96y}yzf8YT
z{~@NzYJYTTob7JT46Xe!>Jz>xvsqC4Wzip@wCF7s;g)|F)&7U?HcBb{z4E;lhSnSA
zQ%N=sR6_QgIc>Bcli83DfkZ)m)-pjqIS!j|4}j2mh*+607P<2_794hx5`pFP@?0%Q
zn!AlAqXRyPl+$Yo3gPp=yYf|)n{;92UGjC22udNA+Dn#V92mBH(GfS(B>~*_arpyg
z{sbXe#Yw&?tx~@{($53iByEdA+!f+goxUjKFmq*sQ_fPkza&as>3$jdcM3*1QHwPW
zH9hW;%?Pp6wE;<N_#%X%PPU!3JH1nJPwBnr4)C5@vUhz9vz<~ufC*ofu2S?%K&>AG
zpOF*Nubc?Su%>*kEpGzF8XUx!nYcOVroD+~D<!8e*ikyzlwWPDDw{FSTKvJx!qcvt
z^I&|Xe;k!O0~DY0z@YkQD`?kP^DT$QI4N8PI0|LO<w})Q#0#dXrwmALGo-vb3;cn)
zS7Ua+w=NzN&&fP3A&Xd&S=MZ*i@;EDuXf4b+NFi{nNGkhUedEaZt6gka8X?;$b12H
zSNq#9&5PVes!IH{dTw2b=u^X)vIDX#TuAo0rP3q&eSKBVy0YqG>ACU@T%=J0o+TE1
zCCxJ&y53vAK3DvtcsL3jB|3xNHb0!t&dcD%A-U8OvgesI?jjcQoj4^VTD$6oKNS@s
zwc*PMPbv`T{v5GYZj~EXYQaak0^efdy^)Yaw5f6+S~7`mEykY1iBHXxFQDf#U|~<t
zK_pKjMe4`acqA5yf#N~Bm~Ua9Txllq$D-&{CbFLYHD2QQK+E-@!#DRR*8#7$8*iUj
zQ!5SXmCPG0E&|Ir-x8mr`_hFR`X)JNe8r>4LcWu>k4_R*k4|~*R`#J;$F0}10$@Je
ztkc5!Wxn!W|BmmmCDTWBvz7M$rRSR(BXT*GI5Awi9v`gg9`74aG<CdYa#ab9PT?GM
z^~ji48bDgrAbjXD)3vWR*V(U<2a#?ca`rRhRIdDfawI{wWZNuMLIGqvyhnQuAs5+x
zv=48$msMX)BykN3x-6>?T6y%4c|^{HsHA2^re7?#nt7@y<M<_1tv5;w&D&4f-_w4x
zlpW0ItcFN70-!@-aNeFE=05h{VEa>{{}r4~0`&E*@mZChxLE2`hz#ruSl;7b)}Ht|
zAB_|Mg+WnazN%TTTD{J!O{a73bxI$8a{U*^!Mc1j5U6M-f~|SlnaX6fodZ^6XuNVY
z_gOpypkLze$bs5CH&UP67V?=`|0k@Cqi(S(J<D~wtgF<~9lvoE&&N1UX!jlMzYV$%
z^<P{FD88rziv_{Ai<5pv#sMXA(jlc-CpkD=_FVj#2t*8oi<ia}*!pDO5U!P{Be2oP
z37W^?|NYB1e%DTH86Xh9otgF0CKu<9m)I7&&?<fIcT*nxnGhGbW;{5qU{@~R&OHed
zCwHGVF4o}bG=jYG1&+sR?u6RMudbFEPLkfbE~!#3otD#c7u_TdYIk)^B~>bszcq(B
zHUTsu%fUHvHg1$m_hL-LqnJ@V04VavHJC!!N_8YjQK`l|48thcT7;$hGwzx-4Q8&8
z9>(ESa9VB;8n*3haUQ8cM4cP<Yl`+v^9t4$jYG*y8m`_SOL6jNOi_iBVyixnZzeuA
zuk=4v%(QDuci&+fVEwU`!`GHIOgGA53dO2#ma&PVtRZ`n$-;;C@(-BDs1*c@q&4{9
ztg|A+U@k?GrtOH;g-c<N5bg!(bTxS~Hd2<7?=ZN&%*-M{B;EGjr8Mat;5!Se8-_2|
z1>c6Dq*e?*=peM}WOmQ+eiw&AS*piXMvi#^217$d<&yhc(Y9{zVL4YUh_9C>UJU}(
z3x&~*8Fn!^38@bmAAoTxahRlMiZoFF36BB2l$-t-X`N}au7nC}pD+EtpD`C{%K1uO
z>$nx|%f(`h9e=wX#ww3pM+E6`c0zldM+{~)?CO7sJy&;MM`I$<Z4^t2!HvZP(J%(@
zR%lzK=BX6xY-Gp=3TPaCS$`OKTbw!&SsrtLF6qEbo@Eti*0a(Wn{^E%hJiA}C2tyq
zKI4tHgX=n!IvRO1!$mP~7F&*4xp%w+$s)&fBd0YhI=u!8g%QX-93W*bCz`LVim&!@
zyIjqxx1Sr^m@lhq%;vSo_eljo9aETJ>)KVTpY4y@P0obIq<?LIf(-qy*I!UOSN;(U
zNq-VXuw#LkX_yOFes88aZ^RX2vUucFt=!`7)y;OFwLY!YpN!|q?T?N|hc*y%biU_{
zvWnNPTtInJR2_wgDn&8$Y<AWpf~6g(+3_=>g+l;QO#&+?&uZpqb2@+j6i?Am$W3{5
z@Qp`@1$DXHxI?yxGELsvM)44<WD=V?>E)YENm4Dy3mPGG)23=u3kTW$NJK&@1CNkO
z0x6d0PVUpXVvL@z-Jgqn9c-ybH&L02vC33)^zc>L={dmB5?~Y7hQ03`oF*PaM~hoU
zc7MSwQwBbqP-BPf_lP_=3BsGjP!2kI6oyOzcwcr_?@l{cwR<XonP5B5&N|f+$!j_A
z+3JSHPX2|~#<|Q=<aCii!)iEF`${MU`F-RSG`xA-ZAzaPwa4nPwBaCJdDn;=AX?Qh
zUPEdYYvkCPs<5wPd#fep99r%XKx7pFQOYy#I;Ie~70B2}@xFC4JD^#MrP)%@Y>06d
zC}~vZaVtN)!EfR0m%!J~l}pvI<9oPTW7<>o-cZ-jrhOT6h12r3Xb;BcVv5{3nuRRg
zrkF;Dt+tK}&lq|O*w2dI{e0dc<ln3BK0|xM?iJH=o}j9T0;ALfY|T@@kE^}Ba|pI&
zZ!#C!c3`?W3ug1BLPc*m%VX=>$^+`;ZPy|GM_cirpAJs|N`-vA8t=Xw{ST!YHlZF;
z2wLgNB=78eVP|A3r}&*l21`aC2Nz)x-AiEe*crb4Qs;Y6zxg8l+aRlCYY4SVN%bV^
z04fXdeS7a2jLK>R*m5UcQ==MFrM>Nf>{2xffSERLs#9T!a$|its2czK+$kf0X#0J9
zVif<rO&8~&cXwfz4Xj-=2yQHX`K8fwo`$k3Oj{vx`rFKDm+91PR_b>~Z1AO6^>{yD
zkt1cm*@%>KWF3$J)xnTSALjl)!Z}!?2@I5f_tUaB8QKzxY+8+GI1gwg2<e|W0Q7#M
zl?M<@6wSrl(~fi}F+fXk3jmYllqj6b5L~?jo`1o$L;tA9(_*SER5Rj0$734VLTLSw
znHWemo{<){Krbv*`HSR}&h*|gS)`g~XnTkVE(Lyw5$>^>eZa$Mwkbu}kI)qKWBfv!
zcz}trv*uxqkBQ-(xa$GxPR#;=ZG~{Sus0k|(ziPGogT^265bY&m|lwOUBky8iJ{?k
z`v5+}qhQ=53aQU)t}>aI4`~KC0MoP;J*~7`br?a`w^DRn?4ydT!|&N6D|A2Df9dKs
zscjjBAU*^?UzBG+cLjgTAg&Dw8=v?i0ue<R#3mfI?P~s7dz<AG)GuH$F?p-=o!Z=<
zX%A?&6moy~P)d0HQTlx@>sO23-q-clo7pXL9Hbn3Hk~Kj^vKP97B=?4Vi^ZM!H4!R
zr#q#0Iy1A?Ex!*xjlylTDXx&DUf5Q{@6inp>KWMl&QS)`GaP9~1>uiA;+;)q<|blD
zNdtY%mA_j}C<^oY!Sr#&W-&q+P_~S)LE`8!v)z(f0}0n;2c=u0XZNZ0Kek8n>jqRm
zu&-5lk~uCqqFp3YiP2z#O|&z%7V`AEwcUUYO3%zZU!k;J2b!6}A6p2p;h)jM!UAWv
z-nb-gli%e+t?QP&yfCaZUghF^v#cwV<QoU=>Kom_uE2bx2njd@m}wbxCL-Cdw?&5c
z-@Xf#*#6kgA909ZBuKW#=EeyFIwQYU52h`nrOqUCme$>YzM|$L*aD1g$k`nV$1wwI
zTHPma`-Rh`E?!PzFPXDqFIc48Av`ph!5XX*kg!kKv6d%XU?aibAH`Kh>KXywhUu^t
z*ereCI&F^;*(C#fhlKuZMP<!DilqlM5N!;qJM;1qE2Dr0S=3=2>!@3wr?)ut=XrW(
zMI?Hgo&8{R`tCzT4|znHNqSX`1OJn!KP%VS>jkt~mlfuYu6cKH=x3?At5pO=1}}Ke
ziwflEhN&4y`JK&{GhCCMiKy7k8RW=z@=>mY_9M>!h<J>SKq)|{LD2R4XX9{V)$xTc
zjl4>Ucfm%HYVFW((o!c^YcZkpS)O1?e`+DwG$EbIdO>xLA+!t)<PEG;mI<n);+G^f
z#U)kf6^71&D?eX%Ucfl1iwJ+tIh@y2A#1_fjn$F390S7LUNSz<S?i2kwN}TiyB%p_
zvk0hPP%BEMaJYBI=Gp>KTv4^pq;Ku2HC2itwIrOqG_4NZl1>?v+8eoM2~esrij32g
zMl^n$er<e;m1|#wxf=N~A$IcC`A+uh%0!Gk*9wfHgs+A)qoX)jgVF}vH;8ju0)Vy`
z*vCRiwRu*{6tU^<SsVT3$aA(vED5NLk<M;8vIB_PIm@xUJ#>69?N5mnD9pB)5boEd
z%zS}Nqu>efmnOeO7GX8wh?4WXQ%{#`HF9Fg-d%}<Us1eL1%thKt2E>_Qp9dqi@zwY
z^p2@-)K!}2N>2w?3M~ijp$v;JfE_#U0Tn}Ze2R=zWXx00DnLRjRD4T{jxu~3O6Cq-
zeQ|R#)$+h2iApo8pH>{j#>5LATbPa2@t$~8C|xl6fR6B>+8sj}8CH6w8?j1v7Y2Dz
zY>_J{y!;OF+kW)iivND~)FgAfJ2=Jc`x&hF!b^40i7E5K!ng41XxX63@NShL6Y0yI
zWn*tj<lSlZqhJ<}uRp*oIEij)4Mq#!Y;DDxBX9}pclu<!%3)niHx+ZkuBFX(tgiVn
z=fCK+DFLFL!u3}{JGibM(<h1AdtAJ1CJ6qfCv}ys3Fr?9>p#9sBjat?RAE}Xl@RO`
za=e(a>{-Ja`N;iiufx9axV!E*rYQ{*marGyIV|L@6o}kg%PYx;zb(C%ti;djmNCo-
z%7+TbR6GD}<RFpzZKVps!86|Kg)!QhxFaQM){UD|`Uy^Rh6v=?A5~63cs#FSn*39B
z`C8g22jK8exPr$YpJwM=S0g@uNM(!I(=2g-7GOnGw_};Ekan)9TOjxIX<*Z=9!ZCA
z{f4!nan17VuCbj6qOnM6)_P(v>9c*E%{_Xqp%}z3?;b8&Fd4}lUx?ClzqJl$6rURx
zuS&56qyZSYagyAc8K6P5!Gxq>j+Kl)OOt|^JKFYuCW1#INv2aux2s~swF9IzxCpce
zP<KV{Rxn2@;``ct0L;FN?Z>{a)DP4E_3@(dXB~`UtLDl2_?cXVw$-#Fcus1x;?tgh
z0w%ZC=^EB4W4{$58e&lSOe4-7UdO{9J$6wAk?s>FHP$mN$aL44#e19CFZ-Fi*l~dx
z`uj(bR8R^<_-&&9)Y^RCu3N3J>(=iDJg1hw*zxzGMxD@Mm0?b=+LjWLduSw?2u8b5
zr{)4tGlj3<)wl4F6bIYTpXF&w&=Y70fG!J6CKxE0BP>!-!Km`h>=13}a~D%F9{;a8
zJ#^m0tDJOLn;}PN6k1tyyZ~KK|AIpJE9Yy{)gIiaa;>tftnbkL9Udg>DSZ!p3CN^=
z6CgQY+^buQ&g+U6*!e2zz5g~On~Z}oq?J7{WJ4%E1LO$SDzea{N2X5Q%S6k5F-7R#
z@O^-@P_LN=n?_qcjw<f=bkwYU!#;lV<NaaJTd37A|7ON09hSL$MHjvk#nkhMO|!vh
zk`YRTC7la^)s$*uX#vrQ*J<HPaO^9!A$tY@4frl-p0%MY|BzoiI5yw!YAZ(Y<mcH-
zR(`|N0WKvyhnkj5;=MMK&Q85eMmygo1uFalbWqO2g7@&d^?ystffmR>L$-H>t#V9p
z>08mwbcJP)bHebWW|>C)$VE{#msSm?^=9DeS5Kg^x$9po8-$FLVFV}=jIGUhN$mzE
z$$0Jc7=@Aia<yOoN(Qgwy$6DieIx{Gnlo^6VlKu`Dh1IT=pVs2OkL@9asfyuO?T!R
z4#cFY=Y)#gIjXb=Ur#YX_|`?!yjqKZ6cwgpDVfD?=e2m;*ydu8*WIIDHTZ6F+bAU}
zW7fVZyyKX)rOP2}W>6F9CScI)3visT$UZpXp>L`QwCEw$BgcNXUAtivupMg#`iU(-
zrG0TKyg8>^JyhQwsLK{}S2tf)f={)v-@y8(3Js7wd;@JMiGcmuod#)ib9PrAnYiv)
z%#JCGq*IY&1t7EHj_NO!2?KD1OF2Pcw=g3~wU*z>CM4ZXAQWtCHtp0enY}f+%B=ma
zuhR((eVq!CImkYQ)#mE37G+1LC&`ECd#(hJ%_;Uv-Wf*Slpl>z^#Me%h*^Q+-66Vp
zk%F33Lg-c1G)A%X2fZ_ijeY8O)Xp^ii#Z(rzR^V`H9GVl@H#OWo13D*HVyvBQ8q8N
zSgtcG@!*t*&Gl&u^35m@RFp4<b7rqDOjZWfwlhRxO-o+S@_hiSST3os79?KYc^JKW
z@5_SOM7LVa{rl&v(Cx8Q&ur!v`}BQ>w?JyndJ+|m#ZTuJ88oeW^T&wAUWWo}E4%aa
z<X$NhdOE$OvjlS)SOW5e=|MrTNyXB5m$AfxMi_0XxxASWSaS6pWB5Y2-&X(S09;RR
zXUev&vv6FJz+gD5BxK;WN8YHeoya1JZ+f|1eyy+|OW=FHe`+OzhynHPK(|G=K+fR5
znzQOfTo0TT#s*Y*PmLq_yyN1diMk;J%)niCF_PRY2QZSj_WAyV96o`p3ZT&aZu@^I
zgBtiZQmDhfq`d3@JuHc~M8Oy>b9oD7pU{FV?{BOkL=PO_V<HJTz>4#B7Nd;KO}Go7
zV>9LDi3Pr|auy&kyvbQMcOR4;^vxLBfp6%0%qrGgSBd%18Ya(iI>>9dEZ797F9Nr+
zpm1UCDLKfTvFT@%)sZ)mM8?KWah@gKdmS+{3o9L=JuZ5OUI(QMRRMquiG!BoQ0Ba8
z%D^X2|Ne)q`#e-jh6|mow2;%uWTusme2T)~m2Mz8%&C9Jtu~4w{i-q*&2ZxuINl3n
z9+dl2Ew4TfCHehVv2klFHM{rOkK@M+@5f>Bu^=9mtO0Bw>rJ$N7{e6OfKDTBodZHN
zM<~j-w@qT5?&PliLoyB{UlHpUD;Obn841zfhPCVH{&Y61=m7=l+_o)RMl)rIcrFw~
z<P1O_hlU|)W*-29cBrW;;N8L$OI-}%c2gtv0zuQ*BV=ooCKSqubJk)$ybB(eNMfRo
z2T0CfvVW7*&8EPabdG$Hx|GEndCDkOOtEjtIegQvtAg+$8V<w))UpqJ5xxKlj##7D
zF?9&TdPZjSjQLLw2-7UFTOr#5^#R8h6hy^T%UQc4h?Jg1s=3Ka;+v#`WxLwuq;tzJ
zQ7=&;>!g5yPC{Ph#zX>YUN!%x;UZ?X0yGhhr}e!OAO?TTM)di$fg~MR2{4M9-ZI4I
zDsnb|)?ECvpcOSmlJ*<7`nK5}{VQ!WcZNl-dM<6!rxtINEryi;yYok2u~~e9K5tp0
zhs0l&3{L@#vCyX**xm#R$GU^Y6(PQHB;|8}+e2k*zA_>07fthf1!ySQ0fzqwpbSC)
zWG}?-Q&(&GS_Ej28v}2y0BWc#%AuwYe<9`iC!2p0(h5+jI6wE^!yU&;k)r_AmBSU#
z54hP_CjX1)3Vbd1Pp~rPdsfzXBKt7u1{?3atkKr5-rMsla=kx~CD0jxT5<r-LlBTV
zu0NUor#AgV*1Ly=*8wQV|K3y}gaFllPKAKlA8CRA?EwBu8v7r~{=ZM=|6$JlN3#DH
zkn(?fmj6ex|3{I{zco_+%Mqku|No}vrj>@pe)u02l&XZ*+rt<KYoC{YN(cXCfB1=u
zKH4uiUNHQZ_h6T^f$u<|xfSN=XMaC{wZhQ?_MLZGd<`srnb!V~-YKhRu*Cd7U;LkK
z)c;qfS`-sm9>{G%U+vWY^F{x~g%E#M{G<9`aCHk4p(7L%6EG;)X<2;^ZeQ?NBI}MO
z)2$|fc{G;K0i|RJK+&-Qv;>KI|BpWjmH+D*{P&H*Eel|mFP+S6|J+ntmIy$DT#E1R
zsG|cWbMiR>DDug@k=%Gi;*B($(kq>}g?a6-pON7{0Ir0o;x)zpd{A%L0^u1U8D??A
zKkk77ZsOHYe!qgq{h2WUjsM|qsJmK?=%{mAOS5NE&j3V@9qrHANS6!%anQ<IjEG``
zw;jLh)-M>C>2^AseSPzFg-Sdm2xegLU3qSZ+;Y2c*ba0#CZwe7AJ}0fZlsPo%)D@b
zBtA%y*PJ#l0vHU6%N%7G4}xJlIIYjD&)B!3QerHl1z1%%^y+ZW$<pg(Br(s68W*62
z90U{9_t?#fK4MvQ)$jHD_~wMsp#nl<8(b=3pgFPvi22Z9XiLFUkm(SRDiXeSx?WF?
zIR{Z=aPLNK1~3ghimq7&{A(Hi4=MK_(_cczP8kG6E`Z5U%g;vTLXA5@o&+HizW)ly
zZ9@Uy0Rzky;nXzot~-)Q6=Y`z;MkQ&uA!}CDnco2uz}zC#0s!A_MOtZo=VT~d!KEw
zFZrGZ_tK>^Q|h&02?4!@^p%S_2Tb5Dnk^Bl;rFGR_b-Zyv6Hk+!n6{qa$(j6p^2Lk
zv^{<Tn9rlpy{v9E+<#qoO`a=wEx^rWOc2KUlwZ@O|HH-t=GFmjwe}gnmiJc!o&bO3
zJ)Q^<6<oscR=)u#ssf#+PP^BwFWCHEcIb4|(2DRpNYl`d=Wa_%BpiI|jqIFB?sqn_
z0&66lOSvP*WqWO;dVi}?NL}=NxIDY7MJIg){tv_5mK1^=8|1D}vl$y!Vz2{v(xWYi
z5@fup3H08}+fkW<fMQ?d?s_=jK&6zP<Yde3+FNOMZ~uo)X}txlite$NV+O$Iw?8GZ
z#p=qW&u|p;Tu;;t@0z{27v;x90pAM&d&(4v6C8U?&S4TTQ$U8W2=kq6ceGp@oVuk8
zTVXO`RN3T*c2s*);B4*sWPJTGjfg4urWTol>UE@|kjg7+3sNgF$l<yxo&H~S2mflM
zvk@?lL6~>#dXlb2&NY=N<vopZCNxC)?c$6@I?Dk)cw$o5fh<4EdnYMZU!h<dW?v{w
zl|l3aH2wL5b`3P<9NU)hZQC&EY-}YRU?ln(vE?|8t11ryD9vm~KocAa)K9|d*0;1H
zq?W1XNwBl?3@nR*<O4K2+5urVHcX$#khZSV3`nbQ^LFP&(rv4hTSyyPFm3?usmI0~
zAcWCiR*@}h?#>6|&>lNO1V68s)4lE=ay@!clfa=~WzAW~;3k0%KL&PBKm4boPow%(
z1GqBq0Y=eFB1rniL`9YkUV?ZJ=qwUl08|h=pycaT$khinkyJy1+&YPV^Tn)<vgo8$
z(*uLj*-yQoD_Ds%rud45GG`!4S_>d4bt5@tf;s`k8V8^p6X}hpIu}@#Man@O#CnnG
zd(x{MDUGYteLT1H;Qk5SwDsb$X3qY3BR9$!KK$YFBKX#;0rC9$@fun0KecGeryzw?
z?Un<kfFfA|3l$l1k9nuORWWcn84zmmD#&6%wZKXWQ{Y?YgpJn1j2T20DW8X9hT)Bq
z(AwxgSAb&o0wx5;0GcZb690(H8bDvY?^dIX5<e5@7$R&#_%*&rCiKJXAp?MhFiIn8
z(_|%>0K@QRG#LRzwOcJimr8Tt)d>aRao9Gw*(9!c!(`H?NPUSKI*gIzLO(Q)4Q4{G
z60CBn4Y&rTd8gR@ma~j!Si8>!V9t!7CcS6-X2_)kdX8;JU2OgwM+4h(yTiA2BTmjy
zFlsW;rzO==@k>vC|K+;SqHWr$#qRprz|?KL$70Ot4bXNbI7|i%3`KQCOG}rVl`)45
zgTAbER=!g!T=iv#C9b~7f51xro0Rn{3u#u)Jf7nQuoCHcT>>ph0j$*WG^#twlO>o{
zgMnDw^__I+Pnm-x9p8WbF91Tu^y?AQS3u<ob4jjwKWzSkAZISO13Z41P>KpXO+60V
z^0uc=nf_RI9K1+`b9S}*xFuBY<t6=Yd;x)Lchyg89}l@%%63!ig;<SiAn@;%>M)Dg
zPM2$898<LqazA|U1N6*G?SMN8S2Bti&w~vR1FQgY`BGe=txq3J5_*BYEE}owPpZWI
zYt%UqO8aAZ2S&d~ms=19iCZpQzPx=x3#`4L{dl+O>!K$DGZ}7+!CDKBYf-!*3NL49
z(8vV14}5?O(*dX*@ty=TzNfa!0A#27v)X`5preneY+gcIk|aZF6eoG+q@RsqQr}~t
zk3*FRoT+>WH2q}K(+uc7V_T<bYMUp%W7q-`y7iAHNv5Ik*wLHf3d^bDi}}joV119p
zdW+PoJv|_we7WKwxN#cBsyG6o3_8rxVR{N{|MNZGoic^q0Kt^}@HpUZjp8_~Z11N=
zog{my(?N?_l}xTW<VPrlzvrx;wsVtx-AaglCyyYT^ya)3vEwZGg!ba$_Apc&Q>f}h
zuaLBA2oKT-fo1}}o)<iI_JnINcK`<8@;km7-bGJpM@(9qsoNCkPp|f?RQEQ39Iwu^
zV>^WPupm+O`?|N1)ZqFwWpf&4b%5z}p=l9`Lc?p(_;=g;K7uH%u#}bWoxYRjp7u8P
zi%Ml9h@t=mQB&Vdy$%3P4X%OQJ20i$ygv{zyL~?LBKI};Jd{;W>cD^Y$ns9R4R$)6
zQN1HQbUtbixf9siZkneUZsyLA6d?dHpZFm+01LZjIRTiz^sn`r0QW^Z;6j-)s83eS
z{tu&kYb({STB_=u-(obJNdAQFfjtxfjdN+aRQ~tpQ>Of#AXsNVPw{O8dOcsB$|uu2
z9oLFRd+k)Ai|H>BTfy#yykkIqh8ZehUGJZm>Ta3MK>y4D53~xTJPLpb&i%H2N(McM
z69Td#{ED83J8)wuWBB#_Z2ud@)dud#DrOs|eYyU|0hp~Sm`(x&His5pzzkyp00ZQe
zSeG>`=E!3)kfP`(8>~vSxVdXBV)7g;xB&+K@yG@SXc4eAlE+zb*;$5dnFITkRfulw
zYRID*2kS*myEKoYStqcqMT`MBh7Q;{6`9h=u<R&@bWNjpeq>M_5Dn>)&s2K)kKLy)
zB~LunFHT=9FgL(l;cEZNX^h`akMw2f{=h@7thO<;su?h)x?xj+qvcmO)bbZ;M|xoC
zUJ(r0X-8;V0Q5ep+nP?c+kQGpWL&Tj$vZ6cz$_C?BRYV+G?n7}n814;G!T)=uY*YL
zQ$dF@x41rPQJ4<ml~6=~cY0r~$&BtL-;|X%#y!wiwEb38xCn?3Rc{)LYDX-*Hus7a
z`n^)UCsnh(lKcV7&LNGM8O0RRuv6&=$*kIv#^l@GnVzfkYrTPC^ril~gYfL4CO5V*
z%fD>>|G6M}iXSL5ThUO@9{khud=^-E!Y6JC^mzv`AmK2P-?tA$4P%%X#Z3f=XGZ`T
z_Y_=5wWw`d(UpT0OK}3?yFUsQDfU8xU<1xY%e<z|EFV@$F~~dBm^|e01c?OgGEhB}
zgtjSj)Od+IS`LHXuI|z|Xdu>$yKSX_aFZOEMG0Fd4r+y51p}0<3RI-+P@^lr`qib@
z%^0qk+&&XRo1~Q!XORZ|sD}tqfZ&Eh5vaf*{4fD8z`>@GBME*<jX)4$v<C#FNIyD1
zx>Zn)s8ckw$_=oxnn~IE^PnWUA3z1KU@gFl^&h*XHqC7UHqBS<&yAbhCQGz`Ebf+C
zP}9DuuT>3Fc6VuVipCmhPpRt2JwA{V-|DGO>9m1R<tYJ~&tebfenmL{5W*$is@pGJ
zn;FywSzRM8lOoicq?=j?8fY5ZBqqDCxE09oUeL5|G3;cDWODA3WBADsuWgv5cBG0F
z@eYld|L3(dmI$--m~@v9TBvI`_x*+s*u&Jrya)Si?zxq$I3k;NRo+b#mwdxzfY^mC
zpK~*H);36EM>%`*7}Njg1EGGx@UUbtnb&FLrgpd!I(t~4Q@+i+!zc5b2`l7f_(Z%;
zR_jgk*~85iA_O?kl5*?2Juk4r5-n$29?r|^N+vFyZO29avn0sAj9it6#c{uku7Koq
zPMnjE>sMae$zRBZJPwr%q4IonF>PupV7z!Leh;$%e4zr9Qoa8LbHk~Ud~X?m7V`m)
zvmX6wmBge8b6xTkOl8rgkY8LVAP{-A7*x8d16O7nuqGns8Y_e_eEj+WSrU-WZ*UFq
zQSTpA!Te7qvone$4PKQ1Zt22?z8L}_$49MlntOUMIV4Pv0)j}rKqDFO57|=UK7{#h
z(7_+4i)q`pgE&x`3GFj+EC^(e-4$^fD4JheGPC6?v`?@d9KU=B<CuZ{YM&<q5l6Ow
z2F)Z((hT4_MR9-8<L$+212ZoIinq0VJPobS`B<^iHV~ywtm`=0AM{hG$^$BIor7Yb
zmhsXFU)}YJkb6h(@iFIfM4J34;=ReJz#-GM3=sMEoEJc}*k^vLBg>^kb)b!8)eFss
zsTo6I*vW3E(!A)v3E~7@;y`i*DnPw;9V=IMJ@N5J0Q7*Klt30Gd=-A|c$biQ6;#bd
zt^i54Ot8mmxRM-n7S2@qb51n3<88Lkp2PXSmU`vm93Uc}-)@$@)$wC1aQ}}}0+>CQ
ztRX$eXrxv$$cb@*=3M%5E<Fh;hV%o2yLl{$5|9fSg2a(7fl^w1AEWU7CQwAxWq${(
zv$7N4C)~04(Z!9#&dR-`&W3xP;jLyT2e6N6C6PMxf>LJ1D8-Oum}7pYTvVEo66m`s
zHy6&i4SC6ugneQT!#WM;*Bw2klUrq7#NjEjLS_g2A>~&)Vdcfs_Q&^T@d_IA<4lL3
z((~UFwgsa+uuSfOO_hHEeQ^^La7W#=A5Yt^7Ac(RcQK<M9mbyGld&6S6*duRl`11B
zRaKt-a8@9MP34>c!-LLsKxy9`aTE#o2rjkqR4_HXZ-pg)M`+<t>*$R@<DgV&`-&M6
zP=PR+Yto+*(82{6&q0a0=dfGk)5zO16Wu7IotgCr@s$UkW^@4VQ#@({7q+QzxEYd5
z=K!Jqi?Oo~sw>>Gd~gX43GObz-Q{Az-Q9w_TaduTA-EGX1Pku&9w4~8yZano&+F;e
zucv1Iq99cim3z+j?Y;I|zy0WS(U?;04cthdPw9thF7(G@_M86y)LkS7NLyTVbP+{X
zXw++M3@jx<gyn;>#V?Kgz0`4!LpDI-n}eKDDOAc@I#QBu!g-9RsI=Iwp7ICz#13BA
zT(V@e%{M8FNondbkb{YUcs3mh34(;vgr$DSo;@hdrbpR@<DesFp;9HCwv6*sy14bE
zDZ7APBIj<C_?5fRO&li_?GrX#;X|1w83`pGSs<J8Nm7`Fwqr(1l$LoWM+Qe-$r>Y*
ziZx-t{!Y4$c8S!!U|-spcUi(uu#|J$7fX{*3sTwNnIi?&_{RP3x{0lb;`Y*{8$uNm
z2fn>Q8j^WIwQni>W}9&?v{XiMIN5QbEDL^xp~zj-IB^|IUsqysW{N0|+&O*$Hp^7>
zB%^D16_uLFlOggJsxC7F?UIvozyQXJ*eSIwuYCe!xvEuyM<n`scA>Asjv^f52Qr!3
zpPZKEYRFHY?q7kDS(R`Y2;pkF67wCjCIiK~eJHL)Mx~Vwzl_xI*lp^I&&{?j-m~rq
zoQ6!WT%-E(@I8y(e>cSZPd)ORn^HXI(>E|^MfwJKQ7g-9G7`pNsHQ=D#miZY@g8WE
zx+|*^i*m<`6>0FlvN+L&D3w+LQycy_*XzH-F|VtyFZEe;9K$}_^ajO8)CCO1%+|Pp
zIMBM{=(23ZLC)uR=rbPERl320JfOWGMWl4&aM~`Q;3G81zy{%PExV{#CiH6e|Ey)g
zra|vK{w~9~Kf$4RsCoRGshty?qc&<42L3f|>E_+)dr<xiq%8?%?P?E`2a2Q(HOfXQ
z1h-b!czdh_#?jE6ThxJ^O5@dzuMZ%LNs^M8j7+grG#&i1371HFJc%3+GldT=nRgx+
znB8~I)oxU`wZ9gS$7;`hKC)O(Zhtb<1O&Pbw(_{2otC=%_{A}IA164vPTwx3-SJni
zo|5T4ozvFH*vw0vVKjYm(8y^~n;-Ds&VAZqrS;O7l6+|ABw2E@{gm>5N%Z{pilw82
z>`#(t5C7;nL-mL<*90Ibv?|wq$Zh&;LP<}nO>F!_9T&Y5yx|UrL!3(#qLjHhM)0g*
zXBsi+o(x)Ls)@z2?!&n_bTM|Rv*Js^9(3YPBexvQS;Woiiv;O@AIODQfYL1Bi_e=%
zgB7iavPlqggl2zKGbO+N){?wg+N$+R{|>`^27P}3E}AI|vYuo<z^7zeX;#1#Rqk_P
zX%a_=Z`;l^Tm(3l>kjlK&_-%St!{Ej@rF+uH~dzL9)GJn)AC8UFJ5?uRkgYj$EV?<
zvu-e*RGLOGR7vTI8$MU~KhxV1DGskR_48oguKN4W0mz-r>NZ?bV~pcf;L|{kKwG?~
z*t&K4JheR4Hq(@hUPL|NFz<-=+nsuazGU{m_P%v#WY@U$IW_il+Y49o--%^^R3K#-
z8%^hc>!~|lK@c|@DDSg4u@CJ5Ro4jU+#N*^fVSw*cTU@Ue|QhZ$53yD=%Leez&af!
z7mHAgYhb4koqh0q8OEQZU3?k%EtbxUpS(A5=iGt_z7l>G(HS`61ct#l3<0YejcvDp
zWA9Gq6o}qoYM(drw>`g+NY0%P0l5Sf@Cix9fNO^ZG&$j`YJGS4R>RumoD7`&XH1~3
z1&vysqNhIV2@A9^sK^`EPOHCv3$C^lDG1(gU5MHpyF+5i@oU{(#mDgGrpj?IMEZql
z+rv@eVH9ecCo>PqUVf`T<zex;IuJT2)2dy{H_&93<(x$X6}>;@{}b1GH5F5ml!@jB
zR5)=i4f%NDV76tKsa~c5pGN5rDawLn%8Q98t`!_9$}~w<(Vt4@K7T&Id`Xar>mNEu
zu=NI1kK7!v;P<S`c_z*LP4Pd!_Y1QNn)Ljiuk+3do7us=g6K*yQeaK(9kUsI@8j59
zP0~VdKm>aOh-ii7!md^gMA!Bx(vI5sWwZn4tHgRx-DZTb0WJz&PsZHa1%o!vZUxRA
z0}edRr~%jfeG28pH)lgVdhs#P1))^5zj)=zX$<W`QcfP+6u`&HpNUr->1y!K$<W`|
z#zllggwi+rMVL7`%C*@K(H4!Yx;4K5+C`ai$m0*Kpnc#%CwvvzAg0WXEd#hm=kp2m
zo<O?>r+<xOdr`VEuPW0r@M6V3>9}w&DB%%>8O7r8ic!lf9`$B}%m`6*4uhf&!$zN1
zbKX0PaWc@fU)`h)G|HRx#`FG_ydb@Js8{#heSR1IS!#UA>#=7S`IX&h$v;2Ct`9hs
z$GJBno6=9mEez-du@4Eq(4TC3#hCp&ZmuI(3b1OTfZICWSQrrP+dyG9yJ_@h6Fleo
z_!J4)M<S~Y@XvH_=wAv^#_S27<iD=pmhaTt{W|BRKL;36hh^9@<nOF3NR93Jp$>aY
zE9s#9F5<JHgY6s7A0e}8-@FEzh5;}e<-mV58-dSRr)Op1jOQ3>Y*zzO-BQ(k4qeRz
z$}Pz=4V&NXTO+x_=to_w0iIjEMc5c4ep-VIFcjoh0ZQSRs`Xx5Xy-W~2+;)qhlnTb
zMW7vo@dG>(4Jou=(bk*;Z1kb00sfiLZqCt9vBDHaBpsVW=3deCkg%dG4q5g=3z2F;
z&(rI(_2HOM_ZJT@kJs#aH`V8w(xydiDZ>k<3iLvKv)8!|3brx)7e2RRBEXxNHQoK!
zV41J(@`M~aL_x@-sNc5E8A@!S(i!CA1>mMkX3>hUgnI6(qH~~)2#F_sCf-u5bi~GB
zdZz%GIIr&oKLda+Rvws;Sk{(P3Y}2DUDi`pMU;>~-ew+S9%(=W#Ct4bF9qiVM3iBA
zl5qlm05}gGBz#VW55?Bf&>(0m921ebczmVawO(sL(?SODI4X0%M@26lzVDy{%?_Pq
z)`txX$`lv-laedEZJ8ah?X~%A5+k5)Sx3a8Q{a&Jp`3J*<rUED5j~q`-}=7KQ72r$
zqdhhc6wInT_RF(GbCeC7ld{QHx1{7-?=3lG_J>vQE{q!iDZi+pc;^w2i+*Dq$9U&z
zQ`7<?Hsecow~&aL8z4})rK&{+{V19>@<MT{P{Slw_kQ^^9^gQH`6M&W2x>1Wt@;eZ
za%&)v^!~Fo3w5TQy^g`kW-WAKZQs02>tAyP&vu}2FE0M21S4&-0-k<+A{Ov+d6FHg
zsD9#Zbz}l`#tMB#o*?sC9Y-cEZ=1t^&tXupLk^<y{)ier2ktdrnXhYjgAXb|1SS5>
zue(`7V<YoCoGb|CjQ3pK25?^7Fi78`4lM74F=DoNX$(%K?WgR;1uRXNr)@vndZm);
z^8wm<-q$Dwi(0>U@vWOTeG-;LnhX@(eVY07(c|TQSF%jBwZAR{n#u)Ih2gi+UDpX}
zXtBlumn`e@KsbDyBe^00??#EygIs?|s@szo4(qloCU5i$u|cSm#vyJ%9TpjDK0r~)
zWo3mHeM?tu3y_5XUhv-+SuQY*9b3RbVrxcB50aCu>p~=4XM7(L%Obu;cl7Il^VN~K
zQz`X#xWlf@r&?9vhMCMiap(C7e|_NDyz|jFhhfRSngUE9A4*=V#TP(dRh{G@KQV<B
z#lX1ejsAVsh<=VP_FMTz0V1%}$~cK4OO!z(xIg#&+hzw8Dv~6Tr|DbPKcYF^Pr=Jd
zS;6?tC;vpIY7?1?CrRK4;=cjnQOfgjcZc1mLj2(<!((QjlV!eLQ8p_#jwR~mfbzM<
zJpFx&&3%$xmkh4k{9c9){_=F4L=;GUA4vc@P1`0_VO2@?YO6jWUYs~(71jC{hF1V`
z2I}l-Aa(<M?2Oa*aH)rxk0j!{^dCPP-0)O@MtT~AfD~isFUT%qe6!QbnjZM7h+6`J
zp_9tLGr|oqjd0)pB>U@P07lfEK&QUohIC*r0hfiyybF_K+fbI4j{P!AP=21Dy>|1`
zW-E`x!U^rE&yIcSS;}P%kh$YvN1`I2_`!zx;ZCyd3qLU$$wlgjP^a09&Odt(&Ay_U
zI*F5Q?c)Z8e=|QZYa%?YzCIgV#dCaDGy7fTw1g2W><g`Ii2RgwZBFv5V!QA2dOdXs
zdc_sKa3xH3fH>Lnqu^`iH?ZZ~Km-Xf!H@iTo5>$ng&K446tEjxOIu99E&-Kez#7j}
zQi&_&AL3ht_Wc(?dPChKx>((5x;d%-WZD9FlJn@y1}FO)TY;%Aoff_2B~YH1CKS&k
zEmAV$z{@s{j2YeSjc4b9hP-drFT2v~35ZtO9vjYH*y=TyWm&tIjCL~Z5HJ;{9y{IX
z;0S~1H?vz<T3i?7)?3>Fe)rw-Nl>itc<546aVqXd16FWT0vQ6CB3ULqdX-coI5q&a
z9I!dM=XTs|B=7ToB7>|Q<y>S~0!}8D4>Sh(Lp@=cc%M9j&^Cd~FzU0PpbI(z`gAOl
zZZL0AJ1rRrI%GU|aenboA<#SuhLlU7eRFUGCOhxn0*hw;?({z3OG-h6nzr*O`(VI;
z&bhP@7mh1}dGt}orjl_qc7rrVQ5*uNh`s-8Lk4O;V;@^ITHBaK8JT+G?`QflEb%nZ
zs~A?V5I#ItJjtHW>%Btq%atkAL@C&#mq!G;&(RZ|D&w3)UfR;;@^A}i9^8-c`>C3C
z-V|8P7`LDC<>)V3B}q5U>g~<}7_-Qh%-<b;sRR6IE+xr>HQJDArh&AU&0)imBcM|#
z_EFl_rlh03MVeiG(~ui?ei5F&+4$gfd6<CTecSzJp?`z^2w$;-B;YUcIC7Q!PQ6zn
zW??3-+<=qcBO3j$6LFFMU(2^y)nT3INjEyVM9;2T_}-9^>}ZC4xmff#wo}jK<7vD9
z5&kXpYbm*l{H(K9KkSh2NOhP6qKS0wS=HYI_!@-m=uw~o$b|m;<jiaJ_h&<lR1N%y
zwAT1#taU^JXR9SJ)hqg0J)LXn#x<rIvuj*EgSoQwo*;c3LQrRt4V#4&vXf(0x7x~O
zQv10TKz`)01+(JY{1#~`^w7tgPxj_12s89o@)@tot-a7c0m_W(><Dq9>z0aJ{qmwu
z!~eaz_zDe+5Al=_jNgENDI;U9GPw{+f@JOCvVG{cF!avEp?WfTVhoRI`~vN;&Q+q0
z*G>ooL(1MqPY$)!%INs|W}h`9(l$+<K0pVPECNuZKFV?9LD#O+>p>v3T9fiA_Tgz|
z_|)@BzC_yaH%5v};e9uI36UnQAY_jtmn-ze!&cr9r#e-Z+Zgi{R|PUA^6?*OmzI!<
z*OIdXPkdLp&Ge5LK&g9n<6BhoyR&mvbrBJr=YvJ2tNI*}L#5l7djng_$Dv0QMKIA6
zWlUZNl6?9HjEzR($Jkq@-N4f~SaEu?b!Yp+RTPmtQUv;&N9<Kui&LJ$wcpoC1@lA-
zbYk=$Xcx->ZO1cSZT6mZ00|1D2KGd=COs*p!~^Mi00bu&OU!i&Nd6u{a1h$<`RBfd
zyQ;Wcy24`y^lQ=_kd!nrntNh_4CR6rx#;i{&h!j=IH@Wb8HJ@Ay5qKJm1>ORD&T<F
zw*}@j_#4*&DPZj4vWWdM+Q^@5;(Dd3C+0A)poL8tzBpP0F68!?s@JxQ&vTp2&C|Yj
z2`lv{h#ZJySX9QeWTZAg_A<Jn1u;$}EKu7VtQ)o?tttm?o{u{oWle`Le{ozpa}W3Q
z)?|PNwsak{CWSOT1whqix1aT?%3cpN+QV~=+oYzl?EzVO{jZ9GT=Sv+g=|h40Q}**
zK_)!|kfYPZg1PMF*Zeh}bj*q;CeZPbiQcH2S|OS(UmDK{l$`BGuq59NT}EG~m}~5q
zp~YUxTGw7*3yfX97nAY_l0O_*vZ4v0Uq3tomor}S=+i!}J*Wp%+{0}@l0O_J<tNRY
zYF|-1w#z^M3bcKP=Xi!25EZ$Ow$q0m*3<u#^&*xIJPl4;brp1y{*@c>Hn*&Sg787U
zOTT-5XYkqo!4(sg>J!`kM+4IMl?W|y<;EAyjq2_CcRq=CUEZwdbrUa}5xuLC3j4r>
z4j~FwWUU_M$@Y$x*lX{H1nR1TCqU8a%>uNvGhj5sq1&E{xWCZ(ItJ|@9hH-h-n}aK
z2d-*qD>Wa_GEXyUjcETC^C>V2$D|7m9FuhP<$4A6?r$pAC}<zJpefid_~5mQ&J^Nd
zC{crz?c3MKYlmFbPaV@6+xDq_n6o}imukJ}zRx%RCV+(Bn)K_sh^x-IjmHAIWqn~6
zH;(n_uQ$IR@V7@)jYDR6n!XxIqa}C=($fsPcG!Qcxd&Rx>BU4rTFF=DG3&h2A>O$m
z3%FT=fXEPJ{EtG`2dy#602z)*w*N3@*O!;`mTOj^oqqb!N7hvfqZGW0+SghQ1VcjJ
zv<wy+l_kv!>Tyl+`K5*|H1fic*r$&M713n&q1WaWLFQRS`*Wj$w-1MxT(9~Pb>mnQ
z>`_I{W=;0@S>G+r56iP252=}tn<O<5{m)JxyBqLPPwsxSltgcBI=&)S=r?$#REkA{
z<v15Hj4molG5df)aN@%@J?6Kt(D4sbeEv^;&g=2F2d|~LtTrJuU!Sgm>Y@5yukvn(
zQI*UNLGg09RH^I3l_%7vZQ2E@Q0dfZ4S7P&KAcIjFSvr9ucNSZxB3&LDze0n*MoP_
zM`iZ>i{5Z}hM($d(c+j~;DgaNNg39Rw1)3G*1KztM8IDWAYcu!rjn@_L{<A_QC=L!
z^C$~8w+udBUe{#*?u0+N>*_v_pKvGR%mP4kdeEqzeD}PrKt=YAHf#;hL0a#&NecMn
zk2Q2Kl)`_H<bS7xR27`5;`JH)CUZ^<{oo21B>MLp^4Z4vCA@Tdn7~qZyBU=qqfpt}
zxML-1Jys0mucZ34`0cEU1}JSUQcs6xRd92S9g#pkde1jOB*rQ%RfLPEfDr7#=$Npj
zw1Y#eD_tO)KPD0N0B_)+PAY1nIxx3)-b6nxgajx7rtZC7wy!`pf?E+*;d^YY$L+kV
z3lL&iT-~+c?)qPXG3CLKW(3gpu3;woZ&+D?{-ao`-NHEaSTnNNZyESI<*}SbN@7pa
zRG@rz>B5@Hpa^M}1F{f!5vXtC{QK@V^r*^*7a4S@ztaTjwH;xfQr=_&6R-34-sjpy
zpB|>mZyg;=xvAoXQQ$P^eY>24_ChkmPBwGTJv&F}2&C?7MRY)Co4QE_r(@#=ZTdFt
z3*HY?$+z4-YrVU;UC!ltx!>F@xU<%}cPXyD57umwxSo4(y9HVRe~CthkxeM2JUtm1
z8z!S|1U;eu#bta&(KG0-ASzKqzcF4h%a(ul-iPF~o!#5#WTx%ObURxe<H&y5n6erK
zG;PyWUO-KFz5MUEZNRDt%{B+1JbBGbyV^TIQj?f(ti1=$6xGpFsKK*oQvIG#dAwm(
zavc;*J9KE9#_gm;vbXAcB(TeI$VU^PgX&zRf27{qxD+*X0ERW{*Yz4G-^)n+j4oU-
zaMqf4rXxuY?j~aVuq0lX9<;53R{2nbp3crPPkpH62^gb~LxrA<o}NQ5fDoJIKI+yR
zOPKN<bUPOo3=5dyOOc1o6R&Kz5YXtTxYG@rMDtKRpq+c7Aq8RO!Sk^!>~iPF_Vf?L
z++3B7oQX|-3{fb_+B5tI2g3WjS(Y_A>~#mIbC92szMbPsD0RdQaW$3pfiDAyqn$Od
zex5a>b&4{x-jWEDzSn5dpF<I14Oq*z`THfCMn`wHkqP^w?)cq(#4aAOfH8{Sdv0I|
z3N<Tn-ZG`Yip9dxFw#)3!W`ox)F#$9Xzw*0*#VDlTcd>SPqiWKhq^cRs=y2liA>>0
z(!Z|N$uZP(%39)fVx_lQocYGBEQ9rlZ{+9}n%=EPp-L+9rn24D?-WXBGaaF27N_ff
zPB@|UbKh(XOB8@Ym=sRph+H+{ku>Y89ZF%&YIW#s7)Rkh>$qzc^~-cT-lX1f7t!45
za~*sC*oo?g1~~RGd+Ybz#SSo*f?ayRE^qdRJ0BU_-^Bg`*`&RX;jC9d*2&f^r<lHl
za#=-hG!C0+>&E6oI>LIj;j1H=<8wZTjj_4OUCiCY%ZTmgqrvK+)eetBLx4}@eFqG0
z@n)xpsbD*zt(h!B(c)I&Ja=ZR+S=e6qZ^1WcLm1fJU;q6mrkGh7yz%s%ZBUlE{+!F
z<tj=lfpE`YRix=XOZZ`i``iqs!?)ERldXY@&9bGVmncyXtI6T*-XCN1ZrbJ#bEwCs
zB(l6cvr7mu3tR8+hdtN4jn3J=BS7nlE#n5NT=Cr3%4FZ$Y^N^l<p-QZb7|fx@L$^)
zO{QXlyCr|#E)*;#hofO;qZ;_}w>VyBC9;ooe<Yle26G=TNPaVVZ%-t3{Iqc%5nP<K
z`boCcM^by8G+U-i(CfOG`6Prm1og$$z^ZQ8DIA6iVXCysABS~%B=aWfwf}m36y?WO
zzrFj59A4)JwwpI|l5aJ6+GfAK0CC|7_=0=Tg`EC+e+sw>kWK|=wCt5=6`jp;nXf-T
zh7>0)*A8p0+&$ky_GkOWkGEC7+%6$^g);fv@SWvXe<CtpdKj9!uuk@4Yk3_n@0_Pf
zcb;eNP8o0WZg)FZUw^hZ4d13ta|vf2Uh$7Ov|n~q^?1y}Y`$^;{!B!bil-pv^S{-8
zZ58C-w?ml(X3(cEVm}KBu4-A^<}xooP=^feJ~A*bHOJ@@^y$?blp)%-pI(-fM>T&2
z3G0KYQ#gc8L6Ljv@T_Q41uiW<Je%2t8$vV*3a_B}w!}II42p9Jr4$KI2ExZ`cfHq(
zZvjjVK0hzE!<mF?bgZdx$OQGLBbnYs`5_D}<|;f@4<&O5MoOcPrWlE~gEf1wi5t#Q
zQ70DOY$7dT4P(jnAXyyZ1RvbB?1rme+_74u2{fiQ@Z~r~h{La$P)wAdlSqGf>0w}i
zP<_7fo)6_i52Y^s-!k)k-6~=hyg0`DjhO0S)Y&Y}&*;nXoK*QuK7(7t9DvCKHCHbK
zE~DtA&BY1%<*r{S`j)^T=MEz?d(mnZHabi@#3KZIS5U8FB)o((J{&iAI=a`<qYkaL
z@<WJlJoYWiNP{}Ab8Xvpzs>9;_bK^d<2$Sg!_;%#&1}LfGqZ7z6O{~3UCgC+_+_w9
zG5|h^PHuTV88g$bTkryeqe#sDkMg>??H3!K8uVQZxi`o4r+1KxM(~Tpt18w>?!1gB
zSo)wYQ`UFmI$2P<t2mHrxzm?VyZ2oY7VonmmZ+D8#p8^unwu|IhrAnwvV1KwqWl=0
zGXHw@6}UwV0|&Y>;p)F*&=$hpDIMIMb7J%S5n3T9AT3dPh!gmv@*39k?L&RhGlNQM
zjqIax=7!^ZOiU)iLL)rGv=~LzoN<I26+_V~|Kv**rO?YR8R!Xi|2DqrqPFgwoWnOS
zM!Z`x)C0T<^Lt}%GG$(4tCO>I!R^Lz1kmp465c<P8A1t?Len);8o}C<Q;e`x<~u#j
zMURJrb!6F@(wDM(RR2ngW~#Q^gvBtLAq?J55&KoIdki{pTI#UL^o2Cgn&k~HuKA$#
zMy-aP5$*(*>iP&n_W%H6>I%HseR5;%Cy}T-{KlA}6BfL0F!Oe2mt=0kd0Yk70gqoF
znX#`5#?}`lHN(F!hfPch`T>=<ra7(3$Lss&A79Q$HH9Y(;Z1^ZpQtoiW|Z&W(C`vl
zGN)4*#GG1_Xz-*hLuK=ae6^kVen>)gC)Tz}LbmAdVAl1{_05TI5j%+*3eV`BPF>vz
zi@f6=ifvXnA(tsYrpn&)zOdAOT%C8moI<Bh!1@0}d=n?~+haC+Rpa)o;OyE!^y&|%
zyc59ohWk8sw{yQt#dR}9oZCjK%JdT5eJy@9o$L6?fsiFkNXz*9O8r#T(b7bFhC$wV
zv`-6gX_r^_;jz$2`uYAQ+|>FF7`^(|kf9H0tAR5X9g<4KdWE>J*8(D&epGWqc`Mdg
zl3vMe`SNJ1UfC~VyrNqBxd8}&=1FC((i~Ru%Y2CE`i0xxUtTptcdiw9lef}=JE{*S
z;F-nwuq0!0QZa5&{*59*-d9>COO7AgQ#}bcyBa(=#m2$Z&C!30)wB5zM-)`h_O{+>
zR>#(5nGWsMNjB3F8k!$fZiNklmgng?eRqxZGe4kT|6z978Zyca;|mP&eG*|9^r}Hw
zUw1joL?fsAn4V%9(%6lpql>1`<6U+(QSwT2f&x&hEtK#sA>;i$M`<#AwvRaS<|?b~
z2YM2x2PI0;Xf)V!$x#e$=Tg)kmf`&Mmh>*4fwmc~P<Mwdz)wH6a-?BYZ9NlC@HI<l
z0whK!PIUmzNwLWd6Uu&<P}ggw-UhX^+kA1H8q4+}#rTI@_nE6->WW|65e?sdX+$5u
z>U{L=^7e1My7X0><!zHGclQwwzFRTy$M4f?_n)4GGVA|}Mn;takLB?J`3H`HxdYnS
zIOMBgeyVnFRSWemyb5)^t}v@->upCo%Lso)@S4WQ-Wb%lHwLjEj|nX0tH+sHZd#&v
zYN>i%1L3+c2Ghse>l<%DsS@9m8D6)~wMr$Ck6sdA4>93XokTen@NNm>kaTP_9;<M9
z%LL`wj<2ugfeMp_%~|=uEd#n%8Fm%}le!R$mA#LaB{vWvmip(K`@umQ>vf+Ynvk08
z_I-625ER&uM`<yhmsq_`;Mz^_t6fMb?I>9;ZO`@{^<$jru8i|;%(`LtcPiMPH6*;{
zT>$63cFLL;U}fn0;{IePpM*^%cvC>i4suBZfuHOZ>d-*YSC+s!iAYgqKU2w`z@NoQ
z=&}$2vQ{yJ?SOT-Os!x?kPPHxgTyio>=VGqyC<a*69yR~KoZt0+*R^pTWma1Jbo~S
z&Aod|Kp>{0#jq4N+gz~i;{JFixDG%-o8y_GAh6H_m=|awNNRd8WO|<OR>H}u8pt2T
zBp8EP2hm&s8iYT%U9A&AL}dske(1_2j2kY_2!j;kXP^mdaoT1l*twr0;7h<jqFLX4
zcM;4gyZqC4ctaLYxa{{a7(=t;d|P;&NdXBEP3|80*RLaAOnKKAwgklnRFbOVUyPx-
z*YwxwKe3t?oHOe~{{l73_O-SGnnhuKB~g5SWAvKB7V`s$kAUx0FAUy6Iv73_7$Y$W
zVmG*Pn-8T(;NB%6Sltn#2+?64BYX|qLvkd~MTw56;HoT$FKcMyp^_L{_4)2r{dAA~
z5na#kWKH1_9Ms^4UPKB4ef_5SEr$U}n_F+C<FNYmjBDbSG;I3&H@NeR{|@<Zj2(ov
zg^ryHpB4EfL^`s!cJMla1k;~)mSOiRC%ReU@@frR6+pK-4>KLMM*)-G6Lfs%PTnPY
z3=1D(3t0VW)YB@CRr@p#l}sVJrM=PE&Cz|=@Ph9631Hh*KEFJ4*ADEWC`s>Qx2V);
zkezWFm-)EG9@FZ119=Kpta0*&KpkTg`-c%8dToQ1ApTR88mWhXz39WQe&;RgJl(#N
zI(@F=u7I0Zqt6;i33sFC>iOGv9grX?Ebn$+WjEfh7d%jnkR2ARAslQtY4-k@Up1=x
zkMrnqDX-%B{$A%vzpu7`_x<Xyhq^Oi0s`_rSKx9@%wgis{3pNu>L}|F>xf<ES@$7D
zDS<K`NLoCyS|OkFxF-Djy>^9QX$vjxBx<#DNkYqTXR&;#1@l~nHs4oT!nk+#hhTYb
zGTF)wiR>^;z8)vG$VToKr-xsellTgp{j49*$<UEjn+{XXI@#PqNT){dLOxZQVd2R0
zA7`*Utd(F#(MGM{h=U20AXZ!MsT21CL3SBV#e^o<MOxQ6XDfNh!1T?B>(pubns(=O
zpzT2jovirBYTIf4*^3HSD5+Rcv<YtA+>Fr>WqpNqJC_^DJ2^7Y!_^qE!u!ovM={Cl
z!hJN%a{N4HjBnpr&mQlNv8`S5HvQu!2;+b8_Jy@Revzc;vG)H{Ia5tySy}1#!j=;Z
zuGKt`;WogllxT;awsIF;?#GtwS}F1uzSJ_qJV+r-hNk$V4}Aw0mn#2c^8F=%;;3Dn
z7$R#Ce4?VdqFw8-b3RG&2Oqj6**oahe}d%BUXS$PQm}ewTGO2kp@uQA(P4nqbsv!S
z*mg5mc1zn8vga+lc1rJj=%_&A;z~+N5a?LYP*RGl@8738KOO#c@V55yHm9}?^lrDW
zE1{p=KS;|eo7zQ$4E#z$0uK)vD6B)`0O)tx&;qg6!dQ@6(6AMViu~SyE&7Ve#`+qy
z+(*mteR|g(W_-A?Pk<A_QhH!)0J5<H1=1C^B^3fXqiZHuzbzUWgxEkGvfk^6mNBP;
zbq2`;XDb}Q@)y><SoYUDkpYT{P8G}nV~2Hw?vO@lSk}itY`-|WRSi+U2KC;MW=s*Z
zO>@@WaiLcm^?e)(y(b~XhCvRs=06%XFKp)%m4WZb0?^BOkb0V=<EgYRaY0hL#Ie21
zC}`!vknDpF=J5`gwuMF~BFEpuTu2n|H$*?$8kLK-Kr+b(@ejjRMSCvi?Co0m1)2tV
z2TboMe)MD^LKDuhftS5+3VMR+qCEm;3T`UzzJ;=SaN!C0wa82Iw2X}Q**Q5zv!wSB
z1he?3Ai+(GQ=iIeO6FjE2`4dJS;JeygTTH@@5elP+ToqBP#I*vd14XLibCER=S!SJ
zSbVy_<QV*>x8D^(SPoOpCdD9YBjUH@{L+$wQbqn(((&~x$V5Zj)R=@hi_<pk1fyjm
z;3qOvVFTk)8L~Ad{ExeKUU+vB#-N699y6|<A2wQAsq$U?-EDN>7UrW`GQw5t--+}Z
z2P|)Cfd_)i=v@*r;We`$Jo3K2kk{29tgx4wg31T_im<!3^Ifm`N22grC~E=Cl?kD#
zVd4`tU7c8T5pF1>p`MJ#skGai`fH+FMEDU0^i^e8C;m1}EmB<TPcu9XL46OyrYA{X
zh*v3X&i?ETp0$pK2#7lCZF@Yj{P9E^@xmKu3iYd>zOA^|4Y?kC(GA%Z=TG)bgCfzX
zHj2JrBb@O;Ykb>ebQ~3#{fWDR07{I6pJkX%GybvUgB_z{d~**OnbqweCs{6I#lY9a
z74GN*#My(X1zUfsD&3;I?1>?72MeS?gTdPv%~8^*VLSgz=wI_qBd%HXvhlBLFWiOW
zB3R2NNWE7}lIY00nr5RNH(Uz22XYamKQ}5)3(taO<?5iMSy@d`vzI>>5j=cVQ+WAX
zohY+^Kf|*`Gn=?&RX?h3N)IheU`n6j)`pML0X@sQ{m1{1fyD6Rcw0<07f)a*PJQyB
zcxsjSYo77;q^CutgzXTDAlcJEZxF1YJZc1?kH@D;Uw$7p^TI8^2zIK(f4pFZV((7g
zpPA#lq{4N_U`&Yze`?O~5_z{8U<|x=q$IaaI;2d;|L0Zw-*4pGmtZ^yn)J#5sSXNY
zid-lN_9?SGgYA8rpKHJUWcU|JZNOh>$gHB#?SurZWp|qHPT`+dpo@*BbiOobfrk8T
zWNSvar=0R>4D(+h5ZKKDN1a(3B*qYd;qf9{fe2hTE^7!-p2H^+n0DFoK91JNW>Ppe
z6|xv)vk)628@&<t>=gY0P;lDU@5mp0`j#3`+xkY8)IDktkKw<Xntey(S*8fCydWs@
z<TZXGnGKA6`;kyNe*C#G)upKe>c~Aes_JPDbg%gs`p>f;ay}X5*jR+~vP%v^0S!>y
zK2BuA9iu!6!j7n-o#TVT(5%wn47g`wwsWpWqJbxKC!zyRgxt=x@mVO>w*ldj?IFAq
z9Xw-4z^MQ|3;3O?j^{}l1+HqCce->m3B*Ol*9`*vr4SRQzw9HHvBL8swUL_+!D;02
zXgn(vjYb)=qFYyh6C^3f&g%CbH71Wp2)i^`_uWur8(oA`>WvT5^n%fezu~9eG#fmr
zjF$40+5QpWr7(0p6et(i5thM)Uj}{!r!dVnr^vzfW9pQc>sDo+pf~Xdrz{y6c(YA2
z=aMAlI>GV6eVMIYQv338R(Dum&1&{$mvsb+f7OfCZvtlD1Gj@czcW#wP4bxWc+>~u
zhA;qLd~B*vD#(>G-G}iDI<#6C_>RzZ?lbmiQ#ToDn)J79eM!ahAaPehbIMNFDk_d&
zDU-z6_7tSrJP8=r)KSjVztUwsEJ@9XprOfOkQHe>@g@dgrOqrOdcXh55a!ppHa1T|
z>eM(%oJB?hs!I~NMtcrSWb&Mf3Lfwk_8F{4Rh|#TPSoC}i?(x;z3=bF;`(##oomzi
zp6>$!deE{Z7J9laPZ%0BbO1`&J3pF@eqN&B%%yPm0g+mVqH|8X6*@O3Js<!DrzYU{
zbh%h@2La8+^~us<yzAn`p@e*<3LbvtWqmPjwr!>@`B_Ze>HU9RJpbishlgw<?+E_*
zB)?i`n{Fb4rXqVS&@W3GX<Fa67hfdj8;f#wZt8)K(<6362cyOn59-@q%c^S}HT!uV
z-~rPu(`O?O;>ZsGLw4a~lJNNdmh{jz>X!K~--oDuXTT-}LGn2j)@iEi+xt<PdS-a*
zJc+1DN4MLNBmKn0=Ox4ic?=AUnhU(#``7q7h6gNPT+UKQl{wlNAxD09I(qu_*n$S4
zSmFREW>!5bC*J6+CF`{O=KOq$YVi1aX(>bCu<B30K!ym^1PG(7fxNv6%wkltk;feS
z)i$sbI}J~uA*34h2&T&NpiOe(sUiZrTh<YfXTC|u-xQ!7TKE5HQ|R>N_a*)<E0U%N
z!f5<`xX_8g&F>JNNUux=O{Z#=Op+a=^6jlHcE|CN&j~aD84NzXCoeJ*>39eKys$Et
zZbKN7L;6R?xHR{VoSd)mwGDx;Rpei<qfcp<G;CUu)|T-1aRQMYejLQyH@iKmxHEf-
z)w->DLxY&n&>Y)EVbDR2KE&OvwbZPQ^S3iiaK3t{EN~;($RlmA_~sa`twiw&A+>ds
zH&}9HpJtGkQ02|r*o~+W`L-o>f#?3uHG7I{MOmA_uP0;o<)^Io9&%jgeZ%h@5|NvM
zK=VG}QJ7*P`?_{`eBWCt*40M-M^R;GsC4Nr&;ibUpiL8`j7_iO>stJQ6G}c`AU`Nr
zGrc||w<=Uo)nc|*f`4qjYm--L#18ZB?>Wx0YlDf;DD3X;LDL4Z`U~^6`aE{T!Q`Eu
zW^L!?X~r+t%bKBFCRf;WYC7+qYU0-mp6YW%U*B8WCppapVa=Y>WEQxrV5+k2D)k@H
z!mWzMX+^cyr<q#)EP8Su%L!>Zppv#FBn9=<wLwm{0q1Z7>AT`DPvo*A?$9G#w?0hM
zH$0>DwmNxS9-GGinaV1vFdzBb*R|tS_PqgX1MAh{7gG907zhzzG~k{2&o3Ps&^gf%
z-!Yaj)6&6hNy$Ee!jh8jg3+lCJjqCnBO8Ry__A7kYPK3gz!wDyqt_5jP}RTiFTBWX
zO)V_A4khMQVYi~(eqwocBW=N<wTqfHs8gN4IgTystk9y4Kp?CO&`(jkW-XZWUR7My
zWmYkS3LcY5vWs<p^Q;j}&mI*&`|};2l{Vkz{!$zvctH}~wFkb`q6-pMXycSw2a)%(
zsV;j80xMGViZ;ew7?=^jMvdn+d2UJc1<lmxDSpCG6x$_-7l0kaZ)VL&R9=}mg3zrv
zV&As9Hb!`uXc@3(Kj!bYY&|nSxxPPDWbLYE=sZ9gsyUPZjCf-0@T}9MDWDq@kr}<y
z*_`#*E_wBc*_KsN*)}t~3Pthgr+BuZ24@V&a@(!zRhmDcV-M9r(fuTO+GxfmM&nCe
zYP6i9I<~`StQXL-UJhz2zm-X1IR87HvnkM8^A#IUdqG%z^AX{5W7ZCDh0<P3{i(RO
z|8pi>XK7JDxwq~8^WmX0Zq|I0`>9>124>TFOAnLyn)ej|P?#Yut#+7r0`ko9(z*7^
zVW7LncT0$p#~xSVLq`hJ`2H8grP6q%Ov@XZg`BVU{T`qhn|nD-R1xmrE(2dR7I6zM
zI)Xk_fuOT<b0s}k9;(?y-uDodh<PTYsBu*2m2QW`L{7!$ck43?CX|9yDW79Gbo_5C
zRi|uZMM0l~$S}RC_A(qli&UkqDx!aG)B%IDND@5$+tc%}&(c4>3#b!b12!rahG9}4
z6aod{2U4=SUh!DYMFI#Lf_g3}X~4cgKj+saN5c7XY^64*3Hzfv{rSavE!}SA;F=nF
zcBn<4B#Q@kAep3;gmCCv01j3?z|Z_LEWjqE`4&V}Q<I_T&`LZFhM-B4%i^Dx3qW%w
zFl|gr!#mc-J^=rydwG7G0`_R_Nsvf1lc+m17m|_I+c!a8C$<cjK?%U}wTtMRLtb8N
z4=*>N)4Wij6dLF2Y=82&0CF*ZfXAr3f_RCoTb#3Rz*ME#>BqdJ!XZ@Cd;ZvyFy`4n
zF+|I0LbGEO^FJhCsvft26x<(M<N#{}v`JLKJ3~3m-d4g$7;jXk#g&J3)Ud?ELwHFa
z$&H5&VfY&mh+Pfw*>U^ilplUayY9Ma_WSJO;u7G6dX*;mn*~50wP{lgTEe2E3mrH6
zCIB3&j60ojJD2!=($V9Xs=J<29-WiwjPPn0SSyO6qv`u7gz(012?_RtSq{}iMZLyL
z8HTt_C-~=b`V}1EW<C-0ZHdLI-wyORvLu$P)*n)xXw}MInxr|@O4{<9T*eVs!~5nK
zrNKB-n~_$mK+fjBoC^QL=lXVH%%!4#)e)PjT_59D$4w_$LxzZj%yENvdavv0#hQOv
zSX#tSB|VnauS!)@G(TRcq^qo)tEc337~h&Pbq{2J#T|_J%|~$LHoSpg-X4(T{7XSF
zhB{jf#JC}{IlZCpVNO1X{0U4~Q3zL&{dl2HnsA=+S2I=7EQzDy!;o-UQNdAJ{YuqR
zQ<b;5x^$q9jQxSn67^I86IL!it}0m6EQPNFb|_9Bn$Hf-`GYCL+|Fo#jk&X28=;7o
z1=oP$;afI#@Pzdmpi<O=UF2)K3Vu>UK}7YNG?5AbX06i4kNL^K^3V?3wm`#k;3DKK
z{&=GD=C3D2bp<Kpr%}NKf#Kc!h#fj0)DN9^$7;Lap~KsyuP%2k7RoBovJ3^qCa`Yd
zPe^qwF6UwF{>tf8n@73bMl}Fb=ixkW&1zYhQ2)ncF1Za6K8L}>u)oN?YW}0EwTr6{
zi!y$tmOwzI>Sc}31XzScUOHR~2}jumtb6?yNC}2>Mtx{nNw+FFhFMj->ZbT`0?><z
zO4!w8j)N^@zPVA{v7rVwCjG~uVl9}w-Z&AjUAv#Qf?z*lk~Q3*?m=qO6^syk`k9|g
zczVu<w!0W5%$g`*DA7Q%Yaqg<FJ&1uw@SQ%Q-_AE7F%QxO+Eb;ds+jFJ1I=|P_A}S
zgQrm3tWlRW$N`=Mq&ZqBF})kOpR6>Uc1kc@XHGHTX%m-uJGr^-e7Pr`IWZ!(u4Gr_
zgF$q7pZfhWrT?wtQHhllFtRbbK%;qiAlfGL#x2OaC>)D(TaroOx+nSdNpn*@*W>2d
zZkKSMf}MRd8qk1B{zC`&mvZc%;=q6Wu$dc@MC>hG0L=knafi-<gzRkqLO|N_gi9*h
zHWm_J!(>RfJ;+|7h=E}TbZN`>;4;HW^W2<f%yuTmOu1f3UgiB_nGRPG1G{0zyCy)o
zyXv=e#y!CS))YxL0olJVhw910?6I`~pXHT%X4g7jn#80ksg(g7?(leMN}^SDeJ~vn
zWGAUW(T9xBx#xp`fM91=w2T<K1`QHJLop&D2@LK9)dNc%=ZZcK4Gl54&lS#XR?PpC
z1%Q~)dNvS8eyk*t$tIEF+<+nvdmAB}p;u}AO(iL|FZFT@_?)dpMSHGY$g<Nih5ZHM
zYUkAGFVY!<Q_-LT;dQ+iq^plMW^Lfsfe=+^_=N;kCcEYLwpUT{ku_`VfhXAclu>yQ
z5|)1{X-iwcl^Gq1lMc6N8JhJ3Kp8NSX#Q521Y>O9w!cu?e+~BoBOeC`zRb;4Bc2)W
z;E^u2EiY2q>Vh*_Hn}#Su9iNbJ0pX`I>|5E_q-Roj5OW)>jzw6l0V*mX0NmKR$>3t
zy6Ks20}O}P-z#Ug1s{qb6@PDW5QNt#79#)kNrem0A2ys3u&b_Z_aEJ5MRUzW8n1uh
zk1+Q2-3X)J1B$U~sb!keeV+MZxiDvm9ItMLzlwT=m?lm)MR%>^ZetDPoD6hXlM23z
zLn`O}a6tV8K4DoPDj4r3GofL1W+E)-1p9HM<A;GKmL<89Y>x-hKDBGh^?Bf+vi4jp
z^$%IV9?(aWPJy?|)#s2v=68}W74t1UbVSS62J|+lJ*d2?7?K8`D}AXK;;%gKC+mM&
z9qZEF-#}=1c~BG-TjPJsTuW&umq0|XB-iKIul|2No)BaJ*z$`PkTv>pG*<~R^V=Ca
z$Y};x8<HD_qNse{|MeKa+LQ>9n1Edwpw}*9kSS=XzBuZttAEsUnGp9`*cvd!NidlW
zHZP>FXsMFUG;dPDp)<50L0Oo_5xEHZMX&(H(r-EDL?ER}GIvqvFE1ZWwe0l#LZtNx
zZW~C1=nl)#%|a3U_B<ZU;p}$<PF<%zyc>QOpd1qp7JJ(c*R`wtsq21xh(A_;#Mbg+
z1Se@pR67J1kQniW?zb=rIbXkCxr}nmvXe%!o+G<{g}2~B(-o7GWf|0zzr=NhW5k*N
z_{mDubG<>4c+?xwD#{JYt!)lq#!I?&F-ds?OPs3JmRj6Pr9S+|WEPI(0~jBp4C*+H
zt@nNqjypf|qN^sk9RL&h6tLza=Tro3Ud*U-#9o~Nv?`L%@(JhZM-2?r2?@ud?OI1b
zFb9ftoU{i>Fg9vVI0L0e_;&yX9@2p>30o%+OQH8=fBot)8p08y#?6D$4~!jWw2Ark
z{Mr0}8#T0AXjF6z?elFU>DXB&f$?pGc#S=M+GW!@qX1}&058C{NJE0KinrO`-X=gg
zz!?!3I24%Cr0JhWX3U2}C9;WGp&dJK>7?N2uULDj#^2$o5YL*i^v2DA<NfEUd;JWY
zx`4sRGk8~h>gyw*+Sy4oeiOOtYlU^Hc=p5`k1fRaez9{Y5te@f3Dai#-{z=MZLfLL
zG^OwEg5~@9C1rm?1ymjtX_Qvo2oH6-tAIYEdb1Z0ybwd;qN`UIpYyb|RsB)ckR@>D
z5qCXV&9?z5bGo)|!3{MTqf-*QSj1l`O8!l@tp=x^caKp~JDF|F(bE9ZQh%ZKrH0PA
z<8w@97s0zqHpjocJ_l3i4YSEj`UjBn%;xpyazmto+r+3UlMwaXH}edN51Y=a#Y;@x
zU+s%bvbo~<Tr_pr-1mm5GqL|)MM4K~2q#<tM#W*euX2uP&__K;^xcd&hFz0MpLBeP
z1UPR1Sh)o2^u_o1cwa^)+(kG@Ak^f~!2@l|(omhr@5%ahv@8(PgE>f0=eW#AvrINU
zSAF#ka7a`Go*+e$RG)JaKEh8R<*x(NGuc}>XGGr&9_K>!S;$nJd@U-|04Ym5jC9{k
zW~>(=ZqMljfL=M!-)&b)$2dM%lfa6IqgpvTj6VUz$Cq!v0DGT&GtoDzRId7toe-WG
zDzuL|tnk}Xu`U?{VN3l0>_aSuFlCEIbQ@S;0s?l$6u42&wR*er0-PW4sTmDZxlVm_
z#Di}Ji%AGoj&WpZDcnfP+Te$chb|aSq-VH^uuH?u*B_xolPNLyT=LDZFF-wCoRcFw
zPT%uwVNE?v?_88Ne)sY_rA$qPovycf38Y|y-6z{s|5t(Q!&wC`C}oS?u}sUGqxl+u
z!D`vErag@f)wv6}x_$tPwC?JAlCrLA?$!62?Q(&5JG5XS%@UElOkUStZ52u=<+`n9
zvn0uEA{RhEHgU_cAg-f%sRXxpIUZ^b#q;Mr>TuA+QMmyL)_*O;o4}f6hj*Z?1A?(N
z0E!+9G6E=jvPmZ-RVb0e{eehne3reYm~hI~G_&LzaK(2#4++eoNq!8g%)N6TODcAC
ziM(`g?AxImv_UoVvCZx$dF=K0N+Hv(17CD4!W-b@P|z@IBW>L;c-XwM5MDU-A6*VY
zvYuNi)z3|@jYpK#AgcLepmP7BE%J^fU?u3wknZV^&v5P+iuOIap$}FvrMD1BmA&Eo
zz%lZG3x#a>q?ityb%z3@l{)LW<h`P={@b1TP57-va#^-6IW@R!M6w39|2k9{9``>4
zo=Ph)dAze9QR3%Y=Q#jCa)kgVOi!p^^!W^+O8;KU+2otau3hx|wB3Rp0F**XOF1gw
zWy+%Ln{u}a-IqhvU-Y^~A1-p6QSy3x%PTK(T-J+bX}@PhWUOkYqbnnN<66iSP2P_y
zPp_^jgRD@)@g4Ykubo>JA(F?;-W#wYqJ0=`3FD>3?#v%5%odFL?C<fp`HS7p;+(yc
zJQ~j~Tda?pUSauG(+u@hpInu%dS8_e;uH=JrsTc!qINBRX+I~PNG=gcdT7Mi{M0Cq
z*HAI_A`X1qN$4h0Ht~yF`;NCe7`lWX3u)9zt)VrPVA-!gB}b*pqJqh9;+CG1h=v<8
z3B%;@XS4Eblb+UjayHEr(QG8&aaLt8<JDtiRS6>)Jf~EiaHaAu3c>%-3j~m$Gphys
zW`QsGNF&9<LNRc_=i`XhH)oq)LHEfa`F)^Lk$fia)1CV@gs?Qi=cG9w7$bzs^`q+L
z<$N`Db*uV(eg)Z)oY?-)dUNmk3O@<j1fcm_TU*y662pUKWBE5D+2Dz%a<D=?_aa0D
z4gjn%<<IR7;f;4n;17hp#X*-}zeYq^p;`VBqUlTh<w%0JwY$rQfwA6&fxktv*6~{;
zI>wUZfM;1p(F-aLd5c%~{Zi;I-86%bER>&oxT<;9P8SJgpvM<F%>YGHE-Fq^09uWI
zFZ&hbNrR;4Qz_#K<C=Q?14&od+o?Uu#UB|bpa!aoXkZ7p^IRcKV#Tz(h3~qSVB*j&
zVQ!N>V*+qu9((Y4h{`>F_<=nkDEXSx2>YUVq8j^Q6RBgF9Sp>z$0-;|QU4xj8pRBs
zq5HzReSzB+N#j^1b{3?usPg*Q595X8;>U)LcbsNd&`8|57E>9}^91BKbT;38lX9yV
zy54N?y0)rXCH7c(X9;r%%?#~`PK+j6S$A*M5KTf>)#)lwLg7R}{Dc1ipcL*sqFo*X
z{Dlc(`Q1$*4O}!!BWOQJKJ%I1K41WWKzOpMS>c)!Tc^tYxX~{5D4EHiyb{We#F_QS
z)DhQ3DzrP>=&D1`Ey=>US!@3-a{`OIM7IpC2NC2t_UwBKWvcIKn=p>vi*>f<39}Aw
z^0GDVUQ;ON;=$wW+mJ=sXYP#f{j|JK#XPe0&ayi_Wh)q7PKsSEo`)%`<hNb;H$;d6
z_WK#>1h)%(tYuewIY?O?M~L;!K|~8(vBdDZok2XSlAm73y5alIB$UJ+%|jtEM%T5!
zMpfYHz=dk%Pl4g)%kqlm!4ZZu59=oNlf+oK4#x!EE)f|TPb_+IuyEG=Ia~1Gi3AIQ
zmRCDw8j##4EVvXOQW*oip4L==hwB#?!ygJ6w(>@Y>n39OS(0n`0>)ob>0u@ne~G;t
zbD8XF|6(3n?(l%KQlLo4jU&Szb;YNL)Hvaj3Fo``oOTON|FseMuiw>BLe8!A?63>o
zg)+X-MxZYJUCSQ-@ZkfrG8E^4kEaQL@$S3u(+n{Ly$3}bZH;ibQ;CVe)Pr~tC4|f?
z7RG97S6p8PQYM`zI{_M_m=&xk%J|$#Wg5EH_?I)D-T2M1sCS&%m4hqV*_rrqr+MAx
zC`%X{&Op+*$*c`fHOtr=tZeK<qNsmr3fI0rp?Fq$wzfC140{pojYK{m9mT~O7iKih
z#e!$0x-V$F2*?kD@47^_Gn^MbSog3Y<F#dW(&zD#cxTGLws+OqYCei5H`nFf7QgQK
zZi{=XdK_v5*=8?r0KU2?uasKMKp0D`)venZ4$A@Ht}vAGnie`|-qgjyLFWK4Cus{f
zrFV#70XSe2#Rz9I!yl_17!(u=uxhoy%wuNMmHxt5SCPe8*>$riC&cw_hGa*=LnIlA
zYYN{m`2uWw8Of)bYo_$#W(iaCXmfTliRAZq30l`?L5M2}PXF?g!pNrZM+Hd~PooVW
zB9>F`I`SH?tUt^>2DW^`?m_XfPc3(jGtcr)JKf>t-xkp;4DdnRAU&%bmqGjeM?>Kj
zem2Mj5RIMf4rj{JWNq60MHt}j{}9FS`rmJ31DJ!71}~Z3$#BI0;P#a>;A?Bk2w_>{
zA-;{#L!RjAL2}k2xNlnM=0-L3I|V9vnqQ;R>#Ukj0pz-!K`mBXhENyi<xxD0W1-1J
zK>4%dwmizSrW!JQfu3(Zg2}n0l7-}I;Mn^?8+XDc^wLDH>$Z5gx5=|?glBAf#D#5S
ze`lgtuO_T^HY=pAP&QQ**jkXPC7%B6-fQl0kdU?CE+j~cZ^Wy?*X|Uc7ERs$i09KR
z9c++1_cct@%EslqOgT<5+CtbO+G=VoyG?Q4iGa#_=yOe#^d{yRE$y~kA<ItfM{*`?
zBWf%yY7Fqo=?Ogrjakn`S;M=k(U3e^2aG_~p#SG}YCmpv7Y!XEZ_VwX-QrRC;tM|2
zc)aed1@Zd{F>3yPH{UB7{BG&lF58LhgTF88bh7=eCOy3S;)^@C+S5wQg>`2rwzasJ
za=zG<)%%%0H}2#4z$i6sLcKwkmi?pei+}X<&(YTiM8SsG&u#v5LlscheWzqP-s%zs
z@?TO@SHrIe0PR4(fcLJ&>x&cddsV_8RGMv9wlUvIxIX1R-Hwq)E{>||;e@7N<jhO5
z9sM!T4eC-TF9f7AyXoAR+C}xBhn|p$udKaE=4+-i6;9J1Y;yu{@dt}6`&*^f&-YKZ
z`R26d&epr}4G@$w`-O6Q{*O@p@7G|O<h$35ZT~-Mk~aT~ueXkhtId{&1Hps4I|K>t
z?rx0}+zIX^xVsbFA-KD{2MEF40>OiOW52`9JNKJA^WN{TELK=e_v!PTy?0gZDpUvj
zzDFZX%WNyf4Qt=BO1f`VCQ7+wqAgJB;=}1yDk_k(AWgYzR}Qthlh3jv>sh0m)dhX(
zjF2K1lh2s(s8Y28?R4bEbm}|1me>9@CDPtqCuv;#9JJ?rXn-Gm6sgUZhUDPT_I1Y_
zNp#D~t_E{H2ig%v{3%9GjHN;nX&cg_TK~j10U*z2DH88l74aaCjMncP>kq_-&n(zl
z{dvFptlNv-awi7pz5=jSA+ULuQ*)2V!H!Bj!G9^QB=I%|_WL)06>8(>%m7ZN8)PdK
zOaSdya*-AhZD*57=$%*!$d4aC&X#L3DG<K(hcSg+Y_ObZNY`;*z_l{EI|&uVy$I<O
z=02V&MxmmjvPAz_a)>0c!K{&;fy?ImUH~xgWjFLYf<{pNF}_ZHHiZAqO!)m)ra-ql
zaxj0Q1WAqZNkh2Z?kyMM?V`L!pxh3yK`>x~<<Jk0vzU!I@RM*y5g)+|6c~U{m5nuZ
z+q~gsTQrfzCRP1D`w)(jxXhsk?n$hjbd5LO1G1Daj<pBk5|S~--ycI}vI57Ne$_2d
z7=|1Q@mB2R`H)Aelq(N8+u5AQ6ZbezuObKZ@e=2)E?0@3v4Dfql&w7z=3du?{j(w@
z&$NvH_@Bt`y9_h5q0c1q<ha?cU%Y40^q)8Jjgj-8=9j+?eP%u3sbJA!)2!6qk!-r2
zUc;6PNTAo9g^UF7AguxIjsaH7Y09-%!?Z~{#u*)(I0iMA6QdUA;kNKriv$v#5}C?A
z{E^R5t?MSokSso$9*q6B$e5=7Knt-EO}g$$E(dmgg3N;Lsw!6WhX0?&mWlX_N}MY`
z{T5)Wo7a7M*0Fh9h_19lC5Q^u2Vfye5%R|}zu>d5#46LRBIjwHGCVY{L{-G)N~Huv
z96gETK;q-xE-0GYM!ztZXr*Wgsja4Uz0*#0YXDI~gtVGB$lBI6&%<Aw_O`K<_F7~!
ze^@2mx)f>XMnJ7K(MS2S?E}Fu+DND(Ha3=2yrp-Eeycgmxzf|uIoga3$6xSx2*n?w
z`9{)BDe%C0zZ6wSo!;Yx0%76*7s~9<De@-c-CZ#+N#KFFycPD~@PMkGdMi1phO)SB
zenNq=xVXA+CpkH1376wLO$N1fq5MSNd~oO{a{0Q3uwz6RZc^TAK){`rvW)9aQX;qX
z)1`7&Bs?G@`h@ys%74u&U(#lm8J>lK;m4015@}{4{~%m^Q@3nwVKqPhg6$(o7EV<W
zStpg8>7?L0lvS<u&l}!gPuSlGG-tJS$g9V7<fxn^N<vRAl{J`KjDJ|?L|E8y=Rh{#
zkY(W;f4SkCPoxRZ+t_Tl9U?=)kj8Sj+2>kM*hhW9-1xf@&z@2oQ=DjVcDR@WiEi!K
z^5jjZ;X~j<uM8k6s{)-|Hb;FV839)+EZ&;=1TGE@d_g@<uQxo0Jz$G_ASz(-U9IKh
zLN=H_7eJEt>K#l0i^ju3X}K#RBFe1xgY2voE_aAs4wZB&Zxy{QBe}g!{W@ZmN*I7q
zXunbX<*nZB^5Fy5;vTC{Eye7D;^Ae8@Y}gvh6NJ)Rxd@>0&azv%T{3%$vEsMGDgm1
zn>^H67?G=YlfnfROX%PY(6!kLrs4|ZpScMg`LHm))5fHD;JW@TC@V}rhDt;0IMY#T
zCvd`g@oD+u5>Y{XfI0+W|LSq)a`l1=g+#iryE3=WqPQf*gCIN<dV|S@?=wB+d*B5(
zxgbF${$TVK0(<td=)NbC6K~v;h3{YAJ9F~5p+Zg1%+PXjYTV9iIw6LYka(T>YhKrb
zP)MM(TIz@ZWmFaZs4i%GfSM^x0R(NL-Uj5eyb|l3ZOuroF9m`kh87}kZs&ke748<T
z`pH3Rk#Nev0<Sv?V8q_cu{4qRKE?++Vg3iep^XKR@{*`wtAda5AOG|3rQr<Pe>IrI
z5^DhFc)4Ff)P=6u75stDptB18V3LxGH|Z-kz@D5D`2%aC88FC%pRoK01T^Y+!2925
zDJc47AAn(0bT?$KObwDD<_*TfB<gBD*ce1=^G*eQBsM82NdqUAXBRhs?meQnQ~ZM7
zcZX&q%~a#pOGW|-!V~~f5gW!#6NBm|0o-fXfGR-;^%E7;4Pby=UI>_S3?az<XZ8A|
z040uA%Q2PQ^zR?zZw_Z}KN%_si4u^q95QDg*Re^Albn^M@JgK~!K4J*cU~vEGWy2^
z_5j)SE*6g7EA8o+;5)#%d=fC>{q}&!p;+Ry4&Z@mDk`F{g$H1^4%kch`wH)7l!VqC
z8728nX?I~yp61Fmn=iAQVoyXQQ0)eON!C)}t)BJ`^1y}BYg9~9idUR7n33Wz8FcBE
zAHi(%wiJRF=C4K9utpmn(S>zxi#r=*aVR&DyI!G{rJH%7gIIew;W^v|G??a+*X#5T
zJ)s{HoLc3xY-gsf1X7Yjm+6M(MUS5Ief8=7`E1hf6ZY-H{kQN0f?h2vM_2Cd?nK`5
z)4u;V;i(M`p^?cN3%9LmU|>&#HUyio1Zbz^$e4`>;OIVluqi#vm?a=SacY8e8k(>J
z5EP8wCx#V3zr;Yk^@@<n$jD@hpLX6713!G8cb9_W2X2SiY6GD)^^!e*uX_6B*9!YE
z_xR|=3oN(24fzK?TTpIzbYA!t$i5_SJy~5E<+YywAo|cE1RMvEi16^*=}lR}AZC{T
zpSKMO;rL?}z2pSaHAG5Mb;2m+P)YRWq`fDMZwR$L+xx?H8`ws6#n*IrzvfEi|9)P(
z#q{{Y67NfjR#a9N(yA8i>%XQV+fj;_pt`c78}o&B&$Yqkf6>*=w5z5lwS8r3ktj->
zMN3hBe{QkoJO-Aj3kL?o*<}0v=j-_|I6Vjvc&~pb64B7m*j@HPhbzt1j1afjZ06%<
zwO11<4CK`QZBe|EC>3qou|P+)d=G=S8D^|fPs2}_Y&8~HQdDuR1~<7D6~0ZwPn}MV
zzD4`e9t;s99Pzi$uLdm0G_m(8^0F4oZC|J*2L4fioGMkMrerMDH1$N1?irKn*17bB
zuje=#4x$gluaOdY-Efm$8e>!>k@Gv0@&=03@T`xn><6v_hg1|qSmu(FRKGKgUD-<p
zov+jqpFpd-BcROKy~+Cxcbh%8g1`=?2S(04ykI4&DlIEWu-)1%sN4-{SaE|R1YAPw
zq5}&w^z<sXfnB}r<Qo75Y0Vmw85S{oygS#h_%+}14d6F3;Pqoz+1OlDYD03qY=vI|
zmvySc{c;~zXw5Atp~-?-XaPDx_D;ZRpUCXXw9@}|W9$pV!J*ZrMPd;VDU5n^AQ5td
z+Uqy}Ji2|z8B<0zgn}`+;Fk~|R-QV{v0O^@b!s5|FDc1Co-zLBXm9RoypA>!Iku$f
zKHl;bo(PJfp;^-kmUF3N+2wT$x{EHLrDc|U4_Nyt6n{upUShS49T65iHP8<X*(xmv
zfjwc|wh^i5b26pg*C&b+?~+y8MgvXuz9G-<9H|o(c30&Nh<NT(V4$IN?PJr8uL+w$
zuh8<aWfTd0@vb+CLk#Gd2<b^N@R5-sa!ur@0OSDH#+uRO7kxjD_ou#9vX{J%AkT-E
z3Png=I0r1D_nEy<rwiYinVM=nLFYX_-EJ)G0Wz#Q>98=r^gSS^(s(E7Uk{M~x<lb0
z^TdU9**rzq7#N}_c=ibK`M=Z<z)#7=>rt0hwPjwU{Fur~KpJyPb8No#-}MGF?EHL=
zN9cMe?fk3`e*da+{?FIm^b>YH=PX<8ipM`ZDsf0sY10f!@Q@G>Vm0<wNK()L^h<?K
zrwM54<Vro9iPh~!3QM9C)pS%Ouhl_T&a~wD!dj+5)YKtTQp#cq3=-vDUJawwYvPXH
z9-y5V3NAHu4OxyPti*&l_1oa>9U8blvT%N3fFr)7^#~{>Fj5CMac7e!80kfckjsuR
zXSDV$Sx>eD!n=12gJUt1Pk@250sWGbLHGSGfq+4Oe}5w@`S3Qk>!BJQBO~WG$`60{
zk^ZUX9zjKw5N863UZcL$_ya|43XmaN0wXP%vY48F#_aBJMCq-Eh*H8bq(9)Bw~GBk
zHsil8&g(0YiN0Za>K$#ani_62=qPCk8+ENC$4+m${#LD5EPKHGfn2xUh;ycY_Jyq>
z!)(W?HLq%2etKXagh%Meq<2-Ktz)95U!vY^uH)OlEFaTc-dUKmLYParv?7$h9-M!1
zj!!zEIwuaW)>#ZgqiCqp6%m0D032!o*LbdvrZqr`P0lURELM{l<b{C*_};|S)Dpf2
zAhW<NO0iu31gP;)65>t3V;g+dj{=DNjcjZ_yq_9PqQCBFAgA19gCzAVDkzw&_*lOW
z0MOU1nWl(@{(yy&Xu10{;0IQj&-&{BrdqAv`DrR&;_A4017_V({Q}55$v;^GJTCk#
z>HrsyklccmWj8<zf7sYVknC`Pd}^q!9?jHwH}f+!6<1-?O`smEk8V{3cz+}_zM)!Z
zv|ixF9(woYPO-B3vu}~>_#ad}l4?xAA)iRaE3z-!P(mWuKFzi@U~pa|>t`{;nw^gE
zG9g^=O=T;X&&k8diB%z;y%f*|RBB6*_<neZRPc+3`{&cdA30X|ix=-861RTrH>Z2V
zGWw<2U&FI#Fr?z*Oq%dQ2$2yHS3;leU{S-u+RLb14#d89hH~Kf^hS_0Xa@?AG1lXl
zA#(d!(M6P&k*3rQXA3XFEwz23-eI^;sFNg?NDD-nW-M~T@sVHg{ruveBXA=gp~hGm
zG0&*J!=<`s6sl~M^GnS@M`6%9c{(}A0_6JL&9i>qT}|};VaKge;%ujoM6qcZZxiTX
z$gFI&SWRc@uBc7jP>S@mfRuIhT_jITdn=9N$>Y6!zu#6ScS-Aeue%JML2N8lRpOr@
z8l>fC)rQ^X-2=s*TR1leVn1KkyH)OB;|<8X&hOn8r_>yY)mmbMkuRUnf1>?jnF0y}
z4He3Y9KE?Xu#5p6eKB`bayCq**6PD%(HN5zE1=bWS9a$a=(b@-h3h|(NIA-FBSfTH
za9FA}Q-X~uogq1g{-3QV(5V@wh?3HgsmtJnDBq-F(0uN7;c$}>hayuR?Db~DM0bqY
z7({AR_^yb=$7w}yxC$TjCjN3I7T*x%p&ev~i2>zi26dKjkw~lBaErO=hx81X*Tw>g
zC(4zAT%I>J>C8p}A#kQKfaFA?oXQPzT;6HCN;-GdUTEQ^-l3B>LdSeuWSor?)elJb
zp!G&D-hqH6?2$>=y#g?2tvz(0!KH}d?o&z56eQXho`7MUTdXy4-5O70I{>I<s|2*)
zlYlCWGyHQz3lI#{$Q_`%T!s1>NJBj`GPkg323U3Lg(??7oHq${7SfS8Ovti4S3n^n
zjr0EV8Y(+;bF6U7wuw!g-D(K<C*lZPj8NR<+wFCYb1+VRlR|m5k-DPQt@i~Qs>}kJ
zaZ*ZvLyOJbjpTqfZRfC_-#=wS#p%R5e07~~wEmJfhz}KP80QK&n~>#5r@R0g!0acV
zV8sn)0M~xS9w(s3n)#CN^Jl@I8Cqoz!0*QYDD=IBMJ@oWKSS#3>S)NxMQ>3yc3NW3
zz1K5=01rnGqT{9dVrr*+?}k>F0~HS-ezr4#Tm%&bW@Q(=OWRqv^7@t!0Pe8>(C7*n
z_`$=SeIfhSdaBql;s|7xd_r;Ae?M{l2V(G`x(ggpq>!;|sU<iF>)Gjfdr~Pg0FpXc
zZLKHXn6K2i76|WxzDVc;{7oxQ(V|?Rz}I$6C2#mTNY8)@W(~<cam;BoOCu0_rkk9R
zAqPye%>t3b&it_a02HHb1AF_*A(npc(^9RSU$PyEBNG*G2qfS8>w(J$4GBoeUO6d`
z53a%1!C{NCn(AR;`hG)VyDRqH$5g{rNr`#VflDU3Hb&0B5Al*Ye|Y|kn*OEeEv3@@
zq-2ktGi&n33^_~sdne3COBn&!GKECe9k;TnLWiG$6RHD)aI$OsDqo*cH$z27ayoy8
zUk$(5sr>HS(GVb%R<}KMzaWyG%X5qv{(Pd4bwen&cEgvI-0e<)RsEDy-%e!0=UNNa
zQ*Q{aQ)(4!{+YJL>Zu}onunQ{sCd-vqyCj5Ybe~s(@RZ7TRJ=p?}ghh;dVW;-JD27
z^h#VjYC`^7XLjez=$QYa-N!_JV^UY19f##Bu*))dN;9({77t?>ZM1K2VVcd}L2mo&
zIK`0aykiv!3($IOe$r!%<E%uW{O3UNzxsh5#t`A3VvM=V7sgL@I`e1!*Qe9qLxeKA
ziJ5MCzSAd^zWXv1lJ&v3_+JQ+wxMsN@fI;pHoCh{#1$2hjr#Ekz5`7>gb@agDKc&t
z6;K%QL|AGm7JqPUtfI9o8G945nMbK}Nkb6z#sI@0*G~Zut8oH`v;rw{4bWY;inV6!
z`ZQmo(b>GlM4b!)U_}8u?Tw(n1I#qmh^!6i05=*M%g-9SJ7bXHTT9srT1X)8m&KnQ
z3KFvhCD>mY8l7BC9GK`d+5lU`fGX_Yd9FwE2Oh$#b@Ug%h@pSEy!M?sicpe@R~A){
zc=dK)gBFXGNE8Z&3AvCikvAMk`2lN8XYKn1`MonB?qMZpJm@?(7T9>KUe|2jj^Wz}
zoFTT!V}|1?qz=Dqnv_Kcyzv5(d|E3_N`yE#)alW?fy6BrfGM_C$yXf&Ixp5&2NgRR
z8kC(C!0lbk#AiwZ$I>ZZr-<nNYkb2s_c(hZtUq#2o>=JN^HMeK1#D#HQjyTFWV>77
z2{K73TCdbYDIkz#2OyeH<Nc;z*iiaXH38zB-^|>+jmqeGr-UP3CIfg}<mj|jzwgyQ
z1=#0Q=3*A&8DY>6EMT*EtI2|T8I;r@g3v@T&k{FNtFh_hPhM_G`pb!DGsrnE$(sdL
zQaJ>P>ARYy=8@|qkh-<|DQj5Jj$ZkHb#_o;!e9J$3Kki|gujC~O82V=!K!seX$Ek@
zgQz=8!lE`HD+Cay=@|Ym54PB!_o;Dfn)V%PyY>Z@krs4Yd1C?yVc~Bl9#Dd%1|2lK
zqhx;M`xLL4!~+Qn2vKIO<*vLJr>-|*1#?uZvYY}3RhUS5U*M9$M;{eD5IG8~d`Uxt
zTkUeD6@0CN#Y-r+0y~&d>3L#esi*2Jt)GX5U28t|svPy(dY04LguWyDUAo#5jIj42
z>Yn5EE%r}U`O(K=(C)A8wX*Lo9$kW=bw<;h0&CNEl*extgpd#E%Sx_d)d?$Cy*bcD
zpDbs}g#Xt^|EtCQV+B{TksR+Rqo%4ae$AmCk*HPRo5DG}P?~awt-aTd|AAFsB)1an
z3((S()YVNN!n7xfLve0?oPx<{1Ic3^;lc@{A;NG}3$NKX?Mfd<gl2Hs*3AwGYj2+C
zDv?ey7_47OoXr2Rm$E%NEU%tFv6^~$y-5^8AgF!-LXQ6Ephe2BXb|XFh)3c^MtQ?1
zaO1nYCTe6N!Ea^-0g;dV_E7XYJYt9YccMIquBVNfGbt}mwus{20S`)D-%YD!U7a@9
zqoTbS8O$q<?r!JkqksoD+}%|`yWxUcumnhxb=$inp%Ui>Uml&)SxjJz82o?nA&U0^
z&trp}3|}C028IirJY`tB-vsLX4`8LoWmI`#E?>twhm_X_yP8S}4J}SH-D~D%X<1r@
z4AnGD>^ZLNj?RRbN;v@FBi6>0(z}mDNRI$!pg&x-=DwGO4Ua~b&~pr^S*bdr{G4$y
zFNJ3tbZQotk1ntIF^^e|CQ22?4OVfO4O<L*Apwiq=GCwwQ1dI$kQIS3awabd<?alW
z6n3C}uVfurfHLg{Om@E4dVOixtNdeFeQOj-BngDbXK`$hg4leYy`H|0jm<pu>IOvu
zxBgp>ihC`LvtE4rHjz-{J>cw%fgrBUfkwEi*|eEm>98FaqgsypLSRQjOYz@fCOC9|
zNjFd&mdtq;iT|Tn#HV6G<`w~BpC=tb6z~Gh9LllnQOU-^t;*pEg-h$kvnNB6t+tG}
zQcKb_>>s7@wao9fBf4jMC|7%YpFbX7bD!xRa-OJFriN{U?Vl|Qub+o^G`{@U`>A>o
zOQOBEhQj^zOu3t`WFZe{rtFraVLB5M#1W*kzwz>!LLJAxzOLW|xi2fyK?~q!xRUzg
zo4th5rX1DUjCd-)+!B||%Rx2yKE3_b&v_Ru)$m{{_?dS;DS7JV<0Z{)XPR1l=Olxi
zxG_JH*MXn}VN`C#HcDQHl7-H}N>}Q)Idrsm$Hiy0x>*Uh9YmI;G|Z%3u!VLn|1DQD
zr0v(E<Zu70g8Xw7Y{!QzFJ6H|IsE*g17@>OaM6G*dlon#jQ>0!Z{Q&q?L<HU{#sD^
zFo{LElCb2k(wH@wnS=^(80e`X-`1YP0U&7P1E?9XkfoPA(KVkjPFF<N&qz`5>1u{I
zN{AW)c0jfz5bKfz0##|TlOs&S0p2=Yj|EAbuEp=#9ApwG5{)oGTzeA?q>FYd6=#>-
z5Y9G+qEll|YxiyD6I`=RAwv}c%Y8?y>*l1uLFl<fMf^?2Su%VMhHxT=3oH^rN`Ma|
zO-_@I06nmO*V6I?{<3O0_fQZwO=lib3ATsR`*&s{72V9LNN6Y7OPi2*RTE3X!UOLh
zNFno|ffyz=jAd>jsg_)`2O!dd!zliz=k;OX8r-*>{t%=YN@I;mabnbUtwJ=rK){Ti
zPP^TW0cYW!MKJD0xMFN%B-eHY|28_HcixK9Pq^l|kBEDunRG<Yp%)rE4^ywV4LX5r
z1(2f`hKG6Cm7#4tz?S*%ekM6HMdy@uNPPh9n!GhaW^6D5eQhEb`Rp(i&6+CbkY%UM
zyg+cB`@(#M=ltp!JG=J?i%<a~4f%C{0ua@^l-)5sLxfxiZ*geIfcY^S{2W?GIS;E8
z!V~HF#(5?qnuu>+fn`ZYU*_MD<XkG$vqyXxxdv+2lR7xRAUOJsX&M6kCd(vxyK*_0
z)he43jL(lBpQcQ9X>IRzIjk=W>z$O%(jzIQwK@7I$;f|(*l*<W?zAB!ulovlUxB5b
z?(UA0j#j0^Mo_N9LFEJ<$5L<@)^ektp5EDWk&)$xw@o`$R)sm3%AzAD&ta#i4Dv1z
z#DDLfCCED*ZnJd2_>s(I!U=oLGRe6{7mx8bfDtf7%$};op|)QU30tl?(NtP9$^J<+
zBAYIh!*@N+&f}C&O^j?XZ8T~oLBgNav0coP1A1x6uXmA5f-1IKMTd8aSqU_Je9;p^
zFU)-~471$AT|K*W1be6R3}S=D`%W}~M&6=K;Q@Z&-21_8#^?lg;q&aeC%WK)%z0um
zuGB}`@L4Jj<s1q|K92C|xiQDD)QHVntY0x)@Dl59-*Z;d|JvzYY_P-3%9LR#)hihe
za&Bn{pnYvjh!T2lAjm*l07aas#lrjn*i`v67=fj+oGTK@EfaGL`~q{W2sAAw%*6zt
z|5q$BHm5n<;oXEJbVkVm+Lsj-cF0oLDl;CWAiS@reLFjg{Ez@N5Gyg?=WWZC&DC=Y
zY>*TIr)DF&@H>y%mLX`s$}*5ZF-}=n*O3*qYI77Ts2+G;uQ`z%CN2=ea_~fv{BDgg
z?7G3Js`-e9y4aBDe>XrW4lK>8GwarS)Cuq6A40OshwpQlj-ak#N{_ptlcR42q%0tf
zBh5@|a-yCB%avQo$OFt8AK%s@R@r8as|A|YQD8jA`Tj`f0PxrWe?Mp{aZVbEbWT9x
zeoTk!I1<S*$sUJ*!>Id7!r#;!{{*j#)1lff0W}__U=SEQM(K>vuTb$2n=}d`paLv$
zoU^cm`CJdhU$<{`P+n24cNn@DC1mL^jU!uI#zeuVBwn{^Zj&OgAB#a54PVb|x&r<n
z_2Y*>%(0_hIw&xwOySG~bgthqLX%;`qznTeVe9+?p57?LL+=edUXTSfg2|eB5~#tJ
zYqMuS#xva=xq009uTg{u#s6#(Gvbgnm3+ocl|O2}&@ouzJxFb@lZMXP54}_NhM*&?
zz$W5^lRvlane!iXB%bHtbBKiagO2V+Gdg5GFue$$j{fMe#U%LpW{yb(D>#<C`<N7_
zZ?5jENPJCG-?doC3<3UO>6bP8#A#0&i9rs=5an=7Y>}!rb_qlk4m*&AJzxCX)(|f!
zbamb9`sRd`6+ZeG|3)SvAtn&Zx>?FFZgVZ#k7B<bL@gY~SZHtOsB*Y=Q|~-?o4fhB
z2fBSXCnTF_Y&;s~uhwv;NpD~5$hdTu-e+8<+r1RQ_13?^GC8H@?@9qLB&>nUJFH#1
z+`53{#LP5>8IlftF{g{~ur%l*K`QgoYIM}<4L;u4%j1z#dpgb7B?`Z`SGP<|z9p3n
z<3_~Bs%Kcc(p4XE-2-CSqP2>_;bCiI$np*cANJ(5v@%XKYXD<P@-V6Kyp=DMW)mH@
zFr_U2F#su{C_Q=nBPXZ)=%Ktre6MrA2TkpxYPry&JUvZ$E*K0Gq2jHi2{pJeZ$G!q
zV|n#PyUp(1k9+4z#*{?;gZZ3svQQdG<B&01R|$BDq0fk{LByGlOSGtd@08rOElJ|C
z?hKVuE^mV0z**SHhy1#{@wh5rhS7`#DPg=LhG;o5t^ZodO-z{p_)35D-mCgdLFwG~
z1eX9GCG-B~O8BS9ctAe(hz*D>kiZhv#*lO}^+YAFD3}K_iIrNHj0DcK`|;wPKh5ug
zCTMl`IEIf0$YzEmB&KaZpzH{FH5oBf?aM>=i&z|BW9$xDI%Wr&56mz~)w`d_#@Q?B
zcOi*nHXw-0kf&nteHc6Tk3ziWn2p9^+l*<ZLTnKUo><@*-e?UG%n<M9ao*MH?_nce
zez{co94n;(gXITFGrRm{!YN&b?&^vNj%xwLZK^^t`#W<LxBh~3cRgQ%5k-!4fQ9xF
zz@9hF*J9*S7#k;MW@ajxA;m(G8z)5KoYTi*1;Hh5^ilUHDMLjf=V*&P=0CG5V{e3T
z2@-LQZZ3Kat?h?%E)AEV@39yB76Q%2l3O`!6O>83CYSmbfj~kt@7p(GacWD<7Jjs=
zKg5vczY9B<ijt1_5OCQw)EO~exHe&k1$M5J3SPW}1BqXorb_KDZ_^s&o`d2uf&CFi
zL8Cq>4?vH_ui-kYEHwo{M*Kx4$HTk~)c*u{Cmm7W+%xS=!eYTseF?AaN|wdx5-)Tn
z`4;6Y_-*7$P_5HP(AM_|)7o%}t3tzRB3|ug#+2?EY)8M2Xu9!R#f|al+#Oi0*f38(
zmNG*rObk3NDzRCJq|3}RA3Ig!KXNNu-+%r<NSveiQL`m`CBkAYuZ|0}C8&w9Wh7y+
zD$7BDqder!C~*WRb;~^Bs!IofT}Kt_^=gb){Scidr}zEX2Q1=+a24d%6yt|hevpIq
zP8n0_U8Ju{U+Nf*(W!GdrdtMyWot@Aiyn`MlyF$s`g!~;DybnlTG|yXIT^ulu)Cp~
zW{S;Th28LB0#U;4AuNS1S>PmY%F<nbZC%ebc9IU6tBQKdU_^x6siIk{Rs4<Nj!vd8
zuKUQkQGR>2E20@Oi%2|6hS7{v*;V?G(JT1hX5f%O?b#>5hJhxcA0;n4iFet3Ut8;k
zhR~q!4FUddJQr%lC_w)oYEMf!kHPt%<x0)Vt71!-qO7k^R{8O3ITp&^II#Z-dAs<n
zU5Ec-jt2O)BS^{n^7Chfn3M29qM`xM!pf0HdyfL1ZW;sw*9}&4)S_A4FI^$v+tWg|
z&%6hBb#=0hQ(BcrVnQul9HUqSF4vJ*GEVI(+o52i0<c0lDuzP5Y!a>Fb*H{<Kyq2#
zw+EMEjxw8^3ikA7<1EIMHF{-wuY-uWoYce#tC<FUPq9xWu1^j~v2ni6EQ0^w);G}h
z0mx%QS6|<*l=og=+v%hNu0|9W&aUFdECvgz1wgikqP;ANR{BZrYxq`wWN;msqS{X?
zN=QII-EGH4q;A{^IeWU>@5#sckCI7;|ACn+MU>W3EYsg7nZ;0EKjFkTEq|Z=rB7vn
z?MPw;#4vOjQ2HjKtH$x=E;H7g-=yDCQHolYr!egpdfK20!^$1FMlsx5Vc2Bkq7cZG
zg6-}0CxK7<r@Gr0)KjMb8L;)q+Djuy%x^8s#4ddZA(FJJ)}tV8!ifK+*2s?gBd~H4
zGbG1Uf&!C}CzClB-y}qR|8pJI*^ZAkEuU`nCx{BVm4T;K`8T8`sJnkS!?8Qw;{IaC
z?xXuji^Q@bzmfIW?t&%r@fQ9DFrc{rxdE1qV${J-u!}qVVJB|nq<au}Y2TyVB!pU;
z?Iv1~e(ThkhU?rA*muNF2tL?&|M&ydX;{q#7n>dSv<g4YrBM%k&_Oj`fx{Hcg9ldw
zS{lk6oN}?S+YNp9sY&Shu3x47H#g5;cUc1yR4!$z&k(FE6x~p#NrYi4H&`X&gjc?>
zRo`4CD3#hB6%G3YJ;O=KMd;nTSch1UMf`y`?RJ!9`uHa$C?3|QhR?L8bH1SCCamc1
zk^(H=0DoHTO)%pYWOb3O?0xU1pcqBs5MV*RMLNjiPrGFZXye=ZvY+YrrxmmFu?UVo
z8h;iFGWLkdD|2<$lcB5DTA?7-%sZ~`t(prY5~5jyv5iAt+xnbYW1KHgnK$29>wi}g
zq^2Mq6(LtwH>aMYW5fp1oV%moR!O=v&mM_dA8oj8V0=$3nH4KIGN)j3@mL!{$7M&>
zq90O-NFrSk@#%f&JpEwgv{^Z=WAz%Xqp*R5X%vXSz%|kR4x$P?yJ4Hd@stl&q)=`Q
z|2OO$Dcs~MXGG)YqFJrWQD3PQU%KijIdgSzi8)2KN{-{y7Wrn1otWTuksA>OWky_-
zX2Y-_$rR3}>SE}uyt-;iJ<kpmEw2lXN({$x%X5u-YpJEv;aW*{op}iR(zza6CCKXC
zH8E!a(+}OcghMrfu>N=?N{LyNeuI<P7?7`q?-flNli*fP*)AXj{^$6(j`{{ILPn=t
zqw*qIecFu->WpY;;46a;zJV1N*_r13EamcM`z^p9t1}_GG?fk98fTLqcLNYSJ0KpQ
zU(b01j=qn=fd|Osg`ml|*OJsHn^Yk`1s|e>L4g+}tEB;?(CCPXhzcp4ud}^`XplDk
zNEE44ZzbDwLP7$2={wgN(LAB28;(=pZ&d2V2696|bJOe@$uoat#*z1ZU3iTInW0a3
z9e-oGcQ}4x@!i8;_)+$$MdLY6_m@waOumDrHNGxJpjKEb43?r&SwxYiUduxxf!fL)
z@!OB1B!TogoEr7p&UPuM?_-)tM0}vo&=B&z+%&eoYuej$-gNpMA5F)ftwzAp{j`sy
z<GBvX=2~DJ@pXeFZT>kR<8vOqeJo`Nmv3cmUL^4ShzAqLy=qIa3B%=A6JA8Q;{5c2
z=WL0x3y?^2P{dM9t(5&|Had43d~<9)XGG_t9Z&ZrSgGq)n6u;ABZaOj4c4e)j2YD~
zkNtar2NA9BU(m)f79=T2Q5LvKLbO7gFNH3-OMye@WfH18C>}?pfqbzsNTiqf>8cbP
zzV_9`1QVWs#{4!s0?IvHag2N0dl@_pk*@XW6!t4>o`+Va8}Xbbwu)`<2CvS20vE00
zpCnA|uLZN%p(;Oi4OSyUhl|SYjCiYz?-8v^uK)C6rl}xzZjh7BV^tQj7GlG9Y%22F
zot5HOFLp&o+}K5bm&qU{6(8XA*TcVtg@{AU`oP*0@1muiSX{40$2DOyC38~uNJwHf
zplP=;G8HonGuX4fRB_3|h;Hny&cV=rVOK^=<3?aCpCTU_wx3+HZMrgk%7KPv6;b+d
zq5!?YP%z8Fm;$SwahX0FYTVm&FpCoY?_=&?`XfV4@m#qL2sOPEkKU@HvIN<t)(!|D
zmcgpgl2Fkh8WD2i?pzEQ$dDo&Ce>-FHA;RA&MhN3t7GX#24lo9w>U8}RZmwXD<d<e
zM@BZ&rbGm)brE7!X}X$&enNco=<og{R;VKKn6+r;4A7@89w%|@YUc~Q5ugD-C)bLJ
zvEr~6tq9O)C_&<=mb@GFoaRCqS7ZOI&_{}rnXZ1zAx}2iybU`wO??@ex3@K;w3g!6
zC_kAaG<FCQwM_(OONOqBM=CQcbNt0tmrtjue&EOQoEY`HEoA(zH)ohO5!gvQw|Z;e
zM9lUg@;or0*!Hq$$}v3Xe)k2KUY$TBLi)d#vhs8!dC&mY8n@^-n1-4a4z&F8If9*f
zx9YqL9&o8pBB(r~Mn!Tuani!SS&{ZW-M%Wj3u=KBuVwig9>lHRukoEhTF`ySiSLX+
zob6|Q?-=?}5*s&f?f^z-s^CM5x(`4fGdOK*_6EB0phnAIi~+}1k@Tcjj~-6j^G~f*
zB+%eshWhx0!5PP4gfpZ*2h_l_Vjd2ICzX+c)TqI~?uRt{$0&f>*EWIdbquVvtbRub
z1(iBGLB}>JeD12q|8!#nkOA|h2b{|hSEzonRJ(YHCuPM7s&s-OweL1|!-89sgbRXR
zSJ>!T@aMiDt^;Wi>4=etJ$+Rp`?a~UpOAIz%>rfK73r<Mm6zSI@Ky4LP)1uw50A{g
zNINGDNRJ3oWbF9yc;iq~%{6OyyJSIf9iY)dt#!$Zv@i`UpfNM(cPy?4=l=9(nx$Fd
zuY5{9)p{#JJ)Ak%$dV+bOw8E7l*PL$z!&e=O7uU~P5{y|P_bx4k*AGfE(2Tnna`qx
zS$~kKY^^JTF4<c?iwUgw_1?u4?u9b8J8AO}SL5oQL9OdIL%CavNfpzQ`1esWwy>b^
zZ;W|cOSc~n%->Yy|6*OXD?t$#*IM=4&Ok*oc_1>vqBUS0MBsz=Q+^~(kvj}IWL>@i
zvtY9%ILZn==|!9fj+V9zG@?O@irY|Z7Jl473p+?WPUYeJ)*fRILO_+rWe*QN|2ToZ
zd!FT~bFGeJ+t`<f9MmY50zx}?#3Uy87OH*rq!d%o+mdOgpGO0B3}1)q8&Vz`a8#>j
z*eG*e!EsJcM3Tr*piBCTp#LAYm)B$HrVNGrpTe1am45E~-*0Cnje@ALHE3>!j~4by
zk@j&V>g4ho8YmCv=;d0^z!^h+lf@Ud8~PPVNTG;J(N50qXsD<}Y&$e9Rg7h1TFIGP
zRyi$9O|27p<KEs((nZSceptvD>%fEGp^QVN(P?c`&2alAo5UjebTV){ShwR_>T5Fu
z`XbL>7)2=VYK9e2f?FIO#<BA58Y@axZt6g{>f!#qik?{#xbkD}SYQcmQnGAeclGSO
z2wd+jXY;A$ssmTF!hjeGQC{Ll6%I5EEJB~VPXcx=Nkd=ue*T<$g8kJ~aSJT>O=fu7
zckX~K{$vU*SWUxm?zpR}e3pI&>br2L<eO2sqBf0C;wTqEQ@9>8Rvkd^0UO9`Zo%~&
zORzyfz-f~U=rpo4s&q^B$dxj=r^qG!|G-X%uSt|K5xt2Y4iDlmm;aWIpewtgKAf9=
zyPIK;E}c*VWZp~yJCxP^cPD}V>_IrF^0yTZwjR4_7Kc|i7w;FJS<zTHIq^m?1^?v*
z(A0_e{nST3mARMhZF6fEu5MR=-{?;sfK%$a?ikzwvMT7)f!RzjnBKm`BA{X<BC_Q(
zb2qc*;u*g=7tN1ehf3l7%fXv<Py4n%bz?3XiJqJOu<4j47iO&<@Ix7CP@?=V?kag~
zM?LjqvtmXq!~CUJX=dDi-Zf=%B@P>|m`%S25Byxu28VLI8xS5Ri9^d!1&Ir!+E>Uv
z0-xle5{BUL2+2(HB$h|9M8dcdx$sw4k5?NI*~EU1=PEXc%I(40Qq%=F5wi~gvJ-59
zm&Z%Hk4n4;l-|gVS~N5PiH!f69(~Zl*7M-Ph_O39XM>MCc6W&vG=Ho1N@;?YWnQ*R
z;)uSrMNhiU{eC`_6#We|iv1LejtRj+4kU%Ue%{$(7u2YJ=#38wyK38tR;%CnTxpD3
z9TqlN|2#N&#bUP^4%RYI&OJPP{(ze#FhHlny^S9k^httl6`@EWzoOjNHYx#>LGfA-
zyP>B2cTvNl6bc4To=RN$o#^S+(9=L#Y2Du=LJ2Iq$n&>pTyN1ZiSa5|fnWfKm@t{#
z-`Q_npVKeMuf>|z=?Kb%^~_4`gs2<ONi_1x_!d1jCDVR{JK%PEGDRGpbZ#IWR!(k7
zbgPb*^d{CwDSpeaP(Qz^-gUg5XTh}9PLlbnGXDEN{(6M|WpyfLr4_k}6;-pjx@2NW
zAza}6ZxmRyx$>=U9|}0Eos#O%XC3l6&XLPP-(i1P5EuU~Cm%HvGyu$SWfd+@c9J|c
z5p%P%bP2uKdOk<<td%XwC1H_RSOD0A#z@ktN8|WO0{L2prAY^e?%|RtVsyViA6KoL
z2<Iga^8%$POuzP3Q-)Nw9(Jb%2zb<9#^npfeg7yKjS>-0k7-uV>{vz4-3hCx(LK`S
z@G9Egm9-tpj&Y>1IC^)v@q9lv;pL7dh=>IM3$$OXZ7nUCfE+oO!)_@2A(q8Z*Tz8r
zZjh!4Qe88Zx3@dk5zwamqm5d0M`I2TBi#?~lmA@kU|`d>5*%sj^~&Gk^SM<}r)2^f
zM;~Btp3rV_$TRsIifFmo6F7Yi#B!}s<}69Yb)|;AE=rD3?Y|l;!1L5w{G|5kh&NAX
zpOi)Gy}_a6L@m>TuS#konl_h=C9XW`&paFSW>%XOHa5GUlCDv-`{dXu!rlS&B(6`O
zpMV4|(`_y~g*O!!h8$DvcW&ICc$C?oII4GiHP2g!8$jsXAe{g>Dd$tT*Ax{=()aO{
zGN;=D>JF{qA83E#&}5@tK~u)ST9MXS7g#&>UDPuyozQ#{iQs&_84dy68c(*an-LSu
zLub0sBls;6#7l%!uytP7y4H-tOQ1YFhlm%Bp)M)nmd}^N(&A6M<7v-ss(Yax?@y#S
zAHV?{M5I(6Y!#<>Yq0ryfUU%qq<GLF1O2IJE81e%Un18Ad#KGiTn){-kL?_8hql)t
z(27$cgTWHwA7!I{IhJD9uRslh`%LtH$|+~Tau;b<+R}l{%s&`B;ujL$7-HOxJB$$m
zJDORIUI%>UXv56y4wA;#9v1wE<q@TvFH8~g&e(L$6<Xvvm=I*-oNt+Y;%Yj$>Mk;L
z0o86$^Yc=Z{l@xl22sVYCTDP0LfeAc;JzI-^;9`h3}pTnmhx#=gO>#aiW<w4_F0oY
zp3yZ`D5SPCOYm`$bxBoOCi!-P<s`IH3DMhy<X(X4aG=L2`#Spg<Dby}$64F%nNLUg
zKTC?nFLmVetQJx{He*`#Y2}2m&<grzYx_$+`KxfNWw3_71y9?(?5z-}xU-pClatrT
z6Q7W~C0A?9UCS!;+2vWy=vQa{jRRl}JvsCBgxqyae-eUk=LKp{ld(k6GJj0b!OWg=
z5c#<X+T{1mD!hBa=Q~)1$!-2c2jH7jkZ*B$*lbjC)o6j#>GEoAjE9lHD-a_i>1I%e
z)GUqFDgNoir<B1gNl$8*ai68bpJVfK2#cWl6e?%F2(~D0Ib4e;tM~P7zR4iCO)+@>
z!>JgBHXu%H-vZu%0HaWmL`5D)GIed{y8ezopOTIHOG4VC80>d2fsUY_$J`<ql8@bG
z&yUvsDrGz-$AiM6wz^+wl5t@fWBmo|=uo<nnRYDZe*`4EP0JeHJqO9+3j)dO@fv3V
zvc$8P-ee>k3wAWqfyYec2Syb{b6-vopsIJne7?X#L#bxpf^xc!n^yRdy#Z}<dck)q
z>z?ncVsG;htb$*_DRTEk0D)i0SaRjx0LPZoxyp+79#|f`0y6!y1||U$w(`BT1Id^n
z(nLX#5)K*1=+bDixTeL1I<6dULXjr+BwUeP6Ruy#OKbU$gY%URsPFTvaDLuvsX9c9
z7~YsyP=*~HTM}(u09Ml+wRF@MZw)S?NhcOoS!NdqPNL3Pj)9ETIcp;3HxM|c!hc{N
ztQS>pOyvj0fBd*k9E^aqBpMA(-F`LVuHB-gPa@w22!5NLl)o;bu%`rR6#2}<{=}T!
zQ@_c30;^H1m;4^5Z+}?6k-*2NJyouv(F)KU4`^087Yl0@T(~4GrX9*Pw^4D;wg_#v
zQk8v;*dYP#uq}n#@mfz}J2M7@iz2KWOhXCr7PG4AtMS&-r3;`{6!2e!IR|<`7?%#(
zMT4iWD|TN#4G_GyxvT9%@gi(yBdV7ql<7q2?sJqDK<V;3GolAS;Ar1~8NBclC`Lm2
zt2~kptuezH>4wVc$?b`-9`6HPV|t2ORZGYAO=#%^g8@<0^hm~ry-F1zk8k?$I8dou
zqB!r(kp`ov5+r3tD!$d<<T_P+weVi)!ZL%<dE+6oE&IS@n`5u-vLc$iMLT3Jsa@C1
z{YdwKq@4W#m9c5D$$PgWJm?D4@cnp1`M-Aq{Il@<QweDn4Yzfs)@FwcRAM32>Wqek
zsOESQpYonbGUlVp<eF7om9s-kp23u5s-rmJ-ov!{S>!ayDQ&$CQf_U6Otg{TIs&xu
zc`rz{Tiy8vhsBkn$#>Q1w@7YQ#*z|9KS(}FMyceqfni1~?Q)|8DO|dAuYHFKvilRA
zj8hfG)*rzRqsu>%Ca(Qr!xTnnP+!!DcIK))+A#-Jd@P}<u9tO+HR+PXwRG8a?>Ime
zDstk!es4xym6Yc1TOUXJ@FVtFL3>iZ3$_ZA2jOK(pXjx(@peS6gx!C`Yx>H%l?a+s
z4szk0rn8a{6qm9%@Zc=f__q~MD+lzI$o~p3vCC7jQM=YGJAXrR!ZZ~9ELHZytA1l8
zF~fRBciUw!*S-gShc1!cCbiQy(9<msGI&9QM#7_)O7<y-PLWm*Jscbkqw?CB`jMhS
zK~mqNMzrQJ)6j$KeBY$};NjuXK1UG8Fi>AeKcWbeu~|R-&8d)&1Q+7aji}B|Lo4bU
zDdRz!^eRSl0kW2?xN^;T?5Z1Mdv8+auF@$~8*f^?Y*DN%?|Qt*z`X*D^rgSR{*?2X
z{&3s?78LOAQ(PX1_|SbUnc*9-(}4;l_$6j>%@626pEa(XcgJh{6d}f$;waCJ5fSeV
zzWjnNuHd!1-2IUr7S`m>$Y*A*LR3}DHK+OqW!-6vVO}d6FjofO@8x8bxkSB#(ix6;
zj6y8XD~UGgS`07$Q%1PZmjPj)%Ecd#OwK<44tF^Kfi&#PI-<DMtaXkYPz4pe?*I+8
z<xhdzg15-r!krCRA^>Z`-3i#JD1Pi5`jI2FfuuuY-M4cI2po&maXYa&(M7-^#*Djn
zcovy?-I_IBvA8Uvdyr{pqbL7j6pslZ8e^K1M9`)hmIF9;OR-}9B#I%aQ$_G?2|<t~
z`EhHtI#Cba2t>)>jsx@JwC(IJLvdSQqlPE?Vk;^txiQ;9{kP{u8*?q6_o1|f&<02Z
zz~p1(1g-nhwcz*%Vd*;OhUk0rK^5eQ?`6u5JZT9!`4f(j=pd~IK>P7LPjr$t_fgE7
zfx+kT!}9iTU(4I^5yJ!=;8zQiW}c%nrLBySu0yPXrhZc635X}!J%06hIlZ3U?s1+A
znbOxzn-ZJn3=hGVNL-fw&TrhI5gIfNg*b|(BlIlmoi__gQFUXU>Wu0(Tql<m`c$Fb
zWOzbO<Oaql<IFlte%(X+&n+)EYN!Mc<k|H%TYR?~-7{7tbv=bq@of*%-ujw)GFU4M
z^m9GZ2wczZEh}e^Y9F=b=SFRv<-N$Ccoy`g?AMye8;vB?RFoA+UykQnF|H31B!fqH
z9151<j>`LV5_R@2%E*x{UhL8u$huQKii$y<VB6GmR4FsQ5wFI>TS39|2!5?RICuBa
zW5)upt>ygJ(lBotoIK8<GWDnKs+IgBXl0b3-e)~F7ci5x-ZsHHUxwA(>9m%5@seWF
zA^pYeL1xj|OWV5oPrsA2wr*V#u>H+9onq59yM|?EC^W}k1_Z9|s1QGVF23+&j}?~S
zoKEIE)*(cr!DaMBTwYJe&)uEf=MrbR`ouxA=$A0&Z@3+OEnL+o_m%QvhwJb(E7*6s
z)U<W@L-Nc79Tj>tdJ`d6djX0oUN!hE^J%%L6UB+~pQP9(5yT9UrFQz!!?0)guIjHX
zj0k7Yicb6dWe5S>xy{+c?`ZasdoLc*ofxdsSGR=jFs2fcC*wwDR6`(>Q1X4I10)g=
zuNsDNuEXt5-{+aBPP(rnf1cRawwGrD1W<~)<prUYODOQ+RBe958|3wUKTIJF6xo^9
zOsOLE@&V+=;Qr%twBO>KE$*C1C&Nnsq&wV8ErlwY0}!2ZYp77Kf}U;}K{m)sud~fw
zUaQGmkp@5-#<qlT>5atIoL!-mBj^GM%m6EIR8k>8$fmTEF#sEA3$$Eea0PmCQniA9
zxL<&tqAea?L~-yb`T^29Vdn8o?bq;PQdo~VAbu@GQQ%rFE2;_T!+53%6FG*X@V*%s
z2Cx>DY7_st4q2wgWM?S?UV28g`2f%o&xwnh`r+G<!X$y-bL~9OL+^|j_&%xsyaWVI
zm6E(Zk6+|iTn=YTpEYRj|5`a(hJ+YQD_!f-E+?0CTOTt)>C4~B&=gaP2nM#1j~_+V
zqw{*Sn$D=`o_F<&x5&cj4frK6(E5!N;HpZF5T2V>SyLF&wp0l?GE(+gah1O4zOO_*
zP-CVW+ZmjpRoK!df!J6wtK4XIo7w`#UZuM~hsh7yp+T`iP43SRL9v#t?}{)4i*}wa
zpaIJg;ZKj-zFbx*<E8ENt^vz*bkCmfbLyI3=<+YrW-hqwXXwzv*KP_HuZY#+n?q!|
zDnSHXj7bnm!DG!;dH0`5c4?Q2?-H)Nj|3kQdBoHD=3;x!aB<)<PvSb4hF-jdTU9Mo
zyf*YPv(hAY=odhP%L*FttGDLbMoRwIKf5LF?yT}Y%`7xg=KPI(fC$S!eHt=CQC@ZQ
zIY~{kP`9RJqq+8At<w3ri9mv`8lrJW0{odZw!Wz-{ctu!-$pcHy`;YgpR-JBE<6cV
zbz6_BEHQwD^8jP^bfjd&L80!bU?k+Ixjih*HR28I1(E)*w|O;^wnKqlaDyT$gyB#U
z`_6@Ewu~S0eDv7X4u3g0pxGwS38zMC+B)&xc9#_?mQ!2ZPD=7+cFR9aNIck(Lg#ni
z7w)tPQu*x9qYxXs4GWX)jQ=t7dQu&Ib5XxrMR1#!<2?A`Y-3bodN@qn*TP4hJ9Xzd
zz%`0z_UG!t8B^ZojJY4?Fn&`fUOV3d<Ke_nD>oOXFt+;q3-@D>^^++uy3oHY?AUvg
z22+5BIu3}Vuc$}$b=v@8J#U!TBhiFqFQJGoggYvy({E{o3it-WE2Q77Uc$fc0T-U~
z^1i!81Ox<b>7}J5z&Y^hcx8d#wzh`piG#qxjH_MFh)u~8Ij~`HH#+P~KN8m@U?JhE
zG2Zx^gZ^=ges(i;AFfdJy$XYFWX4H1piPiFi4ja6kWw1>K-2N6nO-L1MqtouOMD%4
zn>{iWH7c}>Bm&hA#KnUGENpBlCQ?%NRIr<09qzdw_rJwjLGz0n#dtcw+A>963fH)n
z4R5pvF9%C;>+d-nZ$`W#!L{k@Eshk|`%_{VNWVn!OoiL?^qK$}sq^G9TpeNiCCv9%
zpsGl{T%&czk+;_ax}S|REQ%V9W%0-x2<_3j?ExYPcWQ-pm*<J+gMlS%orPZ=mlHEV
z4u(Mw@KqUuf6*Sm4ira*@09oeAi_b2Rd99TBV6-N9PVYOnLu2nmZIbnvX(OYbD-6f
zR}^p<!By&{N88per@X*o0!LmxKQT2LMvB%a;B33jT0TFz;k`{fXQN*+npr$1@tLGl
z4Ljo^qR%8@kfA=<=HYci(OVbxAQ%O1Ry}FzW~2L>%)$iQW)ZXcN!=IU<nsh*D|g6u
zRn2yJ`48!@fL7D*7v`72tYSJ1c%#p9dVjM`*1!%4(Ds*#wrAF&Y2-w7OTKFb7sM5A
zn{Jtx%Ec|uk1U=c$U&v-E%qU-@QGG`V5UhcglV4u&vru2!=+rqu$F6CnOc@)p!ejh
zT;6gTGd3;W$<QTeH5V}FsluU)tYN-pnaR@%t0NWYYay~T5x$*h5N%B`f3UXpKdJr*
zJKaK(Sq(&T1zC|36lXk%;}1Iv68?C`Owv506kMLknm|j*#;soE<?8xyH@5r(eBt!4
zFVttVio!-@S>F8n=tH(cspbMd4|2w#o45<hJ;h&@2o}=8_WOLjg%UE1E8veut>^Te
zDqY?gP;^WKCWT7{U4Svctdqz)oF91&z~=iDd1&u7qi(?RT3&!3l*+qTpWS>w@0J0B
zh%5ZMJQAbR;y@-cH^yEfCAx$NMXgE;?4|kC*RjNpM1UY#kU5ji#~XJ09s}Mk4_vcg
z%|RYlFHzHzi+0vg;A8NMFb>GkDslow7`$gaZ(Y&VAVij(J?t7%B#3E{`c7K5k$C~E
z@c85YD1CK9m`_WJu&GI4oxX}nf*^;CY377fi!clxD$M6zhuA-nB5F`oJ}g|DjQFEb
z)OZ+BQeP=~OhS(Cmn!%;IFf*TYrM+m&@Uy>;BTxrG)?9tknpg}jEQgVi6z@Nye^}4
zUPby{8kFL{2f{HpXlE#8PJx*6WCSW7IbohTJJOEzFWb?)`0jSVCdBd3O7_nKFJQSQ
z@$1)bUu$C0u>V{Sxtg&u?jr40-Fw2>`llkMT-j*xtt<ohunee7UP-B0SMr;Z!{vv6
zVV#bsB@<7<TQJ$Ve5(gR-y6I~!|7J<gtE?B*biN<W{6?cGHydv@CYSY1a8RyZ*zpD
zhJhzLW~H@0jtp!|a`Mq(6rSkOl*NJKJ__2WMA`_NCC#tc&7E!qI_^12voB?%DP0Qi
z6x2W;$+4n&m=8D#7lG*(USL}pON54wT@mM!expz0MW(MB@VqM|KIgXeb`&c6?2JPs
z*`rk9O$OkgH?9H&TmgPR;lzt5mBl-besmU)J<&YOQdHCpM*1}Oq5o&k_>aTC&kZ+g
zhwx)p<777(@3IcNY+?QXQTNtyQEvVEu#%#bpduX-5`wgVgwl;5&4AL4<VXxHpeP_I
zjdUX&1A~Z)#L(S}z|dU-1Mgy=bDp!0+voZ1{paf+ene*Oxo6#LefzpDLvJx<EPJSh
z|NJV3V0Us}LA1ADwbQc|_i?ZBEjfWZ%)I}72z?nZWKzfG%xaFtB&C~NFYE$jQ3X2K
zL4_lLNdN^nZwG?uZeJ$`Fyx{rUS1NJcL2~kHpAMua0Vh6!J}sYv6RFdf`0$_9Jr=>
z`98o^+3ceF8i=cU3e7<JG7!u~3f~9J&8peKd^A74XI@jXRtN$Kg9-f>{>{Kyyibf_
z5P)|rG<x*tE$gX2;f?okJ|#>N_}e=>FCi<Ri0*`GGAw{b8a<fTp<i+Gt9On%9Q{(P
zm@&7z?~7x@AtIs=9U$)`;jZ3#8sz<xT>bOc+RCSC{)Biz;p1mk8xpf~w@dLOB=@FS
zgva9HZ>WWYB3f_<f^1scumb#0EW6CHz23J2dI?Cqu6&U~-MOaaVE@{?EZRXIS>biO
zk-Ss7ug13YxMVx|Y|*Xq{LhRyyWjA}w6%^{Qy$gr{KOpr=``O6!P`nf-*;V2DKIJU
z&cOn$R3sp^>;}OI)oNjjgNHsKYMSwvpDIfq0$spqoc^U6yjI)ZGT*f7lX)J$w*X+%
zR_v8)(%+Y10NK`8e){xj>Z&u<?ImMk18kA%=4O9oTC?N*wQW%9v>u9$AGOt3lP2*D
zBpN&hpueh6hutQY#i5xYFmt9YFp)D&KEstj^|&~oFR4V^Pgp=fE8*$Lg(pNxL;jE9
z*71*tqFfWcw}w(fj}Me2IjK@sd8G6s2X^ZD^=)%MfuU+60n`{qSnjxH*Vir=868bV
zZl9knLL>^?8`8Bn^+7iNY^U=Eac*)>fxBT)jJwEogvRbhnkBFM87&O7RzyDyzQe}4
z#NaRGkHvDuB<>x7m6CP;1p@W-+wE-kt#EM=rWJT0hAl66z0>bBWIMxh?z;vM$W+B&
zii?doyM;?{a!VVR8u`3jt1K$)HTxbdhZv$!nkj_Fo{xi-#w#yQ_1TBm($g;2#yCY@
z-{vA_0rz(z2=hMby$JGe5kE|f`2xbc?tF*s^MzjHd5-9Quh{JUm<g}@?wZ$~FIS8O
z_Btj7H7ii=oYp({$e$%{9}CMS#B$GUmIUXnJ;l{bGq><4mUJ~wCGYFy#=>E$xx&x(
zAY%_VWZI=bW>>9<{{wfWQI(HFss|OR)P;*Uzx#`dqL<4a=<5ky<e-|&Y2moTp5(j=
zB)J6>KMFjP33BzRys~^qrRNS%PvMsI_G_8?-{|~KoXIt^FX}dQ6(D@VxnCBw_!<Z(
zEbWb$B*dtRw%e;G3#snT8wyA#;RV-+<7tm2uFAc>$q1ctPw=jd>FX@w^(TUOJ?2la
zQB+pu4{%;C((g3jGoe)vl3CjZ#rd%zwVhJR3u~Gt8R=rTGWLhKphVY+Mk}$eR;T0b
zPXU9=I;s_Pbptqp=1@D01iaMxPC$UaVs9%XHj~-%9PPcxy`G^6g+oUCxrm-shx_^p
z&gvwP4`&Plw(s%ARSddR8G9mK6?zPqglBPFY~gr}Lf5hj{3s>^!tRt0*{6AEY}7cs
zDSJMj2377ZnnP`rSxS|Z<-f<{DGJ3)vHg(i)JIrEb#v8l7dk}za1iF@2iqt=eh08>
zUbsxl8y?b~rnNtPS3Cu!OMG+JGHkq$tPfJEN;{DNlk9V_7U3Y+M_99OWeJ9^yJyy>
zc<H-eUH}`h*X<(2K;$4UhGlK_EYbgC*u?=^ll4sH+xYqcAuZ+NlgM1e&V--RAf3G8
zGq+d4do(Nsc};6Wc|JQv<g=)uI=igGCow-8-BPmC(DBtO^7#Z_gCFH*G#xF}xK7X;
z2&C$GX_r0=mCDVe)uYUp#?U3(4Z<$bC(qLfy6e8f{N`|&Y|TzX{o;D*Zn1QE+00sg
zVyqQ`spd3jc9i6l3TDLg^Wt2RS-p7>pnpjIfv(~CD=SJ4KS+bC;hR1B&h^Yrx<$Wc
zDIxK#LU^L+`O!N6T7UXWisDAEie2niT!9I4+yE)ubEpTKo?OC*z1rX+Z!RMHig3Kv
zBTlNDxnoTN&pNve7T5DGnj|?C7j)X$ZkjU49-nhvy8v)~qMa)~{?b;%>ry-tTOEF=
zC&)8pD*KoE3lTfR42)}Ki3>huhGn-H86R}tn<FIewTUd)>1C*@cU|lNWA~0pu*m9T
zwB3l54AL=Ae`D3ccM1=gT9!7DdcEHyBSpNd#tUj94_mZGRW1<k+AS~Mj@q%IZ<<MB
z)Cj8e+RZ<X{6UqHH^zgph#25XGT5zLcUoGJDxD#mMSu5x?YOdN#J{&zoxrvdQ3NOO
zZ^G<P$W{igum3<K)V%3l0?Y_b0|oUx)ZbnTbiO}bYXC(m7IE>WZpMbjN-sNB{h1%$
zem)1sj>7Jacff~^ZB-4Z@%yz30RD*Y4axxY)m~HBQj0z)W&eUXC@LWKqN{zeQSWY#
zB(<@k9BTGPe1SE3b0aXLa_1+16o#e!B9WCrqms<_?t6GF_i@=ZACD|Hz1}7>-KGX+
zUAOk1*;({EG<LYx#&gWu?Z>v3_WE~zyhvk}JZsV@w|M_kFCc0Qe_C&GQqbas=DkH<
z_O!F&!N=O8tp+oig%~Hg^1w4JV6{x*4=G2I){~}ssj9l)znGC=*g8H_70@WRo*tM!
zE^(blcoZ_zc)?|eF(o62S0&*&vsp#VUaK#Cv9H=0xq6H=;XTb7!VP3qc{jUfQZP2w
z5OoFjH?}K-_u?^q+~kJANWy7QB&O6Ic65sEYc^L&ACP-Vr7GTX__e^Ac3@BtvS8Wp
zw7hAdZ>mR{!SqS`1+1&su9*q)Qk5z;U)hO<4Qm}!jR4rEL@A4sfK5HkK3>?k+BOd0
z(DT0NQzY{}XhK}X##87?6IZ=)CpC!MbzHBn`IxFW>!N>>peBC-uBNG}X&2cby7^I&
zZkeNtlsas&S4y6Urr#n1V^Lz?;Unlhy*gHD=+h%unR0sOjdpSX!!lklEvK0M1Y@su
zuH<66q^Yu!aLcy?T+vBL^-AmIGf52-A@wHp<s#Vx#Lzr!q5-vNxR}>@dBsYbUtrm#
zk+vMQJ)b1<_-x|)w_B0L<f9Xh7K)qC04k9`@oHs7h52-&r)A<o#NFoMx*0TF3{*y3
z=><?aehCdOeL4Ai8}*jo2Q!>6pP$Z;>*SXrl;Wcfr!!kzv~}=Wk~q};{UTkP-$n)d
zW{wfK8sGbRh7<Hq<?91vnqHz6tsU-;U=EJ_XTwF59dRGm>!F;IV<UFouYzR!OGf;s
z`&L%3@JP^{58hv0KvQ3KA-o*<w)gYt!e+<G8%?eCqZwOd^iA>g#{+452ZVmD1H%zm
z)lbXUo@=VT_{CcM>&IS~i&(1$j^8d_I=pPXUx0h%#ykI5ARJZ6Y@@F~aQdJJs&Y_c
z88lFA<&b*R1yh4U%G85M_J(3JO$zlI+-$Und0~K8;wPvFTW>qRp`A639x<88?K%Jj
zV`zNTki`oz!#=6zbBdw0-06`8<03p8T(rovRXQwXz?!vo|2Ehraev_A)rNk!T9c;U
zAX*>jage{0gwZgeEwB2D8TKDK7v#8QOy~OW{K%nxU?qLmFhO$YgtT;|#34l=lN54K
zFb++`3mhMY5EH&!W9KFB5rA;ioESKfW_ny=_OHloRN$x)#5BuOCEYqUF!7iAJS=P>
z^IOOLU(Ou$8SC7wT1y!yD1@Z|KKbpB*d%U0ik>dNAsD5^5yZ~5%(u7c%lLTi_$U_u
zfBhcZtz_W+i|fb_HVHMC&{b`Y>+q)FVmkE<U5KoAqBEo-1!(#aSl`fxhRo#W=hui{
zpJO^V;BKw~-@b<`>qWjL6aU)L-()w2qBWTuM`}0p%#(+W!qx?KU;XQO{mJ70_y1kI
zWNle|j;!T!_6DR4-$1p40W>Hs(kLc$vpxfg4oUWb4P5IbwKd(6QOlY=1G%cMx6?oa
zUkG!elF0W(WCY;PzYmHjSwxEO-_`1~&j{dNntHS_J-pMKGwxpRcITYb$}l}*3tlb-
z#`zjgx!uh!bJL!ij*K_BWF%*yD9ug}_R}K~_L)%${qi-}ZNxF~Ws|V|6w2QinEwfw
zMDsuL_uRjQjYmj|WD+#}9H!GAJMw_1+EAU7h2;yE@G;;fQ?#_S4CitidkX2EfCzki
zguOXlVLx8gZX|7NY#d6sYX}57m|0lb0hoL;o-ozLo=9e}Czad1$rpoG^CVJfaJ^(d
zgP7Xr9|y_E3Jt|auB%cP0vvB^oOE`QMaMG68B#zCi^{$w@jUqMteIFV*P-Lf#iBf8
zGjNnpa%{lNtYXWdG_iZ1knWvSZ!iJ5?IZ-G08`0>;4**tYRgx9{q%-^_>MFn3X6(T
zp(QJv5)z2Cx7KnQ^H}6;YOyCLC-EfLW-qn0wB+XDQE2=wZUl?!edT%D4G$;mQo6r<
z#P8qnKev*^F2!KV|NS1}KYX9eC7GXEf8AOCC%*X04n*EyAT1wrqY3-VZ~pW9aG16!
zf3tZ1>6-;uULg$|wHGCp`JZq4pI-f^FOPLKd6V+el`Aouo13gO4|M;-f&a}dHPlF1
zk02W3A*pz@5mbUo=dpHqc{v%)>dT4Z($e@(pB^UiTSeGU)|FeZeYgH+7Z)wR5D-Q*
z*{EM>src~W!&Ew|sQfj4tM1tAoI2mYiF}ktLiC>(^4H(G;a>zExULhZXH)>T=rN#_
z7#kPY?tc;69M$`N;oH;Jkaoaja;^+>@wE)aKfB$A_&;v92OvQ@0b!H{z)l!93Ebx8
z<W$a8Pj?&#)l+q>t4+b9zgfqB|FBTpSS?fY50hO}L9@X<l|jZkB}X|y$=$trY`4~@
zaw-z~5AU)9+-1o#sGY5?!P9FY|L9(%GIj{SF6;8n)h7)K68D*?b#hv`O%w8uwzt&c
z`Kd@ea5}>rKqHL6(1})F;6J+plnh*f66*c)+uMFnICM4l@TdXzMJPl3;GgV%6d6cd
zg|>upb8|aDJp%b?XlQ7=1)pBP8K>daKRWBZ?!cJae`<Oi9v(A;S%;EcyT&XiD7X!L
z9w1LtB$vzJ{J*Kl|Lglgl!5=fuwnK1aV!n!kOOT^(}=^>${uEZe*TYHOaE}iN3JoD
z^7<cB(a~|A4|$>B@c<3@ZF#5&`(8BnuV>`X8Pi{H)6D^#AnN+&_wV1cl4n}V4DvzO
zjr6OmAKj8Kr~Z>!`G0T9fOSS-im?ww?%mS^xhRXXvvckUU_rG2(IXK}3-|x~3V;5%
zh6E`vfIgWESp#5bZm{MH8JU?(?cLq+jM5>4l-aqtAvsAa`Mv+_vC^JD)>-ZYRA1{D
zH97e$ptzP%xn?+4=bROrkZ>$i`R1=H^dHtwD&fWxn*}__GE33y|M0TkT~i8!WiC@Z
zBbVljUc%e2xbo-k{_l;)zfSkJuy0oX<Y=6~G3gF?K9x)NNdMty0Z+;QkCqv{`2QcC
z@`&)CKDA0*uz`eV@&AZo|G}FB!hG=l#$)~SOESjJtyyve_V41ZKfmyoec&%8BZ2+T
zi~vKgJ+K1Fs%-)P@O@GYOzHn{H<4P`0EdOlos;@!27#1;^li`YPSSt+KLJBvb}a{-
z8UC5Iz7+hBv`*^z^SUK~7Nt9U0I9Rmv#-d0oy6T|gJHRMzr)C;WjUSYI6=K(QyY4!
z98M`DrAd;^tqHkBo&H?Au+!sgQN;5r^UDd>;Kx62C@kzaL4D0je|b><{>K1E=5tdj
zEG8}v0b`E0#JzT-zI{_5xO|zfsi>$ZCqG{Sadzqr;wV+@TW(X30yC0WMtKwV8?Q!W
zLuA=JiljadO6Mt#U*)F>it~e;a9p{Z>QKV0M#t9V=a)TDvySjnZXZ|e_ON^WX&{>A
z9^XR_=xVX6@61+KC{b*70lBK{!WAcIn3POvBp#DaLcHM3u+ceG5Y5JNG@riL)*VDb
zo6z51(yGeyK+2zlT1bVDk8gSR5;1XnUEMvA!`UDU(BRqz7JhhXAdWh)mC1bbZGy;y
zuz9hH9P3V7*Y=~L1&?{<GFOMU7;j~nGJ!nty;=5(dH0PT>Bt${pF?b1jA}|Lw+!<5
zejtie8BD+Pbeiv#L{@cY&_0U=YoMfO+Gu6@lBxU_erGpJT8}Y)3b)oDDfPch>3=v%
z8HSfY81l_wcr_GEkyd!_ShC-~9fd+!Q}UUIwMXYuk_l=!gP^6tyggb@Zdnv=c1#$P
zLE0m4wIf{i?Q2i^k|@Q<Cr-t*E$T9<&$IcLUeZlAzsPc_yButAF(v7!4-$Pa6DlPm
ze98T99|n)0^To^nEQBNHy0L>x<<@;nOH=S#8UUBKoB_O{4cZK*k8LH}n4wF;YE2Wm
zwzkZTR<D9t*c4<P1HLPa`MK0u+1&BZwn>}Mc5i%jLd(i;dJ_DoMDYIH-?wN|{O6YN
zLMdP)oNh{DDbLJ&`03LpX5K!7TQ%Vc#xW7`A5b{1aa-62ZlyvFlkcPN`<Ph4pY8Cq
zn;d0TI_R2u5yk(!s+Ii}-HbG8GUwx1c4p7okNNgfLNh6W#n9JF{<2O_C5iL2nHS01
z!M<bV*Ksd-nVAffYDyAlseR)dBv;73393n!FcT$nC6zl{4J*A=QcSqEQnwvw-+r<$
z$lhVVf+4;qO@{X-q2k1$V#%*ZL|Mt3sK4vY5A78eFVqD^aknJ%rV|r>rR{*@cL$mC
zb}W{MAMxZPR5sXOYVAkAdy37%#qvl=*u1?vr-*rRPDInpV!<upn{N|~^URi-R@9!z
zVCGtrTFO$Doos>~w?WO<B4pE5!4GB3Yw(265wzTb7W2a*x}EVO5>ZKo98lphufYu8
zXaV=Y_Whe=*V%KZ-AjvD7ArT34S&GYC-H6NTCdq1EswsHX1;w-!GlZBl6I#AuH57<
zMp|B2C*vZ4{%T}pZS-1yzrkMFqp597><3#!d>wBqv#pc~!JEjq?Ny_(dg~nfGn8FH
zO(`6aDM1kPRcSZll(o02|8gLgK3uV;>A0T!nZcqSr=jh(Zw#|XWDA*Kewm=}i)&>@
zZ1rcy50r+jhL_eI!{{Y7qpegby5nr)CrY_)$5wPXL?6#b5>2;7y}P}11P?0N+2c>A
zZ^~8TWT@F3nU6jmQrE1m9EBxWjvSoLT_=lq$JB{9QrH*$acxQ5t;!x!`B=gWWl0eE
zDn6*YNlueLL}9-nj_)|4GrNvqWX0%eU-_^zTW8eFDvvX}I17`g+~pd}j(F|x`Gm-s
zD5NsQ^F1r<zv*r==C0tV0z4C^?QJpmmVa7=pT2{nG$j70xUxHXcJ>K7JNsK8vRb;P
z-ay@RcWJqn<sMgNALX^;L>^_6x(2mo#BnMIy1!!fJHN$heWcPe>*uMy;b{#r9*)NA
zRq#kxDyX)SE5Aj1rC<E^CmO4fZvz|ghp&0NYaj&$rDSUx-3xkJ+Uz^);))!~(DA9H
zlj(z1a^}6Lf`vLFlIGhOo|C4>_B}CQ7H1e3%lr5iW}rzhYI;9ebgFlBL0SFUBhCv>
z1taxdv<DNS7lS=Qw;k#$mP7EfC#gobZRA&Zmh$M$oP-WbTLP%*y~md3Bs_Ko%9PRc
zk*@n=*PB9eC}uc@bUu_gExCVs+P`wx>XVGD!NVzS_@3^Iz5AnBs_nr@iWBa8Ja5{f
zi>?-iwaSmrBs3ugtXI^JD@S~%F4bV&X+u1Z4BPY8-E8HFKKdk9(H1n4=xaEGmZ>oI
zs_o|Wkk->|By3zZ;*9zr6qDDaK4Vu{XwjFbtE~O#C44N&Dr{GL5l2zvBe}|Qwd=^&
zaql#~9p{bk4_KG*P5j;lA8Z=Sjjw094vCDg4_6bxcRIWl3os*RJ0k7JUXH2K<ZO{K
zKms9stDthgw)e?bSu4njlWxpJDdu@jaIhDa$rOIV`sCB`R;H|!g->gSKk3;9Epb&l
zZ*nZ2P4rZY$%pwIjFWG-o7KV%^8XaD^_Jt>dcY_<&+Gi!h9(@9Gu5SKhlhs|um@eG
zT31w3?mYsn_=z>D-THU&pfpi6AtG}1_ukG;<su)G&>Z6P=g;4Oo~bHnCLIC@4OqVJ
zuO}X>nY~32smvP_vCi9T&O1m%bibIR3|Y0nll6WhF5;vW!g{H^p<?nf@uWR2JWlzs
zfgb@uE!Ml@CtUE|l)D22#)DkmM@5TC87+se%PqN+6rFeVNxt=*ZQ|S;ZyVc~e=$)~
z-dS9qYdCiBP=(Y~);ZwuY8QC)8BrRFbRtt7#fJ!(LiqH~;t3aq=br2*%@`T}GZq7V
zyy{rTX^uFtWfBjSvt~0EhXvo<GQ2Nq@0v$(w!gf-X&$&Ekl}!$)&2IvwfG|(a`rK2
zjN*!~k#$5LJ%P7jOG13A<&{A$zjaL%`7UZY??ITC8Zs&Gfj<Fxn}UXQSbfM~>p_e|
zrKCGlc#IHKIPAEoH1xF}+gseDv5n7;K*h1Px|J>(Z@3#-KTIJ!oxttJ3=zJ~Nv>6x
zM15y{q8>y_%|Q@ze<TmKjY#F8+SG$+vbH?B8eP{@=Y@TB&tU&>(Vew2gU-(9Mj08>
z_NGlLzn4M?!E3_HCC7QsHuor!y54xDP+iv_V^<b-cpEk?uHw--`|T1zWoaiwfb)CU
zahYJqxN&^k9We^S0B;?QLWhat*juU^1x`{=(+46v0!jDAU+L({>EtS6?%UugB7dN$
zKNl?aG9X_o_dK(Ak65<DT*<5d3Oqy#Y`j@exjVNyx;HB_I7D8-ym*mb>q?DdeEy*f
zr<m#M&pG>i$5(1RE2Kh#NAT$FqD<E<IpH=Q@k<Hii_9yxXt<73o<%&4Pw1pjHw?(T
z_BR8805wJpVRWvR3LL}c`T456-UGg2m!kG|GD^xNm5dJ`Gyq_0&K^3{(Lh4y%w2Nu
zQ$O1In~0_N-o(Lk3uZS_K@G4s<0f-l&F7P$dKZo3;9hu&8|`iHEMmop9`tW~l=Ldp
z`8ZLg4&jnbOuHaPq(kNTRh(?ZDf@cVI}Y|+d5Yc9Wli1r4<bDLe@yE(Sp?Dua{g%a
z7T|pPMy2k@b%Jok*x-OUgFB>;D)E=MKT`?BdyTr0KhKTn!2G~3tFIUSRKidxP*iq<
zNXN)`K2`H=ZR=8Ii;Z}MsKzI<xtz8>e9?e_hQV!v5tmN0^yUeiiR)!XJa!wt{UV5R
zB~^<!a7u(?-fA2#gO#UiYR4(fp%eHbl1|x%J~=qTyiH>)@viu>?49#`53h%t6Z=zC
zG7s-Xucz%Vb)L;WZ$EQH<dyAJMqc-^!cVl6kTk4m+Nrln7hH&<=8hhHB%O*l<xm{v
zYx5Z6J<!#<V^sAC=ZWoR7TyK4rNE#XXx3rlRj<BlmKmPj<5}U?h5xLwR32nNP^DXp
z&h68D$6?g@xsYsE@*!TNCLHhHzWC1bf)7|!Q#mu9Y+?_>5_u4F^LZ`rZqXwi1m60T
zGb6%AMZZ@Yj>nN?I>ud($`x%X+M3({fOWTaVk#91aTzDp7@SWQzP}q-sm@7-L+J!j
zw@X-C(QUtV2909gUuUCeMjc@~JI5JFPJJ6>zOsBXnLhoJ;_|s_rh~-kzQeMZYh?*b
zs${%6ee=}ihenHnIq$L`*RNJ@u#8?NO>^s_#9{JU`VjD+lBxd<4&Cf8_Mq8my(8c-
z4=Vq6X=&Ur^zPQ>hm)ZG+PFV%2Sx-oGI6*wl-bJ;d+wAn$cWd-RUrHZ2y9=|*X0Gv
zeNB4cnt*f;BvtK6veg$qcC1wQ+nvr^@Bah@6;d!3o`xz-KB0Kdo;pk;7D?5?a-LRI
z{BQ0YzTIiBT|f;6<>@8v^s9(3@~bB|KNallCGItZb+#Hm2pjk7<lIQM_c3s?e)(i-
zCZz(?T9yJn9>K&mL%>a_x_LM;XZzuaf=bm`S8cp}O%Q4I`>!2{+V3rkYo$7yKQF35
zIA0F1zH>nCF5)oShF^EfQ#KIRF_rhmx-QuI#NG47QktYynycRSZc}OlJlYE-P+8C^
zd5p)nOiY9x%*loY-2^Q7^MsWP`)$iyf+ZJ&8zyVSI4u<1Vo_x61_EX|PC|+hI*~<k
z_1+3RdE1YL@X_g^oO$;^(&}`}^g)#<ge*S`=$h+3$!{vz&=w14>FF3A8@E^)x3K(n
zQvAlUKxFEh@uL2#qN)#4g`DCCir9o}75r`JWKWC;xQe^qqiK(^%@y@rI~kQV!LhdO
zh`;wt8G4;@zlGiW*i=v+m;<7E6}itq#p7joIDaP}sFz8r0Wh`a+#BI@{&4@ds7$Qn
zX5acpVfll;YUvI;k}k_0IRZSL2BsqFpG;$znacB~RvTBMyF3aw4koFg$q<q^wp0FW
zNUYJbOs!NdpN6VZyucw{CjS0Zh<K#<pwHJ7JkAR`%5UOqcyBX*GWc}w%h-@XT%c$8
z3ZXUvY0xlkP@%_vP_Jx0W3V{c(+u6<+p8#<Pz{knPUkCYO|aZ%{>(*RJR#<*Z!0Xe
zF+Wz{?W~qnL?-6)!PTdw)IO{M4$vrhy8TrzqcJVI-8DK)UIrJR!3hO9bHvCqb>$_g
z_fG^j%gvkEtcTQv%X0GrV5tts%ObO{B!{PaAUnOQ!5%LudG!E!VXZLI1^Eb*)#WmP
zU3Ooq2C?^2_e0)5U!G=#W6VHir-ZKVV<kkjPc^snRD4cj-8V{O{$#utA&UBaYI!B&
zXn4Wf^}b;~B!Y#BRgIO-y)b*9o{K<ypd=?%T;Ea)P2|=9I0O}C^(TyjT=_WuZcXM6
zsG{>qAwc7{ZHbbKien&8Jpu4jE2*fwKH0Brj;o#a>Ks$gc^Z&;r-*9($=VyG0-|LO
z<PQBMoja=6R{n<z;8Cm-)>Vv!U==peo=k&E<zkc2z4C^BEfV5At_eHQs!t?D9uxJ?
zb3VVJb(HHoT7~1u6V=8)tO-w5?U~+(jm$&$w6(O?;6-B-^E#UuP6gak^HrSByQk^<
z;GvK`xXg$3Vy;n}__xF_-#DY?b_<bVy5-_MHc;Kwxk(2PanG}M5AAJ40WvUOpIA^j
zgBw{K5Q7j}|M)SQ=u}d=`(x=VZn!=EQ(Fepj4v?6ho3lXVy3XR(1TrKE~JlR&3QnP
z>;1`T{~BzmY1nQOoldfhwAHKfDT#F)XL<|sPP{PcyO_p|F67{-iO(|TNbG6SW*e}C
zx!Nju%i1{jm(aSQhH^VgLtiNCnLBLeMELERY`iTG?WzbApjP`vO-852V5;SK3HJ92
za{*Jg&s&t6oSdBVU{WWcs!BjnMdcdu^-WsZJ72z32Z$hV)=bc7#wQP<szc=3#9)O+
z7uD6Ww86=Fj*lB!mkb>eSH7D}#L1sL0(Y$Q@b;*g?pZxRMCHGhU=8asS&%wNT=f@5
z8rNd7oF?JR!zC;E1&&iMNA%L?rIf9G9G*RejqMjID<PjzU9+Zu-jG5LFP7bFiS+gO
zs(y2=in#HIN?vK)U9qTv%SnU2>p9WV<aP;Dr5we`=|w^R^f$eA<159Jl!wkw391(d
zy58haiz^2ni@dOLv63DP`D7BGXpwoG=9(#!>s_H<m^IALEiR4L>y#}+Y&~F~YOL;#
z>MX0%Ixmnlso$S8e>_Os@Y<t)kRV#Xf``-aXF|o%jMK14DGN~&`*7`{o$EoOXZxLs
z#rJKAtZQ(j!L$f;K$Ly#JAnr6y{CoDd+Sd7_{W$gk4U*c8uI_XjP|coF(d1|juR+W
z?u+pv56hPZ-GdH*dNR0ca3E4;z@H<iIoa~+J3)cwqsPKA#(J;Wk~74PpWbS%>0GCk
z<arAc59;1}j*<)Yy@z^sNApVUUQ1K{5o3_lj+#MBbwYL3iVFH0!--0$(kJ(kI@S~i
z&g%@4-pz=jfac6G;;FXagM7&LSgqgoX*0l3y5VDmz$^IBbc=8Zh<YwRt`1x+p8a}h
zglqtT@u^i79>Jr#ak3fy^K?UghWm}<hEau5Jj5%x{o74p%ew4Sk0dsDt{??uTXZgZ
zz~ac{)YvK|Y1y{jcf)TXCm{T#&gRpO7OgH`FIpRZt9SO%UpPlbL~6vTzasDVrIZ#{
zJfxGrTxjnZN4cZ5HhfzMWOm0}@P41){IARZ?|(^!o;Uk&YuT7GJ@ic=rHTDsSS%vR
zDJ`I$6PMW)2hv}H$Q`buB4q*SuqNV88_xG7&94aME5eIOfe%kCLhZX1+#{WNw2C`P
zDauNzpBE{U+4bebubE=qfa2~iZMU4hf~9Oo5OG&^M%0IAclBuYvxlm@o&9jP@1r=B
zU0?T@@)fnXN)7UKunFGcHQ#MYet}Xjql`d7AmAkt9iwJN&A!hg%B45Ej?ZiHTx@k@
zVKxj4`F>ND67+8|Ucx>Z)w=wwj-G4SJN+z4TEyccG~|+w*{j`BpHac)1l94j!xhV+
zJj=lQd)qcYK+FBz4kXGPt9m8RqvB<4o7+@C2x9R{C005f3EirI)0k#55z;2R-##EU
zIYFdt{}j2A(g0DULV)OVfdJ>uctwZfy4!}>!W|*kVTR9XZ8ZI}C)AhuiYu@dtAY;{
zY@WT2U*$3`?-segwn?crRm!|7{?&YYzyV5{;i&ubd7!LW2ubYhxA6<cQxwf33XAuq
zJQ6;`+QgDq*8Sv!BzG)RN4j5hs?tLiL_wl7&|H`=BQTd8UnefFAhRK0l@2E(BcCS_
zaud99$Iz@MFpG&9*`b6gLt%O`9_&+9vW1)+U6vj1wN#&FH}xDez4u<4&@Fq<SN5@1
zBx8+sC*dCEVdkw=^m_hd?Lo_S7356=tII*f7KwA-y9EPke@sRHjUYs-je_BgiTHs6
zKTVqRSIX#^m|M-K=pyTk?-8_OGT5Ymsnnw5n%$UIQE3iHa9)Lr2Rzv$ly@b^1%;TL
zXLDpPSA;b)`_Y{lx47f0H^j|Za*N{MNl06u%5}wVIUfF0%$pwL0QC#K{)l&sjJ$pQ
zE5WVIx9_XeG@{eM^kK4cUrxk;<+@coYU;F4c#nIgI1#J0cs|;F=|@^6@!OOh#17oe
zMcJpL#$35?yE?NaIB86ya?JrfVwc&8B~P->Lz$5JoiP1q(jM5;V%?d9Q;O4RoD(8A
z#zo&52|F*ZBz<@KIPbT+Z0BU{f9~33d)AEC$JVnpJY9X`4+*kVwK@Wh6}Ae;=R<`h
zwxbD8R>mx6Ho<hhJ5-Xz<C!tYujfS}=oGIiE{OwCp0YQQ&8D~t5q$cW2F{+RTz__x
zePa4_(AA_kCt|MT<JZ^9>b2`_eip}VGw-(c(kvu);&;W5ama)3{RptLSc9l5w4+rj
zC2!x;Gi@V`F>a&dcqEPP{G?TScWpniPkowIETJ^M#L34T*Tqo?NmZ5T^3mMYsk+5P
z?i-yvJ##^*O5Ez1uj9J6dp+AtO@{&XbPEz5u^U|O%kV5soklH=k|#3ASMU0v87lXe
zA0HiIbh8^OH04ypWg?nRzfbYr`L9{!|7|b!zQ6^fpffMZB9yN@e$pD!P~?T<#fAA@
zksgZzn4+sifDJy8*G#Udsj!5h_+Z+*Y#Os_jrcfzaLR7h?Wq?SD4pGA%%9VC*qYr?
z_%Kjfyc53sZGys=HOEsQDcSBQp&2wXJiSwO9yhR}N)~zX4HK`D2tDw6pp#K#sYIA<
zj@XPKgtwB94j=!#C1c{zeza@Y_pxF4_Ia--<P5`OY25I$4DZy2A(8uyeZpj!Zz1{J
z1W+kGFT1H^WaE8%13Psj*UQ%@T;Wt4U=@YC=`Wy_S|YEcLXzV8U?mMz&Zh@gn4P!p
z@t;@a*c!Sj@C4D8mTq|E91SVE3x3UvupZHAfr;E977Js2(y2CUNDx^}u3FSPaXjVc
z1{H+OiyY*QdS(_%Zs|S50`Bx>E%~DAuqB!zB_$T-@s42>M{?Rpq+O>LQB9z(;00}L
z);$X>p`f6~^_Sd5kV9pM_&(8~Dy>#^Cvnc>lvx78RL`Xnmr)ksWU1j<(w?(x+OhEp
zdf5kpwF86qi2kmxxPpTf?qb_QAiDCN>dCvfI2LVf?LFg9U?Arw7@Cd`3|zRAY_Rc>
z)+f}GrAqnD^}E+Kww5VIdB02yw+DuH$5sS7q-p6TqCf^`*SM#{`dPbjV_yPOT5l7N
z82=%X?p-P<n09R2JhJa#id?x*L}Li?My`9Ju8L8VM6oQI@O-fo62-ReO(GArh7@sM
zUnQ<{6<sg1zVR_`WQs>Dq1dH@9lh^d13Ae2D#+vA%rB`c>20zUqH^Bi(o9QTvFZ0V
z#b-3Y@TaHWp{DbhUN=5=Tr>1oa?mulIH?S$4c6NnC{v4n=$(#8_HTp`dCqjXZfqCY
z&8Fgw+w>7ezjx*}J|3Amt}6DMtsj5=O4Q2R)7s8BiLtz)ZgA!1)aYs7NX1DHbjY}9
zXu<eZ{pX5a!VrYT{2oad9^rVWzzWQ*+sb{Ip>2)cXUY5BH3Mapk;m(3Z!=^cZE${D
zanrHlj{cUo#s*Bb)N09YDz9|iJNj(RM}JE<eTIDIK~gzn?R27UrSgZ5hui(Ul6~k_
zOq*lOi}Xf|we1rL99(@N9n#EGRsGHHem@f;jiHvN2hLRafARYN#(2Bw1!NGAvkuBB
z=nr&t@8j&cjZ$ueyaY_&;RsVRGt~>Kj*g{2=jRo3;s_%8C9vK<aweOAk`P3yMt@T6
z%w{%Bc)W#1)%3`WA96ilWF!-0fMnwB#}#IhRWds-g>Z4!J=66!piXaQZw>t{r`+`+
zfGqwdk1Xei;!^G%wM~8LxnR9cniaAyUL|5T^d9)@#JB8oQ03ng7ijIO=W<QHRyK9B
z_eii#Js~|pVT1j;h^J<SN6h1&Yu0Y#PZhVw#F<-h6ylva-}b-Je?v!MlX@#torFMH
zP2gfkPI8SwKs-FqnfhK<!}20)qx`ElSphvI{#vDiYOX3vomFcVQAT~d_3AR_Jd!B)
zD~N<Q;R_yB?0ocpD&S$=_|PmfcRn1ss~oWpAKuI9p}2jiD()k||FK9m?|0fdxYK!0
zK3Qp&tS;6o|Kzx=vB8C$eDB!im`te5zaiwM_WCbtKcxbC+KwKr^+tdCr2n#y*5VhT
z7cwJk@fpW2hV6@ixiG74g*`Axh;oo-$gGuzPBD>|!>2t<|2o+-Zs?zrIANHw!}!0p
z_;38H_XU`!S$!xRqx^T{r2p!>W;EeGoH!0nA^BH~{!192;fd8o<NDg%-25BR9GgD}
zSxhs~{BEYZw-oD~J}5XOqyvn^a+$#PwBc#+CN((*Q*T9Ay1y*aA2)#N#adcgazP4?
zC}?ZP8To8|={7n(*x>QQteAl6hbDLZPqI81^zr#16Bs_y1R}x=Ki2CmrjY+~!vT&=
zo1u~?4*+$med#{Hk;Q`iJFh$L?5M{tJ^&kk*yh0D8<<+6cC2futv7V&Nf8+^a!Qwg
zfo0QyriIJ?^1c7-#{fsRyFeKy#z6y{c*+93yOi6MnfYl-Ws2<P-6#GjuH7PEf4mW%
zj`G}D`2N>fyHq^}0909TSmEyDu^hJm;6#9jU{g(E=H=xDAnzG~Jcn#Zc>FQry+El9
zc%&zR5^!pK@awSD{b63`-!GZ9Y5=d<*LUCD#>}9Ug0`_^=hZ%VVgt)v>s|&*z>!uC
z*h^TzpbN*Z&KeAsg9&VMq)Wc?C45b$Tennex3^u`xw%UZqShvAN8pjPOlX$T&!1%~
zsqn!Cn0~#$fA{JG)VQPGzI|FMg}pra#nA-JLH`yP)N6rL+O%(w$Y=4&RU9pgOcVDO
zojB!SWMs_s++Q8r1|oQeD-R8Y$u6zSjdbMvsWbF{HvHaYlyFaV7a)3BA_wDtV4Tf;
zJe9cg)jln+X)vHle89xSWaLd%x*RQkKIja@Hw{6^O1(}qYm8LLNTk`LCk49U*!MdI
z?np=&e~qMfD!s+URjk-1l()m4mqOOdr-m?F=~wsS`YR;GfcptPqmHg_XN<Z8J3u>o
z2L&zf5W>wZEyst1yh%t%5@7pdZTBlTq0yj7*T<5byu&4vp1KO(K>R?k`YobvJJ7l#
z0_OWxZ@=own!*L!*rFQ<@jBHU*NZUz)_*&&XLJ%_X3j9_A}{b}Y#83(a5%<n_&F_8
zrJx)o_Xf38k4?_dx?loNXb)7CI^0JfY~W<5nM^&>(P0Ig&BXwtFP59WK?1w$dwR5(
zoCBRa_E;TdJQo!30n-ZW3;xTn<Ndgz(gr1f?VcTK1~UWGumgxEdMU4Ie2N<V5d$t!
zL{3<s%n94=livo4!Xi^WK=eZd$SbBel+XYQ*@c`vU1LvKW557ZBBUn}rC}1orXCLv
z2?noTy`oxm+8AW`EVf?P%0*P-z|*uF-4y=Ud0OjSDPLd2A0SlKWTBT58`k+K{!8#G
z4~8F-r&}bHK!^LWwsyO|RVvGQJh{{Oa3bRVw!-mX=1v`;oLq+8$b1lYssz{(2x@5V
zJ<AwPq^(YmI0JHdVcc(vA0&G8Eh?Z_A9kKgq91tn0I5m_aL+jar{#C5C2_JTtyQ)W
zD#7o<6I8MXXg+4#M&?WX4&XB)p+fG6?tnEt##^Rhrmh^nKZmG$Sm#tK;8eFZ3It_9
z1P*&0N1P@mWU-0XJYaXr=4XRQ;sM84&wavL>>F#RN!K4?@2`dqdcYBpKnMtja9sc9
z)Um*AO?vbO5DQvgkXuQre?&icUc?Rn2~D$`&sR#TLt3lJI%mtYQ$9X9dHGJ>HX1X!
zkNEiBbnI~Y-ec-s4C&O2FMJI^@#BHMYm)y%BCf#;tzTb>U3wHb#C!WMHOpSUi$wkd
zJWp&%O&M~a8`EmFZ>WWn8t{0!fk7<3`F+)1?u&0}Mi1kzerWUJb<tu8X-~i*O67CI
z)Q@0D{0-1j?gZ5{9_bK5&}bNxKzErnWA^z?xZUZ^B+2`PynWX(22e>J=MmWP*aV^{
zdes94O)nGKagQ7_cIRWNNf224y^9JUX4wR~I3kpX0=N6PO?<XqK(70(;o{<EQsPyk
zTJ4YDZ+UMtS@G@I^n%v;={a=nSYRLnk7m3jyvb|tTqtBr#1Ra+ZUefhWT!Fu=d%Hp
ziC}UgH`$So@^Y>H*pIF}#4CxEVW;sGJ{f~udLoI#S?sY7PlHgx`|d`t3%-DQKT$|L
z9RjAKy6RU~^lI!AefGz!q7xF>&h_pSBPE{9fX$?`{}AbxUj~ptnyjix=3fWP!F*dP
z=1~u|LLXsRQp*-VO1lMKrS5o*q6Xn1UXm<t)KM?~uO4fiW3yM9L~yC!dw<miJu*1>
z&DeX5<=ltv7(IkqTRtGtI60m<<6apq;fE!orPH-h{BdCLzi;s#;QM?Q(rd*?B5|1E
zss_$MODtN&6!@p^%BZ<WN#o%%6Q{JMQT(&5NWW_stb%wj+MdLdxUjI0WOW+|EaajR
z#I-avRWx!^-}g$?2+r^TKikLCw#?4}TX=8Ta5*#{Ag>o6(^??9gO>|P!}Lf9k$>4s
zf0*gsYFvq<pX7ZB@gM|!=hWv1tcVL3K^LPyfI}P34ch?-`eZ3dt5EH8WN@4H1elLT
zx^(QHju?BZ3Osofbak)g@NjGH3-Pl-`_O&iMZsqqFWJ&Qknnf%0)nv@E~8IF6D25&
zo&^|zVXN*_GzVL%TXbUN`bg-CXb5DXC!Gg~8f2ZUIr;Ic0&G{!Nb3RM^P4>Sir61u
zP=xz{n_=~y11H2WiCFUF8F_I2*@X}0?PPr!N^twBhM}sli2wvX)oTS((~Qhr>0bhY
zj5XZd`mh^BHwNd!)_CrXTMhHb5Z}D}(VS~=kvdt}sRk;z1W6Z80WkVZ<?HaycDD4@
z`&as;<i$fF!2VhtfvLKmfWezz)vNJXIk7?W#SPk>SDdAH-7)Wb{BH0VbDe{|Jazc&
zNAFq{nCEG6>I@g_o5@u+Zx%jCMK^w_b&EYhcXvXQrDRO5*8INKonc6T3Ua~Z!fzne
ztSP{~GRWLn_wa7^Ri5HTZ$g?|j13HIh1-D+yt%PjYpGJRFGfX`pSdB3bj=q~X@6+{
zoIkgOeJu6Lo6?GiYxfS7M*hs^NO6dlDiw`B1me(;lb4qa#pGh{)K32J&gU|!>*dlF
z0P3;@#l^*y&4N@^SLB#4l?%pF{yG;FFiidd`>MMPtR~aM(dT%rmPJg=Fjp;=L!Qnv
z8^EVtmeRZ*yRp}qBnDl#-^QWy{P|Y&L6~URvHmxU1c;865i&z>rjnHCa3HhCcXupY
z%q$B}WtnV<w!kg^h%9XMt%P9LU;XwUfy+4L3784&uHB!y7`k7Jbbsi&*j>WU1F4V?
zI&c&Dd3gBTb3RU2rjlei`pb;(amh^R&xX~=CZCGoNT4GuI%gXskv)=0vWm^_@hod!
ze79E`Lzn3~n0a>ZuGg+L`4iALaKO4<4N2gxptoPCfj6R;i`J1s1tS!%^V!bTPP_V%
zK+afDS)`K2HF**X@7EZU;mO5gks!JZ<tui058){OXyF+jt#e`J%FpEz*kgWYn0a6j
ztKm4ir9JGEJ+_nhdmA$|W5pZ#VVEyk2bHAa3c5ADR=3cys+fl;ATK`ecXpiaxkMo^
zX0XJy!$Mk~1#@{v^4l=uQdPZ_oLmTMThw5(#a}B|#km{S#oKmo50G;vH*k+-1%!C?
z%}2P`(_!$M5N_;NFq`(SuGq8FgXYXmo(b6mYtT<;P6H9}e(nqurZHXXWHMG|15g^{
z`LI>|m4>O&cjNMl?-PmL6>Z@t>9r}y3GS`s6g(m-W*o-#b$IL1uUk3)dL1CH$W~96
z$PDmqNGW&fv%1|NPyzb<e4g7sEpeH~IYsN*MlL)&sEh(3PEXT>)0FRxOfjd%EjdrX
z2*JY3+jn2L&q@Z}Z^Z%ph9%|VIhg5HcsM3vX!=d61p?419IyrL;BxhzWmGcXmyq4o
zMaHdNk-TzvPxQCpXYad@>8HDFl)R=gsg4OoE{dr_4j(4mMJ%BVKep#PkuKsuXeRT>
zvRUF|O}NDC5&ThnnrHqfz(9D%S8U+@lsrENnv*I!zmq}t@#DjZwV~XAFm#17%xt+{
zP*3w<W3;^04a&n)Lb4_HaEnN8P~>Xx=+$*X*Z&T*|K%|<bfnG<AtprEA=`TCPN<!*
zmLPoL!Rq$o$)1PHS8f8G5#hyQ%!?N<x<%X!6HGvC(~2bP2booOWn6GDP9IMmoy#}I
z%!?5Ko!RXSFY4D{PzJp)2}bm+hNQp2F2yqNo;F`^)AYZSDr<_2o&9i$;LYn>q~*L^
z`@ci%2q-eJvdXP8G)6^{F6zNmsZXly;-zOQTo=_U2cx)!vz3WdQ$@8S#MbYXCn(c_
zDczK3p9nHLsR74NPxtqR*Oiud);4`z7eqrxNA-4m`xV)6?`L~^W`T$n&&S9R>V|)7
zxxN$#J3bXzsL`?V`85Q?qUinj5YumFY@7y6c=a^)UU;H`z|HdNR~wb2u=W1IOf!^b
zAG)8%DuP;AEkb->Z_Kqv99bhFc1~9Q6WHH;{;CZM)ivUEp8Ro#lD+BZqncqFD(bww
z^=D>Q%S^}aFy{m8deCL(cCj$}eOqQqeinQkVTvM>7OS2#hh@;%Ejsr$xurAj{D8)w
zD&{M-Q!L;nNb)k1?C9wD2^gvQ%YYEN!MSdaYZ&)PaX=WAimrhH$J@7W`JR0A{~B`T
zc{BG^F(us|W4#0+33E&)ap}$w;mf3eM+yGJ_#5aa6SaRdkpU}3(&@SB-f*leu`JPF
zeIi2}!|-`H)`IKTwKCv-25u^u$JsXb0fhaNN#79DYKAz5%)%}n#C{!g-m85-tr$-i
zGI}2Fc4ncMfq?mW+#xiDM@)lq8}V0$@2*cxlzKJ6%{m%AaO%EyZ;$pe26WZFpPR5X
zY16aIDk&|EYa4QsqIc_kP;#H6_4l=lkLzSNL3-+H3$6JCRNzI|&ZC&+^^T>ybnf#s
z{U=b2jsd8~252Js$CvO_p#zt8!y0?uH8hJAq+zTUh3y5K#Q+|Yc7QXUg->kk1L0j2
zxWtEHze}6C=i<8jxe-Msb>Jk{jbx6|I5jM>!pA)6L5^$$_$4e~F4+v^imVy1^YB1x
z1U1U5!|@o%f=9;-Ux)ru+>z?Uy>Z9D91l!g!~i|$x^928MH^7~oVGaw-aN(2?r}Uf
z#5SZ41Yq|!{bv~WMA`t4p@Z>0*n8buK&L)Aq4eXdp#VIq$u#6RJZ*o^_DnH`^@z?=
zr*IU6D9cs&{ZIVZADa!VdXBdVLJ|90Ye%4&O<v`$cpY|0Z>Hgg>djZB|0dwNh_mW1
zO?1r-f9QO$wo5H&mV=WM)BU)T&6c$V48`{mhUcYu749w%b>5dA^lv&(!$j1A&Q>!6
z0{1Iq<Z0bwCjmF>LO>Ju_hS8P=fsfbk=b0ae&tt*;+BJRqX`nmr|9#d4~QoJ3){x0
z2%LBNIm=R}KIPs~uBG`Th@AOB;yATvGza3hc>v0b1H!F?T(WLkUnr7~#!{z7-a7zI
zq6%m`5ZC+(n7v{Fi=48LPvd~vUww8%n!hja0Cxh!BhkofDTg&oEnOT{c?l-;6n|)m
zp8_`Bmn7R(nf?M*NUnZ=D;PzF+^>u}S4ajYp6JP-HtnuwH<<mD1@UBO9MwG$pTlST
z5qLPZ<+|Oy4R}|^P2vYx-t8T=zvDIQ5~OqO;$1+m&Q<woDS_hX00!jbLOr3YJU&8D
zM7RH%-cy@}3*}l`TF8FZaY%xW2>9OE_ba?Tl&OUDO#!-Ko5_y$Fn!wL8e{Ir6Gb{+
zS=-{XiIbsDO|3P|GvRvzMw)UxQQ1$M-{!~qYBoBQ*dHy?vQKIpmuxq%5kyyslSJ3O
z?jswp3wx{^+un`rWCkFX?B^@v4O7tSV42Sf>97bv!?7!paTSes$b_F1XGct%{6McW
z&WpLSK*wmtgbu`40?Ie|1d(D^O)*dLf8*q(k}r>vxC=W?ue#I0HjBS>-$0#@{{p{d
zF;-!*Q2*Zd_%u64jgMyrG2WBv@F?g2C`1a?gSj!;$bnf&*wGExr4kGld&B4Lb0>H-
z(tK(`mz$TD7j9`km;krd$VnT4xanIVH8K|ak5JVUBOB|rfO<dXV*ga`813HsW<0v(
za(>IMyF5s)O;GKrgKNtF5?x;i;AXxHWTnq1ntqO&iSr7D(zt}7I%`q<;oy{O7<k)Q
zdQXDw+;RWP(nM`p3TQ|!%%=re3ZF+?sjNh|2N!RkY2?H4ZY_g10S)@uc6^|Lh{J7b
z0=a=Mg|Bama<Q?=gTi6sIMx_Ix{!3a(ymQp$&-ix+%PghZtqI*okS;wMMtEBxeTF(
zR`bPTi>U_pO!j;1L|2$McxC(Z(wVSH;2ME};*UNN(e`=I%&DFs2Gq&}NsAgA@LmLW
zymO_0+aeEf47{Gzk5=x;$CwXN9w<dN5$}NZq73U^{1%1et)NK6L$B9jgO_D!xSTO^
zN*nE!=H~<L=*MSv11no^6`Q(@+)lSB&CFLlBRjqgtjE&Lkz5yte){OV(12b)!#{Rg
z07P56RAEHF8h8-x26&L8fZY~JXiABMnZl=xw?`chU?YV74L%iO$(d8~m0ZgR&eFP1
zjxN)C)O$%Udrub-m92%=A7<IoeVESECX}>0w49%Pd}AGk{%|h3OmUtGjGqDJlQ<A=
zsh?Qr8v)4$0-3JP&K>c=uJ54I7Ng8v|M~vO{#pjfjv&K;I2&}TR&wGmcB^*_cXj@y
zd+vUJ3!-wEK?-uzGUIv`CX~UegXUu5=N~xe#jC}JfwIFx0qU#`3KjQfw9@HN)Xw!8
zD@H*5oMHrWq&<m*BalkY$7-p)1=UJ#<PNAdMT3;4s@t}~i+d_>ZahbV-*1g7>=0NQ
z1t9Pas~d5RU+5m8EKcQkFidt!aNX6y$_g%AV2IT~7|z|7NsrT1j%L^dPy{|9boll<
ze8WRO51_dc?Yx2ePIh|(=4;ylrT<K^@yP~f_A@i-#4BGeQ~BsHk$EfGtXt}D_9iYE
z#gzIQ0?1U#PW-%u;`_M1yP^*MG6yu)<AR;v)uD8Aafx>Y_;gr}wq99Z$htx6+SXvg
zEWoE09kMZ3Rpzy_QGprhQKdg1Au^zG?QYF2XuK=`X|7noVueJm!2R?xXR8^I4<!g!
zjqVaDYY*v36T%pHsT~{@{1TYC(Oo<acy|n0LH93SI&X4((acF*oc8#dxV%#Y=pQ^l
zSg)I90kn?SJi2pJz8RzQ*xRbAoB+e<5zsYTx4U2_D=RA{&C14>Z1JYL()a540V7l@
z=+N!e%a?CK2|cM<jOtx}BCWe|z%_`mLIQ6^nRJ2+aW<-7nSg)*fS2SwyH||^MWgI8
z{+e?Ls7vW4r;36ZyPTZ%K-??mTs8}d);n@`=tm8M6%svRV8YR)e{hiztx{8-*;5DR
zf-EBjwC|k2YzAj;dPzW%>N7H=0L3Ev`bSlu#_lj+#o6FiWf?WdQ;$A>%FvXWQA?Wz
zxyNQ^B^g4Tq>nlQ#j802Gcmc>NG+nBFrM1%mF6l=5cE~}X4uVZ*SM|{h^zP!-Q3l6
z6PX`!nps(;@;I4c_KYlG)!==)iPLVf7gOofdo|%+O9-`u_c$oniM5)NsrF{!-6Ot#
zq8?rOle3^;+Zb<ry=a3fIR9c)csiysb|e3diyBQuZFTK_i-TR-0L*v!FXsUiPEr9^
z5yf)Qe(nuOpuS0oKB$_S_hrf=sWh<-_UNx983=4v2nOCx_A*BQ@|@4PeJFaZuz;}1
zv;#S)-U}5y5OBw$D$eH=7pO)Z`5t}`&7~W*_9L>l&li9qh~A7D9P1_3UsZ%ei`>4g
zu-gK0rDGD}^GTS3XzOrY|B`0%`tYK+=tu!2fqaTjC86jxU*4VE9*y!Sq{nmzeX0jM
zQ(3SKw(-Dwpwa0RZDA$G$1+tA3Y=6$+?z+8z<D)+so9du+a@*L-s(kUWONqs#zNG4
zm=6dR1ZwGz-xlFXER-eLMcD4S4hvI^|C;*!n(zF{O9T+#mXiC7=hy)lb!7)aY>##a
z)TvSJ+<sVM!rayI57W4Kn?mow2lCRG%a>Y_`(Js|;$EfJN8h#PvGQw4Is#)lsOWD)
zar67Ro;+iSzA@s+oyl7cVN2q5HR2N50<M|Y=TSBjdpD@AZ|uHYku*3-9axWQ_A1qn
z7@OWdm>yr;g%Xedn@-5T60|?xa0CaKGZcr)jf|%WA!GENfM9(EkmvRC>NiUF$J?@D
z$h4#*eDgZ4qo1iP<MUu2Kl945a7l5n8Itt6*iLpsW^wnkb(Xhlsp}s<&-UJh>zjHF
z;fXI-bTs(5O0)2l>q^6OK%{_ou+lv&VU@*}{dWg@&ZFGk0MIBbUbK7-(xQhCA9hWj
zocK^m`Zf;m->dVGT>;5rWf_<{)?axo7Ua>Qgs@AT4}LI*)I>gLVPu6refIwm_tsH$
zbjkW~Z~_FE1eXvTf+V<GaCZwKxVu9L?(Xgu<ls(%ySoOrb8y$MGr#-V%sX@E{`IZZ
zi`9p7dUyAhs@hdgJ!R7H9CJ!Qq?)bT@xh+}_eQ0txa55Cu!5QX&A91^)?+KSafNf;
zg9_5j%<%W!L$#DymuF_?ng4DX{N2(3{wE;*3saK8jg7A<#p?8p3P?OC2ZClS0DWw6
zaWNVCI6~34kE#7OF9~t=8QQf8`WkOa6Z4M3CWkPG$uP#>Xyp)>yu#MfT#|af!<b4j
z-|jJyLuOt=fcDh_Vqa&{LHMuX+<)^VK%doA3s~0ZaA!8;W|jjPzXOAV53;PlLh9(?
z8H6%__DNLK-}MHvG)xd$_bsNuEBD*1$@AbK7JPidBn~h;=BzW?Uh`^kg#5}tW}2Hl
zof}{CFYTbVc<$+(RxQI6^y6PwgAXHVCBT`&XoI5-{Wq2!AU=eF;IrG|B;bQ4zdZ$*
z-nOepxCX(%CNl;gw3^jpU!eE-I?bOd&{b6P*pr*nATWSz|JwK@@eMlY$~uA>qOwJ)
z2x6`8Hlmy-NXyT3m*o+9@AViqf5~nmZ&L&tb27FHI;>l^{ToH|A7Kg2N~A8%8EN*;
zo<1${{4P459|uT=oknt=To=l~F`6MPYA$tJ*VP40k~7}-ey=D2OZl?pSi;s=3<U`(
z!S4swFWadPNMxDssCGqNCEBrw4`xOD+dlaF5gS7S2pufoL;{NRvZ&4D;~gs{0qBu*
zA*9{QYK1Q3v}`D7k&=gT+G3|7L+y!FW~tio(3{fn9Oc*AC&zT_o3kf*XJ1rKpBQB`
zdOF6HH&R+VaL8e7KAdj*e~|(Sh*21zS8f1X$%w*X)8vP4sVp|**!h|7?O)#^r+K>4
z@yuh?l3DvZZ;M!#78lR3hrc{;nZ25H<Oef`W;QC$v^_;t(^ta_0Z!U?=yrpV){D!n
zE3MGj4`Gn$`P%Uq`=)^G|3uF9&)wrd`#&g=X$_^(k&#1XyzieERX+mG=51IYbiy_G
zvL0gb5J`-iN)HH9O8Pev1E<w_E{kr(bIAwo_H?y}5%zTxQ?KCvD)h3RLto-yF9V!?
zY5;f68Ia2d;7-`}9h%6;03;|Dm86%K*CeW$;L*>Iqt0n+-_*yyDsW)`wT<7TXVceb
zQmoGY&3*6KsIvqET?gCEE9K0OmVj9RG5^T(H+Jvew}UP~iVl@vgenru_s_lXA15y&
z=}$F)wxOM#?Qgw-|A=?|?H>VBfFlAvN950-lmBM29McJq=IG(#|EmP}cQ5vjt^(c;
zpj%SN`ByXRKfm5J4k`LL6LR?fu~X241WZWNcYXiKOY+-Chc`agU7I6pI@^Cc9R*4e
z!F{8a@wO>kh_5hGX~n$%599djb!}k#f_CNQ|4r1eoIL6!$)XCQ|H0oH5rB`Kg&ba5
zRQ&&V(_Lz400E?M2z&Oo&HgrH|7DP~u#f<V`*Ul2rGIdA{?`}(KWO~_U-#3LAZ4o&
z<8yHc^>~mjAguMa_02uxZ5leiTQ8=U2r9FxWa4g){H{@rG`zEZ;a=~Q8M-a$-;Usc
z_%9vsuRW7OhrX}`!-)zE<!%V{$;r6gvSVS2l>15dsNs*VD$Nfpy^$p3g=uzQl6!~Q
z`I-FvDPN52Z6lw4-psO_+$q$fzy~**7&e?kRA_z(l0UW3ipxG}Y5G2BRoNf41`a-_
z0#m(vN6x--oraB<SofJD!ji%#sR+Muf5_u`HMAzXRq@l4OwxOD;oHL3DH<*9AN@CR
zT=^0^-3t3wd~Z`OUCr4CtA-$!Y?BfE;2Q+Fn2Zx<U94%FRqoYC$pO03mIW<?-2AIN
z-Y4Rko{PH6m!|H-^v`{-Vor%TtJWr|wA@{K{yA*;uiem8Bk+I$uX9@k)7&sMrOXMg
z?8FBHye5nlZMSB=o^!zhYFLO!NHJ@jcgcebmHJw(P=*FQC~*W<*S_{Qz+T3u<>@gJ
zNSJcFkW2_9zKxx{JZxU=uO9URThxnDGB5}#Dq;fuYU!B@YmQDWMa47#95a;WG@j!~
zM2>E|)bL{@Ehct@07XPvq9`HO`0#wlTczQ%C7NkeWgh*9wrgfd)O(rWp}A&}fXj-g
zc!Camo`Od1-f)6-ZE+zXht|y0?TA&)UZ7fq9wiso1WLW@nN#CtOyC3R!}Ug@MrNr?
zaZyoRtX$i$b>_&N%P0=#8$^X2uSo+50Bm{^E3V}e^xWuaeRwfVpsTo(b+hO>g|xf$
zXZ3niku)O>5%H-9&kz)3%UFS~gq7IKdw2OG1atPo4@A73NFr&ZfWZPw{>bmX14XQo
zd~qV|cI1C9go&8`Y$6pp1d$pVm%iBvk8Zzdzq}Q)(0phNW2h2GPFh6z0WVG$(+$y2
zSqLeQ%HznD>L{K2oj+{sG5;uQqcu~z`;M&9Hvi6j@D7xc?=!?N|HV-w1C36;z-et|
zWhE50u3rcj-Q3)~?56xx!2LBk5s}bQyLaZ&0-hdyAppne-+%A>)q{rgyH;uQc8UV7
zP}e~@f#F1fQlU+mr#&SApi!0lfLJ&%U<Q<I^=6x`EVE17Ibw)fdEsh1>iJnqq(JY!
zTF9bDNTlv*h(4>77!fG3ZnGB@MEVKDK%mzS1OFNTbrs_he)=TT-<|K-8s_FYHPMhA
zV6!65l5V2clpiz#4U1%fdF^nadRl>1dl~#9w>+Bc{bF4L(h{2HVDfh^foHJ))sbb1
zVWNi=g8Ml$K3=rDyBn9aQe5OE;unEVL=iD~2|4@QsFu#aD+_hwnv%q4fojC8eWcVw
z3^sYIP77#*-{7VB*F+E^xRgFg<6P`13a(_-D%<r4s^}f}x*sNgRtcIT{=ws75RI;n
z?{v99FFdz(*)V!mTZq$)YN|9Hl(cCn7!-8p<1`TU3<~|fJWODr5HSc4%@^w|9l&!S
z_&PCG;8JtgxxuB)e&M}ACbd4ZOX{720|{e)0dd!?>KQb{7Zf&Ud6*1&hY0qb_%p@j
z)1f4H<Hn;~5*Q0G?AY(-Qa|OsG0hF17yfj02<pmiS_A@M?qXIa4#hAGx|XXHHtxo@
zWJhRMzQ{LVgCo*s(EskR^bzpz;OXw^(bO>$6@@F)YhN+b@$^4={v4Zt$g)<$)s@q7
zuJVT&5t88VBlP9DKv2-ZGoV<inw&Mh{SHtXWo25*^jhXBT2B5Y(R`gxLdzqEBN1~1
zyliVYk0;FD7>W6AAbUpT&+S>}m|HzpR#7L2u&xi;=FguWs3J+SvF@BEj*yL&B)sZG
zGq<T<vK7(kc-=gE<<^ju<yU7hFK54fFNF05CFi>UiKNVM);n`2&2+P_AYC>G6X*Ha
z?(XD?$!fzzpnOAT&O;KjXR&xBhsNQ~PX097tBLgchw!z;#`V$)RRz@<iLw_|5yZn}
zxWu|{ru;HNE|A*X&#7Ty+8V|aKj=H{0aDnom{<d99-b(din}Y4T&6a4K`OZvH@XY-
zZ26<610+ko2%;BcA?fKvrrSd_nw(TFhevH%28sove*SP1c@n-wdhH|R*v-g9d}$0F
zicD2=nQd|(f=EtQxSS(mvOUkvLa7-bF9Ady-QH9&rl(SDO>;Bdvd7uW{drbhmMuQ1
z1PeA(1146}JhD8-`Ww686T<m}+<jFmr^1Em*PUFEIJ!6l_%j+8)&tQMg|-`vF|#;<
z!z;~K)BqhgbV*4`9T#CJ6rj<lE8@RAV|rx<kVlCl!QK$g%*<#)di_yRQDZD6CCP33
zZ0gq6Ssi|Ue-2c#B_iT+5lYy5suV~F7p+3$v3a-bv}k^7*1Q)%1OwDW36!5LXI^*R
zW!T~O;>o;(aKG8slJk(+9iE&FKWv$_87|jt^|fj;4O1^9v0QYD()E7e#%Io<0-~_m
zh|aCMk^GnA1lB{7&a)FOGsQ~c@)f%GP$J?#iX_3zvA7Hi@)c1mJb5V|Ehs2Ya|b!$
z^D)7?%tXa{+8mStaM7i)6hs3wSu%kUlShFp5ZP2h3~67iTxyB)L0TS$1(L#xJ603z
zBN65ZEXeRs{zH?y{O2!dFEAlDVT|__@g?Tc74eK~f>RW<akQo8yLSwxxc0s9cjG~u
z93dFJq}FI9=(D@gOG<H0<e6T}?jk(SD6=7=z4r7UFf14kam9%qTKb3QgF_?-X{xi5
zRD(H{SkFdm9Tt~IS0A!qZk!~uzn6FR4fCg^wcZ!+J3yuPbA9j+tXCY*W>CeOKgp5U
z1g}X^_9_)~cp|_#kw`pB!1VFH4Ux2ul)pR*EqV<U3vJWh-N%z8qe+aFlSbPoJ$&K+
zDPyT@(4tNp?k_rlEl$8fo3J|+K}%mB!*bc|I`cg(Z3re7mf;P6oG=9{A+m(?|7E?8
zDMLd+`D{WUmbJ}5@MPNV#E1F<k}Aa4<Yg$NeZ45Q;jADi^J@0if*S5OvDWYmSmiEI
z84ecnF<<mdVDq(YTffPRkDNbm4*2AzEAof|O6hHD!zzePO+*`ZKh(9%(q~_i%C&O+
zFj(qW@shpmNFJXD;&gjB|0=HT&{$=f9uTpOif%8Jef<M&k+XH#bnGNZXzJ{6J8*E-
zlaVnrjxYC1od@blm`FN1po9Fw)wG#|h~0K!XwDTcCJVx|WYarTRJnV412Oo|>&#~{
zkh51paJ2Sjw0bez6VEQ43S(ke@LBRw!GOdtA|p)8BI$TNeCK*TZr(2el-2;vRY)aL
z({y;O`9EQV*2lpi+=cL>C~H9a$QjN~g~&ctQHp&20mLA^*^?9fgJBTfO!}g=S*y&w
zb92xG&6xL%kH1_<8kMTI0tt<ABxSf7)m`JH<O>8edK~|F0FoQZ%M$NE&%)t?Uw}qz
z<Eu1O91%*s?T<w<zOm#Wtgb-M5p}9zgk>}Jh)5n}Jdk5w;pq7s*U%8bW})s3U;=iE
zb8-gq4%3|vqfum#MBlKmsE3$Vv^u>WPCAL`cI<^{Ji8kgM~ev!-IF3dlaUU?o*ffi
zZ@Q-16ArL%$0t)=1Z_mQC}q5^u+?3Srno>3v2M_3TecfC<naqW@$kHRgUO$m;dzOy
zS#MRZI_kK;pe$aFg53N8Nr{3Sy4D>%H0*{8D0jeA`<V9gqV;k?Cl3$Fp7Y52d>1=~
z-I@Uiwp?j{o_?cefn9aTJy9hjf_I|r<*@#CpU%(8Efo2raGaM*f^5AVuc8(m#cq)x
z;4+5>2IUHM#2J^oBU;D6bl1m#?Jb$2-KXr8NBRu}DxOh?@kmJGa^T+7D`7-?4bsQs
zwA^Or7!7-}^$j)D!cZ>Jl7a<hkO65pBw1h<^-wU<vo=jO<NfI*{yXL$qbq9G4PjjV
z@JV6czYbVMli97XCs<`o7w^5f7*6ISx$^b$eo9DNk`|pj6ja#6S`6)g*O4i_w9I>0
zZ4)pympPIcPh1j09Vu6K_{`m{?N*3Ria#3ZZo>xWL?9TL*kY)ny-Tnf*rff`a@{g~
z?Y53H?%#nRlYOd`@O5+ha|r0qCd&f9&s@?=$l%X?vyCT^g2K2aC%I6~)4?-t*x%OF
zGoP6c-}y<uz@y>6ZaZUnDDN5^JZD{)X>j`X{5SI_3xfWZ)^K4Y<tZ*c0w^2mGTEfT
z_X~zXmW59)!oWZ`b*=P1M8YuXC)n4$d;BLe9Vv?}l9nB6p_yT@FC#PA*5L-#8CWp9
zm6Z6_^94ksG06@!f4~lb$~ff`>`g;o94OIl-(RU7+(}q{(n7Dg*uoh;Fi7X`LKCI#
zXELa+-TPJaz134M$=x2IVj9A4Tmbc}ivH-OLJ5usxWY{B9;wo${N}TV<hU<SH^#_v
z)qPtrO6(jzkA`gbK;m|UF6R=GUXpbyw>Vv*8xM+w@5{*XFzaB!5c8!`iUxwW!o$0R
z<@j8Ef$AvC>e@v!9paaDy*>7OgPfL(6Uqk1(X9ff*Wh>2yfU<W^ei67f=Z(yOBrx_
zk^EliZ-jWfc;qs$wuoYS-7e?b(UB>KArDtalOjPakKqJY1Fnrk$czW9)}xxIHmoj&
zbo8bRWxU+0q(ipov_%;b@CpW=XYXq>M1%I53_&EJk8^+pl>c$sL;KRMzh?#W2LB@l
z3BR2^vLR>a5#JpcL*^S5^1)-v=>Sm*VstC1)v8yN*NtJS%gAT>+T$<1+q)(@4gD*K
z@xy7HDwGgnPY)Eba93}S7x#~Me434R&6h0-vx15-3OxBFQFov(Ns$)O(Smk*E!HYM
zU-es09-r=3lYy2q&4-NdoG2DcD~QGJD-DH}25L)m5ca)2mCVPvrYX<cpbqLjuK4M;
z+ol0sz;GzoekfBI?~aNb=^fxM|0IiX{<Gl+?gJxE2S26IHw;D|XTsrvvONvO%06N=
zt#xExCN-E)J6i~ZGee3W!b45cD~sQv84zTCx!fK>b)Xj2jf<~*oQUDchVd!+*sM_p
z91Ryk;6JCxY=@n3KLpVp3BFO^+3@=L^Yce74Z9d5v`5+bR9wZCh%IFuqhq^+Ro5u=
z7ktKTYz#*PvsxkObh3sDkB2JCDfS|zp{?hPw!BF!c9-Y5n|n-V<Xtfa?ljJea>@!x
z6#n7FWVV{#um8N91hQyg&ohi=(^*>dwro8-!ZOT|kY5~8rm*nc{$+>sg#p@lBn@M{
zKVqO4z@*8fT<lMW2A~lbkqNPxDkpNL=)V*WH!OQG@JH+4aiJC^DYbYR$Lt;uf`L60
zHYO&ypLV~Hc9mk#Cse&G<%OL(Z@pvAhwDRDw)Jg<O<(6m%RTm*>uGV*@6+D-QpP-@
zj8?=fY4+W(gp-zsrYvhT&b2Q3OO+Me7GR}Mk8Rm5_Rv1hCp8ln&a+mq7F(N%xoR7%
z^<&9-(E9uF;JOo}vF_N)Od0V##?f@vj@8gRr7&+;GGH?z=NS#VDZ7b*m$`j7un!NH
z_w0h^s}r&K=hSU_bC~M#rPzbd<ydr9NpQVE>>Rk)fYm;@4c3=^4mW&PUG%|UaoZE9
z178RLAqAKEEj7X}I*{u>oQ$)MF44nUR1A=Xgp7<mT(uXz=!Gux^Roes;>X&R`J{K5
zS9nSRU@nQekG4B4u5uD}V9$uzLcGWOhoe~&3eTG@q}%gJlG=M1H0gq1EQCS6rNe0P
z$I@w#vw$_mVSKn~M*ZqzlWH$nL7@ym@s=g!r_L9jq{{g-49?FDOIvGC&#`2uIA?wa
zzkQ#R;&fP{7iMIc77zzIK91nlo#jEP67QR@CW-f$gLxC!K0|=a>V3V&u37o9^|`&(
z+4aV(RHQffB&xd+d?WV?`Q=4+Qbo%tjS6L?$FP0hMit9J$Kbbb&<oW&MaMlaDM-NY
z;s(L50)_P|KN5MK_DACC;s&A}Nyzbg#)3z7oVJJ17y{OLf$~m5WF91RBugLnCWbpg
z_q1tVr!gB~Ha0e*2io)5_mC2Moc0sEgQ9o8o;ovFqg%ytsc>Fm&cJ0_F}dKx+cZWu
zJoV60Jm9~I9J&ck+wZcWPf&XAKK%aHsFN|dY|QnU!UaWh4~F}t!D4c>@aT}1=sQRK
zS|Wd>%jvyD40kcY3C@(Z<xTND*B+*$a*|KSW_{#cfjjrqofKyrYvc}hsq8wkU{g?|
z<%ZA3c`iChxr|I=cKXG}DhrGMn@fn$A$iTi@#dV-nfzS)2n@xl-r>Cq22SED*c7wF
zxVg8lVl=m=LB%^F7qcXzy$@eH$##x3MGILc&y_+Q5cVCf0yl{Xg~30@`j>&+rIdGZ
z9o@pK?FBegG7nU6uhHT=gjQue^S>*oi0PcFMbt7@izj+ZYY@bbHNZHw?yYuU8OTjz
zi~nUSY{KS)y8aNo(kv}&74bd*V5v<Q862FR`0$ryD`1b&H#mr;kl~bs()*MfLBuNN
zQTWm3@}r_DMQm)k%>7$+gp>4-Vc`kX@W1O%C@JWI@=x>!3gn1IdQm_eU%|-e%{1)~
zzua8(_OKbD(r2o7q&5yaMvc)M?)7E_19K{Bb-n7_L@#ruk2GriygYVHkuk{GKj>74
z(T=?A3KkrHu9;~sQOPcd;}zfS2OgGx708ppx`P*A%dz4ROGe1({<ZmP#hDGbXp;q3
zfTntfSEkl<=p@zJD}I<01rkNJY?$I7RtGLA4fp`UnXPt_WD){?Sx6J<0s>_#cJ*ux
z8#Xo;0u4m=uUyYnr?cRW?#Z|^ejW{W!ypG7Si?6d*P)^rZU$)40~y|45t0KN0L}UM
zZL)HbA-Qn4P?vCT+OQcxf()+(cBUvSL9e;`QBN(PS5n^yZDu4V-<<w1^>i^CsrI}-
zQB2|YPWMNQK3H)x=Of7jB%uW5mVztQrnJ)~O)S^Q@w=yKwNkcGAelhq$3ca6DGr_f
zH`R}nAhT&Fx1Dr<Tyhbs0b-7Lm$zJ8Q<BzXBa5c!^+(I@%B8EdgYrE&9}Inb_*nJ;
zS4FEk!R0XV%M0Lws6;i9_D8epW1sFCU-(y@_@$uhU5XC7Y7ky0R^!E!Y_?)09S*dJ
zR}f<g=!1N`{lbzJ@rpREO3=>a8M4>3NRW0PgkQH-^nj%x@T9SWEZCD5MQ_EDCn`G_
zz40ViiSoP}9l6erVI@V({96#ZYxz^zYO&0`%D0Nfp^6b0YIl7$JhD?lFdR$i7^&av
z==_v@4vBC+Fx^QXdeMGe0cT8Ozszn%vxyU(mwyplUHi^qGtl{5G_LWIj^PORWp+L%
z#*}B=(5!O89`HC038<dd=v9O8*D!x^oV<Ab6L44%XJnjW5MY^4g!0R6HXR3jh&_#o
znXGDI)`L$)v4JvPTH>YVYm2=^d;y_0<!EjQA<23(fcW0??gA?sPCA*JyE(`NtDj9>
zq~X<Do2+}5<^K6cV=6`=9()`eQC|1UyzCD5F;P4nk#tPVzTR1ufo?bt$x6rH)|ii~
z>~{%|M9W8SV^RM-v{kJe+)AF`zkDy2<&`f;uqbcO$j;85xIL0CRVbSrqL$W;pt8{$
zSvV%|dmP*y1mIpxMv9qdGCyRsbfJ@r6S>kDb~_ptzE~q~9Gc`0I%P$*Rjkh1m7Ov;
zSHVVqCB-M$VUTexkTP6+n0O?+?mNC+Ig*}Rqo2UU9^#}-=5Ek@HbSR7v)QLRH8+<^
z5~%0&lcObNZ&D;(#ARx`MoEaiYrPG94HDK`4XUr`4)w0)6rC*xY3f80pPcs)I3LWI
ztJAsvFxYsgL=Z=<U(&8~whri)?~QoHi{}@JFfi7<6vVrAf<ISh#Y-Bw?R^QBDCG0R
z%-i9*oKn*?J2t|5xyz7R_2pz&A-5NHTJJ*1)m)riE%#^Xw~lijO>^rquyisgvozF}
z$J}zX*5cuo7gu<52d^J}(Zh1C%IhJfEAUAtX#Vcj?fG^A!}LX&WOX(2ren`e09*?i
zKab4PtoL+>ZmH8{1h_V~lf1V#P(e~M2OG-%8hlI7#U<iq2Gos8(0w&+KRi8sY#7+&
zG~5d?%f^e+)2ga!TTpX*E~sxawLG(%J0|8`S7z<+S~wFKrKF@33}BxH%sY`TTT@4c
zs^QX9h9fnqH=AP}Xu4MTUh`lF#T}d6Id-nTYs1ljWqADpFNHy8q8vI!u7l8&cj>Q%
zR-7Y|^561Xf6C74u2pl^O*NQkiDAXw*r(!U;N!A=IlNdCh`No<);sosc;kK<jZ0o2
zQE(FjU(V`rZF6^<W_EXdtD<bWf7m8+3TYp6i~O~{Wo<G0WYxWaCM%xx#>M21AHmAh
zyE(!M6{$F)jmnO<*qjI3)9^yjzinFn;Tp6+-(9FJy#~KtF@x+%F@iMtJg(nrjPN_?
z0_8ua-&5DflCqF%i_pD&Y$$JONt>9^?v6ZjOLYhe3(E5A649(R!vP$+3XzA)-8&LJ
zs~gVPnR`{=Z2%-BZsy%-Az7>2CFa8?(Sa#|UHbEnU#^aely}NHhGD257ce=0TLDn$
zCZ4cnW@fvQ3|f7?i&|n2=ALw2A-@}c3ow8;7LwLIFd(@WJamq1Wu;5W_gS;ap%^jQ
zwfY{Nj=Jw!v_5@Jep(E%Xlx+f5Pl7fsX1rrr)x<LIIIp?4K4R=$8=|?mD`3nk`$ZE
z%_M#@<vEF4ipo3ML4BWi5CWV1hI}vmsZs}r$|za9N^-6|QL=la5@c$8c2<}&71Hpj
z`#n&XFLcWVJRIGMvcQ6CM>Bb(5uZ%r>OD*&GBm(t%ICj596`syQ(ol<n`;u=Z9PLz
z)k|%5I7K6^MHh-We@@Qo>Fvqy*~pikY|xTUB{FYRa%7Mp8^P-JB_rNi3&mumg2vVS
zs}v5ghEDFSZEOs=;Y+J6IC;H7IXX~gTUe{QU4t?46#%h}LA&(pBX4tFeaNV@<}b3g
zdItcJ&vqg8N6`j0Nsz+K49i*~ywe+xjqql_<MAmNUsnXJD;V6os`$N*6HU6aBCK;t
zDsgjRdy~uCj9DUXcoWD)aLfcM_UjtGZ!j09MfsEYJxr$OkP%9v^^M|X-?T1X6Zsqk
zWlKx#C$2TNS$|}xtST_M6q!jxJj?W>b_Ai=?FpTD-|^^WkG{U4{k(B${rIF>WK1VB
zg;!<$hs&?m!#z4R?;$4kGKThPXSV!5(FfAs@O_9Vhd;?K>vphVTUkA~qzyg0&`6#^
z#v)1!BbHr)M$vm|M}bSESzW^Fk4~-$<ID2Llz9e~3JVP##-9b6?-PRy-Tk;D_Qjjt
zicv_J;`a7>jCAcG%KL-W@HOwvShlb!Q2i&5A1_xd0-OJo^$~qUQ;&&>smTGXe!I7m
zNhVeUk7)S2`>ibE8TayhrETv0s=t5G+dpn;LIXY1K5tn(zcAiFFF!OoikGo0l=pIc
zd08h&EG(mBVO*7|p{(*tBm}G>oTQjsj?Cm%$4Fmqk#%Rkh!9HsmR2`mN>xq4XaSXW
zpg(VbYwgq3xLQnTD*8oo^VmfAcv4<-^LTX*ruDl#?+-zlGhwZx55R_$!J5JLz9GM_
zQ?t1z4#eK{91C7zGyq88?Xgm0V)7M;Bw*00o43*`w~z%)mfo);0r>8PN=8!hMM9@`
z&7|qh?703_({nbWg(4<Z(c%2PRpIq#MG-Ib>b)ASsdLd4m@KC1P0Jnf5qB2l4fI!2
ztsiBuyjWH}?;=8@I{h_2Y|)j!qz<fpbLhV2&&d*Y74`~CBAx28sgD>HD1*ev<wPF|
zfWY51=gciPPa5u;p!V`wsH4%muc>_m@*wp5tdSC?>0P9yxW(w-sC0CU=PGULS}dc6
zU6JOhNnXbNP&KEV0xe+8R$ocusxMT_q)vQO#Y=cuE?f>?tc_89()W1OfQ<PGdCNJM
z&7OSybPM@1?w+oiEwu|5=+)F_sG5;V*wfHBtm0SYb<+geRH5SHb1X=6A{oqXS!Y$&
zah5H3!G<_C+{&3Ts96^}HYn#&{q>O89s`6PGpyiJv2`xI5je&`aW~PvT~2B=r#Lfl
z1v46vPHj4XwQ%ss^bmt9)-j4!%I}$WrQ^lH2SHw@_ZFi)v0D~0ouiGh%_qde6_Ybz
z!tXnOms!6~vY26qI+ynDRMiL`^&IV3+Vo~;@sdP8j?a=UzlDw<pUUE$3`M{3ti3UY
zPm2r-%kf1(>(g)PN<7^r7r7+tT0_3kKDaw`-9jJR6OWkFg5Lk5`JZx>@|114bL1_g
z#Qa|Oaykfa5Pq|{8*C8OpI(DI=ASqr%1k`x=jVRtCut^i%OgLSg8{Eacc8T#iL9}?
zx%B%f$1ayOzR|os@=g+?eg3gcG_H8k{uYp{%TFS1)MWPYmWVyNO9*R-7YpmzUcB1&
ze(9)GitvzZ%6SF+aQ8aHRx70S3fD9{j9}`9hke5R8X5IH65qujA`%N?NJE(L18r$h
zQA`ILJA3XGqe`zhPLqb7QHBv(!1_bpxe?w^bGL`&`r7zNMCQxIs#$8M+UX2llzsm5
z9kh%1k0Yv?1#xm2Jjz&P<?5h#U5^v*H=UJl)t+O>&^jc?)74|}U%P!G`+0o=<EIAe
zyMu)LV#WLEv)hHr-6+Ck#`T0${lLx)@0IjKxRrF3nk=Qz=7IC=c_MvM*voM#aPQoX
zw$k3-`~o`Q7Q@UgR5QQndF@1Glg+1tqWi`DbzK<x$y`6Vr9|4J-7+eJo*ubc&{N#a
zbGhKck))8G7Ds5yX<4F+TNwnpocD5Sxz0+{fsqt32JbM|a~Mp|_bRk5rZ>r9%OrzL
z6vt7Ld3){mGDZ{7L&@Alo%06WsT3=cB2I4&<f2*qNo}|B22=Fk90;>rdVTc7Ud)fC
zu$~YJGJU$E!Xduz%(MMik0C~uBOx=%vIR#~6EVUS*`t~Lfx~^_$}Pt_l<hC!hPOVM
z{^C4!sOzlh!B}tl*q$_+9Fng=scR3@K+26oFh;%A@*6Ld#Ozw(^`+<7I5^`AwFh0s
z<kM_6-=Cedt-ciX6W<x7nJLqgD?~!_>l=&YV5@sPtB;EMC=>LO1kbuEtEI&QKpV8G
zzBd|rdD1C@#y~=hi%OOw2J`$kdFi7nA;6*Ig9uW|ctwx&KW4`Q1E9)B*QRc7UUiGX
zt#{JT`Ad-6eoXIu1A2(hY%wDfa<H?dRAb70HjJAO@S{YRmMYxGCnSggh30A&?vM3z
zkEtms$2+t>9<4lAy#paewH|^H+A7~3tZ9@vvC&N-zn%`<Gm=T699-waF{%TCiVHO~
zwGta87n;b6i+NCG4qPs8mFQ}5#JFe&UYez}9@7}0c@u8WFD_o|*OhGKwq>?0@uWv@
ziJU}FZ>|}g=NYf`=&p<|{&cL!>hl?(-M>1z1ah^Mc1F@`$vET2H~V92J?tr)oFk_L
z+-|liYHK9(^3>Z`R9YYV^sC$N?fgB$h?f(AQrTP@%hkqdZOPMYdfs4(xK@p-r16v&
zgh}6UynlH+$VKq*s3zQRr|>g{KOL>)Y90Z>lUfG@tksIsywo=@g@~QQ**)}U=9u@*
z^=NtYRYTp;0}UgJ&d$~JNL0Mnl|hn<4p~e@{qF*}c0xD^pg)$=m9n^fH^5l!pUl_(
zrXjA!#84*pTKpxCmfidgxpq|}r4tGpQ&n=sn5#t?=7DjxzHr!`C7**fpSs1(jZSR7
zvxw1H%*@=Kpuz0={P;1PUUxA)uosWq!kNzp2`^ZV>L>a)>4lIi`x<<!b38$<(u@%L
zZTSBojEW+kiAyW=@YAc1i{Mi4^RxGly!Xn;UD$B3g7wmA6}zv{le(wrDHv{_%nKG1
zq>l7B-&LRy+H_D*AlnK?WY2Co%g4h#Tx#^a)*p;OJPHIX%gK_~ma_K5DST3>zwGpW
z*WY+Ap#qUD+QS#hA7??^M4aaVNYg*oQxlG%jrgce%VGsoL>ucWiw-@3p$cohdR4me
zT&0z(%9*n@dFR4$v7ThA;~JG@#aDePuU^ZlQ9ARTL?(x=;<m8ReX;ebNGz9UkA}-y
zm7y6*d1UyD+G%jwpjsJ=*Y#a}yG#vtM(afemkRlv9fz)(+JP<t1a;+$Bx<v^3Kg5A
zY(!mB@9b=BoItcN!@<$30dDe&$ZlIVAP_ctyEj;tKWo7p&`Pwl=%S-(Zmx?<per*X
z3lC)=+(KsOeP%wzW6dY7bT%ZaF<U-PTTFD+G<YrrUzU^6wLM&%GOKX56IE6YWVVQ?
zo}`=~C_?6&^Q#V*8M<WwN`-hh_UX1_any$)vaET)xo>F;+3T&n;<+)1q*GBLI1~nB
zfbzjM>0hG!9WMPmBG!?)TOr)h6^6YRvJ(@uwxS^l*rfwg%=LYwm75-RekaI6BX@|l
zdf#4P<i=XP7;m!KUy6hzM9;t#2WU>VyIDu!QHrFfzJIHxsH(sAyvj$1VEP-)m9Ll#
zDZaDK+m;><cZ84~zr98$8@ueWwvJdERxQKeHT=^Euw(>d&mE=QM&ev1VOlspyvcSk
zGvS})n*cXe7G7O^0>1Y(HlYPjf!-T63pNBo*z3BeYnbnHL@N@M63m7yc#)85d{0K5
zn21f_y;)#woN;+|RY=V1Ht}81*JQ3zfBoT-8Vm5}us^&W^?=>{11#}7Y63X<*+KE~
zcKFD@-n*H*?P5mDbiFHB$OK1<&@Fj*a4_`t;y^r6&#Q69`9O72K3o$H6A#ws+>)Ti
z^OBG|nd^e2e2b~^L1CZuQIla+`#COmnP#mHYHvplr#*4u;{&&nhzL4BTE!l<;+uAp
z1|%){tDXZ|E7;tlGGRv~k#U^-^BK|kMkLcbHf`0e#PiHK7{b6t!ynrA1c7O?GQ&}w
zb`6VHtL>Th53RMPJUmOg0B=-*>sdw);5JpKW0xc3{B+K7Jfp=L)VWjVXJXYKv${FO
zbNNjpGA1(eN2mVBtVr$5l(R)^wN(0(vU*&T8*$=fNeKz~XiV0J&DcPKmYMqPYso-8
zo;iLijFonLeYq9GbH=M%Jca|)GK|3(84Z&{aI|=N^bWurOZ;ogvE^8?KOC9PEgo!s
zW9SA39RTFsyWI)GZ2SNQjIHjLbEtQ0$NR>R0Ovpm_TYe{)pAj=%mh5=b?RD-WYzB3
z;!$4YVNZ0^*r!W8uTFS#G5f^Uh)`LS0T<%I@NnFT>{O`JJ}fgM9;l-9sYXHBv|fpV
zZdKc;#h8yDf{7pVnU>MeXMJc8VRGrNf*FIBn2EaJoTt-qnUW_6aKGjZdq`ZlG!?~K
z+O9@7c`dEolJQaxjoOf$U|mId>+!2Lqt-wjVBS@ubXbl&S`Ix!I$^$N`c6zllFspu
z$fYwVnV-7FmiFk|hJVy)Kz1v&vdbqFTm!e~kwtE)j#r;=@BFf{sbDt-mbzLqx)TH)
zGnA?w*CnS58Y6&MjC@KeW8z>==Psx|Hn()mYmeM7xb^TcsG+41GFLJmK-SIMbXR6=
z_DSS2Dv50?bC{Q?2j(}^4!|#&?7+HRf@xMZPVQPx))D+{7pz)aTk}oA{mp&hQKtrO
zT9eKAT`KpCnKdb1<BJMBQOIc#4KF6`4Bv^0iH^f!7`a~`uVIsrP_<IQ!@>rQy6i_f
zed5DC{at|m<-{f%qY`oo7NXEMY`=%nS65H+P%lmp1t<Y(%x4+3rm5SXA#M`!3N!{z
zQon9PZftNJJNF(fSlFlC|GE3Rn}ME(Q%i|K1ZVgl_^7OY8(F~u^XA4C19|!J;b`&Q
z0=@M5@u1{&fl5%<4__*i@thZmU;1+L5r~td0dl4IYZb2-oZQ@+kldq+iNOR*T#_Nw
z7zl}*3GIpSJTlV|8Lq{<K;DZfdb0gH?ndMaL!BlOiScYq!F}F|_{2qAnc<AqwDLB$
zBy3Yq-%<4_@pu9dE(EZXuNb@;gVFf4g%WiaGI@Bk^LH)RI*ju_Dz(evf==Ad6DYf6
z3D^(w1$~=B?0<@ocwK)H<@a>gGDR(Jxr#z|lq$;0kch{|loxJ<6SMwWciY&Mmal*p
z-@lLL8exZ`W%(3#%4zSFO`{YbwMK@lcykZBlGs`XvSb!I=!!I{^d{-m30Vs&JZwzt
zymom>PcHz@EdC<K3u6AKd*h~~w$g8P8#e3UH5NWT>43%Uo&3j}zAKmvJ#QIxqM~Sj
z51DYlgmoMJe3WY4?iq>Qda@LPg;wlmQy1WUV!)3-ziPw4<9J2Ww8pG-<WqP1uHfF!
zWyG^pA5Vw70iiME-~ofI!Cl>k25%>>+iB)d%j`bV>n2^d#i+)ja|KajsMmen7W~Q`
zbIFlD&`rcYra6?=)8+t{L4@sU<G6RG=h}1!ibi{rPeR}4e07n^^kCD=kbH`5_FWeT
z{Y3}=#BRxBKMUJM9Mp0Ui3OP9WMwpbHmk4{`2{YtjMwqwK-arN{q5n4_OGH+b2m*S
zpYKnfUj%upS&><MSLupO8DNniRM+uJNn1)`AJSNfz`^ERhqt@Hn)N{^xqRw{E-5Sd
zLe-Vf5cT%WAF4t78LW^ncgU5~%xdTyW?Av&Wlp8`vt3OHZfp#fl3mq_xOJIRwmN`4
z{5!m6jUx1MkjYM08kgZYy3tCQH*d4;h8O^|%67#$wTu!dW3(8Y*Azy?i>+#U%Vg}h
zrmM`oatIDAF9gH5*Q8hPMs>5j6N+j$&QErrEgi{CMUR_fvG<8`U1=c+gl+@SBEhZj
zB~jm(sMzbH0Lq$n&E4%&yFv6)>o!h3m!La87nJw9bja0l&w{$8nw^LW&d&+YOlx@}
zPk;cx?)e@|>UzO~=7yJs$22;tbz-KTh??#V_QPc=a~NZ2!?{p-ELG^<-O=nKVViVN
z)UOTs?ZcI43YEB4_{GwN>9lS;-<jU{nQIc)g~o*Y>|{l3vTXWonu;!v7+-w6WQ>hl
z?B(xYX!>~XXyyiKF@rM-Hs)t>k;f{Gdvq*>xF@wO`m*Cj`<jeiicz$XrJOO35{R)q
zPR|~2mf)7?5~*-zwg-|tMgh^vB61mRHATfYqh<J`_i2F7c5ufJKNhaZ4dauMQ5!l=
zn>anZWf6mRLk34n9m~7A0six`K!=|K1p@=-@tIopEkG)NMYlFwm8>_n{J{=VErMrq
ziZIa&NZ2UT$g0~xsZh;bwNv<68W4}+Up>G=Jd$!Q=<I#b(M0As&_B8CfSOUr2|fsK
z-UU@8Dk&775O;m$b42^3|FZ|Cw{Ph{&&-IJ_i-4h1e<<dyQ}pJoZrwEK#c#5uYSr+
zPopJ*#a~U-5Ih}q=lLW~TPDFx8+zf<_+@9!aeJ@jW0iVLnZVNBVQQ^15<cfDx?=T=
zMXsFpGVP^hi`Tb{<>=_L@ImQwauK7;i7Rsx;{eDVYvjDL`Tj!|=<FBB3}L(Vwf~or
z3Zz7B4+p$_uM;$tAtX%$&Agh~Ps`?25-{=12ffCoy?6CW5<OPaLRe%O3-!@RX!u7z
zG-3W4asLhv#m=rq@a_UHlm2ZB)3<g?%``b^kS*xVWPE)5_(*!Q$=-zFx_#kMx3OW*
z73P~4(NKTVC4Yv)M!|BOLl$Q@7nfUFc(TSZe(KR8z`+GqR<CUC@6-Be8B_D~XG%&+
zI+QI~+nsLq+u5J(j9Ry+TJ)sDiF7Gi90_jj?}^^cFcp3sIyWL*ev~JyN)k1v&(mKU
zU}|q6=dNsk@IT%37#X9IEHyhrclQJ+%8t-*IqdqKr<hcCW~%?V`-N%F;05XjiQ`HZ
z<QoRbH|Be<mwc0h(6%Jz=e<@elwGUwezIL?dmshvwB3gJ8^FLjM6U(Rew&}B_DREc
zA77lGDzyiwik-7YuyTs{UhHPT_4W_uCdh7bjb{;bPQNWXO-dt_S#Ih^BKyc$rd8kk
zV<*Euz16K-Nm)4vCD{|Ko`G_g&d{+{7iU{^zS7DaU06r}U~B``&t2N+>FEXdD(1Cl
zj~rL|$o9>D>dxnGPh3@PDe^z9q-MCSz9ep-oH-(c4SG(l?9|YXmd>L?+x->%Zaf2I
zmC#A<9FCH`(UJNSm299CgCAY}?HQNrlUD5&Vr#8M?lc)Wj7O1_$Xml;PW3r;b28QH
zg>a6~4lPNst)z#TXQ05&g!j7UelD;sjZ$kA?y}z^ha1cHJXX=>+$)XMp<VsD6kG)h
z(4QaXSJz&w(v3Q15+W_Im$N(C*kD6<@#nGk*b`wr{69OFQ5$-{7v+|s@a6|Ui-Nf9
zS!Y6F4RRu>(@GjFVAN9a5l~x<kU=8ydF~*q?W<PJ{G}{hTut2tsF6WHMxbsiKYLhM
z*wnWEnr7K`bZKOT3tBeve2eiY@rkfv=UosOOjuI%_WrHZL6Ar*EKo7K%NTmO#tA6(
z4rJo;o4U$s+jiruvr-s11ckRhh&7Vugja2Deg@{3qQ;HJQ3wuQmphO=PA$Z8U<o*H
z*Uu0(jAeZTQL;bUw#93t>P@d9{;~UGkjc_(e_U^Vz2VFS&=+;M_D8rCZaw*5dy^a9
z^EsZZchj0XfdyjU$V?4@>!(x5e&0EcAt3^MCHFL?mBjp;avG8cX*EqvnnCPUTe*(q
z=%r>du<9-@eBFV!t@c6shJ*p?uR?!<Uxi-Je4D2szSOLZ;Ch6P<Q?8?9j=Xt*C@})
z$&n1u+Kw6wXTB`ygKoA5y<&nNUl^4OViFmdkinALt@dAeA4o7?p&f$W_@k8xVZmZn
zlU7lQHSbF$=s@4vPpghFDzfL&(##!~I799v+bbRH$V_Km-B$Etj~7A5WcfWiJ}nQq
zY}=-ED1g5l>s@)k-&l+E7PNg^D8Pr`0%{8A^;Z+|Vw+*{LyRKXnM`S#DJVY~Z6HZ2
zD=wJqo!rbVKCqH(PYF?^{jfL|SHAn#cxlY{VCl{s26_(Vo=gg2PCIp@3%$dcpbvxy
zXvE6HHWvP{*HVu52NRUZb(X7dyyzWO11x4j(T5kw(f$~ZzZj4Luw>-r(C8+eu(%9v
zvH|qJLiJp3Q^yB~QjB}T05U`OFr<@(N%QkEojSqF`vhGyAA@;WY<G>$7QXx2K!R@V
zh03}M>Ck;Ak&n0hLJQ+omGJ?X-ygEF^TtsB63q&Og@%Ey3FG@J`K3Hf_`XAv9qO`W
zG}?xTm$%kmOjI<a4@t~A5!j>s<@x>uv{wc2vnDvmNP=0G=*O6AT;h?k(P)>reLZWT
z@vTpf<gad}wru}^2L4r$n(#rptt}KQ^;FK?z6I~FYCD}lz#Rmp)@Jw@N3*lrJ)AXl
z)z#GiQs{53k1yZ-WxuZpA$)o870`O~T^F5mlb!$>{pQElu3vh+?QSKXQp(GGaItgY
z*9y*(fQ@_GERjC`I|}i)T`Rue_x}EC?jtava1GMo;re<`cuZ_+X@0Z`7u4C${(#KQ
zl!(G7AI90KtH;Vi=T<v()cV$w`qdz~!0m+OWQk_yBW9X9+>!Y_D3(7uY7FW5)cz9`
z=0WMvQ@&~g9R2V2&BDRj9RqmWVn;1bPfs;Z>_9bVG9P~_h=H54oy?<RW<3f-7x!i*
z7ndkRG9}sG$PLaVL<bWjXwtC=#0D;Ij61)wlH%+X%~)^ig>gm@&TlRxpBXU$Pt#m}
zyA%?7#a}W?_=vKs76Nx*diP64iSJC_W%&B8v5x@U&(`tBIk~x7TTPWkGjiX@$Ah7v
zVT!7%VnUEYyS|<fS6^hl`-c8MvxSi!8Yo;`7!+h<ISGi18iQU`hE<+mR5sHI5ld<>
zxn`G>PYjW;zgdX_2b2JD@kt^5$aU;8zoDD-uO}yjm6RMXS#2{IX2$OMrAB?;OJ(Jh
zG!2&%A^+}(|6RSB@B;D85*oA&dacptKO}#5<L^_V6B0@T0D?HkT&Fz{0&VsD_6`6c
ze8|ows~T8Ztf{@E{?p!%7jT|lutog|T=QF3{dFq-eqZ3JM7~c>#;&igZ-&g<>nr&O
z0SWQgxHF&^5JIWnf#W7JuqY==nv)@wxc^&&|Nch8&xkP=hl)Fd{@#)D+w}bX-GLKE
z2WWtCZ*$|o07uwR)PMRk06T-8Lqc~&S2Z;uF<y&7ob0zjcm^bEp_9{Ma(w+e)BW#P
zlmH!-&Gj+ay14yfwl6|3$)7`cNKk%8R!Hy8|D84TM;HE^H;#fO73l&P&Hq>;|EKe@
z&(Mg&OP?Kf|D?wLsj0Hi@0I$(ql;f>DpqY)wmU@r>H9x_EK7aHLtb}y<~!~4-}ld-
ze<@J<<{8<iQa)bwKfBug{EPqXyv7O`px+-sAeD5CAv<Qq%S(t4+S6R?^Drt=kg8W2
z<xazOP8Du)Zkym}FW-R{%)VgOJIw1NCD+r&n_UL~GFw-5B?1bY#Z63CUe7B{*;cyV
zS~Vtew*PfNe*M7bOz8Vw%h1Hg8(Vw(+>#R7lHy`hWA09;U$ZXD6n4d(Co`wBr1-i9
zCY|1_p{G?i5Y+)-6^ED6q)TaROv?`%Gjn^0j-7Hh`|NxB&N#Q=aB{p;2V9+CHb|Rd
z&&j}&pyj{;7eP$lJ92Ago2qWFByf$oE2_JUS=>~aWVija6i2q8l9?qH7;XJTjO#v-
z(Hu7dmaC^`XQJlZAU%R|mZK|}4{f2LTODtCe!3I<1+Xq#PY2RBzwcY78ye${P0EeV
z#Mg}E72avw_Lli?f*lef3}>HI^IP@YmEavH)TpRRFo9}Ak9Atyrkzb)@(x*<LrlwU
znX>83IJ;E-aEebZod=sU=U8zm$yAHCZVlr&o?L_HCtt}m(^D8H{|6s6)`s{^r}?nO
zvhPRs+R@X<VvYkA4sPbmR@A@KZ$ST=NI+kBH_ygY*Jp!bV`Gc8>a8|+cElqh0+?pa
z&CO{5^b$a|BLN^}EKS(eX%W*1pl~A{4+$v|`uqCwCniqe(RMdCKLE6;c`n4S+P)<L
zDGI|Wa2WEwP;~;rxMd=u{vQN?wt4pA^LF}S<YVJ0Fx(AeLg(EM&8`Moxqs#o?FooZ
zMHiWxnNswUg(}moicn=*{#buUpm#e_ikAM`J5#f1XW^6El{rZ>B(=H<ba%d&E{#zy
zOP2UkU|-(36}eB@u_P#@9-O_@O;=1lNQ%O&SLmBsx{D|9TGx1h_23H8Xyr-!R99!6
z#%0NdQ{-`CT3Nx!Gkk|dT<K11+4jXvrMhg9qSBFTf?0PYbc&e|9vXROT)DEA!u(sZ
zoQ9)DQKz^`mF<kUhZHVnbMVe&J%Q`h{wGjP$7&t>hoI|@r<=*?+|j7-B1ccGndNSz
zQ=h(F%8w<@wl~^8iCS4Pu6uW}r0_k6rY^Rx1&p&<E+A?=?G^G*bod`w)>(e=udhdN
z-23DbK2skVfjVxiWtnnxLND~$eOvg+ZFYX8qIFN$Eo3KNP`Lz;T$W%iJqOy8GLtvC
z5y&AWOE)l4)a$fgSX>sxA{T?d9-H!6{@jjLC`l^v?Fva4<{#4Er%v{Zw=~M1^v++E
zf)8@Iz)5C}K9C{#%xkJhAucZN^LUK+#WKi190>{OEBg3XRHOw~C|p(`_1M!cRL=vH
z24M0F;jNv4w3O3}i>ZZ30%r`rApCHCD%*z(yh(tKo}Ma`?}2h)fNQ?UpT~8UX1-06
zBiQrK`_kVB>WA0)CO2AiDf$A9Jvw=7)G=w(WdvP+?`SCQ(`en>i^WXdz4=#gn`=%9
zM%ro)y8c1o^TtCk-egZ?G-jbax#+PR2-gZflgOri%qO#~+)bz#N`b^Xf>JADDBTb5
z@l>8ysJvanP(p-Cf7mZ)#&v$L6F6s*#whqWwRO?^xqV2kJ-5Zs9G_Rr{4naOv%=vG
zq*6Pl`nU?0&B-J;L5q|p+e*eUzfFgZnzB*IO?;@&%=^jc{q{wLSkSlDmZdG<JCMz4
zN;uJ?THRXH)D()j48Dr0yu36r?zhR?uvZ3zdUO`~&zT}M@!4yX%MU*kU_qpu%boM_
z1_05A_=o7Ll>F&nn>}rZ{U4Md8$Z+u1K$v_&st}oIRGR0l9Z6}hL^NlvsThWBTaI8
zdin(_otZW9l+Sm6p)dY{ZphD1C@%XD%u`|AoXhi~o@EPQU!K9Em3(7)0cX}$Dz4Y4
z1~?%4`U<T1HAG4iEvF816XghGmJfJ1lCM;5DiU4$Ux#AMORe2h_JCtW{UrTdR1u>k
zoepyiNIXOXGrTiphcrYC#pTi>DcM~kCOUhAT7RD8Hsw78Fw-s62p@tzPFu?uO=oZ=
zfIq}$ka0>ouEgl2*3=q1t{f1zztFq3T53?+FnL@kq@A185fO<RQdLz|Qfiqf0Zm2s
zx&j#31q!AL2x2lx3+RK}^k!?z`$2Rkb;#ff#%u;JSJA(n$bZ)CK4-#N4~-?JVpg)U
zvgG#`#+;wx5uZ4$S9oY?S-g^)y`Q`^o1MzuWSRC9Gh-vxXhHY)kK0)jmP{-z>J(7P
z5{l?~)|M<EHu747$F;&fQM96WEo2yA<@)ss3-4|#-T0s1KUkYwjZVZU;<H0A=OL%&
zVv~mqrZWLihEF#`k&kwU&p8o?H(F=$#@DBb-!Hyb6E(Pe#WG%rhD%nk{KTWOxoJN5
z5u|q5fwLKnE-b6d&~9b9F7{dyjX3{&md{covTpu-b0EA6P5lgGu5HvGaCs=We0Ud5
ztUlubQ$HTv_T&Yl1As{yZ+&25_i`f>)WLb)Pa~Rh%TrUixEFYuKWae6n+bA>Tx|O*
z5#~oi&5D(Je_i^2?y=v`fefi<LL%J8`DzuqU2BQ+zlg}mg_M^^GI&d4IO_DF%QIHk
zwq=F;hFeP$CyrAODKfL(a#dNvFt|S0?sI)2e39lx;Cc%`k<C9d29!J22WhoOL{B{p
zq|#KGlbj-<V9Z8Pr1N<B$$}Rp+L_X1C~xL*JyUW&j%AfQ+-$*6laZw%AxWAHCOohi
zk1(<6caS2XoJZ>u170Ch#}W(*xAC#;WkWqYJYz|@QQX;ES%7SwpMJsKq!)m7es0V}
z%q+F&i#psqvPMrVX2HeLL_S&s98^GvW5DQary`%g>ZMEsdCNX!V%`*;NXx_JiDE+o
z5VQi|kKCZFlMp(1%t#Ft!(;M`$Ggz3vnkR~^5((8&-2a8Ur8)C_hJV2FM&4Rdfq|I
zLP8Hd0IsKrVx>aU!zDcxdpl?6{6#AQsxu(AQ2=DZw9fhi3CTcy$>)bzy$bRz)BOpl
zyZ#f7Z${G6h%X3cgfk+4B{u`!;cNtw7R^&`*DCc8g@&ONK+B4PIZJ_T$xkCxvYUhN
z&N#sF(@RsXYqrM2x5*s*cAuH{r)bg|0ODgE)%nMZibS&=nRGScy9n-{Q28@4Cf^}2
z5T8kvE8TK;E{@t$>PC%=x8|tV%-2{CIp{H?L^fgq(zUcXT%^6rBH%(9%SV(o^mz}h
zG(-{Bqbfja({V2iTEpL~vr^($%gsi>9~l{nM<fTKUr6bLG8^IkKgQlNsE(*>6HOol
z2*H8|cL}b+oj`DR2_8JSySux)yB$2ZbAmermxH^X+nMjaHQ!9ly){)-QJfz@ckkYN
zt!F(FgD)2?5WJu4az|0cb6sAi;-%%H8{rWDvKFJ&DX__#i_<#vO<`_Cgs0UImiy@`
zcH=MRCH`Ut!KzLvJ$ZzE*HhS+dKuCF$7_h3%_iw%o-q$}s7XcJJgZJ#>g%OsWZqHl
zr%|XmgWbA|ko=`gc){o@jA2Z`ZJ;+JsUMlx&5x~4JU)rysS$n7c*~(5mj{^Qa|33j
ze-~u2EqPM>|CMY3pyq2ehH4jWJ@h%E*3O2S3xRz)*K&uVL7rC6&Iz>Tb$(uH0eYd`
zhb4&d)LDD!eau>U`@qyxUzR_0Wc+T48k8|Ln*v;oxFc9uW2~dAArmxyzklPX=3@KT
z;Z*RM?DCjEf<P|4pTAir)1_-quIfef7r!-&x&wCQ($=?yXkK98Z)X1M%znAHbC++u
z`F5eZK*FK4vQnh08Zb-H9vHu~G8s#;Rs4Q3T%)@^go;^1mxqb=SN!;dnV&zz`An|l
zpRoPLNf@#^ET*gvy`HHJ8Tv2j_5~*XiehC;I10gVp?C!6Fb8BMy+rf((YA?e){{|9
zgqu_6!<E~~Ts!XnJaPX2s%}4|*f)Wp&T{S|BL0=T=VJgu)Hw4=)jI1x+T+z=9{XbX
zMGnlFE3(U&&^bQrn=Iz6)eg^}>kfAoD@4wHo$N=+A&nhU_u+QiPbft_Gd3k>*;&Ho
z5N|cr3Hy%yY&!GHoxEj@yu4SXT$d3_FB+QRl+3KG!q`cj&|$*>b^T7|<~g1SF%6A3
zb+y~Tn>Zzk>O}&FTJF8vh_19+e0hXRO#JQn4}QdPB_euFhkfn56)*xX)QEYir->av
zx()2)6O6#tjO?)_;O7y?kHDCkB2}{D@_LlkdN|+YKP)S;nVlq5{{^+%epL4Mj$5?N
z#bh}O3MKgRSYGi_CL%(bAuyD_TH%J?VtkA(luy&O$HTy`kd+8plwy<QFC;*0<rxj=
z>TO78U6Vf`$-)WWZ3w1O$+EI;-F6URYui6~-E~R~#q8VFnI3i2as>^9(9^39dTG`!
z)##hq2?(kTT)M6~;aKJ?cnyT2^8@_YW=gS-Nads`G2_Wz(_IL0E49C4qrg}5H{a}z
z10h54HE8m*+m?AA-Np%=<#L2ECisD&$5?g>HTKJ(g57?(sO1ukcF^A)R^7fzq?lQv
z@fd>{>JM@0MfX$(tO4h$8|%qvEZ3t`(<_EfBcIF1>2l?u&lz1AXtdwLYp1--hni4R
z6GQX`{Z{j3a)wrOe_k<`4|8_zsSL#;;v}fwiItn=C7}u0OIn!N#1RIaSJMFnu*{*Y
zXLWc}K?)l2<uXs`ej_XP<V7l$rrQn?&iAHWtO-W3$PTA)XYbjLCafgRpiqmL@+uy8
zL}3!aYc==3r9o&@!U!Ek#BHkee_D30&|EJ_XvO$0m#H0_m(kXBHU=pve0k(rWw2Fu
zv-1CTZ<xAAzcbo9I6jls)Mto0ff@RkSIS#Gg-SkiI<>hY*vJ$ln<EsWe;+G%#{FZe
zxb=fGF}q%0!nfq+RJ6LPj@OeV2bI-;gdGS@MAwA)L8pgH{J}#P$n!xhVdi|2_fFEU
z{d?YUZE4)u&4M0pyy>{>&=I7{Ehl&<<MFX%aBtyqL9bmp{6O_H@q<%}e#8ERw)9!&
zU1!%Q1^<I#0fP4i`nHqt^swBXr>=){vhSDwi-Yzp8YuT4Lb-q4-j3fpxVO6-S5s4S
z&kD-8XXW@7+MZeD(hn#amVsoiEOdoAY{Xhzl6{3QLC!~H*J3DuB!s#p&VegQWQ!{>
zAC?lOt>4)4RKS}R?1jWSQ^pLzO-jL3RFLt<rA{Nr%rswafEGd9En!SfHcX~l%06Rv
z(4v!p+if@OzF-seyWd8p!0>u(Pp03v(5mck?(QZ{ODi^^_5RXFMOC+}8u~NFv;na8
z@CGaaa%KLsQotRrO<(?3&f7MZt^V(6YCek%`5e;Uzb6h5B&R)Hq|&b&Z7!86cAD>w
zKIX`;>bae7+kN;D9#kTRx=A~#9bK?zvYDe7==$s`U}C%z`U|2stxOT|PJ48*fCLG4
ziJbB*YN7WSlo=FCU%GR3x0^!ONcjvfYb4+6{N8r}_;m5;H7QTEF8u&oMjqi)PUDwF
zM?1UtUQB@;bMv9$nVF<d805S6UXK(As1Z~7e4-h)FOO^fX~NGq=;#y=c9b5~TP%rl
zvl<@?Rn|ZT-=-wpi_22D=f3$kV!>!MPtTb2@)jBBV3R~=Shxx#r6eb0ga|9(;*#;T
zF4cJ*PO{S%=`@2Je`!X1K*w*Aw>!0v8Vl`Q;&yjeIKPie1lkH`XTwUv8qdkM!5(4S
zj;YrlhnpyQ@4hQ$TbRo>79Y*VbrKIkx8>4yZ&Zx;6yQni9V5{4_0??CH8*W}hp$xX
z=uKh*>HRHBxkIl;$;7fl7DheHP<^eAqo!nCf6xmi7a{LcbO=!Kaf@QSOC}o4t-qF`
zJvO?aia-PIB2r#J#wO3TOeCdVJ3rkjNcJ>h<-AM7b!5=+`%AV;TIKA^_ebys+?9f+
zl0$JK&_c(pBQ4F4IsA}MWVu_X=ugi%bl0Tf)pKYCaR#Pp>gW?3WppaEA%HU`y|;*z
z_gm9ExZUwyZ8x3Ao1VoO=MZeuPp8oBPf)g?DS;(tMUC)!x%PIlje*v(Y#)Xno!B}|
z+3)zQ4{u`lA@yi+C-q~G83^bPT@y9BR!d7Ih0J=UN3X84Yp6?*vpOTUWlL)%r9#ZI
zD@d<d4nJA{O^l|O?w^>sX>+|XA1JSKSJ#EkGai`8|6fC9$=Q9X>vh9i2Zo`QY;4ZX
zbGmb^UUB;EN~mdRSyf3{)9LH`<`D?|GP2gnFu~`v%9R(iZe_l6&pCef2?#nIwXiN^
zc+CAjVVeJtrvLS8((m6f`M2(GY*hDZ24H4<Z$Ec%5g{H<$m@)`J{WJ_;}1u6t(TS+
zr!bd{@Z9y+;qhY4>}UT3>M(qb*UGf*&x?wfY2ON{RLZ1lxXvnHXdkzFCT*Pdn9SO@
z4DoK&oDM0hqGG+%_>h=_GI<}8m8e#TT{{2OSGq>#|9AoLqzNntwyYYSCk`y^1CnN`
z?w8~*A=kIgIC*KrDf+M48AhXtn*cey4+Wfh(M;w2w|1n#l>ZAqc|DE*3gXBn@scT6
zkC8aj^z0kG_Ydth#{@|z#mwz%?P3%hqE)*Kah${{;D2po;{JU97WosIyL%gY1XT{;
zU4icG+HySR!^O@K5~eno7pwVh`1a)vU#1tS`{}fEw#hQmV!2X64?hBK$@}@j#4ryr
zrvMS-l{O{<N03R(-zG6WJ{J*vsU0gs+0>|K%etkLY5=cZ==q;ZNSLS~TX*|eHp#oN
z2$iIfI8lcU*X=P@Od9ptmj3p@`=pac2vae2&a+PO1DFl$nO9`n{bFy38fGOg$lu<x
z-jpv=(Zr&Jy1*o6O!`5)=v=7e*cSR+!6%O;@(em3BR*W_txi-G&btlz#e0V@{>7lD
zc_7{*+ku<YIR~zS^ZQ#e@aKz^5lrU^*DuR$A>j|CfxkFR-oGt+NRRfp%u>Vj9H0pY
zJ$y+6yPioS$$Myt;v-^b)|pId3AstDnO704t%-s3`&#Eeh?9AoDly=*JJX1-3&@Ur
zrRdSaxZ}UB#~$SVu_KPjzx{rR<Ngxe@wlL-$zYK#hwG3v=Vd}EfqCWv3JUOi#LF4d
zDlwHJaN9MqF1#N)tv^>ORh_52^wE=e{^5X#l3RTy$T0ITrl!1J&%tU9k^g=EnvQUB
zefr{f@PI0YVA0n!noW|R=dIyhdX2vtvbqob*R?O=NddM14sz3eCF}79Evlk90=h+9
zio0Xc1S#w2n$M%zL^p%$7#P`Y64*|e&TgGs5?&jFg)=DlIT>B+$(uX)Y{^y4z-w%K
zbCh)r_Q_7V<E9)`e=>aA<(>sl$YZ|D17RztMF7J}_Bn^P*A^0Jy!!WIs3t}4{R2m^
zPvY<O_fQ#+f0Ax=vXIF6ZaKgNW)v!Y?-R*;iYp(1W6OR4s+=d>G3!XN{m!8$QQp;M
zB(3MMzP^r0WOM)an-@gk<{7qluNJcYkWA3eugpZXV@Hf#lP2c`sD9C5R#r`G*5o#<
z*q?J$NITl;q$kD;AOopZb8WS!<wXChPWu0=9RB&`ZNQhpvd$GdL27Dh`_d=-m~K~N
zbVED4x@%vM*OT)m%Qy+eCKHuJ6y99)cO6%4-ZqDZ)$5DSLA0>X?MI`xxMLl#qU>BA
zY7BYA8*a-Yfy2m33-lQN;sIPNG(5r(2gb1eeguYV(g?&Pgt#GNCO^Pm%h2II!v>EW
zqQUHP)_L}mOpI}--ep6#^v2{&e8S|h&imCZf`F5$CR7gT%oS+-21boUUpt;o@2JSc
zPWuQ<CmuB+>)qWw<oF)(tf&mn&sPqO&J$TQUw8_TN7nI{Kr&&HTomjXC6_u>)9zC{
zMloJiWFkAw0AWcU0`A4q2HbxffXC93#_Q5_&i4}yrcQleuQ^tz;HUABz*F|_;!NJB
z)!KvDD(JZY<{GU?v03L0a@II)toiHq(E7&l;=IbXr~5^C7Ncyn#khc5Jcd4fA=?wO
zq4s3M0zUxX^<J$-%^J;j(_Sn+$%-D^7hu;aLtdHDNiQ+!{bwUkGAx%P@AiNzCu;b+
zFrfu9NQo6nFn<oYNpM5yv?4OpV$xtgoPEz`@KuiWSQ!BZwfjB}&|vpAY`LX9Eb&>Z
zKi1A`<q43A{d~%CT@wo&o*P)XRl0BvK*+kH<ejE5dj$i;{Awc>W2ZP_zB3}?5pf1X
z&#|&nb_7}e)pY&P#d$rbMbIBQa&q<hy+1=oKGKYTHo!QHI<|HK0<W&L6FJ>-?NA8*
zf&PN~%~4?u&zZTtzPu7?aSSn-4Y&-$`=-|geV1V;faN%qD?AV9E}$0-3F1hhw#SER
zmnC=H0v_)NfQxyQyVaV-bIyg1oK)+*V6h4U@<VBh)P*2^%9SWdLv6a&=I5sB>=}3E
zUB34p|Mw&4e>;)>>&Ns6q3!Nn%jz`k2QK%skdE2aRh`2J1qP3?WCnJxM@M^LgaYJ~
zer`+aE(~n)f+0{!lO^QVRnt*-UM8X6W|fDMjDorPzfbt*^D4$nsfYcVtlPopCsjb!
zW6#n-&ZniuDR7m7%m%&-fv7fnwhGUdTzcvN<_>Fa`&f@;3=@F1UITM*Glfv5w-K+O
zyxgvYCoXj~XUy*WN5Hu+oEt&B=4THb0xo7vcNAl$AcFYCY`ew3K<m0_N!DA!i|(Ok
zxY96W&xe9MVi3<==-{ATbU&@HDIP>RVUV6w#van5hK+?)8Q-7XRhfl>9d_BJf-7GY
zz?g?qSZ=sCu)jJ~@^E*wWrfL^$;j5}Jo|h!tk<4c$2G0FW1Gq%j!h^fTVjpxqPU;^
zEw4IZv4Wph*J5^xm;3XAL5;jJ1b{iR1H?_?vt31lDN#Bt8n4|;CK$3^vPZH?$1I^}
zM27;@C@(8Y&W6p3DyvEkrFP&#LN%aq&kN1+>>L>ZYtunU#9l_V3-p9a@KnOi|ER(R
zX@y#-u4Bhc8lG8o>>oVY%m#vjMP~LRBn&I*n{PriY0>klI3MkA*AG^@OFnKKf7+=D
z+Ez0tn^W8<;hs^QBOIRFtpufT?3V`DEpI`HyZ7p-4ZPO~IV<6-^sLc#DXE8sW$UO{
z$HzT0YPlM(#BrR^i5_4Epc#6G1T)1)PHT<V&%5r|p)*w5H=P%QYi$cGeTFxd#xcLc
z{pJ-ZjxzT?A$`cOU~oFY!p5HFzr*DV=XA0@fd9W5gq~#idKF1{Y;<P5sH&)>&Q|NR
zPE+VJh-6x?G|Rd=eWn=e>+KC(U_(HcC25+9{7|K%saAfH3rKmz%k#$%PA2F2XsYdQ
z&hs<Y@6&rfwOe{sQeJ1rR?dBGq-U%ym{06PO~a2^(>O2T`%~sl8TgkkWTXll5np3_
z6}q6|`#U>#Q7)6~`!T81XCzw9&|&8}RZ$2Q88$XvhjjVtd~_Di=RWGaT`Vn2GJY07
z{xwCzQ(4aHif338Ihu$TCmuAqn2}ijIEk2}jICMEtZ4hleZ5<r^~v-IGRcvp{sYb9
zl8Zm#%V7-vH@l*T#eue~J;o05b=E6)dpjp=B7Dn(7aW0v2`@+grhFdT_`U5?&ojnB
z4@ZMKJHqlV?wF{h67Th1WbH6wda<jcWRecDTS~#r&r?0Bfdp9lERXB>#vs!xw6;f<
z^h|6Z2l6Hh)d(CsU)d~|2qEG7Nauk3)jhsyRIn&qHhNCHWTgWwF34AkVP2R||K<HH
z=Td>&;L^rW$1sJy4YgH67pcCsolkdGhlle#j&>n$W1xt_*NBq#O(K0ggW}YgCUcAW
zs?OI70UU;9$*-%-S~d^y(vOnp**Q5WXnpNt^;x{AV+9X6g@uytn?c$%%zs{Q48G`n
zB`(^%0?_egijI;;y&)cFOfV{)n$oggpiT0<%R4=yrb3)dZF8HZQpy_s3XJ^!&@%py
zo7DgOP>B483j9xTNx)(`*>Dq=xGL=9l5~E(?;D7IdAU2m3d&n7k-KBf0*zBEUCH(a
zp0`=v5-nb}p)dtoCW_WhSSH25LdujWuf$+<CibFi1tBWtwBnP$kVHwgM<~<)Ciou>
zY*g3R6~o@PB8MQn0^Hf#^qGt8W`6dilb>qbcKO1!V*~U;se(}Rsvtd~scxTmH5)ob
zg&$}^%jNs_fD(5>LXNH`Fmqm8R(8yNYP&UZA>P|`%q>YWwi5>!!02u)lIhY_i(}bn
z>W}2ngIi2?@!@=Rw;|mqnvTQkrY|s_G$e~8%UO3zs47}G*((wV4vAPhnmA=;k9s2a
zrSuZip(-X5ZdS(v6Z-;mx4QKXIi3X2d+npk!R?(-cr^U5kH|;ly|}ilXZDj1=}Mx*
zR}Ms_q_FH;%MQOV$i{gp>PUYyI_0RoEcYrh(bI#+^YSNnPZ---S6(}t$%ecEgmkma
zL()yXvZ_2k{={4*%|j`8XOFXIJ2;`h?5Y#H%<X1q_>aX&Q8ldy>x;(xwDrkN%-!#r
zmVp7YKr=0QrFB@Q&RMklOh^jD$~Zj66`KFa*Nx|l^A2m*$xQ6Kk$;+E=Aoc;v=;!Z
z8x@$iA%{<ZV<+1_vwb!g%;rDTqOs5xwOURzZ7Q$rKM-lKU69gx3At!mwSaHv1x~|z
zi8s1!jw~5d-keNK@|jP;{4OUkfm;7p=*drffV0u)kPQT%nH-p4gEiPX7sM9Y{<P08
z=T&-PAVhzk6$_;o@bq~6#iMQMKH*5nl3kj8Hlrz-i-U3QR1#>l_b!HTY%ZKjWjmVi
zA8wiIA-Z!3TvD0E=l7R@I@aPLSq8{^4CmzYFf^7|n2!|4qfZ{6XgVE;ebT_#Op9?k
z|BF}!fSBsi5RAt^!;kj-4xN%pO`9B?Ep@4h3w<8E`um04x3%6G`23y?Js4IZiBph*
zs=A865;+MM^z;_SSJT@I9jzwgta&~%DjDhhee9p+mSH=tMhM3nF8D#M^ULL|)LCW%
zj7H#Q<hsGrne|k9lri1<crx3pFBz>vxScM`kcCAa%4{2}?qnN%yI$9`t=OLV@u``=
zl#^Pz+O%|n$yE$Z&l=b!FSd2bwo?9mUJGUbhMta4N5B2<#Aiovt7*7V|L;IRAX;5l
z++>x2IKpt^iQrLXymQRS!;QSP=Sp(`yP+5py4I5N>e-rcsA=`~LZ%bMxx#eW4ghr1
z5$p!StFE^qpfg8YJ^nJ3V(evHAu<45Jv|e(z#Ed6&FkWnpjHR*MY=gO1bMqtaO#CF
zCR*0yAw@+;7XuN%Re2L8?SLP)`$1j^-W+_?f9D)c3celsYiu8mOF|_ejm6td!TKa~
zrlY>|msnzwg}k&mKd@YBKMV5f=GNuJt`i|(OGGuqJAXO8(tSmL7+FL_<mYH2?WZ0f
zCQ(QthRB*3#hcgzP-ZEps9;W{b3{0wHGAqW{O$QutBQWG*4`3o@e7ua$1xO$g$___
z;-r87P7D8SSIjGrESxZ@1H{|$^SE6aTWaTzxKHkPwsSN9`G5s)Vc#n#DaG%wxt!`q
zNwd9dGV^YH=5u9sI$PKEmhUp?d;bXJQJXvg`F~TxapeE}3mP2{l`sZnM>4@z(}_2E
zG1f2>UJQ%bh#bh2zknRHa7mf<Ye-FZI6|PufXitx)a9W83VrH^TAttK?_F&|$sNdK
z$6StP!x%fSm6jg<MR(rRWXP^iy8HS54}_vR5J+!+Kurcnisz>@JtCNU+eROg)HQx;
zbD5ZZP-%jN34>*tcdolkP-hSem1C^lIWp-`YaBEU`zO@Z`!fo?2mgx$Pa^fWuf33l
zCMJp@*-CYKP-~p1>*#zLu%Und5ecbwxtKJ_z0SWCG}a*~=%PX+iy}Qv2IsIHJB5h2
zS)V$9L+lOe@AzJDNzj$HFzhfigg;<yf#z*gfErRc`Y;@s2!{an+QY^$`p96Zw=nDJ
zhah^qiB3NdI^WCq)oC^OcE&^5(a!vStan~TeG6fV;2WEWt8fKaZZA7O6jxLOz|_z9
z@5;WXFm^^Rob>QZ$Q+Hc)op$w-I{J9+MC0E`1|+ALr-m&A;1f|zFE+RL{t{zx64-q
z9DI;J<M<Fl$Zr*T>PTG_kmjrORV71uJ`+6~&&_tL^)L?2sLmVZ^YN$IYmbBhUj|hY
zK9A*w^m=<9x@-c1<Ru2OS-lz43gBQbjY{G$ivwJr7V__AOF5e3ORGx%NUf0}gEgyi
zv)>^NC%%Bz2XCtIW(ijykR0!fe=cty&|9sJ7rVANm_*b{O7=CLeMYc=@#3ia>(%90
z@?BXX=Jtz{<xg@&RTGe4dmE2sc2^aL^$}!ay>pNW!sEo+k*tm1-Bo|4?gmhi<;F~r
zFX}A?^pvaluUKOL8)s1)5YdPp`oR;$=3rc+rVx8wD{9Lst`8z`4MmeJyuBM$RX=@D
z>quesW}GF^zUVlXwMUT2ADw;J7Y{waWsA%-l8ASB9&mJjm7S;yQsW*3BAJW5!WL5D
zl2cM<fFyLPb_y!0=>Z&kfrW|jajQf$J3v&)4kRyfqd?yr*7&?w8YTNRSEc^$LlvYy
zyQ!<I1N@HPYSkHv)9EoJzlZT*^m{sOmyaN^yIXUa0dnP``;4X8OJLybYO4PiOEh4K
z9g%b`B8ENMalaM8+Lk0Tx}ghTh~l#Jj)vO{T~3hsu(R24)dng;@V=Y*G|be<7r$f>
z_Pq}~Q48r{@BX|u*nC(Zy#X0%RfAx(SgiN?nSfKKLl8|1#~YacuE?f;f)aBeW{8(0
zCSsnv4DC&1kcu^u1p42K<!**2+%`hqp9cAiZ~<A@OX)s0b(Se*zF)YxHSx=upwklC
zG@mBqa?A5|@Y%{e^p~3q{gU_lK^{4A{#*$nbf2*&4k!3(YF4^la;azt1Uf>_^Y_I7
za~kI{hLp0xfs6jIgsp|Po~;~ipQDwpam`l103#R)n2Je;;f&*-<Bl2{okUoDi#{$o
z@qx_4UiTt7sHmR|>!EeOKIX6rT4{hCu*oikmX_c|tUlA+9!daG%{145j=gmBE!o5X
z&TfG`92P1{@uLc3_k%w~*e3g0zxPQ1Yg_wtz-O=XX5KSHbeWfllXp(pZYz+*(Kv-s
zaVuaU)7>4nVume?mb5M0|JibQ<goIdBkIt}$_g-izOy_iekvXT>M!(q))Ju#l!y<M
z-9iC(qcG_1D*7cH)0Bq2$O}&+A`(2xrXF&0L82lV_()3l766my&tjem$Q)i3CrN{F
z-A6;es^eNAIC-A>%T=V+YJQ)wtFD)qwp>b)S-gi1McwZc=u-O!F1qsD7aOK_>93M5
zk~F!YesEtF{Tbdnd*$Tkc<0=-)biG1C^Dmqi_l|=Ats%kuAf5PCf8hUS6kUyTw2>Z
z&dyxY(q{I7Tv-&4Y&X5w>%VQORqMaW+1+Alj1DzG?au)Lv)FzkZmpJ_KZAN_v1K_9
zS<QBNhEDs->JabN;<U<^KblBeE`;BLwZ~H)7mXLo(%&3m9oQ>^Rtg-$57PO0S_|z_
zPFJd)v+gIrJtIuZ8!oq&4aMcxuWTzX`#EDx(k8JJV7@CF!|6L<iCa@OOvXi5SuP|?
z=^8QUA8k7=WSu&loWTH%BG}im+dJ#$?J;HaNS_y!LAR~vXysz)F5fKsA@TBRY-G#S
z<aOP^hfyj|<Ob!t(%Gj3m7jZeE<}@ySL)fHTfAS~+aC5Zs%|1b?>jTvq^-rq{Sp>J
zLj&yMg>#Qc-}KHTsp}o?4&)!*h-i6|ph=#3CR33reMjGYc{DC!Cp{a2r#-y%OZ-#G
zMA<A59X|i6LVKg;O!-f(ZxNU`Z|SW=XragE)i}yBmUy)&n%lo;PIjw>>m4D~Yr@LF
z_eLmDl-~0lz^5>YYwvo#lm<K`h3|t@MJ9i)`8Y7LgX!{+3{(}<tl1%~;64l2L{?$S
z35rRaFK4nq)NkHgg}MijyWw@GNg*~K0FV-kx}nam_{Hjj%uI%G#0?LsCuy83dP(5A
zE@@d=<Z>k0^mpq8h~>Fbl7Ud^-fe)W;xYSrc7>%xE*8KDST^Y1K0jQUpDZ^$5)f|+
zA#C|0G5!e@qsiS$i|#ix@NxvIfl~fMG5)V!udPqn?i4SH9sa%~XrEzv8kor{N~HGm
zTJ4LHF(tNR_%4CKuYi+3qNq*P7nIk7QTW_a(eR&PEcc<NH=v<hhf-aA@IoyD-^CGB
z;fxeV<6?@Z=RFiv(DjuqLiVN32r3PrhxvOG_<uU@^tOr$jccy*LIi64zr_%JH_Nn3
zbc#xt%+mg1xXp3B=2F0+I7L@~oG(f1wF%FAIn2mzJd7@N)cQ@c@~+2`klT7$=WMv1
z4rDkvc^j*q&R$lLNE+a<f2g6M`B$3B%S62UeoNMI+5Dx{pl{i6GiYdLIIcv~PL6st
z8HF%?hPLE-?z<44+fkXN?$e=)T&)2RB!;!S>n15?mN}Jk3Niv|2_+>c{5e%D2(Dn#
zAX5GCasQpR)t^HlGK2QbV76;7v-po8?S%T!%Hrs7b)DZCOsi+fG9lpfixLi-bb{&7
z$+l~i7h<hgG>NFL9x~VG=QaB7-H-T*vK&f@<=OQY$^qm&4-Cwq!wQc}JI^zvPxz?H
z5FdTH!>ko0&w4YyAv*Q)2}b?|yd0-`)$Mi7t15>p3fmWKNd3TEA4eQ=xbs{OXXjJe
zTvT+-hH%r<O>X}(2ck`Ywhqp-r{-O0U+L+aJN?EagiWGWijAwxdEQfmaxXFYUVf(r
zC#Ga@(+M#s?dbaKBnk7~fLe>*H~v9^lTwt!B(Bhi<6X-t732^Ci9<plO&yg#8!v}#
zxD92G!Uuwq^$|$PI-{d$GGUXl(E!(!8+I;J&Q>JA7YtM+1dt)Z&tS93s=7ndP6i*2
z=Cb$kzWlb*_fqW&{>w}-;r0;CJE?9dCr>m!0T%G+^xnuge96j?>IbrD5s`@n6kaw9
z;$C}X8_hR6ptVHz=Y5B5xE<~127YA+2-9B?!fiV_!n+>!&>MJiuJrdkmS^hC(VY}1
z?tWC|4-vhRd}z_R?-s5VRFp=&J^jw}pEsYx8Qu4C3`nvreGO(-k_@f$$S`a+vHNbG
z=)T(7=Jo4ACtdy3PFtL_jlvQMi!r0LqSVe`%V$Vko)E^9zR`9=AV<IMB9Ay!^_G3=
z@y7vBoE8Id58t8Cza!LiA;wy9+uueRCEnaQ0A=;{%iYFI<Y%@~^719kjV`aIF;#?L
zvj9&j{igb|9TraZM;P%fiqTrW6I9>xLi{BCwWj;E{8RNfox^FgxK(cd!28Xtf7!nt
zCK+FCiQp{_<=xxNz?5`!(j|Uv+aSAb$8;e7bq0v}6>>%G2AmwwD@gPIjCL@oNx){R
zG@0=TxqP8$BO8SIis=*4RI_=!0Q{c49Tpz~<{!S^g1(kYiq3t=Uw;mWCdNDrH3G>x
zDu}39NBoPtXB{(<A0GMU=Oun&MY%B6Vqv^{=eH=9>;6hfCZ!QD^)klPO{4BUbSTKR
zh4eE}SaDDV(nCyW==VZcWFyT&N>*#M_F=ipotDF5B`scg=3r}RL!FqX0>@n>pNLw6
zISCu5tozArSdtX`ES;d-4S;4<d}xMqA8#zDwqx|Ii{NPAg!}Aq?G7i=eVyqK>o$iW
zLx3e|UUP>mS)eObV$&i<yK&XHW%9Y9WO=*$WWC<5grIv{DeynPdZ6}{Yq!kv;Bq}*
z&unD&?}L6$X%)@RYNo(nZkgr0Y$Z@7`f4^{V_@QLw&A_JivzQxL6wvfCP*O9kQy_~
zUNV@|jw?^ukH++QpAaw2*pcs$s=uCfLzUK`%JL@?_j!zsS&(ScEK^OAA*)r8av3Y9
zg4h_lxLD_Wq#El~K}YpOgnZXnZivmQDD6m*<A7$`^)Wn=swi8O+v^lv&Q#G?)EO^4
z&(n**9CK|>s{(WVd#Dz4K7!xEnle1%{yF3o!ZsGY!#C?)j-o^;p4f-_{*!j5Y>-2P
zeU5fw+Q}k)?C;#<)cI;k%DD<rLWzyjB%7XE?T%{l)}I~=94e4=VEs6{O*NSJ#$^cJ
zhd0YVXEXKj^m5!}>+hR?GVqjQZE7_tROcR8;!cbuT3mCEfG}N;nsqO77-3tx&RxNO
z>UZ+-V5gkFrmW6K?xgDYo8)!aO?07Tu`_&vVWyB^P;%h0WIC%#P#IG}Oep%apHhLg
zXS*b<JtSXD)hACmJN4L1H!B3nl$u?|h-sCGiu;MD!rp*gQy5u&!r@Iw)EXr<>%+Lc
zxs2~r#tkZz?2Jf!_GWJ0Y?3d1dHH%+=oEcaHE91iPARG3$9+|__$t4B%v_b(Mh(cU
zp}YfnOfr$mqEClmf8XV`^bSje8lU&pgXgTnsL7s8C33@UALT{v?;Wa2Yyf5Cc3%*{
zS`>-GUnpv9#B4il%X<uQzo_O+3J2;6Kmx~p;@&2kL8a2}+-86AE5VsN>JGo<^Nj(+
zUoeqZ0}AqSMn%G^&kIr8&gr+;cx}5Rj@!x)yJG)UO8l!R%K2fkcwMMU>1)a0hh-N#
zHX#<MzK+a>?{b3?Sjj4X*zJ}(V$#1x#`9zeUzp#}mc5XC(RsD*e+g@Xp^`}zx?e(O
zd^~^dttHLKfIL8h_;m{x7LjUgFTZIO@5CU#6DsYMmjV6`4EY<fX;@S~G%kb4!qV|p
zUhF!S&S%+dzNL%mb6(6i1ywf0*UU{I44UjY-z3RRKYz}Yb|^roaR_ERJu6FAU3a$=
z+G}TjE&fL2jm$6*1e8H8j9XqD0(7Tproc*OA=Ra!f)ptHiEjkX{x|Q$&{=+SX|y@g
z8VIWua-MPguwXS)LVJC~4Wy3}FCD!Rmva0_reNsFpsl4;seOQ@rj_3(H5Lu}>&WE;
zy^Z(@2^Z&@dp}J&_`Qyd!khb%bGgAJfVvm_zQfC5-CI|!(aG0h>S157@|C$>Dggt{
zk52)oV>^1G31S*pH%&CTl<jfq(DroNLXRcVh!yyrXoUpj`3h`7xpv%zCj5DO@I^>d
zv$eV(2JKTS&0F=6SA=%u;^&bGa*%^Fn~%xjRV3aGp4Y{I%;?BSOaAQ{xEP2=`^Hdz
zd%%1>X9Judnyr<3HgIf=zceGg8`7*dpHwRm%ytI@kp$v<e>+Sbax<(t=-H3_Ty88|
zm1P~q*ZDeK;Ekp!vwb<<oO+>yN<6`J^<12xM-uy$MGvNk<7)FcftJW#{Uq`eo@XLd
z@LUAzBFk)0F^)_#J(x$GNml}O?J{!1Zo10rZPU-Kk*DoUyu=J*g0!(i!Eu|^v=dfv
zz{&o+d{<FN)cW)u6(Txg#)7~ViZ#@}O|t|1P!9D76Do#fkzd2iaUFUiHzYA6w(e&q
z{Anh3OvQv=)yFX;?J6JTug_@uF?%-P631x$`D<ACZAwDz2ba^S{+<qGqGKs5qkd)e
zSS}K~rG~+YFw`KS%Jmz$W~W}`<?D4E6_86eRSHiLOJA(_Kqok<{ZP%JN=@+{i^6A2
z>^s`8>u@WhIUbYx7R?*3cfUGj>?XEt74|m9DrsbSRGjj%=VCg)xs5V3H<JuX%=hj#
zUcTa}tT@BXsh8$wJ9Xeyj5?o1l$14Os@gljtO(w+7<M;PE}T_s_&}FdA|bY24{LO;
zr>j_c3wwZYq>JoNjH14GazawtpOmz;3Kh5P=Jl(daTD@yd~&}~kzoqVZ##ej0n|}Z
z?H<1FVOw708F7cx^4YxBW-|tpE9M1cW&NpY{eW}~<seJqkOM~WDlU@W<Heo<0RaYB
z<0SvSy&?ZKuW6=PC<>|sg2^mtw4^L_B$BwPD3nFkniK!rD}+m10*(mV)A))a3E7w_
z>s*DNQ<4NJ^M7Xcj5koHdufRaMNr=(2aIMfZmMKeQ&`d^9Xsnk!K-S7hJ|xNg^Pl+
zp*fT-ca7xzWGF{F$aw4u#L{=lMA}MZgKzQs0L~0WX|q@XA3MTsu1x9C?+H_y`BFvl
zwXcmOHfwEp#&hPIFg5Zy0!K!Bq6AmPMMa1A^HtisgHK3S^Oc`(&NlQt@?dOww1DdV
zFqAx6AsaRwK4XB6aMm$akT$S8CeIgWLk>OAEIQ-XVP}z96=R6_MQqqEgDv?^g&cn_
zRA;HlBDK)75uZ9`a9Xqb!R%5|P^3-?XThRAXAUBdLI6YE!7<u(eYgV$a5n$V75-7f
zUd?KFWS>LeMdXDh`h31Pl2=V{n&2NIZyO<h#ChhLzuW_>0av5Ukx4(nYktdwD4cl$
zf_r=|&L>(!RFu>y5iUQF3BvN^pFeKCpd<G!_B^42oucr1pf70<6nL{q{0NCvWg1<>
zj$qcIx9~f#EDWpr+?ae{+->YFrRl4+SC{d=bE()oygUGi3K#ax0FJ)KrfBfTx=FgD
zcM$T*5|(*?4sQWbU2QmJZ;%6gH|lvuV14q?BIHkAKz7a1Tm_B{24xh9!U<ZaGSlZ8
z!Y<%3sI<#{s}R+g{c+j%p1aG`&m-i>W<S#*`gChQCnce#+#`qlP``7ps?4e8H8DP0
zc+5NNTl?3ls6tTeCGbR)>F5kR4X>b2XF0PE01*h)eJe~}XRKV6PWHvDjlanziizZw
zW+5OWNjt8b9B9T^wBN1D!{EpA{>brp^;Jt)tvC6q>v>VoJexgMEDI@vf?TG=zyOUz
z8Xb@Sw15ypf(5M~8Ps&V+?14VW}n0x%djj<jrqxFisZWGU<`R#_j2^+`zWQ`Om6xT
zNK^F4PE38d*$$o|y=D9Y!s8)KEZCa$csERbE`f^gjc_vd;T1LEwqB$Yr77p4jP~8#
z?~y2cnxHnkbgTFNhMT8ed1|^<GolP=Vq@|CB5UAkCPAT*s3XPG<*3HvXzFs=4GfDy
zCFG)CY0H)9SjX$q4;jtqDj0OV@ka|&r`Z^Zkb`lbWaZ83aF@57mzgqccUq`DPe<^0
z!D3>Om;pzxuaM~?N?~2xv)nW`oN^{Se*Eybtvx26!ZX30p=Frx34G4uT$3?QGyzG3
zK_M>atqCgW!&;5S^h?eC1_5uZ5mV}`Bpy)Rb8(^l_|)mv&+Sd(b%nlvA9NYA7yv7L
zXu^*Eo9bk}6RZ1moAWAo;c|DE_{vU)o}h27whL0-em%I_vf*7ZTedN!3xp2s(_c;i
z>Kh!SwTeHSzQgL<sqM67kqSdeNjt~+&r9GhN!?(s;r-OvO?D~%y>6{IaQHYlKU1Hm
zIA2w{Y`*Er@z?tCJ`EJSP)X5bdoR)ciSZudHTq)Gh-H&K+hrcsHJ)=vwfl10__+uo
z&A(|NW#QJCB5eo~XVee~yEGLj?n1bFCE;i~Lr%2spJ>Z`sUfsMzX$zI?E9u<Uo+PE
zq?9QiR8g#a8gr*?F8nYgnn}&bl4PN~{}9U#J*!K+yXqrQH6Lp10lS`NSwOm2Mzuv_
zi9xDbuymzl%IFu<(o8oMp$H;#-Ov}?wNIe5O8stuEZ40ty^P3T(hsjsXHTGmfmQ!s
zi$E_T1*A4s3hes;1qdHZO3QN`%hu)9l{t_e7}!dwVmVzH_IUq{B0I}=B|`t!@B@Gh
zgi;p&7~Fo|ieM_9k>j1Hutf;j`a_-LxwV)*MC1{<++te;)pNO-Q=d7QDnO**IYmA4
z0)T#Y&V#d3#R8y3x6fx3_z(<{U&WXSMkSWJ?>TKh6Og6i2HL_-NvC06lTl3fr<0b6
z%6aZk9Owhsrx8hK-Bp5OUUPBdu^aj%*y&?rqCjohsqm|PCtkV~7{X)Q!QNT!jwX#7
zO}w<}RBi+#<C|jVfj9Fp1HUKy32@&mzV3l1c2pr18I(Nh*-g=}K6^V%@O&!Xs=)ql
z7BdTN?Gz0EmYHBs=`XWqdXRH?`sv94ST*fx3anRea<J&s4mg7v<b#pjBlp)kJv?sU
zcMVth9uEoxwwF3WaCt$3B;*&kLVBQCA~w@VJ=+cE73=ihgD2nkZf}0ooLCP!Ao{<3
zj5b5ut}q!(&QvA#W6@Er)^3^n(7hE-H%y!dd&(^MdT)dWz`&<wa&joT&Pyh0-dFDe
z;rPsI#Uro}>wXTlXZ1xf4q8{JRngPOVuPnDH5(Ea!f`55p#hyx6045q%dxgm^O@p9
zD44+K`C=Y4L=e1>;RXM`wj|p<+!UN$1wMHY{@M4!8fNr!1MvSdZ+)Ko9Oc8jzp1wr
z1_p(IP!*&D+=;UVvy~%{qf3&wUDPT5?dgE=Soy-U6+Haab=?qAh0iTl*ZbD6q5k%>
zF6qyoKR0^Z*}T-Dlx&g@*MbC{FOdhK*M~Dzchn`Qj{31E4hMjhbrs97+gI!5!lAx@
zV3H(pA7Ma`z>Ho}kgJ~y!k#K_HhBrhTRx6;&jvHEaBgH!8t2bHB)vRCp2cV}Q1~s)
z{<hyELR$pf_Jw*msTY8A!a{X(T`}Uob5xMR9#!=fa6-%y2N=8r-RaR_M?kPa>|Ym<
zOnqvj{XHCGod62E9%0k3O_5%_fsyKtOR3IeQG)qg3~IT?c;OLZ;<VqfD0ed>Abt%x
zU7wd5x$ioCtMd}KE^PA|B%t({U=i+hao~=I7(Mh<SJke2K3@zGjtTuOSFN~yT9H9J
zTJ3S03dyi(8`&?&0c?oU0k$ldZ}6e^TOS@wzqlS7ISTGyw;_1>{T!bzxoDQB{hVFE
zYAToj&hIC=@7<YSZ9lA{xoQ<g!n;?tFH{I1(l=WMCh@2f&c{p2a*;p?tx;v^?pP<z
zUp28ML<D4o?WYGb51E@b&hLRFlD~^Mtj3acs|n%0UyLz{YP+^$V~e~)2mv%;v)yR*
zgtdhOQn<E__9YLw_EW1}CZuyUx+3j~WLhLE&2ADxU&l>9lfV$!m4<x$U@v77k2V#p
z@T3`^QnN<aH&CC-3!?xrk}lVlPC&EEYBA@9SC25Vvmp{TLF*3ZL_@t(g?adM46oDB
zm-`bZ94}w<8)$#-<)y`V#J#tMm0|jh_|kTXmAaCONh?i;ZNFrCN(%iV6Qcq46FTb7
zB2q;_{P+LXWxa!O*q@wZ+)t*zh+QuiD=1i$EQQVi@lpeGx2m`S?HhRE$M7QhJ=08H
z7P3}OAB&K0sSu9DXg?=9Pa7rb*K{UPGp^s39M(goK_r-UR&E%0&UukngXoln8oO8D
zbu0*_4($*rIS<4%^>wRW1I`{KleP(C>@E_$A1xCRlnT~V2)`4Cl!D$SK1_X9N#A~n
z(=;5r>>k6i)%^k1rCku$-uDO%Ew4h9byvPfZcS3MRjqpW?qjU$@%wx@P77fY_OJVC
z_kq`Y+|}}2oA0uQRz1bIK8jIWp^0{$9F`DfW5~1S_*|gFhQi66Zq`kC0GrP=fG|~m
z=OsBz4UY1R{hIla;%y^*#wH1V+TcrX@DYYQU*1=_3D;Sqy9G&jCD@XEcF<rk7iYEb
zM`O0H#dYW_RoY*p>!XJwqO7QFw9t><S$m%}EfCZRX$uRuy*}(CW?U}DnzBI#_{Djs
zx4jq7h)08YZAv^t13pkJ!--IZvJ{JN6a9VVor_|Q9TUp#*>fe?er+uh)nClz3`6!Q
zv4i)_{T*Z%Y4@9GfXg<Q9Kl6Fq!E7<(64gt`xTk*@%N`TV8F%Q6(-0{7jk>18mK>r
z@SVea-fDwX&umAG?Ryv0026^oRCAm|p-9;87t5A4a};`kaJ>oJ!YbBPg9r%fBuc49
z7`wkG`L1NZVUIWzAwND+@UN0nCsECM0TzQ0vyaAxxGh6fR)cTFzH;&nQH`Yb*|E>0
znE*E`A{&TKGUfD&z9u0x%7!ajVvnt0K6}H|?uQn2(UZ>us_98z`gTR|P{8k!ft%`-
zwz>HupgH*QIrWCTd+krLkomZ)fJ-kCm?>MggliSdHpvyh<8)LQrcM&q3*vifjaGsB
zN;=*ynOzkvpc|V<!jD6!dbo5lCz@SVRh-dj)@ft-BXigSGfsg2=q7bv64swAG+Zti
zl|)Exh|MHNBA5OHOyNvt56`wf^fBdfvLQw&7-=44eakAEmEm6n*5|Q7I*&?nig2r0
zTSiG4(g@ik47th6@caD%wrsu2)F|bMW+*B!w4>emWcrLXcJsUo$#l)vlX-B#yJiB|
zrpV;ZoW~DI_Wg{_qnZ9<j4p?-{56j|>%P7JwTF^;WV`l$l{v;h*4NIo1^Rl|jZHfn
z3H$!*x@*CCq>RE&$1=G>S9;~GZW77|m^oCxFbrZP{WJze{b}!-wcGp<>g+{ruON0Y
z7i=46YPn3+7ak(x7(gAydBXEp5YwezoveNUr}cC@F}w8_uOe_kFT*%%?E5`J$JaWl
zP4&3<WIr;LwbYEU-i}pAdcU_4<B<IG`kGNnLl^Q7wz60I;-B;gR+gFxo;}URuUhXJ
zXwsMy{_)#n;!9KA<!glsh_16f;>-fmF)NAx*54+T0`uR9=YLFk{Juo_dO4Ixxlqjx
zTEeX3Mg(er9zDM3Jkw&C*%bGSMi<VK+ft%oS!S}Qhu_&2ZcXfdLAh|!Qhtn8uf#*b
z_Ld2vD^W6k6_B!WfGHvph|gu#K!1PpjfynC6K;&k-2aC^8B*~rZr)SEzcEo0w_ej>
zyRWRI)%*|{DYmV?828MpDCN_<lE_PR;`Ec0xEO&{`rk$EI3Mqu^+2hgt9@U(U03wy
z-AuAm-wliHs%eLYzD~g-q95sOcwR-Rp}{U8hr5xW81!KkQYM5R)UfYt%PyaFJ;~AK
z86;pA`XMobgevld;}9sAtnT4ici@&HMt=OlKsEV7Q!G4(jz2?k=_~fe|1GEcQtt2o
zg&3NEH}u8jhUF2gC5*Tutp@gca<h^HXY4D|?LKqmGcDEzKN8N4`C>f2wfaF~(j(Lr
zpiYTKDtzGQj`xw`I~qe~s09hBp(tU-`2ofe9@nqjIYu=3T#)6L1Dzt3X50wC_UBLG
z_k^E-J(-plJZ=Cp+;}WXMvvTkR=h_)d&RE+Ilk|GNue6<s3{rADgLkzNd>IvU%x1q
z*$7!zWjI!?yEjgvai}lioxf2mG)gf9V}WTMlJQS`mC<jJxOuwo$zJGcIt<H5>hZ`z
zt!ZNFf-kpX1Yb)L-~D<U_7unxQlBd~bd>LRB*8b#D5K(ggtguZSo$p-g_2Yn@ELgu
zPyMNqCm|JiKnf2~pb-;@G{;R?C!zOujU~$E8UPco(r<r$J}k*`biX22`_;$)%_mPK
z@YRryocR3B1?rdY%rxPXncT`Tf>ct%L1+$$kwaLC6}k8CU^oAi=|A)NOMW``3}E?9
z(GL`I<^w#XvxH8widt^y8ve0}fXh+5e<!pp&jiYhh|aYo@b*sOo%Z4w0p=P=pM=EF
z#&^^E-*$%GiqVgWW}6m>u&cI;RLWquYIN-P#$TVEVcEfj*%}E8Kk@VA6)c=0+N{v4
z=_*Tz!FtH1w_$Y_pIg1!=gx!t2uH4U92wK?R$&RyGi=iw6v%j<=S4HwS~nQ~+a>%K
z>k2D0RAIRP3S;<O=c*yd4Ij)fh#qQ#yYL$gOu0uo9w1}GK86gp|0Bn|;dzvA$f1Wq
z?C-^1hOI@U-%wdecKJrPYswbUWvA%VISR|!gg+e8wFi!!r)@0isAp;g^S*>(-lS~Y
ztO*!j8iHLp!Yoin)YI9=-v^J!+)=Q|+|nDx66)wGSl32BB-)fQa^t$6=Eh=n*}nYB
z@?n2}8)(jNRuLo52@H`jW&7F*cLsrGBz<o@tstqfj<J{LlQX2M<rBuX9pTaP2L~(x
zcE1ZPB(FjE_skv8#ojDlA>95UW~=Adx275!BDCnK+unKl8YvA1dfP7Cdt^U+pFu9J
zlfK-ug9GpU0^r_~k`d9nXgz8&pbrn1=5<~2%0SQIF>v*Qt!g@0r|dQ-F6LeqbA=gh
zlx&Ojo=+Ur{o=w<6G_x7&tFBF+Kk9vFy0vgxyIj+X$snvsQ9PJarDbIitS=M=o_+>
z&Azk@tUM@1`}?B8T)tlUiNXA5clysJRZ0@O`ico-fT{+v_^>PUnxbmcQ@xx1Cz<70
znK0RTwKI{sTBnEB={KR6iB!;ogI<0IH&IKpq)vws3zl`N_~(7^pGi1P34zA>Voj|f
zJe)6^c0D?3t{2&J<r7z-E18R1rMbWZ=QAElb7bhD<fwEV`XnnQQ@|Bov+}Lg%4T?^
z(nv>(AJSo*<71zY#5_tpz?-5?Iau`6JQbdZ5%q=>sjd#Oo)Dk&u&xL7@;xV|@U5Rn
zj$mIf#jqx`)h(GIzNEWCnIFEuv)8A7npi%V&pPWDdu+o5R8uhhB%u9(im$P}e=Qa%
zxcoKxf@QVPiWe2WF2jhREyLDRB815WM{Ts9sTpsu!g5E{38Nt(k>s<yeJ93^*7ipN
zm(yfT2kdwKwjLLM8DXJGA;Zt_;O8gw&2(HYLyXr+-m}JGX^;yrK!fX<;N%QFv2fE7
zh$eCGVW?e8DoGpkMk(UwMEj6h_!dqV4Iwu?K)|RY6}!sA_fZJNAW~TD%|)axW<6fK
zX3GpW=kZ0Kh9Ru8OzL*+)g-Tc45f}y0^tW8ov){7fruE5TiC;>B*cE0V-#$ReTSh>
z@JRx=+0@rza~VQ3K@m!5<Sg03#eJ;_h8U-Um-Q9gjfmE7S>6PDM7qYR8YqwiYT;p+
zv2bREhDt`%Uu0ffMb`^H9kW&OguA_Y$Aw04{xMGmBxDl*<q}rEU0bCv$PoV#jx~8r
zNahC_;$HTTC@k?Q{n*Gw)A7{2l{YuEXnuLU2uQcD4&0ueheavuY5p~$`~pCythWv8
zfHNFig|&$Zrb}EFN(_EWJcx1k#wcb8;S_EUY1|A~da6D=wLQREn`SZa>DjkGGUxkr
zk3-DG@Ar`xMldwJaYF*h+?_M%U;?^$0~=%YZAl~%lvB1rijRfd<50hkVC0V;9yBpI
zsA#1^_q%nz9sq<u{YW!l_t3LNaLhKbt9EO5{<lXh$#wr?NZE3}a_WjQn;H}t<i|Jh
zCC*jC=+*CSi_5y3M9wzx_?jy;U@`0|#G&-dw|_gwZQHppf{xM?TO_e(|6k*}dK*o^
zr^JS6?<ekhfgBifz3ln5x50p#EIquH<RLA%4*dQ`*C*HscD;(ZbnM&8A9+u)-wsHF
zl=HughN9=T!Cl`zI9cxo60a}Gr3Ul5{Fn%jq4@DEjJ_S%<tyVh&O&tKQ3+SuW!ASG
zhFpC-;q*RRwUU3cO-}}mO9PE&<3>=!o&E*$T{$`oWZqg?KLHy;w2Aud-axp^a>4tC
z_#|Z(C%&OV(N^?qG{=Wg-KUhMmKBCrLr$*i5p@*jNRa<b+s>X0z?zdnes^*EDB3wk
ztCA+5MckTAEt_o=McGESZ0(4l{Spyc_mL}=O#Lrh`u~Ne0Tu=~4B`Yz%ZHJ){LmoI
z0G=N`WMJsh7Nl8Kzdsr3#$BiAlGSFs;m-7l4Ck$C*E8JNg~@gF09+!+E8pnjjt=m-
zx-VynvGrUEq7)%B4c!e0No@H(ShusG6qH$3;ONCY<H-^(&$O~Qc4uYiW>#HD2g+fj
zolep`DJv|mFyvUI;rt%D3Qv<!*Ry6!5-^R7&l#Mi(QlyeE<lNRl@wl7L`(p5Y7F}}
zdgKQ|FtP>>m4D&|V0NxuC?1QG=J;kh=DWyF$M#@U1A^1-gn?WD`Eax|ta+q0KuZ-k
zVI2vuIbu>!Wd9zjLv&=+`!O`BcnvU6!V?6w1SqAOlQ8(b`2c%MV$AjV)RKlmEYV=g
zhB}@UrCQQXU)H5}ssmmjl5NG8(@$q8W0xdTZ07%A?5(2eYP)3N;O_1OcX!v|?(PuW
zEjSzZAi*7iyL)hl;O_1Lg4@5|ulw)Oa?a>;wa4BU`(lk}&1Y84s+#f-38eX}XG5(Z
za6CPhX_#3tg9M~%@pR)M6H??j5~FudQU1j&<h^v62trFCHLslXkP)C@eY#`e_W9Eb
z!-!5+(yI;eJu+6~;E^wlJVyyPVp1M)-<N81;9PhZhA&tEQmoWkxfUWHcJF3E%ZRg3
zj1LA4D@t((KgWVPvAk>%8l5xKdwRy<1y__WAwee%bSvpn8PUd{b{`U@(3q2Jyo#-u
z@lzr5)Q%K|U1pU5=8CM-^G`SUXS#%-<>@O{RD$%7uZL#tydiCq;`zIFKS*qk4)qb;
zIXi+lVyuXTsXmh-sed+6_TiL?;8T9P1=hFd6*<1>_gVMxhVgToFyoxj1PBLQ#1y;B
zv9t!&4!dU0g+nRJgajR1C9a`bqQhTY2@YghmOrFJeqmRjIC?w|0iHhc5QBQBNox&N
z<T~N>;d*>ygsZOJXQl*6Hc#W&k?DlF7hG4|%(gEuK{=7j+T?3j7&pdUad$~+q)xS@
z30}2s>d&;W>Qa!^t$nw-ZyB7nrKz3}cf+XycT&kj3w0GHcPBt3{OnU=5=NQz-1F)9
z0R<&{&&m-BwFwqeI&d?R+Cg%4JwWZ?q^60;+?^`>surk<tcw<(3gegti?G0syfEV?
zQ^fxF7laQSPC<~4ZX|uVpvMf%S-w&2H2m6qRe3Z=<MhL`Y+y&3(yd`P_Ox)tkbJ$M
z5S>`7kZEwq?u#>RQ_73^om{odH6AfeoU=2W=z>b4KNY2Ck4TAv@S8iG`cmjPHLb?*
zih9PymVtqOhE#e{5h;6VI~{|H39*VS^x#6Nk%@+SYH)V4`fqO3gXL{(<^&T6T!I)<
zd=m`J%r{b!H(<e??nN|~GkA*G5W5LH1^>$-Q%V0&je&D5FxDYd_;|gIcXtp5OGnBq
zA-(7=Cg$o_fLIx(Aaco)aoR?*jO(9q+Z!cluoRfe9y{PrW)J2=<*L%7U*OQh+VvvL
zUta)n$`raGP0-8*l75E>rDv{ZrKT+Xb9Vn&xNHJy>k}ZNxC98PQ*h+y_>N!bj`CaR
z<?VnA)cWb6!=Xq{5$E*#FcGYz!vJ&)eGJMv`8t5HqrTdC{gi(QCv-?8&(r^k9?Tn?
zMBuD;Fe4QA9c7wo2%=UjGaK<*vB<m#3N30<kz(H|KnfLqdlt>ob9$nh@LHd@X`@OX
z)loD=BzOA~Z<_s(Ab|<w{C25XjYo`VG9m9M?5TFlroqD+wj%G6ver7>I<VY=k<u2U
z9FN872{RX_To<``iy^-zrT}^%PP%e-%sw<shI3bW4Q6#k9>jIdV4iUKgX~(b?Ce2D
zuGuGY8oFkN3p)c)dO4cY{jTwz<rtUBE`x7DJL^bNRDRDdETTB*1H#{@6uesOR_X^G
z6<&9O1XUPn^v>-$YeavN@VS-7`&f3;=eHt4q%S$-qoS=4@sGh;8ras*|8B~xuyTEi
zx?`<D>(|kPvVqtw<n+vAs1y~gA9{hd=icH!T#eqk8tEq?-d^Vr$W0>w8L+2&ALyf&
zM!~|O)zNKoS~rjyi<7dmYx#+~8S8f~XP_sgLP1GF-Z8KOm^FeCQZ}W)w)ftkZh^*H
zA?2U@K;zUy#tiD;o5g?oFeL($oRBVE+O)BFKB>_;a-fEb?XV>?^#x67CIXu?S0<y9
zZTH~oTD@d1T!|>%2`s-Olb4k^-95;5T^q=rxVJG;l^x84kW_N`bZCZ781dxDy7~&k
z#>w5aS~5;<mCTWp2FSuU&=5;VNDg7%#s{{s+Ws_Os<hMw)O}@wuYdZ#k>h1PFQ@HK
z%Gi|y+st%2a*@=Lck6oL9zs}JxK5?R1LQ4e0z!o66i8OBsYOl1g%fzuNWc$7I|;xr
zoySv|Th=kfD2FM?a$Ki)SKS+A48?Mc83{Qv06JN=!oIG<I)NLQKG?lM^kQb7kOaKe
z;dpZb=<u;UR#I)0arqra)~bz|GvWWw0*K?+{OL9Z@&J=V6;mJ!QPV}XT`0%OwOQI;
z3>}Xo*qKH`VWLWN9=Dz>l&R(HcaD1x{sdF6QTxU@{z(S)0K{TTCoIaEEF(sW5o#JQ
zc%SB>fUt`?l0t*fLtou0hH)oi2L?7<O^hc?bnHrT$mQ9VvIZoX8W82sw{S?;0&%;{
zV$u}$5}RMAHhP;W)$I!IULn`Im1pbtjrX0&BSKY)XER)B)OWLzcPH33A~gP~>3FtB
z%8f7EAQT2RvPD=YnOKrT8q~7uiOdid45<ktWuIFsFBlQgnOEF?qi-dx(nnOKzxx(E
zd9Wv5Q7ZfDoR%1S=b><VNXh!-A0~d9RwwbhQqhv-_ITp%D)jj`rX;I$%kT_v>WPZB
z9f=|Lvt~7=q;FlU6W;Dj5dFfm`3<aCY*a_yINf!6*M?eBBsq5Cn}`>aFz49U-avC&
z{8@9^_2V7xKj!5B(U1IVYW|<T;lk2{(iFRlK;w)n_RMy6@xkqulBz%S2gxYt2mBrm
zF(1RdXDudlcIAarX`^HsU6G{pSyH{`iszrm8>g2`<Gyts!}r9-Vt5T1acV$37*6)*
zR;fapqsbS=*)qL-IIDduI&PP}s~QQA_Ek;qQ#Wb;2tg;%fD{4$MfEWdiP6R7s{)6q
zfeMqF@-r%`2l`Lgx7w5Jv0b*T-3b=%6dra3j_J3iamGu)x>6j?)Gl4|$wf~@8~ihq
zF1(X|_1hyLW<~QSB};=8K~)6i2TH)vV@NkAWbe@nnBd^4IrlNH=_#n0eBa4wd;5(%
z@I)@ADWM1IQrcOZln_TnNjJAnl+V&nd8t5v6mK>1zn$c6>Puenr{NBoX9Kp$$tjE*
z>C~YQ!)JL_Yv)gv**g@mmo)Z<NcvnN|C~~u8@RazqWaC<sS_VkG$Qz9<Qa^TOsDR+
zjRG5WXRbaq*u&fq?pNtKc4<@$W|$jnBTK4uQtNP{UC1jc-rH0Q6XIFbAe!i_54XXw
zq`6iSVFx(hH!3bEds~EBB)N?{q&L*pClB|e2<fa8vy(mUVdY9#fKff6non!jN-t_U
zT*RASev<hE%)S=sb}EmNcIkuyKUwxx%Du)y1vopr0n+Kbax&$2?3!}H1P_G&{X|HF
ziCDv>oa>5S-|-)t9k#LuGu4<MsnXl~_E#^qy;0045thU%$?vGunCaI`;Z4yi8~h4&
z6Dt&Vce=ipOlEgarXtNau`%RPc^F4TIPCNS_D{cEgS|yhf0d2AQ2aUHUwzY>uPB}0
z_?cPl(1+R!OCzyCZDHa17d;wP@u^3Ox&4DpuD-ee_;RW5$J@gliUX>sD*st!L&U~L
za3CaSm&he;-F0NFl^tQYY<tj}{yf6jVpV3vb6(ll?jdwj0V?PlBIa7wgxwOrZn&YN
zR%m}mHILK+1guBgDY5@dC7H1pOX|ttKx3Hn3ZmJFOiV!8&{jwThud#nb10N!YLn1X
z!MY5>!2X3{h8vaib2d?s@p)X<-+@m0UcgC4yT!qP2oanJmbK0t*UTa8z5Yz6^g7gx
z6u(|i-D7&fA$_NOmLeHaPv~;VbIY$J;4ArhQ-NLU^&lrEJ&?H|`46oFV!R3b3BtFD
z#%6RQ2%H4!<jx#%g1G!cnh+e&MlY@tS>Ay)4Bp)K-*WKvQmh3M!6$rj_?jMacfaO1
zmrSb$zF+!n#=%@Kz!mKqTvK03uD`A)t}7iTT7JRsG}Pgz?a(&w_tz(E7O#MyM-4p9
zjYBG9?9+Bi^{k$^dp!lFVZ!jb_@{)eey8yZ^R?y_ABg>j3N^lvbXytjV&#@jEIi_|
zRk}0}2{zAdGaP@Wpbz$G0dZwA3-NV8zxp`K$D~tFQR?p5cqmn2%8LeRiVLP95wnv?
zt^g=b|I4NKKfdMFqta~Nr&iN-I}lJ#rl7ht6-#=rTClQFa9y2cFz+Og8|;<xY+<C%
z46rKrb|J^@$k>lX2DY(Z-hKW&MENsJQmj!+GqEWY{{36-eGmWda`J9VHIhD)GBPq7
zdUEj9@v>yw^$s@oadeo6nUq=RG70ieP$|GO{tiS92Fw5=S+o4U%Z#c|sTinA#><a@
z7$@C~&MpSvZYNh`O+e5{Zum)^5T=Qly|MI&Az&SPmMsD^@Z1~AE93jIx-`R19U_g!
z{b2%5k{t@RYt2>OI{8PyDV#GOiDvFzcJV_fz<2zs73%XTP~=AwLC3yCz<LA{u2$vm
zu*qlR2{*0dpTv0byjUsF1A_ik=kCB<br?Q4(}LR!9Hb@?5k^Ybx1EExmo=J2it)w9
zi&*41FmvahK_ngWCFRD%$$Lj}Rg6>8?=bJ!(Ok=oe}w(N%j+$>m8ZzFJH*TAmmBL|
zUq3NZVfR-t=TK7fKkX;oy_^E`8TY7rc=jXZxrK7A0@>C-5Axw^U1jUbt<Gk{WRFD0
zxYh_EQ8dz1S_bY|L4kuF6Rg9>YNZ(UE(JYpfwvk1tXXYkWUFY_>G{=q=XY&_I9U$Q
ze@}kwvPBg4(i~<;NKh5Hc;A!PD4{weo}Hf{@4M$UrF7X>>V6HAV)Oii|H<tB<NfNx
z*XbVuS|`O_2uL(NTi@~>l<=Xi%Yp@8_~#5&4smni8|;0&ZdcI$(^~z@`0?LA{(SjF
zuzzkCI_*3_!Zb;e?Bm2p^^YP<gn?YS(H)G^T~H}$c~;Ro!-eW&yriw{&9S72$?EJ+
zrP7oJq(nTr)J)u9a?v{W@REZ}*_%UACoi+lfr6a}Pw`*;9V|;j%q#sbaIrqhiDdLc
zl*KC6CUJNQWm4<A?vpsq&O??hARANJD|%k*-@`FGxvKiI3Ur%YswR1-jI>PC(Y%JC
z!%Nl|aP&+J@oH9-D;BakQLwnFo6CK}@|daWphP}I4eJ(_nP;Qzv&opnsOV85#lk+M
z9$I%<f?jH-xI|qdDQD}uGUFABdf2QlaBz15`)rUYE&v_HTZIcLBF%r0toFCv7?5)a
zohmq;j6<7>ut2MdE>#n!s3bUki6gYOS0xvgmIoN6c&a3mx9gp7l2cPr`M_~gRGPdP
zF5_RH>MKt4oqC}LC?dLi1eumV)@qHjBA;)vT&MB@f6sb_bZfG?SaBJumBTjwg_f}^
zE}cJ?iDTE@4-ZE;{eKFW&jv*0)pmLOn!2)bUMA}J!!NhOZv$vjkF7rXz`k~m>&Unm
zV!;fD)*a{?cZQ)2BF}XbQ9xH8pm+4HnAh&T6N+<6v1Am`MKzgLL@0rX$2Opv0@+5D
z;8NQ2+!qNdKLp@;)dq`;|GHkQm<9W&5bT~$oNIst)`0jm{4^_zgdoeSaL~i9n+WPh
z9<e4bBp7&guL1}ie+){dzjI64%#eR0pdo8aD3{$T&Z7=N49O|rdJqT5a2(}uJ(RDC
z-~+S>7i{bq7v%uF&$!sDH+_2o3&NuyPSE>!==pe}xiXnx14BDas_DAN_nf?j9pv(l
zzdKus&r7gI*Z2-sL_DE_d*n47%!7%9aFCANBs5WDr$|EitBdLR%$yXj#d_|GaKBUU
zM71yP1+XIGj-O;HJw2VUG6hXk46^PuioW{KGYfd+_Sk)Ks^M%@ly+|5JZ`ll8+WLl
zmBj&q`$peIpFUzgk0jpx%g{+}&acN$GbESkfYPtLu-RclR$GlHy-b=gVt<H&KiLc&
zH+!rqrq*du^WNi{ZxJzmXgvspktH?Ad@_vluI(siJk?NYo!tLOEb{fZFn;lhk$vW(
zWy`_O*EsB!H|GtAXg>1+aR$A<C4B#GrXeX35utH6CDZX=5zPN6<^c8~1Ba5MR&|M&
z1KK_-SsU)O*|2We&}iY3U7~0jLs~2<dNLE$4$<~6sQYOl5rLgXxp_rDq-@d6WQB_d
zl6AwQG!;r_U*D4F54~hhTw}L>U^~9(VW8#jr}|I9tP;6cA6hEd$)9*Oc=VpDi|l0J
z5#JO=$qQezj%B}bU^!-pI|GD46qyE<yU-kM=2mUughKNC*Mw?*`#<c-!dD8Ry{3|i
zl?tQbh7ytXO0!SVm@2;&(-^qc)v4)BEp|?=h1`p?pTQ}?=`Ebz^lSel-EhcG)*ezO
zapGZ2rLYU*$^)Z7z3Wjyregfz^{SdAU6i78N5|&fM~ZwIC81(d{_itU-;=(Qe*#C+
zXX+Q>C|4_q)4b>pqZtueGVsjSH~`MMefA4K7~I)E)AZ`6?E<{Zi2O7Nt!PrZK;Pjg
zOM1=9-yu9qC`A&e$i}29`AEWVf0HzELHs6EB7whnfKGHuvrH;sb~_C3G;BFfDj*MY
z_#T+++>~8%CoTW>NND}3m|gBH^!~Va_p>I2XN;Ou!W2ZZU-yqjNa$%F<AM$QRE+#f
zOzpY@2-P@I*z}G#jRLlmDQF)~YnBw#bdLb?7ltB_Xp*W3JQSYYPz)ZQ0^odcC!}8x
zZJJYbaR-seN|nM;AnZ%E3BUdUZB`CL3q*8Q3Pd<Z^3kt}_(Ob#ao^+Z*9PHJ3tP1g
zd!+7GXw@`lz@=_@ZCXxd6i2F1rDI33SYGR!cCyn#LY6DT!2sDlbNioB$wfGzt-&dz
zO4Y>h{{GN&m~qcjR3n043c3`YC8UA)4neU5$eMI8%0#n*E9767S-4ng*i6#<`vo-z
z)`=YSUJs)0j$o$Q*V9bx9sq3(24v62yAQZ1%&D)}Rjoo6&v&Ia;vMk2`f;YYJ;1Dc
zwdjg;NPvpB(~f<Ma|!}1w2uDc@RV$6R`?-Bw^M2)S2X>;*Fyx3kQz`qca@b43Ry5a
z_cKx?3nXa9)t^?-uXrz$x<qIoZ-?PV!sCfWW(Nu5o-l-QPe0w;dF6;KOYkLhiH1SM
z;i{2#2EB&x;x+@~SwF;wTxmemgmKF#B>TsT^iUzANNA+Y9Km9vPeEL7WspsXxECLF
zto;y%F3Y1Y1n!wAlJ%GOE82o{O?vHGQDj58K<Y-mcw2j?u!WJL(af;ZlIB;O2fQm0
z)P!q?L9fFHJwPt&1oj>EN?pM0Q5$++xl-ZJb&PP!i8R06G7A#HX0JB0$wur43ZnX%
zp1;S2lOMqSSE7VCG4CV-lzHjczqpPqLF<nHM$`Rw+z1OkBbHZ`P~U?q%E|n!TX7R~
z9F`k@V5M?j<f4kTD|cV1Qq-DB<5wE~JGlTh_Ay<v^<L`eM!ld@*f4+KJ_@xk`5hhK
zqd3N7Z?aOo(Sn$gOK^f75l521(pqa&nI@)UBTIykql&^RH8GQpv{eOp@y0(u1_LU8
z0(O@&iMi{B9`VNCXN(>eN76Q+z7IX)-i3mUitEy%SjKL3I64B?s3M)}vkUm&wqK-V
zRCv`jdzr}?%{+o}a0=sna#5vU_w3kZr|40^P{BmO!RwF-(w1ZPkz^Wli$E{)#)w6P
zG^L$4WAqu2;R@EM(0|yGioyVu*Ct{CpmPty=d>x3fgvR!1V+TqM=8<<fdVG&$qmC=
z^PEn<01c04y07ITQ~~^mzMb+E`!x{|rLbd#pA6@{w}}}4m(Zap{|}VuC)misFR?eY
z=nwFxLO%yj1wTEZK;p-!p@Q$cqY1a74pRwX1_FB%xfGzq1u(-!x{b+b9?<sT)$qRe
zzY&pqJO2C)P`x%*I48V|MD<QP{F+q&8_VI+T~daI!h_l8PKY@lllpZ4EV+wEu|^$J
zCCv+Fh_ON{qJQmv+(l5pWLtxo9Z95=V_0AtSkVxj{OfQ;12YZVGIR0tr30uVW;LeZ
z8v!)~Fx%kMtn-_Iu}U%b2=A>|Kipp`Izk)G)l;$;dwd!N6K$sZ<*LVMnlWulVHd*;
zoQ)_a))>)@@D}Cp+e8m3dq&6?CJ3AFb3dQ_AA7I!i9y~!Md`rd;KNukqjtIw+zoIS
z5taEkCNB)atndbWCbA!c5~jz>E#Ln|C^b0aj%bk1m~{_zq7=~hdx&?Dic6Y)pHR?e
zcH-PXcWw2CM60Tgi~u^))~?6EkPUmYO>jJ-i<Ta>@5DvirK-E{eSy^KCU1C)Ur48S
z{9;KucAJk(?nFBECgZ8jPw3A0)|;?aVY0js3$Gr7B*xDgoQ{xDMe|Q1J$Xk0l|#6Y
z25h+dsD)Hd=F2d8IoWUa$iZIa_uMP-hK>&T8Bwjj-;SuDMp!`ZnzcF4a{b>L*8k{Y
zkvYJZA%jIjOWFxA5gVxVMU?UXvP#;GfA}z1#0iGVvb8))fI?E)-7!-RSJpereM#{T
z6(4Axp3K$3irai>eEL}EHs9k{-RW;+Ra<@059Hgs1uExVg;AAtlcm!4rV9Er)O>HS
zs$N3thf&llu9(Kp{61tyTe-#<R=R@Ow)j=P!=_}!R52=xFz5<q-v>A)s><lAZc<g}
zld9dBeD4O7%`r*>z|5P*RnH)+=8x|dy~1cW688PCR;LB^nnz$trF)r%fcaDL$NVl0
zkv=SXLDie$NrfD)aLKV!o)uORE7zO?ZTQaDA67Y;-jh!IK^5w#P_?~w+;)iM$mNRp
zxLnbq#DU|I9r?sGr@uCelQISEZh{lG=ZWpy$cgFLJQ^Oxi5*S1Lvryfb21M^s-UCd
zEp;M>IbkWUdamB=NRc1K21j$Kfo+pXYx1Eau83*&EYm7KtsUONRJUWfH>F8e(+<d(
zSHW+HxhjsPvTd<Trs+?K^PF1lpE>%lKWPZlq?(9tOp3gA0#b6=sBjMmXj1dQ%3~BI
zA0hq1Nzx@TyqU5$++kAo6|B68ZxgQ7{fG_mD2n}3CEw6s3O?s>YO3%4<+)t06Ymi9
zBzOE(%nl2Ee{J%k_lOD(;a046z<g?2N<jSASeb&?AuI8YDb{JwPpI|}svi#8`2y_O
zk!^UFKept}4i7wl+_A*!wnO}?^T$2}=C5pA$yB1-K|Y(n20}&rzcZD?o7I35!{Lp+
z|H6JdF3oy^i=5cI&)Yv?iDA6z(s=ffV9!YpnJg0{5_cLW$5z11@-65T(i+7k*Wrq_
zlb+b;oYifH4MV(vi9U#rbuP_*n<FU4nu;6@r4&8P)GJ=}8s~~>P8oamk6lChh153z
z2(RV~`!9wQYiSsH$zQo?0>qkTt7oI!Xb|9|xVL;8Qt5Sl@a}C}>QFD&&6&5hnj#Tq
zS86W26*?z;rcWkVZnO5B5v?|YeYNLAtZ_+VA<bH~?7V8y?2nvoVO@CFoQH{qOAP<X
zsn8o(aS{@8?q3=h6X2%jUUU2zX>NbFpQLmeuaR{KRn4E(2H}dkc%nEBx5${*vz#^b
z0Z4)?7m_cWy_Uq&F^jCZFc3mS1<{}@Sq%pugUaJXvJ$bl-&c2a<h207?@M9$C-%!W
ziC1T_e|&iVhvpR(QULZ33GO8M)O9}z>QjX4>uZ|}nmkmHG+JN*=DaW6_@827L;{Ms
zulGH+gQf&#T?)>TWtc`4yx&!!8AewXi+R_2|G=-?6*r^jZc3EVas4hDNPNpw??$is
zt97P}qCy=oC6~-y5|d!X%qk?>CaDP@KBnM$z1d_F&asu#_oTa!nWxXD=8K+kzO}u_
zwZf~m{kyd>Y>d;LoNjVeR@a18<i|fIf>V{2GxhYV>}~1Qq7cl`NV5JmRH(hgxw1ym
zwKl2+VM^;lC)z)eN?(76vN1jChadR{pkOgQO;E=|sw0CtF~VA4c7BLrH#+i!&B4=b
zGy>?P!wphpIP!c)lSvw5IU)=nUER#%a{c5-V_zS0_oL~!A17vBEgTXkQ@Rn!K3Er<
z1;Kn|u2P5nB5FD^1dk?w;`%H7DKsxfa=Y0M@$w6j=bSPa0}YMSx|h_qBI}LzCXWR~
zRf3`Tp2+|oB8Meq9`QD1us-cD{`s#0)DCxTp&)&5D5iBeR7Df7#XqkFv81iR+ZZvF
zR8%%uf3n&H&74}Ms#kXo@gzE=k!;yozlG6}FIp(>OO)^hw|yu+(a|AZSf$V>81LB3
zjfx2M^P!l32UKRWv@**kz!)lg16LT&?BL1SmTVn)&oA@?rQe_?Q#Mo2zr<;xLm`uE
z;TCe_cS@br#l3vM<4*Xu9Kbp_-Jq5U5o$sx{)Xs^cqo$8h(*K9GUPh#4f6IZkT31t
z-Td_@W@U7Yk4*L>gr8fo>^UMj@~|B$ws#98QUpyqbCDkSV%d5U)?3^>Cxy&ce@-$1
z<rNQRTPgSFd*Fr$n?)koh?}<UU`A+1b00qVE#f=!?)_^ByXUsSr=<fL3|DQMGvZ3x
zKX#Vp=EqiuB%dJ7yr|8HFl7yTlj*II9U$rU3{FC7TP;1rB>Vo4C;C7C$TNZ#xN3ZT
zsgYm!iOpjXo9wl(F46Shl(+L+^g|_b$(J5)SyvC`x@Ra`C^?}LKvt;{G9n>+>D#Oc
z`a4PxsDC0WCLuZ&+MG%0$-9P8JjSehvXzplhlfr~1ey0fAklH0TsqH@QUJf+9%iQ8
zb6XOKqnJK31_8xKjl~ym5S}z_<efhtiig&t%!qvjhS_{xu7B_US!mtaig~<q=uk-7
z|7T(`UI6Lzb!BLwIxKjQuqsLf830v&8$dYkZg_6R%5sZ}z#sJ|7+(gc<KvotCUq2f
zLX}Yb3wIjep)sZB&^G9z*A8rJCzV4M(vh6l=v^ZA9n<#r|BaBamuHBlu-56#zN3|X
z_*Z_97g`4o+nPial~rR_?1X>?Swhv74rSm<S;*Xpj(oY+>FB5NxUlj`p8<%6_9ETy
zmlU@A5c2)IDN~>>$xYMOnP8E;egR8e02<v<t~(Bs!J)+>c-kL)dFFm0nOX-!?AL+G
zGem{!*WrfJjZgPWbQL9CL_;Mrt=#%-o%_Fb)xjbuqMxesT&)D9IH6+-k`1+#H#=K`
zwcKO!Qk`jKEs9^948*45Q6v@6*n+8KH2=NZ2>k^ZIOH}uJgG~y#IIqY!Bt3AqZGYR
z-yjkZVN;X~Ay*KX2J&5?W>KW0l!0Y`xUh<VNkSmv_xI`{c<?ISruqyvz{r25uLv3B
zgvJBVMrFV*x(s<(GOlwVasjrz^(e<jvEwC-k8IsD9*=!!41rSO9y5?v<6l)ZXiNkk
z3sQpW=h3jiIrZEM#pAk0sIM-IduE&4ww^=eMD8TEJIUKsqFk($OS_M8g?;iDM$PzI
z3Vz(39iKVkFq8<cv}x*7P+O16xNXSfFpE=78OYMNT*MXe@O3z9*(kHe{;*pWWl!bp
zK#M2^AJwNsO>kDGbV%Y*MTNx=+8=;yKTk7!K0Cj{srtEq)=eK=-I|EeY@-|wefPD-
z_RZ<gC|Pg2x?Oct!L_owe6q=Jm8)=S62IJCjBn8Ay<4J2@q?Un%6-oE_e{2~YV>mx
zE$8U%RvXk=^DH7K_M6TJGGnPv^iZQ#RXWuxvESgQlJ<&KLFZFY2oVot`6{8?c0yvt
zzcVGKSV6&1SE@EO<H<g!Uy@fJzKvzR>4$Q2-j%9ArcNt|GU%T=PwVfb$U^<QkrfOL
zSIC#Amy??SHln8U2Ht3FMg&NmCZTSn0&GxK?`s6>Bf9{CC<m}>cbfVf#~SU?0tOhW
zg^9ADUYm=>-Fea9a#b`QK#jopltFLM>Bai?xEJq>_a`kqy)1IYD%X!I+o=zZ!~fL_
zypAB`5^$R99vQVdeFoBbIE-}?|4nrLm6TLM0td5~D*zaS8JPNkfcSEx3_+h}$B>Ya
zSP|VlF7=L$9ib<=sA$uSh&0s_)<NoGRh20rx{1xRIe);y5)=*d_xHz&1XEH3&+EwL
zHwfaLXfFGfhzL&GqTdMQVWd11neWqd_%CNhA+N(8)>XGm8=dT?WV<YqMe=egMyH&W
z<Prl3m(q8#412$x{1+AFidRq5$LSdgE?ye4F=W1K!*Z0TRKv->xZGMBDH>{941A;d
z(=0L&Y_GOQZ4_HL#+I-cPJH+Tnwy$9w~>=LpY8mNbh4q+&u6_^9|+kt*0)uaQ_i+T
zRVw^RP<WSvugH)wx7rsq@DFdTEkXNTGI>=K8cyI72P)cik@(uoj(x_7RdGGQh3(`7
zPDJuHNVE;Cw)zN*(+%T_<P{v{#mt+3yS~X6z5AP5Y<qG+as-v4iT>}S*GH+m#@0Z1
zoB-KkOex9Cil=p5UHO$H$Kw6!qbC^3jJmNDkKWzs((S7{2^&9hD%b&h@a0cNb*7;X
zi_P|Hrd8gvIUvj+Akj{x>)YMem3j-TuwOqI^-2LkMHdWhpctS<(zkCkCUC$KIIaMM
zRz=1OaJx2}oxB$2=E|a?V8E_$Lk#Pm^66rvn-Or}FyLUVN<a`2y+(-bABY)}vN@ul
zG2NCxj<l?-N&`!fBb!Md<inS?ffyqGAG*zUGEFuMv!_u2ox;y)yC~n$!mRPZjLIp2
zvrVB5^iy<@fCRVw7d)9M5U?*->F6XY8|9c6A`$Ydd*Rl)ALUBNq7l~%ugpN}j89YP
zn?83KdZO*`ZVgxK(dCap8}<tOjyzQjZb8odcg`9u_I-gwQQ%+6#JBH1LzGI54`r;o
z?L_B)4Aa%GR(M|GFp(5QMj$LY<iiNP<m-Ag=aV7l=hkvtzRGM(7#T9Y&}NtW!|E3a
z)f=OmsyM?jZq+B%-y$qn`qEk)VYPbjNTMA&;JbxLimj)oi`zC|&72%nubgKnk-d_C
zT9~GXA^wSBaJQP;NKZc;03BJy1xrEe$=Unfvy;HK>(g}7>GrSah#-ha5g=@8qV++f
zIZySBX|p}hWuc~?;UQIuzJjhy3Q)m<wH6El!4DCXkpFmC;2o#P;{{ZA+|^s){okLg
z{>g-h;Dq#lKB4YYs(dC_);aqDpb#cH<2Yi$)e6GaCcuH*(bcyv_D{?DZ^e~~280)v
zia=qzQR#WL$ycu37L(2E`csb$4h18qb0hQX9P?h~`eb}t!Y)Qql`Sxj%R>DH-JL|H
zywyC}wEFqxwb{2z)0qACqs}JD8?Wis8bQlCCA%kiT%rzy1BM3!bJdlaqooAtlJdM;
ziACUcl$WDtV4vc`JNdR=GtX(ZQ9h=>R%76b1Z3{eBKcgJNeUxQ0sGvgBH?mAGJVVS
z>H7^lXu^DSl-1=s8eGIju~k;fU6ja9i_EK8An9C@S5uReT$fru0z?*Xuskx0jsI7q
z3>jn-5{Qas;6MeKE4qVE0sPI1hF0H6N*)EgU%!H+J~0^r`}mrb#NV$vF-ol}sQ7#*
z{tB1Y!(v@UAaLjUII}>H@bKVXwf}A7BmczxJ6`Fvn9oz?!G3VjK%+cY!=kz>_xsOl
zgAOyL-xLz&##oYBADUl62EA*!-f}fUj4X6D+Ne_^Bj>RMz*Bf(s+QY<?FOj5Et;zE
z|N9{QpOgYrw0=T}{&18Q7sWKEKdniXGkH*)7XiczrCV9(b7#sb4pdm@Yl<DI6Ga>2
zmMYfH-$SF{iagdf)l0;M$G$E`?k1_y_>9Z07T%oeT*~1$93frt#o^xzMA|f;DxN5;
zs>zrLS=j5!^1o+%;ayvVWMJ!(;V)nE{#49uuSDyfscN!FJhs`M*gWwZ1JCBE^JL3m
zCyCTfWM$A`V;1|RN~R;J*)-z5I!7-33<vM?PWC;aFH_U82ammeeIS0bjZ$_zZ)m;8
zRi2TMSJ2|eEj7~91Nr>T@9yL_TYiNA`$qW8Jq;CEU1%b%zhX841J~*e{${c=awUFi
zTyu*l(Z@AqxieH6)oCzb2~cqtvr)*7b1}23iPptr7QSq@`4wy3K>g$^^Wi6XT%@TN
zWs#)|FZ-r=ycm`-UskqJemOo`sL=5+hZ4Q?J5hn(cPv&@WbKRl$p~;AXRGSj=<|c_
zEsthx4lb`Ngj3t^o2q1e^p7;>yJh^!zh_CDd0rL{W;V|?_Gmq$((BTBdPr3?rpv0>
zo^><uRVd*^X;m+l(27A~GANxbe24b17nh8hf4d0A;&5HztEv9%rz?xjxLzCEd^uT=
zgkrDMwZ>5lE(xvM>dde3WLs>@zcc0{GW^3WO?Io+lCQYJr_n-*s%pJC+LCcg<jnKp
zwtU>*`EV!OJ!cR;ptViX2zUg#@o+S9j2oRGq4cf<mt;MKW(ZE?)1qQ@eR&U?#X$Ud
z`9gd6vjaVk8P9;KJO&ug++T<5{s!(10fzOOZPHBe)}5{aAi<2g&q~p3+~K2<k&s%&
zKkYRij-@y+vl)`>j*^A5Sk~t-+M9}};Po1P!d)WU^=Wtf8jRbBmn_r2$9T@WhT*%`
zUg1<PGLgqKS9lJ;+i}L*sZEc#&@s`nR?P3APva7-EA;7dmF|Hqd^zL1g=EyGFLnGn
zjvLbovCED|N4KG$_QeHV*J{QW=i0M<vJ*qGfPBlP5_|U3<;I}ul4krXJE=0O_0BJ?
zYn{Jtv!4$`hNj=8XeTItqg|ln7xFh1{j|9pbY+)m^B%f&&?Vqhy0<&|+?cuJs%cLV
zqeZ<}7uYV8*&vNE8h1G_i?Jtaso&@f<0o)NlKW!)BeV^zyql3=e$l}z-{xWXRDnZc
zGSk_H_)e=wN3r(EFGbhrw!O(W(QMsh>elMyR4|ekYMSPd^e@_}Pe9dHd9GE7_lS{q
z&~9J4ZK1Q0SUSpYnChe#P#dZycURc-EnKlU#?j|4eqFPd-`KHjuuY3!<#cS;>wCLy
zb1VEd*mGAaAc{+Q7aJ!!eFb~cOdO70J0UxSV2^Ur+(CAcZIun*rp_u@Lz<utDLaQ{
z|B$Z49EAwlY_RE6kvRF8zhFNLwi-;Pdl_bpq&l?b_(*8gJWw9$R=yxN?ra!#e1Wf0
zrYpX0gR|!cx?kCtc=CxWdJX&zlgZG!z<8J1DbU5})ZCeFW&ipiOA&&5C%F=ZCe|To
zV;xBML#(b&XCuQ+{%Fz0uRXW>(JV5jWSYN#z}-gIs79yf)vOMG_~2^d%c<XLqXTr+
zY6=mYe4^I>jUD;VSTaHeveUEJv_7(KskEqw;&gREe0^kUii(De7;({U`(VCy8n4?x
zun1v6OQO>t+W#k3uHY#KimBnS$-`Il0z9|^qry!PCz|t9NcdYK?xb&TRtep%ajG0i
zVKUzVLGy@KgQS+tw|(A5lOg^_>qF`|$-zNt)y&V_XU*wwB7Kz$?cq~BzJ20RzE2f#
z)pM6lHvZ?5ma2X^`VHMmUaFJdR6dj4lX!3f*=0K4;l|IZ)*2}dc%F&IRQLNckOU+m
zS7S5hET(-WrV-Diczpyj6Or`X^Uk)?59bW`d5hLe=8q=itQQ}btXFZjd`^<eGGI8W
zvlVL$-T5e~zrhL~GjZ*Ue!=Iw=hy8h^i}(w|4H=ZW>3IjjTceMuHc27Y^aPw$-pIw
z3OwVf_Vd<7!j}yF`}3Bb8Ko!&Yy~;x%cC0MGUjacFD$$DDvq9#UY|b0mm8gDB<(Tt
zoGQ2HedPO=#s9K2URtza??l+R9epqy_|=caYW(<pqic4rK<+lot$<7|FW$~z!CTQE
zY?57CB$aqB8hsv`A2$EjawoMkO2Mw+UWx52Q7VX>%g3naS)N@ww=iH?qWe!N@!!qq
z+q<DUrGolT^GI504Or<rwTlXjiMS;&Cs)dnitQJmQNp4%?UlVx%j<rJbwAb=Iew;)
z<=@$Q!Xl{=?4tO;7ov<J4oG%0)7oU^mPaU1H3toKEbNdfO*~I9w6?4xBf|s@L`LAA
zF7Mrt@dnd)F5wM(nSh)luASn@3<PfulnkdmDfYS|$s$;=?eP~E_LA4)URI>gW)+1y
zF*e?JJPjd7Hp>~a;^+3XnG3^|ct(`uB_^~6>Rn&l=caLB9hW+<Q_?s1U{wBkVWDI;
zxD;X$kIL}eZl<5=aF1&13m>Ao5{vRg=ycS(@I<<wmyGDeEGWq>{&r2xK6G^qx+O9z
zL7i`14n&C<^-y~yUg90-WPWkIJwC;F_Ocj$b?+q0-THICWVp{x(dX*C#XGEL(+%6-
z3W0_{4ZR8h!E3v_eq1HVdKAQC)v~qVw^hHC?iAVhhL!#{H5b3QFU{`A--Oxk8}0pd
zpdvR@1uZxHb}Dv1C$Beu3TDJ?G18W+<Ol=OFClJ)N$mj?8BG{Q4*UAkBz8waqVr2E
zFRG>jgeazjRRH$oGijDj-vv)kfajaxp)H}x<|j#XXp`rFT=|DS=xYJ$eQZqhLwVHu
z<pi9oA;T!&hk1(W_UygjL97$Apa`#pU;Tf1eyxr~M)2$|8@AiJ&%ZiQlbJI9eT|s=
zD@DE@K&VHn$XyF&4J@4=vfZu4i@$Xm>gbA5uBqrF3~?`c%LX-BO#e`@p38Zg*ET^G
zW36?Zt3`f$FuVJlrMuQAGJm;TltV_QS<Po%`XD;{{~#`e1>XT6<^YQ_0if1y%6~Yk
z+04{6!PKIxH*Y+4_>L+k7nPEcue!9_nv8BcU-Z|K2#%tQNAjyny?Bkc&M<j34RiE8
zQ?7V%@nA+;TC!&5sfR$~YOZ?;dE`u4r-(^p8Q%PD7&i@5FMH>$hhxE;?MK1De1>|9
zS^&}JZU{Y1z!viA(==l4Zo58ThE3BAYUS^xx3l;B_3X2<FI|Vp`4KU2qntFfUDYYf
zwzq7nU5&nk^Ji|DWnf~1Pb-a%li>73iucv8b7y?`IKU3Mvevvnwo`7^g&|vXQ&C0i
z1ItTtRJ1)T<Z$}FU1pN*q6#@_#pd$K^|llbM_s8GPrI2X-MjOW@nhjvd^%N&_doY)
znycFUteno<vR!0|nQOHcvUiB^I)Zwf8s!qS8ONcqZy)7I&K=eV)RNG~XEXJ6oJLM*
zb7)1JrAWQC>2Z8Zw8cVp#vb;Y(n|=cB8?ZlCe+#lWrLK(8Kupl3v2pi9d4Qwz3RoQ
z=300Jm0VANJM}!j8zO}s6-Tr@uwWSj2c@9G@MX5HZ8<G87*RTc#cm%PEA^{|XfhbT
z0<B28galFPyGcymI)sarZBrY9B!0rt7bBJkrf=54OJDe4L+l7r>M5R~gJF`}<CLRh
zNS|YPnp>(r&b-HY%J$GMLTxAzAMnfy6u*^UGAD=0SDZTsI=fu)LR3)&3WRnyYZf6U
zz=@iAdp$<FJ*6?j(q$@QPkDLL4IAOAw~8E_gV-?UIauRFT-YWfj|one*~d}tJ5$LX
zH>`}Kox_{0`+{tQhc+ROh?SN)d1t~&L40I*SEP=;%G9vNr0k-_SPw5Vw@L+>TW?>6
z_i_(Tb2693c2M@oY24qd=8xqwTPz#g;hLEDA!c9>3XHro<@=Ar%4y{3zw(yapNyb>
zz*%jA@Xb8Z+o|Uj(vu^2d)2eV)Lv<Qoz+NGr=c!CUt+Kfq3u&n_}w3UD^r!UuNui?
z832V4Mg@gLcw?Uik_L+&pt@on7UqY$7fc^9+|ynD?3L1`kSGd=H!b*v@>gTul<M<0
zi-=jMWYY(Z@r7bejVth&Xc1^cDI`Yf&!+D><(p=tGQlDU7A#FX@apm-*E>^9`YNRl
z6zfl<$wx`U+%3-SWQdDeSDM=NcT@fR*wDM57ZL2daQN{KH76Qs<4%SCw5jQ`Gi2R?
z-GuuneIX8L^+#5Q&Pf6iqfhGpTn^&)@%Zi*^tv6SP5Y^*eusGjheLDS40hLRjN+8`
zU@1+A(<%@93GPzcTEM8WajAAi(|yIClEJ)~)`2C{(Ux&lciDGqn|t;9$Z6Q8$cw0y
z7uJ^2mu1KDC8fM2iH;if>M3;a8`E$*y6y3Xj&~zFyIj29#M<LW;8UDOg?QipDl+;9
z375zHgQ!|TfIhR{#Shq<z3A;OR8}<-45WvebBZ8Cps~u(ep;;(jmH3tVA9@l!<*v8
zl*A8{&ew4Be)|Yx_AdOzrCyb)G=w<G<K{j@_h-%Gj!n`LXFUO#TpxU!vWZ3OG7sGc
zf*1Js<>4LJALqpb+InRKY;bj?uGEaax0=k{6QtbDymwy?ezvV2;OR4FUjBI5ybGnG
z4=!!<eHGW-z;aeqRhL%ES&_qe+q(LpV(Jn__BZ+WUdhAn;Sb-g1l3vg(n%8t1~M{z
z9_DObjW#>Y2j@B68q4A(dyx-fVZ9`rmux?8c~mrJU+3UW!Y0SpSXCS2<z-Mh!L=b#
zR9|QrG%VS6=2BL%L9y5%d@}sYJ;#XkLx8TL)7$Y+lhtCUyq|&E;1HkBbS1y`S(aEU
z8?F`Tqf5=z_D<L^ElYH{o~tw8v7nlZw1#wubN$7W<z#8Ri>p&(I3Th!75>&cy6Vn2
zqDsp2*6!P-X!{OvAcC4*%Npn3dx_7jk?I;wRv(B8<pRW5sIxv-<W?Qa#a)&y_|`u8
z<fwWO0L-4I{!cOn1&!*09X{{WRbOtTYUr)5OF{+6V0>j#GBVh7Qd&_RRHlNJ?Zlc?
zva$@#mA!4<Vw=(XMHJVrXYg4Xbx2WJP{Ay_tj^q|7}1r(L2D?8^d?Pp+1$rzIr5vU
zkka?c38y&j_!(RuOYh#S!l{7VRU_&_FPNva6iBp)qa!p)SjcASBMHSgx6U4pJJ0bd
znw&anX5vb?Hq!AXt$hp4Zn2JuW<TF?Cxss%I%85h>ep^%Vb5a>Ok#ji;8J7+1(Qb5
z)jA$AH}sJU{!;>cG+&KLsp@u5xXTT;XgtUA@ek=}x`o~*YcdjIUR$q}K~N^c97SgC
z+6fw)UGIeKeA~RROWa-jG99N9rmfk2YP8L!uYn>KfCGBh%Q$thU0#5DiGEOm3Jnza
zc3xa^>dPmZ{DJqdwxt<a^7mY13GX%<%Y+}S4BeIG9Hw~j@pWIvkd|dDSen2d!L$0n
zBLtvV(ox8~g|^aE-q8?-4pMB0!*_VyRbThJuV;MUMYY4lj7br!{C-)4xhicx6ICag
zytv$)7+nRNHQoP$fl$_~t{C~Ss^A^-)oe8+6s79E>vFv7z+Y0X?LNSq{xA`__p?|f
zgtU#u)MBDuj3-?RGDhyt;<~wG?#hTcy7vlI6a9YlVMT~H>UG4{CrAvu^#dLOx6k4>
zZ`@0yH-!P(I5*+kR~4S%n<=C<n}4U4G8!NEB|(2bv;gXeSz^EmCS?DAm5Ym@mZ}26
zB-Vkog?4w_a=oR(uomki)z!5g;Q{n=%bWdG;uN+<A=@NoxX+$P(8c(zy(O+yiuh&y
zvhcUoE3GdK=w#seT&)gcxTk!(GTA?8OiE@~M{AC6ojzowWlFvo#LukEC?<tO{OUXJ
zYP7%PUhQH_MiS*)Z~4}(VQ?n8q<bVM+`beY5)m=GOQtJ$;!QspBs99Ir5FL(TdSBP
zPGhx2tRN<_mgkk0xS69mCrFS03pzWzelP&3k&JIPBmvY3Ow;9p5eBXwI$_`^)Z{Eg
zf&eJ>b4;uz7MdfL6Ub08Uc0d^dIrv4&^CMPZn?NJgO$I6-&bWKXqIG%SQ4KTaEds%
z?5bDckVwC#W!_8sl&ZRc<wJ7mp@FAEhT0}b=4QSU#I~Ix>f3NfDN0Ca>gjd(#Y;+r
zh>_V{#0h4g9_)vyQY(K1rdg~?^}JUZu!DHu*y3@}RM7Y?{I)xlogvH62BbPp$xG@;
zM5|e4A|k?1by>!2@9VRw`-x!Wk0FEl6-!^e7KO*$Ev%}-+>*({+tJYIT|4>j1eLWp
zh79xg&aa1Q$Z+G4S`RrQ{iP9##b|nhFkykD5$^N-ed!_od6*J<?kYR4A(nShF;I2|
zY$Iv>7aL`-0exsTRM-J#y5OW06b~sxHcK9J;g<VQ{>_as1Zu)ldk@5!hnj-p)3mj_
z$>0NQI5ZPdDKliK>x{bXMvzZ)3m}<40HQgrTaD5>wDVJL2}jHri?Jt~XPvAjP0}0#
zblT&X%?@$L1S5xhQQ3)5ekV9B!hl8nB|vKFBi-*KezXh20shnrTBHxs`m*TqLO(Ks
z)XLOvgv)HkrhRAM{}}`t8oPMw{c3GtlXm>_<*vJ)K-%@tCv2}`)k|2}HR0(a(Ee0#
zRqVTvX9bGaBT>6w05WGqk|?LDKzUJ24IyyB<+-4Zj9$OD7P;7_uKs6S{Xc{WK_CQx
zSP%2+0i@Wz^uyd+$sH1n;1wq_o7G6_4HrA@o(4>QF^dX*vG-LOSCR~Fr+k>OCd$Hg
z0r%NFb4$-8dzed{nVwAX2)7Jf*8KEVE>+O;&dY+Q?Ue=f;-;}Ks)mz4Ho77rXx#-u
z<XT;)R+@+C=rxt1;BTsaVjcLbS7B$GSR9R7cROII&DyHwvNPpFGp<?VOht~CwO2kf
zu4-FQ70>7Oy}ED;(C?D+K3Vy-of3I^N0VjO^=cHffsO9$5PF(hs#PTOWiZ_5vd865
z`y1^`-XN4rh<Gn=P)WNfIyhzDkf_!)V+l->N;_|B7O%qIV5&#A`u^jYbsmxZLCSp{
z#)zSmgpNL8xA>%4%#&`d77fX3Tc-*Ft##;f3Q)+<i?6_~mlAKZrMRSO$+gf^j;i?+
z95kmP(Q#1)1@%9{YOqn8QVvV);ZE_CW*YXBIlXqffXvwQwjq|1No|Ao;kau&DkiQS
zYWUO6q=yYz+?VIl#<FmYoTA5uYFMZygC#)Mjk;)dD`Z4h0hOyGk~+hj<-P*cxO3+P
z3sEuK=7}x}{-I>lg~Ft*tZ)Pr*dB$*yB2Xf@La*CZi`MsK1J@Ux8g|k^>)=RRdy{G
zFZG;gti|%qiF<l<F7yQYBdbV7-P&Yiruy}woGr>|D^^T;B^&!LUJS(IZPeeVVCt3w
zTDY!X_>=E~^mKYdS{$_BnTY+(J!=>QmawsL=*djUp2#s*M|Wvx_<KY!#?DIJM|;02
zHx2P2T$SdGX>h6+mCzI)i<~W$b8Qx~!tA`g-N)bRheu+J@@<iJ-{3Fmo7K&l>(;-n
z3}R_V{*R;hKb<_Kny@2A1LCdO*JF&fKpw4I9N9tlDG)^s``L3rvE6S9XMVdjfAzpQ
z_BmYn2!UjlDEMXf;<j7OAw~G!#W_Y=;gnvDJ4kNtn?c+?f*8Qs`0s%t<sD}?Wq(xa
zOTv`1Hz{J!3$Ehk?yLMAT|1D&u0<dEE#oX2w2)CCHqA?d)+;eMK;h`JnEv4%^$n3v
z%3k)HK7n57vLbq75{eBO**d~1V@qDvufb~B3+ui%|D%$pzkx0qh-Wp@B9B1>kldhL
z8p)2Y^fIiUk?!*2jFB87R+`)QK`uBE5qM<>@H$yA<%xEk-WBcEc;PADkBxm#<}H&N
zbm0vd<Xo$^G`pBdglH(Kag{{_C)sgMT~(!tiYk0|9jfhRUlFVb8%vE8tD#i@MT&>1
zZS`fo%#Xc4V}w`wRy4!F5u<T;Ue!bziwt)fCLR$<V6BUF>+IN2Djg4sfJL`yJm;5`
zZ+mUs%&2s+%w@txbFOunj6Q<DKgk-LDOXIznDUCZflxQ8Xi331E-+~B5<qRb_@Sp=
z3c@vub5tE>UkVm6pRyvn`rGNU9>fDoSLak=2A4zNiTrUZZkHTp_K8soOee+u?QAW2
zw%mtw2szO+r~QE*Q{W|76n;l6k9bU%a4fPyPZMMgFit4ly1riq?cqz@&ZQJk9H!qU
zCo=hyj*EW3Ba-Z7U#P<S{%;5CVruMKrOQ%aJx-t-)kyn`?0zBjM8l<m+taV1Dt$Pd
z|Fih&zm~yrI&d)w#GNT5Vu3XDF)lP9=8mL_2~F&tF1wM3JLyNaw;(5hTcL*)VyL*b
z%Otehh;yoP16aTHf|k-;wWP4loBSA!7I)Cv;f7p5!)})1&4Zl>JTh$z7VdZJ>H3xA
z2D9v~*O$eKmR*J70kVaya^nL&m-42l%DmWk*m}1^0hPyxMm>^(9MJR}7%7jPQA4ta
zqrP0*i=cT7S2&4+duH?e^|i%=juBzV$1hH2ixqIm`Nu8lxsz{_>pT)|?jVywqN5fR
zJP|Eqfvig+;q2u}+oFqd>jcOPc+mS;wMJo<K5VE6wb?A<>eX~iz6~X)Jzv<B96v3y
zyD24F*`fdGtz&KlVA{!8H}j975m(;abDII*X*!)L-qKjpbGB?#eF0;Zv+<@}i;rpf
z@`9|ZW@!1uH8FDB453f&qT}LInJO)k`MK#jZT8%6WR6X5!nJXFI`Y3if6)4@?)A4p
z(?T(AqX2UlK5ko)6WUQ-ne#?NA~)x+2t!sJj9J&jlg}!eG!p01XJN9&wL|ccR4Qu|
zdgmN@6Ob_5uZs`e#Q-rrBME`L5aPt~nVd5{PQ|8C%F{+B>5#dk#XrsGlkTCR1<eCR
z#%+*KG_r5ZlOmjjAF9l_cjq3_eU*#J<uuD*IYMH@&b`4bG%vaDNTRUaheh4<MH7;o
z^Nt;~!Eb7*Sz_ZY=LH?YIX_3T4_wtX2(MsFk=cfcax=+iPCiVhJY~fGpCIFD5C9p)
zTjNWzJu*_h0iycFr(PG;w6^FUzD}u{Gvho(?40L<Y4~mgr5ccX7)fPsI-b8TDcMsx
zEaMBbFXQg8|3AXs1E|UFZTFR;fCvN;X$k}cRC@0qP4uPd3xag%B7_!7C;^ccsY>q%
zD!uoP^xk_5B|zu|0t5)<JbvHVGyClM_W#Uem~q13OtRLq)_vXAef>o0LP52F9zErz
zlJ*(XQ|-M~Qi&?D1-upS6RYNxHni=ZxQ{*((56)%*%68IK3vUG^z!T=tMpKlwB8)z
z(DMCAO<nK-m+u;*5Z$nq_IghA6CkRQ60_Eh27IA-aK}+Quwz~>@ll*ya`DB?Z3}_h
zDR&`n1m+4RsP=Rl!Z)q!vnz7QaLN7EXp-3=NcZ(4xpz-GiZ32P>h_CD;^sd(s_@lT
zTd`%u^{)RaM|fpM2Ji;oHNOgXdH1Y>DcdD|%Va^FW(Q4TzU%*Ms(#=xmRLo(5Fxln
zh4b1P!d1NdH+m>OZ(<|Mmd2WYLRmRh^0+k8;A@pxk*jg1D~aCjXs-0cA#;S(pitt3
zZE$Cs<b(Gs+kl4zc0ySiqq|cN3Z=4~AMGkZ^G?ct+l<mB?r4>j+QiWzEpk|<UPt6r
zB_F%8&NDbHl6c9H)+}ajkbA&EpJc5suIijJQnL<9)noow7J!i#-FS%bjnL1v#(M;u
zHIlYTInOvYU);$$cXQO7_@^E|FRJ%zC9)$w<Z;SW4tbQ+1UWum0$G56^k9=&t?~cg
zUIirbkdsR6S#>Bjm={xMB#UGMnZn!ddrLPryJ;jo4<_eAv`E3OzY%wHKbw~znh4_U
z4w^j5JW9Owrjh+NCDV2#Gu}<rVMZznpa&0VmAxp)zF`KTZ45)2*5VB*gVr?H2M0At
zvq{<+lIVdympHghQkg~fLn9{a<PVjw{DIvi)x@$Ar1c%snuKQ=x_iCfM!JgP4JGYg
zTB+#M7uUT*Pnb=$sXud1{ZnQYLK~BvEPaT^811Zk2jjQ)d3Z`r182N~-UaaFHPub(
za?0EtG~gc}trZxQzrp=vWK*7-_xx>QD~bn3U4(&==c+3s-}80b^|x8aq^$0YG8<IT
z&M=lF_5=8{d-Am|IaXubtb;m%10A4-U($2kBuL`469YN9RIi-s$rW>(p#rDZ&}xoj
zNUEFRuFCzgAK1<D`pS;r5{@e_cE2L9;#w_DQkm(;_<f1QW#gE1<M_b)r+5?&>cXt3
zj(5wM^FRiG3?{891W&s((y7I`jaxq@f=Q&W-JqRdb!gjs-fP9UhD!UeuyMZ$_DYV-
zNkL*uJm15kqpRN~s^xj&Y95Vv3a7S5k)l<l1vEs|g%wrx@8tdJ5A3J6b-i<)<l)V@
zLmB)4UHgC_uE`Qf(dH|?Gybz+9^yJ5Y(jNJ#*=~$sIPP!E8H$!hY&dqR(Wa{tI75r
zT?{=S(@6VD{pGUIxVkc9+<lHGrjX&cTYAR4XL_D7!9GI|T&qguV_#~A_p-d{g@k$^
zm8p;2E~@ESvBLGqXfr9|^M86hc<w)dtbFi^|7fHbaL`E<uA`#lDREU6gl|`)o#Iqf
zzAE*R5gGE<gxbzSfE4=B<Vn7{6c(6eN4`qLVHRzpfG%(0Lp|Ol508MHF3X2{=-s7!
z{J#rXar$QCvKAH5QP|$X^2Q6RPg~_*`H!Q252FwJZmTugxS9NxTF5r_D`Dk<;`z3|
z5{oVQK*w{mSn#v<6&K!z+cl213tT+r6Je&s65;gnvkxbqV}4cGEi-Tpg{Fv-E7`lG
zW8gy=2imGZ-5m#6DHoqzQ~!j~M@)o;qPn}OZ=RdnPt#+OANcf}uAaKgYQn2zq_;5E
z!r7)W(g?04N=d4>r>N`r0O4aG!mpY8Pyq;52~rpCfBp%ktM)1t&99Bt@h$<}7L|*m
z*&-b?Ofv31GvOB1J2d;<djfhc5cn5?-cgqt{R-8m6AV}A*kA9Yz;A^P9m>P`cs_N%
zc+=SKg*b{hw;DV4G7MRr`~ImBzm>zwEdR)k2RiHMmwz>^dh;+{&b8pA9qta=-><y>
zMAm)xy#K~G@4EFa#GbZLHDZ#{OSXrr#y*{Dd#o88Hf^Acz&loJ_GM++nfG<rrn@S>
ziY{4@tYCo)(BX>~+kF?3ldP*4IH2<T2%5)TvQfXa&w7?6N3K{u<4YYiY#YVnM0;A~
z=I98hLI2_9ugLKYU$YT3H!f9e2ZX0rb70D?M}8={@f00e9k~5jx2|e07VkerihT5`
zA_a|_;nSIthju7(_uu@n-tSP>`Yzw%qdhZQ71cQEYT%uMk(MTXpf`^@upSRHef>=5
z$zGvpa5-5%ztB#aQ%+HXYZ6~@6wQlOQRjsQsu@cJNL=CsjPic@WKpQV!G22e!n&e2
zh=11gI-{&)i8?rbzYN=(JwHW~l4Y$qp=}v&TvRf9)@Y-SKB>V~aO@^%;m3Ws8lg21
zN<j|Ds%$KWW#4#0Xt|{Iin*Y9&c3Y1k}MTfNAe^;^Ynrj7qrJMY9o&$pYxw(Q?3I$
zz8MR<owSiOJBG#wNLdh`nvemjG+r;_HjBg}mq+GT$%roI5^jcQs4E(^qG&1h<{XNc
z%|uDBFv-E-%T}6iSnC>tW$@twt50P`x7^j#-iE99x$jj3jUKqXVPzz(?da-TB<wwu
zP*yp_u&CMP>9T>x@Abh+63&cnGk;HHulu7$`ap`VTHl&S%@xjOjEAYNJJby`7-Xv7
zX}_8M-7eo0Az}OePH%`^iCyEsLSitzH^MgUv;Rn3!flITPxfCcq~f6T1&_=0jhBv(
zg46O*l+!VXd&<eApOT>T!|cO%GGk+su(_(6Cq#s1TIHo1qn9Oc;pY#sYoP(b6H($F
z_T3G3bmkTtl2d+ZCe~p{ZVu8M<NB^z6&M~rv3*{qiR0U7T&xi?maeSG+S#E*js}<U
z{_@?UfergC2R7N)>WQ1!vZVV&?U-KO8^k#VU`qeLi<$0=cOs1zOJk?k2Bt`y^k6!+
z|Dv-jM^pMwFsN9~*xB>Sd-Ts^F+mw&%WVe1;sqmSyxWnh;iKVT2TkXe1-JIe!D=Mb
zpi;B#mpuG}U?b5NK2UD*3P%YsNE-J*%J|69A9nu=ER29OqRlB*XI)ZQfBBSaP1soy
z3c#uV!`lC^w@Qic8?%u9!{dK_g-?l&{zSzG1j`9qSxqvhn$w7n1`HZhiWTYYLZ)Qa
zp3k@UonzIVU#oH7bv0(bIfu3uvpgLoHcRPFk(cvqb6w&CHO9pzBk?!w$CMp3apZk=
zYaZ)Q=C4m%*{$m+JjzWd=ZPWuc*IWoFZOG<<|NT#gAds0Z_^rRH++&icZr=!=uU=f
z2`$~~vr(MorlM>}5V17*#*jcuGrVN0ZpZc%^AAy^n2)`mHca8T|7<THWU#(_@oiem
z&0Fi=%P9LXamQp}<7_pH^_=b`+*nmhV2BNI#WuzecS&siXRSEfYKhq6FGrr)zpPxM
zqAcxosnS~*iC;!??>!*B!y@N=F!L{U^gSuu2xg)2oO}T6A<N?Hs6E$a&p^6<#ww63
z?w6@xiJm87@!9h$!pec)vs`>cNZR5x?DZSh&`R@|=){423gU3YJm~cb*~jh|h$>dn
zue)Jda?FQeNfJNjq(7Fsl*>{k;E7h~2%jtkP-UgvTwkgxmJRz#E<CE*3qGAW_aC8I
zx$l$q=SQKr0>u#7ZOg;o;4T6)sK-G?HZ2zz1b+^CtbDFc)^^q`>gxJXHot`jw$wh)
zWMR|(;;hfjEg0jztW;88;yw?uIEbui7V%)IXi%8=DuMf|jT6Vx>CT;=SzITCe)|4O
zF#w9W?SBBZVYb{k-cb_R43u`ByxbYj+{kXfw$^(5aKKJ(h_wIf$kU-jnsy?EJ}>|G
zbnFY~Hb1*MIf}4lMupx1!IvK?=gf^8n6Kc&9W2sDCu7|kOv6m3#*B^q!A<Q|LIy)`
z=N%pt3Nr<TwA}3RLuaupflC#Obti-T0~8@T<Zo+CENI)iXDcPK_e{8<kc8cew5|C9
zL;ErubB$`-q2FzDYyw@#E+55)K$f2Jp3i%~&@U{JXBO^l$FtTSDT5Gh`gSx@(X9!<
z1w-g#zQ)CY_GyKko(Kz0^Cl?}n<INs4^HKc-@__YPX~HqBTBBijhdHkNhchJ_Jpv|
z#6F<oLfnTCK`%)%@x%U@)RSuM`Kgt;t^8She9nSH+td|^edU8J+;bay&@Ot53emuS
zYB?x_GFc8=yW+$&whJ$sFqPQK7jBV1=cY-=*5=6GOx~x$@%br*<ARL>V7^CwZ%`7o
zyhyL8TC@u8o#B5xlz@%tPfvJ+peN$+`iM^RprmR7247dM$0~)rcW>0KI`0!?(;naE
zZx$f-MNs(N2q06K(Y~-_BkrRLhA%#3=X5%Ww(Rm$%3*m;Yj18w8X^TNZs-|;O{>>$
z`#t2%cWH3Pw_Bi-Op%u@0*_57;M8ni+P?;%N;nj|%&1a7J-6mNytj(xO*vM3>ZP9R
zdYB-IQk}hK3lFD}?pp6XrdND!{}#hGs?S<d-Z1G`5XC0YVdQlR<jyi;ue|v~x-s{^
zl2QjNE%_pSa6{xzDmKv2?iq*j*Hun~k5dH9UeBm_6pmE;n&v;mhS~k}8(Q+PEody;
zP`R$k5%vT>rr<qWbfhU-4*3Gh+YJLz6C2_Ba_%^*74H>g$|qIaT*W8J*g3qf<X3zo
zZWa91t9NDQSybc0jl)h(C*R!|$H6^+Sbt4^XX)h*C{q8x>kNH$>2TAZ;VUlBb2^6t
z{$fq)$(bRael7fbhk7IK=88Vjqa&s<R`nRO`eDd39eLSH6JKhX6F+X&7EDhP*J>oc
z(yFk*q_u{^`p>`i&*h&Z@e9Y}i-q&L8q~BCcvnNTi4Muz-f``#y)zNB;D6`2m6}3J
zN)_3BV1-?wvS@b>tnH(FA3@b2O-huu{;5$oA@L^BbSWkSZo_<j#-wMwdz$lAdr)P#
z(FRS9lBMxRH)OQ0A-shLS*(k#xaf9}!lpis%oOj{GYr$+rD>*;L`Fr1Uwl3=<z|5^
zHigaBuJi9d0+%JRSP=ThHryGAS!ubkDt>(Y`c(}NC<@&Ng8#OYiy3W&K{Ka%hc8eP
zBQ?XSSJp$`t9!0tn%u_Kb`ay@*J3*g`9mE=4S8dD)RVMEj#h)XViiwotPhBn{oUdy
znl;@y5)hysAMmjtZ)zPaj?><>jj}xA(RVa1?kGxGbx47^_tx~M<Nq|u+lSMhoTn!I
z%B`!>ty#ZMDWtd44?1G&@_?Xb!>Dki>8Mnd?#_YoyF12{>(Dmkgmf`s@vHNlp>?mu
z1{ZAzw&{)}U*6o>(79a*YPb5Av&8`acp5IM?x>RXKc8y;*{^;)C6(O09$q+g1hPdm
z$}+aK<B1Jw9MZl)&78T%^VOpMj4vN$KgWbhIQBVa+mF@0aMF9sC<t~QNLU@4%GQ{k
z)F{wg9K6)m{&Lx3Sn^fyHPk)#7etlmwC<M%iMAk0YaV$UI_CWrLDyYfS%dv2+kDDW
z7&k1)x!5SV^Fo$(!Ye5<+a`loquW7tphT%fsD+9p+FgUr$jN_ey2Law{h&RBi;9|&
zb3(I-m^5>m_iTCVZj>JE9JLOWySGA${QQv!iS4?>mbe8)|1M;tlCg8&vyZ1xyo{h!
z6dOkdru@^lu$AF+xT{o1PaxQ@QQ~JElnnQBty--z^M6XhADMU0486_mUd`O_@<y`r
zQp)pX{u+gEF&_#DUpM1mP;I%L^|n!Fg&;3azqu=Ym_l+OQ~_pm#+H>N0N4Ek%kKRR
z3YUaIK_*NMych(ox5sqQ#Xm<<QIQR1c`5ZaSwn})Z)m}aeB5s@y?U*J*{=eLRx|GM
zmUV6U5N6K;TUVwJJlUI^G%DAUZ}4l?J|IS!=Px>L$_EB<1xkQ5Q*ILqb?w%EXc}C9
zWV<O>e}OGyuB~VEN*Tl|7|#t{%t7m{G)g|mrZT~Rr`1aBhaweM(^u|BpnVwd?fs~L
z5-P9`Yo6EwW#$49?!yq)xm`8+^+$zXLZrKc%T33Q0JNeSEu-gP!EiuPcSo`;v&AYy
z>z#o6qWk!}hNMZo&5tG*?&0kPMWkz~FM#Q>!ElCiJT5XUQNYX9%+qvO@;&WSLN?a_
z%j*p{L6CJZ?f3g<#2drupUy1pV4|rf{crHS)#2(`@S{|@=cCew^;SB!k&K7-n{9GA
zDJ6oxxKkttFEOJ#`l4<CD4iVpH|XL%I9O!6S?Rqp9b?)4Z!2BGOp!yeO&QAUm=vea
zN?jXE?3^nW!en%67e>Lv8X+3SV-r@7mIZmocitydi|HW$-iht0@1WHl?ar*0J<u{f
z7f^1PFP?4J4PupK$y%%r$N306i<L?x{eF7yeU9Et;Zlxn$T$U+$TH=Z_TOe#1kOrD
zBoxk`6`pdrYSPq?*s{>tJ=JfAi_Nf@srO54%Fit#&yi8>cP7dMK0nr~^C>Uu5<(_q
zi#|=+$&~><p*rxJfB!Xq9<ccU5pJas@ZxoXoBGys!#l$sVd}Ft%!8h;F{_bH>ILs=
z#N*a01{%$Vr=%;V;E{LPGAaeE<eSa%t<g6(cH2z>l7%16*Av7;9=RZRzdwD|0<ga4
zezUj90pPfS=LLo4%sv<eED%|glcq;Tp7LV3w*3)wKyU*Hf)E2BQr>3bx<xepcR2q@
zc>xfSd7Gc}4h@6qNkYH<4P)yse2N!?2COIF>4_Rbs^au5B1Cyg0iM=aIK3bnfk}>L
z+5iwXXE$Z)2OkG8b65afkPOULk7v(1wp<NFO7DMcX}Q=gAUiKVj~?EM*1*SdN%|W_
z1+9s0sn-(&?@Npq8%tvW{#Bw`doaU|Ck~hm6C;24%Y8e#kXe?6gFR;Ua8lQBaJL!1
zFE$R~X5M0Og9BbU6KvmJy-@5>X1?GgWP3yI4@_aFL_U@d&O0N?Rwq_|L9G1a@ctid
z-R|llA}Wovft7iCP_QEWn%lD;(o<0Xw?a8i6Bl>%5uOXalVK>hWRlW!QEXLh1h<+O
zA)c!8421N^<vLJ*%qM;?-f)}QC5>84ANa3;r9I+Gh8YV=um@(DgaG_;jftksP^#_U
zIT$DaF;8r{z9`so_kFghZ+q}qqoHW1S~d;0IBq?9Stq&Y7SgmY%F$nB+ZQaGKnFJO
zPoGa3dvP{nKKXc{(uT6n*7R;(sqE=Y`z|1TF^K0iHZI&H?M2+O0F>WyD~!^PdLW{Z
zjOfn2QqRAm%}^jLdLDjddr4fIj&OL71u#&mSYUgIUu))(u)WbD9s)YA6{mA{^JBvj
zsC&>^tAt5yjk;%I8Fn6-<+I)gO@m*#(i3kzD2wJ--d${{sRJO+8qUtniNyfcOBaU7
zCCj97AA8M}q$PLWfiW_o>qoogsY%C)e}4fF5BfW#%u}=A@|Bk3TnsWN0`28Ucp};0
z%8Z26Ebg`#ZZ*-64JV8C%T*jXWUx#wx{hn;w~k`p>dt(!oCE&R?&s$NEZzHTQ>?#;
zG`@ZgL}+Y%%I9bMMnZVWPR!m&pPBG7f-x?{;9byvsZ=lE)HAu=p=ODudfogAuu<I6
zTF~fZ9)!(bmp3_u_6w-H`{ckv9wwr6xpwa$$D;{r`d{}(f0_H6NM{B^rr~zj(@V&w
z#p`j|C=I=L|NWq1xW8;Q^eiXUJTx?3CZwzd_~?^0#AZ8WFn@?P7NEmb=@mje2E7S{
zghf+}OQ9f*Nkw5i$__h*N;)t$uP0XQ7>g69BK}IG-kC^+{nxRXTi;{RO#|pD3Khqr
zYm5>bvo-*jVZvx^i7;}Y8rX8))WuDw1_5sr;${8QWxWmFKID)Ah8{QkZt$k3LF-_f
z;^LN;><hf-rlRh<HK-<D=JKkLG5x3d<&Q2p@G1l3^6U@@;qQ1QGi?Obc&ZpU3*Z}V
zg8`oWPu&R~&W!2b)_aGljPt3H2P!D(e?*#rVY}=}OtEo-@^hfsOvL#&xDM`+Cgt{N
zO7YKJa#Rl{kVdn#xB2?QPS}0-eS<uZXosE9)=B~<zQ&GsriYga+}Z-`JvI0PCA|T9
z9#cmgkmX$Dc{+Q6lQL!UO9LdM+}FT<OjdVQCRS#>?f;!!mGPS0gp=_6$(yUF6E^L*
zpEm+SHuLWiNG%oru%NDeIjt;{tDl2vCE3HzYy5LJro>xDe4uX_KT11yJ;HjkI&34$
zn&5ygfgtBD7{Dyu2#Ggc*R`r;0o$APhPX>3$?UZ5Wa|<j<uJ(-+@#NMO8=xp{Q39A
z=WnkOpfu|27)(K6e!H4Ez!@&mBV$u}<a@T_c6tZ3Jz8xG`Z$#pVcXLFu38xS<=gN(
zY&QD0MO+1EqNjYLr9n|eiM~5JWxy2YU=30f6KxMz0Wj*HT*KbD4h7J(<!^?KonxU`
z$6R1=ahCPpO=MGpCop(#SE)q8$WNf`smcPcq}^x)#@`}p*sCgi!g#Ao!FsP>9<!5C
z+Y#vY+fETF&X~j0`CP%~#l<&+;!E~Q!t5U#0Oo^T<^(1OTjx&4meLHz2h$OlftiQ0
zf)l^m7}=lh&Tarfu~nHh#!@o=^2Z}e)*+AG1%Nm^UCneqtf#S&{HJ-bYDr^5zipHc
zJRFGBMUqTy*g`LkFJ%lH#3rrO5~035)lMsIUNmg!o*PMbhJVvDYrwrXl57fb4nruF
zu^aK?48BR<Oj(u_Ak9%M!N!k_TH9DMjmAHi9U$+tm+1}u_pY(MKXY?xGp3$r$u?3;
z7EU2Uy$|o#_S_>zHXa$<m`KmO;>KId@jx#u9A~C#?B0Ens<ySt9(pDW?So=h3%{Gc
ztx);<lzvM?59s;WNv)RIk>ZGY_D_wZJRHQQOMW+{IgLiRcIZ*`DR4Z97}vX&WpTAN
ztP;HDB#eB~|A&dqT-hFpxr~e`Kgg(3?68JNrRdu2e%grenG`MPwLjcw<N8D@Z<IJ<
z5hXhn8yBY%v$iHpsJb03DoaS(bJtjT>NvMRH6reo;x7PlUpgux4?GpY<*oCn71Ji(
zgL|Cz(*|}$82mS|(tTybeuo-=ljYf3-;t-W%cOOjwg&68MXU4rIR$kgk1XL}vZ(Mp
zq$W*cV2*}sRoO@V{Rf%QlG3)j)~g*~w`iLs;?kpp+JJ5?D<J^^8MWv=A-0ivx1I1Y
z?y~<)fPb+_s&i+SE8#X_hxMSw&Xku=36sY9!@tGt0?qRD1>ZvayiGqj?Txm+zJ9x~
z_P*iI`@pB@qHrtfQ$KG_D(^NB(WU_cyMTt}VTz6W^*i>-km}j&-n-Ocp@xa8R=Pri
z|I8-^Rdl7~*Tq0G#?Q4E+&#w&jrFue(OTM)(iI8DTd^6>H7cr&)v-VJZ)^Jrg>4LL
z#EBF^5qDEOwjmFP(m}^I{}y=~6xB6oXiMU?Dx8jT4aU(zt(WrGcKKiA#y5a(Vd_Z`
zqHc|rH>|E@?o&Y$5I5DOqobp&WpkWH*A9$r*8?QT2nIPHSX%$jqp`7ncOs|{3fqGz
z`g>v)fv|c<uaj*n%)Rq|{+2}GH?1aElxJW+!0KEk&wh3_5C!tZaA{F05xyLMf=2>?
zx%p}UPuU*MB+j>I!zptQEcaV>ZE!+t<^z#89JFA$DhN%oiWdwd%_&NnFr2n~ag&>1
zcL*e~SWaxH&z@~9)+&A0dZl_X*i>5F^{5p~Kb_&ikRT&$V~$y#O?jm$<BjjSN<CCK
z>jKbM#a*8A5Z4U3l8PZIv43uxP%;Hfzmg~}?|bfU-$C{^3qEixO&A}iXEIxClT^$y
zvA#i(`FWhSwY2zne{nw8&T6oL-@k4+OK!@c<+Aq5e#TPD@4a|xU1`yN!@SUb+N7ut
zH{8H&^4;E}wgMR6)IDOI*j^vYM^;kI<tw|e2dfXMJQlh!CX!yqo0ZcN5*VK^t%51%
zsbo<XCMnTXzd;#>(N$G^fZNIkJHmbjgv8PqP5>7Zn;=B$!rucQj$5Ql;nO2IWNaS$
zhdYUy{bk2pcGR{rR(RZ|ptd}#yWCiM;p*0KSfRz%_5A0uZi7zj1;DuaNZQX!<NrJ2
zGt!a|qGxpV9}3D>|J+*fr&0WSwwG<e81}>I?r98yj;dIk>YTqwO}FINX%7@?ISOEd
zWzm$AGt~xAs&QXD_dVwGRNnkVh_$a%-7}Vxc>R^#@28mEn+3}apL0LHulk3Lf~Vc$
z&=47WYxw)eQxY<DFq=;DuGyx#fCJ$Qx#EXk>O}?(JcRo9U1FZ?F~Eq)d^=F#r9JEZ
zdVlm;Ol%*%v*L8JZJ6!N)>uN(;LA(fVsDNklg@{N%GkQIqII)Xa2k*kTKOh)^7j@9
zYfm0M{(F-<uh)rqc5V`xRC>z=ldT3338jc1etxNNWZ2DYf1z#)Z!4nA-<C*c0&C^O
z1DJ!slWEg~@)_Q&q<+4Jf#62o=g;pBA08b6$$O$D&B=8MeZ|HN$$pn87TrqPhxEIw
z=_rl^Ao@C8XU!Ris!arln!=fmv4S>3kFXsyS{>CSWhabwg=W)=ZNtE+yEjE%xI?va
z`{v;0diYQ9^_ZCQr=j;s)V|b&BQ@=m(gT>*Yk;C>m`P_61qzj9KVWif{C><)N6uS2
z`jRP#AK4p5N<saEc@9ImmSW0}HdAcyYz<F?pUzrO<i6GY5SdG429yAM8+2y4Vd(>z
zfU^a<<2MHY0qYaP6B@tC6UIlbBMQ2=q7vJylJ1OZ&E#;?*8{;Ch2l?IEFMAK+sL>Q
z4^iC>C1RHnD~8lR&hN0mjGa4a^~sKxyJu!#s0f-1r8*cSYa#bzZ%c4^ni8dC$6Zrn
z3HKu*=7U-kB{!@AV2HIj^;V`~V>mU00!zX}?~+l3-6DVc44R--IV{i&P|^$EkCjPm
z{fZed@!nf+p4$UH7@M;Xf$e|sr-J~r(gEL_?DB_zWCl7aZ&zGrO|MB)rc|GPhwP_X
zk2-N$<ZUbAC^>+B#B^tZOk}+2npBM0bB%hw<8Sri;IZJ`?X*x43^va^5cu-}dydYS
zzxwDqBRC9K<*KA|9K(DSo|2go4diJS+yDaJK0%LqxeUKQgU`cppAK6x_#FP8CGhfI
z*K3*684I!<Vf$J-$%f-GHI19=tHI9%L<``C6ZGHxXfw^K>9h!%VK0<iMX=vL!dL+h
z^2$t8GW<RhiiHYAC4X7!Hxn7AgVVXs0wncWXTVR%l!ogG6Dz_)awX*E1rzsE-A`;P
z)|uNb0tKU1)5&TdE;yFv+PFvV0gTH#!^799t7pLdg@-DgeAT|7s9Fd})6A!!+08&B
z|H5Y((`|*ybS%IzRnKCiVt(^>pdS_&-T1UO8)|#{DuH_7n2ejtoITzAstmMF`no{d
zPrS)%0G(vxohl!w9wppGJnT?OuwtIAsO<Zh4(GF0LbH%!i?U9E#E&=<w*&P-*z41S
zZP$z<m;;LWfC(qpef+ohv`KXi_LD+YwOb)AV>AYUXjen_tk<5Nb?}!F#TI-l!yjdo
zzAecLLn-e7dAluY*+ry0w8Z&0aaB65@6sOp2R+Mwf*3~Dq4q%TFHX{e21VVYUrz{1
zXdbD7jqUi%sEH~gDw&+Y<}JDkn=2CBd$Yql4d@#VQrs)O2QVEY_i4kwb(>LiQ7)`k
z&O59#KxHr<w)<MWbZtKC6*8J{Cy|e+MdWvZ14}&WUvaz1*2;Zo?3UBAc6P33o^+}g
z69Ol-d&58O&_Hf?%JKB)q=9!b9~ayKWdCyTE|`ubRer^9blmg2`Gb#J({YVTO|xfS
zg`i$Jplr;a?|XmAk|*T_@j@E*s>v3yrqA(hEcd}v3Y8%*X8j0yCHv4SLT$zB_oxJc
zGDDAon$3!}Z{De$q9~EX(fh5^`(VtoIq@;@{U5RoyX9&khG&FHbomI@r}GC?_lBf)
zcv5gvhK@yG7k_dj4fU(@jSAHI$#+#|hN<<j?+GV3AXL{qq>UHya$&N@afx`8mh2<<
zp3kyBNugf9fOaWrI&2g4{Wt$6)OPXY7~dy3#x}qRLMZuAXGw?TyxymS-3m3}D{ci6
zk07`8N5#fXJBWd3o={yTyzJcRN49CdNE9U6j)iv3nG%>Z22}(8kFB3wi7OoNO8MBZ
zKe5=i*b*?CNLSO6$q^f;++O9leFLB`Tm`a89CWF=%GJ8FZYzY3v$Hk+VhwaAeMTQJ
zba}BT=(jV3+M>45XhnTWl{{oar{=QprTK;1P<K7Hs;^)0Y^KS_{^grW>+DpySe+Fn
z*&)(bi!0Q$ZeKTNWb8NrkBw=N`uA&qhEbiBTk0R?QA>%?$YN90gi`2RFl5kAiyC9+
z*J~0k>r5K1j;`P>6tkt7MM*;}Ext#p5n|_iq3P%bKct`swo7aHQsvQOT5xpm;jjcC
zR(oERqvk>Z@4pzXA-8OU?S&m6owYq{8Bmw#o;;v4ng^~F<yV$)+&KQ^4F5}^vQvtV
z7VHw~={&9>J}cSpv9$aL8<HY@EtxJ1`VJQ9?}&~FQlHLN-&T*GGKQW#?1P4(Xr`^j
zDM>wd196x1d`aLBouEnf&6B}(rG>;@66#;7;ZZAB(u?RjDd00ymszD&r1X}i%%O6?
z%%psmbJz1P=*_b)3Y^2b#T2m&Hj#PK34?PACh7A4kh+g?=PnwEQL&vCyr8iGQq|*5
zWEj?oiPGggPrrZtGp6{VcX%K^p1C07ze|Jv`R5xFLQ<zxI8Z%0)Eqhz5g^O)a^~%V
z;|wx4aqyeMyt{2eHSevs$K7|Jke($gkETwYq07aAo2wSHj1-SuE2;gOj(&~V5w3y8
zw~omw>%toSNa-Z86w1mB0VPV0If`1I2Mj|@r-je(D^^U33~xWAG<VNk#}+qwvg#~=
zF@0w*i$qbQrB)@rVvAqCwhx4h4~fN%cPDS8P2an4%CfCGMc(nZm~ZAHPG=~2{j|ig
zlcN2AoYRMC9}Tr>4RmbVHYlw1PrB(|#x%Hpy8kETF0$?p1*4^`7dZY;z~faRlP9aj
z9L9h!@zjN%<?zcX5CCXEKxM8fqk0$}n@~wgfHBfZ0XM$bT{ode9UcIZTn+LLH3I}t
zHG`d;5u_l$v-A&`o*<HE_e#tFpkUBBuorjLbQ(>;0&O4>K$GkAxjLCXZMX?(#<V4u
zy1)v*&|H0{a0h0{=6Ox>K%_^}ObS#i_sZxAIdRd8%tn_aZ;AOQJjt{&K2!i#gZBjN
zuPJ3PFLvC9aX$iXMI`*00W$jsfw2FNvWgD%TiLo#5PC1S*&nCduigXGTz%N%Bo>GK
z`DykXb+KYbj;dd|9W&B{;HB2S?;AyTKq?LA|5jIjr;=e5|Cfr|zIvZ9rL61hhY4}T
z+u>B_t4s*Ok~$dtqyuy)!H?h@5K)xvO0$TdlPac0-aY));buMn7E=^(?|YWh@s7^>
zUKx3#fXpv&J-dh)&!K(yB}#^wAm)TDlXZFppnjH5Qws80Fe-_JtiTaim_W9@_zj3h
zkOataR!SMVL3L=yUi}pk|337mDritiKA0E8B=Yy7vH)a4nFdPc@ikihrfm8vc1VpW
zz2L7jMwtYB3G&sZmDCo+mgPu^w;Y*y)Vb8=w5@$Wx}(kXonmqI<<$L?8Vdc(ZcnLo
zRmMW<0cpiQ*><Fzi59Remn+53J#(L(_dsf^nY0#<|I9x}-9kxB6COl{dv`Hsy^*V{
zG%8u#s^rxci%lB51XJN2HO@=zi!V3@oUp1T1v1-2bbB*}Qy+X-;Kyi&)rq$GzCH@^
z{7TxrNW>6hB;9pynu36GXA&qxtz=Q0__8Qd87w0;TUWgXfDN2ksfy>tsdii})TH6G
zTEf*Oa-?&vj<9u6iDU{gcc`Xp6ItgLf%11iQ+m(x97+LK5XSM#sMg!HC#%VAaN@+#
zO%Wo9(lLs(^umLI9QCPe%XLd=<F|CfT5;&oi;1q}E>R0PbL_?-c|-TfjCmMu;Y<`h
z2Ftf|-*tas)^&5F)t95No+Ua}bX=BQDl@a6ZgExcTNTaA0i|?*7u$t~ExO@x8R*gO
zmxQ<J?1IXb&2*FM8AY`?39U@vrd7ckgQn@INo2W}n6C<u?5ao+PKVbrJ8kHHMr)kb
znH-0qU2HD@bS?JlhrxU~<cA*?`U{{#1ca#H8<4(2)K(g8@!+?X2FiI9Xa8!x|Htb`
z@BL-@13|xjIhJeeC}b9mGT9W<XWdRD<+)7^JFEkg>G^av-4~?eI)#%44NSz|?>$-B
zQm^}Z&88o!UkidN;Sed7^JLj6-;jcV*uRb}$7z1dQT0s0%I>g(D75+geJQ(E({_!{
zl8hwH5IL6Y;YrQ6&g9&YMgm(T!hQ=0)>EoC_rgphAmK^!zOQCB#+c`SaVXnYokr8W
z88?yW(}~llvig@KOS$c__(5g<GY383WCLfV@umt6?QOU<d^qYUZMKFKm|h2wRB8v@
z!r3S*k_x7RBb7P=VF3xzjc>RrU7n+Yo~-hOCp3`~r^@1YE2h*avP4a8p+xU~SB1Ph
z)5jepopjL|u-;=6Ss2%nhje;0-a5S<NlK7<*!HkBR(Ly`m-Nd=D*k@zybcC_-(g8~
zD(1l|Pj_%YBk{}6B&zmjn3dDt+$(nkP5Pp_hCo@YA6#EDQNNKqa3XyS2eV~<Jv?m>
zb5KsuZ0x8C5Zn>uM^Gnl3J03R?kJo0j-7X3m4=i$u~7u-htoFlgU?*1mjFkT=npv=
z3dt_mjM5rP@qv`%t74?3VKFUBSG2J5tCp96iQ&>+_q){Gi@z2y5pY^W+J&5Ds<O(p
z+2ztC)w!UmjpT_d>9J%A8CYcC2TawpNd@vd=>5N(SJ+O*Vs)h9_vxk<^8rCsGO{pg
z-}@$rBY}%o64qR)R`y+F)UVZ&286|zo~4wj_~j8%lMs?@fUNHCkA2nYjRHMkd>B^=
zQ&bFGC;s!xEm)wH>@~gC7NfbzJ^uI2n0U~n5m$#b?AvP6?YIBdPs<y~6RLJRm}T6<
zbdvzSC?(>-0lf?VkGD~C66r=n%5NRQN4TcKNLYME1mb~|yE6Bj`D*nUOKCrlAl4b{
zUtMM`#GKli7)A5hB~@m$Y<H|1!VoZIF}vIvFi5LsM9pdO7%e63ESQCI4MZ%Y2wZDu
zcslr&sw75`7zG9!DamAUlB=cgp<U6gGi5RdXJ$QQVY?U7K-xZcw6&aMlpP|+nBFUJ
zu~43V;Sy9fpyB)N^M|Az)y)k{Byw!eA=^&7(kQ)w^jUh}Stbd%9aZ=y-4H}!zTZtB
zj;fXH6sBzxyQg5QgFt*<oCPGAUH85CvV#H7CAX!Yh8s=Tqli}m(=X-E&Au2K(kEPQ
z28dzVsku%)POLBNJE5;)S#Z0Xf_=m8d&|rs-lz8S%D4cwX_G0z>!xMjv(HZx(L^>f
z+R~`zEqNOOy>r3O-kQ!^m9+lZ>Mt^rQjR9yE&ZSS`hVNzE-!B>L|`vF`k&wwMQvzB
zoD?{W#mNi>uBwFF;58K=R&m+84LQ5h(V7MN3hC0*=0Oy@`)yk-oCwgOXXDY})dd(Q
zYBR4AhaHUV_7K-*o)=XJ+<g9HFs|aJ()5rrF`hU7q0aYe%kz`_6~t)kM)&$6#|yhj
z{+=u1!8x5U8oGBnEgeV0>vn#lZ7&4$sz!9D3pMslMK%gp&hta)I-5yHC&Q*WY=+vu
z;+bnY$0LMI?n#?{mwx%QNr_5!g7xSh)xcMBIH3%9pt|P0E{|}!(m?r_vHmtpxafo;
z^53DG-E?4Gw1`-0g}45$vdw;Ki^?v&XrF5^jAxF|6qY!E55s0{_Bk7FLroxAZE}sH
zZB+glG~jw4L_8?f>=Hwy@G{leSeP38Z}5^l*O8MIl#-fc&qYyuX#I$hwFfi*;{15B
zi6<(UW8KHte$j23qJoRbW7?>qgUMbB8$c*NZ(mVr)TSZrpCpZVb5|j_LSmE|4bT{3
z-UM!rT|n=?{lZ`G;%PKj`>kdFks<+?qH8z3oj4Nq6VK=sM^5#t3?-ulF8vy8<KAW%
zs$djTeE8@KSU?f9&BVM5q7&vjTum$j7Z!$*e&1OR0~t&EI6~y8{CvU65s}nK?27Ji
zkM&6_Ll!#^slDD<jp7Y0DM&wO1WgDVbC<CBM6KiURWzPfaeFTOWGTqv<;<os!dH&i
zeJHg?6}JcxUf(^UU7cbn7%C`Q((KS0@RZXG?D6bKre||C4g5%T#}9NTAt7PDBroui
z4-PRDm#;8RIrAq*zSoA6-lPuP-KyizXSza>o-P>B;o1osO)U_+aA&6ORHqbpV^p@#
zl0_E(2lY6v7^n=s4*gF;lntHl$Is5ji&Cu~H+5a6_{F+f8}6Y=Yd3vq*h^RF(|zAd
zAk{Kt5<eZfvm7{6=r+2e%$YvDNcFT$v67uoBk@JmWfPgl8)KUPRN~g(U*?d{tb%?0
zvJ%uuhnlFmRO~UGYm(C8hCJJQdo{*ASG-ys76kFfwQoGu6D7~NwhaBpAPG21Zo|kM
zod!o6X<OiCbM`Ji$4;6p;&zLp4{8n^lH;nW+PL`bLcc(q8)yr5-tU%`Ro~_IJ@2SQ
zVw_S6Q3N+av@Je>$o}X7%;-`EB&w;N)O2o68P;d>TU~F7i;g#u?zk!KnL|Z~_CN6H
z+4ucX*k6jKz5oNQR1MZpFbI;ye4);y=2tk3J_5Kc2BTnPGsYl3PqOtvTkdARvED;|
zU-$}3Hym&|zp@6{0_B-l(B8`1?+Gi-U`{9gZ&xVITis=~ZX;BvttoYRdA##_y+|c_
ziQrnNT{8Ch+E7K1u-QK768tOB^8ne@{-hCfYU<KJGlWgXrw={km)Hm1&%iBum~!tc
zU&gCXBo^4cz-LWQS23&*X4b`g<uk5VuW?uatD6~hGngeauo$tUIV6B$(msG99?_bl
z?Y&=@<2SdDUnM1uY-XL|;0(8#@F94as`qq*6Gfog+w}yEQtq8tHzo2*Rhj?3EB)n;
zqLle4W<ay&tJ6~{l9;$|=P@?M-&&;7)H!TY8z}E4^>;5J=;*^--VA9LaSusxhXsj*
zjz}|HkmTNg&3<H=%4XM$7RQg%@#$()U?V`>T;#OH>XPMwo8`DjVfPSLep<|7@3;DX
zSTjkP&dHhG(;cG)uN5?!`JqjcOC<NtH<94&P9@%8%n_ioR3Me>=$y48P?21E#Z+Cs
zLXrF3<aLR9ZpJCKHD|-r)ra5Zd#CyoeI35Kf>*fPssM4YJ9PFEGZ1LyE-&=eI~^;_
z#Mxll5V{a0bEa8WC&pD96~EK?3Yuyo>H(?ntPYKTjFZ)~BeBBX3x!2{wnoWap05Ok
z{DR^<PCey9g*Ui%e)?sEspVL(jpzV3xfz|}Ul-v2i){qxxxe8jhV=%hf^lvBrPe;l
zvA4~mH`4T|8YY}?y4$WSr8&5Z9fJ^q35INs5?KQIHLc0DQ`O?Ricku<Yt@G7W(FmG
znERt<1`H^gxSQkRB<x8*_8uqK4DoN-8d0Cpe94%Bg-oqPpp#UMKmCEr$$dwHFUmL1
z_7J&gc!xzNuD(FLe}E9Q$|E~tHouI0Tk`R`&JqvPZrI9B*){OzVwGu>;OB3Ib$TxY
z-Hl`(?>6TS6(IDss+%+_<?DHRCMj>qz@-4ZQux9=gYKeAU&?m1k9FXa5L8il2t_+g
z7yVzNDk(yMgDH&s#L!TZzv(!df<f&SB;1>DZ#m%414m<6Z)^Y03L|486C*CBFqmpz
z)j7%m09d~c%P~gaN!ROFL&G|eueJ3umV=rrenv|5?Qt$%q#s=>4?z?B29}~|P-p0v
zJv?(qmhID+vVa`zC8BpC#^ncmG9rq1md4qcmC|035}0wm%$*Bi_UgIIp33^*?NhTn
z>TR&S!YzF|D)p+e;-aSBK*8R=P9nyx8BI|={TjH!E685%o)6#j{@k_;TG%S4;2gC*
zygtP;K8k-;eNuZ8e`#0JRDJd9c|V;XeoJV57tLD<Prsdr4b1L_y_~VlN!tw(4fW<S
zv4S6b*W6V1nkw-pA}LRqs3loe7;VYm&`4cVHlF63;+ZP5=Sj1Pb{*@OOxuI18R?H&
zApW6dGxvpA%kxwm2+pi~u&FfX)Q31DGssB^p^#o*ftXze&J>#h*Eyr<Dggf@5bRAX
zujqPnT2f@P6yuuDGFK}158^$OMw;Vu;#K&#cpNg1<$sni{@d3C2pNsJt>fRwsc=9f
zac8h-ffDWQXi?1ZrsusU9WDzwpG@3l_=l_>`ASf{)y@_O1v+m-Ayh(p)l%MHNd-yO
zj6^*`^(7#MN%G)2@md|X!RyU!*2|-zZ2Qd^va1fPMMKfBpt0uVfXG3)djwm4U%_nz
zjNSf~-BgyrAKiCICvX;1`3=Q8@isZd`lhqhFj1N4mAAJE{-k*zld4IiapjN9UQ}=N
z<?{L&Z|4^6)?)MK;?!TA4*Ok?vwpy;AV}juylZ_#Mn;B`r%`^F?M7Z(zwb~b`@+=s
zDFQVbfi9QgsBLAq4*X<%1J8KohPGHbV43Eb4XJh-!Xaa$PA5GcYkovvM!xbK7H{nW
zrXTkPTZozR**YL-PlpCyI(Jo&XFXJ0$wrNe7Tv{u>oJA~F6`HF7tdK{Rn%5)J?cN1
zOVdnC%6_(Xjta}Va<`sSm6x^n!(iu-e?mC=3BE*RWXR|h1|$E@j5LRr@hwnGIA^#5
z8NdZt*Uh=K(4VN?G3y3Ms2vT@rKngR=PXq1??Og&r*S!;{gW#Bc!bk)sgqw0(y<)1
zf7S^GA!k!1p#U_>Vduy`u5bl7i%C7N0eQuMe+9S>RH>+w3428SqbuI69TB60{x>cU
z$~Hnz##0w2-ZfS5|F*pU=S2ayY)H+z$bHd82&ZpA;}{}4IrXQLFJFi}C%oE(dREid
zvb&P0(&?y201^gB$K@EqRZZ;rw1x}_Ta^1tWFuElg?H7oxQbNqRYKwW$NSLM4m0bn
z9h>(AS*ATM-OUNhd!zCRpZr>XeYf6dpqtln#usO=Z#N`X1KO8aZdh_cGT;!gysr1_
z4+IuVzAO+^JzJViN|q4uZZIu&L=K+k2dr2hz@e}gB5IiesTL%8<n-Bj#etgju&Ejo
z+jzFtDa;=!Opytkic7OzTYFwRMK+yKXIXSmL4~E+o5gb@$3tc%iCzh8Q>VnRCTW2f
z5@wO|sI22J4o|lEod2c-Ab+5|+rDx)@O6I-v(p+*mmLH;GgbgF&gQl@;ssy*CfiQY
zcPYkpQG^A7R+oVJunsEny51WFSXUVIbRsPN%QrQW86fMs_FdJ$>}`ZH1?&%<t#XQj
z-yvu4xf$ort$*RFA2-{w>M;Wj>L~a<@ITpICvD@;S>_O2Lx6TZ4C+caAl2skYm5S*
zLe>VZ0l!#ey(&)>Rn|+vt~L{(kcklS5~HHU(bJ7>Z}2cn4d2+by<$SQpg9GHGH>t*
z9)PYO)TVNyR8+nc3s-sKEt_ipHql*VR##}hS9PviP{05Mj)Hmn^37@BsmfU#mE9*h
zngJoWLvO4w@>ENDuTnrpn9vq|_^ouodBYp*YKt0k9%#wQIfA9~_`x3!ugyMB6PvKw
zlepOY89^h|mf^YK&7sOF|8e98<KQ2BElotW*Z$Dt#rvNGQmllxU$NpdMrl9TOg#Bd
z_V=FK1SZSa)$yhY{5Aey&?><=J}is8I{dbut~ZrEvMk}*Q6u}*)UpcsMvz&kn(iEr
z?a^2qjf%H#n+iGi?zA-orQ{=a&={N{v*1`acfWNlyoNs)tf>4A9g<2ZY+b7@Y4;^b
zdd&<w-INmSCSsVK^7Sqy*<!dP_(SmI+LO8__plPv_0$%Zf3xrQM&4r9LHgamp?{5I
zB+M{Y9!o&Srod_MvC6c<4!^2)O0+|VJke=3@<VDfz<ehyrv}FWI}cCr2Ufimk@ir#
z*~9i3m6&?EDp;iR-o^aV^+QfPpr-QZ&F!UNh0rVoC0C}t=bZ~c(@z&B;jwRIr~yFO
z+Uc$$Rv1S<c9g$`f+e@Kgv^M(h_?|~AiBo{_kRu<^|;`gK-CMl#Z*MKO~qjR!aR^;
zjo#eCcng_PlYtnessqcdQl$mCvNG!#u`4N#&1H)0OYDqUvz8A%u3~-<b~~GnxDQF9
z16Q?L_JOx0AtmL$&FZH+_3k$R>ebtldtUz`=ZDc}d2jrix(7J;PECSl^2O9VD2j?w
z>(jMFb1I&BUmSlLUR~38IE7p!8h@7I)G#cA4VMJWJQ4CQFK)AWhVQH@X3~7B2J@s;
z<$>q)4bzh3YLxq-xPeV)+!b(Trj+HQNuQ<aPaUu*zEQe`bJW!{aor)OCUZ1J=+0NX
zs~pr6*<>l{pDX*TZ)MR}T-J8bfnCh;do{R%yEu5OV?KHxFepe4{CrIPahrHGgE-l%
zWK#Y=EwEP#pD}qr>EEa!=(6?-3Q#YzUoDDgzPl9sRnP8^fXvG7hwkY#?D2{8XI#kR
zpE=YhCRzi+*sd>@QdWJQclcgZL)ybdaY2ZfBoba!W-MSED63oF7oV*kj%z=iPt{|m
zA_+~V4e3tl3{-Nc*m}Kk?&<+(Z}s~7fm-SzaF&0bE^SZ+zK!$m?itB{7}&6@Gni&{
zCHr9$dq_hY2Mk<^OLWAZZnL=lFz7*L@H;d#+BWo(Wn0#9Ah+AF3KwI5k+x_`dSp3H
za46Yh|1q<BTMy>5`*y@FaDXXn<u>*bJDjrUK40`w7N+LB5u)wdy;|KK{BD?gXwjvg
zcS<cXgOYk2fO$gh+@t?+fje-#9h9n?So%TXWX8zv>SWM;9)h;1z{7q)?TnNHE0qgf
zMifXUKhhCC=gK{n?KtPhpxUVROWP^Qz$tbQj6#UCWKUw7s;T78K1A64>Hh?iPLcO(
zUgTY~Tkg6;u?R4HjmO)I<oAJAd^KYhTUXk_JMu$ADKQvkSztEFCY|B#ReM0|5I_`%
zVD5HuIryB}?pS1;KcGdAE|K%qvK9`};hjd%TOkwogkjP!zK*AV9eq`J*x7&%;+1Tn
zxX)_37A9JyE^(=O6IZ+AC@eaX0hmhJ?v?e+_-$r}>`HtnQtWUC(2pFnVb=3&7w;P?
zAZqzOL2`bnJ@MyCu;pCvs?^o-_}<kg!1@%CUVQjC3c|OBeQ0P;?bUHY!&b<yBe)ZU
z1#M;wyDw!3R}F5d?_e@+ulmN0R6`7v{7}09ov;$hykeI6qxTBt-w4xj-)O8|{T|Qq
zQkkNR!)#%t=c<@bH=!zz?_`7BF?*P|SVM;E0}L9`;NUCeaTCPOTvbL!!}&zUruNu=
zvC7IX?wzh#%tUHWB(ZPvFNW=NWwBx1QO=^$wrIbwdT8ByY1qbEH+}Qr&mX`%^Njq1
zeQ3mjYy#SWi<pvzSQ^H)fy@|4#1CjSrf||gx%vxGY;O?650dLZC82Xq{_pk4$Oq!$
zmTRwZ02W#5`_!Ll@PB0i1R|O}GBL`f?ft*IS^Q*t&X+Un?D1G%*lgwE8U1);|6KMu
zV?%NzUe+A21ly2$8Z9`ea6fq>BUt_6C@S0Kw4*dkSiXMFb&CO!Mo3`t_iET#B%S2>
zb4lpk-yYbcy8uL7YwyasHA6`wte9!`@-Y=0IpBphuW;HpxMTMBGAYWdJNvw_f9cuH
z*5Zp;Jzi@Apv66~t5qxxXaKg!9tMMzl#w+C9`f>@2Kcy&>r%7CJnvcA12O20cZR~p
zuef%=crNt2;K05=j~<tlmu$L6Hb}cm9OuKY@7(@*bbeo_*4VwoTch9PYS%+iK7j%*
zBoiXuKGf}J*_pWa<!21b!VpjDwH>T^u&X=yl!&iliJMSiwNgQlKUVLa1YdREv!4sa
z)hFtoN4hj6+<<=2do35hnvk9(<(5xNo9f)fU`B2NWB@qHPg0r(0QcNk*X@bk;E%q$
zW!?9fp%}*C&mX%Vd)!me4*d3$&n8OlB3JUTgJy3UJ1oCcy#jpKrOaKJ%~hGP6}N8!
z-4tdBFd0?E^edAQ{9cwU4(aVUQwUfZx>@PlK#r`dUI00S*G3uPY~C*bee3~nDy%w*
z8eae&^oGHfn=8kF?#GSfe^Df6Gms9`Uv9d&(|^c<KXR@7K71<Ty7@+FMswd5X2LeX
zg^U9QvE2!fU!kP#5!g3MTm>9FgHOmAwt&gD^vI_HrLB$2sx!S+-R&G%6~OIlQDQhC
zTx~<EIl^7$sE56}1tyUtTk5o`Tzm**6D5umX82w_yNtvsY|H~V6l<j{yt%=BYLj@+
zUYJMLHx}PB@B`|Q+mq$(P_iu2;xrn!Cg2bVcDv>HDbPHdasWr!iJL2yw`J@Dxv=W8
zH_BcqNpv=PKr`G0#X!jttuDs%27ta`JpUk}Wdu!?{#?I;!2?Fz0NBC@0ceXIW+wOz
zl5V3BC_0>t3!THgkpSPtv8luaF!;C^eQ5ea&TE!Jy<6*?zAvToGdhuIYru9N2e?!d
z2L~^Dn!t}OB7R>LiWZh#_I&m&*9AqU;<I+ND`jMerAvJHSY$xFD+*Df4}Mb4t%ck9
zlbDW`ZLkO90lAFABJ>E8jUc@XH9;67)oa}JQ;duY{~z++GAin}ZTmh|)Il1g%K-tE
z?gl9lDHTN;X^@hhAw_BsB&A^xK|txQ0i>G|kQ!i+mK?g{J-Dv-Uh8?+eVym?KKIvW
zEtVeuWf=d*e(bSrzrCvKd}?9v&c5b>Zudf0n@H>u)hlLuH*8Q*?aG4*hxRc9*|2Q0
z^YWPUMcW*o*^dPk%J@{<K9V~+ys_{x*M%L_LND{&hE7A(xQzaQ#;BEI`Dxu*K^3-i
zF3E~KTs*E1;~!!b7ziOtG6UNFR5_{MvLF68nXKb=Eot?ACz%JCoI9cWw~^g&jis6t
zc>fOfLbiY}-g01^VV!$LH0|@RqvB-uT(6R|P#se~Klz77_V%N92`&TF*TEy^*nPa!
zPEJXm)%!G;;~LHvP&mf8Jl0OKbtia6c9^gSUn+A=E0gw{`SC+Ib3O_W8OcCNd1c;2
zvX0Ho=>rkEUD7#!mF!ZFq<Wt40bd`+RfNrOgg-3;)|OT}aWof_NHulL&M>FiR*kmL
zHE&j-<}Hh%Bt8!PzNo>^4mnYyS#Y)AU#d!?lCG>UeHfUa;k~>R(zF&?xJNR6w#~1K
z_kg>0kAET4_7<6Hojt=Mr=iUd9@Nz7<j!Q-5?SfpKV`g%T<Z-si3u)F+Oyq7de+_7
zWJ*s-AO6)!a9A;-*VFK0-XhBjx?J_n)%Wn(g@G&cGvfD>fzJ@XN$;|Fzn#6A!1Sy|
zU36+52)jPZ1>|=qDBeVnkaCJQ#iWyNwE~grI&*iA3<K<be~%%D%ns+H+-)FI;*bg)
zeU#2?#F2^QATw>gH|h@Bj`Xe9AlIsu53zq48XDw*-d%@J#e{tQ4Mf1^%AC~s8t}jb
zqks5cBjVk{FZ+-f?-cSnih8brwAU?$G!xM-z(3X$`*aTCM3e6QCHQmKfe@{<G4nL7
zSvmd|z4sSn<nQ+!%7M%cGrG6rluq{7*9{b0+iv1=5zl;Bd7Bk3#IJ41XFn2$DY)9J
zi8R_!H|tKnsXO<@1dmxUT`nLOO)&Dbx!3Bn{#iEPZCCP@d@HzT4ZU3Ix#y1pe#Gt1
zBt=yO?M+e3h*LqP66u#|(4&YvomE}Gt@9p^HwYCnmWA%Yq#?+mfzH^oOo5Yun@H(2
z4lN`tSXmw%n9Wg_z@I>dEz{VVIr;(D-Xr*ZzKkk!N`1QxtOFlw=3`XXD&+3bQOm>&
zQx_GxmDJ{|7aCPNYd*1n3~X~N_U_iSRiu|JZ^T{duZ?h<`=L=HZ(xe9@-O?FD5BvH
zG7TrS4*ma1H#e$Eqqf_a%Ku7ae|eT1#GsRHe<afZHinLRUwWeA8t=zmdt?gPHKf~!
zZYA--O>_uDB<KU$GP!V$yHt5aeC)wZ4>_-g3Kz;SQurUUfBxCKr>?UQ_V<7iA-b!m
z&8}aY{X;JZNrJVIV?CcP80JDBkXFX|>{KV+hArnMOJ_Vv;JiwP-5u@c11f(GB*Avy
z(X58xT%QX?q}TNK?(C$lNSq1P>5<{)h<%1fdm^0mM$$4b6Fn2BfNJ5um+L#dpE}${
z7BaE<(M7Wfk-eY%a3&9y)XU)1+<Gx+rrhtu`dtlv4m0!5EVs|}leW{ZItoNr{=QPe
zLQ1Vs>t|c`dXS`&<^uiYgYHPc-Hs<-H!>2;?E0yPu}f6fuXfcakSjePunH#_f7Qpp
z{44Iz)Tcixgz%_%+#e>`uXlsxNxtbMwJ?S`q2U{Y3zT75)81v!PcGfApF?$SbS@{u
z2o*I09S&MrNCcB5myJ}Hey5N@%yub_;|JePr3CO&o-J**kVF!db*LKQ;XAF*D2Xm@
zJ)o&jJ5-{58jrq5Yiu+&yTzZJjw{EHw0;)AYgF_F-re0z2<7x4k@c-VZ<wyMKJt~g
zU_f4tl-}1_RpIFlt~>>W=3=5*L@1@}$f)pVpMlCldyR_7SF%!&EqUoAX!qQ8)DF*l
zPNq>H2{4Q~e=KhFt*!Q<VNGokG-Yta1naQVeIL`L_aHjspUL@Xt03S2WT|0qr87lr
z2JZ%hWSY+sDJt=8_3R&<ZF|o^SLJIn3eE(^tfb}gsYlsq$hxUDtzaa(1(mC~oxPf4
zi(;J1{?OOhX-yoiPJ-0Eq;SUR_6!s|xp_DAFEVJ=&eP?=oHF&{LZHXkYYTQROOoB(
zI>A+;t(J@l{H8VM+T9Fj1G$wugMZ$C)62Uk?9z)~t>P@yXx)aCoWAWUwA(O)*<G5-
zr=WEO1#09+Zbv7DpD~L<rf&$DU~Iju)sfK3MeG8-g;PWg=-MlJF8<{riLu-+btv<F
zbp7Y2J)rTWLut34z5P&1dT%Z$YV}hg8$H2zp?V?8btN+Uqi<yV%+B_Kp@d)WVeb^Y
za$Kq^iUi7nmh`P&d$GQtCqCCeK5FEF<VFUiwc)#okJfv6tO`e;+4*|MgopY~T0NHT
zKNa#dUfH&DTdx?^L${pQl3FD9VVdaL%QPpYnq10pQ<J!aRn7zR!$%X%_2<C5SLQPM
z_2YK47t5oXaOxz8ko#37e?74ozb<x7<mA{%*8YD!fDerz)fcaKtJZdAWJ#yuePm!y
zqC<f{>(4}0k<XQv#tX_l3kl~m&~S70*oV(lIJMR@iVD7^3i2PGw$YDbB<W$z&`&N-
zDLmSr9wRI$5Pxm$R-Njy+MSQ5PthSL=31JlggHgp7(J7|%r1^hWKdv-^_-qMx@-$O
znmn*N)n>JGE;x$4`$N*)X@XL1A%83TyPe9PiMw6u6MY&Y>y>psk>{&eZd0Wcr9Rbb
zcl}8PSX^B#sIKQzDK*Q~xn%2x?pc@RI{U&p*GaX#YBKZM!UVCkKYD?FO!BKe693L8
zU9a_u^)u#@&ljaa6WPC)|7C()$5aSH+yu60LT*wAQshs;KH4BW<Y2=tGkII7ZK~FU
zyaA}YIqI;U*`#kGtR!d9^1Il)ZJTnpuW{Pl)f@8FH=b$0Fs)@&ro+|LxGWC!BBOe{
z$MRBc{JyiT1p}qFClMin^0af%4<)@7=r*Zu1=v4FuZ-Yrq*yY4ruWaoYl3qGFo++N
z{+bex!~-2#Sq)0XA62_?Sl;Osoc#>i7RgW14)zENj`rc`{=LYaSH>NORnOC9eC)OW
zq@>J+tB^-(h2Md;%n4~Vx1HscFEg^?y4ru&Frzo!+@77`{sCvW*J}Y@`>t&ufa<ei
zTwwCID#?xF<<T^ZWJ?)>8MK&ju`Fap%1ErfNeoyms6sOK<O?@E&8w6*QM>29C<z~`
z@p#S-^_!}gVWOkt9MyJYUjidlfp3|>8nRsz<nHWuCwv=pV`KX9rTBJmo@>DHQS?%*
zQ}2fl;mE1=^~m;T3XgG$9}xblbnhkge0dtIPV9m><j$vwuDF&S#e(O#{x5VO<OW%w
z<@RKYu%&~u=3G+fQkZM_-n(OgZ=7k)agXrm-oKL<6vcBJzW?`C8|bfT{N)$`W}~Ta
z&VU3tU;rD_Tud6^(!Q~G{s}(v85=azZjLO9XL#wtPAjvF0WRDm_lZ<1wX((RJ<k(;
z$EX2RMJQ+N2h#iZAQ@?D#2C-B0K1o;jQLmgtSgR@%2#2O&hm8zFT<kDfQCkwGUTA{
z1=D8f10m(4&06XuIPc4?@p+Y(M(j%vxo!?E&Q{xZQ8^;~BuizC9^Yu7G<VGJrOTJu
zNmH_9sj;od-E#&q)rk$3R2VRRx(vGEJ%+FeRJa!UWm}A}Nq;H2tafgRFH@L^kc}L+
z!xa%UGvY4xKyk8E`|;DO&Yh5bD7MYZg6Gme7_2G7?VuqTNd`4_t49mo#OF@?*d#`e
zbB8nv9zhjE>|NlchA9T;@>7;4gfVKHxZ|!!E`!b)*CJlqD@MWi_^9p&c{-6L&(QIp
zrJPjoo|)qI7f5uw#fe><+Ac1!w9j(=ok=BA7#aEbrh+>9$Twwn-`0yMtS8fq<!LV7
zT}7^6oSE*Se}BINHkpvb)j0prR^4>0Ip(0QvwUh^QP5-a%tUPAculP=z9(^HmDw~e
z@d*1>d<UYNZm&Il*`zNPBK<Sn*f{<=fQZnPREo(Y@Ku5Or&6KftrNuK8**&edt_c@
zdKCP`Sh6j?pquKbm!^=^%_kfb{@xU?86><wr);XQk|j#`3Q7qywv)Bh5Xy#YKqIYE
zhoX0=Zju7phmkNGNE-VXJ-D_cA~_T}unnM5JjkPk|1Vb?58n5=oL^t@7XHB{^KZr$
z1pgBeywmd;*8_VijDyo77)r(iWAE{dG`{wiXHcr>Y0Yu|6N`TbVe^N-LH|e)G?`<G
zdQ?R45SRY#8*E(CD)_1^D07z1Wzat#2U2kRTrUp!R;^)OtF*W{>dvnrS)O{vcq3pq
zp)Uk|q5P5VrSWj?<X6NGGGzvnpcP1A39j)1i@G>Jv7xvlb#N&N9RgO2h-|GK4R>a_
z1E9Wqb8tVFZ&~27N!WSw3S6=Grp53-3~cXQRTcODe#c-F9GM#>2_G-jZ?V}Wxo<L(
zME=|zvOEje89^(>U75zE0~sBh>vbv@%mtgA`9bmXjVng)>NZRKz>dL>JD>+nB=_!T
zHlw7w5UX-Te$@&-!FYp@7w1C;(AlSil5fA%j{S?JPq1IC<+oC)aiedxewBmv4_zZ8
z2WeJv_ETW46oNPclOieJBG{nLu9o<e7rILSMfSU(xWBh_)o&syG8SlA<KZm9>J%S5
zZx(&&*ch?3t8-uPy|mr*ECYL|p=cM>5wSJt`T|%MeId86J1tV2E3>4Dt?Uimj(hN*
zL(IppA79$!NiOAw%|SKXC*H6t_d#aM^0Ug(n7*N~p*u1@EaZAP^~%5A)&GoK^Z%Lx
z;u!DLsB!)O2Fvz$ViA7{vMACLjl)m6|4kqHzv!s`p)!qk0Oc#s|Mjn+FJWUN@8Cbr
z0RJ@@R*!zTI#Q5gTJ?+LZ(He)RX*qEb1fVlOWcn{>?vt4eE7%k_qTLLU~>j;>#x6A
z^1}Y%75&qfo*IJ)oX=bO;MM>1vABBqSX`&pHT)+l&fh(i;Pc=l07tP;^vjxmdY%8C
zx&OyMi*J)gkviS4?p*ouzj$c>Pu|d9)WD0o8kXPvzYWuWcRJqzXn|^zk~Z~a*#94V
zd~N{h7ae2smxcesUjZnY?<yMH;wi2D2k^>&eEa_ElY2^^t8GUMUmXS|#Kj#MSMdJl
zXvPwC-5)?9#trPIa>~nv!eTxt;SI8qp30`*=jGMpbs~OFNl7{WJX<3zIbhJ)SW!hq
zWrN^lsQQP8Th6vgRCz#LR#fc&Emdd|FU(EjWHetvbI7!>UcHPsFZug@Ru?^Y1Cy_-
zjBk=XrpCCEPZD&6{4@;68THjZt0wR)=4M6+q}Y{)CJEWZB#FCNV(gNIZ7nrq&s@vE
zt(78saXPf9DOpBNCFD;eI{7mdG;{xzuqy-;-v3ki-HGMrPdpvv%S8lb>y;D9Gc6%0
zU>~utYwYupbaX{s)cEe&_|O_^r{8kg=Ro+<$$bP&guS2cYmtw+t&I)XHJ<H@^bt$0
zz1AzYHfay1H5*z3l4Hx?Km4<+tH(}(@AK~<Ct|aZGSELwsc~6K?uzB0KR``@3qTOG
ziM3w7jB|K~zr5@H=^g7Tuaxn>x{1@wW*rgShbNXJj4#{YvlPE>dVj-4bLYmlmvR3T
zEgt$)SWnefTuu`EF7GXE11F_`YO<z5aJ4(gob77ubaABLhLQY2y}*0oxhwiLCCwqW
z_hJTKmiwSecF?hGXFXdtXSnY)nm6e>tFhYfr_@wVBMW-1!OZmg%fdf;;me(=pL7vH
zcRnA2iEO;n5a}CZ*8wFFW1zCTv^1`rA8yU{RXfcM@;HKKX?ZifKq_drT{a0+B#X$Y
zM6M_zxb-WAq&;_wuclmD`iklEM?xQ7BNv+s7wk>8Ews^p3w)F*m;Uf8`dVJYM+S8S
zaeZI_ragxgHf@FM0Qzk3Uu4||pfuCA{zJTNR_ihCGx{N!RKjHP<kHP4Xgk7{z?Ek&
zQ>3a*^dej5DrC}GnhN$PbJ8`Oxta1fIaWi~IVsr6tTkf{3~+6#deQck_~$;Pr}Xh?
zFjlaMv^rKsD<_eMX-?;8rf*I&2iznP2|5nwKO9-jg_u7AQMVU%zvAx?D~QamL9tiL
zYpP%IChn&`s&(^Uc_^06p=KdIaOariDrqs2^cvZhZ=fwI+jyV%X}4@c_a}xa^lgu+
zRv}zTn(m?P(CzL*U@#9pO8O?Q*_N~zmW_TXKH$7pUkou{70xa8B%7vFtcI1eREP8-
zr6pxDBC?fUgV`5;o8jeJDWjah?y-lV&TeOC6+fpPKRXQT*~?7)8C}4QVmdw5egXsX
z+tlYoOfj1)VXt_md4N&yX<(;>nA5D{B`N4c#ktn_p7*JSaHaTqRXsm$$Gao)%3ukl
zwhlDS{Cf1_m|3JSaQu`e$@tXP%tc79d{ysD5f#1UUT~jGI5rAjiaDm1l*Pb2@r(H3
z?|_0kTbH^+7Ywp@TN5h9Z0Ov@7A#XHQV%S#y8DWk=8ctD5K8w{Uj4th?ti@cKsf-L
zdzdO$EoRrBD!vHt8zop$xcE3|geX|Aa955s2XCQ{7E|aAnTLOamDDc=G3ApR&-LZn
z4m1;iWo)HLplJTPxL@-1Oe0}7+cg_KqU!cu-~4n+c~6z()(rqHvIJT3I-QRVpoZK-
zKGdP~c_!g^eo6-~72m|z7L8MPgT3Q|zzz=+QM#w;PhJfKfW0#z%nm`~VEAI<Us<}*
z$8z@w7;kL}^xVfS*c9_wpG#RwAOnloPA#DN0QX_&F=e44zHl2b9Bek~53uqZrS|$V
zqZ{((0USJ50D>S03jVJrbPi<u<u*g@zDwf=AQdkg9c4=d!SCpx@xop~Vh&nTh$X!*
znm*dLmsx3VmNHbamm||Z+M)AyT@max982bBl|_#fs=JLlR19ld0sunE?DR1?ODWad
z7OC0U)_M@N5g#aY(xv^Hu2Uzv^ow`Mrj1;JKgb@?DZJ)}n(8Gy4OP5@1J_Hhr1Q&v
zxLuxh{)^Y~H1H5O-|3COe|a|O-Tz7j8N7D*AEUtA&VIitPs#sH>^Mi9dM+o*&MI*#
z+Ktr4-q*F~D0}VdW(~d}cN&BAJBPP$yb1i{Vj>TRN;+au)-kExR@{h&`977V2U$({
z-aw-i90?dOpWUxQq6@2MKVT@R9)GyxRCQVwRE*pzYSnkFr`$M^++gbFM}3D1e8gOu
z)BYQ|BTdqykg};3hskFDL9#?DX$pq;uksNTXn$asFFAwuU2-UfzVZlf<s&1>;eS#f
zh==QV-~9&ly(GT==XBuT$&UZm_dga>934(n#%e*e2$c)$3~dUynF37l6GDNcEefWw
z<+D`T)e5{?s8i4ET(_n0TAg3nVfT$pu4(<UJPO}lU~zi3y6}Bs@(U(U)38VJg-+k=
zn(_~CuwK+Dg>U*5wS?Dm%D3kq3^d~#rzjD0+c|M-=Q$`Bb{o-kFHhE#$ypod>FF(P
zY@5P>-BJ`0=kkn+=nF%)`Nw7gHTK|~SI3XMBwYVQsc5HAY3c@MYF1(^9HubHj@TF3
zBNeu<R!yiP%lawoB`kiMSeNyQ2*PrD+c!;>eV3H(O$lJC936|~viC;z=zhwyDuQd$
zx7}W&%F$_gvRdI!@yho+%v*%hvVe4Z#m0D94&~FQ4uB|?t)#=m7fLVsDdgY<m_up4
zr1imq`h3m1%eC<9gDM#`e<Te$9DQ6Ir>)mzlxH_Wf|*++Vo7xU=oSR;#<cj#gqOsu
zR@7CxTeYwc9nBTF@Yvaw8*=NFLrBOfYj_@|PcqD&M-!N>y}d9qs(Lg0V2-71Ce?`z
z-upwiZHR47I98aLcwQkfe%-r2D`l@<gw0kJDpPgW*48j$Zee6fRu(9-#=cxmnKuu?
zokO)TI!cUImU0mo859<k74)fml5=V|O6(!~y1{&#3q7_9cv*%;67Fk>8Wf=6l+55i
zIeC=AK;`!M?=!*IHf-;xX^b{zq*;=NsRXzHM(`~I)Hu(cM}RHtx?5r2OA9UawpUfx
zjn0i+L*Ce_dg9*bIk=QGu^L-bx~Pr&6^amaplmVeyC0<u&WG2tO*_v_Vk|UhEkR4l
z^4udb1%6S(Bej9!a=|=4shCX(Q9GipI?S>2;l62L|3n*$iJ#LTrvlQ)QS~FM(VHe8
zY(4j#mS-!!`b3Cwi%3b7@WxSEHYFbPp(1%j0s5sNx*!*>I)t({_VR8TBYBfrbZ|{h
ztS+e0*R;rR=Vc{-_PtG|;@t1pJo`0D2CuaeOAu2uVO@`Pp2+hmE9|laJ3*5`cIM&&
zaw;}gX1QSycdQ|BRfvZb$QKtuP9o&kkOZI@;Bsm5G*QZ3qBmUzhRp#3mp)<3ndYGL
zZ*MOyyB>8LwYKupVxb)wVDK$cDGi2z^}6;I!}+556dGbp2EYt|gDh>8WKRa%H}OPg
z(m2#kFHr7~t;{Ng{Y-~_+g<;0jYP=1_>#);LB*i@VL}87d`|=%=nW?`0=aE>rZ3Jt
z%CMfR0Ft5d?o|Ou)+XL&!dQ3uil|8(0*yC@^IqMX{Ox%Lq(X}zIsif^)%Lq<#G7Ho
zCzmh-O10znOe<^#hc90lQmzIe!rkg`TwaM_)+p{>f{%<mKSKK@hf;8iSldosX@6iU
zFnzkEdI4Gzq{v5vZ-Hb{kL1Zr)9afuvS+)o_7o;R1%-`%&b@?XeiV7~hh#y(0bs*0
zbaUf?n!#8|VtSXO;SLVi%3cFzo(!k=o!u;g1ho?}boFmN<%wRD;_HXgNvh#Rmr}0`
zeZF?dZIGKa&vh`kgooae08lvImYb{$i-Kq=Go;ss_yoGNRKNwi7r{qojCcgSf@?r<
zP;53Jn{JoRR~xQBa--vYd2c3f<LTfe(C*Dd-XFZAW^6Q^IOt#Meyzs$aMQB48%u-v
zWtSxhi$Qud?hV3^yKFME9Q|kyb;Lk}T)>T_oOEBzV(7U^-<+OO5ZXYY@ESB=3)^w(
zV*8{#{LcXh<a=G<fGdpI`S}F*02m6ztVtRcsH@gFq-fR-U5K4x=_$Y*DiK`K1xX_I
z$(KTpGcI>#ey&lD2Ms2tji4ZyIUBObU$2dd5OxLk1xd%}o}S3}G$eqJ7b0n1H6GCf
zymImuw7%oO(z;grL}c;Vq+k>H8CI7Sg}#6--K6&fkfry6{#Z0$j+kb(=^_jIx>GP>
z2WSzh&>ZLRbM+lCRipp!?2Hl73%I|}1_2HF*(H*Za@7c^tM|t?XIhBR_ng{Y9-y6R
z(4UI{G$hgPQnGS@pTuMpj=z#c1fh<VHfvj0&?#MF^-KGWRih`XK0a$#5I<n~LfEQX
zi`JHM+`c9^U40;)ZPp%Ma^QI3ooyS^qsk2Iz2$VW$Dj}s<#WFve!DysZzY6;lJeAA
zS@t*G(ON82vse0DLLQ~u+U~jV%i(YP6Qus0&>ua=;07E(0Yz=e!cJ*=0+fc=?F;Wi
zGeO~)0N90XmGR~*7mIw>5rRPfx~Z%@Ne69n)remm+p}ur=E2JBJ>t=nL3IuMGRo^;
zTJZEweV#p|V=7^Rhb8FuluNE$0|kZgdr0(lm>!SqlTq2p@~M+&W*<~3zN;Oxk>V=G
zcjShgdtCkn&M@DbQmbQ~CP69kkQvpKCKoXvE~xYuS~DC(izb378Vd?}t!=k%(JxeN
zwCm7b4HwH`k`Ig3lo2QNSUO$|^EvhDC!yi{u_?enqHs>|xF6~|`(Nw~2mxR_bpKZ3
zeUAbX)gQO6XD+b3zSPvbL6EA1Jbt%-$XjgaJIZU6TS~>UvU#FVAK1vw`=uneGw2j%
zG~ZU?cpkPKKrGS8;Jw*|&zq;BYE*cWH!|~43bW7dGyO{2OjQMan<XHSCM!g5q#E;%
z-u@RgW7#0d*H~OxPf;wKvXRS!m^TVkLVo#H?FI(d3T5BtTc<4Z9&k$SWSbTGbqyXb
z09Xd~`7=2t_)NgfLVbrCHclJ@vH|PDjV^V!c|l$7y^-+<6nX}IV2?2gVeD1mNHd>U
z04}=mO?g7Hy*KliD;*#o60Sr;=1A`g+(;X4A4*fs{Q#|YMiUnjR=Le8HE>YGRF^yS
zB);BY{qE*g<KjIH^xx~%yOA|#)dh3!e)iGs&<w<)r_*+Zj`mJE$ii3}c9jtG9MUZ2
zf&I@|xmPt_1U{C)8we)}#Ok;fVggjo5AAmkRFJC`6IQ=R7nsq(MD~5I=ZAZ-vTw@2
zRSKQMtC%~GM`3)@59G5n+Al!(u~~|yw`K5HP&zn@aN_+fLnV5HOjVHSi;-&C!dlhW
z+WpqXiZo3%#*02&-L!^mg>ht~CLP`f$iqyR4=%j~t;@aRxh3q|r!$KYe#oV8P&;wT
zq1MwiD{&YqMuMb5^{#I8e6=lsH^D+pTjNOAv3#f5Id|yM%uwbsS+OZ%g$!}BDF0nc
z<2!S=dYZ(rWy^_2Et;s1sYBGW;0zubMO~8T7k(Q4vK2mXBH%3muXMJ5YyZI^bE!;M
z@?PvxWf)IwZhLLBcy&pH;oGL`-UTMq#@;194WZ8On=aeu=;6++Yb-w%@wwp1c3&7@
zRQ*%8=*}xVQi07FG(N2n$Vv?;r#2Vv{Fs=N(JEJSOVpA&=BC+t|1DLzNeI_aV^edK
zbR)wwkFih?NcZ^SD1rm+9V+cehAgYtnA{gh{Mxw=j||IlO|xyVF7Iq=wzh7N1nil>
z99>xyFp_@1RxO{6n`@!AwX+wF0kQnD2>rCX#$0~i$Y7<4ATqdbE1yPZA&XgU+{;h&
zrJ$d1Tbj1$S9(Tz2$@F_m6(HT`2CC1N3yo0&G55LuLa}jpp&D?t?N;J0mYa&zjNO7
zVbR)J(!-gwRUob}W@;s+o8c#MqU9yONz9N~nQ&*jCLt1%v=!J+po^l1*3Nz9<h3D#
z_oa%LX=~3bU9vJX0r=u~(yd6Fz^;Whq4z3^co0I^z$#&+0W7L{lWree+oRrqfw3RN
z_g(_;5zYG>MjC!Q>J?Sbz20syA2$=&qNZo+2{m@FiO_uEB`kVz>8;um3;BE#XG3Gk
zA4uhdr5n|?Vmy&gOW52Etp%P1>Pmu{u0I2r6jFZ}sA1#IT-loG4my6y;WQ@3Yt1xr
zcY7aq^!yexBg$chEoL|vt$;fR=cLkN_DNkPd^PycalSLUvS9NMZ6I~Fkx}!B(H$2z
zqFnk&@7)AXlMqp^mHB{sx33u5KbjzgFaoNRi20r6t?)(Eom%b#(QcRgEz}_p*3qMc
zXH-I0TN5+6P|=r!u8Nn8NaeMw;CIM`JlK>E_fQNh2)AmdW+DQZ45z!u#?AMEA@bY&
z+58;&Z6~BlHi9!IQ>O~Wtqi9?K5yrF5lNxx^l=#nkcM`CwCMSOo3m=DyC$&PXKQ8X
zwL>$MDGX}P-85O<>_W+u&W9J`bmqK6234sw>Y}-}p=*8#2>a=uP|IC4Ir!n?b?801
zXXLZ(u0@UZe`aMh%n6kXDJHj=k_(}?%_3$7`t}H}u-IN}-}7AgmXjZ%-B9+31*KFT
zJW~^A>tChRE^S8g>|VNoUg7A5D<=LveRr?r`R}iUTeP!|9cjY7p)u9S{0cy~jNcRR
z1bSr5qD$l3FFI8sSu507?Tf8Qzrcfs-SZfJ%W8*Sr;$A25uFy#PV@6$mc6#3RXSBk
zRpG3G4&k;m0=&8*IyY-ZmAEPTm;0Bk8IO+pQNMiyo8~e?m`cNEN<c=aBgcL4yfCBA
zJ!^q!);J|YAp~>6vou)&Wkw$9<mv3Jnt~YO_Kh>S3cxX7>}KBEQq2`}$u-Q@ZzG-C
zF;8gB0$nH5Q$2J&8o<oV1Y*Ad_ca<(^C*h&3~)c1a$g%OabFK4+ljLJY(RJ5E_I^;
zBw&`Czniqh`d!G-(PKc-opeVAy*vJ)VkJhEr^KShiu<^igphB;uOATkNC_p-v7g%L
z+V|ekqN_HPZyWF)x4F~^N?p`?iQAG9cA|X};Wu1-A*_JW7j)T_?upZu{fDNs0Q<YK
zkc4|QSJ{ldn4)x)trZ`4WSeqpPmJFgYoQ8<cYLaM(;llh(o)u!)1SCzT->4O=<zM-
z%+>8sg}8ij<@BN4)3fP5%76>>Cz1xq-jmDKW2uZU$3xKZYuQ8B@ENm|FgG()i=L1z
zt9!;hP`aY@;m)0VO3BZ^K8}sp{SJX3Xx{u$x^p+<t6faNw3OA3Mt^_*WaWXw2Kz<A
z^i+~$PH&RcVygJeDek25qhCvf?{+FZYVPA!N$L78VX;@t+#602n#OB{O;VZLl||E$
znA6fSkx|}S2RV5~DW+uMDL(}3UEvXtb9LS)41eAjtV^jr!je-L+ig`^{zh&2o>bMe
zsXMg`;L6oul7%IfPY*=eLor);I$Y)^6eVf2VY^(Ltk~Dj$V*5v;#_D6Vi09~R9^QT
zgCCRd3J1=Z@l%-GW{LEE)G0~D$KT43@$;$)X~qm>uf00(Rr%B3h~oBeB|SVX%hZ(0
zJCHBZ2<{<yyO{JKW2u%zXup66gF^8;(muR9kOfj#r;jvYrJqy;6`84?N4jDV2STX6
z*AT{*r@n#g!K`7MuuQqEKqnlSF!Ok{5Q)N|TFKP1>HNn5Kf{WDw82W-hLE)HuTt2Y
zo=jit&vK!7o%&QXwH9h`rjj@z_#YwOZT8CFP8PjuYc>*p-AhJF)v{QyDV6au#XT)+
z^`IKx`eCuOc#Z{r8W|zc*_*A(C=PXVOSdfh8b8=_%O6dHSh%D7(<g}MfzeWE#PXQ(
zuPC7nSquEV4+HF&_k4fNF~vscP_i1Z&Lpaf^^_&CE8gXG8$#zdY8`+KXhxbufcVZk
zh2IaEzi2cYCO?kb-c%1(V&g@M)$p|Hs3;`9mM3pV$`hF|wePVA2(YF~*^2@27m9QY
z#Yg3NQNT1|1R91$Y9`ZRQ%10vAVVZcJ5Ot{s^WVsMIl(1{JoD&9WZAS*!~*rj1iv^
zA99N;uIB;2J2j@#bnFx6610J@B(dv-yeUYt!++&o$NgCEcy2#Tyo?o77Y#l4FEKdT
z{M&RmJHMh!5QJ=5l*YwjrR?1Q-L0k~X@bd1DQbC2j+n97vDUpM`IGYDiHQji0|jK*
zaKOBC0H{NUTQTQ~k97#Q%7ZeN80{~7{ppcGeKd9O3)Z#y^Aa>kp{HqEgnF0D7LHr~
z`H}#V*|#;ya#+Ce2viY1J2aX6*i0Lr4<6s^8~@O&Ku!PfQ%4(HOPyFQ`iwSkRQ1xs
zs!U-C+*M9#r-&czR7lmux2O6^OT6OB58NH%+9N&O>4u(n5HIGRKE7JUe4Cb|@H+p(
z@v4VsqZQAOQ*3xmEG?3$1%AUPu7)FH)q;gDhcq`$i|57YKgwg;$Y0B)22sdVB9s}q
z3di1Cm$+%$p4XD)b*S5V9tOgu-8YHHPLJ)+ZNcFZr-nZj%44qlGHrjcKgYwOsM^6f
zz5D9i&bX(_-qt<VaiUAT!L0*)LGp^dL%P(6UqKk^8kIStp!CWw9==lB=z9gr(Q{`<
z$xQ40x$Zy1gX)*l!gLG?4hE|#0bvBYqDfVilb|t0t=S^)bWgtA_D5L~?F{=4Ez+S^
zhepICnz4nI26+q#F+f0~odY+76#lX@<&$i`%Ed%MW)aRLEkVW2VpP6$Yd{nH?NY!W
za^cEV<ssH*szflx23z;8fky7eNa0hd#D%l#ydN?k1AwE<o+zh7ivgJQKSyNPenmul
zgf;$^dpErBXl>ekxE}>RW`rJOMTHB=M>`vjC&%qD{pRPfySDVuz$$E^t2k>U_<5BH
z?6G2Qm&?xNjDK%_)VZ7y>VC2zd?BvnM{fj_p*1X5H>QGd2`)nRg^}Ro_Src2Ax!)J
z<x!3CxNyOKgc8C%+=>Vqn*@(5!v)zbr_(fBQryt1d1_8>)cAF2f`v(*l#ULtG;VJh
zT(+-Fo<BQ*Jlp#7;`>0tkmC1@DiOtBmNU{hQ|$8Pu9b)=vh05!j=@UP@lSadw+Abq
zZxb@hOj0XI*|97aGhvlb9x!7lqT32`vMwE5%x~Xsk6p;+v}Je@@6zDj*S-6etG!Nd
zkd$a>=_nBrEd>i|-Q1`9Kzi2nhXjgM-%Vps<<h)A@w|iG_fC`4gHeuGl6f}R=Md3z
zbsIB73<<$z3<A1K&}Pp-a6PE&fN41+2zw%b#Vj$0<K*;Dt0F?11kGiH;@_~n$3l|6
z^mdJd*T%+$b8uT%vz>SmF%mL}?FcuqoMA}2Fn%p>x7gWrqDZ^A3KVSrdal#|e>~Se
zu0;kFHY<b#b(qdD__xcRZ;^NmC{a`D+rL~aqQ@>P1+@?J)@r<=w^g&IhRf!sd8v$^
z?|BtwH#C;b0kvmo<%KkJjq(HsXAM_}?Ty~KHzDC~g+IC|&BSJEwvfJ(tQHJ3Q&%^X
zTe3boq#Z4ub&$b*w!fIy`-0<koMwi*d1Kwwx)=)!Eq|Xj7<lbuz3+cnqQ*UxYRj<p
z=0@+U60Key${hIf84PK6(g1FUmf!~$AB&JF*{3$&R^@Oq*oi=-*wG69kUC#bCr?ea
z?UBx*x+epJ@S9I;b-+?7jMdz@V`;W^dw>bLr$b0WRHAuLq8waHuL*kN+eHZHYzWFs
zBu;Gh^q5ezGmHqORW_C)o5h!%gX6O`wqQ@d-mEHK7-CCaj$-sSkF&n+4$5+xV7z&>
z6%NYf&l8|mGF66_S*1=cQ~U@nnsQ#aUqK&)8q%1;R$K1f=CEF)kQl>e_q%5H=r@xS
z^DTa<FG&MA&6^?aQn!_V*YMrO(?^!`&1NKY%)6+GAG4#c<y*TXM<dyvu=C2_E6a-d
z8L@<6vA&bV8c&F}%V1c3Wn+*2PCdgd4=D_Ni{7<rr&mk}3iL&P7nL$XyyognpG0r}
zr1YGbrxhV+d#Q_-Mzf)PpXb`S-L5NW9W#7P|G`45@LcQh#D~5XFLdj{<V1N%g2Wb2
zcMd5*$5Ui<`4&rlh=)!xWsi74#2fM8+=Su|n)iQXFOJYyFQzl3#~V5isTyZLzWp+>
z<UfL=Boy9k*H4$1$6D(afbI?rXFr*d6VMVy>&Ms=HL_+;0|07mkkz7LXom$MzvJKs
zG8R2C_mz9*Mk!LS8gTo#1@nft=iR4ci-@ni1u<?pKD?u2a#Ou>WV$;I8S67%9I0O8
zCusuvE!XxHGW`T(s3fdz^}I30J7xi*g_BuBt(1RA?>vM4l5aIf2;kjsJRUAW<xn*X
zmPExYZsok9(<zKqY!0u5H&Tp>SWn2dpXf@u5fuIjLR9SVGF#b1%HOrpwY`n0X3^GK
zJqF8Z_f9tYOa2sdEZM*>wmQA$+zOqBeSCz^s7{b`0d8uvOZD;^e(NHm143A4f{S0f
z=@WkIiRbpP>d}J<efB!NKtwc+R(#6CYCihK@}K!LCEfs>A-U5lcqT6pcFd)QnY|mf
z0&I|<Nn}%sm<Dx!E1rg1R19!rpW;g^ERdfDnH*bNJ;!T%?<=E9Av4dZ;2Hndr*a^D
zlO)zcB&0q?R0Fi(;m^JdSg1gd-hHe!XrwaX?0cHkS+S=Bk-qb?5H<MCNze*5Y|R6Y
z>SmuOm4c>2kda@5_l%1b^8QfwPaYi>2vHEJ4SaoUHVl|YWrSd-Y-Sv)n+a_#-|x@Y
zRG?-=ZjS|bj4yeT{eV_J*!66Y;F1!0KmK!vf=NOBZeU_AjU-sO;%%)LsDR-77KR3?
z)KZWqM4$8_d%ZH13-L~jwptRO<H%UtOWaiguHRupMWx$OCP0X3hzFe!R~_eF8Z-QJ
z6!x!&)cWK@m(|R>`>|}KoY^wl!Djc2W(TF(g4`_e^FAyvjOf~*z{=}pg6U29SzPes
zpYNE2%Rg36C%J9{Rc_}+)h`HOufU!X`h`bx`swLucCe#<lCRX=<}^PId3j%Z1@$$`
zg>04@%0d-vMJ&CT9V93k&9dNJ-}0E``pLq6mfBgy?<kyQUteG4goS?h<agEUw8qU=
z4WCM`WuK0{Eoq|)t7ouGeIR2et3C4&L*mNCI+q!Uc%(2fp7yZT@p$~~yPMBHiF%&0
zTxku3F$-LBrtPXo99c;K-$y}Eo-4;kBHL%KENU^CLx2Bj)sd3=b!{O*eZv5H)DCx{
zQvs{h2hz;q)^&B`+I>eES9@dE;FeU~&&BmN=+ssAX;i(f@4EKVd%hl+ubsgTMAS81
z*>LKV)3wO%SkW)Payn|mrXH46IZa5S#jWMJl`lcb@)y++a2jHH2pXcAGH=-g<`dTE
z&VR8aSP5Fx%<EZstV$4R0S_hE`Q#$|s;+eKa&lYM!Q=(weK$gdrwW<vUbxb~qV7PJ
zwIhchz4aGa>gC{m<2?b-+YA~Gu5>qP6Q+Hy6Q;Xp<7M2;o)fxMraYkBK)&-ydBx9@
z7b`XDmmm$r_>9iG+%MpTE>OO^r`uqFupq4#wBF%D@g<(Ku$pB*J1(#Ajfx;i>MrNb
z&-jr_t^r*=tb9bA*BZ}!YTM$s#q%KyhR#?+6Z^`EZ9v24tXKTLnM2_gfN6Z4zG5<A
zxgaxJ094x;uP~yv+P58<_i!pZ$&V%J>F8>OM5&eMCci$!H@563!6%%dNokGY<W3S@
zmozf!YjM6;TT$E#fcx&SFpcCO*Tw2H7+X?DL&&T`D{}a?bdtVBMI(pVO_nCGAmNu6
zzGx&C^6KacUhl1>gn3UY=dTuqkr81JjoJ8ixUsK_9<E=mGx)m?e*v-|b+Pa?lO_(%
z)D@sZr3v}U)h78oDOtbajReN<Bmq~AIf~z!P!Xl(DYQ%9)SisMTz}Ml(v^11U=v?e
z*)ZT<XJ<<%A>HC8PU8a&be$@WJDsU?Dyqv?jySm5$~PS~h1(mYWa2b$T<_s`SkcNk
z(p>*NQ|P<gXLvD8{D)A%aP-d&2cK^#yG!b|FNU!~P>IpfGAxBj<9UPOdTfWAO?tx%
z<X;4FmjkE^(i>#a7_e~%$2G})^)708fk3mXnS%h$#X!wj3$^1}YHK)|!dZGU6V{iS
z2gw!O=0|n>F5&KLcE7Ze$PhF?*a7;lSujmHSWrMef_*2Fp2-@XiZz2J3217eI3P|n
zO*iOaO}AO1F4tH9TZhs4ZJ!yYtde&eXg($m1x?j1ltB@EyJ!3TCoYA@&0woX2lJzc
zA$PKq!>zb_s*MPw!$cdN6J}%tDOGItQpG1djm!9)_4ByKm_&Lv>f-04=8ET{Cf-N=
zsf%E?;c@BJ$#~g6=nYda1nM3i`qwQ6oHhuB=FP;e-RF%7wrf0lr$^l{T`o$Tl5P2-
z?Hg9R5;SP^C`=5&z-|L%(EYEn&|j@W?Oi@98QjI*@;j)TK3cU<Yhz_G+RZoSyYVBe
z<OtlVn!P~>uLgU(Qgs&7#_jE{YL@K8n?}okr8`Cj{WKkAXqYu_h6{ZHK)6cYbY6|^
zH_0Vu3<P?#tiL=i^5(X5c=<TMQ^0-GjCwU;b15VQ#v;tR4(9HaMO*RA_o)PMJfnv+
z={k}uPuuY3$x1#rMkN1xf75^I-u^!U>SrAupkhlmKJJj80zoMr?%W!(n8v<~7pwc3
z<Zijomhp5q1|A=7;4(}(IU6xzBV*2geTCYHwaj3O#nvjjrgAyWCV=`$pOz#};9JKD
zx40HWY%f%+Hk8zM<s{**yc#m!XM3sesByF|bkzQKdZv5lro;P|h{uRO_Q9llx|&7a
zOW3|mhjApiOzkVo=UCWP*i$%YoK5m~Fw9*J{t`a~*+!6<uK|dL&LIQ8sp1<Rs`f~!
z?Z?dRZvn^R04~2p+?>V58qNtg8np4^d1^HgAtq}vZWwuPq*=Zpgu7QKDui>L*#6ts
z_*;$It`{I4Y@2po?i(QX347W{b$rq+{THd}c$V&CjY1C9u^%oLxQA4$1SNb1Ch-TI
z@+;q7Fa>&zaKtRp2)}vZjo|CiwY(Z!?iv^jA?9xu+(}JIq~JHv{CNKEa{yn9GJ}(%
z0pko?8Q1!`)x!G6xs1;ro%&kSXKK(AtNHKiyMq@#jN_Ka40~&C_38JW-85q7V$bLG
zx!-rW?E9iYVm?Y?Fs6=ypyTJ0TfKFuLJO*eGHEf=xQw4Jb0EGZCQoDizlDYdz{r&5
zy#eZ93{S@rs1X{b+axpK8ok0)IyF!1RB2Nl3`8JDbk|U9@P>R}lOrZDr5>9TXdaZ8
zS`3y~r1+xe(^b%?DaQ0+HRi~2;lSG^&wQfS)&z#)FbnCs0<+Wv<5-7O5sY=_<_qAu
z<ZWcYEzuRJSu<OWL_m7m@dmA~mTg^M9sExneHyacZ~u!0@L#fkJ7GV-A~Q1HtM)(<
zR^kzDe*TthxK+MO%4gkcbxZ?oh8VlyFuZKT1}8cj74Ih+zo5PNMl0lUrNZr$UdDFa
zAgt!xmI=wVxT2iDLHBAZXTnMHr-(`T^g4AYrR_0MdCOMig`RTT$&7}&`etLb7K&Zu
zeEQsE|NZ_=-1aNc`3@4V$dE!2XlHofvvuR^83P!-+F#=`7Qs3B2$N2Z-WNlT?`&ym
z%JPi8ubGwvtN2cb_!+qw<8({BOh2wxwLW@w#F!R_63Et_LZ!_L3`*on+t9k@=i`xP
zO#$}-mV(7hc@VN}8_f5altAe^!ZC)R5RvG6)MH$GDb9pS@R=|*<LxYdumY>rR1~c3
zSrCp5%Y-$^Uac-13^54?S+!~Jqhi=|38h<u2o7OzRl2Yi*j8SkA>fCfV~xDG+NL(H
z^tL?p0Xa$o{;)TR{MIR8Bo7mf(>uCGEZt27&GIQlB`FV%)VJ~m4!eH_wtNfIey%Qp
ze>(oycM1%+>Z_nq#Ou{&Lj8NCGcN`2_s_vuZ-3Vv;}y3&NIf%<rySgZ1vPDc4j|qJ
z%nUAVL?@ia@$hsvM|N*7&~G#FQN0eVF?M=rqmfrA>>Rb(OyGnttiG5b@!OoklRbaf
z>W+mkS$t4ZwRdJ~-*`R|lV?zIz)Zn6<mbB;X6#yb8>ze4k184gaxjPGu4^#6vV$?8
zfn4tOvQ8v<h6cluKONy(n$p5*D+9j#KDA>ML36g4NODL~&t5hyi`lW1tQ{Y3k4Xa%
zqlukM*bHXDrcom-T+=|rHal0Ta8JLvT5w~#VKsEm+-{`{?v-g*vO{GX`?0NeW^f~A
z!A!;keRC$MuLV0+VwM(EP=%_j@aj46W)Y<rj~2bnx9y{?a~~W9NqgXh<?R@2BH@m4
zxuV#myF<PaJ!K^o?T7Q4CP<k-h?Lx@KJ2(TMV@(W*XNi68QUW6sAmK`ybTWl!1bir
z@HzcI7b;;8NU)CL4+?bp`7VbCNX8_j7>li2<o|#olbZMLOi5UjQ(1s;qg#=!4xIOu
z=*4#7^q_vN|AfJY9=3X@;-lZx@FV0cdKRcj<JYRq1kCxuM0BUUrC71e#c9E6l}`B|
za{NuY(QqmLz4VEShJ(b_M45p-eP^>#v6bJc2uuUb`U;i7cmi{I3y}<ib4M1Mp}D<X
zIC2-7IP}2!=r{hT<GhB9&Cl$m>Tl?a{tBPt_jyU6Awa{3t2!ka`mi81BD1VD>NrMq
zK6$O`v_9p0`z2X`sDb*NL7~Z4X@j%pDM#A{=~Al_dbPK@LBDi(Z(y$+bzxoQLUelG
zR>-6sO?F&!RH1LR7>c4L9$%H?ZNFQ+okd^ix<1`+pyQx()Zy^snB(XaLY^b_cD}b%
zaDRnLk4<KTYKlV_NBZ!gLZ`(VP`9{(ML$&sn2z`NOw$2fR>-0Aa@!AX2?O=s0p;kT
z!VcM&q_?fGUg$3t`RlD7l~0fRC2_7~t<ZkHrYkHDFq=TfeB$)+Z8Q73*Mti1_&Du=
ze8MBpq`eMGuxmhqob4^VBrEKVs{4jlvd($}xro#fcvQvQ21I!#TNv@8LC>5?5-hWu
z0u+T6h4xuPYp}2+bowUbs{EF61vcQ)^UhC(;wky9e$NIk2m;+KtmtA-fo0tJ^0f6e
zVz;ZTozC`9Xy-);sVt|txpxe$BuwH9G3x$vq-VPKw#q@TAo}q7VL>IPJ84M{soFn2
z5q!7~CMH`;+38#PGarYJX%EC`pPvF9Yh;Q_r^E3CcvF^^$TJe-)uhUHRgoSPL3~Sm
zWKIUpkZJs8?P9G85LQw;*5rrt2#+UH0Zd>VS7I%)ORQ9JwBd);dL@)3PQx;KncN!F
zH{X}H*yf)be{CS#RLaQfrXN~T_p5UL!K?MNkaIN}E#&%3ZQZu8L?B>t3VC=lLkh<z
zxHud{(_9Toj0xFkjx^U8W?LFZNT&K9y>{OIkV{;5&<owCNcm%-_gQJ~E2(}0+Lyh-
z>%;2C=~D1g>i)T=4bjG<kJMTM+MAAqSQmHou3KBAQh>wcm*^}y<r>Q@OWQ&#d-OW>
z+P>v32Sps~{v*Ph%E<e8jzHHN#vIUf0kSf^l9)<q+LX1x@T${$&;)329T-`<SbTe|
z#}A^yU-lKGJ*Tih@jFPj7Uo<XED-TdHL}8Q<g4*yNF2~L@!;MEQ9U_$;ONF%)~klw
zu8}&?JAdM+nx;R%Q)gL7j}AiV!;$M}+ACvMsLz@I!o4^i1A6M^wv1l&!!5PK;^p}%
zpc;}E!8Y|KBzo-Nt}IrKc$8J2?^iW`^t;nqpK5r1AwROWa=4}mG}d4P>guh3h#DX6
z{Aj+0?TFVg#c!lRRCnS%G7;tii~Ojho6BWtrm?fxlNFKlr5!%eqKzil9VXK%2N9pr
z6z2=IXOzq9#(t!svk`9tDwl5y2|s%ONG7Ag`w(nrl(IY-GD7tZ`*D!B5~iYux%mc(
zuty@Q+Y=*bWB0w5SF6t9yx<%!DX@+9*9Yb$*_wpB<tyLM=1sG;bq{>T^DFyom7Mo>
zs~~H$DuuE8eP;f|{k0=Q;;pZHEje>$ZY{6WDOpB%tKX#N_#Wo+$hTrLSZiT{^T{dK
zz&4sYyKd|9g4gw(f(A6EHfcL1^bJ=pkR-9?#&TC7SIDkF^UbcrwmsI5BGgosY0jZC
zML2JMb_TsVI2l9OAmqkjU~ultmoT1NBsGm^>yE^{rU+uv`@j7k^bt_bhVo?@Bs_U=
zc%7K*Ls_-$Y}uwO<Rz&~5?Q~%eAsAL){=@81*W+^j<bUbrv*Edr+Ig03)BNRZSI2y
z%PQaXa93t!@r0yuAXo7(IzvcjQD{h+C!p_m^3yEC805W8<e%2TS}8NE6eW?iC#%L6
z7(+0qk@+R|MHZ<kqY_{de>2w{>+I7Zc#kQRv=J)s#8c*d4?t4xIDC=w&3gA2WeJ}T
z(Ew#S(E0Tc1U2tN>EM9E!-#y+N6LHK_Ll;4iHPN%BgPG^M{@lpGku1Ofm3;BFsD0r
z-`}v3J<+W?@7?1Yahh5nXVErYE4*F#W<wUHnB@awH@7qKCJEAP$Kz-8$t0blwK_G)
zw>nkorMX2{K#Wq7IkrAv_SNw$nE+=Hh=QKdpr7)$dyPsZ30VCYGO^ah2^<SFd$nuG
zK(_nJ-sqeIxk_k#nG=H(C5vaf?FNzjGZ~dR6e7dZ^zwkA-V(KtPi(#IX>9V;N9e4f
z+AuvNkGUpA=BP|vG3nkpG0c$&Sl{Bg=_XJP-8}OhVP1T+e@y~APW3@DX&QBN+kwbW
zD7tr4fBN!t$%u^$_Ezl3DcbIofdNn8XV~7nVFb-4hwPCGH3KBC3@`oku?0vZT>>q$
zrDVw;d)}>r+a)})^2VRGIZ_O>S#VRs`~LBveTDGjb+W&!yTRxEbyfZ<xk5k-`<w{&
zf>veU5tGaJAI&sJv^yl7j9rnU(P;1y4asS8pu(TXj%?^sueISEm08|#=t68JGl_$C
zwrU{!V>eVN^;jo|qtW4d<~2sGMt3cT>G6t>Uc!2Aw(Bup7uHV<ht5L!q(%mqa319v
zF0l?+Yz6AzZIyEY^I3~}jr~&YMv>(_4$)IGM0Q54|J3T_6|P#v4=Y4Y_6TcEZr^mx
zboC^%CREgp3a;WU$m1Z%*cbc77B=O#UNv^?Uftu42}^MIbxdK}LN%!Bom8c_u9-}3
zV_6Lca~hou@8+j&L<%db4dqXNNrRH;lS0`s>G6K<;_apdv`l5rv_4~8w3WXiLiU1A
zOvX3G7Bpmz%z2MZ{Kaj!2w7Qv<Z1D@oAS^4^UZ&WTatqPf=*iKB}!Al$?j%VgakPZ
zZn4Cc&%3b=DcrC*Z8n?n)gi&Y**v5fQIeP@`()q;hIw*y-dnSuxLU+MR&(!eQpj90
zp>OtCA>>}I-MS3}j84fw5tI5)U%62vI{9Fe$pxeK(gCL%Nv>30{S;la*gHVjNGSP?
zw1CKJg7rNi9W7Z+f63i2Z8MOHT{zT8Asd~g<u5ps>OdsLFnw;`2|RI+*wooRDwe8L
zm*llUoh;kh$nwz0`l3hzkZjmHS%Oys=66h%2&*z6VNMxOO`LUZp6o((zE*_Fpm$)P
ztb*bEO~$<sWX+S>J{&iDLw7b|+DCkvIwP1PAUv(T<fwVM-@PkgYPV<rff>OUC`W((
ze634>4PH{I%$qdx7}*Qzh_x>!z~2e9XHOIOy35=h>}HWx7bR7LbXshMj1MZd?(!ZB
z`*2D5HMp=~S|+SUyuv-&z#57cwstB3LNuin!o69_gq};YLB`(nF6{Sk1<jmvaL4p~
zBY$p~&~c^inD6$`%|8=eB3kiIDg0M7LseRKIE*-Bjr6*d4Pj3&Sz2deiCigr(yO}n
z-0Zp~G%;II1j}8xE&*uKCRV>;Q>WT-*-ka7>S=^H5i<B_;4!qlUSO`CymBfcM89>x
zGEhdd3}~0dsQTl#=VG}Upm}d)?G(n&`7|{bwU^R7kQXISFx9V@cr4al6Ph8BBbtd-
ze7;Fvr7x_I@azLUq}rTeq}6l9AxkJh#EdjqfG|2t4ewaOKe@92mf#mHm=ynaUif*A
z*B1f&lcng83x8|<{iFF?3o#dV-O#Hw_`jdsa+ImJI2~j*^UtE|lT!JVX&)%tT6ZNQ
zPUrJ$GCz&t<m2-~_dm`3O2{h{9FZ=J>H}`dbNWVMsDfX_diS=!i#1ZSRcf9JJs91P
zJ|mLO(#jP)3;KVEdk>(f*0x<!5EVqF2@)j>h-8tRB#DxZWRRS*KsQm4&<KJElCwm~
zIW-_n&PdKVNosPFnYZ`%pTFkJ`E<^FGgVWyca^)TExp#e)*GJZzOP$hvXsmO#0lLU
z9+uS)V<ZT85xr7wD<1sznTVfDyVX>k+)7@M)T5el&wP)0mMJ8&OQ+tfcdR$QOiFe@
zRY<#G0=h6dQ+vVUM)k!y&5EPa$sTids*>6WIZt4d9fedwtiNRbcbNQ1OzL`&_PC68
zY)$$|cfAi4LMziHFQe7#x8^kByA}=gDmAt*X%p{Flvk5a`?c1Wn%<dlOi|kX0q<q9
z!kG`-evtjb!T$x7Mp}0H;t>}Yzuh<j(=&xzRP$AmpgwYa26HNFq!ww{E`{;aVDdTX
zo%BHNy>F=J!q!WZaOof+7rx1li%!Hglw2RcQ8F7JwaC&-q`*EW%|}cWwZbwo@3nhR
zV`j(hX)P3MUW56bh0w|K;p5^EM$U$-WN4xW)~9;kFZ-Y3<m0;E<XOh|)k;q?KHx#-
zX=Q;2ma%j_n}>yQkXM%?CMrFUc%bJ++qnvxTDD>73__dUhiT9xmR{U2F+kl2fT~nF
zU+xyk2Tw5xFv~Sq{FcyAN~7Jbo1ba)UGLuQk9;G(DY&o&WW?u!-sF^$9_bu8Dl;HW
z(K9|dNz02fokO%0Dq$F`f9sa4*74d$p7ZGr(%r2zWkj8WE%yoef@^y2U{UtVP1f>h
zhaN3KflCQodcM@ATye=G6XbhC-$CWmu#YP7I{`%>(B!!>QQM5(Y4nfy!WayMmo<k>
z(tGlvrMY{yFC~jlR9Fpfps=N)Ua=Ue^X$<qlk9f`gUhM-+to{v*@Q09tZ2tK6CSVK
zeuO@;MX(LzYo^2uWUWU3*);b7w~Owl&lA>Z#uMQuh}-2J2f8~^-sEn(D?K}`&EpfP
zs=et66`Sj51tG(pN7PCSI$HazgRwJ+fdjqM)n^b56lLUP82b8Ho)wL~aRzSKr&P$e
z#&97rR5(2KL~Ev-x`QL<4mB467D6JXFJF{TxZX@jedOgWluMQ9?6;SuRUNb5oZa|3
z`6mjj;W>2%{oBE9nd&($ZXW{j($w-7ox*h29HVmC&U)s>8S4AOjibfc&<Y2y+uZ4+
zvTmfb0q@}g*X_9`rx6{s$WECLuR92&Z&qCzo4@n^MmPO)k6ubS9}ngAydYkV+UfPZ
z@_pcx;woH5mb@|8;5^&#TghF%XnaE#(&%O^v<dpEj_$4l{U?vl$%`Hh4_M035xG8R
zTONNGuaXw|mKKRJ@NE0?RxYJgo;vPkp4ZzYHm5sZm(95l*FBB&4K}1uT!vWFCl4xC
zQ-g$Y-Ul0|<Q270Ua-wo<h<~GwjiINWgK|XxXxv~@j*Wu!{>;6WZNM?i(l~kltFb9
zV+%hNNjv=0Wb`j%-aZAkuTSF1q@T@C*VdYrH)zKJ-MVVKf)KIFj@XvA&W=wtN0hON
zCr)FcQisXUAN~uG03jR&o}bB2Z27C(x}RGaZ(+R<fAOhT@W#31{g25+wh{1JT>6kG
zHW>*x$xgC4HaCtkU^Alb$;d@%a^R4HQg9_J20?`=peB6q?PrL{)+&a?$HgoI|BR_T
zT~l)bXxbCI8K~TScQhtDC#sn^RrV&x=fGUf6I;k?a8f^&X}{3FtJVFF`W&!vzq>=%
zch=#QZzxaFQEgwiUf-f$>(G2YA~sF9OHuHJ!`8{)bn6@O`u%?uk%jO;XgsG)xDx-4
zzEC@W8G-)-wNYgyQS_vv2V66sR`QO%k(#DC6D`Al3>^AH7$le8n}ZoM^iAMEIt-v<
zZs45lcDgS-WA*GEAg&%rIpK_q0vY~XqU#!Ky<S_=^Kj;7q}4RvUXMrtmw)o<KXs{s
z+QV2kz~H%=tqj9lQF1G$)ZL2v#`|yY8vKbkHnnwk{?h0A>N{!+ni6h8dWUrh)4!H8
zM4_di@b?O(BS#`%bNpFEdv7%^K1j;5Lne6~xA2M$G6m!49FNUB>`K7_S`%ZgadKW0
z#b#W0P=U5-`$Dh#0dDuZUxCZX*ZrFl%ZF!sU~3+OW~c(Lnkuk*j^3sb9pw`cr~yT*
zQG9b6V3`cqe#(qp;&Wy0Rci?K`a?oW_qW=iJuynj70VpZkJe^p+w>)X5e{<!#v)UJ
zhm1=ZaW)PhQ9YUrv7obqiFBmmG4Lg@ogqB0c`^;*{rS5PjI=E7U~b*Xn$AUN6L2N7
zIWWBW1Eiyb3hN?(lhkHxMY@uEqPW*|wJ)WF3R_3zE+O3{?cBO+=XT)-La74EZYk9_
zh7*I#e{5c5k$7ihWXQisDADyZ=?Rnz{GS>O|F-M!hYza&6CgS$<lh#Q|4$F;pK${Y
zL|-60EHq4i^NatLldy<EGjIya|1E;%FJ}qBh<Of9@$t}zzt~3qaPj|j*S-V+5o^`z
z1Ev413;s8+GaZZfNqn~a-{2J9;?I(^v$F}xHI@F@l=QB9{)C3`blKxo&R^;g|K|7q
z_vj=)#2_B-R!DySW83quw-SQ+3Q|pVu$e)NKR$ea|EsfZ0#?V{W@}Z(zkSjF{>K07
zAChgs6IEn8El{TUACAWlA26P8?5PHE|HErojRPywMjTox?~h~ke{&mu(1C~g&E$1H
zssHdAPM9&uoBy95g=Cv1IANxrlC6cs&3YgQ`u8K6jDt;0O<hN#b^4f}KT<XP6a0xj
zPU>avN`_M0TlM8fi$Aincgipc?Z#P3Z{SZ*#H#`uH8!(tn>zJ=YL0n^m+Pqw)w!Ru
z;#^n-%$gIlr`$U$hwTfZ%C<^7uIHDBT5209jR>3PuA3!BM9Q|BK-7WjWlHh}^&$o{
zg>EL(tF)~<&UnXPR#vtJ{OgVYA6$cpNB21P!DlmkL#z&3Ia6GoJNOk~?W_iY&~-m1
zezXMs%w_&5=n4qXm7uIV`k6*-{LSf!gKfyvP?yQ?^eAT_8OfUf0SA*{8CYupD@IEw
z?aY#WEcj)UZ?&wKoIxfs8q}C)_#Qv5#2}ql#z2(k6bN76oE0+ZisoFBKkko1r$-!S
zEAo3gNZ^l|zLZbFxg$7xr2+_Qs##xU0Gnh>m0jH_%Ik8XtfGQU^G%d{EUi<+i`^)c
z`-+GS=ujM9UO>T$opVvEvFrCE8CM2pO;+*`L-DV-iB7^B?2&80-fm)OXy~|$eL4|P
zt&i~^%Do{n(>8GwFse;DDOWm2b%#N1<uxXRdI`8(&Pmm$`D$I`;!f7`jPpeDiZ2vw
zRw<*V2l?1*V@}s1bq0#NNLwMQbiogXAr`ctu~|0?bWSVfqXzi(m%u?%gV9yZuBk(3
zK*YBD1+d1A0sM*0wWv2OYs^2-?{UBTpk<MrJ_#&hOEkb_v1U`K$%0+-<tH9X{Or?^
zd%v~p24Bck>7B2sl@#(Ft4zfix|9`<0ddn55Is*`8wRY7wP|n)IU0S`$-dxuc{<bT
zs6zx{_@|FQ=-Y=U0=l@E(8<lZ^Fyu6+Chn0n4Y}#_YSZ*_?b7^iv-~@Tcqmmyth~s
zgmwX5ze?|7H;R?jaVrHh5XOHc6=EV~Y+01!S66Zm4i54G;cE+ETJ~Cl&c7eOC~E58
z!w}kb>LoB9Rsnsa?|!iGL+lbP@TQu6jLTB^%fy%^ibdMCeczDZYLt6o=q*k)gd75s
zlJQ*~*P2Sp^c-Nyd#P9Fu^(lleqY8)+iLUKm&(Ani)rF-!b9wNF3oq<-Yc*d$^5eB
zR%w<cQzUsX6sMR<>5=DvU9#sf4fy@FERSs(Y(4j=0#qg63VUOYtwF_Eb3iTP0!{c~
z!ZvbF&^l;WuUSwlaQeQDaWd(fmH!>;aarHd{{H#elRB{V)rkePT+?O-nP?BN!NR0A
z{QjC5ujjf~M>4)uH=K!In{Uxu(J#+db#Z=5HmJyewSQLx5Ma&`-yUG6-^AL}VPlXM
z^)STj+T6ey^Za5k`_&Y<#bhWyTVN~xr+)xi5WVi2*<L?VdJ}<s<c|FksLIm1tml2Z
zEK<wPeXWeMYy{Sio^}_#5zarrfxu#}3i0mdpXdUt{hQa8-ed^HJ+W@26L?>utP&G`
z>5*rdbmCNS#XRmPChp`U!RDuni=CsbQ{w6TZW#hntfo92#M1ClU-Q8dy|jPRJf82H
zcEA4R<>lhi-Tay@2RI3-h7q9)@DoR+E5CV3jRRTQ1T)GV{T{|p(U;Vpe>`CWH;TFf
zh-yw_K{ZAfkI=0xdgmvUsIGk65581=iJ4(ef2(+{K}vN%|5z+d{dm4s$XSgs?#1_~
z&0h#f=jYhX;W676pOs=Cw{I4;(&Xpmar7KwX0n|8>JA<jPf)IP+qfO}$!)K$iR`Os
zX2HR4(WqBpi}IrQ!>Ua+$D-Dr=T4}uygVhbF`L4M>o!1%=$x0AcbAxfh?BZEot#EV
zx@IX-3xUQI3Xj8+&h9I6n$?dl%jM*i$Jz=wdf^e`SNnC`$F5ZdE50tUQ~hNJx6g#_
zyM`%jd4y|xNdP1kDnYw<det~(Wn_5!p$K}0r%f4k&Td?ZV^tZyDqQIeHj|I1J}i08
zX4H*Q#OA3{y_gH1>-JOWhj^+-_kniV3?CmKQ%S^<2)0}gQ`|W&9bJwy;n;?pj@qCa
z9-WLZ@L8WK?zuT`<Ui$y#_@vNe`;0H$$!?+jcJa_`kGMyJH2viruHzHU$w2@iY4H5
zoU@awE!)E18T%1t<>fg69!5%U*JwENyo|e|`a982T%~<dHozR^_ePvCYFSQp?xhJR
zMZ=%uJ@~f(nE(FJh*)qb;?+G}gF>MAnEuvTqIpP>!<e3t-!Rl$1I{pYKXRx`pS<||
zg9?$nE^v0KJ@v)!(?hk8uCk8-$NVE*kgJEK$})b5lCN#)`QIH|yO)<gPpTQ-F}%t8
zvRt(L@-)iQHgSHPs&I1HILAdf+sykKsT~yG(#mRMhpB`cakkr817@pQ_Jdz^<FW}D
z4k}}p2~YW~5B`becQI%K+c5dn5lu^u3XqzdPAVI(bn;Sx<6CUv`YaNkYXbz@d!WpT
zZ2Tx`{DA^M2bECV_ej4E(>#n4;F8kU%s&USTIbAFgaN6cSnZAYpuWXRwAUq>oA|@!
zv-IV%l{*E>GsitH^Jx9-0}Y|A190Zr%$=^T7FKu&#ScY!qH8!et5U?9)VAdndYy>!
zDMA(YqYO?p^Ih3uo=T)jY`ecjLJI8)<S8V~LJz29xcw*>Zk|UJrB`@fL6*GSDiWDF
zh(u<LUKsAFj~nP~g>T-R@esQ`)4``fd$Tt|)Rboi<_x|3RiFT)k)P96JarY}LgiyT
zcoGH8!S;5^_mW<oI`WKY{w`w8;TRIMZMU#g2>}Pz@glixKo$@z`vI164soz7OthYU
z8`t-2a*s95Q!TmB*qHqB<wSv6WW(c$9$ss!`^w^2$?*x8P@}kN`eomh-=_<Omn>Ni
z$^NB85%KW~gD;R#4yhf06{Z@~&OBe0lXxgM^hWE3R9#A3{F<Vw>22$zM-576r&Ts<
zIlN>g?A_&8BWH$hPwkgJs}!uKcAy?$sj{V&7*e9zOV(P=v^`k}zpzh?JDX&(Pn>J5
zCp)*Qn^uDTwh-6}>?v%qpASx$lQ?ZdDZ%D$3hZQ;)Z8Dr6W`l?e!i!@@HI^COBM|;
zl0hX1fvxO5|9<3`I4>eOeP#TP?mD-C*`T*hLAq0Q++k1S)<l5Hdum=BFMVph^XrxV
zvcvlU8TET+(SstVF9d6Tqa=Q#bQ)h$iKr0=Rtt~2txS3xv4g<AtO>C8*RVfQ27Xyg
z3wcUvpTYA8wBptZ4#8fg1|v|e);|7cp+3mbJ8nLYjg1w&t?~n;mgUu;r{`;5hmi9i
z&*#bNx20+;k!Cku>|;t0%3=qvX=(TrOU}Vq^;%a<IqT$qE(LUq8t_w|GBGl3J8$4j
zUqT4vg5mAN^!;o`3-x>Q1Gaslv>gIX8xQ*V`@6UA0e9NPNWhg+Ln}}gQMuH=1bOUL
zWMAeEvg$ldlF~P3E)E4S>*|-hI1Mw&CgT*l+Xb2nt)Xa|@oiiZO{lJDWrMGCoZZLm
zV!%JJ2WI_pGBH9@hxNP~d>Dqw#1(x@mM<RNNFcF)s~-UYy07VvKwmRtuL5yYkIRl)
z_w`8eNx=X>+@w=;DO$Vk2(Qw$y7k=RxiY6knCy3*7MkEZZqDTA<WD<C53Bbdk*<YW
zr|Kfl{Yj^#6B9529YJ9m6v^y!rCcD<jLTgR6msV6+6Sdiz^?J$92?#g4P}ZxA^91&
z;d>rY7jXy^@+7c^Z-F)mJP5;g+X|34(?3f{0KT|iUZX7cm?d;8K`Z{;=}`uTKX>1W
z7YCnI*%3&VuDMa(59Xxj#bdH$&x-fl$0#4TlSRL)r=V#YTKGn^7dl0OT+*`!5U*OX
zU$=0du#DWfdW-+^Y(?VSvsiRvbtT0v_>d>bM<teLnJ1s4dNoz&D{L7APAR&K>Ic9G
zDzzv0C*FU$tT9pqn_@#3rZJKUFR<KJb1v|jLCIov4C64naO>iBX6H8BMsYMq%sb(M
z<7`cURE9}_-}>!&wm|E`+DO(^=<BI;a}s(%>$*yhS*BfB!%=l#U_kt_<A_Q#ix=<Q
z+Xfp_m+X>3)51RSsU;&>Ps#VaN4~#8`<HPh@uvmI^?T<?#|b>QuLi8F6sm+>0CX#q
zrVGFS7U2rUnAM0A@EcLXS%2ox8lOSldB9G>%YWCgCl>)Gm$_;GJ*q=%MdJ&9x-aP2
z0<UvRFO8}e&*ki{C2r*R0Nv*m;}&dQ@e;m@D!hq!%QmH0a|Xlr*z(w0i<jl*1RH8%
z_!;gI6i^XF)dRimB#?|mX?mnMvMpO97Ni%ZOcenZP{#%Ah5g!PL#f}A&&`2T#mHs=
z?m&jpp5x%6pvhA70Czw#qC4jK#|GNVBe~9uJlrlq9E%lr&Y<jHmT~x#FdTKo!orVm
za`oJVsoN;8JrvATfRJJ2b0wr`=EH-1yI4NXs<1e>8ii_Hber0MU{m+`$C(=Xb!xE^
zbtUB9(5;<!O4gYx?J*QJD5v`!hg63;0vmlR+6(=0&LH-=*!icZ&8)>~CCvFaC@0%?
zLsw%w>={C!SJ}&1nqRc&v`oh7mb$)(z{VFZVVt<<ds1x_H{v8tT^?1b)m6BU!*ug2
z^ygmGI`q`Je+5>^$8WL%`mlcy(fpLcCsUK2BY;8H>BbvRpI2UaPASDg`jyc6t|1hD
z+(>)Trv&_Q@JA4N#^r_y-F`?Uy}SJ0ybr)@xPzmD3TY787mBNdlBzCHF>XOX3Ut?K
zdX<73)&W8_*l}K__-&{oK>fFN!BIoJqxefL*l~=fKo#N$T|QIt{Rmq9bgT56^99({
z?dqP+OZ`%Y>dFMb+1ryI*CfrAeGNe1mhcBQ(E}e}|28%Z7-!R5P1sw-Dgkt^mX2-A
zB%h3@0e}m?MtwaI8#^>&uJH^3xDB@?lEtv=w7!nG6T3stFVc3p3ZEq*Xx3!kS@<9d
zwV?!rDLaz^o9XNZ^Nb;a$O_A)Z)$gfPWdPH!Zrwo@5qS3?IWMza%JP{-;=tTC|R<7
z=FC2+Ssh45@oM`)j0rAzx8iI4nUZoS%Tm>MWs#_*C6N?i%sV@gf<Sky;c5(wK*Z9g
zOgnq=kmrS>=s6(l+F*`mxCFZ7W!V?@S4}tUXd!X;W#RW72`CI<;zdS!2RC>xd^c}S
zC>%P3PU)Y|d5-$O9PJx6I8}jqcCdWr_uG`u*b`F}SRS@Tp6%;3{Q|imFz5xW=eL~x
zSm9P_IfIl;Z~_VaOBMrj9JA*I>G}!HcFH0WD?FW1HpdRuCHZ3P#EC4EECi_>Emdi_
zVUJImft+XMlzm3}<JCQabrF5ay<0LyP+E?b;zU0KU?uN~`8Kj8<ep<ZZQ$NNZq<uL
zAF2cmb(vw8{`qMK^(&2gsDs|7>qHXAm~g=mddc~IdKO>CYePs;H{70O2AnQ8#3KD$
z1$#<5>Qlmd$!>j$(bAyG;_VL3PXG4ESv3+i0T%XYYi;^GugeS1dz~j<*cb>Cfp@|p
z&ei3lE{}iAfYHaiB|=M|oD%+4j8(mYg?LzK_h|~K<uIGkYY}UW8Vp#|lOoy+Ys;F0
zdN_%fu}^2###ubqC`t8tZ(mH?-$|LDlsHPTJUt{HIcu+<56Vjdl@e44Z|&scT8Hm(
z!pm4AJeyi0UNIb#$$SI{NtI71T>PzebJUFl4~DdK2G(7w4%-(HE=`i(578q7m80Wf
zs`e#qYzs5Hi4>v!=TYNrE0z?eKTelzC7i7F>QQSedg9goAE!QqO}Ke4%)YoGn@G{S
z_EN9@L2#Kyr|D(Ul<riy`=Nt-o&Q`;<?>}M#A`&^1snRRL4?fXUa0OqOmvi<(~v&Q
zK3SDZ68fOHSq_mr^?pD}_vgn^!rm9`U+2Sc>8~UP?NT7|n{><H1-I4%qf3_?m5kAT
zEy|<!HpQbRw-3^1gswgfj8QP#X3J4f&R9<bs=RvmCo~%dz2Ohi*eWsP6D`L|Qqo*N
zlHovIBU085@Y55=991X~FX<shVN{X?w6}`Lv6;1u&^JuaBuN^4goC!ViLLl2ta!QJ
z-3Lqb#(eFTAI*D6auIH@2MFEV0^Oc%8hQ|0qr^od18F~Q3t)+REZx@RBnsq)TOeHH
z(E8_hea?l8Ieq+vI*{lGdTeNGS;gm2ebQ+{=lS2gx!ULt{0nckK&ikU(>g)pw3W2%
zHNXhFn8h45sgNAj()WY7Z_(5H!&?z_4zxVJuA(k2lw9v884-8qp9h}$+FdIm^x;7y
z-L-)0%=*pI-~KfP&OVD8^J5_wa>5eWZPm=aK9d3UXG>fmZUNDerj*i;1Li#7`@oVp
zG-7>D&_Lv|4ZOtL$4Ck0#MCX22{(BTc4)ha3D88=8w4_T+l|`~PC!uKvFP&eZLp36
z)T^Y$Me&QOC4jiGdkz5f^lHrsldZ$n94x^61MG?gYM*R^GR&^72mvT!N$}g%>tnA-
zq3Uhhf+d(AwY(xT#5v!><VKb(PRc!aD$%MCr9*}-v-h~WR+>F9;BBz|726zs^t>P%
z8x`Waurwx3(vcbecB`o7OZnYSe_@5+5)pF=A6>K-Ji&R^m7sX=7>GuXc!0-_`zhk%
zPTfxt4iiJ)%da~Do`JZn)83-tlOl-}TU6NhT5>Q{H@6m9nYiB75jcdW#d_^~Xv3X?
zGAoz_!|+P2^|VBzYtWpwS<;<#RJTWyBJMm7lv}wG=hqe}Q>|m_SiMPZ<TqnsUUNeI
zTel54msaBtGvJwoLG%yyXGHch4O%iB9_41h@KGkyRPb@~flAYTIjgn7>>XoA30%YA
zz7TXcEUN4l@MzY@0V&3r8uG`UC$C{wsZc83Z4QpAW<xqdmf+QZF7FO=L`@av@<5kR
zOwFuu1nj;)oPR%6b7S(8ODOE77<kM)61r3%GX_v|J~pR~<WL?LUc;@%^AEg^Sj%x6
zj`fwC%S$F_KU=1kf@Qn(SbHaZcp%GX5YXUqya@_YD-j}j>wjrTJcz!6AH|#@8Sw-@
zJT`SbxA3!cVSrMQjIZ8|qq=)L$HL4f9BZ!XV{~0FEmidxg$=SytL3*e|0e{Zd)q?r
zcg##pdvDLJgrVJLOPiB`-pb>{O0gcj{Dj!*>s%pL6zFQpi&Y_kop!y}Hx-@-iIx}p
z>6P7|6>{|eNBd`648E$~xfAWk^k7wCvk-)dXsgn*E?sBp%N7kG9-;N{Nw-}2M9xIy
zj%~|I4)tW!5gBctvH&(aDFcy|m8rkr9YW&y+oVhysw|}roQ9G__M|NaT-aD8ptv~X
zmMvM@g3Yb_9RgeAMfQ%*^Dd}9D1AaMV^)a)#RZ|%uiUv7f{WFqUMS0L+)`zZ?*q0J
z20{$q9vjY~0dMwmIK-5K>P|6k@ReQ+G(-J8(<EI>D!Xz2E&7|-PkG1TA36|?^zU!^
z!F`!qCJ6AS;G9Z`rrM7@NEuQ%VU!7l6xSMGnEKngZ7BI6gp|4eNpy3G51I)_&-pUX
zs%i^srE%a3PfH^W11<gwv*|Az2o0^RyR?Z+yfV+=$5IPb3mQmuqm{(bD#CZWUG^x5
z1Uq41=r*MVLrG!cqBxoWi{q)6RG;Z|9OTwCz!Fc35Me8<EuKgf`40u)ek^8gnT`1#
zN<>7;cy=EFS<?TXSsDEpR)#<?=}4y##GcMBncxM>9H&y6Jj|D_y)bLBnV5)yo%l-l
z$Sr*zyywuwn|w_Oa@|6yIS%?CRVwgqNI5&u`szl!UOiVyq$O~Nv&!?06N=LY>%eal
zJ|57kx+B9zj&1>r42bL)FOrW(mz#D$<6#s=eo$)NT*z8>NoTNZc<x=!W3nq6-4Gp$
z_e4lJX0gQTc%WSL<8sjkXx`doCOB)xf3}Z5wVF4OX$7DRn1DX+a#ruj4K3d>=uhLi
z9<e4yi?{0IQbJ_onG5*qO9|Y!g!IEUU1!`-Vq9M{Bw||mng&SyY4ima2(DLf%dmTd
z)8403U%nu$7V4bPN{Q0i7>&q{f|1cTJ5osO(-}cy-*h6b{h~9GXqgpKUVqh<4Jp^h
zl@FJa!PzhY$j7M76OP`x7}!i1s-5F}8sW}J#EyYva5rEe8J_!+amQis!1GN+GtjRD
z+&|vwQKtER0fdy(lHtrsyGo_BBpPlMtw(5|^KGmb+<RAfmj_J{0{@UQXs?cnHt(9V
zVVCfFZ`G}suH+1r{iWmpe}aVrj>?0hj<_^Z%Q))-2A_`})z_i20477TCB#|j@;vBr
z+_nw{l}t?MV=w(QV|{+o_+Oli2(p6W0^<qiQob7CHdtWRMt}S-P)6K-)#WFbpFX+Y
z#d?Nq8@|nZ)Dx$BIL?G!xa-Y~R6U_F$)X-)Ro;l6u7ckMR8~(p%lpxmwg;Ix)UPl6
zTBfT*riBUco53cyCuoF;chAmXW}qBe&10xP>MQFUtm+E71_9EGZ!pY^^5|Z1DQ4o2
zJJg0)k=w2CN8470K?p03h=-|3s=lKd{l|7a<?2?cybAag0GaVL!35s=b@QfQfX1|5
zS5WGZp;nKnuJu=>I8w5az&j}rl6Nna3CEP21`aVwqd=FD6EZmYj+inK<itIexmVih
zYm)|m8FX#96Hm^yb2uVd8oz#>Ce{LBk_+=1y;B;d-TT+Io?Rv*L1-Xbew5t+Gk3{H
z+;oUhbb8?7GdIBeG9*l0x_wHL>Z|(R*qGf`vrSJy`oTMZ7-=av1eEgOx)$A~`K#A9
zqE}dP_}jO;m=WoeO?-Zosie2O34Qwdw%-L*Mz0WYg``s=I}+iLDgtn$#tB_5@nOE_
z`1BUL6e*$%Mm5ek1uPRlo8?!Usm{N&CgE3_7a_`gM^-f0v?*<8`sXPVip_WMICy6U
z$-`*%n9xA|j(0)~%&inv&JkJiEvLo$C^uGZqA&rTw7Tc62yl4@O1B7IA4u)r_%4C_
zF;gjSxqg{wSL?!EYdtAFMCt4awry^exG!KoS;STtmGOv%yz6bLE~O=%J*Sj5qWv@>
zXo9pp+!2rMlnM<@`M{$VW6&RcI)>=);BlD?xK559YQd`u*o(E>s3<M1x@&%%3oN>h
zGV9Xjs0C0l6&Lq_7E}^2H<{!rOtakN(W{_UZTe;=hht)hov@1@JHmD{|LczV78bI0
zObU;tpkI`O<dvRY`$Xk4)2z4S6O}S6scOZWP9IHiCm2ux2YZ~Gn)U9jL;F;-7B^gO
zZfpA3b+;D}NO%t4)?E0xI9KdhKrL91LsbpWvA##?r;<1^Br{P>-zd_{(`aZ|N347~
zYc60nRO?<2bGayqyJ(o18U)*HQO*lqBEFDr4TR_QfDm(H$K{;&26CN)tK$Kc)snno
z>90@XJ<2X}FU|pBwkgWDqQ>2S)ce{~->2+8^Gr*?e;P_gJ->-xVB8#wmjQXoMCOvm
zN$M#*N82jhaMQZ27&t?Y`e5+G?W{Hfs2Lp33QI`T23s)1FIA?K*nh`pPN=(ot<1d?
zzknyA*)kS(xA=Xz9dj48kA!aow;tea&$F}R1_Vt;zDpe0aHH2k%#Ql->L-D^%MGqA
znX^bH3-%GQWRLb!OY5hVPt3O1f2A+6Ia~HpBS{k1A2TZQ_TE6_hPwHUKFsMN`8bdX
zwnH^G%~JL_*sZD%s~9}Pm{QdbVas<v)wS<k$;mbSy8rmaqm`Q|$)k9tiLe7|$*c6#
zMMh8)Vh4tM@`nw%CxXhlGT*g{k;+Zk@Q`C)T`tF=FfNWDxjKi)#9^1`r=YaM9^~b}
ziSIGaZe-Is%J6<+td}YI&fdyILDOggDn5;@Gei446Ko3O0(M5FsvK<xT6EVIYsp<9
zolc2%w~XTzsJM{3h{pb0^&WGl*PT2vwa~0)h%N@+Ivw`_#W0<1KDo2lao#Z6J8veT
z`#`RK4TH~MikCZTVYx8+{B20o_PMrHQ~~aY=l*wE7>^ctVoYJzA!B&yvG(d1_qvBQ
zOEE2MJHfTnnz>SC*itu5s7Jed%NpZTn=+s2<a1UPa8$iWx^nJA>*0Ie=o_$Df)+XL
z3hfWRXg?yaTj}5Z9gW+?36uo!I$LS^(tmE*0x6Yx8e<xx{|X*H<H*9NoLZk}iZ3ND
z6?xhbB05nO&FB6F8-DNu{4SC^kLBiqN^<$+G~dSfgvh0Qy;0y6K~=eH!z&wb?XF_)
z<IM!Q$wjh)_a8?D+f2>09j><CuuKx|QGzW!9eI3WQja3I?ggMP3-x6xm;8d`r!|}1
z;W|1%hZoosT|9{+MZlxqlcrY6&0$GvYk`p(>pg2BhS2DCb>ia}KnW0_QCRZHMJS}w
z3;^XW$mi^Xiu!m-QjAO3Zw<(agyWyGudb9x?WPS$Mh~&`(lh*qHskx<2W7q-GHeD#
z*5-bx^W~fsu&LjtH^j^ST(qqsazw}7tVO2lu)S;cHs9?h(rLJ)P2|TUskjR<vtnCr
zqBH##W5oLQ9B<QfOqB?+dY=G>ooXfENafmr&l|In5A@VY%q@5WC5O@k2JNDQ?Ij;G
z2l}qQd89Y&f=}@I3;q5+yj7JLkDiXb1^12H&>J<FzAv5>q2Hqb$*h3FYgk4qqTEY{
z2?ezp$mm?xoe%yyRx4{c!4oNT_w__})1w?WdR#aaxFVIRPC^sv<0rObl<VZ=#X>(<
zM9>O3q+KrlU?brPI0m?k$h>loW$b;J)PP|ZA?8SNsUJK)6{t4W=az<-(B6CG1n7dr
zaps7t+sWj0y^nZJ@9)32GUzJy3Nnso*t4T|{0eSfLh>L?K~tyQ5H3&1V4x3O=4N+X
z<r(dWdlrVOn$}MX@W7IMSH-b@gIB{b`sMOlztXBq!y6J2vlO}vyN~aEy6u=CvVT8e
zJ%B$rl!#%OA-i-e@E=&l@0(5>f1PXTyg|eQ=N<D72Js+!sKiZ)Wj>sgFpiK&k;f+9
z-5iGHZI&9dJYOK4=1GUy3HtTV*o4pQuu?M&xUxV$th;_>%BIa#B7s#Z7)ey25;Ln=
z?>fWh6}fqvbEJw{3}!;&31b`C?@-doC+-cEu5-zya^B|6_Z)4rc~h#gPC_^T+3u~T
zwRGl(Jdg2Qd_pm{0<X6TRQj~^Qy5`~4Nd!Ymd}-0z)j&C{g}WJ$$0C*P;Q9(lAA+_
zyHjTRiiKL_myMD7i!$k-q@N&!?DU!sqHa`{mOE^a)gSqZfHoc?V3J#uIYk;T4hpLO
zO{oJ$)K&R>T@w>%I#CzfjewC>vCfk|(tatFQthug`J_f*I44jt3UpB_!5ki(@yC(y
z?M_gRt|Ghb*Gs`bEW_c8<Y@YCDao?or|8@pqo<)hT{>VA*wepD>W~X83G^%M{3?9t
zBvlgX@{&=@TYG!AqIs5=DY+ndZ%?S-S;q`%HEF^3w@Il!In9Oq3`D2Fl+yAJZAmR%
zI73>-b|b43s9TxUeGRR?Dh(r;Vz|~t=I!^ItZAa#E%jq|WIp#jHcvVFLVJC&czfmt
zfM@i4D;w!|eN@q5VFVafQi*yX!em;ZG7wT#0cX`WL1pDSI*N`s0`7)df;_O!K6|&U
zh2SdJwf>vf$@>uzt~6(CR9Nns#(e-;-}BhLN+3GR31WS7bBDYT->1ryp%ZShMj{un
z-S{?+>qi0$h}(^I>#_5;IxcHu+C}T$5w?8il&?aB)ds%QRSrY^zHA8~cqdIeN7beT
z(6md};QCDX8<%EewxO7&WTd@qwJojCnAe(rh~0VAc^wsEIYs=Ilaj~xIFy`P71u?j
zP1M8jIAJmP&|y+pA}(Ik=Q0(Fk#vufmoRMh*SZ-0_Q!xBP@0+91l^7v<P^h`dAGXl
z2zK}4?JlH!5&ixJXcL|6Ih3*GmA*8A!br8di;>Biu2mJ#Q2KbISifn5t`cJ8572#`
zGL>Vu2h=WDsO{YRB?!A)l2Q>gcS0|cTNfR&gS&v~wWLg#egBMjcN0hwSrQg&`5Z#(
z><IeRe}<cq7n$a-gsk(acw+RWns25;Jb?ek252C5TEUcR%f-GHX--OmD@)mKVpj_#
zZbWj2x4T!>F+MIW%py%3OEgD>(#x<8SL#7Em!zq7nlMo)!pNgtYW)td>)1F7lhrE(
zoT3T0l+?UJ`uAB1t#1E=1z_3_33!c+Q>$v(GIHxYsEs`h{T!riDHyudUdHQBlu9bS
zdR|d~p2sru#&|64Ss!Ig?*z+2^O$MUX2}9!s8<1Zxw=rxhf`Gj%v=iREn^ikJzu?A
z{gR1MoDzc-j%J6tl|;8mfG;NuFnvmAO+$d!nP8GaCe;}i8EQBuA{N!Ukh}X$ShoxG
zTKV^lHb%jTH35%ePDKL0_UoSQB}T2K#k(zTlln`0Z_D9x=oDr0RR&c*9QjKMox8fh
zvG@Nh1i@%QD7_<lMQU#h_tr$@;2{{7bMn3$Tina2oJqAbHnG*t%`xNZ8vP|a<&{Sr
zPcvWQd9j4t*zvqXb&)7~?)CKoYzE<?AARP6kL*^d(peX#$%<}XvTRw&O0d+ABDqIY
zO~Fh5E-aH(!PyICGFe~Vt`~t3hEQUOW?=&Sw!TQ;vG+O|NSc=)21x=?iIF=<;$S}&
z(T5oniH;$lS9r<8rH{#jisy^s4lOJs_wjb{8wgg3H)XkH7}aHgUj_{+a>fuE?8`C8
zddKvsl$fZhZT0j+iKE%87@fK6+#JY<Ix{~(qiDJI(SB}Ez7uvbcS|`qh-o0N<JkIM
zZGnW|HTW(U8d9RswtMvC?gj`*7Z0=Q(X{M#uc!r4@9m36ZjpuXTe!DBbEH_odX%~X
z&9X9|dO?9OueR^OKHT4ozq5bK>+STkAkEG35V6Bi^)rgZINA?(1rN=|sB74MVSJ7N
zK0xEYD!zV!>8hYn51ZZ|=l1bD))Ny`>K)2d$Ua>!5D^P{#m|;oTYD8hJISu5V$vaK
z0uW`ikAkg80vCC<g8Zad1~+mGU$$gu{OWOEVRxSXn%g@a)4p(c4lub6%l0wbUHa<F
z?4eb21Xzl2ivy;L6iC?i;gH$!^4oU)I5Te1>F^>$3_9-3PS@_jS5@C<NFdUqOnf*^
zaIL;-c?yWO)wQ3BFmTrpXKg52J7;FD|3zOMorgR7f^DXibRT4y%p=&b51ryJ>Z63Y
z=!uHDYd2|Ma+$XIvs7OrxU9Gwyshz|XJEHE$Ftruk!f<)DKsQ>Lb;K_vQpCWo|#^a
zwN^{*TqqxBU4D+zj;G-J^M#skb5E44b=(pBO!sy{eLipie=5ccbvlK8Lu_+-Z0-l=
z!Rc-o_YaO;atbXs1w^OvX~a&#45L4N689^mdT*QAhcz`V>HHy_$*<aoGe&Of_TAQ9
zpc}FEj+tJY-+$l*dT-TOY@74j9nmHSdtAh{{Q5@jPekrAK53h+zc?t^!pOitWz4B!
zZ<eE({Z^(~Ykzq`-S}9+GthwaT&Z33J%;ck06iAQR$vc0?L}lHUqiUPckr|@y?uWw
zn^kn91T;+x=q}GwGzj~NiaJ2+mXg06#hCm^(s-4gQ~Re1zC`7iNt_ej*ks;3&Ap>e
zy^DF&CXkVhZPFB~-?lATUN))M>PG)eyiHjRh{Re03)V-I7=Zad^o$fWjwV~bQG6~0
z#8d>tqZp!eb{fn~ffC;Z>Ng*L=<W++D^l^2|Fl;*opiooy7ODAh~S2FqW-h)$|r>%
zSEPc42_(+!>O;5F)ae;k^bvE8^MNcUu1E=J`y)w(QSn`00MPJKSFuG&02LYlXq+5l
z*jGtcTOP_-c^x&<K59-)FE1l9bjh}Ef0I9c8X9QzTf+B-G9^Pk5PtR77w`i|iIGDE
z3h*<&^seWYC~pu7bioTlRGWjzmg%__xtt_67>`fh7p>r~V4F+GlZ!$N7hDH6Fq124
z?<|f{sn1A4H<_L0TX$Cw8;$v~zDz$vi>QSfgoFHJ=yi3No_?T(vGF#EVl~EDj(gzm
zjh&K(KnGiZ>!*Zs?^b8;@D|4@fK>^`De{I<Qy?8;u04!b?U;NxmgYwqdu;ncfer98
z;=^eTeOp3(z-g#rTNTkOR_wyLXG4tLN|8#9Al}>ReRLvzPK?UXFxbj17UskrdIs<r
zIXn4TN`KiMmiS&t3~_*oq`rVU=-d1FbpYvJQb}6EH^JY7BPfTDYBRk<1XRCIxX@R@
zsd=O_L(SIFS2UmM(Ih?|o=R|8uvcf95+#+u!URk2`^L!NCgrdzwr%JTC#S0`j<04s
z`^r>KhYv1$Ol-Ett7>OT-7h{_lJ9ucogv&Nx0uD<i!IL&i31Al!T;iTJE(vxiET3G
zu!k}1LBXr8$7ll26=pGykhqH-$9&H^RHgT?9W1sjauY7Idh7X1cXE>+F|>13HS1+H
zlD@R*bnfTSq5bDho2B)bi(kC?wN(Sev2Uz=<m=E>brwyl^a`IU951&WM!d2=pSeg$
z2-G^fiuV_2JSK4O58?@sk!#hfO0fhrH9?QQwbPoExU&wgBpN)T`f3qlNf@-r-oH$V
z+^}Z+ZS<9t&q{&^K!4Zd_SJ3wm)sOa${>3U<IS4%0p}vN>E5!Bqwjz!&jIvTk_dje
zPdSYUi7wCb-NO0>7*jMs8MySVRb2qfr0D`wfu{w4Gvj012=eK+#DeF3HH-GoIep=7
zEkQ!0iD)Pb!r1!)HdDpGZ-Gtb0`b!*JvkC$OE>R2>wQDiR0eKt&{=6m;KB@4uFY53
z>GVKi$QF3P?VytlHGM!+O%gEm^h{Q_#G>{FGkI!)Z&b_oJ`id(k2?|g4!c*u_oS(Y
z2!qeqW|^eNrbraQe+6=)X=`%7gtau3WAGWs>w9-(N84*#8<|o|tjot*{$XdFsMu0%
zRxZa{o*m53!4H2Tn*t{nSQ4SB3MGJDlW-(5edD(+P>Tc;1k!vmZ<m2;oG|s)1WI8-
z3DjlosYRHs0FB0e;>#)*=Cx|DWujiVGChdf+$B`lCqgo_H|4e4^-#LaTmAF)AzU1y
z{0o(b8sJR4?aR!pzGbe(#^a1GRWe`7slA-d{>l@#awqg%J>Y{(fj4`8d(>Z5oMd?t
z$SlmGMmNb(2(Y#7bJG(8T<A0P2B<fgCX%0Vv}gs<XP-6k{N){z{!G{m3Z%@{Jzii$
z`AY@!L>}@EbGPg=Ud<0L^08Y)kZs0(J(!~(MeJ$_LFqJ+A88C9v<R7nQ=qX4>J|;V
z<Zhus<4q`$b*(Xuf#E?H0-`l$P=WFEYX?`PsHut2*bttQ2}j-RJa}Ip4GT&LDvx!U
z!z2$^#F=h<77+IGH9j8Qy=Y$G?)~ts{cdEuTQ>n6Iai6OmF9U@MHkX^GUVW}e6Z^7
zW~t><8Mhvxl}Zrb(<jl}^_=_UH854uBoY!a$fSi%fjQ#N4!5JXj`LV^H&FW2U6e{J
zV%pOlM2Q_SnY^fsB;NY;X>I47W-<}tw;0)0Kw9rNJ@fxf10Qh0!4an(uudBr?{iv5
zAc}<bx<O|YG+XzdZ{^f)jV#$ssG({KwuB!Lap|syGL9|~kME;t&`$oXR$jY~WHnfw
zw(Ax*x=|;$PxIqYt!VYHGyGmBUoF+4ucHjz!TT%Wk!6H@KGI#5MRvzOW;|2Tj`QZJ
zBKeY(b-x6c-E9S{+2#+pTuSZ~kpT^9EMCMkyQc%wajdH5>QFv`&CM;TrWQZ7&`v(i
zY7;VggQ>m;la8~5#d`0%Qy@k5VSEe4Y3UjgIrX(eN<l|$t^rrD=}2eQ)b+2`e`q&I
z<9O!JL8nLV`B+h5i?Kt}E`a+c;XNN2Ujk;&!ZSD}D0PUQu2q0NZv`3(U%j$}Wxzzt
z?ngnWf;gHFnoH3g3%D9I&%PCV#4gGs_00>2oOb9D{QmAc!ZG`zfe_-SOXUC=9C~Nx
z3i1lhy%d2bB4p?_VEQX5@YKpfU$KYidUP%HV*H6m_kgTEMAjXd%aE~DCC%N2gg(G2
z3A*3(AhpQgmh<-gK|!f|7(#}0ABk(MVusqhNH4jy)Y<i<v=zq6*>=J?IWuUalqwI%
z3!NE(fc018p}}C^gP?70lKXVJ4~DaD*usZfaxau>AU*z(sEYuYX|wqG5k^{vIa?dh
zhm?I>*Uw$3?gUwcO{3PE9O&}cQvz(Y@c>h)7Sa~9>X8vUr23b@O&$a_L%sn(V>F*~
zC8g0b%ferCvZbjo&XyDw8n%$2zY~bM#j?Cwz6FjJHc=U-wVkV-xG0LuBW?-q-XHqc
z5E9)YRISI}cc-Vl0PE|-?W5{r4tI7#PF;Ps|3YIdB}8;WQV+@@MWe8wvLw@i>2DzL
za8DPteHi$K-yACQIOU=Fwv16?rx_WF#FOqPOXqqytYLYoTU|IO5A){u6C-tkEm!tH
z-o_~{z60<yU*-C|Z@t_N#|jl%CjSw1yEovT3hxPvA&m!{<+SzQXzA{pNZw?k`an-6
z2%a~`zS*s9j{NZ_;|y?Xyent;AVAYqUNX=;*I<YIEb)F|T4_h-F5X0}Zr$|fAjE!|
z%1Q2ou}Y{6RBy&50;6mnDb1Q(H05%h5w+7ES!k#@%qW;VTCZ^8NV*gN=!@Gg<Ks?R
zrnc5a4nsqSDq|SFghXcBAf2?T%nfN)-`bqqP^rcfuv#C_@LcM2e&5BuLQq=K?Bs8r
zx6oR-<E7oJ<i@hg9BzhB1Id(|N7{RxC0bITUA3p3g)>z4Y3?6SR~nJH3N<rJO#Jr9
zXC!*249m`WmVOWyYH+wY<4Kv2vyMDjjLLV2Xk?b1?|!^a8~C8;H?7!2-nsd)X_O%;
zGHktlM4<7SD=BP%olOOr$W7oh>$h>TUVu*2{OVN9tvC)8@o|bB#|g~_2v&c3vb-zS
z4c~h}SmrlMlTcY*96VCa(T*bHl(_eZo6LFSp3koj-hI?D-|53aLmR$ytQ@xuk9>SI
zfACNvBRjjDu=o*xUnB}l5==zqN_3HB%(2=5e*!vj@vD_tCxB4SgZ**+Yf01eEv!w2
zawaRsd=JFQoFx3(0lRcWD>ec~c5}~O*OwrG+F3n{yIvpQ70DUn8+Z*UZO8r9nJIn<
zcEvdpG@3GW#SMqB+u+_N46>65=eL;@3<&tnzH>d5A==j|;8fouW&4YLN?+fwKJ^A~
zBHgfpC2=tBQcxx@;>JI3le=_2_(?!~qq|=O!Ct_r^BrIC{6X)@Lg4}eqR$zg$h2A0
zJmm1ApU~cXh#u8p<sa0Nzw}mtp6j1VInUMNq8mjIwKIn#M;&~va1*{hy-d{`Xhjz5
z*Yx)Us?*TFCFdMlTLvtPVPKM(x^rw@C)`ew$TnH=Y4^aqX^>oWTV6eQheq0}yN2!Y
z8pG#0Ytmu{36BqT30Azu6crQ_;n-$tu0WV^?;qO5^Y5HE9Z>p3@w*lpy;9kR;X`U|
z$KkN>nQ$jx1k$6EOq`eAQNdKJ1L5a@OBjRlohx=Mi*hq=abwD>jqD-qMVgpP>GWgF
z7AU^3^Ov6PUz_iX(mYxeHPKJp)&v!-lWtqj1u=qv1*xy*V97EhcT6hv^jTT$tARmv
zobwRjb8%Mqs1tn7%AaVR&bUQCv`nxoOxK8^Zv<~p#$vAL(vp8c9^={?DR{p5??dgq
zb?N_S;>9ehEHm~u25yVN2lZFpWS@i|>?(K#L!K6og+EcM$I2g&o_ROI53|}o_PIN9
zMn(lg(nmN>CF|=(JcApP1zy?NubAbrJ=zUVJodP+tVnP}>y_5Z+OkH+(BP1pZ2&W(
z(`|kgaS)MXYiB*<KFML_FuhAbv3*AaWNnP_@4OnBe$2aX{nS|in%6k_<+jRxyPkHP
z@(;6;j5;1EB0PFxDY={yW`m(H+*2#_{PHBU*}$*id$h&WNDHn)+f3+A+zqegj5^mG
zCi96-;P?){C)8hmNr>+sl%CFiO+^5Rh)Ss*8NsEqUIn)bidNFazuRcB?8;TgN9H8@
z6|^{#0+@yFb&dO(O3+S&o`~KDjRz1-BGj8&^HL{J0pmEC9I_+$8oyl{Xv)#_!~7qP
z1uz^eNfXUy2d%IuO~&Sm%(#fg6Lydjyb$f2JayO)cVAJ;m;p-HknIrMeMp4CKA-5f
zU;l-&SfhW>NHbS_LOwUF)b%9Vv`JEo?}RTU(c0=6F-u0m_b;bOZ}VTa9#!;P<m4^q
zT!QYAJFS8U8O;II24*rK+MDr>bzdET52bo_6zecF3v1?ktSGi%mv@m-<+;1&trU9{
zaxl4B4R+Q=1-5|!Lk$ngP)lgAY#IWnJR{vHPiE!W@)nbfTVhqSz7@PAC;pUhp*$uv
zoiO;kO|M1(Asue8<i5heTnnfc(T=Yl*$S<2l!l|P>PN7sB*u@iZ2#=4UoXM{6btOW
z{KK?3{&kb)bGZMPX_-%OZ#POG5e+Y)x+viaWH{aB%x$dqZ!cMmH)eG{m`dS%#FYw)
zLEDA?jzbJY^YYX`Xd)*N)Z<xsn5Mf#=&d0MPG+XpoDyFBxqtKo=STdN>FZkc?iELG
zp9V=<6HDwR&EtR9unOuqRo;>PzE|!EC>Kk+5oVwjw8J_Go{l)G;)|W0q2U^Dw#~&_
zN#@RFVl|Ubkn9IHQxceNP*?8eU%Vca@aQ^kA6RqaBKn#01#h#%Nz?Zp5VL7MADTPo
zjJkpN`jF!lJz^^zHr@HggVoq!NKKKF{@F2!<q(trvb#vU_XUHp2qN^slJeip=4Tsv
zMK9H%ol4`&fC2m0Yx@#|_+euWPHHS7sX&9gFQ<A|31aP`tLwhR%G&^A@f*$<vW<)_
zRPHCFH}G9yufS+XT&S`Oz@}nT8WDu<a2N*#v$doBjPwKZ6CMVc+)Nbggf1mrfrmV5
ze(KJg3y*}+gLLb+8G}Xb9ct_4gF??DXJ_)mX*JZ_=Kg_K==$T~VRm9}p+(PoBQ5jF
zA|<X#FlRj_WcbYHWb=*bL?8ozT}9rh|7bPv^#ul?DM!!IjM8)Wy`s`b!pzu1^1wc2
zQOj!)^>+?J5@R1JOey{dy*JtSS=j;f=SG2dBh+4SNnTgc`m$>B=QkI0=F#D=R~^fQ
z#b2%8PGOGX+$@k$V0oN+n3FpX`8d0S%ZRWLf6)>DlNs?;<`M40ou`4LL4C1s`|S{T
z0IR6kd>)bXtgo7I4DLQZR-$wXuxhk9m)-ULiZ{#Q3JQH_11Zrp1B|e-;UEDdrf-3&
z*{-fTz%#3YObXuGo&~&LO_=tYbA!{v@0csv_kCh|7LhoZT>O{Pz`uUP<DC(ezpG1P
zNf}Vtuzv3@ZNXv>n7}?EUkbPue0il;llL|A<v*82hb;>k1=GP4sg~7Tqr=NvSo1*i
zqb_sXQTZ+MYiyJvju3$MhiW+uz46F$Bc`9vUIWqYtnK)V@zO8VG+D73<wEw~5KB3A
zMe}?U{=Am(5%=t<RpRg;lm*CAn*!y=x7=7r#~E;@6Tbw<=q>QCcztN{DagP<pAJ5c
zejoGC)m_Je$!y&25Dxg;=ylEEjDNRlc%@g%_o;S6doPo#d-$<1ux_fk(9U1aLueJ~
zn96B2x$NiJ>~@aG2AB8<pfw%eGZ3ym{cz0=pZ4^4CCNo$1dA~GE)K4>FtDywgG87T
zgG?6o#l95j+ABLiGkM4$BURT?P5dMc2DJY|h-WsXzn<EF+V3HDkNH3btQYQ!=LHV&
z_mEUExLr4~Uu7uT1IvSktkiJtr}bY#C3yS8h-<cma0p%uCS%PN<v*4uuTlk)oDd_U
z!0A{C?0`KZC2b5rNA}@FyZ+HVN^*cR@K8FL`4jKV(&aM}BDvZ}N-y&M{Xq9s;J)vI
zxcUMp6oj*@d}B`^>*fDgC~52RUmmcmH#cIp_*8?y?Elr(|F2Kp^)M&*bvYiMj|>I<
z6$<g+=DYvvAD)B)!oet``$P7>HU+?|^M`*N`7!Fqjnjghf4?92yRjeq)SHG7@CoFO
zUaSB4I{$S2|9rk|g>kr!q4m_b{`f8b^zHxkxflkS5xSiX=p+BpUF;geSzFoY{Ocfe
zh2UJjb5Br2H!}bEA1~B_$jri`BStq{1}2kBqA|qwA6}5-70jS~h|5*@i)8gL_G*Z?
zJZ4Z{8oep_Pj3kpMyPSsrkL}^AFuY0kM%#p`cM`u1oB~TYX3fVfBY%;4G56N-l=S_
zmid2-tvI?o?76BN@?)cM<xt^f?R7j~X6lG5*!|cy<zM{RS51HRgr1I$PX4aUr^nas
z29kgJKq5;==gy!5kMOn0dX6jBuH>*T&|3u)FkR`{>e-sA9g92D^K>(HUM_{1^u!SN
zc+IH&b6b*Mg4+Z}`rCgx()bv+Jekk`2P2*TAC5FT4!8tu-2Yc2os8iRnFja)!JDsM
z*`HoxRc!D4e9okxJP%-glz;GCLxzspd-Za!YOKUGQ$gGRH84TfMF2Bl<*oE@^>BZG
z|6Q^lL}U-JojP+jDMu!ohq&rf){nNC$ZiiC*Vc_Q`B$}+)va4ZsdqbhJ}$~NX1P0D
zdU28O+18S8x%_%$NSKi|Fr=HQ5JR~LW0b2_;vZ|m^qIGSAYG+9qr7|=c$qpd!45XN
zi|yiGYhCi{LpXpo&nV!!Zw72@IaL^=<G<h-XBarfZaYg2298h*d`vdOxf**l&tdDR
z&Z3&wv0GI9U7$d!Yy&7+b`w@5pW}p`eqf|s#iJacA8rFWH)wNbpg|iM9bE;C0;Qy7
zk(uKVOm9a=M<>Az_$*3xzwM@Tp%hp*UnNdr4BU(P&rSP@1Xq(kP68E&lYry0qJZ`I
zW7EB<xyFE+orTsK5ZqWQYn(oC_5fe5T`yX13pBkiW@tfl=i8xr0fjnM<J^bX*4Ea0
z>0$?a>2LppV*1xx_(l;UC2>AD@Vi9+#(*OL<U^}jEj43_p|7yRIp4hG#l`#e&Wfu1
zp52RQUbD(kRpaTy@AHUJcGkqUy+gsp)CF2V&{Eh@p07VdXwyP{BPwswf(;j|8Pwy{
z-<Lovl7Poke1_68cMih@1o_LC9%xW*$mFyI-qt-N)uZ_L{m-}hqzRM~)bMiRt}rx#
zHd#f-!yKr0H?VpBsA;fB!0nR52JQ`n7TBG-<A;FKlM6V6_p}a^<o_SVy?Hp)Z~XQh
zsYa5m>`OzT>}1~xB`LI7vQs3xNoK5-!C(-wZ;?p$?2IM*J|cTYj4j(>><src{hs^z
z>;85>|2-W?|3n8f^Z9(P>w2H(`8un`+E!maF9D>k9k}iNc=7M#st>j|kmtQXZWg;<
z>VFu&`t}U>S_VH-hm}xA&e-^XIc{uTrlUD7E{grjy<jT(%9sNqi}2f3c4(f)CkOG-
za|)dafmIUIdduV}?_|Gf#n`p|otv8{l~oK(Tmw|imU((2LaxLnALW{pUd~PO9I7H;
zl5X0%ExA9Y3gOe+J<hynkoxdnEBuXm{vxmukyC2TlxV)s$eRT%bNRfUO3%lTvE<-U
za_r-pW^%Z!>AT8)esl<+_L~O_zlGVSZN5nRIX)bd2Xqss&oTPfs-F@co4jf@40MZO
z64E!%Mc>FV^Z&Xm$(ZC1VG(;h0yr4cpiVb6UgyjJgCWo|rKStWiYRXBadk3L;7Qf0
zpB!`G0dfB8+2OG`$8$?(cW5fUxm`U?$DNGO$vH)*1>b5BGI(K|;;w%i*)Avdyz{~i
z2-PFCI;+h^yc<IooqZG>y!>#szHJc{{Ue}TC5_+cNv8aAQPVH5vzs8FPC$%wBcwE#
z2g?N_xpm6`4uK<M9|%OkPjXhA%$6{F4+pXSeU%m6*xhXQIZbl9?D+d7>j9A5eJ~v(
zm;^9mSEvEnNvryr@qe#RA14_ub(f8z*`!RoylQ+_ipv60xdmQXq+ih+5O0unhGo?s
z$%`F!xc408=^DQ3jb9!!s~wm2M#xsQqlmvYIm)-x+EsEebV5Lq@%W{%lsE9H^``&n
z=gmxz+-aK6fG?rE@xkpk2sN$Kbb_*=jGFaU4(+RIh_4?`q`J^4t=$moMt}!SZfQ)d
zGc&Yf81$T&_mS;dP%E*>>6-(9krBHVH|PK$8RXAl0u1_=6ciMG0o~zIPu%kOP@J`g
z^tbO!aic)vT=3m4NgEyRW|kOeczcrMF;@@ttjhZO*xw*^{R+gg*P$uv??;TCQ6I+R
zc3KKP^_ACe{ZSi!6ikePGv}qC9?>Wpr}+%Y!tCuIIhTXn_-A8>;ug$q#X~iXRx2fL
zE3|4lX;#e76`X{!RsF~$ASPWU38j>mWKae&q?O)K8x_CEd@T~PDG%1I1J0^z|Ja~>
zv7t<lqg4_mn<NK+nUv*sLVnXSNbn9Rq&wHXD%Gi+pkc5-BRtElf1G9Sm9Kc+I0m}-
z1O~E}GHn7*$b}N|bm8{iL}{VaOyNlexmFfL*TbT-2?Q##O-VsT66`%2spxsh?aTp8
z`dT4%oHe<TJ!AHTDOF5>5M*wn`m5MOux;&YVEc6^a$o`fNOY;|;9-GGZn6{QtS>Wq
zsXIZc7BW<4pOkjP(J^0r83hW+r5`j0&o_|6*T?T|fC+{8XCp4rN1yn~fqNg+*yzRI
zaGbh)7y7TQ9Sz;v=dniouwrDs@r(R|AA=&rUvrI}d<>*4{$z;%JZCaAC{mxE%T{Uf
zV6QW>(xyRj!qI7YdvRb~lHuZOsrVg}8KDy2Fz3C26sfGrUR^V6T<P-sm@2&0y{v54
zjl+Q8q&X^N^oGU+$dwah91~bkJ$+(?&yk5d=L<z<1tU&BIRD&t#onA~W)WgH0|b(#
z!mw@O;%3H{XIpmbAEdo^U3NZ$$`=U&$l)F$l(a6|!_y}~sEun%d@6QmO}rGi7vwRI
zVy)oCeDw&1yT+{maK1>mS-iEq&E2Qctij<>bn}O!j+dj>pXDm`g(9$C?zy0}{)8yE
z)^f`@#Ixw>If13E_!gX7T+7o*kdBbEc2^;-P_lp=2;L;IL}-KBN=+rKQd&$=jQ-P(
z$=rvnbYs?}(+u~XTAQS&Np2TSvb2(k7&Uq|+Ln(Tj;Y(KOmG+u4i2gND=UX__TN;R
z4?c0WmNXqi_|}34=mpbfSCc~vGU=pTbk|>X5TAClo;kAty(d(r$^uJ>;ZAZZ`^-Ks
zQZ+V~gojs^?EtA}58IqU#u|0618BZ{iFpp!oMv}6VyHiH3u`s6Z`Ud2zFf3JLHZnD
zrG&+iSFW~P@En!A&lGc;idl|w7C{tqF?@CNKR2?MC~1T!nt55xo<?E53on?^Z-{&w
zv@5VI_}E)eQ8H^SJKv$rC+1f%p3XfUC|$RbSfMa66)9#7v#E^rOIaG5^llLG{0Tc+
z16`ajSSsm0e}`3D-GYf@tv!hl<}_3<+RjPm!K~<%ajY<3wKTEZCPuBhx1Xq)yu=>p
zI}v9sKppyPf2`JN+nVLJY-zSFk9J(C<NhK;f$JyrZ-t+&!|lCb$w^!7x~2w8-Q1%u
z7n4j$@28I7<HmGba^~wN0r+BDD`MZvpngNYcTgjvprALzV0=<Yj{H;yi+5UC`yIo(
zYGQ5bo4kR=@4JryJA2}DoLQp#9^@;TV4>MQ4zADcDtXvkWs*~M2Z=;z@ycn|ULsrd
z0z4BaKc$qH%j|Rt6;^_kTg(=+ck;YkgU`YEWN)=hX9K<u6#hnyqyjHYUp^p9`W`BR
zJnO_M7L(tsEGwR0cB+>Ohz^ywAD=X9^cs39wH9<Sj|0oGDhF~ZBV=o0%VlQKzW&G^
zAY6HnRqhqNA?B%;2){$?ilhA{TV|YA16&#Gt9YC)I6q4d*qZ(xw$=r}LoaVvekXb2
z!(@Ny`t3h57qx_fCmEp#Qtt;eey{J(1Q*iH8Ux7raotVu1jXU})z8Z}Po4yg)FV__
zO~CvJPm+9oH=>-M>$lOZd(2OF58Zrtyw`5dUAKA@t)tN4rPs-ce*K#Ww4MVQhSRl%
z)^Ahi_k_&%?hb9~iDG-eoMaM@I8T6L&+nX(hzb^KKLA^!D*M9PAsQZtvfWga9nU;M
zv~qY|W<ZRA)n#S#N@^h}P`5E<MpNJ41D}m;IG{qLi;6Dn_IlLecP)@j7=Wz!+YnM%
z^7(TM7XaZW98R5ocWR$)8!Xocwh~Hd_G#kPN);%0*eSa|ngDf<teFlGlC)eL!1+;e
z7?`@p6mEc!_~tS>7=hl6kpK?=vZfOUVCDGpH<8SPjrbULaPe&0i%9?pHIRM1Y?vl+
z6eJPhb&*8{Mps3LJlE>QL&COxfU~U=d;ke5>V7dPsAzO*_goyv(<=A}xq_OYitV)S
z?=J+FVW_0#gi1h&`$a}ykOitb@F4~n9jaIvuIie2HxX5xepPlK3`jCpi)C7$n*fYD
zN$kg2A2M}|NWWuZwkQ=}u4_#C?7%P~RbaLGDO3JCNIT<ihq2ENh-ZBlDFvvoq*cIm
z?Oc46EMOwx6N$JP1)Wx!M)4gUURKg&otY%9dW6g0mxv`83EDVZ%jz|;%XP&y?lSkX
zjLg@*k%$-r-9H#Zaz)B!o0;dID{Y)tI^we><C^0Aalkx~@N9CoRaWu<KrkdzsTVV8
zAuO<-;;0Qb;o(C;P64>=0GR$yx#QE5J$^`Gm7)#3$Eq$8d(01~S&W{qtx9E)iGF^5
zLDV5!io#;UF2J0zwfh6RJX*qqUYVqb#g%veh*!U4QYtSsZ=oj)6MAIKuuw?Ve_WbZ
zZ<anL@~_qE7JX66z|fF>T4>7!Dq2t}^oa$3;lbm2?U0@N?_RfQY$X_YS>9E;MBZ7}
zT$sA7zAIzVru{9z>#_s;%;{y9bo;THk$dHdcV5Lmht+!wX0D+wb{SW6k2$Ti2bnZo
z8@CCjzgnM#a2+oF{?@6_<M_9U>0L1oz}oxmG+Z?&qO*t)dB8?%zq)*yM@e*padbf4
ziqv=KP<B`$3tcgxGEuIJsH>^_lJDN-_gQyoH6jMuaEEabT1uu?NKUOTkEs>wR$})U
z_-@NFH?50b5WV4cKAnlCga5{FL-r>1bB&bD#`x9|<Rt=do;gmBAm2EG?EwL*mdU9>
zSt?-CP`<HJZKziZn9ZCS;cK2>;?{;|Ze3?)sd~?Y4HY&CVivteZd`%^*QoQ5m9$+)
z7s+B>&Z%^d&TrRWY<%p6-3y@=GMB1$SVgf{CNIt_q+RmDrqNR&DU5z^Bs0T#>|Mjy
zlqQ-P@^z+xMbB2A`Q=Atv@QdyMRg@6C9N=SIIZlvT{+v;Hh!7r$n_>SV#@zafwpK>
z=4Ap3vT8U(w^ZV`Zgz(!#JHUcdfx<fH;H_dBvVoLUI*}M2yvL9pwnhyd0Z}sgN42^
z@E!=B{_4iL#Ea8*^9*0DAO-XfFDC@E$j52lVZ^pc-JH~XZ0~NwUgrlQ@H^P&@b2yC
z@>YuUBsLQ3k4Np3y#aq3_nYvjTMXubyc!$P+zgUx^OcdYt^%TJm$}}(NToyK01A5F
zU;YT`cy33_3_z=%(GOkZ77L(t6e&MOZbhp)mFDOru3=ULinEV-?^PgP8M0vif;0{y
zmF<%&Hl`0^<2)z`#hJGB#n-XwzwGUDlAFp6NmJ#0d*Y4-q_wf8*MWbUJR5!bFX?HV
zU?)6E{$zehCmY)uCK0(8w3V_3>`^>NYe7cSD{I~bKK90kMuM*$I-mGTwB?Je<;Nnl
z;e{|$8fXLq#L9Aa6Yfcs$C}|uHJxsB$G!9B<HRnNqg`vivxG^zd0PG0^{~mMB6HrE
zTg&X+e5%-M)0kZ^HkFp{{5;yBtX&yjP{HainNUH76e+h}?EN0*y8Pjh&Xhf!B58Ag
zbjaUJeOh(*JKbRwcfzY1RLpvmM4M=ug;R^){xv51$Vyp$Cuk?OiLX#pcp)H^1Fqh{
zae<Q47?`CGzupf$;XG__+G90gsk6Q?EHfomV7-5);7HpX)?=>t9s1bhSrCm$8w;T-
zoG!J;<nGFJZsl7=EU{={zrUwoCG3pJa5C1ERK!q#!1Hl(pBA!&J7154t~dh7`|zM-
z&miqYzqGS>zq#(j`}-zMMJpLHq)!%1YcC8VY+KqDRJ=#aly<F$_x3IuRQyaV_#+f_
zORd?o`c$~N{Lh}Fom)n;gCZ3-=e*i}9@}gmxCvaiF{Ei(rpSMsEtX60aEGonDGrmt
zQiPl5(iymk^l`=S;lT2jz0IhhV(fj`rg}7`oL+n>)PqmML%90eozV6rFqsi+55b^n
z9lq~^jzl+jR--k$rJGUwZSi2#iMJFqwKnjXM*j<e!$sMto}Hx0V^W$q{cXLV28eoJ
z!}KN$>+U7Ab!Pr(>ZxIo4W`M9ExGdihy|)n9P@Ajh#xpS=R0mpwk4{C{%L7N#Q|X|
z4S?f^#lDn4u+k5P!HSk-$I=)Luv{Wt{^#+<#k+u;IsqD_miX_*|7Lk@iN3^WlW8p>
z*Fpcul?y(X?!>$W_(T(#nF-b(?yH~=0(YIKn}h4}*I1bYShCERr_{yXgXZI(VVWuh
zah{ezvciiq{(=`MOrf6~AxJXkQ~h)lH}=KcsUPK#EkUdy9<d&&$?XcaZ;WQ#3APRY
zwx+Z5iHGz>Z!m%Qmwe%V;bseXn+UahybiO7xxL0umId}|oWb*Am`hXX@4b}<;;HS|
zRhkiF_uz(0evsG&{|J@+FS<NO66+U00UJ0j*^;(4l%nalQBvzs$f*aL;MhsT@?eDm
zS=3q?yHkaf45rqp)m`FWnGW$JJj&d<+bU&|(Mbkr&?u}utY~32hOhGoGu)C2y7?=9
z`{*FBmt@UrE$5c@JA9|FG*Az%5~wL#BT9ur)3WX?fu^C7oxV<w);q`w)R4GRg`3z~
zc{>bS5+wLRS3VzPf)dHJ3rRq`fM2yX3*8;BlnP7`3_j>E^aAfKLhKXBTGTtM5NMcM
z#zx)~s@KZ*$pA;<`OJH(T-b9vv~*w424r|?ZP2}aUFaus<4LPuS(6)_&{z1XKqx87
z73KQg!}M3kRC2j)+tNZVVUq@@$*KfqAD&oN?#cb33e3k?kE=U<t6X-7Amok>=!QP3
z?UJvNooSNdvA$^S>zp@IoFnVrLew9?1jw^t1&9o*Tsz&qAHOShqKjk1TMvz+|H3Ya
z+9G9-`H?aNjJTL}R&6dG_fe$Ykql!|ecg!iZRh-w+**_3$46HGR{=(6yU}&-RySWU
zla3rz+uIBPFNzn@QoU=>M@>TQ=gypFC8(0ihp7DL5K-S)n<{z4t$poPGk*KJns#^f
ztR31D+*)~A->2<}lg|AQ?}CPgJW`JRH}B%ktp=ssBA13nvtNd5mJ%#jV>rL1rQOY<
z)<F+9$aYb=EWtx$ha?U&%IB${JLTxVy%(w~W052^u~|GZB_Q92neB*t_wm3_7K_-w
zD|_%KR}!I^b>C%$pfYuOWiPwC_}j`)X$1owk<|xn2iR9Z7OBSYwruBHj=sG{NlOM}
zyfO3)5kWR0JKVDntuXg{Nej1vPnv|~npzpoh`6$8$Bqu2Gn6cu+(Y=fKH|4b@K8|k
z6nSLT(~#=eo%}Ogpuq}ClZ0C7Hq5kr%d>tuGz#Sd$xp@_zSl?&C?3)FmD2Ep=RnW#
zgeE`$_~L@38cyQ8B}!f`{Z!*6wI+r|TGumXKh)mxHL^=F+cDfrcp&R|lU~D%-k3jN
z<gzkNJv>lCJ^8tVT%ZL7G?DrSeJ6Bbnq7kVc}Mg!l!|aB_q-h+ZeUHuA7C%k_ZSjc
z!-X61VW%S*TWf2;8D=70!W#4bYDZ|AE-UHg!Y#w!a6w(gw9=M=RJM1NOm^VNaJ)V(
zj1hC~;kT+NB|jj7<eFIlBOGo6J=?<(HJD`I^-h_Lz!*ue=nel{K5R6t7`lv^&vRNO
z021JwI*cf);f)j=(y-CL-5+}p6sLkdYL-se;ivkH6uiaSK}5%g`)JU*;*X-^cxWt2
zgUc_SYp85X*31iGD2R0F=1-m-y~oHK75nXv?a<`a18`i}Nj<}MhQ0wxreN^@rC|8(
zwl-x%G3zFquvq0)Lhp$~sjYRNs>cVp)}qke5CL6|UX=p}F)A4`v>l;7#(Er>qx(az
zE_)S^1Co&N(w@b#nnUH?%W}6g{Nsd?{jA<-ft@$D*i?qqQ}|POHtfTyJdiOME5F#3
z_4CLdm7puwpFT<ae?b_jyCn{PqRThs4}P4t{uID2Ao7lLRSJ8#^_M~zeWb5H)aJ9&
z5)b4H{oz<igYqwcNA`k;5EDMB+R10H4Cp(VJFj;;wJKtj@PJHxOvGOy1-~z1J&r9F
z-^6@k^AoR}G8#b_C+*ae7D9Y5*S1?jxRR#b*Zt|$9?nap^7uBte>N!ToN(PP%9-2x
zdaKv<9Nl%DvK<y5K2eQx%5%IMG-0-r-5A2y&TcH?Btici;oGbXFjO#%j5NYJIR6?7
zu;$+3kC%U43+5p#U(Wg*&ed(S7fEHKDk!OALSxmLU%t5Qi#2((SIY(ykWx|(B%a&9
z2Gdm=?$WTZgzD84nS3eur`@HWz9E!8@Wz=)sM(jbmv33mq$5QHi&6e8v8P%V109m9
zKExjA_AZZ~$59xY*A4pRn_3M*`Y^|}CiTmnNAUT1!n0s{DFk1kH>~yeM_sJ*_>V=K
zU)6C*u3f1{yc)T0WITG~r|XAq;V2#%4J$<`ly&7rr(97O-e`DXZr<gu%r<yFxu!@q
z+lxU+5ys=Qgrb6_tkiwG=e7T3@yL+&F9M^00&8P~OcH*Uekmcql8M<!Md{sCPJ~Ol
zod#-#?^QM%r5uz0s06dcdOS)H59|-^C}sw+#Dx<-bOqH)G1hJ2J&?ue(5Bcx5v#UJ
zD7#b*KsS1o3SFR^+c<j1(xQiaG5a8m+J;^~@HOae_Vh(oNHJujXqF;RT<}+ZhrW!j
zW9C!KM8Eekxzj4I7U^a_ng|FOza>N+PP$(zC~0wH!WvK1P6Pt_B%x(#u8L;T$8P_O
zV`EarDA*#zF~pBbApL>%LkgcVOfLJ3N60W_aM2uGAdPCEUaKsh)PnknOpsgk(2yVD
z>v_;;l2V0k+sZw$N5N1B8Ox8eG`IMtw#N6=jGN6NYU)k?T<>^OyX*_9_?4dgR8f1Z
zq!9CRbM|uN%Y}SehB6~K)~+I$enrVxqa8BP`8<ZTW}r0xF9E}DO#f~oneJq(uH?Y`
zr-&1G3*!MdhoY`MgB+|V2NwO%Kv}8~Mcax^@Os6`O&ht6s+^(g1<bM<O`8Z6eznWA
zW>5)CE!f%niSMhUJeYji+8DJTb(a4u4)*hti0Itu814n|i_ED&GWsGDpf9d4;3w14
zE5oeQKZ+mW@ZK-dck1*SShN20sHiGPFl59uNrkdFqYv0a+MDL(IS;hDsxqrC&Yv}M
zZaqJT8VZWSwV^F-rZ~AMYN?A8_}U0ei1<P&zo_7bMzxQ=mQ{MD+5gfnGogJWtccN2
z^eG-HG5(M#R?0IN_TLntryeRfPgU`WhCm(tN~$kb*M8|+-H(ycb?^<NUI7e@vQRo$
zN?P3?Fw+95VIfP=B{-p@U3skCB)iKEV-tDBWaT%sAj_^;(A#a(j&u3t8TTNUyqp~E
zCz=O}5ml{Q+go;LR`-pEnSGqSR&edP_~-(An<E!@>65YBdkV(c*<W+5g2!wWhp)E}
z3V(at^3_o9tj<PeV;S^=6rZpe)S4pxf5;c#Mk00>z%(RoXZtzjoZ2jM{=RrXyJ%gd
z{U5{KFfUF{74OQF*8mo7Wusc>A0O88NW%;H(^^95db3LULSJtH<r!m(a+pJtcxt&g
zN2;xAj)}IvEFb1%@r&BKGtxbnv!jS|`07*81Yf($_?_1Zqt^#$D}aJAtW-F<bKQ71
zQH}uoV=iR&fESowk<?(K53B)vX(e>h++M2j6p~n_5f@u9lCSImdE`dT0WW~7RBHYT
zx*n)`U26X^>rr2L&@@DeCGeevcJzhYN}C(3e&HROlQW1n7aesZdj*1{v_k1Sg+(uy
z;`hoS?2tdGmL@4<LCyUq5659Kp=-=gs$q>v+kGiKZARDi^hsC@2e&RCE6qUL4h*qy
zw$^1VLbaVEB-c%OM=4I}z%|_svsyX{qAJ-rHUIm<cVNeP@z>4c_`_;H1baMCu@mN0
zN8FBT4Fz|BrIx<%e5T~rSyq6J<+g@o90L!OCjqhPh0D?U-}H-?9~x<UzVW|lwAQmL
zteFV00H!;i-{A|V*L~bWjD;IF5m0|TK$MbuDgj|I?aHR!%~4^6L@|e_NcMNz<J~Xr
zrwaXq$@x9^b$~UKVFP0gdv0M|A6hssL`oAl#<=S|8mr=JCp)ZFl`K@R?+f6q$K)Ty
z8yxWV@c_wcgoltg_7Ag;o&+TsGr{6fWJn)EpRX2<XZwL+Wq8S0Xh9m|wY)tMm1`?%
z`MaRL0|){+#!kv&8hNIk`S+rF1vT76?IYAU44PlQG$pQmGHt5%vegKx&B<QL58@?+
z$yR2ConLRcevVX)_jm6(?DGmpCidqS<UUVSWj@NWGyCPYl1N0rE3rF@<2IE~k*G-4
zN3m%)D#banO8fGriq#I_j}!qun4~5dx-WchZ2EHOA{eBk@hF~+X+ki|G00n2jV<W%
zA5tr;&oUhbSnj{DHKA&G=L^+lRJqXEv}Z!8*9$Pk_6gzv@DAz#6d8X+H^CVa*B(7|
zcl|aDv@ao?jhUU;*XKaJ;i@X+p3%K}Fs>|V&ILQ9wVo~Ez|>#;W`60freJZKM<s`)
zG_l}G3Pq;qjul`wIun|Zr^TLCQTbKD4H0&!#@ZZC>Tez4$vy=v6r5JMrNbPtmQ(2r
z-GQlTYpgGMq0JgCBVeIfP#@ssR5Q^s@;(oIe_}t?N8X)~Tvh%Suh6aiR07dhTGd)$
zGAmlrEvceNx@N%6crQstM4O&*$f(m-zHPO1>o1)}!0{kN%XaEbN3`}O{d<T^+BQ8*
z^A$u0O;`7oylb&ALz}V{{0}GK&|{O}g;A+JBwC`??%YqKJ7o#gY!$=Q&Pw4Z;Cko$
z(2-(3{Z%+XBB~74oBV8;xXz>h*)WF~d)=L3ngz<s9B5naXYZzTHMuJIf_xf*t94JW
z$lOV{^8?S>^LtK1V`DFCjK;y0X>@94mr;fI8O<f$!f{<yrhCge5k9zWeKA~sbfc|b
zO64x<#r0CtKI+Q{S>}C(PlpBmH6@gX{C1rN1N-h82+P^ijV=iJkmWN$d~^>Y<J6_p
zgav%6ZT#k<U3$xUi)OA?1l+oRl_oJRuiyvm*n!P(>F5^(Z?mAVt8G_X0kK4@!1|?!
zTsMNPf2GHFnZ>Dfgit*c=j191DM8P-W!;Z}g@$|g4T{vh#x~A*PelyMoLfZ{&_(=|
zc@@Os;V5-br2ixU^5)hN(25o9zq3ffA5U>Yh1A8a?R^=2=Q*~i_1uU}YrfIC3ey~5
z*IAWTXj;|#H_!`4!u*bXkP|0(xV1EHKHgDtwWoP^h01ky<Am*OYXx~^kN2mCUO2%k
zN7ll~GRC5sgigHb@D|c;gs|jAUs&Hi*|daDo!##{-#g2srk{~-M|hOuK8~T7N)HxR
zkJNhjWy9MYDt`HJ1F#kd%J%|R+F(o>v0!R1gTF6iZZzoDtK`yO*sX5-aNI4pH>y8N
z9v~kT@29k6<;)!o;Bcu`$v8}*WPpa^))sLt6J52}N~4h*<9i0_n3Q&as?d>}q9TaM
zTv%%4ipanS^w{&RTo)q@&3SW%m3$U)uelU{zX;McBA4VnKW!IXho2o(5)R5Rrs-0$
zZao)Nu~2Dr$2NRC!eH8N*-KC*k6HJqHo<t*y``d-O_84347g1H@-Y|+Hcmp~KPSY^
zcrkCJgqjD{h2HQJ5GRP>CJQzGBR=pycEPu1j21t>Q&GZCc9iKc1sa8kZESs`CJJ~N
zWG@}=x*OE|WcO9{S$4`9|FQQ&D4~?RpB#-K{G6A!wX<JJa*zdS=#dpR(Itz`0Q!FS
zt^xv`hxhI`dxS+P%ca0SrwJYv^#F5|ND7ZIcQ4_VANPBCCja-M!9k$?(c;vE<(H+z
zUvE+h-3E^3cyqt>#ztgR4<#R`LO2qAY7}g};|EoIa+D}q(IDFW!w=$*y0cO<Nh&CD
zsX&Xt2ZS!9Mg{0Hry9wL>c3JSF<EQ@H31XJxHIa7!c~nQ^+Q;3)@viN&n#;|l7bL@
zDNiy2iMmoyHOHQ&y6Nx=bYVP4{J49qMz(ED@_B03n$B%h7uhpJlSThF89p7n3ZTN9
zPd0<R-ZxXGDmB5A&nb(v47k<Kb%@2WWWu>I)M7xTJrbu>ppqDTres}(UMlM=f#Zc*
z=-HndKBmDsSSC<EVLN-bKNd^cClAq7OCw$KKip?EufrF+0ebl=m|5u>&v@StlKn~6
zRVyfD$l&paZE;<iChP4xded*+!X~chn~NJu@9=PBS3#20Suh_dsdpc|4=y4%$?W)H
z@zldf+73z1!WpbbK5iXX;&vI?9<8HLEXqqPXbSjCTL)jziy|dWJW|^oWGVj`c3)iR
zHSVFXEoO!2^bCz3wN)zJ5x1<0CIdkenzns=I8iG|ScgffnzhmXjJ*Ub_d4xj&&c-(
z(>(LWV}ttrm?owiwt3(=vNx9+4+dF>M2|Ro@9xKWTnt~VC^t}sEwY;T|A8%7Fs4LW
z0-Q6EbmoDUC?98u(Nl)N&xJ#dU_QB@H7F_}?AG%nt~$YVrNpP*O7dr6rB<)EyZQdp
zURZ&(&Q8_ME`h8ZQ@5~YJZ;k)HHEFRw+$VG)qNkB7H>2Bd5RQ&&CoG!p{~+${2o`C
zzrg}jZaD;r!p)tfz|U@Wc&tvC5MooPr#>BI(td4bYVhwQhiQF5lD=B?aEgxY8gqd>
z>{8ob7zP&jk1uCgS$hBc@<0VWMQ)H7Ku&WZwW`qK1%QVEH=Hv;bh;~@vt|(+V1BvI
zX}zNM!m{<9l8K$i3$ik~Tb6ME6sK|)b#9jiiUeRr9&|{rSN(PJ1T;1*DPU&C^Y0F>
zTb(0x3)CkY#CLf;OLV&yb9yRuD;Unz6hw#R<n4A7m7-AZM*ybJd5K0TVscVElZ2&n
z*wLGh{^Ct-TplJ_a&yvE!heqD?~b#yso&(lCkCrFRbv$in4f0Po4i|=cU~`xW)+m$
z<yIXxbRk=iTc5?QjLO!n(;n9;EPnYErDMxQ)7B^c^QC@<%5GGlZrnqkg(_Fzs?Zj0
z#Jvp$WW06WkoG;`Lid0ab(aHDe0`{g8ZkNES-8kMW+YZp=1B%utw_lTLK{<OLTc;}
z<B%1_yRuo@u}4&;)Biwz(Kqw9Co+MpX*IlhZ?CrR*EO6B@hK}ep=ZPrb|Q6@3`bCw
zbF5h@w|tU70{KbNk~C+GWV#Q3@oNnW3jX&>Oong74C8>c<3B9Y;NPntmps4Iumx(S
zUtXu9kq3Kd`z#1^I5U-fTK@{-9K-mVlxpSt=E7VAG5Xi<CT?O{;#(rK-gx%?H7$D<
zj>SY-(oLnLT%K>m_G2%eMc`k5#D6j%IjLXP&$DB-2$C9~>j}p$2PsNRe?OkqSxX$*
zjA?3|$=N=$LS&KM{diE@rf$H&^z3%ymtNg>eJ{8ijh?^mO<uYxWW~Bc%`|vjc$$59
zbbPQ7BVBCR^vHKI$Pc$bPcSN;?_ejp@g5v0r-Wi8`Hd!`CZ;8O-Hp7W7#9tVs4v~&
zkg`GVAOTBCaa%CyeVq;DWWS-{wHw|{<}SCIU$wH?R+1y@Pz7;I?nWx&Sf^Y$aLsRj
zaRPH$cm8*~%O$Jtmy{WwtexQIC8J`wrRg8`Q^lkQRk~2{h&j7jyRwS;#uSm&(<7W2
zfJ-W`Qgk=z`2gos9rd6$U8DHdB*$_ix@S!MuOjA?D?x{gCn^NKs-v<ubFYrY3=Rq?
zodq_l5#17P&oCYVh}SrTEx{2Ip$?jc!(cuR@IiDa5srfdyky?i4j)yvRZY_iAi^<?
z7Vw!!&3zvwZ)PElOzu_=71jM85#I7sJieE1RvE(U@srW3_1NoaM@m4xNuaNBIo>Mt
zTWJdh+VK$7ss<!rU?I1(9o;~V>fv~ln0eU_50m(SpYKL=+Ggd2R3j=BrVs$lLb>Ph
zXVyk+2*rTT|1)8yPn;_wRh9Hd*SC8Y!138r7YBVMe5yx68rP-&Xi_7GXFa3OMN0Uj
z^2o%;&5BQeJ1Kfk!DoN7yN+aW)^ZQ<UJ~V<6p`PqpcV0=gc_Wob88mv=Qs<<yjK_|
zISAXFk9##K%tfU3Qh{I{QuDL#B}@xD)P63@pD?atVXR7M4=+uB6G<R8-AyoV8Mh;j
ztik15&-=b$NTa!Qw^v$hihI<jl?k!yf6IOxV3|Jbt-s}>so3<{7f6k6l6Q{34Gt=4
z5W(v(ziQ)`x&M7AztKXiwDt3mN;ezL?Km^foC9Lo@p7&6R0>To9VIuhp9riHv*)~?
zt_Q|ey&E!EeI3TZxv&^()+L=+{)wZgOS-_Zk*mOZtgAp~<M9Y9H8qF+K~`ZI5kJfu
zIgW9$0H()CdscQtFq#T}Kk0UAd?Jg-igP&36jtX#+f)v_-&CJgQO5Pi+{L}i@i&p~
zmo=I$=$AC<WKdDD-M|ACD%e8`$78P%>AaFSRcV(4nu$CCF;^~v>dH%Ip1H&fJgvQt
zz*S?Mb;`h`2W^+{z_79fpjgObO?f2Zf4@v*hJ`H=2#W?2-{+nEc3g)CV?_j)AdQcQ
zHHQbbhy0Zn+1K)gOqBC@`8Huo+7;c}Ob97X@83RVXf2o7Ki02brKDkv4V`}dzEsh!
zpS`yUVYEH+`H8{6b{1nN#bJ4T)w<v6pl{v;zV8|Vu&60evFobpRCFn1WFDA?d#}#`
zS0Om#jYGYO=M|TKs}mVA5?q=gY1CyXJ&N@dkq>piyJGZCu9=Nr?uN!K4sM^#2db|b
zbVjJ?(e@Dfxge0C@eLR6j?lo-vN>0AE43t;0(eCEQeo02tD|P~7TAWsd&eCsOs6xP
z`C(!n^cvq9BH+t$^@pFyO<CUUh8llBuBaPALr;aAjsO4*Ohxxvb@Myf^h|~eyvT-{
zAru22Mvwl1pj8o>tdTtmn(hwez0ORRNg1@?$!#L@FSs#Rqte`f%gV2s?6xgFQ9q!g
zC{I*shiRqwIHD%Ox$UmGED3E(>zq7<t!!I=KTS3-XC)w)v+9*W@0G6;eTbb_vy^uI
z3_|t+g!efUgYDUCMa0G2LWO2^2p>H=U*e4!l*e5qe{SH*Vf*2*z!hReGjUA$#9;Hf
z+IfuvvSX!Q2KfltIb+>g^1brqyXT5#i{<}AwuvhoJD?*ah-WE{lN+*FBve6%+xfTW
zVYWC$8#1L}Wp08Ot+@N!pG5Q-v&-Hq4qOiuA43*AKg>{B2B;6LvA%@Bz@{CQme<Ol
z^6|60YLGB`_~fSf{25)y{JKRD%WK?4^hJ~i0y`?*LNn9$5TJ6xRqxf2olp^J=qYrX
zxA@|lS~gOL#w@Cqq3L_1?b+|+0C0nEv*_0a&e(4;r7Jxn&n`;hHa;P}1H}p8&gzNF
z<ed*ms4zVFA~(Qru8psoVm*)J=tfIF8Tom{)gfhp*q|P)8iu?^un5<Ce=|S`d4);O
zA>y#}qr?3Mp2my6LSBzb!zSROGZURe2SNo<nJO<`o=LgOQv;R*jNFGRYSq*Z7MYY%
zPy<rY)~Xo4$4GQKQf@dL+IJEyU@?95VD60CFKxB{E{%_>OdxNfI;mV{`VTwqGL<jz
zbSX4bp{NWYRuaN?HywcQ{ygC{4cfiDD#0WCmH$q?z{Xrf-VP>cBtNJpVaf)lsQb8O
zuUGe&C3rd<cGBYy^L6Q4?{2H4m)-Ylj$`94A&p{9Ru&B+s3cCtx`Cts{`87ZZpy~^
zb_cd<|6*ODJ6en^N~vEN7Oe}(HFCHW<RV@Qjsz)7FWiw2bnHvgs{3h9t#_l=`kUj7
z_V`Yh@EkuMg4UJldR~X+IR%6<0@P@i;|Hxr^^I%7pvo;n{hN}STTlL5`eG==$F$~9
z>AQYb!;5UEfT}jdanl1Y-N5Wp^P7|q3I+;jo;5{u%N^tQ=W?%bO+6Z5&ERZ}2M(vP
z(BFn1Zi_bvT-Tr_qiNvnq!njB7@R@<)tfsMbdR;nzR>F;p|ju4=KN-nD-!ITE(pdp
zF4BL!G$+ZI{Jfo|FxnLx4d*Wn@ai%M7r|w(t+gDSxH%27eqI;4YD2uDz7Bc4*`=eP
z#a?}PqfvDOij)i8MH-QBs9IJu5zeXRZK<YL18=^VZmXe~>in08^0%Fd<Mw77u|vSA
zsC$;;T57q;<odagON{Fryq_uo6@wfrT!peXmt3HH+}yY+tzqB|%#%7|7tW3cy?6$c
zZyf#`mnKFp@4<PW=CSx(zkve4iImUXRohV&TKC>nQ&j;;#)+%h$^D;HVajNC6OSq+
z3JkY}0`ftMm7BqiCzYDbm~~QpDq7;^J<Z8G)=GG^DtZfDk7855`6=dYMLXyx*=wRx
zG+&mvpLY8(5^@&LcC8go_{+zDE1VM<u0hwK*HVk4>E3x0^VsL=mkMemaienKm1h~0
z@zOh|(*@HiABb6fAuq1{xhw^ihE`<2OvYB(|G+Wgc-|XUI<|^5FO;et>0D9fW>`<`
zA+`KQfL+fX$;2<71DcBW>1k7QZ5v41xq-`{ir}CAv%lz-0}~oMBj6QS^;!k>!qHcM
zapW!ig~C)!7sE+zFzhmtqt~Bj^xoi$5d)Nt@V@Suc}+^!h#8rPo@=jG<JMC2@07-W
zFmEF_e*e@r_W#NKujEsF8WsJAWY5JMTqwnXE1p%2QiDTl9{=ZHz(a|(x6;u(DEm7%
zGxhi!#w9w*cR;5Awm-w2%`jD_BtGWe6CQvF+kjqAmM$2NHjhC6cw1nUR-I6>vI1-$
z5&)Zlz1zP%R$DNOv!3HxTI^o-D8s%UX!9K|t3~)lc&|7gclBW03160V=duXkxtcAs
zFJ^r+Atep7nsw}Ya7Tj`5glB1iVn5n90oH-k3u)1<RqdeUROWO)*N2@c04BjN=Pxe
zEQQqlWMWcrPD9DLTLBnNYS^~LoxF%|^N6t4NqTCb`CaRLhJnlWhB=BemK?mzh6mC8
zVuEdkdD2bR`YJRBj!F(Wvou{aJ587=*Nqh4{Xb@#O_Z=-hOD<W-WX(Cp<Aq)Pg=I$
z>e5w)|AhW}{xDvd8NqP*a#>J-Q!oA&ztj3sNE#j6<#n2ffCEc;c<y(+wITETUiinE
zR*sT`)APSWS+e1&MkO`~SL1~#0q@g|GRT7uY)=c8S|9!XTbR|yFC2#{J+;mqI!IpS
z8mA9^0XQRI{-txo?dJ2p2kEfSg}=;8BGWKu*5RzOte4tv<i$tWD)CI(Nliah;^Qw%
zn`f1H^y}nfL)}VecVyc%Ht2J)<HOoy^%r-{r6TUermmFQ4S2I|noQHGDe#G-RCz4f
z%6USHSXuhdMgw!fAN8WUFPVH&=hw+$Uff9$x^Zx~Jxd6^IE(zFHaE3yve$Io(yX%u
zw8hf?E$H=nefhG2m4niK-rsDhz8G?~qK;wnWKk--rc?R#d^IR)z|g+FYMEHnlPsWn
zl@x@rG^$$EiRPb_(jmh%w0N!dSxAX0%tPj1bTqu+2i;rTcvDvp&UFiB1IHxy=ZqSP
z;D6J`X6dELNH8j`Ej|S#jV3(kDFpl+*rsDi5h*j9uCD^`$S;PMv8GIA#0SpnV)R>U
zOQV40<)a+HO{ku4CC=@qE*S~B16P-B|N48Hc|7pLs+mpIR=k=jcA4xg5qXYNQ<=LC
z2O$wYJM>?ehC>Y(T?MME2jY|Z3}iB_Zp#^WM(Db&(;9(~n4@t!$j(!$q8e=QNfA$?
zT2JNH0ArT~8sYg+)e;ywpT}+<rh)te&K_~dN$^yP=1r8LF>*Oa2xiUui_(|`C=I8U
zlA~L_&z}C*nNctP4T-MRrAvk9=uC#==zO%;2koh`4{B5!Obwqd;Jo)ccR#DPQff&j
zBBBH}#{+3O=9)fE-$EAkz+pzLd7ve9P_#M&7HQki%f?e(5KG6mWj1uIqti<7`jxBF
zd*+F&o!H&w!)cPBdG^j`#lnLLwG??>^FKDK$_DRQ#6Fjco(<(h$e|mRJiKMDK83C@
z<65G(cDV<QSpuHDE~70VhI)7*@2^Ix%)U*e=+a2fiE}rV%90~k7T>7LD&(F@tXSCo
zAWw?mW4x7AP;k|XG1vqKIc3j&rn+D#p+oxCFiTZwaAoPXoO#9Om{VWf1g`8Uw?b3d
zeN3$;JJ$jSC6c*W>MX&p`Q7@dwuevOW^=UisVVUO)ME6SxyJH?islE}8XmR>Ho9(C
z@<-Nz-TM+#9Xp+#u$nb8IMcB-c>SVH09r{s@Z5U(Zj?rRz{bv;lH+Hm=Jb}IrnEbk
zd?%1etuz+)_V&|_ihs09KtOC)JOkN0yVp^%%TvfV40sz4M9tp7W2u9lhWke4)|s?1
z#QlC7>J|L^!l%L?es+A622?6`XqOJ8@#nPJMQfySh29Dhar?!vv9(Shi!DY{QcRms
zfPXM@?nq!Z_ou{|vsnTCcgB}e9rS4uSao4HP~&&y%GEtGX(NgwTEMz&GtK0FCeK>k
z^kfrqsb}`Hh`~`N9$h1pSM-iYfL@*NOJV8k;sElIP4dSyV?WW)B1&y=Rco~6xpTLS
z13LXBNVttGgvUdEGxI80Rv)x$?L)ADJkHs^VC)0{8$WxF>D2Co2}&5GUGkQ)td>xF
zDL`ufo|b$N^cS&_5Vywnwh}5S9m#7|{qnHF0W3yy^k}I=zxMzg53X?!iuA6l(Gq#_
z2s+r=eSV_*KC9}9JJy)!gfkZ(86>*J*i7;Fu@E{hH=gZD*0|O7FW;htC<U|qSJ&@Z
z{jv~ef37r)k+(Fe*!JG*aNVmzqYMF_qWQRR-N|d8TQP|0r&(3u3(-SQ1#nY|^{>?~
zqw+k$>{nK6Z*I36-!MsdguHX}0c6EwsB(LCB0FPae6pRVQ^bHx!Hk;{?kAaUin#mA
z_XoRk-e*=EVFS@1^tsz@_WMcGD3)sP*|;bHb3{vWlN4{7RX#g`g1da$tZI6=W$$5H
z4cutTgL#KxFCbO8iAaRiKh_O^KsJIs=|jj27<2Z<VDgS%I4<}^&Ig{r%&Oz(b{3s#
z^v=Kc=%E6`$esF1gI<6YRADOL1Ql00MsEAh$SVABs>*XPHZ7oZ<-`ef*#STQTl_#=
z?9c2!Z7BL;oEaZwWFOFthEL<wc*`<3=zUp;>VcV({oF$C4tI@@4(}Q)a$fEjFoV+`
zwl_A9*b&66DRBGk<SJ=-s#j?1baLn8k<e5{?$%`K=iYp`;G?D`vFFQgEOWR+85m<F
zov&Tzp()fl`2Pr;1I!9=KfX)dYJTn%DWX{eR6zHVv;$Mm!tmP4&cv+tu1?Q`UB;)}
z^4SjDP_G}CpI`ht#YaILYPW`*z+V`=uoce`_~y%d!4?4%)X}A=n|i^rcbm<S^le=i
zGk7#Y;C<IASShoC9ODJe_@tfBObKj2Zdq6Htzliu_L@|8uM~mFTQ#|(Hk6vd${K{#
zv`l}2S<76L51uP>ZDJTS*Yk^|(u+JiVg2<lF=7AR4UfYQbzijH|1Y8b2DKX>-4AJj
zE`K2~*Y3SNZYEx(YI;uOwxXH}{^GZlnANpzpNGZQ82-Mhc5MqliE!n+jb5{q*Fv3G
z2j|G%BwI`6y-@SR#-J~=`wTPmw_k%a?haJ)J`$Dv6`WUl7*Y-RDShsrNEZ$qE|JB-
zKNaR0_|RN>OYk9hnSBZW&7LG~`OXVWoDO{xRR^+lv5*qPFd2ib!trjEOiLxygTyeo
zL|p4pazFV6-6*7P=d&tg_<G`Bdp!ELYE;z<Pff>>py0{?4-#MndK*VRb-7JF7y{LB
zWv`i!2iF6^l_Bbinjsb^H_@|uSDD_v<ZGa;qz=l`NqOqn^T><&AthFMCz-_&v%i>o
zkxv}4@k|!JW+8S%qw*Di|H}i+h9@JyY=FEUTrBEuED%iUCP3K2#NIyF3&_!!_jBaz
z48$1}`>8_cRopv2TrFTs|32Tg^`-Y0)&5J|JK2%e*4sRi2S6cw1){vhtG8$6U<3DM
zt3VvZ^SdJMVw&gTRoQ3l^gOsap?#0H80g%I>?SZ;y$IDS0jWt_5>GI|dOXSGy?E{a
zJc*@Yr#K1{Wp)~!SFaQw|Aw^%@Fmke`UTIgs1s915c6S!z@SrTde6ZZ%<sOkk7vpJ
zXJOEd&ydp6(#KyHFtgXL!_1TvuKu5Y;y(t$|Ie4+N4!Cz_7)bB|9ejMZz9DFGXTGs
zYxxxYfB#wkF`eE60Fd~I@ZSG?wg3JF-auxq0D8v%-*3Ve0=t;`uQzd1ol-<Zgj6*6
z^4ouY+omp1iAGcjNl*WoclpO#{p2QqR(!3beTn?fAM)>~5%?7tdAG3#S^EEqd;jAj
zx$y*GFN&`@`Lq8sVfv5PK#B&}B#Bs;Gx(2h`q!8AE>a!wxa?QAym5dCp8$WfZs}+g
Is9C)GUyTeH!T<mO

literal 0
HcmV?d00001

diff --git a/docs/codeql/images/codeql-for-visual-studio-code/basic-java-query-results-2.png b/docs/codeql/images/codeql-for-visual-studio-code/basic-java-query-results-2.png
new file mode 100644
index 0000000000000000000000000000000000000000..48057a6035a31e8184fa7a80461d16d582bef26d
GIT binary patch
literal 321770
zcmb@t1yG#Pnk@<hC%C&?aEIXTPH=aEHUxKfx5nLqyF+ky4ekVYx7Rsm?t3%0X70IF
z=TX)53;UP;_Wo?G)!|ACl8Eql@L*tIh|*GGDqvvnj9_5k*Rar_GcH+$s-P2%R-&Rx
z(xRdyN{;sCRyJl}U{c}9sW57ZztQ|IK1#SCD1yi+Z>glH{gS3X(R4=0NI?Xl8IzP6
zrVe20B9M`3svCY2>-k1or!H1Y0s*f%4W*?v?_3M^CFS8$=+-&!Md!_d;KSNQ&UjXu
z=Tuha6L{`)t1;jUJ+e?bjVjvC?qpO%jL}Xu1lly1m?09Zu6_uR5Ca1YB`xiP(S#o?
zJ@W!6|NQ*0`B6@D35ClCmP-<}`-I!U9;8UV%b`d=0txml{Eu_0MFjN|UhfaM1d?9w
z#7yo9@<al`0n6JYdCf4G-Y;NVBf3=-s9<$O`4;9^XsCjwia`uwUU{%adxR~8MMXEL
z5<3v&{Sr}^g}&;qu0CiV2W<KWiDU9fSGW4bkQcP$C?$>>?>R$P-INU9zM}Vm;qFm{
z+rzT5#j&-gCY&>wD8Kgp!o|8SIW6IqKE@a5>-ZcC#6580e>1aI#fBbt2$;?wzeyZ{
z%P<lS(fIROc2?B17L9`F6!$>Jd{;)b*X)@BT=GDWmzLf!q&^50!GfEda^81wP_#Hz
zO4RfTK}_Jh9?)s#sW|p%*DVrbV{5JgthTvW`~3<<c3&|SMWbcs<zKQ?A>T5tpLxU>
zNvVLC@EbwJ+w?iALh1L4+@8o}6=Fh`5$h6@Wr#oZB?S0zALRBg_+|1w2*^)yw3;mL
zlKzryZbf21VA6;w`8O&<M=`#eRyjHZIyx{aYnNx44urIy;$Z+E_0*Vo6zk7riG=lS
zk7QtY*I-KS%;j^d$Y31Ue$VFFY6%>b8T8bC!tZdUen@KmRMSurzdnylAaR3pQJ4s#
z!1fBUYeKk@z!ieSX(Fln-;p3=_?;PI(?G!pL2*OG1SaN!XF{d^`sRTC!_V##<u;J?
z5-rM)g&ABJ1u0*MT?%tH;FeT%7~WWzF%BC8ELdnpi699!oP@Rkegzg&C|HU12g=U?
zpWsQM)Z7y#>L0{-ej$0y)6_UniAG;5!0~_G7-EfwylpePv1GzB1=erty3y%Er1lMM
zc|4+dp`VAmY^Pq*z~@TQK+E8pg&61YDfyS;s6ogCXa|l;Vit@lbCgo4(H$fGB))^c
zLyZ=no0e<9U4c7`M3TIj9-FqF)|oE)L;lC(2f{Ow2N-|Adqke$JWDZ-<YyT4VCjDP
zp*^DrmQZGAARW+d9L4-|<N#|;h^A)+6DM9q)I^V6&w1aXF_STGZQ!yp0a8f>+W^ll
z1VC4piV?XP#`Uu+_);)_ulKLSOKms04lV&`re6DB*t@YiQ@ib#Q<vzF?g0Wl@hDPT
z=;~-qs9)gZgI0q`dm)wmEv0@?g`g&epM+EP<LzJ?6JHUAi_Mbq#05x;%zjmYJAypI
zv+}!*uaM#-^^7waQMp#XHo6wS_P*wY4>lG86!a^x((2HDOBzcWN<wyI=W*hRAuzD3
z)J@av)J<Kp{^I{r(M&Z}slIGrUUhzTUgH|l{gXSgd(|u66YCS(b?0>fJUf(Zuuw32
zFax|KW)&TuMn5ecjR);DrV}O|1`{39tP;CkI!v_Ws#JNQULN91?GMqfq1kdwxx^*S
zbCO9I$u>!3N$NDov{|ah7P&akpOMIuYoh@PGkuSR6?x<8STy$PRm$foL>g%YJH=#5
zBN}Djj?|wDN7e3B<dxU+R&t-E5G&2|u_~H$ZM#=68#SE%IAtDO9_&r=@ErPot+2}{
z%Fiy)&)X;#_?cI>T|m0HTmaD8O{Nl^lV{Vam%8aVsKJsS6PGRhR_H8z0;L*0VqVND
z3uG8awRN^Nur0e6K65#PBNWYY$U^+u_%-%NcpLpX<T}~9`8p~;Lno9+`R&g;qCe=j
zTF=tY?RPqNLx`Ud$q+el*>U)|)L8a#%<<Ln?{Sr*bfZ&nlkwL%2Jz~nRHGhnU4g%-
zny93y%&3~>jZ}G6^Ns}OCR>56NKWETV~6+Y@e|ADTILJppAJ6XfZZS-ARbg79!*51
zHJj+4bW~$CVU=MeV<9tOGQ81qX>w|HHL}+3XeDc{Hx_Gp>Qpz{HTamAd?&B@ZSORd
zV&4ACCDFG244c=JH(W1zy{0qUJM&HdMIS2*vwx+x?Z6M<;Hr7zu((}NkY!T5D?QYm
zIi9JK8S|At$DZ4Ox!dtQw?2k#=_%K#8)1%ea^E7=N5fX5%DVLgolB3aYn8Ow!p6jf
z^#$jpu|2rGzjM-it#8JpaY$S-sU+5-%c4CsU!z5%Y{|r)@Ivh3`voeoP7Xm%WEYNs
z?<QeaCjlZ-tm**nRsDm`+0u^UJ@OsXoiCap8VQ`GHW<^TPK}fBrpQ}xelVgxNgR3$
z+of`x(R5wzW<YI^aF1D!qA0zndT>L?tVn7I5h5Xi6Y?t7J@XokF5U)#aCBI7X#`H}
zZ4`afX>2-n<JV*J2JHssHWp}XbW|rA^B?g``FfEd#<nIm#-3RCjQX{Y&uER5WwMhD
zMU4B5{FtHPkx{&O4{7+r42Lm;PCE~Sv6p;q?e0uZcCTdbHNUi!Xxvh^GL?Xrd^0=%
ziyemqYZbsOU0!I7+9TC(t|y^uHyOjx?IioM__9W;$A*>$HZpPLh*C;DHg9o{l4Z3_
z>T`pG7MrCy)bQ>-CFrDD?gEy?7<Nfp74jqGS%3P}in<EqG4hlg?YtV1hJ4$ik<kgd
z95YXgkA%R<?S1y@S^Y+zg<s$Aj{~i9Ij*eJmyW9@^mrR4E!N}j`tN8@>}_k7m0Gsn
z28W~NTk%>?9ASJfpYpycGAbr4wU1cM`4i6w!u#56+H|^49aKNPzT!h+K@C9VG+#EY
zJ&s(LB;<72$}g{UP1vozpDmx|pYikRx)RW;(Tp<^thE|ic%#<SbpLs)Dr&F7Ud13@
zmS1C7UpGKgnr)G^pStJIkxi6oA6pyy{_yi+y~EXu*w<jmr}>Qoh8+om;PJNp^3W5;
z8)-2WKM7mIkgo1awz`B`(|hl8(Q({LUVx|pQY6v?F&xjVikZPTXSKIKP2XFzwfVj1
z?=^=2Q@ha|<{U8AxQ$TMzu=C-vAYM~R-9%(OmAox%hKnbOCA<yj;~Mho|Es$5v38|
zqGzJBEM6zsxp+7h-pt=ux9e9d#wKaAR$a2)1Rh?S5q@J!FhwwRwI#V()wo;T^o=Q}
zUNk{AHyB)XJD&Y~SQx83T|`*Qtj_8@cY7O0T#OFMaN#;xwOKv3`@Qkgy4kwA+t#<e
zwlA-s%*p5QiE*h))|Kx<w{xu3v)<Fl)k4v2s&iv`<K6SsbLygG!}o^dq^G~n*&EpP
zDtR3nL0m4#__6-@u;SDH?(`}9ldYmi4j;iDV%IDAZtRq3t0JvpWR4Yoxrg1|>uJq{
z!%(C+Q;2?qfkMaVi|Y1NXLYoG&imL|byIw4d>&T<*XD+ud&%?prDw*&M1gQY?9l8W
z)!>a_sSo#c{9Wyx>RyQj`k3IZK&ltZ`|Rz)hxKN2gZ*Z|E}ZL6Od--w3Q}NOXGUN&
zGhowS!AKa>&&x_6)8CPRWS2Q^Z5P>SykK8Ez+uP0Nw%=SJZ0iju&xxNp-93a{$zpK
z*fQX=y<MnP3(#H<#W5v(bsekm>)Pa4^!FY9LHwb&@sZh6sDXbu^<?1c3ENYg@!Jkm
z$J&@_N}J2egM9(*!-7GA<AFhe_P{|O0dV~PcV7aW2JF*6&O?BKg<63@{>K;v(Dv_N
z9O(1+ntyH~av}cL2zbWaPycHl{QB?EN>gbE&<4&yO3Mih42$yb2V7c(;t~u@2uxZ`
zSj`RmGz%(|K>U8lnoD904$m=^0B`G(1P*15qosWnJam;b^o6ts8Mz8P0GhgmfHdwB
z*<UEA<@~(6yU{%>J^MWEoap!O^@r=<KNMY$svF9E?(`S5tt-D-5Tx<CR^7<jV}gqd
zp;~G}nonh$pfg)co`%SW4OYR@Kt%YFDY-zdG-wr`0=@@<j&lEb^6%yfRnt6eWAW-?
z)0cQNu}uvU;~#fXhyBy+UH`>yqT)Xf{*O!DQUCm|FL_!mU64;z=a+NVUpf{-Rr=?Z
z|Hj5&1huq^^V_#?GP?8_l6Ter-%I}2SN^|0YDK+#j3};ZT2yoYP}?=OtGKQFZ@$j|
z{r&zi5+h7VFH2JQ_Wk?Gclj|xP1RyKIDy&C|Lrb9zfpl~7B0Vc=VAXbFaM2Qa^3zK
z`Ko3<?jJV)uOlqsVaKz0ht!%&IU6?w7h0AvWYli{)4cs}kNYok`al0qjT^$bc(S3i
zTz$tlI5m+<@!y>`OEOrurhI<o=t%iOZVvqa`N{uSh5z#Xg~Z8~OyrVNg(w--f6!X(
z{5OXAuV(reNB+hBV9!`jsyoJWG>Q|!|L)`~&A_U;M-8<7{QCdf`vrix<ahp^Up08O
zo4kK_$*ZwKEQeQBs_Yn3rp6b`|J$=G16x}5r&ujL9UBx{{)Mgo#*P1ZNNxaX=?y#M
z;^JcI-~c=$xqSM+I~mhIP%eRy3kwWMEz3V-)SUAFZR0UQd|UWdJo&Oz=a^_YUYud~
z-Q)f=ExDgM+pTvzM^Ny@UDap0+t+ulT!V?t{o3?ql&+dxO8w)$xjSt^!(e^hy<&+}
zG{o%-uQfge;S*V9RTXC-G-90_|I2B;`FyGJQ^y}qkd-w3epR)ff7foZv3h^#{z#h=
z{NUqcOrAYoH1PGFYj?e<_|g4(J!U?dM5{Hm%eQP(KT)x%DDXrPbF*ysCC?x>YZ)G}
zoG*@0KSbmSY~Jt~i^Aus5>Y7{35ygeTTxkiq#Ib5p{q1i*RkcuAUIIv;NTFKUvV5`
zuu#`?{&sUar?|?aQwzc5+~!oo_OttRu`&af+adSv`F_<t!@&2ALxZ_&Bbhv=G>GM4
z!)4WWf~ot}n8^E9c~dLTO8a|RkzBXWn~hs=RIE>cj6=a)OG_@6wgtR&^y2Q$!%%RN
zB<-6-vNP@Oe9iw9`~K5X!J~!9F0)iU>K_3A1PydKTQMWmEyK6bf@9eE#A(Cpa%y=n
zo;GLLKVaMRdyu|$FTn-<wRVVz&iFh6A4Bu)?ZUU&pUB}C_`&PV6q6k!UOL%y5bCmF
zAfnB=$L*i^uog|)GrQerF3w2CHcNFl;a)jW-P5(!dViaRHfQVAhiDuYGP=_SWRPJM
zGwwsKVF2GN8y8vWs#@|}&ze?cL{z?)c5vLe$^K5k!*@BUsE<+9^*V1o93M|(i%bdr
z`SVNt+x_b56JF3Yb&gk^<=%iwF)uNg^4tEbER(GiHmlF;W5O-mei-?ekC%(?ZmYTC
zXf5M#%5flz$v6zLmthuGI@PmE&slkOmkfu1L{TfwR3i~~j-QTY7Hy$!BN5Y4S{sd>
zudbAP(yYCjRw}CkqR#)p)BeM>xd1XH>+kXiikrsHCQ<_FZ_~NG#CR#7;$R&oVSR5l
zY*5m4won=|or_aD_Ukdt3$}!fIC)_N$Ssqw{bj6NEhCbyj8_`0paQ{u11`6E%+J?a
z)e}$ftSgiqfOtY4kR;2w;#J-+_Xoq|u?^|YbD_loW8r>HMc29V268!fpzn$w_J{YP
z!^xd&QBx*Hs3@wQa;g;De{t6_ca0ff$!~|V7KwSX9ZGE1-NQ4VsF<#*b=W7eN%yy4
z`9G%$Q*uAD$hMXAL1Ep@ug*VP57MnqHyfAqts9ZdEu?dj(EQKW+jVYg`>%Fm1yfjm
zb{JLHjearzZI;^ToAuRs)G-!LS+4DU^W!b2^<l%ae&gg5$S-LGAV5x-?S6pk+u^pK
ztPzngljHL|vIZC;OzCI=jmrRec_+>GcakF%x5F&gaaBcrvysTS<vw<sVgxPkWIS+N
z*&>M+0WYc5kEbc$3TTmWa60!|zLr$76p%SK)5G5{`;ZZRC!`yQxUyy!J=T6a?_#QJ
z_V@%!67E?|nyvrPt~e0;SCi}SNV<iJ&3|n?<|tlr#cl`Lf6LnXYwtTH0^V0*pT}((
zg?v!#w{(PMzjFx<R~U}8O#f|><6Xg7%GC9kKay->GBSO+-G}IGm#XJdo9;_um1m?-
zbd5UQq?XMZaO-?h*{nTLh;P@DXUl}r{tXWs!V>kMx;0{Pw^;dFJ2pencWrH~&8k83
z|01LA3+Mh^1b&HaT&9r|9||t~R<3?v@B5N*G*=QUTx6=!bG!Gwywd#rI<@<81!^~F
zrq)FAgsE(idbWL>bxgC{h${AGKu=H4_NM)DC-TrK{fg);eD9{(_pMyZG+vx_L;MX)
z12R!@)Az%>w7%gnF?Ik;XZ-eTbt$e%CY956W%(;a2*2mOT&8ZBh0zKbT!qu&WRq9R
zAm&<rctRUO_5g;o{p|C4r4CmH)v<z_eq@>g7ySx__Er9h1gR~P{0m?X%SAD52D_qV
zCnBVQGTG~?=<`gRh*pD5T4uF^VD0hG@{~>jJpy=JS36Cs3*YxA3#XT}W}V9Jm-F^&
z+Y+n3i0jlQgOaFJ10VMcs^=nh6OuPcHR4%N0OvJFkz5mic9mspEwqi4WoS$yjWQnf
zyy&#ZcH4oQ%M*o>os^j)K9rsM8@yTM=j^V787_JVbm#ix2br9MyUdG{)nyinZ|=Af
zs&$tf8;W$VsNFT9n!d$&V5F4bvY7){?b;_m>0#2Q<7&_x^j^qL>X&S3eUw?$7zBV%
zFeEpPMXCC2f8KOz>m<5oLCL58Mkc%)=glqe&fugrNy4g1J9c+l`{=GEZ;^Z_PlHb*
z*e8@lf#qYnolNf0WiNyJ*c+Im-|6w&`E%7i%Jr|WkT;2iy}+95QM!!MhU<x;7s?b(
zGMDK`Bck$unWKeNAiw{#mY3JFottiHSy0zW10@Ahn`hCQ3=ZoQ_tV;;aSa3SWPfCY
z4U25|V(<I+mx~PhuBX9MkoON#BJU6<4!dr+m!t{$`h@uU)co<B7KXv)WYJ}Xey38*
zwvoRDASM#=djLNnag#)<iSq%KJ5H+FMRt>F+I}1v$M78B^nDwqwak9LTQZoC=UT@&
za?P-9V#%<nlZI9Z3Qze7n$)Ruj3n*=4N^b(G}eIx?DYrfE9~wqmo0x7ZHVB#Kvz(@
zH3x-O^S?oJr$2mWEz{$;EM@DD;H8}#)%At%$Lj0V5OGSB`_%yU>X2oq7wF1U{)=!6
zP@?;r#jx#hHHP&p)kH}w^Nr+#<O4wYg{fg}`u%RrX)0Xx;~BL2#~SR`SBg)LN^+Xg
zSJpg2sBlL;PnT=Wvz!-Mc+VPC2PNQ~jhAbTs7Ch~@R>Z%TT3X<r3&YJF1lVO`5w0d
z4=U;>S#4LFI6&*Qgp@%VGO;C2T8|acNOg+DzBZnK3bbx2h1=1eT!QbpfBaDjOk2v8
z`W;2UGaEwaHFZH(-7zabWj~LIif!VsV%xm#^|@?y2l*kmp;KffwvfZE=rzC_+3sL6
z%bLV&zg+d{daM|WN+hs<=6AhC2C~2-3A-0pbdsQ3n{!ITOx54oV#!Lpu{|mX^9hFP
zPuYhg0U*e~BTTxZy8FFtOLO-ABnj1QJfxBCwg429%iQ<kCD(@Tea0A?*>!AcgF7Y3
zSAY3`s{AcTN-;ahBK`ch8@nn$^Y*a0*_G;Nn%VyTd}8bSWoln0rw0dyXYy?I>Y)!=
zaF1}8B9mKV&|$E9-F0*QyFP^=I+a}5E=ON<B-{%A(GUr_^s{}-HniyP9H&X16kP>h
zmkswrvmjDIHwE`;NqvVNsOx0{-`A@YAu$i!z(+!gG}e2TbI2Q|Fav3@H*mZ!fzH7{
z1fKR1^H!1)Z>!N1*Q{Aq(1N@VjEAkOJI(byjwn5uK5T1xpv{-`TpI<;=tM(4$7|ff
z^Z2{NiujJ=P^wt2j(&@!h^e7-KHp1Jyg$UVEH$-DRS&v#1{op!{q1FyXYFQ6Fo%<S
zllaKgOVhsd?$xDN_JF}~WQ~$0IO?vaX6L=w*Hj?@RIv;-@jnlVn7-XDHB%_1E{l8&
zYC2qWKA1!4Np%aiUR4S|mgM+&s4puc)8qsq3vibcLkE^*dwdzq_~4TlBx)wUBbNqM
ze3~b<QA29@l|y&YCAuf51Ohx){pf7k^wyuQqX%5+okS=qrgpaGjY0{{H(|P~&-$P~
zuH?ran0tFLx`M?Ld_tj?JpYK2T()nP5ab(HhF*{j!XJFL<KKM(&4cYy5C!3Ra_g;m
zhHc7K<@n?EL56)g*M?i4?vEMq#V1fMGk<^C{Aklh-%QLAMdqLP0i`2~u9*VK)m9S+
z8>hpV!u=q01!lc=m%E!VPY3f!MO-%5!%o<nZwF`R9$_83qs?Qap#(cq8u@FjKDYY+
zD&vA<`(qKA)wca?yRz0bb;6zvmaQTyp#LM%WCX6xNe=~<YB@~CfbYr3BKgYHep;8J
zN%Fo2k9yjRz|^oZwpP<moPMyZOL3a(!1`X8sBn$#w*Ii^KX+{7&=xsZg@5flN?T$|
z|Mf<nJzr=K{W|<4cHn)hx2+>IZm8D<<&%3X6_VCo==hNg-s^y1<RMD)+JNhZKdotu
z@9Qq{eSdcgvN6Nd{+Fi|x~X+fSXbDms99F9T2)Bad{`f;Y838$9*t2%Rxq*DT&dSb
z<Z=rXsTkgK?)Laz^XPUsMx%OExkq8)K2)Q8+i}cGNR4Jjsjs@O$`38U%aQJvH7>!>
zAx=~LOG@?ub$v*@Ku}nmuVy;;TtV!Y<9rPyb0#ss-DLt|KOrK;F$Chs=>9Vb^b>ak
zU}o?eoyFWsq#=+F-Qja}-%_GX1{8|-im*X%6MLT4YPrei+DHh`BNoRt)Rwh?`k63Q
z&*UFheVz7UE~)V~Xs?EWSPbSinSm_n((v&OZ(s3yl9c1ZB(yDMLH^@nN$9wWi{Chp
z**q?VY)T;|eM=q{Ty>cZIFDkRgk3<9$-!D|-i>X+v5%m&X>pVSCy4oaT&kAtsVDa*
zaz;tQBan=HgyS)L^ID;5M`DLWcTnMZ+K^z&W5ue(?9L?kk<w>0t_@FJ;}1URwnz+o
z#2%@^2i`6AgKM5GTw)SR8%kK6u$D<Q$E&2#1u1oe5IqX5#6SEsdn@^QYZ7%P$qf{v
zAhRgnC;SngD-3*|28eFqGO8&Mlb&F9-D{B8><z~Yk>Mg*lAj5@F5Xkx4h3XArnu=g
z!ETr0Yy$dY3XS0N1i6<;>`{!IqE}n5DK7TD9HCV}^15eVz)RCq5L2y#noM|GCOe?j
zGeDYdyRhuT?$zi)JN5+5Q#&@AkUYbapYhNmXtk+trFhjoT&H=;xFRJmSJNvD4T+p2
z>V(+)HvWQs!WCE;C<Odu+x2vywOKNL2TZKfpRYFPuDFW2pbP^VS$~aU@G5}mP7Zfv
ziyd#75_ow$a=p4DrfSJ!vX~^~I~76cmwbP8q3*1Lg-(KULO1~0wO(dl@C-USz*Y&y
z+aWnSYSPi{t!7n2Zl2ixAK`+(O^h+=mX%I_w#}Gk4BdRZ^<YT!@ZVn73sl6Y(-9Yz
z3n0iz)C->^Os|~|i?C<(5&OQ@E(nAfjE~m=5u_316)dyS{Qr=O39ugkeiF%t(|@UM
zT-0`%NgdE#Yt?pigN761<edqS%*-^kaLSrck`jr7)fB>>fI?%^2*;Kew<I-0PZ#$Y
z&Y)*3P)4$aD3lI*t?`R-aC}cx6sS#4)_j$y2it?2g^b^+8)K}u>t|ZxSkj&Qc-l`j
zczy`pLN=0>L&@v0?GHnRo&`g=Fce<-MVvn%`0=EOPmPC4VpNMdA@M0-k*k58%yMar
z(h#B+5trFesFaFzM^Xwsog38w3ZIs1N7!lZ@oLwW-=81|AJ&ua(`K$xG3>?k4@sVQ
zWX`PNLy#+5ZWdIAIu=#s4uG?j!yY-0B}Kz=CY#-WpJm%zM&WUc?ntJI^2w4vikE+4
z^?v?QUW+D=WTTs_m&hJ(E)`Z~9vscNGW`9vpBP_Z9+SOG*#Zuo3^w4N?pPolJ(AWi
zTuER{Due1xiqy7x`rZT`<uUfUAS+@T*$?|J>{)Cz-^OY+iQEl}Qp1O|QA9iL*?*An
zcw@dymEi~l0@+N8SeoAxWR}35mkf;t+1Grd7*;H@>9&(9YkjxvV5x}=G(*uQUTIO<
zs@qN!|K;hzZiz9hT}3?Ux#~HjBgvvD(&V{~KL~&7X{kqnU&VC9cdda!gXRRDcMBSo
zoZmQ^%5K8qqDWtJg`?kteGEYjOw$#sK8szeHxVTFQFAHVZE}P2ir_BdT}l^mZ;@pm
zqO8WO#jS6YJqj)fQ@%UuS+G@5wB7+m6u2dHz949YZO%es9*44$BQ<=<_fM%aIsI+d
zer97J-U_OXLKN}3Zx1ceQraN={RBe2W;Vmj<(@yovQ!nDj0jb|ORN=kV$G(Ih$tQQ
zu$>A8j9*FNhce?J1o8E-$=Q-eJ+X$;sISUs$I=k9YmcnK$}5eN(v}#9#dVR8FdO7`
zLUO24g<GVVrPNx9mh;?&KjAtV4q`&?u$dw7G?GHrFFWD{cZIdd8)%dczb3j1K0#|-
z%NxkzIznwO8TfWim#Vy2=$2GVlnNS|Q9Qv$7J{nz*=OREm>LW1*hZpuZ+WMxp?%$0
z!}V=YVr`O75LJYAst6_W7~U|6C(U7g$n`ZPFjpA1*U*fO>r?5cHgRU@>eJLP)PD#m
zfr@V>d?POueYV-Sk~A36p2arsGCD+$A}tKHXIs<)0V70$tx-<nmEt(aKm@iyhn7gM
z5W*Cc2kB}r-Z6q0`>%^=KvC9v=1q&}fD7^AB+DEmcpvwv4v5dc0_;7~?3wk+#{;KR
z<bGdg4H2MjPb)jT|G1rzd@26<q+rM(DgLi=wf`RMJZ^0Ja!Yt5J*>%nXt4RXa|EXl
zRxGJ+miPT{mv}4{So}rh$YWtPFZx2!07IwLVEu+cLv?wqX{|LX{c#v!MpID?BNpI*
zz8u{SQ)yOgwAhSGe{Yj4S`bRWk-)fQ9rO4gk6j<9)<{mdKTH5t<dS0@aiuilh&+3N
zKe~CiS%Dv2AzXuK0yP$hbP2KCfe(^{{17?Vb=7_)#g+ovWE!}xI}1Fa5HK%<HHmXF
z|AM&wY-Nm^C5VmA$+?3jqp2kM>2qNmGon=;jpBwb1X>2BVIay92!61=ctTb|01`C(
zQlo?vOYPs~y|vS2OG+ZeAF(`7iiSPTwD!TiCcFq9kKi2z6TS&Tp(QO)PTeCs^FwrE
zXNy}Z-1#mYz)nhm#hf=ORFTUM#lbJqhH6BPfR+rqEb1b%3iXt$5W!;)P>rGk7?bhR
z{7vSoip&hJ=6z8Uu6v;RY=T))rZblT!3c=h&YYO>7(L2#Q1aVSl!j}i6ZQ^10b`F5
z5|P}fUwlJY?#Bo=$oHfhWJqns^UfGk*?+W;B{zv|&O8_+sSiiqA_}8-19qiWs^?Or
zaZTD*DO+b0e$Sh##@`Q09Mn$<WQfa9+uCp%cO_qaCMAqYQyH|eyUzB3_74(UPnK6W
zuDf-QA{Vg<hIJXh)OhSyf2Kr25fUpw0&s&dg!dcJlM>zr#$n@jgAmMXHDR_zHb!AF
zrsU~rkwW9oV$*W)!n$%S_gX^l@R5RL22xV2SRJ5d>mbb{`zo;LyoMC141)`pa1bX1
z6uaXxvP%@8D`ZgKlokYi%i<`lagHDiIS)&O+mcy}tBl&uMvSB?6-~(vM0pEZQr+Xh
ze{>=k#x+QFMNQ544z@xYHrWA2&k0{CdUX-yqeQx3#;mJaCG=CzM*S&g)F!;L1mp(S
zj48;Lv2dExcmdOJ{wO;!Sp#8g(m3Nf;zXdHCyKQ=iaD0iyQ3x1y7u|1@XlZ-)@i|m
z0H)~Gu7T(<CsxgopYg#1(g{NY*bSA_dJ*{GwRyAdC-lYQ)FoKdgDmbuEaHlAa4oJj
zmWQ!79nlF&i+3BBDsTTK=YgQDrx(l#3O54~%G`8C;Qwd%YZB}U#5l)ZO(CD6=e}po
z6QT*OQ_-q@_d0UKYn-`OsG&DyR7)7l0S~A+FStnkkqzp--&ZiK={5A6le@EpmMg?Z
zdPEOi>X7<-phywfV$Cv#1nt!RC9NYBAoR@{K~+P~qLGp6N<-N$2Ly*W^*~{3I;O^9
ztwW9;uutVHbc&9`t`bNf<hSF}r9Z-+gy7rNT!}=W%#uyTyWbo<;cwXh5o&{6tE?!n
zVuEXa@j~vvB5cy{iH4ykn7pk9e~8}0!e=O=Wy=D^=7=NL!%(IIeAZt@HxMG|7e#TB
zxE&I)d{f!OnuuqBe+I|$`M58Kij`|2by0`?gwN#i(?TC?s=`_h*l1sJg&-57@f%cH
z%^2-|GXwhec$|kQjYM=2;a4J1I3>jp$hyty{XAzW3dMcMEpr`5Xzvtv-!4KhZMc#?
z{sNaLf*Pm|Ia2(A4#M7_;mszBq0zoI2l^zuQmrEkzB-hqHrQ6<oKe#Y+c@fN-RZqT
zoj{!%cwLEaW@Na0<hdr&b=#Pe*?g%(#l{#7yUz6%miUamqK9+U>y5Q&5EQ(ibjC=}
zFyKRV1~r=+*EicAUuZz>b%cz=r8}G7KM_K{@(bk|+4VCzm#$U0h<4Ip)gs1mXdKpl
zr?tw`ndExc+X!{et#ss0ti#$fV@BR}7mfxka%xQqyY7kwt#o8zDCc=h2_L!&%|m`s
z>Ps%g-54ntBw~ZnE`$k>m}-BP;4%!t``E%}%Q<{&YMty#%32>*9F!Od8`*7ORCpLl
zZ>vS1UKosB7858ls>CwS(5#RirLMc<S}`PJ%qsj@T6eE2M6Fa)$(e4`u-lG<#6w0s
z&>UZgl-8!GsQH8zH$d7>GQX`d?qsv&{$B7t%9mtcz-)Z%{jiQLjmM-em|ggOIHIz#
zq#b)BlC&>$0_b>>qFmYy(T^Sespd{3)E4L!8sxnSTNZzTTzjchaltGV0WyRstItSB
zpnCww6#ToP<FSFEcm0K|?;xu^nkle2?nymqO(%164-az{$Z97EX@$nIXmow-WqEpo
zGT~az{f3_4E=krFDN=Ch@C68I(<ZX0C<hG7cU^eHcoh6A%1THMQZu!p>Zjcr9`<@i
zo%GVsoKny|0VjgipTVFaDU7_JiBlS5g2={ve)s^Sj1l3UJ-U*~aMc}WY!~U&IP{>c
zo}D_Ie3(9R1=o1)N1}W)oEc<SdK=M9C$39VbiaqVJLbD|*?!Zw7I4X#Q|diF_e1@}
ztqU~pK3Kb;NSAS%N=3U4=?l_{uqH`%-rR5rv012A2|0;th0$nF4SdpW@gP$OIEcAK
zls;WJG~Yc!vk;}Kx-{~OmNu#YGxGF9k&0YKaVs<^odyd^OirQUPXV~BuvsX{%R%8}
zH!b+<t(@Pd@4@21GfDd4S=g-b`qlz#8ydGfY5NNQmYV2tlJoW}ga>^^$N;Y4HAmMs
z$^BFT>1VJ}x)wM}BQdMJxCiA7B^$m7sm|0*<)x7CuF6NWi%xQm1+58Pm^(&lFT>ad
zvp!h@TF?8sfI7Iyk*|<wj+(2V@t1T(oHg;y$WuKi3z<f8Zu4Hv>5=g5P3y6_P=-jL
zFl0%J@@$iQoIxmFS)jP5b{XaOObdcs0r5u9+2nrva`npBwq9?|G?ZeLsiVMNil5zZ
zP8kPUq_*J#;qC<Px!DElIH<<-PT0?EVNr}n1_!S5W~7W*^|k|*lDDKHI0MM$hq9DW
z$d)>gFb#a|g;Rxq{OB)ozY^WQnDDu&Fe=}iGJgc~iCVXyIFp*^MW=rf7Z%26FtJOD
zgJI7fC75syb(yExo=%)+IVQtN)iI5c?J)8dm>MC*>wofrlL6(2mODWl-^@)=C#XE@
zQE{iaBHOw|PO(v_5jO9o!OGZjkWaeC@*up%qfpz`$Bl!A(S>`2kT%w~xmv}Ggj?6N
z1Ft!jNxMnFcj|}jGsSl^Ucu9V595TzGI1twnC;HK89l!AsK2Kp*Yy%`<9H=2pqG%(
z=PLcy(}=LvVy$rAk;K7;`oNsXH&^~I2pt*-0P5vuah({&u@<5)3xo*0z!QH8)JDw=
zy0ccSOmSJ9_rMHK5E7flAxa&2+Pbqv7};5ONhr=fh7En;WcwZx-?Rqhgq5})d{Fb)
zPf^$5)QBE_|H*xb1M$61Ska?^6Ml_5!kr1Pl7=hQMpD2Oy?5QRSV6iqJ|@d$h1TAY
zWET?qgOmzWc8z`ir>spAiamxE*B5>uE;aHiDGFlQ#jEnivQlqDjqLf46RqXJu>RnC
zPPu+Eo2t<G{C?Y6YmC9*27WFBs};p6zG(|1mBjlkJLvuE-LA;d>NsZy9oQ}-G40;*
z1(+)VIlQ0i!9_)yQ@Z&JAc9ICMVJ!1*yycIXOJ<T9mplcPNwYbivz-v9L(z3s-!k!
zJR7q2(Px-br}Q!(7_CsF*@Nf3XKK)?H`widu}8^?Ybu{<??@jnRno-`Uq>57F`;y?
zz4I%yQFvQb4Oq(FvdjZ|MgFJ;Z%qLwb&+?-GG0(9mZPwv6{8Afq4hf8ZFK-A@vC+T
z4b6p`?WRl(wIWT76kRkb1V;gD)GKYIz2fl%i3g-Po}>&rF-;f?*(Bb6l8i<QIE#X9
z<^zH6X&=lQBGZm1lhlEBvUfU2*(g2^jK_o0#JI0b+nqYZ2uDM^i@sd)fO8O?DJFda
zc;jp4Su%Of0HK#Jh26o8<gZn6_W746iTwN1^Mm;IHcK`wquaPh=n*aHt&w+xSR985
z+=)@a=X|7~7F$m;!L5b0=@JnryXTP5lD7uptp#Q8F%t4S=oUHPpjj8MqZ6zd@-?mI
z9R5YEk$Xg@Wc#y&V^^XI5HEfXB77MOl1vK{<Sk(>tcIg-!9!lTPiy+T<OQzN-NF-t
z0UA2#9TqG=!CBP^c4@wza#`&}cIfrX3@ArV%fRAlJx2p2PZ{mk;4oDMf;GMZEx1b6
zIPBouo&z`$+|H{({QK;WfPKuS@MvC6(qHKhRre4Zm^!2WtAws=MkkMdF>EWEGRZx3
z`Qq}*ru5do<irRpfJ<OB9=V38@JzZ3j#~bu#{gI}5>ZUR<uxn)A<SnPGTvN<iN!co
z=nXJnj0&gAVZV1dJeZ=?HZuPUbN?{V824Ul(yV}Nhg>V|N@y|d2%i<pVCNUnE?l2>
z4Ypd8#xqw1T->wl(f-t>N!0b$ExV*q*Xi9O?-%F1<?$0Hmi>^#-<pPcBfATHuv8c{
z&A0r(*bz(MOZjQb(!?t04x&R7D5$G-Qcr^i%O#1u=ZzDWOpsszES9AJSX;I6r9L@p
z$1stwN+T@_`}tIn!o2IVVjc}#@lNYfpEY^c`Od{%InxFrN#ZI?q`MZDN=d1Sef+e*
zPhP&F=UAu{5tgqm$jNO^KwT${G!5t_7K&GywmN-C=+;44jT3%%-rXp+iV*P;n78Jw
zo@SGzCL2Jt#y=q@|H05-AfcQY@>eIEI}qkTCj;%W?yT{WHLm%x6^M*QDTi2Sgfd-c
zgR_PZp4?d7`LMAHeKoJDnD&=xh}%+mF=Gn2_`Vpt;c-$qzn!#VLi_wnrKFW7DE1rm
zdkuT9(E>;;(0fj)+O7EYh~g#M@vLzv9S)re<1@_WZAqqM1Yxu03Ddl>YEeTEv!Q0W
zzyZ+Yl#A>v;T~5K&zhICyJ9X9&7a%-8&{F2-=|s{ynOjh(4&eXr9>HF{eNOr%IlqZ
z*^@Rj<vPqe!9((q>4iGSvNL#ASr&J@CZ-7jOe2I?I~$H0Bdpfji4j)K2dP~>mv(3c
z#-hpqZ$CNiKJXd`2PU{S*CYuU06>@@T>CF~C#g$nRlvBrPmXqLs_%jyul3%6JVZQJ
zQ(%#Uc(6Q-T7SaGV`|c2vvN<NSt5_(_5-vL^;`$KEaC&B9ri%H6DNo^(9fq4BVW8d
znyaTmx4M!<kF^}`S2JLts+VTHJ1(z&K42v^sPkvape~$PKof0Mv5PZo{o5l*=YI*;
z;gWA1wk`a<ekq-fGfW`zN9Yr>X+-zO+eJ#@i1`?Z*t4G$c(K8!zmt=z58St$Vz&Uc
zXe;Zg8t!m@=>*85$#S13Ph^4W;_3U{;=ayJ5L@tCXSDm|4?{FOEdVc!fu3sBzhJYU
zUa5$#&hiFw32Mz2vGTtn4HDIIH1pYV5EPXMpp{u;q5ml_@g#pkFjr9L?lD4{YI<8_
z)f>4xM9CncG+Knnpx_2r-&=7gep8QVafUh*q`y~-z^G@)6IN=FW>pAZ<T=1*6*M6V
zy%$6>omP~=^||bU5ujky-~X;-xo<+S45~tHzq+geBz0ol)jtD9^g%1jN?9th5TSCM
zv8P|Yyu6V~j?IL2&|{~hqPq0}uf1i2jM{q(OUGtA138r)#5rX-W;~`_>tZrwL*f;m
zDIM!-77iS9ErW%#5hp%*GczF0#KO#>-0PgwF7DQN%;=r~Omt!$#*mB!GS2??$cfa7
zO$RZ6KFxEPvaY^0?u3o@8^{@Y0;~{CM%XSBr-RLpch^h6o;@eDncalPILHe!?y|gR
z#IemZ!@@pSNHI;1u9vA&m#?QgS32rU)2MK=<NU+HzTo-SPktS{Kl3uUJbMO-UNAE^
z)?HR7h&D{T)xsm8`hMqvTWWFAyq1w!*bT2h_O7UjqF`%{ErZx08$4j5IxC<S!#j7P
z<vkV8Ka#0ySt!XV_(EkcX-<K6qS?lEC!9L{Fa6-0a-8j>K%cHee7|B{t+pLjB4Zht
zkg}Ehw$9MJHY;$z%fkq$&0B>#c_ygats(Rtg`>_y8BhPn=-UO6T5XNLs84bTa4h5r
z>a5E!!Jpt}GUy?3u(#T4LaX`*=-u#6g`HQcir4X8(wfT8?X-XBuBkQJn9Qm0TGypL
zyl|NhO1c7h1iQBRBkdWgdsyd&$@NX2803fEEmm|JPHO|w9Huy-4ofE-b$~JW**1M?
zPXnUGcIQz6eKzpm)5zc4*Vc{)({Z7HaMq$=$<Ac&CSbXre@EDJ1?B=Ip~tp7m%4#3
zS|DV|8^mzkr|B7{$^+a{8^b2dNkqJWUp}LAuBL?n;LC9!hd`|8N-WiP@O4*|7H|WW
zMEZVtfC}upjYwEaap^v;#ttF7W!!)f2ow2XV7Au$ec{WlYbG)9m-rlbKnP6O=geCn
zl3&o`a^?Y&YI<<bw09Tb=+rATQmz>8Eby!BR)N!S(y4H@D7@<}>mCOQMFD`35JAE?
zYyHU0Fq?76H)V-nsg<U~13Ighkz{@BP!L<pVBKc{3Vf6M{D-{k_EH8?g1g_d0Q^<m
z@6S!u+oClDvluH`D3y=Qhe0+fWNx(%#a`n0nvB={2g~BRBISH^_Y0KAd&kX@nALGu
zWj83-qr%!rO_&__%o4+HDivN>Xh?4$q9;{OT?#mGsdL&SCLkV2eWx#VT~%zU^|<{D
za!(>C7_)hUU2N6(9o{`blo@u96X}=3bdeIs<Hof>(io$hVJ*vLW!uc#F@n@Km_f24
zqLaT}v~2MYuAOB9nuEuza>5Z(oa>YO*8NkiH8-b;A<IA`m2)3Hdc+<OdKwK<PI(Yi
z;104cdFaBOpejS&o~n#`U4x>PjywV1x@n?(MVa+EE^!DV{$M3j(KFHwxfGz!OLVZY
z#px1b=23szi{u(4m@<vWTED{sXdIV&;*820l<h8D{!_nQ1v|{8<}}fL@K@s%5ePQQ
zD~6ZQFuZXHVioK@0>rqbb37LWro{`4&THNNq+r7Q^m)CK%&|F0iT5;+`X2al796xd
z@QQ`-(4r~qg3sqxL)me6MNhK7(jJWAy6OF(wJ&qN@%4rJufFFABt|%?CLfA6Sf_=M
z$MtWbyRh*f{75@$xw0xYTM`hkisuuxw5cBtDPBE)0A`1Fng3i3y@^U^6)>Axg*cb_
zy=xnSs=n~ey|wClN58m+bvW;qv{qeQru8ojSNb+$5N35f*IoD2GKgpW*lk8WMG0Q3
zM1TP+shlx^2JQ2gg*4br4-$3*dK;6$k`~~g$Iz-4KW2Q2yA{(Z>>o*%&+&abF;MTz
zhzxE=IkS7;EkSu*mxtv{>ce_d)<aH-Luhk8kx1$?#FI8%_@<G(DyG5GC#4nM3h2e$
z@xuqwPbOL@AO??s*k0o+QCWRWpWauD>v2kLhx7pk<lf-8$i-rI$M>g0{DvX`JXH&=
zcov2utdS^=h#OS~cTbZEq1%UT<AS=6mNEP|rhpsDEMc*p^62ng;+}x*DqZ1Qzq~=*
zo|x~!ceZH!m=lHJrXcS>d7*99r~HwSC|F0<YcARQHN(hwPVG+N>Xy}@OyC+BrBJse
zrpmB8*!6Orv7g3@1wntdX!}VkCi3>zLVg>F1r0)r2SI8k-PQDk+3khm4JA+`cjBWe
z>dbL1sL#5tGZF-|RRM3c9oD7gDC?vlq0tDpJeE^tulXNLjY&TlM)F|8wjKZUQeqd_
z#x)5&!2$qlEdZ_GwxvyX)1t^vp<n*A7aZVg!Ns@<Z8|(|hw7j+0%xgSjTv8s^WpIY
zk@zl!aysao6%#a%YxNH%_B5U?M>BY|=Sh*Jb=K%^Bv`KYo`vaBP|VX5K^juWd;F>t
z<pUF=P|a!JMED<OS_?rUEZ@tt#og!Dki}h&z;AuueeA35TF@5B12zw}pfIldeA49^
zg9K!{_IXUHLU;SEdAj;2swgxX#K`6apXYL?FAm6JVAc<x&n9X6y5b)|(ihzg+3U%L
zuYXmU&zldF;c}n8{r%BFZW@`xQBmp&M<z&N_4~5qA0i{6JlNr{I5&VrIXoH7>OmPu
zUn6UoLfMyJAz!jC-PZ5y+3T(ldpDXaN7|o{%PVOukfK1s*Sl?h3a^M{I;5sNxiD|*
zWE)7l{H#mFC@Apz^L6`$)A<F#qv^cBR*<&IyO}08-zLZR-MzdLT_ebSPM+(@F28s7
zFha;lDEF;R63Dp9bSgR1&vjD|Gd{n>#4@+pxiOCWmVzugc0QIaj_kSK@CU;-e#*6i
zs|*$R)<<W)l98IGWx#Lu?sfk-zg;@?3OnzPCw2l7MC~uLjprPE#{TSR$!uh30v43{
zi8e%DnW{5$3pt^R6~e*i_DTUN^T({TItPpSMG!YlAd`7yP|_VpU723lys`2uQI1?3
zvy3yOi$sB%diqDq$lk#7j3Y1vl2h^b<LjZ|hZQXH84dl)u7Q+X9J6KxQ%J7=U%gm!
zpkPL`<@z@Aw+&$YfoY)OzE6wL4~(asNT$6-eT1GI`2`TRK0Amwh;l*lnYA_8;g@l@
zWrMIztc`#yL{QRz{Wx~L`zIrCryu~={>;6fmh@{x8q3U2+N<GYaWc+AS~gg0lxHQA
zXwL?CL;~(<YC2Y<Sk^3>ZOq+gkbXjQ2kI`T%@qX6ue9|`pn&!%%+lEf*ms4yDD3~%
za(Wad<QX1gR_Wr{dh^gcR<jfzpMqfurKMOvs_WRwxg=WWbWX~Z%|{^#&jLC_=(3RK
z%UIvnzR$R<{X#T(HY5xpmh@uqR-RU?idDBFd}j4Auh)4G&nMNZ@_Y>)`OtzkCSNq%
zdR#3RzV0Wf+7SBbI)e0DtIy!!LHCrAn2!i^tazWRHM{Yx|GGGc7Ox<*jtG`sabN~0
zZb}mmwurvu5u33kUl(PXea08?ay#u}vGurw;R)^1Y*>~t7;*a)Ut!Sg(?w<a4E{XB
zF0wH#H{LRS^jFVP0!Nih{H!@B59vsCgZwPXdHM2iVbBnL3@WTHDV&3!!2n6`S*&>-
zn#_A({wQy{@-3)6n71uSws4goi~#oqxC`6rCnic&fGoC~-vT#j>p<<sA-3AK9fDsW
zjX5ZPj6oqZE<%NwdOF~RfEWZgl$72vt|;N3PB9~*KS;3JH9V3j8}i^{#OftM%ZJLk
zF77t1t;gY3ngXI<dH>1`=SjUqC?suZ)janJ9MC%`hNX}_xG78q1T@ItYQgw_j4s5&
z<RiY7-7POe=~WJC#|9!6k}i=0Jpo((-32jUN12;THl?oLUO-~{<)?%o(f9m@uB07a
z`Y?;xO|PL*2}Jy=tzTSBFgKcP4nu*3MlkDail{2DjP0k!-Qhf8GebJv#)M*vECKH_
zPZ{o9n{^ed%o;lxi7bPZU8$@-|I|wRANYao!ux*thq4$00sJ5~ti9TtSZ&L91x8&x
z@AiCsl`70xpld3imz4dUDw4KhUC(*p+ra0#k>GFVF1=lpRDEX1{*B;CE5jGee!m~~
z+KKbBf61e?g6N`3Gm_VO{qQ^Sd-iV_{s$34<=J#;3ZEwL>yeEBqvhEN@hicL6>h)t
zZ)S@Rg_+WSauVhAzMRzUPMGg}YJYscEgpuQUr0Y9ek~dH|L$M}tM*MJ?aN&L6&m))
zJcw;MvmZCAW3+5S3LwCrZw(4|k#e-L2}yH1;5T;{(~KixGmp{}3V{S^$ncj1-KQ{n
zjezFZoD+Zh2x~j+UR*np&zFbr8E2M*v?)Sz#~YpP^3;)IHZ9lK7+4v<y-?z%X-)Z9
zoTx8aumS{+^Jb{}jd}5JftCAHm{g@kiI|+jGxJdIkAz!gZHKWVHf!?ez3-p~kltNx
zhv4gv(lvA4G(TlKxnF6P!hb~D!F;Qfx`1yCp}Fxpf9d6Z5eL65k|6DH;#ul_hD1@2
zY$bw|huwDvJ75ePh9GV~xWo9%66WzINYOBsLO2Ms<q@7?$SPXVUcWW4k?;nQ6@<a?
z12QR8tD?B3)TXyR89ICy6qsM(0`L$?bbx2ZCGX2@aag&-eBoqn%dy#Pz2>+i68RKa
zJd^f<9COhGk8tUw(&z<8BbqBE7f^MbN_nO_h+_1F0FP&9HMfr@@RgK!PEq7*p5PV}
z%`I`2MBUa)>1NaoqgA|5M<zr(QC)Z3CO5{f99ZW}WY@uBnfO|hA?<5?3hrZg(*x$j
zf+R`21l={Slr{!oq=IT}6=R&dWOpPO9WfGL$Rg5JEEC?6RPjXCP;E=WsA@nk>j5*e
zx4=prORI1vebe+kNtZ<Qog&{=P~Lf~%5m*Rbfo8j^kKGVm7bUhl0WpQ$f4CWBFe&{
z4=5UI?S5~4K@3Yo(VKo0_lBh-ACW|1^GR(ZMvi2AlsmZ+5o;i_=GWK6Kfb_o<cC1q
zFzyk47Dmd@^E_+pF_m~Xe>Lnd$qr+7k&I`Pxgx|$s{t}eeXvdOnIH@Ah&woRet?vz
zE{vxFvQATc!Hr}!#&56)(68alho(_X4;?otI(D_YbTGWq*iI&tj51|^zJaRL^e+$<
z<!s&N1m=?l5%v{@%QG<bO~dKTFpIMlwG`28Ri2B}ny!XfsTV5uUq>n9NN{qr0&&hz
z&l8EJO?CId1a2^qJ|}5Ex*Wbl+c!9Bp~tuNtq?l#>|mA40B**(IAJ(}#3E9(Ar8zU
zi>wJ>Zb=jgR(5sJ_OSq~pI(T^?RkLXdGR&;HKiT3_PuSeq2_v(^UCLeQ$0CtGW?PF
z_UX^^UwdHks>2c*9#yfq`;qPqfenn}MI{(hwDzM>-iF5l-jGhm6usJn6kRp7egeq*
zgu2Qo=oS^f81DQU&3nbPq$uHzL}``^HG}sHfZj09F`W=yvN+Z|P2|!Vtt+|xODJ!h
z{qirx8#n7%&Au4jy1%<I63A>18|D<)G;{&M{L=?*P8UxK7(JDA^VEyP13M`2`MoV*
zRXL?E4R<8+zF(}QRxdc_A5SL7mYFc3%Mx<DG_0D(Rduc7o?ee$9$|lMoa1d?t<@5z
z(^h9%M@gn5$V?=Cu%Q#L%-voNM@pSgzT06vtu~q8f9S)0MSQ)dG1BwUahd}ud~Lp4
z3=muYTy<^^8fj~tL%dp=$U%qYeVF>WcqR`jMs&Ix*{Ba(2o7z(Au#dFE*zT8#umFw
z&U1IkoENv*a%EJl{LZFa6C6t7>!QN;=PF)Glc)g1Ll~LF2xBqWv-<Dwpo=sxvHFQP
z#97=^T@q*fj0<xC^&0f(Q*yeve1QSSJD@l@<&(+s8`H=*sF<4*_K8~p*x%Oc=dkX)
zq-C69iJA03zcP1(Zs8EXv_1UowM8QhHni2~Q`#jdOq=F*4)PU9_{|}DqYWZnyejQ`
zqAkMfm0o*L$)FNtsj$fkiKAnHAD?-l2KU}T01)%4O}#t~%QpuSz6br@RJ#31NpO)?
zvHipcFZu#FI431JOFhy~8^an>V)jUy^ZZ#<b@iQ4Iy0)BjhoLZ3>4^8(Q<sc+v^|!
zu|2g<&$Y{X@cIoPc0`Huaim;_bMKQ1p)>pcL)cp|#T9Pdx<P`wyK8WV-~<g2EWw@7
zKnU*c?iMV#h2YS*ySr=S?(W=`ed^r%-8xlg|ADSr)oZ?M&N;?--k(r@iX>BEaG{1R
zGhBy}mQ8A#doXXn_8J^0hX=?FT82%4TYOYt@3%>Yj1gW?RZm>q$%d%KQyhO@IrE`%
z7DXuBFxoTat-U{D*pSAILs$YoLWrDb(Jx)UnQ#z_Y`#i7o9A<*=|+>wS-?he&FcHD
zFIVaAV-hf4s#UdWNZ$6S@>zz2yTMW%vU27zsJ}Q)Fv{GG$UU*>F5W*St#i#=X+HWN
zZ1PFkgsNRvSnKqOzVK~*PYhnJ<X<t19G<ZP|B?90^sC_krCV~dll0+J1mhCS>T}LT
zYE{?+6!NOkf-Jv^#s#&89sV=R_-aW*T**^3y6PeHRe@pFC-2EQIUkJQ9<l_iBA3hu
zwTV`8Q(eZ5Boc_z`-AuYR>!|{d6hoT*3o3JW}XV4rA8>@U9TdfMQeQxPczVz8S_aL
z)m9%QfB97Yc<dVCbX0hg>2X?hRe3X~!<I){87lYWh~6c;4p^8~D|S8@HCfo7xhZ)C
zUppNZ7cFsD$ByL^-qT?6>Gr|&DGl|~hR3qvrF7CV+$$~HG}tw7Gy!H<yY7wmUpQ-^
zwr<rtOT<XbI_1Ew?~f4N<fdbq4-kSG55hfYQ2~K$@}EG)U%JZO;|_bU{)9DcXs(0c
zeRQ#Q0)J0RdtDGojsOwqY+Joa-W41<30U#q(+yKAKNUQ6*a@no+f_@qZYuUMgcc2?
z4GA6-@z{`aTPwh9%bLXV1TqUtFhSNnV|)S-cfi&z`PZ!|y`4RB#jITCvQsmLkbn2d
zIEqs7btdLNB3Tp^6f?b1L9u)?tGE5Z*~40oF4dLK90z4tO&?2F3gTj%6LjAgyEvD~
zMs+>q6Mln<;;+{Co1I9C%D*&?5xe<e9{O<S9`Bun-kz_h+fVfF?9sJ?Ve}<r*9GI-
zxw}4I2I1?QKQd38(ixp+cmUhZ6q9IyzO+z)4N~&eem_Y#trGR-YD{ok!@XlkI#vvZ
zF~HW}jw=h)N)$mVzH$B@q7dm(I%#}~L&YF*-xDAw-)A@_xzrWNzD)t&Q^vp4UuozY
z%y?@k8Jf^I4(MB_I_!oloU-@-JYXsWDr5|V*~k8Ycyn$1{85HhVJ~&SP&{A3CIl}E
zR^{T8`w%!z#DBAtape2{CiTVFP^$(6{SY7wgT|!F=fCsiW2#J*88#i*id*K&>KN&Y
z?Q*c~Yht!7l+}U+Tn{Nh^=U7WWE&4W4r;b<*Nu{aIH~CwjY94atH#SOTR2xFQOT74
zrg%7?i}6RKw1I-r0f(g_dA8O>KT0>y%M$KV0+=zeVZw&W$csX~Q}O{BB9W+)qO389
zEdfC;M>vV}#zsA`7S3DI6m4JkN3MQUJQVO5AT;}J#G)-Wmjp9?FNKM8WqdfPWtL(3
z#CO#B6m!R*WrVV67f|!RSpbN2Oe?WyhpbMMir5x(3Xf{Lj|ffz2Cda-5%*cwURX4i
zhW>(X2^V4Z1)i9E89~>io|a*~yos{9-VZzRC>}c$Pzx$|y2qMV#^iA#qRENPsH!o4
zVyu0X+7UAwZ};qXC`&WeMKo;)`|od^+aX%$GKk6xB39-6j4qW?4h$q+U@-37V)wx6
zwaalHy8+Uv#`fos7I__XqywddYmfLZ<tldm7L5G{Lw;^Xwvpe_gFYrIQT*W)bvR<R
z0R1dbLft~xMplEEQBUM<VHM8iGA-j{JkbezSMr5^Pr&QlYk{<L_=vdV+Nd|J9(tHz
z;0xL~6j;<RWx}aVx35mjJ1(sAPum4-MHQFR=VFgNhvkhV=Dcw`yq&=y@*XWYC#@<J
zy_%&RqTQ(T_jVq~k?{>vtIsKrv&9_a`kPd2NiRGVX97Kj#g>AMQpES+axYJpe2XC_
zvve&383%07el5Olg<E|^sc1)}NlD3~2K>DkKJ}}Id!^W?kin6s8!lpr652U#;oB08
z9-f1XfRW$i2IEMLH&aKcrylb<=;_x3BA~I9jXA|{C3T>xg!Y=d>9w{g1)sA*=5{NM
z#a_piZItQUtxaTzTN>wH)Z5Z@np<X8bP$`v>bKN#!L{#rT2=a5V<T*29BTR>g_A?*
zuFC(G4=wntAy%V+NXeIys63hNw4u8Y5;Aq6EdsES9TPpl6K>Lo5hdn<5}M{1YR(Gm
zlkWy#L(qSeKLkc+p?iLOY)Bu%q9dpGOypqb{)(R75x#7!pL!h+!pjy=>4(=+o)`#q
z69^nso6vQb@WOfy@J{Vuk2B4cdy%*QjD7<1d=VGi*k+G#A=fBgy3MBH#Uzt9;fN5d
z;L500+{}!mGX6(LB2Ye!Yzf&XmNH?+?l1*|T#GrIv>)>j2Ah#?TIGi83xDGZ&eZKD
zI7`<K9>Q^8Ql&D)+CYHqn6=AylJGGi@;1~!RdgzFR@r+BEXciy^bqpCs1iLtcu1*g
zD~YpkwK7f%@de9@&|l;Q+Y7_Qf$`9#s!9Qij65T9<JxYAs5>E_ZG^>v^Z<Q-{sx8%
zr66ehLzNYaf?hYIN(@0O5tZ+e49|3HBy5OdE}4iFZ*G4}^XqOirS+Ton0Ek&_+}ou
z^Jr0jXOY15)_OJ&Rk8bht6XeN^h4O+JL@%5B=#)DUbd>e8%dGN3m&rWd3RYRFFH(w
z?9h$eGO7f7>Ho8937+wdx?E(9kCQk!Qea2>X&_m5?ufwb`>~P-Kcj)r<9`w(e!*hC
z0V3w91?XtlbCr}V68BrNbm?bQ7;l=$ek7H^PJD1Hk|_lFLBx#NX)p?dYH~jaw(Mn{
zOf@(bg$r8uJfIelo1jrWEO)A#4>e?(R*2cThmt0+cleRcgv<g3yDeEWz;H!urA7S9
z(R@Xg*J*szalrdGjyj2RasQrP{su9BC_xQ=$?+VWK8`tQUH=aUv}CfX=5>;l(Lm5t
zv_X8qgZE6T1_w6Xb55Hd0e*w&Ge2`ZAfGJHV~n!4UaLYZzG^+9QCSZV=d;df<ORBW
z0?L&cMgs#|F*d_W>?JZXOfGg$YlDQF#GlX~CV`&>VVIIfJ_{GL#p&<ru|iEmr3<sk
z27@^?l;_@EuqWFRT;)cv4%tJCh!4w&%XBvNL1|OgNZcaCNB4@}V8s8Ze9bR|V6no|
zqLE>WI4PkO<o9OT&g(iT%1e)Zb0#_cj{fVOf~6VHlE%v3i39lv<{+j@+21xh17=4Y
zie8{Ysnu?9dulGgdz&w0i^KA0NF1JY`)>5Oh#emtd%)~id}1#I(Tmdp@wC5EBgA>0
zVWSeC#+l|zI~MMjr9JV@Tw*jQxzLD6I}&q=6-T@&mj+Wrqv;*EpN%`eoFj+7-TA+O
zKGli$VV1f{A)dgpWFY*SEN{6SVkjaU?_NSgTXC1y!R!?#%*228JysHqpk~1I@9q#6
z#_WS5#9raZxclc(nH?Gs4kzO;#iWb%2lh2K27YR~qumyVP;od@S#&3NH0`K7ue<5V
zRneae2GfF<3+4EbnirII^b*;XHe(BZ7)DAkyk6ZNkywAU(ynMgG$w&<<gZ>}grxud
zWmP&2Dc4_{nH{OU)2nM=1M9h&l@QvE{h2S7?wdFlvR@^4u{nt&kO8#@gBN-yp$Q#*
zcY8%o*M{P$cSvFT_4_@)`;6TVL`5*SC$$VUeQ~?d<#Ld$hG9#YvTnB)&Jkr2JL`;8
zI^{i?|G3cB<$1eecSAEYCtq&WbSBs%lJ&g30lFQ?(OT2FTkCLy92q@%PUStN3*<qn
z@601~kMnJgU%(slX$RdE!{^J+v#W~9RuyBec+VGm$VF+udh=BDv~okPa4VR88Pcw|
zH##oFY1aBRl~r)XaH$-e_abn#Y{o3kgCFMP*Dvkk7XV&bxKZrK%OI{VHm|3dVBSJY
zJ8f>bQ=k$UOp?@uwZ(^yzc;NWayn#^<Ck0IB)CYH=NG2wD$er+6fu-o=F6+(ulMgz
zsrBhl>BBrWnF<RlXzXMfO{qT~fE>SScJ4`xp@@v%5ktfH$OS!i<ToX%$}UGtd&lRK
zPFWT6xteE1Wq>upPFUpxl9#M#e{oo)Mtyrt`^(*j&b9mTxwz+3HrBFwOJZ_AE;6yj
zlAA!^qbhZWQ8W$wM;c*3Mbeb~u&t8^97c%|b6a7m!X^f_Wc|T^x6z1y2veQrfQ_M*
zkIyP4rllcJPyy|#$ac6>S;-%~ViE4gdPx5K3*<9ED<VRLE}B!~8^c=WX=3=rj=>3P
zyHL&~t5H;ZTEUE`+@iuuq#%u@D}~seM=QF8I>sK`BO<}-PEm!E0!GA4U48qu07>x`
zgg`|E0(0c!<@$=*#J=D}3=(^|#B<v8qu6*@{N3Vz`EXj%Y+Cd64nOrH?C)G?1L(xO
z%uH}YgvL;iHwGKqFcNby$t?^C0wbbu<#&FSeZ({wi}+(c7z4Uk$WL0DEQWgIQT7<w
zf#7{trhPnPavEJqmRxRs{>3Xw5%%2UKiKB(0pIcH63HE~&XYWISsbHy<|@Z1%MD3C
z$l{<NN0?!d<wxb%A+dOopsaabjh5A-3?(|lUC1C<SZn6v8|i=6xd+a+GW9Qm=nuV@
zgiG8~=F0$OpynC;N+GQh(_v8h*|0XUVO5wrR9iwD_<D-mcibY+kZ$6X7&kyc*rCz#
zrP`(^wQm8_kj^F7ciDj|L#PAIO4_*IKR~Y+xX%dW)4oKA(n!c=STFjCZhWH4eYFq8
z;>25mP;h_Jbq81y%x(UZ4<Ui!fkvhV%=a;M@&W-onwTQ|O`AU)9eFe)BC#&<oDv?9
z1qh}nobaGO8cA#-SwecCEaL7d4aAKDfwS8e!6?Ez<}MQZ8Zj2s8Cv(gYVpLQLrOMc
zhW3&45al87)#O%JHi9=E?mnhzpaG`px1(P@hVA5ex@7pGi=m$6;Tj-{oAJPYnt<l(
zBx#XzSm3i1Sf+SsHP3@(8_`ljm&JcUeTj_4OIRnIXSvCA58J^#B%t92yAC}ERiPpW
z*abQ#NUof9>q4qd+c0lL3=AkNWYzw)fYa9=`L&e&koA_xrvCe`mdLg=cMK_oK-Ujv
ze=1_*H^wIFRm}eATzAjdR3$Q)=FM*-05Jy7v8R)W1*nm%^Hz&mP2ptt>A@@En!$3h
zA3c%W+9X9j_vA{`>*<-d-KIjSTdX(VrIlbz?pnz?d{#Ipx>xLv3g&L)B4Q6Ijz>vf
zqKi+#4Hok*Z1S={C*3ScR&6)CGois4C$Yc4`<T>4Xw3`r`k|nKTg!RuRY6q#{*lK^
zJ2gI=!u0I{j{#2!?VhhU*XY(94$`PxvsNFMTEIFcqFG=9LfJS2@Ig(Ok~WPZmq^oU
zJXOiE<0UtpwOOrx?hckQ_5G~E8;cB5i%r}~#g$wHSNk<LOPg!(o`|-bL39VvPRWDQ
z$kAUSc)Pg4Jd|vO?R#a!FABt_j9+bY2}3alBu>NXkiJyY{V(=TvoaGh=Ot!g<^LUj
zWQQSU5{I!NiA?H&H2{cM7K)l{0Cd86n)i!quWf*Z(d2$F9p`s?N=os>&JpHabxPaH
z91^J|3YHcJxrmf|RO;YfMZO;75n5^zZ+{G0yrd3fPISBMjj9FzUIwkV0OjrYQ|U+o
zqe0UY9H|9Em%&fg+WaV8PZX5!cPZ|s0V0vgvTX(Bo|l94*0DKvfwcMQ+3M_}w&lP6
zPP|hUf~6iJ@e2)c<}Mz`pl2i>Fx`gn$6FfIz5GpVs!UDcqy$!tXB$wrQ&_^ncS;JV
zWnlOH$pqa9&z!%)en$LFlyYYRPcog<+fLq_BGS+fR-s^pGD2KgDig@#pw#TAC<?z^
zPmlUS!5n)$3j^vn;F0V3$#%EBNPB6k^n!UwqD{(SLW*N6gPc=h=<EK8P+59iqKQ^C
zXwC*P!Li}90a7P<HTE1K#y~DU^91*p4fi*RaKCN;Y}2@Ej35q)zztF>)-Wu>fw+`k
zg_+__m^HnDK?rdeks&CA##u&`lHf)^#vQ6(X8Y+BvAJP5{$!G7q2)8h+2<(jxi`Pv
z;W+R%*}C+3&Is9J<EUkpgd#w)hZ!^CYoG3MJ4b}vu>Cra!{V>G^Fy7r4zLMr;uAI4
zPkQ$S_m6@olpZO*M@*<Q>I_6+%ur}HrbIN`*LCW?2wT1H;-Wi}r;R-z#Fo0i@?v=*
z!NWW733}EGzbBNJv}c4eUcvJ_-oGum6mnJk&uI3qE}L`u3|#c3-*A2>a~OQr$NL6P
zVHTk*WBNq~Sdl&bi$MIM|87lbeUpafcZk;N8FS_RG}S)t!gW?Z?zNfAvqwU~s{Kah
zX6s+%Rk=IPal7}7_*S#s1dJ>{M=?$G2_@FS^%a+STN(Em_v_Z6wKK@v+v}E&JYElp
zL%Jy+Us<v~1bnbMPEFUg_2gtjC(;m7aTB|z7NYn4@A4gZTSzvE#iJBsInsWw>~Ie^
zkn5ldMhJWU%)#<~%^1(LcMT|iM@yg_167I+U4RA#o;`<I(8ej%3EIfvka+S}5G7wO
zEp{r$rasp!7su*K{?OA*`R%UjY!u~|CjsZiPD~8>*N&1zG$;`viU=wTFvTxcQ=;ns
zd?gz(4Lim9kQH42{+D{g6mv*J=z*bh8|0FGhw(PVSniY$ggO`LSw0gf3;D_!$tq*q
z=JMtVx}5%;j@}i3g$Cg;Ds+vxI3aqanEXPuzJT{OKl>2Wpgq_@%MkmCy*I290+mCn
zFactO%~<z1m!$9jJW2M16?$sxDRyJ@=9!Wd5{-1(z2uVVN}?}cz43NF6!s&cMEc*P
zHf^OD<D$lQ4p5o~VG`*<r<&IxKcc?Uy~Wy5+BW7(0lf;M8~UYI;%}!ptu{fs0Ciz*
z#jpk^SQek2K?6;<91hi<-l$vHN%$O*pg2qR^zcHJB?=<wZrIIOd2JlNeEFVUh@wZ@
zBg=P@E@#Aopmnw#aRPjO*BqMVb_q}r1`OKN?Q`<`m26z~!*cn*lz_7*mWmSf^Qw4W
z1_Ed#2+T14XF66|YNbsf(@sh!AIL&9%7;^D0r7}C^WV63wWIN0D7_^z9f5oZ*=UR%
zPjYzH=Qg~OGhYHW34_mB$4L1~2O2AvcB_dssJlmJj2?$##jwx~v3Rs-2!F8XX$&pK
zFWWRV1_d|XPp|iFVBu4y^~Zs4vSVMr+J0U-Yuu6*=r^cmYwn*eB>kPNf}R4A4kL-&
z5DtL{R<yuDY1Xe&{vn8ZqKo=U>q0h|XS%N!ZGs-hT|^s<JP#|nGkfJVl}mh{#rE4+
zQSPdA7R&Onf<5Y|T<lr`Ai9}RT1>iZSTuQC8?9Q@es7(#+pBHuRj5h%;S3plyySQ@
z8@BejICEGPE2q&z*e%clvLETMYf*5hi91-}5Am$uclXdiz{8*lW!>)Lg8D-0J(k#g
zV*9n`$Ch<1mdcyby+pRUm(yr1;zl%B?xihLgOuM3uj43J=p(20(L@be<P`d)UWW}C
z(N%v)MX=SD9r3ZdR4TZj>R@E}Qu6_-_TpDgp%5W-B(af+B#}erpt1V=|G`L_Siv;R
zOC0^d>)-a)=80T1O6oG&{-3hwl@vo@zdiuS76_<BR1qbsY%?mD<VY7m+){DxC>YQ2
zX&FL%|1cmSPY~_JkM)r6+Fw~o*O<LiLGC0elqIN&a>3A`7(g^qUBP!hS#7Q-?*YJK
zJCJ6++?<FiLM*7B4;l+LkNbHsD>8(47%OvnE_zSQ=B(Nyt>L>JC^3HI3|nF~#8e(?
zQ1rL-7FrIYLFofV*6~6KP2KJmvAVPyV!vSF+3giQhdjzvc185!$##dP5j=b~C&Wt_
zwzXd;ghD0b6y<CP5HUop1vP;km>bTA6olYd|2c-kuoB^+C=Ko-OoYG|hJVJ4JpIKz
z6{4f>Y-lp&peczXJ}W{fChjsRIo)TAc4PbB9~BymR2c|AGArCV7F&8fUJr8Ov!t<J
z&@bUNx`cfecE7F!^}C&hoB!M)%vVX4{BSzKj)ybS91&=dnAe`bE7gn@*A@tAlpP8T
zvk#_;2cLbxa;CJ7n01-(5hn?#l=YArrs}cpGf|+Fi5p)9Czqi1otzcJoOZ(Ul?AOK
zABYe{%Nyrau=K7~$+r|hvV{Y~JO-#_nb91^YXB+8%12waeO`IX=C>Q+mCo+_siJ0A
z2iJGgs{@lV<W|m$ruZJVP!hJ~4-v${YyC3W)@zaO{h3-u2<|Cn(bOy-S$73XG6YxK
zU2M8!y<7Uh7tf+?TxEC$s{pRJt<-JICho9KPcgmS`h)1Fin3%)rt626s*S6|v|<yl
zyKkAPd;C*Bs)9^5epgLG1RT7*=YQBmVuNz5wOQJN$$M5f&K~bNi50YgH$}(5XsNs*
zz=`u^^=K6AQjX}f=C<BjXj%~j(b0+)a#&3uTbu_5)lv6ZO|lu*6g72jyErxO0t~o8
zVw;vK9C5xdb^+o1d+xB@5q^$2Zu|U3WmtP^jJox-<&d`jczgZ_C+?rqhabT(9FZzC
zoN7W7Q|t*YpKgS<DLp!hM>Ne^ih>auLm_YhUrL)sVF}(#<a>uIGVEV|i=kvR?!K@&
z{uSvsp-RKe_@b^ZCm!^nJ|XQ`dm}h4=v>XJz-s$2dl^!vuWQ+qbnn9=T*IjhFTRYl
zNhI3U5;THxC&9@|f!m>iU~efooJE=;ukt->uQ8`T>Cc}K{IfAlJL!ge7N9P5E#h5f
zEEP8Wi(_$i^nP2i#v>Eu1g_Iaen(7b@&eL}DI#Q0U$`NI&3^!l8uLo_>v7F^?(ZEh
zpxI?d?5-rZ(ODwi-8rbxl?!OsdFxHABnB0q{j&;}wBr7(TQEj8xY_|Eb?dxBC5Nz(
zSR*NR%HK*W-lI;$>LRBe8iJ`$LdR>f9dv1DT`S^4il22AmRv%5b;8Yhj|C^Hk;GG~
zl0`$aCE!T;tbg;oMIoLuFlrD-E<*qY(4LAM%e~tSCH$nUwk@mxwC@Vt38G?)ij&?W
zgZ~f@D_q`Z?f;Ahw;rehuYDQG9A-KI2+;pr8=C)$RzR|ozX_16mqZ`66r=$b*Gn68
zY3aLbaVl7Lhm{|G7ai)t8k`P3gLK0o@Au<TEQ?~$9X2f<pBS$N(1GRY5Ed>aL#}wG
z^VrvE_lqDRoaM5riVe18u=dZ|iFuxBA9OD?BhKQ6p5BLcAM69+u+)<QG2=E{9>uYz
zm!p)n>I_7SI6fz`2lmg}cZ&ny<6nEke}jq$TQITlIk5G%jFcbQju;Ye8vk=1{vSu@
z|Aftn1yI}m<Ldmg6c=s*oJIhq8IT-GmraRbnAbQ3tE!c<TP`sjwkQz_EpDZ0?i27X
zUcS<GYC=M*ap%1XivoqEgzbiK8s;<tQR_d;H$;~^zf8|%br$_E4$<y&NBTM{(KH-7
z+3%c<*pFz9)@v<pb2Ds9_z^5jW#IV6&2T18g#I36%uk!B)F(}aa$E7F$ci30H^kL7
z7@7Z=Vv*bVy^!9{S=m%fS41Ba(vLGF07<3pnH@iB(E5^LdnOws$rq*a0yFp?eN6`Q
z_;X4@F5If-<EaEEYL427xJ}(6h|mk6FqpCu9q?OW=~^rY$>vxoZ;mBJ)8uO)R&eMN
zQZtgnLfhfkP0sqK^ng95+?8ducpcj{hAzjx@c|a6pD<7^fd9WPEoCPgEiI34$(*_d
zuoR^sw|sin$gQ5td7{X8oW}UJXIAvB;@cKBz6T2p>YT#UEIRe8qAdBMF{M?h^%%Dr
zmxHmnElcw)M}9NtkS*s7sHpMMdbV$~uU3?Nq<lh)BTpyDTxK(srG~rD=i$W%WM$$j
zdBVIurl<%DMSp0mN`ysd6;z=Amy{2{MW#bA1WoePE+|x&Eq;Zq#_*N&<&_#>Pr-}A
zS{tUbP9#qLito7fLj<J_`4vQM27nLexIyLI?_Yvm+RnR>QR$KZwt|=ZV>7^e8v(2s
zW^#g?WNHl|q|PbNBOXD_0gW;UdMSEQQ|7eWxw=rfZfpw6B^Z^u?bccw@K$04@&EV=
zd|XVs0QL<V#Oq-3mcZRe7d$D3OKUFh;g_;Y2i$0)QJ_#*NE4D9^25zMcRB=1wS|es
zjbk{Hw*w%=^}s4N7)P;`uF%3M{FX)x<Qa^y#JlN$LBC#Rp-CNPYZuCElNfLXw9#t+
z-rq-b=|7FL^1L|00~2<teBp!U&i;k1s?f<rR@(RISYBB<*pm@YBL~9o10Ey$zAhnH
zh1xssv8Fh=m|pKs&OP&w-vWg!>rh*sr3&!@KpVfVKMAEEL{s_YP4X1eoHQo{8!(<8
zOrN$~eR=9nsRFW1#E+(voFRqn;sJ1}5{NrN;Le7Z){@a$)pHi<kGfc!NKB;|g!v`7
zJhGM1*Wh)j_<yfe;mIA5{j<}a=?HNi*oez)n0CgbcsLOko}YKsQLS5Zum!4Y@RTxI
z*XW?x92OKq@?)vOA<$_8)HpgCiFqd}sDEB4m28TVh86da;LTlIL&xTt;AXLS!UlTn
zA?GA#y`TN7(Hdrs5N@s`xf`YP=bQWGbbku4uhd>|+F*@+kkn>vsvfO)cCJuaBG=<9
zZ2H!x^q|rzd;ME=rD48tOZr}vGF{r}STMXH_2aSe`1iZ|!sTrEvIy(u6{A;zmc~?3
zH^<<ZVjJDGi)O~xO33J%Pz68tL}6&`uH1j6RnUdM+b;eWZ^*V%p~Z#*M`p*J_FyZ4
zw?jwjA4?diDJ1C;FjXWw0S=y|1VvhF?g(V+6c1n@%Dx$~^+ghzkk@FnY{$z73viT_
zR)-6mfTxcQ7C_v)l%n_RFb)7>E*;`i!M6d|cmyPJ&`{Y<KPB7JZI@>oghr)MqG8LX
zQVlcLL;@zRJlPnN{^;7%rFxqzBRIis2TX4<g~04kG0i|QZBGM`N#IpS;R21Ek2*AK
z7y4(;0}AJQp1(J;^o+m|r2;!VqvY~g`<uv!oJv;X%{GwH7^PxS&1{s7pb5T~j%)65
zWIokR=#$9yQ}!>Oq!?6JK-(Hm0<fCnZ>bTQ?tp80=~jc8DkM=a?GaT#i$+#gAwtwE
z^x7u2M>i@M3tt0FIfW0z<m^tjB0V0fxi8lPZqlC;MPU_Wxe;I&vTrq$4YiM*lju(F
z?c|gj592K*_^fnCJIS3c0dPj`)xtk;!FcsD{5`tbO1@Qq-IE7LZ#tC)?uqI4K%DpE
zzRmZRYjSr!^MOPWlBjy~Hbo}8L-D0*=6py3|FH0D(-miEt5Mf8@1Snt>kZ%!<pW4x
z5lYbgJ~KiB%wN3lqB{V0PI^-#*YPl~7ca-jtG8G~_j{!h?OLwYJNE?_uA_ANm#1~b
zqk?&4k?Qsm?K%!1#P#!R?_*DgTRSTaYn}d&6Xo_DZ+@HSWbZ^Ps>^@?-qxpw)0On4
zMYZQFmX9nOK-bOUK_ke_el|bubyk+VIMI&22G+4snl@_98>JeyA@nr$8GqiS<T4wv
z<vJN1K7we}a|7A&vLCA=GhS*w{OxtpVG)Y0u{=Ki*YDsz1Zx9ADL`D>jgukcApTkD
z_oR7-PvHwHXQ^B0!lIs-iI?oS{bvaCiRJqWKtfX}aQwc~2C}-%0eobK9!!~m@zRo5
zvvc}FEIpZiavx9il+&k54{&6d7&pofk3gKzxsRIx1K8?jK%>oq&?tem4?sa_4?f?^
zRpds&`@oYr#@f_<>w<#kZO((Wa;5_Qzt)vUjU_dljW6J&op2bnU|^O8zYI$e0NAev
zH^3u&OpHK~QUdfv4}f2M(c?~3R+T=(Q5A3SYp8u7lpQMrhH-@Ace_CyBVg_hkduwW
zq{jOZ7iZSn)?|fb6)O(a%zycht_X|R75hBKzl8#6UUq&CSyPOygo?ASXuY-1xW7vw
zNWO)h1OZ3?Ib?A3U$OvTB=ar9QMTcKLMn#jV#a|#wb&J4JWp;1`3lnPXO}h|{tXt1
zZX2ML-9)pGN02<?hNgs9v_x2Hrx2wCel@MN=}mkFFJ~N^CF?TsXiV_z_zqoV=d6kC
z+8Z$L*Fh*qDv^k($AAcSOV6sr^d!LxSKB`Wv(W4P7O458Zg>cKiCGFX_M5T(y&kef
zz!YS<KR1<?Aq9N8TyJx3mvBGo`AODeM8n)iJSS7$0B2SS{^eZIN|+&^c^YWxc!0ON
z8sPmcu-iDjU#Vz5{dlL+Ck$)1MD%@q-7`U8yC)2J6n=Oi1=IIcHq^IB>!pmzQ#1o!
z|ED$^p>WK8({!0Mf-44@nWty+8K3L4+qzVt)LubAjN+bE1#c{VoZA-OShuCw+kvIc
zaph~(Kg)pWgVm&+UCqAAS*m`26nh45JH?S#75U6q$~v~-a+#YiBDIP0Kc7H#KT?j$
zcoz4N&zf^V#<NGGAHtH+D)o+8DO1DzmkLo>IDx8B1NiR`TW)(+<=muCS%hhz`EFqS
z%TpulFoAIIy!s$|dIWM9_e%-t8%kHK<H`H4?>@H@>_m?v5WIUx4e^A@p^)7^C*|%Y
zrsR(z7Zq_nT|{{97kxF-wekdb!r><dr0Q_cK)R-$HbIQFyXADfGhlQg=Tn)RW+;Cw
zsy}g~_0Zy<HQR3Y6Jm@?iea&AaZ8G{g(-|_3PJ$aIL9kI!#H&hMCY_l^kQQu7m@ss
zHw&7Jj|&w~Cn;RV1ol$?B}}p4&&LZz9uz)cgiTC^@CuGdK>&e79cE6)rqxt2Cl{9`
zIn~%DAfpY@A4VHxQUS4;K5~S?;vZi0=UQiej7&$%R<z&<!0t3wBxbFhQ3U}l9PiYx
z$>V!~9~m*<GryPRvxcQUm}h<p!$leR**B4mt`Tzzo#XS07|uO_D!1Z*nCC^67H=AL
z2d54u&@a39))*s$%6qxl)A$QS{>>3{-}z11mMS|!?3rr+v2;K{1`RwZ2CWC68%Ke$
z&q!V0%`^hPP=5;{FuVD*X}ASIo!7C5+4tf!f!{ycBu_{S2Qf$*phDdPl<%4oBA=9B
zqq7E|r12$oRAfj^mpK4iw3mocD3Dp`U9|n8)6S?gD4zm1Dsc|ax5V#7;Y7;G%x`E+
zLLv!6r6~kpDWSt!o3s}u7+fC@ik2Ux$)P(r%avv7SDkg1cQ0V#f<-tPVh4)%0Q`1S
z2E<T5<<+k#SX${3kCCrScKYr8R^$~i*Z#HQKygv#k7+UCf)VqWlvwpa>35?=|G27N
zb|W19ni7ILgRcGj`|(?uz!v=&SenZ%!-Wl<oK3oixOsp-sm@QHYKOmyNa4xv?)<X|
zI-pQdyqVX)DfKB2j82VD-`bN}Bhaz`|0<I6@kbxq5|Wqb3-Z?Y89$8k!e~wxV=^Zo
zYm)kpCp~5|S?&tNC?7zJgeD2stDV&|5M<00j!lti=UQ>;5k42llZqv$`)+bfYMQ7|
z9nrluTUFt~#2F0)we8Jw11DxiLuuE5AkAUV;{2%UZ5s6WR1ZWPTP?I5wU)qorW(`E
zy^k;iDJhv3lcdq`CWS4IO$Udm%)FV9(<c-l(b7Db7FnLoHw@PQp*L+Y?V#{2J$i2Z
zH@W`kxz1m5wcyuj$HiATV$XWv)4NNDgjB9Wp7iKCrk}|=@}_!aW<zd?7K>h50RjhO
zI&aIvS0`}Ti_fRvUfN=Ak}uw;um)GA^?LBc@*>Z#wDJg6SM!Qxg;Jd+k0JGgR@*n@
zW-)xi=%gUIV)M1*hRI^klAwl6lZ`vup+eG~67Z3$_|7BqUkg2uYW)YPF*T+lyZIk1
zD!D&Jplb~O)Rd~olJ{^|tr+o50Fpj3_D7nQlp1y#=VEElx}+EXy01cwRgKwr9Z0nx
zvq3i7Pl?;F%4md+&4<b&wCiebyk7g2f*C2t9x%c3JU9B&aUL3xhzrgN->sNT^aY4L
z`fAb;QEvrOT2mZXSD{`6U+2V)&3=aGFap5AIk3_SKdN)kjNpwvWr%7}+y>RMa1V-m
z21LqeO`xG)g6%K%knV#lTI^T1n?pPiR3>L*-$OAnNCa*Q?2PxdW6)j1z~xcLl+GVZ
zXj;48chWc|3fQjE<Ffm2!*rtCyK8#UDX<4CsG|8%NUsLD%6jE^HCmxi37^p5r;<%~
zm}}(gXEU<>VTtinD=PM&GLQ2Ii#JQFWyw2sp)Q?E24vmGF<HO~Zgz^&=**MUG<@PJ
zGT)0gv#78*s>dh_o9A(0IbeYGxr94-_(w+M&-POtY5jb!D-%Uz>VFdO07rxWh{zte
zKR^zv`dHT>At0fP1F)(iD}q!q2XRLWf!a*B3Yn<~$Q*;OgC33lg7<YX@sNU+DGg4D
z|2-mFY?J@4uEQ*V+AoXm4o-XnsAO8l9jKQ@7-FlATVu36&1dmzMOFbl*hTGTB+^$P
zH5@cMc5;6T1vl}JxSPf42BB-fKGc?cr$q^nRv3rDFJyMSGxx-Rs=~IT6v%;BmK|v+
zo-^LEPo<=05P|orWB-RKUj0bPKHs<SAm5_F%N${adSP<*vgG?_TGTp&C-!cG#OH@+
zIZ&NUVnlq?gTu%QN4FxNm~dtA3eG$9Wl`5&werIgf|;8*J+_s(c4i$=)5tlrBKyQ%
z{W)KRV}$s3GuF4_pEGYpr^yB@D|%rR<6<B09Zbjm81Yt|ay4dMZdw#RdEW%yI(xwr
zzUrn5-hPrFa?ILk&U(7?2<F_c&M0b~p>_j4nyydy*L<e?T5ZmK>w<TDJ<5mgwxuo?
zav+GHa<e94f6!Iz2erMIVJcSpB~}KM52!4ju9tEBas;Qeik_|$on6PfUt^vqu@ty|
z+J4=<<OuZnx?n$L4Ge~_#r4_b52F^`U%W4>0{?yvY|uox2SNj0-!3-Wigf|I%Td*y
z2guay^;w(ktVU>s-XozS&h26tiK0IM;A4)ZgV~aIHi4@<ujxLXnF){I7>1C}@d<l4
zR~<C(Wp2|;I|S(+yVPbRv)5Xlm;{u)KDwz1zb;2I;2GppXj!i+a%T2ET(oagq(FQg
z4M>V`&p-(<U$|LX-e(;o(51v=Hq~!V6Vv-0ow`?AOqYA<7de2&*vUmO-(W;+e5LG_
zi%q9~#5sdrR?!ECOf%{S_|4`}xIC7=ay?$%jeteHhwaq{U^=M@`pyBOp@Z2j{{z<f
zM4^|=w9N$O?ZLQ#_fKiBYfy*O*27|(C3;QYoX0&PndqU;Rd<NZefv%@r;dx64Rr@`
zR*@o!O&dYe`Pb9WFZDdazg|oDN8P;ME;>PL$6AGFznW9WB3P|gy{~6pK)2V&52$Q{
zxBELqHdAaSBl8uamM{5X*fGSX4w0ftl~8VP90n;|CQYe4PSp=~J+@p|<6)N{uC<Rc
zJpaCUylgi<4x1_5kV8V6rbGU}Gf$Ziq2UOl)5Ck1ym%+`CP*SM%4<$aL<bxNJomf;
z!ADPV+qJ%*Wp^5SrrKb=o|%y}s|uEnU@jgmGY{*%l+$#Z^~O6qd|{U>x{&c0B)RlQ
zD_7VF=p@Ncy4^($7lpo~<RgAmv8of-wD$ifjoTr>c4#DRIo>77)-*5Ny$h6M`MC;f
zN*&Q+VPra<&fhuS(_gw4FsH2;R0JyrfJn94$M!@=JwmB-zoF!g0O*kK0Y<Aj3KN{W
z*{1KSLqBuEQk)sV;i6jRHY!LMvO!_j@~tRWJbcO=#`P!u{*gP5rDlYa@W!{v4j_yY
zE6`MrixD<br9G^e*`sg38xxvBij>IRepdXX$kU1%HRT=Bi(?P4+korBkSqttYs-b$
zsF6lJ(0nbG9-$z^pu$do()F<$@j&_t2jrN?&E}8mkna8RsHGTz_3pu6SB^+eBD-ZT
zysqq@V2FjiC~6Ntnoua84FwUpyKjh{(J|#igKI#eoJOD|J8JE>KTLp5cFwM&n6YFM
zBh1O|5}yfNwgtHzzFQ-1JIyFzrhTqtx{1EbvB5x1+>CZD76iI5?_frQwdO*v#Q<dN
zAz7NCsFq}=@83eh0j}ORbz;9tsi#f0(kNMi*bobunFqs+Cm^U`^;B@$2#rZvO$C|_
zI7zEY+e^ujg0-A~1MJmi%gkwN1#dgT1o8CTm~9WBU83@cFpsm~qrRQBEjq=QLej86
ziwR~NA6wWGph;wnP*!+@!Az~9SKz0y>q4Zz-{x9ru;NI0t7NATZ|)IU`kIKrdysFF
zdji*Q`uJY<u(R&?SCURYE!kbG2iw_dNxG=p7tt?i>`bSHVGR>xaxWs+6Q6qB0`v-m
zx-P|XS6Z6y0AI5;KUVuYTY!FjFKOC`qOqSqI86q`^zZDx6Y0rV3!MsEPl3e|1vPwP
z@C^EpA8~s|>j66q+%&`K3VYWf%c(BkX=@<n-3RZyL%59zbX$VJ3v#UAOy^wp&d?$G
z@r7g<GL)vNbr8!x7ku+AksR?Hcqg4kJ-xu(I74DTKv|b%roVHmk|_AXW@3ZYWiiER
z9ev6nDs<7_oPKLb`txJy*$GG85g8H;Y^%kYuIX;n+sEtHC)-Ok8Et6Ykeleb?T>DJ
zK9}ZPJ3CyX&xji<ajBVbvT9rq$CZ0<spCl2bzbW2t|^?qN$||aE6Erf!Vj6ZpA2;G
zUc2|xi@RAlob=N^mO5xk>rW5~+{|8~NGi&v8F9L-AaEUAzz9#z;ivrq)HKJ<0*9q@
z%h44Bky|i5D}X#MoNPsxJ1eaa=FI0C_gx4JGc#zh?X(ygeghjljW^nL+jZaR&nggF
z(uvxo$QZUl+z;x8Pe9KsM`=r`jduxUThgyto|qbL*wl^nTK<6=VbBNckYa<6n=zuV
z{3h#3E$0_q65=WBVw@aNL<3saL0|&f-<RfpNw2fT)7@b-=Kqu~@1cAJEMsvl;Xic0
zxY!xo9xpDIR(~dkxIx-{YGJl2+P_@V+1uQYZ>^vZad*i3@Kt=7aVMux>b;mUwEpo#
zYV@Po9a)gaL2)=I8RV?5|5ts%&>^N_LDcTC&FhHvYP#r*?p7m=tnTBk?sV=qCN8Tk
z*Q;9}oAMqSx-Zk}{h4NiDGx$(uH<EG5Kk2mGgBV};B+r{(BN9nPPp3Suvi)2ed#|P
zIbtmjFr8mp03RsZ!2Nwv_2D3Go{u5zhBMf~+~dR_whvmYGcl_<puC}%rfBlIyB%))
zt#RE<)|$+7bZVcSB`s2F(0anj<zu}o;r_(Bs`v(@1U{vBXm#F`K!tjNBeiH^uFEHv
z23q0M#<`K-oQv11#u_y<LzbFFc_Qx1&u6O|60K!T2hoKtklK^x$*fkJHn*$y9$9o>
zgseS`U!5P9(IF|A<7TY63$ht+KX^q)XIM6^97i*awOgE%uB89h?SB8cUn_eG1A%pJ
z*rwdbCkP9lqoj{=h@L*G7~RJ^>IG!|lw6<?CG+JsUnkey<!VgfOSn(%{9&Dy!f2#c
z;jnv&&c3$usrl-Qr^$=4X2C}B0V4_&m^-JeSeI&-vs(f47ZWNfCOREj?{}JuJQYa=
z6bbi$0Xk>_j0C+TR=}tm)qWf9%+FhpR)T<cy<r|6=Pitc4i*i=8{X&+Ne6-yGnHCV
zbvy`oKw8ltaeii;vXTX0ug-~DF8#|i(vF?K;|w$}3TWtV_H>iYhy|@<N+BFG`CipS
zye%nYD1hq^s*tcQlQ@<JDCBbdQ0jXz5dIFcHkTeORON|3DOYu|NG}bP%qU)t6bjn|
zxAeGMzLqR_09Y=s^=J6C>#9go@u{pW=4(7u&wE-_bJ@*`6en_r)!1?j1))zZ5m*Dm
zMxP~mgeBi0{4u{bu|c#-E=`Sdrd(?QA}@8Kn4-N6xlU-2vg8*MQ>H$pIj|&u@G+n|
zDP(z33M1NZxi&GzDAXyyAxY}mgIFdApAK~=DxT8sLzA6HU-eZ{82AuKui=g8x>p;*
zoyhCGhf{j)Bt)p}Ri6XgjE?izBvOuK-v}J>pA`v_I<vZQb};(BFOhhmc<ln1&sgy>
z78xRcJF&Lz@2r}Uq=IwvbBL4jp%JmG-3Wg=E7O*3me>J-kgwQ-Rjc}|W{*`s=l$wy
zW*ah@G)I4-p=Z)<x*a@fZKUva`k6GiQ`(L*K3~*ISXSp(K8w{qQMp2p&17s~Ay#sI
zo_&qO0D%lz4lBAz(cjmMvwjbvFwEMj=;UD&v$z#Cl66@l!+pIQ?k4;5fBTH(x1UbZ
za1W`={?-My{+%OL7zG<Bo<!bnSvx&t7D~ahq3Rn5zKu`9jryW~$aMZ>TjiGenqDz#
z8@E$`sh|t7PT;-p(?j{*%U=9rb`E@8S6Y0dAoU67dLh<m3`?}c8q(ceoZL$~m5UgQ
zg$=(DDb&%abMXeOM|9ZI%Is9Yi0VXS3LgZFdMzkK{umx`b;J>VIgGOwQC2tba_T-{
z(9oTt_TJY`6`Nk1GTMs4o-(43d|1c4IS0V!)IY9L&Dr@m26yts3O08)V|Uv=h18Kr
zpOnqVQTtrb`CPTO#NS1eQC3FWwG6c_TUIExCL}1iHh{2Hrg{YIHo0x6UJK5gx=}T1
z@4uw;GI5NxKXZ1L@RhYba?)2Bh(hf&987f2u+GkZ^|1TqbLH=HbKir^?eY0q&70V=
z@b$Ii`MRR@m(JoZ=nr4}-_Fb4bgc^&?`x~CSP`S_GM<md3-yWs%fdodnnLCPx;9PT
zkdk4l@X2`ih(p0I#1wxPPMhc=Qs)_$+cu}=+rosRARA1jJWBuc+B(Rv=c7cO1^yAm
zhL5Nl&8N6FonvG7mmQniy|)?{((`XP26u&g62222GVV!Kq_CJ6UzNqb;vBc$mHUYH
zt}*dSO5uo$LrE#et$8GUf%b!yz?!;R<zjQ;vZ*=SDey%c89g&KD;i()dU7@!|4od6
zq4{SkIU}|6uV?w-aZfiq@;CJ*HkRd%Y{Mf>*{mhhmPGZJ_-21vK2=fB>+5NIiID<a
z(iUO88N8{fYo_w3u>_5Gf=OL@L80E$-=(9vQ_1Dzk%ZmVIwx(X%0rP#i=-eYl_kmE
zsc~lg7wnqZ8y!3>mFV&2G@PzI@=~La)6z$`$U0_l*=N<_#y4j+BiuC=Nle_qiqF)S
zf=%*DJVpV&;vE!*80-iHu%9uZQ<yM55nR20#53{~Vx*SUGN@PP>}(13(PTF*s$mjV
z#|g<bR(5<p#6Ps{`_AXHZfjUq`kcn{-|q1uU-z89?(H4#h7=U+cdly16UKp`wf*$&
z%6D@Y8`1TFI=}aG(uc-I3RsImW`Ir%XYPzs1;xIu9dT687Mxr`!I8mg54G|`g5`a?
zKnh<-S5^Z;umma2zG2E!8(>(mxZECWL+ReO6MJ`<->XvHE58}f+p_E%Z)m}dF&@5E
zSi|qSwTii-mWkBuf;#k<T^HXmNw4U(B@V9ut)-}I&yi@YB&pB=UK6ig^j>5E_X?>C
z=WaTPC2t<l{_TM7{>k1u0D)f89pehAdUF#!-dv^aj3RY|@79sXyT~t$t>JgMw;#LZ
zDRx9KZ(Fx=uwcgSu**cT=zZo3{=7#~+cUo1{VLQVc~*Q~ZYI2x@UMLzl?soy*)tov
zv*GWQvU22tYFT`+_6%Is5s$9JI}St%`#7m%d(du#;`YoalN=S>j7U3w3Gr&3G1$1!
zlAgJ~I$vV;9bB)?<KPBNX`(&<ArVo6ImuuugB6m!H{R?QnFKg93S-x25Q8|>A2WZ%
zV~=N1OWMWV13RsPS1?Ry#~=2xDu$>@f4a!pMi^05i&S(#(KQt7fz9J;?Qz}CF`|;7
z8V(rB8U{7Po1#Jywvy5}{@$-NGP(8YRDZ*jjk;SCRK<kB6mT@>)3<m`PSRKPvp=5u
z;A_w#DY@Nva9evyD_>U`@gCo(n43JW6c0b%Kr@j@eVvs~WKlLkmcPlS=y9Rn`@w;n
zL&PsJHLh>S&doaP+Oxpz*j*GEsp3(<CjLf&P)+l@8yzd0o3OXPyakDag)rUgbB6B^
zO6Jtn%kq?qf{s6RWl!iu>d$^WXFMr$W3T!_@|Om-<|(uAZxUE5;v+iz52Pi61s4lC
z8B7%KHgidk2bW5p#I*00xz&5ebVmJ;Qnq1e^~oI=u-|B`W=ATLhE0oyEh4HB;qR2$
zn~h{zb2fHX4ih-NTc#MAzQEA=JgI=RKhV;%Ls8s4>Ll{2R9tiIxO%o-l}}f4%;a18
z%z8E>OHb8FwaaT<TD{x>dl2ib6juz%nI8-fZ(g83BfG?Z!v0ki3N##4KnJ1kyIt5G
zn#i(1TGTtjTLDx#rV+eDL03vQ+gDEw;>MHyx5mil`$d5eTmqviHQmosA!ZGy0$+(d
zs11Kb3~8kBD(VBJN`Vf=ux^M6UI0?wwBkF_7~6OR<xtr4U%*oe**__K-(PaZ95bcD
z^~?g-d`y-!Y0Jfs1!^_WoB)#1U!u<pFPbOVY(W?HB!5kE-Qn?@Q?Nys6IJAi9Mm9-
zVei^BForwsWXoTMf3XObLGEg>-M9{ODc*hK;-JsLljG9)ABV+%9!u;%>|MNd3&r#r
zp+fl}Y`Sn6_c3yg*cme2YiD#wHI)KAh5w9ZtGg2}I<Fv2M*&)cnLkM-0Yda+AkOWM
z5zd8XBduuxN?idVTWgjSVn|2`20}P{Ed0&Ir{42<gXGCs4Rqy$DB^j0d5yT|3i;&S
znZMt>hIg(z17s{tmVDf#mYoMTog!{0oi$TzdV0kJ#tPOA>D<kKB|65_pL*(esTHfb
z9WK`3GTEzdIQ$hVQ2=o)^2FgWYj&6OY4Y;U6Y-XIe$HU!sdc+jcK}dx+jUl}O;GZ`
z=GE-DK+MMWKfMboOX*ru8Z<MXH(e4$zdJjGaarTKE%<#P2o)e~{9r;>-6*9|J{>y9
z^@6~v`ze(_d7wNQz3OPH*1>x{%*i`$r!&o2Fl(4QpN8(PG+i)i=-Xcj#c^UWWiDhC
zl)^1L4sg7jl(HlW5^9k{NVD$7v3^a;5~mzJ)rT}RYlv7xk*DO%vQq(`SBR>nq}#`i
zA@hj#VWlP%(@m|CHvFBV(YRJYM5m8hJMK|hre#^~;+4<+Y^jMevHeTQe|d#MzAbSw
zSl{t#Uv^6lfjFyImnxA+WMx9$RuA{}o2So9l0I&(ISn%g_Z#uWW-sZv63&`0g?G7?
zR)V*&9TP7WF7JMZi&pCN9=y$5m~0vwMH@VP;Q8}S6rYu2nV0{Thejy=qdvDbPZCB=
z7Vq1Ry9J_xAWEA=uZ{LOveehVBmL)|;pMB!jq_2fRdI78uVa|xI3I>MRH820F+}E+
z`2wv#LeX~ZhjjwUdf9h5pKA|QJ~YFx)q6KOk!_Ncb@gL!*U>^eycehcLfAhT6nxAO
ziW?XTW4&vp$b``$_<DM6iNDD^_Lj;)0*V{?F#AWoA8p60Jr4dyA%F6R*}qDDos`eQ
zVYChRtLIOS^T@{EFO9`16?B1oI@?go>^(`@^k20$qKywk5Jm%(({0O)>C6u^e-t~7
zHWK4qBWLOOn2hNX>3cuwJJJTRr=IbbG(aQMciZSB$8F&{hdg-Hm>fVC{e0i|9*%>O
z13%=aIwfo|&fGyR2Y9onqV)2SBjC8fdqg6|m%-`Yzu;?{=QTT&20`8Z>ydg$h2F-F
zF6{iv(<@6HZ$Z{#>Vfr5&gwU=_8dHg#NG#3<Xs2Yd<V1PLSGXPt*Cn89qv=P*SD6l
z-=lcTz`ch%U7vF~<lLGxeC3xxmjC&R1BK~V^ByWAo5ASkO$<O#G=4SQvUU!MuS)hG
z`lgDZA?iZV%lel3!<kqd9^Xfa68CQv)Bg9*O5sHv6ZVNjXZCkQnw?INZpRN&)+og)
zQj9#H8jpkh*Hwny^whs?fBqowpxa*bt{ya>;r(eCQP6)N+OOCZWiLNICK*#x8SPGF
z()iLikRX+7+Z^&hi18zm5O$0k*0z21?>8n(O<?s|pJ)$&|3IUPRNdjYOrMjU)Jvx6
z)^VXIp{cM#H`@qs(B6<?w6JJ!DYenaMReV$x}NzSuYoK7bgt%X-(D6>VlwbF!r$KG
z6)FaF6id7dFW8Jjwi0XH2W}%2{WhBFjtbo?k?nDJs{ZiMGBB9(|8_Y4IkbGmv%gZm
z^QLl{=p~zQ|BL+|yst{$Bk3j^8i5eoOM~x5`0l-QSjg|P9+Te<VdzLh)D4|Z*L_jM
zWmUZ96JkkHUakjhre!E*;uOpZ^sI2(-G=?q1Q83GH6XCgM_q2f4rHp3{bx7$YXBS%
z!IOG8EW+KCa?LeJ*{cT`>$*4Dgxy$j-1Ff)-t^Ve1%LC46&m4GlHQ}^um+hIoSfZg
zTE_KhGuPM2^K)e)_Ut?)jWX@HH8-;+wIpuu=OCm!X7#!hUMr)vrc^{}?@81d{3$kC
z5uYZLGPgL&Qc1jlo_b#}Mb^-5!zJ&JMHgB9_as35`4X|mRi3=3-Y-f%HG`gqs&`yG
z=*X`@n*E_7eJJN_;*mJkeqki1x;%74q|zO|dXPsPqKtz*xc&j3PABmHq3bQ9;#k`?
z;o$Dl1P>703GNo$-8~8J?jGEOI|O%kf=dFy-QA&aX_(sIclNyJ%&hs_t5^T1uDa`f
zE=?#QO$y!Q(uk$m9@D6l@A1E(sMm%sz``9n#qaUwKGW$KAg#J1azD0cN*y(yh!r>3
z6&%$sL`s@!zbzcaFpx_>D#Na7Hel{j#KPHevvsEW>}FaILZ#xxd~vDJZeTWedeDP)
z<?Wc`D?w}G_2=<*8<w`Z$I1CO3qV#$!BI|gIBxvG>qYs2DrqX?o_JvQFRPXB>)=g)
zLkojbk>S-KMvvGbj?Gju#&zw!8Pjl~ZvVb|RYKHkF?&5&-@q+%rTvZd>2+y^QEQN%
z>E1{sHX=E$T4TZLnW|&d*706B(i~i2*Obxp6M4>hCfBG_v?;Tt<jdNm*68q}!h<G)
zD<3AEx4vi8m~)l^ea)k5B(nGxYh%_pi3=jm!><0!imZ}ML8Sa;u!j9=mW+?*f$t<+
zi&~UW@a<`&#8RmlhL!Lkd&aMgBnj$cuZFyM<qC|$I5n~xFjIOoazW8rkT#absQTo9
z!fsq8Am&-U7LMG$NU_VCoVT1Z^u_4zypVNMI;GIg?T-wn4NjflPkk#xZ1&;}$-M83
zU%ujmYTmoxZFJU|G87P3QID1E`{j#^uOZrY9JWpV-AC-leB66|ixZDPANqeL(ebCZ
zl@2?)IWs55O3z7@!x2*VJ|E{H(c`tIG02ntELX9RzR?X^sp6&ZfD9?7+m4NIqR--!
zxNep|rLkX1+PmCZt<Ww=2cY{~qn_Pj{y;tS+;&_gl=S7_K?D^na)s3^n7RrYY36AP
z%1ir$yp~=jlbn<-8ECSHYstpzR#MK@s{hFXK2$ZO8HU!6fhA`gXpKLf(Yd80XAg4n
z$f2|tCIw@dxH}mvx4VA5IrO`k6ejw1pa|N!iez{KJA2~`Cm~e8eTO`|Z-!=9KJ-v&
zGQAFLPXQ0?wW(0IyNNZ>B>jP@{ezX;1TL&Yb=><TZmGZvuGQN<);C0ZR#S(-2O#u$
zq<ZPc2UtG$^GdI%9lhnb^1s7C#OB|{Ix~&jE24j@YG;6+9XT4stWE1j;n_kdj1+h$
zO8u-J01vS^{FZ!Pz5UYb?th@TaAALRe&)ZyUy3Vc4t<SlF?wl;$h;t`9b!c%9o0IN
zOCKy%%cR#_>fOBE$}Xe<d9FDL^<qqRjPW)&pbUh=b5P2SkI$RXInbwWZlruSXHG0d
zux?Gn@$W7fz=BwGmNk6sYnhyM%-FmqM`FQ-p>I-B>3#)MuQ>2y@B^Tgp7?1)qcx?N
zbg1Z93@0dX+IJRO$|R<NB?~Xs8yy|pI1<smY&slElEPkCN=hzFO<qhqguqVqJqGwp
z4Wr~6Ld6MY_$Zk`BOttOYZP&meZuNvVG|QK2vPR;7v}c)YYcgstGwCW{nT<3PDZK_
zL)a$$iJZo61076rbyYry90+x4nvVq#j?!L_dl#K|BrH<#!c<fvRenmLcW3+sU<wlR
zF>=jk=tp(oW<?9Bm}5DR;bBIWgqMwt011zSL|bXt69r<jM!9<J@lvNJ3y$3)6D<xs
zzpIti;EAhvN}balGQHKz&o$YUzV*1%jH*$V#l2Ym&4CZYUN?MaTgIAPu#Q+({&($X
zo(Sttu$)KJT9UzxxZ|=mbVyP<F}3d{KWkCWx;{1liEAyW2Lb{-nW7}}O~Vo$qAkLM
zXK>14PBnzX>+-=V(3CUQ>ca71oviXjq$XMmDLN2LNTq5`M5Gk4bkg_W<8`uJdF3lG
z3$IXYESXamqc|}xg`*(!hu<^WqQuE=9d)|ILr4@9xM=wyw2))B$J?99g$o%qE0j>a
zQZ27?qvKHBj4p^Asb5SVrNJ;CCtbpt*IR`?u9QYa*$_$!ufGroG6Pv#0gAeXD7$<t
zQu!+N!d6KzCnVC*WbJyoA7NuWzy_fRh)KEYj%8kt-%r<=JJwaxS9&}-ZC`f2R`d|$
zMi(lMqnEqga9$mLD4!}yp-BD!i7XM$V>x#%quh5BwT*O=FA^A{wRI=;Lt|k5T<*MM
zZVFw&l#}-zc}f-z^WgoZ!D#g_(Si_HVy}<3M&NLD3tN68pBRmUePRE)p$PEwkCL7D
z8cks-Gzl_sPV)Td9g)jugk{UUZQdRW__D(3@){@HYQCBewNZBwE!*DPOVGjB6Oyw`
zx8C$v!?L+^gstC;X!Q~_$W4x4Ho-ZJ0scwVUXKi}BqF3fG;ybE`H0n}Fvn33u}}*x
zL+_g->W+E$x$uNiQzSsX&w<D%ZzAgWs9F<Q`o?d!^<LV-=MK4Du_*??#I7hO8ZamR
zN`M$KZTO|MqmL~%zbGZHy1cu@iwJvYaV8PRB6Tv|bJqR^=Gc3>RvhSqdTg)K$xoeh
z*Qar-(cR@5DrlyIBwsHc%iEDBMohMT>5m;eceUo=j%pg^#S-Uj>%ri4T~_J6f@o%x
zyu-Ktz6=lE%qh-uo>ViSUjHwI<)8gy1G87Kkf85jvrRJBKHfp*cg;iHvY_xLEvKY#
z_wXIcrZ<YDxqv8Mrt8kv24!Rnq_23lF35C7q5AFt5=%5{DSf8eR2y%sSZuAbpWtRu
zGz{)hP~$%+dwGR<-6_b+t3;u*kz#_}PkE#jGUvZ6d>_RHxyyTY2Y^s~SfwbMz3=U;
zp~?o*t3)^DMc#$5`a<1ga9TffV3vf1eS$m-nhixmgN}2M(y}7V-eD2JPlxMw$X)Yj
zRqKylr-M}I$~82&*`&~KCjrMrMEBdPx8Zl+YFC9Y_YasHqU0Q!KCpmbAa|J2FXpQo
znp%nCN1w3_L7>^Uq-p%<=*R`oQsvBZjjNg|Cvxt;50puw#u6GD<AOe!uPXdUCuD=s
zck}P%QsjrG;eL~N$g=(6>B3L)cKfTrcJb?PkEI@rM~=7;e}yP~6BVYjwyDl~7K2>0
z>r5p%dC{Hn305WhL&MjNvRl8WI7mlDMi%V<$*eHd&YuHB<r<(7M=zb$h@o-60V6<c
zWyN5dZ%|okGhg}sPdZ2V+FLtAi%fTYH=GXUSOhDkk&6$e`;3Bk)s64-cIAz36TRB_
zkJ|)EI<{5!jqu|=_`AZw@fquywckl!e$CdIsWp+2<=!X4c)Eypi}*zZbuX?gT+2L!
zg1Uc@cSy9wrjS{cr82IM_2J>K8h^k@#@g`MLD219Z7PtV@7PTwJw0zv)FX@ky4kBp
zFSpTswwQgRJ6heWr9U;?H>_fd)i%~ZVd0QAc9E;?VWET>nD-5S^s~KLrE(WK=Y?zj
zSkf=5%25o%Kaq}}mDhnS0*ZgUF*ND@x`x+f{CyvP94Ec9#E*(AKjP@InPEe&6>^@Z
zmEGFB)=P;rh+a?E^}yASxBSI<2rUf;k1#Ol=l5~1aRv-Viog$4f%{yU5KT>$molGb
z73$?$e6JA7gdBtgV(_S#EkX1YNo1rI(jld=vVIGlLXs)Ab6*jerk`S6BtMz5yO87f
zXC0?{!33|)h^m(>7owNv%@*z49G#_>*1lZtSW6FoD5Oi0(YW)P15TL~$K9`x_o`GI
zcN=*AQ<F6UHiKmAO(~jxo<46y)Psa?=oQ|2ytR32;ao}C6q{h6_ki#0&Qp(=u%oNr
z0mHSSV|{fL^))um7or!cCaD=zF>V)iZ>w+F6d?kved_O~OB-X(Mt81m*3`H;JQ?Dm
z=c4g09~5eioyY1ZlLvM+Xr=mWoe6Nn18eLY(qr14(uliE)|KY99nXF=J4`G(+W*ZD
zccNr=CHdl1!4OAg#uqzUp-*$aGkkFIyFcKnZ9k=^)U@iU{Ji;8*JsUMSQhWGIdHk{
z&;`;63gEYQJVK+mYIQeo4Q~B*(PQZL_e@F8F4@f8Zu{al(@P?s{hqrg^*8hme`uo>
zusZ5OL&r(?OV{<zbr)wvAoCXu#kEU=>gBw2EAFjcJ0VRZ!{@xzrtm8w`eBOiJ$fhm
z?2eAVtB}n~v#L$+!K{!pD1YDI4~nuRg>M%e-Z=9@6J>D^?lP#%TaFXGU0%idiH-5~
zDn_^rBYoQ#r`va!s&AOe3xNfVbQU5$v%>-H2pf=2*GduS&u^>Or9Z3uUx(3EHP0_#
zQYO{Pn%H?@PX{C!FE8iA#PO)d{xj_Yu|-5iqEzwx;?5isH5YBcfwnH+_82u#BcoV_
zyBB`cMvg!bObfMFS^UfMHjG}&Sz0f`9<Lho(1j7Ae4mbNZc)+eDNye%553<V1V?>C
z+Ij7^TWgP8gs~v6BjI<u^bwI;Zn9350LEF~Z_2+lM#AL=E5(a(zl;OVcSoxwwF{-<
zsDBGb243C)#+1?jZ^_Fm4|_D$)=|CA;Bln*$4HMqt^78S#XWn!rRX(Vs-j8QN1&&w
znuz!HAL#Bs`1pUF9{+{Q6}h3UyfR8kufNnfdvD%2t<asjxNF<j0HRM>5|y~%>Fv{{
zhLj4Zt{!rN?P5XHin;i((a!^-GFXW#<ZQB}bSMRqtPF;~tmd4si1Ns5GgDyV5sstC
z5!6eSMcY=>xb1VsynjN1bw3~m*S<nl8ajO<y#iHQ>@-N-8K`~QXWw6Lo6c7j<MTov
zhpGY+lvm|FSiN}MgWozbsRr|MbKXl9zJT5IOL^^#@GQ(Wg=Ui+iQ;3{cF~*1ukEVS
zR>xq*pbtZJrlIj^V5@8)2w79%!ZqaHf97w#fyP>@;d0WNN!2(*FEH4r+&7z@zebyp
zy--vnkTIC{zQmom{w~B8d_h4*w~$05E)=*oQ`7<WEFOlaHfke(WA0v>SYjt@>(`PR
z)e|U?bCz(^sbKPJ&W&5QRgktNra3WzKBsuG!Z3{N*K3;Yf^A$RI&S;l&1m%JtV!iX
zKBwqftNA3JjtP}T_>)w0N@4Zn`Jyq3_F9t|*d>in8f^~{a;mlw>ER_ft`RZvzDKP}
z(?L1US(4rbcz!mO>0(37=_19VU$<37M`tp;eo0@;#*X&lt7DDMn})_NFarvTyH4xL
zgo>%NpOtT^nRM#vxtquYBE1Y;GbuboMeUZITN)~5oAr1lNq-A6TUK_rfDdXKZ-_I7
z&8Jn~GE2Sw`ra^o+KV6}_DTZnjk6`JMgoE!uIl$2LVmv8*A6QM8|rTFPmYbc^HJ=)
zWe2m}2hl>V)hl%i@nz|7pWmtxEJ;2r)D3wu4i|~t>dt=IM5L;x|7KA>Q%^Z(qWW|3
zH3o31D74=cUV`y7u($8+#WE@seTMyfPh<$6hurBQt5L()hygkB!XU_lg}tF*j_mH>
zb6sE64cV;+14GCzqo3m)WTpiy_tl+!6^WWw$?uR*!_!cZx6%Ka&}y*^p+zklsRrmC
z2Dq&}Y5Ikzxl=#>nylSR--=vk@R~0Ffwv}nmuO5KNyqw7x8LtPtMZlzr=akb9~=)}
zrK#eEtx-enF!QZ)_Tzh;`X+MOz;QICMqgzmnXmAnv*S)-p$(gONLIq<&#zm!AA|Rl
zJ+)TlT{ZM7&j<cKxwp@oTHRKGk1Du5DXqd-90QV~eKu(SK5-7mz`3z{=AvVO5^ZZ+
z_Z0k6QQ|snT2tZqVY#T~LFh?lOj>ZXWyG&DjdDtLsoJnA2+VbPJsE|Eg*92v@#V$r
z7VY{&V4(KE`}|J5+24){dgWT*i?YMFEzj1qQ$Rbsemr4op1aBxnvMfBADMy^Rg*0L
z)PGcOFr_Nyc)S{kz~$WCZz?YpP}$0F{Nj#!7N?|swYL-{3d^ERyxL8tU{t3wXd?O{
zX9v=THjA+u)M|9lVkZ$nS4KZMS+NQtGR^<+ls)A8?pM81Zu9B1V^5PolT}A#I5!e6
z{-S1uX2Kk$nhqy>=;*g4fk~{sYpL{4rV>iA{4&@3RjM9;GFx=E0zH4m5OLExQ8zn~
zM7(Cpwj@~f?r-=<_U4HOuP!58p<GATRvUD*7iX6_hu8%Rh`T@C9GS(S+Wi=h49r8k
zout<&FJ<0Y<^l>By?_&}<y3*Bk06mrS?KnAtVkfqKfC3!qcVEtX68Q=`~MhtfgA{d
zjN5}Z-Pj<xmD>A@jT&6g7BUud#APBWLuQ>R?(U#?IJ%C(XF}>VlQikDc8Xa-tQ=wg
z?i3|(fDIfsdD=h%k9ptj<nMIPT|Q}7Bfyz0?}nm*45OV8HG0hPN2I+Ufy<4NA>Xr>
zP7S|yr4&Y!9v4)+`a4~&$^%J0xBL6&xbq6PlR4)$_JmK*noj{B%ur4`J>|AAH0$!$
z?aqhos5Ur@mgy@~v$t2u**sC#TRI~l{RG?uliq+>{P*BV;RRib)4(ipP5fYMmb9OV
z`;oK{J;D<j)La%EI-{8yWh;xtzemz9DNqJV1(IrW$8dCtbqy2o6Pqz_R}kK2RKW<M
zVq!hUM|8}Re;Sji7?_!sZov!&QBkGZOAL-vxhLY;P(fO+Us5`BEbon|DVLZ+@s>87
z2+yt0;8hdKb6XUtZ<oiZ!Q*@bCZ?^QXXZa0#+Fz<#u@!pp;o{*cOZ-LYIs<D6WD?R
zBn5Y;4)U2#H-BU!*uQI#A*_SbQog<pq%Ij;Dq0&s^PIEC!pQ445N%%y28`vFN-tj@
zK6ex2jMn7hu&pdGOcxY+E{jPzZdNIkzc!u=ug0`4CTTpIGe&j$PF5lNX5s1B-iQfN
zEB^4>CV)Kj8E9g!{*=o;@tdsqi720+g~YwEuJ2tahIv=SoJADMwwqc{?&HPYYA{?E
zbf(?jt6({$_C5mPi$Z&Qb-!Rucd$%ci!^q}A!+sUuxEssGVx3tT=j?AK{cT-7UL%x
z8{Up9%-g2xX`!1mXJhU-&(0g(v8n*<K-F><0h^l1CFpc^dQmo0TcM%;51D}l(h1aL
zH5@;$IMW31Cq<hIP8++LA9vM8qBA)?*>e^KESJ|7e<@zrXTW}BPDtmv^=6lYAS3lC
zdMY+9F3q6-fZzb>wiG0C-bFKe>S!P5J<jO%ktr-Rtd{@06~KDmO<mNFdo?`G%j^Z_
zsTND$`gD5Tsw~%<z(B?)ol6V9Hh4u!dx&quCTIK_n}5-1xyNiO(^IgWvOyHyKs9zU
z!Jn*vz3wtn)#Xz#JoF;9Gbka1bXj1enAM<H@h}byVrA?7O(c1?T-bu0tC8d5)Y?-4
z9bdRA3eIWjRzvTyRJ4@8mi}Ju8E3hudNRlt<K<-b2t_ngHMg+|QjJNz`uX!Gj&w8$
z-zOElXfzaR1dQ{7PEPXZuMmw2H)Vk&1~?YR0yxsGt*z6ge73Xw(5gjJVL$!0KkFUt
zHS<I`0yCHoKs|dhH~xDNzNpy*R)|LH+Szn*6jd4A%xA}`ph9`Lo1IpVt8Mm~`{TI^
z2Gb@Nf`wPhnV)3_tzkoL^zco}zOj1Sf9C(6qXD?UM-l<WxwPXf3_aTg>qzqJKR)ZV
zyOim*09G7gzKhQ5S&17UMOQkBT0wPJ+&l>7Ydn?-Iio2w^0W0qwFY3V{Tz=GT1%Vs
zq|M2+r+f$4BHc0xCQU(&X|+SU7^rrI`6C`b-;ZP}Gc^+Fe=e>a`?cQXc(b25bJ!b5
zY4@OBHHPe>kNya&))hND`{`B;>Orew|J+Y!GMx1o3JS}Y?v$4fBE@TOQK3~+y8H_T
zm6qRQ-1>q{9Yp5q(ilm~@l)9MGB9crd13mHe@NJ3ESL1;M%XjDKJ+`tAom6PZZY$+
z9ivIor=F9$RuPV(K<A9Xy`bLj*-lYsbz41KAiXS;0_;FSfHUH??jV-Yh>(JD`W1Yy
zvOTR63gdWWNmJGO_dD3|B>7I%4?NpU5w#aPBLl%?IW5At<HN+LPl(67t)pbz+q7FU
zbXyU2E|WA$jat47t}za6VZeRQ=C{H8bk+~jzO_y7;%kb#Q)Y?XxGVNFw<`I4$CZGv
z*vEOPQKQ)W6w<8uQp7;FKL@`j{C+rsvQ9I-lUN@7rCwLW16GnfVYW;`u!dz=0?Yud
zcU~vMv)R#pSe@cO!z+lOB2i4Qev;Mf;&8%uo+`{K(2~k$IC>>TJ2}@-!Fi)MM0aKu
z<;<Nl*_ISBZ29N(Lfds;JcV(mQZ){#Ta(NHxx>pdgrn8RBUBc5EX0-W>twKR7L6(h
z>^W}DQX`$y2I=KJE3-MnC#mF$Jzd*k%kA<zg=v@_FblC3FN|G#<c?cIsaK_$1&!A|
z(b*v6Cgm(^zV~@3iGw@nD34oN>K*tS+h46}+jQvrVX*$GeA8lYyozi?MrNgL+g_H>
zYs75)?p17%GqdMj)JJi_{zP>|a*MBR@fRAGzWmBKUX#KR&B(6Q-KlwEt8fRX<|~%`
zNy~-op9vxnqF359%nY?MQf2|GO24v*$EQPB=-HyHsXszof`3B(_cmgT$#aXi*`l2j
zr8Iou<e@Hk>@(U_$xJeIUtM-gS|E124Diwn<D9fP8gXPw`;r;M9zvA5Ww<{WKtFT3
zrWQ6gMI?v%O{dm6<8d0qb%>4lGeEXE@`Z&mbS?rPV+gOVU+k)3R;c`P(7#R_p&$I&
zJUE_>{<Qu@=iLRbQ*=ZO6#e8m4@d?p;wTGb6+^pGtYTZ?gSs)3XJ}cY+U9_~>s<k>
zDJ9{*8B2&FeSfy{wJFeVyw&X@_Tz5_<5zeT>W@MnK15`2RsD%#!6;`^$LsGG*Plcd
z2oLlOM5VT9wp$B0QPOmUsoC8%Z}PxTGk!%Fi&`WMwMKd6;Cr`i8jeoFSi?vjWCF#x
zPoA$I9y-0v+^$+IJH|iW7m70ZO@3nF*ROtb)JgS%QXTvuUb|JEmIFz~d0~gmfQ*$e
zaDg3w1PM}tHcrew{ddXH|8b;}6$TVY!$v}%mygmUSS&r7ZI%k8Bhnh-mui7{>qgIp
z@h(h#X%r|GeF?LA&%Ln}P3}!>LQmFoTkZkzz$qC8Ec$3wZt9Pd68#V6(Pl$0WF&%K
zt0g934JR}pxAOt+F4mrFWA=g`r~abhmHugjqj15s6+c6rPQEJ}6O(D99~4YQO!}=k
zG#vTe@8u72H$<^Ol$8CYCjEp~(+(%|5ZSX|YE6E0SH?VLyIEr~X>>OwC6%#P<V19)
zYIY>C={(rX5mylSDO-*X<-0GuJ`)F*<CGmTdPik&455x@<wm9Af4?FaY3duAH{)sj
zy_H(NcViA94)>{*_fz@89siwbE$4?;PerF1-?no2nxEIBXi&$}wY^_51-(Rt`P=5Z
z^7&F;15T4fCmqNYQ~zqRV!X`q4a4Tc(#p(zLqmhQAlz0s`v~REebGbMPN+a&TlL^=
z^Qp;EPm39a#Z7bE;Ca#^bc?^=6?N00pv2w@=N<FY-PG0TyiY4%30B*eyICLCO$5au
zPvdLdr|q2a>pjQFcOO*70%s4*$$Q$tJh?QgpM@7LO`BN5UZycht`&|WEA{`3r6#7`
zgSDnnmaCsEkZ-@pJ61On`S4cd+%k#!sw{^^{o2m(TfM!8wd>(W?@G*D_IyRdn9;(B
zX<EKDn=Y|CjJqkT)h@_^=*_DZDhlGsVB2K|_xI6#s_(Qi#pp<MtN#apl^60#6Y7Fs
zR~+MaA<SHc8|^qgO#SsXQkJl2wZ8wtn?j`5gW)&&qG$5^f4sLa5P>iX%M_GJ0`0WE
zw}%{t__;QN$pibYrUl*F@UKpcJOlV)p+3Rz*%dkV3za&B0`laflZXuqc3(eAEX){)
zR0j#`v+umZ>$SRs{p#WviK`aGD}Md;=hLcWI2^)M;+f|pjIueZgs@YtXtBUkh?fe+
zvUv8i&^Bv$q4#Ql-Zz2N$+SA@7=)c5lMhrwa7m8sx0$*ACaqc;kO`9T$X$QhU~n3L
zxn4_k24$ZBF8-8h6fbR|6Vtcsr4^tGG#rTh=atkPl;(FmE=oSZ#>PGbswWE($b6Iq
zohi?Nnkj19JKjH>6l>Z?;_r&gF%wPnTI`s7NpAj9Vp`?5(&Cc=v63Z9S{*zXb;d?E
z&v$3Xoyoopw<J*U;)MkThk)6l<o0CY+3@c!BRe#pGUkthhAq42DG?vM101(|q3E~T
zj-Ggs$FE!a2WP<{CDj1#(jmD+x&v@L8nRt>NF^o*fX!WH0lE|CI^^U2g+oo!k01U*
zYpKj(AtAJV+(SA975Z)L2EI+>YRJi^_oquc+QbLYeri|M)wJ+~Hk}NN<)NXWSNu6i
zlJti9Hc_**AilY?*VHup5E;j3O=XA$FUdO0a2#2#JtDu`X&%rj#%t91ACZ-aj#RI(
zKt`XgVR=|Wy9K^QHjnmvxXb5TVIt=Ro38*H1QQsQ(`>s!F~V?MQ9f!Ga>W`rcfq<e
zk;y%oAuS<5{gYKRrn5C2)Gv-nI=^`*8JFrZAeY^W<u*p?Iev_91?P|i+dqzIG>jM;
z^i9)L#8b(Ff<hnXD_!OECLPAI<g>@rW)<_UGy9RS;U^Dk%9u5+KpO%~<q2z{5-!XZ
zk1Oh1CmJd$*)n#(A|~6#D!M#dhSE8I<o}K1F#_f9@t>}JNnbY<WF!q)Lyr%8w$Y47
z!;xltv*YDD_PcGk%?l+LD<>$Z=q7Wq%41vYr<MTqdzCF_h(y`roh2uUZe^n>gz!;Z
zL-bsDw;yn>&k7|k7YSi@pFVDCF32u)UwnhUEqBS8ZAwL9m@Lm~+Yu%8<{Ptra{loo
z@~7zb5u_Flps?k-OjLBxJMkU4CAmhP(r4qs@09|Fm5>*kl~vmAZtdx`Dc^GeY#Lo9
zWA1Ax6L&01Md^NQA;tZSCGl2*3Oz<LQug$%tV(KheqN{7iifAJvY+LF_HRR3MIN!<
zrqQ;p6pAnR40f7l&@IIqO24&0v0c#|@ijZ$%_%Os@fyIpUQ^pdL$*Uwv%DPK8&lun
zg~A6qyFGsPdOJG~_UfkeZU&t7^LgnDuZMe7oj2hTvu|Mtty#jZJ=@f}{Srf84zg>K
z8F4Vk)I;>_&5}1n$}pHqPT}`PJIxaA*WjRB#`}0@?}8FwD~TF{e(s{w`wlyze*AOf
zZEHW%-LrLn<f3>FMNeo~OG*D(@Ag+p;|xL6^3R(YzwG6gg_@9yFC8f965|`0QDlB8
z-QHkoZ>_aE=khDIKM>zb;m*OjTsyemvHwkVQj8AO**Vw+FBIyVptt&KvrR!>I%*Mw
zP4+~&D-<FAbh<QNrxFIzHWgzW@cW{<E_Y<Z6#eM~D@ElBmRk=hK;-^hVA{Lo=@O*F
zn9j5F>aoz5zQ=9uxxc%i(60@A%7_hTOl!IqzeqyL)j>4=aI-s_WO=$+XJ!0gXasaQ
z-2f>gbgmt6DEP`7-M$)x`#3eN+sMU3+M3F}0ws$}(yahgS%TX0JO0@LeOmyh-xUHJ
z9yB}BF3y1<J1RQ%>2R|4PDSkm>P;MIz<TgOr8<kvENqya+{pE0UZHq0M=;Y5@QwR;
zic$mIt#P+U$#(=&50NqmUvV~?V=w}SW`9TtgOYhi;z0hFKN+8ld*2-|)R0vfb}g%n
z^ex;0sjH&o2uo=6T~cwRO;QXjCg2q?a2%KhT=<DBaim-0ZPbq^vt{BS1DAy5!Ora1
zkJ6LmtR`&mA-oO>zxdfZt%EaanO{HL9_h_SUBHioJJq0YTE%<Q$OAD6GB~8O0sN=~
z#%p|Tr_#Ok078qbq`wnOCR}|!ECM|Tss(N%)TXPBi|$N8KaHJxA??3Oh23foq&xSW
z<Nz%rH|vUvq9p<?<=NO~x5fwfY+E`LX``ZSMSZW6{mNHJ_*`iJDMFLA(2eCqyw>gw
zgd<u<y&mD-@Zo5(ocWA(UKi($K?}Q+eFpd!Hmf`WEe8eH(Fi}0$H(S(N4x(f*Z^!H
zNE<RYRkTrr)j%WJEy*wKeC(PHqb;AlAZU+g7!$&0x8Px6A1M`dlwu$eR>vDZ?zt7i
z190=r@$*Il%=fwSuBpD-9)AgF=-E|Ve-?}F-%X204HL0aJ9q5fS09b$WRX-{pV0#0
zM{$$~R;Rz;wkh37$>iFvNM<$&{N(Fpz3mE@TPQA#PD<3*_%h?W@XrF~TY<0@ZM)Q~
z^dnG^t(o&5DwFP9VOw_PnoJ8Y*0;wg4?mX;=*k^;GVmG0(LJ@0g0Z11o%U!e<Yf>{
zO}8~5<kCRcNsQK=r<?fk?A_PgKbixQMKL7aP@Gok;uid)%#E*)UklZ+7$#W!xSxki
z@6~=`C94%j;2BK^;#@i6{uvlFrd~R>BKo+ds8h|78S#yAN9qGs!ef|9q0G3CV-5vC
z#+LN-cuD!{=K3QUfDcdTt=G7+1@Y*dUN~!f`-f+X5d*k7Vu_VR<xPoQhSeIqZz&>I
z8rIC#G>*Cdq=q?DexExu9vxooX?bMN9r|7@>>~?Wy(>~Z;J=6@Dnm}XF@EN*R;|vI
zD`#-@1{?mKx139Gs~HvE!XB!=H!hQjFw9gCK5}9Rm*>oE`dNieC0&E}5Z~(FkIbOe
zMUiDhj&ZKjk$l{8@_EXYP_<>;Ub#q8z1?RhRdY=-5V*@#71WO`(|DTRejFd&U7ot<
z<a5EW>}_cKAN!sO-tA(qAXxsDM87M+_YG72cJ5BRt5#yBZ;G};pK&|1Q;F{t(buYT
zA1I$!St;GtY%^c2y7g!6dZTA7@*W?^i@~UP%dxk31X^Yg$;|$5QbXhl>s<s4OF|~M
zeKmcBQBSwmuNcsz@asdNt~!&UPP@yI7|>75AevCexG0X%#?r`$;>$cL1X%v(%F(HU
z>W%xuF=$EyA_5)ACwIw3O@#Dpwg)0C#vn~M&pqqgUA<`Bt9k8prh~|m#&!2d7l<O$
z&}}lPu!J<*6cZf!+&*l?dYC_B_M|p{X4+B2M~kFE-+eS8Hw<k2elHp)^h7K8a@jvv
zjc;Dq<$Yi7bvZFs{SbaZi&&mEjy1EvE0bk|;#@8BzRNDVaj{f|QnGWHx0+~z|79qU
z{1)gOX0R|3H0T4mQI&+iI77igZWrs>-H<yyFCYZ$TYngu>VP9aJs*^NY!+6e2eJA9
zk9WJlu(E$BGG6lb72vg%0P1LSR|>GZ0)hOntm>{iT|wD7IEytlvmx5w_MKOsrRoWg
z1@9KktcbnfzL5=x_yEgM$<tTipCd;4Hn&_TI6`x0-2hS<=~8-+lqMl1HG`uhkbmwO
zB2aT6N^md->~SK1(#25@;4yM*BE<3_K+pKWkMk2n$2jhNRYyfLf%d?^(HIk!H$Alj
zLRmERmt<6?9b0_x?EKYu58VO1r9{#ls^~l>WD>GQsIY3uSp5Zrj01hH&I{EB*j3=g
zVcU-x|AWd3RErjgCG%c1$)|r)TUCtEsOe~OC~x$AzSC?xFF;_Z6%oM=uAp4gZLzaG
z15oC9WXe2Yb(8vEcI+|{9_hIC2fTXs-1csQ@n$bO!$xTsVU9cC?fI(l4w;G61WLtP
zdYDStlu{oIbozYQS0<hM(ek|nsn2>Q-tXuW74bptSz7XKhyaPlwT18vlwk7<`rdi0
zjB)$Ly`5U3!J3sf7Vk<i^h~!+Spy~LZ{A7{cv<3I(*49|oR+G+ihV3=xbW-GYgE6)
zY~304j1>Yz0;{O17C7Bis`k&+QxKXf^B;4&`;hIp%YBIttT!^srOR`cE9VMGmf~Cw
zqS)%ro-Dtwo%@=Os&$o6_$|d5)#{eYLGs_wFmx7zgnK*+B{E@_)KKlB&)}N`XvzCx
z&##4K9KIcVsqnZqtk&4plt6-0P1C1`9VJxIQ@b5vBDM}gvEi-0Lv>hU<l5XHR>!33
z8B`Na_%>WM6B5P<>%h2)8F8^X@2_7`HaOTW-fSvmA|Q3&9;;R5ysV<(wuK(GR#&&^
z3i=6+DXI16MHdgs5484Hu&~YR%HIwq)t^)qJu<wOrI;nzq?Z>;)8_bZI=g@W+GJvA
zK>5#B{PU+SUSyP<#Aaw0W9g8fFz)-96g1d89{7F%CzZ9poQZ^GJUk3ifp29gfxF~8
zqPZfi9LKei{CvQ+kP03NnXc*1;P$6z5-qz15?`DsnPf9&@QWA-s&O#IE^nZ=06RL*
zoGaI`r~+=eEf5Av%SMpbi3-h!>e}*cOJG<t4PF$p9cUn)MX0X1wU(>WZJKQ>#6jtr
zGgx$1IPQDFL_Nsre1jgni{V~Z4kD56e{SS;-v3*v(}1{uP2krrLVP+`k-EI_wg#kR
z+7(IC#aYKhV@Wi<J@>q+txw$4-_^#~yFg)=K0$G(dxvau;$Cd_@zc@CXh8L?oYeH3
zQ!`Vzngs?b>aMmqmr$q%B{TO-^}Ydqm{bb86`<#SnSx2I7`yeKqG{Pc)y_X62^a&4
z9e5x;Z{P0oREZ9;T4yVq1D0+Ot8uH%68jSnD7w0yFDB@`SZks<h_vhZfhp+paZ>oL
zwxqsHc2GGMX`hwM=TdYSyuP0m<=u&ZMkoP<w$-?Hi&{92CVo7oq~PHJZ8?$b?iUbN
z-?vh423vQY{~(FXn-sh!7PXko1gM?~y?VV28dsxenQFPkG54{m+9kICE&BuZNe4nK
z#LXtkz>>NyQ_fI44i66?_Np*(b|{9#?%M}(e;|j6uFd^ZfI$4}Jer019HTy}u?DK$
zkjUqONPGf2Y}Y=@?Mso6aN||nLLXC83WlpQQS1&FyFX(-x9S8H>URLY)3=|C5;!TG
zJ6?a>l@fK}2U)(_T{QG-bxF9cZa?-Jnvo<7lshU@d%Hni8H(w6gldcNa(DobhyO!0
z>qLHkz9+k)AH8TYWxC3=->-NLa#(D%w9Wa}ovo#*xH~$QM6Z<uKo3VH!(ek&?2Xx;
z;*{Sgis|gR=RI%WPDFGd?4G#ASBW1=E<Jh92h*QYoVH^R6KwRBR8lD!n+suP$TVOL
zGC&Sj8#d9RYZ>7%@>g$*{an0PF`Kt;cJWga5;isTC_JOY!Y@pP-v(omw~0kvAgNhh
zy($^!@nZY5^~nFwd0k?-uquPbzu$&hk5T-kfy?DAQ*BA%h6QL`9e2qxIPKe9e%O{W
zY#{Z*u)C5sM>A(%ZIdUwvEc<o{i9<F+~9!P?>lgEN(%Wh_c1D4*$j(K?{EtFSdW+)
z>!D*jkK`1`m3qa$M4$bLa6T-|45J6@t<4`yKXSKg;_N)}9dsS2XBTggt*$~kj>)W6
z+v4W38+WOmxKrb;CGj~N4mX%wLNq`O3)b@FwT7>!QlEg$7WW)&Iaf;jVpQ+;5vAh5
zvtiBpN9hKgyiMb=J62$0bI51_`Bb)m<7&lpPK(!>WluK*7tQ|?56>6k&GGF??tUiB
zlVetBq#jW7NFKzrr>_&P_49Gx^4-;0?Tik<2JySFm9ie6!+v~KxA}VITKc}j@yF;$
z(DEUxIc_oWeWiB2?Ua4&&g#tq%k0T9zmCeBB%>5R(f*@b6_Zt_qS+&)A5^v@X_h>G
zO>OXuBVA0Mx6IVxr!_`*p?ZO){nRG7bV~I9JEHy_SpOKL-msv_nR@q_5fxZ56GTn}
z67lf4f*+u!;VOYdiAa$z(q_o9s?QiXJ`#JV$LSv}#YSjH`BXsCb>w`#4vO7?0+&A8
zpU(tALcX<xQ_};MRq4Zd^VRx0Xr%Tfyd{y&AUR!o_$F?G*=iA3cFlH7Ks`?wL&z!n
zM@7^U2ic~iZ<C$)c3htTQ9(r|N0KPgsamGziXRr{y&USr^6nE9I~ihFyQr-yVibA7
zk!*}d$<L$~hcjUFHmckvz}dcBN3#{dn@aN5qXk9Ma2nXE=r<Iqwwi~XxUym5*9E*A
z5S{f0a*b)Bvx>}6Qd>=XAa|J*JYz!ZN1_HekPrf7ME`=w2muceEq%O$na@GCyY2;S
zLhK6xnY17I_7-FpXj6zUs^nReC6QdhZ!u`4LC^tR7}WH<dPN09c5k-BsTM2(?X-p8
zqw3?D_uLWmI{oMTp94zbn?*DF+v42IP01I36?3Cn&AGwoU@-Tqz#m}ix1DHa?ZkNf
z^(T0WcD4qXV=JRq(JegWVb;|RytxLn+Nt4~rvQ{>{7g>kpA#~)TH8;XqYe|>`~l80
znI<OuBmG1F1HMgmgMD#&q0M|5LwCdqF#SlUIk~wr3P|r#?Kvq(y)r&o7Ep~lCJA~q
zb`+4>NngD)<Bli4+N9o<tn3seCbinl$F``QM!6aSV~&iB6pbbw)UE6WB3G=~5lt}M
z=vP#^oKh=>JWphG2BGIK7(VBWmNDTWVV{@edQ!)&-VWg8wzZk&aGv=4i02s1p)=>b
zJ?!AMEZcWKqAfQw#W_6v=14l+OSM-&YqZhH{qox*mgcqo0cvrBZ=IaktKP^@XDDet
z6$q1z!tmMb#q#^+n)?^5KJULk0p@p1bE2qF{ZhkE`+$oH5*5q1+V=efE_3%3c!k~L
z@nKJw$Lqyd{?4GFS*GdR?mG=V%&cMSfiCzsY{$UFAsAywF#CI%#cHz!<5h~=k4FyA
zepI3XaCDWkPUytLh(5Wnm*NMJ&xaZGZYO1@jOH@p(LCnkKRkz@Cy6A6RSDyOSURuY
z3(^~T>;$DpZsHQ-i)!_-FY&ST__}l!w}*>y7<sE>F)_@Rij%LnzGsWwv|1XapR*Ie
zm|QNMMV&%m!`w*30aF`bz8MkY9APy3`>_9tX>E<T;=zNTK6kbEuj$4)xFL{^dutAM
zdPqBdIMsgzk*qh(SznXGRA)ZJG<6vlQIs{2`M_<#$eBBx5EV`|j0K0#OQ<ujbN@X9
z6D@^a$7s5o#wy%Q#ROMDni_ga+(7!DZ<pOvd^>OIxR(SUiD0=$0)@&;sxxkxT*-W+
zG!Bf6_;4DlP(Kp%dcqfv!;`c>t5?uu6*;gfjlEp|L8!O3)q1%}p<vd<BG$e>aet~F
zc2HSyDQBfTqq5ayjncg(tM2Xxt=&^7cv4(E$fj2swzLJMTjJLGg-L)~2X|BK;2=ZC
zo(hZqL4yN1U;-~oWpQ<@1yHzv+^)X(@6zZc;A@%EWo+S~gG*xgb5KH!%z__oLkwQd
zlBy0Ce+p=cTw&}ZX{?InHXPJFXlaS}<rK}`Ed4nBu@8m+dVB@BlH4iC=#FXk>yb^4
zoMnI1XQgTIp59~V*EHQ;+R4q)(K328JUL&F97UzcP0&vnftsX=F_X;M@l6<hbmh;Q
zd<Q$7FR6o38846T&$J^?JfEkeYRv1kDHJmAT8_1fWfM*#*%anN{b1qRz6(xI?4{mo
zM&W`OwF{p%^2KqeGt_re&*e0F##3u{t?ql7bI2|aLaX1GuM7Dum-E6dRqHkx3_d@1
z?0;7l&LL3&4Y_YiM3%EqP)Ia!0J4+0^G?r-hdukR8Qk^_RtVSX+72uA7IIB<Mt(54
z$0~CuoPNn{ZpT;wUNbL`*C`#cjbWZrAKZQek{{3@S1}={K1xFE!xAP)3BpFFh|;bq
zsQyE?PoPXOMPjWKhIw>w{BQJo4#q*M_<+qe>1mPLU$>*$TUY_wLGc}zUCo(U+`S+x
zQxAkIV9i=?XgfnmfQ{5ES>D9QJvLCbYsB&W%Y~>*o+|2zPVe2}ezCt%C7;_K%6^-U
zi4dpZCRU<^m$fh7eFv&;3xosrpPiSnV;1j{ASE9ddThb@f!M?owz8HP$J)ZYM2cJ~
z-~kL+lQVe7mWGJ}ia9X<^1Be1-KzFpioZhxBYZ)(qOOEMHwJm)FO5&<jv^Al6$UC!
z$@PnOM>E6ADI3ZkU@4#uihwT>BkC#ZCi@lUDxc%@LvZy${qdj$ku`GpdY?z96B0^k
zOY$&4dH8V{{(N0>L}FUhX@FlEliGy*=4khF+nB)?*FrDL&9OSF@7rJ`-qAlWySsN%
zm0dIm3WkE871=PXRaCoZ3@{eoz3UOijQiF0VZO)TAE};aWX8uROG;M)y1IrOHFzY_
znyT9$0iC#ZEMO%3&XKv0<>|Jvb(pB9_!|fw^xJKkV!KWou6o?j?#GQQRFMT{k?`A#
zv*ggAD-nH>n<MEB3_P&|<ZoOY!yrU>RpMW-Nnm|=fd4mKIQ3E~-Xodh^je}M_Yzx7
zzh79mBevIZXci<ZQcIQ*p;r9l_3&`XH8SZ^9@Ulc7ASL=U+++m3j<2qcZUt-IpVfS
zx}UowO-?u--}GSX)0@-!vlv1B$316JN>yfJm`MTPJPVc(1anM8GgH%38G(eXKRAms
zvuGT4UatN9D5TY=R#AxvI8pJ;WUR&k?QC-&M^*5#pPm#Nllj$}p9VBFHMf{!jeOWr
z>v+e&=cycSQ1kt0wZFz=4szcj@tIeZ$<-qw=w3wF1Ia!QUyIu{mdhb8J%_mYa6+^T
zelIuiA4M|clpx{QZ6d^HloNIdbv~pCdbcecZ`~1A7nsbHyzOw-2(oR~w9q<_TqmnF
z(e2HehmHoHoa$uVqp&@;KGql=omF_vXy8!OVH48NMkw&COWmF4q4|3#e@JRJKUt;3
zL)p$Dm<1c#IkpKmE9c@Q`7EY}o5)-@&&3t{P3(X3jR#NX<S0#>w%D7ykJqT?p6FLY
z6=5jfJ@5XAI&5Y+=%@$F@vSKmM`%biN^4e0ynhQ2xlItbLU5ajd+Uh8HocQgZW=@p
z&t+;^Qh9q05ity@N@I&~tI^4-iJUxdk3N5TvX?X`@;KRnoi>}E>bHBuS9k={^+^hG
z4_#E(>&b*mmh6Sket`Icq`G0l5g}>P^)pwgpNyKxPq#i=eKSuU>+X%p{03PZXS**(
z+g<9h#Pel6hX&+`xP5X)(JL&evk}){uH4ByKjt5w{WiYsFM8;AIlr`~<>|~y+4Y0J
zGH1)>=+1b}PGL7%b%t~8zTqQuxGo$^;e29z{Cg0rx8S8gr_b|f5Y_tqdhIAH5x8<U
zBu*4p9VG6ZAKh!yYlOty<zL5T>&Q4tnk#=di!_IC&}Y51*Hd-3SkmQ;9uC^hcotPp
zypC<u{HU~x+L^uSgnAJ~b5U#kU8WpWPjsuA4)eoDmT|$7sQAF(8J19!_ut$7AL-lX
zsn|Od)#g`@RNWiW->?Jn$N(7=xnbf%hPHP>f16nvsx*ourO~}v>)_YDspL^Kwh{<h
zIo#X#Kh}jsyg(v9xxLs3)X<*B<;C3XETvs&7!886PH#;cnVj=Ye~2#@BFEyg(~klX
z+bKt(*8OD_5C}PN3z~(NT*dg+4|N=j5YiuxqfT&diblkx9`ZeE8TDsTqj|YO9e(kb
zB6_f?sui|^?oAV4t;b#O^%IG^e!*D5pGECfqj6>5cb=;D2XVslrGBvlQ*sF?|7a0F
zDQucOEp`g3XR)MbV2VJ$eE;XW!7{cyyGFXRKyxI0k$?ewTN9sP1b3A)O4KaPs^$D;
z63+6P<CbU^0RjC4=t~NM-FN(sjt-e9$egb%J-<6@ggPc(W`uQHaq(IT?&i-Vki6TM
zSPT#Y@~EkI-!HLL=_w(9xuh>ja*(xt8yD*#Hzof<^HoMbng&DgCY~aFb4^kdUKLqh
ztB0X9n&pVxNwkh3>Od_22Ykys`EIX>;!H%N_T_hHSo&`df3W-QF93rIZXM!<;3+&d
zA)*_aQ_2k$$!)L?w@Du?cOoOAMVtWm``Fzt1Tsu%W4DuGJFP7@f-hS04F`il$A8zB
zC>V#~&1ntFDr+GrcOr&i?L^1$SI&TZAW^+QZxcR+->8N+RB++1PBuZS!<JaZTkE~Z
zvtEmrVRFp9t#WXZvnFzI2<`q6H|BLPIT#rU)5=xRE=6()^I*MPqe8uj{O^`P7?WX^
z{{+$1$^2dyH&!CWw#nIYlQZ0dFrusC0ob~x>*p%*&P#Yuft_+PELSZ+#gtY-$cCr~
zB)uQEjjioVSf2+iK}D*>Fm0qZ>zzwgmf4+8z#E~hcyt0t^tOfEy%PrvEza<1K@w<9
zIyC*hwU~%(EoD8<gKf0KONvxX=U4D5s`!kXB=t1?o<&C90(%Tr0{iv=Us@9hNJ3J(
zU%+y48vg_g8%9L6-tF+&{>zb%p+k$#>8j4cv8X8D&U<E0OcWLEk*Q4!*Qo8)^{5)V
zP|9w!gv9#oV2_9n5#C>fuw#F$Nt2H77s%AoM49t&h+CG^eS*q<xPEKI)nYCE%pb}3
zrh{C*rMpP+o*mt`Xka5Z?*``lzVCHwO8v}j!B=nlLdo%tnBINeAjD(wsx3}+C{RQF
zkuTNM4O~9iM!Gw0zjZdGJlhLW7we1TRzALKd*rZWdo{tMv+BLZ^@^4AkWEx|fB78Y
zOjh{4x<yqY+&VozQHHH1t6frh8j$&;LVM(*=Y(9yM<iOdj5KX-fyh>+w*!$da#~de
zV2F0d9cNDdT-JVa-k0ZWi^iK&wh!_C8jp>_URlsrE~9f6oarIYJTf*HG?u#OqGXrg
zOEPoOQ)8YIlJfFSJ4Gv>Tf+)gSucRl#DtN0pLYC@5^e1W97sUlnAH9~Hnw7|I>g$?
z4o>-c-*qY51Ev@nN^4=Ih3ryOy_nN-+sk2CE`!XUk;>8W(R}RKGt&tzV^mg8bYorJ
z*n31-yZDzG+w);|#WSWl^hxuvM3Zi#mU(S|NApx5lXWt`o)TIQe{*h0k<XQ*ck@gG
z<hWxnxc6&ZaFn_?F*3<o&p6w9l~_1QDR^sV^rwJda0wOO+r5^3gWP^isY*%CnC&NZ
z$iQubny|{D_NiZS4gy#O(riH2t|-3ec7NEN?P7dQm~vh=^+vS1s+KtXz;Z!y#-@NR
zGUnx%caJoKBZWRC2Wl!9b0wnF0>WC|svpK<L_Xe{=*^l@xCUSzB8iXg*rKGif2c%+
z5jSG}tQ2OZnbqv@+U+ER5Lv37J{fB0!>n$h(K{&rPJa@IH<Ucn3E{w3K-5>@7VpaA
zJtIp<*WUGyW}D@&AsDOO+=mW1%VKy=lkFDA{O46R<J};g(UXI=j{aI~n?T?goN-Av
zA`--Ss2wnS!ZbOsBG55HTk0za*^62^=`ie<w4GVuDH6q`%{{sBgr+;`Ts`skVuyQu
z{DI5h5cN#aT8h>0I{`rU77PDTpaYsOIn01*igP43cc{GqRL!{XX(9YblT0Up9PAy_
zxggMP)Jj+Om{wKsEJ(a>a#RbQg)AvC@!N20a3zISW=cvT9rJlwhEZS(T$%@|2*KHQ
zIzeQ#whf{w*(`zkMXbd~tltMAbYKbr!T^WwJhLr;!GZ#DzS<z&i2ZAwl}UX@hm5?S
zXnJLUUr@`H%$0hv4_+jqW5UNN(qqZ&X%<YlDQZ-Rw2X|ab&2Z<d~#Y^CAjd-(Q(+*
zk2V%4W+?^Bb<mO#6MvgyfDDh{c-@xkUMYWvWe%E*z@eFYfJL~0JCp7x1$oHur{(s&
zVDGophC0ccnido{sxDp?`u)QbiELqhTVLhm4)!$lc>{7B0s?5`12GR=3<Fs2&pR&4
zHw29^Vd$iBi6woYBuE;a!MifLfC3cT__CPUoAkqMfHnqpVXH;cLBEi+9-ycAF7>t<
zhP!uWS1CFXlu?va3cDOOOux#a?|VB}Dx2P2s`Er+SwFV}M<nCCj9fQHr(j=03rXS2
zPsWSl`Zo(;2w|H7mEO7}sFlb4Twl`XUZbkM_8=o#k_Nt7yH2d2>PiO-9cneT*TL?X
z`rzHUbCx>pN0xKv0S7xC9mvzI#wUE+JRt(<2)-#z$>rB0b5U=y8)qUO{`cLJ%7Sq3
z(dh%*MGY{>?5QE2NjnPav-sD?y!+<$(u1ZWXP9HJ3gd)iQ}vx9RMl{?%NmjP6bZgx
zxozj|{_4;p7Wa|LCnzOawFQ|^!-JO&*vULLq1yK|tY_I8aGoN)J4NGf8ZkwlqOZ{|
z!b|`aPSPRv+VQQaV^UHeD+-={R>Pv{#^``8_cWL7vN_}j?;fY)fAMvf8<g*g`wrQJ
z>jM<Odw)%f*RCFC!qsmOENR0RRuMVZbaEn1%k_^R@K_bg{%aRFrBDh^Bg1{1%7JGG
zx@s<H&#zH*Bpvk(>ot|6lLB#7YrGA0?Pw|OI4nwtHOz-De^3hGfb@*^>3>P|HyZfw
zR}3=+4eK6(M??IUm>RF%A(zdhOyBK0IXgMl9dJAs<3Rn0GyOBjUerp<x=p?OT1#cw
zZ6j(tt9A0A`Wc+J2Kci8S3N#-V3#)rj*!LRrIQ)t$>4a$I@kMdKs@+lFJjz6eQQJ^
z{u%A%$YiYb7-h_Eg2C&GB243>Vv5BTN`=8`4j!4=IbwkNu8QllV8sgQs^eRSQ~p!y
z$7FCerMG+iG<D4w?Vj5f$)q-eFi7d~u<-`pE_wmNb=KIZp&COqH28O!*QZbi@kH>B
zIfV#E9!1Ez3iG4FJhoKtWNtlQtm+*6#6F(t5gbcxypYI8iQIwVarpmEk!JZK8jH%m
zV+ga?XN@u<2RmDy|1ZA2GAPbAOFKb=1!)3wLU5M^0txQ!65KUdaCdLq-Q8V+bnxKr
z?(P!Y;d?Uk&hE^+`)yVKp`a+}=k9Y~=bTGIbokmMPFNmbVX%rox4agUs4+>>TURGW
z$_%C45w6{UHJZ?w02{>K5|N0A1f5$?1ut;Nj56i3k)OId5rNlcz4JMDp3nKC&CDa~
zu`SF4lpuX{@~EW3L%ESg^8ma*cCTwGQUSXL*gvao1z=)p$+nl-8ykOWw9wd`<_Q(*
z4yo$!LeUV`r={7vx>6K=qIBZ>g?L27qveueJIwYSrK=QBWr#V@9Nv^DmRQ6w{eiZb
zI&i$Hn9&JI*B{?j{2)j0kcSjzYsXxkf|XPiDYsWy_%(dR({6@>Lqc*YTJD1VUTCzM
zM{ghCJa*r{CV9vf3ONILWuj3F5`GZB0i0HlAk0)K?aj1^ihrQ0c+h$<*gOK*VE~Jj
zFw{*Ej8>P+{k(A!Qc`TB*Y<%h*%j_|k}W`#fyB>j_%TFeTNOz!hF=$s!d-jxi`pA1
zF9z;@b~dzMj3qR&UinqEr<=;v7nZN7^gRaUIxn>2*F=gxKVECsmtx$$0D*2+)4O86
z=N#X@J`Ol~rO0|4?yaHt*4I>%;p;$*yNPm(45sCZ&j+M+lH+?T8AC^Hvl06HHiO;K
ztm=cW*yH^=C{7*I@wI}EDBr=~_&9WB*@*-tG(I=I`vg~23;5J6S8qx9X6K}q+z>1v
zHUExB5K^Y(nCfY?-5I{P*@!5~x0dEx-Bw5}pDm#c-Z$stQ)qD|qFe^DEnKRxyY1h-
z@;L^mGpN>M{N4YYck=?Yyl-9NIW4uKAttU*SuqDKd7&LCSj3;!7vEDQA~_edXGXqt
z-%<#vNo+do(CF&GLpI@z6pLXgsp;3xA6tuXr6tL3CgfLx6zkok3&p0nglcM>$j!-3
zdq{0HEb(~|A1?VR;(ykghGJi%m$jYJRVBr!J3TRe9{RY{^2Yub3XTcG!40>#A(Qwj
zwn8nuU+ufR-^k|C1&NmQmRAxCFr4m(BO^El!q!z-0wxU(IHVXLQ2)Nt*DqE&l(=lw
z1%92bCtHs0y5ufMH<sGG#4=Oo(H&%fxepy&rjtsR+Q)rHJ-pi8jbtowqpn27A1!Q+
zUaasrWq{Zh(AXrpXxb*ofrZ{6)VJl?Jy07DDeQfQk)%U(E-xCHy9{My@MDE)RW&+{
zohMiR8+Xcx8ODJzn_Dds^9Q3Q%2DbWU(#5g-Fg-Q4rWHIwF^V}PJ$a?2FS~Wzco|7
zR1|HG8P%V#A*~k6UTI(4qu!A2UwQGKUURIx#X|8Uqu`U{!cZ=Ez34KiDHmTX!Ih=a
zCL$N?@E|w*kE<V`CS2MrFemtQ0`saSBjzF_R2an)rP^-fbrG?|V?A*08;n-F4(@q?
zed#)7ISwpavncQJUX7gr%!PiDPMBW^{ehpT3YM%oP;vMW`!%gP9`*_{XfVNxoUK6i
z7tXs%sTAg7JdZ}Z>cLbtTSP$~Xasy#2_U>Eh=o#-v0uP;3Oz8hM=b|WXg_%Pa{Ap_
zyHl0Cf+@j(WwBV?J^xf$xZY1&p>XS6vBdN#mQRQeMB^k~zBg8PtfiuWdntYKXG%4-
zq@o^003-XW)A^MzOC6zym3GrdIzQ`hr_XLOyiE|@(?H7V#OCmVbQkd`BM|zB!{CUk
zhdU3x*?ngTMvYX5Q+y0e+TQf#*PX(6ro`+n1GFYY;rqb>(sW(q6%%#25iFC2RiE%S
zZ7{00*in^d=mC?@KWwg|_g%rTEwYVR=XOUux8bHly*sQ%)@F7F^05IZw$>+T*AvpY
zx+XpU!da`WB1EN^TUaVpE&HN(zZ9`}3|<E$b#(!Pe}uHfhtG=5r}RQk@=@eB6>b?K
zNaYE-Jv*F|)TZaljU8NeS3$lC>6)UxPAcW+L$T0R&+xJidnOH)1=LG#C?blfvkCXQ
z-Y%O!DG9YHrMhmxi%-awM>bJu9qIewlDHNiYWRX(+SZ)a`Lwj)6sTPI3ml(w{QzRR
z__K{~4a)r>r_HFb2cn7bvIJRcDvAAQi!>IFSKe~|Z9{K%WCi_<OOz8orQGh5PPZUo
z;d^sXJ|8K)wSX<)@+?qKougJq983Yk4S2`OX-@#1u3u?K%JSbN1^;ah=;`$$HqGv`
z{5caPzfUgkg$8Q~IT@K~rOE;>(|46EKL20m_qk#*#sFOC7dmhAhW$u_-Rn(MG^<&s
zhV6vpb+aKjzdz3;QwC30epGBIyLAu5ZXxB0s}xA5?Vhx1+KMDb_<Da+sL<kKajg1n
z0Wj5+i!R2`Dxi<p>w3n<#wPFNvhK&~EwxKtFW%hgS@EH?7f06SOQi@qRO4=^cLObC
zv9IZ=2!XR;)O&+puUa@*Tdm3iz2OX5sOElImGZv0=wi3q<ppA}O8SFs0JCeo7CruH
zNing$gnW@*h(P2AcVap%&&NygG_1>2j%_h`Sxb@j79Cn=2^;lA2S2i4?zs_oS03vj
zm?(@L^xhD7>Mz-x!z^F9x=9Y(i-+PbPW{hvE<^|kC#kH<=)^j%VZPV@2@)a^&#@>Z
zgAtK=r93ynxp5|L4@B@y0Cbww_{-`64LX)AVH7{%$l0)W|0=^mM6Alz7+jJ!PwY=8
z4Lk7!Mj4?6kPM3g@dS6`ujF;8#ZzKaaiGTKuo@~<vWhz&lElilvMm(wQx02kU*_^p
zG!I491YMNYU-q-sd@UmL|7^{0dQF*^IPYJJTU0kk`38!1a_z&%G_Ph5G1Ra?@=+}+
zRJ|R2qiA09;5=KhaFA$~{UB^zFNsYjKL-F&P;X2QYZAZhA$2Jr<S6GKQuayW$gUFD
zuIk&Dbv5eJ<z`3}Inm(++0KMAnW*QXF#KW!^=1yJZ#}K(rQG)o#RKQmqZLycq(8%i
zfa&RKLXsyIg(gz}t%&{y<x89khTR$jX^H-{<W93leQ@l#R{bu6GTq6i!TumWkcU(x
z{KFS((7Dk-0=?s*#X_Ak{R541xg@}p8c2{iAr;l**Z9M#*vh^Ds-QevIxx(@;9eGG
zzQtvg0(BkHi&_%t1dT76>^lT8Pvl8}6$yut2Eo|hWKCfA6nm42hS-00b)CLqIIUZ-
zkXPhS`vH(X`|Vj3X#7N9tz#+dXSVGK=3)y8WB5i@5W(tR0R^;9G>*{yB8qhG6Dg?x
z^)Ooz=f1h1kdSI4Jm@SEBp#8V<x)iBTgCTI(NV@iaU0_|wt7HzS1?VGLzX1<D|miO
ziXH;zLvb(ZEi2A0p)bR<I%+DkdmCY<xGm2_+Wci0t?+Nbi2gU+f5Mo)xLzH$JIHSZ
zuv4`}=v^J4#9Hy`T^K@Jd@+#qcD-K0E(V6kPGK8pQwhMl{})!2Z2)<p7^qAKz1=dL
zE2`hSPhb-Q1B6DRUOATw^b%fT)N`DsUF`dShT{aE;)W0>vGf`)6!KlDl<Fh75ULAx
zMx!w_2(5gMFHTIArK_rxfSN83l+ZHrF5<98us`%U0fv@oG9=mR9UqYw*bXi}swLS1
z7fzfUMuz*=x#%!qFP5+E4UFpyeU8!n)OD=J{<`*iXN#hPiKOwYYCD2d>ckZ5zwAi=
zefj>^(U83ZjV_t;zbqkpU7naV3va+KBUlYskxTzHdzB>=sOe{}PT9R{;70^uh2DJZ
zy|~KyeF@~5(2_G^xMa5bj{rQLLag@8c7$4C?Ot*CT6N65uA_>=%b+tIv5P&snX$^O
zgS?N3y6_;_tcO?p#i`d;5kM+igzMoMK>EQdlAm1kih&*q5o1(l`rmBE&>5snPAb$l
zWWpdulbQjBq!uR99Dw;u4#26MAc-DMWbplM%}5pG<5d!~n|kKGN&d=lXZiJ}q~;z7
z!eOm`T!uG}3=niLZ<Dp;j`))>XRz?}G18lpsIb?aTpQ5DZUHD7B542S)|-AfrCm*o
z&=RWLEm9vs-=d;<;Pn!*kqDiD%SB;iU7nSQs7;@n*rL0;+hvdxiRh<*Drm>)`glnU
zOHl|3`<DB5^G%;c-M`+*?;st&pS!}vj!6M5&W8rl!pMAavWx7lgDQcLHkzTb#g||0
z3&(p$%G?XQv~>_~6H3JA!~&M0Z5bC&P8TtqcQ)fQu&qI-4UM~_hQ4K`)TXU<?ddSt
zP(+roxuW#ApwDRLpE`wPh~n384pYtSPmBXY@@|Nd%Ks{H|I5SG!Jra@%N%|QAJ3#H
z;M7i^7Cwl5?Opl;rUK^40}BI3T$NIOiaAq*)gUj|X8B9-@k-eFdGL3D$7j_<)@ZQL
z_%9L?ZxJ6aC9SZaV613s<{}l`8%ykVKRckOj?2agq;4s0a4vacLc|#4Tp~X|8N^0J
z){g&0VJCAEQIVeb(i`H?N1iYW57x+BjNaeMZJucUXyGYTRzY+&wMURpal{vfN|;FB
z$qPNe&SS>oiR?#a#6Vb^2GbSsrSm%%o|`W>B~i$vOUizUwe38PZ&I$%Qo2L|pSkCO
zJ8t3S$d5I3d!N?=2wgsa-n;?G5XS1m1_gus?HvqP`Nhb20EyjW7Iy%MffJ%tF1ITl
zXDFwdWmi(@?ai)P0Q7tIEwe%8>+JYF?I|xU6InQ;(AK|{gFn^4$MIoYH@yp-DV*`3
zi@P{=*zW*9RuP~`n{0Hngt@i)z545m$v9a-sn$mP2i0|95`P;?4cTX)M-tx}Gu8bF
zBD1DCTgM{=vYYNSe_b}qQzpEZi6p!}X3~oL(knUokL7f%G~5mQllD6-u>FAKY}tw0
zT3hfXHRTc92og?uWrR5I7s(~=6#kUgBukohDhC4!?~|<6sQ@;23D+A|4v^P8iHy+u
zuC5>Fzf->cFC3e{PNx+!$!Lqa>z1CG;sZf#cCB2-@P3!Fitl`E*JfuZDN=0HmUb{}
zLDu|Tz-j+}q)zc@*Op%O6*P)wWw{>Zx&7Fzb0Ku@uWfoi0ZfDIB+xCz^}blO!3uVe
zJzx0IbB@AJ#TX0^4<Gl|8bsrgUFZm0$>3lr-=|FNY~fe!ua7DJ(EWk&xcoIpb`%I@
z?!jAXM&6U`CRbn5tmurJtYdw|uBHhTG8p5n#H0=UfD$M3bq3D)HBE9$Ln1t%-S%M8
zKIu^(&NpEOXxcRD@n{#$M>VovZt57Kf6`nfxImC!U_d~l&CLa~<D9~5uAl(eOPS0u
z8aeu$HTy4U%1i?+VHY5V@8dWLVvOzf;At$Ewwrb3kg_T<N$@ybZ$6aUOVsJ8cBUZ;
zozJlA`uz%uMoj83ItHI#Au?kY<$G>7);|m)@|=&*0J^|$2wTGdMYebchsts|jbo;`
z1z5g*PnX^8Oa!Er-=|E`9{}cIFf`Dqa0sU>lYf7cxw+DwFUbb@<m_`+0EBBfjz1R7
zd7|w0`;+ZTCTD*=!8T9t7bSxR1WQE<VAztn-?Ol-nZJFea8yBKeGfiqU>yTv<cPij
zp8U?+5e{tnC}`|d47T+cJz4ZBE(fh{!WIR)^U=4A`QAX)l71ad*>ng@UJSgV=@ypx
zx;Pt*$EJ*GQzDgRk|y;@<zD*#4>0_L=EHl6(Kb*HU;`?~Y{H7~Lxu)jb`-RR6ck@w
zB=NRBF%Vl{QkcHiAW!bEH7>=yM0s6#hFt;9ulcWEDozi>ek$DS(RK8(mjxIw6w5`N
z3(uBlHr9Pd7Po3R)3;tg7!x`K5=rB9qUv_v_Zkz?gah-0VpuZVDhQ+r9L)56GSax-
z9FUVQUdc>_(?3ov;B2urhUjz2n4tM?l5dAWoq!pEJm6udsFZ5TvS=mXEvQ;J)O;~6
zu`dsxUz2Wg6y==;j<Xey`=O7Tl;SQVHhg@?Kq`>(ao<;`r3U*8AXFGSwNdi}P(je*
zl1Wnf@&ov|P#hSF*!J@i;kI7Qn~LkAzvI3?{2Xyyltx2^Tqk{r#avEx#B8~|NW!!+
z`-`dC0@%gNHWE<;514V`>(<cL+3rXqHJJ02zqwu~g69Dueroi4&;WNX4x48Fdm`?A
zrNs^RKNgb^q&I&|Z0ix5Tplr}E6nrO8a`RC3+~|p$>{dtmpGssZa|I1@RunO)qBKm
zouyy#Q3Ff)p0cp<IPf(Zf9P|P*fLHisPQ`QxE^Kp58(}Le@o3R?ewMj2(6Q-nqkmK
z63jnREsO<!#a<LTu*jBYk-jeS3r(C-YFV8h9$|PQ-U>@GM#-zj?j7!1ho?Ct&NQ=M
zxcI+}0D$3AA!1t>L99HQbTS{q%5XMR`ziMZUczKWM1FVlVui|~pT79}96|aiN0-~@
zm@Ao7ao3gm`F`ceD=D_W{+myT0E2AxyL>5N@Pzqc+5w2kDdy~D0ciUX`kM8NHX&P>
zV7eTM@pwAT?}`Y@ZP+xMo@~hNm>MrONQ;dDN6lP9j~hPsRmK?$*#fMY>ITdOz-73!
zl%KPjg!P4Tcf(nFx{|Dl0ySTCHDN~fm9nKg7C0+h6-Np&i-=V3S8xoFS(<)#c~B6Y
z$&MIJh=qm1xal2D%q_!p8LNK<_(pV)yjpK0>ty-nZ=?O~TP{sO%<v)hFY?d5zMr6t
z4(!*529?i%j#7PxbW!=BKSC6NSdLP0IGG7$%)<Yq8&DUOOu|RKU}|qKoW;ggub0Ns
zEhs$VH<4}WFm`x)xV0#gNnswECuFrEn$r|!F`FHg`w1uZw!hQ?mhZ|Nfk1Yw_Z%SE
z($ueCxk=vx&ESvh%Y(Nh0NMC*136(T8`p%X_a#PB0AQ^w^sD*Y(;UdORUWb3MZi)L
z;={5i_^%#lj*p0IT1Z1Mf;RjGb=u?B_iaL@AR07Rkq~Qi!)|jq5V8FTDW!dv4c9pi
z4m5$RpLJKR6RmhGy?r6Pj`Cbeo=7Mnoqx(gTPUs~DT!xk=B-k^r0R89KdR%HZW+Du
zT8$@I)<G>>{iAGxpf*45)z%H?2S&Yf9392CXRmGpL>l7+w7?#9#y`|4FnSHg^?1WG
ztg$sI!sGXH|Epa52e<GaxD_xH)7dyy=^vhz;M>wDr!UFi2-Qn?mSk!S%k&LtEr>*(
zn#Hzb%%kj**D+=j4|6PQM=QmMTW~?E*dNZ0#8srCC6B9~Yqqm{wg_Gfe63h4csej*
z=0FK<FD6W~d%X0$?Na+gxMFEc`Zh!O<guTpV`YU=U_@1K>Eh8e*eM}k7S*cpGZ^mL
z*0oqrR>=lA?|A1aLvrK7EIoNMNU~7ahKorUeeEK~?xw)`AGoTNEXYIYa5+luX-Q(w
z`t*ASZJt-4Rkzo|_Qm%Ev{gn=S-Vz?;&g}~t%4h`6V-{)_rP;WT*C?Ib0JUl5Svo7
z3+EjIN<^_>)>gl~p$o2ofuXFZAX$L?`Tj<6rUlZ}K;&<m$x3;d;JLbVKm_F&60z`u
ztKxOQ{*p7Q0U4e$MBW7KbX#@6y{hxCb#HLQi$H7Ha-R@=neX0y<^YY=<Lh^QsG;NW
zqAIl;Ul*!)Ai&p`qcP&&?66#=%y5&NrD)n-sWk<ATTRrNs|(QxJj%AKSL%3^fY9*S
zV*z<k_CD|Zdbs`h_E2yee6&u5R`aCgm%y;VfB^-nGGf%aZ+)1xT|7F7{CJ4LL_U1Y
zXd7G}4^X*VSmzG_xbD|Z<aKjv5}Nc@*T5*@-JGj2iP;A)&f(Oxj&qB8@@tJFIYw*E
z*AuBCRSmvjz@Te61^G5^1FYD7i<XbWZ-^s)8PF-5TS@YLc(|C5K{|G|CJ+%3dDCml
zD$|+ytw243fU9(=D+H{r%k?6mfv6+Md=WY(H7CDb)%BAdKyD#U2xlKe+gUSo(YbGk
znt`;D;8p+oJ|N3Ie$@xp0njqJ?b{J4?H?EMJqUVesw!X)KO$hC0}hyd!8B-fL~AYQ
z;UTFnnk*ZSm`j#@V1P~j%2Y{tLvUt(kiMRy0XimQ;H0c?mm_ShbYWS0*N?O|WOAhs
zk>h0mh(vb0)mqbdnKTzP8fs%K<9O;05P-)ci3JeJOdfH4n*gPt>=~!?SuP3XdMd1#
zeSa)<jZ3Y>9FjX8z@;Tw%;t(rS|e!w^0wSnR&1&w2arWOo9rg<`Tq4$x(RISvzMpJ
z-f%(&M1Ve~_SxbIo?<{(kv9k(!W#V68E9)s1Xa2EwudlNdB1h_ldPl2&h0oS*4{0n
zxI!c1o+?+%QAUXRbmTcFvKzKHVo6d&^EXKeHgoo5+PTJ-YEhNjNdR@FjlAO1ravL)
z^o9g~|9k~?_Jk8t{Ax13LR2hM%o%o>)9F3dcxFU!kBZzhR71?D`&ojL#Z5-HOqj;U
z@FLL!4m`8x3jV4Sw=L;_C$t<(ea`faL>wC?5g6Eh03?fwB3*Xf|IOq4v(osN72iK<
zMH{u?3%IVsP`iFfDLo%Nnb&@C^0{4`DhcZKt2Se?x6g;oNN$>nKcAk{+0Hqc(*o==
z^WNCeVf9b;zn1$6mQ5|c1E1~-O&-|uj+Kyrg_`%DVQHukeG<O*zs`fLsj0EcL^Vmt
z7l<}A-rkdJy)2EX{V~!fmOP#>HE*=nr{y|y;3~~OvOMCUCF8Rx-Kw(hP*w{GQI*)<
zO^GX?{DxHW+oCM*-VVAK`g0;jsZp;Bet)|PllhKw-`}dlq0YqoD00D~QF!U?VdT}7
zG`7~60J$2K5*@DxSAMg*i%WI6c7t8K#q-rd+}*2uqjk>HZ}~{mW6ml;7{qt-EHYE*
z<g*8%cyWP@JJCYp)wU72!-=Ic@60T)m3?H+$~B5ds%HH!Pb9h@lJ1(!EtPLLuwUK(
zUeS)sR<D@Yk|r;OU|{O;4#uz=LNV<e0=507x^ITzDhM2J3MwLKSlYY%SUkQulsSv#
zr?zS!fnnEA$wk%WeQ_A|ntYIq#EjHKz7Uj0o|V1tOi9euPFT8nEId<L%f|Um6K<%5
zD3VeiFS>sr2128^=lCwv%)m+f5|ij9CMyMul{3fv;g8x(c)d@7>fw~X#tubz?xGxU
zeMjN+2oP)Z-au4%o^MACfcaCEVvjpo!Vf?kcdh0H=Z(`|-tDi|MTR(rVoii8C?&&r
z3fXD{T#fX8(K7#9LWf~=^+6n9-I7ZFA{GFyn-N%rt6Hd{fbjd35XxCtl;ezh(`$@{
z8#TX0&z6hPayu1@!Dkd{?9j1n=WW~|Vtxf~Zo!1}5QYXiV8D1h->=N9%Laly&tft<
zkI+DgT!L)4A5|*bzN6GP&BC1$c$^&e(N)(Zq;SG%V00!!M(E)hNQFa3vllGg57d1U
zxQG?1Zq4QgETL<!ByNIi0&(s!?blCyG@(wMW@|X#1=|A93G3(&3U4=(z`h&T*Os0k
zP~xtX*AGMvuh1Wc`4``%>>nJ!^RLfBRuoCq1o4+wX0K<LjewHywO#1JLg2%aI(z!{
zd;Rv8;0zPeYUZ_4{T&XQ&A>}X%DQ8PR9~ca!IY7~bS~G@)`bE+uGAPfQ7<^r)mbE>
zN!z6ri`d1H<}7$f%h(Q*))gdj7;VdASF-O1_`vOaUR!K^leQK%i}LwH-%qx?)`T>K
zl_{TI0(?cj$~CV^Zky)K#S2fh8^kCwt*Rn<w$IGXmp^9L_1V!U<B>aoB&uFt>RHG8
z;~Ce`HGJj;nsc-aQzY<LmDV$9>m4ajgbUwpl1JZ?l6o2ve6GCTvj2-%6Jt<Yo+f7k
zfisqcaamdk`9Dq!aA^Max<Q1)v#6-1+?%urMoUn~ql@51uVE3}?z~->%kCn}upxVG
z7fk<AIk{mQks3jO^#esdg^38ir9~Z7n0!|)0P`^k?iV~H5QFOO@g=o9S_Cz9(7wM-
zh=TIWKosdvf0hZ<rpm^2P0#Fpd|aSmxkf~kA7XYvdzw|4GC05W6$v}7A6{Z4gjQp}
z>D;Oe%~rEg@8_46dI2Ob<(@si=x$%1!axYC5RECp>HILUnIw;6vIWXmjtO{oH?~rZ
z2jZPL5tByzH1C4l+F8`&=(Omv$g6Lw@N?}&L08Qp{}CKqkB}!|@q=|eT&J{WY#v?H
z#BWksKG{AzerXxFa3F6WG(Im2Rt!&>g(jK7!5-by#_E5|PIR`G#AD%Sqbrth!?0pZ
zi-KF-?6$Lmv5L_n@qWT|0%8F_SP%Kp<XSXER$o;SK^T$Ne>x%YGeQISb`3O6508j2
zd{gGC{O>zGCGKNJj|a4$svlMnct%}+ganNe>bes%LrjyoxPXQRW`+ae5~j%_C}fOI
z**NR2PYAd@pB2fti=*%kC8{6@nx3@Wm%AOAYEN`kxl1iLZDG*0bD@{JP#jjK{Swin
z->zwt?tU|!WRE&I))KM2y?gM(5d4bZV5gAhJPUQ%k`;shFfL){oPxd6&1xoeM-m}H
zn#^r_!*Bg~<mvK79buKbRrm-Szv@Ubw)JHd(@eM*&(moHJY8-9``n5|$1778pr3zb
zXL99y{~09MeY0@6bmE~L931Ro#|Jg}?JsX`7VPe+cc4EKVQ=1Z@6o|_2C&hmJv)e~
z0w&72YU}GwS(F3qPp^+vq90FYs%+Xg9dN2__03pial!HrOCeHMPgk{_bsKC*kuQ)U
z+lojr%-D0`Ay!<Fo6+=nM{Y{g3J)F<x*BD>Edg_Tx%1JjXy>UD68E^avD`X*8L<u8
zmAHqBCPM1qbN64`w=I)2Yv1O_Pp%U=7RSh>Opjxxub)Z@j%$UkWzl)n#e(4PQ`A;G
z6~^Nq3M|mB1(}Q^%B4&_sZGFcBAOWok?~>Z!ZRg5_X%3XehNIPU{Yw{DDG6u)1lIP
z$VU%rfs~<v0d-Q<J5ui=3X*wM7WaP~0Gwxs$@=;I{eAgn#$g#4GT#5?CE(-r6Ul&w
zBm!)Kkwkjt)V2JZXD&t1c(*ug<iKPIo+Dr)ZwahF1EZ_Y`qrHoGb`*;tC7xyJvNda
z?-0kBwQ=A6{el;U2vk9x4B`buyWO50{y3Oa*>^Dj(@*}4L&UtK5^yb0d%x%?E+O&N
zoP03F{glLA>;7!NkSVjWhu!>O+NY<S?E<Djcxs)e7JUEIP+XIfvs{8{AWU9c0o^K&
z8YpXLIT-O;pXeI6uxFiIj@`f!47<WoM+=}~Exdq&7MUuJORl2J1QS+2m1fFH8yZX4
z#x&Pk#a=Zt@L0i7X&e%&BZKdIg33tXR`uXTXdkXiN=qeMF7oKpWWQK(rUK@?X!W7b
z-2i~whHBzR7<kXF?2hG-^YCal+UcSqHoDY6o`(e%VSf>6P!pG*$g~R}A_k!<*DW<V
z68?BmSkFcj3K>PzE!z00M=;<5(z`1vNM}F3#v8W3xdxuGJ8;Jwn(x8NJ@t}C?0y<v
zeR<vHEp1igD?v_B<0V1)#5J0tPPI(=TZo@Z3-X>|7c#;!9q_5=rnLPf=9)KxK0mAd
zLnHb#TJw4^?L{jw!Up^4J&%6(>!T)>uV0DZvsg^(<{)&a$#mX_tt=&dj{DpQB+ia^
zos93LV&J~_99cU<ieh{7uamqgIf$v8?D9eh>By%)>l0omCr0G8Wl2{YH~*@K%6)?A
zI{oO{c(}in(QCY~?r}FKD$x@O`P*;H8{4)RCd&yHxxA^(`|8P^hg<hRrcX^8M9iTH
z7!7LLC5Hl7d%r0{IP`Om2?|%}*M@sNOV-*Gzid!wYMuW0dg^a9M?~rskePqTqs+K8
zXQzSp?F2PJ;D0%nz+r_I&a~<H%+<{dBdmah^^N*8Q@)XypBMVA&(8kMotF($azUqW
zz_+D_BXL3SXm-27z;>?$y}81Uhr2C324d0s4z}^}@$!LDi_>+J22Xu`(MHm>S1cMS
z=`P>Hv_vc{8gLL-w=>;aRDV$HGBw>5H+)i8&+Dm;P*zo?%tEDk9cp9op?5$w3t=QU
z+30>*{0J8bK`2-Eydpv1AiXmD+$cS7#ye#;@x2}@>xZjkg%qn&V^EkYt+HZOw&4Bj
znw993BMP^arWu<cv9<hQ6BDg+mw9*lXWtj_&PLt$gPQ3YFjn>RP0l}XDno(!V}R(<
zE^FO;FZZ&y7PeN3?~RRWm#4iR`AXm3>+o70NwLA*0-|JZwxeqhT0daODBZenU7y7z
zXw}5sQ@tGFeyFb`st#cz_>R;L#DctTKGb*D=GoUG-rqmjaRNpX(_gHDIo=f&7mIUI
zogelk?n8IHcF~aZc-<@zOnn+jw0s%T0)go$>ayGU&@U)gdC)%r#TUvK2trNVa&l<?
z-t*`@a>{nd_Fu$ze}_jbwpN6f$GVAe?|g0uYPB(~$QJst8?nl`I7jl-(evb<TftO)
zJPEQYLTH@ARz?QPEUC98i2)$xf4+3AK+rY+^V$PlVc}pKx_w#V;1WeAkql%-oap4_
zS3i#%&J~<^u(jB@RO#`KIM^TVgn9S{PZm|nJMjrrp;pBf2vx*)JDXVjfF1}AO@5;%
zLRo)m_laf6F3RTft!zA98a5N*BF^(w{fuH^Yl;1?NobJskW>AVLzqRYk&ItDq3!Gr
zb!t67jJedEm^tESbsEQm+d<H=stN)eI)*%vB;G$iK`)SIksdAzc(4&?HTsFKQM7M-
z9?lY4Ym`5GCWAhq`Q5O<;C+f<;S;<mvveQ8-3GVb_}w{5j>tAB`ECrh{hG-2#t2HT
z;@P(z%MO%hzLS4D9g~gZ8ji6qN%lz=ZdK0I5kp#160fj`mF}M(*>}=Jy6ZiiF)TvS
z`PAUw<)5a*DxP;=7qlM%p3yX8W%5DbM%c8Ty48PNR<AL<M>|8vSa%Gq@z{utcV2Om
zb-pm)=tM2yAHGq3(CXZHb4|<hMnuTXb@L4iu?WfEAei?uQd?JLR+f+-YpL=Y11-4>
z8!m~0p<J{~!hK^Z5*I-|^48&KJ0BE>ABxx`?AqvlUu^f>5ugsIOLF@C`}grRlC^PI
zaL@Ys8rQb3EYN?0?bz5}<uy0U|0H?U8EQ105FcMUAR&P+JhWkHE-Ul>zAL75x}0CD
zo?w|a>CKLWk$x?Ae$DaN0dJw?Vc0)Up%<JUQk(NZA7#cQu_OJ@P0U*WzhrB8nd+yU
zK71jn1nfwTlmb0R9(F}2xBY4OW$3k<X0y)&cph|ld3aF3bT!*9kC!uL4?2C4>71(c
z@D@2YOM3ehUI?zgE#-274MSF=4;v=yFF0gm<m@N9wAD2>ynnp?FOXE=7`d-_d`3qo
zYAswu*{?J3X3RfRMhN)wiVEeut8N$K+(JCKudA!e;&Tlw2h{EMMT3b9(sL6tea+Y0
z44V$8RS`pRb3a11dZQ?QK0g)sFW$*)`xp)5(LbNjgZHUV8V+>rVU4^z>KC<6wOunr
z`HP{`TvmhXol<lUPlN+qsGLi|SH8@hJ`F?^Em%llnp97*oTpDG)%x4*Xn()htw<1w
zKG^a5D5rb4l%XM@GLVehjtFUMKuAeC{gkzvW&Kvw0|NWhz6HL2I>jts3&mrT^Q0HJ
z(VsYO^L}I({4&gtpM<W@`!<M8)@VMZ3YbBp5gdIr+NO5h&|R8bvoo0yni#?RF*#&g
zst=4)<WyBnf}P3!d5pZNU_9?8GQI(xX#FOvniNvWcKoR~*%YgNnM9FkX=NQN7PFOn
zz@*7e!<7H+Hwd_%@`2-(PqViqFlHZhWwqJtWzggx>}8tkp`)gb8XT0|s%h@i8f+qY
zu|~q}=u~I~m|lJ32X2QK<=3bD?i;S4zb>{_veAaEuhs_P(Y#ZmjNE6+O_XSs#c<(=
zQQ_#?(RJwQ?_}HX4J?D8oS0Yj=)0VF51p7+RP{oS$$x+n_7(t?-f&DH;i59{{YmY1
zv1#SyNjtG)zwEtfM{sqAyl)4mw?M?8m7nbQ6&|+`A3?~4+1dO`Womip!`Ig;dr~Y*
zlP3ko+O9`TY)-#*A{hK#ei1%91>8laRivTD(?4H{EurC|Q%K`w?R=o;DQ%f0yeCXr
zdDy09bUqVx-`I$jIOZ%mI5Drzc)GA<v{?M4sj0p4A>;9o-sQ{VbiKu-kAwmo%*)$O
z%H!j)Z9(v&%R!#a`4IR(7vP%g%y+E|j(DH?NLVDa!D~+lxOy_k;Dup}q;0pO&`-)R
z@9gZ9MCyYKxIL~9_V*`ItBtmRo&O2LE03Ahv$%@g)^|>7pd%2>Yh6Ycl!LSTm1nJI
z_dxvD*&+|-oiWAq%@@&%VV8@5g~uJ9DPM2m^0@tsCZ&@N*aX=A*{ryWH<?Iejh%OT
z9_Tl8p3j22er{ycsTuyQ+`poI={Cb#O&HaKGD9^8a&7|d=vN0y7Y(b4yAB++A$n9;
z@#GTuD4n4R+T1dYq~+@MngOQ%y;gJ8Z2KJJ!uH2A_pjmj8Qq-18<v6F9b?-0U)Q@|
z$Z%9_EY@6$dm}atE^&dp9A@o{v(uiHQPVb771(kV!5crtl)=KMn{@vMry1K<Osg-o
zG`@Zv6Km#H)X*q(gkymDSBd`v`v1oZFN{}9D_xQr058pR0zK9YEG)_tl8K}Gme4>{
z;uuUFpmmquj1nOj<FA<Y|6w>Z-Y(+Gmbw5?uIK?XM70~Zm$_nZ!IzIx-QCTtM{~!!
zaKhn(F)L43v<+(==&c_-A2vcnPQJjY@zx~9#T6?DZ^TmPeCr86F4!e1ZvNe#G|#4o
zXtpyOUwG&RyCbqJZ`5b{i1~5Z<NnBIFE8OL5ur853G+%m<4ys6ZN16)e6#iGpfwxP
zV~oBd6w0L6iTHCPoZ~`@?!FC!q&<z4d9538$?o_D_yyPue5~(PZoN}<k0}EX!cS*{
zv5hR$&LBj>Hz^o6aF14kF55}zGFYqw%Qzw(#7G6`F>MCV<XXsJeTK8t|Gd#x$uR!h
z<#EQNc`ZD7g;ZetYEREvGK#yJb6qJZ-@9eobemmE#bNm<Qwrmiv9+0%*422Zt<ld0
z>5V8ql!ARAGdbH+S~|;P7b~0*iUV7Zp8MXiN%p6*dCXEH>9H`al13&Wx1{7nF@ge5
zY@USCo_*7!gMor4XQDrX+`zzq3=Fn3-~SFP|EiW&*@$ogd}VV%vpDI6UlE+}IK{Np
z)oD+FL?Z`o-vM1!)uaX|0wi@ni9rR{#<LFnK@Xo5xH=sO=LkFdm{Vb$0O36axSKVO
zV^%t0r~`+~TKTZui>;omY+KeCAeCm960^B#^%b~xf&;;7$QI+X6L|^gwl2XqQxv`v
z6(DP2lF3FTp;Y7}*N7p{^OThu!H}Cr?Pix+2bv~;j(U0WX^~3*4P?+^jO0lR*rRft
zUAI1KHvY)w5**gP8&A+{RNF~B0K)Dj=~=(bFDd+}uHI|~9Cga-{!r=2y_#;fQ>IW`
zdY?*P(VTD5d(L5gEZ1(;0v2)l6?JFjES`Di81(+agLVB${~X@^_Z-GMMy&0?p0?)>
z=Tfs!Sktj6wyEj$M@dQXvppL`>?n->cji&Qxscn1SeXIyI+c>NJ@hEz^48U?iu`;E
ze2{((ax+qW_u}Gf?D0y)5d0z5yu5&1s1vj{eD>+)*biYc@qYn;{{{*Dab6~L<k8U#
zj9P0f0v70;zuRErMaNd3es`eP3g9jdYS1Mhi+x#CQ0+<jY@~JzT;6<Wc&wQt5)u+y
z)9RK}J|wL5YcT9|kQBHzIZLD?An32Kq>4EZob-y&8?XS={Ea(ka&>4-IaX4k^(isI
zRl^j8?xyMZq;QFJ_%Y=U4`povhhD36fj9Nx&s-rSUaCM@%ULME<Y{q-+b9?yFuu2_
zw9q1UdvI(y$1fouP9}Eg94bShgYtR+&r-$yN>W55;15cy1@EPNrxMVH(zkEfZ*+&v
z11@z9_SHJSU>@rc*Rnky546?Y*Up^Agur{Yh#x(#eq^ZHSG}9rrX;I;K-j1MVe>iZ
zS+&bp-|S6#%-<?fn-?ap$}R-1g7fi0?NJuLGf))pA99#%Ld3>@?Qa*jW0av;00{w|
zl0X7ZF&B?cb*RfTR{6e89RETXsOiW_Lima(8*mCLp5IK9R#x!Th$$*94Q0U|_`e^|
zD+ce%31YO%eG^n>QE(W_RJSUFLlEL=Xvmb1kdP0`qQgrPx==6{)-GLGSXjI<2;SI|
zzkVH0SBKbaU#2>Qm<3p_XV3|>pz?DpIc>l*8V!?)Nl0Kq2|1r1IL?MS2rp*e&wE_`
z7_hrVp)Z{=KMF%e`LT6(K$>0C`gml&<uR98Lf_(4Cz--5yaS5wCxayR4~9aNnGG<=
zloTeD<qvN9WVEs^t5x7><bfMBg6qn^naaZB?!p=n^W*Wc8bR{dohp?$n7Pk-O{b->
zU3>asMEa`@Z0(jTJ?}#ueB0QrysT6ZUp|&-KW5xKa;3do(~3$>&75J^?{=DN`l+x|
z`i`eXRHn*OJ1!JA&N73J2E8Xl#%&#jJQF`lK!)_&%y8PhBJ^TL;buL*u<q(j6HCU!
zX4m{nSjn-SpF7iYDHq8B#wQzuJlc=tp>bn5C^etEf$T+vtcaQ7NKJ$0D*+)^YWa4y
z4ZHU{!wL6hA>vRh-0M()8c8i)W6Um~V+=;heyARx`#i<9znYG`#>g*3%K6SCVy$;J
zqXr;6I0F;}1EA|`xUDgnsIdZ3w%&BnPo8w)9o7Buz;fQr3W!w~&9S%+vvlj2@6nIo
zq9`jXYv4SN$ka}Coe?u`$3&9Sz^xZ+0^mcFEI`#VQ{>BBN-4>i3ViqXp>3dm&iVGz
zeq)%tpM&&7`>+4L!9DA>>n$3eT2OR}Tb^4k#)bQar6*QGV7((<GQWs$Va=Df(yzOo
zu6Iq?J$H9UBGadp<AXsjJ0QU=ht;;g2uA+tcEoY=x(4nttw?j^KmlAvq#-HRr(oJQ
z_E=}RQr>F%%N(>WLh<)M>A%Yv08G8JMB1_ranjIsMnQB0sMh@aK2vb~!ZC+vp<7#9
z`6?)Q`W@mMea}ybVB&DR&lDu(zKDGqX7#UlP(RO}3!pC*Sqdi}5kE|13(0TwQLe}h
z+smZrxkCz%lTC5<INQ1SHjQO4T9WQQs$Ws9t=~7?`M)2Y$>wua-|PwhI7#n%J6-0w
zfeg0%xuqvTWjNpQbIrKDtHR@w9h;GpMEvt3Q6=Y2s$TQ-g2lak#4XOp<b2EJOs>u-
zmK8kwVz<FW82cE*;!>4UQiiOW!C6+1-@mxYZSYFq0wsV)%L2H~m;wu@;$qTfWH5b$
zaowWxPH<u5ICRW*S~X{@xCEyc-Q#y8azyhIcib=-d#m^P>EvkNUnW~Iz+)%FvkvEz
znx8e}>;S#TDSQ=*_}J_9{t&uk>}y*cLJH1?l(L+LNiA#^%l5{cGk}s8zCfWxjE5FA
zzp${;U`cfG84@B2bXbS=R-hvZaq$mp>xEx)WOL=!)l(iWD?Al_MrHP|PXJTX(Y4}J
zN4@UQcMYhJP-EMg&B7;HK_u{6!`tCBqPqvGv~s`&iJT1Iyq4W&6VWdO2i5Rzr6}C*
zMN2~C65ZocMOm4^)k%dC`W3aZ(^h#P!ghJ%F(>x^PsJdNn9EAzh?B+}x{#A)4#)VA
zk)1K!j4`xzp^K3|Y6bKr^9l4QfFH8l5buL<cXe1KyV3(jY}wgxW!M%X#9Q%bWGvPe
z5bzC;*KO^#{cx|Z{(m1Xc}ZUQV<ZU7I%n4a>+#-NBI3*!h=uTX3k#)V2M^Q5*jS61
zmf&FIl0}HUP$0?1=I;4z>0JvWq6i!@;dnSc$K7|A`AO$yi;rq%mM5`}D<8l5G};V!
z|86+IF-`D$Q#Dt=JYQ_7uxi+KytJg(Ge0j}f@kj(7uSW31i!-reX;KMp6pTV&!~f3
z4bn(yQDe5Kl5Nplvv;hjT6EU9vb4M-i}6wT?s$eS3|izH8z286<5sfMozcOIGDD**
z#Bdm|A_B_ii#5_Er(8&gf$VX=z@nDj1&dH@@OYONUx>+)c-(LxADxn7(V)`v2e1NV
zoqxdoz@bpKC&2zOR}93EF*O_St#XR)d6P`8)_Gs$a>-0yw^(MWl|{{s;B*<!pR=Q;
z7@oYO)KVXM>ke71XlZGwH~hMVNN=uz3v?ve`-4atU@0Hdo+>g(AoJeuHAEI$G!~&B
z(vT>BjJsiulP^<e=NZq7{nv5UlXfBO0y)D+CDaFhJ0YSvyojr~FS6nAI8}05T{qSQ
z-Dbr9AeVEU^qviz8lm=UT}1F{<i?y)MD6@qBgb8R4beVtwS%<T_wUg~@&)?{l^EVH
zS4>awaaYWTnzr9Apj(7&yRLYdrTa$z?FRnOFJDu=G^nF0&)SC~juAtGi;9Zw3`F^A
z0x^oNzJcl5u~Df%zZteO+T+B-Sqt=cK%`yDfJBZ{m@hR<eUrH-<>z`lXnj)gGYEz>
zq;WV_Kiu?WOtZWu8Wa%S-H-y@7OHI=LLnf3-jfK=CIR%I$gh9;g-6_{s|8Q}+WR5P
zmTdmr@S5Qb1FMb=?WZk%O~3aapHB%}mFe6-r*Gkk(K&zHf5efLk{U<DKn%g7U!xe<
z;qk0ETzU^uXkWshi+k(2H=g7pJ6>fnReXIJhQD~ocGC1CF2;zgl&#(9n!@3sn?*^b
z<6(=wqSqI_yk@xdZp!o$mw|GA$-0NIlpV6tP7q0i{J6MtT)W@$+izgY|9!m5PF2#0
z$F-pZ)otgSlI$xO?@jIJJM*L7)7ueG$#i!IO^sj1tV}Do(_b5V`g;a8cO2`xPV7D9
zb#=3*YU(2g9r*N>l;WqJjNd`NG_Lxflo}#_#Yq7?UI}i;B0O?K0L-p+MCKDSJ}yUF
zYG;-)Yb#=3U-&r{_m;D>Ztb57oPT>zud!Z2{G>&H_fN=FOs&8Y3k$j&|E$l+7c4Y(
zLvOj;_q%h=ykjrx3c1n3r(a7(A^6=6n~QjEHXj!!q?U3re!YATNeAoeqZLeGPobm7
zC@FP&MlvineIWhYAniZDe5(ORG82F=Fkx*Cn0dqOd`1LIwZFLm`2M-GLSlsy;=zcu
zks`Y)xf1lv3WOkO>~+#NYV%O4{eCSEK;#9MQ&fzbs!!N1P-GCa5v~ag`-MHasNzMs
z)*Iz4VAG1|7?#2)deYk3gZXhCk453Qp@c*7^m69<nCfQU^hA|&6g-UOL_8<(`2c1C
z9V$ZNex8ysO475v&3uGoVu~5ZG#rRXX%7CFJ?4J>*nx>UoCvbE{*nf)-Oi<yf)26;
zaGsAHM^qn6g*D$no|75$Q@MRngiBw%Ieu%|R3$Vc;Kk<YA&7;?5uUp#92`4Ul5;5<
z@!j=hyMGeolg^{mBZzMOdYSBg1w-DS6pu6hqk6vfjHY9ni)Bkuhhh#MQg*MC?iP#r
zJX!bH*u&8;!Ue*o-vJHUz%LDAmk%ETRr758K>g3Iye&y;wYa1_8bm65fvmgLk9syK
zZ~6hDYZ;dx;OE!%ZruL>k#-*dNnuWf2fpasyFc)|y;R2W^zZpDX2-@rmdNo@|8_F|
zXUG5gB@CJhU9bQNO)7Dv&OPS9<i?GaxP++asB{n_ILt}_5HS33>3^Opq&(52OPIn2
zj}=Iz<og9cU$od5bQYm)QSdbx^RR4f2Ubo}n9pH?Oq0$h9sx;&<>f31oT+|~u*Pw4
zh=_`Afa@2$PI$vd6}?hlxPGExNFv61$Kaqv)rb8<lcD5vG&d$DRAA~+?m${oU%LZv
zCRh}q=cn;bm}@Dn5`KQFN}{DwDcqq8KpF%i7a$Ocj>e4br6ZXg8V)bT_vrzKv@RD+
zk9xHEQt$P#^9l-jpC3lRaT|U)B_C`grKKz92a}n!mfe2roCwcu1=S$oJ-&)TdJ~4`
z&HLQ$o>R8OGzIYz`N?%@PdZcsB*6n}pU(wfMMCeJPuweJ?3V!V)w3O*=Q)=QE$1!l
zqVn=^+?<Lx0X%0Od(8f-+V~1fe>$ZjGSg&y_DOuhrPx!^fAr@vP1Caf@&fp`1trmo
zHKOvc!<E(y-oMxPe`^%~d}}op12I5AKpqMOB+67e^7)cc06C17Ax@sI^}%L~|2mVL
zyCxt+C~(*Le0#42aK%<S_6}pW?3Bj%a7C^rc%!)ihrlqk+zcvcD(p(lr?is!w3c<K
z{w3Up>OEHjM^i=fkj}_L8p*%_dXHu~h>n8%c6~bMQ~KM=vNHMl9;1T#i>n2~z!gFa
zDE6NOQqyK8#f(;xlJe^6;r@lsii%6&J{#TG!Pa(=KoF8^P{QHk;pLU=LQzo=qx&7J
zt9^tUAK%08f$(^>v6mf9ef{II)`tRZ#?MRry}i2(B9`!1R=VA%pX$n%491?WiR;oH
z7f*o1g&~-#Gl1+&PjT4P9M(58Il24Z3(?#Eq74>3vDgE@Lp7&ip|;aAqVc_;ja71(
zeM*>lhwa~i%!`+tHzv=+LNtFLBLCa7`136*MkGkAF$g!Ccn|s(<vT#io;Nq!pDcn2
z=mJuok@_Ps_~&!;Boe+`llD(nXj=xy>3mp+n@JH!F+m*5wzgVqcCDx8CJk>!V&~v^
zoPHwy{yv!cV;M)PlYqeWPFG7pcz7@OJton->g@d$<@0{Y3H9mG7dAI2clnF)P+dp2
zLn*J>@$sYCgqSx-rr}RkI)aRAO&38&2&r#3$nR6F3=X9hP3{2uQ0bU3cJ|~(O@xj)
z{jRT<d<xBv-++<vw28QQa2$_X_wkq66f2NL8O7AhOp4hgNO!BE`D(tfTA!`zxn=hJ
z@f~UE=jHE)Muymo|6?)P!$$<{gaKC%S3J^6+W)LY|D%q$*}>2SNTl||9oJyc!N5Ww
z7<43Co143&9&O}9WDrjwm(wn=R1|k|Weo=HWn8{YhJ|8B)v2Vog`;Dy`F+c0#s(n+
zhif5M*5%{M_9d=~@z{f9A~9_2rE-T3|1INFox^bq3S8>+gKuUF5jIahGPo$5@ITIJ
z;@jG8aDcWqb5%PI=j3&_h+8B@e-|q&_ZpT^L^EXN>IdhQmX6Z^!3Sk$Hyf5}J3Z0X
z3TBE!%DZ%HsV#mX827)Xuv&juX+WTF%L7CttT?_<b2Y2inDkrWG3Y_;zgt>jr>{#=
z%}{8R&N>7uckKOb#_Nyk4e%w!0n-aI{hsi+qlNkd<2N_q7A^8+8b56c&4Uj9f8?Kk
zHf^k7h!B205O&j54Tui+lz5r6(YU<0m}cLc7FY@F?_2EDx3}{jwFe5<*4BPCKcYm;
ziv?B-A<4<fxhw_Dt{D^5=mo#p+s%p!0}T~4I2Y%)mz$Sh>btv@N;qjt)J2VuMZ)?&
z&uK+mU5^DyyPCV<VLLFaP8Q`DoNtd4<m45IK;oN!;$7{2;)T!4Lnw>t38k()yBZ7x
zEty@PoII84A7Rkt=R0snUQLf^wdjk~->*TfI}R0lVjYjQ^lQ;~F7PdIQGr3^Wf-&D
z)t?Lq@<g}A{T1a`Fq;qv95C&eARav|FWIdJ20<nF2!t2Mcg9TYeeXEl?|4f+Cc6VB
z(>B0JNY(t$HsM#uzjk1M)xy<5Qm+%XiF_%b9~BG-G!3I;RKM~6{!@P|lwNSsOfLi8
zymCPc>I~<aD%tCKz#zGdGaODeQB+oPK-snOCg2x{(M!X$W?0DuDENtH5gUMTz7z<N
z7?uRrjJO#lb+vtq{}2R~<^N_3hEC0}sKdxLLdP!DYYI~usYAF3*e5?m<8iU`03mj1
zt=C%hvZrSQJC|=Af#H4sE&V#H2^i+e*a;IE<JJ5L`YxdVBB18hu5l%Six(aZ938p(
z)Ya_{a{alRJ@>UlDA96)zL-DlaPjAgO>)z!&pWQ|n)+)eml=MJ@7IAfA|7A?(wv?8
z2;DP)r{CJwAB;^~gE2-^X>cfANTpS8k*4U{fy$!d{Edh={gbW_oo|kQ>HT+w4S74v
zW4#U58bwt%hbvR;^PQ0dfVrz$;fDggDj|ITH$;%?0r$Jv=w!J$IyySLB4Cw|mlLB~
z@c*1G^TPOg^U4b8b(!`8^90_8z5En77$Jy{!%u}$(*pUkv$M_pl8X3;hrmiy{<6pW
zYY_%vW3rfddhK#}*<IJGIV0Mt>9?9wV`Ib)zj910!{1O!PpTqbyvmVCQQhGspoi)-
zywxSV0WRHwkJl|yDdKUy0(OPww%oe>Q5p_&KV3|;D%1ghyrR%5y1Ugf9a1?+@#Vb9
zIc7_rFlC{_!#(U>1)2}{Mnhsk0<q)LCG~*cAKld1$+JfqkZo|EUUODJbG~S6c~E4%
zu{Yw`BJZ9~iWWRKXL7dc`>eYZd3V3E5~{XN?|JJveT(ntrV*Nnb<zckZg>3y*WTba
z!JiIc_j4ctux&pntUSyqGral0I~vH4?)hX<!l~7Ld8}=3ZTx_VRB-iCcnQe-zHCed
z2JJvUL%7v+J}loZmVt)P<$7gy`*`9>&vV-+lb!E!vldWx4%oqKl>>P<_%?siz0Xos
z9)x$sUXU0zmK03wVHpBVrWk9PY(?AUaEA1nI4jeC7U?!wa<2nY1ayK)^y;J8DuIB&
z;{%r-*(J&ussHnde)@t0U9Bs$lWAVaL2Y;c#iTQw%62!kaHi#csmNET;yT}8U*e!D
zP-w)8w&=7GcJ=+EmJ8r1ozs6v351qU^HawH8&6T~i~5-iYG=f)maE!>t*eC!#dhuh
z@<`vxqh;5OUGKFyqZOr6`q8bGn{H%aQ}e!*+Y0q?AZ_IJRXfT-+;6j%<7;4^qVbz?
z@3`@q29RB)vrUO0?qI%g|7yVMy?R_ba~wqT+zvhltgB!f4uR%Q12AGAa7h;m$?qSa
ze^&7M6}eRtDEyxJP_7(%$s+x$Z(3)}%HuKH&x>(ea_YVUNaH&ILpz#yQ(hU%>FbAZ
zUdUb;;p(=`lr0dS@5qcDdR{kHT<sd&^$;*j-|ooFl!sc`KTK7${6E6JGN8(BT~`qW
z6iJcpl9ujnknWc5?o=8{De3M8>F$t5Is_)&U4q~p?6vnfXSsFVe}Ev9Z;tWi6UFbW
zj~3^bdb8jj681c!z4pQ5sav*R@j4c*P!LX8vhBq+E7dXeX6On53s2Upoz;}(fCYdA
zmhl$DOq&IBr;uwy>-mKR>U(#NW)s;p-_6^1k&e(DUDfB?US(faKR7LN&E1S1de46R
z`?l%rD01CSVUYm{hf}`V70*D5$)Po~u$brtO>_^-e>Z@?l=;aFP||@4yWs($t1Cd}
z<#B0HGpV1S*G7V|!3Z8&I15?3|1tj0t3W55pn|VNLTA3%{MKLaq&Zk79IQR1<4$B>
z71w^9nj(zgz018Dt<#j2d_OZWK?ZiX+)#3w7H-Sl=mx7jC`B`Vxjv1M`{s(WHjuIA
zX(NNl<yKaiq`iGoDrXJP#RBbONJ$8HphCJhtbLd#6I0a|QSoHxW8@kAh-O0P#qU3p
zHm1gCk$gw#SrXjrg_^%4>0992<5_b}@SlA@j#$bOWJ{_sDq&k{aEvJYnZX=k>bv^x
zZqxU(-TITFzB56S!*@UQtCjGq4@NvT@Yav6qSk%jM8JLtheh8%d+NOwrl`I@o3k)<
zY&(1HE8zmx8u1BstEz9HQ26Y$ug+{uB2?4-5TobWx4T`PpX#1gcuFhd>CN@Sf*zst
zV1VN`fxFMWJ(dv%b;EYyK{w=R%a$c3usS^MIz5jV41Md#98n0cYMK+@D@S;+9fwi>
zUW|H=2R_K;n<-OB=HXnG{^zQH7_7nJf(Hsb(3R>YgBVK8rza;TecgWAXbtrBjShdX
zs?`A4Y5=z&=GJ`aJ`dex2KKK|mpzYQ5X8*Q&8?->@B$zBSv^CSj$K%A0MXxFvt7>u
zR29?-VDR#Cq51CmWjEIxGGonc0nf<bn^^l{3T47C<7>^AP6MS{H><%9WX?J0TSqn{
z0eY+t<o+u6wT+>iud}lX%jk{Dun3#ODI~(e?4Qjhr@WdYF6fU^0n1$*Db?-go!L<S
z=g)aaql>+3grmDZE~~F6Zue@t{UTV-J#n8seYys=eM&y!5l;`BWkLX|oJpVBFDO8P
z3OZyL*lbmW7kIBbi`yKK3v+06U7p%cRJ?nabmV+=FRakjb=7zQ#wsmzp~b(9BiOv5
z2RkJ$0LBx-&uuS+R|ZHBtBIa~etV4t3my7~1W7VIKR<sY&|ZHY|IpRewgN9RI~$aO
ztGLm(zZ7`?_sx;kfpT?qwVU#;kJ=u_bL;3HzqEu5i!BclBGv7+lCb@(T*;rMS-hd+
zvS(SGmyUgG)$6Qy#ZoJ?FtR{V8uo6t#4zFnsQ%MY`dv)7-Z?^^58}nE{=NNpB+^E!
z+C?H#Wda?t;gabW5~t;q;FQCfkq%>_kK-bSl5S%w)?%s2^!I50e@gOXdT0X8WH+1A
zYz~HQ&z`+RY*2z?FhMU+y?f<C?}!W=*mc<%B-vfT;B7OO4UCE8t4!V={neuW=e6Wf
zc*jzyq~>z2*8JZG@ZTSU(+L6G#B7tN=p%ltN$vm|!{!OsbiGr=vB&KM>^11pTCmrL
z|N963`6~fD-sOT_;*gcmcf|FNz*2)Tu?>iPK-2y6?&I%csJ|*~j6G-pNV;FAdL!FR
zT>tqmCC@Jb@*h5hcLcFhFlLkJ4SK?#UVOk)Z@J3T?xZ#3+7UzC!2Y><>Azq6UtXX$
zWAgiPLPEp(EuKz#o15P^rmqcPvo}b^$05oT+L|OOmJg4~8qO;WCcOzOVQ6Fio*;gy
zgO>+Mk>qtVar+%3JGvP!8QW5R-K+lV+`!XAsdXwCEai4WJ=9O<CcuTW^2E`bU$*;)
zy8s@+uq@QD4T&t1e~9rG%=>w=U;em%eTv}*Z8nf}mU(GejO7-x8T|kGA6=jTlvJSo
z0WSK;l?>Fw-@YC2m{3E^mTo1BBoPhes8M{PvT4K)4zH1-eCN$cao{Bd3RR}-J!w79
za$LH~<~Bm5qXU9pnp$olagEPS%@o{_8<TC_t!|+8A2?GQEG+a@e48*P6%z|9BXWWD
zs^gOOJh0&~=nB;=Sp1gWD~jEOw9yH%6O+_x#9NBnldIsJ_^ISxjOd70CK-?tOLMbS
z7CA*6=|r5nDWTUO)6a?@ZZ<tpeVA3kNH|o~d+tn0t4h5QN<E7uLnn6I_5-)X>-cH`
zMUi@c|9RY*k3k6iRiY=Smh{j-!G&*gI>K!VB_dwqVvyfKkK0Gh0~2kVA*NGZT%&jT
z8!xsl$y?bJ`dJjsUb-y(=+_#*^U~F<q+>)F{^N<fKdEnDA+<3pbI>CAI|IS>-@Qu&
z53wJ@qH)ec$$zFK`snLob*X`7H$|F7g7b7&_N(PNZd5!3703L7g>o##&1Z5IB@U%u
zN>!DF+3>kUoob#aE)TaTih`$nW0_nUt8(?65vq4O{T8Arp%&i<sAHe_;iP=%50s?Y
zF6UQB3mG_id_h->KR30tcwM)}wk?!aIP<>l7M%M-=@!f{k$jOrN?@dv>TmQ5K~iVI
zvzk1eoyXK&8k=HwQ*Oa?UK!+S7AeNO8N`Y#+<fjpd7P7oFCZ|87^%BnO3a`P$6P@^
zzG#!+0D&Dsgc3c1yCS~n$vvyz@%0oCGrQh>?tF{EPAoH$=by!*tw4uaGB1b`>==KW
za0vtTC9?7)yP#0Y9+#VwcjuPjP-jeyeX40DPiPSgY~sm(|LFd8!@c>13D#t%O=2zN
zv}lcf#hL!+2Qeg|2^`D|!s_VszS+>@<aAluEIljWO2#1UVC?OJFEa>xqXbp2EUswf
z8Ky)7#mXOzGVW1muF4TxSIYMRacFFUGj<fQKmqP*IUE+5s7KVtW+W6}X>k(9vIA1?
zf}%BbEg-?=;^N%w<ncy+MIxGDZTx0uF3{9?C!$7re6e_Z&Uo4dk2KUTXtc^#fym{|
zWQjSWd*o<)u2u~u(K~FrYy=H4deB2oQ?c39dP;XL>9V(qRkOs?fthL32*=*42NL;D
z5$6fbL$nI=J=sWiqmk4S+HX#I0BU%Ey78xg=|=j1A1~@Qh)X-;quu2$2T_EIy1IIq
zKCbm+0rNJg(c+x4V*(a<;s)F4Ye!h)$=X_`>tv4)eyqy6sY)&eLBx@6yMZ4^Y@SoQ
z*HW5^`F&)u7g6d;KAS47{jS$gBs&>doq=;RAzD4{a!X82<k*lBCYfzK;+beW$OA%B
zaA-;SGWY8*RUzE0yNozep4PoHmjlT~vu90Pfu0E1EN>9-xMt>GlQ%Wh)u~3P$;;by
z^lrTWeVqPR?##pYZffF6aC@7YUC)3?d41;YUQhhH9N;~k@<0GJ&<9ymxKbtglC}Hk
z#-3iIi~h{xARA|<f?BVe+OBu6Yj`t-L%(S>E^aXH(u;1<@9$RiTV@I<7^!xdThDb3
zn-A~bgibG2h2ZAZo+mg}h*pXySn)=%mYMbv|FJ*-Q5BvAD(KEPZv>Olt-P606Y=-o
zi{sCCyh4P@S$p)VMD?G$Mlc5m;e$ntFG6BCXs@O&4fw+;SvG-AG@BzC#bZ-voce7t
z`rnw}mQJ*6*I_<J@8BOo8z<SMT~<|HouXI{2L}g=Pl^oLpPh6m6OZi}e*b(^+gieu
z@^10!`G5EC|GAO`-s2H`7~vrjjcf)u=n4u7>-Rz)K0Z+5($X*Ul(i|R`)pL7!PQ#M
zlL0}N9R*o7z`IW1a4a-1GTOPLp`nonw3H&{5|q}ZrQJqNO-*VrUWm-jCPCAl&zOG<
z^^k&&E)M9+Ndg3c`~JYw-@g{NG3X|7Jh;b#C|j^Q8TNTP)Y1_$SQjnigzxg$z7;Mm
zW#Fkh1`WiKK;H7DxkoXQ%*>MQI|e$m)=zt?Q%clG=u74Bq}iX7=adv^*R)($4Qkd1
zXums3MQwHn7yZY6-{uJ_EY(=%IJ+MXy1l)<VTT_a_aXx<oF`8jAY5wXzDXdum#ODd
z#7F`TxH<k27k01&K%D&^<_Tu15#|rGoAJKiZ}LPU@NhM#K|j(Hj$5>g=XoY)YGrjW
z7V!A@_vJMbbTB$P;NS8|DC3TH=0zltw$~Vm(_$2Xxh%QcxLtN-fpTJht>jJ+#q~l`
zA`R}j(&x>3ogJ^mE|PZhe%FESr7>D}){@AL1~av*4|E7!pV`TNf0F-wsM->w`7qG}
z1o-1=5mKO?yXWTAUBOCq4M>;7O>4VL_4oIaV1(8^BOxQ}??%^I&=&-{F#xRyd)%bk
z`Q%$|LxXy)|NDC^<lY#fk1$}ewt~jHUqObOv`D4wQ$WCzZ+OEIKz{CUEbdQ#we0-`
z$j+%5!os5sNs(e+v2k}ypyQUo@7!6D@!Wnwzu6u>6@;p<GP3g-k(8!P3}u{wgq>JY
z<PE2a$VhUTxfY&`3Kia;BI>`tz6^~ln~`}B0)j(pc0Sa0UG|2dj?8R70+^QI>D^cj
zt9oGoEriGC`2|`SREG>O6a6K%i<Eedggl&_8iDB|S0>S9(#a;DePkzqAkp}yl9H0V
zynN<O$1!q7o~>Vb)GtHZ|CFIm67TPzoWg|X(I=NEMU1U*mV&vfrcz&%vFvXn3se{O
z3N7~MA!OK&4h;*GFC0gLUdn~J2>j!D<%8-KdytWdD?JVHO#&}WlF{@p=Ri1!jg6I8
zRLow{;mm>#LSlaTe=&K8W0~T>L_V(Cd^%A9Or$GMfW%1cN#E72*Zy66bad9h*i_wX
z5#}|x-yfgkw@{$kM0puNGK!2$J{8w8zX>l=#kLx3`*rMVLFrTWYzx7hEz#GL5f@}i
zx$**uDmXh^4xFSfY}C)=2UhJv=(@86Bw$FhUaO&ud&*bV@~1g7IqzJ5BHnkyVH{a>
zF6vr!ET}Hr<?#Mk$A!U~-8*?&m)x)rn#M{fh($?+7^{c(&YiELuxviBNA|X7kOJwQ
zhAe_rStK%}o#8ZgWT1jvxYzgY1UH@GQrl<b#@i<iw^D9eYQ*yAZuGPp*5;vm?kE1l
z*>6fFkHq?qww>Zp>A1>wY}m7NXg~8>M`;|g=GVRTge%a#)qb1eA_Je7JhtN&sjkwn
z;;(Nm82A<?4{M;stC{WYZ&<Vc38H^};LZ5{y`<(fN5PH5tU17)RinXTN`2;h{V6Uk
zNsq=R^f^`7$FEKhJ$w5~14F}Y9!yM3C`cAJVON#7Q=W)I&mU42Jhb;pxA525mmi~)
zkRjUdHrdYjOB|SPs!gocin+vx#H09(Wm$MDH4y1_bt5NYn8gm_9pJ77)sus+hm~6u
z4>*Y6D6~m=;7tg1S0T!~9$mBS4U4eoLtI(L>(7LI6Nu$W=qJe^z7q=Fk~-UR{dyAZ
z;A*U4;8828^;up(Gzgb|M2u7#p4cJ?MP9%{RbeWBn%C;CJf9}X3rR#zM=TyuKrqxe
zO6}*??02`jnjQ|Vb#a@4nR@>zFT{7MWt)LWD5nBda21f7p9@9v5jwBm9HMuK71J@(
ziO=nDlE}f~*%r^vV?ZXV@he*j;zFmI+CTl_M*VfYhlQXr%H7^-3d76yga~rB(<5i3
zBky3s=?T^mCdNcX>3s%SNp~ICY^4jn2^1h4_%gP6s&?MDH&;Etkp>*ly&4u@v~|<d
z)61oGn9?J?y&~xh5dB?h^7bYjRU9XyskX#-jT)YM|B_7L<ILQ8R8TusQ4Hr>{?9L;
zt}IM+($LG*(~}vwkeVA5R#D{%3|bFMabM3Uh<&(5I4o81^z1izUEC8gXud(ep8HNg
z%6x*$hTKmhYa6DwYfml`78402(cn74$w*VdYA)eC@w*f|4p!u#mlP)>-VQ-3)0g7u
zVno^yB;v%ZZR-tIQN|WLnG*aP@2$vxeoil-2m^!dvhG+(aM1}l{AB5wm9!R==%NYK
zJs|$*g9SWu{vno@k<YFZ5)$mD)Qq>?*r)|!f&gC0QU-`=BKrl2%!B>g_dR3YB0>4Q
zyu4kT36p1#Rgmrs4tuzMA1&Ztd3$0P@qE1sl-zY}4d@qRGeUc)hBIvSaQTjAvY%hp
zU}BGJwsyPx=``}xITE74tDr1yW+mqk@_m7h8P^)FT2W5a#1@kfSEMq`aDTDm9?_tU
za&<wAjzlTmiT3ATQ}uSGz8yG52CA2QZ=_`5ZRG4|uhAKY=|vv5kM-39*hIoY`koA2
zN84%RL-UctB^*c?&Fr+bb>|;m@n7jNc^G;DA)-N+L&!e_EHkV9d^e;7@;B~<bU^U}
z*0*G&j=a@YJG9Mb@><SoeaJL#k{Jwxd7L>K>G+cPmCLkgOlnQWh;X&tX37s_g>Z3k
z-G%{7emwcNM+*$4Z2lEikwtLs!i^bd(knk8hrO=Y`(~wUP*=1#an7Qnb6!EjT~s0!
zZ4x_67DTQt<hbWjL(Ab_bzNug2={8pYhPbr6f<ch40)dHg6osB1^385O&FG|$d_Ry
zWd#Ho6&(QU0pSLoKLhSrN^&ywJ-CIyuadi7lXmyTK@b?Qqq32$bX@kwQaR%GOMMPO
zkJPELNO(z;iRZaIXR;w=vW-TiEav6avOWB#u*G&CwiukOAn!*y;r@U5S_tL+laT^&
zPz8lMACILj$KR`g><77k&B_3P^W+P%Wl5Qv7frq(%-kGG${PW|a%uoM=dczK0ssnh
zdLZAYA`*^MFptA#!*{O;0tXFs4bZgoc3}1X%r8<!(^hyQx#8iv|E;h8&&=>++XG~i
zLepqI_cg5U2U6|2|MV0=c3<{G<zphWMU?C9R>k6U+WTlZU$d<T3r8-MXu!-5YZ?v2
z&I-H3UTL&?HB-Ed5bYjProez#H|$GxoKm~S(d!00hISO1OdGIlY#uJ)JcjwhRYJPI
zN^8p(a}TjnI{z7x__3`G>3s_w4m_e%Z?}sWFiWRV$djH_VrOSpj^5ZXqB?XEg(rg~
zo5;X^51m+Cv_cacH0gK)#_7WB^ob&{YGI?}V)ga)x$%EGuCn*Xb-7@IPjroNaA6xg
zWPBAhaDave4PV0O*rP!6XO+63s%8rboKscdGkz27m$qzO5QhR^1r98PUB~c-eIwIv
z?tEBNtz{#EmisFb(or9m=uqT!IZ-@NcFrVw7Ph}O<Z0Hz)znCq3x{FD22)Y+Pr`KR
zxC>1ihKZrIs%wboekRGi$u^jLsFj+WK+w)7riqv5H&Ibip%6!&?Rx&Ti*V(*p=$}V
zD!lIfx()jodoo$%DBe0O#maI0q~=3U_!aSQr3O86g6gMNQInlTg%5OV23Qn#s&!L{
z^EU5CVnp0%nHRZz4TEl=ju00V4#_UMU7nd6&6o~3K66j+>GFC?COoH05E{bJg!8ua
zVpJZz{({L!+M5~SVr(pvt!PckPUD8p6^!8`4ln9~FT%>$Dwx8J-|k+pZhIN&T>J6<
z(`9&zgld!jdaO>G8(f9nRkN<Z{7zx>=)%InH_G?`a-H4KFh@y6O+7&y`YOL<--+^d
zrf|&aid~Zd9V;YvwOSwZ_eUvN45~XMB)gL4EgaN%?@-iRjY<cW=??=*`Py(%yzcca
zSL2E;S`0mDS$<v*ZOQW_)2rn|aIi0|YWzYVvSL3RpGVPK2fTdcb{g|Q<^#rQX`QUk
zJ}!!KX1A<y9yC^BcaBh~G^wJ)byHNcL(5Acj%GYkJ&WjI(X{dTH)6+>wwZ}Q;R_3~
zR$T-CuW=d55lnZPfYzZKF_B5K+ZPkKR~34VC=3FjD%pM!Y~eU@w7R6p@Q*vL7hutQ
zho~mjG3xB5kujM$W$^8LgytF-q`!GN*ye(Q=M_XRMZ0q?hd8H_nLxT$P-M72I=7Ie
zdAO&r4{M0yzBa05-SuA{&4G@!ijc&Y;)I2p--!*9%Sq?W?iJw-BCGi6!OVLBXPct{
zhrR?xbKj;y^)D(`V}mdpe)#CR;Uh`tEfu(myZz{bPve=|vkbM_R}aK{bNl+n?CL$F
z^EoQsKSYct<leHX-0+8X0xfJz@&W<^Y0pyF?Q@lM0GoCl8w)GDfa2tg{V51(7L$bf
zIH-|JpADZOaI|~UXVcCR8yXu+a_O#I9j`iad(CuzR3>EnLqquhnqc{Ux`wEC^|4if
zBgrhg#4XKb{G@AXF1<fy`SpvK>#xsU`W4ujDCLqk8c-E-s)32Z3n!iF_s<D6QNI;@
zS&^2BEaxRyOnw8$L`iQTT+PN6X{<Aks2D67>uz63YWVb;YFco;4#UJOQdYDp2WeM)
z@JM2+PmxBbs*I6-C=gG5873o5Jf+0Tl-tLgUYEV8agn2gfFU~>MylS_x*xI_pTB@U
zG?wKTg@l@T5vJ5nT0v0Xh>e4Vsx|e)C?!QgQ#D;Ezz8?jSIt^MswlM=M~btKMh{<_
zG)9Qwe5y`@#Pq^+Ze~8gb8C1fa5j*Fbu}pqb9zw!+H_OA`k(hBU={LK97A#12e;CA
z<e-LJ(cf3;y)$4#=7$Uu-g8L-2vH{-hdna|4f&;8yU*jOw6wB>tf5XsUL3RwS3sR)
zuwLZSiWnUm;khYZ4jTOm043AwAkUxV@!pDW4n-7|waj6mpK=57%dc~D=g=)Xjlh_0
zToKQ8E%KFjwo*I%?=EMXsbrgwXZhcWvVM<o(744h<!|q(Y<opjxB9S%<GhjN)oH|H
z9YbLBIXM<+*K_kbaEi!vD(Tc;RnwJCZC*Gb7*E%kwcd&&<aOFfRMm=>KbzpsHjxQ(
zLRPD7W<tU3jOqM>bZgVau&ihjMXR8}WGUqehJKD`&dpgPU*bHI5JZP8)AaqG3Wpud
z7#@m<KKW4Fs;^b)nVOkN1gOsG%_e-O-QC@89ztxoe;V`N_ekDZ$bAC?(O=f>N#;`+
ztNcPfeE1+bpVai@WZ<*$NNT>5v?KEEoO#*g@CP|GE%G{-+aISRmv!YK->n+9$*5wO
z5@Dbo8Y*oEKgEBJ-s`;RO1?Pyd)PHw7#s$F^8F0;5ryU%8HEZzDWxCkQvR$2Q!TwZ
zk~0?Z=F~L-A4Ct|MpgLFt+h=*9ABM_@^{TIiXGjAsFZF%C>%<qYY|02fcJEeky|Ll
zBm(>K&#PWuH&|4;&C46dRu`G9+Un{r_k1ceG&GaK==uE`p^&W`AU_0lip#(36#so`
zZRBBJ(9uR!*gqo${ZAr-Xr^Ft%m?;Abl(3{t>C~sgvs3U^UYj=dLC9~G=$auj5Y`~
zkN~PggoHdbJ-u5#w!gpcX$8F^?B^D6qX!`MB;@1+-j864M@O0+tpG}*L!@lF2p5~4
z6*>$S_jv`$9~jWd7En^mmMA8OVpB&ia5JwAMn=B>Q^vZlhq91HkwaqwtN{vYh>Q@c
zYd4Dw7Gt%Z3eU1>cvyPB$;4TQOCA3Y6VEn2q}Lf43U(+kdM@GOe}0SpHDP`vK!Ec!
zq?1%orjCt(iS5<zE)*E>K7@js6-GI6E{qL0H>=Fmp-90_jRk@((Lm4zNk^mwdR`;D
zvR--tj^eAfvsmq^fw9v*Ej5Hs*2BLZ#lkX9);-XGE`<&)f+ufxd^}nyCPZj^?@W>a
zDJnUc39TekFe=L98ZfshX=wHt>^EE}DA)<Y!c3xxVS3jj)={atqf;_^(a)Fjso2FM
zFy#?_H?*o15qM7%UwEz9!A-DAocAlONW2-flsi0gC7r;O-Jg6+6)1>9+5e=!^X@$!
zx#g7FeKiyj=m?{s?x>?8?{g66{2c|3sk$$65<BaH@v=ciQuvFqX>q}X=ceYZxT$$z
zTuB)Z4P#u%$I*l5pFMA!04-(g{IPx6r%%C%q?Il$ily(=%X-%(quvH4(qT+&nt89-
zG)%Np;64v@Y?Z71MqT2LDAsv>dG4BDqE*JZb{P`vN;C|erk<z6upxbDkAF8u-0)M)
zI3=gP1#ph9lmD@jS#}^qdKwt0oWC{xnCtQn9BusA2hhPtv`^-eNO7J9bJ7ckyu4Rq
zA#A3YML8l7J2(r;v6@zwtc$NU2!9FPARk@*psd;<?d3B8F=H9lMVAcVLLfEF`>p|n
z_KD#_oj^e`7t!O#3D<SD`X8=5@WkJoZL0u!xy5{ql%_;oP>l2XS6c5h6J(vaL5h_x
z{U0~>@prDT9h16rmPpv+sG~lmxRbbkRn@}Z*^<@kVzJF35kH+m5yxTFjDtx`JZA&S
zightpBL#lJNbCX@aD*A-yJNSBH3wf;H*`EBQ+t0Lk&(e^D-3JU-i15OHkyVpO)Cv_
z$au)H&MGUD0jZi=zYtpMOrgJuF23xUe-~XF&w@DFwV+DER?e=nbq|ds>oAlBq~2-y
z8Vn|7JPrn&ljegaDq2N>uLy8dV?=)O-T@mtm%7l|K<u<ew#sBt_@62eX(}l2$HUA7
zYJxXoM{4<3uHC<{_c8`7+k!SSsit32X6L#x-QV^2){!ut{#%c)C*To5@>5iW=qiN_
zR#pwoEEI>5&JsO42U0egjSb3aAx8*ohj1NLO|7$fua6J)ehX}EH(-_nl(%qHbaZ#x
zC!+d+VTCLq9NftVD??viM7V)!XJ&zNds8}kxU<@g4E7dlX`T=>#Aw&8j<iE-Oh<$6
z!>S1AuCFuTSF7;zC-mF9=|3Ozae0RaQR$y#+oCAy6U<&JXkBDvucL|UsRy{A)lMXP
zn3{*yVKs2!t<xqDNl67niD{hk9OtfoXszbAJt?Z-lGkbAXXqLF^bv(tPv@XZ(UhlL
zLH=p4<hStJvt%=6@0%<QI6*=0_tgh{`jv~(wFIIuVe4|2W6bd}6#O|On~Zr}|J0VX
zZ40(-BN@+7gwIwQi|Rddv@B_8xIUXDasI=U_mS8GC|;5qpq3$kwCIQ%*-HfiOr5fV
z%|Wbu_3`(<<bGRZINcCP3q}%wg`Z?PH+%AMpL*lezD>dD+rCAi1&KZkc}Un0PbQ_l
zG*}tkE4~0ZHpehe4;ljKkoe<$!LH%5oBaA%gwdTq2EW=G@*6I>b=wR5GFI0-y+?#A
zYhR)b0i+3;ESF&zSvRBoQO6sS^2v^V8zxSz*>k}%jeT7A!4{K@iI%3hxoFerc^*4^
z`^S*XC70Fb<5fDne-#RETjx@PMD8nvc#xt{=@;PeAEil=p}eAt@Jk?v``xVVzG_gA
zA)up^$=%~rVeqVX(BwL|hEe$sDCd`|_m)_;9+H6fd_S|BG<rB12aWc+8gVfu9fh$W
zCZAs1pO?pmgvbb+UC(cAZLP0m!2nIKUWxNTz?|YMebP32KAL>LFv9f)RhLP5(|HA2
zDN2jVSA>KD%z+$_kdafLj%%KNHPgaVmg&Kh)h&{ecr*0TFNO)up>TAhzhX2lx$tCP
z{V;G8ANe><OkU)ZLru+=lZ}qw`;oX9qRAT~!kp%QHHJNTNL*|kQf7DdS@9}XZC15f
zAf73khZr3*Ij1l_Hg*vyC#RHhu__Tj6b8%&@CY<*E8cWAprVd5v$8Q+EwyNcJhd$b
zQQVS{0b0e~#hAFJtHNl#Fu!65?gEbv(!QdPM$>~GX!y&s`P-+jXJFYT9nDDsg7GX4
z;ivzL>hRY$<45vklFRj*Uk;!#elmw-@@~ax#gcxqxu>uJSUAh^n`H9TL8dS245I$l
zr3&F;5?uMvZaaY}ube~#IH>3$M>0Be?H34R8MzvB4zCQThhlEb!^H-Mxz!(hIQd@<
z+OiE5!f5UmXj5}D*^bUP_aSmEoK{&nkROxTGkih?Z`7x2xaOrPmnPx52CHgEx7;jo
zPD$mE`sHyrr!A!0&5KyGX)VhB%!?Z@4k4`BaKMUM=M!BT75{paswS7_TueHu?q^oZ
zYgssqO6FRyiNxgfYC>2K%|fOH5*D*^nZn!{f0zROXCib)kiLTYK~lIr!=?fT>*fCx
zVSoFeZIncIUY;E7c`SqJj1b@iqbN!TCk-ssvW$QIO7!K+mlc_#5As{$<<(lx&{DL^
zwq6e*(NRK(Ita*LpoyhdsQsuu&n(6!-BZ!cQ;2rtba!2K=PW*kRK<VN$WK9o)NNT?
z$G&e>pp>M_E_X?+Yv!@7=l(jD*<)!Pty~b@vm-$Y?;x>#&01``{NlsWAQ|pq-S&53
zH!ow$dL~v@$)Y)DbMru8R;T?84I5j-5YkZqZeqTmAuCgrn4@De4*S<);ZTj52@|Wg
zfKrq_m$Q|n23pdDE017`Ka__5egJK9u=y}sq}2C8EpVR(IXK`?W9a2A=r>#X{|aXk
zKa9isR%1VXaysLe;d_>ca=Y!AAHsXFrUcauB*7(2O$(aYP@t|?gd2)44AGvb!(nvx
zyCQvgIF|X;*<xL;bZ39P;qxwx--pQNBB$U-Q53#K`eOd?Sm0KK@&<A`C6Ycbh8w~A
zRr5^Qmb6fM)Nt2NEH0OuM6vgBM2ZUZnbgjg)Vp%w%>oOoH$Yezza4`DsQLs(@JvEd
zLV|<WmfOWtZJNs;-pK)lAmdjQa)jM5x*f(TAE5gO2H?E^u+e|}5$V3sp}5(U$fZgO
z5Aj{&hA{lTTweA=hUH&CC$C3U$S$Qx*FuH_ZAnVU@)<XxKm}j1#+p^=n<=-D7#fHh
zn}-zc2KhxQhX=J}zo3e-cT<mYBH#O;0(Adve9YQ-Z*j4rsj2C7cmOFWOm+pbrJcdm
z5k#FyO+%wd#km_z#bi?e_Kp@PsLj?|r&)k#Qf)n9etdH~MO(f&W6+<uo-oQB5QFhK
z$=h@~t5vEhh=W+qkAQxZbV|rI&n^SNLhgN8UTDA}LZz9FWmaSSp>FtV-+4c|@>5#F
zkHw&LLuwV*#QJ?{4hB)rtbb(gsh>u@VSiVTa`CupRq|s^?h|o|k(lPBDY1hsz4aiB
z7`gFHG0*jfN~O@DmNZ{o>IC|0t;+pE{%_6q@+u5l<yCB~Xm&b*0zRu1wOmFtcU1h=
zcv*6?z-*0W(wq3#{3s|W24k7RUjfD9o)HL%kLUyY?y}ks9|u4=76+Erq#hQ?962d{
z&T0Dp1dnVhAV-3Sndsc)2l9ru8trI*3kUy+9Ut4i5I%tUm;A30EV{tG{O^wxc{O!H
z|L*aw{qybeVO*M_!cr;q9BHf~s_p_Dbjj&fLNKX~1vA=pzAY6<B;y&I4Vhn~p1XUV
zBlW936d)*LNl!;7h=6Yuxwd9NBP8_dBQV*bc{?~fJarH}!`<;ZFFV@=M#RrZq|OLH
zM7>j??}<p5%w{o)N=jdV@$p>cL&@JC%J<MuaJ>P$W58!O6(BsKfNSRShVzuc$LzRP
za36d-x})Jz?0^4Q+6qXHu6-{}bXP7|Q>P&@lZeeYar49(9~%_2yL>X<wy9@!LSBHo
zxqwNmn+Qn^I$QQN+#yPm^cP*s><)n~Sx`A~Yi6)p6H{w+vRp8t9n46^BbP~~=5#)Y
z0cO{fn?3z?mTF>9kHi69S*+!D-+FgsRi)(w&79K1>s}Uf{WaFddF$41l)PvO=4H*w
z42+C9B_&}U-3rG~Y<`D5WfO#50Qy(=bDZXR0P*c-9N`+*-*jHE4FvqBTv1mGen-b@
zk3;vR5E`DW;W)t4x#YB%DQDEK!*KHJE+`ddR6N5xr)nGeZPf=>NTm%sl($_6cegk0
z-*S-&=dj~HtA5vI!vTucADg#->K}4F$SVBI>h;x~(C;G>EVtsej~Ftt91?$*PxGZ?
z#r~a&*3Cf!3-v2Xy)tuQ@YPqs)Mtxu1l-V3d~V;DfD`9X(w8?3rXT$dx7NNn-`q-x
z*PVW|FJ|JRxi$mtO`lE2$;u`P)%{Ae8kKbjwX-AJjtSns-Z(OX_0IhE1QD<J^w~39
zB5n8C52;p@g|YV>7OYOtMUVjxLY}cmo7=w?4}TS3vSn~xU0r>sGF%ymL`nVxC?Vt!
zJwUZ|%tlifnP;Y;_@aS)isqeU-J(|BYq#9?&~>LE4~q-6YfesdgF@5dXoLy<?+ELE
z{}P)Hr1wXM+0oKbCw?L1@bCc8Tgdm|5FexC^?ZqB9PPCe_$?O}xoF;iVklN?^^GYc
z44YNHu21FhZ=%bDK9uj1=O`|6LSp(l)J#l@DxK}?$;minQeVf%n?F_XK?fS?>+7HE
z&Y|+xy`p^M@Zox-Rs~as5WJe_pW4nhjR%ynDh&_4AJi`&<gS<6_Y2<SDC`O((6ef$
zx)9eaG+cCiy<(AP5~%+{LmQJWqZFS5b=X?Gw{J#`i}b4dTd%ly*|9uU%Bvh*`juAw
z3g~8g;jriJ;lEzJbXugKprDT>8nsjY1vUsIvUG55^F;7aT#X4ofGhJ%Wx{XK#01_?
z1efn_4&xp^dZN19-aecwH833s4Gq0@4K{Ys0A@8{HUJG5Bblz~AAC{Pi-&&Pfrx<c
zX<=c(Zdz^JU-s$d`ue0p?Op`52N`e)E?nqX%wBA>N#3dAc4t_F1TNVcU40COrHXy0
z=`7|0C28238tgbYEBb?!v_Q<N{*~n7cS;GTJWj8NN=z|J?YQz^3tPqB2E9mO;fHE{
z*OW=dtgg*;B1dsxpCFl*lR-~=+4NtEV*z{*us^i^IFS@oeL4-$EdCFqYdY`Efx-?q
zH_7GX<P1+rp4LF`IBkvc2a2gzo5ikeZq7?IlOy{Sc-~z2T!1M435ebv#(Gk>^BB$7
zSe~2SR#h?G=k*90;moWoM-2;tGT<n0#wm1>6Q@n7<MllUhuyAglRcBDYfir>G!oc_
zq|5KCCj2g^r&B*9R;LE+Q;=x{l}j}#MtFaE%m$0vm#67kOqXhrshO*6b%F6<iKE6v
zGdAN}Rn_>#k+vqvMszS6qGqdWa632qGC0VjH8pGQnN-Hv7xh(-qC^G{y@K84<O{i^
zo?hnS$BtagVnvGA5UUs1-jbiFk(*qb)Bx4`G5s_)vst!M(hTf8;872zaMmsi)dEAq
zEgSNgz0M87p0*H&+0TX@3R9(3^Ht(e<Y`S~{XdR-bAYg<%2cyBli3SWh1`V#SF5=y
z1)!r|kelB>ot@otvQy-|b;0|yNg&mABbxG3DGpmi*k2Mz7WKcOCne2zqb-anv*gJa
z@>1?FQUyy%QS0tjofwmKFUW0Ci0mh$R?nhb%jd-%Syy#<RW_wym~Uj=kE}nvUs`<8
zTFk9%TS7Kr5N0w)=bi@bWtVidzeM8oU9Fmfn)6rGu=gte+o@uxGyT>7XaT78>Z^jW
z-}$Ep9r#-IL(Fb>NV~d+hyhIlwDveYe(__e@4yy#m*eN<yPxDYmxt4)K?wLR%MY6m
zO?EOLbadA)d1(M!vb{Tu{$u|(n%afTZvQ&gPqDG2z}@&W@bVoo`0fEb2<zv}Zvv~#
zCi`=qcLf4C)U*y)-HRD3Y3_5ydN9o*rKKJIM8z>N4*ox?vevtX*mtX8to=Y8yu_WP
zCk#6eU+mr4nCQu(`yruPDbRZ9rN~Pr0{VSrBP+r|FM*@9Ep8#!BiSZZTBDc0$qw&j
zpn(=D$va?2u?~*ZL?HEmxgR&IJ~NG`2jGF8Lq=Ct^y=@fcVnMyVVbu>x!y~YVyeH6
zxH)JX+12iwC`e@%kBp2wN&ERjRK3=UrpKOyL-;3HL8wS~r`nBW=;Fh<qn88my6#o4
zk<kpn^;GwRF-L6|$m0T&)|c)g7v&3LBgyOvwSjmCfO$D?`XhhOqa?ubHRP}iCkHKr
zZQ`Ayjn9FC+1Kn3UV?mWCPE?kzF}=2KO&Xncjso@eyO?~D^j6j->(|awq5N}cDJws
zfHG-X;2ON&Jf^*reScB5r_0j#V$E4_>3O;$^3uE-@TMo$m0rY&o%16basy;!{)~SN
zKPnzxW@?CuR+;6zkzs#P6f!1e;bOM#b!0M*PAu(?a8hU}_4k#K?^CNskV047FnGF1
z<VU!KNwo*?G3TcIXr;Ww<2s*;9l6q)Io8b&L(o__)CrfTS&Iw11#zGhsIp$7=7h-?
zFFx96rM{c@LT|-cuTHP)>o@lK-Hl)FB6)w?49MEIZ5f98NK}a)$s4Qz-2BlIVIDIH
z#;Fwdq}-%Uqo1P_y)C5BUPcP@YpZi58mu(0nY8it4UyzlBz*v%aK4i2jsD>a?3)81
zjt&3xDaxKBAdODq-Lyk22gkLlg8Cs42!qp}YO}8Oh0#9tbt=bMjm)k#dg@E$6~OIf
zQ4b2@o(~?RRTt7Y<Nt-!^%w9gAMYXTMtZZ4$rw7=1%EEQXSU|q*4eN1MfMY_h!z!7
z!c~^N_k`VZbeSvTYn>7FR_Qyr5E#r*y5RzlMNlv-O*YV9aw9AV>IZb@J2AQw^)a4S
z#t~Z{4x~Dj86SMRjC#XUdU0IHpyRINNTa1GU+fUlEpKZv!@*?lq9PO@133QASf1EM
zJTC$6ja%e+D*_fTyiSK$X)Al8VXVVmyGUv_xl|Y!8xM$+r;s2C>1933^X0ugQ;2f{
zV9}}dzOD~zKxbGDq~z*p(R`C*s9j*8$j1yn5?1vY8Vc&iWWllh<VFeA{AcEbRVr^E
zAEE>%(?q3a(FiB?VpGGb_`1{JH>5p|ie4N0s`wfoxC*%#y}tW&YOHup<3}aopGuMJ
zIJ0T}nD!thO%WBd9eGB2lq5QVU1XLinMNKGT=Q|%E6@Y+gJJ>wA2NV8ifWxr#ySL%
zNJJmNnd!wnU1k^JJ%se>A<-4zEm;y;@2<`FzatXyCzrPZp?(KUE=+-RldkX}%6q3b
z_5E_4@2e5KJIw=(!)$_w?3p9?7ToT93zc~*eP}a-J>p(_ksU{*k1oV3;)0vsoQ2#D
z-U~`@>T>DB`ukN3a!i$Ikb@=VCtn!EejwX==21?#RG>h<kBgl8;<(Mr^uG2=+j_PL
z8|o|`x*I}BiNGav2UJ6=yF%7owH<)AkENmDn;QnYsbBN&{ge$gtnJ<}w}6z@awq63
z-0e%8{#&3MT5&--ip+&BFbYI#WOhb}Vt0O+815;(m3hoTx3@~bQA)q(4?5>BSg7uV
zNIH5ldcZ(+O1sY=UHcWt!sG6AxxlGIy9jq3;stbquVpEjOlJgvock_xpdbVXk?76p
z!?CK8FT21k5jxPcg3gy4@wH$KqN-IXz@4jXXegLF_r?C$i2w?Q#>m0YG9SOOSS{o?
zlLDEUShv-ogMf*N-Py`K@tq-#EciuWHimHH6DHI&a|BgxZO0#DvKKAGGiD97ps#NS
zp3l9g!nR(rNUqJ;M@o0@o4x4C+--Du#kK2&*pe^F`r^x(5YaQ6K>Htt*CP-f#AXZ6
z^1V6qS3@Yl1~U}Hh~hdNu*sa_Ph)K4emu&lo5z4t{SiqwWL7F|%RhA9o%(A{_pc^+
zhuizG^{4jH`}2cu8fjneU2WIuH&ZL80v?UQcAtXlXR4d7l#asoA}sp0d?<-^_h|T9
z<n{^x$<KL+x<Y2edhv3Qc{-9Z*%J^mmVn6c8%A8bYaqcB4U~_zIPRU=xvrLdmFsJ}
z03x77aAqb{6u$?QPn4}c?;3vq(X<IQV4&$cU~~(-Cvz^9<$~Ohl(23<%UkU%<|plw
zVn58TUKK<KKUJ)jh3J~p;C^{9>AJBvT~xLr9Q@LgwBPM_4Zsa_IUSU59TFsR$Xkq&
z0YSFLY*NBqsOzq0I7P{x#s4+{=*5X6am-r9Y1)0LMvwaRi43E2CW=&Y4dl~k7(5p~
z<BaB8Byu9%w$V-S97@Koyl>Mci&O^gyNXK*c?AV?rMf!9ftTDh>;%t{UtMS{l#~um
zdul5+_nJR~WbTIb3Ukqe&|2xz6lAl*#?G#04K?>T2zK2Eb+Ej+m>S(VHy<FK>HV}p
zxu7#xlGDd+v;3Y^oynig68<pc`1tr!uc-AYqvg&iGYgBne>J=4T#b}GBt46Sw^cR;
ziI+$+&PtIm1U-Lzde-n0OoraubhpTYUdQRMk19GTa=Fs3nBN*}mHO9P%m$5i>S2}f
z-@+JtKN;GYxQ>{cH*&QsQdj;)Kf+NIadI##=Xu03sSQ@MuHC^jK<SiMOj=qy!PIeo
zPQvmcm54@zMajyNcoIf0Qa<4@R;lP~49sZ#b&O|%2=m8>W4aCo9}Y~%u#D@7bsAF}
z*%W&s*r@rvbL`9_xV{^z<;zIjI+eYo=vU#f7p&Us)~D4xGyPQjUs@ICaStvi$^(6l
zs%G{CRA&He;f>8TW=DEwAmZ+GA(wZZ-qIG=89W!F0f_jecemH!z1^(a^qK;CC?uXa
zC$K8<bVJh3vQ9J(LMlh6rz)QL@AM13NO(0ajalZnoO<4%<oiOGSA<8Oy>{VcdSXi`
z6!O}=g`)NlMz0c&eC_lk*_{tqww5eItbzz0`ND`anv6}j1NrKzJkhhj=UzI4c*<A;
zLe9Pqkny0GnUT$X;!(y--_DTxLr8vtwR-OO1wNH>@hBwv-m4IS9DO##j9M$wB{H)c
zOK|AFx+-u3(?wu0AVeIUi%$^*y}&W}{O+e0CYw!qvim{3g#LusA$La-F@m$+yU(9l
zTu;^*GKJ4{m!8!FQu2VqGsLjP3xRU-r=5$47up0KOi#Q?1&pRii>yyeg0$eSifqQt
zMe0<?e9Au<50;i!yT7dpByaD*>5!OzPM8yBGiITfx!`A0F)fTmD{$=pV9~=Ri@$FM
z$#NoJVQrYRH&#xBoV*t_wKRr%sva|J(&qEit@g$ZD67H+QcE_Nj2nv8a5vR=Cmq_o
z8rR{RJq1VKZnc7=qp*s~nF`#R=B?k!xz=+n%WHp2+6hgF#~_#CcFdYv3v*5o5fCVL
z*o!9uu)@Sp?8_iG8g}0I<WkomE7ScsJXVRU)|otQjr~{0f)ih^#F<;9Lv8OyaWtz+
zmegG#D}_?SEcyX!SJawa@4YbRvzZ8$B-HD9TEk~2evEv5yVNW`^<!)Azld+)H2-S&
zLvrox?9Ry2*(<Qo(et`PvqZwaLKKlCUb<7{wrH97W9q!SJy+iXk{<XwkD>kiB!^o{
zzGmMfpy1%rshLtac%7t6lGyJud^mJ#h<ULlF?x;Jkm89bqOyjFlD`Vg;e24R?>YN8
zc!P;Ex7B1UlcA{Xj-boSMW+391qeK6BV5x?62?@Fm@MTng%MJ-K$0Utzf?tGSD*N3
zddB&zI}`)OafD-+IzlScS!@sN`R9~y>$C_#Ep~nS;Q7%aGdAP^_s8M8pY|h#$L`iE
z!tiGx90THK&|v4$D06r!?r*Ajz8tuC&nHYm`T8zwOaa_cp!U@iofdwfx#ykib-fMb
zz8n;~^QbN;_S~5-L`GdPPixTi&U7xCk*fID;P=A#cmp0~2VLEa%kXXovZlmi?z(91
z&U<+3t{tMQ{`3!-Y3qCjM`wo-Q-7gwyCKBXzXwT%s6AN3ur0)(v#U$*O3E$_u*J%>
zp(i2f6RxVWULstN)XiH_F65G80owS`<_goOjm}HA{PlXcB`mzY>t7`U`)>|ME)<7I
z4^IXH)iQ;-Sa+unWp&)v#Ldi}k@~=o>-DK<C!}|ML~N)k8kTbGfk!}ysa?8jln>%`
zXmfRa96Ux#BVWZRz}@H{$k|on?=SpWzt?NFdVsL&jg%!V5?9B-dXn{>l>g&~>D_>e
z=GOjfm<zkqA3F786ar_}5v04xme&q)crU1Qy>3`dAw*5IpIFQYy<nUbGac89K2_nb
zSST*TM(hv14gR%I$9nltD5>oZnq{G!*GINAFWD~mB`JS0G@*W@)4l=l7~EM(h2!9O
zydyYcA|y`$bu91Ia=PUHSZzDX`E6d8Bb(AKcC}FO$>$uoz`LkQ;}9XT>gdemH~cBD
z9R)Cx-ZP=(BSNd!SQK0&$)79kue9IKSjO==or+`exLnGm1w*e+M|d^9!?uPV@v~(_
zzz9gLKAZ=7HUMKRh=eeQAs~Y7`~J8G+nT8sugpaTVsini-0cdSgnWIL6<Zy-w0vJz
zzPcc!*`9JZuco1B7i4?0@!T-kDwn1--0<I-c1c5l#v=x>&P)SsV9WNbW(4{3ja=UN
z>85?A><~t!?^xu$;N5p8WJ}kIOlU@$a0hqH5Gb`tB%u~vDwT`+!CWYUiKwIMHc(B{
z5ms^Jcv6)AbB?;~KA;J|ce|6gmE6g*LCzF}MLUM7YK0|K{{gT|np0Njv@2(f@Od%F
zQ_um?BiwFhqYya)1Ezp5Pklg|AltU9PID5;j|wm`PI3Hv?%#RXTBeYfkk>$ss+%Rl
zIfQ)qEoXV_c?T|#w3=0~WApm4jrJ71;>%NSV))E%_XAg@6#1p>!{dz8>s{yF^8TY0
zHn+0^v++xGE#(yaN!-&#ce)CpkliWEI5<?YBD%ofVhU2y?gAvv>8;nJ%DEEMnsp*A
zch@SoX4vM{^PZPll$`<R@+)(EXjA6tPj{I|v^Dn~JS-|EdsnK5r<-Hd`1QWMG){_t
zB`TKjG*PwNYdd@s6*EUp%3P&x3qM~_KB@iovV>J!`&SfaIzLK0lW7!B@-|Hjm5|cR
z7Gsj<z1ze2@u9qX-#qZf8}^s!nfre2b*h4zqv(J1dILQjVH+Zwe?2n7%SSX{8x6FL
z;`Ow})1^`CZZGDQvO~iSH`sJL{1{yOUVnEfoAJNb`k03J{;Q8>e}KK%Q|=n^{4hf>
zu&}e;dFPh4Q4HgJFg3?izZ8jirP+cv+p>S5Y-XvWGrpFGo`nZS79oRi@NTj9PDAUp
z^D)te(3qZ<ixC^lZ+7f9C~d8i$FD|!6UW)zlMCXx8cPlBNr|}GOMxah_>9M$Gp}mR
z+ifCjMmLk~!x2mYHNaxOgpWL+vlx^N)5zusIQg?d<+0lNX0l5g8W1eWN$pQp(=reu
z>FI`Nk1G<+XN}XgZNx6RJCokiqh9pY!Egi6Am4F_?CaN;VeAv4GbDb#JuVoX7(yWz
zs{040^yfP_)pA*4=5R+ITUIcLMgvu*&lW1R4tT$>8KdRhz3F~kB~U>qK+?%cYym1M
zAVz$7CBHr<x}>zy?QTPbuK7A&#4ltL*Z$~jpiO0deqE>u^65e|r=b6g+Y@p0Bo4>i
zf#%zd@0+~S9l~plhl@2m{vl(L2o;29QH>V`bP1HE-G#1R-f4c&aS|>j>wY13H>|<u
zXexf@Ci@c7o%-idHNH7j!gMsj)Z*M)5?Rp>&F|}@Cs-dQ;LX4O%ZT%@{nuX&z%y@p
z{hmHh_r`4Aef}xZi$%b9My4)Q@2)0%KGtL9G)8nH8Il5X`SD)1teIn+L^coZE$>Ls
z1yWdd{Flz=JP#K+2UeVXFJNJG{zy*i33%ierL?lhlImN9M-FbFtAXpFS>?8X*Uf>r
zrZ)t5G7dfrth2=hTka99xlWpD>!rm_r)sS+TJ0`XctoxFu36sS%*qwRANU2ak-*&o
zJxupz7M9^A0)k=+`=w{?Es}=MJ=-3U;Ejg1AAhT}U5$~>Yi#LV1ZuJ0$bsX8b3*Ai
z#N5QE7mrHF%5qC56Rf3%GJ3A%BE2LP4bl?bg(qePDGy-HH2q%t<Rc~7y3j9o+ktK5
z7JBrpL93@dvdr@RWI(oOMe1Q0)ay0u&Szr_`s2fX0qxIl$O{-57_v>ra~VuV3C4wV
zz6nRr`k!AJ?a%E`?Lp`(%F9*hweuG;IfRpyAJcsR*-6{-Q)+25injfb+IsNw`6}C>
z!O_W3%+^oaw!2f@W~a<5+=sgT_C|^cCxr%z#)DHOs5IT@K97sEz{Z3lj>l6z$9gHe
z-_uI}d@fY+w!X%1xiXh#c?;qSi&SLhFN^@u%RyX0=jc?Fd_Qilue1qSEM3dC&#B8h
zMUT?ipoRPKL;6^T>c-8^dcghHJD0x;4KyT+E?Ju3(08wYu=AqiOF~=KufOERwMYcE
z@lts|fy~#JvQ~}@BpafiAj3?5N96rcPOV<mm$ywkc)d4UdHzUm72B$gzgF<d1c=P_
zF~a0(RGY0Uq_rptyfSt9*u_I}A?bNM5#&X$<MP%oP}DEG<}hNe7qq;U=MQZr-hqO9
zPgr>lZ>*=kSfnEeea!z>)|I)zK;hR{`!C=w7SR!)fNu+?9T^0Py-0;0dllM;7)WFO
zwOn)#Xl6?s`nx1Ps?uY#2!?UcwQl*ITRPR?XkNqto!Ao<m3&PW9cb=|=s(viHh1GF
zbHku>$>O-(Qm0tYrLfZ7fP9k`Ww0@lR@P;$^Q9O69kq4SaR3<6%3Qve0%1U;-bK2q
z5z0SKs7o>s=n@V-4b)?qILgKvBiboeua+qCi4;izD?5eOu>g2X06B6}Nq2J2%wLj)
zhh$vtb7se(zIc(}$@A{Gn;4)n->ntoSw(eq)jf@Snk(Xmfr^?TuyJ-YM@CB8PC4J=
znHF0^PN3=M9~d}OS(IEl9Iw?-^||L;Q~jQ)d(o&M5p#9D$H^DpleK8pLewkY^$CT>
ze54JU$tUHjx`|gejTD$t{LH1Z?BP6*Vi~>rjtUFVi92xiPfn;<Tfv@aI00YWIoJHv
zdh4}0T>NF!RoM@TdXz75U*nDBU50*U*DXylGeI@}I-&7i6@B279o$id(>iNwfRdjE
z-QZ|1G~Twizld~mwyjSC>;55i4~QYl-*BdFdG-VF#HRuu6S|%~NYYTd`JM_<OjV<<
zAU^h*j>ob8y~E5wH{RhiX!lPm+QaA&xMl?rxwCJCS}7<fl+lO-0&4rfc&e+P^#iR|
zL!Zvw2|Dh{+%2CoKfiZ@k#J1~gBiiYb|T>r<_A$)zgc<nJx6_C`t&6lS`M?)!8gI)
z^JQN|_1V_j3*esp0UE)zvmE^dV7uM-P;PMUH!)uE%}9Ip9@pD>*WR#*2Tu+o$%q1P
z-{z~)?Og89Pd6txwM@6Z`^oUV#Q>uj3+F7sHPJ~arOZ@^wTx1z*v)f75|YU&Ytf&8
z4wK54OwD4nG{LbN%2<_;?0P=}DbS;E9|{?!l!Xf-M*jSm{6iQ-=<ND@SL?cO(4vme
z1eja#p0va8O7MF#{y^<u2QY8##dkloL4u%THEGh;@pKG$Dw;F#x!<b6G-lduYz(5D
zz*-jm{kwldcp0UBks#fNozU4j+p5Xk48azv&dyH3$tNczdUJxI^)AOE>yOV6X-=2~
zWE`}y7r77(IhU@RIXPM5O1c$4nk-iJoxr=Y_0Fn19&)fX_0T9vT#9_8+>ncMhy5<9
z4L=p^6s_ZyKkT3jcz1G|jEPlm<DtkYbe7})dR5tIp>5`z0Zy;i&;mgM>Ur#Y<W~Z!
zCg_m+!4n;(`-cPFsprpJjQ#RDj*e`+VR{GXS~YRcq$X~{kgmAzu2ypkU&1G1!#<OW
z&mPMX9k}ndS+9`gv9z(4Ks{v&b^r&)1D|Me)#|4~^|-{5|LwD(r0e;l$~rI!dEsZt
z0oDKpCu?7z$|8`2{~uv*9TiuXr4J{Bph>Xc?rtH$CBa>SySuv-5-eySxNC5Cmjrir
zcPXUs!uc-UJv04#=k59asa4ckRlu!t&)IuFX5iy^cXg!V1JtWEGjr9Za_)eq-d0KV
z$V67u<Lzua_$Fxpm2biN*|^UdU>R&ZLlZ&0zka3NnW(&``rA<&-kX<ZMd8ctyJ-%+
zgsx`egjYlr*uJfZ<Q<*q$X7fT6Jxr7SNt)$0^_qsLvVrRmEf}<btEvG<n8b!ymADv
zZU$6lm*XY%14nMBz05mSG;bNBcW+?qv&OSXDL!7wq26Fy5&#vxPKLSayfYb0MJ3Qs
zDnU^6Wh;tCW-nB+%O79*qVEyQ3kZpTV4B>|P4*XRi<v?rBkPOimcx_P_MfL4$`P=#
z=$#e%yZs~%U9Vt1v^0hXk6T$}|8OUFv(Q~VKk0ccLcE>!#so#f_ljjzp=0aGq(s6V
zGbO9a4XJN+5|G9>59g((znc<EhzBcY_bNp?yFy&r&{95y)wl31(34Al96}&HGFFyQ
zHI;5o5NY1+3Ei=Oym_Tu;3$^3MeMCc1_Z6cGsys2-B_r6kgI%xA6}DsBdeN+ixUEt
zoP{ol0CSNRCs>EQa`U_Om$+nQ^O!3Yul84M)-9TE>5{&&eE96H!*J{sVxx{Xt8wqb
z^ZqIBFm(EVmBX^AiJvT0(h}jRzref=`8E&hg8ka?7oJHAnuiA4JC1VAdRgL}9{zb?
zHhJ0E$^@Qo<q|xE0==~+;7;j%g!#hY3-8j~l$nCvF#XZ9t3}&?_)gfiQBzYR^9pY0
za|E-nmMx>2;1Qv+V9of}rd%!_=%Zi}Q5^yM#2kL0JeqY7u<;Y0Xq^D*PxHke{??Xd
z>>I*ww54ZG0}#VBS&YZ;*#L~7=BgWx>K41o)*Z?f<3N)Tz+bcsDhSL*m{fJWYQ5*~
z{K=a^kk;7&zjsJ?SaZF;Us{5Ln)TZ|fmm0-^aL1!X$KT~Z-h{50TEEPz$a^;c|HS&
zwij*hz*H0zH2HQM`$Bn~CmLxtw;!(T3l)p9$*>bXzKINbVb&ESo-#Qg-szRU%x*PD
z0>GH{Rj7_jZZ*|G-gR_y=x(Gq<78Fqp%~w>-Gts^mSUUTReC?X+onBX!{xhunIy1E
z`vRYHj1;d{nK8!mwA*~f(eZNHSfF4`Z;^fXe7e@M_=6Y8tMxp6Dx;dV!k$QQc%y}K
z@+XIS8|xA$5yZQN$Gg?Y0VT+Ev33%#EpA}oJGn$s(l0ZX^P1W*Pum3WLQAeTitdqN
zs62QnwZBOzK0z_Hr8YJ8>Aahj3vvvCphKYxO8HAZ({GC1&5bbVhhhJwsszr5Z!dV0
zI;7o5y?%KodSdv^Z#C<#>!Yrx9<AWX5W3k5&jZ6>>#7oZ*~8Asto&EwsMy|54^Rid
zzqjE~EW2|4?xSk4P~7jw9bkS<iAvUl4=&eg{A$y7V{*FHZQmV=snOtevi1d<=kX4h
zEY&_!ylmr}Re$dYz@}bt%}*X*y8m4>O(73OoFktVWZUj1!4oz@l)EFF!~bT33_=6u
z2WL}Dmg(hpNOQ=(^<vOhg?l(&dhM_7=#N390L>`kIh9NYYP_~~JR!v#cX8pA!1b&*
z*73eE26&$K{k>{5LhU^*tmm;n79X&MY-I~nvlW0nhqb^9wK=d^*}0EyT5sOIy#%A7
z*&R_w+Yij*2yzN31-pSOj0fYB$h-mvWeow}6pntRav(EIk?5R22Mh?xkE&=@^*7<Z
zuFvYu2BR@_2<eHqY>B5cs8wjxhy3_)q2{&!)zl2vjldJqN~{I`vuLQN_ibdcvXl0+
zbD>f{FeVH+8Eb63p`(xw&dFm>a5+lu&yz70u&UGvXk#a)GkKe6u{%ObH|3r@SOU~?
zS_yY&HZDipnY}$BS8ZNAeZVckSl+~>S;H-i6n0NRQ=xQ7)`f&mRBGpdo$oqPzRNB0
z6SJ22M|i@-iD*;uQx7qHkq-H`xBI*L-=8LMdH!14{KF{2%np{Ru?wy6kC#3|^<lBT
zAub9*S&upB@a2~iH8r)ztYI$49RwnKdwV~Y!3w~<@<YnTmAe*z0$nYBFt6#whCxF^
zn*fT=BSbVoQMZVXAVp(5!r^a;=qLd^f@+l2?`)$iqy?TaDbj4TQYtDcQIJjzF%ie5
z+uyp87YM+TT;X#$7zJWH9ydc^QH1*lftm3~^9kXDY9Ji$@braIAYl>GbAp>!Vcvn&
za+7ix2HGv|9qw4LJ~J$e9NCvi)*blrFgv$|<m947Qj72TLV0;_%br;VDB<wSxHaa_
z(cKXc`H0Sf^b)doRO$`iR?L7Z7pT1Y^o>XI;OU5ePoa{#)*Idxj8kXNE|T6bM6xed
zRqI>K>?0@H0+&;Yr5Ixc{tnGq!?gLF9mg9Y->^~BwF2UMb_n03zd!O5oAd@oQ6AN(
z`tqpx1e<>*vk~L`xYh#4<=?^pnUf%T6XfZg138VHpjsDjEZM9s<lgQ~gdxZUKn0TC
z;Eajb>TIkm*ICV%wlV>aN<p#S7vsg-04ZpE)N3^TC|1%Vbs9FExK-W2fE);mdAS1k
z#_i*>c~5Tx-S<R}IgnbYTXL7o>+a|9>MrVC*pKkFwa=IlrVY25JlX&Ybya2W0EiJ1
zFV~6q+3$0=*iH9-RMTU*;He9PL)@W?ZK?6NA(i-ir&MX(wdnxw>3(+`EOZE}{nH}4
znxAh<8&|JrWCk($Ga--b;7|rQOiA3u3eGq1_30dbBE(iC<KyP!Wh$FTXApCEXqj<l
zrs3b#pr_XxhgZ2xq`Z&SN)i2gX<4oC3sCqme7+Yh5^2_HfkdayPLc9RFm2ra9l)Yc
zUN{espIpZHV%%e_{nsk&9}Uy3)C&*{P}%U<Ab-Oa7EUQB`C|E99Ee#7hXUM0<vR7i
zOVR*_(IW2Evs>O7<AK#|^l-Q-;&mYAHr5URDla?nD*z&O!s$>jwlPpfIlnpW>l3FW
zapV(udz!^jORw}B5KqRRjPo-sd|^H8UoLFb@sbVt4p)dV69qKZreHAzg-V@>Wy3Y!
zSL$HEJAzuu){@_iMRRR^Ecl9d8U!wkG@i(5H?t?_<pwre49U0>r8+S_#_VBYpOS=9
z&9wAS%Xbpe;fmmc%Hw$^sAxm*5ICI6a)uZ%1@X!OLF+ssfFdwy$#peXg8=vamOB3Z
z<6ZT(A2OV!zF`=a%+@f+Q=aS^c1WSFynN1}7S-W4+#%4~5m2sJQ>?F(f`uPw9zI{r
zS0@yq3P3<sHyMSM8V$i6K{i}839Bh<mFb|J)>&eu(I4c{c~^s_u+~+0SV{Y*1LsDc
zh4PIA^%=HYXwNiFzoU01zHQ|6-Vd3-mL_Wr7-sX$g@-yRq?F**fybARw;HjKYv`?g
z1_AYdkdXX0(7BEJ?YKZ335~JI8;6%@qpOO;f8hcU^U`6&5L{+`eAcG&^|1BQ>eZaT
zKOnHSZ<>o)?>YmVL9$y}J?Ly{-04+ql(Xv6?B_{|KEenha3nA;Qp{>YYigG^49pA$
z>rK;drgC9!D;JYLEp9DXX3S*8MWH}5uUMa;?HOA@MB672M%wp=$|99%)?qim0lKQ?
zdgCLbiZIcRm2j{c;Pbp#dYMVEo(pN*#Z2H;6yV`eb+7gm4f~{kUA`I$bc5+XMZ(x=
z(5$1Rrq342<dCBoeYjf~-t8q(qv@B8`b&w4+1^jX_qylv=%C;xJ)SLhu*gmG?qFs(
zr6b8g5NL@`CLM_mrbP3!Nz^Aq+z~$&4KCn>d;Jyq_{@kAEQyeC=*1PyO{2bWAyrjY
z%gfOGSC-d5_W6HOR{n91B$H-RNP1tFyFyl&EOG%K{Mn%wwNp|6b?)p14*f|g4h~L1
zU?2j1TEZ?DLD}6$)C68yS_zP?FoR>mQAr;Q6)&@aGy*Q#*CyUCY9bHQy=Qx7UB<Sh
zf;b#e-(Cn%qArtL&e|y2FVpX+rd_fFBsj0zoFdfa@d3q66ZLlQpm%6GY5epSn#-&y
zA4A58D1k?19a7i9P)yC(Yc@bVi_pBBD@9K@;r@89TstzwAH{TpWV9poZZyu;3zrf_
z#>R-5DW>i5-pYL~&!7A0dr*oJ;Qh(6Zc6*ZlJZd#TXIZubMQht1@|?FH)U>rgx!KS
z*MOmsX!5o7g9wa|TNQhd@#=psxPLyOe(}-~XVhB+59N?Bk$%EWSWHYcOma{MvC6ui
z-*>h<yM+w#&D*Kjv|<#cVqJC{99Td+*Ge=}`U5jBFAr?PVKpa@zpUCk8XFsH0sZq1
zEZ_^Ub7r4J?EZuM+Sq3V3JMDGgrf%vstWrD3?}xUyWa*$e7S|z9-fY4d<QlSX7qiy
z%(c!Pc5Bztv?p53qkd~{o}@$%lv*+~$Q)9<t{<9E|HGWh<PBdp7iP()jkhX_#Ox^{
ziNT|3cypvd`=>mj>Nx3tzWRTz1m7am3S_MDm0+wNdgEG_k_|Yx#8g3(t;7+<19)?J
z>!_IkxZ0RwHy+m;;vu%a5pp}^xcrx^_0J!jqh17rrN!B?vS&uY&U7O>$O5nTMgR%L
z;wSDEFICyk8_Qa=SJP|J&*Y^*GpsUqxwcVj31Yzk-Qwm-*&ZJ;+gnNux#8dauhZbu
zm*2ry{+<3gISl|#6y{vd*IN_U(ivEF8OirmLyPW6)|x8CXOYobnbTZL-y0m2qMSLI
z_Py?BjR>e);J0pQSS*M5w5q&#=0^w?GmlD+)W{bxqp)DntR`NPK3z#AKEu3>;0F1$
z@=o^x;=J^X_Kcdnap5c5kyyb`Vl~~JqjG^y@=*j4Mx3`OAqW!~LS94o#$W!toG6hp
zOmI)UNw)7W6dE|f-o_zbp&c)0e@!BP`2%=8NEH4c``hQ<+o6_m*)i$bKb}>Qp(2`4
znb@Iau^e*?atXzfP6L8-8l@HHBhPW><6%#G!(;o}`p$b8A+6n9>Tcq{z107DaqI;m
zi9uBXd|=qylm6{!pjmH0?HhhCz<X5+{pvga*SE?GAmqH0jQ3k2n`eQ_@#!NRlNeZm
zB%@>FV<l%+2-0lJj^HVzJT&sq4~_TkNiYqXexQHC!o-qNQwjzb%U_iU(4dm_)Q86(
zi3NrYH}@VmO!;$;W_4kxKUEuQg{x|*We2*6yzcgc2fq%Y{gPcZ)~82l!Z0Byuq8yW
zU)~i$Z(=jOoi-vK<wrnyt9YlB=qjO5Xmr@e#D>DAi}1+O)Al21;Hci(r}qy}=PN<E
z@J-^q{N4IT>fU=r4~ji|Au@lhon>b?dOq27bPof5(FPox_arYR`w)ChLXj5JS~*ll
zf5jm!Tkl%BQM-oBK72zP*wpOaD~`4WyU<E%g*e~QuTxwnx|?&}D_Fx^)Tmkq9R3?b
z@Rw<aMe1jJ^N{Oe8U0#D>AxlY0XI{D94tu=kHc@=58NQ1GT1;kGkyJ#vo+OBVY`q4
z`pia?BR(?L5VRTeb#pW<EW+%X;M|2`gTym*1i63{6|<pOp$qs^Z5tC`JqAP6r9Vgx
zNVN%~iYV@=G~c`7q_iYsvEF94jtDHknFma~LvkEx77n?-vgTJZAu?$*Ne#W7-YhsJ
zt${^hi}3O;z{uex6s$2D?QI$6G~q8m9+Vwb81gH<H6c3o9B$q3T}ml7H{CJqiL^wc
zR6tyh_;dZgV3L2o26!Yd#d7d4ee;3Cf!lhf0ibNeY{mT*|NYlHG6`T%yZ#)i=A6>d
z(pHv<Z=w+rYRlSAGYis~uwjF2Q8x>PN|=mKCJ_941#rNhw@f(*J8sOl&K6OmRY>!o
zG>~r*sMDplAE(z7m3s#)v#VP{Jd>tj$1*kbf&qnfDfRBnQ-3^{dsw%RACgb$!Lw6r
z4~d|_abv!`rN!yA@<vsRnTJfmYaU)H1Kf8bn8TxsZYyUoG5-+Fu7q0h3Viyc3~ki!
z{Ei1n`8(#oe+h*?^1?hjx!#N_QZTWkXJzBBOb%lHt<dJ96AXfv)>p0UPNBtF3t0Or
z-kjyvA$@FqB02hPQ}djw%I{6FN#YlTBagj!L{aA}m(G3FZO_?{>^^xd^gjP18qSeO
zurhqm;zHB2VZLN{yxu9t_NMCU)x|qn=RLmCowkz2qM`rL(EoGh`|$<LV=g$ewZLxt
ztsbKm%-=Wvsq(O2;VGq3yd|iok{i|ju3rA{(!lptF0&y=O{@U1<Vk8B>ED;c|2$vo
zBKw(^PA}pvLOqk+sPTV)pobjEZ#fC9hkG2lrWJu0t^c~z|IgI=H=>x{;zld=QgWl-
z|NU{#e_xH-y<}iV_wAFC!{48&)OfyYCnU7AOi|hQ2CWxV%cJj~GEw`Nnv^7wkh=ur
z<FI!Q6pLSyt^-F%4#c0#Ah&@;_3VSozRN?8HhnWkNo>gl-)$SjT~)&7id3EJPHLZP
z!yxIrXObFEqb%V++y?*LPBO6&W9g<1K7W1@7*^YtsQveb!k<e~#R+2>UN?$V=^tk_
zJtfw)=5RtQgemIAJ4Avp{C{oclH7eWveji&VB|iyTPx^^_Ax8BN;++^!6v|Ba&sc$
z{fcycZgdd++JV!s{SA(fROwJk+FvWf|Mz02&cVV^ewLJ!qS4~5)P>XH`@8k>*^A;|
zU+&D*x^X25kG9~ZW^jR%xU^qv(T|LYXalaAeUuOgx9}?V?k*=UE0J}hfb}n7Y6>Ye
zrxMs=7ll(9N{)j}rnd-4Rkwdn?*6xp*TU~xC<;Zl$a|(4SgEW3U`Wv$`@60iq}?;9
z#v|v~p^US4uQlI%ZK(}6o?SVtD>FqV>S$Ybu;XJH&7}JD?K5WR0&Tbx?bcu7D*xY$
z0jxizq|b%dg?8h<$~L3l|9WKpS9{VM_}R|wCpuQVxI&vys+-wlw!^Nza5&$HHT{hk
zlJF6d!~!uW=Y8o^WQ$c?KEp?Dwfm`QfiYdl(ECz{aLo7UG^9~q=yIGYyQoCO)ue-S
zY=@_yH$liwH&OoXO~h;?Ga?{L8nwU&8m4J#vsZp&<!7*k7W?)v_s(tm0$E-qM#ucw
zcfUCU2a1gfE%0%&Z{?3PfHI<E$zZ;bTU+D8jO@V2Az(n1f8mpib<XUzPt9tMtUb4Y
zp;+B9TbW2~I`eJ!b)$NOvn$?$;KY>H+sKnSRBaT)jrDxDo7dO<QEz&0e<L2yG0@DM
zTe@1X&EGHDm@hI*=w9j-vH48*@XN79BxR_(p4*&O8HzM*5p3r#p8p4Lynk&=pJ5)o
zA1%(OGCI29u9qAn{`T6wP5lhcG@|WejDG7#*ukfp&}@11vR^=}pxcSI6<x_}&yM!%
zMzgW5^^A56@lS?*^Q4I!=kWK~@n-g91IP|Y#-q3X=y<pcFTaRrh$q%E_cqyP1-R01
zbcnFY7VF5o&i*6HNJhy(Cmf1IXwbD*LBc2NG-;Qn`}1H=fQ9BWOe_g%_UG`J?5>bp
z%3KX`#7cb+jreq*#m8Z-c&mjkI3dn|Scn3??~NuV`4q3nTmsh+w~2=4qx=HRIB8d+
z8U!d=F0N4p4YY#UNd>i79gE9sXW}N<MMs$}Z6iiFX3IJ?_q~6Q*_aU6{k|V+BHs|C
zY%{L0%C{Sj2s8iByPPka_zO@Qr<!c!ziPY853pqd0-9xbX^bEg*uK}U9Hr8VGygs{
zEBN-iU;Es6gAYEZU`}o%WlZS<N->7f$LC*C@DgTzzwv7htg~{hUn<#AC7Pe`rZt+E
z@jt5*4H|^;G}@s0KP=nEsOfOO1Uo1!<p95}pY(`F2A5uyXOh7VuJj7{@^|dS(I(n>
zQh+2JJj!aL5^tC~R-l(=yI`8XyXWmE_{yo>&KJS<hsf&)my^U`emzulJhmh0r>GyD
zPVH2yQ^;X_+)uv_mRe^>wWf$rtq(q3O8a~vea9S|M_gS-Wo>YAk2K{NRUjO3vKCyt
zj+Gsde&r5S*V#f^Ge2BT&dhiPP3RS9N^fDa4L6Hc5kY@#Xa465^AIID_-VLWT_)Q+
z)vk0DSyaFaM9QdO=O3-MuevJ+DZYI95}km60Wel{c8gENL!7dPLDSEzx}OxF1g5E2
z3~%G4p4Lw!6;i6-p`gs_j!XqXZS?dqg@uL1O-xMUer9?}ONRrdmYI@A^TE%jfhVQi
z_^)zFX}{vxtchrJ_uXTuIBa6E0ukN2B8yg?T`e-e#YbKze!_SrC#coMaY5Nt+~SFC
zAol6{R<Y_PveEb~Nx>Ng?Z*Zs^?BwQ%r-##x=god&uza=!^Oj8<WjyDQxX@BMGu6f
ztL*!;kYPnBhJZ{P_eu8{)hD;~W<Qdp5u71IH~*>_IB%w$VNf^!S&u2SM-F3}^8y0A
zgQ;jGSff)#;;*Ri9VAus%Caz;SF%5?rLOe#Rk#ME`Q*ZA$_WhD-j}kny^EMm_LMt9
z%bu_JWNq&Z8P(a5YQ$Y#;kd0SpIvz_%wpk1eF$Y2(jm^?VvQTy`ZJ~r`}R{m`k^&8
ziuF~qfFc@@{+Sx5C^vdrSQObb1Em)oR3YUptyYOl(_zYgI6*VZ&<h4Tx&hVCepPFG
z7hKmgaby^vK6Ln(L=Ox7rkHb<#fk;{{rkQm<zgcsr}0+m+nLULndFaAin3fHP+t#Z
zEQX(iJT9@b!h%9V#(*5c<FKNFg%2)392n*&45tug#SR>0`o3p3pV#s0?4Z2+&ELP!
z-t1da<jwrccrXtg3s`&hNmV{R+uhFpl;3?>2jq8gzV-knA_c&^&fW?NQA<EB*Rx9c
z<q#m9$gy2*Yg%c4ykrJc)1^|n*9ON~K}69ir5c4d-}gTtU~||k(M0m!7Hn-zrBWk$
zing3|AbY%NX$R<t?g@?84(Ijl4>GX@nkS9^%vngt$i@H!es(b_H<%}rGH{d)020rD
zD?%GXXn6RP^C?&0<p@B~$dgS2N0HL$0A$_|p4WEEa2b{fy55blpj!ougNv#1{FY=7
z!o;==_Z?jG@$A61Zp#-B&5Onf+EmXT@>PGPwABO*x)88M0jraSN9}K-m6eqrj0fHq
zd%1@QJYEZ>dw>hiiU=mF*lgQ$JtA6wxQW;dY7AzlmimZ&3Jbf6JZtU&W4SiV%LZ_7
z`Brm(q&k%9rSG(iqDhf$=7Z5_-t^fYfiiZH>88ia2X}NlO!A<sds;;sr?$MJX>&rW
zrMgi)L?ma=wuO9nR#o?o?w1KmWNz06kQK+I!<C8&OXU`u7@o_Y8`&KWfni6tZ=-Ui
zVg@cION2NwfY$faHhOU-iJWvjVig~kXL73)5j$Q#ARJ%!L4ypRx?n8r_1Qh;tAQyA
zuEO$E(5Me3dto3fEZly3oZ|;JqfS4F@h#gEjbb}D?vLoNTi;bp_n2lLd8;KKB3mI`
z=Cja`m;67b+a1HEn%*5RP)!oG7cb4?!||EVso}cKm!dD$G+y5JLY6w=uLdBxEsV(g
zp7RH1Wl0xFYtFEXwcY^Fg9Fm;c$e<;<4xnOtTyz(6cRJ-NMJdG%YWZD42|Jx59-H#
za4_!cZ=B%Im1nm>Im@Cfem+D$-@y8H`o{)W08@`*YWdlYre8qnhFL&}dDxW(1`VHv
z%|HoEy|DYXXpU*Jnsb_lsHK%6ylQjB809LJU(Iex&7B+7s#fW#%=e~bc9YgRvgZ!u
zi*EV3zutJy^hyG5@0NRV80}`Q2du#_LLXh_a_qXl*Ea+Es_(5xCKEFDCkX-P6Wz4T
za*nKQQckPYmDBC)hujwm3gY6ySh!#GF8{z2BfzR0!=a5A=BLxy+n13V(49HGh?*9`
z*3Rh;%aaSHV$A@y0-zrjj-mEjX4$qxe1kNjOV;jk-bmdMeQ=MLFWsmJBwZMHeizu@
zNy#Xl@+9w+GV1yqq-S?9@>xAY<qG+t&U#Vum#FNQO&N}53V`0gz!uS}<LTKV#kE5J
zEHC{%nZ10n0-h;NX#u#u7RMZe0CDrMTUoYKC>!k!Kr~V=B5tWC^{@h{zEaJZnIsYt
z5>Ws$twQ8^@<qMLsZgr15trMkU<n}CX}Ia1*>&%}pYeIN;;wVt^|+$>KKh=`wFY2_
zX50g4xp;gfxTIRz6w_!fLszME;NbTgUw2pVRR5A>BoQBMI_<JRy(Vo`@k6aE;O{*E
zSUHuth==2IjO5A!cy*}*!pIRrDGUnYy?24s%tML&!a-ts%o%_Df={BA+O?2&vO(?+
z%ohWr)X8SG)k@WVIa^r<@;rY%WCI2@1I-}4rmwHu3kjAf6au;4L^qhw>R5aXKWv1w
zkpPAGrGduf9y4Mo&vi{jg9&3=c|DRwfLO1Jd}sZJu0RqUW7E}m+%G(iI9Y$O>zOf?
zV$w$$^n|6a4{de?Lw`VdUhR{{o3@Tt#V!<^nsqV1^)QPk{GD;^@_ygt?ZYdd@X(Oe
zRbKF#wqzb@VlaJ$LERQDhGU@kFyQg<QPM`akm%w56>wkWNg43WLU|r%0y0mU657UK
zb{NBUL5I*KP<n;%$`z8Dt&(SUs(t5^J0_Fh*kZPnZL#`+&a0_i;mlaKYYtetZYuWr
znUGm4<wFJM&#)aLb1|;QeRDiTGjhs3CiuVt{Vqk~EMIk-QY6kk^iaLd6ixr1rZ)d9
z8_a&f!c0K}0qsbz>5Ke1fZu2YpgbB|0U(6%wMOKuU!(!tfWsufoNu#t?-=2~v+~8R
zDVhU_FQy?_>-KNcw@6$9IM_W|x%Ga(kdTv002swexu7~y-%ZiA5&93)mUFE4Y_@k)
zqPQQ7f&tthY+<kv2xLzXB-iM=Gg_!I*C=2IRHwdUZy?le&CToI@jZ{KX28piqkQpZ
zfU$^N+w}(WkvW=QCqMw(8%=r^E1oodL$!5zg<r$*eKZuHZHf4>I|0H8S)QYhN3X|X
zn{`RAov^=V0Aezoz_8<^$ZaoW9e5M(Yu-A1ez8%`%{Mo|ay^<io&a(foq(W<*twD<
zOSPpBKO#(iFK!RSt+aNzV`O_Al(V1zN}-T&3oriNHkvqiP-{1yhAr6mu6^4(iS?8p
zO17fv|82Q?=|q$GM7_a`_=DFX6;}hOnQxHNYi+cY33|+NurnH+?dQqmK(pN1w@tJH
z4)1O1y3#J9&~n<Z@Lfs0ObFsd!fs{cpb;jls|>*+z1BQk-kr!%2JLekYcRS5=s9%-
zh#BuVK3&WVvknr2Ai`2LYCjXm+r4g^j1Cv5_{6jrXsOdmI{9^PuT#z-)jV_%)w1-i
z9zGU{rqp9jVSgW#lC--YR<{q-jD1$i=StdewlOOu&;lv#(39qZyA%5=r=2IQGs`n7
zYt>AvB`k^~O)SaLh#PcF1+sZD0>SBIf*>zo_LHgxTQ%vJOH+RMXBZ<4Mpf$X5zBw|
zIPwsL0?4k?Sn@5o))J6P+X9HkziJ)cc2jnQ!@<K3#;NKQiiiLrL*{cWz`kRT*RwKY
zYy?#xxuVXPZt=s~(I7$y5b#8!>vb8YoD6u~iiGv;0Z1fnWsY(bB6`6uSSGw<gd0!J
zUfsN>L-5=2#n^RR2w>U@e6V}BCT4=C8*M<Zh#Ek{x|#~A7-T^Rf98%cS_Jg+1mmFj
zJ-FeuRCS!F`;K*?N_2W(ufu<FGjv0O^#=%NmM`;|cyBiWxkL>{-g@(Yc>&l6+@A=w
zvd8%ToCY#)i^7QobO5fpblu?Pl4F{VGzu|)N$YDt26gPxs`6KNc(MWyPF~0;VW_D>
z3^0G(-8)2hi4h*cPv%4^-mMpx1DiLyJ0ObiD)rVnNb_8Yo4Ixms;&uQMsUMRb{4o3
zOuFgt*J(}pRC76#aLI7LRcnD*kL7tCdS<t~2no9F*m4_TV`_}Ml5RAdCd<fUU7OIH
zGA$B9sCOUNa({x1jK(;hoAlQ*%S>i8Qm5JLq@gmo5Nx4Vb>3|r)Q3ksEV6^0nKCX5
zwRrX&%~x_0uHuoHOWVD!zIVUaI35ua-M@?8$o`;%JN|eO0;Tt@akbx(=p30mLYrCA
zePTLGAObrUvImCYoCqiyZV&ff9r%;GYNgXgwt_D#N~yd4F}9bNfLX+Xlo}zc{QrS)
zn{vP9rhEqGHCj&_5Y|HhF`ga+4b7MVR&WL?7&A*elE6N=N*<n!#7#=LPZ{AIkJAaG
zCz)U(o+hA%mH^Z97T~fG5w{MHP8CPaD!4xMCcAt?xB7!enH$VU?0(>L^M(EKmOR?H
z<lKB$yw|rgPBo2bVR5vr=5m2;<jhupUU4?v7u82!fwjtcpLu~z(IKA*289d3S6xYs
zq<Mxp0Ydd8<?w;+a2PfVUar}~kK|Cd1_={ku%DX-#9kIJkk`rxVlTBX)J;nv;#=q+
z%i@cLwtmGlxJITlJ7D&Q&&c8Z(@j6V$e+Yvn=74he7o?+O<$kX;o&l3EOFKIyxD4@
zX3!W<LgL3WbiLma$)8Mq2Q>vd<;&83Fc8))20E{AvcDd+UA6VL$xjEFi?;#dP19CV
ziV30!I-z>DEp{m)`~0>J=|_J(>#krlpn#42Km^bCsSQwpmmKa-=7*s%l40nav^_n7
zaM?`4%lw;0`Jk!FPioZ9);l6&IIe(HDc)>+=#|0nZibJ}Y7;W{I93PuT$y&WmT(yN
z`CcSYyZ3n?M1O~>;PC$fv}DxJK2BF;ivZ!p*RHut?Rld;Mx{02V+rm%RexLQ4s<<*
zfbG5GuB<j>BaFE&{gs<}z_T*|X!&xkg2*KKXJepyW0l2K!i4D%COQEYsm!8NY^&x>
zV+le=2(Y{5v@9Bn_l%TIJayoA$syXsd!1J@++TmX<Z=sgBIMQ}8B*tc@VdN#Mo57i
z{q1T{PbumkbV+wE15NI$;9E1|_jpvAakF*9VLM6SiMypi3JLdqo(515!|j>&bNM<^
zH)^h7)M(j>r2b)3=oD+A7M6^3`}N!OvF|!ij+^!A-coNbi7twdF^avb6vNz3v+McQ
z6VSdg=RxB~_?Yd!KTf($1x{(;h>)?>BUz&C)|J4bvDJCpJEObMRpVnGW^wP4^$+L1
zVl6s!In09Fq6Kz;PV^dpVd3YNtKu{9-DCGMY4~2w&K7`nwo@>>#ry=CPFFsvac@nD
zD7xj4sD8IxBi3$0*t~zze{xc9ePjCpx-79>b>uuk33hgk_J}-;2C}jWgy5lHePT#H
zI?CG>{KnrtER@@8|1?BU?9sj2!s2NX(Xz?vez~`bjCmQvg?D#5e<$-**R=@R?|YQu
zT(I{uSloOPlsOA6l<L%I+IP66p<lWzyQF6r&&IWx2}2pYWafGI=91?L4|{#1kLNLW
zK9h+b!t1s2erI=JcC_&Wi<i(+(pb-_tuJ4Sij<jf%}1MY(PZaCo1&?O%ih&a;fH>j
zM=-H|=iTltgI3F7)nG|G+sSPrx3fiVi|*`#-yAFA&)@dcs02h5l--nHV<DVt^MDw0
zgZO>+Bh{N&@@5XnUsI1&yHMt7UMWfv3a!v{#~dYMIAvl{F!asiQTS;0{g9UjBcpA*
zphMjwZBl#r7?iTn9UT>oiIUSZkN@|*kWfxero6$Ob3!U(gpf`*m-|;w;Y&>=hL`JE
zMJ?h;C<IeSn;OCrS;?AKUjqWV1Jp=M$?*b<+7+ZI0GyQ2h&F1e1V&rnqsGJH`*yhL
zT_btBZ|||*YtBw=e63{?@IsM`VVM%+=g0RKgqc<oxz#91#9@0VU@Em2B#Twmi5t(;
zjm~+f6dQeeF1^1Z%>GojIIc8I&b-LV%=SF5jBdOO?kc!kOO8n@-wk`baLl~z@<8X|
z24|69gz@s8G!t5KMn~oMnk{pTgW(VQ1hP5lJDY}DqE?TmOgwa~r#)HQTYj~0zqKX>
zS|mEOw)UNnSs2c-|3NMOZRq^37c<K+Xp|LXrS7Ewe}hW0%&e>|6(An!=n4?#F9PA>
zLI{YRRGa~9JtP_*bqJz@hE3gIs%Kf95AHB^2bwht&@q~Jg|yb0v;yXKLi1O#gWn!v
zrA!Hay+ctX>l)ljYi1tLegkThfVS_!5mK?}gmB2Ox&heFDXn!ab+$ypTXuDgJ^RjL
zwi4z}nJ?0lMwB)CbbMku407RMumXbtSY?OXN{tzpYl4(QTEd(R^#h)icyJt`j;XCU
zEo;^pFDD1h&sDy<v{q4(#a%am9$R<CGV8X9AYv2h61*jFi$<?WGia(T1A>=~&o(!*
zTYyAl;$*{G?e=Mobu!)!QYU+P`JZdZPHs{qecUdGX3D2q3bud=LA>2K6I>l0VQ0W;
zT`=i#;6R_ht19_|<w6Z@6+<=XNr>ifKm+LdC@3lSO>p2>Xh^jJzRbDvzE1N%uOn7=
zCrsP{Our^F5*jiDeA*rfTG#xLYe=xtEn5SvdJ<=~UDGZgtGdY8r06o@;$zDrNo-=E
zrB8-ayYw9`>=rX$nf0MPaT>e`>tt{Ab=p0^5N>O4Cw^<Aq)~&|H23od?k#gabRInX
z(^;`;?Ajos=}6hpKQuhhbn1)U?82bY={hes%Rh#a^=-E|l4i@}BEZ>70(*#X6zVQg
zH0on`?HQ!@uv?!oi4tR5282n{vg)*;=k^Zt8<xe+E2hh5{1{=5m*JC}jrsl~4&VdD
zKDO!&oX)QRoeAT~{Y8|f@q-^kM&XB6F`J2%fn(!+Arw~U{1B_OE1{nd)JKc0!#o;(
zK#qEY+iWsn>cO|OqJ__4TZ;1H+XH_64@QpEYIDbuGXL^az1H&KMAX5V8oSEP-_^Wr
zD_##Nu#Wg#>#PqNtmj>rqww#9*IKV;beYFsg#WRWu0{Wx%l`xkBL+?yExlq+CiCjH
zY?sOKJ)6U|);cS8P%LUe$YXp`4nc;e9e1E6yaKJxTw=Olj??JO{sEl>NJjJGcU@D<
zb+R+k=qrkAM_WZrs2l%}FAPUEsB9a~uu+cE*_#l1MR)^CL&ud=vuJ)@9u(X{o$AM?
z$K(tXN#S2T4q(8NpfVyb6JtHgaB4kjC!{UNCD4vING#k77}bGoJ0Eu9Ri8~w5}#-M
zm(7KJ=&(ICN0i--LAh&o-(g{c3dIUO9`St*dtY5&9zW;e6+0$JC>|CZm7U7K=rFX@
zGz54*|0-Z1S2U1Q2s)4b%*y!%@gz2wb$u!8Yia^>E?v3sQT=;kqWBk-1{bP=B2Pc{
z%soYY7=tfR-hCzO(VBl)fAdfhAPPrspN+>%@ww`X>*?)63(q6b8wGguuw41TCY`6r
zj3)2d_0p-w&y`p^#)p0JMwFgipK`6kx%K3Wx_okPfkd{&^yr-PaW?>Ln5c5~YwM|Z
znL<Ihn7!1@Wskn7k-mghY(mOpO$*wM9Yd#l@dPCH<4EQ~j+eaESKK>hJC%pU!yY;&
zZKworG+&JM<iE8gdjNn?G)O!ICk_)key>ddWkaZ>y%3N1AfRAO7ZF=^XsPHR*&Fbi
zxnD!|uLDm{884dv^hf++;xAdg8lH#|YwABW3uc+y9^9>)*8dYI|Bvl1g3A}3(^27x
zr>&M}r*n4c8>+&W6F-(}7B|%zkaO{fI4Z^;z$t(M;(#hH$otB_m(vh%v!a^MEL&84
zB;C>Heenk)v7c@BNBanE_3`3Lx^)QFDJ6FYmf(__-Bjm$!52EWtMvmlj-$U5u0(4R
z6VeJ>&j?2BJk>4R+}N#|e8AdLHHpP740(*21+DQ%TJ_Ri{p%+>FCvX<^-&r9#=+C(
zRYr)yHt))@0UM7vfa;$k`dzEhA*@8JaoQtsmx8(c_W;}WN(-X_*((qiFE2@}!!O$o
zkpQV4&`T3+@ctWSfsRf>(gN1ei;Jq2G1QLPl6ANCppA`<5@o=KzDIHqBPr?KXu^Wx
zcXS5)ut?Wn5jz3L9qE{(b7#PqHU7l(c&TxrGaF4W!_#3I2}3Jx*7v17;Qf`7b5)19
zUc?$~&^iy;P+lBRaC2**dJ`Ck;RuEi^X{GOY?Lyd`TP4j_c;VGLNC7MuQcfawXbkX
zonG<o&=?Wcx;4to2-Va$u8qLSjY&sIHbS;Yfc$c^aj9~3`I&}E{g;GQ8=&<i3Q*N>
zV-{|XU%pd!tgNrh_ZRA{HA8F1V1Hs&J>jxk89nI$O7C>5^fN1Xe-5#Ly36i0FS|pp
zQH^X7xBA74JGuC8C>wcUL}_H>GSQy<Bl+CZxNIz(!Zu!aVp25-q9=(BHjnkuZPqax
zu#r5E;6bb1EM#dqilx(f*cK#+A`!a+aU{d`HVPKnqMD8SIcQnMbm|1<#NTatvU6zI
zOS}ZRoRD|uV7gUSW+|neV`#c%#`7Ts*neUe#>uWBYOQJ@pOK{l&P15HS((Qw!8+eB
zf55fZsXFLA{1t{_nJ7UoW^X`QO_u4v{Gd2Y!IjS@x0SLZ8($qV-?^XO`Tba{ddh;x
zd5XL?&ORJN;dJEH3mz55D^8D*tXJH`5X`$((DmWBbx2E*n?@}tPmBEk<A_qlwZI#v
zvZ1m3$3ePN?`qab(;VaUWrebJcrQOdMa5%(iEtf3V0SDPThLC5R5eNI`oxYHA^Wo<
zReGCI0r8zw==NBifE}IUQ)!T;o?7hI;XGNC#7L*Boe)BKh_3<~It~VHZlDM{!K!#@
zRV<D}J(4r=7OKMTL!+3VlDAz<5BfarQQWN1C1f@Gko;>j<lYK7>}`BQEDeyoGs?!m
z4a->b8%0pS@HJOpv?Gh0*vGm0o1f0zJIWzvyusq|ef5WC{4E^cX_*6e@N)hUzjLb&
zic9F~LNH~keax(QVd=>>3PZ^xtwbiohBEnkh=YeuEYh$nj|jLS2p=VB5ZSg>+JXF?
z8FTR5LDJ=Z4>%~PzQ2CQ*~vSPh?lWr=zi!{hO7K<0oebVSR^18Fs|J0+oPqAlPHCU
zhEAZo!UYx<T`?^(C!HM|4B184Ne*fwN$P>$Yh<Ij3Vn};O~$68!cWc6^O*qT(vrKj
z<xE~=SgG498H3S!Ksb}HWtW!7+>MrebGbO8h<_Qu%yJ*so7mpM2hhhXvRVm98K?qK
zR^E`lB^|iA07e+!HhGFQ44OyignudGyiy3n#n3eoaMqD4W<tlQZ$GnpZ7Tun7Ya+>
zcVSf~!|cm^yi9H9BLcBzbn>zStwFpG7rk^P8IToc-eEKY;bxN4Mcb!hUJ^KP#S{ir
z%T{4XZ_Bk>Pyu>i*z7Hpmaw+lbtAZ_7#2n+7`q*qvl)RtA@t~NhlEJQs-m>a9_lEz
zx~PS{c402U#g#=dyCOX@Fm}^ksy2;eVu$#&z*VFV0O4aorBr|&*vvj)5+?zmLb-rc
zc7ZJmO-2JV(l8qsg|JP_rg85Z0h5?S_{8slff9gKs&wrKRnHZ{t%V|G`o_KNuvk;Y
zAnaKH1!|PmmczAPsEGocnHCkJMnHfTa~lxjUTAoiAT_-uwtQQAzc}jT0sS7gP|eVS
z_r15L(QUVyuDA=oJ`%%?rdbEET)JTr`sAH!rF|Qw#dRw5ppHzMz6?hL@nS(JTWQ-g
zU=;7=<JTNV5#&}iLXBy+yV1iG9VG<^s-eLM&Q+uwJKhYjdyy`k{<MT(ArQldw~Oqw
z>z<m<?zIaTCm*o1I<B}aG>Og4@&96;%`P4H@%g%Pw}`2t?u<T-d)@+~2CpXI5c`eP
zQ)wAJyb~t!e){2a_zClIjFwF7@q1vkasMoFKe29$ml8sdR?rs)cr*dwD6i3W$-oh>
z$@kN9n0|`9yz`+Dfduo&Rpq?CN9b>7W|``D46%i3!*2*YD?lz~L#q@gv2*TyG<>fJ
z(%rUitGCC}1xj&$+_dNC-l=2n+3lLHIJA3m+^`l8@#(K%1CWfmN&8iR@|*Rwv4i8v
z<KmQWy<GyT%xDB>zh9N(%IUlx=Cto;l=*trdY=~K^&1WDJ?1YwYPHKqF*4pB`!xhZ
zVwLqtKJ_nUn-#DFYkw}*j*o6Fz&k__ORUf~ofOyO+~OT06SGtDN0YAA?<eoyK~ie1
z&6{Czh3I?rlU4dfsto)gK0(u0OLKta|MLTRg>_}I8lT}2FCtQ8TsV+eq%~9r$t!4Q
zt-uTjil#04IRPeS;r>CqsOvE*nG&F@_l-cSLU{Tzp{EnB&lj>w4+$M%FWAk$5_f8E
zvYq^Dbl$N%g0E?D6V4c)FRWQta&J-$9+V4vAJwj3wh8^ji^jcUUCwAQ8bsY0Jx!Nd
z+jOjvvOe(?v3)n)T77i3ubIk0^p#U8z#ZqDeU)&K;F6>$pcXu-RL3~K`=M_C)hrg>
z`%fK)`2GpvIPaL}XI00WWbTY7IW*4$#3XTMGGgb3l>YBB1WfVrFbwYc^^_bSWy|_#
zIWr_u;|7Fv-W*nscBQNpRE@%PRN{`RiZ;w;iy)f=wxGx0J4icrxcLx5!q7vAx5%D2
zPRD&~A?zp7n&6h`Y_g=w4RUdd1CC?7m<taPuVyneOwwRs&aa00<CRqVWa2DIIIe$!
z%J)uXbYye@;=ff0);OfiE68YuVS8Fo{o8HyZp%5`o|E=9TB+dsj+54jGB5BT9q|!h
z5jc~rt<=619oj06cgift0IJ?F2nt4DQH;$0f?z$Af-SIVkA5jl<DT>5GX_j^ks6?B
za%S`N#<kDUj^*&U*ei0<w6vzX<NhrSC|pT;!j8_i2TL1Eb=!6FPjM|wEtENvSyph-
zY!=*l?*WK+xp?~EF2_at;vR+GJ_=2({MNpyHm}XFyl&zcF&In#ZjxO?#C*_u+8o1x
zeXZapPEz4Rki>}s#Jd2V*`?=XzR4wh5<jmW>hvJt1&2RQHgL-I);5?WK>YjMM9jl&
zzf#&;eQx0(%p^2JK_?TyhH!ak_tD(_wpe0Z!MW$~qgtSm()U$gz{PD#=o{Q=DxdVn
zGoRGkocqU{6ma$Y)i5_w?6BwKOEJL*tNDlb^uxm4u%atBwg<LND95dNL#qgE8KB<=
zE0-6J^oMqX8}3Yi)#kVBBLM9zudp_z8%lI5SN59HeyW^EN2eO%9XN|L0u_-3p&Zwr
zk=F30V_{($zO`*J)5I0SxN`3LWSi?4v*21=)Y$G*;^%<gpXOm^TV4QDzSQGVraXXQ
zoE0_BP0`Q~ocarlvRMWW7!V)g>7KbmfY6$`j)w3KWkNr(vMRncg|0j_%;+hUxP@uz
zl;gY5+IL9={G)xyI}rRyPOuN>Ml!#p4eogMG5m%Y$9Q%t3bY1oKCWL?k&Wy#C`o&2
zmvObGbGp?hO*QGJak#TpfDPWsyhlW5A-mPMhuzse@Ef}G(s06MV?8T0F~!UK>L!u9
z<^N*feNLmu9C5!ZQ!5gp7nhQn?7(z0^PhX|mmeIA&<G4Gjes<}c<dUm^gKe@7(8#m
zpTX?YvfxwK<E28Oh-6l<WPt)(#-`WX5WC>tB#*+JX3h05+j75+JwmK`nwOeaN#1W}
zmk)S&+m*vZB<4<f6GOmZM~)D8K`d`x5%=JwL!DZcW7CoQQt5VGPgY&g$m8;J&00wY
zMemjmu@PTWQhtRa<-clkizHQIUIDqukvLUQvvugkDt9Ai<?~yzjXn}x?T}9B^zvg@
ztJvyt&L1@8-(4P1qe^zhGddzr|NOq&4TQMAmhe@B0D{u#{ic&&AAoaExA}VFG5Kac
zKZ5}!^x5jUKZZJmib>UNvUNW%<zkl)=?b#S9Q2ORp>XpEE}a!{DEegEU1bm`bg^68
z!AkS(=a`$rVwF+br;Shue+-(BGeT=KO{Bd*E7v$38{%EU@J(ZoGkZFDOomTa6t>+3
z;1(cJD0@2kb$fkud2P5n3<ahP7*ubrD9sGtiNa|)6psY;6-@1P_bNT!9PMrc%fqrf
zK&Y&-cxlwlEtw5c$tcAOLJ^!>o#B(4&dOQ$;?PATC^iJD>MUn?%eDh-PYBr()LGX0
z?oD)^SCIHG6I%3_qfTIG^70Tw4WuKJgY9)wR`RqBiqxJLsU)JGS|7T`vM!lV^FHDu
zdZMCLfdRS2MFfY{gFU2%+<ItfE>!ZV&PcgM8=wHELIMCk2QQnD<WhSiBZv@Kpfi}@
zP;P^hA>$J9K$c4*Z!x}%#X%UMjuK4-e|k%om)B?NvZr?g^SX3Bubf-~66*ok`?5nE
z%xQt>15be<*t@ILHOR}&B)kmBHKF)FpwVakY00~m_x;DtxY4bn`-SmN|JSSxXeTq7
zFn)8G-100m@k-b_rU2?^@MppR#lQ;q>};U+>BqNiQLxU6U3SE4qak3?`*u|X2eG5d
zDY$__bF2UvbUuVwA&6NBQ$5mMC=DJz40NMmDYngKkO#esU0l&=xa}>^Ilwi%xPG31
zxvhmAy^?G}DF5LC;l6VD6t&XUYE{sg#xq%378A`2BC4h%=oEH|$mpU!qyr}ie^2OJ
zC&>SnnQacZDDw<}a*$Mugym<o9Dk^;XA5y|qejQ?%8UoU{IS~|+EZTY5Re=h5izq&
z&Rb2b@a?oDSaN@VWEYEw^3SgpXO9$UFdBJDwr%^vjN~TU>vUpPY&SCDr)~GL8a$$3
z0p-AwP6G^j4k&c6eeTyUj^Wog01nUv2#ZV>XibA9>aFI<dU&=|xg4cuF?C4ov>L|t
z)r&jedb0!}j?A^9+T7<pDtIuwZsbA*dz_fZSfr43z8RZb_NcG=={Fq<wBKomM)@?B
zY2&}_X&LVG41_jAZ5Pc#TXm$SOfAhr&VFy2z`Gt*IFM{CHoKQP+oGG*8}-1$peeXX
zr=m+lL@(p3BpD<Wp9+Tz34v0*7U_+TmW`L$l?|?s=zZ#si=zuh5{H{Pbq;W5Cl>}&
z<i3I>9QxaJ6Z()ku5a&(Q6L%>%lNAOI|4g1f}_3lgDjVLY%1e`eYp1{(W+@4AAjee
zex8iCwf6ekvt(@k>5Qn|rBmCRE&ZU(WiMV3j(M;vU()iRfp>&yd3gH5w5ZO?I>W<?
z*s6j(Vszu^4H5h1e0SpfKFIlspK|LX7Fw}zYg|noHOdSl$>GX%$~m-;j#8`37yJGp
zdEqHs1Cz<c;^@8Bu`KkcHT;$0KX{EN!X!L=s-b70Q>!6S+`^Ul+(Z92<WJ(;B$_Gg
zr5gm<A+Tu!FC5ZwWqh)nF|(Hg4CIx?S6=MTRsKSnZ_bNujV*mgig^pfV~#)kf)i%%
z!Pf*tanlId)XDyzodlx;$#}fv0?80CRHiJp;!m&y$4Zmi9`08$j5<5!9cHXiB!$U?
zW^=y%CXq0kR47Zm&LWtr6bag`2`amql2bmbs{X;*H{XPyUmKyJq|_im1U<;I%9pQn
z-G#YvS11^D^mBWcH9^|oUvT_1&x7)UcHsO+dp)StG0ppe3_%>T!uMOH{vn@*LAHc+
zwaAa;uCDhOQsJ!0X5o*F3YA%YtuN^$qgK`nT;U034_20+Ky9tIHZHbTHsw|DqsSn(
z^I=sVMHiQyBxu?PO1r+V0qSCIdYcMkg=m}0HC0s;=FSPZaj_pmIZ;FBBpS>Fb^s3;
z)62JHLcv5S`1x`3wk8*Q<0=Ez^*0`;9gXncV=jl1*t(glYLE!?l4cI!f&80zn)in8
z$Bnz59zQ;+d3ZEkrE99F>{PEXwA_M=&pL@8<&h_K0cVgHPhsgJgQ9cD)g?FXBFQma
zK5O+TMsvlu&x!22=~P~#o&{KeEBVnpeo!!wm@Uw~h$5?E9YWpBjl#1Hda4xY3#ewA
zOs6t^SaWf|?GZiA<7?+iAb)E>O<l}jDJ>^HXg4rXRC866q=!LRC+db$IqynzpCK#?
zYNuyW33$OgpHU2ZJ>B%wo3?Lk1XY<W@+HhovL}4u55HSWJZu{e6OnLhvV_Kg<eO5O
z*Qs)>abElWP$9hsWIA|)u_I2RKz4?MycLB3V`gX^gx3wFDy7fI>>e<*v9%3D1#=@}
zlN)Z7FeROCL(JYQi!FA@XyT?MNk~J?Lnuk*TTkPR`5T8_6%0g~Uv}z^`151JHnLRM
z{<5=|TR}TjWax`x!v~rMQ`A279ZZ+r{7)+>d*Lo>)c=dP|9KA$2jHUu4&OX3Z{B%4
z3*;Nha=U!};iX*Ky(8vN7;FKqWW+(@za@T@l4YjPHg+zFeYZn<1*lnzKQ|!wi{}A$
zfb<A);bILfExbUgL74I<Va*;It&bGKh>R+l$ge>TTR-k>D&rSFD5@SXL?9~7;%z&l
zWo(u3f4H4;+-hKBipr6OOr9!XGM!yytdO5SITRb(^VYBnavOaP-qh<PFg4CCVA+1n
zf7#Rh2?+*;fTn8Zk6{dJLh(3qvV@ehm8Y8R1h+$zhht7S{xN1pIMD?6I@#^%vtx<L
zXnLu-7hu<)@cGV1L?jT4$&WUIl3|e%a2^gj`-vr9Vluj#bbexE_D0|WaH=-LDy8i(
z?5udO^JY<zm)Ao)UsJc6|Dekn(7!7{2pm#71`~hCfBL%8AYzY?>Oo(D63t>QZBk8B
z?Y}>>cKT+z){bV}TCA(8@TraH^lP;<CsVO2D_5H;)YlCva6+LRNVcRqr%;mF=w5*u
zj56VVS*%qOyxu0iWuDZky^nIvaU{G4iCnwL0fMi3<y?m>p^u3<w_qbg^CT6A$GW`U
zvf2-QNx%ZFuRZM!sqyyrvr;gcXjE0t?w*FUQ<bmWv1L@viG|yZo4&@@ppaKopo)^j
z2}K<^YNb-peZg3_oAGisYDWY8;KU&Of%~^W`_mcEfZ+wD&voQ&n^S)(@#;~#2J>R%
ze#4e1O3c-e`2(D080B57AU1tgn5iW4St-_flJn?o+)PzcNC?#93mknav);)Jl5IH?
zrRa}?C^{R=6`r{S1-tP1(niOlfNJK1?ok1Y(G~skRyI6c3-!8@8{P%|AC+Xl#GgF=
zvy+8wVeuab8U*@vAhA04w)ke^;QHJMvdb)`<d8R|5-;Iw?hCNcq>O!MtF48L8iN#=
zFTs?}1?l@=HFap6<NiO&-U6zsZTlZrL^&W*N{Mv0fOL0v*Fhwun?nm8x<tCAyE_hD
z0@96icZ2kAbKkr1-n;kvAAg6#u{p!R-e>K#=9+8HPpE$7I)O}I+$1Jwy1IVt=n^aF
z!HDkNaZA>5-9mN@y(`m!EPZ!%9pD^YJDbF&4L?~@QdP|W@1IJzyN6tba)57*FSW9|
zcdnV;o@Gk!_dO>kVb!e3@ze?C9=QH0mVCt<&E%ZD+I*CD+W1T6=oMDqoo{LoH-*+l
zr>nY3=9ub==cma?FPz5kf>YOVf^A8jeH`kAYUK;um0Wt-Nu#;^1FBft_3z8n)RDr$
zF_$6M$1amp)(Zt$8ZcADM27+A%=AnJy~MEV2~nk*Guj7C@R||7`7x(bwROcQj%(v8
zgNJT(F1E8u;h0+9dF6$D75*3u`gRQyZ(&kZbpD|3jvcVtn{}2R9#O4Nt`Cx$JK$QA
z1#fS6V&Z3AX_9`A?0&}`mhgFgA;0^LeaQONcgobwt6!Aw5Dg0!E}x7esA*`B^~Jg!
zpq}o{sz1oGjoP9bZH;8Prg;5FmiMg)9<U%FCnjz!gXrjd+6dWZ@B4MsEty`V<BLJ+
zsUNHrJrU!I@75~vCt(33^GGU>OMNbaR0pcgZcyZcW6{eYiw+)xXncn30g3<F_lagN
zFZ1c|+=*4kphUr68|#JXzrJ7~K;SRGx}94xnCBFKM%$>kzizk-;X9i>-kT*H+B@TR
zQfhGml-fOU*(~C!2&_?(0fFcVJA0PyH=}xL#TKusNe*%q=M%@{78)*yC}x6!`+gK=
zW<m)2wGqv-z3!2(KLnpxIcFerVzCq;mw3IRR8LXOuLyfHMb+{=o9<ZPQviFF9M6%+
z_uk&G%gbWcCg)s>(L(`aa-3_gT(0+O_6n+g4U_H8!)E&lVyK}(U2bGTgV(|E!~tv@
zPa2%X9I#N|0I)w@*R3qU=h%BbO=mlk&pU?i*Z^VSz3;<3i-&q%9I>D0P~Sc?IMmv)
zK2-U5oaD|-;McU7x>icR;5e!KK?vGDyKn7zl8AE9muX*8z5NsBRA<1k8bO&{?8^o7
z!#7{E9PIZ_>axdddwHNUhtq_2c3$PnjWUKp&?|ImiY-HIJ@Lh$ki><i(3}X>wx?17
zu{<o<qu8^>ZA6v7rgz%JuBNa8Yc#s$`}dJ6HY9jds=@lbs`JV^WtSe7iRSnNyvS~u
z>#zh<<FzXOdD9<>@sGP@Su5z}3ZfMTHA?g|j11a^T_UlhM)OC+tZTMzVW@W6qs=kJ
zk_zg9NHr<>(BO!&vLAllR<aF6-?;(TF8XD5qXz+{=3kwR{U3srq3`?<cA%AXoNBNy
zOVPRS=$~2V98Lv(8ImJ-vQ#!aRb17IxGQ@Xma;#67>b<8rmfC>yvmXQDz~-ro_eL0
z2PJd*JlR>;N_ysE(0jS?LhC)pa)-6%IMKVxW<lgYdwPr0{yM?Q9X)yJzVC>RT+)IO
z(lq&PTD`@S0BmlY*;HZ0W&fy~FgBSRCY1b*=KX{H8fn;XrpB%`(p9<KJQUzytUkM%
z?J}{hoFGaPt&#5juRfvDbW0z4zekQ;D#Hq6(Q=+TuW8#=a-g+wHY9tTt7yVp8vv^X
z9Yk#N@!)juQbs%lSx3)P?4(RjY&GhVt?x=ID%qZd#S!zcQNZ@NRq7Cj)_kH6y#|A!
zjd>ttn&|K){j&5Mb|n&}uUQU7laW?S8+}>Xr6ME7^0DPFX34C63Ba1<TtIpB1!&Ih
zg;B-xWK2)4HXY<8^NPDM@u{uI@9e45NJPTW^n@ffgF=SZq|~g(&Wuy+^F1KjS!o)#
zxGu|EO3JF#v$2d=BCc^xM`v6M3HaQGrN?g{9Kc|^VIk-Tlv>Q)1qVo-rG^_?k_0@0
zRT~k9wPZ(8*uk_UQbE-vfHC~xs*bV(*>~kGGw%<EVnO@PU79RWrIk|K(WdA^GV+Qa
zD^}k6i~#y{YE)XM(^15AUyAlI6a2daRNfa_FL<ieADvoE*h>8eQc_p&n|}}++u5&`
zL=jXLIqv#&REy7l5<!q3^N<5hHW2m_0hT)9_pk8*OFrMP`0Q3m<9$DM4zy3ygz!uN
zhikm8>Cv4z#5NJ=XI8(&FJfPw%3Gd0QVd40`F5w<tW8tk$m{r@@4teu%a|ReS6NPz
zh`%X1idxYS{1T`g<5>v9TUxh)7^<`=-LZ$?#y-JPp&j5bDCfD}Mc~t9sNXa+cbP7i
zop9Grb8X4w0j1rg314e$85>`n4jWfbQxm*u?GrUKQ$8}Vf7%SjBWF!{8we`FhUi!X
z->wkeqk(STK7&d+F@uKoo35<@OyH=zwOZ{jFTf~CPSrv4bsHLx_C~w%92!1mdZ)96
z*8n6LKMGNBt?6@dPx0Z@L5FDh1WT#vC03_AX2)&qB#kV9jN?|OWF$qrs@+DiGgpc@
z5wd7<F5X5RCas!=k&u3N*6pJ=EG)43Ln517z-(f7$`b0?<wD?N(_q5f-LD&G+EJK1
zz50ckrEohHb|#faa}g9&B*Gf`vm*5rms1Yy7%K(wNwV^uQ9|NE*|EL(83fbwSD%Z#
zR$pAaUF(H=%oF+~yR*>at5oY_P2NVq5EVT=N*C=(>E_{3AD+|@v&U%~><pfIe)6gG
z-i@im;o`h;-52r)=mumYG-AB(txo4(Cq|Ko4QUijwUTPP74cfeU}J%xpAWx)6sh3V
zoQN~Gv<r`e)D=~7o1Qn4P}FdBh3adQij>Y7>pJ^;luf(Xu(JvAep#sf#an@6H!6Jn
zx>MaFaa#R`dp^PZ>)!TjvZ}#Hj-JlnKl0aW&wFml-ESAJ4b(CmHOCz4Rll}2UgyQs
zy8X#bFaozOFwMr`s_vH1b+r|Hr@;4XGPSS}K-Mg=@L;iF+s)IA1+wTho?3IRCE%U0
zZRLnG+;yKJ#@<hv;iqWsolo4>e0RQIlI311C)_HF!p5Ac*t~qalHGfbDSgVbEkCeb
zun}<)y>MSC=}C5TyyvKO6VLZP_dH=7edDE@@HC9)YUcUJqN8dKpb34JE*+$b+4e}W
z)^uqR8Szatd|Ml-sEtQvBeh>1_Ote%=&sYsnk2k__$53eV$y}jAdQW@nA{ErrV_-K
z6+)huU1S|*gV2brUN=iG>!?qqHZ`5))zxyaq$)uQxi{Iq!H^@sb4>ATs$OnR*XRdh
zW7IXtS~-`Dl3}>6+w14!!Isq9HA8~l&fy6i5Xt+Az<h9tzqsQPX~aifG9iyekFx4Y
zov##OG28A3(w=Bnm?avN-$%Q5&JJTh2SKa|<I-85ugrjwGx3WvmHmNn$JXm~=Qs0C
zJgR`pwQW0sWKsSTW5NYbav%Br&7zLG?-+R;ZEoz~7HAzQNz_FTq^!A6t&Crs<RwdH
zcB6!Cfuf_R#8ONNnadF5c7&n}lOU2PtASm@eXv!jbe}~x)=YKrmPrRubSLW5kJDLY
zo&4@s@zE4W;NTV0Tp1@S!K~XX-N=EDrs$<^)tnBwM^8gKI^YX34m<u;^!h!C@eZT-
z)MLE<l<xY3zLLebALskP080M%q-4(R9I2HPrUuf~e{CDTlL|pW0&%&uj&tI*5P-z7
z{RIY^tT3Ns@YX<UV}u9-T9WzXA>Jk;g%|8PA-GJ)P=PL@T&5*+^m<0XUZQa11j7B=
zhj_JpcJJ`@r^GMz8w2BTl!joyM^ANKB1I5~9CGAcyIP6oNiPkC6b9zdv)s8{+-Nl2
z*G@JNwBeETFHKs%LmG8OB_z#pzo5Xi`T5S}Jcf3bzD=+JLgY0r%=o=tem*8VrB*)Z
z7zQRrW4=n7-LI*h1h1{-uppzFTEWgfkoRAu&a*St8Ty6b@0^9LoC%ao<V=^BOX16z
z_k5YRoB8+>FeEOCGO4ktyO=-7uQ@buKYpeK94j>fpRGg%uz{^=m)^K6`Gy<b-z{2w
zVg#epQ_2^9@#N)Y&eRLFn9n0{s%j$=5|&s66yo9O&H%?3vsNbfkC2`RFRI_<Ov5`<
zZ&oQsfIzQ{<;dx4jG|%th1TY0isOXlWBZj~;L`Wr;P9crLmyUvmv;Mh6ELWlm_H-Z
z62nIWx7o};loU=IFF(7^yYA5MG#+;I-zfqbiuY!WMTb9;tOFl>Zq7FY98*27@&IgF
zAR_xh(l1;BRzOfV8IV5>YwMf{89lAb$fn;z08FIH!gwi}a<;kwlHDmMmJb2scvnJN
zR@TyqzlH5;m*vE!j1;J6GXzX7D~~veL0oJx=s&E@gwGGPiT2CK&EDCs&xaN`KunVe
zN3T$0;wR_RMdZMWTVuhVXi?pwr)yK38{flJ^?KN!>rIfP_T8Q8^-0gfF!EQoHIP^n
zx$St*MsHMUPIxXySzjg&e$TYl%Q~)I6~Dg~Ah^E6y;@?1p7JX!u!@1s>oA0$GS^@f
z$*br;N~~~9Z6r7HZ%lEV8D01BKZvQTxe;YQ<0UV3-IHezJUV=KbR)TNnI{AL#dSGL
zK3a4@1NqkOOtQP1cu&VTfA&PM$85EES6*IP>c9fV5XaB0=9xCAy2xzSrO6e=0R4a_
zsTTE0(*QZUxVY!D2VwVPuv6{v-NstG*8*j9mZ(;#R&B`^EB@6O5PW^ZsRmQb^nBUd
zj%eWD#x>=gbAv$d5BHr%oISHOl8eHsF85F=i_G_?_@}&@vWj6g_*gxBSA%-=OC;wd
z%eQsqyFW~x5=b)ET}aZqi%nbh7DS=<Kg%zm-{MGp=NvLllZFsRizCE;0Im^AH77|o
z7-L=0K5oNb81H@(c6MZ<n|-pxeGz%jm$~tS@D1(Z>tK8AM&`TKX?deNJum9S824|U
zv}3)WY`gn*cMisOytqlVvGJU{IwxF6HWC?SRb{hl#rg@{8u=#Q*!RXy*qRT<6~RYT
zy|@nJo$JS5+l!D*ZMMep$adD<!0aSCx-<FeK4JTt^|Y4oH;X}v@7m`v3?D=$K*|>D
zdyaxrrWW_JshiWK^14@Ag11Kuw5WGyQlCtB^K#~gE5iA>^fuZrrxrpcy+GLdOH#i8
zE(Gl<4^Pa+&ZN8(&t*9n#h$eq;j#YG2Ce(dX#7}ekmdZrt?oT!!UTqepU-X`jWQ%9
z{<=+f_Q!mfeEq^NHoD`m!4!m(!_|;Y^k1?83w~WlY;;T&e4|Ougco)ehyI0{1#U`R
zPJAN})Q-%w1%E6?^$*IinJHYdC`~mzuOp+oyZSQq>j9sqR%xf%8tWQLdp;=WJz)p0
zh=I$ci}8fGL%o+*Q}h7t?*a6;xVT9L2T6IF!{gM>y1lDeQMm$gbG1Kl=@mrd13w={
zp-ku-bo>)}GDHEl?OBr3RDBJ?W|9CsTT1KS&+7L&By>OY&M*-RFiAr8A#nq#1?2CZ
z1AeN(=<{z%ewwTputS`8kz1o-p$hR{2g3_}YZorojVo!)d|hl*jQqfK_Nd5(Nekuz
z073Xg;@#8KTe+sQQMXD6+<Zt#PY2D=W0qX(4^RUW4{fi*mNdCQ#Ry|$u;08oIGC&b
z@U6)}5+cn_*)d95KVKKXvdWN*JlXI{>#)e#JOviNMBo)eW$zdjD#qc5;jg?`n|O8$
z9{fYofbsE`Pk5PV@I;TUGp`X=qRhdqb2%2nht4^`@UG9g&-80f7JR@pK%u2BSdhB}
zzNH}fW~1tcV6Cb9?lY^4Ip<W~Jit73vjJcTB^C{Wup<y}KOqQ$=m9-((tALlIU&je
zP>FvdY(Q#3I`i3|&*HkExL(TZE#Gz1dm1Qcc&ay=_J>8}766)~<p1UEjJFcXL216n
zk-TjxuVsJT8iE@-4{yu&!jRD8Gy-_C+mAWP>nlrS3i0npfj^0Js6=3A42IWbZl!yb
z<O?F?Lht<09K9{pd}0m5j$a{s#x4shecHS8vs0=cdTT#J&L6eHSgXcw*U8DPA*=~H
z9jHGF*Qzx=cT6&0@H|u(RDF`Rh_Z(HBj7v<33f5)X0)4hQYAsH7&vR?Y3YlBGOi&+
z7v&wBB%gYhsBD|;XX~*;*^F3AK$}l1wU+3-zQwcm@uko}nLWdoI|B-HRF}gjpz=&O
z=Ha&?L8*PZOX^cv^J~DTdwJ*nBxUU*#wGD-xmPOZxc*4Xhw+9J!;lYt2!|_j%@SUv
zO&Wn$gpIWZ=V^LPRcdZA@AeX?H5Sg6P%3hB?(6sIrfc%@D76YZnjo##cX=m*@0@-t
z=nbE6c+Ioee@eNyA5AdF0KL*vU#b~wzDBQVZZO=fVHhKX97A)YGaV7Gf8`-0&iNA`
z>#*Hx(qFZg1>DYgrIx6)jkE7JWGVYSUrP6KyL*AVL^7h+aItaxnG(xPkox?RkoPvi
z%L%`D8q!i;;=XNy-CK2^#3&gLJ9AlT<i5Akn=>RJt`3bi_(?aLQ?TGA`y4yMDG5M2
zx0dk^4y~9V@p%^(9)7zy(>bX6#w)L42uouAzC-VH;8{~RyY0?U8q0KYw;;~JW(ur3
zadz*YB?)&;mBCo@1fJ=cfYJ$J@x6#ybna}CNN5?&&!c@|w|BLk9@pEk0`?;-DiUjU
zdq*X5E+_t_yvW-EXYUK-Ton7`xRnDDouvYiM(LzD0*3k>#|cU{<$R6!4);lH1r;`x
zQl1*5cV_SqwV~D5e{0LoLup~f<GFXur(J?5>bWJH;DDF&7#K$<IS;D?5X=;%qQYX?
z-$(RTkX@;a65;sg>}~!MNp7Y;TP7!V7f*<N!@~U4k-O_N83_eYf$i=U{toW!##8-<
zvZA&kTo)Hd_TvQs?vWC`2sG|>I0dOc>gZ15^9_rRm^cEBUwKvw_ox~ixCBC;fB~;u
zL7Wo~V(r)wX3@EqhOt<-y!_%3h1y)7jNG}$Wu}NPw>a0nCM&jXR}M3SDcms4m|Kb8
zCWpkMl|~+bJb4?oT>?KEACIe)mu|8scn#Qz(wm`gJ5PNR{7gp9D(Vtc6#diV+Hi0l
zw#}{{8r|(hfq_oO%zP@H6S%!LYNmQ1h$;G{`-818*^7H-oj>W--U_5>`)ZQ~+wrk;
zi=h$oKlem9{?JFZ;Q(#A4R5E|_Vwnr4|Dso0kE<Br+(fHnP{$<?EV*dc=DF4_9s8V
z1Ozz5771DNVu1?8pF@ZlCtxRGCy7@S3lZ-`O-DAY8?;>3>s5W%RESTtAVa9bz3YSg
zU+lfkN?jGwgf#N-Zk>jo61>~hY!*6p&h;nyq46#8{7zIVN?ZcOj1jd#R{6B-8DAID
z`R*5WRZ{^s4XKI&ncIuU_ePO}ACcsP+2<V6a0XxYtSF+AdR{b`MEk>3WrKK*I^ZxV
z>T3X&ph}5wsy-*D%eMY^O0Av%BMABn!@d~Hm{}_~p<>v%1MXWQ>2PiZ@cn5hH;Lh_
z6{b_Qe5eebI<+m+nUdPl-skV;)_Ckrw=dYukG>g?<tk3lxZ#quH4wE~5WgzF4<`k6
zSpk*?D46$GHP()F0l1)ulDhTRE}LooD!D8r*gVR}V9ZqaV@Vgl0#oMe;H&FiYp-i<
zeCDel+Tv2r)A+rhez$R1+oZnthp)_cfx;zgg={uRI2;fvL&wF#E6CBX8stcPHzMQ%
zE1K9xIIKi`lA0wQ`^*BdO%$>OUjneodjXkp%(o>TzA*mtmGKm-!G(m&z?YO)h5#?n
z6wkBmO+jz;b8zMQt;yk+s?+yPE$u`DIdRLx*!>K8OsIu>8?x7pu=yW)o@9(aJwtUI
z23NFnHq6lId{!FnYsHQ44+o3~sa1`#w8mKOcKh51s?cz6udnJRp6CO01-(6(<?fF}
zFPN+qr243}sF}T1i~McFz0Y^MHNDhGaIXPlKSSxyI@dfN`_Z+lRwsj^dCm>2TYHz-
z9g7sdnNbQez<iAHtK<flzM{B6_X6{}8lB$fXg+j7!eyAafE2`d+b<itwdd`B{5F#C
zLj|R$Ll_pzvK##nTNRBmO9?Gwc-GTPI9s~L5!{oF$EX0B=!BxEE^pc-q0eCA@_C62
zSN0CSHr0K@i5BMxwig-*N2|U`AbtWIS$OZ@&EtM4X?K~LTGpukx+xcRcC}@IzI?qs
zTL`UC9rv^&!8O+B%AB7)?bE%TLUgW-9_(B%{t}j0w6~=)sEzuQ7;S)9rSkSQ$a0Yj
z1g8WQI-n|Wu4MyNTj_-Jx=#n%6}cil@iA-=yaC9kclx`s1W>oT*(^$`)}0Jyhu#nh
z;>uRz$%L+h2pP<Bd_ViXbw<8-<L}~yY9SQRsci`B#%tXHr=)k(tEunLF`G|Q^%UWC
z!>bXrmMqb`Q5xUjwV(B1>$&S=asH;oBM!%e&QyM~$iQj7yQNjDp{z}cXV0$LCaRM`
znjq3qN{um0s;DHFlG(<Jy=jhodo7xbuoETjir=Q0?0=<W-!!JC7Kp;CtCl8An4upD
zwqN`bWjU4o^ovBQ)AzG-+oJ~NW3urkE^AQ{QS*|)GD%)|#+^(P)bYvk+isZ=aEtBU
zXY;h>8;^4PGxZpoGA}d!yxii_tGRjCr8T@gyrt#c>6fRR{3LBf!n$53p%*nXTRHL*
z#HIcydl@7SD%AR#Rdjkynus{ctn4=oc!0qg%3MeuIs=K6xP7{4X&Sx@yja+qJb2sr
z1=w8%w`2B69|~m(#AhIAVFqx#zF_QHGX|Y*%}EFQ$zp-{*)0N;(B-=l$awcg8)}dV
zm_=+#^jkhXX4aakDZi)qZWd5jVLD8LKi&<-QNJ??!_Vk7D&W-HnI=l0qo<FSAG<AH
zhlV$i*Zsvo(?9i5N}_uaNgg=`nW_AVf3x`R<KKIsEyFS`r1P=+?Oox72PepQLYWHH
zad9|j*>>efWq2j+B}5&RZG}#qc)g|-HT6fnL%A+4F1j>tkk%|QWERk7-n#9+y8V<+
zWnHsssapbLex_Vq<)YK;rgR=hJ!615!&_@!fFV&lhAN_^tuB2@tOB5pCAntfP41+6
z`)G~&;{=)Q481fTxC?sC6<IWyCWEiyd0e0^eSrKtHF0o$M!{}e>-h0GDYyhj9+pDn
zeBVC#TmX=^U*?9;cZO$>OUH1yGVE@$&1w;fj6_n(Pr!+R;LmrDTqzN&`H~nH@!5o7
z$>E1*Xpm)h(H*|uJc~FlS0js10JU~V_`A;%$SIEzWO)RW6WLACaYfvmJxg`@d*;ed
zU%KqaE|mGb@YWAcxsCdjr*h{oLFHXDyEJN2pwNt4Zu{L0gQ~JbRgl|+B>h9Bb63A$
zdldpdRMd~XZJ_eJI#8kGNmyb&3}wxFfr_&r2B{;!yYM2Qj0?&DUvOx;yK2jzpqX7G
z^XS^5S@C7&MUSm3_p0>*nHyW-7&uLvVa~(O5E+L;I6H~tX@heQ1^GlfV9f4kV6izC
zzm2n%CB)ZEiQsH)t*RdBb{<U}X_AX=Nb<CMYCu&_QZ{<BLBD`zyQAM+Z;t+`%(0xE
zUni`&O+9y7rvi}pj^y62ZSOq>JRi&shScCpfc}<{&nNWA*_^m;gf=pkP9DC%K(MuE
z^7y6X6UyGEHV?brfXK`lWqJbg7SBuC5^;mdzy<2d%S$B|1D{+%6O4!nVKXG8&a8n9
zF1iY!c>mJCab7S`Vvl%#$~2EN*R!uywa4VFfmLa3GA&_TnvjC`!pmB_9jF*48aBHM
zqEEhKRgH!d<l@0se}#?2bGqy+)(FLzB$W-iIEW0`#9{q0o}M0_>e`ZT0vXg-Qd4DU
zKyuouJfGmcE9`T)c1dj}N5jW=)*(E*Zjb_8?hAc`0<<16hQQo%wuUA_UNA5Iea>hp
zH8oUByS-2Aex^iD?bf_Fo;%A%we9%5xEDoQ*Vp5GDH8)Loh(y8aYIYHQu>(G!o_4J
zkTNBg_qZzSMPqIN)$__lL;*Tv>zpndukS^Tpr_0~n?<971pMrotG#cVnD?Jd>AgWz
zA?169_`4PW7GqRn23RBu!h}Yg4M<J>OYqHs%^Rrr<S#IWUc@`?P7RZ(yh}QMu-v@T
zyaHS}Cnp(d{Ro*pK*xD?UOx3q6BE@<aC7?NQe=_zhZh0pF&wvZb)h<!&Kxw%SY*IZ
zGE^qkic*J1XK0E6kptZZgMn-9`C6sPeH`Oxba&^nQfvrc$)NrL4ZPQnIR})n*4LQx
z2<*2X2jJVHzfImhPP8A$&O<X#^e>g2B&eev<T(k+1oW97FH7In?-X;}A?&;@fA1TN
zA{r0GmmyhDOS_Raa@(2$mQb~kOtR+sDq{5U!otQ5#lW>_wmXcCW^;Wp-W5P-a`6*{
zr8>{MY#YV45Wo0b9ES^VO}L^y)u~m>GlioPJc_4YKiaZbO2<u-hJ8!FURue}_I<Ag
zCmK)(Ncev!-~JefL6JRhoMI0gzCpIhSxv2^tP}BXyIl#k%wW88U|eY6d|82e(3Aem
z)&c|FqVC=>?2kH95NIwkeSDs<+oqKfOihztzCIv9VfL+DrFG1(e1AJo!fwuMd4YQO
z(209622_6Q*J{oWuS!U`ZZq(TVf%;vE$~#pCQzY@bA(gCdyU-Gpg-lDWKrWPXg58n
z$6fS63(ym7>wGl*Cel`}+)ejgJm8a-GvJ?i_M!2Z@11=Ya)p#UahM2)s0jKI<Nc3(
z)p7&39dP|oUefcwobyrOT0z*NxAQ)e+j9-h+VntmI}NCA|7)te8HN|qt>v)WFqCx2
za!6Ge7C)VDYmI2pC$pJmWI-|5kxlfxyWE&1(}A+LOEbbMKl;iH!vpD}7Uxc3#f-=b
zqt|7y`!D^)p#;nPcOB1{S}}N_uiX~C0ogr@(BItCHV5DrpYAk-H%?>|6Wwgw@85VP
z_7a5p^4)Q1T@8Lrtf6cWPn!h0g#xD*TZH8}$#3}Z+dyY)sI|>tISV+!zyyWqa4=)P
z@o3Nv-b;C@SGWgbaZ_X(BEj#EuNloWIKnV)pmjPJn0VH{c5?F4Q5tKZ=!#ExQn=3C
zEFNGZ-F8d9lsj9T8#1wzdU}OW&n2l-<%|sEj_&TB-RYIJWalQet)mA!ZV#ZXMA8d5
z%5TpvJ4;JS24X!DdKD8HnZY}ih@EeC3-uQ}+>AzLL%~_@(i&$pph(qZQwGrPAB}N+
zM8b0>3?t1j`DPi;b(%e4RVXY0@9k<ugZc26g<{bl>MlP&Fa6?}Jx>IB+t|4tO<E<~
zfGHQ<(em*ct%{1@kjJd9b8X@+H4V+zK|XCV0`h>AbP^LoBcscZM?RgR!PtFiK5%Q2
zOqyu<vkU_LJrXt0;3o*kr_>Ez_m44|49lX~%qQp^=Yy+a+|G7Im(oQ)v-~j+h$RJX
z8OnpPgv-NsU;VL1D@uL?!#MWs{1s~<DpnpS3Gfn&xulP*iGfgrjLR%y($y{n<(aLu
zH8}K*|4pH|{_$f-jakJJch-+hE$u^~rd%zA$#;7?T0}o^^KiFCiT5+)lg~vqN#(h8
z5wCeL&@t&T$we^|$AqgH_2{;yg`>qgw6^$-zrI@ESKE?m(NLu5yu3Et*e;=4TAntM
zj~*|mDHs}UuWGU0nSj;vvdBsVL_BBUkffo>k792#1jZ+_Gk7vr!FY>{$KJ)I5a1Px
z+3dZLH$Hs(yu_GRy?9K&e}MnqU6-&exwY?ghoq5_5k{{y5;vU5vZCOlCCiXj;Z$^b
zp&`?Y+5ns7$}sZ7Bg#~or78^d0<&hFtLT2-*^4aMfK*~FC?+Om@7)swve9bTu26?+
zK@++=9IjC7tR7vUd;n@x^wu8({9hM8&=ih5RTK!3uoDG4RLO>zAO8$tGj0=(H<Ftb
zTYT{LLM_tLuK%_~;b7i}Pk*`bBQb{%soJO!P{p&BF0;~oHm|&h`S}@KQ<M22ns&~W
zOZ{-*jW7@!EkUbRnzSeTm$r#li8bSs?J9{h`f1-l4^TeAH3Oiz{usmb#bW^JbY2~>
zP<kk&p{&V3u!hUv+{d@Y=}-w37uzZw01h!`y1r4;-meY@#|e6?>25W|LIIhQtgIQ9
zrI9Q=!{rWrAZymqVE|OQzTVsj@v^31v9P#pHja<8YPHmQd8Hi(#H5RaBakyN$UR3V
zzLHWP)*^l{BP)vuQHK)K*#in-=PjTkY`q?{A2G)B#bocX+oEG*wPi`6wM>vZ79X+5
zu8-HCmX|al!7;6)`By)-)s{9w*J!PCooE#|u&>X{ODYC0Hiv~>pnJ5oN46Mg1N<Ba
z<P;P$6{cmG@^IMy0iF4ao`4UDf?fewSk+Ul?Q`!B8Q{%?!4p8<rz{HZaKHiP;(N8d
z8j+$zfU47BT7*C;{GI!RDdqv4j9EU7dk~M^8Z}>^4lszDDey#En%BdLa}_7MtiP=p
zfd-KK>8f7kTid;E>%7t-slyETkhjhdsDQ>(+xN*xb!Nz5S6wN1Lm~QhX%e8s?6kR+
z5k4@vl$8u#w{L(Ec*_1-JG7~B|Fwjq%fQU61i0?yw3RXp_uY9B@%TLY2neQ>>$g99
zfZPmeC-ajt5X!-I6Sx&V;D(%A_f^qJek#iy-C31CpF>NTY9w;r97_9ieYf;R+1VU#
zqcEnQKm5Mj>ypnbF$|A;f-<Sni-6&eyx?CU|Brtw!#|;*bSn(+eeN0g_w2RF#K@&#
z<W=(Tvi(zLy9HhLJ;2I^E7<~UppZD^NQEj*-hOPlt4=dlA?WAv?iBnH_$lQ5aOKL;
zJ2CoCIhBAbWgJk(r)YcJnAT1N&WsSCLhtGCKSq3Fd61}EYAVkTCmw+FF-`pa=8(P=
z9WT!*R~Nyb_xnAKd3ewkba8>Xz~Z8u?oLvx20MZOT4n$GQJnrU=vFM8V6M>SDA%{$
zJ5m4vBOoly%-#~=Ins<y%v0`gf%8umslBu`G=?YZ^yO|BR`}~~i!FlNH(b4xsQ);T
zW&{N4bPCn)0j=y8yBg3x(Gh>0c|s8aIyy-f3r)PQ8oKx*TF^z`Pak7qq_w5yWMxUF
z@_7`N6=_vz`RbNLcVv>`a=iZ(-Q={VMebQJ+*eoUqQ+$+^jRS8*a!C|{@!T3XfT$f
zi%VT}%s5M5!p860^dIl+-xmVhpfTEMKzq1$3dN7^KY<;83{jd05etiQ44o#1l<o&T
ziNyf2Qs+S{UIx&sP!}Eo@;CF@*y15L`d^=>4JJMhwK7`m*C$<kb?*7=5WW1v8d6?K
z!6b3!XtYH1|JXqM`xZl<aE|(pfLRal7@kpuzx81LIx_#d7W&-M=KEYYgLL;P;u~^!
zC1s_;h?uA-jT7o>2Pn`KXY+nL4l6Hb_MX%-@VGulcYi3B{_S6U=@!+4uQoN>I{4c3
z=KmMG+&km*C*4h_O@%bp&5jNc^QO{Lra7rqnI3eF8c*R059YL{#2+2ee|s0;Lwbzd
zl9I@odMzYuZL&_}fBJ6^pDzj!@$meV`thT$Vx5$fwCJ+&#@#%H#gbBCL;ckf^oE`e
zx#=ZdQPVtitcS-6Pn(z5T_^T3nZg5m71+3{nJN<Okr?+Pz5kN3q4~gX-xP;y)q{~*
ziA$ybxV<>&aZTS3AV=$|UVZz&1O3M*^>HnLao_&bhi?wu{W8cwE!Fhe@Tuz-cQ=<m
ziedni+>ZP=nM*16D?ooPcov_5I*(dOSC?MYSCpnf{ShD(EB7s3=1-+8Z!5v~ed|Ab
zP(%M*04S8+rEg=$s7r!FOW+9y=1VRAqZRe17_hg~OMqMT64D<4Fqy&a1H2bHfbvv|
zp|P=)re=IpObimwSJ`AP)oQB83Mm*{L|!5y(Eb!&?G(?ekKKHk;mP!hlDKy7&-|6t
zmC0e*U?MkuFU^fkSqkX6f|p3Xl!J#HLEjr%W0HsX3?=fO(F)(q$>~S?$-Im4dzvFa
z1h=)dWw%?_y*>Vm*AJU*=0kkE=JthwAH(*+k9zvEvcIe|4)k1XM}Ezx1AyI1Aj;?;
zgZdvA-|#SM_v?2u%gdE|`}(RRYyr}t>np%4R;wQZ*n0K?tsr2Z5(9L8J6FYV8$1r&
z7Dk1-AH=LE8!|p*@pv_4hR2gf1b$R%G>Dcv@Mt4fs`SXp4CNBt&Zi~&u##B+6L8Pl
z8@EmQbIAYw0N-9Bc64@r|Md8Y!*fSRM@uXQfUTwHdfva?ky38<=UY&K-)`^7x>Ky}
zf&Ih63`2wK?Cg91qS@Bz%&dF>(p{N&X3^kR1_lOCg}PclBRt66l97@M%XotDmK=w1
zp#G|=s>X`>!Ke~zt-N2EE%MKcH}mKs2-?G9kAGTXEZCPqdV?KO;tp;0hKFf-{<A;%
z=cM=@#!-r{Fo4zIoNHP$OAiQLC;`GacvvR?ZCmxPoqchW{P3_H_4$50goi*Jv?Qeg
zI>7tYg2kYddqS$?U};&Tx(?KgtJay6OFbjN^H*KBN_vxVjQvIPfvS$<1z!3LH65t9
z4=U4qMs@!iVTQ`!k&uwcn5c)#M$BfVO~Y^#BzZJ!6qa8u<J+sK{c_!Q?(g_3?AA{p
zPI_aTjR5;41_qEV1%8c=Cbw~XG5GlHPmPk|;uwI;((^zy#XE4#YEK0m5%)ema%=&p
z0Cd1MYS*)s2u-{*=njh}7WUi3Jk)qF>%25x{$tYqbr*bu=s@CKXTPz1P3XOEw8$q(
zG)z*z)?A!*b0=IDj8#_LRINx9c=-a4?HBeE^Y7FCkKZ7G@N%l!vfwzkx$3hy=5)PL
z@SOvsv+&EGbISr=2O}Ho8@vCK=CzM7>Fdf+VSmD)prEfuE8TrP5u|H%8!6^?F9|N)
zF81k_bL23geC667(oYhpC{P=@()R(rndS${LV%*fq{;DDDfB<zxi<rGspqXLF0ZSD
z0;9f@r2iD?e;)LYC;siC(nrA3qo{VQ*=ofW-QY9!qgvQ}oqf(LEUfJ{?<WXSfG?b*
z25A7I$&UnbKxO(+(01lyj^zE_t;dLu=BJ(`fO>X<PWMbX%;i7U?jMQbHx>|)PsjP*
zEO&<4gyi3EIe*07WH}-kQ7xysw)$`zboRAW$TDJHQPG)q1>kt=t=>Uf(x?=S4YZ0^
zDhQqf`n6my+PaIhYs`*T0H|QX>WTa(v=L|~11)VNW797oH_OZ#Q7@&xw4i=p5f5o6
z5?p+Id^sSdU2Ga;`QJPLe-6<X0sohvQC26?B@z+;yL3_EtonK_J9~Ra4pY#JC67l!
z!UjM_Uv9m?cX`~$n3bO|<@W;5SdEptC@(J}J)PtdaBU-}q!ix}t^N4=?_b9o6u9Tu
z3_Ndsl*|4ZT>gBme|_+`a6@oT1q#DILV38jX0%=qX8^_S9s27JLnlBv?-(#ehEGm?
zD9`-;`}qI*91iW%llJ=heMX&-fPgQ+l#>Kh{RpTVY1@=Z{<1aw|NG@cP!QBNP+L@W
zKZXDsy%<;MLGJvPNrPBR2LL~5u15Xy!!A;hD`@DrMujD{|Jh6Y%XmBtlJ^k#w>Jz@
zaSqB$%PrndfV0wozZJ0YJ@~oP(9(L0{7oeKEjEc`c;BtC7%g1E<rNgYjGfKONy(of
z{TT4(Iidr|dvkLWB`=3tZNzJ;c7Mw9{E~|7ONDKxB8M4D{NFq<SFC{ThT6j2Otei|
zbyKyQtIp3d1OLp-Opp~{S9kaGHc{aoNGGOx&&}ltIXipJ?I(>Ve?J?bINs0@4eIZV
zv1yd2G22MtB3;m(t!#N`e+~I*d<>2oc&Xs$s9uyP%Bb7h?I_B97BTQz;)|wya@yiS
zb$|2f7eOSSwAHsq>4ilZwJLi|q(k0tD#>vy!Q19dO`4>*Wb*(ObtQH6jY$8$WJrGv
z-$QeVnWurVNo$vIk27*cNL7cITxaIGJMaGK-1Dy`1*D<?C`>WcidyG%L1bs5D3XBJ
zwI^3Gqhrsh?{KO8>BrxAjsH8-IlhA4{M1bMkF20Oka&&NE%bjz4x1>nTz@k~k1#+y
zt$KQ*NW01g{RCj-#r=a6-eLfWg6lV-a7t!2p>4CB4rSGXSadF}wl>3!UU!kHp&F0F
z?lqLiCIdhTy1T)#>2YLvrm0?h6t=3Qhb2rUdVKSAYLzP4`hJ2WPtkFL$~p`^!YVIM
z?X19cNKHhg)(}~8V(qz;%hM=Z-t?>qWy;Ulr%^?E`;mf?u+iRSGu?yS>D#QgH8Lo>
zROe1ojsvHtqj8y31-z$}JiYXe`AtE7$C8@16F9?R+-+Ht4L=#?iu*7r^vyyvHr|2n
z&t)&)s-oyD!j#&Tl9^USn`N%OA)Q$wJD!W@2~1IaDRJc7O}$mUczoHqk&|Pn`%_kn
z=D0MXMqO{JSD+{U+e{_*HaX*7Zs^KUzf}+acl`hL35XT0_-$-G{Wg~!6!0Y27PJ05
zJ~?ZRm#8B5H?s@~EsH%wkJ3Ik`iir8Y-5roD87iF&<=zT&b(myxU87oKJz+}NX`f;
z+$LBX5rg<$VM#%(;{okbV!2@V#mMO9F9~v#Q;CC!JUH9sQd`{ml<ni!-{&AbG$kwr
z{2pDIk}^V3Z~7J6M2tFJ)?Cf*fcH^=r=ZVl=2SgSc*;o6EqS5*9mUb@HYxz^*4DS7
z(sTqw??1Rni|MPXlr<yHo$|UQ7vpTlh*d0rg?QEBb&1z?&l5#sLmB9P`W7}c2FLn*
zh@f5%v-7E|hX6Q;a7t)3&{LdJWZMpn>YSUQ9V6&9pIS4Xm8RuQN5dSlGe|-)9Lp@9
zFQ$NLHukp0z)+`Fg{nIHUIVpwc@DY$;GvZC*H!eN*J%>piU}C|3$9z!rZ{u>M8(Cq
z$+bTM`sfww_V)HgE(3qREww}dlwQCjoqO}FDWFWS7Moy8sjZcn-t+TN>5W1b0UOk#
zO9~}QTINIM`G|TB&zqSSmmj{8l4t4pj8UWO-c1NGowZ~T_iC=;A$5_7QTzLzDHU~m
z(v&(i$<77`94wE1D0G#%?;oo~DDmHvcdY9cw?GX4ingY?_pXq=&lKT<_^3S00uLCx
z^D8E>@<7PsY2WF>Yir?q8Lk<qC>3gi;t@LAe$y@c?Yli83ytz-+XiacoNcc-)$pzG
zyh*wY`fI0tWs(t}<W9Bw+w0Jqe+UBqo`j-s+tp?D<T{fcJPcp}ioBiel3b|UpysqU
zLk<WiD7E#u;$yjPkL7)hkI&;IMV+|Tc5<q&)tOK1)zs9SFpDb4J)D1ATvQaDl=Q|N
z-}vj-uVk#O<5Ix^hfNU&P7OwjE#7KZKqj7*D*>C9`}-rWw;aWn3cA4@->QSWYus%<
zL?NO{bIRZsC$*2E4FWHol?1+p2v&+0YMcz9q`JSDHahd!tCtHvB2GHN=Jq^UXY01h
zb{{zAG3UK{CVa2*3XPZ5<M1Gyy4hmhn0E(XeTAdnZh>iw%l#c>^Ih{1fbO`m?iJ<;
zaEWZ%NxZGs%f1z8M7oG^ZI{_Of=s{HG3Lo`<WD6Yb?a*?K}{GhcU?l+D&cuYV#rz@
zxrOQz$U&dzquo4}V<PKG_w5!8YfNF0<@<+K`>&jUXbe;v?KilFbimgp`Y0qgI1=Dr
zY{?USdjKn{sJZeYO`QOo=k6xcAE-dp`jF{-${;*mlNTS57Y@N;YNLGd9F1WhfwfOc
zufjN#4%|4Uwf>hQ-(M%Q1J+}RMj^1}Ldc-4J9;n-Y(G{A-YzGPXwZ4|)?v2>|9hnv
zFax6!aeyixl%hJvgvL4$2x-16!dahQ=F#O%>}05bRza9r^<ut^Vy-GlNZ*ke1M)4$
zMt9;=3czl4wNa*d%HY?s9yBDC4B^z<pSvX*E}!4+?!2|e)|-hXe)rDr?pGo@8OdDJ
z{8-LYpK81FoAdgc>zWmFy(QBYJGNn}?b$}taF`Y^gPZQ%?UCL&bs?6P)<J4&-~X|s
z$!uy7p?P?n0X{E1Yq>EjuC;5d#^Ks?bE&#X4xN4hjK!WNk9qb1e3q&&n_e$pPbZIP
z<@y!;eK7r|jEKyeR->X0F&xclaO4Iykueeu`6`U(LUcKI4bcKa8W5;9W1{=c{6e03
zyn{1T`igqc3-M#wvLZ=mw6(?fPDOa%*mAf23bO+j{8u0f`V0-5=47X<O>zS<Q=YRj
zLzstBbnDb+9D7V#Q>SR>1e+nj)9xQiUH|^xHij>AQI*+C+v^o`O(85Dl)xDru!AM%
z;{&&~w`Y}>D)@&w9haLfK<@xM@STLjdqD9Bp70+sUntUJ&^=FdO4okwHP7J{Hu~BG
z7#r1s@oQX%gt^CeZ@U9KVZMsCO!Zi|N`!7;L+G0&IbJN9yeabi%3A0z=idT&JHh0t
zCN<`3l4yS>4vt|L@vxgQhS5|rZA)(@60!E$8%TQA6$k$(3G{#R;4l<8{WJY^A5mw(
zf5*5&MMVX~_YZN2Lkn@0?&O6kGHOu3YxH%b6IY$nCy@<DU*r&#+XUSl5F@S13&!hF
zDlB-oiovD2If-9-?#_0#wzP|Ftn*gs1}DoxWK-X=0x3dt9K}Bz<$lj`ITAp**F)R*
zZnhWO<2#e*wz07%vd-M71Am`+321|Gyos{cUt(g8$K)qO1%`wkqGM>`+SKGEXV>qT
zdXLB&UthJsjOMxJ&9Wrfl_OI}!zjPR#Zi%y>rx`g%F2#^=71c&??%mjVg?)mHa}_A
zn_zCio;eJLIop<)FJDQC&WPm6;Sfa_aps>rqHJM1?|T_Zy|$&?@p4v~q}QpcEM_q{
z+9)}*i&^6*tLSq69s%P$;Zy_fug6aB2SP%SF9)2PNC69zsGA#ipwEO<?-bid&i>Qp
zbCTEH<-;*bmv6JJA7=!<D-53&K-@(lzkVmt1R#dL?9+0K!}%vZ8pvQ@aIZ*$EC&M0
zcnM#exkjTm_7#j-0AC8uy~@$mpZ0^%k#by;$H&L3z=43TL0L*Fs6UBQd4m)1uO|mu
z0@VP%@T5PPTfMkppUbvkt{gaFrrKF*Zuaht#N3t1yobYwF~VB~n){I3Jml=BTccTp
zg)$GCJ?pN{ZBWE=yEQ3H#dbVi(y1#MJ}@CJ#$Mv`)$vzphT&#@K<^*xcp-5Qk6zjz
z$vYt-L19ZO(i5mCNowg^2ikTz@rMV?inYW4{aKHr7xeFS-vJTf>Gd02`YI5M0o3-R
zQg3%nFaVO^`1rWpPEn21$7_qi6OhU|4n4WYz|f11HO83InS2z>-JvfBlCl<zfphnD
z9qWu+L-olt1yZl6qj|;h22CZkFTN?qkdnOc3Ffq4uXLr0j*hmQwXE5)6ZS)n0Mz0)
zF9Bx{2{{yKLF@FiNotWVSC7X^D0}a?x*ooc;5w2E92)(yPHJ*;(NoR`?sCsXJU*Fs
zyXYb%|79RDA)gLAV9qqzcK{$H+sC87&FuBsJLi^j0)5y7cN5^iE(f&h-!nl=*XP|1
z#@j?917Z*6AN(48eBL7Y9W*^u=WT7vzE5O-RJV#{bNu4_22lWQa`+mqcv!*utsnM=
z&~4Joehw~X)Z$QL3SZdm`K)Wu$_ezP99rX$|KP&iIeYT_41Xh^89md+4d5Y_barh3
z5Wz9>89#Adq~wteal)g~Xu<a7mp*JP8WsJ0Kp%2}mqJkq$Qc=Rc~NQ%yeip8aCzp%
zbz+Mz{KVjjh!s-!G=s6Sn&dF-!IrYaY#XvOcRm>OcXIhJ{UwZ!sR9{vM%U|w>K2*0
z-;e?|cS}d?P|8&`>{Hqy#j{_keVu5eLuw@=#B9jj`vR5E8C^;NFRc>Y?V{;2;W?f%
zulu_goZYHP@F=)Q$VCFb>UM8K=-NFu3`ToxYTd`@#W4+7Xlq<kUp+>ZIed*=qUY4G
zQ``V(lMZ|a%5UXn<1}tDD9NapeCL9WH3l>D7yCTnJKT*tXdytW_Gu(N+3{kHVYBD$
zDxm6kJS2?jD3uDt@3s7b;t|IZjWQts)RMMwG&0cWa<U4j`A@)g0l+^+!ckWvynATd
z*>H*H8EtEvt(EIqwE7GO1{RPvfe_)g)wJVksdSJ7LtEwky5;|QEkFxerRy^nwK4{3
zSf=!kAu)9;VcdqRJrPCpy*Fe;XZuvty-gC40fV;^Iw|E0Y0JfYWK0M#`G=E{nKnaf
zU+ZpA5DQB7zE(GsM<jDQa}gvS9Ua9?r2|K8Ne&)}%pNEa5a9NF1OPFtT>wc*?sTaM
zbQ1Xeh6BF3o8!K!FB|Qs{KyetM|XBK5)S}lTfYo=w;^HA2I3HKy^x2FigFAnREN#n
zq4M99-W>Y#N6pM=xttD*3%m5xTkE>)qlmH{o*G%4ZI2%(F5Gm{X(@xe(W=qaw6tgz
zZugzf&RKDfPfph2O;U!5vzNTfVDngt*6LQ+EMYO(b9-@CA9<3?npn=Cj>-pUYR}XF
z)@QQkUsB}~*<^v#v{IwC0vgPL-JU^$yg}Fi1D@D!-eqI!tmda(@Xa!Ib7={R8Q)lO
zI9mPdXM%t!hoGg9F^TsVas}<2ef8QcTP8zxH12=sCV7KIy2K=OEt4VnjXqJQOcfoN
z=;ZqQHq^5<ny$#aV7u6+;-JZ3ZW=YSg5E4JuS!Qb)K@aDuZV&nkEVB0_Oy8kiF%<)
zJ1E8#_Hj&AC5W3rZ99q*C9eQm-63jBbyDJZl}V||GKWDKP_?Ks$_L9A)f!}syM~Xw
z;mMrLI+gwMdc0;e#TFy-m62~{*bX{<RSK7_cx|SfENu{s<m+aK#2o8cLXn6_eO7k;
zM8d@6M1igEmJuWYO3XiUq(DkSqf@muJgU{%5tk>f`myRIW{%Z*0n|Ivtv9U1&T(OA
z(9>YVXeai%Q4}-17sI;wD&OIhpQLxLwkhrLSRyY|Uk*VCV(QzsY90)<xnp$*GQD5Z
zJ&e9`R{9T=Bn+*v?vWXFZdvAChezkzjV-*TWvG$1x36nF^GVYTboa|h$Z~x27|IL9
zMp!v|g1WjC-9_gt@Un0jL<z(L06xOhKXt3;uw{z=^>tfkeE@u(3@$AbLagJ*Yu(`~
z0NX?M>ldETvxL$t$R};ZrQ3nS!O3~x+Z}mP{ha60<a-Bl2WW%8b%DMa!J#qS0-P8t
zPJ@8eO(2F+mE!_{vMO>cI*s=~W=;B?sYVv7UQD*!onP&gJm<qV(yi0w${#H3mj0G;
z@wB}P*sy|)e=z6#cqw4`D1cNSz<!3M%R?yM@Ow6T9#H^&%MJ4;wS}rizT>r4a-fbD
zMv7LvFF%>TFu8=UPHs-}dk*qn^#P!GDlETAKaNQtjTZNAlOwN)Dtdba&Q`oDSH99P
zj9)kSm9$fF^lIzNsG&j9C0og5YQ_nY?({uc`lS!BdP$YP^6asgjFVV}&1efU!GTyi
zQ8_g7ig~rs0mE6)pyFH!$z+#CERlK=(x`wkp>y8*YywXQ_e>1R{PU>A5{~AdLL(+J
z2_0l2fjMG`ttz=Yp@at$J7PZuu);BD)o6$fT8lBZilE_f=Xg<>>4g)tOz&Y}wzf_|
zW!G(oR|9hpiL3Czq0!36^Edl8u>+|^P#*-RSJe7?-c}|Z{hms?`{?SBxKnNhVX0#p
z2maubMvr&58kb#a$qT21BoZ3UWw`Zon@|Z|M)<gMS0b5?TB2+R>ZRrUni{vAK$`-~
zbiNmtFGoI{L1ekxO-`eO+GxCqFyEM&Z#&$6oR)M=h{N4k%brLB-@6;T*E8LHWcLP~
zthzC%NuUHGA%{|<Ir6DalXG)4xz4`QmMZyUbp~XO`2squor0)oY|N5oq{{H%M|0!4
zJD8obPN;#oJ<+9FC7(Dpfq)7{=uC)9d0{|p*RzzU60v<|2DSB%Jvh^y{w}T9sXZ1q
z?xKBGN8)&cPOY;m0|m-u%r=Vx^x%U0d^2@r$QK?U3k(bmjRsno(r!D#CW|kyi0PD-
zlnnP~s)~-IVk07m4@sU5Msjj;avAEIKLg3@9NK&?O>1y=Yi{0KW0Hg9@!BkY!b~4(
zYO1>g!(6v)_vRYZfm8c<hqm#z^27J=X)mq-HQ^M2X}IimX@bUJdc7u{=VMQdPqicB
z;&Qu#nyRzs&aIv}JXt1%sJ8JvRrFAgn?4vB9X&hmzFRqh%*?$DL*E^ox|=F-${mW4
z6UtkE&HSM-6px*4+WMze4Kf~^jDMs~g|Tep*^lvHCWD2xKB~iX5Myzg)#6l*wI0m6
za<!<C-av2;<XmqxSFe`JKa|30Rc*aMP-*&X12ZY|=omCZ&uD$4I~>CVubj;?Fh^fC
zi^W#N>lwn%cKWnCAyQN<Klb};<jIyjrjU;S*82*l?PwBx0~u7TKzVMxD_-Owm`0y8
z+y1Sh??Yl30k4)@_s?=8>7fk{o0c=g0c#Lu7+P2I$7ByHq_GQyMk~az$@9$iV1}lH
z_YWjC1JwruDuBwihHH{UEYEkDY0wlV1y#3m2ePO|s!Rv7?l-ALuxh*fKK`Pj4U`j)
zM<x5U`zYsH1lI%us(E>N<sU~WsHqO;!;cTJV}YaQVR56Yk+yGewoQcFKUAO{Sm4kO
zU7`dAG<0RFRAS$J33}2%#>^ya)*Bo}+3_0jdH9z$dOgYGZ%4ht8NDS|Am45>iLLz?
z56#I}h1Z2?L2vh1nRtlh0^xa;^j0EzDhZaU8C1cqo|7}v%0`U{(l~EOL8biJ#hmX=
zRn=U0RS2+oRmbZ?w&Z2(GRZ_bC2XzgqVO$FA()XkSuipo9#D8hSAL&)BN%18J@Vo3
z_mdkeKZ-z+=Pp&7+Yu~LBQrNC#KptVMRgE-C=fu+L)tb<ye$ssPDyyPw|nfs*n_J4
zyKrh$Ua9V!%kn?Jh>?uJz}LDpH3bPto${->1a-J7d)b2Hizh?c#|&bkPo&AiRGjBu
z7p@A_?WbxUETHh12o;)+6!e-o+-Bp0$cLSAw$BFDRkbpBb=cl@OCq2>Isk;MweJ8q
z3I_qpxe_GMeb9Ak3Dg?=I0e_cAX@~(8OBg{nVOhMp&YOlRL(d=aNjSbZs|+550MPq
zRO@MyMBQBN(6yGhNpY6Jn&#H@WmQgjzjE$DCdtXDy>%WBQzjS=K5|=#>_{$|R^K{D
zLI5*Ff2V1z$?wK#d)NKu*NnD_$BIjLp|zFPjCpm`dD0R~Oexoz$H@?l<otP3237g|
z|6}YegYwwIZQbA=+}#u0-JReT+}$C#2Z!JiAh;*E!-u<DaCdiiJI&rl_C9B=TlW_!
zDn)%X-LvN$?-<X({5%5}=u$TU7255j-71D%KC@H~Pe=DwHX4<9R1Rc`esMb$VnO5K
z!6t+&{(U74B+X|g&BX>Ls>ponE5GF$g#)1n0Yj>cFsxn}c;trRUd^~b$v8a~{k$cB
z{ayy%Us~Iyj1U`mMDTB~ckRfZ;2VMZpKSmNa)*n5_+2vZ?d8lb`sD#2hx`#oLW$G$
zI;p!16?_&ZX=2?HZhlXJvf)SG6{gvtg)K(r5QxNeAr!7Kw494{!ngu8DwY>naQYUP
zImf(bE$HVtJVAI3tDYrT)+sPIpAaf^pYG1)M4a4tYtmYE-NQt=EW&cmh44a7peFi(
z$#vOLuUiKcwvIuC$oShfwO|~;K3;|I4->16INxc1IkATjNVh-Z00E@*YmV>t-PgFb
z-8GZ^cguO=ej0Xzl@%i1W}Hv25f{RIR*1QQ@A%J%8Ckr-_4g6w%I|vE$8#a#rz?=-
zmUmyEXVuy=5LA`BHGkshX$w4o$SGZbQM?UA7Krr&?h-AMP{kA~@0tVFTLc^HH-Rls
zkRqyae^t;60yuxOutvDzFBDt6X25Y+_o0W*n8)o@=cSXc%c%|M(Y*wA<cE$T&Thcw
z+ei%^A1GYh4aY>0G|)%vBWV%WgB3zTNbGjJe%Q+zem@V%j9?t!hIVYlNw%ytoVDI%
zuCD%0|MsJ9ZR-&>7duS9<HK!o`?Gl4eb<rUd^;bc!@M3dGcyn4YqnoS>uoCE+w;}e
zR3GR)J{#J%WQj_oDngVloGxVozuj~r#xu4x;QT#iGPSq`W7u-CXI}XLKne^=yF4Cy
z&=sbMX_ZFjW4ObBu<^yTiUOP%AIhdTfU|4Bp168Xd@R9$do>%r`2kJCWoHUC<pn1J
z-dv%X0J~sTz+y;*EBd8VUv_QQhiTq;v34!#bDOAxUhoE2*TuFyb%t~NvO_l#5AGhD
zL(LN4^WFh+Zs**El|&l}j&z$%9fO6kzsS~}R`0HF!hQIIvK9C)g4R<D*=LvA{-!#q
zST7<ba$;0yJNVWhgfPdPLE)6=F*I(Yy?3T91I?E_NZ|T9d0e>VDvtCp-R%3oAKcJ1
zjomtlJqG1eKEwyyHWwL%r~WGlXCEj_%j|GteS{s4zI7Beh&;;$7Ve=UYqaA!%yQ1R
z>)(P8)Ba}y-589x>rYE|W&Ca_)i~WTe$U2)KNj;1wKO$98`${5%+DDT%~|YsJN6Tr
z>#~v)B5Dm2>{w7ZsG`8C#07LMV=xe5;->{t{L|iyEBF0qb%m?Y`8ZBN#-RyB;xD8*
z5xCC;R!O|CeypJ=Yw;hjmYD95znKFJEC8KCpw*%S2c{eEdC10nze={FTUCX48C-;4
z<E~ixnquVHbmL@>Ot{w4IC`0A!C2|p>8hrlf<;c|11OR=hc0JlHv0|y4PpF*M6gG*
z#SXJpP3mwM8#w^)%Ko;*w1(nx^w~BF;iJ>v<ZR-;TibJZBAHvS-eir?#|f;%8Dq|0
zwkkm>A#UQv=kS)CZ>~wBOQq^dQ%Zuh>P>IOG8S{w5hwPKmS>ViXGFJVTx$~G!%6g0
zr046ShZbz^hrA9WQHxW#Z}+IaIGaMpDOFGH*ZTBogZ%?Jq;qW2q5XYb!s<UHJ?PoK
zR@liurJ&-c7L9*thid0zcl2?|I?_e;#hoc);FBM!mXA-J*Nbo3K=nVbG(|`V?DqT9
z2eFY=k%JV*S`r^3^H{t_%NW^4gmYp_Ce!eQb(&i+5O1pm3TyjHjTk==Pp>=u?al@|
z0EzGZniH0_y#3YlM7Q^qX^r7y^?2Sh(5B*yOMYH62WN;u#Mdnf)G9uzKNXwpZTLfr
zK>l{Pac4rbmwB(G#(KC%xFvB9obMhap%L;sC&AyOX#VB60d}1A_H6D?{iQiaH)u;j
zAdE!THvwk&d@KxR<y^yh<dx(pH-aJFIGVe!w7T$91k9SmzGayr>;4shtlAv__X*b6
z0s6ToGrwJYSW0QtwNcpy3ZXx~orE@_5-k@I%$k~;ANdM*9Gv-Ak=KLOx2r5k1>ztX
z;q%Gb502b}?{sTKcBWB6g3CV<-Xjw7sGjxDBWoQ=BZ<s|4WY-i=d8Y?u}Fl#WSSQm
zNN>6Q3`vLHyR;t{Z2-A!GB5Ou9d$Mky9fQf2`grfg4Hha20$LzlU<4nlH>>exqt!k
z{8%q!Wt5p_{6S?4R>b~72wezIZQ-5<D13Mb6nxA_qZqjYHstBr&q%fkSpvGm#wf(y
zvVPB3sixgvU0lY%N+E7<mcgIZYUjn%Q{bu;^*Q1hg?@_<0kw98#G%InrsWw4-0GMZ
z<#TtXZXmlC@yXSvwTV4DUI;Jk+w1yDVSR0{=lLZ`4?oc?ts!H5``wKBt^3}pquP&4
zSAdE=tEWgh9k7pKc6gOFM>|6d8v`H_?9;@vKKIPb6FcZNAjB^XEv#Z^h2Xu<3RL?9
zM+wZO8t$et$5*3$h&)Ivf+{Bl&$}Rdj=2h-$H`H?i83A3+B#%h)MUNL0#+c%%|?UK
z>(TbH+03*6+lof-LdJD`nmPJgTf#qQu$?xL!F_?1DtfSbhM>1~zfm)hmb}c}mJ=dA
zcSXPCjnt28Zk;-uDQ!4yuS<)sE0NZyzt3FLr$~1LKTWmy`72nLm&p>#W<CFYJzDy9
zDwHv*+u)BsW(=b0@ZGfs_AbqBuQv)Xfy6KSl8=<QZ!S7i{&^WfDQyjTdewr9!VdqD
zJ^1fK%y;eV?+Pr5Dia@8mx}(|#jp69<0G?B#flmGC`}ZOCdxo+ahyUJEZ@TvLefHQ
zV^^h|*7R8c8ss0ZSW-9^3ZZ-ADZdtv9KO_4++`t8BPWbsw-<Plrr3;u*KK9#ovlDx
zk-J;h%xRx>lr(ZQGPr}kA_oRAdQfbu2DBQ^X#=e-h><JpV#_qL&MuQopHH2VJ_;kE
z8oAF1hpQTfM|tG3sxBOj<o4|NP)$J5_UwF49wO@hVp*a2Xl%OQ@hkUrFC3M=Z<kSt
z2&)~<O)d@%J6e?pU14IYNS+|~ky*>bM`zV&SS>t|e!@s>LH?j>#}ck$L}jyowYcq<
zavaA5ZJ6p+ICsVUv^wG1npQNIY?ruK^FDHL#4MF#y1xbLYWurE=OhPllgoWO@GmT~
z1?jhH1Z+ZDODQq#D@C`BuHeNfJfcGp6NiglY-<I&b9YE397u3_+#!)|iymXxZp3l*
z^8pUqMYfX{<Syc{k0er+Ua9{5jO1EDLfgZP?THG4FRES^0UGE56gYfl8-^TRlu!75
z0Wizw<uGR!>p_m+kr2rkaC$r|S}uPGalwJ1wA6G0l^0Ci((}+0WNqUYe~FAmw5hYa
zt7jNt)ll@tPjg`OW)TsB>fiMUmwOHOJ}_h0(hkIj^Yi&Z61{FNMaD%5Vw9vxZqXG9
zuCNp6Dw3WP16U$=#TeI%zpJOF)p_+`iy{4jkpMK3u*Eh<&YOfNXuX_LbZs5#gm>*B
zx}%#IF>@|5S)4T(<>L+R?D;VO;Uu>11mj~j<TcC^)jfB;1-8;H1%+idDE&Bw5G|>j
zyl%ZeFc+W5AnoR}s{A^Qjk1}AYhlNY&Z{Aj!#;)j;F*biJGTqEL6Ppr`^o)^hK2^&
zzYhFXMmK{aILMCkeK==x`hI2nDu#X%+~?mFQS?#_&NZ5VNbZU55Nyf%4$2-{%0k6D
zE&@@30m>(ys9}N_luSskwoU;9u?X0oNHOl`0h}&}swWGmbfoJ+ZX97L0V}Ufc}RYd
z7N`VO86AYH(t+%-!w!+1#_71&kP%#*9hI#>5`|j^5uOwws7V6&xRvu*=euDq!1)Z4
z{N6d=<+_nKrL8Ur>Ck5Q0)o*3rB;~E4zxuOawUMcgub^3g@9$jSeUHmStQ?o7mV8e
z%PCL~bsf2-aTVAj%({^r_SAO^1fD=6mvHHmdh_x*Y~EWAI_RVsBkb7{G|b14M0Wck
zg>W%A5_Ng}4I@3dsSk0g?5}NoEl=-vG!%<i{}0MAD|C##&yn`y6ZTrce2Cdnj^F*q
zD*LpbwCY-<!K3xU+^}C9%e%PS`DYiMRJ;~18S%f&(SxYEU&D`3ZFp^1w}8muF2UX`
zFf_JAWo*leywhUk2*T$u^7h_a7~V{`Y%6)u*JIup#W3u2JcT4D2n9hON_D&O_QV1~
z>STa1V5P7EVqgKv?18P)j9!ae8gQ!ZYCKeLfBeZ{S6;_t))M=nCe+yOs1X8ObZY_4
zWs@M}1k4Q7)_X&hV(ew817hF|xk`Ot=x>BYR3uvZ*pHh+F2)PE);f}f%9{3cu$3e?
zav8B0{y7C9w2zMCDPmt#eh$kAp0u4D>KnQs3W#EM!r5fDEkf%s5rBh*DDBnuhBw!{
z0*%J*=SyBIDF`^nO%lP#g>1eK;Ya&w>roiqX&+AEJTm0kB#U9%s_LNzVmG9CYNyUN
zch#jRHz>7e!olrnig(chJF1GR@$-0`NT7(*Hb71CFvJg5#H9PLL=64g%vO+M4F}o8
zkh$6V&q)n;)2(j0gjvj~uuJ~0tS%pYYQKJyK=0@l=YtLA8pk0z6h-+^1w&*cLI8>U
zeH53-Kx71}yW2346IzM5Wu1hMgveJ!3Q9>zCIrQM*O0x3*wqj^NDNjj^sf_2Ajx%=
zE(#oJG&A3HaK{kNqJ%yPiHIM`m^1uC__MpBH!vIem8&&kI!}TM4g)(EX#m;91KYtQ
zfkU(@@?qBmB|HViPa{TvERmsQp@Sr{76BWT2AAOC?`x8_T~&|#yz9Gy!3R{!Kl)d<
za|-Bcb`!&PqZG~y*8bs-dE?`IzzzJ+8OF1ogB<|jzS5ae)jnVLzIp_v^e}}ufQhh&
z?Hlwh#kbo2_TXFZhk1%;u4D!0O>hM=lSe*q!|tDuk@X90ZPtKCMB3{*Km*)}GRz|C
z)9CaDTkmZkwh&G<b>yIXs8)kr#>Zdqq?EVjVP{Nd+o<qM#HOg8SRn#Aj3{Uwl~Gkh
zn_qGG2)gjoP#2BXoY5G_7!Ug#&7$3=`2phV$qdFGSeO7wSO;?u5327}n3fWe_e*yz
z86#hpp$>}u1AY*qgnNLKLZumBl2Ho^C9bHu*EQH`83{p1vZO}k(%Q5!K<s^5tGn-_
zYjAyB4@7=ECgySzP6yCi#VFr9&<TQOn9iB`s*ozre)&Kyf$t%tk5@9fB)ar9^3J!_
zg~(~g5Qk-6R7H3?EF1eVLHFI`bbgvt>hsg*c*rQ^+KudIO~>EBoy39Un;)B}Hbhx~
zBG>70gb2LHy!o{S5kLzYG}`vv7N9VWP-X5r8{SZBjCB%C6|R<N0&S%IR%mM;yQU>4
zOASX?l+n~de}aW=Y+DpJdGYp$aX>G7f^QR7_km8FZEvKIy|>+bEgbdzT3&XS_6Urz
zBx0^kAulkD{9KxUbQ+F<&Sy8|Jqw&R$&BdF-oI1N7zyxSyTqF%0m<Mb#Agks<%z=_
zWY^(Fi@0jdyT~Np;%qQRKhNlhbO&s+4qwLK@QUi@zREwJXPorZ0;-ly&1M07iU-)B
zLzf0g8{b9{x-(iil!K2w;+%ZnIhp?p4@5srIX|^RrcJd2;9oF+{j-*9=c3SWn)IKf
zihmfj?i0Na_@ov(;iV7I8KIh60#Z*WoNnVGrAQLtNJ=ZKwnw9o+2!zBko$JMdKK82
z&s{OhzDmml{_Z><dJ)JKPXN<<+r0C!z~Z&R`??o*J>#dGCHNSIB?qxz)4WJK$?U^+
z1TNP-4e`yG-SK6_rn^?p)5cf1Va|A1#rH@o95=x^wWL0Gu&MmZ-;GLqzLQxA&!;Ih
zTep7KbAts2EjHutdu+zAehcxP3BbcC#UVnG03Bm|4jFbn(iw)O^f5;)N|?#K$CwHU
z*=8dSl`LAV<f|r`WEf$T6c`yP(5s&413V-2V3}{-CJ8VqVdO7JWUR(#Em!ghz6-q}
z{w>2DGI_eS7Kfr<5(W^Yg)6=f!}?afunjN@Hm-pKZ~;m<^P(LaCiCTGsPwrXdENXr
zaA!%`XzEM&TO1|rAl&n7?!bHkaK`y`LWK&*M~TYOa@F4ItJXTZe^nVoBX0*cNEpMK
zT0vS;A&GPY<HHF$o*&PZXiqh$^r<7a#_;{`|G2p|{;)a-zVHsJk*T$~G|&$`A56K>
zGEWNpwRs-|6i@{P6{hPZ8WFc^u1#VXk;6&>FFOwu62o?HU@CV~qQ#E9LBl6eH{(FZ
z8?JS-x=zx>VJ6u2*Z$21@_|GvB(^NC6cBDZugmIecn<I33hiwNr)ta<bP<h=$&2gf
z0?)|2&(@#d!Hbg+8NpM|m|;nyEGG2E+$%)2vab~D|0=fpFBX6`_tFt^oySun&g#-L
z5}7f<)jiGx*=5HO1>&m7NiM*sedT+--%65Ne$z3!tTkPnbwbzs)8V4(l(qYa3%oHq
z9RfSX(~r{i#J*!o-~{=*G80T5gNwbL@s~EFt?*{+o?DDhWqP#a8;L~}5*^o^qkZgl
zt&12td8&C?j%m@@bG8k3q1W^pBLqpX^~X-#F^?Jc9nbBfEaPu*l*hd^pbxEk63!{S
zTUYeK?Og2ssK0gjB>Y#P$bTDmqZ~qhOY-RE?ET#v<f*<O`2NBZ%jU^Z;`?wGB>xpV
z?pW@lQ@CU}b~o*95z}Z~lEFBUz+$_%NtLJKic^T+w@`+;;Qo@oe?QYCI+eaoH>+9H
zOW9`~buSCoVXA@Thge!y**<=J%elmA)C<iDnUf+9KvY%I&7a%SOW8XYNclFSCY`}6
z5v+T8ORebliy=Bws{^Ww#~5~ME`GzGnMg_`B`CBI1xBd!8t@`m+8gz4$;;f#&*A%H
zig^G>0XYG_Pq%j#T!tcfbAM+_)YD4k3Q^iO3~9xDAymTz`S=>}dxTx%ay8Ad#Zq7<
z%?Jx`D|2^+%YFEFGY;83*6HC^L(gM*wLMH(^&&<*WjAnbfVihtDV#rfkC!VLMxTk_
zC%YlMaXT~al!Lb#H>z_rRdaklry9l}A*n7Z5^x$jHB<~$6gM$($D&!Ql{%NAMIWUl
zt7HZ1lg+m2`cvDoAI-U{P_!WOA*wVw|4LH@yZW=|@g1FA`BOQ&__Wydr(MopzgW$E
z%yvf_oiaW2&RtB}A{d&a-ns3-_oFjXqQwJbr@6CzU$2f15huXhI;x~n8T7R0PMZS1
zV?@Aqy7b<3a&PkW7=J3~-pageGIrk3V}Tk9(*v)HKp!n@R2QH0BTR_)N;m>5{o};8
z<<5r2>PRZjeT9y!>n>vrivmjNc|Og}u$De8v2cm`$tb29hF%MIH?=%|%^AzK<tR=}
zt8eel2gz#h{pLys#Z)mwJy*%fh)X-`GVU^1cSg<8%(vKd8rjC1$y1A&CblAYF<n;X
z=zhvwEwIO-wI-AKC%L-EcvT?LnnKHOV>HxUgUy<DY~pgC!7%o_V|S!*_UqExtJ%y0
z=**)~qMNWlV+^^^m5zW=y0!or*M`dR`N(3er^a-p$%Q^?TR`<(@^EYm%TKrUDfaBQ
ze8%F4F5CDQj11<1c3*1*$BD*J>KOOFy4Py0rI;PhMP6T1@8iC(6I|`OuQ1Wn#b+dp
zec7?q9;=FOXHNaRx8KIyCPB!U^S5|+)Gx*@##HuND_<d9?H~~yC%m1DdU`XS=&X-0
zz{G`66(RqhF9y^iB;<avY_m{u5h66?K6kv*0as=N9ioN9i*B!!2Oi>+iYlKwe~iY*
z$C0zA%`MLU-o0B033!OEYZIP?!H^PFi(;Fd{_+|ZI?&XgS<@fGdrBf|uy0J&$r`me
zT54-4LQCbLz`dim_2a_!3iHuXV&``s=pHbG#<KkyjAes^J{pa<{qFd}J_~}>GD(cJ
zlGVsS+AFa8@}=WbyKJ4|-SSns95yV)!k{tdMMi3>k*eLH?6L`dmhGk61q-W}_6`(P
z1<4n#neVS#h0;4sl#}Muq{@7ExGEb|((;@p1&cJ6)$kh7j4E&WLe-j3`Sonuc((gL
z*Ak0&N(!9qq@aFRHA%$RAT7YT$tR}8F+>$2d2HP#6q}aNp{&m;T3)hqQJI^jY~3g~
zeBS<n(x4#=l6>kC0GC}+f^4D$msU=0T)Eja6P>pn4d51~bF5<E&EFPzo-PLP4>Dys
zgjX8<A1S0C*0&0Z9Yj*{=i{DP>b;GoNzK3XekZr(sB68$z@lp`SFN6Hw@sur$44_R
zLb`el<O+wv6Jd~T?Qi<VTa+`aI*Wph<gZd@3fY3*xSBGiR?1mgXFI)U*K|O|dw~e|
zJzSRa*C54n1Y?`U%0_(>a=(Y`CIf1Onxq%gkYL57stlxX#gfqB0kzzPx7}ziDy5c8
z_k~6Ii%wH-1a{~ORc_Z7CBwVwHT$zR`FMM>x5h4Jag=qO&v>RK{mFVD^Ide;CCO)b
z0A3O?lCiqzE+0EMXY2OWenk8}x#+pjbCZ8y(c(FTN<xup?FqMV)SU<HIV*)OYDBBy
zRj3gpI0(qea(r`T5l6aSaE+@D^_Gl5+yj~y^>b;VPU=XVvn6!FWJTnd!U9$iFSiZt
zb>-hk@tEbQ8I!KY1=rA?NV<elu1i$v3lJBVQ6pyDdWRaavpcZ*eK2W1qJH`Eg$$O0
zu!!6eeZj3?JGtH{;m;HG>SG;crjvqfszy+C{kEizJ@F5CT{cP{`^>5^4cp#@G;_D5
z-G(#4*NYe?k2q#<hHB0IJQ6*paW6O%J%WRF#RTg?cj)ZD`!DW!1@{xtF17X|J6LmD
zCspo`ew9`+b#BXO3Ys8-5Kx%Mintf1M_!}4TfW3(-8JGCD0w~0qQLC(4h>_$4GZz|
zwYag)+-8O^d6#t6x{colCMB1H-((=R@`urtGMVUdKYftIQ+9uEp`YqzuBhnT4<T6p
z?;esRJ>so+|Ic&#zaQp(VOSx>AdrT>3aMNaQhfX`W9f*Wz54TC^LMsoe5^t+j@@c)
z^w_9nb&h#I=W8V{(=MSs6epD@3VEhdZhNEwRyaedv{~F-u@Iz87SnV#HnuOq!uAjA
zfs|&|9HT9Yg7fmxUva_LeyV30QI%Pb23eGODCwC}p@>38JU{E??Z?ufQytrOlZuE)
zj0_JmGuAc)P0dV0+P1+EFin=bE!k#&rXAls*i2}Tz=qw{E&!t%{FUO;)4N?O3rCNu
z?7WU4qfDn?Cv+(h$$V0loOrydtglApKkfWk_f;tcG;cyhf5?&iWwlek2C}!dt1YQV
z!+q04^h4QCDp4&PHpayx8Cr^kSR9CuKd^SO{G?*glgdcpRXnoK+mwy*Sgq=bc6VHm
zBQnP3An#~1Qp#?d4fpKP;()S*?A)IV${H#p;vCU!9LL3reeC+jFo(2A9+iuwB@`*F
zr3G}kM8modi6%)cv})p^GA`{9WuBy{j!?P+_mD+6?vdBp4kh=4DT$$7<W`})ld17j
zwinV!gyb2=102^q)uc#5@F@a5O$5I88@r7Sayip%(7jmEa_L+X@?m|fj;CQSC~%9`
z7qXiPZgiMUw@FJ{O-YBCNAu%;uTGBJ!pVY=zaJkxuMEYQa>S^T+qK^SNuk;lz-1q>
zeA^y4H{pPs5&g(520*8%W7%_y!1}CWhL_5k9|=I;nypT3^<^NH!@LRX!?_l4U83*!
z>Kbgq!vADU2uS^k#cj<`v?!m_ra=%PJI#*a-o;5{^oi`oG5sXP1dO(l-Yt;2(WWvt
zb_Y0zp|SCe6&gmLXZpyB>Jr^#`q5V08dSe}#WXs}Jf6C~{e|H@8n_zT>Exj_ZN5dL
zIMLXqKBbl_2k<DX+q@?nCX54@z}R4p9&YioZUFC(0zT?+h)z@)8JUO<ve`O_X!;F;
zIB8m5UgI^f1Z_`=TIW(s(6OPaiIRiF#k|a<i(PJGn^N9wniI1e=xM%}xc|g!@JFm@
zbD)cf4Q9zJ;Q=oR<}2VZgKaMQjo5c&S2`Gqu2*eQ%Tw!2U+YY#rH5At>y3$GVZn0t
zb=2$6iNZ^TNJ(APkMCsJu%E#H;mfrFWW4f7Par8nZedDdx>1s9v%bCxgO97ASUi#?
z^YAAmj#(H={sy6;hB{12;Y4s&FH_Bej@kfkX(Bu_YARfjoSOJ}<*Tlio><yT`h&ly
zACnn$t=kZZZI;K>Qj_a%`dp^W0QhC{PScS*=MQS_G8&8x4J)f3*Jo>UpU!dO*X!@M
z6OxjQfbfWwbojP-6TLQ#O&h}-5R%o-rFcNex?XiB_G_7Fi`^?|QCG@tGAYR4!TO@B
zR%EH4K~a!DG+S^*Vb3Yb!O|nnI&2`7*_v;3BQl7~B*Njhi(wmIYGw3;)R`j{u7PSQ
zq}JCbzpb?E&nLT|wXZKdBk|Ishep!u8-JKX91uRM&(1;H;vGihzy>2Qu#0D#lNp?%
zZ{0QuIDOZ}_Vrd-9+fIvK2>gDuue`nIIK1%b_!1gFVv4Pk{iqs820<a;TFSW$z1pC
z=e6dgx@a+CQE?Lp|MuyZZSqo#TZUGhgeRll2m_L(Pd?R~bx5UqEhVG!_-G!(&s=0b
zqBz~`@{wcY#6rSS=Xo618}Y$<0aUf=40(y~gX`_UMBa7d*M}mYi`&wbB{i3nE@yTw
zwON+x%dbCXxs7EMgv<BJ3?X<9bU#Td4rS;XN;wkb??ZWzemG2wXjjAtJPt_shwVs3
z#L@zReTKAEnGdaiUz=RDDR*Zjj!CsNJs$JWJoYciACbxcwr>EMbclN|-8f<&ZjS^H
zYkiO%(WA6r&|?u{0xF`QdV8E0JKX0nNVS7>xtHwk{glg$z?=qMUTZW-(4xK<qEW8X
z)Zwx?FXsek>>5pRb2RJfW>SW6A(&@VAgRTXc0_>q$s2$HB)ntyFU%T6w{q&6h8c3I
zz~_NPXoaSagW#FV+yb2lF9h0*TSLwL*94cnr~aEMHnJpTs}iJZ@ecZOa$ElU^}tIY
z(EDU`{j8fwI8j>A7Iy!K^cC<lG)Nz)DCvk5jIUr{gRP6NJp;)8kcjmMD5X+b8}p;I
zj?%KNr25TgAdIWQ!sA0QC-9Qv^>K@eFBND+79cpztl0Rl7UD*SD-%AQoDbl~S?YiM
z76G2WF@dLJCQH<3`{tAS^Zx3@QT`_&WW!$42T%=&=0LnkFUB?S7T?MKcB4vtVbOE*
zw8G!7efW}1>o@-w_d;Bzw1UTzCP~ZwpZBRksQb9Es^yw=M{9noU$J_{5%2o#mY{8(
zV5%lG2NB-t(xmM-1G+zD+B&_YnCS3w;);u#+qdC<`_<y@QH9iX!}=rQ5AkO8g3L#f
zF58Be;ik}XPP+tV?6p((*Np(Yy1w68A6p&vUf>;>_uy0O;Oci8@5lLAsmX}+$G56O
zJ>8{o(y+%a66<}Oc4+VHR3u=FS~O*4waiOS-REsX=1{mBMqWE&MIhq+rXd%u50_AJ
zP?-m1A-x=(!<B@;lWe-x9Yh~#q3)l;=Ko}DfNXz^Bx7)%QnzW>*DCf>HvZeBC=tb!
z!b@g0ZE$+Z97D-I3un?1;=H#gz+$C4`+eZMtrxq`9bD)hy;nZ2W!2}{S%yg?t|?pm
z!A|=4)>EXKk$5EiX1zmJcsboCJoS-<uPYP1$f($IYxPlF`(4e>qm9PQNd(J_1>)9*
zaj@AVEC39wIo+WPZZ?>f*<pAY&oRy&MGe5@*iwIi`AG07Hto4j>`_UQ&~%T1$md##
zw-bH=#s~*G?(<j8KiI~6>dlV}J1!;Wv>Ok5RIVPgO`gId4t<aUphw&L^NrVR`6d0v
zZv~VJt4`zm?<Q@{0Gu9<FfbHw&o1r{=@!H~LO+BXBW{I)grLUlb=2j-q6c5x5%0ps
zg2~HGjZv952TNEtg|4?U!wRj~%|=oj;yzLKRcnY*Y>LWm6Yc8t>9Wl=lKY7W9RG17
z<^_j6Eqzyq(kPAhG_X#d`+qE9ZlJ6$xB9+&ynRQ`SRMi7WPSd~SgC^K)9KhBZMQbR
zj)(`(a`R<GC&mXq&Va!QNn+cX?G*FhXEuZTqKr-ZWcb0p#*(Pm+D*T;i~UO9v+^6F
z;^Jm4guTnGOhY+l!q?-mxtew@7ZNgBRFj6Ggl1VUe~7;!Ph>SrW3vr&`GcJtq@ihe
zcU4;*fqM0s?!;wo7p*G>gR%82R{bcn$%-3VG=8+`ZRV1f_tA9A=s0K60!VtLjk2h+
z=NoX^c9;CK^XLdAy?pztMSv90(!60iU7vyP`dFf|WhXg;Og)VRJTR5*)Ttv+>xr2G
zQ2Lle&VPk>BVJx_hdt*SueyJNeLS}03ATVBwZ}(*ho_TS8Qi(-4kLb>Ks2IYOpDvz
zIbu<#GCf!Gld;U(`EB?Q@52B2f^>%T-}D&gkU6EKmtWj+I51xpZ-0I8E9gYQPe3YS
z9tJ7twVFoBarS&lxdzG+zG9i+WA~e(b$^260PaV*kn}{8*O6i5BbLVVZSn%o1)9%U
z?Hb^_P|6*#9}@!lc34aVwx~R|XzlTn0!bmD5y6;QMGxf!G(6=qO}4kc_*8zyi@Y@S
zbY-m3C3jlYx7C-}!3qkK)b#M7)KIhB+9<~*Gw}Qxomi@4bmj3<7Xw(u&mcatl(?-q
zv>ipFkv-hf?AuGJg`^qJM<<C{DEAFD)E9U4(XOD7d1GLO=(y#6)YR6dHqYdi&h-A4
zM8EV>BQ|s=m;}Cc%fnjJ&>M9pDvNj77FOrAF)jewq~gJg>)I)@7SC=bkNsLDTMXZ?
zJ-L(=hb@)Wd&gPwZ6P+Hpm-exUytdn!O%#@syBJ^Z$HR%oXM&p@V8XO45L^+((R%g
z4YX`D?A2+uU6{<CmZ)9NsH3vzwwThxI(q8_|I!jQSY8p!S46%cbk4TXcpqPjLj#><
ze5j$eh_fqHu2GpAnmk#{um}xh6)D@<opb^*$B7iukDDw!c#bG6rY`M)6b4ekxY~lO
zaiZH+X=BgUQb+VN55^R&*G|%9m*_L``Gw<plPQZbESzoBC;~5E%~e@5pmcn6zL)bN
z`P+MM;eT6p>|ZdSB#+^nj5OJxTo$DW>rc7+4hj>V_3!at%x0A$6MR}2r+bJr-vH7H
zHps#z9c6?;2#Ir4vMGNfDMHeuB~#~{>W<*bL85#>h-s(jcjmXzs-yQ>z1v?y(dzzV
zqvI&iKhoDyWOun&aBn*xkTpn=99nl%t;xo~uEarXt}frYuvZ=k+*g`5Hy0JAp8%<y
z&JmT)?<#F=paC$yg*9@PHv^5MPlkU4A1JOjWVlHBpo=rjGhCARJs)<Gmpu3x!$ToZ
zyfdsQ#iBG4-k5*vJ1`Yz0K%>#q^7@<*UgN2=+$o9bt>;(kViPxDwiF;IQ^+HQ$9hY
zS5sM!_>d#bkCCX?4P-wD@p<+y*4qe0-Ck|n`ztZ7ujDL;n;8Ip1+Vu;xr6}b^xYx1
z(~GUoR(xWw-K(~2bOs<y;mXv^uUFv8*6T-_o?ak;SqHMoeAesr@6p5;kQrm^wek|)
zG`%)CgUAQB@v180et7tFJyS`R07x<7UY9XetXw6sQu;e*?cqE>mp(~E-@tYuue^nK
zJEPZ&6Y>@s-dvZScAb@43TXdEUdZo*B`Vn?;GtvmdjVpqgQeQ1?aw=mw{6DW;2!0z
zvvF-jt){MOP4&^*I<3o~sG~%_=e^NhW4_Lt&QLH16=+1*sJ)1Yh&*2*A)bm&N9%kp
z$szKL<nw{o=*rtjV0Cid(y(_Yd;GY{Jdx}X9uZjt7`{*GX<A0Pzm4mxA`yD-=iD}8
zMjLPdIkl$qe)v^~hS65PK3wy8r|y(&_OS$+-@voePu@|2a>c__@S6>?YXd;Zq^Zrh
z5b!NOfQ@4ZuL?KFbYK&0^~WH~95$UNZ6`fU5JY8+A)9o?Iq%6-bFR8~n*u-Of1if`
zZ-vVh2mDvjuWGBQ<ZqjEg&Lbix}q6$G<pP747p-GCf0|iFfvwIItRR#rI4I99Jy8@
zd|}Huns}oyxt&O9bm5NYP`{-`<;qAo@zke&&IHJqjs(xyE|dL4NY(_W*gzj^(!m<_
z6_-$8+ew4_Iem=?6eqCvbPH5J2QDZx*(5ryER%@d;nQkIsB4QDRW>OPag-*gUF`*j
zM~Gg9O1V_>=$u9GHa`XB**-*r+((#=ZM;-e5(=_O#{WzOB{~(#;+pGmacbSo%!K^a
zR6%DW9%5kj9`laCNB`4uu3u#otjoJeravR9rK$qy$pik2(y5^OjiP86k8Z~2F1c`p
zF}XC}4HA1K_MC)hHpKx^BqKR7x%u#O(I6`%t>`>0v3GzH*+^XED6w>QXKen}ZQKvx
z{(4vit6q2+9g3H}i8-9Rkr<gTCxy0R14YV9yiHoheMt%;CNc?6Nh@PNm(>(xJQvXN
zsx?etleR`#%6q@%5z2DxOv+28q#^mUnx9z5n=x6ioo3NSP^B6_Etnh>Af%zvsg%?!
zkj>$enN@do*r!S2DkEy(c4NBSJ~lK+GM}tft|2A0NE>WOa^hhQp4ds#!pO!?=KNl`
zUte^)XkD7JTPhx2U?)h@I-wQ_K|YWOK>h9zh+u(eq^zfxNm;|{56`_{J<NcR%w^mc
zdG0EMA6u`e(xXPQ`4J>35eG9DgMv?T#NAs9AiOoeGlr4T$RVK+Cox^tHG>b)PNN77
z!MnBq$L&eH%K;u5zFiLK3u}&omtwAy>)XrH;8g8W-0C0R{0enFkKRr19#qMBX`^I@
z32WFy6mXKX70;uxOTav;Auc{0F$Oq&EAbs*A@!=I-1uSiCLvG7e_eIeu|tYc4Ur<s
zXYwtK1zs3JZ&v~4j+H)PgCJuaNt`Z{3mWR&d@=4=7Ab|ckqY52#$8046)GItP5C3`
z9DSZB?w``0BCV02gxs<mqhA=tlIgXv%BdK78rOip6`@T2WxRcO5Bsps;LWKN1xoqi
z7e$R)i#SSr;r#C@BV0tv6i!KzcNI;CG}_RnxdJ<Nvt#X?cIx(`&)+e;fYhPJCc7A|
zj$1X?)?&8)&Z2CPi^N(+nCHXQ{^=d^9jl#MWBuKdy`apebii>fv@iS;vlm@so@M*W
zoXNYZyA^)}#8~U*?%o}uOLKqMguHuxGQ42#7y{$l3#ya9u6%cFkcCt72vPm}jHk`x
z-uq~wjuq;vsv5ccI)U#(!EGMIBmBTGzCE3^=Y<@hV*xV~LSpH^ev_e7e$@tvV7FtS
zEE0D#<ZoQt+z#8R0VFV*LvR8Yyba{Q$~O2@#&1{>ksg;AhVO3KiC+95(byKZ0R*q8
zzIXX6Mh*ueclqcgySMj!Fl?C>rvt$tC)49PR!4qM_Bs>q;lV-w8Kxmok_^!IY{Ut5
z(mbF=G<Fw;ZjLkUPfmC{pf*XzRZp1(%Kc@B<{?)VWm?EK0Uq4}7FlLzWHOH1m6t(0
z?pl)<Csqj1Bl(8?njPi@2x`cEKZ-YgbjSyPxYN#iNNMXw!4}Ty{G?xg(fdLFL-qKF
zbmB<o^=At)v(yUvmcGDLVuTa+wo-%GE@ZTnneGrIgoIBIN^;Z#GGOfgA4?tucp44o
zaMPsGg7NyP@|p%C((cZ<WJ!I=I@4fxzL>5A&n3g8qMC8|4}Z42KNdO^X`Ho2I@(N2
zq_}~PGCrEY)40K+<SU=#TqM*+P_V=IkQkpFnymnE&mWr0G3egjrc|1u3WP5glP)X<
z(*p7FNeqLZi<Gr3FUyLOXcp*9DSKVfOb?bd4fhp)$g*q`niGyTxJ{5~`x;Eq@G7aA
zF6yeOSr4F+(<xPzmJZ22p4w8yMs}rI>RVbCBqrLh4?$xl^#Fz{e0n<r7*a5CYDQ*%
zI3muRlfzQrg+WagJ3USEkoBVU1yB&yZyO88S6wd}DE}(b`(UqNqNXdit_H1;r`>^;
zL)34xETm%5$u~`G9@wmW#SZHp#q(I)v(?Z_hgZcpPFr<HBepDehAHN)xzbRR^sEN(
z+3`!kjYK`$Y;bXl(9r+THWUYeT%zZ`MQNGXo=qh2!TL|cv9}&{eu&Rsn{4pK`v{K*
zPP#4EK6A4uPltGmhbpX7%6TK^IEia}i-v9OW%~va#3RZ_XnG!HB^h1Mn`MV(lKfy9
z#tlJbkkaCep0bLEg6vj)fkQ!rq2=%}^bC_QkAkSt0u8qbJUw}wQkj0Q9-X>$6i@^3
zu)LM`NYzk3Y;|qdJ1BS(I-^T>%OHBN2K2`i4X-x60DvKU#9WHtH}sd)^Ju#~`QQMY
zE5#AXcf6o=66GHJ4M~N|oYMzQlrE&X&yZaS3IYoZ@3GGlZ|o}r0I^+08RJMGPCkGa
z&2_j4i`!k&vfrhx^)5QbFWI-RG|7Ze4BQNEa#m8jm9y;<;vNYn1txB*e+5q_emxHz
zl?wT!&dd;`Gtvqz9kC<$_7Fpf<+1c(a2wF?kxOzNM=E#@qlm53yg`yWgvKjt(?@`7
zE@q&x?ur=I1LoL)IFITskoY-!;YHSK|H#5EH!LD!!p#lKX64~k*fH*L1+dH4+voV*
zp%oBN#h!sUH<`;FABi75AN2=f^uY6nA=uvwUS>{Q-3iC}k>KDaG5Xl2v9=l`JQ@2^
zz$nEldOedI8AYdmpPBe~oF!_v9%Om!;+DMbc99qhH~nreTnp70+T<Jx=9@u1l3Lpy
zf>O_vp~vm11D4i$m*vgF@lfnBfDMDS?Q(eLSBOR&Pf(nku8+v~(t_>PaTQaAYQmd2
zM+btAF_X`TH7~i-m8b>jqRy^XVY)z2yCF@vVyzB>E;PNKK8EG}3Av;T<qO-aog*>o
zCkwk&8U|v%4BpdUJOyYBE>iLPJ-e6d?|#kV4NeqH)R9%PlKiz;CBAxX0M-rMfpgJd
zVn4ktQhyoqHju&JE_HBUr{eGyw!Mv!K+dF*YEJq<y0$-?M;|JLjdU99bln}q`sZhb
z!#M?k>EOSO6G%{DM|822RXyCtjFb50x19ukc+oG5mARkmqxMqb8X3J#gf3RfRp9L~
zvgS;fB*HL9v(JRC_RrgPjXK(cqAXrpFV@SFQa}c?SB2i_<1G=LB(#^4E56c82C%V9
zk;y7xR{}8cd2?9h5#HES6W)TJ7t-2oP9>u<w#PH-YYjc(&Bm{kY4y1vDgK2%2i%PK
zcq7L=q)+78vKwkr9ld0X!ybMG^-g3Rjs5QJpc?J$wl9yP?c!hD_`72f@1ktV8!Kw&
z+9_LSTRx$Hza$w-dHEy>P!x2_a~=jQEFq^kx6ZcFEgY@JZZc0$i$UCADxV*`;Rbg{
zKyH!^MU1g<jwP(pX0ln@!$EnBi7Fc_!V5gq*$_Hrs@^dtRAxFKXk$yQR`;7+ohHNf
z^inABq@lhfvW{0_<WXr}Z;YEBo!jFe-i8mLW6yq~-=+5w1Hbvn;NnjBr=lMIr^|w<
z>|!foW7Wg9cQmPG5)%Im8cj`vdGJ(qoN|qlVjSet_Tp&#0lC0#X`1B>UK)7OEuR?0
zYQ0KY!|#<ZjM^rP1P=oITF)7jBP+jaf7f}<@Q$O52BLeoUtQUGO?h@p2OfQeHH@_)
z$nkfG4B!5p<-1tC5G=C!G``JZ0wKl6*WKFJ!|6m6E8cQ?tV2K*Y)QPD_k3e$lrH^M
z)#`cIKKTuV9cXdy(cQAN>aEzlvA_*jcX=DOqT@IZ)!rRox{B^dZL$1{i$($inl3JN
zF1$mKRpbnw6=3#+ElUio+Wl6XUxL;EPzK#ED}YYqn!Y}%sJ|P*1@oulp{!;MY^SHV
zqW$Bmj~I`lM7OwIDV%#)uHfTD44vcbnJ=0R?o+nJG+O5Cw}szhv5wry>3&pqt<Z-1
z0B^xo;`AnIYsJ;F)o}G_itw)7c%zTs8K668Z3g<4SLNsTpm`d_@jEa_Jz0loMUrc?
zNNIx{`uDLnDOsMbwuu5-z&0=@^XK;QL3Vz3&1>w<@>;xadUVEy;+m`OdLykHRg+#@
z?o&-14nDfy1}T%)f3Q#*JMLQjYUs^H_0?I_u(s!Z^`vY%i=Gj%2ep4JUtQ%|<#9@9
zJ8ATjIvS<@x&VwpZ_Boi*b`q!+Z<0xK6phvAxxI4ODAuY{e&Bg;R1>lyrOeZ5TpmK
z^$?BgX7Ky9VF0(qUF{KXC&Wy5J&slAa?N$8cj9_vi(>RPC+|4Hh_+v*OYABRa`xE1
z&&PNysAj>J0|ligj6`vz-sjndwi#LW=-WK+$S&>Ls-TiAKf)s|3;VV0@%92AMuwiN
zv!^M~@v6J!X7^R5vwGgKCjKp~N#SDg9NZjwf$uh>T<Qr_a@7+gO&&)?^z?U_<0>`)
ztn^(y=8On2S9W`=-825Faqn4mY3D_|4wP2OOZI(z5A?T6-k<l@4Qo>^ogDD)cPqN>
z7-P0Kk^Pvswtu_t7qn5DD1S?{YZ@%vd%cc^a-Z#X%GD1ljr6E8Aa;?!DC<o1m6Jog
zKO`|&ZBKRMl9t%z+qA_GJj=9r=ZEs>B0l(FK&D^RVF^;b6E>bYf=`ZlyrIznlBa{x
zQtd7+w6E$!)qQ)uwTc9u=0ABG-cN;|6yT?(1#Y7p2#f?PskT^e!{g<4&R@^k;^Pu%
zKjDaA$&R0z){kO8?4F=7e%0lzzI^;rSv=WSW0ybr6mwmgUP-&x8Hf<cWUR~OtEU&O
z#zcYKr69NhQZ9o_mClbHF7HNOoBKmi#vv9saXG?TW83uTxdl%_$)=f+nQ1jSqg}mz
z(I3NJUMA2$L(?+9*NT+DG#w?aQ8y2JZZ{&g-xvK8M1ESpi%zpLk*+N6R;q12XF1NC
zfUYd2LNbc>ikHAzs=dE$P&CN7>GCb|TYRbYK}hXt$g;ZOfP1Wm?3zU)<Q$=Mn%tE2
z&6R}dMezQ?Xv7g9E?cr#Ph%wDZMEJdL`Lk3Brx=Xeyz@rL^)k|X(1O7MoIXyaDymm
z45zY0dpnHtZKR|=LxWR5inR;#VTh(jiqqM!q)@Yqsmoe^VF{w2TBE`>)oq_KMNR@l
zD4Rf1bu(M3^dm7p&G7lR=hiv&IJt%q2ui(OGWS<e*E<Ep`rnhE4vqoc!*vtiNI@Ip
zfJE~=eO(jD-w&X~ofL_LP6|yroYpF(7){~@Qb?@)K_>?Lu4yfSClv&O4mzIwDWUrr
z|IEPlb2D!`grIz^nIdk_70y<fg+#hxA381>X)J4_FB&sdptES(A4Erba=iGkCkicm
zE%?Al@C$#Zg8`9c>*e-o)Nf2;WA2Cngj|kUy-ocNZ>Ku_TdsJyN|I5HUtoP>b8wP-
z$uu5^!}p$_rkr;LZro_JK%{%G(Pk)VxO<MHdJdgX6S=j#rL4f5Q@t=aXl3U$TuuBG
zB2)c2B+wa828!Y9qs7K`Gay)2zCZ?upq%qA8Ldn?pzc$H##dgJGn*U;^U5WNMTz$*
zJ?fH(ah%qgYcKeC2hlGv_Mo?jA|#p`V9?JiT76W&f5=N=g%dO=lCHv#4g@Q^mU@A^
zO`@zZ>3Fxly*|0}&I&$)XBr!ff*^ZM+I4|q`lM+oF5+(Ieq@Fv-g+ZMVZlJFZ>3Ma
z0dv7PxPS(w!eeE9q!*5ggZ-sIgjXao^d@uWU}WH;@>jkGtMm#EaNUbi8^$hon0f0N
z$U&LGGwvS|W$a0v{;a+R9!T7;V{CWI?X1IpTQL8{J_L+qK7s!q86@2(EaE0UHIsB^
zryzc&Ifm}dpdJGepE7E<_xSHi-_Y#l4An9UP6=&+O*fAwyPsYP$h{92eY8KvWjENX
z&LeKgf(j>8#_<B{sVn9D@KCFn-*kw}E8WxFtT1hGT2{u&gr#Bi4;Na@^}|D>SwP*8
z?6uhv)klEabHA7oPQZ!VEm_<Wrmg~s;a@KLfxSENaMKlI-bC6L<z>+{<ZrTaYdN8G
zlt{6oW`;#zB`%q5U$WEJL4waqJ7S^?h*E0pj!HjKwaJb9$mo?JWLzUViOXoXdcMX#
zvvSt)P2lQVvwihK6{;IRy;@8Q6(mep2K};)*;tJ(;9WeNDJhHCte-C9w_J?(lW}~I
z%H}7AckXxk9)K+)(|2*J=SIJSfcrt2M8=KvwC?s3sR)-vI3#4%HozgS88x-L03vQ*
zq^3ye>h?tA-N*byXmHG_V)@J49<5}a^X2{^h!|Wis;TQ@y5=qF8RFUdzMhQjH@}!t
z7`5}R3DzRB5Dxi=*Vb9j!ON&?)q15q&0nDLEK0yqf|~4N`~d;4-r_+7!+tmvdEzpR
zvlO`BS{}~+xStRP_B;x8)CI<{5P0yeUdiZx$0IpVlnQa!Qy=5o&knRfb*DUu&KIYd
zTdh(nje#U6EM1y%`)=sf2bKtPQOUnmINN8uT~-KtYy-RgIjo&%i-u<w&HyDMp9ifO
z2l1xdfb<Fz0s@^b^W%iXwBNta7mkG>6}3j_aSWt`KQYYCs7m|jD*i|=PXNoijZ3U`
zKALT;pKQ@D`d^34Tf%|K#+qYZoYmI+f&xI>lb0`4l9T1gWV9;nBI^+gi}>`ZdTem8
zvVYCbuL=We7neOvk%!8Pl%eUmpy21OkGvFjBv&kk(wm_$GjsvMK(y6=e70*yNN^X-
z_@|v32^Ysy)sKA2-)389p=Sne8!DM8Ws2dc=Mf#sqO`65=ONsmFs1_-qT2OOfa=7Q
z-~t_{@xo2}=US|-KNLZOQ&}aCbZ$-(VA4y8jKCnX!e>M?L6Z)hk%6qOOA36{P;q#i
zEkFlAQd!Ggn-jzTmW;{g(HWQfTRtUm(;d+mr6Zrms_)auEE4Zw1PHzT>9o0f(1G}b
z5B2Zw;?M8Sg}-GeOvENs?36dMo16C+Tl7k(gAQ2cEnI#;Bx}X)cX<rgW|+h4K=*(C
z_kZ*|{9QqH-|Ez+XLjr?-9z%202#7DiqLUW&NP{BQ+gP8yUyiFOVHC9==q9%>roW$
z!D1kwU^QzoZcvhS2EtvC`119!=n!CA46{zpjeD==E5iLendt<T7mitM?-nO7IV#5H
zk}rwY&E@~Gl$?{r*4P!Qe&iCti;Ot96z<n1%e!+ow-HV3fnqOC(8L$<aW+rP^Pu@p
zYep>~C5~~4I$)k6c5P<3tsc0#oCvSGwLfL7(_lim`lhYVCiPl>GSmg&T`S6EQ`!nE
ztK6vT4WC0|CnpPJ+{PrVN}4eI0W%vbU5a>Tme1|4kyLitQ=aoGYOzxld2Vqkg-p74
zK!p%w=m%fmx-EITC)YS^bb+p>!~Wy0a7F@`o1CBi%Nibm`1N6P)!IA!4VX79d9Ubi
zA)O|kOyo(*C@IB_HUrzx$GWq`05+9>*Ju{McK|#^y7!W4)?}+yIs!OmEsd}~&<pH#
zU&!N0kC@x`!Ef{C(XcwfmYmM4JTag~w4ZR083$297W@F=7B<C25_P{3mTeYaWQ9QG
zjY69C%(q+^9lrEH@QJQXp%`8SJ`8S@SHcVw8d90k>YEfk(ef4*CmV?A&mj7J?;)O2
z#>V4lj(WAsE16vkVX+9s;CQ*geoa2(2*5sOU>f;X!cH7S^PVytZY>F7Ef#$^F);4f
zf6uvQD{~umLE^Gm#41^iqxuq;YSjU(B0b*+(~_ap&Rn)evcC+F4tqnAE*TreExMSK
zVi_Sq>QUMxxR)1H3@vYW?QesCG%(K5a1bX+R7LE!ySuA()91G4qYnL%z+w&QLaC^j
zz8+Uu?)^^H{Vo*m!Pz5uB@F{K^z`5(hPkh-eB{4Yd?E+uc7QG!2s9oD7*Ao&n_)bE
zKr@=mm*yCKmnsVV#ozg0KxV&A|3PsTm`l+e+OLWfz5Vmi*S~@QyyZh*i*>!GyZ!pC
z4d7jGWVHqOS}aCAupS%1*gQ2jqs?h#9X+S1?AA@Ct~&NO3@=T2+{qd%RdyM=zxn%R
zPmjsi{KQE}VZC2hkKhI+S(X0fob7)CtE#4EyLMov9UL57-T%WeK5Mq!oQ6S!;~Eb>
zER@hS<!5sSk4rHhVB>IQ>A<H(T>=$ka@eL)(z9Hg14wpSOJ>v#E24i}N@GzV&lRh@
zA1;Ho3x55hyXpV_X1D~2!8F#zExMF*A1_(^xWJPv(AlM;?fmUqHJ~aH!Bt3@nH8qH
zE?SDb&I2S>Qvjp`$0*6F`Y*pCn0R(8ECwc~OVOsD*HO{IKVS9#wy9`Kh1KAkC_LbW
za*R{C2c~C1;}oaq=m6Wt@*6-xL$J2FJzhZFp{%AGmHD^bK8C*rY`XX5AfWv>_wdjG
zL$&zCpFex~%3=P0d;ko8!tf87(P^?!u6Ub9o}QjK3V6w%fReYWFA<*@i~#b4p2iBZ
zlBtEjzg_oi*q*=+!0y5Tj3*WNl-Q&H&0O|hFaO^Y6pKWOxO^fposoe73)G&MyEQ@Y
z77&Q5WhE|3h=k;Krf2c>;mokv)jNar>8yP%j*h+T-+%Op1PL#%b`qoh>gjc=;=f+1
z|8nu?<6!eC3UKOrzvmwhe5oxseqU_y@bOJM1E4N}2DhOkpdZFmd|4!hSWpj$dfT}6
zY=G8)rT{7w)T-B)r%>dC@}{Q6Q%*Lv0ifBWyZ@cfelYd>e=zozQFV1|wk`yM1ef6M
z5<IxOLvVL@cXxujOCY$rYjB4ZT!RO9w>#N&s_N8f`>S?;MrbRUYs~R#e|qd%bwx!|
zLINtl{t~%wS@}Vrt2Rfkz3|V^j|>%j-3T~el<^vty8ryw{`>g}q!LdXqhoHa++b~y
z4F8~EbUjvY?-#P%8&6kMQu=*-4jkT<FH!#Sq~gm1_#OK>UaLibK}2XX_0uqEEd1FM
zJCQV0kf2}9Deb@80{qtp#W6zadL9%8?-pWHf8gf+0C=2md!ZRMoxQN<MtaB~{rA7-
z-)$3eqXvixYxWDF26NX@IHW}98`#*`j4uMKB$vPtd$i7E%y7`+1WZP*`r)o~$XV<E
z&lmRpjyeD5>E042ibIbZEE1FCI`4rXUG!`bKAlWSPp1YTY5?t)6tJPGb2(ByV&lpf
zHFUELo0t8k&-CQ`aQajHEW;*ca4@bNZr*leV&dc>dLF}B3la(ehs<ie;-Ky^8i#c>
zrP2Lji=I{qPVpaagntcb19Bq42;#)6@fds*FTGOA&4~ajlqTt^5Iw7^f4_+Nzdzmo
z`;2(sAT#E^W{OeX@N8|Vohe&H{&U#^LmU^+FM)FuXiB*w@bgWOQu3k$oB2HMpzb!?
zPtsF2{_Cu=RE=SMf$@&S#9kwtfu(P*4RVH>&<#QY-wy$tGRuP6BGt=S9+7$8+brJo
zcDJSr$9U>q{cOOGQR1@$&bu#;tfkcv;QZoaa<Mh1sNJy?Dxd9HgOJO41yNdU_jR4=
z!zSy&$o~EI&}fH8B;XY^cnTc^lusF;FZ`)F&Lr5NYCV39xj2S{PPjtnhp;A{=o=T1
zI$@H4R9SDHDpU;rS`)W=)6BfzUzL5SwG>5akIimF@94Cqd1*)2l<!(*cfTVpZQ5~Z
z%KO}r<v&O!WTg|cmPgvSzy8rFq*pgGkeeEfUoQJ(!Dw>E`#`4A?A~Qfr)zWfyWUH(
z^Sj%QD1XwW?2*Z-5|U)1!XlZim|PX7s@2^SJRS*a@~)zi0uIdrx@1RzfWWZdbxlB>
ze(#5+7N*&l|3`?CSR|S7yS^Z=Nh$*e=eUcEJpFpa^mE)Y2qDk=ru&~Svj6kluHgk3
zU+JPrAMD-C9{wxi{kJLX4;X7<ut1Xjfyazb!roSKN#l6ZniXGOe+^2Ejif%#!c#Av
znJ;yi%K<CpZXk7GdzPIJ-KCU!)kfz+NYHOGyH#J5#T=J;<8<C9C2Ve2q;!72Rsorc
zsww~@*DN6@nBySap}@@Ydv}yp9yW~s^&Z!8;PY>IgPB=M@};Vy!$X@#ShU-^hyDG1
zDNoNbnY5bbq*S#fMmt}?rUHOM9v_2W9u((FU7qU{SoS$OoE)}45i9EH5LjB-@>6SF
zNQ%4+AcNz|`atX1XApDEOZix|CQZJGe3H+yz8hPAn{8^p6MRzVVRpl}?mJ?$jUNpe
z`_(@nJlUdtXlYeYRivppkxNNBDEHO4-&2}LW^6p+!c5ojPU$yGL0iWxdghnjGAYi}
zQCxC$9qME)wvqg$>fzpEJ>xsf?yELrx4R4R700L8)v?f28+EfQV7s6dV55`BXv@fr
zB~2#~i$cpW5fV~LK9qe-U^k57^t(w&SkpQzA0>;+u$9Orq;_Dsq?zXZ=dAZ%x76Q3
zn6GKEZRFEr0k+!Wl^Orr*AE>~ko2`ZEW=Q<+FMdeuJP%Hbr&=g_xMeF9KWtvg<NKe
z4yM?;g3U54G%L)JFe1|8<3j?AXE1M$@o?zmH;LeHi__CoPW$vpAdr-_>KB?rQUDTN
zXDIq!4Tki6cLPaopD=|-_8Xjl5*ZF7UY_ofeeUpWf9I|Kotnz60^Gam>gzv}4`j$%
z{W>Wtr)dOcpp1r9Ypz4j<qwY8kWq$4z`PW4Az31k_*>D<5!$*NFnbE#PRBGcA@tp=
zdoNqt*UTjXrS~W6PJ~2jjR#Oi=<v|jt7+D(VPfX$3<eAZed1pxtW-4%2UY{YH(xql
zgG`3IwksTsEJl{?TgLb)DTk1`go9;1RncouTeOC3EyGE=9DzLcu32F%)QgQXE+bMU
zC;g{A;MH{5|7RfhH@^ZNe_C@^$5v7S1QHM9j+VKWiL{hdn?qyce-yv}_O^8<gd|!u
zSZ7`N5*-S^4`jzXdwZ@Wmo1^XZ?9K*%n0cSeL9T&Y~AGK#p*76b{tjTZFHLFxT%+p
zaWC^0vMfmqR14!dDEN#;%;@nFfYLk$CCq-l2_B7eso<u_>ELBEz~;vB00aU7wIXqy
z^MPV2nIV4p#HK`xLeYAWFEWe8&lRL0gFdt=T;J)2tDP6@*kFl35r}Py-@aj)b{mBQ
zHcmvGOKlNygV~J^N5{81c=PM-$7g^mRUJ^oG1>-;vVcMuKk2w-895n*9Gap6T<&3H
z*#!~lWom<;V$pRE^tv4_N|y^V{~R*@6?FCYg?<2-_*+d@K~Ks%6}1`eh0?kCfBV#c
z-|U%;61eCv%VeFB);xAw-2{EpFwr5{X2!0|&O66$#vKf)Q&7S?zd<YTwMtLwxGo|y
zGgUX#Gh#GfqhyDQPRLa-4)#vVNif`kt~4|N?(`jknp9;vEt4_ZlCoM8flo5*hoJ?u
zS>81heq$?VHk5F-qzFYBj#S)l!@?D1#0Qy&hh+MokMIZaj+cn*8+(LbmaKoXW7ln3
zZX>QNwH#m$w+&nsS{v0OET5$v%qL$Jv*f}iLMn&^e@V+pCUxn>S$ex?*^TsgOU@W|
zEcaKp`=uCVWuh$*o5L}%*WBpt!ohnWr3#<{r@S8Rs?6Kz4^@a<5TKCyFuyj)STKsr
z`1e|rEBN;VMsY*{)*V2PdzO}!v1$w1L*DxTF!XqR7#i7|*uA{|Z6}Qp5eJ2vM9IRe
zIC0^*P2yRp&~|Ji`6GDSlADrJ36alTUZcakk?toDDBG5*fCy@tbilR-bk`dn#<Ly*
zMx3~7XDO!tmj=`S`I?-iA%zG{GpFk2{>=;WU#XQV6r|!4&ZX9Wu7_cv{!rKs3WteA
z4E!_i#uwLCxeGc=6E1YzWFA>JYALv#NE}?&6c(#U*~$7+n%1rUANTYaZGrPCCF-z5
z;!c$FQ7C6zj;Un0Yzb^p;j*)S^JXr?=#Q&nTo>V=j^@hH8rx;*j-G@Ku_39C@i{)D
zeN^49Yfzbfo08&U1?3v}Bs4`Prm$mw`-;`K40@;#COw{QIZq>S;V){|kujnVe`>JL
zel(eT_NaRbHnLvld=Leiu?BbLW5Q&@+8lPe^{adAujA4rAkM8VQA{1OmU3U9y0hj}
zy5&`+v7|Mz&lOZuG7C@LtNw*d`^L1d;MJkmy$))&W8l19WCBu{fif#cuw!D9$&8y?
zV)_(~=H;t>hSbhG0#hBwg;_{C>{_=o>v!!~-HI)Q4F`Rj+0?5t5Hn8z^E>*3gHmRo
zoh$8W+}_bKn(}hLZ8!W`O{RX6#nfBB?>hH?3kCoBv$f9wVpk#Vj*1bGZB`!}|JMS+
zMwke!6`46tfi<`!-0CmcPs`ygR+wnuTBay{c})95QOZ#Lb!XtmY=t&$dix0~VwiiH
z>6QQynXRT^*G?3H!S5d}e?hef*q}p{44Y=x-88VHx}`$51MLU;H}eAttvbW+I~a%w
z<EuO)lSfuM9I>1Sct>p5g`%sJ^|sa}sfA8v@gfOIO61jV`q*`69HsA9e(W5m-TVi2
zK6RE}gL8pSqh&JS29qLdWx~3PTER{xT(7Iwww{ujopXYS>u8XnATPsWJcJVv1!I7M
zxolw(-?Gi-b-Eg&s60Eg2QG+WxD6__GMO#u-LzN6f%|l6JP=_>{bf86sL4jVo)DWY
zzF9dR44)Mw4u<vhaU<&R{U;0HGw6M7{J+lnzkLtds6V*FTAEj+{wq`zbhcFHlarIL
zHH>P~{qxVZVSWJS74H>;m@uL<&`tr&=Gq&;B}c$V_;G~thKtlT*epZiPlGv65u};v
zGX`2X2iqIqC;?^60+Glvo1GQ^&=*e7jyy*{@0o)iCq09odxN)*_8S)`>jd)W=rYpN
zn#7V=i<PFwAHy);XY5|j3;ZoIDYN;z{Bm8%DaoZfJxb>j$Z@p+S|T#8$zYTlWMJL`
z2k>c3Slo9Y`Yc9?2;IJ$uPvI^&G`OAk~qJBt`ikd$Xrky%$@+IaZAqtFm$za*Ew}u
z2?4vQSKDcI%#s`WLurVY<l{HtS5`ljv$wgDS+R8|d>a$Tjm=Pa--55RNs>3ulw27)
z<p=eM9P%GVEEF5hJuJR#$aUGWZmKZ~0lmR2mwAn*-6@`{s4se5Jhte6Bj3Be*j&yf
zt3dbb5~%L`vsFo5?I6d!)8G9h_JRTn9RV+Rx3f{p6QDa01@`inbwS%`NX+lPkI)#H
zqj9&0(P3^R`?$Fcnl`VwCc>go3<FCfw%}en@!~rG+%yu5fuCOwk^kBLYIC-0528}W
z17Kq90`h|zha&l0dT~OZhBd$2B{Nb`qggTSl(g4jv4tUN++QnVS4mGYUC4KK>A_ri
z>bnEQ-c+s~U(_n!dM5zAFQ}@bU#}q9I=H9$5aW6VWQsyXa@m%@`Jd1G)?QnePD3q)
zM2X}e0YbdVnF<;iduz3b?=8L=6wXO`kbtY)f?SEWOWa(_zdF3rOpv!6f6ik}ew6;t
z_`4k3^9yM`3TH!_#A&4jo(+dNi<}lmNF#{&R}I2uX}!(rHJtI<)`Mab(~hA>w^5PS
z!f5WKw^*Iy6He-AsJlrLtVXffu7pmF*e(C7%!A>&Utv+5_F+(?X=!}YtaGOAbw4#*
zcjZ7iDTp(56xe)>Q-K{H8A+nd%`(YU(<3CA`S?L{uh2v9V4*tKyUV%NIL!@yNB-ep
zsZ(gTz+|y;6JDcv9*=Z=IEZq^aU{-jE-6*4fOe&3vMogHJ0m%{z6u=it87L?F5oJp
ziO8W}fRG8)f5NX;Nyo>|fcV{p!!oSJL=3;Stc)#dU3L9=Y;=@yQ>+%W6K1&e9@`?q
zGTD+xl;k^2`iRj%rb#H@+3oeaCaUvEc3v~AHY=O=;IQBcwDpfd>PT+Br@R5Br1j&=
z9ihRIp6a~0!`R43JV4<Z*7Z6uSpeJ<Qhxl+wl85ROS8-l155lWGm1dSw~89e+5GMU
zX*`13dNs*y^743-t=6))dH_=p%cJQj+cKD<^m1VYLa&f9Pxq1Ql2(MfjVpVQcZGFe
zGFteaU>lxb(T-1^NyyKVXLBHzo(<TW6xs20O{kQWmevLfqY5o@?4=o56O<e`g|tZI
zGJ0GZXWqVBZg>OB>CG#T)%&D955Wb(x!v}gLLLW&sh+++8$Lz|P!gX5#9h62QIb<P
z0Jhx$Xz^zS38;xSYPV}^pEE6f7mbjoYNLWv?NBf{H~>Zr?`|NHj&%<|Y%+oWkw!iV
z8CAH#VqvN-%{#mIq{UsU!L_pOvZJ9qFoTNbL$(9myD<TyF7&7TlzpVt4v+fhV>A9M
zXurZcd7z8+)czS6uQcrrI!XiJhewHrE4S{ZXf21t$HXpw)T$Q&3|bN1UfuVz-I7`s
z;fWFMX-M>SYnPBDlUwdpc%GI`|LLk+q(+e#8%Ir<36rnw7e)v0w7$)FZUYFR_iA=9
zkz(0X6}X3ib(XI@OFly34e^P3WTgk#uHDOVkhMUaQ0Fn>n7MJ!!th;UKRj}23A@gE
ziAxxMyvAaZ=L)7AH7zxj&csCJ@?n4Xz2+PZuBT5Gt=B^dk4uu*NJ?BPZ`Q$t$EEH)
zlqy}V8yR#ukr+EP*(PAz9S?W5<8d#iJBwnW$VfdONk~m4ottX}x`5=N_Hnip%O5WP
zGi={T%F8ETUeX*Hra$iO?|(8-DkiZ0Ei5I{7+3RfmAYbo*>}PciV8zEL|e@>kWz0V
z9WtKtQkv!aDAN8m$(_5@usw8UGDjgEgJ;~wZoO!E<#f|}{%iZ^-r1q>n#SV|uD%2C
zGN5*i{%g@)IIX;*qM@q7X5d<{n51WC3Xpx+c**Gqme}s??v4mT<CER3dsS<@t+}YC
zkKr#glKep)UVZv1t%?3~T9fZ+fxbm)p|JW@<`aSglh1H(Xb*>mWw(2$(%6bZI?&u*
zXSQCfVZ%ha;6N!VEB`J~`?O!nl4~{#is8AG@Iv(k4r(Tomc|`F@mfnLplB#3cTgC3
zS9)9mC{VZU<p`BA>Hdei+tT%u)8+fBj^a*t_hvUTHmWx-$w+UQ5XC1zYl5OsnQ7O>
zDWeHl?{YLh0$ji7D3tNsIv%=Pm2UFw#oIP&Zn4ck`&~jz>~E)#mCL|y0r^^>n>`+*
z#cs1aYrCayWfPL*{yw2HzuKE%IWtdLIypSFeE0a+1(vQ^36<nf(N!0!bXGK7=?Kmc
z?~Y~J*NjKf2z~GK04B?R`EoN%I04YN4?rZIPMRg74nSAYK1PnnQ2)ntAiy?QU?hS(
zL5o9z+3AXGA`Z<Vm1nQOsX~g-G8Fu0R&T~RknCvW8`gP@WH0#DDCmDJ(=W^{TrW6c
zH)cPgS>7EA&Sb|gh>wW)1oR%0=gOsxd;Gn(9j)!O5G{jCkn<(fH8iXxqL)+w%}T*o
zaaGZ1N|2W7=+D)<1jBMjNgg%&!^qjO+{t95>k^Wb6xED2YgWka_f)5ztUpnX`BYD~
zvlIzZBnei>XDE8*Hx*&g3X8bs;V19}@4ZPKsxbVf*a;*d;;OWfRE{dVEe!OXkUIrm
zvhGSP+AqEFT;Bj3>Q3{1j&Sg!KulChw{)x~nFYIbNkdD3j)zApHTO`Jf|Nf;@%#hK
zpI@+`e3sSFEkuk3j}k^lxiq3*tXuDr;HnVh&4q!58#UYj0nMfzf*WZ#p%4ebHTBLy
zX)p^aE!sJ_oP_aCx#W&*+xQ!|XteM|?##Tn7T_S5PW)ocQ3?+X-_2D=fD$&oHiccm
zItQS+;zX?Q1U%{l?tcQ<ist{WVS`I}Z#>R7e~I5uR?|J0R5|&!hRC^teDonj=JEEV
zyng^OkGhG!r;t9B#L114p5pL%1CS%kt9*rQd0!jD7pc8UbTipl!><J}(K1-Z;o(#z
z57D)BM%qyuL}s}@uE7gnNrUgsNSucyKX-sJjLh(TGwoDlcW3Rb$KYLo7ndqG7fT0A
z)kifw-@fMC70a=dDr~KGE*InI6&F75a&|)dCbf&2#!G;lXL+SdHX$a=G-vgW2UdaJ
z=b%Ym-)LEPr?YWuzL)`r#?vn!Th#j=NteyZTLk0m2YKHVw{cR|viLHUJpa$Li+~nn
z_50hgi7oQtBJ6y_AmR&F9FSH|)dWB8*#N(eon+Lj2o<Z4t#b;xM2tjO1c_-dSS6hv
zfuk&fLhN@ajHuLYz%L2~9o0d;6IfM6d03R#BfN1eklLSI#y2`)*udB7Xz3|oE*N2%
z8n2~^j6=^B<OrtvTN%r}cNkf21)55`h>1Rm*>GLyw)QO`M>30pQjjme8;-Q=xKME4
z7%+Ib96J*Yemk+NR{v1obc9Fimm1a=o$A(7whFL@k8u`?1_p>LbhLHc5I+=WyJ~V6
zQEYdf3Z>6>o^?IJk2FkY?HeDR!iJEuiuMr48O&l3GZ@b0x}G#D+>D^5v|tUNQl_`d
z#~)7Ry38$G%$E!Ro8kH4PFkM5A2G2=Jd*jPgl-Qqsikf9g~5JlxKU=Gc$Zj3deVGA
zPW8S1NqCcX_#dZ0aAI-^06edn_Ipn8-oc-B19vD&fvDRbK%<A6BBG&|lPWT&aRo~Z
zq=dbjqxT4)3QcdAb3{{MN05!#NB%2_(%57b9f>7k7wDeZU2%WJCme92|C$06Yz_F}
z>-BY14z(wX7N7np4t{%Q=xi715glPnrPf6gJFfT+$u!gd<j;PHQju{k5STyE;8et{
zh<}OYSL#Z;1NJ|@G>?YgP<$b0T`THqWO=Zm)5VvQ=h~-f`|+b0I0>3+Ge8@j95%lx
zEj^v0SHDx^E@i#bYX$QFSRJg1;FFaF|LLoa89-Pt3YCZyTK99~n`smv!28O8cT7%)
z`d1=w6Gnlp<DfH)_{-zfb_@F|zT43}$m?i(VkmRc=I5u-U%B;D{BNtaLWasm-jGD3
z80hGWf%d;ofS(?|i3Du{!bV)&{hB_+`YPg+Nx54FYEIb%uQQT>Yh6XXCNUgZ=`C9W
zN4a=NPlTkw2p7<|^~T^80lB<_w7MfUy7(e}lU0|P&nT#dQm+!F40=|}^~9<T_U?NG
zN++(u4_u`T8t8~;5z&7R-3n(K(z(n|eSgVG0!Ao!t#{&4Sj6w9m$UQpt|e3y3F6T>
zCZC;&pWVLl(<J8P*v_qe^ULPn;5l3Qv(;QuA`yy2Xqz)7sL|!!YQ5gkDti*t5d90m
zR#>6)S_`m55QqXUY}j_H>!I(B{N~d{TFn5aYz&z3WtN%@N`(cY7^@r#FE=d%3o2$)
zNRZi0RF2F|f-mW9O@*s5IS|X@tyyq`DmJA~TD2F0ZVULqKH4%M+c)(|T>f>NQ<S6$
zj<=mLmnD6^CX2`b=xv%oDdZm=gI8Hc5CezrSH_Zqo%S1>&AL@}=dlP4O@vMB!m|g!
zRNz3w=bF{Uoe8JKuY?Z9<dewfx3YQ@TsrM~0Ne$(C?=+>0iS44TWsOf(HEgM%uHZY
zs`Ej7#TJRprqk~)dln~qo$W?t>uI*jZ1xwMWt--;W8Pp(50XcC7`2^|mtmLL`J+5u
z4sM>d?Tpwp_n5qxR$#!@^2A}U?;RLm<aN5=^k-(tN2#LCdB{P!qRo};84&n15&n)J
z0v2cA;*!q+bT0@MbLo9-zv^?hX6>4hC)EW+@?qeX#YmRGuGDw)YjUyvOvm7-4(I{y
zcm$T>eZQ>N@+=VeeBO3h-~2<N{XUp8B<=}2lhTd~i3$DZ5#{tY^8b}hCZYXTHi@im
zr;HT+DNlnP5b~ApP1RTBTNumv#upTsExsIH#*Jxdv;EJ$P`Vj`0jzI}Bw#w5n4iz5
zsH0=GMxL6gmJa(@le=}KfK&vTLV=c+_9rTVC*GpwW;O<R_@@|-3qa{6Vndm@KbaP{
zxCFnYce;byk8-a4ghR_NwUpVNc=#aS_QUjOoL4SsmDCO${Vj`iE=Bra9Jj!9CKB|P
zfsE4pT&Y#CmEGM!#r(%hFC0>_;Ib3C;P@skbN9U01{cD&24t%;*{L;Z8WR4KUXF-X
z?=q%a6y(MlK}tbr)?!h`R2F1X{U&4>|Kq)3V79uOz`K_}+%&r&HIa~7c)d#~N-j!K
zXezb*r<SdJnY{Y3{`lEP_)n?MZ78psMPIBy-F!_I=?G7@-uE1}UnZ$K6hj1F735HD
z%U2yjI&){tX=clS(H#Ts$prgG65vhIO#fX+xULo8g;c`n&XQ&^Ej=uBzpCW;G@a0-
zK|muWz3Y2Zc6Kj~5FDZ<H*sxSh$*OdfCY|Jz~YfQ-=?6lq$Dnk(3iu~hsf;brL>;=
zB<KF{N%MxSim8s5z1uxtY%yRc>{W_ez-CquL=`G6RPD2kyMc^x47iTuk%#7$LDr6A
zTjT=Wg0#fL$+=A+7bVOop`<Hdl}M!O$>Z2zwQI$LMmwAc{^~lxx-gtC8u^779~DNV
z1x=2lH#21Ib^Wf3GH$LDl4w*1(31`jVQ5tR-2XGqGSv|5F-%xBsT}Sa=+goD6A&^g
z5#@SBGnxT;Y;A=`{oskF+uxSNn__Un^R|mY+!fKk5d2lq?{kHG-knGq^oK`Dxpk-E
zMyGiVAUmvZLXy`!oqI=Zr4Zc#4k{eShsjV5-hi$xkXx1?7DcTQxrr#x@vQEC1%B||
zB$Hf?%by<5MRNiU?`u^$@7R2G##N_RppHug2KkdsiF~_&HB0l*^V_!t*Hd0%@&0n-
za4kJ;cOftr^*Hvs8DJC0W-WnB$gE?ZFmMPkFEKB_2f!waHvs7Yzw7j%kEnCnm9eMC
z6j&{BUCAXlZkamZ&Q{=`E$gMsnAxAH7WBTrS$GCAXtGp2-&XQMP*bUrFd>}#w&=>~
zXjeN+t;NyH6~ML-y`IwVs~=u^=QeR}g_9az?u^h6S9RX4mREOKJ`o|>uLF}LI+T6D
zbk9@-$8|84&`xJ&D|FpT`^_8v8W6m@2c5XgfLM};fl@Lj%W;(2K&^!y;#8vwnm@g(
zb3wo3u7S3j*D8njS|008p@9i}KX4ymPtBLodNheTu&&`Qhr}B&smDMX{5bROT5y?t
z<~`I#cT2Fp<O0|hz#3&VsY@>iX+0J-C1KOry5Tk3+jef_HtFO7LHz^qRIlF4p<0s$
z-OWps684xui`89O4uRXM16!6~i+!xAHd@qL353W{6DsC|KEv|;@QVDobx{n^gNig~
zhuq!(>~c_#+*~@0Xa{Y0wmS#wrwm5Ja@BNPlJD#@pAb{;e*_^W03MHWKtE6?PG@0u
zc9E&9o6sp9>nBqvQ70~o6FmHB>plUd?E7}eAHg5JQM)*qIAqu5<4ywX|7r^TwT7JJ
zc1Y~--Z%8PFEXjbxY;MHs&lC3q`WjyDu-na{O|s;H#xEd;@43dOkQd?pM3*P>uPek
zCXXqd`6YM1u49Ffk-ur4Qjs4I1Y1v&)V|DP;y<ZInv;>Uj^r|UjSuqLi-d<y8-Czj
z{D~ZX$F+zOeK_2Rx%y&G&3{5)%C+^xoqt%FqVYc)z-zqk4Pb7K$OPiVrV0m$PUq7v
znR<2UJd;QK>Y>Nna%EENxW9}Vujz4y;j3GopAWt@8wjP^qeK4&2?YlM14@?7&KYEM
zTDtgnSQ?6^v=#x_K+N5B%$7<v2~w&L++g4o(P_>G@Afn(jZjpGoRO)FTU%~-tWrKN
zT^GtMAd;KVC>T!0-z`EhrU&hE2_1>AsDjs|x(N!_<C%_`*BSOVx5knqE6q#GVr(*>
ztkobRqH27qM^f1u?HQ;$j`1ZoPKNFI=v|5GV~z3cbFMkJ6(pr3-FoS&5tgc_Ec_C6
z(fnpR=qO^xdF2y+Nt?kz%6DsQ?KJiLS-yJ-Yd7w;l`YX;&SW!}NljWxgyXy%COvsM
zRmsTb<>@Bk#0MB?C=*w5LSEm6L;_bKMv#Q+-#o-$Wq5=kts?UTt^h4=E4D>E57C9s
ziIrac4&m(cGZYF!ep0th|MrrMPYnO7yI<XTFbi5u9L4a;3IXH&sav<zZ=t5k1dI`Q
z?Qdqm-*#CUTxDEyy-r&<>$G`5pf}$mtqn)PO;(pscs76`1CxM(QbK#v0c5!+L#Ue~
zrhQuUWTF!3x*vW-9!(ZESK^V<i&Tw-%50I-wHZ-qTy_W;3<LNyXy8o<Be#DzlJO!Y
zG&VJTjErtOt8V8{u;Sk=(QrI{f#iz`Koa2&x3Aol^zL?;U@SeeLwXRBaDn8r<2vIE
zZWweqt7NbsCe(8n_}rumZ1GmJw^r7-^F7}Ml|z#e4RiN-@5nI+N<d!(T1}@ndt>hD
zv~N>M8eUU-52H=sEyWwf1f$U9ut(LxEZ}>z)vY?*I^aJ7J&=iyjh<E71iBTi3q+El
z+*9;?AKjZf4>*x9b(|Gg0zY58TeE7Rs<Z^IuyG*8DLog6B03=+7`5^-y>(hb7(HLj
zk7?=UQ?{Mm?wzgO&gbziep_f-=U=~+JYzrHsZ4$2cv{~^baLBp-*$QvD!NU?_}+Ij
z<ud8BBYQN#t*JvyC$zrjvCsaf4P)i&7|%Y{^arof+b+El|86k45x@Lo{eIoCW2HX;
z*eBViq;rgV+Iokp-+g(~g@7I;JYByaFv<cyfH&0C`ZC`*J>OMIXEGRZG|74In(7eQ
zN2!^;=Hd@$Dn7fv-Kq|?`FZ;#as$_28XB8<9vZzMq$4(up5UydmxA$a)#a~UVqdm<
zs<z{IftZ_6l*z_Vg3EqB0fJhCs#S<P*b{g~r|Mphh#+R$rvV1vnF_s4buqEflOc2Y
zuTQ%Seiq4eF95S=TYix5eH@PbU4SUgn2VidJ{<m()9blLAjJi^@pM!zMt}ai@Qa=^
z`FtON(Lb<Ut!H=DXk6+;<OT%~5C@X%vUp21=HI;BfR;<Y7Es*(c!4oC`8w*d@g*f`
zheD%1?*R$HZ*n&oe5sI%3R9LgUR>{(_K3al^>R5k?35BJK)^B-p7UbalmWuBxhl1h
z<;<=&?)fDqc@<?sFR42BszABYD%}`lIB3H$9IFO(Ba_lJfECVMa%|oD+%zk>O#v0~
ztRp@WE*x8%?sHxZU0Bsd!-P%Am|DU2P&f7(CLy;8c2pH#A>DPaoidT0-lN#%sZm%2
zMMle_A~nVp+v0j%V8HCD?6jMms;fsInPU5T7_k1GuIqlW*;rlSFMF?<9-?_|fyux}
z#l`kjp0SLb_TRe6nFP7ZhR@lXe_9}*hle+PqB5kid0q?`c%1ImTpDGt@Ez^iT$Rk3
zi7`@SWhE0*6d6A5b!fYQWH`^7;0#6Q&e@2j@gIM<R|mmDz~}w)R@AW5{npXw>ebz$
zwxLWt4)0^dX(#-R=1>MQ7GYE_MZqIa4M$q~Xm>0E%IhmPtK=X?sIQrIg+<as<{?jM
zlb!3%vh;eL)S)ZyEPbh72Q@YATQl#rZB66(NowXC$-jn5xa00EGuHv&?QCz>9hh&<
zo#af9XnC_Rtuq>mM4Tk}^jkIUr<x|eGNZOe-P4)2@qfC`8tYm@|FTU<*Eihyz>2QD
zBY;jtf2x^UTZPc33W@q1EEwPH?Md(M5L&x)xslCBWW5wg^KQC8T%+bNk+NW><+~g%
zm!KnJ=VTkvWag!p1=WjUpk5a)Jw@S}{Q>t&z`5_7IFj^DK4w8_kutLw0qK$vL%lSI
z&<A!;*)BdAsfwJpU}d`dSeFC%?~GpKADeg&gb~^L2Y*H#ZeLZVL>U?mo=dXn>Rfm)
zJwCI7YE04#u2=dRHc?0Lcx8!1_M%!Bsrc9N;`I*wt3&RN=6$i&Pe-HM8VQ3VrEzO=
zA=Rc3&W^;KAir4&z8nD^<faININEQ+K~aO=V25-UWypE{I~24E8t;RqFPqSgWTVP5
zWz3~;4qzq)^HKX$JB;kTQTcy>y3KSBo|ya{2IHCo2?94psRqGE=us&f@PzG;r;`Hx
zlF)2tQ5`rTR4DL3j}(uqy(OPB{^ehg>{IsWwLRZm{SjQ>30|yaYRI3`(Zj&{0|n`W
z&UYwwZT>X*#Zh4iGg`=J_Ux7XjHwG2&(Crg#8#b~DxZchh<0;X1Qu6!fZU{6B@2(+
zwSxS!(2oM1t-K_(2_n83#7A50K&7zHVobH<+s}D_LLAn=E%mFg?8pqKwm=x?6Ofds
znJ_Et`*R5=`0b^eRV1*|x3<o=@KIp~R_Z;lXnK|47HEbWBO@_M@XMLZw04@lMjuTY
zM33U{!?21ZWpK!AJH;gurTILqY{aN)&oT}({Rz1UfFtA8b_pUM^;q@86L(-#%_PEb
zBzOm`d7Tn%ILaEu9RmVEju;_kkM^fnxBk_j>h9OJ=>3=dVbvX8r#%^uyEV5;NAv}j
zgB}PF-n{`;%47!X*r0<{gk9%N3a>n#8;w1ck<Z&xUTlsW_en#^Nq!90os`xiuK2Hh
z6}Diubpv60pwSLzv(fVag=Qaf_q-Be{j@JJ;yo)!*y|G}z3h%)h<%4eqhF<ijB$X=
zIElX_g|5%^2tKRbipcnj6SG9zan0#Oki<l?;9U({Y-=+R%CqA178h!Uc-V?~_s$eh
z%}e2N2$3U<<-)@fzU_6_{oxzg%J=KE|9;2^)?$bkqLqTvO`9c)9ftc_4G7r9D(lfV
z4sq;Wr&bb?STAf34zU6FWi1sRd_t%DttYdhogNJz_ubDd>|S+RCwM+XdcyPkE$)R(
zIQveSLp6lw6g80R^p{-V>RBiql#TnS4RWx%^maP5?+<90o7p&8mA3&<Y~KysaGKAp
z_gcYWWB8(-24BKe)YQT<CmuL<;)K6&#_cC6RlA@(-W*Z-JYLtfw|LyONfb{x8;OX^
zI3GM)p~D_<_l7^kF?}P6He)|A<e5lItc9Z~iXvr_Xx2@hZ;GjOzvUnYY1wto?Ty?+
z*3s{|46Uwr1$jl)X0i<OWg*#{e(7;fw3);_G1NYdLULTK&*}=lpgq9WnuZSKJnNeU
zX7NO*0c0%v#(bg&oc*F)id{8Ef3{(QzkUy+fp>)JK;pfQJGmy!#A$^-%7SisdJGJR
ze*^!cIQ?+`!|YpM&;ai=bz<)&0C%7sHY#t75@>S3WHq<v=k};|K3Gm6wd2l6OeEfT
zTX){3F$~9EwWch~+p6)LpkQIt(La~R%d_7Z4%jPi*h5=`Cuw7Ga7fhwrdkuvSaj?R
zsiRxJT*bxP9wJy%8YFmquk`<#$V<Dl?VdsG>_}=&yqM|cYu^=Sy(CUc*QS8T4i_ib
z-=v_@yP(<WQ*{CLZK_D}#@Z!pfr(VL!HQm2`=belN|TiKG3ztf2=?-`RV9f0%$3H$
z0WhO=JYiKE0|?TjkM_EJFFVEjv68;UQ*V>a4D9@iB;D(KCd)5KJm$Jd<E|5DNiJ%-
zUOX$FNbuAl%GTNpH;t^>prX?>i`SZXkX`e%^zwDqD$LdvA7u_X#O<d}M(fg3+Wk)Q
zNK?KQ#Uxk4m7BN`=0_}+UIFO8wG9==)jSThB}6M7S@J1$m&+|9VGvLI!%M&Kl6-yY
z$EE#G(x8s8w35bFoEC<kr<&fTuLahtCV0helY1e&Sf!=a-N@-3OA!dttd6wnYNaeK
zn-f(sSPL>CcT82rW}d=Ua|NVUl~aBjPFNl(?z|KVn~V>CcI>e&H%|4{+8K+^!{n!<
zIR4Wc6@^YcJXP1Nqgri)8_*RbI=1)%Jsj8Dy62{-l!}5`&3C}6b)xT6*KxkiSIM^d
zogFEGR?b_;(`0`58uo0g+l+A05+{0^`NLWsQp6n>hoOC&2P+CQgTqBlz=2{-bV~~;
z4wV+3bH?f?LhZ$$SK>fJQz^x?mb6@yIAK{$YbUsV(U|5tAc)pTBrN#RBZzuQ?K*VF
zt>599IYyGHCit0QGbniUJ_9m=K^;ijylht15Q!Yy4QV-NgNm2U+ST&5k-XyEbw07Z
z=606#rSrg5>_kJ$2myI<|L>speGAj`C)BO+NyBt6xz8}Z>e0mbwjO(z_P-CMFmOJs
z@*KFG!sDiR%`%v5>%}4vp0SRU4BIHle(`%^D^0r^I<IZJ$(1^ZXeNI<_6zMpZH!OK
zG95{B!NriU-{n@k9jyMPv0(Qq6lk>$x4`MMXyAZ?$s%r-TeJLJeN|9vnK+TiOvJS1
z%SrCXE_phq?SPUxH+k4x<(#S0Rz>^3qpeFs`Bei8aXQ)*=KM>L@{W&~U{TOD<Wi8N
z48<Q0@x=rHPLmF|y#$@tvxFwkW1wPB)OtY=r9vY?T#0>Zzh=z(5}ld`9uK4D63cs=
zMt;O(a7->Dga@E986auRl4Ny=kQE3i7Kj@~SSTWZjgaMY;$dw>+z;trLu>X2A-z|7
z$mmXym?#`1(I(Pz1J3_OaS63J9y%eDcJ_;ElmDdX@8=+s6?ffQ4Pbg<LK}@!Fv9L<
zymTq3Q@`lg)Mby--;}^dZf#Nh<`zh_H`y(nS>hz%L50m3rEngEzN1aS)kv;pTfw>?
z5n?rhT~PR$Z;N69e*tx{fM>ry8NndYD#i&~!*H?2Ks9+b9;DqhGoQr|(~Nb81}RXC
z__5c1FbZ4M2Udtes<>fF`qbV-Xql*z)XsjwA$BVtqYt0Ly%lN3f;5mU#(b<1JGw<e
z^KysJ>5kjO$!11(RKE&U2=WfuW6Sq<yrv|QL;qP(atjrm;Id<|!4_B0@Sku>ZTSnF
z9lfZFrqq(iG3!aRov-L+SoH#i5qHl|V`0d!5BZ&9yd4YBKA1ZqFw?8m4G;-%gRKtk
zj)+7GtyaNoGkWj)HNP5@sEz=WhxN9`kD0gY{Bb!Nt1kj;e_2`yvI3YQNuyBZaNZh^
zx5Txa5V%Ae0G!`wH2XSMj2Qo<hpVx%#OSJ0CH53Wl!wQq(;c)`_$t*gbJ!H8hy!a%
z=Bm3x%w3Lc<$AWu>JbJ$`$Sczp7%uvxr!4%rzpESvRpVU3C9Z(l&x-R<7%dN4_I&d
zRT%Aox~1bqQ+cINB0uo%*z;*J^TB@~nE6Y;jUf@5_T(OP#IejfkoJiL4~k)6N-N;}
z^!S~rv(jKy<zptdws7*auzDvail=ChAMJWc9CW1BLjNEU%yp&k{fVO|d1b!#^ENWS
zFHil8!OjK{gUsU4x*Z6KS|35N7hVBOU{K%FE&^BvXD8ilJ%_MY%e{I23{unQyel;Q
z)o3O6^b#RGKVj9xc}!pYaDfy$oMhw2(C6F$%x*UsdY(^k*ln|3wgSWG^d7H%Mt)S3
z{t|S+>$oHF6x6Fnu_NhQad8u_IR*oW#_}$ov>1~3S6$;DdS@Q{86kg#y<PBL2^q0F
z*)}I)Py=ga8lebuNp?ACo>UFmj?dy7K5p^j?zXn>2Itdg$Fa?N*0sR&a`G5<E;(yl
zjC1dgqSiw45y*I?EK2pLv+#=spJtZHwvWvnO?lU%Wj>@RmVTGeR#=7?XW9>IFKadg
z*4;Ya+wIN5F2^Uhs(GBo3y3R2W36Rb!fue}buixk(8QVD3;)yQ_(qtM+}c>PdC1G&
z0(*LO*ieX{c{_(T($8_Hy!uL7U=HCc%DlOCwqkOBPs-hH!AtRW-1RXbBYx>nsAIAw
z=^B3N>aPX7v-K^oZNGH6>)4LY@La$Wajf9sdk2EpEsI2ov-9yeYdQ4k&lBFs7#oBM
z7H6=C@3$x&VfI$f$zo&udV!}F>LB8Il|9G&w8rWxNk+^ZlfQyrSfkf8@Y$L&W}|TJ
z!P(@Obgb9!Rf;@^6+OLdWVM-f_YJ<hoA19`m~F^G#!d)<M{}uoR1ZGPTHn{|k$yHT
zQc@P^a~~xlb9OXhblPss&4vuV{H7$kwc3~;UDt>``^#6tyU-iMfr;OG%lzh6UFm3a
zCWwm1+A3W>MaC+H^<EO!7$N)nZzmPH`|VKZyUEy~>RBH41pP|4O?OanU$L3}>_?(P
z$ZzSUbR~YCvV@<|@cOiL@<>NZA`wadq0BG&>eQ_rR*Rh#(qwz1cyutVNF)wJ2Yj|Q
z&pUff)Q6Ft<x}INVx+fE6=##nU~*Fj9g7g!AwB((fNS{pqO#U0!YSya$Wyq+s-oEh
zst%2xX{j*!An;e3`fUP+PJ9U$r_(1ITmI#Y*gx4!@yFp3^zaM5z`&(R;8SE+g9H~l
zpgZlS6elnuH2Q_%HXg@uU(+l5sou3phZxpFGBPj8a80^>WH)6!Q84Bj*Mlp_dapV)
zwFFCAXR!2ZoA+wQWtL@3E=>3`-Mt`;bAf0oVgec@YgB9kvAqb(q?MLL<j$r|E@?<h
z2Pf1)kSC`h-Vmw>B9XoOk-%%ioNN_$9^x-F1Hf4O#Yej0=oBClBVvA@dJ#0<JILC6
zeSBML|8!p#bL_K4Odl7g->VbRuIk^UOkGHK(j+}L@7C_J(e`Ym<+kFP_bEiNLEXVk
z0ww|3P5wUD&UUZMgZ=J7`qOo`p6==Wcs4hS+vzy_M!f&m11SB^V0en-0>0;3P1fm%
znn?z8d>@g6K7kS(jMZ5__k)mnKEP@w*_vAcGvKU-!wQ$SAT+2E>kw9}pKa!_v!cvk
z+Z?oxgmC@^NlEDC=K8}BSlB11U*b<c`KRUhV_e`VPv?IL8-*&K4_odA(`Ic#>4!Gg
zSZ|k^O0+VHTANH7nrpjIeRC+XJ`Il7SM-mbxShOM2WzKTSGzBAA;WqDHw*=Xp%#p^
z<N>=ZkYJOvNL5oi(ir5%uC~-lu4uL71Wysl9g+{k*hI3Yg#6+1xq%ArfzZDn@E7>C
zypDLT7wYDm{PKIP7WT<Q->dNsV!kgWOXdng%S3q%{5;Vpdr1(o#!47$RIS(EK2g9f
zt=HC4URg}+^SL=g46Se4(}+i5R9Gt<B89-Y_AUo_J6E;Bkne#RTXSG8>4oue51zs;
zasAx|Fx1O8tLCHSfrecjR5$aM3lDy1<FU`9++w-6>`{XVgahOD#_4!PFGcS7Yu^S}
zY{_^q=ntjonMKyG?;ir@t^B9>6NSVjdc)yq6m}w54VFG?$ZvA6c6~>xQs;PjJ{q~=
z#JR~?X`>KWV;99(ezu_8;-->s%F1Gy%>|bSf!RrE$ilo{jfDXaTt~0#G(){X>E6s{
zT{)`--yt9+6y46TI}{<<<;N1R@E*@FCmAyMt_)CpZpOhCLjClzCEvW)Z-ZxPKi-fV
zYC=$|%WBUPIyrZTCv~A?Rb_X~;oD$IA=(f>6A{-+qHo+;;}Uo7d+#RyzWKO3JNwnt
z;w2R1!E?6p2H$p{4|jvaWE6A%Cy~%m{rTy#ym~;K3F8}m>%Ae(pTsae&KIjci?;{`
z%xL7!r_=($hV*rIVY=Yy?Q938b~rx<m#cjPUd{(q8g9hL@+;Y|9%u{Zn2EC}WdHuy
zu+;Vac(Rx%3=R5J^0}VT^#q-A@$WU5F0=Jgj_AFhCb{UhGlFOc#~Vcl`4M9<b-Y<}
z*(Ba>vMARAN^TcI?1z~^6BO%69ZeHOb&1c(Dwc40a^&_AAD6qh!!Vl;O9~p=B&GOV
zc0A*eCc%B`)Vb-7Wd^%#4(0X{)}`_U=Y%G%N3-FB&%dv*o}0xAo;E==+bsr#pEh;=
z@rfL%?(moU8krXX&O&8AWk-<otFeSbX8SK$rxo?1(9`=dn4AX_0RMJFjx-doEBf(_
zBXe>DkG`O>hzr96UUG(QBx)BSyhQJ}f$Km|ON?@2d+c*yM!a7z)MB~ntT^trYEgAQ
zKn94O)NOnU8&D8Xwz@?6Zs;<}v@^8eKm6EtbQ2X9!(1VwBWCbYh1$DS<SUb0I#%kv
za5w(9B|$JQ-SsE*{6gRN2$J?qoRupP7tReYvX8+}U7~n%jo3<XTP4SX`oEpXz{K^1
zQG3X&GXg_QeizApD1c#Os>yGqLDm0Al<dHwUKA2-_?ZgE?em{N=EVeFuUi-uU$6&*
z+>e?2W%~FcwjAZBsEp9;^$y5S?20>S)F+pgDOK0PtvymfE&3*j6`~+QwOJMz1~5R6
zj_QI)@`-wpMUj1=u-(`-(bcR<e<>b!_M5N|Q#Hy5_)j%ibjStGIpCva-d%O$U|jyj
zeHao-p-wk6EBO9j%oj{QG|re4x{FPocHf+=sL6lwu>>YxZ8|v0j32?`Y5dhg12koS
zmiQyow=zFcEJGZQs%8dvV~1mVluilQm<>8E)<J-Q)7c@vUun;f)5D9<High`!5@dw
z?;we&dMeCQ?@KE(Zb9}tX61Z%1BtJuKA65?i1-PDBDg6S*A~>4+0yLV;8DUW&Co5X
zeca6KgNr9r^7rkU?CXd8lSvbEj99VYSYdybGNL=r`@9rPsDd)-6o$S<Ihk&U;9#CH
zvN$y6On^8vR>3|%m7+ol$eM@tb0eIQbSO<6;_t}2^C73%%>Cp!{uAxHd$1Vn7ReQh
z9K!xw&#Ia;eudFTr>+6+-2OK|5^`Ns1rvdF=JH#_lDC|RT*FOQ3igOFaSf@CT_ogR
z+~3Jx=In>GW%;z+_EZNOCXUx}xZ~LNet>D^>-~ufU*;$KhO)Wygl{??I}Z7Rw*B)l
zhXrom>1wV=uM$dbmT85=YJ}UwKhpi6O1(C}SCTSov{&E)2v!ljtJa1j(0UJbzx+8Y
zKxAQ4c*Sw!=6{(`z*N5c)h7m&RF~kG`13_h;Gqa-a^KJpmfBd83Ea<>%ELE&x;1MU
zb(wsklG~>oEoXZMwi|yFkej?-kByoa!*$x|v5XGG<`?YEef6Erb<<os`0(^02c2~~
z@6{M<@HLFUSH#b6Jh$8byq>(%OG^&D`}PsnTT@4Cbz(wi3{Kg~M)ayR*OWD`%Yb~7
z(gY;TaMe#8XIV~Tv9@m~xi8i(MxhR-F5X;a)!_a52{xCPEd;Zmk^9Br)%Ve70_CO2
zjq%6PLZJmZCa#o^mt|%}Tk(`VXrX5(V1<fN!079Pt&3mk=+j94=5<d)Yrc&PZfA@#
zhFB^p*T)YG8u4=XtRemuwKi}zN><{Yw5ecuxpeqa`-sbfQ#+90*Lx83Yy)UkSv))z
z(9udHPo-^Zw`n%zOKnJ{*4N!76s7EQqLhh#n@msX9wV4=zfY}Oyr{kOn7eT9$L7Hv
z3FbfTLVcXA*mTo`mCu66beplGJ_W@(*V74qQzQh}hPO5V$5F23GSN~r8k$nYD_%{1
zU^2Y7L7(4ugp-&l4c`l(xqXo$KUyyg7hH%0BR&yF^Nnju_(HSx%uloO7{UlAzMHF8
zuWnFY{_KRrH?NZX4GaSF1*_u#?TPgV^K=PubcIz}E**=+=XW3}ld8W33_Np!DAW_G
zKIJoj@w5?bc7(>FCLs}O37GEvtdL&(<8VHu#1cY5juaW}$TFrsozc|7|HrQsi9aOI
zy=}!G<N-|>g?|uOT??tH7heqM-7atuEil3kW*wFa+83-K5CQ%RkA8g8R;8JLw5^s6
z%CYo1M&sJ<&d#C?!R`kv<S@%)3pOP*K-4k{=psm?*{W&Ka&aV>gGz17mf$;nKCUpA
z!<!5;N}$<5L(<UnB{OBwwJWPdzsMv@qDB><Dns_<(SDd~ofd&63W1FKAo7WI3G5ae
z2BN2c5?(&$a9P2_2He8B5H6GzX1S@eE5bqRV;l!f7^$CK%v#K4!fVxhbn|2E_(rB$
zqb%+Q>FFNnkXHZM%+Ij<C28r8yyctPm1eA`Bc_AeU_QP8k|5tajWo;Wc4;e&>C>59
z&3xH$5-L_S3|2R=6ydknN!I}(aGcjQbu7ksaqVpVD=oxf9N)oIZc7HMzGE%BIjzvd
z8R8bQM>M>QUQ-3Fk{NaE9(5L`z0(crd9Di#EU$TB9voN82@81bCzF<b*Fr$kPKPSp
zPv<}1x+PVQD%+gtBMyoa+RrH1JU+i!vVy71-0#5isMz8$Xlp^>LK$ZH_JakEaPr|O
zU$e<!Z1&v(6ztE5H-IK!s&u7^oqABZyRA*L#)H#o8B_`{za>zz0D$$RI=vc=R90Z0
znRNRiv9Q0MrQVE-d9(-uk<#&t-&gZU8eY$anU^=$2}m0HnZHGw>S|izc3rIUcW1wg
zJ8fT&uT0uBSd~>(e}@q+nbl))=0n#zxSEi8qbhxeW)9?yWOsF)$sf>~E$FbkC7XgY
zP2@RS6`YNqGp4NNvYE9rHRbbpd%-cy;wee3w@OuY-qTp#g2Bt<!u{}hm3_l{t!km}
z@yO+fbq<Rp?((dH<%#LB8?MpfXLgI&OU2HkM%U^s2}XXdldIq1EN6PUJlq4>)S1k0
zd||Yy19{<=D&fGO`y>&1pXU*hQ#%Ct90+GD?5Y4bwv!pTJ1S8}bM02nKzd%5T<}kn
z<`QR$k49Q8eH_J3{?qqt=xZ(<8(XlWnosy4gN+!s;Y}SDno5#|;;stwhjxEOvQ_u%
z=$|2iN*}-~E74DNWRo8<%E%4~(NV-}d51n(tv87(E2&a-%C%aV6z-z8SKfs!$tGWk
z$0yN{BOJIg>-LT>c#M--uIJH)h*{#Is_YgjCpn~n=IM*`$4ONOZ0Fn<2O3YPRs;JQ
zYH?Ch)*cllM3Ph%A!soaHGE@|alcID8<qBjvrtpCW`_gTKms4dk!AuucPpBFxAAAX
zJmT8)j$bFH*K%-$B6mF!u6#nwD@my=%^35^QXxLm;>%sJ%U0=f$802I%h^)mQWA+I
zvpt$q9=>xoe>qFawZ*2bB&j85<Ot@9&6aUE;Zl%rC;N=YEpl+Ah85&7K=7L@WI3xB
z-iT*xxm6!gl(HG+R=vtDsriotj!o_zYbGxJ7dLFTD&4oshacZgpkj-5)-mQ2JFX#|
zou!45D+yU(oe5kJiK}ZC_mq`1hz}`!`aZ>1tJzM+!6-8b7urj$Q2FY5gPy*D)9JaS
z^*An8$$n+&P?=$F%9K3Xk-%By|Gs?AO2U)ocr|)JH1uY}DYvU>7u8^cFB&vyUP?(i
z$1A*hO1`hfri!A!pQF9p$gYNz*<TTXTu>T_aRX)z2KSR!ACsLIhqnU3#W)$%Vpg+&
zKSEVBcND9j>A4-17?0BX)zaLm7wY@d7y8nC(xHe}Ur<TOB6C;iU0w$CtrhhmnZmkh
zUVyT)qGV~<r-Npbu#$Wb=oRW(c4xnsPFW=Q<B{a`@q8BhaG*0cytEo#(dx4!ExY<T
z4@HzEB}h;s{&gk_RkMB*tB|mEikanM9I?Y3L*hvZ4pNvr=VlsQQhT9Rx$mmKPdxIV
z_~TP)Lj|$cpOTyukI6uU@rc7f>&1<j_R?Ii5ror(WvZS5r@_XBqZ%I{{GZ{8Q-=a3
zyD3kCE6=u7ySlS0Sif8Xx)i^uOGdWX^$!L+zK|(R*<PUcU-cZXGC!Kk2r6t?cGM3R
z!La@<)3VU`Os8Y9PB?`<WrBc|f70$K@~96x!J#V!_5=kDJ>9Ck*N<V~%+ns#l~zA?
z?Lkxx>qA%O>$@?dF|nT4TE`W~43|$u-4xdoy0o}uODLR+!^e@X=pNOlUgM=lP^s<}
z?CEMlKN!YyN{WSB5N!V<IsgCBbe2JJbln#2!QGu;A;Fyh3GO7gyA1BZ9m3!Q_h12n
zySqCCcXxujJACurs{4Oxs`^LwK4-7Bo;6>W#<8zy_VXG?<C^%|WiT%BKvfee9$!*q
zJcM?Y6_VXW4i17Z_dxU^12Wf<YDZDrNUYl)o)Rs5*0N!MYls6ySz+l;RY6?+=}5jy
z8b@E-@=#B_E0}S#-}x^01pZ{tP91?ow3sg<FGemC)yeoRAoW}3|6Ks(bYK@2K=HAv
z8X-NiW>#~l^{SDvqzc~nlA?v)+_-NO7G@m(9!Q>AN--9Zu@ba0ZdaaR{OMoA?C8I$
z!H!zR9VHVtlvjryGN90ZUaZbAV`ZMLaQ};|T4l`5$vT#0wpxI6D|#QG1?~SM!(+cT
z8+up|QjM=uiKMxN?V(=4c$2-rEPo>?u6&7nHBUNo9wikPE=-2avW0rW)H_Mo>H#);
zsF;bPO3nvc-o48^CkA}5*GON@y8D3XHe^<zTYtC<9p{9AD3=hB4v_bbrwP+=VJ1_!
zZ-8QXGFUs!963qP5DFdO#6D<x%$Hfa1G8&w#SfouI2EtHqttl%-gY_zmt6*?Ay#3R
zT(0B*jsFSS9irkcG?WUDq_O)1%@lmiQPG&eo)P)ar~|X_&yKJS59dS(0RvXujZVcg
zABT_?IUwu%I`zp`wth3|#h>Ga*T`Gss?Qe=OiqOuLbaI-Xn7*JDdCr}ZBH(;gbal!
z7*^j<U@8eaFFDOduqZ7c*i?mXK=ye?VA9tj7A+3?q2?;C+idca*_w#6ksIfCY4+>4
zYdiJ3%wscz-GB{7DJoI)#~#j=yi^M|J=kO`Jp9to066Hd^`NJf@x3tl{_(8O{l?@N
zBH0f09?G`{m^8cBcfxIkI1FO54C?b$?a^Lc>G^P-|0)5k6;Qv{wBA71)}5$oVZ2{^
zPN25TU;6qjMlh6!f-a)Fb!hV0flGBVS+tqST@<`?tgTR&@bp4e+e6?!#r3HdYN@pM
z!AELm#oveQ{-7X9CBJa?$)vr7aFIAZx8{BfToMvl1$!;fxyna&c1hrdrW$1*k^EU4
zfK~HV7|Ga$LYwKDFT<)H5%ZX2O4Kh}v8H~`u>lu<X*+Pn#6nzfg++)Z^}Cdjfj<mY
zRh#ILaJr*u1-%}MzHe5F`Cp>;f)Y>R@E0+KE`@$PXa}sCY=pCr&~zths47WHlCS#A
zf1HxhRT?)>pY+SuJ#S3pW7><RpIE)k3pq41N9V&dx-7Fb%H*rwV8zr8Ox+Fqqx~|U
zK&W!rXkAv!(W>SacETQf>+MeZ8(f)ySLiDL&Y`JtPCbbmVBwZA0gJZzYW3?gSbh+W
zVp1^HuUeR>F~^*2$WQkrf4QF?mp5(j7*>zl^I>hVVX*b>y*;oiz_Ix!jLob)Rj74$
zz81&TS*RuZPJ))*qWsNX`~3PhOfOCNl;Hv#0<v~={CT*nEP)U)h6dzcL}#D64}#J<
zs`-9#1UAM)U;Tmb2|{Fc<hnOyXNWzIwD^^{6(2azUa}dsBDs%p@Us9B5DTycOZI6N
zNg=>)##n#H?-UbYBej2{Q#efhSnKp^Gb@wav#mW5N_v_P9aymBQFPYI(VTD-)go}1
zWWZ~}orab+6Od;W*BC91QFEUcQmU#%Ejtivj;t=l#Xmw<!odF5mJ}dV!tAMdB82Cv
z`Ju7>rQv`l5To=t()H~&AT?sZtWYq6UG2!2qY4gz8{Mc=mnuL9=m!-Jpf$QrHvP7|
zr##{&!X*<WTOOFG6#0AIkC+BeDU-h(F5(PW6T?Gza`-yGGT38hQH2U+E{UX!K-~JB
z)%b*yYswE8I}?lfPV0O##X-Svjl*e<l6Gd_8!OWQxFKgHAzN)r@c8)Nac&u3b>6R8
ze98jS@>7}7Z6;fC5LSn62^|8sKL71`oq?fDgA`5J%u%3GMUIX>mKgWG07W>p{}DFy
zDF5hDNt5%49mx`gzscE@cl2qLyOO9=gP$~aI!C6pP=#weaMuuq=xKz}w{Wa`g<Hh<
zwxkF>%j&g>A+MC2_kC>~PBy7IwcE;Iz52LfQbqL7C3~Gti5Z3Pd$!`zVtjC22}@mu
zOaODO%z$R|lhClq<rYe(){B17slJX^H;ui+3Q}3Am9MCd)jEszikN+jdI$UDpX&-=
zv|L(!-Lirb5(H=7T%EgjRgg#*Da7DX&yDw*gkE)g(#x1y(YP4dd?zRW4Wo|d?C<JV
zt`J)(3`+@@)<0-iuEYU0Y8&qlZQ!2708K6!LZyKzij6Z{G_(ZA-F;U$#UiD18(z0i
z{LYIvpPGOyjFmLU2Z>eWEHkxiA~(O+g(4rOo0C{!J0F|!TQ~=PTSTjNIaAk$6L>t$
zc8!u{bW4s6BbC{3Rtf|3dn@4*P@!r-K4H@>(oKSbz|G8omVh@&5si5TSg)7sDFA9N
z7*Dks1_f^fW|(}zvG^?xHe$6##NEBuHTZuPK$?MK=ugH9Q$(F{1=B3Bx+Swn_-x8@
z;l|!_A<eia#?n@Ekh)DAM|qC5%Nz^C^UaS7)KKaC36^*|qjMoR_eoZ^z%5qK=%@~X
z6^4{%j+516ipM<;GEpC%-11Mu#omH4+w%Z-0Enm)(-`R!x7=@DH5*B4Hy{b@mdk=m
znzvBcFIh9guw!%3V6*uCQsN$(*16(s;p$Y+4?x$Zub-)w_O&zUl82SkG0U!={JKjA
zRAnKf!r1pQR<yn++EK0Sgqj`x9!<|3(LtTBN5R#Dm$i2587z$(Fl*GrjDY$AXEQWb
z<xII$bdEN12)g;njdq^g<{I*pc-9|*cGPoWcF@ht%p7TCY#ekqt6^}0jhj`*&+nii
zLe}qW-+@D!i&H?<vseS0OgCFA?J`*{7qE)fiLU`ajw)Mz|0e?c*!nL{2FWVO5HSYc
zD;H{p?$DEaR6y=<JJXl`_6^%3=X;j)3>|=O%zs|*Zhd^~+GOHM>+}}8{eI{$iowMr
z`VilkPIXsw&GU#kmCvpG&__EtGE3A$B}(|7h!xr`V~GvzAp_`)ZDKFj5T2n40yqSI
z@0PEA#fCs%s;GQJ6|&3jVQb&4CqmjAbHmDe49Tn$<7gEQ22r`jltQKuj#919jYVh9
zUJ*m}TRcfEj82T^LmPh=E}#xlxq-K=*U53!IVa%oKh88lAJEbSm$H=R=4I_|qX=XM
zR3ON2k`(6fUh-`!ycV1bgk~F0MT&?|g=~wh%~^u%RvC%ND7=o@eR_t_Hc!i1Uyq%$
ziND?t4fE`0^|kVwjce7U)!WK!_xbTEwbH8uPb6H0XyW68`5+h<!{ZI<jv(Aj=K&YS
zf}9~xP|;a7YDm=({5-+^n&*`nS*@m$l3W@$8P-PIrDJ4Mu1>?;^&quIp_Zo&^fGu<
z&KF+Z?3lim)TtTzxZ3`L#VVZ`UftI(xo^7CBvzuL6@rt3Ng#bdQ*ktZGQIr`R`@qg
zt)`wHbq4iianU3s3<wvz&O)$?cNi%L-#^@u5hAnxi*z(M#a|Mz<tUBLBRl>KM$cy(
z?%A(5t$?3d>PRcwu`@31Zy0}ma=AYAHE=zkCH&l~#tR|nD%DJ{PeHkR5uvr>qAAN7
zbhrA^Z(?WaG?d5bHRiTbU)S8Y6?R}$HJXyvDYZVCL!zR5ce-i;e(^8lba;zk6Ej=M
z4j?EQlBVZzVI^Cx*N0rnpTB2;i-;&TIbC7`egYo}Ovz{47{XCq-0n9u((`76(BL4t
z9pM#|(@dkI*~dP7F80(j^qA?cZ2<Yu=lXIosq{QQ0^(yOEoJeKiz%vle<FRXQUZFY
zEoOvHXGOy4%y&<j6VmDx%uQ{CoZr<^@Yai{Q<rzBATq;zb@v|UX88MsrMs`zYM!!{
zhpf~8rvr&>f|XW4Pj}JL{S}Fci}xLO+p7|Va%VbyCSo~pOZ`_?hrVxzvGbgtYshOg
z)zn27pFEr*w;e!@pnGIRlNLYfvMmpzpHV1=6GjRzFNyIw@_e`dkZ3wPg?&L-wTXfd
z4V>E0$8UVPbP(PLc>MP$5TOSBb&9^ZkBK0sL(B&FBBQLfLyW7_Hj-pH)UKGjM`y#1
zt+><YP0LjZlg~BQpE)N$xj`Hvoz6&*3BONf-;2zH;8apgWH@Dd)Ee5`aKyiSEcu{$
z1}MV?P{EyQ=q;&079%XT*G}6_D>1aiUjQ2<f;J|zAu*qvwhaLm_#f36YQp%ZYR$ve
zX6i)|H0AD+4Hq?WSrV1+PZu)>OqrA9qJcG1?n<it83w9)-~+NEQEqE%aLS7`{P2fk
za5ASfREP*dP($5|yTr<AP`Pb2vfU=7Y>N7}wmuTX;Hc#W9!c;wr(bmt=(LHC`oPwi
zS>D*#f)u=$`dfu&sh*qAMpI~CV-QgY2-U-`{5<p-d<18K{erad4e3#+)7@+;UtjLi
zGsd1pnv&V3O;et^4&+#@Ie!UdH@2n42W?~N;2G_M7kqzP06&4MLt9`F{K0mhR1l~5
zcXdpp{^XE7|JOPXuOy5gz3%p-J8f``1yse$>OkK|3+xkATXc{2c7G8pr#_ZlUe%Im
zepI)M-EL2zSUEI6?Os;WtogL^-K%c)pGHySIM-jFk+|EYhyQet0(W$94+UwSBd$F(
zn{s{LgPFPIX4-K-OPnSS>1@P!Ufp|6xx<~^X<qu5#XWZvXca|e8&aaqc!fMi3A%``
z6triAh37tFh*Y1SkSBncc0IR{LI^+`Dr#UI3D+)V9p?z?`3{AF^>?Lvn-r^I5r9Nt
zT=3V8EL1Ib=0bPZoAHWz@h5~^?XC7e-C_`1&GYTD-6v@AttT{QbKMw#h&eZUiv|=6
zS1O@!b8&(=$Dwp-`X6yYHlwLro{C<=f^3MQ0NZ(zr-FbnB7$0327BSkLSMRS(owq8
z*kk~+PQC05<4{=`^K7>jkzI<4ipl}h2}K~>H>G^y_2ttiRYZhzlySfXWM8I~8>YAt
z%}fagI9@&>fjQ0L&XnktgPLnI(KK4`Of%V%%m=ZCThL{H*7p)%A#Z|Y6I@Vdn=STm
zo{?i>3;bUz9kwMwvX4*eZ{@UzF=fo`Ua$4t+(9iUkQOMA#ksOD_3rIu{S8?$|8Uo~
zrogzNVL0Gge)l!tG0y7>93f`F5&tco=BFEer&d(&BKwRIZ^q;D(e!EV?@YT%j<^I9
z!M(&YVe_ew$92|@=eY95EtC>&4k%C+n`~U7*i7NuHwT(;6(J7hHkY1Mtua|8R|LjM
zm%lBYf4N%BcXpv6%}A73W!th}79%45<0+9HcUSWZ*V0-uK;_xpi&~vr8A{IoK&-MV
zK+M<deDFR_G_B7N55E=(v$81dCkj?Q&)N6o`Z6u&%(M!G*D0<}&&mBjgVmzHjZkAj
z!_R2v^butRVNmTobozO{bZtq%h;z|s17Ej{<xnmIi<76-PMe;T*C^*{l7*ftgV(&?
zG+xxxc%rl2)|=GW7++89a4lZ_(Rt%HYsP<+gtY7)B0oElQ5`D?T}3MTm3on&byOZ6
z3>QQac=$`4x4GGE<5IytSGhovm{zTdleB3Zy5Pl9GBi}WU?Bf~yR}ttA{y1)l{I|F
z79JFAQ%PoNiCnEUNsTJc_(zP3D^KW{LIwB<_P8KSWHW$`Wu>caHbie~ieEj(j-Ryj
zJSeB7_9g`Ge&kBpf`hd!{)!`0?xEM{=lH|eisVUzTX<eYrn$$y4^{Z*veB1FH}tm(
zVixi98~*J2nEp3t@B7!gs0bTLjd7xiWi_!Y3v^+GhSBeZVQXH4)es!~KXNNG*KbUm
z@*iPGj>EuzCNmg3HKs&00sOlk&#c7^69m~H&13E>bdY-3krRz+#Z%Yp2Ziu+uucMl
zj=j(QCgK6Kw$s7gPBS9>XI1*b^PZ4h&XL`Hh(=~gkLYJ&O12NGh)6KCjptvEo&pXx
zFiN$X@}-xbWB;D&+@fwGg0LJ$Mln&G9-#uS+h1M7`kRU~c#Q-7C#~OC8GT6-b^3eq
zxDnyP=~OEeneF)@T%2%R#suu@jBSqrghijmyV>%JB_vy4Ro=>BKdNZ35-=p2dV<Z~
zxjp6h7ga8&5LPekCyIXLeAc-mEe?19CZ1o)3QRv8{<xKxF>HL03ML;EgH_dgd!6It
zy@xu8jO}*h<jXVvtp${x!fM$*@A?P~d^eXjtlV7eZr?n*a{(8U3$r_$KzC*Q<-&lv
z?!%Z9Ocny)j6LkvF#Z<#<nEhoGW<ot%w_m*D1ODtiOi=-DKA0NDx>p{Ldn~Y*Rohq
ziKVXBK|J$XAk;1nq$EK|-WXp?ydri)Cs<Kc3orABeJwx<6LHs%xYS?lB2TcatghyB
zV=52?n>?A}3C0WfA#FL|uB+X`-oxN4!!!zKPqP3}4Qo(L4#V<w>fEggsshM=PKnU0
zagO1A-QZk2E!z&Q0XxBaZ_<)KqqFgclUy0)zt?nTUS_8~r%>%mr(eLyV@#Gf$tgc-
zL)V_|Yt&LY$L<=2y;NLY{NQ`F8kyvt!3b<eV`+$8bcbeLI8UAIg(1NthDe=Z6|FTQ
z0D)mh@qu;z4UTD0s&1km#;YVUI`Y4V31p7y0ly|}VTPO!efWp+T0u+C3U2mOF|mYl
zwnu)hf793e(8_FiiB}CP6;hBDP?nH{(_<7m)+QlM%E2`*iNflIpEQV>K*?z)-Gc?U
z;W|wU*(ZF|`zqrd?dpYyl25@9Q{0GO;LkqC8L{1EZg;!+#q(nRwGZT~XQKEGCDm`q
zJH(%&863Epd(Jbit7OKe3Cd&sKKB)gy6}vMh>R3>yTI3L*r7gN3<*VrJ*(oM4I-8{
zINI=?l}5P|W9iWoF3{zTyn3*{R8fg(_u(_-cHLVj=-MKV+cE`nBQc&+P5IiHBg4;h
z*f4l_vkhfa<JUeXa}N}iBgRvYY{qGerp9Q~Dn(?}wn3gh6<e>R$Onpt^837bb8VFP
zO_w0NLch|N+Hu_6r%QF=r%<}g^bvyGY5wJ)r`4PnNe&_`{qC~{{aXkrX<*npC)S{w
zRE8BN!7sn8!a0MQ9`CtPekKe1Rng<IKf5w$-Gr&FY|I7Fc~8hP^2{p#u2U&=#<1i`
ze@@Y>Dlb;O$uCrL(_YN$8#hRc?>@E5&iLYe&O|(OV0~5MOHiC)?Rclubyw5trzF79
zVPMrI`*%a0%4Nxq<iJ2f`^{(Ag$Qd=xq{*#y2L<{i0jC~@4Q4-ub7Ni1qM$11Io=z
zqGgAQOZ|-}70n_QS%18*CcoP8qaT;8rtcMXitrDfZ?VGCmUnuj6$s@`yChYUXqBr_
zu+0pF48?{?IbDx*rQVkG<{*bG#vKaM-ydSEnBl35B@kAC650ZROsaKEp=U)C5GAbY
z63E`~9-5z`g1o4Lwtv6dMnQQ;QK-D_*@I?}s%k}=LJMk)17s8Z<X6vmR6>yOSHQ?N
zXb;eN0Pl_m!7W@(?1cFjG-^B3z!a})>%}1iTZ>LF7J^}$^#kWbzFNQidP>Imq;6ij
zh+C>fMXLo!a+1ti!+U}IkFtiV85?1H22BU!Jy4+?t}X~}tR?%u!rcr5M&G(#pcPcB
zQ&#X8{yEy2#bF8p{zd@j7Sta~_jn4;f-`wfWaz@Pyr(Fn2?5wHpy6qxnrB1;mfUa`
zhdS?bjT5tRgZv9~U5zsBk4tdC=Y16@aERR6=P5RcMNb+E&M5dBPpdKzMb@TW+fUTe
zrrr72D}Vb6tH>fO1oVjNRq;x05CD(OH*-3DtB}>px_SMQ4$do7qD^605O}K6um^6t
z9K}YW6l%}%gtCDo_z-K@Ad+iXb<v*>r^|N>#^6UV*u}-gL!Y>02pMenocAdY;f<9&
zJ)70o-nqs&A#4!lLOv3>!0W<eD7U`cE<^Ww>>9!bVjZwp6qH}x`r@npuJWfbWI$)W
z7Rv}OCDiGl%PGji^=_@>GZDnoX0^HQoY(a@IoW*B{!q;n_&#6$`*60CNyOt^ahnTi
zK^)_Bq%1;$b2;;_f5Gny?YZ!wF5va_U#hwasXNO2!+O(x0D!UGmWQ$s&7N8LasMfK
z4>ls~i=PcoefQIf510Mp41^;7S7rUS%0=+R=A?&OSNJt_Mp>Q5<^(&;M|9B#8SG1T
zb^3ja;V%MT3y~eS5&uI3<z%2}2a-Z;8P$*fbu}~q<LKlwLF%O|$gB-{m6Z|tJ~y-(
ztr_F2_P((gnuN4+B$PiCm0C?M)RkvthDY)Z1ht8}$ldP*C@u$n!LO+IbauL}{jR7%
z_W$TOU*5w}40WPhLhpg*SG+lygI;T`H|WCQ=l6#t>#Hnj?Ac6=D;@VnO&HpN0(>no
zfNa}wwNke1FF7&^yVfs+`rM||y8-H15^!)b|BmdE2g1?jGZ1evI34|M@~ww+>c^rP
zN<0j?_u+zqtm64~4BK{C2(ymmFu1R_hLF|s{)H9dl4)!$qNKHWv_r2g$%k9I417Nz
z-P*3%oouMUxcc+-WSd4shVz@x-JuWKU2=E)En~ice5UV3-jCsA_uKu+-&V<f&WyfT
zVD^6<6|Elx%S|c0E#CGfrQCI^*0K(JtXyG;Kes{|$`u`m>6Tt}nI;PXO|6|U-~Gv8
z`um_Nq7?z_%P*!Nu0(w3gM8@lIn|iijrija;%IM!-!SB~CdX25e|ncls4Y+Yo{5M$
z4=zMP(L1bu6UKGmH|j3*u2@FLkQG6e7T9dztKa+ecu8hqbJ6hLUEnx>ajCn_dEw^B
zErG+mc1)dqwar7I-lq-vq|Jc&79n|NR*kSHwNT<Whn`<&`&kmXKHhigX0!aFO5bc7
z+X9tzm!tgKCa1kyT&IL@fWso_FP;_~_zqruF}Oyzwyt=MqvZylGHq=El5|eD3h-n1
zQ<Xsl9Aj3NrN8`V(GvzBEZ~Xu=fu|*HRZs25p>36c#x=e!(Wng+%ZUH6g|lmXY$w&
z?aFlq9=2%P#n_LUFdzcB!il6uvyxC(CTfJ5RA+>9kvTRjWq9UpTc~)*Kv#-ql?mby
z*V}4ifET7g0w9tT?^mua8TTa+!aZez8DzsKe42WSnZTrQ0n~>ikcL~^9Qfg^wpQQd
zjtajao!mbhB18AclS!}yQciVyA70Yi@=dvD{~pd0QGPKW-n40KL%b{#4i81F>ji#!
z$Z%ADs-#>(St3|kxG3d_<xggttOv3am~#8QVV~>1C@E=i=KNB*ZIfcoYT7?{EZAzq
z8H^W9>b50P)>q02ATX>bpX(Qa{A^>^Nj|_5;_O;LV59CwD=fcD5-w}S<K&)z>Y2zw
zURzdtg&d%d?|ou|<~~6<wH*=EC($NCvFcZttIFj5o0I9#^B5+^mo7>?4v0;u(`6L%
zr;OQn4GjmQC7G<9Ec%3|Q(9?qS7b7s7v`Ye56ZR@^lFL!l)x5nYX8V^i4pr`Xl8KH
z9E<W|atTy*)J0tI6Y+!$iA=pOYLE!Y$i}Q$M(@E!T&%^xmzq6>joo5m0Und}seYI~
z7H4bJtrNd#SIkFwqaB^XEymK<gUHtZaR_dGq#d~0m4YvMH}l9PjBh`%3FIo|vg78>
z_p5w$hQZJOj<ZuyQnU+8uV&P)uA%qsZ%;wkQwhTm_KuC)@~rA_gRhHMN$f_zovIjU
z(@>YE6?^=4qu1TRw=U0-fAi7EO&>i6V)jSXK^#`Qui?AGtQvkcubBI(*5BjVx^%aS
z3l%zJ){^v{CcI;+%~)^BLVuc(){ro#=;@^|6v(%B_d$~4KcNTiMx3;jB!=XJmh4<|
zlX0zXvWTs(9a7R9Cks^p^QyH^7GM5}GK?-rRp|vQ?JiN=ueq0^Bj+qho5}1xw9*k_
z4gzKm7oz&6f4Es{TU-zl^Qxu0>U1Q0W)d|*p9l%og(_wM09YVOfZ50%(*LmP(AV4r
zHM_p&W>mdXnbd9H<_jaTXNIS_&YCEXr$3FuEVNmkhr=HM#eRcvM{@a#1sr~`z`pJN
zsGunN#13;!^yLx*1q{}ESTk@>r_Y^`H&^bR(7_tXS2edG=#+raY?t2$hY_qOa0P|H
zV?o8t4*JGbr0GWdrysMONyns|5AY27w`gkl75Sa_@_7A}BW7(Z?2+c<RrUL!im2#V
zW+MsnMc2^{NS(5kjKMb@!J^Hwc$18nWfnjs9H1hts4P^T^DtFxV9eqkFUl8z?^>A6
zvizKKidf&f%lQlGoQ6_!@hs|3>hq^nA@5EXJg!$m!;0h2ewRd=mI+z8oX!PH=>pA*
z<`yd?kYZEdf|6&|IUZaLZ4{;Ipml;r0tKQew?CcoS=M^NhfnqX#C_=e(Mst6P~t@J
z19pJDGn9IAaHOed8Pb{y^t$(;^B^(a$^*~;^{|84V2vY8T6<cEt$w|sf!uKrd%C25
zqWje8(v3s;fJKDX(B>81eRMD;q<wcZjrNc@O9H}4Dg*6afm;Ab$0)1sq2Ln_0pCcl
zMk|y)<HEH8gj1C!#NQBqofAsHJuC;IEwy@ZT30T8ShEDX`X4GmG=cZ<S@1WQSyW5d
zOTT9r;DG+io#7qk<u?Cs$d<y9>~p5;(4NhUV^DEl^RdU?Z>hLNtP`A<f+F}GXb%x)
z?+Xl8=w%km2TrPti><!!vamY4b-~rOb|0@QjV7Z$6n&nxMd26DnbmBA>^2!J<lW%g
zTgvNReAwNOfYQcdB)Ne0J+Kkt0NB_nqDS&mGCbiOM`Z|gKWq8BI6#)yeBXQ=d;x8c
zCLO4Pj&KQKcM50Y*iwts`1rO~*6cz7dLE*YjaamB1HXgKI-fW2#ivYn*zQNBjBc%1
ztTC6#S!G=F;4~lmcSb4X3B@780~FivY#_xv)SJQT-+X)+i=&lm(<y?HcLKtaSP{`<
zaqs?A<UA8uv-NK&!kpp?`xHtIcqy%^_&8jn5`}&|%8Uqk1TJuh9@&CLV-SZvz>mYA
zbs>eYQ*3;J6i?*GkVC?7+^DpoOm(3nHbRbrHKL)uy~Tv+9frLt%g1f^?Zcr~iQSND
z>02X<Yw@PZ{_`j{l(i0kB^!P4^X*LTw$^qh+!|s%5x*&UvfVeO<wj@g!;%&!#srl$
zPT_|8?{CmmlDJn=mZIAL2HRKIkU(}spW~y74m0MI<v!gFXv>i?dS3nA3byOx^+7gC
zS74L}@9ygUUh?{TJuiQ;c%0Cb^mL|ALJO#8S5R~3fimm@NB_!c0vwAGPBcb1CN&xs
zQNp?ZKrVnw?XByfqNqf)e=a%@PU>OQ*^LU&irN>0SbtAzRXSW;tCW%?oRKQ~{;51y
ze5rrBwLN3E$NtHz-5SJg_vLHN_hj*xvHi|cnJ!OqHiZoS7zB*tkpfZuj{r_yV31{+
zjS<Z7VV0@ZChIU`kE_MHGKoO5XPmjTwErOK$x#3%lWY<>{-FH7BxYlmb&4OlIca%@
zx9MsyjYwW4a~D&KyEk?7wQ|g9AT;uu&#D=0*0zHiCkb`=lCUgu@djV;2jYcyS}%I8
zkR3e#s`Em7ip{TubTZ`r>8CeWiOA1NEQ+J)USrnU2=X8~r}BbDSw+G>$GW}2Voq&G
zzeq8$=(%sgk8CvmbUm9SI6=fD=|!dD2`Aiw+M=haF@<tjMcZB<)A-k9vu{sSde1J0
z3)pvFH9X4%t|wr-pP@ZI)1LZFxA~u^Z(}k6#!Dh-Mm^Qf(kEY61W|)|N{z~^M)oTs
zQ_?{2BZ!N3)_a@!&7J{N8ycy_CJM7*A%hZ?#{)2v^z_%&+2FzSe!jMAaKb(uh<&tH
z427qhZuQY1Yb3(?<0GDhrYL5Mr=_0L(r}yt?Jz)rBmpds^Q`YkURJBbZa%>sCrV<`
ztzg={26#F?LBwerE{GbDVlqs8`J8*JiC8%{d==?+)W?KFJn;*r$TZkkq*Df&93E=|
zjbDu6*%;U+q8Eq#O%$Um)}I?gxNQVjk`I<@!={F#19RR798{w=E6>YUjog}RF#!|u
z(&CzItM@$NC?B-ckvYU0$4-m|5LoK1aX;4N-kxO3U5T#>PdtNir3F;!j+t>kQBpH0
zE}zgp<$Rs#5`yqiDF)~&E>u=jtf&9&?2~_wrn!_wu$UzLa&hQFQrWLgG%N6V!cjP{
zda12mS;_P#;k!b1_+pQAn_W9!4hpw6EqS&-(x5^lA3f8@o>u(dTudXc<|Zy>^<Umk
zJKk!mTc+G0-s=o)*?3EBuACTyi4rQvIoa0h^%nUDW`#AQhBl&nMX%UEao@?u*E?dV
zo}*^_K}EM@+tm#p!qvoNg2zZJPNbX&$#cul;+)N89U92okMwoF4dm1h6f3zP3zOEH
zAx^)vS^&b>oqefcI9&k20+T3&K!y`DRM($+tB8g!LHk-D{PMPR$}il(7%|+<PS~Uo
z=uJEk>K!rZ!sE=XP&>$1pip4c_+HQz&@x$XTh#i%p0GH;2(3UAw8Q8>@9KZ2AC0`}
zaV^nJX8qCBG_hGgs6)Irlh-BU+@Q^qcDxE&*L|Mx{%!2H4)R@TDNO7SclS6=B#ixu
z;Gt^eZ%IPsM{LFP^N{K;rO_g~QMQIH@1sWDvWk`jzo<mC?+gT#?SWSVs9ux7CtI)C
zh<;@Y(W!NI%qt~MmqpHZB4mx9kE@T0Quo4V@pls1ZOL3n_=EkzxM19gMi7O96<S0V
z0^Gmr=<5zzi-F+kuYNWNO8@6UOwE+>Qh${eD;UGOZ5zRgs?-a~{CH`**i>N8Iy8iJ
zP>`30GovZJVI*wNX*S-^nt+2SOThZDbxnphZJ7n0$3%<HPpy7`iHTyUxMxPzh{R^%
zqEFR_b~2DvWQ8IhIxQU0m#98IZSGKkP?=)BqS<)A6@Eg)Z9bNcumRVCEw8R%hB@+b
z>1gG!YFAqQ#ZQ!oC?r!!UX?&)tzlmK%ls}`ZtGdOdF6IUHyI%GtXjlhIrvE+kY4M>
zz-sQq`x4VmUIbZy{zpHim1;3>bB4bTdaYwX-sOb!pJrmTP|&0;+=L>!s>YD8q1nek
zZFBQH_Z=C$^zM+=<OghFIpjIj?Hr7-U;KHz$WDDA)U1z<YQDt_%UF#>Q&tdi*4$Ar
zBlO|%N-}r7^WZK7N;>;u<^u8vyT)bxO&(qNGaO#-b1kg^2$ju3KoQ0nxsCo1x@;XB
zlDSEw@{1a$Fh8&l`U*es4u}Axzg7mKp<)Fpk<Q+&`?3<@gOod;NH%DY?c*-&``U+^
zU5-=>XxMYeD}Q2uli^B=h+!8lpU#p3UckF5M|V(c@W*FWkUg%;KU)wVekX#aTQ6Vt
z;D_Mn^U^i<ZS;~-g*kJ84O=r{LLNl<pVHlnX%n}A+SBC)v70>Ih>mo||4d_tgO(5{
zBG>$-Ir~&GQ_&~NN1#^WIRXYyRXJ<<6ZuCL82<AkVnn)-kWGR_Bp6%{1Hh7OP0RyR
z-Dl7<&!m>(&I=XG?dMq!giefdl&J@(Qgg$xbhu7O2&pgr?D=Z7Ak-7_!y6h=g96tC
za$(&}zSs*99i7{>!t2^ZROuwmFVDv}y#ZL^mm&dF{R9zb42sfo@DPW6(lMmn`GxQS
z&FBla=lhE-^9a;)dWg&#j``y!z*kxBB;)ag#{A0nW>&+6#%+W+!{=73q_BR?bblB)
zG*0ivyn_9^QcMH6EBG(~;hR|&f&%HTp+}-Hb69Xu3a?H?6ZrRyI6rZkNqeD2>#t*E
zh_xKLuCvS9`{C$%`t`(#W8^uRV?7vmYdq)&7tHvqm<i-9<0hb<;cb|m*Yq7SYt>(z
z_G><xhyOSINpIk?SmExX*1G}_zZL&+b2|o5KRj};?R36>xypRQ^BD96s|U8EWceD6
zh^<$1oh4mq*4!WRjV{Ypm_0nKcyrlT&j^#vUVgday<EeP!d)XSJa7=j3K)lyUayfc
zXqbiBU<dc*x)8`Ze|{yU_@33b-mIp>h8Tk#zc;OyRo|ph;VLV)qW<i8Z86MbYMas}
z3%kDgii@*i+`?Ycva(|2d3aDk{PhlP)qR>Y!s6|B6j=>K3>U|p^NnUW8*YZu_&pj(
zB}ZF5K`TjP7e28+Bdoxqf53Vpu(+6n5y&stsm2##!7#4{b#IT2la@$!NygU`%gwa5
z+w`+dMcFTyI7&zl)os#HZoo-=ssZHnzKL-#tE*a$FC{jf1~Rj<;!dh+ySq(U9)DJr
zs7+NMBNC&$c@eF7=6Z!qr(1^|7rf)otp2ur@sD`2on0PUr1@ghg<c2h7e^9wJO{0`
z`=Bg`CSB5VJ(GJ}3-RJZ`zG}YGyVH=Rfecw$vT|x{vAp~8@1cWKmEO%%YU;caT*r;
zbnxew<#ps8D)5JPhpj)-YEjaSVGmuKlb*FUVpfUy#119V#60<<;SRwxuS7!tJJxYH
z)bDI5WQGYB05-|q5&NSRVd_9a+K*);n)Xv$ozqugb)++{&Y$e3%B|7*HD;mRfN5X8
z1dFL8B|Y}2j&#oQd~Pq20E;H#C|rbz*?Yh5=SQ73!NA^u5W*&ii4OF6zXFHSGAXI#
zJK{9TzKc4e&)N3yek3LjGJzz(ly_~4KNt56=Q~a#EGH3c*^rLGTyC$uJE}u2uUc@8
z8~o>QD3DMyk78N3pQFqV1+`TGGiP#MCB1mH@h^^}%oIqGa+s&xlw4a<Qfk4UV5QN;
zFwgzD(JM99f>C<pBnPI3g{ku2@>$5RFsw+5_Qt3{uJXTDMVEM|!3|0$aJDKY8SZzF
zTMhy9^4~gI{UuwD!ytO|EnZwn+mP~W_Cls#apv1!ARd#;F!t9%=IB{1--%^$lc@-{
z@qpnI%^RK{juF>)TYNjeBoJ@xg6I&w$#*pJ3A}7rJdO)c?;ENAVji&Yx;wPwtNi6^
z{NOQld$^^1ZS<hFgkW*x*9tyIoe^#atDr?i&~^Z}=(+jX$wtJ-gxwM0O156e_1!Ua
zk&%Rp{;?HdB3|Hg*li>GaQCqN$!`gRtP@ieB}8zD5F=&^Jlz&o9@r{rcujV8cJ+~>
z=_!uByAJ0NfpknR>6QrA6K0+Mi}#L*T`S4I^|C_Z4~8W?*yz>&k<Shr=&26^qtad7
zp`t@ixbVBa_#vE{atss+^bCKBBW!rPm=3!}ja^z=g*?_hKkMJKF4d~gi1~Fb8CEne
zkt}t%7Bxy$(wP;U<P-*~H@8LXHO(gOBqY{rRI+wwxLwD9wIi%z#iz)ptGVh<IK|m`
z2+Sy^S4|%^rIcq~6U`~IHwxk6?!2<glTdCedK`>J-|51pNhoXWii8ykVP)ZG>`8mS
z`JsuUM?_7W8Fa8`cIA+CBE*)wU;kYW4d3<zP_gg%5-Rq+2BC)!2sc(oW-1cY0CV^h
z)*A+Yv)Z0Bzi+b-ut{yZe=K>GfxmiPrHpbeWE{>pRv0Tdj9})s(DGGDID5{xG&i6P
zxKu(J=H%_7yiAX#QSQs|K;Kf!XZe$^FkZ0ac%oD1H-~oWq^#PJdMuFea*I^F(2ymP
zs%WV97u;LgAf@awhe52@kx|HmgO+HIWGN)?rh%>;$vwmWt9%}kG1Za35u<<S5+wD7
z^(gW_?&j>^@J~4Lu_etPwB|rna_!lyXR}QOLLM6!8HX9#S#%#ApEY$NE($KRON3!!
zBF(Bf6Fi#_J!k(_9(yj<89Nc%L@I(T@e<%81Qczp^KUWJx&gN2M8q@jeL&p=UHMFA
z6-G>wwp9HgA!#c(;ZuJInJLV6s*+;IaLVd9Q9)^GM3$(EDVFk;+NjlH#6iiXs!)vS
zf9(YRMPr&gbi<oHA${$!#6WG;f0;+7aBVX$vq}X2KS-qK^>CDeHVZPh@44Px!Yjfs
zMC<ACNs+-?!0t-aJW4JCP|&TsdQYl=Se;y<;jE)fO_?Vw8}<eczd{bQee$P(s17(9
znlaay`I%a8r9Q3V7e+*wu2xr;58~{{Jyu9fM0SCj?FK8yBbu3bON|?p8Pw^UdV8oH
zX`%1QdULf}C0W8E1v{We<O2-;%owtX029nTGclW~yLtKT(9TI!OVuI5LG!e)qR`<>
z$&SjAybnRK7CQBEofgRgAL2QBCtXgK?;nGl=pu(%$CMppdjW`!nKAmBF*q>MYT7g-
zYD)Yw7wat3wEav0s69AKu+wutY(oISo_kHNn3DPakDZLt5z6Ky;zUEFsibbiGLcZ%
zt#tyFJ&k%v%f?3nZwZ<}OA_O!HSbf`v3IkHJNOdc!CpG~T~@3N`nNqrwvuH|P(6$9
zil7(P9{Y;Sg{)KG<DxWoL(f`W{~(%Cvm_5#v8GYvLsyp!UDWMkiaInakymxA!?5jB
zJL`*YnpIH{=+hR_(2PXw=XEhZ?j#Csiq;YWan=oGl&`h48nnhMb@W$n=wW)}K9=Jd
z`}qCF_IIAt_ueY;>ySo=yN6c-C~)Ron-wlv`a^gSbQNb{TakE8D2qsCvPei^-^-8t
z<r9Jlv$ASxYDgJ}g#=dhS}?DqnoOPMONEc-&p4fK7fuFa-#uRY%JkZ8eR=Uv{*m$3
zX=adIwCocTv$h4La5BhqrSSlW;NDqaf4Vc`%--6x%mAlDfW`&9_g6i;G0c7jly;gT
z@W}#2CUwr`(uO}xsY?y!Ikc-5t3k)I+GRM!&glx@nm#g{Z#9$dZgi<mc8n63o22eP
zefB#j1!H@!x4(=bxG|(Jj5sp<GoYT>=nCkKG@5Gg;IwnCJYH!E-yM4j8sl@T)|_$w
z7aOwQ{zN`u*>K^<XLe18P4KomHp>mqmg2p;xCe(zEv$;kzVEPmQ*%9?p6t!tzi=kI
z93Qm$>4}=R-Hq?&^BxY$&rrNEpc*v7bDg?e_-XGmv+t4R+Lc4w`Vjv=wS3GLX11(D
zauQ<ZoK*ck+>5b+l}iHj4<VSmCh;Rn=8K<Tj;P^mKA9OsqfarlmV8&VTUda(S#Y#3
z<yyoOc?HA8;i!&}(Vd*?rUhx|M>Ax7lM4^wRf!em>8;6oRh5M6*Z0rOO=~Cz)AwS^
zMsQXf=D-rrMp#LC-CC2T#$qSA87>*Bi~VIXxiy&=WX@<~i+Y}E<|;1d4lm&#^8cbN
z{WF|Wn0P#qu~P<z5n2;$O`-<>DR{PqGZn#P;JulxvqThQXI~)EoqQ<GfDVCDO~SP<
zy_8B&nK}>@nL^t!M-rBz)1%m(2R&?x`dbxhRa%d$(9D0Kmm#6==!F@XB@_76xIB=Z
z^GOl6x`FFdjT4FKLvM@I%yRje0`nng6r3aAT^o9tvRYf+K7ModdoVmIy?}818V_G%
z@~WaNkNDTk2T0A%CR^n`hVjjL!1&kfOoHQrMC<4!Z<369*feCG>=0Vp3hweYx)cgn
z1%S;Og<hcfSCm~cV>QemIt*9$6w|xIw})8@dx%=0>Tb!pqpvM?U3=>f@B6dB%is51
zh*y1XR2Xd{`ra2h4#HSY1~*=grz=8%EocQ~yyt`=JLh^$CV$NsePfB<bSlAZiF^dU
zUAhSk)<H<hNr^N8VI^f=e1d6R;#fbZetK<O!a!0w9CN<U!&tmsC6#fx2n{hUlKyy<
zg++FpFj)7FI|`xYtp1_c5T=)pTsI1yL>OeJWP_?N4_XbwY>nUb*an8k!Y3BIW8xaT
z5<h9{VZJ;@-KHO^`G=bqjaW|`yk)AnYudjV{>-3IwTwA8m;gnv$I~jjqOL)keyqcz
zlwRMdj}rDqWch>G{H<g-9tIH6-$l6LxBSQoTNOf?odRtl!}KC0j`J&Ou_J3c)+7VL
zBM;7DMDs94eD)pacs60cy$DB!wK;NW@<!%cPo$A7k~lwt$2>vqkyW~r;N%=`B3-v;
z^`n}Zr}ykW(=lMM>+2T47U07{nf-B=fGn?>W8f$Z-)mP{ad-`Hp%wK(iiQX9NGkRE
zCC%fL9l44SL&JgRGF}=^OZ34qp_uxJ?#eW>?^fKl$AfUjJEt|~a<$x2mVMWycoD>5
zudZIMdr+AvMpmlyk!cFizH^PpZ&dObC_R7%R~H~~jT30jn>HRGHdt8lWM^L2e`4ve
zv2fsM&Io4!*g^~@0+{V7@1S1-*ZJC+NUa)<cBm}vs<z;VJfKhZ_Y>%QC#DnV_yYVJ
z-A30et&0N#aKq~DddbbtKg^OVZ2yD{K|go;aJz&xM5AVxQ);_ZTQ#(-zZ7|a7L!Rl
zoz&)7_yb%6eg87Rr!bAPjY`oj4ly2-vd|=cAU6k_-=CLcKf~GUlN9Vb==y#8iy=Vq
z!EQXn2uEC}zoubU;hlikHKLTQe6doU2KNf*LgmDKXJ9Y~3>K<zi~y*TD9hws;V<oF
zn=;bvA9;lU{=x1LKBXX#GEwozQ#%UX3@pi|=QU12X(8qEv$m5iEK@1{XY?b-Fl=ce
zRH!HXM$YT}^|~rYiu8xCkpaQhzMw?bqp#c-S02gLK`)1bH%gYy%=<-Lh{b3|IEne;
zOi^*2AF(ZoP@z=c6N<kZ<*oKe@1&E+yN9u^<Y+hIHEb}8m@el<F8a{*yBo_D3b>b*
zxyFyv94)WV6@MT_|2)(UAAUh-90}*jtZU&23B~mnnlTeoL?{fF5)#(+I+G7Hs5bd|
z4_c<oL|^+OY0ufsOMScK&u1J@oh0F9%A2ysOxKWpw($Z0hTneLZh;o-vCg1a^6tL!
zjV2hIkUL=E+o-C{wg46U$(ULdmyqN2cS%7<43ne+=xsEDw)0T9QX%?=fwQx=#29f3
zR*ar#nmrovit0ACDwujt;I{wkb(a*mhd96SwOs2on|Ze%h`v69zJJec%|q%R?NywE
zw}t_F`WP2bFL7-+Ja$F@qv5k3u<;&_LQ#$?%ZY+Z8nzkoI6EixRV5*>>PoZCipS@!
z4SsWd;bBqQ_tihryW8qL=DnZ#MzhaT)PWKQ$K`&<+lx{IPg2)3e|Y$?maW7GUjUIu
z9lLCbnT5qzZSPO^X(>M*D)%o+aDOH3$hhJ7@{HYppV>@7&8^{7jd9a(XWtJ!CJL^n
zY38(nd}!$Y;>2z3<MZ)f0k?IDlcl;k!dyQJh+V%#7J?tiUl42uOY5Xr0$^tQW%gq*
z?JL&JHO?`G?=$kv(flv%s{vcuS8xXJjq>4Y32kd{NQ&+;gp49jx!!KQi#B_AI`<nc
zybATqH@mG-wXeo<<i9Pws=XV@p$6~gPVR-`abc@vUpTJtpSU93X|&2vCimnVg^)&0
zqp3PET$)50tg9Gx9j2>^qVoy|cbci@0L5ZdZnE0px4$cO5{2DKu2LFRKi}cWf}S~X
zi=>xE&Qu*>De+%Ogh4u4;(xYUUW11&9cAs%FVy;3a<vMg2&GGNQu><F8DvI#3EU9@
zo_kQt{SBtqNH%xVa`e?5DmSM|X*G?Rnbum+vfIu?wOZ@s(jbhafL1WY9z~_{<PqJG
zF$(mi&-*28`=`)M|4_X-Y620Vwc*I{Xie+D=%ovOZmLc%>7Gkz{Ypnvb~nRFob&$N
z`=M&#+PzRG%4k3zP|i~a#T1^daWmT4+0mZNUOV15)rPTRWz97XDi1NbqI)ODS%5&t
z((~L@@9-xQ&7twn;lFjY28mzPnbT|uq=%>DDTTQ*%C2#A0*|sJ5}s1tUa9)!xxTNH
zCylbquBtd;+|B=5(;i37_%YKY#uQ1k64vY-v5n3biR?DiD_?8Y!>-TNu#%QqP;eqF
zS5h=`S}RayGjfNYGB|@@`r{L8Sy7lw$`Q$rv*N72tb3xaLL@95;TlC~51km;rrbnb
z^sBunKdeWwW~5`NBKz?;)4$4qDmKb=;_`8lG0K4*yudTTALbf+geYuA_D1}y@7a};
z21Ng)HcBwfCaJ~vN_^~7Ad)0DcxLJj`oRA6rxq#f7s1Or<9sPL{{AQ;VN=BEA_hK%
z1+ir2$|%fBwVmDYpv{;hX7MjDIn+TY77%#ixWYY+(M?Jym3?+v<ngOcOC~s$oI0m>
zWiXm2QVC-LTXIgyB=h@w!5Im$sD|Raq+bg8D-tCVyhOb-p179w0=;N_Jq-FE#%sj7
z-^10s#~2D6;37nnv?^wRPp+E3r%$MIBgHo%$40d5A8$>QzO1&GZmpnuFQ}A&ebKeG
zKi(<zu2_Uupg)6gOT@O0fwr@K5NEwvKrO&9lOlSA;z~coz&7LMOJi#O_;Cry+zPM>
z=4$%>uJhj+GKAv7Ns6s}_TQ<K0K=Y6yj$muJBHCrq6zkoG3kf;3VO$x-~7Sw%9>{~
z@XNXE<#5I%t9h$vwRA7ZaRfb(qQILJnw8ieI~g4W_LH@uui{db1b%Y;Y5tK*C(8{j
zi61(nZ;5VKq-SJe0fHJg_Z22mx2@#7?I=><^uCFKcAFD8A0W7wTBCSgwRPh_uVDl}
z14tWg)yR*je6pbc+afFoq{#tg?mDz+YIxk~Jw0KL&7pSU9BvXp7Z+F0zvYHWH-YEY
zaIVwMC*nJ}QLjU7flG)`XFV1qw~aZH-PNll;_DeSvr0$N*$z~Ar~pP>u+^TNn8w;>
zJ|r)nKdI{6U0(}C3nHn_pCTPDklpgX^R(aH2;ej2=y!0l;mCKYUR?bh@Og=}{|{Ob
z%;Mr+coo3Zuc)+AuEz&z<m52NAm$KPrNW@ti0S-GcRE&<-nG}r>6(SHnu3`1y~+*k
zU2Msgh2XB0XZv|O$!C14tW&s(#mm;SS`Z6N6%%~?OFq^Yc1e9l|0%qOS7MLavyBzA
za;?RgJ#5vAq*<o)n(vE?LEdp3YYd--A>bcCyoyma{3m1lLHO_${$GdbquHLRdl%ae
zP^qqxaz>s)u+;W_%FfQ99Eav2>aX7_y~lnI+1p}e4N9|4h&#mQRgWxo!{Z$T6W2dU
zNYxtf=0OMoM8|YH4MI#Wdd&~zW3$3~c{_00;ADhz731JuUPK(>bX=~bqE|=^+jkAH
zZIwt>zFDVPp;tT(&b%~9n=3Q8*ejh#WgV5{0@|gLu=e8!-Qm*ZFz;9BE6}m%)SkoQ
z{U{*~b=SFHmfM<ip9EkEWw)bw%I?Oe|K@Ycmj7KF?_V-s8mlB9X6+%ua$?Xf{H%RL
zEdIjME}4K@oM;<%IhMc>VjIN#PfmkA7J1k9qd$**UcxSKM-lZlQN;svJ3%W|TyO)q
z3AR$d!<aB)D@o?Ytt&NqEeO+Lwu?fn);^vH4fY|q!<uH0=twjoJ#4Z|c3`iQujg-J
z&^PgUhQA6@DZG}b+4T5O<G=;S2fJ^C8ma=t0WiCdAQ=X;0bm<H{c9LLHcD27kKrkJ
z7i&`5jkNS3QFz~|i>!=XqzKXQ@d;wS8=+p^hW?8(|Al-r!6rs_eCk7hMYwYOjiE+V
z`k<4caTVKTj7Du@Nd~dhPSKP!uTrIWbGg2{wIUjt7s;|BQWzP4#_hk9Lqr3LSEXsP
zQ*H$r7*O+utOhbAwk6SWFLDrcc5a@JC{&cHw!Kt>wF^{Fv`rmRwCeNfptcUYCY>W$
z?K&AR170swW@F|P_u20Q4mmmR_s7!8>!n{Cc6`~OM{&cIRYBKJJunOMp>_))UBV<L
zVm_`#*>Qr(hLVXv^;|U0XW3-J!i^8%D$uk?ta)KKgmId)g_jS3c-zPZ4z<iA+vk34
z6OLOu;+JisZ$X|;#xIijY1gd$SyeNQ<qReby@VaUFZ(fGr05*XcKW#avS5ThZIC$J
zXVzk&8pjK_z0HOWyv5!~Qc)2HfM*UVOJ7eSv2q^om*VD98JY!J{;qj+*2LThQ-4<P
zwT2M>MNB!cVT2n?Xee`+8&=6K_Na|7WH{t5p!bhrv7&`e!4`RZR8;J1(zwv)P%D{X
z_zi62K}YyL2_-dx08)<}<<YbK5GQfL*HS9r;FFNo2dbCz?_}Z+NA60*2k_#7N`LFy
z@D>}=5X4Q+bF?Wq+L@fY4kK0d6ifFEerr%pCEgGW8lxZnx!iY%t%%^UA5w#}H+;Lw
zS5fnzm*}m-qLcuzted_wN~84gJ8zXmqr8!Y`x<Q+ao-5+Df?R;Y^BR$cU(<ej4TXx
z(g+3yIy<JA>i+I9GKN-%|3@kv^jt8V=Uk`~Wy_*|lMfis+%bP}O!{~O4YWi3%tAQ`
zRw;>977tf=T(^Q@M9#2@<vwWxdc&SyjT8U=kFmFkiYrRjMS&0`I0SbOu7Tk0?(Xiv
zg9n1UySr=Q9^BpCgS*>Z>C@+q-hIa2yWeWPRMnVs&EMuHe5|RzpQJH|FzG#m2LuKj
z=lZF`7<B%!Qvn802Tt{DSCjotvE4=o<OK}YJdr&1Axy8K#8#C7L@^YYbhQoy9+XNJ
z*!fQ{6j~GgKajW-kUxw2XFKi}itRUaT9iJR2Pp#1!weA}WmQnCmA-)GD~fn681Ls}
zqV#EKLeEVncfc=`7EskO^CQQS1~g}`LJ2UB^2iJK0NwieH7}@t{uN3g1jq}62~OT7
zOBrkj=J-)jY-LUDIwGY)>8T6>q*DZNohrI+Fr*_>DtQ|x&QRq?$of&mx#}ga<>g|b
z#qd#29?7Kfp_Zl5$r2@InM~HnQK=>oQMMW1ki9(>)h*`ZYl|t8)Ti6}u@;M}a^~(>
zRGSjQ@L&f&qSx6nO1Da_Mmf2oNFSZzw1~i_#lUQ2?802ZmEx$dI(*T<wblW_BA?rE
z`)Q3%UFU>8n}JBDwKc6knbw}-LRBIEVj^L)8N$i6+DT5Igwu{gYxl_C0v~%*(E4Xm
z%w&-}7u6m4Pn6{Ngzi^8I%hgt&ztY%bi#`(cHPUx<owAse!AE48oGxkhz2c44()d1
zCK(Lr-~}dumr7mb$B-=FPK~WI<1JQYVEkqQ5JjC@<Zu}M?;cwsTNKZCHR15QU+Y2|
ztk+6|+D{v_oa<PD8<ifvTwIslKB~g|b;q|Jfx?|XN7gHj@c?c)<Eakg$lpfz%UC1h
zg$StHx+CplRmqnH6<IMBtnoo(tkG~L)X6W{Mx)dAeHEL3h-;?8zYXy~vkofBjQq&z
zyA6->Uc~_0RVEMa4zDdQeJ(MlFY^fmZ~Kw7SYeQ5xn>vat>qRpDmOFqM)cv63#kQD
z^FF%y`B3s7WGHS?%>XQxwg|9#b&h$hJN(&w$U&rVojb^EJS`Fxw6dcZn*jX9D)Rcq
z54*?9RI&_J!=+FO<*4dQjb;$PVy%+~bTt$zS3N5_^lc}83TxH6i6x$W-NSp%rZdU}
zi<i8u`9aapmAJJfz#VwFq>er7;CDI}v%6;njpBzLyj-Vs4b`o1uZUP{X=^vK|H0;l
z%%ezspQ9xYUkLTXF2n~`{*pTDuzqj9-LcitT9xAl8Jc5WBaAm?XRVfsGTj?*eC;eb
z$qRJ@3zpL2Pt!BCCS4SP3d(otd07CD&vIh#2bg?K4N?Toa*J=;sFq*5fnCPz#nS!J
zydYG4i>lhf;axl%!axKZrE5b<5di?=ZQ%1Tie}23@@CBwcCBR!hw+hH@y(P#!_l_!
zs5J-pdId3lN@{=h`8Kkd;2|E=Kp_YI`b4`z{_XC!xd5X4lO;h}YfkwzVt=3hU6}zt
zn>vnFsAO@d2960g-<hL0G@tlCE>3dVC&0sJd*+_Y9)Dd{Z;Ka_Gc=5N8gpwPR)2%Q
zvKW;Mj5{2>G2u?p?aMKmEjPk#PjB+sW#}1sVCJ!Bd66q5?HO{9yCvEgx^N!-+2nJo
zNKIqh@F}xSH8Bx}kr)x;CpZ(A4PfF1ntnBD`y;H2xy8uLdj$)RIMp-sgPA)SPuYdm
zKVa~o|HYVlWA1P8dAPR9wtn^SE0|&+izNwMn<x7S&@Bjm%?Uvs8$aGvrIE?$QFP#3
z%>Ar_0;n5JP?c?0lAO;cbpbdQ{!sc;G0VCGC7GGT1OT}?BLMA~zNV(8T%v^V_Ro|M
zG@TzTT&cpEK?*mI)tIZAjK&A^Fy!LsfK>OtS}-#>$xKFpU=1I#5tfFZ6FOh-(q@JP
zbskQZ>O>yu#yP`6;#eWRlxM7aUXT68w-B^xmHSH`0S7u|?XO^pg6~Q}_LqQfHENNW
z_xr1>W)HktNr`?&F<O!BUz&yKrWN@SCS1b>`zKkJk5{lRFtSJDhtmac24F!y8=RMF
zO@4=?aoKggveiwSOaT@W)aDm8>hN9L*#f^{2(hzigEmbz;SnleJRKH#lK!t2K<Ml9
z(ecLNFipS1+Q&)g^9@-!?nm^~WoPx(kI8JJ;eP~X=yA!hkQrJYBxYKbRQ{T3n<?4a
zGM%pW9p$K#$1AwsSxd2SjLxY=6>)4-6wZ~o9!vZGf_BYWu}dQv_WR*+M^GR7wt8K6
zn2=<LY#YVRoI!PmIoYN+e{9g=WFZ1}aC^LxN#Om!vfQ?peP+gbvhL*{h;&ZRmbc-3
zZ2I&kPb6M<BKXINI(;LL6A=l3zIVBkY`OTI^OA!zeqtkWv+B4oZ4~7tKu(SW0|p;_
zzu}6FUcJ1}b?&*LE^II{Mo03KBc>mLU3z!Mq)Z*bH-K0&;^q-kO2qp|VxHK2Zo5a+
zR1}{@InhjEM6SRGuCUF7gt?p7dxYoc)Wp{PIV}=%<#$8NICT+xEwyQ1(&fOgyc@$j
z%Mw>ggqs>ly7*yg99u;$$sUz=e}Bl-uToZW!Ow5c;H*B~RS2;bl9IPjDXoX{O8xo~
z7g(X@D`~l$i21o6j)xeCqBZ5(Qv67&Lk`nF<FATenn|PjuE;jWF(<u8Ng|#j-!0dY
zKs7Cyq83vR=5Hn^e#Y4dT+X~_7}jJ-vn(6N&Q=xrT7XkM)U3z~e|vhu!Rr0;&A#@J
zHNi#?R`%WUu^mh{F$Sk*gZ0p}f9lh>UV5WD)WJ%f){i{Ai#Xlo4?YuoVqk@m!!LJj
zLt!6L9_hQqsMdwnG0av7t|DY@rTz+%n4GK%dtkf@?*(YC379x_hM9sXkcO)Lm}UC`
zdBU=I1G!=-n4~-F(ghPku=r_=%&SLI5}R2xJj%${Em*bfHC#Rf6BSz|4^T2XNNI7e
z(Qryylke~vIZ#TnKXBke$i94c51;pWMBFQ~GWx~_igUlolg*?2l;Ckq(5W+F^xRfu
zv3eTy$s>zOO;KXpo|-#R7K|>k<I=mm+#RwH8PF3mj9odT_kIKa4gcNvQ{A%okQ5)k
z$S1S{C%fU}NVkniMqB9Uw<KM$GCuc|Pm%c{PdJ`?GLZaKkVNv;4(>wPx{u3;?IMbe
zFYSC|DXnUZ4!7rV;&BvC)hQph5l&WO<;0;Ut9>iJ1b2tj`K*_H@XO5;{Bu%6HCyEh
zVY8HJqLkreU{9VUi<BFDq2Kad(M+?JIpb5<=m6f&1J1%;c^6x3x;LJTJAy%@z&7gc
z2bk)q-pj-*+a(KdM2LKl`6Dr>2i`BI6#Oe+AB4Q9j@3$*a07zbRxvnEM<*`JZg}f^
z-j30Iub#Z7d`ZTHKH;EgzRE+fPFh~^y*=)ICL<6e7=biRwv(y5^$MqCad7+T6Zp**
z=8CX(KDbMd!LL}@Jt*-@4ORTI;rr{mDG*#MEM@QO(eoO}V#VG7dJ@H%%S9O1{b-Nx
zhj-2x`|LxL*~|A%eGgn_q7Xn63u8~YM}p<5^{|D-|F%@hV=|4<24hd`rBiQ7%xs<8
z6O;^SKdxNeh6=D+Y_c)Uj$t*Xp1oZt7S%P~l_$6_G9&@C>j)Emd~uE}ffDnol2KLY
zgq5PW6P{G@zP+5!OXYr|x2s}yqxc6mrxE9MX@Y*B^Iv^h^)4q)#*`o2rw1mJ7&EiI
zHkj-9+V9py?J@Fo(!Ow-X?wJi7Z;c3n2ts+Qd0@$*LXWpOi;cYw$Qj=7lz$MSW4^r
zlm>u%@oxw(*HDU?@uqv4LgP&H4Po_FuB9-+z`i)ngZV8Vi*yp^MrcKadG!8RsIziB
zT9!zoykZTV{+y_0)Sn6ZV5BKy0O)`vAa%%op6aB{f{4uI4#JM|dTCES4}~5ir{($~
z%t%_eP?m7xL7H)}<~-}UZ9c5iB)IzF1Q`q&{Az~QGv2oz$9R6_bzREr>ojQq=Juie
zw{X^;y2rN$5}iX+TBLou<fxG=3p?uZ)(&lw4{t$jb1#weNioyLFsJSh5fkNC13dhF
z&fF}_q0eX<8do36$b_@d3t(xmXJT#>>o#2#FxquNo1mM#B!7#uFr*7@PX3?hTR+|M
z^z#OIYOPa`?e^Yx99_d68!vW!uss@;<jt`v-nW#>zE2ZcDVE}`wI{H>+@xgoSK0Ae
zBxGq5D(yUs0waVJOE9aCdn+9frb(rdn)9c!h0N|{w3J7dU(TO3KCd4**pVMHW}ww;
zcWQO!#zqhx?v(e4cYt-^nE%G<3T%eNF}W}>1Ty5NaWQzYW?yP`qqxH88LTCB4l&Hn
zzIKoMPm?6dlTY~u2-%Ugt*2~&&j4NoK9}mryPtVsZmu9BgP_f0o7;8ox^>SYFQy&>
zt2e?=6vCj9NenLs_XU2XF|95(xJi;b(!X@OMKqm?r6}Gf@#<+&QBlQ(N*xi-3av(r
z9g69z8oCzEyuV|Si#dKJ05N5C1DW3KnUqf@xhYBjh9H~%P2t5_1lpz&GNstSbS$+%
z)7deL*9(S^3bpCWDOj|&^PI}`@@8n?T~VfcsqgdQ_QhV(hy~d%w3T|P&8SjF_p>Fd
zKBy1LSSs}shBMv$GDQXW2e8@%0P6%cdTl34YvJHgiNFe(g_}FxlyMN54_%+^gP+Ak
zNm02R0wH%Y)z46UYshcs{kW7fd~Zx4rDY29VBobem-sq*9<OE)@~DUW?N?s+GIM!g
zZI1(l9{y`H+*xjSTJA43Wx~8`t@Sw!yq#(6)mCmo@hP-N;9_9(%dz(xdg8Ub6MS}z
zfKKjM>e@}dqF8ZIRi}o4n)Cvg7=Wxt97}g=fT6$k+nbTY4C72X{Bix{lST1qlVrN>
zyahh>Q9V>?=-orK5UU#bVXg`_J#+`oxD~2);ayz9s1gHwS?4=DOVn)W*w=5fDr(U_
z^2Mivp>jhxbjmStvN>Zbiu!e5EWO5MTI|OAo8xP4jMi*f@m^2yEqxAqesi>pF#eW<
zi7HvqO*Mr-i^V_xdB6Vt({$~7doa7hF3fMFY$55Fxw}ZP3{K}<s)MWn{`IWG7%{@U
zBt3WEXMM0J51Rl@i{_tX-AA>I#Kgomn;-5&zD-w@RDn%BLPIg7ZR%fs;DXPjT+Ii2
zXtdh8pSE=8skK0;$N#1{D|3EbgyyZtHue@AX;WuSajN-%@7s-38j>b5Fs<RrSN4I>
zB)zm&ak=pX)8h6a6cp>8*$p2u1mVyA(!$mIEx<!b10&*`gb~H`Qj`%a1%~|!$|i0x
zM$-Co(~3XU=Zy}jU$vyR6GMrvg8h*)pi5lG?{2>aBX+?qjCspGhuh2utR4iXxL)n^
z+*{cWC{D69yj`S#+&$NtDU-S~7n_C3!7imUrst?-7)c<~%|HL#?l5Lt3oqdj_P})#
zMcsnF!06)df3pC9NqltQ_}R7B)YQe`Ekqt9mH_p0UeljB3Sji{*}R)DM|yScjKzLB
z?PtlhK?Ym3tVc6-AM2%IFp1jIu=9gl0-xovks@p+sAJqmTpjPH09N@Yt${lx$Sz7q
zljdhWsQ~PE-bZ)nHRloi99i5^Px-OX7ouWPs<~V1plRTyTmBc8`kb$CDvU=T`I^O3
z-x`N^hKk$VH__`B8EjT3{n{TGNtqi77jajQCpw(SsJ3A1;BAm>-)09Y;P+#@#IT`*
zcskw;8bR*2pU@{P2GW$C6FFv?sKN|Mhre`^jT#UL_|~&#&k&=~7k%+l<cR1`4BsJ#
z6rI?=9K(_)%x~07IoFAzPY{i&l3V4I1Q8kunxjqdan27vCb+Uq#u#D97bFy=C4R*9
zm@Xh?gF)Wz1z)jv3)Gb@V0DhatK_i%9o6yX6|H2y3cG7d`0VSu@aj$;+<^G?&jc@b
zVyW9YVssX%M%^1$1n!b5WY0IJrH?wdmxw!AoSB25Y+at6AAq+>VA!S8zKWOdJ47(@
z4rV{%4TH0GwEbA+c%%SUE0eCSw}R{COuw0Dn!2J+Cx_6koxO#*LnA(`bjhX8s*OiI
zU5mVpp{qhyG{TPoOC#r<q(ytgALnJUjm8m{a{}HR*GXE<J%%60cLEES!G&2PNWlYc
zOR#&eMvOosg5ueEmh6S(ud`Oaeyp++kN4ImMQYkv@)X<aLy6a@g6A6XR)$Uy1_dfF
zalhlPl@{i4;lLkvye|&-C1)iRO#pC~xEd&|QMHSaHA<r)oC4{&0X9YO_f*MHZ;$+v
z+N-^tGVn%AFfgW<ztESs5~$1{+aaP1<D^j!{bp)3ZbPx;{#ih0^SySi3t$bw@@1vJ
zeVtUk#)x)u6AC}aiFR1CAHZK1Urq}AM+;WwD_Y_U#<$t@FzK3?zYY^3h|a=K*^r-|
z{qwKzv}V)yoC+euwK*9xMhgSRAZmFnhl@=CrbPfxzVyjKvuVTOSPQ7;M<BBi*&*e9
zKWWm^lo=Ne2ZDj$?w_|Edug`1Fk}Un?u)#ll_n*)^#s0xoV9R%A<)4+iX!*SSClyI
z$W%FMs;Jr<xLuFA-DC}P5XHm#HFbBF50`ouA!PFx3&_efGE#^94D{*i+e;t7b=nn=
z^xj|=&oEHxkK=B%;}c%cy=P_#mW+fIMPpG{Ol)jxi^ZU;9a{yT7hkno&Y^9+r5<_v
z$Txtg_afU#xl4Kt@qyxJB;U(J5WMZP<pK6`q%eqqCtfisFqlZ_IbL49_%<+ALwh}~
z;9ArooaIpj9Q4B`UW2i!bq<>?4d<7}M4n*T#839&a1t!u&Emi^r1(~Q0`!ylWR*>_
zl-=RT)101b-3p|D;)dr^c+h*DM~VKzdHL{IE|kgxN3d3GM+Tzz>lYPt=D4VwN|WVG
zZJ%cwln<ZYh2#<FKJp8JTvr#KZgKxKth^UQT>`Go<Yno>IisV}Er<Jnc0=Kixu1@j
zA4b&0(4x=VF=B=ZCN+3}Bz|7dZD2QmR#Z?fuA!Y@U|+OSo;0-3Wvh7F6p1bMw@I*j
zUak7m6&lcD$)&ZmsXK5!Ai}^+wD@fN4IL)g)tryca2{LhRLm|d_#``H@Wx)}tzQY`
zddLkv_zQmm;M59!t^ZUlj5XLYv60&YKN?RmqN$-NZQ(<kFfQnvZEN4H@63lM*KSuQ
z<F>ZZ-CkyY`^{yz{^%9+aMJy3p_cATcHi)}pytz&k#f2T!mv^t%YHZG$GMf+mvKrh
z^F2Z_H*eDvnuHq8Ik!&y{1<n&&Sm#N!>_(Jqnr2eEFbrGHTn^Ly6ir~G=g=F7uqyz
z%z?>tyf3kVA2B8BjKP`4qihm>#bYPb0ejIH%g$X`-^gz*3B+7i7we>#LHkMEl$TCD
z2qSHIH%vXV+(4tn$mVw|O&4~Pq{ev3^Rz0t3}_AW%7RNPc1wtiervW|Q^4*!`ZV7|
z=)F`GkLd_!GaS_-V}`z1V1jTU&x}%SMh^(l@1cKn8KLUw9KQ{Gij!GxNmsd9EwiFx
z8Mz~dPZ@`eYan?&(cx47rubtgMb~3r(nG+xb409a@1VH;vMP}aDVoK@*3{Nr6so7}
z+>Y$0H~2}ytqIKZBz0?U8yoyo7dcoQC8fw67q)h7s1#SFrG^QUGCRP%*(k>vl+MLT
zMgkKxgWR0y#ftdqx#QcQtZ};f$XWNOk<tF!-T>g?ps!Lgx+KI~zCzo``eC@9j~HRh
zyqleKZ`PHL^Sv3%38D(Za1lub!jK4k{=WT1{qtuv9rOCiPED(N=LJhGEiEgZ3g<8_
z`>4_{exE{r5qq3h3qmbDW}Ulnu-|(*ZtQx+u@iT>UAZ})^E|%+rsA2GToY)X<xg*v
zGzkq0_=umO?&;k6B#llL2Y4=ce%zFt_t|8o+=qD*!*pIe$w_J*XS&RCV^J0?Q|2@X
zfT~O^d*V>^o=;jy^w#f_3hCI^1)>m2pasyZ1fv4yc|t)R51;jhl=ax`*J)(bCDTA6
zT_pM_)iCOiv=A8JVL$)7$2$f{>N1)F#jz?ee3wN7?-4w@wOyv8<yO~odUHX4|5}$*
zO%1@XhhN*8`f#<mE?ctEW~E`7_Rnwv&By8Ov$d~qXEF)*>$2?Rb6I5bl{zhW%tUI;
z%vwW%w=2d&(+I=qE;ITY&5l|_V`K9;NMT`;#sMVvbb1{MC}e_4Sy8Zi;HBj{Eue%p
zy2n~Y3vXc|LnTS0t8f)f43GQ6eCZU|L=xxDFw82u=_{9`c=BIR&I_rU`{O$Fxa_ue
zlIH0kq%&2Ls`W-`J-%mK+{c}rQ+&RvH~<Y1hs&^7++O*jlw?Xu@19`d;}|A06df-M
zZMChxHGF=|dfLXY!L<<~1O*@MBqFWd_M?WmuV$8*cHUV}LPBD?(}!;^&}mBe?(rHE
zRP53@v8f<?IaR(;XoVy(WJ!4`L8S<?sXI}}<f!YC6$PhcvcHU-Yi|TZ>I72sb!k>q
z=~QmNfY>;RN~-DOSeC`pR(1W{j&g0ZK8GmAlpitq!VfXEis?z%#?hr=c<V8wu#`j8
zXLm&#Omn%$jneacE^%(P*69#WxuUneLN)x21%bIA7PDgeO)$;AAM%Rly_h%>3IkFQ
ze))+pqD{-j_UC4xgbu5xh$hjCll6vVZCxxmDUU)L{d#qY{K28f{M9fY3#md%#&|SH
z^>X>fNhyV&%}q%DC_0XMt+fzNbDot~l8XRxN*;1%#k_A<d=<US73%9Vo}{~TKu)>N
zT;0ihK|RHHgV@$Dy$<sUwqLw`Ixf%;rwqbyR)t4W?%xzOpj84&gfd&VHex^P(Q92R
z?M*}bD2Rz4&&flM<9!ty=N>K+*(;=!i|adfJd!>dcPx^4uROkGX}frXE2!>moGKU>
zN4c>6!!=)N6AJ(Bn^dD)vQlBCkt}b!v!6GgozkumLk_~>OkKoLkn#}H^)=+S<CoZk
z6f$$mf(o5%&~Qu0MozDtcrqKd#I%Hk7r7nG(J?!^{~B+Q77~u)cz-`^;~8D*@r=BB
zMm#-NWqMAX+}n${#KV#OD}Jx<dCnVEMNo3fPyLa7b_)G(W{$>&f}TcUwmVvoek4Cj
z%%xG-l5URXq|5?_glPV!bM?<tm(2^g`GVi(?r+?0dhXHN_hdW%B!=P3zinu&)L4RF
z48!fcLXDlnN{{imZ?IbLVYKXH&vsr=lK8+0b4A7Ftd$2Ooaq`J1T-Fm?e;df>-Alr
z7Apj@qiu_66Fq5a>*T0;AIW4qOm@k6jvi0h*D0R2t(dFvbRj=eK=$&h!^m!9{ri}l
zOti@H(K<g0EAg=c1B9I3ds99|;&7V^{$9g@ECLR%rbVacW1$!bW3<r}DV~xS2b<Me
z>JBELX)$(WL)iqbo`6;5&ADJDy2UIwj66t>sL!Y}>Cg6Q?At|+B&kz`3AmJYIh^zH
z0v?R|wxMIT_4WTAd2m9(diy%cL?uPF6Uph>KKFhg&m^ZO_#(HwUIav|>MCOWkg(@v
zw3YW^k5dyN5XY9BX?aWmO#{uTBJb(Xq;%Kd`G!IK_tz=Am(lbypD&ACwf_irypXi^
zmtDoMflXLH8UxFNTRE!M!*DQLwcRR}F-{Zd?7V52BtjIMTZKz$sL3@g+^ro?V3wY?
zFrP3=M~2BM$Tdob6DT&QZ;92Gy<p{%L;XmW9`{@oRaA*95D)1tZCH#~2K0`csITCh
zUf42PB-}JYS}bDxca^DBG&5-u?oOL}$*`TKQ?5?6CJw)&n-s(rmvelFOe+3kj_*A=
zWHx-}mr<+##5G(c+=9fbsM&b@WuyH$SGLG}Koy_wLQnP>kE)7x#tW%nL(!@(T$Nhc
z731JIyYuzbn2MG*1}NB+W8=^gC}vSB#yFUmWMw%mira4IlQ^|gS{i3($*7dRWqV<t
z_WJ`Iu^dJDYOO-Kcil&o!Od=-0-aWPz`ME1nbX1|B{m_U0EAQd86;+e?gwZd!7DGX
zEeuWg@G1g|Kn#RF+-j`@0|Q4dk>7H&?)diN4N#~E4;}dc#917@oTX(ct$H=T7G(_%
z<_D{Y_J;p8)o6Z#K*oHoP`K`9O4&~1v7sWb+xxfIWRViNOPkp=9BEi)VK1QAx5Se4
z8e?B$Iv2c$fbRe1vB`9p;&Xcyi4x<C@A;qUG=W{=QMU*vk53lP!gdJ`nH%<WmX?g&
zop@8I9l$3|p!R&6$LI9yZtGL*sN-MGWEMpuqPc=Ixj#aP<smqYO{m>EWWQMp|F(ll
z#XuKx6}whzx{i0q<OCwYQx*4A4803VRu8bS7SYt^z81pfwFr$rrH|FoVmrE^IT(-s
zed@;iaufF1mq{=5x^W~CJ#06ag<<Z{^JZ|3GlNR0P+UPFMjFr?*30r7RHve)i<QO3
zFUZ%9VV=`7kjUX?Id(gh^MS10ez+7HY;&VA`7_BI`dyt$LV_1<jWUZ{I?Xx=^v!YK
zGlkUxbh55Pt<`WcyLB+GL$T6$9y=pPSO62=7n`L=Mx$yS&oaTSSycDKK4&zGPj8&l
z3PeKRFYfMM8rkV$lQ~Q(a393!Y)PZ0^Hrb~4by?tyPpqrFOB=r+^ch~)pcP{LRL1B
zfX97sx!$V2_0{Y@s2?<`A<F5*jyn@I1-0n^YnkDT5!MyE#}$u}D_P_j2vXP7q^jy{
zRnGLb@ZB+!`<JrBoELJq!8$HNX=8pF!PTo#-lV+PE3_#{m?{_Fzpp8rwS-=ctfw5l
zWKrdd3GQ|J1(g?Ktm><~Wkr}ufr(;=S5ds}>UI*MMPL7OaI{JSdad=HQ-uv`M3}g=
zb~*)ZgJoRBSGvM_o2rnIm4zx*V^O__@ehbes{*7T54S_xrG!R>h6=4i;2SD5>O|SB
z7rROlb;v&|swz-?JZj?bsYA?)-6WMl)!*qqz1n#1s2U2XGh>*3L&l70YErK-sgX%z
ztpI$NR-9y{wL87b(7d~T+A^EVBb_2{F)}dd%~vQr6o;@*`wFMTZjT_@gd*dHbXv|)
z42{dGX(Fjf7#g<iWF{u&4n_3yDeke{8x8;J@AHGmVw3i&yUY6TO1FPq!EP93RW(he
zDY}P8P;jmW@L`*2QScwdpRXp2y3$lVQ4OL8EVwjT!;m~=aFh8GP!psHuS$v3ENT8N
z5q;YO!EA^-B@6m0+uAIv5_(KmK`<vYg}EOTx>)Px!^@?K^DLOCMRm$ZA!4TNSA@>s
z!tE+$IH{RVogOA87WT7=Nk|l?s4I@BO&mBx<IwVq3~y07lNY~LcrkHOh^G1W(<LW6
zN%IQyP>qE$DKIH2?2YiLH~rzckD@YPpTcr}$3tPIz+o4%EoaF1CNg|7T@W^Ho16n1
zI#W0{Z2{G9rUdQwu?4ztWAZBHIXEh6VJ}BJ41+Ef5ufu5$=*|!b?QlrT9q#6DY;Z4
zs|G=Y1eQ#^>c6bfzlECr^9YRt(bv~UcbCY7zUF!>E)g|WTbQeLqE!2_?qB0sH4>4$
zf&zKkb?BXM>@vy!S+PQ)pAFGj=wbX){Mn~Dl;VQN)<b%a8O-21WGa$yh6&U1SO{*_
zZOWW@OcHFKk3iH|F8#`6n(<9C#h*Sg);TR-GDSMj6RY6u^9O~};o*WFj-7l@v5wvL
z=M-`DWn7y0`F`U^?|#-0g=NUN<@y*&lho!~^ZU$|szfYw+0P1$yi^KBVHBbudJ3{4
zNela&`LkeL(|np?<xCZo*r}Yb_|NF#5(XU%_z93_$P^(-jqW9cZJHkpodb43<1tsm
z%wvwd)=nlW1;d<@E*Q_#*nHmppE1r7=gQb=(54IA;{vW!8!;>D>19(KYOPlqq;x%O
z0`GpA2V);HJD;l@@p3wu=YePw|FC`mdpujL5$SkklLJ!IR|`fO8majKm&Du%De}Ap
zm?c(^RI+?CtCze4?Bn8MbE+{hE0YMPlSPF+f#xz5&Y@E4zEb>>=&3xhky?`x<Lmvg
zC!Ef!D~IMyKR9KM#-YE0G&`Gti6YaBHAX?ZySw7R5Z!q(Rr@66KRF(5FpSU<{e6px
zYOGo$|20beTW{nWNQ4}hE&g3gRnpTEw<K69esrBQ->`AQ|GTGV;)&*Mo?fkeN=5zQ
zpHU{E0_zbMLJefotS1#J#dHcrYC$7lKd4D`OO$sp#otZ{$vsw?p4=B2ugN)ybu|fj
z`9(rv^KCOg9zaG?1epg=(8q2?Umgsnx;YwOOpM3Yu8AmujM8W`A9LWdSVi<09<R_s
zq{QRb#qg?Th7OnHTF;kj6$V%U#EVj)x#O5pk?h>P{S~oMK{a43YvL3idxZ*bB$Yz~
z$NM*}WF^dLGP7t6E!GGb&lKW^hBt|=<WtiWW)m|CnztR5!q#f79Yo>>0O-<xWS5S&
ztC4`%Xk<z;yeYY)GP8-uWv`LM3}(A^NfWk~_P;r0`}rm|`GM?KD&8e1gSIbC&GKah
zpI0_Uyt7I~oBI?r!+KbqpD&z}q)QZp?~*+Ird|RQ8z32Hl$-ATbohi55!$3M4&<5<
zlO!FA-lb;8BG1RYBxZx(kY2C13wmV^6z0G4I_#e({)6rnBoA3CY@=BfTHD))@#JY;
z^FN(-{|K<u&r%H)NjC&RQne&Zi8N!s<|JDU6jjX%O5`k{>8PUNMNC(@59l&noDBWG
z1g6iY!YD9lqU<peBiJi29p@XLiWV3!Nl?3>1GwM}RCG+5OAYLCXU`Qj)S0geXgE`C
zSPK+7L1-ovZVRq(8CQU`;nK<B^g(e=Esb3q8({=S|Mtu26DLnm+;sV(Sg4Dwk|s7B
z8C@%20#Gf+O=>k?uHfIJ=t$K%`>I?Ff}6GX*mAK*n^#ptRm6MG&;MbAh*J?lPHvLw
z9~@#XEheO`U2hpTU!4r(em6I+`o}*FHZy(N2fN195y7ybU(}0XBbSyAIq~*Vc|2m^
z@ly*2!>CHj%gA}@R=T-}+cWw*f6RQ6u-On=7AtvPt(OA2_p%WvVicQ@X!Op<eOwuB
z;T@9uppwu2R^p-NYP~uKdDDw6&SlhQ<sh3C)uJKiRu^i%f(#Uyi2pUv0=*Kylqiv=
zMoEa0W4eN+SR-?X5~-V;+gHrHlb>QlA}KbthX1TL=#YGQe~Hz%2`-^({OkB)F$zVU
z_1<x!wP%)ruQ%OjyGb$za_US?MWbL0(-BdEPQik56&Dp9KMzEuI-lkoPlDIL@g|OM
zyCSA1UQgYLA!6KHrJ14_xES2pd?z)FK0e_!@zFF6NL7$ZQ%uQKs>#V#u0LGAHF{J#
zf_VCc`@}_5L;&SF9?`X)CVSGGM=d+A5{U@yKM%u5N>j+VG;^;giB^qGJzI$2HBw3R
z%WZXB=^Rm^3jMOPb?0lXN#*J_f^q1Vz@#F*?fI;=MfN)a%JeK@mDMV;-rEr`dI`!E
zi8Hn6*3ef!*du_&aeTf1uu!JPkTDiZE|p5!T7CU<)S~ZyISSviiRHDmR}Jk_B38WA
z2&qzPG!mN@4YOkDlK=bINJjw9ZV~ev=L%bFFm%6IBK(MxZp;?h`Vz^RkUpE7{)vxU
zO8aJ@NB6(%!2gp&@vvY(PTSkvKpU6#(17Zt&yDDj^dI!a|H*LbL<TZ9H}9s<M@oA&
zO|E<2=07M$|ECD>f2yGmkl<Mbxt3-2mtbz|cWnQESMi?=%l^A>uU10|jtouwQ~V`l
zt*oFrMeASR+W%+GgyDS^4s__U_^yA3w{NRbF)Y#LQus)IavdtiB$#po*=12tX0R#)
zHXKqVrKO28vRsmYOJ&KJ12Pc>g{YxX-W-!iZEbD7kaJEXyVap)NqKqfuKzcxvf_Bl
zz2VBm-X?XgH8whtP^poEwpvBKV~L_<px(>lA2^Sm8fMTf7}nDG5Q8s5zT7EOW-JjI
z6}MgMkYO7zOhZnrJFM)!J5%XgD%)8Mk`7{j1R?|J`m)XA^6O@#4Y^do94CiDhhDwH
zyv@d5{yF{oyr1Ez_vKX35bnkc*%J63-&Qoi)sP>0ZTt7e@lNdoXjo|<d0UUuxB1n+
zC-b-Z!&#Z(k=gbVzkil2%Bt~F+J>?4oQKkncNGUtlc9iKkhBb1<eZ8MaFQ!}kT@Tu
zmvpL?Fr<CN9uvgxyTv4rUGVo>UG-)UKc6m^?f~)b=s=~k`oK-I=3i^J|7Jt!@O_Vt
zsJ}XE+JuDBy$UQ{{ZB7A3^usPuF$Xxrp0gk-i~1h!X>2pp}44hqQ4!K%Q-zdj9nZ>
zM53U`<gdk~lqE@&EyLZ`^M;|9$7>T2d*5wd(IJbV`vggmaw$c!ZbcDo>#{*#@;&t0
z)^fp5=qcY-))6J-$@&eTou?P5LN~F>#D5@pv1%Q#+kPiJUFTqt8Te(WmVNbpe$%}C
zp6|<Jvh~ExVbCS8%-7i@+@aYZE6Y<J)sb0e*v{}ukm2-jwuHTm4?%JXZ*R|k;KFP)
zWho&Op7eIKii}AK&!L{g$IGUgwA0MsJ$YEZS}R1zq7?TsoRt?Gn_n-ALPBf|CG{TG
zSN4^c6J?<j#Y~%IuYf$2yXC)j!-yZ5Y9wQriRtM7S*7sR0lo02Ew%9ss(_Vi<A*~`
zDu_I4p*NSMTEiGT`~3pWj3|O;ts=*M?7Z7+NjbT>iR;56KG%fbng1xH|E&W1w@2T^
zATY;qAfR1khS9}{WG|s4J81f*^L6mE*@eY~EHql(z1Rf)Tgah90|daAu6%w~&Ihy}
zAGa1X30m0J{mn0+ACR$HW`mQknBv-ku@vJ>;PII=5>NN%Rf8eCry=&C`u|L)1zyi=
zscp%n!5+vMQ?^)ygft=|BC)ZtxiBGa5a_76#G24E%2>f+t)CCSYZ=r`r(#vq)0!3)
zSlWa)<vF9!1=~}XqwLsj=Ln!U<e;!Jj_WiF1kxCi9QIR>MVZU8Zpl0$;}D~6n_W?6
z#>{ECQbQPq)594{k`}&@?{!>Z-~WzfmTB;J3SpB_l7)$hw{M@u3b_*}^*zjELf!Cw
zeHsEVbH)Hkkkj1S)33j?v{o>2ER!A@pI6dKvX_N|UKS0*$Z&_1imAfJLq>Wvp;00i
zeJSo@K>9J_WW8RfRqf06VP#uHt<9R`p~IkjM&z^GRom$GY|4ty-()=q(+lEJH{?Q8
z+A1r!888!J3KfdPmF)TxZi~9$3{p<O5Py`b3PdeXFhGS$ufR$9L8bTRtBh`Kt*rU%
zv3qi2o$}2-w`1%t|5CL|7ypWGMpe&kFJZdb(ai0rq=<EjZ+DPQKTLEJP*O^8oZwMQ
zWYD7rWVpYF(U;Msi|E^t@^d|v>Agx?yjI5gydLY-0v8YMI{BQ}cH<4L<VG_UTI|?t
z*2#azu{*cZQVc`6B4IDpBcr47q><kQqlnSa&`jpbHLkXT2#*;5f@1*XAyM9^Kcv6_
z%=LBq>uxSbmXy%2*$$)_(X=!157~K2Wyo=^b8d^d(gf)&UL6d2?JtF$Bis`J&(jWQ
zm#J_`8hmDvXDtUf{$&3$K3S|;-T{mRtuHsmmR<FAXdz<6h$P2KMa8I&`C{Z++!TAA
z6g)lKmSt=)CsLv9(?;Hc`6U(WU+%UuESX9)=WQ(?$G}a8)nTY<%BC=;<0k^Zl~x*T
zOhyvv+%GGst}S6L9ILb%ZEX@gWMpOM9~ar$$hqCLpu)O*gZTYO$U%z6K^0nF6y#|T
zzSk3c0su5ti{@~E&_`~6^pc%igC^S990T&{?z9wxTI{gxtn(e6>dOUzT7Ev+u-@C1
zln7Y~aRoBKWjF=2$K}|iH11U?)Ck=R@YZdE%c<0@B*J8FkXsNq1w}Kxnq^-TxT@k&
z3sfo!B;23Jm&<KdR&^znv}5VluQ*tCN0JDvEJW(}mVR|TzqjdRiHHaZD(^?kK{|t`
znbqsf{GNQF=gr4Lk#UUTsSZAg2<`@F+h6vgAtecme0c$^2@C$#Px#XtXp$@>ach)F
zN95=4)ymb9czMgB(wrVcHLtB!EYtmVN9BaKCF2XEnU_8fK91>5Mk>u6>TUhaY!>z}
zPFs?4_j_rLR*vK5fiIFNjckU)6YWhVcUR75BkmLJ)0AV9BJ-<lZgprruepTv9Ol7c
zgF#3e6<J~+clsugfnu}T0VIeWKe-K6TPDQj%eeQKC5aI)!|APN5~)Pc+=SIKNaKm4
z!76D7(RPCLC)mzH-2|_e`~6u(aK|aREQ;Lq_4QYYTVOYm{t`kUnit9LFd*!k#iV{$
zmpR>;!0D<|tazF3lB#6JqrKBl*|<wA$yI%Yvu7$iRzOYS65VbgBn_x~B~fgg+MebB
z7AQlc^ZO??MMaXo(yx)zb!KuL`^iQ(k59M9JtXvzgnYW95jX`qx<0SB4uG_Mpb|W8
z!$;DKW4(7xFEuoBc6K#jm`e?aQNC+_x3HO_h48@i1&G(0fLdoBoITKcjS#+F1hs2r
zyF2_nR|STS!&F7HPo@I44rrLf^DlrYw6alHs*E`-ENp5M4D2Vv&%Ybb!x%aytz2&T
z^@>~_d6PKd40(D4v#E|CyjZ6ZM2I9CZ`df~pM#CDVC<tMP=u&WWnPQ(W*_(?3?6wd
zx;`KbPv1r1Kx$Qp1Lij_{e*R96Ait6nlKtcA5g$e*~<znH;CzfBl5jm^pI0hik&|M
z$@?=}AcnwRi#Q&P&vAKx#G-wW9RraFD`$uXM^jib)-D8cXB|uh^Na?7o^@|Hp~Xm*
zX43o5WP_Dly?g@g$CZXZ8E?;9bZ3r@v-MV75|WbggbkhrRHQE=<Ij~Fg%V+_5BO2W
zvw&fXwtYZ20naiE-uVXLnQ;8T11PPvp!xSSZg|u9Jg;ov@i|@rF-rn)6T00CMW@+K
z)UsvLeH!$e7s1pa0|bj}Ga0vWw%UXA+0DlB+@21LaCsP~L(U$PQd6nf*MH=#OZ4lH
z!nDfIS7=evO1546hU?cLJcI|tD*C)_yXgshUhE$MWjEmW0TVZeLE@l4R#2V=1qG3M
zI+PJZGx=%x7@0oTX&Zm~Ff)I31HcY#@0Uxl_GbVc_|<ajO86B|x=lU`iT5G9f5cx-
zN-A!}wpB*%C59csK1QO8>%2`VH0%`<8VVjuzDyQ5=xUFuf&qv*ag>=q1g-qK+iQN?
zl49gXBjB<PBCxM+rtI>)KgyZ#GAJeO_`%U%z@wF61ZDy9bQN>~U^9g>aex<TrRrkq
zS&LMQ>v`px>)9$*o00GDpZb&80?R4xKi(b>xCBTPkkWfkBzjT!jiyEzHja?Nb-kPe
zr+YV7QgALu?-c#S2$uBfNzL5%I~>h&UbZoPu5MOvBYE7NqBma8@aBR>rkC@ju_faZ
z3;MzqhL5Wzlx-5D<PBbM9P!x7qn4XbSWFIOi(Jpg=@Od;U4LE?Tg_W5oH~TG{-N7W
zKX_>D)FDvR&~-m#nZtnAGsa=gPg*ACl`j%$((e@!uk?C)_-=2uS|DYPX3^{Wve@j{
zaMmNgarg0Xp|A>m1iLisX*IV*MsxQ|K}ChoIXGujg;k=IMU5P(cAV+5AnLjMpYMm>
ziwZ5Q70h+7!C`!@XHnCxqZ3DThwOH|G~F<=x1yDlT^AvkBbQ0<>xY!7n?n{U(A@S@
zJQyprCPlu5<3=tnEjV)cB<Jl1ED_pfn=n6ATS0-?(<DQJvcgzu0-D0%xCiH*d_li3
zo>oOm?~wP_A8kYI74t<1-Nx;|XLxe^1RR&{D<5cyaW{4ni@5LYAgaZ+z@(xwq2qrk
zeDOWo(uJ1VXkQddbzJ{3%wTcN4X-hU2dfNFje1m7A2K8KdVj*jMcTXYF<f&;Wbv>O
zfP+eEzFYNIQ;78Yzd#}4eGv+TkLi57t?C~E?qd)kF1@@fCBi~E=*d~$x0~4aB!+Id
z$j|(kP-nKjhm7IVp_lPm4WHa;E}J*+y~3+KxCjf9B*>Bt8_t+>LQax2c7C$b4)h#h
zFVD`__i3LqZLR`}8cySC;FJj2fmtSo<0ebwXLh#IIc2d|tIH5naE$yJAMsk>W!Dgc
zDz9q|xht=;UTsoPPjeipXk^YhC8e82v|R>CRADyv2w$}oZ0>Xvd7WmsBzfua7WoY9
z`^rOh40e!|JJwM-0c6~(D4&-+iO{jse2uD?v(|Itxl$EQLblVkr=v1vw<}{Aec>MJ
zb0?#G@|!4it%FRB5pTe{1ILkzt@7^`WfBViPOkV(hmf}a_d)tWegj{0hbe;~d<w7U
zyM%)*pLL}%I$@z%O_q{B7{RPtFoYPc9L&r|lpX<b-cpDjLq_M~*4k~>+RSoqUQ11h
z+Or=Dt)qBcDoCLFsS)6gcWX!92<E+tDAa}|#GZl;X%+^Cw^i(K`_CtHe(|4NqYCYR
z^*+;K0*p>Tt3L0q?gpa|M)TC{><ikQyL3BU9uXzzRj%>(nQY*Kr1|XZD3iT*gEeAN
z1TE>N^82#C5Rv!xfHGJZ&6rVp)#AIXdSeq4d6axeSj14=i^T|098PX#tMo}rj!b~^
zAOwPXkh{;B(=y0nM>`g3Uj^dY=n{H+-{<{VPbG)}ZO}v1T<_Oj7-1ni(U}00iC}Tf
z?>fd^ndu-}Bn~$DWGt~AI~~6gNY^!<Eq^rbkg#ZsF<1YcZfHVUzSo<$I94*R!QZ;h
zvHTGg(6XX;`4Y(A&YHSI(=)d7y{09E?zy%NRaLESGoOM7$0N=-1j-DgVgLq{CVlhn
z=ZWoX1<TE@Uw|!RdN3-cp7*1ph~LDVTZ2VhAqJ!;ne&7o2w5!n2NI7{J^dKVglGQX
z)>q+Y3`Jp;jo4rF&0Wkcf8?+6Ki$9`xIf?Ngf2b>pzS^EAi*`mQ%o<J5t5o^IEQy|
zAEbNC_Fk~<%o#>?;(ZUHU$HeIaDQr<NCl;9=pe?15vCSiKfI(s8$Y4>SWUm&CG@gz
zInNXtAJf>G4piQLw21Z*bSTBUA4yApL!q#0tk5Z$(PS&KI2Qi(X>~Ma)u;xj%HG@^
z2{~%Bm<Q&>Y+9~1%9ZSdasN(B7Oh|ytH4uwtTX#(IdPMx8U_tbi)1sLa5)TnVGMef
z0B@Mag<(q;TQ?ZtK60t;KUz-Ri~>43iYyyb@dXvst6%oQHsYJscgPQuTMIUan1)}R
zMU+gN)uv7J=&Znfe{;vC2>Ax1H&x?M(a_tq-zH{i8S%!;%&FcHLcU!kb(#YcFE?Hw
z7rq|!L!9}$$?YG++}t=xX~TC>u1d|r!)GRAi#fVUC5rR-uss-2<BaV*`&r!XTeoVF
zu$ezG15;$~X22tEw7}6gf||UKJxgW-GXS4kk5rw~18@VsN&Q%uH?=>nZZUp<YN>Hw
z@5(v*9BSNDSPWO_8Le?#rgc^?j8;`ZAQp*NlJLNfVN1PDV#8$B3UeBzrR%nb&hdIP
zQ_nYS4fwHeHoA%*&{g>OA6h~RHjvW?-oV%ph4F`pWY=nHKq!XNX?EDCWBPj*1KKE+
ztX<_(yBL+kUi>5mf)Eg+fb)122(#@Vlw4B_3oSGP{R(&!cW~0eBkWMjQDC$^bURY@
z@6q?F<O+h6DL@F*HO#-qG4tpqo80i-T!|Q3C_N}-)Bm8)+W%rS3)YjS&aKRRfKO-S
z`)PU19|0}93zZ&SsrAZ}Vdzqjebk}T>f*lb3*Mgc0-yMiOT|3T54M$$gl=np$aoeA
zwG0Qkle*u$o}6Tod*H#y&TZFPIQm|Io(A%s9~>#z8`P%@$(Naeg7F>RBIZhv74jMu
zjRFQzEb}Y=h7|o}44E{yqwpzLs<Q^8U%8kY5z-ZR@UJW_-0+Zv<Q)c|N2!VDPvkN%
z3AVmXLq9u<iw94&k3FaJB{ZM&FE`Va^fFisdMcnPGI`kWA&}A6{1VAQmFVd8+;lEy
z4uOsx-?uCukIHar>FkM3uu#8$v-ql_4ilnOn0`XmX}{x=^3}>WRaln-NaOK2LeF2O
zzhe&YDN<&6Keb;7x!;{M$suEsI-idv$oftf*Xws5WiMT(AIE-#QyoI$qg@bautTcU
z$t^DzlzC{|B6I$e!}FVho-^h?CJvG6w7_n^y9LBR=O%*1t!d#6x$kq87@u_F!hFVb
z@`uN(idy6D)@k6iXySFCGg6FH&H*}Nvd~&$ADA7*H=ecD#8445O*uL+?=BiaOBv*l
z(-Ab)cdb8m1cO~;1cC;WlbFiVAip~Ok*_Gp>ZsEAwuE^;lh|y5%)dgiE0S-$WhE0Q
z5v@Fe(NP)_HZ^2JRyhEx*s;4tM0~Gv0GJACXngz8JddEyJef>q0-hw(EJF<X=o|K1
zCMHUz?h!?wARf3p{3(*{4M{}5=KXwn3vEqIoLYBk8?u<q+AY4x*<#PWAz!IM=op6~
zgH<kd85Yla;25HuV#CP`Nuq-ZUs;|PV7WKm%Ml$Fu0bqDlE!X#N9I+_7V#S=ez|&I
zrs;d{UDR)Zk-&OjF7{ghtVOZ@X$1iAoS2K2sp?b0+E_)ad0&R<nL9wYW_;*N&JED+
zv85c0lBN%&0ko9zP4kS#XOX}Emgxy>gaLhq9RJoWmQ76?nb^pCEt5a5#>R@<QjdFO
zE0ckfde{ZnAUvXA9;eQlsRd&b)o?wnI!@e@N_PNezE}61?>hZagbcp>O-HRk`ft&<
z;Vyif`hQy*J$V=F?2lJ~ljWr&Qk#B~Mz&~w7h_BZBKt&HWy>&ePtF?B7&0hoP)*OP
z;OmEJQJn2B_?isA$$z0{qHB^Ir)Fo9!rLSHB7Y*DMApY9suPN0OVBxr#v-PI`osnH
z4wwdVjYks@{@4Tu5QuYd56S8scgt4z@8ap%zA<ahwh*Sphj(XdTF@qHxg~1mFt@47
zu0<Bog1C)YujSs?(G=EAw_Uw;1BF6e(OZmsE2Rl?G+Pgsq{^+27BeQxqf~j9_xovt
z_anC%u4k&fSCD*-?QZsOkCfkphkahHQkf$dd#J`oQ{Vt})!iwJ$tczaJ<q^QCNPNt
zER|&{o-k!|I$vE%F6tC<ePMaL&%SlkY|9+1X0kFsIBt0BK43qt1xb-pu*nX)VvfwF
zF))wIxQw374@f)@M5QKu-!g8?O3yA)xl9Gkij}U**)FXIis*Op>pxs<J@I07z8%W>
zlsd}+Jys%c!(cTQW_@BT>#)}1T>ty@8j;CzMn5&xE<!G*)GtC&r|s*mR;c7q;vdyh
zl{OhgozLsr>VqkeuviJJs(TrvDqO1K&KhfJFu%yQ4&Y&#IIoE|+CLvWKDz1j-f>HC
zsiE7(mY$BS9F#9Iij|IpeYI!q0RAVr{S@4_cyo;bh6(H_QlKR^x%xUSnbB5&8^iu4
zP8z`@BVR}?6s;7UdNmQPjGK9^34Mgjc9~k$JO$jZgtd{3$8Y;iOWenE>-Jfr1vYCf
zDykKldkMnw?E70yRe$>w0I>2Jye&XVg|uIkB38%^8ru4#d9`TG?Rutd*1;Uln#{hZ
zOJ()#k?js!o^4QUbV#vi6wm65iLEr2(s}aE-lLKaH8oDvSc0qn!T2?$&XLR}j=t9(
zn{jzx80JDLyETkiW@5`ozw14e|I_qdW{H-yyuOaT9%B(g<QMlG+u5Ru@{Z^GD@vRF
zrxb>PU5h5eb=-LmA@Z@w%1Mfu1roh^voy`r+|$acQG{-a)%yW+qdeL+E8Xn|)&T6o
zewcfIKlpXx^-ggRHgctS+>;E?C)ZzsLf>uSp=9ur%sBPC!0IJx<!SC<>LWftKT&ey
zvcj|PdLbUHr?%L90@&$`cCf1R{Y|Y2XP!?b_scVYM@MBy*zVtU-kjz~#86#FQ~CXs
z5dz=rd5jxh&#Bg&8paFmvP<$g_;K4!tI+9)(!F_^`n4_~<hD-{peT#mPx4)#WK$`&
zegYYjcn%V`nsL%pUg(4P2h`%ZP$V||a)8mT$^Io!9(DYe+3(-TCA@DBM!x>eM1vER
z&v}k%Or<d*%*(DQja;^2X0LLI-g`EjIp=?r@+V>_#bu+sQE{_~v{dOZKz=V5-DScE
z)C0N>d1UpLbTpl5<Z!%RTAT!)#dvphb>#PxD2fWY6u21gM1;II&{X3aXGx;UPT}Fa
z?>L8SKl1ZU_RKpCP3Em<rav+tL=+j%)CPEO;X3;EXBb6tC?otRLk~G}7RkrWVWmcp
z|8PoM;A|H*n#?2zT(SUgef~em%zf;>kLw<FDnSmv^pfvRR|b1S#4H*ybsv<kuC8u5
z$gmorsumZqPGujCE3X&y2mREuF=*o?f=)h3NL5THZP13ZkIOjZ|LXpUQP<Iy<&?fO
z*9{iz`{{!WC#kJ3t5^_r3X_rOBy2MKM)<1WQ<v|D3=(dD<Uij0?2iab5piz<ZdLan
znC89{!Ood4a_?0GhDOD4-gcdyFaLa=DQ~3zI3-3nR8o{#+JlUtXz3-m)_mHq0s{C!
zKoQf?@rC#q7nRZ(S&*#rJ0xAclO)Pu1|T6hFFeI$)DKBcKW%S@8VJj@E%ccjA@6Xy
zO>8SZuOL7sI3nrtm*>WKij<jzgj-1X35Ou!DYJa+PMnFzx}@7}+JcFP!i7ZDmylS6
z_NaK?QxB=e@=8Tb1&Wad+N24LiRiB@^Zy@BXBiV$+iu|&cWrT(!QI`pNJ}a1?(SOL
z9g4fV7l-2R4uiY9+u84zoL`fWNhSgIJkNcvwXVh61g5FakK`U|0=NfYE<kkxU)}JM
ze*A=aUfIR{))_1R6s7xp=S6Sja8V~c7jDUHGIC+%PkU$twzg9q>v%$0L;FN>_M27n
z!c>z1*pRUG|5*V2lJ1w?=HXB{)o@)xKQUXDEtJgbfrCZaIIHTu2Y+`c3{z@2M?|2}
zM2dYFC}{uISUW76U?DUgQx^a6I;cAfbCd^too@T5MCM?eSI{J3bd+vR*eVI6E;&-b
z@DxjYy=*E}B2P6)hg^1K@o>&+-1`32*kBh8Fxw?+I7$E7Q>TB}xL8yCRQ!!eK%#^A
zEUENPrOZ~firpT&)aehcV<+3ZctqEJdjQID&du)oT7kq_^8v92PO-w>`5;>0z1~d0
z^hkk|D{%Pyh~VF=b2{<>GCk@R+t%}0%4D9K>xYO0Ud)(})^nSGg^?W=Y3m+7zI1!4
zcBBG%Q}NXHi~NyQ1xwgI@KuaZ)pwJz_u|eD4h<pFStOh(`C{0=l9JJ<)mI#g1f^{{
zcYdut6Fh^*PKODxf{#<M{#t6udOhi_-vorkD7^{SKd+M>Z*BKmCOsW<37mLoAHm!}
zVrS{+@W0(kS=80DPqqA5#Ma?n=$_J(^Pkggkig5edEX&kFQ@?`2G={w*YaYTMqXYS
zGonJ`=KlnhtwGYNh+$99-pm>z^6F#uMla~kPVVmrG}Je~#d0bC44b_##iE7eTaj?`
z5@Zx?cPJK3cj4pH;`X#0Ssjnb>kJLgTEA3wCP`&F7Rnyj2}sf~sO)qW-t4V5WhLAR
zd0!+4zmT;!7ZEsKRX5INaAm3NBounIv)Y{=#XEl2rCD$Mi8cB9UC?(wTS<Gb+L~21
zl>rAZXgU#c%hfr0%1Ee}PTZt(WhXV>blIEkxDsV2<_%J7qu`dES65c(-UblUOf%V$
zGcjLzy&7|!C<8rGWr<&QM`M3ZCY_5#V~o@q_mc@kU-vkT1ugPCx~eqe@w^@!jQ%$C
ze&YZyjJ-&<4@Dw-gFxBA1Z^(XRHj)xlIGHr^Bb+iK5DtoTG^%WJp@OKOsd}42z!Oe
zMV=r+1x?LGwbL|9g;_(<0p8nM+z{`VGYl%l70Ez*a%=m|$3b|U+=K*}$a(MbcK^z<
z?4*JhZHkUYyYz`%-7X)Eh$qu*Z>(GbYgR13H_XosV>LL3jd7D;`;rJ|&}*kt;A67W
zoIFNT$ZyjT9pDU??P}FEN54I<#$>EI7>;+F8}}a&l9EL%bQ>TpFn9`yzaMQ`Y1u9B
z`gX(>!z-fkVUZ>6RFU|0*>IX=AG32VXzsnI_+007?pt8Apu48S+tp|IPGYYeJ$D3<
zy4aH$+%;u8n^idm-Zxw@K}#(9mtVq!ZXrHAOX-uY_dXKVW^HdMBqaMmvR1IVLd9PF
zgWd5qysq=G6>4{>J}$M|F-nkWW`#ZfxKNjzQqNy#be*OpEXI5)veH>xds`uja@JIg
zE)7uzQ$n+N9E<R})@}0+$!~Z7H?(adyw3BjWQwL25U|+=G@Zfyfi55`pb))qjc2AF
z?#_u7bOG>La|+Nn4eE3MxKlOdOan_(-CO!eV6$5;gM4dU<Kh66dB7F$ISTE*T=;%y
z8uq@`v8-5Wfl#+=(Qz44Y<PAe*#e0jPAZ!$uCrNm&3e$2$8Wm#_07{$X9Fv?{wj;=
zB8{@92uZA_YJ#8Efs4FHKEDz5emQy;_JUT5Ers@glA0uZ;(tqb$w-{sF4Tb-uiAf(
zK>0h2c82XKTQlHsyJh?Rsy`z49@}-^dcxQtXfpD1F|Kt)t3wlfm;4gIZxP7R1RUr(
z3G<QoQkNp7aCdp6fr9%2w#{2G93dP-7e3O-9s$M$!tn_&xJs^Wg0WKagd~iXt}*=A
zq35=S2(u}+oW?~umlcqsW1hn=-5ocKKe|W`TY@;G8<@ma*#FZGEFeN#_J{bJQcni>
zsbo=rT`8q^c12K5VE;E@R4cveLv?_1X8EEokXX}z41>6RMdS_W2Oc*<&R^i~p2RNy
z8DRE+1(pncjG}Fr^|}d>cK!bB-%puHM&fs+p1tSZ!eI78u!0r(XQW8_U_FAeN-x_k
zPfk=6hvxZs0}byD?>mR->RRGb;LE$-!0MVH<TTK+vP&YtCtxv0{pLt8ANG<NfMk5!
zm!K$En#7SqaR{h>&Qj9{y}`({ld%3Bnk66q2^|?1#aHDQEojl4Uno(FP|}*w21`->
zjGluRy1#FjC-{m*dx@E;qOX%z3w9q)=R-qNz**xpx9kOCDxfXQfG@thrzq}gBNbf+
zHFg6&yTkV|K7j#t>X<x5%;>pa*gfXyJ;Q8jOTdjQ*V}PXed39c<TihT_k_N2o%y>>
z%O2JlOn0(ic=D8DAydc{taEjYVbmNPf<k*BuSixR5O=K+{G+M`_P>h(pFwSyjKIPE
z^WLa{%nuzHbs#nmS!v4a!fnotwaxBMl!x)^TEnne)!%kNRn>7X<dm=mbN@+9gu_V(
z>gr+~pUo2WFE_gtvT<FR;jkUI)obAh(BP=oG+q)1`k#pq+N>jmjhse-o&Qd!)l>`1
zON+&PS*$Ar2X#IcmU#^s0*q`P8753?vC-d32`!@^r|mCUvw>o+ct>Yn!>s%4!vo!-
z`MuxNJ!&V<Y$v2L?87+a|I9ZQqX6Mpym6+$;bVtbr*k23pirI~Q(~p8CYk^FFG!j<
z`nbTkEqbQY)EC$3I`z6Z`wkn6gPe4bkW0-wFyy!ZpzM@mFUz;4KoJ6qco3(K>l(R-
z-NAi2vxs~i?Q&yzGnPHNLEx3?76a3T6yg04IqYG-m-p85pubSWtIhD3)z`#kw-uIt
zg{gkJbYS71^JSZf(2RH1?3)oQg8qT-rV;-6ISMkS^f+mXB4^L;mjuX{eBoA3%t-o9
zD1}cP{Q~$iT;^>YE@|y0m?o@)0;xu?0feccMl*pg`gZs<ESTkT8MWlWyvJFwWlY3e
zwS-ae1Gg?VHdTyt#`hR7C}5!kZvONH1zwquVzE&Qqs@XmRXm2}N@pcYo-=0Rt<M-c
z@NY2*%_-c)LoMN<++~Y#*KLb7H{_&gpU!6L_FQ*-=&UuL64X8RZW9wwd4A|TJ{zar
zuW9nSDQNIfRrjZ3jmB6Wq#N<aK=Ps5^-St^k&yNEXMeoHQB^l>yaVbcagGaY(;@}J
zv6Y@c3Si=wcXDdlJ6ka}Bf}}E=@Zx0%*@Qp#e%8&i7DmEbL0qNzLOhLrDAP8P6ibi
z1#}CDdK)g#kr`1D3dT0O0p<*60etq7kTm5nyP-c&p!YB;qAHFR5i6^T*v=LqM~d<L
zvk=-I8`s9qg;9)%Hai1RQ$}rV=N^B)Nrk$eH5T)2MM@1utA}UI{PN`+jC$#?Ul`mq
zA_k#Jkw&|rU%Zk*Y5nfi{qRTy{b}v^m*MltNSd8TQYl)%B^GZ};og(zmJSdlE1n5^
z=O~_U(q4~}OcfN0(rVh2w~jul9=Bb8SdW?A5q65n8$CUX&V3d;cPf_h-aGi?extI`
zgGxZ;wu!(I`d}L(gBibx$Rwxg%;~0^@#@Z5z-Az>8&%3T$*5h&fqRtUcy7<f^+>=<
zdhsL2>vp=yBIIg7_&`!S+j)V-XL5=HMuzJ<a5s%A^-L+?xWKiZ>Uwu>)KxD*^?q^r
z^){8Kp+TkD-xPnkYo*=S2+dJ&`H!`&8h-}1xO(F}Ctz*(@CIOB24-uL3`57C4&C^}
z>ZssnT0GnJk&gQrQjGvEueg|xH!4@w37#D|wk*=MVc*y4hKcjd$KukP3?gqzz_B58
zGqk+sG3xH?t)rwR{*BDo`HVF3SEtWi*L8Q-xzh{_RVtyQ@kp<&tbs+E{mf26XTIVe
z<nVtu=DFbgcLPj}!jI{lFR%ss>7$YjS-mlF#Z{SF5mr3c6{C$Rga256s5Chp3e;fP
z*Ro9ZWx8-5<VzCfffOfiUKppcGMr|%(sI7Fp~A03G~?L(cVmfU(Jv$;y~+2@OiSC9
z(vp+@^kKo_hg*pC<7ZDxKTME(<hR(qW^ta*4VF5$S&XCks$zwMLLR|*bbMoa^IDOq
z6=_%;2ph7H#Y!<0y(=hvbZWcqIl76??O>N~m14!Dk_AG`uehuR@no=~pXfDjB^i7}
z9fl3x;DdO-i<VIkyH+Qf+}mx7)5PaxpSDy*hhI6~x5I_v&))0FWODza7+Cyp9SoC|
zOAZv9NLs2`SK>ay=-&r6<Kbj4g^`}h2Bab|;UnZ#i!>v)1z-4ubj)*a7ysd`O2k1w
zNbeP0jGNaJ(Q(pjGZg&%wUCk_qSSJ=YBKJtJBrj3yhuQ~@{6(S)u9rp8^G&;U|S|z
zE`Y&Oa**Z5)`p%$vi34ExVh_nen-F_)+Mw4=rftWCvu+~Tg-^ozF~|&k&K{Upa7h0
zH@$~2Z4Q5fery8R;5-6ats;lH>jdk%pMYzNL?q=BgtTa8YLtslmW%$-evxXLRXT9}
z7Mbiw!HBpKe0bzmf;sYfm>=U|AfirM{<=f_5&NG)tnn=?>|`R@RF<2G<pKTiRT}?h
zQ|Ic^a6QIBWD{xbA5NI*zng~<e6CK_SZg)8YQ?cPXvDz|9FcTNsL$0Nu!2DMHPKJh
zo=n5w%b|A5oLENhUvSiVM_3PR1ryL1h+&>!`@tigCQ`BBlBmFUL*LhK#Opr5zg={a
zEVBXTdU$T?daJ}5PPRikBH=KQhnrziBF-8hHn6NJBOlYBb^Wb{PHo~t@SxY1@Q*w8
z*-g@~z^EsVOJ&z>kc1eY%Nt`iySv+JgbL@vp5$m;+%<&lAv}AP(4jP4*>D>p%b9FN
zU3$t!pCQa;&~kzpg5xfr@pIq-URm?#p&*q{!Kw`x%y~Qb9JxEVF8JlW`G(3T=X=p}
zPxIS&3-*0`S9_a|55HnXNv;-L-XGGrv|H-r7jPox_H-aT=2+ndx&z0ZpUaxOv<>xy
z&Qlv(#pDJd=TeLN<fUu!Ea7@)%u5C{;MC&ufIrEIU3M>qSVdpRB9ZeDz<<X5c<}uw
z=8QhDJWJ6r_iRb6gD%3gS=~)?X|^e%-&|FCW;iz`JoTBnw1x|k45(36gR6!+k@fTD
ztcUr=>ug=oyF$3Z`t0O&A$r7>QitOOnceuZDyQ3bvZ|1dl8UMX+La^U#8lWAN$l=J
z<%fCZDmWt<Z+*7jl;neno~svbdD>6Eb7h+%MEV}z3&Q<hB2@@t{zoS==jVE{cfb1}
zIy`Z~za<(HOVBdC1TucV<PTC6=5CK>$y1#o6fMWwc@%I-;jcw#nU*UX!?}r$jgC~a
zTbb^jzAAdtSKgcP)6>x`L>T<CKrb$zVa2F!`0aGer8d#|AmjerT5r+s%-3+@Q?rog
zkG~>{@Yi-4F|jn99=8yLzUFYQn`JK@(U$b5f1D0WX6r9Q{B&)3gDM`edQF59WL^;(
zJLI&!TC-i_!aEc^WF353xlQX4edD*wCrML2+jWEvH(LzRa=6KYf&w{9PS$gR0CUa0
zi=l3g1e}{coDBAHubqHLU1Eht_5x7;Ooq%);aJ*&;Y|DF@r=-V`5w=j<oUWsjQoxs
zGhJ59pS4Y~jhlM{6>9wWtwWP>ckOQAkcbts&fzmBg+BP1OF=E1m`Lr!DdF&6r2QU$
zB%51`eGT>M6CtxE^Pi|&e(SLzu7_kytiwIa^om(>=C)j*UsErxkPC#>q>$tzzkmtw
zgxV(SVWbGib%DEP%J4v=2s3fyTtQB@(E(|?><#}`c%x(}P3jxy8wrwn7d=mLY0_1X
z$Bf_WWV@Juce5JVpg>&spePM1bx>OrS@FKEk*Sk6M}HPIcg$$2GP!h=F8+Lnf&Joo
zEg%0AHQ7qzIN4Q<2?q5Z9SQ-##q!L}Y%>T-Qb2fT8L*&WvmZI1T(j5G3JR)V62mpS
z-=I|Tpd0)rq3&f@HNc+EnaA$;qUz?uq<7vESVscgpUOsyR`Wu#j?xh#Y|2EzyTKqK
zcCZN6$y{mWd-U6pVlp+^7K0DKsgR}nB2=T(>6M>Wai>31nqd1GY8%Ih;T#?#U6aJS
z8F11F705NHI-i48l2hIM>da?Rq)yf@e0`&3cSs9aYRQ;W4mj}Oh&@kvIn4J@Y=5KT
zL6H{ZOrt!^DhkP(b1o4nr{|mYICCor`8>2aW}xW-5CW{q@fIMD@|+6xIB9Wsf5M;J
zZnlkIfGV2cznin2gZZS3o&Ek<Ba@V-m4z$={n*65)^-akzL=E7p&Fmlimm(BexCN@
zB2RU#*UQbrBYb9T`iIcqe**H(PNCmQCig|iwCs>)K(O>stX1EoM^&Fh1eNprH)-<k
zFQBc?caJ!--!9WXR{mORN5mc{sfewaOk`A#T#%PtMcXsMtx&sjN|KDh%2J%Hdq2D>
zEvAQu%dQcLZ2L>g30$QKpQNjcfwVBm>}yHAFSAYBFRVbKVmYKNGp-w*`i;aCW>&6<
zhQA|-vp`p2f<5$jOI(bpOv6X18l!y9Fc9k#@+S@V60YEXH*pC}*qkQQj9<@|Xxk87
zWXn0v*oT>UTTQ^iE6IZQ(d%jwc!`dgGskea=;LwI$M~G5w-L%&mS6p@;Jd6CeGZXB
z8q^vb(`R6wGL2kLi?|G&580-etO}T>tir6c>$P0=tYZ~mQD+QUMm$FvT}R2WW9~*V
z<P%C$J0B2wC=D5*&h8?QBI&btHew=o*;w4?Tz5SWK@0#{_?LO>as`$M@5x2>w8LSN
zg4oJR>wrPz=O?14p@^iBxg1|#h{_mTT$)yDU=WZt|8{9DcSEa50bV#$V^XhNkuIF6
zx_e6_rX;8QDVy}ylH6+ORs+obes2aCcjsb0^}%96kGI_dot%rr=DP5?o%J+3M8J29
z84|tjW4JPwRqT>NFQxq>#|o7Fj6HCwS2-)SY~deF<jp!#?j?p~oYXxrNk7%07PhkM
z8nh9ThlR+av*U0E<q*!qV$s+xZ#Qw|GE2rGVxscsZYauy^io!>PM67DENVgl(Zm^p
zy+6=OuhUUVNnNrAE4T51BG@$B+mqs$WUw@KQ*s{?<tZ*4_`hhmq<j)YJAza{g9C?`
zTp;P~Yl)^v7-pEHK11M*kPK#ep0~uOpQL*R?e2mY7m^6B#&Ck&zq41?27ey@R8DZ)
zJ?+-Vj{@cQ9M~M&i{u{J!ojY~;>+u>D=m;c?1fhVxnHe@!|6Z3B&K1cgAt)T23zMg
zLhv<^0xC*<Ox=Ky=X*0YR`YaKhzq;jw%|V)zrG;h1y8`Z(oiG@Cv0XaM)FH^?2_!S
zNJ$>?M4rHdxQ^jKr2Po=59k{Y8)N}&ItEJ^L^;iwcLTvcPln7UI#^?HgWI*qQ^AhJ
z1>e>a^(*V}l#^pQuh6pajYK&20!ZCzzAJXpue3GFNgm_Iayia}nV$R!SN;wq5buh>
zx!%DWiy^K&9b{MUM|e4^n(44<V2#IJ;2+^uEGv(%-~>Xlb6jPVI2Hu`t+%Z1_}f`Q
z=sUy`y!7vt1`4TxpgxSiAO9}(IcT6y@1c)?E3JR3t`E$5RWch&I$VoO;5#zrRq6hr
z(P&Y)AyUnwkxv?JI`&pq)%~WF9R^E;20h&qm{WWEpJ(xI60O`!ERyx>&uTST{b*dj
zoI_{beQzUgwz>OYUcG0slo3gCqMK=}0;zg(HPKD+Tqug7@7Z09hgrTRm5>DP3Y$bI
zR}coc7dUu3W8NZa1=hlDI=~6iE(TK=6<A`q-%A>HO+U3S-BEllg0qD!6Xvu^D7)O#
zAIy$_{hkAjEQ)VrAHZjwqF%o3KC_S)_?dNY*)+Q{V)DV?BOv9kh%VIApvU-y&ja59
zzH}Nt-!al;lxxO)IEPRo*X8>hRr})pTHe}zM<J0&WWG)S=>_E(+F1^%SnDh@>;bUe
zaD5(kpYYU|j@Y~cW<@DOB%%tctG7MP5jOV8=<6$Fd!h7;t`8kw*DJQkU^g^b^Kwy+
zJq0f&_$KRX+5B7^hSCku?8s*s-$2trHntU~CrR8~>wXN<KECHrNzclw5J<zJN3R>O
zy*b->6R+J(c$jT;3Uu)q6#2T?vvAy(&a+t3+V+rNLZSP&5o7zwmQ^hSq%#S&&E9k?
zw46mGMb-TR^`xJ-UQ7#etzo^5@|WWqfMpSp-oT55FXouL4mjC!Jl$p7Yt%gA-|t6$
zzI8U{LGiZ#l=6SXekI3dVSlJg)f;agY^PP7TFnb^sV~`jNJ652Q3OQ`M4|Nv|IzmG
zi#(IwU!0loxK5K%h_iXu3+o%`FPEq`-ga??XjTYTY+oW}Fi3m4qVr))8fj<qf2yI&
zepa4p4_!8ei*ru>^-cOm!F0HT``!ed(KL3a0_#x@bYT-KrD-6vqF7>J!((zbDyz=3
zbSHVDdQ;t6=bD{Q7J9SZCBR}twb&*b7NG@fpBuEZUbSfj4jbM~L2`+3Dg;BJHlo|G
z#Ncw?=h_weJC4OyI<*FkbM+$*#NCbeFS?^bGbnOXB3h^G9c|~KDZ{idI68e2E~8h5
z-{nky_kVH;n+h}7ocuj(`DrG_fi3m7hRwR|x~H_I91M$o2oDbEpC~$r2;4>vxzo(Y
z@8^TufkLIo8!jn|Yn4_L#bba)P#U2;aRcQ!+g-&Z1R7xOG6?ijp$Iaaq#)tTc$`i}
z4H^n>!8%4YI7ZR{EiVUT02noqu!we4xouWA)9vNcTVG(|cW0ERkQ42@H5b4eZ_Zi$
zBIG7)Qhm!{*H3LQ6mamaJ(Hkm$u{+)EWlsGj66BI6Zl;#yggI8-?XJkbT<^RyKfRS
zVrrP%x4X?jU(a7JuLRysY<p1&Bq-F77Zt~~`}3D7Ylz{|p(T?1CA~SQo*Q)Cc+(J&
z+Tc1#{22^Q$!JjZ)Pwku#|~*id-H?qq}dEke3f9uxmdpKTU&1Tbc%pvKo%*3Xh!q(
zi0?7;Yum#*jRo3Xb<5Zl5_hVQZ&F%{+m!v=UG?OYMv!?3Q<qnU2DSV0mE|csD3jRh
z5;-cYdvDFvv^;D$nH~KyoDRs?La|hq3`sTM@ZH<J$&*|x*JIPjV|-lE!R!lmurGH!
zZacNS-RmCKq&#_Dba=9-UYu0>Div{?SSn@eidIEv+6pK(%1^KCC8-K7f+C{03b?Y+
z)4wpkA+j(jix$X`U&1XcYIFVIo2_ns+W#mED$LH%i{$~9*JM$>gsvIYSO({guiX0i
zfk5m=qd^jYZ<Eg7FT}E!ssd%6xw<?oabu_=-<B~I!8wzq^@{vgeuAj?s5etZ=M37d
z3g+~WAz6{2*P*yKWj=2|#*;)EDoZc_!T`QWJcG4NSHXPwqVyWTqx0STjw{(`(C5uz
zZ<xw==fH%K<R#1bj}SbbP!qhvSdy-tpOE=zUrgUsG+&l|e9LZp!Y}ve=|x~4<-`D(
zc>W1c#Z`Es36pBA+4UMu)E8G>X_0t9%chHO1T%xhNEtaBP~V?sKhS*O(w-T8dsI;m
zI$!+deDltso5&|ydVr@A?^!6BMqbKujQF0&y*<PJz_9h4kZ+F*xcUNrQ#G&c<FGpK
zH(G6?_q##*IuFz+x%NBKkcP*3x){2jqn-CSzU%}#ci;n!pIf!b>jl?d>(jJCmwjQ;
zDnsL=zVT8_SJrYQMEe=QE|aEMp4Rr`4wU*bp`0ldi8rbJam<w_9R?!<7Xrfv(e5z#
zRY5(vW0x!Z(=(m-+x1!U;*7@;lrmME7wFvSgx57;xmZ4Z&(z_q8@75zL!x7wtD&;e
zlHTR*F6OYptPS094*Ph+H2aN265r9qCD`7kZYLvY<GC<1_gU>?GW)EVWqCAjV<f55
zCwxc$KO%--4ji+j;WV`0R9`dlmUl=>VA$}R#I|P!HQH<J^&YYGmFLF+SY!DwW!k4?
zj{&+B2KQSACFWn=Y!A}g((}pSeE3?Y`v4`@Hj}C{R@+?ViZ>-CMc)Oe7%+?EIA32`
zzwou1(4Z-XhvIP(pGpbq<kz43OA}Io;#%VQd2!oKzBDOAlC(EIGZX_x95zuChedMI
zO&r}BhRO~_jyg%YT(~3fI9mxLmESVH<SSVuPhT}q;eFmORD%o3Fb!-0!F`SuQ0ogM
z=vxui?tuU~s=!6`_HjX!#yrXI6CcG07a$n_WC1;n8F1{Pa<M>?p%)#e3>Ih`oX^XL
z28J32N@&BWNDigf36tdU$Fg<E`Cw#q_R4e7I9w9>jTzT;!}~+_aj@x*X5c|FpQG!e
zCv)pS$n>Q=_GYt+HjAbsL$J)qYZ;v*6R0<QjNAI`#Adp=04{}A{+ls250T{#cTK9@
z=RpEWlknc@#Q*jhJT$_>%mpZ%t76>3Cnyi6e~-lir3E0b1LO>tgPTA7K*k_6Xka*s
z;C-+CHyP7v1a*qkJ<%)=P<a<AtJD)sQ8sqRZ;U%JqIAagL{+x=%%#mi$kpVNs0_d1
zE-)XA8pK$V!-tha6X#49KJz@x!1doyRV|Mxq*5b_Lj;;e3hk;u6+)XCvWaUR7h&7S
z)f9|-nykCd_y9fdjVeD^KJSN-ieI9{fmEE30N3LtzFARHjalGMCy6aIf;bEt6VU`e
zm$ygYOHiUw;2qM4-OE{%<#x?98sYH`*HOw&0IFcgF!nw#cn4S&xpqB^tU~j!sG=*A
z{;o+SHsF8|gi*};>^wP#o&|jdeTM5yqcroy+O@<O5jH)zQ>eo7(lNoq?V=P_@?T0e
zY2>y-#=lmp9#2B|gRy5GYw|SGDB;a5o}X0c(k{7Z*zUGy&)@>nb<_m}^;tG&KU25U
z+QEex@nZ6F-`s72V?OH{>+}3t6q!!1o5+2Ef%}H!cEywuiA_ZuhD5LY@keMdK<<Pm
z4EAkU^ZFq5zkcO5mH*2E=pSEFuy+{bj20>9h&ct^WWF6W)tG-_vCQ|9>R6}gEZu+U
zZ$p>Xa;oMLLvTWL-hf;2KEZfK_R>Uu(6HCG@44C$Tz1l1!8)e&<{lWC>-s0C1l&iM
zULQ?7^;f3;1_;u5k@r~%v*Oq>#WHR2k=#NbZs6x$7zIW_o%_IC(0Whm_Xeku{BICB
z75OCi$+t6U$r}j^X47d3Tp;1H#_VS2+D>M#=>&n(oX~lMCPB9LCJ^<bt66fxppc9}
z(0=|1#T;F#fwA*rlMn@}SK&eal^2DGD$q3n3m$^>y1w}RJWxUQo9o1M6$bS#A0UqN
zeh7C-YXP=yhmZzo4>Ny{k2fA(b7@o{j4>o_gc-*^qvTDis;;_PL&-^IzK{fm3F&p{
zp1gz}+}ud((Qj;uN{B)(_dJcOCyFrclw!<`=?9WCj6Tili-hCTiDZWVJRK{-eujvN
z_0rnRSL<i;E$w)HOmE)Ov~hTL(*{OyV2$8tjOEgx=K8dLa%8UbXC^$73(SIP&u9VW
z#PsP5X*72C0v*G{r|q2>p#_l?FdN}ot8xeCQakoQ2E>({?>(1#lXr)h#_l=^qEGuJ
z<^ktw!2<m?#URya&3TAr*Pf=zV;q(}xY08i6FVUk*7dNmm+^-QdYnRP=53sBN^0ko
zQK7f+n-ZoHf$P|JazrkA2QZ$aKa3zbvCknn%I@A?xyPpEEQuy`LK2-f-WjJ2_&k<K
zrE;YrAYTN<02@MPa>%^+3FOt%dG@zBvR=@EP&(@pakI5~C%RZ$HP6MDu99|Sm(t&)
zOnL;cS4<6yG_XU|BB<Bo3?N6vNwTskjh8MU9BG~Mh_tQa+m0bQsbCHZS@`E&ZE6PY
z_W-Fyg|ov>b@{&=WuQ?n%vBK5Ai(;W+a3{FfgcY>6}T;0)kHsC_WlTP383dT2(+zR
zV)~wfjR}gJgA&XW33N)pvVQ@X8?C<G?lv}jZ`ylcIM7e@V;K^2bl2ngL>k{;h+jIp
zxoo21u6Crjr)^vIWV%{89rq#R(I`I^Xy(gLhi%$lZwAc1N=HD681DX5^gcxQ_;3z)
zTFXDn5o``?Y(Px8yl2hK%9W$RgYQ?qT|W#!#r2J*$!m8SEi5~KTA?Mto_v+&EVqY%
zps5}Gw816L=k^L2@u4NS9@8LQ^F*we@Ra?y{<6D}YSBAyN9eiQn&eX;LEyS)oftH`
zG5v0Jd(5%T?LE<jp1^27q5IN1KfyyqEO0FqvUzxb-W~DEfKLE~Sn5)(x~Vu4GE!yP
zyeTN+Cn@Hx34EF_(oseDrohj{?`Rpqb4!0Y=dN3N$J3jXtV1>ST`U%E7CSRR{e}Gs
zSu&=PNtA@M6r@t-6eCs)_SQ3$wLhc#n#L0Y??>dd2aT!auc>0<5(U>X-ORr3Ws2fc
zrNfY(iSjE<9#N!bwjNos|4Fk`==+Vyc~~Qo2yY##H+E6OlT?d90f|Lxzk}!cyhQI+
zgTEn=#j+*Ojb$Xy59*WW-yyc~vHFL=DG1+8>FNH7M7X0s=gM&r5zFwt>8U3LC4@(@
z;V}R|!_m?IzPk>Z>1gy2X<m{Vqdjiv^!>Sk);EgSeEQL_s`=LQgC*k1a;~;c4na4K
zI*2LjTuOu8Txq{dbVH3!(wrDcM(Zu&@UQn<K6TeNs&C~D-FpeA<TOnuOHra^(Z*S}
zd#GwkZ&lfpU*>fn&YdvQKu=wIgBi0PWFxvEX|I+i;rJ_-kC!hJ`f#Ac4o=!9rq;u}
zSm}s9v6m!tILBaq6ENUXASb7YCiYcM`;(-C9hh%kO#<H{69Hnpu?+r=-JD|8V;4w(
zOKsB2cy6_VOrM-?1xGXbEhQcJN0rC9W;@|WV_Cai-FR2o326~9tXg~&bMR*l|1AK8
z!nD;AET%z${O|^iF?ngo7;`W(ElrXA8Se;eOoGaGFwx>!8F?}g?umjqW1+V`$H$(5
z3%~b9Lcf9-CG5o>$i4$JjYbJ42~o>=K4&VX!ER$i#(Ysv%7Ewl!1vpwPOrzr9r&q!
zi6vTgBu=ICK5ruV1r-GP3L3mT|3gOI%X^fsx77XyX>2QWAv9WSNivWnu34q4aNPe}
zte8!tLg1>mZp@@qu8B`z*(nL0%y58RK<}xQ{BrD7EYnnF__JZndC&B<ryrzr5i=|_
zGYFUfPbf(7@s%3+P&*~OTpx8ra>^9dKG-%`LSuEjZSp&!8~hu^wzjo&Tkea1kdmaQ
zW{xoHe&&IxbVQ)Y2}KWYNqR#G;e6L1k>?m`80=q4kepaFvUPe&S26Lg#p)`DzXd+u
zsGC`e*sU`cC7~La$<QFzjJUyIsJ?#}MDI5CmatH((unEGNaoW8@|hebS^TQ|R*}so
z^=)T^#6s1bNnx6cwJg9GEq;UI?j2*^8`=DFIEJ0lX!ktiHyOr#ySUa4n-DFa0fpiO
zz%;(-mwFJ-HxG$Jv@POz<t>LtBc6IHqxQ0+O3<lLfBhZPY2KWwT!X<20Z$_+3QbHp
zCL$#v)k4-bnY7;*U;)zA^2_)s_tW=gzkb5G26HGJNo9zw7|{41PK1V&nFNZ)^PnRz
zWn9@Yp@D#&Z>~$oGuEA>qa#Ge!%E}!4~ykqDf2%LHTeh}BLhyK+x(6(T!L#(l7r~C
zTc~s&A7{h#VHw1wd7b0X)*W4j>M#RtQ^lEkc#3{4-LV>ve5u5pd~Au4`wg|aw?p))
zZHN7yKZ9R>FpM9PN)JyHrTVcwMiQL)eFy6p{T29BOK4NB2+s$P%1=>tdIzk|h<E#^
zb@mr(sDCPOg{QDusEiIvlw8$bjkaUfa&>w<yQ6h)vM$#HX@SZ1`>a)&9U|u=9Od~f
z*WSyJd$Td^_O^=gJ?`*$8L6^Sk<m~il~y6vfY%+ucqAMsKk8Ox1@oX%GiRI(<yW8-
zJ4+E&@#w^MCTrQl4+pbkKi<PoqTaoHXkt18Ln)CR^6ND`Vt9F7_U#RHsYf`gImod~
zJdymZ%Pm+-`F22Oz9Vl-XC5$OT8xF6-Zy1O*){>~&CJBN%o$8H*)mO;=tc1j&dfMe
z{y=8yc7`tyl7nmua>XK}#Jh-(PlQQ;lNIrc;s2aF0yOIga*18`5&G|^acDZB$+6?7
z@~fx1(pAsx3d$KSQkgjblA`TA#I%eoqKIi!c^D+mbuj+K_k@Fv#=k;4=b)8Fo6It}
zndEW_)Y+n^Xft?rRyR9T4ialE!sAu0MT+83pEZFSc9Se~-Is^SUum~q8^VSL=};ud
ztsD%zVUmv&3=9&*(r+w9qigD3m)!*N82y#1)d~vgYx-mEVXT?2`|0&##?n%9j2{O=
z7aqaL6_Z(h8YPAWC+n8g<8UVmJNY{qmxc6hi{zg9s9A~onvoJe$@<!bpWXvhcl)wB
z|2BJ9zXQz1jDI8mZ@OQ|t!NACJ5`E5XMCP?<iW;Ao~750B`U^4q%Yi}^(A`UWxcCY
zqKb9hU2R44_iGiV`Ga#`OKdN?H5kGzm+-@<)*wgA!X{^HWIx7yF>JrcWwo$fHuyq%
zw1Fo{GMk>Zur~8q7Y-TSiUBl^jc+@PDSsCVrenziof=qC@pj4kxhSHf`vGLA7R`n_
zNvag;&%S;qnvKq%;aHWi4c%`PvRioRe`u2^3zb@Z>iZ}_+{*)0l!#q`H^3s^pnF07
z`R$nJ6{paiT_x4hHlKmOO0!Kggbf{6sCLN`<ffitG;J{uiR&Sfs(nA!Q9~LAZ~Z(T
zsd?yIe+XUs`-ynppF}Wa*hP*BgQ#*pFo59GlfONRArt3kbW~)eM>hL0ai5Z>+8nu-
zlUWVD^ZG&pdEeT?L{ncHSVL|sb@Y9bs20X!wm_6)wsg`5*f4XUrIx6riB2AdLH$XY
zMAChUL0KmcuF{oStw!Q71Msv5jvVcxci~)hCh-^_+4&C{T#U7{0CCC&mHmu)rp_es
z;^+OnygaWBpuxOM?Ix)2A-f^~kmTh?=AED7o01lWsta06OkR(Z6qM_1No&d~{*AUh
zfk(cHV<=J5mdfAkwZ!c27M2ES+S@+wbyO=pPSlVL^J7I6#X^$MO-ts;kC}l>nFxW*
ztJ;+}q81Y8mKrt6oEf)~v^=rPdb>Nwtde|}3rmyqi3Jvmdve6JUtWnFz8N0fL}caB
z-bvHLep0Hn*R9a<b^4EZ_U~F-z~yreizDPH&Zbta)8Rz?+XwPy&<5hm!!8H0IeS~G
zlPHgWHR;WC6D|OD8Uxz39+>>&NXYMysC74QIE;f2|KX`K#}~n4pHI*6J%8^GMVq5L
zhMf#OKnu^YABVe0Om-%#2T5`7%d9~eU@neUv}i^c=?Q>{E<ksmE5MEmAo=J=&$yJU
z0B&Q7ST{5939smH=7lv9+SYLi{Mq<+RUKp0KaAqqp_pLIqbtGLb!J5*5gH5(gzkze
zFaNv3H4VWiX!05Rgj)Z3&tpnwq1YuYRi5K(%kaN#Rj-k{%}e6PZ!Awz*F&x`wb(uN
zcNU&kVj^%|-}}~rm89BN5M6n_dfO?qGCF3=XlyEYx`TvCz6;&W{nX$iz7W_@W&*2Q
zZa<M^!1hkZil3|u<zT{Z=^CzrIvD`eRRtSW{SQ*+@88awp#IEzBR^$vm_5tcI8J-f
zZS|3i<wMDG_emHMWwDDMEdn{xjYeE1*kH#8-6P_3K?AX86+d%NZK<*|66@!j*t)0n
z?=BCngKH108$fMx6hcN@&_lvK%bZ{WUzI=;-038oxJ=|WgUUsEQQnbLTTnDl+L9TG
z*&IvM=AFIEVCe;cL)ecy*<z5A(a`ht8u9CNvmT7kG)wJ_^JWdNEnR7&?G}q#PG07!
zzx%v{Zcam<-a^zXY^GPyd+we6YTBO0=uX*1SH)K<C6r*bEd|@R=gJAneO%4(FJH>n
zXc1f%o|O{H3u=};AIvF6NB<E(ko8b#QwLVm)v>zYPD|azpnS&Tln#jDolJ>lPs3e)
zL!-&vxepO~6`>l8&diSy)F}7lY!g0&s>|nE@`uVat{zU5PMW04w7WKf7)0Vv`E7C9
z7oh46wn4%egZhK}_@AxeXcL;;m9@4{IH;Q`Q+#${YF|u^tF2ewBaSz30zWE!*A>__
zTF7U2&zM{x-0Z^{JNt$(Pj(y8_4JuAZ<Ad>UxajzSW3kx^zG<!-~A)^sOPm_PEw`o
zTB9#HjcZQ9n~6+sPRR|8h($k%KUL{8-2{=Mobn3`YVwPrOjfG@#$WI*0WqQ+DzoYH
z+FD<Ry|!LEy@(i%PTZT*t=8zL>k9nlhP6jeW!{oj+$P&)AaCajT}5Wiw|Jgw`z}Ty
zCw;l~HS!;<U%BA+_C%%xNV99_{;X}TQRDLG#V3s$u((*)Z+#sc|9t>3UqH>&w7ZK}
z2eqF|I_Sp~m=wXt`{Uyu><mIt1!);n0${bS8iNuj=^zc(_joSJf95Or!(s?S%QjP=
z^yJ^qi)2z5Wp@DyyCBa#JZ%2z+W8HexI4^?lx%@2#f7s^q6sv)H)@I5a{R5F^xfXR
zQ({B!&h%_0&2`P&R>z$~9FZbW=BB-U2CTY9ru_g;lNakYk}@CPmK>amuB)>1?wC$%
zLnX>@z$5D(fL~o;bREf<@7HXLfUj}>g&a273{AvGq?PZC#SncLWjo_&!LF?*i%&yS
zAW+HB#>sW|(&}i4e6+f&qok~-K*?CkSvz@!wDaG9lxT&@TVfL8qO-0rNsYGE5gKuR
zPYwRNz?RQUuvoQ5R<3FrUb6qlTvz>-Jz69;jk{8%OM8Ps8Ng~|6n55rZ9^#ZT2-J?
zZ<29J5n#DdVMuB?jh<=MhAma`jxQTQQ0Me)y(REz=o_Gtwtsgi^m9r`u>*<iD}&RE
zNFZliIeTy->^}*Cs-`J=GLRzTV!wnb;$Ts)QNUvo{getcL?74<`0I)}S%7Kd6N@(1
z+}qbU2#Ni9z|IdeOHu;}^_3p40|aDuiyeN}+2Y^sUJO|+J2L^zw(^0~VC8PHum7+@
zP+^JIxQ-`9nfm9bJOGf5=iX%vJK-88rQrl+Uw<X0JBwA6?a9SHG}>+@pm~iw&STIx
zF*<rpE@*8onk*NX?<x_%t0>ogqup7|7%aOM4GV5A8A?|<mi*TddxB!#NoUjaJTbj6
z047761m?Y1b1b%0CXb7bhXx+-^GtX46YI@5lFESIQ8S0)yabw4I&wjVUjYpp7dkyL
zc+FAIISBC<Q4)s|3=sJ;TG%;Ls+I6@A~OI>$x32F`l->YC=aLjDl*pZe{(5a!KXX`
z$?^@Der*3CGPQ3?xkSyeecI4-W?9m*pyq}`+^KSvyeU*w8-f0VCcV}NUtKeRJiaRV
zUE_N;6geDBZ*Kv%YzK$_nv|>V?AZj*!#Cf=r=#x|i<vM5qB9|SCkyob0|a8U{$5|A
z!JZc#E6R*FZ?~E<5yT@Thmc}{`aV40`HZ>U?Ixq*^sH5DoW@^yFMic9CsHvnO~we%
zq_ARe#s9b7gU3#n?hwlT!<1n+z|Uguk3P~P6H{}}`GvtrC+!ey4nuAb6j9GN{>Npa
z89RtExLum~Gv@NESw4x*%|si#kqv=)*RiJJ9{%rO$%p+YJ9{&$)xM0+MT3BMt>Hs&
z9?jgWi!!nO`%I4q)ix*g*}~9?vCdj7UYP147m_bm_eLc>T$glcdd{IjOrsBzx%9>e
zU8XRXYo@LA>gOUWg+4OrnsF{a_q1__W>4!wmMwE)2K(t8{TM7i0XXUowCQ6e7vE2T
zeq4Mf%hsZhqU6epdi;r=CLsytk!C|{knmzPq=YH+k1RAgixd6dufe)K1;$OTHqgjO
zqX%B+TArD6#asDyo@emF)lR_6xuwx?GV$mVolR0A(#H8dz%3p=UzhT^YAW^L50NU$
zI5chLRnypN^^D`8rKQa@YR4KUm^2YwR!2MAbyM45eL79Yi~12Q6{x7jZr~p#;w=Wc
z#x)cBz9UtPJHLlCz;b|8ivA&u$VdF0W+Em!j|H3GVy+~ouU|TubmnN<e(V>YI9iP*
zARazV(HNt%sF>@+gNizkIdQuc4uO^5Broq|rpPEjzrFJZTDibKFZAftI`3L;81x@d
z`+i}Gr-mYe&ND6KbPRg>Ltomqi2Cq-AJAv<$)%#_+78`q@1;tY46A4pJuNd6_n}@~
z=C#zD@@*iHSFq68=|zL(l=kyqTu-TV=`$&{SDftGvF=B%7zXYxmQ+JF8ry_J7O|rq
zO&d<*p~U|#>a?xNR7z?R7ukF8oS$P>`!yz~he7&H(wD%p4eDrVeLxwSmp*JxTWfIA
zl{@!^M(k&e#l5g#!u<Lr*i+OZ^>B4s|4}j=j!6|glSX$H(C5CSFR<5gV55X*>-!y1
ze6ls)ElccvCj>O$d6AiiCFT`T0YGLd!~z}DcXVp>lJcLX*+ljp?-nEc-GffE(ll-a
zg2mOdac0Q2z$T6Oq7W5K)xy56YmNz)Yg=F=jr`2%vkO5f!;-JW5OGzW15n;2kLT2D
zTTo{+W%XVirSGjv8Qykq4n=EXY;DP34i>=y(@=+BQJT*1RiJMiz(3h6r2EaJjeaU?
z*WI2d5?)X@#vzs}1=2IoFxafL>Y^JtOqJ6kJ4f6Ca{|HnJ;qs&j*|M(n}Gcwa#Q8q
zh^emAD#xM}wZ_YoW7==C^IW%nUJ1Lf<VxbPSn9%}t`&|f%CS5q!6}h0-wR544fZQe
z#?)$=nhiNm$-Matq;%M||1f5)OpReopx;sO!!H+Iy1+_?gq^-N=Nd4?oVer84(gLF
zb$q`(t?#sb|Bu+yWp~?gWSHVJ0KEC)fY`!kjA2>6V!w1L9~&YTciP4YNE%vPT<r{U
znRWKkopl@xMAlxcO5id-ol^dQH&4qbej7#T@Soe-UlUwJ&-JNJagz~vQx6*^`i`j*
z#aAvn7mQSRSJUd0+}FTYFu>GTAJ6nou_x3)dIdQV|Cm(_w}Oby{tblGp@f0bCXS#h
z_>Hy+CYI%wPaZqJ<X|HLOK}lA7U2P1b)u)OvSpf<by+M73G{!QU=Oy2Wnm;%tAYNQ
z@nxNT*N&+jPsxu(fu`NBRg7FW@)dMQK1JEuy3Nv0i@&P$e5?$(c13=oz$x5frvx}z
z_OQIi@rvqEUC1PWXigvmGVjRY%E%=nV}UJxDNnFx|2KTSniqI_O-G@Cf3NA!E8f1&
z=+dOuTe{fxbu=S*$Bq_e>u8v%V*BqT#-b)p2}<p9#fwSUf#PE#*>*kfyxI@Jz6)|B
z-8pa&<-dRyQSH5|QPi`L*m(Eq$15LC8Rqyj)ur!XvNe~Gc++Nmjq4Y~0W0uN!%kHj
zIq->0Y(qd?wp+HEs_4$UA4zNn$*5u$zxoX(4j=hu^ng-lLZIJfXbsI2L-&e~T?L}4
zE8bn^MT|A(gVrKf9%I+@WluJT4X0wB-GKZIhst`%##j>6$VdGH;pLC7s~=S9Ix-~i
zfr0B0B)_203j#u+p}k!s=oN3(H)c)Wo~(Rt)qk8`qak8JeHEAZAsh=574`^$f`dP@
zPIx`w8wHQ8gXLWk)@r&Pub06svj@N<$mhDxcW`LAV^JT$6V1Cg98MDQ9582WwO97;
ze8eYA>-Bmyxc4Hp7voIFvCuaFpGjY~eK>f09(3Gu%fB=Z_nL%8O~;gvkV{_Z04noq
zB7*cP1Zk>L>aLm`Wu{GxaUO&ue`+wx&DY<~gUsw*<-}z+CR&j~EZVTmSRDAwfRZI$
zHq{!cYgPY+*RW4w?&Xy(P%_jgRU!e)+8mszIHfwt14<fyGT5w!Q-<pul}4u-vmZYo
zDJe*27dQe@u(8rME*>(0GKcc6E6nY6`^(SlXQR=M=a)s4c=E;0!Xh3Ye{CN_Dh2Jh
zty(u76*syV7NZJM%vV9t>&*}Jg;0I{XLATZ$kkD<=R<x|9lcRjb$&yD;!XK>)3_-H
z*C)ZRX)z<i^z#fZD4Q<;s3f0q3kwsCWxDDOtgc>xsLaMG$@BduuqhjiLTCY%Tlw7A
zfKEc-W>e$%rA@RF3bFLDmK%-RX}jig|FMAOQL^=D)J+<JC(xNzHQt6M9d23xHyg5z
z_n!JUicE~W#CQj5jx#svu`y}+l)Em!=oE}VEZE+J&h(xBad03@i<;Go5asq}ioncR
zXYotp%Iu6%8$m#h_10F>3jCcov!hl*Gufh)1kac>$y;{-E{8FBZ$Qq3DqMq@hvub1
zu({qV&=Wx_z4z7+b((4*%BH2G+YCSo8dKVr&t0Ygi`G99Mo#OMCFv$t+t#h%;foeW
z?+sldo_I?5YHGKENN58ouW`UhFQYx0S0yhO<oQyv;W?t!(h^xv01C!tk5!@SY}PHK
zo6PQQ_rBQDa3|waR95hBjI5gD*Z4`~j2p0+*hHkGqCxiD;czv!O3gozyQP8}!pB%z
zx2_)YkQ$IVF{(xHe;5~izGjkPqkYd%nep<+UMHbfM~ebZd+XZtE7x%Wjd^)Z@b*Ea
z<@RvX(nMy`4kX%1rTF4XdB|d6_56+b(D@_Ffs(q<=RKRp1PF5Sg0MsXHBmZ)l^?X2
z7epyBE}<mYVaU)lKN<6{F+|{ohQCteU?9j?iS~!Y%v=$xj$Dpgb|znJJ=PvzT>Ft^
zBV2hUB`-nSQ%MtiqjnKyB7e<MGeWk(pc{_!L)SOLypoOKlOD8GYEr7MO`zfRshoqs
zCBf3O^X+pINY{Yk8Q_>AuwbIW>LNoxKq*wZs&FP`jh^|-w@;3ylbFsRlbG9+$hW;m
zAn!OgE>5BIS0QDtF8RA%!%oNi^Xa#v%aO^FlKJmt+!-RIR5G#WUN<8Uj~nKGpExUN
zDmm3i9Gu@o{`GUwo=>ls>0a~I^zr?DeMG6_I3kH@A(ppm3*W;{!gsfV*VZmVECb0=
z)<LWLu0jQhmr*N7r8KA%^w;I5mu|LsmcI7s6mw6j(#M`TTs!R)oIY~WYCWgCF6YHl
zm#j%6oOtK=(!1zUOJoQIIG7?kj+C~Oh$T{11Z7yrhZv9(7w}({{Cs=tdw|pP`DPtF
zkbxs@4J5(iv?3*sNa#g0b>;V2uaF~yEa=%iWoNoIphtq7P8P<)UYP_G-+$heb3>!&
z2|_!zPQjT{dUODN9VGdB3dlEpXt8tv2hllIC%Y>I1U_DHG}`8U4Zxx+97ec+kDaO+
zCWNAkl|1i!v1vUnD>s5i-ojH8`OI&R8o;lzw#~m1(V`Pd$M9|cHJAF6tTYJ;xP@#g
zWp;kCrE^`M5%cWV2}ISt^SJrg0STyV{9;6_ffX}q{D${)f5yT*PZc)j@n#5bj~D&*
zfCtS4OHs?iy5|wVw{l7f(tQ$JrKQ&w`5m=#TA+&Ic+p8h<5_;OaB?i)BqStMmM!V2
zZ7zHF1u>=nR{?{XhF1GhZQR7H*DH_UI-!b^wr=2~+JPs)(KA-MEuCtH+oL;f5hniB
zKE(ylRW2ma-F#CUhw%M$TrzCDF*mQAz}qwhh}evY7m~O3%@5PWWe+uULBg#Zymvm%
zzp4cPI2DG?{nF5V_GJC*P)r1Tg}>i7b>S9BY{o=|PdSxAO`ZZwu>yrCa!!s`w)1<H
z53?_0D3Y7(!k<>K`mr>wKG@OaK2cB0=#Na!lEaiNb?D#CQqldu+Mbh`Z!LD_o4?Y3
zZ{ejG8)j`_>I3lzGM7bMl-FP$!J01vPML42NO|sxYsOz@>!f^ptz9;u8}zy%b`FM7
znrzlIQtL5^L#&a6yt@Udif0Y-k^i3s@bA(V+#LT}%&*xftE|uzO)}_4cH>)?ad@_}
zAfk6m(Ggy*II?(esJ*v$gboQq`OJvEcMy@^hRNJXy{hTnV^oWgQdfrRhf6@o++mG%
z3ir#OP~v<92t!1bG_8A-Z{7ceOdz*Fi+MKe8KhS$uvlwtydB{CtbsW$v?dP0ZvPme
zM+OH-w?GxL?QL?|u*d26lIa{Q9;QHC6s(f*EtI~Xho0x4(c4I7x!F8p$bC(2=49a#
z9PIKIDpN|>fOn3Zg6Pk!c*-u-rz7!*Z;U*H3H!~F<qc~`8Y{O$<7qsgKxd(P&BcY{
z5K2m(P%o0CmTx{vef_Uq4>GPEspqXt)_lTDosTWdsCUc^y64Rc(w-AMYir}81FK!S
zvFr-*^mpS>t?t@u6s1zB*^wE^s$tM$d~NaGFVQ$6%%*2y1x4o^c@Kxv3wEB{|3}(e
zM#U9vS)(|G7w!@)xVu9r+}&LY3lQAh-GW1K2o^NBdvFgyg1bX-c$K~_Uw4mt`^Wor
z7(mrH`|P#Xo@ed3=A0g$exxPS_M*F9uQ?-M+o@9;a!E7(aH%~7Gv27*iCqQJM<hf=
zLaOj*I-T&DqML^uF6ijj0JEmj>kWD?o>Qti4E?5{WC&`$$tsov=26th1hm;$XH->J
zlB}xnkN#@RwWAEz<Og}hPsnff4K$_=d<R?auKj-Qa8?w0zzea`U9fI)$ku>o70Qky
z()7PRz&x5=I(ne{UbbPzuvQ_2!240slzxKlaw`c3hggxPpp%b{Ndt&Stm<Td%1ySC
zpOxc*SF-9vPh-d(6l_Lf(R<ZrCQBWPWCOO)*i>XC1Yw@)YmUC(d@jHdwFPqHdC?d;
zi>F--AobH<_H7n#(JLSr`ZI#KY!%E)g{At-UQ-Z^-2^vV(UB4oyUS@6>D!!P&@wz>
zZwUivZb|&;(b_M&7&c+wE0+YNIPz>&JeMhCO0?PZ6+`2z&xvf))h!Xo9q=b#&3TNL
zA4Nu4f@@75?A}2!-|NixW2`6`Ank!JNTFu9Ct9L6fX_eTpWjv5#9(jFKn<5tdmI^>
z;)hzAN)TeDu1;Ad_oPCz^p{sHW70O_>P1yMBQiQ7f8-p$V12&aWGEgCq!3TUvlwra
z^D-hzd%hGM^9m?e4QCdpKo+l)0OFVAP@^w4t?HEwHwjh<H>~#MxK&^6NH$48W$Cg>
z!^K%cDj<1D5gg<Wo-Iy+<uJVx^i07zNO-fR^ayxzscMM1C$N+$j6u4(004p&=S<D4
z=MVB*cN$w$d~*>^Rv>4p2{d_2;d)!6gMRzDsW67e+S8xYl$}w=+KyQra+o?rOjx2m
zZZZAaChi6IrU%kfXHaO5U&(sVqe16b|516ia@8n9oTj(&)25(=F!o+OM5ox!Q#>h}
z(HSHu;S0nTR|)M&CO&fky~167s|ntRh682@cfI`i6?gLGbTv)KFhJY+xZn7FPl2(z
zg=*&sr0Zq&^npM)_x)MhpS8Ty-H!$V{{DgKl$8BuS(Oj<NmSBfcbaa<lsIJG<VW%n
zZ46Tjb#2xwnpsEB4GpB%l98}K47Cc^gS1SoM8WifdOVA6V#{iUi*G%~DxW969;0Xo
z7?aq|@jeuixlPQ?ImfgLX-|bk-}PgNj>Hl2A!06&#&rldt72+v`tKDH<@XrB-_G35
z9lOpN(%Nea+OhfEc0+258t8+E>@d!UMk+9GkR!Cz<e<G|OmEg@NqaI1cm`pX1J!LU
zaV^mzTEN_V3$?i)$9@u*`m(hQO9n4ELgcKaW+-+j;yF|;;Bvy_XC)$5Oteu#y;B;{
z&(q7|u(H*EiPS_9vN39r*Sp-RnVT}w6({f5vgrGP83V3cuf7Z91-$BNcDz?6v%Rm@
z*OqOZ!(S0_S76_w8|L3{$x~2sc4ERokp^mqLKA{79Z#(alKRdvbRvcZk9Hv1*pSje
z)mDy+(r(kjsEwAh@FlD+jFtL0!}zVxO%#kDTg~w00NOPfMEkPq2letM+=M^y7J84P
zo*dCc&GLM`vp)PlySD4m_Q#5ubT!czU8##6m$TJYDf_0P`3oR=Zp(qJaWpBD?G@gV
z^*|)1ce9aO_w}S8hv;gymIawF+}Br_6h<~XhgZ|YO1K!4S4s*4vqF`Z8(EWp^6i4E
zehob>hDwgFznqZKT_KXijr;+{RU7-uNeOl?N)bUE7(o1VN8@*ERBh;-SuGzOY3K(p
zZl>8?!OGhrI^F(=5UJlBhVBS5@1+s9i{E77?JV()jS870dj4*O1VZ9MuKT3WE<au#
z-9CMll8~Tc_u8TmCKF{*$j!y+I4@Ofm&p|%^|`fmG)YWL+sE1ak)m1IOz<<CTREO^
zPWgn#(L6Mp6#Shsmqf^O9I)PY8>r*UlClp`f+)=x@$fr`M^RK;kk!*GY3}8m1fOy+
zC>SzAM1GEtCighln^m@9VwqRIe>a*A##31^uBe|^-LRNxYq}lCjE*U4yK{O&C7M^n
zNIsh>Vtjw=*088a$-{;bhV68+vGLIAypY;2VV<5mnX6A%wmXx3muCt6(X&Rd&1lGW
zqnz|-s8#<;bi4V*c>hx@C6?Zj0>g-$i?3a1C`hGDoGPwyY{unAa<}*;o5aGczX&h>
zgFY|7!9LzY_3nB|-3i?C!(e=aSK8e%&DkM1(Q7C&CU-UriNjoi`0ngoS*X9~R-B#L
zS@!t;o)x3RU6e!!d*j6sL}C?K<hb;*StD;;xnJ^V;IZBSIr}btoDQ#CsulRIn26)>
zu2+JpFjr!08z4Dg;*2T_mQXePrS4^lnPve2a4}vQ$?mcBOZLUjq8_rGv(RR0d|dQF
zV<0_TqsDW#u<v%NG~_-XMbhw56vHVUO*Jay_?}JT^#<pTN$5rh;eTerF`^#|epgW&
z<^)LYWDHo?7#3J2G+1~-?6kgpqgeL}o;N{9oPoBgOv2cr|JfbTU1x&YJsWI4lV^sE
z98(A^aGNnom3Pja<cTMETXGfs+VSA|ND-(QFuey)DD2%>&^fRw;Wwk{m!GxG)#&2W
zwk?QU{5_H#U6EyvCp6a&1GMqY;1!0FaX9XedAxILwW>Vw@tcPW2eR#Ygv3-wb9DC=
z-H&D3+}_|-0w762N1XYxt_Q)#HE6~0a2>EE>Zw}@=1C2e?W{G9->q2%#A|RP>%e7<
z(?iS3?J8T-D|J8rxdupZbYJd70vp^<UwmwdGk;{TyuSd^OU)`0xfZBst+O?Og8xp&
zFdM_3F#QOo35p}N;0o0&f7Ah4h}Kd<!4NBOO8laHL~pQPJ0c+N+b{$H9y{KT2<*Y@
zCFYTNAH1`PgS%Fb9zmoGQR{)4u+wr;rLbb09f-nyKfZAL;3X%AZ1`!EMsuv!w}jH<
zi0I%3J^-A=iGr8HUUrDmyGl`W`h&IGV3!EWWet^;hx^0x1JQwnPeuz5M3_45nn_vo
z#T6F|>#QB(qBAAa?7S`2Z<zaG=_o4hK#Lk>eC9(oraxP&(FRO)t`!IQ8E;hz-Aumx
zeT5ymhuZ*N=!YUaID&Q8ImOvH_K30pP-=(|R`*}Q>b;`35G(}l&oi~WTL=4EOU6@W
zU272GIa<&O%vo*6RrJaGZ@O^BymXuwi)~@H*{qKr)4ua2yuLou^>OCqL&R@4G_&G;
z@XW1sril2a*|m*nlJ}r3v5tfheniL#R^Wkb_Xo1D9%CSQS_9*2%C8jbmAT-X*9BYb
zkop^N8mr8x=U%UTkKjDh{i0@ac6Mb>xRwEM2EtkP?l<PYm=JW?Q-~_kLs2))BRihu
z_0rSw8@_X0Ej%iFG>hG=s>zOyxD0I*HDS@Sxqv-~H%Dfi!9AOojGlW^%Dn)mIr`l%
zSlL_Fq!SGvy{;b!vLRZKp#%<`*ct@e71wZb<sLsHX?}+^qzx}ueR;m2%JUP-*O6Wt
z?(imY=Y%PH57QSN^@Ulhd+bP>IiJfW`T1Zd9!mkPFl30DOT>h|N0k&?z^yW>4<cnw
zjL}L-Uf?BDCL?p8(z9b#Cq?m|$}qz`rf6iDR_(gCmb_b>e|VOOD&TeCl<QV;7;za_
zxm!BM*e_?1<-R8}d$sj_uE%!geCZuUmdhJ=qtDtWs;cJry<G2UH&#D6eSaev(N50X
z`UC;@nqG?=5XSS84w$c_DH%uQSAErNuf~n&n^!9ZqaWq@1Y->WEyC=n#r(;MuU?&5
zgE|MeFxch?I%zUeakOK%AyuTe_|3dJFY+~c4gQB)1rCl+p+A4h*hJ${Cnt!$%4XzG
zEEcu6*4_)phW}wK{w(W$G+m$Se)65x!u4ogR;kg@sTckRA|)h~^3KzW4YL$Gr^BWc
zKO{(=wNoQYMYrAp$?xsuZZ-!g&+!BhYy*2s(r*yWJ2IBh(=XZEv;?t-et_utBopmy
zZ<CV0MSp8{$Tp{3LpIoftujDTPzZ9erXh$e&sEmil!>^px@;VW$X}-A`JC}*qH)DR
z{ZJNpkZi{Pc(N1Jnx$E(74>vU@8V3B-yh4n0$)h&E^MxbvX{<&(Wm6pq)&pKv|wtd
z$#xY~Dh3#-Sx(wP=|w-&|JVx3@@gI<&!C@a(qj-MDM-UfnayzOZ66joSlC`1Iz9AL
z$>vZ3Wz}DCWW5|mxc2|Hqp`W{P8XG*>-G!!LoP~D2`iy^ms;cMe2!9KXr|w`S4|ve
zOEw}TCW9eCCBhZIPg>To<vUypk<J;|;wsk3Ko}qQNPLSOXmW}r7wwU`eYrbE{eBi`
z1HO5qAe6wS9B~>PMCXVlo5H@!cJ%)+CBzA$_4@NOdti9NwSb08x=S7+8lUw`SNQe5
z$@RFJHL7kJv!cXyZ#;m&#(Ls$(&;-miQ+NR1z^#2x2~@MA^z)rMpO(=5c<@Fsr(+B
zD9_Dl_0tdd;Dgl&2nZ?h++gOG@usj-%H)_F@mgTm7jd62@4E6sRolwpmoFx?`HfAj
zpr@R}r*k4z?dzY;Qk?@vw7Cqy@c(jLL(IGlk=_4rbJ2eum0Rg!se8~Lj(Ye`K`aiK
zVu4in@r~=qWOrnI9JiFTFbt`e&(!QUp6Qu)65E3&9k(t6%y0656Rh*dm*l``A!DCY
zCH9%S8iG3k+APXY`Uw<P61w%I5Kw>`)5!i5AMWiKqw(y^9YjM>2BH~AE?=F0(L=Dk
zVkeChC%%uwtgft=MK7Iw3CjbE;EEag+7SA)IxaO^|3D*N0OGmgbu%j;4{u}e6!5&w
zts780EL_o;8x&avkYaH7Akyc`7de&~LDnY6B<Ih%o*54!jh(1c@P&n?p(wGku)rS4
znVz)8bKLORdtT$u?>=S}D0`qlMnWwppx>WOK>XaMuouVf*}BFu3Yu<SHtk_M@_WT?
z+)WRg9k0~v-RQb1C%L1t-=g9KFN)I66o~Qy{6Rp&hjFHg3N%xKyAQAyhVZvfAn+%0
z?={21Sd+HvZQPsDe)U7KBfU(wK+h>xQVuO}Shmz9^U7?1lp9;L!Obicm%}9M)pPJu
zUP<hWU<ti`BA%n4b=_s08TB;DG}}@~%C=F+_tPDgEwMVx$_-FjaRO|G9d(_&yx#fb
zV;3#>cV+D)J~7<KL<hg!v|lB7>)dwDQ4>s^x$7uaY)30gU!QLr*@c!|_F3E>m>0{G
zrDxuFv9?c(>WvlUUCy%=({@j{3p_+Q>rsJzJR>1m$q(1I6}qZn{T413`^~A}cXxQB
z2#m$AA*@TaHVNNaU8F6IocWJc5mcfT{OaSU2lWTL(#5!lz@&M<1jk-v_L>GPoiIAq
z%9Z@BpQ%KKiVp#IhPy2Y52OYH`c{nF`l*=j@lZQ1Cu}r5{#+Zwu}K4hG4V(*n4k8t
z9p#Qmri%kXWK1~{DP4M=eVwS-?qwmV_J(5bglh_W?k90pKXQR$19IiQ`-)o*^Q0((
zB~UR3`hU9@S*ZU=aKtZep^|Ed(Rvm|{^%7ye}ljB=3e+sr~dpgh#}e~RBPaxuJK%h
zswS=IWJC(te&s`HLWe~&*OWn$Pli}1>Zxd)3D%07+}*QGuOVxicv63UL7(Q7`p<VW
z5rfSIDx2i14-%CY3y*30WQD&6RO?S7XWmM-ZXHojn^nZXRLK0>jyUt~p$d+o7nKyj
z_<XyXrI{1xSf})BFP-XqN|Zxg3gSI-00q_bVt>lDtNiKD1bz#Yvg@IB`>Q{TDumiU
zy%Q)NUceE#hbF{@8+s1Y?0$mD){K8QHsEGfK@KO@(hF%BBJwvkH!sl=WBOv|kLe;W
z*Y$YBxLfrH;4-^hg`ytxO#t?KB;zgkP#Vbpw@yFKe!5)OA0>v!5kW~8=o%(qf{y<}
zG)~Oe2lvPZ#8V10`G{pzz<w7F@7E};t#%1Hha+B)Xir<Tm?w2<^{j=p){(8#qvpX{
znhElf2f~Q)^mj1qsTIs1uEenASFIyb01qrM13D4f7Kq2~%;I57tHs3zT2NNn!_kOo
zqr!ATV7*XX@*?MIjYSE=p8&zPeA={36W`2V(7eR-sb;A*AUfKzI<q<~dt;P?0;2?K
z$S6+6ZCTdb`^OV5<7;NGB$nI!{hi@%K<@MyJ9{4I8vT_ZBxfN<M(vtZbEI6~81JpT
zL6@i}!z3BDJ*cxhz}`%q5i})y<Y>kd96i<wD?4I>mj}pou}QfgHmj!l{q2RjL2U0g
ze>R9)_)i{SwMiScC`}9RbS*=0!&U9+48EU-!?Bv7KtO>1g;0Mo%vpP$un(5Zl+H%~
zcbrA+%XL+lA0B4_K-7|fOI%0yUsdLxOJBN!79=xfL2o5zE>(wK@~d8@;wF6pv~Vwj
z`i`BuT9=-Sbu~zZ!Xv+QLi*cb{NTITFY?qKIIIC^0}%D}v~`)kMk_x93NfVLqR8Pa
zp?qjO^Kg(zcbqyJ0;$gEfjd3DV&tf*(aIWn$_Z|V*&4bBj)wGxs?I&w50A&S3pSmk
z!i3+;<qB%Xb~t&mO;B6xmRKI*Rh;K9A(9kn=Q69X42o_8?gn;1-%A#i<2?q}YfNO{
z)GyEK%uS^F1?yiYz`UtLzt^IlbUQa}e|bRRk3;{?jkZSZ03^z?^YmI}AC0$Ao&EJZ
zH60Wr*rthXXIC1$*Ai~8af;v|8T9CD5;EMwH)u+KA%qTtl8Nz5fTvFgchYD_y%0Z>
zgY@cCzUrJhNs=8D-^LSB6X4mwbp^c0w%I-+a(sImT*CC1Yi4<i-xE>ee*nY*C>Z|a
zQqT$vZmqWjJVy+zKftA>eFiore(Aq!rZ5JppRiw<J@og1TJJ|@xS1r>$1og)PEQLh
z{qJ>xt==UvP<RttkCzJo-i|6Y&7i#VVo{QN{q7VwW>b+*ajg{PI0_Fpj%!(gg5w`Q
zcTpt$E`zh;B=_3!bJN?spZ~Q5qK6R2q#Y*;E6HT4u%z#xf-uPufQ_1t<VHJV77=-+
zH6MLFw|{C*)wUY!B=k1(!jq%i1N)}F3f-_q(^+fQ%<5U=B8Z|oiFGt$aVLQxKLerM
zs{I)9$}9`fGj2kTJPo83PByI<j5MVT6CefALW)1Ha}`3u%Bj`a{)_!zUCd_yp*^9Y
zaQyfEp;@)GjTe{)W7JJ6vN7%^g%fGz&@4{c<ViJK-bd$$eqXMJdyMcKdpCBTCgeja
z_MzwbE3gNphvyp7h3S!^rUwX0GuL5cXP6K<G1MyWwPt-z*KegR!e59FbK+rlAM(t7
zP~Y14+T84zQ(*fct{(>+l@r-_(Su==S6)y*FR!Q4TVs!vdX5(KX?_9+#DQB7!wXDy
zJO)hco_A-|yjv8nKId!Jz$Fc+k<T%B)mmjkm|0I}ZFYsv1rv`x&=ys98y>Xq1W0y=
z02CCwDX-LwMgsZ(_x5e?5b83x(1Cn^fr@uhUU@>L#ndBc2z=a2`2K?KBseiMlh_6n
z#b|`H>RC{TNawrhj_Ee4&98ax`>kGwC9IO<{>;%>DJrLf)Gg-Dm^Kj@wexBh2Sp9w
z#j2-4Gnw)XKHGO^3DRg23EuiK(O<EQ>X2Z}lk$Xr$zE-CzxmM!-~ZmQ@b2uY$6|Ti
z)H8PK{dwiR?lNT=nvVs>3`26Ip;+JaAL>kawjOUO8he4|T%9Yki}}WINzVs!U1Lc4
z64ZMCeWPo56a}t0le7ALw^M>*u6I|4OeD6&jY{1;pV4a~^aZq%)z3~rMTH!T$f#b=
zx@7{>*bR*i)Bc=cg!PU)4Z=K<0MX_kju?&#XC3oL{W8X{G%VhBs9mNr21hQvX<O?J
zGxt7upG7tIS@Swl)Y8Yb%Oqm9hy=cQkv1JHMg$M=_QY{^r4nI^GiU@m2EosrYnQo+
zyk2#u!||(TB;yicnfCp8Oc%v|5pSh1Sg|D4fKH|^Q5wL^0(`GEkRY8RW7%Hgx@HV1
zt^hT-qIVzW&p(cTg+uc-j_cfZrkePi-(4_8R{M2fEK&s{Ufo$yt7cVV+G(}j1M%nn
zn$J0P*=MagmMTaI1bL==P>f+%kkpT?G5xnbD)GuV7Ct^r)El|~eFJ~F(Nszp(m~(a
z6TJ%47+$3LXq^HwDn?OHImAE?SZXv_?9u9(j<^iRuG(Q86SfEf>_N>oI~FGHEJ}o!
zCi!ZIN=eE(gnPc8^kM7_)_j;szZCnX_$!Ga-xw@{ijGodWd44xt#)t3v*@FbPPn7t
zpXzZ|jvAyioSl@;0n=oGyL-&b4h_Q|Vfl<mDd8)QgjP+A)qJ2m4=Qr~s3O&FFc=97
zQpH6Ki|X3@#0kA_V?O*ReVdG=PM1=`o`}z1NHMlfVi3+P!@hw?Iy8beIi}=3e1KM8
zp^Zwx20kh5sv98=3XkE-T9w=J;-^cX1vN-!mN?ul-qSWo62mU>>`HAc--8+ScFI`5
z%$6h;+g}@vv#<KPlt#@Inr?lHN!|8~{!>Q?6fOfG@%~V)&7;E2pHgimYl*JBlVVzu
ztDq;e2FLBEfiV5gxkYsqHOKd&Im;MTsioNtb=CA=R5^mc<?>#=&Za))p(cwz4e1|G
zHD#GX_oRW`xVm%nojqR;miBWxoXj@#e@-FN=Gw>_pxSzuCb7^})M7i&;LWYdZd0!q
z6k_6saI3F2TXn|zx=NeO%D#Oncz5@kK{#?vL=tL1JTY8spr4lmk97g2)QD-TcPm8@
z1`C6$u>;~ukjxbUvInAG%)wJfrW<+7-W57_JxJN-$)svoeItN_2Wsinh&4|uuJT)M
z^<)1IY$9YrV64wFB8g<C2%rzb;~_QnTh|#3+WXKnT?;vA33X=#17VY(;G`-a3=J3?
zN*N${g90VkDdY(UP9mdd0E2eoQY7T(Qu}$Ae)2FdKFl?d8^>A06qzHu#!K}<+rxJ&
z>is}z5&o`~dm@~8VO@PF98*$&A2L^h87Y<pe`4}@R$3s+Udsga2YXv6Q`{XhAv+42
zO<suIi!9UZufRqXl|aP<IWhMOjYNz*OigL+Dc+-7h{=kerSaUYN3<`p(gn$1t2Z;3
zvlq=g>qbOB(v?%@twKnx#khBGY6^pkrO<!cH?nK6<F$sZSC29e%>(X^?~(lG?jS(i
ze;z530RvnV3WMVqB{;<;BV+3Tf0y_^_^xI)HJTlki~eZq$S~ZR(9Y{X@Deu2*yiKH
z+*H2k#`G&fK-FfjYr-qh62gGm^LX$l@w~4w^CgaIyD-{o3iVe@3HJz<j$4Ig+jyGB
z_8lsF-7}7+%mlZ*-RhX+c9C+>$df_)5Yx%uuJi=N6=)uw*7}zgi8@JJ7atdRbz8=l
zhoS$X1HB&EwSKUmKgHVDOI?R2bf9$IdW;AENXYj!_iSur3bS^~NHcYm792L*xSM4S
zlSR*(p*p3^JfWEl8}1~M>e&Wzs%aHWp#COkff3HHE(l=s^`6d&<{k`sUwj_ygu9g1
zEf_N?Q#m}hR&yn6_*{T{S%g?qR@DA|4Ahpj(sVHxVe!26EJTPK@-7kJ9BQ%&Q~C?S
zn_!tTd~qph>Ln4?28WJg>ftSL2Q9+qHfDH%Svx(3OFmsr=V;|tHr7n0buVC|sOywV
zJZTV%+e5m#-=Yk^9e<_v+Rp_QXD4Xcd^tQC#Ag)MV5f7YIbJ*kTJ(7g_~lzQ{?asP
zcx&$LZG8G-?(Ct$TJXY1k}ILvdnVW5j-;tQVD$ZC?sH&O*6gOb;ma+Tz@O=Z7W<zZ
zt;aG6Md?2G7pA%_?!w+5E=)s6OCBjxjL61%Lbo8T$Y{*fUky6X#-<i#427y@k9Q9~
zR<^X|Yi4Gk_C|DfZL2%7B2+J6UL<zEck5x%IH9g5V%zpMr$oI=X302FH(Nl!Ej<_L
zMYlFaau=sZ>!kb8MBWZg({=Hk*3#BCq@ou2rb)I?BCcE0r|CUVA#1Q(;J#FOGu?QI
zf+_GR*1r14kY$8iuBwkb|Bbq{-Tt#F50M^@+pL+ADLS)KwE%yT_q}o&Gqa!#B@x*V
z4-Kq&9x?^)t@*{7(zt0MO0E_0FS?Vs>j2{pPiAzr)I}b*_`67~x-(|b@Q2m~)xplo
zp?x&Pzzg+a5b!}PuUz(vAM!a?q*8ppS(k3*28L)AemgV<!5!=D!OL*L2g1VIXGdJr
zn`U}nSJ4GpH_0vvTsml37T)h-xntg6+bAc((FEb&wI3C3c6j}$?0A3sScr~-S5^GW
zF<@at--ALKoHHOu8r&#=1SH~e<H*m`^7tT6&c!3)Q@AcAjJ`TO;4uSAKt}TqAiA7Z
zTF@Hkb;}hEfX~s~scARDFCJlKK92bWIlX69INQ;dEfZoxcsMA^rw%G=^Zt52SK7&N
zsqQ>++p(8rJ-8R{io3R}x`xd{m4iCHf%f>Kt}YOIyi{F!&pp`rXT`eYk5a?Xz|o5H
z(<y5V=sR<=PSwTN8Zx)myPIb>54YXSev#$Jf*V`XxoCkQH#S7#{dIy6s)jID5d}sO
z@7(AsvFC~tl(=Ap_`6cYVmB1HheHeNiWI!-c=8g$CDfuKpXN+8ex<rr*(gEFiWW{s
z5=GG|?-@2?v}Bsd6uFDFls1bX0q%J6w<oEUi_@|p{>X^LXY65{Tl{mvSF1SZuMSdh
z_~_Sn$?LS0Laq}YHC)RD<)6wtk{xT2#yFQ2eB=47Amk6;f#Bg!6=7OoyE{85iijJ4
zIB+~jX(6D}iR5@?i4sG(Yf!672KSc#-AZI?nUP#PGE72-WK)zPN>HD@>vOqFXy(BX
z&T0!L{P3Vk-@}Kn4GOs&HiK7<xDS0)fbP5^))G_R_4m9CJhoX1*2-COu<zHXnK@DO
zAC(CaFE0)^s7uh$a+vzwZzzPYbZcS-3@iA=0+qumpQRLD@X<P+t*FQ~S-7+gu^;mm
zKkRba%mT%)2;}BU4VjP*mZ<}ceSN8H#)$Qz>Qu!^-zx;VCGb&+G%|gdYY>n~L2JA*
z{{(4N{PXD@CH<(MTIyGP@)vyQ@egL3utY33j^di;vGQVPfm$>TqcXT<1!M*9*w5#F
zAZ4LeMpE?QI_7+6bs19es@W!%NPwL+>h-u&10{`~RLLNknQdZV9L(gd;)dy_z8zX>
zxVxr!V*bqSllvZ^2yeWhcUTsO&u{`teVPGjwAneQx&HC{K^JglsiB(T#Zm2IeUd?~
zEuMDXel<>-Drnb2LCR8*{GN+x#p6wkzd;(n9GkY0^Ys%hO=}@q_O6Z7kKVCghdPZ`
z;oBWmI=>%8%OH9Oun2#8T3pkwOTTTQoySBim}Qnqn%L6xG9$>Ht0m$o>gWxM8b04#
zdMcVDz5J5k&Hid$uwT}G+t?;LD{}ukB$>K+iv6n)J1fF$&<aV-vz>rh9=ZjrC8<<G
z!ly6QXnVZutd@98$RRx@n&eEeR3v(~<7OYz`3;79kVV&&J&qs5h|#&^j=bKH>{EQ{
z*=g1dWNnnpocofGK!|=UBX{E?RvU7r<-9PX+0O3x46#?r6&s(q1_{i=pTjbJ%--k4
zJgc+|>@ZxwH(fw#M3CUj@>(}m4&na(*GTy@-ee#&fFxtC8eLgfbXO`@d?;)WRQb3q
zg77d}Wh%!i?NRCLCVKr+uvK29*$U`yC!fk%u!6JC8-8wPtVdK(2uU>Q64l6jRDJJI
zVC<AWQne4woA=JdQuDpgbqjex2h<9ZTgBnyu})hb^26b!>$qEh_Tep`x1Of5PF|lL
zYNJ-Kq~ORe0+*nR2Gf27a}lFKkNxs=^P2SUPam~U=Uyh<R2-(a58R~qX6N@F#Px((
zwJqDR%i4TM%*}usRWie#T^9!1gmXV?D-;r+zbMWx_@JIgTjzNpC~`>-tFZovq#*Go
z=|pExQk-g}WQ9)1TAbC$JBqv`NR7$pW>3WLyRc`RIZn9uM7XfeK8|fX_&)P~98->O
z9A=_$I=Z43=_}s|N_0V~Vzw4D{)a(rY3(}+hbP*!T0v=2`~lwl?Ca^v+1k$NvZuq3
zxbfx=L(DP}>}ZQCb)y5My-jMtchN>3yS3!vQra-;CtArlIrcyYy9V7s+%5sFHvQTV
zqX1zg!yzq|(2xmct(Rbib{;>(N4D6x>OAaN{pkSuy0*81dq4-g3&HyBv@bGCFcvAw
zJ^hc*Jw$gXC{!2P;$j@b16+!M6ij>*izXMRQ!tv(DizVBr_)2>q$&hZx=E(bt)u}>
zZM_4o$DD{N636kWemfMTKX1#X#xr{*4UY3*%cI!l!apUDFViRvd-W^iJhX{d4!1bJ
zl-%84V#v+~PJe=P5TQ`%Sv6NoPMz1uI6R;<s&Ox%Il_>?4(8rf{dMv2R35yEikSKP
z<zeRLz|NVap-<^UIch|O)d>!iECE9|d+)A%P%GMrWUrDI059xfCK|e>7S6#QLakc8
zMM}E{Gmcfo3!PTB%}aM3$k%bg3;t%a36d>??Hh=wg=^1)m?+!xFNZ(+S3-ZO9ozG*
zq-28#uU6Dyy(6GA|L!I$E4vWszk^MTDSsNKdmx1wcL1JL6-e}oRKm%?8+<PBy46ji
zRWuujKjYjf6m0D4rKV{-LnB|8*XplYa2QQKOpc83SX}d%N<B1zA=3LQR_|m<Nst-z
z1tBibVTF3s)#tAC#~qoBTUTmE2Edf101aYD9GTk;U6>%%`Xp(r_VNU{J)M4+`6UyJ
z8V;!EekMdc*Zz3H^Bwlw9xM+xiHJ^ueJ;L{C59kd@AtH4mTsg!qm}K6NR~9vpSAM!
zC^vCh#+FiECK7k2mrHzl!|;?_^U&5s(y-mlj;2OY|B_`ixwz}(<axzn(1r<Ee(r;z
z*~9(fG;S{kNGRKl(4IE0%==cZTcYh3-^(Zu5_U+Pt>$eKDk8UxQB-JOVkru?2PsUO
zdoPh@&r8^Ti2ayM*Tws1deebBy96DFdKldrtz>A_;b6)bPqV#Xti7pvV^s+P1g(S=
zQ1S2tB1w#WFEi%nvp;{9)i!!al?Osf<CNyy?<&YQhcM0w+;9@orU|f^k979xMQ$+@
z***f`d83M+9op&XXysbW>0eU9Qav{T1!1bcBL(`A11Z>7LTQIyY6X~BT}7lbV&fbr
z^S*b@-njgk`OtXtf?tfF0yb()|Ew}u=i2%c^D_8DKV6AD>)4M^U@6pucw9V!;1XTy
z0mjLxv`tHi7#={=JIo|XzpVN3NGGsBSS%5@oPP`iuqhv_)_W8gP-L(bq|c}7>*>)p
zHs=G)1G&5sOkj~mE(!{IlXq&ED8!C$p3Yf6uS8&qGBPTkR3%`eJnLTF50evKJ;`Ry
z_jz!1Ihf=fXvkgfO&}4!9Laxq2Nw*F8-N3*y!`z87vTyv8*3Ciny=^^E;R*RtUddv
z8NLi$+CFJXG|bG$neGL;!np<z54IlhHceEW(0-!Kd!FZLU$c+y_6AHwFATWVd8WA#
z!E!6Rc|C9dT46o54_aZKo5h57DlwgcWQyVqFTYuT+GuP8-W-*+m}D?pTCNPP*C91G
z-(sRb;~fq%@xk;_uAp58&1eeD2YA}8+~2`E1VAiVTpE_4`9i;BXcjKnEE={h6p-QB
zGLGT5op%f`*DfwNBDL?~OpbtA+H7P{t<xQ1y4kj3DN5Nq4m*#4J;v&hcQse=qcA8-
z1aBts+*DNkni}~J#*ovb@IQLsjJ`r{I4ed~-g%^zmemI(X`+t1i?b$5hsP>RO7nSK
z%MgVl*`KdYXyYv=6KLCn<A`lpWuTlzvn~=VMe*SN7j;tI9)s{o7qH5Qu4#@?AHwU4
zbx$ROwEZ!13mou$UlW`-Zm>1l6zdT{qN@EElYkZKy^wWH9(zWBcIkHACiy@|8}d-$
zvI1;%0ztZN5@Ge2)BdA=$#oj}QEemGG_G%9naF}W_S$J`-KihVs5&0<I$5iAVPW-p
z_1t1hoCn)cdm$X#B<WbSU9>T1#eRdWGkkUXNWHRmlo{@2eS_^exo~}g9CP&SO#Y#r
z=#k(iNMN+G%@qJU<aws4=dqqEgIHbP!UGgCxBAq8dNJF*@<-8#p=<J|r^{;aSkF8g
zPC?+n!BHlZESXjRyKe&ECVB~kyyu86sB?CcIA<gt+zj|)4UjF|1G+hLK*~ydHCwot
zDC}fn<$f7tGgycJ4WdxKG0lthVJq!vKoY^uWB1rczfh8T+mqFObti2Vd5sYB>tM9|
zWvhdD&>X<VUC(XfIWV}wlQqW<(<Rmu-Et7~$v1O9$2xwNUt-%#DKBm^BV+4Fp>Gzi
z(VpCK?t6GswryL9p%h=fngEKx1eqqM1DiM}^56dVj7TCDUu3bcZGa~|0gyhSS2^G_
z&B_sy^Cc@ZfHxV_1a4L8OTe7}%{&F7sdHa&Ohu2;fxBM(2p~rePV7%E=f1cud`3#R
zm6UNb(T5}Hmdm-Q7^m%ss3UcHwl^kj$3?b34!-M9^<m*EL*KjkH1QYFT+s@w<69LH
z(Wt<u&p$1&vG=~!e31{NAlC%cCo7U9q3>u3=kbfWwB)6q@sw3okeLtNr07-bPrYe=
z1hCm{570sb2^Lh-!s<AlDW(w|uxT5e2ficnbec*KS>Q0)n_s<YIC}Pn3Sr|fEKs$6
zG4vW@2@vaX*eVp&XhwGf02~$Am)@8Fsp1;XzZlhiS&-IW)7jkrMx-y^Ur0X5y#6Cr
zo5U;p6;9d;&Vb@~G}LcO0Uu77+u%T4=NWBya}hk^(Ym~#b9k`i&TW)jW5Es7^&COS
z_AjIr_z5|@FJY>gDB(lZf4OlSu<q<Iw}DW3+pRA9W636#c6;NQw<-+y&J2(g?~KA@
z`PUV`9s}+j?m56?2h#fWx!AEoy9PpAXSl|SK0$N&J#F=)55NW!Knh0$=giKQN5X^l
zCa@HyKL+_FEnLmBcHwB5X<i>r<m}ji4a!g)@xBdK{COE*6~cmX?S;pm|LP7gJ|cO!
zFA5{9(%W5R!xFzPp=35goPwCe%&{>{Hd(+CKuZN;mgB=|k?Ve->LO5QwRC<LE9L<7
zyq;(uWVw}iyy&MfLwrPUy+BlKdOLs9RO;)x99n7`eQZ=xH}z27Hs4e3>nIO9C<ehD
zmrnmUNwd<@RI^MrD1nVqO(=VgyDxRxbri{(ThK^=kTT3IOlg@Zp^8B-bjkyw3eU%v
zgO3$BV4C1kMj8s%dN!C?D5@{OK%1k!G*-3yFFy1)<Hr@?&ii!{n|0m6%RzPu4Y2c}
zh^&?2w;Lo{=0_Nd$rMPW5(Mc{KouI^ovl?sjPjBjBbmN{Vq{|`O@cLG<C2zf;64#3
zWPOOi8}~5pSFtN7z}7pXpx|NA`PRb^D`F0J1RVr%n<Oj=Y#HeT%;N?@C{1#ep3{7l
zizil7d8h8pI#dx4&S2wEe&<{T6vdb^Ea*oKJjjDHfqO;@isq<$*w7jp00p$s8Q}kY
zoWd}+6xvTDe7lE%P#cJOh9HH{rtk0|K6LrHSn5o93mN8|e+SwFnMcS)B}&ZKH<qn)
z)*xfr=Djd`&CGB}_jA2!Mgmr;tnR-}(BBcN2a1h`-_f6p+l98CNFpD5FydBw&+In=
zh&@?*;oNi=KQgQxvEiRyOSD4$+pQ4<5n*O<*<kf*v|s`8Ap8Svw=rq7Ac(ivXA_1d
zhhNQCPv}+-mviuXlaP}gOq(J7J8NDl6>>nJ4oVOQz>ibkFLlB)Cl8<i>0C>0(mZaq
z|0yA#&Z1eyO$O24p-Fn$ieW8<^xMhCeW3^rfkF>sO`M<CuwgD78s~%gx6$23ih%+%
zrrr}{;~!(XupDtoeyOTbQxBtj%L$*b2Py{h2SVVtw}JKxk#|l8_B|;~e!y!hiSJUW
z+3`|stztbwE`k;BGM8&eSLjF0uC_buaS{XsfpOBdG(u^!e*`aN4gf(-cHigt_g&NX
z0#unndQ5b5c!Cr7v+2e)7ey<dH2?h>28w}nk<vas#IkWai27y)L};g~z7`5X=yD~u
z9+#&ejrv^|hM#<h4CcqR1}ssSPT0_3y7fBqh*-a!5lminXD+Fp?*J1c0@~>B4!`yq
zf@f!E=>!DyY<1vfY#?$i9Z{?BD->?)5JA6LlAAB$A$0uwnT3Ug0HUe8^9|N0-WYsV
zTA-T_WG;imOikaFl$FixO=K&BE)A@NDOHTO@e)x#NJ!8zGR8o{5d=B;tr)J(;j~6?
zvj3TEW@c9WXK2I!DK3lGQ3--M6Ok2keiaTUeuDWMa)@v{zFiq@fP=ZRggMlqI`iS9
z0#BCUziZ>~3jepu7ZD%;8M%0R+N9M=Q$<CC9Q29sKf+L~lM;x9B`GVbxbyUJf3knp
zLdQ=_%mHgU!D$=u+VTj%>z^TMWeVpT28Bn9PA+m%c~ZIatIk~d5HZF7m2Qmsv*=>n
z@xVVK`riZle_rm9gMx!$j4ciKeX+5zD~`K*=c)OUxLFnn6(|4w7XNV(mFoG(iY?f}
z$PM@8tl4V&pEp?zq@%B!>+-9r8#cTU;69dtrwN;9sY4r-<}R38oJ^6`Z?XklUS8tN
zx4kcM*pT$f94>Eck+H2ujf=!Olc<M>PcgjL1i)A=73}};eB!N6I?U#_QxF&DVPIjw
zg_}So5@>wyu;HJ`(&6-Fc{3muk6Dj-I|v+Yhetv}y*)Gt!fdqQ`ADMp@Bngs_Kcq{
z$6~pPPKB6@;DYN97OS&`AY_^mU#IxT*XQf0tDHCX|7V^5&&Tm^i@yiJg$f4)BQs8w
z&hA`iYQR!M^B;NPfB(OmGzAMsyhO+cIw8Is2s_KfV!7EtUrtf6WYTc5H1Ps(#Q&%k
zEh|&F8tV$fU)LXKibH@SiCL#uUd)ysPrl5&U4crgNJKdj9)v?o3<?VyOs*mzBa`#F
zBg3Rk2nIjjLvz@=x`whH?=7EZCjuEqBG~)JweYI-zZ=?4kZ^xxt=36mc-H^%C}wU1
z=>-6Z`0T1;;``hj^cI8QMaT*NGt~aubpA*D1!98504CQyVb#G=F=z)_&YJ)H1LfE-
zNHdo>WV6A4tWJs=Ph6>LpPzlBV`GcWeLPeY%s9AhS8^D}LcNYT1Wye*HGue2MPCwC
z7)B<GbIcE=I?mSG)s2ku#u4ELA^boA_mfZxqEdA;Gp3T_fjLM!WNKO(BT^i*K2OQ4
znqZTCri>+J09coaf#Dt4J~k47yFwt36gt!)B<-hCwz_Ii5XLS?rWqz~fr^HvS?2ri
z`{w_<xc=ve!4v?oZ8NdJILJ_Uyq&rK#ZWn6j2-TWI1(T(#{dpf`IR=`I@FDC;2LV?
zuOl|U)am({f)^+A6`Om+7#h;QQh2R)2?zD{Nq}FUjp^B@rQCfoZ{8k{HLpBx7pQF3
zJ9clj6Nq>Cw*p(hG}Ei#2KceZRFsB!{qG-3CUXUU6h(Kt>?_%bcu(aCkHsYX$J+YO
z?dX4p9U2sLA|C93u?lQCqju7NODX?-)IAY^)YMeqNZ>>kcadt5)J$I(N=0Fz#ECcV
zob=WbgGT82vIK<AfvJae9cDFvRlr}D8XOW*(bA#=7PVIrbU(q_G_>SvWLr6PF95Mi
z3}p*H`IN0N&YDRU4dLM7e)yAYCL4|#7mIgBS+K?)8^5=MtqBBiD;4`iB&Zl%Yt34?
zK_EIuE%Vb{3BO$;on~83kqt+cYLQGq3A=%<6J%zKf`ci8A21UcV`AiOMiR*y{hq{4
zO9j*)l`}cwIXGPof3T+ixE_it0%e)~bO#5);ko;?vPC#xJ0PbFDC~sf_VPt|*^kUu
z?8|fhM8SWhy{`L7a*syl8_tB`{KXQ>>vQTdyuY~8t?DLQS=<#RRYBOS(&lDd=);Mp
z>V~Vc5#=$gJqj{#ie-gU(x|(tipiq)FUtFu^ANZ}siLaNQtChGTe-2A$T;*bKA=(y
zFz`Mssqgqp|IBa-C)}qD<{7%Ua1wt+Ns*My0F$wq1e#J3g|_uaU<igKkO}L7HJFML
z6M=*fbIhmwagVW7`sC&NzgEQ8;@YcnzqEX%4I^T)2SDOGD7e%;tM<qVAE^_Nss&YK
zO+|LCNz*SS`lw`HDGM!E*SBc}OP&tb_AR=!4cKEL#qW~W7s0twMW4UPCE37pN9HpZ
z$nQWU9IQ^KnC)J76G00hP?Btu3=H1fFv$X4fjF?#x|miqNyc|))s`ZJgg=M)k=NVr
zBEc?+Nf_fMwZ`2aK8IbIpbK(wWgws(u_zehkF@o1HGfS&Cg(k4(k0uXT+b68OwG!Y
zOE>m!rDoY`vtRGXg!s-;IU}gzEJcL<iwOQlJO@ZaW$*qNv~s3pd3;LSdi>{ETqOY@
z7GtKQgl=hJF%5x@<&bi@g#K@LIRynAA}A^vFU-y9mgPbaifqm=NMnII-&Yh!L2vn8
z9@aoexD?HFBSA_cHB#_&j*cER7vM8;T=1^tl}=)=EQCf)&qk*+B-reMI7m$^&m32P
znOh0b%j;~XmXj!Y2MC%zY4N_*3Lfe=A68QN^r_?KS39raJn!fFhU=2<uL%N(roiI<
zg9E1u%$Wk`y73Xm`wOGl>MLa#prm|(8>ZxF2qI^!Z$tf6x%n{8<F)c{Y{n+B;GD=$
zV!@E(xtR))X{;zGO|qjv&*@J{C*p8nL!d;7r5Z!VsF)tz&HT@M(|i>x*V>{IR5U36
ze9QW`u)fEKk=Ue!M?iL&F|%%FYg4Bmjwh`YGR6NFp9_?S6JrZGfV@^Rvf}TtD3NUr
zvC`5GSsJ|pfdm9}vd+tw$h?vZYhV2ty7<Sf8b+HL4aPSg`DLQes|M^BWQ8<6A<5Ui
zJcWXrk}SRrZW#uY{Phs{o{mn%mO1p-44HIpYNqYl#z)rv3QXl(h$St><56W=z1~q9
zB^m9)jc-ktH#J11)*z7<1=D^9mRCWe$WO~`QhJbm8?ny}(z8$j!NRk#ypb_LmktPw
zlRr&oAU7t5Br&=esJgWOGs=RpfISEgAD<A_?Nx;A462Zr(5?R;u=d|G>+jm&K+1uj
zVnjuM?x<+T`2FZ|>-Y#4PD0fLST(cEHSx!WXvB%w8p$LK%rmg^LW@<v^#cU{ej7J>
z&rI2O@^eFQkaK?<r#v^~T2<WY`HQ9V{$%b|+177xd|5<Y_W!vg-Xtl+CV#FxH+(W+
z{IC7|Uu}T@>Ti6xK)PBwDpNb@=eqwR_5F)|>AzB@3I;$!1=LT&f`EXa=IQAv+%o|B
z|Np&WhM3>rm+8cw;TO1z9_7eMNflonZ;PxZvQ#ZBsDIj{TPES+;%ca=NmNu+H2S}I
zGqAGOHp?L)A#s`XKxHCQ*67p)qm%HNWYUU=<PF7>+7Xrtss4d<F%~L4jQrCSE*1j%
zGU2CQ-cg)7E2>KuPh)|CmbPCq+)!>aSBm5MYQnJEnSZ6`F~Wl&C9URV%Fa#b&qMm;
zo_T@&WN~Uaf0LZ#>e`#2;r$$njW@bvEU^os!J*i51B$k&;=seft459Fk0mWC1tnqP
z%(WBaMt&+(#!>P1ZcCE3S3^1CcIT*md;B2%@UFmumA>%HZxse+mco%1S`D>CWz{(B
zayrrUE66$Pw{il3^Kc(}2Wf^9mP}>KKWfP6DCrMXPqyfqk*&p>ylcuJFaDe3_l{~{
zNgQ1Kol#HIq!|r{EBuM%OBKh^@27$p5bjd4n;1W+^{14lm>85Lxv>4bt_PRhe5~9L
zIT;0OXnF=ld|Fk>XKeVN9C~w6Met-nskhfeQKC_7JNTl13<R1l@a0-f&6<{^S!34z
zD<J+ii1|k%qJqISV`&lk*0Bl17w0>fF8F}U#O_7RKs)nvbNB%QO-dk=!igtl$-kIJ
zM@PAwev8?zw$!PsC@93vwfbY>;Ynd)Vzz1H^4j@T!65nkvltVD1yRt^M$2*3mtT5W
zt2%A#$Wp@vU2cu+K`PPRbAO74Wlv~JXsHm!@T6S9AR1}T5<%xauPp*GTuV!hmi<H;
z7z%zfY=$xM=hclj9LYf^xeh13G+f*iVZrozZAWT-9RPfI*es!SV-dUg&@|*rS+9v*
zAF8jGeV%cz2*^m~!-Ba0QIJ=GgL_GVB>zPBT7B`}0@HbydC8ULEy0Voa#=ZIB0jIL
z6x1v9)Iw^dgq)}B4D{paXJ+D_CxV*{E8R9|P3NMLLnv{Psi7lMiYb;If5DUxwUETl
zJAcfX`kaELHJX0;7-XBNM_dGFX9#Ra&CgdR_q$1AGB-$=N!89#rgt9I(9okEjqw6`
zaXo1xVsbX>!Vn}Qy!MDV&bf<IpcUM!hERW8Fw7VB`7`n<0`8CBe`o>RlmCm|;U8Jy
zH5!V?&D_HyWTpi`!Cse}nJN2pcV345UTNgI+2NO33?8#gW;_}HCu(NB#t|eB1*h+}
z3uB{Gb199DTw|l770IYX`2Sg9`QI-ue5Ak;qXt!5$=HK=DX<t*S)d8K8}*(D9*cpD
zVVf(azZcHu)!1kZa?HzUdal-rc~pYPxcpD?1CR}usWy=4Rxl)sY$WxXeryFE;5mH&
zV2+8zz%pu~U|DgwDt4Dj#m6F-1|iPT>yQw0+e*rRW^xYZVdKkCBH^cw3Pxi7mD1T5
zx~1QY9Xk4nVG{oVaAg9K$0;DJYnUF=VM2;S<f$!7W$Cma0vm)<<OkcUcAFp0)(_9#
z8B+j(9yLaCr;oXe+$;!4aq-hT<-;HNp3SjRN_eDGi~6n`IOr<22^)9!!|GATO>yz@
z<#}IsadwkC$CX;QGBVR;k=T)N2#+XKDLeRHGUi(dl9wg7jQ`PaDgI~G_bXkKdfXCX
z=C^;g2L3Z~{~iV`!@z{m5Sg;*ff;achUEC&Pjq&p$XmZaq-YC%4Al5FgocJrb1xZC
zjmEIyzAWlH@`Eykyf_AjkeQ)_@BdP@W&KY!y1Qc=d>=loba*wW`?@73CrkV-v<eNv
zb!J&;Z~oJlvY>7rm<+qXzfhu|But<$&e-iU`7_dJpjb9F%uoV<dVD~)L7S>*20McI
zw@fx0U;CLUjnBql4PqM-VoTC?OU&t37weTypYOlv1bF=W=IaOKeuvy6ZATzA%>9C#
zNy1){Se055Zh>hanmG*k1KlpQT_IXiKE_!dQbN0qX|xa^mkh+jGr_*aCqi@Biu8pU
z*vVjKn+9kfYIgYJ8+{ndY19;=dL8w3VySIsgEq`H$zxPenEd&pQV&gBAWZaIB5mVf
zXHg6?uW>#EYRql+FIs)Qy;=X{ak8vx)dXp%b+jCP_&;W%$0k<H%#70Q7jK4H$QE(@
z5J<sRA7ajs%l43)m#4&ri1x|c!lIa~zo^F4$cRkbe9N)>h1R3h1JVr#fBCQ8`+ify
z)X6fJFD;KYzS>0`Ze7j8;;a?Z!@~=5VMq;e7hsvH@mu_Iww-On-6a)eXhP5P=<iHz
zrb>e_b<?SPet&by#E=Onm~rMhD}ACFy;xFS$H@W~mA6nR4>9V0j|mP%7|OV}>XWFS
zzMz9_Wb4i6CUU>JWEa0e_M+%eelRZj>;`Lt@n=(ddL%QW@_F%a9FhIJUm?woqI8Wy
zpVfVRg@SYtIVX76T(Nie_OK!$F#WU$qHZ)YQO##%X{nkx4Hb0(QG@^CMVp9G_u#hP
zp<AB=>6wgR>xQFeU`Tep@ij$)%fc-xDuO5E2!t3w8WL*1wC@z8AKnM8-8}UvTL>Z;
z`Eyq194~vuxVw>hciFR!8*GzoPLs5nURq1oStJc$Wsw(UQxhG2;jgz?Lyxwh{06J5
zRcvnhPf_2$W5Avb%yNJe9UNGtw6GGEn~7;0pw)h#Hq5)>Ta@!p!~SnNa|-JD^20Ih
zUFWdzyM)b|It@CRki?8o>gaf7>cr#!u_uTxQrRZYh9fBDF#w|6k&!$yM9CnVf=wRb
zVGR6c-Favw_^p(CzUvK0$jU{jmSy&Fo=bP=2Y(iAKZLC$Nw$TL$^0V-X+OEoS9b4L
zgFn0_xf>Wahs!3C0`)VpnrXrE#Sz6>SVRQ!tQl5GX=(CGM;nA0BC8T=88<$zVEeP4
zhE&u)2c1la?qz#xYo`uU%6GjvP;K?X+msWNVq#+A0wnWAl>0)8pECJ=e=-|alk)Rx
zlL?0*B_Y7|?7QNN<?E+f4u#y1`N%(CukB5di7f`8u^rhi-fp)u=Uv82I1FhfG2w*T
zFuGN?8oU=>q%uz+Ff}L(6QFb=RZxw9Y*~k^@$F1l9ID1h-*$puU>IP(s+HkGu4D<~
z*JwG!-WMa!0o`<Ifs@b*f~z+m?53jp8*%nB&}YSLo)X3yr;g*jseEOhKPS%ZhAMeZ
zcWWN%m0H!sw`Fm}yluIksUCS@`XmSq172<$AypXf%R&5?_Id+BsoywMf&Mo&?Ptl`
zd-z74K^z<$O3ra#S-V7@J_ZbxLXZg;c$#8c&}K4+ztQps-usIzE*r}KkFd9jiYp4U
zb%R3)?(S~E-8B##f=h4-?!n!ma0u?M!QI`haF^f^-0x1`KI7cJXLO&Z8a%)Qwb$Ce
zd~;4fT`nj1^Ck!A?w|Hk4B(Ry$bgq$!9O32YZydqp2G5pFW&koEAz2)%~IW~_W>vI
zJpFpmw(VC^EoqJ;@l^GebJVj#ZR}>_IkU4WZoeHPhIT1vc&xkwqU&~tVpEQUAGV;n
zeC-xnb2C6_mmeT>f@{Vp-tYw+Sb2C-Tiq@ca3w@*o;w;dZCxIa@Yp1N<w<2^WDxR(
zcbHA!xAb+kIuri)!wL~`F;b=Rh78nxUQ`$i?M50;ON4=@A2jk3IERrQIJpR)8?_>)
zqn5NRpcs>b2BFfys<J8iY)BjsVjx9PSL%I2xfE=+<j!|Uf4^qH3&RS0p<C*}O52}1
zq8uA)|1bnJ&NeZ$(!q!3rvK#s!>(Rk8BiY)5aRm>N=oc=IaxuAm8%Nj;k8B^)CSsn
zewOD57}QEY?EStM@^BcS;lQ{(UWg<oC#S?ib2$U%yPphN91Cv(!>xlD{0mXOGKxD<
za4`J34o*S^k&FHef|X9%^oN2o!IoFip1TV4jCRG`H&Oj(uHb}9Fr&XPSu<?$<xfBF
zWoU~vNXUsjX4rX_Exeo8`w%-kRJQndOnQ?H6$?ue(8AZVDu#LPzQ0|(dufm!o~lBN
z@kbT>5p^43`}qD4MlV~29($tV-;8KbyahcIYV%8nrGKD?OPp2>l}daiI%hnV23&aT
zlX(|_$eaUg1AgjCTa3eOqe2=zmni2Kc)q{A5~JbNDhdBs`kZzLSXdSO6X&-+8uUqj
z0Ao;Q0_D>zp!hyowd=BZh~B~e3@IeG)%kp$U!~VJx^~gLi~MshPTET?-mR{3s&mz#
zw&hP=q{Z=kse)g?S^)+Qzw;lF_ty*G=vrp-&@d!TQsw|?7$eL*K*(4G?0C}ZeiNkw
zIZ{k-3x_VHlD9nJh|pdRECO#2yNMvsR-S~p-47|RKe?e9g6})#sj=PH(8>iy_S&D#
zf`bw4t%?-0^%)Y~z0??%$|#S4!r%(fnb7#syl7Z{0E%)Ukq`Jdxz4qs=s2~JL=uvz
zn>~sMGLb+zs8Xyi*!xnCZs8WxamK9IIt?hnW!l^>zKQ-1_h?QJc?}@sENLHCIMnxs
ztIWC=vU$5=SjN^d1l=@Q;mWv>GQ3ekLjCX;Q#EWMrH37TfPmlvIB2C13Z~&m(1pIQ
z%HWCHHYc>x>}RKnp;chO8&&*P>Sd42J}JwvvRFBCv!KCX%2DWmMx&`4_-!DK-F)=(
zwJ_u05#)qyD{VBn=9;(%DU;ZS$01QE0$RW5Z$mN>n<AL2tKm2bsYI6S7U@=Xe$19R
zueWDz<aQGRn3%lJ6tUe~sPq_=QenNks9+fCJV}8qFvm<sFfoOyt9#T3?D?EhDTD)f
zpa5oo?rk%m{}QQYTfA1Ns3m#TYH)XtqMS#{9MVWg3Ln*1;tr10XXzth3nC8$9t%%h
ztn$v)-LDdm%NL8(WW|<B@EMa}yp`Dy6cXm@Ayq{|DsDTDlE_{2B%8USXiA4%?SI>>
zC7IuoQ&xX;iR|=zI}{hzCkr2^w7iAp_=sDd)$;tKHTW#iHkm?^iSmH^j#vF;geIFq
zCbFB6iAmln%`IYYAmOQ<`TSd3uHf8x<JjhIro$j!fzDDzRp&%HcQx};b+2v9J~prI
z0QKk!I-Io?>H&Gp2s-3|PDC4IIU1m_A=7i3;N)=rqZAOb&=-1Al(bHgwfz2aC>$U4
z_^&ae$$ro;_m+Qf;sJV(c?byHdbDpg_>>N4ZR^hDWQKltSwIeKMve9CYCwCByVN0a
zo{5S|{5&QqEp?D|6s{=H`=9~!#m_d)$=LsPq~iZm5?Fu_1NDk4y~ZOyAnH=46v&_#
z%Z)%mH%`+-J^7lqQ~BtajAn$T2-7-xIL4w;LaQ(oACGQ%Ff;NSo5sNBu~4<_nED9I
z5)C1za71?etmH^{N<0pGyZCahwi;Pjki->C3^5L6M8S?op@ae12$G4w+n(-Eqxq_o
zf@8Lj*w3(S${Sj0e~p8=afTj2#GV<`?vre|%=_e0jk!gWCL+EAOf$>oVV&+%e}{_n
zMYT)~w)GIO0g4aEQZgzkN%WPDIGV$4U|HM`#8ZO5kWaa7dLNP`{S{@J1b{wENNg>J
z%6TE$1C|7;C#cl<;8Q?ndl4SF(fS532^kz%(X5waEd0Lw54!`^zy(55d$ihA?VtrX
z{fSKHm|=smbMy!UTrRp^&+KL~n<GM_wSa20QI{Z;Jh#<KN22rALr;z0ijS+_ytU}=
zfqV_;KA?<dxRY~Tr^azw3EB({=zvFTo1UYZ-2wBR(TVi#{`N1|K#W=PN>6PIhBm!j
z+Zk7E?se0ZGGJO{O7Qv4d?#-xB?03z<Xf;`DjRYQr_#>OMu+GA5T@omuE=*%81mf(
z4Fe|EWnan9GdoEB9@zldA&VjW(}x!2*fkfHSENRm)iT^4>;E<m&G3QmcK!prdQJKa
z@d>H>T%2}_4I*14T|`O0TIfJ~psA!jS?bmO<+14*RHOt%M|g_cnS;vP*@yy@eVZ5}
zI-h*ZAe1H2m^!vY2ugBtx(Npu4oM~Q7?bBvAS_0&-E2IHNsia@LLxqd$-O^;yYRo>
zp8USJlm3x2p@6VBTPd-b^V{`In`SmI;vF!!K=s*(2M*Ro889If`Bx?MV(oH+%(T|T
zyUl*jfXKv6Ol}0f6)1v|z85t&OlxjbXtBq(a0m!FUTE7h0%axuJT$J*2)fXvuox&H
zVl#pYdV!}QC7DTwnjtX8<K^K>g&>dHDwHVoTa@=Hali;^gE701&<4SP1M&Z5X0sIv
zF8~OK9IrXb?z-MzW7`W`CQ#Ck)e8N(Q9oL(#fZgEQtA|#7Y#$@|5CA6Vfh$kdyr`E
zow1aMZkh?D5D#~vO)V3K4i#6;kG|p29`!9bUFyzwb?wVe0}mCPZ~otSuQUVq;_Hs&
z3j?ZrKu#LKRX067&Bu**f(3Zu772Mjxl;+N!QYBy1;Qecr@r1u<b*-kh<oRlPO18f
zg#z*Nk=l(vEYmPeY=ioYl8XTj_-h~>O7bs8|MWIUBq=C3<ir)0b@}|EljYyVUs0GO
zvSjk5qW3uc7UdNSs=yyid(?gc5hR}`WU~?tR-2DI0~bqxPK4m1Z{?tPc3Zp28XTk6
zDQjHz(d`gkpw;EXtc5x3MPw0DKWj~c7RM$;ibjAXOUU|seig^zl5pFj`}GJBVjBir
z#`Ow!oS#JiGF!vCVQ^QNX_^Ozpc&k(b2c<_ExA9v<e+HOdEVRZJM$f1bhiFVkW8Ov
zFGx94%L%1vcDsD*bJ9zH&gJ6q)ExL39pk3a<@37N+?^nV%tK1#)8L&YXjxMIOs(N^
zHRKRk-nuy8+wBJtGI%u*iKAl%BdI6L-1>)n|7IC&mm-SSp}K|P`0>X1$G*Z_!x{hl
z^M|R34dF#K>T^L(eY@F$FY+_I8E6l36iUpDxA1LjNONlSkE1rrb-_D8CjdtvBr%QF
zJ(UtL@+CD^;p^8#5`iTbB-L5Q|I5>3|3vy>wl~c@i;lqg&otT7&79&90Idjl<6F$2
zqrMx32+BtI73U=$nk!AROsQ-ajSjG26~%04vgD+0$0Fnz@0(pj?C6f_|E0yU(UF)q
ze^Qm2(BsPd`>nGqUU{~oE$oMAV%Htf=;O?Hvt@XJBbip;Z0G&ztS`KB*{&ZOB{_1J
zYUk+cqo;Yu|0+YWPe_WL7*58<5|}NjYswFm{I)F|?o`cKHDW2sBZ{Q+yy`01p%hh`
zq9NtU5L0=QtKK2nJQ2O!#Xh)=aC@h$){|MiHgrR{+dnBjh1DHpYFZP^myUJSP8^?_
zDh3QLBgd%&MUx+ZFh>(>AjcW!=RulzhW19TINZN#jS}wzc6y?S>Io1lK$FBqE9@2v
zyf=&gIUL0=6&LsL!7Pdqd*3Jr^ujQ-ygi**_68v+*oe2cw+lRN1)?yXT=ycfC>1MY
z7Bp6tSG7jydtFJkVCStsIfVj-Z)N?kXOinR-}0b;S-wB)qFBZ&J#M=LAtj?EYyV!c
zRNJ4llL7+hv$YCdfhy1fz~REaNhX$xgJzub2r%Ud`CY$S`2`M=>D>TYO61g>jfg)E
zU_G}PpcMUcRGghmNtaq0w7~THUn)YpVQGTB(z*V3s!zC@mb_xbE*-E5G>X)^7$9M_
z%s7^naL08jTtI4Mt+I+fOYff@pKjY44p<66{{1jM5>QiwcnP5&D|na6F;*4YvJ30;
zStI<ue1muou~KOm>?M2xM!lcJ($FOvkvk?9(H1CY>9~oflohz_h6;H!n@8BLse^U;
z^_i*~k+IAlWPiCO`gpqY$k~L4EBv^ZP;Wj(OmQ^9z4;Yr<#HX6hX9kTeH7c&!+x_+
z!1hVI5yN{FFbW9Cp$~A8H{Eao8V*})wjg!B)XN}ConRQYAtz|6&vV6!+=(^Kp0A>p
zezUmniOnKXF@%<=-*Po!r)XA?KaqBu4Mbqg+9;r$US^y~u+O9H(rp=2{kfj5Zm^i?
zrNg~{@qN1{X}w+4DGbpQ@Kv(djhQ#!Jd^t&;OzrIO5Vk9c$(XK1<>hEfbE|EKG%=b
zzwy$qY0rS)tSL#*2VHJWQ30Qq=K7#Ni82{}0*I>hW@3cr@4$OF`ClPgOv$N-Bhd-`
zkN1~Wzp@RnM?QZC+6o1a#XDl>`!rYj@jeXD&5W?<ze|Y?u?l8`8#VPioNa3q0e4J}
zmbPyZs?Sb8LU<@c47ALD_-qv}8wm=xxBWBt?M)rTC_UG|EU^1q@KwX%)nP5bx;)ly
z>zg<IpdBgdj^IN-hT^c9I{4l=BchfN`e4PSve<YqD(>w84&(e=fG4Ce_dJAzw1zQb
zdHtmmr_k&(LVLQhH0s2yt9anS^^~w8;E+*2zOi15HE82LbQ0i}-RlhO#GHqS-2U_s
z-xJZZhDF@3IVmPZBT7n2I!0NY52^7*Spo#_Pfjx_+|TX+GpoiS#0DAV7b4=9T3u2C
zPnv!J&dF?Z4G*tOP%*$qb;%=#wfrCMC=O?6?ORLw^qd%;BOac#mCQ_u@2q5lEPO(`
ztqZJ-d_m*{p~}r+b49-FR%_(HTBCnZ?RKLGQ{~3>VB%w)4$Bp&2E3pZ{dGtpz5->J
z#YR-e(321<3#*f;$MB^bNj^sZl2kF#O;xVq73`fBO3H2#M61o6x3q|uA?_C^R7b7}
zQ;7QfSK~3QPrc<Qe}%p3W9f}vNRxA~MngiZi}Z&`l+jP*GANpBg6l9VFuT<+c^@s&
z&S3G-_PXuAe_WOoTm4kHgiy_g_KM0v%JIu+=rtt|Ze1&lk+fzO3H+t*yI-XW1;{CA
z^!G>Am92i;ME5b-k2c(E!_otd!9&Ut7uIyPv!R%%m}Twd!Vx3a&2r|-Hy~eio5*2`
z_AzMLb`Kc;Elcb#83IRIj_#Sf&H9saD7>SRp5pP(i*jj5EuihbP#yH=&xa`S7#vYY
zc`Sp+5@h`lEpU{=78)}+jA*b%nAlmO(AN?<{s&1K`lVvp62znqews*sQR*MlU?ezD
z3oGjT{nY%PqKNnxGsZRTrAXjsq5m$fLVbF>iuE0?C)GJBkTikS&9OubqStdity%J(
z-~{8Emb%MC249?1wJCVuNzdb%)O313^TpMpLbyl@ZhBqImtsxJP!j%ZA*BmQ41X|F
z2CLdJ?2s~t>GnaVNzgEreYQx;5cF&;Jdn224a8$NlYvZWnY3UThEuB8j!8YSRmfjK
z@wNEf-@uLWfC}p+QV)ezRV0A6$=GaOQ(|X}@)w3o9qr-9`H2(S66wA}-=F~I@d5Cs
zNx40q$q&uaUDR49IXDzufTAP?xoM||{Thas;6r7xN1>k?)9`sx4rZvMc*3-(s7FU7
zPNGE*;d65dx>H?q8&*v!+}R;45;vdtRoHIT{*4}m$Qsalf6>x2$0C9GV=E|F)t5-8
zT83JI`u-Q7Whm+M189hvkx7eFzeK_ha!QayK4Td9d@C%D^!?d!^F-bXD82-J*DJxf
zTuV7sSwg};A7$*Y=f6~^@Dd*WZ0^++<o@X;&_$}6{v|Rj@R{VEH;Y2BGOI~lPgEP)
zWA&@HL>8$=V2#;gMA_jH!sNI8d_pSD;Bxl`BE1GZ#r%}~HZ(X&mK!ItS@PaXUB8Mb
z^F_vPh+UN1(?8p|=6=qwXGK|I<(@rrog)csdIRcU!iT4^X31@1b#oVzZs_0S$Kswf
z3=rE`0T;^baq5Loc(V(z9}8eSNFdL4&SMBnAg>hHLl3y<*3j&L35N<r**To=TKPi=
z*QP;tcS3Da8Pwl;^x)Eu<?@^U^|(!db=j`^6IM`gaPWxF_(Dea`|IZWmxML53_pm$
zY~1I6D-%C<NC-^Q8>ZxJVtkw#j#qK0Ojqx)H^-^*@rqdTmQVlvj@>Kd!>~(>G$Q2)
zvNRQhKSaH?7QTxBw<PU(Sxz@8fhqBDp^4~lU#)7jL|sbah=FBX=BS)x21sO-cV{@i
z5I*$B^J9)cfQ5#NAr0yq$hHr1C}iFhD&FLcD^3`=N;>;;Oh%W|<!2Dk*o20?O$+xi
zaepL8vtCfWj-6rE`H1%T*9q0xUnyp~kt}E@qoA8^ha2HVd5s_KYD*})JJVwACl9~u
zs1QajmI<Cs+A`0Ty@243i$@W#HKAcwOD%_ZmYF4_d>+#z>-6c{_tOv*&QK6gk{>Y-
zcn&f#ZE2AAM_$z4EZoL6!V}vv8_Gryw+DQuS8})*fs!UAF)QnQVD0rYgXmIZ$DZED
zAM;}0kbl7-a`}ku^M=wEERaU<9TG#<vbwHat0jB;$s)g)agdid=vWC{5$(1c_Q9z&
z+mNYanyPAsDq}9cV?VN!yU(Bro}vXNY625p`Xzzb(d!u5v&cAaJJ1<|4X+3)fi!$&
z?B={C8wYhr0}=ghQjuLA#^#!&sTLrC>ilidr}pvUCz?Mh-oia~?&H;$;+KG6EgP!B
zP+yJ7pMuH6`gVyp@$(6?$W>gE%gR{(Tw*$i^}gG9p@W|VuBSn8Z1~v3GbqjF!SMK?
zc_XU&iitFKX>=cvn05e3q0)lFkF9C^Fd@T<5Qa}0S_)%kf%yXH1q!&tLGhEkhlCL^
zG0FG`BG`cGw8(DCEHYxHN!QyG!z)njI?iCNG>FIq_<evlQL$dEC{-b<he2EeSimH0
zYJZHC+;LIGbT0WK|3wDWkF~VOkf=VWpfM45mB_!d*L%Vs+M47*NzZx&#L0izDnZf`
zX@EoI{Bg1MABgWrk%J%rUwZ;bS3q9&_WCTRLI$5mi*l7iHzX_KCC2{`Vg@ko6c;~0
z>kSP?!EYyRww<nP@whhA(g3l1KgUJ9B@GZu$U(Q$gPO<F{*Tc)fKsT;k)Cs|k<j8m
z>-;`YREK*FYxP${B*zO2MFsgJCQIr{!!NGdZ_-ud?jwWYS5R|H5x@u%IG_Xo7;@!w
zgW1E~g7Jst0^KYEv{G%*fq;N7{7?~uh7DvbDtH_4a;DVf2iZ9&ier9<TZu;P1ZLoA
zO+Vj6?0eZCfC0hi!;`RNqu2(pj?D#lYk8}f-q$GSZm0s@Eja(d*+RLLQ6AZZojTL8
zJr}X&SxC4EO<>GV(*9>wj-}xTPFN?Z07KRdx0THeFf2+8;;K*&*m4Alh0#t3FhS}E
zbGPcQis2F8h{R9whJPq7*K9UB^<q^j3HsRt4yPfDR$zMbW=*24;T)+ry2YkZMAFOg
zJ$p#NkSi45iE#m;V!?xlYWuodn<}?rt!P$*hYtw$g3w}0y;&IW4O9_l`nv`o>!-W9
zM98>-r%*l5kSlg%Ww9U{z`&;k+ETg$%0Y2wWjm|K1?oH8t9lBvUcrGL$krNN01QkR
zr|l?&1&q6qwH+M#pV9Vw+MBMb*du9p+Md6rkCjwAfwDz%LO-C~%ymOkZXz-_`$<LP
zQ(X;l&Ld2_`--v`wsQS(ibI~F-msJ9C*1L?R|j7Z2`FaW$ZzydWe+mBbMJOQpc6iE
z=&}pMqU!NtSHX?b2d0MJC(P=X+xz!2YZ3={kMje+J#AjbnnzAu_W2qOA7RD~l0qO9
z7s^BR@?5IzbJk!ghB1x>>i`cr<Sf(1fUE$K&h~mfN1PB)u(1(DDT*uxiy&6SuiO#2
z4}Nx44X8z_g0mmg{IDzE?9egI95t3?C?4}OC7-4D0qcmhQG^73yw)M)AF?$LuLi0V
z$N}(>nOgDJGKL;zWGWZ$+%m7}D@`Ov)EIwcp>fiZlyY}A$amxavbcMAKg~oiR3CV}
z+uSpwK|mlog(MFkmyty4N5X_j%3Fk~Bv7$wV76JXI<wNysnk9Lt6RTXmoG#_kT$E=
zMrcZ)X(dYDQK2sWFqz`+LU2l3TT5R{4+3>RAMa<dKMNdY@FuWNdFV@upeaFPLj1?a
z3It^4Co;RUA)UflvYuL(Z>s7Pw4bS|;h@ne3i>JyPU9=Gj$Bu53>&F#)0(za^wgOo
zSMM}oy6bj69+?gQ^mI+p2{5b?_$?EkivM|EZT<jJDs05ScozR}K3(w|2&ZqKWl80S
zIy#xsEOA&22xfiJtIB$;l#5bs1uq*_LprX;UMF18^_IWa*vLwZ>57%oH`dtkv^RzU
z<yI0trE@?>*XmikOW9$qp>%jLAr&1IwWk(I@G3j?rD4Ctwb>nP3w{p>Sn;uat4MAh
z-a&6JG{d9%qPlTDG2r>E9GS97yly81+5YadM<Da5IZAMe>Glr-WDg1hXF*@)ob4yq
z7V>u|aldCJJ_Et^5Yw2~v>(sU&4yls7Ww2&8l1J49dLzzUcIZ@=^Gi7>o_mIOlrIn
zece>yckri_E2>y(l^6w2CIvM45;L|s4&kVDI{4H~jCd<XM>MDMS!@O@#2i+~9mlT(
ze?Io>4}0DZ%AlYGDa(x_f3tA4*E*|k1Zy{~maRs-Oa<Hy6oZ+uVWFIhi6PrpL)D;p
zr|?YpWE4Syn*Ama#2Qmbc!;UC6Mh5V;bA7TyzjKi1E5BtVT>2qNrO4en)_TL7ox<4
zSfR+#s*bZf4)Ej_jeC}8B*X~q2O(LY8O-P9bx2WXh_S(B4MFVK5y1Si(Gb&wITXpC
z5np`C$(j=NM6+Pvm28ll*`pV)9}7Nq(t;w0p;!oxb(V&ChaQiU4118wlCKWq5IKsB
zt*#0Rk27BMQ@*Y=ePrS!%KiH1fMA`#fZ>6LfL07>R<}33jbuK!`Ox^dK3o`K8PQ48
zJXIaXTd5Vtss{%q-oSe3$0_bA{wk^{Nsr0!a)MrJFySF`orHn-H?gGoxY-v+v3p)$
zR9n__8hAeiqK^UFKn_Rc6ME3s(E?wgmcAr7%fR-S_8!h5!H7uhPj0DO`_R&VD9&?<
zW|FPh2_53v6Gyxc&fP{2R`R;$A&#KLpzl#lcYNmJv`0`JDCgxFES0qb>i6OM3S400
zde9V`v+_8HyKw1sgp_eomNRIEEm6P2e!?~U@^vQbefmlHA<%0^EuZM^wr2^37Y&l*
zp5fJRFTlZ;Fe?K}M(rFwS1}4_e5g5Dd-QH-iO6QvsHdp(9;LwC=iDd9CMr!AWwJXp
zn<5HbA#2)txe%pkAKy8`0?-U60H6R(YLr99_37|1C^4Um`R|Y32ZFG_Yp*@n<lG<I
z#=$^kQYGb>K)^IPvoY5b)9^Ru0-K0?qN>ZiFi36Ubq{l$RA-Ll6FJW=3aoACnD)86
zkfGn!_+wv^GbJaljtJ&^KOa{x_DDM-&LI*WNyt{OKt@B72O_2TxOaPx3*mW|kpc`F
za-bi+tZvZd`6)2fb#8MVYq%IMeQw>IX1ecCMGIA1nw1iM1ocES>85y5ilsl6^m`L-
z9Y?#^4hT?U3TG|neox$-uMIR;`u;uFChz&fNJEN4R2R-#C^{%CjfBTo;VkN~NO)>X
ze}5N(ThZajxg4Grk`&ckKQ9$!d=(MbOK-@pzuy^vB<~QBVBIwj*7j`usF1F52T2qK
zYFN3COtZbtQAkqHt-)1POZdJ~tj%oU2eIs(Z-8u;WrooBR}j;LOm(H+yZZmS;r{cY
z``;fqE@(@gRd-aCtF0?3U2V!cP*<)q@B@<OWAAM}=ghwvRxaI1na(4fESHEqWEGbM
zd^d3}5sSf{{oJ|;=~IPzPX~NDq5Q6^(=R7D2Lz^K7}kI1vN~y;E9IIwCbl}_ez%+Q
zuUD<N?%rn4FJ7#ijrxoHIW*ugPO2Qj3J}ZR%pRz&tiAH_wa7LI85_f{@FLVB+(Q#a
zF_BrF>Odg0W%mBlSh!#=HYPkD<NG%uTT=|>Rmy))sivQ}FK~U0_jPfrbG3B%SxpvO
zh{;mCi$0w9wIy{Tcyhu*chQx=sws&dJWs~7B65vV<~u+lL`@W8a2TL%qNA$LyqcAP
zTFbbitKPf}`qYMa9H^Y;woBzoL~dGcelcdY<0{`}y6G^i?-i=eW-PCD=8liPP9Msd
z6k@2MXNmm*J*xa9*&y{tl0v-^6(i$wfusg!nF1rJaRuB1G+)Z#W?ko2RIo{yjP04f
zz3y{x>%G$vh0Xeo@D*w{p~rZkc@MVRc+7Zr-sb|2#>obT69OU2nf-wdj>zhYIG*@l
zk=IQi3h`*R^&M`L-_x$5YR>(VGFsbVkqU*Z^*@dY1b;efl9Qg7Qs7b2z+26SqQaht
z=AMzW9CBjMl6$;3k_JzkoA--8!8arez@hTIa4F$<n>r8;Oek@e=Guhcx?gVf^f1O%
zwHdtqP3bYGxDQqQifD$sjK^vu@frFa90NLlB>N`1l`7y-hZL|k^!TyCZNq~`M%&o|
z1Vu#l0X<N0mK@20(1A4r(MSWiA5vP|`8%q~1z?Oung+MPcN{sODJ@ZoAckC(Nyg0&
zSTw|t?MhhNPQsIwR%=1sB9zeXNs?1Y>j)i@8gYfz4|~A7+2p_;o)cW!_e)B*=Glgo
z=Yrw4LCL_1`*Djfy5?Z%4Yw`dQn6yGe*P6he)U)UVB8mv^W1h^D*<jLu!+|dD~kMK
z3|RpG{WK~Wk>$+5?_f}<Ecu}KQJ5E(;e~MR&gr3z^|O$z0w>sx!lcw5wgto3XDb0)
zPdlt1RO9YSyz${`v(WCx>RN4hS9s=%bwR7WG||Y)Y&(?-!K*#IPn3)9^|p|Nh#o;;
z;zhzX{53C2NjjHFCwac2`wv=0Mu+iRLf~68KHo`<<*kmwQ0Q66221caIqq}S+e|L?
zWKgWN_bnVAOcFjHMqF=&twy=z9){nHgR_Bauf}#GTtgKa*%aD6KXE$i!<HNh_1z0O
z-t6FZBHrUHc?OZkUR>`~+I#l_$||7ATFs6`S!esezEwsC8R18s1Kc0~$H(*r+8>T1
z@{u)l($#l%4Rn4gJQbA;Xcg6h){3>}??^H(9>H22)o~RGF$wYNCj}4J>WyQ|f={xN
zTBXVij46pXUwIw(@ajBT9IAgc^$gk>WLoq(?MGF6>m3N)mqevGhGL#A(Ic7(SzlkF
z^Yb#TpI)#Eq)U`?m@cHItOZJCn~!N->FeDm#aJvc{Z3cIomJ^E$BIw-Ma7?d8W%&C
zR#$G)RC!<3#>|cg4wf=K@HIng4LDE58K83&?kV9w4~f|MGb0|o+J>Y8GGOY9Autox
z-QU$xqt|qIphq}=sdBf=Uv1El77Jns=QA}vm<=s*iWFd8yPYFCX}m@4e$CMFlT>EN
zh!;O;D7v+hJy$>BOU6%lUSy6BUL=;;lnY`nXbw`4mf63<LQhGhzdC9N>i9V2?QF48
z=W@}+<G@-U^H8sVK72}bHIg=%>6F}`##A6_?TJMuejP-dQt2Z-+v!}0bnZOzj<>Vp
zYdU2P1St*ihCrv`{A!<c=+!5*lC@U1J(g(P5tSbxp1c2q;Jj4aKO3>oR9;5DzS$`P
zY4tN2Zx22!2sJ^ILo(R3CjcgS3z`m2y<T$yt%6h~m>IUMPLmdy3ib&aX9aZx*aez}
zM^*&qEDi6p*a@WcR{HXA;?LHJ5LnqN|FX}z+Gf;kVJ12Y2$IrQTh6eGi!?`^Y+er}
zg}*`{e{CSf2E9r;q=3;1)*Lu=WXf&*@ww*>9!E78@i6~tQ=*&5WkRjs{PfXFC*u>*
z-Fs;$XgP^#;Ho;Y4_URSLYYL1@R?bf&V3%<T~h@Jsfv^d8dZ_7Ptv5_m1ZT6LDBYQ
zs%z=GD27-^zbJ(W!_!({oVE<ibI-z@KatH;+Jv-5x{A?_^NU~f$n2vjXv-MhAdu6V
ze3Kb{@lu}%8MR<!MkkKmce>g>*W2+z!>jskzBV`MHLi!N6Xu}%jD%M8dJ}zi5nJ0<
z%NHJtm7d({n`fz0VTl_{*6}@K)!vxJK>)`)n5~yQO*q6cI*5SfrCp$}SF3_2lp((|
zNEA}a86mI)0U^R1e~LV-blYB<F8MmJmIOiizE)grO=E&6-M#VQ8h-Tw<Vzl%WaF`c
zJ{!yzin`9+ekmsBbG<G}u{9t7hsd4n)T`ew{Zk(!^sy?DuBnhIemX_9v`FZ{>U@pM
z)D}xVUB~J)hxs6<9b>C=ivsQa&0a!sw&jrjc|5ik@1ABi|2+dSMWGMVUmVHb{hIYh
zv|1C%4mk?x8}3#v{$y&w-+_4mQ0<eH#v1G!=YE@Zu*H3`zr)i_<p_Pw7vQKQX81o3
z{D0m8)5NGtocG41OX{?lgHfOR2N+A2YRBR+*h7ho!y^&Wj#SjOsZ9x*WJpan`G4i^
zGAEC(ovYM&hBBsKw^9}sEpIv;DzMQ<smFs7f9!%8GpxUB@_B}kF&{*ZX*4q_E;2n$
zqZ30(aZ)oe069^ZV|TaZKX{S(*C2P$pm2hhT83g0^6HF^lGasa89pt~yl4RAx?;zB
zeKY{4=X&@X80v;*8tR6bjx^e|P2^2l;qm^p*kxug)E6jDADCj>?V#ACHKrn%B3_3{
z@nbyCdFy?qK8}=-tx5VL3`Ydn?%O{=8B!PQWbHQX!ci|C;uSybA@aF?Za@+Gp5lzs
zRd^8{2gC6m4QVu*e_!U?vWRYhfO2qp%KA~hZBo54%c`_W6ut3-L?MHIN*)SH(#<w_
z6?!BzoBE~ZIImLWWkk4OZ_fO*6Y1tHTyCOKdcm{-+KQ!2-K~5qlF~3N(jlb1bn!D}
zCuDRso0`i+Y-D|`_Uh~XrX5a}vZ%P|AYE9kQl!cz0D=+Hd1l%V%eedXUczHVidxtY
zIx)pR+Co{H)1r|&Pf+Ue&J-Y|#G*ixr%^DY#~x=X3j7-kQ6WE>6wB-fA>ONh?i&b2
z^xO`{sR*EC?qm&vtPdm!Qk(Bq+7^|Z)dEiIVjj6(q(Hv*%FBuEYNHKWWU(Fy0*z4g
z10{aohpp3J)>RH|Xieh-y;?k1=)y!c))Bl-W!ryMsKLmxWu3k1&Gp;88EsZ!D4lH<
zm|{ew@V(y||Jhv(8^;Qog=5Bud<;+I{p6$>_8FC$S5dxUu*SAxO-ACE%syWdXVqEA
zx%!|@w#cj|KYpa$2yiZ2b-n)MCB1uWH&W><A1WmMOFNdpZbTTsE}yMS7_)CqizBhj
zh3#}!&6&Fer#Aa>oq~Q(39Y{2=DWM*X`hs<@)>a);dR+IZ^OD$;7@(P#D6{1>hDJ*
z|HaS6YSz*<K(2<y%JYl&3x{Q|`t-bqTyvdRA8D?bZoik?OlP{qq)iF03dJ^(U|-n%
z1q^%;lTDmZO*luW<>(syFD`Dk)2+UbRok6XBTF<iTxw0#YU|UXyiu{Tx<BB*MDt^!
zm2eR=?d(FHg*Nj5Ug_II;z=X4D8_G>hvj7OA#v0#=X+1G5zG~}OehG)elC+FJ?-^-
zrkuVNj|P}r-(m*;hl81gDs%cHjN9xAYN0OxMvlq}NaHL?CQX8oRH^k&NwgitNH?=9
z=5sy!o(NkGC{M@HF|WZDpmAow$|s|4T3YHtmzt|Wm^Ra`5%ZC%i4z-zl<L+pm2Z>j
zHer#*j3a1}CZaxB&5newsPL~in=pmJDwcn-f1SnT5yhvcF%ZS`H}Cb>fUA}Vsk9ni
z0psl!DrRabs#M8!BXQVeD(l5PJU2D1K_dNHJwJ1_EH~kHoQQ%^3`SiyWIkxyuGhPq
zNOkPjOi#|Pe1)VS>!1O(D45Pc?5G#Em5oki$!kmmheyK69aTPjs=gm&LS}BmWF#@6
z48n^w%_8x8Ubh}!Zq`KzxJMQ|UGW;0AWNConZ5{GjY!od>OI`C6gZEl<+r;h6%Y%~
zl;Oman2toL+9uq@agQ|m>XIhuq%6`UKPkCOoL!1&d#NyOSFS|GT2+RAkmv?Z+8X-G
zq`>t!Uq3#k4(TUg2ldU~gAl1DV!$O!92Mc0)eQ4AcX3QnePynzWbeTt5Pvfb(@>5P
zfUzg)!}P_(alh>h#pe=Ahx-txE=^~AFp18VP&w@7NYR(R<R(O0-1~N}@s9WM#5UTy
z%NHr`i1aVoMY(u`)bpJi5h{i<zZ1#u7Bl{>g86wLq1)OLc9cC_v@C}N&LA$gU2q~K
z0;~$gu7YPzylWlt*h_>bL%fO&WxTd=s$_)SQ7ylU-~@u**nO;G-reeQ#+xG&PoHGn
zJ9iGE`PeJ;2v*8@Xn^Ql0Hg1Mx`q}yM?1o&H8P2-j0`@PG9I^)b35!%`GQ&;LW17q
z{a7>4&oS~hZMo(i1s-x7?s2enyt13L#QeeLy_xA28}cGwkvQM&6gR$en4lhJHY7b4
z@;WhqQ>Ja429b4ZHUZw~4sUOCe{IJ<kYrcMnEn(=j|OR=<q7Cf39aBSA^6@eJdc|&
zpi{j#Zj$8X+yY0i(HlFXY~;YX`~O2Nij7M9(46e|`z`jpUP2sP6t7MYwYosLe7Dku
zj`P`8fWBNealO-PGgC^d_S-F7o{@T?1Dy?{5Xi7^eG&HO`@<vrM!Q!nWl_P%i=|>(
zyT2hX^B52dbnbd~_lROpql0Y;b%3}oEB@{8831C86K}X}{!Xs{vty5#86Qsx_^R54
z!CgtIS2qeXg6_`OSL45Eb_b>ATm%tXg-$NIK^&=lCBMzGK4|KCt&Gm%bt-!4dcS`s
zr?Pq8K9IW~wHd2CCSQFSnu=(hNP29z$H$9rC8UU}&qQxUwyhs;?)SE;^4V!FxQul8
zGFaF^!Srnp59gNMHffZo!S+<|ZH>-uUOB;eJKBb!(TBRt;Jxz|hRsuE)X$0XwV!~|
zgO!;~%aPgZYvYTlTBcE%T;uZYLn2hUbJ(+OMXP)H`mr$Zq(}Ck!ak6N*dLb`k5Z-R
z8sX$y!q7Vsavv}!1gl_|X<5W96m9}u0X7};+$O`Iu=8`R92e{nrt(O;Bc@}H=B7{P
zo%qqJF#%yNKnnTl9*BY1=iz%f?O_6p&*PXuM0Gtz)#*Xd3^q6mnC|ON3cq{(%Vnd|
z6vb}=(!>HK>hJ84d%r_u>Gpw!@LSLSut?xAYAad*3lW5$yludeCA|<Dx9V&H>G}&%
zuIY?{G^*9{8mdvA)7<fzWSjM`SQ65zeya?YMBT?3sYD?bfNbii{5*uJ)d?`ph$N=<
za5|k{E$S_Km4<-~GfIIR?ZWfD+E%B?Hg<AEP5aM7(UCU`+0xv_7g4#*;{$I14m0*I
zMKfb(#biTCCD+=-n9^%75&&Dk)Y1;IT^hJLx<Z3~z*ZRkqx<#Yl-q!|Mjz^cb{}$M
zEyB1_W>bH}HNX%4qp2H7r0mbGg?j1ecc=w29_d4wZJM2f9;a?XFq0_uHx0IH$1C$J
z#hnIYMiOY?zC><Kc^{N#T{pe|i?OQ4D@o^%w-moVPsS%X;S_<w^mmOG$+$F_6P~jM
zXM+ESmqHGF5czbexxvVvHF=e}-$AcvIP!5D;vsVTI}IvtGarxU^J5Fl_eY!4eSRci
zO?90>@LoT)QI_klq@%da?CmzIR`*eLs8*TmIVWx7=-P}q-0mN^)_)A;&E!jES!ADp
zJSh#)bZEYjU#29A#Kyz%(sG<wFvkZ6W}1v9UJXt-NgvG>m#@cf?7Qg<hls}#&}*%u
zB(SQU*VyFiugui~pul#(NTbiwY~iLdo81+c$H}XDyv<XB)zj|NvdxwfU5NrHdev3S
zZ9yk;l(NN`2K-~LN<qrI+Np-9Y8{XYb$XpyA1>Li%>Onw|NVJd8U8S}^Y#R+HyBI8
z41}AwUZ(N@f9f%xM2{{-kBd6>eVD>?#XF@+F<ZzL?H<^^H6fzdjv?O2AR6=xp2U!&
z!a!oB<1DEmWIlb#DDGU+T>KRwDB3g<9vU5%D$wGl7oVM7Q&cxjJXjp+#`|m9BPUy+
zIeXTZq{k6l?zTw5B(`;}X9&kW*sQ8v^CjZ&UB2<<sNaz2ipW!zRuoNRHkAT-P*XmV
zvgy$F;<225WtQC3icDVogK07#6;kcIinbdz0C-SCGMX%RBm1sgqA+^gT>&er?N6pz
z{O8SmZy6t#;YhqtzpkLhp#%uQ_T&_<dBQT-nhd#><NTUuI?emKyTWO^)@)b@%vFYV
zWZS$W_q3N3=Tx47K)vM6*K@bzlCWZCMk*>QnNJodhkjh*RY;tN<cV(*<YFQqr(++`
zL|!eRZs15AZ&5;lt@kGi^8qqxY$n6dp0jLdsif*c4vbMTh#H$0_xarR6lJ6)IL|`?
zNMDnb+WXAf01+E*geyLn|2=NDQL0(d514_k2AC*!*$Uxq>z*lEpD%R?uPi2CkX$;-
z`p^za@(CYiIK_B>6P>gg&m$5iU?^_6LRz1brz2pApKNtQ5k7R85=p7bWjgnLzpeHi
z(dc?ozp9R#2~mr6(9Zymb`IX2`PURh$;0JkMlax<v{Tg!+>d`kavS<bys3BW;bQ4+
z$~#j^>c96vNb9=n2itn@>?~H=T=x|X9(>F7{=0ysrwbfD2q@Skqh_;5+yNRUbpKyJ
zd9D$9ktW(a><Wv38Hfv7jj^$p?z5_H#VV4Z%6~ij6hX6~gAR#lTZ(_RUugd^c@m%a
z%glEulYfMk=9?DxBnaYP+f%L!v^|(-!#F9`_BvS=Iybovk6t0rQJ&TH6@+w~s*J1P
z>bm`ASACCt&EGYxz3mS~W&+lUcug{oX5ZPC<6rq)Mr-<oX2o{;s1*pQfV`4q1PrN_
zo5I3<uJ@Yn(knJzUNM(R&m$T>Lq#OMV}gwv5wn7IPrJN5K9q%~GDeOO4jSH#r*swS
z4Y|VnTvb)_zXAKGBfF%lUQzAYj@Jh}n-(DXp!E?_*l?b4_M|>tNTiDAehuy0G8*@M
zON&;W{WcC4$zK27o<#o71oHB4HjO5dF+id%&M69l$9Hgf3Ry@Df6u|i8t)vf&^bpL
z8_|ze6rthYuO@K>j<7-4jf_F!zb@D7mm_Yosmc6|GyvlYg7HX4v>;?%scnUih=-l!
zJz^_{Cd(m@@q8xnE_j)@`<r8vmfVZhrh`YD3H3cGOP4l^Sv2aw9<E(RW8_~HgjLb&
zo@Jj(?7qxAqku=!=dGKaaeeeMKfmYnHtP-+Iyq)5qub46m5*76i!jR{l)5#q^Q|^N
zh+OgrMR^_|)A&%}lAI|VmYZv8OeL*q3|FOel5s9%jaIaP%aw{a_7toa8b1E6Iz8Tb
zS<w?G{AA*cxU;(h6um`Xj&rVUbeE5pAF{6VsX!Y*0z0$Lb(PwluRhJ>C(QV@i%;Q-
zV{x-nMR+i4+P%fuw7J)DJ>t>@pJ4w?`iO4<-Bc~&gaAsG`%d`JV<my&49OF9tC>7W
z$J5%Ol^-Yqmwvhq16VzhHjo~~FFQD0HGAyGug{zBwsT@8hF$^oqCR2gpjR*PtI24W
zHrKPi`P!x=j$;L15{~H<#hM+VzZ&>Y8eF0rBBSA~l|Y}Pcs?B!GkIY4BG|eqdpQs8
zaJjc}@q!y|9trJjcnEkMO*#&7z?rHY|0F(pE7sMOyDJ$dlNx6Mj5yKT8;Q@*&x=i+
zrUzdTscu%<wgM1;co#t24<>&30*)Vi4SF^W)13Tsk?FQ^gnR-Dgul7E(er|3cju?2
z*Z{D+yN!;cqVyl1z^WDflE*!qys+PQz+G<*>u$g|CD~Gf@pMM9A&d+xxbWbN{?U%B
z){v0M_wzvKNX-H`?~QZWHijY*m>sMfj-p8u&g99jk{G*1a@pH`w|RZ@PeeR|V`Dsz
zcx4S>7I|vjPuBTir_}W0YayW|&s(E^s`Km@n&sFgFCzvR(SFa%9=J1?PUj;PIgUCk
zj%$*4V$0L4m<D=ZX4G?vkeeIl)lK{TzueLQUCqcG_2p!-vOFQG3u!$AV!+J2q(4C2
z)wS^zw8P^27#UfobMSG^dd=-c9s!}QbTOm0wA7{XTc_qBQ<dI0#^*ufFzejI3B{r7
z6cniLT8(ObE-S!#$2Dtv_EE<GA~lwffK7UoB09S|SKyhwiq5Hg`p)@ek%>b_+vwDA
za%A)AP1i3rjJfT!?&mF9H?QNA?zw1KpFoqB_-pE;1m*6Ac@_#@60d)oEqNi>UUDl(
zwEG1~hhjliSHMD{#8u*dFQ)(ZzUDu+)&6GW)3w$pC*-aFnnT?GY!0cY1m{rEFsSG%
z1EX1(mTZQ7|KIK~nwjK0Ps8)Jjq`tb0sQ|PMa>$cT&w+2d9&}pO|XWQUcKao2k`Lf
zhF|67*;u@+4NhsOsZ)d1#fdp|dJiU^*P1&Bjpi=av`nts9I=_#uqi)5kM~BFH@P2j
z9SIqR{dhS|FcglTi>bRx!rGs0xkqahuJXP~a33aVZmXhYLYr-Iozs#D&pitX(o|M9
z)t8{rHZs=MuCs9x6%BWA;96=eq>j3?T>`OCND<o1Qp1h;FUbg}FlrfxL3)3Rqg*{;
zVP@w1h_{bzY;QysE~)FoD0StS&V=|=D7VjS+V@w~2U%I9Qaa_&vaB)x`u7ZK@WLY7
zxz^vj0utX!N@qMuI;g261sp+Us>m!1-Oq4rtvWko=kcuYE;04PSLaQ>WO~TL>+!_w
z3N7-GA(~C*kBtBNRJzw8*{9)<1s8fQU!(9yBY5A;&L=xM_p@h}7S9eUF|!QEHp*Mx
zG^=B+qX@9|NHR6`$r@b2Wu}4La%)RGXwG2v69T)-rR42j4s0cL!?lrgAF<x?Uk`9}
zZ=2aLM%2d<mVH%mdl0)eXr|Vi<<d1len*V8&ncgzs$2WExK3V#zsPpY+~I1>Q)R!f
z<A!P*9iD77?#a_?KE`G-1G_HhU4BAgNw%qnT0v(1ov+K^!;*57mtLC<l@=OJd%V||
zyWqF1@W_epChUCX=of(43<AJr+f`1i833CDk=y|ZZQwJ~Sxz2@&x^ab`&2D+KAA+`
zFq8*W?~ImtCYIWGUm=kTZ(#oe@Pc0__PKA{Y_NHl@_jSL8dr*Ph;S3Qwr}$y{q&de
zyi6HD=YVn8+2dUH8|IHi>*@|{$_~*xzZ*^<qc@TrP;I3>kA3|3k#X4%=1}-$8|Cl3
zsv<&!PzlaIMXxCL7HB}`q@pqls`yEo-@$D{U?)LQsMc0Oi&lCW0h|xgB#jfZfbb0q
zK@Dp@&sa5q$Bom~<Re_erlK0{j%J;j1~P=_vpi)Q#%-v-rWzi|Q2cPLk~_~{<XX7`
z(4^HjG57*O!|g-_-XXh=+i#g>m72BW?oq8|_p3nfV6IpHyr+Y{eV+Urf3hAYlgy}v
z&MvwQ45@ybXiu(N7H68Bgl-M-_-PZ6Xez-Slq)){Ej`jq__KwPfL7n`n!1+XMC$`I
z|G-z*M_NM}MNsf?H&s3xpW51{_wL)B+@r{*MlI{Q(Z-0<dcEF)nGnp!Q(2RTcb_<2
zj@6o0x01~_T)=wf?~^TuS)Pm#*;fHw;r4}*o+fUY()`Grn%f)07Uz~(_n@fHgVI?@
zGq}bT&*?F&$+75vXpCXbXFQl&g@ThqA!}7%ogTZPg5@xuaK%}VbL1y^aA=_uVpvK3
z5*E-`(TxU{3~wf-s`9#e7_W1g|8R6+-FPaiWnSC->mX9^L?>+EbZ?y2)ZA)OuFCSZ
zJmq7yI>8CM%r)=+CZ@ZGZ|{Ncm@wIL5Qre-5{D_EM>O7)@d$24v_7*@J^WTbcZ)a6
z)c>mW+idw{IZiB{&oze>=?dh=ux9*Ey7p?H*wS5?qHiTcdxncfJ*)5YxX(pQ<$Q27
z-qtdew#ldBPyk5`7^?1W=O>3P=S!nJUT41((v^lVK*C``PGj#{sX1Kb@RhFM{eMxO
z|9WHo3hW-cU$;!eVz5C&#Ui`-e&r8MaNfu@{X8@!eR;4SNySPff1v0&x`zZk_D?mZ
zX@{*genR*A5*NOoU?I$VRI-5VQ(Yb)HANA6Xh+&jeYqOUgxA5g(eg{X9gel(2Nd=;
z9SuiiCuM~#z2jUezDoAxrL54hb3&WREK?1X{g!hZ)pNGk{`PPk?pMb(XLn<UzPHB$
z1pSB(Pw>bwHFSS%JAB%luZr|;5@0@J7ioDJM(T*GVURYK&_Pa!b(g@|zJpEU`S<0+
z6)(s~LU4yz=B-9Qnhsrq7ZIvfYGqy9-8;zm-_}FKFLw`hmT}$@bcih@4ur@{rM<Ow
z_??scnTKR1)#qL+04k@G@>U>M0T<5H`cM-*K}!nDM{E`z;*)p0V?!>LgxWMYqrIIG
zN?CegnJfVBKNH9K`eLZ`a9908+Gg-HAS5QIG6iI`whKA1wj5sdc#VW+YKAuB4s)Cr
zNADE;mY6foZcbgZ&W`-P)2o%o(ABCUizH-K8TetB74eRCfz|f6`w{l%S8Nco8s}*2
z{XN;0$aJ6#jAe`iab6IGTys5$^t|ic$IYVYpHM_yEvTT|>7!!;1<xY_nU2@PcBqe1
z`DxoBZe&kP#ev4B+WmF6O(fXd@xxtDKuUoiyh&<%9&1i^tOi0NMZY9OR!7fA$|x5G
z2y`E(0^mLwmMDRB$P^=O2UOOlD4bugUzKqKyvAIl1rU#f9L8PHVPuPQ4tnud1Bl#r
zo(SVf!8Bb;fgfO&^Esofqqszqp|X`ssq97R;yqIB#(PK&P0Y+zJdxtDyZ)(vM6uLT
zvf5Fxydj}XLN%iuvw-cjApynuW<6qFrCoHUuke}w(xFf%0K4x=3qL7?ns--3eQ{5C
zxS1q%*GP<;tnK9NR{y?2ktN>&X?Gp2KejJ0vuXEh{BVal(4sp4qwD0T0nMog&p|x%
zB?Aln;bPPj?a{oJVzQSjZd&Z}<0rs+(DQNQzSI1g&HMql>5cE#h2yeJ*Tzt9@roZ<
zh3!WxnOStQvIP<{u0*jT{{Fjs&szL7@h3BxjG4=RPt+bn$ye#y@3+i@M0Krgc8n^n
zvB5r7^7j>|vxSlB9TM`GJ2oY`&40ow`~7JOZbG75ufA>vLi)t1b!3imP1z34LfOb?
z>de^M2mFbgaq|Ie8|p}K&===xp|E7mZ4M?taR0=ps=Cuk-vGU?gD=~GgPr6rw>FO-
z%`b24m4!+AeGA3kBSdsWKg=3sq-hT|CBa(q|JQT<Uw=Yogw$I9`9<o`Hh!@-!TEGW
zRZ5pb@+S%&^HHW_C1idiiQ8Q4+0~<)AgQ^&Z%VWM8uQ^Duganqn?`5qyMgLA4V`3$
zp<8Bt{`C?}(-jh15HOiilY419`1N~2Y!COh$i_%(^!bM15IyVN>GCqMfm^1sAA40n
ztWayy&DrWg`%ShX{71ZyX7F75JWDbn3(rV0ySqKf(Olba=TQarE@ZRszw?>k?!UBe
z5&QITvYDL10OJ&qqxre!iQ^5OI?tQ94E<07)4_AL^CFUw>EB&O&obG%522AwBRUt=
zb+}aKCadmG{4c#Db-!CxL0)0$fAl-}R(~q1I=?<|qf~!Jd^d;d>+yTjweJ~eTnCXn
z-=5fF|KVFWy4UD*j5zy!atP$6SF|1X_Il|oJ|6mxlsHAXTpl-Kq5A!ZXt7~XTeecq
z0X3hI9LgPyavy^&!|bU@gz0pmKN`Ah7yZ044XJN(da6|EFgIW4NvQtwDs2KDUp)!&
zlwP3Xr+gn_ksCM&HcP5X7CFniXY~H!s*t&ZJfM^u_{@prX|js3Tj;zz{_}D4TNl%6
z)>EC@St(VQrkLaB;^iw{k!Odb$1%!x78<#ukNMv)X0dfOQ}Eb!7P~UYv2;=%3YTAh
z)j^gkjfno;Ha;G}*jlsLJ!o<FVVaqvs#t5_3iG}_k1nceMZA){CP8csW#%xMvQIXW
zNzq(hxj$(T)_n>D;5tL|==Jos0HMg<ZAKORE@ELM(;UaUy#z&Vs?=#VEg9<b##LLy
zXsgTA0n>SW2M9c?dYA!X-PI7M=b^mM(6EP{OH)(5JXa;yA=-=&!A2rlLQ-*;rv5mR
zBhxR0bJUn%F(fbLg^v@eDk|j7(>GW_FF#+syKHjzpO0Re0UMEFK<!bXqDRYBZwjDY
z{|{qt9aUw&wrfAq2-1yocXxM*bWcROTe_sXyQRBp5`uJtba!`2*LSnt7;Epnp0z&z
zaWF*&bKbwW;=GP?_NP5J#QqB}Y&}ywgLgXqq7(;8ASu>5AnFmsI?i;D&5m*>kzK!>
zcPTk63av-(L$Ox;f*8zY?GHjf<Xup}KmGVH7m&>f;v?OFVL^3(-(#C@v{|90rj{V}
z5Eg|%@38V&V;ZNTWn~mUvRGpB_v%9*@Y+~}k_2N(%6xDVUBlyh6>Jx*^u|4Y<bFKJ
z9Xu<#z11Z^>BN~+WDhJ3(f%l#h=N7p%?JG{Suo97?8M@r#=}QntXaO<=U4w($C@A!
z-z(_u(HqZ2H<)e<u>Wo7;R;d8>3i<=8Wq^xyI#Vq{5)`t($p2n!QZbK;AAtUn;DrX
z!`s2=vz9n9FYw_W4-#1w*^nj6Fs9DU`Cd}1$KICjs)khH_ODxKv-H7X@aSFWqHXbL
zCZC34FQS?+1%a`MndDB)6-I?b3sxF0XY*xli4eQ>zP%Z);Fp(nxjj8L!Cl5IYn5Gw
zZGZ59XTQtZilPUP#+YkmfMr#<X}CoL+rZBa#HOiYR)dXQ+KtOQ{aEIUZZAZ#o$JTR
zjOLjt?`yg;tK(>doD@#u<FAN@r|74GBB_fS3b&7^55sJ@o?=T~buT%=gtfPoa`<7`
zhY>hC4nKjrI`}<AP!lyrPy>$Xm)Y5N<E5pmr>7?|XvmYIe=X2?>(>Jp{7(RWaeTEE
zn733rj!co%Xk}QqtUu@q*8ak|=XAjKEkH>DL@p35ICkz)TK;Gn;%SLBmN-K+8e91s
z6_-nJ?=W4mW!>Io?N)0u5!|Qt2e+@`n_s^1j`V$&!9u%tB7^Bp+oD9~ndcs9opfs#
zcm&r3<K55*gnc``UVEqK%IaM4W1GdmyR8o-Ov5c<jC5ty=1+zoT5Qad8l%2wL2btV
zk5hAmL{6%<I!HDtq1oK_38Oj|%M2=j?OBx5HQV-+W#oIqhJ!i9g~X=L)ATtbN#8DT
z2LoN=iVl~Ixsva<<H_!u);tn6w5*g2gC=SWwN&U0+AYbn7iS`7@aI>XpVy*!zfh~U
zMLT@J{e3gv*4kGN>yN6tTc*vqP74qaEU|0%Z~G#b4tt_M@(h%!Zsw+alS?Y+C>4j6
z%*-hiK@*kJ^BC(TVN9Gx`V6&+rc$8(j#;-f>~h2wfv!H%Wp<eioP_jk-#{h;?8(WM
zriOO>a8khOv*CdZ1Miswo$HP_a7tw_dD1XR%_DjqKJ@7){I(pk&7Mm|*<K${DQg$G
zs26L@s(k5tPFbfxL5(*3xWylTP`PCL4jN>6bzZ(HYsQ&^L>(&dtl(HC6LC#du`Lm0
zSj&5<w0kqsO0_jEz44Yk_dZur@SUbP6&-8+DJQCUtO)t5Cr!j3W?@fgThzzCp=4B8
zW-o*+DkdTVvFscpoRr`_3krjxuSnvqa5;3&;@+}(-bimQM^G3^_+dRf2jlLiNL;sl
z<VwcwSWf)mwG7uq_j&!`UXY6pH*C(c<RJPE<3Pm*)}f3-n)maA7IrALul;iXS$9y<
z$~?<^3$VJRZ<uAO;~LtnjNx@q-`fa_9T$Ag8Bj@Tm{_)?&Y6&et3mP0Wf|&BBzNqU
zzQs9RBe;LpG!+w?X1P2!GQ2#G5;cNT8D%!+1NMBRi|9xM{Mb#x^;(@Pe)f0G1R4;{
zG0a(U8!y?p<$idp{?t45$5mD=3&k!*c&KJ+;Eey0rnQT`3`Q^=G5xrM>+7IJeZd6E
z+6|IuDN_0dpg5GTwg=<WK_70{0f54B!-(b<dMh3sMuh!`@#oL0W?7jDp$G;pHm*TI
zaq0MFTuFC@QSvp@H9}L3+iii)m!98+HC0tHF0zC-?gP**)MnnKr0lZnM)d1EFteW9
zeg+Q3B5f}Dk^|lRwo7RoPBwwcBxftcpQKuR(pa6(>4oo6{79fCHFpIv3{T~=%tumF
z^u!G#V5hO=bSDzZ%rSf$!~XJt{8)FxJ}A3S-+<R=-B7T|`1dIZhOfHV55qY^WkV3V
zMpCjCsliJcrlfCmQGUKD9;rbtc>ykIWGGO_VSrQ+lykPORLi%&w`2S1uxcd+`e-N<
zg+h#QdDWBXzeMn5vI^8ZNMCuwioo7$qU4h7)|my^f!ik|E>v62SzS#wFUCC)Gq!B?
z^g!i7DCuM3l2CcS+`Id3C&$GZVa>!dG*`(b)5|C*H1t<KW%7kvc_Coi)P-lrl$a;Q
zXsUzAF$+BCNm#yye75hqW`~lHPHXmh(9xLu!$(515Y)=R)MuY}@*u~}-TY$TMNHlD
zp!=$*zg(@a!@S&ZR5w1m@bY+4SzOF69>s_So4nSm;$v)_C_F%(nMPXOfg(Iw?eI7>
zAHGLOGjHTmV;Z!jX?&=Q>Y;ubNx;y7qM=)_b_a;<umq@Zi&piY2yh{8W5O#Ijm%d2
z22xOE!ZD0M?ozqYg#>(q>Js<H!zKahW&OaODwT*znNyw-ebQ`mwT}-I)2$*2{7H$q
zD4MExjZkzvr+6VhIHl-T)3bq=s8>FVHU6$AyKg|KhwHk<5{?WG2F$!O2aI^hhM+Lv
zlfDz7Z$51~vT{is7kJpuW0-V;lS831XaH7xxiKe|0C~+BPzp)9lgYMezc-QVxfmuV
zoFolu{hieK%;Mbi4WFipVNIwWxt8fLg~1%3%Z8oko3+&-DLw<;vcRYpqB*MNsbiK0
zipHEg3$sm_JE8c6rl6;p>=GyoSjmh&IxCz`NN5L;@8%Q)hwK<*@&q~}po?*~a&eH+
zQBFk@*#KUSe%bn#f1|W^zC93lOFT&b(jRK1F@(k8R71tx+=!#NPP~8S3|z9c0*IT@
zK{OC2gzv6ukY8!+YgV#lPX0zd`gS`p{8#!s=$ZhdkL*B*Wve<)e9&A02%|2pP}|(@
z4P-va#NSV4vARKYI)IWs;LqYqglHQN2@|izor6AZ_W(X<ztC>%a`?U6E6T`2B5)2?
z+K182!xujsupG)U)5g%lv^_j}SfxA$dlS6w&>e3`O}%QhYFc3ZwK<ZD@!Z$IzLBp#
zEL!J8XW2NvcZTayo5i4)WjUDe*3mx-HVPR{x$s>HYNU(fmCSFi)l^>!YMG|Mke&uI
zg!Nx!ipHwA2rnKTMp5lLlfgc^VSCRM?lS`>>_UPCdHDn$%?$dt_(B#ey@Mv~GIg~7
zrK!V#0!&EA#DbA92gs;t^}!z25j_Uzgrcv)rM}-o7b&iEL0+P(B3`J_bQru!-90Hn
zdG1ApaP^!Jpy07DUe{_(WjYc+2H}24dQB@yX<d?>y|3;k^5H+c^u9`88xVTES13dC
z?Eb(t0Cd?uj)YI<l6kBF>0YPZiqc!l>IVby*EQ?3an?leJl0rHqsZUagE_wot2cd7
z*FwP_D5l@M#MPJptMp}Tt{2PbB{z=?(1Mc~7i-k8Mm#z9MR|A_bb*v-4la^HR&uX$
z_QTbWiM<5}yRryl)1tW+9*!O%xIm!H(qIv~mn}5Z5}CzenI+HV^TPUu@I8IBNW>b{
zP*yfs)-lFu8Yrms^6*vD_$0mmby?CSDH1+d=3*C9xzRElDsC#jw0w4jHLy3m<ue}V
zy!ZWB7Zp=~2A}9aC{g<#pT^IxMAH;3*n5rMX?BlQ?b=HUn}Bp$L26~A>zVyniquS!
zls9O1&JZ|6x$WQ*MtnX^D%_>5oA5s8>lB=?Jl=X3vVQJZ0uO#}ERFZT5^7pIntK1=
zDPgYIdKg`0HKUEL1zdQ?<I34`j*S46UHk)3JOVx3p4q;B85kSm^x-q|py??M&1sv*
zn&CZSS4BpWg@XBjXY?2-H)lMYM3CS${kee=LPOUnk;1Z78(`R}xLpC@OZ_~Z<v@i@
zUNy#_f0TKS%Img?Uhjh4G-_9p+@|EY7M>D9mz+8NYpM(l;=*Ha5fGNinMy3>0{iLz
z(P;levia+s_}6`KctyAwh@T12V6H2t{zHN}<gb<lPDx$Touw~V6M1V!{;vj;m`c<Y
z5yz?f|7b*3>H>|(Eoalf47Xio0FpBjhpD0xA4vyhnC-m`fG4w_jEG>Tp)aQ(+TAt5
zbucL0-Z^2n=}*GPmJW5eS)dxo;0c#^)jR59J}7>NCM}y-N%bkF%Sn#>=brG9L!;O&
zS>)wBp;p~GPb=Jzfj#hN#D+%q(dlh^MPBU3BA98lZeME)K|9}b>!}cP^0UK?s>V<h
z(48ZQ`dL1s4N@^afBvII^Kb|6Z?7vct8N*fo)5?V{V#;wvCI=d?usv6q7){4MDo3C
z=5r?RAmFgnxJKJ6Z){>xsHO=5lpz!hEy!j!It3^7Uw01xPD`0u$wxq-^5=L#1+XTe
zE+{BacSCL3VKW`W2;sE|`{gVAy@QO)deP|hg&*bGGP5FB*m6{d828eig0XE4KzEd7
z;aD<dyKcgl$)?A~k^qpQ`kg<AGs98o2?ZA6HKe5nn81GIKq;;)X{^lMiV}Lc<F#eZ
zy?|W9`!LP>-%IXa{AG3o_ah_tUgzdMCv30r_{y-emSG9nMToi>5eo+bxbb(CwZ51P
z2ESdWa}zS=1Xlc&v23m1l6BMPbT&6b!i(n5f#7-Qn2IpY(dN12N1LX30zPo>8y%I7
zTgpUO3MS^}lH#)Fw|+ZHvOeD@zQ1oZnkgNPOH5?+hrLbwfZsScmKm7zd%o30BQH$T
ze3{Rs=Fs2Ve30_lrmTKI5N4sKm|E#AUxcO+ASYpvi(_>(>OL;YKLg{FkAZ!o!jYxj
zIyn!(&*<r}bB^@Ro6e_SSwRwYA+y??0F_+_6XD$AUoYo>x=+}Hgn_wOqu+~D<a{}G
z)b=$j_3U5%{xpMwy9<zr;|9({`W9;s62?CKI3k<)n(y}4AT=%hTV3$dqVQSv?{lWe
z4skS<Nu!tgB67fsDQT;goE)k=-0U14YV)XBzWuPYZo3zIjV+)@fD^%-v{}Be+*Rz;
z@k*<UfQvl}mSt&K&s{3;EqO2>%@eZ}i8X(^H#o8FEq-IRN(8$yXGom*|9!>=ylK00
z(!cC4Qk;t9)PK|!m+kxC@>`Doi&gO7^Q9s1zU4MQ^K;8pOCyvGWZes$?t#0L^etIR
ziht8sOUXa9jCh?Y;j--@<$=L(=k;t*Kdv9KY`CRhD&0lUUCKmr83~g5FmPhS@2pGW
z4Uc{10(F6Zh9z*Yy8ltsYWMWd@Ohy=;&h)ack|0NP*;bgVX8_1;yy9f^6Gn8*`Wx&
z4#cg)=4o1{!lEJoF}`Ko8y4C3{H2{lL|sl+HaEj@ER@yj0VEgG_VVEP0lroh7_GD}
zTLpVPny7fkZSR_-UDElTghWTPZO}M$!9!Ykn9*IYSGKgY^r4V{csE(k$I*~yudt$J
z_vmu7U^-l`RVQt+m}-VWN_X5?UOrMUG)ygZ%5pN+SXpBK4B!VCHT1k1D74111eWTX
zChNI+ll+(X1~LHrP~%X7O3`PI6Pb7b)|Xx>276A8jAmqxZ~-u7G8k+Dx=bU%L-fCW
zL~jSHHKs4#Rb>OEVnt7Hqq|?d?%%Ih;O-Xd*QHNwUMVoTMbZKiZy8znx{j@}Orr#x
zGN?_`3n1xkkk<juU?<FzOH4fMsTlO=k8VLqR-cNUkbf3wHdg5w58FRCUk=q=Ui8y#
zkFW)6CI3E}+rwx5TI=+fk&r-)P8m@z!^S#EZyw{nyi6~KHImTQmU%fLHB7<7GZFLr
zIflm(ONUjz>Ps`L`6N!+YD!v~(bby6aA2b+lB}$(@n(-wt=WVH&qYt374JYS3TdnJ
zXyXB}iH*0+5rj5NOfR?XIos>&mmB#61*Nc<zE~Zm8y(>adAF?qep;GcB(Ny>jt&k+
zfayl<*G>qP&$VwtS>W)sTw1C#Rd_>>M#LE<QZUBt1>xJo03=&yc`uLcwyUvt3b~|#
zi+&>8DF8UEy=h=$Qz@UEoo%}XAN*AOro8$4j~4hhVI8R-l$Ch55@>6)_@yT*|4x@f
z0QIJS*27T)QX{{&)F^JDph!(`WZ;05vAzCl6C(e8`PV!Uw@sl2(9Q0$d{aGdM@3rp
zCbGGne|>`=D#0$3L&E%FeIME@*<hDWLcc4M%&0Y4reRuE4K^PBj4#<nhLtNG@<6iP
zX|uvRSkr$~XAz2m_m3{Khm3k?b?qcLh%-nwkIv_6m*Dblt4iBt>T1`E@Dr>In&W|;
zlzf|IbXk9It1~t>Ho{>r4sG}w2*T-TRz^g`*GVX{6@4*WnRF-|pl@P6L}`=ecLT5k
zn9v|<#ukTx4gixNHZ~Fu*jG%(VeX9sAEHchf~wrWw*z7UG=-JvlK(%SCou{(Gm%Tb
zT*kdYYo9H>o<$QZ0u;oJF@s)qQ{x3RpN)?zPx;^epkPLbm?>tTVZjcIEz$++g}vm|
z)P=&%Fl2HZ<6do2-Ctn$%F^=c6Q>Ou{Ke4!^T1tg>$cwkd&0xNJ95YMgz$AO^WNW_
z|Kc>Gb-5XShI`$$cq^FitBNy5JsgX<wY9~t3;sqaP?^x3cs99_w%8nxlsq=GH?)D1
zJOM8$U+Z$V3aBJ39=-S97&w5_&_atp<%hEh(w|(URb+H6&earN)&hTuZaykv?M}+4
zFpJnxjW&oA<Q%yF+1C$^ZfL%F?SO<qtWE@~S)Q*Ng&hBBF}6y5N3Mpg;?w2DtKvKf
z0*91k0`#MFro+|+rbRdX@C(26su}z7D`2@VVK;rqBx$!G0+crAWp_M|y8{o`NBBbq
zTTy}!W<0wohU9c~!|gbfG08oiO0NKLAGb*&Ffu6z{_k#s^>xwjw`eIH#@R$?AC{B6
zysb0Au6CK3VpUv#`s2@7^Nr@;-j8pr0y70TVbI6=8;rrv`?L)&c8elMBp-n;Y3#N3
zQ1U(ys2e1Z8UOwvatX*L=N=a`J^_9Z34n!|41k+EOh6s=>r7!WjCjmlWEyxLiJ>A<
zc0OI!3Jn)zZmIgWyZGZ*D8Qu=$qu33{oj-}fLQ4om70de{8`qpnB@z^Zr*F@jTk83
zwipB8mWlzyTPi^HRND`fzvH`+_(n>J3kwT}0CfRHoylk^WbfU@Rso>;bn40#;6ACJ
z^2?V<K(+I#19r?&3+yDRk?i6>WPbnlu=%I(<8M|%EGlz*82RVTC1iVhfJ=P|NWSGu
zOG^*`SO6TjxP%1qe_TvVH-|H2pZQ@4_?+wYQ4l-sHWB2!`7e6Vj|vbzNJ~q{0D$Vn
z^{}w_selasc=ab=3L@GTFacZE(@RX+lJ{>v&A<7@{`q|cNd1s3?PbOWeo53xeQNUw
zr;4^V(B<W2IiJ}wm&^Wdk+AS^-Fgg6%t0V>-g$Ez1HAa42SYlcP@RL22xt?6pKm)}
zE5x+FX{lOIkmTt6-E%WLgWLYY3!)v8i(Ep8-LC&eLq`)=I`kgbvrl}X%`^6RXz6Qo
zJfD$tfsD(plZ(v84Fl_0AXR>!Ybmic5Y2?r)%7n3xXYQ_=OkdAJfln}$hB}^wFh2a
z%~e*%yor%l8C=Jeb#=*r<dWkH6X!tlUKBIY53He))V8S-W^-}iqB-^!6>VF2I6!z`
zTHv@hb|Zjt_WcfpLqI_H4TTIK<`Nim8s{JG;F9jbncC;Qi-%xq_*_mC=Dv802KA?g
z*|B{}6DB5Z^T@R>%5Vr{2<8P;8>G<C(3~0WZ?%Abf_?nUukfUZ1sT7(hT8*UKl7T&
z%F4=qGOnq|OMtq3lSuOCT8EEMdSh+vWP3ssZyu%U-`-$92uSTF3+Cj28CunZ(^#i)
z!Gss8ESrIl#3a|0gfz-LO0N|{D$1gPtge+^e+98aI+~=5re(4nkFWyQJ?FQ`1J`ZP
z>BjYbxhbF?QYzCpG;}43zb^>eYQ<{UrKgv!>LVSIPn+l%zherJ_D}*5hMa{(?MT+o
z-zeA!M$2GyaxN}8fc41mrZ<fxi%tp%_-<reFekIt?C7G^=2`<pdOS(L;A-qnmzxXA
zRX0{9!1h~+EVbHb=;+o@xf0>WT3vZCJ-q<!eDVBbsY%Cxl#q{@adR}UzFrmJ3V$62
zBps3Gt8n8VJ^5R0R$8208yg1ydF}qo<y|ibG1Ir@ApfKA86Degf*-i8f#a%%I=6CO
zS+Ds@8Gm?uyosqenr9aW5Tr+YHIIgyf01PZyoC!VeE#J#`^SsG>Ln+q(AhL_O1uwo
zT(#mcxHDImVDTA!KX^PjRf>>Xs;Q(+3aHU)okktXsx^T*M~v+~8DbJ8R>#(GzOlpE
zVQM-;ir&^n{OdkZ6-k$LBxLM_aXy08opMmK3=HDFame@HU4aostvX7DmT!Zsj}5Ys
zx~(So3LhmWCZ66@acJ1_acGAHYb_1)?wk8SoBVpYv%jLbx%q|wNxzs$R9svhb(|2u
zm=%`Cicm-<M}zOL_H+s)r*TPyfuTJHO(b&3OG<KbO;HmMp|eHr|F~MUKfK%0q7r0m
z_d>&#io`Px4a3F7?Hb2rY5`z#J4oq212IB3-tWiBG1f3O>gL4YwK^S90-C7$w!6*n
z-J=%)M%kvne_-`;P@LWXR-OGh8^Rvd<5{7D{Y;|NjmIE*E21mc#|m;($bOeXrHuqi
z)FPk_ynTY(X_y>zQdIR*k?Nz9xK(%1^{fQ@*;gPoC@C+m-8jvDJoT83!&+gn$yZU1
zGg_>_J<1O@0#Z|3H$b;a&l3A52H~R6S42A?VgJ9iIn1X8N){O`hC!oSLmOVd0fQRG
zHv({58-Eql%HLBh{&$<3!TEl7!n9sp;Y=v5=mVw=#=Qm3nvk3LfyAQ0#^dR{@bpSK
zz3R1wP{4hjL2u3nkiXr?J>*644z+`WxOq%Qa8iLGAo;x4f4P|d@#60<sJ})XKUZ}}
z@*2cW<0KEEpsGx=z0K_rn%?d+6!ZqpI@O=#ZLq~Lj<t!&e3ruo3B?zgj*ls;tLwL^
zLq#m@qK^g_UL9lgig!6Wu<kVPnJkgg(v^K^W?pT#^#yAJXJ%0rZx1!gX)G|0W1@<t
zQqe_fBvB3qs{-*yGYOe`y1PSuTiYbq@6=3}-xk!Y<h*+l6GcN%(D$UFrfb~392u{h
z*f137vce(LXv-7>fK=y_5;HQ)uJTr;c|t?s8@+&+!bl{>SZHI+8#6QcOc$LCicFW>
z6>WONV7Da@nFs)WbJE+K0^yO+-!Gc~{g^gT*H^3?++3CzL&Jf=pje=iqqRxQ6s9Bz
z*o66moMzO3H1iME{bVN7nb%T_Q<<9jH~lxWt2gCz<A-1Z=M*Q3$VapPs-gYMjlW0-
zLG`Ik85l%X43Y<ffEi@Di?I`kRQqj;xrMDA$F;bgZ46xQLwY&(W9Mxa&bF^dCh5qV
zq?|U(@O=`FNhFZ!^IOA=_=Zhjzn8g=)ufB9;H52@_&!ai-sx%b`@1bnhuzff2#s)7
zKx(T}gm|#lQ8bcTH;;lIf5ODTphb+I<#7s^9{t?ag{Jkh<&&cA(`C(`tddsEpP^Hl
z0?dM>HqHMYdaj6$R+W<-vhtQrK%pMYj*T^GBF|mH#7yja>^s<noR#NXV`u`IEnRoQ
zx-}Al<N=54wU%hg&YFJ0vV4i~gqQyqNeGj{r6A95MI0Km0wcn=s~%47T)?pH6~#-5
zI*C2N9tJX)XngfTd&6l&Iy$<t_{WN-)l$a@%O7u=1R1JKqi(>tfl(Gz4jD`MzmM_%
zdeXvtVt-*z(Cv*T<$Wfgg1&c~J#jR#aiLlG*-dEbbYz@>86CH&yA(-lm}BI8VAD+k
z6=w@jMkHx!q+6Uvky@N3dr?S<bq4&<siIf|I#wJm2mK?L4)ElJLCp^FN?gars}&gd
zlbeiJzGkrLjX(~I20vFm7|*C%TmC@0Es-4UI@E^_OVogsfF)aSAeOUmO1((ZoZ37|
z(kymPuZZ+M3Y_;@8gBk!Ku=fKYWQHKHN0Yuh6xKJVcxmLx!JwAth)L)ol7K%DkUs{
zWc{~6_CM-2#1IgDa#0f?tL&cM-;4~pEvmJ3btl923263PpEMmmT#_-ZE(DQL<aX^N
zLQDU<)yf7@m+d;h`I-ppLwvDIfMAmi2_IVfk7KjLC%gSdG}BHMx#say#}xiM3KR)l
z3xj>sz<}VHE-?vObhufQo|cwGJqKLS3yUu!(LqgqJ~{C2n)qKg5N^1~+V0+`Fgeqe
z(Vf&h?h(DZPMtoS*xOq@+xe^|nJ(fG5mjHGR}M6XQmzdp(p9wX&y;C6{^yMSJ1GkM
zyDM#Mmx&W)dlpc3`&;x2BCiBOvyHf(kLq8(*yxIAsGWFdonmj6u^wt%3$p%w262Mx
zo0euFrd@t*^3Dy_vERGn>6<sVkp%rWIh^;wV;TL3*(v*H@r-{`n3JQuB3!s*U^BHO
z`qI3v!FEkfCl38KN5PMejr;&;tW+g>7$`h2)tQbv2e$whfv>ZlF!3$m2E)@;-zYgG
z_#BK2>gs^Cv2fX}Lr(4yERu85%2D;?Y$)j!&t!5N(D(q!CqvurDqo7gC6#%m_-VdC
z4!aq+7Om&>+;%XvTAi(@nT4}D?swC7s=JZmUmrVO(WMrnTmF)tH$lCdOl~LF_~KSj
zz51s}=(%LHQ3W69{6ItDNOjzg+Ag}?6TO_nF0^}j=$NVZaMth6uO!v*0N{P&o)A>Y
z6YuZ6hk&NH>`Da7H{?13k7KB^73lj8y!j3SK<gHHKrpyByg!k*6Unt21GtwgR_{Jd
zrR^2)oJ_Y}qnaI9=6HX=L!<jgTf)f5Xx;@q#IyOH@r><_H-2S9amg1KbU1mhB(^V3
z<kEvGH2{QmRzYut^id(MytC9oRj9P6zpnne;@w>*VSMNjxoz;8+9(+f9VVhQ3JneI
zt7?obUVg;vpyOg=n>rZ+Tx$Ft|6?+9g6|8wgEcUQ?NjTS+tuzM+c^JJJD*2LqhQS$
zjtrrF_=(qjoR6HmlT0}2g#ObRxuEIy1fLtxG8Ak`ug{4+?RgY6Yq-jPx@H&_lN(j%
zfjrPZ+`Fc}42U>S+aGPxcLvC!6WGSMyH9PG!7P-Un{OoW`l-)#ZU9Bwxfx(*8=40d
zT6e=O+xHVV%NGNdSG5Mc@83E$OLmqG=0GbzVjW1&8wk(MdV$ZDy5p{w3CYSIujD63
z|7l~`sM}tq##t(K^Pomtu;x{n-t!Rk1gu|3Eew!;p<(n;N0`2K=%|2%qVt>lg8Asx
zWWtSk);Zj9w52Z(-j1XpO2N`Y3c9?IHtUA~?t%OiGE7IGEcep;$6t23cLJ9KWb&oT
zds6a#6<-SVyMv%#U)Bjkb*P@^j=sZCLp;9owYb{w1c5vsNf<?mw|hm&fjPo0KP5Le
zx6bF?<MV=TAZ@ooeKSOm2*;YCIo;2TMj|}=g%%*{@-MH*|9SCk4%Nb<^oKNh<i(hB
zX!r!NlUacb?;(VoHpW(M`?s;@ipl%Q1)=z!!90rJhG6nP0=l$wZBw+@jm{MP9~~pq
z_#zrs74`izuUh{ws728!G+CqjDmv{oE({emyq~NjTN4Ce?tUS`+Eb|e0BSu3@dn^`
z0**7DlYhFjNlfK3eSGNu-0I{Y$d~4FEbY(joN<+GFeJcZa%P+9DJhYpbJ-@Tm8s8^
zZ1fAg*vHfla1W$C7G-;DQ_0H_)?<1;2{tr&EZTZ_teSem5|QHplRY}@gNx#6G%AJC
zZ<Zr(2E6Cp$Y;r%7d0z@Sj2ka%{qg_a(3S91qeQzN<q#G#!0_Ix-1;s*sb-w|8x_*
z{PzAjF#iX@@Xxm&z6CYE1yPGDD_NqLN`ZX);tfFRumx~SV}ZbNsWWpB(IzLh>~yiA
zOaL7*sV5juZ$K+m27N<lWS|K^)Te(;{@pGI2SUvBemLM<1FVEjG{_je2VzLNdZ4=r
zCICsyar=L~$AL`*#G+7qimIy9KXe$Hm@!6v@CEZj*oT_OIXpzuBY}TZ(pVGN3d~5P
z7Z@xI$8p=`=4V~V(Rdov+xx7rC)-)ylUM3AeFnOis#T!}2L~dx(BkF41JzcyngZmr
z1y>k_Z-I<4%ky$DiCTHsj12BaeR!E!2>;s%1irc2Fqh%o`Nk|XJ%y>UF`x}dMX7rU
zxq}Z%zi9jnvMRX(1kSIkEnz0s4FX_w+tHd<1_S@eWVQfz?}w>uU`7S&QU$OaI%c_A
zs{%$$yY8JDosQJqfLZn9MV|K&qiQ<&%d`AUl|+%&OG^SPnm#vDPcL9B5Z{ImyR&rz
zl|l-zW@^6yMvTM=XH1)$TpjoFWyNqo5kl<(uTNJF6B5`9cYJ4UDmH-Oj1X_>b0eov
zmlFpJiB4#^Ql_YUK3u&P)aK?Exgg_j?~rifL8AizZC~FZJ@5kH9^lJH_Mdu#ce^Q|
zgiL*aVfW=qubPX~)-#yFaPW_HV_2KKdmazK;pXrsl)e4i#qu{bgY~Z>>*aN0alkEn
zpD$Odnw&J;IJb9vq8&-npOWpifgvp)TPjfCj4!PaUmB+z-}uR4jDIlSXS}d%zWMR1
zulS>V4C%VhT|}<GcfDs!*8cM}!!#BNlfjOhjs|qT=YgsmC<2&4?0GSj>%B~UEJ=o~
zoPQIScQH-d;kp8Xf`zYGc9~yA%vyE{>m*THsF#;nIeeCczixB|b}7gMfeoJ2Uz?Kx
zx64zmU7T^bZ|7S`<e7xsY`K>Hc$h~JTBt?3g7!DuLiu#cC+#8atG0U8^o9&=DD4Mr
zJ1`bDw$5ZZ-z;#J5-&sZpe@xJ%V|zh4Fv!ShPLN(7$v63UISjCFlYw(x4v%;F$(f6
z<7(UID2gfHPs19r#>U2|>D7Q8iW>l#K9bRv8bP5X&G>lzmce~mr=_#(_+)(Uk}r{R
z0hr~Psb}h^<%s-WvF1Nj@akotqWDg^k9>386;h{hHYJNDsAR`dP$w;idMBTULMQK!
zRmf?YRP55{OY+D~Ol9W~`ea2VgTJ<LF7Q|<kgk)&q^INacSWv}So)H~8{NhW&yk=d
z&+<^>Z1R4K6>iEwo6DJ1`TQw0J(Zi0p{a3HrlC}1lzuD@#gb*-MVDRGq$_rBe*Z9+
zzht#0Hz%KgP^0-ktfYjxW{2{+%33O1!vO_5B$%oPJuW^zeMN2-4IpI_7kAZ*yRnBj
zP@^L&6_4~704BFJUU>ow3kx+y4dzOlyc+@N`M_ME{#9W?!Gdc-sR4(ojRNlhIbXkB
zR$VR)By=7snIzm{vOJ6G<v?~y3XaMRVD0FEWKhx6y!TyFRFL;(-q6s-@e=`}%yA`O
z2ryo0AK)~O6PGU&oN)xmN|w<Wsku<#dO%37=Ljw<iiC&d>zIt~IYWT0MUL3XGyc)f
zS;gi@wy4LDqtqiuA3!!pU^1?z(ucgbb&9_y!j#6zT4|TfdQ-iI*ViyPY3O2jV)LG}
zW>x5g8(W4U19>`w!{tRTds(0dn52!c4BjKUb+WLq7?I$F-b<k~??uc|NnmgOVu-u-
z%hwZSA<bQ=e{%F$fK$RkPA8*D+``haOKHLhDEX{;^I0h|wci;qKLL#<gwwMsf?cVR
zqUPCL4i}$3-lnj^r@|<LQ^1Y~Z5WhgiM+wyR|XvG5>w*xd2k;m;Z*UMP#M@%%%E}h
zMpDV1QbLGzqnBW9-1EP?oG#<48&B9KRpsvoOVvdmg}x0QG}^$(!9{s8__xCUo1h&D
z6Y8$`8vs;7%T6Po*}(*`B=fYil)FYUz0O<jIZ&9O5t3vVzqdOt?L5_>?Z+Ezgv!B5
z8;dAew}?SApP05v{N(^2^!^ifL#p#q4K+T}1=IC(D}_DNyK&<(#sx-WB7P%PsG^o1
z?n^yn<B16>9Zb|O&=uv<va8R5s@@kZM&4V7_@IZ*vwW);!80y`j^+VRlWgK0gzN-?
zvsL_&!?SN~_iP@THy4J=4=<432^CB`5qi=FXDU`ajA&e=JHw{Z2Ob@qRNt~&#jw|Y
zbGpqt#r-K5bb3@)qr}u}qwz3#6}K1)KQfM%la37_q?$huQ+qAJ?pT8yX+0X^IGcA&
z{=KJKa|z8c^Z0Y|=1V7_UI)6G<K=bKq3NGMBEc<)LHt`F@j8=>-(tu!2ZB)LXI^I>
z&IH||#4+DZ_uphrsXT1Xn4eU?zUgqZ4YKucH{XXaJzXYuAcisBT^#EH8Nb76^WN+M
z{suLk0D#@rU%EQdd)0o^>GXF1c$Y7yKX1S2gT6iItiFx(8HoA3Stee<uSKMTNhP4C
zn%?LeclvJwJ`DFg%}n181|9+N>L7q0KlMAbBC%Ko2I*J<7RtJ)06b3B)zwwSqspwU
z=he~Ae(IhLq!zsnZ;@QsJ<FY;L_iq&)RQ!f_ZvW~Y+~!*zFmuQ)qmiHr-$(-$Gvar
zs%fQ+tWJ5}sF(t<F+!dW@55w(cR5Z0*wug0>4vte5EZ-{?eIQW1CCa|iSpnT@5dAM
z92y)m=U=8kYoSqIUW>}mI{GLT+2H9#k#TMm5Sy2|&(--LH9K<)#Uy{!@^5oBdIXe8
zR-tI%u5YL5=6n|*?2Mz|oQ`^;(m&3Y<v@BrJ#KGWtyuchb{88g{WpLDctrr3@EfaT
zBX}e03IJ0i^8@(q#%ur{;cz{p0ekhxhw>3TUJbNx=Pf6qqwAxKcq^9xLoTQqVuss^
z<z~m7SSdny_lWSDC$aN8AUgV5<_U1t>74-|82C72+-|VY0UyrSx6QNTk1SaIm~&6^
z%f8(+7x%>Dpdfi0@P(>z6MfYm*#ZTk74QUSz=Ck{kOrRj`VxM#ibm@=9<OH4_qe~V
z_bm}+ckV>{JQ<=8_8m-p<{N$S^EK)3*drEew%iP*%Br^f!{>Y)Q|0q~<c-ye?3Q$e
zE<3yN-~)v5{^JVCH8oeFynVj`Z&9c!kz^OZ?&roGPEFGGkOSvL;N;MD2rEu-i?+`T
z!{)OcFgQO9_&OO(F&Fx#+rDK$Z>1-vQ<}|<Pj*bKOmL<##ehvLFQ3rGmi;gyvLBB;
z{p{}sl;L>{xlDkH(d&k=l`f?BHG2=D4^Zw6Gc|3m5<Txraavt$_I7=w$Y4=0W(;P5
zl^7Yu{lb#5(It>!FRw^t{e2(DJPMPMNk4X1>V><rE|pU><oYoZf_FR@S?Gz`>SAK7
zBE|M)m#d>h1!i0@n1<Ahzr!os>DbQgpc}9{0-cfN0R516hPN)?<<1&M%*`OhrMOHf
zkq`}fmlI2LB-X!5{pf2egM&g_jNZ)UBUzsR<Zz$2|2Ccah=^99KRrrRh3J{%GhZ+H
ztR4LKA_-VDU!Yc`&}h5Hn4XnJnf`hmwmt4C<vj9|UH*DhSG!ZdMSixR%^I|1lX+8U
z<!usVb+^=Eyh4<XRLB?O^}7Yr*9^rjykci(hm$9q35B>X65n)?Zz5sh%hdWN_ZDg0
zZ!A&me4!Xrl@B~98Uq`Mxu8Wb>>=8-bV>%JxuFlkV0Q=Z2$rdIn3L6+y*vmbOozk`
zvRO*5kK;8KNC}T(uxNxBDdgg!e=1Kh-L;ZvP|cOFZu(xRP3v#w#jzgVJb1AflOu5}
zuvU6c6)VnaeEqa<J>ch2L3@V&1`{7@gKoG^ZG>qdm@9Q^>K`Ju3Lv{7$+831Hq6Rd
zb30EiM*oXoziEbjP_=86Uu?%$nU6ixSXl)6zSU-k(0Czm^kYGIhUif39WU2a`u&t}
zwm_{^Utp4SN0|19z>8lK-P(0H^gMt@QXuxdd(Qc?Y#)yur$tQ@^hC{9`}-ulBSye{
zlDzr2cKDFqCO)Yx0~sq_ERyrh(6!09m9vGtKG9has1B%O{tm3WKHA9;9r^?B$XG!)
zbw+2OA6Vbru$jEGshBFxPnIF8D3<{_CInUan{!HUz>J2bfhZL0Exy?DA`x~wEH#Se
zCrs@d-L~%EH3x~z|C=1(#=FNrJUxJ#i^&|21Jk1UdeV!ldQ|_11)#V|YmLX}T<*Dr
zzgB&6DHC34b?(QHTAH@K_$~?<cKtdpD3<R(J;1SF&cd(D-=mJ`ht(5qw>uEkBSD%K
zu)CGEz8V~Gbm(BtEx41Qa_n>v-27~(6AanIZMxhalkfSYn~^<MwT2uFdapG_#SoYM
zCnkwRG8oSs*F{t&Jl|h<^xF5=2Q2rh#b0o*ch-MyWmYE*o1%U7l8II^tjsLSZ=>~u
z?tzbsBdIUi<#D5W?<H{Hba%pA7xW6SN9%86TW3RDb^=dZ+xQV&qXJuDa2=ZoMb(tj
z!|K+sG&(x0=~or-&DYLa*FFpV)Qj#=z=MlKkrX?l*#t8Y*Ex;@&zAHG+2!o+VuY<7
zINat)JRUD%Z*-SLs{%Fq3#E7Z(M}g3+O3UOH?xnVy*i=U0z^k#_6XAmyXauxiA0-i
z$9nm8gheBb+WI>cv7?<=*M}VLg0d`M+XL<pcxI8wgyv|C+JEn{-u19HIau3Szh4RJ
z<1#+}@oCo@0Ij+Fv=8LAGyK?kHO9wNZo2mRa(nVbi9y8-e#35netyFH0rznet|#?Y
zXqoNNBs-X!c+u<M^oD$cP&I4&zycMTRG|kAr#3AgvZ>vOJ|`1W>5`}K3Nj69=@yjM
zYYv4wON+|3B%BtjoyZIvf}7UyN=nM(wojYYOKMu`|B<i6;mgFNFHO)N7D~&=oJf@p
z4u&d!`C|UX*`=Ooo+S2%sQ)3E^9W1-{Q3Vh2888E*0HV?gYVOnBK6<>)<fJ7vk)u~
zs@}p%*DgJU)J6*U$@HqV$vfMkE5TB2aB!up29`l{k4#92U8}W;SLt7+Q-j9Ox0rhR
z>bO<+ARByjLvxqF^pdPv?x|}r<Sf^<VJbazF$e!X=&@Td_*=gCqE5S2&~(DK+>hJA
zIEQ17Mj>CqZi<U@mO}X|&P6B;baX`<cJ&6Q(1bSoWYx1TWWE{i;yjlz#6TH}av}Vu
z+BBJtdYP9Hy3rp9HLSI8mTgA~vYAuAE_-TNzZ7$n*}6E1z==N}0d`k4?~PI76}OKp
z2h8Ymm+iVgD3zhajx(sY1IROV^GImWbUg7vjr4FXV}3QDGUN)wbR!9FhBnFaq1L;g
z@3Ce=Sm4JeArO{6Pc%_{63uxpmU#Tuv3~+O^bH6DDCflF`Y6PjBY@$NHis%c_?GCQ
z3xaEl;LvPcT<8~!KY37&`!!Il(3IeV6E3dPj~OO5QB_x8G<+q>+MxecXQq%{Z24z@
zq7z_+16n{gf<VGP!(iwvu*paYiCi*c148FlL|?QK>HbZ7ZvQq(A;p&*o5gBiCdf|4
zUq3-!FyabE3q}6}GgNeUWUJw!@x-b|s#S@j@Jcc5q~0Mk-*jVfJQ2AvoJ%CGwZGyw
zz_?2jJ1AeuZM1~Gg`r1q$Wb%znA_vVO60@)0?IM;xsS#<-nYQWSy4@?|3!@9F9fj}
z42V8IXat~`FRoc>TFHcgPIe8?N-<<mOrP^zTCmbQ!V8fEZPT3X)MDiswlma&d3kvv
zwt~C=kIT!`ePah`d>ayZAfuRBpE~JM37Py;r3PZ6SRdMmt_HPX4t1c2BH|pAix6v3
zi28Me<*!)gWPp?mPh7kn2~=6*pgYmfI2>^XVkWYDmVW<y<yL0pcF6ig;G1kV>Q*Dh
zGIov7MQRAyckd3w4HXdd{SmP!P9)9x)ZGq@ijLbYdyD?!Lsb+N1^uUHi&%7=2@462
zu$b(-4Kck0rxE&5Jw5kE<(V9oNop+5hZ-Fg>El;jv1TjtzZE+a9iKaqy-_@2lqvV3
zEQ79sx@fm%e)&RHKv3N(81{LcoHF!TpXyYS0fghZuLE9#+&$a_b&S&noji*ky!BDD
zyu0n|ZUMgiZ$MTSm}sDT-;ZYJmgIo6(oDuMj`F$;6m+O=n&mS1xVFXaqie!gI(V>-
z=BG1SM6VhP+z=dDD;0LhGWf<)AAk6pCb0FXFVkK%QI1m;eL30$<bZyRKizik-Ei4f
z>UdSH7k6BifO6bI4SEC^ITf-Y|H5j|b{pu(54X8p(NAQ!p<YQJ>#RMf6V$qwJJR))
z0tN5jMtZKf+;PvC?-x&wZ-d@`IVz3$^nJ`@uqiAZPDHwP?fc0dOcL4&fh%<xHE@Un
z<Blnhh$HuQl5h2jL(*Ss25P%mN}C3{pg+?8rZoffWKb~5=!Obv>!mFshGzn%zsYIS
zk3DwnO3RMN4)tIR61XQFYu<RrfalHsgx(n266g6(r(oYu(9OwuI>Z@8;%FBYhN4U1
zV*8dwE(+UT8FXknIIu>}g}?RjMi}|8y0Vjho<g&f5^i8+9buHhh6$si*bOnzvsa_w
zSkR-?+=bU-4^h#J6Cfr{`?Lw4cfa)#WKF#I<|{5wh8f;5K2PphYc3uL#dVoltmvb~
zI9$4X*!pqf<haoGN>y<6f-<6$*r7^0H=g(>`~?-!vL;hFPTEfkF+VDjXtpI_RmXK^
zOs#N~C>+R;_49H`8FP#G%Z>WDps*J-)m}`KdQvFu(Xze3N`@m&gMLfkdTj%)cQdW{
zlw#0q4d<U{8h1L;ws@y)4Vjf)=ppDCYf;_<1}fnXC=kRR)gkaaaQ|hX64T6#6+C!`
zs7yr54Td(lKqtk_kLg3i_KXn2*+$Mzc^3<(;RMd|NAx>PQwRwN*@}?Rg;O6ZPHz+@
z&J~DZ>u!D`7eMHx9_RKSxqe+}Mfycu`scL(8x2hwBH%Y)4%yETQV1*z48`NDVpr$!
zDZbZ3tucqg64N<8ObPL7VhL0X@dLP!Kc9=?QDor`PF|l^cSqYZGZ&62(_;c|J55Z!
z_;jSYv9+GvdS~~*=o52)2UEh65zqSm6(rcj92(BA4igvh?IPH<9`(>lvCh{Qr=$fd
zpv-7JM8>0d<@+>LcXK+ABc*&Qs{~4RxhjN&=nJF)&N4>2ZupRE8AHNTzVCNp83MpU
z1Jj7Hm@j8M?hoVC!_mhdf-y4WeZ-94iz#&}WdVV5)e08+)7`pu9LzC!=jWhEKr#!G
z<L=|b&T_1^$yftOSIXe`{dFit6ftHLH1bLM4ZZjN?}-s_(I3cXa)gBghgDH%>;?Qi
zgT3gYExBI@!h4~a>*1~6#r_rK7~vYDqdys*M!vYYSnuH@z5pKIevYaIe8((vtU~Pn
z3gAH@wL|V?!(X<QRi-<HXgA@ikVYs__=B*`P`9z7j;6qT<7!EK+4);9CN978r@-R*
z8%k%hTGj2(&C{^M_6^YNMcYPjJ3hL(p3`$_7G!qz&6xLtFC|_P4n*j&z&Vd~-Tb(|
z7(WL$2Hl4cVG2%qGEQW1_E_T7tEM@7hMZ&*q%DEH6{v(Y|Aj*&gCoIxnNnq(x@r;b
z@tN_mbDml^n~VXDpL-lksqfl!1L!FqVPKRYhvIKx;WUWhhArRio#%!#I;iBLr`|_5
zaeH_u3_Fy$BkZ`CyY9;D`~>pZunV+XbkKCyxvr#pbPpTe7BV7Oq*)WM&xZeXhm_%1
ztf7W<_h{az5&=PaopdRF<DoMbmadHPjDd!RCf5xoPv134dqu^yaA*(v^aGo{lG-*j
zjUor=aWcQ9il5W=V)eTz9pYib3+Es7aHQ>dzaz9WJ3t76IhTD;FgWKzNB49-(%4ns
zW(d2gRZ|Q>iA^k%@f$ma2^QJ8_-IS_ue009^HcH<vT=tVFsEv59)Pd32IYiK<abG7
zQWW8yBh%1V%PBZBD0T?EcW*C}{XqTwe}9<}DJ;y49x(r-5C@My>YYdwd`#E!r_#Ch
z4n=@gSk8uty{n?BOQluFO_h8(#o~6X2tt$($t&LG%q{=EPF&MV6oaWzwc2OFhw4|K
z5*yo#-Vg1U@*N(Lx_<y3C%@n5yJ}iz4QJ%{4wPRFFpxR0`QpVO5e~?00u;J!C=5!k
zAD7BH^u-r$k{Y#puQT(>e2PRPYy4s#VP-9N?gE?HS-~QvH5wT;Yk~D<+r~2;ZP(cY
zVz1WWmj@#eHQ!7gW*GA&wB9X(JSpWr!qhzc&`{r0J%;}z?L69Lzkoo9b#45*AEop)
zb29W7e}8_m<t{BRt%0AeeNOR+nF6MoE_zvKoj3)<kf1P+JYLA9ajNXsKJi*|(m_wf
zkN#-H%WNKE+Twy>v_zP$4D#qf=1=pYv8d!xAMiPG$faTkC}iG|lO)ztUwuyJ93@^)
zrHVJkvl5A7$Coyl+#Sz8n`KP2GAm+)Oq2w^X;{oF?kgl|p@q-m(i)VvT@#f|I4dDJ
z6^f+(FG46Jx^B1Y!1@qY)#cG1ww_K7+A+Gu$tO3YAJRpQ@0`9zP*KfMEPR>Oov1jh
zL>m`yTmhd>n`U#}!Y)EJNSeQ;Zy!X{5Fsb*`VjlsVDwGOjd?-iarM;Q(;n|{>&O{~
zT(1eM9YpA-1g=KdV9b?*HnbrxWYSbC;`>*v?0vd~1Cqo=Qxzx*il37&jIBkmAbnLi
zsJDH;2OM1jL>sj{&qY{!%rK=Lj^$zXe08-CNcooLhdffP6y{2Oh6t0aAyzN7LpZHJ
z%>iWF-O<ZMq4kbTd`b#+t*;fm%!~z(E7nG{{~jissxdAW#K0a-NK9OP@oxN~6I>mB
zuxGCpLr2R=nIX&c(g;i(%c+~^^x24FW`KyiI`Dj+?0A@DHg{{p3u(q1+YHg$eKrJ!
zrutR*%BDQRxxl{bRQ<ew#iF8qz{X>dY>-%rtT4OKElO1y=qZ#r@w~XOWIzzBM0zrp
z9(ImiwM(D7iuM5XGi#=X$Q;%5+9nWOTTTjWG}Ijdqig;?97=gFDcFrKXiXPUR)Pux
z{<ltTLgsIq34{vwD_8Lasukvl?C&<!|7<x92(4h}-?0sAq0-chT@Vod0S~#{!2gBf
z@p0z8d1fM|T%Qx}7dJdGG89H3V$)Ju+#bB@J@q&nMJ1QSCB(y%RaEFgo<9t8FQyTm
zcqeoNZ09@lcOXaRPbj{`WHRh<kR%YL@QU+Y0koC!D3+t-c=;9PSPA=z<|3{B={HSQ
z-rvc0Yg!DxTFKE0Hm5`Qb;|^aUH={nL#i~oZ%9AMeMTchQHqAh!&ed3L~M23RWM_R
zmgE7+!a#9{PG-^4Eq5e{^6AmVP2*m_!#ua|jA|~&YmSqx<!>EF2#LVH54&O$P*b|M
zhi(?vSHeI+)wp+>Imesc3tPlQIm+*p*V77uH~b{+ml7bO5(6o$u3c*ss)!yRuva^z
zv_;YRKA-=}sQOcIs6kyWFktf2h@B4Cmi=awkGMm>7L&Xq>3DPei65Frnu2ENiIzn4
zv-B{xm0DA-1F1%2f4f>U>xZl}MWQZp7X)=<$mVG)MHt}X%p|t-TZg;MlKn24JuPFO
zsz=*8XlUE`OC#={@^glCo@8Y1&Tw*gs5u{6e#h9mMN`3!+EHTO?`F1AlL-f&D?>*}
z;#hp7P?dBbB5o;e<W(Gux%`bR<rS78yTniLjKvd$>8CWCIW*MBN9R~BH&%PD|0@4&
zLMPUS8H#Hzk`ZS@NjPMupo2oZZh&UujLo1cx7l86(W=`_eCWsRE7<wWerg)QMQrZA
z6}DOl;#kJ_OHEsCvn~3ou+(#?mvo>kuI9MX1C$KD8SOD~Tv;X5=$k*0Uuieks(S2C
zZ@f=~85fY5?Qd?t^H8Fkmb<v<n`Xh73z>1vN%A*MNxToMQ^TF1KqUVP)(`R(eg?YU
za882Dx2}cS8&MM8+(OL9OB>WOxmj4OA);+}DibyE<4M!gs?i*Sf$w+4XYPOYE~{VT
zY(KsM>_>Ikvl11*1^GT%a_WVIPYUo4o$vmf1!-vYJ69IX+-kHD0s7y|Hl4&7n4U+=
zV__{<SZEsjar}B+uhZhQFPHaG{0=z~H)`F_p%)WNE|eTqt8;MECQ!^aSHsPejI+D(
z<&TB`@4fUtTS)R(HeCKQ=TZf?%vW)7qfcJ%qf6xi@7+{YHHGz^a@~ZI{lvO^lc2Fv
zw>9ZEV=ApXauQm)MT!SThw_(45R*NNqIoIlH#c(uIVFA?n<@0G9g#dxohG5Xq~FE6
zN{y+B($z%*hV_wZ<?7J+^;JaCslE(}*L`}pSt{7XajUJn>JfMH_V!INW1^=wxpnhB
zMvGih*CbCMV2O_0%E;jV7My6oxJ8s4UDLHntMvIRaTWBgxIe55>NSbHI#!vCL+br~
z;3oqFtQ|zad6<Imv{FeglUJWqS6n<ok>~s2JIehW{=a6(KZO|@AcfHqTXPSMv%=Zm
zi69e!1&7ARvEwIG+Io8+DRpz)3r2<D-pc5kpsx-hz@a#ainJq95(hPx%t7eW-speG
zm!LQ?&YQQIywb1&!(kMtM#%`%=fXURQ8#SDM`xrloM`aQ7h}~DE$|zjX$%IPvO;H8
zU^x;`YFEn|X&AgYXUMs4q7eaRX}nvyiK5I63u@sDJX|zpFohegg<awqHg-miFbZ~R
zTgfOJ#G!a)nsQ5+TKCXmu=dhhXNBbg5$!KZ)*T~C%8k9zbgI6n+945sN^y~}poIn{
zaqTCi#3FuFD77YEv!YaX3d%V8Ar1fX5HyRnm39Jsj02bBd3~^az<a><qV2G>EP&2D
z@z_WsSk2XK+Qwuwjbgej|Iso=pdT277bMO%xO@gw_r!_EhgFV$d7e~CsL_m-R_(y6
zRPmMVWz(adKqL{zl=i^m+BR6Pwl$+7YU~)N5{UdpLe|RSnydI!W}_xri5KPd2m1^}
zZ0fe8*MJ!FUP%zHv9uNgLx!RRZktT+&1(;%(m{m1>yc)tYY!0XVD<>2=nJQ?m#I7`
z!#;pe>+oBThvcQDQD!#UYvuf*`lARONn%v<BL|MgYnGN8@4_NGPKj)n_T+dEvT)pv
z;f&i8g6j`)-edC8QSdf=;v-F};x02*Z}ReV$zU}O6Zz7^2LUqL@@IM9W4U}q>-(t}
zbqjlXn;$ppouZj)wrSR+POsWGt1bg(Fd<X48`}$H*`=o2noe5@0%NcUD4^stcgICO
zK&M$FIbX8J!##-P3&q`|P6_T#8I;6Fx$ZM8b@eP4x-y3m{X-7DtQyD^QER+#^b@SL
zl%s@j9Tc1YkFmE5iZlARHG{jmcX0O*g1fsr!9pNd<L>V6F2OZO<L&{11%f+4J3w%o
zH)qb7sylP<zve4Y(AD&Q_ulKb*0Wj)WxtNzRYb+$VstMer&9Mxa{G_EvHLBJ{XeVn
ze|whv49^_c*N5UUdt-&h=rvZRBxXr%N}Td0E0!3Cf~FOPZAHT$6YoNWlITc+hFad2
zx<q;<Kf`1<8G4vtf>R5lj^hsPwt%nvbGu1VD&mFiY$hd@iPQUe)|);jk1t-_NJ&wU
zNiM)iIBwiHkpK-9HR}$NA>iR4j)Kw%Bsa~-OL|gMY4Ax&?NU>6a#T-#p5eO{^^A>i
z>eL|@1;GhkNs03{MLJ_rC=l6LK9yzM5L~}yn>$<2VZg^L%!S>DXZ+MxMhh%QR$6UE
zF~mS_nb((R>0gnfwCwa1TwEZAVy;>H@<>|lV^I;Bk7b|D*x@0Q<Ftv&UxdI(>sQ#-
zj0z!>)+}hq)svPGJ=}|X>zZUwWQ&`oUN*+m;<}gEU{Xeh!e7eHV0Jtt{p$u=C@;c0
z*43%{cKvq6S7`*p-m)L;c#O?wR;-$Mbjf1++%+@8`0g8Lt_PDSTB#1y7S4V{s0l%D
zXAh{W|MGJV&6+TeRn2+NTu+FRzG2!ruCD(y@O*FHm7Xcqhya!hN5{b{-cZW5fTf&a
z)n1fNKRo-HBk!9U=3O->)H2C_4$QVd@|3Ce2>q3bn;$s2>X^63JOk_tfc8@LTfn1N
zVZYisV#$YG<*9OewwfXKvq1x{`6Qv;UfU1z`?c;(<BF&%yhaz&+YLN$6ZgvTnHRI;
zx~F5{3duu+hd?69z7PCFvvb~gC3_dr0L9-w+k?{W#1^z8YT>XbpML)+`r8MPwmzii
zubeSqLcf9Nc6$a!RVshRmmXBwse)f9JB1guH~76Al6pJVMTtYowD-K|Cj0pKm+w_j
zlUph7QEu^isLXJd+dqPQf>;C2T9#08o3%RN&(&CmU2tv0oI>RZyrSaPTj0orw^^@z
zzSYKA0C?yll5M7GvhRh|Xb9Gfl-0DxNA#piZAQx#=?un7G)nC5>br}6X*GJrLI_%W
z>k4N%9i~Z*aHRlv+uuMaz%t9zGy|Hg$6u5zZAI#Ka%AuazdXI@_8sgYF6?m7cO%xh
zp<$P!+>;*L|8VoF(1I^))_ea}{iy<LcsSTdhm>`UsIIheYMNiXJfTco%_&mOgVl;*
z(LRw@i*%4$5V8-~sH!3%KE+8x6GNb*(ipAO3PPLMO-<$1>5Y1~W5r-4gd75*kdc)|
zmX><@h`wWv(^+ZK?M+s#^%wi`lK*W`RC-Ova=9u}zL?zm31P2G^!h|c3B$H?qHAes
zY2-`lV;Gbs{cniH<i99MI8G$V5;5@*=2|#gGo1#caQu-Y=Fp9@#ix+KAdZ1`D*8Zd
zq%sUfbF(=VTVi*-4qUkIYYG@f7P&NrinwLv(~9LB1_ZzQ7ScUNrms7@f=rxswacGW
zItNZ<2+AFK<`C&=$sP~#K4O8n?LRtYuDSg}3>8Q{G=jZ<!(K~g)A;-MrwNlkoCF05
zV0l7ev)11kiiJc-(xYvf(>vuu44lkK!G@+v+ro}6kYP;o%S$Uq%>xEWV+H1EmBWse
zJioHRM5o!h9UfWZm2xa*DwtT30{@4~JGskyz{omm$!j}$2iwxqv}R>qj6Wl$#QUf)
z7er<%?+sn3#QRkVUs=WB?x4?t##J#dhBG~};9hImYeEZyqnJ#1@!c0_1ef+td-DKb
z`Z_9H_0x=#I4ktz=~yZXf<h64nUQrsaYBE8NV)<vl}KjWfe#G>u%0`lh+g04_k<qM
ziqXESSdANrEJQb|!66RhQ3Q?T)>p-Y<9?Amu%Jk&J+dSOWiqZe2R9(!PR}Xx8d+Dt
z<2z1{-ai1n@Iy%UL*~S(aUP$^cZDy3FMJ)P^!dI@J!30SQOjq)qSXwu{B*PG=y2BW
zV_=n-`uxtl^WCy4%;Nn^(k^cY^JWptiajfJa%pXX$U_AoE4H&N{0t_`6))ji;husg
zz)eS}&-GOTjKl1A+0#cHh@efJ6Y%=%QGzPeD~4Z<T5WHE$9Z+#J*=BsbdX?8Gs185
zNQ|}bLhLY5dkUBgWg2{YNMXKGTpQ1+L@lJ2DPa0}wOxJ{Cm<30H`oqoMt-`;9f5Mp
zIn4l9W@Sp!)mp<g@9T}T`it2LJ?Lk6TNv2WrEtc`fTc<Vzggq|k7Dt^>_HWX$YO7C
zN{6OmdM$9N>$9zb3vFRer{5(8L?Tt<95raOfjGywH_04Ni9*E~<KPhxQ0LxWW+n7K
zI;1H+RoDCPI}3UL729?oor29$tMd#vDmyCn{gn>nY3IIYDWXio*$OX5py8#_zQs*_
z5nmPa=Ov?$UwjaA4mo+NbZPdu;R7YnFT^gaN+-tYx&ml}QBmk53C`kjFdtwMGv-&A
z<KIk=U(JYepkDI!Bi;T0iaYJc{w}&1y6$0#|3Rx+N_OOYxrUUERew##KR_j#P@_Rt
zIkwMXsE`+3<!7GQrK-tl9<vS8A=K-w)#eOqcEv?<Ar#)0F+fMg<RG${HPXMx(wcbP
z)tuPm3@fgG&4;xxRQt$VZP>_ifLkG$Zh(SE6qbgIWaXLW06te(<cVQh)7P~zoW7V4
zlQRW^cX$7cr~_dvpdiD8rpOpMq+$hU=cY`lVPY)jlwX`lB6iE17fMf0S2M%#EMp>>
zPvJphmbyf169a#Ycsip9ankN&-KwqYWK>Rfele{gn1}N!ZNce&Yq4FNAlI@PeY`ot
z+Z(^#3@D&i&1Xe62ek$fzmX7A=0|#iv}f=w2p?{r{V$RfGK;pgk*)>|X3FCR@fw2y
zQM?n|7ulgdUu!1hLT;JY@N}wly1lQtt3ox3^M2tZB~lJatqnplw%JLS+GzuVef87_
z{a8^zdT)TaB{Y)y!o<Q_=WvtVUORMmU2o$Aa23=OkA7z_`B!X;TKU6!J|Q}OePdz!
zOZKtv>l+U2B(SiB8NoSSHB^zv)VEPBCB&P0L`5~6%N4M7Q=^Q;eJis&Kgz#Z@bBbj
zl}q{A05B&{n$m!R5wRS&*cp)Y?$tkybB;S1lTt`e=&|t*;}(0wMb#om`NAKCeP($t
zBl_7WvL4EIa11u}<n~?a1?o+PZvC*;7avaXy|j0VY3o)Ni*Sjwx$})5zTues>`ZG{
z)~U;7;dZZp4y&0AEq`4>ATlbXBz;s{O?O!4GWpf*p=jQdqz)__URWhV%N^?1(><@y
z1u>idu=V^~Q3^PL-je#Ft--N+8sB>bvgBeIVJ&6kby5upj5>Xj(UD={QgO@fy`Rq7
zCgB^gQy9irl+!s9%9ZYuwCkMrisWLvFB-E$Q&6V%$DCaJGHV7)A!`$^%L*FBr1ZBG
z&u$&&lI?)>H2>Rv80U?=46~m^<5)CybW{P5`X)&;E3V|zGs_OCL7Ow&lZ!}>X*b<|
zewCOFFklveam&T43ma{XEDhqCV(gk(Kd{4JyAwh^@&9HBL1$FhWOtX$TqDNDWeSP2
z_uPDp^>afC{XEF3MKb99G#+{5&S3kbi|@DVTU0S-2k_>E-0=&R_t9CL={^!!r!j-M
z!kI;;(Z8c$L>2zn1LLnf`EoWaGB$FoseANFGrsSTMO2fELF0d2#4Ij1gvG3bf=b?2
zNwtnr=V4xQz%H2vbURHUw+sVLNC-h)6=ks8R$QgSiTF=0)gQsM|3Xb@xAP#TF>Cxt
zbPWQ+-DO~?wq6yIBQKxL?{=JO=xc@4N3o-=YrL;B1z7&&E-o&pjkF6j8J>!$t@)Jb
zCFvTtPXVhW{^1SqZ6`sbJ|j09*7Yo%LzlvyFMY!;zgq3Uv4_Y3K>OmFoH^wD<zcCp
z^w+-x?5WR+y0$R1<Ahz3LTL&vm}4RKPtfFb6<>vW_P8%(;~&Gigz4BXO3Z7zu^w01
z$&QcFwm)$DtZkG1rU-P*0>-)SBVZK)Y!-!#vd<w11dK#q^Bu1m7w?I(rsoQPkPccI
zSPN@y)Avf5OC>N8Wo{MF2w2C;UhGV)V%J~n3RtT<Hbp@~gHEqco3GCWcCC%W@BaCh
zqYoDYVc=q&Iw`RG_FZa#G<~>0Wj5ueqUhr(50}Z)F4e1A33D@aQuyqP^zmJ^H2SBI
z9g&AGRx?6Zv5-RmaAYAltgno;=x>vimF2voHjIGt3|z+E4eVnQPMf`@7%>)tGMf{S
z<S=VEYVTcNcT2a*#}9i(NRqgR-=cW=^%*y7O{*v>elrpabY2*Cv3gdak@p%a$E5`O
z^3@1Ibq?GoZuQ;)xN9WBPnnwtV&<(r9Q_}X4@uAz7ZKu{?Eks5V~0_>mDYDQMxRlv
zK3(VODwhDKz82h|<TpE3`v%}foqVHprvD@grUkw++7dHELRDMgg>4}T0!ErB!&FL~
z-9S_Xo`9#qCrAj@85>!2&T6ke1j&BA;U{nGW!u!(A9e55)O?XpZG?lVIRY|JTYV*^
zNBJ~CEN{cPFE~rDon~u+BUUE<p{r_o=P4bk4WAt2bJ%rz1fx(os>iDoomaU&!G#3s
z$-Y{^x53iiV~D7>%i4SOE{piv`R%k<oI%JWKMzf|aaWif`!}TVlZAAo7TbSIPw3w}
zG7B_k!<rjv5JyC~LgturMjLj%OXAOcgj5JR4^^kOod?AB6QUx=6#ZadQg^C0qYl^(
z+Sk(9QV?U&So?(J5`cR1^jk-FkIqqzv%x%s<@iZ?KF>yvjq4%YE4T~AdL~O#MhzV9
zLM_mI5{J)q2c;H9j@94XJo#?eL9|ejgQGKaC~vq3dNY7wBsN%xOF%}(GJ>I07);I!
zxR^@bx*UAxx)DADZalWpP6WsqvrY-<#k@wM!OL%&@^kgp+g-}hf-o&H<<;ICq1xZ=
zXP6ExBixQ8a|VHxwO_6mC<8_Ten-$2A?Ys5h~Zx(1=qP3zyL9BJnL8*QFI3KW7BI8
z+wujLn}G^0Sr!Wf4weoX29(o%Il;o~_uyJofsFeISmf-mal}As<J61S<Xi1@7*#5n
zpiv2AY;5t|z@~Y?-HgzPO{<YOO2}qFJNNf|-Ee5!8nl7Zt*sIYq_q1xX)jCGfL`&e
zbarEf%mx7MK`U=1X_Qg%tqQ}k9e|1{F2p^eFOlNE+4l=~v2zFa01=OpET^~ekM@9x
zb7x(QZj&0PPJb-}vOyOGU;0U2fDe_~!W!6p;hS(G@j>(<mM|K$3mip4-kW~6B(#PV
zs+BrF?{(*Ou0<lLK*K%HH><^tAcKB429Y@@`;SIx@YW<I8}`7u-nWk__g#E`>3>FV
ztAe!tOKr=|pb@dtVtfBNk3EcU{`Jjz(m25o`^cf=h#u_sZxTUdfiXe`xejMBjy0{o
zYW2N$PO!SiJ(?26fSq4%jK5Wl)&BQm-Bqx+0)%owpRvM(D!O*{gBoGaXD@P7{J4oC
zhqcwr!ryK#RB8_2MRAeuGKg?4z?_zC`zO=7CJu_{!^K0siY1Z(93kS6BoR6~=}#<6
zt<)ANHQ2jsgj}B7teBaC9(CokX}E`zJ~4K0R+x=NEE-WZV2akN**_=Q^gdlGUc?T)
z16_Gix9%E+Y{giMm&p9Ax^6mcwa+`gu6VUG^xCZb;qc4)FWE$-XX}o4`b^tpJVhVE
zkfe|%IKdAvfCei?d*HFQUhIuf*o?-JF?<~6A%-e?LPu_4x;7_#mN0LDDy(rmwNRJ)
zSy`%Ibc@@hK?Y%B@?u;F@Q9yx%xeXzJ9z%j<2gW5!GTd?R?LV?(~Dy_pmF+%bGH?O
zg}eush{_2L9p|Y=X$GX*U~h@q#vRy+Y%d;Z)AtdJuw=+qqKUg}tWb2TDYxVXY*Sxn
zj+Ec$MFJVU49O8(Ft}8Us2YSZ+>4y;1&^zO_-o-Pyh&jE)I=rq-A`kTjciKBvi(uQ
z#sf}jo*%=UurQXUV7TPri;HZBe~tdSR_k#(sR{R4nK8aj2N6o#<47sX|8yN6B;I2W
z7^Xu;3S;UeHWQCpXN!vI$LJ)p3C8nj2SRlxeD3PGQUzB8JLZu)(Si+0DO*<fV}jyQ
zW!uAHTAog2q-D1(I55~q;-s)RSa|uFU8#7Pwk>i<9(5bUazexwTbBf-AC$~PJ_aV(
zg2aKI#aH!^-vHf&rXn?{^o<4_eqD`LomgvNOlK9}R-nAA5~5;L_6j1lq1a0@;%zo_
zk6H^ai=o85n#$iv-<M^HbyQSyPs+f)J0PjmNf6^=rBhW^clgFq9NWPuFIWs&+TNGa
za|?#+2x}=4OZaahDB&$-v<&Er+)l-*&=_&mWik3~vmd|}I|8QIM7AR!l%0p6QM*3e
zecdu~FMMbRXfi0(Qbz}t{oiGaY#e(+8&nf)6zhXQ%jWxOI+rO@+LlU;yI%stSfl{=
zt6x|014P!6?CjjJ`2>(QotS!RuAs?xtmIoF{(uwtH{gf{cNWZ2#k&1&>y3;72I9Je
zcEHUpXoq?QX<ssyjd)YLICThqlMd|YX#pAGdihv0dWUvdq7ayBB^Gx%O0`ZDJ?3fJ
zwy`!3dK<)xF!*jSX1kpwP2*zv4W0DjX}%RCLwsR$ISLE;NuynRO7zQ5R>^0KZIDHf
zYr+NTA>xpR@Aq(T@%*YtZA-i4Ygk>O6d{txFWSmRfB)^dRA?%tkB+g1p!$;M18e3v
zNia^;8h<b6)(6K8p+?7BB&ZB%b=xZr%P7P!ON(LXo3^o~Sz0Uez{I0NSSt*J7e)#6
zF3^=_b7n%&J&+%DQB7!4obn0qo}a=ZL@v9-tFzkLZ1xEEYx7=Os0Zm^81;;H;2U@s
zip)<?e=yizG9wMjju!hU4?<{=%<aowfmwI>Pa866P?hu>QFq1nAGHm?)hW}cwIBxu
z{ug?ug7)L49Wva-8(OStPnU;mSM;zU9#a!VHEvfP`hk7>Ooc2>Sq<=~Dnnj5A7Ie@
zHQ6X-Reu`E+<aOUvrMclmRv2_CAq1GTvl54{Uxh$kz#T%g$t9<x$!ioyC6qxDQ5<E
zdED3F^{e$uf^$O&eV!5UF9wAaLE|BsH|$a9niH%djVaus?UC{kH98iyX!wL^w@*^#
z<>(d!BegQ_?V8C2<9^Gmn3CBT>HX}hYnvPH<V5>i`2`(A1lHu74M-yhokWnK!`g!H
zQs0Ge(q}Ra^yM@o&_-Yr36;;<6if{VINMn;qK)#Ex*ew+w5&v0gxpN0s>5kE|5c^Q
zNn|GSk<llM3k2Gxa)ggtC1Pk1C31@%2bp87IU2M-50-KwqwAdY5Ap95X;|>N^nSl!
zM%1~hG&}Awz+7-DWUNdN^CS-mgw0s}1lOY$#eE2XRd6i%wZ-MS5f}I>9uF?h9x&(z
zfaPo01y{LGExH05My2FXZ`}FQsI(8lJq^R$^rhaAMhQj@Bb1wze(MZfN?i!4R;x7#
z2ALf6-g{ua%C4Ej(uk46poMCQYfSZ17*h+So9WM@@T_{QEE$K|V`=ipD9BQ&d5TiP
z89<H+HFOtjLNZbcN&MI&vcSF9qp&gn*<wr5Kgcj#lkA(QQidFYg*V(+?IrTm4*FYb
zuIkNgA_ykb=PNU-x83g-d2LNn(N<f&5Um4=UWpI5>?`6M;mLH!q9;rB<v)I?$x2YY
zR9$DT?n4__>jG>c?HElgwxlgnk+S)hYocS-=~lXJ?`?#Pcb!TwcX9}hh;NC`zpPo<
zK3grKBvUO&o#k72>iol@{4O?Q4!1Ryf!$D_udq+Fndm5|^Fr|yd-s!Q&;>nuz|*}l
zya_wP$1r=vzjRbM&}Vh+)7~&7jtfR1_ESg`qZZc`bAwz&Q{fL!X!mV2_($&2`SQ5|
zBXrqPH$fW`jkYs2dLYDXa@?MAw7}_RI$~j%e@nPGD2S07+c-8vHrSpV4oq>~N$MQL
zWit3I$FPCRuCjsxcVz3nevNrVeRNt!y-r=Lsj_C0M>POQ(`R*PBqg$3-zO2|4Br-B
zKNjitK^x()(OG)^HyJ95c8DMRMmbRq(pS`M6eC_BG3z5;is6gvYY!IV@{ceZ9)6Sl
z!Q&n=A;Z!BKkbLSuvRpnfJCjf<xwP2{t335i;F#jucs@_q6n!Ne<b;gz5}x!{ilyH
zBAyT8kW0g|FMkMwfDphuKvU~hHraMnLk=>NC=<xms`?|lYS3!OwALh12JcWhL$E&^
zxaEXelOr`W5i)EYuOWY<{^_y(Dc25zV;5hq9H*LZ1P#~X;z%+#!T1gMgB#Qp+vifJ
zSGv7g5ykgF12$w?nTLfD5m9rt5<g$v4g320_*#7X2FM*pIq0pH??Ye?nRVM=6GV6^
z`iAOLL@j6fxX@q=lKTN~mC`>jm~_+MRl^OEg_sy)xy&?bFd8{Q&6sI>*7{3B&lcn4
zBXpZ=B8)vW(#9uh&<T?}egeDa6}C9c3R3v3W9$hQ&zBIR&-sO{sw{=2As5K(^x~(D
z)Dg>RXvqllK!#X6jb2!Io!zD^%oHdy3m3F!R5F_*MQls^OtunwL6DhdH5PJ6X#{7G
z#5Xx%n&jC`;1;5Ethm0oO`iFPL8n@QesFkbsIovKJlFhrRs!-aEXKr0^u_aiXfWwS
z*aUW+6~y{_)X)6fLVpxgBDRfohzqYxeEx2&7l`yWg5bR@oHo&K>mf6z=UkA0jJn-z
zchaG*XwrqeLR^eR*{%%zB$C?WKL<~S`_(m^&8AhKgLq>eS0}`D27M^U=mLN=Z%uNl
zU=8=kx%2xG$&q8{*X4IOw=ns-ckC#){qD?8?)S9=T<7%k^wD70Jsa#lEUTyIHV}^y
z{-8&rjhTHLv^tB5YO~mW;)>+131%$f-JT4uZZG#@rHYB2wLYf=GoyM|7U;5;{@F!~
zQ9w^yp~Dj;{LVYMSod4_HTgk%esuPpT0-f_u{lv<v_Ir<KRr46i($V7r83LMfi|^A
zp-uaKZ3BYvBP12{tLvh`LiocP$l{h7#q~Yoma<E8Yh&n9;GBz<_|M26r4gS*4mU5&
zIu#cO8a0BMiA!p9=$rA!>2hyzjOOa!m%$ZR|4GBCutydXuLC^P!Oe^e;!RCWtlIgu
zhMR5yys-J$eS0cyxmy<tp8|%&ry70_Ic&!4jF;^2R7%~Yjz-5UU%TEPvkA193%&FH
zu9@r?8-2H1yYKiMKJd6c13&Q*^^8-dLb+p~EhN@P(LhT4bZ&K8LNFdI1-=jK6zWX>
z#v&Q<hy+uiC~ux0pg_wt9%t?5g?{XvkAE|v`L*{_Y<pT^e_Hc?e|)!6$aJSr#F!G{
z_}CK@$TRCab6W)6U7C0tG%Z*p!ib@2rExFbeQP&0p_9VK6iNydV{Hcz7t%{&&HwUj
zrX45)8eW9So-QxXb7CB5Fu&j?qCx(}s%k{M)&4-2x?eb%Hf!@`n>JvOfbtc00ZLw>
zA81~jV!j|8!9crR4$Z!;qZ~{HsLs`&sl*x8wU?!eOkQ9{tddr0qG8q7GQzNQtUSqd
zHX6rQFK2W*E_*`snC>h6`ijxzH*Rj8%vl3TL6`6BS5n0wgZy6&fMoyh+qEFwC1^A7
z&u%iLExhR!vOwZwt*7RWjM(>bWIpjzI!pOyaUg_;Ws2<7D2|G0*$+MT|EJKkAO)$|
zUmkUjQn2L9Zf-`#Tf_g%pFYa}UnK4STku{ag<(A3im<CekI+EFr{@G$DF3&8uS@n#
zU8RdomkJIX)z^meHjVQRtZv=7zdfXFsW4_WJ9A!L$TKESHJkVh>&$a7|NSi8!h;2}
z&LVE-Ygyjc$8`9tNhF~qO>(Rv+8SuMAzE;-^b73bm?4TT6`zA>;WaGKbbhCXa$y&L
zn#ngt^RDewo5%hP%+P1|fGNuO@{%BF&?U7KkmJ(?!l(%MYA-L`RulO3F+M<XVAvzL
zf@2`>4j@xl?}g13|CI{l($4uW`(cF&a>ESu4L*gQOH>T8=i9RCtkK1zraAiyBv>%m
z&C8iF$CwBIp#;Lrw3{SbR}>mbY(mf+@>SLJv~hZG?||3+^qzX^OT8b^<#Um_L6wwY
z{4--(u%4nGG*S9~^XVs*w2m!_qiDLy6fWA)-z+g@gBq<;x9t}R5OW<&-iPzNh4x;c
z<!(Qh<+(=5&VqXI=#uhGngB`F@&|{ZX6*6E&6$*$QY_;ZK`@Vw1NXqpfl6M3TE|tf
zNioXR%d)&7mREg)GhjzKahC-#3#FbDAM<DMEZLQH%c^!TRF%DbUgayBRwkRPtRa7J
zPJ2y5enK()?1a6}3+V*Ov8{DQ+>n3Rp4pi((9dvnRP-}^53UYaxr}QTUVMM+YvIkH
z>FZiboRIF&=AN~$lY|9Bk%Id>*}+~q9*eNHh^PJhoWYN=4#@8-#+Gc<l0)hgKiI|2
z=I6glTPZZq@*E7uu(`k7A26m_GcccP=&0gZq+WK@1q`4;29aVf599b7&-CsY>wyD4
zo6_wpruBbK!m&Ivw}MHlQV>?j&x={QHH?G)+bNnF)dvtyQ0fNCf*S4sO?^zVTO0ch
zsM?iwN?WPYX1RELv$nERLYms}58hx~`LnWB6S|}V|A&GEQM(18%q~u=9Ghq}!2)gS
zaiA}g3T<}3Bw~m-(j%-K8h_(UopV`?`~ZXz8=%(!o|+$d3kY3z{uhXLz)=X$$AC|+
zn43hPpBr-8+1Bv_qpE#Wd_4Ww^3E`2^()tp0Z>_fL4hi<-4ej>6xgrK4Go1qUaBu(
zggZ)SGd!T@VZYi0GBGCAsH_If6-IS1mc}jihV>@AewX7kCT>8sw)QV@vG7T2ZKcoV
zwZYE|@F$8+NHBYcHdZ8Y(4DEFF}JMU=i8%FeM<|Z(}gqT$d$Ob)U9xde6DR}iHv?I
z|GoG&<9`_qS?=<ZGzlXfVJGDNz1)bNw3H#5VX~4T;BGgPd@jA158=0!<7-iJPSg?2
zqBzrj50?eR-7~70ILEk3>mMFy9`;ivUb)t)N3=O-Ge=FzTc5+dwI>YU8;kuaw?*pj
zug1*anO!e<Q8G(Xr@oDnWa7Pl0jJZgU%Yt07n`Vyi#%Hoh_&%Pk8H@?Nip#5SX+Sz
zhzK-3J>VE{U)vkJUvg9GeN2(oDmUpeB*}+WDWfRGI)^N1;@0of`CQ=HCa;xzZ$|L?
z@OK5$<8b7A#K0}eZ$TFpDhouo*Z<B6mz}q#Y6u#8elWh-x}vt6eKje5_f51UIyYtO
z2PgRTN}khpeCm54UWDfFvGdwy@HVT$s=i<T+qnDZk4C*J#kG~?+{TeHOIWA2T^?Cc
zF=MxD?}%c2U4Gh^IO;fZJ+OGxQ7y-XyV<Z|Qa%0k5lG8pDVgZ5)n&+?hAvC&iT2Ha
zl#N*5r&<eJu%>+4Z(noT8v7t^G~@?1nH)*gRnt2flExk}zsqCGI1%s`m^{3qBq5c^
zxOIKH%gN8u{t_9}ZAhnnOBm(g$-3#)XT7t-Pwyog-Z&v8!K#f2Zq!Uc9O=F!z%#Dq
z0fRq29=Ps%QNY*D;uMV#ub288@9Mi`60uj(dbOoE#UmPd?WgVB;vG5H`sY1#wYG%H
zxb>zU)D_59XViTC5r{3&^ol$zGeRnA*XFno-*n|t;TDpPPemYWTARg$9l9dr>nqe>
zhC^?^<&26KrH0a1<$r2%!Q|iB@5mp5h=F?~6GuwdddEe1-d32)?R)3+0905@3p_#M
zFU5+bNE#a(%`d80WjnS`W=kR}c<AVc_hZACREu{c5*-z#Ja=C#j{Zc~%Q;-B3PujT
z-|#GPf-ZLZcr=E^&}Fi=ZF@;FxsA#Qxa<%U?CnSUZ~Ku#6N38RYK@uE)!Zce_FGXK
zLucP>9#1PbM{N#9qoUoda|U}GIb+o3@o1Nly&N(~J+;z_MqVB-#FRXpvNC_4!Mn&B
zO^AHxbhVM!*KapBqiN_mYgHsp7+f1MPR%>(doS7>h=_GQP{oUMG?wHNk;?IAF2I%*
zmQMO!t6`s|hX=0W&z}y`Rjhha6AdZ-tMl?7dyOV^w~Ey6XL-H*Ux2|TfoSeynVfOt
zKR4jV0bhWvQ#?i^OFknMkX}DIhn$K8^PTNyy=egu8#c*5HQAR}R;K&z65J5!u?9R;
zfa|4C+C8}<eC)sC)_fkp0z^!5MnWxd49ZQo8|WrSPr>&B(Spqso*6DnSC48mSZwWq
zot_CNZ4={%iq&ng!m15JG49ZhME<J!?ap+507FEiAh=SqTmt|ER{*S0iEi*>mG%Mz
zY|$Um@5p6fKWi=Lh6o4`g{aub=*Z^riWnM3@Y~q9?Vkn{+RV(%YQDNt(lId11ADT=
zeN#bdsuTc=#x@1+q@13HBoheYbA}-&wDv0S1A~&wwOXM(eS;<`^eB|(Up(-~JRN(y
zu<FTO3dYcP$eP_wMgSj;uCC9Hxm7_KmWXHK`WyI|@l5#?Tco!$nBN!}KG5f6TF5*4
zItYtoUAdF+Wm8)mll2R;lb8Za1FUSI;hE~eA1bpjJ0!i!+^|_$u#n4ONU`@?@$h7K
z=JWQ<==z&s_}zg$aw$Ix8TdA3;r3XxT`Gv5Y@RcUJ>a)j^rwLmg?wp<u|9hkBhoe5
zd(HTX-k29}7mTn)aN>u>Y~M46%ivQKU-kO5MP)hO6*!}h1Rog0h4d*YDRwmo9>{W*
zQw{RoXFeqKhVVV{r+j)oG0R6j3@QsJO~n$Y4h<UmY^AK%sP`3R*E$@?637%D<J?VJ
z!Bu|w7M?mNm5t&EuqF%_+aR{Kx!n$(;#DygEkj9V(c#*fopsVQTk(AWov9KyEss!7
z8zQcch3*=y_>MJle*EsG`{Qd!j?Kqa80x1yX=seZ@nWT{+1ny~99;3o1S(F{a9mWv
zl%4lviC92qJbh#=h|rw692j2(Lx}P4BmtP}z!cfswg=IZ4qS#DfWTxm?orO>l`l=X
zXzGGM_~{QRa6|`6asfD-bTdq;>=Uvmct?u<!D_bIW?stEyq8NWGlgj*=nrLTTB~8`
zWbLV#xj8k3uy^X74la>Zdl61jsA?OI1q#$T>&T`#VAs(+NE`c=5T9gnXfT&m!2e@{
z+~_*BZvu(a6orxz>mKK*qaqE|PvO5_!0$W6P-($Cl?dk^zwNiPyq*@w7R8rox|kn}
zk5n2VT*AU30MCm%pH`6RAvZ%;jD$qryl8Vj;}-AU|IRGrG<(AqzKQ{MI4rgMchvE(
zR)x>n>MPz8+p607)3~D&?NwE(OC>me2w)&1!?HOtg#vH?07wE|Z=gBqyj`Kbq*eP5
zK+C`t0XFkRj3870`>;Q=I*&LNRkwssm^)ZLz)Zy``h({m&@(U!@IaYI`me((@N3kD
zdVdjS;4iW2&fdKxjdiK1_yEjK?~({b6M^0ottVtk92{|AO3yWw^L_^5B#A~A7ypef
z*8&2eus>rP4-<m%cb1bfjUeL{mk;C$Z^-yg8^b=Htx&XrTZCb&Qq}ZB_nXLC!_WfC
zH~m-H*Vu25=7S1V^j7Vz4)7m#u|`8@qwuu9Q9B&X#dVR^2ad+^ERs&2pIudo`yn-c
z?!T0q;Ao%<Scn(vmTc+3Al1~%`#dpOMe4iQ!Qvun^{l`=Hq}~7%^=AVyBxgx)_h3#
zwSks>#p;OjGeq2A=$rHN?Ys>XI$7xky{bI<Q$6hBGB$;!Ht|5v3{B83&Wuyag)35R
zL1bG+E2bGxDWfd3cqFerv&v4XeB7_wY!%dHZ(>7ZeqWVVUSRtYefsFFVriWDd*hos
z(=eayM9Og-x`fM8%&1y*KHSkF*w0b}@Ns^IpMDFk(@<q9QXk0=rY~Q)6^KY9oi$l*
z9mJ$-w%z>9K?)I}OZyWP<ZFzxvy+hHt{Kwd_B+AP#$=%;<uiN@P9OCY5Q`#B%4*LN
zlF2RP@zP(Ywo+Zm=qWIuZ>A+-$D@}T)s*_IsUW{8TS+qg1=~_QHEPqAl=m}81Vp_9
zJS$1Jh2bV()Kq|OxA$}X*XjV73tk?FR$Na`E;0#opPJIjX{#CGe^>y;HK(U`MO^@~
z|4c#vn?zkSm86Wo(pn7#AM0dD;|)jCxJXCFaSK%SzC0o7ENSx~vh+?FsV+61LXf^y
z%`s@)Iic*dv;!mgZoP#ot-%_eF%D|bof#EF6g~Xm7YW1fzm2@fN0@ddvdRKC*tAkW
zMk5$v%1zNz{?;TtBf~Ac_i#^*@598=T02kP2bXZ+_yz0X3C^OX<vL@$i~Kl?3eKI|
zkl(+N&mCd<H6=q38zsP845PmS)Ei$){)46cf6TL0Z($2}5iWa4X=FpF7Db=_NM2a9
zL^G_RZXx~2ap;gwB-+j%v(sC|g6lWGJzo!giX?co$|_&P)jQ&diup|D|NG~sxHtY%
z0jG^vwKOx^KVsOA%@PTDc)lH_8=8DV`OGkTdQzX!@E|4BIU!K5Q`GE!redOfqM%lF
zim8%w!&B`5VVTf&@9s%|{av6!qMz?opWkTuQ$=I+oEl|qP+`BtMAt}l@@u!Q&QDST
z(W`r;&<^=HTUU(FcF(1R3(YPZ0u45Cy0sL(gWWP6Uawvf5CNIKuhQR+?)tlV|F-r<
zdnOWz`h5;wF1UjBM%6wX4u}dXg*ZZF;h#ku1=#LS+1_<%+>{F+RN)>~CIjsNnqECa
z_rRz57l|y^d@KVrH6mC^;QZ*8G1XW%gkNAQThQkI?`@oC_rLcymkjx-8T@`*6A%5o
z=JlPAyz=K`{V%(tF<;shr@n>T-7|;ZMgX^6lqPaQ{h#<>mK%zkdRbQ=drd{Zg4`$7
z$Cy7iZ1sI?oFh0d!C|+bet_=PO}Yau00R^_MgoI`ta@9Qs~ASx;>utEO1|SkCa)p2
z0#L@)KYlE{>qa!h#%~P7uPaN!yjYfn@RD#O+@6A2Q>D7AD2#-p$r0fZy|nWEfeW#;
z@t@M7R^@b`y~vO;i2nw<xIwC0>G|@ILm`dLR1MSVT<EHvf`*h(IyBPTYuE|2gw;f&
z)ovv)B-u#5J-6T)T2@*bS+VtT+SJJW>HP1yNBpojK&>zR;G)CH7r$BJ&~;&+{lSHa
zMZ^2mSVODu^?xHM{J%BTAZD32b;XLAUvw=1EFDFas8+S-{^8-boLt^*b7WChi!xE2
z5ye4;Yhb)+&|;gGsg@WjNn)CBpFk-bYj>AqlJklKdA^wp4eo>XLW>ImOjIcZ`Dh>_
z#~a-k1b<2oZqAT?=XrcWYm>7*Gwx`%+@HD{8XC=U^q(C1iB0;UiOAT~%tMDe)+#Il
z9hM2(DjV<t{&YPm^9zkRh>TPdaQzKYLjr7P(#1k9-d;xe0u0Kebl>JvRQ-1(3{r6-
zFw5pgsRZfeEi>07)VEi@a9G0HYq|$fvOToeufn)z^o%vtjEy;E^By@T`JJz&rDkOf
zvX?)6tFrKMXCYAVxhX{v(ge7z%xkUB4{nye4;ndqary`}IXd+lGMeS=u8P)}#9YNh
zEuUw{$dv%ugGQf8V#~<XIV!~{Hi}fw+?-ta?+?8U=X8!uB^F%=H<ZEtsrOii<Be(=
zPK@j-1wG4j-;ev2PQ+S?cJb@vE6fU?A?%k|Xf~7Set$>Ec!u4+XcwTLY`j%H%@?AO
zt2~-Uk@y!?nC%wr*Jia_d{2c&O-$b>VCq^%2G}uUi8k*&lH4abHs|l(ugkja;)NM(
ztm#sf?7huU>jmRgswk14nOw2>-LAYwH6MtgOs#4FM|qScLo@$;wG%^O7w#4+&RAT7
z=8}|%+xe9bnsIh+$HVhsZ31g~wGR&#MXYmImnV#k_SO?Z{#uMz{k2Z&;yp>Drh-mw
ze1BUbq`|#@k4zL+E%=N_Ze-wh?`-pwewC~KbNl~ZVsh+I{$%3%Sc2cr?pZ_+xj$@&
z5B}}7=J3&E%wD+b8Oz|$v}l-f^vZ@<{vUGRXW@k!MaQa)<=D%ndy;0Cl)k+mI=5ii
zDZ>qcMeeTk(QDMfA!r$vkRnvItMq#faPwV=oFPN6;{5U{;2_!hXrb*0mYx;y^4+g4
zL(`2*OS?+%c*Ox*f2Y<5{d|`ll!^7;XN43fm8?e>6hx96aP{15J`!;6<?g`N8o2tq
z`jHl`!hbz`fZY!5=qY~cs4G2=DcM*JsvxK`uWMJlYuzN=Z$q-g#T4Y-EQb&7oKyL6
zypA;7BYJGN*dT&&^donLH`>Cj8hd31%3+8}QAYLt)SNVG-n&huxHb0xzna6Zx5tj)
zBpu^e{k2v3UI3Kc=!{2jK@>dc-CRQKuNpY8{uNI4Gw0H3r#3F#V*O;5VfpXQO%GxR
zhrD->*7Yb$TphZyMG_Hwxn>BJ7Fqhu=A$qM!=8lc$y}E9!X(h2u~XxxMvB~&D;tdT
z(U@1}iB^KAX@;v8g2M>oY?Z*J)-{(X(QePbq(F_nnFqo;+7jx5H*@YU-V_qOP4zhc
z`69i$_{`l4XCt~1I=Wo)jL{xf-sJpwW;TWQ%M{=03DzO%A#2_$Byh&BTL6c*!q0{D
zM;%kxRZHAe$W`P^mAm|HEB=T@gKbv3SF=+}$XZGGq+f1?oV$GV7f{@07W?^JxOcOX
zCBknBcM_k}gV)B%+PveIc<1bq4}`H{&g)AUr_3>ghRrzqSs2eJKfgZ<<J_jSn;vwD
z2f^?be=!{Bj{I_@WFm65<?+iDlK(u)^L_l+u>F1<l0(`(6DWGqI>OE2OlM`og27&!
zh~-;>q(CdS1srK}F0?V#qI_*7{DNRNx!JU>EY*wMY9+h%85kt9c8OSi`ZNbfTVIr}
z0`9hvGFo>iN*jjc3u7Du5nKn40BA7LX2?ZP<P2b0(|dNz7>n67`eUdh4#Ps)l)W{c
z!f^k%pT>T1$A%~+28odoP)``{e47dfP!U2EM0(mjT@hmyQ})b=t2>P))-_v<iodKM
zh9dW#)Ty6d?+~{+rtxF$HNH6`6N1FZMIcI~VOKrgi4YFl_87#+j=~NM44A)QFe#PB
zL`LGU*8#zcQH6*kiESMF__(-zXzhnwdegtw0LHbr0BPxo_2Dnz2Z?-<ti*{<_>6XG
zK~<`_C;8!@l5oGXyNf`t7SD=;j<Z~->?zB#bCX&7<KWj{z|?7!tdezE!vAwfnn>^O
z|0sU{=WRm`1LqA=Lue&?-8cQkhN2BVl<M2EZCSI$p2uke0x{*?Ns+N6pbG_Gf2#_)
zF24DmDhQz0|4DcXIz8xodkrm60_qoBD@%cR!9u$WTF1)+k<kE0M@2b^pBfv!yKS>4
zf%XE!4D>|D@ZNgII6dZa6AsHrS=VTmN**0f9rHXJ$b3oNZafm=eXN!D>-m|LsaLSG
z10-X`K&f>panX~@Bz&iUm3#IJya=}q@W(1N%L#?_c?0wPA2fj}-?v!YRX|OK%izpU
zMNHBhM({)6y68vREK<(VFuL5?>UkW&#-}Llw<kdM9*np(M?jfjk8|vHgWo-`d-$`P
z@Fk1$$SH?ma@hSxA-jy>qLb3+psp%Xxg4FLVc@K$r$k(7!?mqR2yPTw3R*Eqq$zSO
zGMG${^Te&?F?N{}9S+SRWw^!LjbY?o6PK13Jg2b1@e&86wz{7mE|~p6wq35G>Br!}
z7t{*Yup6X>HN&QFTZSfiV!VT{L>$w#aB>PdE?nbNYG?HL-<Z&H)l72sV7|OKs<)!U
z7u7?x+mI0w1scJrE)S(>;6|7f5-UFp1NTDuyxd!7^tMWQXRKrJ(YwDdXBj_8=(!)}
zcXC?zj>Av3zZASinlGod@<J9J7U;9qkLl-fbt%*O%~u1S&Lj}%@}siP9<WN-2W2{e
zdN)Rb9<S$n8GgCEwyq00JW7i=&Qo5y^`!A+3!8f)=<LAj%OstOFr#Xot-tAwqTV{)
zenQ&9aaaGyI~P}|dxCVcfMX&!uJmlfJnLrp#kg3=C;&Knmp+r}8h)*w4zjK;*#E#_
zwVm1O!ed4Lfp*PV(yLLsUL0Oxx81T)DUf(`MjV1+LH$IxzN-G2=`AIHpb}rRCX2V{
zF;+S}xnPZVi>=b@d+$gHgP8l{$-=$NT=Y+`vp{xN`&V`uuVryT4mk&L3vZ9o(Q*!6
zWJ^$M(R0H+nL9Vm>;)?h3}HasaUN@A6iCgt(Kkd6Jim1w{G-L}6{q7YI3JM-B?(j<
z#CSWMP>ledE*^76S{EoqG9I`5@U5lXQ~j{%?D1&7UD3FBloQ;bI3KPg#s=K_iaAhD
zWo~~&&9@Foe{`Su(<9S9wQEtyfLAMXeF~Z`A&4UIq9oZThqF5PiE*$0eQy@*CpbF=
z^`{9jZWVu8->x(3w$UTfy(Ecr&uiz<&0P|&Kvy6dw>_wa^nwDdnoed)p3WZ@7Ky56
zgBSQAl4u<dEjH}i9_VLQu}j>rQi`fW!(=3a*f8P(gI>DO6ia%~;N`o!*aCPiwe(7p
z6K-_FR2rxtN&Jl=4v{#hJDH1<?8^W1f#Z3MrlmllXhE+#@vyY?1i*T@1`}*Dqy*gO
zeX3nQz%6fGD%cHDr1KZ)YlnnE3BK8X;;zi={5^48?mhF>D!0f{$FLV|s{?^aZ-t4z
zC{0=-&E~q*8^q~eW6`)=DxVUH_6cG(5<C?diCmP6tU<Xz|9E}EU_@H72->9(@m;3#
z2k`XfFw9++fkSsk<pt50D!KgXtbBQVQ(W$VXEU|8*P&R%PvFN$oX@a_2&<Ez^IoZ*
zZzO^r4vyJVo^Pz)U3#)}C=nwf*{D-am&3YB65`R83dyDy66Ri*hLTFC8BPhS?1+Ur
zWe*MYe<cA&H^bh~T4fm1M~2bJ#^XOnR2=}~0z3|m=+`2SI}C*#I7bSQ111@t(w5WH
z9XN?9Uqs9(lnDEy=btU{BrJt!`<3Qx=}Zz>Bnaf^e~LB#&mC}@4t^;3Z}J;=LgPUU
zmd7H0<fSRjr@+{>r!*TiJ9sagR;!q6OJ%E{rt=dcv~R|O-KnC=jC&1Q6nN!gK=)^>
z9--@gf?8IEmRsW{Ui&KI(}R}q^uj;{VPq*nQeL9=Hk>S+q*PjI&vA7m8vMlrSz96%
z%X!TQx(=;mrkTzW00wyGrJEgY1&z=t%*fmXVZMG48!%!ONi9`K#3}GPAk5DMGj8am
zp-3x~uJ*oG{I+&?&zD0i{vCqV!AwfM6U~B1Tq?Z<hae8|3HL^ru2u+au5w(gvTt@d
ze0u@YSkJl&0ViZO43rXxRN#f9Fp<!=>6A*BBHU~IjB@w3c!6Mw8MqorBEi4a?l`NO
zq>Wy6_@>+3Y1v>QfpMnvVW`=eqt;3lDGT4BSo~qNbx1rH#-?UI3^Po*y7<RPv#}w%
zxy3U*8$$o~SbnXH-s%fcyCnjX<9CaCu)ye@NANl<^wEM~|L~J0d?yW@O(Sbc>2Qfp
z>ufv$8WY2O(OgIu-sa0si<=IVIQS#%A;~MG>kKQn`fgw&-JHqgml?e|D_!F$m*#^w
ze&fLwr?bJ~r=hwWq$PBIZS}AwDIGqI#R~=@wn#5TUD$4gb|RPlX!^b?Fv(nA<H=~R
z(D_tEv{!e=mrg)iwoPuJ{~!{9inVi0_hH_!toE2QQTa^7X`kWD?q+_;g?jbWCg<`I
zm4<Xl$E|U$s9PZiE}48xZ&hC(`#6TAY^L|4|4Y#C{aOsWrC3TTmmo;JIHJ$iJT&Yw
zPut)0gnYIo4p5ku8y%o#vpS5A{kRq-M`b4wWZJdsF3Zb~8N`mKt7pxQr*bJ1GZs9<
zjevq0+>9)N`$s)(LF_X+>u&dCol3P6_6@BKj-_J7-jsfuG4?7Z_Yt<v&jI9W=WY}@
zF09t;A6(-8LL;F9dVV^O-r(Sq9k|flY_B_K2AhjFEcef2bs2}>V5zm3!TEPlfu-p;
z-yubaHaLC=;`qn$Cz={eZGXG*ZBz2mQN0s*)Ctq4jsX~(Z4Bd#?ekcbF%m*0#t>hk
zkRKPLMDYwLyQn}=KMg;;fvApxU9PT4sDi(4&8zQjtRparH2ztd&o*K8PN*>NZfoQ3
zNZ?JcBe6{)AsACU+GxgV%=*06cWTF^g~t@C-093LXjI{yz5^FazLay@@=#rnlIhC=
z)n9|VReqU<_;)+T6=*VJC7b8?i7t7n5JYSm6e1&YQybBTd`1d31`buobzgygH`bjZ
z=15MXoCD7{h{MvUA+B?YnEMJL+|-d_cjuwdRzOD$wu~J1Vth|Wr|b(&-B!*Xih&ki
zdM?!snycq2MM%3Fcedj0ivjVi_*mIrceQW!K@?iF+x>8RLqJ6U@$+b~_AmdxvNxJL
zG>>n=iTCOvayi_2--!qahI`*xUf%xxc)|Ym>ZJC+N45XwgIggEzX$f#ul&H|>`Dmo
ztrUnE2#Cfc2-$$xrgPq_QtGU<0xh93zsTM@@ZMa<zk{tceE*fB$8${}S+XF&pY-|f
zyus?7fZM>Z<p9r&Qc;=Wdy=EAI$~7ReAevsyCC@6rCxs!JzpZ>UQrYthZSy#g*pD{
zlJR>j{E(=y2rB=At$b2M=iLaZ7wHO-Vpi<CPctU$JEt$6nhf}Nr4+))AcyhYrq%=@
z=eVRjV4hkGIA#0!{kMXurO0L(N+o;GP5}gEGEldX78!n01N4zZIL(B$z7=gqL>!hP
z9sou<aFUfxCf%POPQUe{SfOS8v;|<xreytU5?%X*vR*QUHb|CIX^H#+FEIn%M3L#Y
zo3E`*E!Rcam{mDWho|FDZWJGz&f*14tXkrE)r~bYgjiyPm^r(D7gG+THERoI^SLIo
zw4GnXL-a%|!_=guydK}z;tapMJiC$()Oni;vv;QRv1PN}Oa=Joe8}?mJh4gA`6_Et
zfqB#YphF726-7R_bK=O$NMmX;z4_rH!zCK<7xka`1t!NO6u(t@PAfiUAil_VFXV^V
zt#neOjG21`G$sBZs-S8;<r0H@YMltkK{B`aIqv#!yVzaRL}IpmdP8y~(&NaQ$De8*
zI#|nRx;E12#ZaSy-zmsmSfAgX)5>Q2QA)D1@mY+)>+_Fm547)zZ!Cvjl{<oC*a(kS
zvAQxxM6ZH&1v2j<W2np23!8TB^AysZ&+-+7#gN|D<1uG~(njd{=t6(#+m+DLpbjaq
zOq$)U&TTPw3j8WySnX^rxVbe9TXku^{jVq24n_~jXzoxTFemC7*RZh>!|yzw;*h=%
zJ1y30K_SO9&s7jn-+gX*t^cJc$Gj?z0x15mpKd$1;iW$$7M;q%$)Xiv-uBTw55veA
z-1=P#%kShElXchPT}xhLhFi01k$X^p*S_=}+<)Qtim4<NIzW!B?-ceVn6g>w_GM$N
zMA14msSnD-34v>ElFqsPK_*(mTTIz)-r&TBv18=nK95daCW?+4K4)U4E$yXZNxXn8
zPFut36R_>b>-emqF60zoHsBP*wm>?onuuD~Z_kGhZzjs~;av1e2XMrPv6voluh9i#
zsikY>ha~UPXc7_IX34S0e`EM%-^>7KgMD+c<HpV$oOCK<lsvxh#Bu4yeil{Dj?El>
zxtzlmnZWV=VNuR|u+V`wU7Idwa9Jep^Kp}?6uDfgt?^83XQWsl!dp#@_oz+F{p}ft
zR0=^U(2fb}v@buL=<i@Xh{vK;16sx)9znOFqo%a^?QO=M`L&nym)<^()Mvk%Xq0GQ
zkZx614sT=e*t_=|->*jBT=`R8vF|lvwdRbL%8HnR*1r2_dRTqEcOCc6?isjv=2QiX
zo*wCIW}Q_kTlE6K;NY$ZsGJ&lD8ZEr85N5pY2x+waOk{ee&r@x(x-mdL&10P7kPv+
z+hWwA-4DmQ=0%j3<6$3>M{jjmTT_n6&s<omg1^{2-XL_OhBSRVxCydcuF>atiGR$B
z{71`{eihegR=~<w{oNV+FRgFn6liGA$TOWMxI||Ra5KCb_xJ{imz#M<Z)Mbj{(ouc
z(>U;)SK*tUUrMWg>(m-VY5zHHADFlU9uo$TP4&U&ZY(0vyS^>vvD5UG&FiB}a^$Y-
zpR7c4)DlHife8#D61zYj>25N73KbAX@sL?A6wmYG?&rE_Hyfl3X^w=?ynADIIfz9?
zcm%vYBYN;`j==VT0ck48uMv}i9Pe38UQ0fParb(uw<w9`5xGr&y>m51GoDfy*n^U=
zm{Wne%lBFg;;kXcG&T0Cv^@tWk$#NC5;p29@;W<NT)RXa_XpeD6(bJMZWOEre>=qu
z;EA1N!&QM{Z!obfl3ED=q0}bT>fmW|duYf<M*Bh72p<4@rPm#$4ZnTRZc~0`*}Uq$
zi5T&?5n}k01Uy&95otG9yh}<vH2gKsC+1@+hkOh&<Je>oAkPPn2tVh4|I{gMB5xp7
zoV-Jw{XA!Sl>W*esdTvM+RFx>ZB^r-ae}@=>sT0fD^4JdHrqAaif_g>>DZ{@@L4XB
zex5|1?6XgK?qC9MPT$$2e<@9FtNN-6Jgn6>_U>O{myR;t)fA4$%@c=Tme+J&RZ>J;
z8Qn}?eq8<iW$M_>M*V*g_Lf0)MbVaSLI_T9cXto&uECuH1P|_R0fOaV!QBb&?(P=c
z-Ga-(wRi6A?$_^Czk7f2gDUD2XYIY_9COTX@Ci+Y)lx8<XE@P1lNl+9nNawCS>|1N
zx!z0n2s$pV3zDii5}_V%Q1Oo&ah5V+FtQLX{UIBO`IBY)Kwy<YzH#hQK^Gz+_5*)g
zALkB@Dd^ZB278n|{Xx|NhuTM$eO`__N_Lu@9y$kd<2icRzEXjD6K$^5M9K`ML@PZ|
zrKiv|^b$x2wt8%^6eD%dFfABp#OA@K7m-CVeD~EFvp@>1%RhVlZe6LuWF{gZ4cZaS
zGS;KJr=^|UwZ9?KI4=UqEuQ`n?|s{cImzO-qL3#Ok^{w9Y!%|668q<>!1ae2T9s#9
z&3*N7uq&RPWh>*dR|r;4lFbTDT$4?XI^F4#J$7phHk!c@BJpO(3PBLU@1+~IiMKk{
zq>c6XEn9rg@uBN1mK9QvWYD+pV>w_7?4w~XO;=H1_~zFvsw=_2DTY^)NO~3cyd1k$
zcE0CsSo`2)p9-1J-}!l~7MnD6z!Y)1!-1{I*S)Ie!)CrDsCLrR&h!LQTA<G1G)WUL
zC#cK6FXDN$8drEP3)vqJX4qW|jaH48uRsGk%H8YWcR@=E81f+z%NFw!PUe6Np4F4H
z2D3m2pWt`Sk(%QLc2$!+ic)Ycp~x5$#ad>hiSjQeGW4n*jVc^ABAfuxB>$r2;<Qoz
zf!{0qBJBHlZ&;8n#X1BL5uEajJ7kwjgh-N;9VSg21z3Qw(a<QCQTls<K`wwk%;@71
zT&pgs2Dl^S#6QH7^FRks92{)Zg!a_-0EIX@m+<-5uGESBS_>9|r~xMbqf!C+yMBfL
z#xVZRNX9Ato#ros4qS;8I*yvE>V4?ZqwyY}pF;>DMH8g?a)7{cBAqv(#hA#hxZve7
zRNPX6__&-C%E9RQtkt=Uf>*tSV43Q>_hyayr_(DxNTizW05dX3MLvyxp_rAjH#^-u
zgytpBV;ch@$Sj51HKc|w>hocXF0uDAH8meR?D0G={12<l@ietXUoV0ji2&KulM@i9
z?uq?U%?8s+S3sVW_RfGKU`En!r3UmBPxDfyK1qLl*wI8=E^&#&L%hJIzrzJ?-@?>(
zjuoPU)VDQb=(1nlh4RZQB-`q5tFH@m9f571kP84y7GUU#Q+LW`go^vY+T8CqaX8IN
zjU!j8#*#UGcW(Z%g&Jmw%IpOJ&(=o8-%*9^BaEkCS$>&&=b*?Y1LM#E{J8Q@%Vg7d
z%k_t|`ZtsQK9l{gj_Jd8HKR4XD{l@IOo<7wmmiyX>&$O0%%~I2N^*|AQA?9U9v=*+
zWT=^Y&{te<WkA;riYnS4-w4-QGd9TynSbcr5=#84zM*@Xg&$Q7TFl6(Ge*=P>id{j
zay8^KXUTsvm1dLnq48jP!cEwhm!@Vsvw;*@rnkv~c}0qvBZVnJ_I`T%UdLV<)K(;K
zZH2i*y3#Fpoh6(pPui7W)-k)3?-!v$2)a&Xid^H*G9`z_Bqv}UR$acGHJL4R#jxs!
zX0lWsv|gcABvdq;#)C^-OBtd%jea>pP_is!r|VQdmHW-Fe$;?Bc%ySTW!R9F6*+AN
z;V=oEmM)`&+Y^Y9WmxfBaULp1Xp#)^`f92T$EhxpAX5~(o*kysW!hV?au<GW_b~-(
z*Hi4F<k(h?z4DXrYyXSjSZRb1bzrFjq#k+u1Y1)fIMsL!ZZMF91bk!dv|7qqcN5>=
zdM2j%>7ygsJR|eK9^p@s*PYRJI>>CFt>h#8v@v>VR*%EW>&A5!NG8|KL&TP&#l;AB
zI^Sac)AS!8YNU_;j7Yx)xnD?ITN~FGFy)HbR%T~^#|goLTj&93VJQA2rJgU9T7|@|
z!6*e`F>uTN&)=sk7|GY_EHRMVwnWjmuGR}_g=ys5SkCnuBLFxPQP$8m1b9T8qg~#D
z4gMo)%9^7GgQR<a*3{eAFZK)jF#G5e7+gA<T$6i}@Bwba8;9jJC>&gPxb8g&hi?4x
zIQ85*DJ#n8f{OX!2LeTh9uSb1w5HvNT2Xi@s6d>z+U^aJc%q=72tKxcZh*#FjBQ%1
zx7K<DwsT|D|I;h{UxPpXz^Ri%Q8{1`p=xu4g8^%gYXCJbZwd?wG2`kp$nRmVOziGg
zIhZslLWuY)r?B5_h*ACXdb?k2`eii{C)2}loW<%ay6<5xU1mN@rR|b&xnEvlVF^hO
zR&|2xwsC%LlS#rSqxD(OFdDxCPMg1!ctfnMwrO07s#?0KoYgWK4mN9iDhjj7qaRWL
z?qFREH5RSoYHo1cuEXZ{+BJ5jSq72x-WQd)al?h~4&Sr<<n(l(_mMOaQ5g<RU&VVW
zPOmJ-%_n!si(<R#*-v)2e8rlT2`{pch5abPz&vLh`{wf7#s&>L9V3&DiuwCy{6qYn
z0uQuI5i~?b$a?%VmKrx)DW6uvG*#duUFg3RJ376or#f$|g&65|xdQGa9d1ozx2270
zV=}Yftr)f-bWa``B}dvq4;f>;0(v-IYFcEZ?c3gyX%gX0O0s@#X90P++7{cB5eNCd
zh2PH&{R8cMcNiQ=3~#%fulLm4brOA~$in1ufAboB`w^#*kgz2*pFE?rcX_svZl@$T
zr$_X7c*=V@i-HHcUH!S$TX|sNmI+jm%0#nKoKLxSnL4wn9gAI!(m1TlqOS3PYWMG%
z)z%?>kDilY#wv^0*I(pt;B36Mt}Y6S*bGK<?GZ~+PMV|~c$B(@@PEdU^Ucutg$8p)
zF_dJ^KY_?O_8T2faLZ&uYyOhE(>6y%a0O9om{h7egAM5{UUd1{YR)`IiWchS`QTd!
zgtrho<5wI*7}!CpY`LNL(B=CaUmE*+=Jd&zEFD)25?ZDn4Q`nv&5<-^n!b7{`Fh?g
zE5Xd$%L+4%&_aQ|NPZ)6_TJ`zEnk=gd{99aQ?KXurTUw&tCt){LD<WQRZYXQFV5?!
zE}&n2a?|9G;LBp>4FcSt5q4C=@!f@*tJxp-Ew0B1?wxM7!J}VSOQ&tw8)6r~B^9=W
z&`1nIeAnYur|(p(LLe^$naow+FtPg(WpcWFAGPsWnB@+FdG-JPnZJ1kV6#P?fOdd-
zshy3vQO23TdibP0qL}2d`4K=!t=d$_6az`9ZQm}CIIYyP63}~pgnneqU#aT8T#<)~
z-WW`lKvbo`<^co%R#A0&W^8!(Kc!msd4Ow#>~_l>e-Iv?E$|{a0gHY)`rnA`YP*lN
zI^p2Ggj9@j{eQKL^1q){kvY=M<jdmJ7W#6)g56MsZXjr&v7w`Y?(+9fz_5wlvjK?=
zIN9g>>G~-p;GiJa&qjozQPfsiZKbT?{jO`QquE%YCJ2W?rWrDfnoP5uGIsDKgN{zo
zNlz?LP(?nGuCZjBVklnoH#+LhPR7U=t7V_y{G1TIQ*ldGeCp6LBn+|4S?KaB^+s0U
z>U7Z1B$of;4#c4A>FksxmbOsA&>gY>|F_&Z`04rfN$#FGA_epwIc+a3UHDf0pzgJ_
zrR*4TWDKyTW><-w85#~`(JVbd_NF6SPCba<k*B}ph`o0r-GSyLl_Q{zb`Z9RN>|5i
zK$c=L>Y4__L#<HZIGRbFPl?c&b0;7BWZND(cnMWmiO8`ee$L2Dib3tkjeah*$SR?d
zFIXc#t4E(aE}@OhlSH@R<~Ch>k2AENUhcQDa(TGsH#TO^BiPxkG9)`s24iU@3l%Y!
z{H6_()+?Wu(;)j%%7c4Vi#0eJ9jGIJP3mD|(SV7MAFS_)xnjjM*n(um!(b0lO?zKY
zQ{lJChZ3vGL(6ci?tj**Sn|4wShYZUmt5Y4UT2GCKTH{5Vhol<Ijs3=oSS+%zsl+1
zjO`Uo4;debX=aw9BJM3dEiv7j2`<mLerSc8CPoO-JMUINAe!yK8-MYI^}Vl!=tSIq
z3kK<`plc<L-+cFawso^xLB!-#Y@$wD$n894DQ(MEO{$YgG7;^P^uUgDFOXcJl^B6A
z&CJc)N<P7B%_x`mX<q>X;ScXEP`%~MZ!{2m>3pNTp`4r?`j39VZxjA8-T@~9MIFc4
zscZvrj=f~(HT`BohszqU>dXTDW$N8PoS3cPcdcHzdfO%yW;*7YF<1?^qS`bjQdCnV
zKd!XQ6;jlm3nGk)oC5H^mf_1!|2TNeqn}|Uf?lNFYuaQrJMD5EdhOTKE}|d_d~ILq
zp~>{-_%%74@Y}pLpcqB-<L}YL2TAn$)*0l}qx~mi`~Qa1{y&5`Wly-xgDqWA5VQm-
zdSDYAI64|f&;RXkzC2BZ(ywYklN0Vcrj`L@0NL59M6J2XamRzt>pEV~HMUKwNMW&s
ziXQpm_XJQrK?iZ!;;&%sVONwqETIttC%=RpaIdr^Y*}~Zh#yK}H|^Hcq$=u4WIg*5
zX>aY)*({xJU0;lU(i*o-ZBaS`Jii@(<tX4V0$h!EB1~LiDQj>w&Fh@>%YHLhzx9cR
zj=)b#&ev0y1^?iet#I3$i*%>=D6!m>`;=%{0$n`tVBHx;6Fq988CSON^ix|FCaxm6
zEwV}_vMgzFYzQVnL23U>#{P5nPXdcRQM^T*w72=0&s)LKk|a{A5R}ofl4bMufpMmp
zJ}x=-9;M%B+_%=#iouUMe3!(^M|{((_H!A0AO<gX`-$+vXZ8w5?}I1ARpkW<HF&jd
zuEi1wA^vR*$;XbTA$YG{$U~sA`%AW6U>^jScugA$J>`)1x9kS5=viJW#MC(j5U7>F
z6wy=nv~xz~oYAc9<fh{>a8LbsuOB@6S4MN_!_=pSC=IC6AR-I1PMS`TOhDP@0yA4w
zNHzai_h}j!;3a=l-MJ!qTJo)n3qybc(;#w225VXtq!~FAszVzot9~XJssc6_FtVr>
zzT@@%=tt9ELAa4eUC1GBHq}EoRaP(0iGf2$-YyvZ=G?qaEYBX*c*qc|XkfC>zIzjN
zVNzI*!<GzDA7EPz-%0HfwAUPrzv;hxq4=U<7;oftOax_Exh|%bSXPKbgH-tGS+LmC
zhf!a+ir|a>ZK(Ul*&1~RG8;DvLLwrjFz~~}!)MPc(;yxiSr-k@bIp&de`$t%W&QEx
zdA)DdP+LJ0`?jyu7?|j2ilPcaEXEoW=zizS`~6PueX?LKJTjAxwBa!E)C`N*u&)AX
zXqm($J6Qh{sEge(R1F91xTWG6{L|+sDl*r)x$PZ&(wZzqg`H)`NgtwR*AL=<n;u7w
z!<-?dmJoY5ASgO$xlsw5Img7<xX5v5pzLTdY`#KY9td!rZFRSwVo`^lHWd>KEK<uH
zY&~lM%SJ!M|N7M}7u|d^!WX5O3FMIu^KPdP4h$f~(hqp&x8BU_9RmA7pZ#Bbc6h%x
zz5f7%dn3}0ZYk=3Y;-fy)+PWrOJn2(W@#=JQ5NQ9VC^Y@)Lt%-ULHzsC`#dZ=i7P#
z@s!7l^ndf9{-ffnn?T>ws2SiIit9`2ZI!e@iX(>KH=*}L&#*RO^0|&=teVd;6KTGn
zDGz_o;BU;nId*U6<f9(g`ZTJz_lHRw?|rKq(SCTSSY|dHwp|rE#&Ij^!AZ^e@}4@s
z_0n|eyZJiH4-~Bl))o}gqeNI)pNLYYdV)J!cWvfIiu(@GRp4Qj7m66wo^&(-`#_Sb
zUhg6mb?vZ@2U~HDMGxMPBeHG-&Jx>Uqis09C3T0Vp4BY1PX3|u9MkoV_hjkZLt9ph
zbL}sh3LOR$!!r>_R?0G)ZDTR88#}lf*)&#G1`v;8Tt{RnxzJ~0GM-OtGJPU*i+BzM
zi?{@fP26`-?XI3JlR+;4&=B<V`Fcj_@E?8x9^z8vJU7{c<^DNNzV#D9q^Aitf0bt>
z+V9&zxZMmXTOu$Vs+&ivNv=+0CHxcCp#_=}Gb~JK6(AfgqbmH7@7-;sf$XPyj70N*
zqLJkXp<=A>%Ji+$_5dbz{vT!7YUH>bCE=Gk+vSod<#5yKn~G*+BLt&z_V`WBGXc^e
zRl^!Y6I$E`D`ll7aK~?di_{L|xMtoxJ|UOwx?h!8r4(nzHTg@Fho4G*mYni>#qv>8
zg+)_tzO;F=+}I^ZoTfOqjDKgAx~lj7MDR3c1e-6?WHNA2{!sdNZAD7O*rv{b0{L!?
z?gU#sm9k(N4O7D@W6Wed(8rAH)y^~q2+kVziJ6?i8Rh<o0+K>GUzWmLsFgIq*(Qf_
zJe8`AHJ9%&P!642q-WR46Gk@4Wz?fsgAwmW*%f7o+vpXMDp%l-OOqzmUar@0P4N4h
z59ufw<MPyVGYC-oRY4c`wY2u7#;o$&dhG_|@8~l^CYk=7N7r0V?@v>=>Id7@&LmQ9
z*2iMGuOaX;{4-H$afdtj5hAZDLRoDwq%rW9qGikk!ak^GwkzTR0_z_`fSL9=vwGj|
zY4#ADC`jO<V<*D}m`8qls`>a&wV@`xx-&9pi|;)bN1HksNofR#yy)0&rWpdv)4^Bn
z(3jy6*p}V~UXk)0?Z=5|@guMX-bsk5K&lxf>W7?Ic<Z?mEMUGZ%jnkM0CZeE*3v-g
zwIx6w!UWv-TU%R!q+uJ0Ku9Lb6&bOFBq|2r6qQ?g?m*E4pzoy2iojY#U+)J15h)Gr
ziE7&S0rpdst|{xVM|?nk<-Qj{T%-Y+<S8(A3Hsbu$@5D^;F8VqU;4qIQ-sxCK*wgD
zHN6c)5rNC>ZcdhJrGFd?|9>5=|Cfx5>=yFxytO^XnR=BK$e$Y#g~`2ZfH-U1DN9Ss
zfsRhM7I$}a#S8JqhUFl@#mXQ4Gs$p$vfLyIG(G4Lbb>-oO5c@#HkL9P(E>zyru`$$
zl_0IP@>BPsed7M3It36V%rUX|m0@B%MXKU|44j+@^cEyWuuQu3h6v`i5AnMcL4;z=
z*1V2on)NJK(p8<LK%l)ZXPJ@5T}av^WP=Y8m0EoZ>4NoS4}tQ*^u$*tHD_rDXYNl5
z{yw=XK7-v!xKDd)!xKDYvtMF5bq)-qUTWI>Ozbg!s$MPHrNysih&ZX2PyS7dyqb2K
zU%k{QK@16zR(%S<Db>e(T9X3V{y5!eT3);xRE!DMQ=2nuYIJ?Re?=rOCS7NHn6Pnp
z@p&u?y1+yuk`F&km!Qr6XFkn&tGf1Wr9HTotu~x_RnO1TDJ1MeYWfmg=TNwon+D-^
zb|_^)TSX|WnF!Y)#tV70_p@zrw6{xsLtbjOmL^un{1@o$v-w!VhZhe^MTRiqWBx%B
zK|&07l|pNlvxIi2H><Eim-0vyoff}=&b9l546LP6qDzALJT~9>1w)ij?4B5-*zu)9
z{THExa1p2Zg?HB_$5NfklMtGpq@^dRYog>B2HwPWR(UAl2<RKsda!y>3nh}3xB2w4
z2z7kPNSc+9Yo~mzlo*>D^6^4LF{vE+7zUaAc#!Yh7xy2B?MRn;a!*j~hXsPmWJBYd
zkJ_<c*2pKt-VJ4)V(jQ!!N@A33#loYwe%IkHtl~U#TDnQt+6p|3A&GL=$UI;Vm@7;
zhg<f|_YwqCN`3p<h^^81Zs=V;A-_ZWOV0_F)I{Ncfy|aq)F~44>=Q(gN_hH9yS^8Z
z!3VUjS56+P6eEJkQe>AmKjgL#HyV|{i4jUtHRkk;G16l*ujsgHHfvV>EwK~J_4qB$
zi?+draODJQp!sxaaw93t$9P-3LK<#Nz?oyN|J1T)y<EUu|96WN52o5Gr|#wH4iP<D
z045v_tg?sQ$r6wa7fXiyj?6a*rfo6LNL<toS`=-!Yo<^M>?C5>cP=ti*x^3vksoTD
z3wj47DNRc?;(-b;%JX?4$YWQ0&0~^nFz=;?FdzK$Cpw~~S!Y$SZeBAnr@^`Pe}k9&
zw{UzE_O7k0dNMP0hu-V?{xa~#$3`CQ_D_uh_eMCS(_411!mPbNA7EYj(#j>l*o<(S
zo0dHpQJ;550ZL3L03@!n&oXh+8W^>Gx{Vq(nQaDQ+wsa84M<T*NW=m2d)*h$E6Vr}
zuT_ziCvZ(_A<G7kePqub(!@-_vEp^~w#1KePhV0O*?9<!?v?Nf>SuPY@q097G)CH6
z1DphXE#c!MZ1*`0cm0K$7G}3<FqXGrbvJzx9PM-(=3z`s=0(OE{K5X}aQkq(CFMoO
zGqdylHDqioWjNg;^X_-yN%QBgU1v^n8fK<>-sipr11*rhdFMm2G(=Xizkq$q*g@h}
z&9hGbSf95SvEea=Br@^GQK}?D3v4xny;(JT`1+@Ly|*|FC4pJyUEzn_8|uk5^BnR)
z+CZ*^P?8S%x~{ir`K*u;b($(qh-R%!?P8JYHERiG3QQU#0%2k1_L2W#myF%x!eFjg
z=y%QWyzMU_-WRt3jMV&m#U>?rhN08i;L^?a8^L&}E^p#Pr!`7vEZtj^Rghx}ozp{#
z-fm`L+QV?ph2LNX7Q*E7#hmgY$|gRazjcGgI~#NCM`IQ7>rrWh$=AQGOBS<qnqSUx
zVGR-nS@?(3VX3Bz&;8h+drB#==x{=HcPmM}4T(Eu(^sUv6o7SX1g>HUY=rg~?%p5^
zPG+D!zrjo+Y|gwml>ILcRm;rP`g$5m9qw<2yMg}grr^xy1K8bR2BkPGXLH=P*u9fZ
zVY;S)Ud`9*_WO!3TT{UY`v%8a_v<}wJokkH=qj1D)Z51yr@sD$m3+iAUzN<aUdfv4
zr^@_;E;6Ub^5~GC3ciQGl$*$4O86%5&f6(_nVUvFJzNzEbKHYyN6o*)Q8Vd|hB^Aj
zD|(+=%qZ)DPU%vldTA3)wnxOM*Y5t#<m*QZMi{HuA2v*i-g;3HId$>BwM?1W#^|jQ
zoNxGYTbivZultN_Ic+?>VStc#0`F2yVD&WkVQ%LFv#fo6^pJ91D;hiFH?ka(ZI2Vx
zqGJ$AyvAFsD-?H7dz6X#s2HFnW}k_lzoll&!12a9@}*tq@Lam4s;K;sI6O(~XRx`b
z%}N}p3^^z95(>-T{yQ?ecT4Sz<Y@S^{bml25cB6o<?z@dJ}>laY0WM8sRuoe@^D2!
zss1!%Cv*sz#pjzNY%POS0$R`udpGOu0Dr`>o>l|6`*9>sKAffQVKs@P_h&j!RVATq
zm_wyf76r+KE-rbw>L;5FUyF&U?3aVy%Ds1aUb1O8B!1tiXgj!0rAyZ>?e5sSP!}q=
z25(YWI+E@>Ds?#5zZz~Yy@4Hr{N`rPM_2}YJx#=i+IGtF#QG1dKkGGQD9b#OjNP!U
zr*~Q_5KRdWhH0wxUn==LmajV79fsm@XMR@jyE}QRv3W5ELlUG>V!6x>x{|q%C{&WH
zi8NFua*m_;XIoq+*(RT3DvnM3yPZP1V<G-O91npK3B@EtSL-~#_|yxo>}eBm$$UZ!
zGAOdRxzP5ivgkLu1*`W_3g=;X=PjNR;y8v9x6$A)4Lu5J6w7@e4L!iVs=i?&W1}-}
zmdJC_R|Wmned~rLx$iGqHcDdF7h8cP@nMaRVkh72lDP%YeLA_h@&_5y2HvMsz#?1C
z63||}R$Wi!N$WL^x9RneZt&+)oR{27vR^f^`|+JR8g7T4HXmeO0Z8cJng|l%^+d#m
zolXdX+5Gqa|McUZ|M|NcxB!W7;Qb5-my{n~vpNe{9WlZeT^~*-`#(04_&-;>&S69h
z_A62z&y^-!INt(6=gnWgAs+s!Tx0{?Z3?L{xj~bDFmUV-S3%7F-AEA*b~%~gH~gI6
zy|Ek|ERJ$YL*nNVs`HK(o{lNjV!5ul#=~*E*b^I1vdFr^^G}^`v5L7&gIu`#hTsIV
z-2IW*@j_^pJwSy`j3DIw(^M^2D={h?XUB%fM0=f3yllf}C7~pEL$+3d*7|g&wL2wU
z$p&T)cUm;^9+f6}>1AxOseMY|yg2taWcGb>i%gE>^Yy;$AMUvi<nntaz^2(Iv%PY@
z?Z>IzoAl4zbUVF0ZM5gGYntxaUVNVi#Ls3KUG5C5F+lbcVnJ?wo}2FG+unFr3!_|e
zx<_2i4hov;+r|g&a<b@*UtjJITm7(%j8@mq{5Dy=4bI(H@oIKki;WI1&)V*~#%mVP
z2IXs16i%83JFW_&vE@|!GV?#nMVFQ&X0(hV+rN=gnUkTL30t7nHP}U*xjFoO&}u0|
zYb+k<UrCxwViJ=YQwRTwnMr)Rh;;Dj`m2SaK+i3Ot-jF&aj#zlA884C_Ov@)V{uED
z!-;JRNoO#Yx1QNWzj(R}8#1%}7(ZW6(Pr)-lT>$2&l0?0;r)8OG%v|f(MwkARQ?Fz
z<7sm`-ec=kSz>d<GOM$p7&N>?X(U+Ag?SvSKhT!UQ#K{t6gq>GSSVfd-pHWG7|1XU
zmwj@vWr@}|2BpGQN!nfppmdbP`H9Co+f1PI+DzIdF1ogpO|4yx(9GF+w~@81*~00d
zt~rPz$rk+)h`T>>jf;GmpG&LhT^0+dPWI+FaW~0I?J!D<)TKhOM-{4;+2u=99(?0u
zGi@?B)f>)IBsABPf=B<z{if^L-;{)0*oS+UZVp1_8wNk^g=?i_<8vPbMT<&`JDEWc
z!D94@yZ#F?u-#*gpCQlhM6tKYgh&1;y(O2eCYy!p`|<Y7-u$JR*_)<-S<ZL<v?hJe
zw!W;Y<MYT(6B^d$=dUc9?($`65GDWRHoOsfVL>#g?EcT<&Z)NV-N`62Zxy-I1wY6B
zuujlj!{UjxOv>z*O+6WFl=n4qqje*y7!j8dy!pX%FU(>VIIH<2301|enyk*R{lbE`
z%7Vt5dDXqUI#KzE1ViRKiod`(R;89+g)`jb;---PNi^%hMfkdJeS(UTSq0dX_RHg7
zob%Dxle}<tSbQh-_TM|dHU7m1({tw2UF|&b$6I%ZRqhdt-XMS_qRHTMjRoMooQrJg
z1v~9}ck$_gpu?qx*1CyrR4hvV<C-(TwCl<7@c98!&iA#u>|-Kk7!=vLibrKnqH_j`
zkvcRifG9x3W~_3}{u!ocIusa5z}?^pkWx$%U}yl2x-^k%{Da<Iah2Uuz9c$+{mHk?
zUPOhWYv!62vcjR7VwO?6UY44b9Pv;DlK$Kh8U7fw2U={cv5qNeX<bU<?HmfG8WM$n
zrkwCkI;?{6sBjYGOtDllE=Yb7$0PmAirG4A8qk>U|BGPf_mW>j$+}inVr~182Q{vH
zf)UFRGrooW!>_G->>zi4RMLn{YX4Q{|HiJB%wawj7B9I21t;<dp3ChbrYH8%A(0D1
zzlhEwiHcp5db{6IZT_3<k8l)-3!aLClOY1y&cx$N|GwXnkCXO;DAFUxgX5|7+KR$2
zm714R2@sqUM?@goYU_Z|k(TxKS}mof=$OHEGPQmv|80&r_ujVoF&xs%9PK|An4BlW
z>vp0)ufh3nNI@xe<hh>`jii$-nKN|rJ6ZBdn@M-wz9WUD^X<iC|Iq-e`n>zmS0K=`
z+c&FBZ4S~kI5Rj^zc;-$-!Hwa=+miAR-_{p9zm#H0&{#|z0w{{S(q5h&RuR`w_1}>
z;(6~0x_`PebQ3+~KjFy}Q%zh*Km>Cfh2zryoB#>kI<h^TJBR#q4j%Q~1UTaznS@Sc
zCnHkJiYfOo8iADKG)#Uk%g~;uw+y3L;U77)iYR;9Ff4tT{mWKtRpM316a2TY;`Y+G
zGm$e2UvX;}Du2OF@Pp<VGYN{nX@dl8RsS&QJ|;j{nh2NYUew7d$%!iBk<oh~$&GEF
z-GifIsW^Uz3>+R&oP+Xw9v01h$zn5;=)DO*qT{j(rFs(9Omjc0W;nhc<f7F$EL-HH
zzIYN9^oMgB5GE3j;8H11vB49QlzhD;UI3Ry9N$EfJhZO*-x_U$Qlu?=&|#iG3(XeU
zCz=Vld^g==fO%Yey@%j8kL4evJmuRLVevtF%^b~~Gq+xXQ?i6(Od&7F?Qg*{c29V*
z^EtjP%O0KSByI^w9uS+V@q%NnVS8eKwRCyYfxkoAgy-;Cel#&W6iYuN3!py_d2=Ks
z`r5Fq(c<%^byTT`Po37fnt)w|9v;Xe`<0?;1bn9uhKE_6cs`(K@n@nc8z%FOmY~8M
z=T~xf+&d<>P?>%ic|N_FWRi_zw^OKS+i+)fIrH*WCAJlMzI4%|tdrcE+M}6v4?;3G
zoY1FU5P}%c`m+MO;|I<5KSXNNzSHD`=@9PN<{55}Oo@@>ZPm7D9T2FFi9Sg*jnBXN
zxvE`QNQm}K|3Up4g}Nwor^^+tInlu^u}vSXv&JXC^|))V-FMpJR=^QJbbk7EttuXi
zgzobK=|XAcV`$;h&rDqu>v`Vki-u;WS+M>LcJayG>)&hQ@VD`6VibIAJGi6KPV}u1
z4t>zh<5|v?eL&GBPjI$9x6uo8`A1xO7&@BBu>FP=RVW#Uy}!sEcOCDN=caq>ZVBiz
zWvwOx=KnZ;ib4;jynFF#5wIa_PS;b?p$$6&k#UGDZOWhy7sz{byJWov8%v<>Y70#f
z@@*+E1qL)Z9skm1Cj=l0kVdP+c`6s4dkM?NH@0cFE?UdlNw}pJubeMVD^&7{+6&{%
zZ$Lx_Qw-DGfAcO8`4_ni^FFai8&-DF|Lvt$Q||o{s_Xw^0RTd>9=BkTF+<xQJAgy>
zLQj$;l*VOSW0wcH>Pb*3(Qe09gD&IW{qX6pEhbLti2DXpe6uq$?^rqh0=p1^=}vsP
zJvM_6M8qyb4RgWLNmc13^PkLY)tT$U<G{vUnBMvk`Ex{zs@!C7eqQjpM1#QeXqF@r
zN^%c8tzl^)oz%^A8^wcyM56AOTnCz-X&4SPqZ^>I4<$mD?7LlYIi>PO!ZTYHv>0XF
z5yOw2O<+;@_1o4xZk35(Z-VWE*j@_?F6F`cP5PSuTY%nfsTOh4yuO!QRyPGwxP2yL
z`fG}cMDZGgYc_=sfz&cW{wv66r@?#bdXh=Xb=D_?vzMp!)Vs>%gkL0a{CT-WqM~--
zxGJY4ilf{yL=c7V`iy0XV1C3YZ>0J4px<>7vY7U`cJ4<50KpKkzWU#uEakjBVh?>T
zX%UP(-gT4uh>}zaj(F6)bwl^{J+^jzjGLmJYl*b83loJzAX?6z^$@R?s(A|1fzeG5
z=Euu&$?|8i#&MJI-Fy2JVg|@8w}e`))Akduab!8GYRGcULreEHLUu#IXCupf^_+5%
zr>SN#xn%Mcta8Ef3wG=!CT7rMBg;SFWIFllZRn39N}VUx9=GxD6G|uQerBMuo%<Xk
zmQuDDHm)(gcbva6ER!=e+gU+7RA%8tapOkFB&cy7uLcoF{ai!yo#t{EgkIeMzb3K@
z3sF1j^*sAr>5EHPUv~`RL%Fpu>NL)-hH4F8Ar~OrdJJjTnn$V}3Xh@VK3yN02#ZM8
z|Iq^305Opo{JR+wHD;q@8&w~tfiYtDC=5Ng?QVE-ve7Cu-o$@2ktxuLq9hV<&_o9#
z-$-5+6cj9#t0|m(J^?M6&#tMZeolhkk@A}9IgDMdi^R0iv2HAP#$LKAVm1yXbP6jo
zXkYfwF3Os;Y>0DwhE;TZK$8Rbfwt%S<16)8+B-ZFsT%)9s<;T+VgcH>m4@<bJuZ+g
zb-krWU%&q2(BUQ)aPcOIY(DSQ?qct-<FB08Dc1Norvxhc!jKYg8~YN6-j=_T{-Lc+
zp`@njU&}GBz0Wu=mKxCSX4c*W)~FHzpX|~vaZ(X@*?&3bZcNaDz+bk$=F^qT_JX_r
zA!+55FDb3<vXT+pgo|7b?EfE57l2)#km#m<aS;hs5F)h7?&G0|Q9Ss#kL`+LZ5aI>
zsVY#QEN~Q#CQ+18_*tafd64Oij{+mS#5J_>`wPJ_Gycc%jPCd*?I&rpKwCvc#Z&Hl
zrdfC>I@`P0x{9DNSg{q#gESiQ34*yp8P!qZ*mVdT-NXucb1k)IVM+1`*ZR2+#NDN2
z_xZXZ-n2ZTc&s87o?LLGeG%Zx5aR@7c+bsg88QLPxddrqPYHmm-CWw!G!wZ3=c{e@
z_ah?qQ2X6_>rA8)Y(Cs9CDd4+mcDC(uhhX#uIusqoaqgxftLQn+6`V>rl2>zV{CU%
zsQF^;q>#0Qx*t+++FhSdObDMKN$fw;_Z2|GTNI$(jmBl`IopA+ZqZB{ENJnayV`=A
zy>3P|Xg$;T7-0Bvq!pWzLiev(yZpl=|9r3pOYG6*r>>jeb@Na}UzEU73)rnk0f?{#
z1|V3ac=>NI3PVMzKwDwI4+HxqAthiB+furbRB*1qmjC;ffVU?p0+dq6FS_Sh%m96&
z0BggS0mi1jx1t)?9lqw{-4AZA_r}D+Ki-2l_?+pb><k<KXEXU9Kl%dSjf68^k*xXW
zGwQZ#-<~&QwFy6c5J$zdw86x8MsSL3v8|?p-GVYzn=+Tzwb>|Z$Hc~2^g#_BGMRDa
zS}_OKZyA@QR9p|I4Uu#hH&DqN!(AziWhg#M-Q4DarBbd1Qg|*g@)j3|c857`5{I@z
z&#eV9fJdPFOgw*VNQRpwL<?Vu7|&^5Cv+6dqR3V8JNomB0UZ%vyb#J1%ma|%J{>vD
zu?5IvE02F?=gU1~&ElOc3uQ5;!3rJb1J2^svL~xbS2f(D%LR}EQj1bDQM|j8-@S}O
zSlGM6Xq}H4Wx5wZ&pZ#dqB&_OcB>7Gw35_Rg^Ru;CMI@GqqB{Y(`gMcWjCEN=A#V_
z0%iyh2xYB?9^Kez0(Prwf(FE5G<LG2)8iY#{96wyuAo;P6;Dp`NcFBy4<Zt{?G1p<
zkMk;{CK|fqe}b}Xmy+4vEVT)B?({ckz_KZynrP%PYRj)%5_d9h*QV*~ms$&zOC^*0
zeJh~K)#l(88C4*pF~I2w+^~adRBc?MJbk1#+3VoT_l5!^t&FoIe)n4qCnT>Iu)I4F
z95&i-*7tA@0%V8Rf2Vr={$2oADCe{2Asl9auGnVFaYbB*@6+;fWz#mo1F+E!l4qJz
zsCVUcU(m7vIs}R&kdrKKc1)VjwlR>YyL;Ap-ar!79O07><A{ci*++XaEzg3be$H*r
z{L(tU7wN8-G)T4HVfp$OZg!yA0cZ(UP!RJPbrWlhdSM=BvR>7(bI5pa7fphX;hpo1
z+q5pmM(|OI8PD1v6ZB*SlhPW2<sdSFgr-j6--;O}ef>^wmVFgrBDt4m-wa?G938a;
z?)l9BS0nMYQ0jYvO?@&Nfc_7uL1TX1pU5C^))@zsSE&DWVnt8`r06WCX$yWm6bz&J
zqTpnX?N?;dJh`l|#G-S|a8U8H=w)VJr89Yrty56(`<J>{O{rWVKp3m1lmKsV%EJ)3
znpBiPSCh;7H+U0FiDow8&Odf!48;D=q<OSe+Mfg*P{e5&8%(8TLJPBmR?pP-M_DXJ
z|KvO^z62x6Ck*`r%a4t2k4veT+UprU-7?vBs3{TAH#a|UMY(a=uUpARL=qI@-ObWD
zjj_QldBKSrgW7lu0ahy03oIcS9@EN@5QS3Wmr{RbDrS644~gJ!+NvN%ony_>_k&p!
z|1?PE7ue;~GuTfF#(82oAnmVrM2^1#A41+O<$GGo|6sJ#)D>!fB4*zUhBdpFTv$Bd
zIkKNCZe=vew&DzVN7;Y5Gbj&G@OqCZGo$@K30^DXv3~sy0>I8S-&BeTuBswhYUL?n
z*3U8Jb>m~nhf{sLGrm?o^a{)BiGvi5ovO%KiJ2b|-}Gos=UpiP8%-PlvFl&6QU1tt
zhR}fXy{)VPLQ%y*Vlg`%#j_3PjcVWd;uf%&t?3Hg;(l%?3!1$E&d@OThL76K$WgZG
z7b1Uu#hYGN)*tkoDoG1<(V-+2s)N==s3e>B`TadTVmj5v!Hl3L*0SIgyH+L%UFce%
zJ06a}<LJ4X-Br{lPSSo_`%`hKJ*cq(xjEl3#OJiaRO7z<{6`t-TvMR2!mzVrq_2Bq
z0D<mu8_d$M1ZdsZk1L<KxwQb)7%%U68^m<6%1G15b#G+aoh)GvkEvY<R13tWlv0`a
z0cm~v6!Xhk_0b{00}N0<MQ+d*6RW<&B6+g;;pH7QmUI5kqjw?(S9QN1A<4%nNva7=
zz3vg7|C>9C)0@_CzJ)WV3Wi?#E8r5pwQd`6w)zAd=*1K?THjxpq*O9_#dQBpuQD>U
z-+Ggnu0=yElc$cVy3ML6!N*g)QS*`Yj3@bDWaq3KpJlDlt-AL{*&nz~?PIvUto$e_
zEG)#obEeYVV`ZuAiiL@bi;FnYr*j05g2?PfJx@;EA1U^LPB=E;!;`kyRxDL%f$hqE
zgJ4)h8_0g<w+&FJ5bltdXHf}>N!cvdg*&FHo6cbk!>Tx*E`O<6u`6fvoSF;8r+C1F
zy_u#Nv0bwo3jUJ1c%b!qHoTE)n}Dh|jgN=buP)2_65Irb##Zk5n~W8EIIxmNzOduN
zNy9-`FOuU_k$_!vXnb5o22+|QQ_?WT*)OsK5OXAZYDhxpb8>8=-Ld{_Z{xJ(<a;s@
zr!ogz_V2$kU_t=<^tN77Qx9+%flNYSXQAIqJ5g2-K=3Fo`TV@Xv97$h6e(MM_-DZ@
zZ2liMJAo~f?j{*Xg&w1F!!KJJvKz;gmO@904`$DzP>xO(9GK`Tg2?z4m$9+2HlHQR
zHhZkT6z6pS=}Az<Il%tF)uKuC$JU%DWZd^MJ~$wU0IDmWi*8tC4@xZeml*L+)y!Xq
zKcX3igRyorbm$@PnO&<NAO{NoIuSU*nQ;zS$nVcOp3X{<eiLOHBsshL_U(WFFd~2{
zDj^}t^erZfot@prMN>0TrC4~h1<L&a@EPO$d#CRWQAEcBx=-V>6?hhSo%ToO)!2%+
z{$?Ohvdv!@Xx@Ar-q25=^R!#l=AN9dP?}rXc5C;9?C-ybs+6PQyq&+jDk)3#D=XZb
z2ICl19c||4sXnA_JP#;E(SbHHqwn<ycb0&U%|;|P4pcCD(8&;aBu|xa@Xal%<=}sG
zR^PPYo}b#bV&h}2)<Z)(Q4P6{t(*5Q?2xTlmsh+3x}M)o(??Kmpg^ZT{zHF$53SgI
z7c3HSM*klNmlOIoQ&br%WDIjBaIP(4JIkI$$$RcBH#<2##&kH+@A2hM>B=3Mj7mi+
zTBvWJ{b65S-pUmAiX4z|(+W<L8(8BnZCcGqdUke)H$rc1L*U+ioyRGeFE&K+pMAYt
zaa?-w3O7N^27Cio>o45RjBaV)!qT3ig;qj3Js~>s3fCMWa(zO${%MCvDi_P^_Ok@l
zR4X&W{`-Ed=WiBouk4hvT4xM#i!t#u&(*VotY9+llj_h@{9PJMD<4+`88DDA*h$4)
zJ>)&XdoZM?B&b0Wn(Mp#9_}-{6*vZ`dUc6q&JxART(PdNzmK|{s(q3zmj57<&$g2p
z-y5jw%8eDOn8L^>Y!4-I^eK6HdAk`oYbMi0^sM+vplJ8z-0RyiP+W;r#3kQtPa|`$
z{`uNs_#Y<(hLhjIzT@FHVu&r!DNO!(y*`}jl>swv0Tn5hAE%kCC&;Q~Qdfx%iqn^w
z2juA&^tlw90IDqwm(QhWd~6jX{2E>dkGr2%_zG?PXs*<x)W@6ISLi1q^LQC>CpwbG
z&<<$SU8?uKS^e+(u^x?<p4D!)!5ptXdev&70PFv`JOAf&LF7eZ^9P0^9NnM(nO=19
z5yV*Rm#Y{=71OdYWyAE(hw@JpgrBiHibhj9&*O1kT#_a?Vkd70Z7dlQ-IOnNtG)&p
zMk42B^Vm+u-AePM+A^>mT^n@f?Ll@N8T1pJ{D|<QqPi;mUyhZx87kY*rF1FDgoO?L
z-kvt}_K+rOfdD&!cz+87O3DH`r_s#VWg|mbn`!Eb94fQAxcE;WDCuf_L3>u@&c;%D
zD+fPLce{_~;o+x@zaB;QPv7xOm@`c1Qb}4L45;Q0Twy*xC&Xjg)ZY}`@iq(`t!dC(
z&HRqcmV)7JZW$0`hyMF=x6vtelqY-*=7U8cwwVn~8<^{NJ6&F?o+44d1rYwrutY8~
zR7cYE0ExgPZ9PvqT4oq)!1ZKNB?Jl2IDxU7NmIQ0+n;RFL<wSRJmC$YrxTM={seMB
zLvsM8J-`yKD+h7u8Cy1!dI~HOE~={L&%&3Ieb)n`5)~l7q}73W_J?Dc_w5N?g+XC5
zzS7!e^@4%-QnW_kUJ*(Swnx9SfeMPrJ_Srgl1F9zSK%Y8tmClb07xwtQV-%_2|Wb%
z#c=^SKSevzGx#{ZIn+U4+jeX%;ii>-vCsSEe&IA%5=`zk+<Esvaw0JXlBG0pT8P<j
zqw1$u*k9dx9dy-CfaK8gXf5Utr4O}RZ*~RTHj`%Z0uu6IWyylGfOzF;Go7yC(T=lx
zU56&kD}W68L>C3b0Up9;bUzyST=px^CbOA{Z7m~Q`1C<OALy3tS4?_jl^Yj#mN<vD
zk~oy#LrlzUoz9vMZh-btBT;__D?lIr{d(usgf<qA`{9fTY~}w^!TrByTp}lMV<{Yi
z%$Q7u9RjyvscLB7zQR?BY|Sz_#@+Q{C`k}@1NNUiV8JUodHxRt*(;~uGs`xdhn)bG
z-okL=<XOzBjv3gHdE9p94wvambki^@kzOn9QeqZWn(!-lcidNN*^qN^z{1zB&{XNg
zomMH-8V5gR)^v&Qg>C6-Lr?6|FT3|Vae1xWP?%Pa`fXe(wr`+3|6$5qPS-t;$N0!G
zByC?HkFRO3lRGKaS6>WiB_ha=>B}cv0-?lQpW(E(4jaEWn5Bjc(!W{>F|o|W8K3G@
z9w5TkaYxiP2G0j9kA1|gv&6lT9sy(lIe$wu$)Nt}Xn@x#gh>vltu+3Thv8e0LKrUr
zLh8yRaKJbofUI3&P4|B#`lSDBE!Br?+7qN64#+TpeP3nZaQgM2@aq)%6Uf(wYyyzS
zqpy-WpZi;^Z)QOEJ%}uI&KeHgoc#QH|Jui}7hu%roeywnHEj_kmjLp<)^dX_gPlMV
z|1*$fXIpL5b{*+r(JzH|574a|nc?*bSAhO@<rVH<7)YW+NQtVG(-Nor(mz@<vCoBQ
zO#;Wk5h{DCl1q?8huf)c>ATSF7<<1~+P(nz7dHu%)iq#gSL^k*u~R1&6Y<+1v0moA
zH?YyG8(5&!le6|u`a>cwCY*{sA`Sv3p!z)2F~Xp%;v~mF-!kaDf6bJpZFtQ@n6uku
zKhEe+EQZwzsvp~m*gdKCn;#6g*Id*RRuzIs&gjWLKJMfgsOJ>n-1T-m48}MgjB!lX
zP3E5wW-~4vb-v!P$j5K)Kpk|Xc*z(7O3$Vu$6tH`t$GlN@Y{23yIZqgkO|BVP;`F5
zW-%Z<nlDH)p!b>GSpf`)jL)pA&bb56K#b&)BYR=G*HN+Gtuk(4kn=e&5Gt6QfaG`#
zMpOc=@G%y}AO8gmkyUoGywcU$(ZbNtgCzc|iJm~R<%t^rsUhp3cg9_yF@gPnWYYn}
z$`O1@gypYr&iW?xX5e*LP-HbX<~e4a!SCMS+VaM8VBdbDx%B}9(+zLMaWKJ;aq~)I
zWqxl}KkeVsu8_=1X5$A#^0st4Kwuva#MUG|!3}oq3juskepr>no%wuOj4j@K;I5&f
zA0wUI{>dd1w)5-{#Qf}54-zAe8ZJ4KK^_jWSZFdmjCp&w78nnD0hz1ksO*Rr_n4Dt
zUOSyX<~k*dwIWYu650o~{{^NOnZN15ZH#RYZe;qEQ}PiguNjF2a3t7evXb=OQe5>;
z3Z2jKfuy|)1&nA77v??=?*19`y0)9k=3tX!;SE$bXZlHdRJdl8*PBZJ`reXnX9v7<
zFKgkgZiY85vqdUo+74U9!#p$|Zh0uEM0tWHlJxSRx&sPe-n*_qLYDfpBP9v}@}Xk^
zsJ2v@(7Xjh=1SAx(?I*A(MV{%7RWI;i|}rB3qf4HZ9mm|#J4FXDaj&BB?ywtFvx*C
zi5l-dIhG&LEsi3%TXU!h=p_Qsq)e$at{R|g)~W3OV&E?F5w1#Rk7ZFaMk5Y000#UH
z%xjnPp4)Rm8`mhn66h&%`n{7HIBZpLY<zD^_hi5kX#Xq$E;|Uku?4Oq)Z@`_?zmIY
zKJb<))6dDRRL&P~30NFwTfH{?ORQwoPE?h)0X6?*u7;i8a=McgJu=|gtmJhu{B!q?
zI-XNrSs6t{YxbikvZs2UJ=tMGFY$-!WWMP;0fS|O#{!WHq*N+JyJ$x3hcB$ninoYb
z@eQLMYW&2?G`3v3Qb2DO7S<<p<{6W&j0+hzjJOFG+YMO#FpT1g#U0&LgPN!95dw!D
zog)%t?X{nsExNq|6sb%Pu$-OQq7p&0Sd>h$D5~#Ycpv}f1@(&|PB3<frDogt3w(9h
zOVC=bi7EG)CQk@Jl+!~k@qtvER6hYNKVtpfl}cjpIU;jYmt=6mH6HuodssqLscG^L
zz6Dt*!p~J2ACa)w-*@WE{ET7u?MWX!jw%$^oE}2_b?hKceJKlOMot(m%<|*Qy)yYi
z81zpVLvIT7HE)YSnVy+hL#1DZc_JP=8Bh|iN+f(D4T%1H5%3Kbt)hl+nB?;W9`;QT
z@J4_uj_Nu{f<%+$b53}7cE$($Jg)!{pW9IyCRLQfvu8L1lnRoV@1*B0h^U-&D8D{!
ze>}+M==8-ou-9+#b~9HLt!9tqt)Z}t`hiB5MY2#JkK?_rQfNI|P#b;xhbGHsT2jNS
z3`8U}53-KQCnvH<%7S^WGR)jzbvs#ff@ZkNavZ=*l)yULynQ$L-bpT|PKJFjhBpy{
zvC}kQ<=6TAs@n1Uz^>Cz_~b5!e(}$OM<q$8?+9$9(8CMD@7nW1{;@UJor8nNU<D%J
zTL^_@LDG+hSdJHniYsHV$?T<72P9LFdvukt<|;Xe(<$oDqbqA%gzf7b>Z+d}UfiBp
zJxM*;CO^u8^Bwh9ffvzjs@Vp&!{$S;KEEISBwoyfGI!))ZU*Az#FxuDJf=$i{Y^c?
zOg%!OUymmfA3&`9xk5+XQ%F4wFz~`MrmlOW;!;oF18ZXL*k=1peC?_}j`^PnAVm#t
zDR#&+H}}!!K05X}SBS-Y$~63nI$4`={J~X<J+xT9bYxXjCv(NF<6++kf?yem&shV(
z-3d2sTy+Aw4iojkBYC{;E=m8>FniEs*v|vd$2w~!7kg%0mHt!K{5Sadzs!c<#J~6V
z(5e0Y(SI04UR6t01zd0;A)kR5K|Da4)9<>#G1C6L+~k<2Z}V{O|3)yfvH2mSYT-G5
zkg8b6f*&*fqqDhUd@K_KW&QEjVV-OJfW<}N0nPV-IMHdpYJ3|SX7ZL9jT=>WaWWU6
zXm;NCW$T$%pi-HaKOC@g!lIrH^C2bljaNc$EQ3?U$<O19T+M>^O+Pg($aFAne($Te
zjlgt~P=~(dC@nSD5!={414vMwtKByN(;h@QTz<!D(j+nc6jl9WDB=S%*GP0@@LZDd
zsue#2=ph4f{;<JeuQBIVmH&j|qp&~G@`8vbG%0lMD<=?XTZ#+Q3>7Re^o>y<cOAVH
z0S!UMt{Od|-XhC)9^H>rI#;1Tm;R?TDy*_p$r!1X$R}sSF<Jyapbga=M^&B92_>cn
zGLkioKGlR(eh%8kLD0Z0F<tEhOokY(e}A@M|DZ&I>I2phO_%E|-8SB$tE;+RfIC_z
zLDs>TaDwO>*uk}{&GY)06C>#eC-TfXWQLl#n%fq+`bt8Hu&;`JiifdC=(+nV@j@nX
zMv;HK<naMP5OrSr^FVTtq30e}DUau70IaSm8MNFo1&JK*uLujgflFYxt^{Pv>aD<H
zVlc2rksui04k9Ov1HxzbE!Gv)SyZ#M2(+Z^ADu5mA08vD)&OCjxz=K`K`toWI-R5r
zv74*t`S5Ym{*WMFH_Q|jg-u3S(d^ewnCQt)o3nPF(;%A|GMba{Abc+3E+w3KQE9(b
z3;>l94?vD3CV>}mk>rg&j&_M>%Zr3JCL7!W>LrXQqFucSOQcw$kQTJVf2J<i)?<`F
zjD@fH-i;J`DtEvg&uHj-lb{i`?em+^LnQTsFjD_C!2etkP?WudObRy+hPxC(g|g4P
zF6c|gr#p?%p$+!mvsEN`>=Q`$NMI3(t%M*Gl+pjK^t)l;=XPl8hE6vTd~Kjud2`M;
zjqggPXgc%Y`Z-6M=$MfQwLkFD=vVXmokh_KiTBth#3JJfkarZBCIMcQX92u-q`$68
zWlIm6`4c<(!N{(fdyhFtcZ9RfL}%`+j-eVw1rvajvBFF2%EKCR66Dw^@`CN`{9`Tr
zie!N*pU53$H+^@}al&Dh^n}&$G9B5GsK(uFz!ljN&1C(zPz76+I93wVo%GPlYGX!A
zk)gc+&!E?rr<(;c+$#)dFC>BF!fxnT7XL~@*I5;8|EL_L@B6R8>;?Q>W6kk9%e$}p
zvs*(SEUj;j=H~FR7t{ot)#~vPF)NfNnO4)9?L`7j6nByx1&x8kgq%!g0f$l~w&<rg
zwMth!-9|emCf&NK)+Wz`*Zm0I89@p@<6L<}I~7XPGiZtm@yr0L=_Yp$=FCFR{oSRH
zSZbLRY%+}<a@K8=nycRF=!gIE1@&kqY5qrHUmaEDy6&q;cSuTybi)LsyQI6Nq`MpG
zj!AcS_ap@Ah6U2yNJ}@~k9E$u<DRki+SfmHIEKS1@_q07Jim-{VO9N-rRH+FL9o3z
zjz1|th-Sa1<-af2L&!YP@6^h^$LYpw#<X>xbit>?0vEtTGEoY^c0$}x%Zj=jmtaiX
zUWY0E{{gE1^;~k*f_9f4MLIUG&J8rUJ*yWw_~B*=O=`?7$`b+;kz2RXOAg(Khx3t?
z=@>b=bKe1~8*P-mus6Eq&nJ$`o+d$js1*(ipS287^+9~gP#d*G$TWK>K6dL#dAOFr
z3ge>6h^`0r3!BbGiZ@x+gePrcS1}ZVbXoFeEyx}mt>!1SX77u6#aZzWI5OQ42YCV|
zE*~(l99X~GEe6bn0O~Yw=5#R2l7C;=<L-_+KNW35#}+wLMHaS=_F;fa8>22S^^Cre
z#DS3^jmW!Q^bLX#RcM|`e3MU73UU0JeI{>-H72p~ky346zBu5Cd}|2DqSnSHl(HQo
z8DoqSp<`d!Z0oliQWao*2NX>oX8XN($j%veFHnn#5ZVtw)d(s~fqcFRiTP>jhR$FP
zYtnQ+99D=*$F&lI#OlqF4JR=qNat7uw_ebVF;dv#k+%?oB+afcdXiLf0`U&8a2=AO
z($SH&<2Z;G!;Rqv(DAhtL!t=ANkf!sD3ZiS_Xi(s@w$8BKan~*ROg;T3y%@`X*3td
zygkV?*<q3BMpKS+O8YgFtlK`-Oi1sWDLX;RDEx96eHr6~V62pFytNckJIpg!7sxO*
z9+#v@<x<GemHj1k8*US4+cV(JubDhjJm3z?xCwj%pEfgm=j|9;fi?|mO5_pf6l3)s
zw+Zi*r5g#8WB|_r?If%@Gb27Ma;HeXn%(WY3fDf)b`gpc2|76>q!jBmBW6a%BaA|r
zt7=Ew0%1Ct0y$wGUkp}~Z_^ui*Z&xmTHlN5>3(&}BrOpRI#_LQp<?a#d<r}f4GZ#C
zQY#>Nx$j<q;lY67n5W;iCy{WlCd?*$C#8ByX!v;yH<s@r%q2sA_62%$c3_3bnqtY9
zZ$b6?;oH^Nq#oK;Fi*l|H$L8_Q;^aYEf!yj-iwsZgm6jN4Ny=#D#x|@eq?}e!ok(V
zL~5iC9k-Rs5dFAxQjf%%%(0*ri8bChY|D~^tF>;65LgrlG>PE6TYf<-T(|Wg_IXrl
zPW(LLTtjnFaDng>Pl4Yu&gzq`643BSxt*Tusfgs{Ce+b;{eXd^o6h63r{6<-Ae0Qk
z5^Hk3+X@3F+Y?yZ;EQpVJO2!Wfg0#fK*=QH?gk*YHLba;j;Fj%hn=>9kli*nx~(`w
zt0g>Y5;jO{@Fh4_>=!#p5+wGWZu_}_&N(4wU#yoaOUy&XCpUYvk&%&lJ!cZq))%(e
z^V@(&MJP<xNw^93V%GtmpMDb?+Pm9tZ!@<p{$2^j_yxK<B-kP%!x2ON!$#mw{sxL6
zprA3Y82)$!p1U3vk9(TD5OqeE^d?unUj!L;GZY3{N{TnI=orMp5fyExkAc`Ow0W2Y
zzI=9a<tmyzP5!Yzt-O3@94P)FB`6+8?^C&-P6_{^tCe+o6+~!`-zBp$!~Qd##T2Jd
zPGp1nqTURgF<a-ux-IPqlvBR+^3~pM^Y>`GWTw*g4r{E8L@<8KZVHp<y@d<*nz{+R
zE0uV2Yu`uCE*33~?a~TYP0btW$Z9>+tV|vl>=qJ>NN@~04wwjIxL^21@Tjr@T3M5!
zP<*7d->(NfhtMO+CkjSqg;jKGqxW44&DdP4YcS<b0*<U~gbVWtPRg^#WKlcg&QPvW
z3H#93Zr^*ce)B^%`J$=W?dHaPRi^+kp%s-tk{}^TZRcH59%02^Mecwf7{lDv=W#e?
zy(Bpl!H_oTz$@V{Le`kZbUs*g?k537L1UN5BVn$xLXANH>A|HVKIv#bX=ZC$)T~CM
z<NK8xD002^vV<|MOW8*UPdGsy|0MMYxDZ7P#Z%_Hib+}TC>b>dcB6L!7K(%!><h(l
z2U~Aq{hoSHLR61LFj%28>#>6}bKA`&XNm}hxa$Zg@sLF@p_SJahqlv#FENvb$_d2A
z4&!imPz5Zeu6s2CFVBD1Fo#uiI|W_DC9f{%`OGfP0k4y+-&TKdadnR7gL)DlIz8*q
z01Y#2^dszH`by1RMgyDii`!`)naHQ<d;?UGZ1$3m2RExA{Y<^q2gvoLT1ooREmr;e
zc|JivV@c#l4QsJV&A23WNg}odxK-PAFwWO^Ypjo|C(9?~o_vCrti%OZlq4G-u2wLs
zVtx7iG}>C3rbFRNt&HO?eAoybVt&ctx%`Y6(=fS0h{a9{r;augywyDzIX~_RMZg=J
z9mhI;oaB62Ih!Wu*NIn8Q!_i=z@O3+jXxa(1lg*k9)C0)2niiBTAAE4Y5FeP9yiEU
z!(oA8`v*D>Ru#Do?RWjRO8;*7{_lx=VHZQlw4k2(+RY>Gko64%Y^fT_H`17Ozdzrf
zUT(Y4)S}wp1f@Qp;|!x6YydbY(ym46w?_G*YU2Yx?UrfrdLZ(Htr=@Gs?7)hft4G5
zJ1GkbWsM|g4Qu{#A|YbP=(3LBz~=_x=@mSNN9)Ka|C9%(&doraY?%<gW+X1=HAbIA
z#3ga2cHOC1be!>kbVgNj5}*2Wq)#)YC8o}0MFT1qeDp6|37dD5%2!n9)NP9F=*KvX
zCld=ln#wRV&8mymaDkPPj4x(Gm3~%?kxJH*BCv*wtEg(G;*zT7eGH+~?%0D@M=uMA
z?5<|QiSWrMJs0RM%5Sv*8b9WeNGJv0e;}e=o<+I;!N}dt-5kRrxj@ZYAA4^r9_VCg
zff}w^BU@llI<1JK1}f3snO+QFx4k8W7wLe$)c@`oTwm*d%pB1UU2?p4W4xGOzl~Gs
zAnG$MO|8X7GYBF;s0Z$^XCz{Sd9yH72x6?nwDbMeYTG3$InurhWv>m#KHMO@c$cPi
zj?c)@wyp{=kb1Wo38X=Z6e^Iqra4sLbL7-w9B2Wj@a5ae{H%mRNpjYo$$rRBmkbNB
z=8x#4D}(65Zc{OL2vaofC=wO1?iV6#rk~M;$r?nI_x39+)m0@;Ev9~#R%Xh^I-h`>
zoez{#`m=j&L#>w5Vp}7PkyvA#y2yK)a=Pm6UlHjhY0r*@nVD-W+4ZgQUhiYwQ73DP
z@$WOkK2sVr6{SResHWMG90qs0t)b$8s~|>I(kDC+Itq#jR_U@I*Pw9{cO?>{A=yJz
zq#1)I!A%fzY8;vlsV?W`a<Dtkp|IY6_eVT~{^-(4_6xjWJNl|T-?^Bq@8zoa_Qxfk
zM9c$^2@Uxu*DhC-)>x5+lC^Y@<X>oWN2=xF`&#2f%jJAJFh?<s1}aW)E|<uNi{PVx
zSh1(0UJUHv{nN7`4}l01-JG%57at~NfoK(IS59aM2opS`c2(`V;?nUy?8^Vfu3vvA
zChm{BuBP=@tajc<8YmR>w+4AZr-1I-kK6BQn*;_|86CD<#OU`?Ij*6ofV8cign)&|
zNRUi>(zKzStnO!96$uU+mea%nEhQL>sgXWlL*z0;ZUZnN9|?SE*5ZJ8_TBM6LiHv5
z<oNHHoAIaHNIpK*f{!`tT?W{}?3W%Nn&a2}5DplR^`&3FGB=+FQo$^OO~N7(LOROS
zS)n?iqI1|w+xAMtkqYKq0Zei!*eo$bG0uUGjbSEV{tkc<#psD~CRf1m@rK*>^B-dG
zM^qqf(O)~4g&y!Jp@iO)ju{POm7%V5O0Y}nQWDMb=eRpQ9F*v6k%}dkYf{elCe2<R
zR@7+E&&%tj>{C5-qlwU2ekuK(OMXxZJi?J4QxoDdDV9r5mjKr7qEu005cl@}SCMGw
z$<FW6R#`04H{85`o-XxR4(BwsF4=iZSp+B0ezufr{(d=|7tYG$r73$r)bP!Y=$X*t
z?1M9q#uQhUqzkaei{1Qm3z%=3#1JJ(gT*2;tiycJ4M{(%OKz62Rni~XagfV3dMau5
za<|a8si(F0KuMcEmoj|+xDV(M9S_cpR8;0;t-3z8yzmfp#HuzCajh$N+O2oqXej9k
z94t=aGEev}KHvaLf|c*_!gQ>^y9D=PX~A(UPlOkBc~j@7A_@t1oV^+#%|MNt;q)yH
z$HQ#{B9fR?<>^XaW<Q@gcI0jvWins<QuU#eY++k~L!2TRlTl~8`MO+Vjnwf7uQJ6W
z_G+)xZ4C^35U0(QKyCO9vPzO!h313qYHJ`GJ$Gn3K9zA!rl!(zr?N{Sny;?bo+K61
zCl2Qd_(bwA`l4x8D68U}|Gbm{Vlb$0Sn}M$nGy1ZZ?^~P>v7lOM=UbQYuU**m=9G!
zOp=HGLRij7I$DblDYk2PUJ*eM@0ct4VMZ5G3GJ2BIAc=b{zzF7<?==WGq4G2XL(ek
z`3hx<wH`IFX-IdEl+zl1^>M6lfa8||ppp+D`9vyqwC~zW`WL~JEhjqF?NlB`LE<y0
zZiQ6E$(U<07p|G3heSLtM6)0<A>Fa>7bEn$?<W<lzp>b_``q?d#_i+GlVPgP>JlX-
z)yRKHnkAzBp6@G8k^Kx{$Jp?80u~qnSd^jZ%Bhhv8e60l>+ajp0U{-5)mR$E5QkSj
zUzBq83lVno?4-{8;19cYrk<BO?ypn6SHT<xMCD8m8p}4^M&x4Rk|Sc@e=Y)h`dI+0
zO*g#TU)zJREtC|0_yQB55Mbv!>SzWAX1)-aI1UnSwK!oBmMxl7Hc5FHhyT50gSN+2
za%xC&#7=J6*H|C!dEhcx_tiNJgdD3*y!?+wW7b4&0%k%9suWIP+~Ac~sI%xOd|YHA
zs@JhMf7!cwRJ5()?|-cQy}v*Tn#$G*xX(Wk1-Z$r%WtN2OvrJ_%%iIW?sc_qiUvd=
zZ*?>PRcE*>dCP}<I^sv}E_<lDwSwn;Sn9zm@i;uqam?Lgs|EQ@a^B+m(&84_vt<?$
zKPIAt0w`0DBnpqKyVzsZ2aErafAc3N1qhA!m*>Y&{Rn!>SD^~=+ZEl-2mDAg436}p
z;S0u@pQ$!f%8j<!YI-K^H|H3vZjI(AnTl&O&0f;-=FEI?E7b<>VnN@75*y*`$Pvoo
zakrJDWsee3i%unxG$z4vc6x>gk-k(mOb;xd<)#%XXmlZ8W2|2`&~8#@oVhG!9?gfj
z?K52>v*I#8R>^y-`g)ivYGPCI6d{_1N4r)|lbyELfvc=~9!hwdV&5QT#PZ*yK5r&F
z07WN`hh-%p0)+mxeZHorY+5v?dFjD>?s^ZKTiLFxr;k%Bh7CeT4Cy-RDf&NkW-RRO
z@Q1xQ2}%fIFs%MO-?l80X*?Yn{Hc#{6wumeUbe+Du%K36oeeKwt`=Nvcf%Ec#|K%b
zQfUek2<OdXOcC_3h6Ta6JEDrBR{iQQ?vSUo2f97u%js}iOolNnrt(#jZU7j(L9Ea*
z&Gk!=!XdnC;CUO`d+(N%Zg1=p(a+Ad+F9-9Zt?}TuntuE+wOTgBe4ScSHtYcw!w>`
zLl>cfPr}u$d+F{KYh?HP;~8dZ)#ilO_EZEMLzGQ<IO-}+Zna&UO$NZj$HmMxm#$1^
zhT3n+1k3t#(z4#XnRU=bTJ~3T6&t70US!wvi5-YH!mE^ttp(yZ_O`UAz@H0HyK7W!
zSmNbt>McxwxV~w1OfsHtJv|)NjN17<F2}W-!_UeqVQ_86k7@8Ydr<6BOmvmB$DZZy
zR*l{Pp~6N78ZLV=0KP9oc#iSZI^jL*1b?0IQI2jNWoDdcxG{hKG(DYU)J2E_U`(QZ
zfG&y4`<}{Q()8aEcev{PdpH-ED8K0e4I9k3%=#VlsCt8y@O@ElB8lYXB7+@pUMTR-
z<<CR=d1k~3+OVtX)Tlq(E{bCEUH6X+G*z*1?SOcSE`^mEN?Z`A@9*(juy>bN`=W-J
zBolOQ&l^H}qFtFOG;KZ4+yH_G{mvVAAuqrIHln36vFayDg24a@o+U+{mLvk^dk3m$
zo~<vL<1<pOUdPQOU0cTnmWA?Fg_iKSe_a3<&G0Kf2yhtorQmmHd@S#)Y2GNo80Wq3
zACL-Rn{1lbxAL=<e*gl>aYwW<;?cO8@SHT|T5pj#b)|o}Rp5>t;<zdmJ3JHcIGWHb
z1008?L(zIC4>qr0b#o7&!YV+_CYM40C;Rf}0*PpmKK~GV<X;>+OSwF_c~R5^7*GM3
z6vv{V$bLY<j6brcTN+A!DD3~(*8VYImFHJ(z1MO83{t>w-m|$FC7aM^=Y=ipl*^TP
zK{9-`c?j{{9h4Ec1_C<_N*Dk1GIcR0-l5>%{))nwD0Q9qy<Fxf<%~ah&mw5JomR^)
zPmRp&AHj93II$eQOl4;Qx$EX$H36AwY5ku<)zuYTe$uxUS18{OL>G<hCZ7C7cEMiL
z4mY4ID09x-@jD>XWln1=hoTp`jCdQuJ%0@8T*XjNYPFEOYN!Wo``9AP?VqM~ySK#N
zBHeP)oaXy*O-;S`ct(RGbeNsRU3uv1=d?Q950y*e*MS+_kqYtk2A;XK?_SI0+-CQ9
z{nU(L`#ucGJGtN<0bvO6#4+i$1&x@$f^sq#EJl$MPON#Gn7H@(13s&&DR4=GGx_}X
zv!;TLjQ@O9Zi(jt3h{cQ{s{L-3tvD)FXA7Jh!ewtllm%U4cqQ|zF8J6j4qN*kr?~=
z7x|^%TJ?yLl-;=GI!WDQny6izYl@GtpLE)Zs0X57nrZJaW1I9q?jNN7b|K4>Z__3l
znk_oEI*>id4=Hmlag-8@8rGk7mK;sPq@+G0_ESsPPp<6zkQF_sgVoNtO>S%jmKulY
z0>kU&ix4R_>-V&x>dJVCm^6!R&Ccszer<1?$w*l+MBnnLOnV~lQ(h)mbJG@NnILy)
zDla9LZ3eTYJz4O_#$COXAe6_(Gqk$YC^k|khmdn9TETDh+yO9ta*DpEbPWH^g5yc<
zz}A@C*{>~f8?$k`@6}T6N7e0>h_N{U<yO_QMh67-Ly$=XRxr_}Lx&VKH9c)l0mVF<
z^Do7&RFneuL8rGkv2B%%itqji+wuUN0Hd?en<E%3J}{sBx&^_!eH5{LY-7RBtq~O%
z=KwLiX#Du9h~tG_VgIqLB`o|6Wp3YiV*=%qCvbbWSBEygc(_gS-zMr{ZFgL%wUdta
z8v#ND7n<ci&+C7JXSzk=KeBus!xMIiFetq2oz(eYSY1Mz7JL43>ehwCxt|aic6ENG
z=N*FR{x%VV^|0f(e$*N-U#6o^e95qL)2$bUYr*sBkK(2yG+vkA&iO3`kzZGK8>&JY
z8x;qMLzW=Gci!-QsSdbu1uh6lsucC6nkH5^jV5O7q>8ioSc+Z8=Z$J^^SDl?t|v#Y
zu209cy#d3!H%dWHOr>Z%J8^Ma)j1gC#MKFD%$ZPmIr_7;e$lF~a)Zkue;CjYC_<v5
zkPSQHk4gUAg?`^7qmv*PYK<kLi8N|pFTsr5VkA+9MsfUTyW1WAsOM7o$w|d!sVcJm
zT%ZLaaGvSkZ4>Ui^5lK`f)pdq<Fz}IWH^b>B&g$Njo@~&lq9F>RLIA6x0{bsx*PPm
z@U+i#`Yf*JGgW=uL(S&dguWk;6f?_o2qD2nbc$NxPuaJXBt$i3c{>x^dMn9Z?NhBV
zqmmT)9)&7;9UnvLvs5F~+=r+NbCZL6s7QpcP&K#ii+&<Mc*lbMSPHItNnZ1(?$JQV
zWADu<b64dIKPDCr8rtWNr?JMw$w0{C#~c6${v{i1Ze!W;&!F1%+qaSf<!C-r0yI$9
z_&_z-AQB}Wj)8;LhzL()5Cg$w3|Jhg<hcJ)`r-^Z`LWjuT=yp!ywY65ap)A)$an8B
zoOYeR5x_&+5J*M5#e`3<`<U?FtO^yy>yo-fX8AOP&=lS)EmWUTI$B5iw8O24(yoDH
z=~-%+8)D>=)uYBv>C*DH*?Y7>AIy06M>qn+j2jjQ{CSEpJ-E=Ni+3KEf-IDs$`>k^
z#;4#)g+EO9qs20g6{|&c;R<JN^*Q{-_UFktRXXNNw!TmA>aQ!{V2nN<MnvE88cch}
z)?e>1Ka0p9$|TL{_Q&`S`^tp+ph%px7XH<IkFZ^&6l>^8qA|n6o{dtJm%QM4Or6}3
zW??ihz@{1jVnQh5TKq$9;dz&H;@e5aVw?Kj@NHXQw?jL2O~z3`Ta_uaebaH6de{B9
zU8V9W@Sf5f&DXS02GLhT$Y%lpl^G*&N&V<xx16D|m@Q9o!RI&ZftIb5NQ!ca!Jv=`
zl2V5>7BHGA@SO+gIu290-U9Z42A?}XPgF$;9l<Jp9>as&GRoUSs<2f}peBQJ_3S%E
z;%DmvycjS67z3Utg*9$#9)nwB-bCS<7VPss`~X8>oyohoFk<(Ow;sTj2qR816Uo$h
zw-xune#mIYMcp9w8wK8!!irvjCWr9=@{vR$Cnzz?o<G79%gQot@CS*w5j<z6o4jU_
zOT9T00}-liBpB0WV*pR&jhJE#KVo|2A`!r8Z6%`cFt_?1F8vzZjuo^Wj10hhev2ge
zbqDVcplL!mngh(!qK~W5ZDjMyKo_*3UgP7A4%_Bw@)7uQHC_sERD{aRgG5oR(O$)8
zbajr$gb2scTx;liZ)cY5QRF_P)(G_bnhxgh@s5!C3fTgB(!t|9Qf-ITcB>p;2V0@f
z4$%9DH%*|u)59BD<@*QU=iH#-%yEy<t%X&<Ur6Hp8wl8et6QVK=m2({_z+E|7_YU3
zI^&b2Cje<T*+<+%QnhuUK<OUL+OL}s-6aS|#~9@te||Y`m~1XeBWdO8Ga9SA%4rSZ
zNsh(DqjrKhooZ!nV}&^q{kBl{((1VJ)(k3GU{5g$^ecfq1_rTv$9N)?j|+(WI|~2y
zplB7u5zLchtN~iHaoPJgk8@d7LvXb9%t!*)_rS25Qen%T4Xj!?K0wRoD;s~pwZ9N6
znC#oQdr`Oh5}D7s?@zB1pWz(C$%ilHGWDKM@0rhz=W@~kS7Uy;TtH_^f$OVOiyt8A
z+y%berhWEFO1ybhwLR4Lg=EA%a9adGhyyMoT)5dcfCZNOJ%Bzw<h7S(wq%m{mxug*
zYsOLLzRqFQ5MVzM7!4$!v~5562xLfn5ntq#!&tCD2PF989q%wLSo*|?g(##c*d6TO
zZGT+@f<GUr{2!ru1+^hccpT=6=3qAqxeSm?cbLu!nlrnBHFUHftmoA)!=I3F6Eico
zhF_ikeDM5@>2L@^YeI{dA_i08+<V>};}<jShKO}$*mW*4nL{A3-#HJz9T{+oF6myy
zQ+{o18u2ZCgt5`_O}2Kw@2UN@g%WAfYlZuvej5u!96%zteu3+2eRQ?0%k6dO1MVC&
z2ZXKK%1ftIRTDm|REstMH3wcg_pjx4y-4x3(Bs-(`veFQWI3+blYo`lXhm^*jz@j;
z;euHD#5I))O=QN|M6Qbu&&0>Eoy4@)18EeVv5e?8p~GW0Jko;b7A;Bk$omVP18Z5C
zgWw6Rd~qu4V_$!xyeU(NbfgJw^$TF{V81J!MS(&O(X0(U9&3Y%OtF3Y^Xx5P&nxxS
zW<d^z3m_JwlX61GBa`8-4;n>7ATLGbeH9v%!b^YiKz2-^;BIxaCe!(x0UD1jPhjD$
z4Vy5krKq?^5w#ZP?!hmQ6X-0}hD~B5vkg#^TLwf{lyNAem_m2IXJPep2rFLYe75tp
zM@OvwpP}F8T)v0e1mtzret-h9A%F<t6YM?eA^9nQT)<%r1v8~2ZfuLS_MO7qG3lwj
z?*$S8G>yS9TdMwt$4uiZpsM)}Iw|P~Op(;-b7!6|%-g_giE2(M?I%Tp;Eux&ret&v
z(6B?O=LFZe&A%S-P9BO4&~1Dwj_)2l+{99k?tmpH<%3;E-AX#swqdpL3a7YkWprzM
zvwg+nJX(<EL+AyW6Vhe7LZV};P}KHPSiho5P*lI}<WpoD3m}RT2!^Pt;EZyjY)-b8
zW$|)##){pMj?flejM)zoxdplKFMW@)!p|4Dd@q=dmg!hw@b*@r<VAw-^u(_H1oUc_
zGKod$o0dAYPIFSqs)|uFvvoWPpua5wc6@C;EL>nPc6i=jalRdCwprFz<A*Sy+XaSf
z<x@0+VYB0=>DeCo`Ge6A@5EKEUFnur+S6p+8r7~BBYXp~R!F1jE_E8s<GH!6)UtRL
zzwIpT>7#o59-*&kw1NClRHqaGJNU5eJJ^VOow`oe#g9DRHm0k4M$cpq&_Z1!eCxB3
zw#WStbB>L|b#&JG2spoYupZU0>IYBvMoq?2^o6%0#X8yS$F9D3Ha^>i)DEF-5B%tx
zBuV$C-R%S$ZSm}-8e0=T|7Y0_;3q|eR<sp9dFN6jHIV<8!OKMok;q;6Oip@)D4D}5
zJGInW0KAMw2z<)riAw!I>6>JeDu#KJPO=jl?@L75;Z?lsuOp@ktqP#;PIB%YEgIkk
z;W+_LZA1+pJN*G14_fk8L3wa=jqdvh**Lc8q2?Z4EiS`EKm%N&+X_$vLv1CJvJR)P
zI<Cvj^^TzYLT=TP9Q8)m>PjE;+MRJOOU`edxwWZwLt$3LpHva&pU~;fpq4LMG=pVs
zezu{xO&Km9(-s}NE+gkT9$nch%T5&+ksZr|YFKQ7nfuHX{8VW|P4Vl^D6LGSQZ!$t
zX?Gt;X#Y%L?jsS@CM(9ba>88vJ{1Iuk8ZbY@8_YaPGox?(pErYRVMHRHdfSheo9r{
z6o?!x<*diS<ah`$n&jEf#F{!Gi3CiCnj2^YNZW-4+IWrbzmbfD^aLcPew%*76(9cM
zadUtbVI};|U~lhBT4p9;cW`kH=}ya0=yNB`(e35EMWwW!^OU%H8B-XFk5;F5tFHTI
zFvb~NlMC`MgIZ?a9C}121JS%Nm^*XW@K_kH68)Y10=>CW-{&KP&{m?GOEIKCR<RF>
zxD=am>!kD0den~|6hxwbGJju697=MmkbV?l+H{At8Bga72vFvzhohuqIX}AT_4N@@
ziuWK>*I4!?3QAKTy%j&i!pp;q1``|xb*i~O`FQ*2K7WFL<bJ$2qCMNc?X5-$`!Z%l
zlP;nv#)w)Z10RXrl?7EiN;2A<?>l?7qNlT<Xs1?9^80-7>~?Z+LJ-GyVRC!oNKNtx
z=FJ;IKWQ;xRVkMZ38JkJeWke$J`Q?7(t+u-uec?aBYz*`x=%wz#v@)tt+&{Yj;RZH
z-fk4F-IK1pn9RU<<J+Mj-+&LYBj}cCy)=@e+Qv*keP^FwV+r*p4Jhmz%MtG3aFNUU
zq^8*K`~<5ZsB;+b*VsBgVTmT=Qmf)@>+meD>|=LF_wyGb0e#<v-OEXQ5~q}jX1Ynn
z#6ZZ<Weng1$bWIH%ycjapD{?8z}Yo2ix2x==yEtST+W7BJu*l)#d5ywgKROFmNQ5q
z>ylk%3;60r=g;?pNsHCecvE}bZ^E6kazCF`lss-b8t-N!cXoH$*X$QaRqL4vcPN_m
zm8M*Z1J|b-`UbY#c{8~*i}g-z*Ty`Mj=;>iafB=t@DjB5DdMRrL4MCjLVt~GCq3TK
z6ucpe+KKlg=?yGGd`$*<T21qi*zP(_T=p)S(nB!+)9>Ehk9krqmYM%_kskBGLvX>b
ze)}~g2&18Il85htN8D8WF+8-UkWQVEcoyf0F5#B4g&Eg-boZRsDu?!8eUE+Rm?#98
z>Ik$4%H?lT$@&*7#wX*r$Dh>8(%gz6$?}%db6`A&dxpJe4w-<H>Zd83$%idl(XUa*
z*&s4jX|VQHTu`A&Me(mN&$`Bp&#gPEv}=u(nIHCLMkR;+A54@bylB_zMPwXDbk8M*
znegGBwb??~z9jhJ`$>s`%|sm2zxAP0zw49IFbn9m)cJwZB%9Fp{!!mk$H9Y*z_xQ)
zS5d}w<?8f|(rvC!kricz5enVvH)j7ciDO<DM0+-ybj=^i`s>$Xq2qALc+_CLQ>@B{
zT$u)nxd6ozr_)BIJ)<cC(f&Abmxn$A)Ks;viH3X-1#zMZrsz)B(-of6=A&L#_^lu?
z^@v`a4h7>(LJprhX|Fi>7I~&%{7`Lo8~w7RFv|Q0jiLjS)3Mdor?Se`FTfSn#Z-AO
z{L6S1ZChIuAzDBrEExTLq!Jo;oh#l6fv9zVJc&IoN?K{#fXld3TE++RczlW`jM4L0
z)#~Q0I~@xE$Y_{l)@z&5H;!Ktsf)c#b^?LxZ3@}y23|EIR?Fu*70mMrjRFl!lh26T
z#PAL!Z3CH;d?Wl&yY-~!HEq|DbR;L~5>qJR+EU|yk50HSpS9ls<>qXCJ$rPFGu|D2
ziVn)SL(TEK3Mko&+J)?DCkEyAFVa>XZ7;R(n!^><q-M*4&vF7Se+izV{nq}ygMX4P
zw0ZCUPDX9k_+Bce)&CJs^D-VOVpurP{Y)x4F0^%hj;rFZ0o$+Sat)=&x$&rk&I#@o
zDiMtgPlPmjzcti&tZA4(+U#RCvk~jwyQRpID$T=Lz6c>7asRHjH`;8UwF?_<xvTTj
z?DOS7x*bo3hcCbO43laYGFk6yfWFkYh&|bFKoSU~5V7UONF;7$h(zJ(+gzKAl@6Ro
z!LyQvAw~NCYeN3tG@uX>*<a`RDwJ+hY{S|7>&>Z&i+yns7e%uep+ifz0$dIu&RVJr
zC-MYjR%>@P$cHVldQshaShkmn{y);24@fPd*(n97m(lHH3Z+Nql;axIA`mZ%Af<{A
zM7|xB>0Gj)s+Yy$*t=^I)8`BEi&b8%6W;)jvWWoO23H~~JFDa!QybI@=HZTCMD|w)
z%F4Qw!S@~)KljfTZ7d6%X&HtRb`m+-{Wik)M;qsJz<Vd37Cm7JebPVsoMTw5bvk!F
z`U^LcTrD<<`sqDp%!{cLSOR`xo53F#hZ^>}$0eM@9L5s~6a)IqT1S5IH3nH<1|_u%
zqKa|QmaOV@Ql@VjxPD@PLEU^4W0jIj9D8%3Ly%$|zW1z_r{%u%u{Y#|;&Shqp+J(v
zXid~69*Edq8ECOiv%opL7)Lr0xio6;V-PvEy0lqP%<fZN%6&1=gC-^E006hys^ab>
z$?;nA=YYG%@%9x)`V;1t9$k|D;??OR^6HD?)qE7rE_4m>cZs`x%hm?{#4)n@2+EJL
z+b<=WO~YRnM}|_Bq$5>LbUh^tVnJ(<&dcww_a}Ym7b;KZ$)GC5xsCMYI7i8WOxlJD
zRiZ;rY}#YBvS|XkpmGCB)2@i}8kw|+!$@kBl+vfIrU!Rq(ic^U7qai=`+DMdb$g*m
zD!$j_kh$`UZ%|gD*zx|P$x%eSbEqjUley@!Y7YLj&~@bck-K+;I%X~xqL@Ii`O)z@
zLKH$v4!VOkMV8AKWVbv{8vtFJcP1&T5ik(ELaS#!Oy#uj&Q(hxv6#A*n&+5jEflY8
zyY;9RzC%)DWvPzvBo;e&7w|5XS=UViv?A5sKC9~2_=Rjt2qdQ5xI=Zs276GdQ4UID
zlCJ2d0V8Rz_O@V5TUj4U#_3jIbrXM-`XT66&gSNCsFwZC9QRZ?PG{$qS{qWoUuV9{
zp^src1W%bBt3FQQ&`ZXo4%_S{L~0NhtUH?$fli#|Wzne(@0+(n9A)v7TBg3{pNS<Q
zAJN<|(MpKyNQ_l6geL8C5Dg7lO_f8DrjzqtIo$wjcIHke+?2ALy1Nl_@;-4hI6}V|
zh73-*8{X5;v_q?OfK^@-Y!pw1kCVaNcZn>_%=x`8s_p4xMyKnrw=~E^ti>QTg&v?e
zra4k*Xf2`(*MCnLUSsd=E*3k2?BZyd`Dl8X+vdPjkw}+}hIOP|)Qx^aWw@gkB%Mvy
zmHL|HJIPb!S*s;zH}l*-Ptn>p=$1+5J1Lmz{m0s~_H+E!n!ScBaF<<&2D#k??adb;
zuvxz0t0iZxA<n~*ps);EZym1clvV>@Qn;K?bIn|KhkiDXKCscXNOdP(C#Ksim0G4p
zZhief<v&=4MM@7iNrfnV8RDu&oG0kd;i$-dqXhW96dKRbaW!gyEP@#E5cBk`EUU}3
z7Nb-2zg20jq)`15Ne-iCZZba&yHcXQr3}s0kRZ0YRgc?Jfh<2p-wON$0oMHwR-YZ}
zL64O#fPvkgyq2Dn#rw{F5zvG~U%*Gm;4x9qQ`8+JF5DRhslI!Q)g(J)2zdzV2z($%
zRHt#y4+$3z6S<a`!zi_a=0?i`uw5^vQXTQ!5%^q*?}Nl%niqMOH}?Q2G^o1{U@v5o
z0*{qy2*g~rnE-WWT7E;r_(^_r9q@al9?eAky;RS@Kv6A6;UZo#eX3(3s2B&iJD>)3
z0IvRK{Gkv|Dk`8P-3*90sqv{hzFBUuBk|<kLyOEM@k~+pU%@2*+qgRO0eTF|pdjX?
z=*tQ0uui8;gwq9bUC|GSn%vr2zjA;7)-j<4sMc@Bwjc<yaWo87XWtu91n!#ch-IY|
zJYwxFMG;Z8UTQX``L0%CE8$a1+SujU9Xp-p=2sE5V0so<S)Xq}f<m3<CeZj!x?Zb&
zH41teB<lOQ!N>7YTEYWE)G*%jqS-oGAW$;sMo&<;?Wo3T9S8I$FLk3rvDI~jJ8;|a
zaYiFGhu$iAtl==S+BcC}smS@U+UGqTSB)NigxmG)(YyknuK(Jeke+UhQ`bVk8Sf%t
z__fI)XJN%QgTvx|#CjX2!o>w5!x}oSo&Xo|D&WBW5hF=z_E4Z+#7f4f!iL(KFaIf#
z=j!&WfI>rgLTiITWdf)P<G+}VZzCAokH-zWr3Eqdwj#shZCk*1Q^%uQj|I+FISY{*
znphy)D7qO?Ipn!$CDv90*c4sa=hJ|=!#FFvw-e&Xw*He;rJG+H+w|bSIZg7<V=j}K
z8?&2DBmxW&%~xpjbx*+jWBu|99=fxm|6p!EX8WL!1+mdkd6kOg3XmxptzCcQQ0?y*
z4uoAq;9_T2xdV2aI{@fuTeY-1=ZTG?e>viH{`F;d*+F`>QmX--J&V~>;BF((vgO}c
zmH+QWtGN7kj%z`wCi#g1F|F15vnt5<-llXoi1N~ho+;{ls(W(bf|&o97f;`v8L*Nj
zx?Kc$S>K(s|Dg$&mY(D1z(4>p`lL&r-0Y}BN<IXOUl@0&bQ4wDRSP`4DMOQ$kxsH(
z_w7DKBXsKYzT9g7trby!qzb)Q3POC5g>O8ohh0CZyt62_8EiW5zFS77G~Gsw`8m6N
zIH=~V>=^O%dsxSC+wJ~q=O0VW4yP_|JN*yat_*7Wem)UOvQiw8hMRY_?ni@8x<5vU
z*;PD%#!x-1HZ|x&Dk!P}ABWS*aMx;DP1f)FH+99InyLz=K%d)G(~o^5<kYk*_?IJ4
zI@zgZZd$NJF71ngIReQQL*Z+`oUSZZYd4jn>dY0t|Mm-h!xH<<3Lx{tv&+(HA!R_`
zLm3srL<ZL+7{^K`s3={p!mXdo1;~EI4v^WcHS9gUWIU?(kccPR70=FC2Yf<~`WJ_*
zLXD!lj8HV!ms1&!A8bpAN>Rr!pAWZMVVbn0A|b!C*-RtU6ryln5U@UKs%b;meIBmr
zuAPB3W+G#z$TISry!;+Wp~_`K_is%7vS#z~7zo2HvdeF2A&4ZoYy0&@+$Pg$f`@D?
zcXUv+2jC5?Np$sqXuJeYwDtu6s#PkB^$3d$CH5>GKl?L?%U?U+P+$LKj`H`>miw<V
zh967;{uEL7I+BzPeSGllA-Vg$44S7>M?X7TcHZyEOg66;xk%7^csy7&^S)+4%~k0v
zrz}BgfGF`g6Ug3p#)tX7R^=}<m`aJSrh7G^dw?9Xet30d6d*%H*8KkXw4>F<7%Vs2
zR2`WLuw5VZI>B19_YV+po~gOhPBtqQNHn8NFA4%3l)C_3hB(XaxFhw5S`2(xv%c;L
z4;9WD!W1f`{bu!%vBTMV1u{j0$%GL2U1>B%Svg2&cY5BaoyakwGV`Gxazgg*rv5C_
zJ|X(t7T#On`AVhTz~B$CKc1J;9|2-;n+O>9|D^Z%uSiZhQGd6==Vas*99o<H`?uwl
zpTEoOo3a}So-6ZGP>8yhtpYAlVTs#uuJ!k-7*;)ZmRY#ldTq{iv*%Em%%0%rN6Mwo
zva$()@n^Mp7|H8DeBvQH6k~d097n;I)NC-*=v)dd%?-;)1dRkCfS4!OaskZ4BP#T~
zb;qUuXZS_*0Maw#f#?rrKa~u3_`{d?zrV)3Fno)<{fJI<{&n+^f~YqMgCsW_U=@<l
z!?uujq@=*;(2Ifxg$b2CZ?8A7-);M#KOP($G?T=UFYZ%l9J-$HZjqbFuI;~0UYNwM
zjFXN+XrMx3{t83IUD)CF+$@q!$1)S^S+?uCkDEhZ|7+UUS_00=n=8S8rh|dQ?3GSF
z<b@izR|xk2Dp$iJODP{-tEceUOu~dX_)a0)JLiKWEi$ma+2uiKpMK?{Tbu(^L-XO=
zj^6`75)KoEL=?-Z2iOG2Y2uvws`gN3`rm)+zxgE$<{K!jii*Ff0Z6D*RkvY!{Eam$
zB7hj2$qgtr@PRHHsuN+vpvJIsd6UI@Q*{`OEwaMSRoCV5wqeJ|*RaDN!IDP2O0+F9
zl0Zx}X>g4d!Zr@VR{k<I+9M5vh`iX;*{iWX9$QI=lG*1Y|3asiTOWj!ecFx-bwD|_
zL8}?xZGu)VT{gghGppfiUE?pOu)kC5@OdJ8_^gFYpppK=WAHy;(YHggAA@^f^Nw2%
zF^#GC5CQk!Uk>JLa^xPKE+<cL@8d5pa4RazI|o8jha&F*4{|;sJ~-tL=q89Q8#niv
za{s6Ah&cp)0hgip5r7%G9)8h%BA7;pJLle9VcvFJ{En4}OcL4VP)G9F?Xi%jWg#f5
z)%noBG)!2YlKIj5{ljZ2n|q4<Ba<~2-QDD@LbB9}Bz<~Zs)-tI;DOg^YsqV=P2Tp>
z-)VH77dyk<mDiRAdgAjHy?I&xNdx^VTzLcK9oGp&L{77{R#B!gZ`)n`baHfjT7|_L
z2>y%M>)7yd6fc=ckD%!c0$9weGUWCnz4ir$n175qi5@m8(fpl$pwMinpDh~DXK$*i
zlmSY3Df!oP?!Rurc4VlyD;CK+V;uvvNB6-xAcf1qZ-i#}#o-&rVnHY+hfG4y4yCj$
zn29ljm=c^w6MO{H#_s!C5)CdK8&J;7qL7aMN!6rBFD)e(4=O-QS;6i~g-C$SZ+J6Z
zGItmasBF?fE#+aT3Gpe<TI$SC(o3#q6c+e$rknZw;5ly58)A<LO8ohs8S|CM@vzTW
zUpG=Oi_}U^!6{8zue<DUnT2b{9Hk0oG?Mk9eV0V>+EbNQv-@C770L~*L|$FIiAmuH
zt{G92y)p6WE(5Oi9P0t;r&6VN(MLy=+nDV_010EEr_MV+3mKCz#N?VKlpM;Ykc?@p
zuE)ncPciUq_1SN<oTY1zC8reRbF1yI0$rc4g+Bq<V*^v&Jzk32XBu^7=8;6m&TAIv
zsvr=VW&+gE<aq+&z|N1vBeRjRwucgWZ1fe*V*<8K*tP&MTIC7ETs6%G%~kx<|NGx#
zEe#Ye22=;NO?zv5p{=Y{YIQyZ5z?RjE-wUPT7yal@7c4cnj4BVl1W+9|M0H3!a^%+
zgA)20RW0~06o<1p6)-;($$-h&UK10NUcvXhDpoPhf}VxLAz@cYw3ka#0Otp52(UGc
zgM^!b<L7h>8-yB*4XA{`z$Lu!Jd5PlxE!T^LP=E>kIc8JtMzn}0#09Bc(KmEN3+9&
zc=^8E@7t(;J#qz4)kilTEXgL1r+?IYKx<r{ct)*-9$>W6Sn`g}XllF`_U{A2(S!i^
zr|pUY?nuk}1Xn~nNL#zf(h?z>I+JB+00^YQ7copH!*z{YY%tStn-hHc9eBc9_ydPg
z8y;F>MPBr#j|v3c3&>)%rZ+BjM;X8Ub)xbW$evTr1G{OUBR@Y#4cfar15p>Fz{p`1
z9_^hQSz#@Z=+ZZwApdFD6E80t==@l8L?>Jfg_aha`Jc1pALFJ=Z{dGWb$Li;=$`Sm
zeGlyLc42m+xc2zr|2FT}Y=uT>j~dEfIMu=S!F}`F=vW?x$IHMpO1u<ZxP&J&^M41-
ze;qAQ-h3-8#-HB%)f?rRPe$j;d1jPcop_a<MP>G)EN!vc)8;e~U7v{8qd#~9?z+IG
z9Ue_-j5#Un>)?{MT+tjude5%B&D35BG(dqqEEuGlawNnGzHkQ#ttF37oBf8DwwPI<
zp*$t4z<r`2^1Mv}IxeJsHWP{7|4w`>{TF`U0H!D&!_aUtjDbS3ybs)hO&3KBm)J1o
z;?*eP>wX-a&e3#DRc-KfIQV3#iAAgza~sjC=<0NJIPOV#w+{=gsjz<_`lrab(;h=Y
zvrWcmI;T#R2>DLm!OxP>T;V|ISi(4HJ->*Eh@h9vCFm`(0~)q!-Bz~7*Z}ggSW<2f
zXaV{t&^_#d{2bT<E2|=Fz0ky0j}t;~m4VM|xE{;kQa}YrTUqr&eO>Q_mXB-UJe4m0
zzgH+i=!7(mG#nuu{AGnK<$-Z&O~!|6<Gi0oOr%q0|L7XXGS^NK_I8;VHP&A-+IbZb
zjK&i>pr9aN9Idnh9m`h$wQo8MrUGT-c6YY#vl<Ts9Tt5D;@o62>1}lHkcs&glDA(&
zMyuuZ&Vva4xl-Yn1v+yc&QCU#<cwwoxL1H+i__Xp^&&%EaoKSE*n@VvKGFBqeiu?&
zkEbQd9h_W=nO}5eKCBs)RhV^VMt6h3Dl+GEv@v9E_YC3E!y$iZQif)E1$zS#-9U0A
z3INDm0Tr9Jxw2#K+&G;u+hnM&2h;tSP{X0~C>>5h>V58mJ2C8!-Oeov>AW|8Us@YJ
z?_qi3JC1=A<|VLLxZ6SFSx=v2eGCz=cFJ`8v?WEg+u2&Pc39%|6sb%3-?4K4`rQ8a
zS=CMe6|=5RGB^&m;KfM9G>)as#Q^+s?C2T*4I|4A)8M4nK~c&>yHYP2kP%1|eFJ1;
zWukA!L+dME=BMJ0P1xUG0x?ysdapa^zkN-B(fdsw``G#?kq?v{Ju#4h=1wf!$Hp^8
z9+=kY1{*hvtSK4&?3Z*R1Av358r_<MBcWF@@D@vNIivK@X`p1bYVeV)AB<C~w_Ia5
zYEFX!4)OS?DCYu9P4l&)M7--B4lE|{YdKDbhu~-kik3uct>PzVa|>PJ{YCG>K-@DR
zY&m1`29p<{#E-}8T@Snq>LE>uLKf3xs5n6KXYNntrW2+Y*N78p+mdhvX~tENTm~k(
z_hIn><XSlRR<!5AV>;(F;d&HTdUUmIq#Q<2s$9wc>G<H$1i061+HKlz>z;=>n5v}L
zt0vb#e@YbAtd=9yUrG)BNIN!wq(zJlcqujfLiL|1t)7`(38Nb9PgNh|Pk|;7)0R?@
z(eY*7>8sN7*7#W=JaSWt)`67}ZT0V6`Cl!>e;;%Uoam)zef=+^F>zlJst95#egz}p
z$^bb)m9p7VC4T|?%E{;ofTW1a#L!MKvO&fG(=?mIme{LI*&}|fTY{Q8#bcg{fgusd
zM;HS7^L8SBy=I>L`%@GMH4%#Z$VkaZr8ccHZMyido96(GtD>)ImEtzOjSl!BLvYge
z8wmR&TXtRVb-6E{T=&vKM^g+YlJi7wS^N5pj=((h^n+mBpFe+^><kG^7t1+alKmpg
z0J+zaU8On0$FBSGuA^h=EZ#hzaf`5NH^=)(WHV%_|LM@XXYGzd5C_6mtqFI2y#2Gj
zMpQwHEUJXp89+*&|3yhG^AlutIOR8tw>z#RnQ|#3xn<a`{t!7ggy%^m*W%|+hJx1(
zTuof|Sc>oJyQoign?FiP@&@*MMU!$KkxL4$uFoRW1y}Va*mP2SgB<F9--5LHea@=c
z(s2YxU`4wGb1s)JzfR8zk7Ui+S`D$)bS+u)`+Hbf8nn#fpjUvKLFgZx?CZ+Qb3`LO
s6r$is{og?S>rX!fkvfzUXJjv6BdL3eL&S~Vy#A0DmlvxR`4aGd0J-7GmH+?%

literal 0
HcmV?d00001

diff --git a/docs/codeql/images/codeql-for-visual-studio-code/basic-js-query-results-1.png b/docs/codeql/images/codeql-for-visual-studio-code/basic-js-query-results-1.png
new file mode 100644
index 0000000000000000000000000000000000000000..1f989279759fff9803d6c4383c02ce404df68671
GIT binary patch
literal 207347
zcmeGEWmr~QyFLz6BHfL2OLuoSf^;`XcXxNEbciV3NH<7>bV-ABH~c5Aa_zPE?|s((
z@_yMK2i)_xoi)Za#uevzUW6&giNnL-z<_{&z)MPqD1v~%pn-sZ-a<hF-)s`Fi~?WO
znhOgnND2!RD%jhYm|GfyfJlTTrM!HbFo)uM^i;$SMjA*=c1|uq;hQ)HPT3MJB>@(Q
zVnFy&FQo@v3znEzO+`;xq(hmiN=2lS5DZ3b?1lQ<Z%&mUuamF9L%tt!AGMrq@n0<-
zWe;Vhd5mUe+<@kcH5%Bxra=@)r&K~&TOWxGkJewy0z(-C5z#|{($Wb|#X~~_K}t(|
zqBG<LNzXV+mA$>aT6y|RdHe#K2PB6uaQz0mnI%x3WSv!>W&i?2Ic&!%#WbAa2B*^z
zI-ao8D<Okpm?Ys9e~;ODqO4lz%g)yz-v_kHNRdIR@bgSfPEe5fjpPGqMLct%^f&Mt
z3JMF)kj2)(NV>%$j|+TM?p?f5p0=2Ewh{(q6Hm@{K0q8%4IvfTt3GD;owSkBDs!QB
zfnaZthS@+dF~>4DrNkf78@{>kY{$kpE!r>Qko<wm*VPOclZw6N!24iqp@a!JWa~fn
zp5!cH0Q$YYV6f^Aob-gSQ6&l~{yz4Wl*zi3Qm64PDX91sKQ|SPeQ<RkGOQ^F3E4NF
z>0aRvDH6g)H?Sgnht+m1#vby6*Vb)9(Uw*wimBz6M~id!FNiNoMk6WJtv&sUW=dom
zhIBG^=_1JF;N$0D6}^mZBTE$K=4Cd7M#|vhGxeEf=*@!tD2~BE`@0}k+hJx&y1*d7
zW2w{_-NgOGzql5Pq^2eg7?CKG>)DI&oHfc&!%|a&kXtz4N;Si#eG(0|^HxcT{)S`$
zSDb)X{pFe%1m_e)!Hwbb<N_iHE2i(QN!HtV*3$Ph6uyFw&>wvf-ujV`y%1}M8yH65
z0A(jN<VS+)6kt&Ub0vf>0EJdVQ1QDUL`3sF(8HvB@lxOg2Uv7KLJnxgi<EX{TU1A1
z>tm$z0HR}*NMA+<P(dVwJOLI7^a=lSBBg#913|i2Of--nfpLXbiBMsLR5dX3Q0M|d
z3RI3rpZvXpMg&rF_7o@_32=OabL+<_uwEqSbCrPNwx8)?3<W=|GPp8kK+y+OuWGqc
zYk{S7^?i50M)5>F48B`UIi`fkk)VW>!Zi*y$mLP+`-t@xOv+y);Hx-#{?|9GAIaZR
z|3LUeZ~=3H93?tACR2kw4}B1UAbvJBIA$@XIaatsvg7UudyC)>!t4JSo~!qb@dK7P
z+)LCT$!?my4gGM&5C*4I>Qw6?BonxZ9;S+5HIEW{Hk|j7!yVQghh5VK^ak9O0kdyj
zAryr(_i(O**=cE!(;?Qsbb)gLoe9G2^lDEy)^Me6X6J*X@3d*hT#s2BU2i%bJw}Ca
z^XKb`Lz4K8s)AC7{2E#|a3PSW6XK1ZnS>*GFmgiJUKm+7&KkM_!3kcN$OI8*tiPnt
z1eYT8F2pX5x$k*gi3A&wN37w1;;G81{;BAx*C{tlkb!_*ezyV>l_r&P;$UK5BBDJD
zrvqp7D_!eStu(C`t&~NJ*M6Vmjg?Xqs*8KRDScb`rg{qD2JVLFR(6kb!*s)Z+H#r?
z!}3BpNFazMh!#d1y^NYiwVMiu(w*uQ-2t5%jh-4|LV-m){biK+g2d+n?OgcrN=IR?
zkSrPc9D<_yN%2IqB+EqNL>0;;s!XLHra4%Ua0nzxl~H!_<6YMUCAmW?7?d_DWp54@
z@m16E*FF#{45$_>@2cDse0_VNDEnq9cRuG<0>0EF52K_`%c^Z2y;jv>$01|ucxz*n
zlXKgTtHe4FKQAj^CwKV+->2N-)qJAq*?c?o^(1oPNm*v~YKgPvtqKg;K~d?C$^}k>
zdoPs2224IMNvF~dAzL|F=~@+E3LZEgK;sE#+GfIY)pEr+hJB$~f><J6GFd|ArEPiP
z{`vgV1^y1|x%#c-ZPSJ3MISsIJTW{QHVYOH`&-5hEE8N6+)L~?ky=s7*h#octi3qZ
zkxG$Q*e<E<<aOkd<i_OnvieHgO1ZmylOv6(jR+2+4ujj5>2breCh8_rCg59eXCP<r
zTku=u+q=UNY4wIWd(Gt-br{7MNf?N<=(G<s>}qW4t+h;*YwAhrOSK==JT%K|t!umu
z4d0Pe%-J}MCYv<1J11CGA7FBOaEEC}EmgE+d1XB4-05IsqIb`Ce%bQ1vvpD1vz=be
z&(AdcurArxmNAr}m=Vpzn{C6P%g|>3m{T3iJad!d&;~n6HnM4&;;m|>T4vF>hsv(a
z-nu|kZ)$1i%yfr!SKAcS)ZH@Twb(UoSlcHmpI8)Q+G^UAlBe3BT0CQDgLfoy^zI0m
zKr{PQc0?<duFncyYs)KmgczkB?33y%&4ZaW`AftL`U@WvJrqJ{GYt^>W6cT&!4;v0
zpu8Y>Kf+kl2Ik{8vHD|GIV=8^9fBRk9rD67!YV;E!4pC$!T9iaunvd|7?%u-lv+5;
zuLPq)qdtaX#hgddMDE9=W7cy0Fsad~VfexbiHVBrKxyI_H<PCw5o};(cxK>%flH@T
zd3}pgOI9pBLR(0;Nym#G5*883jdPWT+fTb4-RrP+)f;on<J#m#e`9@5{8-Vhu0ZLU
z{5?Y<^_XXz)6R6wHr_(fZh|^Dq~h&0`5gO=z^SX0-q+Pco8q|QTJ!6gh8kvK(Kq2A
z$+VfhMBR&K-)2x8>TWey&Qu|XwQVRsCRTFfGbTi{h+8R=>>^J1(WI1Al^_n1Bxh^n
zRtVMPSrra^9j4AU_Aq^l4;We9WGSD}sr8;}e|PyKz#@nB#3Fs>N7=A8cg=|DQrt!N
z1=XI7RmH4A!|FqCf0S$^PUD{aOP}MLTrPP!`S_Wp0rN>ef^mKrAIlZX7Prx@@|*j6
z+!q)xdR}DLAJ;8j51baoXSZ6(&d#?ETQ58w%pT+&@N#RpyrOzbIYjqru~E;|3%Q!I
zZReq^u&E4l0gYf*c9C{zNf$+7qCwnd^pZDQIzg&waB=Y6)u*GSW*1KaAKe-6`UlpR
zEC^_?uFtEFw>@5ZAxx*>CSt1UQCGdrQW1Mw_t<$`_#<{c*I!r{Ap+rw0Ge|`(O6g6
z>FvW#-Ma=24PH;0OSL|`(e)@+6V{g&*tIVx+M##DFxz?`<{c)UjLxX0i_<4>i>{`}
zf1K{+-X>j;z)QkEM2$yfn%<AFuye9bJ(xT$tX9vP4vtV|E;who@?G86!_Hxf(TCHw
zeo1sSuW&Oz>l%EMa#ROVU!!}{W`FSMYHF}_e;Rfsqdc?a(Dh*memW}ny)*mXg5|;w
z>$&Am7WEe8ZB{-_m0h{{#SY%vH*_;)(k?tlS}lW(9@QTDE~fIXqb<v`%a0!S9-~J^
z%RXm>dmY_fPF|_4_u{89;RK)g>7JIZujaj*9v#55z^&wkvUy%@z_;F$tjCNBH_B7V
zM`WAxes;IMxZkh1vh9lyr4QB#*OhDjdZ)BH+EN~+ll?e&P+k}JF)o)qo_%H6+O6pJ
z@Yv)1)o{LGeoWs)FM017|3`0*)3}Su3#E-BQ`ABJb-ol&#>a{CsV9q-`Wl;+ZY^k+
zPv`<f;Bpcm-w*UbD91s@xIhT$(hrM^AkrTZQi+eVUB4V<p>Tt|b_azT1SR~A0pcMQ
zmyB^DAN7JTG<+u$#L|ium-*r7Z8;y+X<saTJeSL0g>UN$>$IOwzaznu_VQCkM}aEt
z@#u}Niw9K4hxc>VKptyptR`t9D+}@(IEDg&0L1}$0UUt>KYXCLe;$j0Qi6d0{2mMh
zB*Yv9;`ejpfY0ZDvB1ysHNSm=<$(Qh1`Jvb_#elhx6h|0e|5G2KA>$S)Ez)TFvy;N
zKqVDPk3m2LKqN&3-@1bCXTHo>?4An=S&krb1VbPST=v*WU6v{TFf#^D<S1hXDg-^1
zY9e%mB(u|k$^{LLK<i1$*z$6r#wMGwdV06Uqsha=#pCkq(c5K0iaCFr#9Wp6Ec*)2
zCJ0^Sn$HX+))#`55ENQM0PH_LjGTn%B`6wQPDuIp*GdqgC@Abi{mUo*d^-W)LfQY#
zg}(kmNB?ewzt4uhzmN^sznYrgFGNFgNBlQ4`p3Bn#0;%y|JEG8UHrct<GI2P@Bd~}
z1)xy9FQ!zjI6N=swypT?1b<&Yes(GC{c$9{O9@v)WQ2anBn$(j33XbTC9!|4GXX|F
z&g~46Lo7B+H9N3+spqxV&LQ9K{K(-03-!xN%n^mgI&Bc8kDQAC_e;%@0`x`DlH`J+
z<S%#p4-YjGef>KzS{PKM|MP9}hY`mzA<)pADXe11{{5medjkdoqj}z`M*HuVoq!9l
zwPrJGc$5E{>Hl=rfQhE0v>b;uto>iCz9mTkL4B8rOSS*lgZwd7gnk%gIXM;oXW;*6
zS^l4a|AnLa|Kkoutut#W`QL0pV!y`+c9^~LHt(K?%sIR5OqU>B>xNur(etm(FfbmQ
z#?=%5c8m3DgM~uhT^$jKMPj`{4V0wFWcl!!_2G7}9CI?pB2VZ=5bKg0`M>tAekw#2
zm-7}OHmx`0`;FT=tjgy7vC@WLye{Y1xArI}a|E|TYG-sTGR_n^yv6kv>HobejBTHl
z7eEX$d}6(XBm2$phA;fEO*0r}crU)eXAj;TwGr?=oKFUyU5WIXe@G)QsqDpB1-?ae
zS#nanUW=gT(vBiaRwI_-e>h*Q9_53T=esc~8m#usBKcms&v}Wj{+DylaX~hly4*-q
zlAB9()?qH|B~6e)iRM0RU|4ot56Tq|2@b(`|A^hALTk7dMiJeI%V}>k<;dIO5Ki?W
zG`G6-;c_9XEWFPK8H^&sR_Obq*Y#>hmsS1JG;wVe&VMmly0~5m3Yr|-oKYq6%ttl7
zyfE@`p%<s?2-WP^{@^9!4o9-v@3eo8S#OcF;sJp>aO$>n`FKE=!AzmyVoMWeWCa!5
zZk%_oq`Fs_gr@ms>pizNyoecGa3l_^l%Rf*`K2YOwihi$s-8c?D9>4-s;(ES=hc#n
zQzi{~9h^w(-C>i{CUfPlapH@=z~>r@v_+@$aq$rEhufe5ifo=p{>SSR?Yow%Wmx*Q
zd;5m9aO%zgM7~*cC@z|WFIJ74$&7eH#bron#2P%`eZkl4c1E*oJIA|F&wG3xZ?;#b
zHErOFvfSS($88p-=-`;Vx2ikt#kEQ7R6m$obz_b9b-qRxe}$}~Zk%-Ll$TN7_Q+*h
zO4oecX**|}GPNZ4u7IwEZ1mmdQVay%^Re(LJU&lXw3UaOQ6GdS;MeO9d$inj3)W3)
zQ>|Wimt2CYBiu)?4x7(LzLbNHzIb?>qGc~>(<n2o^p~LlPrC!*r$bM9e-h*K3b4WY
zadq|sjdOdufAE9P)7^?9_(k0D^?HnI4|5kBKMb$|->A8+27&o^8YP|pi>gO15|RI&
z!HSN4z~#H&%Vho{bV$vU>$AhAqaL}G`ek?OgLm~jYoT51zTQoEY4G3HQw<?a>LS&(
z^@GqmH7rW8Ti~MRa5`TScq+U@T2?+;tY5HRV0gMe>w6FmS<V{%@#QzW<QPLozG7wa
zyl5-ODO+LJy($|3%b?7HW`#aS^8==n3r6Gad>6H+s5Tr18I`W>{`8GPKjDTrf!8;s
zqVIOU@0p)#4+*+P$isfGv>t&X(^1h=enbaDB#3#G$Kl?PcrKPmSn8pp&nO`heUG}l
z*}ehTIt%9=MX17R5>1AEcrI`YHf>(BHf;~D!)ubYo#!Y|-y0{ZD_(w}L*%>uUUAfV
zhmkyR4QkNq2mUfx_u+@Cetr~NcxP{C_xh|@FRu6FS+**V#ibqME2nR7R>LT=pfs&&
zm3wMhyk1`Q0mj1ZDOwyXH425k@t!j;%Iw6@v_$S3e^*Q}x&ZhP+^tl@=v1vY`n2C<
zNPcl6e#^2ss<1G~->j;Krw__N;5~5Iptj8##-Wv1K)&=7M+7dptdwd~AiPlQjhCiF
z#?bYwwC#8iunsrA??;~LSjBKqGikz}G*k56`b+yz4KO4wID$v(>n?&vg&odVF)Tc>
z3mhlz<96^h#_-d}9dZ8f?biF#!K7#}6*M)I$zisI{mMh_soi+q<h|dvxSt6!N7MQH
z-jxQUKu!~ZunMWGMTgM_#~)c1ut=^C7c*Tl%)@A|rdlRx#+^#?yvo;dnWaDAn1_&h
z0$tg=!FwpOJ>!=SeqR8;B?az*0`m0~E(=!mwi|Kc$)lOAKen?x=oqlQMmV=46E>A}
zne)E%U}%=GKzn!D-!8XSo%G^{FpqHLFCva^aPs6L;<C}yG1_AI62jAOpQmIyjBxtZ
ziMm82%W)snRLq&YPqJI*Jh|D<j+rt4RQv%3mZn0Wy#ti(;+s-P(@`t8PLZmPTVY0D
z64LYNuT#_rv4RNJac1oYX)zBQ)}t#PZ}<8hqZ6$y)lc`=PEbveOUWs_nTZU9dPmC|
zx6&zJ?^9NRJb)FDjRFe^uLU=ncINBZ-|NoTs5`a(LMAn2j70F&z$CmLvAnx#d&1jF
zw<xRF{qR0;&NQ1h91Ob97H})|xeVJG4uQOvv%J>%;OoGD!OQbMq|Ao-LD>zErNBwk
zRJ!iB&svo8c0p5QU{N;p@62Mc{@81Xh>m`Nk;)(b0GNMbVrU|*v$79?#t92gnei=n
z78<n^7g~_cvd`1QSA)*06`!^Z^W(7Nl(u^^=LVYEZ;FM2i<@A1LLB=oSM*(JrjNNF
z=dBZd&#-fPpgnJQi&leit<6p}G+HW?KysUpFQe)Og>Z>pd!7zZP`i(8JS5bFLZ4vB
z&F4w-8dB4b{;j$Yg*g8H95zy1kUzNuz_Xdns79(b2Ow}!UY;-^d$;?7uAUCk({JyU
zQU|h;M=}}+?ytx2BLG1_j(gM$ssbt`qFxM6-r3V6PtgTy`K-!7=ysug$$5dnexsi)
zL>F*kU9#*;XgzjN8&F;{+0AUh?SPYi)fhR)<Q~P)(TDG03Fj2$i<VpLh3_V%eV1lC
z=}Im_I9tDg7C@FeV*Z4Qy`oD+3ueY6J+VCVw?e_MGF#x`@I)hUfUap@s|;G_x~%o~
z2Zs`p9Z@x|JkLo%yu@*1s!47Th9#zkYYgut<u(D&b?1a-pLCb*)9p+=gY8?_-NKZ$
z{k{nL)`AR^QQp1+dYgOw&CQf2oU>TK#~i|%W;!`jZFC5(rkQ3%QITi4t{o5R9wv>d
zJl=1;w@Exx61$|QXVLOJ>B(1!9SVg89#ao`BpMh`!otiv1c|`IR+eCr<+eo?<e-zP
zEc;tb82bz@!#n(KToZ>mpZb9@Ea!8SAp`Xt1^<nto3ocHL3REqcB=ky(25tNg~ov5
zH64$f3}X-4k_KzT*v+sA+F_a)kMO#e!C~WeG&sJt_6=202Gjj{5q}g>&4ixjZ#Q`B
zx?kA`mY{`%jsn^E(R$IR?Yf7an1Xzjl6*h3<n9+&{Ut#_zK&v)Yp=v!bK`S)E6l^)
zl??@XU=Og$@h(?<o|uwbE<Y`1%Mj;nAa$4?)Xqdd^jy@qm}Qp&p=X@g;KtXf<oL1e
z$EVN1Q!1LYb&a2lH}4Znxo!`Ul`x>=cNTPj>}U{-Z-nBAG-uw9t0{(3cmRo!xaw;J
z^ql+(FFr-W_|~Fnw%0`82YPeyNd)1*FmONjD89(rX$|US>WeKa=UeKs2I5yf_a~bM
zoJCU8X=lNxqc5(^Z7L4S=tl|igt~`c;dT(BLY(!oUB(61Tm(vtq->i0t)k7jLf%Qj
zhw-_cYy<-@o6UYaFPcrI67tzhQcdm@rorL1oYwIuwOx;5?=f<vkRc+4l0F84FNSf9
zKE+|1Pnlw0|EJ0m$%gv8k?78$!YEfdBZVhZ{`cG?mz^F&#O))qfagH2Ch_FC__l)S
z?$v<`SIrj#<a4v?)qqp!jgB69HPigN*UloZxI6TCPO@}raVRovg<K0ZZtAHck9pwk
zH@MYL%4`Ae+tY#8ZR*O$cQ(X4sH~Ucca@AxBKGzboPJ){MuI#(mKF|+nF1%he%W(2
zbM3Y>mb;q$bZ_cLKn+*HfECcdNPW7d4RRFBzT)YiRX6Z<6a0d-Sp{d`4ag_+7)qp)
z!<#-L>U*C$843g+4<C1fLqN98=y=eUk%SxR!Fn8byfkzzz9u>YQtqvY0C3AMSIZt<
zgY<0~bGUgSJPqfx!*!$ftMm6OPY=2co5`B<LCVA%6IFwBxPu+SVBij+NJ`%1<qQo;
z5brT{T=iE8312Wk_1CU?9RMN9N~t~%kzvg%%7YNw$qPsn^2DRHU6xoGpw5B75E4Q6
zg_3Nyj_jyB6b2b?4K(A+YH0vjG9(kUVNh!9SiiY$z48S3uQ*E%j9-?eJPI_$+~tCe
zZf%q^aL?Yc{?KpFIiSG8_L0w%$5;H6nv~;HF<pmgq`f!-`jDi3UvLCU(V97K22eii
zgpeKaqNvF@A`oGuWE)K8xrd$nm}sjePwX0!_=CpntV-ErzU`Dym=l=i(Arlwn-@Wc
zv*5DgeP_jIuEgKfD4)$&DKl@!Q06@J65o{&M&RUi*lKMQ!|;IFOOz2z5}8v>UC%h@
zq?F?ic%h7yGz7(=RzT6ELzu2O{c+_vFG5a|>$i^H)AC7ugK=PW3(=6maEM4g*aBqS
zl`T@4A2s8~F$J5j^L2gCERt8p?Y_7BRdPfp)QgS0XEOV&>olbthiNrwl)=85WL`9>
z8Xsu^ryF^z<-S{JuIkn}K>og4Vabx?d`viBDdKd*AN`h9(FdkU{b{D{5nX8lQ^-fW
z%6;$sDXWEKs-Z|V6r{df_RE<xQzYTY0k+E)An@AhlF<hbe@fW=6H@t^B9)5fsJc^X
zInQl=MFV_i)~UO9kl)?P<7I>Gym`@!P8bSJ?;FNUtokK37Ara}Vl|oMgL{buE)4{H
zo`wvg!Xy=%a`q}AVXR!R%OU1b3}=x7d;Yuqv*S)!`tBIOH?GV|#$Gli{t^B7zyfWJ
z6-fBags9-Skm@MhR;0md90Sj>{nW{%%_o=&2e$^wiXIj$t7S8&bP{9Si4cs)-Ds0B
zQTc$x7d`@-6Ms!QI<p+NlLJzv>cZcq%JMePfn3|!gU#!8fZTC&Y@Am?PtyiaP-Mm@
zr_3?Us2N6KnNaIqR_J$q-K`Gr-;63mZzlRsHPJ5U?Bks&cN@hv|1l~xmgUuZ2fcR2
zq?F_vrZ4MfK-P_f?{z-T0o8LyN!0SuP(|h%C>j7i938RB_)AQ4hX>`kCi6o!$SBJ8
z{?hg3dE1Sz<LMloCQPQ;2CLE1lNTsN3->Qeb+%_Z&r`i}{qASg9k`J{>K20MOewm=
z84-gXC8_2LNAnJIlCHgL4G7*V<otPcj*n1DsYugtjBa6dFT`*|FBMf6fT*d+*WHE4
z|H|yi(Wvd|A$8!fCQdOM<fh8M&eDTj(}YddnR~BhJIyr(6SWGFaR(?j@LyPaj%XMR
zGh)w37<5{u``oV+oRD~dz|z(zIIFtx;x0i~nlr<{(M|VF{_*~+&3W@l!$5c43rwvF
zc#p4}STfGt5#G~PGldhi{nn#prh@}z+jmG+cU1>BVn5!~epcV}q*!%|9rzrIhir68
zbJoYTFe{GJ6F8h_&G~CdyTc37D>L<j*NM(80-N`9w7TP*y0K`HfH1|%Y?|9vn&AXc
zJXZaX5k_HLN7P>{NRY!hR!}RqgEPrybR8*~AT}h}#KdOanXr_=u`hlT9&r=BAH}{*
zgLo+iRQjt4@_f6L5x)h=95Jx7QGOrEl3L+i?%O8Y9`uxuwughH&J4#91gr|}MVFgR
z)ta+{WG32*_It87^S-kulBQNDK}8RA!W^aF)O~t)i&RC&$2|n6hLoKr+_>h95_-_?
z+182Hrc`yKmgiH)M~`UQCYQ|NJ{1U({^-sT_=K9r#<jLvVKU7N&OH_BhX@&~Xv!C$
z<yv6z?f87AeghB5FvnN@mZ1xrAdA42LMnmOAdmd9D?$&4Wfd>d_N`44&%-bPc<aZB
zVuT$T*#-<A)UW8c8u7farDufY4+Fzi=)@%x5?b!V0%;F0SmqF`y7v{G&q{`aAo7+u
za>@3(RNrmdu(3Oiw1A@K;j9a11PT3!bQGn<5BU~LW}~&^%y8O5|MRyw_dmUWp9-n3
zM5v_Xir1CZ0Qfi71D>%$uF2_H_r39~4vD@dgSeAr39jYm1YLt92~FTf@uiV7G0H)N
zM&u=|kK4NUa}_vv@Nyp4wV+Fy1NF=C#7GmT&JkoXPuWRIr28v}A;w)pG`3~ON!f8+
zY+?~|W!l#3watecbaE4I@0-m{!%2)UKqX@65pxfPXFl^>Zb$0J0?zqB4FWYTerh5+
zb7G=S)~fdzqEVPBW68=jstx5+(wGmWDxrH2sR`q<fLeOI-{wzw5x&TNj!Lv|V88s~
zy){m@laK-PZfPj|jK4c0zU_>*ORf3JItY=da=RfZKJ{7MgcNm;Y-ALnrR4|Y*W9&!
z)&6rM8CUutcq)h0ZkKbWT^%n8ULCi;EC)6mkJx8oFwm8zK<&fV>(~V=;PjDDY$s@8
zm;#Y@c}As*x<7<<UpmPw<0beeu29{krS_*cV|=)6`os18R-}DN7WjOQdm$xA6mU6v
zyxN8PMQT!pnd`~t@oXji)FGp_Q1HZYF`da61(`hUo=QZ=L{-a}Fs+T)5Xo~a2X?Kj
zM1d&i1<lulI^#(Iu5yHdLB&dW-ec(kdS}Dz)GpSOjn3W3;uy){sSHm3)!zL?ZB#Pi
z*j{%d*jMma3;+NRN)~7?X{1}xG|0x7ODHQQVAM+pvl>{r5f>F(<A~vs!pIQIbN_~d
z%M-i59myFv9?FmK2m$UjvE^{c3puC4YLC8niY~NM7$SXMaLVG0efu=yWGbI#04wUE
zE{{ZBR7C9doKxW6?9S8@6bVB@6gHCVC+?Im)S?dj!hO{2VAOe1jJtc<>jgRKS;QFt
zYAGzzcd<oJ@a46vz|G3j<4mq9Y@k~hcL3}&EHkGBeqqc2Lr<(O4|(&&`N~u%jrX*l
zM85}Jl}5f!zv383@~LK8n)WtM{`ATMHY61T<hUv16j52OLmOnBGZ@&!9nYoVp}|8x
zNz7|0j23aC>(0746N?u?FB089@p1y?QL=?Fzl|wejO&0j4lz9s7P-exZb%*>Wf07V
zD3?XMzNCe*XOK$0J4g+lQG;n-)K#?LUP_E(g#|RqS^6@okS=gVv_up~h<M!`Z&0qH
z57xU>?0t=Hn>VA|JHx5;`Z&iLvV_&#3Ke0}G>D+{Cw5_l24JBFIj#_v$mquvqdIjB
z8lDP;Nz_OvNNCI_y7n98X-`813_Y~h3PGi_3z1XUL@cTfvxro>&dT&Yq?a&nM_tK8
zI*`fORaum`u<4*C^Kiq`H`~rnkqv&k66D>X|Lze|XTPjb*jlV}?tnDl=ZzFtiM1_M
zfN%@K^7l;J1G+}4ZTx!4V}6)Z1LrL*4oKN16xGwmH&(clNvF{`tnN9Sdys94^LYow
z<2tnbQG<DHi7EB~jw!>@4&=Cq(U^GjR)bk9fv9qcY=12Lb1ASPz3uv%@irFl*5w3>
zeM_e1YBEOs`Q9UT=EkPU_|#ZKzQ^lzV@CZt1lI_OEZWy@*4=vsDl+|gf~GxzGC2}Q
z8gP0A2p5)1$8e!9cT6;s2Oq9hbTLprtP{=;y2B6YEF=b#>ENFlbk;lp>7MlGaZUXj
zVRJIvL#&ucJav>$@zEZk9#j^tG&HCFsj};TgH1@s82z%|$(wY6&yaki<|1h>Gn9Gv
zH5^(=quWw4r{{)z9OW*dBBoiLQU9xStEDEDmHgmy6=Ij<tf(TBdP!i{jqE3>tTw%%
zd-`eg(!JYx&e_~Ko_EtRs1Vw}X5gLqU?G>$LX#v!>Lu%!q2MSwn5#$-G<r|0gCi+J
z1aUm4x7>{SpOjE!?U!#V`sQr=Of&4nzADbd-zCHj?j8Zya;VdYyH0`4ra!D0w_?um
zNQTQhX_9!E1URK2WUn<UhsqudYS~j>QmeypW1G)5F`cL1e+|2_0x>^psNL%vW^!&Q
zO~j5wey0M*M3-rG(=f^Byec{#<50d&U!kGj*6-<?l04?YyXu4d7%>lg1CmURQT`{P
z_YXISbAnE$@teEX&uF;7Hk6jn13Veg^iFKwR5yTPjRf<QIllec4}2tAYb|>#P#F!s
zdr+~#0-!X=AWfUr!o&MHLC|J!G;ASOAy6_K2T}9%Mq0O)0vVw(H0&d8SNxAga9sOp
zry7g^6WmP-z|gw66sXG-D!MIPE<*HVtD2V&Btea@KY`~)Rc*gX{IF~_Kn;6?g{9w4
zXfub@3D-}AKcqQ5=-^ENE_Upz%eQX_<1+MJz!`)_SL~JtK=FE&$p>s(!XrHp%27%U
z;I>xP<NR=%ZO`NoTp($%31z@Z06)G*^e1?z5!Vg?AzBD-o=Z+M$|c15(bYsT)MN#b
zmi_BeyS<wSyi-|2t=kkf2~k=vd3wpp?P}UyW21gPb`L|=NS3s#@l$Ln*U;gKqi@=;
zItVu*)<9X5<=QP6k8p1iDTFWP%|L%+GRnW8L;W>-DLL~#sd>coirpjgl1How(k6%s
zOhCME;1cugkGrFfk@w#7X#=lCS*7sNi;pIx>GAT>3V3MDQwrJKojo)tHtgPQZ+GDr
z+4eDfL^I({QZnaUk7R~?e2u+%2o!gP6-O&c365LMREP*N)}-Cc%L33ZM+k_#G>0`x
zTV3Z0bmJ@DNs>ksbpl|*d~9E-^O+jKU;e?*4uJiC2Cmf*0&le2WFe>m!CChsEEC1}
zHbtm4OE(rFr4UJyD0!{jqWhz^mBwBR6*P_+Ej(D5$)PtRMbmPz`;AR>Kc_YcdaOf*
z%F~Vwb5+|y@~XbA1qFe7zrs>wMl(?0G+02~#hHOrm)B&*w1s}-iv7$1Cnr}fO3qaP
zsZX~`YPG;^Me2x&%E~(pk5U4aN+KYnQ;N;=`uGDZ3@T>yO@!`!-bC);LiGim4NYl5
zN5Otw%}6_(exX}RAgs@Bt3+;t>(P&Xa1wBSa|QZM`M!QSst}8W7L~b&rN$9La4lri
zP7qKcaCIm+<Pdu~C@OSx=WXSaKS}FzF)$ezE+7PPmvH4JNC9gi?c}5L`FNiZd*d=O
z#Io1blD%xQnn9TT$NAG<9M!5^^G5pD*!cSic046<&BbuZl6t*ddCwqtmB#pve39<$
z#f)xDLad@tbGNqRxah9ol<{;Eu~lDL9Y91CEN1E2^`PgQwrE6$fly;3gK=3@3`V;-
zcBikuS)s^s%^S`&PcZIrw{lMABW%cDlJcPQ@IgA{sC}|&EPRAc+vO0^mcpl=6HBWh
zVGN80CR$ia{)x+D`8gKTr0{{x7s_0&A3fL1L>|zvQK41ij|p!_O=vZXTN#=F3}h`(
z()&G>LnIOT#v{2FOXsv$Z*O|fp#7iW7AWo*%8<>Hyz_OaC`oy`QKV_`aYLTr;i)wH
z_cpC=0|~1#t38;yFat?Xlk!i6i9TVeK7iLM{jqEFoII?&zX&vzNSoHM7_Pw)MoH#p
zsp#}&GLV3D0P60_9VbdBI3y{9>S4C1!Zr8^!Q~CI?PscK#q&%ST%0B1cN)YAD#PWl
zaWxN?-m*dH>F%B5bzv~9S#G3cg{Zh&wPh6RG!&fkCU=<Im7Z;3`orDIQ(0Zp!lkj>
zThte8oB<D0fu2*ZhxKGv;&YHR?FY!#+k1G<hLjL47UvX9D!*gg^$~&_2$2txG7?=8
zq3RsFcM@XYt2RK&^Ijz8bz(GmtBC(eA4Tp#07->p!<5mDLW#LY%iuSBny)Fh;SraW
zr5ejpck$aDZ%qoF(efCZ%Sp(kgFiB;t9Yi=DQnO*eD~kfRuA5clGW+Bb3cs@NsUuz
zsa0e1S1b&LtW8Xq7|Z%vXF*+QVvhsHd&&Mo0_4bxJ2?--b_vR3C~y|wGI*8AG5~&c
z^TJ(Kj$<`Y;Oz$^04sIn^an$oI8IMPzjC^4rh-Kb0<bD=9ts{U@@N?pz`tqdQzDc{
zE)glnZfl#*y}mGxCo>R&Xcw`W1)vxM+-&#i5x!flWB-Vcv3BIYgQCCl>{u>P=Td^J
zz*DeHXBi!=0M`xs9N4b+t1nkWcMH@3d}D3O6Ue3pRg=^+9IeN8dTSpm`ySbloat>`
z)8?$3#+j>jpo-BH8M5iUKAh>dTuet0n3I}tD=4PBrwlPI=>@>A?F-`EKc|E={s^#K
zC}xC5O-FowNC8v@D<m;I8b|svzq7|?oM1!Nqa(IQWiZ64ov`3XcsFuKmUvvJo*7)#
z)ov49#HH?V;{=(HiD6g%(GWgKUrj*#{BXEps4NC)>)`@kB1RucQjNAfUX<GcSo4P%
zJUV2|4}Mq>CQ04FbABmOK`N(T*>5%yFiiySQ#*aN)ljlkP|-0k6xPKc2~&3j8|X(a
zI^siuSmFXec_0nAm>~CD+cqAeEYt@$#K;hmPFXy-v)EH~y>BSVyZ4OvYV1(ZnHT~?
zq{uhE7gywW44KSKp8mSM6v71LYbj15FBeuG*;HW5mje+GDFcrHl292zT)HWkp{Is3
z-nhrvTvNk@w-x|ks_h&|+?3pCs&AkpBF#RlGyy<V*GV4%!NU6*^i!*Mw<Ejjz4#vc
zl{=ycVh*FcE{nbVJOxg*OSWC`#`2Le$zK<ULSCU9SA=Q<T-fTe#}T~inY7Lo(&fW8
z|I>hJL^dY@G0uk7kK&>coABjbN$DrB!5~bX2JLhcD-Ix+{<^O;yPl+~!-)|SnsDh<
z4Uqp?Kw^3<WF+>~2axl~qTa=x&8IHFQUpgP@i|`^<6AO};Wf}q9<6D536Fzzdv%nJ
zpsDj=2XqsjzvTOD?&lKb3oEfqlXUYBlvo)SWsPeMQvl4fw3Y7gFc+K}%a^}V%&_NF
zi+xc6_gCNo0#1$-bmYnx<<DBoIGXIsu7)xK`I(TsSuo~U<eKJ%==l}Vqbxgi>)DYV
z!$9mK_a+@B3c2TUhAKb+!HFHDsdnVJ{vPm^dG7dDHDZ{dE2b0RnKigBTlL$088fM$
zaX{KRZW#xlyi74YqHWwjDNHlad>I&%F$s(l`)pD&&ZL=1_~h~K=%_*q^^eM1L57f<
zvVCZuShzd+YCd*?F%0xGDUJw@in;D<k~X6?fhs8-e55=^q*_2f@zP{_JIb9=;u&8~
zA~*5GaB)Bw;yQ|a#uqpD0iw>-jkisaipNofB^~}Eaag|3C2p0IUVWUi$ZJ@Q{0J3J
z>X`jm1z>=zpmMq&$8U||e~O?X`8IWV_tdRvj~O2}-c%?nNQx*5+fok%seBd=4S<@e
ztd@tHKDXlk<=23>FBS2X+$xqG@ZiU9`-E*(1w5TX?sDEBg7)k3Pu}wsqKU=t^T$^_
z6=WU&@xAuiNkRww^QNe;veAb8L5<YGXr8BK{<4f>7spfcHh=Sb`np+z@uo$;m-tw>
z7kijU`X4S?@yEY(QR5t}p{>4Lr6BGvS^W-z=z32iB^)R!F>8d#d#<1nHTZ3MUAWLY
zkaH_FUpDKU$jwN^HkG5mYglU{Sh`QcI7vCrm9bX(>AH`f?M$Jv1gIL?7FD*mx)>~q
z>4rIMdZj{DM6Z`i1XvbYN4QcyesdX5@*ml6oKak{yd5cH&I(kBwE(#SCM9j?E8j$H
zGS9};ue*}a&n`f~>(EvsbO0QYM=ibhx>_-$D{q{7W!dA2Dg4LI_nh&xW{`1p`^TGr
z`Kfz=M2igA12_?(bEE1>IqqH-M|;vyHmXS=WgtiuRUH`NSU;C)G7#_15yVX7l3OlI
zH32X}sC#s5@ClEj7I`;S6okhu_7IU6Hpla0)dBEPp!ij{{+I%LqaQSqem26*-qv{U
z2H-$b)iP<p)IY0$u}O%_C7-s6udhE(Yek_-6FFyjZKb78s!Cl0+eb9UVt<?c>RE%c
zuI=lBAk^`eiK`g7H_jTsF=3x|4hy7(B)l#4HFIw^!F6I(HOvcB!B#QwsZW=|*?<Tv
zkg5@REbAtn$DXXJ?WBB;;9C*L1ME(d1^^H^Q-60m)DC?_Ei*5mrs6oVSJq^GeyIAE
z5dSzHJq!$4iix|me`iAupA%{|vYi3mv+z7nLkiru8Id^Fq8sa4N(cG`Ka;$!g4ZVF
zB|cjg)l$qHKmc;dtVx(W>H@iv)$)RCkv3rI(;lY<)9yfkhdlpEXeOQ;iEY{bo^8fg
z5VF|`6+it>@DBp^8HW*&N7*U9B;AhWpp|9o`@HlF^LPV8t?v@_*nj3uBl?fwM!21s
z=07~6h#8S092(>`rtpaFHQ<c%Zp{%ChHI$)gb;=R!ERmL=5|y=O~(#k*4K~ACWc$!
z3G+y(OpN=09Dz#oo|CPby_<{VQ$DZc6VE}JkqG8mGs6#G(`G;kMDM+IkAy;;*G&gN
zVhu7+@h*Mmjh~Zi)R8>Mk0QV!;X)4x0)uA(f(5-N77&=|qluAMlHVZ_KO@s6$p_=&
z1hn$g3jkD>-%#3IT_eN~a!^XV{$<iep1)%(SJ?25Cp(%FtXNz6E}hR$%(6e0Xgq-Y
zN)+XdJ)bra<;G*s!n0;(G|ED5DS_2}dGRXarP$5gKC=l;kkvV3ftm6gW1^+5fJ&$|
zJ{*1Ac@&EQM|V5YIPu!BPPW+If&_2)DFZf&O#qZeBRO6Wlh~LvPIn-nu!)k+(<IGx
z9A{i4|Ff8S-Z_zY5bmWpNcVxBIVUZLU-r5M%^~fT8U(pyu`I=9)TkmMs-aHus!w_!
z23P&64TK=O(~xh5nDe`Yjp*HK{odd#Ic5Mv-Q+4j^F}Z;R=Z8Q<5<dPTWB*~dwzQ(
zp29<jKp8}(Mab4pJ*@J|ruk$6{qErk;YVG-8syKIVCDvvAj2b>YI!>FuFSN$vwK4F
zs|`JoyW5PO?<x?kpu2+MBm6l#Wee5sMUw`DK|V02+qOWhAVmO<J-!mPo>I5gsyTm*
zNVbn904{X=5kM=u-QUQYEKx8L;cdGreKcvNJ{jryj=H&elji<(VB_;Sxpa*W5)8^C
zVwEgTkR;Xa5Y87FrZN5mAw>u@AuHMf((ogR4meT+*@;do9ArKc^4c5!=(}gGAPd|Q
ziI^CqfDWtA{QSOuloYKD++ZB7HLWA8Bt>LmTrykeHE_EuJIly3A=?3uS64_E4|}>#
zICJYg{^v;}tQccGPe|6MuZSc>Wz-HH*p**^(&h=3p@JJ76OmT^Y8$^S(lMn2$&nj?
zhC>7@eowTp6Ko>Fqd^})=VE}RHt!VL<qSk0HmkvA33wu6{6{2wVoTvgaS8o->l)5$
z>4YgHHL^FTeWabEKsiHj1!%Nx{S?XqZ#K2@7*_$FTDU4aIa>D42nd+bR&RcE268rE
zu6og33{HL+z{y&}rwOvu*$f#_#I>q<Q!MY%;rbZ*#mr*tP)=t>NoPJuaxA6JI7MWa
z^ZvN2`u%)q*8_lznANwKfp>~SSWn8bYcEEbC0tSxMVl*4CI@&dBZZg*W$$l$CNRz&
z0CGKOE!27M_m)+X`!n))XM>aS{JeF;&$_6E%g~JmXDBxFe4<{NEOMn4f!0V3{^y$O
z4cq{468TUEugB3h4Hep5?~Bj6qJ8j-;^*89Z{qL3EzX<mAOyRqZb4G_`<Q*d#~-+2
zkv22kRd^gWQqbM>aiWy^wPI(5Xj(Ut-5<KNMI^97KMe6ArievWv`aFCb0pZ&5SuX$
zRE*!UDaPdSh*aiegT*mixzG|tN+yT|Z4^dI(=`@+bgloDF%<waMD{y*E-=SQ()lyK
z0Tlf5o?MLB+AD|qh7D-rX^x$*L$4wECiSdnDY^w1GBK27S(VYinH);FJE^`Y*1t2y
zdSz<M8wLp|SXw3;5$T7~c)1YfCySqTLsKjuS_d45KfR@&UBa_OUt_C#H?lClUS(Yy
zWL%XQ?hSeXH=G&(*}Qs14Gp_nA=m5i6|e<Xkg~a^bC^U#v?W)AIG`d;hqLo`bJ^uB
z-48n+^?7uV(05h>;~^nObOFwjoZA>22?kh)rF?diZX4GR{W#2<2`S(sVI4vD?GkKW
zwHE;NQu9fTDeQ!j#K#(nxH=2wwC@Js_P>^-H4FB6GP$nbq;;gcbAEcbsz=sXQ;zXt
z*at*|k(ql_r`3q%xNt0_!a1o|`wf7`0kS!k)R2K_Pd46#L*&!9rhcTrsu(}G!^)0;
zmnjL#P05=gnQE)8;<No;su8IS9+X+CKePwGi?Hd6?<L4EnTt#QDoq_DhS<t*h*m=-
zH@v91F!G3Z*!IE)#V7t09mxiAbX%i-8cb;;A(^UD{2<^iqSSQw#e&ZQ4Qx%jBA)0_
z+KRYaITWJ07lL!1WGY(Lhl{xK9>NF0s3xdt)wJ4pdnT<yUb8@AHaIkHz_b?29GQRW
z9n|2nTCobNB;OOD^KE90Q?y|cGTna^`&CROMGmNi3NZ%yXE-qRzDAlSO8jiJNCEXK
ztvMyKj`a%bpq@D9iAvi!%v7v-kfJM05ap)Os+Q&i?iz3vT;!r~9)O4v-9%U`EQCAq
zF33C7C@PD6t*yCl<gJMY3N6U0C7VAuSoa1VbKxM}<c4A$p4&#8vHW{ax!h(q>v&Uz
zI>Ym+495w{eE$36>^;#9u#)lHM}@aVn4$iSqk9)j{nzTMq0m;_F1PU-zZ1bg6vo<y
zhQo36wsblAvS-a&iN&-rks5tISEp7ubdjuEoUvTzb-%2#ns>|eT~<QBb9xmyC|H5l
zK<I0MUH?9V$!+C6yn)b<sAFHjWk8Wc^9YZ7IZ7F71W6WU#DPToN4!6G2D@iNwQiVh
zGYNxU?IncFii+SVWmNE=2?VrYHAswYJ%KJlsVP4EM6c+xKzG&X07jWu5EJjom3!zz
z{wqG_$*gsgo<MWm@ygj?3NUgLJvfw2?w<8%oF_Y-#H4au8aGpqo6QvJ<nAVT9jvO=
zPzf3J{dF&T^;S<llE7{yJ#PZH2DxvvN41Ra>q4ElbewMha=eBUayy9~5_95W6Td$k
zT5^!>F#FzDbKV6Iw$yQo)!kcWRxiA-9jP?{DO16pTR&}P)09c2U2*!gwD~5SL$Q$X
zEddmUTz2&!+F1`E>!Mtonp-f#pa%lBxdW9%QQOR1#-^!IP~$OU3|!}=4^Zp$Utw12
z!Uzx5<$<D;%OhtseAJdn3w%S1g8IRbAub%LSM)|Qft8${wq{IdP8NU><^?b6jLpi4
z%GR|`5610ZFi{tjvYa5<;So=Ga#j#G+qTN4Q?W%We;<gu^j_xhna>JD7y-tldUO*{
z5wvcS>76JBFy6!A{MCE=gE*bdj)=tP!|q;2ksspDdZkHo3$YOgaQh61iBZ{rpg%E=
zA%5Rq&{NWp>NPjEku*|lcBibWjgFPAPi$PZ@3mm&rKFyzeX6Zc4sZwY;-i6?g*M*5
z&dWJIm|;*z=W@V8`p=#rUkG<hKb2F3+1DG#2pK|)Oq5BG0mnQHK+4wh&V(0jYfn}O
z@>Tx=%{a+2{;^}oOL4BTv%FeQyf0_WSsYlT-!qCead?Oq9Zu!qt`t&B3GlJM!<eQ{
zF$;iU^6-84!<pWo|FJ)cU!LXEZ19~E;$(9>+XtWS%T8YS9Oo19xE`A@Ol>#k#G7nL
z_2YBjm(n9dd$|nnU9{9^96B283wh=Lc>7*Ru+oj(iYZr=Q>>1~{pwMCQ8}5922Aq2
zVz{wm9f9Ls0L#|}DF1boJi?q&bXLRMyF^OF$dSi;rI#^~1-F7U@G@Vzom@wo@<raF
zW??as`7^`CVWMuH`8PLI<34skBR&Fkf=#m=iFh=e>w?Ho$W_P2R7{v#U{sljmgxw#
zpPu)GZms8jKCkpLpt5DtS=T6c5a0applQ?M1a~oLDr81r+YV~38bgQ6Yt#KP&?Xr3
z>TO(q#ZET|{uRLkm5eV9$`r=to*AwV{qBsOz2O@Ih5U<yorV_kwuAd+$J&z5e+tUY
zWWk;XW0^8_i$6L`rXugobF*SUSXv656Y;Jvry`<VqvW@f^(+a24xr1=YM+7MD1C>C
zwLk+@n$TrBD&5Cr&~}YcS;18-MFf^e{nhlpZtwKmCiMVQYx00pOT^ZF{H+0~yK1#W
zkwcL;&Aw6<MLKbB#0uxBb|rr{dx<W@66P9x)*gVbbFX3UZ}4);<w{Km=r&WcC*p<w
z!$hQGT@Xm<Wk7nPtq9u-(#Oh3L?}K;*91`<^!sA_StIK06Z?h?0QEV&``ON9kvtD)
zGlg?fs_lN>_S_#B!0+(cN4aP2HYRIJGKm=M?dbS}$B9bA`Gj;ICFm<&-1)jY3#BJy
z0J&KAO&J0d_er90fiF~K)cB<x{(hrULA{-^1#lmYGbo@*3tw9Lmv#-TL1-k!$T6b<
zD0!KFlfT1v0Da6Q?;ERh5v*`{|7MTg@3>Z!$a0Uq_|5@oy1{0pbrakNQ2Va}Vk4)U
z>ffr$-(USVb?%FxW$-^4ryOXAWzVx=h7Jf+2uS{#Xy|8VSpWKXl~Ld3)c<(5C_5M+
z3j?1u{GRtGeW3IR+6Pf<K+cE=n8wQWsO5?a(gNns+5Y1}0_b2iEf*^7>wH3;DLU>{
zuRM=C^uK+4qio;sH+Agud-Sq`t<zR^qpX<9-va#{qu!3%zaz7LcBwzR4p*zMz5!i_
zD!+9dY9y7!{JCag1zvywn1=Wwv*m0B4Ammd&kAOp3v}UT{TA>0jr4C!{<D#5Ui+PB
z)*4Lz;|2bP68x<K`qN^5ha|vyzEkrc{l`%Mijluf?>|lu7<}&Ft4iq&|9fKirw#sk
z#Xq0-=UaS<0a_Lh4G-e}gO~jCqTkP@l?DU^gE~0Wzm^XF^`!sdEq3^Tz1S2}EB?!>
z{2#{mj|r%u0a`R^J<Ll||1#4*PWtCif4+6j9k3hr`KIwD|3v5ihco{<YhzVFi)P(^
zVWq+UFsT2>0RGRw|D4Z1HuFDh_kRZdAE)M@i}g!PJJ7R28AJNl&eJ)#Q2OI<0X*L+
z#|{jL?`AyJoWE$s|Jd+mRA6;ynm_E-uz&R|iO@T_6_K6jzkc`6Xa8}JUl)FR1K<``
z8$1qp9sd2r0%?FdVuDfq?{55$W%Bp;S*HWM!unzDa|8KbQ}G`j8Ux;FkWwq||Hm`_
zn|&YI1UQB0rkQ2t|Ha=mNCf()Y4UAF|Gh6_I0T$N$DxkLsMf!~Sb-b}HvgS*1&+v{
zBlY<qDv(wEYSe$s%Q>YVw8!}l{(tjyKRM)7=Xvuk06QYU(6a4#Zi@>c5)OV#V*@lE
zAl$bA6vk>ebs1E)=c!~*&Efy^ITCt{KxDLCY}(5DTjSyL0*NGpFagkQTOe-;DK5(5
z${GjSZ*(t)$kWa882Vm0bhnYEXfeG4>eJOsm*wL0zRdskm?F8KP02ko&z$tzcq5Y_
z$TMuu_l5xV{p990`;y~i5N+Ko@pDt;>bylce75(kc~J}}0DK1pVQ5e$I{=*r!9dGf
z-K4Se+xF*X&{jZg?TU|AXm#-bwB2|=w?F;t=CW=&s5=JwY3tpSx&S3TUQ6hb`(9}-
z$*R0+Hr%NEN~;$xAKYjsu1)i}?PJ#01^};z2z>k8is}j^UqIhxEABHpG6)P#yz?2D
zmrF4R<rU7so~h!_J^>Vz^v@jI8=32`)a8NCqzoJZU-N68R%+mtcX!5ZfhNp|8)WoL
zw!QG9Cljrw<=*kzUlZ1Uc<WPOZnna%8->B(G%jf2d6*S|zvH0ml-i07?Y@>e{ITBn
z=XMl0gC_LVa2RIoQk14eCkIUIn*$;|%VN+SdVGI28Un}+n9JDjcAm?Jd-#IIVfGas
zEdaXD<b&9bg9s81L4XGa^TefX(h4G^|D0FrFS~8SqssHxeRn|@ZoUR|dqIHcgoEdD
z){vLZdT^#GdGxvePz`9{F;wjI!UrU#wMKiDEEU@tLu?C{C(F;Ym`CDWj7cg{hSMP@
z{MmDpZzslk>uF$S`$P52p6TU~Wq|8kcj*Oa*tz0Q_W(&0y&{Qr3h1R@Q|_Y;XALjT
zS<Eesa$IBrEvj9>3t&Y9on(|4<w1m3yFeC;53n_nso9rHz`&HHr;{Zo(N~@_TOMh_
z`@;Y3r~b<t<PywLg@M5Yq#hMl%WX6~R?Vnh&rPtv#J~YrzS46F3^QrW4%{DZ70}X!
zzW<P6|CKVH`)r6m@HzE;PxH!gtb9$t^L-SaC&%M8YUeXm%~t%}_7ks~{sOG8Q^(6m
z4U5B8PmBJRU9a6)9}w!lE;9YjhP?(28FLI500kuEE|X>9&p0Tp4C~a}&C~v8=s{U#
z6rs}q&-FX#sww}Sda6M<)mI^iX55yi$CvuY-#ZG=Tx+$lF?Bc^mg@50frc%khK+dX
z`Tck2sa7y20Y9^|NM(rUR?d)T1X~7hE(as9`b1z|y7z0C`T$Tu|4^rmtpnK3d6%mi
zK;-C}meZJ;xPFq^ml?_Y7_XjDS+;qze98$PfXS9_+dJA$s6F3aw#P#e`QdTWgDD=P
z=L)&boY$FEbtHWhulrDb0!_Tc+E|e0>At`_Ipk1ZQbsWb*iOf~5`ahROc?d^d_QJ*
z2Fi#f&MrU%@eS@uefhgE_rHW6mK1?<G_=cIW-E0#)j)819#;&3z$;)C1u4mK7QT~c
zi(>n+@}U`M%%J&RN=i?e;WRxrUqH>}?5&9c|KT7MFInAWw~8?4fdA=+$B)Yg=<B0W
zf4^B$Ju<)5aKi-1NPiqBWZ#pPD8ei`13J9EV`VFteor+$zZab})kE=fD4jn(m+L4i
zZ~$#YLF>`nWwLmRprMZ@nNG>^>^b>ez)sYLVdY>s2p{y+Uf3V<%!w><+De_X*ZLWh
z{3=60bav|I-+ex{p%emZ-dr<=_Twe8xf$-}M)P@AexQx9lVq6Zxel|=bjS9|=rsT>
zi4$AN+9)uo6=eh8yG34-lgI#CwK&Y>d4^>l1g@Q&iKcG#RbW8!Unfqbo2f?tb&P&5
zwrOMnwMJ`aAq>-v@mP+aKG01Ux~6)#383DE;-5y&s&{*Fulg%Je*AxYy=72b-M0Px
zV8Nl0;O-V&f(LgeNFWeAxI2xzTaci^36|i}xCi&(?yimVZq7OPo?G=+{Xg*m=&HSY
z@3rQfV~pR*CHH%DglNA`uFn9IVaTW#{ZZ-VS!0Dlu3(O1Tg&g*E)wm$Yv9%D`|MG5
zY&%Qb{^Ct+a>)Gu*xNVh0szlZ`L6oA>Vd9x;8PjV<H_|o76E_UjNK~a@>wVn>-+Kb
zmzj^+jHr~=h{vmb`Rt|xX7fsK=W1NV*%Q#%Bp!|%?BzaiP}o{EECDu?1zQu46_C=y
zsA|3W)B?8Y@HW;W7&w=SA$p6%pDrY+7H3;OPX}CkjS}+tEKWa*kSE{2*3l0NptT08
zsCV@YFQM3YX{s@DNC`|4_{)Gc%nrnPxgBwE;0*xByW76{y;mwZ_(}~oa3-UQesXh!
zgPE?!n~N+2OTrv|OcQwMRUVag-NC8A&=v=|+VYbpX#$P-*orw)?5OC=BLh=U8Qt!A
zvFKB2LzZ+^#i<0QFz)RX&G<)npT3sJqckV)L+DEym&5<B&Huko`S^EuB0OBqUn;kY
z5d3y86&!ns<OK4i%Hqsd`2uDBY&xts0a!>ISZH!dAa8Ad_wKAWA6D9H9|4~J32By8
zZ1&vIHM`j|tgaB?I}@Re80y9ltbHVm69t4|*E=p|Kufc}^aOlYUoZK=I&Sl3)_Ayf
zH6!&L#48ws4S*IbStV{$03ZV(4!wuf9k7?h67{-vwG*N1wNuLWH8Ge-oQVuUW5HrV
zk7v~4C@ru2f-ogs!p)h`YrwM-S8yB+`UJcOLTfqKB@@FY^<}}t|GL6lZR`)VqxK}y
z;eDcy>zE-_VnQ)lj(vpdfcHDP%N_m{kXDg^Xs~iaHedUM$MEJUU^{oeLi$_rmVp$_
zd=O-?frWW4wF2xzS(AbT@eDMk<fj^C74@GQU!ET><uWb^C+M>ans|TR0VBEtCimAk
zG_V6|zb@Se**zWJB&Q)u^d3ee9LADL{pQ#RNo+``4?ua;&)&;pc0_@74cNR;yI!+7
zTKbN?9^g<6+r#6gAS!{@jNJnn(R;NSr?$JBjI(t_axJB)=qwMyZOp2O$GSkr_R-fZ
z&KC?M*#u|IEpP75Mx!YR0(g$&^LAV2`xUpZx12K%R1XuqGk3}2&K!P11&e1laSIPe
zErbO3%S%|l)$@F>Quh=dY*EkpyHc!@<3UbwwdD=@R!-mkK=kxk@$n3#_>^8do;9W=
z(5CSJsOa~IV9`-g&V$2tGdhFV&|XUwi8?*tK5Tq}0$v_G0ML*Z`iEjl&;F^5C07Bq
zBS~3+<LY>^LH{+b{gD9(e}Ab?pq7#Tp^uGT3A}B#@F8ekm)e5_<yCaQGEEcZU}5`A
z3#1;yI4ES(R@b|&$%V|u&j1?}o9o&bK`U>e6JY_{PsD5jLXgT0FrDII0dDL0ra0=m
zWZni{Du#iDSNkp=PW3Ct1oLwEvgS1q-e;<NZp2G|NO~@}pW!*IS@iE~+*^iE>xn;#
z^LsSu(D*_t(Gfu31{AK$k^Z;GQfsL_yusoIrU_EUH~FywKUFpBfkinK0Z)gbi2pT~
z7oLF0T>eY^@7Mf^Q;cc2(=c5L+26qX5DYv*4M$1|PvI1$mw*LQKeZ7wK}v>i0r(z0
z2zuD-!l~s%0V`R*5MYt;PahSv8-9A|7k$P$0UVCwRfg@2uYYMt%^;aOXfG7loF6A5
zkm`LUQ%`*pB$^$1+1Jw7S2*5WFi5ojnml{WzMAv(U*jmhrv!y2A)_l&%mc|AxKj;+
zz*mp}PpF*;kj3BN{qxG`*zmep1(aDFEx^>ldn$HRj8<tvd%o}**axg3trr{`=}77W
zP%X=9NsD*Lu}FT9i$BaVzc+wb(#pKC^{A+X+?Cg0yh2%#--Drjn6N@#e<df~(%Ew=
zSY<oCGiVK9fDrgTEUxxRv;&F2b)Yh3(cT2a*od)tU>_N~9Zq#O)oPSsKXJ@%H%%Ud
zXIxQ<15hHhO^_|$<JERQ+`lP&DO#W(*mO+>>-1(Ey2$w>j>8=N$?e)3eFD!w#pH9o
zEP5)I=?noxKKUd+jJVw!z-9vvWP~d2NjB48U0E?RKt|}cX`mWyeKjFWu1)lgH4Oi7
z@RlqeJ*Wf3R<APw^^{+oH`5l~4Da~Oy<WC*U*uDo>2+Cr6?0J}9DPRKay_fJSlg~K
zuSm267$!FQ0WSunNRUq&AbJgvxiW)afW2Zt?N=81esp-^<xT_ri(q!Fu4Q^Frr-k$
zw8!00pvub+f1i3CjFkU^7^?7&r^qirBn!yzoqoPxDHiyju*7TKxJL*Ji8}>WK#r~%
zz}_>TEN@diNav^+@l3Gr`_n1yS{>T&)@GnP2nK*A?_4Z$3{G3E#a%EY4c|S@0M(A$
zjPK!!PxeT;psm9*!C|i71rR%q1z#&(2?FR9V^Qi@Jb=a#q)eXjJNXsDaqfK&=us@w
zB-75IgGS&=`&k;6oD?#XbyS`!6&3s@*!=E>{<`0ubz_FT7E?vtuD$jqN{A<cl2-{+
zhCi>>VK-IYH*c)g#VF1yjP+SHPy~>l{JOUWqP%`gPiZ7N7bVqt!}?VvzYN=F^3%>P
z$J&wHS3I?!-tJNKC&-X}#Ad``^*+fkjvUN)Pk>N3yyh8FgZadSwrSY{J=(<xI{eMK
z&|u8m*bg(EN8g1s3sxODmioQKFk|F?6!g_H6%%;FA7ul0Sl`*3e?g6lky9O5^GUD(
zQd>5MG3J0bAVRbVt$<z-sHUf^G*W~ehl@0q#Q(ijC?K&11gx5%!E^vU#pJr<S@I>Y
zz=Q!T3D)PE3-27Fpi&l;!Dm(r)WQjU(|L%LC9sUQ@4+zUr223TvrF7wSNV~KFxO?m
zx#n|GL?EA+0N2)Q;D6blFF{9m$~V7yTr1oT0d~9BijFM3BgP%B2U|yAu6B6$m|;W(
zNVYQ&FmA*Y*8mhCUKA`t@8ddNsp3t_%)F@|41V%S6%zFzNu0Yu6iZRE*HFZ&0}uq4
zX0x{xROn%LLBl1?lNBHW<qMtn;7G|GEQE$NZI#Aj$OaPunX;Tiru+svY10N^!L2V7
z8AF>xA9EV4p8IaQ?>iup`s$${%Md9x;}t%gMaopan+GGMfqXgBL*r*=f}0sv-w@l3
zODl#C{GPZ$Aay|7+B)pB2zEv!by4lz<;k-CRCI5aYH9e%9O^pb{0Lm0^jI8{{DV1N
zuvy%Q*Z1(=OSRJ0q!Ec*H(${U>3>DM$q~CJ+wv}z9=`uR`e{LeMbTyPn&JFf@{@7(
zHPirX0}B^W-_{VGKY~MTlQo%28be+`1&>z&1&{~K!scmkOSUTlWM~nsp4)79YL+xs
z!5_YExpR2idQ_g>rZrT0rCj!(*Zg-*`~iwBn>0(nW<s?H%mn85QP_==-R0rYP*4P8
zYGhCe=Bj8nSQk<Vz#)p!W{)4sl>L$KB!hm$g+-iwa)nha8iQ&~6_2{_y_&>!a{OFe
zx&R-c=-P)LHGR%m_fvQ1vPnY3@7!N`5!P(sM4f+?$_SKk)mOQ}NtS4(`S-7Hi%frc
zZO-o`VE-!>3Jsm5RT^je)9ncqnb{LCa8Rr#)2okM{8_8FN5Ri|k9LPfu(UAirk7Am
z4VE^OG>7J<E)N_PEat1H61Hx>oJZ!z(-7t^ZNFAZpO=xn->qbo6=CG4NZc$81?wNe
zm!u^_fKtV(Ll6|S2q04ADW(l-V%XXMMu0F&?f6$rpX9N%FIuYMP>MGQNz2}+;Psd1
z)0aP@Rz3k#KCcg|Mxye&njpe(lJ|bT@BJ>4a(bKq+x6i0KdT;_&*!vJXD)!Z|I3w4
z8mGwJmPSYo=6igD(Zux#7<*PjzbDtUuXzz0JLtSR?aM4d?T_1Rw3sU1MK&BXD{Gzj
zlBe=7kGt0EuNWBv8Y@CYT78lq#ZfkZa5V&XHzH&{@%ulXvDT;$tI-|sDz0@z==8yk
z1RFV@h=b}<a#R`s{W7&zC0{xQWlR{V-;qy5l_`b)nHvR#FkYs_<*!lLc1^?G@F_3p
zKXQt_53t$D`=+J6iAV{x*WBa#XYvMP@7;twnP*U|q=Au)p6)*(Yiqzl8?oEfqH?hl
z9>y80br*q<9Q6-Ucm5g>g>N9JeD66EDaiDw2Xw7NS>%v12h6oz6i0e068I1#`g2&h
ze8JYSGv71;OOImH9U51<a%w7&d5}}gna>QG80E|uO00)P0qe+KL6v_I#Pingg_u{z
zz4c-@@7t%-mORKz{kaW&Tu#BJ?<UcCESd=<*vZeOnDXzY!PdR82STB8@I`_0bl7fM
zGZ!*4r5%r+-_y0pE}G@u)+Sk%)S8|q9dujd;Yg#B_!xO5<NToC9StgI0B!DSzUSZZ
z4md>DgGlVO_DwXULNcBkT*lmRD>JQ=dV-hQJ<N9nE}r^olpdHDc@I#`?>IA_qA#CZ
z2PngOPHEe6R;<QNnC=F~py&3!ml=D<NvmUC<!?PNNplufm*9}@_{Ur@&kQ=8m5EMb
z<g=}C!pud6eEhDa-3{~GqaxsjXy~?D!h9*)ruJkyzdy0`i$Br-x0@U1gm3=omusdx
z9x0ov3@d`;3j09m8M!m3rU&^w*<YzIIVSfsok<AZ05+PjV6)TCBd?|Twf1S5l`l7r
zta>$#d?*;_6eg;J1l=V77AgWGsV_@i;NEoqrS}|elxdGz@=Hk_UO<F-8k=JK$h8qf
zZb2F*KLrVu{=4Hd`^b0t&{AzdIv<x2Eu(3_Z0ib~U%ah}AG!m@M^i>O05$Smb8E$n
z2Bm>Efvklp28WT>+MG>bRoi_WZ(tYT?fx-B$-CqbbYbx(iZFgtA*ZvA+aabn+Z+i+
z&BFo_ibeP(PUu2bS2Y}8>P>?H5oGn%BYizuDRkBm^tQWoT`q(?$aFt56#c=%^33jP
zI3y27PiKvi{%|>-^Hy!$9<b#wmi~o?lZl*t*L-Kn1uH8~iZ>4kn)rwk^K-){c%(zN
z|C%k0w;&Y+SX;&Xs?^$qa*vE2G9@VeM2+Ew1Q~HRBEuy0#Gy65TCFAoDPciGwt!e|
zgGQKkv7724AQ>L_5f$e9SgHt+9P`-$S7_yr0^8@QkIX4eU9ti-cWcnuiiF3MY4`(D
zOyF4%H-!FmcxUOJL7PNykW~lNocZ*eXTI(LP$^lrV+*jP#u$_Ige;MJ?8=ihB=xf~
z`9pu!W<h6xg@rXzb@DpY^`OI2WBrZD8AfoiID8r;$VnK~>{545wuI9sXp4Q)3P|7o
zA{c4Ionv;T;$q}O@}soV95aM+vD%Uz=m?Fq1T4}zBi;cdvyTWN5YbDFSjt&iNoR|b
zw~)xf_|@7%P-hVaGi2DYYH~g)yTN0P?&<JgH!XgLaabsC8IsG6-2I-kE6&A~(MNFK
z!yGG-w!4KgX%SD?G@-V1F=fQ7537OFxPQ;bg4eGZ|3H}VBH;y~Oo4HWCW|B_l?e7e
zRlM~qc9_k4<s@l7lkIY??jzl6=@=o1yb;3Gx<5AZtI65Uemt?ha>v5Z?anZ}X_9{c
zp8sN}&;MuSdPM@0CvXIiu^iD#^5tBGwH4x60<tMPwtfQN5X;RA8mWNhX)ure8@fwu
zbG&>})iPxYW;&WrC_n0ILY0FUWZr|UQW|9PE^@WgfWS{T&|YK;XC8`zzJ6PkzTb+x
zB9+2NLDYyAK0`CULY^#E6csX{*@v1R9RLl6BZUvInp5p8CHwi2LfC#ob2F~;5u&Fy
zW6ycGk$Y&>>Vx;bu`fPd=K8KtwdY*iLw|-tBKwmYUs#;o5@WQ_)AKApvh^f0kgb^i
zL@oR9bgF{tu_2~8@Q)|0p6B+rE(}2%^4{R~hvmV~OmqbpjEaUoRftFwb2J(aMJ^{(
z-x!^JNr)yND#!1xZC#<|LaKJ_C(U2(0%n+S+nd$xKzUa^c<|{JjUo^CjXo7otR{W#
zleHoPzX8)3jsLRWOBx%NFHJSv9^=b)sv(vgFu-ECQdq23coTU3JV3#?g7@7BsPxRI
z7dii3>D|F6YBR}K%B-byy-&n6^3(o=&FX{(`2&QJZ_-{vKY_eGHm{j7H|-2p@w1EP
zfP@r6lj~1j?(55M>;dAB(YGYCkW5QGY6Zz;f*Sf7<1S4+am*F!-$z?fwK=rAj=(I<
zl+U$slxKJOjRb)fP5E&3_Gda>FZwMmgYt{ecw+$ja$dy+``f4KZmiV#U3=?%4py$~
zPSwPHfp@g~O?evow|;mMAuIP{O7`B8DFEKLa59eM<Js4gb7r73cxI3;>ELmCzkKRD
z$H+n1FIUr`D+<Iq7HTQ~hW2;mSww@g>MDI>u?~ykKS&)TL-35l4F$31sX~>HMSKw>
zB~`Tb)li;PvCnR5UFWz~zU|IOLXZ)%+Fs5((j?b)F#t4_^%c!<js6I=iMG&?@b&Us
z`f4wWpm_<tuy%pvPEDq8(SHzj|60a{W&C*wz#m7je_k!6dzd1-pu^lFBfCdC<5ifz
zGA6S!ru$TWq>sOc+plT^`sD@MB9+Z?3Cx%uu~AenwL_}iZ%F9a&vAbk`%c=U&-X{r
zRGck_JG1!aaNH{j9vm(KQ-nVN9<De%Si(2>r=)}N#Rn!hM51}*p3NR9+w~+8`@BJk
zoEXH^-eALasJsU>leVkhZ$Z%Ke2afQs(2JN2W?ptP1Jgw{UED&$YRnWU(D!Hu9(r!
zO$s&!w3i&#<<bGvMHRShhtPGPTaC;Uuiq6s*4B3nxs|#CrdrZt!PjVZ#hcSDibj>{
zZO|2B96GExdd6wC2jqyxF%j?n0=e`N#2zQ$TX1W<+tJ%-lYXhFos6`t#;$*_dokR#
z`$@>`sQm?ogZbJbv;!ERY1}x4TLC6!Ow4|AKOZKMYzsH`OrL%IsV{o+!%cW0CoSiF
z8L)mOOTg1!!9J%i8nF&r<667~j1hBj^Bi5C)YB~oJGy}ZSdK`&E?!feT_49HNe||~
zcLHW)Q+gx{{gRnP_V6pYUs~2HUQ=cg78`O^10IM!cVHrfJVX@o1nAzgch_Ml1WNf9
zAD-u?UT>ul#l?__Zm%y>cxsvmdj`orOmQNMR&Pwy#?h|)JwUIEhh!y?zxftB;>&Wl
zlcPFg$%!N`(e=hb7}Q9~Foc33vuii%7o6)sUyzS9Hh%}*-ytcqW#k&;RA@An^<LLs
z)cht&iMwn(HNr$+@+-_)X|8oonB7bQ?fYBrqT|oM3zX&7q_UVk?*eY2s)O}&w{&<9
zB;|9Of#7V&x|to&6AsziT@tD|mTt0wU(UgOP`QNjCyhaB54HPG^{#WyiZUdWJfH^i
zZZez`f&c=os19yV%wq;&*aMsQ@gDxH&vWG#Bvpt=&2GR}xcAWkunpU9{;tlRT5}J4
zbit+SFij-*;cQi>wUzbsOb!sodo`Nw4<^f3n6wUSAiz_C06Ev@Y*RpTAAL|%@r9Z-
zO+U1x2{%|7TTSvD>W-34{U2{;Kt23d@<}aoSmNUyuLs42l-W#`tCwM(Ieo|S7&jI$
ze}%DPW#<F-6X@!cJAbTf)>-0AY%!_+9ZvQ^%!0Hi0@)t`#EZpr%|H7o_0!}8eXj@A
z>C?4jWNG1%yyax8gdwY~YwYLgICVzR#eKe9wgBH2tE9f4-x5~)J(z_WEtsymw=Ojw
z6x*4PIU6^&ikK@16$z{864AlQcWtisksd4iFB^h;z<{RY&Lst??$c80Il&cD(oc>k
zJvH)o-|qJ=JP9wA=VC+(yiO2mVT8(j+#ShXw`neXTFb!7PsKtwrDN@%?qhFwE_HvX
zATR#|MiZi+cg&1E==9C@OuJkLp1o0@;+r0*-bM#lPLc@%!+QulFUgN(vi=;-EuP~L
z*^wTb@p<y}I~tbNif2CnB*nb}l7>z_WcMwv<FDjiGfeC>r@N=_+obCVo?G9o-Szy#
zdeqgJ+k($AZRFQxw|k+a-O()~1bsP9eg4H=rCK5^K3;P_jwg5cqD6bri~=pqF;~F=
ztn<b>GubCcMg2BibqGgU&*_iay~yoN(hKlm<(E%YTaJ!-ggfuD#){V$RaQ&y8biK0
znxulhM&`zUKi`ZjIh$)2Y0N5#|MfB0bRz^6SQQ@q-FM0#b|Bm5)!8<Ho~TsjIEcw`
z&BEEm?JlhvuET-;PtgT4X;dnW0RwWW)?hW95Vr`@ygQ)u^*VsJ(%n~b8U~yDh^&*l
z2MbBR#l}$t;#bO}s|pd*orXdfKwh>T{>SRS&->dSDI3J8*MJ$#u<h}!iAC(Z<9^Y<
z6!ZWsdVdOGLh<`gU7r(0m~kzoi&cI~OmIg0bN4hn+rVI3XIn}#IlZ8!u1Q8pCYLD_
z#t7T=iN*WTOCXTxTUORmryvF;T^Zpio{OZ}s;lg(tn5lTQjEL!^G{tZ#X%m)UqNfA
z`IK$b>I%K0m8hrO+(l6kGA%*rI<W2!Eb$+JbF)nY`k~IGuB+{+Rjq=n^*cey{H~gH
zmVkgA;5d%;ZkT+EqMxKmF4Hu(k~p&|!1!UcYT;7r1Tha49(CIPvr90xUuqInFORK0
ziKifadm9_Q8ev+i#!N_hJHHwszyH0ib$;x<?E%1c;s-5+j(W6hUXTXVO=tOR$w)?d
zG_NR+{Of(Kk_!G5p;0l$8R$}J&tvkB|LFPA<@E9@SeI4b9k`quca98J(fH)$ey^JB
zZJ#FJl>ho0kOJh`Jfi=!l})Gwtc4AVNra+Bz*10I9R2FXFf)}z$ORM9BiQ|x^7MAw
z{#jNTxjjku7nlP6X-T6A`xU-fFqpcXRrq!#EbjeAc=c3NZ5&iO7zZ#TD1P2xr#l2C
za?}M>0fW;HL+VhS?Y|~*w$PIY03{|_OycoP4}fhhW-S89Av{0`s7;CoV6o+@Ixc|X
zpGsYC3)D2n!6M-@4D>H6F%02*uu?{n$Q*JR0d7x~Ehj{a-qCEvND=Qx0oQ~24Li@5
z4u91_YQp|pQgL$1-SGr~c*|=9M4DNmG=O|5i#UAEYY~oj4s5}_^<QPSXR6z=sZV(N
z5SrZXc$xCp2)=m0OZqn+*Dt1=;@5Y_`SQT?UK4GT1Mr*kwjwq<!pEi@prsjbn<ElI
z`gt)%>WLLhb-zw1-^E_<99!GnBvXxJ`|6qa1r)IHG}3u%OBX5Ga`n#OYMj5sMt?Xa
z9YKUxJIT*mF3%pU3gFz#?v4PsP5AlR9ItV5S708}H|XZU-~Ha6E_3^xFwT{5H>LH`
z6uT^r@4O6ATg$8BC?58{;D>=e@x6V`^+t1NYP04fo$BiI(?bJ4of*}=5HRCwR?->b
zsBr^yy#{{#G#a)vcDdF5tA<TajQlo0oz&4k9j*yP%CJB(VF?{z*3I_|IQ`I;Qw`aN
zQfw&5U}=`HVNvc`DE9H}c%K8eSw3Tdg?V{#rcFZwW@%L~+4lj|MYrh<n;q<K*E8vy
z){2*$1kMK9<JF$iV}K4^G;%q18HhMQg{V?Di}2&_l{T1kDLim}@HLTt?yW-m*tx_B
z`53YZHN@gfaM)hm>)BcE>2C}?ouS9j#e@jNyzFfGMTEs~w2Ff1@$CD%ZZyGF9AP5m
z`VPAFsTNE&aJnykk}~gVsL=xYXzbysA;gPO^8#Y@ohOzJ6>mP^>v>I>GRlkhkBf&n
z$r=`-qJ8Kh`vgl=PxWMb)#{Vp?a@kpSBYQ4%X5xn6@53n#)vvfw~yiNRhx-Kj=J#0
zUAvE$!|h{&1^~D9&5CrH?}q<Q$FL<N?alqZE~X@&JP}AF(ze}Z`dl#D8bmi=EMYa7
zwZflKr-+lQ7u(4A%3Ob;2oUo$_vSH%Y|WVf({izoVn%AZk7u+d|0L*AKi(PxN$XDw
zGwayAjTy?3m%!+gj;2Zh?Ig$VIqg@}qwIx=!rfpQ=G~oGrTdL)y)jV8ADw^xx3oP=
z6^~A?DAA~8(x+W*9=@rrD>X#Zv+Mp#x3ByY<bcC5*FeG{xPcL^Q?UYI1uM{(O%EpC
z%vBFZeP<fsF1Yk}Pd6W~R=oa0*79kdB*SYWevF8;VA#Kxi|aI|G$_b=sez^|*8~a-
z{LoxZTxP4qsRb7H3buvI1dm$Pix+tHVhI^aplPd5<Dd#YL*^otF%DPj*&0RSK<|+F
zT~CR}Z{VGahr7(|Zu6PqJpxkOArXaw<DWnS+F#4})%!e}*2DqP1XNIFaaL@?>plN*
z?ETyZP;ADMuKLXJQ86gy$qR5?!tspkjDOxX%h`s=JWC&{9_vb*X7{v9ZC`>{5|FAG
z3~L&I-%0!8TUU(zePo&Y)8X>JMw47-q%|H4M}s!-fJJa<FpJ`;k7fEn!b;TT;*@U+
zqtd4$Fr&(I<B>(;65y^`mLC3gLFp@Y<e!FBwWm9wDW7C`VUYC}X9X}Q0nA0h;ygPk
zoV&C&cYq`vj4Suf&u%}n)G%A-r*q-)(QaCJP9g*6wvk*bNO8hW%p<9e=6$|RPl)dN
zSNX6;L?g6NRgi(FNwon}8D3Q=vCS{BzjiGgu@dT@$(_H?BvV<2=xnV`2b-{@TfREs
z&B58<zGmui8_fENYXT|mmFGS;R9q4qh?8RVPR2@XX_cLmycIUt3PX6pLCQW`_;ziO
zdJ<Br*l&`Fr)E;<T#%FTocBsY1|frhQkpnlH5v@Qzls3M>vmF5<>BsQOsHt3Eua-4
zrIcN_Z-U#u`eb=O0mXkTxOD$<N;plVW{Xfo=<I7MPxjzZYs!tIsKYxfGz=nch9w{Y
z3Gg@vFSU|W1=ywkvFLFF;2)a&n9SkGQ<u}`GW&3_yx9`)DHThGiQAcA5y8uHQ-GG(
z{T1j8qgVIuPL*yZ{FLG8APNAKIKsxt;wz{+NkaoRJM}dUd^532D$jkNB|ra_JMjxI
zX%y{lue;&o2UF-wb#~(xziAVWF3oj|+0d4!*j8ljEzs`|pZv7UIwiU=zT!W(aRFjq
zrIn=oJ!_w6OePxwyCm~1QgBAt4Rw#8*Jr8SbEoxBCoDf__{dwaq}!f6(h5%HCluCu
zYS`XNKdoY}`fbKx%__J3y)laH?N|IDXBNXZs0pkpDrl>I8bo{#hv=5hp8V@qqNt(^
zH+_=|>fWXEl3edVMXUGCXV3AjU3}!VF(h0o@HqXPKtZ;1mVa!Av8l2mLbZ&ma7sp(
z`CPo7PwdW0KK3n}cKn&iy;=m#IMYd9Pi-A&g-C>Pc3MYVE>w@JFKJ`kLx859m9+->
z`6AWg4>@6`is6-w=@%wZ0?5_mP;f6kIZhxNCJ$+dBojGBL-mr=Q2l%ts>;f3fD$i2
zv?`wYo|38J_D@hiAq}0Wmg4Lp2=015RR!b2cR;*s^C|az(qcnJN$(74F^=9YtHOvP
zLsZ`Yrog2!+T!qN^QjNXmDy%0BsJOh>01A?TQ;Zu^8+*Ovs6%6EUo}4(q%&QXeRC`
zo{A(uZdW<V9P+{wcTh8RvD*nTEnq%41Bg!b6EG3%;R2jLeyG7vbN#`hD@gC=_V83O
z(i0916EsgWwoD(13tOLdkiqRo(-V-Je8BRFB1$QpNPov%VIjyiS#M*4qv9On!K7?9
z(^5bk8!Hu!u_tZ*czz<^&nMlFKpMrJr;$%IW(jDf9+~fPaCpw*9{5A}i;@}ydxJGo
zF^=-Ampe+QztMWzoA$QfiASES`h0g;-DxP+O}#t*CPL4)bhPXFb^41JfFuul6$2gD
z0(4tE&~{rGt%n;cxDR<VVqO1iwM3p4Sy4&eXm2F^vDw}wfVrm2u)!V+*u`fHv^*=G
z#o%4YmkZWWGL=b7I{8)U+ow_N)(Z6&fF`qjORAr1wxK)CTg5s^XmbW;tnGZ3{vo?;
zN-X6(e)8IfHJSE?#g9@$uhX)=Q{xH#x3<=OHTs&Bi~nm@>1dSq=O9@~FBO*YL$Dow
zwZN4F1(gwC>apcgo+8cM(~#&%yB|*jMdza|*iA>Y2}pjZ-9P&hu3GSYeII2)g(>bi
z;nj~ir0z;iMy%nTcyk4`)1WjVdG7>Xfv3<c%Li?N_u_Ho1Bt$^0Q{M{-u~R{FQC5v
z-B|{*EGB;BWNnvyuF@o-NjUde)yGB<)r3@Tc2;a$szkZa-9f894^uav#68PbXxY(W
z;FQx)9l3plmchFR5Gf^|VizZ!hLa+lq_Yr#<8dQBh;&1)dZ5ua+;S}gUKR;CX^yog
z6fpbfdO~VTqK|mR!9^C)B6+XQNv{w3;OiL^NrV%nKDPa;RzS$B)<vDeA}ew>%_Ol8
z4By)`EKocV>#O4zy^l|%#O*?*cKxA}$-u<UgpE~*JUC(;nHKM88ti^GsPU{PD*4i_
zVFc9Xp>E`J=yX>J7dDje73KvBDOr+nhz&GI1vWYp?J@D+Px($XJSa|vP*D&uNOVSr
zZr_jLjtM-;``}Yj6t%-tdQd5b{(2XIobDncazZ`neCpumIO3Vj&kBZLwnX}Umo3H8
z2Zhl;qllOhwEUeuhJwX7<=oX8fv9_8a$;Hg<|zLqQvm;(pNp=uX|4ARkbxt>B4^w8
zNvW60V_drn>8F|}8C$Ih)gI4{qtj8R4M5_xzS}#+Cx+-L@$ngW-`}0LWbUFSP>!L6
zBH>qMUK6z!L-4;OXVDdCGb8Sl+Vht&GX6<A&MBL<H%y+h9ieAmM>C;H@)d@-!5qxJ
zfEiIxO0g(Ih61}3-vX+1i+xw>m_CX0W6c(+3*@}JKva)Q@%Quz$4u>EHl9>~A?AzU
z%_tlsk_o&?k1PkA9T*9V!jzZycLG5lL9BO0uoB$cd=tuCN&0r~WVN1mcEwv;Q^#8Z
z9zn`WNmiC}U9=siZLldRJ;U4HP8_@K)bj)|NJ5-<hKKo2J=^V{bmIRJB;99BtE9xi
zQ*P^ziqifuL)S3oFy$o^cezD+=rdho-U*fvpTVUhH7>!zQ}G^2#%E=3Y7NurmDt#^
zgR~49*b{5;?lKcAzs$12TGHb>2|)BeFbM&iuZlo~!^&pWW|cdDs$0txe(?`#kqX>?
z;_c0nvxg$c)C`|RhoHuOvOuL3e<bWNYy+r!6S04QICFez<6*LH$$id@6b)=_>Sq2?
z2sX_M^$H`chfdQK{n8x)e9c-dabXNGzGslnW|6HoM1;<nhzdH-AUY|5tWF+)6abgw
zxue@1l}VsO?zKmG<HdQ~(>*rw0(feZb7xY}4uqaP8o8O+ih$OkCMIcAsO+t{I|FQ_
zKUFRgw*dSeQU@4OQaGH`hkb&Pq0bq!frMl;2p2!F<j-IjCJk~bLx58(0h6!MiNtm~
z!@AX{3m<&gXTT+;5%XTsM}T6_VdD<nahR4(?%pSutNR<~9)Mn3uwWriAI^2LXp_G!
zp(S;2$xXoDg%t~nCEyU?+UM@{IN9W!Iu=4}PTwXPM;?9<OAFv3B@qislSM@AUqZ&{
zba4Hxgjh20C?T&9qPmw7B_P@VUi4Sue26~1z?eEm>en8ge6H#?!D4krcYzI6zP*9m
zlko56I?d+-RQuCg!pY5q=7Xc`+smoV%JeLxf=i-Cb3vm;2HAlI+btJdGu1`Z#M=l0
z$7Z3TS(>1rAgET|fTP<u#$@T>6MQLq`ElM;M0KA7`IM2;F6-Z^JJ}3YI+TNI(z*iM
zx6p&72eoraBVnd2m!qmN@1-X?g`%U<z9b>5sD?uXik}imUOCYd&s-g$YKVE^Ek1Bl
zzH3CGouRoiy{!=5#WojF{2-5}#r?+A<tvxZSgP>2Fj600e+0Oa!f4h8e{C=w#8$Aw
zqMC4D1zUV3<&4m{?>c~EyWdE=jS?GmK;{FHswqnp1hvuJtL6>R_Uxu9&`Hj`!|K9w
z?2c}OrxX#x4P>ATMm^i`&JxON6YH8(bXf(C_*qYqB4BnMbchZ*uZ%8JMaxql_z`b%
z#q1y?OOj`p<Z@?F^!ONP7q`9C#CqaEx&H=TO5lz)cy0S<q?*<}CS_~ER7bdVEQeck
zlws+ZPlE$EZA~Go_ywU?D)q}&$~NEwi{qDG#wipWjdGN8ggNX(txUpq{r22W$YrjB
zT^<||yk)?*bU>#rO1TkF25!ExhytPEj8F_uYAX<Wd+zQL&1FYeD}LB{&zhzi_LY`~
zYN@t4X?HS&5&YStFB;kP5_JM+^V53lf~y7EUE+h{(pmHFW~D??k1U*GF9;Qu`F`Dj
zb_g69ARPDsB(YzXpVON)tkPazFxct~m}&q1hS^ZZr)Uvt4pEiyBT72Do9z$YQq=A9
zDv;zSPf=7ZR@x>?WHUj>9+R#N6YV2rw}k6>qvo&qjueWbgR~oPA%=#R@!m1-xGY#x
zww(;TV{}aH0kl<j96#N^jDl5KI$C8{S)S5#Y!{|Iju!z(kNMybYr6I*?PrA(`fQlI
zafQV$0t6`Au~M~(YI0Pwq9~U%aZa>9++9A|;CmvlakLZy`diI8Q>y9~mAOOwfO6jD
zN3@|GIxz+pIsXdg*7Q4Mer5$jks(}_il3;3HN|Nkqlz=!sG0h|IEF#?L_e<REMm0w
zXe;VJ_emA)WzauPJ2>mBvG><5Z|1!D);%kjX?3yM-Y0rexz)}$imTi-wi@DXhKohX
zVcaC_t|tB?Zgk=EV0qaQAv@rSuYrVhA-KxZC0`7oR@n?C_FV;{vew#N{gt6+tReYZ
z>C%s*KxZl%1M&ItODX@PS=HQ-svfX$_QFSb?Sn6s;;s*M(i9s=%x6(V|KJGOi;(oi
zwMzvq%;P_YHe3KVIJj&Pz!2`A(u`nH-_$OGFwzh<h~U!D#>LSbE-gZ1N^Tq1mtDKU
zo=j6PjHa@RGukVe|Fd{0!`}{IZ+3rER^S*ws*GeOO=DFHp0}&~Va&k$b(})?I(1k-
z3Dd;S0-f2#E#h1ZUpn4ciz$oRM{(}z_rTo%07MnsW0&s>%;FqAd0R&}`GZS(iQ>}E
zr4s@FHu!@8eVYFo5lS?{*x8y4?StdYMjOsA6-5CaO4|=5Xhd1d!<xl4NDWl`oC8`e
zG)BM?AyC1@<*Rf87~Leu@_eMvUK}yss9S8vX9XxJ2Vq`uMuP&kaS{KVP&8zxuQbYa
z^px=QS^mnsdxWpBf&e0D?1CLK(icn;)~u5(C&L0qV3bA7<7ymQ$Q*gF<nHnnF$Tl?
zpykk*jv({_bF(>*#^2G8J%}&6ITxK^H_qLZLqIqPO7cE<*#x_oW2t`$&c)8C6@uYv
z*`Nw8G@0iSAmBH|CDdm@VuoVRF_(`7?#Vqi*M>U9&2951y4jw)AvSa&^#CiZU=l~$
zIVFn;8tVsTbfRN8c?6*(vtREBiYiaG>t=3dcA5x!ii(a+Pqx2LPHz5dC;88Y!T|ei
zB_AFU3Hzdw>4Adz!$6q|P8Db?!YSP+Opb7mEg<ua8a&l!O+$j!!Q{{3>haXrl-6=0
zMhf?<Jr2xAH=Do69}|zQldh~j{c&em@1Xq}uLA^Z=v#<++`{>cLhtiI5rO^7zUt>r
zR7U#l{YIu_$n*+*L>$4o`kX&V=wl?8=oD@xQ%?BE2oMgrT*ICPINBDw(41`lrX2!P
zkpsk3<j&{V@VBEm&*pSrr&I{JD>Fcu*dLEJ3}}V#g9<PeCTZWLyU4$Y{UURSDfA0|
z+$+NsCkJbb6+XHcMH-W=PzCluo3C2^L*h@D92!%1zV~pYKMuM7UNi^cmp8r<r*oO|
zyd3%Y+ZOt4K3PSuIfaA{e+(Rb^?SQ;IQq$?R`BY{$b%O}Fb8mEkCW}HXtF(##@Nt)
zhDKi1Ip5ckcDC_^7dnwk)rn49&v^%ZkXy!aKD}G0E#;}RR}{x6vsaH@V5J;ENmrfB
zTT#ef(uk<1$6j?E8oia`+^J8kWfWsYd9na(K%ypz1*-<O$5iq2)is9x)gc;B*Wb04
zex+CZoOIZH`*I<TmaZE67A!cCJeqC8C#9qsYgT1=7aQ_mma53mkJ|3@H+grgG<q@r
z0IV3hxJ~r2Ck?#P_lLZ!kJhoQe3l*bb(TFcL7#CcHTqW?1a!t3xb*<sW4udsPLDIg
z$5gTnU+6N_NbWBff*VndE+`#KvW~Sw7K29avrn7*Fur;FaH_2>LP1g)%-F#2GNACb
zpNWYHkyaOz>y3g3;q7^U&QVxua!{&jDm-!%=j|lZ{&_s09bwLM%T~1mjjG$jPDXzQ
za4et~TWkK)#T`uR+l!#&*W+qFdY`*@_v&G0n}D|ntAxB1|GmrR8c}{gL}ik#M4=$p
z^SR<6#u0}d<4<2^Dzs=n#0!2pL1dQX(u__kMfr`fAxAK%IvMpzykt!xepFKgp7LQ_
zSKb0Z%TP#1h?8dph;v5D$35ZDDY640r>5hj+^K88ZBSFgvDxbwH*p?ZhD`a16gX>5
z%k>uUv^8vjf1w_tt!H(7jHXgzPl+`?%j-@eOh`r*mlm4D=dufV?0G<d=UpMD;1jzE
z@Mp}zG|Cb=;iqjG9ab}6bX3}dP#gNXU^|KU&^Rx1G-MBF3omL*o0v0`CiGB~Zpf0Z
zlQR6ta)VSiOHv=8bFo`{wa26y*v6W9kj}mPM5kPCmEETdzjXDX7D4-f=}+7e*R-g)
zw?bBwfT(~e#ZT;<^a|jR!sw4g5+i8U@eH(*y_kz*xd>burT7dP9LyQkXdEdIf58oy
z8r-NwgWzy)yandTErVPQp>Kyu!ZdyYP87nMJHgeCev?hoVLzvLzwrOHV}Wwm;@G0>
zQf-~Ehp4^rlT-?{Crd?ADlT-XC3pL4G|PjLRPYtERPO}7hP~XXrAp+~k?@QBw{oWQ
zulO2u3u_~-A6A4AJ?dpMP#Hma<V^o`27HtJ6EPXo$SVFjQK0v!3(5=SOhW8gYNmb&
z9CBG1vaUH+xCRy|>V#v-({0JgN%sG{K$RaNu~T9P1xu1^rcJEEiRHFMKeI-2A|T_a
zzZt--L`gqNrA<<#1YNxI|G~1G*hxcTP<yKtZc%a=@n8rAuhObEo)c;WHPT5+Lv?It
z)2C_rpo(dO4XjUupiWhF=a}arMvX4vG%O4i!Yej^!|`K|r!NGS<MjArx6*j(9|<B9
zH`MXk@+ZyI-BlfS1%e4_q(@<*_i~WA?!nz?oy5Nxs_>kItmIy3pHi;goi7iog!7d8
z<OlLREfn;}39Mz~gDE=OsKR67MD9ykM^9YeHZ<7HPlZ_OyrAASW*>D8xU1vQU9=dP
zi7Jfh-urJd9tW_2Z?5i;o~NBTv?FF{GuCH?hWDoO<Cb|+!wGnhSI~19IKDj~yUuz@
zd#BsYjCtHSvV4Z3K+CSy9fZ|rP0@mPF*ivkW!_c^sm-lq$-a967bIC_eE<3&t*4<u
z?gF`ta7VN08m4WUs;3d46ZdOCvK;S!8)BxDeI$_(-)2_&BBZ?^7pBqON(W659F=~_
zTv(9G&2tGc^e><FEK0;XK8@6O{D!WbiWd^foW;ZFA}Xlh_cFY7^|!N`ZPcnIn-<yJ
z)GWiC)NB5I`n!dUr5LxG!_M~Mo#Ug*Bgk{7gj<Wv1ox>FZBGnDhFkyhr>~q&pVAdo
z)>SKvD8?C(LmH3Jofk8Z3V;Mj+j?sF6SQ5$lWj?*7u^du&Y@4(cT$eNU-*O!2tjTx
zDfvACpsTC7B;9p0NYRCySEFYneo88gFGS}&U}{JMZJjo{(^btWp?1j(!oBQZbXdAW
zn38g$@$WkR>mw3iL4(`r!BM#q)JrqkVS4*!EM7V7^$@?t#WSA*YBY7^P(66Z7>WQ&
zZra85;4)k!){VquOs>24NiK{Uc{SyX^fd_~(fybB;@N_FDwF7Xlly&w@LLQbXZ!v^
zs#tN4{W4#5c2P-TLHiWP<DF9UDK4f7e7n8yi2K1VLvZ|<4Y(kxLY(nq_M~4WaagQb
zZ`PwQkZ_6iqc?))X@lhqGWl@ideW}tpZsxqFjFTU1A%0dAQzX1kPR`KYFj=Re4(tq
zJ-i@V_r}ajn^d-SI@b$XyT-~$MnIqoVU{jKc%=6yf!#n-7Y5fnc_MR{==@4K3&bqR
z#%YHb0jXt`K94FhcDP>o%C~ca$Bl`#dwa+&+FOk+rYSt6sV?8u$(E)ED8h&<i(D7r
zCyj4J%!0-Rfk<oGSC=KVxk9)B;lDa3CgE|J%uq6EJ-nUl0owSf!BZkuJ4&a?m4LUw
zAAKu1kam^ZoZ@E8TiZ?@_l1H%V;>|qZLzlm(&yPw2um})ZO=o|SWY^d>_9P}C3IE7
z<4&GE4uy6tUx2R4T@R5UdJUiZKnrrJ%jeS!)HU-rh4=a{j<PPo6W;t2SKOIEfBe5y
z%^?%4j|tK`Yoy|1Nx-lFVF4iVhRcof;oJzP*&W@UC>AL4Y!C58gxi34Bcr=$KBs=c
zPN`&`q}*a^i`y`IQ%aqMGuo(S=SL+O^F7-4C&iEW_dcjHg#Bp*L+%ufXE>OYoP-(A
zjk%M4?84d;hSO((Mt@_edV@nMEOYd73Wtpx-^+w6fJDp^-PrXteeQA9IS#IYF||#5
zQixERynr1E9sgwU-YhEA1L9h_3gkCz^b3XVl|OT0pHD?tCe!0Jw6hw#z}PwDBZWu^
zuM_?L<x3`8Rw6K|-OW#H+zR<^747{Q^7NOK=dmg2h?1g(X6sjp8aS!*S8Y2_-N$`8
z4#Xi)eb%TqLa$68$$M?zlfNkXaQ9w8Wcf>+QlE=|J=F8sTIC&QFmtY@aFHIWnLcRV
z&sioZi!>!Vch!*L&z2IP1V0vt##`^r+E-#)<!qpQ7vZm~i~7(TdFKmL-C}DNS=@eX
z->*kmuG1UoSxr>KqNh`uMpENEB0V3-RAo~Ta`2^w_31HJ_n4QR6w`NL6+>_EYl=0e
zFt%xLBmzemb0l7`O}|Yr7P<-So-~*`UU!wy$~T4>1_^IiweuZ$&~XGt+w@NPoOE^_
zV^!bBf4{UP#PEBvfqUJEmQ-B%w`<Xf(P826jM;H)b9+8tic$orM}<$Y+m~FCyA`bj
zJ_cs_+Hg%pDN`iWroOimI1%XIf0TGDX9ECpc--V=byC)XTd>35b~?Lu4+>;S*vV8L
z73**I$2I&6>~zlWCYs}(+$R=NCTa{0l_hjr?#R3VBtO@-MdU&46fu2MQ3YsP3#*Z8
zsd0+e-@7Tb&g(vaZhb^9=vLmEl03#U8s}WZ8andby*so5Cr6p<K&*Nz=hu~03#R_w
zk-`<et9`*Ij7oGSEu;4mjnTW+5#9$ts-ht>w9^Z59rK&Y?={Eyl)_*WIeGzjqZP3r
zY2mOmci?0=>DksV!jd5*REb-?6o~N4nrLP!0&(3Zw6SWH6e)?A+g2se-^pqz`raJL
z2wkIcZ@4?Y3E*;{s3qGXxbrK2VwjgHHEo<5`<!~q^KS5UD?fu_8#r>g32Cy#Wae5=
z!y0o=ygi?0=-NPp7Dn>zk9$VRfB7ZxmW4mmsWQ!5c=>R%QbA`!jc@CY=0PqffDvg~
z%vGF^)IF<lACfw!wb<`jaG~#VD(0SbwV_J|b%NafPi6P7`3a0vZX(O{xWii3r<D;L
z+GiRk48>ejWddq4Fc#?J#?zknr^PpTtYkj!!A}KoktRF|&v~N}BD5Ti-ouin1C)P(
zlAI#UHT@r0MOXxld+T6DS<+oWP$DT<b#MX51l!W<w3v!l3eS-u{E}q3{Y)fPsYp|?
z5bXGXrtf6Lu0(l@0IfO3Mh}t?2T~mI*LyI(<xVJn<;A6VOD<%5X%56R9XC}x!Pyw#
z0hUAl?BVOYwsCsGs)|UN0h;zuI}bnct$?<WFT&Eom{dIAY9~@_XOVp?jr;>lvm^n{
z45wL{CBU9PM&2M+nBw~ZD=xlp+8UlRn1Psg{uv-Zu;<If)jt_u1xcv))u2Ajg^P!m
zeH~?%{Zbj{JR@X`#b9W#{YSWE(f@CdW4*rk`p@l}ZV9ikCRtSeQ1KtuWhtZFMxtHi
ztc<_<fx*hkd#n<l8k<bBIraZ^+`w|!ArSr#3iy#iESH3i{QdCzP#v-2HwT_R4xHA9
zfPDjnHc5=8Bi@<*ow?y)`ELg8qC|JxBed%Lf&m%gldq~E>SYgd0~f8PEdS2h{V&LF
z)$rXti$#hc2FKq6{j{VinOs@4$*2gFOX7jVq~;~X%Rs_!Cb2*Qo)f!I(H?hwk0c>h
z#Ua)r-tYDti+S=9l)EwFWTNGuB;AjFVz)_{Rr0u(Y@EVOiZK0lLpohwA$ID#Uq(Pu
zTsHe$fHH5=87g7EU91)H&w;t3=6d$}{Wzi2F7aH17v5M&(D2W#?EI<3SRCkr^h``{
zS<)A>_%FAP$AxX9nfx_G>v9`npqM{V?6vPo7>l|IXx96|Xy(%&NBL#@P=?BWtn_zQ
zH)kC;PN8!x@F4BfngQD?I5LCq03OPAK&Tj+h^%%p?7?TJG&hM(TxXC2eZMOgw%X{p
zSx&?pSzhaYj%!F+Jmnb9p^$Z3SEqTN;zMb4A(4(90$R{pfH?p}Df4k`%NI+-+ll%!
zv^9}+gV+Q1%KiJ|O9KO9+ng_HN6rae*i|t}E<r<*C);00mbLzOwD>w<443kE*ItRc
zD_U>m{qvsHG_ZvI9Er>bM=^hL{V7Mz<LbPJSwqvuUGzz=@lD?l;&uy=(<%?-ry=9e
zFW;!6Q48{y%^?9J_#jF$8b>hid+bkYzj+qJ36XYh_pS(+@YDNDSU^?@bGo!~qXUUJ
zBi&XWj${ftZ004CV;NqQ(frPHTzuk>z8zb<CH)x$ZM-6%twSdlSqi6zzc0M)!;AYT
zk?#p)H1|2SMM3jMiZbTV5eU;0-t#TlPXN$sx=Lot`<}o`$0qH@dVRm&_Z_&<pNJ$5
z{v(N(C>ehTJK3wa)s^oHInL0P9|bqUscF(WqdEahh+TwFby73w&Lk=3Khx9)s88-!
zICRE}2FZhM9$0{zS{pk;%Y@*58K7t!^a=X_-o-_7TN=|H2@L+8SVD&r#Ukk}E;SV;
zHIJDhC8b)h^9)n|p9#=S3lpRk?lBLIO<hQV10D<1iA40I7acc9knX*7eGwQ&_qwy~
zljnF2Yge5L)}#;W`spPlECX*?nU@R-GiguzQufEdH-+tB0=!|<U0XYO3l$8}*}6Yd
z3iFUto3v^K(R(A*;w6iVRpMRyL-{Ew3jRO7Q@vti|LJF6S3M#^SP(kJ!eH)uN%#SS
zco@pLFCd&iJJq1#K{SnU32{0!G8MCoSgJpW9F%0~?B8lNVkCAaYb~c(L>M@K3?qt}
z3?|avY#I*84#Q(M`(y0L^|SmjeEqk$1|^b>izpeo=v3*S{d*tG@ffn~&If`!ul93k
z$#&6Wt@dU9(ch=o$%e6L2;xatYTQjzOFycsV6?3iw!BF4E+~3`?V4F1<uwQfWOt$i
zaI{ml%ZDj3Li-(Fs3Sr8c<URIun*FLY^LH+4-K8&J68bKFz=T2z_3C=xvPN42OUyi
zYc<_0yu8!agESSPE#&%kfU{UlCShEWvBA~H3eA5&DWeN^59(mn&@2T9Lr$m@d!^lf
zm#bHiqlbzDtN`N6L-J8eDw35O@a)0l8VJ7nL2EJzed9>^M?&`H`RN@ciaKsjTkiS0
zC@&#-yNlL05onm?bsVWkydGz3;{_BX(oJNAY#+)k#<GE`B$|qPk}pE+jY4PvVUkB6
zF}bgf9LQg_7Z5e&wS#?L=q{Fnpm3CK9F~HA>VZSZN+cMM@uN$e^~2b^pDKJ7Cr{Pp
zc4m`aDGo&G@rUUQ>G9RgrsVfODc2CHA{0O<f}(We@}yl!p#%>>kv^_5j8CqU^e9^D
za|MblaRLV=;}4l8tiD&jo1`=7pj4|RiWuK`6}p-ZLaXBn1&zFc1E-xa?+*3(gapPh
z<UT(iamD4<^p#j!l~R8YRDKfKPS!9M8ky#9i~ky{-jHOgfn&QmTX^UP%*b`L2Zfx2
zY{T_2>F!W|#P7mA^;=ov2h4027Mbq!*MkU~Y!$=6*4YFrc2(zeHD>h0#V(_%MR_!$
zS2RvuCnU`|S^UIDI-bMSTq(ORmUEPx8}|f5`@ge39~e%_d_WFSdLcR_Wcv3EmjU*W
z1Qw`$QnTd#*h~WF?HFeXzL=^Iz#@?+uJxV*(<FIbWb~@nLi|Go=r546sjylBOf|=t
zL<QEN9u+9FvQ(Ra$RSIwVc(rsdd8A^zPbMb$;nDYaS>7h4oqw6R76ox;eSi{$Pcuz
ztT2exNuUaNaysX=Lh3)N=Uw4YAmLv3=@*AdpQb|1r`(QM06R3h3J1ep5{o1jE<$$^
zw1-2Zfu(yRrfHm*9KY!0NrvR$m-(~lk0xNRfP93yPr)MMZsrXi<KxVT^090cF;HbT
z8pNjd|NU+9ggkj3?qip2bZD2e3uvu7hH&ofJwdX)P`CI;#)B9TKO1ne1@Z|S<<FuF
z2RME}z8BGOXKlSwM>ZDDz9n|8-B{76oNP8lbQ?@lm<>RBTMN)~x_@%Nfezh-V^RA|
zl6m~Nx;gLv7L5G|Uo*bSTCqucyA8Gsa3qdm511MY%%O@KCI9$Bk9XCxY0L&Mk35v<
zZQ9}Qz?Z|y0pf!gL8kylq<sg#(5=Tdnf#%s+B+3gBDWA^{Y-(gIg8H`1RQ`jD_lET
zIhCD9ad$PPk^xwVTZk~?(|adpRy8wtKQ8bsB(tl?PNPze$u$ulTmT1(r@ErXR$ET1
zz~iRLvKZ-qlTFrm4L|FxdY*(4j$!`>V9P36u1zUe124Hh(f=%axKDW%x67oI%yeuj
zMfpD5_oJ?~E*N4~a-Rxzaj&{mt=R$Ezl5;(y0V+!|Hs%{M#a@;UAqYoEJ)!Nq=GvX
z7TkloySqd1;4Z<P;1VpjYjB6)!5xA-1phYO&(q!CIsLxp{0SMr0LI?C?pkZExvn|y
zpJf=8><%MJ*K*HZxa~{htid1iE&tbEXjtI^o?hBmfBWIdY+_%8Kuw?4C;F!UZ0FYD
zvn`cZ_g&Y?EqFXrWm3Y2G&VVf>5E@RqQ)>OZ6_}8^T=>^cIv@d!ot*AT#1kPL!1_z
z_^41Gj2xL(1>}FV4KFjhzJOQpek9!jcS2z(Zz^8MRwWO4*s#>^#eX}Eqg2N>-UQ+X
zS*azwR+#4obOELJkuqODObB@7@-*@lMoQ~$aHIH-0r|O+RPTjCwOie)wDK(vE;j{@
zeIL3Tz-Qn%`^-Un#Gs;u9PjAGO~5|UO=F((8!i><rapmtDDXqCgEq6Ui^w`*HO3q`
z(wNGE_wILI{h|KkFzLq?pw-<0BFU?b%ZPYAaJ5?y_YlZMrstK|TBFuBu+%EjZJUc_
zU`;rZ4+mx8{Th?{sDRnc$w@rt3k}q%8<|6W#32Jo0coz)O*C7#ig6isT|pZuPn-G*
zkE3>Nv<}C$e~nZ!a*rV-eFbos8v}D;mX?Sx4|jKWShXx5ovNv~l!8r=gMPLNr^gCK
z(k4IbKq0hfjmvl-Mjz8B{a$J5eu&H-1;DR<Q8kFZ5C60E+Em?3-=h~x?bjU=b)u(1
z$K!Pkzm_kXk2YiR>alluDXw}8>|TV&Fx&2uf_`96h?Q|@Xsv?65y2I4g=no^Ey0H7
z9k7dBb;BR1E*_0*Ov`f}$_r2=W)r#2NN#h<By_s9VE4Y@vki?m@a<<Ol!6(-0pYZ+
z`&3t{*I%wPT(asFUtnMHGn({PQ-#e(1kMOTgqGoM@`ey&om#s(uK5qK0NKO#PcMtO
zKUK%1t-T%$@?3uaEOPY?q8CR|z(#Z0eG+@r0p)&6zMpxBX19R;OjogK@2+e5EO(~m
z+iBC&H$*vhzMV&>C88a;HO*bD2TOCc3)e7HpKH7xgmAnbiv)9+GM#aqTQp+lRx#y#
zhD!-jDH={Pz4>~yp02l<C%_y#*LbFowCyw(PhGP#=cQkm<8J*4jL+S)-N0-nCZctl
zf_-f0Br7bel;8`-YjRBXv4g^b|GOfThe_jsiqUq+6WP`EYHYMX^o7`W{eZWfBZy~q
z6A59>@IZ2z0Ba-%52N5UqRnYKr>-_<)^B8JBb$%d=y|OU4}wc`u>P7}zkD$N3ZH!$
z*djad>N7FR8ly2eC+PsBD0kiegL#bkHDKS7;t5D`0#@u7vI311(ZfFuHu45rzmh<F
zp99Rasos_(2#)zxCWYqMz8N&T{5`?`VJjF2a_SB3GJJ0#j*Gb@Zx`}Q?3M)X3_}<T
zO-L8F3Z$0$IbO)Rn?(223Asxr1ch)($0ftn-QJIk@;F=JYGW7wPY|_flL5NM?n3i^
zLayO%pYw9B<0F`T=!PkO6i9xVD;Y(Dt1Hho#Cd!xXd=w<Xgt>m4?(B7pKhwWlTOor
zSCE@%oyisy(kQtsIv9D^^|-xav_!l_8MZ<ivtB5hVJQ*5R8!RS25XtbAZUg^VIWYT
z|FM@hPyrTR5lDH@Sq@%v{j(mj_;?kx2e{xYPIiH%{9j3ePetQ^xvY_X7}$g6m_K3+
zDnkfk|2>u>07OKzk}p=bFS{(x6CW4~eND7+4MSfHM8Kc}BUWz%u>nWp$lY~sn-#^p
zDm`zGubTyUf~|)c&0{KF2nTD&&W;3*jan68@r$?k>)M7cr*4qNItwKXi&eK{Yhc@F
z5VLq9xS#{JSE$L9$|<<m>HM>Zv$Apku;R>7<&X2(K4WlT1oFL}e=t+SDf&-8<4}0J
z_XwR2Z4weLlGf$2h}@S`rYVnImP1Cj&$kCSDb<`+D<eb6<LnW{{J%c&Es!F6S_USF
z4Q=&>45*(f7@qjp^61#P!5g!;zPAYb+wkxoPY#pIM{;P2hE?wt6*+ln%a6V&+NZfj
zwaj>gKStn*`Mp19#3OW?^hM%fQ&y&NyV@H0mnbBuoXH+nGviLFFSg&cC&vq`3jb&6
z_tOo{SJ@T7>McsBch;nEIu(-ZiWVnsmSe^dtdk%%!k!^)_%=!+5#coS*uK*+6T%H-
zoJ7Vysg-u)-bpbUX?4FaM3GACY=yrB*jKlfSD-3+I_X{#y_~**t-@>t+e)OQVdM~6
zUCd$eezvi<qTk%&iNN9O)$Z4a^R~(@W1K8uDCi_Z59LAY>qMwpA@aZb^5jU&fl|fC
ztAb3M7K|bJVR}uzadSzVR0nggOB*cJ=r*U=6-Zy~s-2~;0WZ}Kij(C&s<r&nGDlj{
z-m;5^MWIe1o)3cW?C*`YkC~^kn&w59ma2bQ)h~6!p@R<O60eUj=_Qj3Ep6j5k&65r
zKw~#8p+Ft*=QmAPL3pti9}c%x=nrC(-OP}f9^OxY8F-;NYM)$$96r@hk%Qz`@UVBu
zDaoD={G3aMPsXIc&SZa3r==?aT}COFseQEIM;k8=t_-HGkEOg?{jL^AA!2*%tZ<X?
zc-4mat{@8L!u8C4ZrRE4rsZt;;3(K(j@%~<ZuVtWyUwcDVIQvFpW$Hna>-dDz92oi
zWvohhQF)`!YSo-yr^{1$UYydr6Eft$fsCWaIW~#BS>9rxsF4g2oxuV|O)U@S!;jZ=
zDX2HYKzh1<mQtrtb6Y){x((1CnI-W!`BSGq3mY5AvuNKvP@CSSC#!FF4fwA3bx}W?
zCAB%$Yv?F~Fsz*|at3|wC6z9ZdQu*%71&R-YW@t83JnWt-e#t6lgqucR88)07fua7
zA0lhLnWWOvQMhHOZhjBqpz%MhaDsvG>^O|f344262NhqSo5TKly7W^Yjf$Guw$fzE
zpZf3e_TOIxN(*fmd$zD%QXST%Nvpwsyavo0;XfTM%v>JMPoe*K8FcHN9RMdp)xIUw
z2_X<e6ieyrsSVF3{Q$P+LUP0?F|k>wtun6sRFEE3?NAP60o6%3jDaecv<I$FR#(eU
zfTSrGylc1>Am%0Z3I_Di_iY5}y=I-I$tEz~`tq<5%S)!4E2Z7T2hbi>o6zT~`UzdN
zjg^<Ya^<m1Kp((0>q71mxuQuAZv=y?g|WNk1w;fHGhh*rKT{Lm3S}ar4^O7*$yoS7
zUqJzQh7a&XXNQ0QT^sHnlS%S37|+(X6RXRR=e?EslJfP;o5Dslu{ViamosWr;VOzB
zwM`?swgKP2HOY3)T}T%V>}xc1HJ&`#JaciKHE)?6Z^8N4dbAlS_%=6QiD~)uEx69N
zSbXAzmS<>dM4j{>j$mLMlY4OaP4~r=Y?PL-zj%U#Tp`Z1SLhr|DNB@%q`R5x-Y*e5
zq!Jy-H*~YhaVB*-tIY&smUG?y^14j@Wtu$Q%|uZlk`YgEsn?#-4T9KwOiNCw4>daD
zmdi87^?SB7;n?Zt5ByeSq>@CbO*UWjf*&{wa~sbIrJ@e1&q%Wwq6wbardj^&+4_$o
z?7x0e9S)Sj?*j~-N^+i(Y=u)1=VFm3NCId29!+gdgA)SZ8|dKe`+-a<Um%>e>_B@h
z5~vNG%7}$C<-k(DPLf{}tnB&&JaI0djCIp<b{Z6#Mu%4i`)h-!{H^r(hi<2^`R2OO
z8vu634x-ix_&{YW1mBzRnt;_jhWHR*^jyy6sggW+19|HTA)CiyXej9KJB*R%RvxC&
z#a_AgC~QskC`m9Fm)PttSgyu#x7;BkSE0LZS^_15xKGlb<id^QiWIv)<W^YZw}pnC
z(SskSPQSpvloPoT1)~41ga5y-!$0h87_TuYz;?**KK!I9@q;2Odzr*6!x+<lWwQ*}
z?EAt}q!yloy^wGOtZT5pbXB~)099+IBs;e;ENu(G<>+&{9RALF0(z01ikpME@p56N
zGKr&!=zM@9_IG{%lLRC$WDwAZqzV5|SKa@QzwDpil8c7R_qh>|(=ng;l}bIZf48za
zo7gP&YOb;IEtXc5VNes$u$a_HFl2e`Q%mU+vRkL{@=qfM(NR%GA}#?E{&ox7$2K&a
zzF(JnQ{*WO|1ONOV@a|DyFNPR)TaFV5B-nv(trP?04@|@Eo<6aY4emk=Ifrc+P|le
z%d}pe*{H8!#<QgXSFW4l<9vU9y6G7G%IUO!h#4LcF*;qW^xbNkvE!k7?A$^cArF4g
z`Nt^paV%gm6;x7Cm`ITY?^O$7w{9nCjR5_%B?`}}K&j-fVkOE0nskp)p-q5IW@0*;
zw*76nM1_{cW`VWk5m=A>bMGwrPZNdy5lN-xgt8J)1*E%+PUO}p!H?D{fMcqF&9-tE
zsjpdjYqtB%f8UO5__A*JgapirZnKJS<^R!!|Lcau&_DsnQDI+bpa+W!^UnTDZSb!b
z);`W_6{<45RyL0R_10z!lKMg+@Q>(-xd+*}4tgxs+iYgar6b>`pKl1o$EKPLNvYw>
zZS*N8B*rys=;+!)s;i|{ZKbAc^ZW|!j~NTsZiuZt=s6aC7`v5Es%}>>VHN29iIi^P
zXK9&FJ3=Z=Qc_T~tk$f%oTOvXpifILo28d=SE$m^sULc)X1Z|l;Roj9T?_TsJF6u}
z_NxFO>oH<*e7vGz%Gx?y?g}>2H2=R{h<`i~0?;oS3GxG!#s7LGF#YPn1cJq0Vfur&
zfqGrJ{_AYUNXg-jX<G&=gnW3%vy)fxeW1`J{f)TKwn>smO5#-4DTdW-eVrJlH4rMc
zxN7WbZ6~=yU+Zq>7ARB?#w-70n`Y4@!C3S8yrJ-jJzZ;3-!wuSa8w&DoYdAK*I3>n
z#?SDm#p#$OgC6Xo)%B86H6&hruXtc3{$Fl}-z7<Q8`oZ^f|A1jrA7bimi~3S(~zKI
zV3{>$cX}KbUD<3nmbwy>G2KPF(B+(&zCk#rQGlj@Kisj#`VO<kah)!HihX>%<kN&=
zOXhM@K*MEMIUW09{LzMnlXS!vj!MZuPTiE5OijZlHU6}(3>ne~qxZO>A?jy`?p7PW
zWFCQ0y&op%1Aqb@1=JW*%?8^HA?q)>|I<zRf&e^r*3xQH!zKUIxBTN3Tt*HPr$Uin
zIF@>uP_|&waCF0V(c$*SXUHl6m3EnyF_nv&LK{%DnP}UyOp}&xQ@$CiuM=zCO<=ZU
zOwbLdATlCHix1rGt8BB6_~We9508<;ruW);y~CK36Hx=M6o~<hEax^R%jZA#1W!Ps
zCljq|nfQltSmpoW+WPf{_@W~ctg=m^|7T(R|2}!XVEef%=}H$J3LzoEVms!5;5m=W
zrT&Ok_)wKL13%pl6YUouh#~RUZK3@F_OwRVIs;^a#5~%8&8j2Fys~Dkd2Ds5qxjnV
z{CwfG6KX{vaH0CPwzg6L1oCnTqYu#j>;MVIMQZB6=Dh)c+BWlkx;481sAjWPD{1o!
zVrxI3QCWFCuURj4$2neBZZdGpfp|`)m)DL)rM{p0VO76n;wrG(YYo8Azgb$e0@!I&
zpdXmIp1VR>kphs$q%5w-+7|$i@1v<&x|w;6X(DF0N~x-7A+hrsK>TAFP3LH^L9&ra
zIg2cmp`oTm;MU&c+c@`*mAn=IdJ}Mdex9%*6RJmG9hOz{{rhJn`jdr7F~S^gdAVs!
zKV{Is*nyemky|r$`u!K`ht<boG6j0si}r3A)%(oCT>VT9&Z`2;erK_6;g=WiNt*e8
zYjgge&pq%u4t@na3h=69{Y0{p@S%W$?Cajtw`di^HsCx(m)-J(MqvV$rkQ~~&m3~H
zvg>JWaQ0_l`_{B85WxX1xaHHHA#fFpV3Bb32ce8LRaH%~8MMuT4S!u0_w%j5;hfi4
zeucpTEiOl&>r@7Wt|X`qXTPVnae&bTPaVGl`7=P++L(i@XgNQikvw^|cES>*0C(yG
z#QK-ti`w)8(_jvHsUZPEx4M*zHh{;XAGEkV-!|PDN!<aEnGhff@}u;hO5{*007}aO
zFxIOqR@>WbTz5v(%?9I9`Tk@BrypuWz3dV9@9Y3+phu^ZXyt<ss(sYPh_t!|kdpb4
zH$YQ63OreA^n8KsOhVwRmp2{OrlzK(pPzP8%~T@}j(<7y6C#gGAI|CdumQ^q@t%zf
zcfTj{Y<M$R%w&;rV(#yNHjPcorY<oD$vU7Lc<;0T7_)=`<9S?JYIwP`<^u5Ku(o+z
zK{PZn(VNX^)yi2ro}XHp0H!>$b2G(e`#Uzv1Z3FMVRB5x!j8uyJ5ylAn}v|urFP47
za`#T2($X@X%X!}zh!KbKtUz3km4H?%lx7Ar%?N55ns6;13NCq6uu;9u;%s}CeT7^W
z-||oP({ePEx?Xmg<+STLv36i{J@UEz9&pMNgjNeK`aC~A?uwnN+us8)caET-pw4B7
zhOns?*ONwr4~^y%@0|c4Oe8q(I12#mdOuQ<3~fvs?8D#qr@fD%f+9p|95=38{89V6
zp+ckXlu`*od$k+7HSh6lO2*~JW~8KmB~hL#oAtB+I0XK@ncVoVZOOk(E`L=aS3$3!
z??JES=M<y}U&H&Ux4yp9-v`#hid7OEZ-fQ>1Ao{7W`TM{D}#JL0BAXm4n<<$2+NsZ
zWYiy3w?!h3R-(H3KK~$GV42h&fNW`;gL;~?HJ5hM?Q9XG!xEt0$AALBAmPuFedfv9
zLSUF5FAt2SC+d9IDzLBqvhiZd0K|a~xIjblL38<ZF;!Fq9e~MG)1PZ7(sCUhAnz|d
z09?pAxM$$sf*{{pU^K5Gv|E^NYdOYsK*wS+NhU?|mQirS)93z(gZ~t$g*GaN5skUT
zy?9zIAzcFbxly5lpCZh7#^rUpfv{6<eySm7pcZXdZ@2$qMsg(|`gu;<>5Jzty>Cbf
z<m$GQZ@QoFJDyp9IE0QDuHeH51KQ)JMq{Dly0gvxdt;w4sXMA<00{Za`ZCLK2RQ88
z@*{B&5WhNKrSH$T>o12=JqEnt`||l;fZ*g6qzc$2K)zwa`2jEU{J6K<jdWHK-}B=S
ztIID6%3pHAU7$h|YyjLfJUM3WPYGVh9xB)BK%td3t$J$>qx0n!*Jvc@SbKnsTH?~`
zd@vili!_&lzyMHcP3xGNh0%%-{ANs@WdtwXFhpNwE|*>V7XNwo<@Eq5W|*1a_>3cc
zxyx<^66Ex4PHi?#?j6i5w~J5wa?W?^Kl_w5Tiw(SLi;&)LL_z_ywWb;t_$t=D@^C}
z84qZ+M#cVF5dP)85I_^heGMzEvyHK|o^zbH)fEV?eGPs_SbuHODT35R%s|7e{DtIE
z;D=wJuO&JSFQ5@8*^@}h#xaD8H>xD@DA1*GIhWi5^V%{+rD!5vI)rrqjv7JDz)(-a
zhOU+jJf89mfV_x^2D%3lFO}$77T#8w3?~g*{ze!5P*ot6oR-#wfei^ON^LSWTtHTq
z3(5{u#D`(VtfXQ*cIOP<m;t6lc2XbXT1^HogtXUl3%RUj>Fxva1JB>X;E9ica-smp
zL@j8W?4+<3M%cbjo>@9Mmo(fs=CBAFv`^AA)7RMdk_{mozs98pEDpj7slE@!r!Zz1
z<G>48quD{fCV5aeVG_Rq(I_y%%*n9N_sp7vx>7yFR#*XP@F6M)iJq??++8l{wr?XK
zB>l2ndt{}j6#2Rw$QmJm5q>kk^uTBieEzZ--o6i(40*Sy(E%_k)F=7(Hsdl{moMJG
zE+_8Mqb9z21Rf)^tXq%*xYCdRW^X-&Soh0^=5fCJo}~^d^f;g0u?*yrpnTM`xI0H6
zyH};ur>=7rDrQ5^=3;bYB$7<%f)B<|d7&>YoXR=kAiTsV!Qtyo8B>HB(aj^h^<-$i
z*!??GZH{DV__O32@df<`6d)O7zW$4<zbkHdGh^tFNi(@~ZK5p8p&j?5^)iXh?&h{A
zlAl}fL6l#a7Sdx++Y)bd#L9Cr3;*2+OtV0ZREuKyMlqLVXa9Ji9bajO2gmEE+R{$h
zggjdNNnYU4<os-6Z8~a68v$xrl?g{BRoo7xUtvi}Gh^MZY^hD06s0Os<d}tTCKf0s
zuYMR%l$yMq%H8#FmZcimo18FaztJAvs$eQj!kKPAP4oZzm&?C}X}0EF+NvLBdE4%>
zY`k61x=k)>S|_GBWHB|7kX+8%E4A}$+B1r?5A%_IkuFPHqJ8jmrG-{<xYejsMm1um
z(9NYFy{cZPIei8Tt5DyeR;yeSQ!S4Ms_vscfIMOYu(fS6a5zT5j%rrc4iN2U3Kunh
z1`O5aetVBctIN?s^d()8+%{z~>V%dqipisVsbtWglXKYc0!9?gNbEO=&<&$-jbTEe
zkUr<N!yx=1RBi{ZkQZcqqc`IFa9>;;dYJ80a3wt6>y4fl_HGiL#s;xmKO&+vaGJFU
zXfqjt2<17tam_n`BL%~ez=HI5*886@pbr4E<4{BX`9&DEG=tGV*j(X1A0RCyj9z$c
zkY9MZbOAgyWj5R-j6e*<y|-iIDW?C6Jz#|Y=?qoMKJHaf;fp&h$$WZPX-8;un7ny{
zD5oSy!6g$1fJx_xG`I_?lQG;1xVQr`43C@5iZ}45C|zuu3pw&?T0#cOVG8^K(&C=c
z3Ufsm)r65^%K=|0uTcHpF$|h;<E|`Y&kZlhwTc<=@NYkwtak;m+YI;`QV9s<cjb=_
zG4C@YM#bHH%ks7y7mcdPFMDx&EQ@lT9dqw<?=-W&lq_Bl@CnQdW(=9s=cSCo<8iB8
z-XesEQ;E3ChT65JOQZ|IDDO5_{AiX*XWs#^Go>zBgh0MsTp~Hz=Byghd+<rIw7UL?
z5g?+n0>puYcjZ|1-tVc)rgzff2yxd}Qaya{NMV$!vhi6ZCv{p}61#Jx#FKH480JXv
zjH=;J1ocPj5J{7UuU>*iMuE711nKkZ1*hd+k_uQA_~M2oINWVw7Sl+Wxq|ngFoD$F
z9k=;mGf|>B=mS`&RGB?i_r}woqUFxxytD+pg`d1V82+sXRJx$)7vk20-;xwu_(!35
zf3`2BhBAP+cHUn${b6yF!grrV?4o`{4dopC!*r98{ei@^=wIi&6~SxqK+(6}EIJK~
z{iN6~YzN3(J@<sxD&-nD0c7g+#!VI-Q?rFfKb|P;Ry#a8mXR>XNrof7;IhmfdY=bX
z7fXp|3xa)1Faqgsbw5cM#Eg)b4^#n(H^qX98C^`E@gMsDIM}4aE8bylaZT2g9(#bC
z=ku+}=>FCv8+__(NT!zE2V`;ZN$W+F&qp9K>vFDGuF<!L#9{6HCpktnv11lUYY;BZ
zycxNdsCbbow$5^9$kcBiuf+Uaz-gyI{a35z;mY!SI8OKidd!_T=7iJG20*u<*wR#(
z3_cClBn+1=Ps@B4-9W~(Z&jqfF2sQ)e1?R@s9-NihAiHgkZeK|?18VYU}t3n65o0X
ztlg!7k!<#Vdn4I=1O&*Rg|&mEm+A!*-V9>+BOirW@#JYMBGQ<Z3(CiP-U2#o7#IUR
z>QbHuW6^m|$AoR0TvAIrxw2V+S9Ai)P&JFs>ob(<`_uvtIr2Ccoj{4gRw2ufQ~LPL
zDV@R>?+_(wE}|RIxAeuV1l$T%#y4L8rLMXP4`wU|^TPYc8!YjlUx09DoBSY{={gvA
zm`5bs(@nDC;1ePEDM&oz5y1G)3<MtT-cnn3^YjO54=~S>6d+WsIQL7p^)^!a8w*_v
zFC{wV9K(L$VsrsA3x-Q{gq8x8saybp^APZVWekp=EM{Y@45=}%dR$MG7G&lu1HPxr
zRv*-js=-fbM`xGRtRd{gSUa%j#v^dDCl2Di$Zj?@MHeye0(SV!w6PZS8;fkF#e!n~
z0D@Rw?IJo{T+R|pjBfXWJVNPk@E3uPE^nvGE($5Q?VRFc6Q`IE(_<~F7d~;!AJ`Z{
zv{Yr|%yHjLDdt1_QRK;s3-cLt*<i<yWpHb_`{dVWeReeDvY%xAx8|cyDCRrH%lGH^
zSH%d??AF==y4yXYmKuGRZUP`B{;0X8?sNu~Mu*7f;-cAU68S+ox%EDE@OY`S?2oM`
zG-ENg+}|~cI3rZSZG`mM2EWX3IYFw))VGvt0y`_3AvKMHuJCG_H}pmj9=6q;LXC9Q
z!Y%^);eqRB23{3}(BNA=73vjCdOgE)990y=!iM~`wD<DdFt{-<wwVVJ)iU*U)crG=
zCcxKo+ix#=K*M<pH+wz=tT7sVj3#PJlA8EagA?>#877DfbW%nljgZ=}0&?0EkQLyB
zcal(inYj}qRSRHJ?*WBtov|=f9z~+9=V>P#z%kJ_l6a3~y@{=~B$-<e<V@}Uq62qj
zA727wtAZAI89rXjEfP-wMT|V}oD>)^-4HUVG3)@AAk^z4&>T{iWr_o#LZ--w@Bn{c
zUbzr^J1{Zvij!sHJA#+g5-N|~tc`eC8}a)<z$#8ZZ5Aq8L|;XJ+)PfFPcj5!K|NxB
z53e!U8+uvv{4!8d$MhjaR0c_T+#DZaM1B~!74pdCqjcoINARGHF@$N!-cJd{fFS(J
zpZeX6>4>(w78f-jrakXeR$0l!YSmy1f2IJn;dl!mb!*aJ;-C+sG@A1-jVm{~&bvWz
zIecM@n%5JVp~JG}Y*+m1a)YRETB?ltH77C8{F4rOgF^7jDfhz9EtzEY@vni(ZJbG#
za9rLxaW^Qi1@N^P&$w36a>vm#o>8H0$-Q{5XCG^q#V?56ob*-!ej`GGblZ!8v84E{
zHv)-ScK-+{-%sFzYNb3H(+YTzSTdu9LWA89-9dS}VWP`<??OT;ZHs|ub+m=d7dC7h
zgxE)WUTq9zX-tu?xW=2rEa;k`+ORSsIG-v|Y$K!qpx@Y~0PXKWvne*DgKYFdcOb2Z
zF*r4boRcEF7`>eRmn42MomD!c+fWk>rG-3^GIOeSrxO!e?ssh*HFwCw#e1Ko@oxAq
zp52~&-65CvQVV>Mo}hxCRBzE~^Sbt)g2Mz%BTx#LD;)}NO{=z^HumgNA2=A<zPoTO
z*W$aio^dITETyww%jHhR%B6lK;s#cM3sZwokuGjpXfvYSCyZT*^@nzz^|5(dlYNSg
zj*VnWZQ4${1k${HBk87g7<W@u7c<NO55ZlFS~6w|fb$)#o*U!95{-C#WczN+ZfD0u
zd{aGWsm5twIxl53GL%))!8n@`MI^@vrCXsrRS9Gy%=j=3;DHSmbA;hu;vj|@bpB=S
z0^Y@9(4nMtK@f0;^`{hMeAa<1uT;fc88Y;MA5)q5b0TAfdtdvO`t>ZiD5pfmw#Gv?
zQFU2kr>3X=C6knZN#f<gu}5nAP21d0(q7+6s-T6P-V;Ux$D0cg^DjE@1K@qzQFP=<
ztxwMqGDj8G^X@0Is6IWZuTUseiae$`i(xqp0krq?jn6Y>$fx-pkp3&~$Wzb>D_DP8
zq${S=d@>biJF>n?ojVNjd;7A{mK$Ph!6;{T!OjPqp)Us`T>&F2T(B~eKord`u*749
zKm?$XBlyjuhb5FT6s(m>@m}BM$t$2kA_<@!F@}m7<pX;VIJ?*e0zrpeNI}Blo-uXW
zYW3*YqNI~3_#(oX?IcBl;txQ>Z{**2ENFz{Mi6r?3y_YaP7#}*v4Y6QaBx-)c8A-6
zU$%&j60oHKA1Nf{bWzYQoR6sV6lWjv>C79OOu+H0BQhSON8my9j1f<`N|i1&{tyQW
z1jCCoX#+SKzYkHuWK&gV^+anr>IA_+uMgNjheA_h7-H>)7~<p)W`{*cUkiV5MLt*I
zfx<QbSBI15&e9m@2vL=Db?^HJ67qYu@}kZsk>9`$B~71YM@%Z8P=iAdJEhJMwJ6X(
z?tfPQd@X@roRrK;^6P9xa9)%*`EjpyFrJb?ynz4VR9I**7Z<*hBOHb>F_cH|1H({6
z89=H?rQ1k5n7jt8L1*2FImv{_H8ZG{roGOoi*24aYX&Vx=q)4(;X%cdgUlM?Qp@@+
zAGJvOoLGiP)F)*fGAzcoyk1q4*ckCRQBuPUF4T3h>t?bMmfExfnc(dzLxDeTfE1!0
zW4OWVDDGqN6cUs|N5*h}5*u`5nQ|N(&y>3|<DnW%C{l*v?j^#OD~WOfGBIx!(-C;`
zSV;i%o5Af`pDt~PhR$&hi}KFALkb{fw*53~&CePB=qq5#GIjQ|U)p7^<XS*-xpkZ=
zzNJ&PaO;L`+@7(_3QuD`G5u^BX|Ct2yIg{Vl%>>>KBh2#)%!$CI%2exVr1|sa*3V7
zb#qx}MS?h`SB~fy4XYG>4V|KK#CnAxSi14yOGJV+E{p}eP5*3BopR`cspn3rQRF>3
zcyGeK8P$4TZ%#`0(=EyVN?W@7pLMYf_Dg4-q`rhFKs#$q{+emp>3_Qtv32pK__wC&
zKSg;z=U1<{p7*x0N#(efz?kKwvn7jtg*GQPB^ghX7Fn8CscU}NIv#0bk0B}5iMNHu
zdpuKKy8+U{bAqjF!*ioA(tu6_u}QOaT?>bL>(EI0d7Q>WHypFXr`211APg?C;qz>R
z?n4uWT{>Fg5PPYl%+rY7=mVoJbHSU5nv7~KXC`-Ou@rXRyVS2PI<2fb=~zBbTfLq$
zWttkG_~e$@#Kobq-9#*{KSzu8hc+HICR}z^=`y9CdeLi)_bE*~pLGG_K27A;Z~3wF
zWr{BCqPmPVoj;9C8gv-$uih%1dKwbiFr$&OFW4@R*Dlq%*5!##nf6iL!9W}D?4(?C
zd)mHfm|rT{HL0_-klbZp6=m_}80LHK!+d7u!0p{S>Iea^46T}`Z^w6hclk;<x=_cQ
zA@<Nqq;*_S<G7RM-KcziN$N>EI(K5(?8X2}cO9>}Ez?vmAHt?*8|J(3qsuz~uF+Pq
zgsf}RcI2X!!med&sCl_>kXC17BZ<SnOxyn4OXsmk3XF_2=|8IuV;2q=EgwD=5KA)`
zyv0seO}}9#e5(F#Q72(nW2w>JYk8KQrT&Iof~3@0YHF{7d$6zrCc@vYJCQVO%H$-6
z{V?u^uYo3>Fyv6b!UiBqK*=rJPaF`t-$)*Evae>hSnwC^XO5`nsdqlvhNz6vk*)jN
z6{d9+cP#K+{;N1DLWQZ;s=MidW0AheK!IFPbgY@|p&_*S$y~3aG_~dr*bd)oFET72
zu{Z-idtt+-$;8f%sqGggCg!|gHHIv%fod5QI|gO@E>1_mH*0le<wNA1vg-jv!owek
z&`wC!lVYK4Cyki~5NT5vC%ZVW;v2rS?KZVzizl}e1Aams1sFw9UqS8x3d0(+@oOx2
zyn)0{zNjfP!b17?4$kw9X!iXy+CjMsU$LP3%3BoFOyJ*#sPiNef@#Iom4D^?2w%^*
zAPB;6ln51xBw~;=?%xA_mvP@00<%Sjb50<w<$DS4BR$|8@J*o(q!CAG>=#*2aDnqr
zkLi*Z7j2V^bQ7Ww$w73agkc)UY`hJWhex=3S(3^ZN(M2z9I9tYho)<92;uhXK=QFB
zvvpr06`Avy%bOaZgL+^jkRi~whxLoLvscX90c*V%oRK8Z?g1A;zs>>G8aEWO<=KTm
zsqX*oRtVyx6C!kIk7XDpoZ4yitJ0uecf*lyNL*_mu<<S^|6^OP7ehaZzW_EYheCFQ
z<nS`%kkT44*}nLP>0zcj!WU^>iXy>?4(#dQR;s-V*oe%&Dk?iDe8foJwN-~tc=$n3
z*9HWUOlJS+chAE_5KL?iTBn(^ab5b<H4FZ+e)po^H-vzf*RVOU@)+z<Vq8eb6)WV^
zyXA4?AwrhH`9mz&IE&h}3%uf0(@G8P`5tof(o=sz{K5J5;*GiNZ*N0g;icib>gXBg
z67CM-b|>BNv2TngH{D~xkAQBP9p9Ox>?l+c1HwGc6WRP59nbxvf*uomvcg_7LyJW~
zm-P87y9Qq5w+F`o@bnfN)w67Bg3OX$v8Re=>LGztJ*@Rs5Css$*P^IdOtGl`Zq=^o
z-s-~73N=`XTl!C+*?8vUNXf;IkE6rG7xCGAlOG|mzX8nL_02Hi_)oX^k7QnxIVh9Y
z%@_&h&yDSkEhy~`g2&&G`$@PRj})v$j}#-#NRLRzH;gk$(e;w8i2YnVpN1(hk^rmZ
z3;iTv<gTZg*S2bAouXlvq0oI5?Mm|}djR9<VBq!}Cz<tK*9vMS{;Ag0cGz6fo~|f3
zUh|z*jpAH9l^-KZ^@Z`@;(pU&v^$n-+zMNsASt;2ews#u_t_}O)NSkEf+qV=BZA0m
zyTrB<&|wMddsuO>?R|fAK#hH5UBkKiwT9Pm-NHG;Bwjo#`YoU1&Zv@*L40Gj2l_u0
z09Iz0n3``!GT+ht#)xh!?q%Ur0|HLwIO8+R>pO&3k4EnTqRZ+#MqwXilD~(f*Yh@9
zM%T^TzqONZ`soy+c16^%ew=sYYj@wYs5O}hx(XHfa~y!e&d>MRPYk_G(IN(B(bL_|
z<98wjY3cq<gNd%)6o6P6x%1(il=gan#Pc6;BM{YCujHib9mj27$lP?7*WOBHW9zW9
z9(mZ=I4*pG__W>w^=@zmWq-hZ&Eh9%+MLRZ0Wcsbj24(bq2KtHM+iLoHpER8<jp^f
zRUI?5pctS|5{lGvKD&3)xt(RCFlB_CSZ)fn-(Uas>3J8AEbgF#ifhWDgVRyGL%mn-
zdI)F}(|RUT4BxZc#SX3b&9gPw_h?xzlHiP@hCjN5)EC}}eoILrupt2^h3?U|N%HfL
z0}4C$9Xi&)EWYpE_~3zgGokjaf^NNi@t$L67;J8)o$kY|mi0#L^FnHqT<hTp#qw2D
zaoQI~IMs&_ym9g=i*+?wKwQM>fHTOdYTcs{$gxRb@I+>tVrZTyqoGO=E*$k8eQ<k{
zwIgpaYO%bh{)UdIlkhjnDZ3o)m;J9WQx%2wb;9z4de8Zr;_%7DLNcEmFXADB50jO=
zkGBLi3Lhi!tR&U2({?L(=WJc~r)LSa%=ACUaKt=B5VHF5G|uUAdoZ-p99EsQ-;a_m
z9&RC{C%HizT+rS6zV?7k50w99@`EXUs=kIC3sRh~G3?^(wV(FH<^RfgRHfHY0CZD<
zTSD5{iW$Ij1<bt$3K`N#pcvM{lCgC2Q~!__<A^Mpd&olHg2-?`2e)p~U^LxkEAQg3
zWK7yjKZapY;yaY~lW=TuxW&^@QB`h1z$OA*#xdOUevhA$o0#)C9Jj<fQg$;v%TG*k
zA=F#N2pAOVlhslrB>q%94my2Nga@=EIjnFBsBw74FiW8uvRatX#lniw;4TN`USv{B
zwZ_umcdx-{Z+M0%9l)z$f>BO7Zo;SBfH#ePFtXVJSO(JI$UtAw5rX9eLj1fGQAF@V
zy+Lc0*^9RD!9pdz0}%&?%<vGZH~u;aVZiFz127%t;l~~Fj==ys3jFa~ibu+k7Y}Ff
z8<hJz8eVjE)Os=Y#Mx*dPbXr4=J+m!!Vu&F%m_+nv$?<)(!jLtD==EVehPfojZ4^(
z?RO7|TUbjvHU#7Xq0Czm`?=bv;u)Z%E@h@ta`fte-JKL>qY||IqLvsfW_a$Ha~L!2
zo=xu?U@l+jjH$K`x-zG&0%~Rg&M!XGPTsk)5|fR!$Z^4zTDr%2@Il%b<)|<Pedf6-
zX-I(cJ;E$TJx2b`AYzb3<Xxcur&I6O9BMZ4mD3Jtyb0H8;`(7UY;h<@N3mk6*Qryg
zQ?re;rD}{mEaL2!sBW}E)h5J83AKZ^DV5Gk25&85J=yR!>|}lgZzlucbQz4t$-QpL
zarH9SRWbxaEU@pX$D56%2g35ZFDO&^Zs@Lj%^m^I)iHncV0T7kkIOWR|1R7(+CEjF
zdtG0EKn+Tp^e{bY%^O{StbqM!#=rXIw4`^67po&#`Wxx9)iVCvoQ6r=v8Cq8<xL5M
z7c!)b$xypkiv4Vu_=fwPeKa|zY5mv*d~}P4ad)(EL~`uZ0x3qj{s%ehy|>@eH?s7q
z4({fdKm*pez2e_7S>qbHP+0h|<J^l;rATMIcur^HgtN68%9EtU>G)*RnvsbfaPIw^
z=S|buu9RdBZYSn@BD^YVNWQ0<8~!DoB7o&j`%z7AEA-~|IuExpmy0?<dPorPP#_g@
zxbw1YLRlZ3mh*`fTy8}2g9Y~It7b8hGG%uo`{w80>AZD#QuG&_TlFWF?A#lcS<>Qe
zm}qZzM=K5BJ8r8ua7)uR`w{i_)_LDZ(frK<phn6S2u+hci{re0H>9fEoHsa7^!d9k
z^R8K`dZ;CszqECe98OU2dT^3lI(Ro_Nmu!m!rO$bEkedbqzYl7vOnXunO&=Mrt8Be
z^97CA+9xTGbbc~jRodsrW-b^7o$OjR`$Xq++$hCg-Bs6-_l2`Dq}b#(8je@zC@~b<
zbM;Kqf-2hWl0JXvmG`zvB`Rg>fuxzFdSfu$0B>ZXE0J5&tM0a#{LDf8p2vEvmyl}6
z7p?XfW4gh~ID|G2d5B#O`A(ucVi0agdU+zfhHY3t5t^oG7g+~JpftR<zHYs7stl38
zQI=2Uwy8;Y;rMw)o5~mM_+(zWZ@TtnYX@7$^C^*^g#RVKy?K4oG+ic2prl&c8aJ{_
z@1CWpqi`(qK6N7&nYMv^FLyf=@iMEXY=Izva=F==6`0${a-8z^6P)g^7c<hG!G`MH
zz|Ly91?1V#7u%n26|ayu=5YL|9zZ!}9_asp0E1n%<dO)m?NP4HxZ-8WzA|9>8Ke1H
zlLmq|a$N!x5&D>2^+D)zMuY<ml=(hv?_b5@1(3u=3MnXefdWK$5#oeXHli9W^2>AB
zDf8b>8WZ>MPB&{~Yy`A05+20Nq$E)HeTZt*>LI7-A!Zgw64H+MYA%cN)r#&ZC=A@d
zJwlSSr|Xq}kKx(?LJc^!L<nh4{{;kl(wC}^%CXyz14hjGesodp$t_Bnc&hIbTJUFp
z<}InMEhm)SwGpeS;OjV^e%d&iw97@tJr@}B+F%6uGOltSNvddS<bi_sl3z>TEf8cp
zfo&viF_@wao$R*NN6GL0u`>Um@l)_SID{eRgYX}S_f`<FJ9^ZvObS;{z8`_yjd$W>
zb)Y<Aj$)`=HNQ22ZA^*VbDYzLcL>Z8`cBtI-y$5Wfu&VZPWXDe@<3oU>f}5yb7e?p
zKK5R2PW;WgO<9Yr3LH|QhK9Mp6pLR>B+@Cy=`l4i*p4;8TEfyOGy@89@^;<kY9vw-
z1di8&h`|GI{ASn`uoJzOvJ4H5ySGzX$oPjSZ-xQs??5gv&VI5UkQuFkPk%xPVt74<
zjG-;IjqQ*Bks$QW2BL~lKbW5={p)UQ&RJrlPKX}Vs|0`9>Ldt-9RPwa2NvEC$-FY>
zi;&Kb`&g6~<T7!jyRyGv843BOfHsTAd-6U5{3Z7hCm2WGlSIoeaDIo!&<|Y<p4--0
z(!WnGTlwj{3ga+!>MCsKs^?12<7y98qQzT+rGM`<Kh(XIUI)^7SKD;&(Pa(C2P{mu
zJcj~DxonN|7`(3SBq=@#T9X{8kcJ}X3k+f!bp<XyXt>+90x2r1JeNPakIOxDe9n54
z4@Z=Ahlso`t2{<qs!ZzvKL4HQ^W~JplZTSFAifXaW2*he{`n6RX$G&%nf8>s>}RS0
zxc80Z7o9O<j^>(womq+Sbhm?~Bkuf2u3d|n$&Foot~Z$mstk9_)-GEgrrO6{*uR_*
z^Ymkm-S%Gc{zjiFe%7Dzc(jkh_e*|yD86;yP+=$XA$YiQt9dF9(Rw4CR6g9iLP~2U
ziDtV);F|89#XnwBM<g7@{?MvRFy%C^G;(QXWacaRK_eFu+Okbd#J8HT!x*=`!YS~z
z^sBu8Tcf!zXV*BqX4Q_GDOfe%(k!0a7NV7KXd_l1r%y2!_b1ZJv<&A_w30l_{c$>Y
z2S+^boR#VuOPpdW8&{S$+O2r}b&~cx)|jN0;#slVZmUi{He7^u&P-oBwz!@poGmP_
zNl|)HPaHyKc*2&vzm=exE5m~onuDtiS>(JJM`rntU&YV!%n=Dyoi!YsL^u#cdKiq?
zMBglthxn{Xrcpg5j_Fx@H=Wnxj@aW7k~wVPyZ6nwiYwP_ch3<lQBoTDEL{cq=z!_2
z+pc+}!bKh{xBCb*=ce;RHrDK-2sXbzIpy)L0*7bns%<NODji$d-xK2)7Z}r4dnfC(
zm3y4y;8bP*$Gahz7J5HjJfC8*%VEfNDb2F}&?^m=lQx*-K1h+r%`&3~B&Uaf|H&eL
zTLv_6Ir;G@z}~iFI1;B{3q3Ee!Q@o@i)FZg4d@4QPGc<@;Q&FAs{s}71P)c7FUj%8
znKTBd7-&T>j|kY`@h4D3n4=0G3O-Uq{(?UH4J_p~ASy%Fw6(RZ5oTjr1Iu1H_}h$-
zr~D$cco1Gkz{xW#`n2&8-Su;$C^kpYJF|>-UGOLIcRH$I-!39sBxcNQdunMde?&#x
ziE#VL<T0+Jm>8~k6cz`9;i}irCGBkrCx|t@5ja}8{+`zTgtYy<zu>C4hDcyH`jR{(
z+F4AMW$!+9ixqq3I`-eLxhNu?M}uy1Pe~5d^t?=TD5ZE@CGhOE<Wi4YFJz^313`m~
zGoC?^p*9?q4xL=Y9#MF*^UQAcxu+N1Z!ovfE=mlv^;KMW8Ualgt?Qd-d)cNTP5})y
z>ADDg^e%p&9DGQ~JI7GLb<`?2urBPBVfq~vumid7@C9s?<IVZ$w|uEM-pO5H!C*U;
z+ORFJbJ(yg7sEVkTr`MPsp;F&rvuNn`fcX}raAIRGVRsf1Z(eUaFqyxC*V=K(jg2G
zOpx3IQZ0?cyp}ko*S}?Y48<iEpD?(mvIc&oB4ebEul4B(E2%+GBDcY|3@f@aY`oZ+
z$75|c^6de%4ooD&hVA*Wk1^T=*sr0O{tP_&0AMNn(6unl++P%Fy1DDKAKPuYh0^zF
zX!BqOQ8zM+Mu>ok^R)+shio~m<Fx+rE-_IJNtz;uxtfI%xS|~h<zshm@{YrC#&p&z
z=BV8RJ%5u)-=TFlf482Y@ZEtVX1OiARqd{S>!*-f!dAM9l=oGbdyd~^Ba7MN5HoKa
z-Q(uP&ji}=<n)J|XDpA%jMPl-tuZlvyENy8U%?vZt47j;Bm1j^^EwSoHaA81Z;_<z
zw{ON%a_xvvx%2NQeFgH!G0&O9iEp!+yICa1*l_F1>)rPNYk4Uw$^lJQVZ!mOmYR3=
zdG6KY4L@svQmG5Wh{$F@O!Qz^*C|eiW$dSr9O$wo0`r0M1n6Ad6eYhsU}nYKS_Y(p
z+wCN(=}M3ze98N#eKv*+Dh8n{_qO9Mu&ax6iuQ*7&nP-#fMme+T3QDl<I09@+WZNx
z;q2nAeyLE(F3`*(1SJ~t8_n2jL%;|lPiqP<8YSI&g;GaH${qz@4ygLq4eD2`A;jdq
zt>_Y2BR1`wCx`L)oL)vf1!Js}1=NK;Rx33&c*!-DTiTJK)m_{Jf1LLjbL+=(d-ff4
z^{0t9CNm65qwxcr?ir7@@>_4yRH!ivx_)$yc|P?Xcgi@$NDuf`7u=fOC1OBT39+|%
zFda>vna-U1rvxb278pU1H~F3CNTKT-wFy5t%x#)Z5zwlTonNnZkF?(Uktxlr{dLBN
z|5y;qw%N5Ms;cP1q|3B>JN4ZP&Tfr+O6fbz#htXOX8=IK7L1-ZJ!x~jgcT0wJs<49
z#;tfquf=|I_a@w?5u4tTC)v2PRq&YJ=Fh_e;=wh-46OE-u+mL-f@_ZLUR|F^F?kXC
z^g$9TY1d!YG1Oo0BLtnBbIW>^T5N5j)yim?N7EY0kq&t8-RCrp(A*bpmRGVJ2RzAU
zoko}oe>couXM`Og+5K$G#YEq-jGxJE+GG8!R&zeL+J^9EWi6{=ix=i<rylx#(S`!1
zh|L@3B}&T)9hBFjk}35Y{1f1+V_>Lqq!B?CgNSnFeSd7yz%hpsZ6AZMm|$bT_z1<X
z;`~8a1JJpzpohCdP#ZLa;7e%(K7>ksL+WB#8-2ws$rn!{19>6nR2akgL06}jlBud~
zTbAu@_@hIn*%y^jXoTUp0PDw5^ffFSX#&jipH0+fOr2gqo~P-pE3tAcgv<Sz;X>#z
zm1)(ZDEy}-p3UOd8wKHaUvf}z$S@(YTQnNY^TDy3BAxN}owZAipo?52bhsN-WAHxh
ze(FPG1qt({w~|<10&MqWqGzm;f)PHIj*inP8#~uF1|%n)2nKtg7noPn4=D?(l>#!{
zsAIISJt`>`8qo%Gxk^wZlptG?>_=W<1SBD>gUI3FVt&adhQW{LBq-xT;!HiFd(0XU
zT_`*~_60ieVIFkricQ}vB|8|R=jvO_TP(ySzD#Uo&?s~fG0cd*PCgUO{HAb(IIcPn
z46+W2JdlM4j|1&_T4w;<BD?=l_ChTcwD504qPH8Pf0%kq6f8{6rvY0#Hj-%rcwKTi
z$d_=YUh+vKd=AC&-6YxZ=C<~_>Z#OpTqpYkD+WSC{dun!mx$ZKE>-pK7s%0aSwOLN
zg~(VK6JSTH5mbq5#@Jy<-{rXyUUGI~gwJ6Tw+<pDH5TIVSpa2{)^1N9xs9W7WR_QW
z!HDF5T>G(ltNcN>dqX=udOm?&M2Wz&TbNj7WMZ4T@!hQc(D+Z-_wwwl!e$eX<3t@O
zqbtygI<OsW(BiC@1~N|w>{7_PX3i5M)<cHEKXcfm(Q7Rwl<r0$I^`*|Fuq+2^EeZy
zpbeD<rs!dm(f8j{0q-wFAs%HII#;bC(<OL|*k`0Z1FrRw%xJ{lYNn)sBmUsPvL-DB
zuk$SrG3>}wl*b_Iuw4K$du7XBPbiI2iMj%jX~BhI(ulNJImcNF_@mfcMw`z9bF*&i
zYdNdm#`{(x1UIUe>P8!?`oHOtT&;eSTm6YsqC6h$k(j=?l%<kj$%X%yvQEMbV{b*N
zs@q)cIMW`j+#Wx`r;Qtehv-+Ty3_wov#q&n>-nk8V$RblemQq&TgJso&bjjdrY~v3
z`$JFCBV?YG38l(dL_89SOl-ay@456NMI_?luj{;}IfI`9@h#q&gL_L8>EI+Axg60G
zqNieGkBm{Ql^(pRUc1lM9$!BdsW4eLEMw1lRlYl@Jg9fU64E{+b~14tfh6)on2le-
zuJJ<UnR%6e=zh38ttnhf&oWAYHG*i=#4gT|zArC+E46ap+IMPTG0^^bT*p2J0KrbS
zjXba3%*1JPUdUBk{2=9Vo1<&+)UDeDY^HzBY0Z(~BLUM;LOC7lxSnS@{c%nR${B2J
zb*tUQZ05OYm{_R#?<>9S1wq?^0MFy53^7TI6Ev7)&j9m|RKQj^7)(n;b2cp;PFEar
z3XI?yY;S+(8Ip*>2XTJqPE{e&sN5{%_B@GuQ>ZaqZ+dH|w-`oVB+)=znK5Xw*fdF4
z<NDQgf}CFtvh2z=Knh>ZS{kmV&ej|E5L7sj{)!Zqy4rfsQBKs|N{Y;S!im>zFBUdJ
z>bnP%W$#L);z?76QFW`CYlHB|l*u<z(tBOxE?SclCYvAE0CEBZ2*N&>%hl`fPAYo6
z_a-iyY8Ld0O<0BMGRHEG_V_9a|C8)ikHU%&v%~;jqZX2r#zA3_BiNWwxnDjDjC_|1
zrfCK2<*FG+Nm?ZoznivLI5Iw!vFIN)pXS-&1Q8<n!x>XBhvK~KYgz9@pk6N#3w;&7
z#mr3y3CcGu0Jfu1hL%G^08p-!K*G#9#)TV#cJ=}G^_S*NbWq@QAFf0RHrp76bOpOR
z%#<OwZo8wd!5Imn<Fi1c?;2v0@G(EUbCFPPZOENouCcZn`3U(<^Q}^$$n>nd8YUDW
zKqK2@67ED-5kz_&RCEv(msG?BS-~U2K+keu4)rJs_ZR)i#$>R8=bo2|IFE%+03)>k
zJ1G;=<V-2uq;ej^Mbv6LxS|xdvY<Iz*cxdS(R8JF%@$lxRHXP+<UzkH*tYH6YyLb2
z<Y(h20s(qiw%4mZKBW*2;{nj(m{3pPSGd#|4=HZnHy37*_{JRPnF*V<82-@ajieM0
z1O<j6Dx8yOTpIz*oR~9f=Hor8Jl=p2s+(uPrDVO#BNl{uEca$nAHUf8TO6ZX&WQFR
zmmGdr?G&iT(>?I>zJD#ZV|lI5A*zx^FBV6K8#`e4)k=1+A8r%)lRfN_iKP&H@3Ejy
zx8g)b(|)W50|QWQtolMBQ(|lfZl|QC>t4b#?t*lBCGUNrs8i3%jR~9S9$99ERn1A3
zQz1}$Eko2e;HFU49;Uj0kI+b|mG!7W`pwoX2L}Kk<w6gZ3@NbdWurY!%P7<n*d2^U
z1`sV-Dcr}QDzsZhw}2X1cfNOSD5uZ&Ddniwy|Jdfym7-(SPb(Yb{FpFGZ&pFx7d!8
zc2D|=ST7(qwZLR(_zVcPn0N<-#?8PhwTdtkoC0AIN!d^5K*mya4a__+Yxr;<J9G$p
z>)U)-J^YA=0*EVY&wu*)M}Vb+lYX-xCtUs~Y^R5_eyvHeUDvHxvED#~fT%a(KI*5U
zv>IjB@2#Gw=78CRk%Zr|x9;W3p3VyiMAdVT^qqUA)7X6Q{3plu!*35olwHTD?R1Vj
zc$=F$Ehi<YAj<f@W?Yx;p^bs$ZD%x8UbBA;q47zf7;@wXJV8*s#>C-3(6=V2JX>C~
zvhPjRjc!jiQ%?`JP6?M{cyh3-Y7$+kaxb_7JHsQT%blgGy6!%Fr~kP!I`Y>K)H2r*
z@514g7We!i`;o^D&l17Ha5?j&*5{@@hYfI2QOM%vwo-eIAQ;SUr8KXA;LbRrIO^1S
zVV4ew_jP1_0F!IvBTklOJfl|i2%Yz?63g>E2XAt(O1{eABKgPMGIavlOqG^DgIhX~
zj-k4G0@N#U_@G7$)xXHD0BegBN_03m<ss<8dNl=v>*$!~{^${;>oW<7et?W`ZP(ps
z8!<4W@?Hji3v~)~w$awrT}P`e)D#u!Vvf;PtsfdmV_OZ@tIYm+9nEa6DKEb!9KYCJ
zYLU7)S)y8Tt&AA4^MCmI3b3f!ZGQ>r7?AFeP&y=s22mOjq*FjbI)?7<?jaOGLAtvH
z$st8xh@rbX|J!rUz32PRz4!k-`<Z8kA%?x*z1Diy`o*2KuKR(R*6mfbJYW_4EvO|a
zm6+pVf$6ys#A(irr=(?X{8sLZPL#lxu9M6TPXOL_=h8|_uj*6L=yUP)@Op-~s<lij
zP7PxWbhgYn-<-a_<IWc%@nBsg>dw8!%I4Vzq=D)=73rqgZ~}j|aHsUsnDP2>>~|PM
z#X9*|%+CdJn5Az`4z<2pF^tyR8+n-)4~4%mud*DF<ncKk7xV#;Vd;Vk5JtrN&6{;n
z3*O4y`@JS2p+7L=+hYwp`1-PGk{e~A^t1!V);G(>J{K_(q*sN~>>;d3N4V2rAemyW
z;?9UD+sS=8a?{ED_bn%qw*HS^X2u&5erH>KHW2iOz(WiP7YiEr4q)Gh7WbOmPTiRs
z8PY++OuDE^j>JSkeZNEDVcSn6Msg~pCi%@v!!fbrn+o7x&?Z*J&GaK`^rh1%@top-
zSpY4gcRCN0g(QXK#*r(QKwKdweueYu3J~PBd{;acJDe-An5ah9CzB`DYw|T{wf~Ot
zWnuy<y(BKR$fRAMIT87rE|#WXb`C82KB|?kFXbBo0a0z<i{vak*flpwZd1+MK{h+j
zXOvh~F~f=UyTDx1_gpO6c~yMLH|Cv$0ekQg<x83sYL(uqpkQx|a8nb<H8REIUD-|*
z_(U(Ivs-^aeE+BD8+CS}Uz|73B)T}_=ef5vz*FiGEQ7PgY*wGEl$aLT${M=9eH#B#
z(0d86Xuc%Y#-L!v)rAV6nHnWGes-P3pcgp+T5WC1{C3j-BV;!HDa7uGDy-p^7p3{J
zx5FIm<cl?788B3kkTX42u`8CL5q)Lz9N381?h7(owgxaW7Nzvtj&+_uD)?*E8qi`b
z$#sMi!uYaS1bZI^a2568Es!af_1mr~53%FWc83o+3<t>JAAHQT=k2Ol@Q79}SwX0#
z%K^YMW@oLh#Hk#&{p=nVF3PXBjznbh#t5)jlp4NMP!;zYc$l+Cl<DRXxl=h0jadMn
z6)R>qC~ZdJ6$;QXte3KItF>v-Uv%tize~frAdB%fG=!%8QeL=<KAYJDXjUbHdP{hs
zpKt_W-nNZgD1csA!2{1R;AQqB9y22Z0`SCU(ZjPycPf4-Sgtev<Y=c#I(*fnQO3Pe
z7?g(VapllWmmpyWpE8tpxPAG4G%x4w1Au1EXoq5H5oV}}(EK#Pm!+xEv#kti#RC{m
zIyfFlmw=MK=9e^ieO!uZOTg{3g74cUcX^DuJwOEeP`<L-Uuj3!nW*w;TXW~vcQDh?
z8@-qMZyI=~hF0OW)yjL={Q!fVS~nZf9X5k6W+-jw+c=P8U*ORYaV*{4XPCyB!?ERb
zb?m((9S}EMoc6@9q63Hb`E)S8qPUj$gLl=#*fS3d=3)Wqm*#bP7yI)qahFqWbvOtI
z`lPh!A3LC|^+NU6YW~SyJp^HMBdj7037qod?HWZR0$V!O7MTDa=$8gk4u{SRQ*~04
z+u7T6r|12p+0&KK8?#+tBme3WrTgWm#J{jYlOT+pr>;LkOd=u!O%8us?=+P;*}IjT
zr>dpz;oe53q!IO74^_2%9$mCs{}E-W{<#O@NO4_hhwcUY<-;bL)r#JvbF|_TG-s?&
zVYXK{--SWW_3F4MXE8F@BK;QtboqXBQOkMn@c6fR`8SmsxpE&h+`!q@h~`yVSi`_6
zc;&;yHzV3y)QtJc)}l+k@g?NTI8hotMTv-<lwYN-8l)}!)@JHY+h;$M6O*Qeo7BxR
zY8YoUj!`3-9J%EFSLbe24Foa2Eo7d!fpQtiEMy4`GcI^M_vLEg?$?;=KSg^mWx;?u
zbjvETCLhPqKDc}kLNis{Fy`*t6V2k=dKO`wMy_L+R!sVmxsLtz8aED=EQ`g2<nAz_
z|L5uTxve(Zr5XB_U;D~fx=Y6U%FFL@t$2q6mS+Wm)1~De2L`w2pVJSU##}%h!;C0B
z1sE@BIU{Wv=w%+S1I{UjH<s${QjMI{P_<0FK;;#sO<3ruzZ}7}wTK4VcgIFnX;gqN
zX&hsRu~q*i4(f;*ZXEx(3#Wk13<==j9aS{+?*<vOVF~qovcCq<;q|Z89_GaXg^*t_
z`*|{)Ues3T+q@zyekVP!IvdD=jK_NVNBBWJ0LfIJH@K_3{eE^d)+AaJkU2M-TKZJR
z=O){F1Jn(rybK;tfM6)VZicBUe)YZ<vI}~Hvx2psF8^T()vbUN<4Ab{rJx{uaI<)2
z-*?~~xZ`GN&0fHxw159jpyX=6QxA6<6AzvNoOahspa{ZSK!*ey+ahAe=@ElLdJOpr
z?oY2hB(!JaO!R2o&1NEHC6mTNbq0yql=zx5y*@wDyW+ftl>0v7zoEZtv})V|5wB(P
zLS@BDW2RhG69hIedO4+F!$~|dvzc=*dllIdjupJ?TVfK_SY^#e(DSodgBl_uS$n;H
zg^(J4P`d<XsW*SPRg|dH>*_t#gIw)!RkX*}(>>IDH_HTA1RDgTd(ml$<?$nMK#2yL
zWE#E2Xi5}~azyEB8ZE$LD~<B;#lp#FPVV(xXwoV{t<vMU;+n*nT<f-i;(<Gb8zNVO
zC(p1~dkksp{cj!sz+tIC8;8~Drux=an8Us-=FbPy;%+qDvkz_b>7YJ7`k{ti>8CC%
zBLt~lx<p*U2gY~Fr*(i3p3a#t>ph-<RRu=!u$-$?4Tq6R+@A6g*HnKcpgqDkPyMb`
z-)^O8Kg3Msmj?Ne^@NzkJ7r39=eEP3RXd@drMFvhetKHGReG7Jb5wg`eAP<*_OyU%
zXr-a(Aoe;1oIh>&q4T|0a6cT{oDPWRXPn=_EmGSYGM|1LL<2g03`B;`!$OK*u$SF{
zAqE70bCWdO_)@l>-XMlbcpN`g6f0Z}>;lkrO^ud3Ku0D_v{t@L;lz{I@6k~B@Grx&
zM9wU^zJJ^u;uuE+aC@E}X<5a;hj7E)7w^_<CY}>(s|kXyRyB5mqB0bl_XH-_d$Cb@
z`%S^{5s3%ddvw%lGDw0>gF}Mg6E{+}xgnIuW55i#avdPEB^2{0{tRw`@Mr{(;v5Kn
z=-0`<0ro;WNtjn3ZVtQS*vFzW>RW#25&q<Yj&=GU`LD@nvJ;nvWBUri9a<N80`yPO
zX}vdxLvK1oH>4JZN~mr7@MuL?2@IY33lj?wLD=w$t}ce|K}K^5ZezCUKAP^9xVF@V
zBPjItG-ILf8kLeWr5zC7@K`HxVOk=@qK}d`E{u&p#HQ(3gRUX!scGhiu)&fZlI3}L
z<H^%VgYm5%c1e42>FDOb_s8+5^v6<NE*xCtjZB$N-~SBpthv-$(!)PD^z4imHp;&m
zIvJlG-;wnkxdqyzPCucvw7<wqgxVEKwoB1b_7z_RapqU()eoT0`y=UjSzTNdyw+d&
z>Sbr=_Y>?a_QUhyrCU>^{%EOAT^vg_*OQ#er(0WZ{<#~^^9A{{lK}!A?`pT021#e>
zekg8SOF7TF98b@u*joCP&PG#ybMkSOo3cIJmZ#i+w%k4M4<>$qEqM6LtADq@Rb&Yc
zR+Hw+k35ZiD}{7ZyR#U&Hd|)e9re51lX!RDM!v^TT{bc%mQK#|fFu8N{KAREfzHT#
zH+O;e6R(!;pq9LrD!GeFZkCn{SK?>L-J#9UMEGZ-dTLA?A~Q^^d8}AFDyXm#HWp%@
z+tXO}b!PqBuv-~NH#mLyeZ0{x9_J^C<~vFD-@<MJ-c%bXeszE8CnnJ2iZKW`J#|fN
zffSz6(VAK8J!?|I`nc-3_2{aQhY`f8tmiiuJn8CNEv6RY61<kCPPKL5t(}Yd%Ky)y
zph(AFmunrlxV<gd*7WdXrX}g~z5&;D@8{WjGoJt~KK)`tiv}g9aYETxLs-aEY2g7W
zJ-F(Q+2W?R%%)j{V4FrNw&|sYfqjIcnjwbF)7KGKPQ1rVRp$8pKS!oC@bE)OGo&%W
z+mA)nreN>5xR+yP!kc3Ir;sIW9~a*cct&~}Xw=H+#1aZEw-Ij_7=(IOBLDhs&M0P=
zw+*_Qp&XxVbFJ@<dCTyc4{z4;nSCTTU+&B8!Z3^%8!j(YOY5oq>jR|koXo>LUpKza
zdG%UpFuD7ADc{iUg+*<7%{RG67jpCsQpsdw`!@4{mZB~hTDdLYemGV@m5jJ2r6K9^
zqTlObFeU{jzkC`Nb_>EvNADFXq9YPbMVve~wVocFH>jz=zBt}PJ0hhCq|D;CN_?HV
zL$T3zXCkzYmOz9P_`I2vMb<xX13X)axpaaIOF1lE0Wj7MPa*?&j$^bZF<#R>4<5ya
z`O_KuhyOTf`7l#eDEZUh5_4y|e3}N2hY|yTpd*K#pwXm&57Hz6V^@(|=4~<piJniO
z>Lse)YD_A7)dW&-KY0MT?DU$s!yEq%^QA{&ASg{<C_b(4sYk>`c#eqcc<fWP!1ysJ
z!VkeSP{BTul<p4O_6_z-4S@NqyoObe07Py}Oe_K?av1jz55FtDR#!Cv**bz~oDdd2
zWC_|PL;Aec?HsdV$Q-?`#?&SK%1O1{<^u{nFSNg-;=nBd2dar62aWJRm|Ty;e*+pg
zJW#zcbSO`18iJglE3XU0OG3kY1fQ}4@vPjCodfz;+6>d<x2pO0r*USO3D45!Jo2ch
z6wJ;~upY{x1*hX9(?dVPV-7t`Xa|$uot^n3p_D$mCfr5v+3o(WY@#_o0RkRLv%5qI
zN*t<m@A4H(TRVsYv{8GMXZKC|vpK34#PEKveqY6KNI3QcY4M}VIY57&xXzV%0KH$i
zKGF^)EnMP$Z2IE19HD=48|?`&iOz1v(#jur!ePUfT;kPZUp{N;)-mlZzH6<Dj)GPH
z{;fS<>jB-h$u?W-F4+b)EoJ14yvt8i!H6kT#QHFwohrKEr6G^0OcANbukU(AE*SGQ
zl9Y>@;jvbN*;$|$6en<6Dm`Zv$(qOmdl-yaKdX~~2xpO?ZR80b+O%evq}?rr4e!`S
z>vQx)O7_R(=Ql`5Z#Ks9zl%U4sF+^i*oeLLdW7?FLDlKJfl465lc06#A~iQZ%K4mB
z*tyteB<dTi{i($F%`5EdGM|wX!UY7fn9_bHuJs-#EBg>%Zc0cZ{~C#v!wD5;>6D~(
zwo{qxX`|eDT3h+tG3<!NxSjOf*XjULaf~&<3A&#!CMxRJpCX`S9}u>9-#Wjpsojec
z{&PqUC3y!Rapg=gO5?}T_!O=2(jd3e`d*Gbzew>v#J<5jq7AlPH$}34b$hw;)-^#w
z-H#rD=08to5iD7*Q536-6NbG6bmG6&>-Fi9Vsf<{7R-gvEp&0)^Dd+H?vywCHhePj
zR=>T!p&fX#ywW7bc`X6t!#lKkAN|jcj+kT2cD^&X_V;A4kOs-7gEk(|MKyHNW<XOy
z9g1)C<{KpK_u#@WsK8AmZJe8XN1?gvR$-d9y>`dh^}PF{*%|hMdjr7<z#!bDt!+r>
z=A5Mzv}5npV>m~*s~9Hb<P@<S$u1;o`!a_>hXZ7iB0rqji$ZoQeNeW~xsI+<c$7hl
zd1yUW<_nu|ei-Oq1y>x$qOq}eNk^oDUrCAT52@r_C(Rv}3FafaEOdPe)bs0;G`qzR
zH0`RXdF#q&60sf;WeIoai0iK&p?GHGXW-&oqFJJy6Lww}H7~aP<z>M_+Vz>)sW`)F
zm!AC{Y)6@bF;PiD;cY(A@+q#@sRp6*aJAYYit)w>_4RGf6>)J3=92e(yI<}#Ql+~4
z89=GtaiUVh5So~ns9}*ID&UCuM>x;3Cd4RN@itKZ<jW_9kS2~C!Fbq3?##s16Wv!E
zM*CiRo6U&+-Nl2YhBW(lzb5+b@f6OqiSwB9_^o;Da{J-$FF#_P-uFMJHWiW-J1moM
zieIHssksi8r%`2#<5AAVU`lVZ3Nv(TziZ6C?lnV3db<ARlMZ7)yms+z%21BicbE4Y
z=YgaBQ=MIU{70G0Jy}xQOr+YeSZChs*lPHpAD&7g|2Z65FlFmD*=PEX0&U8>ZuNPf
zxu53F$L6ktbrLfw<UMHdw4m7Z_s%+VzA{Wk^J%jU#;N_|JM&?2#W(cZOmHP)aqWmx
zUBP0;j}%iWtEcRkTKHG9Ur&*U#f2H?&IEkRwPKi5F;S8<f0|(27HFm~gIzfi%2Q>Y
zk&k~dp*DyG*Vt%_N|*DHUE6%R=2E+`4xGFTqN;7RxIhw%Gp>zsGy%~TNZd5+QBF^v
z$-EV-F=`xiO`0EK;Stk-kxRcCnqM``J!k%caUB*umOf)&J?uKg@F*XTA#%xtpIvL-
zy$8htlG^F>23{i5049@G?!wmeh_rI)BR=ip6wkAiTa0(i9V0{4z9*AaJLe8=kibRC
z;Bv(3G1VwisSWjq{0uhn+5TFD%1}t_cdNd**y|C&`Vz#@aTrexoqpc6^!R6Z+^9s$
zXQ^GZpe2%vq8KUf)o0nf=K9S~I-IfK8=-VaH0lIzr~{FOiv1lrf~!Ighrtt)_@LMV
zDmcBre*-=&^AL`Wi01+nTXtF`+jxS7LO-Cpj*>t@e};w}Zb9yyf22iBr7_l*5~j#T
z<S@*Q4@V*`DM0<5I~1t4LbN6jv_Rj%!6n-jV8b<i5>kN&^PwAfgddF5TTNsXx*-9Q
zTJ}SQAu3>(4^raiq{z4@4=9y|5}}sFAZWf=8wy=h4Q1WR%1Z4hx^yi-kFtT)3AI7)
z1x$M|sNH665B>m8Jr~Rm`e?r5<l=&&i7bs#4n8=v1i&aD6F)8pdw*0*LehJFuZ!aP
znAkQWbg~?u2aJwF#8FtDgTTukl);Xm(~QQI#?M7du!Y=qE68S0IB2n4s9pSW2}O#i
zMA&(KbE6o8&sth^#k<;zm2K~VD7aQg<#*8^0dDLs2=gZ!nBwKbd>VciKR6`=1^K|$
zU2OqO(8?6IHVYbu0wg}zXJubkow>(e(1oiCe28Jhfw*&7rxz16%ha)|)@EAQ5Z*yT
zGw)Eg^gxtbez;n1+==W%<v=s@_)4g6&$+{$=DyD)OVHkpLgfK}#jl4<HVSa$&X_sX
zT>;l&d(#hvg;R#Y1idXf#<2MxIV77&v))|mhx{Jek063&_!t=F;d686(wmz^U3F=2
zlsP)wL5_ZqGM30{{c=3Y2>%JWG(5d<o^uYo+znbs-XLx3rt9f*ryk++-bXm&<+^hp
zc3URQFZez9aLo2yBx?M;05-$AezEzuWox4>vJ0aaOQNTlHf5El5e;@-N0pS~dii{v
z9{!}S4rhX4mfjc3*N<|a9SYduaFrNCYqq86xE!0`m)&V~i5h+BrkQSD_u{A<oN0X(
zXr_{qIe)JjMtfc>h>>Aiy3a(baD2*>Sp8s+`Ax^Dt686!pw(XB2a_RVkK=aNyQfY|
zKDx!)2Tin3efmWcTb-e(Q&vm}1)>i<!B@|2Qo_1~f1DenCvjpL-RJhePoqc#U*dYb
z_2L?uxwEX?)7BP7)o-U`vt+j+3hw-YPy8EDA8Hl9ERB?Za=9c+rmNbG&MZ#EHb9r%
zwLI8%y=|kYhEZ<MAaVW8dQIZ`LxSRawv!LYf|#Hk8hZ)^G7V|8TfjWvgOeBHz)C58
zt916G5ZpqAD;G`c1+~{DgZVd9R7PPAH-PRsooQP*mK8y!KVI1U$~3k4=qssBF8@T#
z)1|&@Nos832PYP-$0`An_w8s?cr^u;@)E-!-1v8kN0gqUmClUc(jT`q0Gjj&(gJ)e
z5q8eHqjeTkPe7lk=SyA06A7mqM2ynyXlD#rxSk0hc*AynJDPHP86=qLAQkf1RPg2~
zIwq!;lT*|UtQiuZUApt5ukS0Zg)-_I)Iy)s(%gI-n>qPL6m6D_v!TI1d|dzi60-Sc
ztgq2gA}b7(XC@6Dy?S@WQBk_L9|S_L%N`ycovnCR3}qI!QGszt2QMq%QUEKq?M&v;
z-q8vkX|GV9d@Oj7kZ5@s3;P`3kWS;x8;*mxLh`ha|J-9d50i9=(S1{*gZ_GMhcMji
zErf%=tE04sfq=Y=5!m?Prft@>PDN?uzll#XQ|4!7moAv>{-|x&OK{e@hNWz&$r>i>
ztCdM3!QP}Ue5%!EKnJemVL=!V*KyQx!zLYdWhT?AOmimp=QJ5+`$$4mwNjq=8m&%!
z2KSzBpMH3G-Ak>jRxCJm(KdfP)$JLqh!-0j|I?28X{lrMdESTeAeZ=Kr{wZrwC(qY
z>>`|V31T9;`JabTw{dpOLp(=*R}H@R`hGIOThqW-6R`88^4(*L_(zz34oN1$pUR4f
zqq?qzbnh^)tN2b|=)`yqmwsIH)DE1g)qyrKcfZK2)OS^76lGNQ(&+Hv10M#FtNM*`
z#<ad?!w+l-BgqGogrTBaJJPg}?!Oi)*s<JLw<!-a*`_yXyM~6zOR1;%D(JB~_J18O
zwM*uNX-SLM1U2B>K$vCy8hHKbK>6u=7u!P(>H}Wf+v#q<8sv9m$imNihrE}hcwP*;
z`b5_D_ubO*0w^b~9kqyv$WdqEz#Ssp6lQ<)Pz*7fF5<2yX-BMqVV$p5XoyK#xMN4_
zraD2q@ou)rWtOOA;WBQOot1ik4dD;sR63-yBb+>;N~G(0Y%F>_3P2Im7bE5b`(w_m
z%qt79P|AD5`^lqINeuPOqpBeE*--rJp26eZk{k)M>{3@mKY=NExI7(uk29%i&?O23
zS+i99BNI|t;t$wTv?QwCd~`6i=09GWcttn?$RqNyCsp#N(zK9Nq#{B$8Hf!y%)fzX
zgQ173*BRPM)8g1=qv1i0$_p|4(3R6AQ@|FeF@^ymKzMvALNrs;^bJ+h8aem6h8M+m
zS98JkW~wdqOlcXJFG^A3A}?e8L8!1HZx6g~=O;z+>kx6X9(Itw%qv~Opgd543Kds2
zEu?J4vu<Ucq6^~PH-p<{5iWF;5oi`;DWRQ>1M^zqDQm&?S$;q<)eBE`STH%_zqSAU
zBfIb}H_(B2gB-P3NDKN91yZ9tf^JYn&h=LQxI&L@2<6U297duMm|1N^@gP!0FiaJ1
z;NKe>-?@;B`$ZeWXzr)Q%f#S<$2s>8duIe5!!#r$eN(|Gy$~QJl^gDUjPJbw+(YPs
zr+d9USOlQ_%3|I|q?V8cJ5nO)1~i1gy@X@zQYKPVk%`@9dktk9A6No=Z~3K{K~k?f
zIy9?$pzD|KZZrxDUvK3vb8=Fj6;Xn&!(;B#Ghi~i1LOAAT6P|Rpw?W(SuT${3Hj7t
z9hXL&gYbfcsg61ve1&otFU7n8ZEW3<3YWD{eup<GTvSWWpa-tQ^za`O+_CM8W>6o8
z=3~sKFe;W#ToHwET@Xpb`A<tYi+VhZup=8&jg|d{cWsD6_srY|K*9-?Q^<*$Zy%&z
zXZ!i)!lWP*Qp>@~_z_V;sNWnyC}Q|chFKohZ@fh0n$zlXxuxf0BLA7nSLd<jrrf49
zANH_?cU<XTNW>0KDE!G&r1Lh3rxnOm-oqQv;ccrlUc2hw%Q)>W0TrC75;A+4KlYYh
zYwzBpwN&P~=}PQ*>{ShN*2*T3J)s%Bec@faGMq7?N?S0AAY~1?nzFOUSW@h_yDWgL
z5tCx;b9d}<;7FJ*c=VmY%(qtpC*TcL?K7qW!?XJo)b>=u855+m+Zlq=@#iinabU6q
z6=y<<CIvZ6Ui9?Ob3d|DJopj#Y>>&I08%(ylzgG1CrylG#gNQyFJ`Lb-8&C#@SM%p
zcjawg84Q|SYRA_SIw+X{lH(V{T~q1PRt*m}etYDsJDIk|C0tzGYJE*c+6@(@Xq&Q~
z>F$`)K?S~0t0-qYQmESv(1SknUi2#897H#h$wTjsp>IwHd4Q@ob!*hhlM)jX)+`!|
z+4tfoZt3`yl!_n|l!CIxmkE~oDp^ituYs;m2Q4xr3djB=<8dw<xA%DlxKuq(%Mn$j
zb)B3CSq$v3?>)ix%eeXB@}~l0r5|G2Q&iHR#I<ov`OJUzY*JVVtkAS@&1{;mb=>MK
zF|~7ipOivY)Ql5l$Eu8ORQMxqP3)!BjZFGVV5#jq)pF<Ny%>AG?st{F&wEeYQ;K(F
zBw&tH8tk7u8|{WHZReRDZzDAnrMM0W#LYk3>x)Y$hHf|QZC1)`uILWz80U1#`*D|K
z3A!BwTi|)!Uo^fRc*Z5hs;*FKiDQUsHbTpsBauzlsa~se?r4P08YjC4ZB#{0>0=}d
z&K<UUkeF_n^zHQ%ok(%J%<}1QMd7KDGO&X5zdA#a7|$oE{$~bzmFI-<xz9d{QB>>o
z_&QT!l~>Mtrrng&yR7ef$vGuYS4Qpn!7cLRD|OmQv$q?xRbIny?z#$+<cY(Pk|v{2
zY%Zwc&u;Mgd+)+(E;{zmlO|`^a6vg7^JNSq#mAb@@m&dCLe|QJa_Z8u+$=s`>oxMJ
zXt9+CTTt;yRkyyMGt{YaEl+oYu6=3k7d#0dl@3Q8o?Y!mSzZVx%4y$|EI2MmFWbpD
z*MDb#3|R^fyYHnt_OE9nlSMnUHe(kM_@!)Ye%x3FMcu_8_Q9li?g?AM#iOwr!bU(>
z=s$CS`^X*ZEIoAU=@VbT_z&Ct(dT;Y8W3nnlQ8T{?zt}Y0#xYAQlSTi5;%@a*5{{u
z<3_8a3m$?-mU#Ut(5E9h8fWkIRzFKCE%GNCFjKxNjHfc@<{qPc_i19s1|6!W3Jog{
z^MF|Eya^cQ7{6ilC01u{ure3JCh7!cSB%Yr*JIz?F>H5;a|u9Wh420HBpm$HcvUN7
zTk(rdOLeMCZH){G5mMMRV1y&gs{ODO`v$FCTg3uwnU8Y@zF7Q<dwi(l|DYF6lOsEt
zjty;;9NK=y%<t1hNhiw&0(tSuQG*Wx1lhxxbIylPR~qXsG~xGou(40_JC+J6cPkmc
z0lAXxb-5>IDd&DzeOUCW2>%{uFywhKXgK|jiD)(BBg~Dp8+_D4NR?Asb0TMS$Zs{Y
z^)Qm0axqIKQ*_5+#}2z@BG~n)dsgO`oY9!!34+nDHr!=2KI1z>AjTocb!ju*Jab~L
zvpbhr=h?Kg-BGOI8Q~N}HA(K-A=a+deU+4#7p2#1wSCdYo7-J3LP?^nxD<1Jzg{VW
zo9y9-ua>l+sIHy-avRnU^h<Jtxe<jtkQc!nb6Z|d*bisS#BFk}`z(I~%)B*?@&KQn
zi%&%tvPEs_?;c~ab{a2FPb>T)Ij}@(ME})~P~}Q(k)h0CDa-!wRJl>7N<c*;;R`%>
znlAeop~}gQmA{K{SkcB4O0<klsrg~=aTeuR<<5~DM2nN6&*W00XVN*g!xdMl#$t1#
z^jZUoXM)se^5)_=&Nb67mMcKvObsIq=9c!&Vw#=|{BVoS&SlL^Ym-dwzQ;_<83b%-
zB`m4|6oizx+iv?A)leLw3J)?SN4hQ8by%0sj+Rf{qu#45I2%VR(YZHB?QsaT9Ku*1
zs`H7duZu=p3S~^-V@?K%`jBz1(^H+AgU&MQ<-t1uuvO6#F$h}bQ$0x|ZV_2lewBXr
zkrC#bQ@3X-TqGz8o~yB&AK)v2*U?i1(>=a<^XX+e$tL-jg1@KD;_p-rJ>m!bGdJ~c
zxA~8pBnI|bsGHVp3*pbU$RIZ5K3>y$<`|-}Q4GPTFE@=_$k(jC>k>O2xt`dL6-bC>
z>C8cqWlQo<F^weZmLf)jsXA}ztUo9GsSvF&mgF8av*=Html5m=S{}}9xyVdSmhbO`
zw!+f1He%i2F(lpgB<#JhyV}nv#XUxCQwJ#+x@g>0-_U%lV&Z-}w9Tg>7OXP6dQV;L
zhY%buUX&wzQ(YI_R}(M3(sp5;mgMvbk3GlYOamGLw1`-99<DO?tF9_`9!FIMv3(gl
zw<^yXUa5+Ga7*QHJg4>C{mmozEk0;KGp>m<r~?n^E`q_|Mt}a$nZ5q53nnWDpOA@y
z&7iM6zYp?S#AB&q9GUHe*-hL@*N|y5P7;zboIL6xFY!67VI2JR>UcSY&_~zZbs_lG
zPMH1l8J!c(+iAVEkMw5+g%hHx!ftvcW_nxq%43y%zNIuTepT8H3v4Sd!wlbSd@O_3
ze?_HdX#rhV-Q}vJoIly0{t;6yVpKt<c=<75*W*I5y8p#L%Irs&Z-oL{?n(yuU*5Ly
zzPPY%p&wz}S^en%=)*egLe}<~P#=RVPxtpc5s$gdv(SeiWHDY9hh%6n!33UGCGZsu
z^-nX8@e47(3jz|Too}>&5)Zp&gN~in5F-2bsSs*M_huwNU{yHsn9iDaA)Kx*_yk1*
zEkD0qIv_IJ-F1r+rW1W32IdQr7r+>$V-QM}>Ii!bL#>e1_J`51RJOHpfp0tj^PU=a
zJ|Vb&5uZ>6>wZR(m4xH6EOD!K0l(F_EQ}Zr+kx}i2|2(GWJ5K$l=D?6NSjzaiEg&{
z_fnAKu&_IzpL%T@`|t!3(e2E9i%(C*Ep$Z~f4Tcp>k$&uxiB;HOTYEGNO&RyFU+U=
zx0vVYD18_YXPas)lWB1Hk6;<sotj|E!{W!?e5_zSz%oVB&GUX`l4+a1MgV66<Jx}-
zFIFt_35v*>`LP3);&X85BlJKy2%_6DtWOS1+v7~nLjRroQ_X{hP%a(k56Gblx}5`I
zpc(FoYiy^DqoaV|y>}-vIvYd)gZ}FsoNdpW;FvPh457&V4&I`mht^ps5n55IVnGVX
z*gS)I9$LK93W~>}VR6(ylK5S1sd}dqae@(O>g+An$5SBey>WG|<a(UBHKY2v&N1ha
zIz7~VnVeUAIxnNc+1Tj829$jx!lKA)q4Rq-_Y>W1nS@rV;~hD=>yd;3;mgaBAMU94
z@{TwT%5f(sumEqXXSW&HsGHh(?HwL*u;moCch+~oS9ok?65b0^WN|S3O|A~w#f#q(
z7}P!yOi?>Y=0GoA>SZ7y+PBfUd;&tMJ*P)0X{Cnz{jZ&st9DYvS@hC#OIjcDrPW*%
z*IMYLkK=Yz0&U-+hIc1LK`DQWzP{R%2>ek*yso(2vccqfuQ;G+!iX6io)B1rGEkCt
zK*@=jYp`7{O7wXoCoj#Et+L_`=G$+1AR}vhFt<t+>d~hkWWJMa_t!Q~Ybg(wRi_lB
zc~H*DBXh7FJjl=x2B%1!K(jjs-(Q+tFL$~`;M?kFFGrD+I$tL2#&v3X)Z6Vt_eM#@
zS1T_G7iRhnZ#(*^B5#m34#88~WlxPHwanvC!R=B+5m9XV+&4|!TqCW5ocksXtmn2y
z6k5M&*)JWfNf)-HVvo=zCZmZje#C)>Syh#kc&7$G#$<(qKL6fuDjgvZppvlDtBtJv
z=C(I0SCo`U*ve^oOKo;@PJJyulqZGqLgO|()cqy9hr&=et-^W54-Q@a`gH=*jT`Ll
zZ>tHc+ygFgw~4mb6foavAdi0`B1%PN-T}7GLWHb?7hlZ6rug~jidWO(G5By~KIp$I
zc(tjiy_x*(?Y{NWy`W<^GN#sYM{%kFyeC+`jw3C`2=dVI?5(~1-QBk9_<dxb>u<AD
z3sQP!J8f3IwyZp-oW9zHbm{J8&Tne_##T21{Y`QEY3r77x`biP%h@-OTDQ$Qcop9L
zWmd4Pyuy%&Of4%u&5<#Pgywe3{n=ZSO9}&zQwuMio7|cYA(Nuj?Nb6)2&^2pYmHPM
zjnwj_3T9mPgii)N7@hM{Ow7>_o}m*JBK8}KPYOr!7RL2GuCQ^OF$p+$@@LzVQz$1X
zJr=kIh!|)Jc$^n9KhoOh$EE&$%PPk*_t1|o63yR&Esbi$z8_`fv~*)M^ks#@kf9!Y
z{*8q2W%l^&vG|sDM#jH7=KtuMuPHprr>_*sn77H&5I*_F5)gT)_LhVYlHXKi^evQ>
zkEPq02v(7&a+dzi2^kb_d^CN&H^-uV`vTk@s7(>oj>ht+jSA^<?%nI1m3!)7T5Sb0
z2-*g@+&BKabb-TBbVp)nA$>NltXUh5nauA^w&&^PZfgl~mM-Shq{t(Q;rfGSZBU;j
za7Y7sRJ&H@!?Wmm&ogVkFcAwMjA`$PX{D9K5mHzj;INXHr8%9pcy#*&trJS{Z6_M*
zI%p;Gr%zkK#Y~u-EI;H^Xv%s^^@Zj*{|K(EW6ztZ?|=fSXXK@l+i{-W)W(60FR>2}
z9m4}K|MSN68}j~OMb~!5)FEbpUaD4zNf+&~-&wGke6J!P;gPm_Gq<UImQukjVV-Lk
ztC_Mk6(`xBi<UOghFG?S3x#7DJ!u}rv3@vO$yGnvpdDkRuQ^1)hj?v~@vZw-dQGtv
zSqZy2175d4uN$K4b$2ERUqB5Ew>w^qqn;Bnmu3h0jcUP+O1puNvEf7re2Lo%LTgty
z>#`G2YQ3M|bhoa?7SwBB%l^xJ+2dGd`?Y}r!FDq<y-eG3S3qpI6pSH$SNUD9UT1+3
zQQ6<$O$QdZ!n(l-0h6R}glJjmAPP{8l0hO2wv`ffmN3Jeu7eR#c`wYP+pQ9Q*CXZ$
z9m^c^7s`r?n)Wd?lM+<Ce0-CXg?FXAUZ#K_k**pU1;v-emadSOch@{k1Chjjb0ypL
zg$jIVEvC!M<PSv+kUl*Ep@%;c+OEw_kz;_!vQ<e)Ncf${kqYs=rHcLefN(OcY+i3-
z5}Uoah0>oLpb8c8y7Jf)%Q%I4mLo-95c|D0eEHyU)co?pwR*+xz0m<9)F`eXZpXVm
zGtJFq3=R;x+Wv&b+sl^QY$YS*&vab!0>1afl5p*kt!KUyyIlXJ1@PvRp>sdDMq~VK
zdTW>W1-B41=RFntSyZmb9N%2|-lW*hY4)A<+ui|Cu2pCDHag8^WVH{iYQm+xg~G5K
z2NVC7viG(#TO_;<4HZpa7R3&{>9rNC3#p$tcM`s-ubcd^pbe|1W0S8s|DpJ6U&s|4
zcjqi*)ydn5oIrCf{8U7t>Y~J^jM|H;o8K(A%IzR6C2i4Qe178036JG!zSr4bpSag?
zZ#ZuAE_&A~^8KDfUR>Py(=DAD6H%WPx0&nQX=;UZxqr;C{yE749@U_z(WErs_jO*$
z&tW{jNr9U0?5V%Q;GZ@=i5q>5qhny#c4Jt!t0t4b!zg#SoKMKmx#d2@gJgj&#s{!e
zCVp<%=lqKCcTigGHw$K7iuI6<Vt#kz-bNzu-1tBDpTNDYKuUx>VdTf5Y1)aNEP3Fn
zs21w2ueO3)1P~+?u<;Ts>j69_=H9{_^j*SM-N&fp6Bw9pLAfH#F${-%clr=8AgJB$
zzN<*$Z2?A+C9#&sq$(GS5-%-f;xB=DA{)}|D`GrBrM1O!)Qpwy%otM9f)8qF(-&=}
z@^Mft0{Hs1S;@QdH}s`p+sy9pBd)X1sT{-nxLogJ%sr0LuSVf7V-VRDSzDwY_f=h4
z!VLi^h8VQVtF?Fq4SX=L3~Udu)cGYnhD-TN&r}6tgKn}!i49A`fE6&$h)uJx4StR3
za%i0#AD<^1wl(m>DHzWyS`f!k9lu-^+E-I!<{z|?<+wLnt4RY?QY`^NAZ$?Fa!at#
zWbj?ICJigWm*%RW;HV=i{1a}i*?K}{uYYth{87K51>Eksyw(<+F7KDrPOq|wF}$_b
z#$}t{9v{hk(c{#|8!Vt=P<y03HBj5aZnn-$L%?oc*~0iWvC8(NPE&DBop2Z-6CzH6
z?IRdZ_CKz?6Y`;m1u8z2Yb33O^w(1)LZJjqrF3p7>?TmC$K@en`)a|S<#^v|@!O*S
z5)R$Xiqdqft~kbPLl3eRTZ-<Jy2#T|>`rLJqbkUeDW7eM4nAN2m5JSzGy%t?bK#0M
zRdnZsGawPt1#HW92-j&b?RMT?VXrPe(3Hra&xP?VVDC(RHG`!B`kh8?mj$bas&I<5
zZnR(zw;=7k<tVN?OKQH4_-2$eh7%?C@$@n^mSW|BpUBO6;Viuqvw%3jGk{N+xVrk@
z0INI{3dLSoUUns)g#&mp!+Ghq?$=u~F5=)DAa*U3s5p`<rg2s;)b)^+w;WgLyNrcw
zbCi&A{L11sX(4m(Rk;JKo%#mOU0n4^w05RR_xb>M@7EB!Uy{!Q8pTgXgJx^Noaagy
zTWf<+(kJttI~=i4VuC<Q!)KNH-bZrhc7xfWX%gC@o_Y9OQEowWBd?V{Y?tb+c#<tN
zx!N#Ax`c@KQql^Qxv>qCS!VMnd8q`W%Qb(TsnYb|xE&ne6&&Wixc#&M?U>fz&5A@I
zUaSK41)2{J4_YQ8<=iuCRiPD?Dmfp@+dyUHXfzQKax_GH#EgtKGlCh+zzP0yj;-Y$
zEu42z^lcX2&jb~&&3`JrDk{~sEX?@x?%xkqBjoU|piK#oCV+p4TbmR1VgxQeJ;u@r
zQhr<|=LqIc%*twb#B-@UnJ~O-Z<*qiDqlhRK=KiTqCy6D5=7W=x~6(X*hWP<ZBOi}
z%B~NyKfd(BA6ty(cwr#ruPM-ZZFu)<pQL;)ziiOIF}Hl`pbsXZ*!|<mK|%~ntJs(o
z%f-YVlyk*p3?T@)dXbb$B>M=Ex)kUPuv8eB{3<aJic9$!NGQ5Oq~u#vhEvmUpq8xD
zcMMUKoT|3OZv+%zPxW4bOmhHtJzisfFIF=z3BWfmVSm1Pr!)v1f1t)nVu!y0d@?j4
za#!v*UnVwgZqX!t-wJ3v9G^}+Oa+RZ#*B7jlX8wOTmqVqPf^hEDtZj7ErzRtUC$k(
z6uT+s0qHq*AzzTTsRW3bB8rD`sVb~qz#P=xIX*t#0;Wt2nM!^p!3vA${%kkjq?>mI
z5OJ(vsTe4@Tz(*RiU8IHvKPqJz=UhZVHSfe#tGx;#!yCy81eEKP|N<=_S*4g_+6%$
zS1i=e<4zcI=-<;@_Xdh)^Ucw-Ka!X;fU$)G>a22<PjciY-|p*ETQ7+rV&Zqdbyufi
z)%#)UTP@+%)Yt+g;>@8NE$xCKm@kw?o(x{ttx-@JLn(+UWNHL3h;%cAol}=uLcDBt
z71iQ*J{7gJN}{2n4gf&j5>6G%5B5bu2ch^98U+Q`J6}7!3X2dAOzfqh;_tXEG2V!U
zq(eV8DE}*LXvRo3KP;5|2!@_WUoM|2i-M~g|LeVf*Li9xsIgSS1%`QT<=LKQg1{Rr
z&jSE);!WB47yIvspB@5$9gNiD3ILz~y5emeeIRw}H)|jaM;PY|KOy7mC3YQaOm6(M
zh+fkH{h3Z_#(-mH2mQw(zsZZo=@&fr8!f3XKAvq)iGZujOdebM0x3wug%dRdF#b&j
zEY7Ar_FP_~h%9ncr{lu4e^;4D)!0m{U|#`j<}z99?s;8FI2wKS{F1soU_&c{EnNf%
zT`fFcX!B|IJTZxI(wkR}x~B1V$fo1xw*~4S-Ed($IErVBN{-0$gtX=~;YqzV??&(2
zqxVnm1cojE-S0PDqc`6x@V-33c)aL+!m-y6(@+aHvqQ}Q+{px$OI@vW@=-9T`(nJ*
zLMDBcy%<qpid?O4xqdx*o&bgBZ&<=)KI{Mz)9RW0R;6>&x9d;Wv-r2n21P%&`sj=g
zrgFRs?9!f+^Cyud3Gu;G^9T_M=0SB<L3_6b;CB<#)6trIR8;CD>9(v2$;}p88l4a!
zq}#qQ(F1Sc3;0R0<(R%}TZryF<<X~pK-Mahgucti4{$U#pJau+4y>2mjT)repR2Yk
zpJ7jPefct!gh#{!Urzf&3(}_5(&{msEHCy<*i)(j3Fa^c-TT*CQ0qr!FK>RF0(Lkf
zD^oLg_>GGQP9iN&ZawfZhgmdHfLPfpa#m>iYAKX*HGsVGAK~YJzARox&7OLl(xL%C
zq!RjQAL6Eq4<T-V_5x<lo4#%k@@0ZNP0Hlt+j7KonE~6M8aBngYh9OIobb15i!#z!
z*8CC^?s7A=Xe9V&x;UV##>qh<>jT*j@-l7)Oj#e2c6V)arrLbG)}+SP<nYN$w7w?-
zTqg~>(G&h5ll$8%1<8v<%Y;m$v7n(A@I|AiRwzrK-`x%#IZ$MK?0kRd2jpT|E*2l`
z8v&X6v&;N^xh}qmI>2O!`5ADDs>jb|t+X@FL43=XLLQ%;8-FgayDxYYoo8Ck8sm1Z
z2jPnsixG=>d<{x##e4$gsIT|jHIsRSMPOrBCcH@BhOM^YSLY@V&B!n>-%knE9{s&O
ztfw^o(IArtG<$ghYgfxp=W{Uv{ifhCadS&Ohew?JoB$P2<%_HJnRD{cUzTfE>bG4F
z7%V+H2<zi@R@&VtYW-s!_<rRjL@gLHX8!o`6(MQ8Q7hBw*H0UrMt*n7UVQuy_8&rg
z{?X<GI#e9UiU4?*M8dVs_G;vcDf!!rxq;l_-kaXRfx&~i)EConNn-YX^dWUNO#`{a
z^6a<)L)2d1SJG=n*D9O%?<#Qr)$01!X!)N5=Kt}S94hIL^<DRKi@Mn7&yc7Mg$YNi
z*+0%x3LWpBjyIpr?yLd;j_1nn))vrc&i;6!G1UxeFnr|@=_x6f$`rKc1T2)ZISm0j
z^%mfpV>JoxYaLf!4kW>8xJ<Ilf_N<$R(ZfnA;G9@0h%o&%oG7yR!wD^C8;huzmx?-
z9AN#7G*~Puw`yKDLEI;Rs?)^TLAzfxo<wvEpkN~Bfvq%s)pnm8q6tKkQ(v<-49D#3
z>|GnO`rEubI;*jQkmKujMu~}uk4?eB=N$OWK=7z}<pSW`jsdWxhbv}z@?m5~dip9W
z+L^UlWb}A6QoaFTfLXi5$;nyPV^Y=KZS$%-H0G(e_ySvt>$5NWzfc3G00^Jn#vPy=
zEyCWI!7^e$RQ)tm0Anm#;3Zfm(XCVlnMEXkLH#hItq3mhANP_>2b`;_JfSy`^mvHE
zid|h@{mZjy&2-6wg;qsxqf)RNBlqYTr>LP&;h%2q|8~5kMeY+@t)!j;sJErv0IiNw
z`j-|l5B)j@zCT90KB4GJw24+NkWh83U_EU<H>ir{<Sj&9W+oow!TP`=4<kuKyyT6|
zD3X_iAO$<%*7@Ff+H3+~m2LhmJX%Gi@JMr$l#~?LNt>J(-Vua{OBitpZsiF~){tlg
z(6i9s;7wf>D5LtLxD-*h-AUKy+p1Q*9ggRx@j8iDoy`oW87bz487#BOtNNv-K1)LX
zPBj0$gZckIQJX>imYfF?jdN%`L<{HsIW>%iPs0vORAc7!W&oQmch|WXLYN>Ak9wW$
z3<E|r&Ve1kge*P(Qty6XNKII8K1hOm;Ljai`$hRir-=SbP`#|SdF0Tkf8Q0%z&%E5
zqdp4rOJKz;|9@PW|K(+|3aW_vK0D*f=)=roc%!rVk4R#}tD(Pz!+>wE=n6K@7^LzO
zoBcvocl8X3iy->zZ`V*m@(uxEdMZ*fbLtw!v=KYgE+EUN4)7W3Y^Z1K8F?Qud2HsR
z7Xrq3x^Ky-sX4TF(GFq()=%=<Rym-c(8RgTZshB9$JbTDh=V)`xGJR%%;oO;`~7P~
z_zyV!|N2}7f(!tGlK<o=Q!}%(>JY#xrE$+$K_Sw2f!picHh>X>g%U7W!=VyV17%os
z20lIp5Ot!O&O<wZ-yIx4trHRveg5=X>}*n_i6+}t2onq89~dYtpFH%}+)x~dS`gY?
zX3uvIRg%izyL|gvD*vPJ)bj|3_M@YtYjjHA_+hA6k?wFif0DAYath$9D~pCp@e~E^
zG_5x#>(%@BpRovXm=51IIIb{X0R}xx92~>j;#^!tb$0XL>Pb2EKdj~AL;%b=EhlGZ
z)clI0?i?*QWMN_9<1u;K*T%+qPgz*fT4m1v|LaK-Su<D?0%;(5Vk!dK`SIK&zsPlO
zR`dP}=4Z`9YStTl#GVS&po%B!!>+y)UzG0%i59$1hPCF>)5%H>a47{afV;<gc<|d0
z>fdij$yx?UDHCCuvRvOxW^I+1LH>k_uWe_l%mdfn*8oLiZgjH&;wC#jUJYU9@aTV8
zUVmLjLJO$7h8RIXK}-w`(q8yIEg~+PbU<Wnf&&f;vsw8Q`ZChetH6sCz>`pvxOq)V
z@<VVqtK=z@8Ne<eVCQZ*l=wK?f90)&vPAp0za`X(p{522q*mL<`}^nrAHl_6@-?c=
zQ%#_kXEOF`2|}pd=u{X<aaJ)+<Y2b|h~**&m;fcx+N@1^3b0IjN}&A>0I^-+^vYpE
z8Q9k7C;k05X3L@?s}}gIl_mcD>;G$1i|@dcd$f%Bqg;A339y~n_L4tL7AMqv80-4_
zb3le{B>)9ocTVZAKT9Qnj6{zh)PEqtv>H`M4wPndWkAX&@Px;Q<~-$QA2_H)k+ymL
zVZxA*Xr||&&Q}lvBQb9?m2kYl>+AaV1%$-`#gi2rfY0gvPc-xYbwe$!GD*gHvK&-y
zKy$rO?{803`-g^-4-XH`A|FekFQDf_mN9el{wSXA9gSK(Ci&}U1m;K`hazvhdM4g{
z>b|lwGyiy}`Nr2nmO-UihQV`z?oB+4BUfGJ_GI%lCFaLp?~d{8Q)QmWYhRtq-tByO
zjxZ4H7pqXg^V{8vp)P2d?am!{-Q81@SgY@QYPsm-Ri`3&Ic>^BWy?M@=bKi;WUsjA
zY?!<xQrX0AGpO`B(<zIeqFM(zu=^>1lBBvePJc)H)1S4X^ZSX5&UIwm6eLdc7ux_%
z{LjvZRNXr}QcU*5t~Dmxq}466rxg}rU%j?u4ekzENEPhh0|j4{gbDM)q~+QF76tyg
zi2wFHU|WWcgF{(W;OSFYWRzA~r1iD6*WTVOWfMSO$MkU!MikB<43>6xbFst!@V9fu
zfW#DC;`PJQ&{TRT@8ui;;R$Rp1yY`1BP~Ec%?n&;{i`1yeBjyMZ#&lc4`|aiENA6c
zBS7YohCDBIpPC*pGxgHLem4$L#rZa`51S9i+#{|QfK6s~y6P#a?OB{Nuu(5;nX={7
zBIMcj*a%*nntYw|tI0|Sxd!djCR|V7v6@r{egA@lv@qSTMgN2Z=}nayx76R8G5<%<
znM#s;o6Lqv4JIZbA`;r~0hD__odg92u8u2mxt0bw`~=K5M$HG)xYD}1r29Pob}Ea7
zkZWNS<v+a0=pTO4>=ho2hFK~ctGd5FFAE_Akvw}bn`5y5#9vSXBE%29AAj(CM=0L>
zmLrX|Jm{dISHraDdfK~O>_J%hk*N%XerT3g(F3E!s9rVaA+ap8@>rwfHKdOLk(ct7
z@P%lzq205euN+Q;Ka^AYZc98ZIQTA7!p)`khO~_#jKzp9!pMNbqBPu4a5jtE02vvW
zqdX!k`S(@wXF+P&qNbqO&KUmqw`lX%B~a{w3_=eL3E6V2|2Vhqd`r$}@ygDwjPs#S
z;vS)W05It5j{o>munqq;vP!Oj{4Luv4az2ih}S=3cbzhv+8cIh^~1R}Bi70ivRnN$
zf4*PZ!_QAOk+%?IedgTDroPC_v8$LP+KDBBBW3oz?RifHzGBWr3znmI$scTRz5Jy)
z*}6e|#^(uyd`OVz$|h~FXlR&>cJDV>-1@cQl=zNL3HMQ!dScz7W`B&)ceynAx7wSN
zS6sSlO3B%h>Pwr6^(M;y{zrwjFeJf$oVvG0^MfY8X%1ph2GzG}XlVQ~POGwnL6c&!
z-P8X?dHc^Cy>v-XY|vZ>cbQP;1^k0;2>ou4!cyE6hH@p0Mub*yz5;}nY|rhlRVLkN
zB@~7Qdt;x%7G6T$FC0{j{&f|myrlc=C}>l<ntMPD*><j%eto^4JAMd#u|Km`K|Eel
zzt1G-8$)>NgP39rjv-KZMMg9wE1lW6?Wy_vr^W)#;`x98ISA{Q$ev1o1EERWN!;!W
zIl_e_2DUx^HqBzf!!KkYiu`I`Ev3|Kv8cTtB01+9l*nA6D)gDH&-uE6<d+{3i23i6
za;UtNsK`kG&pWH>=#b3u1Ln&Efbp#P`R)u<^S_%C|Fa%6XC7_!a{uG~GKJqof{u!+
zJ@={u1u>MtH-8KkWLC*8ejM_%9T7?ipzIvAh#?}f?G@#~=4rq(@GoaL?-(PP->r2i
zfWY}&$cusfr%FOg&mN(Ey=$W~I~}WR)a|H=F{CEAmS+98yD{!G-$XoG4%MLZc{%7A
zy92unb8sMts0(yXRv=-9$l)C8hX?I20VAG%H~ldFZR<750|V1Su_rUlr0Qy$m}_Kn
zL_{<wpr}9iwSOKRDs(I?^1v386CIx>8Q8x@#KfckW6Z7Rdvo<^fJWH>fce-}PXAZ?
z?|*Kx1DxnVRJ*qyxVX4f0oEv!ee2mTp1#*gN|P7$fH5`)pvRPYc<2BmpUFKXviEQl
z8Na{QumJ-s#$X}_xTBO-6%2EgMq95euxlw@<9j8@tzq9hsq|x!tfWIa>Mv`$$5!a`
zk=Q3y@H#O;V9-o}fhI%YLKG|}5GW1Y7t_+(y^Fb<u8w}YfnDIKT&|#cxlBLQY(Lk_
zX>^-^C;1LcRpZ4rpJSjKJorU93w}<#+||$^M9%v@eB|KQcgn{hcEJt*SJYH9L?vO@
zUizgeEgeYLQ`yed0JH^*j)Cr`4SpCPWm)SD7*&r0cUVMh?5{gmj_CA9D!YHjpGTP4
zm#9nmqjnyzMfb9_C<@xUcHj12VEwSw6t-Y6TPu3wwF;@P=tEF*)y$gPU5+X6sb8V8
zvX*+UQziV@70aU_OqcL$gX!4+u8{gunKIv2!XnxK8p8heJmAegN}_05iMHhL^I05*
zE!w=iyq|$<<pe0CTS?J((RO2DW3K_&u5qjX$JtlMRkdziD}to30Yzyx-7Vc9ogyGD
zARrCW4N6Lvq?D9&H<HpN-67rG^*x;To^v?&+<V{qe!ri8EEl@jYprL^XUsXr81ou>
z=Lu)Iz*Je~kd{iwAtD6Hr}%D&3mSwkkP6}0*>$tW-WN<EUn@h+MPG`7FYs&y>Ny6g
zk|ehHrSH8OHy^Pcr|MxIbJPx|J0)zI)g#xk5Olp?P*GR<5LF@U<zZJGDyo@K9IJxj
z*`V9``fkf$j^h55<-g4%Lj{y57_FD3d4GVB(rc@@V7l_qq+fej!X|gAmeMRkZ^-ZW
z33N5MJ*O(`^E466M%pANF+Ft@_?q#bz9smn^uT1Kgq=zf{-Koo+lADvuiu)cq&wus
z3o3--kB+Gs`cM!aLh-zyn@mEq@s@3CWC-?wc2)47gs^>|@A%S+A)7EYFeSx)N0gUe
zjejKdXQ)gTfi)h@&#S{s-3N{xQbRsbfBx)`SMGlf08%~OEa@v{7wXmlI!>-jrUB4q
zX!<02XT!EkKv-;jinx^8=d4ug?fIJq(zTa<C5woOh(lTk-^&hYK`<0jg($kF>xB$`
zS+}9jYc!WMUzFw8533AV9wL3?H;%KfBII0imm4XAk_O^A6v&#S%m-Hy)WM3sj%P_X
zh^B$Pc$-TEoNYS_4MG%xFVu2w-XZ4C&alo`dx5n_3#C*BW&7Wklr}6Vm>WDXn<(v&
zWchcm2}oX|1Plx^ZaWjN@j+IW8T<J&Ie-rZ*^0}xf8LV0G$N1wx>%F?;fqg&ZAbZM
zTE=$u%FaM>(CPT{<WmR6L~el`*6%WyAUhH=Mq*JRUD>EC7J`VZl#m$R0^80h#FsJA
zc?Tv*N4X+E*&?KVs6qf6Z=|5z{fH&fa)*`fJ&?L&syMqd7u$E2z<Tb!MCfX8dx}+Q
z`{4fDX(<Xx06s%kk+tk;xc9q+N9?A%_`}p5Y<~uLd?-OKVxswmChTL|Z(FKI$yDj$
zmTJVGOH9@n1_5rcP)E3Du0KUsNN`@lmCJJF&+vNpp(m@MpRRrlSp;ULMaw*{=Qe*u
z5Dj}Ip*+?Ju<WapP-9Q{`U#RGt0ZZ`#Ko4p$o`C(6#tSa-}=ohYtq~!c|?SONUo>#
zJ0n<H_mGQ&#pPdNR=Aih5{}a#CTWu&6?{ppdnO7bt%VM1!TWDxxNaQ#OmE7gEE)B-
z*fD+{Jj~Gq7$UD!!i$XoL(YfI7VZ9*s%tSsqah_?r`g=Pr=qCU+J$3u&Xa_aD2_h7
z0c(1YWZx#ed%8@2CS#|>@}OOS&H65so}Q926u_j@>`s?I7Ro;#?8XbYxqTmgc#<Tk
z_oJ-2tH|Hqzj_kD$urP`tMy^rQjoo~%rLS@VI&!2PLImM%k(owJ?;=P>pE?GFxJWb
zhml!Q`zY=cLZ-`U1adkNNn_N~{3A$g)m{$Sd{++af`gilU3S{#p0>p0FC?n&K3fKQ
z4yUd4Hd~X{?9`3EOA=?i6Drp=_z|}>I;S32>9VN(w!!f7MSS!h-R5wy65*GFn&Cy~
zQqJXi)%~6y^?pQ<vLve%Xql_rP*HuO=*YKb|Km{yzaZk~-gvDfJF(y1E?xy@@50T$
zv1GBGC^af}zqyY13~!(C=eiM}Yk|ILfjNFY@S2E{(Il-%<i(3G9Ng|OI})I#M#jlm
zHE_&$TT{CLScJw*`X5bIOBaMW7Q&O(H}zM?@wH$&W1Ar{Ueuo-D=QC!;EabiEwrPl
zwNLPboI@saz6_EQs$<nxF=Ud-FZh#=O#bNp&PTX$Dp@6$WjLP~YnE+Up-IKsj%>8E
z&d54+@RHLsnp%j8D||U#o)+A_WB`RM!Be8^1?yGyqM(c<z<~7BO|ABE8vf8Y!1n32
ztlu*S5heW)cRrQ=LS$UD+H-j=`DYN*f^BMUUIGGwL0zH8*T9JSF{YD(?!!OV(cSIw
zpN|Dp5s5^sfO0#1n;ei>9-q}67vLg5kWuqb3KaZJ;Khg9_wpw?Yu=pCM!1$A?)$91
zQalQauAKhn<>-cyoZK(>hQj!WfY(WU_PZaa7A2v}ZpxVEs>%r8Xr8(Xef{No-YL+L
z)$dE>je1@>yP#p&c*gv;eN9b(**c@bS+$<~?StPIvZt{y=+wM&*VcKYUTK+PI$54K
z(Vc`z_Ge)H>w5Pr#%Qok2c}x;_LvZe{K)oL;-61Re2$bD0z#V?>oz&q>OX_b*QpP^
z_*s*L+At9)&J1&)wz*;n`zE@*lBe7sH%yXJi|gVw)|WLs-DQD0@aTzWFJSgPHpzYX
zNOy5Pr(ncPG^kn@S>mN4HuV&PU#|4+-5-t=u(T`$y<{}+!rLk56J;hjYcrM;e@C+a
zI3v#mlljFi4uycH(k5v9)7`I|MlQcm%1s6WPk`XIr!Do+-c7C<c`*NdB&3iVra6>g
zjMbUC8rdgUSfHJnZa=K1oJ^-y8mjPBbj=(9Bns6s<0$oLW2e&h<cx3I-x!VN*I^l&
zPgNErI2+pE{(5;nSeOS7mH-eB1250?{Q7W?{@MQ0(jcevT|n~tCiIU-B65#m93a;j
zlU5p){KHPYyNgQT2c&(5Q=61h1j)LD+Q0*8{rO41DB>q$;xn;h$=>h!;m4yj#MByA
zFR+`440F#U!PspaZH49p`Ky=m4np|7>vb$LajZYNEm!+f7OF|;)XO75b8el}boTqS
zl)T>=@EtXzUfhG=@5js_cG*=Db+1iUByGQ4Y)2Oo)ERdu2BchpALtxlcySu|k4_$k
zhc=BTf}j*t_t1+m5gJ-o$oTQjO}@KR%)t^f-ttI=?nXooH`rpfzQ?q~Jug>eA+%BY
zj)>}u?Sb&rCY6}Fct}Wce$B71>|u1gnwy#qgH6Zek9db<;*U$-q(ptWC&CE_2M5!q
zy|#v}zZ1%P`<@BFp}*@-_8hhr5%Ed@gB3^04RyhL5FQb+@SoD-zdVEAmVed&fC+~S
zy8^pI88Wz@e)ph`B_$<S@8~d|JR!s9N+1>sPD9|CU0PoLoW<*9htFjbnwu*<4uqTy
z2MQ7>2LMZaQ;W;mvug*A#8Ly@d9t8yc8gDo-LB3tLISQ#r>o0gVPV^Y@wrJkImh$l
zGJ|gGYUA$LXPHsu6rD}{fc2|ZZkn?EUIY|jjd#jB(}8TF1|(j3{vjdJpsFe5=H}+V
zf{lT3D;o*}J@|IeW2l{&clhNZDJ~ugO3jW@-1^CYUzbNlN%`6t(%nhTZ(jw${C;&j
z+1aInt6E`RH@Mq<`#?MaVIgg{UP-q&;cf-se=8S8ez*tcP3AH3RSd0aA=q6aPpxdq
zSXlm+R@4C|lrMiqLlXs#cG<lbz+Dim{wG>nP)QHUJ@Eb?P|@B7`=t-ay-yKZ0#opL
zssX>ix!81^Iby3E6$vSvNv~BrgkZWXtM9Q;<U<8$E3K>s0(1^oa-_g%ts?ta0Y%f>
z%TvT);^#wPofd#JKImnQotdecPiO<7E31SHBAfzxpw2VH+m^T4^=a2^Y4iCfn*2~u
z$Zgwq^WzB&3lAs8q>zmS!sk!4X291r9LyJ<G+lpws^=*a%lrbcbaB6213R$D!qN;<
za`MhE_Q4~L9LufF!@vlaTs9@N@gPEud}ARTV8L56KJx&6j$SbDzQAT@+ii+*7U;k`
zfO2@wHlOF}(7mkvN!zjZO|@|0qdn4KC@n}YcUCsXtxMZ6uSN^BwWH_JCIII~mR#Cl
zq_c!V9?VT@l?2uBt?^=a_k`Qq^?o6UeSNn-W&x1-7L?nPg1Wn<fvH^{zs&3C+ZT`e
z%f0XHznd-mo5I*%qNOD<CW7%mS_kGaes`~d10Qz?m?NxwD*-}$^r*~m!v+N0Qj1wF
zT|M<`|0SX<?v32AYE&;xAOy^hPksc~?z@`<XksuwQ!-@$|LOdMU&hhP8u473b3%un
z@*|NM2o4$TYCzGUCCgj(k&K!JZr9~0HZ~O)eI5$(XbBCC1ge3n#&{^o%+?$o>QRu+
z6iBVH*-T?-Ul+<VGfxQ*+N}>MAom#$W$DDdHgS0EHD<ZcD)WA|A4)Tu=n;d)1MQFJ
zbFEf-g>#*;2UIX*VB~$u_UNKckZU8)#mP>AYQE+MMlo0fiU9|kwp(i;?osO`<<Osd
z--DzMB)Qvp^96(4mVol-L#-1cm_ydxjp3Z=UY{7NwE<$m1wdlU3!eO@)%NJXY^>08
zp^6#U6f{<5u~^RCV`qXsY-DP2=;)A;eCw1HO^LMx`V>P4i6EPuv?+226ut26!8`%8
zIUb=bIRvcvFpLFvus#xpC2L)099Pz?AuFBWwVj@ruf+wLS`-{sanNK-gNp{;KC~oA
z6;3m!9q@2my^(MjvSCiR*!4m5B&~JDp;>#D!8b~3$&B9K*T)@e7kzODpWHrSOB5J~
zZxEj{)m`UA<s-zbiw0^K$uj`RMhF(%&`}ha|LrOn_PxjZ7|S}Bh?#38!8#WQEWijd
zsp|paycA)%=tN#;W2h1UbY-Izz^Y!|Rt5(8Q3tY{!YkA-^w@U7DAOnfx5W><3<0$_
z*B2T7+fUCJ5z5`J9jkLSs$Tjh$5Am25pga>9y@6uEF1Kk|1kD#87tEJQR+SR=vO`e
zjYgWc@zn)dD7g%dN!YKtlNpk)qMAD+Bc?5_t;T3>kj^}fDoJl7bE;8oeo0>^pY~1E
zrMx}BCSe{fQ~3@o&gA<LV?nfidBLSU`-*`1ZQ+vDPKqzVtJLy~x>^z;h@qEXJeyhh
zIUVv1I*Csg|FxCpHZprfG=nz1^-8be4CdFj?V-?td`)g%?IET%xEXlR0LwZ(DV_k$
za}k5ygp`Z%no(|-!sn_{F`!mvzJhV`C=xvBPOaR*X5S>ECD)Vb3gvS^A$r+Hr)-g#
zY4|RTDi{#=HT6$-(I;?;gEx3jrt)gFznhn_AO@-yXz}9ro`HDzaz*C*ey>9npIw&q
zK@a;zHdwvUz<fsmnHw-xs56uJL{{v#r&N(iw{$9jnu>`IPXuntRIBifC#~9Hrp@M<
zg5`Cya|(LOx@_leCSZHoqIx0oJejByC1yRST1ng>H-Chjlky@Ef&crvpTu=<-Z6sx
z5*kjeVM9U|6Etdc0RL+$U$Z8==N?__^Rw$foe9go^OXL#xI#e;KvV!{HpIFSnP?M`
z4Z|$z>Gm6ZEStZI&3>!<lHvmPXtgZw(oDeOdqDtHVajYm=e@BkDg=&;I&>enK;N7h
z$aQEE=!9m7HR!!8L6I>IH7KwZnE6EBGB7|}@DUwB^W?1U#>lYNl{~7IN?&4re<Ona
zMZYkbx)uU}!UZcgAPZY{f;?=BpWLax@ysyy3GD=0>Le`tlsCXPRE_ksm)m0F3|L@y
z=UoH$AbrRC2~2t!(uq9d)M7CU?$-z8WS?;Jy#v{&Z6c7WHVL$z5-bGLsTPlsmc`_k
zUKZ4BbLAufN=?5Re^DPqJQ3ihYSeXI*=NWfL`futp*++RFM^dbQ4t-?rb-M$8k`AQ
z>=44tmP6KeAHEa$xZCoK&|TnU0Bq^ljLG$~!myt#hY>nZgkNt03;&Ldg8B?NcStJn
zRN3I<;;!-;P)KgrotEhSKx$-Sfo7pEpWpI9`)DE;Tt38Lu5h9xQvH1Ruu&g`Tw9zK
z@UaV#kf9|_4C`}{q8vH;9TcRZz%&8?FJ;|))71Ng`{-;cS5?s!6&?<b#{7Xz`!Wd1
ztB|=}T|Yb5^FsxgzND!P;C01bw&ld)HsAE3x_g#sifi#MCjH+K!vADH32$IO=}siR
z;Z`Q7d9Y(sG2;|}D{dY<0rf?*aO$_F@HA#}4b5}zHy5S6QkmfCW%9sd`L96MN5)$G
zF^^&@rtNCT$XWGY12oq*;dR>odS@nIzIyB$v@U3wQmERT01!~at27=q-n#17G8ll!
zH7O=c6IrrA!%2vVH(zva=wQ|baoI7Yd^?=?#k76*#<aq8yy>mF3CRZ=M+_Up3HjG*
z*N_fDM#RZl$CCIMdBbdeLU$fjXA4+gP%@6$WG>j6kDFKRGv9rPa39wc)Y6sFh3IhO
zIrd1Tq~GlWj5*zeXupH1lTZQH!HQNa<Ocgzkqsmv9V{?HrX<~EOc#zvz#9$74HSd*
zj(|yKTn~~e$zzt5!0~ZaE)+H)>ShuskA!UO{>SGAZNd3B_(MS<_TGDJO)@#*k^+o~
zU7ekg58yR)W!>BQ@psYwyM*)3BT7hyT}|l^c@WTFkC2WOVi6V=M!jilmSg+oO(;N}
zsD!eGJZKXKVLmZk4jCI0WdRM=DVdEq(^Q!Wsl4dAQ(0N!Yoi58N^~5Rs}Qg)cXYB7
zjO7M?MRaI&2G`6}GF=|cz<_Zyjtq1LWe$*34uoR}!BZ^^^tfkOI5@_RS0xp~6WxOj
zT_w>KTsT-bTFXR82l`}7V1R^04l+eX#_sKafsXg;BttAs$a?PcW&0Zi0V0`(iEBvq
zC`>benX0Zg5u#q_WQ&gtrajJP&!$VM(3O`mzk+d{`0+7=_WAIV4(22<*kd0b;i5OM
zk7}(lK+!1+YV1mj5L`u=|HgSOYug$Al#r0&R%5UCbXVE$0Bt3OcXJ;^7P6;W4q;qR
zo6|s^C;8@C!6eC)m2_ah{Q1!f;;w<fc@C(-f7L_3bI(CPT_9OJ$PQ*x`o$)UP<1f=
zg@qAd8={VH>^!?T-Z~n8+Y|R(8C$4(A`g&L-cOoU7(r9^j13v=CG~<C{q|7_`8Hpr
zi#WDA#~bP+RPyvVxC*-gl9dgmP9N8?*(Nd%&i3pMMlqDO5IqgbTACT<;|}PTdFCVe
znkMNqB=>a)TfKbi0f~ZUlc~iC0L&4^u`-ir^>$q^aW=ajPgG*k`amGfbNT#4#iJ@}
zC{P@21w$n3JBm&u^f32bvr7Zo43o(af}+p}&gZ9{9v;NdMbJTsTItasTSfV)6XJf}
z@#MJDWHjIS6a7x;ci3<;{I97eQCEL<DDK{m|8U%}cT418T7>R912cZw9j7cL1!Y;;
zVAQ7xU%uqQx&N@4f1+DnS)H*7(uQcDE0_RS-AfZ82}OZWL`jyo`NIbo&CzY6-n<B;
zF~$^cnbE|Qa2Y<4k7MwKC6l)<gFOJr6c30;e&%mwTJEw=qbl%w-lP{F+6d@q!KgpE
z--;_#E&v+IGF$GI!`Uz2hj0A$TUtmfjw$vZ!sY<}5rq4z-qsEvX_cw;Dd*|tW$)fY
zl9H4>L|Orq!`$G1K^gyhcKMexo|t|hiTZ)pO;b=ifPvZMJOcv%{PG!^ZgoclKYa##
zm_d(*)`Kt9<GgET)78V-?}5#e`kK*TMhCEU+*$r<zStgin-{#cmDUB@+Gnw5(IA{`
z%K~_51@AnSJT?8JM<D?VZE}U>QsJx9HPK3s=8d<M)vja2ZmzFvRdx?oA0v(N$vS3&
z-Y~h5k<kSAe1j)~^JNeU;Wl{b1XojE1WfsW4Xi*!Ol+f;dk1fe%)vTGLjo79-a%`j
zthw`}jhZhf$5gEE`WwEh=C6UIw)0lJbOcJ|)bOZyk-#S42c_`&F&)yCnbJ$d-4`*I
zUcBaGg(->7e~OnRjoK_Xym0@Lp8Ri6<2R)H0g{|t81rDf+zc1U8N7h{MQbjs-(1)S
zrQCum1B8N1;Sw%y<n8ei-(iCzW0g}quhZvH5A^a=uoqUW$B2MUMP|UP&TfmVi)E(4
z^J64rkGtZ%X+zC?mcpn}hy`G}hXY}$)9@a}gJ1NPh{(u;Iw@C10o8eGRZS-uX=(3v
z0*;T<m+DQ&-&Y+etH>ePA`2!(Xj=CS15u>)3UJq7N&1pasi5YkcU{DcuKYCdh^R8)
z)2HGl{7JZ&j1ZuWLG}tM1VuduL{yo&P7RBRQdQulp61K5RqDoU7ROHLN7PfLhHkwv
zQ#bk39C-<FCc{AWr9#K)WIL~SfvAGVl$4Z|@~2MqP%d^#Gl4K3Vo0L5H=Ndrvr*eF
zP9*mK{kFnD5P0q%r@XYg|ADinkvnBNBDt<R5fv5nvlyXkOJe#Ua2|c^TseERF}mU6
z{BE?rU%tQ&R2!6p3WBxH+FyTniH&jx?u-cQPB=mwB$wOCf*(uAdP-_pCqZ9!sE3I0
zmingh^vx02#NSy21MYFK5-O7#C?XuP)t)~wyxx_Qktu8O2gMWxt!+^!+n~^al_dA?
z%l&!r==oLIOUqc^`aYR81J7zDah&Hoi<JG0y@ZcTm%3D5s{)J>FqE%3Il<-+a(c0Y
zk7C`x>9YN;%9zv9I&ojb&58R>X77_|Uw#%~Qvs}pO2>0UZEbAur!7Q9GooV{fp><2
z^gHrmgC4anx78X9lj<h?o#~oU8dyiwRz^Lm{|{h{bl-`Rc3E6#(I+$uBF76RI5XR>
zhj6)=_a)XXrUuYQwzs$Isy%&D1~P7M7&p=7-Y+!HC)*LAh}6~K`G7VIRG1EE@8i{C
z7#J8B_gU<kvIB}evtFw-Xs!&(a?AM7^<sLZ*fM)@h>p#HymI|J^i-|zO$uN%$T_x~
zd~E}+1>WXJ1t01!_X8B!-Buc%@mgUr!5vcfb~Mkf-MpfzvD*qq#pgn33EB-rP_K9U
zIP6~U_5x}WO|NOZ6fdHBDwl8?Hf0yzB{L70f(!@@yw1mXTM||c9@hgoDhgRk5)tIF
z&?6_H6dthy3~&9zRc`&gUq4_9Tp=`{TY$oW*viW47W8^%q5G7-`DKKlRA)ZTwS^98
z>QK>gR9*f}>G1)V2mcrdJtPq=V#h*0v2D_v>TPq(0*tL13oOVQ4s_dsGdn?p%GP1)
zQ$icKL!@lwQTwc~6$uNT&}cMu0Tq%`lHm{Fw$*_FKuf_sBet<W^ybpKNF|~;aDEt@
z<<F+w-9qJmI8Khk{4LU)f@&6Wixi~ux$%&^_fK9Nv6FYW2&bXi34*i_(Fuhv;&#6u
zpF1CK{+!p?a)dyD!}brZ9Pl8OpXn)PR$6I0E-BGzwY-L8esNsJc49Is>IM9(o2wl&
zXXV%dK;{hvNt0@8Aof?)Mv{a*B*PsJPEJ+-C9R_3^TRd0^rsA3y6G~hw3k2>^Ocve
zDV{KxuxUYeuN0JmI<BuSri<sTm;mF;Sx#gUR2A3t*N2i8!RoinQJ-oBRL1q?A}he$
z=gT2UI|ipIK~Z=__ay>Lk;6oq1R*kqvJY6Ait9X%Qq~^q5)MwK&dy$y=+@s9+m<8>
zYgfGbhl@HfQ^Y+`aM`5kghNo#lShEI!b-rSBw{!r0T0Zg3~gy)?ccI~UkrB>kf{8b
ziRa=M+y5D@zOskuHBMOnuCl~>1Mo=~NeIvSYLq$90`BiNqp6cTdHndbk+Uw?h15jg
zJ>xRXW@=S|@sm}b=^2P9Z-2G;e;yT5yf4%Mh?>Y=cCGsd2hsy-U;CcWTpuItAl-k)
zL&Ue+z_HcQZ=8&Ad^S0F%;oLfd*R0gF%V2!U2H@<@M+kYao)jn5M>=H&+D=#9BZKY
zni&;!GYaIGKyP7%i>c=!?BrBkyVn{I<Cz!%c)ISOF+pdJ^0Rj^VPE=-w%eIf0DI3d
z5Ie=BjpAJKoX&lmP)t!wf^f>l?B+(RNMu$Y_aY<h=gHu~%XM|pbawUG^M9|Zs#?Ev
z7Xc#fm2qi8LqBnuN|OSlrO+bl6<OE(r{2jvp^O4Vr~o4o4s%8*ZBlYj1c9snK{`F6
zkKdff@)v%_KR2NMCH@k4P60_4s;~Z*_VT49)<9X@PQ~n?Z$-VLEawZvmVMY?q<(oW
zs-T;{m>#V)^aC<*Tdd{6$H&hTLaR`Qsi1u#YghAD{|SSi&{xowkpgvCGALAm$c^i>
zhcueaA)3%Io5hTVuM039e(E5ci_+{?&C}(7j1(Ocv-;drT-;AOaTDVpPqjqZQ3-EH
zsV#9H&E1(h!iS;*FqGddgNn_2O!+u2S(9$el)MKI9+W*B{3h$TGGE!4qc1J(Dj_L3
z(pFb_kXPGgzh0o6r>4AWkl>53hT{Co|7P_DIjx|2-8ffLA9!qscpQP;cM;U657r+L
zU|6AGVn*Z^)lo+=ePwQ?TzEX502_>a-^K9fKg9=GdYI+w2-hH1tXe<g5pg~LPoKD|
z?kNq{y*Lc+{N!?9q%!GYv()fiCeYnh8en01KtrS)a_3YnKrNCicT3|D`=)a4>v@e;
zlBZ2{HJQ%|hw)10!%%-Q&_)@J^#R0z#hu1GwYR_2^(il)sd!&3<{j-dj+cw<2XXg{
zy-dDf+$M3oZ`2PN!a=<&J9JHe2ayTdjqrpQ{sVj$V39Z(L~q#X2P))a8W{ec_ka1`
zTc(6z@@D>9SOD-$lr+Ftf+&Mui^P_rnqO~~Ze@cA)-re7Ie)>mcdz}g#~gg%lX>{2
z<jxf)D=Z4I8))!qXMf7d!lb06IJKcu8?6nb|JGl|gguFa6;D>fU`)~hWb@(o*Gs%>
zp}=xcD--&XCBqxm$7f?Z#8e&Xt9+$4BV6>)5|6+3FYkT{Po&#K1I|N6LLv+#MC*w_
z9Hnxf<kb!REeHlx`_F*4|LW!or~k=4Xf0rkrj_d6PL8?dzc0=;3V)FA`|UYrb;8E6
znNi<1U;u4N9AssrL_`8|70Jm01A~LN+g>qHR%X{CKVhpl*X)Zde|oL{_;Cf3kg;e|
z<cFq=QEl3vADya-cFT(PW(-OBc?VUP4*uxB|I-5e=f5VuM1%$AM>+j`x{{LFt`SDR
zU$19GjDVfph(ztlb`78D7$Xyb-L%xFazKG2V=?Td?c_jw=?T>tSn=E;C2BuPl$7m+
zN`%a2obWhqFmo1~PDltex;|Cs-)Hb&cguFp2+6ap;G?dRpyHE^y#spMeD4t>Hf(}M
z|C~2Yi71ZLt5-vNv6Ny*0k;|&(C;5FVAKDG_v~3#yv2;5Ar8myUI4XKw9|!j|7JT7
zAj1T-49SPR^M71!Hp6`$S`arPz^&{EBN4mpqYadssc)4*2$0pwO{u_Aj|3=GW%kRV
z^>SHUX+?|I1(pky^L5OkAsU6<(c%x9bRwF`71?D&`O*zcROCNC`ad6lZVH@tRB*zB
zKXU$8VlW3QebK;B(pkn8Y(%#(<_wT%Q@Vgk!15&`Qu79TMGUF=>o@7Kmgr*_*Q4Rl
z;i7o|?aL=m2NVLY=}<8#Bz|Wb0LSdbrKPh3m|Cpm<z>*=^8;DfMXr77W7c)&6tAJ&
zJbQ|4C3cev-RdMVTRH4EW|`ZQlpX5V#pN=@sS3E?CUugtk{ydJW>zMep%cR!Hq}E}
zlOo08zewHIUU3$iRT=5#k>FHBoqzF_@Y)Z2_E=ew8Erc}a@u5Z4#_Ld&U=|9YNM22
z2AGP{nFn}{nou9Ts!1U6eS4EyK*npH!^*$#@Y{5??^_DO$U19s^^`c7i%u=}>Px(^
zhI<_{;-9@{u{co)t!LyBvy~K)tluv+L~7@8{k(D(55fu}JCP43rPH845=Dv3BETo(
zpcWcnH;-<qk|NXFpwIbkNL;JL@@={zN7P}iCKdyNM_YDb6SeBeOPZ??xQNF=>ub;*
zF{Fgc8~@p;W?^kb!dH+aU13rd0}qEB-rhX?(SbpGw(4xuH*L0mOZU7R817?G;)Ck7
zR9jHqpKGIm*u%0-P*BjRhGRZuI600&Ex|DY*2l|n>%~{Tr<F_i<JT2mlM8#PuF}^+
zb8M%ZO|C=pE9&Sx8&i}gcVn<#X1emLUd;1`ms><c&2Ao=07DHT+1%M96eH%j_o_F0
zuRA1U3P0hV)W1qqvnwhO6S!Knb0yul8RtgZrOe(AN_r)ZMhc5SmvS;A7?<S%_e5k@
zv5-AGi8A$rB>H1m^qSPv)a$EU%1>|#0&xS*J6;$VM4?*OCv{!Y2JAKQLP8i0eFrGk
zE5~O&<eNRND+!ffbsba=L;ODXtL44zp?N^YTXkBCcs`mBZKT6pKQl--6rW1U*<9Az
z`)rc7kI&Y+=U&jG@KE7R>zRmuWqKyoeViwkso9ba1@!M7dT&VW=3kObZsQGP_`h18
zm0J11aHX<d$1KXLM_3{|o*hM6siZf~dHkfJNu)#&*f!VSt1>y~`8JSTrP<TpIh<zh
zn>euUbJN}yf);-GYIHtz3upf>rT9N#a(M&?EJ=n<uRnPQ`SLLL@81W>2*ciCscRm1
zGyC=BezlxylbT=5o_jF%F(M!Yxwy_OYt$MHwN=f}MVH1fvhXTl$ZZb7GzAWksy`tc
zV$Idf;TzX&%BAJ3yCC$Rt{r;}X)4iKxG=;XwoXvQ)Q$4n_3J&^Jsbeu|1B&|(r=v{
z9Hq{DG~bujjG^p=5?R?goJEywxZNCbh9_ETttdG=gr16e#V)xiD5dQu;~v_oO&M`=
zT<Dc_$L%8Rj_NiAwvhU(?}sF4Rwy~*mpYo~I?bA4jAaFvRS(*1t@s)->16Cz$J*>>
zVL=SYC%s$=IzQ^_jP+LqNHggezfavfv-jUrJM&E=pMd?Mgj*KLo#FQCnQ#%>@7uy(
z*ZDth)}Ai6d^nc|U8O(&{XI`y^Gd<Fs6v;s{g>sY<$yT}6}%-pbrB3)C(W|%6urMt
zPj4+lTi@WFm1Bo<Gw{~H_%1k)QL$w)e$?~0qm!{o(ph}zxMFp;rF@y-rHtc?p^O%*
z_~pRR12OwGDKs=WBZm_k#Ox9IewEkFIg3Ne&QOw;PbP*FJh<hK>*{;^M-jQ*D5@;3
z$?GIiYP{Fpr?6g<;x^V#xXvghIlK=ouCVnqk0YHfBTey-Kd7SKpWR+Dl)75ei){F*
zXw1*AQT`}Cc|hx>$t7dD)1iDIv;N8H=;65OYN&VsH_4=^On5hGJOYGR=nyUd&!uD&
zkEJKY`zl@TOrEpE_~WMg5s7D}h?%jem%40FP(^`;N6zupPDJvqWc5<fw7Pz8e>@op
zoszb5wtQFfGCh_9b)fN#VD@u!I$yRMbq|HHJL~e#fb#eCoJ<5N^Myo1V?MvH<GD{{
z_n<ma)Jmkx%mcF04!>Fu&-S|*$es_A2UhFeUpi<-Pjy(iAy;ehS|yUwRd&<+g!%Dn
zyubapz%&aFA&#z)CJT+?u}d^vXwFnheZJup#Zouo0W;ZkjBI9Nkdk5i3SV<qYK3;F
zYC$DNM<>bLJlgkx<_l#?hG7C6%IDY46%O!ltF<33dLtqiVropd&pS>sVjyL`X5;!k
zRL2FXGPN+58tlqs5YlbM84MXFs4)$6rGxP426IKwf&7^MuDB)*39k$v-b~+POkx%m
zUQMj;iFC!LqdSQ_hwaq=<)-NU!h-+_Ie_%y57tyAF~VCa9VKb$z+?H<l@$sQnYpH{
z0OjXaMtN(jCLvi3DL(l`^xlfy@$K45mEGJ^t)5(K-Dw7c331Z4Ht~rnhdo4E3Vk6O
zobhE&mY(HrXxO40`X-5C$Hyi9SUo=8p=10D!V>%@$O{`|Uve(TyrsxM3_~=Z5$HU5
zXTio@=klc`hq1M4d~M0Z`j!8UbKdD_e#$|Y@;6G*qU}>?Yv;J`DG)6d@70GfZIbb`
zMjsjD3oQ1Xj)^jUURtvZ_iy0OKP6`ZKLO*f@ZDLl{qHZOXIE&$<=H_`&Au{Jt;S}J
z*miv=%){f}8lWt=Tx?YsaAIyFCh(U}y22@~KUE&ijlgpsl2*qwT9GpmOkrX8=<^10
zgnm6{*NcU1kTE%sIHPZ)s&oBd$0OhC<96#f|CX!K;kL+<Oux2@6t}A~YVC1R4S6++
zPDBYai}jEcFSg-wlz*Tl4W;yieS5C@m_O3<^><A4=SPS8pK*F7s_>f_(h?@$WBq}d
z{&W8Mm>z7m$k7zHJ}Unck}8`J(sCeqw_2Q6S@MEH!oqNgNLN=^WK2wZNF)k{lQRAR
z9c3vM?uDupB;%Z;fv?oR`({R~vUBSoo8=Zn`AXEV(9`}XZ^GCuh*MO~(AQNXeOG12
z^dq;_CX-C{n~}kH`$A{AK&rMW-&bth)B?mDsm0^e(BqiRGedvJEn2JfT|UF{-*{2K
zf2V&AmUqrm5(7;Z7W!*DsXri_K01fxoCnt9U-`{|Cpy>oQ3cBbX2#6G$NGLk8F$WV
zKRc<$KyRCRfb9eY(W|7q83gNB)Gx3VLS{*31n(~gx_0_X9_iS3da7>MJ$CwRwXOei
zLZx$0(V)H;Lv;<iw-}jhXEj*HfZs|Cwf)jaE^hQMa?Jm5!yohC@B5VmV|b^oo}MIt
z9T1AF6KdowMzl7hQ&Qp~Y1>`;d>;34J_GuBWvTjU*_YeJ?}}@9Jx;n(KG7r;y)mU`
zS;>ONAh(B#*r||i`sxV_!_q1ui|aQ`3B!dSkT4(Re7kSHD-QqVOI`&^_>4~lXzyS&
zNFmZgeE-waQ*lrb?%vdE3yw7+r%!CCBAM)wrLL$Mm&Wyff5hdN8PdZtd#1;>_eDW@
zqE|mh>2vnUY)0l6u;-$7Uy2{gx{5JJDB2LzK0X)qs;bNL!>wMSWSA|>>+R}nkBp4@
zh51+)V^7R%hFh4JINczpmvh<pt;5+Vjzr>rnTXM&gC)#>{ti|6_Z1-TgxIh!2Pg$}
zKvWqG3eFM$w>vmE_!Sh~Hc`4j^`0K`qzN=hNtu|64rfde6CB@9DM)aXD)n_22-$vf
zY)1God;FY@s5p3NjeR8HsBw0NeUJ=_K9S-bxiK`bq;o{R`i)PxO#2yheOaWq_-&up
zC>aZ#40FWGw|$Ehhg%H~biVkLz!|Dw{X8*7G@5Qvo*h&)4#Xp#Y4kkja$Dnn83_&2
z?CFTRIcm{aUP`7Sl-!8lW-SQIdRZSk#kqy)=rnIv@j<vowDvzN{<}Y-d<+xVrb78_
z9P#(q)(|B?L`y4OZM(6&ugt>2q7MY_^j)g*mM|Aswd67cF2X!Kb)>2Kg#Pb-s(bg!
zV9M>7GT0U2K9zXyBHaj2_2IKmg`kQiq0@#n=TRGyCf?EF)i3<V$%A727lPr(giP^Y
zX1}Y*x}4OAOid}efVU<H{iA;UzSimxm<;dK{XmT)%i9-1N&S&yZ#DDa3tLrWY@3}$
zl>3T%wzrqo4Bvp^5a}B4`_#8-=}5I0Lb+0Z1fjbZ_V;5-0+@Ww_{V)N9Mr#G>pjFs
z4j2ehYfFnb@Pg^8!sl~&%?GN@VA4!r7gw~Npt5p?qq=Hmj#grKzShhHY2p~ehIYN&
z%U%tH(Hs%Oj2QVNdjUuCsjF$$i+P4_Iw{_I(~=;=FDA;Lx2kYfHml*J^_RC2`)img
z-fK>XTOK@gYG~2CD0AqyI{bRDEVZwr&au@WOee$OHR7~ph_N_!<2Is7Fr&q0;k!;v
z$EF2<5D}%l@d)Q6FJWdG1J^;ON>Wr`+YAZSO5fUdBI3hiI=xSbECYj!a~Z?$b#HnD
z2m<i`LoB)bqs1>CVxR`KX~)x-Xj{|~bHewhqGXO48X6w%5<4X^KP?LAgmVZeD6bTZ
zN=WJHWq&O!kn!@??LO3zGe>l|fRlJL{O}j<Ygr6bi|DincqP}Gf>QHI?O^XCEw`7K
zsX4}tbITV=3ed1R(n2eILGdN)csp^m%W(|nNw>x&(ricPZxAJwUOax<wi8oK2c~~m
zw1BVrnDG9>67mMN5uU?%D+fu?gV_)xvLpe}_Fe*P`DoMB#Kdy@ar^B>DdK1pF8EvT
zwZH%I6e4N}ZS%etruoOkYjDE$Ci2p7y!#<W#7iY8yQ8M*f=LNS0tObwA>x)te~A4=
z`bB95Gx{<&<Rz1iZ20f^?(Z1z&KY{WTcK}*FEFJXl^V`gB4ayFa{&gGKbV`dvM7xv
z%Y#5~ODyCDbYMDy@x2e&tbkua`mN=d+3~F>Tz!WY9=qeL>&d5ziV)MON(E47RKQaV
zO<mNWWp5GuF9X|Mz$!_1n-<S~t(o`PAOo@i;N<e@h5T5Jy#+SUDLpqcARW=L3WCmY
zg_Mm=Db{0P!d7FqpwSrs2!reM)JoZ}X+JcjF1t{vzNh_HxAyNh`|cUf0XdHkO#?S5
z$VaGvRln8Z1sc`wfuZ#{a41L#dax5v7(pS2rIwVQ_f@K~s+4Ko<&SGblD!8F)=|Zd
zh1>C>`{V50Yy10gz5}@bT6=`|o$mqGKO+mMUDHNT)W6euDoPA&AzWNsY*f^N5;Txr
zN}upWPt_}-`LsVi8cF)i%9sk$)aOTkocjB3_{*6FqB$c{2lD%nEbaR5h`&JhhiT9|
zs&YNM*Fc3vIhS=%MJ+XpQ`?BgvHri@Q1AY;r*Z&6A2jw44k~89`j#3jJ`OA~5;&}g
z3G*28v!kP<hrTI_fxG(lWSjRrXfW~EBNTW5Kb-K;P@-D~Vp<w$w3(|*F+T?A+uEr1
zQD$jW6~D?+Rsuo=D3Dk`FV;+qe{Pb|RSfnaunuK6qNo%_vsDV{mpY@sOUPrtoiOP1
zB5ZAEhXGW+BY+##QQ%3nzCJ!-(xYx{9tbhcCNsSkLFov~z}fuf{5%vCV6nQ*Kw}52
zGF_WymOq2+AMf4&dhi&>)AZ<diml_BEiBV4V3uhE6QU}CDg9@#dXOhzj^9gEt9iqu
zo<ZAb??=E(qR&PJPz9pFjPvo;k!?IctG}fvgR1V>QWB@ND4-nDjaOQI)%<>>JJ&Fo
z4lMf&{B*u<uKxUb+kfSJzvvf6R$^FBK0iOd{2T+A;V~Cjh2XN8_K$*M#C|u6oXLIs
zv1bnnK$!dt`bU~X&uk1J(~Uq!5%pCzUGm9NQ5(VFmD*%RdOCQexfhqBGZ6=TKqpwX
z2>TnuO7GQcEa1cPICdo`zgm*O^$^|l3iPJB01Z^<vnnRUB={K<5Bvj!2YaT!e*MZF
z?qO|W=RY2!G@6;ZF7dpW1=0lRcmw{GOUr!V#vDj+Rq5s9GvT^TM0xou;Ktgiez_&)
zUqrmSFX6vD_H@B`)4srSFCL6XEd`7^*&%NO$Y3MMbRc#?*8XQZUhF2}oVnio4@*r-
z_zrb|sjY^}1dS7VcM9AJSNG^NV<r3$!IO>`mi9ved^AA(6j|D0?9UA;nu=u-b9m>n
z5Hw20#ice|U-oDnP+SG0)enMffRY9fb9Hv#y(<IuQnAeXlHgO<1xiOjL3Y~08|g{6
zL1N;#uBe`y!MwNE^VzPhGhU&>lP2W86$oZ3G6E5WTw>&cR*)6o+6yAeSi7<9UV=-Y
z#Uz(z%wD(F;<N{@SNtRnMyz~NqGE42fW!y;c_(=W>prqmE3X!?-P&&_L8IAQ`ud>{
zHStL+0SJPwbJ!d>Jmlp@gKEQslz<!^0j$r&oDNr^yM7Y?C9=5t2q;}aO@J}l@VEt2
zPW;uYN1Diq^PlN1)IluIf8ho+C$E0hcB+{^v>F8+iT7)C?mr;G^8$Xlla(}pzveSg
zW}-sp_VKkjs2nictTNUxRszEPh^|oJ!varW>8WU~l_LE7WOG~*842_(b9iWE6|~Mo
zC4tCw-7po4>Ud{XJK&_>?s#)FilXr~sjZ)3!cOG^s^a5H(1vup*s=#+Tv}W<?+Utz
zUV1?uEr6k(JMVPWGG+054zrbVx>;L{Z~5<UWEmY8E;kCusHgU@hAqT^R4NaPU&sc*
z!b6V#Dsa4<5d%~?2BsS(7n9tt$++#e<rnNAmay&!s7bEJ*koL#PvHRvPQ#Tg)n@Ww
z1ydimAH!Hg0MeY&iF*(%?CC}yDvxw;+)-S9w0-YKY3Mv~mL=DAJt}i>b_Um}(gBEH
zHmYEQI%4@)(fL8GK&!5M#q98Y3Q>#aZay};f`Xy5v-7y4FA6fUVrnZ?_lfvtDn(^P
z^ybpa<DL4wSal<tj{lDsBtS(3oEhSMVJ%#Cr4c?dT5OJGk^xzdwgoUR4XB+1j-5oG
zYR=aQBwsD_q~)8x@^EL|j*tru8+#pJXaT<Oeh>R>wq={eJ0|QVw3D4#x#gY`Z@E?o
z8sDi00iuq5rcAuK54ETRxNllnywpu4#3Hv-;Rdb2e2vOE503sq@V9UBy%a%Gu0F}=
zKK;$WpQ~1OA?ZiJ&5#y+TL@t$+~+dm;a4AoN?udUb)fk;=4sX_XYR?>yHyzfBp86S
zVH1mKd^`ZGlf^IgGb4e}xsUd(0q8$dw8cL9Sq){ibu)H9vv2&6^te9y=xPXPSe$7@
z5Z*pJZNw!(5mNMO;d4ID{ocx=R=NAsajQ(#sTWu<s2sSf0J`k+g((h_L)Mmv!rQ(M
zAns=ko~{5xH<bm__N|IZ5pO_CP|zLJHvqCnkODIQ@LF42`{2y&xSxh0C@S&e6MA;8
z|KK(eN9{&FH-jHy$>QlACg>Zwd7iX`t{Bz)*AScaA=N%>u()L}-jM&_HxYpjlG_Jp
zI8bd%Q*sElkR&i#hDGVukEfX$kX=Uv5mj$9AQ^c6!%K8_my*Nn(qZYy{Bv)%VrISq
zX=7ufT8mF0*vevcg-Sk10()SE8K(`IFK|C!yNQHC9yHC-6#&8it&qhv$epO%Wid>w
z$D|F`%b3ycz7?9!bHJt(?*uIFtxoxSXh8+vxuo*zj@2~L2p%A-%b#|$^u_54=`mL(
z0Y-<YBW$gV;d6@_>40s^pV>-wekKUlC`>6oj{&&N-Wuh?W8CkzTk13|2o&WtG~8H0
z_$B0E?)B_vA^-KMu%$*WFyeY)9~K)6wO+1eKtx<QJQ_%svaMX+$lqA9@dH(0t$>FL
zx4N!L*H$7gmpRXisIh)2-U5?IqR0<InUL5&8di5o3wJ@t-;c>cL3hoZKoZEVx(DiS
zw9GT|{DEu56RuM-6Xlc)pvRam<##~!iWYDX6&cfS&J|+!A`}%@w>R*+oEk3r+=z)^
zd*tZg&@ROwqm&YQf;2{}{e3F09ZiUZpPzqv7;K`sn#O1$?H-x@4(-+kV6QkbUd@#i
zJRo{)Lnbfs&Olh+?;?@^2A((Ys01BLd4_7Gu+Y+460EzPl4OXkNH=0_!xm7WL;+Tt
zQ7<q{Do5ruMGftPJ@;Nkdw4$uO3qq6UTRc=@q}%7z9@)i0gpgSkOH0930Q86mh({n
zLSE5=F8=;RSC@Jpq2s?}27sQE1T26{THzVZRgW?6lMu@=J?hi>7vM2j<W>OOqvr|F
z_pAvO7wS9xis6vhA)DL%y0*&=$|D@3iU9w}WQv1Z+6+*n;e5G2KBMRNfpoGM)TTD0
z3cq@tqfF<DLf{gOkxur`3a9oQ#G?t@N#O2r0IC%3-KCkCnM9^6D8IUYF{%)Yb}s>V
zGhq$g9zNwEnmvbayZ_)JQCHq@F7{UWR1qYR0R(JLd~@s>B6Ru*EM`F0jdziDJ6lqD
zqU@NWSHhzW+Uk?JHGl!hVkU#fVM*kh48gm+GHdE55kpnaiC+UEMc~%KynFV#-mOlx
z_5Y$h{09IO=pdU@eV?g($->gKFLbD^);&47Y>Rr}4Z%p<PQa%Wd#2eYU)OGL2tfi)
zy7Fhht-!`lj|7%^qG3ZbiO+TMXw*>ZZ2ws32QVWQhP^qED^G@O1@ZClNTL~T7&c*R
zlb~sY1_uO)G53`_pO^!uK;PRs24^jWa`r0;9~A7|CNsH_MB;;~Z|THMqPWZJEcY6-
zzX~=`|4J#*(+%dt+A#5Z6J)3cFkYr@%>Vs8A(h`p=obcI=z}FZq_vSo9ehxfVda9k
zF*m~pdrm_vJiJZXNqRK1`MSQSXd&Up26VH<`Z=X$lgcM7_S+g~pxU%`P8*1fKsOIX
zgCDz{NpmakGn%Rl`!1R_1E}tur+a;|&DaFzL|VdG24GM@^X0rgQ~eA^5TE7o(NU3B
z+}hk65z7{}4rT`@Lr`EK>kDUJG(+b_ZkyG@XO}>nl=0$YuQR0seWlC!8jouv!2f^+
zL;-{|U$Kd~0D3e3UR40f)AnZsuru)LWya}~jR&bE{RAMl?fF^ooV7HkuMlJ+9o<o{
znZ(-e7(05>cz9IUf4*eAsDwS&?<}oKVRkR7@2W8$<al8a$Vaw@P4NDp{nPtpjWx%!
z)+L#uJ6ZH!a;&@OlUp$7@+0HLN*xcdN=g+odkrSyJmz+QRqp2$VZtcjPZ0mY$G1E*
z6as?mt^3{4fPOW|u4TK3iK+cULS#gI3u}F@E_UigUm{<12M|ln@c|}gR_#(9CCD0>
z#fp4jk55k6n{jp~$|iI5NCBZTEuu21Gl~Xx+-?QDYE*rGA@6!Yu28+%9czl_gpU4X
zYaRC~V4bjr)AvCHs-0xFCdON0-_^Qa*p-9;8D*T2I;HMGu{Z`56;(0dG-C6fBc7cu
z$aOOzak0UA`;?haPl(4EI=m_MdBKLn7;<P6Pc$@KQtU)FRbyZ9Gt%%MS$Akd_EGwA
zo?hB<kKCtBIcyB76xjUw?_Zpl7U{A1E|)R5ng_V^5JOs}n&ZB`tb1R5S<-RU*RZVl
z{bkupz%Gs>FW|M!KAf?+Z>W_r{`~yp#ZltP(?WQ*{|4bwBHUluK0q26)E@&R4)>*A
z?whYWx!U#W`XE(&4|L`=-1z)%3D16U=DbEtoSJJyo!NmPaX_Js`P2CJD8)5)wx0dv
zKxv=^wO;6^hB(*lHX$$H^0|6g*V8jIk!x{<C`WQtS;h->KB@-8@(jo%a0vFJO~}Tv
zj^|Ge!-=@+weoxm0BT!?f;zUz{B<yW+BQbtA*;j*3S{tgs(sWBtjrbW)6}>2aM76L
zwM0PR<+t5N={t9e-(a=QiQZgZ9x&MaEH@j6sRufUXTv=#Es4D??+xIjbO+M>jR#%4
z$izxjI)T(X))5q#*auBUa-%@#T-^XDM*x_mhLf;b0gjA5(7{#rR?ND^8_Ion06#+y
zyjAnePXJkbWtZ9L2^(?3dqI@>!oAoQL(J5!ocwj#uFqF_XCF??DyGTxyUsbca8g2>
zn`y*tY$6By>;U<nzO<`z@8Erk2gU8vuFORMPTkFi1T_}3d`A~H<NCJl-i|DSO1P2^
z3)|IQ59;d~VvVT0$9XTPNnu>iOBH8(vU7GKv6-EZ?Y)Og?AXCMrP&kn?%vAK&i3}m
z2#P)+GH2SqzTjW836@OfAfY8ye0ao}x%1}0T-)FO=)E($1QkKCLs^o>G`&Q1nM63(
z@Zj4~!4<8lX}edF$j!L+5us{%q$JNJP_t*B{`(#A&pgOeO4#Fr5PJgpF9%RO;PPS=
zx{yuekqF5DOs|<L^13Vyn6!bmWa6aT)sadGI|3S%Qlv&jD>k3)#Y#IM!=?i=APiH=
zyndhQ9PxdfIRJ=C?W>>AC`*D}It`F=4JxNWR<Q)sB;_VoKc3!XdWSx{@TU;%`t*e6
zEzqoo$2e%sc7f3d6kx!!{AZO(pq)AX<j2`)O?<8mj59FEwg*yKL8f@_J=a?}l4q7;
zYxPJW<16$n!#3i4I{Nu(*{DIsuO9*WSLct^AV7Nal#X1a20-)pUy@#0tyl1{r^rn^
zLV*ZH(56ixan3glX3H*kZ8o*72Qi%18JA}(x=a3+zHa3znzm8nZf(K%b~>Ku#LtL@
z9OAtCt(Lp7v$wQA9lYNP+5_{t6`<bg>pDaqG-^-f+Mt?RHy1lNxAJ)UdLVHbDxs$U
zxodPwTbl_18c*m}I@rsSG>#+G@3(vcg~KF_&raVgJGX4bmr6@*1`o)1(4CxDrb=5c
zLCi{@oVFePvVYLWpA&R*^)g>03s^&I`oAMN>>q*rtm^Szx&?XiYKU{`AAoovW{^Q8
zKOxot5IGt+J&~RW4cqgrFwlDe2PTG&uz`}>ZMUl)<P~l<GZIwYUs!o$d3a4RlTKx4
z+*G6;Y7&6o)^OKNP=vZD=Sim~l9grW-$CTx&yYm|SXspr6U(BlH19$|V`2JJjl=F}
zm>1S}cy4P8q*TQQ-+KD&%R(VKF7t5PMQx(vQNnni<5%wyzrcfZ34%#q#?S08Pxq>W
zpSy#d{$-Kwi>l?gL^a50m9=5x{5!}Mo!X(VUU`=Z!l~Qoyjax|mij5T13{@1AuCQI
zx4o>{J$ECGxD@NKq=W?1Wn9FmwiqTkBPg_XLGU#~pNH~}M;7wl9FY0wunw+(20^<Y
zdb2Ig2ULf^QXC$(RDOFbOw6yf=*j~Gi14VTj*m-6d@DNqF)36_Y@GHNpGJ*YSBr=$
zV|CX6pXGDQ+|!?8)^J)^`^FF%p<4e7&v&=(+&_KwoQH%f*FNBQMFXvaw(%Zu)5`#d
z7~LktOxX^Qo~MBd7H2i63zb}Nf`}@6dG%n(dc9!%?b@-ZKBMsLZ|`Ph0-}J(Y>8oC
z*BO?hg$kvoeixgBv2on_weCTNO5`(CJPvy2<Cd%)9%6K$I$nwwUm_b<afh$IIyNsh
zpEf`G(081g&_uR|E7WAdHO3>A<aZDrg*)xb%|>2!lU1?FHAiA=oF)-)PKEI}lnQZ$
zH%RxdZ8su#Pj&OE7eM_F1^KE9gSLC(*MxtqW^p881Y}2iC{~z$G_7iQg=n+{9TL*P
zE>T+$E(2iKyQjYhSaz}=d<WBK4bcMr4oblUyvA=gSekB9@r90rAP71!I=inp%qDCc
zLD9)p*?_#|^|+54P`C5$wL}<iw!zN(<UM2>1G5so=xKcI1<^dY>0u_#-okK(csHeR
z%+zfvM#N*o>J`V*ZKc)jD-VI%`=SwM)FI;7T8U;Y0pDpV=n{?7cKgQ@J_KqV5PpUY
z4Q~WYPr(polU{@l)8~gZV06b1M@iH@QXble@bDb~zU9Ag73F61Vi)mp1`E#Dmd$~y
zq_WbX=XS@$z``<6Spq@`ASIEqgT@3QJzMyenK+=642qBMP68EHfP$9UuoqtTg?p71
z0sl28*;MU|0CuQk8IDNo!OBgt5T(0G54}82A}g4}AX8?gt&I50B%r_od&?g^Y4+ix
z^>|mUQ}MV_P)ku-quokD*CK<8dZlM%bQb9`?Sn4o#%>2!#Ba{A4f>MzbX_llWu>KG
z!I&VF7?D~!LQXFaei$!U?U7Z*z6clr#vs?`!Aomv-<oLA2BFbmoW?_Woi!%`298ED
zC~NUVd^6=crxvc*2?di5dsp&jmcJy9G!^$M73)^R#ddtoaJ-`KrbhcB$&yjj=N2&z
zf=(@d=mxkB1%xaHf!7zS?O`N6m%qfPoHp{#_1|1Riuus=%K--Oj@8*MK%A2#vIJuL
zE-=<3K2sf^*Qs<yPDH;{aPsnYG;G{gu7uP^iKnF^=;-Kb1sJ%vIbT$+fcyYPOrdK0
zwy+c_ookeG!2vQb0b$_o;#6jT@a@}0M_y7_)s$t^6Kre=!TF`jWMn6c(+59GjRs3A
z`2D5<j1-sdX7U{C{({e8Dd0a&@N;V&2-SK!oBj5AeEF9f9zLpWHaZX^#5az<0dV78
zqtJA<?Gbj$+r0oH_IU0Sy+(zq_xf9&Xeajz>>zxV#lTQr%u&UqO{u8YSEUx7z(L--
z_Gk#2uonP#0;iDtwajR+wY%6ykd1{7(JRJnzk^9_3hT*}bax${?^TW`w^C&|_!d0C
zqaB5YoNP@Re!6#a-c=<z7Issp(|i<zAoZwd4m5KP8Kk=&TaykB47>%tA?Mf&(Wc%=
z^VF<+MxO5;>*v!lBtW0F+*dFFUw4RMgZ7D*Q|6?bX3z?4{fhvs^@Bw^3c1$o&>t6X
z2gxsP<N<NfwxqioB{Pu>2#m-%b~&@u%CfJet1nDB;~yN{KA_}M3<NZ^(VLYw*8x~`
z;kXvHMWr*6-<LJ>Cf{iC+Z`l@KXzsuEsvU<rJm7$u(X*%_uil{4)5pz^>BEhs3uvO
z0dj}5R9Fc-TgQC;vV^jMQ*gDY58yq$dS@2|t7Jyx_QY7cGZypxcDo&CxzqPFiZ9Qz
zmpGy=`XykfN5UgZir(vP$^F87t<^L<wuEbkC6`njZlha|r*$4nn#2|UHBZ~Y_IV$@
zll1HyQh3&SB5$RH>}8FBtD)s}lTfhiek{6b!MD;?*BX%#3+nqRIvDnc9(ZGglAm3e
z)%QBu4K1ov2$>hvwy^uvFbR-u{vTs!9ai<eZhJ+LhDn38bPLkm2uetIcXufujUt^&
zN_TfRNOwwimvr4P>zuu}d!2pmy?-si=W)&X%QwdOjKhcf3S%y5V1ic~Zj#SD*%3qa
zI=iD$Yjku_2I8i4dd(X3M%$%pH*V)396|9gPYKUkyGZTZ0RNfb!-IzM>{$Y2Ma1Ph
z5H022y|Gh&5wdd=5=XC5rS^ftv0ykuvf^ZAUdn4Kf$xUrjKx0;NXXUeTx^P(y8ZJG
zUz>~vbG%JD*DBU#TMwx#yq+nh{PDwkr!!gg?4(y4IMx;&v=lG)WAE;6#)ywu#25C%
zCOmyE!j{&L)YsQbwxIoq(B<<p{n#3$dSinX1<2OP_cap}!`?4;UlciAzy4aEGhS7E
zc^UYoZQ07+`QbUd#V_gJ2`eg3y@~OmUVg6gp^uWBHJ$6oaqxxIXbd-RY(pqlel)2h
zD>u{06x_`idHlik7PLce2{t;q55!3=oXmWSlXQ4+=skI@BLBi`)8nWW_KX2kJ5y!G
z(u0-DF&(}ae}|;FK?GT43tUe0hs$u)5jgXEEqKyxOj!z0DuAz&0d#y5>d5IRgH=6=
zF>87GMUif&8{6&b)){Etfc5?jDkOMfi5}@YJ^?7^R6@G~cqX2z&1wEL<K$>B_aoyr
z?PcUh2bxOW_i!g9nC%h7BK3ehvym+sT6bwM9?MX~v0~3!Vn~v~6xzmq+vXEKoK$I*
zz(B1Da&qePjPZDnS`qa<k()m)8~@fvN_*qV)?d7gClVc)UV^MwOxWq^&nymxn@oQ5
zgQE+y)mG)qsBmy{3!EC%hrY;XuZ}9V29LNnU0=Dp|6I?n`WJ;WGo%Gnvf0^R524}6
zoHA8o7^~t)8}59K7G>FG`-%?c`=(^gH7({?Pc+Z0P?*t0-@b1oDzzX|Y%E1bJdZvr
zUZncAo$G8=16MdNzJr2GmAueo{7uJyhqk#=)cFMoPm`<6;GUKVSV=_?!oJasaaVVY
zx8JB?y&N*MC^fZ9M;9*q?%1g1Il=f4kvD%(*4G{n!4-GjV$#^;{~;FQjKz48Hq`TZ
zw66Frz7;J3eWJm4@WE8ni_59Tw%GxUuB1_H`T+8)76Abi!Wl5`lNteVCGKZ%XC7%)
zpdM9pOZA*nPqg5sp%HV-lo^APXt;eMyBGj#(?2#h_tx!I!Ls6S4qZW&d9PY~AsHBd
z6`gr`>zW^pMW?G_bTQpWXmtVx@&L3|qKACu)9Y3_^6ie#Wvxde(`GSLoXtageq+F5
z_ZE$8A-p|Mb~Z+XX-901f5>c`DDrz&wD%RO9~TOIe{^2V9!JsXOvv0$Vaja^_7e@d
zD}R-!r5t1VS`mTIi>1QO_crz@tu|-*he~O`SnQ1#-E-~cMWo)SPVBXvmyar)-*fim
zzJchkT)R*o=VZstP?kt}+?B@wHDABMAKGXs1aC^|?_0T?MbChpHsjRchDTkpHta1|
z*mpJyDX@(_3%}H0f$@)v<nR8QsDYaH(Q#8}u|)yV8;{ZRdiDahJ+-iBAQyWFgo~_A
zR||PAHhHWAc8;(-eut&)xIfM!K*2JA-f8^m0i-rmC=>yn%AxSU-WW*CiC%@CyB$H<
zM~lJIzT6qlO(!(}LCo1JEWo-6ePmC{=|c+RKZwU12d#<T!i108z`}j1yH!St_$9Fg
zG)FL`a*(3S>s_00evcxR1yltP@M>UtyLkZ|zj$%H|Ai8uh60O#Q6ej=X0nHdwD=6l
zjxRQHHPA}cR<X79S0w9J{Uu}d%J`C}NX(?X`$A9Rzr_~tey_wqT_3<BdO}xOuNHcL
zm#K#H8T6phN2Y1tU~K}9JfAa}LMVg`r<Vkndh4bFYOuieLhsI-Y0HyEevnQ!IIsd2
zK^u;bmv`VkqJ?1D1392JdEqSV)6;`RftTt_YK6xh<%R=Da11eswZbKytHy8B4>)#`
zm+p>^CY|gL#^JrY+rqynRaCd#EZk~mompw;ETAnP7h9?&$d!wSeA&4XJUAqDI`}n>
ziJ>p_@$!}CHgQBMiNNR3BJ$<sL7e(pJ)ch{@9<I(k;;J7+j{>*gWuy?MExDyGC40T
z*ca#fJ9F)~;@RBbv0ML2n)M|uvP;pZCK^6lE`^*e7ak38NaTp!x@J2dBlKWClvNFN
zZ~N_ehTNap^JDL3!uTJ_PghvyS^oOQkT>x5reU1fuPzrpoBa4vd%tij-}2Kr`_?`V
z{rZm6uz>FzKjCggefZV}w*UpdIC}Jy+ylb<6&+^vO);&Dl0?mm;CYitplW>R&m-p5
zqFNqSzB>)_JSz83VSe$i4NNpE)R7FF!^fYqJra&+fBeONPjy??WuHXw>e+I`$a=a}
z0^^l9kQ@5F_5_#%M=ZFz5-PKJHuDz^Eg}S_Y<>#t4IPhbOad5xTVA6e_+$BBp!8b@
z*m7eW2)e$ds}enEM6s#4n-ooyjaSMj!*67kjQ}gJHjR8~J(Hb3#{5N<%VAR*!50sl
zPb~|LAJ#$AnqtBtN3Qfunfm;}u1441_ODv#D^Q5--JiZf{EPD7O&9$H8y29-@2@tA
z*Topbnll|TmjtKf{ip+im^cs%XGROa3y$)&6?qxUs8M?Y>YFlj;?|G8?V0O6veAR{
zBD7U|`y|xA!)G}J^epnAwKVu&Fu>D(Ez^UGnYHa<ov%7)klnFQ??1K-%0julF6t=g
z*Di63IiAv<{(5aB{4zs6A>p@?`U>96<vAJmZT@@h#?3qQnbKwyMEsd;_Q0zbl_xGJ
z`7aod>*rJPGbxj!st*q-vcm}3dA50s>safHnxm1CVl9Z=#63M;Yv`IO)9UK4y_svn
z99XU_7JBx9<6^L`@p=c_`1~uL4oz5he!m4d1OZPk{L})VoU)qZQnfTSg*_8CYdz({
zn@^w`Rgzs-v|iH#qRqwPqC_y+$oq*rtmwE-<GP`a4os!<F9bZ;CZWv6{erazb(2zt
zdsJb(_UY)@gB*QdMHLOJR9f4+%lVG+*4?-c1$G$D(ncL8a%i{3UQ&z3FHcJcJHgrA
zaJjuHmspr2?IK<9uNhWyJ&wZnjN)5t)@LvNFjp?$^tA0u+(_EeSp5TYU!Imn*!?%L
zF7L&KxOglbE$Y+o0AC&XWVD3uPJf^}yd#BMrXAI)8RuSeH;KHY$L#-pXgQdp0mxiJ
ze&K*ky33YX?jGuPiBG5fOZ)~n-g6Fr&MZn2?rxmbfuI?AuvTe|fIhsD2qpMwp#YD9
zGHG@Ea<D4|f1;18>M+mkfFuR$ad&<NR^;nIzI|m5KX|n8$U$7sC#3s3Cq>X28p4jN
zjJx}~yY&8M@!`7~=)l>>jC!LZzyukr6P^%u`cYpV)E`E_&gD1vO3%~Ie~ENbYS7)!
z{~QTdHw$#iDI%y)$4h{F#mF&lI7cSpx(<>Adn}_C{eT8_LBl^z+{D7zwqq7^cj2~3
zI$tsOrE4qdh<0IG&+Xu``~;KLX=dt?ya!8Bi`@|{{;fA+mF;pHUAW-SW}}+1B)%J`
zLPoGhual1t%o89YQcBng+*drHc#z=~`D^mX3Jux8#pj&v0E?ZwOuP!{5PSEFW_39@
zSs$Z52`T$T26D3`Pubu&8#S&xXm=B(X@&UZAFtN?KNFD3zxUirxdJo2saz9-^<N`N
z-1Mc@Cz{5UM_u#K3;nu*asA~O7%x#55Tay=6n(OH&=rvvFqV(|E4y2!2ZDh(Y>SMH
z;yubkE_4V^f&0+SyV9|9*_0{_jI`cm0fE@weVdUV>SXGgD%3u0{9)4U{*EajjomWu
zf|$MBof26a&y|(B6<*LW1^ClYi#}Xc1_jw0N1g3jEnf8_#Z1?pmhcz2g>H9+q&vdt
z-)bu5qEixbvqqXv(8f<dVrz1MNk+2K?IKI-;z;mv;R9lSLpRZ`34c_n!D2P|45RtQ
zo(xmkb5c{=3yrl3fQ|cQ#;1)h&@vfk;OR;Hbk&qf(QbT(g-UMtybe*qX7230zfEmU
z9EC*eU5a1<B4UBO%29pG$Wo`nqR*ayW$JCu=ul-UWV=jHNfe0ez)^}|z{{1yW+t^S
zi>9`#tH8ZtX8Z&9CszPnRJTK0yGeBR(vKx*>!=YcfR}6!Lo{IWmglfRVG3}szb5j!
z$!C*3C*ZJ7JU`GK7kjELpTOf%)Sr@a+KCzMvNJB(SaTAz%?IW7%5MyG*wu!>wOjS|
z<882XW_Gf>6lm=B)P*oF+ffC2z??)k&Zco|x-^~l_NZOHso^eI1hBG!ouzr&%D9y*
zp!BKH?~!61f!3!t0NS=TCM&@9MKhU{vSS1!590ASTPBP7U(WpodnIVnI6X|PI?;Zp
ze^(KDLqR^tp%@q3APoDDQNn2;c@rYlg#Z|1{22)~>tysn8+|tb2nvzD068c#@CY1M
zvl&xL5Mg1amHwsL5)yU*;J-uH0@_{sVcX^gz`EYJMsrg>{Gyt`fA@QgaViVkOHE@m
zEmwU2nUM3+NNkSFL+AmN-(x=l3yBCzi@Md(&(G&<c(lAOwnjw6!-xuZLC~H>?M^~T
zz{UAs>>TMG_+H!Rxw*MeOc4R=E=}U~k+y?P?UAqW2barUe$vqed3VhP2ix|Ic()@q
zKok|XyMNsDR}U-)*AgrWva=2lZ8kJN8zXCdg>*nLUuKx8rZZBah{$c>SfA?0r*?P_
z(l1Eju0@Y^SEdfX^{1#(2POChMca>S3DI1OIq_sWA6Ql^b6=)Zd1)>$`s|hgWg$0_
zn=?ML?UOy7k*aM!1f`-E8TXB^h*%iOUymuogpbPln-u!}3a&abpD}Q5cBw$8Q}1ec
zWh(Ao=X!G~CFnM1a-0U+7=(gC#H;7d^6_j!Vm-+PyGO^%3S_dJ&Vt?58BE}7-;0)7
z2QMdOMQXRjk5M-p`AWZB4;vdh#(usQ>M<lHwyC79a?7+!)SO|NS((hh+<om-uzh{~
zQQo<prD^7_*82T0Ix3A$v+s3n5sguw7=kcS`^RVHo#_ikNsCksAuA?r=5RFDxNVvE
z8_U~;?a`~({mE?NRc-+gu6@mh^C#xUEPufLI|Wn0@C_XeEyBRCUEznp(>5VI=j-2Q
zNevs{EeydRX(J0H2fSwYC26n#3qb5<wLakV&hz)`GLEQ3TIr%n`6!QwSeWp3l6!FU
zC?g1&s68s6GBhkK?5}wfg@MTe6$o7{;?PSRfc;To4Ti+IK-?+#=JNo)XtABi<N%J#
z+0wTX&||9O!g=dzi~1`wleUHZK>Z)p5GM9hR|}3wUS{U1H=0M#(*Vs6a0ihft`2M3
zJBsemFP?{$(-jYCm&3K*S4BW#=%cC$yXmmtB5fiy=Z+xQX2#JyFYrgcSq&5TYFK1q
zkOa%G`k_vp$3U9LVv@evLIDo?G5x2Wd6^t>-!?2XU~>d$$H0EL^f3|In0Z4#o>^dZ
zmJ@#neQL7e{ei1<6(jqOYByca#}H4cwr@Udkw=)Eu>ZIrz0swg*x)TAW8*GNmexII
z8o^*%`$_uSM!eVUm==SC^!>p4rGNlj1MCZI0wYA^VB1!4Q$3S5p>f$-$j-EBu!H#b
zfoBP`X644gDcF$NGM_w-Dmn+}_gR`oQ$E6#u2MX4A6#Gg>9Qk{YRrEF)}M1lI8-Yf
z15eT!ZGLlBi_I!JSDN37HoQi(-g<U3H-``8d>^V5gXv_?0yIk8qb$Suf%5{G^O1Ws
z7B7scmmB)g5H<X;LPPk{J3b5a_QuSej25&wRax_eTg-(+5>ipH64=Tc(YEr?u)`M?
zw4uCzOoS2)Y1>Z}DVJ<ckZ|+(X}&AC2~pdfzLH#Z(B94J{ykJ(?|dY;)4yaiK2iWB
z0-OzpUyb_agjrJgJA4P}_ixP*5R$z0i2hL%w@^@&0J7s4S+bMJBR61!H*wuSq#N!T
zl1)IDak~!;VnsHu<$cRDD0VKn=R;o8rp%&2(?Q=~>G{l911+47Gy&XMQPZ`#8DJGL
zegILn72Pcj1@B99pUNTzfc+Sw=lzvQV^^m;&Yk{h2Eg}o57n9ZLF94!YEUiT0G0C_
zAjY5go|>JE%5Gd@24mxM#2d5<2HNsWkje=UDBK1y+yz`Mx3*WU+HXjNpYYNG=_;FS
zny>^j>FfrFV%aKz>mPK0|60r_Lt)VxN~pJ~BQhDO>4>*`!t&ziTgiUv{Ray`E1H;!
z!c~%vmR1VYpAEkOo_iKFe2gG8QyB$fxhkw1SV=b-45lX0AY}6w<}bZ{1U+qSWTs%g
z)Be|4fuf@11G}>W+|MUNRaYs=$+v3N(wp=a;8rcQ658sCyTCgsxR$+fziMs`@RQsb
zEPs1|Xx#4?fZxXc4P^SFaD}k#16*si2yZ(XnJ_;-(X)^$e>Wn4;*Dm|P%e%teGX&L
zpb6`nI$jdVqGP~+#mBRV+-t*BAo~xmk04YW^HW#-R|{`ipUZ*)Wq&<DJhmTELV8DI
zdirMKKBjA%@u%>Vi3polMYrU!7kh(7YP|Z{GNb|eS}Es88wv-j&B(V4W=!KO6U2=E
zUPg5Ods1U~;o=SBO#|oJg2*E12sh^Tw=bciyYH_?JfaHTVNG(4c_i^hyK6x-GbyNk
z#&!zSSa~0pu`qhRtM*-!cLln)+M9#8_1ewn`JF~a4i3!JJv#pEyQ$cgR!(qB0JSw|
zBuo6UM2;aRxO;W8$)j6yu#ftaAS5<1F;6sdH^ee~v%jCd(zO5T9SUKew!Kom;wvG&
z0rMFFCS~umvCo(!uT$k2a_1iK);-23H>7z>We2<WV#oayb^_THJ}e{I%(hRS`g4c2
z8yc<MEi~MfH4@ZaYkiXI`D5oxZ4LDp`mpo~Xb`0W`MQjU!4lS7rVz-jd?4b@_t*K@
zd*5Jay`?E#wLj^RJ=gn!d;@BRN-Fpugwmo8^-&0I+fC{+*HfqlfWn(H&1xq=CFE9o
zM568TUT>wd07YK;FD0PY_IBr|?#@EGeg#NgPG#<A=57FW?=<-gl~=dg>=`Ov*LU1A
z5@%LRphAGM`2xoUQ-6QGdzOXA9tz;=v=E6G&bOC#NhX?`XNfBBNjv@AD0<!hwtB=7
zd9v^nxgOXa2JX<vP<^=JkV<2HhKH`(V&8Yq%<LpVnEbfPnVK$zA49%x0<!rFhzXGm
zxQnz1cb8s3wSh^B>=3aB-b;b#Wib{qq*q0!7OD??zlTM7kNrFh(}jGWf3p|^elo<#
zihxI%<_DL@;%rd(107ERpWYTmn`C<l5m5dFH~b!b>%I?ys^(u}VS+$S6;!K+H*imB
zCYwW*<u`UYiyO2}4z1TKVRrwOY}<k*-ZI_OYK5<JpGexW0n@;=6ui1lOU>J8QizTD
z@*_>#-L=0`On(I?Mcs|iOP=$%Bg%QD9L0o-(%)+iKCAi+Tn9lYg<m~G>F?f!sVwow
zTrx4m#yTpK82U|b4-=m=PMnT5kvNS;4h9!{r5fgOeA|%it9{aMkuo_%H!HZLuIRk>
zrT}4tUBu>7m9>`2_4z)v)$I6K@-;~pK6gd&?d57Of%XjoH}S1y>z)YeoI4`Qc{Rn!
zrH#7!fo5c+{De>4S8N2CgmWXJ4^_p_!+dPj;jHwp!W)|5P4_dUM4ju|G#u(qswWxV
z)R|YeX2sjym<;u9&p*sMVNB-a$NLD^NBU@yXx8cR-_NWFlcAcVe6l1hWlQ-dRt4zv
zP@txfgllwh8(>}p94<gG+6u13YbP+EJN%Dy!@;r_6I8UfX{fJPh0}nvliMF>wm@Gv
zeF5w&NRPe--KR0S7QgD%OagBcw`hr4r>Nc>R6P=2-WHG~4*ycZQn>Z&0E?@7Jf~gS
zNC&SC@a^zltzi(>)#gkR*M3F->QiD^jK5uXV((Jz*Y~J-RhfjBE&vd!4~StZ<610=
z8<lq^%DFZ^9U)ur1g-zVJ12gm1m(BzEQ5+bOSxMeIr+Fy8?7(~WO`-8I8XALm=)0U
z#n8p2Z-I?r)>J!zzgxd6SdBRZ!H<mBv3u;5cH94cZWCNInbk#vHo2mTC=zapo7@VN
z!DgDVK@MgK#bm4q2!x-H0JY~Iaw`Hj-PN{Z<QM4(*a&bcFzq-Z4I%ms5&Gk`iG$fL
zg^@3&eihr~npf9Xz-{k&huGV<+o;Q_YP-?@{>_lzH$>Qb#V#YH`skJupI-hXRY|ct
z9P8s4Rm@Iv++C3hNgjucUh22wZ5kc<)kL9ZLHjrDgp~LMycTx_=xz+&<V0>KS|$Z*
zTS9tmmEwgWRL7GEl_ANi6QLdHSF)fY`>uX@z+}5P830GMx4O#k^l8;ld}V=5(jEs?
z;T29)XfRJcv_Dow&afKiYQwq5t1b<5Woev;GIk+D?K!+NVP8x9T00Y73YyLhv0-Yu
zuMUEl-|O)GUb<jnq>+@E-?ia(?LAxmI>Ger?&g`cbP}Fu-=9xF8t4~bOY5Fkf&g2{
zlz4YjeD@YF{sVyGqqsmbp&lv1$)bboWw{m*H04q^SmEw3c%7ACZU3cJHIRGm)^4%|
zLX);vw_D_(-1$2z$jKUX5HP|*t_3ZW7)Yc!Uy;$eQSJ{P>@O$}rzxAKibValOnRef
zxXDid9MCbyaQuISk_o<tlmzgKo6ZA|$~?gaco}0896ebqHIQhG-CJz-0#SBoWa9B2
zBwtJE>Oqi%5n!boGf(m}Gc(WDLTf*7@3U3)5-ym^c~8cJdSjf92w%~uj%^`WAYi8h
zp;@VUjQuvb1<JX_k2C$HjrkS@_=OfG7L7o$oe=kUWg&V@R?@s^Jr$VDbA5`!Gz%y@
zZy%#xJp?P%MhhwirXq-8{6j_mtTj-e*)69@I1};O_?P=wk#wfLE?Yfv)J;61vl=p{
zMQF#Z>s$exW8JxWE4SPFULjJ32;xV5mLJ{-;cTRubLj5;WpFzfBVU=nUzqk{ik~E5
z^Q-+#Qebv9`osEx+n^CF4gxUtF?cKO00>9S;Is9kNH@j=%*pthN&2Xgyb<%|4VuOP
zeky^17n}C)n22?LzA1OX2<uhV<oeD=Uu~fFUh8ndL)2}z;`4CgKyK=4vOr3K=0V*1
z;F)0pEhK_zK8b}+;{vtvw~c73LJt1booeMxb~6-yp+yZujB2ad(EjjsR^1yv%RYL@
z2xa7lroSBP?4F|(rAIjQ!^KI_i<gy)zrQt7<8^a)zme)xp4vTWyQN|yRsQHp_eO3a
zV0JE-t;5bViJjZeT`#ozub%S1?og6u=tpe@ToiQqmusNfF?4q7W2j<7W2tl8PCGqj
zc>(Pkpoamk7q=wz6jqpg^%K~TE4ux@e-D|Qe&xr{jwIXx+WX-eNB6D^E7#Ibu!t%F
z++6`kJ8P3vJGw-mM;$NMn?|CscA%u~NHm`;puxnzz8G7+{I|!Ltr4W<1&Tg9r^Y7<
zJ`;8Te{Y;@=Pm)ns=>T?H&qugaq*p9&??pbW`tu-BBk^*Mb&<SL$9iP?h7sY6?nrZ
zet0d@pxq<{<1kg_8)#-^Wb|AfuL9o#3My(G;Qv{?*UOZOG3<|LzJ_6}m#Wp&wGQb1
zV4<|9qBfNU6n-U@(`K`(328?_d>8lVpaj@~vnJ%pJ<gIY|88+ViDV9&WRL*Dy}v7O
z5?gh}eRAyBzXbAd{s1=AkcGSIrxafLxH4GJv3PhmFS^$oAM>cpXyN=``Pgsm-GYj(
zn%OkoY!KPvkgAu=FQq%V!fnQUD`NI>@g3Ps+Mq<NhhBh1Kzyls*oTUm;jM8nNME04
zu<H8AFsqRM-WF}s-=={i_h*%uOn$;abV9PL+6P+JI;0{wHEV*q$gg*137P`tkr7&!
zn=T7@6b_rA5f(*eMhJMNxD7jbl-zsFlmTKOf1XOzD-b2AL-GU7$8)uW9?XPvkpRtn
zc5bVL#yVlryVEZG#r$wb_T>#}4ySOcWZcwtF8q0w9LP%$^b(%p>HZ#sGfngi+9k6w
ziSn$8v?^R|95U1%qjo3U4P0iJwmoS_q()k4-I1!;RqDd#pH+cJO5i&Q9h|~KI8G4>
z7N|PQO4eDu(Vj>XHf%A_o4+5zUU{?kM?MpRxbEfAGK>A%8xP=@Pe{Ub<J91z!@UY!
z_H)^r{?QoZ1yC2<{V_8UQo8MM_{1O}Anz(^_K4SXTqIu41hyAV8`r27uj%#bt9~`F
zp4V+yWFF^xYFhIzs%km4m030{`S8<(;owNgGvbG(0{?i$KMD`M(<q<V0Kdmw^;_m2
z%uUBDDj?$AK6c5(aFf&E&Mcni&~Gws9-=?<{#_9N60#Rqc8R+@BACB#H;{v%cbElq
zWFcJuQau@^A95-H{q;j4Vb?6C5j;G*2{P`Jsi4s_Ako^6+bMxHQUz#$rOf79hfOI}
z)%Xalg3VEO9SPNiP`rjeXb7OUc7X<qRl27!yIZtB?Ig%wGl*pyaNLnTu4T6Se=ACI
zdGu>>T+z;*-qDR(ZhZhLv-CeIHQw%0-BaN{dyW>Zx804<ZSY)};P7^l-0UdjCr$(A
z0;3Z5Vo~EOeO^ByM$10M1n)&z56x?Vi-6g^)98&x*ex<Gx0k==ZAwUssV!T5e$MWu
z7%aja-*gj??U#XQ3Z)q^4juH(7IZzt=W!0_msg0P;v;6N59#$se6YhqA1GSo)o!>u
zM?D$j3EQ6Kb7ze^m`~Vd#ZHCX$1o(^sr4AdS?7~>oQ&t{^f(O7XCCIefUKiVFOB`r
zkdFn3Ixd8yipP_DO`|!^d8~yAv}o(E*F-fBQhu;Bsf{)kTKQgXNixj`*4rVdJKK&B
zn8}Y}M?OuKuxl|$jVs<qCD{JC*->w)D^%|?d$1O;Sh+dE@&l_fsANE4ac7YN0yp;0
zO65%|IRp+44kGdncIbBio?DG`ENZcDsPn-uE)d5M$`29G17;tea20V}eb;>4SGu1_
zERTT7eP9DFjMqBRVrbpCQxkm}u8pANv;Qe*HyzBtjfkwElpShC7_X)Nkw!$()G`_{
zLKS>?|L2g0?Wya5Z(PILn&C{dS99NT!LCFD@5Y{g3DAz4+I-pq*g@Yir(NZ^yNP_2
zA$kWKW@LSdf@jC_@n>S3tO0Q%xRXT?aqia*x&X{iLkKl9HKnqDcbVf6!D^y(8nao$
z-pS3`9KdgT$Z6{ZRvK|Yo-7G$s=wJLPk;}vg7^M%m8;JAqxVqGClfVAXXaCeJg)W1
z#k852{@twtiGTIGnTemy_Hiugq8DT5w!3wXu!E$st7aQ8UJ_P|)H*dEu@AeMwDI>P
z2#fPoydI$D7&P{N1C~^3r@e%a<=qA@<Xo-OPcj>&uT*JKO<gUjsyh1Q^y`wH-G08y
z&#QPXV+n{VFio)y`H5(ddv@EG-|Az`#op4FAMVlGNt`EWx#b^qftkjsfSYcd<vke>
z`FFMV6p8c1*mMU-Z8Z(wC&=L2p5iau3@=RKq)8-9VZa@44C#=LWqEu{x7a0k&GKt#
zp!66x=+}HvvA<t@KDH&nJn=;}{*c|@-|tB`FdOJ(X)&wb%?#kd;%8lRm|XVclk~!_
z2CLd5L*CE2V=nEJ)DGyGmy_(d@q@bfFb@l)LL0gdxXF@n2!8g{zXWe(Ol?6I557)J
zSh67qMlxTCWR=GWW|`&2(WzO0M3tW;d){mk;cTvKzNPEwQ=oX6DKHL#U!6FNd|X_e
z{<)l5AvpqB5g_i*<E+b%nO|6$6tx>Dz>N)eOWum}&(^;7i&n2NjYtKn_(l_Dwl)$G
z%s^=xRYk>Uew;3W023t3qMBJzJ9d-}3rly>iZUl@-NHpcNAq^+`XLgiUcNs%9Yp)?
zwWvRMGgB&^i~Z|NKfa^G@t^v^CxclDfZXCk4Y?NeyM9KxfeXNK?XCkWr5s?ZKRf8J
zD_&;&Y7cz3iAD2Aku#tTDnKo;ng7PdTB?M*T_mmD3mL_WU98M4Zz_H8k2^^Q;Nw~_
zhUllAq<(gMJafYgaHs6Msu(yoCyAvxhWle`+)SrVlSMTrfQwbr<DmJ^>0+PHlcw9o
z(?OoN&c?MfN^}(Kh!_m_^_=9G2u3=p^T7xk!;XS$W!svvMu7%ePE9ps<GL1w<>W(?
zH!~$~;J+4RcX}K}289>m(Nx*C4$j&nzwT9YE^;&5TrnK`&_2Pru%bhw4n;c=i?m({
z+S;5Kr=N6X{H?MLP=4;ZIAJhRkQXe}R4STH3rAuM_I&o>S?@VNi~PZhT~{{5fAh|E
zt-Gjx@FjMiL_4VB&<JAa0wwRRCo-gBY}c*%)kv=An(o5SS2hdk!vyZ7Z868ee!+!8
zS(C9)V=C(C2y%5gbY{QOVK%Q7MwCA9Y|%esMM34y%xq^rrKRAMvkvx78G7w6dIvls
z_vUa`&$SD+3V*4Jv+o_n7@x^!x|por$u`c$BqW~{;SX*zh9)1yGI`NxqIyr(l6si;
z>7ZBN*{pk1R9#Al<_}$>QJl}2dv+z=^{3AZDA=_A%&avJe161Ix1K)2-C++%Yj>v~
z!Rl_7C#?@f?GJNbT)ZGqmkgj4E<6Jy1gni=o#q9=nF7@Ph(~B#Gvstcg7_zRvKTS|
zlSEbgRDdZe9+2#e>9^Uh_il&xfU{quh6)b{6#>hH0GS|NQ?P!{g!8CBWa`q5>iu?f
z2oj6N76^xNggM)Jo+IJ&0|+#htI9_(+q8F;wggl8M*#JdKdh)_9$xJC?~R^jAW|Sg
z%hbf3f}S;cFX&%g=;K44Bn%oj=&2uzJ#8Jn^J#-?ir3v)uAlo|b9aDVAhh$k4k%oW
zUA0}ge>Hj3kGYFe?ud$tZoMsNwN;(cq;7eu>$=@r0&+CSa``6PU+WnfW@tNrT2++Y
zYSu6o|1%H{<Oj(aol#7>)^ZiSnq6OS0AofoVDc~yJQ`FM${Zoum2oBVBPC#+%u;oE
zNes-z53~MG;tR*C-A>U@MbS&#6@E2v&E-BuD!!i>Bq{TY>+y+ig)wNu$S4gE*MUj0
z5!!gKXa&H$v}JpLCBFUl>nk+~&QS6sm+YE4?Ww&Z;_}i}dj0Q+^pYSJ5`tgV*0ua!
zOoN2C*(o=omujM&&n@+fh@J-P^P8D%KgzT{Ff$&0Fa`9DhJ}6!bBRT2q7mZ1W$ZEH
zm{+HIo7z0!yLyzX$GD4S{8Y4c6UAmqLhn35LkIG#+lq--Hl;SC+x{PS=Tr0^)Tbhx
zaIGm$=~-YyQHKvVJ35xsY+7NzE;SZK${y7V5@MPk?(0zqCmwfu%=&&@F*eNuo>vGy
z&EP$|gB+V+T_+hRu3cvM+5Lx6%0e_Q$m2!P`Pv2cHEcJwaq*xM{|)3GKEA%0AnD?|
zld~V@rKBqns50gT<W%9|;hphGj~b4zL2^uWb#;a5h_JTXI@T3nrBoi30`Jf$h%|CA
z-Sr@G0FD`BH84B}jQWws<Uzu&zL-Fi@~3~Fv5?C_!GkzD!RA|-V<J&=)n*T%!iGA2
z;b(ZH``8-uIk;j~xMx={42q!g8EQ9ywV&~<(hA73L3gbVl;AB`Eg1xZ!9zpfU~$*_
zaz@wHH9PjI8)y901rX{A;xvPa9gu74x4L8Ki}&Aw{L?CoX%CR|A+F+Ye-A(j{gpHg
zCkCFX2>{+8zKAhdFCK5aJBukS3ddT?=nuhQ2ho~*Hm<m$K?ZO)x~jqW&qs(S_m6^t
z;!aAEI}yE11{2W=b^*S_vg-Bh+S%9ek>|Vc7?g06?Vw5>-JSOt<R~`K`QlE55U#~r
zQf`95*jYpH&nVASOvoF_QhzmC7=?ArKegB3;zRiS2~D`$UHk>?J;Wk0qU)(Qdf^&I
zOIO?W82iv*oPL$K=`VmC(EhS~!WU2~6rmv!bOVt>XsZFX!*3I$CG8uq>{=v|4n||y
zvQx=VwPMJ;z(d0Qv|Sz6N5s#{9)}w~0cRRcSXIBhgzMQ*07Ou|oh6+YV5Mvf@w8dK
zvQNJ5h=9}DqgM3G?gD16`XrF%@d0{)>*zzP`BB=z<%bn8R31&>oOJJusB#ad4n5}j
zn-yGeoBT<!^J5L9!TjPL#BI#7Vwr6Z5pc|acE^DMe#m!__iWuXgN5W;q(<L0+{FY=
zf!C-PQ>}@2v+wrEayna<*k!<J1|+zBFV0Z~T8-GpAa^#>hO>H>0%-v0H*mLgR7O1w
z-24bm+DbEE@^j}~Z!CAR{nD|tEcgcdG;P8nUCox%4peSq3go;8B93P9Xl76JN5GnK
zv}e-9)!q+QEMHGL1m~F^Oj2=W^UAw?L5)8KN&oUo{Tro20_st$r*_1s%SJ~0!*3q1
zBVgLE)SZKMN91=Pi>tgXtE=KC6G0R0+Y+H;;O<@ra12ySRkfk(l{SHCa&Oh6qviHV
z%Or6gzdGS*#@&FB_jX{!q%MaG7Pf}pOyFLWF8d4+ffW#K2qBL$B2!2$>CpEswvc~+
z^nQYt!te&4#I*SI$Z@lO33%9_Bz=Z||B(FQfH?uI2DPogA|0d@L+<pympf5T1_MiJ
z<l~SiHy*OO1XKH%hwx$BK{G*5IxudEQYJB;iJA1;X%EqD5XnNJ;p+xHChK*}H3riV
zSCKTZv>V`o(RiN|3oqM(T{odKU|yi2emy#fkB>LyApGjj^4lW5oQ<J3aUE#uhoDeH
zT_*$7@Gu>l#C1A7vI5&yJfR3u{`)IPy?PAoXhjWF_&0;2_sf^Mx5wZm0WSPc=HS9#
z-f}Al%IdUciUjeAv(NhT1BGvtaa>?f(I1_J0wR!?K&iK$E8-{jI6&rAQRQP;%Y8-_
z1391p{@90GVcj5Ps#TK(NvC>xzt28X@Z;Sc<W!psb>3j7?C0la$`lBgB^A5nHH?3&
zi2gd`H6P(FZ*Bm0e?LRJ(H&}N|52Hsy~@-{`26|vo#DnKYaqnAh7zNEL=0&Y3%9_c
zUdN5LpzQVme#+em{$%!G$A?e{VMRZHYuj;-FE5WfCYW1#vC0NsaKSWa$+*c7#P*U&
zG1gC@3*z!P2k#=i{=!rb0IZg?xBN$Ypz;J@qKZES_G^&;+l2@V6_C^Oc(7pnQA(sn
zC}8~0QS&*W{m)-7DM<oMhMuG=LgKT38>c*uRs<!<0C0<9|FbRszs-yOs6+lAzn4RL
z#MnRIB8dF^CHb$$?;o@3|M(lJ7mwhpS&Ze6|M9Q?-@i=7eS~@=4RewIkFWQ~@aWG$
z(%=3J#F7gXR>Fy>@S61AAPk@n6#rTESKHYsYryt{Ge<G^PXQS<6v(~F-vElw#c<gF
z@Bdwk(HlV5>O1<Oy<I(CzBvJ2kSZa1KO-qrxKS1a{`Y_8(=%_dsO4Te`rnT26KLF%
z_!Qs1P(ctPdd6pDWb_kkUK#6eR+0a;diwu62!CA-?;n$%sB_AO^eG^Cc)8sIZYPGN
zgTB81{QiGCa{sp<1<f8K0L<KhR=f!M(T@WlLXM3<tg@+|g7yDCtN-bmv4n1be|ZRf
z3s|M#mPVWed@M#Fb8@pOFn<mMBMA^b$ET-JV2s%Zq<YYLZozGg&P9-QrDAO@5Ga4f
zi%QH-54dJm-^~FNgPf#A2ZS$zsIj~2GqylLN{|F(o_SntZEblFC3<{*9{Fe{psvm@
zV0@h08W*aTwt)hi!dn`wQ!~sb^0>)Q!Q``Wto&{JoPOsQET={=T&QQ!T*4C*73~2_
zpiVWn(C2@6?f>nL{Z~czpWZDv;I49f+Vx#4S6&Pcc%~F{<vYJKz~%A)78ck%*JlE4
zpgN{YH{nBRzHcxHGWi)!Dnic6I$lK2$EOtwvQ}*x&#JWUJ2f@;G)Z+IrR#!6#%yrJ
zE{6*YOwGK~V2fqK5DEOdlHj@JxR4<kWjLHFBwubUeSCB@>^8*DBLgBB4ODE}{65<Q
z`Pm!a=g81$LbzS3!1w9~mi!f$z#SJcn)6;n%Q)Ki3Z(cZ7@&w}Vl$|3kzdaOl2=6G
zP-p9N{bsdt?TJ+;pnq620Jw_I?rw?AJFsOw0j|nQ>S6W6y%}h57^}Cf&|+F`d!uvJ
zd)$ZkT;4v0hILWP0wE5FVzW3VEi(J_NhBt+bgzM7*dq;Ze;Xb5+p8gMPH4g7AcHkX
zCW<)jvhOYNbTRBNc0<zt{qFkXzQBA2o<R=YC^kM|f1GwsyQNww?2qt>%A%nE>O{{{
z4Df4|Ae^oQ!xPVcVPOHVTX4L)8-NR1&k*PGW2pl&JpB6$?ira5<9E+jTEOK(-8$R1
z<0(GtM$qAbdkzw=&FvEHtoSr`g&>>M>K(Xz?v5&H_3z98p8@45WiN<W=5h!C?Utsz
zynMm@ZpDZR*im60;$cZa;eW(lIv)9^HUr|{<X)1|ZRRKgIqWx1J0Airdr`24PD&@Z
z0Js|2K0ulH37RB_=uN720Ha&tLiZU2-n~adDbWSkH%+AY0<(56=mOSm4mUTq*g=)|
zg2S5p{reGg0s?YZY!IoWL_}HrMp#%l^!kqr*Lzfyq=o5ia@}FYrK`!$9|kjvzFPAl
zZEmu;+FV*hc(%&?$;9N$rB!ieniEWWw>_cNpKWYw$O&d?v#V~ErsvC><%L_?`!w1T
zeusbh!q&+{B09u<)-TCbv*jyq4@=?joydHCjS!vMEPH}GJ17k`x}RsW;Q#)VU^IcM
zJ^Z9K=#tXcDAdC4w1cVe&h`G*O|8r@w?Ms83M~F|IzJt`2ey9`6BGN1A^VlR(+@O$
zQJ_20K!gAe7CB&i$^H1)SjlPG6W+?=a?m|k_fuh^a}bL(6eJ5#fPW9Ly*!HHGUu|S
zEx><gkeGr22QiW=g<#cD8**!8XxIa6AQgdvd$}Z<W$8kfutKvOiy!GgClC$FV)Yj2
z09GWTi>9j${FyqZ1XinAQ6L~rRRcAH6!<7cKtEHLe2ltr{;-z>lc+Q?+oh9LAGNJ(
ziYuiq-0>s=qNvz_Kv{M1W!|aS-Ab(Z%hTtRR4;wR-nhILLwfek<)S*-Y5Hal!yyZ$
zy`%n?@O(CZ>R}IK)pPKan~Uq`7>HKPR6REvI5lNp{}K=RkpPT`Z((5kN1f!fwq}qz
zK=d!LzsFPn@XF3&v%o;IN6aq?TiaL5Phq=2cR4ayIA^%Ewp*0&b_uFlf>WUBddH%x
zo&AbnYSahj)E`&QB^?cf6eVS}fIPR@(Xk;oJ(JYWOBnkk-y1Ghf+Lg^Y;9diHx5_`
zKzHcH;Q!g2!X*9)hAtFg(36F3rusdWV7j8byfolI=+eh8GK7*QUE0|p_xy-PB5;a<
zG4^8rWGmglpU&AP$~h)xB03^M7984aS$;JJPfU4((X4!|%bO38#l_i|MQW0{x!(pB
z?(<PMq?k#$`OBy4NA8(!hZ2mXX|Wd9gBCvU1{(h|xwi=vhc(yp4KJMvFHEPag(Fq_
zfQ30*?;ep9Of{jTB4;FYni7Sbw#_o1c-NM@=)>`IvUNsxs8VTN83Qxm7pHGS7ZNjW
z^N%RM8|~ED(UX9@Igi?qax#C$c#&k0n~1{TWHT)%wit?R`TIp4nv1Xj<b(FXv7|lT
zUpYl-k$GjOFDy+45MaHC%k1nkzNew*(X0`>sYNk_bwdAjY~Fo>fAy5I<$wIJ^%YuG
z&U9HVBrHs2{(LFG<>3xB2gL%s0e=JKA%aQkRDa!1z3DmYdTHd%dZRw<N7?Yi3?%eo
zNZ=t2h=%16IvH!%(63j5GZj@-va8HwvMMc-z~~VY?$$%&;NT!Oy?Ub*D6n^SbLf={
z1T!iK=OoYlaM3@o$V{wI_JV-0*&I_O{nkhKYrtVAE|>-ATS`p00X5Dz4kl&~%~B1l
zOFaxCcF!rmam2$RNQ6zoqmSs$RTY*I-kUL5mSFo;FO=v#D?_FXf&p+N7$_HVzwZGp
zr$zPHc^;5iSMby~=Q{y&o8*RA5<@HL??72dOG!^h7iAsjs-2$p(m!ZeBM8530EL*4
zkfOsc%1}#7iy<>J34NvA5drKXU%r9EDsFN|0Ws2kC#OzB`7_=%;g832SO#9O0!2md
zExdJUV*DpIxc(%bh@wX4G=iPFU2XJ~+*<5FWaKj(0mfI2_i`J%yQG?dWF28BU2xT_
znH6@cLcs=3=e;=E@v^0*^Zw5qkhR>m+XrUBtwE^8p7rjW%X2mqU3QvdR-kw|z?s-C
zgVcl8%=S=fTiKN*=>ciXCphWqm791c2DCMgcJhzHl?E)hjzP_gFYp$0Z*$iap(ZAj
z6*6t9E0pb#kY9danqQ0x2{BvMUDSi|mm&2YKb;87O-RZe%L!@Zt3CT1gZkE|t>?y?
zyxP-FkxF#nX7eteSyMUp@N7{cBeld;2a3?+o-hCFPv8G|E$Kr2^C}bEq|hC6tDd}0
zLVkf+jB?Wa-~m3=gm8o#5TqzBCsh%+b=E>wxC-Ot%wSumug|#c@H&*?nC3>uXDeSe
z6h?xCarh`cJyf7&3>X#Vex6759qAW7T4Z(UBmYO~T}}lc`GiQt0w$dj^AGtTekla_
z?IOd8Rj_d}B=TthrC0v?zQ44Lj7++|Fg^F{*Ke^fXcIoUV%!L~Is6EMk8!Wz6TS`1
zfD?(S+aN$I!i5sdNJ|qYmH(KcT&&H|QS3DeA~Wez;sUx7Sd6~p>`+cUR_`N#{6Ytf
zh`$Y{<(SsN0)5u(>{X7PSYt0<`1F1I>nRlQ1bXa}fWxz8CJqCGa}m1AlIxw<U8Ty$
z!)Ye|dfEI%(!Krtt)EmjkVPzdM1!G=>$%h0i$yu=r01nwQ~amqC-Ny1oOt|osa9U9
z5tSy$AggBDdLBLj3~8(4pR^H>#TXN05<Vo0NyPGrf7TI@rt<Wt?le%}Q7v&|S}&ZN
zTuQGhXp_Hi)|eWY4A4(*0AIaL>(z$|ZYj47Lhh>r`QAH)+W}>TIqRt*M1y~wwa1VD
z&r|rXABGj7EJO6X6~l=5#?}3f*y3nuX)}h0RXbpC$S7`$YQvj*RUrW(!~!zOZIXvA
zPm>_aV2+m#hD9_3{X_zHzZGViJOT?W2Gp59y&U$%NMAuP<=qAYl{I9uAYuc3{jd4!
zSD}P;XYqyOe`((wvih*GcWjE1IU~&FQAr6!o#Kg6S23}$D1u3fM5c`>Dsk8$lI#?%
zAtRivwdkmRtb+psuZv<g;ePJ#?3h;-<@&2DKhiQ`;G`Z>Jg+|=G+q#uRlCT2Swq_u
zRyEAnpX(fG=WS=Bq@eg5?vsm&h9<PI5EA%2`q{C-;{ot?e)lA0(abC)@P}2m#!{w}
zJ`}hR`PSDk^LT!rJ7*8^e|W=<I}5K;2<9(7_opc~<L-m3NiB&#Gt2BGzaif>G;O!_
zH-1KOr0ff=gB>5vK(oT%VLPivO=uFbp4o;YNvufoVR$n;NeTSi&Fd@`)(P(>1EN}#
zh8MaO231SkIFelN6ntk+C#|x_h`l5{<3iY|H!=Rh1N?7ij4<R0A_4=ifv2Zu8TPUZ
zDS;)mk%>t{O<QL-s$zo3n+Z7(trM<}g@cp5K}MGT0!tg_`SZMejdGBvjY;~w6!I=f
z(2!)~8LXcJ5**yHa;{s@{r5;(I{b~#_h)AVh<AG%8<bQ2O<iq`=WWmR2eLBqX#4iR
z_hr#I&{~0p$Pjy~VZ}9PoTj^>;p3?G2kJmMIZ3z?OU5MNO{pr!`O!i^Kp-05O6xFC
z^Yy=9NuR`^iWWRsSMm~QGA?vawuxjY+-4jpx1U&Dt}xL494MQvricOHaaNm!PF7Pn
zq}uv=Ibq@NwhQyZ{{ESc$DJZ;K;TdpKueb|9nkGkFjL+=(&9aWiHAqdf0LJKu=E8h
zVSA|+gL2=dZX5mhZb&Qk;;{JU2egcJqtlnmr@@1taW^X~oqlg52$0NWM5pM`&jAdt
zQ<;aQWss1-9+>bgvwn27!6TaK?0nBji6bY~Yj(X~o#eRIBk6nIMOFQaMXbaQ8>N?~
z!g*hNXP!s%D~Hd@szGjDoj9jk*2ss$!tnmDH=+0(;ay+1sYD<=L9cSCWDMV!bh24E
zzu<`3L`e6z2_4-S2sE3mh**)}^yqZKuvv~wA|r^L8k;PXK)TlVs$S$*Vn9R~y{l<m
zScoNZU81cd_!dP~zEywdh_dn=YXw?g5S3%zWjrYm*-KOJ*W@pdY$W42U_@bPqavHW
zLT7raJs-y0Uuh-%EvcO6s#`~&MO1C$JuPolcLo6r`*|oP%eA>$oP#aHgmP?z&I9}!
z)`zDv+_m!C-^jTuJ!zD%I0)S5W|+SENN9@<Hjx@qiCVI)cPc8yQ_Q2CqWe2&ScPy`
zJM&}KUG6r$ot@^Ao4#~2=P~R(l~EYH7eMZ{T|vhMix#w6Xwk^@>}I$)O`&N6yIHiE
zg<melCd^?vi*|}k_dMmt_-)@kI%`dSlK}sIM%wr@{gf36HmB>#@9*dl_U1qKc(sVy
zBZp#~O7ztBImpOw48|zhbB}1^yq^rYg_U`E5#+h{0+Vi&jw?xU=Ef6emw!Q!SgX`!
zC}M5iAbz_1Ktd~X`)71YMGS&`f3r-3yQbg)DL1S;FOHOb*p^L8bslR9i_2DGM-01_
zo8!?bWlFGkFU?zwP_(w=7gQQ1R3|Cy@3B>q2h(mtuK8et?D600*i-xGu{iX&j8fYZ
zPY3UGey}?JVc2`;fuXdy-8s=^z$4)wxe4>EgE*y);{Il$&22c8HxQYmc*M7dxko4T
z+uiPSC#|AJN0~5Os?+Ypkie)-r-_N^$`vMGZhQ$?gm`{Q1`$`&4C@s>rmda6346o5
z(Q+Ca-vbGEc9~F2+jX(BCetZW1WW@?=xh0rgZAj-0b2WAVu^c&uBgUpSgZriH+X$2
zxdvSRFi}%ELOX68#~irmy&;>>E=QXk(D8y(q_3R!;@Ri+vZNE{EE$u7{&U3$9yl%T
zk42-mk*8;qt-T!?kDbBOmpSHk4lSC(@v3jPEi=^1rK4X}b;U?ZeqISE3bQM1byJ_E
zIs2t<p#;09i&vPi3PwuE%8L^-xGkn@qG++|=r=LZ(W;o3#)gL9lh*t3Jg6=Gl&s&l
znpVBWVfpXE6#{*&<wzl|^P6^NdfN}}(+b*fQr*RiH@-~G-#uNI`MDeJaq>$MP|h<^
z`D<jkZ)kj<!(73+Y<ssUU31c;HBaQbz)@+p4>jlHkht$x&i(A`lisEcLqqchctzdo
z`<v$Nc^5C1oci<G&nq9Y3x)7xx<W8~aMH&Kgh=ZS77B50Z*F!8s^mh?=+#b`43Q&K
zQmD@M@r6{hxxRq$h(s_>F>B6LGB7dA)KJg$l!}M$kzHgLqN1XvdfvU<1|^|<a8eTC
z_JoQ})QU)@oS~1e2b{sXB<@I}k4GM)ZLFBiG+*7%5aMKlo0^EsFFrkCBE9{Z30BTA
zU@(k0T%rR<5P|`n(zOl)LxGHdU?MXf%#9Jop(E$|N^Ehn_t<Fjo!r(Qu?!jx)2oFd
z%sw`9>I#>$tZ>B5UVg|83`)Il!{F~-C*&_^`ZdAZEfOvXSj}RZAA=zngDl^og#F(r
z!JXTqTBWWX>L~73p62?$92@9T)(Vu@Rtq<KNxkQGHnuiD_M6KIaa;1KFH`og-PG6*
z3e<Qwl1BZ2oYkpltoLh~F4SW^=^tDLXs+jO20!NIGe4}xwUEXstQjG$t5+s5bKn~7
z-^YX&epJv9lUZmTzX^!@IYKv_`irjs6(%fR(#(tD$C&VvY2p#V?}lrd6U^O7%6=?P
z$2?36O0S2q&rizgT^V^_o(b40T)V>wkrGMe719b6`?P&;LqDlEq@SrpjB`4cIF0y_
zoZb7?(#Y)u_ik%H1MW(G@%mRPqw4{yFz!lOtC=u04!K|H_0aRF1!noLaVO&%im{gW
zu%5~7*9yZ*alOo^4-1lfIvR$r0-_-IZb;h_l3@+vMl`vGhnZf@cArC1PcW{VZIG~y
z9rZW2iw4sR+h${~Vovf3c$MUWuA<%7gPaE=e#mofqceCSQ7&{xvuLQ8a5t`fa6{3{
ztO}#Yd}z@dsrj`q7X{;wK*Ilz%lvO|^nVs)pU7K$gb{IsrF!2ZAdYcWAro+hJ0FbK
zlTyz^b|%IYycCpa7C}ltBvvS^`vrUDk!2QG8<?ZDwb7bgo!E2^%-O_@iH8-c(TRq@
z#UUPNgvqwQ6#wO@)W&IIq_+4pXGB`v^p#`IJ>}f_et=I~(O?%8dsH5<l#m*pDa;c|
zzX*cz@=9{Zu9Cs0#GiU^XIEOKzQM=)yBOoGOgtrF?O!eCFbe!veAuTkGM7q<ilUdA
zze){Y>x+}yH}ekta#>HA8{bgvszR-25MnX<M_`Vp7h~cLx}OmCHXOfNPcGX#pBOi4
zdbsDyi-(|i+hX})XgfNV&{DE;V2k<z>DnjEnIHTd)o<!<YiqgsJRyr<5gg0Ha*|OZ
zhi5RB<-1ZJFH?e!zCv|!P)5sjRbl&iGC0B9!Xk!In!l?9I^U|&`U?umwE!%H5|7bq
zX2u^{h%^!F_|9f9@mPNP;wM%91arSph31#wJ{qRtH+9_l#JCa(5Fb1T5<MGT4F!d_
z&z_575TKJ9f4o|UX%n(7txEVF7P8NHYOBNROrO+(s4ts=Z<F{=$D=ZKXUEan2Ldnr
zBrhYGuia0hEXi?^-T4czC$E;7u|2`-8es;W@B*B<T>lV5XR56mq<xE-h`NX$^vWt&
z>n}Lb+{HWd)5wAehm>jCT2>S!a>__VYA%o|Kj6rc{whnSCe7gay)A$oa2!OC`UQS>
z*Bt)9jUpQzPUdsb{AvcGE(booFTX8Q|J&(|SUnUCSQ8rBzPG;$V#y2!8;1tfsK)(C
zidgyldmTm%iBU=6{8G`|8odz((g>M`FxT5W2jBU`Lw5ap%8KfI8dk-7__$p!6^4(t
z9gWBAqqOHG2C|MMPbcha(Auy@24{SK34e(2txs{i%scCu=BgcO;d!9y?sD_D)uiVx
zm5r`Pe82Wajfnl2GLODLEAd&tptD^$u}Y`kv;`>ve5b`vI_G%DnBUuc0s2{df;0~o
z#7Ko%zuLVNq{Tk-cHe%ffjGn&CCSYxVXf!5Ss0U~D)?D<t+w%%RB2wQ`y>!Udo^l*
zP^}8{*s$jQxH;A~Ab&A?mclKBh4HfEm8jQ7B<AGjFH*|~D)yZIiDY#c&|VPSbJqh;
zZrfE6MU`AHR5lLry)l=c=c*W8t=y#4es96?o4--Hvb#gQ_A%BG7pq5+ck+y=T}J9P
zf7_d5d*fNz-{>W~T(Cu5e9=Y-J8p0I0+Z%T^UPbn-873sRl9-d@VD=3_Ne;YJ9}7C
z?AjHDNTI`Lxk!^c9ON~WWhh{ykT>WTEVg#c<$hBA)pf|ow6wpyxGRmaiK_1YAETPT
zo(qmopu}L@_RV9id4l%M)%FdTLE1+;JVsYv=P$QSLdVS{L}_7Sfz$pmN{%-pPk(r$
ztxS%LL;z*<I_}0j9;<1IdIKO3vMv64XEFJub}*4k1g`e~5O&sKRcGtlS47x=$VN)K
zq)X{;q&p==MCtAn*o35%(%s!15|Yy0-6bvkE@sZ0Gw1!CbDjBbX0D4J-?i6T&-2{(
z=MFw~adr+@Bgrbr^t`*>)&+%L9%glr0Z^l9BZ?As$VKQR%GxHSU{J{^+~b#zXPZ3*
ztdDO}gdA(E>*{wBxuSZaqTbhSrUk9i%pz8%Hbk?hrjjxT{j#N}R>}Dl4l1fpDM4$y
zAD5(60CxnHGi}@g1=X|VECWJ&tv!dixw@&rQAFLZJ8fvBO&%v7q~@#CbS!7PB<=c8
zh`R@hrv~V=ejGC??r6r<u12J;E|F@Ni+W!zUSAaF!d31RCyR0{6xdcWbKFMC&x0QW
zIzP^mM>KqOgJCaGv>Xg#82qa{5M_a7z%7+E9k2-#7CZb;PDYZIU0jMZCuX0tyPYox
zNbhB#>L+|tm%-;C!juc9%ZyPlf58lCZg9K6uwerJ`qU11-=ZQpCCuNu<$7JOqDx6`
z@%ieKZKMF?GnJN7Mv_Ye1*eHZggpHr0iM8>S-2goXxDpAe7vCBC@<(VU_J_{$!(oZ
z96-sso^y4;kRELf2%L9u!?K&s=N-o!psw#^$HpoV)=Yd5m_2k|NH>beU98_e>XQw`
z2;I7Js@s8ArVJ@ic!0hbo*9-yj;eLSH^seOWLQ}eE;C#`fOO82xL6z?LWtUQfP%h0
z5x=-dr6ReUinAp&n)RXvN_!K<48yA8cs2zt_)5b^8&Q<QjcBc%nxwlUU-MCenPbRp
zH<+SqtrByFiXZopQ7+Kx+>t1VPJS>5Cz>W9g+FdOw@3|iOAHuoX$wPGpwsnPK7Gdd
zn;8Qv?FfC0yVNs2GTlxws<U3(HR2i^ZkL_*BB?hgqpqs2mbwK5UOk`Cg^?544SZB0
zc+R$F(Zkmugo=u)_(B+mT=g5)aFZiW*UMo}|2Bhb9pdf{ELWME8<9Ll2Ek|<NMkVK
zvyK)53EUa=0RL2$yn>P=fyUeX=G$QZqMo0bZH|2D*y<UXBf0WT>4O*LzOG3)zH`om
ziEdXYxN#is=k2D7xQjmp&moOH?EgUWljk=1F84>vgk0wL*vQPmr=2IocD$nquW^6s
z)R+?|I;|+@;VgfMZLj?FrB#*d;)vCAgb}&c_$wsDj4tu^(&Kjn^g+_IB|o&TrnTIU
z!LP>>h1(skqr*n)CbRd+{^*~zk51cEdd13IPBbg5qcw*wWExP=v9@rXt?@Zfi_Nlx
znd#_cJSZzlQ{sL~Gy!`>^y>#**;9)U*~F2b%r*c0_Wh4eZXM(yHm0Ui8qn5DLURC9
zU!t>WLhp{L@J+ejee}_+;boAOMI<#db6E@e@Cb{jJ8akWe9mzMv@FaAt3U=28EnqC
z><LFF@L!rKEF?sZ7oB#6!_!c=CxG5A!JPX!-*Bba8=vy>@)~q^u*$E_@wsVour^42
zDqFD7x)TOV>B^1wM;?0AV3YF3@LoKlrJ>1O=?v@DC!uTrUd;E2hc!QbPzb+Qlx8QB
znFCmQS$JP)-r4q;mP1=i!k<0+*azC~wl+374Gr1>1#`Z?Xfzt`rX)Ir-8g;&N!3s8
zN{3ax<bz7Icx!U5x^4a)$D4+qf-(V>6y_H`fo1(&zdCQjt(VJtUb`h#%9T7;=cf=N
z$*!48HQO2%fK6I@{|==h$O?|g&ZYxX!meTE>@w7L7&Yu_q0av5y~bNtS042FYNkTH
zV#g|Wydtq|sEDvAqBW5)lY9)cn44kQ_BP&fJQo}^huu^Hssoj{HFtpiD6>oTl?2;N
z%4H)l8B9Dj9}STZNyTv-yo>cEUz&4lE(}Cc3;=k?3jvoU-*`iOPOdl*Sx7v<SFKW|
zc<Z%z*vEm>qYSgDayYUY(NTV9!W}twEs*}UPVLQD2m#@C_m5oriR{YrEW%=5o-sj8
z4Lx;{*m{p}eb`X{(1>2m*4A84VuSbSzSS;^oE4f10er}grb|-OUME6*lIFQDCT7}0
z_%EnP$Se*83O`^*DAi37ERry*RtMqDj|svZy7_)w{FNTLpJSkVERKcDn+T-Y^2w!T
zPt1aK&`9CnwP1XH51uUrM3;<GD-U-s2q*z~O+I5^Hf!lXm$bzM5{cMvgM!@jtb{So
z-oaL)!^ZB7R(+L*E2!_RTl6gcEV6Qvo3uTHnNgVWfv2%TG$=-qV;sUU?=Ix<#&S|h
zxQoApHs|3`_qMbL@wu*P+Rsiakv?(TGYE9CY9heFf(Qg75}=p{{y6th-Jw~jA2T5~
zHI#~!>q_kj%ghz|N}0?s0@Ho{dy|%wdKFZ!4=_qZ0Xc_5Gq1{o@K(-bpu1P(oa42t
zE_rdtf39OU@!%&@OCIqJK&Z}vRC^fsJ>|~Gw4Wth-8=Fx6so-9W39A&CVM#Vp@d2a
z{$B#Xgg+`Z98gH8#USb8Vd$;-ig}zU!eV<NCM%_QJeGT!AOKZ-s{?ZQ;>??`SgTrY
z_B)>_&<<n*v1sm6sC*)~tX7qov6-Z~nt<DHD|<#*Jgb~eY{;vij{c>*3(!*@1i4;o
zm0SSv;H)DYrBBy7OFA~Hg5u@f*sVZACd#SJXpO34+c$Osto1#neDw5Dj9}n(fhU~J
z=jsrDvIckGA`}!S`Bc&Y?1$OcZi&j_WgpzcV?YlZ;)_qcz(Y#gzCla1gAUnY(IBL6
zxO-W5cxpKcjpD9mefEwZu?8*ecZr9{)~eT@N%GhC*VlHT4Tgr%!rICD%<ZWnxyw9C
z)-}}7zgPeXlFoOxiYBqy+3|LL<y`oT%5U=35;&Z!3dSD$9&hMn6}50adi7qoRdVGW
z&GQ6yb4*`<!~j!pNrE4DANTjY$Tue>-1B|pSm|PsAhfxRMaPbh6Q4kL)oJTn(&55y
zG~JitE)(3pG?}81@cm6`!>j^pIu^s_RXlQQaHr9JZ2&Xv$dpk*-yY+P`UD_Z?p@5g
zEFCsdy5@KBq<?McmZzhp@8!?s-a2hsGL*X6dqm4yCl13XQoKsY57v@kLhpBcz;$7V
zQ{?W{k6KL3lkJy?dmJgdKu(LooS8B>KCdFUgNK<v<M;dO;ODw!d<DhC+r*mZAuXt+
z!DDPmI<&16bVzU#VhWq9>CI=hXLq@*ieYc+J;#uc#Xgto)o9KWF;m^v!%PCDelljJ
z9$~b$6b~$aMDnf)xVlX}lXbPkRsFD@v$4)>#RrR#kKY#SIv$3l4<kVh*uO5GO+=|w
z9Fq{%?I9sIeL!{&4fwXBda0k3lFvjn5PleSGU$niB}97@XH&p~Pg$pS+@wyGfEFIb
zy=q=MvCI3O>(zf6`u$slY4qx0qHxZSIUY}OFg|l$e{;DZKpf>Qyca4hB?a^8sb@9l
zuq*c#hK0GWMXQ56Hvf$8DS%B6^S1^@ns1Q3vs!EG@&V96hIA9T7=>HeJB#@7z258q
zkn8~eC1xn{1rU|9(en;`1n_oc^%DCXcDCX^J5_c~1lc~2w<4jq2&CLF$e>W21^Uuc
zmqsYb3n@eq*eR<V$k9sy_|EQ<<kVFClQ7R~kuychxWICtU>ZEz;|Z=m;<_JMq=-Os
z^75Xg8t2Q5YwGC80?%|B_&F;!eZ0K5h^<)i9!LL$IuT?8m*&FG9it~|mjBo{@anCk
zWbD*MSsC)ruK+%Pb5>K&(+h3*fS<(h1o@~`Wp10B^ENtK71)m6EW2*mc$=nKYgTOH
zEy?hT-lPUuH`?qkzWt~Olyq-(1v5@M(fhri&&Z~beTjrIwWN}g7(e76AIokGBR?Va
zsBoZV+<EOWPexzP5DtcW(NT%2&)E&g)ITP&=!<2h{wl;3NjT1ej^Soc)86c)#3%X)
zv1y-s`^$gRcTaQ|$(^Vi=)TNbCg_=NjFYpx)<j(~9W2G7f~3zL#{u@e0#h9ehc?Gj
z(wssbFaEZMmY!B2hSBFB6)pN>xu!aWj<<?T3AOPND(GoOyCkjrrfnkeJH_^{qB-v}
z>f&h2L-Xy&gcVTgWlGhkEE}aWYOQDL3RV?te7sxz#+B4nWohJ_WgB&MUYx@m9&4Q|
z&HHuSIS5L;x6P$JH>-X7o}9pNhxHxr%Gp}yNN^AyuRk^OUYq4=Tg!s~eUtM5#Xmwi
zc>iXBtAXcnUu}b;dOHHuOJ%Q@9TGk07n-EYuk-RpJvmD4ncdub5U$bw^BC%H!)vb(
z&)y2@V|*fgvP<YVOCy2@B3vQi(S#rwXDF71J3BPLm|bbkxMQ~3G8tlj9SX($8Tr&V
zj@H|jsFkYueEw>BS#3?Le7v<)*aZwEw?Ob^`k+Evysg!{_Q|{3b5Bu?IujqZaT7C5
ztC70YQ4Jn*J##JF6@5Obz>tveHxOQQkFr!d{>jnN&BQnKd%3xLB^-P6m9B;PBP>H-
zt6wyO1Q62e894x+!6YOkf6NN)!p6ZFiB{L0TKobgQ_-h29t4C-yJ_{fT54)il9Ju6
zmA}Feu52Fvv7X5>J`F<kzmRr`YcPHM_%SG1lF+$$!(dO&!UeIov6<1*4#^l14=06{
z9nx+gF*df|JhSMUP`kRfSA<Q>ZRahQ^iye|&#=l|`lb48UKy8d62^pqeq=|@`Ft!4
z+AZ-r^dZOVfTux$c5r2+A}#?3-?^#wJA}tu*h)$<p$~AlbXxHocO_Kh`iSHcnGa;L
zZsv`uR=B9?smD<u{wKL<r#!McyY#a7cpB;3qnc!|D_E=8cD7AWn|C<a9b}!+_nfbY
zF>Tib47+s2+BX*WsoGvR67%_o-k#vC5os<=D#+$lmpW!NaWu<0$kjo8$0#mToZb<u
zet!A$w6gACo)o8lEX45j^Bfr^D(&j{NNCgZ+^W2#W{%*_ky^@asbh?4rC11+ISm%k
zLb}=v_jY^5DRvSXuR6Q%qOobqXGOvi^7p~>>gfA5G`Uq?(B{*z%jO@ue6zX3-YF%_
zZP%`{2FL119N%|UcUIe^Ik8{!JC*MaN4@L~37IpxnQH!we|c3hbUXWBWD|eeK?NUy
zX87cT=a}`iwMY|DUS(pMnsGIxZV|&HBeE{=kGBX&NsL&&L5ZHD$;-<J1_wuZx1XFm
zp^>N<zq_s;*91s^**j1pWI*pzO1Z~c=9t*n#zZA@c2B`goq`unI;7HP@nG6?VE)?l
zZAq<dF-wk6j3jJQjN9WH#*24n%RfcJ`@z7q)g^v-AHY~&&d0S}+?+31TFpmbP*G9g
zy-aD|1&M~Qdiwe(IE_p&gk8w6u(6GU42ksXqhBUJM`^{=R!05ID1)&0=k)=RG6k!$
zzOJq;WiW8SP=DR{2pKt=yvX_dO&&eVU1EMI&ED>l=1Y^uHy!TiO*o9c78d;-sz=&%
z1f%Sn*22U@7YEH~0WYV<(G`t1N<Q2IW!{%Ip%llJkUQ)JdsGp_rlTJ7yp)nsXNDUm
z;jQ?X9LI+|?%d*al(hDHH%=r|UI?edTwbRKLvBJ#Z%Kt!l$7#L2{EHf2RcjhsQp9T
z4ojdi(_gfVn2w0;kS<OM<)L>%zp#03^r9T!8$>4F(C@Vr--+eLyma3|BWpkMN9cQ%
zOiRt0V?2j+2Kgvz9<bc;ntotN@4y);p4xTcAjDpACtvy~BR@4H_E)bI`7Rcc>CR^N
z>uVjHtKG&t9@4WFK9`qRdz11P@eW$ENr~CIU4`aGJ6VpLg+1L9YO$+34A(FFGprvy
zwo-wikj+BlpM9wH(yxj6&v(ziEuZhsRBxTsPaBxB-5I{Ow0L1NHYm?N-=QSb!e(%Z
zA)z15@<qXsIwb4?af$_n%-wAdp`pGTWN%yxp<*N_=C1P7R-HgV&RRcP)YCy9{2F<Q
zpX<X<jjbX!lTjn|z$=!Xfr&XcA5JSEtjznw!o@YUY=nh{r35oAMOXi$<;;!#kcp}B
z7_a?zLV-954_ho5!qab${LYDAch8KoyZ!<$=V73<vK&0{!?*ad?CjH8PGz;}lQP)W
zCRVdQ9S^$<2^_vjX|Fk0YI8v>i;3Cq7?b6nh<Sw}jG7#@y0t~?x#?ZH6lFwDDe9~d
zBk)vBdJ%bvlz_y?XTZE>!w<XgI;FECOG`xd=hwT6@#uA(RE+X7(71in$Ih+{K~IZN
zvt(vcQQhX*E^TTG4IFve+gXZLtbDDL98l6eXTS92rY)ELxaOiTv2l@9!i>Jw|6DOX
z;rfQ0t@!<{FdkY^QH6PbDep!GCZ=$^zg7FXun2ybdR%xKb}jtt+>5ODv`53;Y&D22
zhePvy{v<C)DZ$%9W?71_H0KfKKT1CC?ibnMc6RAT!?Zg!e800Sv*b9CKD?@u*VAKe
zg&*q0jib7P5IXnhJ$k$M>Fa&}4)a2LU2EDzZ5L5Zf+Ah(ua@hsUw#P1YfSZxSAAxv
z#r<CgoSh-u#`^wyDpKTE4@8x%t*w<*ejj)?(`!#5i#@MVUS7|CBqj>O(4PEaWdMwM
zdi^u~Jj0rWNXEad67!#S%z}KosnmK}{PLH0G_Xh@i9v)(F9~`FjR1^kZc&jM@Ag{l
zaAQG1u){&sE@oQA8u=f`PB~PtMxC=XP8uMlhd)2JhpKRl_G{}gnkIZttrQp;H0FM_
zxXP1ULQP$PwJ>Cof7;4mXm>5x&iMv;soqqbxup^9#sZAkH5;5VrwK_vi3neh+L}|6
zl7=jvfn!V>gR*@DBr+y`ey(V2X=zDCkYXC8?6VTf;?h~F+t>=zvda=`WRt5{N+2h*
zYsKHIfjAbRDi#!)%HIBr)uvH-0{KPx^Wpe<1O@;4G)E=9fF4d9?m#$KsgcOaF7K+u
z7~5Red{I)x@^`;!{BLMGTB+DKWkNXo>I|D1vC9=AN(upcZ=Rv3VeJ$-{unAL>NsI5
zASo*yyF=O`fa;Se1;@DM50B<`dav%Sj+j;uu(<T_*}b1K_|WO^L)t1x9{n--#qMLW
z_V206G<(JJYqhnZb7s3RpY+?ClvO*pi?c=r_C0<V_ROM-?<rbclcuA`%aQ)0ZsI?G
z%MytY`Pd5&rSbV2{$3njUBNtG_7M&?5#dX!|Mqm@q5}Fj?(RvIy*=qfjRdVMcd7+(
zk#GOf+?uoD>nhFpxL{=o60Xm$P^xxc@dOu^V{nQ2b=AeC`6b%rAKQ^`nG+Dgg0lI>
zJ`>v~?x<)fy#_PkRp?t?H|L^_jl(~5N&lQ9{Y%*M*NrO00NrR7F3n)Cb35PtbZkPD
zS|>3Q!GgNY9T-nMM$11Y&{7r@6l8P~xh5znojk=<)04nJ*p)CfZ*_<pg?}gif|HgV
z(+2NUCmi)`F5(27TO*gJJH8TXj&1#~YtlAFM8~Ct_5d+F^KBNziY@V<MJmOE@KX@3
z0XkF>(BbFZeSIN*PYG#ZAHU_#ylbfpY&D4;b)VTh32(IFT_`cq{53DXx?PBK!c|u@
zv}t;fg4nzu>F9P8ueuKSa9Br(<j>8(6vysrPhCR1vDDydq?1@+a*+Uv!KicTU*P|C
zZ>N|TXMvD>><sz}L>V7;-eu@{I14dw^b5x1Wbhm$Q2IKKJJ8b8<tsc6Nlm?7z9gdX
z{SxE&GsXj0{ZOJPG){ld+Un)3=s*3LFWczi8>G-xJ-j`})a`D%QxGoTp-uet67+Qf
ziIE;lEg30y%vXq?8>IbO#M?%nw?qFD_L1<%`RM1>r^L1?!#2uZrpoJ<VdgG+cVwsW
zcL>g>-_hLduDqQF$!U|WFXcxW-dz9AV_nhk>1FDbQr&UUy@|4V0DF|<{2I)7#;S&t
z527u+s5dELeqfIBt;oaV5#5KfvjRmOBt8Q_g@OEJN-f03k&H-7$Z7Mb4*L8>@^-=L
zvOkxU#D@T6M8@lY3OV0JF#o(=QN=s^g=Qk~p1G<RDqJr02HUO0j!#<g8Rx3a5wTNg
zL4F}UR%(>}0asZH;q?le&6g+Y!C!u?6HP;Z$mzFW*1fH=V9GSKTOJEDY?7&Y_Q9=M
zbA8XffqFT~8QT&2W|A;Z<7vO2H4|@2mHge&N4AByU}+gnF@7tI)0>6kRUTtZuHQR4
zYIB$E3Ih{FU*Uv)D!K`JCgKge33qtS5U6PvWHGmV$Cl8m5}S*$#|{5mVew~ohWpe0
zwFX}H|GAaQz`3~kht}TOHf=92zjHYm>TH)Cd&O!pDq&4t%LBATDA}>dGzC%;5*Z+I
zd@e0!FM;W37oO0#aQvOk$)@5K#D4Mn!ypj{F?MV(R;5~l&Zn(yz;M6`@%^k2^t2V1
zCK_a@<85`1{V~Jomwq5zvbgy6!pP`bY;5f4<VPhD_u5%zuQmBOITV4bNP+~NT-RbR
zC0-5nbPT(x$*KIre7c@7H&bTlj5`48+VwJUmu@C-t-wmG61d+>O4dT7wttA4_;$J7
zUL3Gm%nAYp8w|^1r?5VQ6aAe?%|4AJQe%FCX;^1yX3#+#7be~|Rg-HS#B0uc+9Zxs
zkx7#|$7sDfOu$0v+<w8GWozE`qr}H|uotiMa&n#tq*)uS=X{ON&PYfF&6j+**M_>B
zl+!aa>~Cg2I)C*uJ-q%I$EFrYwX!U1+#TVW8?vO!X*$lbU2DDmBdo#b`sEzk*(l+K
z-3@tGe`trh)oquzTPc%H-%he?oawu0W<)drJhug<asy}4lWcVPZFo&11ua!MpjXwe
zGPgxGC)7dG_jA>`D%kb2Hs1qW`>7IYzDDEP-_=bm`YetGDJ4k98Ii>B4nF%AD&|@=
ztrz>wSCpr`wi8U4w9~>rH?W7LD{f@=#n8{YFW7_yD$}u;B^UU`-7PPRwX+=u(1qcD
zr(@m-{R|jvmw5ccFV&gFvFJs!$4WO}12LBi!r-Twc^o-d>qBi$99q-Y0#U{opnK_g
zM=Yk}@$Ee>&kAW^trFD-wRPdEmHc_EJNBPyJRh{yu)N-i9A`G(VXfU(`kE2!(wxP*
zj+(A*+8!wCMC<0ngNEl3!E{&xxk$HZ6qIV8Tl50oA%+l}td;+OU(7zb6<vw*jwW|m
z1p#Zn<hnX-xGGoNl?e^Gey>2}MXSAOk$tct9V~p(K!oPw=>n!*A0`dI9r2`ek(RMm
zbgZ=hfyr+^3FC>`mDo%=>V1m2Qw+B~l~xhST2HgA3bZCQxr?s<JVE@sboa!O71vJ;
z4j=e6c)5kQ!G_Kt&xyuPWlzE0w=}Gv1q<r%!T9qR23_0Ohy>Q`H<%FXdyD)u0G>>_
zFq-jsEhjv2F}x&+JO24DkdR*}u)jiB_@_cbyd;mu<?QbJ^>)_~->lp1{AOx$^058d
zj|k3AHC<e!B{NNYUS;JdnbfF}SlD0VesX!<=G(1=L;{@*V?-+(r;h0lSY{?xg<-FL
zq{p;({k{tzb=LVIpaw>#I`{dSt4*7ptIr5(C}b9%)i@mvEY~@tOGYB}-hf&6jD^yJ
z+7EqlxJ4H|boNiZr@1N&s4qI4X!oo@Ha&6sZP?&Sm>v~@K;r7GCgSS=rZ57@Obn_g
zB7AhF3Zc`lDlh8l{2r^VtwmS7Z85E|T8fTfNO%z+2gKMTrOIcRgqpJHh^k-m%dO^3
z+sy}GLy)rNsUwwFv8D$twSJ-~#@8W8@6r2WvF~SNWg@Y~H{rq2q^lI8o)?+ZO_O4l
zl<QFoX#`|obqldNz79Z=FXUjdi6U$lFseS7dn~NtM1FCCOZV7SD)A8A9F4*GlZ)<g
zFy>~eZfv<!z{OK{8-X7Sr=RWUF>%WD9rtS4iz}3RqSBQ-&NSkZgzNR1<+w>*M4v`w
zLPiQQw#$T<uz%Ov<Po8{U&`YiJzt7hQh}WH#0}-tReZ8}dYxIN&I~12!~UQ&s~U!K
z7@JP3Dar?n1j1r5F)F-^*`eJZ8WlM|4WiS1ClU^S_ncxj{c<U@ozUTcqJ1UgGoFni
zVcsqOjZ4#n(tONKi%lAC8i=}Ji&C{u!Gp$Ovx8wuLP<aWO|Vm!`3aUe(AM_h$sw4t
zQc;M9Dz&WhG4rytBKE$2K}kQ^5HII`)adn6i3Rpkm^Iew07Xe<lZ{!|o{iNa+e)}L
zLOrz3tG~&D&9r!8Uy|kR8!1`}fkQvcXLV=6UsE&K#u5zwlYaTHYtA3F{9D148DMLB
zvR?-D#Q3a>|I*Z^>^%EK&P2uc5ccW(*vBBD9_qxUWNb{cwz>*Uu&Ni11G$c~>u3Vc
z{npKP8bw&Kp3lUSAv~eN*V5|Y4;RhGI8%03yyenD7X4`Tf}WZ>+?Mz5TDG;Zt{8J(
z$1Z$+secv@2)?NK`M<ik^HDP}#6QCr$xs;5o;g-Up!(6`<EkJLK)g2>FN}zmWK^Ch
zSb)SI9_|$t8!Im!mPA_fylP^Uqbg9XF&`!VdP{yEj8)ftJ9;j0e$r=AS&Zn!SM%<9
zf^eLkgpHNW#eM1ihvCAjIMnSbYbr^$5zwCJa;_V+Tvy@&(9Tkurq&hL+$triSzh&H
z<4#}dL9tz&V}tqOp9U)7u9`FLX7lrX;@sT8!V(1S*@{rKms}B8^r}yFeLioyox`~Y
zRmIv8o{US(2*Ly@7pOGBK3xaxJJJwF-~GeJTwTanAR2{YA`~q-e-*kY9ollsylbuF
z{8%-iKci>lO>3#rL5Wk*`nq+jpccA9`_(l0k<+3$d=I)aFZgHL#F$r}4)O$WVcn7$
zjDA4+c96e00zO>Ey1iNYI7r|%XT^|j`)~VOFT7k5>&;N(8qr48S3=|g20fz0f7aof
zqVOgrCNL<y2tW5w75A(fNlv!}{|jRCN+-^Bns>rKkscB}OF+Pv-r91GN@{8>{jgC<
z#292cvCqe3N=-|fj*5R4)ae}CG!;oCWt|e@nqU-cMV;WRXq@id8lSZT-)Y6c`)wcA
zHy;qq^PLbHRwc7Gl?&^<kg&R<>*J&)?u#W}Zn<t}=-VQj0Y5sV>ehk}=Q~n_CcQnr
zK8yS8Q#Pt!YvzCaweS9YyZ+~g__KfD)i3esv2Wtxn>D_FYx7scefL4@&$^c!)*rAB
z5_|4`UGiMYI=?>Vhzts1oLvJ~0kczHUcpXstGTv^vbram&U5jzU-AE^0?iN(blyps
znB>bt%EVN1A6=ct7n&AWb$v-)-7=o{5@2Bo0_3a7NvQU~{lnR0y>E>fCrQmi{(epS
z#D?VLTCXT7N&@ykMByudh>=Ys<ERe!O8+K3$=2`x`<TFHGY&sH$7cjUF*ceo5<TEf
z{8?X9GZ=tQ{+`IQw?L;lNus9F_T9h#_6ZX|H8&G;adEMk;>-0jvYKr|%gRTj--A&&
zHR)0S_tOr0yU|#r9N&*Dzl-`l-@oW!G-Pvup?<i?x%l6!r4)3ydPgc{FzH&|-zU?e
zeJ2bPc<r?KP4BiY9K9y)&o|tU`;atP&|A>^A1CHZuOb-|R#wsLzGX&qBTE|u1bYtp
zkFWIAn`E30{`U7bhvC!G4RXLp<-LJ{!S~dvs&PRDqrWskjB?-^>s-Sv?y>xRloLY*
z@(l5j(5~hEz6)A<8!Qc_e|*1baLiW|_2;{p4*cF^dSIEK>qPXIYhW+#Q+0J%UDNQe
z5*zX2LH;@*c#rb_>7D!M`w{#|{v|qEc5ThjM$6gRdHZa4ch7h<M{#v;E%WP}o)?)J
zU;N|a&6byzNcWMPv`qT#|G4(b$=)x;%dNG(e_x7UA87LrkJzrIR~lG*{`E%w`C|7g
z!D(|A>D31h4=-+3i%+z<H8mRDM?f(2_YZ5w4JRon85JLIP{PDSN=CrrQ1F>9Rfs%2
z(m+@tC!?#28XJ@L<!^A|5&Q;3lC6vv6~|fsv*;y%W@T-!`fYD>GiO~|T3RC4*4la~
z>RaxbAs&uM<-_~$#Yh=0RbL<TIaIKJ*<O=Mn4wkYMAU>93wu+n#k`Ir=`RO^Ak~Y-
zosExVlz`=;r8Og0qc#8Re#L*kycbHlXYrE#ef|I60{s4D%E$PHDMz=`8N$M20dl61
zfZ>IZP|S(s=CCtaxIyLJENlRLB%?=gNl8{xcm`zef1RIacXdh7GSZ}0nocM+21I@T
zV-^2#+?5b{9R(s!S6Gvy;xfZ@5DWdI#la6GB@&}#YxQbn@86!%zkS(%{mUjMJlrEV
ztx7a(j4EVe#}9A}l#9#DQaHMt<DxP-goAT^A(V14f~V8M{r_5-g=AI$x_xQhhqncp
z&GV{Zx&PcLLFjM&TN%$_#}0pcD1%CH`Rc`Abt+TKHMz0R|ILPE)C|A9vx9{8f+EZy
z(Mo2RAIgZlaW5D#;(^=W-$#{GQ&uM5+1>qlXL$#TuYb%<HbOr&HuA~FyqtfrOQst+
zXJ*zl)h(GgD;t2!MBqw#b90VR8O-v}#V2@-^!~#KC0z?5aJ6M?W;y>ySC;wC6Z`p-
z|NX!y2a6!P)0L6G1nWS5pnGUYaUG3-Qv#51qA!5=DYCga`RB&~{M?x;i)iOtf1rUo
z7D@RA5i7#F6b^27nB%6UVf>1+P4o<eT0d39*;rYTEh;M7&B%DR^w+C<tz#(ge~e#<
zbp6Lufmn4JG(81h#6RBa|M^Az<Nw&bgag*x-u|vG1@(iaRL568yZhC8xxkV6{epCm
zk8|?va#R$is!Tv2OSZfsunxK^*~tV85%cT+`z8v$tO|;U4%BAS)4VwU>qTFBsXhC3
zcBUx)Y39wFH@Pkr)T}>M{(8|xP!qqjHZ!9K9E0ak#(LE`Rye6)|6xAej{|f~NlZt)
zOn-YlZcZ=ooS!y5(&hi#e~tOX1$TOSTBhMDN`waa76mR5oLpS7_<p_M8!BP;B3ZIw
z2ec=yJa)IdkPuX`GK9Y32Ss#*5mWV=nwS^?@vxdMIvS8#3MxYu+45vLIXntYcET+I
zD~>PuU#t4BB~u^?Ho5VPZiD~*>)}L%_xACYpnEYY2d*ore5%K&mFoCb;B50c7JlIE
zX09aaFXaq`6;*M^fBpG?K2|Sw3b2c@|LBYS-!Eju|4^Q(c-@hECcQ$1_*v}_A1iUN
zDl|nOkO_&s40u>&G4nbW7ncDqi0A+Qv1xDM7Mt;A9%%XJUCK@qPIuW)&e@quRZY!d
zny<<~q}Km5a}Z@Cj-G-^AH#58(@?4Z@!mH<?Gh%`pr_F&v+m1J2)Pm&j+1~z%U(e~
zRv=nkVka!&i?iwV2+L$x)|0?=ZuG{(8-XfiLwngE|BzqDY2A<B8Qx{$pDQ}6+6Q$m
zhw4Or57u|@8kiH)y~4*(=6MVYx)dAv{)?oCmX@M{k<*?ZZs_4WD`y^${ka2GeL3ls
z+P-8)#))=Nd}VoMs&ykd&G14zZz7@LOu{nr<@G@$_LY4{&+*~K1TNQ6QjDNFmDSt3
zhc>phSkLPe-L3_(#9dqv3_onQOCBB`nmEhJJx%1cmrBCH#Linw0KbA1bEK%~=w$c3
z?R8W%6c%*Mx|+I(<l<tZL0R_Jo$7*M-|yyEGKXgW|HGpOJATfWm$ntv)!CpAnh1zz
zo8<%i+3oG3EQN7;z$&V|)r!(N1dPg(VE?nYeLz^!2{MwXSy`iOY|6HPOM3GY56RKt
zVd_-*$KJ|f&B{RLb|%QhWl6vC6mAjP&X+|+uu?Xu;j`qE<$xsjh2Eini@CY^TG`Id
z&eqA+$VmsjWe$fKcaH~mE4L0@dKb%wfNrH76VqvsFEm8=#cVe*C#&E~o-~Tg_yQKn
z>+|3gI{%XhEk{QOg~z_B{6ws-qIz#UD4Qn*6*xUxp?Kt%Y*b5Z&R3muIeA%MUF^@(
zQG8P#Z<V9EYEn?|5-v0S`25^-ZC?}{6AnK619}W!15+*MG>TU=jy<-}(r<pnQ2}~|
zCL(YbEa*)YVb$ey=G2)L=y+e)jq8m4*w;zVbFEIgYpP{F#nKmQUrhznq<c`FcRJ7?
zN%^A@1I@OT*hJs%HN?^+931|?z#hXs*$#+dIdye`+P)-`@n`#U(z`M_6s^vbRvwUy
ztSlt}-W=@)S?h9quBT}k887m1_I-gTk`>U2AK|otJp25)NF}QEzc$)`-8ND_-yhiz
zN2Ar{?j5W>*Z?e@3=NypPqiP(gM+&^-q%j7?{9GC7z8${oSK>%<3t{-{9NViFUyOg
zijRFGDRo4F1~PJ>)ejXvpcrjO=S$+!WeE`~5jdQ^&SX*mcoE?3$d=$!9o-bhgSZ1W
zR+g8+nh`8rF8wu0B&Br~%l!@*=a$8<>h$*VefM6nES~*%zq2UgEABWHZWvbChUE}U
z;d|i{QJt?`j$=CVuqgb4WgyQVN5u4(2k=v1>lfaOto4mj&B2(<e6Q(1<!04mq$;DK
z_J*O|pG!qYOML3bhFrzOGggg_PgaQ}XVcZq=H1X)a7ck$@H)J=xA!O)x)jzs01vmp
z#>k7|Y=iHo^8y<0!@FSNF2DiN5id^S19udwF3`=>lKw2&ZKBox*VW-)htqW2y&V<W
zc}HLEz>O%P>H3*h_YpkiA*3jXTs#zr$s6&FrjFh<@oV-MHJ-zQa1);Q_V#8-Q{9TA
zXLo=y!F6afS3N+X3@ZZv_9Gq@r4>IC@2~HVfITD`(aMX{=~v42V`uq80WU;UJkgEi
ztG0_-Ti4invIEw{+bcSIE>eSH3Va^K(*%~p`0vvqoz%q{Ki@_cg+68FRm0(~Eh&g_
zAQUiH(4*2#AKO^8T`~GVWG*QeX^RzYn`8TE({1<#Tr)AR)I*}83MN&YuO*U+HRu?e
z^6;-aee+rFOsDXq&=0(1Wv!M(xxYrsqq!ZLD%V@{{CO-J!95gJQjAbz-P|}R##9y)
z^NriMUvL}A-vO@+DeG~ETpBw&J7v&JjWs#aj&P(6<G;SSzYc>6tb3U+@K^m9Ae*&*
z3EaBF!<oJG6=p7~4i4;qCL{ynZBp>#-ACSs$!3o<X^}m7_$*1}MHBxEgxl=T@ZhkM
zfB5iW*(qpx7=gQq?Cw-$ylk9ZsT&%CFAC%H*FccCH!bLNz7hSYyqpCU)Z9g>b#-wd
z6cUNsdKp%i1t70d`lKj+sxQF4s779L+lAx<?Rq|`2Pwl8(zkj2w6U_zoS!^`#b#@P
z?zU=r-YKO>{B3vLoQ~y4!^%_XlzNC(u!@%Y0zJseg0wZ_8gIN3X{n}P_5AZQrl`Wt
z&d!eBUR+$5%(u<y^x<G(<vQOlra>ae=!l+YVJ14cUu5&^>wKLz4h~QE<{N_^w`fu)
zeEi2<<*gW8hac4J%s{M$7ZZHHiJ^aZpfjN;4afcU*qRjuCSXPiL6al&e;};N!_D3E
zn3yYqB+Sj-E@7jXub?93!JRFK6e9&Wc_SZvu1EnXKtljAM!!vOMNb@h=vjm`Wp63}
z?QaZPIu^TzvYr>b64@_aI__(qc5r$SqyVr0{=UgO;g8KPk%^qKxUT%ZB<ACcMd2u`
z>SF`*zJ&8<t(>N+*Fpw1C&5Ibx_pcz)%$$i9rNK*Bg)izC*AVg>S-kws{&TfYQ;~;
zCsH)-ZLbj{NKuUkj<mhJ7G?Y^a1$xdkG9z2w0#V^hj?Q0q>pl0$$f{b-Q-n&Tz(1b
zzeQi2a7>uiu~xKu8t?))>rEjkEoW6wpghrVR0aP`VLWO`Oyego+0Xve#hI6zmvOS{
zQ(^l<Ns6bY{1n430zK_fgR#s21n)VzX!IDH-KGk=d*j+C=+79(PtUP2gh}VQ6+^IF
z@){*oR1K#1aO48Z88=0Sy!cl)_Q^JS>1eXusaTBWmR3}hQc>iy39BoeC7dWvLbCW%
zZ!s|zMWWw@K-ez7S-J3r>%3*YW+T5s5whdxp<zs4ILnS1O<xRbY3!Pt652nnH^1C*
zxE!2cT{e<O9ATzOPZ5Q^4#^Z!Y*C@8A>xe|Gd;^xC<?F7aDd~*A$NfxIjX0vX`y{d
zEG)zf4Bf(&Yth}0dZQsscm85%9wTcZc{YK-C~cBTxQvY6p-RJZIF{g2jF;&L_AEI%
z@>SVyqN5A6lhL{00j9zfOj7K}=`0sNrYZ1NMSN?JUHA9*<e)N37b3sM86=G>_BLtq
z(3iABFvhuZ^@6Qm5f1cQMo5#w%0<%Zl%wAI!hid@N0V(-jZ2wBj5n9K?0rMsT#?{0
z7f(MR-tMO;-$IiwQJ~6cc5A&z9hX!NV`H_K6L;nDMwx$WJ@>o5J|cfHnlb4SY~-;z
zY_c*+^C&?BZ$N1-O33=iSspq8y4j_TWJVelPM**SF%!9mH)KU)<k|KDf-D@Ng-(e&
z%qfVcPY<aI>NCou8rW@(8=aVp%#znTOr_q~E};E#TjZ0L99rfRm9!N{Qz$#Cc||(*
zcCM$=U#fvWYLtWZQ-wQ9`wr?s^7^xyV03NQ&!&^=4Ih(!(qJA8y{T}~V{UOCS2}XA
z&pLD`qhTNX)_Tpmc4Zz{<ME68({pXf4%hZ8#0a0n#1?Kvzw<{8>VLLmDmdUw#|vK7
z|1n-O<GQ!=4)Q}r$Hsu)Jw7+yisIz#h>U~7@vvHfa194jLDIU-)4w8Y?3nhiJ<!e#
z&hxHM0Q2DY0NDYkmA$IS!2P(2Y|h(x_6L(xdRkhB(-MGQ!avkf20#!DkUSCL?~j<7
znW^Yfx7Amj6+9Bfu3-SG>MbCzwgV~fS$2vu-+P+DbX$ewR)gR9C_{5z17W%8*DtG<
zbU!6!Wy8CUOQW5o2q+<;Y*Q1z-SuyzF>8gH4o(4=6QfEa0BSV3b^D;{;{J&T<d(3I
zlZ%uIsO!J4?>QZc+F1ntiD%2{D&BO)YHDiAbyoO7Z*MM9m)&<UN!{c>WZA>}TE*Jh
zjm|ArU~r&vz4FR>_Nks)Nmdq>&F(lW*TCM-p=ISx=vE{<)`Fsf;{sVoXFnA+>iQ;#
z@)SDxqt8P-5UDa6y8HM^ohUMLWRv@R+H=L3Vj5>E(g(ZlZN00TSVn{YW~aq(ewCvv
zS2s1OI2u*IHXX%GK$>+DKtOUu<$jd_RkVm0(|sjEz1mtkoyB~xxNoXtaj<WoDx@!{
zB44*u$<#g8JMq?|IY47uz?j?o>J~%uc)uL@)eqmRXg{B0R@`9E+iebm*2`?-i#d86
zmA~;?L^W8Uxh_}~-SSysC*77}GWwl0AVC`Cx*7N?@A;c8d~!yy0L+hQ2hto(cRosH
z(FR|>;q&oak>M(-1CW>Fh~G&XC=bHbpaJZB-tL)iQJo>nBzYrQ`R&}r#4HNfHw^Hi
z)9?TTBJ>MEG1MoqP!qKXy1>_TjYbovM8_J70@JYQ5AY~^e-plP($Ub1+VMR`#P=;q
zs#>LYO3S+@|LhPpV;)ZCm=DOWMp5pn=L<B@QvDVh4sC24N+t@tsawOSbs;jP6Zs38
zjJ^^GsO{adD+oi;?*uw>sV*eFwzJwJPkMSnI>sV;1w{2$;KQRbOFG|PY)0cKHB3gb
zpF)l@r4i4*w0>7tw_rwZeHU`m2AA8A7ngS3XngcZqmsvIxwchz=v+I4hp8#0+jjZl
z_ph&XvR@x6;_8x5gyIP%n@@@e>~p>wMtIENF8A~4IIPuq*~S04`CYe6oPb9O<}=#4
z@7Tg?=N=0dYB4B>+d&gDWO^JpnL)hEwQ*bp9PV`<Xg3wo=PPVJ2!))+-B(`Upm4Os
zl6#|0iTK}ezNzCvkfTlIXV9D>$cG9_zQ48R6H<O{hu^H)7FD#NYm1|J9on^QmRjDX
zn2`puePcwQxG2OyjXV&ac4^Qh;q?QX6RMK!83dgX1-Vj`>yMuAA2%2cAHl}oue5Y^
zliV~6c!_-e(ar-!7!+qhWLA1q4F4y_)A?-J>of{LQhg1%)iG3OBE7xm5P;IA2VO%`
ze`(79`8G(R{lWkO(nasV<I|VDOy9ckK?|BF14s8|<C{=FJ@?a0vu0puygYBdOFz5W
zOb_cC8xy-Nt+86tF{zCZ(ii|_>d(Of89lwdz7)55sD65{CFTL_@LOwZYgFngI>0d#
z19N?0XG)nb6$;M0WSc)4m8<Jb2&V?T$aBCOV+zmwf(J^6lTl@PWTE6@7h5cE_7nH*
z+-!VIIbGMi%3)O*Yh;zLPg93Lpq)IZ>C^&8SB?h+#6i3g><}PFK7gzzUskipm-f1>
z^b8E?05~5^e?z7}NHT{ixNCiPdt-AQ>fpXuTX%PR1;#`3Z|^2YT73LBfn3=5OCxf{
z=hz|#cUE*15aVN!_%^OCG<1A_@|B39h`5$OarH6O%6{wy9qAz-zbP>B$hlvgQ6M5B
z0<|aBK_=qb#^+K)j}6k4h0j_V0-y$9^3c(XOOgR1lCJ)#MD6-c$x=cOb4$j1mB^d0
zy12k+v=Y;d9wB;kkNwUVlU4~iyx(ODyjKf0vS{e&*-e-=T1>o4x2UQsZp3oV&fRS1
zFSE6wI!Gcnbe?RF&nbHu4`zyn%-RR|x@2Jiw`Byb3{rf8Yg|;_Q&g~77|GChOYE+W
zeUZMAiVbD>(X$gW!sMiM3AbNL=7#rjUelKzLV>3Qk8~Q`HpkICN#o0}=)3#Ul*P{?
zBI6N#&xvV!{Riq|k(psZ)92Dp#)sCa@cd~CXQJ3W87JUhkqSGul0x@kRygJ5mErqd
z%82I~#8t%Xu|$l<7jwOa&Lvh^K9Iap_*atx+1o#0R^8tDxM#Ra8)AIE0rJ`eA*dq-
zE;Xc0$6>iP0-KPJ3^h3|qzB$H3U8k3lfZL9$O~V<tZsjgZ?$?2hGWYSG0uHod=db!
z-mueO7tvz;D@2cjZth9wt5z>`BwK(O*g6n{9(`()o{-6^J#aHs%g82Nt>wb$KC^O%
zDPV{Pd`^IULMif=^8UWx9lH{(%tf4lLn`dE^J3l2WgNclG#!g_Ih{(ZmW&ccZjk0A
zchugr_;NxXQa`B9^Nks48}k)u5pfMXCGv#0V+*?)!1lGR4QWS&M&;s~jD7kg=yR}Q
z;;Z-}94Z5*7LXDLVgd3iAyy<seE57vJ?6BQ4frcqOi4jm+*wu@3Y8=x&5L$cXcNPN
z&7k0u53KG%a`8M=x~@{((dwd3iHn!8_zkP2JP7(s2+q?8;fZ8NDq7jKQnrE5ErJZ3
zEw%wsq`FjAKc3(e8*3j+K=E21DqSV{(XCYOFhv)ORkRQtavwemb$K+Pi^lQUqlS`$
zg6*c$;dy@Q=<vDEa-h^Stu}o$YyvY$-L2UxKr?=kELRpf_BF{~$9LpKdxV6O9w!X}
zL39+Iwr0qPH<AeCphdzdWRKfJvw^)gGoE~&<*?~0x%S&&Uyvt>L2@f@+hxGc3thrz
zASd<B#StHaT*HKLJ5sd>1>484b#0w!>o|Abfn?7<T_(r>TYKG?AVLs$_)X6)2!pWn
zV_zsGo+&yv1WuRoz6<$%`;S%uO~P!{dnyZhV+`&6FJ@vAMI8~=_-n5t9o!6q0SgsL
zanb#Q<;xaTQxM`d3h3l6>#-jt@zsX<`eY&a$y7BMcvO(?EV)G5=?RqZ74?p>KJLyq
zJ<prwj2i_tga;TfN)UGHXatNmecae-cfcg}0zTT0L%#)L5qx(s(7e@xcxPO~5$xH9
zIx({LO|MAC(5hX7W1dq!06Zy1tLcoA&W1$;`YKVa03Hx%??C$NXQqh1j3r5W$S_(n
zo(ha?dZV~ek9e{TG^#|x!^6AqUhrDh>?gUOy>VF$7k{!H=Q^xf9F}E;jD(aL#27~%
z?{WA;>6BaPvb7MS^##C+dz<Pu{XUfeEj9DW5+N*?WtV%NetVw@K0tpVQoM-aj#-pG
z0&kA;9*SFNcW&BGAf-icIRDDynse#HR3a}QUyc&&y^oQ}&Um36$aFSWW(%u4-NhAe
zbUFRX7~_=O)8C&3Sh%Xe`K(V-Q8PbdP(fNO3EeN&zOm}JIyr|d-<VAl%>g|jCGwLe
zDs31{I(0JcmY-hMfYagKF2N;`FdMISp^s+E>s`!y{~CtKK0UNFG|Xg9bX&M@;CD^E
z@no?cFNjsLO8EATNqDGOWyZ!2DTe&P63H`uL|vCH3ZH`qHA#oh*-S9`KvHQ`WTb&b
zfSmF=ji{%TH%jVqe|A($<A5&b5iV8pL!8`q!T~$azVgYP+SiqIfnfx|K30ozE<azg
za!R#&a-Aoc8W6Jal0PiTrI?nI_hN(U9;{ILxe+qLyO}ibzRR!%x=u9zb}@L9W)=bK
zmA+~z#PVXO5n(BWR4KU5EEVFJkRAFN+A;mIqmAfRG4LsAjg01P!gT+1Y<`lPJQjw<
z&A!3q9^Z{N(QS*}c^T?^(~t5vbC;04%L{2-<f&;>qiv_;yT)%#=)#m4QcJ&cU%-$O
zug<EEDzdx=+oWd336{P)PGr*=I_U;K3hx$gB}HBMOwz<mMSX2jzK=*@g!Zv!h6+_=
z{GGP~`a9~3N;2*B_-4F1ZIM-ut}f^P<xjFX+ME|~sxpxN=|+<4O@EXuNz!S;R-vb9
z6coHnFxN1qJLQ^3x|9>w4bZbW%62EHE1&C_Xg2~JagEQ?q=NV4W@a*b&KQ)b^$?Aq
zs4j(xVWvX9kmZ}#CgPHl-j!iw9Xk|OP6ktx;B3At3ug{HUlIQiS3&w=$@{EzEOIq&
z=;^7HHw3L!;6-rtV%wc^9w5Mp=4{gT+2^u;a*~%UM#d2?P>z3D6c%4zCDA96a53t5
z*{s~uU|RJAqmcb&q?Z%2oVSFpVRVI6_kf9$SxtVU<1v;^Fz7fNbzjb<$@<1BN+7cw
z+?YjgHy~wKxiXG5`inGVa#qFe&9({$2*q=MEQKbwaP7wzBGR1i+7`$JO>|{f4@6Cn
z7LgkW>6<2D7>0tcdi7#_yKox{{q#<@rk@1f_koI}lVyv?mosGREtX{$1zpLS4~KDW
zu7hr*dF5YIN-_@+p(#!Dq8(D+D>U#?&`OiuXqP>7{m+Mj!*%kvWmJlOKI2tm>o-46
zL#>7-YUU5F+@haM6;^oV*!fvepE%g3;kJ6IT+JgC1^Up=k0jlC6k;mTxm&|r^}j$;
zi!#P{6>-xkI*)HICL-AW)a?G(xl<kG!^U?-ru)r0dw6M;VnNv5_(&Sh;W>!`#<3CX
z1QoU$a=7o%*MO9r6?j|U8+w02B;ym4fox=eT1hy7P!~``CnQUs;K{{1Jid=5n8@|L
z3nk=v4bX+Y_W^&|JH^dHkcWDp{Fd)hB=z(DKA`QLMhqv&Sqc2P{wKfM!XS<<2cv9&
z+MWB3I`hu(n@(OJQYKw%mAQAfr?1r^-*mOSr?SoM^~JEe{8l#K^7@nCt%c}tg*bX{
zik$3>k))|$wY;_5MgGhkMPr765vgFOt0Y~FMt=rkK(e~Z-wAUv7ik=pL!tcQfNB_N
zXCxZm)di^oP}48w*4u#-;>!9h;VdL13j7uBR(m?0H}-a0ncsR$L9Hw6w*r7ol$-|h
z0HC_MoQCne#du_5LO%4BN!0%9ItTjIC4#(oD#5@#h4BQgL89)31wDxQL5kO-l^;$I
zZDb+oL;!y%8Zt3lW4&UB%67NhxC!Fu&|5chhjB4?{5YZRl=4Y36WZw*BD6Xr*zKC=
z9)P?&#p?76N}7Wy_xfq*wki6KLXAGLRA6Xm#M<+#^?1v)q4dr#K-6a!DB@axwxd3o
zO03(P<5Qm#ftjSJ7%qiQ9Q)}F+;0MfBB6i{(q9bp^q9%zrea3>rz(o67&eRcHg`AY
z@r3CtSlmwA1pX!25hI@|wde*U)5*v=_*nyEDg>(vK`*PlI7tN<$YED{+i^e2i0<H@
zjDJoa^TvK}MyS)B9kySOHlB-x@vdfj7_MjbG>8CK&L_}GA(qzW$Xx2{vnIDz;P?-`
zoW|p>I+9(IsCi@V$j{7}#E*$vi~(6o;<g~6Y<CGP8`=8BJ;%SdE7r9Y9@*c?JjO*T
zL5Gp5arhEDn`RAKlbC<fJO2U<J-JBUNugWVN<dBC&^gy|=80rNs_9o$$Y3fROFkhp
ztQ)gGhLT?Y@a<)^0{%@41xU*j9_g&G_ewJRHFb}YuPg8fPW#de&Dv%|scvnzjkbRI
zmQ|}+zFPESUODNvoOu%1G+UvEg<#UQkH<Qk@IB;-#pl35bXBMh=@a@{^ze?e&=&#Z
z;UqF+fD?c)!BI0ydf&IXsYWEjk&RhV{y5X+_wlaf6!MX4W#`!#gfKtj1<L@{>?sss
zLKBHhih^{NsR)MxD_}zjy>_{L3v{uhqPx+(Irest$T)qOgnuOkjV5pf_0nbL3~9&&
z*y|4jk|!M{m`==$4}5m8&?XPMn@nX$TNB32&44bw&y!U*N*dr$Ggkww03TDeS_cv-
zUpgaGWzz*TO&(9%t2P~li=@+&b5Gm=q*vHQj%)V!4X~D9khX$=>gIWy@1imR9Zm;r
zJDYA)yFwQU%4g{Xk~9-dy3ySKjcerx|8`qJTj|}|5MCQ%?@HXQfNq=W;UCtR6x(~j
zfWwK~JV4sy%?$0&xxR;J8ae~K_OpFM_f3$P{7o#9N>66NBj464_MUQ192{6t!RoS^
zDkjCTHCX9-&bV}Wo<bkbaexq%>OK~V`kqp5l&c{1@-tOZMnM7nlntN)E6tvR`VJ!W
z1r6Xc*k8gazI#W;cXPsG;%;I>3pm_8R_%ZTG}9AZ7eCMG?<6S+MQ^Q?kpyzt3}9{^
z48|Q<Lk$3EWYvIxeU&`aP$;>u=(mWp`f!)U??PN?+UTU?KKL`&7aY>1X;mwLe=#-!
zvI_Dps`@KVE<b5VqbIi%?s*{+DTpW$1ME61P*(&H_OoX1fU+rLP#L|0)iF%x@Y0Bp
zeC5n)+{XzD)G;xkgcwUhFgj&ByI`xwCzuv4{mYk0q>oFC9;I5}!+Ca|Owfy#O~a=W
zK1+a)-YBiLO}PWNq6|*7>O=HrS0G^(^Vx7BuxBv!E<tMmq`US*g?QbPA3p4pg5z;T
zPL6`#t7@E9tN_(}2Dj@BC_*JcI!k(y&-wyrkCDa|VfSZk!TYz2jz-2!JNy<j{)+|R
zR}Ou$tf;C=F%baWgyIToL#$cGPnP_NrNp@cKo;vfz21RSAGto-q6*pV=3+ZMJ^IV4
z8h<BZkiTjsq*?YJi9xqP19=b-VcYGAbCLHLLS__qXl+Ki_*??CJwQR3HM+o`(wgr2
z1m1i73_<+=G4|f^aQ5r=aELNW7(ozqh@R-Z8*TL7TM&fky^G$7s8NH_TM)hXAUYxX
zDA9@D`Q3TW+2`!D&-<MH{+SP-JLaBmxvsU=wU*e62E4uz4-mg6%ft8^#{-I7qRA~%
zZr07`WklqB9+#>MHa>9zg5y7fGHXW4v1yvaF7mp}ygCE&Qk3{2*apl$^{4ZClGaJX
z%xD`i9T72={xrnQVy-gu+N}+=*1s79T8thH<+tZGW1C|?HSJjtCJ+8@iIuKcFE<Hv
zNSA9eu@Tb5+ANESDCW2=Q?na3b9v9Q&ej(^Nx3kQ2sd~FvMPg%K#;yF<A)M$lm^c_
zy;T4~;1yb5gV+k@zypKCb2QL)C|Q9b=*mlnPq}OHd$;c9NI^O8h<~#p>o<-H^$|R2
zU0Gt@Rhv}ZM8=z7i3}kkQ^D|>*i2uRWBH+t8=hc!&>E&TCnyH&S6Ai2QK;gI9sF*M
ze%DRDuyM|Lz2N6vSpxNsS|vV%=Y`9`zwzwcU?w6@9`?;&Hb~y6Aq1WTWTiNG3lbI6
zIz!h53bau|JiK9+f->Ivja=moIEbQJ)6zOWrLSciBcba*k~5#>s?lDB&wS>&%5tsj
z*+mIdSvxHRd#$EPViK9O)gDsz*`_<$#asjxd^aoSiNE*4qeTgvgSS+a_QsXk*zSGP
z0g?J@y^lD2BYMC_=_n>hvH4G;pnsC;2E;1A2C^MC-{7-(uKtA!y+#&5e#u}Xqm3MF
z3<KA<T<?_9F-!0*Z49MEIpnr#$cS<UK2nwiUy;y<<0X9j2(N)GAR(v=o}}0;EKM|0
zXNaYX2d!ESr!7zYB0e!e@XhK3a^^S&!oVhBh)Wcc_>U_LXyXJ=&np2&$F^hr;in+(
zB|{`nbh|9oiyT?p){CWh9BL`?o<LYa!DoigYWc+sfod;d33NULc#@KMUsT`>t+1pe
z?<W}B%R<hdh8LEMoZK75kPmNe4Bgz_EZol9Y18+dNA(MpY!O1q>X=_N8a<mVhV4UB
zRg8I^)^EBnoI(iz_5UE5W{F0!)T}$)#8(BeeWhA!O=$KF2>#^h2`>2!z~*0Fw$-*N
z!m5EJhRDRa^8=0&JJU&-qgz<Ctm$q%Ccn^amJo}>GfnLHHc~r(@aC^?@rzq%Gmn68
z*F4s&)>i*EsNCtPq`AQb)50QJMfXcxo7`+5JXbqXX`HC1qXF%M8_5jqg4*<B!36>Y
zT{xffFD{@9HRZ4LJKdR9k9-30kbH2^pQ3rOj)S-jW*b|4)IN|<ID3YX!!7yAfu@Yn
zfHb~<#8*N^r^-}{k*UY+cNo%w7JsUkDawj;Q9qCkWo1yw(0_Qq{q6^hoh8{ZOT6d$
zOW#KM5QBG8GDnib>pCBeoefnd?f7Sx$0M55hDX%RQ=K}Dy`IpXAhD8_vi#jaPfO7W
zi)bPl{?Y^;&+8RaX+r<_K>jLQG$9Lo=g)Y3Tj@XO+M3*lRo`2<WFT7{Cs(|QrlvBp
zVA827sIuWc(fOjNVOx8k%FygFsVYhFjDAcTM|Ww(Ve3|NJ2AyLJcugUO9D>PhhFin
zS;^=_AQxz%g-}i-=zhhipfIR*PP*dzc6p>#G)z~h)RL4&csHi`;%%UVhWyKl^oi+`
z>p@+x&EpV>*QpK#F3<W|d!yJgrx{Zh&!Yp+%q2@^dyrRYXc;6Iv)w7^8hTBHV0lr>
z4X_Q&l)<0S7exz9!*};o!E)u2k+0zaBg{R1-P!LLN?$+t;jgyQKJ4*kJbbqm)|GD3
zK|yf=TckZU>vN_#r%CyhRWu_JsaL9!+rqVa2(=HRpO+NS=i^{X;kPt9PFRca4{cfQ
zm!zEGMif}#^b&4>MRx+cA9ek7b&_pn-N4HogooB2pv#hnmG0L>O`R}3ZFWZpb;|JH
zZp1nVVMm2?3~Cq){ac~^DCo=QF-|)pdsHHh4L=tk$XPHxu&v5`$Zv{h!>7&XD!Lj7
z0wg)Pj+Q%$AX3VgPx-hiR7S~e+Tb7)<?mTh-zj9I)_P;--@T2!n*Nbie$d*m$tAux
zyx!&~wE-^gM5A*=yG>a5R#yntui<az;p|i%8e}R(QHb+H_X8a#K!yl7S=|#dz1hb+
zi-RTE5So~nsHvdv@-?J=%5y+;Rf9~Q)_?{LcpH-wocy)|CvARK4^B1xa-`lbjXd69
zCJuzcSIZ5X>-5a|GdV4BY!{mpE4&Ftapf882>c%Io&xqv2a7U)@-3CTtu}^C4dVC!
z^SU5>ss&_MaT6dl@QpF}0tzbXTD08?G+Ur_Fl5Z3sS|bG;hL^x?{y6ef3_`3#CmTu
zvMZ`mupknT_VeY)HGmrnKgBmCl}~=@+Q8#jxi?>5>B9I@g{qx^U}p{CNw<Q5bc^$z
z>e)<Ck`B0{(&0i<2V+Y3r-hs?KDk>M&ag-3G1va9NtA9!Fd~~>aO2%r{PC2Pe1CFW
z;k%m|(&i6561Rssa7m??iVl}CC(`=LmWedfbIW|Uydg&XNw2l*m3o@-cSb@~O@U_V
z&9|qlB?2}6=!Sy6FFO(U7o&41GopLU2m+7x+{1e2?d?I@V&BYTHHEN!3()UEudax4
zy8-0WlL{IxXWQG9M;|#@gbh!Am|0>R*kbf9O%i2RXtiIcLg=2gkfGZC>Kh4u6R&r@
z^PT#M3pB6`tLyAl)i-$KOK4Au4q24EW%<r9L9RGR!1$e7X5gCIeb+dc@pHecjgkzD
zK^`Q^4?v%8PEZb_ge~tSebYr*cA1Vy7pUfijk2;zjY8Y>?&@bIbV^UZGYMBcZx`up
z#73l*lvZ}P_>m3oeth?H(YEc>gWp=c^(z_99Q7URgv@fRb90&23sy$Q438JJQ8&H{
zr!g|0MsR&IJt?3tA!VAbjBp{u^J3~eEW50dikf2HL-dh4#IVx_4(W3W#!NN*9sLZt
zRjiLk7cX4znN2*Pww~mFz{0<VPyXq8`)|e3dyEEYKv!7dD0i-x#MCP|l)>jXv9XWn
zMUnJiGV;u?Nplr=W!%;Rcv6BurnSMyN^ih7kPnd!K%7vp2-rbV0#n`RgBRhp1cVIA
z1S^Go^Hm^XFRlYC6!ST(d`@#srQkoNgc!0SD_LnlaT~Y<u;2!vpTUf3h)B?k2uiSW
zB(B=9NYU@p+YS%cei?X}(o2m&gDGZ>Z^;5YIXsO{8ys4q)|+8fYeuOU*x10mCpV<g
z2Z%~mTd=^4p=-TeO+~m+36L-ZJiT}yNx(=ggB&JSn$lQd_t@5cvFTN1#NJQmv3dK8
zgg^w~n>7wt|AVLvoL7wAzn{;Zt^-nN|2X}y@p2|V+#D9MAC6$xnbWFC^G~o?4yO&n
zFb<X44N@?4@H!6p4V+a~f5a-o^ednbi)Dipbyn+{?_3;~UPC_q&d0uzQ;i)QX7K(Q
zIx#)U8zV~S?e@q}v_TavUe_oaVi=)pPC*y!Yk8lMxd)>%&~UsPqid?(<gHEJ;^J5r
znBway8SDR5k@_|YT^n&c(B0REdsiD-_wv3^=hr86`9~v8%x)APvwgazaTpELH5rt2
zB};T~?ZVa;jl-1W@buMWF!7Qj+aCnw{UZrVvU)nSTxFGGusg{lT_PF@s6#3=#l(tN
z2lrLD-|@Rj!BNLeavHe$m$3j3+UtdwOsLB2yFTSrJ`^?A_|+?5XTkU>lfPxg7*!Z%
z-Pb$DNz~5-W37cBK2RAu?x|GDUgc_3z7Y?k!s`-onDbfxs%<c_VuVpBo7DExge_OB
zafOixRw}^QS{4H~rFJ0m9ySoSm>F4!Gv`7H(YkRGjf<E*H)IUrBee4Z=j=d5TWxuU
zbClhgr*<1S56f=?1m_jx7UxZ1-I+@8(73vm^QSwccJWu$1^LlPJlcrh9WQV4H@R)A
z4J93BK}mT<dZX%pr$_z|Wtf;X1mNunoZu@v`N)hBhEH0;dt^eA#?W`EFoSh)b`KXY
zRHx0E-WY-{%EHqF82Vo#lL=qrGcx%cG;S8@ROPA}1nkVBsYU%LQVjwUm^tTKz3UsB
zU$8_yj5LF<MNbWjD71T<>=!c+v;FIumNHY`d3pK0CceH}-@6qP2GLjDU!PrSILpM6
zCFgRNxjzFUR%`Xo7&0l{1P>6%73qH>D<ho^_f3HuC8)|}Ls9J4{-if^CU8=vl#z34
z|C3*@+zdUdV*pPo)y<L2H-qNJKpiLQk8~A)#ncl3_)b;h<1il){P29LMJ=g)9T5(4
z*V~_~-BnW|CMM2?4qKTUb)pzhJ*wh25Oh>TELlJ6qG@fwwCwV#y*Ekg!@Q^#w8Z%~
zdX!D4md|UcD)vLD&gC0Frpi`6zLR@iw}kogH}I!8-?L5=o8^j#KhV~zXSlQWMI{9}
z5xVJ({){a0b_Xeih<8d!5enJsin8*(t4uL#PhcLQ2zS@|t~o_Fa`Z<32`LYpPBD#G
z5kV1!8|DrYTd8?_B620ZvsOSDIS^Y)Ft|o2jyM`RY7fHd!#G$V_dJR0#fWtX_m9m=
zvWs*$C^c>Z+lo47@sJ5I&gkBWS(}uKdA&x-IR9SZuXTpcEa<vX5I;gP;)*_MC|edW
zc?Pa5|LLvaSMqGc49;Gm!^S7BijN`zvx*soPd|($9+ZQ+c;OP#k-G_|(XvnAzgW`b
zeLN+@lc;>Su=bC8@;!Uq$|gMMU2iV(d{vsha**@Y)f#2!|MHb=d>UselG8xh{~~9f
zzK&(xr~&*P^+U}r95zxWO|)s(6BQH#<+W^a6m@V;kS+1MatjAc=E1pQ!kJafnOUuF
z@*qr3*??DSA;xXKGf5V1u2aj@V60~R?yPsP2KOQ{xtmyHLHEzvXC8z9rIG%R)%-7D
zC~O<$<KeJ{+_E!k3@){B>9@pz^VRRxnVLTVrD}}nB4mWYh2t@M_hPeqzC5Hr*sEm+
zUf_C^%5GM!{X(q?U@5xLk<eR!;y!As%oY9(8Mz+_|5Qt1F~r}dJ(>n=eu+kcxXpVx
z%m>GSd{>sB-l%z_Z@H@gNcu{UMKu=%LY}Y5ph`QT%j6E70+wQls_(AW1!@TH^=-!r
z<T7ZNI@kS>_toOYx?B{cL;6=a<9Djl6<ezOqI+(0-602y%>$>sZ*dS?8$;Ub{2qr!
z#2bTz3ZBP3?Vr`s-^<SdC0g&b0dzs%2on=vxmmQs!j_$3q6Y&!D{=z9*Sr&pxKI<g
z)@UMQ-fU=`i)t{)sWb4Zi+n7Zg`I-~iupY0i%JZ4W8p{zyA7|eSNaDwCMJ%?u+BSC
zYLp*kx-`LcJoK;m+F10yezO~Oh5R^L%i<6E>6$7>bdd3r6*YudWC82!eFv+=k{Us3
z-sjY0_y^~s5ic)c%4M#upKSL-&#ncyDIsJ}AJ=R|;nV9y-K|6t;}eQID16r}&v%f@
zph?lByq>a7cUL+rd`U}5FZv*cS#gAIxX@%^PrW%lq75&Ii*<0ZmkQbPhE)4D^#_vA
zd6lj#<Sd%DQ*ZDMa$C!`D|p0FcbE6CrToaw?G>J90&<EROVsistC)m@GEhU%o*a(s
zfmelS8L$a*ne2N=ASDst?GS|C3>5Tu6Dv&kr9P_Km$Y7A)L?MMCjRsrSNKQrhao!1
z-ckO~);ZWX(ZU4|7SdwA{*kfL#7!u^$-u%-09`DVW=GK&yc$h%>67k8v8baEmDvvt
zqRM?2#Kh&$X<b-bem<#d4#I~pbuDvXG$QNO%IJeI@vc)^%XXUd&|+OB^=x{ascG5N
zxOb1B!_|GJYLZFP^ti9lDtwtRu^fx|Bhf7rkQJR9nTG}(6%2k>)Cd$xVjg3nB4fw1
zs0r>KY2>f=tyak&8UN<MT+EQ&x$6Mjq#Cc?91YhzBoxA(Z<=2{2<%V#7)tCJls4=~
zVS?Yax4V>^>+@BvE?E!`Zm2iL2sFE=&8JnmyQ4<@y7&0>pQ@05*+>7Vl|HC}bV?Cw
zgIj99`KE^G-~+Xh)#hu)zjexaQxGAq77!~>(UIblPVnZ0jwH>PbgSVmPcqoe3ii-g
zV7*a9g+N3u<5tk@mR}!`1R3)Ct$^>zFfW($FYHEKAR#XymqvMUaO$$&epv}D0U1nw
zB{P(KSETh*G3r@}GnfOvPp?3*uL%g^)4{~-G$8LM<=r!0B49BfRy2RE?cPuTKLMhq
z9#c!X@;6e#&|5uEEcpG~{e-@6%BYc8d`}$*<7WYBipea7)-&cn80ah1kRp_nuH;wx
za-EcFUw}kQ$vR<|Z$=pjiMF4+fq?Vz!6at$W!R^MB2}}%1|rr`DlWiFG`#`s?09`Z
zUbmXB4Lcc_jStIqxIMnOaCcAx3^=^M^CYM9+S5+{Xq=ac>DZYrEe6a+CqC5!O$o>1
zIe_uehNc*K$=<W{A^R0BAA0ZKi9C}sB9m={zH#?jeAxQsKi~5U(sh&{9m1q?ejH=l
zjn|%VX!Mmxi^A~ylLOmV;r7JsTSjtyk=P3I%OPTs;84%q+B_Tcoyq&3hkS%&xt;s?
z&H0~IY*Gi?uW2){ed$7sMOkkm8+<i|@O!?w3>E%RDC|;hWt0jb^d9}(9VPv|B7)et
zfI5lMxHW~*H|yzF*Hg|u9X99NP1Yj0qvz{18G2aU{)U*3NA2%LSYm2mhPq`;gx+>v
z2$+oK?rRM7YaI@+QIAJo7`&kzqCMX?Z)!Qwj%@K(FFzmTl7=Ieez(g`eHofp)0lN1
zr@OYheCP6OdB55}x?LgYnMUQBexk5H-gS{xi$gE-;}xZs7*t8`upm$M+U}_C>JC#O
z2SE;%-g%d-<$F)J-COa%mcvhTYm5|2<W&(fhWZozq7}Rg$5bxGR2dg@m{m&bkOixo
zUiUr=2=w+cpYHfVFw0El<rSx0%lK&kc++R%K$h{8WU&HZ!G@g*8GU6$mcy5_E=mc=
zyL|0zZVLK%%G5xl%!{e~e%k`#A277p;N%pLI)3qRN(6T3d#a)=*sCY16Naki2M<~#
zt=+wQH8{g>WB4eB>L@;^=Ul7{@I7jy>q(R&bLn_-4$Z$XeybpUZ)J6~eDk*d=wzaj
zKw)TORQ8G7{Jq5o|0sjH2k)-ghIG#MJpm~Bj>d<ZNi}$%2-7(!i(j}!*J8D!?tG2$
zTaOpzXKbytdwWRtVrgsMtN2v0Bt36j<p@5v$7RKDYB%0CzV%2)!-zfbqf9_SPxv<Y
zbJu;MN9om@a>OV%Jm5ro(h7nc`o6+AYA#WNZx`|*c7Cu}wZdghM(qII&Zh63W=i<!
zMtMo%$G{=CxRk=LtB2_!=@-v0o`)yIQ{NZM(Z1a{pmD>=ZI9Y*v@Lf+aqp4~ahmiV
z{ZSafT(6=Ny#GM$a6&d#&0<It3(xb@vE=_X3H@EX+WO<nYVdG=s~W7_FK;xhmj$Rz
ze}BPiU?fxH|A(CPe_!8Z7ywuiA0ba$Z@2id!XCzn*$HIXx&zaFz<l9iH8U0%4N8p8
zz63aFfr`z}7&J=~9jNvoQ2>;M5)y_>nM{q=^62JrE$%G<{Cjcoi#n`4V$vR=V<P2P
z7e+_t3`0}G1ja>}q@sB376|4^7|5nq4V8Z*KS72j9gk-){gh3?c-H+23>AT=ywtCY
zhMnlmi^Iq3_M-rJhm6Q_{HvAv+!q8ZN3(S6!#!+m0|5-2#QXw3xA^u!oP|=*?K^|J
zIUQ{#rGrgy!n4)d86(;Tku?6=x8qRwqAmR{@XYVU4(eL4mHs>zzZdU2H#DzKHhFjS
z8ZDEVG$(ZIv-n-Mz`(B?fYK*afUx+lF8$|$s>*e$UtWuM-Jv1>nJ^_WZT<4aTg^Zx
zSJE*aDqIff>75<P5@tpXfi)ZCKvBCpHDYcC=+jktBa_xw*9Q_9xwtgS<&IB**gPjb
zOLpn-GQ1R)p9TcwJc-QON{qyHdi~}K9SV=yPXPZ-LF?tV*4x%2AURIG(x~+fH!ZZY
zYoXD3-%m8{#*;YN_b!Nm!QGMR>^RKHePv`bh3C-^gT8~z`L8<P=i4LO-S5aU4Ie}Y
zXFk(h6)4K|8WYR)_MS+%tP6*oOUo!(C_S)8IcZokg#>Q*>I}L(H=7drz5l4m*E-uE
zbd1%zF*LDCj9)H=pI&o|UkVc$VF20`Cu9n#*6SnaYELLFfQeHlpYR?~i#qw&*6D1%
z1fG{L==uPy7+KyT?2_r-$Yc(Adn8|*3f~TGGzN{Ys3+Dq$YKs=BsKXpN=7o}h0L<W
zIM8Y!<>c3NoB;7%b!$}5=_D1Io_zU)uC};yv>$5t)h2xyPcRd_ExvMWy=Hy<_=w<u
z5PVq7=f8%tfBx|^*tcTtgmRk5w26aSksU=Y+uctN(}}wG4lDN+VG}3WAQ~3ZlZ9sR
zNpKAULy-Wzu%0sb@}Tj#IfH&EmDf%29M{37Vs*t8x@7RAmypD)_TmPvofRx+ul#a#
z<`qiki#`J>Q271K4XVVK;uB#!JJtgUxm7U;rj223;w{w^&e_ijs2Kxo58my1Tm{>`
zZQ`dqWr`BIXjM;BcP<|C0~4-F29nvsE!xh@#^XeSTqZ=@=9d_t*{uF&tp=e%>tv21
zXFj=23up}&cr5Xt@G%XA8?*Fop6RA3wh;V9<}=&T@W*=7Nt?_E!hBjF5S^ouZb)H&
zPf6uEOE-7z*{p7fDp$6UecRsgS0T%@6T;0k7e}F1!mK6SmReu;>rUbANkaeeZ=0l~
zEFoZ22?tEa9KR9$Gr?bl?Qf&OB0==TtUkL^o|JNVwXJ?#bB#oI;_z7`kjFShuH-_$
zh5<oWml3C*TGStWa|J>J22<UKBK}d4{407RhDqfhhzd;2LT~kHTN5|&X&nw0_yN=r
z3l8{w%Q`L(B+%zmfla&ie%8>>g*A4q52$ZVD)-B6<^hTDlSQhOa_pl(Rb8Z%DZr8c
z#rg!0b`|LYJQyRl&8$k~G8IJ{n~6{-JBC#v!fm!dku<)7tFnv|h_|Uq1(Pqd`O2K5
zRxJVz#MaGWd&;&}jrouqxu6?YPq21{0mNpAw8{ZN9dBBlu(vbJ>#YtTl5jTg!|9*e
zz0(ypfJk|=Kr!V+OVpu^iUP0<#J62&P%W@V<AvKuOGXeK0CWRKT9>aP>cYxGM52pd
z2LwzFZLolr0b@ZZdi8d#1Qyi7`w7Y-vYMrH6QqF<ls8#@!13ZS2(vH5(%hXcrC%5s
z!S87TGuGSPMZ?%__TQIWzb`eZGVKjfsmy)Z<arXR5K!^MY-fPS;nfO7@Ov>2L{~_c
z`1G$8bs&zKk*-HT81<^cuvs$lw{@4{v~rfZgQDclyKr?j5n8%ntRmjtU}Bl^+}?E_
z1Sm{n7<iX-pm03C!eOg1S9-PZ#CVIjm(@uzSLpa(sD4i>i$?68qMhyiR5!pnhdu?Z
z&?}}%KHQ$fNezXSZjBs~C$hXVI+nM@KiKIK0-cRuu|tA`v;vOx``uL|>be<iulwPk
z@e1EJe2YR&nJarKDw1Jg69<(|YDYw2s@E&IYC1(b=~B)&o2My^aacUQia&zPvfC6v
z=#>XI>fH6|&=15;=Tu1^R&atBruj=er^gr)EpKPo?2xQ7FGl^eG4VKm5#dyt&JPf(
zH}mG9Ri5T~k$cG(LiyNsOuK$JLtNer9V+owl4Wa#5Hf2O{UqRz!9yk>WMB2mR(Y$r
zafs$@I8D~h`yGirsx-cDhAt3#M?+MJH}Mu495#mPHaqf*#&T<yd#T;H<zn%0f&_2-
zJtQ^&+^-D(rR6B!aLiaJn8?jw2#Y*s^Iz}cW~At8p>TefQ=E?am9%ZSoBR?+ij(zm
zm7#Sc`C&wb4)Qw)rnIaLqLX>0U#VT2UT<~~zFbkE*YIj0+3izPv=?u=c+4Py8`wH`
zsd2a7s&}NjBqC!8^9g-8DMBN>{Rx$xdKb3_ADzJ?h?d5-@>w5jAdOd^PGZ608RY)U
z{-alOHuxO7`wOxGks1|Vw@o*qh>vb5XqY+VsXMt$;kcsrj*suWe|=n%94UR*z3P&@
zOK8FEy44YctX$uy;Nbnz_mMEo!lr|Q&CM1~NQfw=`zYwh;M!>)vkvbQ+TJ$%(d&z7
zI%|;IW_cBlU*Ap^mmV1_eAiF5VcW#ml^wX@x``f4JP&#=cJ4EpFCLe^D)M!86Va^|
z|705C$xOj8V|KVLKV^0ur`BW0rLEN{M+7w^3zM94Wp?DqkZ)Ghmk!D*me~ktriHfS
zBIX`Wme;BmcF==+S}h-58j8QeDpa_e)tS~dkBrfCGZ)n~{8O)d-~a_Lw0+`0>&pB4
zqlaciz1CXu?x97EExD`jvLiHzt3ka`DSjS+P}{eoSlhVzkS(DgjA12~6678<rnAj9
z-<!P!GyqX$oJ8*SJv^IPR#99hVDSN3h9p+vJ*~G`U>3l=CE7IjT}Wh^Zq3AIwz7)=
z#Z*wu)44yh(cI47kyDL9Xiq-o%2>u!Wge~3gHfcJ3KTxQL`{Y5E|lxLYufN;iuk4x
zsCD{Q$;4^z|8PB6&~2*vNtpJ`VkASV{lV_x<86Ynw0aISWIf6Z#2FM6q*!hf<$?Em
zfIfSy&G+H?E;=@`m?l7uMG|xNRmfNii2m-fUTAQHzE0C$Mh(0AS+h9?bY*0NhOayl
zM{u=26?r-At5eqlCoZXJD2t&H9`ZU_Ng6{O-c0+xxs!$l9I}+oW)ir_9ft;pHV91T
zN2KS0YDO-gQWea*HoyZQFLn#vV^4zBz!=ozg23FL!2)F=$w3H1(B&6Etg3WqJX?R*
zhEGj{um}gY`%7YONIOw%7HW3r)&e-7({xV+{*#&d6eDZ-s}mwH^mX)*(Nz9Ljn^4d
z^X~KAFO+~DpZgru+&$!*#b9D_>INGg2)8~$R<XB*0kksom@n=~aJ?hoabM#dTes>+
zwl!tmEixmUB?R(yNQ%8HpKWi)3bWNmj_;9lF%yOo1SVO6=&-p0Sw(hNWZ?l}#u#<7
zJA+?Is?|bUXhTxju|k$xsQO7soEG!#5GAQdYr|RDUG~N~%|x;BrM8B1?}?a&lLbWy
zOHTRBzb7YDWb%t|;vVLt6WLxEmkzJo;~+t@NWcx+?SO1gOSAF2A~GyNpU?8yU=n}O
z<>DGmh+SdD0(`8&CBx2bQ_B^8ET#7vj@A0YpzgzuNz!eNGx3+cH|C7U^DdWMzUL>>
zj18q~3~?^T^YlG-O#4Mked#BBX3kNG1rE5uREM`Q^G>4pt61ZD@fo@s>;vExWe2Km
zcE^w>D7jZPmdOVR4$6YeD3OII+I*OFmK~1OE=y#qo@~iDS?$o71CP;te*XS_>tzSX
z%Xq=&b+7d<O&ZO5=6%X3c1Lp?Emwz;XWx%f6@>kSUnqpHSHS3{OPiKnHd9_awvQp2
zaWd&F3I{)<cD)KocQ<GoaquPjZugFqj*Lawpb>I_<=(>mRi=cJHg&2nwIBT<PEGy$
zS^}ebflQ>b^`fp19{3@y#W?3a?2ozfO|5Kwo!R|OUwNOw-$ENkFIH^L3g9@emP)9L
zg@sM`5goifm!RhyZ@%0X7JFS`VuNpe&wuh=U+>C(jC6X(Mx*wSI6ZW6C`v_!Mz01C
zj_^my#zYhpEE!ikAfncvUR4<~B?y!5Q2F?1U9Ql5Dq*G`(G*r=x3{}WNGR@i*R8KE
z0NK<+pS<NM5(EJNBl#Xr*T%c8jnB?f`$a$FX}QLWJgu-APUm$7D?+!>3ngn(Ron{h
z#7Zpr$h3;pdhHh8in<>Np^vKqOuqR$zE^3z!Fu({HH`bWkANu^bS(BQF(!5C2AbXo
z)TtFmqwg8~LlDJsy~CYTRRK{0^N%{MfDHn(y4vPwwz9?<UVk6mtf1@83vwZkZ{SJY
zv!Jz5W2Q@VzSt_3)#+XD>L(4ZB4-*{0HBjdu*7)8B^dxj72%H*$zwZa&ppfF2R<B2
zhQzKa02xO628d!TFt<PWRk^&@I4iGktyNN-_C*@fI-?0DUfax0Q3VF|VhH++umV<q
zGJ?F~U0HW4CQGGax`-7#GIWv*9p53PW4ct^3Mh^ac)W{tWEL8wFFl?+khJ)k*57)}
zg*ER}J!*0Eh-w~wb4QHG3fCB9%B+^jTqu<0WzEQ0TwSy7_@wJE@;*GhTM&iHX5Rn2
z`qraRX2v@}Y-DhF=!{~aGJ>F%6gS(cJtyqd?|r`TkOe$!Nb8P&m-tgk_s0hzS~#Hx
z=WBL%%=L#)MR4D(v>b8WT?7fxWl>;d)X;~#C(OPf!Cm!R*}fP5?5)v&v$|%taxKE5
zrm)ui-?kn9yQlrD+s*nTq(f<d__C>iX};rxcyTruCNXKMHN620;{ENSMo-&LJ^5Au
zmfU%!o7Xdba5CwAL(%Kbz^;APAeg;R)=0LfJ!6k!er3-NRX&FZtTbJt%G7jTZ8s>$
zS@mGSb6wuvhA0rnGDnc0&VE^3tGhlgiinkN5!|`ih1#DO305A?yeTikjb8xdZ{$4j
zdZV}*m9Ucx8W}gngTP164x9(@aCff|7|d|Y3jO*Dn-W2S9p8-+@|TA+eDn}6`PkoY
zNE-^*2WiPFDh!FbI_6n$nYCH;o7fwIyaW>^ASg)*^vcPLW*K0CZcQv?8*Sv(PuL_J
z-)`PH8KPH2)6mYCgmoqQxEwspI%ICgPqZ=S#l>tc(y+bx24)1wl>W)I0|rAEci+Dg
ztwsS}QQS+=lH(s9t3yIs%r{3q+mwRR=SW_WJq}lppdc3i^K(IhIdX=RWnMRC&w#(f
zFfZc8<h&0DlNB(?Zu??LN#3y<x0!xVx1_oasQFyK_M=??tK}#~eRHp@+wT?e`gzZZ
zN2XFf2bKmc9<qE8FBX+9(I#9<CBA7nU}eS_&Q+N;vsaG7f1EttWDZ8YeBmxswi(vE
zK(+c(z2K`2TA1h=v~OV)u!<j+GBQ5@^UD6P$oo|<!alI&h`-JNCjaG&BD)31q6FRf
zP}3e0|FIfaiKqF%YAmvLF&T`3Ptka{NpA6f6V?B;$~yjV)=DG6R+9yDzRh#GOse$5
zjeJS?ML_&m6?!_4Ezd9ZAeRcDA6Yr+j>Tl<qj~L2S4N|C^NneyqA^=<RCn26<Ubje
z4t<o__%Zz#l&yX?#)-dkh#?c3e^>eZ3t9}j17>ix)`@qD^?=$%^3p*_07Wj50piZ{
z@?|s>3f*%9()*m;Orav8d%u4NMu=UXZc9ZdDuC#LXh1)%=@qGeqAcM?$gDnX3}-l5
zGXMC~{x8}dcpEEXz+1q9*`N}!8o_sGDkp*O+G>B!Rms}XQI7tL?+s35WF)n_a}15G
zH86H;1=y0{G<*E|P7?3*X%rWot@umF<Vkm?;bOHp7Lbtsk;S;}d$H>xQVMKwW5_=@
znuJqLQc{wd+mjp65DdstF)%RjH*dE655*h>7>RFe&fu-A(zKI;0`_+H*4Ep`+xMXZ
z>Hnulhl&JrsZp*s&B8mqKkxq0gmZ!RzjO*8o?`@uEz8Gr|6-@dM|uXP!`C@T{->qR
z82$b!*i^@wLfudy+!G)>Kp>cjcSm;>wMw}jH_+D=OqaZ2JUKf{x})HCdZBx*Y+ZPJ
zp{R!8<o!>t`=3{nKFR{O+{q8O%rmo_%GjFP|5_XW<_q}Op8P+ThtN}CSzN-%ES6;d
zzyHJke~-n$hb8>BHX8b$%%2U4TG})ZCDA`WIba>~{<II|TcSouGhM}h$6hF;l(p8;
z3Y7DI^Cz+epo;^G2RBf_KH;BU?cWPUa2b)>_wpGGlPCy$Jt;#D@6REN@=LFP=To>M
zj|!b&13JjK3WG){U}N2?&j)nqihr2iWxtyktqOx}E&YlN0T8^->~`*5rD__N)muOT
z4G4n^rjV}io|^;LX|db>oJNHKe^<&i5FiNTgO*j%d|)vY&@J@2I!*-g#Q>I%YdDp?
zy8?&xukX$Pu&IJ-%Q_1G?PvV2Pyal?pwUUS-S2K)zBN1?^qlMMhq`1-b>x5!y6g|i
zb7GMK^)b}vBlOEJLl{468S{SyL0qDmzA)2bpX88ATt7?rM(=DSr@v|y+2$3TJ7U*p
zf0J6_q<xH40js*OQ=gr~lN1plI9<1t^s{2vnWBs2TglqmY<rTy3rI&hd}&k~987j5
z3*%(wNk#pHGKIah>TIV=2+apRh5&=W3r`7v-I*W&lqEM?bG6I>5)yB>+_pdN(V#l`
z;=}VeM*u3J{SH`|JtHXiGFbu)<8c8#0LLdMoYH7VpII2Nv9aN-?YC-62^zFt&BSwZ
zJO4-_7XG{+_XtPdfA@Yo)-ky3moflX80ogQwm6}vMC^`sNqOpJE~rN85*-8fpsZCC
zPl80OKx05SYKU9dXuFO6@sM7$DYR1UGIrZ-SI9X0tfja(pLtDQzX9)RqgaW6+zy|h
zuTRb-Z;y#C4K;+WpyeA1g%mPaVPiCVInS^^1tanESRM}GX9JwI9g4^_($Q=^!NAb6
z%h9UTT(f(nA?w}EMLj;gQL9%H08yE1Z;HRfCgo8OFg9%wz5U%CM2!5`(#8FQo=Z3^
z{KF0LUykViKFKMBksThB2)HmLF{=L>pTC-F=&u?#ow8!!;n0W`;knMLBC1k7I*~@u
zh|r*V^ABOVx2MZK1>AFgrcY?@i>s!bW4L#<w@ObZ9ra50k<S#t!uI>5L-`XOk$}$-
zM-c!h^T*2d>&e`N7#PAQ3KW@#y1To#mxTM5@d5d{%iB%6PGFN*Ewy+~eHMSb&DM7i
zeDGA^>g<ZR@YXC*Pdc1y3Lpzpx}N}ZjsPF7?!uL2zn`a)1C>Ua&<4yR7IpkSa02zy
z$Mn%ub{Z^9%JqO1TTUe0KU&AfZx@39-983hK)zfOb%PBG3d*<4{-GAYztQY!oaQ6u
zIdLvWyNjgbs<@!IZpJq@!ab=HQq$AgZh|I@j>jbKHX0coTy{+8kOj;Q&yN1v05bd~
z27H(m3UKSakmCR4D15V5GgW0KqucVj6ZsmLwEV8wQupWX>k3;#(024+B82NMoJW6O
zghc{Pt!^Yn6-A&hN(P2{WU2~IxIeI;KUiZpu!L%OZ+Wcz{UP)pKXDMn5PSQ%Czy!E
zfU3cNC7)bokoI->P~wM|OiMW|y5yKrY39ILHNfkPL`_MVf^>yuPSb9%AvK4{<w43A
zdWB!aP#5QTX->on_q83-$Cx^Qn^Xx)h<2oD{i+Y?qv@xcyM{k;DlM)V41KHN%n(gj
z9E(>4e&+PovGXzhePt!9W|>Yr=ChYuN#y|55N7?OO!gCp`LUe;7K&B+yXg|z#pK72
zAGiLnhmxDz&c;pT%agKvz?hzy>Ey2VI@{3z2#eO)RP+--KB^9&8%4mDmbTW(gCcVh
z6X~o2?NET;c_~{KlV*uZ#8X<(ypr{6>{;I5ok!<z<>+=mx@sh>{Kc40v_k}tYTE77
z^*ydQ$f%#SXA8+AC+ln_+2LDTaOY;DfJ+0Jko_B;Sm^5ZA%ZiX+uPf#bZ_qvFMU?C
zcmcbf-ZoFK;g#7HKEx#xUS18m<DW#k;`I0F{y*~%GB?Kmw+rFF(pWIefZ16cy+$Y6
z;VfZ6#zlwu8_7qx;@_?kJ;q>R%tNcaA;d~eJC*8U!y>8q`s$KiJXl90Kk~B5I2*}S
zGgK6xg;QFc%oMy2rLl!VH5m%VQ!X(2+X4ujPvBb5Mbqmv-eLOOk{`=vbGE5`m!fzG
z>iXdit8!<ZPin4SNnmG1<-SXtSbvI)t++*m?-bwlBNkqyP8w~;aW)GTL5d?8N*%rZ
zCEgfqyPUNsHgZGcABmhElXBwzs~+y6*%a>|QTXI&Ez?tx@z)O$%reo$TV_y7Whz4x
zw=U?3A_6~Eamq7pBJ%#UqmDYRBKJ#7HuTQ2%*oZKIzZ08oSy*th5<Dy<9PP<;2&>K
zj}$Rr?Cp<ZZE*3^^NxW_!13jD$@@?h2(w;9+x-4Xf`sGE2PM<Xz(5L^y#U|`$0&CS
zoa0(K?SPrq7@z=?1&%=J#!^ml0hiAJUoQZ<2Dm_(Y~OPd;M(}H^~aMUF;IfQX0a(r
z<W6HDrS?4)#we7Dkoo)w$T3tay96eUhtk^b&Pi>T+cKAYP80<Zcv<;4WPD<jzNhgn
zUO$@h+0FV?02myOHLq{qO1t}JI89Tl^S&JzLzZ@h2a>bBexzAp@KY%`?EYeZUIx%i
zx~)_^zu2CX!R*zDe3uxs4IEP#H+D&(O@A)%Vs(1PYW2I<m`F3gbRcLX#p{Jjv??yN
z)^4$hKm2UPuN9bz25$V1OPLw=^L4KfLB#B)D8gq`>KXus*lhOv*)zJ)cwjVXz$@#v
zW7g|@k8xCWn!>7sy#k;xN~xO}C7u4Hm;!Vh>C7Xh*ZvN6@0nwB_^FVACZ0|BeAdiu
z|4S>tC=PAfIg?rr5eNC*i@*OfTQx_{8I1s<O5s3fqURQLg1Hv(4S%zd0#G%5?B7@s
zpXdD8Hj?D&ULl^5ceXoIzpEvB4~QZ1{qL`2Vl^v+cP$4#(pH1k_7|J$s{|Nl6dWAB
zv@Cr$wIValxB-Sss~lSqz(kbbk69LrF{PN@*(x)xw_{YzXDvY0B{oR&+8<rPb8QXp
ze_LPvuU&+P;<h&nF<z=pWs@SqnL#sw3)JOzY8J<tuYL1A_r2_i;_*>n{SXt0!FPM5
zeV`;>ZYdCsG5&+q(sOXuFNA>Xxo_{Vm;&+Co9LiaaOvbT&p-~5`VQNRHZISQbj?D|
zL^^juL3YUX=`dJfTVFBn{qrN%)B)C|J2clls6Npy(V+veiapy^ir)wrf3Ef@!ut-6
zK{D+Hy5VU1oe4a17gBUuIs1v@tD%BOKpN>s9<=E=cJ6Y{p1kq7qnOwa(`MXZa(Tj|
z|8Ypd9_8i%ps0E*8UG%ND){j;Mzvr%rHm~q1vRKRt%!!iw-i=N#cUD7I(646ftNGo
z`Y8ZKT@Y!I1^qS!kWGS!PuAGH{GcnBdUnt{6#=y43TGtHOAMvBC)h(I@HIA4=SR#v
z!C+mlcAYR^7X7-HzQ+UfB_-^dH`oO_l|8}IsJ3XkkOI!AwlUG3*R%A_pIJ~W!PeWR
z(5dbwK)Wp4X3-A~C#@RQij4(#i7Q}s=1^E0fA1%DUFo_Q5j^Az$Ed<tv!49|c|yhq
zj&jS1YXp|Y1g#RQgn2ZcX}Qxz4-ushD5KxL{jM%E6};H-slsus@AP`Nj#X>RaE;IB
zY+8H5WW1%Fm@<~PA^j>xl#HH_DsA4x8*BhD&dt{aPcvpl+W|qH3LxeruZvhazC9V8
zEUj#_{z=qR!zc3V1TzVu;{(jNV$2jbBM!KWMkp=kJH51bw)TY^EygHt;u`2vdxLet
z*7VzaJUy2OKXKAWE>NV{^oRoM3+9Nj>YrEGkaP6@Usv0I*F^vL37ibsVGaQ^L@|Z3
z#2=cWGV<&-ku?w`_VVNQNd|k^TKY_&sJza+ue<M(*g7a_BXG52zQPPJn9EgU{9NH+
zg10K5Ktoi=Q@5MaTta}KOQprP8}e{MD3yt47eEp;(EdG2O=T;AzY_dNDgT4Hp(O1L
zSuyesCLS~+mDT2sAyTNtfTeIiU%ufPW<PPeOJao{Yg7HZ*e^Iu@(?V&!Rpgjg&?Dl
zbscD%H$^vfWVI50MxB@;byX#z*;0L~chS_Qiokg@w>+jM+f-pYJ5zC%Uh?$Hmf-%-
zoxpbkoIhY3HIZa1-}Y1PgK;cJ;3gI3o$r^j&5=t}iAq`b0UgIZ&7K8*nKp6VUQY)J
z!lS=@%vZRP!6FFf(=AoK8jC07K*mx*gfAk52>t~v*0x-)Hg{vFx0Nsc{bP!2D4B?l
zPUM#gKuiw6`^l>e4bP!Is7KH1Hsr*F(Ago#2R1;1o}%Oomdc?F-$X`6hRY*>lvqgS
z^~xAJf_ecJ4_xnhxMWx%(M+G^0Zs0Hf_o6Eg_Oe40~~@FcGeDJHe;Uy5ZIt2BS4_=
zc4w*>XBfgVl)=v#5*!R8;^D*D8Lu=J{Zvh8UKC{c6{xag>$~W)ebgcmW1^DY_;d<v
zX{JCxHUv18X?wFA(u3ZY0l!qO41!br2nwP`F18!TLGt6Y`2HEtZ^^3a0&yqsZ#Zkf
zEz&CAk5X(AhD~A$+FJQ>Ib-ZU4%D&vV|e|~&E9{&4{Xw{u^6yT_y3&jeQ_`zNyrS3
zdeLJ*%xl1b2e1#WOlh1K`K%Hu;j@6z<R62M;}Cr6o-z=bHy`>AODuSk5s9KFzy0A}
zu#+6TFov^9)ED9hNY|KdI^%%D^*NbVxt<gN>m}dBy75tL;TO9)vaEPC;`3D^v?8iH
zbn%cNkRE$b20hlZm!ARC)j{)HVjde}LIxEvmbHbx`#jsD)!vP&fX_J8BH>hs+s&O+
zp++=7d@b94e_iT=+1nV>;W6dve}C(V`Q%BGS)V|-o+CwIvy;`-B&9b{9vK9`e%=pu
zJloOq6h2&TH!dIvOQ$`M2a`i@G1!?8LS9Fx%;1gKH<VI4D6au~i)sV^wYbTksI(CD
z-?d(UdY{M0?%K13@rjHc@guWC@daYSdHrK&lpxg=i$*f%%@**&FrJ%2TjI0g0I7}~
z+*NVOYhX+WJ^uOS!2}M0@7af!h3~=`ch<cypCY$^4SD|2IBO@7&iGZHu|Dl?HcT5^
zoPzrJw=zMMeSj+a@vL=I^C}PO)H6HL)%+Ucb2S2AlQ1x{(Fa#knpL9`EE!SD?N6GP
z?9c|H<3(q?d^5DiqVU&1_S9GtjAONrJ#w}^n4|4D4E$hTbM({{2BKIbF}|$O4UVI5
z_uqm8&e?x8bh{{2a-<?Y4dbkmF5q*qo}l;o8O(uDzDCFjPWWjR)BWv<@+U2VgSQSQ
z>ZZcAB00rQi9rpRIOfgnSa=QL!rtd&Ku1e01(@Tl#|N^8_f8QpP^AT_Q}p4ah=VZO
zuYQpVvXfnN7CQgvM|LEcfRuLdRI$Rgv5(Xf=oH~%qb0bY4^)xrN)aWv(V7wSAD$5v
zn<O<nS#1FfMF+pOfT7|UVFaz<CCC?HLSiDdF6xzPkT~_i_6jhSB2EZ+bF0^UwfV^r
zGzwU~yjcdfY8F$I1xUT01cX`9*IJz5Tt-X&@adJ;#mGKX?<Krm{|<QV7z>NDO<H|!
zK$VI@kJ1;!)epWgSw8bsxoZ}XqMX$x<cqz(zgJriueP2p8CVPV1Py-?CVQN5LEMaK
zKm_n4Tno<-Zvagfm>3!y`W{3CRU`yD-JrcgprJ}8W6~;P=ykDfEu92RD;B``xx>Jo
zVa`0q#HeD7B^|MaKamz=z%pS(?oth3Bhb&#Zt!#T>+r<CSpaN*7{4Ywd3uEy;09$~
zij9@50%>?S#kIr5b&wBSDYP4D;%VmLsd!)prg8S<PUnM#MzzyO=SMb)my<$hAg*Ea
ztsuZgEg(_8gLeZbMyBt7LQ?;@MgF?_|LY$CiON)3&NvDQL%)3T;+`Y(^4%lydV)pn
zw_~{a5rUR|Q5dzMCht}!$qO**TGxMQ>5ukFl5Vu=MqzA<`<sz)s#?~od|M@2*P)_2
z<)RK&;W)2Q>{+p<<Un;c*l1?<5)fd)y!fU9K~Bo;5OyBm?V#gwsP(S^4Amdud#IoQ
z)bQ#TE4~)-)Zj02ggawm%<orT0=rxf1CMOrgBwwWtJZu?DOvra&S$|QpzvRbscd$&
z8Da~C$i;zY?_aA#9IaS{?=y#qf^Z;Tot}YPVu;zhOt>XsgX}oWN#PR)csRBe?2sLe
zN~6Uh%z(V7_$6Hc1OO`(tOd{}bMANa-zSGuk#buB8z%X-)RM7YA6ofjjov<&3Ak+a
zlUR9EQz#cE4o<Qyf~7DDLo*DF=p4sGQq8HE>YcB*=S8tEdDVxx$v6EB%HjU_yDNK+
zb!E!-CdLSExMI~qQ>sese3L7)_+`X<{X$Gv+t(zk(2e(nKO}UDuR}Pqn~{iw?u69$
zle#IBA@9|Z;^CO#>xro<NhX-%U!K=5X;qqKDerK<Js3^cfE#ea$jgzb4eq?e_=5u-
z*n)}O09GROQl%Eb_@^OEc_c_c=d=fq)pTte@mfo_bv8dg!fX%A{J`_4Bi|Z<g1QMt
z>U3M(b9H<=sXS!QY0&B=<ukvEj`p9k(|_O7<3f-OQ#XyPY8>!=GN^G_^1n@{Gf49t
zLdd`H-#YbS;Ubt)3tsy=6E>TR5}}4v;kh&X`eAiEY#=5;XtC2|B=8`WsYkDdFM4Dc
z|LBp}BUwptjYGW12!>`qVZ(3%OXpL^Lf^F4=|wbj>$#Js-Q(Ig;RN4CP?-*F;&%T6
zNDt7FK+#m^HJIV$6NSq5aQ3>Ayp+!3C&&~Hg%HidDzpAK0tVsuhKiLX7ll#q56J|K
zmiUof)G-wl;J_GCUZn!okcKC@P?SF8&Gz6`AeUZg5epKk&JyI19YidP+rZexKE~t{
zU<kammlv}6cT(P`l}jgP&46Mkd9lj`r?}{kJ;9_H4Q-94SYoKg6bL?acRp{wec1kx
z+>aV4SJN?Af~$!(p7C^qf1YBeYq}CBHLFP$aE}gtl37?-x3UBWr4IjWEZ#{k9IPET
zz_}179Mn~LwW|&{3VlqKvGZHpFsYApvlbI13X#Ub#!hs#7|nWhfxn%Nc>b1_PSe)#
zQ<jMDT=m>1PRnQ~1AHb8rZ+E3Po&D#)eUgLU%IN4Mf<0`O0Co?#Y;sNU&#-0Ki-r^
zIX4uoKV@HO>I(aFID|z3#>e>lS%c?%e0(XB#$*vLi1QuvD#d#AfhT036;g`fw4W5Y
zM`4dCxb*6L^yXyOOaM3$=Uc<Sfx~~RfWuqe6QJ5{vf|2$A8*#u%lS~J$Q6)uo>q9{
zg(a)^ETIy-QX?t-ja5-(G0?sse{4pe^Zl|fpS@0JL&fEykRq|F{PLrB6E;efX;X>t
zIyzyz9KQivJXWB#Gbd9JwJN^uG@hj%&nmkU)dcS5*2u2?<_{MIH$cY2!&5>pT=<@$
z#a2$tX%Vd;9_>;K{tXDA6#Sap_L)Ky9IW+QJlH!IN0P=e*MX6Esmm7x;H^)OD?&XE
zuK-mpX(@o$Bo%#7BC;cSvS#5Dkdd@Yi4rmr?A0_+qqa)-%**R7yc`uj92?I;-)6EP
z=2ol&O?4_)DryU8d8O;MD~<92sRv0e6eJn{{5fUx5peD&^!I$~7~O(>->L|25>u`W
zx&lfq5-Ba8FB6{{m~&3Xx3~gGYS!{f(mr(HLdD_6efNw<pRH5I2x3G3-~b9pPv{ll
zl6~j_iHJXCkb+633gyTT@iA+{LC47!CH}zGw2<bUnvO;!afpE=gsJB$Ud3bWxk8b@
z_K!c9QNyZ_4By)J;CUm?pA#ZMtOZ5LH8xx3E*y{ekDdVSd(CK_lB2g#p%S^7!bn@~
zYmF6>e^(B96oDiGgvV~QL>ckmBUM$u8Uk8RiM<`F%g1JYfZgY3bDsa~?;lMq{0-h_
z0$GZmpeKzP?+vdVo#B6qYIF^?8!cAO@yE{F8am2F;gVM`Ldv)2jtNYQ7H8>|^g8}!
zjhG<bj0JM;mKIPhdjDJ$uniO{0!cjt38w|jk{`6I(Xm}_K9tPmx}!0e#$C#!<d8<E
z*wPLTR$~*dy8et0D$i)70!C=Gx+G4-POH*qXw6BW@`PG9xq~X`Cl-#xJs&Q~1YEws
zjH8;sU&Xm1xOyB=ryfIl00ESoNj?iKXazG+6yBxD66)0){0o0IVXP_m+6TP5(!l3?
z?NXvynhc@qxrB)ITw&8gEs@yi)My`oGu7qfmtwOuEH2vBtUop>Hq(t+eLS$fq7%O7
zq*g)V%Cd9tQI-U&9w6PQ&cNaRfiPjSU-2ScD2aihW_{SFYjH#B1Q9@O{_SWbWe2#C
z)Td@W*#7=h{*Rxmpdl@P&2>tZc%1D*LOysJI6KDdVn6@p>gZ^cVS;!j-zBLz!FZ&)
zT5koPQhj}(mSfR=D!(<6rNVIwXc9dwYL+xVZko|_Gd#6Q=?&|-r!sdEqm7SkgyH{m
zpHnMm+#hfy@O07qSihl$zUsd@J`?v5C`nh<C-UhG{)!X&&G7WShy8Sk=J8`ZT(zn?
zyT!B*bp%7=;^I^7{{CKvtrt&wPk>`mE{BL|B#k>ttI{a*EvYlAjW(}V=XL$EUpjDU
zu}pqW+b!KdM#U`B4J*zvdX~%Kjyw|P5H2C+gE9WO8HrbXg8_8G0}llHw>AR8K=y@m
z0k^%kGp{nX0S9~5p)bCC1a*L%z2Hm=5{q{!;EW?lE*w+C-^%r)bnJ>ugzV6+>_;J-
zk*`A)A4z=2GTWD~H|?4@o=%T{aeE`R9WVqM&J@)4Td@PFZUQ!k@=Vh#WONAXMweob
zEZIJ>$TuKYgiv^~Zg>e#Oj!sB<bv-^FDYzq5VS?lh}h;1@>YexK<3|5;|=ie=*^=S
z06H`vQRY24ruq^)0xw?;c_*hY2|Y}sDN4xZ|K4OB67p0$x5-uZA|!z^p1ytL5CfYY
z^2pmmZA{%;WU0MRmM#f&_KN(Kg6P-3>fE6mOy2M4=sxC-+UGShFXxVB8}oW8>QjlF
z#Hun_`1pM6kE7nX#c3qTKII>vXJ~GdHCy79H#sJv{_djb_046t57U;ev9HiJ(DE<Z
zm@)7XiZHkh!o8Pn-)0rf2&u|amHlorUpK6y(f3L^0E^Q>n-rku$}o@!)yAk-<O&DP
z1A2j4-o>4#Rj$^0I$8>@;YRObMpTpVS@5o?sZc317tlnhgyE1!YfJ#m35tfpqJH(8
z2m(zgTR|?s9$Eiz!gQC|a41@OrLU=B<zHn7;4NC3Y6`l*Y-~)G&)wM!4q#6DIx_+z
zCe)D=2+a9vw<xePQ%MOR+VeW)Cv2FlLV4NRUS9UT|Bte-j*7zF)|L<k5N0T8m_ZsO
z1SF(Gk(N#=5e0#vL%KVpL`sluq`N~(8l*#7N*V;dm)~9Y+;iic^PRQk57sQui8uCs
z_7mJNAwVV6zF(V<C9}l~Qqx9V+!tmWU#o4|@;kF|Ww}s-J3YI4-Zd0V`X7vnB~6-;
zNhsifuSDfGSSb6$ioZbx=s>c+n)ay}8h-Bk($%h*r;?Qmt_XBpLnpLm(tR<_CbwFt
zB;zN!fsczZ3Ts)_^XX0%-0fP&tBS|^61j6`o&FHm1yY=#tgyUns5$F?-e6f(ZV60Q
z+DnllAd{lp9BSzjaE~m^IyLiWN{3`>Ic7?%kQH^(DP%G76W_dZ3OTR&Mx$aa<3C&~
z-hn=1{j1L6UY-Z{@h*QRd<nBZx6?vkqf*?<2}{vX4RGv(7z@}*E%4trAo9>1?4GZe
zE<1g<d4-yP96RWK5ckfmNn+~bL7XVFNp(1pmS?U@<?5qkOs@DaD$lHn^A&^N1-)Rm
z=YmmCvq^s+8A2#Fn%#HRV@lJ}lX*>|fr<8tdjYa8HQHwyO)coYtxcqrBYJmii`7=R
zd&-(FvD>Vf>*ZgWd$R_p&S?VH^Frs|XrBcZ-7sI!(6X@fHcZ=|gG%htF`LG+JJ-DD
zrw5?)KWe_YioDORCj;U?Ds*v&Kf89<fq~U+w&v0-hIht~T4n37(;^zTeeaia>r2jB
z)mHjn^hkb^`D69JTWFfox&#6d3RI3S%KbuDN29i$rAnX|Ybe8B!CV3D>WKIv`a$-t
zED1h7Vn)0__%W<TJNVAhyPV}gs?k05N{OVG4bCsvm##$p?ABUbhH_s#&<^W&-u=yW
znlRgUQE$)xBXK31Z=RFnn<<39l^EnWe&V&u^^F~4i4qj3l_a?ajMg72q=9NbWJ#TX
z$4Ejz?3l$+RydssGxKDa$F(~c_H<nrC@f!d0>fwXq0cDd%AwmmEViq?rs`~cNc|<D
zJRoEr6>RVU2gs!o+@;Cb@#b{J`(2q%W&X%6X*1nHpIb*zv^~JQj41SDE>4I&H$u)%
zW@<+wriH|2<q_uMZifT+Zk<8~)PFugw{*W~Sl!3LfijqMdzhape{s4qtk&$|js^8{
zm3sPAwqO;|Qa3tnufIe-#b@(9fM1-<>;+lZxfup^C{L7`Fb2AoG+mH~lOLxOz1@W3
zIDfwS8KbnZ+$o1QBaT9?RqwF9weJ-eSa{341@n+FN9hov^hnX`9<8o>O%CPAbW0k=
zWPSu&<IYX=Nb#K9$fs#GD<RKoA&|EfZTQ@hSm6^-`pJ&LW9l$<swr-zWd3M8nuwcc
zp*n$YQv@r+J3%qk{ZZ)+hQ_zs;GBg;@kY?4G1RNuNvzm7>4P!J#_{BP{EpZV?rY~-
z*JJX5MDFfVET?J%>q$Uic;c`#tuExH#z~DtHZFf$MtK8Rwu&_G8ieD==4o~rA3VM1
zG=;n0V8`fpOO9y%^P78ThU6wvGq4w0^BGj}5+C)S&Qk!ZsZ+0K?MeR`D)PTs8#2$)
zGfFx<wT1L6UlI{I`esDjFi2UyWm32nB+{}j9bI~AARu+UI@5PdHti;NIuV(X8(QD-
z6`I97t6V{4Y(YV#7`?uH6G(Zo&WY`6{$cj%#rnGHSrs#p!)ro>ewjh4Igy$fEE;x-
zpj9fYJdW=9{su992->U(Y;)dl2~QgNVY8e2mv%9KY~yl1Gj@{;OHu1s^_wuPtuagT
zkc}OwVlVLO#&^yNz193a>K|lMz`S#wz#Klsmnoun^NTWMwmK?<eeVlTZ2@)w2ccAK
zP>-aj%Ddz<6-$oV?wqRjzw8@YeBoYWRmh|E_k57!{auIE-Z*>Uo7;A&Qsc?Y6~pc!
z`>qf+E)Ms<1_zu3AbNeE$^29ViYED)f{VEZm-1nKuxGNE?_q<MRH`pw#=|TO_<1(u
zR9&%qThLM-C1+8wYk#G4zu3(At$zkWuCg{D#uCRb$*k;)LmrH`EHc%AEX+h~@-;zV
z?@kOXc;bNrJX6a4Cq8R-Tsvi&z0#x8eIVS8-wT5Kkn>ql-ufetbmCk2l{EYgL6COT
zThZfn)NcS_zh@wlTKLo2_cV@b|FNE_`yvoX-u2lER3L2#T5}do#{HC9uGDLD5M(vI
zy3l(Au@^!5*)t5uzM(j^qZ&*kpqK4YXaYWCzvm8sBQw21WRxuV1zN#WokM}VX_$ks
z>roUXQbf!v(5?hD2~W#GQ$l+9jo0^((CRa+a>>=}@tu{{>!l0do^rq<usuYo0Eu!y
zpX9+2xxEWou$p`?udmwZkh0j!omQq<A>hE}l-NY^DH6OM@-8_UgW^zIF18I-q*6O3
z>I$&Rf_0(ILuL=7WGVX(s7dl>ZNA^aor|pi?o1EtzGLOR*Kio&Hr49e0~mdoU?y^I
zzL2X5HCP+iSoQFjcpB~Oe75L&8ji`*2!(9HzrH^ls1CEv$UR1ewhIc0C8F_dfh`__
z8L4$%bkDt!oRHcB&hGdAv--wySJ=7VBI+BwSiny<LvKz0YN_D>U-O=NA<UF-D}Nxj
zQB*xoC)CfptzRkJm?{!^u!X{91k9X|X-%jl<bHuc=W%*e6zmHnH_TbEJUzgHt0|h>
zV&dI7&PZ{(R<2s!SGKlVFU;_cHa3Po$CK)Lvhq`f+N$TumLdUX{xp=yp%_qVx|>|B
zijDdXWxBfSB<t+Hz^Kj9=4j}8@Z%wtMG7Iwz$UXlHdz`*vo%foViDHjAkL_NY3b>>
zJ82G>K*pcm|AXRVK?JoeM*r1g<5`BSR}aw5_%;P0rly-~Ocld7>XRvtl)ASDAJ?$o
zqNx9%FTUeF#S|TYT+zbLWtDQH&4egpp_pR5ILd02h}A?`F?$f$oH0gcR8yRbXvlc@
z=zI?|$Q$r4ayMYY%LxC_v*J0_h`W4qejFIBG!4hjy(-oUjCA+2PGj&3NZP?kVe6a~
zl#IrVSDt>vA(L*bJZclq`v8wEYr`UNXTnHy5g8<A{@QIZ!})#JisP}+OV}lKT}F<*
zt=|TIn}l0GzWWOQ+~uX69T)xO8D&+^-P^a}efjLpo~6gdCS&^xsCL4U{a153SlvUN
z3Ymutg3@V7OkW(z`TB_x0|SqK+$CdxeMrb~p!z&nO$|IvgN@|zJO28}6DY2u)$l&x
z$&aCQ$#HWN>|y0rpSxM4I6iE4En;RPbcp;@_#)9Mu<Ml@rQpA6jfT<KwM4@<gVkG1
zVJ3GmN#7prEf^F%%I2IFe?n}C%SBe@3zf1v`-tWvw+eszGKWL*GsJ{C3~i6?pqPNh
zPK-woxCPtUgy;qsmV^292izkpP%_5Q@G3V1qLY+6qAYVmy5UdJ18+TiJ=C7?N(*bw
zHy2zyPh4*B*+tX2r-ugKViZlI(l4CkCq^$<%$;p<>!zy<j)fXumo|e`33i24A?-)r
zgDBk;G{T=7Zv!8WXazhMTTt3vU_bZ|1VA>7&5n3x-nMwYX33zB1ZIdHVBFn9c~3v#
zOD35=!=ko{hH;e8Jhgv^_jSJ(@H-EjJbl2=uVsa{;HA}Y_8#GPDdSOq65@o8{-QnL
zhiJ069%gjfh5x;0O|^FG!GRyRmXpY~!va5=rM_KN6ACn#f)OrfM?Q{WaDS*j+y5lU
z6^7U5kBmTOg0j5S{*~G?T~MFviQ7Oi*%p*qNNblwV=>`I(?EfsYQz9|rPiD3A3b^1
zV<?#$6gUD{-Uc3OW=IKD)0J)|<xUlNc8A~DD(K=|YxhcJF>uhQyrS8qI@;3+2s5af
zUJTV9vKmwFeG?hNTLF&emj+=>&xqLGTvjns%Mf11Ln1&{SsGb41e!o<V2<_2$jf@e
z3v;j&&=Eqd!y8!i?$m!X$!qfVTZ!T}i=f-PFZFJU0o`I3#JL(vOc^UBJ=Uk5go;v{
z3OO%3%Y&p=e#W^UPtA)ch=`aHY47qBt16*R{sDxB)%Bb-jUG%<hn*F10(mY4b7zyn
z=TvCb|LA%alRzK4K|5$Rju=ydyPZ-pzY4`_d|k~A8}~1EQw_RUF5jL~55miNf}?Xw
zn3GyUI2JH5gk*5+fv0p;{g89q&(7x0iK-mw603t<kr*A0MI8=n9!IM~qJgR#TTV<T
zyQYm=pv)FzoNT2Uri48VC?*r*np{pXGUi30JCXK>cIIk#=goIjJbwHrRwBM4r{~6l
zw+KH&u~lGsVUOw6QhB@(0aco0Bv?NH_CTh1UDs3Y;ppQwrqqU)ucMn;F22H8inQ$>
zy=;H~5fG=9f!rf2G^vTb?A*HP{AnFkzLS8fduB{$y==`|o>v*({CC9S)7OL77)w!)
z;=FN;D$OI7k*`jCQNn-xyzAZ;j&BvbrrglKx@J1&+k>U(uVJ~E3yHXODY5`P`O7Up
zs+grY<Z9sxv>;b0@hQh{xRiR#6Px%Q=Lp4!tm^K%gmC}W_V)fuN}nF!GqKfaOFg62
z?9sS{nx{E5M|teh7$Nf1%;D%_&4o1;YrOS*wA@Td&~7cv-fwK1wvoF6MRvjPH7cJV
z<Z;oUT(W_dnM3Nv%+UJrl|vPcD^*I|mf2#9w@S6)ICUNF8=~0yRP&YIu{jIn<GjdW
zbNT#K<AUsbJ%!<k7z>OY8&PsVi`m?4RBz^YbcROS-I+`gKtjbFWeZHg>S~mjs4yc0
zIua<sVV8LiRYbi&qw<oY8&I27x_VT4nACLiXVFE^7A5nQ(|zm>d_Q9I?L~@QXwAcq
zmzI-gkw1Vfp68)7_K?BRxNQ><)C5f7EwG*KR4;@JnkO-NWpT_N9Z`6KxlCvKWKMtz
zg@lO1p~sT{dboAbV!}y_ca^nD{vhzYY-WNvJNrIK3{esxQ}ADY=Zctme>!&^&*#`k
z?eVth>g0(d)ch<USoX!eoUikZmTaX|HE1llCN;kk{q2D{P)vMnZoS#}m-U#MvCNOB
z41QG$tPNgih|Ky-PL-vRXK<-QX&Lt=#dyvDucr5Wq9~24iMb36%9s~pS(iQFl^lA^
z_@E3Zp7Z6H#R1JZ?c`Ddq9gh*p`L%5^U$w}qI&rQAt2&?ko6l(q2B&@)a?n+J7KoL
zc4`APTTlAZY=i4@{v79lWjH{iWxT0>)kdpKX)i+Y&7jcy0iU~vrUrKYocF8di@PrO
zBI*91__iFI9^+EG6=VXV_pf*=mhHwrlG2+L(nU8CFEP=CYPKe8UUm~db#?DIsdr|w
zpD_FJ)%0g|r!vWU7J;|1K>A;n3R{$j0{gvr-+fFU0r;}oLPi~O$*19Ezr)dL$I17(
zGKLA7Ci*~;g8>o<NF$t399JEU)i4NW706y%I{olPclUo1slAEh#jb?&l(-@zFWwWX
z9=DRH3aE&nH2kb|HA>WbplPtCkhht?f7b+$A&L|wt%dDp5*M^{w$YfmU#`@B`snAW
z7D`AsB>m%zS+pHj>y~+zlCtA(1&*fN@XKFCsw2EFiVmH(k~HcVLd2E(!wHR-Kgo1;
zi#8(p<yl8KLT}KXK67q3N2j<rk1@!0lX{Eh@BF)BarNR!KH&7AV}57-3z7LIcjvom
zX9#gjHidKcR{}EEN2sst+b>lb(tIwH#xJRrE~JwhTn@?EO=WIEk8*?9w7>Q^b-?b4
zi)D5M*_sk~E;f?R+W?i6ejPrwsK@LoPcJEl^Wt229BHrl8)v?-6;uSG%D*}E1HlHA
ztp3l{RaPnXa(?DXV(bB3*26*VhP2M6mSB8sEPY(k^v@4ZsHX4fpRJqI%ohe8Vk`P{
z%1gK+`K_`8EQW|Np4YxMocB8<*4{xr+{XJHY)LW6bY0@rEH|+C{lN3C(_lhJRp)l1
zm^t0zz(V)@l;`)tyoRz>wW(+4zgK^C_&s>mq=ft~Hz>xUar|Akk}AkPp8ZOEs;7x5
z6mTuyK(LMQ3yjZ@N&C+pn$!XPM7tpAp!Hdn)v*|=jk>V}$5CKx)!K<O(nkxwS*pL-
z))_9jnBc7~AM_h6)#o{4LYz#KqOtV^XY^>%P~-JMeSj>*wkP7zib??^LtOFnCMXcW
zC2SwlU<EG&4u^@_94O|wtW#Uh0MKY1gtb0!nf8Yvs`jO<fyO%NAhi4=%p{N>H!mGQ
zDQx?*w0*bbx<NX0?RP76HxAVB?7^GsKX)A$tb9W021$aP@TmkVauN)z7-={G{<J+*
z^3p31K4tP?Kb)DB3o#-7dFt!x=*aUD&@TmiE`1hB-L}=3>Z~RF&TJ{-aS*shp9em#
zF<}Yad2E@Q_1JP6R{R}!(lK{qpGxXAgTpLpXOStyM*K~1#R?#aM6aXqHyvxxXk!AQ
zonM`6+C~nTQ>fI0IPl-URRK(WKeILf?effE9CDf`Y0(aJxjZ(@>u=&S&(2ncfis6m
zmV(eVX{T=$flxt&k@kGWW{lr^SOmu)eb7fn`Hyd$@M;7nz!w8CdZo!c-&xj;#zZYu
zwzoZLt(@fWaXB@@y07Iq{)!j{B+<yk+Tq5|>522lfEpoSvG+ls%l|!1F*FmG^BLlx
zn|&&lO<Uq?D=FOV4=51dZckXQZ8h}YUWNZ>p&iwaZrpCATyf@16z#-((JNk^)D`eD
z>kUY2?vPUHKfamWee`&_c*b(p3PvR^WBu#-Y{G%dBTg$2a(;(!p8%zySw4cpOsq7U
zvbBL{Osd{{qi1VQCIeSL*XxwS*=+CI`}Ymcc<MPAs-8oz95CBEwiv6Zukz$Qg2xp$
zw`~Tgg*L7ap(i-(0mvwMX75An3>miuD(Eu#*eQZ}@?J+vDzyo#r8hZAC>AkR>Lc%1
zNg(H7rw#?9=jTuK>8*T*pe#o}?*)19-!US-wHW{go))Ak5wyQo2^W5bh62DbPrE*k
z;M~YSHi2FG@|31j7m5;F0DTCE2o)9u_dgE?epYrTBwK}HwKd{-Thoi3y&`70%i0va
zqzIHdow*T~Pqq!zeVm_l#y|AL8P<GX3vsF><8Dd^rSfoBc+v)t72{<nj^n8Yg~1l9
zER(*-K(<Sjkk91P=1&I9AdE)PRPvP;Z(p@WR|n>KKTc(mg1oENChZ*>KU)ARW#xZk
zmNG?p0*%?d<DHrB{OdNUEZ$5k5=;Tm2uov>1Z9V!>;3kx=mnCbVcQIk9$iyZ0VY!P
zOxG9-C&p1p<lTkBHfMy-uknJMGWSOJcs6ZQsxT#eoD0|f`gX{%dK$0!7!tN`OaV9@
z_bc7*IX%;RAA&p0+O^f>^)(Yi%D=agP-38@xhmLscn_1N!8%BI+>xjn%!6eZwcIH1
zmU^`uG&RO)24jGEZ}7^HTnOv<)r+ETq6IH+>AFEw)FBMqEgbw;9$-w7?&@Ic^n}-3
zEyv^Pg6wKVSFHxRDC7d5gG}km->afzGhQ3Wv0Ug*N9rP~H}}Q)(dc)*CJu^}-~T%#
z`X97~|Fw>1>45Ts#9JIa1GB^98x``G?S17U$rcPQc@RHh%G)oQoV6UM38$0g?@i#?
zgEL9t9HnS|#%p3WB-Xg!F%^%kwZ!mP<QKF<yVyfAI~hr-h7!o(Mi2ttCV4@6K$@s$
z6S8$1-q%u=E+ZEXJt0J8tdY=hXU$Mf=EPrC$~`YaZG+R#wz=vzyjB;bPq3V>2nO>M
zc&9t8fY)+bo`1I}K@llqv%}W%JPY+%{x4wOEkp4NvH@@LT_h^@D`~zC_$86mdqTHr
z1DNvRMt^{-Kv%=~y$E-Sg@97?7-cdk6MksapewM%B*Mq%P*dB1ANg+FXOBZ-s4cNS
z0Ba6{T1JCZXmCED1w#W_H=W+Y-A)n%PLO>mXU`X2+C-(fX7jK`AG+SaZW~~cWg9VD
zW|Ctc;b+Mq<pvn}AJ&N|FP=tHKje#<(n4qf(p+U>=+S<f`(wpA1R$ivf$Tl?Z$A^w
zQn}D4FQyO}ot2FMN#0b$Mxh<F$gB)3HzbLkct4md@HLom#^s>1>i2cniV(;{X{$tO
zT@Ix2fK%ZBR=2i_j|7rj_`-yl0hmK)wCxZTUO-UTr;qn;isd=dhW75d-#DlKD`m(3
zKE+aD0Fz-HlS%?mY0$j$mugcTd1$@7EjMI;|HYF05##_{N=eIeT`?#>^_S{9O{m$5
z?-aHV8!IAyeqJbzAw2Cxtn&LKDC^72>2aWC_KeQ^fOsQ8{x*mj-w@mAdlbU=ZD&YY
z)}7~-zWd6xc+|qKYQ&6!(x1kGq*XA}N1?(9JNJ$^Ai{rnbGE;va_2r}vRsX6RUA!F
z`pMpc5|Ax8loETM{FwMaA949v+;^3$W%nJhfC<^Y1zP-7fm;F{1TTgF?C6*Q8)_lQ
z`=3yeGvyHFlpQqmYMGg^L*>X!PKmUuODLyQlgw$TU4v>)#0W0_dKs&Pk-O0I#K0PS
z=17Ni$zOZGzZ(SH_rv&&DS-V<v|`$0E(1gY9}c4gzw*V!#Sj>}hFg%wpTm{_15+WS
z&}Kk)&U$Syg>m}Fh`8j`**8X$S319iTx|R7$7Gc^zBwZG;fo9fepNDgLhq)KuFJt)
zj(N)k>IDpQ>^5%5T_!n?DgPCnb0DMtor>$t9l?tEf8R3y1LjqsMQKP-P0T&nnMoiB
z>@oRkzVR2SN)LX!qv3fhV9HNy90|=-zPqaduw{~re0=lD)v<+zmr^+_roFK*1_V=R
z?`D^K*`*Ocf%T_`Mrd$wv=4dEESzp@ctzc8fJWvVJRi2RjADDVp%i9n-4A!*9%-Tl
zy@Bq<4&SLNc029?aPWw77mM<%7zSFDFY<|xzCGdxzc6E+sn=#c>7f_D(mhc$6XsGt
zR+GbPH5;^;8enpIefc1ZX`GFv+&pQd7mr4SmU7Wm)``ESFYjm!7Os)6_S^%WdGW`N
zLN1J^*c!r*@#&OoJ;1gCEe)WX>J!IDfdmQ5pK2CRCKZnZKa^WO(638G*<$b??hH-1
z$CW<KUL&C#Bo<=eFrR<?O#l~KEx;`ima_~<5+j?c4^2WWP%<QWAM>l%k@K6yKeUs7
zOGQK^#i*3ZQ`cJg?mm%(7vPRRmF7BJi4+al{_P+^BkQ;M%@IzGet65c#m<a&Bx{rS
zgJ^vBBl3d5pEYAZpLj4rRz8>I^EH@0K#G(8qHq0c^ZDDUnpnt#J0>3xk^z}DHh)jR
zKD`xdNxy_a^qbtIu_26#$?&-hFqVHRb1n!Xz3X3sljbekdjDIyyhqr}uYsMlF}tl+
zK*4=K9a!SWFRvAnka(+L*7-<75~kVUY{MMjU4tX>F_r*%=XU=h;<A5?mTl6~k7Me6
z1N0PHlIWK|2*uO4a8w~aaE&&zsZygy3T(Xq88w0U<ZBcK(2~i#*kUVP0JnbZrX`q9
z;4t&F9Y|k{0-J0Bi};K_8zG>xViKK700xh$z)LbuK5;}PNWJ{ELiFPk;!oV`y1;^x
zIaI6>K%6};1vGEc)Wny<DXJ`BlPy<Gc*$8Plc&dP3f&gu+c9lDz2o@nrP%2+^(E23
zg{@Zj&r<F)a7bp7R?0-Tjoekk`f@C|+rM%K0{jYY)u1lT_La?mRi|b3)Lj?vswMFV
zBrShUt)EE*W}8S7N~RM3*8`vMMfmxU%>lkSyKh3&h9D3c!n()6<cf9s0QwI{oPQIC
z{!f^djs#`l=hm6gHc6f;zRZe%#~*Z)Q=N)8RyE6cZN8W*cRfHnhDK)>5uT5X&8Do|
z(J)h>xlGnMVDD3`);sPzUW+@sYfPGHS`~6@HIDzY`gaW9-W72!(=eeQH_YS{T1LwA
zn5GXVV0w}7Qdt&OQM2ZCNut*cThs+67k0$VuaddVs(yJ+m8N%HL_c^oRH)6p3Gn6^
z;+S%?@1zdLJj2qV(|+kN1$sI<RYez>w}SQ?oRS+@My7xo9@YfzNdv&%&Xo*2d8A*&
z(oIxs2Eq%{yJ;ewo~dnHjO8kVrX$O5_My7Iwc^rsl~Fqe2o#Kb#bOYrL$WMR+|+bX
zodm%0N1n=1Q`vjD(=Lx1K`T652+n~nH`%o3*bh2|=zl#ZHVKl)uQAJK(yh7&rfuRO
zcH^$ePhcXhk34E1im87pVdoQZ#zK00NDse)H15{V<e_yr1*W{?szt2TQc6{5PCXu1
z^Fa3Tm~1y_1A3bE;)_V^WYu)`G+z9`<lXpIj8l@7Ec3p9;p_c>Rq)O+fU)Q*W(P2=
z3ZOzv+$A2kJaP%WINei{5eO;GqQ=WQ+Vp*uuU9klP_ITNL=VpJcIHI-tL;=wxPmC0
zI*H$g7DzcY_;snW1s#Azzw2?>2@H12k$ZD@y#NeI2vi<P7Cr{qk2=jB!aG086QUSu
z!8^&+D~79yV~<>tsb<T^Njyt3EUu;OTN}`YFdNFnvC#W{_>N_@xf%uZSR0%?{Ol5i
ze&4~0-T>EhtmU`|o6ZrH!>=jvIv-rpp)|l3l-LmEIVvXdXrq@e>lP#i=SA#H_oEIG
z<h<mQFha{uk1bgWB&Nz8cXR}3fM1+|No#Vpng;SWnlWSM`=`C{jv`}Qkq>pNtx|@U
z$2ARzH{&UK!Ay-c^w7eq%xbpgduE>r*veU|Yqt}oNkFuTiHfK2w)<?iuKBZ}+EeKK
z6=ChdO!eMpZnI_oc=IPP;hlx%1!S1&DstK{${qxZ^El+&mF4EA#WH`i-<^H#IGp*7
zaQV-|N<}?@l%+xS^})CZi;!V@Ty;I;WspgLl5NM;t60hvO?StwS0<6BbIeDb!2U-h
z=)CFL^%3G>6~Ro?e%qm=#M^OAiBZPXH}CX(LAiiG7+=s)NzIbfg7qScqk8KBcuu49
zcY``B9(Bc>uh1MG`q(XKUEeNT3*fh9j}f((x1zdC8V@ao&H$P3_o8`5L{2wN>I23}
z|COEgf7Q}|E3LdQpMwsIdL#f@^y=FO6+aB`X;9p3g!8#l4BBy<4aQ1H+D8&~z#=zM
z_!@zM)s{5gAyOL$5AS}O-WafdxhZ#|-hZK{Pt?3wG4w=cPhUI}YeWiPx#Oj>xR|)I
zICDsl3NYS70Sw?XHFOGvD3(Uql9Bfu2*g#=VOvuF;4VXb5-uIGxOvXyaJu3A`>)rg
z-&428@D7Hf5E1Nt$TC1#X?8pLkt1ubnJI(MJ0U{tlbS9WC@_#XPkec@ql#zR`2JKQ
zgDsN*M0O(Ce4|FFVPrsgFR9+{f(H%42R-2DEkJK!_QxhB2%1OgFX{yZ3Inr{l8&G{
z4}ew#KuUsb)qU-B0IoMCS-riJ<~a!4dG}i3Nw|IAJUY7HZBmyIm~fhFfmZ(&pb%&C
zS4jB(UbENW>jLRr^iM~^tLJs(Dn7&7B&lF}%hzr0YkSW7t(b9~FudU15niB>RHd45
zbqj(bm^zMq;oo;<Fr7Ln1=;{5@8MI|gBZoWE-fWAW9@zvM`Xb}a6;OKlt%{k;FRDN
zc7LKK-5kJ|5x|R|7+V4=oGPW2>Z^)JzfBP}N)_<Qgo6_<(3-v|5gluHN45vxzD@uW
z*4#(Co&}#t;!=^7C6%uSbj+Lj5+0aNS8V1NrU9p~>`?Y<<lRC5n25oxa34~4O&>d)
zp74L9C{YNapDffa*manVfw7e6)sDc37#mMPYoNYA@BO|B+~d9OW8>TRJtg6=Zif-}
ziV5Cwc~m;Ff8%jY3)?6OwmNcIULj0Y#P<=Z89>10U9XN`kq88t0y*8A?7A^uM25r+
zV4)Ni$Op2QFPkrcw2R*-Grp_+iQFd)tM^X3D6Bs%KeoUOs=>f>lZ&8MP`u2av2m-h
zItBqUSO@mPRgT^Xl><5_nFg}%i|_c%$KHs4GJG#qh?ygjiR}<4aRwM`s>QE$Hhd4d
zm<2jOhMOt4va?BhrXkToP*M4K{0C393dS9_MzRVD4VqhnnFsGqo`bw9O&_@M(5FEs
zV98oHZInb12-e3a5x4lzYvPpai*4(*W3Tp1JWgLy9Pgt+4g7J?_nD_2g6eccT0Uq6
znE%jF&?9}gb9nVx2Z0KeI>X;YqimwhKXi;Af@V`J^B}b4BT&bF1DZJ&{W_t&SX-T(
zvH-L%iZKNk*}r*gf0De81f#iDWT1r!H6bn%N7~hrl7`EuO{%hUH2z_dI+>-+^P&`N
z#MajQm2`PpGfvZ^-;Pu{iu5^%05LW0eMjm!8a?Xwzh2PCzF!Vzw6Bb&zBVZj^HKbv
z3;NPgZP+nvA6VF8OXtYEEyBe6rFpf4p$oYGc5EHRU{c6^I!6p}xQF1tRUMGw3%3)~
zdEHTEIWu-&X`ULh&7j7AIdylkBuxN{4XzILOJ{4ZC|H^KxcPCD?>5*KdlV8=sQJ`N
zu=b|ILBr!|FI8G!bQ!OI<1rE==Cy>q3h%CS9@hRDmx@zEwibZI-gHCA`bwrb)*P<Q
zBD8=%Zy`Y<qH!0fx`fFiOcL0%RodF^NOv`!;YKgLP|aN%M&F#pT7LA9PGakI!54k=
zz^8(5_`O>5hN)EfdD>R-cVIs@?Q`=6aLwuf?IG6!V_i(Mt%b|vDJ$j^z0mcvy${o|
zFRLYUF};TY`7OCiq7=QG`?79`<}`%0EPIqrM8i;DrvBbFq!49UiL>h}yYp=gJF>4s
z19RlX0?4&@)eOhM#pUh(HQzV`qiC|M`mzs#{g@7Dd-?C9R{^n5n^nFy(KJ-}C`wXP
zk0Y~SBCmvt(JvABW^iA&#vzY3hFL5HSdImZDSIy{qX!)U{%@|AqxhX{(Cy*4@MzHt
z&YIo?D!L=cj>YGHH7#9KmsTC7@`+HQ$7ZGJg{tIYb_&UhgR9dRwcdBJHj2pJ@*KCP
zNxb_aCt#-)s<Zdikif}b0^XkFC0O?+nHjrpCd3zUvKO(I-T=`sLFe?SL%lBRtgh(!
zPr^gjMUf7N@xw(yTKMOH6;@*~hLYt8YSOtEYGRVyRE#Y6HM~Nv`fI1pCQ490l(-em
zZrODa_`MP0Q9Ra*J5c-b6u13tWm+vpP<9!0G7f6tOV_-d?mZ*(sI=6KFDVPYe|UIv
z5GVxjzkBq2M&G{)hHT$A723Dvat(b%EvPDvAxs5Ai%?$Kl)io=W6gPXKy3^T?oD^5
zL8X6iOf5b`wP!kdAn&9q-cjXo<x2m?x3nX{%lRF!ZT<>$-jSVt{CE+#&)UWdCUfl*
zFKB$+wIyA{T1Ac9I`N>^9e!FkvxA%r^w}_c#41aT3kyTXEUeXtvLmVZqj)a*Fani!
z_y__?1?*oNHVB4(5st$qaAGYhV~1QURs^qzAE8GRb*M0X!P~Whz0w8_tT;|R03%=?
zraGy7LokVK_3`hGCOn=X<ytmb&CZLw%axUbk`7PCu8d*oGD^{r51Jf*ve&QzXON-^
zs=YYbvABLvFY;_mQYv>(!0l~@WI~yuQ}oA=V+Pjx$A|IJsdCmub~=;B1{3RPk+F8`
zgL%9BqDm^V^@0H+)E~VV_3k6w%0sb+txtXlu#8u)VRk>Kq>xZ4uqa4XwVo?FK06@%
zy<0CS&!{!41Y2BkZ~cV#k_LLXY3Ehr3Uol(QTW?pq7A8-_ng~_2#v!yy1h9a50>f8
z6=$u%$U?P*a8^=gz>1h~nbbMb2SS)vXEV1??Q17aR+6J>u(LD%o^<V1)E%sU<Kb0}
zzM;JFkn4mI#rKX%{s~CbEAwK)lE_Qq1&wI->^Qt<8Vn^=SuCCO;MYFB6zFQ;zPFtm
zC=6`D21HrOIjn~RgY4MIEjEw~Mc^aBQw8z|xTPyXcV81nggQw4$=BcQ@3Loi?(0cd
zZBZv+kA`LF_&YWAuMUvbT(1tMJOc>O-odf_+oBr2DDz9;TaXPK8$Dj64q&>Ex;)mF
zup(9%Y(mM86boioeS+~)j+iBu&+mh#n(O-lPM*rL&0)pBwxiFz0?+^cEQFg74&Bfg
z&t-&RdMM{qGp&dRwuQM1A8&0a=RQZu{euM^MSy~ht(wvPm;fnxXVYYRyk4>rI1xRZ
z(?^+O^BupvucLO+nV96AI)wiF$NY*PRRe*zp92gDWpb-Qu1k$v!m<zeO?)WDe|uqn
z_aci4APiVwU+!U1K5<mbDt#)uaHPof>uQVN=ifNh|8@m5Fp7z%pZ0@4{s}Uw^D$ri
z8_VEtZ>A+&0>1xL06!J;-&sX}`*ZMv*B<zQj#8+eefaxl|Nnn(!Ikv#X`@(E`7QOg
zxAyP-(BgzjM07D2@!%hQ@c-hUTMR&mi7(;WF}u+ITNT=W{qo`yu#Vi#x}*Q=seh-`
zqeHgCAWcStevA_TV4?o!zc%SDCL<Hn(cLX4A<^c*F9>~(N){=G^zQxe<)u@waMKI+
z60(GY`#r?bx8Dp6L<mssR5GNnZmC3|f$uCJdt$!<2aQoII5xil7mKBFEyqDh^hYzi
z9w0BA4seG64~qkISKlb3tTWWt`Vy1?&5;cZOQJwqlW*a73bpX__s<gntsTLUC?K4N
zk@NOW`<ve0H~Sy&fF|jS@w5MS`TYGw^dCRV&??tETDFpO0?aZxS-?)#*f>M41}P47
zheb^_PXImOh3OsCS{+X|Z^RF}wIP<;29FH%Ro>#sl#+rt{g+P^jUx*C?i4f}#7CXB
zTGKI2KKxK=`y^PnR^J$pt^PG*;?)T|fzHw6=QXzC?0?1$=-^_u)nv>l-mL_Up21R9
ze*jq(2Py@2Hy2jyLtPC}r>%@G&wJju(~q<oy5aT2Fh&9bvnxFln_6xZXl%8qnn4@=
z)%n2qn5-@5u8nd4T@+b~4M5U}`+!zUMfqdvZax5=`he)37U)yfdL<+!<KWtwulnK@
znt)#UI5l${Xn1AB(*s%`g0E)scGHlPVgB<yJKK*A^4~=^=Ns$ORk1m_J|{nMvZ@78
ztm&_*GTGcx;Nw`H;=e5k*NwxJx`#+4&5)pH>VF~gRZae)O~`dm0vp>hfnIljk*-Ee
z`gssPGd^qc*UF0;iy+G@;?zQp!gn}WtS^)ZRx)DH{kskj@1*D$I#iW6N<v#*WZ;B^
zUWWN<c`70)D1OGsE92YO+EPh-%Pv=yhdet1TBL7)K)sDT<6CeW6_<D38e{%ZZJj2W
zwq3?;zoES9RtwOjbCAJM+)dyt4;BRtma_831Ae>*e^;CQ@8wZ*4guzHPlK_J6D4_S
zKwS~1aj)24!1gCBQ|ub3p;q&9QZrVfFdR~<U{S4!ipv>e*aRjeA6cJ=DdcmrYQZ2U
z64;svez|sU35ZfJD??wET>3=+c8=+w)Z69zN?pWpz2y)dX(M9wF4K<60-O$3f~dd}
zAo_6q`;!zt%BIB&|DcG7_*|y-X2Rkw0fkuEyLw^W;S`Lwgg(F;J}j4DX?SG9U1IaP
z!JN!);Oqwb&&}OsVD$96gHTDv&8=b7ST2FxasniJkNTX}hQX@m9FugOIy>{<^(R~M
zLE_Ra-UTN{qgQ9~KR+?}_`CzDU3<_ufmskB8AQ}Za{P%hF9a^Bz0yCy(ufCP9G`aB
z^e|Cjad!iQnW-CC*g9khnAqj2aeR2X*UcJ|tqyZ|Y>dP1M=}5>S`AXeSxl_>?X(ff
zci>B?DZ>Kl8--xoUuNg~?a)5E@4`9x%^(ru9FUKG>Hnz`1*)`GUz-(zMcyWxlATJS
zasVGC1?tv27RhlT1b>2#{n(e==qWzoCmb_xbQ!oR0i-{+U@hZc9L0;|gb-}(54WPM
zFS`Iz5|<C^1x`|{^0^5P>nToKwAGWrUiS$YUJ^sM+}XNyPA-4n)9hIEQK#cqV&<|n
zc`xJ+QhEt=GUL(LS#!{l)KK}nFE(z44{E#){Ot{8WQE<Wa0U&;i*&ORPF~+P5!Rv@
z6yW5k=X)@BGA=RParUNM$yh>9MS%TB`pCOi;FWu!|B-=naw;!sy>q~k>pQw7#bDr)
z%K+m3$fNM~DPYzm2VjFNVBm$S*=2#RB|7*8DEYH-GIP59EnWd^e04(C+Cc!lAAl9C
zKo}ekbQg(vM*5Cb>c;wpF92Mx8+xf<xDMth2|y@{6_GO0LXNar^xfX+OV$!4JwFs_
zby>P@0d$+S<1L;tYUJ^2VSa1Q&TU3Ew*G>ZtO;!cv)Rj3j0xYdjWZzw;C9*Eq|xAl
ztD{XR>^ipd8?D%5UdU-Tc}AoTWqobi0%N<?q3w8__Ng#OHCSbQ_fZ6i=Cvkc%q0Km
zB@?BHzE5AH$W>+BiJkE52Vm7}rvazd^8U7C#2p*5rY)tKPxDh-%4Q@)Yq<-mZF_DC
z50B0miP4K4Paw_Zkw0@6So6LIJ@Sd|oq({;Y1vkhexReP;OU^AVOlq9qO~zQ)iI9=
z)h=*|N)Er2GmP;07WZ_scenZHazizp$g-bgBjXeCTC3<;OA$MQi%tVU29j%X`0#s@
zPoqRz=OyT`2TXRq=w<GqRHngfR20MN^yA7k-kSBF`?I87RQX3w)D*lba%*Px5aO*W
z>qrrW3nW3~e^ufpa7gwzy_3?md#MlUk2g5}rc+x~tfEWFYTlh@`*s-VyQ7Z(d3bsA
zg7dktyo!!V;CAS?HRL{_F?+$ve(+x_MB$Do{~18b$Dq)PQp_|mFsoy9zc_j!Dp*QQ
zh}Q*<22Dj{86|VvOg<{$e?dUM+<i}wa{(L-<2D2Y1ooBPGiIqSPp7M`_vkjBxSf^W
zqY_lZqZWEIczk`iCl^l6J0>D>2t0&4-btePWP<y7SiTeZAzJ?^GYJ%9;`R9BJnjTQ
zJK!O~;&838^a5O*i-#j%f=b8G#U*@|ljgw!bO35;)v2D>F1Pw)1ulxgX3LqM%@oK0
zYJTKrg3m_6f}A(E<`KS_P{-xs%LZV!F3S`kVDH83!TEbF$+}Kn5{w8eHplW}VoLA5
zEp3GkCQQg|l7FG`Gv{d7_W_=Fe@;n`ZES45z8R)H2a282ZJ3hCdFG<`2Ea2aEG89q
zYgX{E@D$_S!6nLKwJTB}D8KO<)8aiSG0@+dJHT<z0QqkfAWNg_c)EI*pvl(^raiW}
zLxmJEL@U0qt8g#`{m*#go#6}z$_PHAHuQ5aw=0}eWt-U(h3rSsPO&6+k|Qlal;lra
z_E|#f#^ZRnddYE<gjwd-_IoXn|LFxl&1LKd+|tHZr^Z+sU2vDFEhh>S+hZrTMS*5a
z8?@{V;4;N?XHm<AJMSP$U+&a}Tvar@4!Qp@zc^i=Eqs!*m}A15MiYTl5WV?hr#_)X
znlo7muHDUX*3H8TtMzzr=B?n%T=#uCnCSYe>iQ>@uUG)06kKP=oe!HDuD}<rUtAy+
zOz_%WmYw!B<Nc91u?)w|dKM=6uuA^1PTk%v7F3@P(s#QewjHt-_Y)d-aXy?b?WJ`1
zePqg%QD7c=n<|EU0}aBmtG@1dE+6Ef-CO;^O-b=^x{;$o%AI-2G}`Zefl02&2WgCt
z+)NEYKi%JC{Cs2h{5d622*ae&s<FUL@&Ly3s;$V6#u9<8pVD@wHqaQ`{wUqNhTz9Y
zBV5_g<9=-0$GcJ8M76xT&qt>;85q2rqDtMTZj<ZVqf8U4dt2zqJU|J$21*rHX06iC
zzHsbgWIqM3d29^lbDW%CKJ;!8EoS#L72kg>c^<>yW8XiI;U^E+uemWFVTUaWcoHH7
z8$ifAuPVV=(VmWnXF0L)qdbS10eDDM0$%tW%RApvtPGLuh7Di4KrMV@@%I}Ci$1(r
zKf^FvsghB5?s17y-soZd9wPC12B|DGmMBECyd8!A*@^InIf)yZ5od2!0?nsxun>a3
zBB0(POa!^Kz0lkY{(noup$uspdh_-sULKmUTQOH{hxWE|B(DTa6U;?^xl+|cA~Y&O
zu(+_2H+P#Ztz1^)G?Ujl97y@BlIs$VT(%XpXo~r2X3i_${ZPRoI(R^N$xjLO=>sxL
zNu{{0iC)xhKc;aH`GyF9BXVsHe+le6hx-)(uEMCh|KMLpyJb<@sXi!SMrI~IAM5GK
z=j;+D%gGvfTAuy>)cObM{0FE4^aM-V%E|${Ec+Qt1Y$jzg>eARBX~PL@=tTmy=o!$
zpnuUnK7yibCls=37WWI`G>dC~g4xIu9LC1`^>A<9i@wl$0%eeTcD7T9Ch=8vupWbs
z>cPc_<jbAA!6FqZKDI<33W;^)oJYN7r${^|lL#8EgI#8amL1|g!ibUI>l=Ql28)!c
zq2dl3RFOwAi>KR?yCEBruQqMkJ-%~4%TFGdSLtqVAi1Gtiq_4R^Fm<Ud-y}lcHuOU
z040ELgFa!>!-D@p8ZwK4Cizt+6|*^RvB7jqXHeeUcL{^z*-}<MPbxe@o@bEPc!xh&
zxIu#;{AQWGPN_4eiww10C{q4@G9m57qHORizx1-ARZQszTzZRvZu(3ydMswG@kIgU
z!S7o|7cS*ZXF;P|<cy?>VS>x-RMAnt&gl^>$2?xH_inF8x<zIbNZS5Xr9}dW5l{uY
zQ#4PrB=vTnA*<!fQw0^;_mWQ&5gun=@(Qel0go2Vj2bYJW#Ov_C^Ty{Nrxt^<ZX4y
z7y}?Y<$;w;GyCIK{B_H|Bk-I9N1S;QuZ0FZsZSDF@&&tI4IIc&iTI(ki|CLXz6x>q
zyGCTFR?eWrP&K_Il!}Jzw{Ss$!KxOH3ZW#Me{2Den0}3kA?p&;!$_Y8LSuBr_ejbL
z40LPK$Qrlvuf}Cy47kcN3GDM$uY(+ePT+S&hZ|h%Rx^U!`EfFEt?ZCrfJfn%PlOh}
zQMl`2UT|DgDfBaOc*tSxYP@c&39Xi4BP`6tR-v@GHDE{uXJg-&nEwVigO7Ma{gSo1
zLD<t+*^bgjMiv%XkINmtRW(d5O%PfaE5~plf&SL1x#IhhIgO75`a}ibLOI~>f@}o(
z*V4j+B!k{H&+NtC<#k%rSc4hQ17HYGxZic$b#<3SiC_M<qIdmh>o!ISvMUk5QC~ws
zDXe{(i&15J`DM%TZw5HFzwYX<ALYO>IrIBV7=gr}fSS|!_i_Auw6y1k@MH!#vbPcV
zHPwKrklWQ}1GQkWtobF*hMDlRK|@$ShNGl)_{%d^r>B_=-HrY&t^h#exBVHU^Prd;
z6)(>)*fq!of8zN3;*+-_>{O^2u?!?2zkzn85BRB%3l9UC?r{@<CiR$rM*mczk)2<V
zb}>GPmljxvUFa1%p51nlMxd|xXvBd_^7NmVR*8^BIhUFP`2O8_(BV89{cYV-nVND@
zxZ*<g)*cvuE#Pa^1q-bDyP(A}!H5q?B4s*0S>Mak_j*-y;kAVpD3apJr&M3^p^I!=
zkh|8mBV{_Z!qc{1>ZV%kw<9Tsk!g~gR<LW=7jFS;6~@W$|6%`SzHMLIaQ$9gktem}
zS2Dd>iC$E)!o7np2lVbTtt<p~&Xsg}f-F%i3|p}+2V7R8+y&pla{T&oR*#&D8fCka
zD|@d%FRj6QcSKBA`h$&`qukHzo9C@oee^@HoAf>ZW=!VRFMQke4X+Cqjl#KAsjGIs
z{x$3JV7&8Udb_0AY7iK+z4TVK0T%S?RI|%M_(WSg?J^HS)V>J<qE&&P^{wWbfJb}u
z)0W6?6>J9qFZPMD1VxBB%?#iY>vu&^6-fER+-}KySfxWK83_JWBLyUx+d(Hu9N`K;
zbWK8*lqcRQj%QXe2K5!Ldz;Xzv#JP6{_$H8FZ^ka2i(A-%5$Ux#0V9`A(@^2I4Sq5
z5ploMJg@U+_u+m%A8{k>fEyTy`lhbzB<ujb1~i(Nz=ZsT9z4U(kZ_ra3dXc0mahjH
zgTZ7av@nJ#C@)}(w`SGqj;DS!X>Tz3AajL2&-PpY(0H7sFQcJQ7e^KlO&U%#zIUP@
zYbz_I{_}Aac;~5SG{nwQ%@rw30xj|jkLz=@#sW&FrHv`z39TN;(^tcY5BrpkJ9+0+
zSjtooPylF=rG6%~s4HM<dYZHrMpRP+wf_uV^X(x##iC?HWFJ1>cO5pC2=jNojc`*_
zjIFV%sg8b3ijvOemj!`5TQUrK5A(jnE-{#;f%U%r_CdO=+x^$`v)|+$=PTZ08-n|(
z#!5w&3xO>YFB9S?@A(Z2KIFT;c^Vo~#<2ef^eU^KH<xL3m~h+iWu;4U_)x{<=Hc>f
z)nh_n*t-(uqF=-EPthK4d8s=FV#{*+=uM^79s<e1ioSBkab7k94t_+%>7i@)QL9G@
zbqfOT6Jn6INo1Z$OBIsGurcsF3r<ct2&pAeVcV3mDsNLja3SX3VX-R@_smn8?|y;V
z873w_p2aMq4#IK|?+f5Ia+4Y%*-0HtSK&0+adVt5?+Wc4w!z<xHuH4pf}wjnOqg_M
zMKKZ(PWg0oiw7>&5qOpMQv<4uN*mqSgScWw@9!{3&Cj^Ht=R1DR+nD@WKbClERM*z
z)UJlT6W0p#DwPYxDso?3&XKII-n;_#BD%$T&u#PlS!t6u>~&QCatb2>WpOWJXdcgu
zyP!udlxgP*&Urf_z|7#GlHtW2j^kb2;5Y3hD#zZmaM1F1(LsM>*?ulA<{vvK2xlLC
zk*7kh&r=PCn_SMB3=AEg0l1W32J@)BXn@$TNF_jmHfOWgUsjsOF*~cKgfk|mH8GIl
zAQG!l)-<@%sc*m<*vKF_+oTHOU3wXOSRI1p@Pv{9@keUI?%9uC;$?{)ufWIXdU(eT
zO+i>TG+KM*ncAJL(kk_DG6q}?5bovo3Ab#fBzOuZaVI5|Xp2h3l_H{bXtrxzE<cqu
zi2zZwI-?D%pASr9x$!nzm^qtS$ui{~BML!}78opiEGx#;{1@%zH^?H6XMrv>`PJf7
zYmEy8d<eHiW~qvk?9a6{HCGe<Ju((mMpA^o#U}?O@jceju~{c|$g!F-sr!rN!JULf
zp{!U{qt@L5-1TM}-0t>s0y}%(^v6MVyp59%T$q~9!cTFqSHkT(u%gZMBO-;%r1uSP
zp)0Z1h&$f+9UjG~#s!oDwjbYy=^vL(w3-&{RGRl5<F%y$1r&~7u(Q@^f=+j)S`~J1
zTYGyJu*qb0;2VW(E5dvbSqD)F$=JW_z9v3=%Ef1P(-(jm3w0o;O<}Z8>xb~$WZzSD
zAqr8S)L_*KGD61e7oX9{9E5q*6q%3Hkr?o^ivU12<RQ8RCX{+ilClbxg_z?(weX+9
zD|RGBJ4jW}+~6GQ#FMhq;a}f%CdKHMO3@(q>A|H4YhI}Ga_&=qGbvpm-oLgxZ_j(*
zq1ewpH}LW^9zRzd4nz_0*<Y0^BC<$vrD&Aagbm#j_63o}bI}?HTgNJ1+?JK!+WlC(
zRkU4MMZ=G5neDWY2vp~<w%=6I-zn|fMmZJPt^ad=_@ttC=J~e8&|Jg(Sk5Z1@7O#f
zxxW5AT8Wtu>3^UI*x1&E+uzFn$B6NNz<4zQ==)jBP0Evb+fjlrXxD%=9I=(048XXb
zZ*Rf{4;KFr)0wG0XiQ7T_uGCsHu09A*62eAd0v=<)?J?;=EBU*nM8=Y1vz8Ch8(TT
zpMAUOmv3L<(1UCA+jNI+c`M3fx&6?RJ9@dNim3zr085A!8PQ2F7Jw_a+{JgY)eX`A
zA#-~bCkA^t8rW67-g&*2KcG&fLeNfyOUuUJkErCL2H&i@q8soHjRGdCfcji;a3Yu)
zGX5e<mbmo+kSQJ5i$X5prRHO~(ZwGCnJ=3qQ|>vZ8F5do4k5b#uAi$$bvNkdyYyn}
zea8Lq-dX^QU`xSYOLntgB1Q74VWq8|HekqSd$w<6R|oR(@+^GDdLa-g#7R4v1>mjb
z*h<+mdhswm!q%wn0MuUXB+6c-&DaY-A<(y<sv~sDvKJMUUwqxYdzM?DMYr#(jBN2j
z+4@uAtQ;x#HuMtU5F#pRUzU2YCS`Ugu@H14nl}gCG|UQ1Rk%LVn(0)0JC>kM)KGUG
zNENW_nt!)zq7NflE*E{tQ6s8??b(2#`e`BNv4H`1O>xZveqKrr<F+9U0o=P^+KV}o
zd-8bM{GX$Ek02;Dc`d>+IRqUEJAgsvfT2y5U{i#p_d{6o7M5Xuc%`+>LHP(u1EXa4
zVJ?C=PfL05BVW{bLeB8(x}@<D{pzia*CiSnr@^m8;cq6Y%$+HshJ{(h$!T+%#*y@)
z1e|Pz@3_BR4oQ8RyCD3jB5%sz`Iv$|e41+b%;%H%U&Yp<{GA9(84Dp0ia~Ea${aOJ
znDzt!EF25&rzr$H0+Eiz-ZFBSekvaq#?jmtvo{9s4zut2erBmGEf%h9ny=8+-_=VA
zEpAU{n&~u>>AM6d-Zwzg=s&952>lL%$s)+OyND{&sZkKLQYlD5bVe#I9CS}4a*REo
z?qQ{+tlO^!)ue6Ls&<<LK<tkK?7&Zoe*Anjs<cIiKx943ZVl>P7WLnt;7i^W&a?o+
zO_En2w5_*nbcc?tq1B+IwIcbo&P(nKk;=j7_(~)jII7kVQGc*#4+|4n>HjHI4)@-c
zy|c@D_Lb)CGz_f2xTW?$gGt_l#cL2COGF!7Hh6e9pjPQ1a2^Yvk>2=R<`}|x@tS!~
z>+7VuxCAz1EzVlq>4Vze3kxiB)|4YqgK#@fd(F-0<0jFn;Ie1}(@gy?NmNO?LTAfw
z9y4|X8cWo??i1!zVU_&}tWV4?R*-q$je>BN756^eg0q=oDs|t+Fw6cLCeFH{!x?<J
zDX3uw@Bu48TUN_A_;o84oOfQq1#&Z`eB`1%W;zL~L~SB>qv!W$bz`99enN?3We*6E
zHL|{2Lxw+?wZCSXelH8M8$o%I$XDih;{i5nB>4!4n~0nvFY5M6`s_&L$2|u!#W<Yi
z91;kKeYggpn^8q5lWm|$P*PtVNYWG_qMds*ONU?c6gV6slkVSl-*<TtIL@m$xmgtV
z{bc9cZdaY~1IwkcTr#mJK&MrvpQtFtf16P`no>!<3NmBPK_N7bmR16^t%@#ZOM%ik
z)Bf#rC(#4~!f2<&#jMGgh>w*xFOJI)_EKV>w}UOxL|^(|Of^}#yALcjZUFqxhiEc2
z+xf&Hobnmy7Y-o%jD}=;pODhGo##J(kbS(<^rkD}_eI|*;0S#KINziFkXjxk2%S_4
zU;SNw60W`p2^sOpx0prl_5xfN8B#kR5jl*N(S6&DTjp4eSxqe6TFGdVq2pXLqghcf
z)?rM|-X9Bf-+sJJ>6d)PJlesgi-U6iRLa6#r;jTz#*fHb09)4Z1eHApr&srBFeeZd
zZ+_C3b}jloUZw?JxftqX4Dj#*Zq_6<TiR6nAW>j!qRMtvwmg*gIA1$a7C}cRRePQe
zXag_-+OL2s3H;D}?&4r~)rWwHnNQ>VqSmNs_4XS_HLeQ@4^^N*1Y#yD26-loKFC3j
zLOikw`t8WuDN2xoFpNH%2+23b>?9Y<v{Y3P7pd;I;n?Evt~5kJ^y)~JkqhDBwxTHi
z#^CV?FEC197%9@_BYWal_~YHGk;X->VPnL^(fmZa*nY0)O&TEYPXDY*o|ybR6WsWw
zG&QNZge(XjAGtqfEURwhk`FA9ZjsQfB^FD;I-L~qhmzWKpsHyBbGrT(lJ%!r<RWy-
zG?PNXpxe)bVjgcZUYUe2nv6{6{6EUh0;<Y(Py2!>C5@DHhm_Kt(jeU+ASj)i?nY7?
z1nF*&?w0QEE-C5syZ3u$X3flZ&Y5%8V!cb2zPj1_dG6;Q*Y&$Vx4WNs{oe4;s3SOY
z3TjY^2)#TE1-HRaE9(}dxO+E;+zDW|1vx0d{@L&|2ef<j3v&#Gp6jg0MmLI_yFQZM
zEy90v5#R%rM%hbx6-mbDrK}(mX9N#<gMM6$^wQbRY_(k4GG!ZyPDM`S%ks8L<d+o2
zKuI5_(44laDk@ru@n(ZVgiiuQA*=~1tZV%)Qo+*FPZP8B&=8qcU#t0-SG)({z5HID
zzB%{u@8sQ#Dexe(UZ2(=P&AVt+|X=An3+t8#;Pp-LBZbTHVHc!1QRFN_736PJS&|s
zl%y;_7bRf!GS2vU#O;>Zg`j%?O4jxa-EkL>2>1<RsGLAY8y0=*{`Ua${@Q+3H()6b
zVmC|D97qYBW8>oHHLUZ_0!SAx3SgYYO7GnPo7Xo~_l61J9F*hS2BKkFCzIek^y}}#
z^wbkZ=QyyLP@=?f@&W*u1*<xLddZuVszh6?*F10GakG^m=aZmmicRdi3e$eGdI}zn
z$#Ou2t>_M=MduykkS$N{1j2xP4YNgXOy~Cq34Q(}fKT*e70I}+J_iSwMiq5e+2#O6
zJ@2RvO{>PDVE?NX4yscU6{rGJ;{k}LjAtri9eBPJfp#pF{`zQ&Si8o8wW!!McSu?g
zx45Gf7^U=d5H|#FcPY+V=9=AVB^V?@C6(ouJx<41mITZ+->RUAEZa8+(g^R?r00ON
z-xLgsRw0}8NVrVD3bm%zAQ$}%Wj`%z>mO4N9Z6q-PGvmqi867XFMtlsOa+lSfc<@x
zsI_}A-~fFC+C5pYJ=h&}tU3a*K9ao=3djPxtLilG_cr`cJ%?;Je=35lVNJ14eLvNA
z97e7DTd>CJ14192%Tp)gxyr3Dv|_2&Ha@7i7-BK8EpP#YP4XUy@{cY@%g+LBenSOJ
zpo1^C%Q2r}+Sa%$!#XkWy4Yv$F@k*IShYfPe#)T&tUV9=JMr3IWWcTr?h4~^XZw8b
zZ6&}ScCNcN$*9#i-r~}MxsGD|><sMRF8MvJ;?UmzRWbh8w~}74*M^J9nW(-ZMMhDO
zXV)T@pp4p1_%qEB|CZQiHfCW^JYeRSE+lZ4*=)xGk!_qLD8512j^owGngwLryc+yH
zf8N6VrpO0c+?`fNn~ly^NMM|$RhWl%HC2ze%%G3)_6f56t@QWH6+F5SKdP0OiOt_%
zm{s;Sy6R{V8THidIEeDQJn+z)cdYGoqyscI>e^kT3z%GZWuxrhy1nYvp$}1KlC)VP
zh`wu47+O<YApCR4d-O{{nJuYtXa}>xq_`_>ff+2il8wfd>MD(LyCz+=QeP>N_^EET
zuE_iv3&&KtckEL;pc^}iQq<0q@~tp2&%U}X?lnw;PI61xVcc`Qk@5VUweqh3Y5_qB
z7DSKg<#4^@QS(>5kDccMRsdRb$u;Zo)pkE)K)B!cIkx_aif`(6(FC*`ta;`jF5oj~
z6@Z#CjFAznxa<%?9V)7V*}8##dLKV#a}R6f>(p1S2H~A;4=Jy7nvG#h`+C1h&0Ck`
zXC{0`Rw+tvk{ByQ80=!BhrU-0w(-!F&J@v#^2RI=lU`H4m=C(J2MD?N4bEMLcpHje
z<2j*8Cb%m*nat}@LM>R07QBH|T@5j6SIGmy>wV|XT{|rRHY;->vxjIE?Ck9VQ0*$W
z+s}}3^3UthwM1fbZrU)$Q-v6EjC26<RVD$c^lc{4{Yq1mgEbStB!0nkBsZ=o(ttL<
zmp}~KD9ssW9-z{R-U?J~1B930I!)d>rx!Y|0IGuvUBS{Jko##2Os~E(aC%<g?n?mN
z#lp@`DO+GnBxdfOnMv=3m&`E&r5F16GFW}nqp&HFZ0LYEwk)N<nId(C5d929;nn8;
z@AL%81Wlk9_W2W;%<oq7fnQ7C&$S7sop7%Tq#l%POKru@f{~XE3Idn|B7MBin6MpS
ztliD5?<NTcdNO)4<urk^B$C&IsGN#0UP7Qo-2eC|42`dxwN#_R*LAYEUZVwQqF?#G
z=!(3i2x<#*7XyQUA^i@J&NFqtT0js^vnT=CpZt2Xq^|<o1?E<ooJ+9_piD&&OS<)|
z2=xA=39HZ7W`45jG>C@NfL3ct;f>}6G(M~XCnYosKQcBy|Gg=V&o}=ki*Hv8jl$tc
zWVt*0&i5v^I-W@=#zOc8@PmX5En;=FxKuh&Fi2owMH+)yws)T+GP)K`WM<XKC;X~)
ziu*vJ%S`M-^0-`pM$a_p(aEwD%DGVb>pKJPb~9DI7V6iw(O;O$*{!aLM5Q?7YVLGn
zfwZGB!Mt8VnH+y8HH%(F$OgV=Rap4S6eMnWD`lua{m@u*<bCGdNk$HKSbgSv05!E9
zs?{KqT*Gx`-^#~u^F1j?ED~LA-5|2A>Q7&HH_2=fRrAb_gOJ)^`V@A`Cu?|wNF-q2
z0#OM@sxBXGc!97)>VL*|qM0rEmAwBMY9>+e?MXR29DrAmlGYt8)RxhU#&UjsUztxl
zYyq9uFS_ic?z@cx10QWg*1m;{?`MR9Br;liDtf=F6`=4j#9wp4pi4jXc&k({BIXQg
zkD?%t=fNGtrG9v4K$Ss%iYYK-K<q|ZU8VZ^`7}#UyX}ehXH+yd*>4;}StMVD(h&@3
zrhSejPUprS!T3UyjmKmV@6O=OqJUVe<iiV&YpW(8uG!DPMQW!_oPRqh>>hYLL-r01
z-d#T|h=0@?j7Bf_9p-u;yv_CdZ4SH4pZF^B75muxyxj&-NF`Hr@g6QHxm+1&;VmsD
zHZ654V4zu+xCz8u-`#&pU6eCDg*E2lntzHKG>@;kasaO3xCA{{DM&Y3^+`+iQ*v<~
z`{zLGb3udd{E!gkqUJ4#bnD~wWc+fJ>nXyvz}+w9t<rdx;h$a%-9dg}G0}mIweCly
zvIRshF&77%T(o0r^jCnEd3U@zW19;u_aq7Z3d4HM8k}=}KgLDW_IL2(lm~z4M!{s|
z66k}JNLZ>9(f>S!yW0nL&wTy6)u%|XS2Lg@__VCgiIsKEr_L49p*j}F@8(LJU?1~$
zcdSAtRI8z)VHYb;-yXQE$R0#!oQ3P$?ode8xzDftAS>j(GRK8?5;lkDLi<j<B0{d_
zNfk0y;}C>si|OWGmGXU5I<w~9kSMqR>nrNMfY#?+L|EYf#$;PTZM}Z~tHtgyk~kXO
zcHC6sK0vhauxTv<>|Sw3Mw~Sb6*OCZRwIyNZN!Y56xznS-th%0#Mn<wCHp51*qPYD
zhs?8f7NBuSJo0MFhg(yDxm3!$vUb|UlfN!mZ(O+ZD<wQb#>Q_VUQCjE*3DKE+WZO2
zGxoc#T(4R$rnQ;mEKZi#-lPjR8IMHe_BJkbz`U>uDqVa+1_#7>DR#t@8(+WRmKq||
zeFd@u4bFnYU<`^)pwuaRA)M$4_ruZm1ij$BZVpUf)SxQ8&QLc`WYL>C;Z3+a5nj>r
zpia_p_L0Q3>)Pk24#54cv|}WQQ_B4YN8oDFzS3lf;H=z6zw4_0gLNx23w+Ddo{A{U
zc>-5Y^#eblBR@0&8#?Ju)>RFJ_6+`Fd(CR3Y0qha%L}c$dIs&@#)GU8l*3iO^KSHD
zt%ET~Ko*VbS6gAYbmY=m|30&q!}<=sMP1?*;Q=2C1D4Z{RY`691uH3z4nRFE+?j!S
zhX8)H^BuwDK}G49*7Tuk(Og5LXZ{r!Ox>Ik2@q1)h9AOggM%<8@4IXN&t2!m<=34-
zXq;>mGDOR6=UQVfVD<YhcYwl-@CYlI86T9{_<lm(8PDa_IPuMaFXB?L0pBQf#_}aJ
zjM>zUSwBKWZS*prZTYf#<`!Y`2K_px`;|4<pXhdhqjw8I&m6#Bc*=AQtzX+3B|3(N
z=ubu_&_B~(z;_v4Q=Fbp5D^JDJREx|Pdd{MuekKyJXLaKk*Sn9D#-oL=Tdo^VVCQY
z2-Z<arlBB+++tcASv0Vz$Wzhp%;k4q-lU5#<@HaB$b75v`-g+F`f0NMM*<R+cF|t*
zvSzEtj7bRRElw-j^-*KUHZy7z)BMpiLI#t?1Q=px+Pv1<+_ky^WojZ_WTV5L>yQ$0
zV<V?hL)x45i>@GtCgM|M8uuupC~pSXu`#JXq^pJDkpI<na8koOMBYs^_B*f2AT*2P
zqdgoOa#DxC+9{5Lfz@}^D-uHD>H==I(kU_*Ld+9hpEe7S!28KoG}cLEJv@jL>@Gxo
z?Gs|V5)ncgZQh4*Dntgtn=q3K&mj|dU{MZBvcH(=Vw3m~3`AR5)9BU+*jOk&Su_|Q
zxTv4Q1rY4mXku;{@!_vSNCrt_4{+KmCU4%+<RqMb%rvhMP?&BPfWF=+J-8E>LJ;DG
zNlaWS#(9l8O#-9d3Z0XW{6@d5mr?&UQ1JzqnF$=As-oc2FH*WQq_JLZqPKi4W{6H;
zcu>~n6k#Ls8i*C_DEyzMGpuD7Z5TBFWC}XI)(y$f3GYkgt>wYhK}$h?OrvG=xrus-
z0V|JCM7k_{kYcK-pw+YfUHrLZcH2_br$}|CB|N_hE+>RZzUDwvO>1c*TmANeasb?f
z9b-KDI(R}LyO-ji4N43a*p7$7m4sr{bXQNO1*q`NOMwfhwfyAa9_+XJx27J}kMN4Y
zApL~I=ffX4i2blX8e&=N@=SS)T>n7?8qpD~m(VFp2_X3P2rlcs?}vDK3fVj9xbaWJ
zNW9U|-tfanfm2qhTIe+*88!h*q!^S}kE&jSpt<_!2*|}1@*r?zIIUI4s`*0A*c2H<
z8Nk>+0xi)tm-@4N;f{(EpUw%dlk?u2dackRp48`ez(TeknN}ol$>WaDQRWT=t+6k;
z=3jAG>{8}VY@GDsnZ~xSk7ji4C+~TU&Uln|<LINd+2PHgk|gpq6T4boqkE(IT$6^m
z4V&q|@N{G)>k$_dqa8RdYbDN#aO)+4@JlCz|1tGOVHdD)?WZr<$s39JOHlG(oxuP2
zh0iNLA(2hZPO9T#1)8U12EY1B^djZz-1}|l`L-_Vu;D4Yq!$ZP=^SmR^8Nko=2T-=
z_DNO5T#fYCwTed)Ahs`{E$MaWlNM#!$jP+pQh8qA8}pKap{HXQO7wXWt8P~A31LCC
zFsI*_JXou_PlyVp+F7a}3#yG;%;Uy6tE;oCiLPE(j@@96jg19fe(+-!oiKiJ#1O1}
zdg7!L3FI4u<G+)A@MdSs-S=bfM(Tc|_k*7REJlFTxAS7ORlqx+35-V&FF>%B$#7VM
zfQKuxU599xF$&<p60mDM6pGDIKv?WXL?J5`8*dxt7d_90G~x{Lt<P<4s*rQfo$tp0
z0d;54Rs)`J2~^ly<)~pRmBvN=rq=4Wg6Hqy_eL}PlAp#;Lg#06^rBmBKGp?-nVOaU
zNxf2g>b)C19_Ei@a(ifU&8|+goT6Nldu=zx8WrOu>4OPp6ZUtNLurDow~%K&x4#X5
z0>X>sSpcwX4oJO+e_kHcQ>Ii5v#<($VgtKlMuYpn8vW`@gQWVnf3FN!r=E|<7ZP>I
zBM_AM=;v<`i-TH6&hy4Nc}@p#v^#I_xbqyA%W2YB3^Hxy)Dk@)!n|(l5EjdM2Z#j%
zImWd&oWwhX7m(Sd*AV_1u3_NZqXSF<=~G-KXG;`fzFC{F*X9kx>&rdNgn?*YBZq(R
zZtOg#FDm{`S0y+>IFW$#_Q8QlAx*$?7=*F9R3IS*p}Z<Ajvhjdhb>N6aWzjrKbTp;
z=4-z|2O-nzV!;DHexj=Vu({U;k0ox3#hVZK;aslg`I?a(jmIq%IWM&J+=PNvn_bzn
z9(3_pK6s1T+t~bO9IrN4H-33Iy0(u>cyMkDAPcWS<z8Q8)jx&mTN?{2(hLCg+`+_S
zBpkg?OH*QqwAHFL5Muq|5uW7*JHO`_LuBYYuCLJhg-@P8)-6xxYgXmTJm2**AFs1D
z+G@Kx?M=%!0C<EqJAh%58^bl$p!Q?o>AE=4KmrXi9Jsy70hG9MqFP9wi{|pzO?0K>
za>LYVLQNeShRwslSXSe}DfqutJWl*4*UHsuSE?HP7{)TKCKfoC@m3wY{1}f0u9ja}
zAyDgM-IWo$^9y<mo-g|v0cC8qQck~gewhBnD&Yxn1(38Q1O;`oiFH0h+EhO#140b8
z6h^c@a3-g8^-d#N)#ubr7T7o1rgRh%9Oe9Zyes>))HpIf^jeg3{)efu@mVT`gkwlV
zgra$8!>`uKcDE^@_RAgj82QFIf~Ty(9l72jXuDo_53oqmaAt?#xO`a;LKMSi-g!a>
zpTb`vAK6=bQJF9$KKpx3&OaHT`=}sN7IiBf_M_5a2;F`ll6+ch)aLz|n}~i{25MR5
z2rFPcRy=Z$<bP3tA{GQH-7o#ftu|}qP-#$drefB+Hy|p6KNTcs55CSC&6YBP7tWaS
zu({ZuGFbsu)?~vXU?>hh?>vjs$Oo0wc&4~aTnnBlMBlSMf$TY<X+#wcsi!{!`RfES
zf;T^Ga_c^A^{djyvEGWNs5M<nyfNxY14C3nx-W^vX9sWKKsdz0<IN69JrMjXf{ry)
z+*a<}G8NQ$jaj+J`p6~7pOCk(VAUuG37|#qV6e^-@`24A9j1?_Hx3p6D;oAHOJD}C
z1jt6wVu%(Pq|t)tQ}s-dIwXNJS&5sYMydWG%uKbxJ^DkAapVK<HdI5^qE|WcnkcxE
zjQgDzK&#zakBac*;=*F_T7F^=^UC>n*+VC{e)v0oBhTw?okqu0sC8>;Bfsm^K=(zS
zNH8TxF?-7X2P9=~+c7nJI%(VZY43t(OZY*BqICT0g6j_`Tq~fjjdfafnISxiJbOzc
z69n7k57u+6a9wMtRif|1VuvM3!r8{q@%P&fvcbC6RoxO9XE4*hZTAm|#7(>hHeL|_
zr&mi3V*&wD%qX1WmGq3<N)p;nuVjEnBTnf3Oi+NaBCHYu!CHDq5NcEJOQw`_;*hH!
zfDW`r-Rbi-l3x36vRHF~E3)vN$8T49^-^-@wtd25{TKhjCFK(){$yopZ_uj6-7C3b
zII!qHcB4Mu5`ZDbv+lBX(JoZ_X;=X%K^Hug7{JP_Bpbz&b@?G@I7<3STJ(e^y`!Ht
zkS2t?YTo(orUn`;d#Y(sF9ZwH>nbFqHBu9lVE<weVIPf-0Ran36*+WXGge|aBVg(0
zm<fgqCY>dO5#H2e>I(k^5x_>zjy_y^Ke1@@=9HxoH@^ex2NdBo%UpD*f8}=vGP5L*
zZ2{^2+kQpM?LkfXVdH7;Vq=8o00E9xg%n|tkwF&dr$wY1WF+hyax!yM(AVVbi-+wK
z+n}bHkf+>qy^d_6UNk_NxHeC*I>-riS_>j@f2{<>Qh2%yeQ@x=6~x%OBRodU<E?WC
zZ#fVcEC$uJI<!@zb%+fqG+t+TjC}v&z}ZPwk%xJkVF=8VZ%oH2t56O^kc<h@%nyO`
zxCxvRCXLlkST{i|vT@0q0nxx0sz*K=Z?{d&g2hkU4iE~y0=KF;!n_G@Fv(DR4Xl42
zIPD4vLUVzxnV#CHCrqvQmxzp4YMLd!=K_@YF2}kC@Qaf-{{H?19jnnj7vKWQ0wd+t
zd(f%wC)N#X$>L$yN|FBV_D}>U7OGPJtPe$MPOr$jKKfMZSwOF=HEZ9scXjIWX#zPq
zL~8_y!uki(S4hh=q$%R7p7lH5)ud&E8^DyFK|-x*yCN_>{lmsXu1{Mvrmv!#kZiE6
z4RsekQl7jUWvWD`*-EQdT0`2YEAk6jJ7a)z53a~1x-?h>CE)+4d;Z?HbrEnU{M;>}
zCeV?`Utb@sV11I@Zf2Y=G%G(UGU?jj`u}`h0f?yfis;RIiJ<qOqn?D!cCezX3yYa{
zLS%y+L#jg4L7Z6yIG3sewDFZj_DALILE=^J=h23U(+!%$3)ev~O#nCqQ`Z@r@AmQ`
zp*?`DQICza?~~>wp!9faUg~#^th366pxz8n6F)gu!s37;{(y|B7M)3}+rJ^E8fYu_
z8?+GdFXXj`6-L(ja0=YXMn!(jS1-hnnUDmR2EK5avC%Fn-Uo^=`<w_coh~33g8(Uu
zRWE;y^C@OEa*O0b==I(4$C(-+^HQE#D=;3wDGa-DFgt>7S`UFSjpcX+oYKh`lEPta
z@LolU@0~zo#p%1`h0oO>3MRTvsdkTX*m5#|%yq^Td5l!7us1Tz=JV49;LqqYisU!p
zVv$#ATFp#Q8cgM#0Y99lMx(r7=@KU7n;>}2TgQw_Nu8FMw!5Rk_`H{|sO}#?{KXbv
zWMLyb#{f!Wj_$l$2<kTavki59^mLJ^CNM1B(9&gHd}3c@dr1>^10K_{T&HPX@r5%a
zi?lK1Z4R2<o*5zmlWsWMKoT17dhGp*%>T=@!#2ozSz1x2VdX?bJPky+bn9fatpqP>
z1bwJM9yelRqowmQK|i+-@b%>sH<p}g-|QIu<y?X4nf}GEHZQ3Emuvv&De++wkBMB(
zak+I}&UaaFcC#>CXC$S*#HLDBn5o*`8t4Ww!fB%OZ}r7U0B74LjuOo(wGijk*YE}y
zDJW!w6TSW)5a^sLRsboV>WOci><EkmD-pn;l~Dj^Fug}PC?wo(qQ_qtwSwS`{w3Mk
zy%HSOeGl~oun0mTMn~_MdvO%5=ER3UO5(C<K=EKohR^RBRzxTJiQkQ4d~3h_3+)5M
z)746$2IUn8OQWW;%(pmo<Pm|p;x<!x`0-h@Q@VZ9O#*JaY@x{zZ^@Tv{_H4~h2?x?
zhX=Y&?27D?_RTJ5IC1iLhO%`J!q|o4nUW--P<?OvWh^G1NO9iN86=<T&ju8wNjS2B
zfq@N8pIDw3e8G^^{zcDcYwe$Z0+>0frOs#qvwEbtod?499XJO>z)<kj*Tp+2dd{;6
zU{Du|CLh6y<=MLM;8Ttdn`LMAE<%DT01F{Kgh@iOGp>lf&d-R{ZQj2R7kuXbE$!k0
zc8!?$2=<t{4t2WCV+mAps?RFk5|Us*HHVq+s*T)ywKH1a$x<LMfojtBj$q~iB#kg!
z&b&OL3Qk_j{BjU{_lBDK9oiZY;r)vr`rrOo8yd6`fz8A@n+p;O4p7PPd)|B)b*t7`
z)9!-~i|+&k4sa@oBvzg_U%vs!qmWL(XCQsCLv1`L%{3!gf1B+Tuv!c@x^}%pPPD=X
zpvIBIm<BbTsy^S|WD~96@1GR2*?2bm_AhPf&e)<banaxw@1w}8!Oi&&X@;;6RU`+H
z#S=}PRJW#R)al-j!DU1jfyYaI@`A1|0A{FSmGY1O&c!}DdKD~1_CnlDi%88$vWQf+
z_JDD`Z$BTvvzhuqkQ&?_x*a*`2jI+1r|+CXzj{H4OqMTN__^*11lLPdZxBy~*)s2W
zx1A<^;@Q_t&<>s@ou3#^Zcx_INny%u=sxWYznlIApRoxRv_=RzF-PXXKbKuTl{@T>
zPyI4tOyOGFwaZ^P=ic+M0N39%_k-rUelxhPp1R&&FlsgoKYE}^H0Jt>s{HpSo%C@m
z<IgDA%W<A+-DwX1rAPHqvT+?E`A|7dLNbavGCE2;o$|ZY$3!ZbL|c7hMMFV0c(^)_
zw(evl<U5b-yW_d4UfCkluUS(VYFGdMM+$X5ySAeqX-tDsP2N|MF*z#ggQc`RzHbI7
zJW(>_IXWv!;xVz+isCofg4uEris5}l7>SGYTfY|uJwZfu<RPV>_!>=%o=Ns2jo(e)
z>1qHcla{M+jn(<&LxBdX)D!r;3ebn;+~Cb@-2d<+93G1MAeV+cUt;xjG?0kTStv?P
zEstc{<4_xy=S@{8!&iKQuL3x}A_&jP<QbuafTT>pBizM2^f#H{ZZx4kES4{6v^5&{
z2yh`?t_p0tdw%r-u4-=$J80%5F}PAx=_1Lr{7F?;@}@6bw1*LP62_Aut|m=r&IDje
z{r0HH>jjLRDAl%KD9z%#)8Noh)hjZk=*BPk`3$9nx?k|eFnnbZ{7cIC6R_&?!$L!y
z6c03VCRBK*zi5bOfyaMV`Y3Af-T#_<{U6^(y@S5X2<YoA;P6@OT$Wl|MT!ST+%3LD
zPHVkdrT~yir1q3_u=2|wSoRc*w|4lTk<$+bfXCL&Hco_}Brg>0M$v8eQWedKxoGtl
z7@BO)67%aRWeQJ?DJaaRqE47zi8(2I0qn~gPxol#)G5tTT`z_GiM#t>=H9b1$Stdh
z@k+pcpt~4SrxSj6wGwUufo_N@o71~<@+Ihvh(Ja*#}XXb>rM|Jke5+M=h~h8m70LA
ziqqnH#-UoL{DaT;cN|u-dcE62-;A$Mt_C^0UPe*l!wLrzE+PK3DF*eH0?-?q1<w{1
zh*D7f21owHk1%svPgBhg78YT4cN14hdG^9=UnVy{_?x3u(00YNx06Y0B=R~DLoL31
zsl&#CO(Q?drur>HgX=ybJjhFfMdRr*CLQEp*`Ve|>u1v2#jW>EX!~4VkG@QH|A@)(
zkJK=$G*Fj6Vs?=!SbI@}=l**+r$t3|5M{bCi6U={u0{s9L>r^1xV#8{qtKOOAqw3`
zC*UaWmqd91&zFsDHC<eQiI!n-I1ee*6$H`dLuH1q`OB8cAxFU&Bn3;NL8wwIEe{Sc
z6F42xM9bNoQ${+L&`+SZSe;pur5ZfN-0YJt0qx0<2LXp!Z}CtEWW9ZxdyXqeWP|CS
zkF~D6$lLveYREutpb0c>((g6uYz($cf+}n@{cRNByA0<0-t&Ig=kT(;yEtHw)DCq%
z8}b2Wg~s~M&KM=*ETX-Z34)pR`|-+mO}N;MTCzDJSB}I8Y(O!RM~tW4;?7M0aWF?j
zK~c5Jm25{jtt|VR63?p$K(!kV{D9DvHBNcQBiOUX->v%j)B7J}&7A)L801bB#i-4p
zA7n@PAJyZ3m63n@#dX{hhu8RY(e`U5*{VyV<`qbH(7jQd@3g0xbt}IlH(us4Q<Tp_
zq9XyY4~G+&9Y5XS5c7ME@><?r3N^5>-C3*Fs+ma|6zH-rSwNL>)O@9v#J0zK@p<JD
z#$373n2TIwHrV@G76_!Du6>-%k-@FH1tdHZZpMIf0l~X@tJVj{Dl=#sJ*WQ+9H*;2
z(;(j=&vcD%1~l2Kk#|Ob;f?A6F4)Y=fmpgMB@?3^5Cq9_2bDxDsn-#Md79D%JSri}
z0%Q#s77Gz<4Z-0Isjd$=TLK+L#!(U&LmExHX_X^cG&*^Wxf9LyCIBd9&gJw)LA}Vn
zX94u1SK{@QKD@2Qz=`kPI)GN5zvs=%3W6Sct%JX;5$2~#U)+O-G^-AB%(3#JL*YX6
zQpXlL20s24CAI%5GYiYl1-jJR4G&6%@01d1<`g=d7<I?ZQt+0ket+>2{?9u9zx{zL
zXx;W*E?GN*kegf*R~ulnsp4;eX&dgyhC!_ugycdw4Ll``i>uVKiMuwkT;XJKpVvA9
zRJ4rPnDkpZGDbjn0t%~vM->q&1b|WPcKs#?0MtOW)WL=qj8+srj%9X(A-Pf^cvqFo
zX5{Uf{N8_B>kvoX;Gb(xygRneYe2;t)hDtBgqljDUev9y=U)u~$6;u4VE4KcErvgd
zXG#EEzQv(!)uLizVhDuK9*Drqp&FQ6#g^XI)!3Bl09lQ6&{DYph3PDdCf_Y^L?ji2
zUGU(%*2wqwl?(_MYB*BPi#|rIo0vN;0<@^TwQZaudti!E6`687Zk7Op{oEtLU^Hkf
zA`uVY=UmU_8p}rR;fW4l&on}iO;e|H34O^xz2eC$|9Ed7*fxhHp8(`j=yk#(0DDXU
zdzA8ML))dZ=i$i}SOygejLCaBdvvJU09w=+RcLw`6a%*pMg6FB&eG{NgxRr)neBFU
z!Oekmo&Bfq%5|#bt74{3BC05Qe83&m;k-i6i2i1}R9AbtOab$?da2GFI`zs%x9m~l
zb2zwuWd(k!Dw83#;UwT_jlp3|eq~iGWmQ@y2vt-6TVIb*-pijPo<T16Yc~+9Kv=uV
zHB&gXv~O?-=Yy-%qE~0ru2s^Hj-x5g12#f-yHA~X!h%*2GA77)9o{&CcF8K6ir64q
zkuh`Hhr8r#{}GGEGf!!I-$S7m=;>m}xEQREut4`-2p3k`W7Mqg!7fc&cdnj&b+ZQ%
ziNXi#7RNt#)@7xa2abOpAAXNXP{7gokYyKXRey1vMf3epv*N+or)P=KSHruA1*V-2
z`&FI~Jf?u2t!dp_Hu{8f5V(ZJT!CO>8phx?@ukq0Ed{}cNxj3dNATH}4P)t?I`3wn
z_Hgl~JUzgF^D*DvFOnTxQ0_X(It|!l;5An9UCtVP@c^2YXK3a^YzV>y5mYibuQHeK
z!k3=ZAGdJyTr?}JuN$IZ80H@te)%(qM1o|a$7sxjvCahql<dS#x~b1HN5rU1{7G3D
zVHorgaDb8Tm`(2Erg0Jvq)?fk;oqyNfjmo|)Uq)02Z><kNV+nrXw!zd&}#%IR{jJC
zF;_1%1FWRZ>hXT_yj${guO9;qmW}AoeU%C>Q4JS(6QzcIN~e9!%g~)bLhOuzj=TGB
zm)`Df-XEGyEHrST;40Qzt=Xj?g^w@;0&!)g@Y37#VOLovk6$yLS7$N;G<UYTwuRcY
zrS;hWd6;Z$4&y6Dbjc0zFk1iwf_^YW-&6Yd<!0@O)3B@8DzAd4j#01aXTb_!3=Hxh
zXfD-13iELQ<e%uOW8bebWDR)#VCWEK!TftvRDNUQqR9PhR<8`~jHr4OD=ia~e2#@D
zh^UO~{0<?nbKWnHhY;0Vx^>TQAKcVy7YUX&>yg0K0`*U$9kv5skXW3d`~CH4rZR=m
z3#C^INxuarD$os87^%Y|TF8M8uCc-T{JzEN)blNXOl)X%>7>GnbUX<O2~j%;|03OJ
zPIJUi_e~@{pMs1`4{S{6ffLMc!A<;X>)&pCIALMl_4j}54rJ}^4jt|wTgly~<%Ow3
z=qM-$;!S!KMllu1Z*C<|4`>xL{jq7IR?x3gaS{BZkfzdLoGJ*|3uQol$BPQhFie%B
z`RapY1fTJ<d%%n-Q5y4|Iva7aW#~Gik;&!@q|lL+EGNt7VFJ3PW@^I2ohVQyR-;Z*
z46(tLK1P6HBf*}#x#V(_OPnZ>Nm)726`o(&vaVEfwf-n>1Y1M1YtS4kr9L<8AQ%5a
z>(mLBnA|zt@(@@w-Zscfx;fAaCTt&I6A;h?D6NtN(Dmoq%}?&Yz|ai)*?J%dML{=C
z|NX139$}YcToVAXd`JL{u-_TX{m!;wW2HbocPfv7G4<(%!_%iRo&ynHScAbnUakLt
zCnofc)LS+JpAM*DCDr}R`%d6M*^%S_DS=snz_(-P?Y(Qg5a!R<a5{)cZwKbB&ml_h
zowM`}zLWfq3WE!)90_r(@IRqhJXHff*|D*C^oWp<h+J$U|6W78dW-S%v#&@lUyJ7z
zY-CCw0vO*REW%>gK>ooi{m+TmU!@G5vys|=vH<?aD}nxQTeujMJhf-`TL*aW59ezO
zuq(NK0-5sog+@xs-+M9tSHE4#?z3v{Aw(Pr_lCizuFe^(VI#F3f$Z$ffvL?BWfU1=
zS63G_ACVG}MgZb6jcn$pI26_NuYa|L%R^uE1Jc?3{kspKZT5u+RUWAa0^lf7dr)r|
z|69)#@P`4?zuzd5r2^~Uc@_Wd^)AkW%EZ}7U;jJNzwkGBGs6KpLEX<1OqKjxxJ_D0
z#GOm&!EHLT-1Pf6%3n1*RF9h`A&*zQ_LttpE>u4Zd8<hpcbEaY$fTwMJTPsHFh0+e
zreZVe>458(3fO8c_BWwc<NAZr#*g5}dIM7X%6cm8w@IVsN^L;}N(Go!&=606Wf}Mz
z(+W5O2-rT8LUG5?JR{KQ7=vsrRJe|g4wW<jI+p>O!7U)Hd}Fo96(q3u*DzlJN-m<K
zyZq<mB2u3sIPhsxEAXBAs}yS}0)jg^85x<~TE{bPpxXuiniyytWYxgij-MzrTQVZ`
zel0oLc`H+lk#MtVJe{TQbd^$6R-@BGCYZ|#38`x3E(dOto|^3CQOxy3BjwQv(iAhT
zlT_b$ei}WE4&NrHuz^j;J4~$$GIs09b%SU;mwp{wWboH7W6<h0{5S`~$VOpxH>m0u
z>O-oYsj<|C8YslX#es4Is)2w;8Jk6bt%H0#lP*0jv);KWKVd8@;>R9ycMwp*kO;c}
z+;kSdB{k5UL+vFp@83t&zX^sf@$CRauztYrn{taj^0&ptHX~RB3^->QZ(kAXkP5+n
zdNs7k$*sm~TPf=AuZ8lOw{gQo0^Y7PP#?i%KJ6KjB9-ZE!9>S<Z7VS&^~=j^DFyw_
zwPsMP6}_;yHEu|xBOUFa(w~>`tOoaE?3hj#e&4F39h8q-_tRm43B`heeJxH^U+Mj>
z;E$9&YRV_=*pKmdm;kr%=2<{X*bW}_ggl9F19l2oRs#_cUqV4o9T0f5$ub0VHru4s
zd>*$yz!s}5W8`8MA3#&=TDn~G6w*BT<J*kDPk1c}enOIVTfBe%6Ano{iFk{S^!)kr
z!kEb5;3)6}r*rB6&w#?oAQ%`JB@mR{j_XG8F0Af`^fc_*kyEg@#SJ)L)2~Dgf5m0T
zb$2)D7_f8&s&A}wI!PM-$a0(A(&VQszC6QpGOSvYuTyf8tF<)zwY6ElK^`;k8k{4}
za;v~twtrmXLAn^U#uWyoSOMxoi-HEvcR{b^${p=f&<sH}yD~t18{3Jugy^x6_*LSR
z;L~PNO#O5q+a#1>6Wa5~2?{-1-`Gf%&jbW86QXf-Fdmv-Z2cYp)^7!!K|w*v@16OX
z;UeW=1<=#eN8vvc{&RMnjXfqP?t)}l*T4t839M_FTmifJpmb>h!dF<uj7M0xT3av^
zh_XeX)O)$LSK?tTeA8b*&xJML?f*Gguu7SHr^SjS-s&#Ic5Hhwq@vHbDjK@)jYI@2
zG*N)CdJ5J4yX+U_sa(X;DSreq-b*IW1*kFP8Cp-cjQ7lSPjk)8??DhL^^w>L^b}0p
z{<}}wiD8HR@x^8Hak^-L_f1xYbdM%B$?-;q>z{tQz}&zK3;I)K_|Wk1I1o<K1`t+(
zQ$^|nfZ4B-2JUp)UXkj~yaRbsQnp68t+Lm`&*)`@K947q>M_!j{>0N3hwTW(pZ0^%
zL%GPW`by57|3MXTP<uJ+=y4xAs>IunTsVU%@5P{^Sjm8H<A88d`Wsdbdeb;7LZt4x
z<>2d3sj{8y;YSZtHp16_NU90xO~&HB9ZD&Dq|@sl9~^Q>7x94ts^KJk0>1&?awMJ5
z2Mi$7h~qt~6SdnO+>6|sBm_w+BX2>V!B=o6-&!umQg__i5`(sjLzh%}-`dj8d=qfM
zn82*1T<x1N3o|%T*Z`%xKc3M%H;|n-`+ZwOTc!r<hIM0*&&8tSf~67wBcDl76Qe@r
zP|Vxveb7p49orq}=H#fRBT1^S0pTjc#>?9SNZ}R<=OFCUPfM4J;dfASuZ86`H2S@;
zbV;T>N?L~NuJ}=k;S0vrcp~m_P;(!Vto8gdGWya+KpD90h<MG4)q#aO1vou6mNuz2
z9@W8PhnchB;Sg1TIGVwttS`Xy{hvO)SG6#`-y*a~0tiFQLgyPuhBn(w4vcR}vE1?-
zG21Dk2of)|Z#tT9RMsObZSs5Nud9%$SR@QWmRcoC@89YGg5IpD`+4B0opJXkazrUQ
zdos4co52-S`+!($#`-XLa>w3d%o`^!)!}*fM1M8U_n0VOXLF<&DepY8DD!QUq`5*O
zqL5b>ndas_D9ES?3LZ<9jtZY|(5WY|lN)eTuHAdqpLaGl%$p*gYB}fS6bkfnS=SvI
z7p!Qf<{c4Mc{CVC<2i|o6!9}@zPf;*H>}}(t<sCWuKKe_mgMB7n*Iqw>;HkRH*11$
znC{2;Q(t)U%T=Y2`>as<PnP$&{?jZegP7}^9kjh}G7!l%y6o|X=&27RQO)V1WwXs^
zRA#4*(aty7qWq4S8!@_wCB}IX#o)-SV}kp=Gr|luu^1NB<?yCbXoOs()=j5@UEST>
z#pdf>A<+~Ps9ThQ=h@Rjt`ks$d<dqWZ*<qt=U#U(qlf~x2G2u!JI}K2O&?8KEI4wx
z5N}UJ5xAI01l(r{Z=urZb~5@CqYyN~`_aD;SilC9SfF7W0irc95ptlEp(!Wul&=J^
z6Bj^}BJ`I44MU~n0tY^iL;fl}!8BBjoda^v_I2DYe-+$rf`>h%{YDUET$ngz`vx$a
zgRJO%(vHr1kSZDv9%sC^Gk$It`#JuGJl*X3Yg`^DtHSN|jkm9zz|(JFLP7A5vcuoo
zyek+3c1OlM+aY`mO{5x>9^4@pZ65(i`uA3XzE+;{mISej*on{!0yar7`(gy$m}6b8
zqN3tHu}@4*nNKxX70E4SxuRyn^frL>wVWctnz~C6t(uEXr_|++lKylU{_1&MgY*<K
z#%Iu6Q#l<iqHfqUfoJsqxHkzSV#XsL9{rvi1M;<Fory*#kW*0qxm)?8BOh>wbl?MU
z5cTZxDO?$)17HJNGDV#5H`>)=T}9{O^Z}5ph-d=egjP{CmYyKUc?m7-aCJN1HQ)di
zZ)Gs0yl|}w&9U{cJw|)QG3egBmb@OMKHbLETnZfv-(DPivNQqC6w;@dHtz6)-pHHL
z|3{llnuUH1MoLo&`}W&|w)K?mr;*HK=-0kOw_8mEFvYU!us$yR(h;c2DP7)Nv|UDX
z3kq)tVPcdPcwSSoh#fvB@GbjA^tfZ^K3kGXseSNuyWG3&<5-ZUDI*@LKM!na1B~If
z=0natLy@KS*`7mb`D%Qnnz$UQdOV#?H7aT`xnIMAF|TxDF{y4CGFG(-Bx~YHc!CjG
z;mCW7O9Z}_H!#y-<Swx@vpCW9J)Vq6F@-Zld`&7OO%|i<p|PBjr=MYAnO#rBwu#Hz
zYAEDZa`8=M(GI-=>@7STrQCXdK`wDvkrdr1SqX6m+2G!{&=TAa-FtTz2$$l4xRVPZ
z^CT%95LbOiP#q1TagfYTGX&xQ^lV_Z!f1+XNut)E6{v@PU(Dzq&_~vyzp1ufSr&HA
zh41`}h_!$RXLn8L=Y2**IA08dLFpeE3@#wLcD#P{*L!XCqKU?-xRzW{*;hZ9oa8ko
zYkLf@1~@WOv+-&meGW<-9>zHneGzD134becf{+of3g}>;p*Fj9bEnt-br?Ip`o}Ot
zxWJkXAh85+@7Ujw)SZAtfCYdN<0uA|^iecev>DEj6`OkkC`znMN;PU~#k=5Y@Gow&
zOivIk_LjBW7W#pF$~9RKgzy$*oZ+VCc0iyR*0G(L5AGELI@UI|XPxeK@-{+0B0En>
z>wZn-MNXV9s%jhya@jcknjPCqtYaeLafo8ljrJt{kcPajsY7z-5#Wjb8kpK<Y2fXw
z_5E%iE6Nm(vzB568U$-vnoL+wQ6rrd$^lU$@Blgky=YM_{~)a5(#*sjtN<;mBZPkI
zpTDSO`&XD)?tQ_`v5@2%{I@0_zjv>AGXzlRN1zJgA^BvNiDb@rG1%VW;C)J_ZO{28
zHETIiRAVE`;%xexKN{VoCj?e32%!$6=aEwZlR`n-CWM#De8b1gLb9Oo1?va75WyBj
zOeSIuBG}Hf<dU9lA}uSfVHCx!u3coagA)h#A={25UCd_7WXhCzGmhS)Bnr)M_(tIZ
zWN{=>iI&Pk9J&Yvv+}r9CU<2f+|?q%wvQp|!!ogJEqGq{`l2kFL+JJR9jFwCOv8w1
ztc0iJxF}z*vx-pG3=}s~R-)S6U&hWd7VnGN8E@?r5K)WP(yY6_+DXK-?a=vj-)Gr3
zbAl+EZdx9>(5jIcPaUF!nZ=ys;Xw!YvY-T9;>b?@yQ=z<iy1Eig{sQ^)m$_Xk)GPU
zd@Gh~M7cimDO?_L+W^xj%;?pD91G#=zeM$+PacmpDgYQSiPxzVsQc7&LOejZ7hC>3
z!V>Ia;=u5Re=498M!_p$7N8F>4N^fo8R){&yA*BM{jZVM*$D??yq!T}D%|26=#h$3
zwn_E6_|QiH^+~)Q8<2r@xi8u?&^pBHkjY7{4i@XH%sT79F0073ZmoT3RCSj`<JU^7
z{%UR@i6)!rc$dR-f9K->T)ik(qaH4lpgQPa783&_LuYoC>vOoeo{M-6_dBB7HWUn|
zaT^8@Zn*VlffwzXzVIByiw;iYn4IHvaDHer1AV3W@xd443+uV=Y6I;V-{#PU{du+W
z3`5O<FVALt^Jg&>+rDIa2Lq2D8UG&_1v_ecnyY0MQr3~HJGpHT<+YuZWOLEtB1jWB
zagTYpWH-RL_C8fVZ3Y_{^=u6l>W8F+I6nSF=gfms!aV2`R?JYTCCEdEo(^+hP>_;u
z0ZhdZa^8|FU}-I#;#YLtMrLke!5-}^IR(X84N&OtW@H^zPm_}6!9k#MCSIreplvXy
zDF=Sk<$6i!!5qi{l`<>HONq^_zt$NuLPUbP9e#l2)xc>SR%TZ*($by8)19{b(5x;O
zJ#QM$ju}0-p-og;D}uZonS*gY1wq{{IQL%_y@7=1y*yCVW20mE#KUNcbV<=C;j1F1
zj2$hjIIYl>moG6frSEe`?cV@D6IfW)^G-*CXY4}5LFqxng~h=wdyVx<%h9srdm4;1
zu_(L8qQm6<Gt^~3M*}T7*A8~!Cz*_k>nl&tkH@E_9Zwf?Ja7ho7qz`&${0KEz3}*S
z{#u%)#4TR~>@(fcKu>lw9yTzf)S5ua6ML;}sP@2wEfe4sdG0=-tD3Q53I|6zdXA`a
zukJ9RPs8B<1dj9x41&-TSak3I@0V<Ju#LYeL+{qrLZf9OTWpkf2V^|x3YoP-rX<oY
zhIcgIeH*rdVd&9MCjF_Lyz#p!tynG!NpsKF9=5jK*C`sA9BH|p6&+guT~BiC2Mz39
zo5(=i6XxJw)lPQ4A|b7@m|O&yhusI6hx9TIb@w+JOc1Lda;UD|D=mi7-%^^lr{l*O
zvSgGA4`U{-o;Ydncs0Z^-qFp+wh(6T>0X|XsnvYWJy5Ut=y(!v>u&BeOR-jGtUzR(
z)9Q{<v%?Q@h|;_9ps5@<YL=TVtH+_loQg-^%9%P+*KE%;gCH91+l*SJNh`{<dEHF(
zYV7$kGrVKI??=R4AhxN+vNyR{W^yidbQlRtYdPO3sM$Q~|1sMV%@5wcj|h^nj(t?^
zt#ol@7^(jJn5VRxIO?y2Gg20@?ch~zHAsNV)X7wQD}oxAgL(SwaPM+iQ9ey!^F0UP
z9L+p{5~>;uqQ^qq!Q}rCP9HN=DkU%Kv%I{ER-?{yDq4Wz`RI!$f7U(0-Pj%{NXewk
z^O1xnuT-2amCBQV&$%3Hm+Bi}3WcmUDQBjMnqRDQ<aDc=X)s&G02Z)aT)cYP0Ohc<
zW(RM;@Q&z#lC(yE4i1%MEN`j~#um@65r9ixin{^KfT#cnYI3lbIj;ehsz!nJ*n|W<
zcP6rAr}!8RIn;Q8E(ut!9C#cOL>z!4YtN=D?H2cyvQ_%bFKu5ulGbp!%YJ=h-Z(?p
zphnUV$<56zznR})S-Uj7BoRl&HgV&CcD`tSC~&SP`<;*5K|3}k0~cHR11(0f2)Pa-
zy9eLd;9IMftO%Zd+gZa<#+1b2+8IZ$gOb`nLy_<#4$EZw`2(zAImpVn1%qX|h=?Yl
z%uCD&X~Lbk{rd5{q8-uUZw=cq3IcP8hl}0>o|8L7*b0`IKW?ECgzCxpQ<Viw$({p(
z-@~*+m12WPh}g}$8ole>fQmxnI`x*6L+>76-w!VNlxIj7+yHV3LM9Ws1Pp%v-+l1k
z?hZCxSi8EhgzEWos$?{ejDyzVE66W(ewdIGY|I5J`zwYNo}PZtx_4Yb;KxXOPKs>$
zMaKx#nQlS&(VL=!z^VBICB>5?xv4IH&n7HpHR7%b;!hVyE$66RQC~U=B2_O7m*h*G
z^<;M?BtM$AU(ol*4<dE@w=8{02r_!ZTY{^moKNHvmf~oTY*cR?XxQ=d<Yk#kPVM0I
z0~P5L9~044&@hzNsBt$*C1y*;)Bl+FmJERVbWmI+pWP!H@lm>wVW#2Zj?Au(3u$}&
zpD^+<oyrj!%&VLCg{z+>S$4af?cPq_G<T-K1z~FCAR#U@HJ^{04PlbG^m4JgVi-4N
z5zen0id@WDH6C`9Vsg2%W|Zmt`25wr;jGt=@mx_&Z98;$h=mUU$qZ-{&j|GoJ;Zu}
zb6`Y0=niz*o#A611yZv4!eCTyXSBtH`x5IGk*XsmD@!D^L!}^;MlKl}Y588GM0MEK
zv)KP51cf#73*y7|XWet|u`{xYf>J?x>hleO`xDWa6J@emd6LJa(Tc8sWtfp#8I8T2
zxVQScqD;<XJA;u|s9rqrPlkiUq6H|U&kRNM^P0svJ(tER#sp67L|59c-7mPUe)48b
zjtNk9gtwp-CcJ--8i?8H32uvw>(NL9G#CUneONARjup4wezJdfND6&m#~j6Nx&19m
z7SsVkuIib`&Yxu|&Cz)*fjgmwKz-I%A$6|*4X<i;@qoqBT;<HGMC^C(zR8yg6iNKa
zKFnzymXzdu<%s0(B(3>vjNT@^uK@ibz!E|ScSea7e?up|?YXIhHDJp6{gNwh#pmUc
zFSoQw*qNwVHS^8h#{L6rQ1|a~@&SbL`&=#Mz29kmKYBe%_$Z2Qoz2EEf9`93HB?M>
z5LD)m@x-LTyMX@%h+oulLa-De577Z#YPVsl6L>TSSS2ya-{AP{6qE~>K_4~k@jZ&G
zqGnGu>r7l+Nm`~bwrWqr)FF$EY*vnQX>&Y5dXZW&L&W^+nSKLQ(II^$60+7bkiNKc
zze6XOwurrjm-sppme=D_+EGs6u&l@Y5s+s_<Z{j~kM&QjTL`yfzuW=<D8w{9E}C0Y
zGB#Ib5-Dc@S|0rZ!zrgLao_&BHu^cj7WqtW<`fx-z(riq3K&i<vec7E=f8~Pdb>jW
zvO{Vxet+)#VZ-fs9<MCnE*<Uo^=@RATaI4*)AW@69|dJzj~6<3Q76iVKNc5tW_Enw
ziEU;IMn>#VWT~kyjLfUj0Dg4b3Lr~S4=&`dPYR+SztV75wy#`CC_ls*>7V1D9rj(K
zc)-UDY0fkRHodj8QrVr)8c}mVaV`6Sf$rUA9s0z#V`chb)9fEVMuk4S#E42iDJ&|L
z=K9u>9seqF(HjhgIIp&}-Z;hj3lp;O_!J+#3bHqG&>EO0x;{SPG9@djHvVyFuyxZ)
z$(FFiEXfr?{83CNBJ%=54^QXlM>tmy1ZOFpCTLkwD^Q>{zmXD-X15{TlD66vUO*!?
zj+w12PhvV9>q%Ndhw$-Yp4_5u?p|^tp6QL73O8)dfy65~((+qG?3XWdbo`y(%FK~X
z+dN#%G-7wz3C4R{XN7avEg;gQtoqB^nYsP$qmesutPaVKS)~4EVK_e?0OxudRg?jz
z#(Vffc{Y1QkR5R^v!lf3gE1L>l+5-mjj%!CO_o)pbcnXH*n}v9Wl5ss$NZ>;^^73m
zeGbG~$}g^9_<jf|4lnX_LDd2k4QAxOhgHl8oX%wj1~1N|@7b8w0a(uh^0f_B(s2*7
zeggt&XW>Wp$wcYJxFeSrG;+$pyaKnSdvKnZNc0btr6Zy64|NW1+yr_6!NBzFhX5}F
zRV7D&QefmO&f%PLc}|H!4n(b(0H?*US{I4;%~f`svM*gZC~0Fu^Th&O1;)jVn*8>*
z%jC2@R`8e9`H#P-@R{3t-h#7#C`Kp_uF0h|O;z;omP!Bdcu0N$6Y^q<c5@@$k6ujw
zG4Y|0Eb41qj176tiCj&+e87N?c852$!+W-e5F2)Z!wRfC)m&btLZgNan>R>Bu|n@A
zrz(CY$y~_BGvAE$<9gLf&-C_zGd)*WNJKd2B{ASf+sDV04+o_zqjIf2X$1R;Vt}`5
z;W-rGZS2>V6rtnppju!H@mDL*LEl(!`Pk8UEs|*-S<AkuAtFQ4SK2*O5ZP~Qo7fdK
z-vS6UEFLAd(xcR4+2iN~FIfmM$w8RbAR<GSFB@Vh<+U=s&aojLQ9@}-ghE4&gMDcP
z2RG9)=&WltB6z{`xkMjUjDN(AT=pfV5g>Vi7TyvtHxQR%i8U=b7j69Pf60Efcn2ST
zfy%KN{p$Dd^(WSSrn#tU793dg&jN6T0>W%*>{Uwtpz{3dEp4Nx83ntUGgK0QsFF<j
za+nqA%U0cvTX6eZ-gG5cRU!R6fw?0FN8V)=iFz5Gn6p-7E_zO_=H!5M>ZHeDenah*
zdN!}x{MI`6F=wre+1CTco13@hx-MHc%xG2XbH_E3s5)$Lr0?Itgk0$XUtX<LSC&dK
zJc)Zbon=A9h0A8s*>F`TQ$v1FAK<@i`|IsPCus|R9<N#ndb@acn?Q9e1D=JS(ky9G
z9inCYl1I_GH2`vpLL#L5v#VxE|30RjK&)tr$hu6(^8*4qtn&!pTZ_COeNW+09Wq5&
z;}@1IdWpZWl%(ugwcMDf=ba5?*g$(5QxDYwH_DcRl&4cP$vxcP^|THJGTou0KK&)i
zt94Qdxd6BVuqLrF9NIOEqn_to5<gId#;t`D^Uqt_amMDKMTw%arkSau#@Kyz2TqR-
z(N`B5bkS6kacAk5wq%8Znjno*R}pq8c@c4{f^}Kg>*)6A;BI)=X$)-Zih=M??G=Wt
z$4oC5f>63CW?M$N=`ya`vwzeofDcSA%)3SQs+0rFLZ#|?LJ*p<B&DRJ`aRi-`Czw%
zrB^DO(iRabXJj4lwOl@x2-q*uRk%jZPhrb>jYB4@KmIuSTyjVBD<ZVjnOZVQN3Bt6
zw^|D^cDPJhKdGJ|t#1m+CkEVq5NcB4NPlZ-6gTig1#L`(Ty)3_3wv#@QY5=h%}o7B
zXq*>(JVl$4gQd?&SN$0`Jk$7vQjk*UOGA}-qebIk&02;M{R~yELK?ASBrjqh3WOG%
zK4^|$vbn(8ONf;lJ$;db^}Y{s3}B~rnbL?o?!RgltXdKsn4LtAZFZm8_wn5RXf^u=
z($6cI<Z`V*GzaR89r&*r7MAprZ_=`OsKu|bad75Ar~0e7YPb@f*qPKK;x_`rt9o>g
z(#*Z)th}$Q6<|wSTF7B20<qZT#pCz#7#K4zI^f+<P8evP2&LON*afb#RNEeW$L*v~
z4Q!*Qjzlu~QqaQ)`oP(Sv}!Q^lg6!>8WuDlXv!OhK+nB~`{i^C=*`%Qf9rPyyu?<+
z_ZfG22^&z%{#;`?S3*V5I?A`^!62)oGX$&TA?<tN@-hN@Qge-&zvkeV7Q$D<6DBi4
zvx-SabvFCJ6wdq+a%^2v%eVYy-tkJc$Rlm6^iz56AA6?IDI6>=mzw=537be%v=+-t
zVo%lPH(FZ_cL~kQLddZVswhLnDthHz{mAs=+%<EK`Noiy?D>};YmSY<dg1tc-=Yt$
zx_KTfEc&%2Rut_Hbgui2@W}?*4sXaUcJ+f_0NA?*M)WUOw>Db>K=-MsWh!L40!*2^
zpeT88GY(+RQxOaf4M8Bl>r?^kkjxHNF+!|II(S5{Va8vo>tK}F8FLdKf!^D|LnR7V
zEtgI<nT^ikVPWMl{`_nf_<N5_C1xD1*V<c|<1#Knq2mNSxmC(jlgYT!{QRHc(TU1N
zlr}Qdu(4ICkxfl}`m*(DoYvpXV@BmW>YaDFXMqDzx0<l*pr1xyrC;FEODyZ`XCD(W
zKrxs#^%Kdo(UscKOz!ME(^6HV<;d&JVZ3}Ka$2<gf9-u|R8(2FZHw3h1+)-Qf`EV|
z0SO{Sjv^T(hXN7FxyT?O2+~ARa!wXGNGNiS0!q$N$r(#1LXqCC?ytXb``&KvefQ7%
z^Zer&P@FpZoE_GhbFR7M0v$1Jce%pAJ?~l}KfGytjTDq4N&&fxbXt>jam~GYA7A-1
zpIe}V#&+Y$&OM2uxvUqZos`y$1+FfhCHu)Xr5)s~Cj%f%E%e0sAZ&>K3}yJq4B?Z)
z!9a|R?CdHh&H55n!N!g(HR%#ujR)1ZliqT^0}^<FM*N!!&kz)hS|on{hjwLJRM+5l
zkuwt7dS>H9g)deDnrj>?O<iUurna1w=^QpU$+eG0ox*E@cwkTIZtdsF*+M0{YwX8n
z$uXQMCix{Q(G<(N-G}yiu4%IzITyxuA!SVEg*Jm#1jDAT+t%AbxW$1I6_Y#8`aD)a
zqr1;;;Xe|h7V6{CLn8TGYJc3Bo33!Bg<d|lsi}jl5i{L4I3K#**u6cy<5g!`qE9cZ
z%l!?`o_HWF>E$G-!|hXzoZTfZ|7>IJc9f-cG&rlpb3((;WoWG1P=&0l(+HLcHE$eD
z<_t$l{(=)OE}mz*yv9tQ8sG`B0vV6O0YIUrf2FedI@44i&&uYLzdiyPm7_x(bJl;C
z^a87WCR?K%Bs5tH)0?Z_hqL+4TS8kOU)v%z10NWsIi-3PFU<E)*;Thxur4LC;5BGi
z1_6PyIcS2Awf>d|@UV;0vJg_w8;LV(R_qb`<E*kRplwmD#sD00I^J|{ilva0k_85#
z-?l+ZkQJKiXkEqCgHqs3%bXsKzmc6}SH_&`-U|KH9sV7-1Coff$<?oS_<?M`0tDzI
zN{-ve@hQM4Z}cHXJ_*M02L@<>X0o;HIVbcKO~4guj-b3<a@~L4bCV-ZRNKFhg%&EA
z4Y5E7b>-U(^OmDJsp{0vm$`gP?}&I#fCXopWK$Nbz*H37(Y*l5OP%w=MqNQ%C`9ae
zhp~CM+^vT-C!h^9SULV!Uq<LDy8J7fTGCvQ@A+O@ABWm_&Y{ZPeo=2s^>FX+PE$xj
zdGGlay|nZ<5kwy5(N><{zqW7^Rp4g9_g;b<H^A5hM;}g@kVH9UNv`*1Wg3i<QBc&)
zTN*w)1y*qJV+?bIXMO5yj@-0-7Lf|e#q%Bj)dKM>9gD%);VZI#1!R90k&E-vr*pku
z?#tl1iS8H&@hGLwZOR5*Z;x!B^WHKGs%1^7benYp{eyk(vGccYg)YTW|ETDYQhsw~
zcb2lmZoqMHoJ(i3NZHw`;*LY1CHpx>rq_45-m_nyZ`+ZXWuNq>lJ{qdHgDJ6C!VX#
z9S^c>--@>%IZZSQ5+=}i32|qLRSoe|$lwMRjZO7E(&dru+IpBjQ&BcPQ>lBEFto{Q
zmT<0C@OlDq$#tEbmv#=@Q;;l&p{C0j#xc3fr7;Zn;$N%e#ap@0GW^{})Y&F21a*C9
zA+;js?%(b8Ii#F=XcRdeFk3thU&X6Bf_gi)K)sgBC}hUtP&oL<{&80qU?8ml{FBPc
zQ7A15XRbS1*eK425CI0zQ#p)DLQ8mQ%dLyX?^Ep^`kZQg`-V}(vzXyDY64`3R78Nh
z%9a%8YrO)2PYI~{z5I*1LNU5Q0ovyr+zEYIN|{hwROHtop(mZwnOzVTLl6kr(Ll6%
zO4am*87XavedF)8tfZaqGj~14=?6wq)nAO>ijszgPG!=g5&}#h3?XedWU0SZTF}Of
zsz^3z-ta88t63&jmv?Nq4EDv6>CDwJ<fj^^?)OZC8x_l#`q!4sg|a3fUWe_1LQ`w3
z*Qp8CV8E@(r9Z0_6m)~*emYaL`1E)+EvWA`ChNW}z}&r$c8)Kye_XDbwi7xuI5If^
zY1{@wWDQ37OTtgmeC*Ntidt@e8EYz^JQ6NzR4XSf01)JRX_>_y?@H#a6joKLO#9E%
zV$Oefpa}@$bX(dtZ6|rVu2f2P5NzLGCSzsd#knDq&%(v!sC3(u?8KtU|Iog?m1Os0
z*=eBW=wM9`+e(R5VU33HrfvC9>qiqch<3+9iBVaZ>7GH_LNggR+r7^p^KUvY%Z(LE
z+!j@Wg`hp|q^eZM^96#vw8-5oP)I{}PDSf<o1LKHYL4(NL+wFXH>Qg9^siY$>>K{p
zT&Fh9$b%Rywc~3#gyeY}q!agU>mN;KRW5}0Lej!}LRs`r8<v}#Ysu>8t8vC-I)4kM
z|4zj~_br*^%*$~4w}{ZUs2w;;6lEf&tZW83cXtyuDrpGN1znj+Q=Et7`Z_qKwA4L-
zm2cm+s#Ckv`imG>tzr++KIkenGx<pA%qO2yl<fS{0fd<B=FRFd1N;VtXBER?w|Q*<
zn|v=rO?au3rK;WC-4KO2D#gexG3K<sFj>lFiNMs8hl5h1&&opEd~PBrudiZltmu4!
zlgN_=Y@)ic&>y%G`B8E8y^}HD!k+AOwqn8p?mJKc6rojD)`tQ;oZfIo4ic+9>au`N
zG1qo#cxRq1F24{SMi1^`8}lUr54(;M-Srf%>aRG%tL8HGXPKd#@P&yN{fJbqU}%&G
zGYWmQxQ5QIjj%{#VHfKHlghqUth=+f<_ECzEE%W0Hj1X%-wZD1o=kix)<3rE-7s%$
z<2`pfe0(>n>EdjcTxoZEb+jSsbzSPE1~=5eE>H|c&6=P`cY}c`a;<UgD#QqK{gwDI
zU1aGO{%H+w9>TE-XG_Cjo!bR}g7eRiq%8Lfk7#iUyy@@%H5=72#XY6CKG@I$u*rb=
zg2Eyolr6BaP0l^X-Dk2d<GQ~oW`cPqe<{Zze?5PRb66*X4|e(2YYvuEAh|KaWWKXV
z#N~kt>X>yQXBT>6zaW43PYLz%Ersw*ITOFZYmyDck&uD-=@zZpjrIwiEqkw4>ik&5
zs}#O2pB(}a$(G~T94kW(wB>m8B%3O)8PE=9E?M^yK3$jl8YhXL@KSZS<cr1hEYCDr
zHT5$c(LRZmVe3VxHO4KRO!C?2je*s?aQ>-J(PkQHdGCX-ZI&m_HF!-YS{JWBCF(s>
z^8eTwf*jLhcV<<`7$IaeL1|(~G)Bvxp5V9oTczB6>{Svq$u7Hdvo$w-KroL~&MHKQ
z1O+_pZddId8_!c`b~9pR9I4r#mnI_kQUwH7`pU`?q*`(YqXST?veY+WqrB{XdBrly
zVe;ItY1Ju%@KK~fIyu?-sB1*$R?e!tav<od&4<8?TQqZW$Fpurr{4`rzK5;{^vzsD
zuNod`>|W%iaUmvg0iz_7w@N;5l7ywkCHBb(;U+Tpb)Ftpa~IP}7@MfRApRrkZMKib
zf=6rN%Vq!ZsET~^>Kw1>ZmqU%QsWHDD+Wo=qIkKS;34?0{&qMki(+yD13t*9YU+%h
zLz{%AQl3rn`c@9rL}|@+$KU>g$5AE0$-@mq$A{4WLF@RD%cSQK5SHuT^yUN!_@A@s
zuM_BBKjkCENk|zh-Ewg)-4d<SFA(*r)?^RoecoyYzpQ)juQ8>c*^^%+jCt!V@BizI
z{{bfTn-}%lLjS6_)BH`7La+Ms52L#Djd;jkF9veU^mpJ4w|SASi1(936MOrVuf>nc
zjzO+Z#m;450|+1ED^WYhA7odlOsrP^9EhMFu*{qSjW`!qfQr&8tG_?s&!HDm;@}f%
z6Pfqn{5M~;A)S6yr>#VF>5tD@5aa&%@nZ`ZM%WN5n1=s(xexS_3EAQIeuifJ6RV(y
ze+f5`W9hL|!k-uWN%-=gF5>5md;Mm1mJ~qq{^7y@<LJ@@uZycrNZRqm5&Yw4{&sp`
z@9v2#c<X|K6%zmWiGQ47diZ`@<nR=O|1^>QdJoMvKK1tpftc=ZMkNjbnEX9INwUBF
z?SFbef4yuv;szM=(2l_P)xZAYe=>|Gl3>gb7LEVSm?^QZcss(W;eYXp8Nn<5|HJ(s
ztgQccZ`W@t*0sfe>wh>Q)9G=Eg|;5(gK*UrsOtGai!VVX7vP{jz3Y47h3yAv1Jt`N
zlnSdW66rOwi-0ViEh{g#{jt=202(noB>BW)5d+*#%R&E*saKaS-+%OIe3s$t{I|!z
z)(4ixQ8hC(;tNddT*qN<GIgqNz>-k42D_bgcu2(0=AYjZF6a?q5B@5})YP<w7*v#%
zvzOHKc$i!L85Zl<;_}ZpNC^QG%uSbbY#JHt%%|gD$_cC0@$vCV!40%7EPaCw1b0pW
zf{4WSK#sky`?Li8AlDLN5pn3=bavqM0937qr+*9<(E{>sq`qAZ)9LOt4lZWqE`s-G
zPl0izHE09p+!XZ^*5q?`{if$FEM+A~Dz2(y{^Hs{ZY<cnf)P@^5W=pAbA=Wh)%!9B
z9FgK(BAooaeWjU`v^p)?!8_a>*YV=6fz_WbcO&vyKJYt3>qP}Tho9ZW{(T`E&bWb-
z63e~&?Cj-fKA3J0MZR~y0AmvY3B@B2_fG(aAW}?W#Os2R#wn<g4@iLzfH8kz1e1d@
zxMnI?t7D|pZGX3K{d;G+`vCX|fNqOo59qE#EUM0oU{KyFD*x6<!YkNWuJpPYSiWGv
z^igt#Ag&r8R>G@SZGpkqD29<ryGWgg43u@2gIeAmZ=YL_?5KAF9)7oq_%gG&;y#|Z
zlBkcgGKEWOFD)-m4$9KnA`pmC@;VUh1i4_7aiyl!L`j<l^qAdkpfUrS;Y~Yy>sR75
z_;f6Vm+#jCDCD1KNG2}a$!R-`x6eTn16RSpC4k`nxhfOy`Spuk%ml+13WOGZW7rBH
zRdyI95!sJCJ8ZfLceAWm#5RSgxX}c|nOU6QX@JFOlb>ZFK=Vr`GEyrMV1eP>`<~ZW
z{RU~VymInYz!1E|NeCBX;{E9j>HX@bz**D2M4fp{#Iu5oj0_oe)&7lk!n@(VGA}!;
zB2PQB+ePe+&PBbZFJ74G7d+&zDpcN#H+?Z;YO#&6Iybz0zfQJk3T^+vFyT^M^24eM
zfLU$unV6lV+9g+yJv@b~&jx+wPhlUsxn)gtTNfHT>(UnDxa~ROdg~1Piuu_5K7Ur6
zHcPU-zd=40Nm>Zv)5^U*A$?$mPsyXyIsv@wCOPZ2o;RJ$?rKfaN?4rLMu5ovzO$dA
zjz;3;n#Vg8!^)MTTKY`eOe+8_${?Z^7~r3>$a?V5W~i@JzDVKzn4#CUj>3jikvT|a
z%a!;i+nsmbyctWkCZ(O-#eB{~hpL%~GS_mRy$f3bl~2|woa&o5#%l{@$2qb+eSz*4
zma{iHGC6N9a)Kl(lFb`*1I**}%e^mDXjopa&@EGLAghh;?aw{6skIo)jP`!{y11xu
zH*75H<ip9POqh=$Ha`Y5Cvjj?(Mk8{PlA(Xw!7(E!ob%{!L1V8rWee&iwOX+)Q0r+
zSz0NGKd*^+T~eWCZTIfM2lsPlear@v*8XA_0a|eFxayFjpe<4BXnV7AAI)C4=Xa6M
z?{h4BQHijRc)-r?y2!-01$BPjYEW}V!e<*oHk?}7!IiSulX5^~Z0mc-%+9W7*ECaC
z;3BdmYCT$am&w4xIQ2`Nt<$Dwd)t`jnP2fme-+8cGJmFG>We|^i3)ML$rgE^vp%2O
zNb`EAaO^XO@L}e<MMMeA4B_Ea)OLqL-!)Fun6}7#ot<Jjq(6;lGxN%qL8y+`Cfe=M
zRoqC?9<BRj{#>0?Lnv(>58daKjV!(ORkAucXZA=f5q^|Z(NT_y?cjuZk#je7udW;O
zqb5>YtpgVQM!IUexaknCG?Fgqs}O!yYUhMyJGgko)J%1i-A6L@G{xLi>^f}jp&Q7O
zC7}ZDI+nYEB5+P@Wn+rhPK}m<0m?p5tV)y@^cC)d2D6G-@<q?>gED*<AY3af{3y4F
zg$`443JdQSme_s+_@G;w`b#}?F*{%f;R+n;r-6R@Wem*s49)+n`4_iS0RK*EYQxAX
z^XMdofL!-Z_H&WdWT!2#<M9z7u%%?<hln`CGHgu;%vZx*!_d$U5Ew`Wu7-*!+UKX>
zMOXNoVW1S1STzoyvQ|_-XK#vqZw~QQcfmQ6=mI_lDZeOfqB4$i6ce5UvjLBXJB|Io
zQhYVw`T1K(4X$he%rwA2^Fp~{)m?y5xh@1VYmvsX5>*~`AM;SI?*K3$*A<|QI&qw^
z%(lW0AKF1l|1<1llWZW4fUexC$~%4Qd)h`UxJEZ^97J<psBU9^>Gbqvm(pQTV+JzC
z2eY2dhZJ3EJp)+46jt$G06C~V1gb{_sSL(VoW@z?IYV)65NZvWpL>xr>V-uNA7jgB
zsDxZ?UOwqrJlbQvl=>7`cD4=q>nzn7y=vJ2Z-&^dr}=YhPKZW%Q}1D=N0Y!UK8mQQ
zw3u@@J#|px^{-5yZ#P_Eb-@h)!E&86jbqxMbYBct+D(<*L>Ctb0tL!2=w<CjviRKc
zj5}thWbB)7|9a{i&<6;b-lAL`e`wNqO$g|u+V}~v&;X+<n#+3FfVRN@-{;BS?AUxz
z9E?B8|0<`$<`Bg=X5pQMCvI6C8fn)h3{$$68`G2baav79&-F08fJ2y}yw!!LT&m>R
zDX&}?0L5}$ME2*uO@w`B8<f?#&GAC>a~@mGIxA1PzW%sa1aU_|aoLZq5U$j#B-8uT
zT=!+KLal8V+XM1L58fUS^u9wc7gm+KK%HOs$E%(#QBNGd(l6T9>I!UoDN*m4`Xd!N
z=fK4=qh051W=CONhenMptC-wpsLr-v{3yI3MgX)$Q3K^Cj$G9qbwnQZt(SOsB+Tk|
z#*Wj43YF%?q^;OP^z0A6p0{@dSh+0XpiFjFd<*#_2(d>|xSV)q6ObJZdmd~h(Eawb
zfqD;1^;oqsawUgcjU9uz!Ms466(zWB*$BiZv(XVX#q{*U?_}>JjL@js!683nWPGvl
z52^pUFg!O(N}sP!U@=Tp5&RLYAa}-8Rx3Y265~c_Ux8??YcLrTc~}rF7pI=Opt&%?
z&eF|W=DEkqM{$agIgJouV!{ADHSUbDj7lQ@iDuMWA#(W{CO?=){L1)TjgvX^kLa%t
zDD%L)UVHm=AIigdPb2BpwL8KB>*fmmvS;U*@g~8zYKxQ&<YRBn+2^6{VjooXZ6*6l
z+e5%rJG&EhNPLf81O7{QG<(qd7FHbKxj()wWa(Wyzi?;u5Y$1;5!|eE*^K?ZbF?St
z;4vseahzv0BdfcX3_*1E=N(#nilld)vdm#hQIV|1N|mOZ5PjJAjdXfLq{w;%O%rCQ
zQ09~e8-LHau=^MQSzow<x_r+zjpS0anN-JUb>z}nMMG+fdx;kCfGBbapYfc+C`$j%
z)t}Ez5ghnvWO*d0^*$>B9VklHIm!Y{p4fTLMx3j#_~@U1YbyGhq>aP2teiY%ccN~P
zgloAcyJKg1e6`?4)Nji4k6Ou$8mO!1zPRnYOu^}r3f^EWwnnaK`Ss2*Yn8cctzDm3
zTzWK9-Aa2;kV2X!n(V%-3xSwFR1b|wA-nj2a2jGyJ=C2r_&yqHb~5v|k3r4gJm+no
zZDVBJq;aDTGjk)q_aQO421J0+&@@o2esRU3u0w6iZaT`KW-+zxvTR3AVZDG@a#LHn
zf>i0(kUSNg^L_Io8{I2!U8hsm0$vr3&vHNGnV6Ysdq;MqAHE*2S?JJNaL>F&*|)kA
z!5T|fy7`SPLaTSKPUIG?z$R{{auKuJu+$9hwwqx2k8@4s<ad@SBz0mp>BwL1iS=G=
z5wPoHvcR$mMb4vV2>q6P9^vf-l^0nY;FXd&;$wqZNBk!ih;0y%S7K$Qjb{h?(~ey<
z+qqd0@K#DhsmM~K)D~#dlZOg`HxC<xa5Wya1~2%Wp|w}d+=k?sq3`0_wIL-QRV9h{
zW&wklf?c|O2fzbz8gM_`?M9&MK-2W<%8Fo1<jm)#k*XKnkUG#MUa9XjA@owux{@tK
zT}~%El4|bZxWQr%iWZ{I)-JW03@}wo4tb^f+|f^qfx4tHF)E?+N%Xx8Lqo&VZcCMj
z*MpH?l@`f*<G9@JWBb+{EMt`|hqslsA=}-ygIyr@SvI)oa^GA6*=?(A=L}rdl9SY}
zqau~Y3nS@lRT1jRM{;!eo4V#HF3BdDIu;F(u+f!N3s@YUqyks{$yRxP^4>h?;7EG(
z<Wrst)*jZ521T1_4#Mdjr`+TX#uZ9XBjwbsVH8ZaxD$thzNb-8&5fk`c7$4-6%hc9
zDO2J#(Y1z9yp7u^`cec%$$Aa8vC?)<nhy_Z>}+h0=};M}D2i$)^@(?Sxle8A{_Tp_
z{-A8ifcj#E>zBNdT2FH4rVR)raO15HXys;Z-++##Vx!M+qnHN@?-T(yP%rhZ0-m@<
z`T?r7Hi`9;n9+gmSSoGeae6^|yAf);R<`3BX>Q*EGwiw(Ca+YC)q}6Og-PzL>1FMd
zOA_Zj&+`m+BpXDJ9;Uo|rrKY>ld%Af*ix)wT@*A0J5<~PyWq~@d+8u}#)vP&x?6@(
z95oFYTwx>_>C5!XFElf9(h?e!WLGJ)E<SHl9s#TiNWbw3lSa0masSQn@@EV<Fha0)
zRUVqpvM)0WYMzrY@Aa23f?JO7<Z`ohel%T$;CjeA8I(B}%iYR#ZrOIbWu-7*&Ci;H
zus5K=CoI@;Jdc(ws{b$`h$s0_CP}>ho`iAa<~V{TLiuTIQ?4GY0%jUa?0cs2UB;2_
zd+1{iRET)HKp#S}PnX@H$8s2}dz(4OtE2DO%ht1W5OE2<ViNIjp(d)0UZKnAb~Of#
z-{%%dN?b{pOcm;rf8F7enws4!c~aPZo7bg+f>uYSCLgK~;i)&PuW5Z?w3{`r`rt1~
zq;uMOTS9QTXC$zt`U(lnvxYZHE}3%3)hmT@GCEv7#_^UklOm6ZsF_X_j3Ex3+T+hs
z@Zxd92nnuJh#WrB9wQ;(3tf46vsjL`ghKfGZ!84ZlZid}m9!=38a&@N*>tiaq+Saw
zGQ{RbyE%&a{Uy`PbS$M~*e1I`w!IKwk5x~R^2rP*Vnp)}Als~r#qT4xK~Uz}H6;cT
zZ&$$H394n_8UZa<73s6Q*V0n(p5eqLo};R!voBC?L&pxXj9bd4X)7a2lqd9#y8D98
z$_Oh>dGp{jXVKu8_h0BQy~l+=zd=O6w>*-os%KC$;Nh6`loh0vdwoPIk}ScKO9IT_
zQl6)IA2@oQMd}P)NPLo|^<JueBF);8-L59esJfq_Q3J_kWsHvgsF?W(y3g8fxjqDX
zRBi-OpVz-m3b0da$vUz)r?RgfM7{e(<&ar7#F|?OJ))kXs<1lbIR{ucto%HMg)61b
zBp-Q<0ivq`te=+e8a2!ES~W<b>I4zGW4w8h1B$k_c%C~<Y<t|cQ+!dc5pF-m1h`m6
z_Ew<mSBg_F({5xPGyWKHy4xieyuLx{X;dGtYQi*E4`gb|q==oQRNG)~GDwfSPJX0=
z2JsuuU&%a+_s=(uBULMb{Y^we>f)5N_nZW*iT?smQShx#PP@8w*ITBK;o}dNQr<n7
z60+QA@~U6c*}TyYLb!gc(&X^klckN0G}OZ<r?*Omsj(Fm&IFM^s@LbJw0`{wvZxf<
zY#Ik6_j$+3Oqyv4iNsf-FNN{AHJx^o=uW<;g{37U*#dsqp~Em-KjuhtHmc~1(SCV8
z|B<u6YyP7_nq+D~7&muD8nbT?L!$+%qN~W$o+ew!@VvXtxM}JpBV!nlO2?B8<H&aP
zeA*~$<kIu7e8+Li`xS?~LlZ7{#x9+C#}E)<87oJ&3g|uwxE(^kF7)ZrU?{mJ@^qMc
z^bPsBDoUn_nx5CGE^xcZQ+u{tra$fW*opsGv=P*(z>ez5bLmFNp3MZ%VTG%Rx0bmp
z#y@Bwh|(z0s6`S4pWlRcZ>q0HuXJ^LY)zQFb?FQ0?pr;PIfU5A>EuLy><uNz@?Kh4
zZL6y~Hu1)m<2VGtWui$_RIJ%rGJtF`6GZh;+|KD`8*(xa4<I&A!!>i{&cHm0UXjYn
zW~vQ&Lrv2amWMf%Ubps^4)id@y=6O$mJ>%r_lYuc?v-}mOFDX9txc&LKByHHulgEW
zT+u0iME1MLTsda#DLpqVf20GHGDxtv@0qxGpQl><2a!3pT?$1?b3g5qLe@ihkmo3_
zO)o!S{g%^eRM(?c459GE6GpNw!Pi!c-o~r;OYB1n;zuC{j18gLQ<?ps9fB8k2JIgz
zb2vw#65l>e;TNdY25CcOZ6ojC;T|}RitpLQsH(QgpV=h<{n!-W^24GiS8#q?-uPsv
z*K7RnCz~x0f+~pTT{?>^hnKflW(Cg`(826LifZSWP?J)G{?+TAk;Opvr(#80>RpYp
zuhy%=Kob4S$3lx5r|sTr)Wn-KEy5j5FH_;}gUKX?HXV0YD{iTHCD*NIkS+Q{37b6W
zm#Mocm*(Q`%g25uC|I6}XXBZ6MHWU_>zi#xv`h)&wRT3tjv9Xn+41|%rF*mggijY4
zL!p5$(Q|dLQ1}_;+aXgjNf~Y0YJy{n2G<zz4=!miZ<kilf-_38u9n2IIy(!dt4(qi
zzbCiiCf6gIpFD4RL0_r~+}GRqI=eB_n@c=Z$16!f<3a?!Acv%idZ4Dy=WXe%SPR#9
zGLj*MC$yISddP)j82>~W;?Igeft+=@-4;T|RuP*h9WMVZ>9dFGBGa2a&ess`&cFzW
zR_7+4@(r?yZlwp459QKVq>7#7QH7D!w&h>=olK#ecU&ioBZ_dXff*Sb4WbqV>uiOj
zb<Bivu`4A5%24COEm|tESc|@^t4~u@O!jXN=fuR){Qx;`u*!0~{wUjP!rj_j{@}@{
zB1zqy`J4%n%4j(4K0R}%27OB&ZUsDl_!xO;S?{g)B0T1+%5y$Mw3b*6WJ9n+^JP@9
zoO%kcuD5f;-~p}A5xww;&^HFQ<Rk&d%o62^P49v7lGS1WloHtH5mRD_vlFX0(O9j_
zlzxV_3fgAPd+aedSDH9*x-SZLs$9Yih<*k?r?=qlo30sMV6-2-HE?@h)5CYfs5roa
zYv4K4lTapDWCFW5dN$?3Tc)oM&@Zh@8z0H0q2;TPh%CI@5+RFk9((A1_0(8@9OGP^
zZrd@!Tr_(i#gTeYy=_M3-`aY+1Pbg+QLJnVam<G16Gb0dC0K+b$Z>+24usMyZSk%F
zkIBc=)+})p+5&)XEpq+hxB1jHl5kR1=}`MjuL$~!L<U~x9RT}j;LLe*On#XAa$i@!
zOc22sE0id$1CLj?GO@*+(la-r7Q3dgs-^&)?#`~wXtuE~poFrT8j{iYZS_QMg4u7h
zxK1m$Du{&EFe{QX<ryc?qgUP|AXFznXWG35g7bPKvmWn}KxIqos!6k?0b`YgDu%bh
zL$;8Q-5rkmYlHmeeaQ}uMn1<Kv!n<uttWJBrD^;{C;<1uBYw-njr=ApLBA0z04lgG
z)FpK}BSbNWySt$TCmIXI&iy8>xU9qr5pNsy1^v<j{3#6GGwMXS?(8oPZKJ8fZ*jLG
zUd6KK7%((AeF%t@HxdB_zs~9(Y@(iV>$-P+ai7L)Y76jgrocc!1%RZ+Y8hEHrmPyc
z{!W~pSX|D(nN9*uo_c(ZGgj?Ay+;LsKZ67cpW*<)crg-qk*25{t(7z!Ol3Qp4}PiI
zR8YI<@D`+q)AYQ=vG(G&F4<wX5xhHdmt!*96}p&Ll=m2fX>EvOaNdl~<g?A9ax}M%
zyB>4Cc(JT=XmVjq;|i^lS7eFn6nD`5vFWD8S5@oul!1$$ANGdzO4-{NhgvRhH;vrF
z6Gd#?Xt9C2G?87=34-4$QsnW?PkL1bGsGhMs$QV>BRM^fe>}6FL6k9i=(L+3{VwS_
z8%29{wTgd!;@#SVM9dgMWCI?zrS~#rMFYx7tgbhQMSyD*Wv`^k6LAbKi5$+5hD@E-
zGD=71sw)RAEJ<0v`>H}5G1oCrHCmz4#oSkyU87}QM@<3zwQo#=(^!&O5|%W>8Z+iG
zm>J?58dZb>pqF#rdw~A0TlJ?>x2QmuZ(?(u6ch6@)R&Cn(z%v52G&w@w=a?(uUdT4
zy9KyJK3W{jG`ht8L|xXOt-@z9q>&B-L2lWoE>uHfbmMw<k^vfEXfJ>ORJQ(V7yCPL
z)M-9nYp*D!rH8#i1Ejwap2MkoDiuk7tYAHALb_-9cG}K0UMO#flfp;Laha1YUWEAx
z>x|VGjv0@TRV8ExSMqv5z#!?N0BRI>yxBrOEAFz}6GT?5LdHSU%*DxLu`8rlOkD?t
z%Xlw}H;F&kJ=*LL=%3y4d|YOVVM29lnW2ilYpUv>)|Dl>0t4V6ReY`_m5*eHZGa}U
zq#MhR-A2@8Yxr^rh~B*hMT1=MXq}OV$C0^(oG4JaqYvP@nMe?O6_4444?2BP8W1Av
zN!a=Nnxs<XV4`jRSSifKTRw=IsD>P?4=c_G6%2hDs_U`K_woirJV77ur`ds;X@D89
zT)n$Nxw?5O+OrDym+zxW@RI)aR6pE2Z6j|asr6%u0=~hybxysKA3(3Z1vIfvNi#%P
za2v}&e9oDQY5Ncn1Mx6@lgd7;4JDC(Kt+*>aZ*^zjl6~AFZK>c5o4Uj-Hhhl9yf&o
zN?*~JT66klKN`lch^@Jh{UxY1+f7C1#?Rj8FE~VWs)qHgJ+Y^2W}tv>lq`WeryWz=
zR(BIq(Nz<(9uY%4NlA}}D{WeptHnICNA<31laiWM^uS!6xAt_9Uub*_iJx`3-1}QK
z*_bm&1-8D#LK&BF4MYcJ-I`n*uU3c4!7qS~tIq^eqUXcH!VJ1q)0$&e#`O1})CRMa
zsOo@N6$TxB3p%U3>FYy@f_&Xu2eDb8@Djw=#%^hM9u?-wO5_EByi<#rE;=h!ay(91
z9N}Dx?T19;y+23}dn+BhF1hnYbQuelC6!r6t7rto!<(&aehX2$IPUia!ggRU%#VnF
z&}f6O_5lJ-o3()qY##FFi`pGyQwEC6L+->mAx}zzI}Pse7XK@Q+0n~D!pzECEG4x+
zwSnn-5|$e|F&4@SlUeElbcq=d(56nmM<{8J=c=2$V37eK5CI_gCIak<6@F5G>6b0_
z6$pY#6ZtQgN{8x?8!@d3I%r%%_ABPlhN`kkeQHhHOOOl~njZm0j#FJ@XVnz>$VZQ5
z3LZmvi;qs5zQF~zpu&o7TY+zY4(HQOO&)T3=S8p0ID_77I{dMjmVjuvOVG!ytJ{^d
z8=(a@MgloQ%dFLJQ%Fv=hxS}2&T!m(UEY=p?#oXF$^TB)1-_Dos)(SYr#Y*?`djs4
zfG8{_SA__Ztd<nHmIvZlms!i46q_X5$~^u;z&2(_H};Dh8mu+13K7wY&M@Mu3x99E
z%t=<>?hNWvv!3&4-#(_lGziqkw0U_f#J3(a*IdH9$(`sPM@;(y7}9v}qj8(0pSI5J
zo5awi>uw^o+2H)*v7zKO3tJR|FFje6rr^iD68z{4nb!ye>ksDv+H4ml+RsFK$+IO!
zu=h(*_7SQpM9e*McuDLW_10<@O?`TPNG9onNQ!BLIRz8b<oiAr0MJPk=LMEIFu1_d
zI6xV1RMcN#Iow)nk+}Y`?A=whZ}Y&g#-=;K5!9jJrzK&HTeR3M)`WBlqDBVt=yyM3
zOSUG#k5|59yb(TPpJLzx=@OOT6skS^R3&rR;E6b=&OY40)<^(2UQjTA2Z(qRK_cb;
zaQ+u%P=1L$FaDPA{qnjQNCp-4YXyK)TS`HA<C-s+Q9~{WTPD&^UVDO3<%W-4tv4$U
z(Xpd0QtYP(F6=NKA&22jbDGPg2~Stpv|gS&XBB7LOup>3ndiNZcBxVZ)D)Rfn9C{$
z?7*p^Pu;MZPv^wly5Sq0^+}yr4OE`o+n(tvY18Mvoxy(3(|LjMIpfuGo4M`FlpQS}
z0bqIm(2dMLtnXyj#>3vwKCpbQd<!H@n^2x79WUJ*iVNspYbpAUP1!s7ld4v(SEad#
zoci>VP*Z{WN5Fh3YfPFgde5>(^VIU$8%im6>HH2Gq`Z1M-E&1zQkZK5&=7^JOb+vn
z-mnl8go&nfhsr~atrk35K7tQCJUm-KgII;-+il^CpjsTUjoxbn+w(VPfQOfRJSz79
z`SM@}Wl8k{AyyS@Acla&zBUA;y#S{kw$^0U=Vbc;bV{58)R5%hyRpnjDwu7@J0C+R
zq5O*+jn8mMw1Dc~S}o&{(AQU&ZGvcA9cGz64cB<zht-Y*<1qQxf}DLDTe5L~`SDR)
z(<zf;IXfyF!}dEE3HU~su0I=Uq$Zm3xcM@P^Qw9lZt(ABJx$JHOK)<OK7)Y3Ew0f6
zxTA7<7gG~6_566bgrDb;1Xl!HmU9|ePKs+{cLKaMfS?kbn}WtUPsy1>0U<?q(<{|;
zBad_T<4(*|B85{=P%!hREfq9{`$LK@cDzK&96j2A?T)n#*43j1QqK#})t+nGp^a#E
zeffhsK>SBNS<&8j*53Y<g8U%sk95UiAD}iBqce^bch*IJ!)pCWn|f;0GUhc=8iSCP
zjl;wlWu^yrK(kRxk%c1FhB+B-ZOoQaAGGVsBIPl_&<eG%8Z&kuW#XSq<==Te)!G*k
z9MpTVn?5$*nVi2qANQ$is^;)123VHudJ@CJD3PEcs-xU5y{HvgvOU%X&TT>pG2h1x
zt1!{!8(7(SA%4W-4W-@W8v+DoS28<0uMd%(e~(abD%@|?1!BHFyx9bYjk0Blsiyam
zy;~Jpl4tTFEbNtmZ%In;FgLEWClx)KVgFjLjZ}}NSeYzQNl`6I{hd=$3V#(~0%xJ-
zdGVWmqI964&MjC$fE}cDlz&OIdL_|XkU}8Xb%`;X;||1KZYwMD>keqD?PePMBXd1`
z`SZcSv^{9OwY}0Vt_^dEAr-3adq)c)VtrVSYuYVs3O}e@j@7@*U}dC1xQ2ztIIk2)
z2Ve{ErWbgh+$49Q8Hop=*idlXQb@MPLdHm+T4}rv32?#*CUfBoUa9C<1UCD`G>nV3
zz{2Au)7FR}BXzV%R;BwBK2NaEwihJLluAd-pWWxLsi|?DaqO!3!lmJ_#vOCSO9@Gn
zlV<166rgq)QL_s@P}4mVJwIA>N6SOU_R_uPnH{!Agy>pwD=pUamcnY>Q41C>Q*iIO
zmI~6btWv;`7i;&QfQV-|-g$HE%kK=NOdP#m88!7HeUQ{{*hU(9xACNJUsflCh#y~6
z|JSCtmrp+AdMSfltsqT&Wy1)E{ckt7KexP7e*85Bx4`)e{^I;&Lm5<kKhEH!nwGGy
zCo(j0z-FCFd(xlVZ_$WOS>ZSM?ynk&sx%@jTm?_)EfJ-q5;^r%c4hU!Rq>=#n#4U1
z#LQLIVm;^9pqa~=38aO>*SC*9r5Vm@I(AU><KeWX8N`tpHAb@B3rj7pfN%ToG?A1D
z<+7CMnRuWG^}l}=)%rfF&@x5ZMc((aja>L;dQ9=rDCnk|BK7c_<LJxctP8bnuBG+O
zGtt_ywTHOdrdJefS{U&3Tf(%xck{hJ_MLWT*`9xzExK=SrzygO-P>64p9m~6=pDGA
z8r&ij4(%K5_q@b{#15Q}FrXRiG*g@bq;~Pxb33M1Cr^QC?kVMHZ2)!il56~DB2~$B
zU<CtRl@QB$it5o+q<>Tfby_*PSJeb|hQjpp<`^dYy@*$X%8)y3WL9N-%@E))8Ms*^
zy(*_g{wO$kNdqu-=kQw^wJRV;qc^UmUQ-rENdsBA(|Rhf6P{KU_=bA|yk%M);YQJ)
z)VCJ@B`$v|zh-fC995)(Qv=i*^m!~wtC1!dxIw7j`j*vob2dqh?Cb5z7T2Kfkp+E5
zNj(c$`yCLV%Npf(+cAji853hixk3##5)Ri94?BZ~s0)-LT#(@`Q5xfSir&VaK^e)D
z0W8$Bx&id1*JjbD@l#uy7-9@G%Q`I9yKdgAGH)ksV{@<1!Y4R>`Bt76H3>HWZTq(Y
z*!B>b(76aC01s<)9{V01A@g@ZoNOveRGms1%mpy$bj$0X@JE`-F5I%<A_{RU55r?h
ze_!C(>82&**V-C#LH}`zq7~;a;w3-L$ITc0XKRM0wirn3uI5;Fg{<^2^G9%m+&gQ9
zn-&?ce!U3{?a@7gSN0^+`*3;m+^)@_$6ObCV*7~NEs$=pd3)V=FY`FnttGj!bM;)U
zaM64o^CV7>j2AwoU&1TqVizhSQEObYhxoUM+)l^)>)q&C)7Nw{&Ji)3sivmvo5C&z
zrjH8@dN-<LO@B?6kNa}9lCHtIIR(3f1`G(+_C`9X>}`Ok$sv;}&A%#RynIa08e8K!
zYwkgC@)W^d-0uOjG`4lXhhTO9u>Kv0gHZ|Kg$tX~32tZP8)+<++%bboYUIOeZuDGw
zz-B1#cBjY<5Uh@@I#IzH@58r&zfv9fED0?1JSmqx<2YJg8%LR-fN{=dEtyDHMXGZn
zK{MY3(VW6<@`gjV?8DfwWmxCN6q9Pfwn!nGU}Hk9KPH)QT*rhcYE3I5>B~0&51L|6
zo2!Ua?F%o~jbHSJYk&dWw{zcCZ0p`&C(sUABWD$n?KB8Z5WZv}7JtM0;@3aIqGtP8
ztayB@Xu0)2zOcym;u=qKm4SaqV1Q2vmuCe~jR%*>Jp`)ir&X^z#M2FN1&JGbrfj{F
zsp`I$is=q+k!(C9dHt_zu!oAXNqp-Oq}}^ddG!&F|Dq(>GJ)(LLa{%0D{&xeEE6g*
zhkCn~^HUL*jZy6^XS1a~BI7oeO6U16n)4xuxN1B($-f2E{}AduLtnROXh|J&{7&|*
zyZ7pz4N74(pzG#;9Pu9#;cz9O&NU%575(R+@%K9&z{dr12e_mf>06$cXz}>ga(G>E
zviBMd;Pdic`6Jm&M-gCy8c-vz@CXHLQz<WSKVw-|Y&6=;M*k|^A?Dc%<G%;~_d#m9
z9WG&`&m`6)0t?Idt%!^Jw>tH;$W=jS*vI~LxhJx8yf6ma|K?JE`vn!(Kyabo>Ak}C
zr#SPchsj@`uO(2~D~1L={%;=EACLAgcPHLU_bUCP>5O?X<iDE`|Mj*bu~W9f-QuUF
zQ-8hFKffFdcamd~r{?#p>(3wl=Z}hC@dJsfKPVvnug`*y0O$DlSm`;9&kcc_o)91@
z{b^A4cTgHfJh**8$=5jl-#@ok%&*c1qMrRMsrj3m#tzV;1&B&3zb5q~e(FB)UzY^-
ddcuAec#by<v>U%oFa84l$;l{77fU|#|37E@Gx`7k

literal 0
HcmV?d00001

diff --git a/docs/codeql/images/codeql-for-visual-studio-code/basic-js-query-results-2.png b/docs/codeql/images/codeql-for-visual-studio-code/basic-js-query-results-2.png
new file mode 100644
index 0000000000000000000000000000000000000000..59d38f8a2eb664eeac48c1d47f60f5b58f463a79
GIT binary patch
literal 218665
zcmdSBWmsLymNg87APKgC;O_43!Ciy9LvVKp!QI_GBxrDV2`&ll?(X_7y6?T`oZIQQ
z`#rzDk7w;?7i%w|YSye-v&I~Q5P4ZK_%~Q@z`(%ZCB%gl!NA@?f`Nfg!9W3bzAxK;
z1a8!r3kk_f2ni9$+uN9!TN;CbiH9U4L4SywMgDaBT*MAR;!i|+K_*WADSqq~MN6op
zID|j40l^o&q@H(LZ;6Q1RP>aEJCrHEs|Z&TK)g{Kd#(QAr&A>uRpRxlpp_%;<CgO+
z{_BO~tf7n)kI{_uTk!0$1_L`P8bpCq3MJ&V^^x$<Nd2`;2;?y^VLb#GEuFw*TvSvr
zq?D9rIzwKt)b!(InY+8|<>zk{C$BMiz_JPa*KaYKS^VXQ*IDIgen5gLhwL~dnTC?z
zVs$#g#u9XT#ier$6UX83_n2M8%cuoIcT$0^{Lm^R0fBwT%QZDQMF#O3$@$X?d*;CC
zZ{XJF7ZjX>MAsmQyG6rK@_keuT)dH=x0rRd;s#~nPcL)|A&)7Ckc#Y8pR)Q++em4Z
zxlp>mFgHj-Y+#s}qnVqMVvpzz6&^a<G11P74vIJ=_OSW7n&G07F}ECeAB`=P(4mHG
zKaZsmpU3@xP1AoLsJa6uH6dhFiA;ibfVm}UvM#CAX?#ZlF1E$bO-W-PSmh6TYsx`P
z`qO8sSEw*aT*&D5tuWtFm0gRmhuq+eb(>(MrIm?da=GR4!tBFqqN|e8a0+#6Pv4^H
z5}EoTo%CJ0Fj86g*x9#=UPgD}CGxX#(i?&!W$>{X`b^XGW`VxsClKKMU68BoZ)S+Q
zARu2wQ>rn#iTR2(x)um0C&&LVB335Tvlr$$Z;+;bOHB<%X5oA%+59%;t4Oe&w@Omv
zPb3St;yB!@#v39qtTQlqH->MM^N3)q=%4OPGC#z!mZs5=e|rA}`{fhD2Vb(W*P`uk
zKZX%Fz}ZO*`H^5c1z6M|TnS+F!C}=9RD3T95K%uJ>Y-D-h8B3u0TJmJmkpl&I;maR
z7RB+C^$F62AK?jd_$NjN@b^dvxdJTW?<PK95GwV*F?dfGjgATyATTbE6Au$YKw14}
z4(6RefIOum($~-40V4uQ+57V3j`&!g0(0ud$T42W>2sBUW4E8{p$!E-t}?hXro+(t
zRjq2dQfomZb@i>d-ynOU90lI5CY?~c$rh)8lEgL+G|1tR_x*zL0YdV#hTnkLySxDf
z)-PlqsP_=Q;$ObG1VxBUj!9Qz&cPmrA&8xi4USoiX^s`_5bwA<zP&?m2jl(x6q=*=
zld%v(3=SG4K%$$bZ$m$nF^It_nL62e2+0I4tcR&0P|c%+o((H4e7M89<EU%OfZl++
z(r-oq2camGxrcKd!cI$zj1I95+6B%9d^!NT)2lu1M8lQ3nVk=czSE{1eLZSzbiL_h
z^aKUc?K59T43hW?iVAWqhzeH5f8L+46H>v~Ox%$y5EK`(A41xVwf4>c{}eYwc!H2K
z`m==K1eYT0F61tj`KODR5^**{k7&amif1Zk`e!0%UT55I0t^J~^19`jC^adS;|JsW
z;t}mxI2|}6adfRqwNkWNw2~GqsC>W587n2pR~7gCRQfspQ}qne?Ufs%TiFBFEz>RY
zS<6}88<y8n0RjOm0km(#-jz}FsCH9gQMgl{y>oa+jY?0AFd@&PoeCWxHZT4yUpohW
zywXvKD=1T%J{!NNZc;2BHNi5TC|-pkfigpB&omnY3J!rdp)$fQcD(B*za(c!1&zW+
zrA*;S5l=NGZ>^9>{)cL@@~+Bl{=kPzMHz*~oVn~farjb`T(pu}EvvS<cQvXGI}Yhv
zCtDk%oSfUfTqV}Ic)6K*Iyp;)d|z{lSMvy`X7cRR*AvKuCS{n_tHjTnw<^$N21TU4
zDCax9-+!$X^24N%Nh+Ck2xR4CrE67u_5RTL5EfS`!!`q+tA;DeF{F`Z5pt1e(PR<C
zOWX3={oBRYOS~PF3-vpRyQWLc%RYEGcp`W<Oco3t_79937$(>%*jJbe;aU-im<ia6
zti4!O;Y#7xm@difWVK`xWX5E5GWtr~N;$iHlOqku4G0b*4ujiQsWHPdCh8`?OkQol
zor9gjZ^3VsZ|@F=rPLYf>^GOA)uI)nC7>bFzN3AlVOL{QZ>?dfTvJa_U#uxq^Uy4>
zv99(uH2g?hF>B*6nrPD0?i^=Tb%@UG!5yL<u~^ZP>6QMdbFYJz@veKWvvKQ_ovn-7
zzU|a%US5V_;kra$Tl!GCVtOPOZ<Y;*E<>CBQ+8D(^Ym@DL)+U)(veNmByUwK)iR5Q
zeH3<W_SSjAI#WwSXQq3M`<kYJrtX#zuZ6C0!<s%3x%i?e(^k`_q+Hc{)#7PG8{A{z
z<B!K6e9bJJtgu!LU7uy#))pLigeavR%+soC&BN(6xhup=`b!^VJ!Aq{GYv5M6U_>T
z_sfEh0l5M2z68-I^~@&<(fVWGvzI?tcD(N}?vN9r5mE`L4xA873dDoQed~ZYk9Nhd
zK%s@Tg!4WkIO0nvM$|<(P541nDtZmqo=LSvHA5pK6gmpXfx^TwW;$0pEYQHp@Z7)y
z4VzA<^5zb?hO}5}gtmZglaBXYP)JxfH`a9uc0cWQWUs^8b#K%Ok86_~{jK!_(Njgc
zx;%wz;!3)F@(Is4r=97VZLEc&-2`<`P{oHEvRU?9fiqW0y@Azuo8p+_8uOd#`f6q(
z5rxn%q}t40BJM>qAJWN>bhqj)r@w<j+BW2&;ww4w7~>*Y#H<vFcM&IiX_895mmm%j
zCuV8nR0vk*S{3{l7^coL_Aq^p^&45;WGSD}sqy~R{_$$h&mx=k)FO3yuWVSGyL!ZQ
zG3K)Sl5*e1s$xdIe)X}pKSHJft6|?B+UMjphf9u5E_S-<hxw#0{y6^|AIoLS7Prx@
z^4o_8?AK_odtPVNozyPe{5UI$&1$uhnVD-Hww`}FoH@)r<mJ|K!J+&>F+_*6(4c4P
z1*)QG+j%T2XevXWN5!9!S)g59)J2w`s28&tz2eQ1ij!;_Tp0X#{q=aU*~JszM|ax0
z?vWLm1pyW3=A!Ck+XLDQVJZnb9$i(B`a4yois*;hr_Q^Az391|&qBHgVF=gwu$&W$
z#=6Q*A0BsVKh|q#@Osi*srA{7u1Bz%utHm4*1RTfhusZ9Z|i-WbC`HGI;Wf}PMy3f
zx}F-}JKN8>OSmM4mw<na7>~#>eHdY3=Vbl$X!10_S~X`nI6|2*@0{t%cl}WJb{1Wf
zK9s(-G2Yd@!p;1=YfvHSxE8XmTKBZg{_yMduffuTskhVV<rytUu8%|TQxSn_&g}d1
zmh*eovrAts>MY9JtbCd(yK?f19lW=1>88u1TzHPPS_T_Dsyy^vOyyihTb5>)o;)5r
zMvse@e9j5>JG#4^ypmfV#Ll8Z@xSrYJulu|&v`dJIlRhzWhEz=#e=f}-}*qj9yKb|
zAV(<|mSxWS&E5L);h^H$wl7SCK2RrASGIZJUTJl-r946>>uK<?yf)@bOb&Z2`|^^t
zThZOoiAUP?aNhg8sJ@9_vfgw4FWwwyF_)E>N*hI{D1-d#d`X^+PZJlvo-LN^s%@6L
zwP0Poz7rsPB`XfLa;OhRF%CAy1x7%ZdQ@Blnfio~Omvdv+IXCa%ne564h}O2POyRo
z<{=rAh;}L$@tPnwbSDGM(ux+F`SJKeIUnU&Uo?Fzm&;(qr`BcGDPNy{NBn2)rRVgH
zd{yj|(OX>?515X^v{`E)kF_*blQ5By0iy!iFkq12SYWS#7C7+Y1IPYXTNIoE?A3qV
zhX4Z$G6w_l;Qx3=7I=U8iUwXUKl7jO5ZMs_eBupc_N#xk!KYpx4fsln4!ptIimN+-
zfuWJUyuc+CNlw7P1i&PO-+yogKgfViM-{ni3xf;&9LlMW_Kw(ONL>NMn0YJDV9M*`
z5-8=vdpVTJ2?q56)j>4el;={Ghu1+CvZMcVds|kg%a_B$%#7XLSzPC~<LxSLUfi$W
zvdWH%-S;(ZYIYZ!uBFLQz(Gj9ScDA5k{P2C+Kcg6KVrTULJ*DNKyo?lE#MUW;uH~p
z6#makFOsz4VnXV+x$S&}+u?wfVx5Qp0=RyWX4g79-BLM$kbvLz*XzqW2rCOx;(;KT
z;7@<+5^#n<hBPrPBL1Tv|LV~Hrjcy|BaWoTTqlSL`fJbrt)u_#x4s9EBrroGvSOis
za{$9g(F7GH)&WdJFUI;C*DS0!QgTK{B<kNBKq?`@d%fX>H^##MoXP)<;r{f@ca&%X
z25xR#%D>ZlV8E<G0-xJc8{Q2B|1B5z1Y<-FjKJBMOYv_G;A7w?NMBY5>Uhw<`{#c<
z?SHj(zbr6<g9FF>zd3-PaNw{I7F#M5#D8P{Uw$My0~o>V?5_CV9KaV$h(il9^54&Z
zfDF>kvXAO?xo+Fnjm^~{d^=*X$P&pp$q)a7y*0RjVQG56j$MZR*To?q0LG~I{PegO
zPpR~|W;ZN@+vN&dYOzhXE#u({`E?=lFSP$*F#VE%)k`)U)Bj=hcnQ5x-fKrqtD1x~
zmnFBym}Rf)3~XNa>ZZr5`9W!krayWia0z4C_IP!ar0Z=b6o{iUAz|Ho3e~o(AclJw
zWpR*AUEbVj)%NHdiadisVTJzJ+5UH@@P&H`0bnvg|A=7%oRC|o7IZFGv!+b}=sGhl
zu~GQ^OZa@tp63nVub}E9*q3H9oafAsin6?^$kh+2|KHZlCCtxwf{MP+ZyVhjolBEC
z>|3Ri89G2#=CVw=!d9)fTh?1cDb_>Dj7LHE-d{NGEy@}Sg^bP~ua}!tb=(TpF5(5w
zL1QhJd{+(=DRMlg!gc*bVfA%O?t|JskCzULQx3!XfE_lAYO%Q-zhLuux|W%%reYZI
zcYl)OyUlOf`}*yHdwBwf$td_4S1)T)j(<^QU+FKdu%!m^mbO}+kjgnR41?V|J&niB
zK2azPZ?e)*jNNJPXYM`AuimS}`6k-hna&#X$==6fpJxYrp9i~Na*Ji!+&+9npQgS$
z?TmFG=69-+p@736nP;61I&_{Bz3fQ8yC`I{3n6_yj%teLjV5Knw(I++^w|-d5P5I(
zVt7B=pdirt^I&wg-ygTNtx1<v_F_eveV8nii6f{mNF7f5bYy&fM!$V<I9FrGY%&z?
zud|7hFxnb~=l*4Xq9E*kEsS2Hl)yINor*1amgjfqyKVmG*+sAGMIF=(#MJ@CS=%mn
z+*@pJ=aQzg0cvcL-bOrL_xfKdn!}aH=cD|~dRc{PcKw7w^}v+OB<0zU)Xf-#i6}i;
zEq@%;;Vh{x|08fzqd`F9xMt7W@0T*^9w{r}-exMenDQ+l<Y)Mo8_yaiIRy_PEfX@`
zpZ4J|PV4#{KAmSh*GKW)^*h^4$eoE|gE8kQEnx~c)^|W**DI@P|8hE7n60szpUN`m
z4aY1iD;s(HEz{$uA(!aK)8l=U+g3`S*ZpB#!%azSS<D4{#Dg!d#}&;2`BfU9S7V!M
zdF$O*kH^dDefSbd$s*QLO_LO3t>soPCHfTbzToX8zzC`4*hMC_{_x+*TN{_Zd0Zbk
zq!ZZQZYEtH9@v{gw%18{+_zjWQTs+a|9+G8y@UKHiPTSVnC0`-;EgbNqq0w&j@^VB
z;b|QnT^lAaiM%suYF)SNeSRM|^=sI%DDzIe1&*fXgBZK*if7EsHzkstJ){s@(|Sby
z^gX_t?2(qMIk}@>s;rL|yn4zHf<Y>!Sh&#`G2oNoR!KVU#m6O<2=56D+L=drCUHGa
zI;>yfhOYOmv4+ZisjlO=$f8x<;#Q)@N6NNVR<SQ7(4xBkNOFK}FFOI{OPa>E_fs*%
z^GNjo@yzAX;=I^9AxI3Y<tEW8rIWe^`$4xHOlG!f7ESlv0xw7>6!5_5J}$_RA<1@u
zZosK1l#Ob-k)>Q?@N!!|&WK`LZA|I<Ja*@UB<F^(;4&L8r!-p_811%IYVAAB65l~3
z7GTaJsae;~nj8Vk%?Sv<((_J{x^ii0`yxA1>Sd%taQ)1^+e&i0%HNmMwozgZ792(o
z>BVx}H5$JSg#F=M|H`t4FkejWdiZOa<4Gef0*`m@tpHLLLqfhZFhFORAzl~Fx{X*|
zuR!mohSn9!{nBkGp+Fi8k>uozW!a3m#st-)gXcoo49fQ_mMqG;?$3|ci*DN)+s;dF
zru^CrN`=#*<Gz6_Y38F7;Z_G-t;71lP{MG*6*k?$ARSck?s$V<)c%7(#w^dXkSIDe
zOCPI0FKjbjNV=9A<UU=8S+4z(^&S>y@4Y!V_Y@ZM*!`)}G)+C<*Ph)xwZx%@TTtC5
zv_0;Zdz-cM*4+4@7>l(#a_QuiXSGb9r(4|5Ox-aLhxO}`-i0C4Iv%AGpy)nj74-sJ
zSx-afEFg#7IPZV#yzy=ahpyMOZYVID{~E1Et)UkfZA)bdnRUX%xDzWyhY9bzFuLe@
zK1|CruqH`ex-m!(BDIh~>X$|c1_xaco(Q3G7!Snf7Q~rll0gY?h+{GRH$f^%Kn50K
zaM)97=DF#()!}-{!$zteRof4y8Ve#A5|OuB>^&TZ)tvP82)9yh%o20%t`?W54{k06
zN+`n2&(~|;2k9Ihex<J7(35^9yr0>5E^LM3!U%>7ZZ9`Q75O|0`2C>Q`7nEky1H3T
zz?*xfp1CEDV{Q8n9o>*Me@&0<i3Bp-<7C(<^Lszk1@{Yfpkjweiv8q-w1a_2iH)c9
z-*yy|t{!Hazu8~YNDf&qOtZF^Cd9@9^&^FVC_%)rIFp0D*KebKIHbS?=3txvVa~;6
z(J3ix^r=IDWDYxc{$?InMGL=Fbu&y=wr;93y{^>pcbU8i<9A=ezJm~0sQg9S^P`O?
zyH`08cp<DPWN>?wX~cF(GDY-ulGjX<>FI7!79HnTy?69N5`S#of666>eE%bITo7~c
zg<?W90$&DAADT-I`yvr4Un#{A#Omc+Ibb8~-EO6gK7%CQAk-Le7^S4XG6j0&wQ1|j
zn$Qst^SIdL;u1$Lca^s&1zPgI)$}~=dF<bf;(wZ9Os!89?SnK98*i^LFlx0NA+ETZ
zb7;6aG!1}C=kqG$KB||?yXU;;^(C-fs2?b*4~?sorQ)jA@w)u=eUN(e4K4%^JJ1`M
zcOE^X7Rw<-l}qmXw+`g6J;{8DJ6PpyPwqd~7`SqF;#W9@)vf?*l)o3t$lxy@HBQo=
zDy?4&J=#pty*dtWp2(P-Bt#AhfzUUKf#{3E*FBzaU9O7o;=5USwahuK#?s*qyYuIj
zE)Yh}U{mL&oiw5yszW}0_jPrda1PfB56%a{X}TUG+KRsQCij~7prQ-G(`mn~$y(t(
zffc&2@=bVft=N;4)#N1F`e^ROElT2Pl*1%mw^<m7m1eje??D~o2}FcX7V;oX!C^L*
z{l#m3iFtpzJZn24(K&NJg4;Z{4KNFF47n9N)Wp^C@^Thl+nd7)AnsC*9-vO_jpg`V
z&kwOqYem)~9Uj}mB?jYCdI&4p$O^4Us?YGGDxz!Z2fR~!?VF&*{v<iTo+~?`T&k(G
zjZPK}CbJX7fs~`mqnIrM#lon^xT;smtn&0nZ2r@!BsJ@0tzGk<fYnKCpi-Kk>$>K6
ztlpxB9>%(1BP0O{*bli3WU|k3NxP_+`jKX@o7O_9-!w58!y-uF%mN#$m%dlM?bv&0
zPMmrU59|8Xz)rGmPHdaz%IBwk;wV=;5q-nzPczoQ)_FbBZObdGUD)0H{B%Ev3~e6~
zUeY@rL>TP0nV{O4FQwDl5%~&T%+!oyt}h&O{q<*w=~`fqXaJVS6n-bg7W<MbG0y@$
z@zm_cZ>0}R2o*OlCOE0mv?%=S(4IgRdDH=oZ%L5Y*|1zBho40@vH{OF)6VVo7`n5Z
z;j*-Q9>DMpo6S<~Yn<1~O2^aE$_fw$EFPbFo?_%gjg_DTh5T=B)}xw$3~<?nY6TJ>
zNa^as5-p<JKffLEc4A^Zk>mfBC3_P_ZxZ(Ey#Fat(|UJ=|Jn0c4{`DyNOX21dCvN6
zmDiX?cXgl6(CHW8U6MKMa=F*TnHPZFAHD2q(5CINmcAUOb%bl5#^ncTlIv>ep?Dw6
zF>9u-u+c%6$5{9^*!Ue?>y3e?@^RdCJO9&Zl$rZx!hUIyP=xtc1kR1<@7y{|p64>p
zOYi$-@}tI*O+vpAq(>oOF=y%*qH<l$7)ph%nfBHEl;fHYh7&KMybc}_@@C$t@7~$a
z$DL0uOtF$!8%rDzn<o8JIxUao+l7FAP`lu+lE!x!T=jgXdOb8bnr}7I>|NP|MvcS$
z@#hz)+_cVKGhgQ@nPJZ3=JPu?B~JmkCs;^jeUBg(4Eg>~WS*Snfy>~hsjwF_h&~8{
zv`}uWCNTA8h(xk);eA2g=p*>-g+Z)&rF|<uScq|R&kig5@N|%ZcaU`DiUs?s9kDe>
z35d_5+AAxIE%_f#gy>gDz7p5Yef;(d1#)e0olhS)hq&c}IVNd4pB`dd<z!&tOAml?
zOc2`S#PCD45UzyI^W7h;2c+f)lt*2~B%n;$Wv)kZk1!WRNH4|09pwkCP730rB*nN4
z(3|8cK5tI@sF$S)fyxhC?~gLkTcw!G(!}GctGevFAARYsHsa*&oZD~>v*6IWp+i@x
zrOwdjT0QX`h8Qn1X)~+VqxhGO1@nJM(YI7rcr@J7;v`Q(Jn228HQStUuNf9fr%<F)
zW~%qGJ+w%C?nwWhYxLU%r~&Ic`!!g_zQa5zWD*A2OwnI3ca+do!XbCA|9lJ_jX&zp
zFsqiAhfJ&X@D((IB>{v1_C1kphko#RO20+~rtA-SxL`xtZy3=ItNm|rhn>Ae2Z^T)
zjVjb#tyb-KQ0u&I;jTlN4evjJzrx}$SC68t>_%RqbORRTsK)93GlNXG8`;BK7x&|q
z>je#q(oNOV5IsigLHagNLZ2+}J9AG5zhe&75cy~$nAf1?8P-5I={eo~kACgsS<<vd
z`BF)>N7a*PA&~hf3z{}ElqI7U`UMFp_S4!f+Bri3yVlj?qDR0)OD&k(6NU@5TN)2d
zolDGizmJ@GYo~8^WqJ0r{y;`l>$O9Y<8XLTHF}jRsA-ec3@yvC3W?8nk!n#^`Rggp
z5X9WaT{9!j2jnMK*E@Mp?v;*;BvI}muXPV@E1T!ZxW;#2su0LEN6Du}`jBv?9Di;a
zOMCS^cF6MG8u@68;n)cq^u=eKUrfqfNBR&s>Mg|8W6WKZZjnRqhoOoW!3#?6ryHa=
zIi8$&ARp6|nzY8({v{)15!FjEPNb}k3eH8pBb|usacQrvR`cxj%jEUAyYf`@2z7?O
z^!De0;|j;-3%C&=y~<e>G;-oLec-r{Y<t}%HPK)`&u|j<5a<o-2{(mjfc>f&iy4FQ
z?Q1@=ksgAtz|rzsWf#?)Y}#nJZ>-%>E$u_TmvCAHPps;kJ={rW2`z^16}HbK`VmT*
zDW>iU;Is4Di-T;gWmO|wIszEiAobLZ5H=-6>?F20k;IKmauL<Kj&JGo$L8Nao2O!U
zrIxmMH2Y4>^5Odt_pst9WH*c$^0;>p9BnCfRmWGDWr){xho_?k_x|(WH`u+)cv^|y
z2=4@)AcB7nfsmM=I;G(|A7T~>7;@VXG5=SJ{O3lsCj=`gO!L~APyM&D`tKB%H!w@N
z+)0%&#bVNM!9u4%7`6-U!cZT9Q6}1FED%=0B4SEc!64S`;vtk2`r=m=Zsq}G98TjU
ztMPCdPT|6)?&&3gRZOU_){Mw}I120@824s!DNT6A=IrJzt7P881*-*r(Ua~H^u{2K
zM1r-peg7feC>Wel3WjpnO}3gP_kAisG>n>^DZM#x{Ah|cGW;xg_Stnj9Oe_pRES<L
zudtfXZ0xW)WN-K_A99S7OBfv&^~6>vwR0rV2`!$8^tUh~8E<S6svAc8dR1?kc=%k_
zWTkX*a7PtJ)`=1B;{#_Pd+V%<cC0N()EE#;XA!%J8>jFj(x1TmG~;?sAqh4g9N1ut
z>O^GDMJ()xaZA9YHTp#eZWU|9BK=tyquX`Lx^b6m8B-L}|K$)`4#d5#eJ6;MNIl(s
ziq%_ePWyb|5W4-qEY-?Eu4F-sRc)5bR~h~+%Y9h=8RJCv`7VijH$Tpk9BxwoaryZ%
z%O`1qv1-}-{??-3HMLV;*n2a**K5DDj?R+07HK((q8Ntm{0NCE5qe&<=$(Oa*jMpx
zgz%B~xnIWAO%z@oVtD<5&<d0yXCnw{+w_L-Dr7hdf1L^8IsgLfA-&(DnFSdpAH)^$
z*+np@j#bKwmQuH-`si4}|NJd|eYRO5kVe7gy_)Ey?>TvOg3dli(sa~lk)tE$5#Gq~
z8Fv8e&<#@M2Ej~oe2Iw|UmEda;0}T=SSS0yERecm*N~&v48!w*n#Y%_*j~53#isFx
ziE+l9KVe^RU5^L=FUi3#OfR-Bo_CN9Z&uYr3KkeCK^-qVloA%Qkh1p~;GCKW_UVkd
z_6wP(V28^NfW5|8s{WDU^w~+mQrypz@TN1#%$saP1p8<1(yElliZAq<x-D<seTe!`
ziD%LxpJ1a>oB$;mRr^J+`zzX$&NdNjd>`~D0e`C-)l<_kwlWis#4D=n2-DZk*vF`0
zWf%x_B?%AqQbGy@qd1^fjER`Rkr-pSP<QZm<bT>_{{>r*t-*d6_R*HwKq_8&`1nz%
zIgl7cj0j_Gdt$&*YrDi)@J;4^mHopl{+du4LK4sF7!x!rf?VMpDHqE9>ZjiK<|C`F
zQ%EcR#2FwIJDCJE4)@y-^2{&nGVr$o-F`|uHbRgg(Fj5$A?Jue481L#=3&Is>1P~J
zR^9c>yVE}L%*kY&{dOlr6x}I<yok7kIM&7i=ihA@4c!SGsMc@97<wMN`{|YP>}{k^
zlxb+KzTrYl77mB|+v*C(ETcto!Em870hw9G0%Z{mvdGfI4{gWsX@%Jm{sde7K4f%R
z-pik#_2MZYIHpP`4{o=!TwVaREHbKe2zKdIN{`Y9#*AD1=bOGx6QZq0*3{fVF1}>N
z<lWJ@gWNDWdvwvs8pCG(V97fG?P?k;Zs(4pa5Zs+VxR>blXrW?+YGWR-6fBun1XHB
zS*^G9#!IIAnMRF3`bSA9Va+#4-d2CX;rJ!wd-MWMEEjloMvsI_M!*#0U{u6j>|_(t
z&P?3S{OrAlC*(8`@HS*vI&Qliw$Uoi_$HHKnj!ZGLKh1Ihf$%4D&cL{79!rS-@>tg
zAA^6%8NSK?uzF$Zpr68m;punSbj+vxt{GL9D~OgQ$%i~0mVgpjlN00ALQONH*bN_m
zO*&VFYr3BGln#+kqjm*KTShC%I*A(D{4$1?e4f4N-_Wq#gn;Lw4a2v+r(h$Yhr`Q#
z6nw&15V>#;_tiAf^}0-;WxET>f{h`XLiIzl5}?}_I#Bz%+Qs;u;3<a(()Y%yWPyR<
z<ITxxz=3TRCYaO*H_LPJn-mflBW&;P9HAh0-FM5wGg-c+3vwt=vuu2)5*ke{IB5D<
z=7TromZ>^du#bTWT6OS9z4T%pbCw4)l~0)`TJmhzVV}+Wj303TXp%qPlK^Jpwrdor
zPUA=U=G$e+7>LuLWF&M(f_*{4yu)(2-yP+B6J@eBp7v8ik%Fs!rkAQ)ljkBkv?e+<
zbDnW-0hljEFgPvz1j*-LzR-AP-@ZQmfYD*@W+a2EcJd^O)!)+`f@FP?I-#e7G75d?
z&y#?GVB%o8Zq|i~%MSTI2**A+3Jq;p<;V4yTWH=;_oqa%T<+W}#z*qrmY!KW_9@a3
z@Y$&G!QKQjU;X%Y+eSSiA~q8;JR|<FAvC;mAkDw;H-l+0azOJ9LGcO69rQZ7yGY?i
zE_Djya%@DU%a+S(Sjc|Qo4f1UMp-iWU2mL<GqE4_bUQuRdpq4h_NT&aQ1^yRd{_l_
z@#Oh++j9$g|9Fm|e;CPnIxvJoj;|>yQ|b2`gx11J`lx)zZ!(4UXJCppWg5wH-@suq
z<&VL3RVfq`jCrH)7`->bXsy~=Ae<1=5f$@m!3U5wEislUnqE|mqICOExiFSAA*5u|
zWiHV_{1Zqg3C6UZa8bfyg6tvf4)EC_O)(%c<l)Tj2}OnUM7sIQlH8j_wAp<z`vMIF
zxD&6C{j8-wecV5sB&u0ohw1rL>vgd+-U=^<O&(s0uH(aL&`{9=D%9T|yhk}j6V-$V
z=@bWo4doJGtt&>!%#U^(SdvqDFPz}7-V@mqO$s@bmquV74eF`;n@a>%Aa#&V<7TmO
z;Mj)AF@=qfAk1F`BVrn%FG&$i22^Qn*e#|9f%~lLse4*Q3>(C5Vx4oC$PU`zO_#9z
zJ~5{EO+|*p^WFei$LSVH_S;JZE^_?jMGc>!V}%!8Pi3qTi(U06ok)+ElbItQb=q1X
z8D?3<jM<OH8B9d%P7ros5~GG_%%_Y(nhj8zojF}4N03M9Ro@V-4U%2A^+~kb3!DZm
zXKs2V<K<0t?RwC**s^dVjF7xv0pMq|CiWX)8c4*Oo+5Y?NrNgye?GPe^dbhqA`)T^
zpo%16l<K3sF;Azac%t~3xAoyH>d9uefV*)$N|$2~GWAzw<*dnh{eC$<zDV*A9_d&n
ztAF_mbV^9S3SrPd0>G+z9%#X>wkI9XK|${l4<E<!#G*PIZNXP{W7RjLm%?(+m#^Tt
zvuqpF)cxg_ip|Z>%X0hzBGHJfK74Gx-XT~`A!{VeT?UeazUPF=+Yjb^Th;5kGnJHn
zw6TyGiH@=611p?|)>Li(sFjU1!Y(*Xf9Z_x5U!JDE`&uWf|H$(V(Fyxo4m3Z-k0Oq
zC8^t-(li#eRYrw>1i<tpFHa0@>hMHWYrz}uq35`tOO+QVv;;8S7&9RRNaM*OcJyfK
z*fDCc1kr}28KQWdz6Q=Ze5D!hLR&lc*?ojvrRSK&7l&g_)GMsqyygxFs&CE8iBzb2
z1VMT_lV4MBV$aEMlhx$zv54Cis%$0orY5~>-rIUcVGHtywPOIDWO-dw6SKbC(?<NX
zPCqQ3#AZujRI<@1f%uHWldKS6mVPslte95oU8-KXndAcLEs#crp+kehD6a%Ht+A`%
z{TsK+zJvU_)mG*`W$_HRb<@q5NH(`dmHgCI*jRF<oMKp3$@6XydPLs=sVa+8YrSuU
z1QECY^w1MgES;HZj>en{VcrCR{XVnLw4XnmB{9)C`PepVOac!`$hU%1kWe~b7kv%M
zq9MW}&ct?5TgPA}Z^gyuM_;xxKnW;~-AR_%{iwYOiKeDkYvR68Z!UuJaI;<<BmXfs
zizyj5ZysNUezC*rMqhh;eS%F9ujCcA3|xPuaEpNLM_k!NyhtPFffIGp3}amsei<-q
z^s%j3%x=ySrLSt$2$|5Cn2-_rkkj4aNfohX1;W1sF8UoBda*2S+L%W;y5zh(fD@UB
z5|8di@C;>|2$%}7Xt*tPNyX>mpZckKaEvPh)a3_70S0sKuvDg}6F&cp=e~1fpTtSc
zkz{zL;YcLX$T${~C<R72)`x5p5-t1%X0CLALICsj8@sF&8L5xUU8C|CCatlV<JnTo
z4@Bl@c-TjV5R6lVFbh1Xg|*4!y&XaRHw+i%gfmpe1jOb+<7=HPp&50tRyRu0?Y)<Q
z3JYNc*a${asS<fJl@jxM=(4&C7#0)R5vh*Hf|c42S}<D}J3$o;H284xY;B<9;*vl)
z0?Vej!rNCMs=4@yMDK#>i29RkKZG+r=7}|~8$(;#=^xz4AS0bznL(GSQH=rmO?XCv
zC%iPW<o)lveln;t$)k+aZ*hN{s>ypme%)-#EOjpSwP;;!++URGvKdH^ql}p>E=cA?
zwkrV+nSNo!+<c9=cG$9C3{<3VR1fN#>jHQLO-&zoIEH8OoT0j}DX$&@fRc`*+iFfP
z_jRh-F;Lv3aIUYd0fW$Ps*T{%*`n0?p{hHK26?qJ&W9}G6p6FIFKW<CA-z&wJH(V>
z$%yRMXr_@f+lR^)Uyqb{iHulWm*zw@Gf*vyE9}BUU9<M3?qTaTWDF7f)cgK$o11oL
zfw|Q&9UhCNpU`?90L%bd7R{(9yQ+q?QzS;T3m)iW2$WfjjGD=OD0SIRaQLe_gN*cH
zCwQ(u71@FX&XI5WHj|nx${WZW$h_}3HRBl{uuXDYho+2gS)QdQDtl@xeJT&l=hysN
zCZJd*whS4RIb=$I&2zeNPRn7p(-@iUpFQP!eSF0SB2J`&siwHuATRHbm|_Eh^%UDm
z;-Pwgh88jCq``*G>IA4_beXrb+^mJws$G#QZ0Z1&)=s-%ee-YnFc=}?=r-p-PM+UW
z-40i~o|>#PKOuBc4`6uQCNmgZj%K_u9|`?rn&qi)Mc{&0qQsNnxVBr>Qw&qAU|!!E
zB_@>^mxi3~IsTSAz$*Dt7Y!%cEH8#PC68IL)mhb&Mj277E~|b>Ij1&niWriaORPp1
z&x}Y!D2f)JtD9*ADpdWKd%p%RADsN}teXzEaP4!FBV&f8->QElM5r#7#Q@JjYoT$Z
zC@RS4?I|=2!4Gnn&&5Q*W-D3Y2s>8YbrH2$XXrNnI0-fH*uimVbvI<Nt<R6+!QpYJ
zLv}dIDQ%Wqt-YTb*^a>N=%8uoYv}CGqAZ_8vA1OT{-|nnB=f8R$Waz^g06y>RGD+l
ztBOR4=6A=Lrx>w7%Q?~Ng~(;!2KlrZK)iNH=S#3ftn}$C)30lLxWi{Ij8H+NaD7Y$
z^;>LQ-;nSp)#VRTUGWZ5^ao0L;4&RWPsHwk!;h06G@>)MRdvksNYnFxnZ|dZ6uNEK
z$jJuJRfzO(8cD7}GC2}NWS^)W1o+hYOUBKe>S{Xhm&n@=!(e6RAdM?&!~`W|P+ed~
z9q^fRQ1?cnWy%vr_-Ee8;D>gT9#3q2BVKHA31PM>gT6u$A;c(C4Sk~2q>oz9FG%a7
zrk0NuOm90Lq!xx1ZEk%>ze%y)<4mRD?U%2sN|oZl5;$y2u7>=iv?;CtoV);y@3}G`
zy(QE+9gDWgTkIvxRS}HsjV-LoW_9{bRSUFCT6bK*cEx5@al3aSwY7`bBPaI3dv3AX
zrw*u)xd31oS{Z57J{i1l@WU$NCZD}F4~l0W`c%0t|8gr$`pxv~rl`})t>dur(RB~f
z+u`+xct#?MHIM9rwIW!NRGKsjqz;06zRRCV$gj7+b$^GK2vC!b)h6h;v<xB?m1%k3
zZth!E(Q_08b0ry(l}R~pt?fv1vr+O+F&dX*DzTAaj!5IQ2-h%)eXPfqwZZv;$p2vb
zenXrO3JwG5Naf0&VhlE8`P6?xG%qLv!klQ3rKo{(hEsKdweMX1$2Cwx8^s@K5lc6M
zAUpd+T!~uM9~K{BOXA^bIrj*EJ#IgVq~>{w5Yt~Ar)g2zuonUj96ZSJ;m7PN@AkAG
z43g-q@+g(Lo8Z~9J%_ycJx|_eG#z}uD9)kD=;hme=%DaZd0OjR(UW7s8M-QA?6D|K
zmXR1@E#Tb_zLeI(73J*T$3h}wn#(k|P5Ihq2_S^udsJ>EP+|SO9Rnv;6WK@^VmM}c
z`G8_)f^^>$mHvM2pSfyZ1;G>|V0%t_4ge@oWVDM9fIs4*Olkp^1)8w>joZ+)Va!1+
zG7}-;ytJ@5p0vN(!3;|lRNs8V<O7w2n?7z|3O)oOhM$|@JpeI!&d2WhvoF{R>1GvK
z+d$BosP}VC3c6<YCWa)6HNhDo(X^J1olM4vJ(-=4urGUBueAFHXrDL*pouC<8IHKc
z4iOQp88RbC+$%RCbYx|`B_!~xL>ktAe!6a>mTB!cg+pRnez%Dln4_+9R&PDx_q+yR
zMUF4kl2sP{Th?btY)q15BZlJcp{Ox6tb&cYN|u4yk!(|xS4=Rxw0HQM$yNt`h%tr}
zP|`^b-oK~5jB&vN3>Vum{h-GEpe41lWvsTyk7XBA0T6XBg^wsA#L4a)R4%+OE1ID3
zI1DRXb{vk)RL)pV>qVz&tCf1g$FioQJ){a-S<$H8VH_XNNF2@y5aC<H4VQ&kEdJUV
zm-N9zHlpZ!izSmZD`YX<IBUaPzVsOB-4vsoNf)4eD(4tp+IqKl1k}dPeO521C3fFw
z_E9)i9o8+kBJ~`<U{j@Zo@@Q&Z{9ByW6BmZ+#fZe3(GnaTt~zlf1e|eS7m3$%Hfqd
z;4~h9yB-%)0y-AqvYmde+yck<bmO7`*?PQKlqDOHD=;$mJa1FfRJWA6M%QwI?J_`_
zC1TKgFb;lbl!I{u@H8mn-_J)9Tvt!ZR+Yo^9WK_c0L&kNxKP#M%!LmWx!tahnvS`M
z^jQJ|CJ9Kj<3#qVni&N7SRkvnGh8yW1j)6sYKQKDK`meS0QCiRzr`J-su8xduSFfQ
zrFyT&bwF3+j6EKSvK=Rn@5I{KuJm;ySJft>L;h4|4F-dZ<h#Of+5VzH`do@4f;Kpa
z^fQ^UBJ|6OM4(<IcpMo-mntYUkxV9a12J#08mLXMi9=M*QGF{}n_ef@zk1D#LTXR*
zxvSo80a=O$q^o^noy!MBzIGps?S{u<7R|ktZ0NahZhMa+$D?o)3S$|B>rCOfeTV0^
z5!31NAX$w*94tPC3RTX4OsF&(_^KL1++-5Qp%fa|QC>frR<M)Nu=nR+VU3r%god3E
zlBvSZ`uvbsz_ATL0gJG?S`HyWw0N3;3<`nnRnfrCve)<KEbE)<b1vVZ-b}i}>aFP+
zw4K^7T)+qZ-V=Q$*|tI9D-@4Z{MgItmf=`WZ{aaw4O28`e9}?JhbN<9n?z3%+%7%w
zht3-=q&rr$OGE{Nd;eU4f3w=ZEGW<b`SIg`9*)6gxTobb9X>BHaTJIhsq_u`EHJ~n
zxKYBvLM!d@P3Dn8pVoz|6jp;fZGWyf3LW$~67-}uo3q1hmy75c;6sK0^{L2F^jl$6
zLs>e}%%I4h`7D?rp1>&I6?S!xOSS^|=wbdMwsw$ff48$R#Q`R)pzW0Xvv^Z71Eg4n
zOu^t2$4UxU01s17zx#gav;c=Grl6<9g)ol0@FH<1`t+x4SVF?dyTH7I6gu*6s}$RO
z4514|DTFw0^4Me9uBX$pgNXq~(B5ag*nI=s7)(m^jU=9qOtbikPJPO6@DN==a<&fu
z!>f=0PI>?n^y-#*e=J9ager{`uG-1XGt*&&Gt#`(4rekZKq;A01N7?<z(o;a%r%S@
zM|>tE$ZySkDGXl_5FZ-`86@NA?SmP^sLRbXFKmyX3OPJypte~5LUL$pbCsK6eFUga
zj`P+{r9RJd_leu7*NK>IAYq=(R5!V<LPkR3c{lbGxTEItk*7ubE_n8vbtFVx*VTZ4
z$bvpRk0IG#dwd|?^QQu0_#9nIC9o>Qdm^X}wF#KK_tjj%je7q)C;)UbUkG1WT<!)s
zhvCo?9W`~M4q-PDXG%Ae*0`E!ohGCncYq*uJ()bgSA;M~AhB0|!(wKb93aRw#e27t
z$JdE>NI7>@y?e?};7as{+vg^l0aBYxa*f;SZ7#}p+$^wG#KIpv$G#X9l_?Mh3pj04
z8Wy)a>kfn(>`zE#u;A~|@cV`G**q0_iTUA0`A*HpB8B67@IUw5v@3ezl69U#_dbmy
zyd^H_W4kZEnKtW7FgOYHy9Ec)txf9Nl3j;9bn;qP;|i^k%{S;U3md~JZf44to$Qi^
zKw9}stY=0e63r3v8OdYffIf82J=g@-biVIM6fMpYh7iUPP5G`4c7hmST=cVAayIJf
zJep9*lQSP~g}y2U=DQC2Z2+~;0{*~`MS06sa$z!z&*~?QG{R5K_7TEu`CcPc!kTBZ
zrdgMxkhg;MX}|abT}K{ZZeTI`r7(%g)z3BGEGu4h9KT-*ZcahNWXOyZd6QpaOJhDm
zLw4$Qsr?sB=wG?l#0vxR<Z9m91(EkePeTX0q^}_^>4lDW)cy*Q21d+Q@C+RbK`dRx
zPDp&R$;F1gq{FSJn))GS^}^tTCF5%3A+|TuM{GiZyc$k4Xi}e?7~pi0*QH!M$gyqv
z3FS3NsF}lhp<a4q2w*Mz;J%YS2<~F#i=FOvl)w~(^!G#S((nIrF=iW|!c4C<$^=1(
z6C}JYwDHR0X-(9qvObQZRnBm^p-vyNZ7jvSFEuXXc){n)SgD-A6X%_Xh(NRds;yY?
zJFL&LIA7eHKl$%kG<ZUwkyiX9{zeG3vA|K|2F-J`;@4_9ZtisUgM4}rErUN;#qMk0
zA#l1n87D$2R_xtrme^}2jOg%#?n5jeaN%l4dOGzy;{z}_*`cN%{<VpqC7)G~co%WQ
z&jL#=FE}+f;EG;M((DN=!%U+G%g;|P+{)kXSqSlQMITh+KOTg&D;cyahM4pJ;rC{^
zkb&^Hdq<ITodp`4PGgD_Mq_U#H|JLPAX(u=rJ3g7ZZMJN14Ow)zHA8x<?)L6J3p-j
zX07}n&nl_IvcvU`8up1eN^&fLcP?>RDc3!5i6O`S>90qH^I+Du!VL?pFzfEA1(SDx
zAsnrrFEBsK7qa8rhwCyk-7V*d=7klq0n-H#L2jx7MK_HAirMuOKE@>92K_Jw$NkwL
zJ^M`f7#s+HlFv|ruZ4vlg)b$|y79*gp|7<i1g64fx%G*j2Na&{m502Z+HkDT+1aK-
zE2IX6er{u3x9IGRM7=%ezNqyoSH?dU<FhI-dGq+=`erxur5U5)#HW-kv{X8-(v*WY
ze3p&+57s;`08$`cLef@{-c;!&-5<mNA}heUCnAW)sQ6$o_a}h;U!E#V0MJqe<07IU
z38WJ=_jC&k%8{TViEuo~Hr~{&3J8&OP@Ir-HTYM#t#yaMv#qyxa9SuS_PSJ<v#8<I
z&3glcDpmc9veGI!9An|PU4$B689%b8OOn!cQ?ue;H34*!{Q~1Ydt44^%*RX<j&2Ot
z^zHzw93j-!988<^FA}}tE@x;_u4sjE-CUHVu2`!qowfX*NpOlWj0toCF?eNfb8vbh
z9_<>FQnPMO@0QMBk%kc~btdiucD+H<r%#=oOx8xhG<FZCedKtf=Y8A&x0c;%CAqem
z#!70G51YDb)egXoWr>Jz$ed8^be5EYAJ>#_kXJjFT$-OjT!{wTSw5}YE1zCr@ucBM
zE$ze;aEUKvL~Gi#)ExWg6MtXe-{+v&ygQqNRv^eg-Nfok&aPN6tZDmGfm&dY<Wq8F
ztyi&6aLpOZ95s-(R$a?<&l5Z2&EZwclr?N&9S42CTqTd$#&h4v>Fx+j_q)PUn28H_
zhF3W1tOecM=@9iWo($3ydj*U|`{qgz5nc7^zUN(d041VjrN8n)&h5@$@A6UyBr>1B
z-qhN+l52}quK$<^V*7qM=?LX6hri=0L8UGJT&plgcu|*&zj6=MyLH_rfTxKvA6`N7
zbq!dUJJ4kT+eVrVXm7A6)6go*7aThs(AQ;2L=8LJ=Na}4ruId5#BL?2G}FVJ?}3u&
zCNyW@bkC!H<F>12mW9411p!<+y)^Nz1_<)3g!FcigU!Ob>s;mgkOxB;Vwxd`3fb>U
zZUhkOFx4SM-x7{n2J8ztcQ6XID-||`i<zL&^S)V0Mp2j56J3UKBo>Quu!VJzQ|c3q
zGUj?Lxotbek;zD+UX$QXqwZsn%AyLDr8K7yMDE7YDiTd@=5tmi=LUhwZ3ER~9q13a
zRyu#uhJyvN_NC=9A12#RImkeZO!nw;NCqL|A0@>-RhB0t<R6w0XDx`8#S}Z17#fUa
zzvr7HoNkA?ow8Ia{CPWA{>_3S+j3Z|-kHdr=`7Q}7nQ?~+}+UAm0i6XvaoSL6Ks0s
zHm;T#mnr7iHPVd?2^nQEC%MvQf<>m;Fc?cxOpXV+sG#pYbT>D6LjpRZrQFh^AWQgT
zGmsF!QIb?n#hZ5Pge7Mg$e%d>xptbtHJl1jigsSe^N&ncK#F{<d|8%H(J6L}Vs}m^
zTWRD;n4#(Z$Rjp(vN0SoQO8}yh_!Gi;TQR*Xt)k+zIRX{CL~roP{k7nz74dR&i2mg
z&G}${NMdImXns5}2fkB4=>e?(2fffYn)*U%HH)H;1I-8R2`2nu5-&gE2N+}c73uh|
z^NZpef2jvk5JXCC(!DUB86sh?Awl}Ee8-AB)Fv8pWS?A*6Il&z7_L-Wq~R(2gpQG|
zPQ&##wYwqPjul3@_mr>1Ejoam_B!JGYx;o?sTB0y5$RF8<)?mx1ay7q7;@APkv5Ub
zBxm}3b+#T;4}s=GyMrGsMt5E0Z+|0Q@SS*(JYkWysTO~3XNt8PZvx<}5@Q%?_-+<5
z42ABmzbc8|uN){60MuSI4XTXxy>I0@$y9F@^ecBOB;{D=GlP*wIk$0^8)9e!)Wtw<
z$3K<iWDdH&kSua;syQhRQMyRp{-+qptQZpM^%X!4q)G|`6E$dm7?(s!=AWF3UVCAs
zo_G+%3zukG1h$9u-@;M!U^rrBjpt0ArN`rUn*p>I|272SK;dx<OFeT%E)8;s1SEOQ
zCS-RmmEU9qTR0Gh+vz1#MMPsPkil32sBA<qj{8%?S*XxfHQk?N9F)1jV5+4d0BZY1
z47Z!kaB${Kx+v;r;Ji`ES(WYZ2fI|D2lA-x8N4s+g$ZqpLNJFnj##Of=gGzjI&-@G
zrOKT<pkE-GW3lI1m{G1;uCvrveeit{O*kT$o)k)&xbX6~FdT3*0T~c_DSqZ^?E$F)
z#K1??LT7zx&CVTwKN~D?2vP%h^$Utp!>L#i3yiO)vz{)B<_5pmll=RlXB7v_5^GRG
zV(&9%IH59sGqcq%)v&#w=Li1~Kkkep*e-_e^|N*FuY!y}HY5Q^`xmtora1rI4)JuY
z)qE;0qjqlr%a5}4-UtUkq7uPB4KVHJNw$a9Nnk?v_V$|d+|D+B00PTQdry@~3Qb{R
z|CAToI6|P1N!tQMs$y(@?`98x@BjFrWwJ<)o)`S^cTzBA5(e`LlIaEqQ~cQzKq_!%
zAW)<E4Mywt%wB+fQ_t4oah*wt@M2JTYRE$A;&b)lZ)u9u>WX~8fKq)0iexj=R!g`F
z{@5*s8vbJ)ZyW#uAk&c+m`$z!aF*<^kUyu&sB}o_{@t9wFJ~3Xwi@0L{<{i5a8SQA
zAVeD4am@asAAcqf{g3UR2ru%lZ5;~o|IT;*hx^efK;bTBd{^L))a|z-ng8zQ7hFI^
zIW^KEFZ*Xl`G05=FaslC&YSf8A3FLkrpUiF<hcO}RY`_NPWu07tlvK%VDh2^6)k%8
zXKd~NVE};U0SJoR*MgkCm#F+sa`YE#`VPH_z`|vr|6m#Y>-hh_X$Ty?=s=y10_^{;
z4m9OO2a1`2@OO2fb1yp3!-cn-e^&>}^r8c0=E9};%^LgP_(jc&4s@;oeIVp-t|KEd
zU<4+PT=Ku!ApSSL@G%HjMl}xf@hE?D9sPeG5D47=h$A=UQ~Q%23b4Zb{3TN?`d#vO
zn}P-{cukGwVd-?hAA8_G9k!YYA{1$6z`CAJ^>3Lp+xTVAGhR~FPWW3>DnLyP%qVr!
zYNOWQni1bb3BaWi-E^Il|2Gc!U!N%r2Rx$mAaLLQ@5L1jvKIyHme()ke<Y#*wCwMr
z*njyHm;hwR+V9w9gYW)J1X3_@W&Y>?0{BZP`Y%uZ=ci^VK!mbPxmH&FGeiF00`dRl
z+pz&4ME?KV8M1+rBA)w{K^W~8pqueabPM3rRc>-VT+s12+$57t-)RL-)agp9_P@v~
zHWM`)0gB(U7m(Qe;!~C>TK=X=4;}WxWo-fU#4jS-hAkK1Ll*#aD82{qlq8GBUn4G+
zLoYf#YXA^*IlU&`GzU=lD;hU?fc=Wt6Z@mOlyW2{u`)qL;|H#7JGgamL884)>#d1?
zo#c5nAPKAoN(@U5FQptUZEbDBLk)F#&XH@`4;m&^KOzR~o{rZQkHqe;4j0>fUp+cJ
z0c7@iSQN5&d$q8oB0zX)9mRWPd)#_o<|m<(czL^4{|b?3tP}uDj{pIt#djAwho{W#
zo@T7w5BuKvzx2-<p?;N1k#my&^pR{!J@BBbU-|sBSOvh3th-G`8ct0IBxn5gzOT_v
zLiX6%eQG5Y{%>Jmiv;5Eg&e<pdkuiL!xFdFwapX04S*)3K0#GyR@>>9a;c8mlqEY+
zS4fl7{+5U>F1PaqL_I)^W)-5MT}R5iUuyBV4{HD>VNs6%F@8SaMH_s%KRrs@db3t$
zHD7D}^NT_QEW)>x<6f|_6uwcOa~4-!x`vI|NKbu0LFuHt1S?|~S-rpP^Zcj{WQWa2
zXMmc)`9<oqTr<IQO2=vqsIi;?v6t+iU{#4K=ZG$gws}f%KEW59?Por^O>aj)0(_Fr
zoK0jC<4WoFrN#?s@CENi&|d)*OY4C4Ayx{licc4qp{V`Ys-n?Xf;|B8$(HoMk|+)s
zmp!p=YeA><K1L<z$GXP$&pW3e1gnK=^IL>q$^g^SX&=dkK%T3dlJlibfMCte?zl6?
z6HA*a%DV3?B3BaeUn9_8?u@}fvKZT@jDgAkeJ8IqK%aJgsbjyTZ?;XLG`rp+`n0ms
zxL@X=R3v+;fH$q>FuXM&8OBFH4z>CK6oBgC*%!txkC)p-bZsme>zj!srkJ=B)-_tW
z6E<Zw>zTZ{8kr!1Po4o({pQOzKPY&6K$Krb)A1$>AuGr>#Ry&7QGwm4AL&^vUPk>A
z*8iG7tL!PIDk~>(Z@MU}^-I%EF6ra{A?&My;tIDlg9LYXC%C)26Fd+Cf#B{=&|pn)
zcSvv&+}+(ZxVtv)G_yJPPSs3J)!e6kX{2}mvesv79kAMIf^(M|9JbvTerE{Xt<bJi
z8jUmpDhW408mn=ZpMd8M12?+Am(}pK?d7JR88$u7$3>-1{m*y9q~`zcJ@KC+iM^-I
z6EH=su6nGW$^^P5ver&Y5^79Qj!A6vpo?8&dSSfBN;8h)`DYnzTYK-qnRN@SzC-Fg
zJHW4j^?tm|!v_$Qp1s)>+1jq-Uo(Q(3QkJ@lB7hHnxm@;{CjHDM%s@g<XQn9*a@K1
zaBBcUO<L9=w+*65HZHqw2G%n`VtF@3EEi3p%SIf*QlAP~M|YpeXKaW6sQy}bDTXWp
z&qVuZK7w_L@~7bZ)aw}6gl(W9z%;Ku?6Ymcp&nr-?W?F0+iPP3Y=n?>kWO=R+g)~r
zZti<?I?;V{FF@7)=rOVE&~bVOe4QU!DCSPnQR-CwpI-3)UL2#aOMF)k`wKHb5TZ*o
z;78+^!~xxhgDk6;=sIhQlxI8+eup&!DEYjqg;Fh<ZaeIO<D2Qthi2?8l0b~@&5qhm
zr*8d;t`jGx%qv|rY5Na;)dzvV;i|QPj~bJT!iYC=z3kF|0XI!uD}8M7CpR}Y+QQg%
zdu%$DYqy1G4K2kajMN0M9LszKJi5VT1neo`=^A4@3qn82EooVn>0XIG%Zn*&&hgJS
z%D7pCh3$_aU$+I50iSOJ?ilC)`aJ*7RWzpZOCq=vXjugd-<zaYI!7|N>U=hOKMw%>
z4R53<uia9jOXIo+U}kZ8jtgt7vzZ@f0l0h!iNf;s(^b|Bo}rHu`Fs0t+GNN4xFV6)
z=PS`%iTU!cZ3p4U<IA8y=$YHozeTIT0(Yz<0@Wl+y1GE0{<XrOE%&f#kA-+q_-b?;
zY}I7OEj$IJ0Bn`FKU%LpKr+^!`?=5>=BJ&>CbTsZ^JvV)AoqE1F$pX9hCZ9Ti>BCb
z(HZ%xj0XQnS^%u4ZF4fmCxDTetwo8o$@C1|@Y7+q0`c5H*Se&@M|8-cDS6;~>-1%X
zv;NsvCI|nd?P<?BZvg{fvAldwonWr-ghsx<gLP|To;koOOY@ciPC6`A)hwgBIc=rY
zY*#h1jt+&x>T&77*T?w|pVhlqDKsbGtW{q2js86GwB#4ll%pH@C}`G}=`LMxqv%(p
zt!sum&@>|8&@?Y66euY2FgB9T2rk%bz&oDjR(QHj`|F4ZL`Ad-J)g$_K5yS$zt^XU
z)h>Ad9o7!vSBbB6YOf`-%S+i#)8m)rtScZa{0;e*IM5$2(VUN;8kjCP>oWeo8#@4D
zN9ETq&f~SV7NIQ=b*?<(D)P9yAXCTlrIH7bdC&wXOldE6K#q@hU@(SN2(Ry>>)jF{
z-U7%!7X8x{0L|BHc=IZoQGx8*ZvOcRa$-MXa)cZ*q%}vX)Vw(#9U6icAi(X~9KqJU
z@B)~n>YL9M2D+f&Nj8MgyQ5*EzrXp!ZsrYhyhTE!74?CKjqg)*2Hdm0`QqhaAo$%c
zgTa<TfVI^GXUKS{yRC62UTFo0@Hm2;hl%m`VvD^#*SvWmu~d7!&)`W(EwbFSjdJp0
zM3<0V8Y?Way$ZL#>$fVHV&(4lRs4=OVS#b|fu+u2pgjoC>Uk@G_t#;$?)+iC12X3k
z8$--DE&`Yy?eA7S*j)Fp<1PRelj%h73|biTJ(>H05t=%MrXmpbkzqz#11z=XAT+^2
zaxU*{%R8XZm>2Q`=uTG{IF$2adZsrhr0o=hjV639-VuHL{d!6cd6~(#{%2BNw*nTP
zr+GB6V1Ll3g4kMNs?*&XQOSfC?0_0Zlxi9%A7Xi$x}A0sE-N9A$N1UUyqD!acHda~
zg?YSjK+D|$28`^-;I=Y!u`*?j5JJohMxM18Y586dq_<|^sS0ZuK&Dz7IdR(0{qmmC
zNCj&prjuIv8XZ7f@~?@SDps-XOGsxEfWviVLj(n;P~Ty+x^+OwH-^{!EdP{ofN{Xc
zS8~_$R#Vc~euSl=l&?6z8!qTWw%_C7qEI38DIn3X2RMl`58;+eVlmqVcCi~DPkPCk
z^_MdbKirPL!WjtTQXHhY`M@px?_(Ng-@N(*3mTaG*a2|#(n~JD8%>AoGIw-@1dV*&
zXj2qPn-KMV<d+V7K2y%%EsNArT;@4#C<dq`d!V$r3GaLYj!H-1P>HZ0Dr^NFzYwHy
zfZTsY<Z_VOFU=pN@i%LbCEd=b1L=)oxm9;CV#v!jGKtGhoZO>#1?pPhkjJ|3{&D_W
zt@4cV+BWS?J9DKG7BR0BPCx8mMRxaFDTUQ<661%K&3>%cLgyo(5WBcrXJtS1Td1#8
z$+TFr(#iC>913~laZ^81*JX)$bo=K*M>;UurA%nc>*f3+xKL}wm3M3JH$k%7BycP?
zXRUWtS_&A+Z?c_IFC#U{(s-Lm@;-ip3GpO<1+@KT9{k`_zzkiY#%f1B_2Q}H3oMU%
z#w&}uBlk3}{Qn70p^$@a_Xv)Tz*gb!0xnFSo6Kjtw8LI()zbNJvwgbw4M2}D|BE{6
z)b(JhNnu}NrL-pI##Id~i}i$tS`6fa@#J_0RNCbRShhg;$HOXsG9C%K9;i7G8%7Hr
z(Ua4LzDRBh?MtpC7f~9t0=g1m_(Jq?EL>XC>iz8R-kS!(uRDwUix$&v3%pOYz9%I4
z5gQSff)_5GH~9%F){_q!LsgkM-$9jJYlp+U(m4p17^Hn;<$?5(Kn157<kNS@cK2kF
z<GV+_KzT;tFAZWCIN&avA<Cl`wg-Z9%#A)xyGz5H14jL3mPh)mBvHM-Vf9Vvs`tY^
zP6MPm7%*6iV8HPsXIpXELA64wu>tU1XYb!57%=e&>S6Zxjj&5{!hUF#+A@Fo;uY<H
z-l4aMJfGA8Y-XW(Y#1uuQY{quG{lgqWV&+HK&xq?`SL!|)70~s`o$tUF75vDe|)zB
zfXTl1j-9F>DC3zfybxzbFUcBO<5iL`$+N|*bay?Ii$CoyJgieCne1b*QTFb(5fgzi
zgC_w^l0##27bp0rF?G^CH(Juy4){QFx5j$+nVJm?fN~bl!Yzgs=aY<V#76Nh6?cJQ
z)ypu1urXQfb&u;WToqqbNVjg69X!}No~tXED3O%^EGMTMO#AiuMM!4fLeS@F3-H(d
zMmYv(+QEx4fpnm;pK}#xBG+p3H5L=zcggD{!Pc`1mN~s;z&hVO0uCnC(i9E2Vmcjb
z=@IEz)mmp08>{Y6L8@gb<i-A&DzMj{2rHb=UYZ3X7R*we)|ZZY*US6ovz9~q>HI~i
zPQRCCnVaH=+}i=$xNl_pRov+<5Y4E1o(cX58I7;8_0-@Q=e(XTUZHxQ&mP)=YUT;*
z(`G0BKa*No!d}ofcJ#lptE@3T45<GDm{6P;0Pd<QW|VfN$VJX2rOLr<LbvdZArtY*
zk1fjf{^KYr*l<u=8x56Pih&tB=nGUs$>5#tCRIUcvL;|zA`OHhOOJlb7n_m=$$~m9
zPV44xTPh<d|50i50Rco{YV5c0DM+g;h%(x!nTIRbYzLM4C)tz<=vsyjjuc+{=(BBA
zUu*0IkhxLa!wAWzP66>F08|QARv-vbH!>PmT1r~c6X+~kH%<T~eK=lgi(`drTmq*P
zSjzw827j9*(WAH?xvT>>2zp8{-AEMz&EZL1^$*Y)Pzy6i_f~;8U4Kz>EBvJD@$CT-
zNaJt^TfZ68w{DVJ;xD5=M~yT0!bpd_6{3oYp_Z<RUY;M^f<ug91ix+)%PyNXv)CTZ
zmOz$1j~_2GHjp^^M~mEke)R!_B+QtEldv(Re|t-NqCk;)wpAhi23wf8BMLbsJ%h`D
ztku`c`0>!~pYFg-r1X1&T!Ax|tZ5(}MuhSRx4#8cJ=RjLA$9NrGdyG;p<JI2{N;=?
z=bV(wT)CiV*hd(%2SgQAuu9z$ou9CCLB`hbOt(vIl{H*7>~vplHMX1T!4kJK>Pe?g
zzTJ=pMcEqRsaiznCej-~a6=bOtHBP<d1QkCjTuBSDhTZV7txE_g_OtX1Xa<)W93#4
z4Ejq}Q)2(tAduF5&g=8QtICyqAw>Qq+4~GQ^*_t=R;;f}{-9-zm4i#}gyInTao3uw
zYw^HB^+@jKE$#E1{q0<eIWz?G$r4$uqQ7{g_3`L$G!)t_6K1Ouda(}Y!4{z6yL#$-
z?aFfQ@y#7q@vbE;eo}WZ7MJJer;PC~__(Z;l_)6eraD}PC_lt!hf*%|SG}U17jJ45
z!w>7m5ol`8-Ry@c!Pvt>rxhA36|F93?3@&FN#p?Wtx+>|;FmO8LHx0Gl+?b-%$SBs
zZ<2iOw^W9Fsj$D6>IqpLTSv@NaY8Pyo-@rer|LHK2A{_Z9k`yyj(@t>GGUoZh35NF
zj_o#~9JlAVz`mCLyiDcCW&*HBuA=68K~~7551?bb0ee0}?F#dWb|w0I&7W$h<jwv6
z%XX^Cd{`vPuLpyuLdzKXlms;gtkMq1?*pX`tK(i=H$t~K1m_KWE@a5Pf>d-f?|_2G
z(Aa{N6j^zD=-Q6p;n!89ybb{=lx-0Vs?<u*3|SSrY*7Rv^kHia$ktU6a_ZoJr8!gu
zsG)$JH|`-j-6U^8l2wr@#zsx<dPIdJeJx!ik0-_MJ|%-cckDP8uTo`la4-E!dY>zl
zAYoh))`)=g#Y+3E3iSPezWYG=?c6|C&~#7LNEuhVHBvMxd{E*PEK2)QMkMQH@$)P8
zdkBzL=D=>}yyV3I-pO&6p{qkAI&7?t{uaHfEB;PGTHz^L9z!b9CV9T*lf6JL^+azi
z$YC?C0SF23QP`(a&q_sF%3f#QZwAVT<BvR1?+7U0Q^9%mT>e029gKGcO#V=DC6nxh
z)Z3)}-<jAV#E?N$m~rfG0`;rz%RGN6Fyf*JXN*GcQor}k#@|Layqs`V+<7+bu8$iI
z7Y#cxBoeL5?cQ_0wy2kiYK-ir-Z6o7QKn|kH+zuzNH;~d7>}f^`a5AFy|K6W{FFFE
z2}?V1c3aV#J-}!G^c+OQI(xtv&)c8<G>e6d5f&d%>zkR5Q-4lNLu}<7-5(E&o?4e3
z$exV6ULfO&Wv#FJBX1!j$7Zt(#ekyfZ*MgO@8Y{m7JH=U7zO^n5LuBTfF<?Ay-_$S
ze=awfrB3z6>muAzIg&@Y-sGdOZ`CZR(bEeMWVkyV<(jy@V-Ve-s_>?zqV~%hwKSRZ
zW5+Zt_#rMGM=)^#I8E$}E^fq!nPEW1PgJFhItyA>YvI*+KcNVJad=-JNRnNBDbDxH
z(jk+#xIO^qavtP%*^1;&=z`0D&?;HYf9?^%U003BY|kICvR*!4FxdQtBv>q`TTH-4
z*A7{cb6_Cl*+n@7&}X+QSzTddu|Km6LMPtk5C-X;WCeC6dQf!;-L6S!W$3&Jf}69x
z28sR;u<)-Y1e`rZNfLZM!Q+qY=5bKA<i|AmSFAWNOYVZr2c_MPD|$t#b`7fIMx+7t
z(StDNZy|URD3-_FC7*g!x*Y|p)$?R=djs4_awP@n#y~`=4O71(LL@7lCnN^E349Ay
zwv`rh5GdRo?EJCyE?0A77V6JyR!j~N`auw^pHM7gfIof2qw`Y4VBD6xF`9s*yIp&C
z=8QC}=EFDUUFm=7eeHOw@n*-9xhCU+6QFD>S@?`_hHlOrVDYL57+cFkn1cxNh>XQs
z&dzJ%_k$185EQp%Yv}~9IdXe>>M*N%dtm{>h#*tPf_7f=i$eEj=>^bN_F;$V>lHtf
zq*rynkIX6-PV{iKn&`y5%%38&=D)XQUOGGsKbAP_iwXd}?GbgIezYBtj^B1XEX6F8
z7d#E28w#v3fw2fSOz2Z+hZJDul58xgjJ%)d4XBS_fBz&x=kR7kZA~d#TdcFu(K{8p
zdVDEMvFv9{YSrO4tMiZGm%DG5RWmmhuTT35WHCV?&M}z%w1hD3C)o?`z1PXvGU4@h
zUUN(dOQJ?Xfe435sYz0P3HZ9Eao!3}cK$%7-YVcn`&56P;L0>4G(m1GPE}=uvh*jE
zV3L)8M@{8rDSG1gDo(CF0`9NxmTXiyj!adCNQmS9xE(drWw*NNFdA;wAMK;J`uh!x
z47pWCK&tv%$56(CY0u`dIE*|%E0ZSEJL1w~n0<5XDazyvKQJ@n@jp~1me$bie94%v
z{|@mc-er}z_J*i96*_LCGkws{!%nvHWiJc?@EwmA=X<siZ2nB`1j~0$c{8!&(Ab)b
z?zsf%m|kT-D|1_SZbiCKDjq9i@!cSF!3Jo2ZzWTJ3@BEYYU!sx^&F%?&^?rm<{_<}
z#aDp=_k+pbYTBPwn(6Ybx&yc|v5i%ZZH-@BqoTi1)j6KJR^u_vU$|hu1gqGW2Re^m
z|4T(w2``p1C58R5c^!{87GG`qqf<DiOk)Id-cC|E+Gu#knlNiZ8a^0C^E$+M*m*+X
z`WH<Q9hfUOsWagz{)42vV0*lqbQR}s=&VF#7XiDaS~vwVzxz!;##=aIzpq_97+nc>
z4lAI{M04POH~1Z?j%TzoYp$-x?=UTtbE8i_^NY^ydhdpet?oG?$NA%~Cmu)A_CLL7
zFSrwrmIW|v_bHICRo_M3@7ittd{#JzYD=CG|F3=7Vmk4B7T0q?4G6rjia-4VPLNk~
ziqp;R=(thQ-on3BN;Ew}n)MCGOPy1EVHr+uC&h2Cz@(&I+!;#Hq!wF-SluW_@ABdD
z-s)xRw8eAAYE|U7cX|h(8ZC!iy`Fh=*i7D5+H52=8xSDIK5lZ3FmJ~QYzAZdB)af(
zR5I8e2U{gp>)WsOaAWRdc^{R8Tu%JTbk4&LJ>;p^S9oczs!gbGu;F8RBwsF6&Eb(}
zT8SwMbZEAc#36Jx=HB)45OZT+762?;%`%uW17R&Gb^1&<Il{~THUrw<Ql{eIZ}j1O
zIo{XFh^nqs^(G0ED>p<@!oAMqKz52}rnIRp>A`o_pR?Ustantc{s$@>P_?&GRHlCZ
zP*O7*tdbcyUd}C*Y5cFoLRGKyE{(<$(Sv^A&>{CjG##g+NwORcjF22X91W3TeC*V%
z-3b>NZ9&z`$ST?lO&r!C1saR_E*Wt$uHZ7Dd7L*MdQ#C8^zQ&}Nbe_}<O*-0ln2_A
zQW61Y(+`-qxv;~HG6BD-7pYJwhb7r1=)|%{lmkKE#-y=aJ(sx%F8^FFGS-oVOnelW
z&`V48r6IzG!4g2)G^5>D!p?|elXl_7rTG!UeetbnesTfw0nSux*!D}4%!=fI35S$V
z?6n_CQA#wqDt9?c!^(6;A$EfRY#@ky^q}!0*IJyykIqVA?aQ~dRkX`y=euB3>Rjr)
z@@2&7Uhh+BJN7@A9t+0E`vC_!|Gr48pakYJR+FdXD`IQ|&4P{&cZi0V6bHqAAzAnV
z)8C{=y+j^gq4Bl(THNX0lzN9MRVtAWX>(ECcALI`@(pxP_^3)&&NEh07s8)|`?VI7
zeaF7xpK)lyTs4faw%pV2Nl%(#C{(ouA1*pqy(C=P4_pknom>1{;4*zOdl=30`#SEG
z_opGlq1`=1sy|98T7C#^rjSGCuEBmgszuf<E*g>=f|ov45GzlJT&MA>@JA>#W$H5_
z;vH&^(-M=FYzv$O#ShK3`J`5K{$$JGm&co{BB|D~cT$i+p&EE$$o+PBoY~Cf{K8}F
zv3pdO>hk||BQhXp{kxiyM;keGw4^DC=UwJbI?*rX3PuyE$97{y=i;E4Ni=X7;}M0H
zCp)YU=HAi-3V!@E#I2J2@pWrw1R<vI_{(V}HZws|O&lsq@pCyj0!cbSe=j&tv4n-d
zZqVs*MMpdMpxQD?Ax@ZRM7l1!?2T5E|2QG~WNV^JZ}WX&N*4YefC3HT2x1dbh6A1^
zNkZR!0|bi(3z%YJS!o{#q8zq`=FMlw=<L|czPfz%NNq5_qqoy@X&dPADPs9cGEbN1
zoCzVbw%cv=8%lj)ITb)ZhU@ctDr?sc=eKvaztmN1DJ(6yDz6_504-KDAN|oU>SDeH
zzU&Eiz`ANZyq-~c5*t(aM@K_U=349IOE?ArQFmL%^Ddj8_+US=!wEIa@`dtp%VA-L
zV6MPhmSuVB0;4h)cvs|ZWd_}t5zm)@MBwU=VTy}A)pH0YbjPE$d+=VnZ;PyE>bwlh
zqIt#fQk@;QyoI~w{ndnp1Ji!1!V}(i)qK0ZyX#T;Hl=&bKr1_}de;sVl@Flf5B0kb
zhlF(v#fD-JI|*k%ZbdOa@m%rpr%VRg|3cy?j}S|NK&G>eAar+>%I1UI2<J_XZ=LVJ
ze@#0tfsGQcl&+ZXg>YaXC?++tm*H>*_>$W7kAlZs=rV3gTXighrlUImE(M!<kIydJ
z`qh?~Jv=Sia{cwKf)C=e0+V^HIJL7KcO$d8ZVy<*a68~wqI1@~^HscN(-!<o=(Peg
zw?3BufY$H?KnbT>V-SVc1xz`T%@-zsEv(I}D8~8Q?_k2PU)C>*;`5i*(1NGjNkuW?
z9kESmRjB`X1%QHm7!#~Hux&Z5_xlhBAcFM@6J-hE;x^Qig<s|PTx7WeeD)&$xgU=C
zx7jT<mmj0LpW^E;zMMasouwdxwKI$AU061nO9eZNxOPwBSFXV`Fbki2s_|kwPYhx?
zSwG;g7ku27bvA-cjmfpr{A;HyVWl}f4W+~UL)O3xu`fW{l>x7fslp{b+Kv800ii5J
zerYZ7xVyT0HjvxWy03eD7%2BXar?5wbu&M10s!}E5olY`3gb)I!yDrO(ry@L{Cf{_
zb4ND>LMox-V|6q|^rYjY7PuTY#B<Q8=GCHgQ^G<>?Ua*J0OP6;$F9ecRubM+@Jl=u
zV*mU1Ct*_(hT%>XY>gYx>j6cS6GDy|cJ&O()OJ=n8clS~YUw~yP(7W@ehp`etB(N~
zl>`OA7n;T1t0T><y;xy>$=DXj?xk*5+5NoBZ}8!M4LJ2mIzDYCR#S=z)?@rK0hlM%
zPeshA6MD8yvo^yu_9H@zy#cLHmsl{#k9t~>atzBDahN<Y$AI5Lj#cHnf1G%&sIXLr
z3PBk7QQ{GUpwpFzw?^)@EBsPw0Cxgz{lRV#D4<r~0x>rhtjhq{mbeuIvxwS@AHZB!
zfj)g-%gL<iVX($;b)ku^&6R=eQqMRXO+E1pEo4>f(bAg6HS?%LF697CAYTrrtNg2$
zLndBX4j$^H74{spP?JhlZsm_Sjy52{^mQYp24WL_L%yaY4arj(smcDJzxyzN;i-c~
z%5JJ!d%xKe_Vj57>Vmm@sr+lpqnofC@aM%=0l_3Onf5<t05df+lN9=IA&oe6;OkSz
zs|)D;`33uSA3#oKR_b{DbqCy9^y!yA1_6M!#p}e{4*buL4b$RH4gjgAU^M<U2qcew
zwrMEYyL15(oF3ijVG@Dl#I5uZ!!k1vFDG>E<N=>}uiKkj3PM^>`u(Kp44^a6Jw|Fr
zUF>Qg=fssj3u~b`fR?)+EQ%N@TJi-8cDi2rUC0!<`X7o)qK+t0Y(mHss|Wyr_$K<G
z6`ej8iM=rJ(3ZOl#!?z2DhYJso19wsZ3DuDy;+mG-;c2WiS;FjyED;5h6W-MP%5kt
zUb5W#Kn*jG9CqZQfT`*|pY1|r_aA`80JoFrex4faPUSFpwza=leZ!z$feB=&qtYH-
z4lFPIu$`Me|G=bT<Lz7ta8?`0X1v71BJE`60xfTYBeEX4#!FN&5fE!nIdd{>#$NPO
z=HQy$ub7XPYIAs6CL(h>+-BMzDxNNOZS+^+Rb|6QQP5|caS>b%jP&>>%sZ|a8o*V#
z#Qxi8xH$zcJ|e5Fde2=&T)xu-Sg^d3uG(z!)IxoH*ik*XIxMZ{-4|ma;5P3YMrOXg
z#H`=%%mI%zYi7$AWS}Z&W(l_cNC{UfPfsd1dUlOe5i?AiXKUSuVfIBAQRd57me_G=
zKJ++!$(zX`m)R)`&ne#7LGyPssZf1vIgkATw-h&Ms*5B!W6!fbH5plb3)oCYSJHiN
zp{p*y9hdTIFw{|*cM7mh9zbe^Wo_=~qlf8ir^|`jQ35lzNI@%gU1fd}F`aZz+IGXG
zyEkKg1dh}`W0V8Yrk8HjJ_1y>?)|vk@SUvZni{{!L$zvl7mdx)ou>xb*0EM}mIqY{
z$$(NQlQK5>`t<Y&M~By~J&QKFG85OE=mbi4Ni>8s-ST&dzyCuSCkMrrdvAc3o3Yk*
z1AWOFp$g*1EdHT`!4=@3d>*{6T|dp=p8hvy-Nwn%vFUw80U{t258hrVT>v+qCd|{_
z<i5Ft?SW?DJtgkcJOJMp>#M|hyfl9<#JFdv{|rB0G@*af8vuGLZ*$kzTF-R5)=+Yb
z?6p0m8lVQBpv7^yl*`Ai6i~oD@1~?pUGa$$$*b#}xJKCnJ2K~-kPp*?1QrbUSEmRO
zZhIi{DT^0x2KMzL#=n$rqi;!bw{QS5SGsIA6chd563#$w=)D2O<?<V<$t8q?v_ba)
zObuhJpyQf?CC->7tD-Cb|MtJ%glGHq0OSlmzYjBG*DntS>>BBc)Ar#5dwn8I#J&F4
zJ=c-J8qb(tS;r14+JJQT)o7u!1Ng>G^j-{aj-Xiwzbj%ew&_0(-D9e^xL7ZLq}_+t
zmyTB*@YZ1l>PTu*UH(L)D&DKjw4c>6b7PoUfT)X4iu7M|;vjB@1_YzSC-ZttI7hq;
zC_4ady$#AC9Bl%EB7}V8gppyp4woA$(Et3v(EI>BM>T1d1hL=DGxWH!b&i+f2in{5
zFty5=Y2ua#__YJP=Tpmh_cLAZAJ)4vhqAD_cbTPLh^APu@n*;&QCwMyN-JvqcZV|r
z6?^b3CnPc8jCl{i#!<Cwz5U>_Z5JR5`XbBGwbu?{kv9vglYuIAs-3`U2FF~}`vQi9
zyrB1i@S|zcaN(dT!+t8e(U0}0CyDE(Ms>`401yL%N75{^3D+~9?ka2I2c@M`275|p
zA`$Fe15AET#vXVIBd?GjcRm71`b3${P1$9D1!zt+OfD27iL<*53t4C>RU_^C%65f{
zO2OKeV{1yfO8fRi(6ZAc@@JtjF(1)$QYw#ZlL3>?3RntFpjS@2gvL%Nxj!J}xxvkc
zGb#{KozTb}`cpm6?sw|Qp9*=jYZR1X(o)rj>-S_|G}{Myt_p#|ZNgjZ4+$TRP~EMw
zt$LcLEI@B`z{Oy=b*kl)oCR10-{Ht6Rs-rRhLw|)hcd{q;p@>c9H6nWuWTb?N<X?w
z*&pf+h>Vm*vFuRw($_KQkU{a}I3^U}-^N1{!t9_6mwHPtSSS0n#s$a=1`-CZSN)c4
z3JlU*F>8ZB+T(`PS6x>o69M5i3DZO0vyxCn!;y^k_q?PUb;CdX^~*{wV*R@G2=ccb
zC}Q_}W}7NLAkQnw5REF#$kO1qz1%sRs`bRCrreo`LvU_h_c)qOn+gCD0|BsWWlGL}
zOAHy_RNvC-hMYavt=jM9u_+%7iAs6Nbsz@_-v%aOgjqgqp6s^i{KVW1*@wF@oE8ch
zL^l6NX|b;KQYyO|ecUtgj&2$q)&Aw_PSv)7qITylpgtT>`~N3cIr3dr_x%*$k;Z(r
zIKBZi{u|Go-f;XJ)I$I=m%ZHCoIILbpZ+k+l=ZWo)}`78`Dq1&7kVEe;rb6k@rXx)
z2#M9Hl`*gI-U_FCrjYb8st$#<-fh7AtyuzNfGI&)TAkK;-go{q?z%4>%$0-k60R)9
zVj}{Ju{f0ygDG#e(&%)<x;Bi$bV0~PEVX2)|6RiH+fsXdHq^ZN9#buNl-an3YO^JO
zJwqZLC78#MLo^cT1=f&XPWYcz03z}Q#d;6E`|cx-6y!v3F?3>qDsQRk5hqX>VYF?{
zsQi0J1hT?d=40N|;Z4ShhY4iM?|#3p{4B2sd3lMgGE>iTl3?C`tq<wAHdZW<0W7lD
z?tf%^ceM~_KkX~G?+;zDKp&{A375b)<M$S(+Ya+>jA#COONc6Rs!OJboC@RnCf6tJ
zY{_4>f49P-$?0-^rUnIe6E#U@eqRPDhV=r20JISH$6`p9t5d_FN-Dnst#CV3I&Bv7
z0EWsu6*q;qbdstCYE~&wv+1^3rPt&eMwyhBewIVb5?aAN!zV3tr2<A-0Me!kSv(}G
z(5xh_R^W?Y?5<bD2UW{0Hn5Ke$MSW-T4{RaVrL)()~jkzuXs*1{hOWmN1LL*)w6Q-
ztX7CIziG-a-yO{>DUZ!jK?DwXQw)ir3y)~!V*XmFZ4%zDM2S+5ML?jBc$<ZR{xOO^
z0g2VPQ&?!*a*%q`1Qz8k<Bk^fQJ7zC9HC-DYfd_GtNFC8^Ja@1t*m67n4jH}!~}$o
z`5ddW5OzmDn#aO7_kCqt=R|XNK_JN_X}i{92RLHSQ9ag*Ks6;X`E3dD(-c2RyAh-1
zxIeZ9i1`V5<#6!izi3lc+auZhTsJJA?+xIWAfSB)bRIgVmyBMaJ%WVM^nNZ)_^z$z
z%R%pcu6v&0&-Z~z?4UBY__<2h^sa@dX42H!rz7f~dIc~yxGmZ^Prm@s3?^ciNu0Jp
z_{A>O*@EyLQQGZNQ=h(g&wZW{>E(!mK}&uX)ifNO7X4%XB6zx#2Dt-Ki-z;phhM7B
zp6<kj0-m~<qwnjFVsA0$QS11aMr;2xj>P&yyt&j_2!o}(%&eK$u3F*g2NDTgG_E4C
z-9)(I@E1W&OJWzNo9*?H#j&@PvPH{5=%NSy#PoU3tdrRT#rtn<lV4M&|J<KtR1*G4
zRU2gk0uFz`#D`lglMz&p`(QzlDHCOpFA{{zUMMYkT04U@U@7sRUHi)od!wP-kL?Q|
z;@36=8tlf?`ehRT>S=`F9}#bwl-i&#7Y2AA<9OlQ|2A^SA9{3T@SJ}2(fbF!#?J)W
zPF-{d+=01n2WsC`IdT!DL2*O!({IP~%FT!<j{Sx|rc#uN1v1;yAbjT8)Tlms*F_Yq
z@pV4H2op!~E;fGWok2K!+jczOjR*!him6``K}7lZhE4z#gKN%X@@T;2(|Ui;5e!Pa
zW3OiRtyDG}MX^ILI9wiZz$T)yj`X146*@!SYFcoc|N0_&jk=)(G;0R1g3JpeV=WJ0
z<RMDf%x6y=kaa&>h#Pb5aecnt`L8hj43#(oipS&jkzM=lk1cb{a)!<{>@L8#)jlQ{
zWi^E)rC+{H@Cy)EtlW2R&F8UD90)oA2Ql=3QrgIdG0z0KNJvbc|M`%9ht2*OAq2B_
zYk8)f>(S&5C&lIO4KRAodYURcKa-|t@gscrzH4V9vL7Z%iTK9sIO8fInpD~hG;%Qd
zTa&@+r}&v1-i2<-d}x3*P+N;~lFaOgzFgbldX`w>EXSy55kdd!QVR20Ik;YRo%x9T
zH$kvE{c6$J6oGpEV0Pc23<wE_JTMICb~?4<TMBcTT>>JD%m{??cc=63vqc0^4lNtT
zZyj^qK>j}JBnm2VdSwd|Oz0BNFj>NUjf@lyjhnYz=qSNyk?Tn*Uz%dYX*uP9N%qsM
zCxGi|dW+2vlF{to!=Q<mD?}+2rg`I5y$N4#l<L;E74{=5GzGFhN(0@Vr@K{ZTd&YP
zVBBNj-bh$exXsS?ojoad0}+sAc!9_nu}0Y6T>ehm9toJiAB{d<JdMyRls7T-2J|x@
zbB$8K$#!C=C3{do17f2n4vUFOqn=hNY$pu2iMLRf*TtrXe0xFTUXbG_nUOk;3TAgq
z{VRZ&)dk6BUkeRhocrEyhDFeRnzIwmb9H2QL+$@YeNQ#cHuvXihdnd7GNyj?#|-T?
z$Zq~B){)r7ai7<Bzzpi?#5R>>6$YdMoRY)g_Vocovjp}-$N()1V1LUKJ>og_ga9!^
z8?ReWmp)Ew&ZX&YEkNouUNx4iR6!eN{Rk#<dS{Rs*U|@JrMYzX#qqrViUS3vzF{<N
zZ*Sb8bs*og?eY3$5aNtDpu@OT-#7hrLw$zZdfMefTc?2ONFT<~o)q0}z+JcHpDalf
zK41PA%<hvvdaGgA<Np&KRZLfa6q2+vGK}^@hmyFrf_GCi>w4irMMA-;PSDphyPa@r
z@-6Kl;i?#4o!l&zQ(p|wuH|d))w7}())HeHv&$p@R<}f8^IXIKVoCXmR!xZ3?K_=J
zI2c4Z{td%0KF<FU%2V5Gpvr+kRvf0q0T74V>zYCR#+hIQvku3}Y%uM%&aH&q;q`MF
zVXiO=7-ml(*%3X`UCf-@m;L?A#AG9U#lF9)eN>gys+qC<VlGaf0&Cq_kvb2iei0Uq
zAb_yLJ>y}+hQ0)V<S)8{d7ZYT<z{^!7dhZ;&2eEbm-~cZG4bP86n#S<%69J3t7R%l
zFSY(q8t0d(s^L(PC0l#7vegLd7y+|uC7Zw`LKb8l3~vbDK%Yyh)_g#j?liMYJ<AAP
z2kk#G)um1GXU9-6b6J$WfXoPsLkIsSJ&8^dd{_-S9!%z!T_+9-D|St^E?v+0OVRjn
z@od=UQ&$PfrjnetoeyH}-da%B3-%eJ51M?N|3tpV$m4+A^lk0ty$VQI6JO`>8}YD^
z@luT&zc$dWM1niqXF3ML48CNQd>m-{`gEq$au9M{sQNfNR{X>&Uw0wn{|wE<e<`|M
zq|4>P>!%ebvQ&FD--R<gL+7XF?)Niaf2y$l>t0Tuha&gLLVgUBq7wYXhYg#CK1TSx
z4f&-oa<5*|;->It93nJtsx}(8cVE&^a&`vM=R=-C50{;V4ShNQU27{vI5{>W=Wq4j
z5*I49LCm4lfpEhBeBz4}#cV}Gifv%w`EudA7;`L@Hi2&A>8o}77Q8LSLx|f+!+UYP
zwSG$QRC{^>t`~g<1X5fpvhO3R#Y2Al)UniOi&D>B$QK}&6y2=aW!{$m<t+8tG#Fuy
zorHp$yD}evNtx0X6)F>Cg;r%PqUSzFIpLUg>I&<^b`a3>1_`V?Rx><44^zE1zDmE}
zee@K=VVaPMS6IQ>y8$pvSD};2pu9^GQF!iIFVO^88g3PWu5Nll66Q@Oegwp@moTyC
zt{fqQ=+hS8FK|7=AtSa$!qmO|7rodoO&|kBI!2%2D)z6#>{GgpY)0_Z58XyEDUD7(
z|A21yjD6Md<<$Z#ypc~oeP?KEn)1~d2N&fRh<?uzj{R40s>|(LTJu%w)wM$}$pneY
zi`PJ!$PG#=duH}eDtbn9329mdbKT^q^9l!42ZxUi6DOl*C)F*jU_bMg=0DAU9uNN<
zWtSA?%%dxj;l--IbmJDsa2Yz^Q+49g`<?f8`v$vM4GNz%Q0o`gGR?8rP5O~YDLqx)
zZcA^&^>LjY_JpCM51#LsJv(-6ql%?zzFaWuO01ZdN>U||>(fT{;rqcNuUEWOordl5
z*Uy3-R-^CO{;<TaOg>eR7_KMpllpmXda-DV$!iq(tN5kXnwl(39ES;@ZPP*}R@`IG
z=Zu(?RK31|q2CXK$O~SC_2ILd?x7IxFxns79yX=Do;|zAF7z2*==DARJYl@tSK*t<
z_?6y8wU2mUo-INi=#ZWU9)Wj>k=VDKjQpEG?n)44n2#a<1*pB8#gwKUU4#wk?8K3k
zY{MtSAo{w7ui;13u`en>!MY)XPVU^UcSXwfOwHky3Vs{C#79@uT->!H1}ISZiq2u`
zS}kR~YEjKb=(0U?CDwNZ+Do!e`Na~&(qLY|0kt}V7y4lUAr++Q)PILNyV3Mo^(!`9
z#(_bv;b#EVF9dq%G^uyE^8g++aWCz0#xQ!vx9XbkJ$w6(*5H0q#<EI|%&WKUU7tf;
zZX%UcbzcVD?qyp*%0yo|Fj1$WSXG2MH57F&6;M~xsLdt0B1mJ9mjmc;a7Trrf&Ylo
zKJz$IN#OeBJ$ElfhCU$jF6@v?E+X->X$1!Nm3Ck0!X>SoH~mgzV!OV2p|+08w$N%9
zGJb9+`EVo-`IYIo>O;O|#%pkbPRvU5u=?|fy90L%No(*WQB?$k$JB|~ZC$z}Mg#uN
zZE0L!*1|`X|EM?*+8OboBmq2B{62ghyB)jcJ{wUf7;_#58gZWWStQ8?zZ!`xRDz8E
zta1AXM6#t5oedhpbed<l0}v5qUDm$(Vlf{~JQrfL|J&&CC_Qh?v-e{PsfFR_f6WSX
z*-1+h-4birs*b~7=J4a&Tj~B_67N}#zV6gV^n<}oUL-cy^B<lh+Aic!)gNh)C$q=$
z$!B!LOH{O!;XH$D`wkch;y$+7y1R>wU-g(1i6|euu|e!hgwox?!R7IrqR&A{UACo>
zR~Y<sy7eWH%}zlYr=SgpB6QTxnuW5$1`CeKM55-*1AZhD57uu~Y*LRdcs9T3^^IzE
z{PrD2KW{eh^kamA`Tz&YM)xJUq@WAMRYDA3M@>z3*K@+CB^z6@WG~h>5f@vi2&#g2
zZhMxkN|MRp`pQ$Vu$=G}tY`JvEJlLUfg$qn#lQ@Zuzj#+_b=l4V!~4*kVD;Hr9cFu
z?*S6Zf$rQ!0sDbV7e499Ma!Tcu_Nn3xYIZFyN2M7puxE*TEh3nS&6h2k2JZwNFK&P
z5abH=p%H!s(0(iQX<;mGth_*a-8O|-uHqxZ9oxbmaRzvIMG%}xCuBMC6<a#9{XXUV
zo*dx%xt?RiwSMD8rgYaL{36-PK(obwKpE@Zeb@Q8q-Q9|=KJ&FdyGTrVz|UX1g8NN
z1~!kxViEapGxObubieRc%#`#4w*jU+eBjBJo3j1H*a{`a9-fHH&lip=RzkJm()7DJ
z-OFimn7i%}Ju+-L1ZD!)Ux&g+tSP<_sqg8TWEtry-wjPDCd14Ad^T4sWm>78!1DJP
zKINKqT{>n=Shi3S7`6NB_cEN=>XlZKd8453qiw`Db9^$yTD~*J#C+&j&rts-OyKJy
z{DWgq>vfdU=+6owXH`3kpB^s}3`?6RCe_Al5^9b&-Q=V3I^%q^>o=ADjm>z%&aoxw
zS82%m<uyr%em<i@qq!C;ytp&#?iY}b)*E;B)#!(Yh%eW(RfStc7pyC+4V~AJnFiL@
zleUbHhhZL1VNF1)g_QDzJ%0MhmS~-o_9A9xa=Vw;Wb{(+&hPHu18FMM<t}Ly>f_(P
zc`TDpe{T}@LM>ye%lf(z@rpOuc`Jpm1CRK@sa?PFd|=G_BM~w}BV!LLJvt|bAE)n?
ze!{-os<8CMyDllqd*r8dd%fI8uVRcL6CC+z-*1Xq_Ignc;U<4+jmA>G$*1~w8J%s)
zg=y`P?ZLOhvRhnWj6j>(aJBQZ4_v&@CfCu-T2FUbduLb@Be39+mxZ)u(<6+AwiHuG
zUc^cE#hUDqP0Z&~ihBnmTR|f&?B&X66SPhFw>D8g7u->&18U0L|5(l=#wbg8#q$zC
zUaXs{aJ}t6TNM><gF2Cvo8Fm=`yyl=Si?bZP{o2CSbzV#9pi+jm3n-9JW~98;X~vn
z8?wR<h}u0iKl97Z(GRDFsZ%6bth$0()XjK5kwm~m-q07I?x|KHHRK2+c|mP`D^y;)
zR;{g!E%B};krBsKgZ&2w>lq#=<Ft27znzv6qJ}5-K;{bM`M@ty%wBxwzEd9LRfj9d
zw$MFu5w*g|rBwWyN-r>Su@m-;X>gz7TK_B>sVA9pomedLTppYP$AHcz77Igcyn;+A
zIo(gc?G>;d_z;C~HGyh8^)@zSs|#AWn|CQbm%`H6Nb(zFqxjl8p><Cy0tu+Isb|qs
zY-&rkn@rmwC1+o(&7P6<ElC_ISeoCa{YvevpoBqB%+Fe@o|xd~W8(<j9aUEr>?GQY
zOyXYA><KKw7XoJ@<QrpswnJ=;`khCG=8h1x_k=W`w!I~%<+=Om!<^u>Aue<@Fyk=J
zAA)%~`l%<9hsNVvw)^Z7D|>yWEmF_n5fQqn`aO&W<t~-y)s$aE`|ix!<(~Gip+jnq
zik^%N(C~My5VFX9uj6t~<mn=nB2&8T0UCrNE9J>kfH}@7+yC_mm^n~oa%@@x{@jng
zO|e4ux^j$TO`Xbh7-VCd#iWdIy$p{hIeDv)k8#(F{K=#r$t4xxZ}5IBCbev%fXE_0
z;siD%lZK7{VV~M)9J#wHGpLu(Rb|(6?_;YgEoa9>=#y!#2}sq|;ra<jl644YfCBc(
z+H&aVYUVy0ULgZ){|yc*ri!T-Qv6+{0}(+zq0V_JZ7^6(MKIWc(ui)D?E+)YCuIYR
zO>b#9let$rJS-I*lT|%us}b<N@MAIc)2-3Q>(0K^|GqLa>BqGz1uw$pGTssH8I9}p
z3k*1~QU-+WTTb_;9#d!+=1C&^ZGbMi^G2sMKIolAVdxb&NT`{Y@84l&V?J95zcxO0
zW2iJ$d@G&XoEqgD%)X3Q#1Tkqg{0aHDj~PJj<>xJa(y%GwNyehVTmHd!%kJWNW%tT
z{V6gfgq8Zdb6(r5Qn0B<CtjA{jSxnZaO0zhj=CC@@i+Qhb|{CHsVaV6iPwSHYWqAW
zXI+#0J(%B4oZkX@IHfUf+Cfs|3cV%DK)TxMsx!x>3aok$vrdIC0lr&k7aqx9B#jn#
zt_=pe3Y^1ERqrCgk=b5%ateERs|1kvhLdVcc6wXem(%SB`t&2&{LZ*FMQ?5zw-<)=
z{OM*+59q!==lbV-V>E9)?k*<26=joEGvtNvY6?Q!@!4LHc*Ry+*T4?d#7(Fsne!gR
z%h?1M{43erEYZAKw^40spV~Y_buGiAm`3vEYpIxQg5v6CCuFlptiK($Hcbv5X$WR!
z2+$CU+RaUSO<FP#oQK$d^eM4n*w3*S`m(j4ct?`XDTaQ8O1M9Y?xSEk){kx&zNW0=
zZZIa`a9#i+CnK_cJB@gkV(<%BWopTbP<0bX#b3>g=t%kUHv7-Fk#mwwy<f}Ph(>pB
z+B&;@#$ptF(r3Q(xD;S~&A`Slvl*kB#LMv~;_Sz6bF5i3ui|rWQZ#z6{yNNoUh{31
zXw;A&y@3yNGv>)6x7LxcxdJH5fa+|r6`}GVW*=IYdEYN&`WP7BJPI)VXIj%<B_#q;
zecy0eLs|#!=(MaU`2bekeX-B$Ja913cnna+XViMN4sItvQ3?SD%MXVfLs*nHYJC0B
zywd1+KPkyJG|+U4h6YWChE<aLe~9#oc7?1X0izT@6>)~<PP}=vwZe1*_IF7VPkQ>@
zLQ6Yq27nR-L+(ewLTA+ulnLd)gPHg_b`VAUs3+Rx5NB~t9?2+j?FOK_7J6^mX}X)A
z5c(5)N1Jk3!t}RFtB^W5fz#;$HXu6)({zqx%sC#oLcT`|MA!-_HkY`32Ao*93I~yl
z=vX0<9J9aGboUDq-qaUf3!CYj;}islx{QBF!h`tf_YtyVpB(=pUBq%82E|IL{kg`C
zr$ChG{LNBq&;~$v(I-;tRH)mnl;zcZoFNR-*zH2%nNmg>mlmU`n@0fz2wpJM==p5r
z#HlDXZ1e2(!6*luGSAdG1OpKg+?bpcW<j_#*q}+zz+X8(;PaE%DKVVONk&H4BN_Sy
zS@Y8(C`u0)a`gXq7Jzstv{2%^J_=UErerW4iJTafm~R-QkH<n-)4}&>Ps6^j9-}19
zqG@~-euGMSy%Kr<@o04Ca~DiZB=+Nn{BMsOzC@R3R>f^od&T(tPKU!y;(~A9IFdM0
zpQccf5w8)?Jz&09(X@lKNL)36zrMv%-*f1&jjwO=Hj#BKRMYE57I5=jxB*h(77nR2
zi~}Dmr$0B2V!KW6@=ml20^YkUN#@}3G)mua81(i&rJm3&T}~64Amy=Uqo<M|d>>8Q
z7`u^aTcCsefjAsEU8IJ)tNWuV>^qdH>okRAP?mpr>~1iMyx$&6cGSUl5~ggrK`A}y
zQ!dRbGpYVh_lwedq<gA^^`k}M2>u&PR@X)do%F2sfGe<^d}_VX{n~3UN()uz))+9Y
zCVpE<PElkZJYQK(rS?+Lj9mY+VIoeVY~i=nPKBopPm^syprv-$fDw^~?ZvzE<;VLw
zAIF~5fkTf&f;*G0pQ1PgYnduu={lI_m>6#2TYvUcE)wEHDYtiT$+j*xkQ$eoCr~q}
zVZL0hUB-}COE)@cZ_<un-N>e*E%$-kVi)NLD)0;1><2{c97?MM{2qFrbP^7<)1IT`
zV3B-RSxW5If?DL7q1;Wy^&E!$E6`?d)i_ToPr>@wLTD|srT1HeHGlpvuj~x^YN3aq
zH2!JsPV{rFD7oM4_`uY$(4@>t;_V|27s>n!k?QIRj28=KHFK$e&YxL*DU^Pjapr&&
zMsmmwyFE+@&PbnbQqYrt1fW<}3_&Yd>wnU{GporDsqN}rqKo47boN&K@7C=9d8ypP
z{1%9tgo_8uj`u+HX#SKgMr;@OpEmBNxSs608*Dr&4)u>Fn^;ndc<~Ew;5Ocmuclnj
zJ$<Fjz|`SWY;y|6>f)c%DAJgCCD?INmW)=SgczUdv=DT{Rj_}AVWfPf2tA;sfj&15
zOcOk!mZ4!3(|zU`Ai<6mq0o>3#=m@fZv>^2K@f2p3zZvbfi>NOd>nhnfUkjix{vKA
zpfjFztg)_C)%XjKO7`<yM7^YVKyADN40X8xTpW%Y)8PaLR+A__&eZ;so&#g-JD(r1
z>&cbr1iq@XTl{SLHy@nw4^yPRUVkz;-wLslFEx$@Js*eaEonW{NfQkRi9-d-C4Qj%
zDDD|@Eld2g>~bAt6N7}Ks2~|kiK4D3FWx9{vr1=<q-nq?01ViH-ilmjMc^fvN4gPP
zCuQGJ=ufLK-z8@<QlHC5VaE-+hS3&|$;0XA@9QKh5C&yom{EM*8iT43CKy)H_+Ub6
zM(4#4+x|`$b(*=C6hs3|gLZ}0h{lcQv?CPpc6AiZ#6QXyEzy@cS_K4CKeqYn1(da@
z&CuRuNS|qITB&~MNBWE~m3}L6g8Tibq-Z4~BNm$SLPFzb`g-RRU_k(3yFj`0i(EmQ
z#DOhxUDr|tcov^SiPax#Rr`}%hGvs5dPT(BO*k7iKBQiZ_`n<re9dE%D(^|%J}fFB
zy2-mojyn#3L31?SKCki-yG6}4WZaAK%~qhWHkl2FCUHrN{Pc*iO&YYr2-{nE#BwES
zLUc*!m1^Sn$^s{$7U^YpL=(+^r#5Ix;8IMIQSuP)JVU4hsX@#iI<G;TP!`UhIl><`
zG``mJDi7?14<wQ#y~<lLq;>FJR>=~4uZtDVJk(fZ2T_7|rf}i9)7#Ul+<QLadZcpU
z5AFOp`UG)G4BFz!7tx=S+S<kD%??syOZLN6N%4KeMw%Q|_YC-DXgnKad<r;w8Fk(M
zB5)H0mgX8r5Potonc$I-ju)R>0YV=rj(k4+z!=<&DEq#7>0pSY_$O0fsChBVe8_^Y
ziGKx=&2y)dqHVh}0_fnB2ELjOi~3W^_k288JVt8VHqc3PPma{7eIYE|$+8J@6{|eI
zpoRuIcqPd9q@kn99`Q4&MfRen&cxM2_oe;NUk5U(IhKt6X&5KlYYpa$`ui&UAlp#!
zeHiOGXne6JJtZF>vEn55`RW<b`4)aqY`7y8jABrh?ApoYmbK?5w%ljVZ+orPjX(4b
zJ4&^e?Ct9RYjge=)bfAs=UOb-dkKTV0B%AaD4zfH4>(XVzi6ofhNB2z;Sq4#C3pkW
z<}*VdlL?U6jBc3a)tJX6uLBTLECVw_ESFfN=>}0tV$1T+ipv@sXi*zlt1Vf*y3n0J
zX%ZlB8Mj|X^-4%$_8I99SJRW46|W#*(r2QjNuL0EzLa0flG)hKGB|{EtTn3=1!z(N
z!yfNXs7}R(2d|-<8h;g{u_N7CJVt}}2#nPeC8DFKkRFdThgRGk&72{z`s&1&Ljmz&
z#~)w|v~X(({w9XyrpH1R2oFC(o>GN)K{%U!ojjrPLF(lBRFpfvF_4TV8<dTH8fO$+
zKI~qtF!v%>o&&!CUFVm6f@%FlKXHpG4)%*c5OB)dV8|eOz1)1^bA;UAhEvAMhoBrZ
zK<VVwro<Fma)HG$dMRe4vnBvkf&hp5PlALr6SApwsdzJv$r(m&bFTzSl2f83<hP+*
zT=c<rV@RsQXy%vo=TNM#TK);{-0sMSp9TXo@Lmj#OqB}+a|SQk^;{BfraAoEO;rLd
z_lbw2b-ubKk>lR^3b0bvZr`EqMO6NF9wpe{PN=8gH;yIF!*QT|44)R0_T<QBp!j6G
zqUp=|Yv;G{Y#`w}{pC+H>vm-i{RfwMg1^rAe!RaO9M|PdA(@CAt9;WGErD#yuF433
zL-Ibt72mFP%X#kTv-29m@@^RhZh;vfnAn;n>;7mF8t{pnjpHj^-4jUh<9MIeP1ne1
z*nAPXX<+4=isC|>Z)Qt0X*29`10yM7?G&8HfjtvNyIf%X>8c&E+8ke&sWT7hAOUJO
zpqfE7Z8(jiU}D9f?kFdJ{|kN#K`?I)$^r0AuVBn4_AaHh*fUq;58-*VZB^@REtKDP
zGoqK*XO`Ew)b+~PsWbPwv4v(B<)F|%D2cT)jr&&h^3CDliZ6vE`9eHN2-S{g{1#vB
zxku<kzs(UBDY$0Y0e}N^LDwIFob-?w@<LN_^a2vLQi=b)yx+QHV3q$LFPzcuSf4-R
z><pL<20*AJ`k7{+asT@bfwB}7tXmYA;hfryjexVBP9=&pGyBk2x3}n{QFqYnd%|uV
zs07bNN&TRA^vGk(&rhbTLt#Qwk9dvh4cMGe_Edd7(80Y`W|ZVxX&9I<wf(^|r=kCg
zueXe=Do(q<6^TR1p*s%UDUCGJB~sEYT_PaeUD6=k-Ein`kdW?1TDsxc%pEiLeCGMT
z=LKwbT)%a#^<C^r*kSC-3kGZihA=XwZB>8X1E@qHdgky0v8mAxmP0PQX_|0$r7T%f
zS|LO_`cPQv{z;rTS9X(0XEIkx@@Ns!EuxMuK$$~~D$Pfsi;O*`R~Eq{7T!GGNYuuN
zf@kE?NiB&oxB946iDx(C2oL9?Rl_uHO4L0)FSJM<v*)JJMUD0q;CcA28OH|Sn?2z8
z13s&3jN#OZ*9;O(rPB09Pg^6~lkVpCSg-%zp*BSvzZ*;wTFDUhq}+RP(K`^ce5_`1
z&&NI$4`!NV7LKx}<kF*D6N^$--QFX{Sxi-7(CU(xT}Wzh&tU`0MBQ$4a#F?0!Z<JI
z^le0A9}QHNki7~nmG(SDe}qX{e5P<yX<Z8-C}?Ad&xmV$AeJR!PKRj8Jny!J4!g9W
zam*N7iTuKh=lx`^!ggF&*lGy=()c`1gO|9pnLVIAQp8RJR(SU|;6{?L*N%lH!Ae2&
zlF2GLh2=M~dXYft-|+rc<)zVk>!5I^V-Nequ>Lo8LGG!CB*%&9*a^F2kV}c}n0r#A
zp9hBwm|}keqC?!A?v$RN9+w?;l0YYk!yEz82Ke`dogeTY-@vp8&`d@t;h3U`+(@9u
z@Ih*_g{2oU-qWZEI%1D`3TTaIxU}WJjblr0=0yk|wFnia25YF+eSfND{tju&D@IAw
zS>iABG=Z6|ju-L(Zy_Skd!_52%`C4p){P!RBPnj{hJSGaN?miQCS02QQ($*@Q19e|
zv%}(2x*x^wl2RmtxaqhNlx$@@xn2i1TXf@+B+U{6V)62~pB^53RESafxqCfrGO|Rf
z23h;+?AaOS9#{{$T=f$3ELLU{P`<>!wk+N!nl!H{kyof#I4N^tFa2ze^WN#_`}%5y
zkCstNqWYHYz6+lJ`h@)RdC3f*@D2@50X`_Xk*`9r8T($GHcoMoA6X<E>0v^Jn?RLc
z=#aApad<UdOxV<ME`FEMq&<MYeKc3`FsUA3L4Mql7pL9>z@e?j9ultM4#ria*r~=z
zRhcb-)7L@jL%8KO<~Z5sDYIyfE`Q<35OPH+&D<>0ZkTU#)|G|Q8=hn820x4*%T5SB
zPW^fKibz9VC-t3At6k{c-`5WRCq)lMFp~B&t?bv9LTL%&SjI@t$LFWjXO2Q1#9N5w
z)2GQ7(10U=#_78Z`xHrmHhThW6;n^+_wCXSVnYTJrR5+p;>n7^m;u9u?$8){aS#zu
zwr(dCM`#8j7qArmyY};A)l-6tFHi;+l55enK}t!SQHZGuU+$p7wxgFZg5wk(ZJRxr
zLeCs)1lKDerS_A7RElQ<>D$%eyaE$SZ>4y`A3lkQ#lDfEqF=TndGaP9183m9-<&&?
z_A$e)B<gjjY*?>ugFh3`j-RY*leW=>F>L3_Cgy)a?H4J;_((PedZ|1k-EqWPvO_+K
zy>_RPlG40f=Ga49T7^X48r{^43Cb2l7!Pf^Cm%y)F6aGs697j=!!O<!3vlE(9jwQI
z6|hmsz5n|FD;;OK8*6!hg@F#aZWbTYCvpH7XU)5U!9mKqsOZlC5{*0ia|-|$0J?<G
zryFUte}^ptC<KhsnpObh;JYiogL{lFI1z0o)dw>s=zp6Y8n!OZ_3cojyT1XL{O2N=
z?%-{Hx+0SA6FnNeD+T5HzB;yXR2S;nxxzE1H}m*8WN?-Ax$ZPRul)mw3TL~T1nbW%
zixqVdtX%$2&kk0PhVyAN96D&E6wNVO+Rq#1E+%^|(2JDuHp=p1h37Uv$}3?qXO79+
zwBc38FY4R9DpRGpwwJqf8Kf~5Zm<pUE>WAIXOtzWcYSnb<JCF1Wwsdn`2o>K(279q
z-@XI?yvzUbaqy8N{|kWLR+#=M@4PhFLj#iJW^zpEfV*4=RwL8Oyl+F0bRl8zYW@3L
z!_OK{LA};EzOnP_deh9FRKv4z<^}>}wG#MYGtsP46;ZXgP6GC{{fO%Ua4u8mFR3SQ
z@Es6-pyd0sNdfi_he?+BR5c(<8sy@a{SKByFO5Dsm{0koMcOWca)M>7LUyuyvC=}H
z+`;$;Dt96V6Y~Vm%PR08ukEP>@q6`&tw*-LM#x{lYK$B#?tr3k>XQpI!DUg7?mnq%
zZTt{2$Qk3|CEKq5^9~kE=si(>MdlUGwAvsc^;a2p%lT}0Y8#&yjvJKC?>liW^ODvk
z@Cuv48=m@^Qc64-MDY994$sw?*OQ}grX&?tC@b|NL9a5T@k2~E#5v1%$Vrq5%qek}
z_2&iD-+aKZ8>iqEPzg_mDvIMT)`!;T)Dyw#xB>LoY_`dQPujs9p4o2H+y4DUC)r8o
z*0Kqu?b$@b+U@{cf+t?HaR*4P=Z1b<0oLBJ#VA2lhLHhScx@z}ZJ&Z`3QrIr(Vh}|
zq3ocZZ1>S~9r8TcU-HLv;6O!S1I*XUwkxU|07AqkRG$QEW1>eLVChqkvD;J+Qp00V
zcp$1T+?{>F`bdz-48tjF8E@<8W}VIlsho|@EKV_T^tIC_n}6gaM-32OEyf-D>+Hu$
z?^{BjkepH-AhPrsyYe{gjb$P>EFq@%+PwV@RsL4H`Yc_(;R0cP{-QVEX&w3%Z!zkR
z*SzfuG^YzS)6xHbgZDqAwM@`E4j7=*CVD+59}wFt;a?9RMJp>UitsYT#4sawhn!JT
z6j5q{-X``NURIk7|3n@)wniewt@8q0>wL3Kj3mDWr}W7%Z+c!~1!Uv+<_u9p!kOX(
zXwJ#kvoa!2h73W{CC+HsqiHGc`tN2#jg*ef>HXrmIlXDAZ2Wr57{x<AX|LSM$hX00
zLr2>}Rd|?|J?`GljUOA!SX{tCVn>o=_1WGn55;at4$6SOLx*1$ru)%Yc0Tw{%Q>OF
zsD<D^P!d|Q^_dA8QXRLWI%yp?u}Q?{gkDt6*@Od@8KNZ7v(EQaeXgxQwC|(G(u}ho
zQKG&xJW4Q=i?6Ll2$Dk>UM_iD&jYV_o5zf%nRJ3aGFyzNxR+138mYa;TmK~(dw4&&
z)L<z2t;({f0x#fo`#8E{an2TKzd0Dhi@|;dB!bWjYqIA;`E~&R(0rkz)yU73{f8Zf
zQO@EjdH2c+-(i910jl?--b8(^SZ=_T8+k#=bv+49A(OftvR$8UBHC6-lo3iw=>jUx
z>WhVxxXUA{5nH{3y<HT~s71NmE5dFWWu8fu;`yZ>ui6o{9dK;Ny|s?KWmgt^FvCnw
z!=S^v4~<YZ@k!MWvUK}PEa(nxJ{}36UCx$EEzUw2e$PAMNH&(h?&bJac}#q&_ko7G
z*bjJUmDe%FCRk$ZE7sjvv8ZG5UB+iw@8GV{Q8pM{Cb^#5_ApvsHW1H5kmy3=Yqk?G
zDm~04xsu?e({F?3-#Tp%5!b-v8&!0jbolF0PE7<ivEuv0*BXc3jR7MEHycxWGlg)4
z15Tb`T&MR-Goefw7nyXf_XP7gMvKLbD!xsQhqrcZ$_b0j31s;3#~alfh*3XSEbEYs
z=PPWrc-<VL;V{fDyUaU1`Cc!HjXk%o=l2)c@;gru*T0_z5?LdqH(a_|wOeTilXUg+
z+oLGU)$$_QG&%nz9ltF0|Mj%_KQ}!o3?mYt6q~?13D*TeIz(|o%?h`2OLQqYksu$g
ze$Q72_hnapK9Cf~`mUibFWzy!Y#%tL5zHBa^9BFpXt4o}G~p}hwH=;EDUfcCaYaBQ
zIRwc^r(^>&w~km0XgbsN+>p8G&pA}uI{emxLlh5`h@cFKIZz1xW(Xu2WA&G~(38RO
zR4DA~*}a!gUxKQ0K+<l?fry`q_#nQ#!8U`<nAta0&$fr(7|z@Q?YA)$ICVgBj!Mo_
z%2!`JW0OxDpBX&>^cS$8N}3FQ`MIhH+!^(J#=_-h#m2$}JF!k=1j3o;gWg-Gh=PYf
zs150pK`)VJvgDh;@AHb-0<7M|z`tSGvlPj(T7zyzh7s*<ot`4cvM2pEW(-|aPOiyy
z*V9qjn7b<%h4hHy&!WQ7?LhX10R}s$I`n>&O!SR8q(eaAdB^n>2=9R+vAMfM#NWJ`
zZ1|m~0<1A-@(;X#B@F*{@seY=W3YBQu!(0SgB4v0cr~M>Rr@7|A|RWV*F=WtRIHDF
zR!UpqS}~iMK()PsJte$064|J)O))xFaC+&Q?0Fs*!#a+QH2+)xo{pf4*WcRy_Sb1h
zI(E)}oLRcKOqc+|sW#3x15)N;ueb5LGj=4wb7ulPMtvx;BXF%tj<h*uW9jSJ8&@8^
za?d<>5Axj0#?T6y=H0tT#XDndxTYM?yH`F#$)tqA1{$8v%W~^8G}KIaIyPB*-@Y=%
zc=pbYQH^BG+7|Sf9~^;YYb=~OscN)cRHu=4`I6FFoEjqXD%PJ>+h;Hu&+|snt%vly
zc7rvH)Dl=wH){CHG5sHf6|UtUmcMtaItrqlZC!@7@?eO&_;f)eQ?iMFy*ona2_De>
zfz0fBtC-){<feOZ@)>t04Gp^7WV7<_r&HOoy6D<xx4p}r|2Y%>pR?nC&kQr~U>IA3
zfR;qlf;5ch@s|9>If8wmz1-Llz(IM0#n2@lZG2>=jMf|ek|0x9hoQpO=F9*Nl!&-?
zc>*}|WMON}ahrC25_s4da!kKub(*XNVclU+!%{@!e&A$!JKXKD!6Aj5H*BoLZrYvV
z)dS611q#XQ0_z@L_8Afzm3$Cb(oZvmQN7QFY-IL~E22NKr&)1KA-}n%#Cd}@6$Nj%
zIylqf5Z*Fo(y+$`^@uwuUd^*hQj=GQ9Bddnt^JC!AEd!YAFJS?e*k!1uoFNPlDQq~
zgUjG6^iW<(xfQI2?_f57tZFz&Vx_q@_RgSB-63>;?1EU2&f;wAb6sSn0sh+?Bc#0C
zN*^8IU2ILp9)PNzrhF;Y1~|&O$(DU^Wh_tHpW9@2pvcTn;p!%96{8`IczZZCpuy0O
z!aGZ$w>97Z4#FC9yM>!EAm&Nx1`)p7X8lmV<RB|V54!IWl#*25+<UQ_l`AKQB{8tY
zHQI@Uo|aNrL^2y*3Q4gp1>qNDyX+KHL>TO-#5LI6Hvw$fS)W(z)k)E@#_d@zGdFuX
zTR~<D4p(1RMIf$%t@J$rdP@^geK#)|ELWH%EvT1=zC8&M3xq!X@(>z=CI-LYe=$m(
zk@rH|L_Cx?!DopY($XQY5#WBiL6S=h49Bkar%M*@x5{s^b5LAOJC+Xsz8@vs9DopQ
z=Y&$29o`$Y6zvXYzRvO<$r8_S7^3TRr<_khj-}hNf6_-e<$4(Db)4!7K+Y?Cl}bh~
zt-m*kR}^@cQ@#vjOTdLN*?oAPk(pmW!P(@)p5*Z_LsYD>*<gD20GUySU520sjD*yc
zhY`v>rPDM1F%WHfTkSx4eZu{t;~b4X%&-V5nb6Xt3j2dXAA5SWm2Kc3CqLa)Yu`t^
z%wdshd`P_rrS{XQP?x6f<JFrh&Li%5mbt`N;&p(%<7+b@=*0Y)d$PD}UJ}$w?qafx
zPxh13<jr4XQ%u%1Q{-A!bf*ipDef5BMuzD!URR@8_*Oy9{v8|V=xhDpp5S;`5vm%?
z9b}FU@2e6x;T7y~_K_D$Go5v(hl%+i6=&ths+~sKX7I_oGgFn8dx;q9NMf*C2z+m6
zo^5Gcg>MCwdw$7hje^(Kl;i~wKZDW(|DO}pcrm!cdKZYNkksO<2Qf0{=cu6*wIm=I
zE2B1iDI&;4vNxjbuXG6@z$eAouuH|O8;@-6d8r<6Jc%`$uTGL7pv(o*lw(ERAoSs}
zg7t*34x#5;#fHq$Y$_Q$wD%X$fG{|l7A7#&M8@fl8}wLXaH@5OjhqcV7E6v246slT
z1L;KvLYOAffm9&D!T`))02g=&;)*tqhyjb{v@0Do$agVHiHUo+h-K`$;P~;5eMQA4
z`Lu0!AGm?K2?NJ~bx9_+rWW~)hTUr-ofo}&127*fYxrt_B{1TuNjxr;XTP!T*@i@*
z3EpJ7ZbonuB_qKRYUd0sdDD-L2|Y6g<+n<BAmSE<+k(*XhAad%V|mJ1%9Gg^ynu>!
z1X%e21Tb$0(QG%k)y}%v<<xMtB6zq~L<0-AH99Fzs0M_#qV0Ca2QQfIpS1VwW}A)M
zrpa8c?u~O`A^JMKW6da+qYIS^&e?DbtI>K7rjZOQc!w5qHVrI|UjYQbn~lqAOx#1=
zw52QyT@7Bkn^d4i+V%oYAp0y{*6n%kClq}D`ymko;w`}^M7!2pulrMNb+*bY)JdGj
z1j}EI$VJ4nU0}rI9E?%hi|5nL{^r{VLB{gr)$a#P+)t2N(a$|(vaJ^%k6^BW#OY54
zhse#R;2#tosLn|viQw?um7PC+g49f$D9I|?S-&Os#zt&MPQVPw481`0A}=DB#bOfg
zbjIo*S?~rFSD1Pc04p#5oGt9*-0b|FFVErr1D{eTeKwgJ57(gE>F<lhWykH49K`;#
z3$&TQ8+kyp-w<aHM0x|lq@ZZ#RzT6F^X3iUt#=xO4W}EJ2&aM^ifEso9Bi2^vA<1L
zNfP3*xx3ga7YJ_4{v|`)whXLRBmXEY;hX(jKX!WQU>PF`_t4Y4IPrRRv-{#Wk|<)L
z+u_A!V3YM2PP!wWE)S&+(dEj-yJNcf%h*}x4xlBMYKUe}ff626?QiF;-84Gi<%3bq
zS}6UcS;M|FX9-ORrWbYmxQ%s9IKdQ9|7q8S*y$|siOPdhyeQ6+d>27v%4=TY>_!WV
z(iQRwPU@~-0#|2Cmo>}luloQ8$z!sEbpMy;7T9jVF);@(kw*;fd4YB$^XNn>7iP@(
z&ux0Q*N8((fVIP~<7^Nu)fXa}yfkg&-b{RMyUPbX3@eZy{gIKzKi}e1&o05AfxDH}
zMpg0CcF-YDy5yLBpIK$Wv63$1Dv<b%Cbd_GpjzE=_*zn)tuBr~V%)>Y_t^H+m3$qA
zw!PXhRO*6*5BU#44RWKCdW?HEn7=15mi*ltHipeMBdv?m@+zK%e&2fY>zwLDx%9*-
zKo>vFan%j8aKXK~RxB@uTI4zH-TMvh)yH&}*%f%$vJca|*H=?zbi60NZtGi5wOPb%
z|7w#tHFr54B)2DdoqTqp=Lp@l<yoS8Ba@tmd6KB#Wj$XIr9u9uK3~7aFOB~Xb5Il;
zGAaKE-r`f;d>k0crRVY9`9BL~|0N-C2EGbAH7xv=S?B-&X5qyVrGHyHz-lOAJGUA*
zC}dMWD1$>uk*gTLRcX{ud?4g?qQpUi6jcg`-DTPW@zC@}0Mp~kr!0R9Bp1_4xZ^l9
z1dOY~;q0Z*3muB;NB|k4XPX$gLtFALF*;(45n9gJBHJG8QqO3U?FnNa?%C7DMp_jJ
z_S(yd{z(Rdq>LU=St*0JMF27@!rTAI$e#1lPedV!&&gtG!-jr48Uc<IXBe_GA(#;@
z%$Exba#HRQ#>vvm4N3~E0{!ae2079a1fX6gufYt;FVW=`_x5xD4f|MncAkr|vv9W`
zolU+=dJszveHuZiUK<neTZpFRVAJ!*t}z`=!7c)A&BiF;g_B`sxg)t!6$`15;L&`n
zk|}8WbSA2lbs~zC+0NSbzy{BjZvTUxmxP_rk(E-ckI}-yK!Q{1lky`P6>B+W-;E)P
zLG5c_%xhy5-<1hT(xZ)3<ln$!JR4zlEZa7bp<Iz20sVuL8qEah3|xL4i_57cg+B+F
zmJbAN%r1o>ZFlw<9}tg#NBgTk^}vspeJZK6*>D|lGr8m=+B97`G9|7QlY1Au>m9&u
zMwP6HzZZzTc}%gSo*hN-cNeT$P?Y6f0@kGQw-NVm#p~-j$yRdKXl79`lE9r0=eth>
z$n@DAy9HE8j_up&gG56?_hcEBS<Hj(5com#$#Z~gu(KlrI#gz%vupq0G{?PTeM~yy
zH&O$R@;Iy7@;L3q-P9)Ko^_|YykC6Tftt4Q5j$d2n*U<3x?c5ar;y{&6G6F%|4PL&
zmoK)p#e>zGr)c+lt$LZOty}7?&BXGVbxd;fa%5V0HqGI|EdFllb)N1W9BE^@z}U^$
zyB|?Zj<HLmk1kjRwvF33l8oDK<pL)+t|0DR4oRrZvh6TP<MJ0xB&$x8`_xuhO&yyW
zRe5)PL6c&3jqcf*YovDqZQ4yWOFDZ%!k1uQl8j0wkE4owi>m_r2~JtFmz|4E6R9oY
zeXUXR?<E@M*kzGvn|Ze)4`*c3)Z?en3cbp$Rwg16Fm{;pZO#47_NRxxda>=w%ex$B
zj2@RP`GmVhWp-gXOZ`WsPwKpm*-kMnt)!~9(6e1M)Y;7Qrw0C?q2KuW4Yk!(o%arK
z5iEQ!v1Rxj-B9hfB<@7|-!pSl*+!HDt>|ea_xZo`6_pj4iDB#KkG#KDTk1;aN08ff
z8MyULdks>l_Z%HW{@Xw?4u%yU3?bdM6k<3coG)3@nrBd-fiek^ReTMLzm+aAZ=bG`
z{!N$)wRoB>Pn$gMODO0!gZClkI{X5ULKL0c^^tbl@02t*y2RSlzyP85HOeGhD4!uz
z#y8Fn2xpr8x{S@O^JfZEqLs~j>L7=H?gsyrhBM&IEyRF0NN4ycz24gZmeEMn)qfH2
zQGS3zKNtF}ohcoLGL(aY^`qs;+^W{-KFsGxMtwuhFH~9gjOd+~BiOge2K8?o<VweC
zpGI5uVAEZ*Vk!4XXj3299++ggbY=4*c||X|i<wJEv3a)mH<H!}Bco$+Co%pE6VVpM
ze!Go5prB2$`eS)mIn$@Iw+?6xX!lCe`YY)a2xr;O@<VzEWmbX!d4hIZ7%4lA7Cw|5
zd#{LK6I80y=f`?Lcoe7+z|cu6isRaeBucu^(MG6(vj}0D>=O^03>U%4ggl6}okutZ
zdW+t!+k*pwysSRqiLL>ed>m~6HJQEjf+ju!MT9Hfg+{-oB2Fy4D58kuAt%d@`QT<Z
zIP~bvOEL6A2QbNENVad@v2wGv-+pMlAl~6D&#`?H9BWnHiIvCLMkGZ*#DXEq_4$kE
zvqpBzozo`;Wt;~<-RH|tQR}xbL3sW=prt}Lndewbw9`+07?**nGfE$_SF?9|mypa8
zxQtMHr}_u_6&4O`&H0T;@;Ik3&4qGx1TWw|0iBVy<0r<y$o1kxs5jEZ^{%8xYa{Lv
zhxDVf+1gt_;%IQ7*;kzJa@%b;!iypns~Y%ib@846s1W<jpYGr)d_^$AY%XHtq-2-%
z>FM9@2z&-l-jD55$TQ%|o159tuXhNJ(3AWGmv#Xmxs)WmC{pUyEJyl&>eN*-Q8pn#
zpism(!m=Pt>WpRS!{B~~UiRtM?rHbO4`L0I`Qjb{4)~UZ4feK?<UC`k++#&CqWN<D
zcq|u)eUMNaQHy+(g*W&yjr2os0@wJUW^kWzd2~}Jc>1%H&AJ)lncWe9URHL6r%LD9
zaq8naH=QHk)8jJLo`8>3ys(0~TC!B)4=0Dswg@6L4vsm?j{1rF80-c=JN@iQwl`Qm
z(z^CqQ(-Ew`?m3IZK^9?z~|@m54w{OnDZsf=@VseeBv*cbShi=J|}UYJbNG~l5c3)
zt;<m$*Hvm!AXNf?OkgRMHs~CAOshqyJ88}B<EO=(p(!2-GGbUevF5*3-SR=!3TzVm
z=_b`kIjTdDHYT@c9F<GU$MX}w-Gm=(359%+R}61TXmyLFOFfGd@3k)3QD8&P5a|25
z<oNX`IV4$WMvLp|o66N*`$#dt$?f9P3enuqXHjRcWQTh5`FX!d=nCEK31@wqg-Y#m
zQKUCbqguI!mCQ=ZQfYCyloZIn1^OpB_V8BQ+@a|rQS2yj)WVIqA$drXRI9FiTI0t0
zq8t54=QN%Qf8iFPp<}++V`HdH_uVoh@%6Lzd>x{&Qdlf0HJS_a_kFzIn-|wVC&@gr
zHu|0AdM}(G$Y+Y}`0wFZpVWiu_Af4tyFs)N*6`rt24mPb@Z67z$a?vI*;)I{gn2)2
z3JQe|1>LA#sTc`GVtw%fQ7;J!vFr_UaY8B`FNv;=xP=}{>WE+iuSOeS14mQKL^jni
zVKk@oQc;}68IyuVX27!=(LHw4wD5!ELwP@P8{(LbTf~<Uvhk4>EC$iRBS{tZEJIw$
zB6#R|QGl^%rYJ1nT<ihBH!P)96^4n7=#v^j!r*FX;i&J@3mw-)xnv}|u_rscqQwDq
zHzv{?0Tu<vh)qf}J0BiDtoDx8T%ThmwEO$z{<f6t+DknN>}+b=8|mQQWuUS}5Q4)P
zT>a<mAhk-5(!K;|DHJ-#bYWV&<WCdx0cMxpBi7M$ov<73V6D?n2TxRq{Eh9-x45$|
z<0kQbDfgha#7kARuSGF3<gPq$=Inj?VR(BAD!&)j`Y}05RGV=O{jm*6i=KgCfd<3s
zkvkFKM6nLp%?qV{SdMaZ2VnMSRZOax;^5w1AP-RKcl?YWAuAQ}^r_v#+;}h|d+*EO
zKf;PWHI`Upr=pMKgMP;6A+^L5xQN`Sfkpkoe~>KRoR=JM2Y0zL%a~r6r}O?n4xjzn
zhdldQl*TwEnZv9P{UCN)nxH)TR=8BeT;^EslDL7Zfa3#M;8|MSu4V?~^e5=MuL_sD
z+<j!s=D+u}<eda9tF`+Ohb+VK`;bFtLZq7a>SOK0Q;5#tR^e272@<Qbg@;<nh#d$W
z8O3?ieIW0KY-um+TIqI%@AfH|y|{eHXe=s=h-680zpc4<7FAti?|gAh-UFJ3zHL%y
z@<Ttgu=;oaCqkQYg#@8kbAd6D&|TNigP#_wKe)X4>EnnHL^ySp@`#q{VNk^~(+2md
zLI(F*+5o%KZ}tfW`OC=+`Ae94Ly7sWTnQY&!CgGFyni<G+z)b-3)e{1nHo0MoFwR<
zjT;H2*`=amV`$GAJjQafFUmKr*VH7r_l(<$&X=z)4p^IHt{9k#`-M7ny?{2?|CM*^
zwfc3JB$_=^pfaj?qSo3HSw(Hnhbb@<G7G)dg1shj6CrD05(u9)@*(M)`FC%!Xo}as
zFZmyIW<YKhwletW`KQ)0?y7&-<&)KvMG30(NXlHbMqxgvGy;^Fu+|JQ^br~GX0*$)
zA?qXmU`h5y#?2{}1SZ;o6^GsA=^HxY(|WnWCpsW~pEjT!ed7=Q!(ef1K@u&WJ>ZRX
zGsI8<>o1J+m%|!bFFx-t;VgwuI~h`<@rhqau3ICRAD|%-htU1D*3cRf>y1?uV^TFq
z_&QXun&m!=fhwwQw4}}jZ!0AczMRjFb%p1sL5?j{#E*|3Eij@AM!tDhki|It<L)g_
z?gB|LVzz%gie7N;-VbR)N7NJ;6)AEF35jyemho5UliUN8qVWD;IYL%Q1lSW`g3eQN
zf|_XqIeVZ{qU2k#<svuRISG6)wDnZvLHW8e-+2l73d)OanObWsSC*m&>}Hn%2Vy#p
zz2Slchx5CO02o~jivd|#c{aU#hm8miu9!rWk3}VI0#Sl@h4{dB!!3QSHyhZM2<|~p
z)68OVQVhv+r~AO_o$qBh*?adnQ_07rVAYcMZ&#ZXDUgxgR?t08WBi$X)`eDQ_muv;
zc2fF9fTp1;Bnh?D7gJL$tK1Jwer9fRxP|GKWU6_20oJ%!07%Mzo6cTV3f8c%A#dQd
z+;kx}`e8gOD}A%vWm-LX;~#)+TKoO-$xpt-Ps1Cbc*uLA3;N1uKnK_l%H?`CSi3A*
zo4Jov@k;<-EKrgCpgqM{iexGb$OMK`QT)6K)rwYE_CH<5ki|z`W<ROv-~y63>afLB
zU~#)k_|D*7er5CSX?o^>SuVJVK*N%LIv7EiXm5NisEPOlil2L@hKeN#tWtKDHN}36
zVWCsKi5q~n9|6kI4;9c86AGh6rPfz`KgN5pba~{=0c-?q@T9zlMVLdl&3`M)DQK?;
zvTWNQ>)q-*T3L!iME7ml)V|37_eHQohLHhjYn9ig7yO5d5-OYm3Wiy;ARueTkdXG|
zksjR65KO16JC$}M)bmdm#{yj}&$L{x+{-IF7$;k%ex&R{`Lxnw*Gh%tjX>g(xd(Ky
zP$mN?GHB;Mt_XzSOBDzNiG<(K<-iPt!7dN#1tt(N#6G%8&^oi!1x)rKr81#ar3kP{
zkGlujsd%p)MT5n$&jIU!<0EmrFzB6Vc<<von;)s&y_r920HavFcSkTf#mGPmg`bKD
z_7R}sqFix~Ux0*rdY1F?{Qn@31UGWTLhI{203$i^YbU^h{;i<zy~Kd0LwU<zJ3w-Q
zv+-$kUgyI~<+4sO{$2K87eN?VYz@GNu)cJ33=R)-;A-3XGy>QrEe+&4-v7RG)^M+>
zVC&-<igvU9(?)7s98_Dg)UL|(k+?EMK_g5R_VYWKLRumqC?G<p3GVlxpD9oztpPA~
z@aEAO=`I@~`g(7y(R^OI+tRQe*MQEKp#el)`(A9HeKM0f<_Wv9z~&iWUl>1n(qsRe
zI2eg}X@aRdSzJU@t6|=kCBY6*R^ebG`XoktUR+YnKAgbBvDqKx92P+-O3>4L1?(r&
zs_tg5eE$%R@S@r$HgXvT@r!|Ep{-W(fj`h--}Sv`R=^i~`We0FNXNqBT$~%e`%(kh
zbfcz85*n_Jumqa}JN%wB;IQ6m<OC?oNp%$R0vs=Vs=`?IAqAw_(Ko>5??E5s|M~|^
z+u8QF3)vc<<URL4gpALeFz%9odtPf45=1mvJSIk10jgDnEyi`X9BOkJN?RGKuImqA
zvhm+;u}s)I*tO2{YN!$VTqhnSX$`lk=1j79sCIwlSYp}2<x(cL=HG3B>&kNrL~{+x
zx`h=r{$-GPEkSk;svPe_i2Y07{0Hg~|5#b3X>Or51GSTvk1)^3NWA^<C8UhR$GTy8
zrV-1k91}gDqpp+ckKXg0x?~TA)e9TJ8|(t~Eu?I07)rB4m)w9ipWovQSl|8&&=TV$
zFEL$47eZ6^I_hrW2Ke;xIgp6I*QV#1=^#3T3$*MrisbD>_jz#GGt;uJiw`ptIZ^bw
zi%k~vXj%;FaRlx|!l^s=?!3#*DDDWu!@NXYi|<#5_@Ax;++_+-_B6rDl4+cfkwKa}
z@ith~;y=Eu{^u6N^(n1)v-oZrA+pBpaW?uF;IYj*S$MJLwsZo-Q2}#_M!LIx3pufi
zIcgF8-^{$GtCx$ZI-;`;()6-5N=I(yF!}TUVF9HP1_n$U?>7d#p*HS^RsBRT;0Aa0
zwT<2|En<8-rlvT2-f2LI=3^%d2pRs<ht&csL=cPtcOJm7^CV^`+s^4|uv-^ZSGBPz
zS3$W43?4=#0PtzINqN9K8mm_cYC-P?+&LSeAE+?5`J@h^*jGn?a-z5loclbR0{_D=
z^uON9&q6T!>^z;ETcesQ^g9urD~H<%EiZvIk>h&Y_wLK?2N(>dC!^&~o3BJFB}Kv|
z?^Mhq=yX0WUn#UD|Dt7SPTPwM+GI1rDgC00i=cHmz(MFd#HPxio_yVUu!vQ#(upC7
z?6@%B6t4ME`PtQC)iSgs)8zjS0;STh04ClT33)NKy4peZmxjsNnZwbwoKbPH;cCJ6
z>tl-q7M6x%;^B=mY-}gC<z{E@gHn2@(Px)CD-}&0qhdzsJU>;c(poJn6x{f7)_WV?
z4!IP;;iFwsv*w3I+o@T(d#9LN)0qdd*72G5wR*O=?dKhrqvxbvM&C#((}(pwE-ktP
zE#mpPxjpfI`|&B{<CEYyAjZF$0*i=(&280B>>MuZ1}J?SS55^-5Fq?nxt41ewTQO}
zIJQOsCi!-#z6~+p^Uu7)WyVb`D17zOWSMU{Th5H1*y7#;G!$-VYrk;bB@lg-COI0@
zILsoGg}mDKCUSxp5?0w?=2J&t#gz=~3p$8^CMoz0^1$I4py{b{a0*F>>Q3?hJdyw6
ziUl^CfL4;}-vNGTk@f`elgU7D(4cXJt~f+iL_~zP;FumJLQKEpxY5*Kb+6mz**#fP
zZJw*unY78kXK$6QpINP(om)Y7hG+cZ%fD%)nb_oZYd-v`z&>$;$gU$&&AhlPF0p?=
zHVlV}gLCHb?@01_8NXynpP>5}?KVWrofH65Fe%5PwWIrqkQc~Ct9{Z>m}jS!OErJH
zV5*{GBMs1>@A@8U^+R~AZ@6qSSbI9J8hP_OJnx)N4ksl)Pp-`-5Ye6r{n9!dcYkiq
z(7x?m9vTJSf>sI4Iu?kb!=u3NWC>|vhPuHCcEx2AmBV7HaP1ueD#2E;0$9V|uc`Yj
zKdgBnVm+60r^qH}GzQGm<rCmzSK*_k{|(eOnKL*2A?L>Z;R)2VqyXDiN_tChgJCby
zHTx-bs+Hjt(6uLqPkT0+#Ma$%wO|RaKJ!vy7X6&4=ZV;r{PyB_c@cdePa70Li(?2t
z>O6$ujY(BUfhBB6=8M_#KN=}s23$f3VML#m0Ae1y%$LueAL(-oCEyXUM)I-6QRj8)
zm@KZB7PV5rl~w%kfBw;#(-g1vY&UvrN6VYvRv{_KGMeYas(u-&XC_2ms$ckVjf8wo
z%sW1YKvy9a^wu;`)kCziRnk67(_ES)zP{y{OWQES2U&J_B(v@Ph-HQ%XE*m^#}RJB
zSOdK;!)VkwZt5{He^Po{sP^5sr^m<^sadLk7Wb)aDgF9e!ZJ(U+e0^X&kRoqwLH6I
zl_*gi8F}<CAs}JU()WWh`PDWLopYu4-Ej2fpI;ghfV5&NoQ<Ed%_1P4jsTrHs~CzB
zi*c`EUtm5mox~Ni68Tz(08h=hym2RG?YiUTN5ToYnYRtw?vMGqX@+LBSn@lN44eQD
zrm`kG#`WUr6W13ZxHe$7YdTY^NzK48Ob2%tF93W|6cA^kepmj#uKA+q%Qe3|TxxXu
zyQyhzUgY{R=qXDQ=k0rwd?2tQ1i5py5B*hE`FDSzPrju7ND^Mv){It0mCS|aFXEFz
zW&Y$UBcZR99d^i+dTMI*nqH5WI_wo^OPn^oMODl}RYY39?pGhJs%sXKR}%gPEnn|Y
zHt1OodbgD=*5xdEZ1~aH@Ecg@#M8@2%<luY4rigxXd3@4i)eSKaG2;C;B4UnT!eKL
z6_b@OA5yw>Cf$~~7X-pih1a7cfZqek*sPQyORAXbrx$Qw!1-aJhUa?ZqPiYt;ngc;
z4J!mLh_|~!&*m?Mgt<W?No_z&CDHsbu-JU};!UDB7yHD-$oSP9_#CSkr^|_pMsExB
z;4pnQ1~}HP4YJSI%Xo@ueA5vKgC&b~2tHzH@24(+lGg{oS2Mc7Okgs!`mn=oy3*ph
zQ`Jvmi8bzWhS=<1(DCwteW}rnpl^mCkbWH(F$GHQ-a+?0&jx8QaeVqAapHuA(5pVB
z3%S`}0_Sqv$I86&xj%*l5)u>5?7UXMn;Pkagp-2%ej{TZ$?OD%5uNpr%Rx5FV%?&4
zPU}62i>N@|%>?&yfR^5<0{^z*6!>d0k_B8Hcs^hM>zC~d2k7hE9i>tAx!m;OV7`Nz
zLj{ucPOjE%2rXp1*?W6?JCHjx!({`pyPF>#qQv9`+k|VJEZ@9EV5A-^_*2WEG;xkc
ztATd0F{-RSOapVLZ^^jVq>_Jm(JYzRZ8z2C+ajbPO;fpbh_S2|StYDw)LCtwSv%kB
zAz=pf<gS-D-`OCcsJ@+MguaX|gQb+cJ%Mu+?fIx?F?sc3kfW8~I5pB$Q!T(KUei?d
z+LN(}OK<MGd9&@}<q!w4gP{x|bOL)ZPtj9bcjjg#jrh@TBwvT8-Act!2SqVm&pedz
zgJ1JbipW)Ls>w(THpA%s)m*^#sZgQSBF9*sY?_t%su}V}3iyv>(Kd~y#BSy9k*d?W
z*4(vb`_Jh|54Y=Xb{62IS<w${&JB6FJT+F`L%uCa)JLc=DkK9HHp|n@hHp_qJvK)h
zeh#MtzNLQ~lR5~5U*Sd;zBU{a5)w2(wm6?oGXI?qcMC*5{iC0XkDQ~E!(_BcoV9y!
zsio17WWYDT^relIE6fQ5l_<QwQ^Ur_D)0?*Vj6bS75v-?)+x+x1wb-0aMyN;eZKG7
zk1|Q-KBI8*vQe=kVK_B3FPuCXqT1t*gmu2atJf3~1p~h8dh}@{Yc>OAe5L@l&2%zX
z+Gz<{?2`a+diTrj3&+Rw=fKZAxo_8*tbakTslGOF00vF8V!s=|yR3zUkPd?&;+;E2
z*t(r0wB&xfyomJ=ZVxv-WA86@Vqz#H`8J$+Nc~%AMaf|2f%4w*t=(OI(Mcd6O(^)z
zhIDq*LFi@VYy|w&8<XAqOSaI4%)32IAf=aP--mAsG|t*l>RfgD+)n}!Rg-jJiD0K}
ze-9;oIZ4O^DTOyb*k=!bd5#Mp>=?<gSZ2!bSxnKYGaEBzfI-YJC*l#HS<FId+~g_K
zy&TOWTabHixyi}V|6aro9?suAPBZz9eUz@68jiEzdKyp#**A^`QTcW_H_=K~^L6jz
zb?LA+iY8|aC(fey_6+VS(PcWYRED2q2yAu@E;sO7djG<4`?~c6hpVmcq9D`HW9o;>
zRd^i@2hg<uM2vue;N8=_SqAZi7dv^22x)#4E6yaF)MdD2AMAAlYhxQQ99;^1vWIj_
z&WF&X{}~t*P|U(h`}F{PAr~8WhYt^}X0J-hn}$?7&x1y6J=4PJs9^7czx>NtVu1jL
z_&W4GTD-?yB?gSvU~icTW!(>WZWE3IU_ffC<u)O<Zas|P-%eUDk=Dy#Dtu><So<<l
ziZPj^g^|M^x9Ymd!jF`^`Q1dl7_-u*8)uaMn01^QuX9#2a+->j^6T3HA#4w^mFshw
zra|9W2=(0U?QcZ1>Yn~?E@r#(x`)lXxip_NM-<9-Eg`KPn&kJhqYb$&-|X!Vg=dhp
z$VJy|ts0}x$j+In#0NLw`&PITHzCM2HiJI1o<v$$aW@|Kbrrv7=!XU50>IF^RvU_=
z)Ajt{Z>5qlJ{xYxat!IHM)Nr9(4^l;!t@7jCVqN{3i+Gq_W@3ZeyVj2!{gRo_FpyP
z|Fx)PT9du9e+@?;jEEQ33yqR^eFWTg9AE}A0sZLrFIjs(Uwuo~U`C5eiZzBnpf%j>
zl5}m`+t|CB)It%@n0G)7x)Q-I1s0TkL)8h8MpsP&$X-n#n1~D@UdRFk@zRw*RcqcL
z2!=L(kXLCI@T!agP9{V?U(7AoDu7>I*l81=hq7ER4@*XH1iaplx0Kp*Nx5eLDx%7+
z4B_<pi?MzO2nyKwr}rg<(HG#Id(4q_iwvFLd-6mb#v+hU0pvi+A@phAwBQcDgVN0b
zZ_1YysmR+th@%Wp(&x(qL%VM8g+abjH>*pS$jo2sQ}4eh->5%u15laog`B-&jk4>X
z8gGn+wR3U;W!&6z+>dicjDQC?LuK*uH<cVAkKmGEa15<T_LLiN=1aXj-yMe7FTS+M
z{sfxq?E6)4daNQn066=|3w|DoYmn>RXUMRf+ibo69U`#;kR0vX4RQo_S1of#mrnjj
z7U3N!B!YoV73~6bNsc0^nqW36`AapXIt{w-gK4VuPWdUZ^O6BjH+{+HiXmag?67iy
zi+Fzvfv~r^WJw<nd)|#_iJ^*Xz8GB1(P1EehN_<CcBtsfu@ee)n3bP_48s2?W0Mhq
zH2=c__{Y#<i3g}1<?G1fDJ2aoCMHvNnkGV!H`&qL{l#}#e`i<d_eBK6c*i|YN{k9G
z(s*+R<{~&g?V2){aKT+cfm>MTfg~YV-Eh#c@XDmip*o!RYtCnOG8tD6Yc2Kp_H;G$
ziV7<74|UjQI&AEoGv7aBcbAtShSMUcO@$sN$J2QuSN;9-nvGpQK=rkz{#YthoX5iq
z8|U1}&?CR1mqYPY2|{!lQ<j6G>=c$5s$F?2*IIKqQ^6cP#TmL^VQ@;$Tp+QL(}d0!
zKU-8)8@bmc?F6U{|NL|RIhWOnz>>KC71?c4)y~eYrWoQZ%tbfNN{FHb)r;WGEU1WX
zBWcxJX)f6CMhTn^@NA$NcK}R&0Z0On0HurotVzF%I7L92UiMZ~r?eCzXXZ%A46m})
zJ~Xp}P<+wufw{AaLKdv10^0===JNgIm*t*}C`x9M1%j7;D+=}}23be2VRgN<0gK~w
z;`PP1M1LjcaE$@`kr~;y?IjhCIfN@h{VEX}QN`%cL@A9hv=QDC{n<ebc7)az=&k~X
z0G4wA#6P$VA$dS&7WP1M;2&}y;V4M^mZCzJ%447H<)V#;yMd?S@pQY(9G<-g=uISr
zZ+`)^U0xO$bXrXdUn(*V%^<4j@jUxg`6{qdA*w|~lclW|f%lg}GDm)Rfj|0{eBHk~
zdI@No$P(?()|R<lAHz=z4+RxUdGP}9vHgqoK79r!F5|_y?={uc7)`?x29a)l;Qj;4
zj0>hp301b3m`L1G+MIH6=Jdt{JP+pNNs6r-+Rdh0W8vUtJ&((H3j8~d8=&IUk=_eX
z>2yA^UH0A5d;dhc7MZ$dJ$405t_2iiLHC(hazZ(26)k6>;#5nbudvw3k{{StU3ZDQ
z5jOc=khjdG&;OplNeJ`?Ugrzg=8&UC^E37WYTW0`<)r8PrYVd=!x4U|FUhqcI+o3w
zH9~Q{F++t2*;+A@0<leKbD6*a%6*vrwdWe$>u&>0+`Co=UY{z(8y`!%mS@8-nu(Zc
zzt}oB8tRcTloTH&?)HTGf>D)Qy7M)DtRf5bmEedbERH)O5)GT1JbM*CinjSVkqQ_-
z;!Q+uCTik#?BV5#A4cd6ZBF5wGfgN4$5#<mJu51fI4#<Rt740fRtatj1Xd7QQY7A2
zoeYgACRpte?)&H*)uHF;-8iM`#}nE|h4Y&T>7E5OSZ1FDEN0&S?*skMJDe7ViS#v2
zy}eK99af+3?MwDx0HrXu_2Fz7o*ZVT-OH;%qm;Rdn5gWDbPIDTzLGY+a)(DG_<b~)
z9V$vPwH44iTn8M8fXIec*DXO4+MsGMI2>+($MA*Z3`=Zq79&Z5c*P0iP;g<OhynV2
z8WNE5D*q1gqYoY^>|{Of!cV<Rbm!4Xff|efCw3bM)M<Z;ZVqkt`dYcBn+)N_&%hk6
zr3|skik6%Qm-Hy<`-1|qdUgnNsgDgNah5V1ncI|C03mTBo3`Is@_3hGr1fnow{803
z85&IO2zFu7%R5knz$c8kX<(Tjk<?|)#|h*^+m2|D%AQq`8(K|j6WiGYYy%rvua{|6
z@)Z*TD+9E&*+8G8@7=Br_ZFZ)%}-CGjV((3M@g~zh%(%8yC^v!VGnfQ!nqg7^(Sl-
zQuRTg@!`kv08_3sN;dH<1@WdvIi?3zHr*`0m4gRRMC{68I+A4PFzHd=deTI4X08Dj
z?a9C#W&RBC8)9om3dQ>tdvW!&X%Kx$i!*<AzsLqaiMC7ZVY;Lj@V)+Xea;te;s3Ay
zIN-lIE(0#iK%bIP5Km3kgr&!fek@jBAXP0z(pAB;@#-~YX}}IZffEpH6Y=Z@BF+wJ
zitv;+uG91!uDbD#gyG~XcWMD(&NkWur7s}?C9AZ<gVG8h##(XSs(Cdg7OTQ750k+l
zd27ATz1@`uCLq`6)cB;4B!$#(b;ltAH#g->9CGlvrGqm%cGTAL7p-#jdcz<8?LgWE
zy7)6ONN-%*5K6eMMrRza`f0EZxxJ5Bt-mc5kR+y?uIL+bBdVe95)wK;zYp=1$mqn7
zDrQ*ImslPSb8+U2d8QZDYT@Mmk2vNoWagu(ta-G-yS8SHki0AO)ORSL|DNM$R-!z-
zI+XtWH_)fLR0bUvJZW%5+KzJ^_?FuEKv}J)Q!_bTa};<0-Q+&Tc5MF)=w?Npl>>@`
zILp&mKAZs^fR42m7wVtuv#77kZ74!uLTzu)Z9D*0mDW<hrSHDXuBGBK=z>MeZwdGt
z&AbOG{@YLDHuASKjk??yf-RpRxV$z=@Iz9CfVoOpvd2z6oB#r^i7_oF?MFMHT{hza
ztJLJH&0#*7%hQz@x76%x>u0HU95o_87+1fAR}bDv${-tGH*Ct&;yViPhR2Wgq_bJ(
z@bHu*vKJSA5{o}!@wyFb1TX@dQ>_ntkO9QkwhuR_3g!uHl)1D*fTgfPPY4(8RIzUw
zu%Y4`69S4}T3cr;Xj|Y8VT*1G(QGtjJJM%_vRx7rm-@{Q#4e&oq&g8Po#;0ifIT@=
z0a2L#joFB^nOu7>nM~lIch9O_H!6HDAFGcNHkVf$ocgK@yuTH7&%?{<8XcAjEh)5Q
z8lS_oC+78F_bKfgndUG3zZHd;f>QhR39%-<g^dmZz9OY-M*(Lix=1js%cPeQWb5;~
z40keO<FxvKY{IHy&IzJHyx`Wg(3$-zMk=5y!m6xfKhYTl-RmWxNQp$lD(8q}SGQA@
zWlQ~uHB~8RB&XPF>kY$A1**zM@*G$cK7fpgvQq}#QwN~m9MUkhCtUt11Ab`)8P}Z{
zSMy(Ul+eq{UvA)EN&a&2lvb&4(a}YSH9FV{T1}y9Pm0H;GFP2t9z)W(oa>p28)4%d
zHZ5?nT1Z|rNj+3JNGbJY&NrR7s9j9?=JCCQKm<@`EMdQuy+eAvbZpadcfWh8rh0st
zF+BQJcBR|Hj{HC;iI{S|{_1ap<?_u!@=V_CR_kS04JHPRpYKP|8oRnxRNHM|c`PrC
ze!ePZUZl9z)a%sA@6N$7?;2rAM@CTwE9n*)O!OR&oI25ndq$Hv)PH;}`8R#;9X|{L
z3A9G%@P2|m{^-l{XEhDZvpHGLf2f;R!##kydE{$Q4(w6?kGffdbbJ+*8zY90Vj}@(
zn#^R>Rhzt%Y0bsCo$%>qDc6>0@T6zCp8Y%_Aw^<Xoo8b`>Kv!p(K;j52<c{y@9ano
z<Rf{=IwyB~t6sC1|ESIDU-diCcJnInGYrM$!0CzCb*!bNeS<@Te)w?p_HZJNj*=tX
zzK}#_2)Z{Ox<q8=XFblckkqVRZVDLwlNLv%RIspLFekX<(LhXxjH|Y>P(eadLLxxK
zN2Y8Yl=(1#ASRE@`N95PhUi%5@gRbn0+!6aS(*gJVHKFgQ~wGAZ*dqbdUL~Qf2G%(
z1c5q!+24oGg~{_6hrrtmOX6Y3PIUY&FNY3!FWFzGM}Ss`{7pF@bAupeuRhV}3!1;M
z)l{MK&WpWzUGDh}_tN(qg49rv$Y$WE3<Kjz-!E*1iF+xK5wh-(cxE>}R2RlRU<Zz2
z9q{mFc$8tB*A6UBhdQkQdOO95Yj+@OZ1#(INa~M_jI4A2AV^4A{&swpEF$0@@R>pw
zsZ)0QA_#Xs&D&XrBdf0}0f;7+O8r985BSAShH>j!MwOSt(%egP-#b-)Z37m)VwLyB
zak#oJS*a9cLo;R$I_}&3cabq)wXa2|dhlqXH9fR|n6IDCUZRLN((5TKwxLM!S{ZaO
zMe5KWEe5qxJAbVK&rAG$uV`mXe8+@nBFz8$gt&sXt_ZC7jvR9akKX6j+cT8N@8u%M
z@7*lQUB~Kj@-B0+$G6L|B4_Z>5BxrwE0AAlT1?%CTTQ)vp5qU`ezUCTGO=|vKl$nL
zE?)C*#p44d?yvtQh9>qaQhE)hCISYgjGGDOrSlO)>SkyZ0Fq)-xts9F|2?23r;zx>
zT;{%SnSb%PD1WVDxW51d4Xd`bl?zbFk%CCf_#&Xc@|gY`qc`AQ7jq<cTJ8ndw0;`M
zsWIu4eqTp39c0)|E$y<&KQMT<o5%eJOcYb)L&bYtu`)!T1%{=R&t=xuv7qpVa?gea
zo3CZj8GEKW;~O(LT564x?iR~uZ9>gm{sG8txP2hYErwrZs>ncjBcB_+zw%yD-zZ}l
z8yL?G%NRcn;re8C#bc<9eeIpBp?miaeAzNS0~LZiZYN?L_00eaJ$6G=m2@+)A>9_2
z5DyO4{O^;|o0oY1d>{Q|Z$%ah62432In`?ZBh<s(#Z<MAmv%_5Qm=|nZ?|Ysa;L8G
zMeiNbwx3mh*FH+KUH^f?`_k-HndUh)^K++$bqrY)ZH>>S@Rvshy7%tIstBd**!7H4
zZyc+u5A9_~UUY9y%}<6+&WCFo$V_y9Yw+1F(I&a8i@iQ76j9Ot(7SRh_2mPe)Yv2Y
z+8o7p@&bWgQT!g*|046G5c&XmO(VUszF363Jo*47jGzdbdZOr7Xz?3%vQS6m`jzho
zyq6rH08gRO>gz8{yC33*J)8j1^ed9O*G)I+2G*PHbOzY6LOv?yc!5iF-Q4iN`owzS
zXg^x<MTtSxg`}dRo)FB@mz4HYm<k;x9Ea4FL6?a~|D8X799r+M_t)Bp)Ju2F1}~OM
zvW$vf2_t!}Ck|?#Z2d&l5Zn!M{FT_WXJ^bde&BqJw*_i+-hNZ=lQRZW0uP|GbDGB`
z=YS^^qF^fMgB&2aO5j(fr_i+CH{;d`hns|{C@_)v=Niy^`&H3^wgI<eL@eq}42o}f
z{OmXqol%W%s;OoVfK_`n3k;Q7s}Cc>gfq~K!uHbgNNgh5E)-%xLMb6gn?_CXgFPto
zE{I8^l1!<O$_Ci2eS>WUe3<+;PhmX0;o@08!hVpSb33ZxVM;aEq91nn)??zDZ0r!Q
zGg!2P#i##y2FWy`cvV%tXg`+xjraBxwa&lcB{1lEU<EW_8k*0SG?X~j59>bqs?iFT
zXHNGtl2s%o{kHbr^IWR2-{O-F%$++*@=Com`oPzf)l*~L(9{Nev69Or1=R|URL|Sl
z7>059e0A5?x-l?ef{4%=W`2+|cs^w4Nf<)`l$1Qcu&juM*Q~xrWJ%i2c;Ju%wtfj=
znBo?hst{l;r{>hS@Xg4+#_c-pqvJUIQJSTmy=vIms?EVxY8oIb<9cbM?}j!E{CL&d
zruWfW`g`4w2gZqQK_aCBi<YuYJ8NH{c%F__$=LC8@s!mn#~4Ztl20^D)zwV=-yI#t
zQT_Ym3(Guwvk)J76KtG{d@gNvqmZQ=E~m%OZT~*%;(+luOn>r6XxV!7G5;}XgzHew
z`NnS4@A*f{d)@K><LoQIvg(?4Nd@Va?v{}5Zlt@ryQM)wLb{~8yE`QW>F(~7mOh)e
zzgN%y{pVcQbLr;62ia?{nKg6IJ@>?VsHx2j=c4U#J*)s#4JGmjPlT_PTP;sZBV-F+
zcKb_(U(xI~LMwaB)=APOp&qb};vm&Xuvv|g6p(X-!aIfOx6$!bP81@#V??yWjmEGr
z5*>Dmuvi-kp0yax2|I||8hBG!tklnyN|;OIp!o2BSzvp{XPf=Uc;WNdbwDHt0VJ!$
zz_2>+)ODN?jfM{ah*11nWzEO-RDJ@oYis~Mf(lec%iAC4kxZr8)*$i;M0ub8xeYDQ
zYowy0a4*P@I5R;3YA@4gd&KUr{SE{Dx+lzvE{9@r+~X{{m_YCeK+~pbB+Lt%Z8f9x
z5piOoHoC$(;Z9y)Tdrmi+TI8WP2v%f>mib%#5Dr}QUlk0wvABYB<S+^Ox9VzhU}ME
z2D_X6<Z|85Vh@q`<0epoM5y|hcbAwU$@+UuJ~Dx&v2&;kxBFW+KL9j0q=Z9jOF#YH
ztFf@hg=&+L3`@BO_lq&nA)uIn*?s3*Y0x)+f@|<lK=5Wu0p1glsH%a24CNeu2E%1c
zuU2po0Y(n9if9JUNug2Hf$RLWA$O2(8yKZoB9msK!KX^02Yi=FK)WuSSXCg_6OfJD
zX9E3Dw0Z}Snb<JCIWd_1BiX5;fFJ;M=DzLskySaJcwenQ5R(Te&5*UP*t~lde|0@L
znkBIkkwOUImz&q%IenaZ<yrjhv6mPOt?jt)p>NRL)<yI?3@b_g9Uq1gk5dX~U2hXR
zy2=-$bYAOcqJPady1IQo!GnTJquLY8je7gO@*h`5)kPeQeSIJJU%oKpJBtTY5S1wI
z%loUg>Q@YTi&@^c>{Sd=u959~QHv1VE*Mbr5L(?P33qtez`l{7$ntcK#KEMfH1~<{
zP%&;7!<wiUteYzmO(UJz`mEXfI?e$4>q{$D-8MB%w1O!bigM4pBMt1QMkQp+f;cr7
z)xFm{w^5`Ir+e0MV1%I7RtqrVNLaY$A9ZL;7^>sR$q4flblA#YI<Zk2+>t78RWy@A
zqJy;kT*qaC^2OukP=oBa3OvD~rpctEqnn|8;e4ciIB>AkT<p}UVXbsM@EbY7E_5fm
zE}UjOBK2NN_DMV0W>fPiUP&>LN>YHY|0Ls&Wb2~F+y`053=RC|xPxdVYy9*6x0fqV
zhgZ#LXi2SsmWE_cYztc}`VZR1^W~v~Ezw)y1yHV)qjgTE?aO7$(d*07o-b<=(ZgdX
z=OEyweuo$_ML@PDPuicB<DTV83>zG2q>+L|Gm44^ki@c}q_c>6xt)PD^2HfcZ+zPg
zFfNvZ0lLiidd>u&xVsjpe!Pf#9xMdfh?mP5yL8-gE}h@B6=VJZoZ+=kO}EMEdJlhL
zfp35~FJMj9VuTO^IO{irQB*3ULFia~jYyIoZ9l3fo-A{|3;IBE*}U>F92eTP3}iWq
zqMdMyw&F+F=L8bt`WI+~c56f|N`Ci_01Kw+@WMb$r|t4&g?AP%2GS1#8!`HgT_jX)
z`JHQ4SA#LyIN_!$>Y;q?ZG}{AisL!6ODoW06Otp)5#wBq;2YKmL4?!2>G<xeP3$>P
z`D~QF`J{FWdOi;DG0+;C^Wf!P#@+%l(Z<ldR&p8LMr@unl#79a$KOUG3PDe~NuvO{
z7GP>-K2eap5h~&L=T<#<6RznUH}0<`e<AaHNU8=<sIcq|wzYuJLY3OZq+K1&TQXrl
zZNa#Q)j(=wV#O(^=^ZO_Z7Y!Dl+EUD&@uoPfu!i0yc+k-I5~Vej^4j5>u7|Y^h6Uo
z=g!yYWZ6)Hd~rjxk$#IGs{7RoeD#lrvtAPqT3Anj9^o4(@>h<4x*&ns*aSJpbw4s_
zRMl_Vf~xC|3%5vs>eE4cAk9836<2$eaHHDvk_{Iotx`g3<dN++&Iwx8u!phFyq0o?
zwmPA@S`i;C&n?tS78{Lf{X5cFmOlrgfMJ7gf*tVu@UEs>e0kl82woY+v6UkPHCU(9
zu+_T>Z%O#XR(?F~$>_mXwiF$r-lAZof9M=KAXX&G#Ir)%eBTRO&6^e6YO(YlkQ;KZ
zD%SW{aF(Hl#P+=-bqGV}-V~lqSF~7NPHzBU5?GF98HK-Rb=dZ34vMn~M8L;Nu<7z|
z1O`z}e2ed)8NNJNo{Iu)R!{hHqr8Q~+MbIRx83Jj3He}q@216>bXH{Ua951q<R*jN
z7PipWN>6sPuu%2ta0gNHO-Ut8h?4T#?+0q<rO0bCWsmFDTQ7uBW35#E!-+&2z%J8&
zI|!wMKpY~=DW?3D%*H}|I+-meAK+`7TUusMyb*yq=B}VK(EEp_*j$k*`0)h^rB3TB
z*77!c3^RaMU#ByOg}_?ZirCsMOYBE5JOAl`#-DQ%M}Zj?BVabTOIx)Q&Yp1J3^7lZ
ztr_5MEnQ+%;gjTRSU2W|OQ`AT>ERIC{`kJeAJZFwkMAD?SrBmr-FXP~EJrvL?&A|1
zzFoIXP5SB~kRhWh8JqrI6PTa=g@8CKHZgqaqZNlyZcKgS!KK!%eW~n$JJ4D>2*~;k
zDQj36iF|sEMByQ@YtWKuoK$p^!!uyQ<2U-red)PYAO3X)U^9wl2`(X`Dcrt!F{ftv
zT%_b5-<3RRIS)Umudx9bM^0vdAWVV-{-<vj?_O`5)we&CW@=X6LPZVk6{Oiq`@Mi;
zSn)Uy!`UB3dIxl+XGLQfj{aHH0G72z4B||gdULFyXCy`c35Jt!dNGa~J+X%_&8i9S
zv|Lr_#naB!(sZ0M^K~d2Lxy4{ARk^rw1P?2yum@{vZSgl4pTQhWdrneLN<G4<Qc{n
z-d<As9jpmRLcMW4x96Qhwe)IO&}r1KB)#@TO+a7fAF2S52MjHin>FC)ZPGk^r}YcT
zC_tBJvDTmisJE7_GiAbc9^%4B5Y1k4b%`5=8))h-O|7p8k8*9=-xS*cYGoI$Mh#G9
zbvVpW77Oavtu`Z6E_ZUws!^SMYV=gx3U(9m$}j!->>9C^u8@lZDW)f=U|IYv$@^HR
zocG76s?8E+nJT^8ueK{sz7Z8uRm`9#jL0d=V}@eHiI%A-EL>gnP14kVdVu2B0`zx*
zU&(y5*5g0S#Md8cQdNJcJ9uTjr-IP<@t#y!3gGp8?XL@MhqTtP3U&<$xCzJE-7$Fk
z8uByd`A+i*e{$)<#G87<E`Cq<&oeyf=J0dYj0&c~{-p7SK@z%!Qhqp4;-eAdo_c0S
z)h&lEwXb~Hr!Q4U!i8y{5R`E%nw2m%q45|9tUt;jbpODc&ew@jdaJoT>1lX6OA4S1
ze^AOY!ic`FeSFK{`QyTQv2uD#(ax@t--;^Hs%A`tpTSzrt~59m;L&VH3c}l!1rk;X
zMIrcs&&Xy}9$iBFHb_{9`FH4j3549umuL`Vwg(E#wtc>!udL;qf$4JW`gjtSh-7va
z1Lx=@>~?+wcCmz;0y<MsHMq{RzG0kXa_LT(%1?fSA?kW}S4Uc~5Db%}U1Z&K>x6{y
zaZ@}px2|^FG~3NW@eSYWblSaMcx<|!0kSIe3VH9KO(YxAsp_C%Om(}G3TDWco`=Hr
zy0Cv*$4!3*x()%karlwv$`Xx0#>v1P&=KHxJO-HtK<wjDce~gH9s;rf9#ka8jb72|
zJZ?aN@ufe%m{Vk~+$9?6AOL<WF!>`w72W~>b8Jz{!iw#K?kO+{9MUxl?CD1zFChHG
zgo;6E9h%AXITcr<JwzTM)&r1p_%loKjSm1RbF2iks|E+o<`bgsm6eB6c2A5+7HK(I
zWyuDqb}i3Xaq!fvmG7i!dFo9LId$1kiUN(5^Z{COK0>ne-Lh(*75(vt^Xa*HG!>Su
zLfcBGD+hP?#o)x?em^u`Zy?p+*sWcLB83Pn(*o!QLq4G3A5=+J-?l}b8wtZ+L(`nT
z#4=k+nh&wZzeG4lw#lO{WC<-P(tLR!a=poqyGSITRfk(Ip6SbXy?pq}1?NUK?m#8Q
zAkZ;X>m_>Lb{U|%jmzIP<4wtWr&fiP(@`CWnwXzg289a2?&TNGZal+tV~l(7;m56v
z1Y5~iox=%Nbr>mubj9%p-c%jTNJMv4{gt3gecl||egx7f=!2w_LhSL!@gmh`3;p{>
z|2}4uE|c?O9OnXXYtt$C2rOCCwB)uf#WHI{)?&Q(yCRTvN5z9E&|g19vV;X|wP&-?
zGSNLLE)(@f3<VcY=l%z_SK&-ZZ#>B6(pA5F`w7tbwGXY$7CAD+nBV~zT=ZDcbkx)f
zs{?Qw7F{!pJB{@Fp0f@y@(Kldm2Vc>2${{3rBbOY@0L?GuhdKfFEHxfB&Rd+2GGCa
zZ-8DljFAGn4qP*E()p99XDSIrLd3@}jkI7{Jp`L>xE<qW8ydoqL?Oo?&G|eHJ-@1I
zoYFB9WLkc*5NlyMI(mM^fDo-#1O<#@M6?j`_z~DZNx#w5&0Sp^6}pNG3WB(tG*1Q4
zyW;?U;%gFxxBLDnH4E0w>;eRLdiCGdhhGaQvq=p^S;c!|ZUWLZPOr?mGml;NauX!%
z7vnDxCNtlPl>)=)g*BTF#U2jH9p)rBa{4%r8;IFdCU?i}p3>m!CKD(%6fOlm2*O3~
zd>8UO*)J}4He|nz&@5LRxqB8{<e!RaL)o%UVh?^KJTAk85rBe4QLw{2j1kL)8zgM_
zXbg09e$>*IY`d*v;OV;AJqL6W7_S!<W`?xc=!#N4vELp79H8S^UX>EnwJPY!WQRPi
zztoHQkWAsAY8cs<^yzezMkMb!_lk-b{6f+iu7|o4w=Q0zqQ)$laZg-+f7|J$m;opa
z^i%DdDaZGEt;BH^7kwjr-KceXq$&zUGUkH4=oRzu;U0*(@cdCAJp^<aN@O_|EjXXM
zQyghrVW3pt^frbFTtkDImOlyMY180=Dy}~l(jRDo=|-aOY%gJ424AEq&GnGQu4k3B
z4ndfmm`ZYdAxPbtXXCwo>9GH3d)D6~QSCaTS?y(4w-=jWB#pn=i3C|}rB%cKMn6?D
zdVG0%*1?CQ{^a&(>En4;ZX|LKdR#fvM5($iksn3y2Yr0^;hwss_JucOV^lZgX^M9S
ziQUYOcL}8-a8zD;8|s>MT73<>cWo5RFqR8FX=!y`Df;~>DGMFL?Au+Xp>R8)$p($F
z1w>?3;#aq@2iU}x0#samSJ0I`=zh)l-I}msnq+kXn{WeXDhz&NaQ`Nv4*BtE_kHFp
zElJU=t{U*luN)cQ=zT(t1m(O|8?j_Qqd4!M?K_0Yq?Y28#Oe+_cF$3`-K{eUPCWNK
z?E4G|Yz?kPi6%vR^O{O*j|6l5mJgvNTq*bDF4E%7p9s4)9vc-y^Y)$Dw7Gg87?&*;
zjl}kBQB&>fPr)=NJ1O_1jrB=C(o%S@(7gOCV{)$_{xF0tomwGi9shuba(7(U5%1?j
z9e#B3T!tDdg3~ubQ!*|m#Qv=|g%}ZsdhHAojtHSTSyohJfBH8Y+LQ+BM>pzMir{0T
zhQt6%WU_uu`+ib@yHN+|&^vs>WV6-f3m0g#O3-q)E8~zOPG&Nb5B1r6s&*m!E*H1+
z=*<w5*v~M>+J#&fS@D(12p|;Bb!u6*md$Ew9M!hATGc+?UN2wGFF&;^*;ure)@hf*
zOq&ZM^}q=UM|p}9@O=dnhcYDWCy5zMdOC0U!p_e4P5_yJ<hwhM^sxK#QOk~dAY05i
zXZw!jH1#?@4aWvv{^gOB#?YGF^vZJW^t3xbEg!wVIiD(PVa0RXB_ypIpZ{V7Am4jU
z2W1MhHUMa#d;)!wLbA?*1RgSx#3nA`kEb&Z_f1j&Z;?&mD>ocXsg0BrT<~aVYowF7
zn-a7gr=<*H0e1({!zW5rqm|d|?<w?!XqK)3qGske3HF_%;xYU}`1XONhD$hgi;#zN
z-HB^rHe*?Aw8VRWR=3}p@vuBLEc2*L+iubY{YVm5+rkktJ}ytn6u06&-wwIwz1|(1
zp~vZR3_H(yyt%bS$)7PP{%Vbp{RXqo+{m^4wcv95dI{Bs{xbg@dv5^kn7S?j=CLOa
z;3{ZpFuxoQ!)A3h;<$hWMFjcn)es5s!=?m-s+(~1^>PepuU0EgB9p(m7W^5z#YIyY
zs``@Dq`fJwaF{A$EDM|4;gC6&jS}e1zC<$v>8-W^1OXIm<Lp_El8Jz|Izbo8`xr>W
z^%oS!cF0-%DC#;YO>y9>-As~^6aM?%yxmf=y{2Z)VfsAcjCV%4p)B#~v{139bm&Zl
zv7Iv&oas<ALIuV+E8XzUuFN~fWD1ZlH#jM0D*hhGB2n2X2aoCqts3K%NgBPajveAv
z+j1%KGrb>Lhwtem-FM715_jI|jS8m~7B|V69+HHAk~wl7m6{uq*rl}UJ$I^ta&&RJ
zv)r2J{zCMH9o&kEBe>K7{OhNWY&%;(&H*uW^N1-A3E|WW59I^$_bbH!%xq(a5-B72
zN!Bn-hO|CA5J&W^uyH?#V|)<py7=hBOMGG%2b3us8fDgk8Y9(g1F=^9^{@J&Sp#1>
zWm?KK8>1n;q-xBksF)4ssxUpi)P0VBlh{iHfl+Hqr58M}{<wjX4@OH}ydJBAE`7sH
zSg^7^6i32(5Rwv}v4J2hl{3E2(WEzE$~@xfK$njmkw7KQG5H9L)t$V;LVpYfk!zz9
zb(mi_<q6E8qvf%aul2UeP#nTe7|&Xi+<Z}3f_;4V3c>65d%7S5Yj!zN&f-=(!+-iA
zs^08um7qdb$h1XDxK3!79}V<@$0NI}e8l(qY~8RHII+!r#6PRR{i%>w2HO#ys;OC9
z%8*!+&H2s!7uX$L*Bz^nGN|KtIvr`CR3mGF^frU-2?&hB7ZVWIRM<`vayH`}OOZ2&
zqlgG5i568$rRvs6^4Y(d?P&=@2KGLR*rh`a%)_`onUAGW$W1>1!!P;StHgC&dAT2d
zY|K|MT8{)CVUnL@2m;2U&uBLuGt#{t2n@Z&ceeEpPwrNtqofqiwLsU?cGqhuCv7KY
zn&HHJ0y^yq6&sY4lpKLJgBMbSV7xb}#9d#2=CPNxm@YMUdc7;W>ow$;>igPr<`16?
za^DQcs+$%T)jkYcx*W|<<z7pQI)u!9Y-pFjvP3$OkT4X-e?xfiwDR<zqtuJ=huwhq
z^6>d69JyJ*QzvwMz35n>`BKW!h3p{W(g9V?yeO+=67q^gHCiH~GpfRjnzx~KE#WAf
zcj3j(uu3ceeOIqH_BLvNTTG8z(`w#Qxudz8%obj2dd1l^`rcjdhujs_4cY<E6c7ks
zLX7VKq6k~qX{`bs#P<$Dw=jjrC1dH`daO&$Sf5TF7-Opja)mBJ>NTS@+M9AV3y56d
zWXh->XX~~^#ihf1loaRqP~2V?=d757)Cm*>-5GAX62zAr;%d~CRwG71#LEiJ*m3VG
zbv}tVLWY2}ij+>tlu2(t#CdgXEJY8OAK!RNrJi^c?En&8iv<T~9SY#xH>bH^`N-;d
z=e2tn-(~_CK_x?WvHX&C-Op#L-=A4YGvBiWv|k;C9Z0t}xDMd=*Ax^KtR^Sj%+uBp
zfPnq|8r^{Kpe668*4u@6)ZR3~;KQFnd%^km`KC9ux-DMoiK>6gax=m2cIOju`GT<M
zd7YfcEl5aJUkr^gi4y8z-eTg+==7Ag+zt_IQkdDU&_%tGBxtkEr`)0<4(A6+-5o+k
z&Oo8!(wTz|Y+V*oc%~~9yR?QMvEPRTTvg33IvmaQ->wyanhl`Y4)12(`$Pm|sT!(I
z?2_a!WaEG^XH>Ejo3D80M9Xg&h+i3~qQ2i%g_FYNiCkWAk{wEBpB+B-hu;d!S>l`A
z?m&m&19^Vkf`KB%dR#ZJC`ramwl5(;V2vo?Gzqa?0PPg<&w6*1nIS>O-Hr84P3lfl
z{;VRtsdnLjh8MO=v(j;iY(C?`6uPdajSebANOB_jGjmj#%Zk%v80U7_r7e5klL!A{
zlbn~(ZuWpeC<Q1QT^G`(dz^_kcU3+UFK?LuKHu0k`O$Gq$wp%S)d;T(;w=fvhi*@x
zdm*?thgS1->I{idWsV^nF0r*=V`HOvLl6w<lDTQn>v!_Q<|hH%?pKkgDFSyNk6k`m
z?cyxWogCZM!YZDzt3U*p5JREbtwj<ZQhi}n=^iTM?(6gge_5mu>($G&L_`(eo**f<
zf7a>uGDc37;`&SXjSNpRAWBwRq_d0A*qekXdkb`AN?C-**e_?E$dsPUR$8&fk8Fw+
zgt4b<*ioRe5dDa|u8Y6Y5(+1Z7yio)U*LkJ88pWdjN&AS=M@N@)u%i@*&lRJ9;HRL
zH)_`=>dSXszZH%i#KkI2Gd^QhjAU=)ReLE7Z^e^;S2j*3mI6jxQb}c1QE%SP<1P7U
z-nuB)>EKbmY>CYjr~Ybr>N*TkV;c5PgY&!xyV~9gjg-;Wg8SGUw{$%(!|$GVBXsZL
zv-HB9NN7}L|9hc|49<xFzMxRz`fG~vWh{k!>9KT)SmwvaMBa<(Tz##-_c#bx0+jCn
zjZHCQ>2kAnFsPu+-NOoxgjae3Z(q{aZq`GOWgqbC<p||s)Gi{TLka;K2B6vWWzijq
zOiL##h}8az_3_*Zv!SH&3#Ojln;I{&n8cb`n=`SgwknjO<dfK#$Le%TQhaa9$mC?>
zI-~2V@3Q)PTf}piqcU`si<$FEMx4Bc+I!T;Z|%=j<yQ%R-==&S<w%H8X>1+Ak;Z`d
znuKX?<Ad1_Q5QDSLeOgypt)$^RA&B}{JeEVwnr<hNO5jTsE=2Ou|ox&-5?=EwT>De
z6~!OzHbrq8)dqA4L|8WAh<s#YPXK=j4>2^hbZH)As!zzyx=~qkwcM8aHXD$?asR+6
z{&Y|GbVj$YxXFd@x)}wpuw%aShEj#D`H<mq4rnKnBl+-U^kST-Y8=9ah{*%c?yFfd
z=hW|ps*St$I|W5D$OoEoRAe5g&%N&!R+MRndU@6c&Jv~M$3kY`EgwW{{{TjmImynX
zKVIbDuILNzV$cfhQb{`@pJB@OI<ho<tE)b*pE<D%r=|@jT95ew^w&()HS-EJTtz(n
zhzL1F@cIt!2B728$@`CYCo>cD-!2&fp`;StsAUyxUI)v;Qp81zsCIYT+1WAKEOXud
z*oX-GGG!+mTOho9^R;$r8HI=gZRc!sMT&?C^=+2_eVfIJXBKWYdEGOqQ{oHFipAzi
z*;VBDbB_bc$G*3JJPi<tVM0)sE!vQ_LlI_!@i6baBo*s*`((9PN{+<nc<!ZRq@_OR
zXscPAkf55VxB&a(?9TKRee(0`H|UUoFfu*xq);`6(m9_`>!Td5i&m|<Xt$<SR4dp7
zf?pOtA^*@sUo1p%zpvNZNt>Z?K5GT6A%8m(Ym@3W_P#7I5}N2M%RLoCbw{P^)57FF
zoZ;#PtI|PM*XLjtSw<Kz!I3GR2hfmrL(qu`&7O&TKU}PJc!*1IA^29K$>=A(i#Cmq
z6FYui?UYP<DUJ7sBYeKI)h-k<Ny%00JGqpkBH`T0T6G$aiC_gu+j*^EuZQTHJWCi(
z2eJL4IxlDUX!{rYEAs`nrE_D>eqNnFkT%znyUY%|>zixj*)NASVq1&rA=41!lE-Sp
zhCC*QL@}YALrSf4gwi+zBWQ-b)`=*NJ*}<NdGsTb+6l|jn<y#FzI<Xm`eqL9t&03M
z!@tHAu58z$4x`|9_;GZ6q&7jmtol3y|BqNtQw)p<2kA5vN?a(X+HOPS7U+eJ&9K-W
zOsoO=J4mylnI&4$iQ<t!+k#5cyl&0hfP6pJRBRE%sEywb>`5p7B2`2$j14T5KsNju
z`0V(J*EJ`H#}9gODitK~y!?ENkGtd36a>*VJ?q<Klu<6ni-kh>OIqc1L9wwu6M<|<
z*FE&Fjs=!ZH$8+(u5F&KY??AmPnKIrh<JubX)jXF&(0h%nDwZ`%>i$tbb{te7ZkJn
zoL7|jK{a-xNyFG>F_jT=aHt0h=C-!B`vM)BVI*`kLXPhzr0ipuJUoD8fZr^5%kv8V
z=@h@Hx`A}y3l7jS3h<eq`(@o;>EC!z&?aOO>Q@3F;@%VypM^{dl>-#G6p1^F<(5x*
z>s1o+Oi1JzU^6o_ws~E1c-MgHHV@D$r<%Kp#yVCV46u}B*kuOV?<f`WD55HJYT~XF
zgT%|5k2y#s;tinMc^~#<_&=ifo&c@28NCCVnWw<dq6RV;$q<Xgb3op)S>l97f7ZtH
zKx5w}t|l}?wk+bU&?33?=XGaFYxlEe@or}#q1Y88bt*@zPiz?j9CVIf+llqqtQXmq
z_~p8*GP{mpTBULD|J;JBgAhsA_i_4k?FmFNfssxfh7xUCbZ-XT!@7k>2CQ8wR~jNn
zrmWr9*y}WGB-++S6t9;N`n4)!Ae{<Pxv$93*GeZB1YzK?y@l%zEn+{@>phlJGPttU
z;yn6$T#BlxCP<!Edl$hRCY>+C;x6ZU?i{Pc5y%er%zH;;9W0{V&%L7(?s)C3wCW45
zaW&<5R_YVlSTp7QgPxT3rWBR(W;>z4?tEf%{c<2>j6IancpSF~j+Yh>3=u+`YX;c_
z42+-yg2np&(*V0vMRy=vdJ)YZk^CQrV@Ci<h2<P<+nVCwG0wyfva(QhHn?&jt5QMe
z^MQe)S<0^h4m;9N`}M94r2SGGMAG;rjmlpeItzmp)wM+DF#8n;D1Bqt(JF?J#e2x5
zB^Z}jukFqCD%TWFymPN?J~OCWVN?a#>bRmwVMX^#dwGQz+hv48`g*TKmv2W%n#r-A
zlb|Io)?loGg8jMZ1YDp<Lx#r2RBI6pAlgn-N=-1ycK&SUtw3$YZR$DiASH--O9XpA
zH{z97Zw84Z6ih$(8kkHFi@YGVFKq_}i%UNIA?e33+wnUiB%e~%N&!#w$k<LI^q7Q(
z=zbI5<1&?S>N4B)H{^swU)s=FlBF;fF(-DgMg)cIdPmHN=%ZEK2@A!;%#^m8%=a9(
z-am`dx&?$Myrg_?MSxHW{jL~V-uBAlc;c$|2-gK-WwIG)HK@(2&=7~FhIdg9GTjIC
zC6s6#?9=KO?L*znj^>r8^K$E__ctGK2f8SvCvP$9&rT#HLjlVOo1vX_8hhVjyH(9z
zHc0;DwE}dp*ebX*N^jq8(RmkYl5e>L2B9&F@@yCqRo#s|-OJ23ITcr`$C1L7wR8nQ
zc?UG+jKoD=i#A*bHOP3KxUX;yb;|d00XdMw;+x?-VB6!sY@uP<r^xc_nWm>LV(8^I
zG?*hv(-+q2!TcFckGew#fomUG)XU9#rc>#qS$&Nop)(LOUx9KyV4Rcj4jNEuiRw0!
zX@sbvr`-cWYQebTwDw$WcF-5h-^0t>KACH`2Fu%cOEyA<{E*eoTr(!;@7sBzt7($F
zTTT)H5|heZ`tKECDK6jE;PQv`a3|yO<~UZd`HzO~mdPaB?IboS!h`Ho?yKD}IUC{2
zRp9-4Ib!c<L7~9zj%&XR@Pj~fA<lMrUqoX3wNriznB8DN?KT#wa(#@4uq2h<tV&8r
zttM|6JC6k^YuKHJ23JzrWmKjIo#`7G6y_9#%*sZJAiT>bLq`e6iWE6;#+MKG-Xh0!
zycvBQI64`v#7g4uAYiW8t;ie0bi9o^ydsA8<_w`WC4vFtZpnME?FR)WQ^lD%m=1*R
zv;pu=8$d%Krzz1PU{H=?AgnQ*-4k2A!lCF+uCOnBI_8iOS>Mty<uh3EI^F@^PCM9p
zvz1DK+kh=qIu1`&h`tvQG@LCb_^YTUSlH7@oPo-BzcQjL7&Mh&gNz(t${92?H2+37
zrL5*F=E|@fH|D@P{NY4NoE0J6=kzo>etCwiuK6I29caqN@+?Zbe<;xUV!KmJNAZrZ
z#@htKCDWkm9kya_sZ=rQ=>h;#OSk{%p)&<QAobd|xX1N6vaZfi`aDLKCfUHNg8{GI
zTf;+uoAyO|MtX~hB8$l&$O6cRxkcBtUt?(*5pRSUeA*gq{Bndn!(+cG)*2dw)r@T7
zuvms8dW$tv^1um~D%hR2&hevI=RpFa0PF7Sj?0bK<kGcI!>bUe$<J=8$vUcH<_7>k
zpxP*Ce%V`k58rrHw;(1DBU!XH8tH&aE^u_MVCwFEm#R0htXkT}oi|Q<99&yl8=I0+
zvg}f<9FX&4gJ=FnSsQuHhQZ&vml47v{1xdSN&=5$@8=A^I$QI_TNyl<psNq+(nq!&
z%P}^kIo&-nd)D6StTJ2LMH+YD*6s`hP@8R;YlVw~%x}a#wcl1wgfH#eM;c5hY%bmq
z)!uS-3O?kwxdeK+z#OBt>?~G?tnWbJQCJMS`|)zsd%8@yu~<Ez%mofBt$*#Md(tSL
zu7^AD?*Gza_|!X)q4@Q2J7)6xX*N|)MGnp}h58rU-2&cuS{z>}FNuS$I|rSH^S&rS
zC`~UT*7Nv}gMM0wyU<`ywi{FYA8+PH9&JW>oc{{%o-Z;uAvOaeoF_!7>(B5_?(h5H
z8!0zU-lj%8nGzc{%ApxmJMYume_63)DQrxjO_jEo_Q)0T$@HuBB2(yK7aO<5G|;u@
zGBfiCyHr;TV-+6lf@U`lBf^^;e~`dODHj~J80*F%eKR>P5{4zb&O<y*+|$!TB25r<
zjPjYwm0@aX%E|i!ZFnqd1oBZX?BTlO?y?jZH|6`iZRER2dcaO6x0*IFICVQfq7yt=
zBA?QoS%k}Srcm`V?%P%TnNy+dmQeE9kqD1h+I50!IT(-Md3LW!;)z6#fb=@{^xA2u
zmFFnMEA|qV#7<@|L5ufMKgq<6&_)N=k_$pe1Jcn7A5l$O$~cCcoJ#Grgi+amiEfuX
z(IY<VWEA=>wx>W5L|$J%OFg0F#N%TNum8s!koW__batT<XR@`!8*P<_o1RN~2T|0@
zlCikAnon)=`C8!OXtXC0Qpqfkxlud|=aG|JDw=kXxw*MxWm?Uq3w2ie>MqXOHxGna
zd^g&J?Jzxw-vN&QRDe@zYJT}e%*e`m2Ic8#AO6HMxl$!Q-08#b;9rNZWCv>M;Ckyj
z^R4!!+gZ8tDU7d^(T}NgUsLFVCO}Uzk`l^ouJ4C}{rU~Vl#ac<R0NwJx|ly(o_c)p
zEfUv+exTX8I{9$wfR{N-xgvM2(%uln)p!1d#*b+5tOD!l;d-+1<572ba8$4ws$OkO
zd1dr{7`bA70n+&#>8Y9$x^x%Jm<x0VVa16yX9>=qhwE=H^S8}}fE0<H4`8j8ZkKt^
zD$CO&`PLT!&WB>K6rNM>b*M|{v=KQJkM3M?ku6;C6g7@MLcJmp>h=L(-(5UVsM)4I
zxNN>veF9l+ZRxXp^B~5Ax55@Cy`dl$BWc{Jd-J(Gz$7mjk36Z#xyz7)_#jYHp_)ky
zLA>ZlM8ee@bnpSY%_fO~8Cx@*+@;sb#Y(}TxwIE+NCxc=YVp^-x0eS~2b#m~Jlj}+
z5L%Kl4~EVgeLnWgb5FSLM90hhsiig&B7gM!uHz;&=ev&AP=6j{AYl1WKawrPwU^*@
zv?x=Ln`av5g!p!OE6W{Hn`ggSj;t!SUl+-(YtE*<mgPv<7I}TF>Qyemk5dNign<AY
zHgstg!Hl4P!rQ-t-2eX57e*TBRK=6E`2L>jVlzf2?b59qRBb%ooUrgS>DJE8D?1(3
zYi?*e_5-U-c8r0hw#VCp<+>J_Haxq7SPE+D=2eSMFj`u$_4P*GPB16=Gk0jvzi(hC
zhEMTWzbYpp?{noL)Nq*>G90#-D-S|&BOTFmU?+qD0KR|!^M67Ge_dll^C>IGr<q>^
z!^Oz!IV1B9EN7T3rr&tJ60h{&f%GM6nCRvKn#86f7BpTlnhZ}SROx+r(fUci$0w&P
z&PSD@1DtmR7xZRH_g>5K*tqxIUq6|^mctitr1C;JQZ}~7KVTXouG&t>Z^7htl>jjR
zP$>aC^uMiMo22gM*C>e+@;%Y#Sf`o;Njx1J1H)w=XGZ~+;$_T5>-<}{>{aQM6GKmO
znY5h1z`%(gn)_&7<UBlSK*6+C5*Kp#2?yotw{O`gDJc`iOSKj=W=;ivJ*Hi5h?HiP
zD0VY?*NC0#G+`%w(li53$}TL?<rv{jjtfHO6YqSK?533-4Gp2;R&OPgA2@MK=}^S(
zkbrMiFRxW8fe8KUr~Q55tId~D%lw^rt|6|f<=(5k4ft!**g#Y-Oh#cSPYmXUn^wOW
zlVL%>0KoT)BE-e=DBQVRmuSyixeY_Nc+VO%OlNbbDF_Wf&`xHBXr$onIkDLp{R7Ou
zg?z!IrJ?Z!yw}$~%QdIk=qd9k!Kl6srH8vq$-KNgbbGcG{)fXW5@d|H$I`H(mAb4~
z_U@jWr#BSS#-yw^TZ<Oh$!0*(d$H9??AAK6lm9wd_!6JD0YA5=Z~S;%!oG=X^6*MF
zXHF;q;i!DuD(FD;=H_NUuXd1}5`u2~5C48SOPTbJ%&7$6m0!)iwIlcwtp24r_%4fr
z!27nIB<TwOy*vJdXEBg`YfjH&p+*hsBAI#O7Q?aZar$Q<eHm?<)8Q>|BSl8EyFc*J
zsaeWR9u|<Bc+#X&P!YIG1QvZ$JCkA%6&Y`q;mX=A`Mdg2+YaO@^Ud|o)en)OAzE`Y
z=$xJ6Qm06$Yamhi+PmJ`=s*r}xzN%W-Mt5_qHN(Qy7bpfRCgx!_u)eUMm6_mQIlO+
zUG;Ux`Og&*y8%-rUPkgzk2gUzXGvIE*5<l|`esVFr01&1q|w_5BY9%zg{8Ol5lO7H
zxdBzx)rD<s+NF12qkIU?h?*wZ(Ei7@0Yz+Bg#e3)(D`np3;Ofw5ZKxwe{W3LEHinl
zEzrc#soWm1|EhkUoO;;j)GTozKn4d)7;4v!SwV2>ZIK>pN4FO^rNyG+@rp#0ax#xJ
zgcBMX+HG6VW1S_XZl@MXT!IQUQd&TOt26p;ZccX$8$>uZ>$_m^um>T<*Vx#S<a6BL
zNt!|OdU^`jm$-DO60lWYzb_f)&wi0J_IO6+3=2CM8j<z!+xW45r!F%mLVUWTtXoTJ
zFYLRWbATn3bm@BJ%-M{>K@kn<kEE{^^tVO)a$|rZvh6@bGW<v(?(zTm-aQk2a;oF#
zt#jX$ALqbMs|tM{B+>7%)r)uRqQb4zfyXI>ky5o~RLjygJ=n+iQfCoIRLAI0q^)-H
z2aXvFC2KKLr_PH~PEAc6`U(a{DP|6}bJ*LLS!_UuQc|lOf-`Q4rGQ7C&MX)W!>TLt
zXet3Nn*yDrYzb3Lj}y@CprWA2SX|VkqNOEE2%R9;>GqB7#5nEgDfInE<?b)|_>T)d
zIx<~pF)?PI{MUbK0lY84C`XV4|9KI7wFUVgY>_3P`i$o0Ev?Et*U+(IBH!5+`qs2Z
zrNFDkWoMa9mITCdo~x50*YtKr2P{45BP$d%W=c!N#K&hWKIrRPqT*U*i?cg(Xg4Hm
zk379Nno|%Ox2{%;yGzdjlNJlg)v!)1&3_SZ$IJ|eil3e(f9b~9D{p`7XwI(2Z>#~U
zrXLeDsC=dX!R$sv;j{>ZVJtDEJYhsum73v-N9gVhc91>f-NmlzuDsEGqVridXu_4^
zluQrtHVQP&nDhD@ro&6TIYrTaiesC(<4x%5x7kk_Ige_JZUsKL@Y!ES9Fl2R&{;)d
zm^tDXhotytnY0;|JwD<hhnmiBep3q3%bzH`4Z~y%6p6r-0s<=j4YvhpfZN1w<scbB
zBk7=3QdqcGX|T@s^A`E%JFO8QPfqy%I3EB0rfnP4V9SvgN5!5X7PmXnO^bF_MNrwC
zT)8}W`fuKZ@6G4x&1A!E$EFjW(;)SMqxz9-Tu%70DHWM4W9e`17p8H@FU;qhZCagZ
zU0ZqVo4Mb>zf;t}1mLWh;zx4n$+6|uo)mbtn6tC9uUwXh>@uhdx80DSNcx(uT$6DP
zLu%xYeCgD%UwiJO32IBC=E|sxmGaOfs<x0n1dbswkKE()@;k*DZ93H!oFmDlcXtcd
zN3ZN;4}7_sd;|)=3i`ZiHUk}*OkR&tRLu68=1o|1UA#!(Wsg$`O5R5wd#O2See+g4
z@X=cCvXF_CRaA;;0iI4aP=q&Ms{E@4|9>+_dPE<BQ4nz9UwA6E8Hg6^1mv#Z<cyI6
zLYdH*7CcsFMO=fIE&2m#90`_hiEk=O4>L@%0s7r1ENpD{02|1yP1u~<Te6~}qU`8s
z2?-e)MQNWI9q#~pa#Vg@5s~OL<k>Dtx7tUtm|(y!Wl$=ttD(M@goB%!lvj{GRWkrK
zZl9V=X$u}Sb~6}@N?bHEPbyKiK4l;-$PLJw@8{7Y6Ir*+jmeW-WqBezAB~x%hef+A
zD`jK3(;&mpk)sTb2Q6Y(D>I9tHKpLO*vyGY4KGZ5Gt;lZH&PY9!BUCiJYivBseXU2
zIFx&ejKPl(3J<s~b{zOAGF}M@iQ(OW0v8d`p90~(BI4gJXy1Y%si~>?dWa^>2D@xK
z(s&38${#l@9S=K-;{UXezM(!oZ)qx0!ryXNtemLaRZVH1o}QX;Ss)ES_TI*g(k}Wy
z!&q-KHNCBIx(qF1XBZy@_yEB}#xeHbOyMY<=_NykA+jI%_BISUQ#~S>uj<uHyH_66
zbX5xiML!P?5RS4X<h(>@<uecxg4o8$%o3V)Re$jC(9UOrKEtV+66j54gRCUOvMl!$
zy0WFBqIz|EOw(eR@~M9alOGZia$nQvxTc1Ql<59qLZ(*ma^PsQKc=vZHuABN9G&9i
zW$^Ps-@RrF`_rBM)2I1rOMraf`w|e9jJ^Jj9?1K*_%a^eYFW<*VRz<9B|G+keW6DM
z@R|QeRzV<WiNJOQ5oeLoYHA=tf`f_jtA(LKN|jyN!oF@m2OZr09@so;@5An!)RW7Z
zn-|?ax~+FZbL=rkEzAk6SCH#-NGdW(X}+hn(m4;|xWCXi&Mw#XmX6c7aX+qId0@xo
zj1`4UFISNE06f?2do%oT-qh&m=v_b|7e?J{-ru4>K2n<8xlG|QPYnB})!M6ZR%=u`
zm^e>%qEfJEXr}AH%*?PdGh*<NgW`c9Mt`#D8@BqzhLdq?3@x@e5Fh2_!pEPS*gv*1
zd(uPr^4nlP!#w}P>jDup2bRUB4H&b`b}9cMlS~#!ekbYFYs9$C+5uF2;x^+y!K>ew
ztVvK8pmx-_*u14tV+czEq`k+HZ41jwohbU+tE#A^qbxH23T^;bWD2x`NRY5T^~uO;
z8DYAz50#A^kXksFs1F1FrOF{af(qe8;SL7R;}hVQB^*C9*iwY0d&fwa;UpxL_4bjF
z6kpNMJtiPS1g6D6-KCI+P<pO|Z84dKNfO#r`@M@&F5>=9npirPul;tjR!HtPCt$#H
zw42f=cZHrKYkFzw^4R0DosyGN1LHZ)D4PiZ6-?Co3p4*|AN+ogZXo~}K~GFFL|0se
z1RjPqAv6#cQvjH<EX(a+Z(mSS@(CXIRRgX+W;oR^HsdZ6sQ7s^P@Nx2Vva8=+Mm6o
z^(E1&Si%EHUF8v}pjHw%riU|=lR}l1pkwJcgHw}YY4OHRnlw`7bNZP;6fXX18ATWp
zIB>D-r)T5^f%(NQqaAW6l!V#5Fjx1t@5v$OYf%u%+X4e$EWKS>l9i%i-a<`hjwhL_
zcy?NcVibCzGTGZj@>RY0)f&2QdMe&WIy@99cJauB?$2z(moyh2)GiziwCZT6h>JtR
zkXrqltng=K{P+0<0`?As(httYPp#UR5@{7Eg~QhRt^<?pb^(I3A}2F5^93M-kuv=f
z?Vq3d{n|5~PbMFBI!M?yO}Bck`?gV8y~&ZIRP8(t8Pptrn-5GF5-EZ3Xae@G-@I0y
zpWk;Mx%0BL)GOM#eMFKB{it6#Gzbc1CQ(UUuh62Lo7Dt@6P<;6ER~Ci9AN}g5V!Ay
zQJK<Lw|Gr;oT3kg-b%^SsI=<1t4pAEW$tqO(^uu40<Cnww;)$Ok5Vbx-m~J3WN4_@
zLMnOrZ%6P?zd#EIW-J|WH=Ao$WWw_e7z`8{^w1^j<isqM#1w2}C{%z=^Gr^gfphx#
zo-y8nN_`^JIC7%Z+P{D7Xn}+jl?mPrLPpk)vsev5bC|0HM%iOB0g~cH&UNysU&P_0
zF;X{=GT2=rtBd?!3_ZS--qR3Rju&wv6~duF;&voR%(g`B-1``e3q_2wPT@HR997!l
z+n*^0G%JJD!|{j}n64|;O*bpn1_%K|lrI(b|H$77D;=uP_o@uxcxU6H2S6sRw4{f!
zOBEKdIBd=J+ta92i(NQUNoajrnQyO8M)uM*+$>$su3rUTJ(i6bz;yclb2)y#rlkN}
z$nguWqZhKQf%;It@HURY9ai;P!pSUKa+;b<OCINz^Y!JvfM1|+m@nP5a;{Jv&exWT
z`#9Ay&vHTVV51{)j8ePl;?5>qArlOqD>E=Pp)|0%y>8EJxXR5MRo){^dg386H#euK
zqazcYrizy(_&>O~-@kQX4VJgu+Ok~D;Vi%DC<&^$j{d8xz&DLx)fiMqU7bknjjzeA
zPznZ+jo_JZ1Br6Tr>Yoc+5lWo+}K!7trZE5C7|<qPx69YLlu_7%zG|i6kF^PyHnbC
zd)Bmyq$j3)OdNXUwd8W3h&_HWQS*{C{6{|`V&XWBHXfu`Kkt=)z0(>Gf&<3sYPLO`
zT71oAyXvF;%Sd3D+;=Bkr!R|(u~er$X3!X=o#@$!BzQc<aap<ymEnCeEyS?cqr>re
z%TyBXw{H|4q^KZm{V4_5!9~8Ol=292=t^@_JBbt97i0hvMI9W($6pZt{E+|kjvFs1
z8-(*ZRu~?45(5K+;z&^u)dzwKl+jVhpKK{Z0RkY*m8IMpkEBTz78V-Ts?WiVA~Q|9
z4~&iUb#b#c-=m?U?;k}ouxSQ;mbncSDNgV4E<HqkF9A_tb?G(U+qcl}-Hr@Dz(t!N
zY4giv_>W&N;~LqA;5+P$h;^?fpub*}kZzOoEOBk}+SmA3o*Jm$Er;Q9#seW21t(`R
z&@3jMn3$NF4#NF&i0~i(5pZy<q5=pU=X>hzo}Mv4oLLkpg|;vb7kRo&OLAyv2=@~o
z%CGDpjL*{Y4H^bU%#t<v$1k0GzQj}4qh&)MmjAU0e(@zA1ivol$%oxt)26+=<gb=2
z#drW43R+1~v1S5$>K7jv<p#sV#8d=8&vl7*n-!k3_gsoV=XGm8{i~lI)xS<cfa`$h
zDxU7iNp4fCz6Y@D$>t<1=WBxD@p%@dZ4~`}jx6}@o}aZer}JS35Io3vdGRnaF;QT+
zAw7zhXw*wv<!WbTWbj#?g8#Sw8U&(A0>EkryGfX1*uX;sGrH@n7ASyL*c=S!Up$oz
z2Z*ba6&ZuR@Z9KV<bmPgytOYM6^xCIcV1*;{Nf4x%UwA70!RG|RUi)lNT4r5LPHg5
z0UfDKV5&5>TgE?-+P{`pix?5`3qY~KuzsO`%{G!N2ptJ&tX6y!`@i292mkXK8i`J)
z{Z3q5yeO}*Fc`>CV%_~RL#gWO>WBhtDNql8UR!_CNPvF?(BnwqUeojCf)5W3<qixC
zRCvlk{}*T#_^nL@fp{3a_2R<OQw9g8tnJp^lefn9Vpq<-c`0*h_T@i==ije=3BV4f
zOBL?m;NZ+PWMvU2ff20#x3ulA_t{hc6lIoAKIIAVuci8byBNg)3IL<FQ_m{FU+_Zy
z-#+|Tz%uFr^;|~Kq%J}I@6Y4kCjFZc%#(tA>~J2-_*M2boaV#KBPFFDQWLqdK@<{1
zP)!q<R2*J#`=jQa`Q=?dGOnPuOQ=^zAWGjwRVC0F^jbnnD!02^Xui_mB`&X5in@kI
z|HkR-=1kcC_T+4#pIsSp%PyPIPpj{nMjXlFm4*zOG>8twc+m@Tg5ktBO$4@`ei2d4
zjlqk<WaiG3)fA&WNu5x)hq)_7!q437q@*O%sUjtF@5KhY8i4jwwQ$7be5hI*cSS4;
z2KFV5lMx5{zb#ruJ(3SW#jiuB)hwb_2X=97XhHIdnDq1|5Kl#w24JKMfS58XDn<7j
z5|#H2t@DvLrogvq`Fqh~aKfa807hFiXNmf|O`&397DD)|bN(lF_OFNgkBbCa-=LC`
zl4;573%l)K>=nd!eB&n)uj}RG6Ves#%rz*#QS<Qdy#L^QMfA>?^aZR{co2P5za?3E
zy#uB9#Q3<__zO{C;W0pdUHswhTBVCG+m!y|_3Vi&SPZ#LUQ<&O9%luV1Svco*Q`Nb
z_kW3t-0*=j@~X|^1KQ6Zou)rTHzvJikOcr{Ak3iF0evPR&+4bGrJ0%hblLy7#b4YN
z@LgLo6eunpFEhrDxt~47znt5zzvN3N2jSOEZ}(^W+4lc;?+|<-Ks*8aX<Pp9KHLBW
zC8Q0p<D>AG@A&(|S6i|JD?M-8_$LGF9^_}TTPv;c9HQPlccY+X_5(I~5e*%*yR?}Z
zG%5;;u(S!x%|j^=Vi-!Cy>BV<Zujb+oSYPZ|HxR7zLX{egddabwQ`pW%8LBf<q=#w
z_&xI_o7+|v7SvNLEE6A2iB0+Jxk{Jo(#JOp`uEO859I`RTeV&mChf#srIPlUF3+yj
zSYH#K-Q34oM&udSCy*f=lyBSoUYwX59nILje9xsf@-pt%&+Q)%b|)M-b9TZ>jlq6i
zG2aQOoUrtKAs@2pfRfX~P3OtT4Y4*_sFcQaFJ|N3(iLO=j0A?jh@7SY2DfWggyP#c
zYL%*v@?hms_1vojnq+?WYxId|(usn`Ibj+aYb70x1KF+?ATzI;d&A^%?4RM4%&H=<
zt&NAqj{An-Q$_%aJw<@92Yi}=gB~VLy9Y^aMZx#d(!0W%Ch1^EBYmXXxi?XU5mn=7
z{n@)4tsj-{;1ooPH?&8bc-qrn<dcpC--@VTZs9R|Yf8WvnV2YedbX-RMG=F7=3x2b
z|M#^B0Fi%@j#2XYSMD0@nKIvapq7&mSw^M)z*9uMh~?jBSxJGxZ3pGZ%p9Gct7d~i
zs0C<{wb5C7Xw;!rjFtrtd@GLoF--J<8~ynIqrhNpn7KB&20lkPDsAv0Pa%i>J2^zD
z)(g?3casAe2qR;M+qKmj87%Ef)+Px8FNH-!ikOT1)?WU%NTb7*6fr6;j?}wZ^p{pi
z4=SEat+yzlrtRh2HBl!Yuj1j+vhSUTk3_~8{F<KW-L}}-T}#fq#)JLpD6QUg&(_Ew
z5x3gNUv&ohn(FD1?!KLNP+2{_%zb?p;fiXVRaK&^n5xN3$qEHEE5Ti++s}jDY*S@n
ztfw5P>5)j;B4Js;T%rLWo&W~s*f+9iospvc<?jqoLK*+}4i88KJ!c@Of8Np!K~Sn2
z6O(hFiD)*jD=4J>J?dU_8`<h_6Pz_^s6u^xs_d}6Na=ArT-D~NVx1M16^xFL=X?8B
zZqu=@f}k?4L^;$R_MLRNf>t+SMX(kKF1(2>Z!>o=GBUF1UXJFJjfPx+1kB-|)kWc1
za{Ug-4bf4b&G+i9R=k`Lz0ng}nRD5JqwdY{`$z8KibbbHl(BY<4yu;#TjHx2qo?lS
z?DiCulz{PR!bMt2>;IdF3BteX+7sIUb3jV#^hXm_za^oC2UR03^Cnw#ISg3-(t8AE
z&V5R&uTb`^ta3wRL{%a$$8TOW|HFP|X*F2<u8wK)NG0>+81rwe)+XDKYir@R5LK0X
z_kyj^lQ>-jWZQ?5sev(15g{q?aa}HJ{x}kAOke(CzwcWvrl%hO&SQSJ7lRGMb)~q(
zIt4XNI#&qKvb$<6T`E&FP(sA&?&8N(85Za=J-+VomH*Rx9n3e}YQ4lgKmF~Le|A#8
zy~EZH0d`|JeDao_6UwK<l?V}YPU7TAhSc*>0Foy8fJ;WSvxZ>w8j7nTi~phd{f!Fw
z?eco1{-39YZ)mvB$QFqUcjyK3_*A3#{AyDd%QY_$E4XS7ku1!g$rn+v3!UzPJHiv?
z0FBC{*PcA>_7ElIHd$w9=A>=aLAntE?v#|LB=Ei)y>JTa9W)xRR3kBV$+Nm<XH_}+
zkA2CplPPIv2{;_jJqk6gb@f&&IbMbVM7q0g#RX9TfeIfH3_tR5hGBk|j#gF`umJS!
z(80_%!m9}A<CY+5Z=UOjs2mgw4DzLNyr8JR3>N?S<}mhiNb;ut*bhpu!@Ragy`FQm
z4lxg=h?W5?TND9MX=;*Bor;lZ>troYa=*mnd3;d6on9BI?KNA$;_E9K$}eRlXAEe2
zYnf5BA}60|eb_Gzmj7CV;cX;UNl9HA%Q2mt=XY?3VN&0_@<ahl4~5y+UduO^3+a2|
zjJ+(S9ut#q4L7j+qT7xyhg{W}hp^Z`SIHw!wdE9Z&Y?c8?56b7T&%ah?DpaHVn}>!
z8ZI001^e4?r3CxrwEtG?q~p!MnEKrX-6!TL9sw>WAL6QZft9FBh^#u%LtCcV^Aj9W
zwA*K4x2m*U$^3~VW*wkyureYRpl|W;Ji+-qS2{7ODL;6m*sBV3d&$Q)c|kkJp{p|c
z-$z~zb~j`=GxN^4tErlPlFJs6<L3w6+TND8vwPd9nL>Mm90E))Q_#}Vib$>OM@6*6
z<9c7w7ak1$b1?N!S9-w%CWdL*KnDH-HUp5ml6Q0C0PJ}W{)N4tXbLKe&GI|o%RnRw
zZA%C;nc+-!hu-1|x0|g9_gVsa(oUIrnpZ)f=dVijdVK7O7#&^~PwL2rht}<X=<rRM
zKG-%h$Vmd45oz7{S8F$__UbS<CU1bo!~=k)xnn(8=vQ}69FnRzu13GJliXl*SYTgw
zI@-0z<Yh~iZ+SlY;H~XYHvt(IvD(T{30-vjUNFYq4|*Tb*aW@(NuNzi%k-;jbL-Ix
z?9=q1-R+5PHo^CJvxGg1uXMa)Wdz?RtmG6mY_bd=UCz9pPDvh)z&RP=wIHwl_C6UV
zzd2docTwnP?y3MYkw@cG8pHd?YrI^b3K33J%HsUWk`Sm+xGvEELV=hH8p=4%nT3U?
zs9z9n*-~jPZg$*nnk}Q>N#Qvk#USQ)kU4`pvZc7S1E;|#Fl3dInK|yZ{zaRNC3TT(
z`p~8xFw`?H$+aa1y37cp^V!{kJRVoLEqGlvPW>J`iQx?wY`caXDWfwEm~bVNR+Lim
zcCGVsh6S1BA{hkA3TpBW{2#);GODg@**Xvi?(Xgu+}+*X0)#*yxO;GSclY4#4haNz
zC%C)ox9PrpJMX=|-yP%p*vL3%oVC}kRW)nYoTH<K0ESIwczJ4~2KM(({Qa)}ecjna
z_C_$v+eA(-qM6aKNJ-RXkdK}|;+0HFO-GmSa4_TV*u@8V$>FWfry>2NJ9{0&OJ@IU
z<EHNI3ZpsbeC{{uBTXx$x6r~!)GN#;G2JdF1nSDNMmNg*p_Q*Qac1R5eRY71uUFpL
zV@I2LRmyqO)uQRq2s3viPlpWz*_o_aaIi4bXO_a0gJS37VdwiFybh>1%TlXtb>11C
zWp*RHymfrI|Av&;CW!vAN~=6S<pVc*d`zX}ql@LClLJaMWuR~P^DyP{7$vgk8aNP2
z0;m5^K9@XsQ*Rxj4@}Vp+CtOPY_Rk_TK6wCq4?ZetmsI(xVWfn+7|`B|AR<^{)X!h
zBFVmY4mvt`dz}M+yxQy@f^Cq*7<qB<o!!;Hk~!anismm#DFa()in&9>>q0Q1=Qn$*
z`p1d`!P1|z0iz8$1D%QyVI`vfjth>^0dSbGa|q5F@bDG2w(2bB1qBByveWjmDohXt
z$9C_I=YC#o?}ST@`Zag70d{^NZF+OuvroH8u4M&>1ggi(8%2F3QkKkiQgt<xe;wiw
zEFov9C55@X?b^3K@{9O5g;z22XcVXZU<*bwDz#VZb`HFX0-)zVYV$muMz~gs)KBQn
zauPyL(S!Y6Kk~|T?%2k(A_vHQFyWEo{Q24U03fd%n0_uQ1STpKgv7kewrX2O?zPTc
zmuMlwl*_%f#F56ZCXeqMPZH?B0Unx0i6O+{)D&1q7)xxrzgzWHwYI)YnCvTKr5A*s
zjV(d9rc@$>Q7SZ4F=E;>gCTwhjuti!LRAb-BG;h>K~X0zya1k{sQ2soGwq(gE{~IG
z3tMCuMne~7sXu>c^89p@C?17fW%@ESUTeL?)sq%C!<WAw?Ei(!{q^Gr9<bVQw1DuY
z-9n{-?`!jJ$M5G)8Lj#+$t9SawxnR*g^JA_)b&>UBIo-@HaoU~$ecg8UUnQBGt&25
zmpw%Z;c7#5<z|j~tP74ks(I-b#3sdImCX4S6w4+AZhoL}28M1w%wHb&V>UnUlS@gT
zk2m77A8}$L24wW~eE6;J#X<7N$RFRd+bj*^huyDl^*!@S>MLC0AKL|*^^21#*FMP+
z;O08L09u|`)u@1L)Z4n3UKFdSWKq|$$2a|dXRt-gC#FxNXf^;F(9Cixv*Y0d^WCEo
zG1>LQdM6Uog|fsG@?nYP&@ZMs*5^M@k!yr&k=+Z4p6NqO%)SU8WTqCLuj&d40>G>%
zfOHn`|97-;Z3%!`#yTetELzSCi_}DI;4YncK2~W^GBPsO-sLQJoV53)(Q~Fa9@BoT
z+N8&3rIyamO?gk0>f*fD>79G|lli1F)o}7N?59zDd4P_K#Z7xnLBlN^7pF2|l6jPk
zz&GcprEk<XRh(<O(kjVf*!zadCMSaL#l50A+hHetRtdGG)ne5%s@}p}TGe%073K5K
zq%IZRWr0$)GIqKA!C77Q*mrPJ8yf`b7k-XO{9a6OSQ8AjDbMGLktz#ili09mp&0U8
zshYl1TmVF9v_H$Bd6vv+7sh2GIet~h-zFXiACDsj9>Qe#tDB0&c9YOke!kd8RHwxW
zV_cfS<C|q%I$NhgmAjm_)_meB+)^GhOXlQyRINw~uNfuWc3Go;P*M49uO#)_m1lE>
z24`^E-q%%3zOVhpSGfjzlBlEIbtM7h3vQPjZ4C!eDGW=_HkU1CKi^}|^T)r-Csl~=
zk%YKQGIzpLDgN0V4yDc>JUKPkOg3}KfoSi`RQuAo>D+9%`2jmQS&E8hTf%{ND=}T6
zoYJ$s$t;X9?cVWmt@GiNuqPv4DfhCXEoEi}`NX20iXcRUYAF@E{LgGZ<<Is5@PlK8
zZ8rO+@e>-Qr)O}J9iH)pM~;nX<GGDVQjd3&*UKP%<6B&EC*(v2e0r-AiEvVdG~)2t
zI-lr{=~5B!rbk`QE1%<fct~qmrCr42)W+JUJStmGzbWAl;qGuf-wS?21{-W`V6e<1
zAdunPAnL`s2AtGp9;T<J#>^|)3Qm4UZkEXiN510u0~3@_j%5$p;>%ZTNT4A&S-tzy
zsh9U-LfZTUuYHf<6ifx`)^ipAg?c4T3t#HM2O=Y(#qf*oN%H3*J^`=P^P^Bo#DC-y
z{RSrxT6;nYAkIma6W21P4wpEIcX!Fj&6+eX+YWu%VqtW)eh0|iYe8Lwg^mtN6%Ntk
z2(8}FR9x<xqPsuMdU=QkLtIJGfBZyV$_daF<z5~~UxY1h_CS9UJnf=u)tZLz$!urx
za0Zq)n}Gsk9vP^N0Qe&eQpnb$`X&~4XD?QL4#6x)C=_JF;(`LAZ-l4EEj!9wFbzT*
zxsmnCisMyd`&m!gR_VfTAquE|eQ<GMeR|w!fT$bd9J;S)zt{KKf7#2l%-R|<0h`V*
zq=<o}%YO!@Pk4iqD%-x}?W@V+TY)w4f*@(Qd5ji3M<0~uQKezivWQ(uXPXZgPljL_
z?fp_EsG|Xu4hb)Kv3vT0oq<H#jqJUem;JPNO+!A0H`*#GTi$tRIuKo-NuMgJCdW|V
zkKME0j#Cg;;HBRd?U?8|qPTg?89Rk)Yj+-A0gU>~Ev|4qF*RHCH)gqVZvR}OZ9c}y
z-8J!g(tyIMgNK*%b-b8j+~;)}p8KM8cW8!=^Ug9uioiz5<#EOZb=XjYv;OSUE?y0J
zk-hnX&Vu8(A8uKZ6*mcF?OD~fE}KqxbZRw3<n-=_Fbvk=x$RKxkjfPl`X|1hvmBwL
z$}pTeHkw#*KR<8lJsYyqnVe-Q))rl%2<Ekh*+hXy#%PtZ_m%t9+b<{&)Y+ST26{ZT
z&S!>g6?t2}gbD+{=k$MPPye@J^XG2>rXT<YQqao*Z7E%st@w{j$towg;*pMqQ+?CM
zbCojK+>S+DRDrq4W}5b>1Mp@)e%LhABs=y4R-HytvT%@LT3SnSiRw8^)FNXTC`QVb
zo*mCuQun_QUb5g67Z<HE3qwKrnsO>Dh4Pz_3p>v?-WnEWf$W&>98|!}<ugbRC%ke9
z@0+>m{J}K=XC7HrnUSWFk_<dh5=~R*=G43(Ku01y>weJXcu~EiH)I_%DLOhY;^imv
zs)@l`F7=lBuGYHY6DkUtb!n*`*h*}+htD<Kh@)5{w-IMihrxg)OrE-hfqG}pfVl%i
z)cD(pICFhhcUoSL8^inUljj1ZuUG*kDn>7MCrZ4cNt0WO<zF2}(6Q4}B#5cwSd7r+
zEIx%n(cZgV25`E@b6m!&Oh-4~1e0V2ff2OW(0e?{pMXJKUV;P&vB4mTu8~*qbp&nl
zboUK5B~HdjHkC;Bx-Etd71viKi=DX)YHjhntg`P+@_OC2cxH&3?eEQBE$(uwd-=u~
z=I&<uPwugsFD_}|H(Ayrza7l$(7lPbU7w72V&u-xt6Y;4O2epAF(<bD;^<auiPwy^
zpWbLq5=!cy-wT7|RAgb|=^hInMf@0hV?f3YK2yd0fnV-{e8-4ui>)zuvXAx5O^Y}|
z7l+m6L!TrBH{}dCp4k3~6Q&2Y@v=$CCv~u3>lx&Eskal{j+>m5I;Q`lH{@N87$x&|
zYpbxO&&fEV{BrmQ=MzY7d6>BVUlsj7;soBIz5v*Hq%%M!oj{qbZEMR^SR6j#1~A<g
zYKvtrbJ=w^{WZ`bC80~a9vTvNLm3v7lBBrSl9}IH8u_dhq?S+heI?#~Sh?{m1?H}_
zNnx7w+|MWmsT9&qdo>k$eYC!5Fsh@8ZeENDkB$KhNHhJ2v!Bc_dHv=dqg&TMC|0Km
zTQ(xhcgtJ04<6F#zBfsJ(*m+}H_I|UT0Xvj<2I*k06O%s+YVEIkSh#TD}RJjRh!vA
z;=lU=9fR8Mi2ixm>qRL(Leq*z6?39Pc1q2W$9iduum7pTy<J+K`+zC0Z$)1(-_Lzw
z*4(<DIpS$w0jq3LSt9d<Vcg$Z>w)*Mwc+qQTI$kqtB9yJ`T=v}cs|yiaV=sU+VSdv
z_Pe0`(p#_EkK`_L`J}N`#GfBPU=Bz(Jx(E8&VO*#A&NJ9nE)y#hjE@0D~d})Li|w4
z2V~ob^b;C~6jbhH`*$fkmx(tV7M3+DS0gkO6IX|bl*9mJ>U?uU_i$N%!?|_F9ss9c
z8Cb(HU75GAY<~(FJek>eDCusKb;-guS{0=LV?aqu=GkItmxy;Q0@;|h6NQMh!6qlW
zG>^!b1qsskR2iVmWKIMh4l8?9zUU#5kC1?eB*y2qYOC7exC5fqa*;)y8A;Gk^<70I
zIJ<kApsh86SU$KWeEmnnjKXO5{1j;>GPvUug2jJDga5}rjLkv`AYyJqhs>FFeg!G4
zOXINdQ64EbFwjXQJgAk!u<4tW@4zE{7pIIip4nQ9D46aS1VP|_>eP&>PzpG=O<$h8
zct-BqZG_j@3ufh!px+1t>$boj7z)fM-thwo*l`JkLmMNIB4Yw?!pg?N@q?1%u?xX+
z3J;CI^HyHaP+;$6O4(`xFs~@T4+>pl9&II=7G!*%d-UXVTSQhww-mv#!U<Py*Uxt}
zZSFC1NI4c#XraGcD-H#kZ@>a`B?RsrN*<<Qq;oikLH#c79nx|z;xJ~7hDH)13gVhn
ziB2x2!hNvznxf-2$}GRl2?~gT8@|m`?79j8){TP!7OQp0s<q8dJj$i{`CRIOZ|~O$
zujxeZ3)Elfd0VW|p!rX;C+>1y&({v91I5)|jn3q(w)Yzk<<O8wqFFbaZu(LU7wE)%
zadBP96<-#X^EZMN&I>C%CDs>AVUeu$c1=fz$A>$#m!?<?JI+x)kwM1UNlBh6%X(DO
zZ29x4|2A8`PVoVl8=?68+L!6cl)mFGoJSWPRuxzAaMvQQI~V3cN^xWJ`X28gZ4V1T
z3@m0dLR^m440!V`thBT?T#>&<$K{@Nc6LTz)JjF+v%LroW*L%G=HM2(5WF!T=8q&F
z1=OjptSnS627AcPU4}L;6lq)hTU=-|v9|1vUYj#-S{y4@>h*akiQ(63?k*kxFjt9n
zl;%h~bWqi6*g}i1bm*4yxt01tj({-;dfr7Rt(6RW{r;7R;ALf|@WhkB*6?K-g#UNM
z?jNt4W#0I7zW=@%;GcJmWbnb>o~5uqTzSuDa&q!>UkKVIK!#AVvrF~WNTQ-|rk3=5
z7~wWSXA6$a@~e!k?JQ9KEb~@Cq<tE_C$J$Hn5ura4`)8>S(aGWooeN|asck#aW{;!
zV7s^skB!=hM2UCYWFn}+M_dqx+8YzWsUtGKKx!QWUq?X<K!Nl)aoI|X<mcgHO--g@
z8rqfbtMqep+aU5rDbh-2XCvNb+rU#vV;j)*8pu!VnPuZCp>+Ik`(o;fjF!$(>;Sc}
z!s?dO{?cv2ePwHEAfXkb=P*>u)*xLx6+y)=0!#r7N>m<r)cGvUJ@Qw03CS;4DdZnL
z&8C(s$rAUXcIAE<HCf{F_?Dt)`MrEcrB^o?=!40jymd5o*WWuhH&u_J<Qg1Ri^78e
zm6np)1*Xi#R(lc`P9EBAb*tq5bu8>kgH800DiaID&I`@ls@QUyeYYXi#{i>uK4tt9
z2sgaK%3BR$G+RCTlJiNt4H;ZZ6St^uFrG$pZMGMFt5jvW+L(DtSXDYfX5*xUKIX*g
z6%#+NB5~5xM4P{5ZsD;fl{?gWg~jiP%6O=4xu$F|&U?tI4vCM}IN2_QS=UAA5X@Tt
zL_w$&Gk?;^O`bO`;Tz{~#fpy)xFM8YKg?xo->awDOR!`2XU-aT%pa*Dj5Idk4sY~|
zYV(Z_<ku=VI<igA&X!&P#Wi7+itm3fEwi+NA+s+Ki`*x*oHanBXd+%+PZA)JW&!ZD
zR^<nfwyPQKqp((v(t~}_2qe7p<+U!X=CA!fN6<G05KfA?$w+IL$6{2PwQzY|g=qE{
zCnh#ro7mAsM9gHK7FV!=g!`(1`79deV@!w!m`^_?|H}0!o0~$ac2?DB6E(s|h$!*$
zRN3|VS;ZvzeCz3ZSk|CJsnY%0eP&CD!g{DTeGaEGM4)ZfJ_1N|a#;9?$swg5j3G`|
zryA>TvN;m$QP+_vD-@zLmvEmZ1C9=1IW!5LTM*bLtC~B*723{mF-TQwmi*#x7iaH|
zn#t;&=3?k|Qm?mnVXodzEIh;Em6|==Os*_!t=cIn&i2M14g0(Pohl%L@+B&_y}~jS
zJp3&$cSYru!$+f<`qFT!@td}6=R<;Ld&y?2y_q#_`0T2Q=(f6xZ&iuY?3xyED@Fg%
zzWRe*d&{h6X66G}keK|+xK0<sofm!xE>dXUNKjEN4m6m!t*Of7hiP)*yGx^`Ut|rJ
z+iGnCdblB>)#ED9X>^92nCO^d=Qn&9UiwHkmY*}ZU5oY^<TlScLw*u%$Rd$%acQV6
z3KXAJ)%p_1M2oXAK`hSKjdhuaO?61G<GuZ_91cgYk#AufEq4qd<1xg}Pxn`G2?=7s
z!NH_*-T=Ok7V*PHF-_kDNbAT(Q1|vM49oZTT^E|K1OkPDIkBs25y!a6?q3|s9*Ps%
zSKHQS!{sA>OJT8y0}*gIjt(3mN*+JpTE;lE=C4N`6*?{`AmdWqJKB%5bgdm@Dg;-?
zH&mv_L{^j|yi#)YQeU(_)Jay2-&Ze6PnSBqM_uPUDo3}f>^zdONtz7z59Q{7t3>yD
zwhvT;ZK+FdCb#WTnn-s*b+=N<{{S;PfMQ$LO7!rnKh0v9Ux!gomWbZ}<ck%5o1NQ0
z@i+dOv4*xPk77PfMnXu`ntuF7S`R3=8R)+jXiON4x}mi!LZ!{A4f$;VfH9-+lf=%;
z@L8?7^<^MD<JS@_ya1ZXuqCd){1K*}0X-<ebL#}2wMzRvd##%7(#ln;Kh&VAtE;Cp
z&gv2ZwQ2+PMGk?^70JGLl4oIBbptLv3|IN#_qWW+!QK!-&pR7sX8I4btp@rwW9>GT
zxTB-1G|<q{l<e$@1eGN$Y`OoHfiorxYB88&DQ8UuM?*)a>Lb9pGc~2s95;dGk5b^T
z_wW`XVqbM@Yx*+t<*vEitH7sG!!$Y}!8&D8PfDtF#(hD}&koN&Z<TkIh<%9*Wq8;U
zJ@#E1XLI)e$4!-)Biu)i*xk7pl!dg>Fpm*Ym-;Rbx!zBsfshB^THnYbV!F1HuwJ>U
zZeuNhUq$F3inkFJPJo4Oq=zbpII!lFp#$(t5jOdVhv-qzyE+$~+Z57M*67+!2CpjZ
z(&Gs>8Zz(W%$x8mMt%(zUwHh|0u<UT9s))K3G)1^mXO{D+K-1{v_5TUH8b~fv@^t!
znY&yTvn)Em;T1w3!|eF7{%bb;4dkUP=*;a`l4hz2Ax{MEhbo-LdGy>u*bLhq-PfM&
zU@~K5ed`ry@Rc1+=$2tDXWRQixa($JvsFcu6;9oD;l4`g`pNkm{0~*<CWbaZCl?;_
z3Ye$Zj%%em?BDrgo}$Xm4U{fDuC&t<=q`Nr-m0<rHasZj%|}L$YSIBT7oz+{ef%Hq
zw3ZrYk9o3iOSW2~+}RNovt~N#tAHBMojk!49i3N728&N%c%!746bWZWJt214u)us^
zv&6OR<!9PgjVhvYf~}n$Wnp38l!1-CrMH^<A8!8}w33MFeNhqD9P||!j5{`tnSex+
z$;$Sg{806jz@Y>{CJ^iy2BS&H926#mN6Xr{EQUXmhy)+{@rKh!yV;|<MeXeg^UWIT
zGs;W1a6U6KewIQl%0J#8!H&QU%`<r0hKe%HNo430LG-z!*4bb~4!{V+FQvzavi;Xl
zD6UFue3^Dnw6FIb@X$!xDii9RG+dF77%KLQ+~(Mjs6wQJdtU-Hop!TO;KHR4O?NI$
zeocS`UL!0gre=0D8fQq^kh61Uy1&re6NQ2pmk+4x2(R8vE;bKI?P|=kn@RTh=hxWW
z90r$^ax}JHtLm8qrmOOAw9qk;%G#TdvqAGfR0SzbaAuxha{eqMFjN;@Jh5&Atlk0B
zB`G!YHK)KO>*raor&&kW9PGboV<R$z7LPn+pe)IBAHz+eGyl*Kbr8&A<qDXhp$?$e
zKc|zzVe$c{JwD3I<pM005J?HOhf=RAVTa1!TH&u$mh5)nKW0oghbuT@q=P0~+{I~V
zN{Mj_Z`1!rADlzh1}qd6<8^{oj`<Kc@-Y&|&xgd7VEFScfKE6m!lDk_`}CYU?@~(7
zVH5AQtWD?XjPLNjDCRu0a65XgI;@VjO7yl7oy@TqE?yHJZ1vHB*bRK{J%uZ+7YzQz
z;u*BW386n(=M^IlO0FF8x)P87r9<vbkGR`<p9d3rJzXx=rN7ImL5uz>5TF-sFUA#;
zB_t{uz94VHIJ=b?32DZB?ALsKwBVp&m5{2DZF4cK9-y}OkkXR1)QQc*AzYE@vxFIY
zzk<BjK%gWY&FXRDHpH!?MoD6{Gg{w}znRYX>oHH64Z6Kr2_-C0eamfIhO11j)YP_V
zT2^EpgQDg6s1YpWAn0uW3l;TjK~{@N1Am7-Qy@~F<nnqjr&)xVBmcartxRS`TX((k
z04m6;tnxtZtn73k_qKe(u#%6^-s$1J#pV1nva7=+{xm-;eE_}|hj9Gj1CfsiUAN85
zLfE1K)(;jARz+2dC4HIU;|v>#Vv8@*vGhLe<^77jcAIgB-nw`zWzVxR=F)=gpNwP*
zcaqpFuz^_$$+iNy^o2c}-QW1OzaVdQ<ZNeaC>e-!SsU*EU=p5asoDmuPeMcif|)$!
zpX$o!7|7I>NnErRuIoUEgI-Ajj`6$lxF81ysS-;ITMq&5nUyu)<(6jph^&_y4GOPN
z6b%5JEB)h5XYApAVt=MS*%B>r+-Nl%?Gy@zm5YW1{tV|J0!MzeblucY55885JHA8J
znEWEbtp0ZJMxgb2ZtkT^t<8c>_=U8Wg|1^u`Z63IDZ=(u!HLs7xWGSAMt`p{T#-QL
zmeQLsZH;~bUQ;<KDcFuOb3;_-G^$+0NTBeT@4tQ;N&CUBLR-?X6lBe{=*QT$>#BE}
z|G199FkUnIPKU<xsx<!ca?)y&`^3Gt!hG{PZS&0vIBhkSAYhzclLxg)x@>K1T-K~e
zmIJsaYKx5W-eh1q9hBJ>kpy-=J|b_~6Qu)A)_V94ep2zQ#)A^BYu*u}PWRoeMW+v|
z9kLfY@&!edG@)pPHE%UZdG9t;H{)?TabxxmM!0t-Rn=v)fXt&V)$y)F|Ci@bZ=dgO
z;my=|^~nwQj*0cD1{}aS&=`JLHZPd)YJ2dP@}i-4d}(zihci*s5<hD}XfF^ihk@kG
zY&JrAx=$bdEN-(_kpHtPXj%NY)s}eqVW6QXLOE4Z!gcj%Y3Drqi3%u!@Y`(Yd8-^z
zSTk%ns?KC(HDe)fQW}pl_4P1n{frMk5Jz|*GkCPq6qU85vvaVXO-Pdb7@7SD&K)O#
zT?6zo$912OIj&Oj6k@O12Z~+7Kl@|IVP?-z+nvytZBDg;bnO88!lu+PD}K@6)I|bu
zG$}FZBUBpl)t|-XxOE2DjY3Q1Y_&|i8jnkk^?Wfe@<&?|w;Pv#aGN5s3pJh5%o-dg
z8SHBvtzR5}Bdm&g2@eg;S?bmO$;12D{$hG!aBi3WGh25DK4EODpe2EO3bTR2N38-O
zPviKU6!SM2-$XLYc4*NoV80D;?Xy~|>985}Vc>gze7-}5l6-4dJc{FdD!e$$<pGES
zYbjdjI}^Qs4yIU9h&Vb=Hs71rtNk>rE(L};mF)DdObPU}OCQ|56Tz1meuyEHYX*2+
z#gW;V8Fj;p>|C?br>Ief^AF+I^QwyoM=y#J{1%UaZqTZXQ^nc`4B^%E{Dt!Le~zAC
z>FUCDNAigaxK&&=`5SfZ#J$1g8>NzydG}X(_uIGl6TvZfMQ(h^$jJNwO+gf;#d;cc
zVqh?0QO#Qk(Yw1Fn(Pg#37=%}!<aDp*o(=DOlNM%2>Y`!xf?muM{j|-L;($7!fMD6
zpO9(^UF%XndMv*F-l=S6LG37~-l1Z_P_)X7MrzqfRL~L90Lr_Plr##l+A4O-YlS&&
zDE$X1DI%fwjax=CV3ljq(jocbeEG(Gb*ZVQ_o!UeN6I929QXNt)+sLQgra$PD=`!B
zg|-dA$Jt;p2JC9mmz+0P@Ic-chrHZ$tZL?v@IW$yl6o2OJY8BanMR3UZo56@Cmx@c
zxLyobY~Jm>?5NI8pg_LhyB)&aT~&B}JF(lJ8uv-m4*q7HIUMe&sIVCYr|oNO-C>56
zphA~!Xl86BIGLu^JQF!<5lz#N5MQ}QNH_BEaK-G9!jO04BiQM09zI`Prdch*`(6b4
zL(nDu<9PCYjld=%b3jMCmnxN0W|L)#NQu2sVbQM7g;kqIA)2r@$+a+NjTt|D0@1`8
z83gg8pvFwno6&vitT)k%1Q;GPc0Mt;e`x`9wC~bBy+<(=ZjIW9T^Ha<yEF+JbL!E|
zy(Fu2zFf9yO?kRMV%Xfmp`TiBS{%ipNwqsCYdHPDA~1;=EzcB(Se=QC(BIs>C9j@g
zPQSO|AK7v2kTKRp=Brx5hUpjZFa$5wd12-pCx>1>m#5U?GQmW`m9vche4?JPJE><i
zxD|qOKgz|bdHQv}vfn`jq18g~;Ca!tzep-L_!^RiUkA6`FYptYECHTpjy&74ue#({
zFo{23S)W0>6wjKyN#0BBFR5~QR5Ft;Nn!CEtWc0qkjN6k;xanaf6;xeQ%Q)II6>MV
zrQlV4m+s=t_o@6|4+{E#RKP>OYZZRmDt&h(xY@&4G8!EzKtyB^W7X<{=3TGQ`g#tj
zj)gmwI*uJMRzjmY^$C|X?YRYP7D=&E#zKWkQL#amTLjy_iL0dDW}<H8qRkPoTexp&
zZmCy8d}`6ct16&HlRV{#S8{H;Zw~>acQbfuE1t_W^tKWVc)1QvI)k_%g$E4+wcfCW
zB)Ku|a7fv-Un(G#TvR(rB{2&as)E_(;rFj%SFV2tla!W@eSCEH@MLkGQBjvN{>9hE
z*YGeWvOB}x!;VY{^8b685`jR2BE0b(W1yfA=W^K3Bc{H^P%}0*{sGLv)8*&GiSp8I
zt{kWM%G(_QX4Mt6n$?QH=|ZD=U##$y1s#1FCWzW#vjIQf?h#o$F+kusM|rb+gK&3b
zRWZHJK?2tMHXHD(lDBL!4$$wyEnjt79r6kCD?q@HFu)gS2L#n&@_dmMv(qbB;}aS<
zErz4EcNYg%@7Pzr#g>-4ssL6bI4YMvIF@_c;lJ7KjI^EiVU#{OH0<MhX6HUW$h%$o
zwm?`eF*NY*V-1;E`+@U(Xt@cO-+G1_jdG4hhyCQ|4o;muw+zD<z2nKG3)6xfb0zZ(
zfre&nXv@&#Flb5_*0W>S-|11VM&&_-T!S+a23Y)Z+a7S{8c$@cWMmQ$D4N#0b~c($
ze{y5zG?yTNLO6p&Mar%qtGC?2PrkVEKQGlZ(TGME=3<1OY5wfg{umW)4EJzKW}?X-
ziO}|xkB+E?p$d}ID?a_ipO=Fxq;d=VZ3vFRmAGeaG5c{XH4{eZeWW4+3&|8O3mI&i
zny4zvb!3HFvSCf61DmRjw5R1Tm{rkk@D?@MrGFv3(%y;?HkwSzb^CyNyJnea7)Ch$
zmwYX;)PBzZ_lJhf$Baz${q4q4alQSq!*ZZUcWq`aKd|HAO+hLE`mfiR4Cq-8g*j4I
z4;E>cqK%SnwY-#Lfu>I<7g-+7kJ0$E#N}_|_I-{CSy2j5@G!F#-AlA&p!S0<4ZNh&
zXvSRO*4rf~c{fxW;NlL74g6b=^MGqTTYXVGniTHs7XS0Nfmh>i<lFckKHxByoNU(l
z1)m0M0dky>$4j}&s;&VzIGL76QhfddPU%U0EP1|jopv*e`b>pB!{Q)P8IM3gNzrH(
zHJwc`wo&nYIghgFVSj&$Q-W0--krbgQ(p8vZmQ1*#uB<5*^QQ0uO_jgfqr~<ip-)M
z^IU#CjzDWfaZ}K7s}N+gnUW4!Usb;srK|Ky-|5sVE@C5^e88+Jf$-Gy?5FN|`}TK8
zliMlNzZd7<tMuE2MZCaQsd-x#drV;7Ftx6{sED#_XzM)aJAf6aOo7FBEAwh(*M$kF
zs5Iu~UB>FQaSdhgJ{TX&Ec;OU$YSBs!V#>f%ki>G){RD6b;wRfQ}Y3$m-hyv)yAot
z8E$%J@4-YIsHi;1sESj+X++aY2rtdRnd39%B}OP|C@B#oCv#Gx&Ct^@4P?)}tgPA^
z-+ncVcV!iLCv#GcAAwgg@Jm;mC4!II2aotyehGwaJ8}DVSjbe1#M>oB(U-4TR*Nf7
zfikS2bMCq-myyp<RZ`B|QOggZ;8c!J!!MCICVLQJ5})1rCapA!M^b9o+;DzQa<}`o
z>*tY)fpy@S$?-Vzth@`juuRGKLLgLV6%S_m{0wD(q(UOCclD@!F|vbne!<^=Z?#+a
zYQh^Gj6$KMe%yRO|FpJP^1=JBsJ!M!@qrCxK9X|7e^_Zdh)M7Ep^8cxlULcSbdaps
zDP&)pLRHj_?4VS=jGp<#Q^&DPpGY?*AcUDx;@rtHKFT^V0vdCLNDb6in6z0LLvXWW
zy;X;5F_Qrgxf#mOhePNw@EQ@Zxs*CzE+4zxMtx{~He=i_&2EHKNmVtUy)k=z!F&`g
z537A6LYkDJLP7K?bSAYF5e+f*+i8QgvvW{$gKLFjDjV95l{UBO?eZg^lYP6wh-t;A
z>tZ-z?)W#>rZ*$i6}37cgQc6fb=sTgb&QZZjMT`ES@#*?-@WI0Yg9$Q_irP|GGUH`
zRY6fPvCQp9UbL<==|&E-?LrU{wV#j-vgaVTKMAMk4P<rsUU{rrNq$+w;d`jh?XEFh
zW>?bDp#`QR$1d>p=>T>+pwfge{cXCOf{bjhYGQIy+v4X8ZV;8PcI>AIyilKo>xX%p
zt^c%lj{@I-dmru8aP6tPQVOp9fGlzo3U}wWYKTZW8?(dP%7h`27lUOgkyl4sK9TV_
zai-+(I$J=A=_%VuE6B}R+dg)EGLjsfcM@7LF<+Y6a5|0+EsT?_;}!^bEJ{^T-H3L$
z`11UChm3-fi?d-cEz7<<)f(|d^sg{u-HliYNSP{&!J7Jg-Ja7C%mVSH^ty7$Fm)*y
z@wDf7n_pi4ON@m=362H?_ooeE4)3-jWi(#ICmG&$WZV+)#XyT%SdjF|y|Ej1k9!Tx
zTGQZFmY#xi;WC1p@~|*iUUFgs;WP*sm5r>hW<S$J^p`!)ecV<V?&aIgMSC<w#Df=S
z-2ij~L(<DY!LVHgW87#d%z(?T`<gKmh}D?b*y;Wf+53eqtx7Z93_zt_CAE>Mu5p4-
z-pCjlwC#ri;_mRqM_zzs`|)YhW%WO;@<2>y7f<<st=b6i#mA_@9Jk&{Rb05%4r&~^
zM3n))Gd(X)Qmftfx+}#+ix(bu<xgJJvga{$Ens_TRPQeHH#|HCGL671611$XEA0>G
z#`muQ4Rvi}^nax?Kti)-4Fx9NcTf%w`S4pZbGF~a1#Q2-b0Q_{kdIy+p2VfCM(-+{
z|Hg3$yyLd5q#~x``OYum4JImf!6NuO|6RL6sqD}ya~1neSF%bN1tCEZ*q@74eJ3#+
z8@Z}roeES8>f>PXYxEo(5{SXP<oz{Wlte^g`Tb>aF)_9kj`Zr{!4VM&dxfxL8|8EL
z+FtCUwe3MsABxq)A+Hgk5EWk%tS&?bU=$T0&hXI38!1X_JA&{vO1o1Fi%*Wxrdg2*
zu(B%x!CV%=sm5~)J-(u26K}om_wRhKQ^uNa;*-(A!6Y~_G4T-)1iF7TwV@rH&)x~#
zjS~B7Km8Vvf4><P>A*GzR7=<Iffa+7{NSbOe>nP$<73P9%7;Lyo&b!aU1Vp#(EAb$
z&_Ag*4t)vS6?X#1P5*aP5+On4cdteV;Yt%k#zmu;CVR;HXp%w($#TQJos+qH+3{;U
z!?bVX(`pu&H!E`X#5;_mWxAfxHjSM1mY|kuod#k4G<EejC=qW7hA`W+72Nsc<|SmX
zkz{6ZsK>#NT|VHhC0NY;l4fQFGO280)YK(;O8J}qXsB_f*?MYf8Gc2mZU5^Kl&<Bl
zGLwqwZSKw!39n)yk^WQ?<P}eyf5JV)zJF4t9CwT0(-VPYproZ*HVI~wp_v<_+S|#s
zhqbDBjUF!*y&q{)vQ*cMx3Gq5L^S<=0wy=D0xSfl`r_l+HlFMA_c^J(*^10Hx71~=
zR3jbdtnGpCpBx8iW8XkU{pVM$Dkv&g{j_|*0r4M6CC4^cNolF^N~_C&yPllHU$@EH
z5T&S$8lyGGt*}VKE(5j0A8V*AHDC<^>CI3mbYA}v(hjGuN-sYe9U>AaJKeJg%u_Q0
z7S$DXb;f6m+1v^~bxt3$_Z%X#7&}}0D&1H^?bZE(QDr4kqU1auf<^*^zM_!B#<#W#
z1&4+v2%z<i=8HIU%oGK=|N2Fwg==aBp=cl?;`e2A2!-@IJQ8+x&%Jco*``G2o1e#n
z)DRgbqn<bjZsL?M%)LS+rB9BZ2jZ=&bQxEL@;Jz{&#u=e+{tonnK*omWFOxt*Po3M
zZvwv!E|r~tUO4UTDJjBAe*|o)l(e);{A0y^H^#Ds>)xEb;lr2c4DI};S(9fnno(^s
ziZ5+{F#Ywnl<WWO-6NmQQO|4UEfRz{)l#(|?5pmR^fOCy#BW_Mce8a4S&&U1z@jFk
zjDwUAs+aCTR2TIb)&IT3f4<uoJ`^D@-A_*utO_o)`4L>jei~qJX*OW3S(n7MOJVL9
z!JA~sUBOfl!tOZKu~J`Em_;_fJz%^lXyKISJVAznhD$^{X)n3wstX#c{k$K9+A3El
zygGWhXJkB{L#71=<l?n<MOTyrJ|91R+$EP2{~B_+V}MrFFNoy;HBO(-Hs^_l_p?cO
zxYPwd>H8D`N8Lg?Z(gL|JMcjW^ZMOpY%=0nfXq`(7|zh|gGUzu#Mn51e$1el?|~N{
zkAi|i#=RKJ)>Oq-rkNQRmlr54FK;z$plw0>cvw5tc?w`t%KV9Swhu=Q+RKbHfB<=!
z`&(8fr(>PcXJ^z`D~`Rns@#xzO(LK)|8b@v)RGb#&9*o_(AO99PrDeG&>FDR9pv0e
zo212eT5&0iOH4ed-}P;$t9rG@6}$jW{UK2dT~c5;BuXxwYY*-x`NndNXsG?C#CPfL
z)UU4YSgdAo*JsT-^yz5e&qJ){Gv5KXw7QDL!XZhg`z{EAT{p3Uw3g%MQr%U460rJ%
z$dgSicNdqf9}YdO+W)f>^F|5z%Fjq>iMY<+l5DqnU9eKix?|4gI;29ynAKo9(!5sq
zh6pbQq#K?7aYP<Qe!9!CE&&r!Jq#1km}I83xNO!?VD;eoqWLW--&EJ(#@r~seuu37
z08al^9YDc!RmH+Dm`Ed_5)Xp^JP_EqSD0Czdm?yi(g0*<`>qX(78Rc~k#?s`6PK)e
z;8Oa$o-YVAn{3IN{!;|NCGuu8>No9>whMqlKxhE-2F!Q?M3}i=*jTem%-#qvVTjkZ
zYEv}{V07RhCnepT^@Bp$1ZXjn3=a;<@Gvm3fV-&@42UdVM09kt&+wS@E2?YRa>SM%
z+_w_2<qKxnyhr||dA!&l515tk<F$^7Ndp0A93f!n&w%s4YgzBu<Tn$nJy8*}mVoTn
zOrhJ&ah-b2H^|GqN$~(UoC3`+^VR-70?#V{{FMY~5O>G2eeuDC+Sb?C#l(BJ_Xh`k
zyUL^JvMVbq$FH}A?ConK?oCF9Z2*AE7O-APQTE1!!_ukre)W5uXtFc$I0A%?P$7|C
z%`HpIs9GP-hYV*TJ$F0YZY=i}>Pjz9R`rdeZT4*dLOXaD2g?gsr6d+^SCo&yOPGfA
zUlH^F1P58<-T9irc6fu-Wf>1`*~l;YG(*21dB0yDWxi25>}FzSb|7urUK#g#dC>1F
zr4r^^Gs$ofWA|1V#mBP-{A|?JKl*-c9JQ1X|57a~lfl#EO?VooELYY0bxsG+C(@y!
zrmhb7nuTa5EHhVSBu)o=xtwOs`YBr%$-1_5+P3QVkNo|b0vx2q&IQmfo_Tr)2DWQY
zUQ{`&4fh4SR&+2H@Nt)tkO(@GniM_!jt@LJX|DUlK(;t(zwt>A5RO0-VZ-J3Y$YWp
zXRApp)KpQ43&Ug-S`}ANPzb%pm)oEzZxkXXCe~U)^B7C~4`~1eHb~wwaF(Lh-j_X{
zCwA2KyYCkleq(yn)NQsO-$6XP3jwh)_|@$n6Ca<yNC^IZ0&?+aLYkpY4j_REGB6U-
z3p@h0^O>3!Q5m-qv>Y57{SkPj9-7bnAOl3g0k{c~uzYnk8~sr3PDfo4H?GM{jl7R>
z*5SXe!JpSh2?EwCt$HngVoo`>{6Wm5I@ITm`}a`l%j6@S0-85_-0S5fQ^iDtAGsW6
zSgQ}yU6>xzLfgtA`~xI`B#tA^o5^th3s7<=l3BSb2~L&9p@F~$`uVkxS_L|(u)clI
z$ES643mboaE>*W!tLNkETS;ouVs0Pn=Z8r}Q~GzF78)8`ewE+69AeRu-&~-!R9A<L
zgiJfV9~6fPo{wg`a{7$C0UgUQQD1!E(7aMS1D;w^?ommuyRX`$rVFEdVT7w_4#}_Z
zib}QCJD1@X+SN+0=(lP5sO&>ej%1^|drHNWkE$Q|=`!2+skcNC%DepxJrnW;HU1S6
z-b^<G)t|(WUpOGChMP?I`Sa(P%*={K+`XNc=QB`V_|+8o58ZxHw#yE)d+>-|znFcp
zNAhUACC2o;rd8GV*Z>c&2EfR1k4Y(==d|;!t9s4nP#D0z4zN(J_zs9A7cSnl3x0FD
z7-rXQDHwLh^L9CI+Sy#R>R?qJ=5sulkp+Il-va`hIzhuCT_`$TjMw7^f!@_M3I~T3
zpo;S@r}zBa_72Fh+tNDcp!kgXVcndXc5^~6VdAY?&jNmC@~<8=cc4JtpJFqA3R?m`
za(~r_$!i#UN)YyTH#c%WuCMXcD2d&)2l{`;^uNG1(+V&`dta;<W%Ff-iRbI1MRf!S
zgVlvP^RjFrNS5}pf(g`~Oeg|WS~fN{KvSuVQAt_3&I>|FERW&ZBna1;;~Eg*9t1p-
z<02c>fZ#(C$^YEAH6WDE+e|d`>T$-pPvQpn?L5+hL}LNIQAmQQqIqm=0cRKtdf$|9
z7D%YOJ0LUB4*{|4n*#`*gKssPBitub7O!?|Kg0<<@`l3Ox)L#q9&h>;p4WU4E<Zas
z)DcSMRwb0rUUFj(_|ouU=i15q!<Xau0o99;`AzgIyh#*Llt?=K;G>#P{saYTgzQGu
zrIQZJe`6RNa+1^MnOxc)yEbNx#d##9YtnICPMa7KLktypEkZxE&?tq%cTyji*PJ60
za<lz?WNIsc5OD-E$Q7OT6mkksM4>1yPG+)Lz$`8*iWwX<Tkgop5`np_u0B^`sUu8g
zq3SDLp2%;i_Iz@kSJTVEQ&f&8WKau!mYTwpX0HCY{oPxsSj7K?c9oL*9LCtXL5```
z%>-+{rL=ri`w$7eNyyiDyXfQYOP(4OW@$Vn;)Z}kBN4Z}+`*2G-c{H^)<D;p4jHju
zHlB$0f#dNwDF2i&2c+-X=t}vZE=|7bG&0(DFl>WMgZQo!07tp<A|e~M_oX`RJ_LuA
zp>nK+5uQr$W3*AW*9CRvNyg>@M<d*Ql7x3VMpS>V1~7R~FPF?DYT5DRIHYM-z5z)=
z?PnJ>1#y<L{CaHpyY>Gt>v(6guIsc+X5G4wUVY8>JUAB*H&8S$Xldmu;l+PH9%&Dq
z<Z`h+&#-4JB^BbRcdw10)c7-nRa%_i4-r{TzD2mU>qANRaqXqk@>JWyaf>U4QzoAW
zOYU|M=#im7-f$Nt%Rk&+;E3f=gyfhCFxqhY@#DvMgTI73aLy||Peb1UHj}LrkM*1F
zIHB-CjBBCY1xmNkh!*hCXNP;9<L{o!H#a|`UKJby-UEBpE^bG4voclVB<{BT?YHYN
z$~>Fnx2c^Fe3kv~&ZlKhKoi7bLj0ZgD*wx!d<CZ)ko7+N!uNp79KbS3%g%*+b)l}O
zH=^tRdH=JCGi4Nc=eoM-*zIyBliA|%0&m21m_vL+LU3(7Ymo78-2dMVfVDT?3njK)
zGytlE{yaT9EoIPe8!9h&?T80bDV%t$RMBhGgoTqQJpoj`)KS<@b+>x#SD2l}X@c>6
zqD&tiQJ32}7}VGNzH3~^v+_B55;LVRifjQ^g0V75?^TXW=~NV7a^f|<Q_+*v_f&~N
z9e4K#*K&-lz~=}-dexUwenGtG6AzG152=L^)K8<vpfOl$pRkpb3rmcgv5X$~Xo1Rk
zNOpyMCd3q3q-KR61|xRO!YWh~rO}CR(uM(jJI$M9qvYy1t_a!EC$e`}U&?xOgqu4c
zYA<Az1hG?)&WS+=+3TDyb?cm>6{{IZ(wV&@?6oAHm_d(*Rwcq6EhR0DV{Ns!V>r`i
zbO8mx_PrqzCQc%rcUy@wgwOlGApPx715ADTC2s&%w*v_W>lDKshBV*CfbVYB3fM?Q
zxQz(>kCoF_TZ8eSI~0D70E%BPM-b)-@KUYpd-)#d&CLz?z#s7q1FMkU8V23~{wGCF
zhDL=<{r){?>!A!Y4vr?Tz6n=4+k9)^pB^tpjRB=(CYSS%ZTK84zYaxN_(h(34h||h
z62^1I4;ZU(4`bNI5pfnlj%&UQ6ClA6xE(U$9U*l8C=l^(Hx#(Euv8ITZE}(O=bXtR
zTEM-P;w|jVyUbCZx~9qYVzhY)L{7wKEVuh*;pL%D@3&<^E~j`zDVY@pu{YD|`WC}5
z26*nKr`qYZgH*PF?XjsM;eA)&I|E%ixKz25ju%fFp<gp)+Bo6Fb5lvD23@o7R;g#|
z0ZX1zPG=&x>SghOUDs1p*))#v^Jrbb<+<8u0RAYJIo<0#HdEuK9#BqlSr4YLAN+JX
z<9R=s3C*@aOuP=nV=K`^W)JNP4j|`(0;GhWxo*2VF;ndg5dE;tX%1KqvI)nc)}sFc
zC;q*mzk)@8dM_Dgm}=e?>qGW_ZNENxEVM^cdNVscLur#GMfVMttKDMQVRH3`M*wOG
zSL%a`_6CwzvLm4W7EHCj(dt5QumLdU%D^Py+wAP`FRQ3M_K@j7FU`Km$#4huP|a;Y
z`X-$eM<$j)dQled8kwa50WD+_i4aN(4AN~Yb^0DM5OLqjexERYf?c<LxmGxnhCexD
zF}pn3X6)BVCd2Fw;&m6gdj~+Rez#yipT`w|iNvNWN)E=b>Uf{y%KY@RNmD)?nFPB>
z0`qM*4aeyRfTuFQ<D=VBn}Bo+$oYaZ%zck00dEQXCGs?+|7-|n4`g!GXC>07c5qz)
z@ik49024P!;==rJn0<AMyNC$dkHoe&2x&nQAgw%`IKm1G+}w1$EZa|h_OWWaQcLD?
zD6zB~qHFl>i@;~9YxT`~-Z(MX2E8Xam@%wOuT3l1Ht|P==M{~v!_(EQ8z*-a^U|T5
z7<Uj_IGt{@3gR$gvC;<&9cyn#ww_<jfSZJO<M><#ubX{3r`0i%PdgAvsos5|SF9)b
z>)8LjKrtN!JM?S^rv7FYRLqW{p2Z-+eocBuj<=sp)}A@libGsp*(G1U<{KYPOb)7$
zs1Q79^?TCV`B+xjI0E0C_F?Ex9SmrQ<pr9bhNiGIb66F3Avgd<2(;4f!qNE<LxcOr
z#Re;k+nKO3tvV@jb$7tQ!yfH^alQ-UT~87sAGWXldpbJVSA#E80xcz_2}Lw8%f)(G
zc?&ku9xqt_w2Hd;s}u)CL{o{=|Aj34QILp7f34^ob)pUeF=+SUn;g-xI>i0#Z*C4B
zvLw^eA7QOSh)wwASN93Fc>%a>hGSh!bhJTTP3Ub{V|hWnUNv+`85`xUi^@}~^sM&P
zb^A3Fc9PwyjZ9ne5Ny3^z7sYq@Rm2c><5gq!$>VMPszVL8#6;Y7&T{EKsXeudN2Y^
zJ^Be3d@&I}Rj|(<ac2?r_lztL4ocZ+@;%=gJylb~qc%I8luHL;nqs_7aUA8j2$Ra@
zm5iJ%RcBCM-n6+r{WaszVmGTIG#3b1=G^u03g$uX(Ea2{uIjmM=y)pIGsK%M)20B%
z3rplYbd)#loO+t)r2K`0UvDef7;eBnJcJTi!zjBG`Jr`Uw`GK54}iBO+1}nBm((hN
zDv$uU!I%Z1j&CHCVM77zdX?oeP|ya!H+nt^t`=MI--bmI_29>kt-PC;BaGsX>r$Tq
zrr_TVUmq`<i{gE;u1ZE5<$L(@mXWY|!Q<nrtrd1yK#))P-S@Qt|1Jv1Ok6Pk{!=U+
zz(8)hRu*@0!IcW~3kpBF4%mM}?I2;XS-vlPw!nB!)~z?KG3<lJZT$uaEEeu{9)A*n
z?u9oK*$}2)2BO_ch4Mr@4)zun^C#!<&vH?YnA@YD%@*b&#Xbf#1AbYvo<FElO#`e+
z5wMs<2rql&EI3RIB+?CWgVhS(`U6GhYP)Kg=SmVKA_`HwHIQhKGBYcSqkK$RQyUls
z`G*7gE7$@gNGv$$kYMv7Ah)}qH4hvil+Hvby^S^-weknR8N!!GczV5P)zB}1z1IKb
z`f%QMm~~bo@s}@<m?+}3nO_zteJSw=7P|#7*mW~rsN}+<%wljiI~DCh2zc=Mj#zO}
z-Xdr6Jqc(=)_tCC@G{yt)t~opzIG(vfZfNwh)xdgawNc7AbAVv{%KAk6s`q0-=l%;
zAk{(G{Kb4`W=2}@gZ2Z|FW0}J_}}8O#2P8dSdEFipesU>ZXCPkqjP94fB=3w?+r$A
zz@ic+yk&m3Lo?z3VduS`1Y;P+mz(3|^NyD%`6%=`OeF{$->B079Lx8Go{`ovhBs`E
zmh7KQjc}7q?TQ%3-yM7<L@bU8?+SKq9nPdgG|$02b@pOP%lxM;xu${il>y3-MPy%C
zgxl-7W%Wt!A#E*kA3%6J$kp&3`E^?yr*~Q$kIYz_33{!?U?Ioxa!y~(2WL1a1^k>(
z+HUrznu1gs9gno`fWXqWkQ58(wYr>kK@1o3_4oDt0F0DP=%8gJB%)eQ+O@5~uFUL%
zPynU(_DXjDsL^AR7C>tBF!3n?fLk#LTz83FfYKySI1pZ|7jl(I@3fA{kaz;718@`s
zB*l)Mz8UGxzpm|C)iczZ`~NMZ|NM;}*ef)I#bKSLjwc7G+%9H~=tZ)0ISQ_A52rdb
zBOYdmrRa0OhIfra2maDDNzZqZ?a};9{F2NjF?ldbh~7J5-mrLdQmu{$=IxAS{zc{|
z90g-J28NrG#o{D>&*ug7pX#VVtc*+_v~NE)zWb+K*xN|(jV2WUL$(OZ`NQS4shDXe
z4w0Rbv2LUI5d72t0OO<7PtiGZ>aanKQD_@g1NgBICms3-oF4a=V&LAN<Q^FL`SlUY
zPOoP5XQOZBxQ|#Kwn*p~JwAp*-2laV9e_>)Gcn&dZ6azrUk{qKb^slr%hU#Nrw<qJ
zMWPU~0WfTI->DVa!lDfojBSGgB*O6VL)Y4=POGyGvuhR9KRo$CKv`xE8_`KvY^NT4
zuJvyeLi6THRO<RD+V~}%;>s-Xvw}wBl!|&t4;Cd!!AL@UsNUoih!id=@^MVbxl+YN
zE1veFVMJu4+Mc-ZH2e>#I^mjEz~OxzGRyStH53%1lA2m^8ts<ekxqGpPkOfQfwV&l
z+M=VhgKSx2{3$gtsYb~(l2D1y1T?3WvzKNSopwWLB;b}x-4LgyD&3eu1N3}89#TcM
z^%>v0R!$ZVG@VX;)NC}&JygEvHYDkBcsMs}z-MQnRA{g(c}NGK2=`jY(DJ|w$c+@o
zZQP5_5E7J2OD&G74=5EGrFbH*_2ytTaxpE{#N&Nf3L)oSu~JfMKG6CK3~DJ+>K|?w
zOlZB!N%MGG7Qb{s-8wX787|F;vhsuy5fKSO>fxLo4PjIcwDY<Oy5BJe{5{TrXW;;2
zA~VhNe$PjRjy#;f@v}bQa_dvu0>~~@H<PrT0=BIm(g`d<xO1xBad_FZ9##*f@W%1B
zNdd`j>hg&xdu=Ev<1FvZQttE9>7ymVQ4=TMKio0^pTw014N41?EsT$kul9Jj7E3g|
zF)|=2;ul;4;5Y{sKG<r&wsgMIKsa{;(0A=@t~VVgE<M!#s)6)O`Gvl&a95OD1k3L=
zfz9Rb5mSZSj}pRM=lRygnQHhHZd`G372QQJtJH(p=+tWMMMXtrJ1&ax<Mdb06{ma1
z&9YPGlFa}fT)_1*<QMEYcEr@?87}-EuG;2spKzf;;ey2?ZjFIKVW2ZTCn2r&4{ag=
z;eS&~@_N1hrj!6fDo|U4Lz}IO_%Zt-OuFR?>vgBQn7m2F3@fQ5+{%eVRFm|xM?ag8
z{^*y%*rU^GWIYTgG0G_^GaE0|G7jFU<m0MMH@5=-093`k%HSjq;2^1_IHlCOK&P8R
zb1++xXt716rNGWgCTXZ^pp?_EkrGYDEDj$hMMmvzawj$)txstJcbq#gyrNG_B=wWs
z;Dh{pR5}IXwSVy}D%rj-AtU8j@qlKBd4;9bN&&SZ(L!eKg27VAJ~kb77&OedY<VV&
z((DcmNOoH~r+%wTpq|OcFZpr<24LO}td`zE6KIQ?K0-pq-}ClT^ed5d)>+pd=amY3
z!x6#6`kbPV%oBI-A}%k2U=XG<eV0K@kK+gWp_be)hVO}qx9M~m6%wP(jQ1w;n_*2h
zU*TI_vHNf|8nxZ??3F0!t&36q*@|RllR+SeRJ0I=zX$V1tm{g~!N#U;n}R={VLF5q
z?-k}C(_R<pbNxlzPj8z?9*~O?A)?O>5EVa;WeNIRzvf0K#vbsW{vT)W9ADSAwhcFS
zqc%1gt8HxCwj0~F?KW;~+ew2qw%s&l;}v}~8|R$8ch7Ua-}_&itjx96m~)I97w&R1
zkyoKiKzbuxgBS6uSdvYL&X=lv6ICS+3a6<U-!p$GpR*JZ=1f59X<VUeTsBaC07kf0
z4?e<U4Pdb}RcJPjrn}=4Z=I)@fu|`y0Y&?M1IpXQohux^jCsYoh5}u5s<?!N1kFRz
zb8W)W4bm^$I&B;-$FxuPJG@S{0OF!Ka(%L9lho?CXOMIR)e1eVv$kBry|1t6m0G)6
z03zJ0|1!#rrmjmNxL>k0ylCH?T_828S{YXV`fZVnFnDZm^dPDB?%8fk#!do7DGckc
zx*BX!;PuKs6twetT_!RvU@x8O6+Tuk<5-<sIl_g7CjQI;r~113Ip&yJc2S{lG0JTJ
zz}$k&a6uJmbcAnS-aIB5dSVTr>Ldn~NY&Jy*PGId!Ch!cECb%}<e?~RmTH7_FY6iu
z#$iYb9;n^dy<bBy>Ik0(D3_jXDmAOYK{&umk^!(I3pFtz$rXS49MvFsK&w-{2Kl2V
zQ0+UvekGY6juTqsk5AfDW+#!vcvjc3GF(%B^+5}-^ra9JqLKlnqD}uLkShlUAW)H4
z9lU<YA@o2qI+pYjZY6J^YAW$&><fd<9Y)xGBIV}_%CN{IvWbk=@Soe_#&&UtSiHi(
z<L8@Q-Yi3m0FHp+2Uu^b8+%-I0Iq84mlm^S)q__(%yU|#K+y!8klShYkGDHZKx0Wm
zBURaC?Q=$2TIoSG+$*XeFC>2+Hmo(b9sEzcJ{>2<ojV^~SiLcD9F761Z0D?@f!5uz
z6`O>9sP#?S+I>Oy4FJm|XFVL6a9o}NU{G6ys;Wm|XHlSDRXx%Zj~wFsq7pm7ug*h0
z%{QkLqJ(=ty2s8Vbnkmk6si|yEJue&uZ)z=tk~=}g?^+&&CH<eS}oRnYYdxf=EfoR
z<p1F5K?(~N_pMtEu>YdkAAa4hi|DflK(yr+S3T3kikBbMr-_$>I!B7HuIQ+2mYd{R
zVOskqNxwW@0yZuCDQ9urPnST(d64q(IJ^uvd{@^*&F5kp<hE7=O^UP}r$A(Ec^u>c
zL`>6f!yF@QA+0)7Po{Vf$R^`p5*I0DIvp5_x-_nrs&jAgx@-8`U+yb=X*NDM<R$t|
zVY&g1NZiPLi;pGE0{=)h{2GLaTozj0*@5D|NU5_PDfzeZUYpNXFdxoYqCDIZMsQFs
zbl&q|&1ciQ(z&JD{SN35OUV=NjNGXaX1Q)!C7I8BcBzud;!(+0Rm&0f)rp!3GYf%r
z>;LT6xt9fUEyg(d?3ImUa<-kZ=?Ez%P=}!Wvr{?ka^l)*4<n`s&Wd>Zo#>QxOZa<O
zib4MqZcfdtJIiKk#oWLU#wmhPl0@lt8_v2u4knCr(+@j`S4U4>`Opn!)gciZ7SSC@
zUd?IF9hV(hFnDq(ABm6Nmj8f^JVo~BZf&vxMkBg2hEAB9bD33oiHg4OmZWbMQvCvl
zi;hm3<#qK*#_cW8@oj#%S}LbU*}x9aJNZVDH7zg-)FQjnJ!_ulQNZkM_;feGcDY&R
zDdGy4Vft<*m8%2DC*2dw0MzK>a6$1IU~9(+#Y4Td0V;*r6YRh;lnWdWparu9AfFha
zlA@7V#Lr#y$A|v08KB2V4B%r0W+hNTvtiT#yscIUByDlPk*Nq6ua`}Yy>EE8vfl;%
ztA`W7miZvSfugBnRS5nJU+BXrss1@-uL;mzqUi&w7f0TkHvk~m2W^<W35+|b+kXPO
z?&?4K;Q^gRI?)i+eeNkm_gdgE&QLPl)Fac)1S6}bUjO6cb!S=*kHOI!!+yfYQ<&#W
z9Lk&FM!xzAnEtaQNpuZd%k`3XGC@_>YvyMhe`4rmw{D~T4+$^X(^hQVx)o7qVq(bH
z(-?j+H~_M^zGy++K&J919uD|~NJ{xd)RG0z3NqfCpKp&$$>VS6wt@Cb%e_t4&;$pK
zzkq<|?yPq+oo0h+=h8++Bl&q_os}>663K{;p#h%{`U#TlAexC<>no@pyO_2q#;u%8
z9<LU9LGC3bYwMLzn}25UN6EgZiO*a=s1SeloJdSaUTJjzAL}@TMU3ZgNs=KvM1*Tp
zfF5hP7XS853>|hxL@I+$GsTB4$(Vf7qnGWQxNH)@JEcQ&EO{i}pl71;_u7dB($Ta9
zfti8^iTVonAB=Dcqa>);ex@FPdu&0@V^Wc+_ti5`iB9K0L$@SEtJ<njX>K}PGk;3h
zvD4hCmm9Ol)NiNwqGPDh_~4vKXhzk{8x^UlZIJGZyJK=BH&jhylN7>BVgW=|3$eXV
z*#mUZQYb>E@2I>q-PeTKIWO9-@UuD)7bo3-xt8I>yFRR^6KW<33h@Li+}sbQh(5iB
zI0LJnq5avAspN<(?{3F@teHdjUdjlv(Gc5P3_k)v??9<NN?Y^+C}QfTfL4Hi_jAd>
zsdjXE^)}txHk(Acl8KEORUHLfgjD4HT-A5nmwG;}jncTGxIVW-x-2L-Bnq1+K$`Go
zuGZ;5rJV-<>E*%^kQ>;Xo}f7^eYtgO8=?2)TD91?|K~k<{>iu&cqsL65E9j!0OU(q
zA5enl<%}v)FgJh_(Pqtlp1fY<6s)^`E+b9itLE;K<F>DXvpDIwOK=@O`hJ5UE!alT
zsNYw&xcO>YQC57d!>c~VbFt1W$~hqB@JEWS^`vO<<yZ#i+>j{r*{X4h_Uvv`lP^+L
zXr`&>Xi<RgxULevRsb+PVJv+5X87G0tWZKf&&@i7cHsOuAbEN_0}2%jZ(MOsQ^oi6
znAbz(T)uQinh&R-3rCqpV<MWJ7Z*klg5P-mnyRXOp?N2>G$m43C@?iI?w_oWt__q>
zLLT*q7x<$@aM9rj`|(~1HSb2yAZMveM8hPkI3H`$E>A1wN6}uPQFrTafS9eXkR(vl
zNb8Ty|4rjMan`ER^E+lW>}L~~9!WHt>Zi0*NKz`9ZmaV5N241b8dNZg5cD^i%zIVo
zESa*szf!g|C|P%7`pn@fsp}y(kIctbf2%0`vs5Xk=Rb+eZ4zP7`b;HOp%TJ)B|7^1
z%oa*D;jn6jkU>s0{Q0kRfNYb1^=*R!LVKh`LH;#9CPC3jia$xzL!j3IpjGK$O_1qb
zE-Gd%c9m{FK{eoKgJ)>Jn1q%Q3B7te&w2{&%ov>)kNoP1a(^4{xiSCccyA}mXH^n0
zw0UE<p78RUA1fOs@l^l>T5Ho$u(vHOiE_BOx@BjF^$G_aY#ZP`P`^IzjpQ$MnAcBl
z=i>|<E9N^}04_<(|5?4T^Q!EZtxup0YMR;=PcG?r6(&mHCX|z#i~C;0ku!7%#cM1J
zK((AyoD7Q{%Ap&;S=4kLMwtEUTG|1|#QKT<8oZf50L*ub)JxBsBJjQ<dDU|g6dKT9
zHBnbpC0B`mJ&$Hl(Fw=%Hculs8!fHqDEJvVg-Q$b@-lh?a*zw?^QXJcr}KkK!8b33
z_Rm*nBgS52p*Ahlb{kaKbUvtvQoJwD^14f{zb$?C8YJi8(V=fz2M>#koR&U9eCg8u
zVRV*<g;PM!$SWgVTXS{ub_3(#J)_oO-^6CeKq*9z5J}w|9z9RJ8>pTD3@lPef=bz-
z^S|?rx~hrw9zz=m<@*tQC{jrWU2nrfJXJq2x))5VBuP4+yqam0DG9%lm{qOR82PaJ
z&;&SB2(*wPy*81H-8xw=Aq6Ah&~pt@3p-hmT~?;v&ypa&pJ}5g_uff&h{mAs0{Yc0
z#{ijG8MTW?C2ov94xq!mzGTqISF+tN@?|?-sMTfX6PQjtXkWBiR3Zb2F|RE{187W-
zr>hkTkDao@VVe};UW7QGlnwq+P|_hMEMFmMl)^3_Gt}BZE1EPi0&>zOG#qQ?39#HA
zfjke(IwdMF;z`If$1W_F*u@d}fG@>$bxOfw9p%E;+>X0)?cW^+qVe6+8y@>%{Z_N&
z97rMEuQ_UJV`EXoWn^YMYf;cxSX;;xe27-)5j!zOdfmxN!$L#HWi;<So*mDD?$qRg
z`RGS68~>Hrn?{&xd0+-jx;0wfBe&l<dZz>6TspGvP=_l&?okKl;Q5aP3h2Q5<x0OG
zshyJHl&-=?$HsdO<F%rAM{Z0VLqCA$as31sN*0B2UhlXH%q27DodE{MIKGKWzT%C)
z(u3i}gmgNM+khgx`;54k8b=KE5c>cT2bN~|5!w4kP7VpbyRHz4B~ri`k~;tTPX8Mt
zUEojxMLUq~j9@^%EG~`rb~^r&N~0|dyF4zF1G$;9^ISf4a`E1u20TIuteOEbn}b{v
ziobtwQx{007Qg2(>BI(1U?J+-NCdU?<G%!$d($(sAGc@auN4IZ>R*&r6oaSpi_Jw`
zK4*9sbQ(FNkf1B3BRq3$6boWun&CazaRZ)2h#5ANtIzbri}`&%Em<4`H%;3XFPS^H
ze>i~k(B^scF}E^bcWe|54i8(Rd>-LZ(WF*H*?lm>L*~!EhIgICfR#g;$KZjg_!njW
zKl`1)zt@E*#t##_?WiA4HWuS9xR=?H0j)9A_YDzs^-mZO1jlTLqQ5}soWZ5Tz$Qks
zuuv{T_Cr{l1J*0H`8d{s5ISphe^L`#s#*ZQ?xO!$DsSea&s=}0ff!nITsVsRP6+eD
zq=QONI&FKEwKworrQLr*E<}C>aPK)|Y=lT(J`{vpYdI0e^K&u=o<~MROwl|X){ZT9
zhc^rT{TBS?3co^fet*F!ifIGU_|xMfIt-~jr|d^Y{xy`zl&$UUOg7d5PU8RmhyTa*
z**1XBYiw)gD`@cYofRXf!AVkF92FQdo1(6!MhUpUR3#tU;%WH+{lE?tMMY9zJcSDG
ze-Oj}c6a{o|E{~D0pEa;x65tbAHY)&FtA)v`l|H505<OcUpA6}TVr1t9$>!X_VptC
zGj)K0eWswt|4wcq0R!7agi8r;%V^=r5iEl&iZV5%|3o^p`iTOc!{xaPx5sUezLi%f
zp>Lf$JvXz*0#;(9XB*m7N<+>lh7SldX0_>nLbbTKV)6*+NuCV>V^=f)2tB{8O<{k3
zpPY>iRuZ+bRisf?EHtjBMgnM90fEQfDY2=EZ4XH8mdXJFdWnU3pSC6qDsi_$dGrl#
zb9SA;DDJ9mvdz%!4nGXbO4M;0CAJ5=k)d;DM~Bf6y<L%;Nu*TrwW>|>O%W_rrTtJ9
zL55Q+(0^><J)Zfj!!Hw(iTwRG&BapzxxL~KWgRf`U}f#d`R+%T#Q%73*y7;ul)CXZ
z=^Hu0^L@1IDYLvH5Q~E+8p}0-&7q{KdZ+z{KmZa7YR|&;t6vDbXVp69Ynp#TBc8Co
zCfF1%J7y(fVp99*Rz;>e=N~RKhyz_GayDA6&e7H*;^GQQbQj|wqY97=D3VJX0j!i}
zkes?BA`$cT*X<LY34eh)&6{0@OL%}zlnd!?T%*?w?gen4*y^k46bqzrNngKKR#4x&
z#ccvQZRQpSWHdCg0s{ZeX$C=;2gaIiVQ47OU#Anv!kmJ{0eP00Nb)cqyBu{=(P_pH
zTw_u1&sw}@c|4-n;2q=Hd~k}DnRfUWmlk7KpYH_LT`JH}tjCrZi1%B}OhAUiPMp_b
z5@V3X3g6e4*V-yQYc(oqfLsT7BMQKU9n|4+d;v@E#q%<gfCBuUD;nKZ=D$-W$!sT4
zO&b&{weaFMU}tl>lH~*lfrq>Sz%;stvWSxy3G%w^?d^>wa)cjKtD}F>`@%u_7j6Bk
zlM{8gZuzSZw2g~1rKVo`6{b{+X>`ogi@G6!)@W!va-uMi`-w$RK7DS@3JtuvK<K^{
zf>nwG%jI-Qawp#sG~y#g6yh{Q(Nk6~4h@7s%;_{9V)+&bCrJLg?kKs7udpex33&jA
zyafRnd18~#gEJH!mCnaQCv%kyix8XM$-Gvp9*03DDI$r{R@bbVjG})?)S~fg9)J6#
zn^94?UeTfvb+>MMIQTr(Vt%D8_M)oR=k9n_t%_Vk=Wu)RCNvUjWqHVn(MVMwz<Y5H
zh{bB)Li$CGwCV~o_ip#mb8Az#=!dnW@X?{XzaAm|FO}|}DRsIOBsf4#_apKidCN9G
zFsmX~2wMD5zgDUM#b6gKUQ1y*TQtxSr;XACBy#ZJF%P0$*nfYv*FU228M%IZ0F+-&
z)J~N^Rj8_@q*ObLv2JV5q*sfxgaZZ1)@w)fK);R4{GD38d6#)5r(!nYcrMJbm)eP8
zac1^?1~sPqV>&ew!?7X2Vc54>26*bGX$qLqoFN*GKk>yxM1m_^N<2I3C3<0hR|Y|n
z-waVx&Khu~&rvdEue1Psnu9A2A7gF?dw3c_^Y6t}5B0GqJCEDU=VTNVL%{rBBfv>8
z{?n&D@?fDgLo2|EDLx~^Yq&sKLSoV(zp#+7mYp5-|6DG<CDL&cexhXLlzXBijwW67
zy?`^d7ja;$MXDZ{5Sy7)u#iwVf4@RH9wbp>z;CGlnSWP80Kv&5O7?#vgZvwjTvtOg
zbsp5KrR2g8R}|=!63xCSDUD-$O*fveK+r9rJnioZ=v`Y|W(g)C4}@92k8nW>D0(zw
zYcB-;ViWxPy8k_xM8o-EAb^jQ5Zwqub|rM9fNch0>aby3Ctd%FM)1#2^7o&N%fPWM
z?zJ>q{*MFpzXwuWK*emus7Chx6oiTVt|WZ@yRJar>{kB%(S9RB{O=#?k@E3pBSA;}
z?^pivg5x@HK;EUp%U+T8|9DF*At_-2zTdBCL;rv7=pqfUfJ+Ay15W<|?WBfrj{oTe
z@b_o+*M$1t&kEltzU=a0lK=WAbsT<0FPX}D-oX4{_sj1}EW4>{y@);y6+DJo=jDGP
ze*MoC9|(Q{)M&V)=|TTk+I2E=6uj4!C(Ec<WKPG_alS9?f&(RmS7o%<K1;e_0~P^g
zS{JF)vrYLO6*2<a^7i{dszdRtx{1$S_nI;xYRPb=xfj@M8(h!5s*K{H2ehb|nB>z_
zfKv$gLAAKUy?oh|xamCiCtONJPX0SwiiU|v@f%($T*{*PJ&U!ivurh!G$G_F>6sn4
zxX4jlTA2b!>)3sS;%T+2<$)O`Vs1&A5~U@5pWon3Ri-`TrrsIcaT@>zN(PX8fRU8>
zI+sqZK<z}EegnxN)GTwKwuS%qvh>fx{Q36ry@SO&g7tewl?C<Cf3fx0wEhL@{Z%FY
zEDr~|5_iz#uot0MEI!v^Th=St2inyc<dkGeG8wmq-?T0>AVY!<Qq;%N*&PzQDy5!b
zz0!a3dbM@s<Z^;M)z#gAK}}@;5W$^}N3OlA2sr%8kVqIskXQO4N+MZ<TqBTf<ZJwJ
z`<)Ye|LZrz{C;nl^E=CynneYa*`?YsY*s%HL`0S+dOv`~<>ljaPDV2b`16j3|Cbj6
zk)H~2S7LX$e_X&X9&cZtKOiI_*NF_r08ont)$nQb@eU&Vr2IJwaaBQ!1Rw_#`vY$g
zg*{|CeE)4^o(Rw{ORQeeq0LZDq$2jTthBml?u4#3S}wdHZ=*>#JoKdNM^NbDN<lm9
z>lc9|fqaQOD;fcDbVNiQ85$b<3@1HK!edXDC-5PDOvhrttv$cE@p~CET^g@BB44g!
z7q_8M0vS?xc~n3G*<w_+U&~!72P!G@ZG{gfmk~yK|Gim@{&iB75I6)xJ7magkNST<
zMgMpP*bKnIxZN*&8M1yUxyXhk%J@@shCTMX=uD!KcUsf;OYtPw9E<6;EwqHTRn+dm
zCH2qD)Pdqj1VKDg*6F?5he&-JlR+_tLq}?`EF2pkeAk#x02IXcb0ZVaIx{LlKcEr+
zQ4%yy_eP>7v1x1%RxS?gz==a|L{J+^>H8d|e)fu7h*F;zm1QHqHD0JQOF#r>odVjI
z{1S<LSsuS<$u!*C+L#6WH-KQe84ygzETq$Yg5}lxAEjelZU%n{Rlu#{ufDQq+_SKQ
zU<HgnOEYYpXd2<UZ!O!r$D{spI|2<0kL0*S!mfzYlQHy|2tE)6C7H{v1gL!mN0m-?
z{Q>4<#J>)OY5%tMbs{NpYnLd`>lJtG_eF&gGn&OY7fBxV4$T}AT3YFj<qR`|3qO2!
zkWLuFBv6`c`$XWJIi5uv<+4a6i2l4nq=CCAEEPU3-{uvG9+VvU)a;D>^YZh>?d+;M
zQUKxCzI!OR+5bEjMW4mtq9HV*<i7}-(nQ`jMs(ngYyo6!)G{TKSK{AB-%Fx=Y;_8-
zX1!mIa4K2f<dOxg0g8N}lPcyU{3)C$^sE0R8XktVe8#`M9~@UAvA>fsGyki;C|0=b
zfrpo<vt^)>%%^(^7cZXhR~%ob*fWma6(}PxzzouBgD>LLlAPIe;o$W*By816Nyt<v
zyNOA_1-h^b6wnz~+XQ3Ku{Egx%S^@Mh=>c0n5$?}fOY?iKJb5@d|l!)UA0k9WFcKk
z6hQ1JVyx2P@uXMn$Y|93AoY_g(W3IY=Q$AKae^1VES`L__Pn)^7HVx%yvJ`<wte&G
zHgSV}?&Uefp?w#2nPiQs>kh(($-P&`!2ITWrbyP}pqfG7WGmZnxRPlt42$R_EN)~;
z@olL?IERB=W1XmKseOr*K!`l&62M%<;Z6sYN)|oo1`!m%xl_>2fU`hcKp+wkceaop
zs0&C*NQ^qe37R_V1fZP`$WS2O0L4K6As3Z$PtO#{IpIbu28*e(Ny_<%M&YN>YcIJG
zY(VY<z{y4_5;S<2PPTX{L-{$V$zpnX*(u}WEnxq<hoF(c#}`Auz5b;TSWQZBvCmFt
zedx>)fP_zzyRF1@N{gVmov)&;D`D1RI4LYX;l#3PHIKg9-aN~?#e3#z1>{E{lcP*s
zZAJ>c3o7#`xpn{Uti8QdP0R=!*4{<?oJ;;EipCBy9X6Np>;r<U4#AgGhGV*ID%2$_
zqQ;qq+`A)+B9bPTM2pt3ZQNJKtSXMUclB3lnT%D17okVlDUaQ$j+dva=Qc?X*IvdS
z8Y~x&o=m7{^K@9+S|wwTPD+31+mBRonISHbB2;|(Blt%{g9)|#mSZayl5Bng8nZy5
z$!viQ_Og%<asDHFx*s)~UX;}R+0nB&OF>zuV7o+-$~~i{quRUU5=>0IZ1Tn+W2!JF
zNjM_e6jjggh_T}*l9)&^w|bQrYZ5h^WY~Qq`%FrR#%s9KNhZOqhnYRl9qBe7y#Dl^
z#<LWb`xNM&Ka(R%N|ai*621b2uO!BIcOO^m02nEg27r-1jx5B7oxT(KZ>{y;4{#Lr
zMQo>!Z|AQRF@R(O5SY}@yr)%BRUHBth9|+8Y7PP@Sj^Poqg)P69VxfxycSdbUGuvf
z&G()$ShijwRl0!k)ac$f^R2@cpO<W$em5Y%LB6KPey28fvZ`y}g8)wK+3LB>=+)VI
zJBC>UM3t17xus$+H1d4a6zD0RPGi+tD8G!vT{<OUPb!7I_3%L&+(@S)cp=Yby}+H%
z8&4`$JOD!meR|BZNg`;+LQh$H>ITAf?P}mBp2e3P^+JN8CBhcghG5BQ!5ad=a@Jns
zN=FjKwWZ}68^(K$R3HH7HKd9X)Yp`uo~^?v>aAf#nmiw5AaX9msvDlyX8xJaWgA2K
z=W=a&i0Z{oHz!fP^ly)~r7;Fh>>UsNpS{KL37OPObF}htFIopfi&F-l6S&PbyiWA~
z0a3}O#a+dU4g?Zon<|No(qN26i46onp)RL`25~8=JXOw=(%kivwTjEkP6~|T6Mqpz
zS3o*f<C!Mf%Oc>V8-<84VVI=aZ2WV)qXsyrAKK5#y4&-Aw=u|TYEr}7_lR6NYVUrw
zG-zQE^7|iA2<TxO3i|r<;qHu&%U#CyCV+oaIZ{SMKse{vfrG<i0Pk!q=M%l|x$pG)
z{QXQrr1jJFJ{;91JkspmXmleM%J`}xvUZ#|5=N;)<wm!K<dMysPBxUEMZ?Zl!Kd4r
z{1w^xtEU_HBu6FWetp-_s6-d56(Y5VZ=VWxjUO+9f@&%+b_-wl+}uWMpoEG)-3)<$
zx;!7X!bhL`v#ASc9PdxR0m^V&XmMMmbfuKTg!l}zWFp(%+gfEvK1(gRoQ^76xR)`B
zfOXKfm6q;<%pE|zCU(*abept!|BauC1uc>(6f4|4M*~Npt}@!B0yV3|kAD+(Z6*z3
zqUO15VGh0`zYpj_nRx1%?hj&Q7769}aJ*7E@Jz-!#{44!P=!Zav_xM;i*U2A{m-H&
zm5h&HkJJ_D2stJ~tPO>th;iD%<>gzY)LS&}<Ms;HHJFQ?vm2LD2=A_f7t(6)ge^{}
z%z3oUIc;aJ0_|z1wr0nNGo9#6LK2=fJ#9`Af@C5&7asq{a-iWD7A^)$qk<eO`|6H%
z=A1L~u2>nldMSYD)U|4@gHx{I5H|jid*!WxUXqZ=w7B@E@2<2#4u9n8U2wA54JBHq
z;l~*{iZ4j5YysiYL5HBW{HD?bL}R&D841K2_))<gn89Od3*)XEsv6IYPDf4H<3lqS
z3yTAzg&OI%`aN>r6j7_bZ|0CQj#JUAe&m@g+Wq<$dxY@R42peOga@x;sW3QHeh}bh
zW2B{k4ClyZbTq0JrYIjtD&X$~xlPA@w*|0~wgQ;<T6CY)Mau0$Bd>SKY3r;bp?*;`
z{3W~eGn4@eYmwMWKx^TA^b^(?$E;@`J+^BwNfWZN!Fq0(HZHr%y?uCRHPZZGi2L}U
zb>C4IXO}vO<LF@~E#}UBaS*&=>o|e8?b=FH{pFk;9xT^S1(@3%n<NxIDll(vWz^g#
zf{-y^#oreX=%CoAw3phv=e<Pm!y2FC@p?pkO+22kJ$Ie@aGxN{Q=K*Vtb;kH$aK|A
zmkEj9{nJ+l1I(RSg`yzi%SIvrxBKqUO{sz4td4d?dFj-E8}+7rIe<JTZkT77$2fL9
zy8|pQFBhbq|D%QTN8R8{GF~W4_^d$H#h8Z$0mcQl?aoDmfE-%fvF>T7A7B<G)zvki
zzW*V2-F@(Ts#Xqc{I1yz*Pdwmhf7Q`AP+9n$sh(8FCy^?9=nc8R8$YW<-N*jtS9l$
zj%xX#)D~Uqk?(?s_6m{Zsq$JRY;9vL*D`6=JZoim9$ke48m_{pWF(WnCCJ7-KA;<)
ztP0#-Eh#<l9i&=}#>pl9bow#qs9sI7vTr}DPHJ?zo*AE|Tc%**r9YF_6NDL^a=h|=
z<{p^WRj`UT#_f^_noQD@DgO?P?J1UNHCDc%(z5L~+uu-iX&(im%d-G^#N_^_8<ZKB
zbC93H6HBLAgL@&;S*$1uh_6=i1z}PSS2HSe(5(Ub%7YZIn#Fjx3e)*;z@E^~)0lDV
zB&bj441X(fYjsi)|2sgm4&9HXwoK4CQN?|mFC(nSnV7N2Dj$3)7R!^tA)%xey7f9m
ze7}O5y5=hecV_3K*onvNI?vlGi*(1BsN}YIdvR5Vj>??4#5$tX6)I|D+F2ycyvd72
zLd)QiIul+TZZTcW4ra|1^c?M)w+@YMk1HJ5v+wvnq`&3k5DEPD*2$~;`oK~1Jh=MK
zIXdp)N0LE|gh_=g*1RI)>hS~lPi>HlqSyQYLHL(Fb16f9nL_$2x#E=yEZ$+IgYV{m
zUOkVjLAT2!ZoYbh5F+%aLOID-JR}Fo`i1Gl$G2K%hh?r^S1HO8!DwXOaShVvW|ph7
zAa+wrPoGQCw}pzrlk6U1gyIsRNvr!i_&e-D`{!$Iim@7F)|ioE@w*VkQ6bK}A1khN
zrl9wxXA9^EhMzpXP27?mMHuVvyQn#W&K#7cC$<X+I|0q~Os6LP1zMcMX?}_hn#eeF
z7FNt3)xmh|b752ASVZaTWc~V+x)-l~aG)ktfHu<^M^ENEO0{L>BsAaHb;ipl$951s
z<8cjcpSC)&1+TZ}@=Q`Zm;Q5^v;PJl>?o)!kkvC=Ka(jLI@Y!ULVSOmU1q08JcT>x
z8q2*T`{~cnTgD{|c@R1u_@R>GEf0SVOiaQkf1LN6V(zS_dXsF#>lN!pYrwXUO&#uH
ze?=2igjrTqB?gSSEFJ<%XH}lq#}+NXdxgY@e#-b4d49Spq=A9K%(+VpVc+#}>_m4Z
z6r0i3S4FbH*~*+6g=Bhl1Ll~Rn1ooAC-omy#R<Qcd$#td*+i#Xpf*j<#uOd*;OO@g
zwI(LmoX)Wr`wK986S)b9*preKZ9nBpIi%n^02U8!z3X_1QV_ki!3EY-K~xgwv8zm&
zD2_;1)A^|6kNa~`%@xMSB6)FOZ&AGk_@NJSB`znB4E*aqQe@*hyju6q?%}|R$s(hp
zW4-ReAK<|&TaUH&@&Y+KuJ#IPjF(u(Aeh!Hwmq*7-{osIy3*kdkB+9m5Ht;HO^PnR
zoAtR`031bmU5;anwukL>oH96^P+;lgeeRCNV0#0j7JOGTr)Q2+UlcnNx~k2qeJ3sI
zJn0F0tC0_RUjHa@=r~&CZNJd;+5W^|)>wCs-!G?~F3_<v)hQTbWZ{7Llr!H&wR!*I
zRWoSeNlZOy$6E?ltJS0*5>91rG;)te!WRZ??F7@C&cfwA1Nb*5lgykDUzF1$!pUJ<
zQ0S#L$A?h*G*TI&EeXGQS$v4;FB*!NsAyyiUVCnO0WIq0bSU=9O0CadIy08!jJi+5
zncuDy7F@K5d10;?vtZRgNrG+7eK`%_zQ@d@6474N6TYpfvmI%C6dU6#zI!@g-jV!>
z2DMafk}ejG2CL(_sQ2lik@W#yQ1g7Ji^oOr2k9sD&6zs}E<uu+PCw^>B4^8|WBZxF
z4f`p{6ZMqSbJQH6;tprP!@y=n9v#wvBo8jyc}Bc3F!<>WtJ+t;@P%5FgK6Jw5MXDL
zKlzH~(I(k!;7@=gy$o_QM0S>hFXWw=f9_^pi&0kMp;Rr9=~jR~J)>_N*Z5@eXWDs0
z9<7fAspCFXN~($C6PcEDMYtY&ml}*}I!Z(U(+CZZfQp~^v;E+0Z4yzHND56N+v$+c
zy?SmYP(K4@!n1YaE$mE11x6a*emiK#dS(4`qVCGwKBcX4&M$G`JsR65V2><Jx$i3G
zdYeQ!oveN-Vf6_}wcz?^+b?|?lB2)(Yg4shd*+aD=#Z0RK!5u3wA=ObNihBh_g;yl
z?#aVEiIeR+BJ2j2K^_2mz6P_dq}A=X&x`V%E|kT@=9sRHXwS<NfKTkAQV`aT2n(x&
zRD`~#saz(vvm@x1H#V*>)9utYSK4BN1p!#D<NMA5f;7_3`yb~85j;9hGe!XIC{z&}
zyVc1Epl{*vv{kAu&2j;<a%pObEDCKEPtUsO*}2KHfW)Gmj=PHS727d4H(_c4y=*ib
zcM{WufdErmfMKN_bhlikAA&(cVxYG(ihp@O#^ce72F+7M2wJ$y!NZoP*!Y}T<QYW%
za%~7{%nJ4XaN_>(M{ougb49G4c9D`iSmQBOEbV3U7ijYSgCZ{!4{om&DEmG|8)Db6
z6sVF!<FN<F79x1UvbMqUTyTsMQ+IA<A)pG+p#CWyYi_~{d-m+LtD>ALq1yn|MbCf|
ztOE)hkK+VcGe2A@idhxaL1E4{zZk3_8OO4yVelA<)0__Wa(RLdCa7n&R4n*gSZ2#R
zn9D0PNEVjai4s{=)XQY+1!E*1jZSOOHL~U0(FKNBg@XLchlThH?V3)DppNN$!@Tu(
zT&Y*tpt49TMqOdI<+2<u3`#Jw91vFsB@;Q1tPsjY{p>yaDSm79Ij{prCI{$w2XHtV
zi<DTX;%v3OGBA2KO?arMH7RcvKvrm_z3GfX>xYxwwYZ1|s-aR*3%MGp9QSRYcOF)x
z(m0MoBQECrMBu1Mk|oJbdzou@&;a-4PjZLtJS1S+2vxbeO101Fogss(^-QQ|U^NVI
z6vrtcxp7Jc0bOir2IWe$u>EP_@N;`|CE-WGt*)+h6t7{R3!*KVD5shj7>GRW!%8HO
z4cMreFT=1d@%e@*z3U%eEzWsmt=T+Z`t(PZs}NT$fs#>HKZlNmHNSo$Qu~HLeBFpd
zFXp1k$LF)t0bn{uDoA8c6!m9S_%HZseT&$4BptAR0|g&><0&B$@@TnV?&ntm28-OJ
zf;lfkA#-zb@(c%p!R%f#Ls$L|fTXhlfQsc-Z5^kXprBw<RcS)FYYHtu>J19VX)KS^
zp|Exm5-P&D<i0;Gt#Li;o=y^j;qq>y=)pOD+>D^mFyMm)S+`%>aMUwaKv8du0h^?p
z6p93mfCNE+))Y_)z1brPqz9}IYU5K=i^rG-YR5)r9;AWoz;nChQ?^mj;U2E#anwBP
z=77+|I`0pqI~c*xVdE4L4xf_s=vd+uZR&55$*z@^lA`)8ojpd<+S<?Q;kcCnJ&)0u
zDsFs)Rd#OgV|fG&e0vMQt9s+3v*ClKe(%Rhn>n?Kz7k7RSQPG;0z7Kcr2082mfzxI
zW{tl#;x@9P+&>5juck5CXJdFsOC6Kzma;gv9!DzDG7<Hfb?V+kNz8dL;xUuVudrLS
zHO)ZC8pZ}a80@Qgg=YoaJwAL=P2>!{^yc-b@%|X<+_akb;5aE}QKtGjq~MS_i3AH3
z5;fx}xK?zpfGw-jwOr!UvZS}&BO5=pIxJoq8U_pVK%CAOlMgYV>;9vZ{mZ<ats%n`
zucfk$BeR$>fZAc5>S<mJ!j~Zx>I{fQhh|z&?_{{Zf%YF4r>1kPKiWY<(zx5{vX~T+
ziFO=)N^@>u{s|m1Lp`r?%N<^!aG%CQOi+#lVRowNhl5<;Iu)xrz3S>FiqZ<cJhfj{
zLzX!9GPb&&>aLX~`}mxQ6PiAGu|C}6H=evq1Z(F4@6`!oegz2%=;ipc1t<XCJhVDP
zx>e}?xzD%bOZn}oH2*$^5OirN_l=j&%D~g>kj0{43ly|Wj&t*8IJ=Ssi>7M>V8o=&
zjXw+X=WYwfcqg+fRRbU>T5D=Fow%QUD1EM7ZS>Aq84dux)f<%Tj!r>53(K)p?t<N<
zNh$`LO69SC^3uD)WM5!^1nkofoN{k)f2LC@LUIIcFR}nOhO?!rHh_o=k>DAR2SBfN
z{L}-opmmQWxs8+gYC#sOMY4s3Oc-L*fKWeRl6%8s)6Es<#8{R$NE`4+I>yZDRMla>
ziG}m$z#;)(bzV|T#u}gIez@T09~Z`y9=AFRcI*u$fYq%1P)ZKn%f5Ycr5V!&wPQ7-
zQXzGX24RrV*Z0E!6Yp^o6H`5o>A3xx9JuV_(+`HHi3x5w7I{ed20%sxLx^I%@*^X7
zW_2_XRl7_}828H%>*V}XtqZ}ayz&Ae?_PT>fd+WsI9xk*pFfGPcJHdNc57?PfriRM
z=|RiE;?nWrQcVuMSarm!B%M5T0R&<=aWR{O{-^untq!+$pTvoS0@LqqrB=Nf*G@bj
zPDUP9930)DbQw(azio5Zg$H?G4TaCfKk0*Iyo69M+QFj7npGuNpQp~s#X`Y$BR9Ta
zL;wvR`;QrIXoq%Qc3&kha~}5E6hT<{iAHOdlOyWU1fke9!)q^q@CS*y@U8Vfjl2!7
z<v^Js?n29X>0vST^23k4JdR_%D8#U7;&mH)^mG-EmEj;;UhhsXpNzX2@)HO^eb|>a
zMG;uiw1#q31tlcPlr7`)(}xDdD$e($?C~+RGwaf8P1~vM&Ub`FuTgBNlc8czvIPYN
zT!0T27L3^TC#1|Yo6m8u6YtiiKHps^621(W>a}3ulR2u~!Oz+-Oxd;a91SOBh?9<4
z(LZFJxm+8amp6_}Y{W6a3(>(`Fb+U4kVUedT5T)Sr%UKRTbvK9Q*@M+$|lolb`9rz
z(}6c3g476m@hC01yObglLm&+tL}C5WxS|j+NF+9d9x<@x)9vqRAOn5>_*8x}!d(eY
zaM340KbIs5TcC_;o<FPK2lOf{X=`Ui{7$eYD4i-jupd7bdU-!4rKDg2`oDmcW)T`D
zOd&r6O!~tcbn70(b!eBfO<kNaFiC&dDoe1&uH#dFGf0Q@BH1i!5gCJ=BbZa;p;_!b
zj-R(XrP}aYj-M30Jdc~laPS0T2vq!V;8$J0-^$$bNx@<E+72Aj-hk$}c#SbU3PuMT
zg)|H-o9s{EQwl!Q&VL`Wzy$X^3<_iV>=%4`2ID+q(ST^GI<Wz19q5F$_)eo)erBgd
zQY}NUiyNA?97f83TN`8GfC8CSX3enF3<;`fMVL`j^WCIWMR35qCyt}?vYc)PIbn{h
zntN}(M0mvK(lN0doB2&6!HP`HpFF0t2iq5B6?bdQN4jl?U-R;$d|E?2+pL~C*plC6
ztvN4Q^+!-vFgaI>|9O{*{#e|u%r3y$<hC(p^(w61WGCILVd_FWp)8F;AKUR;Jh{w}
zSkCi3$S#MwI9>?}Myz%Vn|K&FJ^A5<jz&pG7X@tnyo4W=|GrgV#N+<Yrk-Y`ycSR}
z)l9FhOey)FpDW-U`3zx0iN=MBb8`Go?GOQ->IFdcpLCkj9ss9zaSp@XP}{2G9UEh?
zwvD#4Q|TsycXw@4R8YurKL`xG!M(N3FZ~in>a_A5kH^v>KX<6UkQ9>X!(3-YKL#3_
zo)L2|3<-4;Nig3yUNk|imle8uT?I2klZV%C&bQ#pcjs)wcF2!99|bGF()aIe9D0(j
z%8}8NOjB+S?`OxU<A%M2bEJk1G_{i=EdBaQ1?nBH-IF<M7bui|&^*X@`+cVdf6jNc
ztz~w<{Iu&yT4%bbyW9BcfN2;NQpI_+@2xZ}rMZS9$t}ouOXVkR>|Xt%i^rO^%-=vD
z3t2Y^clEw1EJYESFV<h>U(Py^|Gpr9KHp%(a=d<3j7zO{599~i$tfvw(uuF0SFDSQ
z=!Im#Xs_?~XUCJ(4DLRq$p$Ny7?N$zFofTh^p7i~<AGtl1sRXvlx&*N!Gizm@}{(4
zX*EUF%p7Lyuuu;6_LS7r5@FyE_xD9*Wo1+2Uq|T7Z7byES>&Z;WWcQEs~T51%*<3U
z%PC(CV*GHVq%Ik%&&%_ALa{Ecr!U-D--q=h1gE8cy!o!8+Nb1>)T&rsQBkb8Emm-3
zu|!&M3F%kWdp-PmigJ8zU*>&GWp^~`K%!G4b%T<x?H=2~s9u^E(}8U(<c&J%eIv1I
zy9j?YWbGw4K96RjqNp~($g$T*P({Z3VK%QcVH0UM=c@_xl?wh-s*NpJ-=}0jY{wz?
zT&iHGbl9fG^$*vCs#&t%um|?KpS(>>glqDT0}3LW*u9|VTAD?CgpryGtOq|XmROz;
zu<&QA+b*j-Nb>%E!~qNY+q$hglCSTse&ZS|p+2~4D=a+1UrWzASa0u1r?7ioeLhXp
zuKt^eT#-d57=!{_k7%Fo>*}H*I_>UfHklX_G8Ip(`r10tf4OJ{oKj6UmYQBL`3JZ^
ze<2g>d#;NwTaYg!H$eLW5f*k=$)C@p=ly_Whsy~n>E7-Hp8M4TRKJ^GoMpo6=C5C4
zIcBeVz65BqfNf}bfgQVOa=uq#R8djke|+ST*qwXDvwil(A2SkKKobkYz=nHVtD^br
z8^k6O)B2{g$1XmMeg-Qt9|Ac3odmaz9$BBW*}ZjA<UPsc>@1HlKN0OWX673=kBKd?
zcBT3+?6;1-bQAR|rn{@>&ec^@8sE(-kE}oNuiLC?NTGyBe^A|c7fcb~@D;{oT2%^5
zfbij>l<7XX2|2PK2ir_0OVk0uOvtlrAMUtj>Kq3{j@4exN})_M@n|hhy45mgnPpFl
z0~P$wrTA^(3z__$g%l&BQRVw%nao2U_W)sDUvga;0riLBkKL<aWu2Oqt8GEic;d{1
z;zGYgr4l$Ya`FYFZiDJ^)_a?!u*H#{FCj76fSC@KF)-%s6@NCrAjyBciz&1pIx`8h
zB{WYl_3yV^=*pWXNUR-FK+p=~)ZRf;)=24uXwmM2zJ9U(1U(B&nK&tPE2NB6U5h(2
zE2F7g+wC-cMftg#8@r3s-i}GVt%>U1tBkE0TUf9hJ}bIYqu}^deQny)>vCO0x3^XY
z91txF%WR#E_7O5H(O!l<QB8)uhb&H}F{T5SDLWsod)jklM(fdp!U>L5(t=Jnup5U)
zWl02E(VWTer)FQ{nlCDtp&MQ5v5rV1*-osW3h0Pqd$rO99lJeAx&r|`l9-~e56ezS
zW0PkbDOEV1yGPK`KEu!f#Fdy~Qpeh+f@Mnf{;dIvz}`at+`IQ*&ClL7c4Z9GMqlw{
z$gTrMA=!nQ?t?dg)N#s<U;Oo7Z;1e(TiQ4laBd?p5e51K@Wee}v#Txj+q3PbDATpF
z5&#ZirK8Q5o#p+wfC91UIg~td?@@K+Lg(`6QZAX2a3_s?^pEiJTSfr{`(VBSxwyJv
zEnG_|UbQB8pb=LXi&FYAudOY89fw~)8+>nXK-u6`M6*crp=KkWRe0`9N4e%TuCd7|
zo=LBh(ebi4hsI7(IYLWwv%FS%`wd{`0vC93g$Bf*!eD=<6}y3;%a=oOam}YC(kv-$
z=)v{ToW`<K*Pl&<w25b;6h%IU7-2G0D`8bAhE(&Flp@ghf$^*wb#NRY<1sHb>(?Ay
z$$$Owo<|$btcoWjR#8bpbK$MFMetz{+6)(D=tTXot&<Nrx(7~=P{#JYYg^OwR|#|f
z?6QyAvZQQRR_|w{Nn2w+Bs7%4VfJi~FW+@7&!Q&O4>G|y_4T({I)Ijw-KAIsRi&j!
zTri)uAwOvu;J!8|RS)VDiLX6Li(BZ4yQxs#`eF7OgSC%i9dHws2Dtl-JkOe@jW}_K
z|9G&0XuN(wjDr8#SgN3I`sxuA+iWQ`WbISk3}0@Q(C_;zmQPMjyOPjEDqRc^Yjvy)
zeEH&?;2dhE_&|l%;Yj!Ue)#J(vlY>8%Y6?5)t)VMQ@K4@`UVEjwZKXBFt>{2b9em_
z=ov$SJ-HAn*_+vwAnR>Pc7IuU{&5HLJ05@zc+}8rXzm_VKABTs1-5PsOO?(Dhk~p-
z7W(gMh6?1oFu+}oxr{E(E~Z$kFS&J{cs@w^w49HEgk41XSi;+`7BQ7{Xf}bj<$Bma
zPFYlk4{Y56RE>!p_dm^m$zy9xcr%iOAypp-Qy&U(&$W{+WJK(Pm6yX<ta)8%g`qS%
z(W`W>x(?qJ%Q~vHk97VV;UInLvtY<ZZEwNZF*UsU`gqZO<UpBs<xY%#?8S;NrTSxC
z;%b6j5vj3HEYS8ao!DzP>-@viT4j2{;HRf->87_LH@2554l1R+3Gb{TAA6<hs>*%l
zU|a6)TY6?e&|oR`u-psbD}*01KWpuayme?=aC-gL;$VGo7@zZNbbcv^)u+{ra{SRw
z3;LC=%?Y_Fr~dR~10IdCRvNk?YqgPf<l(6N(@q)<S2ja65^XP$cr-cx@&$ijKL;{i
z+#RXN*LKFFwD1}VTJfd|-ngFtiw8n_HzHUYQMf(7Z25GRJ^_i4ZlzCkI<dBm{oVEP
zOG}R~sUpc=Zz~_{`>-xRzYcfod-e<`$zy`26)P5&jNRBZT#HyL%>1B`s(Pa9E22gH
zE#l##!P-{646X3;^xXHv3)$MSc(9sf(jE=^cdGJd^nA|18%XtRl8cW(Rw>*Y19QN@
z;Y&N_F2jN73Ba&a+t>wkk(lVH(RPDL4jCw^6}kx6sv4~R(2=&?D}~}4<pXqv0`8za
zT;)$R6>JfJLr+;a^OlCoMo-q>tfq<mU8d(zkLliIVd4u|FMim-m{M<DuS<FyHpbBf
z+uicU<624GDm|!&^DN1u$y9e>LWeY9Q=#jASZy)=u|Sqk@J2~Rg-SoW)Q;l{VlK1w
z%3~@!5FRI0jbC1WCNasP6L+p!Mscijp&_Osoh|UbtsQo=&1cP%xLdfwrkuI4CR`$E
zr)1^wZpw6|gY<oe4Kg4rzF<|HuCHQ*SP8CeVeqOC)-l|8RaP9OXW>S;Vh5*eiw{Y6
zC3v6R_r|D)ofb*pRmh7WHyRg0g|pfF+SI$Ihh-*np7wd_Z3-7%i5X^!L}R{X7mn4B
zOl@Z??(PQ13nja~-rR76kaZ4c=jY1HXJdDz4U@I18HMqc2A^?xIJ%fm4wehpx$Mu3
zaAsQ5*uRB#+D*}tMt=ofH{OHP`n(e0{J6(i2<k;)vdYYwZF;P4#iqdKuBPfaFN^KC
z7Vf%Cvsn}dulI7IJa#uHAQHQd(K<v=`F$_DT30nyG~<idy&gSoMQ~PWl6xQ?l3X#k
znAUJQyg?mw^-4Hi>>@<4()#?C;0RU|!5tMX%fe$1qN19IyWhS13!<qMkMd1CihLAt
zmYQ;fwU-Og{#C?*%|W&Wl&f?tbGH{2O!gpGT5oN9mo;7}E}85@?%>0w;-n%gp($5C
zedFeSCzqeE)&6cB|MSzQ9Yv9vOYXY1ywLC%lQ<ha#tgShZKd=yVa<+vp(H|wGpD+Z
z2;>`LH0}BQA0`FzPRiuB(2(-RP?}hkBeEPPXd0IrL(>jlO$A!pgJprCQ}=KUDk_f4
zAK(_aI4zBOM9L-=)W&vp@Vz^}A5VKA4fgd0%8QG$zpkFKc4+SEqJM>o%C9Y}R!(Ze
z6<d*cc@`Ne{pz)6uY<6)9d<_6bP7uqlwG>Vj0OSDRAHL?2mg9AhsVBLn4j;~tbcCX
z@2~g`fR~PZpBH$aS&ec^o2;r(0Gdd%`w+ET`19PYtO&;9yRNk~G(js!y$vicHS4JA
z7UG9vM+27k)O1{lkL5H!ub_uWsWXD|*w4aRw9x42Y6lq0Z4^8_OCILUMX##w=MD0F
zzwLWJ7BW3&sIpe4ZD!G@wEXk*nW@Xa7H9w7ymd%msF0~_J3oHNr_gIlQ8iF{kE=CW
z<6A8?j3m#88Gv9i`lW9BFrP#%W)BNQ37W&{=s+bwlr}a?<<RoWKsC5GPJGvw?{wfi
zC5YTED9hv4jy7OMOoZX9<KxA&;(cd1ll&bk_Gw(u2AvjdpF{0lfOm}d346tU2oW9$
zNeMwb+UdYyXz63kay>j~S8ZV7wnTYpcfa&W0uZOuO_ys1QX3G!Y$v3q3J;~&*r}|D
zd2H&^@_Af+)Ns8!FL!gC(=E5chDycm7MKfodWa_IFn!ydisO&*Q{V5{?{;kxmvvNu
zq*MdZ$^Cw5bLPDnAJ<BE4!hde7pDm;y-dydd<IC(Z8^0MpAVjzV~;<w1Q)zKG;a4X
zFMr&#e@<(^ZMTDz@W*hLHR;ATjJg-`o!u&Ah-N4G2QE?fIIO8Z<Pj6rKeesHxbIKa
zA|3eJ5+XW3se#^&a9ZS{g)F%9)9rv+n-D&3c^I=Zyrs;RKMuaG4ieBJRck+3W3K7u
za3`L*g*{Xpq0c>X!0}O$GndcdRD<uW58)fPytL+J7!?RKasE`M$-8jJH^)jyY~8zg
zlFn3>vukL?u9LET5oY0i-r1QAG!7_eX%BAqM`L69et>#%JsG-RU$bFMK%W}CTQnUx
zZMA@R{k*jJ1wk4(+X+E}0+zFor6nb%M~n64>`G>uf7a(A6eyn@qtU=xJY3^kY$26j
z;TPsiX9N>f1qay*vwu=jNvzz4|EyzcM5|owda}Nq^=)Zv4RnS~!a%4ik;)Qs^>|Nr
zq*0v+<+qSGq*^;~d%v8Pls&Fx(_`FNMN}2;c@L3ji{dZ1bq*1-&%nr~QD1t;{!}qg
zoKqHv@o;%f?E{Pgp*^Mfe0yGwtE>m-eRmb`-eH@K`umQH6%;pXqZr)I<Ydi)dn~3V
zAMOWL>!U@f#cD$sd`dcnF^;JPe+SoW!q;}V7K)S8Z_q3SdioQe>zj87N4C*ynT4nH
z8v|KQp>nOBT#}^g8841L(@r|N@e&}cijLw;OJ3$e`EmFNS#ewLHrY<Uz#wW_n(6#F
zRdUM;W@*_CO_5Ov<p)z+mX_4hWOI?bL|5lCBX5|<n-St$S$VXQTU^VNY4N&-r9Lwe
z6C8-bb!2{<2BoYB4r!9fv`kqNT7Rta-y*4LA>^|A)!|-Im}#M)Rhqs&D+?_~R}g|0
zk=_I;1w{xQ?(_p#o|VXSwFlhGt3v%RXp}rWsnPgDxes?!a4L`o2q@iT<d>f(a?zVT
zp#f7;ZS_=Obf?Ko&IIVvV^`M4y;KGrWd;d%HUtg5b*ew=8zgJ*5x3rO0L%alO^~p#
zvE!*8^wEMtZ&lgE_zh-fy14iQby3Y=6li3>J3<L*hOODNsrqOnc}VZIEhj@6d-x5`
z6txz_mr0`KK7nx;U(Atl9WSt<glcX7#5*Nq4C4Hq*JxU$90yMsnhbAfyVPB~PX|?b
zm1l4FEn3OX8ClevBO(yVn>wYx--=hE`ij-KD1Ee_L11nF1l8xr#;F^2VVSQrkZMoZ
zWSwuuK63OfSomvLH7caOF*So8;qa)%lt&Fy?MgFa6!?P$CHGK5zpkOf-iq7`FqdKy
z81HWRO0&h0DxyJ`b(Eask7Re<k;r$126mft^G2^Wk%uHYhQ>lSRe1O#Lh+)41aW(?
z-3m_4tJ8Pi!;zg>v~Ri`9E}D<sJ{(;UN2JHXYn06`{K2DO!o?BDkJ)MRpRmU#vpZe
zj8Aq+iWlW4+A55%{$156%SD5N>#90heC)+{NBhG4<dnpEwnFbCURvGiba*GGIfrto
z8-+US2cbMT9<c_(*S<5Gfng}_00d(q7!g4#6<Wokm7R}V?kDXwyB&Ai3M{;H!a{*X
zBkEP~q0$<z*XKJ?SXBh3^o=I6V8DpQv+XLu!JcdGsew`?)&aLKsF|OFFG5w)gsZBz
z4s@@nESBfFHou(gB@IK2DRo<l<IO$|-@??oBJw}(dqJeR$G?j%m6o383;0>Z1AE{N
zyK8cp`Gq<<3hOK3Jl*8{jbabR<7tP#w0w&<vNvImhX~s>n8g;y)0Y`dWllqoqw0eo
zVyJi38Pw4+myU>N41u!o;-)NMY_k7`z4<YU(uxVg#Ow4#b~IjgsjgzBB>~fi@Dx`O
zaIuVX1AJsNI&o)S4X0VUr)j~REH@|kAXIgbntUMmeuAfYp7>j&Vhe&iegEELmUa^3
z1ydptE~`9f;(e>U6C6S=(GMN0&Vnk@;5yR5$trDP_P;b47-1uEm{X(r=Vy&iIllpm
zYQEJPzTWNw=<-BZyc6u}^+|a;Fe@98nFldmy&4aHO%v%5_Ip#VtC%7-)%=oZT7wjo
zU(X^g$yqa<Ptd;$<D?4W{XA(wxJqYA1)>MnqX?$Ei@Y2RmeUZjozh9g#n(PXr7v0K
zOX7qN)2D(CLou5d7N`h?6zF<=P#8*Nb^jk{Zygq8x3&)}If%d@(hZ`3bax}&jWp6J
z-Cas4(%s$N9n#(1-96NI^VHt^J@)(lj^q0i#c^iMz1F&}^EyKtO5sz~_?>63Jappu
zo$*|4#p#p;0bq8?u^z&xsHqB{2+ZxvtY<xps7TSCPY~e!j4(kN5)+x4(x+lT?dj{o
zde=L$I-+P1l}zQ(gdY(kD=KIT6Ijy^3@Z)o5usRmq1rj)_q_jT%RNbph$^D(L~Wsd
zRyJpBFr*S1`&e67XPZFq=`Ne9fgEzGW9G6#Z#L!hi0Tqr4mMT^lCfiVOy(8R1*FpX
zAeJ!23S;og=uA`*bxG0Gxi1-er|eYManMw<`e<SL&6X$@{2{s29try-DA5S?PX?b0
z+u1cyHo+ndTM#gjUKnPngf0lx{_%D7YYWSs1(dbLdV4hfR0MG&G?=|S6o3o>eq6nE
zo-H?^L=0wA??kwcpD`x=11cU_0wp?c#l7wJ;l)3BT7q2Ss@|vMMYw!;H}Zqu*RGnw
z<EaBhQC`D5=KY8NXm?nkNI;ckKVtuYtQpaaE%;Lh!_ADcscbQ!@FQD)O3HlaZLw8T
zvv$b4s(_97@K_^YaLA^2{C!T%S<Ec<MWH~m+e1hIA_v9kVf9;=hlWdOn|FClVAZnG
zn6)9!I!{ixIFB9eO5>kFFX#J(qrU!yYX=goNX~4VuYjRRjN4Kw7`C`H2{s45YRX(U
z=#JiT<SmgFVkxW42A?D<d5IQ(*W4kYQtzY*(uDb3X9{egbO3Lu#duIsN};2&EO2o<
z!m1Ru>~RBV|NUhILqBW2j1x3aX`+0as&!9MSIvd>qe4}>#GeO(*rfgVsJ*R!{pdb$
zZ>K7y`1lb`>v=)E9mI4NA(u>t3%1VCUV%7-g|K0`tW%q+h=_>7uXiHCzWh)8`H$UZ
z%n7WYIp@^aFJJ+SgosKqL(Y)<pu{EC{3n0?LK@6-Eq51hswO=F@Cm?Ho>lM$2!5C=
z*54KT&#TRj59;O1m)*JNXJ?_cvy)C9&D4wJM1MAzoJ6v^Wg};syklxcQp`f$#Q{ok
za{PcBrb86<?tgrl|NOv*`v%OfgWDcm{6{Z=@83GwDByB`PAFqqD>Cbz;5Q!A+U}1i
zv)tP|@UL!z82Cthh-fDll@Axu&I5*{OY`&dJG-jN(Wo&&e>@;fsK5jxE$XAn=nj1b
z1vy>m(8<at!1KAI(&7%8C4Iisf0YAC)aUtk|H85S_%cAoC~)<3TpvXL{?nE3UWY1T
zDrE08L6vAw6^0LSI+X)@dFCHTBXmLD<1sHZ@+`O`ze1#C4d4HD7ybQeUSMNrsAo#R
zxRyp1CpFc#KfXH!$<*B3AJI=I(12x$9HxW+(e}PbR1|t-LW0ER=4OtQ-B{DVy(bQM
z?@0GM5aB;)Gmao1Akt2IXD|orJtlwqHBVCmgbj#_{`D!ID-bD?6@0wBz6MtpIjJoF
z((&Goo|L|F1tm!3JV9D{y4zfx9=4KFqyl=w_Bqn)ty+JecI%Z_AAoZ-B`2ctp_~y%
z8T)#)xm^O}*xPa#ytB$#TQJYBj2!ptw@hP3T*^d<S<W9rv3%@OCkVbyJnnwTSd6$|
z&rd;REJ?jYT+V2x+Qt<iAr<_+yc}~Pt*l_{)7aEBVOZ4HN6Gvc8%sw?L6MW5F5h6|
z?X5{pLgG`OOs>4iLLi#+J>N9HusHh#p;i70sYAs!M$G7~nES4^G*8qS9Nk6+9#4HD
z@3oq`TwY(`nQ9+peh8#lD>?t*rkR_3Q<Y}(TvhfueH7Yww0qGmvBw`wupx8A<#>=Q
z(!yh2hqM{Qnw<6kl}rdpU}5r(wwRSLMoFV14{!h=NOpGiy~eU>3H0cH1_{!nP{153
z(xBYI1xHE>P|*GJ0D3EYB4S{O2tdZqhxD9J9W6G<m{I|FURrDG3nf-2ri;wEAL4&L
zSk@3Qn15y0mfGO`KTq1fs>Bgw1flmy8A4u11X>&T1L@7_>xz-}<6szqh5L#(=b;I<
zq=?XnzsKkQD8I=<;so;MS-~)_=munOu`tAL<4iUP-((LFBMUhPftu9tV(pg5-r`|P
z1bS#@kf#<VG{7f$POs;?wUyaLX-EFbo5N>$ke>{%Dd7!GbVh%;8RAuJ0&+siT1))4
zhEqz0fP6YWz;{10j<H8hEzY0%rBd$2!U9RYVgHzk$?V4Zy0AhHa>d6Q2aETIGiAQW
zkr))HYZtoT-V*GH2rqQcMKaY}fAOR=l3NAfiYP3)kaIWH1=eaAM_^3!qb9I{lC@k#
zWzL={AscBoqc0HdMoyWZ9`^1w*ER@RuGwe)Y#l-hcdh(z036%__D3`PmDHD5QhS6s
zdj=J<;B{{z)WejHOFA0R>tTKGwHT^beohSJjfsFf^fkYZe#vwIO0q)YM)?2S5Pz?{
z1}X>yN(E*-c?UR4FI>ufT01+N@9#pw3oL;x{>Qn=f&KDYnngRV_`kh|Hw&4p1x40(
zD2zdWp*#<n2}K2uJ~;i?+yNokH>>M;l|(VrH&GObUf`=qMHRU|2s$PA^^R_N<XZ&;
z=eV!M{YHdyB5iVu<nQV~mhEy<(o&^*pbc+ACf{Pm=tNH6)@!Qb2=UhAbEi&BD2mI-
zOy`JS)Ob7)P?D3UWr)~DiVg(}+j>)F1D+7?RY7<hm5xa^VDvSSL$2zXn4a_o(dv;v
z**21PP#9)89UW;)5S(3b<|5Va;8)0*{EHci_5NM%^%~5d$rjw`7Rj}{qoJtHXJw{)
zP&dOjFyw`-y+&o|5iyBrCRSw~crL#oGw$u4?p)b>)^l?owYKtAd#DNlo}Jk@H%_Jp
zmtzloa{qZZ{FjS|@ADh${n?7`Z`B8~kT?H%O#S(-j3gtpCQ<p^2C?zX<Q0Vnt)t=L
zE#&UDsuOm4g(46fXw}x|%cI-d+J10EL5bO}=XOMqAtRaCHik~;gPBlSH~g8#9(zZh
z!x`M6o(%u_P>>Taa>^l-m?B3_)mPITO4{ykVV4C`a46SSk3NByiJfdXgGj00zxy$!
zI<QTZs)3FOLRD<gSemRWwmO10shD{~Ts+P?FCW>jAM(P04uzXQb9x~~8kbJz#o=s)
zNYu1Rm<XeYdy`&zhAN-)M453x(ueo&^Q)hIY>UFTm_l6n|Kncyd$)TJNxvv|Uw7@|
z?0UW?Wq2Ppm`c(*0h?7hYtf)_J++?lncxnG9OsC?M(#NQFIcu}41xR6Y%Hq!zo4|K
z9jIQiuiM;&@KUxwP@H%mZ0ib;9T0H^<Ne-;1jN+#Blo{O#V?<)&*yiQ6whad2-Rg^
zozvX(<?QcG^3N&v&+q-e{>BFmA?9x{0BeA40-Sd?WCjHPuYdN}yZA4^Hj;-BL{zGv
z?Ge}be|~`f@=yQuqKPyxLV#dQLo6=v|No2FnF3|g!9<Mqd)hzO?Em~P|H}q=UgsP{
z0FFzhQIX#or9g0UNlq<U`kgs>oHc%smz5OZEvXK&GlY8bp!)3oL|9AT!l?hF?mrj+
z|I5q%$6Kj_;qn*ifN^to&nqvF0ET_IG*o09Oy1tm>pKw=@AKFjPuh(DKb5KC?eoq<
zXQom|f1LGzLmug#cr0A$3|B`L=LD3j@uQ4cN`kdx3C6%{h11FfDD}F#AKz<gc$bn1
z><;5Peh&_YddxU`A>;L1oDxeDPQ`Rzl`$}|@;t>HR<e@zBu?nu1F$m%$#3nik0!^f
zaQ%*3P)105QXOl0J5FD*n_5gIn#kwYcyb+I6#Y<Jc02)S7QcJOe^K5(CBd3G)*dwF
zb|$%WE00>lV2r^B`;wFPbQq}h{*MADCxXvI_cZT73xWalAFJ>`f3U*=zCOFJdGN2X
z_<*3QbU-<Gc2fF^%GA`9{Nu;qXj<(dfie<IX0kd`G(ZsfGh0$jUI7SkJD#s1qT|X8
zD6Va-Pc0|yn$H3o>$R{wUvA7fM7&ml;2CbJ*sU<!%(3zF?{kV^HVb1YO?utjy}KtK
zZRx;r&Cjgo*H`Irq=oHWiRlr_s4!tbXB^PglYbifbYFff`U}?ER_*uZ@w)Ko&$M?w
ze2jzjr(zH5Z?Dh#^5I~;KiCrTS!1qk3mWqllx7~ikp3z@O~c>qNJqN-$mulMnI;Ys
zOg!}gbl;z#X*|SErV+h!DPps;=9(dMTA1nj_YN0m#eR9bA{upYv@6UUh0*T0M8NZ?
z7@d?qM(ei1PB}D~jugz3x|c7G<33t-vCo>KU~d4Mv~n#=%j=n+Po9&<x?rU;<U22T
z%UIl)G)3j~3r;d#8oPI1DPfaLSW#0qO}tnoHfq&e^({8Gz~lXZqPn^?GxLYv2`Npd
z8gjkEG9Y?-T}65Mp=04JhfOHx23a8?7<+DAcS5yt=aSJ!pt|er??{q&B1K7V%P%n7
z@mc*=naFyrXmbw)Wo+zkilHk_Ms^&M46JRt+d88Zhr8I`%(?*e9aEYWN>q4xR<wAP
z3DjkeEr)=v?CV1SYOt{>OmJ3DFmitU%8X);7dhetHDgY}51J4mDqcQ;l#|K)b8GFq
zfI&Vk@?3X>kM()|KQ6OM1n+j`BVibC=@&9d98rK0cYmX{q2b&|G(`OdIFs?YB1XDl
zlIuUlEI5}Tul9P{mwn>+t*v^GcyXD%cJ|$+%gcf}sjJZ|kNQJEg*`8op7_oU%uxdU
z&w#6tY+(LWzZNCK`RJE8Km?5PS&pyLenL|->3IpOAxaMZc$!N}jd=I>*O(K@_hpP-
z9A@WeRd}flRZ-3^@w>buj!&!R$LR7A+JyHS4v2{N`Q&UQ0c(NbInDYx^1^BeN|DjB
zYH}~xqtA7M+sRYvJY(WhSP|hTdw7Ey-Q1%1O2_1-mm9DA`chb}2oUeZje)fGJwQ}~
zQ0achAJ1-!7Zs(Jo0u|;YGbP=`P-+lveNu)b&%$NR)E+EShBP<B$3G58{;cSavMGA
zEx{s4siqiA0kDwq9|WUJK+RXBmQk4g{W~@K#i>k7di)zue81~S1M43CKwm}w^?KQj
zbpsfrt_r?sx#U!O;$Pj2{P9Bv1clFD#WXyznL-%`c-!&k;AGyL{NVeVwjZj4q#O;E
z<ij`kZH|zgqs!bN;_t05EdzBn;OL^I5*PLF$39;VDN+8*Kr<GTv3G*6LBU=?OiW~Q
zaxn%r5!}IiO-VV-ima5h3>p-tBSE^h=VFPWuW;!V4iOBOW8-AfSLI^(qQ$Lotw41n
z4F$L>c|E=_6Gpd^DpdOW@62Z83EPt|vg?i~Etu>UT*!Taf!ky?a3#0Qm!+ipK<`X<
z#39*#yp<vv!MNr}3m7l{&T~3UbJ5j5b$6KNe0wqffpl*2<_q25pTX~iTve8$yMPPQ
z`n6bfgo=XHEd}mgs`n+A>ix&xfSin;I~S-m0gw?PVLX3EJr%h=k@Itf$n9A>)E?`p
zMjuaQxKBp?^FZzP=K6z-6`>E2EIeq23Zq(96_*I|xy1t|$$1OhXIQX^ib}k(3#fd&
zJ@!<)(m6dn3CWO|VtjMyh={ycufL#ea6+rSP;J+1f4NAq3m}iERLmkLjHd`gzDj(m
zP$9?&nF1L21hh1pp;AYEeJKPzKNkcV&SGizbfHIQcoxOB;cuKink{H?eF8z9&$tjn
z!b1@imG9wE2qe3@SZXTc6(r6tz7S{QN>Ygbk7NFy<@mdV0x&aVpfVV-lRL@qXz_SZ
ze5LW^2H4Rn%F60Qda+ppL9;;F6O`!jQ!3#KmFJLK!%-L2*;&sybSD(H?a;l}VZ8zJ
zx<JAZ5%D3~qO1<1;^P+%{<;=wEemmz<xxi!bIWDugVc<D<7@uUdQ0`w31bypd1i{}
zNsL33Z!P;DvuOX`k^-r^P;vV$vi>&Jv?_XhJvet$54jNx*T>2}{Erz!i>hon!k$|k
z^>}B*bQ7C{24F(>QTs}h-kwiqHOn4mov6+L5Ik{vKJ59)dK~fPVxii)NpA$RIE=AM
z>@!&Bh_VNS{PuN=I%XN<u@ypy3yT&<)`!yBD@~G+Lf(}Zd|6sl?9$`)QzN~rC|JYs
zpcPf#uIK8D+s~66Pr*L$!D<(TsSITS?9MaxaytbBC-`mGUfVCpbD`b6mo>~be<3fs
z`M)+wf7gJO&!`cTW<+M@I|JvJV$Z=QXwZ9ls*yXAt6K?1va&x2EoLJG0ORy1xYs**
z3t~vP(R@)<6LSsMpr%KNo}rRFeE&wTm|Zuv@2tIo%GuRbx?mtf+&&9rD<RarFCGoZ
z)8*SvWb`SbcgQF#bi>fKR6&%V)?^KJn;ksJmg=qinql7tx*Xy#V?)Au+jErmYW8x{
z##VvSV^kO|Pb6IQ=qc8;r>xa^J2d^~2CL@_WX1P5a=wrQJKGPNvAaB|G7x7Q$TS_M
z$?ABU@(m3>kG-R7>a&%**xeOA^JMuaIlyX$exk(_1(;iYk%(kBPda(wezSUQ%3mN2
ztI+PRARbx)L_FY}UJ+oU5=x*RL}2P7H0%}?e|>b{L!b1IaG7d)zki)0=aOvOAIjY!
zxD)dD)wJl?)&YMCs1b&CFh#_^(!<ctN;hLXX;x^~5txZdTf4grt?<~#bHyfYkBJj4
zBo1OT%1)|P-GLh_i_*oQ*CG*_J*!<JBAgR>)G7qkWb($XEuap5O5#r>6qO0dr{vNZ
z5R<W!21XxqjhI@-(oa{^4nJy==E9#38A{Ohx-HYp$4d&EA9g8ub#<Buq8ZaQeCr@N
z#;ESTIlOwS(iM7<y##MqYz(6>bYfU`9fcN{U;F5LXWUin3z;~Y;p7N;f8G=cMw9lq
zw^A`hZrJ9G7hblIpvR~<q?||&F`Bl=Vx(Ge>o))hpLwp<0(vN$a41LTI_Tq*+y{k&
z-PuKR8xk=xw8{dj2pxU9F-6Tt%Kk4N6K!YQbuDH9jU%K*CZ+#hSFSNT)X$&9<|e~2
z;u8J0YEOPHDl0uCm(u=PCj@fsQ%B!#*xNN|=t>bk9|orue<)Nweuj%)RfnjkX-btw
ztF(zUW^7@^P<)(jd6$E;Tl(l|xA{aqu$++c%~k$O5&FKo1R1ZVa>NJ37pv`<e}O)E
z8b>th7mQuq0eOz-AZYrf(TqDeJ3Gv|M&}e9BiLzLssZ8w#M>Bc9;G_m?gp($qug?~
z*u=!_xvBH~{CwR4A0EZF;btsGA<uc6zKQ#_qxt}Glx(>+h{aovD<{f@^5Fb9rI8gO
zO70)x=(BZpKHG=g(J#60-H=}DI$diis>w-<+_Ha6H-b_V502{UY%?0n4%s-2Oo=me
z)UqCcXk}A<u;J!fNYbI#9X-`IE&L#@Sg>A*Iu+{EQd)|tf2k)Cvi*8jFoD%gjJqC2
zUfYwvQ;5z0J(_&=U1#Lu{Q_IaGB^07_)qBlU#-!9X((FrNQiv+&~E+wVC<EZl!PfL
zkb;#Ym1O33vSOr_qe<4*(oODfyv1{klFf&c<(QnTxisx3wL`z~@)AONcrBII_(^|~
zswxWL0)vj6yCYXYYM8il)Rw15iCrJWZmeEo&xu?ij0dEQG(pz_;S8-Ny#p9;6%G0*
zAbvc5&h|aX?+4wxcV1zHv;bARaW&wa{JSt$*lNQu%cwUrc37{&c8n&Ae|-f}K}eUZ
zNch%B%9C4_CeK#LDUcFDcrbQcx6Nv|>W_9XmYyzvARv(m<RF{D(5DrQl&JXk<rmsy
zeD4ce&)*B6Af2cshPgLilvWuhtwnGCQRL4CM-@-AP&!YqmV{zdwwkpLSKy?p#=ht_
zMc!azt<PdFOI!btL}rRQNmGIS0i2}C>+F<-;ZPp+R>jg+(3xH}d@>M|IR{1J%V>Py
z=qIaYLgL1Tr}dJg?{|8te2~tCiYPO^j5i`g6A6P0JdoXKm)rP#CKeta%-|=cJIRKx
zdPiXA$AGR-PqoUiT{q(2ZU7Z2iVSN}MbDf~lPMn%BFrq*?Q)%$<z0Kn71ZIYrj0h*
zb6{8{Awbcl(D~62@(N)ph-idUK(Frt{nyS<84qiU37EiUDiS}oH;24DM){hYV8rBE
z-sG)Dx@DRsGHHiQC)`0kx&<u$6(H||pV4rDZg2I8FKG22f;kw9T1Mxua<Ix7bd0=t
z@CuXoc~IYXa&Y`#u)sV=VlLKz3Qlb<t3oL;h2eqC##`9o-!pDrQXfQ9VrLXA{Mx#M
z^dw->%WIG58eovu>t}?%YNf!OeW__Y_ngh1LwZHK9jbvK4i5UtzY=IYt%+ISh#z!!
zV)>R}s5r<u5$yxA@|v)DVY?eJBv)u>Z{$^1wGKkkccS%c(2Z<a@hOA3?g$dR2)bqr
zLR?(zn7qI5zRc-cfcoD2yI!sBBbDER+R4rkt~{5UJGtrAtR2*vNU~XPGPGi{Vbu`p
z<5)tJ#75s4gZN^z_nU4>!<RbfQJ9!NYEpQmY7a0P&H;d1_WTtHN##-?y+IDBv8f^Z
z$4d2&=i^Hq-}|ZWrC&B%%Y>xf-ZBXCK5B58dab>_?rsP({8gMY|1;y?>(PIeH2=0O
zy%qQYeE<EPhlj@=6(?r`Cb_`O-U1Qe-$zPIOKU()$IKi>y=g%|xx+QO)TD3n`-hfk
zJ22&Mv{w2Z4gEktMI}ld87tQK^hh|{=R3)OiBa!xz?O;ONwm}911`MfJ|EzMJRCon
z6n_F@Lc)mQ{Lljc7GD(`oP@WSm_2prtdeDSZ@s<ijCjiAB07~utGc#=FD5M<_r*w5
zKF(HR(jcPjQZg0O>!R_uLcXdyf~{PRha82S-%GJT1-Ls;m($0Fx+@u!%VplFUN~ph
zRq9jyv^I_d#jZo{JF@E}#pj>TV_TJ{E4x@!%R1WQ3rYhq$Ja;;4@zgI!u>6!5Wvs^
zb~k3G+2zP=z%<n0CF~S}QF&GPQ_=Ed<klWFq8XLp>hehPsC_fqC9^d#EeXkifrM+1
zDpAZ^ObOz9ZtpG(Dn6cz-fM?RU4*U4eWQH0FRgP6fK~xCb=Q5dTRgTJ&7J^j@^KcT
zBjKk@1$id@g=7;saCIW~m9~T02s=Z-EsJMUdXptISncg1nH><sc7kO6xl<^dK6@Qz
zy5cLG{j;zh;QAEaY^2lLPe!)TH7`90Jf7vy!eWIFS*B0yQGQ*81-94eEsbp%E;SG8
zTAmppg4`*M?__&Y+Z38Qh6!JZ(8L#x>3Dw#eQLTmJ=4)@EVU5URU!D0U1FHj*!|9Y
zNgoX+3}<6bU0;7Lg5jS^n6DqrtE%~O|C+qtdG;R9=bB8$BjDAB(Q7>7=#GX6{kn*V
zH`V!=t;1Tgemy~=9?4yd?yxn1M)Lv~>-e-ZSwImVg{W!1#>cVrf=K>jNhP_NPpOVu
zWD2e>>PU*Pv(wedn#cJJCGlKnDB_niEmW&39H360lEQWB@h(MK@47=03NGCW`$~e3
zv2O3d=T-6sY7HOc!>1b9(*WKIJaejU$2%?db8(uMkUSW|7_*(YH+6bTaDNc=;-lBn
z&(#go9t`yBoCp;d7OS#(-C`6ok5Yo%o;<1twV6FV=9)SW*h_3~F*TThKYN%wkAeb9
zv6Sr!e?HKQyRf))81F3DI>p$eyrl<V;<*cC0-L^$58lGX*eQXDlxy?;zWk_P_qJ`g
zBA#)Hn}twP#l8)#g)Ei3mLdAzcG~}fZ30@TXB87(J1-2C@<0-24E6dfl><K&78+WI
z@-f^9Fp8XgB@malwM*Cqg@R$7?6f8b+0DW4_FF~9nj*HV-G~qizyb$zIWC-*uficB
zY67_^Ugd8=5>BO5pt4ltxmU0^%dW@!eGG7CBR%^i%NZDbcC*o3%_r^KpKPbKTxm2t
zADp|L^+{uK+wX6A#}ce)81rG_@5ZHArC5h_rL6lR-`Q)ao2EIRCua-{Xpla6!_$1I
zrR#2=wWt}CKZ*?<m=kqVN%%o?7<))yPX#DQRhyLRQo8E=iwt&36NDXAn$Pk$icEd|
z^Aobe6x~-L9>4YTX$y7bFnK_wkgFw&mb?<Dq((}u`^NL8tjIVk&4Jh3!lN~o&9VsN
zEA`c6u-@QP?yI;#rAyDF!~zV2{nz=)e$PGBz_c%QRik~s@PXx2%;HOtJXm!qrakMP
zN_t>Trl+_tK_`#gR@LPYoB2BZ9U}*9c#J^=)sg$fi_?4r4NlP8ug5!dK|MDy{X=r*
zazj))javgivwpMGM_p;0F<DPK=XN$$5j7%Rvwko$ara`a!6-HhxilT*{k}72%Pz@^
zM^AD(kzJBZH`(*%23LI5Ukj#|-2-xF8wJ~Kt@S#f3%}GJy|StYX!NpaSq|yHw}mER
zc#)JfAFrU_FAB97qLz&Q`1Ly(nuT9SRQ9~M?$;LCzvkb@@4c^=?mktW+@GgVARag^
z#WI^Umg^t`bB2-4g+=aMV0uQ0JM0Hol`C7g@k6ovxUXbYQqv1VD6=$$#8L~BJ{U=h
z5N>UYPKX(N^Z^;697)YM`Fb&ci=PJzll*i2v^kVtNmv|O@oAP|QIQEM)wdKr+>2~?
z0Pg?3RkpR*4vD`wdDrt#t+8PmdDFr^e5UKXm)E)z&Dyrn{*ZWLT~IU}nrl-U9|W#5
z!hNQPyn$J}pJ#n+7mhWuU}xPj;z_X^T&(n1b=@Gu%iiPH*%>;1a7TlbMs?^Lw}W<e
zLyuX>o3S{BJi}fNn}sFH<;NFcr#JonE!snAL-YScz*8p?nA#gv3&PVh?Y#U!RPsc2
zhjU8bUY2DLV!W)eT<nW}-KV4_D+~VYn2^7gbU0j4;-UKiuJfK4;`;Pph4dCYL9ElZ
zQ{13M-|5A1IH_V0U9~m9t`OBlSo<bm6Xf@-8`0xS%m|+>s3Dyz?f@D@2R**m)upA8
z13n$g50+uXKU_}QY7RQR$e-4NQwm_oI;+t6I|tKTE2SoCo`RG*O@|yq^jGsM)8*aq
zFw5**gb$%o^cSN!j_1fk)u{PhODEtYaEq{`Eu>gFy>_<QJ`0Vm0rSRr1yO@wXZ8D_
zuS)0X8?5tJ*n)nWsQ5aA22jDH;41@y8Z>B<A}`H0_X=uQxvEygGA-MVIOw%my|k#=
z4`vQCK!ycNAuPcvJ5ehGlAk??<Q`#3x`Er12|dx9Qc=j*w3(8Y>n)?7zi(-I&<j>q
zh({Z{kTb2vC1N_IMrW}v?yCX^LZJIj=W4dH?l(d%ZuSM!la%mC#BVv2T3Y6nj$L1G
zqW!}Z@Z)QE_u>?5DT*lebLEbaAR8uLuX1`u{TO=<&+q6%JqmJ?05_ldA2FU_gYu7y
zh=fjIL(R7@UxC8Yyl4RLseok#SvwS^AzG#g@rMqjCX*U&f%THwB!Px51#k`H!F?Um
zZM`ePVMcOJIIXjj^Ee78@<=&#Z(qdXM(-~ZfCtv?3TidsPa!Dz7|TKEBhWc$%P>89
z%YpRzhq9bp8{o*at+K(62Ayw5(~rNi*Zs94{ThirwF(arQ)*LsVkV^oa$?}{K|{2j
zpwp+62t@y`dkt&i{zjd>S!CD7NxG1evO452om*4pKSg@~T$TS`VX6P}QUw)enN`CD
zWfm4v86e1ZELWPK0UeCe#{RwpU}!5#<B#~NkOWI}%Z{hLYJ9DWg+HXAu04VXib}YZ
zy0jt5Q?f!a=npk9qcvt$N4dei-2|J*<E?276nn-9MHtuhf)P?!st8Jge-N$}*D?hm
zRahH0<^nw@Vlz)QSq?)mw}R2;yx`pBuRz=mCo84>hQ%ejmE6&kurFnwE1Kz7Hx$eU
z<#JN?)~^&@CEj7lz%|&86DJl4w?EJd9Ou#{NtP;Jx0)y9Dla4OdnoHtzd}C1FxVcN
z$zAXR#qPc^bN%`=4Ke|KY7?e`YQAntuOIO)<f_hGE7m|Db>Cl=#5;i6f>ALq^_wAp
zTDaXiS-g7SFvZigkPpW^3d4PMTrS*MjU1(9xdE{KpEON0hR?T$bAYH(EdOvqUdzsZ
z=#~KemD-!Jr1=-J<zrl<`-92GK*8@GUN3)BrMF<5Pg(xAm1bS?z;GcOA!ads%vX&L
zi`R|o5}#A4uC<7q8epJ6O~Um7+=dK}K#7GyXx9*z1{HVV=m?TN9`i*n1|Tp<z0Ss9
zURv4ZZ>rq?b#tpnd4ZtJPSvTdF#3UkjwO8acT9a9YU_Kag8czNwz4Pb(|WHyUEm;#
zCk=G5Nc)b~AEP2CdeZzJOhkiPe!ftt=fGo+$jazGJz1?!ry#As7t&#GKY&b6{tyr_
z7f27d;nRRsQ3r$KJ4W@ZODqIX5~}!Y<F4KY3OCcc7y8Jk{u;M*`)nIB1R*adRMhk_
zbA4saet^|SX+EvgkRlwnL{&Xb9OCb@es?vJBON}PeK%<0{pnq|@C=NXweEs!kfEbJ
z7^XWweQ_$S5rc_i%3rwSiUj0`E`iT*Zs8-D6p%q+m0BWYXEHSX_1^V|%Gj0VCiHz_
z^vix+inlb>)L9RA``-yKxi<bK)~>|&9*ER@o51Erv{H~?NMyz9X;60r^ZD)yvC=}L
z)fSFw4*g4xLQE_{zMHN?cDX~i%QK6iyqzl}sr}$JN3z2Y7i9d5y*gK?2;7F>ldFKx
zXk%UBsUno-qX_Z;^?m$_9j5AoODTdmx}84TM_Q}F)U>g2pxw2ZrXuU=vPfuh9NO`0
zZE;}!j@`yXH$X$)+;}?@faE$jYrke<!v0A;SBwjoRjP<8v`2T&*_Nsn>Qw{)(NTX1
zl&4&Rr%%>W93~BDoZgLJRUM)Nw8gmo%AA|3Ujf)1&aPdCq)YKX#cyN|iPG{B^qCtt
zwOV*X<!@b;wP&K$rx~=}H<LDD6R40qsx5OWNE}S=!Z-764?QqH6l=({PT?18!WY@;
zB^%`hA2VtYk~+<(@f2~UzQMfQk2bG+Tl;2OeR^%|Q#{DL?kJ1wpT$UxgQ@nY;%f?|
z#H?9}2Dmq_%|-j~S#5bW?&ii87Z!SxU_HPHQ<%-}>$DD+c51cz_)NxNd@d*15550F
z!v1#*d}js5ye}P@=VvsQhp@1}4T6TIh1E}~8jEU@nb|^eHneOL8b~dmI>yfe$Razl
zMwnRJNWwrQZ72zVt=ShI`Uk?}-iD!qw)YUNTju9pMswhx0hBC&r6q#!5Z~Uj;P46g
zGt$QAw{z{K;O*=DIyZ?<U4`L;N9^$;lg`A4#wO!4FD+A0pzYZ%Uy*7dS@#6?yl6i)
zQ+AVsHV*Z&b1R!wktp2f{@@aOw0jCfDC($Cv^2xm!te224qIRA#aUxa3Y@Zg<@JSr
z@NQOI3iN>6r)W@d^hRbp0cpL}&~1=6`lri{4y{ibB>$Y_d_6=f<U8Z-eB3ULq-|r&
z$&4qDj0WOw$UfwZ9&NnlXv3Ye3&LXwbrVP@H|w9K>|GoWG|i{H(I=K!=6iL>86eJZ
zmDjj;_J)$2Hams&Uc6a%QL%1@=J8qka~GCbz>uuPqi8~*LK8R*3^)T&Br}sZ9p$CN
z>}@eS{m5x81255k{L#Co+M?#3zRFCu9PbV7+Vd7^d4HWBF$BwJ_?Ml<;rCXc9WgnW
zDcft>U4D9GE$LwLc=$3?s%r;iD1Hp5v}!#4)DR!@I@<tbS82xOdS$-1)Wm6EWHg?W
z;xWen&Wyq!eUa1(gy9<h{z1Iw_!FQ3x$GC!>{asWb%NS+02;PARd(WYnyG!Eg6u!~
zt4b*EDHZXm_SDY>y+9lp;Jkl!#(?p8z#SHTUdZJ3mgQwaoupA1CPp-68twvYPdCe;
zPx>sGwVs~iT=U|RKvydNDb1+qzMGa7%e2Z?yNAcp*0=)BumOKei)ZE=SPonGg_*W2
zLnry;Bc+Ywc{XA_{ds$(qo2!?X+HrO=4_Yw>dD?T595%gFbzKIOlkJjQ6F{j_o@Or
ziL65r9|GO#V>ef<4R5M~OYRV|V&%-~xpj^KJ<Y>-ESg|P!a+;L80(T?STib(Yfw#H
z9is}eQB6+~b|u}gX2MWGPDRH1G6SGD5dTV|HMverUg1cuEmL6;&74^x1-`i)4qg9_
zIRe<RO=6K!K{o+WvE6k-e~&Og-dBPvdj-R3g9+E8vqs^m3?3NlHt!PdXCiDRQ@p=W
zP^2GpDE~|e4Cjq9#LvuK-L8-=jc@dA&&w|i0`zPYj>ohctA{Fgr#Y0g+TU^LlcW_@
zesUr{$riI_jfLTJlJ7S5PueC1#<0SQbdRNJPm^O=(<lBhz6?ahr_^h`vQ4my|0yIQ
zGTwB(RN&Fl);$DI;FLN(p!t3;-iyqRDC(1xEUXWTyEp+lER`Z>N<LKmFU}r8HYtIA
zH1a*3VDa?fQkH@A)|Cl=>g8|27@P48FGzczH;6Z~_{tFHaVC#Dgvt2=7-?q0x&dy_
zSzp(?^H_KwJEZOL+WH+2*UKfzwCn5ZCO{bH1@IGVb$;YN5e&y1b276ThW+lCzb7;~
z8ov%_L(l#F{SM&Vp*$^ug7oCU{tAlFc>~o4Jc$Pd1tkPFh9mj<=XqzW1hu9z;)jVy
z$nlzhOI0Lv9dND=xj9|$39S_}hZ!3$(nwcjW3u_8{W(BzVAOPZs^~8C4Wp5|_Dl#&
z7|>exx|w25Pr(v%0q9nBe*(9wkNWR&2`>K+2`p-udvsHrN42F(KiL=<Ftw_B-`~X1
z6&8~*+RjD?={IhTV0lNuH!LU9bIB?7Q&46V1u_gsRnFg>uF310i=CEzYUCCQ!=t5J
zIF^>#lUS;v$xRAHy8ld4$ZI`eycN((8d6&kq@U6gTy)fO=NL+)4KI-dj)kygvYS<~
zn?TglQy{8o;Tx~#TXrixT@;KT&iEa5JI!Zg^^f|RKOs|nMwd0ZA9{1L9=((lunsV$
z4+~>65&ppx4!!uq#W{4>75VwUm3MpW$i4@T>+%L285{kWHV(zNTe7#O8GSfJonBE{
zu!;&Ma#K%kKBRe6cXZD1B0pt}nP9Is9JN&OzVN34q#=2Mo3C^7>XNXtyKmnNCiv7!
zI_ti?OmL!sg)1i`A5X`D@kttVX*Q(pQ4n0YKOfFf(Q@{OTpborQ6&zfpXOoLUChnF
zP(r)Ns?Atmvaha|)PF?5HIxd*TAW*Sti7Uc`=$uyRdJVgx?$44-wMs&a$=0%$PdL%
z(Kz3tkDmMEIlKDwA|bTYyDl#!Gcyw-MLe|km1{674N^5CluhV-7l17Idey$wlfqvS
zZY!kcgE(&|83B#mG4%~nR^>!BT;6`o<|z<SoY_O@nFvUQldBJu|KbCBD+uvX!Nj-b
zWM+;4t-~yHe#4xwqN=KBAPS)}na&w24UKeH88kOF^`N3cdi=9MUG(Yk`gn3z`-vl5
z%l#5j9Z(@BNj=<MXC_#3qzIF{?}mHcvzmD0Eg%^gZplkZ#=f~+bUTN=*h<jOcX=Ko
z>{WnkZMTWzIVS5n)^>BO(i5yak_mJBOa@{f?Y5IHgO5VItK>GSrkhs+Tjd(Z2NDd2
z31pU*lFbPqw)s9NI>^?r4vY5NqiRM-8HAn-dt--Z5`?yOv%*vk?;zu$w@i0{<}jXr
zy&;afyoI<OVtqN)tzr&Ow)&oxg(=9T+@OJXfXf%7aFIU?J?bF8F5pbOkfcU|e!$cL
z<$CD*;KjV{r;pVoi*&yp%Z<tK^X==9(zZrwvFhy(h{S^sawN1NnX?^!Hx}b<b_T=@
z^el-4NsLj++E<Ki;_sk39gMERGbCz<-$*wcXOx8UJe{Aj0P^;);*odP1w$FU9`{I5
z75%!_59@{Mh)|z)qr)?|-eQIF*sZ>ES-(Sy>?-z7qLy2UKNcG%4#LzOJ-M>&8R4zt
z($N1<+SPhzD9JSEVl|0Dx<o*tOU%qvm~!cIz_B7lW^e_ybVc_G+xH)+dxQ&0+r3Jw
z?o|Nn7u7G*$0%V%TSt##WcZIqQU=5$0C{|kUlp1Oo|V<nU@}h0lahUYJ^|3oiS0jK
z7jrB>E|QR8P1u);Sq>+2Ln2R*k!spXnW*?dmG57IWC%TObaB|Mb<7+{EgW^AEGJnc
zjx3p{u1RZf_FJ4SnWONX42u{qzW?x0e8VWrOc48s?;Lx>oYj+BnRTx%%Is~g1F4b9
zQ@5J!4v{H#ZUT`hJadCaRza<c*?}e%zmoYxMT5f5;3(#gn>gf3R(H>Tar4|ARP-5~
z05PG)w`ZFl=0hgTdSEtiYSx3t+XCS95jhrY`l%xm%+8Op#s{Nc>aw5gmspq?)eq#c
zNhh-XJUKQsFdzfu@e(<Dps}1k7pju@S+J|4FY<eDvH(er$RU{&X=-!;W9(TsHYTM+
zrY`X!`XkW`KLeiHPT&?<KB4gqzHLj7Um2So7)70vpry{tNokggs$2VBF+;iXMG59`
z0uzJgK5kKKXyb}Is$eZkB85RCO0P|_f!cnmyP#yL3-Q(0q4Jr^b9aYbM2x~z&&OY$
zJLaES+ZP#!?_&sD4{(@=cgK6cJW*5;?Oglo`bR7PQOV)(I-4H>or$T;C%rwN;$w}6
z^cJKDKM>D^2C)-Ng!lQGFvz+!e4*>UJ5`Z%ywqYjX5B6lXpz^mGb-abl0)s_w%%}g
z(Wy~TRr&3~<qZ$0HipK-qj^-u=?8C<d%tjZ9Xms=>s#vjV{y{F5Lkbe#xXZcVeO~-
z@b_getcYp|vGMq5wOn8FldGy}S{V7Gm{6l@K}?bO-LN_>cR!U*c7`9-c9tp{S2sG2
zL>NtPhI68fY@!9oz70nsX?<F9r%=1mvI;S11$=Ir7vd#Vr1A1Qe|0!5JjJulV`;xf
zg!a6f(p$$v)wtd+i7Q^vkim`T+eY5)&@g+g`?0TZ#{LJxc`&L4>uQ^`^SxD|JsYi?
z&YgE*+DjK_=UMc&2kO5)u>cK73d{f$pRGoCwYDUQl@3J)k6aTu30)%3e66g3uEJ-4
z40p&GQ9Q&w%WR#MmH5o#dKSqe5ypygIvz1;yy)1&=@Z-ue6jDnRSNipoKrj(i-4l-
zU~EGORLSK1_;81&L46B><YyP$F2V<6LK?H~eqC|Ae@PA1xnsXjl&vB4DaCOhuIgB>
zK?Ng)!Es<~KY!h3aQ^y%B;$|vdO~C+FDKb19%;J8>Bv{9D8aJ6*CZ}l^d5)}M<7JV
zp?z7`opW4eu^$Hu3!6uyi#-yD1&%9q`0iyNbKHC<-SrQR#Jl?a2m=q<yvsz<3}GSu
zb8xu%*S7kTmuBATnf`={fEHbRhInFDKw-eB<!0?^rwx8NJ0fC^P)jWjO2R3g6r;4-
zinlfUXZWnHMvWyaFm>V#s6qs7oV0bkq1vx|Q$X~P7P!Q+mnL`N?~&~8;B8aj&t!B7
zD9wX8wpI!Yr-pYj>KY4f0Ij)G&a8G+0j(ySg&7al_G(9u6XqO7(&5ETXG?vq9mxC9
zt)L0qZ{lzGj-%XnvJ%p+=Ii>aC0xlIX5U2$Az8}W-V7rn?$Ro3UHHl6_s|($4}98c
zM~a&aICSzup;^fOm&NMYq~f>~_Tv7j#N1K2YFQ(p(BFbw)t(QfZQxDk+J@P0FA--1
zw#unpL(c|7-$twLKs;$OH>pm>?^~A!o{TMtsb|fXKLmJeH%OSMs7KSoP{V1&M0`q^
zJxeXHF2DA!YkKv_x`KQJqzH84zIyJut{kIf9dy4@em~AkCf#}ffbk2GU{Xz3_i*+G
z!{R+A)+AbPO{PgxJpzGMtLd4AZ>$qnfW^zf_d?BvsUr>Pe-*`Hf~gXGn0s%)0v=i(
zkuLW^^e0PAu4q&i@1z?10+Lu`B8D3LhU#}wA_3kYCA1?m0s_J(=i1%58mpAAG^oTQ
z1RxE&QQ?3aT2fM99q*Tjv_Ll!=Y`=%EY-7^UzNqTKdRBZxpsf|%j%sH#4!WSGITlD
zxxE8;t@`sE_(><0NABXZuhUMj3c@;EX%ADN$)z+!)QP)y-3OoYEp=$~Ps?diSsdLU
z92xldRtaWH3qK{?|EfLBpxhxBX>GpnACGkg4>{S`RGqQ*r;0w?CNS(}45E^L8UgyS
z!-XF>u<FE6hzr&=uRj{9FHA&Q5;^!}(O1kX+CJ>;7<VCHG(X(qJQey%9q9awjh)%q
z_qW%G?9rer*@CMKybUGfP1Ye>US4kLmD;<5!Bc0@F|W0p%h1%H4-f{-l6&M8j^~Rt
z8}eOZWhCHaWMtYQFwF_E3i^VIif>&5aWjgm3S3LdEaLi^FFA9kZO_lo2M1@ms=5?*
zkV^B4(yYsuvCkjo#;!jL>PNf%_0gVS7H05&pw)@p5juSi0i)zOvH5_3wAJA6-@nhL
z&yVMaujqJs&`G4;+!%8>P=#L|%NUuV6$|slauH-kL_kJ%M!#wB_!hBPs$g7r+^nia
zJqt)6<0(t|9SG_5x*d=cUr)!mTKc$^fZ8Vb5a*K>Cxfig+}sdN3xiU`Vp7xQQ0%+4
z7)FY3n*Pelb#g6g+^UUJvFb(ITY%&{yOfXD0O<&jd>5%GPD3)-n_PF^tcX}|;sT`c
z9@SP5YhBUq6js2FUIUDrwu9K~pZYFZX?tiiQTvFGOIl2sMoj!WHMg>GZF+jH$leE2
zxJSN%aaIfsZ+L7PTk{H56}SVPTPPS{+E{rBX5RrM074JZ)zwwgS56d78*i%bRY&6y
z4RYe6FaGA^r=G%Gya%15eswEV6DLIN$;tA>v$_{8A~Qlt;P+Vaup{55GuSX1`MJOp
z<xSXkN`uR+M+wkva;Hxa4ra>&uI?|8U`4v*cbld1@d{x`blOOP{2h%KA8`hse3#L}
z2)O6&18`=cFxtQozkcDWWmp6!4G7?Ty2;^v5Tg$BxZRAoIBGb~=Lb%-;E5(zNAw=s
zLcej}RxdfDqzj?GhSymO9yR$8&FRIi1}HOf+Eo|IU@WO6VR#C?ZQg@9X~Mf#PcJs5
zUt;sh|6UzFIJ*#o)J`kDrLp%_z})>}UwDO}awzB)=wNq}`#a|c^b_&2+kQ&{hbEz1
zGtr}b{_Bu&vArE78$aqp>XkAUceFDEN2|VLci1RLF+Ji`3)F?C`jEvN4-o*b*yJhX
zecB=$$|$Ex*oJN3KM@<qhVN}Em;H9dAi|STE{NPV--bZB$Fc}M_s2_=dD-KUem2q;
zIse3>M5EVJv7zZE+7-$>kX?EwN%@UCSh{w;a6;dF$^VYxqE%!e<?wo{I}GKJ^)en;
zKjIG|CV&-FdN1O})EM6xB6<V!O^YUrWzVMvalZfo)+Hy>htqJ+cdGo;?RbqnfB<q7
zO@@o##AM3x{o;y#IQJ*PfY)-zF1Fi4lfB)iz$z;rOBj}Xbi(X}qpDO<RW**ZF#obp
z`<2ORi3_0bRTcPDFL~TqKyJ5FLN5?$8-EnnZQ<C5u`jrt4}MAx+hJdEJ6-F#XoDxr
zEez*<R7KbXLg033J#P`YPg<cn%{uDiIo7zrH1_zKbb>k;b7oUUB&zJt9e}G+c@NG0
z)4tOu&+R0~km}<4J<51?G=e7cr(;sIV`1avpAE%q7IRF@ydtMWFe*<sJ-kkf=HWD^
zc*O5J8lY}WyfGN4F%Wf!uoBpfd18Gl%wGS*nd|t(F7gvFx#-!MRM93ADYy-DEA>XO
zNZ5W!Ka(yT{7lH+T4loWJRf9@S}89q4Dq;bSRMtUO7f^6`*rD>8YO`QF2Ct)^ex{`
zznI3ku6jf!BD|(9e0W-ZdPspZwQ9hhdU?ILvbl<V1K9eewJ@7ajr7yDEWD$2*}6N9
zQqhvrw`ttgZ8|;nd}^q72wQJsKPo_^sZ9-AsmRRq1MH@MaZJyt;SP<(pW*v?p<V|T
zc)4zbaUP`t@}-F*52hISI|<sRiNwq;2Zm*A4cvQNRyTmleTP1cpx@?*FM@CV#O^_B
zPw<*V^J^D6MDed#%}4-@4r~LnuaOzc(&&7*V6;Qj#OSt7ez&%&s(5Kojj7VQh*#ig
z(PxE;oYN}NZ#yjJGZHs;kuOx*K38Yv4)=!KhUJhNU%KvYY&!cCCus^D)4bw{GgPk}
z%3aco!UBi3>uI=ST&Y*COV43-dX`piQ>qrh&$YNUQ0~WSndaq^`gFVzaMAh+VT&#~
z#`9@|bgOAED*S|3nZ`w#pw;3*U$;3p4+t(q{NRe>%q;dg2oqr3(Ph*b^hbZg8c8Ka
z{Tueh4{wbq>Q6*=0WKiZG^2;7LX!N$W$JQU=+|cOTmI;cPslh-qJWIRM0_oeq|{{m
zJ!CDIc8{t#DgRWo<?xqRH8|&!ikZE3PTi#H9<qAy%|)3d!sqXT*b>$x_=K$hU)E01
z3%zmSu|`35j^S~JRzT&pOMWQzE^*2?t2NQPB_r2D=9iILK+!Rr-sBQ-B;!qZzIIPK
zGl7TVjDGc-L*WBAX#>_TT_-|^i5I9*M2!`G7q;e0E|!KmVbjq=`?f`I3^<g#XMm$B
zyHGb=?xr{f<Rj__>|}$>OJO`HS(v1)i}->!XCi+JCpZwj0dMl*i2@bchFt+s|79U!
z$%gG@*Mm-3^_$Et<$4l7T`)a+MWcTspcI5mw>%1iNm&dS!BiMaj?3=S{(>{s4#!Q`
z<<|vJb7dWS-U!1T;6Yuy(h#_>nHcxFg{5KetC&!G{Gxfj7&UE|XXnGb+9HbnHuUuL
z;(T@h9$J1~@<ubN$!RwF=cve+FPT5LvAm7<fn{}&RNkJUx*T8}9<iudRPMRy({x-E
z25hSx)KS{$L90YzcUPayZAt?whBzduHl3P&0A_(;zcu&ky6wVYK2b;e(4T=X_~SEV
z$KnOQ->rx978l2<0hkfASrG6Ei;MN}MvsBeQgS*v*};zA#$RBjQO><&hw(;e8leD%
z72=*pz>Fk(WS9Flvm>k#f};!|G2|No0HLuAlrNL}NU3<<%`Yb|k?tIaFb>JKV6&lR
z;)JpZT|5Nd3UcjBM#2>Y-e?Ip?PC?UJi3rE*h}`XZ+$aE;{U9$c*X)$5yyl^>wM~h
zx8&<iEy)Lta2Bf^tILEvUSC_wN&OOZ>c6gkQWDaJ?>YN>TA#!Ea{kxCF1Jiv5}1t|
z0k8KW^XB}}(I#o{+mVsP51D%_f1K_x((1(zIW8JWRZr~taH9YlIC<hCWn;fKkD#Xc
z!(^_asT>qq$)St<p;Rngo6~J)KZ8T!zp?eDd7(-l5r1kA%mnAY(<ihS`-14T-$Il!
zLY_}UoAw}5(aXseK?SR3de-z|Fde#go`Q`bI=_I@<U)9QtYq0udNQg}&JPo_@%}z9
zKRq#f$(k2^+i)~Mm@wCdAX#hAsXMA>JRa6+%u8&X!grpZoR%Ve?-inwO%tFrC&5%%
zFQBB|GQx1wchlcq$ekM;mNc6@)m;TOFzSvXi&&6#uomJ@Dk_~6Iwice`obyKVd=TB
z0C0I_1}_2jOb(!Mu6{g0`)piF-JL6WYdZ!LUtelFhA-BIEY(_6pV*}n<(Gj>V7`lN
zLV!MXoGWd0R7Q8idcRns4*Qz@2H|$QP(^?R1bdEFtPp*oBSlN6Uq??++dGJT!I`0@
z1G(NvxGunX1>@MI>3kYHKY;B<C~Wb-%UR%j8CvtsrJNY<Vi@wxC!A`XM`G5(nvgQ2
z#ZMF4QHjQbni%?bjt=YRjk{P=E({yb@mwa;MpGOgE>#wxlU#CHk#j<7xYxfm_<8($
zH?))l2sUT8NTk=nr0oKvP;-G*0x3RC2k+}}qx{1a1q4CRy1H~O<AV7b3f<Gu(;7(9
zkAE_O`2tBsg1fxH-PCI3en<@Fa_!ilKq4X^qTOe38DP&>wz2c)W_NiRqpW>Y{pQPd
zbk<L+k}g>3*nz}4q9DUPspCrSbwvQcG3(cA<{OaH9zvx>3WaR)U~Mom{{+Z8vib}*
z*s@d}UU#@qtzsv^s#(sN4ag$&EZOT=frGI#{2JT0!t3J8wpFIr^@{8*4!28X`3-zc
z8#tW*3k=JU4+gYACMdgfDJL{vGM=dy4Baj;+ZXjQ%3lyPK=j3r2z)4*YIk>7gS+0r
z8G`|xzVw{V(jDM3o+I-C^whf62XNicU;wmm60QZXjER4a94`Ji*KYq3P1V!4Kx3dL
z?S*b426VgX0A;le6k=#8-M6|nVOl?BFmwB>#0r+Go;rZbwN!cpB2L9H6`;CFdAjeB
zww@iS{ej|5%A<oMw*f#xGaYlro2T&l-$O%{uAzl8I2P>2r2zI52HA7-+u(30A3fa$
zntpRl-PhKhid-s?w@7om*r1{oI50R!R``L>@0A=OOkQoap?7w%_OhI-vKMpfW`E4b
zV;C&NV#Z>6A@dXU7a#pN24d+u0ISwyts2XudY01GpnacX;&$qq1%aM$!kobb*8TiT
z0+}t&pit9V8Sn{yN31TY{O6I0BVS!%u=&$TAaCv+%0BJQ5eZRoN3VyG>=RHGW!|XM
z6H)2y-Jz!|2C=lgxrP(!nL8sa6kg*D+7CU(Z?-Ch`R3)S^_RXmG5J|x`=`{3%>YKH
zjOI9%iz~Stab<+Q<yWGevGn4vBSp$;gqOADt>N!L^EFnEd-ADLa3o28K6lR)4GV!*
z-$jJayv=X9&!8x|9e(6DvhlcJpyMr=f{q&1P6CGk*9qM=O>|h1PTBjD(+S4|#eDLQ
zY2U}*P=2ILeOAB`(an=@w<(j#^4LDnFcU6@)p&xPZ*M5QbpTAI+4&G53Z+K1lp{^^
zeO1kAT|If(I!$(dImuaYNJjj3hG^L2)chx-W3H8q{4tit?7_@yX)yuBrfW(cc~}@K
zoi?Avsu=YB?IZQ6Vnhdxu4>Bf@<NI*nXJ1n1wd)pzqCH|Iwmu+vpT+K?0p9#>a6YY
z%k{|Qdf};w@e9K+mlZ!USrLQ}S*^mb1`M+`!aN;<(V`vo4TTW@j;?*_^#5b*t%KrR
zn{UzJgAYz{NrDq31a}SYZb5>>;O_1aEWzE~C1@Z72=4Cg?r`7i?EO36ckVvt-hZf?
zDyC-UdHZQuy}DOpIwBKPFCv+WRreGEJ^W3ox|qv5qxcp#L_sY=&b(kSv|HX6C4-f+
z2JtPu4Ua+}yE$1bcOm+NS<T!Rd=&TDXoeV16nT{<d+-`R&~p)kOfiZA$YTb=@#z$?
zpEK*Gl}BKm^JWc}Dr(DrqzYqWU!xg2HS2(|b$T=@a>+)T-pPfap8piRP+QfEFGhq`
zNxOW1(~&~aWAn|iZqbtiZ>x@gYCf$$jK=7AfCYz{cEx8Wwha)!qprkDXu3s2=o&Kc
zMA)1o(pe5{-g1)rO!(ymmOiv}rUF*SJt}BEegsbM%r^v8FCr+WK!))AdAlyHd#1{;
zjuAXYZA;QE_yxV(4m_t(ATS9(OHKAj2P+IRvIY`QxmsOtmf!+xCk`wxwXjEkgp5o=
zxeq&H@4HkOkw7rY63}B%T=C}v3y^R-p@^nHk$^V@fwo_x?cX`R1UY^xG`X^0$4^y(
z7!Y%oW5+Ezlpv5Lv{AG89DcqBd#@6$s=~)ALLf|$FImOx?SZ9&5BJbq&nMr}H9ZXs
zC>Yc$1(5E6UJBi|pD8mtyV_7zw=uX^P^56}{<uA9H-+2}nv!F9mK%=^eogo_y}tw!
z1#P96fCxesaXIV44OwB=y+-SKW-`J&`?7};7K{Pu+J{`8DBLxM5bRY+1O+V}m}x|4
z1)Rno;GE76n7*!;egc(ZduG};xd|%e(Wj@UpU;6pV8bmQq&OHJ0R;k0L%fT8e9&j%
zRz8E&L~<?4<pgeuVIA<%orM;{`!z5rWLwF=U2-^$!BZ7_6;7LuJ&r*;n9~HqFg$uh
zp?5q8GHW&@cPPjlXpNfFG`*r8f=Ypoq!ZKEoc{N9dhK3z<_i^I5(;7t=xaj0>rT%Q
zFPAi5FpgfeQU$VPJjge%%&{-@2I2P;_Cb6{2u%;Ne4q4LE&wp%H}Yv6#bw<Li~sBb
z;6-%UkrumzM=(cAlXcF-b2bZuJwd?X;rL@AK8Q@diGrC-3?De4f)vdJ->ZPO`E$JS
zT?qp3b<PydqILvghfHYRzKtG>>WQ;4rMo3ZBZ96OmsJvQA*B5|l$%;>bnEN;p%JdQ
zBbaw*o1U+*tDc%F#UNNGe{lWiP)clgXv3Td6V{jZWE1uh3VV-W{%(S+tRXDp1BAZs
z1C^lwN0Zx)x^vtE8EE6T$#P;A+C7UP>4zMq_RGwLc0r-9vF}r#GJBiuC3-Iip%mV^
zzOG0R>R>U<gj|#iAe7?Rh1ub)o{^8?&=v42b0G(JuRK;13s1Nst93MoK-p$09^)Un
zKp|$B83>dqVn0NC$-4HNRr=|%URpN(g8l0pwq;j<Mb1;*KIZR1xn!xnafGQuM2M~9
zx*2?)AZrKOks#$xM^qwGs3gu-eEC5bTM`jhaE1ml-s%Os8XE_h&;^|B+|Fpu=16Vr
zyYP2i=6sL1G+LL(JtOdde3=LYEZi|Vlo-Ou%e$D54_@PW4GEA}429Y>O5k4+394-m
z0rsq$ck%Ns&&<s9FR2iMz-2HL)Hq;#KP3f)$$J@&i`7-ri{oXz{jhhxBvA@g!l1id
zO#LOWx&*YKsCYqKWiYaCl7&H4ml&{Z_eU*L<C3;SV+@8e5T*$P?Y#rIa{hpLVlIc6
z12W|aJ%otwsg2h_BP2`4e>;i`y{sAy?%}ax%2l8vAJ(_AK&2y8eo+nFyxZebjNWDh
z66fJ~niP$9XB-xEJg}clAFzi%ilJ?Ly0ef$Dcq~<IVbAU1HC3U`u+U=GAJn@IA4bA
zIrb*j_O-Brp0{sbEtST<Z>l@@``Xb%K}Jj%XhHe6`2r@}0sBQ@;B|~EBxf+r*$%@S
z6HIELq72NH(x$yiP1X73xQ2cO$~{!c=6@9FL$s|Xo!cZzc)awKCt<QeJ5;|5RJBUe
zEUYR+Csp1dHD9Hgrf0$HAyn!s{B?%DuT|gOcNGx8YWMBwI|>_u&DR%LrgN~VGJzYk
zB9?Ei!MoUB#;)OLPVD(xq89?Bvf@xbY6ZrHA4IbTOX<h9&${*`2iSq>FU_qMjhvTx
zE%-NsBje4&l<ppc^WQq*$p-#NrPORTXz?euWCFz+>g046?D^Zd8wi;w`F@uTapdK@
zHu>vRpx#t^-aDm$V^pyX$Uw#`4yq~Y@aGP@W1>TFr^Jev)(eda`Q5y(XSsuh6Uw0u
zr4r6z0<LS_q3>Jh$m1DevAX%dsM*6ncYo6b)U13bmx2{0dEqOZTILfY7sz|fo*Pq#
z<0eQPka#upAu{lb0vxP^gi^Q<_;g&3KMzPo#xuO1Xcliv1I>4Wu^S<6Fyf#Rvf_mr
zlV~ECsx&(RVLfr7ybDpiR_-(}dJzY3yihJYMs`^T-m+z&uJU#vScM-QHl`m+Rxg?*
zAV$K!Z0td^!H{(KBe&z;tLZ50eu(BoI04{1L2$87xQ;-A*X(fez0L=JST)&5tG7li
z_$~Qdb9$pLhj<A1ayzTNB4+caZbvM-pFru$YgH>T5b7yWZ3C|O{^hpn^ft-@naaxC
z3{r>^vCKzn3!Z7_KbCS%-r?7=WzUfE_!S#l+4FnBYzBP>*&ko{$C&;KeI0_(zeyMX
zi%8SMeK|G@N7e5=TYmPpep@I<@O{G9V(qHZdzBe*M<L&gwbogY*YxUHkEULknLQbP
z?RPXPlYL>dV7X*&7N|EPJBY9(59oQ<H!ae~$QXLM8=Ggofh{J7l*1d21}%Er=y3(J
za3CDxA7uRp9t~5UO5|4$-Yh&l1kCHHXzFP_%5SG!z$CbcB8u~^B2jkF!jb!L!dO|~
zQW;4a=59OER@ga<YUyP2872&nkHK-LobB6j91Z;OOwyTxpu&l^skliM`k;5EkXqqA
z4cGv22<vwkdqE~pQaSJ|HAwrn__h?GOj@+8n?w)i7KAonp>n*uat8zLNygHPeUy?J
zOt>eb7=Fwme+%|)M6vh{)XmBqcNH9G@)r!HabuCNi2{SfQz+AdxfLqe0wMD;iumZI
zh|ppjKglmE`N+ZoRuCyzK$NjUDtQW`v^pFj<?2;J{N2_XO-w@Z@Z<@t9c(^i;NAdg
zu*Eb&cYb{r3A>i3)#R?yux7*lB4*iqzFdZ^Qogk93@X;Tp4;y0uS+k5ltVtPQiSvl
zvM<xa#X_RGFR7`iEBUm`?j4D90P|>`)fFh@0;s675$>6Q$cWd{9UsDBS<k53Bf;KX
zs)AX%?P1xmpm_A~<KOwtCKzJPS<r9N|M%em-smr@`I8OZVuXZ;$5|r{9{;+D`0E{!
z(LNRmT!DvQs1%pH$hD#3=yBCImUWPxs^^xe_e7JCF(l|p(K%4&+%lu>zs~x~FSqBj
zbi0w?>t<#8BZC+NbBXkNG8HS{$4?${N$%eUK;B%Gnk5I>loUG1<4}mA{dR7@KU^lQ
zga7Fiy$eQ<XbicMOoWid2-FIYF(w*p^nzu_^_kQ!{KwPE5V%&=O>1zb^o0E6tLlA_
z?`}aH48`&m_0F>3UJdR+K?m38$7?BPzE&4B1BqM=v1Z-Z_{zP$@?e90Kn*Oky1H7q
zZb3{$<Yzq~`JvJLL*re23^5bH?5PjL2SclB<5@hpy#gPSGn@bw<trV;%WIScd@8wg
zX#fi%frE$N3r@SP_9A8@MxppImz|aFUq@V!e`W7FM2#DjY9V8>^8U{+GJOeK>?LLK
za(lp}?_bYa1H&g=$ZFZoMwRLp)%V~3VoC-LS+BvtVLYlYuHyoo@+h(QBPc>Ag<&_j
zuI3a`j~tLFgIPi%x)??%4GSQ9+(nV+eCI8Y%X{5<n=e9v98+GmKA@@zRzD=+pb+IQ
zN+a5jaqiTcwXKRs_=H<7b;AZfWpXhy(9Ui)t@$>z&6i^fuVx$ni8H?8axc&v`|}t9
ziJtr(VotkUhXQ}dVOB6n_I^cs+f?8a&}-Es{e_VAQ3r-b|G4FtFZ?60YCjKv$``FA
z^&NsT2Xt46RuY3Gq@-%52R}WwdET3ztaMget#$=o0Eq6)ftu3mg=<~+L$+BsMh^%m
zmFXiic@G10`OO!#W4|vM8FIjw>{kymRQm3(<M}c<K(}mwS;7;As<$T`Z@|-?KV}aP
znw{hMqs8!RCKeV&+0mJ_Sx8z!&g-c=0C>kteY~I;Gf8(9<I<Zm@bjWmE00HCz>_FK
zd6G~G_gwIf<~aiaj(&LR1inN#SzlX81eo{8C7YhwkO(gA(k+HeMp+5-AY7hL7I-iY
ze+3o_xMr+r1_TEy0V?aBi5-T2-=aY9N`+Z{4Dw*XzdhT*xEBj#7c{xa+ZtyYe>r7>
zC?6%)qSVq~`1<yWA$vrqRI%?DW3c3WgZVQ%gpbX?hdnm`Wa;*2?Af}or%foID(XbW
z*-(XOhM?go%?uUP&W1l86dct!F-^dy33tZ0D--G*XkC(*snQ_f48ivUWz;xBlG|7Q
z#_5KVvs?9y<dlZriN^1%y(j#_k0_+Hyyb|C!I8Gx;ZC{nYAX;X#jaDSi2v}iPVIR@
zN$vwV#awK;dJllwYvfRpz=}vbo73H0A6KYQy?SM8ERHl^Z#CY$tCVG);7Fg!>z)YY
zP~6RzQ(A~!G&q1zh<uOvJfOF#S@Q|?ca!3xk1E6TkT$YX^<z$@_p?`-D&k0OSU)su
zuw?4Y%y_MkbdkaLAk@#{x+o#_PKR?vjBM7-Xk99~rft_t?!f3^t8*P95%tb7T?po3
zU~@s0s(2gqEO=PZ-NLq3*W23Bb4Y-?sB6g{T92UT(ho9|?oOkN{&&Wnd5g88cE9Bv
zd5Z$%GJi6z|L}1yv1abJRqbf(vj~HA#C>&r&oB;%Uo}AKsu(2AoXAeRsYKNobA2^<
z;GHK1i-vcT`O0JD-I>{Z<Xlvm6#Oz+;|e7bcT=C`F3|iDVX!f9?h0R^jT~bG2P~bm
z@BoGr5$p5J$YesYBo=PV!gzOiI&J#PD%#>v`PufGhjM>{=L=n}jtNpR5xe;WH4+-y
zR1^aHiwWDmo)tluk5(rQr%II#y-Fi~iA>7;U6{FJAt2sle!ShiuA%71?<wBk$2!M2
z_FT-gK^)hEd2C7xBF--^si&y3cAG|^Zd#U#pISdHz9W!)6J6O~$0OcU_Csxd*Rns3
zCS-I)Th(Y**Lv(~I9OsdCaG{RWAX`}mi5NszBp#`$*n)MS+NmMHqVZot~dMq8($s#
z5)j`1^3a8m9RMp%IvkfF8(0mZ#r1RdUf3tsIgXBoW|V!Nfi8)gV-=vU4Nl&Xr%{hp
zdjYhHfc1SCS)YE4LqOn7k)r`<D$MrG&$lGoXL`~1LxTJpWk?|&!u`59ZW!ssC1xqH
zv4Rrf;rJX7vP)oDrRFsttuq1?9gM@f0C{n8j{F^rUdT;+O~w>8669DZHpRk;C<u&Y
zxPr!Ey}&V9Y85-D0oScp7pR-+xE{%_`3+CS5YX*H5bPe!QPJ~|Ka4ah!E;-k)9ihn
zq-_u@sb1#{<d$}D^9ZCK@+uZu3k?t=kuTCJ?Na8%1dT5~7B*L`$Z}Y!UoK}=v|ec{
z?pBv6iBH$2+Pk7ny{pKv+CEF2ZFVei`chKf+`n}WKTM}>()cAPNcE8c0cMh|`_Xcr
zGnfyIy;f%iB&lp+5u-`|f373}JCy9pg~kf>im3k#zyHKyfk;?u0xuYx1l-XlB?O~(
zx_g-{Ppa$j$|zyuN59GA0k;sCNNe~r$a&`aOR8GVRWu)TPn0z7*zitao&}oHWf5A5
z53k}<sL>n!s<E6EY@LdU3{Os8@dWAGa|4(Tw1@w9n&x5f9*60>1ne!P4}yF+Tc5^#
z*#@ZJvdZjlQ}E3QJ#WCCb4~KV%aPi#HY+8?VindlhM+OtD|4w)Z^L;QdI6jJ=iHk9
zG7SzjXltQN1Y431<V*e=NjGdwxF#`uya9Gva<~TV>M6lY8*hH{nf}`GV269<A@<|I
zf5Q^9!gEO>e$p%I{Sc*9xat*eTR<4J+fVFfjl)k^-5x(`?l+iM#lDO?B^R=`V7l%7
zFvFUmZp6)3Y$_>maZ#`)tntC13DXH5>n89Im^q@Qbv})u<Q;pj^=m~lwfu11BhW}b
z_dOruB3z(z#+2$Zv?A<%sy3s#?C0&&rALJ`zQ+;?3lD)*lR}BIg<vHAyT0Ak^bj}C
z)Z@$D=pN&LvJy6opM8DgA+tO@Jioi2dB4G6Sg4l^FSdVu%|SFLV^Z|1OWqQmf4Dv0
z?ZMNF7fSgM_ok0?WdnY@6UZ9Jf%h=LaqhSu%rILTbz~jY&s)bChq&o_-5P6n0X?Ez
zWc&cH@4@H=%U<_`T^hqYa}QY1RnHIG{IzbE=3lvR^iceBQZW(Ncw%(x%b`vwx*cR?
zWiPt1<iJA+=((4oTpx3vRs5PG3E9oZzmJw#Oqbg|2jb~wzHPhl1F)61vk?G4<U~Ng
zBQ*Xe2$UUzgwO1Jq<waMoy6z@)<7kA7jpFNTy{2yR4R#avi}MR$aLZvT_kG4+1h~Q
z%Z{%U>o@@*^vjHnj@oggg7^Wpw!0Ern49)902TJtt=z4pYt)%1Yy{YM@*2>g5p#)v
za{!5~52wWCn*alB2UuqO8D?Q?f^8z4+G=o8-Vq#2J4!E7(%5!0|AL5<+(`*71_uX6
zQDlF|cK@Ep!NE)XZW4fbusc)OZ4!s+LikU)e75Nu$z<MZ!<^>H!7fO|K53AGH7VHM
zLtE##M0MaOzs-HTZhtOAWB_JPiaI#|j?reA`hxo7->kox|MM{aiHLvw!)F0&1xDj7
zV?|wCzRT!csSmroG;dx7DYtfEuVG1(1ig2l=M5b)qAD@JB}Z+8N{>r?weUh1Se}|f
zE1hR_fleuxLxuB-^!0HF8uqS7;@R05^`ZJV$O}u+n;iGAJ4tCy$<ST%@`6tJUnn)a
zTnuT;?0V%NQ+tBxc7PqXGF9Ih$G2>+uU_YvnAox5=aGSjaPQE^PsqRA`ABNL!~5$y
zZVPm5ZwxEOs2*(z=jmF3{MbCnHmySCxIGi-TX6H@O!mZ9&)Aj25Qm)_i!@1<UGl9l
z*SKns$**(*W|&-__v3@sK^O+Q-T1cxDSRkRp&RyVRGuoRn@DHeSHx+D`ncpm*o6VU
zcY@Y%RDI);VAEewSk3KrO^E<@1ZL5F8ys-x@mX84`r`Y(&J|~qUw=gBm<k4(@9e0W
zO3FY{=@;lVhP3FBU7^y7IfF*Oznz&6Dm0{Am{u2*MTX+B5i4GN>BliV*H@uQr32T^
z4#op0|2c{R2;>ALQ&87}AbaHw4LQW>l{NS(VrXkCWL)|Y?L`vr2V0u#YA0KNe}bj!
z&aaRk5iifOwtnCmutx;ml$Zam**`#G5Zzabh18u?Mjg&Ki~|LAu?poTvxqsEb`9z@
z8I#vMO=J~_S`(>*YwPQI5~#AF;IhuwsOb9w{JAZTuU1~%-0fFjDXt1VAVN`++;up@
zXB-?@dOGIN8G3?GY4{r7Ov#2dHpEj)r@biWE~h*~?FJ^yHihd-7?w)*l~hXZ&Z~6V
zJenLD{UNw(?CutK04Qs=J(Py_Hmhw|Fc^JBp!bf?go#a;pA0tO1=yRe2@uZS5cXCF
z@XKdS1lSz>V1ZBYAjZ}1LXq5JT_-SqyuRAudE%dwOvZ)6g?(SP-&11zH$w7vvGm81
z^#xaQ95Z6V<B-47D$zG{wJ0`$-IPPT3)QL|rtMT}XO8CTq`XdIT`T*G1eZJeL?3nq
zJUHZ`PC?mYd0l<8J=#<Oz91@cJB4h14TW1uPIB2R;g-~#>h?DDewh5hEMlql%o$l?
zhPE`Xjh`4obNY?q5GE+FJgK6PWq;@I%yQR3`06o*g?lK$Paxz%*(KKoOQ^+$y6Ks2
zi?-zc*YggZVr3#0Z(RSv!vs@P;0YiQ0NJZS<2ZpMb&&$Ce@c!n+V{EWS`rf2PWYCX
zO8cv5#$nJYoMcz4PX&Zt!?hrhmtMwj*I75hYRr3^?!y|jY2O1h1CX!*`NT|vXX|F$
zgo^FGOWj(I-TvmN1kp784l(}coQ${{F#eV}0FXgXx)hu#`t6MIuPTuXls;v-S?w#G
zpZs&e{7{$o>35G6`K(jdzW6^>ckXxQ4=0ajYk~p(KM9}>RzL&P8Au}&97OBCzOuqH
zzg*be!-O=s0}Pv;{1j^nJw3hftS`=k$!uc@$P~QYc}cpo%Qaaj!Ic0BBdZW@;U-`D
zD@7n5xONfHnYHsO^QYD?2fFmKVFYDLf%$oPA5OEL!Zq+q@Nnh~bEBXXaHr60F}1fY
zd?#9g<v?lJsk{5Y3W+?j-Kt)axT2th6%0?v;p#|;!{Ag`8?Y986!=<sE`xXK5K*ma
zqfnmoC-u5AQj44W<!4z);dH@b4-rJR`_eBZlaFXM=h*PLZDQC=M|Bu#-|e8pzWNA;
zPvRcgS&Ucd#0#jL^I$SDVfT8w>d=Y`NnKW;&Q4FOI9`buy6_2v<VRVIW+f6o+LpE$
z@Rg2FeFJa$k&jJl>RBwPK@J0840LkJhXo%WIPgLgEV!v6svKp_%kOwhCe*bJ7is`9
zWL2Y{EzdU+Krih%7m$E!%gp^D7=s+F)M&Fd@TDHw+TUfcQ`=?9?hhm(F#dYwRokKd
zEnZf>JL5OIe|6*A(gKePYVD#g(H{hrtrUKIzk^A&*A;+~1M`^@Y-WTO_{a)VyY5GK
z-M)?Q4?F8qj;9j!pv5`KeAzJa^}9O_-EFSJ86nf5*xciQ0WFrbH_jT*qDZp7(g%#l
zwp)x?B#wl7hFj??dt1l2`PG`^e3@krYNclb5)lP2#)JfHr6T;KI5)8=Q4v_AhCp8m
zw!t@@6+#cEb040VJpoDauD+Gr8y`BQM&U*!LBZIY@9iArDH;<ytE*J)ol*Rn$II<{
zUK{}yzUXfV3~S9N`?p9}hNm@GU-<eEiWs7BctMzalR*x<-exj`+Z8e)P%=j!mC5VN
zMT=mol5-TuMW&4@9xHC51tVmbTaGxH8W$#o8@J*5(iwY9jQc+#1Wk_hd`J~%QfX{V
z85V9l=ETGqvKA^e0eA6ZbygjJ3(!YS>R@5l+Z9m9!|Ot>ZacRd<DvOoHDwxOhRnA$
zYh-YE^#(JY0I+KOXNsp|8y_D-J!$EPR75lXeOks+D@3rXphV!M&_akn|0FQUOw;A3
zr77I9<f|Ye5`b;jS%lujAP#L7%k8j3Hf?{gqj2lhQf~{9_};YA$~l(42j@~3SvQIH
zksuXXSXej@nX){zPJV2v@rNeDDOEYbP!8iYy+~{$E*O4|_miQ%&qbXJnoxwZw1)yS
zFK?@0WybM#CS`c(vAvjgdpe(IGJx8z{#-R8eP9^SXZk4(29NE*bQ$m@5$rE(U07_g
z{Po*tupk%Cxp(Q5$k6*zQN4eV)Bh?K1!`Wsh<zypSXOjCHOP|9KsApH!t@o%zKHB~
ztTaU{M1MOgKCLmF1^t0$*tz@iT2fFy*f$B}n-L16*SkA<goW#wqsoe3<X*$wDt}3l
zp}IZ>`*pnAW3vuA*k0SCZ7AwRQ&@{attRmk@Gn5e**2E))i<-ncw~8YbxlPeeOEw+
z1Ukv;>N23ErN!9wToXkqm!|<8j8X<&9m(YS!f=Q43nVFg2-Qf9`=Ty=e{~pFlzXy@
z$yY0sOz(j|jqeZVo2V8D{NZt_;PMTB11fF9F8}yHfn@JPW)tx1LpQV0YF>lB6(X<s
zv;MC#*#}VqdRq(plg9s6%<xas;*;D8|M^&vS^?&rVG05-D}Ux}#@h`20g98(8ncPl
z`SFQm=ebFEcMYX++ckd&tY8p!{_EII_IOF;>Y^@XS|aH0KgV}I!1amuac9Gba%Che
zgXFkz<=V2!a!;zHF9u|}WuR8A3dy+R?8ZJD6A;8fkd>i)U)>eG>lEdj#pXU>Q9N&S
zzyCa1!`eg;0V}8v>~Pq$Wm*~>Q~}+c(J(NC52X+0$fjv3X)oBWc99X~_V=6ZPx-&o
z7bwMs&Cg9u=<0m%_$_SFhp>RC9SFu4dO`GGiQ&J$5WoRKv1-){CRQaGc-({<HN`Wj
z^#179y-0%NW9<cm)omoc_eo|=iGA*AokDW1wTJO@NrrdEgAgUdT<oWVnqU(tXN++8
zB{Mr%Amc{5{dkzpD-JBvM2&QN{C<x;ij(t;1`$(s=Gn$(E7RHto0K*wF=3QF<=Slf
zUA8@T9V$zBsp<ijw8=SgUHuQu#*ZR4NT;W{i@kBX*Ph~p`z$Hl%_!xJ4mm4`Rh`H8
z(PN|W(k=UK`_;bKTl>bNx{O!4ceca{AZJQ<+wyB&>o(T9NTyL8we1lT{@anS4)&U&
z?!D`7f1IqTD=Z7Tb*<}|EaRFp<tewDDBM#oCb{Af*<bCZ1ldqoipd<z$3C<K{?Axz
zM*Ot{oV54*_nAEUb3}7h7s#}4S^M%EmiZV(y>Ff;dwMjc$Q_v$@Gb#*tW?i89EZnC
z!`)!gDdd6<maokp^8AD}3pX~59>I+NWrF_!P5)CH11RY!>;WC6CRs87N-lkL_MI$I
z8waSbnq+y2_WcU22udwplpBcmutB=Yg8DAK)(-0ydVO^VnzsyPnkUibcxz$7dfALQ
zZ~E`9x1$OUCdMc4Zh}N&<m3y%8#wZsiXL@WbF@5<(1r6mbVdzC%-%A79aoRypHo`I
z>u4f%`RGBVVtKnN(qCBu78X(0U}i_e-hw>Vt56Ud8@ogKa13bNZ5J!k=boY51Xm{g
zTa;4B_&F_~izblYfFiJIE}k3*jn5jFt!Bjsp1CY-b|?3!u8t%~;Mvcv&rDDK1o-8g
z&(4_?6^cR??axZ8ip#o`AgK%Ns!meFgB1#34vP1ZjSNjHDPuYuWRtHzJk##SdZh3p
z5mmP%=Hq?^W4rwbUBzX-bbpsY##l^u!AhnXw(-@5oM&W88zUt<7x~A(<h#A}r!iRa
zAhxPumT&vmo}aM!Of`**SIOhQU5cMwpyvS^EG#&iq0i2#MI78JL(GsnqOay0zXK);
z(f<mVem9EpU0049#MnYPHeMpR1hRQnQhafb+S-d7PB#ZFX5;Ln{S#dhY!TG`!+F)8
z4QLr?vVk=^W!UhEiHT#el;TF*UPQop0Xlo%e*r^^v1Xd=sQ}!4EK4}JnB5NbKLI^~
zn%6+9t6vJ)1Ui?*?p;iBh(Dq>HFSC#RDgq4NQdgEoy8+%rDMcY@5;w}-L@+|QYDw*
zawAOA(pIJ=dPr4zLDtnYgIkJ+-(Yt9&XO?oyR8S3ima)@^LKBdA@C@u@3?C`uS*WM
zMGbk^wZyM;Uc7Z~`c{TWFHmvp=;kuUv^V=c0!d2JY>In%%9$Ye2ZMG?9CW}7j8Q5s
zzvg;0N7IESr~Y3~`DwOdd((Aa?wn{6t$llkPmXD}`xAQqvh`#v-=81V2F624yx9|y
zuoa!w7{edCBH}g-PRJ&`jQZ%Ri5<6sxdSg#B;aU5jqI>Cq11kI#*>Y#tbTAoY29)n
zKVglvfpCakzZ4=yh)mRjr=|H>Ahg=(r9a3*4w4?fYYMrZ+{s9V2$0AP8lGH`v*)y6
zgD56XPA8WYy}bB{`MtES)=B@x?XBSZs_8Pfx7(MpUmN^S+yLy#lo9r393ZQOz7v7q
z`7n*>k`ZG-?}h@A_hSX&G^_6?sZ8p(;`VSn^%nM#+fAz_&UIG<$6m>Bz66n53ODD&
ztt`eTdfqCWweNng-p^aw7u%d-%Dwfnl)azFpEhgFf3bQn{q{$yo%`@9wq!|gP1<GZ
zH$8snz%C7l(zn~^2mgX`i`0#VRzywruZ_Em@nm2G&!^TGcc)hN{oStiH9JGzuof1p
z(Ek_<7=pX&D+4#H{5g)1=*f<T%qgT^?@OWx{Ia~29){9oo`H5?QGCSH$1c?AIHb?f
zpPfYz!W{UdfG`p7M4#><tn~q}on`bb_u)IZfQBr;1L^(`Qg2L5Ojr;b1aMrQBfV%*
zZ53qS_n@^%ry%GBvA8+CQS*-_19jt_nY&e#Z*4OC^Hu&ei~V!>0^NQBi#nA~hnkD&
z#>~{zA@O8P%*+a5&<yS;Bv__Tuwlq&JL3oyW=~Z8ChBy)czO@TQ+#+WFsV?6IZ~S}
z?~iQ@7Cg4YTVDl7d$0do(p(O-a56P!)OLaH5dz<w$$9JEz)YWpw4lA*aVVw}4N5jW
zSn1-5+B*94`6CO6ME9<35{q=&aXok|fU7Ue{$<2xT=F>4{_8MIe5*6E*tE(Kb4}<p
zUmf&fVDPdxs;?}S(DCMd5GWT%^?$0!DAE7Dij*bhmba_cxUpUgzWx_b{(pJ*zu|f*
zfU;A&@zJ?LE`v`K7+>1Dkkk}qr6Ws=50`*R$nXd_@O-hcwJEm>lmC--n5R+jqRdXz
z&WTk~emZtzIg9`0gHYe(VoDf`oWj$tOMi%#9OP>u4F$YhlA)dKLBT-)@dgH_XeTdY
z!g)f9B=vDO6j#%c6fNCQg&9Hce2lL1MCyH!)v)gdF<7Vo?I=HOpv}RQhp&UcV^TY8
zk1a$fhr3Vto5|Ys=v4+^0oHxJ)~{8{u}_iBr+gX>+taTdJdRbvo$AKho<Uy;knh{Q
zFOYDyQdMLemk4-UcdNO#&DI~jYYkL~rx40`?ZB0h1YWEo*50;6GwfB4*Z02Id*@(T
zcjsB+oxO4MIJu`~(3AVYKR~|`H820u=yt}l*y^h9JJ&OPg7>9_FHx)=&Ws2=FGi8V
zqASv`aMs^Q<4dG*H;{XK+i)=u{d79!lMKgwRLwczprwt-mmw5eY!O%b5E@!<8Ja`t
zr7kBN?3A;!17VhfXV7W>&_YB)B9_eU?6>fIyItn6@zbmfH83QE3|O`wP<ns2&ri)T
zcu-ov1qXXGGN~4=*fMvu(uq~;bZBk0tePbrjo*Aw?X~uO3CV3c?e*uro6|?Li=8EG
z%r&{)-Pu}~(~OH=(n&onTkX;ksU+&K2$XDKLm-#OO~6K6Y^>ovM00U+y;zsh>*2dn
ziOm6=ob9mo*lSHjR_053VyS`ZmJP--p`Fj=%-Dn&(i*pcwY;bA%I4O;SQzdL=n*V&
zhH-^g3G$^oXln;QQYo2j9=Xsq+{t^nSOPiJRnE6;%saDQ!Iu56oDvJ?<&5z$pFe0t
zrPj_5j|L66JCX6*9{&ixbt2|gvYJVNY5rVNgZ21&E-Hi%l#@a?h(DvUKmX>ZTq0_h
zhUryhx+X7D!SL2tGE6A0<4h<bYNoE$_mW8)84j9WWed|+IQveG<8@ePKL_jlg02{|
zBU=_MbY8X{FgaOHT08)gjAno&VO`WZ+TZuD5hM+WH~>OlX48GTVNg{@r{3S*z&jW%
z51DEH%G%E%E~rK`XlGH%GaV6Y4?`kXEF}kuQ|0=u!HmB<3x9(C|LZ#aaXOHQ7s$}W
zD*+c`z>Gq*iJ+h_xMCueWyF_;&@rj<DXxz?z+*G7r}na^=>0SS-;Sg?+rj~MQrb<@
z6ar1|-Ga%}h*$|WT=dF&>=84jy0#5?uBUl%2e)<SyHDYE^UMukA}XGMk&$*!em?<u
zQogd57#nGux%*DuyFIrA7%kE91!r%H++4*~ys5C}sAP$PK&HxkP-JKxq3-?XZx8<T
z&2Zw5nIwh<qlrDpyGggh7FKyZffFWU^k4Ui9jDtamKIJmQ`(qzJMn(<XGdbol|2kU
z@22c&U!jI(w#AvK5h9T1IC^@i2FVDL-Cce=kR-I{s3NQU+|M?xEmWozEdTK%GjPJP
za{QjHa1|jT0(;BtSdlN!3q>CvujLAgl!7%U0)y_9j+cmy9zCxIlMIBy(F{xuX1oB%
zeY)TMLmjY&BoR<{XA}v*QB?mzsrYLT&iBi8KV9&^5ho|yB&=_%Tiy5^xrDUTd`^Di
z{LIW$z<F&{j`;8dEr^IUzXDsr;Go(##q8<fUSy6P&x*Db!0f5JlARAiruTXyc7>z)
zy{zimz;Zw^4SBk(cx%CP^+iyH(TsaNV(wdHE97v5WUlVf=uoz0pw$iHEajU5R=bLd
z%Cr>{*`{CcG7qx|awyOcX6Ug6521!zNsYrhWKlg|r-&x6wJ~Ejm^C=r^&g7M&0_aB
zqM&E*2VZ~oOhg*h7Y0GwwB}Y|-yCB5@oV{Ya3;uxJyG;jW5V9KH)GAH2Zw{vG^Y!~
z+=mj$z!U>Tk6c=E<mJet=<{pElkACMp5iETiut;VD=}mcK*8`GAYfso4Q!TC2N#a6
z{1t~YcfkO;B!`68Z3YMSeH!a(!auFW|Gh=~pXR$Q2{7f*zya=PBEBIo2xuHk*=Eik
z?)UL%7W~IE^ji4hJ!>UT3Wn%&r|~uD>1c9Ob6blwk!~ksKi(nk!mFpINs29lk#=~L
z^9#(mofs3su~quC5(~@UH}F|CE9h^3tS)=S?jKh3xo?opX90#Xkovm^uO(Wk@Malu
zqN#xZXic`~QPj80fV$DjJ?y{|w|*vhXq-RB`dPn8!rRyjY124&tglhWuDqW2Zs1Ok
z)jF$m14{`1CNwphnmvU@?v0{+iW4?PcYw7Rx}StRX}XuMB1%Z}2IYO;dS+W|xpC_F
zY3qFL$Ji>~zDfOf17Qn<?-Sj^n*5%tH|b?#k6_1gG3P$9<t6-nU@nRM5<t3TrJ8`5
zb`bP(5DNRM^n06h4IhnHsS_*JCQOZ(ur^arqhv&9V8{?Rge-K$1);a2vhoGZo>t`w
zA32JLSbfPU1U?n$uFT>1bviIJYDJx2UXJY%Hbb_g^8>$s3`TPynWE>asS8rmYZXR%
zkj`guZOfw|rW?XLnAoTP;X4>7r&|D&>8qhwMP09%zHm8NzTS4(`nqp6lsf)iG!B1;
zrazStfAi)QyX79vR)F(XR-@`RtF}(6nZdE_85mr0$eC_%4*AYiH`(oDEChQuT{W&u
zol0@v5dLa2#Kb<cFqONRROX0~E``}ie2u367u~ByR57@FrNYMOCti1=#j~aB+#%d@
zA4xDrksQ5e<J=e&PF$95&sbW$o}BXi?ZOr=&iK|1)*QK;Xkc70M5nv12A5{eUXRCx
zHZmIyIiRJH-LS{gnOW$xw~Dyw+KHqT6ZYy@)q^?lSFh0@ydzwsV_+a0kkolQHhNq6
zFZuC*f$_i#0Yi!oKLLbtu?k(4E~eZui=)_T&#&09Ydo>IGn(KXl9@0RzE8FyKc4Dv
zIi%s5;+yRQrFXSH8}8=r?5zp|1JIIT@LH(t^{RqoW0;hpC!KFIvQrIJtc^L^^zNHO
z+v#yNn#L_2q|Z*6k@*xc*LEJ~f9)!dM!ahgE^k|$V$xtg{|c9k4>ogBW4H;P!YlXi
zzBeFlYHS|;GM|wNp!pL4o)WKlj?ztXW6W1BIBQo+u4`?nQChFith@)Dk?ZU{k>O^)
zUM$~Nj0G(}bs`}hk0kU<O40Atp}j}qPVyFYAp-!7-KPrnxgAH_l4i&KHvtB*j+z0T
z`lb-UOuN?my%PSN@90Su`=^(exmq@5&Fw31T>4&bO(*#I8N~Kqvq{PhP27FQu~}$*
z+BiHEbY66XV^BYdo4OhiX01Kz3Zyd*Gf>8lw7%%UJEvwE5x21UDWs@~v}oH)I2TW+
z`c2^INM(((EGyA3T0*A9`B=g2Viet|*w7)k5^}T<s<=>iMe1gnpNdFP=z5OZAOEvj
z=mDQ4w*-QKEt_qy@cg(;)On>cX;j5V@XM~a%YZ5tdOEvrYpB$@En&!QYS)hR)+0|s
z$^w@hFHt!Z#Y)yLDq;N2nLGp<15j2rcCJqmyNtD3Ilrz@Rq(J2TDZoY-dNNsCnJsh
zG_4u{s#?zFOEXfcZ@ebCv4l&*DGE~g^>Q}292?CSO83YiPom}iQMCp{($#d}M{$OA
z<W4D?{1NcC<ivwCedI>n>jt8Nwlu95;~8_S8SUmMmzIQLqCy_U71LZZ)RvfjLOfsy
z(ZjLMxYdPuV{uUPH5y5oo9x}KvfS_tgl_BW-&KDV1_&8BCz6nG`FJ-n600KkUrOu$
z&J_ft$bec}v%ESZgLKtb;=>0F=)}*OV(%We#{4X4C1hR=kKmsjGYO=EwL6L@-mStE
zm{PfZI!D)h38(ZCjacWZUNmiv8D~oos1mRzta2fDtjMRzDXmsrpVjDr9kpulu9AEQ
zk+!v7KUEscblRV{JvCnj>Mgtb!b_)6E?&?RbfalMWV@p$PQL6qm3s>>Vk|rNlB@Dl
zlQiMM-lt4i;U8nZb)RhUVSSU9ALGF+oJtvp)5=(|6q8KZ3(Au2-dYp`4>?ZI+)f9O
zpS)81O17uBw!?E(>y-epuU8~&iG4}El=!I=!9;?YkQUg9O^M7*wzuSA&#dF+%0G)B
z>+1F!O=R8?a_t&D1SD_bj320RDGD2w?sSnhYWv01e-1L_-XH7fSFwc5T|fh~T0~;H
zLNP%CbL$LR^h&kXa}GX=N;SFX1`ZBiHjD;%2L~q~niIZm8rbr<bAuyh!!TDrsS6p`
zCll17Rn)QufY70;mhOZ<R9ik$vUCKK9S9%DN&*!7nPIG<cs;8HsfOs?=tXm1?3Vu7
z)25yh2H+SUCV%k06V2@xbz7`joVV~3s4ZK{pziSl6V@Z6X66)`C@{eIapyqBgiGh_
zMXYaw*I^0vmgukuI@U0${P3s7)8Krg^q`LZ;;orJz~;-QNdik;YEv*>Hv1DIpI^BI
zGNcO#bJsSwWDbHmq8ta3S2a#){skca2QBwSmIFd`9n<l6??G39HE<=%^PJDkWM|t_
z4c;u#Ej~aSAdJrnr_{zFA2DktN}Uh&$9HJ@m#-L{#B}jrXTCSOKz^M|D&`_uJMG5V
zLXZoSsrpfcnr^5d0!D>VPIYkm+ddXH?KU;d&z#!a8}swDnRb7JJCrij==cuWZvh;T
zA;M>@q8Rc`!7mL*x+;uT%$~vKegYilX?%^rnvT0NzGa3#7ki^)B=MoHc>!vchAgI;
z8y&6sFY=EZCx!qwF+kifWLo#We99PDx0`+0w3&EHp;F%LEpNq0na4P`vq${g^&N(d
zdAeK&agM0?WIMyXNSfMDo0fP>+0$^&>)G>gc(+_9r|$Lj&Zuk%&G8sB%ef%!C)jQ)
zpwdE~?i8_#a1=CsogxykJF1&s-(%1Y>{N-wHS<&{<^GZzHh0zFiRc99J4z0v*<OO+
zJl#)S*iu<rDh-0xq4_mDpY1uT7o1B5PLSYyxauF&Y~j;6>0g}GldFr;<~W9xl=&p6
zpI2mD)(g1b3R9pJso5TZQZt{c+6nhJo(lw_wY5Tk$N_vxq(SUA(EkO7_$RDoDu4k7
z1!@wMP#nPP_(}36E))~%5LwpzOa6!Vd54;!%veXhb7J|Zs(u0$Cs!MLt8~LODi>8a
zR=q=cA)RVSvD$;>+I4k!CV6woZJm1&>7S~k6m+8oIqel?=SzdX$icySDzw5E>7-~q
zpS;JtOliLl`NZ=`s)3Ny#gE%YJMi5Ec`2a^fR9vS8)QOWXzyJVc^@(?4i6t31zqX3
z7K>EZ->o}>ibBZ2mdkuX`v%7x5TuKX+B8O0LJtgN1T<y5N{zP#R$4Xcc$dt~t5buM
zS2@{TmPpXCZ}2q-MmqAz%UiA0-@01&bQPU!>s*OCmO&3zbnc{nPE(6SAVRf$OG_o-
z8LS^$t<e(`l~^HDtZTK386vJ>+_o990L>MbAcgV7_pVk+O9l)g|JaUi-+v^sN&rd{
ziV7F+82Ikdju)yt8wH!{hKX5>96|hY!1IsSUFpI&IXnA&EZzcy(1ikfb$plAk@ML9
zcFF(Tu>b7JyyFCrk<!)Af+#y{2Do)~wdex_GOy$9JxFiGF3Fa6(uEebC2=<2Adwo$
znju^EX?d55Rb2kur?%UXwr>UJZoE3o>$+GsqGbv{df-N-2thIqscm8twY|E<f#quY
zV)Jab8e~ithHPi066Y+CppMAs_p;XlSFzjX_Pas)qc?qyncO!)#&YY4^RwM#vdV!%
z#A>|{3Q)w0RZ9jDMY-0yR$9p|`s(UmAY;h2`l{oyuCAQGU`=5@<E6Pj{&1{M2fD(m
z0448-s*)e%n?ezA)BGY55(%tCKjy+dfBwM$l9raPud@v2vazvm)>nRdI9CmSuf=_}
z02RwM`CVO5lFZn`(y)kdB8v@9Isb!h^&?qA__Un+s_{Eh88G@>n4;}4KJ789XG>Le
zxxhjR9UyVVu0m&s*!X-=WiAIzepuN8sW=#;4Oo-S8x^Q>nwC`S&zL2akKXr7(hB~X
zxt<iOCV&21h38@GA@Jv(a8N<tcsj5Dhy(;AKhV(7Y`?=p|MZ`T=>MUFNoEJSMpF<^
z_e+)*wyc429ky^M;QI8v&$GP$fCRm|fj43GD(_fF##bk3;GCwPM>Nm%>*NqawjzqU
zuBNnitG#_4-;a);w1WC|qlq|Rvh-ml9K6_+mSB$=t|(_?$&dT>6NV~6)&Ab)xj<*y
zbTM!0(Xi#c!u=Daak4&9@Avs=9?`px-57LG<a?4mnkoVkrgW(~CFw(=xAi>{^*`8x
zn}74AIr@4gc9lO3r^{$)XgCrmX_+)ub7BStz8>pA7iw42z5NkOUOfz~OxM)YTc%AC
z1jfV`7E8Jf?%W>d=#{Wj+-Fnd_{D|er4B(e7xo3YsjqXz#eQWxW8q*cFFxOS)g=t)
zHYv7D<tdWkkZ6nb?S3NvWVJq&M;zsLCx7I2$ECH&NqPU%{6g=WV|y8+rcO0vS7~)$
z<8`{S<IEf;Og5kRg1c9jAf}lwzg|0`ies4GRkxHN8NAF979E@~mb>$3`xO!`d$KCo
z^T{a<-W<yh^E{~addL<jHJlCChnlak`BJ+*lF#e5?16S><|f8Wodw<P9RW4vI?C-$
z<M`_&l<e=pa*7M9tZU&~o64%@PyA%L*PB3a%A06cm6RAN7wbxD?U(7<*gKMWB1TYr
zdRc>ItD(U6HSDZV=s|bI;3EE!0-A@0gX0UJBX9Qn^av<7GH&~_lJ5a=WBzRA{N?|T
z=9U3$F}8?|<?6P3lSCgjHufv@xRjLnm9DJw)~BE^{H)ggHxP+NR79#)0I(@~MHQ)y
zLSnZUe>hM=+|{#_S0~J4D#f&eGgUs<7_OoapTyAPLqc&_Q3kSB+BGtrbUEwL)09!a
zFV}2h47}9)mE<Q7@se+!@$3Y3B<Q(mhq$a12~Oi>G4+(C){Bi#g~f0C2dD0|uxa5e
zWQXcE*l>9X9SU-p^itlk)FTi}%1vEq8IZHGii4nqbE)O?V4MPkJsxPvwC3x{H8pS+
z0xVKSO|@X-<CHR+5!ri+<7<jpXp8%A6(@B{trQi*5+$1eyl}4ib-Aw8Y~=tooG<=D
zg#|N%-nK@CD-rR=+iutAR*PoQYq)mnJQepS^$CsR4zsr`9pb9b&DS9EO&b~C+E&`R
zK=_d%k%5aXiCv4gK-UZy7@l7=jYXT$_1<^mKz@^Jq<CK`Krqsl-~fNH^hVlg-kGIt
zs!nTIZQiR$ABtUwG<wgh^0Fw-B3V52V_Jfvu1p$XrOfft%$uLlSIB(Z+-?p)eOSJr
z|Mc8kZ&+_O9(2^Wj#j1xOy7Dwoc7M~{o(6LXWD`r@Aeb|mI)spTZ<|y)pJo~DbY`#
z4I5qf73teh;uDQ<Zv|)6Vv;4YJbxf(>A!sG;rCPdi_}m#d_PaELYv-qcP>1Cs;>(R
zG_}XDx9P*PgVgtRIqS7H%Y3Kq#Z;ZldWg{OR|kCt9Y1X8PH6wX1IEN}0L2LmFsijI
zIuR%sm}8u-EFW-@4tOFwG@Y|T$P<cu;36i{_|=57oiEO7$sf+GaimDdtx6(W)NyFU
z(Lc*U8gC%KBHbcdKVLmv`PXARlVhTUhE85x1}Y&qBVI=+a+crk^wmCGx^{I|$S;f1
zwKTqb*MJ82h|f+o<RKd<B)St;7dRW5G+T7PIHlB+9E}Rn--KwU24uc|HFxkM?|A*y
z*jt49s6-X@lveETt|o(M_K=qjtZp+p4PHk<)CI4U5u2MMQYC`lKg@y0&FwqLnaDCF
zm5bPBXnc%?TVUom;|KSMxz~yu_rb2b$4w@*t(Q~R@9(oPDfl;wlhPQpwF3l@Na3B2
zNho{is<7^cQaKf;vMh-;G`b%1&Petqis~F$QAw9_G#7h{Z`Pw1-x>GIyWX@Mrz_@=
z$q)CswT63N<`cfz?%Pv%3>#`80}spXLqr0c23~t^GHH{FYu`tK1k;-n4c%)Cj_cLA
zkaRgS!!KEC9|5dQq4$K020oRuknqta4%m969RO*R=0MXxP(*#UTF~DWayj1g-_YKv
zu{23=FTVV8cVvRx3DfOU-|ek-QTIq-<yjiRQ-eQ6oh}8DEtP?o@wT<yQ?V2W%u1Aa
zki+`IG^;e3G3uGji%#5mWas1*+320~{xw%oMK(f!dHk2#AwY!k?@Tzk*Voj<CFV|)
z&dPd<*H&k2>rmPB)BYSMEBdnFXM+{`ZBIE+?-hfO(ZK+2Mk_5v;crt2LB61nBPYRb
zSC((O!Bp2Ui#<rv`z&{3M?`XCkQxTe0ENCy$Dd^UJv;h;h=l)RsJ>#-D_wH|YzE*d
zsqjcPWK^=|knj>rR*h?mqk90E`y!_R(t+ke{k-{2DY&pSxA_H{nV$-8x3{2<ICu<|
z(j&)RahmX%VIXp|ci4tEhhZ~JTrWRF_LCrXw~w>uL%7aIm8L$CeZJ>tB4p;(M?IU&
z_lx%y_N%Eah*>LX22oUrT1bwyve^)qbsM{BI<hYjx=YpHya(+(@xsq`{aZHMfF;|D
zPfvD8mN*R8!r5G7IvEeNJ%NQ1b2Tbc^LMey>aS;-cFSx)hU9N}mTfJkKhfxS**5FB
z!Reg-95|clw3^2nde)`{Rt`oHaju<El9R7$qr1wkZx27mhK2o-)m6$z$r2}R)eL)>
z$R#KDy7)<{2CU0`I|75Q&NT!q2A7>h&F;88f6iYl&}k7H9b}JIQkq%V+D_>aBId5o
zK3zxn$#<iFJE?XIF4`ut$ExA9g;6_NN+Z*CjvmmMuSLv)Lq5Xu8>XG+mRs#+x0uQU
z+AcM<kX1^j=%;Bxn6yFW<z*$Y?fFAzX2Ln7Z4S@{m=HZ9^IQLYc0OBYp3Qk|T(wkV
z2KyqX(+e7!wL->G2iIXVr(j{8!YJFr7!rra6W!!YbpHoftqD)pW0iLng;udUbB%^`
z=eIy-=1l!f?30_tX7T~aHxks|v7vqi2;w(K2Y!toO%yVx61L@0-KQ6{AD6xrQPM~=
zDSab)skh80{&}!VCL-h26mmI-Q;5X%p%qn~vuAXmt*_VS1ozZKv)xLe?-}yjZjJPT
zFjx9NmNpUiVho0q$Hh<A`;q(ZY+$n1>yb~h-jbDgxg|l-QIEPmLhCINbhN@)1*zg%
z*z-sqTlmhzUBzxUX@+8u=>SjTvNZ0|Kf3@FJen-v(w1(@N~JU}q0-bJ^~#ok-HF}D
zdF9HCZP<{N4k)Y88y#+7LT-Nhf4a;6ms)DX1+h{%GtvU4fry>mer^z0^n&cnSd-%y
zSw7fCOJ!DpeOsj5$+5a&#Xrk?thC>jTW@HSa7b*zM>7r#)I*yEV;J|`226BCk`JYG
z$_BGP%BBTHkgKh3IM2IF6-hUmbnsTxt6$G*O*l@7AmK3j0r0ZJ`TTO|I6dCFj2$Bz
ziR0Cp969X)-=|_x*1dzC=k%sDl7~+<*e8L`2V&QZnv|lPZfY!zFka^eX;=A~jv1{o
z{w50)i>Ty20WtETPqPkgR$>X27?(L)JY=NB(O%ped-I6sIDO)1BM1$0$}PBB9Hd7Y
zbzj^fQ$7r>>F%(e65I+D5UqOMY}I{Y=Li=ZbU|SBe%pG%#(RH&syM>_u}h!}7z_g6
z?N$`A!G|CMZ4b&c7;a~4srJV!8(LgwW@iLgF{vbLT%qPsyZ&C17BM7@$ts9t<Kb+W
zYMGzeXm<O&Ii|G%1~4R1qN(*E^g{@$)%7G7r@YJ6tlaLn9BEw9374}qWsmnt&<jc&
zQBk&bKJT`Ll&AM}!8{Q-V+@c{mYN&Y$o84}6xv0os;KAk5=n90`DQ@JHV(d)wcvnw
zxr8zj*u-0XhV-?oA-`(p{5a2htcI0wQX6^|TRmX^?Lwe-ss&!G;6uZ`3({p2(llBf
z+v+P7Q+HIg8@ul$1SA%?q#YO#JJK3q+9NFxAu+~O=O_ed8jcZHIy=C&@;isscWfN+
zG@nxrJdeM*IFfLVU`GB_7nKkQq{3hl+A9#+u*ZGNT-^+AeEitwLj=UA$a2OZ*dZ6P
z6_T5V=Q%tdE$NMwAuRjhuxT{=ZFatMdkD6+1jF<2cRccchT%>z)SK*5>ZvceV^ztK
zfN{4C8bv6)khj(<A>RJ;sJS_2q49|+<&MHFA967m8R)VizDa8=w>ZD$a=$8dnEz2v
zUCN%93h-!m$Tys5(;}X-lvU&9W<_0VcPnUpSIAD&*M6<G#wU0vwgnUXO$*wM(j^D_
z9V8U5ZU4|{`v;_dvx3H#ELM4^PiCFR{~yNQGOo(Cd)JmOfr*qzgS4b{cPZU1-QC?G
zt<v4yIq8t@M!H+N`@LDq_3X9(`+0wRf5Z>SocFk|Ys5K@GtZhghmMq@&$S|f<l7y%
zBqu?#8=O`0`c^xitPOjX4)0Gw_3u&8|Lnj|eQUq1hb`Xldna^Fz*D68Z8dsqf>i%m
z9a$jo<`tE`&UEXHteVecSK=_qqiJr&D=SwJl-}YV@^kjbWZ`72T40~ahjQ(J!a7%r
zrfpg|r_1Md9jc&o#XD=7G$PKi+4+E7{eCZ*$&+DzwFXW%Gj#odd;Yp9cTBieH#rVN
zhCMR$cZ@<za$1Q~vE@0F{GR^;x%_s&aH-VS23d&fHfQUGl+bQC(<?~R(3NDav^RC7
zlQWj(^!voi_RJSMR^~%d^n8N2t?K+_Fs@j`wTm!Vp122*jY`uq-yF*{>VpBing}Nu
zuZa=_kXqz{w%(KF!dIr|iod4wejAL@4u7Gd*IufDDsN^MmsB=?wGri=htGv#ez~v8
zK9X#$%)_<@pN%>#qhnnD+d@b-5Bu%j;MF$2XQPc{GV7t*d^3l%*V}MTc!*2A_V92#
zfQN-_QiXf$u_u;GUM;!5tfnMw>jak~<X>t}Q@)l5e|DPFDwq-EQ}Kbe*B1My;`nu%
zOq`sP@7yKYEPU3-lC=#!Cy*vITHQ>5{_x`$1hSB+pVX`E`CUG5(VeLy>ZVq2>MeEz
zSQM?|(}Ep35^gT$G~KReOXpozxlh|&`M|rzmdGr&qM=_Z)a{AJGaWk0NR+CweKERN
zy7L7$8)QS+s*yrz8(A(62-2J;MUxdsjg7b_i=-mCysnO|si0SyU8}p*UH>$@lVE)Z
z8?_`mcm*6LPjF3UGK%|`hA9b-98BZon2XNg<qy%_BeNN`=%=Lz-nWhgJl{`a=|F$v
z`)h-a$p!9Pazg!dh}tHZ=Bm=$fK}9}%-Kac0%uv-;<uqk9|L-x4>{i1-*23K5`QGu
z5rdogfF8A_&Nt1+(eZ&!@!SP2@SDt+kekkNOXkg@g#yp}D-1N<Cmsp>AOBg+{ZCT#
z?+(x3qDLQn=#=?7%Z0J@Ph3t0N7E$;?J#3aj>f>+soZiQJGFS>n@W}*bZ0cd)<}Ok
zG*cISN~@(&=<D{z0B>R3&?BAz4?jVw4Pla0-WrWY!zsha#*0g=-mm){fFsD`4ca$q
z3*3&isBF_WJ|KYEZ6Y|ovbZQH`I(zkp|hj5JTD{^F&mB44H%eL+8|<NW&ifLyF19I
zWS&a53;6Qdk5dB;4Ncr1*6~|p0MN-vMx+)oth-|k;)HMKbO^~w<5~C?25JHFOp+Ts
z>>U#<{^`0NIP1PVxH7gdh;k32aHk#|b6h)tdBQa2a8ZZI@4arT)tC++hFcS=^I!y2
ze-&G@=k9Dz0yXXgRYl&@9V<4mR~W)+zLTzR3_afUh{2ZpcaVOZ+E>9#eLB&($yL!*
zQvd#yL4POmw7e2guTgCiQTzOziAm>_*x;7KhG<R%NNielVF7{dnrV>#PzuKnNy(wY
zVEPN!lhePRL&R5~H`538lpDVEG6l2)E;n~~+EZJjcnqnn3s*c#tov947)Rc{A7!G;
zgXwD#L*A<xs|-*L#2)S%ztM40ubO=5&IMMP<p4?Di@Mm-l;7R%@`A$O8l(hI!RJvq
z*u5)3#$i;?zY=2^6CW>jR2rzz=nV=KcFdSqCpi@%!9EQn{ZWAQ0t~XlYST}U{6r}N
z4%soxlN%k(AM~;kb#CBsT%|uljsWR|NPhcU20fYlAgrZp#hR*p?SG?1FXkaYzL#ak
zGwWY(HZAD^u{+fuy>W6QojPPS5R9tgiO{#!vH0!(HVjHae%U)p{?t#=`NAb23WoNj
z{Wh7_P0>Hvl)`#sm#-ETtnC1uCdvk^|0PZw(lK6^1THLz=x9RGzKZleQr<JcPi@Qq
zZ#L%;IbGaHm97MhN-G>NpyP9Hi^i|4fs@}%z|gBz3EPuD0ua7E!0g4^EPwRiFVT1k
zHl!Od5lTjvk0g9SU4#gzfM_)ggHD=`gr(v(jEt_cvgLEg-3ZI-9bHV6pMUI+ngpF0
zgv|GlWqTl?zOCS0#f$PXnZ2I97I1B^;i%Ey!=5VChdU)p6sD%DbC|0=TKRRY26FK#
z2YCTj>@+{J7SG+^r=<d4iaWF>w|}4cuIGF08!GEbE=6s{Hu}c7<n)7o3Y)3Gb{_~R
z6TmFVu8-@unbcdw!NH@=>v4BG**cF@EHcD`)0&er{GNpvQtI#>AYMxiD2(bujFr>@
zHa^iwmYCwqnBSRh_I;aba<;w=yx-`Jn)HJ~DoW+njz4Ly{Xk8f^@62H@W4<$=*9f!
z#v6fy=sovMi^@Jv`RAYLUiqedRM+vzX7_?uP~&*qfV025%yHv{;`FKso3!s~w_<iz
z9d*NhAY3WW#P39i{>cdW(<<DdBwMK*P|}*|wNFgQ-vO0wsoM$N->Eb+);~a)iLdAs
zW}0sTLi0kY<M)C9f}anj;I1ysDp3Jy$m780xGaI1VlPb0I6%fNw_LZWpyqh8DsVu)
zYz+DR6>nEEqdsiM(wmVK@J@AgH5D(fw%5(~@83If)F~mZ6XZ6>&(&S8=Gyo^ZMhb1
z@@!gfV$H`6oXJz}T<@q;CZ4;`FaIPYA6=eJL?zMQu%BtR@j@*~PAzXhfyMsoISl)>
z3!(D7uj+CrI8SWH*Fd<TYkRPh0)cJT1ot?Pb_340he=UUQE%PJm!nEF8z#mx7t6nb
zOw4BA9=pFd1O??o0`XntJ~TP`gZJS?$klUdLQh}67y%L>0J#F1ptgOI`o1w>n2+?n
z`7bob7s#D&fOu+@R5LB<&)efe3rUv8lz2CztYKe>4l8mQX^*3E>|fXJdo!~RfYeAw
zJ&u=K0%AJ;tQU;2BXo6l%S93Jm;w5ik?HfI1pc3(1ZLAWOP<$D^VshgXfzogA0Kl!
zI)R0BepJ4P3I|8i1k$q)QeS<{Rh{jkQYqt8n%0o1;2ok;iJ*O#3Yt$oAVHSW<z*g%
z?2ehWXSPf40S)n{#-)wJ>~E0yQ7Jta=du%@*i7&2A}d$fU#}Ol5+raH<+iuCbJ7!b
zrUap|ci1yqLwZCcUtjX97+(WOJM|EV$%zRAz^mK#^ht>xc4%<$hgB5FMSBQ*KEg%C
z$(h8&#Iy@=nHv&5t?B>W)NF@&86P9PN<{7WLp#aHMN_S%@I^`OFPJqY<V@8rx8*Ld
zf{qSFL;VAN0mhFf$ac*}&IdD6jha*27{6{tLsa^p_eH;)ZT8E*E)XS-T>!XW24>`7
zST}cfbb0tTU?~|`9+>?!%Re1oPwUSgC_Sbur+!PE+@Ipq+^IOlL^QSb0a@;6U-7Y&
zo$yoKb%?{mJ_GVrskaumJ(M0R7E@t)d!K4zpDDhzob+JByo{pfuWfJsNeUZaOWV%L
zsmzJw<}5h0q-4Kv@5lG=isu}bI)Im1<6d4eB{8wDa;dtbwEgL7kAzRT?M5@5l&umV
zr<<>`2Cu<Vl}%DpBe|p(tuHyR<mP^gFIoy~6iL!=F6+bt+HlyH@+TdCg)nvi5KZ*(
zM!fJZ@7`)B2z=TT-vy^zwjO_*G+C*YFnuDY&g5Ht8yEoh51$2s+~x?nv$NCW&m1D<
z&E=x&*=wn&c3=arRs^V>7O<!miJ*lW^Tx(x?QCs{b3*U07OZQZGyxdRMOIs=eD$k}
zW_Fo04-u+1dJY|D0W|^Gt%s}Mw@Ix%uD40EA;GwR{dH22?Eo&-(0(`!n?A141F!@z
zz4|@Jde1Dp1z3r}qegCj0zUhBOC9#zkcX$|7V+9^_<SCX@j6QlH7z+g0UG6!is`_E
zf6|*2XJBT<eH?Q8>gDwEMH0)%=@NDUHc9_gI5QJM<`wV?b2%%RS)t*00`%P_|IcJ1
zo4?m3J;^nNU{Ph}FNTB90%(NYXeic7d=-m?${JEf@RmP)<zhpG%eUKi>wn+itv;pO
zR#GDzi9pC4aW>keV5^MS@RlcV{0CiN#Lb4IMA;#q4I5#n2YE!|D`78UVq&|mHj!!#
zcDdblpFVxc{kZzVT|5vAf7=1P`+~Ik`JFlLOH7F{KA5o@oardO>$Nk}e4%|x&2+|i
z#MJbT@ZcXEVVYg+6sMyxo_^G!_IU49G$@SAL3WpxBDpxHInHCnmMPhXbi8Pr>$noR
zdwNfeC3F3Wn$17^=D1P@s-hGcKyT8_HEYbh%8+(W|32PrIshi&nD1(1tMjoo=d5C-
zmzUQIwBPUJTK^9U+)Yge<9zAVO-&ohp`js*Xjk*3E)!-+IJai&@TjPG=?j+2dMlv;
zIry}z!v$me7QmTcs@2n-gMOrcoVgIz-`DMOU!<X-!QtjaH@FNtg{%X0_U!=`9cz=Y
zM)};h=TNY{`D7k)Du8(bj0N^j?xq>1JpJrtq@|UocbdEB?=JR86KBcJk?__Uoem`d
zlxz8<=R%PZ4dDKe1sGhh6(Di7P6aZrfoD7V#&^hCKg^YBah>9*ejUmhlO2t1<b^wJ
z7Fd0%z%DB@LV#T^kBgnQT9sSb34ikHwr?OlW^>=^x%~U97;}KHAgb8Yq|yFsDe-^Q
zgEjn+u+B33Y`2`Q+W><_QC*Qguwia<51aBpy5}%v;ndqbQWEi8#61%PVU<y``9lzI
zSFnh8qf3s8;I;KiZ0NZ?6)lx^q&=exh(H&R3m=_6ZZ1(P!@~~t(PWVV`xq17$jbY?
z9)P`)*O20|rM&!eHKsp?$yR@AVG0Nc6!k4&3G+8VuE)gMr`W+N-n-$UMZE`cG|4|*
zMNt`Fp5Kv|;+-aN!00~BTvHlHsM!>~(|VYXe%@s32aRitWbY5!jmlop%gCON^C`x5
zV?BEI^2%7DwS3tBq;Rb;QZA#=U)acn&e7odeP!#JM8DT|^Fu%oH4tc2G9^6L=N=Hb
zg3558J>wVkDT?UqaNTB&Ecpz*ys1ZJNR3B{5SwNnypix;(RA^p6JLL;R;l=%++s$6
z`TNc<{E$Ak9Vfl7F<eBUaC3;xk`Cj<JNo)0xWD*W)6R~?%u-dOzrQr*@;n=BonLG=
z`0KvgaIOD8OFHV%5b#a_s8|VL2*=V*u$!_w3h-Y5mxrWo3;}ejCM5B@I{<+!vGRWK
z1-i5rMgd|f^a(-GQSI=Uo0}_|UpuVO{kfawe)MgR>(ZYATRt49c%_Sh4NlJCR4$bx
zp#X;^$L;H2bvQZM9Uo418ZThbQgsVBZ4kk~BL3pBooKuX<;Uxp0<3%jI$3XtZ?UZe
zB)Ne|*aOsCc20AK@uqlQcY73W0Jp1#*nWE`lcv1+JJIh+xX8y*@2Bc_&eO&Kmc?O^
zwmv#PKfma^M$XqBFrYA1ozl+-I@)KNkWf%t*z1aL@Q{4Bo9LbM7nwJ|ntH%>fT=(Y
zMv;I)E-L%whL<0MG~tX#JDPOd-Fdq^4ts+4)tvENrX%$RlDznFXz815UF{Ia7Y{JM
z-62jJ<ke=tg0Iye7xJ1m<?!k0x@}>IfA#QCO1wP027G7BzI=Ciu*Hdod9s#pcYh2J
zx8i3%rz7Hdt}cfhSjY^y0xk=aF;ohhp5af_0CZv(z|NODl`6SgE;Mq(!6CmB9_76+
z>5c(q745(rp_SMJ?qBmPg2tL~({PLAGHDi!VxH+A!K`4N`|D%tZ&vuTd%*4Sy;>VD
zWXJyvl^z6Tv7^8j4!|TL%<&ZEPhyA)8P_(>9A&>={a?HLV;1lj2FCKHw#2uAB9d~!
z^Sua-A*i&Wc2!hPzYGKJh7=@XJT_m6IP42-t)q4j%i-7D)##sY;?7HQB605Vf++tU
zGhjd%;m?Vd9W5K2Adn~suwojfS+U~X3MY~K^0;61p?aS{i~*cki?jgA-T+Y#_}=j|
zc*Ph+4rsx#a9O|hvxy?sh;R@TNlHpF@6_yk2_mMn5@AMG|Ckee;BsBi>(V=o5QuSD
zxR&<BXR_nWYyDXgO@B`LF~_iC!1uhLwgwkw_%2A(fB1+W3(EYL?}2vT;`HXYWg{RU
z6G{o^-Tb&NhnV!JHT{~7C7mAHgK0|nH`uv3<sl$M?khwwITYWL^RT17BH^<{`H$;W
zcR==L@^e1?uophkyq~tDX+QFLs%U^!a{f+O14w5hZo#2{=aNbE5Fuf!A$i!$z$P_)
zR5NgsL+3Mk7I;Zo<jxbl_9r@;_(VS~Y;(s7j$Lz}0;p)kX2Es9caj6_|0@B&UWUbi
zzknICia$JoCH^EA8X_VetCmaU>G$=IcbAiQLc(wYDTriN{^H1jLgtJ_cOs&q6XxYD
zq9Ff0A$lUe6ZlS^7E1XQ?9M#%GBlJcWj+22h;+dF#9y&U>5)Bz7I=%ak<e1jf^A+4
zvg4@`g2-BLx0BD@)O9|F5FP^vnSK?%o@Ewg&t<?0)@+@6I_Q22Kp}h|@hw8p;33ph
z2w}YherJd63rdOVsmn_X3Ydqa%VcI|VhMhn`uS+r;Rl1|$1oIia03MW;JMsRX=K<v
z#LhWD{O&s~BG70q?|ck*E$!9yo+^;L*aIxcgQwJ$uhXNVP+K0(23e0?7u$e8ByzaH
zs_Brmalfdz2zaVEJ73LtbUUGw_05Y)4(!L0f-e{Mxl0c&?`N*ffHxrl{rVZeQx$8u
zm!OZ<14(x@k)EQir-f2fDXIDF_0C`G;s8S!AF{D+o;g+IT=K6B>7O#}pA@GC1JeBI
zK8RZ>2cC}pqiMcn%kg`8CeARvCz6w4`v*DfEPm+y!OzoLP-AhfHl(cT?;r0nG2lXF
zaC4e|%(TOhkBK921K_mz0aoiWJFZFUhOyrWiZPoA#_f9FdRSGsRM?j?%Rc1mie$CM
z^Ohn&*n7E$B3^mY2L=WeWNz~9Nl|&7<G7_e5Oy_!Y!;D{9!pv2ybtabG1??+6vaDI
zXWO|9HBKB?6!wF&KWLtBLOXf6T&0qVgqYC%dL-K_^G>A>t?HKw!Sw9q{$xd*nrk!u
z_T%?Z^jW!)fnKWFN0>9L-t%48h!mEM1M@;|dXcz6>Uz8UvtVMggb!QC5A?C`EpyJY
zJ}{+9O*vPpUE$omZE$AfifHFx^d59qOsNrof7KN2zC*RSyv9WJI^gG*0Y3=4$i|Xm
zL2dhFioV!C*L?v3krr)$tqsLOt7nq~m%j}>BnkY?YSGm%{ita-6#brXVlXiMB^1`R
z`6|>niEG{b%?2-|lYwpV7aqb8Tu0WM-7lVP&reMb6kVsVuip|ajKS$qZk@r1v4Nk~
zJPGii)`Wvte`g~@TyvHDjPu7$xd5@F;#m*I(aJMG+u{ef9UUFX8|0+G8yYX6!cTy1
zI!AyuoI#@^09y(t;872SkP8yR*?tDj-CPEQ$S@G4tBZ^HIJV~0)E!Y;lVS+%G<(Pb
z1J<5fId~nh5r|AOB>4Q8WSqNBDcMtvItv`n({60}0(dXBMH_zu$ZIxuMBCO{7*(3g
z_Y=6!Ks#h26OAq);bYzeEh@<eyoH$*cCiy+6Dys?SqvV+{rZR&6?ObwmxE1h@hAS(
z5IEJ1B+~Aq)ee8tnG!Ymn&6sN8)ttL#cse;gshz6YK;=1R~-C7kRNs#90zjBB1}V~
zwy|QzBB7&;T-}9Jkpk-rzTo_YYe6Ra<-zZCCb0xnpch|xKVGWbij)DiKLZEh<_KQw
zC`Y)M07^AB^2e`Uo@&6t!`0HJd_B!y91}vo)XlB2nch%@mT&(YuZsuulp2ymspNL5
zP(gk-l+#gW5inCaV}TtNTJ$FWApr<^zRHLIFW=keMf=hIS%R3gBCy-#bG0+Us+{5y
zF5ldRw42~@fOf8PE;bTk=&x6Dau*7f@uOwlm<#!O9g!p?l9jJWwD^<6kIA6lOt{Z2
zy??%6-jX(AYw9O|PfWbSJ!&*idY-KIYsqzo$J_)s0;ekV#olqdFsvo{Fr0j)NE=Ie
zW}vrmf4bc<bhB)hA?6m{+}<7_d;Xh`;5!)gQlGWi4~TXB7kFoF$SbeS<yv#>R1W*R
zDYb)cp8}I6Ek#92Vede7LKtk#stTbto#NFmA`RwWn{X6!(1|z;Mw$}a$;f<g!^Niq
z+NItu{$4L|hmI~{eWEpYZW)rY58$_w&h2Dyfs<h4b4Y4>rWjbhjQHIq{xHn-fSU`?
zsNJ4H5da<~+OPd#YAe^_eexrqF61IM3h8tivLTXB9NhvdO9Xt<!7*Ass})mug<0BM
zgPD%x*VI`8omiwg&C+9$7ekmQds3SYfACIbj~ia#i-2^MEDHG#4lV(uT)!y==nieu
zZ)cD12cm4XEs%Bu*`Y`fBj#c*F4+@9-!5!#X2-aH!GX~^XLPM2kbrHoIkTA134vjY
zHTRl!9APy6Q`Q%FLK8LmRUog^LCY5lhFk!pumo|`vTkEdHZA}aRel%~LN#6I4)Gr&
zT!bZ#me->wwWFc|9a9-M02T8Dz-ua*7ESsRl1v2l%YdT_{Dy_$8<PWq7JLuSI05)&
z@qaWL$^gjrI*1;!a9I`T6w+U&t$g61U8z|PUWlWBpmzcjMUa6VMz8={Af?5J-{NwA
znk<xvRgfP9SNY}_QAHPHX9S8LeNHnzqh0{UaHeKDFQ%y@ah?$W1?(w)S0qTBgh+j;
zuP@q@a=AAW{|Aa|mEVoOzQBNC2ulb2o*h1Zn3=yh1f&eKu>2R4nUEIuYsozJQJZ1^
z472T_M5f%bk}v0QC@y!3qac~q=cjvU3JE+U%{?MB8f*T5yFSt=lVO|4weT|GQgP=}
zY-m9cEDFeN?M{}YODGscLiA=N;Ff>40CflzVl7FV5^Oe2O%>36y4E<AKQLWSZ;mg>
z&n{Bbe*3c)9*!ScIK@qX2s)HHy2=&UCp1$?Q%Nxnp|dTsMV3xv5}~2D%q2M%$T6&w
z(n?KD)zTx3M9A#&1~JXo3Au`_d<1I~{}x_#>u$pak(1c82;hZzD-ab0-T?67=JKgF
zB<dFC<>IStGOl&LKh^0RXf>uIez<TG>VMHh{<#PleCNeq$t-V3SiMBUfY>XxBO4(U
zU)*;#7HeN1l_dDlKZgk{cFsqK6$ek-h_3m>UtFq6-r3cV!wSPBYO8*bI(0AY@+q<%
zDJw5vSh6D>&Gy~OtEZ;1R1?NR1Ba<(Y-1Gc|0HHKeX6yin_Ji^T-wrpr(YNI>2(Oi
z;(_yYkHqsKF+g2E#Go;yAs}NXGqQeG1y3YhiZqY>d6ieQ5ZYO!zd|S(gT$%UUZ;$t
zAZ!@~H%cbt&1b&W!(*=n6x5#%>Fg17@gPyFcLBybF|+~D)3=*cu7K$k3fThf!lehU
zodk=Ei%0tjG_0+nY7WM{l~wXp{SD+UD#=ONsdXEjh<EiAumS8cxd_X3mdWI>Q}rq+
zLBI0x&MQy^euM(nj<rR!#Qe}Y%|x)my9@kZ;CBQ(OH?cUfGqvPLJS$KFqfzLG?3r{
zRDREN&_<!{+B*~a)tr26s3J}`3Z4)|nl~V^dDt#nGieasJ`~FS7g&MRH&8`(DbLwr
zQ3F!&c*L(2eUBC4;gyqFEvaXx37egXz(Q?T+u8dZ>RHx6L?FZeQsnO|fQ*cz=3xo2
za%0RWItM<1`3{nm$4F0iGh8Zuc8weMd73X*4q}e8@^fCHrz#0PM~WD6U!V~2pU%{j
z7UXY`s`DrhA;;eZ!~fRVnR*4;+S)o%nFaefFuxtz3>jiEL$Hw)EI_o%>4z(V_c?<a
z0b|QJ#GxU-kG7!D0r7QuLxkOxhs<s7^ZShk?*RO?R9q`qXEnleCYM>#(QTpMGIBA*
zi=7J#^!3$j$2aO{hvaxR0Z3nNw2~=z+TZLcnsA@96*_b~CB>S@pHAi3O^X@kd{Fjn
z_!TC&mX}a@gy}BQ9QCJ-+b)96&#CDSIBQY{I^4WQsQhL(Sfzq}UuQ8Vc(|bPWG(8Z
zl(QemfFM|%knmP)81E<;iEv_*q=MJ$!KKMD7BrC7w+C3$X5F6ed>W6l`{mCrm-}3^
zkooH?r%gyTwwrb&v~}eCK8zzsos*NCg>K?Qv5yZ*p$QrY@#)3FLtPboz6X<7gdE@u
za`z(*P_lt}0H~*%9KQEyc18-9gX+{O+*1oR{ZBgtA-hDY0k{SxCIw4$u~5mDYkQOV
zwOS*Ha<#B}Fj;)=S@cuBP(%}7ikaK)oXqfFCWxOvzt-F!KR$8<ZKSWit~3R9GIPXF
z{84$MI|Ve4T?%8sMJs1?A3uJqwY{*kZM6wc2!3L}n8h3^&t~_yVGsdG*&G}5@_uS!
zmoytZy9L(9*9TFh&Br)kfg+ptE>hCcdB*9U%1Rq#e?R*v-4}uSPl|NZmx;>1I(&cq
zK*s~|;G*@dMj+m6n;VMU#uR>)2TBETky(%k8Alt41y1-Jy2e;R>wBfVYms+f+O)6x
zuzN=MT7#;dZ<EesF!JZ@QLT%m23ac5V04~y>nyEd)_HTrMc%Dek=Q@dY@$skE_R2#
zw%VLrbGsGfQt0#=n7d@zBG8l+$y=;yv{Thq{bEaLr`jRyYbPw+xZ1g>$i?D<{U>gH
zi^xFO*v8I2RnR_l5z#@lK)S_r`C;IM!(k#v;tYlu9q)8i9t#)Od|~RSPEsmNkbU8$
zd+&5mm}+C~pPbn0&Av69__0^=Re`glf~95rfbOUhUmY>LKlrtMXn1&yiikaJ4Xv=c
zHYNa2C2f{O0^b$-@S~S`h#!ahfGvU5*|R_nf!~45qtq~!W^nmGff`K6i_j+-e-Ss<
zpR~(<FrGdiAj=i*=hDR@kqVoF<T(&8kOYWY{a4>IID7IJn9#>8WVbLGU(IoH?k`XV
z^FQ*|Mjl{5&YXpSz8&H0Ky?a)7=3&9mOdvh=;wA4i@AZMy2iB>i;?LkO`R=-mLKos
zHMkJrmEchDD8p=#W60o3!ml&38`ztk^_D-nFrfI_Te~9<KtBB$jC|%7%lHMSTK_}k
zzg9*Jz5~QI01Q|mTQtICEJI*I>eXIM%m$Pwzhw4=)rjKA2QW6djVs6}8)lJOQJo3w
z^6OKrlPexAp@`J`F8~e-upgB$ZR3;71ACX|?at{HU_4CYK4N`sDySOjo?a?K!Gk?)
zku9X;Q;1Vzp)`aNY|FWwl^w`h$oZ7HoH?e&jtm?5z(=h85b>HM*QQo9Qvzj&L^$+6
z&?hr42=+6c^P!IpfVzuTgeDRpT@2`r$Pjv7d?Od7IRN;-P;%Iv)b8{#0w){dF1dJ1
zvZ!d7n1*T%(B8y-3Ypu#cN2&Zs~wa4ci;F`10+^SxvYI8J#qGh7Qk#ZDJ+B9AO3Zr
zIX1nvW)@#gYT(!z;Ei4_8C*O+6G)b@<g{Q3RNFa`-L92e<vYH1IWTEl&Se;xMHrn0
z{>Qq28!0W|2c{zbw$NH-`rytrhBc1&u`=5&_L9J1s_o-F{Weeb^8EnSO5!Q_Ps0W{
zkh{|-_UWK_|2s5KNpuyc7hY20`8IF9T8lY(UbS=}HORzJP-2xhN<f%`gcLsxNLHX8
zo(CHKz^I3P%Y>HQk;N&L?kLS^XM26k+_`OD&0rvNu?1->Ojz>EXwZ_#{xVlz^`*F4
zchgVk0d&)VbChT5lsl9HqnO%9g#pd`?{!*KG$Mg9-gc=T0s*@O^FhsAi~PJ=*53*P
zmi&?x+N1Mxd@AL8?6c4(8?-jZEAsJHR?#H`IV7ZO)~Wv~xy|Sx*r%xCIoSu+GRpyX
z<xg@%!s0UArvVQ7Gzah}w@NS*8G;t7%k9Q%bJfNgEVzt%(51i-P*?JcA__cwg<1AW
zJ7YUO2#t`ioSxeL5un%SdOhCtyMe@>02-)aU1jMjxGohPPo*PKGYv2_$z_FPA~(=N
zxZ8@?*#$tq>XRiUAMSovk8UEZpaUf)|4Sj~@fJ1qWC?dcoJvzYh0{?oZ!++l5bqU!
z1GJz?NWtES1?Z?_T7LKvNQPrayd=eg9_ia2s<z#zX!f5n2=K5@0gtzQ-V?DRb&LDE
zy9t29F7Yw}EK}MlUvKQ>5Lvy(fVVpoad4=q(@4KlUofqf$2k^ArW<T=Wjw~o$?I_p
zwU=x2^5g{Qz74%Quz!DBvd-`oLSL3RW<7G^i6PkPN$xzYxGf*f@FEDm+v5-r6TU$&
zc<Xy_H57duc3U2os#mB-YD4p{Lz`XZ6<<O+x2t>}-@wq&dv4?r8GEkLD03zVP&+c}
z;ul3WnCstjLO{>)!%tmEOcGgxk@&;cURO&Fiva~Admt;9TSg5k!+x!pDwm>}q2gPj
z1{CbJ&Wmb0t=x%eYNablIkdz#sB%5?*i>uT%j(Bz5%=Z?bu@Hk1a(bxZVN6>`7^=B
zKU(J-y}G-Xf<4L;h$m^A0=cAVRWZ*eNBw92Idfv-U$ri@0OLvdS0QjMAZ=~!3FOw2
z*46er`M#p5bi>+8TJOEwc;;T$97N^Qhx5_F(IK-1r>~=vmh-=!!zTfo(9%1g*sXCi
zR<5&JDpH!v7o2vAvxg~k2D%CEN!+eXYaiP}I|P09D5I5~fr7$eR?B&uBHbfP>0qup
zzwXFHgbx;v@DK(%c;8)IUVhkX3}Rgt^I*0-Uh_haKStog-sg-ZKunrr<2YYqs*WCO
zq_!XjLo=eSvY*tWIVg!8ZmQhlexipuJEvdGhSC*49rPL}OSv>oyyX$7m?YLJBy%m5
z1T0Rh<?Do9l3y-Y8`l@cG0qMq;rc0YVzw2?WVY-pIMXJ~<Mv)7EvTqp?5T4|(QI~6
zJR*Cj#<M(ssjw~*F*EtzF|NE0xwD4TmsflKNx(AM?B0A`GP;~C;$SAo2<1QmHR6ay
zM`(eK-oD6Foh6Ga_$mX}t(Ly_sDQ3?w*f&&vUy%OFmAq#9BY{=BW%;&Fu3Y=s_V9x
zLyLX{r)=SC3s-@b9S2e4SEr@*MjMR#NY}pWZXYXGW>bT>Y_sO{e`N;Kf<z=Fej{l-
zpKg5L$<!u)&a-QxQyc``qsV3b5s0?1mp{RSt$3eqHdtKhxNDQ7`5UeTN{lKtVBa#d
z&pV3YqozD}9%;(xPR@QeuJ$#nuVbdbpP50jpRB!n0DEsXianNXPTrDRwy6u4Ev@2W
z%XhVKQC-aFOdZL`mv!FCjED^Nwq1LY?PG1{^kH;SQZg8+$78>(wY(1Eskt0bXG~kl
zb;M-fm$JKznyQ<YT<x39wa<Lc=<Oe_zqzJX)9yZ3uwVU?{V@1e!FyaUIbQ&#tP}a^
zUXnJ^lW?so0?m1yCLf-jl@6=x6;V8Z$&q}!kp>)<)VDYQD3Tj+ddX<FDJ~yr0;&@D
z3zV<cy|R-2;>hZG`Q`wGF1VP7%8v5FO`fM~;g?=e8$g7%16cXHllf8G()reqr=;>w
z8woM!L<2hBkB<G=z2jh8eNXfTlxtp07ch#iBAA`x1>Mi6-&3Gx*#K;lSmINK4kEU&
zn*-B43@oGb24RPj9$agaooB$M%h1tPV(?Oso;$?^S4GP)R*70yX&D$H_G4Ncdd~WB
zkuIX4-AH8@K^@bwNCTrtlQE*fpR9Mb)<DbokW0_BF#6K6!i(`(V4;<|$`d%C9xp>{
z=B}36p0B;1#n?xIB6s?xz;%6v7W#>&dKSwNgdwPj6fZp^?gRf<QIT==2B<NeMzjFG
zVg#9pRiTQz)d19LV9;Izbe<0P@VTU1RcI;3vc=5baf7S5LvPPj6pW1Kbg<~AiG!iB
zCZw{fH%~x(-DGOsI7;XHvv~+wOG|o*hsTEkaHHe{SwS5T4no#pvPYU`<fVKrk}QR1
zTPM=AdwH#?o9v_X+CuqnCh;OUz*-;Oz8F{^wiHkcj)9Gy5o%4HU6p#VrdrfI2iOu#
z$5-wTXF5h`lGrlnq&_u5TJX9Bq4ZAw&Tp|mHLC%!xw(TCc!=Zf?REA%EEZ;R4uN-X
zV&oQ8Bdo1mi0BvPds%76=Q(J};ksu6t@@u~@)O7yAC@VeTexDeN-wfIvyvPFxUv6p
zAZO5_saEO*axaF5zi!|Le1Eh!J$RMLZN{NrJXOq=n{P5H;2|$jFz+C2{Gp_&_Kjj&
z!)FtHNWO$FNP%|H0$hGz%k>OU^rv_QE&3&W_kIrU&;Ckwm|9dGm-h?53Z>4U!b702
zjaRs5GP!_~K6R0VORj~{y0|FDeU-wJ$NsT+bJ{N9b0#kPI*T2$mB1~KQbF`!SOq|U
zx&!OtF6~i2%*@Bu$w#||zSj0NI6)z4^No`ICXOAB(Y-zOV-xFF0%X|(eS^!L#@*s|
zwvx*B)a1Mqe_L?(wY3UU&oLR52?kXNJ!>=x`+0eNf7^=xS%OgBhs@t?d|3|)xP2@I
zIIgugQp=XT{kp4Z3C?yc)6q&ie8n9u{{WEqsi05rQL=Cr=^s}8QC~b<iQ(-8g@j&A
zVy7l11wZ7r9>-3kegMW4^*KL@0$9a)!k=bKH7K;UUI?|Rr$l`MyZEE4vd+NBW8m?o
z1j&{VQjZ1fBd`lMj?wD9uhnIci{woNx(6;1LpR+V>A;Uf6X(?5h$8iYzQG;2bgB34
zRy;H#{!t<C^`bqrF=z8?Mu<Zv2#ZQ!D+n34hS%1E-KY!jXNG^w!2cDF%NE%aiBB_l
zf<s944NV-03qa>I@Y-*GPCU8>?BAmcy@<t|ffkY>&eH?%U(PpXV=mr{+!=v!^&$b!
z`CPu|haU{1fGTAiP~=F^s@FshuL<9*1ru`a7m5CcqX;2K1J6d7Zv(C!KT?R^R8y1)
zX?gUXot#ADAj6{Ig=p1S%rPYfy~B$pQB4(Up_EcC$>P)TIE5KbU=+GSsiYa9A3>hb
z*l4D_ZX#Lx9x>H7A}X@tKXP^axh1sKIGW@J;I4l^rfHT@lr*vNZPf)Fe{%5f)<i=U
z7w&w<-k3I^(Kny?c|`GV7RmI72cMFV(xP4v(K4po{e$Xv0<N))VORfHrZmM$<Q#|2
zs8LFdiZ2j`hH3$-b(g?pr-<zvZ<HI|(akg;MhK@gTM^4NQrg))GCJsAbrzl*3c<6q
zwA;GY!mO(*Z-kQiSv=PMm+P5k?hs7shXqGfbjhHb`?0=}QtDFcqumL#8wcB0Jgh7c
z9xY)e+c~e@p6`7=vEdLT{_9?PNuYcY(b|#a*#&nu8V|}Qt>aXK@5SBRD!DYiA~t7_
zp!dz65x9y)k@^F`^WggYXpJ~^M&Py(xSF_60{kD3mIF7J<Q4<4^g1(akJV}wa2wpQ
zzEiDb%wu%6sY*T_xgn;KSV@LCd8sT?>8J-H(d5}TQR+Y9)-@ekBduxoq>n1JR37))
zd9Rs;#9Jnyql9qKSIt|#ArYm<kml8+3u=eOU>{&I>Ri-TjK;B6s?Wkz^KKyx{A#1*
za2b{5Q=CRWu9V4`EFVAop|Xv0TSZTH`5$#wJBlw5T&kf)G08K4)<-D|tIKr@?JF_a
zG2qkm`DMi2d<{XI)S}n~I-(pWg!SBtRbdvu687BZCDWXW?!0-Sk=wfiQ+W6h-2p8r
zskbO*An4A-mpdeeUMYyI%L<kI#K)m-_So47KfNtGD=SBzP!$<-#K2_^w#(yXL{o<g
z`6*<IfxekYTOmuV^t-BBvrFYwJ1Rkize}m*Lfv=5NKE<#{uaQZZvLpQDdIfTKE%Bp
z<SiH;63=Us){)OG?QnNBT^o73ciS#9J|n@%!I3B^C|HsQJx;a=VQWc5gs9lb?<oSW
zW4l~L8uvks1Ro&S2Hp&hrx4970RyH<g`!>eu|0^C0@d;B*Nr`Ggn;wc<;SjOpjiD*
z|5yR^MyqO(o1cw_lgONdgM&X&@F$P}+DF0T?+82M|Ma_CpkLQI@5l1ldyM@=@<rvn
zsR%*Etyoazd%pqI`*NG&KiS`+{c3xTak1M6d*tT)%26m32u31at>A626GfmZt8t8~
z?RG~_GW%NCeu}EcAFzB|DlAf&Z79sp(4hX5cqhmHAoXm3(9&$s;!z5y=ryirJJ(Rl
zrw!S+4tX&t@S)d8z!nruwZFKqYi(D0!yx+%u&lAr>U9+CS4L~U(T@I)&{o8Tc;Ho7
z_7Q@HL#K>*HL*wT#S{72_E|l^wsD{VE>3oTy>OlYyQ&p-(#tz$B5vtZpc;ZYel27#
zUrcT(rF2vNz~@tU%3F6^d)`a~SpTet&jYIWBxIg!aznkh7#0n1UU@n6VsC`K>*NxW
zCDk<eGP=rpWOdUVje`7A3?%Qa+y?j>W*QUSjxp3HI{G^yKOyoTgvOPUc=9~n1rF@d
z5PY+zWZKbS>8(4x(1~HUX21#5$hM5(;9G!g9{#(L8&B(d=27PVN;FVXx43S4V%+$X
z*!>zFo8!JBph_WIX!z3n(RgGG-+57vj`7WQmEj<k8z7&kb&oRhQq5XXDpr;dvk18W
z*_<j|)31Sy4m{vgctTP@pc(<N5$-OMAkokq>zg-kOaSp4nI_65-ld1-f<A862ljzE
zL^L_r{Pq|8J}?N3lA;Ct!E#;!F>9H$Due0A)@2Ej?xd0?v?=zd0k<#@i=&5E1rxZ5
zujG8rBuxNXKZ900>=eAGUFb|dQd$*^Z+08@W-lLqX{gNR96IKg7Y|Iy$NHk;p;-1p
zS?8F}<nt(RWYB^IWX(no-}Hu_1MEiw!2u0pq2XaCy1T2QNcH_eqJco7spW<q$3Q!F
zqBypJdxEL!^6f(7eEQzTqU^Z3tzTt*?xL6Hz_mDVuFC~yvGM3J%5yDFA)ur~OAId@
zY8C5;dvCb|UoQZCC#dzmqFb};$IJuGUf_AYGu(?C<^zA3bZJvl(}QfeJiPZ=KLy#7
zzoMgSKXg%2JHFuJ#Uc+@e)A3=V%Dhll{5P$zJHS`l|OOTy-DpBRpJ%$&%G@Pm3}92
z9Pab;EtLC$AwSoTWtp;Tox#klKUQ>vVRAQZ@rmV;Rz8;G<2_~G((HEK#tfu{F17B%
z-A)E8(8_pu-t@An*Y=)~&0B4~1KW3$;2I39@-Xh~&56XJ9<taZ8A|W%1Y1p{5SJ&O
zrz$^t*GG-Z!}8U;&<YHxsW+dSFlo6P)|D_>DZfAD&_m0Pn+Y2H&jbU4Jj3htG<{_x
zwiih0Q^^J<s9n0tV>;$N(7l2JwxTTh{ix^tFZe?My|>~x{30znm>U87R#W61Fd|#u
z7u}9QH=xm`xhz0F+Qgc`a~>~vWx3Y4BMf$djW+)xq*l$ap^4CuhOQM;vaUx|?-tSD
zy%di)A&s_poq~YPCNth6R)88VU2mJG<B89}dL#0^*!nG|K`J&~K(2Ruy_p8``D9e@
z!9V>FNz$<jU7<wso6Y_o7=$_;WsTx1h4K?wD`z34lF7x?8jTKAYXlU+mLPhPXgf?4
zcbjv6_L3^C;}b3TLeW!C94kjq76-a`SolQ^C`VV@L`S)uxKyjjsfunQZ65u7+;ng&
z-e;oL@Q{#bLD3X+cSsJ;<fLYlUdNQEGwo`Iz7FTl-rn8-z|$t;i;p>CuU|tdyR9F<
zO{0PFRBD4uO*8<eOm_#EdTYS=nB!wg3HsZ&l#{|gEinYuJ^58%qZRNF=d}`)|1Biu
zA0}_7@^{=3^F}v*_BzOSJcW3JH2}y&s$ll1XZf|T<CpeRog>i*ubTJLy(7oxYn!^U
z1A3U9EUfn@a&vEFEwKn8N8xb~4gEy=331?%_dh@0JA>l7FT3FoollA1Yjc0A3RW&#
zl%vkqZkb06JF!|9@`gIa5PE012#$}VUlFWdVohlds9qdN6*K9LT*t)&_^7#8hsh!I
z5;!EO=Sgoob?l}1PGM+2hkI*Z>1*f$J`d|ZJ#!ANPTvm^u0us%q7T)@_Jr?=05YoY
z=P7*NEFz+?pLiedYU6wHaFZ$1-0q}2Y^hw);SWV4_9e#0BMP*6_&A;EB-qi@K*|fn
zgAd>BFIU&;WzM}%t5cODmX2naB|{+?JGMxq%6S-96Us`d#(F;y2=$7h%~xtpXL1<U
z);y?2ri!h9H|hOquil`JGo6d+8j7)U*Eckn&o^j;Ff~hm%*nkQRAViD_%28;?BvS;
z8+PAq>6~}gR7~F%zL-v%r9Xq;f?jfgtmGho<{$~I`nWDaDC69iC#EqsJ^x6t=i!Fs
zXo4XPm7Oe~e3u!Mlq#kXSWMED9k?D8#G8cF+aoY8RbXfkf`Q-jK6lc$8sQ=sB&9xE
zQ{(qjU&eN1Y!p@FO0JDHqR@Fzbc&rhIx<}*_pn!gubh<ej+olhb4^l53dC;s8H>m5
zJ$Q)mL`3Y7!EfNEK0V!!8XZ^V|5Tq%NkZB*e58m^4QxN^Kw#suU)OCC$vylqFj{f2
zucDsJG$@RyYrkK}R6M8b^QuadM0^1y<rnORUwHM|mat<n^)w@2F@)>CiicH<5EVmM
zpqf@ng*ZiBJSn0+`JyO75b4KI$z7<!=*>>p*<V=&DeVNvUgOIL_Rr<7(9zKqI_Jg`
zZ~4Q&es*J_B69gzT(u$J3}+dYnRT2P)}Z}ql7pRQy_N@M`EP2BZ<0v6I*UT}w(?=M
zFC>8s1knjb=pi~GFesZ(`68r=t+(DKu#P|s#bWwK!1J!=hak_REt?gdG(IPDZnCwP
z(!$~4Ayvu9@%MEB%Y4<Zp@?yw;rI)|1YRy>E=3ue3X|2wG8j~ew2?L@VNdQCCQ?8M
zXG*7bP0rKNO_iwS#1ft4B?pD%=kE_b{YHQ!e*gOQ1!h*->n6W;uA{dCYij~`g#(v-
zPrs<r7^oh<Zb|%rRS+VE^tU<rJ@;NWm#4dk5bxu*_f~9_>Y?|l@4@bV@xA&X5^6a`
zVB9Z2>_Hep9~+r&VLCZPxj=$nG!D(7eh3f7Bmvavh+o`o4}9o0_q5N_^TxG4SYa0p
zx8-jfB0?I!KFs78ENrwPEdhWxIUxI1o1d{51hNmuP(2Y?>y4*N*``l<-uMK?Njk3a
z0P`iI|B(}u4GDcV5~R^7H%_!nnkyolL72%yLQI;R1~wvMK|z>GVt#Xw`c6!?BE3GP
zi5gsKE!J2m1EBolhr92MY?|^M4lynF_5!`-?UXBJF)`ih&4g#K&FBwU5m93N_#23y
zzTnjy(su=y(=V8)$QJBt57}K4%app7OS{gynbNqNSq~*Js$)K60P7;iaOMB!%<Eql
z%RgwXf6JIz5_~dYM@#4PVF&dwwHh5N-(UjbJV_+W7$HW~<i$pe;bbvWz4jMIvgcj1
ziyoB%iL7Z1W>k5rn<6^Y_7+aAi}iuBs-MQ<)#~>3y!oV(qa}yofD*ugqyn!NIq#0)
zP*YOojHGI)rlOY0k(E3=UK4X*^?dp?SR@;DB-nnn`QwM72Htt%$FH4UJkwU{rXjGg
z05Y$^`<ZGlCFBks4C8gP_J|TSyHX$R(fq;7!ZcC3Ina^L+O3!Eu@Mg(`rJ;7Lc#!@
za()&dKB`@UCGBNX@RNpa*e)WI0NTflFD@CMeeluqgYt~Xqh@yhGAOogbav8zxy`c#
z82j%Vf-iKfjBJ-k@-B`)`_Hq+9>kvJ>m2j|pP+L9pJHU9M<{=*(hoTJa<gqIt`FaL
z`+!k8?pEi70i^7mn=WxckR(7<Z3@6$3-ZsWBpcKtCQuqp*KTtKXX|cyfuZzT7XoOA
zwvoP(XGMXKsWS@}<$4HP(22L@l{dGWKmpYuuxl`eN;`IzpFLIoVFCQ7>GJP~_0OgI
zU!Uoe86=q{*z9smb8%B9g`K!d4XD%St~!V5LSMX{Pft%fwdkT_xQIS{R{@qtY@wz*
zXIfje1)<gWfeIPfa=u1}3o-}lXm)g+H7Ipfhfg*~sV<}yn81i#FW;wqrVVFeV^g`?
zFYe7zAd*M<sb;g%szCYOb|XS)^9@Nl;2J12-*la`*z*>U8~a#T7pgUQuXwpv&a9Qz
zqhv2w6J}a+HTmfaeNe3cMo1SbrE2^>s8Y$Sk_$n}z(6Q<ixv9&Wd11HtZF6ZgMQSK
zxVY|bip9C32IG{^y(KKI6%#dHmC<xp&4!u_oOg%iY)5&4Bw92iIur(hH|A&0SpAPi
zwpuEVpK&L&P<+qtBNBdO-#AFwN}96&mTFn0zF7_}CBxhOeR-N>ldNz$<mg}MUVUd)
zJrRG6ax7uhDS!?!!e_~q5#d|YoBo-Q9>(qZ^#PT_2KBcL<w8iBdenVt4d0CoB<1n(
z8-s>JiV4%vRL;nUK%x9<2<&#3Z%j9ZfyGoD)xVa?aTBya3j&hPVK$b+Uxvh5wIq5+
zG|JRMV09X76C8wIpPmzkVB+V#3VM5zY3-FiDPdYw?&deTXu4sruM6h$OHUh>TAvqw
zuIrqhJ6DNL?&w@p>o9HvjRe7BMmK59K?-tk{AU3A{~sW$Ohi5y&3%zhKu=_F)#L{B
zzr{@o;9kLxD-Vb>vZkgKfweO}oPgaNuSY#bv<Xo<?dAlgk6~Ja7D+lY$;WMNQ$URS
z2kxTMV}hoLi3n0y4!o1z${xBuKayRX4JsI>BA~;X`0?kEUY%CLCj!j(vab+wXpaDB
zH9qKdWyp7fjdwT3J0qmPu<<h^DQWP9-%mKglnjn%p3^RF8UTgac0Qu_j<>m~#DC-Q
z<fq{;OH5?aP#D0j0;~}`x8MV!>Gf4e%YMANYe?|C^nWM>vV}Pqyay)X(5-m_-n64B
z75G&UXlt+A=U05%4>6iR4I<$P?M{Iz&!0AXnjux8u<Suv;!>~SgaK`fw_0bSUB`9{
z^Tq&yv@^X(;7Vy0Goy-UJA|x=*f-v{dO}^wwns5<K?|URmh*d~JCk`AiwPDI#|lz`
z)wpa%;B0VY+@44c&N(L%js+4D$sO?+VmuD<cinBYqSWb=D|65)RPe%W#J+(sDMta-
z<ka^6I+`=S!@EGM@*?3bE*6fx=S2#GBh=*aq-0|hja=2B576womhmsf#Y~Xeq~3SE
zyOF!k+}K@-4J&Ln$RRleq3(ZqjyA3Cw;0NwCTycVXmWQ|n3elsvU6r_=<P|qETQ3b
zqga-$Wpw7+B=!aii?TJ?6@l%Vn;K&Umz#T$k>$``)4+hi(0J$TaXW|d<->ztm;aYc
z#kRiniq?%Tj?Nus1p$Z-kp;@Qn-T=Ey>F=+<5+7amY~OVE>^r%t?nH@LdF@NUGlS!
z84|yRJi(*-&xxBCi1j~xVMBrq7^23tG$y~}!{uf>OSgWl0>rP3D7@+Vtv1CyI~w3b
zQl<yeEg?S~9Gt4Oeno&kZzua-V!1#N5@2@7V_uDD{hgWrVf#!e0s@bzRGh_>x4>kT
z#mWNhc2!hBTRY7r&z{uT*;c4$@&~z8k}x1tz~1|ExFS35=&V*sf_zkEm^{c$&W=E0
zLkef=iwr)<4)jVb5D9}-mpGU~uDt{%7aAHWG-24*C8q#@+}=xZ(h+Pi)n`Wv!pxJ#
zH;qT_iV+vU!~1PrPe?zi7ymIws1!L<^N?Ydo(<>?=V@-^B?oI*y~`q5JSD*8<2TP9
z30*EN*YXd;hGs=5&5x)Q$XTk5n7)sU{{*@jEd;;O<6q##h1J00t9*`X>9q`_($1Na
z#$@~I-{sEt;HO$COjfBs>=m|=-)a#dj#?^@#`YRz3|nd6tyLlwjl`OMEl4eh=mb!?
zIsi_6{ocI{-xf7LnQcm@VmSBwM>aY|1*w}_{+)#1znIGvI^a9w$3!OmD|5egU1vTC
z4jfagjue~ApjQk=$4-c*W8q0oheD-p$i(_qtcLHq`X51{Jc^X;)*nXj0vU<i&7NeV
zW!V&RnV^ks!g_X<sFceTi~7y!U;_@#6JXgku=*CVfyc{3=aymSS7l4Lahk{J<1FQM
zevX0Unzn^S)(ydLy0);64z1~hMiy=E#o8$8O@o2a&)ESR_8~UuBN(2m#NUg%g&1Ah
zH+Bx;wuFdpczu}I`LW@BNuYh;0`y%KdA#?3Q3^J?WqW-G5$N&lcc?Ws9}>M6{=7RU
zJ+fgSShN`Qu`d56(otb0(oVZUv>F5MU3bE=-gDm1{4Lv?;7vI|Y)!?(qh%NRwGy7y
zkmBM0flf?I44joqU-zer<H=#eBO-ERX;cvNxx#QYs*Q$U_OUzr+hcnoaK(TP-Ub`l
zf;;Bo#yzcxX=dU(Dw-tbuVc{6HXgf+4I+h7kWijAb~zJDw%ecm)TiU}Wo9iP$h)%d
zrrPGaER`XlXxa8Fnm+J?lt?fcq5baI-CJ)g7pmkcH8NVIrPRgDex=cV@Ed)sM3CoK
z{;{nx-oT8CI+3&vOS&i`83w=9KwqkDYKZKR)o@NSU2fUFCCpL$D{gLqH`YXA#k~CU
zp+8M#=neDzQGtz60MXd!plzd`yXBAS&`Aujy&ky@rI{)LRiL*<S9$ZeQQ*xWjOhBO
z74uj5qlo3}_kh<)Q=x`^>M8|Z!^D!EuRK)07U@hKU7(LXtNNI;p`+`Y7-^|N(d{Gf
zErODQCy?pQM(!8T{m-PjIKj5D9$EuWhfQh%z4J4q=p#P_3KY3yub(weW<>Cds~+W$
zR-OxW_*oE8obp*W7H{9ZqiplP`8ry^-vpnsXn7!@xO;H$DgO;RLX>vE?Y;Q5N%k(i
zV#!Z5y!6Y}H?8X{*~}&SNPC<BbnT7^HXw{cvyd1z9R6Z*A6N6W9iJu)&4e_5d=i{y
zjr-SQ5)f49n#M5FM*A=WE1ADww-9Ypmp>DGWC6Js6X`1g#I9?`e}DRa9pV4Jb!)%z
z&kcmkyC`C&*aJp*hMz)S0Y!*2O~(qbFPRG^2xxe7DH(vpWfZ&$FrA_eSbh363Ywva
zi%X@un!G%x<%$=0ioCK?Lfy5+&1>Gx$Vh^XE~l`l{~NuP1qV8~Fv#b;2k10>vh<75
z0-qY;8n1_~)J2e(w-TMq_-fS%-B>KqS+>-b1EO8Mg;Ui~v{?_+N(%DU8om61=&R2n
zt^XfmZygt9_pW^l5(9_~jZy<hw@65*lypjiA_xLQw=@hPNP~34ARyh{A>G~G-M$xh
z{GNNi``*uf{L7EP;H+!ST4x;R_keN~6IL~ETQBjJY7{OIT1l$rvUc(g7vu?l=X4Es
zrJyd)kEY7Cm#g|YiDHSAf7tjfM$<xL{bg0M1Q@ooTbIRPOSd2VkN$)MTAP(N!v*c0
zE>*i{MRZJqp!U8EdzDOc>LpcWI1bSgCDLb<Bk1#CG^&c*!$2MQHOkOaO3_S`4rM>H
zoC+WS%~D@G?q${JS<|+<qZ_$gZiZQ}T!S=jnH?H~b6toOY{v-&ZmrhT>5s)sESHyl
z$_2a!rC?I|O=2AZft(H6hEPbFAo3UcW&x6AzEN)d%byhoA!}Ygk1L326VZ+q=PMKL
zqfZp?x|`d{XRJrRFtO8?3D`-&=x55XvD|cTHyqu6|3{Pi&!_ocgY48A5FTSN+`R2M
z?^9*O);p~5hzKKU6jhZs&!s_#*oKDfp$_m{8@*}V>?yK?rB;(NU6TQtA!4iBREyYh
zL~e9^Lqjj>*>h1*k{nz=XknS~H6R+B9krpcvHhA!!qw9%x!|Z10ma0-rZH{sejJ=M
zaB9!sN;*$;eLBE1D@q$WHPf1eQf@($;}fM%+n=L)KFadW1B$Cud}jJXDp30@)W#*Y
z{!tP{>DOaf6JQn~*v`V(Pwy3|GWOLHiYc)d;rg;vChS^@BKErl^ZD6uJvXj|OBEbs
zidWAHTsXaKs_o!e+J8uAdtMCElyI&Q+2%<&aiE`Jq>($`GR**<8sb&Qe#)i??4qj|
zd9$cP`r(&}D3wCK^g?0Nn9t>`CC_{I>Hu%5-nX&K!V3BxFNse+Fc{)JO}YnJ++4}#
zS)QC8W!xq*O=$!(q9_}PKi2v^##a&+N}3QDRptBv56gk5-G><JM9vA%!9%nJBFE8I
zy$M}zVZlD%14nFZkuu9U!`BPf5(JgoBumFkx^Ri2%YK-Z#O19q8_}vmp%W}iNeY4q
zv!oPaU0K3+bM$5#kaW}79DbqPPunUKaelC%AT1pe(9!a}3{vT-+TsZH%{U-iv3xGy
ziIs#?=o@q1>qr)HcJ!0Hs!+dC&oW<#Xhvu8vUUa#dKs(15dZ2J{?EI`6Kzx-QLQKn
zPW=H09!Kn>o=Y_@v}R1^<;Rd1MJsSniDfq9a63Uc=ouKQbXK-h5GyU`zMbz2d>R90
z2eQ>?t})m8H});D?Y4V=?(gZ^_NxVf!>=xVrIk`;nvMDNO)B0m&*nOdaa=jQZirud
zE7U*kd|lK0AP6YnRko75T9mYy8R}`9C(Rr|?P=8f9hPCnY39+8r}<$@DmHz>A%Yes
zsQs&4%k~rjPz6t9F=kaJp!)S)Fnt?8=VI)jG48CCcj^5J%z*c!<S1G(Ii+r<zb)SR
zG}lO$Zm2BtjNhozLe^fGrR8XlBRPWu->3txCV<m0k-p=zdKte73<^0aMmqi@WJ~>w
zDAFK8X;FacT<fax*5=4Z^;ZHnFebjv7JTEjAkE=BIIw)^cv+-2x*Q~e2PTl9H&KWP
zsKj!<yo{{PA+#qJkRES!DFmYy-rdT*M#Ewy-xfUoc$LHjge==!=QQzJJo{aOqR$QS
zofdmkG6(l2ihQKP8I_-*UiYNGD=o~@If~zJ3*-scntU-qkq)?xMBI$JDFAT?yXEGX
zSIP0$<*M1$RvIT$YL&78TnL$<*Q3LxDe;yK)lAe5#~^+RoVPgd|A-%qh3+YwM@x)l
z0p9k+mk>VpYdZ>^vP{~Jhw(w1<W_%7+yw!Q&6I*0I^n8cVm!H43xGEy5a`+O*8OSg
z@!urL|47N8)wl+=nHVNKtgH&Q$WPGFhI}E{7>~G#RA120z}57&L5X~^OqDHugE_7j
z>NPk!YT6SGbG2dS_#L5p1qJ!h#Fj+4>atAHwGgBPAOzNo4kKTfNNXB_8*y6f&N{1x
z`c}`o9*kv$n)OQQJGaUQKf<`VcIX}<RO_zMdlC$YHi~{g@e3jEYbs*KpsiLHc~vFf
zM`6dSKa6r}`sFf6`nTTN)YyrM_$ei6M{oC`5=3KzSC%^Hmf@kyGIq{DDNA;@c9K+b
znd#uuDMz7p0?yo-*_7h!Y=vpBtgR=>T)PePCg0#ir4W~hzUrr)Ru{rr92Wh96}v`Y
zh9%o_uBKa~NUuK8vJ?MrWgT$k8iWbQdC*BnN~qX4ptolc=A^3`Rn~>rnT=S*-Tpug
z5H4lcM@M)})h70O`9yy?F9Q!e@3}3(mD!Qx^6AWGSjE@JfW;ml8hq!nkTE0v<P!!2
zCzUGw$=M-oJTjpId1JvLPXH%^?<y`X6?pfC{g?M%7F7r+NSDe26lFf9;00tH+!1;%
zE+yQJEOf`_(H}ZJ;ANpI@fBRS&F_<w<G~6H-vmA~qvi`Q5Rg2c9eoR)F1kKCIl*md
zTSgUcLS7hpZ)607f40-g#dDQb<fJ@M&uK?<xdOg2$jmty<l^E2-~NBtA&NPGpfYve
zPHdGB8=GQ;Sl9L!=PA%JSCkKxAn_$;8X6kX+FR)iM*ci4ua^cG^!W>3tx`xYk7?wL
z+#IlG8TWFTe@M?D9x3}o<=2&sFL1p{n+Zs{xJk%UM61}5l@@^BMmErXm#av4^@%Nd
z9b5%e;hw+D4E}M`!#E;7Q`zR+n~^M#vDI)RLpb*dH$OWXOHfmW>dh&H)jIO??WLfo
z)Ak#y#`?IvE(9jTtq7}H3nWa^X}|HpxjnYM<JyHFmzAX+k<-i3SI<2>K5&wHowSA=
zkQD^3HcVB`T={dR(pW0Dv}YDeS)F%H-k<tF$-1$(M*CWp#Ix$#<@yFD_R?#MYDCF4
zP#r_EVq<^gs1Oe8i@lnX&J<3V%oivRd6E`*z*4tK)eGPRwZqz#Q`EoGDbFglPm&kS
zvshI<HJgd@cVr-7);~2M<b4z@wh=*B^CkD~1(&U+!nIULV3`H8-}}YZ_t&4q+^d_5
zF+Qj)r8~_u6`q#o`Ve=3U!7abX;#Sfb!EeGkmkRXuXU6Rt%}NyYbIKip`D=r;~Iqr
zHXYA3PLqBDJc367JsfY{71q0bBPhO6qbNP1oxN?&;~ftw*v)4#eFc4o?cU0>gwq{u
zh4AJvwQRySUM@(Fy<fXGt&v(DfPWk6x(kVH>+^q0CzE;Y$|ccHXmJ#8*}N`LLhN=P
zeYP62hCq3Du0beB+jB1=Z|GL2?)3%T5Aa-<I{;uxACBN^`Kp}x#yUEQvwBAv5;{`=
zD<%INh)Z!7C}u{0D79evs3VJdab@N9F>kCxHb3t_-pD_WsJ|=7sb*+&0$OTcTfBuy
zr+{2&7+?ZqLf8P)NXzOq0&A)^CQDeAR(0P}_SgA(;R%T(eF2BvM7&2W@mTcMzfV$j
zHoZ^_sUxLYgQ6NL<ZWFH07EH``r{tecN;)sU>KA8Nksc*PTA$vM&o8-ZHJ5`Mkd4k
zT5Rm<FS?K{OTE|6FYYc(lxiL1b{&MQ=3CWoJT47M0SiJ_^_!krFJfS{{9NGfqOr1T
zg@hAMyJU=0_?$;x@}!KEmU>PYHPlt{Cg#od=(N;QGjh~7WnS7DLAVX^y%#r#f&_8P
zZ-ShkdLsXNfSZH%Tce{iEtqGL+1aUN?C`?<2%~*_cxfAB<G%Q-Ue%IJb-sQ=hc6-G
z#7Man^S7PL(uV|utp=^!oJiiVMPe;UTT-?XH&RM}-M*O<>kLBn<Hw~a3|wS7?>XD{
zbvnEy9_kB5NcZ@xq2}4CT^SOwl|sQwLeu63^*kD^=bj+tkv{tL?r9EW3JtZ@+(jIN
zo#Ino=FlU=Rya&V;FykQ(5Ce2LQc>|$E2hAtJOb~6;)J(j3Fs-(bYHx1>w=NwnYZz
z1M~o47=nQNZSLKm_31%RyQ;xU<#6z?w5R7-@m$(9pu+o0wRa11y$OIno;cvR#F#T@
zvYb@57ND@kJ8evp61(#_yD!3h_x=twr{fd1QwS8&NA>#~bc&n=ouh;!%a!8Vp72x1
zuMU1QJ_EdV(kWRfm5`=Zs_UNug5(J+d<ju+zBDi43pV(mV)ZPc%wK!n$|Jw2j{o$^
zK&CTTaGu|~&Y6<Aw0`BQ&~4FesKLwl(}3Rp^qT)=BmNbNvCsp^xb4G@_4VNvKa5X6
zy%P`LSQ>wOT|ERObZj+WH`U`TJaJp1=l9;H^r)XtXefpmb!#ifibh|b)maQh-iZMc
z#OHMQDv8&)nm+3spcsg_9Cr`+^)BuyljQh%f^pn0mtF!Mly$nzBt0o^#~j{NX=aZN
zNjsc(3dlcogs{Jy!{45I^XZdwQeJ+Is_YEcc?I|9Nh;r*qT!vQfm9SsQDgi&ezt+Q
zI3%soj^df;&+8AZ!OU(ebq1oReY$zCcGP6`&pYZS-79uKTOCfF3zdo49%FB{gP{}o
zrkkD2=5Irm3UPCzfl--HVHa(QIXMJ{+3%=aRpJ_pqMd$KEYM2SE9q(tk^0m~dnM*W
z`K>we^bfXL3QArghoiN~9q3VfbaOujEJ}*&8fSHwmo<0@=0__dKNOkdq}Zm(CvNWA
zyK2p*CS6_GxO`fUR=$K?#Ns?QN-W~q&8FsK;x+_avnTZ5)p(H+a|@#rw%ZvKwY#2X
zrA%NuX-M!3GRrvxuecfO3FHK90+Mt!-ORj|f3!@6)o_R$E+V5M!)eIn8NpatB9B1U
zx>7zLN6XB~&Bn|@&umNSsVL<41DaR_mPpQ$UWtKj`c{`LtVQ>ET_T`(OsSVEsH=98
z{Vwtq+Q;zr_WE}G$MlTUO6D5lJYYJ@`+KTw{$rP^6n!bAYFC$`#ToLbyXUqgeupf&
zL5KprJc{k7TO-CUOUM{ZSR<+vM|npI``5B$8?c*u?X1q3bO{XSL@A5Dzcp(AbCjQ&
z4TfTG1<JrP&3blOmiU1`bT3|rgSxk|eZBMY@&M<BFK8yJd;w2EhiNRjTFN8Y*mn1B
z41m|MJdZ&XOQF|fuI&baT|0h(#2wFcm35Kb;LXVZcP0cnQz3SGxpE@&$Sb!{HkM$t
z#$F8YkOEO)TFYVeRf`2=4`;D)aA;(f1>t&+a2z`&#ov@%Ea%x0Q^ohOjDFOiTEg3S
zn-4EKxze3b{+YtPhOyDweZUG=4XA^sxVKA!j?c2kl_->R9R&q~jUtB2@mlc@#;kk6
z9^~7zJP{Eundu!FM*;_ja=%c{aSo$S;C8x*XW|G(GR-QJs3s3La_D+A)7uQY3U%$I
zRZDTq^7Bhoe8slNXV?x%_|(fC<6-{gekAt(#054YCIHChUqKgz3+^+*1Z8f{)pRD|
z_HB&+Nw9?rC{oD^2OqR9WHHKrXkEZirA~*l46B}V=c#AI;YEs7NQJmt9z``fXbgZg
zWQt33R5%eUvd`p#$?_BWE({B%!~{Q|lu8c)8+*qbx22D$j?F7G+={|ZcoJo%j5Arg
z*O4V9C3G%{PM1A%Vih8_B^}S~W<2QlI0Iis_V?b;*1KhjrCBM$xX4SvtTai2H0wm7
zwO_8}$vO|0TIq#^QpSt)Su68*E~i6N7?N<8O5zg2WxTLk-qoUqP1w1x8h`jO2+Tq5
zCI3djd_D-w{OrZ3wf6&%lwQj)lGn=kbNY5Ei7zkHv29TQ^Tz*;Q?EmV1m`to1LpoC
zF|t@l-n{c}s%dIECnA>k{%Iw4BU5(K*4Ae;nEJj#4enkmd2)SvTJEz}C3Ih(vTk)<
zIlZB%g6iv<8e65L9p2SV_-UD8_z<U}m=^S-5Mb;iy`8}7rOD{_<JFn?cKns_Gg?wy
z6EICg&%>iR?mN>93<m9qGZy{<-2CH1t0RweDk@9@8~_XysaonW5XE9!_Nt)bHWk62
zJmY@B7{h3_J+B&T<|s)Evl>L0FfjUFuCc{1^q6h*@f3<GqSA`E^K5JAch1**FXC89
zuZJJ(9yJev^W3S$=8#l{`a`snSH6aZ5@6XUMJ-FtL8loo5ION|{E)rI`JMh*YWi=h
z=2at`3P<*8cV^yUc@NB(DVn1t20CVBQxQ+(UXc^Ze`CEZlkfku5D%9|*3NiZMG_f5
zSSld5Kaoem9F*Tc7q`#<uBP^*wS}JR<u7ncejS42WNIp;U<wdLm)Yz6W2#(O0!;^)
zek(JdVBxjRwj(@AZ$YdT6JAs|VEKevxXp;2ss)$tG0WM`%c{SwFcKau*HAc9npXZb
zQ4yMPuj+2EW0p5PQ&Gx1u^sJW?i_kCm?mZh()-_?M|0VcG{Kth<&hP9(R9d=luIRo
z_9CleJDXLHm0+JI@k4_@X)lTFn6^p;6LeE4$jGDvGuPuv=x&q$SuJ5>93H1bi2d$l
z@mmoC<IryR|BH*-f6`L>NPs-Cv+lf+0Z2s_alo488$6_;vW0_P0Rz-(xpP^cRTVW8
zx8<|uYNJl9KYj)x41g_~#i3UH*YMvTCDKHi#ho2Sm0sRCPsacK%>w%^)%)T7ia=+7
zT%&~$Up#51W)@mdz4JMNy-mddNnMC9rD|#z0r9Rc;a^kVfBc?pUN0C7G+pOxtJ~Ss
zIq;vR$Nx~L1=dFOF%T%IKmI_LZUb6fT~(8poW=NWp>FDPG++`w{kh~y+W#DK{O2oP
zHE){~W3iIM{%zv;Ki~DA75>iy`Y(q-)0(I!DI#kuM|bD{djG7^EIyx((aETZpvZj|
zP9Jbw;V!Id@PhEb;CS1b8y_EE`98E-H7d67Y;XQn<|Wdr^p;(um!x-cGXsB}y};nJ
z-NAek0OF&*|HYE7Ab91Aj*gy~EEUV5YuXb<Z+ClX4Onm&j_g$#?NKPs^dDUwt>hWD
z`bWjZNdbdAaDmjFuD1dL0(n*o4G)8y=$M#Uz<m05ZY#aOjDzt4;-#@%C90m@-V8wZ
zugxN>x=Q-@`-Xc0J1qYZgX13_fd2>({?B?SRwKE&xtRhK&QZWF9KiZfIyySaC@ADS
z=xKo&h6kcbG#}&w=yC}c&@PTw2|1TF>XAwAU&rRr(H6I{JD(-VCC_EQ+Z*`3VatF6
z7{uvaL`nuo$CQY2tXX_f$={fAN2z{em)>$3CxeUh{5GR2|Mz>FCoA&@-6XYY#9<nL
zJhxa5ubchaFs(9ErF}7en^hRiBJs-)pa(OXb9Rq=H((~wuBH(<@*`to2{|pMqX1r^
zOuj~uLk+XW4^kwvnb%~1Y6=+{S;^9p1q0E1l6oCLtpS4_$^1fQW|tSe>fp=M5d~b|
z-0Q=$Gh>ldGSJ^L#OR07y6EM#{(sa#{!YF;(ZHNrWFpq6D!D&Xzdb4Rm(l%x!rV_t
zCTO|3zeSVChTc8b8vXW7aU-m2?3Xa|x@eFY@!Kuysi??g){70}=WBUK=!f5CP&5e5
zMyW$^!g3;|PoGV{63*9GRTO7QC%OAbv)1E4Cb%E%LK6KeEB(%kwtr$PY2#|RKm=(q
z_Ym-&1Y0(2QUP95hugE&9A}$DJ^*(lgLU1WMllPCe_G+i#A1wUT%`CFpHSX#an(r>
zHWbrba-aE4SBJAlqrND3b3V5yn&>Cn6&?Ny@-#}7c|U}9k4&x2iSnfA8bnD^PW_W=
zU2$NPU$tTO8Snw+j1_)hPMXvl_Ya<z8amI+<m+o{np$xm)P{f#UpIuvuT%5j!DK1M
zRl}pA#B&r<)Dvu88?}KL*$o^VD(qbQy1R?v8gs;e2s8_5)Tx-6G1LPOcT9jktn<%v
zW9%)!NF95U7yvkQ{r_V>uNsLaq1k|!xHh?Go+uysI3oipwX;~lKEtAgwa*I_jsjHZ
z>m&qZUPnq>)c8lfgCW{-9CyzwM3$%=cd3D{d7oG@TpZ{*=v1i8Ak*}IWn~q@va#om
zOsLKOv5@YFhmTL71cX!P`AA-B_WaSma_a8dNoB$}@-20<IB!f_TU)aR2MpM{0zVoX
z4?Q%M_zZw9_Xh@MLPEmrksPe0^}Ylv0zRj)U8<F-F$Y9tFwwkTX1LsYz(G+UULt#U
zIX+%?-qYR!>ZhJu?}ieuU^QA%9C2~+TYTFf^3r4QMgLKby0Kb`p}MH}P;ED5Q&EI<
zmCAz%Nf?vL(=MT~u#oyAJ`qvwo)1Tv#bgllb8phzmzA&FfbtnY;0ywT{D~GFXJ*(4
zf}Q1?AI1*zTBKFmL!NQaQBzA;n90_2KoTEo{LoB`*6oP~=AE(cbvfhTGJ)!%XuUiC
zP$jD3KAg<BreyyAXfyr&Ahv0|7X822xo9AY5SjLKs5Ha^tB<c%^~eRIvQd;`UX~~M
zO}K?Oh{aP-L{C*!^+n>H&4+6C&KDQ?4rVhdAcQ5HP2B;XTY>s4KFGCCuR$6Vq<RN;
z0Hdh4AE|Ps9G~a($MVYS>A4_I=z9pzvo8YdQZ(+9(?YTb&YdKgvo8dFbit|mlw;!=
zaJxYB(D35@82A0?Ug8(!yB8YnG3Qf~{=Dk@Sgx&2u$Ha3-=R^q2iKz?4tx~c2W(@r
z`B|ZdZ5+@f%Ub`z@uk#VuxbNz>^s*l-ul`(6#Ut%gT~)DdL*%|zyih|R2S@1om^bR
zinTl&OeO;RL8~MeE8~RjFU1N^$p4mxjmbT1Sh>W`f7`IU5|Gz4Dr8n_IjI75Eb8dj
zka@A)ySo?FL^^F)gUgbp6gaBZAGy2l%x07X)Siape`%}u3Kt}sIf9$du#WOlTiAc?
zUE!e_1W4iUK!iTOZyJ9yDp>;~26pGW@3!z@#2uK#T$z)a!L}a*d+Jt>X%~$kKKd`J
zFa3j0f1;_zQ4f0%YANUQxgHjZ{L1TUk47Jn532ZRlJHs=>xAP{GH|r4Gq=n1N~mS4
z1HXVSw3D;!tCUsZTZt*}K)I?a=WvA1q*xihcx$e#a>tSOOk3nK+MgVnU&sOui|Qr<
zOI3CF-MYbpnztK_{!(GgXNiPcB#39r!X}-|E`M$t#Ry^Gt^(!xVUh3{oGD6oe>Xlr
z1A$TjO#V<jhso;3K#6vg?qhd=wW2IIix?o9dHiGh@bokjfaAPgKU(Re=O}eck%Tyi
zPAjpMb1wj)hS~U!XF$L&WpXg9vmp+!+V&rAKX0l_V0Jr^SKkQ=x&>~oO#p8Ym7;%)
z;CXx~?t%II)wc!uVE}2(FnOHqtTutB^J^f5^{P6b|72*QeYQ#Rm#n_}G%v{#wBd*p
zZ6P7?D*)k?H6*TD)=^ils;=%vt%mM-hTj_&4R?6j^3Ps{yvg8aJuj>up5|j<Ja7d!
zhC`raBz`vhoC&{F6&24N!-2`T(+S4=yWGB=Uqi)5U;f-OxdIPSmTN!$K-9l{#>^;y
zdQliZ;%(RBy1XBh7DtGz7O+ROGz#H=p3-D+e2fA9<aUzR^qCUq?G-0WTA+rcS5dhF
z8F={HD`z~sF&NPOHx`I$tuD&_sR+Ayvbwb*8JH6$Lo4Jbg^u9I^E26W!hZC{boH(F
zl+bkUk>W&-9@{h965~cX+Y17D|C*!s=a#X$Z{DB)rh_802JC_4yTPW1i~V-1QcPb-
zXS8R3yp~*AI@=5&AMdWA!+Ls7C{K2^-033gZe@j4Y?%#c26`Occbwt~rJ4*W2w6l}
z(7YvrSc<O=r+DnAD`mI@t%*EDD%TS4O59F{IF#cyS(F2H$BL2nc%4IS+H`n1LsQ>x
zsL)YRY2Oa&(J6m@*45dX)c-<TISARwHKHhoNc$EPW&?=QUw+5PRmgu+qO0YQJo^;u
zH2N-HT!7Vsd@*`usq@R}M3!`BqNKmai@k+L{dusLA`T^ID4hCmK<GEv^6CCmY3Gt~
zw6jmo5=2L_6b;mzpmFf~n@Oy;)Gd`ZzXru-@4^Z5+TEGIlZy62$VtPo@v*5ZDL&ee
zW=CDaD&Ml4jrq$acs>0`+_n279>8za+#TiZf+&mLS((KT)OklmOG0B>#STKB)tY8n
z-`gCm`>(xohd9+R4-WpqIO)l-F5L@~>MG|*jo+QC4*f+O-F7wwI+b@TeAgbU<F^de
ze0M8klu18W@C)UP@2ri#2zu5@*30f=`u$W7To4ahNyNvBc<sPgeaQ_;Nn?%B&JfgM
zT{N7nRAh72ozc+N2tp5%K)60@ig)EC<KY5HjlF&`MB{Er=-g!~hZ=q`8Mf*&o*t+Q
z)hn}osYAsZagl1$#aWl37VO>jIEuCq)pk}${btQy9=vI!(4<*{eDGIN#)owHjI7Y7
zK&yOM8GEIa4@n%5u8IZ*NZ#Kp{FX_>-=2lGVp6+246Nn>_6Nrtc?`ZVw7k$EeF?$f
z<+NBJQCF#VX-}aa<i37jXlw$*qsn4KV;cH$m9vzBE3hW^S?7%;t#~b^PR~66bTb58
z2h70@cjwyPj}Czb4xn{p9eE!nK-2C9CyfC#wZnchT*w^aGURTDUO&)dIS!w_`~d4%
z0>a)5;9=|RYy;K|1PfT5W^3?Al&`AX_*_g)9xywXkl9gGBn_*ED;mI_R;p3EP;B!G
zFhr33B9rQe2tu^(i%Ss1BbVGDqU1cC$Wx*Hm84T1(6tSiRm6IWm1D_j3tC%SA72lV
zqqZ5y#xMb%YXqAKG3KNT!NBya#MPZ9DdTnf6;Q;aMN8+HX}X|IGzWpAc`)svb2KzG
z!@%5_0vZ}x#jmc3iP$E%bR>=X9@~5jv-T!{hq2Xa3g|zZSonQ^A@rJd#++>bE3i;C
zV(heq`9m3!y*rvhOS`+DwW^?ofwl!jD$_2`^F9JDr{5+58iYVf9=Au5)ff|9z$?iD
zCvb$Qwi?!k$QZ&6(2IamR{z*^McFtVk|fUpcobT?MLY^|81p+W){sJ>J_)}sdY5u5
z*$I})5`Q(syn11tGsbpIZghV~1OFwdG9&T&*)Q5eVJY=YXU>m}Eh;3wJL*}fJ}%OE
z?G_pD?F54vw`m!8H@<srB-n;yB#Ul940ggBR+Ws{lD@gQU~c>lkRKU4YmTUY==+r&
z;>+W0isdbgWXZ4;U~S);w(#|$>&~6_*SEX(k5@Q%#uY#yj9lrB<R}7iSujny5bW{U
zN^i&VKwF>>pr=xsg&t+h&bloHh0`T+@n?0h(9`R}u9#TfmVVS_?4<yOgehbRQ<RCh
z!yYT4rVE#q`Ud0S8M#jszNeg%N11b40lyms^4V#iOPJKv9VL`IKs4=h{8n_5s?7~%
zAY^rH=SanRbWBiW?pl_Gc=Whd8g~CQQ7#iG>KWC-zWa@36m%Np0rK^dS+Uv8?jG(4
zrBgqLIo?+};Gqe53N~?%daYMcYhS$|uR2K^^>12@EREQZ0d4JJFUki|T!)<S!$Adr
z`(t?@S^6*fLlC(+NajqL%5hnKoFTdS*T2~>=#1fiO5uI7YeW33PK<6NO!7yMu8xG3
z9k%9mh;z#9^NUJ`PXF4;4Tlp}f^dDWA>}V=x`92DX^f1NKI-lDQ_<?_d};=~70S3s
zHIn-8^}(i4+RAJn<4ErlQ6lXiB5?F+=NjKWl}&+%-{<^$;igU3UxZQhcF(UsX=%Z=
zVGI$npIsg5#X$YK5;e0L1wCdn{?Wb3rSjpTI`Eb?Zy3(ZwY}QD=_inx$QRs(QXEov
z4G^PsT}&6zpWK+|v8}~TGsmhw_2OmEP@|szGYR#2iN+6bn1<8j^|3|ai;D*IZ(SF?
zP=B;3%CKd%sl!QUD<MYShrL{i<EmBB55}vn04r3R*F_JlWio)U&A9Y!o7~d)_tk(0
zXo36C9aL<$rR;6`^aO;Co~~_GuZDY@Rwo<FqI~IRUnT}O#*d>#l%IZpR-h^2_fS$%
zWqAV4uKkDw>z`N%;fd%W*aQUGT(V3QpKH#i&1H8xpYrV21Ansv#wMenREeDC1eni1
zILEbAu=~CTx42(#<&*)a#sa6!!L$<AnG-*Bu#kKbZ}bC(4Iq#YP4n<}!V!@^K?TYP
z7w;d~r?%O@3)40pZ*&2veY9z)HSOCtVF31j%p;>p_a3#MJoK@sfP1RGn@NWwwa$P`
ztiWiyeW0x+@g`R1$$ss@@Q8wt92BOCkYmqN;*(}!P<MZKqXH=4_Ry6rcJeLk@0Knp
zlE;FFRg?OY_<Ap>eJd-hZ}uu>!}IpOd|u(PE<7UrS@+4g_l8V$BCOuoK>yuZ?t9mI
z^-}?#259o(L70UB8PvfSic2|5%IDC<u+2X?zG3laFjG~BhUXDcTNf4?7WyyIOk5K+
zh2pmqsy=@kIzX(rl&eUmbB9j17uRl&h3m}$LGpkyc#5Ucvj+6hP*EodzCl>Rq+?5O
zU@K?HbP31w!!>xdmYLIK!^DBJvNp2V37DsaVj^<Rypk?lmWEc{r+HL8GUBg7szIM<
zx!q-A|H!hYXzg)*bR_m#nTrCDS+`+ke_o>d_9jQZT~<T*Hg|7jg+7s?Bv-%jsaACk
zbh)>;6lS7GE+m}b3pzO6Iw?t-Vwwfb>H7U-6G2Dea}bxw`}{hz7Q8Mp3M0Q%K)XPE
zvDytzZ(038LV<Kj!9Ao=1=aPPS+HJuO7wh@k@OBwJA%ObUg4rubl;R8Q|w~YFJ1;5
z^Dhm92%9u11jTFFl+@`M;P-4#d&Znl!oT3%QLu#pLdRno0?Yf!`&3rOqZBi0&xChX
z(z%vecfdtA#w&=W&H-{duad=mOpuujS?O2EgBY?tYvKE5a`DU;uW8?+Bf?}Ft!F{7
zay8R$6Qf1wWb12-+#xXoUY;8!MM0)5S>g&L^<<Yz&OG5P2~37gD7sK=+pSoXXGheh
z#nU`oR6Q9kFZ9i3k>mabGagXcq~F?wM_iUknJ3b1pcB5n_$bDV_%h*DyQLh8S<B0n
zd7G+U*orsNppyanvkTTJdTW7NdHf$8U3ph}ckw#k<!`00Y8&xl{OCoUcwlwc0t^?f
zb`8-s+-R}F#3mB&G-dC*qWVNNHR7zUJl@Lj+1`ViRY4*Fjr1h9)4{6UpQ6rIkWHdm
zFj^GUsuN{-gs<hmq9GVYEw{QU;a98Ahh(v<18sMwENYleQhs{AY$T;0;V~D34WRi}
z2mMY7{=EKUYzhC*ElL+D%n@El&{DP58;d)eO_AsY1ud{bq-ua}_vVyI3UetrXzb7#
z*XthAAbPC|Td}M=dPC1E?%_CV9bor@sZ>k};ZEReRAt&RaIV&IWV)On07xxRWjk5j
z20U}I5$XRVOOGzOj#XK&n6C9impqxl5;*-v@_d2*XiAgysfw*P5suf2W~F5k9=fh|
zJO1#|z`}xlP$%RiBC%^)n<tpwn|}7@+c+UR(5R7n0tzTO+nJCJ5Cio=KKMew%dbFD
zANv#Yeqnw30!(G?t^Z1(-SBq+00rr3qL-)yk+cdGI7knm*Of}6cJw9H-#+|Bn;09&
zZx`?VRjYaCOAuRlfPo8_6(C#ex@tAV>CB!zhM4(cB-RUBhb%U_oSFTa!v=t|rxXx^
zTi{UnffQ@}3uEmv*@sY53@@<kCyx~ngVp1uNk~X^?;xZr;g4j?jkI|}quLx_WIFE8
z*VnFowGG@MI9p`PMP!NEb{$)44anmAAR~i*wl|{@q)4&t1Hs==WgS%Alhqd84Duvi
z1j-eejMV*v{T%)5;-8^Qz8Gmi0G!CwNLXhCknUFUb3+Z<oSSdJz&}2bk(VdHdbY1D
zC#$QzDo|y+Ay1zw-su!(*bntpefpijolS?P`8-^bEPR5zEy(GB@@HXs`oXg@kL5tx
z+`LO}Os|D6qi5(!4B`m}Xoe8+&YmkQ%Wx;GWw#agfD7V82zGz=X-xDL)}MvwQ3hbb
zfoa8VNvN}~uI{CoHT!=nP(PHXZjhEM-+hTwn67;jgkWJ_aHj*qZu|QCZs$w1w@9AR
zh}!hs4OUBc(Fb%0A%!Y{$#<qW9tqgPI%#aY`0*JlhZcl0B-Fw8^PW5Z3+Y+TwV=(5
zx3`|V6tnbP!Q`=+l+5Anc?Yrj6>tWdK=O{WwTc;diJ4<BbL-|t3U^=vVy!XuG-Y`a
zfTeIyd9!(Ky1%`*Y6is~A#9PRxGu%?AtE$}ztGF1dgE5RrEi1les9my0oN)2ZM$Gy
zd)Mt8eAH*e!Z65fDGo7K17?s`<({Z@^lnoO7U>H)x8i5y5!YyTR(Jjq&dglS)ke~B
z6E%h#kk}il^BV`36-vAbuBw8p@x&|qpzv5aL^Vv&D7rygW>S{-;8k6ZlZ(3Rom)04
zsoTIPU8Xzf?8bx6n7!*QPy*(AHRGPqUgTL1>Kjhe>sp;_lzyp+M(@YRXi;N+DF5Eb
zSeFvDh=-R<a#{Q|nK5Tl^HUtO`|M}7K054Vindnhtd*ZoYQ}XnX8t3qSVCqsalxef
zH?bm`w+x#f6uk6&+W*^fMFooTE&R0c`aNCWPf&gEF$Ys^5`Vz8AW4Dic~U`ERKM=Y
z5AX+;VK}86G`#9doj8Nx@hKHn^SkWQaWha_M~=p3g;VsO*BXQ9BP>FZ$!uR1sRDFt
zV&$V{+b_W9FLC=Eo?ke;Eh3fC<_tzn6RPSFF*Qj*R5SlzvIe*oM0r!--2p_w({@6A
z)ADaLM9VawLda$_Z<{12(-9z+&iK859*U4I3PJ&nBTM>25mFFDA&J*dtrmd{yqbsF
z1+mnrb7FS~G6-c5N{%on8p2jW2!0{@)|41}FSf{Wm0#2#1Aa{jxo=@_DR@Fjo!J0L
zco;dkE3v73g@23w!3(+vPKaT^Higd59iT%;aspuMzP>1TI_qa`)?jS-CE%p+0pMDv
zHi7zWLqjFXy)G5edLa?sFqy1jKiE@IzC@F%qorhalB=_RA2>PFg7XHc+!L4uj5hqZ
zDi3TWk_ijgdjMN6@{2&=h#N#kuXv;>2aEK;pm8aIuP0y2N}PlsKw+Mt!S(ms1-Fy0
ziD5V*J)%db`yL?B1k^px(-UjKE5&vH_15#e*(tT^Qdy9GwC7WcMR}OH(ra1Kwmg84
zeVK<iF_<lvFq+L@#4`ZaUDjD~_q+(^Pzt|*48NSoE=19oaqqDnGG+SG)K>9y{Q>Aw
zr~%@`1{f~<;=E9#LT=c5YtnQw-$39F7f`yZO%)H^cEp_e_WRFfRg<x76LgAfN`iz)
z@Uq#Gn4ILnN8*z^zxA@X*<8(;#A%P*zw`o9S#Ui$QZs(?Tm;%!KW^vR1*Yy$mj$)i
zQ!TVV=bzi$V%%jUO&3i^jV%P>&wT2RXk3*e1LW%#XR@<M!?81#J3B^q30C*ur@qzG
zmM{eDO9b85@&?-HR6P$b^)$9I;#84Rhe(1?axL^)W#yd<-F<KZJ6&to_4XSrYx*KJ
zPK2u0i~fvyRn2LL+?ZouCCkHN?R`A8KbY(Z+o}ryE*N9-JZ*r*gS172xu&*-Zev8{
z-s2-Ix#CAe#uD)+e%g!J?|vy3#W%QAPy90ZUBQSVE}8wlG1#N6uS6jevjSbW#$e<~
zNGe5n9G>ihxl*{CunG^-gPKlX2;6(AN!WZ6ER~qy0y#>A9%Dm;OF)F^IOo~`Uz_#H
zwULUNLCs$68S9@*mudsLy}vmC1{cpjUQsyxO+aUSkZ;d^Z+Z-l*7J>lsNYAEmlzr$
z)?_TtilVwl(XaA`x}rsbr+&$n6)~L^HUdBqDJyaPN_mldvXGT4roRMu<)R@{;`a>6
zTjU!nD@W+EL)x6TZD0FFoC`)W(!M+$19JDVtaUsXDIibgg8W6?7DmcKL==Oao+1PY
z@+_puy)zOn+ZoCT7$>;}P~J22>W~hV6;UEnfVhn+l4G$+K508TUh#GB9H>E9I7(Y5
ze#a$wa)uDgOCmJ;B$`MudgWG3D)12>2;btdk?M>&)&c1(w<G}Dem@hi$JHP<V~&cD
zfUYybuqd8e$OxJPn2>5FfN1%<R3(4<Y_KyHyqNXl1Ix2Y41NhLQMt#+s36mkVCN0k
zTL<*)Z&cPk4m7_u!18xjQSCmja>WE3Mexaz52~Q*3L2hU>e|0{^MD?LClzAVQnS((
z5~Qo`D<%>NqL`@YsufpNwg0FzF}G!=<AQtTG3q**ITOM}7t8eQH~1Lxmc2#GB4Od4
z_18^t<f9mKsfR_GFCj#Z-w?lE9A91Dw<wz2a$n~dw}fB&OJwUTp<mKgR}v{vTKsfX
zvF0aK9(aC1xWG16=~%@g?hln_!tTLWz{7h%%A}+dXW!tI0*zgxLq(uie1*gngZU)+
zOe)*8Vq~_RQE}h?g<|=Luj8K$bK%z@poiXSX_1NVM+6Ervb3}`4l*88n5l>fK!Y@h
z!RG-zdv8=#adELjC!GcDa53c^J>m|~kgw3zMN8WaOoW_!nS$-#gx-3b_dgbdGu+)M
z^z^-moW}rbLD1@DS%dH-f><QlLoK4m>~$~jb?xtVrfW+I>q{AG(7j<j-pWzgU|ug_
zM2c_VVUGB>5f``pP|N+dA0wotAZP=vChN(r(*hf=2fo^0E}Ut)&%w0Y5{`wu5~NNr
zTjT4E<o&uv3f~`$BN*F|GCOYCF@mMUXc6H6wsJNQHo%{Ce?ZHwz80wa69g{0*m6S3
zBdUq4v<5UmjES8VRLBNZ@2+E95Hjcak{U?G?Z8pX@7Tp*g-ldbt!iAxA3vI1B|lKW
zDG`QJa7wmM!u_Fm6XFbgMYgZUvB?OYTCq9!Dt6df*0W&`G~t_okg**IoPqLK-RWY$
z4kPSH$4}a!T)@$}y}f<f;ne<TBby`)e0DNOt^ug2u4$fra$0SbeNV&@%1j++pPQ)-
z7+R+m*1n-Wvo+teLYap|8!lA6gsG6b{#f^;)3E3Hi>}^}^)M^CXOg%|#}1Jf1`JBX
zoK}!oN+iENr&f4#nDR=#ZZRnS>%V1>e>9^Pcd<Poihgn`+U;V~5BwxSy!Ja{{wn*m
zB(bp#;~C0SLZt7s^@<0pZhnxTG@cV%+tF(+Vkz%0?F*=)IQ^!~_|s~(`@di3;UVz`
zU~(~pd9Af0vHD<^Y(K~1wVWw-m}36kfp;lBE*^J;{z(!c_O5o{((Ns!xGml@ie&G<
zSpaIW>!Z41vVWanB1o#H`WtUB@q;OzF!E1RoH9LWq4MQ!M|EGS!_}(+uDb0y`q&+p
z1E<4&6f1N4XX5f;w(XmM9Db*Mu}Kx<!>IM1(j<mXW#`F}jl5S#hTvGkw?jjmtjf7I
zOwkjf?qtK)uc>KiaRu$4>1`_coBRan=ZkxRD=9MB1ZA2)ST@^!kg=!fQlMlAr4Jhp
zg{m5n8h@i-Ko^ka<Zs)vMAP!ah9Q|YCX=Y(F~bBfveB-K&*W%y^~yTDFrVLj^WBEc
z8pYsi@*Sur2SCd*gMp5^X;Y$>k|@OeOu5+EmA+U$xLLw{J0*6*0HauqgdZG5X%?rQ
z_-$$XPedQ$`(7iG$7g7WXLnrZ+?$q6$?H3vgM$kp=qDlW2X0SXYTOI|>gsM_c};)u
z97w62_@1X1{$OO&%T0dR@mQXw;c^+HKu{FD^ncdHB)TGk(OP``Uh-cW@p*upu87LJ
z)$u=ktHomIez|m1ME!j)_Yea3uCOtG{>h>Py(%0q_dB-;JmFdB%oHMPPA^=+z9C-w
z{Ab~Eumo+<7|#vBd1d&0ZHG~a6LWngsy}SOcxB)zpyTGw!T#L5Ut5tdd0)p}5v3Wc
zM<@PxGrI?(`eWdGug`0KW(Jk_4&1b`l|+GGB6iLI02mwi$hO;p#VAAATFw}nQ>UNu
zlZw8r{?LunGccerW%G=XkhVA3Wt%>B2};UPIfTzv3m8+809oHpqeh;S2`W!hEJLpa
zmmTIU5=oD~CgK%9$Gr(yFytH_LfuP0D(rMBO>{tvfd9ZYx8{PwHiJ;)LWt2)x6aP<
z$FYB|Tho<D>N?ZjZJbq7sj6ko5kbI7!b_+KW|qMGb<+%`)8ouSZr1HtFyX%lfts8p
zQdgRYc<a`9@~CMR%ta-823XQmBz+-G>Jqvvu#CrzWK_1WK!zSh`Vtj3d=kdAZ&i<~
z#feulSOlvOcGp%UsGSM$irKxmq#scf@;dC&ZN$XHtaBkv0<jthOY*Q5x-ph1hqx>q
zzBg&*%hvQWUBQ>AERX*>$)aNU(r<HM^fwCd?8K@JK!{UX{9ZkY-@$!rjg68q<qGAO
z>?e=@`p|trJXFl78(o^kGqjcrBV(5E0vFEN4hXz*+@E#fyWXo@DC6B6m^vv}*OWxu
z==8WANg*){As0#pd;=vbDZG@Pd9yhBzi!fg&P1DIsAulDJ1GKSXrnD2;@N8;?fp<g
zp?}x_5IYCDX%1UZvAlq|IflYA{J{%vs%Rd=NLm`r{jeGJ*oW;W*hC(%b_PnstT!T?
z@11N$`P{;h<@G^l7+%E5H%43ivIcH$b)Tn(1xgKt7{g+Sb{g-`SiMbz>S1{EV`qBX
zr&5Ym?Lqj*J}Zb6(aq#(X2qc^2f%1h)*np-PUq)_-o*-rK<7KkTStRfgy)0tzNlZm
z4O7B0ckV$E`xeL5FA_mFO|qOxLKrkIDQPZ_0!sX6&4Wh)^fRDogpZewPHJYY-zqW}
z(H;ku(91(%{4Z^41R6zhuT)bG{3JT+a@8|gj33H%qxPnWc#jFlDg)+@FkVIIr+T?z
z3a-9C9g1OSJo%<6Lj;!773V7hUd|%E35HFz>Z8ohl*C~YI+G`glw0>=@-tWESyk#D
zc5dIjZbFomodUBv7p|V3+)01ATHt-1d-tF<-m?hbCMC_aJb)a>aQ9h0uyRZaaf}N?
z4WBf!z<q`PgkY>o&YI(|w<HO~EnZ#Q+xbP~qB){(bFln&EKLuavg;P}22=L8YkEC^
z2a^THUIS_T*!4ms%N?O2LlOre?DU*sk3J>gS%e48@Yls<^d)t@jdm^Z^@(W@CLEFD
zo)ZVl(-U)=Mahh7#l*&r0ORFbz*fix!XXVt4MX4ZCxn3jebTI2#xvVEQC=8Igo8sl
zq2&^%4x^7Q0Q@R#hJq24#<OGz)w24jr$wrQz`q>lopaPHi#rR)y-?BatdW({`BXYz
zb!h2V8JrH`HHtXCKYFDvROx^J5fY`kzR&G7I5Vjaep-8?7u1OQ_d#`zcBp^zW`6~+
zX?|0&`te`-E>J;ikQKR<bG$@mjM@H}+87?umco3)xvXt|`<vpq)-It@sU<WK)hKP5
z`{p+mdB+7=T<{;c5p$^)P5}^lF4eo^2(&V4#C-LFVaiu;6M2+e!5jRY4^{GBKvp$6
zoM?K3#86uKDe^Ss@CR&xFts4xH*G`{y~euWmI#M7Z<j+~U2XD)4LL$X`1IKY>JWLG
z2b<WyI|l_XN{czAlb`woL9Cw#Mh{$$LvxRU(tG;HhI<zkI><P>D_2a}o2Dsd+$dGr
z;)<wPZ9nW$1YJ)8U(*0z#hJxcrjt-B`)$Y^<{Ik>;yGQR9y>irEU!{$H~BMF6YiyW
z=#Pv5S*_FqM*kF&L;eg&swW(DT%excFlnLXT<x<GPHb6~rY_)%E1@|Ks5G%FinyH+
zRmp|`^#Qe?EvOu$)mGMI!0Wm~s+EJJ&BDc}liPO}nEYAFtE-8D)%Zipeo~0}D+2EB
zW@?hF<za%?QvF*1S9iRJ;?-k)*kzQ7P=Vr$#d?MKpj{LSn&~D!NFi1tW?E9T$gNt+
zR{J}^x}hKhZ(|mPmA2Ujvb!j9Q~ljGDW;^5(8X|pcV@EqJ*g;K{&7?k9>CQG=siOD
zpDhAc)Ft})h*=Fph~S}&PPA>oM*aST9jaBI9s9o|&KTUi{o+%2ZEiXrfBTWkayHk(
z63~6IcyM3p8Va=r=apW#m19}+*Ixfhvjw3aRiY&;o^?i67|Q>(aQPI2uZoH)zHil#
z=kkV&W1htX*jm&B)p3)q|3j?!^LzgYz)}SfX*q&E-~&ekmX&}!7`cb7MO&e(jN#<N
zRGJmu6;WN*<Y45rP5@fj8$>4quK*ViF7g1QRoxK^^ScsXfTaIm4;+g{0%*tJ0)4`h
z2EGjMfs0%fpPXvvJgjTdgvA-PU1@N)UA5tiw1o7|ug;eTj3_*ks=X%+|NNm>bK(OO
zevB2V@Z&D6(z#_s^?s(-w+?<Q_I2K$^9=WxoSFYO$U3nks9siexB<_*B(-`W=qkQj
zVHMAvCmfD$Mi$4XF6e5$-pv|m)go2hTrw60qFBk9?x=6ARa#7BU8`AG<jY$uz>vD_
z%!wwx(Gk1P*pJ<bbL~F9(t2kutI5SL>(4?cW0>*VFD$~*iLfNAh#>hfM>lO9-xX%9
zB<OW*_owKCyP9&ju+H8GAsbH-2#<gOr|t9o{rxG>;{JmJ5B}Cnyl6k6o0H@tYLMyC
zuSu8*Y>%(WPRnTYW!0y{vc}|xt0)6L-QC@<%*UDNyF|zVr=H=OmeO7TVg0Ufh2$zP
zXV-8`-(`z>3;Bs?V>p%MFyIiexcE+CNB9K<><V~<ps~(D>=^hrn==w|(2U4HtTT!}
zPS{4gPP-2tWN3hurlC8wJkgRzbgCtw;MBS}+#Ju4#Hzjr3~?g?#QuA&T8DxU8~}j2
z1r_CpT9mRC0u!Y(n5=U?p?md8)uq{|Yug)xC3VKKRxW1A93a<gP3taqg;Nb<khSa@
zg*<Sccd=G{Y3r?5I+TD%{=wFX(hUG@&)Sbs9vA;Esymi>O|Yv^!ojFf7?sFINJ3Tk
z`Cz^ti5=c-@NJoIw-*RtM}Rr(7pO3~F~QMbI^DA|RcCNG!w{2r{$!*1_>b@jKX5HQ
z*0(AYU)Z>c`L5OA$h|<`#N@&gQKa8M$K==%xtQ$!=^{4<3n&t^$O~lt)Q4Ny*JGU6
zHwN?-)2CAD_RS)`Dr@FLvyL;3x&`OttUMW#^GB3X0L<ee+TUROW?x>n`S2l=f2t!8
z{t|`&z>7!W4lfIhq2B+Ns(4}`s+&We`8@7cH-^0b<|L*+t9ij5pU2e6GA~8uz~?8P
zISe3t@><N&3^}Z_F;nWL(~9@Hm6gSlZm@FR-zd{lmDAwiaz$1%OIk8BFo^R{9^s~0
ziN}dju)TVYIn1si;V1Cf?DOX;C-8f0tXvt=ZDbVx?wy6pZKJ7yb)R=1%GH$poT~5)
zUPh=fS-%%3stTbw+k2Dnl#JSn-N7fU@&~ttBD#CIGq(gPs^TYS<TGhlTG@(o6w&*}
zY8@gxSx{r9D1+Sh->^hU_mjT)S~*J%=f~fCR*Fu(KO%ejV7@Ra%@1o8qvL<1iiL1y
z0PRa9Bik-c(nsp~a!>1w+%6mDGM|<NqGZxgKmN6+YEd3srW?%-m>BuG_^*B{iMOi7
z0Hv783gS0#{z%jPbjEnj674M<trT9Ye)=v|eQlVJM=uCLjYf1tOWPAN$erCm_04J)
zf+~_~RmbAS!q4zMBe!O?>O11IY0UBA`Qp2BJM*`y_#c&y2sKm|$$d>EvG1QHlN?!d
zIpLIjb{cw}@Ru`4Dl)d`2CwgO`)fL1uZwwCtAZhs#EsqVB6VtAls0ZK;e&T{G$Jo(
z=n(i>a$h#dXZ$<#A_R3+c_wj(;}y^)(O>y93-{;T^yxO|%P3f8PzUdgBn=&FzuVk~
zV&6$j3yKEw+$BF!Co`W;!4PaCX17F(ll5PxfKJ4G3grAG{JC$?rEp!gc$gM-_$5#e
z<~*<i{DopEIh|yDO)>R`fnPi-R;8`*gzOOjuW=To(}4+57_>=RO%5!oC@wnbWfzU$
z3=@%yy9HsL2bR)GkZ8-`Wp{+!h2Fv5Kjs3st5-^EW@t<Kf~w^`R-tPE=QuNf4`f2|
z#g;ppd%;bmfo*+@==lxtX_<$@Hs?9FPs7p0V^LwiMtl9ip=eFAQJ16${F|2;DZ>=i
zhYZnMR!5Q%JFh1ezbzJL7jFO8xP<Ty<>Fk8|4d!RT#0dT1wx&d54X_aM`@tu=75;V
z@H1FP!aMd~A{9kKuiS<ediX*+-q?lFHgxF>kHZu_Ueu_J=4wi^t9K^A|5wesAcRt^
z-3VhZY<4_6GKn`HrMI~#hu*1;@A&Mup+|?*A?pJvB9*f?^nkrq%*O#T#+F(gh~+I7
z!91gP`>%V5O<{n!p09yc?FC!GOsoju`L?J=*shqylP!@ngfDg{RbF;`xnD-vUq(IM
zSRd)ba8a(D1bt@#1`8i&r|?h*;E`=A7%s1v98!B6Dcv<ENEjKVKj(7hRhUf-4Gtce
zw)RF_TzWy)&{8Y%?%g|Ph|?qjHl*&&t5<FB3i^36>~X-$Yr|Ft5y^;oC3WK@5ICdO
zD>)}rogGbewXLdsvpqXfRzj>!i};;9yEXm1?Nz}7<MKiUR=9Jj9&;V8i_zGc--q7W
zRJDT1qxcy0K)Cl?xRgG%Mt)GJQoC0)ysKgKYjbf^!#W#5QmmkwhLGhkbk@{->hya(
zMln`TrAKN_WN(mrZyuayCVBpMfe#Tl{vnMrTX@IK9Cg;;p<!QsN0jT(EMlqOIqa1{
zH#)9cR={5z8T8v#Ky7{Uw}NAwtTX$&aY5;JeLY4UvZSYcdx~Cv>hRwRV>e;QuqlX}
zUGwq?*%@E+UfVcc%~V?D@a<RmJk<8}wT3H|Hc~xqSIDJ*yD8~+>OR-o*K=OO_eK>p
z5o<j3=LY2Z^uuCTeuR2-?PgM~Vw1qu^vV2q*nt|3`^39q#;Q@5Q3WkgMa*||do4aO
zkz|XxZ>l#<Pjxdie49L-$tlYA%!p9*g0k%(Qb8~e-b>xTM<InMwBhdWj%7{U=5k1q
zTM493QcB<REt;<|kjxKNb1SbqJODP=5TNbdKi2fwXaj`AnFM?amzz6014=@Ij-Sqm
zp=yQet2(G|(6>BRSalEDtvyYVl<SH^E!6q`PK0eQ&htM~g~N_X#SyE{>Voe90BxJ%
zfwn!?&|&Ro<0Sk!m-7@z%=CXrFrOJS6s)JmFz7da?z4JR-YM8|58Wr<xfECclGWkJ
zRKRHiy!rt53ku$2^@qFN;mo5LZerL^{i&%+J;OP~vErK?$ksj}`EIugM%)&Ayu;Ut
z_H@>>b+P1m^3%!xBEI_Tr!24)x$VznGmn}vmCD7Rrz|cm@*=c7ji-6_Gz)LII>l65
zVhx#gvuhixoJ)+Q(MvRag%0w{yC>-XW9+S?s%qE1QRzi5x?_QWAT22!f^>J6fON^C
zYtgAl2uLF>-5p9J-O?S>4RR*iXYcpjXZW4({OMo}nap`#*L}q=(6&b$$ewAJklhWM
zbE3$WdA?DpJx^6KPesL}??sW=r9U{IR>}qBCu4q}Bz;=_?$8Py5Rio39KSb&s}S_P
z`*>7qjB8f<uAt6R32vnW8Rlh}z12jIox{Y@6W>W|90GoF@e52lmZz?)tN6V3AjuFu
z2gVEJo=6r=*&#l~_nm85GGR}K=n*Kui*P~r3f0bDDf?xipkuV4Y2*dl7)tix91l%$
z#RTl{V9sK0J#TM83k!?SHH_^Dh!~61y4f9T(rP5)I_Ep%(yiU7aDWX54}B&M7~bZv
zo%rM=HZJ|V2rV{(;q%v5aJs4Vuc0IeFkU_c4Xux8CaLF9o)~GTMknF&iSP}9(<qG;
zBDFepEc`ik+#Y6B@jlJ=Fqm76&QUz8{f{`K_#ZnM0%x4a@7*1}X5}=TG+AO}EoX#y
zE&oMV2&j6U38-enPQ9D8-R_{#`SUMG;L~N^{aVm@7hse5J*;$hPFT_qgb;Zwz5tS_
z=HinG;1vO(rq1nA5U<d&g{>?XVt2AAVVJx>RweoFa<nYw(PCgE0Dax1?`RiOp6>}~
z=woM)5QHj-Bqc2^#}+li@D<Vd>s)PjGcYC|Fe5y*>g7Q1;hP}>{Dn?PtLWH8uXOK_
zonqlGIn=oVUu-Ncw23Kw2Wq9L-_UROp@W0+N<0jE%Z7=gRv#~IsB<UDVBfA-8gNZ_
z_ncDx6gtCE{`p(4qkp2I!yCi_)SEEZfXMjQ#J};n!*Lab6C$nZ8Q+}~Mo0eQ`x{|U
z7YD8d4DJFHC+QH?<&=;D-tHd37hIC(o%ncTs?#-#Vx+vow9~n%c<r_MO14HzZUO%i
zXT_VNb%2#jN-oJBObPe4S&e`ClyI#hD5koaOJ{xU;8lV+7wDAWo;tdDCQkI_2d!tP
z)J$m$WvTd}qQ=UA$TFaxx)w!V3-EaPV}0EmU@c8Io78VNYM570k2vvi=TVPTSQ-Me
zi%9>hfmi0O-IR;P-lu!!*Bg1Y++yjN|Jn6BYNFQTBBoEm9ew|=kkiMtvKPxN8z@cR
z`s9cgg}vz8uJ^(*2a}A;Do*Nq0+~Z;9Nu59!FEJNJa%O1zK^^xKZ4a8+)knRPyNoE
z=DwoZx!zs(%bOX`*lA=#Fc*(zQ}IdX)0ydBO*A|>?$EK*y2Z<V@m)EPl$3_%;C2c?
zT7$M7XR({OIF|3O$G?%?OT&_GyUc4eM+QHcZCCx!R0B%IGpOS?f*f-X6O)7^R$`f^
z@v%NO_GH^B=b~y2<wE|jKp%u>78B<DF_;X_z2uY<CQcOVSIR%$5IDq}opwGCN~%u`
zvFrjsF9K0Sfjy5!>Qj2dVYNwYQ0!A1>+l82xvt`%#V>~3@3HpzpEl!smsPs2rwr|l
zTT-7^Tjc`YV(BOUqz?Jk@c2IPbS#EU(riAB;J!|6^JGf?H?u!6^EXZ&pY$U}9t8^Z
zQZ^M;-}896pptjAFoLU3JI&$BYWf#y5TQ7A(IJ!({_KJyjzc?aDMC?I<+~yvB>wi-
z=Z~#!6mBGZADH@CKKd9Zk$V_RVvxxDnxF9w#HI`bjZJPGb~>f8lZ0hlX-U{!&P&yV
z8u{)0qCQRC*P&Xikb$Zyr9Ps?H$$YfU!9&yzJBIKJRcTj%o(oS_M2vqP5AwLC)iOj
z?bqhd7hm;cgud(3AO`U8Bf~gDwz1821dg%s$qA%y{q8fE<w!ZiLSDw~PDGbj(5XXL
ziN%_eU7&3Xtv9Nt>=DYn2>JR7MZU&RzzdfO;_|xQ_F)q5vVh+CdY(<-86TH&2%_pr
zj;yS#c`|EgMDxFR!d7{R%|WZZ-lJw%Ic)d89V7`@n90k#Kpw$=Yg7I-^m&h7JE2~H
zAhGcJ))s@!;X;F&C+$%=qt;)hg8`?>q81*ED|o;aQlD7zf%5KT{B85SMgBo{{jZk3
zX{!%`qH-p1bkX(67~*`EoD6bho*knHT#wqKSZrk)9|@Ifj@B*l<ZMh>KXsb+O^duP
zj!l|-`7Vk+XH*Lf9vxlIx;xBpm2~>`n<^Pkl&Bc2JUj;3XVlc9p1VQI*oIfjkn&Dd
z*;=&c8<dK)Q3#a3i(Wl5g|c^F$)cZ_^Ct%L&#HPS*E-dB7h)~malUx5q3w)ykaX~Q
zk4*lzDVc@3?8OC?L}}^kmjADHhl_k4J*<JGQ*R%iJn2_<focC*msUH&Pfn>8y=*YL
zv#U|o_+`knbWNf`sbsfNwYu^@I$A6N?Et5oQBW}L;@8i4+>kD_|5~>4$sslaULlgo
zR6MVY0fWD>z4ibEl-wR9m|SO9SZ?l99VBc?V8Sbe^9FS#`LCCFDNef^m3*5dDHZgC
z7I2rNVqsl?0+Q-t@ey8XU5Gt18U2x2=wdxE7F$>}wyFQE$_*z%+rF!?rK~I#gG$hD
z&QZ6~HHc7lra=v01+P-V<>lqQC&fdIGVR3DXz}qjh#4IiNNx7%u7!nx6VuY<QLrgp
zz3%t*jY{3+_IE1{WMv~T7^3!0&(2&?RC2qX==I9}>$;t7;Yg2$xE(GU*uPn7^|3T_
z!CVZPwY7I7v;QAT<o}u){SSH1DiTpvPA=6=cONo>>Y%QU|LyztF@S^pS#}>gNb{@y
z&V`9oDRSE17`IzOa65KNpx+oY3#^^Lm?W$Ww1G?sM$-%jHy2wCy19=BDA@G=X`+)B
z;cyg*XavH}<Tu-Ov!EJ&9q%i~T++|Dp4Gmv-5jc3sp8FJ5IJ)nWC))-FYkA3wZbDK
zQ*3Qr9J4Xj(BKBREn1%F0BPZQ@H6(vsjmuoeet0H+QjP{x(ng%l88#8r6qc-e=XDO
zlx+xuj|h%E-v?aJ@1P13Is)<vu;88qMuB9)+o&75?vR9RDvP&1KhlMm222{fF6|qB
zeO<`n{Qsc~&!>c1PCa7Xv$eIQCMgM1W0i3T0F+X50K()X(;CK~QTTtIIb--=Ao-LB
zkj{W?udc4R#VaJvr)5b;o0sFEYy<Q~&7G!1=*UvtaUJW@QV{BH%d34onB%Zi0*$SM
z)Gj@cARQJ3JxUv`Mrme$6g0T2-b}eoSS-IL@#MR0XZ>`zkU_dtqGJXt_z@~Dflydd
zq7S<mg82ExpHU~L>WR8+M#XE;(ggOIbM|t61pZ(}5d8DP>`tk|!X27HNAiQ2ilCdA
z9oEyj(w`FH;o$%=in=Eh-1E<j`~UOgw9h{3y)q0(60s3t^WUMS!y_Odpu%?moClKD
zzCxz5zwEM};1wi^T8mK<Y?{Z{)$z^(&#kK|yOH;50x<VvVr8Y*pnMAR7e)>`+kVVc
zhyFmO%1si2f+U}<R7V%r9Ee$I85({qwfvLaWIRF4b#Zy+{vV|D<&j0Ij+nK_Gv-)H
zNuyiE>$L#=?`yz+kLQ(is4QC$ki0Hz*so-j0=1Xw4#Sv3r$vBw@x0h-?Yj_{`Rj5p
z60-8|K5+<hb+64%b~X)!=Pbd;8etvrKgGuX`E88s|0}T+rTRQ?{@Z;CT(mHMG?!u{
znrNj2&_QwH>oq)ba{aAA0K3>X-y<Dz@1~)WFyITU+Gd-9;OBW|Wl(Y7hye-aNEcJv
z8cWQhl7llbIA>5GmG||Py1CgqUtgo`ju2nZ=Uo>&+p-1oFi}2xK^pz^7t08c(#$7;
zs!CjY2}o%`ZRHMTd3iaRIK2jdtDisLD^aKbEVG^U00_E(&Ae@I$lx0ni6R$+zaHNI
z6iK3~bjrHAb0scj*a1TkNdkW<4gyX;iz=H(oqc2wy3}Fe`cF)Y%E{ok{SwjlM3Ce&
z)>c;!18-@dmU+=v>e_Wi`hWl@1yygi3TCz%O=We*Cq5aTqG%UIFlF|3^QSg>1|#lA
zJwF)5t0_`uG^UIi-OBWf$_jk(dhu};il@rrbiR~Biz;>crZp8?eFO04>_7?R^K1i5
zEOh2o_-ZxV^F8K?=c}EA&VsiuDhqT$U>_KDdDr%i`MHrqvXW!0$wUWlTxDf!Tp53u
ze8)<sgbDTeHolU8`>))E1^rofAZ9E?fT5;}#J}Cs|C&Vq9rKPMKxG6CdD6iDw__8~
z2#QMaV#sqakTyV$$wkBI=LMozM@Sh4;z_>i-F8T%n(W!1UCXT#j_(tF^(wD(z>xnj
zMzJE;y8ypju52%O3POmlC5CL4ETlK+{=+-i&ATW9O88<%!I6wwOY;00FYG3aS#%Sl
zop9HPUm`M~8>T*De6iX}nv)A|)kVV<mXU408#DUUj@WDzc|t(k-h)iO(vYY>ZtWA-
z0|(CUdKeQkAwTlgHAaR{<WYoGjw}v6iD{2S=oljaIsgbmJL93+7|%wJ|82<r_XGcU
za02LQ+XLI_CHg4-iXJFXpcb$r`sQ}1FeZ@+M$|<^e`ekN&HU&E`VWu3F#%&oR{>zz
zM?^q`?%>_IM%8(#%dA;cP_7~)6MjTUEE?+U+$-mr@mw-cT8Tg<_F_~WB7Q>?=V%_M
z<B57ku;Pu4T46k$?5NwuCNUMt(AwE44lK<+22~Mme%M%7K~vmTFcfZ8SJ4%ntVPp#
zgBFurnbu{F5kt5LkI>899R$+Qr$Y=#ARyE!>wZh6^e1bn#esQlh%v_2vV4V;rSrCl
z?8bS%(nsYK6uh=aF#^^BH1U18r7qcacvio_#CEBaKmN+Q_#YXEWq!Ca7z|NR!1yn<
z-Q%l8gageQ-_VU+siVevzYXUS?&#>KY;9trG72i;wc6F6t2{GfjC0W<x?U8Y$gd4`
z%K`O0|N4`Wg$1)X#RJ_TpfbJp_`IU75T6qMeMr723^xS8t&9T*`Bzsa#rj%ChKs_$
z``7Kkg%^V&Or$0ywK#}Lz9~K?=W~o}_K~DoUY$TDuy~m43|iT7%FWFkNf+`m_xULO
z>Xpp<W#9u<%xy9Y3#S7DLc?>-jqZo6bv1zCMOCfBBKU7H@V}2swIF~!vh}!yNq7H6
zmSijL38Fpwy(-!vwYLorwXKDS(%(=`3<*diw~bRLDSe6T(3HsI6*L-R!N?aGf~i=x
zx)O;WXm%I;>d#n{GkhdHSA&j5%&~IQx^4~ZE3@wL$px56)YWHNP#X6?zWDiAX6te3
z|DW^vKR+3I?Jt4MORN9upN{*#TFqopA4K{gKN!$4n6t2CRc6CO(3lz6R_+h;v5gWH
zG(3X8u@Yk7Lp(9*ML5ymAi`aiOF#nx+Of%tnovlgc3f=s;9NM$eicbNsgygbRr{m2
zx4;2SfA}wN<UiT?pYu}<etdrrfxyteR%Z+WV}XK9gMEovfp+2(mMqWnPR3~dgcMOc
z6E?26C{<8^xY<0qlK(&Pw)3rQOcT;|@x@NRR16kZ*4(VG=U^oQ=#D0KN|qx0v!eW;
z)BCqq$CCae6vO_wDGa6eFMon%yuYwIdu?$ilG!XdB&g*-7a+Hi25X&>b+N{`fqChu
z3N(aLjW0i}tVDoq8z2?-i<)WTvS+6e)v<TE@!FB`|8}ytu;DJiGlKdJT7SLPC~?A~
zFg~2i)6?pd60EPSDa12iXC1cAGj~G?xZcQ9&D9-(0P6=-F;i{>&mE*OmyB84?CfmL
z-4RH{*jT02!JPW6{rHy_nu)UDn@gpMxmjC{^}RiXH&s*$pEy4<6Bh4N&69B#)s=*b
zWg4icFlPBWIk5)AuFyYcWh|t(`TgtGGd89^SZIhxLr2fkuFTHv%<*uh`|IQW_jk{{
z28z(~Ym!sK|2~NSe3p7T$38kDWeW>}$HE6LbJVI$J%i5){OVQk*l13}`k_Pi^{J(@
zj!uKVw549%7ZpQ8$hRJ8WqW%#U~aEyPfJ6SEKeU~8}ttF5yXRUlYPv&Z{IfVBP=3Y
z0zGz}ma;O<p15(?J7VlzT1+S7*RTC&rhIY6_yXVU&j9GOH?s2bxq*T35Nc)!jQ-94
zA+P<{v+E)Qx)!xj_w70VzDWPq$qG3AC~BP9cC@%90fz6Sr5-ds0(5lP8Sw>OpXo&)
zK^6x3`tnCcL|0@+q*}b(2@P*#xf}wD41fs>_~29Sv`82R<abazc6L`Z+2u%kz)!9f
zNNxU258sI5WGInX7-+?(-0Sk9+D?xZ2@$bZNk!#7aaGwuEjhd2U+=B|*CVn7`fCA>
zrf!kMsMvqqJ&K}JKM^B;Y#K9)ikR&Fq;N~Fw=htMw!_UCPPOX}@+{GmM(ggvz<}K5
zY>x?5EK}E5Lo3ti#YLi-=Bdiw_!rEi`L5ctFZ~)mVFWlu#PFg{*kWM>nAMg)D1m`P
zHqZ`2Sed7Jx6Z8L0mAjigao%KC?H>CU~lu-4cetPL;i0k%gO^NU1m-$P-DaXGMX5M
zz|q0R+1`K8=Ll@K9{&;!SnL!6Jk4r=>9aCfrhK8HVseQL#metbwU>I#N>cR;-2b;I
zt*2{;1pUljf&c5XSt=R>s<1T84i1dS@_&vL6C-0*R8-W9!!)n|*H`#gh>!|G*`tX$
z#6Lg*D_j`Sg=}mg2035cBTy1(adU`_yhqpG=~tYCt?X{EfK7A~<qcp0B?c%}%Iv}U
zq(@DdbB+RLu!Tl#zW9K4@Zlk|etr4W{;@kMm84#|HuKqpnvx2zS}OJYPdl8+4+4Ub
zzrZ=;PmqqRBYM*7?wq5zShS5FM&!jKEh@BP{)$6Qdk(*7C@IqH5rxq@d3Myvu3Izu
zppO|`_b)(#G5nAyH84^MnZm@t$OYOD5>KKPzsH3G-wXIF1;GCYk4C>XcK?}xKq@7m
z;re3lqu&3_J%C@G<^~Vo;;>gX3Pa|A?K~IU5)2iOOKe%-u$fk<%4=>Z5DC2(AhmhA
zEmc`!mugpZj(^cFOZeBDh<N@rv%H+0iG{^N%ottZ`{0`wE!Uf=&JP7ybaZs@tEj=#
zUxJV^RW;UeFGID#+y1bBR!*5DkC}*M#d%sjvjO#rRDsL<`#Jt}DbaN(tbd4LgFL@1
zqqS~W0lWT8c3035F(Iu#kDyFY)zW~~wh7VmZ2Ps}RhJci2a%yRGo@nPe%%K{y*N2k
zCmtr|i+9hF_bG|Qf|{z6T;@EVMZTjNdcOk(^6O5<({bq&G^?Rs5}ZRurLm&g{vy%x
zvYA*okaf%QjPG~8e5slTg4$c=A#Qu3Eib#3ePu{|e(w#x+~fIjBp=&S^p-}%jJqbX
zV)WEcNap^{T<qHSsNng3;5P%bU_3mDz3H-i0EC1?$+{xN0h4>|hto&`9#>}*H8xtM
z@qqdX%MdEPBM&I~*6>xUij2C3cVL8{$APWwhq`}X#+eGZ#O%gTf<r@jq4wZSt{M$s
zj^UQHV1!QFep?@W5U0tLhC&H#7sE)7kEb<)pHx~KlVfuOBM=f1;WZ11FMF^a)Xv-I
z0Q}@fJ)@mZmg)RS5-WCpK76|l^~fetfQpI=7trMfu2KR>o|iy{TY^`bk&)qgN=8QZ
zd<oPU4*6}iP-{m9$Z2N|*Xs8o4ig4k<qEsr%Vpq626$F!XzvjqUbLC>)X42fC)A<=
z60s|vEqBC%8pmfUd^So%Zni@KftY4nc}6#T%Xl*%Kbg3BA#R#NS_QIX=7FHQ=oIR5
zA1M0}`JCFO<!7e1r-AKF4A?oX6l=YzDq?kQEfXwdQ=06x(w2=jW6I7K1&AG%K7sAW
zElp$X!^i4|CN_j(#%knVY~J|dKYnjK4Mx%${p^CaGx>m6S8LF{X7Oj7%!@eXFe^2Q
z?Dx{pJS($6yC0YBS+aO%;axY!EDax%;_rtLms_;r;E<u_Pdwfi^ugb28U8e$X)y<K
zkF^$S-Lm!Vev2vj<fJ-e7-uF~)P{lG_YNv6BV&CqzI<Hg3=c*mHT6={m}LZRqZ6OL
zu7B1>E^^DjKy3ZMK!8Txs^BLMyi`&~hLKHNC^psCgz4lczu%`BuJ`BD1D5^(YQ|Qc
zXyHpR-m=d^r@QiVQp2s`&o!flfC{;)L?(bxq?W9y^t<0Ps&=&=fGP&D_gpo-t(w&a
z7rX=iVc^&$i>4AFcAj<u+L|^kD){93mtAi4h#3HtT@1efg9rj9Tz&JRA3(=uML_!y
zhe-lN1kY0FkxR-ys@O}BYDA!T1vl(lucsa0FFID?K(}kvDjoFbMh7w`?%kVbkw;};
z#$aJlgSL$I#!hwn3ihbJ$UqUAT{@9ch}r83K8`8P#7460=$yNcpuP2O<@Bd)p^Y8%
zopkL<Kmrmw(rr}ezbd<<kL|hFv2iseu#!AFbxn0q9-D?ck%Pyw*WiD*xe?Cj7F08I
zrwFvBy~ZcBIc++=6BhtSRvJhy)mEd~$Tgu1+|>iUy~+m10Nzm+zMl65u!-is=<k<h
zVq?qSJi;1hS~<%6gEIct;Bo{FRq$##h*kO?Anx^UIoHQD0GMt4DeH(q7QI@qu&rIv
zlf$*zCWjvvgCD1!q{FQ!_a@LiecEf={IS9N+F48E-}HxM(JDNv_`r5R+d~DA`X)mH
zZseU5;v)e0R}D-CJN@>RPr7JF0SN6gUf!fG0qzJ^-nX*wkWM|&{zL_a=f+#F87-yT
zrK)$q-XNV18GF`vU#F2#0VjdiP~jRcp`n52Z!2ExCz<DMJ7yu`*E+X+Dj_grc~`<>
zVmuwYQ--;A@KEzPRXdzxWqr@gPYzlEy1pHqvzrqXlCho1kkQO~HuT(nHml;{)Q<Wm
zU(V|Y_!SbDos=)wUaP2VU%UR4*a~u))zq<QE|qyb=+Lv;!~|6jYn=1l$w)8{{huD2
z#po)4dPG%QRECz7J}Bdp{HFO11v_8kXP#%E8)|>mP3zl;N<jtvvbjghsT925!|hTZ
zAf}e}2;1cX2);l>e5aVzH@i5Y&&cFE!HUW%`hcgd;Tly`yg&Uh-F}Q$AC`S_OgAs%
zG^B5Fsd;Fvr?hM0E!=Ue{=O-rXaHRZz^u8EzF=cBqb8xj?bG~7Cqc_=PHni@N|Wo%
zsgba$YN2vKq}>9$)Q>8x<Wkyaz&1L28+bn-$M5*haLVc)5%4Uwz^?$j_+E}HS3n?;
zlb2ZOsDOs-*i*+5OQ2k^FbY#mOq#x9^GKDa-vuO=n}rwJ{6q){dG@^#A<__NAOeBb
z+ABn!=C}}F4hE&JT+(Q%-TAt*us7<Gz)0-W%CDmk{R*N={ynEn(|!<3+%H)V=<By1
zEyRF*Z){IlZGH^ippZb*1%F)8^a$PesWv~qK0zU&pKF^(plJZCckOH}5u?Yq)Ny(N
zAd^+a!~%Nei_2)fZh+~@d$5Q-ZknRP!vW3X#<<D12@p>M3a@j!c?}N<zaXYSoEU8P
z%{`kWV`^~(L(}3Pq_?S~RApBzyc@@wOUVsse@Zi5;Q$^+P`BR#d%>^CzSB5}#O_Zr
z6B85FyU>U$CGWlubh>0|qT(2!uD&TiWv4g+fX1ZR!81K2u1#&VunXdCvmf1qVb5PH
z7!M@gua@@Qvru*}*_WUq9dGZMu=qA_Is1$KrYD^$4I=McEYTN-uGgA^ZcA)iz?a+;
zzORKuuc}?WZhk5^`g-Dcp#R*vD@Fr~$1!)}*niQAmLUNaKSV?qg@x6vT_}opPkU87
z5WGhw8mcXJdek*^>aM!^VUveTzMCqyz^Jm7e}6@I?JY~v6T_MP>9P#+Wk5h@2T<Qh
z3T#glFr}QGrFn9!vs~cCXuKS~zF|`|TLL~yu=R+Im=c7*0%H7(B<MvXHW#Z3`gO$_
z3=fn{)C}p(lAN#(2FCre?=1Whvw0@12k(~p=G!)J@OSEOu?AL)R`FcDSByVh@JK5U
ze%7;SJPHjh)V)I|y<j-O3j64R^qeTJu0vjIjq>AOert0$v$aTX^{Lj?nO}V2?bA=6
z?@g78Y6%6jMyJRG*h&#PIH6}gu()2sFVrkebDD}%gGNZPO^Ddi6@k8~{HDLN#tj+N
zdR8Q}*@!!tGHz~S&4;v=gdr5qT*uVR_pREdnFhWIKfAp*W75B`FFCxMOupY+K>0`N
zvi(}(N#JM844=dgA3pR->qmAR4T9mbf#M-Ear%rQ9V(7Cs=Ngh52Z-Ej}!%!94TwI
zyi9mWd5~MwZ&KRC&KErZ3`ip6aKZuX1L@ud>??9D08!cvM5SYP!M0|=v9yLWLD{AK
zrQmZw$Z5WEyY1ng4NxD4%t&AhJrx0;?XWz59!cqU=fqe!wk45!HY{-1%e=9%zZ&^%
zz$V{lxWi>)+NjK9%Jrw)bf1e0==LncPUK?7tfs#BWs<%#DxlgEU1NA6mTXl$Uo-IQ
zmC<BRrCy!AGwaIA3Km=IiU$DdZ{0hJB049aa=#^Z>5P;H7m1nY)vfi!4y>Ve^0n}v
z!bw9bC%o7~i7}>`q3;VTLY}?*A$S@U^(MdDYMUs#z3py;4RQ2Sl?he*DSf(i@zRss
z<@#XDriaUi-&7`s!-T}duR&!|<@Go3W)|maY&Q4=2>^4^`{T>I(;ovqU$Bv4ULGxm
z-R~<7dURp(jsP*g;S_b#e-yYOP35C*V^n-{lZbhZY3SI2bavE*E#Qg@DY`N6r~BSu
zJIfgg@R$Grr#eQpFMMaC0NnKgGiF*W2$`R}Y(~iu3R`M4BoA9E!euml^19eb%osIP
z=098lP_>L0wc?YbjGusp6q6FAW9MObAz6PxlSvnHDE-kwCWb@svWV_o{v08TZ#VM^
z$CZlAJJO8<okQn{5P#(e3PFuT;9m^8Q(?@_nDi0b94X>>DDOF*rg-1O_kD2xC|h|k
z-uKf60KEDJO<45Mys+Qis8lfd0$p2gCp?MWef_?L?c=@1Y>9eWLuAa|8LCENQvF`G
z$~9_BsB%VRzMA|rC9o%#%L~rm?(S%*zWKS8M<lHEIYhE&{D{9!)mzmF4I}o$if7e@
zZB9)FbM6PVnwG;)g8{C`cIf6>daXK=ggC6WBh?KP79-Da;F(2j9k5IFuaXB2&Ks_r
zWw(W1*K&tSS#?=2nLSZx*vgpm9PPua-n=KOaZ4a}`S}yr(6;F&42<0g>OSnWQJm<P
zV%&ErO!!<u(P9r@H+({|noe=BzU^lN`FMt-=KwPDEG;SZZ|74^>|3u@(a=uvmwe@N
z9_|m_fqD<juqE-W>x-n5m_<&D*9+^FPP*0A#p9VSq!|F8(Ty3z3Viw!s6b)h#i0lj
ztN2tT?-<r(xG~VJbGcff0ppS|-o==)2m-Qiuk?BDSFqoe#cr?7RHUTt6B*7JH8(I^
zNZ4nAaO#RQm$u6!LZ3O&uJW-M>|VKJBrqtFKkeCGI10jU&9AH^WqUEaq3ys-RZa2Y
z3tKe#Y$Pt;TAvkH*s(<<8R`5^(;-hzz2aVyE!A|PxWmgtn>G(M%b*v}_VEd1%~W5i
zNmoQ+aH=)T9D?MUq{H?!4`uV2oFoc_$rfrT00?m&>!`RnE21ZVFx|%#kF>;xR-=op
zBB5@3+IRs~XZ@$I!Vcc76OIhiGFW}9y{EKOJLh*dH##sqJ(xWALg^+BMT0ZZTJd3{
ze;Rip*T0>ad^nwYInuYPI$7GqIk7K|ck@(L)jQYRwK+5Sf<l0?N7uIE<-|8M@q0s#
z+|a=X>q`hz)tr^9tTgEie>$KdlxLBVtHitS*w7+(>z)s;5Yj%x;&2WxJ8o%Ib^=Tm
zeU>Wp=e*hF^t8hJ?i=6loTWmU%6e55MSk%WX#QlydFSDn^zI{=geDdaO1$8D^vqzc
ztjWCjxc&Vb9R0)uFO}~cM!Wb9IrbDbOTA9K#tVq*ysD0B0Kk3mgM(~i@sI02eY)d2
z)MSaybq^P4lcG5z<A=pYJIzQi>W%6{UsWCmY}#Q^+y<Fo86J3#&>bl{xf)U-2E&l@
zu?S{}Da_Sp%34`;d(J4T|D12SZaw28b{jxgTpNke0(uHse-sy}BT^SXHl=?#2iz;_
z^$%OUZK07UI^uDJ>`=;UM5(dDJomy~=ba5RKkWk+M3~8oMH)5B+nV}T+>>nkn*c>-
za`DN8{4x*4y7B4pG2wTI3C=&8Hc6+-<`Gfg(u#~~-9OQT&JNE}rUOMC5I*7d4A4)N
zEbZbWWUJ<E1=osa68o%SuTzXE+ABREW#z3qbzOeE9px%w=F2A7t0VEe29#fjixMDk
zqvqXduRa1ER_{I?BYTh`kPm$GY>(5Ed_~2ie_kL#qDfliXXDmM^3O|K1pC*6D0k07
zZm)1~aQ>z92fWx_>JZgV2D)0+1IORtx3*wkezN}M()})MkzA4A$FZ0v#54IyRJ!HH
z0q@wfmUz?B?+zUN;%U0<=J!=pTklTf8uu#)K$K(43+sTU-58>uRb<keWgTo}9129I
z{*U#TG~6Ie2$pN@)fLq9SHsr!oK0DR;l4(Lp(x^timPiiQ&A19+#2`<H7D;!TYbDd
zSAvOhjr(WGAl->XhS02mclArCkOjc;=1X{zGER1P(;?xH{BB`4p20()!H!QShuErZ
z+EW#uBpG_j2ny`vYEmRF|6Y$*l7(Xsym&r-+94cVJ~~_eliy`C%u-3rnR0mJyfjB>
z6FVz?F%J7M37v@bV^5V~ZfGNz`sRA}uyk*J1={Yt2wlTuq?ebI8;@8a!6DbDpq*Jv
z<}iCYZS%E3%0|sdoWd{pK}|_0FI?vQ!11mXPzG@wU|H24=>wA1n>sdslk}Nsuq4mK
zdnKScO!hPQvZ<p*v9(rH(MDps2J}89=e$_g#0<U;fJWjMd>!%Ua4w6rgM#-PeKY6h
z{6l}bgVIpZRD48npC#g;Ju_l^rZpB93orsxSx|46Ukcy#^t6iGd?)9d5qwTmh>^xC
zemif|lmW(XhU`Ie(bX9<M7a-NCOLw?D?f;|lmQGgKXVkcJ>idYu`MB-zR<|ZDK^bl
zHHoN1;k*ssf;jvjTo?y0mC+E-69VV*l^wTyKi+(&xY?J=_rZ`#x$YI;6(008({RJb
zCz0bYP%XH;+Bq9?xg4Leh*W>Ce?ch{^yU75<Ql9*0PC*K!4g72d%wh8eMRM$+p^cH
z^~yOM#S`I+KHYdLy~r;2FV5p^*P-au@_NKwo-=XJhaWD_Ttah{-_Dez25WPC%MvM(
zbeBn_((nhHe?<()DQhX7LZzZ4pP~bu5sIgHl=&!B{PZmP#i$)d-Go8@iZO>?WxC^n
zYy;F1#BNdg^AS^~nAj4Genw2nQ-TsrCDLvp3wX}0n&!ttZ-1e(w7G0)J7syNf>-$r
zqq4B8A66qX0Dk_ou1^9xsm~4|4q3I3*l)8WEUSNYk)x1$F}B<x!+G2Lp8Qzq{XL9=
zM9Yw0F>SpEJu7x7kNT)_k3OtT3(ob#JWEb&8IxBYpXh+w5M!dY?ZG$F(Z^4|v{9cY
zB(@FQEp)qIs;Xaj$i>R4&za6?kzBuhmy{OUs-L$;^W0)vy~Hx3<Tg;Q#(Lkm<7|{G
z*Cx7G{(PK;M;vW=6XQ_flI><O&k@tD3;u4WgTySiUa{s|rGz916TDj2Kzln{gWi_;
z!C88AVc(=>yMM*!Ou;-AM+TM4#}Q5FXa`$WeOtNX8yd`g&1=@dnWFFcM;albN%O?m
z`t3HKJ7dzN`QtCdu<#bxk^OGFx#!!yABZ?<i`1)4esfkVu5A4;r9x!wU$AY<#QHYq
zqLG~2QB$XJS0@c}Uf+zELkeC*<Z*`KvhB|X|GI}FQS|o#G;I%n8lbAY9mlB2isQ3w
zH@{*FGzWUD<m!8el#=Ogs0+s7QvcQhfcJsfw1%=$N&5&)0j`C@<e$f6BE%v1FfsB*
z^8w0x_7vvNpX`VbBeF)yTM6gNOE03ywxU<wr2a<6Uwrv3HT~ap87F8tFLSKZ`(@=G
zFK5`Ee=ZJQfqXN$ITmUX0=e)l;fl}*U_-T1x!524z;Mbi<R=LuVujcg9;H0poiEuq
zd8o}0_SQ-4l8^+J)_iQ$M#c5T8CBO_I!X`A*%omtD(nFvI9KBtzn@A3WB~%JJ{!x&
znI=L`2enevjx(QAh({9L{UiKzUK8~AGDxIB16;N#IGIb0`d!fm6>?TF%O=uW!I<LP
zn(4nqm}c+NK?KdQ-n8*BqNe;;+bdR#Z_tUIi>G+D4vsskGN^(Le%Ed{MV_%kPl6aL
zm)@r4y?daM_UL*(dqb&%U6#)zCp@bdPV@sN-4S6nzpj0c%U0_(;c{ZWJ*^@5ROG<A
z?CdgD|KgCdD&SO{3J#%c8X(D2CEhj0+46h!fq~(&TDRcx3cJ-+#<Pd{+qVvc^Z2Ii
zl?NHBJGDx=T2kewN)>I|z<V>B{a*PX&~amjGsT}IZ|d8T-|`e0qcJ=}^I^Orb&ce3
zX)b4-{LfOrY7G$(?PJGU?Bj7*WN!H^#)k-pBlxbPc+Tgt;mU6?eBc$4L2fwQD3zqi
z5iSawGx&#zKs`ff>q_(xUf1a>5MhES%G&L557kDM4B#2H+);_)23%N%tw*L9&A-K(
z5n=<Ngb|!2dqyc8d}pid-1N|~AQQ?NN|^YOC$f`)qhmRKtQf#F!zp_Awy@hDpi~h3
zVCRuh3I^?=1Hvq6^vJLm1ZNLGyDDdbE66IIxqf)a_R8oe`wPIE$i_v;rs%e_LhoS)
ziz+6wi&gqN%6h!$x>#0FKE4HXZ@1TCMH0nd90h4($}itz28s{X2_x75YH-jspjh=A
zlb~$|Xa5+^Z`laIu01GH8pQdL1d&%;q<|o*4_nbIrON}viPoUy%2uZ=@>N0acG6q&
z_s1bv6in#^28`c~ptYEX_TXryCZMb1=Aago?KFGZ%uJI)2{kk7q@~$ismsK0Q8R4^
zV8nQWHyy?F&1T{-G!-hz8nE#0W$0U@X;mT1P~LXnx1=vCINe<xJByeZ1ya=ptx3&R
zTaR;bP{(`%<nRW35VB}v_`}pq9@*87+3%mn%1zdOwJ`Gy;@gB628-oJa7Zvb$$BnN
zf#?3yE$NOdXbBP{l3G8V<C}5RonHc6Y1Mw~@1=qNu$k$rZcW6a6v?CGB_JD)8-of$
z0G_~i=#=U^lKsO~kH|VVx32@3va7$pfBi$-pKT(*XMddKeg8%8_8}-<$c;1NfjktG
zjJ~PcFO1J5n7=I?@?ySMYuI5)W`$DlKG=0f2?@mp(eG`9iVxd|K3N+Q0!l@VS=HWr
z&3@+>dA#i>fq3QsFr<8arSo|RHeFN(gM_ig!%afbt~1F*7DF&YY@EeZcD#CehC+xx
z`w4n15rgg`>pU0z>82mcD5Bfsq=xHVJ7vE>iXwRHm75}s5rh~c%F%m|vB-=!rJ~*U
zL#SQ4;0MM0N-Q<WP}a)NvEb_=&ofL<>tRQxK_`~Vz#b88`|ofn43TsBXAC(<)F3uU
z((h|0&-*XomHIvhzdeu=lIFTP+Q&0-Q3wJ2qlf8ye}p2XmP{xeVu+MT)nMd)^6OTq
zc!`GM1pe5T(r`Ek<>2d|lE6^Q5P_Q`v-n+fU)Q&7K&13%<`=$etzWxj6Xogs294d}
zc$Q7u`2_{?`bYQ?=oBx4Ls6`WK5fI(wDT_3OGkhzuy7WC{UljE3~IB*c3L6Oiozw@
z@K7ZVd)aRYU5QO02CoVOY`r+_YzaV1%PrOUdaumu89%?+I}*TsMXq<duU2p)sCCir
zK{x`Ra>^J;rdX7CcD1sAS3{&@s>6pxtPF2wN<ctjuQKLzdR-+?cPcA~dsT;JoFBqk
zpRm(%y)$04;6d`Nd9s69oc-N0lu}F`Wp9*K7VRuM2w{7Yj5V*=@LC_y!<oydqU^zK
z++v+U(xZIr1Z{_ay={U9$puUxZuJIye#YalAezESE%Qc0Q)4{wEa#(^z7(TrDtOK$
zRmq6^y}kGSfbRUnWe`{MkqKG(<&<rLoV!u%aC4kzZQX-G*SnQy_EU4X8g%q*^9s8`
z36D)RA7f^}Ht!PMy!*~7syWvPwD?6Z<h8f$)GOEfy@xz_4hJnBJLQN$DLykO;r={_
zqHWJpq!92S3wTw!<(^vb`c>Ex9)=;=n)pFh5%m*hymY>V`**$POS4AfF>!52uTl3X
ziL&xE1hfVO7_cURM2y|}JhQAmfJ-~<RRZydhJaI@^uQFA!%ekjR(kiM1Trai`>^Bc
z5oau7z`1MRw|^@77*zGh2ZwuvZw*?uUYwue3xPTE5e@dB^a3pOQY6ix*b~Z#nSQ8J
z#@_SWALYE%B5yS%^K~jFqVG-I%U`=|a0#B;+1#6mcvcpONB$t}=O)k@_*g(B;R#|h
zLiRJO2_w3w{%o_4w;dLpLFqrM+78S~buRprMtSc6wL3AIT*toee$&vKaY!|}zCwO$
zy-G8qzQtiNd!(~SYg)F0!SiVdvAStzQ8u$UOAQ5XI)a@Cid##A;^w_2PlDy0YB89m
z4Gb}aZT~16n9((a9}+sajC&12V(H8=mMDRoinj@`7!<B{D;6;iXWf-K<nN;0x;3yo
zuqPboNL9EWeuN|_pwj-t%5m*6Wzu%a&`fW06}}F6_c2@AoCf2xu+09O-fSh7WSVe*
zN@sjdFWx3uf;>Twd#|h7fzd3<KM;X-4~Zw!YT()x4=Ri-4T$6o&^xTx;0R`Um;xRo
zV?~cLC@Fl{tJG&G4ng48j1}>k4Kaw_V!PiKfq{=MA67y5Dk6lWTLG*uHWC!q+5enJ
z{DU|c^q%_bA+YaN*-=q=7{ib>LBVbmVSvL1olLl`$5047#%+Qj)^QYmIy^)@ka{>l
zjQXMrJLb|+1>2OC7|{v*JOC3zZV+d2+fg`nqz-T)nP_g<>B?V4vfS9f%;pU{q}~q_
z#YG;aX-3b+{zkTVKux0_(m=h=*_~nxb8PsvnLW3x?ca`v{2o8KSh*39no_k2y~l9y
zhQ7gYi1YmMC^xtQrxXrXfpxqNXdN;M$(XVp$%by}VseKmKip{DUbD`bQb{Q1OO_sC
zJ*otPk+Gm(qt_7HP>8dU{c#WjiLqfZo?TbQ;IBKufsd?naqU6uo;+doudO~l)*v`Q
zXV9(U!I615jbDu?I82QV1QS&u5%&j7kabJ@?<4LpM(HlNV>%jKw%%^I(UG2#!HC4S
zMkb+R<NQh<`s%A9+n8y4#<tP-L(9<Ma=ef=0zbBo2(;u5;GR_nG~l8WkqC=eO1Npt
z?37!p+kLBFY4-aMi6wwX0<aHhGzgC;PQFnhwQjx+h^I-5D*<FhT1)-!YMDWTt=DA0
zBwi4Qa7G8bO|%#jCHDT=mw18c-n^U2@K7~|TGk|pPib%ilOC(jeUR0%P-L!E`OjW{
z^$cpTNjMG-^algB>PpsuuF;I|YpvV9hQ!%k$sbN?TpY$aD#9&p^Xj3FE#M)8<4diA
zXT0+!=xT>vQhE>9Ia)h@hl0hWM$VUJTmTNx1ODZCYyM77Tci8u(n~>*Qn25(>5FS5
zWVLEAjrbWTAiFX{7#e;QAQlI`ZF+YYq?hy{9m1`7zQD57G~g>9eUfT;8!?x6=Axys
znHubly8#E#I;6@B+_UKI_eX5N1`lIf&M|K9#{9*bbzqT0A=*FExzo|f#=f>T!om5f
zR$pxAP>s#iT#$`e1v%EyO3es;Ho4CV{W{w1A4&A^v<sD%3c2EE4;34j=t6ik`%ZPI
z6uVPII}J<^A?GO34r|*S_7T_bopX?v|NK(FzEQ*{$7srGu8hd=N__8V&W7#FURg##
zsaML;N9;~Yz_UnKH?cm>S0}{q`@8my`^yJ<ZP-BE;88QEBD2aZtm1{l?_WXZ=<p&}
z*X|^~gy#d_QnmUYVFcpBCG*`#$<OD@A3&uu=~5zx!s>F~?rSq}V>XoC7DxDXQWK-|
zm}baUrtPIWI%ii}A}V?I0!Nh4!;d)XDmqmM&miRzul2RXtoeW5cR0VK6Te_;vUl}M
zfe0dogs(Y;fNy;ooRS{L5@5%aqg|As%n^+%{mBBOd_F*zv%LM%r+KVn57HeC-rDI2
ztgS<f4eVe1y+o)B;G1>x_`5vu1fQ*T-qLsMUT^$zc)Klx-Kn;sS0|t3vJXLwh<h>B
zyBoHsU!yaR+)QXH(r##Y9NCpzBdZwB5S%1o0e;chWnw@`EtzHZ?RT))gvYIb9Jdo~
zr%apUka?Zo<?#AUJlTYg-IC?R)M_?U4Hv^d<<mLt)y<BV0Tv}2f`-Q2dZgOPf)N9|
zbWqn15o$x?llP`#S`^D)nimrr3NzBuN`&girnk88tP~I*mE8~YF(?IRlKp9n@zeJ{
z5->M4N#(k~tZHnIL-V~72v(>QvAvA`#VB}k|0Tt0VD)@8J@S_@1{xDOXCaLxHVI60
zh_@tCvyKDR<~wqdspy$T?G_o@rz;pf;uIQL2|AH}twS()ds3g*lQSk{xY+pGXu(}i
zL(HP7EioP5;<ZV0`Cd0hw4Cp~R;e(v^^#3s``D5Q{=u1+->UC^mK%3qdzhpGct-uU
zZpxo8=+7Q)jtdSNt!669tpduWP77ei{6Q<ou_1`)29eimbS<31umG=dO_ci(8$PNC
zX@~$4A(3R=mcxN8P(eu&LA-3Lu<;4G7YvGNjv(5Sn{l?48hJoeQ@GpIaVirQdStaF
zD;fIR04TbKgN{J8PHR#M7zH-~)VAbNs^(3WAKhJ0rVPnfz0a8Nl9uCj0es*X{WHp8
z%@S>~E9l#!4+R)2S%7loh6yUi;_A1^JYp<E1OpPmot<y~MOcD6g=>h}o!>$5kQi5<
zur=zrt|~j&*D112#-<nh5BIm1Y5?(H@cR*lKE)O|yn|Z%V4@K3(MjX$8hRUr5|X<v
ztpU6bEqO(iSo;^m0HzOAyY1niX5vn2*DmkRm?rNb#;-u;(6!Tv;dS2a9iH7HcltIG
zXsCLK<Ay9o!AZF!pEC&SxEYxe?H_LR@*N!j`5wPDJme5Vh0jXYVnBl0i1~e(O+*SH
z$U{>1r1?BJ`k9dn2OcaPF0~(5ILEd*!}c&a_IjotZD*O6O<=u{Ku-q;*kvf;2uY(W
z`K5nOrnuTALE)gjsa&T>pqf1V#LU*}7BF=uf<5R0M#z2wX%N1@WznTb2vZ_-utTpx
zi}ms3pgu`#yP`f%<x=xp-kbRG%K-O!SksYa0D|F^cXU<ZGO0?+cm7s~yV*c`$77`7
z=d3Q3$0WsESE3PN8&D)y_&~|J8M54?MYrX9f+L;ILn88h?0)Lj5pgNqI%ynEYPG!s
zem9n+-BtVYP?=HNSI+42R$vPF-ugTtUX7Ynxwfyo19^qtZl*lF)8djxC#t-qA6U%^
z0P){UCpQ%tSro|y`CK$TmUw>L0fq3vI%ol^Xc?fcop8BZY&5zSJHK=k$nZ)luzfo$
zg$#cFBE{U#&8K7Dpm5kFt@Ue@w}$1;ln|4S&2?Ynfhsr*9yFbX6p(aQwS?#|&2Py;
zJtwLkI@0C|Bqosq-iuzM;<u<rgr#*3c%~vS_^)!{FmU712+A$=^F80VgIq?4vC`~=
zPeWs3`7pg?BzoIYL6Ow}ocL={5LAT?S#r^jCwHt`tZxiq>F5`#JyHNkXHKRt28U$)
zlHC#;Qt&o|YS>d3G`ToI2A&Fs>{_LEz*iZ(61C#wXjO;B+VhUSC*37f&wZMF?|l|`
z8{C#>^FI*h(u^nF{^h$&(|(5#+>+|aW@Y82sGk5d^9c|AND3<TV6rD4q671OUnckA
z&=;zvil3sTYHSZ6PB)T#U>xZ#S}lu<_y!p75zH3qQut&S9Th<Llms(*W?GW=21q~D
zQtIy2zHC0yxhQ+umMhoGZ(DAp#X-fQf7D}t>!{^Oe|m!Ja)Ejvx#$a_v2}jt@hR}t
z_LBA7mo%d{2}qrh5WyEO^%C+#2a5PqZi9LCoN6^$CysO*3opv1ApfM!<z{Ms$NI0#
z3=Go3mqE(NrnDO@0~!YFz~>i}Y^V^R7lmrTc7xeb1Nou04h0?PRGsUcap^B>Ha${X
z+2~--bk3fDk4A1i)(`H4P$5vG`jwK8$PL$SeG|{bsWSuAWm=Q1AZTRlXWE1|^&53$
zI12I6PHOx+K)k5By!>c5ANICLI1#)kwvQSE*6djO>Ckphe~H@tZkMF2Rl&e|g8<uY
z>Z_Yi>*G*8?FgBK#M(W1bs@iLOAkOXO%-`ENluc6A*L%d;re7@!Q!BXr8LVs^Mzb|
zdAYf-11Mq`*vAjeKxhP(&^MCZ@L`BXUI*Na<lV<Hv1sANH+I{V00m+`rj_M_Xfw=d
zdn-%iYq{Ug*~J#GJZiAn_ljWt2@8c|vXWvyrT(*jE0Q+g{>t88?~Cuu>XRrU{YQUz
zS&;rQg$NjVpmZ}SdONN@VzhK3c&QyLgLxG`W;L_S9}f)_oYJ|=I{2E%NbF23V$QkJ
zdd)kOXyRvlfCSXQ8+7(;vjzM4;!r%&gg_z~=wZeDqn8)lve^EOZ?O9MPjFv0>{*63
ze=$S_)g7wAeg?M>;h{(GWui)9*&7^I%4`m^JTkjUeiN<uXcPc*IohVTk+aS(Z0wUm
zzA>b!iBUI$ndXl?4wU5!MZ70-14Z@a3+i$w-u;-w&9Z|G77wVuHkkmtgYfN#9f<sR
zn-zI0*j8keX8qy9AMtXxDd^wJT8mmfyY0OjtG4da7$>YdgJC0=ZpNlQ2cheCq2xsn
zj6G!qkmY!aOHvZiJ^rhlJv@pUskQ`J7G7>)?^moPhJ05qf6ci0_btcaJQtTXiz%ma
zr*u8S*j663M#_4ZFhr`m=7H<+HlCm!Oo;7k+RdSvG(<>wV|?_sP8K#>Ism>QN^~m<
zqjo;+US3fiI-ahUPg1A_{RpFtf7yT324)Z^-?1$u>G@o>olG3c2}2PEX08A+l^b8Y
z-qiBe<A+IIpy*bkWu>9Mu1n0yp57^0L9x<8T(@2qd$V15YU=;y5n7=m9<^^K>e;_n
z3vdr&$ndUYk&oOOfgxfXbF&ErE9hxE{6L0nx>df_Yp924uY9yIO0Zy+BTdxNur90;
z3kQ*5h-JFW7`yy<Zr-$eLR0x>Y9XVzs%ktq`ZLjY9KJi&9g@-bgYCU~yoS9!J}(s4
zXD+(d5%+r&bpKEh+dV{=0bCcWrB23^kp`U3azJ)aIVAlRiQxO8bRj)oYV$y8K`5gD
zU}EZ`mbAyj#e%jn`wLhQx#%catm-@^Pujkfo>|yR_Zk*^62?(~Vw-={fqSq(k{&6p
zAHo6fW*bZ1RMZP6iD?^J08UTT-n*RlRhkQ3FfC!2dx+Qqk4Y!ubw@Jwg?O?hL7?_I
zx>D#PegXfz7%}Q$G*dNu`c`NB+6THAMRIk$t-O;?kP0bG{TIf)I5=#pFFEM+UJFEE
z@JYb_>uzJe%f)s<S&qAT&JStQ9!A6xOdJT!!ix(OSP+!bf293t*%L!iNV8OzPGan(
z*OKdEZLwPmk+jyvum?B{pz7MVBWLXbU}p=Cn1CC^03bG9c?p$Hf2{M417h3_B>P@l
zW+USVE<%6CuzY@?t8@{yQm-#Jcua!IR2-%-SEuL)Wv4&{HSD?f_Je&`fb+({wGW+J
zx_78@9u&C#WWmJX`2_F#pbaj?u$Nz%P3{CE$X-f>v^Z;gJ!y7zxGfUAuM~WM`PTG}
zgHZO@Y=|z}^)m7aldSy6FwRe_4A9L0`|vZO@fsA1T>FwqpWhX84zW72Z($tBA}*yo
zmM>_ZzBIJQ>co{(8PZ#Li{T+XrcpV>a(WuM_c<QzIx<2`?Ds^SL-fp~#@ft`Ba49G
z!f&#`Ey4561kGo-(y^PnT6+3(c)}C{->u*|sc-^og@qxIud$bDf>d_DeH!(wPZgW$
zwFhiFCA}()2<53Hj!oP`BSn+-THK~kZ?U|dl}p_AW~T6CyR5k>+MyW29|sV<w3Gm?
ziHhV5{=S?3j0JK3yhlS`e)1H`+_rfb?IN^wj)ik!MtD7o^wp1w0qw2eZ4Dj<b~@k2
z0w#s~Xzjl1Gdp#j2<5S@F;j_yTS~vnetl?)EBEhBVuv>KWA>Bk4I<C)-9PoRi>Us$
zM|Nfnt|&3{1_bHSQvE5)y|+3)C2|o;9Mnp8T0+UkOA!FKE^@Qk%_>qj3y>_8E5c4>
zp?5X`ZvYSy_#U|NUZaySZ@!TwXOq@zv{NZ%ZyMr=UUovS9%(6hD5_LL#P%c3fK2@s
zPhqmTuppal8yXJh{Wm>I>IvmFHCi*UytGKx*f2&kah8rDm+1<{&VK|<BPvaue|qVl
zalRmA1JmLa%$N{qQnxF2_5BJavW)$eUFK3d#)qP%Ii1YG5Y`FK)^-3Jh--TcaZitA
ziUs99!`T2!bXNU*xL<l01rYozU@Q_E_I>QIMb^e`no!4zBWA2Dy0lhm*RL<0-`CE+
zB^`7e+{I+m66=nLef}f9AaV`IBw!`$zH)#y-f%7<=LwWBjl(Pi-zLz(U{&V+T`EoV
z?Rk1K!>~7?-@DxhU6|wt^m|{XPx?C5VGjSB=lTSm+tPYa!bK)3KBb(!X^XyIOw$2l
zWr)~fn4yHJt(3XgR+DLPMy!LvOU*G~SbSmYd8hX5vx~r;Is7VK-_ksd?ECFvM&B!{
z{o+-`(j!NvgpD_Gr4zq5Rje-2LD}NghB4WslcBnaL}|)>Z*-8QCSZ{j_)UH<`aRa*
zOy27zHoZ&ykn%f_#-=uh8y_{5Z^yn5xg+<deukCSoPHbs(hUE~IyXOmgV@mVg`B<p
zc;wc}$u5y>@Q$RJfIB7b3f!)+q2GNCy?kn0+h@B3bSI)G_}efIOnB!+Ca+G0moL@H
z6zuH->PafK^xPBpoV(9`1rzmXLv}~=u6<vC`-D6;5EZoDi@L=HIAi4;+<1=ZY2-bQ
z)fR6j1eb-BbWC)j<K#9P^imWfmzF0Tt`Bb)G~%!87v0>O^<Rwr`q{~Z_(iUEg52`!
zON<k>Hk<5h<S30LtTi`_o4CP_&Z_L^5`3$Pwr?})udP+{LU}2NUH_lL&N3>_ZCTer
z0*wS336eA#+$BJxjXMMl!99fF?(V_e-2%ZOxNCsm1b24`?%XeHt+V&pXPkR4|C+%7
zy5~2m=B%pseIh&pu2pAk(rMmr0+Yf27T#{-z<EIFHyOJZ?|&;?0+68ip20-sLZE;4
zOIvl=N(7NE!ZKRln>ByIiCRI~<(zjvxcdT0)C*3;a;y_+zw3FTIlgcEM^0u#Z(wY?
zDna2fkxR*COT4>wx)#EBbeuEHXVKDtWAX8clZ)mk^Y6c$690^El9t)wgoX>S8-B&>
zSYpork2MZ>$T7E6{^AM-4DQWT!ALI+x&mMMI{-d*<s#Jp%WoVos@>+KV4*`so^C!r
z9Q{zDhp|Wa3E(Z;*`)6SsMuKf_X@jz?4$vb;xF}ORWh9|7XXT5r05LT1*VgoS74X@
zVG^AWaV<lgg}MRi9Y72BTv2tO{HplYZcBD=G~4fh8qnsJy~(rI4y3V}q4Li-dA1|J
zgOp8HlJEAhi`|kEsr$oUwv^Z6DE%x!eI#C5XRaX*E!o6;3~PYFamH=?AA@6JFjx=`
zkAbwg{#RPyI_e$n6acmb=HwCwhjugR_e6A?N*LGxf8(7ptG_aZ-{>S%zLI(EkFfk(
zuMps;wEYiO*7^|)h$}61*GoZZCu=Z8f(5g}{9WPt3_O&al2SDI&3i7!XkS6+)6gC6
z6kBCAMdtxY+-S;U8dcow{+dVnqZ)#W;+!;3x6MEe2ieu%9KM1cBKW2taO%Wqr13z-
z7jVvVv0mrqB0$>ty^&0@Y`Jm#%4tn+QJAK*8ZUu{$0hAxHM%9gPGUQXxx;d6X~vX-
zf<lt(>V;_=pnm_@u=Dj?um;dg42k_7ffbIMWS0JR-s$Nv9{)zlx81<jk~G|~kWM4}
ziyfq|X_rdvet9%B83-5oCtoMmE=6@WF5mAg?H>@+;qbm)UiN3D<<Pk#Ep{`xcps$S
zX_t<T$b%ak9~R3&{C3@5SaI8Rct61SJt}J|NZ$vh(KOUBlY8NrzDBcW4_dJb_*!vV
z<2<Ilu1sk>x6J>NXGUAw<B>Jpq%Bymx>ZtUKOp*+rClT7eH2vjgK&CoS00zR)o(A6
z_}FJGKf^~WiwYCQ^Tq8OOeMmDtBdNo9{y9d=2I)!p7K2&UjAJ-cp|k#!i=~kv-D<F
zY_5PM_>mN(qVM<Mro+_qeUm6_pxIBZGKA-j#i0sjFP0zkqFlkHm-+kNYu?%87gKbf
z3c?a9yi!d+FEIWs?W$3N-`(APYHK<3F3<TncTLt3<WCVLOylD}iYN-k!ivxF%_?g#
z(8V1r`&QOy*5PoNnc4X5YbH5e)fZpiuef5AIXOGhnAsG6s10sU!*)!^LmOLE4T8Q>
z(BosS<YcEM&ZmZ}j|1!@+1r_389-y{x$g`*Jgq1J8XB6}So<>!a}ZhRX$xk+BcB#}
zB>!d7qR{JX-}2Vm&!+H90oFs+sBI+{>$4`p!oL2i-?t21&UeNx8TRcI-9ECT0bB?E
zp%e}oX;R$1Xb^nq(3|t4&HyxHS785r`U42OvB%Tnq&)JAT`N}oW|RV?4gY$vKhw1w
z>V4-ofFE8o${V!4zDSs*c_4g8HWqblfK&jXjM+~z436FX@-{rGkBdLa66`5gt80Ks
z&SWst9k7k#K2!ayqPKvU61tcD0oW8pjHoL25oelGgniGq?x2}|wJcO)_jdPFD?1n`
z<zxnjN;V2S9APN5W8v@8>qMLhXL6Lk$Fd_SHy!VdtpJ}M>utv&y}dAvcSQ$-E$bjr
zW6-}ZsVFzhRx8)Jbb!V>T*ftVgzSAbhfh0tQ}_isx;VJyAAg~|&gH()^3ZP{<UE?J
zH`?a5>=;m5+^o`z^J+1*E4A^`;fHLI7aC=A<e}(<O<|`iv8~X?3*?FU$G}p<r_#y{
z6BJVjY%5G$?vl_`I=6Y9)^IRE<?g7rM{G7xTix4`7#q<?y9w!S@pxUiT{bQ1dx)*c
z*?Ec6a5d-3z8M;k+0Y$-0$?z7BgdWUCun4}gN3Qz_1?;0omXmXab6yrL_lOovff<o
zRmq$h@W|ho+#`Orm@rx|;?~H-B%ttt!Qy#^8A&G`iBt-=XT6FD&1%3tXTzkZjZ1!<
z-^tJ~ovY2Mri{zVdYA_90g=uzYVuHLV?+`gqkddzCQ3DP$k;HE?$G5_%2h-$J|ff8
zRKv50%5ngEjctjPf<kU4CoPCV14o&K80U?>gO0eOGdAuYR4f^MqBpQcmQ%3qC;02}
z)~r6Nh*<%@ymxwb$;L$KO4BQ$pL%s+3PIV7*GVEt_v+bnIdbZ&XQE!<C$gJ#>xLoP
zs6-hr7m3pnuTkB0DXtik>t|+{V~kEkZPP1ph6nwn^O<P5589FCXzLT?fBy@k4JZsB
zD!lO+HAKr>E>oaC)UWVHu*h`SQ3~FaQLMKINg4xQjdr<oAk*6^O{)-=7Y~{f0H@#}
zI)T)vi~AS|;`x$*-uPjY*{c%IswT`W2wbO*13^A+*d}(vo8wPI^nrAak%tqq_a4cc
zSRkxP_#*|*3`5}z?tu9;O7}{V;UkmImXW+1a!sScKjUkA?tn4`dv3~{>r5_n?>P32
zsErIj7mNL)wnW7&_j<2)n(29KdiQ&|GI!~1x4G3jyKkdt2C9Aj3Io?A&;npG8b!^0
z>A2}wpl`?^2cb`h0!O`EG5h_`cBjE}1jU`}-|MfxW3V##f03LrxerI>F@g*^jb<0U
z(cn)x4!bx*g{!DO9s-OeY00WbpzG+oB<u?JmSi1R6YARLep%o)IqTiGRMJ1D^Zu-#
z0z6Tq;C^%K-0#cz-Qeuv$gmm|8`A48O?ax+jUUYq(TR!Eda1M%vs(@j3<|40Ok5s4
zhUdK$N*hVA8K>Xvfg=ZlA3OGTwzoyE@xkeWt*eJJSyA8Z=r16AF<@e+`|nQUDO{QC
zO@^6GZm!XVk<9V<v!YrrDaBN@Ri%j2NYb6*U0m;!RK*^|0(7lu2($H!O<5&Wx${0&
z)y=Ttah7SxicrrjiDt5#jnwd)=6kGIheO`#7kjjD-~nLtPr!I1!%utFoNj|bP7waV
zUaR?h!Z3aV$41An4GtB0?skTz5&k}RE!=c#aj`4w{8Xu_xy_Qq7j1`M>gQ{rGOtt!
z*+1&}IqXY2*2>kR%eS~X6i!Yu+-;o=^KMpL&(hb9b+&qNn~#vlV=?gY{_cK+D0SQf
zRJ|eTTRrGM$@8pK#l?ePa`?G;F%oR3DOc(Su?_6GoT<>8vkR`K^;+D0^V1;LMM^B+
zfBD6R!l?B@s6k@8hf8>u{GFSdB5mU4PFsxUT)YtYl`#5s(3sy2YzTC_;Nl)}<mJ&6
zq*Tt53Oe2|Z7M1m2Qul{Ga|NHBcq8OPu7k7O{s14$ijDCQjRno_<jo{T3B+aoA)<8
z8(o>3t1Y=kuZ3|_H?|L@5HLgN(4^^KaqlPF9(rWNrHM~SPz|s!lkmn7Uysn;MXeG*
zO~0C1$<NUftqPaZ%pZ%%xAMlvHC(#D0IDrzO~7sy;9UV3;2SF0)B4xe2Ogb-XAo%(
zTUsAGM6LHH?KHHsMO{bVFz$bVCUK8)V=|X1o^VWJG_BtTXtw~Mf;Q>+qGc?X+vsEO
zB3zc<Ehb?|c#gqHoy1ghtj4c~rhfJT$Cep~y(cBsE6v!tATf`ov^Yn`Z$Q-@m1iHz
zH+U?sYKSCREV(P1<sh*9N4UuSnvLb9*?LjR9sit4<(-)u4qUEPcFGz<@l3;)1$SR#
zKA-gze8L&}y0y+@7k5n?t{U2Z;#L+SU@#!|7GZ4R58%QTK+B@|Lh9jw(bVwElbT>?
zU{zTjP|}cxAd%Gw?dS*F{+YY6CWZi7YHdIuLjFTY^L-yXUvBfolx98}sG9Uh#P`FC
z2z~Ia(Ax_D6@!!E!~+zQTYmSx#?~RoR$fJi0!ptYN$}lo0GY(|ZO$BUxHtnD@bJ|+
zU#|xB#G?-z0m?sYd4f)IP*haw&DLu-%^BDM`*`(;fXpZ4i}sIzH``l>;zMp+K)(_a
z=3h|(2uMO0x{|@Go@!-UfSCfBWHT_%Wc>P(L8p19bzu_zD4X1!U2BJ>H&NF!`F*(#
z<NCpJ8*H`JOiL?GB?xB~P_rBtq<qG|SwS45z=mM|PF8PqZ?FassmT=>##qsVgM*=&
z9nPbsh3SC|f139c=p0Z|(F*Rs_lhaF=D9Fy3jYZr?CvsXE0i<%GHBf(?Q{=1jw$@6
zDJ9~Zcjxn6Ssd^9G2n2%o&pFnD^K}Z$+9~r0bdk(*n>SAMuf8sMs{r}im;5kNz|W)
z{!N77#^)FP=vNcO{H~IO{*>Z0*8ilNQC1Xt4Iw?ibp5c{;p`n+5XcHOiA&hJGc6_M
zGtBlwuO<U@R*1XV#+ysZ+BYoL_Kgb9LY?6Ok$ro>Pm+XS(kQ14;WddtVq6pR!ju75
zxU^YDe-v>6EqJoWeNJo0rsbVHqK!~X(75;DR#ML4$H&#QS^K_DiY0z7p2On#{ytdL
z`{q;3R+tu}3%EtD<qqZ6a#id0qvu2aMxZg;r^%aX>154i4LLh2p2PvvGny<-#KrqP
z+u=GC=#<BaYt!s>7txR5%+~x)ggY7<@-O7K7+K#kv<2yt!-ERB(w#;oHa79C>*Y8#
ziK!2!LgzoC)%k^k5n9iN=>UpzKRK#a{fW@+{PNPqau`1wk5)wl2`sLx`IG^xM=r&_
z++z}$cIMW0UWK+g+vWlp>-2?xsrjr08so$H1lMmr24*+)zJQ_BtKer?H<2(;{$+dT
zi01>F?)qHbhZBXocu(5X+do}Wbv!QKu>}I+T_o4t{Ky;l7?K|lX#}M1allVkpZD?c
z9%=2H94eCT14~p!BYmP?4%c0k@NH(DpBzpp=ewm$k#(dQEj<%Ch};N+rVNN=zoTzw
zWIG}sinq*>sB^!D+~^f}NPctkZ6upo;3k3dV2N6Fw3oYUZ8v2iaN@!aUs-^JIZq5`
zUSRqLN#PmEu}mL2*}K-+lO?CN%99Z)LiDYZnh9|V$;C|w#tdu8$pv2Y+Waz4TgMwB
z?)#go0TNTA<xg1TOU}KLSV&AdZDO}Q%+uC*9FHMagbyB%%dS}4L3~T}^87-3{BE1L
zjZPh?bjDcZ{!#CAS!W-ct}-276S*Ehzg<J}>_9sii@v4`vWScP4h)Qvw{j6fB_X*K
z-FBMCLt?Q&7M;H&boLTk=Yq~RdRgfHx8MkzQ0ztF19Sz1k2+Y_zHVd9CHhjsR_(b?
z1)3xF=up!wd1GWj7w*WqG^#BIeF`-1z8ky5U945SF_qtovruR76`T<4IkNg%yKrfn
z)o+LS1&=jL{VI%jmd>}maln9X{+i^Js1tKm-JXCi`gl{nDsP|#7Nho)Mn-;~`BA5@
z?(j<1O#%MTNy+C@Uhin3fjouPQUjCkL@<|ZU44Buxcj6EO{<i|{Y0pt5S8o|RUhJN
z1lEK8JTQA{iEkt{sivjHpn9T&E=;iOR(?p>{l`omg~)v2mu!=@Lf4r*6h{YmMA(uo
zl0*(1`-q(0657saOxX|~d9i451HKE!Vb)Y#8%d;FcR)YpU>5vAI4{sf-`9C4nD{Wj
zc@<DXYy^we;!oCD%u}s>@9q{|MNWJx8-cRv`FLZ}XI{7uErSL+*P{QX?hZ~WL3!{S
zS%r?N?~{Bp4#Qj%=tAy8jOEze*ifjmTr5$yU0B5k9zntu^${od#0XlYkC?BNlu2NS
z-o9`ak2JBA3r8`~Hqp09eYGC#iJbcRSn@RToY$}Q<PL6(SQsV(atBH#gGNNi0_EUY
z9xC@Iy<uNmtd5bISrqUbDA-Z1s?n&ETPYSeGW}UvE%@~JV5rNfQK7_hD^@)=6za37
zKL~YUZBXM$0UVW?Z}`dOA?IoYM_V-$et~68=>1QDk7ZBY44f$@?$zD~BaJ$zcTcNu
zsl3E!Esgc_0-rfvQu>c}9#X#icx;lrjP~|1h1XazmnlgqshFO=o1>!0rp$fQ<`w4+
zCixdXy(4BB&+L>vI@_z08Z{q5uti;v{c>Sy|6m=fQ`pt9?vW`=_q1iQ_+6}pZ${*!
z4YKx-upk#x5V(VD=wVU^FCs+1r<D0;mD4C3-qwh2e@+|DHQ>yJ3pp5}Ua7<K4+o=l
zUJO%gsN-}#0-{{`Ztv?-m(%{&MO9TP`}Ol;s#B*^n?0ei*N7g)HIWL<g9-dp9yvtk
ze*GY&(u<1wahYn<6~WY<A)ERA@}~x&sk`Iy)jH2tt=yAY-e~l+w0EM<K-<Dl+9j9m
z=k6Wu0!@zI?*{KaH(rly!@b>};yb-8&P`_jGA9bY?y=(CIjs~Ch2WFShU>K0G%jLc
zu6rvJLoQOJVMhxx`;K`NNss(J{Kv=mX-s`NzA!ZFUv>$k_imqe>&{05OlGv<S8+kq
z0>KEWXm1w$MC3#&0uc*4nq$~Zw4p=vdO~aax(}jUnJzKrZ82h=Ng8u~kyBRrMGSiA
zmuGk#3%;}Xiq9i|%~yFLhf43V<1yC;onMxqiIwa?@xq+?GnuWTJmymeKOJXR{1{<;
zipXd-kAd_l<G5l`#oC4r(!6b-E~)LmkDy1*)7}w&x+0qPGPDutPJwtimCW0#{~b0W
z_~FV)HGhz$0ZME-0sZxTav0s9d~8R%@d7oeWSNMy_UaHbovPZY4C4J$d)hYH)8wGZ
zSmTv$ERVxMl=YO{)!1X)5bn=uiXVL!;nkBIRn#wFci6WsyG^!>*aTDQbTTqDT!xXj
zeGTT%o+7_(*b&1#Y2ldDCQo5+n!ozmsWtD!q%|k9vD;BTQF)S~Zo6V(X`^h1OVW_M
zdiBGBK98v6?$)*6<*439B+pY{zZ7aJ`fHXLQ0B7x4Zp&sW>$)`g<0!}cXGc}($~YB
zYj&xITC8}bt|Ktg=6S_E!(rJ5wtzx}2>ku)=(-I&)RdDf|GC4pF&126Q3o-zM<LbO
z`B$AbWW|0V_oD%COrZr|CcnqE9blZ2JoMcvG){4r4su*XBS7XW%cc|XE1LANT`peH
z&*ndQOgE}0d^=Mv;xo<%k(!~geI;*r>}bTTxSao5%a~jAFz|Fh?8q(qrY+Wl15DKE
zQ?XLr)c<Y7Ig~W&Nilg+DbwMC>CC-rbh0>8b8nivif4RXbGea;_OE-cATp&jblXXs
zB~Y7#%$&$+-ha@ZgJjqS;OM1;taEa6UoW^xcv<iJCLLJk5(0Rwhzyr4LK_$whNUwm
z_^|U3P2K^#OV-g-&K3GAYP2x-j7aN(srf`03nVm(1c0CGsA>WfDhRAbGHT73sviIY
z-nS;hY2r*l?<3x~7GyYJDB=wWrukR&O(7Px14Yz#ok*HzSVb@3-v$%B<NGbzw1Q=9
zeSn6FY6RmnpV2F&vUCui1gY_w`O>0yqP#(`<lt~PkRxPq+sO|4G*hAP*hN_VVmJh>
z#w~7S6A&4n>M&cgIJpp3*Kq7T`*Ev)vHoWDLzmca{jL6M=QaTHLterT<Ri@5kxZCw
zS;uNGJ}$05gIj0o8nj(?SffuTE95zQ?bhXD9IKs~vU5aaE7_<$-_*5M3vi8E^Zr!2
zK5)9~iCk)7kXElY0YR>2{%Bchl@PhXYq+-rz=cj*2)S*I{6^?|{g>Z>A^^t%voG`8
zU_{{)<mj&`M2ArE`^Ob7WD9Q3$b%QVzW>Bv5WM!xmpR+*0+F!Ud?DenC8bVSJy7oc
zuE?4O0xXOwJ5cBcI)z3*C~*}}hOpntH^q_%zKiDX9_l0^$sE2qOlb|7H5-@1<-T=y
z`C(j<we;u^dcCSf*^}lOZ&dDe3SV6G6?4#hAi`5G83eMcE6d-&Bxawr;E5!%#n!&x
z(dzVr_Nhe03xyIVixJMh;;|OeL$1`C^u~dFQ<&=|**$D3&wI6`Yla#co~wTLUS=xA
z<!Peb0h|mP<6SQw>A$>s^2D*wY!Xf&da@7Q6{#D3lCEm=+;{1m)M|VRHA1mj&?2lp
zeEKM7RZ+gPU****MW$Hk?z`W66rviJo*+#B$RVMHplEer_D*5ktvrc}=fHh)pzwO_
zNBH5n)3~-%%fYFqmfa9V<JuQ?vGc7DMR|E?Q>F8rR>zFi3*C6P+Z7L9U3D9zRQ{uY
z&dPkb!6fs+Tj1e52+0A<6F<TYJe%zA3epS<s@7I#a6Hk2({{J%s=MAEZV7!pHdY{A
zeby5?&53I4p64zeDZddKNq_wUmMQLGumG5-or-Pnn(r>x$aJO6+wSg})*|<D@ng&D
zx=-Kclq{`k@A?p~)AD`IcE%&Ga9h?CV%Fu7gCLOIyTuSaOV6LccAF?YpfGvapAC5o
zy00>6gCc8)92#f_w=wfOKROpO`G2jmSQc_M9739lPWD@iIpVc~q`U73-IQ=8@Vrno
zAK>IT?#fO(&h*sCeGt2u^t(AfsG^WItm88iCRn|z9|k#M*~_k+qEFkPTcBr@SGHsC
z#;fkXuE!v^GFqltdYY(|#B6O#;mkMbuUaRmr__P1iuPyR46NaaMWI=>)l0D!7|z#?
z+|_in8vN8-;N=tbPlkT%zr!2{%5&K!GelUs`7dFk#o@d}sXWCOLJxGNH*IYB;mlqq
z`N>{&Arcy&0WDCzOyZoC<Qh`H7=ESR+31U|guQ*ozwfD^WS>3xMVHty7<Rr;Wbb36
z>U+Hz!6+WtBwH4_u)yC>PZLHLYWtPOf_<~FBryla%Eh~ux-`pYeMG;5xDB#$C}MmM
zAE9dvI$Vkpt=AEH^x>a3y&92vYkb+IqW)gkf#Z8zmFEi=YnP4JLZreR$;eDQD+^7;
ziJqTV_J$AbBVP;NB)gf;R(r+YYhLGP<>kq(@c@u4ON>E#Hr{<Th4=4?muZfq2?>$K
zMomu5>UE)7Zf<T>>%wep+Mca(L8L6~?C*3Eggk-~Lazhhn(yI-vfI4!>QB@X@%o=i
zWo9S|ck60o@etlCx<^`8wb~kfF~>AQcC43OAp>9b{ay{lwe0f(YanCpN2m%rljdz~
zY#9E^zsyCPqx502Jlen`kUH|zUn@~luBe;6`%wBFM;q#Hh3~{%{H^=guIo-HXkOy_
zduFsmw_x$Nt>v|Cm!)nG=y}NF99;vlJvCRxXH@pDwKb0^HKn(9`HRc@*NtqPjJbao
z$I>$eWo5&Hcfm{eNaUr_;MNKMJh7%AdM0yIbP})oO1@+NuNDBuP6<M$wn~azNzfTk
zTf0xx9a~S_dBL`@M=EMZNyfk?tGyx|WRvYFgMwj-fQ%7W1#)w(VUF=Z=}ru$2-;VG
z;HY&8)xDisHslpnT6cyVnc!We*@UBv5ro;!At1OHR4^0FmuWWvK4(p;QMG^tQM?fG
zu2b)=3qZpFSey0Z>2W>;gyb^y;VC;`3fTO6oQD<EUF@eh3i#9M|4L!)$0Au1sPLKy
zCW3<AX&+W7kf{gC(wu9>+tRaN)IUS&MkhU9IZ{dMpuSUY;_bF{u_IVm>grPvC7DO4
zI+xqu6jHbIyE?zj7kJY<Ai@FNKfJkcv$_0KCNHswM=<601!IoMwsft>>A2ww*x=gv
zo%O+M&Jq&MQe;I}S594u{LoNoJFOG&MVvCy?^L(3Qw5;8r+i&nDs<18aoD+#ObR~i
z@Ufn$fVPr`W@mazC$y&Q7xJ5<p`PLh0RDxEL4$z%FpdeKT5m6p+*~t-ws28Fp38VL
z7bjj`!*~R}u>rT1xh@74dS7$6sX8{^biC^n8|VtHP$>9;ZN|lN+K10{M5EVcHl5kv
z?gYW<Tw6&;>h3J`Lz3F4q+U?%_M&YoA4SlI69GJWVmV*uN|Gx=oL8dO*IgepZ6W?F
z6);#u<Q9)91F>xXK>lYuB>P_6Zn9`J^-*u5m&{AmD`<EqwMPh*0q;n%SVabtDaV3C
z4Zmh3!LFGons-fKs8yNIR&}8&uL<L8i2gb7SubE!pu$z2iKBn=_x>1RCMwH_0`C@<
z!o)1{{ED#G;+K+G2i#oKmId!L%Jib#tXm8%j}3vUY6UMzo4@i9Gk*NbE#+xq)-|1o
z`!L2f1qD$GT{nuVYvx#Cazk2=iFYb7P70^f%*o6aYjT#Lu2pOwM4>ER-nS}oxKek{
zyU1%DVdb!x*KH<gtln0yOcc${5rOK!^Cm{EZmy}b8&_x;5%K3gRttkN)F>$Yl(3i)
zJ5Gx^ITx3nHEaTWe99Y-JMq)B^zK=8@P$om>ldN`W##I;M<0amh}$R&Sx24gjRCrO
zCo62$dl&0x22jE-+LOVdCZoG{k!;gZjIzPsF**{`bf5!C37NiP#5qj3%*R-o4foX7
z=3|ZcMc4CzM*@c?c|6#E$3o!ZmGuT}O$9mttxvJi{nLT?>pBJ@f_sTbOav<}MU2pd
zSA*3>xnlCFUp^J>QiFv-W}k`R%Rum&g@qBn1~|4~j^#pl2v7`)(%`4Nm59ukHHi;P
zW5p*#F-n6b@p5VsB&_cf>P_Z~?4{jHp4A`pU~1sH5M$5=>nJA_M!){{M(2qpYU}3<
zn}%DU&Hb)0!?ifBPty&cTh~~1HZC;asr+?ARDv&M1iejK`D`ToHieJfNdl^mhcC?X
z!;4~mL%$~lbK8>3kx`I9Uo9rJ3Hg`pwb<_Rc<Xnjg~HXPF#l05>tQ5h5WF1QO@Ws3
zja+<J>b5ntq?A;2@zH%`dBId|c>&`-B;qB|D$n)zN3>zz`E*oA2dW{K(|!+pPTcU8
z2j|=AEb+~T@)VifgcM|vvoBfB0&r&FMz<1{wLBIJ{*G{el?MtyUr8%y*;2~?+xLd$
z+H>uWGmg@M!<K{yspn7iw}(g6JBcGpg~#|U^7%In8(XVFCX454O$6YwU^*neR|6W;
zs_<4G*pf*RS2gBcj>675ngsJx4qthfW(}T@dqhVMXsIU(U&r*Mf6dEL>O^`+lKcrD
z;jz)g>)RK&G3FXPkAj)*zz?vrw>wd8*n14>RiZuKK?v^#|61$_EV#B6g;Nv|HnmOg
zb@Ky)OG6rVU%DJLlWBMeZ@V?>M~2EUljpDamsRN>=+*kjJD3ilkh#tdCW+YAMt5{n
zdM^0+TJnhzoo93uH5fMeJ-BN^^B-bAYKh!AndiuTgW+Li109P0x-==Z(ooBEds`!x
z=miNt?^UZbs}d6ne_BKYJ8bNS-hakI%ka3Q!9vS%x2}LO>NF>a&;?ja=G%7GUM+7c
z^fIt@pYHwAq-9_Tt1UPvSg87piW(VbLx3^!?!XTOP97;r9LaGwZWAXw5QTtW359Gg
z%W5lgDqD-jZD5iRyi4V>!kZSHR3y7+y(Kl{0v4)<5Y8WZ<a(+6Vs1p&vG5DrYw+01
zf9;KbH|72=`oO87d?g)KRnm}0fdnC*jE=)7WQl*QW<#{3R>Tdkg_9XwH{Mql+X25I
z0?tRplO;k*c^-UnahgTk0cZc<kHyyU9dsl{B@}$Kh7U{n<;bdA^9c)$)z_HeY<pf<
ztTxnVm-Md|l61Sg-hr`K-k}uzr<H5F4<I$Uj3oh;UW|G0p-ZLnv46i8IC>$1q&3C@
z#gMxH@?`0usH(&t74x95CVc<Ux1AM#nMSyMph~Go&7MWMHZsXIIj)?6(R5V6>=2~y
z`>tVwYIk{XTDO-IIJPKx_QRei_G76d^G;66u($AqVOALHq1^tSfVr=VhK3N}5KsP0
zG{DyvTciGjzHvPQ?bF_5tm$;wgObViu*djPexiJo3t#}t-F-s!`HSB_r=v;{`Iz6v
zM+@W^Kd(QVeFoiqcyGjuEc|2D^WoO!={bWSLpA_%qAmCOyKNRPsI5w?N+Mg(Sj?7T
zl{>DBudw;3%e!~9Q~y`{`LB)TD5?kGN^xJkk_JqjEF^Nrv;V7c`qvuOZ~$SemO~#X
z9NO!_BTpz@udWNA8X;ps9SK-TJHw3+7o?AuoWkpo99Oi>6Gh6u`^)*Qhfw`lG9sU!
z_Xg4<v{^}`q&JJ~2JN3~Pv+w?#NIK>kk=#C7S=fbUb}n?AqxHbvIHf2_G)*I``I&8
zBq>oLl|ESg8X<CXu`Qmbit2dBBrfWg;DVJSMU}oMv&PF{{lYdl6^$tRc~<71!xUVO
zAlVz67cYqU0QOsGf7jp^`lr3sd&oR;SgJX*l?BY>4C#v$glP?i^KoWzLitwcu0R{~
z1SX#eeSQjtPvQ3Wnw`C2izqJsJS+0<9VV?CpoI=*0pIYu`p0Buas}PU6;>J|&kqXK
zYy%?k;h<rtQNcmsk83hVfz5#DaV(BG9`0n(l|Lz?q)##CPMz+5c6O6HlAcFBP0L4_
zCH#4ZSt3|pX%{4Btz-`r45vE&ogIk$+6^Q5r&y7SbN`CV|Fr<0RN=J^3=LH+#)~Dt
zvr>+7qafOcW|b`((pY(=@CEOuxy^cB4lFNAAR*x6y?kDqxt{ZeyA_0Z>#F><jd>F{
zQOU;T4jYbGS3>ye{a^X~043>+c^@*E^qJegJlT*?SwTS|)X)Cvgij@Ly_>iBe0A$c
z2z<d!)f~0Hb;PvlP&yBWCs_52F1bjdv)XgCvD+>)Q=i#px_}HeH8q9&u<8w~1Z<Fb
zQaCNbe*W%6tyQg7W{RN=G6o@pOM>^Oj0Rj>T(FkivH)<HZEwd$HdC+3H8f(RCOs+X
zM^2YTTvU``lhg6X-v$A*lVw|gCu)sV<`CoW59ok3y-uT)yu1M3qAAIrC-uK4)BpKm
zR34??F1R6Res{+H!=Etp1|GYZ!41|iB&s}*(=PI>fViaA<9N;wSO-$?llJHNn`~<T
zbm+4X(cw(Ug{-Wss%Li>n4xj-!d;XQmW2oSuEyBH$nyH78$?8@89hvlH}1U`PRf@V
zMyHpU8+=|o+Y#Kj-A6utRI>5+U&akg+o0RereCZmbm3RE4}ZKr?sDkWb)z;uocmZF
zY3EFF&g@}JLKDQ&v*UDXfvGs@ogEk3Dsy{=f=ZUzu6KIG@r9K5el_)2J=Mf5Xmrnj
z-@%!WQZz6`Zz*;W4M+qPbwRv0cg~8>-nDc##<bPpr>B5rj+*)7bRCOm^i4$YUb;3q
zL_5Tle`L*n%^My0?m#SeEk`}<gUF*!#zq&pNX`1;?(kuwVpKWi5R^8$_L!Guvl_!_
z&@(-jK*V&`<?@jlBP8~*_xzaFE)4P@8h~h<nsEvvdeC+q0H1DDwm)A?z3Y^Dwp0G)
zuJ3YA<Zgj+G_uqA%g1fK1I#(p%d>1W@fSH^3&K2h*1EfeQC+mTOYwynf_{cg^L@J{
zU{d)&wi&~dLLktL%gD<Qv+l?>{gVj(uPMUkQd&?1sc!mB?z+-nje`Gp41DB;{(D%T
zIV{)k_W@8n43lWti?3s79Dhi~WH#7^9vsKbV#+u#Yv6r-N%S+XD(4;v(yQ%~I_Xz|
zIT2ix*zeePEAx0m-Ou%a$!!)mxzBD;^0Tf)UA(7Z*65bE!i-l{HBKh=({vudJ@)}$
zUbS2;#g=@ZR~D0X+D#%;>43jwO4ICG6A0e-lo?#JU;x~2L3i$~LM%V*K$i-`p<-b@
zFXPWA%FyXHN4q^4;AJ<Xy0hUJVm53&I-9;YTS<-_sSGm@WMSqBV38>a@D~bBk*%c)
zu#GLjARc3xyI1Z@fsd{ML8Cst1{y6ciIY#B5<CvZ`pf7`5w&)+F9?|7^Ncn*KRq4b
z+)gBfnV)Wg2MDG&>OD6);QL-V%BKCCr*kpi83{vM6AFe5HCjxvsXY91gZzJNu9YM#
z1)&vIky4_+tBil9G5+=A?Y||n8moMLJKywJlovEgYt?=GMn}tT3=`|ctlUn-$5ZH>
z2?0X1Ou%e1E;b=OlP{$UGG!ZsF~UoHe7hD#C1%6@a$H<2xf^vta?%neW-A3Rz~w_}
z>D+2B*=5cOHn7U_aD(JP$xJwnXF3h}R#Q`hr0;SjJs{@4-5=osp6m!IFD^*91ei`*
zR|+;5=Z07-@^~`=&u>DTh^OQlPK!}(*8SW_(=IUZ;+4d8u+nF!zbFi+pN$fyUD<vp
z!GE<vEzB4Edu7iA8-iT=P*`n7a?5Tvp{s5jAIJU>E(l`~e!Gr&{yX6jG9Pqe)pg`y
z|0soEti^&Mn%?Y-P587V@(_Opxr<iT65koDBx2Y3=PLUjpVR+%0mVaX?C$MdBX0PU
zB>z60{6~26MoD66nBq=g{Z)mK_Fq97sHE^={wftiR$AK7&o3(zXp_Om8)#^%Hq(or
zaFlCl)JR2MG*w%ahcRVHZ1w~wEvb7<3UxX!e)vFrXY;kS`c$bt0Jd$rvoiA3B;trH
zyP%#GG}=kEQD*26yyc&}9!NDs_Gq^a?)r*gL)?jb%$@Y^<-t#r7>lOEB<`h!Pem|x
z&zkU!5|0VYEf5y^RR=KDQTuT|QLN;LVL0sVu;nUNjn%Ti-DRy#aAag6Q%r1nWO?b`
z^yR;f8vn6#|NSD%1FRsVcL&AbLH%Dok5ANyq=F(<!(u;rZ^-j_-}bQ;Bp~{zMZOjv
z^pe91YJTO|>Sv9C;Q&&0!wVYw9<sOB{eW?!4q3u`(6&F-o9iVrV|O7kUbPPLKa^aA
ziZY5?fmgB@(IhZ)C}9@)Ajf_Y8Xf<6vAg54hw`{gz8Vs-03<2(u)bKapifR8j)`%H
z9RzM|LeJ5h1o8-&(69*)yo2Hhh?oxF+t3)Y6YpP-5d*h$b-&-3Tcd3peB#h2eVq>)
zOq;DUHS<%t@ph}ZxO?qh0E0pWJmV9YiJ|@f$z+NspMI=FxNg`l{A;8A`vDpy10h~J
zkDW({V1KL&eC`iku+Yz521aez9$!<Z(X8?N4~q$OZV8WGJw({=?QM&&*E0#PZ`odJ
zfqsXHEQ&EayJut!MXFN3JUkMJqCN~jx{l%Eoekezu7)E4-A0Wf^&)iWaWRFu7R}yF
zQj?3`%8k%Q*^V)QM0FhXL!jqEK$}sbuSdZ~jPm)7s|+{$ql)9P$UH5CZieTP1&`_d
z*)>=i|7^3(9RIhWmKG#FE)Fb=ZMJuhcz=J-^CZ7V{O@DW|MLE_5Vc4FTGgI#(HrK|
ZC(d-o`q~SVkY~V`l$g9|nXsPk{{h8^8l?aL

literal 0
HcmV?d00001

diff --git a/docs/codeql/images/codeql-for-visual-studio-code/basic-js-query-results-3.png b/docs/codeql/images/codeql-for-visual-studio-code/basic-js-query-results-3.png
new file mode 100644
index 0000000000000000000000000000000000000000..97f2df4dac812e16aaf6d240761a6f46d548e26e
GIT binary patch
literal 384229
zcmd?QbyQqWw<e6c6Wk#Lr*VS2LxA8CG(d2N#v!=7YtSG;f<xo(F2UWcac4Sr?)}zX
z^S*0le)I3gT4$Z=!|8LXckSBs?EO3yuJTC+9fcSL3JMBcPFC_W6ch?26co$>5(4DP
z6S&GBa-rT*LPAAOLV{Ao$==-3#taHdHas~MQ9bbwj{o^v2`|k1AZps{53+RrNt3Yj
zZ4vUaFhMvbls}D9`|$Kpsj0O!jWi^?G#GwsO4d-qplDCR>!{DV)<7|)+`)!!oC%z_
zUG0h7t(@nMW~X~iWM@4<=S?=7I5IM0ie}KO;cRV>M@7UKZ{@(?OhQQ-VIb)ngrt$Z
zdk2M;p8m#aDg>30b)Kg5_;|PeR!)BbPb3JHM;WyJKm_6nQl{DFR%RZ8gVG2;a80#{
zpnD+hc0o>{?Dk2_`Zz|DNGj6z?K(+GI}EX#5o%*dzw$jc)Nk^93v)0Iw#ZlIAQnmQ
zA4tYKWKD%dMOWC;TQD@e(oq+MewxqjzBq4toCbS|BT7l&YlC9AbB0l@5+|+K+yQV0
zEsF*}ZVwdE&iinCBo59v&eqg~Gk~e;b9W~Z{$<HY$w#>(65$>YT5KB8p0m)4nY9`L
z!l=Xd$xNE7#3AHNW3dpe12lzciLW&{@5xVy_T<gC<<+{)9^XUD?1>04Fgu0R24SOG
ze59eB^_%aPC{C4?`1*h<DSTGz*k<OXJaTW>As%C6YyLT{%I19K&oeyrZN)?sy^fuC
zK*>UdQq!nG)*)*o?I-kvKd7I5zCK1(sQg({+z}tIL{G>z=2!rH3kjgRfPo(Df!pjv
zS)}QKfrE`>&}R3L36N<47D=Y1B@KP0(fDBGBq?~+tjL7Q#02%h+U-#ugqmI^73S!x
znHn>TWsO#vNLJf&PYp$U38mt}Rz9<g3B^s||7f10p1}PplbOz6>=pT^KZbh1he>$p
zPPCyhjE~T~?@dLpkh(>=v|)gh$c50z+8CMvH<Xy~{7;Pt=;0AX;XlH}1SaM|XThg-
zYB=D!_}g7zT?bNK;6(Yevq6htVdRT)$>L3azot?fL@^O#jU#vm6)ZZXLYjmWPRUS*
zvV?>u8mz+Lf>rk2H+Wn$HSbu3&V_>5KjcT_Bpo4qqA`C3G)d=`5&me%%O)F;JqrmC
zSi7kYWYUL8?HSncyvOmzJqvl-Oue8-$&;l=kS8$<G5H~=67Z8y9Y+4UZs4#CUcs;`
z_s<XNOh*`H6gMb0*wIomlZtgjOUS2@7&2FrBa_yXdXq&5GzXq8sE-()P(t5dBYqgo
zvKJG|pdsQ0%k?r3>=;L|hqAe*F{Rm!Vws~w_Hk5)XnR!vc!)Ej#=7jf&U)re044%8
zfs3l77$p&$eSF(6j{5o^STP$B-O=2k7lKK;eL52_bb(ADUSR}4w|ytUcI?)~cI(B&
z1umS&cj2yhEZGfQO`Ha7Mr5U+<shnVIMsk}vMwJ&uoJ_N!)beoxA06Tz+~Z)(^PzM
z-{r)o`9C8c!W|M@`d`Oa$nsEm#hDI$zSO)lzLdK3xfDPNHW76!=vCoh&|}a@8c7;R
z!gS)|bLNX7HMIMspRV7gpSohr7*M8crk1KwTiQ3PHoH8lbqVJI>w)P}`Aq!4@xXc6
zc3FVJ1+Ne+8q5{Uf+B-g$t0-N%Ro%;$#9A1jK}m2z=Sca!u2HsF<NF>w!HAm5A>-T
z7YY8*97RALMM>j~Owzk#n<VNaP5NYpY_%hcJVFFC44UMcXvc)9p8LXzAETQ1^!A#S
zs%M|cwbBc=im6qGv`RG&H6IFx)o(s4sjmK5%6pVW|7D(!U(uj%+p&aKujPE;oV9nc
zw===Vw;#Y?VV6&ypHpD)W35=Y>__Ql0oD9sfuqiL@&}0-B~G1M*(=aqHNMh_l)_Jq
zLRYb4c(w2$^I{H#G?r0pTUT2{+tORHQ@2xOGKp-5Y;^v5{#cjr7UosBRq9pqRcs-a
zHh9nS>#`g21Kew!N4dw=8@-zWbTo8obRHruLP1`2_8mfV5>1j@BGoAU=oF%4l2z`0
z;@T*+s5>I}w9XF=ALKrmeP~oNRufSBaVR`9-kjEq;Vk7mvVWTqKelMDV?JjNyN7lK
zb%nl%zE`z>I2M`SXlif_s={x;FU3#B$7I1{d12<&=Fw@d=cw7zN!D4dFV^<btE#uF
z^EEZKqN)C4?>v!W-rDJwXj^+qAmAks{v~>~x-G{i>&4*706!bAcd5H&&)?C(UHjN!
zezTw;+q8IFZlEJ;H0yI#48KsW{YOK#4yV_=+8EA-hdk#F)EV0GU5iv-EnBTh>*ixz
z-Y>lE%T$dPHl}VIPlQkPt--CmZR0*GJyWLj15(OKC9xLm7OkoIT1{G|3#RsD=aT1E
z=hzf_xum&~?SzJY>tyY1r05v2YJEiD+B?0|g)QY<%p1UsAC3_YCGt02D8PkYwX@i|
z_)BnpFnR!G9Bvcmg=(Df<nO%o?=@XwU1nX%63h~s!F3_i;;A9z=wztQn9KOLY%BEo
z#A~Et(P7a)BM4)!qnM*kVlxQp`H#%&bnDn!*bxYDv7PD7UE&w=zeI+Z*qUCMc;S<<
z8r0lB;?&cYDvYxfvF@@8;f01rMhOt#rIQS@?8o#wZ{79BUI+qPJpd1O&(yEgojNM?
zz?6+Fm9z`NDLzMwEr$f_&yLefKSHb3??3$EeGt6_${P)DCfS$9m)2X}*EQ8~QcI~u
z{G|QD=_BP?vZ$U#cV@WPWV7%aJG^5@1tF>CV*z_&43~`UXPQII=>X=`ir*EOBQz<w
zx<9JL>+)@jhK9$Oa?QLf-Vy@GH+Q+JrVZ+S=Q^!!j{>dpxWU#L3rCe>Uj*vLEmq@i
zdT$tx?QN?URhl+m`Uj(xnu(i_oe=#l9)9pEvnnSnv<_L$1W-(gp!nIW+q8L1>{UHH
zKa;@Y!}r1GHeNKW+z(xrB;>Z+DlIOxkJ&B1o-Ur|p9%@+yOT1g(~q)}t~482_+Z!4
zcO1M_7PVFqEWe{zR9azKT{Xl}nQoG?pSTsuRY;U?9a$N%x+^<h1-W}u_!%zvHokBp
za$&q9y}z!#*!M#8!I)1aNg~iPV*1UPqbaT4@Y?-YbQHJr<GX|*MkK}^1v20CXEQ?$
zSM`^J2CF7rT_JDgTkQeIiS1}^b8bXyqI!6`PUORIf{y-|CFkk4uU8E7r5Q7iC3o{v
zN0-Mx9+Piq(B;ryqNk#>EuP1@c=@>JUd&&YH*1$HM#dSkm)&xJ!gtS&sDB8g0TF=q
zmL#BMwTI<Z&xmU3c>`Qyoguix>9p)_Zsga=JnBMLRd(AM@MRQzJ~|}RjrVxjX8FkO
z&sv#vqjgn>tzT<R&yRvqXW#t?)`dz1cfoW0wvlG9S}$XF3uWL$+uGvVtJkyF#Cge@
z-xcL?S8tE2Pg?u4%w=o@MY#y;+v@$@l5gv)Gi(m5t+IHoAn6Wz`!mgU?1V(KGJ|qt
zuBA}9r`^r-N%ft>K%^8P#2~`(6KMEJZF8cnD%v3Tb>y_FA^vCl58edc^))+>lE<?P
zugtr#0<nVFf$9Da{Z}GCeLr5t-_+cw?UY#Hj)-gvr+Tx$PG8TxS+6(N*{}ENBfFR3
ziBiFSl7-qhHHM;}f|}%qqGZiDD=mS`c*RJgzQ_f(oaf*OKrwnkBaJ{)Zs0?C$;YSQ
zgO#J<DZ?TTvY~8jSx7iv&ef}g87>Fn015o=Bh~)x>)i7JeuFL)Z(r8lvbqYjNG>KG
z4Bfqux{5RZ*g<ftjhVKbxsnnTBczQ41qV$G1rKRKLk?kRlK-zQ4NVUP`yba~prAr6
zq2T`Wo==eT-@iD>@%KCb^9+**^IvzMQ0Bq@R~zQw@2#Riiq?=5vV*LSGZYj)?cW1h
z?(_Q#$iJZEB*oN$&?ni5O}pyNAq$h4*B@*V#3H68vEIQKA`MPT^(vejNU37CG4^!_
zE?_Vsp`a;=CdJS@6v=9M#xs(Md0K=(@161Xbm-6}`ixgP4};#WvJy|e&hZWn%g?9!
zML!<Mi10I5;>7vGy{CjmmKBBhzi;Nj!_3rU&FB5!f8)PBJ&%&D2NeLKMEUzpiIC2F
zFmA-}QI3&OiDE^3Nk}g`Wj|n@o&_Oq%Q!&*Af$Hz#$rZ$=@vxzyLE9AiJb>i3h&@s
z_j9~L%%NG5|D*S4{LoLtfxbx0|N3K$BylETx55M~H0A%nFZ|E`PU^v+V0n!!%+mf-
z6N$pmB>2PhVtZ)+O8S2=a3kD1%G;ExQicC!xc|$h^m}OdFq+G1U50-)sDB?XYL84W
zdctC;min)T{6D=uN)}=(nH}T$&;Q&l0@iR;{1^4wi&_7nCqg<!7!R>k%wUgI(LeTM
zQJ6N`JgAyRZ>2B)+&9>$A+{oo51o^j`#+iHUniHRf+)0!{X<5}KlcrYL#z0Iq{b{y
zPWb18be#fm%C$>w*MIIConi0upd2O1HJNDt`5+yzK%BB|*ZS!H!8fqwM4|uxHGu<&
zq`&^E_~&sWiXKMKu33s$z|BVa=z3q|jrL^|)9*lTiH1)V5)&Q{bb0@mahC|{{Ha<n
zT_~3rB5TPU^1t`So@l789+t)xj%W&z_R{<bjuB?5Ci9+HvQ|rM18fsD;Bmk^%6Zi$
z>i_hQPFX6px96*p=KUN2C6SkFspK{9tFi0ntBI15Twl*Z^(oK4GlLKx?px@BwrO--
zCk$#~x_Jge+s(Y*Vf})E0`I!F^W$B|n-KGn5!L@b1``s)@vH&2ulq^t3w>@M^wr>r
zdC%^tR|wjx?Xm6iWIJAOR4uood8bjgMDygI@F-LK@74Zu)(31V7_}T0E1332$#IT<
zG~G0d9H$F`GH-v_Q*a*Vv+%s=LPUigz4%o``!_JM2_lUOoP#X0UFYREN7*F6DsNkn
z0Q}P{o7%CId0p#Y*9Qf$#nzS0=0NrS&+`AL=%9{6_!*}6!P<a*jeCGJ8Q#`>n{z@i
zk#Lsy6VKHsCxJNf@N*|DX5oUNU)%N;0Cdr9Ij>`(g!@5pvRrn63y~K(c6Z~F;$+2=
z0$=BAd_JMFAXsvf<y-a0Z1l55uFq}V#&=YFIicG{Q=g@_sR9`~xUZ0>h<o1tv1pC|
zawL`Ug+V(OCmqsZobQ;$P2LATLUl8aoZe?SM*`Y`RCYf^I$aZ$ZywIvJ6f?QaS(Vi
z;6g|Oc2f<79bZ3XePsXQd05o*>prCs5e`eszHUm|GRI?2F7=C>&Q?3WderY<ZMRFo
zP|qPGcCvTtetvD=R_qrW7fm8*$B!XqtZkpbLzXrAij~(f5lV5oq^2ySA&6T?(xD3C
zvpUZ*@O{{oZY?=-Tk1adIrj=bJe&}Ddv<x)O}!KJ6P!w*IFAhZ4IUj#`UqrScn=jI
zfhkmXQRv-=r&V}0E}%^R?*ooRRA(FxrLSkJa!KqQLjF=c?m%`N>+?+RQnWBVI7Q!S
z=(^Iqt$dIqR_SiVS$SYrv@T?y&R~}Rm(IXPL~e-1^R_6iM~PgFiFKk%Q65N;Lqu7R
zZdRNpZm=ms*y6jI?2xg%;`da9F%%ucvEX}Z)qzkp#iKnhS*CGbDLUqIRqc;fp3mTc
zlAj#Q7u~`8EZrE5vG~P5C%M{x@VFV^GRKzPxPMUMe6OivmMpmrW&8`K*K)7=PHzg+
z=Rm^pk69{9cNCcb51G&P)JsTihJco#&&^i)PI0E)5sh#m8j>Mv^G-tD!(L_yWCFeP
zy>?;sP$uY`r<+Z$y05SPw$Ohh2m`)e<-RE@RqW9Q7)uzHWV?SlwypME-W7UW==ijs
z<?6N!rlBUU#^gW9tLs7_dFLZ4>}JAvPnYY>vFf&Ld$^OR%nG-H?Q6x#unhUE^);NW
zngB*Jr~G!=zJr<~r{@6GRFDRAJ*{w<<vcDY@;DXyh-XIb_YAh2k|JPPI`X;wQxdj*
z>gNr-`(^LL^sDu(<z`!w+}owA=5fs4H}TWQ&7c%WhLh?{U(~qfd0b@gy-k81**l;e
zcJr$4rOc1BhJIGvgCX_B!<~NxF0A#mLGKarn^rCzH(HG3OSfYLDmNY7LjPT0BV>dN
zNrJ*Y_sd4I(Z$w5ONKS#`!5J_fDv%<yT?e6#&q3l?TQ>eEE)>^@)i=vgvp!+zfM%W
z+Z_;jRaTOHig7>S+s_iVt)E-5oYSx<_xPM$v!{dp<Ft3l|31iN-3QkS)(e2<gg$Bj
zqn0Xqw(EMdC+J{@bPW`4J#T+vgjKusI&W*lq711n;xNMGrQZ1JK(YA>34Y6U)xj-3
zJ2VswaA8OxEjLq=nB`W}IB7?4A3(xXZMRlW6e?}(;OLkU(97*|Ne_lVMU&=LFBTQ`
z!M=SDI<Mk(f3yN3g|`FwSILU1+HwBFMblW8-i=)pD#^mrWwX>T)1L%RliKh506gzp
ze>LxA1k+>LZ?#pw+^vh8LOPc$cjd@(7bbzh_uglh$xu$url#**{_SwsOlSXH+qut8
zELK_B2qH=rEFwA3sAVt1dfGzxD!t5z#)M>lz-fd<D@=ngH8g=rxX|a1>%y0r5|Nj~
zVa(mK;gK7+$HS5m+7#{l#a~D@5eduxW%vJ<jS$NJ9UgGw!1D(%FALEO>(vb_tOKU-
z{YIU->oMd1Tw@Lxp#?!kKzYlrHGpm&l>OT-Dz+Z90xLDN3H1r@;&dxJjP(ZE)UO%c
zQqvW+p9nG|b`PdF=ZbZ6OL>xy6;ZIB;=luSq8k)%_cBzJ>0W2er~ny>(sAIG=Wepr
zBMXjNg$Yo4yyV*%?`Hz{*JHysc~q7<6_Yr>XzqF0g)i=_{?w9!=rqE;Uex)w`?-GY
zk+d8P$Wf#)9Uq^=de@Eq<anK>x4)d)FVqekZ$|U3X@lH}ggjk5&%M?&zX`BQ0x9l0
z5mBltZjgGs&B}i@$csGvnK;@~SmWC~P1fNx5_`d}-W<Xc+XMJLj7UE5)JuI5c^Fcj
zE)l*d<+lww29EE(5Y`57(7J>B2mrTNHIRw*MV++74>GlHK2{cP`DU&=W2bdvLet$s
zz`(~Zz|CM}`ym=fU28$cZPg@;wjUovd#|XrB!YrUvfXs4#7PIeIDBxsarQSuDOf>t
zo;m+62?_Y|$w(F%E0n*&ASt%AABbG>UnqEz2)dVYOqa<xQ)$MbjfU;zx?ma_ky)RB
zV!nUU8g>TPN-eit^(yG21eGXgH$}@!3ra1e6N}bA3`(p^g%b`lOcw!%F9`8T$0FNR
zrL40q2NKy_spxxgsUfDO;<;oFSK;UljTLzXDj47*7JWBo46sasGLY|h7_*<Zj_vfQ
z9plL~$uI_;`P`HnvMiM+YZ>sJHf_fo7AAfw8z8A<Qmh}X8?NhFbe<4O<@xh9kwLJE
zYSF~gKv2vCIK1udx7Hi!|K%~%y<Ois?B{F8>v0Fp`H+*IWl{2Ux<!so*kMx#8{XAX
zc~uT#`rg9Zo!?vI#%F}Cy1w;?arcPQM(iwV#g`t6R~3xCb8;M`M{7X}YI;(&C#Y;%
zwW=A!QjVo6q)04+iR5cOuKxv){l{{}Hj8}iO2s)?w0o@I-gI_uZv|u)PwGsa1J&&+
zT>LNseKa?+Tl3ggQVSGgaxJ#0oe=ig^r3C9w4?Q<GamA4_+!r0q!I$`T9eNpwJs*l
zARZuAW&`S^na1!fF<LX-aGVU%V(qIk?K3YR?0;!J)m5CDlYdHVL{DnYl;&%)YqqbW
zc~67E-1Mp!zRoc4ZGfacxptI8K@|XWU;ai@YA?_a4s<U+wE-N@d=iS{^hS;%;#8yJ
ziXwi#OjRy^x$~>zX?m4>Tv{Mk@;U)e#@+Z1y2hqbEoGTU^I*i%DX=zwwJLcj{3Whl
z4N3jq&EPjoyU7q8Iw$xQ+@es;e^y|bbMPxn1RU0~v|Ue2b+D|jo$#AcPiXd9)s>i9
z1-6BaY)n^lp~WgF{#nBiX<|2fKag`<s}YE&M%Ud;BE1T}M2s|8F>O)p?~;dw?$prw
zqM=AI=Fwd@s<Dr<Fbe@`8W&zCH3RP`Fy^5-*CDIlc=H~!VAR%7`IMo+sWm55%*U;;
z$Ez3Xs<xDd6{it~-q6CUNW*7ppF;)1GP;N637^V#gZgftg93_|Z%e@K=*TAtrU}y(
zOrBMjnXPt}<Xh3@Z-K(E;MfufoUNLt)2&|Lm=!r&2L?%a>(Cl`LP{Fbbdb5+vJv}8
z>N>0XQoK5r9ZKN~6ylSN4f{R3B>}VIdHf4GHpO`M4b|{o{Q2ZD!Gin@K8)uOvCb-M
zfyA~>)v>aUxN&(?S@>b+`sLiOBZt}5>TC8a$tQh+tdgFtVmFWGSICkO^1&W1M8ik0
zp(d6s$kuFlZ?kii<KG}tw%^DuhMSYnRb=jK3_doe^-oHh7fbIr77UziJB*iBhoAs}
zV4{l=+vj`mVf)h=6T)|F`wi^v$K$Fh#7zZ{t$ua(8?rycjO7)dK~Surn^J<Xql6w8
zW}bFvzU(R^d9K1((nLV^k!wB;z_%-|OV{D%ZWN|jcwV#|Ft=SRKJ1alpP$=-^;IrI
z<z;s4K*bzI+RxlKNB|a(&5(Fa#R*NDpD)L;BMN{vbq5A7R%6ll0Hc%2)-y(gWWIS-
zx8e(96#)b>yXM`LYe=UEHb>qx^=#{@$ql}w^;=SI-zOu28P*~7Cl!$TPNXkF;83i0
z{SPst8b0YFrIa+*Hm}<ZpnbpU;g-yrVyf_?rf0#PhxMzDbkSI97Ap(i{?BXgF|nR6
z6K%<_m$J6&dTmSs3%D?+-g%M7r|~l6a>^nvE@u5%Uiu1VHPHL43wVys+t2&ny@YWk
zKATHJQl43@AkmVSZ(lWRVLhD2+)W}`8noH{(>W=H5b)Eb<IVg+kZ{Qzvt<?`VUK$i
z0uIot9zO9UU<M+q+AXyib=8QyPimA23gx_mJDLlJq+?D#k`sj^qVMlw1Avb0RGkbI
ze#MzPIT~hdmC719b|epQ`1%f)*N&<)koAdEGjcZ)aQm`qVSy^rgpZAA^cSbI!yEBE
zUXB0^(W-yHBq*@THLkkpVF$UHK+a6_MD+XoI?iL<Pe@4Vmssb*K>c!#$MpYz1F#9#
z1guRP-^=KI8XSLdz>}#dNWXo6iR(9fy-a0TI&*5aB+&fgI@jV5a32OU&VO97mE(UO
z@FbZd{E`Yut>}av4+`SH_{e4YUj%q**9DvuvUoxkGE{&dv$JW2=%TSjmZNk&h0=0%
zqtwn&l3VnWENIr}B9P+5`He>T%vy1Mk)E6)!U64|YEPPI0+LUNKX>`W*ZD%0zkRU?
z*DXhkWW?lV#J`zm^2~dhd{KJw%-FlOn+3xT-!;LfliFnRXlm2mG)PMsocL<{hlF~9
zI1ASdn(q!;(p}NHv?yO04ihfqn)_qBemQdu7MY{)%$sr9-Xfg{vTR;Pr-9dL_WZKZ
z%Tczyz0k>|#LRl-y&hz){299PT!bJjbwT%m^UH)M0yS<Lt8E|XyNAC?k22emD`;?v
zcRacw=^m(R^Y!Vp(eUwkU&PRU0eOIPg`p%X!S^b2ohw3fJ;n$PTIZp?`(-mP5QFhd
z>88`ZYBD9*F_vEBs!up23=7OZ_>$r!aHoIPxYFop>3|U+eCI-Vm%3k+YM_fG4b~0c
z#EY>k=<$WDhj=rnSDBWXhLE&sQNytN2{-p%5}fHSLK?cV=(ZCt^C2hKslfX$b_|^#
zU-<3#Y%Hw{bSdn32ctTUxwbEK(FrR>5yqj~z-Wqc0a<uj7hT7=7v9~Jqb!W`2uhPX
z4N^&|Uoz+k+<ZWPjO%z>Jx4KEq3HR^`-0uucJ0&ivHzlvegZr|LD70N@~d&JC5=A|
zef_?lce=DBM|WMTzMIoB%=XX3BP5Yihbx+pSr@LDyOajmv3MZ*58?+<jh2$^voBEg
zd#ONznJ?oLv4`A=X1b!xzpLQ6Bz6kehqa_1u_;Cp`~o438fHjwUu^UW2Zd=1Z)Ci&
z+5=!ZUaF?ry}jDW9n-0cn8Tt385Sa#Dz(Ez33tc`Awk%{*Ogj$M~WP9F^nK#@Ov+C
zNW+!JfOEOL`+6X_%j<UCae&MxA_dcv27wth4rx@u8`NW@DDe*Fhe^-!8=-#`$FA#W
z&(87Y1N~O7urKFeG$q$<A4hl7iBLfD9!YY8zSE=2zH{O<(OZV#;CH`5Wq^>+lH;Gl
z8JG0hLcG0fDj%ooLYE^U`{Jq!4v7rsV)x<3SCg3{mXxd{U#BaQ!?S%lOicjq#7{1_
z(d)xoi#2&a-}`KW^YdOS-{{mS4O{4i<+Kc58iNz(*S!!2=Hi**#@g{boTnxXCn_CZ
zjIA$h2+EiDL1NxwYhWjl_4S{&l**NDS_U4pm}}Sk-~F3}N8+2t346t_)yQQds?ns`
z(vlX~Z@W_5V4)p!R3;f@mWIl1LqH6?4|}I-N#Rb@Ym^x_T4_;t6_*|oEi0IVcaVh8
zp5DYlG!8T(?R`tdAyt>IS9P4Yk9Ry9>x^gW5PRvEvlI9Qn<pi!5zT>mv<s_}Mtm-W
zH6WDYOaO0vU!+6SHlo+U3Z_iUYQV`Ub2)n2`87!6OX|r;<Nl_zBk8F|SThX-7QCyv
z-h73muY0W#ZV$D&FE&N)B1_l^RD4=boLi~zDA+k%X?s}8AK52|+CeLI?o<e2K;~w{
zIFUOd1gR0}%->@?%kN;z9ztnnonwV=4>;LK9gStu-5?3K3nXc|d!VGX7&Y>pYYP*^
zo@b9X($Vg62{emGdPtx%6UXv^+=lnPlO9uHS~95Xx6L)6aozVx_+{CNaC(n$2X+%1
zVH}CtGP4qNIlQRPT+m+k1Bf|1Q7#P4<hx@`la17WH3F%VXs45#>ASDGqSlN(?B`Ob
z@*7aUEAmqi!d9X5mYQ4|1h!L?ZjB%f$cTYg=I9Lo4Oi@l0|=WK3os!_@zyZ07S~=_
ze_kPYAUD5iGV(I581DTfIkX_0v_KRv)Y^^mZ?Ycg&J@Jt_bjUy-o#>WPa|}>xi&0B
zeK$$)1bOko^)A4V&v!nxjt&y7oP{PHW2RBQdkf-d?v6Rbkdro->{IYKtVcc8#>Ubj
za4hjJ@h%CU(ISD<FPl;up3Yhq5<9jcn23E<v@q569>B4F`eA$wG-guz6cZ_I=p#=&
zHPL3|AJ)hDZG|X^<IMjY5S&1A-oC3IOy7$@;nqNI4@lzFoJ<b&AnI=c$oT~fC7`I<
zK|XD}Tf4~(Q){(cN%ZL76^yu)emtGev=9SMxigS>Ov)5YMA8jaKR0pl<3HSb3r*7l
z$}6Lh67M3H80-sY#%OInD-Mi$;lgEI1K8*P^mFpOoJmupyVVL7|J$l|i`+&wugj`p
z{a9Vh<6QjVL4oh8{mCmF{EIZH5nX-~usN7MfS?}jH?@@!B>`A=F0vjv;q)6XU{L&{
zcpC$*UlKAqPGA<u#+33NGOh=_00XGK989o*=5A5(y5#TduvkK_eqek!R6?rhj>I2&
z8o;KP@hoo>C6|f6f0xp5j}hlU{0n%_L4)XHj;h_33GmstI#JB6>5{rZ-aifV``tct
z43|e&1U;ic#3ejW78Vwp5mb4ZnBA6D8y%a>*pK<Ug*5iIkB*-`J)aA?ynab}w-w_)
zUk-B?x)Nkp{)QSE7h)v4{Bcx_8yhZie-U+v$lD%Y`81(t+1y;Bux<Sbuf2K;?a&aQ
zsCd^t*)AL6oZ*abjA)Cy&j&-$;OrY+8jj@*O}%drR{j%dpDgexs7PtsGyE#c8LJAz
ztYC~rxw1w!(^{m`wvx9pK>uRFa9Ok+twkOEDCvszZBG{&Ol20qli?QUq@sBgwFrYv
zZ9FWkU2(+!p7oUAyAVQHcS{$0ZzxiVrTqmGHmn(G4<TU}4FU{*4E!l<pcSb_45lkH
zW{5P=lb(}r9K}BRDOU$rT)Jf^l9H>+K1VYQ)3WNLUlXqrDOQTZS@llZ&P?-7i?GLo
z_P###1l#azRB{hE)60Z3)qI+5be8sF(G=G@XWKyDx=KjLhTmQZ>$M2LlH|4mj?UQs
zu|LyC(4pPhPy#wDv13>tindO33xhTXMVp{?hFE;-4G)8NipL9#pIX>ykqVO1UxHcU
zdDNV`^Q0?rpT8i)-I7?s2JvF&dO-)Soou&Q#9cuW)ADz#(|4P?12eoc?VEDgV2KsL
zqH^2CtKw1}vh@Neb*4Rm2X+jtJ#>>Lz5#FhF~4Kj2R5Ggh31T|t~RKLL@{~l{5zrt
zbsF7x3pYEGARC-lGa|!u@mTLqRPZ-F1||=u+<alA;R{*9ex9JnDZut(XPlVP5)t9F
zX3}!3)ALWjol=a*9TP%gIA+0|mSNkX=53`Ezhf>nYmWW5I{|DNzY|jmrX%?!q(9h?
zU75c(s1o?Erm*fpK3!7zL|LE{hJu-AVjQzKRyjI^m*h&aKav6@!?GwGDfX5&o2XsJ
z+Nc{6+Z_>Np(dX6x9!_*%*T3WE!BWckqJ|4b{#Jk5xJ0HG>gCaaRFH-_o!~>6W}qo
zW@7g%j7VvCpYQEV?rmfN!MVHBd1y3fH3jv?$aWt7b-4e*0g}VbFMkHjZh>RGh-Ua{
zzLofNmakETl74=cB2L=g2*ixZ4aUMzr8q^)mx9}(0#zaoYkosj=07a-TuYq`y7GJ8
zrigrE12+>)$K(RH!u#q*!Dru}6bbJx%}>u-&smp*x@pqR>!H{?47q4<qCGDZM})|>
zeWhDhN*(PXCF56hzfZd$F*sQYqm#v&J{f%dW5p?@w~`3-f$vV>(cl3~&`}7P^C-J(
z)ex|-mj)8-l#Q=9v2I;w4lGoKnf;1S3fJDQMBdcS8>c&#{oY<8Ej|H#AmESrQQ=z5
z(*5DSNUNV)Rs;bME7);q2LlMyezoCMA694vHWWu~3UR=dtdszG_D%7Zkd^)w1_fA#
zcFKDAefgD7RJc9p{{c2wZ5b$sCyqMYNeK&shqeiC0Arf5TdKi>kZ0=8Is7irLG=T|
z1JZzzx!=}1gRrY)ZU6zhB!06|VKzTIkfcA-(;zPxERGAN2s~fqK`^KJg1|($hz`cp
z$NIze6BD<aeM6u7XBQ8`ZFw<;83}-m$iEWDysx?22&nN48b{Mcbnm8#LMZ?#S`OBP
zr*=Wcd6ueL*4Ap5$cn#b!HT*I_so-X?BmPN>s4-Z*^vc7f?EswIWE>_i(bK#(fW~-
z&N*{gy44qR{;OBs8Tl(Et*Z>}R%r{exp=5}H>eu%R~#~SJ;n2JkA4q|eF5s^Z_3TA
zPWB~eOO%sg0VFBWOK=Fk#Jy#Oh|)|bW2}R&@S%|ogLiFV7YtvwvKpX&z`~?x+A1m;
zg?9x6<Y8gd7W(ST)M4t^BEeq<BvWreVBI8xVQ4R=a^Y;K8+YZYonw&H+9&CBanT;f
zkv{q$sW@2+*m0y&;yH%tGTmw6=}-O5qHS9ss#PojjXpDy0RTnQj<$10_;wd~d?MRm
zfet{|J+AMac5ZEvUDuS`_tKHg6*Z#=BSZe6ZmZ(<dC4fyUD!c1tm(M&swA2xgNe*-
zal5|3&cq&dO8iJsNG6jg1jrzG<@n+_9*n5l3)-wnxrOQyt8>0y#uD7nDUJ8fbR(^y
z#0U2%aDs^l`)esogdc-}p=FnzG9-~rRKnGHx#E0juj~+auqE#Iod=^xW?#l~Eh-zP
zxP>;Pip?L4;9%B3t6|~-f)aZfNKOg1B7S1#m|`KY!PDHebKow~T^6z`>M6ajA4xvN
z%1AFUew-|cWFQVFfKh(5fg}{=>!@KPNv*B3Aa0(PP<Atyx`4V((jGQY<#fsxI+9-F
z2jZdSXQY9Ifc;CZ;fGiA1qOvWFx!ZbT{pQjmH5tzrFxF}m4r=Nq+CX{7G8{L?UXbL
z9(8WnOWT@s$G*Malb(1d5rqiliCEf*M-jR*jGld)#;?^cb@YPY?TcrAaYzPFbr`)Y
zuM1Z*YHxNiO77;qoZR|6rY2(-cSY+1rVz6;<|cAwE`9w3%sRKpyE)NR3GaSYj{rJA
zO^toCeJeEWkiz%e@iV04^RsCHo7|CPtG+stwS|7uHU64}Xa;qL+{F81TyAYr@S*>q
z7FGyDM!FTTDe+--rd<nzCZfKR{i0DIdW6H&EjnRoAk@RlJIt^#;=37O%<kGMI`kGn
z$9>-xEc~$OI!m$T9<NzX<X7(#|DSd8{<7MSq}MgW6S#^aqYs@m`Iss^Ifn%zJsxvP
z+keO~bBwd9jI(DmG1b|QhGp1{f%SW7)jLb2mq_Hstu;Gs<kEZx3sYwf9jwbL4E9Np
z`!>QT;@)9#_yw%j3s-jl?6snQ!;#Qr{*4?$g>YeLqSSeo3xp1~7Ao`zBtxkLA-k!;
zHv3Xo0Qi!W;QP2|!s{sLWkJ7o&|Wap{LeMe#fT6E2QXx@7+2!DtEL-kN+aBgkg#7u
z2~=_ZzC+M%Jh*EGi$a<ZAqrc!FAsaO++d9=-*}^bcq34Y4UJtCh_k_)-~ZE#wZg<O
zxliHiZC~V+An88wVdyu?^?lECWWkHALav%Uu)|aa7I^W-oUu2oR--NguyD<+_5Aef
zdSPHq5wnAfq3!e2%b9N09DWw-FRiPjCdDx(6T2{6cLTe}I$K-feVz4B=YKGSoHx_y
z2`Hp}v(`5c;~JQI{cWoF?`X(R<<V9sKMzWM#SS?xWke4`o4Tcxj1nBNm6+rHzKEbq
zK{Xl;deoba>1~6iQVest{D{PpA6<NE`F_5<1;f(NlGmh~6^^rT9X&>WU*q(vf$vhX
z{{5ivaI)9_a1U?mcnu@w^R!(8&%=#7DN<@ACXMnUHNJ^|=yta#@xHuWTbXi>3^3&@
z$-Z+~*d^Oog<9;#+d`c=#BU$SdaiRidovoB3SvCV_J~gVGUBW&Gk{hxx+11dPpyO0
zob#YxAc51yb(;G2t_{?nZ&l7<<4G~3n%Bo;0uk)vU?}!SvXjmy-RA6q+))22D^Hm%
zN=8i6Ji%VinrK?sF5t>$3kxbd4e5iE(5|$QiLOyl5S4Hg+e&Ve9acc-2Fq=>=TT`5
ze_sMmh%kW<%M$idblEHOsY<hOP{G8fw{Tz>;g&(rBrCykGN<{`17T2z0JSZ%2m%s%
z*<&~wPEVZRNJt~7y3BKich4Y@?Za8>?&BrNgx@M#PGq;ZLwe)ftiTcZCcjQdSQ0-Q
zi(6|*iAsz$FyDrkY#YKi1S<PCa6Dd|CKa#V2~3g4TQI?Z$~gL+`Cmr$y$Ox6b*T=-
zXXSmGI~*tm^8MsiAQv6OL+K>oPBi*uvI!^DoA24WeUJ6l8G{T3V|QULE?^X!G<!Xo
z3A*nOI4_U-5`;hY`xM||3r;w1?y?hPx_y?0doWfM`N9KN;5`~(A)C|e5yB{9ioFjZ
z=xy$q#onTXDQ{Snd$N=}o*~I+MV60R2cJmeAM;F4?MKb)yUXJM-?b?jiZ7Tma%}~e
z62ha@ad%#at$ple7CeJYJ-<MKQ6ne+PU#@32gg{*V_P(nESvlE>{k-oCUhz*fSmL3
zEXc+9bmUT##lRb<O5Uc&4dDdXwV10N=&<_xB2U~?gPOd76DbO*CLRovMUY7a(_5>S
zOpjQj1k$!o!Vher>K&2t--X^36o#Ef3TUzP@B|&8ZEEDm2ph@Wmzfd=&U%2fW$58B
z5flg~V?1j`5KcTibZ8eNxJ-y(h!B)N8fZvAAZ!`pP1t7Rih2W=+U$$pbj=^R_7&BN
z-S4ir&*d=N(^;#+F_ANuI}Fp4#(g%%w(NsFWQuH4GK77;{W$#0Du=|rEmZGvc5d`&
zc4_;*a=33uA2&KGfT5SF4)J-{xIE}x;mkMwe*GluQ`F5&TavKc#@61`iAxvD!1Br`
zL1EWl97`Aa-tnQE{83`vufy{g1B{#BcF;|iykel&819ual|6`)xwm*~zoJw#(%1%x
z?~E9t4el6|kok2}3S)jk>kjVxy>K%$vi~^vp3P?r*VfLyov$eEA^`D2VGpJs2bte9
zr{#GY!B6y+2?I%wyH<+|<SYo`JMTrSY@#w>{;2ov{rSw)htOTvg9j+P6N@1qe`{X*
z4pRuZ-DMBz)g<~ZQmI<G3d&6n{q-mtd>bILgi`s!hzd<@OibiMEyxIVM6hMBRawiK
zIWHp~-49G;9FfW>)R=255Ue|$<-7dKzf-MGnCRst&a7>Au}`k)nmg1-eBDvb4407<
zX&Rz6y3%B*UO(WGX1*X7*-rOjaw+vJo{Qfl+^sc^_$vcyAb}yRdH&#>X03CEYyh2I
zxiLo7^~~-RF90GqDHn#nI`?~f3i-o!>Ld*BT;N|AuiUjlzfuQ!DX(YHSy(pueb7#Z
zA@laQaF|s)ZpUZ!x{|a`p{Eq~q~WcycmN@r!q%`UO%z=tq2ixxK&S@*)-}y?xUjnA
zsfFT>>f_2*{KM3@zSda%uPF;6AeWSFjhFG@`-dw7jYT_~$UB<4Uk{;hutnK->5pC%
z+$#JJzM%UMpFPgR5~JAl8noExB!Ze}?gf3^)(G0WkP)kyue`r=-=6nxVpWD`*aogg
zuFZ&*p4RAB7sp%6fQER>m$Zjx5SHSG2zPNou1yXT<GLu#DI?bAB4Nx>kYw)x^Y&4N
z2|y9p|85i<|2_xnA*_!f4e`l_-S1y$xz1TSw$E#Zm<-Tcvm#N6&QV>W288_zlV!iz
znsm80wDB5dY~v?H&5i&R25@_@<<STuKz4FKB}oy%uCX5o$)c@;pdHP7@4HyHyOm>w
zY)N`o5Fs1=z8-gHcBrvGnJT*eedHDOQOrSkdcZQ4h19cPtTr7PT*O07gb%Bi^2Tfi
z6gb9$u1J|#_=~PfOh!{aPuqSQcg==IY)A50m4~cNzg<;d$IBny>F3%g`SMXi+}HWy
zFF7@Pqc_P*i?6VNc|kg1UEI7BxTvwh%uq`gj9v1W%Zm!<Gmf8~u05i1<?~iKjy`e9
zezp=wMj0%a3nqkt9??OZ*u|<|^SKrRm6l7gA9qjDEZv4{I&MRt<$@T)NCyQF_=%Vc
zZH+DvVs&1Mux~1LdCHvq_LT}b<Dl4k`AK65zaF{z<lC^yum(Kr9WQhHTn_b9ml7Cy
zb3&3LHEv9%+BspY^p$>=CZqNHKq*Fw=ZTR?S#8oS?#eM~N4ZcRcBq^ZlC>Cwh>1=f
zTW%kW%GKX_)v6EFRnk5~i-z@I9f)Janm2wk>KE8HPqJao7>Y#kBpu?GTG!rn9Mn#)
z-3|mi>8$~Z6?ftn>{lZW@veT?ej*xy>2+IvbXo#u9@aH3+qG^1X*Oi^abR%aj(~qo
zX9cu(xId>L!Ti;8ZMBbr#T*8?Ln*NVsifARpn7MPsCUvm_2gmp9T09GQ`=jTF}nE6
zIL&s=DWpa}&f6?3iL_(lc_zZ{YFFMjvg|Y-DeZPMr?uc7Pci>##gn=|8LO}+dOr}N
zt_Ye7>GvUv4M#e-!lVU@-z~4dHW-7vWq^q0%ecyd@#jZF{C7VNI@oq!AOe(Sb>R_~
zMtvbtia%~v)gvN6k}&QE)ip+F6Tb;<r0auFN9CajOwj#+^YtH#M%Je2$E%f8k&bwC
z@4D}7PW##JF?oHzXFSgvmhHk_usfXW^*wfzBRc{y_<!D~#aNbMe@S`D@Ihh6^Fu4T
z>^^~H;!JCE4)!KXW@uoleO`kR?CyTfTlL<rn*T;wg@zLlfBEY9Eo!>m2P;<Ow#nsE
zj;_&1c7QkSbK@x-BD)Cyp}s$gNKJ85_ceoTQ|V0VSJ~1FdWcr=`5cddO~?(eEQ#6{
z7mkV)ade8J2w{FnS_qM&=uR%C6_-3sH_y`f?GK5Kc}R)-+0{xpHaCgYBdKG2=BSPt
z?IRl=4lJs19n&*ATel(24}+ldx!-fQEFCHN&l+Zt$L$>rKNt=CmOaPff3HE*DSaCx
zIh|NRGCtUBGp}rH14%zl8!TStsz{#lL518nM>FUjil@k-i`CY?6}Su1(Xe@+*1Ipw
zMDyk_K?tpp`hZd1V<P67UPV_h6$yn`#ktGIjX%xTqPbh=>hiWZO+DJj+~%oI7oq;u
z%sV4J^{wqoR^@oz{({1Hph4UpMr(FbA0JyzwhhFemSr~<W#Mv5{`_qFVEei#qOvY9
zJU4^`jjYB(4P)jxp2cf|3WsH5(dpHct(Wa!`HnygYD*%<FAQ_@yOxPy2Gz$+So)Y7
zh{lGlR+@5^HJ}lh^r76aX#I7M*Y*l{Q?IogF>+mHEQsma^Jq=;gqt1j?&nBy$|O?4
z?Mcy7i<1BFTu`tQY0o-O64rylRH1^Iz*%8`a)}~7bkP}lU!wy}Jt1Qp4U!&sHBYHK
zd=LU*Tj$JRUDtFBA3Je+Y?3)ZSVRW6P<Hey2py&o`v@V*^V`>shJS>TXZ+Q0dDcM~
zcy5SbQm4;e@_H9jng17WxA-H0z)7`)DxI(cQVd97*)&!N1)FT<lQO!Pb=wxYW{A88
z_;dI@Ru>!R(#C0=FG4^6)5Uyr>KDl{2;coRkhodrU#lI^$Y??^67v3GY?aJ0nZ$#G
zoFHXze&bZ0vEq-JPw87y`n8S>xMo!34|{;5Or<~vV1YQOo07(oeK4#s@tKw{$IK3*
zA}dbZ4Ymdzb?GS<5Y$D3F!zYKw{Q%t_KkI7P5b!s$q*8~jDhxFH`1YH+f^)vThhiu
z#J-!iOMcKVR3#T398n~1mStYwZ-HB)?MzB^G;oaOz)EhkJwe4JJKa-_No_<&b8wmF
z*|FTVWfb&vWNCQ9Y46|>Bq-d;k1OqpZ}`qH)%Hyb%!(wjB-_h~rm|saVWrEe&aj_}
z>M*><8fxV;?0RuGNm;#<z*$n|ZT17AIjt(WYl}TZSjSeP;X#AYv+2`0UgL(D-yPb;
zzuw<(<66ID5?QUSn8#2amX@sjR00UJzqZccRkkr6pD+DHSs&#=AV1`t;-UHQZPs^h
z!61kACBb}4Mo(U(dV$>X;)B4REtu-zi#NDWN<f+fyWuZWk^{Bv&YNOgQ6nvsPGZ;e
z<3c6Li>p^+0wP?{!o+1liy3&AQXmt{dX`xONFmKF+g8qQa(4h2d(5iJNF|9Ge$HX4
zY|6hcm>A0AA+N~?#NKDG18*`@qW6npy?1D&*54p#IoqUc7b0TV%CqnEK&X9Ax6<9S
zSfy2wg0i=1mT4$sYg-K2uRr&_Yn7S?vhMnFO?nka^DO-o7GfpG^@#oM-dL@lMX+oV
z?!XuIgaHY^vIV5MmKoR{+}2^^?QbvV1QXbGTGwQkUat`Kq%Kmw?0H#vB_n9I>)T;b
zYNbU0VuQgl#p^|AONk8Jnwh|cKWxMk?lSg_q0<m8vV8!!GOQgZXRAEwQQboY!+yYn
zbd3Q!1ye<*vTj=b;jFTf!m$_I^%gQYApE!5PQbwxL`8I{>&v?aGzFhwny<Y1-PY#f
z<#!I|kw92e$=K&9nJx0>yEQL@yP1QT*A|}S#}qv~qCfMg(K%ya$rYyKLeMHbt`93*
z$hpUaSA_2#gkD?UPji0$6LKH7|8^0yIEpyAN}p@_uR9MQ+i5-_gE)tmE#-SY`U(${
z1Ul{>T_n^_iE;sI*bJ&Qh+q<=pUS#xSqNOXJfQ~^B-=Umb~S*<BQvI=QI@tq4{{jk
zqYFqO1b{hz$!{5=(bgI5qXAoYGJ+UD^z+wmX-8*P4cAKf@>N?f9><p0D;As)2sD8>
z@uVQq<orw$jzyB~{8Dr*jEp8p3D=ob4h$LW3+=U?twc+*^Lv6|dqOO$z6>SzJTA*O
zlg=_y9!Wl%3B&`0K$=t10cL`b#^DP64mV$3t57*60x=Erv)u>u<i{N|C!Yf>ZQv%+
z40YtF_EjE-7X^6Jd7@2+Bro#>J!l$2x$U^Y0>TSqCX(j$oo|;qS4Qh!=XP2)Siqqo
z-ubZuy>3?NsI-@d_m_2qf+r0S9FNpn7Ue5jz{8w7%nL$Jp2=G$TyR|*PwsI&c4wW>
zQ+k4E?D?eL7=+IbG;`P@Uh!QefvI-_L!rLT$wJqY5;tQc_8>=E>tas3Yp^0v!bG%f
zic>-;P)v8ThcE_KJm7C>$sj^n@d#S_9%bJcD7>R<!v!ISp?dipBxh?On#zXfDBf;W
zT_I#NWSF`)N5kFr@Qo6Y?RM~p;p^|T->;DRv&(8L83nC$N8VIhvJ3bE-woom_~l7d
zYw*_u1YMfR*dmv9eUVg_s%K3ls&Bt7!~~msH()8~K?^<)BZi+yY^ue?>xk|qo_l_l
z{dTop_SnzXy5osbc{lad&f6g(ROl6}#<8l~)Lz?{!c^~dbnz#kz86P9@>+Q0;(qYy
z*Ty8BXsWLRML1|4B8U_}Av{n2Bna+h-M#$8VfZ+mdgKF$aenZnFguiP^LUf(h&&8(
z7PCAHzJ@UVWdt#?LS+@HFq48E=EIqx=PucpXxR8pXd7$aBFuytO(=|!6iBzM{teiW
zHTsAJ^jdWL_Rcl7?N)Iho2~M&BiY*U(yhk{3^!w?;S;```wh@uY$5tvem3wfRXQ*^
zdYB?G?ZohFyi`Qh?TE2Qd}s;&Wd)-%Yl3MtyPyl@SFxtWN-(w1v~<vC4U6`9v%J<}
zr!I@+usC2dA-yt<Un$x`SpYBy8tArNl}O;q{!Q!^2peXaW*_@o6?0e(U;Xk@1noT0
zY`clu6WIXc*dDn~A&=RAkM~r*k;R^bu=m?6PaWf^s2~x9+{!C+3v`RNEN(ix5{q#n
zBl!}Fgxr1U_MxHXghvJ;lb+MBF5PUzLpqbh_#2(2fG1VZ@D)Ag=bG53PiRSw`r<1y
zaz50`sWarz<F>tlizN1nWylC0icwjCRFJAq4>!R7T(QIZ>9nfoYTT=RkL9bl&l6J>
zNP{FRQ-vhWixr~N6Vb15m&cm0FxK#)J-gCau<nKM4G_{~zJTMK-fL%|Fw)F#?%#x>
z=5I^ZRjV@ZNgc5!qy+HEwM-2GDO2{;r)9p3KF3ZSr87=D9-6DxO#mvVpT8jla24yV
zsP}*5eEEoHe2R&K{+`08rhL%{6u0gb7f{!I0N<MX@)nttnNdGyVY{Zy5cH=(5AAvE
zSs#dW2k=^ka76(T=y@hx%Ankk&2*w{NeEInwL738X6O<bcS1<2FF@mczCcTf?UoD#
z2OTNoI!U8-fDiji&0ciXpAO8*23>{2JA#h{wVTj(Z!dRMXrFQ)|0+Nu$03?Lzw7i<
z%Cm`U=knr#zQ7X*8rCaR%7x6g%F=z@Q)Wj$jm(%9o7~6Qk_etckdW{816hy6aTg*5
zY38xQna0ilVhONy<P=i&sdy_CiQR8wTVf9iH69@MvdN8A@A3M2az2-^AEr;*0+FB>
zLsrU)oYlXYs1{(top6}IwggJh1|pe@iV!msL}y|4a`#s$WEhJF2aFc>-e@vi>G`|O
zA#B>h1F}bepki}1_h+4QVFU%Fj?UEJWYFs&@8d}&y7P>#%IqrfEmN=cW)IW>c~wM*
zQ%0e(AAb(^m9X@gEg!*|bozm_&lYZOSS}08c8|k&@+H`^5yXO*m)i;Q5|jN{d^;Xz
z$}u@Rd_99Kp}mFGNN{fd$nd-M-$=6KAVsJ$JQG{mIgj@Sc@0~;mXC+61-X(~p(<#~
zTA(Dax2JVOkV`)-IgEh8{p}qdmtje$QB0SZ0g%ebxH>st_>$6zvk)tXQvCgw;a*A>
zLxq8NUTC`gBU%P^=v;B5sACY)zXWS9jvNMOSjqEraXVJTzz<qF8yh|z-<9rkML?6!
z$6!>A+~5|MTnr09{|A9dGB2rS7|Ux*DbfM$9S5aido`7i0e$EI^`&K_@6H(NOxh;^
zD6fmyu30tZzB{Ld^AyL!bT-mdN{26$5Nfa7e!BCDYLjG+d!ok`8B%EHiFQuBinNZh
zPPvLX4oqFp2eegxS_*j`?tvoD$3E)uhdJe35L$SD`d%E=l+x{Gso_~SGG*5pc%0Y~
zHqwBVjN6e)DwpYv%^F0fUaYm1BbnJ_WSmsa9I=yw^_@J0T~tS7|5HO(h#T>IU3i_2
zV+YMD)=Kr7oKIMlQYKtw+ii01dK70&*_Vk#E0b+23{0VGPsm=TY|BF=5y!0^FI(5B
z+Xkn%V$6P5DUrx75rjHRf{WSjDy0M_G?lc)P{r%Ak7(UjU?d-2xam5*DT2~6q6PZ3
z7<w8o5is_?F1C*7+Je1u7qTO&N@K{ybr}*X48k^KliI0g$k!pjO-ks%`i>6YzLBzS
z6U}92f9oEyy+JdWK5$#+f3WwKVO54%-?u2jrUV3$P6d(f?rsrDX{4kigiV9Av~;5&
z-Q6A1-QC^Y&$;KG`<}UH=9qcj_w#f3fql5y!F8Rn&b9vk-_k(~cS>9F!&r_~lBf3e
zo26I^_Gd`Zh&b_LugOUXe1q1{+cT)LU(!S0-o)GKV;@27Y^ua`9Ya`Zgx2gRt0PGa
zk@{6Q^(NT;Zb!$*<Huc*#HNRu$MK0Cns882EHkT{f{YA&`{~G5BPo9nI`OrEpic6N
zoHND%@!c8UwM>uebKEX?qh!-{)*bUcXZ{V1-Ds^Z%}=*L;P#gHE_@widp>HG!c??O
zbaVq)P!eFt;oBh@$0(rvEK=o<D724~VAbGg&0zT5AX&~N<|^?1x+=biR`gwZJ9Z09
zY*_3LtK#x`nEIJAV31grbWy^anS^s(<O9b`J`~{>t;4*d@leCc96f*Ua&iJe@+N(*
z99jK-%??fi%+=&=tiK%!2|5pHkWe4>CPf?Y4i0jj<pAn*@!G(>FO7#SC^u+WJebmM
z#}O%c0w`q1=?CqRJy5|_H^hsQyUR|2<Yg`NGc=K+2OuFY8h0R6Jw>Vj-j`oiFK&8z
zQtnSPeZnGd*zT}Ioe6pBXl+s!S3EJwk2HND#acX9s}X@GLAIZPdx8Fkr?cCBS%STC
zU7^bwjhK%AiU0jelAJGYx_jdU%`~ot$yk`dHfW@SpMb_Ec0bN_vi+rwChe63(TXdv
z>n|Yg<GEWz6nJwjDl68<wXpAuoSY`2`#m-ydvwb|+x_lLtQx3l>KBO$7S$6P2nTi(
z7y4wgWpP```CrkS5<1LU6GgXe{;QokwG!SbP0+Now^88kVygw^e$;N)NPC(!0hhu0
zia9w(tM1aMi2Z`Los{HBg|e_{n|s}6OCSovJVw{*yt03fu1YS$=usOuwmnI$qy4nV
zi4dBmoqh*a<F)~}7}W0LUxc0{>>1~;>Ar<)nvYmLo{}HdBV~b?_cs<6#A+6<d)avM
z+N*d;$ltDe1i5|DnwV-lt^??2p{hi=kj@^y5Ou1K;x$7Zwf#8e3ZKRB1w!}k7qX7c
z-PP@Z+UG~ZESC~4Ek%Vx9#C&vYEKmiW2(0xdB0Q}N%fh7>-v(0mQ{v@;BC{_h3{m&
zOV>a1f6Jq)d52Lb_`&^j`JCxO@|6;;VCeX(B<D2Bbj++%SNM5?Q+tz+GLN)6hH)!f
z<*oLI*E+3IO#jUS@a}4@s3q<UuupC*X~u6BSED)$VAYhbh1Yn2Re|5|q6B6_P(}5{
zLPR%SntC(rZ${zfVAl1BLKuQ@QQff>bNo_V=SPF4KbpQXZ5%)568Umv&ZRd6S_VUq
zDG`MwL-eW;0i4LR1;Ug;D&O(WQyFh`|GOfl@&<bM>LL3z*Gd<XHK8valRs%M)2%K*
z*jtU^`k}nGY|J0|F!9d`JUK!e-P#r#7Xsv+M)4*Kmft=3MW82q(5#NlJtGpm<GgoZ
zHuuTiNH@1IVO#d>0~dQA{s6=ugRAld3A;?+ml1qVEVGgN6fLYBHZ#Y@k}1wRACXl*
z-B4p|R7@ud23ualzX-%ios%hB_JD(}9;3v%e&sB(v4pIIdo@ht+FbmDFGusCw%Usr
zc7JN$T-cs21LV^V-0QIh-zyN%yRJqnF#XQ`zZkB#iMmoeyZAASrO(BC!BqG9!q~q%
z=eT?2@IDQsI`-(lLH7%f5>>w*^o}&H{*W0~lpu<-dON;FF%+YZZxK`zxzlQ^f0cx<
zSKUc*C>+~)LQe9{6|86s_md<YjwQg4)j3cRUH7mw`)44HB9ylzzbrnWjfeJ{y?Gf(
z{-s(dNXISfv!9IUQ|z{5OdhMUA5%8YVifsKh-N$nPT7%@xifT|YjgAEPS~;5Zc@+h
z1({>Rdd&*-Xh@7|&4PRf&dd8t*hyWKeMk`@N4wt>a`u1a1{d)bbkKy@XEQ5IXd{qk
zn4K3Ucx6JU4zaOXitD87{KZiHB@*9K&@*IEqwiGvr2ZcAP$A~m31x*k_6V9fk~C7I
z>(s=ES+5m^<H%_1wnvWC2{NEO92Y&wXL%=~v38q9qaP<uPC9Iu8qzEe65rw)yFKmf
zYo|!)Rt<>-(}*v-I|46fkBhFHh%@Ts@g3FLBn`bx33d8CkGa~c`bqlJN-&d8=m#j!
zM@*cFJI=yoNCob%oU~VfBDen$>Yl`yV`q7*<ICvIo(ThY$2h;P2@1`$3eTOS^CWh<
zytn)}ITa&Dq`aX!bi=w*)1kb_l8y6kFxVGBGR(&zkC%Q&GgEm&pMmQKg9Q<Be@+P2
znfF*9#{#cdoCx%BrcG^RY0pHL6=_fF2#$bS!g+RY0%K%u_lZR98D5s=lRXJpZ1Ovm
znBX?eCu>{x;W8fVr~@2Vk=CQpwkfXuAuY#dlm{cLGZeHv_bo-}*1A!#0rm-|$cWoF
z%$L$1)uRMVNnHZZDZ0mW;>ddid;Ty)V<t1V=FNsQ;aCgbGbs{t=rD8!m!0fgad#qO
znpSJQMoo4EF~GE>{&$<=Cql&fq1J4LQmEJzZ@GR_{?bcLVlNgL;Dz9F`K~o^ZM~=B
zHHfgR4kbJbe!XNXlG?)Z6eqdy<Sux82|bh<r6q#+=8Y9c@CHhqdHGF@^VFVEHU97R
zD+PCI0Y7{nI;#yXG6BDyn>#vB)1*fekb&mD`y=a59KjXn2TsrtGrNb?>5Z#Lp7s<6
zP0(=>6J@sA#}?EikAUckI7&<c>b=P@eFzb4@PBfY_flm{MaOPPtlh3l+4ae=Xq}Hl
z?J*Bz_*E#-s{F(dQfUu$G3e?{a@kZj4Bl5z*86CouoXkvkw(APpsIZBZNX~WJ<)Jp
zE^MbEkEkN+5Tx2J-f>5w5Dq-U57<Ik0(XeK$QuJg@aE+WZCy|O5-*m*!(8*#=KXpm
zdQ4qzW)=!kydZqGg+IXV#t;deE!aM3N@&3SwNSG73_Ssg|9c>kAZSXWMlX2#LwOQE
zBQYyMy_rd6ono|nOxe@5jdP>nSMm_t1SBimf2#h#T;H+q;$zy3=gPfkMy9@!^Qg4G
z6Ij|GI(zinoR*Hf8KMdBtfeSIXWp2X&fxW~yr$7HSZUAQerj84`jv+;SuJ)wq;QG)
z<yvd3I3uqRGn!^v%zWLZFHNG}cz2IQRTxLIoBu%1jLI^4+c)l|d_NZqc4i+Lij`PZ
zH2l@2)*F1oRUfmuJngSz$|zPLqj1GTW#%iL3OLvOfSoeJ>{~FNWQHB;mFS>JVLktq
zE#iCIafPQ@ZMc6e`L;*Gq5hvUZ)-YbG~v@2$@%`)PpM`xWgr!9?|Xx2q0eGSPS|Pp
znNUG(WL%tQPBuAzJhO2{xjb~m(^w(IkR!<Uk*7J!*Bx;;5$a$Q2P)ZEmj_~LLxSCs
zFZ(P{nJsXIzh{4S8|)YgUB;JK#CFX!a{S`Dh=h6YyR05EuOXK<RTq!uH=)ti0^wXX
zh&5WNAPBKXK@Xax>L!Vb9Pz%2t*n3jzT@prBy0YMtAUqy^4E3#&k680o_#YJHvE$8
z#@JbkwW6MSi~2|v{t@ms`wSvb@0I3#tcZY6`mx?h<#(Lb$|QO3;`}I@NS-4wB-l}8
z>&0~RvJ5cqcAI<pJ@Xt&qjEmT<Qu$xt~+f9Zx0ogz;5qEfP{Ty+RumNIX(zBhF=i&
zouXASu#_Kc4y6T#W=v!9QxJk{?N8a$QsB8Qq&d&yt*X^cqV0v5r8moPB&~{bh!$yI
zdESbI?qBD;!a3x(q$z%T0aFL<vxQw)L#uWN{1uWgu~l3-$8<F36)<C*2|BB$R%UhL
zulVcUFrP7YM9#yU9}Uif<1_gj7jE+j&4IQ#(vfP))W;&XfshxWDSf;Vs=t-y#TWeD
zaPQ=jb9=@u9ecJ=Hx|y>d{2f-cmFZKdgNJbz(F^U&UV93))Da$$sPFoGeIyXu}Fsj
zC@YWijGp?_z2f@i#ZDtg*o|>)&>y%{GLdQ-r3JUl^GXDg_UMR+vH-{{#^5oy$Z_>C
zs;~^g&cM-kSB-E~3J-zBvaA*v1M%cd?1e6tU{)w1&GZXVC#od7VeGpGIrgdaeLg~_
zR-juKm~58^MPExYoS&o+W|-t%hz3je8_arRpvSp)1Re;OoZ;>Uy?Baxj)^;e1-{RG
zr&W=3C?v$;Ic_p(T!Uj4-Zy4mJln>OXPk>3)ENgvpA8G%qLa(C*&lh5YCm>9OU{1l
zUMcnH@i`kW`ad37bzfl!dUM+EP9}fw!7ITgsR*gyvGmdyn81CGTLOP5*zs~iwkKc$
zAGJ`Y0h_qQulF1Ht4H3zi3&rlhG1`IC;g~U0UFUFLrUI8<S<)&=pywH%CK^1<Zo;q
zRAF57)CMH*T$uJKwTW91YWZA1;_Wl~s<DK%=3l&ZO^jqkdlfS{7hK;1CpLbXKt*l`
z{rEpX9Wq?5KGcd7*R3(bPF6?^iLe};mS`7idxP=Yh~vtCA;o%b64G?Fq4UlbTal0E
zgDo{~&J5t**e7Idp*cTBWjuM=LCON|`QKJ9&v2PVaQKk}BDk;m@jbEP$>>TpD`}Ac
zaFG^^&$GZ^J`vZ!@{)ufa3KN&{;C@td<&P6Z2DDtL*-;s911jZ@$V}MOfR_6GSoY4
zohQL4N&riAVY@=iKaRS;0+Mjg!MCdT0?`3BV|~VBVDR}&HeLn*Ypu|TW>6a{*L(7f
zVaE|}z?xXV&4r1MYR1XbrG6k%SY&KQkYUGi`hVV6_YELIICWEJzN$l^uiY*A3seHw
z*v;m!*dI3n&dKjhl4tggDQ?$Wz{TXc2hK1ob8a_#URtkC{u^JE3g-zN@I{-dq`Y;&
zggJ75bC3c%xFGzTqy5(q8_y*P-BIBG;WWK`G4mWapDCgMp(>(18Q5P>B=dir!Js>g
z=@8Lc9=(=JGG%%c3h+j{8m|~ndP`*k$13`@$QhkZpNmPuxDhe$S@HgIM{rHycg=#z
zC_cOX;}``DEUzXzku=<B;eS=k`d113zx(E%OQHad^MzX@TKWI`s~JThfM7(9*rNX*
zKIQK|@P8iqVgaI0>z0YS%HM|E|2+B6f8_t%Ru~PX34;uvg!~C1fn@);FZo+=iz^RC
z*t5(uL-l_pllt55{T)i+Zx2Ph0sn~1hV(z7ZvNNT{p)+`a$*ATQesH7Vbp*4lz;JR
zR7^m}^84dig!?a^{12D^|J~&OgwXll7x4ex<bSn){B08a!wB@n^2E~y%k|O+?H+*D
zkfng9l*JVY9v%Js_XcrYX1JTCWTgLo?dcB>*I?~oHj96n{Y_;ug6RGu`^A;(|NYDV
z`}X|1|Mjc@P&IRcB+UOGb9;mytVsXwbN{c_CUBj52km7k{{9aC*Cfke_8g18hEBVb
z&y4_;Uxc>vU6fsOFjYqGegmmoJge#3n6};ju)cf1i_;aiJr5a%6940^ZwjL<`ok-e
zVIgpPRd(7!gR|zczeY8}YfGz^CvbdPzjbQn7EbK6y-%ivh(hJ5{ag(Yi@vWO0Ogam
zk-^`hgMYCic=E$%qyUK3v#rv0l7AXxo@Bzh<8ej`9}5~Ju6H{deylrBv}{$YCQCQg
z9vg3s=DH;lyYK%jTm9CP>9elQ>k6F;9+@reOCg3Hr<g7$VEIaJ(fPt>5CaigLgAlX
zP{NOMii?l<H&ada1ngAuCz&3P{^5E7g-Y6RR#}I$K=}FeA&+UCL*b8kmz`j{E{jHm
zP8}x`r`@TWz{dhdx2^4`J!zjCJ7|kE@#~vPwkUcm-zUUht(|U`UVN>84+vLQphU$V
zwGQw~r-!ZR4t%ayk%CmP$WVBo>Ypyc-*($Ude0De{}BZN*J&Vk8HNRR+5qEa-=kY6
zL|z24&94y#VVowRx6Olp>;Y{{p$H19J1HQ|UBGJk-of~_4*2yEP!vqsZ>X&uX+Eo&
zy(5ANe5mq^JMc}z#c-qmN67Io<}gtq!J<OF`G@@yK!)uz#8sTj1@q#+Fb7syIi9^T
zr5rh}lzrfWb1IVWDFX@g-++=+wRjF=s3BqbCU+7KtXwbccS~n($Wr+n^6tAi&vqT*
z?pA@szQZ&yvW@^xXaYdL1vk@&Tyc;V0awUxn2Qt^Fe)C7dJL6SIC?(Ckpuyv?R66(
ze;6=zHDr%FY%05_ZeP-|FAST8o}o+c)LEUdo}iYdyYpX%+MT{e{GC923&gFLMk#M@
z8#ay-MuO2bqt{bx!^<}74y0&ki;bKXmUA;DQm#~;md5rSy*_@<{{4L7)x~jcVMC1q
zm+wp{o>A;i45eejHa@{Z$9kS`O1TG_kBS{S2P6N@`j*P%iHCoH4@H0c20<hS1iE&o
zLlO!n!WEtYXh|65*_9|mbFwUbA0Yddbw?dPm8!Bee}Hl*Uw+l{cd-J%cyMz9O2b-}
zZ;EN+zl#kzGXM~XRgPoMZY!^}e>=XZIA)C)^5}7!L;a3cyY2-n=a1fSxg1E<?Q;hb
zyIWETjBLkQs##?vu+k+M=hYb6{6NgG1#UeJ$j(qs4=>t-Lu=+sZRpR)lg0Z}-u(v2
z+7a7~2$q(Us+&D)s!oHV74k400L*zV+_rGL&S468AzoVPa3>&KSKP|4q#WDNe1bs4
z1ji|VI+g5xe`N;>79p`t>fz@|=8bpf0nSJjKtlH$OP=%RU0Zz6RL{Mjw)d2gn=1ZI
zv(~Ug%p7a@1`7jU_&s#4aKr*#Cjv27(|x<$JyS==PFKS^06o)Ue3B|S*?p?)!AK%K
z_uyWM`@(l+Bo~YO!6d|u&v(!a2GJ|5Ki4o+_igRqT8~YeM_gNJv2<q~LqTvUYb~7t
zC#NV&z#@zk2t<t}IiULs*rj?Gs1~F_8J6IU^u#&3(L$kF6eHO`?Sg-|3JX4YOoW7i
z*$t*BmnooqNd6@$y`7bYJf!GVH_Ph{A^pM)4q+o;Txvs$KRw!5Pp~2ueocrc)|^0|
zcrj(1atg>zRTw1X!lS+do|ewtgx#XNp?=3hTY2WmofVysgR3`in9Ib@yWwsi5BBUk
z#JYUUNP%aU(aKs_A(oLE<fcQ<xvFE-^fTgP3LJ->7kF&r-S6>6+5)V81A15ex{re}
zARwv&d87ToiYGtbjmTq>$R^#g1*Kepq6>rtsRQ-RJFpBEW(HdE@oCxY90Z=JJbS9&
zUQ1j{W>GYpIpRxW5i_n~IZ`%xE0dX$c=5Y}A3?vy@cQIrK){{sdpa%TyaCW4G62Sq
zZzx*Zwy)`Nm&!I{V(YQn;@p9o0}T5y0?T$6s61szM4_+J4X5l(djUtDJWWC0;`}d+
zjelFsNImy4Vhct-9k$rOk{#fR)#FA6yu41zFuR?{f-ZU@B3ntI#xIE(f?>ArnlYmL
zOjZF#^Qytva07@nDKN{{SS9s7eYgS&0cqg-SG&Ghc+kEL4$@##MHyIG=S1^+2fNf)
zj@^im%tRaMBg__9mIxi|@RYmU0$}WN9c>e`FF)E1;oW>{Y(}un0K%N3vT+UDQEv*C
zabDHm@f_1zpNXrCrBZHJHOseljQ6nSNuI~zKoWt8W=rScS`|#NS{Px9Yb<AW=l)SL
z3MPsE%XvGS>l3-mGFpCATnKJ}0ypkFhCp3!M{(`e>u;40S1Autvd+O09VJUic02i%
z^vRjsHyL9Kxp^hh`Z=H5_Uc(P!qzDYjZmBQ?hEu8MeF(^M;QOj&Oqw9B$;XeM;_I%
zos;|BlR?bC^#EHJUp+%p)cbO3z^!7#OSCogor83*E*-Hj3D_gzJ@oTopg{*JJ*BuD
z_}J)uu#7lzuLQAVd~OhV%`&j^)8-X7jo(J`p7j-~u(y9KtXwM%Xq$MfnEKV4x8jji
z8_7_@ggS@iHmR);9&MQk09pg!PbwS&s|NK0zlg0%cMbBx(-DQ2Bvp&12{$LBW!mS6
zII*_jPRi^$7L})Cea{qR=*om$Khn^&QSfhh)3Hvhn&z%Ju=IfRGZ~p(>t>G*NI$f5
z6Vf-{9@j{;!vv{hbt4({o}g4vnT;Cfq#p5iv-Y1KrgFg7kPD`p$a48y1jE*g*bqE)
z%sKWtg*>qGp24MBW-2(r$W|6kjTaSB5<J$J7W4qmV+z|nW%tH%z<PV|miHxdyK?P0
z*sC)Ejf+w)mXYjk!u?LQxoWP=i3nYrkfh&BTw4<1ZR;p!XioQGH%(!BS}1=FW$dNH
z^<*c1bVmr$#}|1k7Jy;&h3r)ypNn1MCZnVWwI~+@j*iQbzI5GBwND6zV6F%JN{p;j
zPAFJEH-pg@3$EI6KIY{+**o1k6IVKoYM>lA&Jq^>bR)KP|HZeQJeD)$yAocdn4$|d
z&TPk9XZNA#vUq#<B@u5Z;0a>8{sa|px}`C*A`2Ml@T`k67aj0f-%ndLN(>7j-tmA7
zjb*yvN<x3XUt@Nw`?8eTeZQ43SEc{S^rPj$%=A91v6>+T@&oZJmbG1gRZRZHFfM(i
zJG9RR=VgCAc^ckTI(CoIxd<?yI*JP0GdZA6<097ZCEhSvT_ZRd;qwy>xv&Pr0emQD
z{_*_8XD7^ti964m2U`gz$6FNB)5kp-ckFjk)3#nB!{2P_aHcM5ML$VGmoZc9Bnyes
z=t9hJ872XPPytKW4OUE~$<SUmC}8Ag-7dEdZ7wApaL*?k@xjr^^6xAm+BxOkXHdYc
zypiQSs5{B<+=i!`_EItLz%!QZp|3S3>$UQ+T^-spi?gdeqQzLVrT)9s=${^LQhH9u
zj-qaX$YxVI9_pq0=te2!`U4XY3-Q8X|4<H0pCbw6vwE1p*=8`jAI`5|&?EOYOo?;}
zV#immU{RMxea?JoJ1B&xYy>P`q<F7*K+$ts?;Mmu^$(MeiCqqx%i(riGcn5e0LsY6
zp~;4bJAmM+?xRltD)_b=XGZOPKggcZ%mL~9)w=%Opa?o$+am?Ovkx_3?;l~GF;@ag
z;bYbSn6w&jI^9^s5{)>TurQZlif(_5xL+qBJQ@U922Cz7t#`?7<HJoOj4@oTa4s9#
ze)<V_qZ?2ZJNa)^)%1MIKxF!ICTju4B3u|CB~W^4OKa<V(#L@kDhFf#HdL!wo%6<%
z>sNT%?gJ&G4O3I65wAE9NHz8fmsQ|<mBThk4L|@y4yAsn`9;Vq;DdKYVj?<BX`JFI
zSzw_C)GO{u<m2e>m#yTxAO!qKctibol)a6s{nQOQxi!k^%fuMC7-be}Fd2{!qg%$Z
z6g(Z)muBl<08xeB_jDdp4o*u*isXaG6VO*+Pn>|0AK*vLn2PZCaP{<>u+N|1?VSQy
z7OR*`xAlVS#cvP}S$?;#BiL|HvvDML2LBWszxD!6Z#yC`MA$|T$70r^axNNdVGCpR
zpD+o+hdCOKg2~DD12hLfNa%F;1X3rnvDXR^#hU&Twu+?IFu3in1wrB@{4Hw%!)jm<
zcrEH*c85hJf6h8-dcD`CqwCqF-RXaGy%RAE-eQa@?(o~Bu>pa=;TPXSEFJ)38o4}D
z`i{S~GC0x9X>a||J@fIpf#hye0tN0Py>?o?z+TzNFihan#_+Hr5~<*RJ<{&Sd&NI}
z8KIEO>uTOmUpH?m5MX0f)Qr#`nQeV<LwpOkF$&<Sk|4v4hw$vH?S|G(J%CK|?^bky
zI(yBGQ{gTyAhW5>yxQpWTAQJ#H49%l2a-V?*Iiv)Q~T-8b+<0-W$mPs(2`?Kp}5?j
z1}@iZj07><46Y1;BY=6$-E=r{`2uR%?fcg@5pwKOfU#$PhaW<8It0+gZKuG}MaBN2
zM`gx?Kio`UQ=+4jwv)u&<r)mODJsaFC2zyp9mV6t^3dZisNCh+XNYemh(d4qh#ZG1
zhY@Hj6UIO4C6v9l_`LoC=jL6_b~4I{4@YvOHvYpccDwrot!<{9${bUEc`s$TJ@k5d
zv=3|ecV$W(eZ$#>>E0Sgp~4=oSeqNW3xJH}9n=G_?9R>=vg;NwEEQvfoOnuF&Y6G2
zD7Q&k-(a7>xCpy-3*Q*v9vB0AuXc)Ugt0C^X&pe{bT{AJTAp#=H>0}^X1YYOB~wA^
z_1^BxPCHWeuXJ*6aNjM7cbtXUnqi0R!9ad3x#W9NxE7ED!ozRcmYqEH(G;Qg$r00z
zIR188|9njUyAx#wg69_Q=1vCFyRJY-Z+#fZjHzk<^Yzu@Bd=m8Y7ZhkMLjNQu%Y=t
z4A9^gGaQp@!5cyC-fVbs_yE?c`*+V;`Q;xEfVmij+eR0-HQAX;r47O3r29Au#}ENP
zzIWJbZ~d&!F2FXV0o^nROFUk>`~9Mo0OG}hOHA7xtstdRp3;0$1cX&wDkuY3sPoE4
z%W9-Qbc?FZtrI8b7aTu?ylmtmfkA<5E-?mtz?$}H*V4I*lrI_M=vT`k&f^(*G;0Fk
zx?`?h-4{=mAy_>)dbaXwj7L2E^_O$~Hh}24L&5)vv4ob_giWhIPSc;@D4XEhcn&bk
zJ@4_4U@*|3HP9(Swl8)~T?1jTB9x1+Qv|yRY*@<L436<Smn|>fu0#+M3*}B9y`kAE
zv%TNAQq2bw7$?k$ICEK>H9w^jsx3Sl<Tng7xi=&?wmpT4ytHH?f7+ips_kR#6gJ*t
z6C;^Esp24ix8G6k&08J%aDUOL09HJK@At^$qIH63(R{auJ7;-d(W;4u8ZK!#Pu8eb
zJCUQQ9Iq%^=2A#sO?I5~?t|c78#>ipi5YU997>yW?Evjs=9hmcF!z4gR&C^NcZ~8|
zx!o#D@jmpqk<ymn9CTmgm%-a?T<>tZ?gmlfL?)*M#)p#n?vHHdk|>zQQzE)wDE3rt
zHvByrPm&I>?>Z!@x(N)|Ry<1tgBU@OMSb01ctm#dhGyVNxKY3V9j<GBNt4-e@&{gn
zFDc0u6;t|3#X+Z+Oz#K=sg`F1j%`*=i*Hy`u4Ipf6x3b*@J|Ol+#fv9PZPR1e6HU_
z7mcHob)nPxvJ$YxW4!yLpw8?Vk%#1?r8zfrW@SV?*M+^0wRIJ}Snc>`(W3M9c_==c
zR?Yc*;IPBMBwdn2YZa^8a^&NwKL)95z}=>Z-r_j-2ZmMnUFf=JrUcnNHfVKJGrTJ9
zz1XnE<faJfsl<$4aG4$1B=#VUuUfl7aeRIN<9a0<rkvRqtcZVowRGHIpAwK3#w$Sz
z>8SGUHYX>PNv>w}j#&#u2_&+5NShN{RbLmIs`jm3=;-`_$uLlv1omwNC;87C>ZIKp
z@Bdxtgpm!>Tl9xK5Zf!d52|WfA&9DRVnZVI7~Jukwnf2GQ&CO?c0A3d+)loWStZn<
zjVD5w1#_>xkXD-o+W>hsZol#2UOyF+0U4E-F%?!0RB=i%rJ^T(eh${u>qn@+`07j<
z7em9I=@D;{s|imYgQB&pA{&Al6K~Gq8k!y<aafI>|1w7B(pE4W4sXLOkmt+24pv2}
z>uxIjjGyPy1VFNfef3t%^~C2e<mFcbA|}LT#8_Rz6hNKG{<HCf<Wf+0w3(@eVhHD>
zd3ZknR+DR9>Ev!;Ucq3d(wZc=BOg|-7~!MWPCwoed6h#GZ^5wE)?_dY4bM;SDszfN
z3nffckbUXb8O>A<_Z9W%Q72CLmM$)_(;>3=5}&s%0XlCI{_>|?PekH3+i0rWeOFCP
zpO6*+rL$}#Z#pD&A`ZlG8U72KxMF-c%tB$kUp<<iF>pZBgW%++y*#InR0bY$Y(7|=
z@SgMb&%~Qv@n#HQBqJTY_4PovQiF~fko<b8M#kK>@?k1g1+R4ke}ZF=A~}F*c`!t;
zjO^6UWCJsIXuiEH$6N1uwIrsTTtD#Pk6)<NW)GR52%+klX?gpn8DzJu-weO|I8tiQ
znVLRft^(b}4`BZhGs~kK<)s!-JsG@^4wm^Sb@A%?9vg|x?Vgo8&3;!|qyKZzY-XQa
zfS*(-3)}Y*x}Maj?Iwe*%hthQr#g^h&<Hg7U(Rh)EmcRH?8E4pFgEd#;uA*$mqian
zhPt=5$u>HzG*oNrx9eVy`WqQ}wIz}ciCqC^?S-pFzxuWh<1<Q#<6*oO`*KS`)IAq@
zch$4(9*`~5K1Ih+3}=|Yb5&?ro6p;d7(NI-9&TL6{X*Btw0Ldt=?h?ZSobx-DXjZ5
zRJ&dM3AiRVZ?Odgt#KWKch7hRt@^3A1CLOBjCr?376|8|8ovt&8*|Q0QcrWw9cl&M
z^{=!~B+F##xQf=ChOmqnk<7B?Gq0za?&k2k)NkF{ujkA^nnxSaEbUVjz1c{6kleUk
znLIt%AbvwNGHx~fX<9Vadj7;bu(LJW!vE|I;y^2}83pO;6w`I=>=USVSN%zFHXq{P
zz4wsL`t53Uc-3h{wI6GVeSrb*FB_ueyGYyclOzW?TnkAxj^qHTKz{xKuEQo8lc))Y
z{=2FU=y?Z?S=7;y7VnMq-XhVD4PDV?&5grVUcudfnB}*DE;;)f%1cx1gSPKElAq$Q
z?b-j^L`)?F`vjRuuwT%Y|IMH&0;(mW<TnUr_=^#yas$XH3>oTRC|Iv}?|+LS+U`O6
zq!5*xT(A|_+~iY!hv6f#x>t;xuKU#+;}J$hKRk&MXpma5`(Xaxotu*vqEOk5NfeR6
zKiFT%gm1eP+=dG?{p(Osx8J!TK=IU&;a)!xV0t49MX<vC(`;aLYxD>gW$5V+)DoqT
z^svjPWVPMne1rd@nw$?o8HO>vwtnTNmb)<oBf`{d2Ex69+Rb1@ke!Q$eK)4b81F|s
z_}F&<RM=ZAUpa)?L@7`+nhBy|hntUb6)T6R!%U?9Ov)rm0xa+5=xB6MQ0vHJ_1;2J
zt(d&11=|9pag`F*J7W#JC1~r|RPdIcwxQ#;%s$*LJka4D6IdgArN|m~o{j79%x_;Q
zT=&IqSeK?>qi;C!)(seVli^NG7Xp^(b@Mv0-{O;I<cl+qM6CO{=ywhm{%*?V=nu$Y
zsQZUepjtqdoq09&pzl79TKRMK(Qmch0qX_re)jCdRtjle;xxPUa=P81&_jVE&c`gu
zvbf*LckgBT5}$GEF5#D|n%%WMjKWVVeXrT}%v?s^cyyN$yZ-V>fFzL6Y4fMpN3HYq
zppCl2_kJc(_sqLY*Ca5OZGJN1=#B7Nj$Lj_8_T1MjaaAnlW4b(vnd!WMJdesE`v?=
zgiGkYkhl9*qkcEfFI=u8I|*%NF@4?B15=G*XPXMLXL-*_OMoq%{X+IQ{h5Dim4Kdq
z3C3${)J=4<ir!#1<h6DTl4Ds6aYt&MSu+FYhE<W*K`XxRV(zIseuO4)x<#Tjulezx
z{^Xzdf_b>-9z5;AE6cK@S*UmFZbHS_FIJ$3>rExlmNvH?@wHX}<LjRog@!{D?(@P0
z83P<mev9JiebX%;RoN7^D;BXZiR5aABoL~lI}^Ki209T}&V3EpdHPcGUCMs^Isddv
z+i!@S>COsQ$(&1kfCD(|zaU?N$SlAeX`GgtW&$|h-jhy(T9^PriYf_PG0+|flYC%X
zd3^tCFI(skj{f0Fb&dI)6J^K^=>+3N3-FT5D$C>b0|ScFjS@W;$>U+)cSdSM6CEaq
z7(2{pJQGY76a)FN9wJ-;%MLUX$ASY=d%P$gaJqy4ZDNTSE0%t^GeM;?IOal)p4W^G
zFhy#X`Z60`U|mh95rXw~qoB$o#bQoizNI3!o`}-(2c2TPBxP;sev*!fPyhqe-|luX
zhY)=Wz>sB+P(-zP&d$40MC|nw^-E_eFEMH>ZdC|e32@ypu}@?k8ZmMKrq3e;Z{Z@L
zTU?BwyJGV-Uj6vG!|^|h)(mZaiUlrHU0=U(V8h275^z{*-nq0y434tb?Ram{*I|<7
zZH^0ad?m|&OGe-F0Ui-|!%F>7aW@wE0b|M6BU-2z!+2F4hKxf4;CI$d5cjEQx!@jQ
zeq+QX8qXrKTDuJ`o7MuiOTPaEdYRIB#fPOJRZT|UxiSa%bi?nOE<h`si33AN&AI{~
zMr1e%x6t4((EGK9uDhHB;$IYZYW6l368L-cpodHFX`dCpO06HSB37R)PL!BNZa(|R
zJ~O*=j$8-}TMRTS$W4AVkdfM(_EZ@o(t9mgBoy$=Yc3hjDOzrTM-W>eQ_Uu&nR}0l
z>=W{l-lrcIorn6k%dL~{Cw&KydYgfX)3aFQI9q;jy?Ei{h9>&d+wRpWraOH}9ET?$
zM|$aO*2`_zi1dj))>cLWExJKFv8>(V^#o_Nj^h4i*m{Qk=m6*K_G&~^RXvS8_3f_U
z%r8E2%_s++HpMT?g$b@DHq}m3M!c7+Nn3{kdnxx$Hza}PR#gurr)jnggI|yIMv<)I
z6Q8V|e82Pm!nJXzt&{wociF)pfD;G(x1q?pm%>%YtouvBp=QkBJL2<-h|OTn=uhSE
za1PTj)E>zans%^Y+}#~>4V>X=lbb3mP5yyC+o(ys%UOO-(vL|}tRGcwL&tHFIGS(l
znNw2pZxhOca*tU=_3L6K(ue6pG|%HeFA0osLf}WUph|GIHsJ|}BWG6AG=vH^u}Jbu
zsy~~Mp2agxEZ$%9Jv&tUAkTupOc0QP3)%Y}gVu%xHT$&>?JyU6^nC(_SNk0zf>CS^
zI*K0lW8{pNqG7S<HGVN12yzBZ1Oo(1FR~h$85eu(Y;YY_<O0Wc9YyO!E~N-FQum{n
zBm*u)I2offqKeX|>f(qCx)%d3eW>wUBc!0OvXK}1ETC5b&0+{uarPK+f>VdOQzma&
zTizqqVKQN8u-8Sg|HYQ)7Gka41pWLGic7wbbMj+v6n*HOV^gFn2-R2vTMo<Kj~TTs
zGJE2euk<B9MA&}bYuq^cq@CP3a_-n$Z`JiWhSvL3=c-#3`QQtr2E&A`f%p%GgEHQT
zfiD@W)u+s4r_X6x7FH5({HTofC!q4J1o{m587~Sy_D#)WtC+nt+q<M`U-(N8j#8~G
zO2UL}NM-*+sRPaz4dpEof!@J6|2!IfJ-TiDN!(O5|6l%l8j}TP1?|&k9O?!`Y?x0z
zi0(Eu3AQ&iiL1hy;(kWHzi{^5=yx2Lz3ES2d2+&g;<z!MeZ%88aFw(%m9L!YXelo^
zT;NLQZ+-O&|ECmVI@`68D8w7%*jw}y3FpHbi2?)$$H*S*_t@6`bhVLiI;6D2eq9L9
zAF4G+6!gX;t?A&Y=XL&=cHL&MbVOIJN-l^tN+;g>EBX6Y>6tSam~Kgs#fSy7eL**6
zmY(JAuHwo`vA+v&RJ|bHu(t3xppP=^M#)&fgoFa0-|w;SotOCe@vG|muVPj_KaBX9
z8htuCerjZR7^9$vh19t3X>^+w!rlG3DdO@?r^}9}b^8mIk8H2XG-a^K<d+4Vc~?Y-
zh49i8$OTptn5P`DEmT5@`CesB8f2VtzHQQU#gdr}D{J57#DChp$}(_sx`pM|BVj5L
z$#_d)0q=-bFzl=QS^Jfxmv+uquCar3O;;4jnzJm(o5$Zh$W#CAk5v@UFpoF*3pSYH
zGW?<^Qlq~NbB->j)!v`Q<nZ7u{gPC??3~qPmYOIGJA_1t8T3+8V&R07ez}Ur&yi6r
zVa#=2|A8(MN}Pmgin13@JL!+}2ItEsPon3zfw~y@YA)g@Xn}_%hwaO?7^|9fZHcNM
zuF2v9FsvfeHA1{yByq1aQeT@pgyZZ{VDOa&FoevCYlfYYl9JQvw}-#T_aeN<Iwli(
zZ?w`)hw^(dTvkmmnEYwgdX4J??dU#`tDm#SGnsjLK**%L#U40+1_zOo)~sRDQIAP!
z@+5!0Dx`OLsE%Hd7A+%GjlIY#T*EERjaBza7hFIa3LsgJnCg9G`c&9WQw!VTOVsO}
z<=(OA=)9zhJ45F_9>`VLeN3@t<a(j`iuIktCdM-<FKZ#?lA4|K7#-=}EX9*NB%^)A
zF0>Ar;KwX+$^qL2jq#ku5n_>|!EDXd>ZL~Gj)YfXe!O0^8&>{ZYn;?Mp<fp$=9rL8
zebUA7eats~Rp%UQ49t;2-AHW9!r+uJB}IjYrK1sp<P5!n2?{<+)FK+ZbL)aX$ya<n
zfgoC)zfZi%QMQa^8pYfpPUN<TEQBoQq?kUk-4f!QymKU|$@_JQKOsBW^<3Q+X!$iP
zGQ*U}A{6_nWk6}``)jgw?))|aDw8`L+pSTqX$wGbIj7rqlek(k{up|9xH>KOk$s`<
zIdQ@X)VM=Gs2)jax(vu;hq%-3Yw%Iq3*FP@4QezXN%tq)1xoon*=|&Z$8=#ma=*vw
z3;9*yvEjr7G2i{$AMkLs(>?G&*eyqx?u>m*7I8o!9#o{^F^py)_w~R`I?M<2!Bw5r
zGw-!1?}KAQfz~k@W!8K3^Z;oTqarmAL$VMb6$mwLN$Dn+VK;WIzx>tW6%0ZCQcCPb
zmNM|?7X5dL-(1`C;5@9yHdP0*nTnw-4IA{s!qSe%T~wvyBtODFFp-jc79m~Jji>L%
zra)N|eitlFa1gz%uN~>WKQ``MyCoGZVLhN(BBkjpL|8HypKCuW=P(OKk?5x~!p=&O
zv!8?_v~}0pxpdWTAaW_u(E2?mbTSQ^ReVNz3u|qc7hT)-T-o|H{&ba%b&yR$u5<dw
zKYkdK2OynY7jOD{j_xB)EWfLUPa&hN(QCM30}0l*9B5_m3`iYfQTY9!tBBMl|Kj@7
z)d*>UB`<C_a>G{(T|qkr$1fOMhkagZn;=y`M>Gv9ru!t@@w6JJ1CPEq;Bb!9^`z{W
zkRxb_$&r|fUUBH_O32=8`itsB8G$4#^1?R1E?rh{*jK>8T9$ZYJLkp3tp>_e%|Rpr
z+I62?dOM+{D{Z4i65Yp>#RhagLAR~j%)1IbS(N_j0*9^^ne#ku$>rPiQsUY(-_!PB
zYblWur?rL|U_93c>1578*M$bxy^GhML`}^Gr8SdIk;-0wKYwQ}bNd6~Pu-PCWrQnL
zwW~X!e7f><Z2T<_M$qYB*QYRN_`zLg;D;t)N1g@353Ybkkan&(DK$rS2cy{Lc?QCJ
z9*BuHzS-Bn;+ZPz6`Nx@B_1yI(&FI)MvivgktBzCJPr7)sSkPD#a-h3d8$kY4xq9%
z*;k$SGYM4Z&v}-{KU%TbuJ?9bx8q(IDEfS59sf`|_dyij4;4>;q#dCq#r>XZhjsn!
zqj7izP#U<gI0M6KMs6nCJ1Mk*DGKV!vHC*eF2XhC%I%cf9g_NG4OAD3FnN#vP;h03
zW@kh@iqp=Lsd@HZTyQ4j7qe!*uf)(*V%`zzEkq;X2c@QGrVCpG2cQzH_VnXdl;6|x
za!*E5^$bc&^3J1FN7<j3W4fpHC&c2+q!>vXyI4lMxai3L7_@73%P88bF%lb+Ej8b+
zO7zb5T*dM9g^5A>h3&fhFoJ)WQuU~(3ki1NJQmHBqF?D@rH#?_tES<n-2Ps*+G?Ea
zNJ(ScWO9nN7Xow-<zu4F&c{rYpO9I<GIGw^jmYJT^LK#)z%8S9TRTcHj`i~Al(=Y7
z9?3-a3x17b(&uRStbgXkonNfQI#**jgh%@nX@;Roz07b}>CLT<XZgiyauw)toE&CU
zf_V(1nG}-@xWtAl&_ceeTO!>w+%O+}(X{>kJeg1|mvTaJ8u52;fb&IcuDw^NGt-1G
zPDj--US>7MNN>p(<Z5bp=lF#4c+Lr%yfx08#IXw-*#r*jWzm~7*PnemShD^j6V`I|
zT%fhco}US}o8kp7&FS`74?lU`CrZw=+f3(BJLIddbE=fp*897e*f|HQ7qb1433L@E
zI3~|>U;Syk*<WVdnlT?CkL}&Ul|3$iu$M>1R@?T-UF-)xq3a12=7=?-r|(a?GNcqq
z^Vk2C&ltqngVl|Cgh4-DvFvS3k0drb*1;*YEN}nmhxT<rd*I6iKVqjW=?6dcMa|`|
zSg}8Ti{Fh*WuMv7+ko|E#)*2uM$~{bor&@o7fXo!*vDEWvgl2(?+bYH>6?Q_lC?aQ
z{hvZfU8?Xlzh(WAFeA>lzyvMTxMh~pZRmIsmqA5xFAqA;)c!=?%P26_;h<-oW9~>x
z91H>O2PW3i{hFQ(3r|^zxRB?nH$}0Y3gxb;q2GVFj2m!RR9{nyW4&Ja)cwkkh%WW+
z=AyE&<JBQ({fK)Ok8}acQXb+zXIP-!|Mh$tdyB%BtV}N31-7DNOlYr>&*A(2SKuJn
zN7~eZ(9zv%rq{j-8jo~yF9Wz)ThUd*0s3oFBQ)cDgm()k&zUEgItdL<9zDk*$i)rK
zeI@Y-Z9nJ^j{vku*y|$NQL-IVR>gx@6)+wM5;%b#S5s_s$w{D1;5zV>+a?*>$=Bn^
z$e+T&9Nywf{!|S}YJNg$ez`L6qU%-HXFJ9t9r&oo-0#C(PJ^@C0tp~~WgKd=iwRgl
zj;Ln7Fyc;dzSoTZna<<KE)O#5#vwE>y%)V9KQuJ~)(Al!-WJoX7Wv?tW8${=DXcnI
z++Sq*%?EE?J<jSEnz0-5vU&;E9{@{xlV@D)S?DCFv2v~G{}l)eVu&J`L(*qi6q@V$
z|AbSRVIOSIr&S~?-8UgMORF>lWT_oaxn9iWzrb0?vjS3^X{R%8BC8dF16>VEj#1X_
z=^kuWGu80%7ls*iCcf(DXKJONj-ME{|Jdcg7&XP%mRz1jBh*8l$uo$zut}v(xC^Gf
zH`E`eHk-OBBekkzHay9shGQ~gJ;4$bD){!|m@J-@bbJi{>KzU|?jv!eCu;bMHRPzG
zq7ex)$hmu`NLOK@Z|p^16I7-DP?=Zao&v_5SFCh5AnE8kzt;NgDYxWzh}X-?*|5fM
zsxkCh!j1Px*8ZQ&v}4=fN`{p*b*6?q-T5GQCB^+KWS@Kwv>7#m$pyWAj@}4l&+kl?
z8mB7_hsK$~(`x0%qpDz%Ax)xe=*)ggUwO4fjpBOW{~5ucS`%AFC6x3wpla<G<qR5!
zb_^)Z{Gj;CD6P5tNt0OOs%L|buCv2!^fOn1MmGq|^o4Jbv%mG>g1&oNm!#?mFSu>w
zNk90%qOp|~FDi`-D3bNL7yjc{HW!AzLP^3L+<G>V|B<5f{#x!^K>Rw=YHL?SjE05Z
z@;QThHlyNf9-ioVMux)y4tOTT?d>zkq|!FW4v7n`l@7wanaTmqTh371jsEgb+`^7<
z3?J`pKShF-R|05?6P8Y}WB=P#k?U~HALvp~utLa#iYHN5exN&!=YQm|{_zF-q-@j^
zv@&H|!h4y1@rNQb&nAT+dwfW8fDIa9&1Dqx0Ls^|&AY>xpp;Tw6VOx_v8QllQfc3%
z?qr8?)+Aa!7MHwjX6>$@^{NXHcYr*iweJX+;qOfm5U`8Rt!ST9!$N4-7G-}lcp>Sy
z?kwAJXKjH$zj7VzGQQ&Ciq#{|KK*idfp73UKsUKME9*~k=Uv*}Z&?cc4$TI<Hgtjw
zo7W&L8*8`n)YMB|`fK=~?(5Mz_j_GKi~6w{|6>g*<{pEq=l~_%F!e0642H5_wW}iR
zDkWrUtfAG0gM0%BXzusq2}Rpp3z|#G$SQd#{9wf$Z}E0vSq?2X9!~+O(&R9gNNMP{
zQJ<iP+~5~-jP=1g?w~b+^;bDJT^Z|dJ`^<GJIS~hYJcaF@uo<~BI8eST#r+n->sjo
zcUC2+OsBI9!O>rS9iyqAk6Y3q8<+WP5j~J5Y;U%LnVsqE67JQ9<8YmVA{!2@;%eTw
z<BV&FtI!C0#>&t@+%rD`%lOkxB`JRRpl`m>kO><<7TK5)0j9png2}=6B-T0k4%((~
z=@Q3O@LA{Mg;G6ytljoQ9_-TWyZlU83{>UhAQ^C&+;dqS2}vTuOcSC`?*l||;>lcp
zY7M;Pw&wnNyb6p$ha?-f)2~T>Rr_d>S7WfYkeXygzy-;ei{6lsAg_kfx|MLQ2JWiq
z>0*^%${;oX5{#M^$Sw_E>ixFm`#hTU&K4>Ck$tHlMLNmXS(jadU-5@`LZ<9XrO-`!
zY-zP!OYG+bk$kaHELs1}0&wi;WNGP-dSl_&fW&+hv#rPv@2Eqqx_Ys2e_pBfLo7!x
zkca<Kd!oneivKvy5P}ya1zFp19++XOJ5(g;$BM$-qJ#dF8JKIygpK#tW?XDwYchGI
zZU=Io#d~5Edr(}(A6RsqFZR-+SH6duRc4KD*vJZa`@VPEl{|e){@vsQ7PJ2W<v#xM
z_sgFTVRLo`&eNa${Z4=Xg6nrp?&dPo_~U0HXRs`K?f>D{csZjAYM82?v+QMXb^HQO
zD*qLuDihTuX-XW%tXUx)GZrQGQvz)1$K<X)H&-V;PfkjDo|Foe_C9@iizEBEQ1URM
z%O{r%mrk`okXOp+*MvjLc6sg5w*ZRcmKTz8UDqqq_*B)Vrvq~i{`fkC_LF)IF?oer
zXyK>I4U8&5GqT^dRPZ90>`6(!40sb0P%%;wO(>M^eAvD)O0d9DN5nJJ0j<p{3i;O}
zm2T5t*CWVWJ4$va9=uqK)4D2?2t!NrH{Sh#6aEytTK+6{;HYUeg)(;Sw~Sn)wn*<#
zZL*aH$3V#C%-hK|X--#XB1`GVN(2Y;L@C>58V)7Y0Vt51va1GNgitwU{~1f$q}+<%
zU`hEYj@t6#r>h5PK-DLS0w0K!o7kB`q^(2iGdIza{Lc58gKzPbpRLutidkqgp^ZEU
zr3m39H&;*^a@%ZRSXgN|d^Tm-Z_^rSr*e_>VWQ#btizz~f1Rm3Z^^#wl}}7x^~LD8
zO&uyJ!ee_%!(aO1(A~i5)ww~QG+Ntnq)i;zdFY?ard3-sBSQDNDKrk_S~-DWPx$dN
ztO%fv)%9lbusqrDI|@!0kXEDB#>HJdiOPYDsw_Y|i5$Gmn0tqq{k+G};yx~Ye7+YX
ze4HO|Q(sC+E|^Twn<5cBmfj~ujhaBX;<jH`6o_RJqNZYSuM7H&+sjQUAA61Yy$OL^
z`ooLqwz9m=e<E)F{LIHutZX+ROrBP(sDOchH;$*dMQ$`c^D_59VjZJP!cB4KB5v8s
zhN2s1ZvaFW@urMsiH+aZiDWae7Rofx*Vd%(FFe(6?~{y%5>yd2&`FqSqLnT2tx6}9
zGsY}m1}O2ZBY9paq+pvQxs1~~tw<{!%UE(sI!fmtB#6L&<Nx(DDXa6;oRWN11VIPZ
zruqdPRh)NR4v9T+*E6_3T(Q^&Ka$%ua8@Er31!$qG;3Q|_d$nJLmmViZ1rA2C6x3x
z+!Q$6K1Edcv^GfyNCU4)LI^neVMoj3H#-#gZ%9S_9d*>MN+9BkwBsd*ZTd-70oRXk
z>eSR=G}1lY6d%DBa+mHDT3o&B_c*mBZl0u%_~|F5T6DvipT>nEh1j)gr6(~PerNmo
zqsLC#NzEjU|6L53R8iKO>G!xM-+t5VLb1o@c8%~@jDp56zTv#UVIiYjm%j8j0?kiE
zRyn?Ugl=gr3UUdWAx(#<LD%YkYmwgFBMQn@637y#W)OPPA_;kxeXCE9827vgwTEM7
zKuL~l1w!1Wbp{KBJ@{96Lmk4z#?v9rL*m+>x!A>filbMux;?AWI^LIA9Fs}8ce_q2
zZP%aL(ub42&C7BItq{wSc2}o7;GXPG`br^|35+006ExYD;bzjD{uJg<<a4f=tERz1
z+VYJGxsf1_BZ&1&BEYD{_ZDq?^I#&nN;RCN_(Vw~{wC>tfz-Qc(~hVhnm;_0DQS`c
zKQhciK+)hE(SYEWGzPC-@q2w@KWlXB+Es3Wf@wmkE7NeZ4%-qWkCJxiH>8~Xx!MG9
z`kNX@u};XPh}{Ez2X;<Y0}+V9N??#*6SF)nx?WDKHE~ONv4C|DC2RNNuX8W|$YH=|
z%b1s>hOT!`#vDP~^h}?S68xs{LO??<=Q-BSjvc!M(kkH}gjms$Ov57Al7W$iaZR#R
zd{uoH&{UJF$0w`Kt$m9`1FSO^MKN3D`yuP?1H>#?4Ne`Ah#Ac9qrQC;F8!!Gt+$}d
zVKyS(CuhCIeDaBLiM2B8hew>W8ZAAeA_Ok%)^Cxzh0mTz=KdQs3TDA-iN((#rAl0h
zVS2_8JGM_O^430Og7L2owo)!tLI@aY?>Pr5h)b^|Bxk6Sp}&%{GR);sWR)p~?ZYcT
zf>22TZ$l&}(mujzbKNtTcbNq1;4+gAArpw=n%xLWV;|YWRB*8anDeDIQRXgjU6qd(
zF5mt&J($b!I839>rg!^}GTupyQ~;7{nvx>@8RBoMquB^Ff7y;XoduuxJq~KK`eZQ%
zKxd3f@2BIEmJL_yPC-s*h1vwJ6t-`EX$75Gv7ZP03Iy8oCP8t-0^fsa(4_p}T=gy?
zD{zd+6GrGL<EHwqdh77xN@RVT#N|-v!Ft$i{T1oU??uhAjtZEPLtr6FtY7^z&A%5#
z<L$}V*gLDsE$oQ%o@`0~$GsOiza->w>5z$f8{PNR*bC)sb@<qwcJg-@x(!K=q-0_f
z=5M!E%q?yf%t^_}X}sh%ZHea>BKxlB$-)D*NsKi1ZqdDPMAO&KGvk*@bU0o&8g_(B
zLo^x4G2fu|(lbE$d0y*;!|n8O2YYCVrC~*SDsg8UHm?9-Z{@TjDaml$So&Z!3k3T)
zL7@AsC~g%CW8@ryO(T0KZJnULL3l(zUf);6jKV*mvVSbI8wdhtMf{$X#~(2A+=7fk
z<~G}F2iki<=E$d9>gG0lB5k@%5^Y4HU3`+USvE$PkUF(@--ky%k$71-*WXWGHPdsD
z1u++W@}x~d|2ix?ef7oAp&J}SY=vu179wg8J)@p7lQmUYk`}!?*VJ1=7bfu1W5p)2
zmHkzt=dd(*7PG}w`<~2BIMG1pd2pD?RJS<kWf2B}Dm}Py1SdeUL@BB`vWEaKISe6-
zKgNiXI3`9y()#L&qzd_!#brE{!u)3-Ms~(pATi5~t}`mjglpVJQyu?pKdzZ9P&kji
zB2w<O4#+5u(RS*((B5Nf(`POInH^sP;R;D%2wNM}jx7*0nbPwk${W||^&N%38k9>j
z5wbgY%`<>_6?VCK(u|K*10gvqP}kY_L|Z-5L_PvJ9Yv}89~1kpu&jqj(&`l`3uiCQ
zY!g>ATKSB5JALu5Y5(xXt}RlvOeQ)-^c-<HQn*rczR$R-{#GH}(Wuyh8(jQ+0n@F9
z^bwOf6vV3H>u@|CT^!3^r)?b&w+6=jGpbz|j{C0{y3eKB*p6r}euexWzTWyP%J5zL
zRu~#&0A-{Z8tLwC7(_s6q+vj6Xru&&?oMe51*BWLyA){{N<<pzcyGVYyVtwlwfB1d
zf%#$9eP8!=9_Mj<4)8Y1z}f^MFO!rByiwk#@PYlHrMMrR27^Rub?kB!f9ZhXbdI_;
zE4V>o>QB>@r1e>tXO@%yjWDP8`W->*eIMn*joVDUv8RvI$%Ipujbz&#yPhbsThecw
zqzbT9*CdxV61pl{ckC;4N#fsZXIRDEc>yYNP4nVBlo2@-ay|At0_Ji36VZc${*e;`
z==vbf;`>o+ejb9caUblnWFh_1kvSnAq~RRCrl@<YllVM;uXvc+0SLlB9$Bo`#i~1C
zxiR9_fsy<n{fp6*^M9mRW%&=s)Tg4+Vj1tu#SIs`^|E3HqDkhDvWJ%Z+gAd;6}MZj
zLe0v@ia%r$Z&Q(7aG%>qiY^n}`w~_WMI(&V*-QEQEmq<WGcs#lFj|E*E3y+4dD`0A
z8tC^faZ*%PDQ?CE&fpFrq8S-8<aTa249zHqZ*iLXZ8L@ipB(4n!7?<0_`8=tnK4FY
zBrpDcRDV?`V@}ZJPU1P<&xmxQ(Cum6%Q>q(moaAa%^gLxxKCVRruxd=_=s8sBG}wh
z8lqg1%R>EyB$|cOnjybIr;vG7&OO}KP2Uo3CHci+rq6CjQNryyhqCLjV)crcbM>P<
zqXPWk=5*MN64aZB>0O+^uwIclL7H#Z3j*)`)`T+#G3(5)^P2>=3cDBxzO;BdnzbL^
z$-UeqYlare=au3kMK6^p28FI>%d{(8vVNlwxigJ3{WU}2hq4BQ<8zk-7x1L~PL$Zi
zV77S+-O}S*p4ekxr8;L7i%XetvFN$#H+Fd(@k5e@VzABo^bgO+fN}{fPVjYMsrNH}
z8d+b<m+W>Q={{aMj|hj;>>Iq!>`F#3?#h~}C1;fiyJj3}uJ2sG72W+rIk<q~>NsCn
zzjJMDC)(EEg?Y}jcSxitc34*UC7y7<Cxs0*B_@;+`cY6&UFg?4r~2iGCwzN3z3xbE
z+MOa9GkWcx{(go}Mo4e%bW+(7IZPrBuS{_b-33B8TGLM$YhhOfdB%GBIlXe<l?Z~p
zc%a6Dhe{UHKl4lkiXz3*KXcl*IvzcVQlG!Im3eRXu=oSD*pg*CSy#cDb>sK@vj1Dr
z%GWm_^4RA*-Jj3L8J@ZM`%<<6o?4wnX(luID+Dtlkt2Hj;GZBEh3{LXT%w$g&p_>W
zrrF9CqPR%&>T*tV7cAuRROr5b$ukb67<<4s=z<S>7568rc*E}sEKef4lsC~gKp^zd
zRT4GT9n^qDT7Clcb><yZdR}@NWK9mG<qd=gk%j!g4fk;?xbK$o>N<-f|J5w~MmLth
zp_1mHT3GSzVE6uGEJ{-;gI@de%P6tLhj>{psTHWcD5^WW^{_Z41c8kQxL5sTCD!OO
zuE_+Hfhx~&u|s}1qnS%jg%oVOI!bL;=w?f=a*M^*ZDup)H2Y)}wIFqWOh^Ht5eA2M
zF;gLWKH(P*h4|*@M8$J5sde^2ZfzDEn-Hz*Ef>qK2syDR9R^8x<Ls-+FyX-gG<5r3
zF8VgS-H^dyP~aZT1%AWS+pA^I2r-c*w@Wh=7ZsGiAeIe0^B)cLK$_jM8$-RWJwx|5
z&EKSRmddv}x=J{?@0D|R8{OF>rLzmTM&+Noaz~7%vnHw3z)<C1{4bqtWTR9(Gn|<!
zHVIo-x>zGGNz%R^_%ONlSUx35g&P9}x6!pU{+DL1z~1-g8VgqY=DY08R5hVH|68Nh
z-2zy_)+Lb1Y0PY2_K#8^UfJ19(rB=n|GN`L@+@wz|3b|7(pl`lh6q-dyPngY>Yo^)
zm;pMwL&YLkrI-fi*T<WZ2?V0o!O%>Ft4~jYAguw*HNjFxUcdnJIl9r<ciHtee2tLf
zv*~kzR8r4_gv(F@3Tq)T9uel<egaz?bFbM_%{To7j?WQ0mlJbdopG+~)6LsmICEG`
zNhaK3`>$k}#4A<>tcSlIW|g4xu4fl~PHJ+<^5n<TpEjqVSSk<cz%U>T%W^8Q=^)7x
z-(H>y#U|2hSAom1GDj<Iobb#v^z|YAKOjtVCH;s`l3Ru>`6-4AKrwA~Z0Y02BWPPx
z>dU+<o_pScf79KL_GSF!Hj2-p{FjH$vVIZ{_&JfL?T$P*+;~zu+8!PtGVCfyu%71R
z)<_+UCtM>uv8~qIH$3KfVbq;cxHllN<6U#ixI4OOD2@7F`2T9E9@te?o`7K!S^Nh(
zrXizx9!QYDJ5JNJ<+9q~v;73*4NwkVshHwS7H?n!V&8NoH9fHQL>Apb7u6*j!4>`H
zO45|Rh7FubYw&NCT<tns=_6vpldGVnUv7P$Xu^cnjG->E{4s_f*>n41`*xCP%xgHH
z5fFccm+YfRk67pu;fql5>vy@&LGwuG+ooNc`Q*S8kO`2B)DhEFq8YzsStz&MAY3OQ
zq}T{q3jm_31Buk(!8{<_9jebH+k}{e)b<@ReH;kh14@baZt$T{?;9ZLB9m?D9^Dgu
z`ypOt<?0lzP3$?X{kbX34QQYa-3qw@tYi-Df2W^yE431DE!=s4@P_#;-bj7z3gam@
zISkJdArb7<4qM`(It)Me8OBy3;uqrCiR9KDZ@r>(PrTWj0Hjuk=nzO774P*k&lT7i
zh4td1SqB%ukGH8pF;+b*pRp_*eH#`R`>U(0)#jOe{<@6BH!e7sE!md)XeSfi3Z$Y1
zZ({zmq`6KjtW;f%O$Z$^av&__r+t774r8xMQ@nhJS}7}CWm^;_^r-0&jVal?*P&Lg
zP!tdn{`gI^y`z|)ebzoNpCuV7J6U&#3-Vf!USJlA8TG6RmAgrTDRWW8Lo*}e2kN5Q
z|FU>f>oz3Sm!Z;5)K>>6v#|F;Ue}p7Ti)(UWnqqQ*9Iyy^q%D}TgQx6Jj_D)VJ8IH
zv4fcW&Z!=ge>Fa$3^kJ#q<dAFV_~NPS#4$#Pt<Ux=Z0=3J$Vk-8k|m|>Ah9REPE;p
zF})RyOCB~UR#WVMBaw1O(eG{>LdC5};O=N5ae{CAg;6=~h<?U1zTHSYeJFwEeztu-
z!;+hj%vzYcc0$vAuDfvtn>F<!Gp%Y?PDBkF>qQZiEHLrH2LI0w0To~a%tg{<LDE|H
ztj>x>8Jyq7+riHCX-m=~1sEyVbgH#lu5!kjjHfrLZC!WSjLhs=HsrRgBD5Kn&roqS
zBbV5>871Y1px*5OGCJo>g|EhDz))}IMde<z);yzLLh@E9#Nh`|NX48WftVvDn6!i7
zqle^QbTx8$F;oy_LdfB~Wtx9qzw8k~Sf7+SH=arR&t!-?;T>Z(2-&66nr&ln``4*h
zrf2vbg0`MGM3|{SQu#%e$$sX6X~s9IhyCgxZrw1W0c*)Dv%JwK=mBNxl!dYJ;Hbl{
z5>V(@$eEQP=(B1{UQw@Lr4@X}eh)|Liy!OE9RGx<_dMCdy7V*MjwPpT*>&#KE<Vm}
zs4W_wf7qv3@zfBdzRMN}FuoqpwH}wd35_#26k+dN^SY_zb9@q>ob$Bq7u<QKeCIKa
zh7Nm<RjN7_WX;XtSvE1{dkDtk!0L_aiN&_9sUU<+rqwC~4YRk*FRLeDIGDYL(cgWO
zc5(qXC=e3tE{VL0+gec7c0aBWrn76?9d)g4{n{d|yR*Z79tipP0^Jw$)qU9M?_2-*
z;*XC-iZn1S*Ltu5UR+ku4q1YlYW7kT2EMDO|J+}w|MGFk%6uj_JJKgN(_W}k7qzhw
z98uwh^hHte*r-q_Juhpw5j~!5Fyt68h<(?JZ%xwi2V}*Yea>&U&X9GK0W#GL8{!fS
zx?~8o@7C!^!JZtS&aKH?=Y09PWpIM*n3t>v1>Is^7HqGKNrF$1nQ$K~tY#ln{(@;9
zOn-_p4mYE#YEh?eN~soZg@-u*>L0u4t1_L!G7FZQ?XC5Dep~3TrBRmE{9Ky{N2yiz
zqi0ATd=QR}=Li25K|Bmf%4O$_$101)E9@>C^TEJ)ww-+A<X&g{qbY=yjZ5HbfQV>k
z)6&`MZ<f>X*`2Yr0;y3+Lu#{3emiT`;nb`&wAwKzUlAsb+Oe{B`lMDc{^b*uKK2F*
zM^Oj7tf*cia)YBumY`SGQ@-88iH9q%uOI)WbHKAo8e_Xut7o?~j4P8$wqPo`b7B8E
zTkmB4o50eteT>YhBr>H<qdm6F7cbl$BfwRweY$A<#Xsjw6%&1@q9&=(E?yzh34`>l
z{%mnTAAcb>Nb=h6T53>2v)kJ4S~|DrUx^!LcTf>qQ<y!9tEkm6ol6wR`;fF-pr(6_
z$T#qD2njSYI8CQlYtvQ9f#0IoZqI<oEqMkH_V#0drg76RyS<F~zg>cQUpogbp?g$T
zeVAY(yncV}=NXuFMoehQ3Qg!=@3EGdI>RT!(bD2IqZa_h3!Aw{!7GB7T=wg`x))zW
zjHr22du}dY#>yCKWxtAr_Q-G(LpzFK(%_`qq@4pIG*D5~>yTTd9<lBKcG!DNor5J@
z2I-YxCkbpfx>=?6n8a`NhyB}L?RWB>A=SJn68x!992w%kDztf({?H8b->Iza`izbg
zDn}EHw74odIaf;U8a$7qq-hmMn%QO%P!Utc!8?C55*iAQ4dew9J1CXS<nyW8T|V{Y
zE@E|=FzMX_Y}nMHeE$k0FXU$mMLMU|;cC8OkFwI%h4;vJg|3F4?afUz><;~oSbf>#
zpq2f@XC>|;XpP~J_AuKvD>7g~o&9THgrW5vFWFAm4Z^R`u=r=MS{5}kI9?N;5XntQ
zPjN>J(&j1zp$L(N$gwa&$;&*6uLmYfSE}j2;2>|U>^U?{d=)If8ITir3_kTi$bKA{
z{i;SgUi?y7yhvzxI9#0B>D6`MrNbJK=zxruh5KA6UzJP{7gXP{A7qO>gD%d*nMzDR
z*x5`KFwBB+_Q@=@{gXAJ={NVA27;yB0ldy@(#^(OEDoeu=Ei&@n_t1iP_kOqEdNmT
zzjf7hBmVa-fqeJRT$u0JQ%^gGp9yv;2OM7XRf;_<agdCb@icBls!3b+;P!4bov3Es
zUrhw)l+9#p`n<6C(u5F`e-)k>z9~fEXr!KTAm(xqtHP)96^Uh*F5*!2VM+P^hZ+t)
ze&yebGN{T#;u4ycvHP_7ViIg`nX7)Bv?IVKkL-ARQZ0>-$<TG2afVqJ&V|qaTv6q!
zVAuNm&L=bFliC+?$JU4a;`w5%H_co^seTfI-0ImsLy`VLXOM^M9NTF>T||zvQMG-0
zhWngHAYGq)%sftP8(tl^hv;qvnE9}pk%|<P92;tNvf@fpVIKe-v-Z-QOT%_**%IbL
zt6#nyc>Te{45GLGYMf}E)vlYdZAfLYJlcd<26YewdEdVr=%7r*Afc{o`7kMbI8-<q
zX_Z25yfGbYJrFw(OW0$0d7@ywyHi*Y^xel>G0!Zg=j+tkX@#m34Oh=vp`c{x$uXw@
z5mQw6cY;YfIx2U8Cz#~yoTq9^KLh*MJl#n#TW+UQfb;Vbyiq8n4b9~pT7_+V;RrB@
zt*4yRnIBPTlNB9S(9<-N=G-YsGy&0`7pW0XC`8u8H2&vUtlhof?Rz>6|J<v|RAMDd
z7{rj2bv8%G{<fLKTa%ozmqUqk@N!FasZUA>rb}T{Lp7F+!xXP;69~WD)}2U?3;y^i
z-D1TfSYmADTWESp7fp@p#2qYnjqu8Tp*1kH*Jt#Wv3UfYqUtoRPh%JxFMe0G!9DwO
znsqf%@;4pc{gB7kD8q+z2Z@&<UPg265oJQ{=a@8U3r&?=t7!Fs75!!ZaSX;iq8Of(
zW{b*+Zk#NS%IF4CcVl)C>kSok+^qL{VA2{|i<kV?a>cajK(3+o`!v2tVBch^0z&8;
zT*_rAY!}SD<h)7gf{mbO{~*gQ<3oct2yZk?5Fztc?^e0MRsqrFuXT&lkpF?o<fY)!
zJ!0_ZAFq|cCYWrGpNJoNj@|||<={lkvlDMXgiP5j#f9*(L+HR*i8vcxY1uvL=z9Xu
zBwaYXQSpRHAxYzWbvZKBMCQ~*La5$EwBtY`Z>5YTfY@A7JY0G-B-J0f#)f1hT~wfW
zTBKEXqeP@!*e&-ZVU~xVyTC6hhWB4VLH#3{9IXjjejE|D7nIFdnwl#_;!qOvaiRix
zGc8Q$uq-~<1=}CWC?m_j;Y%SaiUw>gCcrBc1?)-;y6LjG>x*cz*bCora>t6Xk<8E^
zYnX{-SC~wGL1XY)4k(QQA<=^~b5H;ge=o46uj;}@vGtPFm1w{0Lg&rXkVfLO`$Gp`
zm6Y!3(dTiPqf=%bbv;oJqqDCh=H=QjxYdkx)|k)tP1u>WL8&XoCvdxZBb(I4)Ffx9
zKSY6}{E~it@5>r#33|g=#+<Ak&YNs8%->6!BjXPp(_AeDhj>B4C4k6#EaP}Emv^|y
zis5g*!xZ%_)n=moc%;G|eXa^*pF)TJGh6ND$m{gg{D&^oQwNd1czBf4CUR#8m60J-
zAUl(+512W=Lq0KqrZ0w)Z)nc`B(x=F-Uz64ZjOf1=E#K>t>&*JN`WgvnqcoUnD^Qv
zeX-lMJm+r}zX6@*kczT4-Pa<cMK9x@Kxw806HAIR+9Um=>QpIMn}!o&;%oAgP9`oR
z&Xe3GOI}fT1&w{$1%nwSdP#)l`inJ@{K0H~AEPy!G~VlN1mBJ{^+E>El->PU_lf-y
zlAUmrP&=8t=&U~&uM;@?<MrgwG)$C}z#-6TIddewhM#pUQ&Z%&>1_)+-d$Cqv0CPH
z!$SRRe?!3)El=YbcGv2nl)9vgHP!oSnGd3z?))ZKIe#Pyasu~}I3(qQI{oq3`&<<I
zVCZk_thYbTptM04e*+Qne#t@GfgWpb$T3GC_gq#E-k<o`gieKix7jkd#mucNtPJc=
zYtRTXb_5W^(U$u8SFeSGY3i68D4ZKJgsy*r9yok*i4qA%w(sGj0bXgWACL9(ysOe|
z=WpD;SXIpzqnDSN4aU7;n9RYx0&_&EF-e&YTL;*TDK;+eC~8mE)Uv{VjMx1<cuKO{
zsA}4enz=t3kjst?$bhH%9XGLl{9A8ZbMO+A*LuVKz0&3AM#UPH7(O*wBF0op)7j|&
zY?tPltsV8~ozS1znM87EB&Sz?&`+wgf*_^}^)P8XdXTDR*QM)N&DZ{3k+~ahMbj8M
z+HEp6g17&}>-mEgl-?<y^car-cANJpa7c@3BmGS7l$*o@JBkgFiTMtfn6!7YyNiLo
zy8!mtawJpLq8-JG>)|PRa;_ezzkR%2MK!@4U}us)|L6p|otk^S#>pp;jy>F1)k%w&
za22c8^Z&U_0~cf-#i-Wku^X)Goyk8ZlvSnRF-ICZe=U1zUIVF!#NK$5me+&g!0SzS
z3r<JFp^J?U3dm{Rl&iZcl0E8nN^W9!6t2MDFk;T_B{NL_gtW$$LoO5_2eJxvl;I>X
zgOZv<tm%oudBDsCNFIR+zXGBxR%}QR#_rCJ(+5&C(3RFQCOhms-s9dm14RS<pJ5D1
zYLDqpDA&cXP#=<Qu;VugElGxbFFsfXo%5%~Zx;8>r7F&oIC!-|isSkiD)uI%m^p`E
zP-yB&L$ni{f;ZQ;DT;-(S#$MxXvGEbWjddoU=HKc{*<kuk6G3wvSm=;lrTWP6y0UG
zp_E160oT&f)2GL{M<_OTCllBJMn7w1#dv-M(lRh!7k=&{)FbnwC?`Tka*rF83nyU2
z=YAI0_E^VPqrgnH-L;E)OdqTQt(X2KzmaB-R8VU|su<hU=A=LW#4a5hT!c3i=44;j
zBB!T-e5!5`iou}hO%of>3)dc!LoEXg2f2X6ZC@G%w&J?Srb!XrIx04tzj5`jtFz8z
z7)ZTQ5zOV=I?Car`qI&ncB`EfF&>p#gxn=7Gn}s=875$dzw>ovLko?-<*GB)Htm+}
zF!2lh-v~+RZDqJ2cLeP2)3@WXC(Kc4{^|@FHH0WMiv`l{IIV>LjKTRPfzffWO#Y!C
zGAeA|==u7vfWl^V?C@D{=(0?<>+z>$>DCp%wrn<rIrH{t>H7j3!Wq{1Qra2P)mv-W
zZmVmwKZJT2>$o_WuD$>r23d-ps4ejRe!g$^LUtu$@~vV7crP41rj^n-uzX(PS6C-O
zTM<DY!D*tnQqgifgy`YdMro_8-cx3Cph~d67Ld%66o1q0XGeWO%Cta}3V?PrTJIe^
z2TVVk7k=%Bx|Q>PNECvQw;aNk3ngT^lNZuP0|b8gaOjwByV`qg39X!8Qk^f64c&*@
zHR@dQnmmsWi8UC<uU**fHOo|L-THS}J3Mx2Qb4^ysVUxDSg!;FGBd<nO!FM7WaYf(
z+i1{}+Bg2K%c~ZMvd(^4jFF_>3J$&JfKLt8E&TQMdHa^XXViQ1(L1dS3M<zD?mnqD
zyD=#_hF<y8M3oCgJ6`sC@1P8!?MqYICi6FXGh^8aSXtvGZSTHjl{dZ{2K8D8>hFZ^
zw-^S%g|aVt6S}<n8aZrHexkXz4Yrd-Del@N519_Uopx^+I8Pi7HsrcJIkIlP>0kG;
z%y|F0(IH{991HnsOueS}Mosdbg5QxWo^T-aP&nX^t@TyohIf&c8ush*;_q6U<Q4x%
z9{c}A7V0A&wYv8eK}arOs<q*RsIYj#j7y6PjwIK5R#*_;RlHkXL`nP5MAyM+R)3Be
z_4~c|U-q3hTN~5g<%)b#91QzQ@XpWVzntlL?R1m1HWNqRp|7PmokJAlv3&(t;SdrT
zzDy}jEAf#6sb1o6PlSAwpu@t?I=pJ!X^j_~oDpKbu`^Uad;_wQ$v$gX8EiCY>*@@{
z@=U$BQ(C=r-=Yuu;wYzL8G7lPnUx0F=+c{9F=}$y6O}knt&SoPb2NjZ0%daK@oq`(
z^-4_(Y0?S^P0`=G_)n8{VTe6S371SLGX0lboa!6&=ZA!4q(KpClF7nDLQwf*<J8Dk
zx;TW>$aum&8Z$ut@;oO_j5c{PXc5keeJq1ZghosL3aa0f2rLA`88YLSj;;<!rm^*~
z^(WkeuhdQ$GVB2a$T?5urzJu34pRkc?5jzF9U#Dt!?k=JgDFOYt;&f|Jg^{6Iy)hW
zxvvug6B7+;Xdb$*hd@-p`8s1q{dOLSUs}+Hw2=*R;m0n7bf0Gno6f^r_7e&FxU4jK
zD^7uz`Fp(+IHq7YtB8J)p1}}GqpFwe6OkmEV&{V<11l26GXS50=NV}4QL!1@?*zT+
z57ig(^5-Ggz4lM@99458DC#~%R!wycq}hOtwmue(5lOlHduNx3yBV$^Z`yYoy>eL+
z&W=VIlOheno$3N_wHRqo5ZMOhYysjq0;^cTIR9AnC#Eo;Xz9q1&O>7CsTZtTRF5_J
z)rrF>Le-F4WFUj^?Xwtoy89w}c&OuDTGK8)8HF+h=fyJpIxb@ITkh{>_(`k_VFcAW
zRUyAd@Z!nVNCkypc=#sUD&wsYO|3fDbHGup*Q{$2i!sKw$4Gvsm6F1!CTmV>@N~m+
zMLUq}<jtlWB6w))Y9gCG?QufoiBHk-f?>!7M4ZM~3G=wAroc;6y113S?K?NOAthrJ
z^9nWb$)*T7^@z1beHwwT!)Th#P;3nP=@8wi5>`<^@N>;!-WyjFAE9XiF7io5gKbj-
zZ@lMHtoktjq`|J^^iPfh)MaLH)o)NrvFV6|=Wt2;pY37a1Ri!tl6_g$W>M8aswPo5
zlcmr8XEvjh1C$P<7PL<n5bNoEmJ||yt5??zdQM{ZC-W<wtU<;j%WmQmv*hN~miTes
z5;KLWo6`-N)lpCWdUDB34@;h!mXJOJ^-{&k|B4rt2V#f!6DzAB@H*3Vf{R{j(?wMm
zu|__U7Ns?5G8n(DlSvMCX2JW;zSgqIgCJagw9h*P+V`triJn(aU<o3hcs@~;&e5xc
z$lWK}hta{+qll+y`(?#@dBRC6r3ZU%O|nfJi1r=UcCySAwV%p9htI1q!3BwlQ=?A{
zmXcB{8a^AbM7t!7OR$Qu{}_m2gG!t{G2JAlUGhTJiM6aUq}z<jPcHQ|J_k_`+TB`i
zq-c=B7=5ckm0@1DEa(S5GWG}@ZzPTks5WA=HtVZ-=v<7DZhF6;O-oTOOHED@hHFZt
zVe>?SCuw))SN9=ztagBaneqLA^-_CW0cko?ulAvP^nG$3^mU!)kZW3#GFcbMj#njR
zP}MK!X$lO^<y!HEU*A`J<c)EDyKEI5&5%YNwJdkZLszC8rR{<`P$ke>B&sXsQ0!p$
z8KB3+sFixoWbS)sUumX2)mS7}$o{+GA+W5)l^8LbAk3S6C^X|c#_#mYvrk;YFHS=?
z?M%TzQJSwH{9V8C0m9M<O*7hMGx5+!X!i%s)Jx^(h$7#W;QN7PemVp%DG^^6K*#&E
zpIgRPXBhn$#SMNyC^c60#`LjR(8WtEBgmc?#-w>fRsGuG_Tef%Smyq+r}4>;nX^tH
zs!5)|-z)mB{3K{7PVjvgl}DAIBn8`Ti|dTKP)M(Ol|hqpJ|i!$zhyMcyWpc@7K8jG
ztd6!tURQ-ii95k_L%g!%LuW+OUp|v7NBZHO4*Qus|H9ty-^3YO$1$2~>S}Hwb$=4y
zUz0z@%se&FyI@mGRlE)c>9((>4cdGP@FiPuT5?yTFN4>eoAlgZj0L}6vA8%gcsc3M
zf+kYsc3t8^Mr}+Gvp%*~<U4ivgC7wbs=mCaGC_f{3nclQ%&&r!8w<L4PRyts1rKy&
zr0Z;PvEwz-`Z>qjvx1~8ECvd5>X|CM1p)0q{kX2t&nA#;XH0$X+x?rZb{~uRG>dW^
z_(e{RP3#9^FyFvSzyFAR|2<~cN&evxi5*wRt;@#%5}sh~9g@#DqvVg7EH;=dYo8dQ
z11YJ%?`V(tMXCo~7abbkOl{T~w0&UGBGOYQauyhB!t=S`tJ24)P?8lt%H2634~mb+
zO!`#TBCKDYf?>GSpP)OLv%y)T6tZV0Ld;8=X_WYhkXSj6`q=_&K{xDz+Ix$0l8{QY
zZh?04Y=Z=RoE#n9Sqn4|F5Lq5<oc!$G4a~S%MVO>zw21mP2}tLhw6RKA|4&ox=k#f
zu-nGs274mK(KY+N=WMpboN^h28#R_?Ygcl$Uz!JpN<b-!QCt~WUBOscfE!0R--yBW
zP?G+E`*hb1)$_Dk?QORoCr?N+1taHUu6d!ySz9RVaKGy_oZwixFliU7^2fG;o~jBh
zo`;SfHRp`S)V^PZJYqmIn`h)0@w@m%3}3pr7uk1mcX(5&GT~2NQ0c0#JIR7W7Vf!)
z#iKT;Z=dc9xH|rDy`Wl(8YwA#pQWCaX?LS&n8}40G6dEKo72y9)w0!YPkZuxRqi69
zRxf(oTdp$ISDFl9GvD=?7q&`I5nGuTfwL;cMbTOTcP@|}q0f}WIbW=F`1M>?AuCGP
zW*20~awjCjbQY!lch~bYcgz1A0c0nZASWSl5zhh2_>%&pKZtKIp0@)Cg1vb8+{a9k
zd~5_8<N&4BDp8@iGN#JMC;5&29HoR5eC#61a3h>}1E2}5770#9s3wRoGl>=6F__IT
z6X&o26&s0U!p?c$FjQ!?ClKC$u3aZKPFB7TViQ%jR8#5kJPCRI@vE=r%*T;a;7xIS
zkuWCM3|sw8taF8u>MjyIFi^>S;?$qb|EJ09vdH&%^k_+fHA_2RV(}X!2P<o1N?Grx
zHPsA!zoKU`ru9uuBZafBm()S;_Z${STFGkz$g+(~&O)_}@+6yD0hG8RmMwKm2xBZU
z=|DTGmRy$r7uFN|jNAlx{xV;c15-v09h+|Qplvsi`DZXS3AHe!K!3XVQ;9xp9;lbS
zQ~T@xHF7G=Nz^G1iLx9Fc(^fPq}?VqB2XhL#e57Ue!WqyNK;$IjyK&5quKU?c3)*i
z==E9=iD$@jd}emdjk7UbM-i3y;Z8F~{Sp5f%kVtyCI1Fa7p8*@JYdNx&Dg%_l1$9Q
zK3n%2P2i&<v_YtBUMG$fr4|?YDipujAciie)CEsAWHUkBt;cmEap!(&F7mlj|JmKv
zH93dX31>Xfo#=~W9O$dc<w7;snF>o7rHiuiD3O$DAE66A14W}_1VtCKaYgd16wwe#
zvqxMq-tRIe*+ut_9Bmz1Nrg{umaafr%^fY2(C&zgEs67=^!ek`E<xGB&Ca7stqeu5
z6)s%|yBarTvS9{4f!%@clsMxERANYyZNuNYk}SZO67z0bV7X<lq*bsoDW$}60zhe6
zjM31z&uXUr;xzc%NgPDw*AMVX_ZxLSA8y%^7k!K-*PeVkP(M#hm`P!aXG^in+v_@y
z|B5Ofwlct&zn;6tGA%M;WVQkF!`_71`gp$-qj&jTR-$OPte7PTQt6k0KRsA%{2DQx
z$GTqR>LxV2#^q?Qlv#M4<h$u3x~nngAh_#35^g9squ%rTz`qZrzs|=0=XF_%L>rlF
zkdAo5i9*MaEsBShteA}em#xkf_0|5qPVbOl(Y<kE3ZAZuv(P5W9AB)POr{NvCPY_H
zZcaQ8rWUMKI>X_YVDcZR)Z<@%`f#Z@4OjKg%|2_Egb@Y~Cj`8|pRNC2rh)(dY;A%A
zAERSF_y1>Nd?ki09sA+7JIJ1QpHJLVML@GmT`}?)qE~o3B0>5yDl)PhXWY`3_+ltF
z9liH854orEDqu#m*UR>Vcuiru0TU||9@9D*vhRF<aZ%wH%a{^M4`w*xK1-zTrMXFe
zblx|{cKaV2dQ!Hr94VBLmNJ~onr8;Dc>}O5e-`A_ok`RXc9v*e2w1ww$kz7g40U6k
zd8(uj=Ix0l<KvBZ!66m@Cj=axS_%OF7MhSWXgx*luiKRrkV9(FKM6FAtNyLt8!<w}
zqwE$;ycxFdV1w7i@5|UWE4~m^FmZnb=-j2okr(d)6Gg#Wv99vEL(?7tHvXFrU%&3V
z4aP(BT?YyO0d8d}q~~LKc?iowUF5w3liyHj>eI>WEd#(qOD^bPED-jjwsJ>)2xqDk
zFfQ!@=84?9DMi_95r70;@q=rHiohEFFq--(`9G)Xwp~y8$Q9<cELcrZy4SaP&~ue>
zDw#1h+d}l;iRue1;LXaXIgvu2MKS~(41RWKUu@JZx$pfL3k6xXpZC}mg!|qC*`tN_
z)Ufox^Bb(=&3A`MH!haGE&wHIUag<?Od|a(<vxr6qfV*J?yK8s?(xf~j}z{xPLIHk
zlS0@wRRYA7Dd9hgG*D#w*<8^WR?)i`^U?LRM}=mP0*mZd#q!}w{eiOgCB95*QhxLf
zMBPn{i|0zys0POL)pnrdZ&P!40CsB39TPb?QNkjWu`<H{?LY`9>e|dGe&>GNSku;<
zJbt;9r&1-;!}LQO@nYdmrel@vW#mXlR72!!mG;D>dP<UX6wLx*!ZcZKNSvDg1B3F2
z&iVUs^gH|o{C7Y@i`D!RO$BLh=*JD5OagL&uR1qo!QK7UU$rLd-2c>mCe+ECmTt8y
zq?Nd>Nf062x5;#@i?eO+$q;;4q>&sRy>eQW4z~Ox*gHMHn(l28JHbT$H;V}k!?s0t
z=f6Mj|4W)bUJj%;+w`Yq1b>0>4X@mzL`?GKNi@JV2Z63xrlMIuDEVT<W`LHe10ryY
zK3HO@PeO=kuC2@`*HynahL26n&uO8q?2u!(o}I3?lmqXs9V;9RF1=L9;8ysu1f=oc
z_4lKhZ}K^iym8H)_Pvale}D{Yf=u-hjScQI^W4FI@bD6x0pSxma$m51sm4+AMilTU
zFNR{{1m~u+AX(NqHwP4=JjkIzjC{Mz04J><BVo#~E1XwJQXZ#QT;EG0O`hc0Tlb44
z7Z-rFr~^%l&n-(NjKC|%8w3)oRyaQXIj@yoH=hi%$&qXUN!2QlP19lH-c|q8q(a%3
zkJ(t?nH2;j0d0)DH8~soeG`ltC((lHzYEd>k_Dr7!oNsVqh9tsOh|q)G6iU#%gajZ
zB3B;34PwDVdH4jV5duqUD54Qi?W(Y&)op;a$hhtSASKRng#PxCVkom#!;FKrw!^AU
z$!*w&kjdPBq8?~fgk>R_aLT{CH@4w#;bObHbJ+B1M?ip~(}eH_ezVm-?D`SqiC;4J
z4<cEUO66Caw!CDv^*$E|nktcPSWs{xCAq@#MdZ7Y0yM-bmtA%U%{71j8=zTL={5MA
zx=06F*K9#cUGV)`zD6uv(CH}SNa4^z3Q$V5)E@w(<j4lE5GN&4cSDi|UnA(WrZESb
zXkXwrYNXu17&dOXfUEV2yNX^>Kr~)lasH)G+whQ*h+frBcs<Rw-n7cXTbX9_cfaY+
zmy#ac1MW+nnLI?)k?8ND`R!n|X@iGIr9h^3RPJh|i#3izh(lqAx)DJnBcCL}U2EnU
zx%)g_n@JY4Y&^UD_wP^nE4Wt=N=g7z#Hmxr99t?!-A-lm#u1b`kV&rlrIKpE7uo^f
zDsPW#;1+qdP~}HB<8qVVbvUc+V(C4FuYEm`R{ZPZ17BYUtj;V?zh?iwQ7N=U=-rdY
zjI=)}e~>5rU%vqHA0FY|X^0;q{~3&l5B3z^WB)_B`~W>)Q1?Zt)Wl;xp@jeQ`<w!1
zHVS^3d>o9Kxt(m+mw)IgD5x{_X&;LNWlq}wRa^kL8n=C43bAe$E=b=qnb@O7<1`Bk
zu?%?Jpq9qD4cOme)tk~+dUD?lzZB2*w$96kdZorTMQyR$-z-3&PxBRGFZEz?pV3|7
zLd?TkWJ4_iAt#Q-D7!BrKm$Uw2I;2plrn@F-b6%H5#%zKAjlgl%#4h)MBq~hj%F(N
z!(4b#xfC|DSEZVT-HU*k+BO~Qzz^~0I8w0J30<D=Y41b;Krus!i_6-N3CLjaW+}h^
zryh}qGHHx=;P5uy7Ji(9RH-Q$$r2Rdm~d-SJd0~u1j3uLi8Nj^THe4Zzi)B-5#aHo
zW~onOSl!?Jex_#(6lSG5|7##73%A~cfO>_ADqf3UjB&O8#CzON5GFePMVISB$LoL?
z2YM|3y##P~b!CEzISMM|Y4`KU2+Ydq7hdegym_FdnIY8HP_W3jX_L&E$>HVfg8czf
zzq%M`gA;Ucv5^qVnPSx&#Vi+q1h1>|<ZnFB%x}7B%=nd3$rGRr;>l23{GgUVSGH}t
zb&?QVPmWg4?ETL);Oo4^EttR30zx#7=Q?-eBoyrc+`}O|X{J%YyVyl2TKKN+OXMzm
z7&co>cs<z^BL~EQ3oFFxwlw#jW>P5>40@i7N~x0V_&?>zzDd+Lqe}KRfd@lzBCB|M
zpDoA`wc8r;wJse_6)Ne)J)el75PF%tSO~Xd$|-e;qKC2JL0^Vf5Ql^5j%nr~a>DLI
zjjO(=F<uixnu2KgF+6sz)P8evgc6oFc>I@<mYIiF&l{7NbbUU3;Sg9ni+qR?Tu^=)
zV@kSGYQwBnB5tO`p5?Sko@jIvd`LK6*ilbj@fR}Vu{u1at3cvZ!Hq>3tbZdzh^Z4q
z!6@!9S(;%hROLb<y&J7s<FR`-e3%K?m&oFwU+fT0HTOBiBV<YYUw8Z8+*}|BU7R&}
zYhBP)TID{QYfqMcv-Mm%`k9V2jR+m;-?KOAGmdh&w=NgidZB@GO1{0<ysWy*@9L+S
zc*=*UCmbxQ@M!&6x3DE{K{slqYnNtZyDjCKNaVVtF0?XN_tRr+E}jZa4@)EYgB}*2
zLQ>IxsXhP8$Ea$X{sY-8TV)g7Y-qoE7TizobXBs^i3KluXf))CM;6uTOOGd9kPwR@
zg#DWRT1Nh<x@Nmc<rFbG4~T<~6N*pp>L1yXk%>5V_;*MrI-xk&4o`Mw89<~tJ(0R~
z2E0X44e%7i>0*FbT6QmLA1E)hkATNJa-&n!)9#0@o5*RA&IGV4CMjYo1FW#>z)^1V
zUTih?P8yIZVlRw-4iCb~AOB1KojSm(aL7p8*`=KNz+!NUi-$J`<W!uZNW20mE(0yH
zv8N(;>LTLl^-Xt{I~R>hFM7NH2c+DX#4<V^qp)ct8A*8SenS=zg!N%Ji|Vsm`0*Nt
z&R^W9FhvnIo+t>a5aAR__5ow_xT`M%)PYu#@X`2>7_N0HQ~qmDy6KQqxj+ryJT6FO
z^oR~_pLl}rjk?^3YqT~F>3u9&u*<XPm2?%b^U<?=0HA8Oa4^@k#+yu%Gj6|^Q~I8b
zy^dxBKEo!dp>{v$#^b6Zzd{9lP=*>5(+=T?U}+I#_JD^I)rP;|z*sK|aH3AcOgkSL
zHqy@GN+Py0-ZP-g$0V@%3-%*Cm3rufHErN(p@cNli|v~C%rDC)x#di7s-I62-!02v
zQCSY%uEoAurQM7Yzg!DGe;Uw+PTn@ib~{bD3V2%@Xts^t72vD3{5~N%VR27FU|T)y
zruYkrrj3v}e+mSCZ8rJ8SO_|NUTl{M`s7#GL7!{8iW+>S&nO(1!{fuztAEXX?KFj}
z<X03xl5oN?H}rqR;hugBZ^$*v;4ko3+qqw^^PRLP;x)L1WzwS!>g(6nR@a`t#rH$t
z-G$#QeUsV#ab0@yeo=6>{Gwabowm_B-{9v(;Z%H>rRrA$F#S=CN4$bNnbkA@jNm=R
zQvN_yM7P&xF(Mb}K>@balIKi}pk9BVZ{aJaT{Uhw0El1@@&@dxN2IvD=1`33x4gx~
z7l!uLA%T|6-Jy>I+Ae_q9Jzu2o7$ToBB|;quHWzCj&-Lpno@+f&C*^u$D)C}BIeR&
z>Cu&j@?A1p8tD1^aTHQKshZe5rbVe;`v;3>QNl5PdJ8!%-`It3^rH9OVaJ1{d>~>U
zVE>s8G|Rpi<NrnspU6qs4qR^9^!5|2WH+`ZjTU3`-Rcim>2edjXMC60SY-u4H>)xm
zh+)sD*w9S5vjV*O*2h?$VfO_uC%fm?!%JYbW0>UQQ#n7^!+G-iJ5VMo0*nt|7>Ls#
z>OyLg-kq3le!h2@IZj6udw+#usz=6%IuXb3jtlJ*UVRN@(Vwh~Va?DHVTz5Ef?NQ*
zWaPSWLjQ6D&px5gPifyxzf33Z<Xy1obe_t00+}CjM}#DEbn#+Yjz1^tIP7O_NoL;1
zjllLKce7MY1l`+MuN)EyNcl#oLd6~bp$__n%*8h&z#E@TVtLq7xsn;=sdZD?d0c4-
zueYQN8K>W0s1a;QfARps^~9#^%KxwTVCg$WX;^9?S|*-eUI_a-C(Eo8Qp?AObW<TI
zOan6#?=cz(&lNk$hW&-?QV_B$h#jxuqnKv{h^~(9x*Kg9pq^6zj1x>V>8G7iQQz6m
ztB=C3jC8-e{iUMun*j};7)06AE$Xd&^{;ZAcpA4Ev*MlB!BSYfqh)of%fH!iA-5?I
z9<B2f`fd2mQfZi_=tX!K`)BQTmf%~XF3X};;eE-|3H{Ab{w{M~G@L*T*c51^Rl|co
z<b#46=^GWAsKuJj7%9?3=#c^u5l`dA?=N2s2#TBfvMb+drTLuhObEfdk1@K@o1{O}
zb4?0kM?~hbtwBB|jJPKai+JzZbpUz6h=4g?jw?bL{c!U-A~@_>jAT5TZ;UA*-j78P
zdoU?+2epCnGkGCza&REg(4_B3>C3!7({HujmYO(H75cx@(5j#ZvzNU5Xm|7SH~Rw0
zHwF>UUogB1G%8RKAC#Jyd!+D7mlkL!(t>1#QU2;??}4VB`D<9mW+Yfr8P8zIH-QI~
zS&p>-)gohf7!Q^EQvpDz`;S~P3ZRxrEP>c)Do^RK7iPH^hbNw$08iPIva)w`m4YU;
zFXRNbcJLND-})XaJa~L-vtC+DeRl#o8N&d1awaVLr5<<-I@rC~r?`8vaIS+DNU7*u
zaxhaVz2pNZ8J`)bT)TFY=l`=CmO-b>dNRp5+$voFq5F0t3obB1qnh|xj$U2mBYhJ0
zdley<)%#p_@L*{~=ehP|YM_{HsN0^M4TEnPjla=lh`16>PaFbG%4CvLbwT@?bCEg*
z)~LP`4pMzVOfZ)gymNU)cg5-#dy{>P+bg}Gcg>;vq5VTWczfBVjS#8DFF*YwaUwp@
z&&&vO>b@}UMSc7_W=tfn2ZrZh9FPP2`)%=Eosw+L)0l;XSl*@xCiNA9nxa{W;Xtlv
zHvW&_D*lTFV0>a<e3cW25VPG{q>g@0aY_w8*;Eqi_M)FT!+la<m40j}nknA*km<pm
zbKa04b^dzBQ5qw^%B&=(cv<G6zukJ5#w5dAgObR%D0!e2C)_i{;og$meR;TU`KujS
zFX-sj=H-*yuP|(jslA7q`%K5lxy0LrKgRV>P-ZLXB%_fi1swlVL|}2JcN`(l$CsI=
zW2!>C?O)b+Q~{@7v5cuIS<+y;X+g_n2~M#}oMdY0Psg=z5Oe$kEw*eEOdoA&Cq{DI
zP5c}qc-|5wt&|bSnRQdh`o7hrN1^6uWcv=jE#>(>{cs;k!qPhKmj!Le=UH|%g8BVl
zcm!q+cpnR@I=`slCDD~4ATq{cBuF~9qFbXkx24q&e`+UW1;$aS^hq7SjWqw8LZNXk
z6Sfsy*b_B{|KUh^8h9Q4Xf=-RzS-Ag*e~`^`*=xt{hf^UQ1qdCYm5gsA9IX=`hthx
z)<{}<%~n)!#3-6}n{#T6e-?TiuN7n8d7FBg<Ms?Bhg&_fk-tw3l66v}HS^g5qFv(_
zG4DI^*aOXNc+Ud;;&EU>RsQ_v2h-D`ri35MiB~DBa|b>uqLGkWGu$kGp{+hOHkx34
zM8e&<HP7oly%@V)xViQyuhOFe!i7SxGBv!DSVk?3y?~Dp$=ce&0H-U+uBzJ1TKlZF
zTfS$DP{D6+C@HPuQ)00S6~s%#Vvr#sU6jXr>fk#NOGUCxt?xxC?o}n+$neZ07`InW
z-&tPUyfQ+9ouQUH!t`FB6s(e!?(r$ke5$EEYYUg}MGVPymi{dR&7FuH>;eae`GxZK
zNBv)ld-$ib2S#Fe{p_H^AuN}aXl4dVo+S3Ug9LB8VIuEU30kzK?jSw`Y$$G3>3$?~
zcOZm<RAvf}{y4&|;0-oG&@S#@?DEOm9j@Ud$8e*60xHAf=%!9wv~_?H1{YXRzHNgr
zs7(JNzS$H}3b%s)Fz=$S$z^NfLqfVQ_GF$?SFV=2l9o;VVDcva^cU*{6Quf^*$Tia
z5mPf+vugh%S}6N&knMIYG2T612q|FDf2-J>=94UT64oHY&pO11`t&C+W{#$(c`kmq
zpqJ69xB2)^Ml{4ZyzG5Pth9fj|8dl3dVf6^0-T`tAs*7o5W0AU$x1AQ0(N-f#b(kh
zBkFJcAW#lw*svtqQ0Ne1Dwml6<8kM4sZKg;QJQ}F(P^eQ=KE9SYbefXA$uN?hWs$*
z*2{%*;TYw3YFfuvsm8<twuMrGNDvMMVulS7D6kK{E1kv231r(KSEe^Vd2{P5p9DF?
z_of+pQz?C0EZMv;x3nYR&MB-)cD&(!>^xCh#^xwY+|i5o18j2D?A_-&jO8F~ZEcL`
zah)(0auh!hapZN-KF%ulqmc4%V{8QK33`NM*bUERdZnadP`!Q~P1l<(hzZ7MOQrtp
z_~cy++L~rrGH*aRw0}UYXl#im`7$m6#ytYj`1<Eb!=hD1DF}3m$0+{i)8|u4*krG6
z5u0L|-PNmeR@%%Az6)gi&)~N1i{!(S<e|1CA<p~TQu{dWm=AzF<DSw^`WECMLJpdF
z=4>e*gekqSz=DEo$}C8?%iX<KYt9gOmr7N8xk0RgcQx9GvpH8vfa6R$2vBTk3<Qq}
z*I!?w<7Clqx-D!7JJg<q#EVV+91x0MEJ5X}3xi{)^7gj*CK4m|8d_Qgy~17kiU}X6
z2KRtLuP61f=V+E~`%L?$`4aWtm-gngTr4G8p`QYV_`jKs>KP8F`l2)Sw6}{J-tXgC
zp9kDv7+_8i)Sc~<TrH&Az2)6~TYFh(Iu1{1Xj2aB8hh4<H+GAq!CP_jR-dsAWx|vh
z!j<DhyZR=jli{dVu7b3E`&(>Pk<=W4<&c8YTZ>_94R<FjBE`6RV<ol_ZZfmPpYA)k
za@|=sKWWj)YBbZvh^e`9uiNx5uemqu!eGweUV(=U5_IBihhi1!&%NR`%Dbbi)?Jq!
zSQCyFw6yPc4R(#Aq+)g6ty_ep3;NuT@b5Qw+ze*UGD$(c`73l1sb^cfWffLHe!Fc=
z8$}Tw@^CcL*v-t}PkumNuD0Wt?J3+7!NK_aFLZTIXiSEAxXU`j-n{6>;-zX}a~t+;
zYblcR9v^_xm^cnFObE9iW+Hwt^HK-n^fJ0FP+V*LFK6fbpbs$Y;k{vjfl`xpobY82
zvYN;bKNpiZ*m%_*F6Wb<aq;Z?9KcEMZ!<D3{)!2f`GvhT_kY;tQ{y+{f7i0xGDW&Q
z$4Zky(6GosOPZR&xp%>jXMJx?I+kP0EM-`?Z<_jygMVzXuJL|EEvlkb_prJDZDDl;
zhWY3yG%;2uU}fp)-F1rXyn{tguSQfQMdmZc5m=#9ZsWmSAJ$$o^}WSgS=i3^-aQLh
zV4s~XKxAVaj_#@$|3aQN44VjFi`+U>p4Q#;MO`JHb%`ZU%zJEBSw<1GATozDpfcPf
zWOnN&G!IP^FEBasoZm#x{uzgTT`*WsUa#%hewftVS(5Q+ip>ELF_EhSyS+?%q#=vj
zUD5j|tO|m!YQb3R!GaWK)jFhU`p>sA&aBEpzaG3GlJ3Di9bLNx)C(keAB$LgBJBw!
zu)ay5ZsVJW6P95$HiJ<LY~*-r?D9J=mW+yGLd;pS+W1_Lu`@k-E%Rq{OD{XK8a_($
zFY{n*^Bk*@>)r08jnu@U&|nYM;rLT8RK-5Gk-VeO9H!Y6F>@mfFN)vHh=OR5*+OKA
z$Vs6cn_9F}ABcA8-wrl3+h<LyvkAZAq#X~Gd79BfKoUf`kU<M?0*TKNFsM0)JR(;*
za$dIa$svS6VKog3WW*$;{-RL6D9kaLU`(<>{AfR<ICe%jLX$Ti#<!iv{>o&gjB69!
zf!;uXhwL};RZ`y&U;of8t-Z8c!u=P~fWKEF?x3Xa(X7uWS}b#X*As2Cem6MH%Ji%5
zCRg}=(-2&j74318xRTZn+e|5s(GaKvu5B}IP~%yjsd82QpvknzCU@#FzcZTe_48#&
z!;ci<I?-&uXjs*D9Z!H<untqlrOtRUdx3<XUY-I~#7$@wq3+#=*dy1eQL<{XCovhj
zy%Wy??n+~w<p=;w(Q_!-jgI-1`~Kp<VU=bq2xwq}iF9m9z&EChRK*Bv`C<*B2d;kh
zfE=Lr)-UAs5Neoz^_0gk%x$7ctv^n4_a*bUv(uW#aZa+=PAT#r+{}8sQBEg&@`k%w
zp2ud6eTnnMzFl0!ZlpyWo3o{yHn0Y!L@4gKPmOu460ia&=H}KPWjd<C=)l};?u#Jm
zHx^*Q5BD|>J`&AL8G)qNgmk=7^Nq%Pp?iUsS>I@DF4^e&c2X)W?Ps1??ulbwGlEK+
zSAzTS{#WPEU);>blR(gkaD`EqoRXtmW{CjX^S&-SgyM$yn)WL;e>B~%ErI^0=wX*>
zv6qK3N~4{rL+Pm;h6_}0++y(~Et!#rN~qI~SXbtQxgvUW<s!*%r<utC*PQ=jwu+ZP
zJ3w;pz=&Iv#;^Kp%?BkhBB1P9cTu)WEw!x1EtBQ!Yy|wY9z0{{1V}ZTdrJe4<<4?r
z?p6OiPLsAtw?#{})5W<i%PA)*EM$-RC}9#)`rpRo?{<RhZ)<)gbDCHK;x;Q{x7)k8
zyw1F!j5{5yKtTtr#M6IzFsCt6!L&Fo*Xd_G?xaa%@+7L+m34;-M2hu~Bye<IL`the
zKL}#-Sg2%=UIB>SkVs$&h*Swg)`-Rv_JH<O46vn9GPJKIC3TtE3jhHFFmKa+)X3mv
zWT3q!?~(VRLnvfOB|S<?Na|HDR)TrvL!&*?uEhC0!*`AO`|~TX%&O1B>4CGp47Tz4
z@LuoNOV8@XK6aWP?zDJ$^Ith}Es^%4f!4u7rw_BszBuF{t8$W(Pp?pwvFWlmU9zGb
znNOAN+{^xako&wF_<?Q@GIV5xpY=qB-thJ`kX7FEM?F~Zm2{gM1}ZR~5K5bb3F0WA
zLo8GP7b5I#c;>MDFD0mirL6A<Q==pbcV6#~mhG^^8ev|$_UTO9ECa)R!**v{qdMre
zoS}E|Ri^FA5$Eg;?0VP!xA?L3i}=ku_ZzovlpnKtW^!zrUL&$ch<X1M=pdzTju`q2
ze1feH`JVO1&qvemQcRK#a%l&?(<HIHZ#tVAu&S8?0+SP%hfSUzxL@ikGwl{Zv{<{X
zqhZ%;mb-e|Ir+O)n*lUGO*mI@65l?H2`K|n!rA{H!rn5ft}tsF41~ZX*ad>SyL)g?
zf(Lg9?(XguNC@uk?(XjH7Tn!^4sUnAU(a;U%%7~4wJv1k-1F>b@2c8W{`q}nrTw7>
zmyig4309$g{i-dcy;rNV8#wW@N~$d2{3@t!jgByC9nVtAhEY+Ha}B<~Xjvi}SKt2Q
z$~i!Sq>T^m=Mv|NGjivcfr7PJoxUX<^e5SBBZLraRGNRZ3rnqp5(*CJFHUQ#=~F&w
z&Fvg1yzSh&_|``-M>9Ai>F3+YNXzpvatIpb>2m6PsEDK(x?6{A^}(WH9lGW-6W#u_
z-m~Cee^lvm9GUHK0>F}hs|I`DpHyfie9{`@^K8@%HpFn5ZZ7KAm~LCZE*IN#K;%n!
zy&!iK$j+$r12R#r4HAo$d7vkddUsih9M~f>?02(2)klsnRR#X8qT@gAPtG(U6f}!J
zY&XM!Q1HjdRRO9}@SPOrG~EFQ_7WI9q)K&ojGXs+f?*M!2`|)961h6Ebb#6Q%Ghq%
zrf)$R_p^QeOy!{A$6(HQE&Z&3eqe2zGEYeu2jjQ2sSt}QW<~1%fUmMLV1dieJCP<q
zOh_rP300{AIb{hjP?%AnU!8}|i~jMMIk0iRez9c#Y)!X`t112)vBI;1{m(u0e-qkH
z(?MxuW+dC$dkOIrkDTtuK$wijWHxx!$E|Z=!)f}M?}chSo@j8$?Pj=@!*<%kewI7A
zP9^>=0Y&JW-Xje)<(0V(#MU9f!~Wpun^q)OLnSrmowb1S_ZFvSQci@^^@NunC5~S}
z_3<XP;73<s#0%vz8a50`PeAo06zK+{o7F9MpYDK=B$X;tp>~l&ik%h8Q)5B@auSoC
zWRCq}*r;$WFF6ER<a|-6H$%{e+f#zvcL=f^%htlqB^3AK-i{ckzlp2MUV(+TE!%J&
zzUyiE*t5ktEA2;5<E750A{zIk@xI^$g9rNkFvgmK%zq%+Z|=j`VN`qgysq(HPn!fv
zQ_d%P6JRu-LQpv@cFAo&5D<qv>ZRaN;PgMPD*3!nv(5;?H895qSS&kX;Dlri-Zdfl
zlK;fT1zx~96*8>}Tk&o4toncg`3za7?=?~!A8R#N`bPx%KCq9w0Hj@a8T~F13&%#&
zIvhw0Y6lFEjkH5;f747kD{I(@<|{@r=E<btLsBdvZTA9k&!l;<;{C)hxYph?!NIxF
z?x54BZd4gerfbPG|AkS&jd}7D8d^dKDn;U(F_sv@SL7dCXX{;;k<qSL<OY81;!<fj
zvCr{z{)7Py12bP4xk2j)Rdew_a}XOWgi6;wm`R%-r1JqGf?RVQWwGlSHh<jPkC+oJ
z_b&}t#!c^qs7MoUp5N@0-)y?L09d$WR+#n0HqAB|x?fq_W9I2%h(XtwPOTcmwi1EI
z&E8x_@z49ELDXA{53nw7^#KQxi>w^Qs=KpQ8$*pdzXCCAi%jEhK-2M;Q^WA~$uWGk
z4<)nAIc;-gHg}U_;t8FOhl!Q^t%KOY2<e_A<Am{~1=VylAK^3w3fcmEN8tqRyhHyB
zS$K^Mfqo;x8E1z6d0TCiD>N7RJWE{k9n|=27o?5UfEbR2epVq8xe`PDUr3TmjOHr<
zZpTIemo@BQPZcT_fgL3=TY(+2_3Hy`NYxUfu~hZ~<B}nY2?K}rtVY%dESBCsPbzoZ
zK<IO!oz}4(W6+V0&VenU#)x$$#Rn3e3G4ujY#@hMNZR#bKW_xMip*EU^%m)yj!+uc
z-+W^+w00l1CM6iy06Y@W&jT3IhJiQ22t#yYdN%uO)EQRpAdzpuf8kpGO>Nj9)Sjqw
z^Ije@^VgT>1|@{xYl^aKssB*?5;{N;;y11hCO_VON0QP6G>ZbcAi!M$A9hPvQa1vZ
zYZ4kpZkUW<G>zY@hJ?T{RKnwWuF=6vf^X}&2g-?E<p|*QiSEmro0pS;Z8_klIvpP&
zODBdM00dqg!9*h~=P*i!uR<+fnsXh>5=+u}C(7IT_4zgls9*EFJ^a<)o&bpgjXDu;
z!Uv43T}H`%XxU%U{w2--uio*57$8arCJf3_LEUtE>~jkFxpd`eWx)OL|EXstB!k)j
z1=?zV38wlG8<5po!mYaY0RblgEyrh})B8zfKD$Ac{ZZMi&0@}BSm_xiNv1cPmF9i;
zPi}nAP?y&MWWy-U$0V#ZDW<U95%!#(p%H1}z{SHfiZ-Jai$x=Tx97v?U&Qirjq=Km
z7V~y-9w?nu40KFV>b2}%`%dNePuom}FIOL@th^rN^90mY3djs&V@eq5)L3igMiOh7
z;%R$u_kr_afKI2TzoLV!EQ<UE1EPAY0W$I<ox_*Y)s_|Uo$EPmnflo<HY6WDj|YE-
zfQEH*sPF*5V?GhV*U@vnTz3a}KMPSvyOop~J8(sJgjq=ZduwLZhEVjF!W;AlQ0B}=
zM~SdUQ+b!{4-_V}$NAsvyWf)Kb^u#x766V3Hkr<k3`at(2OQec-@HX^(c7T^zc@YF
zHsoMZ!da^?2e(T!=jEQeZLKZ;anPoDp*~+P4*fxd`-qbOJo>~xnGLynb7g?-q;yc4
zDQe4DLYL$~CE3od%v#l4coG}Olj|{WzX18uW}X#rWebs<?7W;(JZh|BR%QLx1B#)6
z)v@g~*3Rw#Y6%WUat_>Xf)z#UkI(k%WA<yNLBGA7=XIMBHa5OXsL|5UaEv5zQ~>$o
zE&c95CUb{_T~!A(PJ93y#-g+5bB(V6)%l?u@|O=jZ{-Qsx*Z~83UEd4Mkyk!{-N}i
zc#o8pL1*K@(uPZ}CG%aVedHAIiR35amy2+{J}{tf+{?5UK6zUxs=*X%NMSQm>a>vb
z?t`@;fD(c7-2?(wKJBs=J$6G(s6#=L8Ky-78W(y}0^9J}aiG|x%K!ho;1nQMdtteY
zgfOvZo;YU0zK0Os*8iq_I|rS$Y?%uFbV^8~0MJB)HuggctnMb_aV-@~^rzqXHRX)s
z<{y}>Cyo*f?=u4oH&Y%G7p7V{O1Pa^EE<a~lw!*mX&~(~Q)X8P?J35{V!)7LVeb*b
ziu8Aow3AA4EOdd%y~^Ku@LMQdhRyoXe(s9eVf-5lZ~AJwT%SRP>x%#-(hxWuyu;ur
zDk=(nto|@UMR~}i2}MW<*v8D}s@GZ0(x|O4Qau8`$SUEM0GDfG9N6ITcw-1qne3;n
zkCu%S`HwSDJ_sDk<GG($`ZHl!R<eNz&W9a<@IYM30T#>Vnt=<Xq9Ywm?%^Ho*EI09
zAZ_?rvB^}foV2a&sg>8Gdb}s3JJ5TL0Hm2^Fo9HXDGzYbE1{OS$&CF+&HMM7;$se$
zMF?I<uY-P=5lv@fl)sMok1C>5Bc`*HUBUirm)op65cD$C?A*5v(NIoHnD!~&w^K-7
zE7o}Nt_mZqdJK+f9rrgllG3TH`Qn?<_^h_hBvvO0@w&CNigxQcZeE6D%HqgRoLf(U
zVW!w*7M=Epo5u3;jC&wg!CVPSS1RT6jCu2Uui?&cLIyvt9Mq(!&fVGiPGM1LrM}XW
zB@m6Ol!cRP14IVU+jV@v@YgQ}?8*DnvC7;P7i2i-9kiX0y{CVgIBfy`RU?!c#)!?^
zvFeh#<Br5gJZIim+_jk_Qs{)_zvi^uEDrSnk$KG`N7k}cMGyM=@mtyf&)7Dszs5x6
zm-@?{5tcE&$Kr6`i&GQ=AlA}Noxm3BH4%3fkj7YiO+Mkygs|J{k31>C=H>^UwS}iA
zQ1L4kH4~OBmg{Xg1AXmL=Ci+|O6&yaCq=v|%-H~6n4;rDre~=%0<w`rHkP4Sx-i%1
zN#1HI2F*rRvO2kl$`F2a^Q_6JLEhk-D_xuTToke7q(#@f`m4L!ssRT6Vz%Q4ph;&e
zQLmGBraOQpb^U*yBf>Zk>q>bVm3dRCsvPSSZPI7@I6*TNGfc>D0vcV+tV?r|DGT33
zhS9%Xm;Fa`W=0H|c^zt%Ymc$Z(vxL#C_QTi0o6GvAgl{^(v8~5fZd5brb*>6pPY`4
zp+)KsKp6Swol&hXB1tuNXZcM>`o6_mvcB`k`HpJmnL>P?u_3U0zS_X7O81nvm>Zu~
z`@4QD23_@7VzseB*UDu#oYcfJ|M1qXc*5kycCOr%A=>!|!<4T}IH+FCBTJ5zmY~fA
zBMMs(`iR6ZAam16tUWcvt~oIFOyui}Cohq_<?Bn@KmEmScFNd~|9&PMU0!m(kP>nL
zEKo!am9F=TclL7@-<w%`?3cjVI#^V4AOK-)h0iaT#raI92#-lM-eEsM9VVI+D~%<d
z6@8%l$#$vM;!XE(I?lsn@bTEY07RY$oJQBftLDp5miTh*YGXNH<w4CnX|!V&!(VNH
zs?C45p+5Zx^%v+FWs3pIcL$JHk^iD4k_w?B!lg=i%j;HLrqgcaiS>RHOe6u(@f{Bx
z%QtpoWGL6q?UOcbqn{7`cXp{{N?lw)`M)DwZ;njHpT0GCZ*f>GvM${Ssz{Q@*NDrL
z8#Wub`}J;6$>+ucN{$J@%R_^+x(~;^+~>Fth%UZ?GI|e#SZxqF0s{Y_$^-t_K_#fu
zIS0WG#%g?k#!C|Lwx?Cae7$=AJD`ZfFVn$gZ#-j%!RtPZ?7(*9aa{S$tj=&ao(b0E
znxV317KvfT43zSALGDjv1(7A3j{;JW>P@Oey0ak#W)BM1(U-UQY^p^-Fvu7ipF-<x
zemR8nR_Iu{kE`XK9|1g(V`e63{JbzqFM_Lg7HRSZc(M$-!td`PD;|MXoGFSzCgO?R
zo7D|aIjVWp^8?zmDPj;3pa8Q!Szd_sShNOUi+DH}PsQ&RPm7~)*udQQ?**zK4HDQC
zH+&=UqDRtlfuY)`F)%Pn$JYhHL)?Szzqe63HKOVAWi7P(<>}>-0D6-}MU`k4>iJAf
zN@!Vgs#CO3t{60Gs49SMzM9+OF^30}h6@G_4f`gvB|t-bwN7IRO88?SF+7&mYLqr~
z{pa3pqz+Y^3An+_?%1phus`VcmiSqpk8!P|L+M7-YW{e;))RH;HCv}wgPK(^X$RS@
zmO27oj~sRv&xp1Jz?f{N(Jd#7Zs}C&O8RWnnTj?8!vx13TtA@EZsUEG<e&<L-$8b~
z%|Pr6`lyH1fMgQd7D~h$Sa0rq%lbgEaegy(NCJkkiF6_xhu?4v&DIWI3`_DVoK9DD
zu?fAhNx(vYx)a~ekq+we(%7>r+9rB9frY|H5;_6=gUz3&n(<BGSs_9Rk^=W2@|?B*
zhLUgw;}E58sX@bIf?MC~{sIi1hf}!c#NHFZGbez$lO#tJBrvb9K?yRfw_?a`<3iAK
zNWLkc>;_KAAB`ulRWfOODE5%|zgto1QjG`f0xG2*odKCiA~4l1nT9x|4RQHbwt74c
z=J0;E{6f-Q0>qv#zxlT90E$jY>rL(crpG%C+W|6ID8?sbK2lE4x6LdrAmaT;4K_Yt
zeZEt_86gpj_&UwqZ}9gmSVVl5fiXQ54p{{fqUc00jVOD>th7N4pA5IEhn=XLl^(E~
z<qr!{_u>j-4e!-nOnMt^YZ1PYs2s8;IV}RQFLag#-LN*cfOB^NC&G$;lD4iuk+k#N
zn;&@w9_iW?8R2&^A_C&-)7Ij;Ro7hYHqTg{FPg}{>Ghi}8eYJjJQJ8z9=SS@Wfqy}
z8HLZ`J1b#kWE`L5f1_X*MbgvRN#^SR-)?6@E=ZuEks9b+$o-l$I!m<G@`2y|ldJDL
z(7iPP5&9T*eyj=%=-BwIk5P^D!?9ti5odn)(({!}mbHG|yjgzjtg$$I9_6Ev%;ReH
z$?{0G=Aq2anAZZ|6~p>y;!TPm&W|K|pM?oR^9BNq_`vWa|Mjn(gecN!e46x9`;!4m
zetKQGbW)p2c#;bj#8Z}=c%39+O(#Fx_T*$f`Cvkc{lwHA7bEv&XF{%Shg}b|4G0v8
zVS|IHZXq%@m6*$>$tEYV1VeWtu(tO+i!6~_ik7zAEdFK{Rf+Gz<8`f`u_wdkw0Q(X
zs7XLVx=8c((ViJ+cFWtaXMXov6N<p{O-FBdFkQeE*3|mJKX7D9hJWRS@T$R=d{msk
zgVo1<kMDMD%7Nj9sV029)Z^uT_Xc-z&7y7v{SOk+*H)loGJLu_*L{_Egy}%K>~BqP
znIa<y^%@MDrs|gm^uj4K`TLJ?X2Jf(NunB3X~veQ$9BdRq$@If_t|9LHsR?D2)_E!
z0?mMH3;)Yq7MX|;XY5T2(9gZ~Wf2#agexEK!Bf=$dS0!sBUu~fHR%MjBnszgbhV0*
zlIOiZ@v|CA_!&g_IV<P9q;8ct41=LILm*uwD|IQbp#x5Jw589b_Edx~j8>(*o%B&R
zm+#xgWZ;td1r2p+QE4Of?&h~uESB4+`RR8qnot)0-61!F`jc&5ulm1GQ^|0e-cnq2
zo33V*waM<L;QmXgGkxz9TB2TqT=h@yn*SJ4C?RKv8SN%j4h=`6If`!t*1C#rHE@2z
z)1Y6t1i~7YPPo?FZilw>;LL5$stcBLexyP+8BZs)R=3f_jF*jlydfG>zDI(LRKKBI
z9~z;%<zi**TV8hOxk1KBUG@SF`_?qRSCXt?d&N35={N1g5BkItjNANEW}<{2Awab8
z*gSxt*Rfu;uwZ2eE0x+`!gYZifpKgoB8jgm=n*q71pb0VYw6dO?EW_&rIY}Ze;3kq
zsLO@lB^QExTOLHY!S_-JodAv_jHxk+4mIMQL-eyeHT7=sdHf|P;V<XcxfUEm3ruFS
zSz5O(0ueQ;_rEU)KQ`I|p|Jto!qv8ohDj6S^?mqm{-ad<Zwar?2oMo&#!e)NtS9$d
z5;jMHB#U3*K7JgoU9vPw(Yd%Qt{P=-d%6g7uF&V~4EhcI6?{2njP0-u0CeyS+8)=6
z5{*$fhow!W4Zt6?9p*(PwUz4)*wG<Ld=LqM0X)}!b`%P$cV-1*)hI~K)?)x#oxj+=
zlt?g4Cly<Ml^Bdfv>L{xCF$Q}xG9Q5bBcf*{p3Wp<a98e;fE0MBvPf*XbW`tIMtLw
z%fb@1zcpYfmYy!AYzL|GNVnR+avo0mT2r+TiTWKlBSFSA*{d3k3kI`1wi@##YBiM}
zVh)LzM6Z@Ww`<d}=kZ@&m;+qMLWqh{gAnpB{{ch)1LqUb*{oq_KCIU6JF1<KHXLVv
z-vvY4nq`pVuv=<)+m>QfgIRkp-gAZbAmi4$(ylj>#<4~|t};JT4bMt?;?cWpc*%<d
zzhdEZW|O-_uAca2pHywOL=Nu+^!8P^<JEgnNH$x4@ETr@a`J}7$N2OIBKSfgcU$MJ
zpOZS+x*3(DB>hoaazF}z(TR#x>wWHw@9pbR3XHpg;!U3nvq{t{H_?^!9$t1ZD>4K!
zoSCY5(?Mfwo5hNzlSNU}VQFa#4Y3YHq~Uuw(Z-CxL;=u#z!m$~ms_Wx$BWz?m_OEt
zX#-8qtG57le7ky@`aT1#laa;`bOXe{sp0YWE9)=5%DE_ZB>?PL%LIl0SsaVesQH=M
z%hSE%t~VIwN7M&6^zk<<T(uV0nk#2e20|xEUG5nJBctr2If-QHMFg}>ZctE=5=>;=
z#f{-DX?^(s)buXc9T1P=`6>@L7FQh4sDRlD&kA7>ab<g$r+Jvc>1ts}auH+MuBXWK
z8df0fV)!2xEqCDUJs61e2MxjOAjYyAcwHaey{yiz2z*|(OTHl4Y1eb2MIqYY-`j)5
zEuHI4!CGg5V->56tEHMXtLa3XQ%liQ^3}9FOlo1hXSaeDuHNHtsh_UVF)%2qq;!i2
z@|aA>dPUOY^Q2XSk>mnjt^VH2Vl|r_90SWOQzA}4qiKF_*ZIoD*kUcq@1<$tFC2IW
zMh64v`_4#}@#^xe1V84g1jtfX#mwx5|0ma9G~|ro7*5Ppfor0;iQdI4{G^gY1$;=S
zZCLr3^GH}m2=aEQ_;;u}kdo<$kbpJMofG+7u;A9wiMn`~Qa(yjGeWD}7CM(dyywIZ
z<+_ZCsCuZ|Xful4*;}IBqjmAp_4fm0<us1z9IhqHKCqm`;}2<C;w*MtZ@<y|-+%r8
z{6&_*=Uv%5TPFvStfI(2cB96}O^(OkV36>$E5c6V45m)ekme=AsP^Y9m`@F_NSilu
zHAzH+utH!bi!w~(?8xP2H;Fj>VFxe4_-Z861URV13{XlXYNE~yEM^m-E$kYzFCbvW
zO-#LdwJ1r+*$1_!r)RQhIY1+f#L6CQ+cky16hQRud;(a}5i%N0t^f;gC$>}^GmUnK
zpw_I{nlEJL@bdEJ+<}P#@KilLTR-I#fCmawv?TZTUdIj&Onv{#g}@RO)?m=9x)^oe
zg2<fxgG7UGb>6Nj9<|r@`LhieVP~Bd0PFfP)EPzD?KFF{5ymiCX)u)iWvG#V6zMW9
zCPwc2_dgEG34ON&XiAun4S)%V>2YG05>9p`Ea>Vl7g}KX+KnW^h8irZBDep#VkciS
z(%Dmf-A-y$TAE8$C`!&jUnxU4_*^9lWtxnXRK?!p<S~cf2tXu~*pWm!OjjP*OCq(Z
z3=!zGnpF^aO(sc!)TCdy(taZ-XB+CWvVY4*uJ)(!W^F$F`?uts>WzB;(<``He3h)T
zb9yjM5->qtet_v;U<roYZKL4UXGjo^F*#>G#^#Fm#qgk-YDilX+7990gNZSzlP00s
zdypBiP+At)&Z|?aMZVOvEX!ykqrkXbY&1nhJAL;4=;<zfv{f3e<_F!&ryTiu^g2+h
zda5O@MREc*u&aJau#zHdqe&&dorkTI>K%Gt&`7JDTjJ%v=JY#x*`q%?>5J;AWMygX
zKvUo~Nt?+S+<C_6RIQ5kL}^`t@u3&x-44PQ%5*sOsCizp0i4By9RzCrFM(q#9S^#O
zR9HqIMA5&!t8?<N>7Lbe*BEM1)uqBIIBD>}GqCt2K#^wr@Z8>%|J^;(!*Py3e^|j$
z5M!U19x}IAG6Sn(ifW!D*nQc3Pj*z-)t-hwzA4=bN~ZT8M@Nbnyn!kyRwr#w{m7cL
zooA*eaJI3%O?C;599u@pANR3xvY?nS%{4sbn`&MJ+-a~}=ldU|GYX1BjKf4JO=iam
z9xgVuSJ64pz3*MNO}_r~V2;OvfUilMJ})~vTN*-KU5%wIXA{|bt{ngm6;W4aoC3ow
z%6jE9eiHp%Y;mijCKpfTs(~i<DQ{*pD|0wF<>~e39FAOX3S<ucSb{*z>AdW(EAL+k
z#DYeh6%IvPBU}9aplSt%qV}s3a)Ulsva~F{iq03REOG?hYozUW8Jq$MWtlE^^J?(Z
z!SLMygLY|ImaZ8&*N@N>#88=M5zjps+VjpH<|kYQr^%oU`1f|sg(6%#vtCNYbHB#c
zHh=L;14%?V0H0u*%B<M5)2eNX3u26^M<<Fnp9}&iAFFMGkSm$ZQ7VnVE1ftj{_z|u
z_EGS5mSuRW!q-i3x>THiwBdgXlsD`=#b54o8>)?}(tzLecN|3p&SQ^iF;SySX;GsR
z8BraIW_pq1HFdi)<6b*$1M|10Vf4%-sb5_YnxujWg!h)!ip)@V7aQF3o<vcx4`8Tx
zo7HG;_t>Jo-Ox=b4^^vA%Tn=)<g)74NVPclbWr&ET59CL;?=lTD4j;Op|0Y<gnj0)
zt5|=MGwX&WA7_L-7W3XaI-(`;R#~Gp={Lz_aCG_6r>BR&Aq&og;O1MPM}Vy8NHLKe
z76?5HBlN2hOud?eY0W`Rpx}lFenzFS=5*x3T`49173q5r*Ew`*a8Xlasq5W`b=&z6
z$1*LUyxU`Aov~bwOZf1daUzzjcSh_U0*YukQUt}}S62}yQtKo;!6|rb(e)=}g{8Ds
z7lX+?7^(3?BTd0oHy+|WCKQQ0vpK6a%i&J)N9l43w)AmIe0FOex+0a5rENOi4@kM2
zJWHM8>>vA`YLz!IP4L>Z<<T?^SI46gi?ILe$shZ)Cptgk1OgVlIeqB}46mYrqP<eA
zMt(lUU4(sBcM7vO8X7qu<lSN`7@}V<9j^f8x8)}-j_<elo<)lUIAC~j?>eI&9v_EL
zyI+;fCI9|FHZBgD>8(}Xoyn2FNbsL8WxCBrHpFUUDDUnTaZ%t0Lt^;~fieKpTQs7X
z@<14s#J;qK>tfV+W%Tne2Thml7`2L;K7O_`UKvj{ib(G{(O^Q&9x?dk*E+<SVyhyV
zuFI;8&|QSHPYakuVHSG5Cg$q?4~m8iPdv?M>ocE<PLux%B10>^KJD^bh}eMrJAptA
zhJ-zs$h?|y)NO={z-Ddm(F!2nvE_6gE@mKg72dIs#BpX*$h}o47_{zQE1sWMxi~+M
z?EE7BO0n!-b>GU%_X>`xd?zOpIrVQ>Uq0D8E8jChP!Us%{6xfD{?isYvhP9=;qoPJ
z^%rM~=9*ezxZGy(m8=k?bqi#>uBJ>gXIz(Gjq0u_tT!pbxyhRfS78gA8P`{5wkq;k
zUqqYMG6p}HvlnF?bShADQ=fd0@zQd&XT53bEqymJZ<WffvF}+GCsxu<4RQL@XO3>J
zJLqgnrO}H^(GZ{fc2sY`?CyAL)+AbyVU*dY7uC25QY09<VhWkN6Y~B00YDAYZawjV
zNY?|SxSlYTQ5RBFTwMLCN1A7Oyu5WkQ+%$<NCunf2b3;68u~jT9BVy8p!JYKVLs^F
zwO=B$el%#y8So%qq&?GD`VoXe$j8`C`+1OVC?^H0$$a$oJHy!(T)JnJp#=PggaQl^
z?>*G1HQHI!s@zizDa8g0dGEaw0<qCje0}PHyul4S2Tuj}%*XH6UR6!IQ)_Kgv=Esc
zD-xUXa=&{ZyFU-iX>$F&D5A=?Ls~y?y72u7mg>A*$DmM}xNbq8>`a9-o*7`EYGTbh
z>8X`1LFF>p5PoXAogOu!Y9LGql_H~KeGlk#{?Y#Y-2k@>JM#2jA%y&fv$nxlo1z}{
zuOAP99#i?^HcK1xqx(GUB%@jnhSKDey%0I+uvf#0;`w5KsS@cTPo9O6u#)8(lTEc&
zxMzLKo{PTw=ZO|^bP%S~pv5m)U1{iJ&8DB!Lqq*DUB;<0=F7I|8)8wEUCzdOW98Bs
zdYg^-$I0CeZG)S880ew~Jpl?z@eFe%J9Pb$QC$K4cLP~XO+{eL`0kokmXUZSAs*vb
zQGeB9bS*zIc^8))P|Yq`=eZ^F4=9X;+cU<xJ`ZRN3?o$~I`#oh?l3FZA6i)xzkL1t
z_VrD3d!@z-#{9AVNXS{n@|;%8tr>Jwop!4-r@4EVl^nI4YV<;>CBAF6z~gq5L~L?p
zvnn(<Y30#cB7Rp<GGQDY=1Wl>h|ROTV%>#M$@Ox=_uB02oKppS`U?bc=--eLt$E8~
zAcKH;n@w)prkmFubEiEXp{DKSx-4;51c+GK$?Jrhqo5q_@Ba<?ZFs54$;y`WX|fFN
zho}e0PTZHvgTSMaulAvqE+Li841K-f1AIm^k)#=wSwEK#j%2`AZ7L2vGC+UR@!kri
z&wrmCzda10NF9f&dwpDcHE;H;opwD6e=kVa%uT&iZ4&iu5tqY!UI3sTN}isyfx+y1
zb%7OB#Nd0%msvD)^n)U<k$=7b|I?tRll<j4CQzfltxD40(@}gEsi~;j2p?HIsCKY-
zgeJs?`XYm<tQar0AYmvkC0a3@WGgLuA96~me=cTwgBWv(aq2EFl2=fk(Ar2ERLLJN
zs3@v*`@M*|;A$S4`6gA$Qm(6ip=*pBo~4t$i+Tzv_)@Y4OI=$B*P5;Ys(Uaqbh;(F
zX+tcsG}5KGj#U>SVD-FeM@~-Z42gUk3erN!o6~R@vx&QD7zySltLZf5!BQPViAqJM
z;ci}9T3T~(SJ#J@3<k$efYVWQb!v~`F-u~%!0rjvG@cC%`%*tDz5=wO`9NA{Bkb-H
zmrv?CFY7sxWn#*JM8;94xr<Ur!q?-cBh$Dwj&h{+506`Wp^G1-nS7wZn9g%J`qnJp
zUj}%i%cF(o*xzAsOdzYcY)DWEh)hU%pihLkX;047YB6`xXyCZtSIF!OI9jMsmiVIn
zs~9da`E;;gd>aeo6U<Pc?siM{^tmwarEL}l-Amfj^NI#P!?QlGQWRuX$N%wMAwN`X
z<zxtouzZeP{+YTHmxt8wk!cgmME^h%Zj;i3iAL7*iQ^cXN*WLVMsDM;w(5iDhErbz
zZJ!v@+yo-L0GesQ+Pyw7P!N<*?L>2(#w=c2L`xHMPcPg%n5B}v;^O6es$KayoIq0W
z&HoSL#|tzhJ&EjbFd7_&Gzw%lHPN@??Cl}1^v9DVie~Brr{h5XyD%w#w91ycIys(r
zcF>r~>PCir1MOPVZ9QihAr`ys5pk6=QIDw2ca3QmBT{mevth0%%7y{a3nbtwRZDr-
zY_;FwUGw121A$r}3`H)*Y<1L)Qfs-gm>wh0ezo@cqP(QiX1o1upGtPkWwSTD+PQ*j
zviom`-#(y?h$0r<)@9=1(FlxF%4E5!X`PE;CX*FW(VD^7cED;SAnc}vhwQ@80?U0V
zmJFdsHf*7vg2SkY4FrKZ#9ZV8>UIH|vbB_o_5izcHd7eRAP^o)=#6sOHm<jN{^d2z
zXKZou34x2k9r4WkLm)}BnCIPk5OcQ;u!jXon>yd@8*<Gi`tAN`acPL5I{%XZ!KJO;
z=x@7^Z7eXZvK{bR^iFP_Lh%i~A-p*(a6doD{O0r$zZsxN8~6PHM=BodUy>%b;(Azu
zefW#-p?`u=WAy(VJs*iw?<ylOSA)w}L^3!2N-zO6=NS)(A%wnTC!D9Sxk22YM#<6g
zn1Jm(gSv>GA^qv}RT4tEjVer|^FhwwpsY}h8~xOENy**0wU+cn4|pqQKf_n4Z-J#~
zRZ!YQaK_|1=`tN#T+-I46BBxZ3OyW5=(jx_kUr4g$)W+1Fl&fF5*lG4oZ50dr^f@U
zE(eJvW1zqPc)Fn9Ru3M1gpFVr4!LWWrGSGl6bC;dE~fw|aq%Zhk#t0E;$H;(mK9AX
z8$!)G@fh60;J}Zm;J+cronluhTz2Fh4<;*?lG}t&S(?b0Gc(P47-612wxgosXKX}*
z9ym4<@eQ4t71<Q4*Qe(msHM{=WR(=sU3huW+Ma!_sie838(`J9G;;s=!Z91UC1w|9
zifqcq{~1q>9W|Rl?xz{c8ZoLHzst8_ExAOyI%ws{Z!X-=XmAjoOSp2poIPOq#$3Zn
z@sCT+8`l04q#;B)P0ZHrpMuHeq*+4zPhDn2JeW$#im*uiD+V5dN}prUw&cqy<ZF0@
zSh~1%XA3sBaIi%&$5yK9t_=NOz}P>Qhvob9Q<MdM&)2AzjO?x-3)5SkEINnMWP+mO
z=3Yu<_-*2eT@l9@(RK}nnyG{OCsvz5$RSeR-vr{*v?XI=$hpFc&TK(e!C*q6Wak-0
zz3!Ixb{>+F`LyybS59_zk=LrKyWJkX#Oq%v)kIYK$(<Gad~i4qxTxqobt5mDOI!+F
z{rkFvcL5xzzv2$&pL49w4hklhZ8k1sCd(mX&rPow<`3tq%d@lJGXQy$14LrY<x)X?
zFKd0EUI7G8m53V^Hk-Z3ojfGezfs;Pg`9$e;h|20W>-NrR$4Vcv{3m7?#)N*HP6-N
z%UklE`8PIOQ^o<55oTAh>mbKZe=<iS%(?S$1ia$YLJWQoJ68E@(H6peX2wmUDcq>D
zC8=@E!2S*biW<BAQ(&sRi2uS8doPdM4ebgbgh~AS$;IDKth*49Fo{dU!GP(A1kCpy
zuK^~n-{ss5@-(r;;Ouh<S9Ae*m-^Rf3z%fq;Ep%+*Dnf?7tty_99+~`t3n#kYY&pP
z$^#r?nPZB5eyzLy{{ddwb0pi@mYX3yzz@nha*D{MHkb5#2riA>K~RkUB=qIBG|GG@
z=vLSO{B9AIFqYyqGjSf5=8u!Cg9$zt&ij7g{8X%I*tsEllwS3#CAH3eC`I<uM{Z_Q
zid$Htm5;0h=#Sk5fh^c+Rfr$b(h<$=ol+>vTe5+8=3r=gje1!v`!1RcE$`qkJ^})Q
z1zh4zz}!Nk2~%1|Ce9=nNq4VkjcfsMc2JEV03e`g%L9R@V6K^yDsS(1Ty-x$<PZBp
z93==l*N%va3L6W%LXlcDTTFzaT{sRByK68+?xyhh!P{h_SL@Gk411Gdqxd;`X}lhS
zyXG=cipsGpX*XAaGZnKr;&ESru5my>{<Bo(HHHevqOi1B&q1T-pT#HL1Lf`{+$f;G
z{H76$C_XZ1t}8Lo6uA)dp4!EB6x#0-8Sy454`LyYNH7@ZK<XO9Z!gRs*y!2aFP8zl
z9?xrXdq8H(Gjj)s9~8g3{9HRLxPQ?28RVi{Z`mitk89RlgE>6WY}Fh|`yrq*^3Df5
z493gkFC9DgC6o(6RctZk_js@->bK6CDXJT2r4*+$ToxDD>j1{Ao?)pz(d!<$Qf=!G
zG;TaLWe~SW^Zz=?)t?}i+X4k?^V-BMt=yk@-2n~<bX%%h|0|-rI>LOV(c!|1uv?!I
zw5+hFw?&leo7d9zw9U}}aje7OBHxoT<I@Gg`6wtdYc-6Z+aM$)#FR5E%T^>EDgr&G
zQBpx6I=1WisqqL{NS+cB+tesWe-;aAd|;2Y(9~ngMck+ctU<oQ(fusHq(gIUW!jDY
z^G9fm=klk<XaB&vRYQxzxiSinWRv|qah9yEow!W}7krAtQs5TOgXaq1$gy~tUSl@*
zT}eqvIMC`lPS^cu+0ADfL7G&-86!aHj87!V3O|+{Ej~05MPZhy{^VKte**$I$<r|i
z6PfX>f`x)NV%h8Ri57oD*lA5oMxc};+c*}PQcE1iCc&BIU$y6Lv292vF%AQZs1QFE
z22L%S85R-uMCb)q^ldbgfe*5FWF2E_bV6Z^rH_0BA1<<m;DF~RfZ9|q+bb;|-2qHR
zH7tESxz|06y^4?`9_sd;rBVh#h<M+>x^$OH1QV|#AP3f(N~^Z>FXBNsVQ@5>o|#*$
zRCH9Rxpti0t6_&|OIzkeFIS-(^xt7U8{4jhOtTboe{hBQt|W+#H^%uD2gxck)3%R8
zg=dAwL}?kGYjsCYol^el5OpD`_Xbmnw_D|&?7o`Cgu}zj7*#P0CXmiRSQy4k*h1=2
zRANa&B%(#h`SmP);|ev}ts6IUq%ox^jz0jY?Hl?o{sQ%4>U1J!Q=`1>8tm4Z2WG>4
zz@M-nju_a$o`OCqapwn`k<TSHHF3e1Y%(`goOWLVAK3!!bN@m_Z9C88ex&|v7ysS!
z#lP_2uep_mxB=7qK>0DIxFrRG<twxtg1V>I_FOqsI7rtB;$P{;Nvl{*t;ES$yqBj;
zzV4Z>@}hF|21i;F{V+H95_}UL`A-^+&SkaVcgoi04;QnU2U^w))U=Jx-QKeV_I}R`
z;V{|$k}R<-954`}>Js3TMaUGZJ=XyxsN1psKKf$n`+0i9jc$XdK=tkM_s0Z92bVt2
zj7r?4HF3pXB>1^O2x(HDnQd+Y@x_I-gISr=deLaFDNnQqOB`%?Ge%&9R2w?9w4t2k
zs;{iB9miXwmSP+0R}5*bQgJI!;s^Zq)c1^DV~IJ{hY~~MR4PVmAuI-%La%4W7gq>i
ze5VVL?sJ6Inn;jmzT4d3Z`C<@{W6H?w1jU-{GI`fy}xO!e&dI0tng4$kcF_fUb_47
zca3hWKW;nmh*{!`g={_6rR6cNhkUV0eeq$vj_9MRR=2u91mzB1FjFJ%rd=H>EjAno
z`%+{z9(6ZFDaa`bT0(PBi8PNxb~n!UI{a@RP2)4JtBk^93Uh@kwa={_)zo(Oq^u;F
zTS<K1lFzet1mQfd80N3sZToGxO4J$qirl=p02%2wLTA_bUo1G-HDy8}k^C)Sl=ZI@
z=69hT9QosQS>%r);w+Bq+{3eYJAx4%XZj+Y=5Z#D^}@+H-;4#uCHfK1?Su;uTB6S4
z7g2MQ6!I)JE{vz~hbPf%2@jI-x=ds9ho^t;vs;$79v-BV$u2b^d12=c&Oq-gh)Sn)
z9}Ydq_(Zt6LtGyp4mH)#@lj(sP)C5vOF`+UCLO2Bjc5*v=0QN>gJW=d`#*72$@CnM
zvzwa)5k{|B{~D%$VffFV(Nmjz>`)rlSl#9z!Jm}EdVLWw&qTR0U%sU0NW=|3o(x{5
zUbk3pry$!+@1`)((?`5TJ>EaRJJ$BRH^6GeFma2GjU_*Q*0T%-BVWv=7PwvCX}voQ
zk2uOrvdje3eFLT-u5}<Qup&@RexBXlT>SX#3BvcgGnK!^LS?|J`=yllhyj-n+3nGS
zyr*_yRYtz~FxPsMlCVhb**pvcF}&|oSzGPT*7s$zceHa9xfXkm0lPu~W?Petq-VKU
z9pZYmM|61*q?L`0hbIL{5@UX-iEk*+jIAQ4;$NEu1<8V#0ed8)LI#a`&t^cX^DTok
z)hZldHD0v-vbY0gbpwW97_?h8)&l+=X97^{U~d2dRS%~+jgGCAu7~PIIVk#g;8|+1
zBC{Q~8TSo>_<|a~stELYv}M@}qkeJteP;SxPD8$e$p=pKe`?=*?=VJ#had#dP&WKJ
zaq-C7nl_D;DjL_nyZ|a&DMhr&zKL-2Ophmh9PqE)Ia;0iHLxEh{%)hgMR<3fww<uq
zUnLGB24evPhUw{^@S8dz!C03PQI*u8z{ckG-wCxz(|%?6_NC_a9d$Q{N)kyEqx#QF
z@leF#l?og@u;_E<!*}mI{*w9o2JF^_z6{+O)2Hap=+Av{s7OpJ0oGulij=VhTcO>v
zNINRiWg#wU&&jey=aUy*);lBuQ<oS<XeSgTQE|De?lswq+f&&C_P$+omhC#B{%s*K
zqWsHK_GrQ{(>PF0t(wpiK6S$xKdv04z6w{fSs!R5mDW!zs6lqeQ`MnBdCtZ<*(ZVf
zbJQ?~+_(1bw{UR80qAuLZ8b(HXn1-NOZZ1N;Y8UX`14DTotldsiVgwWI&>1zvb(SO
zpr!{T-bb+CLqy*Eep?l0A4M*IK)0s!c^PdjO+7q5XU~pD-@Ch1g*hXbv^F2779#xY
zBvJdt><mr+JDcFUVJ!;&sXKFyxd$zF`HwHfeF?5}X_P0S_n#JP>Xg_vk-YLIeeIy+
ziYmot@jm_FA8J$N>sbFZTk`9UXEY1h&MM;<ezVV6`C4kYmNU!;QKyX1$sa`CJffGc
zPobhLuffvO4)dI@rlAXZzJOV1@81KlHn&stk3U0W*h1Xcmx7Vb-IxzwjH+RvO+i;7
zCmbThw@R*_j$VpKXYp#uVim0^RP^<;yp3JGbh5hk6%Vx4?eRQN|7yc)Mc%Es4KpBp
z#Q7ZcjrmVMDLbmJu$bp}9x8|*0{TXulfW`yVse6cverHghBk49)LUa#G55NB6eO#$
zoV+g#{+41goivt<Y|J7oLZ}2Q4|E?y9Wv%Sve+OtfYl6g9*|-v<3P^$D-4tkakpFi
zxK-$~X4_9>WHCdO@AWWN7%HUNZohI_O_uG1OV3{Fus}Bx7CLenp=^KtJ5b=}RG}+j
zF3`=!CB*Z;{K8&76n#^%qp-2ZMp<5}>$jJ1C^*m|V3~#}m9I@e@FW$m%h_CvkSSsi
ztdPw?cGc-VyPj};+~{y9_7+0#$N)jyXw_Qac1ioPgM@3`YQzXw9W6H4<#~RgD>>Od
zOoKI!*+sS68J_Uh1pgvBvej!9W(_L2R>Mvd-`fYa$c5o-T8zf<U2hhQ4v+Bh@#(wp
zyCev3S(X8XG2#-(O)_Dif)F1FbUkKx6}8vn@?b<|{9cfz*)DU0u5NilmT@uu77kx1
zMgSeZ<P}i%?#1av1%l8RKrlvQr4EuhQ{#dVJZQ7ms!ro0mgj>pGzOGr#gBtDW!aid
zj>u4d7@tZD!r2|U?TG&QE&hXeQOrG^qpbJ8A(OYvjGd#<=z`g+x|tfS@fGrTZ-m6}
zp(LT4ydqpmT+B@S_)L@EJN;xdy7;$IWTs(CfAF&qJyA;y<8Z3SNMcB0=nrcC7SXvy
z!SCkP?AyuFTHua>NUjFgLF=)IgN9^SR)23hVeFb7_JbWrdKEZ0xEeAch5T+GP*3q<
z21GMiAr3~r`Y90cc|{qT^Tx0?Ig3Kj|5faV;W--DmP~Rx8@myEhyT%u?07;eC&u97
zll6O1?FjoHx!VNA;4~dq{T;u=yR+>4*ZV#6&oLfq5fG=LUa8NR_t+kXJ(W6lJXCz$
z&HMLQ_N>pCDX92h-O)~NHHk%mlz9pOLmthj8g-lSqY!p3t}-IBk=JMHwmvh=gYOhH
z$XPI=RCeZ(Tx$Jei)1z1S=giDnFMA`bjmNRy@}vUc`zZa4(-IH{)CSl!-=%IsW$lM
z_B2{ZI2fTS%8Zw*cKYt7*N3A2sat!y=t(26g&c7R&`oa$J9|UTJ#{Z8wVyE?%gpat
zmw%=X{r>A)S?F1Da9n*CrTUP|SX@D)9fcz|F6@S||FkfUJHF{?5Xk-#!RC&u-L2&A
zQ!Xhd?owmsErN{MM%Tx6P1fD<vFKX8n0U81a(nZEv53SrHD|cN&mI~E0Pn43d-hIq
zA=ss^Fq@|__{@XR8H>k_G!@Z8O_;**Ba)DiEa-6B3zN>%AVzZTx=S<|W|!|pdm+2B
zIQr~2AOB|Y)hY>Tl7mBxL+OcFqtn1I;DPtYTJ3GVK8B0(S0^}l9l!U3Tz5F%t33r-
z0BXhG9BDX>A><9?wCLU#-PUE+VJ>PUEIj7%?B*c@t#eQ%5dRBZR0~6%(Vy(#e2dxm
z44Fh*PSmArena_HhV(S}1j>q~qM|}UDO%?2@6S`pyHN;1-4oSIwx5E|!yRm}&5uOQ
z)?ao{q8$!6?*qjmwN<j8@Ij{`twhMtX))g*)>Eo&R+fj?URzqiiS4t>&dB4bn@>gH
zGScgj$^Ap>#gvgUn0_VJ6%%T^TGpnDkCZJIxH|iGUi0Hm7Y2<SpB-<IvHX*%GzR;~
zWr>*_9{}VB;AG2czbCtZj&p$gXEw4=fbB0J0NuaeO^YiVO|jtU%fx$G?L<wf1U3?+
z$+p)Vo-_mZPYcWtMk%ai-sn|Qw8on^&pBDpI?(Bu2n$M@jO~o3(6Dnm_fw1OIw6y*
z1;hvL9RaI+6=$wMgYKa!KY#GZK^AU=3FxOkQ;C0kygkk12R0F}5!tL(dBRzE4!K;l
z0o)o;6=ws^*J~GS9uM|GW?0Pn!Ada51(m?Qk8wuFdBb-tIK`IF?6=R~H>-m-f&L|j
zS1*y@s};Vdc=j1crp_lNNcbP&$UkKsxZwQZ{2B6kC+z)nv`9AqrgoSyFyw`%Mrhqw
z&BL>UJu%3O&fhRUwsV;)hX&yuM@*Ij%fS)`!gcw&P=eV2)R4e{yq?h0bqkH~Jpr9z
z3Co?h8?y#+=_+L<Q+%%~*$`5SShfho^!sht6f8z%y=(vguk{)t<FK0(E{piUbOS1&
zewa`5AF$BT$wh;m^C9Q%sHmvWJ=Prw){`HuQGN4*L5;vp3?(nGW?-T$lEhz&b6{+*
z+3QQV`I?@c>96&)LuPR<GwiA0ibsq3(ZQo(Rv_-~_-+v|o512Zo*g&;S#p?wJ+2g)
zfd|}VG8}$2*gNOIYY_#Z1wjmDNB(SaT@|gKT*QX?iAC0=rMhy59CCTYOSbY`Re{)3
z(GYkQBlV*$s0yAaewD|+PmF`8+kYGP;j6Z2?jNDS<tDAbFQt_IwfS~T598x7v0qOE
z&qU%{HzmSc58(lr3imuxCN<qxzJ?o%u}!;fF-dLq89QmM$r5Y*!zEmJ_G4^PO9iWA
za&NWFy-mn0E<Q!maI^Rj2Pp*6&I`xMq=*Ahw+fb$VGQPiBkd?{j)xGia!1)g1;t23
zJWmsf-<Or6ZT%xW9u!hMu4BNsCvL}%)I$<cJ(ittd%qvM@59!j%86Jg9g6P$=o>V^
z3SCiZF)9PC!j<6Vqu$IgF<b{Nk3}aT-}0lj1Tr4ae*0l&7I+TbkB#|qwdIoPde5`*
zxMt?l0=M*y*29?;G3z;d<9?69CvM|v=ih5xKc=AoDV}zluk^{Pxg4U;7D22<WLnP|
z{&PP!Wpt=5Gu`4I%jj;vPxZJKX&ljceFHJ%NtcU_AcfhJiIt(ClNW1L7ns2Q2ah#(
z>7ul{V^j`{R_CVS%r#VQuS^;Il4mb4UW*9lPHWsqC3ld6uI)Nj31vS?@MPFjjk^Q|
zyfid60hct+jlv5R-3aWz_;0)bffMA%HO=i_LK}pz-<{>jonzVU;7-2zMvPaH(M}1(
z(nz9j-A-iHY{3YkV2DD`a~!^y>pea28ut}`ik#!tmro_CmvDb3-)Dw}3Hpno>xDMx
zg77d=QH61|Ucy}P&r={T4}`I@QW9b8bUfo*@$j|uNOa4zTDEE$&D;6^h56XaLJoEj
ziUe$L-|(8!YBk4`%cRo6{(a%-b~Uy0)KnRVPW_<k^?azkU)T0rB6SHYF)5?ot>fP>
zR2kK<gUX7A<?akXds={IQb<JyljpAo&}|f|r}P0^YeS3!&d}cFlV{!e7`j5)c^KlQ
z>UE=rJi*Mbr>`$Ev71e!fS`k3SYnCQUUpoe7BSGwnyFJ>xE{9a7T>?rG8kCEk#n6C
zR(Ia#_E>Bl5Lv4$*u4Tu7#J$8Tr><Fd8hIQ3e-W{tl9au8Dc#?Mld^+`C4)pFm{$z
zT&$ov#Yo-exg2I$#JoZ23PhOdv?5Vp=2JJ=ZSh(%^U4@JOIWV8z>$h)^brykHt4q*
zPDw~Gxov5ZJ=}2l*Yg3?Y~xxW1q`?rzca|atsT)+Kda1160?GhVZ^X)w_mM68oq97
z(FH$&ROxSjD#mcBSFdYh#Ub$_TEv%4<Z_u~3ToCIo{e6ARjwvc&wkG?+@5Gz`gD<Y
zE|W0&dNQWqIDM1Ylj-LtxsbsyaC(uaUow_WVcNwIb~Ze_L(PNR2-{&`(rH>qKRQ`R
zGr1W6({s;E!1$^;sOlR2WzJMIIo#)y^$d-gn>3?OE{d@eq{wo8yC?}fM#&AmlAW!s
zaZf0kJpkkluEd}D2gg-PC9!iY@7Eg)p$`rXWdUII*9u}wYs#*0d=2wMUi!k%d|GNy
z8=n!PDKuo&jEVR})-jrtCyMK_^gj`ei8<nFmAymez<H@Wpc-T-QC!eVzS~l(z`LN+
z)hgApjeqE5$U<(;i`FNP%mb+(u6fi`+Mtvz@{6pKlnSw!m@Fw5Wb-6`gToD7lk~;H
z{|$YeL?~i#gLZ=sxRVVqyqW<2poi*->V2i98`ZXq=d~3ak>+gcY5rl%?N^(;CNGgB
zp~%)l8Y%bS0Ks^*XxE?3S+0>1@A+X6xQP6k?pY#gb5sY|HU9=MT{b((Bn=v(3%G;)
zg7C=%0P;gK)_@!@22#Y&`L48%;l)zhJ~ZfgiQg?LcjZ}mfrs5Pdc@E3nez*Yex;Us
zaOI>gkJ@b-Kat5Cp=|SGSNPUG2IZj>prJX`eyCch1!Gc6@HWbj)#%x1u^&HN2-9gR
z3%Ll0;E??+E%MMi3=BZXY4z~{iotI&|6l3gESF=6U$j}BgPFaEeaHX0=&D^H&uF!h
z9g_jLEB7j;C;+Bgwvd{JTwXPDSs-1AQ3iWSiifr|o7b&yE0D_J$C(Zgz4~YM<9g58
zPEuKVax$b^gKgC(6m0k%DUete!3P)^R37|w9|kDo`qcZ2p%PO{7uJN~4MD|Vm}v^>
zWLZ@z^J3<Olkor$N-hTZ!4es1Jg<bhILkQn&i_tZh(hlooxwNgxwp{y{JhRmT@qN`
zl5-k%;e(5~>m9NdJFh_4SGJMBvRTmlam(#$769Fb00b6cGZqZ8zbROZstVDf=ynt&
z7+2H5<jv>Lcmh~el=EhgJQx}oq4IQ63EwRM&4e22^qareRhiebL}=fc=GLj#YZETg
zu}v91BJ5S*$VcNW9`em*z`~VY`@xag<Ls|s7~|N8t{VVZOaOb9gh68YCc%t2rl9k%
z^3K6Ck0E3hcNq0b{g53|B;q!J1qlN78w3I5SXtP(ZzowE5Tq?X`HX$+r1SzdxULq>
z$|is{{%mJUU_araD&JYpvj+JCoB(#GC}+60&WsxF!t^cN8q;;B!m+*s>=QlF5%baA
z`Q~-)oP)*n7O(+R^qflNh=8_V`>^2*`LF5@z-ra+A@A4t#9owJX_c|-bzspfyaEPg
zETf5e^#H3(t}XIDBcjxv!trj<)Dg$?2O=T&Fw;ReSeLZ|V(Mft$6{3>AjMg|<a0r2
zQFN7oZ#4-&QulPl;c9aEBVI-WyCH5eLte;f;5MRfrQv2Uv;9MOaX@No)q>dtv0jOt
zX*&hQtSo#mNXXd?zO~0)bBpEXSM*EecvY~Sf6R$C(QIS92ILRe)KBlro`V6c8pe7G
zYPQY<pyNp_mvj6}AekNlwHWgbxrwZ-@qqfc7s4{}uc3bpuo*iLrh4S>zb^EN2p#+f
z0>f55S27agV(%B6gMsm{Fga&K?+nDI^>P*@yG?S~PK09Bsz7FDYz%tEk&eC_nfA3Q
z?ML{NZ;KYU{u@!Z6ML2<2Em5@dh{6hPq+)MEHLKXK@p3!3N9`+&ze)Sn?^@k6fGAW
zcHacb<f5IXk7l5bePJa3jL?K#_>T`ciqlaelVb`A|4NtMI>GpMCJl2L%6J+mx~O_q
zFoc6A^t=-c?lP~1x=Mvrq{C+xp5H%MVYJCRm|N^?-UO1U1m;aZU<9G!rSD3r(P6L6
zIYy#wrNa4BTk4c{W3JzkR@6=L4{f5I2&3cT5<ghp;baaDg^d^lUaq=bKd&oVkN^De
z>HnhaD+8+BwzUOON@URp($XbJNOw0ZKw6MRcXuO5cXxMp3)0=4(%l{3>)zXQ_r2$Q
z=brnEAFx>OobQ-(jxpvFv(|(+A_2=7GL@f~#%nLR&d-s@?8_51?~c0nV>qaO99=XM
zJPG12ZNlOlyKIZP_%jTVO&o5%v0l^wE2{80Pq`2aP_QR-$gyz_Qd!%Y-INleWzuKv
zB$vu6$m)raakXw~Rnhm;piWYK{Qmob$s5#mWp>u@-TrkbD<bF}<F}(v+8z1|Zt_i+
z8WfC-q7IK@n8+UVxy{a@i1f^xNcP;^DQl~)-;TlCRQP@PQHdww;(a?y&RYSXkPZH#
zFw#;_d3i}6*mDqu&C!yE&!?eS&6tQtQ&u+{P?ZbL?>;dd0+hqO!e&oL+R}5vIZaEU
z1KYCQLLUCSTo``}zqBLZ)-vj<g@^`Ncw6U#)l8gN{B60lOU=&xG+k9#hi^ilqC8NM
zEVY{HEZ=pFAc96=wf%ptt>po?{ijR!0LxR@VF&5z{=gB==SrA#oBz)9Ic#5SODXpv
zAasHVrDHuq+z@ekuB_}}^l&fwGahCtpS8IStW`2bty~hd+zsYtU<g01&>v(Y4}!h?
z1>ad0MsKRUtjokpspoYuGM%ZbaJjMC(}_1fyo1<}*va~jtX|_6r--bo#B!OZ9ISvH
zzWp97kOI_Ez=$K4V(NVNTxZ^Av9huxPqjqui*;iVZ_1@t*tthSmK!0i%p@K5M1-er
zR?OOeCzAdRk>xQMz_zcCx>D7{*papxK8@H<j@4_?kom(Ue(5|Rkbug-$rM~K9;9`O
zQ(9j?6nIHr&eu$#5i{w(RZ-txnj1Fn9+kB4g&d^mR7fR?F>0yaGs^+i8Zaaqp@61+
znrM|9XKiBm;R(RxNcKN@AIw&YXeOzIK1(OG8%yW1o6^3@M5qobld04jjA%S<u-V~<
z+X%9Z3VzEb-#8;curKQqD}+7wg*=td=UW0mXIa1~Snka2TKUpV4#JS#!}w5HHf3A<
zI8Z6LtqehFM_bG{xr64a5*w<wK;EM&pz0Z15guI{HFC7YuUu=*ru%RhqeJJTtpqJt
zdTh3?!xR|9D1_^bX?<gg&LHlSfvLT)TXDPFKg{-;Lv6YaueqckW8#pKiXk`h``e{1
zv&=x*Pj1}j6>hr)eP>&QKC85bh8(R~{^7(lLD*Q@EhhjDH5MOB#{CKtBUkkh&hT5k
zG0>6t@hKWYy5(1dQKuYJc-4QZ?x*hfT<Y#2wRf`PzIJd_bsrw<!j#C4Gd3lIzJN6t
z_e9*qze~d}q_7gXoeoPkC!!Qi?r?2aIMVGd%tg`vOp2{4cIxqN^kr#!q|Ct+-&P-O
zbL&*S|4XIEq>A{{zEg??>Yy&+pmf<`+1smYtnFym((zbwWmXGxvwz$#Jb>E160$DK
z?sPVFfhjo&zlP^Fl1FEeN7xJ62iOde_&{i=sIs|Tb$nRc!Mn2`666)Ev)bO1kx7~y
ze$cuD5JBVl3Oj476>^*-bU8&u)?j&gGR+NslkInzuN)j5#mog9>Pp<}mfieM#N&DQ
zP|CJ!3oi8bu1S946a2wmApEK@6?WHUTTSpmF9;_9#8N{l$wSZu;NnWpOJIqJ`P)=+
z1wDVMau;hfPGunI@RQQ{h}2IpF6?=T@c8(5xw;q&pl1OF3o#K95k-YGNv~(XbChLz
zUvkBgg>D}$LY{Tpt{PUPf4vN@&N(;SetT=pPw-K<?q)MF+k%;eWonayut~k$cq7rg
zWp;$J$}X4-d9T{=`K;KsI~MM^3{v*d@{Fy{tB0i9Dx4=kRb})?(q+@Pf-QxqFZqxE
z9c>_;_IZ39Op;OHfZU3d63X;;GTRY+{GbK5#^HcmrH_&COnG&d*lXXnoMq2j9DJ<$
zsqTUYY-z{(LZh}_-DN2;ZAw@$WZ>?U?i52ioa?7qSbNJH`)b+d#4z}{<3oG@3W{ra
zo$UK%?`U7<>glkUU>a+HfY5j5(Sxewbd1>ll2|#WOxQuADfSgN3Ye^2j`}3s2(C1k
zEmfVwH=;!Q0bI_R;riG`PI=vgJ)R-23(}TNKzhCxlhir^Kk@jo#uD||#Xk)6e*f)4
z^L)z|+x~l>YtT!}bW{RjWEuZD?O%F+JuEYFd02!Q^slgNL3F$Hbe1H~Q}6-8E}@YB
z%!cFjvG#0=ySgfj3ujX`8l5d6H1%lo9gcB_yD^?Eya=(dMkJ=hrZReuY!-^<DiRKw
zPL0>P_xij_-J1|R3dJMlHDo&eCQ1Q+R^z}F3lgD_`Yv@EvlNUZZr<$KUR^4N!n+6O
zkazyr+3-i^wkpQXC56UjCB|&flWTm}z7^xkO=36XSE46H&b&TJm`kiDZ1@)QPkGz>
zDD3Bt0&D#dhlrYpbVExIYdA#ywKZ{2BnDFt!v?G-XCH=8`I)gc^m^&7+*U^?OyeA{
z;G5n}L8_s<8&qefR=W(v+~^$PkpqFd2BxiW_tD)gf(lcImi27hF2vDQZ>C+G)tvdk
zd(!E_4ut@$BaMdm*H2|JEe^Mueh-R5<f+nBVvZYIRW=f&c6$57O`qKk-Of*{kbAau
zvYgl4M3z$?W5gxJL38pSPCx$M*y-pz7f9y!>7L<-cKQ}?M%S0US5`k#f+y0BrzlCs
zHBaI%R5DGMN?facq@#N|`|<?{i}=0*AwNjU^?1a~7~;bxT-S7Nb0)27`b_#a-KkCx
zzU@r?i(sW~wKD$8a?iB7x*57rHtWq9T60MveuAHx^|iINuNDLEe!|rTmJK)B#g`Tq
zcaJ;kFSNKe+Ex#^AAg7SQMN|HUrljXg9l6-BKHDALdYD(yhXYm?(js|JVcr|KUvQd
z=wp92rgw_WwEfNj`NGW;(q#!=O0t&!!XM=XSfTXmQ+vZA=Ku<qy;nbhN;pirO0lsE
zKk?3Ol6g5tD)EQ?qLeLje&u1h-`i#K!pfgFeE_3k@}`CVvwCa~_HeuEne}Lx^$N@H
z*#eG1gLxREyyM)hJc~1)-cBB2AF0cjwZ>iIO2C*1e|%S+`-iK_x7hH=LOBP<eX=GD
zOnF7O0NKTOA$vo58@mN9PGdSyd$X66%s1Hql=b~LlFX2;9-qh8DFPkFB$~ktMN(|G
z1)`6>1rkDnywu*YodeS%y=9}!7?-6))Z<qQmwxT>i43wOSncfv3xbvf7)qHcde$*R
zwKOYl(JXk=G~ht`193#=j4N+fA|3($xs3%oF^!2unUekOxgl*aYTb6X6v6^rTL&7a
ztmm`mDQK&Ups$HEPABQR&bt$o0J4w!-8(^yvlCR3uyC!taQZgtw!>M#EUK<=Oek))
zVIT|rr!BKldc)5xY0*EBKinlt;7=;xqaFa95YbM1FDLMEWB+*~McMGj*;1M-n%=Nl
zrA)yjEQ0pEh0>?S$(&&4&$`9WMhi-9YpMlxrp_!{zMy=x*QveVuLocoyu)(n+&V0d
zU+u!lckm_?Gsx*OJ|uFNIgf3^9&EP48hEtAUOtk|94z>^_aC`Pq7jt1+#=gpj4NX{
z`)RpGlJQpMmBp6lI#o>%73>GLE(?5ft{r)vdJyH+US~Kh+dix{Uar+rYh*aI7Py^b
zuNhX_qxszMILLRx{M2Me3}qoK<mpy{z23QU@v)$+QYJ`TUOfC7btxc*o|EP=?383M
zD49tA+i3{#y;jdZ4m&QCw&!0QD98MyOnPq1@088i*fx>)3QT$<j==I9ROLhn7R5!w
zUlf)BE}Xjv5x?#iXvwySXMr#@jus&Rf2s?ujmwx+XZ&f=^j;L{2rB)HfUj!tYI1o?
zbo<>>0<-b1vEAsNrTLGJ4uO*A%Zuy<tK4tia%?Aa*i2Y&oay`*E)57$au}bL;dei5
zq^faH>Ps1aejaZ?EGHHWl&_nqLfPHlaGoVeuorRAE9!sy4f(>A@N*Tp&P44h6Pf{n
zCks7q5+fu46Y~u#&Pse4od6sKqz^5luaLwHhC%?hu0?rGAZl+<kz>zl0Zylp2|jCM
z+Ua`xEtooEbliV5S|4j;yO7SvNu~=Q2aQ3zgh<tgSE{G@$y3{`U1_HVdr6`FtA-c`
zaZ}az!MAiQU#{2_&lu{Q4KF~{b7&M!zP8mn-7gLTJ<fB+U&jOuYi%xFoNg?C`FPRt
zNLg>xO6R@v%JuWrt6v@hJA)#MG11YZO^#>an$8fu(Q>PzwI&nX6Cx`13tXx_wLRD-
zdHl!Tdye~?<-?r46h{$h+rh}vQFqLstTC@9_FQSMhSX!#t7V?iYIpZQr_e_Jnj>a2
z)n@1)6z0|xcW7JE5xw7Er?Hcp>u!Wn@)$$^;6=V`KM{W2JNUb6p)Lyz4-aqkLH)}M
ze=M7D&NsjBX<v&I{sKri?=v{s#mC2=1Jax|yYV47kQRGCF}wYl(E@8`$T4ss&|^kQ
zN@|tquF$oe=h|Rb+`RS8;)jW3S~Xl7S~h|&P%~UjC4B9M{QVWziNd^kOz!2f<8<^t
z9z9&l=}`pd5TpfsFg?OKAtqWgoF|0ZVyPoD6@%MKqf1$dJ}xY!X%;X<vi(+6L_<5B
zDS`}a1~Z;{bOS3$C~E@PFl2olin6j{=OKBwd6}w+r?-w^E&_TaXh<}~2aBd;{FxPV
zooZ5DZX)@`>m$m31aZXthMc*KM;$#o$i!E=BV2<Pl~2n~Mn7)PLK2_CZUnE={YR$_
zG#Ibu5WFt%5xEZFkeY!G6~m7f3kBRbG}9Pf#rRp{oJMztM2*Z$Ukow=FI)l@Q;QEr
z!nM;=sy=4PwbQwjkUqtl(QX;*#NsYXTUPnye!T*dLW0$k;}Nn-awsfi)`lCNeq83Q
zlLOr9OEY15T2p$I6@1<nvz7`Yky~kJDb=Q;Jg6m2H5YmOu)ip?yojjBr>7YJ^AGcF
zxZi&*9USpzR{`Cj1oT=!xnN{aOIADX_fgnjzD9TE-aWnfLrwNssX6U0P>GZz85)rd
z9gt+wLXYRlOh0PL4>zhB)8WVdot3-Nj&{7w{_VcRK^To-%70{JYl_EW6|4ONqo*+F
z7d2>~=3u$Cl@r6qb*|N&M;n$%&|``|b2Klxf_tCwwlL6*sZ9Xar$k;SqN<9im;hBA
z3|Hz8Toy4qIyo6#U>5>XD5{U^y^*R3XtDU7rEVJ3GINCOs65Vt%e@XuBx$vNtX$-$
zyB{t)Qxr`Rq>U_bk_T8D@mq4b?_ZYEx^~BI*0eht@D7JFYS>&-C@MzH1$mbB7rfQ!
zNNf4YY#D97&%5h9j>zI#m-Yan=x2Uv-2n(haz9JSl{M;4YAi6jR<Lm%x2bkrI`MQ&
zt5Xg^0rm5W$nBlQ>UsdC49m5CYiy{8`D0_<*h07FyUbF@W+)Vfb3Yjtv_AT*VwX*B
zFIM4C2C<q<8<&2xIjH~+WBYrwv%y+1a+szrHUKJ<YALQM)(kRWXuBC`I#f39+>@RS
zh^y{X68|Wd_^>-Ju0PPh_{ZHKuLvOs6H^!<uN=VTwr~A|c)bYnfYtHuIWJA-P;)2I
z5El<fvc9`KFdgb3JS-&ucsM2I7rT=Oo6SwKh_rNcITI7$xw>+@%uU~f#I5=&IKunt
z$0xF^pFe-n)55vb{5=<V2IT{xV=LotDL^nL(O^m26Ec-ojFQgT|I+?*)sAZEfezC0
zL2gscT8{KCMob#wH*74RYR!n>D1e$5th~@AO;46HC4loo9T42GscR>2zn9ZAN$0b(
zW5Hv$@dw0D$%Q`8B(s|>eB9ZQB}jSG2r4#*0T2tURR*KPUe6c^2|e7-5|=@9M4XkV
zQQEK7djQf6aj)Gs)N3j?JSl?r!7jnv=m75L=;2a|id8YJQNq;V@GXkdO{2Hzk>0p|
zH&3pJAD1Li*Jm6|mMFjjd;oxcse&*HM*0m>Tl&jI#wvN-`59vAV>&MDHf6vH8l+sq
z`DM+D8=XF~gQlHyjW?k_v0S*W2Y5cQ73XMvJH;Hp`iu;1F1br2+pNOZ9pO4sK__*8
zdYx@{w~(=~1Bqa5k$AvreV2R0w4>K9@rECdyu?)nl4vVfcSQH$sGLK1V59ci@U*F_
z1^{UxrEvsrCjWSvzD^PjN+8!_RwOGZDX6;MR|;I7tW1nGe4tlaOPqeB<3uV68^20r
z^gCu$R045=+Nt`)dj>O=;OG(6PGFmo-5j3yZx`>DzqL9JF>N+1kB$~EEA*{4TPZ0c
zlQ`bMj`}R$^R*NR!s++0UGVp2BuTQLd#j|Gn&;CE(J{5&sjF1;+&zQD=*}5WtwDq^
z^oEnMXQmhTUCTSkSD}8N1y#gQuUDr7EF2Af_dj35abBm*^f;gZi2$jOvRc*sy-UN>
z<K6t)*xZi<7SlOF2LK^9MRp8$57u0wb8`O;AHog;r7&dKw=BCSn%$fPo-HqhFGVyI
zn%8O$8$VIU3*$|+eGXIVhs3;BqgG>*ZaQCMxEf7_KM{yr9%yrOx&fAx(`FDdG^7ML
zOkU?HD5EmpkWngb0BOk#JdS}?16p?LoJF)e?x%QfxLoc+RIdi-*d>{}q5bKE-A+G_
zNV{>@R8B$WwN$Rck`h|;9+%551EX2s7*yaB^4xd(Qo4uBDLIs$T2%u=-+Ws%XpFIi
zmOsy(S#>~NZBYxyjCewHn{9^C`lZ#Meb7k7K<HMG<dJ^F-dJ)@rKmVP=Z7|u=}}&C
zrF7A5UNDvYnD0$VKKIj&%{iN5(}Wz-7{7=^3+MTxH;h~Xddw7ai5t>w)ox}VAhI8r
ziCVZD@Rsa?hC1*ppNYEuvXXpBt=XdH<H1Kfhda#ziUG@yDHqG=drd80Y@<Qb2;=Sn
z7+43*{LN0wy2fXr<9Bu=Ut^!dL8p`osigxyNUHYB)fCJ9-yW<yk#<VsRpW=CF>g(q
zlnU9Mip`x5Ayy!`-<dfax)!UPdTM}G9i;nlef)$;xnVLDPFhFy0&@*7E>R;nq=;F)
zRX*RywRc}8REewT8OE?2`s7*ie}vz8hx@lz`?ou_-y79m7yW<x&4@a*bo+RkChO?J
z$sE|-pWMaOm6C$Oe_?TvlAb=)%G%o0$L|vJU~`k~?&j_e&F9;8AYKaIB4`sQCN6Gf
zRHnLfXjsv|qruNEyT?P6Ju;CWV4&$1uvE`n7c-2kOQY?atm=hYvI1g@>}pYSIOC%9
zeoLdxy^Hig0YhZ6V#4x;10CLsP{z=pW+x#Va{DI>E0h%R{?oDbt<nmL>4qJl;l{dp
zg{``9^ik_)kW_BzZu@&t#db6uHD;fHkT>sxpfel7D!<1wqJ_$f^K(XHu1_|uBbPda
zW;BsdavKwHRo#R;&DZLBE0Z@%HbXo05fQa_Jvo2sZuBz}ilJpA2>pvlaFFOR=aI%k
z9IRYD^C>Mv^r!EhGz-~hDMBi$U9Yc0hqL4N8nEdMvwxeu|Ifs#Q$XXXdN=?L!Ys#6
z9y8%fgAKzQ$^FY&pO%NJcGr!ZY?t?JSvOUGtzg~{@HS_A;^xwhQXy9TwSkn`+a@1G
zOw_NWxkt}`_;<ta$=dBNSl&M5I4j14{yrL*pq*BU5TdVT;gKi9U-;uNO3x6rK?`!o
z*7^TEJNV}p-Uh?|77CNluCBJqk^BerkIj>xOMm{;ksA2xIwyrNhB&WaJ}_8LP~<eE
z=HSKI?w{jb$p9Gux#@AZvV!HDCBima!kB#tre=yjenC;3Bt&R^eO+?nCO%@ktPnFi
zKSMp|p*>@J`hvP=aXhh4A|S61EXMs^8!RU;`H(w+@{qLM)-{>o8h>oG&+n~Ilf`8m
z(`VP|IBQq$_o{*4ffYF$sPFO`Dw2r1Y0@UNxMNMrLjYDs9`m<8#B77gii)wrkFnxJ
zh#>lC`-I`he?MpoLo|!}Dw)(_Kt<v&kWXC{9J&%Fie@f?w1#-@;8x$Cz5atFkMDz`
zo3XIINXcTPZ^U%1Fm_feDS0S0(Fk7(+T~QjpU4};#XI;Aib`^q1vZ4%Nx~sY0k}=p
zWC@vcuOb^U-HH2Uc|&b($J-Zu_i?`VJ$B2@CqV<tfDRp4U0o7TuZ(o`26~jbWOAYl
zV5>8v9501Ch~vcd-UhqZolM4VfV>q~gVLphv~<kHz4t#J_+QGg{1JcKbudXBhxsS*
z|BYesd!PnSFyfWch~Kp+6l2yUhP?rx?K<vws`waMFGmK)#nE!A&X+IwMHHzSx35s4
zJDB>!#4>iN(2{3vGS7wKko`A0g}^FG;+l_q>w4!I5%=l^H1yFPuS!Z(IfPz8w*#q6
zbasH32~|HEbu(ec2v|uJs#(~0@BO!n=#89+z`(%svOL@M-*=sV&Hld}%!oF;1>ENA
zyD64~A0J_?$LlQVe;;wb!=C-MXAP#;EQ$&_3VVD(p|6Fk4>#r}8akN(g}|pgR&sss
zdO$b`QJ`l7M}udbNU6#!mp~vj=AfXkir5qnOwzqQnaKfELUNAvY;UWkj!`9mZ<N?a
z+8Y0FmCrvvo_Yq%N0>9x+paUi-!QSi{SogSnJkH*w-fb1?}&c2O|Uc#Kx;v|$T^)l
zI5#~v+_Ss2C3IcyL2<Q~{uiJAI|l2IwT2h>%<uDIn>k%7&i{2k|J#P-IYrzC{bP!_
z|L32{>py+X?@9f)``LCI46uWFE~|4h|Ie54Z$J09+4=Rw#X@b_)h{<K<9XG{MyidK
z>zjW3_)*g&srfHXEa+zF-tj?EQjBac$z$*?yBBI@1V!O{wM=g(1zQY7B}G|jxe}Ty
zfaWiPWsl6L7!_Xm{Wr@$n@WK+Sjz@E8;^rm%(+$$Xubv4A4=bDjMqX4)<?TK=3||L
z5@_brGm7fM`Vh__$&In0Z~uwoFHrR2j19MEwli8X<JHe-tW7y7DI`TDr9QTQP!<1e
zBtOEJJu81`^>caoFD7}!6JGLwH9jPVAQKQ;kW+!Y$xfCaK~_c%Zw)FiD(D?tq1yAa
z!Iu=;=se#U8YT?}NZ0bViWoOAzVi7XBqv~FIb}dR0zvbm0h<mHIT31-+Y!JvQI!;H
zHH*BU(n^XI5UF*O05I5R{o{V>zHyfR*jNwYU3DNFr6_cTg(_pXjPAY)RF&5!8Q(j7
zIUl^&uSHs25(5GQDcRWSpSP;H82yXq{#$JQ8ay2>G!1W4)si{4+P{bl1AQ1m#vqv`
znU2O+nd+;H?@5nnUfjX_x}K^3*eJ`Vl3sL#Kb0)0NOrJ40L`mR)jLe80P&?^twRX)
zY3Cqn!sSoG9;<IGqVEyUt?+W$WwtAbVTC*L1)=LDvrD(6%Z=e?H0qo0bb=m;n10m7
z=Z5sMmwFHu<QGhBo*iEjVX@kqa$*q)+gMqRO?CeR3ifZtmG*%48A|8Q9r@<fzX<KL
z=V;e1)8dYHNB8&KZ<1aSPgJPr8h}z@3k7E&kb>ks_p7c-e%(*hqJnUG>#G-K!u~i&
zjOK?&CZI3yazq2Yy(&J&EL%kU;0+`7Nv&5I0qb(Xr3kQ6T7>Nk&SQs@66+3J4fdJm
z=QfIiBL8AW|Hq1wOnVLj9v9XD?FRi{J?;Z)+z0*F2aAodjEsy~_TT%&D?uZ-K}JB=
z4y-^;0c7yS^TefC1iNR<TS9?O+S<|is<_Z=g3;5pa!6qJXl0STo3++QNyXk1K+iv8
zgYEZi_`k|2em{WCD<CHJv5!bn|C=(^Ut3R=!ml<K6M(Bfy}Zm>ThkGj28ea~?frUx
zZ#(_ZasKsvbj-iPZDPriTkH4a#Nt4CQ!CQl%KnJ7srhIfTZ&JVyD*Lk8SI_777jC9
za;NbF;b*DGE=q&tOjL&0et(V~T2oUqDk@5lj*gD_zC5zzYvjKPi~kxg(3qbKel|Kg
z8xN$%`Bha_qk^N;gM-0+eSJ8K(;Xd|Vh=c6DE7br(gZ+pK%=3DmB|YLif3tPxlIra
z<#Q$b*xQ&R5HN`Rz%5GuVM{M(3vrB$J=$Lr{#E}z{5Qp)!=F#2Ks>WIo5PwuUPmK_
z3c!I18$+s-r?Cn9b}<PX8gO?C{ImcEF!H%(r*E9F^PWSo*bjLP{RWA<I9T>pI#3x%
zSag5Rrl%^jwzhVa={!q7P*B$S`S~wVh<~?({a)*7!GGz?G}`Wwb;!PW`7+}B=P(Lm
zBcm)r3&82hCzj;w{5%U#h?cdnsS?uisl45Y)uLcv7?o4TVKM+Az5N(Q$nA6W4bWce
z8y?QRzII@@+mGvTQ~x8Ju<a&^tuEfni%MQ8VG(|{IphO2EvkXuEU%)f*9gnsf`}MS
z7y5>?r>Q9b5{tz52lC#_+*bG8rAu4B4|UG*ok1CLLVTErpgk`|8I9I&mA|%Z7jF`}
zkY{qW+#O38>n;Y(G?snrC57dw=YI;<^!IrUOt8Q3KhD{1Sl64aX_!VYz_E;c;H!`N
zE7|hE@cf0Aia|$5|1@b418?&dx=yC!cN_k{;^BWpsvwY9;2{VAA_Rb$$JbxJGS6|n
zcr!;uGlhdQ0Lk9501WCZUfJc5;o(p~)m7EYU(S4c@8CcRz++^Sh=hy)Jd~``m>tKn
zO*v6fe<8LmcsRH;u}HG;&`@Lmb<mxW^5IvUdIs{XT-Hv72NvS~I_AumA()~XLAF(!
zNr#W==vR%b8|b+$ZplD;ZZ^2%urJ}^p)kj1#eMQ+FUb&+&texWW3V^yJ@fyV6&MJ>
z%oROD(c!~xLQdg!P58B|VDbAuUrh&P@M>vkQ6d2P?U^seR4RRPv(MH#nwmJ-Emoeb
z&g9Av>@GDo7VRxIvf}Z$CCMu&RJVYbs7|yYkZg1c0HLPf;P5e+fJf6w{w<41+<s)t
zlw5PL;m2S28(uWHcP5Vs_xvQkGzF!$2Q}tUJqrR*`=n-wW5IxkLQG7TalHpjUjPDA
zsbB6|tyWvSBh~MP{vWMsfOnVrOF3e5eSHLY?c#va0BK}zRye2aZqzI9CW}@6H~95{
zxo{R1VMAS=D829Yvy(NzjiJO*R8j_Ol|$&w55M>4lZYT9Ixv97O_kHuP9Gq?x6;$g
zIWO>sh9gw*$P@iTsgcW*KDALRb;E{(Ojbihx|`d%0WTGbzL^vdT|gi8yP`MwmhSNC
z|M>8DA-^6TpW9`I$OI00H68?j6?Z^Hv2rgFU%i^Rg+L&HXp*A8W%M(-Wy}k>gIC_y
za^H|4p4U*w0dXHbevD(c-F??gq@<{rZ^X^$$s*RqQGoU09Gh}F=C&UTtf*;XpUn3_
zM=~5Xq)SDe0W@A{=N!J;rmsLL^n757S$N>jE64~EXOxy-jfd%5Y7I9sDxjU)`=GhH
zNKtn6sQ~3^=<yz&?TtD`*)(>$3%+MKI3`wjr?DmDK5`J*7@xy{=^~Xg(Wt=K;Gy3=
zU0azpgBvYJ;j^xOpEx(42#dP_Al@`d513pTbX8ASpKqX}&I?RI$nevBQdvj7OKHtk
zDZbEz`p$GaH?OF~k%K=g<L9oLyKw<;FN1>cSkes{O{wnBD|(;$bx=i6!!MYeH4{sF
z$z01h;dCtGVv(X?m=K3%DsO-gX1dJ7AG_hyQ(v*16MylN3vaolH>0Ro_ue^(FqNWG
zcA>LhOU>?cs^$9bPVPo{&rD?q6@oQQ-}xJtmnV*Ad+c$96f_@QJ>=a~skq6j0iU5u
zfTOq<sLOsdLl2Izp2|_zT3K6_3jb0{TIzqezKKh`NgZk2FLNJVfowvokgqaPax@-g
zvru(2k-sb}F6N&bHnf<3b-e?QN)$?rZIbMTwHq(GOHGf1>d1dj9@*l4#wJ%Yu7g8P
zuD{D+Nd{=-_}zD8_Kvf9h@YNOkTCGM>Aij^o62am)$1wRqpX;I);BDfJxI_>+>LFu
zfiz*f54N&BOG}D+H+MaB7UgyyW~<!j2(Sy84sVxx8`iAr&pVu-Dh#oJ){BPSnX68T
zwC?#u?&%t_rQ4gR<8h~er`r!e20njoC=GRe@z%P25Om#|mc9iUuZMb(l9FNr2-F+V
zp1A4)y+YL#v_BW*NIAR>K8~;<d_7o0QEKR=z9Uog8MA)3+w{%;?@Z!%`T9ThSl}O2
zx&M+;`b037kbqMR--JU&O+_Uy*6!_Me0EieQ3;&u29w;}+^V+=_13DYsXc>(00!B|
z?=>7;n3td{S1wS3kgV+DiOQjwh4u4)oSiUDou@(3$vU(qAS2g*9<4{J1_yGcb%}s>
z3a;3BuKi^@EFRr;mKXqEJb(S-^RMdmOu&QrcxbwJwo?js7#mdpic4hdyZupSMx{vg
zY0kTs>Tb+PDTbHwnCRotgreY0YJOsSToyh!^wNw_{JJG!Civ0i!6y}I5ZewdMMEHn
zVJI!V(mX4a;1NktQE9sn!d@}Wi&J?looM9`hX)UG6(EN5qKyk|guO^*QnRp}?D9w}
z>(1+K-<z|w*<3LzZn~;7ROKm_eaGo?Z_?KcEihO7jKS*M<uo{WJT*h|&JLf~VW;?b
zAH^@V6}Wbxv};hA$+^A$ah@Ai*H8Hv-3d0WaOLral}`7UI|ExEP(04p-rZ&5@V=cr
zOW+B&7%U7}AEnOlyABG?$UB)HPjT1Mmz$m#*nUx~U@*OedBn#3VVdWP8v}kcUB;sB
z?HoN#fSJ<?nv>;sI4YEOZb)bmho~8Tj61<7d660c&PQAP;5cVQ*Yg!5JDwx#FX!zX
zaILr)*_~0&m*|5}XVgXpjy`E+du5jA6Hz6Y8<&jV85XxgYNsLt6B~;j50NB@Xc0=?
z_J!){T-{UC-t#Zhd3VDxY|z{|7nhow;k2ec&mF3M^V0oEO~C^jxUvB*+r~C&>FM>M
zGK9VV2t&^hsW$S7NQ4g(d0W>MC#+NNShDMSewL>yuwQ;VoBdC+qk|OQMhrr#BVV{-
zfL#kGr)_D;;OOYsD?4BSyGr<K2^Ekc&TBRl33)p@7Ayr2;VYk&mygsvydV#=x8axs
z$7gMQ2Sg$F5%Qq#f}+<1XkIU^pKt1%$IKQ4$Wuvk@By?$-6duJIzoJ#E9A^NKsZq2
z$>VdO5_%DVK=$3zc@sJT|G8p}vyy{fVb~Y!1)nWB>d~0p@d*+@GH@Wy>ROpGI#zC=
z4Mi6O-8y7Rk{xF_S?OMdearf!TJQ~7N=Jjz@3IecH2Uz>;Gx8M6HgW3^k6=OvBlbT
z@rR*LHJ9!i|Dv73XqD}+M}otm#YbIVMkXGIZPPRfwMQ=E0zGN2NaXzt=?7zhP7)+O
zFhqqi8;>WiT43$^l7Qw^s(0mS7)#S3T~4FcbY2(`2GPvC{lq%N)}-R}Q;@9*fr^2c
zo0T*^mnI=|Ae_(TlY)lOF)y6C4+y#)k-Q1*YiLt~e65?&c=hoB(dt2EAdNld(mfz3
zI8#+l=aE;_ecxR*%;3}HOX=6SFga$O_cqg)=cf@;w(pjY@)*MDYXpqc7y6XkMIa(?
z314L?IM4|j4%H8vV{qQUM$-&N3aj-H*=YU5hxNk)l4dggpupkDHD#qyHTx-qRj}5>
zXy;_`CcuwW@frTir<8z>dizz_pHYG+rzKU~4<2R1)VwIX^$UgC(=xfil`=u0k>fts
zAp$^`Sl(HPQaHUr%9tOa<J!1cYf_v0RS1mCq*#6O_aU<T1<m*)ksL{YfzE8+IoB)?
z=Y>O&f{;;NS%h~_B}I1sCq+>luLQ^-7WxN~z}K+;n~_ZYp|}@vPS^mSE-n6pzBsZ!
zA|_23w2*_ak3Nw<Xq5|G#by0l3&0Xc-=iYr_oVpgbp%EAonMyv^$}VC4+f+|NE`UG
zWc(x2AfnLBo=IvCs=zav7(5n}8a8@2`iiyI>b!ob8Syub({h*J354pi+se)`>_ufP
zL7<n&aqk2MRBdYd>TY1rx;R=+*(d{;lsUdJY|0C{#VGD=LWsalPfNx=&n!#d_Q*K!
zHr-_sWPL1H&Z0IPY{ehtuK~&cA_3e?A|JJ<yFo#!q5i4chez+=^<C|(5`k_s0OhQk
zU0XEXP3xl?S}YTGaACSDQTlN8rOJMhadv=EPy^YmJdv}>)wiu67Ck!u{q!I7xch6?
zZaCsH6BM0W?>o#1R;kRr)i*4Rj1_VZK&n2ScX^2ez~8C4?TsNAf+gNh$LW%}N9e2O
z_9Zpbon~)-)ZS?}YJ9yFe$Kl58OLfFl@k4xH{o>1Gn7=hrq9=|Z*J3WT*F_yc54eH
z=k#x{xOA5xZ@rHdlEBIgg@fYykx@j-IGH1UyOqRemDk<MO~tc(UBt=boQA%_U9m}6
z@9d}$OZ0^n#vfj-CH?w>dVBqF5VPMS><GEP2IQvI?tC7ZA?yIQ(d{$dnu3&$ch#m&
zC%h37-Rcb_7(2a0m23XFJr&Cno5FL#>Ikq}vmTa<s|*9)kM>P9Uy~nP2}XZ6rfe6j
zty;a3dyw|(cI~gNK1b)o|J`6jgl6mYWpsCv`6|SwAIB>~oEFMI8a@;_?EC-gKtByH
z*?Ne`6_4^XUr7_5FLC&vlPPxQrg>?!J?;k#FTMC4pixfk{{jjF9KghvaGn57MASUJ
zxV~u3YR{+^VZslMd;N5jm^|MfA8&fKaP|Q@=ov{HoccB#6FW4qI>i+rovg{4M^K{j
zrT8>DB}IDK?T%K%c2Y3`HDjss6!4uA6A8tyZny+!66-sZQ6c;S5H1Qzs^>TFX=o&c
zAT5}y&q!9<;NF=($f1H5e)zYb?X0WvwH3UlsHKdpsV7H<Bdz9-CLI=YfBK9$Eiw{f
zrHEKtV^OZ29KD`1zDhc*icZODePa@?vSqMPLW^?)3f9d{%2;f56KN*bqQ+Rg)wIJi
z)x7sKaqqFUH-0F(+qVsN$=fx(IV8d1e2~s(`glFZVc2QhK4`{;)0N{dZGdT(a`kXi
z`IdU^`{*F$gD#Di{$fRC<qkk{sou5kevP(MsT7TqXK`8s0lrQnYCTJCDZc{-YpsOa
z^J1#7(4N$g>uCa|&<@GBKB~n$S@AZWY+Ya9Kx!S5B~Gl#XP2|7!^ujk0s_s4<%YH@
zz4pu=UNFQ|MhU~JrMdCwS~|&+G#Yh%cJN>w-&f<v-SR;H;gkpgV^eo5;DsU&IfKTX
z*z}03KFrN=W3E}|bN2_M$_I~Q16nS#X+7E^XfeMl&}$Z950uX^*igc0<s@OTdbjw8
zhX=xtF2?jV(<lX_F-jkV%D{ZbBS8GuH0_Jp54||6aMB-N7Z)@r-p|E0L32`QD+kQ1
zE6`1(B<nU*7FL>&@KlP{{6t$96Bc-bu@Tc#m)qJ%qpV7Ni*mpg=rri$BZeVdrI4gm
z5G}AU+2PwK=xS4Z)GE22zL*#CJt|rE_CcMhE2MmP4`UO2X-wS=X%$uB$<P3Gno3OF
z%Kf}}ef}Pophck0u`WXH^NTZ39n^<6Sl%|4)-gYW_W}FFE_k%>3YeJmF=rxo*tM0F
zk?_u*^qcbq?&x@TYM)=D9XMTsmyrX~@g_RIcfq~?Gfw~A4|O;=CMxKR#6(=F6iyXX
zPYX+>QcbDs>>OW|ht7bIkQfAiSq`6QxT`4POt}ce)e;-P5^bVDky?cS5v#Apd|BH2
zB~pZ37}j*L8u=ot0Gs9U%J+ge&cd2ORJL}wkA%?m<d>1<A5+yiT_}p~3_d^;M<I4T
zCl%31u1GSsfn9xBn<y)1LJVHzU0|G)8@IhEQbA!lDNTr82RrLKEm2M^(wOcc2QtZP
zIRsv++R1{0FqcjjyH!8EU~xSwc}GZ$k2)?+Iz6wF&$Npx$ss2e_Sy*5dI-*6MMcGC
zE4ilE==Ox&=;K+BQeirVesT<qAQr1kVN(McdJ=buqAAPT%kmj@DtJGKL!7Z!q@Ai~
z7R;|d?2c2lA1+M|lTW;M4r+`@sM-_uluGy}<jkY8Jl`4-w}XdGJYL}J>7;M^>M*|4
z{Qx(A|C`hDK>fFn`{tZJvb4iDi=$bm4iCo5V@F5Lf_Kx!VS<ZP)XZx^b#)(a238vp
zipoZk(3kvky9D%q1*iu~8Jee^cV>Rp2(RC?a=`^PY6@T2i^d>BqNt`|@H;qH!bwl;
zxJY^4Vpu^rN0s_(d}8zwA*cSwaB!TW<WosdG#BduzPP3ve%0RA7sjOwWgnX97X3Pt
z;ZH`y{rPs6Pbq}``E`Ya92u{ALT(?u6X2n<3|M(G{nZ8Egb`~jyh11G3BpG94<jVO
zS2a!uH5z7IoRpe~v`wbWQT}-2i=aHAlhPOy-!<=)CKjzW*}W2h43RhJe>N*)5tN!l
z50{kZ_xvFyI;P)lL)Qj~P#Lxe((Xm^6}W}Zappri&~KFLoUa=c=R*^C{G+ycjzl+}
zkSd7WwErCbAItQw)%wprh6G@6kf2a}S^;OYu-MqxrdNcBWbfiIh0dp6yc4R^627UZ
zVD#e9+c274TudgDjN@HhU7e_aNO)1}S7n+2KBE))3gljMM18;9Ga$VmqA&#bC4F8s
z_v=;iztx6$3-YYuGN#BF7CeQ6Bd@D^0gs5eWZc9V8~et0ein(b$o&MtRQMp5i*%87
zZ=ANH@1Y3Nz@3t+E><v}%PNSSMJgd7!$jLc%=Nw?KIQ-mhp2-v7z$Q`8q+ME5B!p-
zhlgp5@h<46irCcA7onSI1X{C{CH;kN-#K1Oy@<();A{+^5(KYUMNjs39_wmx3A~!x
z3_6}_b$clewVbbn9HVT{2?De(xT7}}3oxeA5fc@Iywpnv2%|n|@6vQ&zzEjuOsSQA
zn;w~&Cnz0NtP3>0&_X#@*CkEtfw{dbL~L}9k0fdgPLZdDItfMAN-xQzi|osGBSNvc
zNqTWgF)*0%V5~G^j+lx9<1J3CXY0!PmGiTz+T>{0dwP5l;IIQW5swGBbp%pDZ^9B4
zRZqfB&!`zw7m3J#^lQ3EE1JNJ1usgT<}m(*8~6=DK3?=Jo-Bbu*>Hr>nAldod+EYC
z#SP+l*xpM{m&I%Zo%n5>0|PQIfA9DHm*NQGgSX~mY=Sk3iAsdGpn`xDy7et0w@T%S
z4^eQapMAyCO)3Ly6kD^}z?yp^xc*|<a>2-{@fAFLZ9co1V4f;$f?MB;cYQAqT}JFu
z+7R^E+)H`w*~}(G5@ThR1)bMa1rZq2agd`hXe~#sGB-;%wd*Y<Sn*yn{_h*)d+04B
z=*ddNw+0Ea+&*`ZnREfaZQw*NXKMg-HziJq82RYH>jFR0ed+)LS;OjAT-|uH#fEqk
zkeuGhTIWQm7LS<V`SCF?>UU;q7ni1YFM@DcrE|VBQ{s}0d;)n;LqH(y@CUkR9|}<R
zN&seztxY1v&Cu+iH~VsxhdP%lBz~+(vM*#_igecENKX|#7~d**K!GYC$Nyk@?UgZO
z+(CqXifWYcgG&s2>_H#r1C_>DgSIC)PA;~zFaN{l-ukX^%sOSXJDI+Bh@c(W0h6Fc
z7##;76;ha^prAlWOIxgDi&OAkG+V#_(bc}jr6%EZt8@ftls+YSgsy|4>P*(F-C)7|
zXll=*PihEW$}~X8!El#`SnnoB-Rtfr{1rDne6?sFcd{sDxgQ)|5?>pVzlnJ9-K+5I
z^oUQ%(U{Xx$ui;Z_=5I1bt1q_MSU-<HJuP>o3zm%wt9WhM;p9zlD0RnC@`d)Lt4ed
zK&hFgJZ`FsvTUJ$p4}cO225~2%vnv*<)6RQ9vUCkP!L==lb~UPXZ;@VF3x78suwE2
zmvDn}zUAB>q3`T)qdQwZO&p96SilAL)gfwm+L@O-sM$s%TKo_wS@}piuXvzVlR2j7
zOjR-@`(Xn2GT?Jc-{m8wJ~MY+Ft;sXhlyrEO1sD;GHOWyq7St(B<8G^rgRfg@^j3A
zYL{YTjJ|{Z=P&=!wq*~4^8yMbi>Hq7E8m61!CW<?$sQ>a6IkM<;mFuZ1sgfJNW`0T
zD+6O~-My(|pXXEovS1oI7FzHxHxA?1rezG!!7n^B&IPG@rAX{sWf2b8`B6a~P9c+D
z&HEp$45q_zZr&UAUsZ%C@xdf%EQ*m3?tUnMi&YH6EbJ+nUT^EsQ|dFp=O)9d+@@fq
z71}E$Bv+u>eF=AEOV(Z<laBZi@sx;$hgu`n=@Isej?OmVHC8++hzv*$18%_X#k)z!
zzWx3EaDrNIHPac;#~k5=&Qo~JTKKFw*(;tPQ8o6o8>IMEY#J_0E3$e_ID?o^K%xhT
z);NLP4%3s5QX3O5AL|E-dRt;Oa#28oj3z=h?_kwtYsPrF)g3xS5zNMta)uxHG2>6K
z6RTDV9>HM{HBv?rhLELHHq9`Q`i~j99PZcvhD$tty0!Wrm28(G-G+Ck^uGPQfT}`q
z3tR9%g5(uko9}z{i?koGXZ~*mXRy~*sub$b=)zN7A=ztJ`JdbB9US_D`TQGiU?R%1
z!U7njd!4xPRKuM`32!d;1;6fdifh!z^dSkC=XVLEkmLmAL_ys9Dqxg*@ejddEM0L!
zFA?^agRSfdvN8nGh#09ylfN!n@R&Z`NR(UVMjbEC$;u1j!G>mLbvWmZm%*RDZTu2R
z2op0ZG_E(g*-6lIi6Vk0qvdYI@!5wawoE^9z?+c>E+!XQ-)o+t-Aulj!3~y$D_R0;
z9P*VhU>_toD|R!H^`-1OB~`}Ia_y>)0y%b|`>|wZ``udG&|pV&`~1tkQ>bw6D4ay8
z_-~Fm^{P$cYuTD7<-|OP1lGiP5Vrn0p~|<A|0GiBC}7^Eczm>47lnp@X$O#FcI4|D
zsMiau-{g~9Z|`~7<h_FMo|i!^R*QQ4di)xQUv133sPysD!a;$~=THWm1u@B++Y=N7
zeeWPNU_F9mLuRzrIB8YY_Fd%aG6aeXK@9sW>+zvx3LrhNB<i%ue+SY}2^c@Ml8>bL
z*x>uA!#0OE{ZVg6o~1&H^tDQ^jM2qg%9Z`KWAhDLKg7aD4871obHz*b6vT1V?ezxw
zbtwCRzDdW=iQI~)Ai(xiT-+Ax3y;GwAz=UNdchqWmP4zXcoT1^v@W2_w6~zP$vPo1
zl@HS=&Q27XOx>ED@-tVQcs01xUBq0ACu7bmeZ;|LkKHkC#dX<~WO?QNP6}It05W^|
zbPc0bbujzqO*9!!z8ONOj+}1*WONQnq*p-a&xtjlfSE%I0Yr7Ya~!Zo8nE6Vp7oGd
zM86|kYiw+E&zn(?0#vo{dP-Hu-`HOvrmq!^+qm59SsAn>&&yAB;YE0eu5FoLuZMe$
zki+@Yd3jI_`IdjHP#;fx6zIy(p_1x<SG&SXg_d{}bhCE#y~Z8hlmdD!&9Juj6iX_Z
zGP+}tlQUm7FT~qt`*4G{Rp4ji9H~7QX;-RDIR|U+DOE~pytE%nNd!brQ$^I;oxPeq
z`JSYSbf-dSSv3BI4$%bc>TNx^j*pI-7K>_}j=!@^&@5-0F~@g%UUY|$7(v0ZPW)>^
zMqy$gO=^6c1QCPV7)B*c5B(n{@V_f9{`j5j5!^>6V+bH^K9M7Z%eE5~^h&j6Ks~<~
z6UX9dw#m^tezL|?jbGgy=)kWZnOn66_&yZ$_}#L@b!dFpZNEI2pC;@BS6BjRA`YDA
zx+#xwfbZZ}X{>jGXyvRw+g>Je?TVRdt`6p}*c7SMZ+_8B=)|KOGj5-(TJ5hL{K{mp
zOGE4C;=GZBhP<DJ$@Q|Y35AtMbeYFJ6sR~?S-H|W(H@y8s}10{KFU&I+OKv^vA%2K
z6Nc`b1<af!6b34DBX8|mgF0;?ghMPW{p`1)!n{7>a*8?RU710UrUIvGDdl(4^y#<X
z-ix~St%Nj<kDO4=t!$-kanYb7!A80}pdlDe1#~Suek@kKE?RsbBUltMy+w-Lz(t^M
zgjEQA0s9JDHniAM;jj4&M)F*!;%9_wPiD-+=kHzkP!<0<CpJukx9*x&m5isOGQ=zs
zIF@x6KB*ImIz`ic4U~Qd&n&=-wgXB$mxV>}ryDvo8K6${Xwm2mixkP;QCY{wAX|U#
zd#Yo`9UY6)(>WiA@KfrY5Hlv$D&8|6fxI^{m>8g_;PJK4fZ<bvbWVe;vQ1MMzW3h1
z(#)qIPn<)>Deg>H-zUHn%C{8Jb)3{QGlHtGV@q71RjyP2YP`V+1+_qoD-Lrbn}@Rr
zuikXONJ=@%IuXdrMAL^c16M>m|H9CcTn=l)Y8;^oXtMbhaB%<CLiu0fhxa)lp%U@i
z@do=NX^jS(aBpfXgiioooW9y<vTyS<8X8)D*+^C1v)cYXMaEry2xRo};SRzDD1aw?
zw9F9R7ZoqCn9MT17?YsS1`03WJ|BByYYR=CUErn+Ag;`P0t(oY!tZ>-X_kbt38`Yf
z`S1}A*b9bbECzMTH4sN~WO&w!4qc_fZ&xGX+4SOy806_S({_C%>u8fxO3Z$u-Vv+W
z$itbCQqFf+y099qiG*(wM7chpb5&VZvkX-SYGy(yFHtGZu!qJ;euK3iU6$Ypzwypp
zCSCkNB(Dk<Rg3vV&1Zy^?9D5!TJh-<5^-u9D4(TrC-LfsSLwx_s)pa!E6paX6p812
zuLE~1xUi>O(II$?;<Md$qFCNrR_eDciRw0hE_uADLyWxLJu&8hgf0tQ<Y4!}Sb!cL
z$5kqxEJ2XTyh?+4)BWhpd4HmeT)Kq-K01Z~Yx703<n&7yOz6PFWN~}fa%mSj4uvOb
zvkY(d2Vr>U8Y8ad+a)WjtMi=J7NGXNf6R1A;Y->lghR6Ec-7(Rq;pi?t%S=2`$zQ(
zly9CNcnRGa>-Uy}p1X%9)>@RRtBdB=mWI*pv4Y;Ju`HVic<wf=%)p->%mhd`omER(
zq4qsp55O1_=%46NQLPb@5^K`=yY=x4YY5J|A1TS*ZUmFVpp1N;Ya{FlQhf+OCB*jf
zfwRV>3M8a#KYmlXMv*xN$#L*hgVbqDqf_~pHMe$(MWnMx$E)5zTM<X0XiIyQ!9`@e
zLW~x{h=u72IFCzN<ws!<h*`z@-5C1kQuFt4e%0g#*f4KnJn|OkzRZ1c!Dcb}6b)CT
z(HQd@kNw?Qddmx6{;-#F=0L;4=A;u#B3q!@S<m}B?=M$w#Y6zag8t@>SPi;=nQW!e
zBo!4UL%2i{l{GZU$_m`)(TYw|vMWPuBSXHL=!*0N=sp%aw`2>AO`(=iyu7VN0Q8Er
z_P)+tL0hp~ZpcBYG4ui17T4Mr8x>QvGsDRD;j*T_JwcA5mY3FY`{F73=*^cS2YIUU
z^tzU%RDwZ_y`t#AiXOkcO%5Kdz_e)J+Ff3m`!~7SxZ(jjz7mpxdbB66o)<1Vru<62
zYQ~OEapC+bym6IA*T~;0XUhkVr<~;vF3XJ*P4~SxvQy?ZQ`%Tj4n>sLd7x165}dKR
zPu4pq6dlM@13tDtqhYghCZdbJE*jbfcVn`86R|6>cGf*RsezH35hTc$#Ci3uei@Tn
zV4D6~DWtH!M*<#pA}}oro*KnSnD9QC_Bqk%G;3;(r9BUAYOArPreLY&Qlj{aUg*uk
z4FMu4wK0en&9~>n;epuH+{@7ikG9_?EAvlxt-73{UaPSj7sUGrsGN>IoIeiSDg@hL
zu7m#S`*|YbLfM;xZhTO+%fAi4GH>ik$_P)yQcDeI4Io7?bM^T)5J^TLU%cSsMDO#D
ziFv#ut9%!RtgU#FOOA;H{6+l9gG%QG1pL#NjTGl*WTNGptO4^-078HTMZZ$mE667>
zb*cYe|GRz3{JdWB|1hS2Ov^62vET))8t<o=#WL;ZrgK$d)}^m9yi!~oPS?e5HxtcG
zP~p?#4Eoc)*6H@5=7$(ir;cNLc6spbmMDI*o%otib7xO$^2Q@zzD4FRb8Wv*h(qY3
zkJ^I!ay%*KjU;0DEz98C=mjY|OTST1PlYo6d&(+*eXVe~ejkMXh+H!?DkGjxw#|p*
z)7ySnhm+_kvLchuSK$R)T4UWz6lG+*D*CEKN6-S#1%>;s=)vQK!{F+kKr0K<hl@;B
z`MwkH3-LDo`4C<5X*a%;!lm4?rU5Ff=IWE(BR1Dh7_x@DMPr?Bc2h1BQq<#O9Yh<1
z!M1#&6Q@EvJ9ks#DaeQNvn<0gSDp}cEiu4DIPVpaj4Z4!%7cPlpaH1$&OH6|d6r#i
zW&|<88h86cmZW=X0h6QBOn#+G&VfHpEKY9AL=6ECMu8t0DrHZoLaMV?e+b6a#|e?>
z`UYo%bpg)t`B+!6{!Q+zioJ~@dmb$XZ-mB#zS+cOpc=2t08C~W1Fe1jEF4zuMbZ{m
z42&jucJEUuhQofB6aPy;3Ku5HXDn^)MG|YIJQ@^R&+>9AKR<s@2S5<{@PU$qq=W24
zcJljde}7<_&-UIPwZ=zsa&iR~Umc&8g&S-ovl76^#f@89CUM-CQO2}gAKQakB{h!)
zOa?|yzt^Lo``CfG*Ls@;tC<5Ns(oLzQf7Pu5Kr?QuO26=6zBuytK(6T_bUp=N8+X?
z3Wh;qHXJpkT#$ENvx=dJ4A6A=OY3N}s(D1h2-U*+RFWKGFDT1j-!ysj_-&CCXef&Z
z^6-m1YD&mHw*`9#Zj<3Ph)s^JdAW#lSI9I-)H)9wE`jf7pbB^DTRA+FA}&?4r<v0^
zi;$uh42w(lAFX7psPbkXe*UsH1x(RL8{D_k{S1zlZgEqm-v2%ij0AZ}?v+7@D9W&I
zxWqw~?8l9j+(kgMoe}-b02pd7Q^V}%0wD;{B?k;4^o!5z4(57WUK4P;Ox>=B0Gsei
zyFgnfhmQ+ggIZnJd)cK;*8HNLOT9xx<Toh{e>S9ezlfxnFSjrmj1aN~174E~Xl&*B
zngBsK2N&?b06Kl*rOlTKT#9v)Bm#uQ#9oKZ|BtV?jEeGI<Anu=Mi^Rp=niS5yJhH3
z>5%Sjq@-IyIwhq;x&$fd29cI-cpvsZ_St8h_4*CI$eMYc`@XJUY9eVP83zE_onV1e
zzFNg}_RuvuHfrk7j@vy(Y0^D-KJGtw)p$PuKk(2y86f996ct~`IPi*^xG4qTZq83f
zSXGUU3oV1y;otuIfQ*sDUXBQU>Jk0fV8euBW??as&uzCBOhk5W3(RyzV!3Qw*$$lC
z!3#vO3tBqeue$+cei{!3?CiX81zvY>2(G0?`pQcfY(_&3j(wvG@7Y_{F(%lmZtw|<
zL0^2ooL{@ies*WK2N-}RK3|h|Z;8J|NB_^@<nRpw?tD0h=g`ciqcmcLJ=+<lRZ>#&
zj+z1-@&$-dWei4jyHTtiGJtxt7K!_l5RiGOj=ST6DAiSbT)DMUkP7Mg@bu{CEit&j
zue{dF(;LR7$q=in1mD`}wl=}Dl6Pa^BkXzA^pi8tiE_KbcfCTfziu0Py2q_}nffr0
z2<W54I^d2e8vndC9pzW#^A~Xa+22j_`Y%|G7Y`Q5ogixfg6@9?cmE=hd_@cd&q#^f
zUvGY-r==Y@y8Hz+V)ZFP`~cEG^!8%b@UUtGo(K^ZL+Bdfx;HJ0ehIk5i)gbwy7LhI
z`fxR&P$(D|2Zs%2;#*ZxV<V3*kc@G9Tawpczq%3`5V2b7dwZ@dxivp95RM#S9^vr!
zE8Z0k=KX>k5ewq{82aDWdkhn{Fm&t0^bFy6iT*<7)19NcJI`IuI)H%K{W)<${Cggc
z4G(B-BuXY20rZ;M*)RK~f*2^Uu}O|~P9nxgVWDm=cqp5fI*sp_%cvnj59d?UEv`0|
z&42zlFpmcIhXzRRD{o<P1Ps6Iqk;WA=dm^8Seqr`nI4ZEftNZZXb$oG+A2}>tI}W6
zqj|8A&e&e<SV5ZXYh%Zu(`EEH*Jo7EuVk!5gUd}KSYW}$kJzBzF`%w*2qdxi!-?TP
zF9ALXw%zOE^V-^)&N!|_?(J99zI+|u&0oI{MbD+ug(@bmN0H{Dx_}5R^RIYu85wdw
zcCq;ktwNfSl+ftNNTPKLBq>`yQ_!2c!Ez#Ka%#%zXsLO}iEfGKZ_pQxq6;K}*hVKn
z_22ug=?_>7$kNN=TyiJobK2^L3$Pgdi)|7)M37dM%?n&=*W2dXHA2`f%32goy{QFY
zR6-a!oS*e<XrU5?30liR$0f@7B|y;dj+fk$zc0B_g@d3uQ_cIDq*Z=qQAc~B2p_Ly
zNaER(UusD#sJHFqS!vrSM2`($btNS<WqF$K{rL5;>pK?BSuHTscsuO#o2&1*1kXd8
z5r|M2*3r?Co2L?lfMA_CGCVxl%>X7d6wb~u@K}d`#%O;7ZQu34R5l}!GfoNm^*xhT
zpDi^dWfC|y97(@N7dw5$w4ARk{J9M@JX57B$(JB?Rkqf;uXu+00d)zug2fh1G5vRC
z-;9i4H~8AImiYejVa0xUfej`(Yxz?GoL{*qNJ#{JIjgw+t>ZXYKIXuH+#e(&D~rsm
zQ(sbpmO3!>*C+Nv1Zk@XHz99Oq%XVblz3@6b;G@Y6KcQ2MEQdk+_asdYfVhI^h=Z;
z^EsV)k?DAQThe{mHFcDOFb1$`=~329n2TrqW&@O&X-E;<Vkde8)8J2ff+eHS^rF*i
zJz=C*sFU<NSG4=ZH9B8E(-NelW*~)|^?BCfKKMdM%$s@t`l7o$1G=6buY@z}v|3zB
zU1G9wa+IEv9lx_*#5eigxpjYYd!%pxkRh+Fc<HfK<kQhHLfFU0$68i8GBMd7DSf@Y
zgQgYkReH^n8kleYg-40eVQ3(4mZ;ZZfKx$4AFNfg_Ma2*e>Xo)4G@z)^Ie!1*U!>F
zO$32;VIt)km7J%>CMFbzEA5Nss~?3Qd7GP?huX%4?xI;b@11BM3le1~R4M9oYssk8
zLT1ok&J-9}Oz)G`o-8ahonGRGXijvJ%a_pXE}f{)rYE*yG=sSDH=QZOFOeBo$4aZ3
zmOaOWjJNj46bpByWxjwd-Ql=!Tu!1W@SkYZGH4dQd{6t7HPpuwl;uk~l=ex)EU3w&
zNaOtvdR>h;g%RBOdh#zf>F8Pef3LEf)}V!YD{(;2R}W<Cm%X)H%$99wZB@NGTBhgW
zNqxTA`VaHQfx@Z7J2sqG9PI1|1j7W$Cx8Cr0z^V0@b7#pAyKvUn9E@uC1?i7xv-1n
zVP{VO&K5;WeCOKPLtFhnu5NBA*XxAu1m;RyXu>Yp8qL3FD4Uzp0BYr>qmyz!N5$tF
zq#bn0>s$8dO2GY(<t(4tIdcKi*ZTI;8)Y#u*iQnUwJo2`Jtrn6rUCe6q0ycUxUw?0
zKgohR_t)G=uHGDBc;}2nL?Cq^OGm&MJziW?7}XISY3lKm)NHt0xrXf^gx%!>frMPj
zytz#uUb=8;>*o+WJfM70xbW<p;WQuno6zKa0t0Wyjk}_!)c+GJia`n-d`wmLo5V!1
z=7~#ae3T#!TsLJJE>8F?aEkONf5SEr#Y9Uh0HWX-*%w7|g6PfH+}b+X<oFQ6nEk!`
zK{5UM?9J@2iXN|M%)=1X;W0zAjyg3&MobjrK0x*=A82<s^cera@8#!JrxV1+sPINQ
zRWW7J6&ylBIcco7L+~^QU97B(l(aP-fx=^$1AGvQjL1{xQaYZ@=rEPjKPQypvY6Wi
zROvB{Y-I!&#5~DgpY98_n`46qlqc5(r>*8dp0Ud{vX{;i_1g8GCy2E#&!fHy`aYB%
z24L3ejTqTC=f(s5FC#|eXq)<t?>}jG67vaTHeIcFH+*OZGSPIj$O7)lNCmwHshAL$
zwQD7?z!zq`OV?mJ*4Ob9qe;iPVRR9GW^Xjx)6#X-lu$mM<Y$@oyYoO#PPjC%-Rytn
zh*cRdO-*&Shska5WF((h@`c<>3(8lCGLKHmC%UQrjC@KU-)z!uiENU-0AFNdzWZI3
zu+_|IMz&qymn8=zfu?M2{ZfQ^mreWe>$@TCQB7@6N0x0nU(F^dKV3>G1pQld-~##*
zIp}<Cr(1u$+js}n_G94l4u|%B;x~PRgWkt4c=NI?Gs{=ZOy{zUPpx`i{?t-1DCo<z
zL{Xu?AAK^_;pBo?*U)^Z4{Jw`&+QV$44pbnzlM_&quIl0E&;*B%1Itcp%+~bZiu++
z!^K`inbLo;Ay>&4o%U-^jQ~`$wXs2w`R$k#obntYBilRK_yCmM%bAc5E2OcB=1})+
z4ty-meBUx;4TrWQCVaKzT<`znSN?{J8jX-M;<;O67hT;DPlC0{R=?A)Jw?E57)NDz
z10tyJeb}IrjZ(q~LEjz(x*}!FAO7@UfV#;eER+OJLIiY>VDnahcSjQFlWU`L-JKGR
zyanbLvji1KB0;bEudji7!t6QC##+6q^U>=@kVHbPJ<om(1e?WNj@kjl5F|Szqob#E
zTBx@|AbzJqv>`RShtGhNcAfbU)u`*H)Y)+)q|bN?JHip-y8CkPLsO1O?^GtWP#31$
zr<Iizo!4>Wf9~KjOZKb*P+?M^Wi0YO%uTer6#&AJsd(gjxB_bFkfQboL<r&@a+eUf
zWJX6O0dqVu%h0;HmLbN2-CVV3Y>z=VWZ~zkKQJSv&MF-1keKBPMFQ{f>F*ex6&axV
zC*|t(FeAYA<g<2Mckk(x-)D>gk<f)eP+8pe*$aVn_M09I;pvRutDVAvHwDd+ylVF|
z&M-``$8Z@nEN79D9ZA#(*0>!vBq|j_d$*%&3u}IdQ^g<WA0qbwp)-}^&qT}<0Xh|`
zTS=`L)R3_emR7W(=K=YdTE^#vRS;?GvVV~+^w(wd*RTIMHoBT6yZV-+6vAmG&q<Zw
zi{A~c(RBOLD!U!9#02nqo=S?jQfl0<3k0B`MwOP7NTB=dO|J(9SmL1a2#@gMrL378
z?0@M@aReg+2nK!I4t3BE3o7?cFgwn#gt~HmGvWoc37-Bn=DU~2TyMePms<zF$VVDJ
zgGxcKJ#PK!-3Fxg*j2!9QO-*1OQ8L_mxNT~L9Sx&NwcSI?$t!GI0qf_Ae2=%9@zw4
z!9~k7n*c6vrGaiL>CS2oI0NXBnNpW7k`8Fyc4)K>`p!6}c7OD%*D?)@8^0){iVT>m
z)a9We%OLlAl&XfH6(YaFqkek0GAti5IZ<ks>j`4R)1Di{21Wm5Ns|Sa8%HJ;nWLy=
zvD4xwViiT&Se%d+DHxJk2|bu6K2=Mrf1M}j?XJ$$Q0<>2D&=)+*Uq+)(M4%?qyNC8
zSLY(J)Xgv7{ci8Gqp1wPZL*;{tQx$y`Mm^`rk;})L->^F9^zR~_;%OOz<9XIx&t@4
zp?Qz()RsSNDHEgC)}a5>x%0$~awr__DD8OcPt>?qnbQ05IDY$Y<etn4le1TB%1n;0
zC9EXhNJ{!-4>^aTzAucR$G-V@?B*2*iI}Uba;U39-iHE>r@*{L{=w4gG?_w&-YK;#
z_zVt1K!j2%`UkC*F}M_HpOCljeE2H$Yl6KTd5s4nLh0*mFv=qEATr_ZB)z!?I7+2N
z8bu1aE_itOiSInC6_{ufFS!py(lHTKsE|B{anjKXc)>)XQuXyTiWxu3zjVmW>bsK!
zP8TXDX~9m=0~NPs+Mh%VGTykBslUMzIoGK+3Z$~sE@S=)Zx{!84vJmq#W(}T<F9HE
zQ2g8Umi~zS9)>4iS81g9Tq>~k2)xO%-6h!)r2~kwI1+O5;)YX2ij=~_!k#%=zh-fy
zeU}U&2zxJguSwbge~zc{zHA^JYIlBdadAf^+NNKZ&x-$(udIQ9*LjHs!tlqgZ$AZt
z9>dT{7#u&neix=uTolmq#P*bG=%-EjWp97|vCq67(97;6nqB|YwXbwKBlz{f=4JO9
zYv;X*dSeTyNx5Gy&(G2dk{@)A%AVtu!uGVM@V%~uJ!RY*xTeoffMjd!_5pH|&EB)i
zZ-`_vDm$zGPcf#M<B_9a*2`%9<ZX_>=fRtpfQwGUohu(tw|`#5|9ve3#L1y)gi1$`
z>)n|a+{xm6Y-~YoqJ#=UZ#$IjN<KIj>Gi%Q9I@R08O-V7pqa-TM~&Bc-<NY-)$JQ6
ziUpo2sLst>y)jHkl#<;2utheNoTaDN;0Iml5sp@Ss>&9sHEhCW#s*2evx+BH>VRSe
z^OtSq-_Zm31;gN2Zq~FZ;1Ef4Oh&KG3wK8>jX+B7o}^gMuCJG9`PEG^0rb61gNG#V
z$uYX~I`nkzl}|A~;`tKMS9lUt=6uewwHCIl$8&ddrF^QUlZ)Y}7{T8umc=(Oa|C1A
zF?*Ew2;~SP&E@-fJVz(q;nzK$43NziPTx4+45g*gtmH?QGV#b}CX@5TFNK&GY8%fS
zjn;R&A!IGJah{T^-Lv~=DfZERmAUFR5Yzr)fBi)D?T7u`J9Cf(9ZHy9odhM>FMHpQ
zk+Bt6?J3wueh{vpv{zn-S4pSepd9L5dttwp_q}3#w5snIhnLxMhNEhSm|HMzKKdjq
zb-#&gMG~*U3>nNaBrDPz#~;)@-<kPdUxEQ^q`hJ_A5*hYajY7Tapum1B^Q@jQb8Am
zmR@s9!QJC0PC7XlF6F3y3M^HTp$P@LKybzZTe`qvGz}OtFW1A%*l=FTu3yuD0>`V5
zYrqwXa3NJd;QY3f>c4lgMf8ioaL9(J?;#+9iMM_aVF;`SNwSyp3jzf+T$gZ@D-kHC
z<byI0?+4%$n-pY43Vhce9p6g|{*aWRr5Gc|g#nV4l<L0zLBqWmP0W{YdwIxs21VFn
zEHnvI<b!g7w2`*x=qkxE93R3+N>+A<EUg8gC?PQT=ZGd)YRe+O;0RDnx#BXCCO?-I
zk45@KD2gwBwM#s*SPvuQ_PKV5@j=S^@o4D(K>Yy<O#+dlNU+9@=3*81Yij!BNtOQ5
z?eO9Az1dDpm_xW1iG`zqrh!Cp&MJoj8dSaoxBlj``6&Z0SHkpJu@C{t=SO2D_iJfA
zaqxPQ7j;Cq+>kF|9Xtmz?lUk2YzXmBPZnPxR`+v-k8HreA^ZTK1Lh%fheWiCH*spo
z%Rr6>AdQVohxUfZS#<h6Y&}HVASaLvuWLiYnoCzV0M7-44o{5B1z->o&QY+)W!fM*
z3*MdOUqvfIMGqZ-ATChDAW-llYr<Sb{YPB5$v#Q6;S>O&Qk9oDfU@<3S%fQwBfdBj
zV_-8aUiuMnH%Z#_5a_KOk5NN_e)i4(HGs~=&k{>?Fn(!E*x20M1%{ZUD}ljUwz$~W
z<|SvrTBxd5y@FRul&kOl5N|wkM123WcLM;MwJky%B~R0;N>*Fq_wFGl--0D(tMskr
zs*OXuVK<*6^0~~!qfwg#0mS3<iYr?c{K+^pH1u@zzqBwm_=fafjO_m;Rg6FYVn%?d
zh~l3j{z4mCQ4t{-!Jgh=shlM+p7ZqSnqzKW;vBm`;{GNk6veDuBXCW{iU5&&Q09IQ
zgR_q=IZ7zk4G7T4gEhAvpEfVkG73)kR%M8niRUF@IELGLbwVq2JD^>vEUG9U+iao$
zgom*?e?K1~Qj!VEH{;_%0HcYDh2)XN;TXS4jm(dhJD#hdBoXj{rhG%id9@Zsa8xii
zW(Wepu_=z_N5QB(-j@e88BBP2)ew}PAaph2xiK=(X=A$*?|I7OO!BQ|dx)S8`pm+R
z!Go}92}gS|p)(e}eWr&YHIOxDt8yRAZ@T?BZ$C%ubcvGSTIcT_g5u_1*#Or#f*_iP
z3a&~Q9XvY}j&k~`#&BQ>ZwG2)oQ5AcRiV3UlvD3d2vJO`@puDo$in7$0h#^bmJndc
zBtwf8PA)8I^F56~8iJ%@L9nV&xDg_!`F$o?k~E3H7jcO^3MROIoJMwbOopw1EU)`v
zgzmcbYA}D9dh3AbE$MgG6s@1;J`Pt|0-c`@#M`&td#J~;8LBJ)_cgx=dZBhNQUI5Z
z7Pg895%Rs5(M;eCS(Uy_ThV7&`puBc71t#q)niW&Mlgn)XqVm1@4=Z;6=q#cDG5&i
zT`<MCaE>oc8Nh8Kkf12@!WZa$Qedzsz!C4JTV%&aI^MqIhvWfUtDem``wIb)7ivT+
zmq*L;&%$}%$D5r54+LrnaK1=aof)Ly;qmTRLmR^L?GHcB7M;<{9s=i(1=5bip3px4
zjKf8|AH=!<HRZl{1JSDy{DQ^*33UQVISA{`=&6w`p*pmp!O^3pF}f<;OTiRDzlSV9
zkn|c?{aRg=EB5xsq1UQg;swDKH^6nO3}6mh?Xbxbalfr?93Jl1f-$UT9AZS*RH<}I
z4EK;DAh|Gz;1LIZI(7N`BLpc3)y4{Zjf(v%GBgQ3!Pl5i%0_5uWJmJt`^LTx8Ql<4
zhHlc~joWnt&;$m;WJz`al2`$IQ<p)jTV>?%e&jw{0&Nx7(YM{HVw;;8c#)M}Ur-N%
zjGn3)zuQ6FmfpqEH#;6AKd5%SO9T2iZi<zhvP%5R6T>Jof^+p*3xq4ihyu2yFCLv;
z$5yY7c;XySvL`FFIb=gXC%DJDd%mL0`~7v+HhTXR*)|zrI&>IWjA8%1qW|CTC-Ey7
zFr4UC)PX<2O`l6qnsOsjVK3XM-Omq8!I|+<N^G8>kjz2<jq%kQcLDNbnBaWfI77<<
zG{g{|yhqI?2|$!Tx$TVi<H!CJ<J5x~g{f!f8XL3W3{V)A8}LVNHv4*$$Ui9f4`M=|
zG!&=V12K{^V96)AWPUJnySZ;}-oz(w>(?Fyx@dL<8<R?j@OV7PRWgl=Nh1!&Osp^J
zKzfwOS(8d!+W>#ISX^6FsY^jokxN(WN8|VPGej7s5c=SKM%_ywJZ`v;YD+XZBnGnt
z8@A<&zENiCb6E#T9ApYFCN-RbjDn0Iq<V5o(0ofgoz4Ko%}35`zNk;=$`boTWLw=G
zkFbG#afm}i6-dCyLrA;q+je5QSrk$mY7k1LvaQ0s0h2Uw?Ur67wx0?CHVW!Uk)K~M
zFq0r>jqS8Ta0)r_w?63q3LIjAH|YfD1{#AL!X!Bzn2;%m5cHAVcC?lgd@5qzZH#dP
zz7XvVHV%%-_MyY>Lq)Oym<D!hS#a=Y%E6Cp^>7<W3)P7U2`0Z%wDD>^0vR$X$jX@F
zrVKo{adBsG?&?D#Uo13A3V{f~WeL@lx{cObJ(1R@1vqP9<;Vb}S$IQVlDNU7NRox%
z2cWp!<vZ8xpp6Rl4R|{bw)Eh6ryC4scxe&$q}B<QtT%(AOebQf6SS*9WTIVP$LTY_
zG!@{Y0TW*!TunF80<XfBc=E@6e;^`=06q^(Lc(m%oe!xNz%-#lr_mOOAmMr&8v*lB
zJBc4(D_4CXqx5i&Dg-$Ed6PgnFZx*nXH&X{sdCB71)E`gzTtiK8}$dE5DNRTI6#z3
z{bM|XGtCZ%r+KblDO#`bMRw7oLzuTaU3t(8G<d0h%^Y0@AO=m)LFKpY|GifJ`_ozl
z`P#;jWKmBdh1bX8ps5;D2kiBZL^^&qd|Zo6waSE#hpF%Ogf4{>Op)*hYWTSmT2mVZ
z)@tX}nGW=vW>wWx(*9OYt=1a24b!J%Y-1dZKHb_RdTCAvj0{237?DFDn7?Q<@v5f@
zj)tM6N8xj?0>eaJ$Wd9Z<5sojwV7Bs%oO3}uE|Bs5HMkGG_@lE%?)L^7rV|Jp7pO3
z;JrJN_ky68*l3o_hN!%)@itIY0@q6vs*f5y4NP?bgTc*V?%eWKEGjOxFK^DV$^^u=
z*?fK?Fw8ws;*#jdQqw-tG|^RIFn(Bs?whZ{>Japsj0}gA|ITV)og3cZ{0FP=$^!>@
z8|#LBe|t@e(#IK>nM9aYSt|pVcL1==Df5sqW`i~@XE;<>fs)Lb{<Rgn_u<A!O4$PQ
z=B|=$wUT9C2Q>q~0SYOOAyQ5hya_#0v*V`2QkME6@P)N_pqwE{U)}WrBn0L!&q&<E
z=;TSBfj0y{h_JxNLYzb=?03dKsbFI41>JskF3Z^)le@q$<F>7SAVDb*1WT>^@p5ub
zn>))HkFjI3_$1HE`>1a_A`Jb&8$$Dh@`6O)HY-YH6vEJYki5vlxWZ<eGJHozSa$bn
zOM`AE*x~AO(O&*DMT9?ZQk3z?<zdXuuV2;=zxUU?jALJg`;p$>q0BZi077T5q=dxa
z>&+Dv&~n)@rT&)y6v?-`MOC;fi~-0paTjK{%`=zj6N$9t6mvzz#Z!RLPuZ|%+wJei
zi3I{m3-Ex^x6S^GaQVM>A(2gSfZ#KrLk&~466H=t#T5fY5T}=aih{N_w}@uKGI%ZI
z)Pw%oH#p%XI5FP?#j!WP{UWVrlK~2s0%-h3v04b4RO(k2bwk)Lph;xFFrheQ-aj;K
zR0)Eo$O9@KVtT&Q#;tWXL#R`N7BC7DveZ1?m?Njub_mH91U3L!fZ|@bmPZDkb5Rxw
z4v~S^Zec$gGiiP>1ymzVHeGm0PBb+WP}?@tJpCE?04lCtf+~dGrKo%x8!zGPD{u<3
zY6^9qHs8eh5gqhYClj@Z5}<(8*y~WPm$+T!9k`U=l9<UmIG^0sdM`~{qM1>vM91hS
z6^iKh`E;^7BcqJHbJS8rv8*;A2CeWK30KCb|6l77r#T3yim*lRr0LExqXy&UMTRTt
zv&FUdM-xzD#C;X<3(~dNcABg0Fw<+km3)(QXFi^7r`^khPVou}z@)OLC-dsB_sYLy
zV4`2hIp~N+iMXP~q@fPlzEU+cEs#`HRV!uJF*k9JuLU4F%-B7J<_^j9mJL+ufoA6&
zxk<w5+cgB;=57S-V;}~j$ZRA<od=CssZ=2dgt(!h4xnfvAZ2vtuDJ^YlLF>)6dqkO
zyTV=n5#3*m@Dd{~y?|0c4(Kr=mn^7L?`MB`ROi?kT!OSgqQ|`1WzRtu(T)2W2bFn7
zl6kQPci=&tXo}HnVWGNc0rs`qU>rGnq<1b2EJZfGAPtvbu;r^O4__?s_*S~|a8lD{
z%2jT6$oM}GlZZa15v+-R{HE7Gzxm%)yGvUHvbjc+*&c9DOZB3l+(a9~@-`d5qmx~n
z4>tB_aA6C|-^JIxyU}D{9U4l{>iZnN67!nf?V)zABAbcHK%-KpFzD3B>2T-tVC%rd
zDc?3l9*0UVikg;Ix4<b0vxE#(O$Q1^c{Pn;M^6Mm5)T=z%uG)74H6GXNepOs#4{AM
zc;@B0S~Igde?mh=CgRmyfNk;gh&!gO)j$%0+bu$Te&iP;Q0wmrrK4owE^JL(Y9EU5
zcx~EWnmbRx@L{{J*_5fot7f4hC?Y@$xKqu<J~&3GiJe>WsbOI%k15j8Bj}y7-<)Sk
z?tVtYK^)IWP9Cnx0?{Y@tME1gF<@Q;vtXgkIsu0{G)KsnGqn@KE~<S5WSJBKmFz!%
zKfYovJFYIfD2vd8R>FNNVK_}!sZc$Xkd!Q4(-z*mYpUJrkLC*uG2g{%Vz~}-LD1}i
z%s<!PVEvkYmHQc8WgcK9k*Xq?YgD$!b~uiP02(G!5tFDjmph^-rIrR|(=Q~`tYktd
zgHx7aGB^S$*l7bu5n>r?>}q^dTT}u4$U4mBqNuo$UOzCM1^rrP0e;`-XirJD7jt1{
zaXMOZr!5?QOH9<*_ZRu+U`z?UsXXfL540Hn>o@;#+Wa41J|_ccI0hkelet``k?K`h
z_x83~kdNizUU`vMS;rejll;hXXZ5NEHK81WKn~G0pe%K|j8&^z1a%+IE7eHOSSsfW
z#yexnl{QaytL@?Bb70Kft>g0%qJRKZ7wi_}FLZ}=2&a+HxZBAwXfgaxZRwE$04Pz{
zR8yPAXi1OZ%_V;_t|=0A_k&J*n;jYSC}XGIqaD<H=izvu<B8-+;Dl<YWT0O~b)3yX
zML)^alnk}<iLUkYEHP-QD~_L3<sWRf5}xm@b1&&4|DJ8F7xoVY-vj}7Nu}Z&`Y4a#
zR@t7A;8um<#_vZmR^@Jwq)q`tae3b+fH6#*u4~{OCE3_OP6hvT!I{sjNnHZtd--G^
zJIdYNUFOV$w8&D>EqTS)%n7&S6~$*iqU);fmA+1mNhsRvuR`E^9=x8ACL4l7*?Vrl
zc;1CGxH#-M0bN2&bdRL7D;_O3>_&#zJQyWh9dlpAHiWO`lsF;?z!qvc9&h(mnxUAp
zY~jEOVo-KVZfiw{2ro<A#F{G+aYt0;k9l=+k_VvVVD1>Mg7uDWu29#*g_&RdTwAVS
zBD&;V{SW1wBOJfNy%DX8cntwlaEc_MfFI2`nx5~bP+x=PWC8Lg0Db&6FhcS-C#uJb
zG$*~?>F{SQ{r}IP1b8d8($rXHtA7lbY9hADpueGN$I31D$Ii@m!KD)Nu59BCN5Nnz
z1{Oh;$5=@nt}AmmvsVnEX7eA|EA+5!LihNg25$>X5$P?y*Cm}Ey{L5km=@JgZPqo^
zx6Hm9y-EFHv4LA4!>}Oq0*02y{&bf=(dTYes%l-mRns=&WOv}3@jqk6njXaq&DK?)
zvzPkL-?_}+Ylpui(%7udEh^GGWza0+(x|2Tv*bK(B^T+?UU2~6Cn*I~xQznA)zcmA
zhsW{{cUQBKWP)C5sEgQhwPsNo070Q4UtyNZaxF%GdgUxmKl@J>z^Z>SK%7k69d~}Y
zm;>Zo%zEk~$2wOVQFi`Mu-}y96{jYNy%P}zONM^}j#S5qM2vVury{{HujidgVjgH7
z(k}nJq+x^n5?p=Np>oC9uakIZ#-%`a(j!t-uSTtIMtEv_ykr{#vn6TP6ON%NTE{V%
z41j<+R1A!>TjuZ*A-FiqnCpMD<}Uz_lVbHBvB-Z8Z?#|%Pb1Fcv1>Kbt#wsJ*)bCk
zAsOs;UZuj-6&D#+vo}u%@}G#mr3!%W;(hBOw_S&Q+esMSS2U6M{33DYrIeHuYqJ{g
zsGA>!(I9V;;%MDwAz*o>di}PE`K#Gues*EC?yU0M%g(r{FGCNF9a-du)p*RTr7mAI
zvg%cfT6uQq^*9YHla*nb7|^pXnI)HMK8bzNtx6~tY(+8?=fitV+6m*XlN@?Wq4%aI
zx}`>qY7pCCDdTdY`vR9vb}5ewm+d`i^R=Y4BQ8?Y7H;Y2Z=Q2Zrwe4&p`yAPi71}l
z>-v7af6uBcNzn5;atqL4RO>)xReza<ZJDz9mrRX9wpTbfRLIW2SrrVv0KWK1AUaIK
z5UBi>OWBcUX_ip+fpbJ(_2;pjgPh&p-~R?MX--Ca0vJzB(>Lv+$|rf@4C<*DAp*Y5
zW!;diZ|$tMYh8gEx7i&6gDDOT(R}pOvRkw8s{p@aV30^HpCY6A?bZ*x0(4rXfKtb~
z(zDUrfF31FqN4MQ=Q3+tta!KQc+-@g(2HJn@B!1ys#3=<S~|d>N?p~oO6IwRIbvIS
zge)of$}gC!J}{!}cK2r`(Mysy(`6(3RjsiU6bh@yK&WrUX}KJ)!&<;7tOhiq-VAcS
z;n!!pKi{Z6uu>0fFy~i{OL2>YizBR^O!{#jU%eLVk&aP}SI)b(DrXrE>_TE^RWlIP
zGyhvB(c}QO<YY-ZfeB@8xb&H?Yx8j^4rb-ri;6K58u<HB0p`)%OQg|k!4KU%aD8u=
zH_tae64|VZP?j2}{UJ_nAdq@%WinCAyP790=ymySi;Pqf`RRS3ov_A{k=t+4v$ZjL
z*thAlB^9C2JpfGV`Qbh2dJ(nbBJj6*1$cO&xUkTWKpT!%c-G~r!XbNdio=W!+XuV5
z^!SC`?*;rjM>Ilr;8R)j@Bp_7;gU{^0y^;(3P2beCS0tE&HJA_ZymgE??TB!E4>>k
zo^{2lU9(z+j*%&;3=R1g?1ckl(U$OrY`W%qx}t>ZVQ+f(<*2QB^LiIqVzx_aCrn>_
zvb*5ud0Hgvs7J_p=+{J7)GOBHoeYEMbVrcp#F&BT7XOwg1AbJtWVl8gIY){foXMd7
zR^rx{u@0DJ>F$%ZbJ(Z{^O5jxzt?{F46-ZYVfEq?usIxDO?qR?O#$}^%Zxk3><`kz
zPj~vyLN^vs=ApU=kJCL~SvNS>!OwH9=K9>{*Q0MXk^Uhf9a6vnpLGC-k*WQcj#~y`
z(~Zbw2<I9H((WdDKVX}Y$_P3H+J5|=Bb;O4eaJQ6UzlpZAS(jIuoceDY0cv&;flTp
z+QnVY?Q$O=aUXQ4NDWdzg5yJHu+R#Im))N=^rvo@%V1JFffZW-8j6?(P~3k2PE&p>
zNx2ZzUE!yDRl~k2HU}6_jF770Y%e(zP}b?$S)sQ%I9<desM4_0z^0Dny8HVP;BYo0
zdIq-cV`{uEtaslKfChmgQeB%TpzY~Lw>mr)78cS`b>2$E>yEQA{&V0z8+80?x0oUo
zODqfE1}QUn^-T`z-DMe05iU#N5UcLo7azRMfuRA5HV(rM^9G7nAW$*T+R`!^M=l;G
z@thCcxflSa$5L)nLi=qf=;b-UZs+^}TIbF7A+sB|8w*|fyj4*uSB&_P8|s+Ib}tXl
z#)VTsf=$%+<byQ;6c_XhF!+=L_izF2WuR8HcR@#G6>u@KY+kXpp|1JLG|wTh0H#UG
z`y&mM<hgpp**{)zHL4FR{=d>Kkj9Z@8i2z2*+}C$Bhvya4y+}Co`yF>f3sJifdM^O
zVBq**HPvr*OC~ejlSl3Vt-)a!`jy|pM$3mU<6l$YU}1gs&4clLO-(K7cf(9yx}<L7
zS$cxV*+IPCgJ~%Cr%xEDZ@(;ls(r8har2+iylY;>Xe`UdvMV4~LmwAERmI7vXs(ce
z@e%1(ovA3pEmjA&qBvwI5iwFy*ZqW6(<2!8Lk3juF28S;U}LG2<mQ%Sn?s#B%)Wc6
zYPVw6=I*zYsk>Rf-#tkB&Eff`+0#o|OCb}1781r~FMnjPl9ZV(##bt9VG(4}j898z
zVLjPVe!#`N{t6d=>(e&obQM29VV$BP7bkSX%EdG~^EA{X>2dqZ^nY`YJK31uI=!OZ
zN=npgjcw)xJ{(S7*h9)iWl>r326TJbybkj7W#J;pI6woZYH3+=|2-o;T^2z9oW3D+
zW{&h7Ytf#x66WMbY!ZVp6(w()fqXYbDe+S9<;Al+=Hg&37WfLKV~<eEz6Jh5Cnkhx
za0n6oY3?|fN81<7Uyfv2=@TGUoVg<0-tv~3*o%>`Ie95lr*)oj>8jm@=zw7w(Gg^L
z)7+7PH)g;k-FB6srXOcHDkQsW_%JYC4COyR^ez{uN5KsQCP_MrWxWy8MMqJb(VI;x
zl&tHF(JP|+7wgrW;=_InOLe_W&76L4%IViJbp0E|U`3cs1>d5!shsHMi?at-`%Rk!
zq}`cql)QjflE4+pO$0|_MtzgieBf4oUiVt4{4HPLKeMT&5eP>axmS=F;!KZ~+p!NU
z7YodvgJQU$caN)2kF@?ff!F3EuCF7+B26PYo>hf*?Ko83Z30tIde9GWc_-`PWGUia
z_a_6?fpVn-rH*3c=*|JB8}(LGTY0Ar2+c>?-beABN*BAAA$jj#;o?%`BG-_jZF3Q)
zAe=svxu2;4;Lg?*R=Wz2NMZ@c^*Lw}4hKTbKMG#Xy-UzSVkg8Q7iH<o<B1arRI*FD
zJii#%c(pmT$zj|LVl0%YNPqXBZ?7dEeoKDz^3~6ITufy{7FybHhvl)b2SC1}@(n{m
z{||Z@;nbpiry{_g)p^S_&7KfHGdl?`$dl{O9m*KKluf??Nlb}Q=}Nb&uQ}U`Hva%B
zB+Uf~#z(-zPI~*z_yD4)OPJmH?3JSl4-W@CFm!1_R25826)L;L!)gEOJJ4arV&BX}
zv9!qeHTQ-mQIMHbXmP^OJ9GuWoT8F<uxaT4v1g{FLf7Z6${47e*Qdd(LtoL%s?XpL
z{6dU>!)?CEQ$AFyRZpGz2jmN^3ly0uGB&|4Po2TU+EDt$&x4=yuBUgbe&_c_lwzyR
zcz+sUEe4nvpQTNgRJB;ARnBs-Bj(+cg|z`w0^c#$>fvnM19#Y0dtZO}<+eYx8Mg;_
zF~&`<gzqdBZ1|){o!8W+-p{|`a!FxO^nRq|ThU!DUvA&4-F{~m(r^4U(@p%0o)3sZ
z25BRLd|(GhzDHqADp|tW%#<ZB$$k{}7G);}qIDvV=7L$8_vs1w&WxF>CV_msK~~;q
z7OZ0{KqVpxSJm{vOQ}txY-s(X1-Dd}GG>4ZJdUmr)Q!(YhVJX9y!G_J(lY|?ff*tg
zSjepzQ?o${e1G~!jkwd(pW}r~oi3=hCNSy*NiU~_NF_aWSAH%Ll?#Ax<w7Hk7HHoM
zsW^ho<Px6>&+V&<CX;-1aB&05x3aj#RTeZgku|a(-v36qdJ?gUVj+)1W3H@VQ;p@g
zm_k<5Fg=nQ(~5g*W%w8#`EE8%v)ltuMmigZ$@PrAB`w?3N~8F*!sQo?jB2c=T}66{
zB0t_}xdgY}I@6~96YZHb&_8=Yt~tp1OdlhJ$ZVLpI<maZNw{odPfy)TR5Va8ajC_%
z9QPae9o#&sgcx1JOh32%iULqwn}2X%TW*~;P^Mn~`x&Jy5WxwMBOi2Rqs!H1xD&O5
z(nkb~Ab!p&40M6t0C@i7PFZz=h)w}uI|MnUublJloy?>v8^?9!rdi1PNC+i?h424}
z2kGjz&)^!CocIFKr>6212qxUm*W=x}emW+j-FNu3!?~KCiY)6F!*P($+6?RS!5=$V
zeYG0&XSA0SX9VFGls>8Jb|K0oraZvdH?{w4jn{a{WpRKDoH-Q|A^jD(^8)2l!~A_o
zzd0XXeW^mSvPE+28Nh@|L#`KEel~rH!w4N%Ae2c1<bSNxG&DNueY|Ut_rN+{2uRl!
zN2NcL@{fpFv+UWXfArALCYV9*kKH%sL+CvbcrIj6p;u1Uv;c$GTlA0FSDd1usv&vI
zNoM~Y9~~k;e0cq^xo6}|D&WEPte*Gd?Hd@t?#Nn?;*1Co^g53#5J4j_jF>?r*nrT9
z5$X*2Zp#127W6i~F=+RarFTjSe$%_r7lp~mao`ka%FaYjFMD(<(gw6@)!G$2olhx=
z8JGFFA><26vojfev-Kr+Dsar+)nZBV%%*><mjfJ~#MptMsK<HeBnpuMnLMawQQcVU
z3tid=ST8YKe`Z+bXd(p1Kc3|j_hCE+A*2uHe>7m$XFFc<RJ(7kZV|l|$^V`y9U;6<
znsn&@cw>$ESo!UCl1GnpDNF81n>A5yc9b@?;mdv<3A@jHJ}Mog4Y}`VNn&5vX6|I{
z=8&zqrCAlwWu6B*4EPEWs*&2?^}5)9dAfh8b2sD@p8ad|N>jx&^R3wTiZp|!0^iDh
zoi`Wy4EvmK?>S5%AMrt+&Gpq97tL&x4jtsVj{-9}nEipm&=~?_;yoTy@pZP+0nn+_
z)#s*q54mBv&)5XCW||J+A;MubR_Oj&Jcm4yu#}kzss6dpV#T8SQBHz!K>9TvDt7au
zXHk=3E(H(&gLFp{S|N2(vrVNf21A7HMYsr%ME$)l;&%UA8+DU>5D5^CD-iq+m@|w*
z0}>%FJtQ150sUEt=EI>Hq0CrWOTI%~)qKgRTk+)lFiaXzSYPwsl0I%>{ZKPc+0Lq^
zKw79$7cYYzxV?-fr{y7IH}8{m{YGd#XiKY!p*)~F$eA*yKalNqVV0GpKRC~mpy$&)
znC7li!nE)u!;iban2a&}pIsxcF7yTWOcx0=l8#nq@9_{YL5r)i_|<3^b8oSD-}Yye
zWM*dS6}O-C6PW=UqKGJ%f-OzjxBPa!5l62PmaOCixFA0QWIzRN`GsXue1l{_eX+ed
zLR!E90VXE7fAMC<9K}}YX{;Zf0BrX~mw<I0ckC1WA0k{*)SAFiOtvn;&}JiBEkq?n
z#Y+5Z(S<&ah~{hoPZiRO6WdvH2jDsaR;<AxK<Dq~P6P%+a3Og`C>vEP0Hk01H6rKM
zi5O7aKidI#JHZZG_@i@t)y_L_n{_2R;Xq_Q*Bm4ap%9`VnIc-q#z-^;Sy0n8fbUpq
zqE-0F7;K^<P<7`8MMx5w$*7`AL+DJ3W7rQ42ska{qQ!>wSWha4|D^vjD)25MF=<t+
z-IuC0PjS%!64Hlr^3vGfdwXJa@UIV&H9PF$jN7j_W?xQL<#Spe*x!o3+;qITQ<Wyr
zXxO|y>GLlCzM~+O%K*}w?Ubd4Ku}VB`roG}jJU0Q(!tfp8biuL1^KNsbelJ}x*aBD
z9wezqF0e)^qG|=9Z8G5r8eLBj`B!aLsFjPL(Br=sz_mg^m3Cn5`ws-)6&fVcJZG!y
z<z@e=2z4WmS+XaCkdbw)rc_5uwcYxx&$~JK^ScIIg>)!o??hbKIPtr;p9QQJ$LC)e
z+70w>|NAuDioB3$Uug1bC{}9H>38IQX-Zl0z?CGbK9*9er}*&vJwKTUwsfG$`3}UA
zBue`>c(N=8TIUx!<qK|p^9RRX3d13}@$M~(#DxM~3H5-y#KNg_LB&Y@)to$`#`ewM
z_7Mj^$XYc>;()z$_)lOMi2zi*R}AIV<(@dY)v&Ga&2p_7Dqz}@#M@nI=YO_M;-(Hq
zGQi$AweRY)_VjVMfz)WPD!z;uORedVuMsV02Q6HtF6S(?B}Mlohv+_}iM_#~KCb>{
zN;jNez`VL&H^~2)I@FCsc4eJ;kW%D8hn4<w(9{6kRWFR(-4(`EccFI7aD<Yn4ayN)
zM2H3&b=6ZOAX1}mdXNlx6bJ^A%gnK;?RBN*2fk`*lodm-YBZsl9X)gvlDelr`0!FR
zj@-3-ITYj_44C&!SxJTbIK6)6v$y##%Mm&)FK>|%QYZJMjOU1d3X6Sqii-)skh>h@
zT-2L<duN`%FSx4{X}y@vp7{2Mu(0o2d_!;kh9k;fG`IY&*M<u<_cm`je1o+=^^-a}
zJ0~Cc^1DT2MlCxyA2YcLnNPO3K23fUeqYZg7`Il{?nVWmk}3@6fPLzNe*A~?v+>Nn
zBgs5GV`H9Wmk$nKe#sMY9~6GTMvNfIn=s+g!D_$wskF7d{kG0r5hv1P-Guh16)X%3
zf9q+-(M0~sm{$|xOx3AVME3V0iL@96<l-$T8=fWC@mXU24-L|nHWP(-hm(cyifL>j
z3`g*Ycah852=n7B?T+Wm?)!?Uw>nm5T_MO1rM`FOVxe?V9oHM~k<n-=n`E3Nb#w5)
zXx!QhQFt&Jx0k-#BvkOc*Ap(aj%dz#lPuNhPF4)4nA#VFm={F_I5<)b{2#mlmeR(|
zEt7lVYb53^5pQ+kTnqvES>Va-g*V8tb5B@T<bB&-S)Rrrpz{%1f@`guj1TaJ_Z6kL
zUhg(DnSG~9F!1og=j!-l>TFs4^itpK?}_$p!C>xy54EDfEfI<!KL&<zL;rTE61?Kf
zLh_(vq*+7Z3}DHY&&z{h7pA2()C*SK@LPtcC6zzb<yCBIX%EnA`_R&Jx*O7PxUe#N
zp%t)D(jc2i^Hut6BJTlPo-45vGCYsf+frod-8I9`iOZbM>6vQu%UABW4Me<h9rolr
z+t;FRsvq$e?ku*$kVbTbMDsZRl<6`j?oNO6w|aWBXo^c`7?Uk1{d1mWr8qK#P$Nga
zShZXzIFusg<AM83_fD^O=FJ&$YPMkCtK{aUj1DOT$-W=GcLo4e?_)W2>|!dvO#`kQ
zts{mRGXH&X1syR6?)CO5IB18^CMJA5c+O#x8<PIs>Fh=%7;4gT8Nb~ICtg3{_KGvi
z2Y$tC@%o}wgBNDi0Q*Z3_d|GMj)Uvo`l0xIvC;>>%ZVd(dHR!phE_h`OiFv-w6=TL
zEsKc`u8~5<nHB6W<V)|M^!%=tJnOeOrWP`|9Inh02x{X-EGC*Q+g!5pyi&RycQU^g
zy&UBhXnpb`BrWs8;HV|Mkt1deyeofUVUP1It^XO*&_!}4r2N5#wB`wS^Fx?P?){G*
zXDyb;EqAP(z`5#h-Z2==3ALmg#?`Z!FqQ5rqu^_UoWukwL<C9XcFD`m=+nelD6};&
zsqKRH6bX&?opQ&0`x@2s*T_0mQ%9c_QCHkmPj&x>-A+12{n!%)T$=NDJ8b_zL;vER
z|7&LY`=>1Z=kNe6Y&0zy<)YNrVQpX8b@}~rD@vHyC+m?aH{xi+^6VbQ2;(qBoz%iY
zai@Wy)f4cE5hKF@!L5-%%oj0`Qxx#l?sm-DLrcWg`9|C%eliqA6?+sZ;;>jqQuGi}
zYX+v~b=$0m^&6Krhj&{-3`3PZRp+6>3mDV4N{eT-u9+9HU=63)NRQCI2+8k{^;h}c
zbgU<FDSk9Cajby(KPV_)H;rqPRWCux{Wm#s=of>DaFkkhIw(``B~}4?+8fFx4r>Ok
z<DVacB#1m#jDb5-tLc2c)s&bOUole>vXX>@3k5<WD1gWuW>z5l4#M^}*EOeu27@^t
z6A_536;Tr66OVf#IBE{_S^w&&(yBjN*`*IxDRcXq>k*Ot5_!Q+s15C>hWE=M{jrDQ
zt3GupLf2hcR9too4(o5{BonUGk|QD@K;ULeaq%uG3I+z2>oImnlZE<gLas9W7_wER
z{&yzbpqjRr6ns)r8Q<IbL{Q(|k+){YtW7$_pI@2oDm!D$=d$ce^;WO+eH`(Dp2=6s
zjsuz8AKugPy6&-w&3AX3oZQ4oeH0d2uBa?2F`9oGjK|0*Ty-ADX*r*a8l7a*h$h)}
zUw!yW#hQUzLSFlBK)F&vOKW=vAItFpkEux!3#LJgBA^C?U{a9|9wRrL^j4%PgN+vS
z+4k;Iaa-Wx0*v5U!vMR{hwna9Wu~E#-J~Rysct{do`8UHM6uu-8yO|vAOI$D%+b;*
z*H9LF;2mc29M9G&-wy&-h^r&qEv2(BZ<<mUzS=PyCw{<wqFr*wNpC2WY=bQo=$h_S
zU3kshTqZKBoT@y2qH5+QqrfPOr)qZcIMp%^7KLUh<Se^4G+mAAmj|4?KLpv+0U~Pk
zzUjA9DM7uwZ#$lRPJW=VqnxG}a#^j$uw=X$Vb@MTDyM)16?|Sf(-RaZ9r+`>(LS$e
z19xm=hZvo!bo@z*_VO{m(7nl{LPJR&2S!OWMfI@Mh3v%dHxiIW2<^CN-`?7L|JVUf
z@m6h-<us#Rpe9O6Vc=TyceLfQvZ5q^I1ow!Xeg_9$T(m>ub9<!WaU7FxDS`)!Gab)
ze)Szs?YVzP&b+Pty{Zkq6z`i8mFa6QY<xDnSICojoh^_jIGBDA9Nwr~W*0P!^C_c*
z40{orsFAM34(p&zyKCFMD%+~UHC4mWt2LEvZ)Pq1`fkh=m<c&R2uhuaChoStk<40{
z(Cx#(%#h?5_a&aC;~+89WBiy}s64tG9=+RPpzYVDXYD85_sx=Ch}VF4%4|up$(x%b
z8)w41Z7u*u9)Sn*i2p<FJ9jHkFGRE+v8JW!f!5xD{H`)8BZ%My5G?r*T=ADN_5b}-
zpmSKjP1!vkk<=kSI$#w_Ud!g=;c2{l89@l7BAH(#?VAt6GOADxqY+!`goG9}0Rfm5
zoBO(@{iZ*Wq+h`xib2kP;4$zJ7MvP+d~xJPj`&7`D0@mC=IhnUhdDYk;*vuoj}i(y
ztPCUpkX!7KO@)e(o+Cx)9=ZF-EE)urSyIz$0n)Nvm*tTJA1!mbJRr4$0b7EwJ}^}A
zTT(Thej^<cO{4!UZF5UHlC_pc=mw4qe%^N-Y#C9ASyOYS@ZIm1y_-`5=tz^Yh}tw-
zV1J|Hk7T)jQVz{@76U2GGPa{yi+R>X{DD*%WcFBL;33nWcEl>veZoCFDh6Ulv^C0I
zeE^C&V>n4LSye^Fax9DQ5~s2TZF&z-v*1+{t6j#D$R`{pL%af~&14mN?^iu{NMqQL
z3cGv4l_L4B!D=^g{ueVnKq*+hoVr*ELXagAR{EDOyASx0QIC%+wZbI}ffa}|qVjNo
z7_+!2-jJ`Z`#<Hdh(uF-&L_%uL-9M<%Qp_~T3AKe_#G+KOTZZs4bTH|GU)o<Rw81k
z*J{4TmZYyZ^g|ZM4q>{Qni@p}@4VB!WzVFD3b9aIxPrzzMWylh$cQc+Ulu)&MhJzF
zvK>(8_w~KL?2oC$Tj=|hHf=x+?!4T{YM_Ujuq6)`2pm5fU!{_XIM(H6l<^}lM~Sst
z;EbQ0C^N!EhLD+LhogVOnJoxuaj~LT=X`kZ1;CI2*-!~}T<c_b_&)Z%!^6CI%)pN=
z+-0_UdbKFlJI&4()?4Bwq(M~a+1c_F6Xd6lJ$m|jWq!x>Hb3QUM)(>Mew0#cU<as>
z$b`{e9peN!N#al<eP;<;n{D&<Z#e)Gf_hM&xXK0Jt)v2fEQ&kr)nQyyP<7EB0D+0$
zp62b3?vW=@<7nk=6$1+SVjX?#l80}(v8jn(kr{3WvPWXyFhET}BBavsihu?e^XjUI
zk7^iO_Pe$#YLfZ#gzcNb6fW}<XWVq5D`&voK&OVGgsMK&c8(*;X8%^%?v4CLp=xN9
z3Rgdn=Uj$~m1kZu7*Uey$Y6k*xRcZ*ZtjThKDC2^<vf)@Px;zlEkgnV;XYnbTH9tq
ziscB^(fS~D``ShX|AXa>GTrOTWO`_6NWzy?!(6J?e3Dl}tACpF(L&UG@HY6S5~bsF
zuxx}h)TRC1u&&-9ML<QFFs!BCrWcL-`Vu_LHv`^Lyx`IV&*#NvBxWc8QF826lcL<`
ze~uulWVr!a4BS7~IHU=X0vz}YD}acHrH7u<dWde*Z=A>v8{VBj**Gp08SQEb_jE5`
z;_2yW2_360LqnOL^`bD+=rxn^zYgjD^H6Y50IjhT+SH~D-^B9ikmCN&q|wzZmJ8&A
zdtdAo(pP5j8h5Y(8X4+AcpB=S+*}AFd`euLoTe9$aNMLGw!7T_ENf|T=rtMbk0A<e
z`AMf8h8%%~;OFQ88m0%dMC+#>5e}ZjitmL))iQFdxc4H25)~XpHDs0>hM8D5yQJPc
zjHAdcwrUh)Vxwh#OqW%LE0TdVwwzrDh4$=?F0&^6ScyM2Oe&C3)ux^3-&RZbq@%Ci
zdM0w9yw%ei+-f-?sF_Y5CYtQ9P$xF8*pyjUZzs(3*>KfM2Ma-zFyv70hWSC@*f{UK
z2W3qArmQS`NNbD9ddJwL2)gIHTk!5rbWai%QgKbecN7jW8C=B%z|^zQFtu{Wbk~Th
zDPgDU*`VmX@qs`m*}hYsF=;!+#u1bo>+x{$Zgg_ZO}iAAl+P)_eB4i;#Va4Yge817
z`qJs!O^R;+A{C^6AP2|@$zojMMx07D9E-Q>`F_+e+d+qe+y1*aCp+0H7||V26g?#v
zKcFJ<x-Va(07=s%pssNtZ;6CSk=slj`x+ORiapzvwj7O$IWgh;YGtD0VYoc-UL-{9
zZMsv<_eV8t@S>3eYK5jd$O?;!-waAj%w5qM9c1Y~!u&;!y=d6~dfiHe8mo6?@qMPL
z)R?N7?WdXu|KoN|OKmTnSx8hjH9MN`SlUT~%X~ENAMN_z<euNXuHMT---0|<?3-xn
z%$a{AXjJ)#w)X3oaKYr)M4OLgDb>`_bQ`(2lr+&`jNBP*4Q87=-yhV?P}n!vzT8B(
z!T##By-IPPiKcl0%U-&&eQK5}Xr+NO`+Jx%9I0VgZX;A129y4Zqq#_`MGz(8_7+0s
z=QQgNf^iI2KnJ5lxchvS!s>a0kwdqtxmJaR&?nHu9R}os|FIu?MI%cYk-u^XaJM{4
ztkyH$)oQJ9>5BHHC(^$kw6W_8q%}$7wi`hFup@@PNp2M-&^9d4(Ov2zC9WavjSfAx
z*aY;8HSbPi&#54fVpE!d%XqTexr<v=fB@148QNA)bLs^rQ9vD}9j)yYuN0?fT<d9m
zKLoBwlXI!&l;|1e^HnZ)Fpw(q>3n)<#|Pc8jWLlO)gJ4&Nha{$>HCStfFv-;3>mNs
za*nf`dk#3LRN@pCQQd#A{eO(TWn9(kw*D<C&7>P9T>^sAHR<kdMMAozJEa>zq+=3-
zbV)ZzcQ;7Oq(SicvCi82?DIeSob$Yur61RH-uFGmHLh`eLB1FBV?O@$)Ku2#cdj*o
zns`p~WpqoMB!DZA`;8MJ?fM&(qdW5|E4(i^k6VUkErg#BGDBG{GKYtwoqJS;(@qcb
zGFP>~R^L#7{UqkO7{yeHFf$fGNRuvUC{n%Zw-37Zn`P#IfMpcWntwSj?)<^$e~vQ#
zOKmVJ0zU>U<Sd*fdz&FX{tYfT=4ja$4xyu?&JAA`^ODKHN5XG(R!fL76+0#H=eV*t
zZFRS0%86J;N0C(nS>bvy<|5*XiystO{yERu`7vtGGgu^s+ji<{vG-$t?+ZW$6h8G7
z{f9>Xl$dcq4o`TSEHG`?sCzQeo!5qN*$t2;mM%p27v#<0)h1TGuIrnVv_d2Rwhjjq
zys4&UvZLIBu6C8h2<bkl{7gThWGLdPjUfETCBMmL;#rq+Lg{BG@eiMM4gD;#_+?cE
zrk9$&Dj?m0);O0?<+u53HdxupvQ;HtjI9^l4r~^?ZA&D-R7e{uY;t6;RKCBcN9Z45
zQVd!I>^sj2zhPU%B%Y)l4`(gcC`mJSfv}X1Tk#pE2a<1*!b@{T{DK|pFmUs@m?(=f
zKPH7cK0l_IhtO+zwR>ON=Wc%J+P4Fims0E%OungPf50a{;>d?UY8a_#-Y(TkbP1ms
z+?l@i^PxJvsp@b0Mtx}qoatB!LDnfThLEnjR^~)f&1(olNN+#mps$4m76G9?!(?#K
zZ?nt?8QUYL7@vsOP`V0zb2YSAq?oP`mk+j)KCnTwyR&{JeS^Cm-nHLqf+6B>JnLQd
zaL8cPFiW#fA%|O3wRvDvmfq~!bI~elDw-!DCFfGAgw8tD4X&}8Qn0>(9Q(kq{)ky@
zu{QoVkPIb%$l}MhX3<C3@C@)W?{`=ZCa#%jUmWg!W()Dwsu#FAoIM7%`=HnrrB$8D
zU4=r>&F2GIL%4Vxr8)KebqGPw=CE2s-;Rdd4+V_oRte^aoA3Sr*8hQ2zsDEH#&wdZ
z0o8BD4!_EWAz1#Hv0h}7bx<u=4|5(eXCEC5_<X7+H&ZV|23X?c#SE9)?VGgy5pwZ$
zbw-9oRS&)NH%S2GLhmNO^LZCG;$US#i&IK*o;Q?^-OJ|#DvbJ|vq{T36ig)W4&1lI
z`cvH8HveX%1oagiRh{<Xy9X>?TK*ou{#Zu<C-f)C48@tc>p=HdtDPQaBGv~wnYkcg
zWP~%7Ao_|Pi1*VHB(VE4o-4sK6g7Ggc>Zr&@Bj9TkYjPk0MRssi;D|hNa`8sTZDp+
zpdk3qa6o)b$kPU*X6f>i5234W2Lwc7WNZ5UT&!aSeB<wL3C<93ytwkzBUP=#&(6+*
zzzN{#9P!#})kGiz`T!n2y%<|n&6tNo*oUd$ypE?wjEN|cBbi)!v);TAtDm<T^OpCR
zP7|LtB$5V&B9*H&psY9!Ewx$YW+kse%Q}pOK{vVi#e=|i&zKlk?kg=;Sk7X;qH<WM
z>Zi{sxms{Ytc@&n4acIsR#Z~qekO7cMJx1M-3D$sTT5))6}Ti{qCEhMe&!Fo)`j(E
z-E{Q=jehgv4Q(Q1_mNmbx<9bt4?xU~`flLotyXWg5G4|7k>q<LatVIyQn!T#?Mrzn
z`RSw)O}(SsWJ?EyH2cYj1f|dV$rDHC7e8@;O#@n*AZBofj;~a$t%wMr&WL_Ua7S6C
z{(uEmVl5QPbm%bjBR#+8H2Kln95opHJZ%({l#f9#kE^vbPy4p8W6q?qP$FE}Y9jJe
zL<GHpe5thG^$K!^$cng7bZq^VN?A@M97yH(xGU6E><T+!Z%*WEb-&|b%ppSid1K%1
zNXth;wnYeF!**|$ubJr1Xy`adoFvurLOCe8s<+!Gn)dxY!X;2^Wy8kLw45jVF+w!W
zr>M8AgKEtef>2}-5$;H9vQoroRMyOqSzo%2BqeEMW}RZJa|Na-J<LgHd>;4tn#NA=
zBB9&c!z~Wgx=FZCr8sPYjR_2_ADQT%kaen!)D|rZeTRa_Qg15hBcB->oZj5p_-c-X
zqnBUnQac@Kdb{lYz>$Zhp20ahn1YL0))oI@6!{k$?|=J7{_|(5#W>Jch?1a32IWjy
zV`F37Uta{>(P#owG;>Gc8ANg;`AmCI<b(o-)oq6$>;RmX8i+R~gV7kiVC|-}2G&aH
zK2|}Y5l?Q%r0H!IEJcQ-p;2$?oLO4Ox2Ilchn%TG@Zy8CFQZ|TFIb#&SNaCpBv9!u
z*NbqsepwSseJvJYUg1rXotElIG4M?N@}9mnIjw<fKW52&E|MMqWQBgg+(w-%{`Q;v
z&|PpWnRyH5T)jg{MY&4<@r`3b$?~EViPZY$!qg%)N}?7$*gC~%7jnM4p&xaBwUCHd
zhxi<hmv`7LA=RQ+CHwfos?5~R)m6@XaM`fT+i-d5?Hyk{E)qwpCQ(Q1fQ7srwp(Xi
z%_=0w=V~E6V=-SuiK?C+?Lgzj+Y183M%W8*hx{^|iWZKf0O;kg<`Ety&5GGjVG`rm
z)G!A}-Yd&;;(Sp|vb$k>>TK5}rnqt{rl`mK)-cSk2Trr(TIgb8Q>)2jW)FGK?uAnL
zjT_ig*JnvCV@X_MmS5T%5}kgpi8g&V+{V~sW-^|^{hXIREg5go$rG-TuD&4|@zDMG
z$$H8ycWt8=`>{xncai|(W7;xmS@lenil7cmk40zCVs&JyMIfWe)a}UR`js0okC^du
zqkctdTh)De97$&=dSAbN$yJ+@$4`QT*QR;zr&KLgq^op`Ucj4v(3el&v7wn*R+Vv{
z@qIpIjUMGX|F6Bl|GTXB-+s1!AeA!;0_FOkTn~Q(tgBPND<&^&qx!<I_C1bR=SwCg
z*-|P~m<Ts_O1<rZI07<8yt$a<G}%CysyGI~9NdYof7^{51BDL6MT`wq$ESb*d!n@<
zykj8-JWcroH{Q?fgSe1y2}HNj`kIZCv349{Ij<T$RqxX)lgf%KU+BcUB}{I)Yxv!H
zj>I@`ceD?_?yUZHG<@?zL0CuHdM4?jB7s$6u|pWX$er1ey$zo+V%S_yjrm0I+~up8
zG!vutOvY;~@zvGQq(A^QM1fn!x`-_*YV(<ynNZ!r(+yImf-`hcAm-b2;mXRXRziO;
zHN(%$p`2ZT-K|v9x{vB}=j7?_jh5E$Ze`Y2UQT{y;3CcBS!f01@AHSH6bF1xvn=~z
zv-aE#L!27prrd<8ERW(Os<#fMtB|&3zo;0MC1~_hc(~MrVqCB<e<9EQ&Q9iCy6<gu
z?D_eZ?xJ#mOeOED1&1DoN4O1ApYJzH4WRHqew4b()(?z<&jf8|%Qku2#^0u}>j}V{
zb`wg<yokafx2TVrW-TeDYyE7ZB8rZKZ>8E9obrK6jC9$kxv@E+B`u{k^5)=Mmk;Yi
zgTO(Vo!jr5BVSju;mX&rlYY6C@EG{v@m;(3eKzRKI~S;TZ)TxrWxJ_7qny{mN?&A@
zQwJNvzr+bjmRN3v=2i3(c+{Lc$dwqA4pE<47B1pODA?2pY>hO|a-=I<?Jz=0>plO6
zMT7t0hH`rzC?EzQ7xsD`8mfmMl;ee>{>BrqCo?Q7uqP}C2?;ToD1LiKLmWaZ3jE)}
zZIc6g1hQd~hKT^Qx<6J=D;i><+4om<cnA;Q#EhDp?HRcIK&svyD?ty(S#T)(^)Pms
zgZGF}k(Mg!{#-^+niUL>tm8h35^)!z-qjlf(MU>l{T-k!Y-nt(>_Tu&EVEliOA!>H
zuH}7y+z^VEb>48iylhxPZZPv<EK4bu$L>X>9h-j0)I|PHnGulmane-SBs<%JAWb%7
z7emU;lq(5!&n{;?R?3_=p{1%Yx+ena?FOEeGZ+jk1*w&DbX<?%+XsJE-5MbZQOA~h
z5u(4b^DR2s_KfVO6eXp&KsCNb&p>T$vr4T=gMFGR=c-gAVHozQ^qkS0f{==?-|z<f
zecL_5Bx@yK-|Eh?2qv|QEGyfQBKVsce&<8w>UyG%-frkQi!6hf;yFNio;;x)cn=EU
z*EJuQsb1H5tWtr3P0?+qKM7#9XEht~Dm6<XzW^R0)Pl~PN+C@)CN~_ksF%<eZQjGG
z@`CP*MXUQ9{$FuGcDUr^(-)^j!3=W#Uv(rer__wd`+>4*CJK^oJg0Hhl#h=;75?k!
z1cz8&s%b&<(`R}Do%0?VYU1T~qFsaOhYfhYxyaMdpau>xHKJ<<rqkWe)!c6Lt?lf1
zw=RQkTnj7mi^oTI)&_hQh`vhtJjiN_=0NQ)eih{j9R`t|{gO#eW6p*{M`K^hL-75>
z_xDWqf1i@PgioV_+e?3u*6vW<`?fnw4X{LD1cMr#cZSfeB~Oi;0G*Ds^Vbg&1LtS5
zQSv*W3TB;3W4kHB>HcJTMiW0R(ixsplE5Kw{CAr=I*euj?w})!ht{&~*Tf_mKB;oV
zqE=|)D#&&+ouN|u7l^>kr|`P?>Ug|)ykLr3|Hc_{-C|0VE|V+KPK%PP&bpF2+jTRC
zu)-!VUuJB4JlDvq0dSeF<HO;kD-{WCoUGPpruEq^>7N`AkWpnv7}e<m62E-o!tr=+
z`fOO%1ptWAV0#1v#i=fq@vjC71m*R<*4ANQaF{G^-m8<8vi!G90@Bhv$!0z>h$E?N
zw6zwAiNIG@zlQ+hr`#6;>WxzNZu%>ra!OhHwXw3l5neo4p!}tLE_kTyioN8li?Kx)
zx_<IbVn}`8{FtoaRJ*Ir!8M#xKOxFeY9$ThItDqRtGA{xE&yz)VrV-(>BXU}Q0;54
z=4QArEXzs&6bnqvTd{(*G=O*FDayjSpPS%WeY^id>@x6$3$*vRaa+)IC21$|(lTUX
zOf_GH!yK3y$s_l&J-ovO+B7>RlsIndv}qqB4D%L$_OIBx$V%pk!%YuCQv2kdKkJw5
z^9k9?d;UB*2lc1j6%J|pU%~6J!mDyL*k<9+`eLLfZbHYELcC-1FB)~#5qokX7?K@d
zYU5&#W%JRYek{JSFHW7qNVINw%eFYMmJw|>T%&U;_llYE)fY$X;L9&u2D=95oi#9z
z*>b&*P;Yc1_T>IjDpj2^p*j<m($7&*1B~AZ2%@gh8oK|a+*Ucp|H}s1e|t2ay5GNl
zu>uQ`h3B15I_LgeB~_iR6}4}NFASJ98x~S}czI27&*?_Ufr(F6TIPz{R$ANv7I<Sc
zLg%<ybtylDTdgUe&EqUjDMN|grvqhL9TB&IV-6oZA6W@t6`<d;Uam8Q3(w-oe;5Be
zAgAox$3Sawh+XM1pPVXx%fB!wW#yqL18>E6HXn%l0K>9{@b6oRrx!L#>TA)2Enhuj
z^R~)TBCxxQiSK{Uy6-WA8UbJ~8dNJ>%In`x{VGIw5dNXoT;uea_ms#iw~FgNh8HUj
z34IoHl6yr+ex$<8Orn3$<WjOpNlBf8bbo210+n%~mC;Al^S<uePb#IysB3X(yPYYj
zVAepk=@)dToah3Ub#aatrKZ|^&-6**-B<ZXcN+z;KAZ^2$B>1~a;>kptK<OPZPm2(
z#$@wroz6l+=XhXeiTPl%7uMo+f1HnMA9=~+vittnaV+aVlu>^N_<|4SDSZyp`c`Xq
zWw(T7eUN!_VlIkI68lHF*G@*wsS%9VZBzl)<$I?(zjQIu!lQSuScQ9{d{n#Yj)!%U
zS7dZI@Lj^eKYpD{*FnNU|CF`(%65*?=*%&&aWBYmkBnSDx9zpvVsf+FVNr_J>i1i7
zYOpnCWJi@9S?yuROzXwH^}#}tepP(Y*V=FS5H+zj!j*4wgWpF0Y{?&0)<K<N!<fMG
zs8l2_utHa>yO?q8RNZG^vc!d@JdibC^XR^_?u+T1z|h7JalULtA!kyN(E${`7>F`V
z&iNX<5MDzdJru|`cth-ojwG(Ji3-DXki!X!LQHvFE_aQzT?!o~zll;G?NQT>s)uFG
z<?TUAY(J%akwR+X-^L?;k%FtVU!v);|7h;&l4KpBDz6!KTH_~{eehg1+^WA`<4x4b
zHciCO&^(h{5~2YGs9X2pGcwwB6gUS52bqb#F8lwr_vp|Hhq#^bTcbOgk9{}kH2!e1
zoG#${6YTwLCtuk6Y5-M9#z<aP7F6-#D_%J#C#U*HdLEus2wjN2`c_|z72ww0KCxFT
z0wP~g2nZLOLxeqH1<?|IjXuEgK@vFk2oKFz<Tc<xwxdDv1qAK`Qh1~VB4)<hWI9To
z_q>opk!4oF>hf3NfPv;s`m_&F=UjyEp;pYk?3}mWY%d)8nD4B^WxuneG9L2BTk6Bx
zS?}SW#YB4(A{*LR$U%cS1}FJ#8m9#fMVG}F=a%L^ZoaOh{2w>3f6KM#uu&6<X*S>X
zB5kuTuXM)Rt>iRymC1V-t1LCc%H@p+n7wxux$G941Aquq#=#JUR3YW_U0+#7<;<iR
zMC7~4-?vje!Yw6^PWKVomrD*D1O?44J7-&Qf4-cw{}G0V!!m0pGX5k52PeV>T=i4*
zhV(Wmn$*ui+rud{<T+X|TIooEygbeL(-$m8`}+$#A+i^_2E6ERfsLl(@vS(2F-8@J
zk82n@UT3}jvNIhluDx$3+}Dhx!Ee31nx}36@VG%``(yA8MRoi#kkk1y)j(SQa`5u-
zU5UW*YyY!eYxs}&d(TQ!fvHd)mEVogmBZb|#&nCj0m<mdNO5lzufWlDN(3Uq{J6sf
z&i3S*-;zXn`s|vYZ@Yd&Y~tK%UrY;9l^y*T(QJk!C#4_RqFVRD{hl1d(FR1a@Oi)D
z6nl>=X}edmhleT(#ReU_Br3<pI3BX;1g}5y$i!oK54(bdu^f!^cUFG&l1<<D`GZj2
z9f!vjhe%Y_UWSjE-v#VntCy`xm=l{Nh!Uk~=FhM+!v{vAf85@oqLX`(f8v|?cyrQ?
zEB{R=$3Q;`=d0kvR|obY1TvlRI~9}JlY2hVxiNpG7OYXq#jhz<*!aM626A%rb7Y6G
z3;$X|8zQiNdxd;m1U?H$CRuJw*QB_&>2(hgSiGPTOQLL`FI-HkjNLkS3J)Dxc%wH1
z{MmWgS$~L(_}mPQ!*^y(roD?&dmFb5*nT|etxyV-0?NDYw=%zM*|o#oubn6V=!La~
zu8|R+pnsb=6}1_3kz*!^iuuv(%old(F4TWObTIFY^zF2Nkee#XtEVOkOp#aaP?oyc
zRB@N`bq9PC{GSiW|MtjO)5F*Og_J<xW@5si6l&Cb2JF5;!m$k)wBu1j#FFRcayfh+
ze|w4vEtJPib^&`t1R?PW)gvOlcPL#kQYo_L9cGbjYy@LKkIxQ{uRZslcAX~wTBfQR
zc+Vpf_B|&2M|{Pq5ABlbToXFVNyf$p%pz<-7JvFp$m1awOxk*~iHHPI&uo*{0gdRh
z!+@Ob4q;8vUFbdjK-?CkhnR93%TAi9n4#WTUq1KDk$Ks5x@BALX`6S*@891;Ny|BW
zVS@;onjwSsHFTl5wBWD%n5AL&*H8N`N~malr)`2dv<W3X(5;=ccAfB<W|=j}FEY-&
zmU5jhc;w&jE7%e+<UazQv1GaqC=_(}`}}#~Cio6>c#I?23YL>00)Ym%>@jBDwEP|+
z5xyhsLN1g59bY_rEn+ZVAwFblh>pLM@I0$%=^H+{JPxcacK43Pa9sI4qx0v(e9G=f
zx7CUO`YjPjz#LR9_FSO6<KsXIYr{mNldoAjmB+etR}qGMZ2M!g0!8HE2-DbH-P{L8
z+s4sv`vlm5z@pTn3hNfrn~3{hL$0x;1&(C2=c@`Q%DA9FqrHTrlBo!}JpG!VHDYCt
zY3|vxT__N4Z0nD~_Dv?ScH1i|;}I>CNuC!wv#9W2vOqz=U(07qhs@0QJ`U*MexA9V
z>ASx5qZH;Xt@~g|5y&0%gX>|Z(p+n9*^%|F#)tP)*7_GWwr=lh-0{#1ylUEKFRZjs
z$&heB+vm!2t6*M`O=J{ef>yCdg!jcFb~Z;%`g}?h^uF=)jwktj$2lPG;j<D<P&h56
zvFC{JK1eXcHT@wW^<C3QT+i1G6{B-Iul*fcDp2b3XDQ7AXSrmP7i8VxBGQm(RKsDM
zqr<3|VrjQX(377hQe&1({ixzBCu);qI2+hGy5gerWvu$H!z#LCCIE6M&1r@^w#g>`
zSxsW?jehmJ67mnOTe8;k->B&urPcoKGjJQ&Xxo2YJ?#sHHtE403k_di6N?(LM+cHt
zhU>mSfW3~0kgig#Jp9RA>vGErTk!0-@cy}+(7L@(2ENuS85Gyz)_Jt|yt|89Yy4Py
zpGNh5Ji00QODfHfFYDA;Q9+U=<fUiCn)tNf@7UYq^hC)ezu)4NEyQf?A4&Gu(Dj->
z9LxWD38JEMa3LkTY+khxq72L>AdRywwpk)R6Kc+8H*5qS0{np19-FPc#hURhi*=xM
z`ycw?e|=Y{#SqJ1ZPt~a6QqBy9s8V`x;rk+WEe)t=NOR6Zp4y;MS)4e62Yodfln6$
z|JkfIP%Z(8o=5?k&zo%{NaqmJ#*??`JHGv)kIivpTo!ta&>MPN`{&$0A){QfnTBfD
zvS>W(`V?FPc9ET$vHI9}VTI>lH^-pDP4(ht4`2Us)PK8&xfHoXJ^}koIIQ^-^Fy93
zfh4}UdXp6Se2<ayR5{}V)TfmE%F(>xe9yrQUzQ<qASKBuVYSu#Q&DpvhsInNKfkAI
zH>S$uVx7O$H6;HN1X&FWnTtsC?&x^cdo4HHe>E>f?KT1XB*XHDN5bYNdD(Wr%OXW1
z`Mdj8w6a#97f}_Fq~N1E$jr%B5xFfS?pIDxI^k^dJQo2o(Xs$BLC~X-jLXt;bgS59
z724HB8FGG0)w9nc51#U}-xMSB@fWoodgpU`8tuQN7={boaUME}>wDI}>9qDbX$pm9
zQdd$^fu83+LN#$N-AY9Ex8%{uFtq2Qb}qFF%Y3ce+RpmoY8^McHjKIYEq=$sOd8{<
zwXn6mG-_XNORNjKpR~B17)IuA@;LRattR&GjuUgqxK_)t9<N(&#2S^#4%&>tph$U3
zn~Zzot96835p73(NDkwZdyge84kSIERmliWAj!6`qCQ0&G~EP(jI%N#pS?4h9o_0a
zU#_)sEh`6quXcR2bA9Zgc2X{1(=pP*3SMb3knLnS1DXcSPU{s*w9r0`+z(|H2+P@*
z+uhS49(O(`X3ZWan(4<C9$TD?-+%dT%)ZWFcB;5t*ITTyD4As#rCmf4sVXBxuO7wy
z$~MEn*2Vs8Q(215q_Ow$%`B5Z+XHXz_xJZN4781;C@P86J1M!MoVv-(&Fka<oH!T^
zi3)D^0DzlcaR5ey4l}%%h#3Ah9>mz**p;QXbiHgjYm0xS+EZQknsb|7Hqzd&6QBPL
z>8)h_tSWlsd+}R-hLTBA5TTsvHwvD6>H}UkEYIh!bJ_qj%Q2R`f)FjyOry6a9uMd+
zeDx75HZ#{ChJqx+lV4;sV=7F<M$seH7@&Pg8p2}Q#%v&XB4k=^__9DC<R1AX9N6&6
z14b+*KNa3}eq!OJoWWY%FsQdJnL+1x4&c#eV*hiW{C_!vzCn<ye`EmwXH`q4Lkfy$
zOsTCpbFaTaDlQ?hQ^3UVbL@*CqanA2HWbUm#3c6yUyg)?1V|y)WZ5qePnm`N_|y^f
z1t5f_Ue{W$wCMNgaVM7-wu)z<qz$u`=t3(B`g_&YvIaABqa+@wH>S%COu8sf_LNT+
zcE{~3%)=c|dE3=gJ!<K|ZG067Vs_~EJicThlN+M5s*C)G+m7Z-(62iHf<w}%r9K(4
zhgJqRq~(q;W_%Yq)`;EUuofcl!InMZEs<4!EG>_jsEj!a9<Rfy(rb$!+|>Y?ATDt*
zS>cOdL(Yfe3{~4B&VBgi?_NvwF{!07Of6PZB4=cdo)zvO?2SHBU!;9b_LEG<1RwoU
z!qmCFp&}WXaP>G!&duu)#ia(SdTMd)`q4#AtdP0UFP}9uHJNVjy@70vK^Up5Vr^rg
zYiVT=B=t|F=)e(`a#(QLz;TNpIUyPEsnmghMWmv)lkM{oCM53JzT;*!pCdwfKHbEe
zLuei_A%S|v1&Y&`$|ep#63ZNbV+)Uliki?3e`W^T9u()E(iW=|=(lxrD=hlrt>LKY
zvd<;3bK&GE0;worM)>%=T~xIsI_@D!`E*H5LrF`a_4eA1&Lz0WEMiIA-bB%@dDQRW
zZUO+z<n8=9_5Y&)m>{!00F_$~J8h0^*PU?J{5N8;W1PO-(^HfDZi=}b0T?b__YFGZ
zzTqOjz!&SL@TVY(&4mLYa}VkGGIwy({qrO}Q2d#oDWF&Vjz&kkg#0Nu4(iF4QhVr^
z*Xj;3#Iw8EbSpW?NXV4+>wLSZH>)HxXCY57!9<B15*BqorwqfwDEb*I+_RZ)It1E2
z*}kEjhH825o31iKa|g0%4=&R7EwN5$8k?_S*mTqAT-=jFK0Z5~1IwO8ib2l&7^mh7
z3k#dq&98QLb`sPXY{!cnQu^{2nT32+>k$YfiG|2J%ESya-w}AEmynA7@&|xI;@q>k
zAGCl@jH^3=R%U3_BUHV$wY5@p7@$M^Ur$vXI$Y8|>=%fA4tmH9cjg?Zo4weiAK|Gp
z%y&3dr$^RrssbsG@%_Gdw;d7SQTMiE>#HAPqyc78&_23ZFXdQW@R8L=X>uHpg4rfY
zkm)LHXP7%hg-HRht%OJaAdu`>hO+I9>Ct<yKhA=j<(&L*hJZ9VMIg%~&0LJ(%WErj
zRDv^BzSs5{I8a=8uT5$e^=%0$A<g??DaZ@EmnU6r)w-Ipz`BUbr(P-OH?**VpY2jw
z1d`n}VydqT4F+xq3$^n@Rhg$pj6zJQVWd+0Ou=Q&sxG0;96y+rzvpAMmbezc;i;)I
zb&%Hilv3O~-w9-*3JOxrC<6<vy+K$^m-@3tLC>&xe~|ImIu<pt?7fB0V+&D))b<9)
z{cklo@Uy2`N*fNS*B0^bh4R1Wbr35Q;#hld9Aidu>W?!5$g?4hAvaesF*x75{bB;9
z5j`7txU`<&l(sgpO|>f^43qO#HL%lLdYy~r8IoQ+_R0g>P&G2>89GdM*|regRJpo$
z#OI9%z8i(G6!g%(z%bXDc*>Hv6UoI(J!sj%@QqVD){f*SnqS-pZo=l-g7RXV;{1+F
zTqQ-i|4~@wp(5-QW~bdsNc;}vs^=SJ1tChl!lYbIk0s}qz+<>bLF-}FwoN(HD2~mQ
zisBjX2>fE^Wo=#bg0`8}pX&Q}cqkycCa;t3XtsR4H&O__^>j7eV}Sj-0)C^a(Q7nQ
zhQ1b{JX7z)smL9pSYVx@Qi%}8w?>CKmq5WLEU!P1awdHE14F>f;7qHYQkQIUFc<Kv
z`6dTn3U$AsIA?xE|FQnzCREeim6LS)=GAC+lJ{k<V}9Oif?n@`b)fuD{~kH30Dq>(
z%iG%X&3`Gu*bxEYBBw<4iJQ=9-vG6msW5hS$dr1v_w)!_0E2IiFKm6cz#p4~3_{r#
zGEBt6l;#zaww1k2XHNFC7G;JvZ7*>#D{B*nn;7ZVXq3FlKWD^B@P8k&T*f|<!L86N
zY24_T8_k8*FqS%!)YTkEt)Wg%(EQPH%qf|Ys0;_>&}<bC29q+s98Yt0hSBYh4-W@#
zZY2$@tfZW@UL%vV+oVaA;8@K|$J#1UQwJtzn?U>@+%%bXkO58YexOw;TH_d5>UC~N
zaMkp?->w36?t*S)f-x|c>Jl)o&Q<$q@<NcJo~+eJ%Yx?omNeeCheFO=x8WfQ^aI_W
zbu=8!URf{JjnNYu)?Re|HjKQt`D@@fYXd?{xGl0JbvsRh@$I-~(lI?=%^0AGlPxm=
zSR|f~UvU5D)e#M8l?*_QxP;Zha-I%@Gx%A9>&rrX7yiX<o+0U+pOgGz>^s(#N4S|o
zD4N*tLu~ZcTQ-%hiW~OnM(k;^Dn<%=fNj<2kn1`P2ikywzmtw)0I6Z$beC;3B$N*W
zw5+A*xu3hzfia}$g&jP}9=4)|fOV%ps;NEs90;-yPf%rIGOo_tP6`?)mPaab<w9>5
zrVM<$eY~Mm)PuK8wwg$TLB!0;s<4YZ@lsg$b7ImI;@QgtaS4PHr>!v8-5*G7BDCF-
z4|i_kligiGP$*Ov%9mC6=~G{=_cam>h-|`OTpAgXFCM5jLfjaa?60@W;X#m&tp13o
zGeyjS5~AwT<Kis~jGnyKl*O8(@k`@y%m|Ogg>fW%F1Bm%r<vpv3DiaznRJU7DFq=L
zoD}qGIG5r^6H{|0f}^j@QD=G;_h<QOX(d1$Dhe;~?UUb?MME8Tg#Yi)9*AMd204C=
zjpdmuhC9<O4FksMBj!kePzBYOs{4L1!!@e!N80H9ug3u>m>^#zAqj(*-XT>4=(rh+
zw9zALYwg-Vz7^92zdrf9m(6In#+N0d%@KD!9rO!02vppqjGln<RBi4buhvM<{-XB9
zv|3I_OjW)|PhbGbC2*=fxVh1vQH8p)ejPfvzB&dx)j_$;!de!=2JeH_-UOV}^|79T
zLKO4K{S#(Qgej#r>h+s4we5gwdE<9vP_=Q2N?m^J5&*^V2oF=RZIzOiRu>l!5-FAL
z241x4M_QTK>Gy&uUzeAbTB@a*$p6oe<`NAqX;8DWuNy7m^1v1L=HK2K6+DQ5d^WJO
zl%!Z>D7XEY&nW<mV9&tItCRa)7rcxpaWvj5{sT|4UGRih0no*P6rJ|r->MwsfY_kl
z<`V_RCY-w1@BTTE@M`<;kp8-)B)vK-C`g=y*HqH|ZYPZ*&(Gwk)$KKoE;w?LVYZ$>
zPHwa#xkU<7SF`6K*tPih0drF8mF!2y6pWcpJV9PmdTEnf%1`uKNHHfT({2~|i%q}D
z1kw^2jL5SEt9785$e=5r-PMd|oW?+h6~ezQ#=*0?<`5n4tzooNc7x>0>W!TplQHuO
zCeeg=y@lw~6*AHf2=|`m0Z%R7G};I<FAEbBlbDEPXk>W_N>~IdZX;9hP{HF3;F4nb
zc>Vu;PyT5<`PcdZ5QYJCRb{irD8k=sv;Ulm{PiJ2RZya-*3zy{V)Cord21*uXVIar
zdTfD7uuxI)hkTGO=1gRObZ~pF(Kjzqs!b_ZyiYM<e7tjc%e>}8pc3OxpF9%c`-g`m
z>}h4{8Kx14hJi^%{=fj}V6m<c+Wq+{L*&HHbl~R+J&y|7p-7mboRj8HhA!cLH7~<*
zIxzg{KZZm&D#t6zD}BoOzcXz&#QAlyVu9WS-PDA-kUlHnAQXs83Hf?HFgU5jm5hb$
zV64=cFaouj6QM_mcqkf8xV%9#m*mA(0q8zYw>@gZFpjf>0D%gdK|TJKY%vf#5HxJ{
z4|-@M5F$GhAmqKwtYv=w;k(N2@<pUpN7Fx-V)Y{-0Nkkr7)Ls9%*s&t(oHYgrK}7e
zd;r3Ndc-UCU4P#=c>yR706=Eth95XSuG$PFNEOIG0<i<EgqMZW2MN(sqFJQ8_KJgp
zgS8%KoBAtrWmPVel$6sA4kiclRr!YVAOA3l+-@h~s=6M|#(V>!fz>K*PPYO6MA|(r
z34hQ(L`NtR%1gK^!c4>y_<w(lRP_+o`#b={<LfsN8P2A7>5Yxf#1LXaLOLUID!~t_
zrlzC{@YItVC&UL~VEj!!zIl^U`rSPud3YLz#f;ae1lwI6XqcFETG$cMV46I|d}&O?
zea=uHA0H;#Te_zEaP>guFF(5ItDlA+-X2NJXNb394FxFOQbR*SdH*r}kOE;Tx!Nuv
zTfcf!!1P(xvC!7l1@9n2d`C5zgYY=~wUu1)^)dc-r);h<v6uy?G?ei!JVe6_riW&Y
zFLk`skY*iLtdc#OBO(0sZiM#!<J}1UoxdD@bEj@$QRI4wAthVi9N6J9Cd?S|%~;v}
z12DM&!V5&LZh?$11>j+yid8^2Y;+9F0)ikW6ZzW+Y1St$dAN8EUZ6OVB-cDT-5OoD
zU76Etd}#f(Z80R;f%lc$X;H{~g#H>!<AoLxk@^W$<+S80tV7qB6P1%=#^Kt`n6bo#
zWJOBhz4)rPHe8mB8lw)sDL$Z(%lsAK=STo{1WdiEQG{$PLX*I?_dcYPS|UvK6wqTR
z08&AnkGo@im*@FzLUA!8u=tkzgsudHU$=Uuy)s&q^;TeL##7w@_{?%GvpkEmuYCXt
z0X~qcMo6&>{Hv#aVgA0>b~$SR`wgwwcr;gm06Q%*sM{8;8=}M@oP~c}lYxs7z#+HU
z(%TUEo6z|G_Swobzj}$<2Qn*L>qDZYgXwTgu@U$uW@eb=!Yyj_6l6$cJqE%(wu29H
zhl1aQyk*s~PufSxuW&p3KrIW@^UkiWuL~*fBq*2s8&PoM-|J4lb27<HY|_QW$TdT`
zU$cpe?|h$p+;LnL1-D^3!Kfn#1Z<n?uulT`aHEy?Yt7l_o{Eoj^z?%-MYP*48&g%H
z@B;xwf9I{^Qaz&kAP`bj)YBvBONcdRikPGS(Pm07I4C45U>@LgZsaYuEN`m5ep_aM
z(#TCF-WQRzDV=6X4UY6qHTdC{Duz$Q2{&=#+AMuV)3DoZW_yzD5Z}~cme#!>G3*db
z-ym{i>)C&sxu4BhK+#l3%*;Blau-VnZsw*^j^N!Z0)8`RE&1@1JlLTX_+&|hiUlJR
zP})clHuD*HR(U)(E%Qf#UcZZ0q^j_z-NBi84G(@1OkRo+wV|9PRD!kRw>^-+vn}D_
z6p&FksJUS2@%ez&_od6O;w^C1M-lBm;cHxl4gV(4=J-9;y?36*o|^ym0@p!>kMS~6
zS=ftJS5>5vU#^e-4KMM;E<<yv8JOwKX@Z<^`Za6f2vxZxsiIsI3TY6g_ileu1EIFW
zW{C@?`O~5XAr!4i?8P3@tE@e18k1Kl3KGgy){W=b{0#`*|Ejo(m+-F*xq?Wm-f|&d
zVzs{$F)yN<sHbX=?`ID>`e}VJK8l7CCKWn6$lqu?8`mwti<PFZ6(FAHM-I24RO^)E
zr(5w8?+&1M=G29DbOt});gpTA1&l=ii%Nkzz1j<-j>PumJ*r7#eb9ziM}d-+_L31a
zW%jg;f7Q@Y?p9)%=xD?+{vDOu3{{KtCByZoe;VKR@m={OV$bqd2lPqHz{W}<)z#6s
zGE5!IJ4^O)-*9ver8dHyVUbVhdZ<N<%E&rT{^Do|h2*mng&0$(q*f$E#P@3Z`};tu
z;*p#vOIzOk6Jw|Ojfm4`i0-$#io9Nae+tO@al=|F`=<@gfEC-hKs@cJ7L-Cw^BT*s
zqG`=x8YP18R^waHPz1mYm}E4mas=F%DA!uwO<uvBMSelH|MYY_2kJ*Xox0<ajoAO;
z)a}r|alOW+6aO#n2&7yNVRmg=@ZSwWVu!o+>4yWJ52QPLX6R`Hgp<;1%r!{V-{L26
z$7H$10n}92tmn4b{vGj9XgF_W(fWYJbgfOc0)@-OB=An2RE|u)ok!HG6k{R<Ts>CP
zttvxX$x}{=IX6o>4ujQzIF}gm4Zz(FZI#AK%w&Im7gJ7@6mRQB1=l#mI`))s6{JpM
z3$V_37G@+b{QumW{KcuByvebrebXih(eUOc%?*<U3+U*tRNB9D=J#?Kl`G6#%Wff8
zN_pRH$TWIN|B6VrtM^uqZl6IBqB;I6>#vWe3^#Ccd7~?Zi?9^JeFS8BS901u<+#qz
zA8^3y5?=yo{<CXvumN^5ct1bCYBnY+0U*GilZ8cow{vp{z_kp#^#A8QR!0HQCTFi+
z^*sFB^{O|BLl7|IU(Xd<n-Vaq$NlvG@42Egr(;YsaU>>LSq>4%Q{~6si3-h=_`5xT
zVaF5%d_&<vPx}G1&xsMAvV2m5NTuYeX@+hQk%ljN-aTg$DxwX9MtJ20q4Y|+Vf6M2
zX%z9`f)LMP<z|UbANc9P0n5i&eF<{t9128OJOLX}FlFwqj;Hz#PfsgD6Z*8<LF1ZO
zZfFq}8(s@i-zI*5X=am23<u|PQdB`diZ-LCes%6?DzKl3nEi@la0bwE`<4Tl4y{xI
zT4K!UhTq8&J2^5VIkG@*2l(&`gC-O2gB@t~{MCl4A}{rr=16_S0n}ym4-!l0e6spP
zk;1n71fBvqM~R^^4ShAdDQY9%-?c_g2I&1n9#W^)c_6}bd8nOEEh_KX<8;+KnOnaP
zNAp!IbKzHKKce>DLMJ2waVpeo7IU~(i<HO~cF(r@nP1hIj&Xx^q-10i6e%uwU%ZG0
zbW&+Roy8|2lHuncEiuqRHVN(opPgS_rIy~_xla$RN8HiS(gJN=Uov1jG&<CtwqqZ)
z0>V(X=K(AN%M@m~`8cnkf2j%9EB=U(O^VTL0FcE*P2DMm)vtzwgOe!x+yRj<ZN}VV
zFI*g4L19RB#d1?vhX-IFJ^X)+jiv4NPSok>FH~=eIrm+nW&RTFU#PJJ#^4Vof#<3j
zC84gNrU^`%yu&p^ewG(=tS3}6o~<c!mdbxaG@$-ZrPt#Z4N9DUS9*15g+LB+Mag4l
zdzp-Hkx)Suv2U5vqv$(9A&~h$#@-<qT}mX{(?moB@-q_K+>y>;>Qd(_R-!@IWX|U1
zi8eP;T4=i1?$dNM&R>n{01055T@T*9(|Y0qu`pe0QG{D#<Iw^TZ63FCu?HzgWjr9z
zQ7vNN<M|JL3V_B#W$qQsUbn*2$bMwEUj@{T4~dKO&{wz0kIGmg-nSH*9<T;n2r;c!
z{Ao|+3s1icxlqgc`E94D1BI;MY_LQC80Vn;=Wk=KuaBZE%29K@`oVqQVz;?}a&m=z
zsFjXXRfE9|Jsgv;2sI2dtfnIn@p8aOf73PbP}!4IvLrJO?6!#DR3wN3s|Bn1Yv2Y#
zS}m-m>lU}x51D5R&$vFb$9D>T`fXvKc*dV+!oF#IvU<)=5;u^EDL(RH?RtCB6?7Z@
z0NEYZ_rW8eKTdgjECF5fy2?<XG_tRPs+A&6Gz7T_GP$qh^O#9m-iKRX^r*9y<KQeH
z)dXeyqxsR2d1fX8WvREGk#{+czGeWWW_cYjKVc+cJ$NdzrbMu1kFA(HIuc4wQ^bdd
zQ~xwcX<r%?*~;%QG+<{-mg-ou5eULU)Vl5HfPDT9_Ii^0YCX>_*!;ReP^*0<-(dW?
z=@+eiO`!U&<7xb(XySKUs2CK<hY}9f623pG0q9uRaxfq{RCu+0J#2BckXu#_NFS^C
zfkwc){>p3s1g{3FH|<5cJE|EoBc=jq=C5KX1ho}(P{FOaexP-7J@a2kRTn_`U_%e~
zo&gC;1o5l8qK2nP+NS_vl2Df`Ai(G#3AKQ4dagu+5xzvh0qoWa1brs1L*p9ypP#;H
z^n-Y4A;T7)5_pGP0wOC1+5qkE0w|90uB^+UM0<z8_l6;U`3Q3lWsfvON-9i(^7}c!
zt)KFLJf{j`DQLaDxdBxa0wlfpWC?Fzc9Yw%>NRZD1wNQH@plZ45m_)fSEcgZFHEx~
z<U6<zJ+%Jui4!I;+iz)UIR&u#Og0S<&yxxI?soyqpX%oQv+JHlzqY#}n0=st*Tqlj
zN^D<WFct@(=t*yoHr=1JSe<S5F7k`Rj|LAR962=aGx!puJdUns0vU`CRDZ>6d-ZyX
zoBT4GOTuw_C^`M=+x~JDm@zF}L}CA3^;Re&+GYn-C}Vg`|Jyn$8uCRdN3HU3kfT{x
z3Ok!V86;sgFIdambc-0d6}H%@f8CO5dWVt35=O10pI{=9n@l_ofs%(!#iyT#;F>bs
zA|g-KxlraR)7s}4Ct0Yw_GjVGL#qasWOp%9q6#`29-`Jq^%f#*S|$PSLJl&(pCw*r
zW8nS`buvT95cSXaBt#;KgM-P$G;RQeyFsCk2y^YHc*p$uwW_kL>*?wj@#g59zTl$a
zw!HQ%Oqv}&!`25WzMw9zX!<p1{bC~wEfShDUcM6*8=J@eMNsXHNAmK^kNJkAxp6?p
zR1DOpB`2^pO6mYqGA7-Qm(-;?qLSnlNape-2zW7{a(c|T3|6Ee%&X~9u01t*KKx8I
zG=)Z_dFW<1TJ!JIe`)tyJ0!{QqQ<yhS2QGDho~sTV<#Y+=B}*)*t*Co3lwXywxl*T
zF_GjQ@x_EOOq0Z1F@<|mbIKMJEwQ!FI`IaFXZ3(-6!wdLZ1p;6tf%s;8!>sD&afjY
znHUA24`g7{s)%JEGEb};hQJqa`Rew1VtWS)HILQPQ_-khjC|dH18ealAnBdwcB%Fs
zs4Owwgg}kDG&A)oW0^Gm({%$Cf(NoOKWX|*;Z;JGt;cf$>AJ+^lpI*HY25dx06o??
z1AsVUmM9hm%OaT)XQ{B70tY+3htZpc@F2iz6<}+t4CFr*IHc)-ni660<5O<pHl?*Q
zIHMDwqN7%nr7&|*Xs!Yozje4~tlKuz&;+^{fj&jN@v!7v%xDc2Q+2EPV7d?8n7n+7
z&nFH;iHyH_j%k>)2A={tjJa<|*JEa&Ef5s1__5L&!TUjX`gXQB_*pn7%l8W_4-QWt
zJGYP}PsG@S5g*&h_+ndPTgm`nTRO{<&dh1)6F+zY2rgzix*m&iXamqHUI1|vX+K|$
zZULvBz5ku4_H_8!cK|9J;?CMCc6pW`Cz5!%nAYv|=ka0CZ{kzi_xx{NQ*(1ViT)Hu
z=fH+h>Y9SgjzjCEwx`j?_eHY4k1oE)b#sf1Dc;e4$c=r@q{7#p8*YIgHZ!y>;=&_!
z?qQP&V~_e@kKB>na!+qWr8lDZi0|Nb<Uvwm8JZT^D!u1_)pJkgs&U#kzObo&=fCRT
z|FYfs_n|yMgqL>bsQxbn?|;~VhZGv1xB;&}IlfHwiq2Mk@&enxD^~MUu6G=?r9Qm?
z%)iZA%D^0Y2DH-p9n}DE<<MK<41N61l9#I4<Eo&izrSCj@lHTSqX+|M2sMaYS5+2p
zx}x%m^}23|3&fBwNGN_ljQm(`o7+_tCnUTQS}NtR!NRP9+ZR2OKj117E8Y@|YyUZF
zV1?ronhV$9`hjvu_@BntJkb*dv8=UA?{kB+WRZEX(<}MEBwp5%2_&GwoSFURkoUz8
zyF$^c{Z(`38=c;L;Y(W{j09YQDCSf?zXH*$y}3Ct3JDaEO*e_~iidJeo|)1xtSD!T
ze9iMTkpaEzF06E{vmLE&E@T~51Qj$Pn~j!;%muSoWNptlWFZmcZl<*!h_EQmGpwMu
z)DeqiJy6j&btm2jh2p)wfUKT>p<_7Zz`24w-X)`L&3<%!)x<+4Pq|_-__|#Vo%#H;
z8c%6}K0OvZ<rjN~Myar!QxnN1gEa;hV`Km~L|X}WJ_sVG?FLH{W<CZx&k9R7QF07l
zEiWl0?o_9(%J(i1F8?S>9OAA}^L=r7`WT5eYD;igj2<d8ENsG%4BJ@P%MK#u*DfNo
zq*q@x$yVLi7agp7YvUZ#6uaEhC?<J9axY@;V^1BXQ{X>oSI4*4yD7xP%0oYV`0Tjq
zpWV?+=(FXLpoj*aTj#|(8zOFkC}W5w{9Dv*8mOb_<IUC%&+~>hYfk(uVbR-dyv1*C
zgX!{OD1|d1AqXWu9sKXf7Fc`IwD|{2;)Gxk($bMJF@?Y~^Y9S>e@KnAfa1{&0dN@W
z9toydu~2NuJfN_g01|g;rW}7)`adY7_Pe}7Nr*LE4DvxmU?=VdmZ+crNL_sbWcEVH
zGI+W`hbaw--8bOb^X@$AH)xkKjk#f%<b0}$Js@Od5C7mGS`<4lTTnp6U2c#E0GqXX
zD0|U1Rje}i%b?Dh0EiEl&C<y%E72&HkIs3Cn$}G0;Cb~kKh9e6bz{^c&~BRjsrrff
zPQy9?thPzfr}l-I_Lm6&j4Lum-OQy43!=LQ{u^A)dlpmh>RW`_#=dn6qCGoc=ALLv
zNJ+_F`TU7I>34s;=#7W}>WN<~@4f&ohoj9@@WGD9MvENEft5t~g=15t9;B6&lspNI
zautXlK?N$A8kUvrTD%c;FQF6_1`W!k_IVsPlp9{pttwQqMbypJQUa~%@wwkN7B$$f
zu#92KX7O=&$b@VN1L@hJ049UO({S~9+p9*xnHKt0W=={bSJU#~-fNJg2*?^I{LmAS
z-$D)%!%m6sFnSdVL8Z%_5>j~cA~);7u)E-9a9hjEkQA*e!C)953ltY^W+4Y}7B?G<
z1tH1d>*oDYb=MpUQ_bq}aB4ei?Y_pBPkU);R51MGcjtdNwp1&h2s*7ItwMa#Iey?b
zSkVPtPGf_ejcm;dLO41{NM(LGs_rss%k~%qZrS4OdvS?}9Ak!$fhcJKQePO=oEl2Z
zt{fySDxYy>uFBb)JU+m#Lk*ttg8nh31m=hXaw5$52ofb7$;!K3@Gunop)kr-GkGDg
zwhcDsF2{uG>JWp`zl`4hB6U9Xj%YjGFS#N`8_~~Q3YW|pO|Yyc69MZ3^E3`EGx&u#
z=rK~tD~pb%h%vh`M_Nr?4dIf3u{cU}CMmS6WH&JYWpkt6F1$xlljy9!He6K(CDE+s
z_iy-^2$Vz`2IZH5X$ek&&KkG_qRq6OcD1C>b6}vzSZg1Eq3djDsx93d!p<^~vNbZ=
zFuk?Iflq}FLro%0PfsVE1QwbX=^_XR0|nwBz|fo-=&EB84#EL4DHA6{BXRIs=jTIA
z^M{y8EE5wGlSV`gI;z+PD`H@WIm-|whXqmXKi*k37tg+;PWAmk5nrK#HS(Rm*y;77
zW`Bv$gz8Lzagv>an=P~ExxH!S^zl>8iPMniH{IRN=gaJ$UyaG7h=E|sEu#g?BOEsS
z=19w?eS>B$SDr(94(S&Xk{juw%r*<h+pl)*sEsz+BLJaT<6<T=$$9}Y-D1|e&sZYV
zWjq`A3i|WtgI2+^a570DEO!7EqndDq$w)B&&13IYvcGHS(PvjOHdr%S5Z$+O*+1(i
z{13jvl2r$)S>QLO@BS$hl;XjCFAI<@j^K9GLZ2izB-=_?7Y<LI+Z{-tt$U%6#!lZz
z9oF01`vkXS{Aj<@?3UyNKHFb=XI2m#=l`eydhER?I|6i(Y|T=Q1;`>oIvOH}&>;;*
zH6F%^^M>}Vb}mXdXFv~1(B>ESRc2JF0fa94)ol4!>p-xxtim_oa+<^z{SDSSg$M=X
z(nP3%U-NT;z+%R=4M5E>zy$i0<^SjjUxJHVP11+L%@d#Z%SY69{v~Gr(0Y^rema2Z
zix*FM%J$xTcrB4w5rC6?DNh!~f{<81QyrKb3Sb&Ch)<coS7H=6*1=%MPCFiaREh-v
zz@3|boq$!%uq@0=V8$80nq!TMYb1rahZ>@3&esoa7h}c?^SVToe1l2u*tSumlRy~<
zsMC$H8$eCc*^<1v?)wZmkGz7z9E{O5!lwz&y?bAo35BIJJfG0Uxr)EOIopEi{{_Hg
zS{7nOn9wAt$OYu=5(!UZu?mDiygkx21Rs-3&UoIL76!uV4Z#wOxfcUr9hk@sD`0Tf
zNL_20+qyMXIA<s9oNed?Wob{$(7gRsqp=uW=!O^4gj(zKEiVKTqB&~Vh6utY>xscZ
zTaIiz*j3;lt^AYdKiU9&!~+aC9BeKR4=wC_0{(X=Cnqo&e9?lZh;oRlQVr!ado^2O
z6zWi+|AQg5EPN|MiAt0W6PIi`A6_ZTw^qxmiN5Z39cWgh8T<DW5*B;@PloIf&m9=3
zv=N(0hogwNev_<6Hx={^p37{Klg5_QN-R^2;+NG6g}%$m%cImT@z%7x!hqJ_HPQUz
zMtRyjs(1}w5>75^68M8L^)_m+-gKcCu%aivL7|uU4|Tv)9c|35S6pqpH^8y#6V#cY
zUrN6TF#ehe3=uzx<^oIZDBPl#kN3moMhE<7fPOE5qhDv;0tD6^9atyRNrjwM#G*z`
z2dByfB-x0hqD9DRgmFTSRUH8F_MKHXOen*rB+Eq9Pt5{>Q|XTkUoz!OoFF+7fV3Wv
z;n*3m3h>Fp5zw))W;f5Uf<J;4--xfk9}s`~76SjAK|AM7ASxqwQxU;-hgMubb2vQ8
z+_zXw$L)5WPkc1uL*K;{K-#W;?U=W!(vflBTh|g>RK;H3gevrk6PT>7N-fX5W#4Qi
zl#lSD$z5;_tWH&At&DV@LdUDuj_`><GwK$wx!f(kZIBk3rjhEnIHcW%qnA4KEihg3
zZV{pS&$MFJn2w<oR)rrjLGeg=Sjh+9eh!jMv7*)k=Ts601Y@y&PlZe%+&Ear+t>j}
zFlM~od34D~Iiz!nOhQ3s$Xv?+(ZY-Xn8GFIyf?{yyeTQp0>U&{D96UYFT|)Zk$XjC
z3WS-a9p=A@?N0ayU_en)JdAa=C44EFzWM?w|6FKj*O3EyBtDlez2F46;$;P6xbbKB
zC{_G6Uc7Z+4;EN10IczsMPSC4l$1d(gn(p^F^9Y&iNmW?sKEkWCh#QKQMKcYOs@|x
zS$qmf28zM<z>c=MY51-8gC~T4`lF3XC0E>OEUAo@TN**!pJ(JT2qFAZkRI-@imiJa
z#61GSx2ijOfMG@RcW^0`c5aj<`@#5hbs0w+xYuc!Ae(}5QfaX-t1D}0`n7IHArI;c
zzy?`y0=5?U)lF9L`)K#~AjW@=ir_49pmm6nzlq-=AyR5mAI5|e5L3SV1&$y<oR@!9
zj!!D$!?!VJp+&eYC3N$)Fw}1+AYVWgnN=GchuK|9`&(|L4`uo}VpuJOq*0!rhVfg!
zP?QJ+)4PdG>Y5#iV#??K9Dhh@!Gtny#hagUtNG_*9QHr&{4$r$u}dS)a6NRxC#BxL
zTrpx6tqe%S9i6(S;>h26zNK&+qX4LM{0-SZHjYaiyA-w`cb_f)P#7`!in@s;mw;^q
zxb_b>TL$TGiJMTaHUGgM_^b1uc1Of_;&>?}k5%WQ=yI#PY$5K@B+FqRr^<!D&C1P>
zKhs9GV__-Z@WV((CHFG>|6}Z}!>Zc1aAE01FIq&p8$r5Tx_bd44bmXp-QA5WDM>*(
zq(eYJx*JJp={wnV_C9BS-@X5cfR7K8`HL~$@kT4fkbhS3$5(Vr1!zkpqGa7mm0fj7
z-iLGuJ!kpdHbX(M#&md_W@<*ZDQ>Q87A$$I*Mtla;eD9OZ36{XIY}v!rM}{}o__3V
z2^RCQh9HVJ)ym>8`^}stR5yHKte~wqXhCQ@fsTv8#>M<Q=s1=!G)-sjJdk>DN8$Sn
zNPryUjZ=jbT&m^Z$|0KVTGAuasnknE6z+lFXl&091`ginUGiY3r<4eVva@YbNRa0?
z;l^A8<|gT_KZ>Hwhd25A+duE7R-{6nL{db3p^SrM0)BemkVGhg2*u}i-w&Y?WX-)g
zBz~YlagSS$;!I)%#RvEK<Ojg#Yihr4tWVML#|gL3gs5;xX@gSfw6r4}DIk*D_eNJX
zB^GyCkB0BR9j*;opq*Tz^Mg0!s31SGEs=q80Y?mwsl6O(m)CXx0_qL`hZQdSKIk*J
z&EwRc+3=#Qr{f(O8-Zd8IeJyNqQ7m2sUtXIy^0{a1LWDVDbm78{2HNn5wAA<VRI<q
z9F%n|ci)kj@Ujc~V|I^>_ZAKY2$Xze|J4a)+lut341<t49L|1{&cTVh`R-X{^}eOm
zF+R%6<6O|2H||2@bx(7x>c~V9rPuCv`Wrg;kF>|Ua$b{K@SRZAhKWAPsH=D24SVKf
zGy8fX930A<m`ld5?Rzpw9*)Fe;r8p14S?UQ0t4=vF4EO#{QQscIcHqVBh;8SRvyEr
zlw0TL>)#BuJTDJj)S*#<Yh<9X9gYfSb9|QF@K)swXOj-(5Kja)804BJdEw6y0DQb5
zlSL$r$iB}pDzHu$zW!%*>CgVS-?{->m~1fY&C+`4GtA&Pm0rw?-%vAuIN{s((y=U}
z31Yk-*V2HrxFmSj+EQX1x;T<vOg0j(q!J_#m#+ZJ&`P|cYcksmvq}HP0BQpLHh?>X
zs<K}q$cZRD)-TQMf?97C;{BNcj&q7m3j*su(mFRm{E(BM?Q3FxY5%@>EB>s*$!TYp
zR_H^QXG}6(5rqf|bJ{g|dSF3u!+{0+bM5>DD`z{58u?#&SnD4y2kag7qCfW~{}px&
zY&2yeEDLUXG`x*XZ2c(OVnuk)eF_bbn(D=%4E&_I;cCR}Biqg_C%<5Wr1YtqZwTKL
zw8N09S4xeb8^JG<ZZ~JxnY6(!q~ae6c^Gi5ei;4E0g)0x1L*0<NXC}G_I=d=!=b^p
zGzxt_+CI|wI}Q+n6c|T(@urYU^g~um;%M#w|5X2lTxMK+_F8Niia-BhgE-L<5~)`n
zAhxh;zvBuH4ILU_k*1QA*Ze}g2!w~RM2evYActMhomBI3N6RxFk{`Xm52k3~y4ZiP
zJAr>G>7L|kLAZHzl@g))F>$vy<i#_47MS=AjzjT-86%N6Wc?QLAgk9kT_)aC5Kf|C
z?DsEfDdWE+FU&(&xi{!#g~*cd2vqaQs54M|yxVIu)6`ZIDpGMtSA7W6{?qxo5c(Gu
zQiU#7(($4n8QN==y$U1q^sfq1z`D*`(M(y1Xrt5)dyh8g&0#*G9*S|9wheE@PEIZ=
z*Vp_!iQwGU__$*GRihFk6|8AvXs@=2nRqV1h(GVCtuioGj>LtzOPd4OSTlp{t%L5S
z#|X$c@QiU&BHi6BRgQ9~)7{D)km}AxUNlK5IAo0O@^Q57C-4%r$k-Iu72I)p#5$G@
zKx8vr1(PUA>$5`d*>D`%aiF@(*1VB$XSxn3GX@*J$i+;Scxx|?21|o4yyn53E`Kqc
z><JlTzurTssFLFV8-J1UTYW|s>lb#ElmpUTas{7vCcC;|gU^l2c3h<zhkG0A+Y!gK
z{tA1}V*q{Eg{2^of9+-g$W5tMjY!KV0b+C^JGswFH9NxiO8fnFSqRMF>KFawKC9;+
z--_G=x4z7!A{mZ>>!QmExiljktoE^x<v115TE0+rSCoji=<E4#;w0AZn5-FD58@5(
z7EX@AsN6=v$o0d^c6zGo_Gv^f^VjHxP&}rG*G4_wjjFAu@mqEDjn0R7HF)m%@Kx=B
zT$(-**BwpiF4=7hy@))_y`aO}(3^BPb0Neiry-b-WcNf;QE8t|jrM!Rr!~Z4IVG%f
z=Dq$8@91-47}f_7N7jDYPe7$RuF4*?7MPqCfZ(Q#0|M+H1X`FA1*Kjfzenp9rsJa1
zYxil*V)Mg>rGat0%S>qYrNc`bM_7f5(2<42*N486`?C#Inaa&fR*bi4RyKHtkGHX<
zETSD`UkQ;f_1#9m0tkw^D-?W`yzwXUI&X%O1}S!l4bS~AwOC=(a0A2;&~`&TT<0%}
zS01R|niAqlvc*S*OSdLS>zMK!?26~DbXO)F&x)K__`WB*QJ{)Lfg-QvdER7hq);xP
zZj;`sNHsrQv=L!Ybp2>SseyeOlp$yPBXN=oFB}ex`Uzi&dV0r46?u%gshx^~;*o0M
zj_I8d(Y(lVB2P|-VZg#cusQSr0-v7sH_iS>5R=|#c?JjZ=TLwYlTa9{{#CD2l5ydb
z0y8XPlTbqa43Sz`I>cQW93@McJIgpwvTZHxQo`d_T!tK&P*_uQ9reOLD%4f0RRhuR
zD{&xC2(M8?*%YJX8yKANl~RxU+be1b`!k#AX|@WPxUI7gR~kB>wTyAb;l0z92bcyO
zU?>!%UIU-9t54!|4dgLF^Tk8Q0l?UhMn}!i+$AWx^__;{khNNFW$h7Jg>{QDMJv;Z
zt-B4cY~`S<lu<ru;Cn8fm_P5!Vl>#PqNc&5iZATiKdP;#SpX!r{Vmnk_4V~1K(qPM
zbP)IITYzvV&~x>RFov7n4xqUX4OYD|1xP>R3YePduc7e<2v~r5z)C1N3Hy%rxt|-C
zRGtud)%`cAPED*x5ZZK2V22y;$Kq)lU5?&z)LJ$q7FJke+h-N6RENI=Q-r+F^=AE-
zHEr^*Dwm|km?;Lx7S_?*eZb`q6Y8M(vvG*Llqdyr%f+(#LPMFlm~*4s9F1HwDI^1}
z<oI2~Ux>(K|6)Z5+wOB)u#dHrn~z_8CKs6?4iuco8;o_G!a_?0ROVpR*fZPIN6!up
ziq>Z1bo+~s3Qc_WUtnpfi<KMY6$c>l_N!<C<X_u}%d_m~--1iQ{it0L_W;o+`Rh&D
zbAR94b<$_Bj{*?<cesA2%<|WTP-t@5PQb}^_;cxV2Z*4kNQ3k{6Bd&Dn1VW<Vw^2o
zUnN_XL!ZuaN8ghjk7i|xx2&gb=$<JkYtxCm+Xc!LwM_w|k#_-(+&YI{x~3ZFVXpg~
ziS0uQEmev6qKuAq{P6;Oipdq}=>7@=Wy^skx|iA-dX7zADsPw?rOx6Gn%xjkpFc1A
z#iLJd{ue~Fiv_FP?g^mun_+Ci$mDo#j%pGW$T&3L0B}+Dkb`kcAz73Y%W4UalZh&m
z-?c)adbKNbsBvl>!bHgdGJz6qY3BQY<P=#9$8-!alU7&GF@U6^T$$%*KSqKW16jBH
z+iy?g8jTDZ0XPmY8k|-Gm~Ezs_SD|M$l+D2hv_*C>IIoSoT>P}oSJA<SXkWT_jjAT
zS>}>L5{5wi<y`_PrY#o&093BQWDl=6%+iw?d;Jbc&I-FtckuLbi~H#gFaVq)D7#?m
z4!2h{0_I1oF00Sn5C&zPS}Vq@`+nIU(8YXVu3sonYGYb0^)m0s?r@24nkZJGyszA>
z$$DWM^tj0V%aCAD=PU4I2ps!?weX3YwA5A%S!Dor9Z6L%kCGTAd{D%omOBn5xde&M
zC2EqWm<Ur6puuq_r>UzD0{%pRzOuqbII8y@iSZ|ND~_tK@lpHs%!@Nl2@8nbXA>tF
z_?zki7y6mbW8<Y9$_wubKaNnV^uOQcshkQE13ZxmWMbPCTzzUH4j&FNo9<e3cjov>
z@grE;bO{8#ZY}oPa}xDV5AS|VaTAO!*!dJWoElJloUs!&`N$O7uy=p;QBx72DYjWB
z<$&8J=A-M3@O`YA?=NAUz75(X>hJE<XpE^<3Hv~#aCyp>C;I1N<u|6^Q|(yCchNv6
z1T1OHtixf?dB#s@{ZqcMyyj`qjHI{a5JPqPo7D(V_vKlERz|%xFJuhW0C%25Lubzj
z5+OM{+z@5Qe1dG*VQTL7*X~i5<{!I5BM@Kd4gwP)JgxNB#$shk(gH6t*#s$}ZU@T)
zzp7%u#1Sc&zZI5pZ3dWjvb{idHD!x4uNJ9e3Pi2i&hd-^JhY*zpNz&O^&c**7@+uT
zL42Vi4z^8G<^TtT`6K4eBF)}9aq#d}y1KnHwJ9^;cHCTUC0P;QYVxia7vDT5(P%Sc
zMn!NEn|5h3QY{9Qu#TE^+ygF`HBLJBea@_k5H;o57E!uO0xw}&p@RSXd-Ys%gFEv0
zmi);MS7a3WeCbZY&9fcD0V$sU#6PoxAT4h3DNH(IkD-;(dQ&iPh)MJ0B_gcqPmBhW
ztr~;(*<UY-2tELofv&o{k6N(sT8sFmCtJp=iqrAuJLLG}kec<r*s?se8(^(kU!7H$
z*7c(xG6b?NaX$viCSM6X+&Yy@Zl>r&+Jk4>ecSQNKz6#_&?lf6D;B+ByZP-B=037M
zhWQrvPu-GALJ}FD29N2G3YZ`Ufcd{*>71-#vo3-n{Mj_#t2k(S(}yvwI-XCpEer;Y
zFOkwuWSQPf#FiH<6M{LCli!WPG-7X~N|?H(I-4|*R{b^3xBv<m1c{rNIa0>(*WG)h
zUT5sHF`DTjIx2+sCR6iQr`s|QRpm-RX`nof)lmL`rqH7pO|8^mwB)wK?V|lgxcn0L
z#NLG!OSquRKC=Npq9!U5r-U<Xuo*p9@Lp{_L2Vq~3^--|Xivlq=*de&P1G_|?!+nS
zY7_`|z1NvMTvRdHp-|P=+Egw?H{9t;2M*sjy-+xRIHMzk^ChA2_J`ObU3N`eTAg2H
zdmteMORM=*gnKAt$h4t<gx~4-NoU2q!#CHkg5GEuY{lj${Jd(e6qtydK#>kXrB)TT
z74QUKtIoco5fKcz3VM`<V2;BD!c{R&LR8o5YS-}L1{yZi4jMkdnz_m?TbKG&r2csm
zKAshGevgbmXz3G>jt57RXT0fYVb!5=e-f^Aur0-c({pHF54Hf>%IG_$?k*G`I&R?i
zT1N=eAf~37b4`9?<iJRi>E-Qh*&jy^f4S<>RX8AyDOf1U``#_zbW0>#ERTm-aj#PE
zt9AfG{*p+P6G1nR^cFx}Sv_nJPDhnbYQ4o^H_xpf&~#S0%ncsdd;xMtY`13*aiO?;
z$E|wr-@~=p-}9=C+e?wfe|R7(nQkEJGodUAVL(Rw=nSTb*!>r1QhgV;CU1V*t4=6~
zdst6u0F|Y&B)*1DH(^(^ibK<ZU5LVx>~q|lPxq`Fg8RIKuV(10WNS(WtamszrmUi(
zhT81=X`-zfd_PAY|HUA(cLzT?Mk!se*GH}YY(A1zZTa-*wQ@)x@7@PIr}Q*bzl1fL
z`b8;^&gZ)@<huZ(93R9D#us%~2ka7{ze3DS!Q`1QEh&=Mett#k9D780Yf@*#uP`Du
zt`Xjl87%_XkFG)SCyj14J5>LtaTJw}ThDgKp{PB*y19(X1o#Vr54WePreM_XKw#TL
zKMh0R5x`FcSl`juk(*!7fWIdxLnQ77{S4g^*`MwP4X3>b1kkq9@SWls<<cNAihUp(
zm!V1X5J*|h((@z|aI5lauZax}MSxm?{PTd++eI4G3OzaoSR^k}t2q$~jcL3#<Gbr~
zN-)DYV*SqG9gq5HHs>u;;1SjqklA`=dc7_Dpi@A%;L7N@5{N0Jz1D14Ac8<qdXnw`
z3#USDCYpQc6+lU$ALI6_v^VsdWxej=4O$ftWBz`h6Y>)L^pQRyD=V8&pyWY<H2x>j
z1#k>qQv5*fub+~rW_i=q3rEXhEC}Vq68c|<b;SH??^l!O>eLOXBde5Kt?6wNZLqXm
zF}|vh<g}2FhV3+Y2gYzhb*w9BRyrE%oW!Gxsi`P^K}G6Rs;lLS*<}5N&(Y;m91W_Y
z6W#HQ&!D1QeuxS)9ZyrE8#!BCW-|hkH`Hxbp3f()Q@1wW{n<-fn#4rK=Y`+Q%1t3<
zLS1K)wN*fHf|0l<FbAhq684R-Sk!6rLTlReQ8|JEY)|V_+WFwz2!r&V6ff=Iy&jWN
zR8&mPM6tyEIO%Xv>#~-&?Z?u2?r5Bzl9?!-V?e^bzjq|ALpZBTnE8YT$FT=KtcVm(
z+NEBmv?Op%Gq7A^J9V7Z8Uy36v+J>+r^V{XZPqTqtQP}lda8sNa09>;ED7VcDVW*n
z$P8dD+9KF8kmMHN)uoqU_omb<w--KH*G-KUW<}8u4|I04Y}gdh`TB*5UWz9VLjO2a
zjv5B5@6o@?dAk)D^8PR@1<J$6x>vR08yjy=q$-}{xjm-oWF&3>)9;Wb`3sWkS}Jn<
zZPSD@`}}?09S27TM&2(dR1pc7@t)E{Ym&=E_{xX9MI~$wsjnQ!r_BNftUJ6=UrV~H
z$5l;Y<L5T&8Iad+iTCVhA-SV_%Qnc^Dh4|c1+lMLvU7!zj|x3dh}$!!3m^StFNf&(
zuK@`%T4O9Z{u{G;@@J7UN^~#qi*l&~eT`3^|Evo3qGK2kK1)>4kfexZA2qlPFX)`~
zK7nDt-VLYvSyK9C({X94e&Btob_0FyzUR7Y(&aR*x|<aTVX&OVbP6Ts3Hf(&R3)1l
z%bE{2<`Yjz|01uZBEz&4)mcv~envF41ut>g%uyvHiUxEc!ijDJ8zy=6L}<zTQeURG
zYoWtsTAx-%giP~GomD264b?HyQ5YK&pBf^9P#lsG85R&Y7s-ALglEboa}=Mgrh5X;
z`CNlh>=RH-@VJOAq~4bJ3-L=_*!;B68n(Evz`VF#t}%O=8PcGfQ1H_LWevYK5FK?h
zF95@JGNR)Wh>Etr1BjX6suf*AF6$|#fGYIwn4-I#{GGtjQ!*Lr8hU~T&s2Q-Wsl?<
zv_`xuE}V}W7OV`+d6Fmn8m@p?=p?O8JcYiiTrQi8eYg?UiuB1cEx9Z<d<bRC{?FB}
zgj*B}`hFjtR7TB@aqwI#PaMnmLOl?KrCl_%p0^MO6r#e(;BUJE74NwIuMU5>&GX2Y
zUv-!`QvUP;!1Vd)f6z(NooWWCEDC@IEg?5Im#Xhk7U5V;6!yujJxjp7W(x|-a1-;&
z13G!|)(e;-0jx=QyZB!Qt0Vz8Puf0pAlUZhM*syCnAd;$RjdC@3C}ZSwH{aa(jt#F
z76CBb8`|!?72WJVn$wkCkvzZ~hWxUOD*6DAq)LpOon19Y@Z-IVqT*-X#4leo+0k*p
zHhHUo9x)x(?JXtIKl5K;DyQy@%sE*4vvPSusiS|qjJRK#J_)@++7mALz8|Tps{sGi
z2fv1L_njup@%2@u<wh4^v2@ns%^i+#cBOlnC(CpGBQ`i9H(8(r@R+*`&}=;=g*5^b
zy#>4*Ew30ckzKmxEdV!~R|(_`T-&Co*xA{eW*;W>CXi5k^qb@@Cw$=-&%R5u3*5$p
zmSy{e5q#FOYt^VgRKFB|8A3pPTk;c-arX<um>`w@#Cm4rU>Cwr!-|Cp7!lv)5Sf<K
z#^!wZD39|9eUOAoh9oJ9;POIL72|kSA)Wz2+UsWa(6x8(>&(!$F|CaN4~pNg_uoDM
zvc?Y5=Cp+l(nW2f3a0Zomp4*9Mn`XOeG$TtE4XZQhlIoR>TQ{kb*=?~^hPTpSgSSA
zoukwp`08SRRvd^z=ZGd1CJA+PR6kOcmx{oYhZh1eUmXL~dXC%f$>UCe@esdz{_`}w
z<^f<j9c=CzXDxy0orJbcdau)fmLr2GTF|v6_@z3-cjTJ3r**Ob6cEruXimQunkkvN
zj1_*V7RypUsGwPT<EQ%OFooOsg(*CO3fuPOcK^*>stL`gffI6OD;~1Tm)k($ISGQC
zB?>+bx*J$isY;{K!Lz7Qq*P^wT6%5&z=eaOcyh9gg*kb$hNg>WzbwMXl@nf;V{gdt
zH$T7oWSxNdmx}C}^b=Hw$Q-N#CQ&~m0>0SJ3*ew7;1<U+GNaXuGFG;TDQmzDpmuY=
zy+CAjAcLg`GB0Rf!p>+JdP4<o#C8xyr)7K4QC8h9K5Lb9-7<znr+EV6`-BDc#hLZ=
zXQqtr--VdJYncZ0;Hno`8*IRT({lpQ<}JpOzYw6N=k0#L-Oqy!9bSsV>=rXeLkX>H
zy~t4iaO-<f0Vfo*cI&e{UgE0vd6R~q@zS9B1y|2gwWu#iRJe&E*kotEprCI!AS$pf
zXz_KaC8FBfK%zrQ7RPwVcTd4O{zc!VEVH_LKA9qeTkrd9*LT+~%yWx?LyWMnuuK}f
zrK%m7H!P_e+0NIH`ya<&UVKrq<Eh6*R_Ix8Sm#+=@B@wyg?sg;IWhI(R(v0CptZ&Y
zlCr~_$mS=fi-6}(&YRmQExDAA^A~OCu76tmnt@tg12g98u>^dl=Q6)wjhNkW2iGkQ
z#t<bDx?FJDR9Y52BQ`O9@1GapSQQoqa<A-oBP6M-am*h0O9`uLQpoO)_tL}-d#G>Y
zrX9|16mVxuM&c8F=yVn&4#tZ{lxk<M8y7n`O##YSJ}g)mEM4;j#~AC?5ZL2SBdG(L
z`G;?)NGbBk?$BDDyTpF@%xaI8+|8S+59ZIMMol1Dtzk^{B7{g2Mh@PgcTUy-Vg}fV
z&_?=q1WNWuHYnAMGJMSYZ>S7R^1k`U!nytIYgGnpeoipQ$;b2e{qe%ejaF6a?lcEO
z+S`nI-EZ8&-IJ}ZFDWbe!5EYU)~Ec|%YrxBHnp+dcxE;dL*n)aZ?jLOYanMl8cS{A
zZ;kFupd`X~a<87a91`55#O7H4F~xbT#SbH%e6Lt_EEVdCaHb=D)8lSxdH|bseKP+M
zzuF#}vBCvH)mFwJ{Wkm5e<Y#<DDa@Dyl0q$EPb)f7cpVC0Glu+OSz{oY|Q>%9Ey-w
zt{m`sZwchLqjlY*AjbT&c3lL4zS3*nNwrmpdPe<;UjAF{+Z_A(7C9#NAW!4g@S3TQ
zf$A;0YkU!b{UNmpN|mXyf!A-?nRXeL&)}229LvcNrv!!fHY&r5Wp4vyHJO3b>S!}Y
z*0?*Ss}<FnWd1g|`N0zjJ;r{=U32jlHx`S<x{>w%#oD<)UZsqjr2Bex#3XkNf9V!_
z71CqJN@cwT6H2xJa;lvV;ZJpgAC^4~jKI+s2zk$sQ$MfuuV?OOKhAr)<gog^0LekA
zIGe<>$OWuB`e2yCi{f8*dxj4QNB+HzJN(~q?EoJ3fgq-pjr}}Ym(vlTC;Fj`25>F7
zIz{rDH&gVUk5>n}_Fh8<-q_+>SxCjYcwifQKP?Fnfen0<^J)8CgIKTA9gdPfe$9}L
z({XUw>$sJyI)q8?LeX#)yX$Hme&NHm8`~dzbF)0hBQO*hD#%KPMV}mjfpwow^R*Bk
zYMFJ1PKMP)8q%+oEVj=`Evp53*^I?%hWMpkJh{=^Fefn95F~qKjJkmj8EwSII-D4F
zlSN&Uyr8y`7|s#KLh;q=5=88+*2^V1OG`_ah=NLc2aHK+P{>n-Xi1ysA2V9UDthMb
z8BW8+9`;cV0#WD2q|>Lwt_$SJ*cv`{2ry48=JWTpb43-fLYm@I|GXvlMLQG(?D@RZ
z_P&ZET_K`*2;6o~Rp>J=9`4*kO$sR^JZe40w4w2Fab%`JfFVfP03s!p?~I|lq?f?k
zj*8X`-B}VEho9i_Mf6gus=~rTTfy(2Ota33C7^!VMkR%NhRykHZ!wNN5W1IJ??Sn>
zL~656X=_ICZ9RkBg@v^kwt1cVtKhf?7$0uRqXcV@t*>`hm!CO)UyLSUOS1JDW+A=5
z$ktLh$zlF(y<>4b9BFN`bxGRbA7gu$(;3XawcJ`~(A(;M!_HTCL_pYfu$W6%TXYA#
zi@$;k?xX07#Xhxd$^5`tf4RQsSpmi2&p7lDS+)kFP2OQ1yB&9zGJ&zrS-q~=nbC7y
ze?W8{qrIU^m)1T7`k5DFf=ctTLq&Gp3VTAcWZ%K8?|+=q4t!YhJ~p1K9f^tk^qHAJ
zKx|58dXVafwl5)*cU0%IS)WddfWlO@mc`~G%0&NZ;{3qf1{ZS-+<)%c4$#XGziZIP
zWr`?Lp}bP&&R+-!2%MUxk>mMa!2|@fw8pyXSOm6O@GIHmoSb!wbKUN+U9NE>7Rp{f
zECRLAnB=3QqLOyQ?Bj#2(+>8<JBBAx7lQfC^h~Sm!<lH%(T`5iDb_YwAt-$jHPm98
zYzU-JiN01~FSfuzGfnojQVS=^L8V>_b4`sye2Xo2$cO3qEISFv1Ov7PYd58J<LB%w
z8Xt!?4n+^|$2QDR2v8zt-+WadyZS8s;H<w%_NS8On*pc;oqg#*M4(#$Vl5CU7GLH2
zaPJ7x{y6d6QA>OssRZrxlk$A%FBmkEt-M0ae1fkEwVz8#aW_3K_UX4p@+3e7X^d0P
zz4D)gR<CHkcF4*3xh<R7E6@RNqC|J}CHQ4bIEPqHHN<@JXtB9o{Z|*y841C&Jyu*K
zhl(zR7fUMqaESIuQJ2p4$RcP!`hw-#r!3HQ{rX({PtnzDL{DCYmpj-re|J;(uw}q;
zeTsL-<&pEY81olCq7Y(#7}?=2x>I^XN*0#z`PJ`+*d4Pmer2OP`Ute672_%b#Z3B5
z>XgfV$-dXMMm;r8(P#qlA{qcYrK>0Ym_K(Z1$rZde`)8#q}$)WpVo*Gx;%X=(NSJ|
z@nso*sZs^@&C%*QXBxZG^Qq1XM24>ylYGghb*wdbTW@q)3V=}P-ahqd7yCM8$jbyw
z6*A$2C`}CbffQ`;aY7~9Wpy8kr+kI7s)J4S@KC8s9r4rWBJ~Ttt#4^)Ig}DGt8u{E
zWhQB5L#!On?mtP+KxeTIG&Ntpvbn0b`BE7sTQh(^9$LCSN~vd$rg66mcXF%Skos#g
zI)%G~^Y3-vHyF^$9VahuBb@FQ4Wa*G@Dm#2)sV<&tSX(s>@w^oSOtv|y7{vs3^IOQ
zrwoINFD%HM^L!C8==jAlxK=@2@5S;NH!~8X<M^l>ao|Tk=z5-2mUyq-{<+#k7|EU#
zkZf`5O`M#bBDY_>jEjc2C@p09_=7g(bt<ZxG6GqXh%b+pm$fHZio`j=M@NgB#3ZHB
zQkzm*9UWd?=6cVO&PP8hw;{R1M}!hv4!4@=I<|G<NPCCy%KzyG@Cg&<vVwgBQ0n3=
zuy$eN;8+5L*7JA7W%!zv2FzMl#dwHhG;87<8_kouc=zjCtU*~FAZH#}TWUVof|y!O
z!#*JXKn~S$Z%ETl;1G+gp+L>7tRmc60;`Kb^O)z;;E68#d%%6>6O%$j7i!clttO`E
zAW3OhoLFp3jIFAEh1tkRagXC|)EF-AGrF6fN1+d88mrq!Wx<~&tYb6rOHgMh_8H1d
zuqx7=wfAaj>2`eH!nylA;JSM|6S)g>Bo~h>lGJ5Au&EF=c-g9$13~wHbAVu>@H20{
zP#<@y*8BVD?N5HfKSn-(eQ_5XB@F1c#``&y1sAG}#NUTj<mLGZUGGq)W1h^~=cBD*
zm?V??qXnLEKDsD5E5a{~<J88?QXpBbUc;u-T4@nTc2AY=Po}nWt_$`E_NF83yb5)v
zr_DCCR9yhBA;!fUeV0iM=Mmm*Wf2iS_26t_U!m1hAoWgv!WU3r0T#-IgL?y6P)b}6
z508EbQTvi?y5+2HcvZhL^FkhMLBqpbfX85q?QCBiyA7T_<1lqBTyCPvt>bJE^GD$y
zqh+71Quj>%PV%k8`sIL%%kI_B%@k5v)-8r{4B1>YE~t6itmPM%<885DU|PEu>DmMM
zNM^j-9IkaaFT)kK#)6Uxicq`Hs%xkyPNY^Q-3&C>_j`41LC7wZNM}}ShXiR@^T*GO
zarxXBOy3%c3z4gsFtbw2xrgrr@N3|j4LIW9SCYw@B2XX9NeF#-641nRy-E%_F80w0
zw)*uIuYT~t3od~8+O)isYT1wMS>0>;gPRNEd@3K=srhEtLbnP$tMxVgr8gz`IcQ#+
zZMlYQKzLFA_9{Rt#nxP;#PsB~_jt;i@Hgc3-(M*}O|(#h=M#i+0OB}tiHI0Q`@eoo
z+Q|4o0ekh<R6GQYyum4iQ<`0OvP<vr-|E3HoG8vs?zP+v;K8o_2-4N~-u9lR&So2}
z&iI6ru7(!Rw1~g(?CDF${HVMYF}GYA<WV2CVR!rMxE7GR{V*fh*nM=QKWy6DnX|4;
zmaPWF)CI)+SxPk4#MV@=S?F;RTQyZTx)KUhuU95VYgHR^L!@Vs!|*oW71XC#fap%h
z3l^1bO<vh#>R$%2S|f)6w2UdPVf*qw&xc3HlUjP%`1jj#<N3{@1nx+Z%BBu1c)3Ew
zSl}W<_sF-tt2US_raJW0N3#@{t#|T4%R8qmiKAt1G%ik;WXY_T@(J=<+3l+#L>pp)
z0@9rVEq7KvZMcH>UhL*Hi9K>bv<4Ev1D>3)Z!F{uWd&POMI_+U9TtLzOodB>^jKzU
zO}VkuyHMFxO>TO9(os+898URAjwW-jqq9q~z?BVexHQz&2ZDp#XgJfoHtzGqC6j<!
z=tAL96l?z}7$HQvs=xPlp8MbSEbx5aJV5(Pt(l#jof}!=dy|8le@E_s9mfs7FW;ib
zSNdb3XlMZ5nU$3_78r?~;-7z?o=&AvsKH5G$+!aG6z0-cRDi@IGEcGMvt~Xk;-VzF
zfrA4@Pj4hsQgozH8vR09BE7&?G^;>vq*~r%`399@`+j$X4;rdyNVdK*#d|8T2L_)<
z@6Xjm+P2@lYq~udg05LRI8@6c5<2XB%XeP(zWnito8QarNTqy#B=^$N2!2anKur-u
z+2X2KZbf|&ZMMf@5a}q~WPn<4+ELz8%v`qJ^k<j+xL7R+;6LJ-l`?&$$z7qF%_*Og
zMd%|Y$Z&IW#|rauFDWW+DUJ(~7f!8FB6*)zY=HZmSX_)EuC!b;VxOpJQ|*TpnCvGM
z3N6tWwHKfU#j2>AvLp>g3XucnDSyCMLK)m|95GT+PelO``u$0Q*e;&1)OWl5^?7cK
z^Y;{IsJlVRBI*Za?=;%;a>5V<gJ&&q=ibL^R@T>h4;SjgjLBM&nuz=Q`j+^GnZH(2
zQaVUi-xEOk>#Y1c=T|qX1280E-hKvH=tSdB_u&2gwgldqAv|9>?Ai_xU{VN|*Jsjo
ze|Pify{;H5VP(aToSbY4#8YB^0OZ%>ORb*t{QP=~QfG&YnLzp@Jq=TfX&b;5L(yQ3
z)RaO92n?hb5P%#cq^2?XySusZ)aGVpGHT%0Mm>LQ_%x+E)>FAl_<YFYi!e1X+x>tN
zZ!zTULHoTJ!SbDJ`eq2h^fz;*`*3U@ZOTi*R&R?77hmw<j^_C3kh!vv=0UfWxJy$8
z*KUj4kBxhq+M~?a!qTBhr8b$R&b#OPzgUS1<@mJrtgM7S&B_Dr=1sRiC}~0kFl%@w
z)S~HKU2;x%>U+Gz_l%d^Kx$OTmw|ZJH|pZfF-}T}L@^cO*_LuQq_J09^~ujPL_Zy=
zB7RZH&NT&UvmT^M{SRM0eJq#;;gHSezf>ByK2H&L&TW$>Z3xpjHAlK?#oe8Kc0I64
zKV1DmE#vpfDaCG)uW!4tg;MWq(!z)v^O#<gX}3#^NZa-}v_=6;W@IRM>i3cK=!A?~
z%mvF`P=YrOtie0Unk2f6?c?mVB<xs7;C<Yq8NYn5zp@rtG~oRmP6=6C+ijyCE1)Pa
zDhf@#>t8qPKez7VX9rOtMbu;r^+O$SRtA8*O9?>+IuRGoD_?PBn9XyS9aM8u)3L4L
z%ySjpr`>(O-1x_&02UV*44BD4m{AUMcFV+vx`9!0BH7Q~b5>Qq%51cvqlDNZ?sDC$
z6rqSiuLlxYMqs47AD0hwX^Hi5dJg!ru<!fX_qa}MgZw}z%W0=9MQ!hC6PwdIAlDsE
z&I5N3Ns0M62JcQB^jt_U>ElRQn@*8=zeIRz*QMRwUFSYbYYtD95DZoT_&qnE2mTg>
zjI&$FO}i$q%5d<@5>p|IQ*$X+YspnV+ls4VQI<FT0(qM+oT3w-Sc!{H2jz6;+OVX9
z(sk~-{Y0!BA(LMHpM!D#iXcB%<-&cI9EY+phC+TbOwz=y0A4bt1h4M3R1~LhGCGuk
zTx~b*cVp~x=RM6QI&NDLdh~ZYFtSUnk{^_sPt4|;t~GRMPXeoUh`<toAF?P<$@5!k
z(*`3^O*3MB^R$)K6i;m%LL;0wEH6{bic1T!TD<N|TAIn8dLV0!YM%vO$MsoNC*r82
zQYd&JbM{!tQNIBzyij9(Ut3OUsfU?wfIj|4BRN~-YSujF=)h{(s=N>wLl5!&Bn5m;
z{(kHHb6@}cvu`gz&H$~Ah8V(WyaXf>mISRF9u~iYe#i2;pFNzK)Vb?z%Gz87v`l5>
zE6Bmv1jBBN#cyPx@HdkR4MG}MTegBe9yv?|x6yA^0tfIpA{NFkxV0xU>sjB+$oWcc
zSF{+G7W;t!D7&F;0{ap<)&8mmqqvezEwKQ@fir^Ty1EQ7i2jTRrB=0cxLqp?9+zXD
zGL^hKn`0)ZZ<;G;JGkz|!^10=P4Kx(*HG6{k(}64a<;cal5c<5r@h`7uH4;=h^qg3
zTQ1l-Cq}}*Y{_P4P1A%o#h|Z=DV!^C;l1Fq(Kq!RG~M%`d&`{juS+=9KK!|8a!;eW
z*L9whNLG~_Lbgy<V6T2d7Q>KiNofmYjnigUApivEETeE6Uzq_H^uXDM;5$?CI>U@y
zx$w;C_<Ay|!Cd;d7B4T$g{vVG_n;woLM(|cStt5vp(FMm?2V-hOzWZsXJFen1@hIJ
z`%#j1@z1^hR|dR5U8!3qdw7}Uh^#XhK~0V|IteADHEEgaOoTb<!h89TqvikmeLADV
zF9gZv?a8-Syr3yhRZ&raPaPy9gBBI30T*9NFU&TGj(b{0MrMS=IdKL6EEd=7k+~g{
zT|v;4yqpc6UqmM!4`!*Mc(}8P*Rh#2w9=mvaDIHhKTz%I*+h9Z;5OeZtYR^$EhFM}
zQh>EVu8to%qAdbrq>|LI$<Odgc;XehJ_j#L8)*+ZsYv)utlG&~FKuYPfVTUn0k8Jx
zQ4U$G!h_|szt++j@2p33icM4c=>YQ)RU@*C!st=1)wGYj@qeD~n+sSOb>d7f=(wws
zt4{K1dtP217cnGOh9I%7Q~t|cU)blek^;6!Rj!uuI^ON;dCM-M(eYqcAw|hqLfoe$
z%sC3J-A-23>I_T+LmyU(bKt4P3(ZM{B}Cr{d%SL02)$X~Pm~VMFbbx^3Qz_~O2%R3
zJA*Xr<TRje_3u(;!|(G~O+INx26L6L3jr+sEoqYP4-<N$18vOORen`$X29&nvHdd3
zx}RqE<OGwv!GVRRS`ExVSyDr%XZwCoNmWG!E1S<nmPk(v<7{^_QdLcD-Ujq2`m`Yy
z^r&5&dn+qWlUPDO%gg%r&gVbBfxn&4i})~~W*5qPr^=DT7I$COO}rk#f3q~pKJt#w
zX09cDSJbK4swcCCIJYlE)Uj%K-Wdu*2{V?=Zf;Dncb3^-vjXD?^cqLL@)YFnCo0%x
zC=it=H(BG#LwQ`SzA_&?ac}p^pW9^q`_F*^+6fPRrTm*k?)(J>S?Ne4GJ=?S#DZ=U
z8K}uKOn^)_!ki`D5R5MfKdVIVO-am>YD9)x>J8jZEt;frfea1BN_NV3Qg?&BOf8TG
zW3I6gPCM)Kl9%T5*S#;Cca&un6;lc&%{QBLpW}duW1j+l9Ipuey)gNgYK6xWYsVJ8
zTh}n({OHAI{9}<wE8TH7gLrZ!x2y<+BN%vt+}`>G|J<W<8j_(ndSIeBL8Z}qjd>hN
zQ-4wrvx`yxn`zb`wu2&{uq*&&kE|$utuDM#Rj;~_VD&e0{Zs(M)HXOME6?!?YiM2e
zDo%JlH%);KGs!Ccl9<=A`)SY3zrLsc`Qo>MM;R!su*kw659Y5amiIAk;pdR-TPRB7
zv;TQodp!Tc&jr(y4o*V<^S%E-<G(jcP5iKji{5?$zyHfQ6qwE43L%8l|L!6G$@BWZ
zeZ~g|`_XTPFb4M0AL!1Ss9;$k{Pl7dnf$~5IXM64G5@wy|K)qNh_Lb^Z_#lZG5-CL
z@}j{{$Bo(28HX%htNTWPKt-|dd>Hh00lpv5HGT`PWqQ_ZL3nVzreC9>HBrlG_o2MZ
z5c*3ek`B0L8Gzkg8sV7H<^^3)0<PRGBCc)N#%1BJ5=fXNg;`n8b&h~}u4yX~x9!{a
zSPpgn^7H-uBK+e?zUhO3_vXr*An>n0v%hV)NU<;7m79BFZYpW^h~WEZ2cRMbx+IYa
ztp%2K{G|)9MoO|OfZ#eV&yPy{db|QqBKBp{WkLsr7X#JX7C2<s?=}V!ftIQW3oIS|
zOj2Ix`|GVgmgWEL!%IKF!;9!iXyU)@kjFwgMv9D`E#S80=G#D)T9QFpzDrSUZPM-C
z-DX>8Dgn^(71Qwt4o0F__MbV?-)y`<iP)9=GWG&E@6_rhW#hfqYrPm+3tomsL`K$m
zh`u^IJ|4UHf3m}WTq7dhj|N0SCOm%`F#L1j?!be*sxKLfT4$PFS$leW$ARh?cS8)d
zv9U3+ITT5USp(zhvO=GELQtTU3K=W>+6#~cI|J2h`B%WQ3E4I+F)^`@=O3fo|G)LO
zf(CeS@rehoKlQf_cmk>Ul8}(lG!W+Y^nX@D9=Q19N2)l4RfE|+ToJr2Y+$)1hSqaO
z>(@rT^FFSiq8x!ZFg`*nk8sMFrPh+Xo>n_UndrTmWjgM&iBv=dUg<6I&io0&8iP1O
z?_0P5Rh@sY?d<pVS^A^#u|k2`E<Hcj*4EbK)2xXQx2vlS>G7Ab*5W@3#CDBlNu3`x
zP5u3^+0(rS-m(<!S`h)EqT>aUi93<3pA&ji6(R|gpb-%aC>R$-O2Ug01_n8f%hS`5
z42;YhEOV!4&Z!P`M~8<r^OvWnAAlJnUwjI5HN=4~Yt5WFp&@C*bjU%;ux%V>)X0e?
z?xqNH-=6Dj%wIa>e_vpKoIjkvzTTe-O+|W)b^M=S=eI?yG@y|3zvVjY+*H@ml-1bW
zbnKr<S)>Z{!e{7zMb0gX4RM<nXBTuI#ZRxekUMpv2Y`r^3yxXe4<aWg$54lD*2GOL
z7Mwy6FgoKf^yPKS5EXCrV;$uU7tr4|ktqLXAvN`TAtmu!Ar%NpZ}H@aPIGlo5FXm_
zd2pE6)N~%VYzBs7%}niX$1nNp$<kR`>`{`FHI&`mp;3mP-&T;3=^_kNMJ)OH3f`?^
z%9)Z-NlAtDd-e2~p@4qkz)N5Pc>>=CkCwdUqZqTWv9T?#Bj!!LQ3!$)J0+v}Iet{Z
z<usZnP}$b7J^br$<G+_^mMO4Hj+yvZ1R(!*Dn7!}3#_EeZT=x60<jS_9CT~~83HXq
z6#2@`K><d;@6vuq8tuf;@7uV}yTL4k&*);n7#9~v*rYpqfu1ZIOov&J4=qioQ6x#W
z{Jo$VItjZ(2T>{6k(LVu9|Ay3@Z9U*IcU^+Xz}(+yl&h0?eoS;K-B0wbr^<4SzK5c
z^s!+0U_SQS*K|sH{${_<uE4@U^6%)PA`*PBB7%bhf^<x=4olvfWX&PLV3mf?NMGIF
zVm}jT;69j76~Di~ugUEg4omE$=HZiynGY+H4V~XDD4^hT+KS>b`+wWSi^MSXGc($H
zuB244qb~3x_^GV|iqoUWBLn}n?6Pb?9g=MF?a8)*l3sQ8!;x&CcL{KDztfXB;-CZ^
zl8{{7Bdb!VW7=@7Cd_uJC4k3d3Io+aYFE{m*aZ=(;jb#`Ss7GR9QRoEK3O;z;~TIn
zyvVfJ&ZsBeoo4?I{|%8%+<ONJ?Z!Sjs=R!TVSU$Hizeb>rDC?LOFssuP&`Si56L!F
zR49lXb3B<D!V~Z1-D)|U!OV_+Y~Qm_|DC9(9!pkMh~6H%VRFTyTRd7XMm&zs$U`6$
zgIE?Q%*DdTD!$H?X|c*GC?sFat+xYI)FCs#eRYmx*n#MOHrRhJDPRx!Npw*1@cbh0
z4Zu<c1%-qRzV`8Hi`Y%kBQdWR_$Wa4UrQ}-7|UKt7C7E5Pu~$)<@Ie)Z_t3e$8ZP|
zdG~OyB+sdpNPT6<&d$*DN^9PzEJ)$t8!{(>k&uJiy-toXsUE(8@*z74KBD<AH*1!a
z4P<NRw&j4?qh4XK+VWT;wfk7tkY2B6gw1P-mkPQbf_P?7l}2TzAomn=wWR@Z6ZY_?
z+m@h=yh>-+mNz|K`G{$fSOxMB$n#{)=CSWXc6kd)R6nfTFV1}nKW<2@j$f(DY^WW4
zy*tm|U|rx%#lr(l_ujwMYzPR6+<tK!SSV*6Y0t=P5vF<$J}5H|sG{PbAd@GJy<6{_
z*y+b=<|7Xa{Y4(D5r=$waw4G}k0&V*mVl`C1DMdT6Q6EwZ1gv&zW}R6M*4f-Xai}Q
zZ|S(X>%E`tcb2<Fo|5z}xy3lIk~>Tj`o9BYjkt>bpN^<=+c-)XjD=^JHV>w_xPLSC
z{0-ivhQ*;(EM%-`2>2kMF2?_E-(vjJ8X!*l;g3WDM%fFr1cV4cLs`)r2o8&h`5^po
zHTu%^5Hi>9E1W*Og|QoMJ<Outlr+MBBoIJ01VC#L#_q;BbQmvbzU?fhopCu<yqxFw
zL!L;7{8C-smIDdY?8{Mv96P{}A8T36iXiCO>8a44<@~pJP!;M{j70AIznW>khSv@A
z3#})e_5EK68R)R&K7)a)O%?MfIY_7h3j-~dqCt=gA#~u(a>y2&A?)!akKd5A6HX+1
zk^wLJll?~lVMRC&cjfz^26rXPGbKs6?_^V&*CJ*+CmoaR6CpHsNR*U;mY0Xdsy076
zQHzuv9TBLhsJ@-y)eqgG+IfZn9XCC2BQ)B*r3H@Fw}zWTf{9c&4ksHjGA2w+Oi2<F
z4Q^(8_aK4OuN-TT6BqZqz3Iv#z^tN5@m}S<)Yu~tS<vGQ+^yRTOAGN_7w`adEAtxV
zHHzCj1v;Q#N-gm%#=R;o?&Nqro~#=x^c$VqJ$GG+42t&>Ti#_E8mt6XPyPJ}T@x(7
zPF~1!G2+>{eO!etPurdM<+_S)Qk~NN)n!=RL=_49VM)qBrK?{zK}J$o;Cn>5gT^15
zR3G^_k!Ks@%eqlz%m;ugOdt8!H-1pcW$6NtM?L_|XoM^RqAgZ@<13k(X&_EzC)2LY
zp^?da{~2fj;8VT?+%#rq0fW8EGk{?HZZ{@y2Jr<xn0gs-{7_t+{#5QnlNfH`eXil|
z^?fE3jZloW?N`BE@_hUKdF5m1Whf7T{xUE!I)$wh|GDk+K9K<~z9WuQ4W$2mnuu_K
z>4t<PmqZ`oXk1x!jSU=Z1sYPEbdChNJoD#04cn-WuaT2eaaAjSy?9qAx{5&<Bqo=<
zs9y!tl{ySVP$IK9K(*XEmL8=4cn<}<H}0o_5b7~7QejoI@kfh!p5<dvO7(lRwj#_*
zgTZjHw?X{Im?bZH-0bZbn3$3e<K*Pzf*A_hpA*iBHUq7^x`FyD@ejFjv$V0iweRP&
zuGBpwEo0PigN95RjLi7?!F~~F3vZjP$eukz4g>uE7_)uvuUtw&K!AK=7$9|G2hy~i
z&H#e><UkizHUUho|LFkjyNHG(jTz)HvB_~(pXz-!ND~Ll*zt^epCa}07gSS|0VO3B
z7t<1B#MH~YCuQ=anhwMBP2<9&J6Ie1-9F3&c0QWeVDC^SZ20a~b^Vl4`0g#yQRr{A
z(hfc-iikU=vvVJ{EQ6g4?5{h2R=QuV&pkcu0NR<HIA4v~!>V7<!1B{AJ^3E`!o=J>
zGB|SpqpNWx0QGr)=&uin$;p$egPA~HTOklSgeAZ#aCbI=;l1^rw>Sg_A6FAPb`Kk!
zchzA)7*?loPqA?*)4msftX1lN31!;;ZHAcF3U09YihxT3mJ0tNZMhe2I9H})TZBW&
z_S#YD1pTa_g`+1aK5dyn@cgG^Q9SC6j0To>@Yby(-?dYzPz0b%Es`Q*;))CK{DtcJ
zeo0pthx<cZU1>#`0y7-abMVd!s-(_qc$Dd~<fJpX5b<Y6kHvo<S)6Nk1(n6y#bNQ5
z6I89vK^J=f$xe8!ZJ;VKIi;H_ct}BdvA7^;Vu0CbH#vBq->f@yL>?B2EbMdm?Rz|B
z>tkIz$Wunf5D;YH>hQL`el1%7h<%+BddO=f=600{s70wMTvF$^fTNN~YgR5*yINac
z4@TXjgg5nzLTh{2soongdcN076OtcStd1Rx(*|(!>fo-xIQ&3MnB)T7rx`0v&z7?u
zCqpG6X=!OQ*{k~o#-FC>e6_Q^>dST)SdRJDMBFa374O$8QWa9~Pq0-uki)1mbFgf8
zdzQi02+41q)GaLs8X!M%6{gKI`FaEVP>i*{F^lF7{bsTL?HqW&O`jwg$;rv*R!~q-
zfUNH<K2t3ht()ORp^F*gN5R|#pjfs5oO_1LLxx=5z~A3rwhy_6l$J7h++S_;J18|;
zXA}Da!xn4(maPnHs&u8uV&snU=9-7wZQ-@dAp)y<@p`~0nPNd}6)^)jjM#&&!Qr=^
z&PNTKodPgvgCA!yfQECklzNi{sZ4foXvlK8&HF@)wAA0<|E2G}*A=-=GJ-o+8Jy4U
zv2;<Pn0y2psZdr31~Eet5o~QLo>vPC3(JS$OzsK5#CF#@Vg0uWm<2m*TPLT1#OsE%
zg*p{0AKk>E_Z<li1n~p&64k5KK(mh@5KR!!F_MILys>^H$tx3_R5fyrsdjw&hTbF2
zjhwN5`~x=z*OE5l##0_B?G?ORc&=+1HrO*Z;^RbfO#w<Oa+rZn&c-Gq2qVQx22!e~
z!yUdOyAEHCyB*$u9N*X><S?y(A)am2(AYet?f{5r&1-Sy$M>koGQ<v8NJT$)HO>>4
zmu!oEt+MZ|EGUcsaI@o}l@~5D@E-C8V$dIbbk0B32WQ%(=*Xnv>sr(We3QZ?T@Eu)
zw;CsqB3xG)=IZu}0|Ur#(HI$-Ga^=9rkTN{9g#bUN<JwPVwjlC*I9oIwJ%M<4J!#~
zqt&_IpJ!pXBYPZ<N%7B#g?%7HaAJj%1A-dy6nLv(fGmwcD#Wz+1Udd-Uvwpe$kxKS
z%03ebDltQw>s7EBO4PzwS=($aNd;jh(!hAMZ^d3X_>z|d;vRmh4+o<M&Gxe>D|Hb?
z<doo6B0XNvB%0=wnsD*3<lI&ryY&4Lhp{IU^10M;Hgq=vyKyoXiFlmXHtF{Xd!9Jf
zul9!<;i3ayz#V3slU;qbvT2v0$X%Dxak@f(P0(7)TD`}`Srwk0gX71N=g~o7>$<HA
zHGDuofQf6q7l>NaJVY{!&CBTuPzPt50)v1*aHPBm@^6;NVG|z|5=}%X-zZacBW=*D
zeR##q`)Dwj26o6oJDe!O1bpWDjl>Yn^B}<b+w3!Mab5`)w*zdfperk{0ZMcrTDV)o
z9<Rq4UAbX<n<7cfZ;(MAFDMH~IJ6?&?BVBebNz#eJGA`0=5$t@efl-l4)4pXPU8dC
zU}^5Aii>Tc9R)JD&XN70igtgNI8|y;64KOE6U>fq2@*ok4QI(V<;b3NYskEe+_GSO
zvy5r8>Q=?ek(^_rms<t?*h@$EjhPIx#L2}?*oV>Qbr0Pn&#u0yT0-}6g4H!_wH|6T
z`Gn+3o9xkZPv^%RT}RFP=+E;`F~t~swH9*}wneoBr55a@@?O9Lv-tk|Q|Qj|b|NoF
zI@6ncxwG!bVm9|mDUqmf<f5)nrHKf<)5r4X&6r`-M?SW1RQQYO1M~B8Of7P8k;h-R
zP(-_%B;3f0!KlYIn>Q}95y3#aS?CCXK(g$sA#}@SfZlddn}9bP%Yp+Q5$$PSJf@nO
z8Zmy^{T6pSc^w@mJ$(tr6*wE#-2w2wc7$Ps$QU^=cy?NR>Y6OY)0(DRnGM3uWv4rB
zjK@Sq{2XC*SKdtPE(Pi=vshLo!!HV#5!L!SJfABdb{%ow7!Uo4Hp>tJp`WrKaea7o
zg0?HE(b)H@5<FueO2FX;e?b+S_q22n>zo@p8t~)@3#@PmBiOI&mQjk}Pz^Qvw3Eba
z{ptgkB$v&Q@zQvVll$*0$Dbwo$&xpKNc{lD{VrRSnS5*l)?&d#1+-~)FGuXS>V!7>
zZlStSa0tCEEiGH>6NT(QwUI;#zRr^HzmsQCw3bD1J4F0~a+Er9JrCq9(5nVY+C5F2
z{pg8kk(a-<63P2|CDb_TUS0jWkRI1J^;Vf;Oye$yi;s`cs$lozeVMF-ymZu4^1h{v
z-G?2bC2zmRvCT@W`C0r3*RBxs#E4^hdis$Xp6I>Fvec~9K3FL)VGHI!B=H9QJ|26Y
z1`lGuGaP4$^tdhbn4kYLV?z2TCRu6FIwGfLODdO1gY9b`;av_TCH`Qzh|CH%x3`C!
z?}ZH=nCrK$G?!=ogvRo2C?0puZY(RwGcx~}WNJ5_@TjQ57skE)$XFl2Y5cA%cYyq1
z4oj>N@L09n5WlVNmV>$XTQh>k^mYTzod8q|z;;`g*ZT=3i5ppvE(OWUV=@7YZ)E8R
znE7rEVy(Z=|C|xwr%12DDd0Nk$<LL|cNFXQyW$#KHycDoWcl~63uP8w-V_R<xVmun
ze6}LWp38<3FNgVjQJ^8S3I=dL=O?gZfd?$Ed2fCVPw?~SAuUk-)?3(wis)R>pI}5_
zL(;@n18QV}!!&WAPhu;I3T1~-`o-aux~eLLk0~xGDdTt0L^r&govhqYGJMy}j74c_
zO=1m@N7apVik9!VL%Z}v4uBU#<WrI&4TH&ung(PD<-fk}L?i8<Z1$Xwj<Gg_e<t;$
zA~E@q<E$#$_?VZuAjY{CFHPd`YT^h2cxzniW4L0$zfHafw?NwDFD6GRFsvKVU=3NH
zbYhZ(oTfk5S(2VslT=;o=~?ooQTye1Q~!VHdaJOwf^};bcWK<AvEU9tf;1j1xVr@l
z9)i2OyAxa!g1cML;O_1a+|JC}d$0fMJP-Fhfv%cW;~V20Ju8^i1tY34N7ceF7Rr;)
z(nDNzxs}o{n#mopC>@W~+E)o`NxgHe`-IA8H3gWr!7PkF8Rh7QeeNvE<yVUe^wwJ3
z)9Ky1zwdAz2s#mLtADPbFHSgRL!KXEv+Nt1jC>RC5Fgjn-g$qNV!PzChl*3$!kxLI
zu!-wk;hj&2i($KExG}Sy*y<ZJs@rtt!+GwV>V=RaZk+n6II!E{&7od=K6@nA1!%@F
zpI2mFaqQx(lNhnQE94hH!P}fWfvH=TL}tFLVVXCEIF!b88jva15C3yQ{m=f{jI<$y
z$m$B*4hmQ-ySZqQ<S+#<{Af%LkAe67Ani|(JNug@H&WK~<9ugIWb<Du2h^9w&X;Hm
zGV9027eE}EKKHr%aEPI9NVli5S$k8G>+`38va2AeU(}=J@u;HyKY(#z3B6Z<>^V{h
zki3&1e0?hiKp>LdH;s2zS4W3f=<(pY%ST(VWIF)m<g8F}`~V!tk>NNO08;QLpr}3p
zZCgYz)zE2})=4=Ip8>{_gm1R-zKZ|eWQ|}O85Pypt){>20=Nc=Eb@9&uy)*=v;bUT
zbKC)x8h4N0v{&FT^t;(|ROT4nd4(?*(l?!nMX`ZY^eJ(;&>Z&R1PBim0@nh$NE>S?
z=VOP|$SRLe>2~nus{4NSmM3IY@(}DSri~jUSzn5JYO+Q?;;j_e*A#_-8R#H`!Q1=j
zWN8n)+-fPRu@RITU!Ohq(k*s4rdu_n$xCCmo=al|A1e%BBJkM^m?unkG(*m5&fBg(
zWt&$0Az8i!OfYAiZ$87+ll$;F4(ZQ;q0DM3kxsF=^LdwTNf>5>wDcH8t033V`zHBY
zR2<@<=q|J!fq@%k0gufYPoQbwwF`iA&yfD87O|a_lf&vb2XMu!7*%MlC@UY~4f+#k
z<v;-0>_6J8Lkji3tt5_g?UzNYlKFxHexx@Q+~8567Qdgm=<gJkL|?z3Dx!*zJ_;K_
zq+W<#P^-B)z%MC^WNisEF)^X%=2rWZb)XLVNd;~D?%lg`DkoG<s@H{apnCAk)CC)u
z&Vjf7T|o{YaBGWK28a!7FPSk11QM@2tXi?JJC8@gY=)ReA6R8!fIEevc`%DE|Kdyh
z9u_BzZKR)X*lM!Vc-fqChSl<#)9HUMpWNvFfaxU*-{Bfm^SlLHKc>Ml9T|Du_f)SA
zLjEmTrywsdhC^}98-BN^a}`!n5;__Pla}W9WS-=|*~^Q6v-zEO1#HUs=}lDU^VS=o
z|2GM!eQ?q{qqL+IAX+~s@J?-mlQbnU@w-9{B}SrU+RQTG39Vpsw2XGn^9KExbLp1v
zf#;Hs|Dz@iiBR3!GtRxxcv{k+zh#)-m(F@COvdHj7fwF;0soWzYJOdLZLqT-VrMDb
z$LtD?LSj?XSDr=<CwdQ$M-Q9)*SeNOO4j#*9gn+wMna!4;sDP4sTD6628TWU9WEo*
z-44$(q2`XuIo!E{^4=lWNtmm%535@3E3VVAlA2QH7|k0*SJ5>epu;;J(6XeJdF={U
z?rI9lN8voNG@t04nEo)JER~=7X3qT7h)BDYeenJ75;sTk8!gP?Qde*jLBYf<0Tz`3
z_SD}UCdoRL9aeROWs#Rd#eas?gYR|hVQS!zc0h9>PM4PZ0%o_Kp_lP;nj=?RIBVV~
zf5>XJUl-Q?4V*@)_N4)T`hzlkFjD{}Cr}DzfK88uz<>=WXdWRSx^Dp@nI)~19mKz`
z{&!6Mk54jkT`eQ$2V8-wTGESWv+TURXkpJv4HxXxF~AH-hGQwEIs%q-0Nlf%$m^8<
zLD5m)y+*Yj10IrSp=xmq$L)=A^6QH8#4Ke&8TZEPzY>I=(j1AhLBv5^3EA)YRY348
z0R|R!*WE<k{tLyfqmMsfDQ}<n>UBSXVbcDu9Ne%ru;An4QfJB0?@g~RHv{)wJQ)K)
zpXa8OsB`$P?nVB9+s_j@EROBKRjQ6N8h+*>^b+7TClb4>8)EFU;eTKKI<4?%Nd)wG
zlhBsce+mfe;&ZGNC4>vjV?c<fiNY(8mVzb1D>RIIn5hrC<TbO-Lf_>uI0wwxlL&&)
zgy)W7(jt!S?ZB>>F!S)6trNU-SWku1=Ue?(fA{}J>ySICytDb5Pn>HZ8c#+y7{cVH
zMF_8@o5ngaywsnFh9ac^T`=?cd#oD>x$#R`cIm^zes1(){Y!5s<}{%1)!o*?{nN}L
zB@#w@>p!^*?%0nArea~dVd+cwQZb6i3S5xaRfCKESmo0FC6P8Yk&fi_Huq5Z#(65x
z9D18wmfiP<fOOdvtzQzo5XKqW+w}sm=e6&3+e+zcmL*$g1Knxijr9AY$e{~&>hU6Q
zCzyzQjmbc+)9pl3O+~r<RJVWdui`iF;?oL<U#!R&k$~>0^|ESn$pIu{8$}@bVEa%Z
zQu5`;*kFT_yE?xD1-E+4{EjVE)XjEwu7C@)ko|%l$`yJc&Z11+oBSA@f4SBdHezRJ
z_XwF#ZwrhekFPR14rb?@-0#1kp+^xz4&+qEWtP(0GQZ_6ecyG&?~+EZd{jYjdVD(X
ztogQV{^9E<ibV{)hWGu^PH!?o!B>Hq%$W;tTPCUqcq_fR1&E<4TIW!VY-I%}g<`U<
z%K1~cTjI)&l(^V95TEWfwJfXR=NW9-4@t-6h(D!TkIooY6r!qLN^w_uJDhNKMtyq7
zs@FzP80oLI^iyG9jXP$<qd3_ADE^%eW$sb8Q~u0=SDZTX%<A!Bns--afo4f;eX2vz
zk3c<xMNLCZRC^GWe%~xU?WES~rfz^w+!HZk8;g0k+TlspKu;!^s3^&`IOs|>qP`&u
z9+H3_#;q(VQ^fb`zGHh;Sn5xCwQ}+IHm`u0D|;oqEZ%4nVfnXN?pO3!^qF!v;|7(c
zr8)Vi%bn_$3a$7U4}V3ax^M^9%}08+^1_wr{;MV}#;-S)c<)6fv#z^n!g~1zlc5RH
z4C55Dug~k0?kXFWhWU+Q67wuu0ppb6>37a*p5V-KE`2?=o8~HvQ#{C~ci;}s-sUdr
zgtp%I<`OcIgz}b|hPzUvtG}0pJ=~5b{XF50e?dpl@vve;I_fN25r;F?%;C+9(^<AQ
zS%~HOM)<Uk1WR;&qYqm;`13LY@gb`(b%R15Z!mS6qGAa_%-=tSA9s)SMmwBtylzpP
z$rZWx^q+K`2+ZrsO|(z9a`p3=h!9XeB4Vw0?`Jcl%%{8x7o0QoOa+QDsO(_k&J&)w
zYWJACRf8vPiLqEk?ssVjB0LkW_lcqyB(i+(N&KCQAz5;VTW(2v_4!P)+fZ(uvsiwA
zVAkv>viPS9TWsf+`n~AWGLPLbJ)Ta_k7i1SLO%L=g!)iaEZrocf+=e`V93HD;zywl
z?#1scf0W{~Zslow*Zl1lfQ(;ka>@8kb+H8>W-fs=|4~PDw*OFPkfpzDhZgs#{P$6Z
zu4Q@#p~Lmn^iZhM<?pvIwCY)l04M(m*}S`}`Hc=a#NV0R0Sp#XW`8cn<he3FyiF~8
zUJ#gSiH2OjmSOevg;j{;S87^(D1~`HBRSo4%zc&bzV4~kc1Tp4Opu^igN)04&bEWc
zpVTHv7!eIn^1Yog@t%aGpbLaLm2YLdK~NQPClilz8C4w$lETcZFCj_+D`K;|@PNKK
zXW>YUk>vuAZ0jPnRUUuKsZl1;v=?j-yB?TaMSlPs<3Rx?dyzQiWD1A5Rkaf2&ZLOu
zO7?y3Ml7<b%5DG6DCk5%h4F*8M7?c+_=(CGx&$pK<p(=zxg+4mbp3w1@pQ}2vm+iC
z54jB}Mafa8OsoBuB^pJcidVt0sZ=T5^9PsZxJ-%6gx~SHg$1JU{fR>aU|p7I5iVdd
z69c>*dip9#^rw%3`52{Zhr^cTB1$Mh&;)geCfI7LkUdx;R5PBqjHEvWj3o^bUSX2r
zz^o<i%z}~+Hn8!7q%hp4QVQn=u$ZVawl1h0!rANPe`E-R8HtN}&VfC;5O_*W>}5ZS
zA;&H_lteezE;kY`qtzNIJnXZS`5HquJo^0FFo9%Z@P+8|_)#CBzet#aY&&+JxEp*B
zplO7yd0i_Y23VNBhzSh&-9y`uUgPwbUnViAM$fPe{T~a!^5JSX;R^!quu=`IjQZj~
zU{yS3ej2i*{OGb`2DePk1YZhxk&*(aK_SefqA)QaiwIUi&*pb7rfCn5K*DAVOR3H|
zFSm1mHd6ZVeAap%Bpu2PbhUJ}#W*ngQ!GtQ+-&Qj04RJui!S7@pWV$7&KQMS3ssG4
zjP8hhZ2BBo6nq4D51`0RcJeqm%FjWj7*y-KsfN|zwE1>%=Eh*M?-L*?n4kE?<KZID
zo0wPRfybbI3W<!Fn{a#1kqpnVyyt%zX5gWT!|yhuNqGN>idN%U{6WqzFP%Vb5VyJb
zU(_a{=ZjvI4di)-u<;+YwVchnZ~x~W@L$rNWetHR?*Yi53Ma=RG~4+Dmf#xtUU3g+
z`SowkBhEy?fyVL!oR~c2*SmrbrM_k&p;8{9x7cQ_%5`7<?0%ij?4))M)|R`&4{G`_
z@dO)v#HA7`4rSKt96Es`(L?t4`Hl@6$={>ZXod>L|A&0s!(+%Gc9_S=$!T<PytmZk
z^?G|=!S1(*B=dxzeGtPp{HQehC?{FS3GIN>%?#7=j!;&P78^9j0$W;2Os7@~G&IQ8
z{ZI`7(vrpFh9Gn?Y<Tdsdb{tIXSzD&1s-df2>OzdgIwzeLlXux*1}rH#(SBsN$J+F
z$4pC^OdpfLVBx3J&LNdkKK|+}6WZ)Gb9jT0r9?l%m1)BSzR6r1-9PZ6Ww-XRN8f+3
zAXz!8o?7FAGjLI1v}{O*OsENNTuU47hLA*2aO`m5eil<6^9pB3F`w+m(F(r*7*`vH
zAb%#atVxH$sjJ_JiUF^;0PSwm7trD21VdrkMumIC6)Vu$3G1(1B#Bv@IHL6V39+E2
zhv%Ek62$RjYa-l5$J|#mOR$+b5PL5B&mUcZaregP_(Hy_o(u>enGyvY9|zeh3dE7$
zxQl*+fA?8*i<zyu;BX#&nhteKhy5lOq+lpw_2$R<+~!kAH&-?qXmO(<YI_{zM>r*t
z_Rf%Bf_lL^T@tELA}(w0ZLp(7CwFee!FeK(T{MI%$Kn8XsB*v!<jN#_0w<wIf#T_%
zi)9goNHpj6+KgKCBR=v`Id>}laqEh&Pa!sc+Ozhci}!|N0&DBuZzFsg17>@&`5Sg!
zdF5c75>e;Niv-?mrLEiq?Ce3@V!PF3l!0|>U#>X+t(jvs>5M*|4g!{Cjb~hkLfqSo
z<Ah*_;xBtrhOnG^rr4?T1&;W-%j6feEZaBBIpTeT<mQM0*6?Z9V2^=NnW*<KZ29Bs
zcwSzlzubVBla!^ogYQ85Ltn#JV!r;@M)Pw5I(l>8m=r|lxKug=;k1iJIeR_}2lCT5
z0qq>$M{W#PGPsLPa*BXV;EN_ey_3TUqabb67lx%0k3-Ah=)BPd9V*NIvxryzijS)a
zcW{U8T`arkz?=(+e)SS%v!rq5j&=ULL3W|!?Mqco&-tq&=;-~hw~aDm@`;=JB=YKz
z{XI4jqU+Gei}Oa-)9@;r+5iDC)J(st`g7#JY#s?7g-4wq1@FMicce$mi4+&{;<C?{
zqH3g?DQ`C3S!pvV+UK{;GSQ!4`-hicx=W#@z)4hSd!gcq$XTVN%xCx}KtNxHuGS2t
z@JbqalKLspN1~uredxCRM8|arWah`ie(aEcuNBW#T}VhBwzv>;!VIGVhT=3S3WpRc
zLKcEt3;C;C3U45qQD45kON{@Hq*dTHGVmk>;)acYeuJ&)|Fjs0D|tBg|2<RLl+rA#
z^oK*>Bo31YDE^QwuJR{-8(1@%qO8WxW5ga0yQ%eGz}5cp@Bsu!5)M;nycO*9?*sgh
zRH!;co^NV=lOr5E-(JpX^O4*kVu6}Xk7#awP^EgS?|?BgK;4A^$lV5-98qMfKKi(}
zETWvo&bQYm0U0oFH~Slk6Yh@?<46uMTTD2vu*odfHFx5ev2FqvdQKAj1%KRfG*kZ#
z^dwS$tfc8<pwJ-D*%$y}IuR5y8&%J6T*ko2=Vu_-i-MYbo|e~T3Hr<1d{Bc$0Oq0K
zPzE4kbRw@oIaWhxmDwu4vn?wTR_C6#9J8{Z#&95cMM$7_lM6v(!EtXunGlU*>S3}o
zi@`~OX$nNZ8b|0af&TO*bnpIkp|s=<+&dT?>0=)M=EX<2R04_(2nI3tslt5N<D>vk
zCx|M!8~#1+Me=6T7GK~_xM{SrLw^JwV{<plP^K*C5HKEIrIo{I38FYvx19YrK!+14
zWhU-V{XsZRSc31(SWC$V8W6OsXr4zK*96HJ^BFpJc0F;U?UM{OHI?|$px5$*)il|c
zJq0+;N88M5cbZ8)Q~b~Wwo5zG&q9-|S;q=?&)3n>@mGjHqL3y!=6AQW08#Jwe<6GU
z3YZ)*{*A?5#rT@km!<cb8No-JSd82RD!D(_5|j=olOEev$W~eW!6m@a2_Yzf;z0L%
zFfrATM<RlJVY0JbA%TzA@L}GIgeRDyK!_fc(e`3#c8<k)KI5NA8_rHU@d_0?gf521
zF}mKN19~~aB4xQQU|!PvTosy>YM5~j;U=B3N%Im_*(F{!VE2e0bz;8eGsiRk-GT4`
zpHSj3byq<&|EJf6+_n-Wb(*5{1S<mhXCkd^aLaa%>eG<*FIgUdLtHenKGvF^!xhJ^
zZ<iO%6`%zhD2q45T}}K^3%uAJ^TmPYYm1Jw_ydGqb*I-_j;DwwY?vmW4^ff}q)uEb
zI_)_X$A9ZMT#M*bxMYw<kI2Ig(k!kHD?w*FwJ#-3{WD1ySDGZ6jA|Xwb^Ukk3m!{j
z|DuabhC#>eATFpa?^!*;rc=1*DIz(cp!49kl0@o{>%{4|(hAxSrK<6m{+PJOSHT{H
zk1&$0KZN}+csC{`A_o~}&Wyl9qGgrbomp)Xq#tFK!eJL@rkAsCEBQAks~r&wdxn39
z4q29BiHS~$gBJ7R%4YcD)7pf@v6Dd<_(#@CvVleKc0LBnG*iF+nx%&+_x`d9-|X@S
zFR=bGZx1nnMbHyLGMxrXWesu@tV3vb=B|{bzUT1juZKYDhmQOB7eQUX+#%gS{W~0T
z{U=F*QALJ$>jXxM2J_(hicjj#Nfn_>6F7yav+|`XTUqBE-13ZiTd#i3a*8JE<~O=}
zu}bTKn=ACgEYu>R?7f#xHOiW^`}WpNwEO<nsPkMyp<UeKagUG#SS(_MTDz+l`TQ`g
zCs*{#Q+G@;&vCSU_QwdDMhGZ9ADa++TT%Gc0K-=?)AQ_b8SVizNODxG<dBS#y44co
zVR;@Ozh$8187tA8zyEh?C^Xp|-(5doW=Wdf^k02~4<3S*%lL?LLR$o1Rt-O0Fm^(d
zYuS6z(x4W`B)!EJa-c@VxCcm;158@1E{QbGrVh@G43Jn`22yVy(YrbJ#UNyP`f&&?
zEW!<%eC?tB)G*v@EY>7T!0izSutbHOyZVT*u!-`-kSa#_HXy=D@mnI-XS@s!TVp%q
zD{?#aIGAcW;<_Y@x%#VKfkoH_IUkXDy0TnP7}?Ngr?hl-533ZYC<=sY(thgH2OF*f
zy(;w|vFPvj>`>@Ik<EQf$yGV_<d4q)+US3eX#yzFrCSVF`A4uhc%n1i&NN9YdK@6H
zBy=(XHTZg4XZ)@_Z$jK@fc&Y>fMlbj-$z;+4-^7R7m99T-T0v)!i#HZXlQ(&=ut9P
z-4UN9&-s}Pv|2_x!1oJV6bj9pM|p)kXo9khmK*KoheFGJzKFJX?Pt51;T~y9jPGq!
zum!pzFiZSlYVy7w;|<EKK*0NG{*V46C9LMS5b%5l5Kd*T$ked1i6mTrhe$>o@c@T+
zLrlH^ConV3@BUGU31B3DFy9gSS=lic=^KDXo&t(AcKAb@ooR6k;k+Pmr}H%w{#hkx
z^Dz~0BI;6|lB?ruPmnZKV9TUS_LqiAmLd#uA*`9&_)Hw6jbwZP9~1Qu^#uOHI9+j7
z(F7EJW8)_b3=Yc8stHLkD#|smG=I+XDMRZsmi+gOKsU)t!UmGbJ2%4r=C1rIkiN>m
zP-!HT&I(DvBMCZGAVy72DvgYPqv1Qy?BWgf3qu5%1K=;lp?|vlfdo=zT7w=n#hFlh
z?(6H=FO2eFCF$pv=FacsM>_R&LtRJ;*)^q=X+W6HZVa7M4K`Q%wGfP(QP{fG*w`U0
zX)gImI!ifC=FaOLN`0=$HHXIxVU_dlUApUL82sNQ#kc8^_MeBgEMBjr!C%MfDt2Dw
zjtw1;V6=bh;S4d37Y}xLsYJe>*BB;v&rs<h2|k@(*9p0oj3TS-b!t8*iUkF1PUeWs
z%0K@K_hqS14=l0S=?yFkJ-DpNnTtVO^7?ux4oBO^5K#DVcs6lN&(=`)l9F;4`lPWr
zfRBKUt~c6Z;>JKCIQ?3H`bR0pL1uZW7<UR{{rGSLr%-i#Fu{-zhxjLh3s&3mg4uH&
z;<WrcAbO~?ki)B<pu4r-FRNMf)3o3SWSTX*s6@*C;YULXGjtE;#{>t9%GjD3j3zVT
zUn0v4+VAXiqSXHOq-}g|tViNGO8c&;qzNeA?cF@T8o>;QRYluD<wU?=ylAvnBqzm8
zsdPgW9i1^Og0RHiFgQ6QQ<(_8uW(I(r^7T;MIB2<o>)~JBKY^^Pylc{3}iq(77W!N
z+-*{P`d}tX(G&FHaIS7I2N7&^G{IHc<!_WiJyiMVW@;#k+lz@H3G|`}Hgg54U@mP(
zo6iWZ?8zpShe6ibb93W%#0x33bHx&aoM@2x97J=NSD<)zunBg=K|2i{o?0y%>bCdr
z?l!iiO?zK-oyZTCnLu_0jcwjq&c^8Tzj1<4D9{R<`=S|iZf`pft<Xte`~#R#T@>lL
zw}i{lB!t=v%mHq!Iz>a1h~Fgo76n?<#M_IOOb9%YIxq;R7cf%6Ovfx7kFFuhV-yt&
zqJ2sD<ZMS?6z^+Zcqa0!4{=|3tqJ;*AG45luZl9(ZeFJ*Oy<1__4xWAgt0xR-rM~t
z3Q9PH*CHVw2Q$2N0I3cMnm)cXT+@pn;3{J3La&<Fi>>9bIFtJZqcj1c48QJ{l*tFe
zPWLO7j_!rzahkUx1ib~V$0>HEn+ad|s}Tg%=EfaO{i*lUx<4RVQao#U3XYrbTRM->
z0a(7oqg>WaD=k-s58*dEBA-gHkdk{#GkN2+K~%qSI*UiRIzf84jUnneD>FOR8!$RV
zk6WYV!4(Gu=&}5ATmR3pph^h^&t(z9FD)3lrH!-mt_Wd|nQaR~|1@UrL!Bs^rQ7aN
zzlVT-<QCDSZs=|*xU$@H%8s@Ppf*T;4S7qpIZ2g!Z1^M6q+?!J%8G(sl+M($HR!40
z5mDU6<zqFy;aVR@j*z{;-{yGV&9V+9jsU=qFduL#j5Me@@1W6Qf?Ot}&$Ce_N7a_Q
zK|L}%&VKsc{)7_vbkiHoc?PJ6{#2oc;ylo&TJp(Cxf<KB9)=1EfVn0RUHQ2oH*SsC
z)^=o}z|w&ZAqTw=aHD?*3E`w%$i)|NWN*ML|MdNYQlu>kA3|R_G!uz(GH)S1148P@
ze2UQ5ww}wXi3{N{dsd*TlO-yjW11;XEPgt@%ry9adO_-eUXWq~E|051t^)Q)B>MzR
z;d>(+m(*k9|9MI9MS>2T;3NcB<kO7a^5Ey%FJr&wI3N{l0nFrM2fmw8AHk?5lYawr
zOp2k%$8^5~6zi-|EK6TFe6(CPk}41lg!%!548I5SSRuNK2?sGhx6>_($Hdaq(g0eG
z?}MtdJH&jHw7@GIzIE5C$*aase;zdfMkTh7?1}{M_+z~qUKC0M0P>#tpk%7HBmNh@
zy2zLBFSWivcXa{?aJuo+q9=aQBkEOGtxj5W5X^agq#%A!s(;wqb3N#eq=<7L56>0%
zFezrbX>=i%oDu&(*HGNNq89~TV7O}tCz)u{8=sBx34kJ4={5X}*e%nHA_+Gn8%{Dl
z<9JtggkYt}uz3pF5dcBoAS6qd3I`Y=-2L=`i4->U3|0*iF!c`UV5Iu|Q65r(1-jW$
z5CYggdp#&UH9QK6a9ne!2^1fFe{><?>=tp$Tf)l>AEe;H(Kkigp{qtXlvaEMJx7H&
zvmZ<R7Jf%`d=hruwScI3x4nN8ubr>gsMs_#o4EW#_HO8rE5Q%A8ohu2^(5Y6o^BAZ
z4Tdq{^wkZ7#SP6HAh`aS6{wewvvM5wM=R;fnamw`!tANf20z+zZ`V%~@2~w-up)i{
zo%(O2xfCds2S37le)tN#AJigEfxjOC0N`+j%9Ub*smiDPTtqfMlcl&<=8d<L+|Y!3
z0^B6<W(ZQzyq74c`LPbt$=DsO?njD<Z0=;vh8oJ;IQrU@)P$lo3Bi&URmpsP1?QeE
zye;Cow``P{GfB^mS3fU#Xf<P2%8DY{XO?h$-#0m{zP8BS>r;P<xv=M5vCX-}0ahKU
z)($t#J*F|&S6)7+QJ5>_n1U==5fvA8_<s4;tUnDtG~E&+U*h`Uu}Z{Bw<By#6CL%B
z=^gAp;J`$eQ54h+AhR|ZX;k<AHT9>W(qlLMgPh2lX2ey#dT{N0e<GgO!kl|0(jG6y
z=B|!GUL75{_nQ9E0mU{2h4I5ZNBUixq`Gz}k3(C*R{alY2MUzd6Li~kZ74IbCfX3)
z-GNHCZPT4qXKwfKTsL>>>9F5Bn7ie*7%1lbjio0S#I@?lJR0ilhqH569@9s1N)fRR
zooJ&A|JA~(qaYq0Ez@VbH)M#;5la24s0NVRo&thrNO6xB^@;#fYVRkKSxH9C&aeQd
zb)ZMgrOYJ|tnSaAo{&&L+cS18@_LDh*h87Lk+f{Y@||)r&eJjq-t7I~GHJ}GEm?6#
zMmE=1FaLhY5q645L-Arw0ejXCC8xe8=)G{!z95n>yC@`P?SNZ2;2(P<q$R(IAz3DF
z1F}*+p~Qw1W{G1uIbrb~Ei8V#Qg|h6*9G4~t#W36szUT=8_S^K3lWQc%Zz!wVv_qo
ze(26aOtTlm47=NpuZ>Z`MoOSyCKG!6_xs**H7el^#9SbsWPaTr#eX1C**rEWEB*YF
zgwR;?NmK*{N~ZJRs|`|n1sD^#>U6;9nlG17XC;Ve4)g!=Gj&k@tdfwv2(n5q<%)$)
zpn+Qehgdq6ya?#jmT9(o#tL?#Bxk;W_=ya0aBvXom6Nmd$UreE17*pSsuxgIX6@N#
zyZ<r|z|6V;eppd|nk4pl2lCCPR98sc+AxHdY*mHsI5w2`BMcR`NATR5NE8tcR}As@
zLb*M#$mY8_Gdj%K;Ym>}#A%FKD<YJbksh6JKSJgKjB8NhRO2`fg;<{~o4Jzq%yQlV
z-%B-qh=j-rYN_e+OsafU!8?S!Kk)thgh=!rl9dDH!~%_tqg46{D4Nw(wy*j1M<GhY
zTsn{OUga-l+iB%tkzuF2qFGNZy?N}_*l?T_q7bw*V?&u^E%Ct<(JE%OIJ6hBHu!L{
zQp}@q+P_G4PP)Hkovi5&2Mh&1Vh=!Orf`OJDp*W~9GXc$n{+a|IXrgh-u=y`qtn5T
z<m+1k+8VRVNh~W+OeEjz3@`I%q!t6@;d``obv<(s$H-8VRE-_fg}(S0mdvM>ld!gv
zaIT1Nz_k4$NqQHpp{ydAV{9_(=ttdM{c9zVnA(SUa5}*m^K3gBAaDT*n4u%aRgo2+
zS0fSXpJy**j^jvSk4|9k7`~d^Z)atmt*^pF%x5L?5Vca*?5h8ttigYAHJaGyzY=0V
zNPr@BlGh~j3;yS%*c5E2il`I{p1H+Pw_@|(c{L5akHs78%_2aGf^*%KO^ET1Lq<bK
zM;5^KBs`G|2c#t@%g2A8pgqq+Vid44>|VFob6SiI!*VWbsf}vG?o8VKl>1F>BsuxQ
zHwuD^)l~=@3Scj#AQw=(dqJ=oK%NOvW6Kl%e$=<4s;XC=&(d%f3wikIlJu}8!5Q6>
zAWvNbjzcj9V`NAf()tG5oMVrKRh(Xu*H2sml2~ri<-l8Bf+bF&ZAJ6zu(c@>2-SH_
zn<|OWLWWi%_w^So7S=;sP=d)t58bfupRpvSD~RKd)yje8piHnNFm?JrcRqv#M(YA*
zzGq&~IT}|BS_U)3U5@^@(A5z2-^)RY*22E3By{!D8?5FZr3gE<k3$wxw9Pp}p5=_o
z-W7st`I{j?*Nm}GS5s*zFns^o0MM;vYBPE5a{{0A-4<cXz5rb_aGHHml}luK7?z;@
z9U!7YrV~OBnnAd9F0Kq8<)hgA{1AZ38W-8-SM>NEez#AKwOJy;-rru_Od&Kx*I2qa
z#IBN2FR?m}80Tuv6}_j5Z``&}y!|In743YKK<<sH<yeQK{{Q|y7Q8U}dy$~m1Jj~l
z5B5Q8utg$~TbLgsl?LW!?EXf^EZ!0OHYO9f(#y-saU6j<d3`@h2(4VokcZMaVB)6z
zUH)|q@K;0jMWL#_lC#I1^<7vw*;Vi>YBiL3aCOlTZiMyTnsR4K%(M)4y>@e)22U1;
zg*z<p_*;qx<9>fNz2KBjA_O~H5mZ;rqDGY{&7^Z1nFQ``kT0i0KRxPU^8H@daa1}~
z`Sy2T4e!fWRLw3Q(Qg6Z70SlobZewfr6jVJQi0e+Lr$`ia=93()gwtdDNDR|`2k_3
zVWyMH2(E*sseQ_p=ON)bM|w8VK4LeHaSr+Dk{nHcvcFY%_p_`}=Po5mmVC3Q7a-y&
z@MVw2vQzdBwpk4sUDY2XbV<M(TrIUeq|uEmh~OMc@@xs~F%2wCSh_C?H1jr>#7pww
z%Z;&@vAq%g+UGt=8n;oct?%j~33#yrn07<t6>q=L8%h_?N{?#<sew3d=Csd5Jqmty
z_zpPOWO<I<)OOg(CBL|fXR|RXU}-tB=-OPBa(~I54ZiRC_|zASa(stnQ8zFyWa_ha
zPKuOdo{JsSNng%MfKp$@nD0lZ@GcJezd?}SGHL&VB??i&I4xdDG85&CDgp3BlU?Dz
z3Turet&r7|Bkwlj9Lka`Sx2e=eQu99^L-#ORT6gcX11<~vATAW_-=C<?t8NgH>py5
zl&F4O0kiTs%*X?ZtNZZSld6Y1?VHfXC@4@D46XTu@KYtq+~SrH%(~wU4R(WdZGW2f
zu4r40{VCTk4vKSE9JnA)GmE`5k`rc~$Up((;gtQ|i7~n`uP0QPjl$%eS<}K%oVEii
zMv+S)^~~!aY-1LV2D8BmwYFD#9ib|0(A`GF4*C_HUDFO8N6@pB-lyW9^B+|TEf%2i
z|J+02RkpXPXE+xnl-I59ta>JVSzpDabQp3hBHaJq!?6+EI0{@I<Q^!!{r$5inPrci
zvZ)|UFV(<<!5h%5UGS#}yBC|COYno?-#e77sKLgcEBZbrigPr@2TM0U0;Wo5C8ZZJ
zRJR<B>qa7?TX=g6bnYL&09Q_iuy@PoC6M|WZeBpB{h(lt(E;WJ#N@YRk)|_XQ20*Y
z=V5oIB-T4$25<?lghuX#pi!al6)U|D>M{226NtMs0&9Q!yvq-Q2j+m@-hkhy&?)~_
z{|Jy&k_$w}9YlrcKW>Fy!^j5lb#6WqJf-FSlf(~!{MlEHw%IKQgUz%asTd$j-%}5;
z%&l#Y^uul9L!bsioe`~z7YrQx@j^&#JC_q|5YC7B6djqtOGzmybGKxB`2TzC87GEo
zL4#I)17pZIy@)qlT5cNK1I|?^7g<Zo(r0QE82FtEpvSvh$bq}CFc@+7H*2fBFnhr(
zh0neJ8xo2Cp0`vU4kgH>Je!^#zxqIrM<kyV78Zz^|5DRMDilmq%5nTmCOzRampQP_
zp40GND4)Fwoc)bv-iOd}?%U_+Wr&5<DcSxZwVrlNBU8B<85`KS!#SYrmru7h2b!Jb
z#EE_8Fh1Lqh`C2&2_uFsNRu7oJ3~DSeFd$pBJaBoCy@`87_<}tQ2aMbZqbv-oEmeN
zVlrL+N914nU_M+feB5#*{D|XPK2lZp+V2hL(wQUP#}x#GMNur3@JIwoFi&6qx>Yn2
zVIbXoAJ)W}3bWy-iwyd`ip@xX;<VwD5fnKGooJ&0{@~Pn6jj+)$VyrNsaPXy;db1(
z3`FevsZy!wm*QH0+Xo{j%p(zw3~XQ7{OwHL{a#7wY{W5t8GS?gOxNOtvViOk183vj
z!HS<>z4giP?Y1Z&!OGI>fm!j5(S!|i&6>6@WHgv;PcOy7{j-l-?Jw3cxFzt)EgV<Y
zYee(8iBU}#K7*8Tu4a+b1FL;vnBAobW)QO>mRBWgBvIxdb6UEQ)0Q_u>j~9gKcHAs
zZCjicY8rI<)~PY8SaAW4e>QW?>+cV3G6;%ZuTk`d6+RU=fj^LX0$~vPl~w7o)kpyA
z0I?VpPU6TeamNccw`hci139B2VVcD9Pt(xpBM!<UW`2Hcc=zRK&?FPI2SPs|S$YZh
zve~*Jf{O9ORnas2n6DN+mH}I&$6dPYZn&Y$-Qa9+86b&9CfS&19@{wyJKEQb2#cv7
zQ{*QY8sr`5-VHH&nVgdAXU*>KZJsi>NIE8$wGMR_Bjk2W2az1K*rBer$(s@X5__$p
zS6usuPo}K8?xy=!(NN_7HTuR#KshI$cfNHz3tjf%a0Ax4MPS|SDVdt_mX>wXvf+>Y
z1yYFGz4y!OuTruySk<Y3a;c*|0oYHO)uC@BxV&M(%;-d%5-rhlgVciVS7t0nz{^%=
zA-Su;cKHA>-ByjFD1HM4T7~l<8Zx&%y*{1qV)k%55TOCZDJtIw;i_GdZN9k8=>Gbw
zkbM@oQ94x2&u`0RuT(PiS;{Y}{0qRN!N#etX#iWanDC{3J6~h*Rmyq;@`H4dHvnri
zd5dKv@LHC|px0e}y*}8PIHcqKo{zQ*lI*h*8+<zUyo##+uL_ThR@-47*sB63UJSMb
zhj3f&I3`E*jf_G5jT4~^f^1^tZExT_{m)$to}@+k4{lR$6XI_ST=}EP+W~SE;P#C*
z6Bb+$#nvfH6I}!$XsV2()edRx2C#g&-Wy{T`N~%j`>$v;?-c9fu-q*1A=VeVSSu`a
zIFuk+xl-R!2mWJKd)6YPG~EP4`<$~ZC>N5nDO=91=Oaq<;+=W&*rYaGkGE9J_;$Gk
zKN%rzPOYs0+|(yDVC}UZ{2VK*s!k{oP${Nnaeoka<2nOG=PTd_9?+9AtD+#&$!$wp
zZr$15FcoM$OA}iuLY;K;hcx5cox?m*7zT3H4_Ng^p<J?(_J9k-En{F39zjMT308z&
zc9h#bSnfPen80JPwd+dCS$b&L9TQJV-8zV&bTazL0{t_7z?yYd%BfzEXa%q7-5}<f
zLH;wcq(U5nC<43;*R>Y3C{JzCT>QSM>XRL7>0|_ip|)sV%iD~rDxQ__fcXxr`QtRq
zSutB2EP_Hw?HKDQIOI`~FD$8;gy<-|eX#h@Rxr5p1!Wn|O3A*zIsH+erIHSn3foM)
zz0BKG*qhvYAx&`|Gl+yb`0#j(oq7@%&aQbEpXKR#LZl}67!{29&czro$rE%}xhX5h
zi{G06PO&PKYQhWr@VVhE)Q|Q&=so@VeI#;ukOwRWhFxT~_CGtkbSW7Mk<Q4|fk$l$
z-<k~zzjVDx!^qP9L&RU99Yh$DQLW7acm99#<||4l&HjANHaUY$M>CdBC0UKEUq8Aw
zY*Qwo_p;V2uB1@h$3-;0EK`!q5N!Tg9HWb?Z0Q)1pId@wH)yAeE80jBUraeuD?Xbm
zM>6>9S}woHI<R}cM$~q}a2474aS!%ka<fL6<WBLJ^uHKG!1KESbYm9)Rb8MQF2IO#
zCXloGqf`nDr0+5vA^9FmA?CLW)Q%Jbx#&e>39v-_?UGHxMTq-kMRkj;oMDp#B||?i
zXde<J@dnB2U17*c&-J>JVd><6x}wrMIZD3DFAe+2Al|OP0lM<TTp9V4Eudb0-i?~G
z#=d5e<1Q63Kq~Mx46x(~r>~HD)wG@o9Fh|{57@U|N|E)LiirixeH9mb&xkW*1T?0!
zuk=3+q_F57(US@Tk<N^bv7e@cYEz$@XK{W*esB@%saCju^IigQHOMp?gc3nBo@pbA
z>FEr!6#2M|<Uv9p<tdD6L_O1A785CE0<#ofL_6R)un`RWE56-d7|TH5G?c>B;B>s*
zji7I&7l0VF#{Sa$zAZ2u`!~kTDq(M;d;|QX$A8i9pd_(*eAboW%t;3q78V4|mD!M@
zfCDxU01J~d*HlNa`oH<bDhc%dXz(ZQJs^KFEMjzkP5udBr7!QS9a04SOn{E^CZuVO
z4nfqTr(i5|5TrSzcpv@X{;!K!01<}H*+wJ_Gd8?r;?C<(WsozHvkdU{T!Ca+lunu0
zKXjNK3`Y$uFMY;g<QNgitoS_3hWf6w9S-aF{HHaI%Y}iUzcc67o3$gHV*E{pG02Y9
ztoi14G#5Y`+B(RgjlDc|K`MfWiKy`Xu1_<#J_v;?3uiW4U05Qn+GsXl#ns8;IG3qh
z0pykhFL5tZ#8V$@D_+eb=QIM;{kUH^tzh4cfH``+V3joW3!>z?Up0G+9l4s!c|Q00
ze3bXY_cp2cCsq0@`{;P+!UI5{;R{$~r-7SZ1__YDrolY!k$92&O{wX7^DLoL3P+Sb
zvd3|l9Mv0^s=DYC2KJ{cAF0LO7m0$39XhrV;U`78PO2q(Oks6{{T8P7{a=Z#PTGQ(
zjh`KSxc6Wh83-HY*6?!>t8ahuoQqaBEUtKwIi97XTAwqB3OxrCmv67<ZDc$JJIeR-
zo9iTXf?;qtpp{{R{vp;Ut3ZBKXnL95?8-J-NRIEd<bA~a;Zexa;M{kUH4A%S+w_cT
zcM2j|sY-?Ed&M+zNR=(W{;JZdg2gVdSm=7QI2YXbPCqU3dSWLa;|GNd@<48n2mpuW
z1(Yt}O?Wg+w@&}c$?>4uFDtP)e?2WJS@@9~T1w9tMjsaN6)8Io1olom`TTZ%uD>>X
z@|kxr2&CdO5js5DX1jLx;n(lcj!t)SGS22P<hO*L{t4@!<YM%66t1a!rsbc01O(7o
z6kRzS+@U3LZle#sZDG(>KPii-_TT0(4=0{Y{_x6CVOVbKg3)Au%f+7G=OasKx=Hfv
zFN)D`*+jkEv&D1Ml^1@*uOFY>mD3n+I8txiTy2#BF)k6UYhcr@&<NkKBg97Lw5Maw
zwq(*Mc8Et}PDu@;yhSb+3r(zztScl8uI4?SC)8H%ZY{P;2~9rap35(`RAM<b8+G?4
zaGwbX?S0$tWRqMMp)Shoz}H;P!JfCzpcM{s{pbd%Tkbx~ebHKZ2aOE|e*8nIpkl27
z#M@k`=S4SS{RTRDKf7YM=TzdSt4=>ZPo*G8Odq(<b0=Q<D@jR~Q$$Bi@HW2N)xb|M
zUtc@h=-CuH`TgrfsK~+Bpt;~Q5P~DAU_o~}s)P;z<HT~4K{W>z{;N`IsYw$F-WLx_
zl+q{MbKD=xBq+D8w*tY4;Rdf)0_|*N!6qAU(6nuN)UxDoia!9}z>;+Zs~6U10yfHS
zFljH>fJLr%u{fPLl=~RZyw+*w-J0jzw<dJHaZ$c6Zj0g+xjv6pWa^kNC(DgBMmepn
z=W8tjdlkSmx6DC-C*rGKD9Ea30~&jN^j~z9U(_qih9*fg32{(3%_5iGIDqvEDDFJk
zfA0VpGIz$H46s289F*K1!`{-#G89A=gY~;M5rp32H9|tBt_OA<b!lS>tt)aNkAr=A
zx5*%f1|S!zvk<zkKp52DBz3fW^q4L>WX@;MvyZYa{;uzRlbM+rQci31J!nk>i+Ifr
z^etom>ce@P>IIR1DSnTUsT<Z0VD{@lfQ1aw$(DklfxysAaw2hCLsPw8bJ=BGQV`pz
zVf1Yzkn+m0uZ$vg&c?i10@<an$7ATvN@UL|WB#PME;4>_807w2e@qzE@>6lPvCS>#
zDPcB^Gz`?Sw8XvyBqgQLFXkHB{<ND%Ae#29J6rg>NjJiTYKVHUQ$}5)`(*R$=xwYn
zD_~XQNnfSq<2TWm`gN`MSF7+DHYM+05fMB)KM`{FcaZ!*SGLTZS^GmvtM5^An}EJZ
z0(&)v(U)tWizJe0H)lE!#gU2Vy=p6g$h32IRMQ~kC5QyQeD`r~m&;el{;CW#g!mgJ
zc@l1|b;GK9`9e*!Nujk{)sXM^;t$1*S=6=qmRR{@1-Wt`DS7=m!|YUc>JIVd9d6pB
za7g7LEB*XfZ(^QmIH&?u;YjV2SWd}+Wb9Ht1KHK~mc%5xwFrU=a%8^I)zYe%<@^4O
zPTLSUZF@G)deqQ8gk;i7egeg{0-tQ4v_UrAVYpoE%)74(BcWOMhS<H-fTj1UWQb@k
znJlc0t!j<mzE=)fvLdoA(!Vof5n~=I!wp#+)R^A?ZO}m3aJv5jsR=xK)XiNNoh2&~
zzQX9QPi?1EM3BF_>u9`+iEua{xX7Ls59Y%(@As7JS1s?W84<Txcg&`Bz8wFtUK4$~
zgvvu+91n#Y2jPSHyoK~opHA8WNXEP2bUBloKiNg$*do3uM(nu(uTT7-yze}QFi*nG
z%1gQDxe_rHPBBJ5Nd#~Ezh1uCSt_zU+~`}m+~di%Ey%GkShQPDG&EfAt(E8GGxkn<
zUN^{`9a}ucmbH<+Bll@Gs6=_<9dTt&etx(^qzhfs6zhIwdu6r#<RP(77u~7+1CFE(
zHH98C{2SByGs{{U&JCngT)a`Z+jsP&L|XGw&9X)_^Rx#(){@ffd4sDjc}515Be1|Y
z5@B{8`pO=8+ZJ+=`{MThHW{!{kSyrT*gx%e7}V+DU^~5pe>|bVk8Yu})5i5`cu!D=
zG4lJ-3gURmtAD{BIVc1yV`Jm|>VVW&O3OANJa_YI`1YvDl817uf{5uz2rI}op2i{0
z*3$DT0-6W%LcZnGs6xPLs`~5EjLav&ONrG%nZ$R<DMo>AlV_#HtX`K?iK~HRZC$|U
zBt?FWxo=puo9+<{o7%v_-cn)y*82dTyX3a?Yu>)p_V2_v;yzsDs*|&Gk$&s9TN>}R
zOEH3KbV7+RsW3}6q}acF_UOj{ZdSJrNcpVXP@9i`cM=st(6~seW1HqK`F%En3F;28
z3wk5jI<(ks1^D&{bW4QVg&U3^)4P9OzCg!=xd}m-)Y!E6t@-C51w;~I--`nzIR%AT
z1Fg+&Tq<KzGJ&t`nJ^P+-2bynr-*kgYJ~~_e3j!WaGN_62YAJATcmfR-;Ige)L)F^
zO?m4xp1lslEli-vpW7S=$XDolWD00)BcSk(v$v@O{5jQKEz7~SvI5jAOyK+Wo$_K-
zb3)hqVSe#$=)z9C%G-?~>;2bqL15=kAU!9DpuC>O%ath`Wa~;7*m2`8Ki8@l-|-(D
zntB;He%Y!udGLsS{MnI%z8M~^FR*C>)V_Sl0rBqJP3cEP#w4N+W|uT##XQ`14~{f-
zNN1dBYKuHb?&>P|X8TlNdmwz;fu!9J4r>l~vUwWBw#veyXF)ki4+OD3mV#POHN*-&
zvY585ACrvOYpKoZ8Wx^Ps9=!Ky+0=)YdBnyJsFgu*W31IRnyH({VXTrQ#MZg)yoxc
zNi#UJf#I+qnf*rzim3O=EOns;VSc35{5T?I_y@)*^)DuM24Dv?^Wf%WlgfO$+k~dV
zG^PHp8Tyla4o<uk%za#eC4b}8@G|a=7A_9kcQ1Z%(nz{ra3M%sgnUkeq-m!ezh6|J
zt0&&~!L$Hj+z8kHy3GkiFx8d(y?}~nC90eZJ7XH4zrgP%>&lV=yX`P%>xM|=J8UFF
zG4m<>Bhv(zL;>u(hxH?gRUus_@rhs?ri8!ZE@WvPo8)zs5(<A9d-vhROf|pmHYxD`
zGPpc^_lrT=fL%%8ueI%|DQp%3`Le>NCaa{+WO43DuGXGpGxZfW4`gcd!V)^?N_w71
zx;d@=Z@!pfo!g!Q9WIr(dY%hJL>^@2Z;#rCiSpUO=LwD@x;7O_d=>N^y-SSeRiW8y
zn#Fp)Y02a0|GsFJvTz$^Fyy*M7bmr!$1=iNG1-_eU|=y>^3iaZ0B*;hMCtsi^f@mi
z$U)=&X=GAkmx6zwN<mvs&3S5o{TG}sNB!oe7hjs5`b~=*rV^J-3uNYP)Eo8Ou~uIG
zBr%dB#vA6`MDBDrRwr4!5i6m8KuXSf+Z8dpJGNjl&U-VjVhk3eNviZx{MIR`4(3E_
zh)8H}$>o0&R%TrB$0Bd*Z?1i+=PKg9{@rE0$3ma!rUF8yj9QdTIjRa}EV|lT*|8{U
zS{!o=8+G?7NIKQ~Jn?6l=e9-`{aqZe$^P4C$KWnTNy|1nCJEtq@|m+5PaF>W`}=j`
z>fJ847-7W!qMNWGA#avdy}t$cJHxP;f?#)dclB~(Qs@2gWI49>8I)u+wqStOG-<vG
z&9d-|q77Ya0V&WAL#){-@BpRfJ7Bm%u#oxotziWq)5AEXubz;edYzh&zLzj^kicQ~
zk`Uhef~6tAC!nJL&_hCDAk4^A;l;oF7uGm6-W4FMWYV-Z<ZdgOLjNj~OAWy_+DeBL
zt20t`i@*3u@w<a;vKjQDxO3JUK|V)2^K%y>IcZ=l;u?~tEhe>XOkm3f0<_JAi=SW=
zUM{R)CS{OA;pa#E6#`Fh)q%=WcO+#DfBRDB=wp<JiwiB?K&0!I<LX49_*t_o!Ur<%
z04Tn{2ck*D_o%1FS)1aBBDE3sO*>h0iKa0gW3I7Q5Kp$Rqf&1-7&sQd5Q&3to<sK=
z!abQ(Xtw#x(QqIA;6CQ<f*j}xy5a${Ihdf02&S<uo=`7x+1G0zQ+Qz7xb*Qp_WFCQ
za5)vEZ;THvGM<neL2R{BLZy)-)qe;F|0txC<F2*Adz;TjuJSOc^X$H2H_RYZmuw)~
zzU*;|WQ*Ta^YzJkn5oQ*UBqtEtl8{Y^4;>)0OEw#Ku*?O6i_ghzc_omtoRy<CQAXP
z-L-4p31))1`f+{ljw$n0cw1|_{;7Er{cSl=9i=R&b>hDD@6jZeT1wW_XfX64LzT+T
zFe*9nN7P2sb4_a%MEAdfZ)PKM>m5|inqK5er$5N4cL&PmkLp^5TQq%E4fx}sCqgmD
z?o-v*1mz)38frQ;RVKQJf?@oIukSC$>baz{-&vIR6CSlV3Ky8b2H7`ue&8w$m1s-G
zKiTqLs<SF?_Rtqs;@O%JZUJD&)rr{^w-PhL5?==mxWrOdYni2e9_(ikN5Y89B`Har
zx01zKeiFkuB85jy0$IXWo9gGk9dDu3i5Qft3#bTMIppyMI%=#_vUMf|7}d{SzrH*R
z|5ih7CU;(g`hESq9jXVf#;~b3r?8Py>%(hHJf)-ylIZiP98;wL{fCFx-uk>Lnu1)=
zUbigjYy-An57=7gwNt*`JI@zGq&4>z+iI!X(FD5yrUz%fulW6T(A{WwX9cd@cGIn+
z7&~$938wMY_6HkUn=ylF9vj=oD2JizoJxUs3p})6j(z+ua9guVx0kEyh%|SE$;I$_
z@36K6-68@Hh8NasgKIa|)#<bpd~D}#+{s8?Pd|FUe9`UDP4RA`+_L-2*Y+JvL+poA
z!vz4q>`Up6x_Dq_x>akA*%Nt+47!TrQxC_v)UKX57EoIcoVIo*ixRAgg@8jR1}$P)
z(d}e`iL;hY1*iv95D>q5bp2sy%}!zY_L_75mBOXz<miZWsD9qu(v!%?$$s^DB{a4C
znu4DGz*k=LcdONf1=^ZY?BnT%-$c?OT{QvDn&+Z4iP<unzsQ`J(Sj8uf}xs}RQ+S~
zRg`51Z@hn<;@ML-V{h~Y+~`Y;ceE|@J@jnl&uDmqS&ZUMa(2ph1`)rXbJ_;~3W&Ym
zGmBWwe19b*i==YKlDH!F<}L3O`UyKTj=rcrc!WtaxJiw#5Q{F0T29zQVf91O@B8aF
z`VaH0siQ@xF0Ttjor&jb9-lDbca`6<a%exsq!<3C?A2Gx6WrT7Y+KNfIlA6S8BSeg
zhHq{)I~@Eq<FcP}z&A^fe5Q6cJzi?LTQps@%*L`%u^618B#`!up}u^0ct}Y{jiKRt
z!TAo2P4ABwPM6tHsq%L-02chnOBqIVnTahtSeGK%g+*4=%OMVTFt(1r(fs2bc1)T?
zxb?KYmwE8k@Nz*?Q2a~XQJ6a0ue!5>%$lKfWl6Bsw4?amhpck8)jq6M*|w+m$Ze=n
zCK!T=(sW^^Z(LMWI5MrboEXm(aSO_NRRUp+N|Gq_3sw`=-&!djHEj{oWd3t8g1{h#
zLm8Bd^64Pefw#(IpOk{cd16!@e0512HEDXE0kwrjKtLx{^Yzr;x1yqJ5%sJLONC&&
z)V{{YEv1K)<Gzc8BFH{oOaHzHb_IaB-2D9i82bvasMfA+K{^MJ?rsoi7`nSdQa}W0
zq=v4cq@=r3knT=F0YSQ3x<fkt%{k}&{&U{<`@aA8nu}{3M`reZ_I}n{_qx}8gQPD+
zvvj)POh;;KxmeSC`H^YAg}((y=AelquY0{AdHs5F1b^l>yonT?M@LJ$!++P;`E2?{
zUqHJF8A(*=ZqIRg*a$^mv+X=j+eE)b3y*i{o<*Nen|OLFK>P^BoNsoqK7heq(xhCd
zBTg1|o+GJyapCwO?T<~9;*;oGtCmgy^lA$_4=R3Lht~_+Ya*@-qBH349a8QAr|_A$
zvV#@ZFKBi^4C5k%#T@ZA@Z4y*+g70EVUiACh`0h}on$qz>EJZ@W0q#!-vnj0wrPjq
ztM#*ip`l0qk3uZWZeL2ev&Dmi1FkPB0#PM-;3;9dmf_8Osb$Vd3g{AXV4?0^w!k<v
zyLxyvGQ%WSlNRfQTLvL23jEg5LK5wW?|rO+z=P=`?>Yy22aT~^ns*4;=b@+B){}Vi
zO^vUYinfhD<+RFm+yywS`Gkjqp;hIf^*8=(LY8d_+?T+wzaY;9bf@f1br!kcxMMzI
zs&ySYIxIG5ExQU5+)Fi1RAgRDMS*?&E<V6VyMS24wrltEB43Gy>956_i7P`7=G7Ro
zMA{XDRgTQvv1-FLeo9ZxwZ+y{spk{hp)HT-m9;LpXe}Mj>6?niqw_v$ua<pc&$@o?
z9=k`gs8wv)V##_%z|e9$nE;!E166!Et`h2i*VZl{)nt{-eYkStvM3WeGxZ+X$A@pz
zCx&`XB2)vqxpZ!J^>dOzC(V&6|6+}I>f5n~2dcP6&k&#6m!X8ZWt)l@4B9>sF8q5V
zJ}X^WhRhwo=umg5;;nPagZOWf-uBw-FdV)*Rh<g@>LsaPG~eAs*cu3?Y3UwK8r$~R
zwas)jV*DJLn<*r(o@lzXltvyP&M+({E+I7_2Q7)AA+S5IyzhvjnCoq-3lYMYRJOe(
zEQy@UpWGC9>CL&v)c+a5(c1@6i{H)#dGef5v+jBG#eP4^Nsy&*Y0gzw3sXCNNXCT1
zT&e0(<I?eBTv>bCvG35R&K3M%W_5`;Vdxem8mT~8(SwiFqHdau9;A8U#_9g9lISB4
z@Y(#=5tL%NUt61x`I+^W9jdsM;2StZ3%>6hUDLYE<tVqz5UIXJV$@_0ZLPZ^UCdD%
zA4y^z^!*e=pHT{K#*=HBKk9PZ=htC?$&tA*x7AqIU`z4%t(cK@JuYrIvX6i8BY_)r
zv*hR&?lJaLzL8#NT+I0J=<h1S+}=<SQ6et>_ew?!6v^m~L(>e5lU#+iUr9d;GwghS
z+>Y!ZC%>t{L`)*nr}vkKO>TtJW3tpHDs}1@QEjv^8T*x>qa$HTxO08^jBfniN46q}
zd$N?r_?}$#Yo1vh?p?~Ubm+z#A~3DTS;JmIegFH=hsk;s7L~s?m)~N~&XPp#R6E!a
zs3u+|26Kf*t{fb_A#5E8I%UxrKiTcZ&m?{FPD@RV;v>(z;jx*?P6}n_UJHQuR19*q
zro`DRO7z@~btRj1J8hnB3}Wu60)-#{r#<d?MD6F4>Z6s6Biw(cqh}O9Erlqi5SJz<
zH2rVL0+KQW-4Gg|mq%ZunGv6(&9n|%Dez~l4iky9UdkP?+UnPh8X@s+*o-Zq^d!g#
zfblN&W^}@nr{9*v2}z;ft{53EW4IW#o|eSLOzF(g)Fzti`yd}v5y~yAl4p_$HtgiL
zo$k*xNK~Je;D1>BFv$7}klif3eiC!7HkDeW3;QB1ZsV-F>LoL>UF5VPhnd+=#Q|jz
zHgeYr>_p1kS;;BSK{w@wPB}BLzRg70vWBw8oIk%0ZeWG126h(ER49JD=$42v6vB~H
zKx{zko}&9K>@nB|s}hDJ;a!Pt;JDD3Z|Smt!nmaGp*p)_@Ft>c;@Xd10_mP;-o27D
zWChndQii~G^3v30(QmX1%p0;MP#N9CHopQL(GgG6Jz%YbWa$TqRS?Y;u-Wp42;5<m
zT(d~`OEFR=$>2*`UR5#G^4dH&4b~Cp9zm~g;y`6>wB3QF`i4$db|Li2dcWX?9*Zux
z>#J5|oNM}c5(5ulPKJ6^lH7bCI&300*t2=9#CEeaS{(~9OZ7F9{CPCXhS_Io!+G8B
z+B?oAgl59<jp>cs?kdxrdqikO=oMn;3O=izjt<P*`Cn-2Hqy)J6)~}g4a8BNx|JC-
zezy`SyL{Gmq`rje#8alVd{m$(i6lk|W)lB|q!NOg`Qao!>9d7h(M9}BiLKzt=Om=l
z>W01ZeAmy-;DPM>Hjy9WndCh7OC;CdExTz~{j=HP-no#z0xp>ZlD#M3=x+}wHE7_u
zX=Ak_{h!e8A3rUd;E2i)dvEw?k?JCX0ATUwE96dz<*^@io=&!IU3OjKrSjR5L3e=-
z-OWV1)U`E2txig|=w#p-rhtZhjNmH};<j(C2pV3m22vi$=ifw&qo;Tcn|n8BH+VZI
zY8a~?t5ub32>!&a$iXPj^^-0zv`IS}e;ifqydkA-G<5hnrW))NQvpUbeUB16f&y2e
zOEiG-)x{y(>^VK;t_S#ZzhyD46u2US6Us3`OiK&%^)uBB%6+H9&EQ*%(sK5pQgT=j
zdG|`f+=jzv)j=OIMzEV_LI|T-Vft*y73g9)#15wj<#|C+oP0J?Mac2m!3QbE5kR=<
zo6I+J0=S@e<W!Pz<(x4c9qm@VG&^+~4LXdjq{6>haHIIeeC}4X7LAsL+pKY`8M7S^
z|9(3E+vi;Jus`(tW*EY1G@c+@QCKXj(6F!=pdYSh4yXr;S+}(F`luOU8Zs%;!dcXv
z2s9jQEymVRswfTUXzqoTwBHV1Jk?2laH;e#&~)+-;wreiLJFQ!L7})y3oRIX6hhJk
zJ7V@g=Ii;+HWN<ouvnRY;{|EE6#(hz(dZhH>4~Di<n-$>9@m6pmgXT=Q6B0<P_obs
zv9X|iYe;BFLN2$z_|YsLMto3jGdw@VHfIcs2GouGQQkiR{{Qvx?^Ah3nWv$y{&uoN
zE3%_zpYm^4lUXYi`Y$bjPD*M~m^Dg?k>_!LTx}DQD+dktaZ>=sp6IeSHL2M;eC_gk
zE%;NSuH~O6g+`Se&VWPt{diLXTGo<2uTBn}zB276-c82e110SB$%f@=STKse&;V`$
z-~w7uTr9hCo$@E>{l`iD>$ix)hNN~H0uA8emd^D*Kl{%`;evsELBZo6*UJ|BRMRWa
zsA_A|0m8W-6i5X675@a!#gQA&25H<B+Vh>|)G6&q6R$v-pqi=u1Y9Q`<ofqNqD2AP
zB@HL1Ms99y?eyR#uXt4GAKBO+tMlg?{rk`CChY8IRZW?%qr(6B)@(T}h9w=Q<+feS
z_b*7dVw0~d8CluzA;S6G_OO5vbhX2(_|8I8&0BMG?xU^`&i{3Q|I?EnAD_X8{@8W?
z@bcf@@xx!VX`WdZ(Dmy~=XW|6Jv%$o@AKoA|J%a;*9!mriT^tQL9~(X_Wy4$>;In@
zxd>oTK*VU=n38|R$$$H1|Ifev2zffDErSm<|IfGn_iy<51}>LqUlt4k);thrrqR(X
zkUS2N=I@6IgI!GOAC;$)kejiWZ`&6WTX*$5%r=h6$Snr45VYpNSHQ)t&&%h1qsz$5
zoJ6ZIRpK1t@+mo)A>lA)Z0v)aVnk9nn}E>=r?ZVkw~m;PC|QjL4{n$>HJ7hl_K8V@
z$=R#QG-z*&_yuMOahY*5U)9CSYZ~O%?s!5E$zLgTco_j!lsL{!%C<Q9-nSRKGhwHD
z6&(YIi!CmKfe7ehJ7-%X)3<ly)yOn7G_^L*NQC}&)BSBP|8qh1=~WF37QX1J`ptY%
zrbm?cj}!lM0;$n-?Q2J`+?>gHK18Pwk~?{^O0QtF`AWfWrpZb0b)8jsy6;0(weya^
z&SFaqnU%VFz>60z6ciO}S#&GK)0K-};3o}C>SO^`O+mGbbrc>;`^~OJ^PPE;A)S<z
z)GO;LmNraE6Gzv={HSE6c9e=<nmQa6Ie)%9)3+n3LASTT!gSj{1yNuzFQaI_JTsRj
zqiQMbFS?YV<lj5v{n!*3z$hkzu#J@t^{v8x9Kb(s_c~ysF+G4(as4+ZWrEp1HvI>7
zTsqUnSNFBEcxKGd_p#5^-b_i$?N7)E2wutq{Q^CCpiH%^_PNLS{%xB|(Dj#<ze$7L
zdv&A3QSaTKIgvJV@dZMZn}E)i@~|+iw6nEX?#?+tZ-{T`Rj*+-zi#=O(P9|ef{qo!
zJg|$1(o5$C8t*7>)NVFjJCh5-rtlbCZ0-Q&6~{`nnA?EUsC!^HS1V^~W>)6?RGR(o
z4=$0XU8}=s0PEiZH}K!MC}BOd+0kb8Lt(Vg%nL3{e_q4Gd-krMFdYTik?LKyp3x0@
z9(gmLZL-$v%1AXi6Vgy9a(1)lMJ;X)XIL*M2$i-^-lmCoDtn67TI6CLyIS%>gDx1c
za*^<2(vt~xrpnTGHG;kvwdobDj@<m-gEvX$<m4>l`v3Ua>`!02;_UnAe;yte4y^PQ
zeqJl6`=i&W{4X7*VJIX_n+#h?cH<XDM(s@H<JISCr-KiS3vtvN1$G-bm5OWFapv16
zMS~+*!-;KzJRvmWj_04%Yn?J`fAFbS<N0QTUlx9xHl!hQ%dwh%ALK{IeeZP=pD@rz
z>(gbbX_G$Z7OoNYqD7fcE79vbm8SMR{rbpb-l2?vsr78}O<e2}^;_SMu16E%eW$0V
zpYBbm{vWIINpzhaxa!tLWd0EV|6EK_RJxxgGgS^2#ZaG7CQT<#M&@q`0jwP*Kfmd7
z;UYb}N@Dwzd<EBrmiD1gG+sBoL1v02nfYMMQ$89?Mh~|4i4y9r#uEFw=H1Rsc{1dL
z-7(g6hKq42ficsv&im?nY*Nz@Hbwoxf?<7y9vyXIMxOXfPukChCGjtQ$%*g1SR9^l
zDhE~cQ{PtChxP1~REZo$itPDN&~W{UxBhRz>itu&dY{RAkqSpe4@zPw;Js&vsy2=3
zCUN}r?xXdp)7rwR#4p=Qntz@lAl$F8vf{Cnd16ejCVS%=%{H{3`UqR!%kRW<NQOU;
z(-<#s(X+tiX%hEjhJrZQEkbG!W+rz<;CumZ*eM^m;dit)iV3G{;1l<O1jJr0IaM;e
z@ERU@(<0%q*(MznRMfAA$@DwVgPAGw6%5oy^;WjkjPOj#w=ECQM@x4l(r0o!$!D8Q
z!!)O}NN95<lP!t<`3?W`MiU*UUD*aM@d`%g<sD~v8=Eij@$nPQEx?G)nidX)u9aCa
zA~W-uO7TRYod)YXU{|vEJCc}}XOdEK;wbTzGCFm8Wc<>p6D}Laqgyqf>zz7n2J%0G
z(9bdCE3b$Cx3@&|x=c(=Uw{gNhMt}m=@kSQdi8RK0%78QE-U2IH(aA=wqS55?4Bvc
zWR#U|IGLKrXTwyxLBnMGx@c!7@S=!uP~-VYo3>C~boIr<`O&g5pkMvG_Y=do0gI53
zVZHtG(wm;|-@g6q*K2XL4J57ML6n!3Emm?&r2S{0`@fkS@Vfsyh3rOMek^P0DWIMd
zcL02<><M4J4b9KbFGfa7>We}qZ<uEldAzGJ>dpwy&!^!B1l^ySo7#q<_%$^(=73i<
zrBqNdN#_Y*`bW#gHhkLa7e)dt(yO(M;c_!E;>%RD?}n4VklQ!B|5^kM#r2NH8#%u{
ze*<3kWgoRSnuQ|vmH$0Q`y@I@0g77?!<<0QF=;wAC~ie)jt>#X321WZXPdjtW?0Nu
z5$b5Z=un)t-*<f4BnVvw;A2}{^6t*RrwRD(M=XDLvlpU&PM4m2hI;u+*8Q_SimL_u
zv)>2!9NpnmVB8CG5$^0(9e0rk1;xai{wy{TUjhB#i-Vl3riP;>e6{PzQk}hZrR$z$
zXWz=e2bogUvCLNud<iSqW`}||1l|h~Rs92Nmqv+q`x!9zT!Q1ioKiermS~1g2>`E?
zGN0gnd!&sG7o0b#u1$ZjW&Y<CKvKybMFI6kkun2ezGTcv(WAG&e=wQD?CnaY|0%%d
zvr@sl2mnra0**3Y7d9vrJh8Xb)-nV%u>p<8GN~XsOlt_Ls86LB8nW2BV?QZ9F!PcK
z&~@SPSA~(e>|i%&*Hpu;zZ0(stx=u0kTA5zmrQ%Clfik){3EEc#)*cQ^jnSQjN_Jx
z(>5ek2N*D_u7*cGa~vW}l9dz7blx7-8Ib=-<GD`6$`GL@F3iH8HYFF2O{?7IQ8+wu
z_dW;V{b`62zXrvtyOnlg=NljqD9lQ-_>o$0*`M_&^WC6Xv>`~K(93a&>~+nX@>+!>
zMj>euM)gLGCj#&KNC!{usi&LG)PaSq?&s-3U-Pe09$*k}b8apTyJyJbj3e@g8M&?R
zN$kSegX@H(F&M|Ol>0?e%rs3(xxY3y0mh4wRqr4aiC>BOe?HxRUi^G~KymvFOI(7W
z6;u4Y!FrnQ`=AC66RE&AfRLC#4_AcY<TAw3{|(>R%Vbon?Ry-({#p-EvU~?X8JBCo
zzvLqde;IrPeI_Kg_4ky%wor}#`oThzMu=SZ35co~5G|i$rkV>D#p>=)V7|wpDI}Yw
z`KgJ-cUo@^lS@;;oxoO;_0L@*7a5`u4zIA6+2f*X1~pk~ct8wChWe3hM1uD2(pkb(
z?5H`cM1Z|iPFX3*)zCxsuwF^KT~I{jCQ?ut6(?p{psePq6<6C6w4ad3q!NCMe&9Sn
zKsB$!I)0FHnpv&RYA`f7OKB_UihJbIVbLu+h)D+4ecDpb`_IWoZV6NjOk=T?`}FR)
z*17KWs!W40LToP(BZod+K_S<|)+x##)z_rX<^vde{zRbub1(g`S48iz9T>ziQN|{&
z(5O0kdnI2tJAa0NGyO2??H2U_eO3~om}gxpz_h-_#^v6$3Y~I#@uh@2GZ>I4Edbi3
z0*?T!1Sm^NDk{T~4{|Mh)}T)ThC-HpeE%K;h}ccP<t}xpFlsx8q<R+bB)%F}#kaVA
zts?(*C9YSkRmb#@n5+b8{2wJ)wiJ%&j8XDaPX&U&ZEa&Fr>txTGQz-(C0Ofm*mU6g
zy7M7y8b{!lL!(y_vpmy9h(5+-J!(!C$Kic{eUeNjKUrptX?)RFmpxudP2nruu6tqt
z2?*0R!t{kaE_X?lF7_WG)6&vn6B9G1q@=)@4p=cyIlTjBUwxXYGSkrKNpb}`0Wv9Z
z{ZP(OCu%0Z&hRf(>BP#Sa?C5&e8kt5-HBESAIX?LNBoNQSGwd!<uGFs@*VIZ|9!Sp
zGa_8tRwjdj5T!9J^5`{NX%hHkl@g<E)<h>s!OgAZ^LV?wXR!#7)YLtf?1vWn(_NF;
z4B?#S00AghvqP)!ePW*qQLb;462Y>!7Y8oCf&uy5b`(@To$i3`XuAe|GM_7xwsQ4P
ze}yllSW!UHC~n`aQJGf{Gj!6O0BRu)bqU~=gh=~QV7-5tPZ$W{n89P!qXCq%o0Z9U
zY?4_FwlRf*pbl#izq*)B-QAlcWn>i6cx*pO{x^4|f1ol2-Rxuf9u!n*;7+HxbZuCL
ztc|p3CxL<Qrsj`P0bYYTeF1&#BDGFiG6b936@1ZrjL-gA&>K+cV-_8kVVyKstikqa
zp^SK=NM&i_+RWlkx!rS*pYY`>T!t|KsD-$)&14kp89H>qSKG|KA}x4kElKWI;Jovi
zz5l&oEbDAq%|<P1(a!gdA!A@|>uooHl546Tnb(dQ6m;1WMJl*kj8gn&F6HbZ$wM7$
z<f^t$WhK+|a5RR6>R{*Y`fLO6G@Aa3nQxchZ`LFsL*d$M|8>$a8M|{s;d_$r_;Mt2
z{~|k+YYT*j{Zn;9x}^|-1-;!lH#X-LiSIZrnIpT`${P~8w`ppNQL)Kl7Q3yn*KXkz
zd@`n(9r6YTw_z0wGV<;1f^UWBp5O`~+4qI@y;~<Q062<uWDG`2906jI2E?52BJ7@H
zC<4YSRCY&w#P;!xjeI+!c_9?9=7A+9b2P-WA%c4{e&1Q{=s4Wh(lMk3pb?$CLq3wz
zm1{!wEj7QHMrAE8uU0S++i&iYGgoh!b^Rc>2Mv46`ig{K^y{poU~);38UUIga9a`K
z`b#s5ehI^-dlAuv6UfoR=P;5fL^rFqwYjM`pBx%G@zQZsJ(K3mBr-0wZS;ohiYm^r
z)HOXZri%!~>z{ao|1PpKf$JB%DL%td?6?J^0hA8~Zw4z8pK(+frb_nr$vvLnBXBv-
znkT)lczoiK?3fKVO3I_0=1WAk>wQUXbBx4$(br3ll$frxr}=H2;IB?W++&bXoQTZ;
zKtVc1yj;wlm&o_q-?!ngrWXBDvA(Z=p5t>}X?wf6%fC<xR%F4v@)urcd`>arI#+LB
zHs6JL3skUkJ$|fdX_4`wS;F4ugGDi}m}E2&&rU>lr9Hrjg3fTco@CVJ!y(}x)sFBf
zN|sUbIF--cWZi8Fo^c#6NESpVZX3n9<a&-$uQ6Bb>0cyte7BPFTrt^g#g}_DAVrXO
zK4N^}@Op&eQAl43Xn#6%I?8)iHGKX$<`0xl*dG`^lL!8kA;MCsdZ&30SGUi<^9+gd
z^ER4m_ulsCrRLRw1+hqwSfME=fhI@oGzt}wLF8+^XpkE4L}oQx(=TkbQEv02rM6RG
zPGzoT$o8*u|A~%SlnWCZ^n7ZQmFAYee_l3*V2LgnAhZ4syqqf2r~cgcismN+GT+Bb
zR3|gNunGxs$6sIU<L}=V{bN`4gS&%kE%+*Ltno+APsxsj;=X)C&H}a-aE+OP>!3$S
zI-Rq(0rc2mRzt$iE<%f16)T5FzQ<nu;=#_lsF|vW|25(Ke!3v!m)-o^jh3^s{N={=
z+Lu_@W#a<jBl_2{6m(N`N~!t2aQ!#qDk761<wxuLgIY^J<m0#c?s*``Zx{iOG>3Jb
zjezOGjN)R34aqUA^dI-q^3SNIQ++zb+8NEVj)guoN4`L8F{fT(UVdx?QSG-@wDxMp
zrcr<<T_SqXT10yo?svWlpn?{cMam_!HU>28n&R2q%a>N9$3%?X)izGRxA5^xuQE2z
zG#^CNUWe-c8M;}6o@IJR;9%V*V~PDp4$FUcQH6nbKXYbP<NbJlxd$2oY<S~=QG&@r
zra>Mo*l3Z5MvSig-yW<LDN6Z!`|qf!pQ(KAD{ovwLEcbBHd&19;#>ouxuHW!!)Rh&
zWtl=rNn{id=FaDpuBRI>TMgSX7Pc2iK2Ye;-gKFE0x*#r5MYLT=AT1|JM9kU>S|nn
zM2~9+*skZtDUab`g9PRV#r7Kk5n6pYyI9e2s+Dg>W-c>=zg~o;US|IXwCmp|Lt%Y_
z*sRf#G@=oJX`g_>=Cw|kv8iby!`w>7?0dM-G{wWy?s09>b_7Js&)_@HKuJLb5udiX
zJM%|R=InbJGIvQCq|UP@A$3u2(juJ-qX3JmOQUPaOY1*K0DeP5iftY5HMSjlh=aUG
zgC@zxl{<XyX_yDerRRP*E<%tg(v6f{kJ>I#T1mTwuR0&yyDt1Eq`dXk=~m|1MLDe(
z^*7Mfz82$uu5s(=6WZ+iDQNtijPZIiQ(_D^OD1Faev|pqUMC*+W7KO2m|U?xbCp_I
z*wyY;s`yu%S1a86z+|bArH#+SwMCb>bvxYghw-5l&a|Uv{M885pW@^5qv1zFa(Y9)
z?a$SfvIQ>l2;c5=w*3(KD_#3JgUrPbLnY1<O~ftl^cAijn6@G8oMGdGs*Xb5ybS7#
zAT;BVXh#oHgowYSk}j>B>-@1HL+<_JWtHj377sEPJZyP^{m0AD@ZO|U%B8#tEaOY+
z-l}zc$9TLjr|&F|FZQiadft%#xz+x4yJdd`ZS&n|GR`$A&%GmI1X1_Z%i&hE$bt{W
zf8XuKkG0zTF#Q$A*{h+=M4aSR3Z|lyfA5%s&7vKu5Tr%s*v()4D{s1X+u`ooHy#L^
z3IOEM#<mcbC&A&Fz}wr{`<Bq-Zs+u@sAgjuwIU|hyQySpPk?-6K)1G0rOtEz=z;2q
z26EEEzPHY2pu89j)IA;tXIjPUS{{n~Jii<q@o~40hqp%p9>In4D2bXxShTGnGqxK8
z2^WUe^YOgMr8*TnX)xC3#CU8X*)QEv(O@9aFV}j2p5?$tTxP1nTmOm3D+(6KPb6I<
z3|mvH&{|UY$jv~|$(s~Tc>_l81jH_?&)=3yFy3LxkvwE$;D&XlEGXR{GpNTjD0!K~
zucA&<^~d})N|(#XH$9S`Ec_wyhIOvEyqL2p&u%%brQOv#c&1IOgb#bXH>pF3>7!Gr
zprWKZMoZ;H&GO)ej~bN_g*5b2(4XgfS2P=lumP$+AY@gZ^W_p6*k#};OrYoB>1+&K
zt}qQD!axbXcWVMJT_r@xQNyeUoSo$#AMSsjtp=kLTakXoSYv`Z!jG%oD=8?%0U8DJ
zfHUa|d~Iy(w^se>po;OGi95jO=&64KqXxIzjdfrW)dUOzz!vczSHGUGY~m|=j)*Z~
zwp<7J9PR()HSjGoj)}s|lyq!wu$`v^H07deQ=JbNUZd`G;%-&9qp^#1OHh;p-TxRL
zHozYVe#Fn*-2A2$+I+D)CKH<O*cO1(T6H*6l{fe9_;t`K7|OXmimQhNS^V-H7&xdh
zuDE(A9@#4^6z0tOqd$>-jb*70E4jd@oF#0y{BuoH^aK;X!&Se<wJd^EP}_6@4%Ln-
zihq;fex38-IVp!Jw0)Li<A?9@yX7w&jQ-?hG0`C?tzmvQjT|W)X2C<5LV{~)hU0WV
z6=aE2{F0wTg_L~>Sts0LEh|4a1bf3&4X^Dz7JO*rreqcMKMJE2`jwAiI>7z*zv5qc
zg<0(SiH{W2Dgrv;_XCS|i$4MQOEo|=dVg?^4x>oHbPebH6_5_ZF66{vw6(tLGI*b~
zq~Q_4_d&!bB-u+PMgIwr>xxquJrK|$1}e{2zjsqSMBJ<keWD(2Ci|TipAfl^A3wgG
z`tsUC<o_loyWWbwD9J^Bj>~43!|fYkJRUthRA~PokzLdy4GqG?@V__ZYC)6?#U>p^
z2AZrZG<BuxFXg~z=!?<0(LVH<Ka6#D;!4jL<iPh@zA2aNSR?gEumh5Aq|A;uM<5Gp
zTB_O<UeBf%Blk6$`}1!V$`+gp&||Lh9+}D~C=<f02GeTP7mSx_Gc!cs^JS{nL!*+e
z!Z>M5rmG%KQsoPR)*g1;afz;9D-fhObW>w5dVXZgnU=%XY5$q=xCS}FJ;JjP7nE!M
zrJrG(d$Xb15#2}f;F%HC8(T5qcK?x=wxoY_Y&YM+xv9Hh1n;PP!(;v?@4-Hl*gLWp
zqvP9A<k;Kd_JpH5wS_Y~Oc1s7oCud0exlxdB53r{H-n#K`me=wpn!WRf>iMlh*@>%
zDQ^xz0R>M(ET~oc2g?9vp*Ius$|A!hQAoj_9B^&>&;^gb%`f9g2PX@7_=sj0#Rl}?
zf}Oe?!xt&eJphh8Y;IG=hXKZ$D~1pb13(Vog2`h(0!9!RpwDSN9bgu?ubVc)LBgOc
z`C}*o08ysa#4?&5F~LLBXf6)2)}gtX!04kPic|ASpu7IiWw-G4FC6!iulT=t9-dTi
z1CU(kmfwn=2VYS7p_;p_hHs7P+cim@)r{aLB_^WuMYPWz0KOgZ%MTX~0?1o7qq$NS
zHl$6M2T$^mBaHK$l)D~lVf3|~qnTtwh)&~;J}-G~(bj4%mwlH#%6WF`UN_h;8$Fyv
z`yx%f`(lZ|wKt`2kG=yz+<LY}6d*+%+`~b65y+YSr0hHAsNx`^S7$}rnAq%gM5c<_
z4-9%7{i^CG3)g)aT7NK2-u)&|rE4188vOv+MWHa0eRbiso#XN*oxcrVrUq2oe=u#$
z85K6$A}QH7t_Cw@AzI=)+_&D8JkG+}b~a&`W45eHH3LU2L%&LN-9!FB@uV5-67|Xd
z?9G7RJ>Y3#Yo9xuMVLPR#P-k=gh7XLq|=|nXSuWxV0G-xh$LP3n6z$XdX~Qru>K>(
z^v6@oKJ|^4#(;Ue&hWX}nNpet?0dwO)mJugjj*bM&ELM=_9)8qC~2SV@*Qr>@q-V?
zcUgN7X>5`P#1EGs5=I_7w6B2y`{Az0@rlnG2U1N+uu9>6H<XQc)t9}TI|x|6r`oCA
z@*43vsLJg#U-W1GP_ky(XZ;7<Tl)-_mOqV_j$cda#g8}?+z+qnl~QTkh*`eACZ?^@
zASVPvD$iBfSDH}IXuLZeNa@_~*D7kW9Y$Oqh1wPFEhD$yLJiARMHt++mt;Qhl*K(I
zs~J<TQMFctu*7>?(@Dqb&2(6`C57U$>U;_SxW%+Ct?hkTZ@ql=#i}EgOC)^9^>U#Z
z{tl0G?XYyqvECax5k=B+xojS|mnMPM<iW_Ja}W{mr{){KJEw2R1krB76-tmz*75sO
zLbbUEBY_pXQJa=KoF!maeLlcPLif7DOxl16xu{iD$}3b62{q2=EJie&z-G9<jrJsB
zx-=Bir48eG!Q}gjP|gAshdQfE(t*-9YwlUH&LY2Kd3qCF!<FJ2Ii}@H#~(FPcF}~4
zN;`dcgg@V<@HKC}4b#Y#3&jrnk>jKA>fJKWd*ryIgqfalq!;8=8oyba`z7TB?4ued
zW>~{3eHrZC+j^r;U6DE83%9sQX7v0kKT>sr^#xqZ>iT(Gj!{O~0Ao2lB*YL}SI!M_
zp=AT_-;*D{;_B$0rCoS{)Wrx8U<_^1M*Kj+@TgTk5n8tlJrC+`_(yBQu9d0jtN<+4
z0Fv`q@G=h5{sSnr3+T(h<&;JeI%2oB3Z4Iy(CXD@n65IDVb$#>DOo%ovOw$a<U63E
ziwohFG%d<-)%)g!)OOf*X>{<i&j@keWmWL~7|kM?E?gF8C@VWq9{rg1VY$^Ex~|`n
zcoxDzWOM;WLVp@5Y@?bRKd|jyryLG9^a`!!n<BJG$5Q9AvS(i4xj6$^qVj-=Ic(oY
zSI^(Ow1642LxS)+*wl_>9hr=It_MQqeXiyoI&OD-bG2VHvg;bSXYyE_7Zp3#&h-ug
z*iBiT*cV&-%v74(IK4j#pKS-G9Dln6oe|j(&=3Cxc0>Ght##pad|-~in^FX`v5)fR
zE4M96a)=!7Uh1hD+m&9~o&|z!&QS=dt8Ri*v`?oKEi{*oigqCF%+K~;Ee|NQs{0mx
zxg@n*$d-hYMin3?ehtVd^<3Bh7GI~pcJm$BL6{redwoA9Th0PLT0SkNcULFPcKK{A
zt4k07*1y?A^X?3UH*lPuGIyQ9;0%N#`sC*}L#RG#4i(OInj{JHIg=Nfo$)hV$@#as
z&`Rvh$Zim&f}p`}j8WU$5Y_(5g@A^-&PqP}=%vRaiH0zZdq~8V36wE-S|Z-%vj>PW
z)noACGI3ajR!6h;OY&t-x%~s5i+l9&cuu6IrzO6rG(orM{H0P`lhanJQk&6L@UmIr
zdrZpo6~;hmSQpx7m{@(8?tQ-ADfg*Ui0Tc6^(o6Q;k=M`O2t`kQJ8ziv|iZg<TkxH
zNtiI+7L(CT?~QI56=B%;T46by)m!6Tg~3j;cnb*=+<kW+KtHunqg;i6d1ACi_&Dk=
z%VKyF0C~0bnKeuDcREcKHT$@`oW)QqP;??d;A@GHtFQ#m!D6~^b!RK=!)|Z;zv`s2
zt7S;b-(7Wt)))pa1yfXe?TIs{T<SRXFI7b2a~`7^R&2M07vz2$`Jt0uHooth+kDfu
zl6Zet5^sNNR969ae0vw*>e;k%&`4dO(fuvX`Gb^6B4BjBHrp(lJ9imZ9Dzft7fCGM
zt4%M&dd*H+HaJ=6D_~P6u!Xw|CMabX9-W4XlKBgE^S`0;b0`6=d7qEUoC1aPPLdIY
zX22WdH7dy110dp|y}tS~335LA@OZZJdLI~@PpW9Ykw+a>=39kJ$%i_CaPI-T&6t&~
zB8NzcJC}LehS#R~Pnrt-EDR!!Ymx_}Xtv^#f6Ui*OF+H^;tLO@00H*<=}uABE_mPA
z_x|^d1H=_dp)PU>@A7O-fuQjXT5{2ohen-@L}(R-Dzy0fq4~lR9Gt_;RxY^0<A>0f
z6P3s~be1s$^<D1)<*vCvYB*aEtGHk2#VY&>pa#@7+0lF|1c>^v`TzsNqfP^S6?{6O
zP(-@pmtmip3G9_z0sKl|oNGu3`1I-K$K&j<DnffdklGqQjb<7F^%Y>9y_I+=kAxZd
z@&#2BAX%{Zp;|*DOA(lM*6k#kCg|Q@Yt3-qOwlu#0RU)kA<=xRr`mC{wF)yj1;|pW
zFp|)_hzM2<0`LdA0&_Va*IeQvLmNG}w40k)O`tXTP$UlfXeXkb-*$7sm3RpDA;~rU
z_Q>0)!ZM9Zl&OM%u2~&M=Y;>XJY)j8n)(2Up!{wEW?8o2VHF7Ax|^Ds0Pcl)oAEfg
z0eK^yqf+-u4$iuNh;oEW?hT3fH$*YkF$bZZD(rF`0%5alPOuRXW)2+*XDdy>ffDax
zeuW61Mz;n2JGU>I(<5ke*Mr6nR6-XW-w>m-Ha&un@Tk-(B_An2@Bo8&?%3;Julu$z
zvNRygP^prJpF!6lf0hBSaV)WcG61|1OoV`m(pXjY{g}MYQ7$4a1MocYUJri!=}3*n
znF+GC8vNCRTZbjqt;F3UN%+cumln32?Sa_pe75eG|08DF*mpDIzn8RnH2+Sv*?{5D
zYCWVnX+)ijo>FFpbLw#HM{XssGdL~lrK3RsW8X|f?_(rsI1P?0eV&%)vwY)9$S1xa
z1uqbB8j3R<1OMo*C?b+Z-au&to!xU6@)@NbqkLO?L|rDpc~EB5*4%75MD1^dj7IQM
zwAuBbWU%vg70{b3WwjpxBJhQ4qqik;{KI+fn=1X$7W^5vJ#)d5v`49TT-xBrBYD*=
z{2-kd`=7?l*_m<cHF6UgF%Y7meK^MZGsIu9wlKqVUme-2*Pq%NBKU$_XLTwyJPDx`
z?C*MM*NhxG5{wt6o%_BE%<IIn(i-2;-+x+}t(Qd+Y1GtH@-(<#!O4S$dP`{nqHmse
zs8EmFGAjF;37Q#ZuS@Zh!>caM&yMIL5p!obOvng9_8A2df_bL1OX%wLhd7J8q&#{F
zk?OE=m0tkoi9`OQoq^@LpRS*=-<an7#TF6u#_qhMggQ&>240JWZi40r&LTF2YYWYk
zQ(k>#It3h%k-I@XKr?v*kQW&fZvYUcU9KTRycaLF4|X36+%mB5nEkQ$fn2oWLepY^
zUAIy+{4>Qd;6c&N6q@m7c6L_a%jwqvYLdQZSk!PIb&T8#@LuGg!6l`|$0a!+kb$0w
z*TMl9asp5W>U*~J7_fjT#R=fWG#CP(y_z670s!fPa0$Q55#I+5z*bhwCYYm}m{?LR
zIV}V1Uj4O-&1*Cmt41sWQLVV@$-@ZLO_a<0GQgtE!HmO&B9=>>C$ySk4%V6=Q;lLj
z&`lCT4D~}bsacJA8UG|62=Mo=LDp0YPMEZKf!pYr?3B5sWvgJZPgZDK1Z%vI0ceh4
z%QLJmT`*h3CLTY$1ajfm1f(rZ&WrRL><Z=D$ha&&8Lc<K85s9b5cHmjw2F4`nN@B{
zYLpjpQ&A9gkqy|*REimggKoMgh@_G&%s{C`J>2KOcyg+tw~=Ee<!NtI-`2CNBw4gI
zB?FmCV9pOkIIhp(hqw)r-Am{}@H4F8r~u#RFw-ks5y%LJfmJK7WGjFOKg|rye`!zw
z5?FI53f@D<$aEmhC26;y@cMe0cx_baL$BV!9kiQd7wY?G^wnd5d1R5KCKI-!`GJnM
z5cqiH`&jB???@eyrmYL$7UxP>^(RwewnMFT{sOKIGj;C+&E=l3`LA^sZe1Eo!(|E>
zE^hyU&=Wl|#S#+X6w>oad6Z1C=jEK$1?9+n%WLJ2EGF&dn_953@CJ)_wn{6%?>v>w
zudY9)na`Y93>-6Byxw@ZYO-W1V`|#MB`3c_vHs407P(C0{Oz+=il4IC95^p=*tXY!
zkYrd|PWETboCXiG&WaZpCQqzxt_TvtYj+Peinvlu(jr4PS=u*#-WwvIcF$<|(5%UT
zMTNG6O3fXTx*y0taU|G>llys(d5JaXD82Mny?K9`u4&48<l@MhR=5`?cP#jIKjZa2
zo`RPpZAs)ByWMyuMV&)!H@jWKmeZf}G(c|y6=q0^=p<(c2ky0W@pBcsnB>JcicR`J
z^Z+nKyB9m`3iNxG5fg#k11XN!2FZWVwZ-K_r7CvjK7|id>}{|`k69GI^wHL@UzYy4
zOUP$ifT~<=Z%84Mq$Y@kkdy3osQonn$P4CQflNiIi=hsKp_ocSUm}aRZ7@j%UNGCb
ztfG!4aD;w~z!!`|z=R&}hd8OnU4dNoO{|Oon@8Zw&-D<ki8vV`VM!2z;l)LXY+P0R
zS9cMnk(V%kx59B`?%;sA=Fp9<Uiv_+xz;4&qWRsBcun3QQkqtZ-4S^mtkygSe6-Lf
zvsQQlE;&ZXOUU4y`W%#q1B;}b48?RU@X1qO0iBj=Fq8;UlCGke8!oM{lWFG3_4W7}
za^UoYYDB=^#JfjPVa{Wp_xq8&OO@^8ibPXa>FZ8N9JJ85KPS&&utVcT^Dg}O>=yU{
zbKPh%RJ&GTAmGdP<5rW{L8JKAkTOEj#x@3%5aR<of40`)e9Cckh%@!24m8OPKz8i-
zjO7rIJAP}TA^3iu{cnYxXgG~(Y|U%aSdD^KJ{2#feMg%#F1b*pPitQyV`n}`JG&kx
zba#t8;%~~`_^qlRvL*fw?}&X^FOv0%Lh=6$rcA`s@fh>t^}VgJPm3~)@9%v`EmIJ>
zT?-O~Jj;#|HKX;Dli_TFCMm3rQmYGoYK|cb+(^ZTIT{{F;x!94WKc7Vim%qHDexME
z{j8dKKcPROg}5JqXJOqTLttS;9JVW*V?~$%i$ys!Y2s%jb6Vsz=oLnIO031G9m{s7
zI56eIlKDGJ{@Qh;tg@9Mmd=VLu=0Byx6YP4Rsns)mL&9}E4x>Ay;2SMucPMTgMs2>
zm?Mp&z))l+9WQ9c@gWAhf))gcC0_#fxc*ZQcG>GJ@*>It|7VbZkps~t2bM5i@BuJE
z29G~_D-FSw*MxV(lKjZP>9VV7NOoTtekacT@zt>({s09D*SjnQ?)SRHVu?cN^R6)D
z(2Ui-x4XYJSF0i?gV@DUBn(iZKp(_<pNu}YonVgw`g+p%rIoB(R>ls!M~pB>mO+)`
zFD$@Yvu9PLY`bLOeZp|fE2{xB^q3s1;kofD^c*I*53Y#dE_09_FJOaxNlN*7_47Cz
z6xuj!&<~=cieMij^Vp_5$N^0Y^!ny>D<hJZHhbS~nnanghnxj*h@V@Mhuk-#Og*33
z>shDBeVIGbSRWxeZA1r|XDf$N7pT6=<ydQhRip^`!d??yR-Z-K0>R#*ix-P?oHld|
z8ZiA=Rivr##I{+Tn!BS9Z6I<uv*^gFinap!;V|}8tI|lkjjCJgk)&X_POW1=v5uCG
zPFe?`-q>~q!VGjC@R5-@P{aCD+95bTj|xE!rTl>|xFpWRroF~Wgv=!ctE{83&wcwR
zjr?EyRMy1K%*h9btgdGyY`<kI==>wx%7IeICHdD{t5EZ{FL|?4`mPMbbNlVv86k!@
zzN^F|Zwdyak-Moc0fv_d&Yt80rN6Z7id)BR#$>5Q=818Kwm3R5P~ij@rYtHVUoG6`
zU&V>Ych}ONBVo<)9Tw};V0bR6GwR>_$KRheL!9o7lt1lTW%(!Y$m}`4cR77bS^Q~D
zOXp1EtZMX}xrZi%t(fkkR`I)})81`)ttEmCHSF<6&9>}TUO=tr3!eg5K7RY`N{Bqj
zx@gW>MXqi(=T#)W48$Lf^Is>G%N#cJ8y>)TP!60HftGSpNrtvj=ysdJc^|JJsF(p;
z=q-7Ad1sn|3xXQ%CLc$%6`E7}ajPXJF{+9KolPYperx%#1a%)Q2k}jOYATU|))8?<
zL|4iM$Li}B3N8R`LXf$o+>5ds+KH0OJ#<e+Q--V%{<HVk@A^A^mTv!NyPnWdihw`|
z=JZt(QNK_#acF4!Jo?#q4hu<xs<}kLti(0K7BOaM*UpRxK$<YWIp0wy9$jy{Tq^A`
zm$*V%B~3>&5hE}iYU;_ODZgwUs+z8kx^EU|*mpoM*`KL0bKxoXPlXG;Qk+ehI46|s
z`3asVdNwLtKj-sKaY8QrcE$Q733cILEH=^nCvwr~9b%~e3Z3~{Z<tB{`J|39d@Fw-
zF=V2l!K5N0ZClmuiy8uN`6MYS?<fHB`5ydmOoL0s^M}?yJa`PIX?M)(|D#iGSqS$u
z&+){h!MG2^Kc>o<IAyHLUPSruoc=q7;<?9Nj=;f2x2=R15@6}z(nzI9?=PYJEKdAb
z6(;bqXU?DkQT_50W;!WfKHLDW59Kwx@~0Uw3&yJD9ayy-9$JzJLg#uTc}>V_wbs$@
z+mOLW*xDUusU^G`!pbQlY=s0~e7CFbyM8EEh~3@Y4HmMR4UTg-rp^s{wIHmGr*?LC
zzOU@pZwgu|PH<$1!~<SSue=!$jlFCcet|Lm*vLe2C;_1;awIU*lLCu$1c6D=UC<|F
zlN78>d~*uTFW)2La5dQY6l>)|+(eKfy2C~SgubWTT5E_*5RH@|_N-9!>AHCLB~$bT
z(t}%otqII8&ga@kXz>k-jMIC_SPghc2pj>e?!+g{amu#C+301G21g}vE(_i}Wtix!
z#=;e3j(9Pe(3gY#<i4#JZ;=y|*F(DIf638j(8SRx#adUi)$3KgE3U_+VI8xcKCde@
zn;i_gMO$kQZp6Kw40E#<&@R4vemz8hcfkP_K=>EQD4PwA>1cOX{gz^i;}J&sL+DC1
zu%(RiLL1#1i0z6`dYl=Oy1(`4vqCr#?X#e-?ka_RAMTiV8*&C-MZytL!(?HTYdaGc
zv}}GuK49wLxJdJ+`a6Zqe^c?<su@;2vi&GNE^ZKd+eA8{gAEOc(I4277np7)G*n*C
z$JhW(2iZA`6gqLyAQ=qvsF`1?-?fQaahiQ0^6XK`G`QN=3}K{>pHC(EWRt?Oyc*)|
zZ`8eLJrn4=2P#(z295A88!lfTObiBNCwubv=HYXfG7rbMV{@)JhmpRL2zlpPze9Pl
zZWp`e?pv1BBQ+MvYn>wLqTRvYm1gE8_?5C2KTCGbl<=?X*3u4c<^B*@@QI!Pd@w{5
zyb8r(p~N?mzdavUu|5~S0<yl>mMh#R<d0V&b>uq;;=4vpKe%DOMhji&Uay6-cL(cA
zn;?DbCfqbzy$1z<bFSln1V6D|%1?oRwZf?T99<1S^A<-y#UaIxwD=@7HUN|`CDgk)
zN|JMe2espGFZO3=(5;a&(g8bxt;8yfE%+*cVAdSjcj%6>H5-aKIt`GQ^gP*W!?hnT
z8al!jQL{)f27aV)%CI-G9qS{O+e-@d3YT{f+qbIOwf)xitn*lwu9ZmFn8_9k>~3!i
zF8<ip9c09Nt!w7h=(>W2ya!m!f6H8?m`6NKnQe8iX*Y6Y6L8)CwvCVe0dRqQIyaX5
zPy55kdbCLS*=s+~UjTBh9FBZ~hoE@}!q>hGhOr|65+w<5#RUVCu3wnFk&Ukx09LN(
zw@m@JC|tSh9OPaa+3The)ZUPGO&992?z7Hx>kiB9%wxzuT4$oLlt?Qf*5Lj%R@e3*
zGFVWY>>CjnMMWwDLYuv*vTE0ZxqE)@3XFWaA7wR?X7sA7!!^y@iu;zf^St{eaR)m&
z_1@<2>g|WV9%1CZrB6%={BU`4){VU_OZFgKc)_nJ6LN}{YpMqm3aK{-)l_a}*!)Y(
z1qu%;vFwJ$X)Z3L`0egGmRRquP`I~5{VZ8ZO4lmut!Bh!oLhU*gmr>i96wqN!k!$K
zzpzSe_V5PX;QthM`wL230bzG~tpiP>yrdLP3o8@6W=@~GE26J<$1g3!NkhV6b;f_%
z0o1mG6!eWH$U6E#3f6qXqHEg4odtd><st!`0#Z?n&%H<7+cKHRQ^9u8ZlE>$<y@A>
z=V}$PX}@~VSuJ#qq8AK^fh~`Xsf*PLu{_Z^F$g1sI|DtGV0!`7N-G$Xyu1aiOTU=G
z1H?yE;U6iq&)Qqn2T}ql29yExhAuhEOGj2QhH!WczaiAOE^V$7WHgFY<;)N>s2CjK
zA$Tn{IH!U;$ao5Vk{rp1(g2!_-Lc-u`Bq}i-|HR45R_h<pxtT7=k|cfu-{%2DJ^p3
z4se$#rFMnG7bp7{Q$GNiYwwX1WJPFKdlKmEvexs4;rjYon;?tZdTP7Dh3ICJvQcG$
z-oF|9Sn8|1RE6W(9^X%F^5(>L#_}WMa_hJ+|D^iTs7Awq4pBtjQ0J=wCT2qQLxr;0
z?pUJ9TxRc12ll6Hg+DcO*ZsKbQ^__pE}Z<n9TE4%wk9XYk(#N3Jub@SZqzp+A5}P^
zm+&YoPpbrI+Ie2i(aqXYMn_VNB=BgOB4lb6WbzrrLT;F2oxeB4LM{Zg&Lr~r<}W6^
z#e7X=3||+(wX%Oi+4-UrM)Q0~-|nDUAhNc8&$_3kM%^#@<u%#Y0dl6rC7-+e78+&u
zcM-&%fqd9=vo(?!A0A;b`-J|r#Sp*(ZL1=TvO55nd!6}vUnckxY!)+YW_pN&pz;y$
z-XVrl8v&n145e}_7(rHp{A?fsTx84I<p!UnJ}rA+X0SakV(H4ndd^fz3TY2a9<~FS
zJZXYe$F5|Q@g%0Dm1YI0ZG}=tRrY#a@Bpw86VL(kJx@MtT*qJrR0c-`kHFr_EB6iq
z@r>H~@1Dn;M~EH2juS(Bx8IG*UTc*6>b-7{MnPD6gX6lir*__aJ?fx?U7#(H6wLXn
zINbQbJm=DZVs{)i?*-J<xv4-jq1?Ucg3#itNO**!@bx||Z+=9RQKc(KNu7uZ&{x=C
zd|5y~?BUZSsGT@VjK#3o8ToZ#c^I(Syl#b5xy;lI3oyT3K5puEmxg>mk~w%cOj*9=
zu>K0R52yv+W9798|3%_U<%Q{BuH6)pj*5cQ<AMnhG|n~F5Xnu#4a<9}PvR~pHK3r!
zg@cj#2M+kJVG$x67$|+fsyQE!`H5P>%8<ImW8elEC{C;ejmsW95#!Jjt$)F3eltB<
zid?grR|rv5PCmyJv;6gO3^q)iGJZYkA&oD$RJqbrb18iioAVd1hhJFHz5c@4BV{HF
zRK!_Ub0iE~<bhp4rL{o4{oeDj{$}st5GL%9TP}nqD$BVDC2m0hoMJ2|)uruN@K$yq
zW;(pa(Acou`3ItQ+b$2&g)JUXKlRqdG;&zw8Y_8p<CsY;y>p~<i{aadR5QhK!7(pg
z#<UzL9UurNzNgokEa<COZyoT=We`TRLTWO&xnIW?ys;A6?5$b)G*&QTtrAksBScd&
z@*?a|P>CF2iBd?v9i8u2*P(G|SL441>(C{ikxe3CkQ7I|jtE_T1M-MMp^sv}xPfY`
zjRI$B8U)La?Rom0ek1Ggt_bg<Q=eQ?^jI_GXUYBTWfDN`)ei}g(g%pL)u~X#b|9u3
z97#wz1J~!y0YDwn1jOh+2L(0SKir*-(58oi0&0PsN__K28a)ysI;Q_|vV~+ANX7?%
zxu-a&7yV>W*MyLoDHggRl@z_K;1p_uI;>+>gT|j$^=w|0o#K|}1Yq|1_v6x@*MY^>
z=i8$nHWCup-MxV3z*JSYt<8MBlINAgjOqCaplmq>Ohp{OfB<B8*=RB$XBUW`7l51h
za8ELfIX;XC>9~K<4n7OFeg}}lQgQkM0By{!9L(N|(a}*o0J?a}&n@Z2R-QSQ@`t#N
z0-4n=GkUHT^;nQB-j*8x>kAn0^|}y{qm6<n=OQPTJoZ>qxZcOo(9$CJRsnfHvKOE%
z^~Bv3D?Z>H0c#ZHwE?C5!8yZNJvFNifNL9h7y@%94+g8ANXyT!h5}H#qk5Q4FAo=8
zcvoyE?~KfE;7#boBYReqaI>%=LUpKakAP?H>uzPJyR@atp9KssZvxD54f2hUm@Ck!
zu9`P)BzisYyZ$5nehS+Na6`RV!Rq=)Awcy-n7t0Vz+t#v<B<b9B`$@NK?>hgrCIbx
zV^21{^2+|stbdl%8`UbAE-x8EyBaU5B3@|lJ&7~Hqw{DI{ypxsV7|kJ`);!RcIb<$
z9(FvIE(DdZ!y__eWsJ58XaMc<0yT2~y~0+1WV>`FT$<aZ6{G%dJJD*3J+~4KCU82Z
zd`NH<kird*_`c7*`sfNDU$z%@8&cFe+ngqODIx{h74Ydk&`Lc`z*jg)muHtN6qPt1
zAqoGpKMx!X11ypw+9)2>Q<q}%6_uzbx$xD>bB@ff`#{vEyl@9B-+mRQ*^LDVAuU(J
z%>xuBIB^QIV-icaH^=ITj^t=d+YY|Aty7BtyFjlNcfSCGY;9#0Efar)Zyl{IxxOm6
z5yPb?$e}(7ed*!22ea-CG8yuyOlS}A%K#!ILzeeNN`e7?JKYB|u$VXvBD;fb0Qv?<
zfDbz`q$h;TLl&gRCoF7)N=KPmOFYbe^=o5eHja3a=O*M^KrrU8TxF50fxa~K9fIFk
z)LE$Ya~{`y-L_<}n&2Xp^oHP<(4JsK5hNGNderG6AiZLHo4o4a-CO6=gU*Z8+X*rd
zcSagX)!h$v5_Z~D^i*%No&L=kh_Q0}yjucbjgScg`}?`+5y=fkm1Ct?_D7G(i-Y;S
zBNRv~SFToEIcl+pw4d$8U$Z@yOK|BwJRu~cf5WK$YZL-_BC0{>aJ3qO3a;;5nKi$^
z`Hh9S1#FdGAUqpvIEr)Tn{AX0RtJSQz6lH?ZQE)GZ6j~5h7hI(YD~KJ=;d}|Etq?V
z)4a5%)9y=O3<*dD2x07&FjXA4h1V5{X?)cyRsDWwf0WSe#;)1j`GL8qF!Gd}TyFJ?
z20T^Io3p0N9iJxz^=iRCZoWNMXjgYD+~SN^Z1OJ8MYaH6k{tSRb%?GSO{*NTWb32-
zQQz;gcPJXFQ3lhJ;o$S?N)3(263zcZ*jYza-L36f5M)uZXplx4rKP12q#J1w5D@8F
zv~(#*OLt31NOyzMAtBwl=!P@dZ|ryP^L^)x;U6$S)-UIL;=ZrvHR7MACLwY!<>%{&
zpv7&I)?kDklkGsPIDHkB3}k-U*eChaY!Y*nCq6LD6l@D4_~PkVj4}4gUo3#7@W7*t
z@W!^pMUV;?NqU<R&Q4K=`L^7j0;$;7s-F~~YF~=|0O2?22AGt6eI}s^ecrlcP`Uyt
zsn%vKhFLq*oi-okbfDfXMk%O?7Q^3OFc|yEH3FLNPLGOaW7Vu{Awi2jKS6z?C?$&G
zN2l^|+R@|vHQ`$=w`TNb3a|h_=+iIB4L_BRZQR}BmAWcV*+;*hWBB!Qc44sG7pkW7
z0XV#H!Gj>jqBMCoJ=jXyF{wLQ8tJPgdz+2yIJA2C@$v00)MATH!|@Y$KjFY;p3$04
zM}K!1>}!#zpG)7<s&3#IC{U9$z+NQPr`XY#mKWtDDCgcdsRTT{>BApRdP1BzEdA{L
zQZ|>ry4KDwwn`>aaO7Re1MZzAJI@ZKkjZPqAI;(!nxUJR{}IVQ4g4Vf+vdSl&bVDb
ze*_>d^ZY6W_QQZ)D{k|rCP_b6{cI`!Bjz9cfb=80`Cph46tz1{$@22@gKaXbF*Qh5
zZf+lVj7h%M-IWBYLORXhXJU`NJH?u@@#z)t!zMK~(!{6>Uy3K@6?Y1~sKU`qv?{Pl
zKd{TAn;*NyjQH}H?q%T17n32aWa>yh5f#eWAKUV$9oj2!{7eI!TY`Sz7m6u#G25DG
zEjv=b`=!ynfn!?8WlK|`N={%u`lbAR{ImDm61VTx5zGJV1kS&PHp@QqxHuYW75~w;
z;Bp{>Nsj7vvYnsU(#P+J?W{h564X1tVhIQq2Z6#@qJ*D9L!-d-G;?czD9d=2rZ6me
zYcxNKV6Fw1%J0n|R4&p^AA4`MGN%>;n!Edo6$W){JtVJ}TTJr9Sw^0)_<9N1|8(eW
zJO3zXblw)!8(Z;~h%4FIM0j5d=C&Qu`gsF7MVJHcSZrIl6&C(m5~B|5dr;bOfaaR=
zePA+v%xTo5KeTrTYpf*oBy95UXm2-Tr}nFJ^8HMlnyu8T=*DMtR|pc31w$*JE2u6=
zAiPoKQ^gz|h^78v!MOB3tuG*u>OZpkx01~)g6+*8&juk_KOYG*80BLjyg6+fHeM@u
zE^}X%N+C|Q<au^Xx?m#yJOKw08uY#*7jlrdVD*27_43{#4B)fYc`l{@?d<!MEMkvK
z`Qn+={5Hk^ut0H{BEHN=Rr##<gm`Hr`)m7S_I+j7hLf#=^r8e#l(4@tkpGf*{QKLq
z4Q${Q-bm&=`SKr;;@xkg5o1elL^1%<D!N|~d6ksRQpQm&F=mALf1Le4uf$(pgJKth
z$om}n*tY*DgZ%5qW{;5Us_@pstn|wY%^kip{1?UHZllIVie=Gb0@9;96e$6_{=>+B
z99x<d_}gDec*g(lKTYZFN~Kg?Cs76HKTq*z(e|TVk8grhFQt{Og5RI>Nww!jl3t`b
zY^PGY2!v+wmZ)VI>8j|j;-^l~E5tFSz4uaP>|q_bd>+1@*OzNj5hE{byy1RjOL%s;
z6lpYAF=l0MSOa^GU&}i5O?enV11B%~tQcpvK!_z67B`jqsl6%;AD8LT2AgKIDwCQ=
z;0Tpop!47?nQ~)Ap6*)JJCfXKXGxS;ox>R6Wv(gqB{5<4Vvv02kcLs<Zw+4~Qrt)F
z%2#qBvd%^DEbeB}Tuak+$;2o|Q3zn}9s2h@`y-l9<HM~6V~-LK;k?}c2z9(&sX;LG
z+}oJ*Kh~8$%Gp50$<diBs}<aZb0qo&vj2O2$t_4K7^7hYzsyZFMMAQ!J=@Rz`HP&M
zlp^HeB4>+zbq4I@-aygrAUoP~x1&ZztQLc+i2TS=eScStou`*JzWsXwEYH(^v$Sc;
zx~qKMl&vu?nq)3gS<Lb{HJ&Up`0&e3j^0BMvVTw>>PT`nVhJly2$%mjzSsarDaoe2
zC0FjDvwIw08?5G3cL~qq?f6x%*_SqXsK*}h9QaHJS0v>VW`FU<mWU#1(mAHMnsSmK
zy=I(R8rP+gagcNyh4HWN^Twp%ypcE>=^s0a`zt;IkJ115&#VV2>8T5xRN#Mlmk1D%
zWo#hfft{3BzRrzhi*`F6Y+jlX0GBR<=0qr4e}MBUT_SLj<iy<ClR-05lMb1W_DyfR
zliYdPn{a~p_!GHCM(f@V`Yt9EZ_knsybt{XP%Yoc+it<2@X1S(B0&r>ce5~Gv?=CH
zJHDVBV$K~+#;T?d#BmL&=~KZKr1fNrXHcA0xw@RjjqqnT-0YFVPkSEaZsaaR4?lYu
zse*fQ8q54YpV!|fYc`2Q`n%S#FbUag@(Hi2WE!Y)B(wpxYvQwTV6}Yffy2l9AAf>Z
z8p&Pg)~M{xTZxa4KMri}kx@}tDvDP>`Jt{_{+t2l(NW?ftX{>vs>q+mPxBlmkBnjo
zhy$23wPxp1u#v@POj*N?S~96ITyk_xJZ|?vi*$O6>gRUi&6ryMa$+Shj{?dC?u<g#
zid+ME=CA{=8M5r@&yRgaBNe9OIVqD^tH#4^MI$34CZOoLP`35_Ip{G})qwJrt96~w
zBRT0bvvMKcvi}=o^!GgmR?M{OYK~f^5sFU<vStr`=ZXINb-7#5@^MAhml;+h2fwnX
z>;`6wvgS&Dfc`)Z#ZvCfD!O#4L&M)5Gm(FE;QO<}bl7+L8L&Z;M5Hi=I#z$*Id-VI
zrtX|SSm>P$Ul0zvJ<D;o5y+`0R;;$mna!baHmAyDv>uzAQ!Kas>zw|7-f{0(Im!ZB
ztQ4bvV!QslkziY=G;*(vj)Bq83CWZ=7tcOMp8UD>w7au4;rj2J{l9&YM*+wk<5*JP
z#Sm$1pr~h4S)psoZb#S|a~EDG{r80mm@b#-IeW5BKg;YjIA=YEK&T0nlqZ^y>nwEe
zCw6Ns+R6$o2yG{PGTtCaWLHC^akFrx5fN~Pr3Yx@51N_;X5x6FUUHa!u?tI$bDp!@
zo85EsJzTw+<*UMpA$YbpS-ll2(md|=Kr8Ua<C2dO2RAnx_QJH8JX$EaV&7X1d&qHQ
zoo<ylvUVv`vo%vMzrl&)@8P~il>30n26#njl!bmz-lE4`xb%5QOjAmA&%fooPtNe?
zFCfr0BYpYnxBu&#!6^tA2|`B8Yf1wH1F(bSA3x)Wmou)^UeVa<ocVxSA%fT@fSEmu
z+Q3l48{Rl`?pXAehyeN`vlb)Q4~}$jxF2PCn)FMS<l%LR#`S1UnaS#i@fN>#eOXx9
zSt<9t_A5PB))J<+>l%eIW_qnzPMTekwuMS#>DguNY~}E$oGCP0gM~@`hNtL`{Hyo>
zairBayx*59R5g^Mn?~3v*g!`ht@=xY3-{VqmyzkePW-=4<=-c%CYjcQ2BqTN9?nKT
z-kJ!frl#&T<Lc%6wd2H*__M<8)T&1P*|+)m*9jaZXp%2pytAaz|Iyu@R%tPzqNSy!
zF3-H8n7|c$XISyHv*WOwss5%y*8dvuXK-`7{*w9YO9ZudjD<1xY~P=<JM^_DLd4h_
z{Lccp67CI+TR|pk6(e&GXW<1m6-ideNICt<B1XBNvV!v1IEXOSbYF>e0k7KhfCs~f
zIu%?-SVZ6avYUJ&@Co5_sT|GDNF`P<UfA%kV@*65s{xIp`?7qxoB0sp60^#)?NZJ2
z_Z0#bsUR};z>r}a#`;SJnYmgY_qL3lcPtqk_EhHq4^++d1ClHfxzq8W^HLohZ_6gP
zjoDy5d#f;o&V4`B`|I!p+zM00G97Nq2MYMtlB%87g(fvE({b+?<D1_y(pooBqHS^O
zhTZq)ZIVoyW6@vbym-*<YP*1dhmS8QDk@q5CKvYh_C{VGZH!2*S_4H8`60#MM+ctE
z|K;|i9Yf8^5Zi|`rEm$@bunA%y}Z00@!8QF@BU5%gOgOh4Zg82xa)v|v52m;5qMLM
z>x15_1F4FAajdx+83}FG0Q`|s>$sJ3OhHawoXyvQq>YPUV2%5m>&A7*K1T10d{<ex
zEK*(A?W`HY*O8me^}4S?7;a6L6^Axm^5M-ZJo*y2reU^^UWt4bKHi>-Nx3?`e{^O!
zplawjb{i&Msx5RYUlv&PSf^ye_*c_#en}^PX<*evEw|Mb4{?~~SQz-of4@)8NFV9E
z?B09gaT-6sPgS4`g>#d0z9(3r-5W*<0xIL!MNk+eWz4uA9TIogYqr)eks#<&DySg;
z6K|leaf;EZdf~zO%q37N_X$E!LpdWET?dhktF(IXNMFWAB60-nUGN2RCzIXp#GxFZ
zcn+(DQfhb4FEMX9<}6h>@99(dV5Al6)xAS(zq!7|4aIu4o%F}L@V{LDf8CkE0tlBD
zLdHSq1KR~KrfMDB!|1p;Da)yfbnp8pXo^@5&`?p+gK_DH!Q_-IJ+6vGAWWl+l#!Fe
zL+5fczHaeF!A0_iQuinEMFA*OPNjX^hY3lTvau23(@)LgSvzWUg2_pY{l~C($(aIC
zRYUuVoto6|4|8>dPpd8Un5Q1|e=hp{dUED6j^|~yUcQCqOmRFmk&tI8olu3A<<a5h
z)9CmVdEB=jGq`P)@rX!8umrtOo|nNX)cb$f*kHQgr&76z@M?9<IP@b0WuaGY$GDaC
z?%N{#W68twj{IR{j24^&_&Q}ez5XceL}(vgu{{s=S*%s5U%<d8Ac$0VXPv4&ru;-U
z9nQgNzwskpY;(4u2&Taj*~Q4Xfk#G`Q=7fi6|QP-p6{d^n<}}w9fddCNZ}H^ce3f8
zH%~GgFv?qhjkt2YAUZ{d6f|yEPO2FJV`N}sQ?f!vM%HcuG5PYA4wd^T8t*?Jn*Z%R
zsemEMYkc^UoGjmTeUb=YEsc5-i#CK!!2OUyNDd6xi=uApPZkhBg@T-|_^G={b&yS8
zuSSu!B+xHqoSngZ=*6ETsjVUJ*B|yjrl6p}o-KIg3RAj<r=W5<BW^vkqI_TZ?W~ly
zh#%?WTI<)x#UlzvSI76C{tS*)ocEEXe;4JxmmO~2)%p7XcJ16W*q16OFGOb@5)ur3
z(=OdB*Ehb&PrJ>{fwoYva)r_}?)3S{Z{3k@EMF#*;#J?HYdm+vzfUdg9JiaVx@U)m
z5(kgv*8kz)!m(FRB%YS_{^CH78CN%#80%vs&akHhg{s09<6mw0`}s<h$tf-uEH@C8
z4T9`jrqgHZ>oLl#sq239bHy*qdcc(7^DVyGV~?f6x*-pGdUnNyE%5*2W&HcY|7-oJ
z;Jv%9)n2zZOonZ^Z!|Pwj{+cyLFwt~!vfTgn#D6Xf(Z32fp443c~>|7`RnF;Qx!ee
zVv1^Nc*on5s^h+ak`ThlFCzAIHlC?H%Ue6!F<EI9pSek|YI@D(x7>ul^51<RgxXNy
zit8GdnVv0PvGkZ&YNN`iu3{-b=9jB{l%7j=s27%u;OThKi~BixVtRq{Y20LW5e7;S
z{AJ_8{kf{)0a=6W;YBf^sejFu+ytkJpKUUv{ZzNAfEFB*xje@`R2537ythAMzHGvy
z^xBMu?Dq|)$LVleS@8v@@whtPL=jf<OWEulW}&RZ;@X&63^LXM=S}!t#o=@~qj{iF
zgl6S}$4?|5F+|2<y^mkNr0S#vV@0r=IS4ZfsWtp)w0qQWxhS<+Iy`H$E=5fx;y3B4
zK)bZ+%sjS$@sBIZrH&{AB@%e^5I>t%1$L?&-RS5K|4byWVUMl#!`~Q>x@EW?gHb5S
zX*#pQWpaAi@*w*_rQF>dOBvBMtl`7(!@cx$LOuD({Fg`5y^8+#hF)Z@u|^-eeM)5M
zL$~Kho?0<UvJ+F)(0BnQxsas!tY{O>U=P8)k76K}$nB*-mit>Sw>{;@xk~jbef{0h
z6s&(Q#{W3V|J;APW2Nq50t+!rEUeyn4^gdGuOzGUlafedigp&Xl(hf{OGaZ#F>w_t
z)Urg~DqPO)y{a%@dssXq7FAdi9m4iw3>8{J#HScUAYV}XJ$1@CB=*IdfnX0zR*@sD
z$8Kizg5jFu%DIQ?&QOBsSOURYiV*4bb+xB7{3$rD52Jlr30a9{I%@dv2%<!MS?g8C
zRozH2LK3COF0gWKh62%0u)b0Gee6rE72hI6|Gr?mlmA0k?lH@`Fj`0+R3xyY5*M*E
zzGA^QZYAg0qQobp2j~&$Wo>RzYLWFG^&1HSEE8c7>*H1BBj2{XH5Ec)O}038lOWKY
zoO?S-|J)En#Gz~nS3Td(m4AFDR&(c%e<DQv{9oHuB%(wT{dL}wWFx`|OZI1OTVqB}
z)q{S6?qv$fsvpr3R0>=}$j*WaCbW_V9V8X1E5$p}_x1xwtUeFj7rHq!Qp>H5AdJe+
z5^+_onEt93y?fSJd;<D)5y#kw37`Jgc;Me}D#*kVite#fQ;X>n`<b#ZFyxJ>9~>Uq
zPg`|=rUD2-8fv{sGf+;p+Ona;1!9Zux!W|t-=tBu9*y{44dfIicDZ8b@KF!$YgrHu
z#l8_I)8C-v<%&zJ%&AlLni$56DXk>=>S)p}n2}v5+dR@&MDZ10>{*~$*^I8(hSZ6&
zvK6;v<(62)jsUu7x+rY0@M<zJ@BC=!KHf-n?pNHQ?@@wd8(H`9e&+}N*y4UyHa(Jf
z)$UXL%cgP3?R$iQ4W#3gh_WMespPtR-C3Ayrn=K|ddj#F-in?@s5LRl{rIsj5H3pK
z(#fSEqZ5p({m#DvRnUlq-Bh<-zTB&Xhx6(ucM7e1?aGyip)j|HF*v6hL5d}HmuMX4
z7t+@JXQz{9T#>0w)|DO+>agGJp|?_J$WcXl{uBM1Bx5C`<CbEQU?La3xdQvYH~+LS
zBpHtI2u7NO-q6EtD@H<cs1ZXm&xeqaC<caN<_?m6C4hsp5&R<cyfaBLoqeA=sZ8FT
za8}Xw_vKK}{W=C3esAh&r>t#UMzy3k@$>i%Z4U^p^6u0_{Z>OLPHb%KyG+d`I4Z_t
zKP#4g=^QwDX5JHF)!l}lj0bh4;~#MEa+H4`&j0w0NGR>#6XYN;TaV7#x@!;^x|3NH
ztgKjQX=u9Z;c%PYA3q$J!asf-4f~A>r4sbJhYc{o+%?^Z5$GhiX1hoPUbi9K{wQx}
zWbaR74TcrUJefR8*Wk*$MRqtg3#@A98E=r}lQgX;>y-ZGOZG<UXeS?~oe%5jczYl{
z)@}x^vmVQlsmT<4KE~!o)mpU%j<ob{x=~lG@b(x<lr0D|V9;T%9{vGt1tXKM+hJ$q
zkodJaOig8G&u%YD-cb8GX|Q&sCo*MCKD#f~T{b88iS8&RVmm;YTHK!0B+c%m<Ggd;
zorzyuTKYYn&r}XP!C-*4#+DPP1m_pXh99<NidELSn38@KaI%o<<y`Dl^vXiz>{5Dd
zbMO4@%*?S+24+GZ@mzFfPt5Pv`dc`i&fdn9IR<fH1sDB47C$9TL_QRr8cVeORG7U&
zeVQ#d(+BuG*7W{QDdTeO?)9C=248*S#D4W#3rD)uM;k#0YBZ?cj!qY=_a#l`mjQ7_
zUe-+Nt38+koP!ATN^-?)p|j=mU~FjJ+e7w$gjWCf%ztNH;3f|uqH+l!P}h6ixq|i4
zV8VAZqeo1J&>vE%T>-mKa<3HV?2^^t5>Ov;h!qpy;}3z*wW9WJftn}9g@g<%tjDax
zqkt^yZ8!HTX-9mD3`(A-F|*YRh(!h-i@)}CRu+P<1uD0f-1=8{3cJz6J~}ar=(37E
zW!|Ua|IpR8joZ`OCr3~Gke~92Sb)bke~I{Aa}>$2GB>BSivo;ujf`XxBX%3U0hB2a
z@@j552{>z%9xMy)Zu$iTnoZVBJ``Ph8hS%>*l)ZtT$Oqyl1YaZgDBxUM0xu&0Hv?s
z$LDxy4G7e*(VK=P?eT9BFYKvF7C|R5E{iRph;1s{GE+d=q+zoC*yOFy@%!ITeo?f@
zb`YOhbgcBkZz<)Aas1Z%Z@9F6N*c2hhU|$wc#3p5IEgOtYei*Ytd7u9|KvNQYFl<C
z`|Y_0>Ojr&E`1U6z|+CO(Bho!QJVACPkIm{sR09qt<y(5da;D7#=TC+TDy{dp4h0y
z<@1shUCyOv%5lT_KU1Tomg-C$!PtillVx+x|Idqf57#ULDIw+_c1kf|?L8$_w0U-?
z9%5p3KKW$>#?U@`?#dM}N4NRw+hh48-iVXk-?9&Uy&qscT3-H%j?U(~HI#`WDaj|H
zD1394*%&ke-u)yaM5j!a3M&`$Po~a(FP+?Tu&xh$qt@CUk%Xej2<DxbsZxvmYWd-R
zZWk`>y`UWJSWo?=l<C*Wm`cp(3Cb<#+vwUB3WjZs$Awv4YB3keE=EX^=gV?lti%~C
zYs7T|`H-7l!dT&_D#ec5gs;>N^V@|v%F?h>-S(S_s4#dxw}t;a^tMr_=wXSFm7=c3
zSCgei931<dYAT%Xp5@*A>vl!VCH1Py*B!r&r6)61Y<>Q*U>#Gv<~oluI?Vh+#hG{J
zz@g<X;ri=Iuk36#Dzt4$pxdTzL+Z3|1oMj%qkly(ZiWOW?cSBY+zo=Ac(;l5{tx#S
zvT#+cm)NwotMJmiUiCWsfm!CunuP$8Wm(rdQ=MQKi3_`y3|iKyI85`2jI+D2#wCkh
zZTAJ__m9qh<eC3lXjAbX5uYiXPDl|V2l%$KH#awSSprVml+K~V@UnX)K|muKBPQwh
zq$B4CUA+K+eJZ_vofZYd_UQnLU+=qhplf7&Q*Vmsg@I6#@nom{q&v)yt#(XnT1dQN
zaYPEs%v=!{OxP)Vr}fhRRZ+z+?3*gJC%sIEn0cg~6Lf+s1*J{}<R_*I>V83iB4v$;
z5*~9;`I1w&=EL}$)`w$RsvRPec2`rskK`{sWEG?nmRdKtN;D`sQ>v(ta*Wv7?<%Cx
zl;u%tE!`8yXq77qtOR+txiQwK+=DG4+P#?Yi2Vs#OvgvNfq&l=vyOl6Xe^Cx7Xckg
zAFS`;=h7=H>1u}XB&7q*#QvfjIqlIS=`Mf35HRY`9sB|-3nk<q4&TnL-o4J^WvAg6
zg>CFI)H~)X+3G)BG0lkriXz_&C|!nbrE2&7M_q00eU;CT0u^5qQDHdPzTogbC6Y7&
z756<$g&}=XH4l(f{p<DCet=*kLW3OE7}fnQz4hlUO=8VLYPrq>#uVf~)=VxQL@+@;
zlijGZ+wk@<_4ez&v+4C!00yxb(CU+s@!9$5d!CzkVCU*UyuW-Q`WM2%V;?BIfLN{L
zk%np#_4p`2pePa(69dT##j_5o@0;xB7Z=0Two7IJnu$kD%=ioo41#r~r8{#*B`MCH
ze4hh`z-nxgGN~{B9lFbZ5Glu|Y(1oEWo?5hIDp!*`l9U1m+8RQIuy;QYFw=nL`bF5
z)6<jwGm*zaOdNt8v)~11qOrHKDn5$M>mAhBGBeA2B7U~^-0dXq{VZ5a2Ah%U0e@i@
zu*Tq1?*={$cK3$Zm8%agHK1XeR!vuMJ0-UDk+%-3n`-Ruc?&ReY6cN6@O^6>PZvi)
zgFxWbBz}=yZ)}y6prH2FzvPq$+y2FV4jlngJhdzPe*E})>U$brZWw2~c+O++gs>zO
zU3Oi##H09A$FfDFxonMkUm=rW_~tf4S&*dt@8hBZPs>Bh;4M^=ALK+YO}uU>A{akE
z;Y^`iDjs+wxLhuXeQWr4=};TrJIVJUmVa?nz*%^^v-&X^cilW^ItpW4tJvu8yFC*Z
z5j(RgJdbV@)!M%_d5)ie0@^tFnyZ()Y<@dcuQ0a9iOKqB!ZRkuQ~Gf)hEx3qnd7;Q
zV%294dsvS*f^BMrkbs9s&ePMA+}S%$Mfg(A9n1L}z^Z&KW&5~R0P2rSEG#*=^a_I@
zQrKw25{^#Aj-zw`)sBkvur5Mw-`D>hOZY*fmr}j$s-z)dqm2FoYbN>g_z-7-`tRKP
z=3I3P$jQ#E$Qbp#>{fL#2NS~f{j2j6=7Q&^sjLHWrz1wj%s<l7l$}2-I#`zxq~u(s
zk_(#}Er8+DcZ&(YW7z=hmJ(<-TRdlwP*?R4<>gjJYzG2^@Pk8U>c?ZF`x%m<S@&Z=
z$zcRke9VtG$DTb~IC%SF9_;10vkh*2%5yGj$wxqe&b>jbYu7_-_lb1i`4f@%+Hq)G
z?srg)dZBm5LBs1zBETF?Z@xa5UJx?V))J{dH?P)>@>gVd14^r69{_6Jp*4|~Ey#Sl
z#DH~V?AkjBemFq(2EShNZfJpI5Tx!SMS>x8jp6X5SY)Wl%PU6DJpA?>7KM=RNe5!P
z42;(o6`=P^DjKv6PPl(pIH(7Yn6~{$7cB7b@2V@<<S}lnI^*d~M&6JJ<ZEq{^T4#$
z+q^9*$QQ21^sky>0aFobkA`I}3U<{RjeBq|jwcK@ItUFMdP_FIOLpG@P`bv|ilz>d
zK5}Z;R8=YG%(?E0pYO3egzr_Cq`q8Dl>K36utK3cL5@Qo+Q1R6rd5=VRv%K<Q@v(U
z_OM3G$vk{r;=-*ay}#}HA8|qG|06DV0pbGAdLr#!8AkK27pUFS6N&)_+>rFew2ebQ
z%Kavl_q<LmJJC)staD`lUJpYBx|q0x9&LTP1F^i@(VB|O%azv5Q}(K~u5b$028Q`M
za~O=*a<WX)Q<IsMHSYM^d}k-pqmX+U+Uo`wMfnC-Ihll%Z*13MH1*T{{E%{UV9MyM
zx`u6UI0>-J%Pnp>5><2EZ4^+?oZ`hAccjn;O0yp#WWdgUHBG$ddjKic`mpZKC$}RN
zVQ`9W{B~hrAfo8&qO<Z^!ZR{H{c(rU;arP%njSUuONU__vYyZ1c88&Py1Yb#Uc1T>
zBDM<|GxN0}wr^tFGu|znfMH4`2xF6!kQj9ht8`hI8|mLaAk^u5oR;+J_1g=FzC^}>
zyl<$2z+<PdD9(E#t)Sq<zXRB2$?btbt_aq#(CC{8r^BB-s$F5!1pzQ8fIwTj?M{c+
z{Lwo}L&eEc`u(h>#ZWqmUNP3nKSIdkf~!co60Ju&UPujZmQqPrcS+va1o~JkYrUV+
zX@5T-avCg&Us<|XEVKsRA|)?GeLhBsGj?5A<e|g|n7g&V=IF!gzzMH=mFozhjZ~J4
z5@)qsxf<VoUzl~}M!lmT(6*TA#R)tibxhcAOb%Qh+{0gNxoLBg#inL5$x&|-$!ibH
zv*5kpboyi!&@cxAP2Z`{nwhB)ivJF@D;yACL<#e83x^PM_=YIbM|DVL1^&#aU)D>w
z$1d3Di%~9U)+xBqGAIMb(O3B_g^(WRUp;ha1&r<JD><o9^45>W2Uwq{KbXh$?v+D&
z+}Got;l&RI^FMq9f*L@~d2o(6*F~WT!xgV)6r>mb@GD!EP%Dh^0Vsfp<9^@)5`%yR
zDrJ|K4tns8K6NNb>(@nlZ+|k0et=2Uw;T1qVC8|?hI;LpuQUG&y4D(a!TqiF{CUY$
zxZW3wcCCpT3)Mh&Jl-?KGLNAWYhF+Ld~s`k5<>L7Dry|R%4oEzdi_B18J>M(cc)~t
z;o@R;K;kUdc?T06x;E#F`*Y8QAh<WFT6kSB=6ApA_Fcl!6sJiGC^b!S3Aj1R6&?cZ
zg`P2AcOU`uxY|boN@!$aAL0RYKzZ1t5T+y-EvFp>j04MUFrd70ns8yh!C(^Dy{#_*
zIcao(qE_mc*;QSLbi@;pD{)rj)TFx)9i&0!GDo1+O=gbUfTUi5)nNji+Vf+;sTh&x
z=W#bSiEgs@yBO*5-{uizWo0cmZlj!eH2Oh7Jov-H`fd047GhZkDpl$$O8mk+b%hdM
zo<IPXZby7a+2Ob+^-a%B^&;XrW)sCvQt73BF-*M3a84`<_Pe2CvF0+Vf5QHUn#)J~
zWFc)Yghk7$-!I_noB8=X>30~Xi}SUq;5~&D!I$tfSQnYI*&AWS{!st*3+;EqFPVO@
zW~6-<nH=Mx@Yow&iRN3XSW-_d85`ckIdQ_rG7o6mno&203$ogK`kwZXar~Vi6eWth
zTxI9*mr!-FO@Y3OM#l<b$D1b+>DYLQhc^+kh-nJ3Zc9WzWJsS7A=V%^jH6<xfRqHV
zWkS)ld;Q|XhsYP(xyfo(HfPE3aFRtpVZpd+D(h6D{#8_*OGvBHwD};_lhLMMx%f%)
z&A8P1Ge$;;pF~Bj$yN2{Ac-i7!KJK?XJUm@B?iLs?m+{P6l=I$VcF-;P@mj$Zp$fY
zszre9P-NCDR_my@UPRh90Si&X)mNzUN5WZXL%m1O+x%{e#St^7wsHbf)tm6}YpSL3
zP>h|Ghb`$v6-r@}UKCeUzDrSmoN+US%zTO0b>Z|Ot3jh~z>5IfNRSf@TP6o|&wMjN
zF*LHML4uR+0}{^n8PtOx{lo}@fvxlBrA(|>U?^;y<Gf{5sxmFwP1_$4`_B&|QTUV(
ziP%0|oa``TFM1UN4ZDEj?#$#<6^Mz943p=p_V9jqb149Ep9@<*38=7~j_nL1lckG#
z{C;hrEijvZ&N48m2kg>Ol&?XBo>7G63Hed{%Lmv~-}!Zp2fEfXn(8SFXW$oT7n_rp
zW_yav%ipSc;yMl72tTEGaW=SixJ1X<7StBM(;N4iqK!VdB$#Tru-}khEie_PRQ=G_
z*BN0j(bqAf?Yub*aLQw}UF9I+3n$HoQ?6?<OFgasb}sd6wQ_pnif?Hpe-F0(K>G>~
zAm_$(KO5gYa@<*g349&Zec@I`k>>=9J+z8gfqZ(;+gLeO`$>hN-l*)KC8$OuyN6bG
z)BbUgq9?P(Bl^WXEN60P7(e~b#f%y1Rg<6jz3ybMCtqA4$`t(mZpW!eJ7+A=#&%D8
zZSQw6xgflOi-SYOl}PjvYfrN*842#$W5|3JH88pFiC@IYnhrSmEp=1_Q;8-0KGgvz
z8EycC7cGp_TRxt{pU{~mcy+(aY5abQ9&Azd!GOCyjsA><oHgu$^+6bpkEX4sY%x56
z#<S|Ey<Wl(#po3ZyAW&Ha&}}xg`vJaC(?JSz0XKY0}3<^fg*~X%P+}{Y)Fa47xM*W
zj|>voL)Q$AlrV^W-t;6mC%qS|eq~Uu6T)1}%gj;9{LS1*|1hN7F67TOiwc2P1{DJ%
zT0veH2yh8d#u>idXelX)yvqG*?ZxW_g6k6xqNcUBbXg;k6okv8jmHKOVEjz<T%m=%
zf}f3l^E=?Ax9TDR$n6Q2eGf8wm41SE{8C^xr#)Q?z0D`~luiA{!i_5iDX%YpT)49i
z_Ck>GE$^SH-&W_mdfYWba-c<GL<0B@#=DOWG?S-)lauecp6<%S_>?L12KDqj$m{!^
zLBAEqCZ)hM=Zg&2?1c_;!wK6G--z7QOpu)9KNFFV_|cRu#0)ac1J4deS?t+Y`?}i6
z`GmZ-UTP+T+|Bd0xG7f_WwoAfk4~9|`Y>IZ#<<?H{L!=jvko6qM$x@5ya;$VYA?M&
zN!MY0kgAB(0B1;lE>MF3=PuE?^In(p{sdkP@2cA)e&ln$cAJaf3)jT;rNp?+^7UCo
z@-)>Na|IW#QEw_2To-)f&(C=io-FNBs$wEa1l>MRsQbu|K_vR%n+^Zzg68_7Bx|4K
zD{BhXOojWm3ZhrMTeDu>{(8sv3~|ZdYBX-&?DV}LQ{vns)yG2lv?-;`j(yj546k<$
zANfcrcRL@Wn0%m%wawnp{ctb7^<(1PF-*C;GF6)*k(oSe2VtSosvq+ob+LIF0LLa}
zl9A1V?`AT1Y@sb6uqS+7rA{wl1btr+*4c-%uk{fcL^{2vG1%vj1Nc%%6eCjLn+S`+
zBbSP$#M|DzP9wq@1yJ_+Y@n1k18O`fF8S~<hI-lyWPhdGe0%fL)4odRkK&~kF|?FI
z?5FoOp6YyuTz@h}B%NqH`+_<e*9?eSMUDv80j}r|AC5mP)PCKD7{P&Gphb4rXpUPN
z$JcJAkg_+AsSLS(U#ryc#b0rTGNkr`nJ+zQ;8r60<rb5C|ELv`r2aR#RZ}ll+88qX
zo1MX`5ni<T13Z^NXNPw>Dc=+Anl3rD>>`s6#=IG=(#%e?h}!PO(4MXkUozYVO66@E
z?=;Z5oFgf%k2XbESD70_57pnYK22*avJM*TE-@cyULd?qymI}aq`oY45&Lv%e`6vb
zvWOuH10e#>{!$?x3oFoR-vFK`&;uo+Jv<nHlCh|FOFPFB#jqH8YNCG<NT{qe#Ztsd
zL+OOYzo(Bz>gs#+A|H+Ydl{|{qx0Cc!W#+2u0YS|3GsL#W?r=kgFQ0k<fzlXvX4!f
zdrf;wv@zt*UAx!Fk9<wZA+dL8c*geO(`&$8(nCX6HeLM@e?c9e!fy27dhYg`0vQR3
zH-_p7@O28yU!H1)tuCt#{Y1#<rg|4C^n<HFblv}R(M6s#a9)m4H;5iNjHzp?Zz}&p
zK!%f^@768yI2sywo@cvnV6>Ls`CY7_(9Ioy{X42^x|R>AJvxU<f<}NFhpdaO?}RO+
z`*o1}Dd3!UbKU3yUYrBKHd^!>t0DAbDnOfS%4^{}V4zEqtb~MLl#~|)I_GtJEu(zS
zQoByAU2T&t_<VJ<w*MpF9U4Z32t_$=7SQ}oas6Pf_AB?p;G_9Xij)BPTRvd6p|Vyf
z=pp<pdtsk!!S0);h2}cpfHXLe61<w469jg8!BDZ%AX6_B=w*vNMZM@|Ltmktpehv&
zUn|De^n&{x{&@+m#ug-Wd^)$-5xVlszF}>_1MgHyeQ{{3xGoHCmtf(?4(qwSBj0Rj
z7uJkc1RiEeh7v?<tpRwkpPc7fvU3Fsa7v5bd10JBBKehU+9SjgtpN;9uHNI(7Dpw=
z<{coYkof-A@%qR7)VwDdzeAqtnX4|ngm1g49_x#CQ}tkKTf3~WYRdH_PSY@MI)y)y
zEs-tS`76vkRNK6ti~bgR?uO2%E66TqIN_|!1hW1-K?ylUdj_e+`DAgN-Z^5;Ixyb-
zQC*6UY62eJZ>ITlb-8Y?3P^pP*9uH7T^25=)!feSx>Q^kD0cg+tF^X8<4`Ofx*g23
zV2AYYYha5FFqWrc?rldqbIX-`?iQrH3-mBorrJ5XXyQPhH5t9H`|^g^b!VyvbJtSY
zYd1E5g|&QesY*zZK2lLVfx1`U>%!y0@-Ril<N~AbmkwEA>-_-RORpozPYEZzg+%2=
z;jfmlPbo?MQIy{lZ#Fw1q!#-_iW2Wb-9yhCiPNbs>W%umq8QXFm9$>6V<tC<_^B(T
zq3^<y=;n^@eTw%&NA`O$xbDIeY)J*OgU^WAQC{~9N!WH&5*)6txmH7T7#K1zCFvY8
z!hBztUsEIP;%n-rlRb`ziOKdy6GQR=@cmpnq1T9OKKBUxY;Rji8G_e|T}N1#0n;-3
zg8He)9n0PvHt^cw1=80rGX|LtbW$v0Y;8#g?d%e^z4af%kgXlR?)aza#5W2ZAO_CK
zVaIvAdg&g-0YRU>n!`f!&M0(|a?0#3jMc=U=ye+M$eLGnRduj@^^?6G?R$;k)AQ5#
zEgB&ST-LeQXyk6flKST^l340LPv2u&7W2RG{GFqc2bE{qH<UDeoqzf1<;06I)Wn)E
zJ}+ih!T%!eT%9)IkesXbc7JnGu(|lDg{in}^3l{;`!}5A4C!m3%;L&}AeZmNdw;F&
zqoMcO<=|&Igh~s}UN9f8<1tOtl+mM{&HPFPk4cZy-%_9?T^E%n7b7l>Y)FLUQ27l=
zb7U8y3Zdv8&FItju>>iRBMJuY;#=HM|G>ZzkV}+=EPH}Br?$t}Z(<*E<%)<!@j%om
zMYvD3+0oTC63W^rUCes4jw}o1H%yUn&%4lcgX9B8oF=$Xc94cUeyB>ig*wUhRx2TO
zH(+#Y=_^iHJcyVAGqInXZw_P@vmYFptKVhz`82C4Ce;RaFjh6Yq|7y6ix5-mhBKvP
z3*b*vd0%i*_><hoW2bV0fuCPnr%vU%wQdc}iP)tP5hpHQ0`oSg*OvG-XRy8u=vX&M
znw9YIKDYpmCzD1C0n%^^;gmaLl}FU0k<FX7J`=e9-fl|Q_0|PP!sZ!R!)OE#YrshB
zFqcJbFf>L_{S+4NhCMO!dkx`~SE31u$7H{felVv0Q<bc4x^A`*yyR)tGq-JlSS1cS
z><aF)P|<rCFHMTqG|qpyaX5K+DE!gV5b2{$yX?p_mp_=cZYnzb0PlQo(-p+3dY19&
zmQkz-D{j@19YP40F+Xd$R=DNTUP7yZ-fZ)En7Z3I^t-)fr)8^b->>OzP`at7oP8mb
z$~((eXho{i1WPRib^S~QU#UKi7Y9`QCzl!=gle$dKEYUNMTO1vQT6_wXc-sK*^fC$
zdKB!tr|<biqv-_cSkSuQRmG<q@kGzGnF_Uucka6Ah_I1OYv-mXNLjO^)@H0BA0OuG
z>71yHZzPCIHy@@I&AoTw-b>Y|WXiAJtt1lrU7+39v$bqhMvp<MbK0YJ5;xb)Oz&Us
zC#ASYky@yeI`d~>2_8(du|I3#+7g#P9@oK3cSs1t5gHNHl2Rl@ZS@#uZ35t{jWulH
zIIfskcJ}OKleH<XVaYE*I~R|X`0){$P^&-&+>T*tDLe7sSsP`0$e&r8dtiT`pya~0
z9j;Y4hjI)(f?8|FOGn`s7G$7X!o}vjSx>R3c8B%I&P9K+2pl^KEN@w~$|PJBysNOE
zEXybJtB0WtP`K_fV+yM67GpzRp_jKe1!o&GOOLo#;U&>fEPNZ#P;untEGi2`Wu@>!
zi-&*yiplC}+E^PeqgvGsZ@p<Pe+`$wJ{Ac&@Szu!%kB}jXlTuRy&RL;!(mKd=@IoK
z_)M=u0eU7n8swy`=^;vN9qxR9mgl%ghs}1TEe2?n`@7+Jub1AGp(|bqp^7sa9~do<
z<j}`UJo1tLNbhxgUv2&r13CB*)KBTBO}sc#-}~p9Ou0I-V)fs!I}$xsl@y4BD1J`t
ze%nvm7jNu=U$rrB>qXV1|8S39!&WcE)5BNBpZ+BUc6xKk+WUho*G4?*R^P>qiNGGA
zcbr0Q@$hZtV!mQu4w$t>%Cn|L6A|@Jx4-&2j<g@*bSc|?#iKw%DQj&7WfCn#3O9y7
zI*n_(%I@6Vf9^1x^|Fk-(OPW#7{nbf6%T;uD{@Y9{|Pcx!~va#YVH|1x_6fAgSN9l
zdQvvI6v21^0HEtrLRn;9>A)c0njeF{p$f{JH^(&LeL)ORr(4Ma^sI0^$bG`3J%EFZ
zL8J{jr|bmzQ&a|B(E1GV_<KW`x!Lr0OAbNyR;4yDwTPi3P}&#w;&$%#hTdNZ&VVY4
z*E%C+{6IPGk%8WMD@pcZ;IWw?j|kTT&%4TsF(OtJw9c^c8SyJ-sz<GoB|23Ku4#U8
zl1GypUwK4=8f~ncJ>G=PH@zEU`sqfSq6r+u42oD0r0s67laf!Out3bOwm<iW$GRgP
zugC^K6RG4l>L*0A3btc)tRg0GyWn3?!@t04(0!iG3{=O?`@5b!VQ8C)9^3=<TBLA)
z_#;4~c*W@I9|Wb=hbTX9m{Xs7wFdww3xHuO0w>@z>BVbZgG}ID*?@vm?|dZ=`7^_6
zQ&3)@DZ$)TpRtE_v{FJlWn-&ZpR>EawP9UM@dIY?A1F=9^EJ2=r0=QR1)a8uiuCF<
zPB6bc!N@TBNSvNP_0>P$ZLzp+H}bY~-ahCO>tW338g9yim@(kFJOO4<-h9GyxDHll
zm0{b1&505U`7dmuv$#aJ;#kkKT)5k-n|FfgQ$8>B?(_K%5^JcaP@i7?)&06FD{!}G
zi%K)Re-8p!E+fQN^z_pSER}N~th*8u^_)mG>5-Y(dAvD?Ly}YsNg9sW_>PXI^S;A<
zjC4sSL&mDn^_@Y-#qXjIS?Tm8C#kOvri(j1d2Szeq~>3hO>~n_CsGEq(=|wx-upH*
zd5HSgu2&)PFL6O~ETLd>D8*1r*Y38@Ko$Vp4(zvfI)_rw`JN3Cg%WWWO1j<?*UL0R
z!OnPBWiiH~6&6L*;9<5mRg&Ca_4d<YsC0gQzTMD0;o8T*@?V*^GWr?oi^yY~_35gT
zRZ%2#9=8*<lh0w2*iR@61`S`CwXMDbz(o#Y($=wW&nOTjr)R0(19EO&Yi71klaTqG
z!cyg`i|~~?WRtts$l~TD)6B{D&$zCr)_xC%$Xcli;R7wW1Q9L5y5m1DZ$zmGu3l}S
z7{)ynV?$x}g<}wLy`fquaeKjB!h&t1F>eYQCiQz{t<s~c0*%3Tu}{;2LXmN;4SY-`
zA<&|ZNwNGd^065qbJ9hoDiFk$%_nP7E^4mz)N1yQj>-=PKEmB0_kF)+mm8azlIoP<
z<{RHm;IXgCAMAJ{5c_2GRJFN8npk!Q+6-)j)@926MB{E`kody-uIq1w)*uv#^1$cw
z!#5m6q^TljckRBH3sAuZmp2zS`H)O>TVf1qwxA)n9C8aK26f}rm3w^gE*6kx+RuWy
z5=o?al-nHbYEYP{h#&MPq#R8=ND~63lJPs+0LJvJM6251-TFfXMg}pmpuxz<$j=TI
z^9TrOuA;z^&~OCcwZJ(6WAUSxfMilO+nYkOuFsajV?rpcd=@707a2+e48!?ar^%7t
zLZ}1*as88#-dP3~?OOr6<sdx&-l$;VFX$<#caxWTAPa$o38C+N-3)<d^8h+P@w!+H
zcZnETZs8g3EF#r>Etn!_67*(FzbP<K*kk>D(6c+Ay7F3o@=60DYcO<ZY#e%V4*E<J
z2@8+Jn{y>9?mxh=!J!n3hCGDEF5D<(bOE`L%nK;Z;;etEiZ!s*i}5wEVK*@X&@RQU
ztjD^c$7RAWl$@!Bd~@+)L0?UOhw9N7I+Q9%Edcs!YobIm@St{)Uwk=u;Qnq45M-IH
zjL|}=5Kpn6(9%lktEzi}V^K*e6mo`4V|r7xa%??6%JfuLR?Zguftu4E09B~{F7Bcy
z%vo(fMdQEV+0jG@O9@!;^d%xxh@Yyop!fd_ZCsptdc23YiqK{{_Pg4c>d)?@w}xz*
zBsx@QM|~xj)0^N$^XKXmcZ#jS*0&ua=5mOg2H+9*igq!fjo6rLwQTZYnDjO3AQ0DI
zP4E)D$n5M}Gx@uTnZWJ+3)?=A;b}x`U3kV(5wjmkyIEO6X!jcyJmF}PJgxyMrVaL0
z_l*uV&_FuCgk%iASzwg8dbMN1)s4Dp%G*u{_sOdYElyzag6UsR@}EC0Q#V+rEAoUn
zskUp$%_m_ui+$nnYb@xUkH4=kP%7f%PwO1uUjYW&I7=pVA(htVD8qwySp6If%)6wk
zamA=9^dW{T8*WMMfgGw=jI-wm$XGhk0fR`&6I6mqCSyDPS-J#n=l(K^L9SF(^$2gT
zyB1cmYlYr1F$*--Xe^2!t>FqwZ*g0%JWn`N>cb138S_d{n=zs$FK>QVz8(rnLVqkt
zV3PO;O+i{Awfnx5=wf7$h54SJxW3I&T3|Mpy2`ZpXHA{9b3^!-RTftgBnx2T|CU%N
zf<aEE{9w;?9pw!#jLokl9UUoTj97nLc~M*)Yq8=EOoYqdYLqH4M1J8+FXTrA)u%NC
zRMfHdzyhyrs@f}%xIQi)Y{Ib{_b+M0lrV<B$vvI_?t1*Lbv1vZZM5;QUjQ8S9Qk6?
zfbgwu$lg5uP;!fEn!bD9W^*~Y#2dCCqAh9>zh7fx0O}<T^$~%P9-rKKw!PM)JC7CR
z<g)I{5N;S^5-Sln1G;PwW1!_==x`}u7ZON8yHX>$Cikdw+x2~|0EBQ!Y7fGbVFZ4n
zuW|_~3i!c1l^7o_zi21IDXlU4-{PhDa(gibE0(kM@$(2}z}7ZwQIHZ*pqlF8A;ft>
zcmQS53C22J(gHjQJl@4~VsfI%zZQF#%m?J4l*mQbzltR9WJUZuPg-Mb^S(c=5&B2g
z$@Ty2Mcq#pEDa6l*B9wJeV^Gvs4oh{qtVF;Py987z0L}@aZ?20IoDkj0`<23QvM+n
zF-3ORXy*`;_D-Y(4g?srGI|NT6?K4l7b7(Il>{aRUdoZbp&>?k<@`5X!?x1-AY?$Z
z{XiH5vJ?H-x~<SdZB}nk^r`GYdDxKRE)bTz_&il+&j-GpOUUpJA5&<VY*v~4(N$Y_
z)uBXDHzQT=>)9cXq_RQ*HVQo{Z(n~+@`V*P*M%2M1U}M-=`m`t7tB-=w&Jg}dONk9
zeW8QBYy{44anmynCxn-ZgAV_?T3n2X5Z3K}_%K>ypxBrDwowNUR*N$=BDw!!0k9lU
zGPF6%5&78ziTOxtbE`lKj#UpD`IUE^s2^DX70^?>uPTa$_a^6U0t89y8=;`~XcW<p
z;{K|R)9Kw3WcAfc{YUi$IKR}#G+5_-OUn!R@(&9Jzws8M8$hlpS&*e5HS@=CkatFb
zkp`F1YkZE4pir<yv1vK8ej|V<;RgLkePyGj7Cp^U=sJW&<sRe0<gR}FEpUD~xf{a-
zs!#oucQ?BLBZ)H0Hx26)_sd2JdrB^7<qf33)v#KA1HcQNe+cx(P?aj6kY7<A%-lwv
zayfFeZD5o7C@ze3?cu+r69Z~7L6joxUu>-nA3lqpz0V|QSIg;G1h+>1B7!ujl#{As
zDa`4*pCypa))@pr2p76A6UU6Z{6mxBtswy(x}x<rhiafdYxW8eqJvUC%{2Sw{Vz@%
z>%ShvKd!mR6EtJ;$Ewm?F@$RodN9@_%+U0EbN84O6f@GQi}9>^AB$7R|IwRb;vpP~
zDB8+j`(+-T8qe|^&`=4@7^v7r-HN(@_7kFGz1_%8W5Tl4Hd0{orW0va-3x@2XSWBw
za`1IV!xzFBX>Q#XzS+mBNekc-^d0SDmckWj6E{Ob{2s~au-Zq$c(qt%vInsw<=Drj
zPG_vpk;ylnvtzokWQ;K-9qb3hYFSwl@oDAuY}pDUXVf56>{ueh7>hC=%z@90R`<?>
zK4Hw_4W6phr0cnK3N2{aGRBa;5<NMHOsFj=n|b?8Q%ghL``|1H-uD{x>i=B&_;96V
z?P1~0$>Q=p;u9CpC#}rn`iQ=w+jjt-8qo^mecV?5!q08RJ9^>jc?Qc%CW(pGjgyrj
zBkU6DP`MOdTd_W=FKb}h>(EOZh@uVC`%;Y|T4g<$*$?D5+#eaaxyQ4!mj>TE-CiTI
z5;AW6uH!K*>{naY8O>)lfZ5#<ak9-Y#pL{2G}24=XW*d7FbFaTz29sV94jU`)Vz?Y
z0*)he1ZqFKFTRB+PLRjHwbW;3#vJ2vy-u8;PPq9xJOxvG$$usbOc+_Gn%#mhqwkVT
zO!Dgc2c^DW&`lC@3G5Iea&*0h(At#g-`{3sv+L|81R<U=>c_2*dZ|8=@mM8&4RK4O
zL!cH?mC+4)@yz3aGRi4T91Xg47{9?FsM>0?qqirj)$H}xYdY$C4;{LN5S|EHeuK5B
z^-l8m<QUpK1S!w|v7UVqx&JTQie<R|i+yQU0@rOPDc*h%>OvM`LJvvN3Fn@Ae!+NS
z+xBevAmN!s(#56ShK$Qcs0<vV>tCzZ6SNj_WQ<uXKr`KQs($rLHI(^PMcsZU3G-MR
zB1dZ&)e#=S{e`i%-)~-L2P6$`LcZWm41yF<S>*N{Z*b4fClC5y;dS!|=9Sp0P0s~l
z+xW+G>yT4AtaggNc)S>gsW#b+hKdhgJJeY<1fD@rpagHPO~c^ryb7*jM>|~lXxPdF
zQZN;ahIuVC(#Fqal4LMaLDRR)ak&RL8PeQ;rJHhTKF#3vQ;DM+fEguR4(m#c!{Us7
za_}do0IoO$#{ODhczxvVEvFhTE%4KYYomB8t1oh{eCr=VSJu@{l1Vvyj`X3ofP`}u
z2|MA&pSq$D-5{v{Zn&RMx7ERNkHUg8b|+y*8KY_rR1CYWOvT8u$89D`JOINsfm&?8
zb()gfIpvu$@#$mz^#ne9Iv}J9ZB}Vmh71IQ<NAg-=VR^oMm`spr`a0~Q%_a%OwRSq
zJB2)*F;l2vhplxc=`0D!@aAE>@@cu}LrgyI-OxX~Y&_l}){aGq_Xqxz=lym2|EvN>
z(Ln#py7J*K>&jx6yDxzc9~*T@Z%Al2D}!IJ?9YQh&$$njo1EqZJ2#$u$$aYAwJ(K-
z_%s#cLRAZeb?DnaIsxHcyhzkz8!&#s!U)tn<0>jF5JT(UDQ6ehSQlUl_BZ2Vz6VfM
zJ8adM{YGRQ=t9Kr_!ibtz3;Iodw%|j`Z0-d){t{Y9K_}Yo+!ol!dmnW7l+0|7mp`H
z?EUCl(G1@&e6PxX{d+`P7&8*udN{m%Y=_Ike=c!MdD|GL+?-aJ%`hyGQ4SwIV_PY{
zko8UKk5cGW+@VpOUO2c4_`uLY)fe?v_wO9Ckn$dupBEUPyP~^4jNa%*Jz9!mrw8O)
zcMSLOb$=Tm4SdAv7bD5LGWE#M{q(nUsw$^n#5IV<3o*WZ?4_cjQm{Nifm*d(Qhoi-
zTDddZkO;;AKAvs_kNFYkIrTVL-i-RQ`hDDMyeyu9))EdN#OXN^S6ZyWhO#UsiVujW
z5(>+sqw&tEarHm6%F3&wZh?5{nd5*x6pd-0s`H|kxkP%vU#2>M?`p@|D@y<Rv(vLt
zUzC^ct6ArRp{G1zw~IvNn}mP^ZGdENIsLh-y2M7_5Ofj?4>~FVyy;!;SRl>>haL{d
z1;}8W9XAJktj_sEXMxA(KPX3ec2#vlfnAOttd>ilj`^pyrYPWpsmhIpuP=S?|0KLk
zGsph7b;cMigeG-fT879C8JX^A@PWWe4vP8Fl|R?(scf!|i%awMZDhPhQ6dqj$$3j@
z%G%HUZhfjyOcs>W@d$`zfGy@+{JBBiKG2Y=N!~+`Vp@Jga8ZCuuu0gRk(pVzsj~X`
z37JkGUD_$qIvLKMQ`xLo`&#~_tmOKI@0`l`FnYe(8ctDse)7_sHjJ@iB{}+>iR+t2
zembrguYQWl=YxsolEl^@M_o@Xy;5SG<YC0}#ahQgECMy+TWwWsW>1S0VW1^9Uz*5Z
z*8X&vOwSS4(Mgo*Nt*Qb&)fnog(H&pTT$rTuekm|Cb#q}@U7(8zJllEh#fFl&pqR|
z%ZJ}_O;hl&U9~206$PmzUvB<##A?B*U#%<0e*D605{UhWhEr(1zn{!d9|?>d<FJU&
zLpOkhTmiGI`9iDz5g5v2Zb~ZT{(mTY>!>QXwf$cZloA%8g7gCEM(JLpAYGCQNC?v1
z0*jPTX({Oj=?3YNF6r*>hTmlG?cV3S=e+Ou{`^aZW9af(^O^IW_kCTTt0FR=E(t5o
zW!h=G-a~jcvpHQ|UFL%Ffxkk8888-G_X}z!Va&gj!`QOlo}~3D0!K~lh^SBA2pa)(
zZp|%i`(03J`fis=^lmejcl5w8eOC5hw2R!zvN;BXnJ$*A-z}WepMIxug@jgFHK{{|
zuvCrtB1`{P!TQHne+S_)*}mI93afwAc`v`A;?i{RiKl-urep4*&;%3M5BMU`tqVmf
zXB^}fyR<sD3!KM^QXkQ>Cbh^#{a{)YNVFU|J|XY5<(y(NX!u6vS`Y^L+%GEzHMc9r
z&VZ|xvFYw!XuHg*_-s-?WBFvVf+H9pl$KOCgTJceJv<yt(c<iL<qmgd5)XBlXJ7c{
zEn$COBpRk#8r>jg%)?Q{r*3>)UHpkwP9c_%Q$AKOk6ix~#btS20_Dbcdt>GtlmgYS
z%N0>TKq~6LjMiVC9VFj^eIS??Jz+0D#6FX~X>uYyHwF|iLDY_mTM_Gx7vwOWrrfH+
zxb9E9mwWGcm4O~Rd2>-VFQ;#f`4cObDz9olA9_Mq!V~W{LCI-PGvzXU3&z0^LVZ__
zmA_jTmYAq~CzCdZK$aujpbNGT`uHcz!!!raU*_zy;FFLrA=_lvj*CE!03o*zG%J8=
zR6ude+5<%28H3!XIB$scLThjl0~c5HcKwZe#(DmI2s7+u2B)L)W!G!E8m0|or*mhO
zG-$hs<Lh6U3MtQbT+YuOr^PZ2e!g(}BI=}lsspB@`(Is;$BfvNzhCo7?o3syb-~(K
zzP@C>*VN^{?nCQV4HBXgW}(=T(b1XACf4t+ED#~TDhXgp3p!S%K>sJ1Uok`Kx+^@Y
zw>E`K@<?}SX(^(UkmoK;*^Y$oAedCJZh-c-!4Vi><yzm{-JPebqtXgI({Hg~HHf70
zdVj+^q33W&baOD{>(1#l68ET|Z&7y8cLATt0A>G07}Y!1p<m(nk4}oK%QEjHP&C)<
z?xW4I{WZudAweYasyxy%P546r`9I83&qe-d!4a26Dew(^EI-^Le@M-+WaY=zMYazW
zP(EIW^-z0J`MTIJcyKRDTCG#R=B(gxaU9()0<JM4(k%A9x%D@%GV^*apzA+)F>1^(
zNcdj)>a~*N^YQ)oc)vMds@fsr)|Y>-^6@=ng^HRwg<Dgag6ujTj?&MY{1GFDh~tWz
zZt^_x;RY0L-F_w))}ZX<`3RpO=7QF8m;H-m^Q9ckO-5VhX0yH14A6+agocrX8Q4qH
zMi5_!rSE0DX`1OM*f?W*YPDM8@kt@B`fye5ZMQU~qb7zY3UhXK?&~6t%8~pk_|Z!=
zsB%ezV4PR$l$?Fx>N|l$V)dS<VGhPFXfc=gPG>xi;nK(M+d~mcKUuf9-u|rByA-FB
zo)L-66@is(pWgVZCSjt&wU|zqDA7o4%HwPny$Ui{M>#W}FB!4<I*`|sJZrBXWf*%_
zBl0zjlPf;0ux-Vb4NNiryk}U3p!`T7(82ev1yN-sKn#55_Aoh4z1Xnd2TzBli)>vO
z<*nTNz4?|yaIQ$}_KM+YKNS-KO{J(AeJdtMRrnp0^pn+lSgyB#-k*LD3_Tcrv(>Kk
zJzc1%2FQk`s*QTCzP3q<G62G8__<Z#-o7g$@G#Zn=D`fPF3Z|;j)c?(<avHqW)Ke9
zMoHmn!AwW@WiAH#RuQo-(c@Zuqln2B+t2}omKBA9DV&OcK2X78vDvaAeYyq2j@*C=
zU{+d=)a(;PX4VE5iq=z*n-B|<38@>os_iz!Zw0UY_xeZ@9^YnFWmlQtoK;{!2jC5N
zpKixQ(5p$wLP)D{_mh}Jov6ZI)cwlTxjqN@wj~=vu1S}j+Hv-wkF$Mcg_|G`J_B?W
zU)W<=G3GPpKWOw>sG`|%x8FlFQh~u7^e@1tN)y7;?chbTVyH1}^j-$YIF#w5qecOg
zk5-}2OKyAOpStQV_di~0&CNg`=@Dw}1_iC?FD2njt6~%ASU~KvSN6fs@yqTL&rExe
zIjg~5!+=k?;rIkqHvwBC{x4^##(l7dmxXNnEPkJc#N)8dV3ZIZJ|u;@Tk<z3<xkc7
z0rme{|LJ+Q3Z*$cvHpTm`JR?OEtQzCgOki(>La>OdNWlcXRPsG%A7C5in9MH&4~%g
zFpz(vOceZ;C(7QVKCbn(4fUfX!;ki)9o7u@belpCRvkJU{W8feo||3i1@IlS5iD};
zKO2~Y73}aS-x#t|1qnMnvvgtWd2fX@)QC;Byf)tl_DH%WH{B#uUt~o$N3IyBW30zN
zC!N;&M(1n~s6JKi3j}J+z7jp&;SBx0mbclg%2rC8-}`0li`(n=?+w$97i4ArT>`nv
z_n$bKJ`V6eC)UxneBaG0JVvU$&XuuikN<pAyfW#f#Zrd7;<fL}k-AETk37pw1~tuQ
zW0XPsY~cwuhg$L5&5SSniQEQJq!Tov8?ZR0Ry`D%Z+&YaHinljNb2YV@#`Z;-*%&-
z(jWu%JCwlLM&$F-DOpjitcaZF;3zL*zqjR-E<XI(?^^sh8v>=Wmn9Zqvz8Q6rr;5{
zZoF{v8(gWDrfA*+8Ka!%AlQ>Gv6sx%2CoVq2Bl;Z6}-h7Q{D0Q|Ni~EynW~j9SQ-d
z<1B*HWjjTvBtpc-!DGH=UCiAYE{|*1%8q+RH$qwtz+MyJuxN6lcejSH(ew<+;g;~{
zoF2sH2=i5dkrQJzlj|NiZr#Pn`mprA_bZIpoFoz?gM?qei^1UI14(J1c-oxy>(F-t
zU7&QYB*VfZe*ix*0V^Msqt?L4Na^j{Q~_xn2S>r?S_E$t1yt;#M+XN7sH0n2zrgg1
zlK)gV6TMJdMc*0B(r?FTBv_~?JOXXEMe##znC)qX;MEKBb6Lx7Qji7Wrs|!xaURof
zXLskms257wgS}lq<ycB5C2Ga&FUgrZZ~)TY_RZB*<Fz#i$xA4XYWfKxT5t6280c1=
z?2N*tdS9d0)hYeoTP1&;AzvRMq;$OYNBPtE{XeSLWgL<jPoPFdg*Ep@BUR0Yw7uJx
z!Rm`XE0-5CMhZ@F2>bO|(fk~BpAEm`)(w7Z5PvZ`Bd4EV;p0U<F8>xrz0TDR{YAb{
zu7WwI2P^Q@sK3`Qp>Flrp6|_i+H=csgK@{%23Y+kr5UHp>uTFIa=eTZT&v_3+z%fh
zB${t_<sE?nFmySnr5B{627(AznaaNVbJ^3D7@-eA&n%3DTMJM9$c}sJ5>;q5>R_z2
zQS(jU!CN>@!S2dR)~rVrGRIUSHy@#4EvF9<kf-}_j_^Rtx_s~&a!)co=d=kA(aPP#
z7YSB+bv~nmdF7O$M8wr^({`S(T0=1o`7pFQu9;~~JCKn+C*_Pu^|V_Vy0e76H(X({
z9+`jNdA^gT{I#a1GUi-swK)uyx2+}N06g7j4%JmS5^NSnSD30^vD4vx?LQr;<bf8=
z?eoh~t~x13U`YAv*4d4uRez&03S+*b4E5CBP@~Mxp(E9)gtm`Y*_l#$LR;?@;=$p&
zL#l)mHBQfJfoJ^IoSOAy8KL0hw%R?c@I%{GM6n{mAnDWMzi5~sg9o#qtdfP>u>0qe
z@kz<Z*fAyt1z}Wy#f37@R=dW%ezv}m`CRnPZuH7FFE=0bwlxj^Ugn$w8aNA@RkpMd
z5fN+EVejDD;$!?LlMBk}^{v~>h=#jA@(VI}J{U=&^lS0YIW<anFu7?QX%FiJr&RTR
zpi^=g#ykDtow9NEgHX5NNH=xZsqgV5*&DlBEP3C`d7C>}@hH&EtgOPy5V0AZVFeer
zCke>VT|0+7tJg_HBqXM$5Z!5@k+B6W0x20*OgMQxxHNXed*idq^7D?$DifDFFt%9%
za%eVb5b<b}9R^qH%GvF>Hvvb*t<>)hcGAQVbV0if#Uha9(5LF3<?mQ(F*AKOIy&;q
zAt8$pF|S3Rq<65pWrgAImd9VO!c&B!g)H~b=Ny+GvX3S8MSjJ%miQ;6bnub|y@Y;#
zi${V1y=FPTC$H`fC?WXP&asC&{o6I@X=+VCIFa{yA4l79XNFerS-cm8e*5ZzNSYY(
zKp2#d#8<pc;a2SqdHiDQ;sIr~isNvnRL0NnriT-Gp_X3^l78&cDAbD{J|XXtBRUOk
z)SLL?AsM}irvp(~Cd7Xl3gpm@8+r&^I#-p=o?=W4in^@ms<-cp88uc1a<G0|NQZmu
zdLr=Ulz+qyX4ipBdl7@XQ=x1>`MKCBv!nBmM%qTvxo1B|&QToCPP;6BLJ%|#<hY!e
zaszy$X#H!Ncs|wUeqwNH6Fb%Gb=NrBe*o1t)*P#4yium~d?T}Br^!?^>+Dxb&73Gy
zw44s9L3h^EnXXHg`CvKtYT1fV?tFOEvu_IWP`dR8$6H1|#u|pIlaL&Xlz|mJ*L5vm
zBK@m+VnUrwBXA}45ke==_dR6_w9IsTf$ke+XF{>P|8|>RHJ6NZj}H}l%5GGfI+hI1
z$cI9{$g<qur*pN-;M12kd)LAhQs<-xqQS5%Yh6wvR~ipIc@a{nS5)nOAnEl28S)bt
z!Dw?lncT3&x=RuTnHJVh3jQgZg0WpLf1@GbtUE(gS9<fo1<j`67a7LSpFiJ2E+Jd<
z&-^QITc73+_QvwNXF(8r|4addIwLjJ(RIA9Pks#nXIdFLIZPNWWV<eVnpM#D?$5Pj
ztd8{R!>^)zqgtb;#u{ge_lm?NksD*F-wxjVKGFVo&%g2`)b2vUz%+@HPub=2TTosh
zvcC$#5u5Wugf**x-v>092>caOPuFJ|NWvJ|W5Gp7A5MCIVfj&-@iDj>#&8c=DDiZD
z(6m4i))lu3cjsd0D(t<tyA@M3Pbkkw`O(v@HBc&maY6V;QV1u9K@;K!UJI09cEiVH
z9FNtv|1!t?{!Ar0h}%g1c~SRz|1hxpzTbYML)0tv`d^3~#@R@E5<ioYOGMFj1Of-j
z^FQfe<t>vJMWd&k7CdJb!JLw=Y1vuWkO1B$I43h<a6<hj4rUk4$T@sO0Y`>S4r`n=
z;%SP5?ne6LN;0{~vwQc#(ta{LjDkFJR?umsRd2KBc$k56Cxlc`$9Hk>_&6Q#9mb0c
zK0f4D#cZaH9X)N^##t{WyC_j2M4`-!L}RwQk40ijxAL!SxPQ5y|JxO5Hk9HAVzXcf
ze`3sE8}Gki?}UQ?C#x$|5-V2BsiRsF71G935&y;E8s<j*TJ&~GbvZ#bb^>@OOralp
z-VP?c9{JQE_@fXRNxETv_Q?VKM=$vxB`gRZLcnwZOp}D>6~ewD=b(*UT1cLY*JvsH
z!CziPOiax7vI0e{^LOL^-#+dC_@RUj5jZDRqGGALfb9b?w3{XotL*I&;(Is-(oR~R
z16|xNf=@rb*QJ%5*1a!!RcqX%%^I#|Z2V)Ie`CG#iBHLHk!v7Y@#lgLCO(p}tgfKr
z1omZ(zpDYElz;7HRPXAo{)a>i4IQ2Ks@*+sV_MGlO;7JjY8!WwBYc}W`yfc?Zb)>@
z7fEP8>HuM~g^--z39R3uvND=s$sjrL`B?Au1Nx;&GKO5HNmf2+qdxh+DpUVnj|_;Q
z3QF<!N8z!Y73%tm-|PFYU(+{X)LRyzF#OB@(NP*uCurPd`BxSpARS7-am+{>;!VO^
z3h)_cc5v6uak33s7rHxfl2Ose#YPZRw6)G}x+>Y)uW_{SZb`_4m*3Hi>CAD0mc7>g
z=6RyWL6aT=cSy)hT|}8%>Cm8(buAU_jYV?6c&kP`*~sQ=H<sA^E7MpTo}!KAhd_`U
z$DOgV81|2srIg~6P2XHcUui^?f~&>DqzLR}{7C2dRIZ2bs^c-lQ!sLZT$!1@?J=;E
z(b9t0qN7gh=r15!Z!#$^K1+xK%oTU6^`@ed5-l6sm)*FK=Ly3A;~BpWZs@<Sp1<Ex
zAnx%%1oSoAgG8j>e_JZw`ca2umj+gwvbYc)vq4(3Ue~+tcN3(%;`1D9@$v`WZ*Y<C
z%1idKp#!~?^p`Q@cw)+${&>&W*o?QvOO;hsmnVgYz}oBw1t$H{#<RX{peGwPvib^O
zl2lS}^a}Q1qFf)O7!68s$fmijZ;TZSP$LZOo<Ga#NAhQ$jAd-`<66VDfUEI1*gX+3
zVkRRM^e`E$GfhE(SU8(f`m~hgnWGeK4oaA(>Q{T@73xUm_oa()KI!>R#_PTRY>@A(
z$%`z!yoq(WFp2O!xGv>To*OqM$;n=(nTT?golf0I_k3DX$-W0dc;wQlN51M0)W6U0
zZwjbdw*6uyHY>6`Zs#Sg%Z$v-C#$aZIW1WUI<JgNxkLjp?^q@AjEpJ-Z*k;Eb=Fq%
zoTI&X@#0+MFRAFiZ3+MJLmqHkJt7Ms;r|LU)0EZ*$a2H#>ji^}xW53O3}ed&=Uxos
zK0qg=eQNsv!N(p<JinbCtPFw+Ojc%QdzOcwpdc`|TXx#;3z6Q|CM8;kQ~K5K=0#8v
zlzQX7<$5u2&!q+}ipMz0e+W)bRAac16<Cw;Q|yU9{TYVp(^g77^Wz&q&OKkT;a3@H
zY888VJM9x~qPOsm3C`Yq$0|9rep)2|?<?CKNgr=qw_%ok$h^&{v>7#P5jVche1`e$
zfA_AR6CuEh8oL|-t#P0G5j6Dg@&5m|fBvz|`iTBu1L9!8v~Jz_YpCSR%%S5Y??mq2
z#|%$OfWctKAkF30`tUBd|8~+t-W=|4K+C|&`Wb{zQEXt5@I{Z8TQDOBJu~Y0BQ$$U
z3-{eSFnxVJ_ed(D`XDZ|)3Nst|M_?Jcf1j(JAOuiHvA;N+IyNxt30met)x2N6ZI$A
z<9x2TSm)cbh@@C)!D>7dBT2)$v|#rUZ&TX0*cLf(8hXJVVP9|-M+SqR`N5SYroG=*
zm1KSj*%_l7JPrHoDlcu5Y>z~CEzP$qGQ|@<_$?vrA(3&47rDq5PnNzJ{L0s0`TJ-S
z5BZ|u?@e-DhKz;f6Tta)OiXCHMCLhUO#Zhw^FN<o4}vEZz0l8|p7a^_3mM;}qE~c{
zQfaBFeZb524s>a(b<=?vMD`CTP*_1hf$04?@<v8_5EA_8cJKwrK(u^(ao^h)){zy4
zTPgtoX&Ab5I|lbf8X=w(`emYTrCV53r2<dl#hVw2+uYB>w8-^oxp!_Ta-{QWs(UG?
zerAiQx?x}S=D;ei;8%VvDl|qHP_6pgK3>bwFNj{D@EyqF*WM_nKTNrH5+>n4GTee$
zjqYrUE=3m8{W`aA-uk;y;;Dh_9}tiv6U)(IG<<k?s8POh@Anh>y_f&zBLIJLnsU2z
z=7HKh=Pja~KVYeX!=mBMH&9!_NH9onBDN+gl_*QE05Z}T<frUA{`i1k{aJ#35eaO6
z-3dR=+^E6|%0=M0R7&z1l7yJoxtQ_Cb<<Q|`7_Ct&D%0VG|mi~nED4K-wRav$S%g&
zcINB|yO#LCyojKd<vW~CL)vc~9|l)lwo2K_5nsk1Tb$-A)|raWbl~-WdvZWiB13d`
zdZzTkooOkKN47ri5{^@@>|drmF?`GgY^(&&udHD-8|(#wG5~(nv0#7Y`z0+mTz2~=
zShen)M!l;mdy~NI)?x{^INWKxCKMe!^dh-I&j<AHM%R1a3aYSg^Se_4={H@A{g%iy
z)$2}4ZqfVhI%3uJuXR*#V+7Ay@3#wbDLaQxmTzk|^7(2xQrZ!51v2R6W?*hb9?*iy
z&>%X6EoD~&$-Au`eaA`MpzA70Mo_iOVN2Dc2-OIFFX?U^PxfLQIwbyH*WUz%=pWpa
z-+>CrNx(tpw0BMD^zHxC_mxR`yJ~aakw8jlM4}B1bafxiN!wUkE0>k|8HpJb7Gla7
ztw-NFrNCJ<8t)*J_T4Ux9K%Khv045`{wwcdvJ@^SK~Tg#y3eP=BxHZk@G@Ny2;Ypk
z!&)cdLBMa3G$KpM_61XwUg&V2t<Ow)R8bTrF)X_6ouWruWg|yBa&cWsy*j$I!y7Sr
z^limy(D*xKy8$3X-c1fW@Yp??%DR6<#2c)W!1=XPS~{-Nl4T{SW$4D$?~T@@dlIek
z$`?#S@A{0_`E{unYgf=zQnzHTJ#CNBZzAS}7?qwj&W|gcC@8_Bcj+{ocOIz(;z75c
z<JZz=i*Tyf&xCWIn=hVC91%<1)R@G*QDv2IqZEX`QMOS#^TamGengf`(#Yh8CTueC
z3$3?4+f9E{M!<f}s*v@3S>W$?<!`_A|NX!{Bjvu0p+P9f$rp!(9hbelym+)}1qJKr
zCcsD`AxJ!h!4EGG+~3E`%m^bQRJO8mI(sU>cI;^*{>G(KcK^W2wXC|;7J5^>mVHnD
zm4@iV7YE}Ow~6D=W@OglubrhkB?m}3B+qLa4D%BC0}@anHiL?^{8ou0OyY2{<Na)I
z*KIMZI>39J^JICp#9~0g3rp(XyG2IEAbO?l%5GF3;6g~pw>YGDOC<asbPwh4K%AIv
zK3RTsymD(ynN^ZC@?L>a3W!$6;nG_7K#s*6)@30wF!{9}^NU$(^^hVq8`iY#DOrxa
zn?Qg-=;AKhdKR63*@ja-FXraK8t<ZT;okH%vXU$m&6*8v)Xaj01B2OZ19V<MCC2bq
zXt1e*Ia5+ebFGE|PJreJH*qzuWG|Z(pox(k@92ovlOAs-SdK<fJK0b@dN*8jFnKUU
zXZf$BCh!Fec?*GG{2Dfcky77A`(7~GneZ|HQ#xQGVZOJhK;gIJ;^+K_1M|m@wh|;{
zW#v<xZDT(m&ZkiPkPH)?Vl}<Kl`lbOr7<ivRvHx*m5mwf(QMD2#dlIrP?RpLBl&xJ
zddePwfo&F0*Ol0BX-G+#IAVXXXS=nW$ulE<toINzz4;O3a?6Y!FRT`|QfFP8xU?Jb
z9->a-jA2ZZJ=-4V5Y<tRR@pFYL+EWbjA_GJ%kz0wYLAu2M<zmR`b6a^50-#jq>$EG
zFY-bb8U0k2;mnKTG@5?eVo%KXs_3<LgD*QJ1)jRV@meP$^TYIN-N~Pp<lMp5O^$FY
zKh+&Sn`&E^-^TvR%}|!7M1m=<<6KK6@KUfSak|zl<njC%*>%0u#r=&`YEih7?<>fB
zbM{Y87D*JmuC)Vdixh9dQR87fpV{KJ=qxa`&pFb~!E^J7u5o)AZg+{oSh>NL7n~6g
zt~5QAqF<Ri&Dt=qir7q_0Yt}ynwzV%ck|o+u15ariSb{mUQ)#Fo+)e?0~Yc6E(h|C
z-^K{HOZdPoLe94IGlhhSdS_Eoq!ovPva)Df2yqHf0S|P9QNQqU6u$ym6M0L^@20o{
ze@wB50)+fg%F#uX&y=17=b)ZEu)UlxU}VmDD$tC7oPYII_9IJAu&&FfdrAOSzei8U
z!%FBD;X|+ZFduPV_+tCZvC^?DjQh8xmuI4yN++p9w>DcZ9o&0o#wvhHK$NP6EdP2G
zS0ffX>Qc~U1%Xtov}})aY}4Gi010LcJ=961@hAV5tS2U~!2D~XG|II8Sf?<`6!{8C
zS*Y+%V5agK0t^+dJg{LH=DNb&74y^FK1}8p9BI1ABIa2}uZLmS)X!(VE@_bt5yCFD
zr;shO_gZ`X()m?HDrd+1cH~2+G`)VhB;y%hmanO!1YGE1N8CQkdONFh9+7mi_Eo<g
z6~vOTW10M~cj5mieE((t;@U<n$sKQLIt>!1xOMLE80xM9NR)y~L^rLJOerY63D`{@
z0uCJDL8tC5v<-suynSLK7I5H1K|w4pQ);D*(8$mm%Lzb22P&T@^`=3VS(u)l-dj?C
zNd4I|VKqn1AEX3hOoS%vCyu2ue!t?NliNzF(Gt+Qy+wVt!Q7~o{(USRTe@u<mmgHm
zU#hFDkY!dic(Nwz<FTFMt9&l=@qXi4;Awpm7*&^=IPDx*mUlWWE1$_eVi4Yrqx%Wl
za16aLs5G?~x5a)VZy3x-gZ9V861j3r3X2BztJuHFz#`V?o*T*|%aAA;ExmtqFYYzN
zgVc-Hs3*HG`H23@eeC~Sz?S3?V@^a-6qF2^SaE=S+ONsgEDsqN7+8;|fIs%32PHFZ
z+A9`X+JId}RC8Z2R)#~mLgvLjw!j>@sY*0!99gxkS{^C3<3D+__6vUU#{tt#F0ZvL
z_E}d{;9j!O4FMgkDYyQ3;<Wpho||4%>v+^F-@zqjSEe|;mN>uSwUgfIRCaU$lM&X6
zL0X5KZRc)=B@QT2vscL4ibG<Odq%wU^gU9vK>wtJZ5M^Q&X4HE69qGaSQdOzsvo;+
z<&J{aCq-~0Q(mtiP$)+X=Dqg6Gb2RD$TcZs)}?&3u1KBT+x`g8$8V67&@JmV7P^n$
zki0b>`q{<Ez|UvW#-cM)JZ7?Senty(|7Vf-pRYWN=R&+tH9(V{LFS@9D=I49UQ?NR
zyMZ7gH4GYu*3{UTY7A*?uBqYEsC8x!CgxQ=_JQ;Rs-qr&go;T>bnTJB-%EKotjyVi
zWgPbk2`z8~$xp;t)3`-r=JDO{N25Eb#ulB7p$hVEbK}~&x-^%mXD(5K>(}ki7kgrC
zX$->JM&%8%j0d72Vs)$=&#PvWIBC)~iy)83xd2&d;8WH!<G%2ZaFjhO-u}0iw(%b@
zw*#|GRXMm;=Db}9bD2B3-hHp5q^q{i#wANPa=KPKoYDMwcoIodX&Y7;>3*{cX%SUc
z3hhx*^gr!5@np1m#Ygr3dx^#2?ABBzAq&YQ@TvO>w)R=_Yt^|rr4$1;Zr|;|X(FcE
zaP2(`HhEkbC@|hSflF7)!Ybh^vY(~=(9Xt$)gOwuStif!>X*-H#+GZ)jH)6ZlIh9N
z0+w0SnBb=`atWeMy|rF?E{73<gl>1e*DmkBPEj+8+uYvQEYa3E7jSmzd5A4OCN$+6
zl9aTfB|GIC&mh9#^6`7O(c~_v#>rHMvVLi&9g);nZXPwWn;@g}F_T$6cg$CliHh#E
ziAjOIesZe)&n4!u>IRx`O|$lsL-CON<JBIw@A;wPiGmR>iU~>hUtOUOnn*lY0ZBny
zPRdH!6k6YEmqs+yPsV=a30GkMKRrB+7@_zhReHJ2ZQEPwF6f+(@zK+NjAT%sH&@Hk
zHZVv-d8R>s0us1ri7^Uoc4vk2f_a}T{qQfdR9bAlJ-N6v5Yasz^!ct%mAa!i<_$E(
zbQa;98?C7w_LLe8e#8s@loZV>CTV*gtJn6hX?R3=aJycu5AWo)%uW0+@9<~PMus+O
ztRX5I=1x4$b+hD#z6x25v%>Z_X5BB6gxQNUb&@zE)JCvmrs7x$*AM2BdD@y*Egy3|
zZw}n}{T7ux_55b+LD$2Sl3KVoWG5O|X4b*&^#1R<=HHq_|KkToFQM4Sf3!2I9CnyO
zalPt++n#us^#afXcjuax@Y&hfOPp-tH6NqZ)@m=T0<fnK9Nu0Bf^Fc}aesUQ3F$Xm
zs?Su^&0x>C$VfiIE!!To__XP*8+ON3y5x*t<(Hj@d(g;i!z9P-+VR~Yw5Q)ZAKL;7
zyzI&4Tta;8sYNI*@2iegecZ0{l8Yn_trs!nki=~M>3>*5ZGl3LZ9<*A@-JH|mz13=
zv?fS$j&^JQ<w*K3o5o+2w`G*j0mIix;wzf*2Y>N)BtE#zrOU)-0;Qp>#7jB3a&*7A
z@NiL(@{<Cbsfx0)n1HGaL4t#c3T0Ra70+0u4YhhGd`sC|2WVlDqQrjsxTEwF;nOsR
zQ&A5B<h;r=je7Um$Q6v+RX1ylnmax#z2F<61dEGseyZG`|9qhzbFJiNYQ{V%NL$nR
z?0&D(_%eG@FgKaMxHg~PrB~CU`#X2@+Pd0S+2kMo`06AC6AC$40Rb7h<nUrCO^>U{
zPBi`nOx_F7?OEKAt9RQcFuQ)|X=^M>v%J`!(Z%vJ8n>Ph^SydTdelS#Y4zvjn%Y;(
z8G>gBSG(gBCHDQ)8nLH~2+yzAc{96aL0?ZhYB0gB-qbFk{o#_KR3t(Y_VcxLzqL^2
z>Ez@%jB;Q1-Er5vDfF9S)ag<$)pjmpZcSbBgn!Cuc_hq?M_rrOcIw&w<^NCLgE1b`
zc<vnqAMJZ$Tw35U_fYmNbww#jNd>BsLLg*K92;$YbYfJzys;p!AdUHp6Bk))OG}4Z
zZ6^gX1USv9t4z9<z`s<&<mq5oE9_Zk2Q?VpG$h4!bKhz+Q8Tx=nK$QAo=sr+nXiw&
z$+u^o33jekzx=L@n3F2|Ui478RKlC`$u+v<YN|o+`pv=h+(;>BJw-XQ85*rOxc5U+
z)d3W7p5N2}`H9<AiSygYy7TW-0`}?CM?^7q*KK_8t@gV^jklmWlV$TRW;e!cRP}cP
zSAY5R)Se)pH5UFTmEUnZ?Nuc5t0gpB-ZoRT<g#6V2}+T7oq3^yi<%@U>vYn!*Am47
zYHm@rXRp7W<;v`GUDl|>qojD<Z$2;cb4hHCn{}sa5D3<2MG}Jwt!yaL%D5!<usx)7
zT$+d3mk9M{GxtH%Kiy_V>2IQ3q~tM|!C(Uv8R;~s6kLrnS5{CIa~XXbn8EBn@9d+b
zE1u=JnxZ(eAehoYMs#kP)vDo5h2*iiPaa#$0ppGOSQdXz^xaioU8f!)=~aKn>I%g~
zmQxcivO>fw5o4`8XFk#IRyw_l-bKw7TE|7FvW!!Yz|V$K$19S*C;#H`5Q=72`DmxB
z(6jF5ZI<YSAuw%yr8BKF^zO~Wt=EY%rNgDl>Kc?QV!WFd(Jh4}+_G0S?8%r1Gy<#e
zBQ=#*8%Ki&Yc|eCQdb-84v2-@nfcIt$9}B1IjMlu5W>l$4K$P!yQ+k~Qz35IciB&$
zw$0xB-uV9af{Uo&cClgisBTlWl>sXXn`n`~qyb!J8nC*qjwdW+{d#(PGrqILqDSlB
zJ-h<`pj6&ued3*4WGM&ADgGq*K28sWiG{mAC-R3ha;VJUOoY3MkK6P~YV)f0uL?hU
zIIAX|wp78cA-IO@cx1XIO%%$izw$UxdR=<j3%9lZBNn~1^lBR?Y06eTV=1ZVW@T4$
znYaUm=5fviw~nUSYrhvm6(NF63gv2CxS&;GVtU9LqrjjPTpGy1kRUNrZ(C1SG{NM)
zhA>`wZuIr|M~)&_fd24F!Q-pJa*J=9ZoFIP+}lHei5D_5mdclx)Aa8eH>+v0rN7K>
zZjC_7wN)kO-K$?Rmla*;s{7#iAdN_!bbtCmK*wNZ(QQtQ&#Cv1M^KdP-FrUu&b+U)
zSYCYoh!?UipXNXwM3Ur_c|#yn7(wY8P#(A?7J20=Ns{7wqy1-!+jTIgP)VgCo>5fC
znOo4kF=i{vp!cNINY<;QID}+vQx!DB=J9o&RC~L=Drnb%Awiz^Oo+VuV{z_DD9NYR
zZ@z{ig}##L74ElRup@%Ja2GbDm9$kY2x%fR9vTUCstOJY+n6|3BCs!YBemKbR$*71
zyiZ~>{aqHeOTA3nUAzZujT>?hJ#nIp@>wK>B#Ojj213%7a+cz7%Nk*9_b*X#T9+9i
z6Ju3zdG}#2g7nEQ{M?2dYxv8McKJKrKwy(}u|JM}<@*|0gd&*)c`6eL#?&<5wenn(
z?wHURH^fYNe*7@|XdkN7p~LoQ=iNZn_`VhUnoz}W%(<r_4nEsklwf>Tm_W@9SW-%*
zVfF8-37i26^f}1T1&WI_&KcK1m1j&AZAhR6um<FDQ74H&PG`sCdTJRf@HI;*qjU9x
z|0$=(^(9B`2(FctVR4LjFo775si(BJOG-&grvR=^ISHDmadQsfG%G782m>fc^5lqV
zJM!;Mcl-_l^Bm5r49L5?==+N}ySgk-pNgWHv9YmbR{UDl=>zTh(V*9dpvMn?eT~u-
z7aO~wI^)}F#%xFT^C*E|=7Pe&g<GIhRzOzFtK7^-C~^C-#$}ad8TML}kMLn1VNXk6
z!Yd2Egez3@0BApPCd&oHV0&6Brn<~o&p0#``*D;I@s|tSI8yp9sU@C4hxg$jzS}Q-
z`vxrCf}~z1H|BbWM^tGO?Ql3$m6^om%@C!6n+i|(mI$@>NRrBm`$ZBFkA8T!9qReS
zCAkG1?Lm5Bv4#V2o^v1HlfQ~MPjQsY`%e!w7xx;Q-kE&l(`jgE2o74+v0H(%zI_C%
zJj^R2e8S(_{P8{;#=I_?_rpEmp?guy-y{Y1*&IKo{iITT$y1qPE1QcmFUIwF`}F9;
z6ugkX>8;=lS=d9)#xty|TAv@-=03b0(&eTzTd7>Jr!2)mQkYRnRv}x(UhYI(?B^dV
zQzw!fXYVovTxHl65?ag-nSW7nN{ViJQLAx3<nF>5a%@Wz8%IAS(Su>DZ^Xxi?nD$w
zpU$0z`P6w2maL=<VMr)*WakY~>;>L^&#;t4OErwgvY+v>+5#4QilJN?X6=z$Lss6^
z?%L6#W6twmnwGd4(k-Rr%8g9#k2mpx36*toJTIYpUu)A~6@OfPef@;l(St<CdDQ&_
zo7X=p^;*z0zQ6HwM>%syFwL*@1z<sG@f3v-FleqnaRqtHCFWB+)yFl1&PdJ=_)Cwd
z4*FjDXs0W^`-#u3F`JY~!?i_-73_N0L_}~_Mf8*m%;`3-ieB6;TUsy~@GMzqUHaUV
zN$&cA53zo8cu}*D<3@Eb1p8nBTttoUBb60grK#uC0I5zEu*1r1f9&m%V!4G)_T8cx
z@YQsj48pe2-2voxk)9j^1-`DRTd`@(%1sC<;w|!klA5~f?s$b2g>F4#29T&qeBA~L
zr$K`#?UBeR=f=DTGZwF%mLBmcrFM2oePz}6CH{Dy#PI`}`3SXZf!W5q+Lbdm7#iKS
zEgs;~&=>QQ%~<9fD{a(izq;V2GD|}#4N_D3GHj9tjLByvQiA4Shz`nk0z^%R*wvE<
zb<f4Q$Yf*X$CDA8MQCGD3XVSk=_N|Ra{7L<>v)}YfGfL0P~<kJxv|efQoV%Ogg_v(
zTMxe3F``)Az$>Dul#YOG;({A*yIQTU);}}a5-!iHjiSxvUq{t4HNG?bmLl*^n5a%%
z7g?#Wry@1f7?ta3Kf_(Ci_8QwI<8H$s-+6Us?H@}>G`3xSt)yz=66dUca~<E-?)~y
zna775nGk2!@-T6|qTi!lpN0EhH7BvM@fH6nT$tku<w$7a3UMWSC2GxwNm-%1khx&5
zrPh#yld;k9OV{QbMu-~4?y)h7?as8ezrmElny)up=L0?=p){}}*SNMT*JGk!FU-%c
z0?BdOaE_WZH7ZIVH>+nW>d@6?X-kqtjUO*#wv4Xwz})k(A;AkQw#d?i4`XF@k=#rU
zAy=XnN~SDI?&V$ZQ_D}jjTxH|bO<{^+#h|^=d#~CJoX?ij*bfth&7%s3FG<YGdY|+
zOOt-SRRy~tR!OuNz2EXtkP3;+enjGJv$xg7$xgXu*At^SUEs3T#hGLXEtOx&&dDd&
zH5c=zI|HifiM$wx--Q6tD59u9?d^`}c`W*-mA`-MU1g0b7WS*Uktm+T&%j9WRRCiW
zv$ujnHV`w6M@<2y_2?|-h%@1<0M*GqSBI|>ck*2<*F}CAq-G*ygq17!<Je!nxK}Kw
zq83O^?sLjibMlI=`<GY*vYnUM&}bk;mtFPaDlL+;&a|?+u?rb9StWf8IgHj=9^kYi
z<$LCrluh%fm`S}STV;6Ti|~l82!z}9iUUj-A}KWKeL_}2Ai?Ihz{9Gu?*fGnS&gPv
ze4Q_NKBo>Iha5>96I(22Ub&fWESJZQ>Jt6*Nj)Dsmc+Hpb}O~hDyMUp<Ox|Z;SafT
zyjew=ZBSgIS}=J!l*4gOShu&gcQ|R&J61`Oo|-CYBvk>mU+ohX@8()d4SS1E4_91h
zMk1hq*zWRP?ot#G&?A$a7Zxs?kE&gW%fH*?8k>IQ{CybNpV3as{4SR;p$1~Lyw1Lz
z@&c}<7tU<cADvT2-#d*_1Q@=~-cYHpQa(ODbU9|kVuBiCxX*e8E^;v%f>!kaE_<<B
z1-ET>*(~-)PC*@=2n)sYa_jE*6ZFf&r7DO40RiI!fSV`c<W%N|Ukdx&&r3@F{9qtW
z`e?X~LD2co_=y`1Hu9?vjz4AZ%Kf~3U5$%xbykLQ514~~3nw?Q+vyL}1vz7ua*hm_
zVt%g(76g7za2tM$4fTyk(UmN3P}bIgrO!&z$xcZ1dsCz9zTu7_6_C6aMk<E&^(oQ4
zoHR-7Bi$Di?HW2S1+E*ED;!d&gfKP-z0p+jq7X%K%me$Cs3i-Nqbh{&_v@YM#CEB+
z<uH9)50uL8?55Utq#5>y2o0w#DOVWc>S9PBB)f0L86h%?-I+Tike1^=de}gVeQRmb
zIB?mnl)xpOPw$c8oDxMbOB(?9$F#fTlZ<V_gc6Bv$1%3n@<%lWh&?EdY7z47b!R=<
z<91_v&RS+?sSh3EU@gSGLy^Wzlfn_uvc3=vsL`MQ<sXcQ`HgegeeISHs?XPRrU-Jl
zgMkZ|wDIHMp7b3oaekoxZ`(oG|6EGo`RyASH(nf8d;pfh7@!=F-NS-0X_mcQJ`?=i
zGcb$)aKZY1{QUFo`9Dwe_aEL~!t@dUx{338eWgQJ541^Z|NiELpeXW@qS!Q)u6K-C
zG@yTRflxC28%kcC)X=E1ilX{530hEbKq1Sk7Eg>hL*tSFOt)Pky*yh1<%#t#Y-mqL
zLUY9^-*&V^_1{Ln*JosUL@tW{<nk)h)x*>ev8D5mz32x&ECB0PsRC5LMM|KV4-ALI
z70)ICxyycDB)s5teS*N{uE^Uo+*=GX)xqWK3rcx?3@WZpXj~yzjyWj`Y*yon*S{_R
z&iZwryzm7}nVHr^aBJ(hOI6*-gs2KaeET|{MCr6R7RHX4>I@C5p+xpk_RjMqXD^DY
z%Z1oqy+{6Awc;Rr(<GaQZ;26Y>OkE^@TrdAA9w$Xr+s;voL(+v<tP0!itGfzaKAS|
zsl>-d@?pV-xs{0Rt-toG(MY~0pwzpEflsDA9v+=dOInb%_L~K8AgqN<&F+S;;dTRb
zjK7mFzv56;bGusUSP9H>`7Q8_!}ly*E!B61bMVeCE;yYe<CKU5xg6Pa&A2S$c^%9L
zzFXoDv+5x==+@Dqh8(Q=E$qGB$MzV-=dq=ks~rnJF|f6L{s4gS6HL`cb!<jZIo;z-
z<DL=O=%Zr&fIfQou;P6-k#?RceS=+b;n3ts(6#f?;nB#iua$q9W<vxKD-M1H{Hr|c
zpUx6jE7Ea64mxX4+M?M_aL{#9c<~x_WfA{OJxpiXlCh-IEd~$MpN?4TT2Ql6*mbxd
zOQA(M()k0Ti(T4X3wQGzJWk@>hy2&8j7?}1_gKIDI$`sVHPNeAg?p*e&X*`CpW;<J
z(U8=bX(AnB23XV{MV3_nEQYZYd@(08v+wvQ1_Y;kzO^N)4;359xjkB$VDa2<PYR!z
zvY$@AaSF<YJAVJ(MQN}5zBZ?emc|SL`R&#Az9g9{gH(+W8q!g4O<vl==xYjO!(Z;#
z>l<{ii_TA#G#@AT8DgZ4JJt#GAqJREQp<Cnj5B|xB=-!azLI+!cvF*2Piwn_w-|L%
zPM2J?+OOPqq-aJO<7NJA3H|K*6lvhG=_fNqFG=uE+s<Vgd1zk{>qtQL9!!t0RqtsL
zN0}gDQ;euA%_uzTU<`Ri<A!=>bfc@5Z=c<bJ+IYW#Cn{KYmU!={E!^Up$=J7Wf0fe
zlwnM6j(3LKJMGhtK-@p8<&p=8r};=~Vy@}RFfvz%PH@i!2+?pbuQV?2^CNNgKR?=_
zu79oVIOk(;_bZ0Wid@@%%;2cm7D5JO-Zmwm>E-N3K>y*_+UuKhJRe`*adt*Jy5!r`
zhug+XM50X(x3&AjS$q%xlsB9e#B*<xS);`NHsMYE=#~(qJDnurw+d+K%u_(e9scRl
zx2g^^LqjSkMybA}DauzJa042<$7KG7%l*=^JI(dhB?X+rruyB{tlm958w`0mDybP6
zU3<ipIp@o}K8_DU)@C!1bn&r5*0>CFWfFV%4qk4#-0c|yMyIR-D*t&F9bo&}2$(M_
zDq1Za)ky(>w233DMeqCBmRGA{QIJH&SKmJf+)N(3O`G50bRegoSSxHJp?E)BsHYWI
zaIsw-N@i{I5@Iv2wNRzHgHV!%?P1yuVooGToZz!)Yte{^h=2hm8glL)Z2>Ya4uSc&
zot5aKavUh{QM`lMxpfXKN!^xXjMn)r(_5SE*bO?voe>8I1{BXhp|TNgI$Ti5h!k@h
zL{xinm*hj!(Lw#q*tNK~6<KuiQIeeFr)_XPei5q>zYTl+D(F#XA0qF0@NN9V6)=va
zl6rl;NNA|61cX%MzHh?zqx3zvBVH#wWps1rO&ZDr1?X+OAR9xaMf1-cn#&VZY{M%^
zzCZkW{;Y_9-xdGd%V%HVvYZiiw7n-QW&Bkec^MqL5lQLeX~%gF;y$MCB~(~eCM)#H
zjw^BB<8=mmo(~tcKJnOy%C9)=qj`}b;_EdmFG6x^s=g7FSzj4Fy=1M&=KgdiA`e%I
z8MUS|MR_L~6i_*Jl{4v8S|`e02<_CU5!kRTom7m=y85e(;$NoTDPS;x4|-?f$hua#
zU2Ds^(p;P)q3q2%DNn9#p1awR^CY2-uAADOb<RHR+;9qxKZQJ)^NpUlLZb`jS063V
z#S^}&(8v&H8(y~TT=VeY--A{~NMK+ib`rt~ip;mHxvuI2nCZHbB@|@qUDm<y7R%<5
zZTwvLBd)g(T%#F;wKuxe%+MZfROrCT638<gRs<`QG~6g+53~1BhkWzdPdT!fmm7IB
z>3lY0B@|%IXnRoVKcB6!Cek%X=#jU!E{gwv)|dyx$+U3qu&)BNNf9^>Ya8ZOYgAtW
zRW?5J<?vs0Pnj2%Z{fQg3jRK<vm6c^dF4{0;_S<fKIrVM*aFmm^ShKSWj=R(Kk130
zt}Ya6TPoG5i^*icT(b+~FMKrK(%LH3fYWSrj--$v6@9lY3y(F6=RGu)XQ$>MZbW4D
z2;dk#KPzup-sK0sU2=Rg=h!pr<p_wvFY3;Z)<VVNE!_B#EV;y6q+j1pngiCQm&Cl|
zg6&D9xaOf;%+A0~|3eFyUh9<lGu<)OoN`xyK{q2alcrj~r9!*fKJAvaF#XkvL=a#*
zo%ll90{1NWnCmZ#Y{`atKQ6ccs=-o4$klg2!=LyAg3r@;Hs}f*@7=p6wO3GVN|GM}
z`N1Q73nCnic;+BYMBQ_{M{MVsdK*+cPINzim$7qSYXNdK|5df)vmc$>MC*Eg&z^?a
zw#z+z-7QNQ6;}mcxZRHyY?y*Sm5TNIj83ONE^eS`7n1w79hO)Ze(>+B`}Z*<l!GHl
zKqwb!O&@dVy2zm~LGs9Gf>*h8-OI5kg`8}PGSmcVdlDakOEmK~)HNbv!fs<-w46?~
zSlgR|H-z)W+>q7m4+JBb%G_WanqYo0nhO)S<{a~4ELOQHb2bX85TzCFVjy~zwrpz=
z23utMJBd5}TIPup><U^!z*g;m>!kKb$-vlxZq2gl;q%9BayYWSXN^-k4tWK<Pkx57
z`)uBP{pmwnB%Ni+!w^i!d?1E8*c|QgMJ?Fp(&h%o%pT>l4&EG#G45R?;?s~>Wq+iM
zAL&#TPXM^4T-pdmBp3&2Kxzy5)aMg`heqAZOh`<i8;g#+5vS^P;vuq3PNYO^RDzIm
z#|m?nBnyX#ETRwF<_vvB!e0XVk^usHsafB#Kk1~x>p-ibuNymYVfaK!<MqfZl9fku
z!Jo<Ol}E+&uax<<=odyVHMg8?KW>ElK4D}KZ(}=QH6XwzlH>g^GE!$xdDKK=D3cfZ
zi8q$Ouhn^M_mgm?W}`=+XBm#St9J%~{51_?2DG3^P$E&WC>>|ohM0+Xq`gt#4=o7z
z%waw$S$}<=v&myV$+c$e%L+}dIa`ippMw%@%r@SK_5)tOjNs+2cW%>l{f*g$w%-m5
zM6~f;H><E~0Fozph%OiiKY#y=Wz86c^)XT)gnf;;^GILljvw65_s7HSP!NY4X#h;3
zMGpgX@5ia;zJd}HL5;nQu@Oasus)C7@^$kHDqW3w;<EN`y-y(EN-jYyE=QWFQk2cB
z=_w3r!I4lJi*NS>l_&_t$p8-6&Z8z_+_v<|JJ9522Ye&_dHjZ(j70Z=NqQ)sa-+Qe
zB4B1e^D=#{gadbQ^kmO31g?zs1AE|Rmn>8VfRq{%GDVfO^_+spnnJ9$pTL(D0zxaP
zkWJsfZ30dZ#v6ncC@Wm)l3s%eiEaJQuC5e?6!8~Ul%jBm+k9M=OKnb}3cgVV@h!Om
zX;dZ`d51!42ht7QWY>DE;$=!n#Qxb*<_7%F_9ulF0}c=yXmF4k{jf;WLE?SaRV&Dp
zxi?Cl|Kcf^?Y!geEMbUUoFgf${k||`rzQWw1#Ld=)0(#LhFm&ye)5k(o-hTxaRKb@
z&J8TApL4YzQ#~B>D|em**?`O=#re<o&t^}v^40v`Kyi?zb4kg8Tmog~1rc)(=d^=k
zV&fVP>L}k|8|WKEvLA?|b(sJCT7htTt$3UFT`{d7bkf%WBlT)y!|%DtUFjuC7EgWI
zZ$L)%RTDaiWhL@5(J}>t6J}|H$~kNax=^^}<^t<s&m<nW@vlr!d4h5ar9o%vfrye7
z-C4Mil#xJgg%I2*WPCrU>@-<cDUA?{=7s4>4?|%dUJo)@Qw)lpdOb<@Q1%0|Hq&Er
z0XR$U@OVX7z~nJvOyG%$jL5Nv7<>AgH6fHa;zn@_*JnuP0>fiPvh2RAeHrts?$@z_
z_6p6%qb;Ax>@LEMB*iVC!f`3$D6kF3-*l)A@=TF0vb`dQJ}rH{t&vA88V^zMqQ-&y
zxH}QPtrM@1B!B-52PS*}ZC<z&^X5m6X<7s2aLfE(2VZ&u)AeHS2y@K;J@g>bM}#;D
zOJ=~?QB=_TiC}~xT#Nap$Dmb`MBD*7&LSuxLASZ@&I`euseNXEu2=*>kn{6;F&3-!
z6Xw-2XyJX!7d!P)vUb`0jZ7jhkv;K{MB7C+;c&}JlpH>3uEsfhGCjD^-neN&gco^<
z=dATiom)GP3?M<0iAqbN(B5X-NRRTO^v=RjbRQzg^xz<Uf-v)>g91hNvG9kJ#V|P>
z(FjRM>>U1F>pg{sFcdjJFkSdXREIATFa|&_G|Fi=7xgz3@bA8>XhE~NE9<Y6NnLy8
zVI2NNWaElS0ei&AjRF-Ejb;!;CV00mMN%;c-eLwS`5}?q0L$J07{k4O!Z>DVvZ+a<
zlNXr^Wt_hM%xri7-0BEX^!vU0aTf43mE<;Xd|~J7!ymUg6Ny-ztPM(p+)pCPXO1Al
z7mc>65NbTao-2qABP&ty;y;v=k%<^3hr3Hcg4dD#&v%?FeBEzqx0A@@)Z&c%`K<Ey
z1b$q!fIW*UpW-QBjqgdSRD~gw1Bo*g1i>hxL9my{S%-Kkcp~SbKQTQ1I5{ua#zA8W
z&aqMYIIPc>wXjwHok7WpX)x8a^S6h<V5fnJn(HfGIKr^LwfEZAWY?j8-lk+<0iO?_
zt{gup*I)hbf7OtdP$FK88jLYgvkdf_C*F3zGAX{9SA1Iph^^e5z9mcVT##bEzl={r
zH+%TaJZ{$aiFqB5?}RmmQ#xTtv03;Bi)le{Q!agZvnhx&7sV(%#SV?j4ug8OV2Zjs
z?<HlQ(Do+JmLQX396YCmm7KSImW$bHjWZeSd)z1jDBz_>y*iA@{=W*2gQ;*3n<J&L
zX)TdU@noFU9x1FQ$h~bh`KkHnR}6;J19XTCr3<aeff7^HT4JdbE}1H-kr<`WLxE=+
zq&ctSEO`&H^~7>i?-{jccFUPwY`<-EsH2Xfy_$NLUAmW_ZNum#LXjVp{uG6Q`_GZ*
zj{u1`9bYH`K#`aqNgcBOBMVd3eEVr_*c*U!+_3W`E674UplA@o(zPbWh0TJFdtq#f
zJdUirW$*?$5ebyd8{ho$bkEu!<a*P}+Y-su-vG#n31B;7Vn0HXwv-g{(ocNWuLJT7
zmG+>`A0RwX;R=9yE1GThu++HS{}xFEX6T_tHm5M#G#t^lvtS~#(u{E*Rx>Gc&Qc0-
zq}xlX6KwX#^rm?T6E#AW^@M!lq2k)0)g?OTkod5=d4bdHi1Ip^y&*{<akg=VPS_P~
zj!J8}0dpqja0TItg({!FwwQ04cO8t#r{uYtvwA}AdT~<<HM8g8#62FiL)MK4sL1hK
zzS_VZR(`UK6Xb!HOhjDaIe4Q{F+Vx>Hn9&sp%|{`o=9=({ZXo%_6J0sG@I@Ho`7E;
ze&b6N>c1Z59bC&Oz&o3wY}o>f$T$pXD2m;6Ztf3N%RepAaSAYKTTy)1%7iA(6To((
zBe~pXoSjcYDJ_N?BjS}=)VJ*Q2nUDE+;&Vf00@)kL$Ad5lxrfWWC*BkSS}BGH<s!e
zW*HkH5Ae1h<+PA~G!<=sy23=DaF;r8FNM~{yZfwbqU|N<qdKB;GR+8~ZLw<QqrWU9
z$$2H0SD~)Ya?xdPrF*@f<uU0xQDsLz=Zk}*g=I-`U)Pt5)iaXpLu|<UGLF`Rxz#xa
zC=!wRdUmXwC00XsOHmP<lQ$}-*C)$jIa0-*u~%9n_NdVx?W?rn)GO}5KA=#Gz)3ii
zmtR1&O1WXjtdF+r$MBc}>7Z||29f;j+=lUg5imH7n+Jz7zKvC#ZNPv><iiLiNY#v>
z?Zw;}mAw31s)Qn$swfDiu9ut0o?gXL(<9c<-Jj4Li|~gZ3?I0|cwU?@TR>AFI?lr*
zQ<rLP1QU%dd&W3%l(D!2<5S$&*&3AsJUdDhTC}fAarJmC+S2~4WG!=1$!fkA!&&km
zcK|Muy1ccS8xjs>V8nqtk-8mXUx5Ps5Mb<I+_#XJi!A0oGO&E2jP;XD5YVdKN+Z=8
z>5Y=<{6CT@ipBz-OozZLKeUYO2lJnV3HfFh7=*bpztB7Iq7=nZ)_%a6VbmrLTSwnZ
zmFk|$agg%+gihXb>+7&Vv`VygRI+(qrUL!aFS}C*>hyjRq})@T<hX;wqxOunH15Y8
zZngfs+H*PXWGGA#P4RU^POh9@Lb5(G_PK2WjayWdlpUoMPub&mhTXV_Hd^c|<osCb
zXk6xe@KQyf`F8#{aX#_l9u7)iw#A=BaX#-lhYxigBK5nj8n1CG?s_-Ng@Qmn5@d?L
zof=G8`yDSNt_Oz;I%jlCi(Jb}6)a1yGdi4q5l3i*Iui<7K2}C5TECr?--K`7k`OGl
ze^f;Oa!)W;NBsX7d+VsUx~$t92vR@-g$H-H03o=$dvFLA913?YBq2a>2oAx626rbw
zf;$9vcbD&w=jndC@7uTUH%9$a1FciF_gQ<bIe!yq{mvM)U~`zF#GCC?7pts=rYQt_
zaaqB2ZI3D8M1piJrpwc@ac~&yaJ9t4O4%L82545eAMaw<1)(3M@eKJ5CV!>fmduAX
zBFxht#R*|Tp=L8)^q#|1MJ0uRKLuWUAiNK7W_i&25ou#hZm>>a3Ak5+$#nYWEE4t`
zRKMI&^4dwa-3tStRy332Eb*U@)!+bNawkdXaiCY%#G_O<f~1KKol}Jqt8-q;#k7Mr
zGc)T`wxjF(g{!z9?q9K&Ie<VYx4TmWhxrwzqQ5nEvZcL+w^vN=ohEtut=R6AmgHeW
zzWuI-TJEB4MN`F@|3JkH++~m!<2-V(Ryjl4!hVkiZ5^7Zo+iemA*%j<QArEGcdvEa
z+#yL3n{dHPVQONUe!ST$TpRMopYg_x8jHF5n~Y*!$nCk18XGzfd~s&JzSq#Ozm#aU
z0WgB3ymAUS`OAEm9TN-~6kP^jrsZ6C9|%Nj`mGygi*+G%s7h1cC4SbWA-Dh~u<z{5
zxrD?h{rGdFpbb+CC9l)L81DypvE?iWCh&J7g^`g#KfE1%#PijiD0&{A<RdFO3GrzX
zDv^|plVA`Q9AnrdS(mu94o(7Y)`w;PdiUd%kc6xWdNu-a$P1suHXeT%3@1@&L5omv
z0GXXjf}VrZ<fL}8U|g9=^TLbK3Om5H_8LIE)&3S7c`VFNk6COc^A0{j^P_D;H3}nd
zgL2T6y77Z2$H&J7Z+20#%Jr#1CQ=au)Wr@jUegG7dC9WE+wKX31z_~g#lnf-S8$#S
z<aE4Wo#!(MDt+m|^N-uN8*(|!h`#E4<bP_H3ZsJQhGvxVmMn@G7{BUR$3uiak^6-`
z<G56Qr{}h_l&0i9yJ%b()6tof^y(Pu7Xbm&;V9ke(o;}q@sbw#FpXH8MVrZ{hOu)q
z2!GCv$)!tVK+9Kyhyug!D~r>d1tKB|D}BKhSVsXWQIZJ|tg(wmu%3Bgu6hIY63v%~
z_t>KIJ84Mc-oVTu9oSDrAqB#Lx61&Ahkyu|YY)6rEEPq<-b6%13JJnKM1sBzn(K>I
z5-f}eVB@LgfUAB{Qrj*&Qc-ae(j$nr(-pDYgGuz<>2`r00b0Zija!&hU9Qw(sU0;_
z)!3;K#Hq*rejvyYMI@U$Vq*HkTtgpYHu30W=sH|f?UDB5+++RGuQ~Czk6JEa=e6A8
z`Y(5GUerPVx^9tDaHx1JRNM>(0E+On#W2~v(MwP=I2&i#V+2vOyC<g4w9;DDz`(Ay
z%ylUS6cEjLj4z138++qj!s_&s65dXZid&{=eE5rl{FP1AVb9GtQ47Qo3fTj0Q;Ew(
z=Zet|4i1%QSw+C1#vs4c>*hMDm%mgdY~u`hMVH%m<x3z|_ILPbvKB8O+gycLJCGV0
zCJjm9-~IM|3uwaR0-U94k&3+U6;XLVe_LyoR9DoW?dvroIp~YcfAqXxlp`RVOS=K?
z%XGLmCJ=K)yT8K#<=cqiTrzg%Eq~em$5YWO*eJ{&bIbD@sM*2}wPITjHe8_#etsFC
zQ#0^E;G;Bbwhp`~%hdSzN7ouc(dkfO46Z75{MiS<Y+e*TzhV2RZ+FS+CB;j&!^p-p
zk9OWCS7$cU^Zi#WrJe8cw#R(aXn33J;R18#E3OTqOwyE7`8ItxAYpm(%M-6rr={Y#
z9eV=`K9c53s(E!FblJv+uGHQHz6g#trf}MWZk^#Va@Hy$x2D{+r;^uAxS23}@<=+b
zzcuKsDZ@<8`kYu^)~mJ&8i!7;JANtlggyH+h^$F3P|QE>X<(<;D1SuL=+#-?N@QEX
zsn!LyE0gGhXvk;rxuVQcbxgi=h7Mb<>Va&@&)Rk5H^c^pWo0G-)CJ*M;moONCTYb!
zV(Uii2{U>bWO-FL-St*GRrAFSF+U{+#Uy!ML5jCM6=8pg<$>*A8V=Ix1=LPvBrNU_
z;Z%N)N}4s^%~YqYP*Puu@n8s$!cCx3M<aMKZ8F=^h|fL!6bR$`ONnp)H4vhiq3>%T
zX#)D8N9}#7&a%qG!&CZ&hdGpE9*{Vg{RRp!RvvEKX<;L$D+=DWUQ$0MLwEm!ud#~R
zPD28TyslL~zT$M-0A(er<>6)*@qLZJ7E-MXH=*%vKSG5V(wzA~%>jSt={Eo^ybHj1
z>C;fpvnP;9y+5C^czX(4)H-jgUU#?zfG6r&j>%qLINbks=p}Yu^ts$_^x%&wAK=cH
z_PIH$xJ?Q6Wrrrd?bFzD(THM>M4v(<>FT=p$XGh8Su6WsvA_Y$))S}b2PJH5nEW1X
z<2ia_{|M<6iJs0K4uhPe|A{SEMF}Sh^O6Lt_&_1=l$@(~B{nhoqqNgfY0#jbesCfZ
z@%$}@WPQ=BXsFzYsmED)q57AK@QxV8?4PZ8DCXUNYDQ~`4-oRBNl`v@9&280=J+b}
zG=<MwCKoujIBU$}VL>#8^1ChfaYex#tJBF`sy&0h)(Brx)KYu!#Azr~5MeN5PiAqP
zXK(|9&1LI;o~n!lRzpQVS58)vei^AJS8_$!JfZ}3?5SHo#MqdT7LfduxJnhl8}ab4
zA;!=@_}P~D5#+nDuJ+Zdcl5ed7S>d)Gu`qt_t*jQQV&%}JUKBp#2)}iZl5GU#1ICF
z>o7o?it|66fsFbkI1jAnE)a>e@duDPBCU$>hGRZz+4BP<Mm$kFvD|(0oJ2^bSj#Mt
zV#3ma;%(M2=D0#JNBrK{NlA1eju34WF#Uj(v}<x>za1ycE9?y}ACQI!JfFFx_Lz7(
z7h$RLX<s(&Fte=C0xvjRQ$ouSXnUvGXyK0zFvA*)OyMiwf`M8x`zWq<jo*yTq>#!k
z@U*+0E*OT*?pLe+xZ^)nX?a*bfPoJXV=LQ2@|02cvx5#8=-8_7A%^k*W$#|TXyF?d
zgr`Q9^Lw$@r^5j+2L+G^cPY0i)I9uroniTuvtxTDfTQ;b`CCHA$*D2W7z=>yUfcu3
ztr!Jzt03^Hg(~n7SA}WmTyX)09{r!&wVusS5n_?q{cebVN@z)Z-adD^=x1nu4d!N;
zYO5i+z+KUb2c}2V$pt>uK&!5}|4m(YHGCG60q9o=37Pdl_1uyvT6|sUQcoB>#@FK0
zFlz#2YnMxMS&#v_9yAHl4hjje`Q`lj5Ff;`-1QNf!E?GfR95R8#)$ET@bDT)v`Yg*
z!41n^>~Q}>9SfmqYb7T7aP+S*`hRY(0dK^Y&II#SO_kw)5jf#1kUC&o6Z~3Pm&?E4
z4OWyPkt_0*edMqZJyffXCxp_CT%6=4k*oc{ekmf!rg%5KjSXH@vqn13%x(IFs8FAT
znCbu<!T-oW;5hl5z^Bh;jTBQchb5iTU`knJL&WHd8CfhCb0xSY-@u19BHfo5Aw)_=
z+#64p$kgd&+fs7j+!|4=oo5ow&w5?L%dg>G?s&f@d)TgT2Cl~gAx`fmziC?~c2J1X
zy{3RJ2?u}`Qx)~#K(To-4Ia4{#I<z+@Ru=9Y3oOZJ9(Kc#CG5GfZ?9bh<S!j-a5~i
zFQ`qXjDOx0OQChAvLF`PHcTV@I)Qjx6S-G>F2VtHF1s>RUfdZu!5Z=rbFexd^*CE8
zS%FNyEQ=Nu8m33BNgfgWTp8uEKU*nV$3DmEz&Rz+v~jtp>>C@RipW&5PBb4{SP|Pi
zYM+r}98Ry2s={6k<jqf#t8#Y%aqvrCnw-eOTG0BQ;)zw(aMZ!i|GCS(4sCnl*NHLu
z9knBU`JV1ebpPztL5StA!NCNvHW>^G@?Ln6@%ehE?b9Kld|(1OR7#*2+J9^dP(oDU
z>j6LW49%-o<>?&R`sNkSHu=J~&yXp;>DtvxFb4AJs*OJ7<YMvMJO}37Sf|^)TjPaT
zK7a!4B#8vzsg(ehSM#4q<U`2w=tJB&51YcxjY9Al5!7Mr>J4`%1Jy`*>i9K~qOKqn
zX|IbaTXWmy^5>hAY=Cq<5>mpQXVB~^QwpN?owKdwc`N6p#LYla9r6xcRQ>#jVjd5u
zne^=yK;fkwQFz$c<Hc?o<vzEr+QF}Sp7b$e??H<Zmt+S08e^87@3BdKd2JlFK2E;x
zax*fw?z~0Wyarlm2^}gWK|czd!ggo04XZTZdI0yLG)7K~(B@y};-xE^B`0rE5>n#7
z2fv(f95MN7i(!Iiy;&1y`wKTp&uXgAPdt;_j%72|l%*P49;?-<iQc7aoniyJ>&Bd_
zvkLS`5^=n<B*|mgV{9ula{J{Tmy7IE9ZwySjHjY&_yDAidOXlmrSSUOfO0?9K?u_6
zST5PfB2#+J<waKZM`P_pfjmBK7o*q#r;Av6?k`3CD1~piUw#oY0r~W^|FedrrltmD
z>C(r|h$y{c&+wrfM%qRs+QG%-G3^#{rNI#4Zx~#t*}QJ~&vYkMAkO^3z&zUMi}hD8
zV~9Et&IVC-`LyC_yI7>Iy0m~)21_qve_x!Rdrw_UfC%6QR2yv3cO<&^PQn@lgC28L
z+m|UASj#>S!d*QR%EyXrOJXxIEubS3up4hc$^Vvr3XGseBe)jm!k4xxEk-D|rBwm5
zD8#b<V%EBvFaY2Q#SIeOJfzwS!Jl~PNoa&7V9XytyNkiwFEV4$@~x4;m2T+?QZ!d>
z6eD@95aictD*1)#w$Eu6n-omTan*vs12QTr(XYC*I?kh@w>EOL8U4JPb03ca9A9h%
z?yspuQ>Q*>TtCZoSS=_&MPN6?n2iE@U;B>Q@#F&Akdt$4GEq{Xi>z!0QEFd%?eTL9
z`|~*=KGQYJZ86H?-7j?luaD2?Qfax7NN$opt%v@=Op*p<K~$Q{>EtKkKTN2;Q8JyI
zu;U$kUQS^SNGr_L)vx1iO>G@_eql#hD+nMyx%P)<Aa?5X($FY0dHXNLF*&O_1mXWQ
za?F#%NOAImgU-6Jl)!=+9V*W$%AQ&YcsoZ&pC0(Y{d&2;=sPXl`$UEZasGx3E>MkF
zv={)wjy-`+5rntUX(91P0@eWU!x4`n8yJh|Yyg8!GXj41a%|icj!S@BBVGzjGQKtg
zm;5Qp7u+GzNe+(mkc|U5to6q;PQ=;SlaB_vqc2{P&37Cx1%qoLB2sl$)JwOkQ9@M?
zDV=z5OwhNIfv3hmEVA=;P=R$<7{&>pMp^<oBO2O?y5|CLM&T7b!1PijGSsDm9s+d!
z;*yf+ZaXcH0R*`V&s*Jsw(AT*p9VdYLDteI$%u+$N5v9>LjvG1Tyt~Hxgvz?^5sqp
z$74+>Jzw%KU)&+ukw_WrIZ?+KFP8m^8qG9#2ylwO2GMo7a0`CbIsS|)-guDbak?=A
z942J}#WlRc9?%>X1x8zpw)1t-U@JnFTRN$ZMM+46J1^&@Kx}fdjNij`zPI7>CfFBk
zNdT3_eG98J43O|73<S?HbXe|ULDN8-k?>p^O;SsqMR*5-r$0Hqlw)DA=t)oxM-6!V
zJ@OX>z20Yi1LU0@%YjMX4GjGDqIlb?9@|HSb1fTRR^~*D&gjHXJu?4r@U#7|Q^qf9
z$VD3mJ;ke3Rd(0W9reoxi?R*bPkZvuux`}!q>1n&q3${j*HW`-X+>Y$ol{<>N^4%!
z{5HLMe<>Ojxxd~1>Albw&nb?RjfvUd$DI4e*AXT8Q>!12;W{X`n{Ex_#7ge2aAfE7
zE}h>y^$6Y1-UeHcMUK9?SFpzQo=+vO8)BpStnx+X8O3dE-@ELA81rF1-39B3iBDm~
zl8?maTE&BXe}R=|83W2D?=tjm8X1Mif*>iCD97BGf~^|6MBml<wCNuP=2YBFB;$>C
zsYMyX`Sezz_BboAAjjVL#`W1>rNf@vn&iNdCsm+NiB)m_xVI`<?4drbx&X7-U7JM{
zDcv6a_{9SC3aP`Oko+1D%R-d{5tu)2bix32L~oCAk+LQ<0+TzcyNcAY4>H2PxjRO<
zHhc>}%s>qM!pjZ?!+97!-~_QIH&M)NXG5XKk$)l6CgjE0jseaVF}DlJ@)D#5JOqtF
zVxWy5B|~a}AmM9y>1)?i@Jz&a>!7sEv)r|ed#~n`1iGVA1{!Y8x7TiQ2O(g|824b5
z<@86400XnnzeX@lbpsn3^g`?(aF=<fV;RJ5e<YfSag&DZeaAE7tx>rJGbBhv#aKJO
zNw0rbJjUbA;E2#DWNLUE4n1icQWcxEb$9^AT&`xNu4G+j6e%yqG*UwP$!X3i6W)wN
z|7j(3kAo2<601U3CNTgz(PL!#W(T9<HTa-o8fO66N0Cq2VAuF~9b8RBY6b=*BA~CB
zsn6nJp0l`IJ^uvH#p~Vjw$$axvVd*N(=gsnjyCunV!;1+ce*YY5y9N$vW3cKriMj=
z9f(Ctgj^vR)_LS8518<B0rR+J_pjw}q~s@ldm7m>F)RzjQ`4D~dzRd}oDUf-6i`D1
zJ`dmD+@wW_1uN`e9k2x{85w1@)csno5ELLy#gfXG*3*@R=AprC5^rKmA&vq7@IP-#
zs-VMy4kbC!8&M&#0@SpCV$NpZ45rxmyitd;^c>hM(#Q})mN2u$xUE-mmAE%S-xn|o
zf!XFa1R)_Ze&`Z-HXJ}1>9?HicFmH%ag_%bWRt1_WY;@w*cZW=B}I-i!gu-b(^eUO
z@178EK&A>O?hS5ZeFZh>2z_~;^-_sk*dYqt=Y`Kvry5c@W>i?%@Qr9wSib#{X=Jyt
zlM}?n(+KBxz7pxRc<2{G(sXq{w~}G~h@mIH+bdWl3~slhnKk>9d}tVy1{rLg;TR8^
z<0@TXS9Q9mN`g6F46=_tUDsF}S=5%I^)0T2pyOSILRB)3%?DJ%E77Y9U`B|*;?Zdh
z{j~dNxuD)iT-hfl$L{9}$Ft_$M{X<FmEl5;VE4ADY|Mu5Fcrar$&H<oJ<zeU-8_}v
zL5IqLJkGhTF|HQ7a=tD`!^4M=yvwE}7R83oEi(GT_3NR8d#io@_<f01odOS+u~j^7
zs5s#%rGME&X(?dCvVr1U384L)ocg0+t^I&o3@xd4ffH%I8m_PvyRGJpCZEM29dw-4
z`+#8`6-E^Augv-OeA?}snr(Tod&R7d8<y4T==IHx<SDlu)jigEgzE}oFHV3_XNZis
zJP~%PKG43{zc?nBPi-g+Yvtsj(bEK_bo*^OP>uOsJmc^qcN$S-*mJ~~czIV9EcOjC
zUo31Xl{##JqPCfi7@-(SnIT9{^(yrQF1XnEUj6d)QzWQ<q-Q{4p|rI$qNU6Vt7TPT
znSnbPEJ%<o(2JdP{2hFIo?zUTc}5*MG20?iM=xo6BMa3{&kD|Z8xIV1=}d<<S3<uZ
zaGU1Z8EPV3c5V5Q<TQPqIiE*+#_o&r2~V}>DAA^K_a+NwMagN|l>yKl*2#xV&k|iP
zDtjaaj^Tb@Tt0VQr@e^Wzf3b-YCGxL=#cv3Z?F)AJ=gCbR!MD%U=+jjA-pfri(hS_
zBKi8H4>Pqea%sizsd&Tf)G1Jsb(?nMp-#f$3!DcTo-k5@K|vZ7^Tzw`V5CwLuq=6d
z2{Spl$i}hq6tHM%Pj`gsUMK=QhlRvo|AU6z(%98vPa8JeE_Jtg2dU=aVxZ%py0>+e
ztix*T+%5eJ7USh48XLB_{tZ<5hr9BNY(^g|mPJ5Lr_?Ym!nDbacOb&5RW3Z3pCRYR
zG+2tBx(aBYLvJn*S-b6STIy;)ovv>|^GU~WNPP&+Pj@yQ5;PBC&0VY%d*3WQ6JeOA
zJ)dH7Zv}DyN0*h6!RJ29{h`APwF{ob&Pd}!A6lJkW~*dS7RQ@zZhB5`Jc#Cu`M-_L
z)PelaLO@7+?xha;KG*Asqst=>KYK37JG!nzz<}Jtr$YxL4<AnAF0Gd>i)3Z0CldKS
zl{l85jOP%40&nx>)Ly1Y&|azLPb98kpofz>I<_lB1rPhG3J(Ht!Tm_M+Nppc<n$_G
z^;w>k@81^Xwquz#Iq#+Md$XK<A}Xd-au^%B<scrxm)s90!6j_zOzo`p=E$U<fxeIR
z{x(VP8+QVFdiuT!t+~*N*EY>jz3_xKUxAwpQB-I?F&1flNcL}Y#W<&#;SZjNMfIxw
zbpn*ZB>Gp2Az!RqWGV!<qMdBfNUvg?$R5eoapyV&m}id!a!n7$XFVCl_?qyV*#|dT
zE@y@8M+3)e_WeN>3(SVocIrTr<PCGmEi_+woX{Nb3R;|<?V4Q|b13HBeX8=b<yRTb
zGWWZgN~sYVy}KJ6tJ*o`in5ya!n03=>)I3Gvp8s_A)e5hulIoGrRo~}L^zmVDzI;#
zbTH@QpWbphA&K;YBXs1Bqx+XsH146UDC;-B`Vql&tD}iz!?5y!EY(lmiwv$rC)k=K
zPeC(7U}Zn}N&Dzt)J35QT#qIq`>WS3I9Crd&0cQT0$42AAl8Axd#pBvFtJdy>e+yT
zR+F}pY-Sqn7NT9~C4Pqu`5jTm2)Q_}9ik(z>mN&#c5I?V1en~LHPI)B>ps!D-{!E|
zN)4ou((!|g#3o=MtFHQR@~Rrqu<{G#I}Eu64GD_ZY^j#>yStO{3bs^Tp|bMZ`%BZB
zjFWT^TQUYx^AJKp0;9Z=4e6Pm`4m!T-(OF5n+a^x+;oE~%$V^RD!XfD&2)QF&Ps57
zx>;55-!`<sj8-5$nMeTxP}>LTcek^Kk-MEeo66oa!2?7GojePRHiPY*(d9rCUnL{S
zWPtmRSmbPWP%YWlhUE~#wc#)#q)^YWmZcwCmYPD|i66tmV>{TmF+}M$6s^z<x!abt
zAS_3a7=xqD!PH1wfOV_HeYkupF!&+o)mVj+?t)a9eJVOpC<j|warNpltKROb=N)e2
zHEl4<{;R92xxO%qNKQ_+mtA_qL5=HIr73hBHmh3Xvz?2u{KpHfZoXB3U_sKa+4wgS
z8WF@x=Z^Wg3LVCKf)0J3z|Z)H)SBqiJ9CbIB;XJVEXXB?qL<P5dtz|BJGeD-B9y?}
zKjP!Z7$xN8AXMK95vD8P*lyi4V&4Hp{&EE-mFKcwV4AoEfIO3XWk$99_6z(a8U1ae
zy7wa_POD-VzRSjX-mkWSgoz*}ssac1KSDnXX1LY^Eg6*nj4EoMlsUD?JzhQQ+qOpm
zc`rvD19cyfC`-pdD~BNCzLwnCJ6p~mFqC2Mq$R?yX2OhQ%*FQ6mR_Ww-YrO>z(XF-
z2~N@XA{WcDUm~A)B6?GEW6XZLb!_^I%~^8u!`Y3HQ=uw%ca<axJ3^mjW&c&4pY_oO
z570ESn1cuRprF?SSOAMfv$>0p9xn2kKA8Sa#%l9ebDJvZ)5Rf>VHy$}0;IAXl-f=h
zF59*DHMj?EksV^3G1&K<B814a(r#iz#XNepY_-Q>(_<Qhn(JG|(CpG#$Uo*p0ObVc
zz^PQXb}%P2IU_^Kz52as^p1{|;(TIvabY2k_wpXdTu_O+4twSH{@B>`*_5Qzrlgxz
zq1WC)m2Jrz$Ya;Q81f1Rw-CtypxOU9qF46nqhtI##O}X!`ilH;wr~BzXq}%#d!5SL
z8E@LLkiiHB-pAc1J<sQd&fvtukdCWRFrnd~+Ha#V)N)&U--i;EV3$6S&9AkO(K0N*
zM^ASY38Wxp`EZl(`sxr+0QSI%BYb+QeX5Y*GVYGGW2Z3i2pDh4Yz(c#(4R#FI6K~H
z@od(5wODfosKvH#@v0}p4@=eRe`8$!Mj3#hw6LMobz34$)*u%5Mt7s#=H}v*)bb*Y
zqnh1~BO}k71tAP^S(-g-%zYU;-2i6<4czz(yfK2@)zvi&oZ84+i)*?_JC&SUyzl<h
zOMe}S{zt>`&#vE}btyc60n}$*A?euubl{pFfFTcyf~h)Q8EnQ-V%Tb6R=p3%%4Np#
zX7uWw3>x+)1+sf4{9ggZpOs0Gr;P@P#Rvbd4ory**)WmtYK&4L*ZM=}t>tNZ$$7uZ
zy9>6FaS?NCmk-e&bRIg4HmyBO-{wEaAf1lx_eZ*#OP`V1hH2mzS2q>^w49okYk?Js
zYq;R*|J|A*X#nALA$b+}O#_#=&Ls^*%wOC7s(V3HS<tm7B5v6JWpFn&xC@HkSTo#U
zFO++>PpGfJI7b^%bVygbo+uGlKfp8hkgtSwAEJ7^Y@-9PprH2)t9i;cwF{Lty@zt^
zp2W1oZtJb|uYTep7RPGk%VKTJi{W%5SS4C@Va0|U+9e-V0pylk5p%_S02iSilOblA
z@_^fW#ID^hSABh+3{$ZX%krg!HRf83@6AXJ&f*lKCc^tiVFK?-=N&;~eguiG&oe^)
zDBsakHV#V8hN29)+!bF*>ZuCxu7A{}dtHNdjS#A8X8GY=io~2IQ(lDJX6(c$Z=}zT
z`)q$rRoy4F0|D`jmSaxxHAmske%}*n8p-0BCUDvD<yFI`XW_cuGk@Xx)8UQefRjs{
z?OJ>xAmE!y%ub5-k74V7dG{fy;HS5~=V~X|zue(1{p;82X7sGAN(05uQ*kszrOkYH
z7MdI9gI6g+*G6KO`GH?)`$5=SiyyGg#dylirbn-+`oCPk6CDdlRV#~XpHnVt`dZm_
z3fGm?K0A*Tj&9|li61uK)YL@pFieLM@qyN!G-vX4gPalp_qOQGT}$y-VU=R;m=8Pi
zLGPQ{GwuR+d`UAI@^o1VAUz0Yy?9Olh$-E5kLD67!=(@mPS-3O92gkLg~71yo(8vf
zgGP)_l0N7>zQai8ZkZC^;XO0GS=>*wTL1A0Xe#47_vSKqWw1+_Rolvez_GolB3SPi
zOMYQca07^$uOhLmd2XcwbA@f+#fBbU@2pr?2{Obsn}^E5QVjOGkTR($RNE?>GP&$=
zB!#3q;s2vtc$+_z>UD^!I$p>c6voD$Md*StC3WavKHB@3URow-bYj?a9?=_lu55`&
zjp&vK8+|YE=Dpanc3TWq#eZLpnLO}d#A%_q3rLEahJ#bclHk96-45(OBj@hU4Ny_*
zM!ux{8{8qa0DiUv27}Z!nhckT#cqL=z{kgDf3PtlBV&H3uP?gvBQW~P8cgGh9kGbB
z3j@GL>`Ybqv<rXSr&a6$ccb2XSw@Rj3+z-rVgq!AOu3w1Q<e%hu6ts>l7`zm4Xzo@
zx_jw+0y=z3W;eUy3iazQqDMVF=ut{>3bN3~cb@%1qRx|P6uhp{fn9PL4`Jy%jjhgH
z>Z`(4?&m3}eQVZEfsBklb3Uc%{t$YdYTS4kol17c_=BJBH&{ccI{4W;XXBXpbGBRA
z=#(OBn_Uxjxnm;@37*`;tI(gY0oYSHWqXKOM0$uSrK<f!r1Y=&bq-dzpLOP#k|>5J
zd}N=H=O(L>ch><?Mmt^{X5Wbc@nnbXPjiMA5pw5qLe#DL(;e{~D>ejtq&;X7+i$|w
zi{~`4JBr=)$#ID-86O?lL2zAz&qCy~wq@{sVZbS(-rqbp>FAo0Z9sFVRBdfvtP{`E
zZuS!7G*b1kK?Vh)kLp*F&C@MMl|k`OIoo4^=u;^OX=-y~_#GfK<%o};NZSmVt&!B%
zarlBw)`7tGhAe?yjziaZ);GH55|M_!;G5H(&4`Q#<X@L$z-owp#TiWS!Sz}l4~Zc7
zU%m$PxPj)ljjldH+22`>f9>3vFEA_s59a*ZCB`ymG#U~2yU_2Mnf?G1*GyYW>!pZ%
zff5D=#%yU042Gx}RUM-NF#RxnHO_M?oC@mg0{ZkLPqJ8ms5Z;}mmRr^CSY%c$aAHU
z7pe8K^o!g>UWiy(f_DE_FsZ?0!gbrsr7|hG-na6%v+>q1_*0QN=H@|8{Z55%@2q8c
z%gva5Ag2gAiQf<1zW~D@EtDx5gG(5n+dBcB-%0pf7As;<J>SdOLe;tuM4(r#h$nDU
zgH5h@HKnhJ5VqU;n0h3Nf^iUB>wO&hv+>qY#sIC^b%vW6$~KRo)Oz7N<8zkFHQa=>
zX(8rw{^Ny?FHovODOb)N{T@1}cw9)w3A|nfeI9Wq7y04#`&LNRbn^h%8qM#ts{o4G
z-uob}<9+MF@%{t-rnFBjZ;o5uZheN0C2oC`7HU3+f=Lg)7fVQQ&TZVw0IW9x--U0U
za9u4}J9>Pre#^f5^93T{FFdbna%KgJY?YP4E?dJ{GA2tR2vjyHvr|;iWLr6ZtxFGv
z4zBEOgfJ}Lw4#ay-8!WKr+)*r|HFdue`N^H;sv<U3X6xW15Pp7eu&VMpm;xQ7a<hP
z@Bjotxt>!>MUG#b!-;_inwxD|WM##bfd+kHVWH}`nAB8xFq3HJE5JOa)8t<92JLSH
zY^D($Y!A##TiVe;B;_x^E}EZe>x<2h3{b9j3wDVJRX!dWS{knyXO72XGQe|GNvgEM
zH``y3tPr@7PHctxcGB6N5|lL4vM&m{)zS!dxfgFXQ+5)Gy$e+ywWSB{f1JnUlL(>h
zk6tUdUrr}49g}ld>r2yNDtLB7y>boQ3rTZc3u&eYbp_DM^h)~>pOBBZ{JgNO3f3H}
z?VGOG=GL>D#N*^M)Y1aRNw0t1V=YU4o-EO&B{i_<UjwpM6f753Y?u8DVlbZ<`zYD)
zA@+<FruAU?;+{opi3xPtDCVR%a*geL5)xoTh-&}ihQ9m<{;cD^PSShuI6>Fi%%xF?
zMG)p+R@J}lqyO>*7#|In!iPcVQh8m9u;Ev#m~?AC6%`fj4GshQsO5Np3cPt%SC=?F
z?)+2w0v;N{>mP$zKL!Tmc8l>SvtRM?>GBd6A%gLKCb5Zq1oOG<P>H=3`}Pk{=sc~m
z_SowY9C#~m`L>#^0;k#GZ+cONOPZVvh3SHw`@l|9+<TPo=!M3%jmM#77BOHlif-!j
z^Ew!Zsf<<&r$TuRiD2xhYlJyHGL7qs1zs#eiaQQb>CTB)bnHDja<7r#M}Vf4nbt0t
zyyuMVy8oDx*JWgb?aO^ZQRSc!H<v9}q4J1k(^)P=#rui<m|j%Oq(iD?wv_1&DC6H)
zb3=`KiUnxvvWiU4F7A3eNwR)#pBQjVV5{3P=U>+N3ZtsxS(^Q|VWj?m56r$V<Zk>F
z)6)|kivP{@<TQFNjS)Tlht}2fU*ov{`k@bS6>d9qOVZuSTvp_^oqa7zXG#SE9D+OZ
zp5s-ZjOUsF{gGBS%UD$vb2(R4K_TLK1`!zij@H20nc`+0&kF;29+%5zT9`J?IfjUV
zg(XtUzo6hG;m?Tf6|7u!uskA`%X1r@y7|$-PDLb1Eki0$pHGlzLH0Bai0h?7<-A5~
zCz7g}z(ctFR_VGxbVUQWTSM2@n8$v(YA!)lB+p4i%uM?OHrbbFK>{`NP6xh`H%h5A
zgNeT^rzhGFkB|Hf{I5<Mhm>2#2IK7#MKIW$7kpUzH9Z_)ZEw%LZk8jY`m74E2I~nD
z2MB40=?e~;wUxK8k(gZZ4zh++TQZfMKrbRlL`NP*oLBvKErm_}JlD#42@T0={}k#(
zoA4cch@%hZGw|fu)g7|&ErO0-sibd6N&f%TbwpqbU8^ue|9=NW>K@M3Ms55`k;+eV
zB>)%&GM8c?tkaVd3&6wq+I3HBrnaeR&<q&?Obcl9OE?_J^)NJ0(9t!u|8DCDQ^KP#
zOJJ|#$vD7PL{wFkO@@!0ae9tuLrlK`6FTpLRNLj1O{RF94eRcHW)(*6*-uvjW9dM7
z8$Gr@sbxFZfrySwlRtlw1WNV^NJVW8|9*Lp*%WkJ(DcKVrQtcgn2`f=<-*+DyIPt$
z!+*s}(!4uEMad<nn7_!R$3w<gS*?2CF6Dav<$I7dEe}t<j6T5NrsLvD1c<2x^cko}
zJkK)BW>t5v$7OUCea!+AF4Z@Lk6}Iic0(PxgAxPMg|6}OKYG~Qy(A#ufKI+IIUQH$
z|5Gq$>SJ=JzGa$f_S1jcs3*h<Bs~19+2B7u;dVf-LWNyf>x*6g<&#QNN5W#*(lo*m
zqWlp^ijKE2f0NQ@TmgongI~fUAoQI8F4#tg;hw3f#G>Nj{r-u_1!@cv$G_=Qm!Lg{
zX~0bYCPBb|R#;cmRT2r@f8<(t-C8=4F8gUf1G>7ploD2@9mI@TguH8{vxhcYu9_RG
zWY|!XGCq1~5LX&C)KIdBfz|2l@3qPRHI@XQqTur5b4JD7z)#OyO@4Y`U@7=pXgZhz
zxJlAx0do`&WC!EgEYWYSgX`nA(|x8#Y%#U&X%3x!7QfvxR3lP)_ifPPsHv!if$qg&
z(X8e5#s1tj0C>uO(qc6@7ot+{S5=5D=O!A+UVR&VtGY>+0>a+q(OQ`&9#gX}DJ{u+
zoNE?F0kge#!$?m?2usf%SOqTRumN)1+AK*rV7)EOYY6!kUvv01XmDE+hgze`O@Sub
zeUiLXlN;y#xW8b*KUe^9s@g_r&&o$k!RR9s9~Xl;Ekq4gGz?6g-i72C*IUe43dc>N
z?-w&Q95!XgszALZ`8e&}^U0QF^%SxkVAt@BX>d>)29C6N6y;T4?qgYZcw4F3>Zxd{
z*rW)N$$Pir?sjCSPTV4<?DaRlcp|pNIR||!Db4LyoeRRS2=yWT&OJ%lTbNNRIc`MK
zjWp14Qw&Y{Y9b_%A(-!$H{QxVtVbfHJ_Yt@+Cm!iK(gsjc9~x)HPjTYD;qn9_8|2;
z$hwA`Z2ljff`31c|0xodxM_zsfP#WX{&O}=YUsCbOgfdOGO<b@47jHO2miKXm<Sq4
zRcpI}o*olI7=SfG!6DZg&tF<<fW+C#yv{VF{Od?=8{NjcZ1;x2?yH`T6vmE=*8*B?
z0{%;k{VIK})L$hfd9$)$k|I-jMoK4PvicpoMe9r}S)N;0%WIRgk;jH(wt7}bXqYWP
zC2<{S-K!kfIx^bKDn5Ua!+SY=*v~IYmGaDn;=VFF2d@{1l!zUQE}w3Eys1vV0>?_a
z?&#PP529FE7g=5|GOnSXKR#H!0F*v`M?a7Io^7|`P7VGT>{(^^f;$c%Hf=u$RIi+@
zqcyH3&9e0Jd;gH@5_V*!Y54;2sh;6pMy860pp~oFz`FDB@RCt^xA@_MDNc6#XeW*-
z7_I{vFrv;V9*Rh6PahM0fC0n_&<IhkA24FWb@BIAa?f1|2SkmK-BP1PM(?jeh0*TC
zjGwL55#r^}R$RV#9o=pbAK02rX_6U0(EIKz586J0jZH5q8SbJ1YNzb-6hM-gi<oi{
zrn*K*2E-oP%{oy#n)+r~doG0dv{SYF`LF9)st+k6iEYU~jt>z|%77la_;Wqp2m;BO
z_sF6@!&c95Q^^>d*VN+7R&%a!-zQ*3a?y1tov130I~2PBJbxPju&gnW{fUOy(OWPb
zR>lNiN|A!wee1gkG=u)_RQP{Bsp5dM)$!*B=rB)bb@7i!ec`ywybMhcuBV)6qG!wK
zK$p>mYvCzE0+{$$ezRX}Ip6U*-^s0ZlbX-s-1v*p2~S&2Q>;id$=8%P2PYm|*6Q3S
zr~h4*@+A?D6gk_mBPqG(IlT~N1aOd}IosvAahBDtmN#S;h0Q42&$oTh9U$HPv=C7t
z=IGZybC}Mp8k{;=wg_Z`wC=K#&gG!v|MKl1E@06+&*Wf@4it3mpKqQpGjwA-TN#$7
z4eTwYxO0S5DO_zFBoz@)PWfDM*YAD`vf4brMH}Gy?Hub3)Bal!)cOe?sjIyFm0P2X
z)JDx2nOG9fr$B|8P^O1|o3zW|+*whGD3p=mZ)0Tvr7}}0xI~mLU)4d82jAy~DSdGa
zVEmhBKMAtV1lM^W*9yxe$5*PMf+D>jicAa)@!1`p_TRu}zZs17g~*C~ao^9}%=KvO
zk596Wi;Ju{iK@I$1`AC3yj4CmG5DE3N$nfZ?_lB;VtEkya)5Q3$?vexgLs#C;FstX
z2v6K%dD*IfI=WjB3I*Ts49;aKK~tql(0`Wu)=_0=Oc?8yQIdwgBW9c@ns5iJ_OIe7
zh5CP&wbJ8EXK<@d=QgP$qW$p$PQ3f$KUFCIVW0R@WI^sQpV~OE&k(`l{?ZVN`6^2+
zm;If2YI*^IwElrzyN^`V)GD=hzb$~g=(yNeF_6+sg^3gapDR<cd`$|7&+UM!_f<UL
z3C>ef<dNW|iX`Guoo}MgzQ4U3;5^%%ih9b2Jq1ndZKcyOUi}TlfygcaEsk8=gDg98
z{p~=K&9SM*R)^U^?PZCmCW%7>E{%^TO9fnB2emri*GZedu19O%?1;VIUB9l}11QP)
zQFhH?qqX+fT*W>XJ!+&FH<ZM)$LKhwvyDsrA5G3kCv!%-b|1yM>$T%*JR<6}4e$(9
zCcLarYdd!r9-|k&2qZHM$bt?&$J+afqeU$?${G4x736o+y#<D2cwJ$U`W9Q`$yL6`
zc%tg>a@W|fkT(mmUIV<?uSsXMN(MQ<gqXn@NaA6(7$14G!{jhR@R6+r%FXn}I_oq-
z9aPo!e`n0^&=D+WK~2uziDtA5&{NFP_`bfKs5cJ@K^p6ewJFWvj&v!0qheX%G?iuf
zduRgf{MJXV%G=ruj1v2|HGCShXP9UfYCLtg?P$1l+jS^R{*#ZQUyNkXm!S~c2R{5@
zn0T)GUbaPlrY2*|)Q_`NKX+P2--n8+LM(WdyQo!XYJ=KqomZpQuVv1pR<YN!+D?PT
zmzY#LksED~NCraG<-0Qc5<gvgZ~7RLDs|o|hH~RTbZxp{<>0`N1`;}#A+B9@M+lWo
zEu}RHRe&KFZ@)*vK0EyjZT&x7w*OGs2zyZszeflIavTVx?xOwX>l|iVOx|CgtjEQ~
zWaA*g!~ZD%b;DLA8{G$__-GWr-3~V;DGh7Azeu4GO?_>Nnf3g1HFp#c1ew;)ZZbcW
zt(nyzC=zsRH*qHXV0^xL#dCCX%J-XVVN+3Hsi%Epjo&wpQ#T)p%jeDE*>@C{7C*r{
zj2-Nav7cIeoqr<@6wK;ScRVMkW|5c)wOEbum=$CP?-NfqMDm{FQ%Klrwzdd|{VsyS
zRFsl-ykP}E+Ks-`JV2Xuz1Sd_j(a<s=OlNB-OWCyc2i!ZQL6dZ?DwD(w1Zp-`RFN7
zT_z9t8gp&r<kQRoEM{7DXl2W7BlG#Ronigj;|w4A6<twvL~Ea&CnXruGm#?G8G%JZ
zUAg?ypghs*e71CYuGyf`*8ue*q!|w$l|l;!2mWj9uowz?^FGa@$Dkw4_mmeiQ1~}}
zrzeEK-E?e2==)5vz)(}!nwcjmx{li(jb^Lhko{Djz)e5#Vy^ZrS*rItN7Clzs~k<7
zMmgu3B)@rDwFloQOk8!Xbld^Cr5PCyx)YOS6*iqZ_l{N)943pYtgcTNhihiv7u7o8
zgk({L_BngMot6qHtmt}lyq}9I(@25mIX#K}_6?3&@J{~&*yk7iPF$>4TEX|npE@k~
z68J3=1h$P`8We0sY%$>IVGEyfBTO<_ObaXcj-1Z8ALXK<`aRQgB%WWPArjJqvxZ$5
z7|aK%)HIqajgv@G(H+FQU!C3J-(lP`{<d>DRLiqs2uSyw$$UL^>L!q9kB)3VCcA=2
z%2YZJ*LUZbuHG<@x#GO#avK{N_erVsbV>BbN*JV2nRUTqlEu<xnmne}raI21cn3W=
z3*%dr2gA1-TP&Fy#>4GlLq3faF(rW^*V&k&hh_llkzb^L==w={bdSq=(ILfqv0DFU
zm=9+}Z!Jl!j6b~ee|co`V1aaCvk%d4z4(w@%rGVa>D}V1xF5RBp4GVclj9^8csMwH
z(NZLZ0<^PpbgZn2Wvvf7OAgVJa8$x@NP)ry3eWX*9~IZ>OKFPRn2Ia!>F2-Hy0qwd
z{8;B5-<|Opd@k)@XE{?Q`#F&eTsPAl$~Vc9m{?kfl5Zn4n5gkk@mOaVBF`s>I<W_|
z%4~eEXVu`dzW6YYV_a!c@ZaDEC852aq*?q{a#$enQ=#SXrn^`vX4T$Ty5R*$t{CN<
zglmi0ubPRPK4oj~sR>gY96ReNr9*z&peP=FRFZugzuPl~>y=~tw>+^RQ~tbf_l-^m
z-!J9ljbomtItL1pg2kZRqUY7Md%NgyZQ0@>#D1lvJ6`;St<0aVzPcs|kKh}uFQa#i
z3blAo9cumJ*6Etn)l^v}pK|t5+~XJNAWq-CuGU!Sm?9vw&LmFm)&|Ov*B)Wwyp#xm
z;snT_VUVkw;hKA$<0_34UjoT|0-<4zfY*FAmdfu`R)&OK0{K~ZF1J@PcSjDD$C0TE
z`pP7Q#GcZgPg32-({6lX*7`y@K=p6)7-V|cu~-eGGT!LY*Grt${gE7vT39{1dqsVS
z!!AEu5yMTUFwT5kT5I>Ms)`Q7L5Fdl{#}0N3qx3AIUz%S-=~lAe|_L|%XlC^hwL<L
zFUu+_CII+*X7}j|lhC!z&8cm&?Ck8XfOkNaN~N%wX0qBhjTbehgXZUXPXu9*sdxm(
za}x7ahyb{xCeF!&Z2FC41{PmbqHgG7c8Z|iphRWKyT(O3yGPfYi`m$kGjosq8xEJP
zwFj&`S#6o<Z`$0NvL{aWli$rnw<Zf8!Q1SRx-|y-4}^(#bQ1OH5cdm5W`P$&A@@Cs
z2|ugOD~<ZR9g08qMHqqne*65O6Y;Z@^HVX3O@yCUFur9O%{nA+u(MRj`dX$-Klhf^
zwyFY=zx=)O(L|0xOk@SIspSTH{c>;0<t~Ok<jBKOaq+uz#(`|@*Nr?GMa#%L>t)+p
z7oxpSPYdS`<5jl%ErBHy_%?-eR14@b-*c*MHkFF0b!n``*fM^1`Asrb8atZ0->+s=
z2NYrrXGu41^aBGi*`L&@*=?vtY#Zr}TGjf)9nT*WSBEr6UJO)&*s?V$Z5}Snek*o_
ziG8&(PoN^^Q2c;0aJ&IE2$iIZ3b$&su>At1u8t`vCC=sds)g3thu0E(l}E;49MD&-
z@{MKCqzSfG-Sw7dt``kOBR0KteY|XpXwP*!Txgi7ww`(;d1@2;Uspcx+Au-$zhf77
z+S5KL4`}UJcXxMJ`rhB%yfqj2>yttXw`iM8YfgU{`g^6ZA6XzOF+WjYRjuQZ1{xGD
zREom7-x}w}(!?ja_7*QI#SN9&#CodcwKn(ejHHlOYG?eSpFx@LQpIS-RKF)@k1TFL
zI<i336&OG2@%U?eYb&OGiH9z4uWO7$TF*zyF7jrb^La!4@1#$E9Hax6;#-Wu_DSSG
z=R5~WpJlX>vAD%%f43rotYT2g_?xA<Wb6%kFPOfAOcv@ttThtCj5${pYUA-fVGsp5
zn9CSyi8f+=4zP=6L-LJnG>epnduHVcsOwu<I8yXtVV+jze|z{#WNM>=OL9yD|6D~f
z3y}QdMr9^GDv~H1b8=hAd<6S;XCKmYk>p1C1N}39{<~X~(KkgURgv;>N6JdvThHFm
zxyt|9B$I^Qt4^c~pnh4h@L}f%=W_4{7|dfG!ckXX4^Zpg&?n)MJ;tHI=v0K(WCe{O
zN){++WMH_Z*fV8j@or7y6CtqE{y!e?K+66W(h!Az`M&Z+WbDR|W=;?9oA)jUXULyk
zEj)g}f(fszc7<F=PO4|K$vI2k5FJXTiX->`<M#vqfU<-?To(hbeDt5|29FHuzAkbl
zw3<dM9nx*|KUY#X2lK}e1Fq%=Ia$gy&)*Gd-)wFKa#U_jSO4FCqMQ|;PIw;A^PAkC
z*D*{7f52C%nNu|&`9F6tvLs}i8{7P;BjecYrkZ+@e|g3Km#fq+3H;;l_$Z0c|JNHX
z98NKOP>%H#(#tEeC!jit=R<)}64R}(N@qrmfEf*@&8;V41!_PxOu}6Z>V$*@IaAZ5
zxcGY0n==zCK0YOYEhz;AdBz<<^5v7+MFGZ-xkEhz6)o)|>rhQlr0PDcTo38@^9N;f
zsCr%hxGKZo4=qcVVUPgJUYEO`6@R>4EjLBBOZ~-%k(ju+uRYj|jGCo!K)>U+BEYb7
zc|aGs%dEX7MTTb#*xIt7XE07WeJ3D9qzS=<h}T9ZsZ15IA|_(r-NmWL?V$|@II91B
zjg_U~Iz!PD0qxAL4uBhttDE?)l=%j*aMc4*@n!%}`~+}=BI!h|e*p)?#bMV2^1d^d
z<7ty9?V;9oPta3e*?D_Z0-%PkmDDbvOd8cpJ4lF&{{U_WW&m?;G*5wW2JqzH9r`^M
z_dN4UEML+~h>QCH(4OdkO=O~<E$Hv9Colj8A*>xpC_(&R_nrV;xi$<E>U3&V)esU&
z2|l%MoV?M_d>OkPRXKn6jbtpd<qn*k-c7;L8e7KmRj1^&O*|Pu-H)jf-_JRfTHqVT
zGI8ziakGsT2Q$J9j0%(AKXLEqnV8}LgW9$&2sxZxl^VFE7Jh@sx$6-+;B3kjaOk;~
zTw4w$y{fSgNM9pY1Ade`%Lt=E4}FFS2pR{6)p?%pm?^XoIsPCQJ<gK+`ACoiQ(6u5
z{tTZ$i9lQxSblbGV?$O)=gZFwAw!^;RkMzIhWPxm-`y%{AhLL9Cpj>^(Scqa_mU0(
zzD;dwA6yU#99t)A^bwj^91M%5V{3~9z+~4^@KF^NO;i2y#_(f;$HOGTP*_T@wDIGG
z(gzafn$33%zhk%#1MXelMgQ)V87DX2dT?xQR%1Y6r*d86#7yumuS0c}U8r^2udOJj
z{Bv;wmM9?i=Tp1pF%6McfUPd!-BCeKWF?Tn+k6(Yw!V%qKM%Z_3@R!rqd8LO+CYK#
zGkxEqk8uf6>(v(Wy!&c|BVfGRbujSSuXgMuc7s1pQWCs2m64YpAL7L(L!2t?aN7Tw
z%yE9rM!7qdufz$v0w5wO0hcU?#2GIQO$eMgE5-a@B?gEF4)}?&nI*0NU3}^g1+4s3
zz$D3FT9>F--Dc1v0jp6FthAj)V9vE9I)i>i2L{5e@0aVLqN}N5#!m&KP&YBeoj4|9
z8s=ILg-s9soG)2Ok4h|mm46Wlg3V@YQZdxgv3irs#40CSSu5k67=XC~(YenN7WdX=
zTXmG|**d1nO;D$U&2DTGkNRHzP5Ee*E8*^rfi)Z)B=S;{G9ZL%80af{Y-NSUZ4OD7
zy$7J>%vvGO@hPxq6|v<X-m0s+$FmUvgM%-6kamRkYGq<^7B8lb01g>5&{T*894k#d
zHwHNM4sFQdXQ@;e`e>SdQL+MX;^$lpMT-uedSDGT|1F=79gUyjek{bgyl=mIlnuTi
zG!QDT()gZlJ993L$S!E!5A$Kq>64v+-?E90|H~QkkC<c^i62*pP{6zGX&O&gGP54s
z)=YMQylVx9<E)x+W}O|rFK@n=gJEUC|DLZvGDQWZ3&7`i?+#FLIXI{}IVXy50J!BY
zwP2UM=+S$ROo6Lak9y$cF`!7*_zGSUyyp7r4btI<MFH#HQ47QT?`;|>rmb{B=z5<d
zTR0c0+8`8_w3C}S+O_RWcNjQO1v65M2~|gvD!AA}44~kroTZiYZtmRIsTSs{uso38
zhaFiUxe2KiYYc`aUGQVECND4ZJ_plGFRgdJ?1&_P{{0Yr>%Gtvm9i#W8m~(XZMwUt
z;aEZVXSLnQk}(6WWwSiM6VQLHAJ%re@p!-Z*cY#9pk0CrEvXDg2Zmr|fFWlx9sBX3
zwspH^WT^RafiVf3%?S&4AduBNZ#IFXJ2*VsqTJCKnUF+|x3$+{n1NH64^#23J!gkc
z%txqBE_W$$$7sd-_JuRw=VOi89zDy!3e3z727T%P*KWtZF2}FWFb07gr%`3qRuldG
zv&~+$@ozo=WR&DJ!4gvUC0L)b4_@+%o25QhN%27;Z2(sBo7k(w#KZxBje!4pbw&6K
zNx;GHM%^Gm0IFJ@G}J#GE3D;aGQ@xS$@?OiwlcVnPuUt8(X*(LI3NML62ObRm-w`W
z1||Xfr--*B_v@!6{tEt8A>v$}Lr&kymw&14GLx}h!L?1Yl~C&hTe2`PCdi&29+6O*
zn!GPE-7wdNFJH{%_l;*HS9EP>Nz35B<EEdlP{j0#iaV3Ypd0$wx57e?ttk_LX&tPS
zl@_Wfpr&V*TX|fIfQdoOm@9!GtEZYJ${ISbM4vxkpV3Tjx1Q|qlSgwPvU-4;{f$T&
zs;gQ5;BSO}O5<cI*DZ!nB9|DZ+nZ;7^DQ#KxQ$lI&?WTl?m%7uw+at8SCl6)zTksM
zD9R}j4HEGik=ik@aVqVz5yqIr3b91nsnRq6_Nv?Ky5iAG*Pg5UzV)&hSKYWHbg~kZ
z>b~+}63X7Ob`Kyo$EToK!?i#N0I+4nZw|fM&TC@p>h0A;O%8o!*|Ra2#uz1Vku)>z
zk`7QMnT?46s~PTOhY1~X9kO~+>xc6G69G~2ukkOLyYR_zN{jgQ!yY+b!n&!{tob;Z
z2UTk(hU`&v%C1M?y;af4oVwT*Ha`;jYnR29SgM(`JN0TJ^*#zfi_p{3qBBo(Nmyim
z5q%B#N04!KPN~a*(8K!m1l=zHV*AGhAuNAc$I>-89sXWBkwxG6jRC_wfa$x(F(Uc9
zB7r9cR$tIT97OnkuRfsgTKe&TWu|bWlRRx77)RIM9r>G&ik(T-HVUiuB=Y3}XzVuB
znV1P7H~8cr`_jcM6qDLBL0Sgi^Aq;IJWgU!BD?pOwLF$;_%JZKoo=;y2(eqFjX{f6
z2%U(rb_L3z-U^1>C*FHiYGLQTgR>IM?5?0?S?RF#;T)yttD5~>I=4jNgeEoXyvOnz
zF)A)~pM;fSoA6<DHOc#zenWF*wkZAJ5a394ci>KoNvZff_SUrOd75X9_v2`1!(Cgz
zGcy47cmiN@xAwcf!k@b~>w*LEutKpzESZ>hT7k7P&uakH3L%@YJ8DB#;sB{3qyQp>
zCP3={7Q=nbW-KpaA;cfY0COKPibpPi3Bz3m`UELH3$#GO{<{59faHiFo>tK0=qDZp
z1H8A1XD6!5M~=eUg1YmS*^-BanU3RRhb!GsXm40f{K;hDL%n0Iw3%gktFg-<YJ?@@
z;8mn*db8pl3Eb|y@(UayhyRbS_YQ}1YukqrVh{|XMeorG(Ss<_gAm>5Jz5f?*U_Sj
zE{K+*i{3?z-g_r{@11Yi$==WV{`T{J|Ku2s9A@Ue*S*$to!42mT5x8cb`+~#I1m@(
zRtXxa&~le0SG?hs^TTD^&Usn&DuwkVP@Xw-tc0`otPbnr(eLUsk=y%L1uQQg!UEJ_
z{9jL;z7*^r`sKvcU_CihYVYkOtkEbg*fJmmnBqWnc@?knUF?u*M`xJyAaUrSo`eMa
z*ae&Y*RFg@oO=01qRo016(kp!Q_jDuabm>m^)x4JyKg==e!lCsBEQ?j-|8eQm$S{f
z;fuXBKXwaI13kvXH;GS+yjSxdv4}WCDXOoQgo^9ytU@r^b><&@lWRtDsu4V$^F1m)
z1yqwe+jXFypU}Pn`bs)pUfwyEQvBv%Ge~vVV#5*6>dHepI?1`sjNDv#3Quu&HPHVb
z9=$*CH|qp?>#ZZ`Zl(A9`PcT3>%4eGDSGayo>#-)cFbBmY8Q&9B1V(y?H`5zwMBh$
z#`}a&<eaKUPWJEe8;=1Ya(<xOvtxI=$vAG`rsA<#5^YOq<Z7U~Jrk8YOr~yTmN_e~
z;+4UNU@l%6C%5kdKYuY5=r48LF?^q|5?!ZkIC&C<mB#-<Nr{pUrE;KXmXeN-CF&@6
zS!R|~N)BdP)m$or6L4-o0mGO_ED{T<n{eEs(^k8r-)kqMqssC{AJj>!We^LDPpZ_#
zopcz%qpO;((OKg<mu6Lxa6L7c%&MV#*4i4xB_#G}aAeJqQeUEu^V0lgt9&+5VLUnc
zi`aJT*WJPATWLKLKO};wywIK#(ZehgYl<;cz%jekVhZZzk>l!}x*P`k+>j?hz(raj
zn4lXuWXHn>mBPE@Q8-a|=K)y_74Y`-V^w8;Mn2+ENSl07Bpj%_qeq!VQeWUGI-iXF
zfyb;a=b(6&U#^3P^^gg#-#xcku}b}8&~(jy=R1}U(|VWUI@Om_ED&1}>EUXr(0QdD
z7h+~Q+wH9vWqI2(QDTkhbn{;?=oUU@(5aFY6m<-^F=`y<qK96V(1pkgT@&Bd9*pUu
z?dq3?);n%4@v8StWzFA`$W)%cOUA|y*sUPp-Pb}3l^JlZd}9-no@Fa5(Hk^y{wvM_
zcD&IhHy)OyrY$Y{mHeXIQ?{#cZGt3gJg6wfT9>xEzN%j?glP4&FKo}{>!2%g!1Co}
zElr|uCH-$m%KIGGOB6!&?&5Hb1}i|E_l}}5lm+;IXH3W`-&~*6mli@zy5u;I>%#e$
zi7HpqgJ}f>CQ?`-81BIDq+QR`88)*&q1oBG+MjWo3IYT|Tar|VVn0XD4py|sZ@U@!
zRAF6P@x!;r<7V0y@{Oc-%I5j^TL|@rs)f&2X?|Ss!OeiGDF8-ESuzO*{7Zo0SU_*-
z`w$d5umQ<X!g88$p%<=fQp-TR%yg^SA07e@FzmY?SX61#eY||*J7-%L8%-yle6a@F
ze9Ta3AmT|-$~s^i;PUENI85Z)=_(y}-!2z}&}Eic?EX7olWb)`n!>nwcPFSKg|fLg
ziJig@{^j|FgOAxKU~QlXitxv-!va~r+aRZD$<R6se@hGw+1bBNzc)wPQ2Y=%c$v%V
zIn}Z6im;P!v;CRYt5>;{wET_tCO6XRQ7{Nr?U9*?BqonHcKW3#hF7}Cwa857-0zP{
zDJ=A3u-7Ps32yVblV#L!UfKXxA6r$yQBzOr4IuYIgGC%%33)My(bt1sQ4KGE%rSn-
z`Aa#WJw&g21&M{T2iSx(3P^noIneL$B7v0^YrBhZ@$pu`0x(HTB}qi9`4j~mH~T(r
z8A`aRg+9bxir`uF`E&rsdoIco`g=?8yWJA}^bmyH{@oSM(eGX_U>_mq#ov7A6C-6B
z`YvZH82z&;uaS*}YpLrPRH6x)qXNxo9_UIUI_gXYG%SKQPgptNQ0Q?>1{baB6;Wt=
zF*=<&JRaGEESp>+@bk<-!OZZ5a$A}hQ^D!B3T=*j?HRUsg;@zI4$Z5+Un+F+&QEk|
z=d5bCE@m%wT!r`&FT-IMFBmw1<38fl=1SEWUIQ{j=#zewG2p@N4=N59Y-NNAbRf->
zTw}r5LVl>Ei}=37mv3!UNk<D>Dj+@Z3G}LVftV^&#Tz_}HhmUcZ`3LlJ*rXv`C5&*
zI8F-I71&AVaarGGQ}7t>XU(3-TrFIoB&)LGy7i`vUwY!>mG{?*1K8OZL{2S*KW2{e
zAck?FLrdG*Q-OGwX>55)5jh3Tot2jQ`9kZ|L!2k{(#J^*u8yN`Yh0PM+boUlJNGH$
z&N!6V9=HfLd$5!Ve74ImqKNtFG0Z^8Sr(WgCB084B7Hn*CVkd}pTguFrWnJMuA-Vd
zb#P_YQ@R(pW)Xe!2O(>y!|{qoJ4to)wZk}h5BkAOg7ong^=IZL&AP`fyi<0*@*ny7
zQ%tg`GF?FX^b2??lr;;D^wiQ~@&AIdy6ulrz*eh(dvj@9CD8S*solnLB=A@#Hr&y<
zHH!yglh_6*ia!=vHcGU#_<c0Q6i%AYz7Me)pB=o87!P*<;3hKr;YW}Gbxy}y+{>on
z(+AAo#y7Le{3F&62Nerq!|y?A$z3-&S^M^n$}}kIpii$CDQ<RgT@u3V-Qx5-Dm{v@
z!~~3%NsT5`crHLhR*<C_cQN+V4Jaece|*)IuvqbZgHDxIkXFFe!zaG5uyE+GP+ebU
zJ=AuDV(@7?0(&Rr=3@5d@aPpGN;(U2cw}VcF_S>(24dR*@CviqTL92N-lN@12-bBz
z&LJ-_t?oVoi94n1L$MsA6k#_%P$^29bB<jqJW^fO87qNz?bf(}dplj6xw2I$8PlD%
zpf{L5=0GIxQh{`+vy*9aQR78g!P5}*e)eX!<zo2aY*NDFls55fuPb=eRu=)ZP;ktP
zbw<P>Y|CZVGnC!~V&w40Jw%vY0?yeZijuzn!8f^Wk%m35EN9v}Gid$|{(FC-Mo>hr
zzqzhHCP(N`71_B%#Bp57^khN&)nrS+7}gMzH4ImoL1c2$3K7}gM*XEZC(S+wlGq@2
zb5N_>NrGFh`=qwO#gmI|twBB;qQ=buEqX-xP5mEm456MHkgGVsg)G!}xHYMMo4sMR
zPfJ51?s0u)#;z1E>OHUJQy!Mc!ptnE$Yj(ANui%>_a>-8o<h;=sJ8m1`fI1~?pntz
zy+MbOo}_*Ed{=HGB0V_4SoWxDPM6%=Dx+=ABm)RR;fAtEKlK^K-+s}|2@N{0T-dF-
zzB5h!12&(&l4(qaTo{AoO(79F7WeizAd2(N$2j$dT1-}#pJ%bBh34bhQT21m-&opX
z3d5RcuLA|?a;^2y)GeG|!6_fv9(PAkoOv~8U#Da3$*+qeXeiH}P43JTmz`KN2l&<3
zrwcv3rp2eLZi)F|$-cl##(PXJ=eDZ0lC?W(mZj<(bx&@MA<{kk!%vtLIy`XqQ^kR2
zO2mo-v7U*hx9|!dcI#X%&ZxJbZS{Y;x#I+c<^brzkBbSQwkqM}g~U*5G`dsQv`)Vr
zR46^Z(?8P;Zckt&<*`rsJNSwpC6v8?j+{`8dQl;_?AiQdY$O?)XN{+Q^xF>Md<zg_
zz=4?wcm&l;h^v?@!h&H^5%}<-r;HS0PmZCAlkB>f5oRRp5wS1M`CL=V`>68<o>8{?
zXkez(FIw~uaaqv_gY_+90wOuimnh(A{tEFNKX560@Fs4+5-f$HlhfIYV5bpEnC{}5
zwW{mY?LM<Obq9uO`^!nTmIfrJPf1bfcRA3!ABL6l+}W^ktr2T9x&T&C1y7V3JE<qQ
zXApj%x?fn~wLz|-jl?@KQ1S=1+bW;sBf+yUEH|e)Sy4z~D9WNA`X(%*1(>o`d~{w;
z(0b+1(Y^~qjm$1$&aY_1rC6Y2b!vvk_2AGvTiqaD!R?iQ7|`p(Nt%R1k*`%MJ68nl
zePz@d(x0v#2%%c=>wDC<F<pXbz<Q582?Won&#}H9$doyM1Al|&v5Gnx%6U106rRYT
z!{ro-xpH@uDW5;k&;Wd((m74&s0pS2#+}i09EwJ9hA`BHfg+=}^*2~lv%uklDT&8A
z3i!4^FUKrmxtDGfLY$UJmFt&awE$4k>T43;UaEYNxK0yy;jP{;M^{~+3aYoOI$b>c
zN2Nn{z?X~gzJuCvy0?fjirjir;Ca=#|0>YldlHzF<Tb@CzClmp%B`r-C;({iZ?Ij-
z>!;O!8|-3HB3^QYQ@C&@ywuRpFw*#Thfl&$0SPr4p~h1G^+t;8c0WvoL({)yl=4Lj
zJg^|4{lx`5)Ry>FQ!u8GbtC1g=3ft4ozU*HdB6(CSTFKawvsTT!d8WQEE(QyTgxhy
zi`rHnl*#;9NRWL_M6G=Fg!~4IH4gU-Bk|0EKcid!Ua2=rE!k<Rxkb78T@Gy-SJm7U
zvTul8Ex%t^uwQ6|fA}GAW>L2=ol^XDeg1xjM%fv|_|Z21z_~;VXvTXoXSBRl**XZ6
zgL62VEW49G&_f~H-Hx^HRna#2=)*PT-^WmULy7|QvVy&zj#v%8H8(S^_&zGLr<W?b
zftLdQ_y;;}9!=`1YlY(6&Qs_%|5g7?750JNwU1OZ<N&9*{qdhG$PGb+oBBmy89pKs
z8x}h~9MQJ5n1>40q8J|AeS>6J)#N@!zRURlE)TueNV#xuw7pV*9f%UTQUi`b32+_x
zbBN$pP?e{1D2O;>+%#QG_fD#ylw#44J-qF_dCqO%m_F=79qkRV1|XsI`Qu$Lgg$tc
zZjqs14e*@U2MM57^Ta|_VnisBaU#ByTL3QpR)(=aPlW6Ql_Cyb)>tH(x5h@|f<r-(
zn!y@&G#|_p5|7zS4E1}^R744XEX41F(}+F#mgO^6z8{si|EfaZ_l7B_HjwjPX^LKu
zu*(BMB!s1WcU9xw(#OR1eC8HtEfjt^dvlfAkRh0l?<8}$f=O<2VhXvsWx;Dn+J#Zg
zaZyi*V?P;^^MW8g;1ksV>pc~fD5bms;v*4)+9+FX;Km{JZrm?uS1g=!?$k~f{O`$)
z(OCc8KFF~W!3y@RYdS~Zvn?bE2z4kG@^OvxLDy&D0={0TGf32VAO!4Da<5#$(|vyw
zhlQ0@Ayq|%oIOtLqm}TxI9<mCg420Pm06{Y)2lY#UZ-g8-hAlu^Vp|);E9=Y@r$_c
zzk%<`P6>z4yZ90jda6)H`HwwlRKJ{l<Vo0tQGA+vP7-Gmc=LNmRic5E#(MnIdG5cU
zDo|u(z?VLR6VONQHt~YO^pgOhyy}l?0|ozfJo()O8ADh8#e~LLVOM_nM&c%9s!(KZ
z#K)DUEV;>MFNR+kVd5B%Ft@F?1Y$>Gv%?Gb-#X|{GzSQ%T&W*k<h+R7NZ7>KS;Zlb
zcX!oRf8Qo<Ep6<xgw`J&z}t|^`+UfVQRmX9J^!HU)j_WVE=9U;A(n5R$Lso<8C(jj
z1g0X_V+AC|2*2P|6{=|6V_o?_)tIOfj+eU7tg95{dx#Qh$`lgkRK|lQ47R$vPg9&L
z>7jd6>*9f^zHQvqr%GnoH<TL8jEwzBbx52}Z{epn{*ILXzNq3v+oe=WQ%OIV!3LT5
z8v5nxr2gh{Qf!+rvymdw)&(Ag*gZ%Z-mCs}$=Fjn#mBXe$R89L2q97HQq&y_KqC{(
zP)bmfp178MbQsY*uNk5jmT-3R=00x3VAog>{}AxF+4HlWljNb<?tODYio{2birz==
z&%DQmM=4vmjC>mUZ6J!F8@NcqG{W2$_Sd6%+Fy97zQUpXL=qMpmu3Cd;ZoAY*r{ZY
z%f9^jz4+IU^ZI#e7A_tjziFlX$n783H<yKT*MKZ+bQEej5hyut&7tJ0KRD(vs%sWC
z@__toFP-rod*TGKrr$AD5qm1JQ$6?H`NFd#)BVCa04bHOs6)Kwy?^spz`F3pHGf17
z-CMd>-hE`h7)+u*C6Pe#O?1AH^j~lV0vb2Z?YL~K1!0C--YK_r`@_};Q59;hb}gq|
z4m{r7Dz9GjMsI@!Zca{R*8#5;4EVH9`2)OI%(fsIyh|QqdLAnQ$3--h3ml)|XGoMv
zWe$-j)TU!Cxc$~4_gOuqTnXW3B1_qA6Sj0>P0a~o3by{wN}~eF@p5%xXr<W8^4mKx
zwdJ8vn6q+S(4`nDXMXv*SKjxpj*6ml&t7ztT{1zGr=V)F%X|A8ab-}X38L18UMAJA
zt2NHpr;{y0f4VIQ6Vk5!a_=K9uA?gk7^!bXyVIQmbpmH-v@R&eU3lSdz%iDOf0uy0
zcWg(~%CadX-1!BZ%%94A%D!#<owfx{%|1hRB1m1mO?cI!H5GywlG1<79u8DQGMPi{
zO&xb0rY+3*map4@YG9_&W_&K`^vdXH9wUvSIcqNP!qe&SFWW9DAtyraloff3(!9`7
zk!bBgpyR(U;R+3*zO;MsB5IaCG=P6L88UChqBNhw82)&<^(v^V5c|zG^k+h0`_F^N
zcI%@BsiJ)W8)#jdD@5$?6E=tzMgS3Xb*1dqWDEnJ>axjD?A}Eg#j2x+N8NCEEmjX<
z7|voLMZi^6<5^xiuu`NsRk+)mSWy-tTK;+eXSu7WpVV_t(;ob5H7^-)m(g+xZCw#A
z$30^Oq{+?ASCxxlf|q0j2fv3V()tC+K5Aa(b*ni3=)8|B?7ikOQEMuTUyVPi9eVrr
zv@x06BC0Nd%fX(;kM~vG#kOEQZ-mnUwURBKdB$gwvc%TrzdK+sFk1{Kqmv@#Ra0p8
z|5j)a^Lloc;)733qy7WxHnBfbZdM-zA(jTDBd31qPrH;d`q+r_Dc36^H$}|>@y5+%
z(-WmuUuw-MUy%*$Mi^pS`M2l)`t{3lMq$&M()uLc+wL_tE`m20D7Bxh;>rlwf4=L}
z*Sd$N`cOQJG52kZ>|O_U=4$w8rcl%360%=o)WzEO)85EFO|8`Z_oZ9xh@4c7xHP%1
ztz&PR?%>W`E1{_b!v*ME8W>%k*6xSIbQCXGy{K8o`^LhapZD#-iF(Bo*au6NIkSMh
zQwV#6{<A+#i1%lC{kAYNj{v=-xxR8-<lx=+0fff-P**aCA!QeDbBqNBxC0MWfcwUU
zO_Eam&w!OWFkzc24;<xL*4k_A0pMkxo6tMq{hu^2AMt7izMM~rhPJ&qd<0!T4CN~*
zPRv@FGj@dG{5+0eI)D*dn}FsX{OD*2Lop2d$zeo_tADvL{0C23A?L{j7~!>pwNh1X
zpm7lrClfeFIhEbs$A%mjU);*6zv<}9F_1dk+^whS>0C$7yk&B{T(JVW&bSZH1!O`Z
zdSC^gxf{(ET>_MF4z@t3FiKk8{L}kyHg+{uH*`xrA8(#HI4BvPL|2xZ2|@teN|saI
z_*f|k0VkDF@WX_#uQ}1ElQ=r`WQog2NM&K_0_N*D^Ur4Q4pBXm%vaocmdj;1^bln8
zrPrZxA&I>WAR(A)Xq4ob;$94%83oX9?#X<ciL36=2Jlk-Xx~cg166kvum0JTMC#2_
zL6!CUFpLmYq4C<OHd0Kb4ezc}e_sC!Sw_}^buY+1DuRd|Cvsk4%Z?BBKL8nT)93oX
zen!Twh{<D}y~nmc-Su~xab8)AQ!BEj$By(T?oB_%M61UfHf|+BqgS#@M9BTdc96vD
z9p&)Gc;&`l4isF?$<-|a8W7YB>?d+jZ1Jr9cNB9v-Z?eaCfrkho_MNVSpS_{Z->jo
zN?Tkb{-_o0`$p|S*4w6XSt?C@0#<qF7xM9!pJ<bBvf$a!?u%ij4u^MCviD{F>1MxD
z@6HEMSR#&q(CAhCCCro0yDaa3VYe0xH^=f!k+|32lpU^fO|Tiz@RdF-ZcoE(!eX|r
zR%ZL8)V*#vr1G<o52Sna1I+z&p%Up$7Z~Y0Ej`|Sfh%Eh3w6x$uU=uTBD@W>+6Rr$
z3GT#?9HE|IcF&95LW&-b6z64PR+q<A3Ced<@DzpiB%F_i)k~p+u!5q&WBbiKcF)8+
zo=co<hF!Cz?}hNHh%B6JUrA5K^@f~nPKKvZwY8T0nZ5FOf4Y+V>9#i?4BgIpw>|Z3
zHmpIL%E=0m7tyKM9r&f}Z<VjNl|Auyks`H+FSXlES2-Z@E<X(C^_?Ri7U7|A-7K0I
zuKX5|ggs@K=%G;Oe(N4q8^mcn{^H0eqxRn5p8^Qlg-j`w*~byz3vK(0!1?F*`V9Km
z>@QUUA4W^9vP#s7p0dDa8j%TWUNsC13^c=^iJ#`Q1QTw!&E7!0@2F`=7tGbYN*pdj
z58v#y#M}HKXz)W(ah;Bq8b)0m9utofC#O;ET~!HZ#FlCIx6Mp9kK30xjT@E(Jww#Z
zmHUXJFD(<ZDrD8!MOnmDR^tUl&;z?{32b5Y08_`Z?X(*1o``9^=^@H#lmY3p<5{|z
zLCCbH`P-<4299NKJ0s%XgSgnI2;`8Ps~yh`-<Br~HI&ptg=mp(z|pl6<k#h|h@Ct$
z2JtW>Ht-lpzNM-M9}B1KnlNF*&}YXR1@-xy&5zKHo|n-#k>)!0x7A##sA$f*Nz{-$
zaVhEX05I`VFnirD>x&IX_fvxV_kV()z7h(Fgb;H*d;a7|)%yd9Mggq$kVlMrr+YWo
zfcor5lYs&Z8d`p&e<BnB$oAp^>*B2%w}I?im3@%W!bJcnkHW4l?Vs{HMKt?tAiX)S
zsKYrYoV2_97Nh`nh}@hhdJdDYV2|SWFy8AYxH->Rzn+?r0bxsd3a$_BnFkrX7n@4&
z*nZYXb<`S`lNOdFv3{c`%mq0L-MGJ!4t$ZmyI&kXBVi!<jjEeFBWG7*-^0CI@wBP?
z0BoQvZ<f3I=VR^h0w{t2ZmzqLcMM`uokEH7KiX$NeC=?yKhBF0A+-W~u#R(T1$p`0
zWt6?!#uQjsp6OB=a>phnG98n!e(3$XfkGDa-i7oUCv`5xo)vq>4wWYPy8k5oyFtBe
zQ$;c8^-t91FGwQT2`)0f){=`&5?2EymHdDerY$J|(gd)@o@s#-QF#F;W8v$^J+e#k
zk19c@NTnSELX5DhO5<9dm*}3JE!hM!&Y91f<P0RYd6Ie3g7U;Lla<(C#+l{E*6i%W
zgqUHMYlW}w^D=KGLF~C}PA<M%*K1Boyd^Wq+6sy&G!G*7_|{DB=*RcL3aem@Xt6ll
z*W%A!#}|P-X8{2D+1TP9flg+Y4bX&JkrC8<ONgie4;rv$sYf~iVn8Cr_mJ9Gn;^h$
zB%QW+tJ+_`ozHS_+RW3!95AZts!yt}z*W|`*h(|W>k^<}Zz42!Uw^ht@}syBpeVLS
ze1^>sW?hv=a;+0v&jZgJKW8f%p6(9x?Kp1AXOI1z-`MRX;|1_>LB(r<gS9S(2>{v+
zbKawATbpo;QTJ_h=nN8BS<lCHbA*1N4rJ^$Yu}ut*boixp4Fg)ao=T7yuP>40hTrl
zBgQ=gBYxlY&8l(7A4*`~J_LSugKAL$E*VUq$@YG0v6*CZ`7S1JjT1=|kr3^JCWX*~
z@%re!GRaS-^=lx|&*IatM%Z6)y*>q6iRGwFSk0vx|4zT={z<uKR1WL{)^py=JYe+o
zq{*$#!`FEI2>T~I*d{_eTv(IM)1XXeZ(oPld4kRbd9mjvK<8-v-RrYpz0O^{o*bTR
znYb&t(H&mL_a$2{5%L!+p1&-I2|F^Tn~!y~hb`U{OQN(qI?15;Me${pzBuJddP+7>
zLtXG<v-q#^PA6c1Sok&PSP8Ny{!RZ=lKiyMcONYr3(pMRq@})P@*Y`>4e<gQjot)k
z(SH%P0$|$4Sr_=b#MRUY<xKgYV7!G07&mnK?iCuM&y~}`?Rbut;`9<}N4w!(R-<<}
zq^U2+Y_k-^FczPk5`Jj~v$hG?zHdqG9J77%=Xj=(iI~z6S@qbLe(KEAdjUPzI~*E*
z7Q%x}M!1ldQ|BS?XqU2QY1e9c6^>z}SWDwd;gX>Y+q*eAF@7hK@VEYz)<)wW($r7c
za|bz?r<H=fTLVoty}Yvqm_KJfPUbkPpWrf@s?csGRyiWcXIo_}?%-`b&23Hi!{PS6
zlAZ&px&<{i*B4rLfe`DuyKT&^NSK3`LiZZ`-`B@kQ3i^|Pu@ZmGcFsfgEcV46d}!!
zHeSdICA_)z5epmJbDNsIXUX|%B7uaVctk39$?<JLUTN_fU3ST%lc)x_0yK5O*T1AY
zFH&mJn`1$BWArG6wy0j%4M&S;<riSu4EFDDUQyN>wxBa(P^DUNUDO;Lt_`*bD_XA$
zANGka*zq0GQ=gy|kNcTG$Id1)Wj@r1aV1>=Vb!S4kK<Tv8_w~O2Vp*Q$~gWjrL8;=
zWd)I4e-WFh3QOGuVkr5cfhz{<mbU$H_Dcbb+&QX&)Te#H8~DNXy>;~h-pgB^x8r8&
zdzJM?Pry{$=RnAQK_WPuI0@_|F30MGOO*P}v-D2REyaJ&otB`G320YoGSWrT=5i;N
zLl+6H^x|^k=w^PwWNFT|c)YFitHsX#no#fZ;E>aPJ<a9cr4u))H|L5D%_4ivbIIs^
z4{3|RZ`FqnIAJ3!A8B@`Jicx3&e^y9jQD2ua^v!6r`gXmsbrS+C)qk{ij~LYj6IXA
z%ykz-OxS7E=W9Gp(Iv8L57T<G3w7G3FMfV%|I(4G%^rm*=TWlG-O`M?GE>^y)cPxb
zP}2d!o5E_&I{u%7T1f=SzP&#xRhjmWo&YYzf8?@tnRjFrQ7Zk37$;uvUA{gwHeP!C
zrW>&0e+$Qew~2jyT*Kk=D^g0f-s37a;}{=mxPYe2`T2QrcBj72A*h~WZ@rE|D)}z}
zX%*4G;M@!TUSj%8)Q`m<(m!7H1uJ37vcoe=zyClhHvrnPCpE*6Hb2au@$^T`SzPnI
zJ&3Ay>K>rYxPFPY)=f{L5T{LF!NC>Tdybhi@RG?Si9l;^-}AIw;#lBC0PS<WbCCrl
z_c)tVwW&&N<QalRsz$l>yiUTKBkz~CwrKC3CsL}uHCIh<4y#pW8YYq*aihxrsA^CD
zHu98aJ31nePceyk=ESlirnr3~jN(f1u}4637CWJO>^?O6bTbDSMO`<x(b|-__`iE5
zo%BXH7Vy1d21?Erq&L|j-NPckdJMkh-Nn+3I`>tN3w<J7&{Od@h4>-}K`0v&5GPKK
zf6|2i1Xj(|yG#MjZ5D%{HBY|8uSh_CiEe^vY78)f)G4>W+-tJ}uD;b&E+pqZW|9yu
zeaCQ{c##&lB@W0BN_sc|zuC<yM*XF4eXj+Wl4sTqD3C2~xtQe4z~1_Rs!@hSnOed$
zP+ndA4&l_n;`Mrd_4YtW!?(ghrFtP`st-83-Kiq8mUY5zd!*j8<pxfb<ntf)y1dVf
zAe05Q$67g8;lk%XWk;jO02eoGHDCod1gDpI*5e{i|062d+XzzoW}E@QYt$u6A-Dk`
z&+w3{(yv7UxHR5f?1&1}T{o2H(5y4O{WKN{=lS`0ml^%dv7(<*z>Qlq;OH(YT!&|+
zkIiQgg=9@cLbK-ZMeij}b17dvA1{P3?7*<*;^`Zu4-tK{eYX+b-ALr8)r|HmHKvU!
zzkm<iXTA7hjEh~jAgj!@yt-6kxDKqsF6~-pekTI02$L=F5kGKjk;6l@&4FOr@|v^T
zu{P|IhW0`vN{^wVx3xDB=3N+qgt^0C5}F9nPD-ULa&yBrtGcOOHTh4rC}-s9XnBiC
zJJpycozK#2Z;*~y+pK>VhW<1N^Pl!$fojF&pJh!a1cKhnDH%2jTTaUwYBOAH6*j(P
z8=o8~VGzIXbz0cC71gD%L7Np|X85{UhR_8Ksvw>x=s4K!vw3g4%rt@4VT}$dBo^T`
z;#<(+`Gt%cFycNt)s8p?-WojvqijDySj5$lKJ1Hk5y#(<QG+m^`81;%&s7Q)l)4HK
z=pL*MZMfUSV@8N_QF+PG$bWAXM4`{4q~$ggn-y<H{t0Nc?!`x$sMH2;x2H4%+RsPp
zujw>4{ev_-X9PA);%%ys9X$hR2V4I30&w=FO<qip2z&5V$TYjf#zdP?#_0>rF-tNV
z>?{q7WK(qpwWvh+=*ZF}B2sWgEo(7npJS(InrYlNd0|b(SuljmBM9ck9A|r@yYJ!j
zlXvo_3>SUb-L<?V@w{S&f_M4uj|HpzkorugGgsL7QW8O+YQ<2}$a6G>)rV**LhhzQ
zZ{jNs25UP;-eu^|FKR)EAI}*tAr{pFQcAU!3ciV7)WKTJ@cv2LX|_Yhy+5UvxiQkS
zugLS{1b8o7%O|mgPaF2JR;qj7kx+$!!~>7Yt+L4yee6bF*ZaIG<YH7bk0fU9U<>J^
zHBeHsJlwr(4UKcKD{w#P=H18!@#)o~q9!$M3CD9(SZxTs!Db)r{b60gxm5WVU|I`f
z)hVczSFmv6eFYl6W9h&PcPCiWf)x~dLXRLDdv-WS-KvNbrtdR{)Aqh)R0+%HyXdRd
z5MnJ22<HPKF)^L@EjCUg2&q+06UC#mdKMwrhGI=CfFhr_%!q5)&0{^`go#G2<s{Nv
zis%dJhv00X%zq<avGyDT+e2<D71dCSkf(x?%lX=u+W{IPHrl9wa3?6~(g}1M<!(?2
zbv_Zg((tX+^?p3Qx`@i(F}v%&u!Ab$1IfbN+l^*aIW(leZpG>^DVRTa*Zp{Ob@SIR
z<E=HQ7G@wkbiCH9k&FHhn*y9_*6#xZjDJEq4+enHy$0)t$D)6dzFzSx6opB&B)}2|
z<^i@JrvCH=`beBXGOtg+5pJkak-D9P$t|rN(61ilj3%>TlZi;zd9LBKPt?rV_Ok1~
z`7ZQkKJvT!(IcyyB;I6(UWHU@AhjBCh7{|3u+}V+Ab;WjuX!^`S2YXtaZ-eS0nHit
z6?va65m!!D`^5u1nkMzU*&bIGV^^pU(EdGw2HKwSq$l%_c(2M-%JRAhim@gT-{{j8
zrlJ96eFu1+9)kL}mhzEbfx&kSyj(zsDbU-a>d5FCR@Y;#zk%V?kIZ1v_s`+qNij0-
z{(u1YsGbqjbH<QA5EiBDV2;0u_;q8Rq^~j>%<06_<zf+a|8l<se`ajc_fvt6GftPw
znK|R}9$(<2r8Q64<4H>-5u>b^EwoT3{+$a~x{bWSA(RJBL{$s*!cn>E^cWKUb!y5V
zGujf)){9;!f1k7}uYRcgeMU%9R;B)=gK%k2GD$&*ah<=0zBrg=ILTx9{Zda|f0L|z
zanc?%;jGb#ak6NrPVS2pnO^CGuD{E-3AC|{Z^LR2d`OJwX$!}Btfo}Xixc<lchH}X
zq)P^8qut}=>9P=$hA3J)6af!PP1nO#_wNPsd_ZzQa~r}=fMO_8b6<=U)fbgpuh#?2
zdJJgpAqha1+<^5mB;0MqM41gt+-)l6?|N5s**Jzd)*U~h$HXBLT0TRkD56M#?)eBe
zPE6$0xy^^}l#aqafRIerHv*xBon!BSj=*)RIMv9r4awALq%e*Pvw@2iZeEwNi!^Vv
z)0x6!JzB!EI5uh4u*qdLNO0QVn_=rY7g{)a%rWqpVhDv7qTya}XS1nj;SB<IvO^HJ
zdF!$uL5W3IG^f>v@FNg`#Q;4$7aXm~FPt6qt*iA=un-b~y_<IU4%mg3k{noYzWQHL
za>ihA=5azZ*wa%U!B0?pJRQDu?q(`4NF>-3utQWB+IxVnu9NnJE^*%!6Omf1d@@=5
zEDUGnzJWQ0iN$YhgEc@j5SM%NEasa9DYp(h)p5e&Jn#Ng?wo0>2N$}n-!2P^oSa<F
z@^@0(kD{B1O@yiS<qJnWPj2XFX*F!E=I-Ly%5j_dKD@iU<NuYPj5oaa?4v?T=kgo2
zEveTFdEuQ6G7PJ^k`#3;#W%ed0VuATAB6Y!wPV^O!UeBf=^Y2h+hz|7Nd?aCC)b?>
zl3T*E#OU?j#D(zfA=$^owcn9)ZPZO`*qXIbon<B06>bjL^)hFn9irl@gVCg6;bSQ~
zi(K}qDvsSNuFu~9f}RWaoY%Hnb5dVLXDg<(1?w)Z&l>OtHs-bkF3RL?SjUO^>m;+S
z7Xv6=A*OI+eaNz9eEjbUrw@)6PocPFm02{$Kad;Q>Qg9)X)xb!AlsSN2#<B4uk%kH
z(6$g|GTy@0KGG7CXlx`KNb@8a-#3e8%lV$k*UM!w;4UH9KCS$au@;Zc+P-Qv!2L*1
zrq0aMsYIob`lBUon&rT~t(dq<hiZ+CC>j=33rnU<-Pw_<T3u}+r1qbucK3dCu(LiK
zU9_C-Rmp!?F8j)mB5tjGvhe=+?gkb%)8XR1;UfjlWxfYKCLAT+v*a9=<@NXGqx69U
zU|LU?ywIbuvGG@gI2MkRnrJ5aY*5X_-MgSIXSl0~A5YrU`8l34y_6J*%0O9wluN>E
zyCx5of?<^b#U*F%QPa)(o-3+TnKV4Ba5Y+1X350;x`q!|VC^-&^JEShvXym%9^%ox
zjaS2xVvUB)wSo$Bx*SmPz+V78!1pX-nG^6Xv10dKS?wEhTnMya-u40R5(_EyH^*X+
zGr=)uxtcis2Ttqzip<d#WLHvw>KBO7`{BYekjPBza=|3ADzF-9?E+{5`pKI)rQXN+
z=tB%Ju$_0+0v8Jf1JE+NCpzA4jw$yp`C!-Vow=g5>yd!53AP>Z8Y&bfbSf+C<-gd-
zC==rF9>eP;g;vaeJjMGpJo3D7Gr$NLSUpR*xXi(d=k1}rUvI+;O}i66>3f;ICB<m<
zci#0+9P~0LOnpiUgcaIH1JKm1DxEuEtU6Ype(8Z|E&1s#CQ74CQxX%r+VKwFD&HlV
z$ktN)pF;zNoTv&hy==HgSZ5c6nI!nmrj+FAWuGtrrmy@0NNUjV=zjvUgTroQod^;z
zhD>sd$Zy}Y>5OB|+0T5b;=KHOg1IS(2$<dmuRVK;Pe#8z4ZIf`L*Uvd?Sy<M<#Iqw
zF{NqkhPjY~p;OK+uxxIgipC+YWW%8lF4+>lyit2wLC%)9txwN+<Oi0|h7cMQT7N}7
zx^g4h{Ebuqy+oMk4kuYw?iiibitVrwM!3DKy-mVf0dAS}1?rLrs9{6=NMzK|V;Js4
zo3xr%J}%|<z*4dSmi@!0RLJhS{<LyBQRhF@gV5tVs-EubJkIvbENG9++(ui!{`>+1
zp&thF4}2U_f3#N#tw-l5_2DmNhgkNGJ<SkYzm^wC#!~28WSV-J-swObojVyCf^qU7
zZjIOWOWT`iuZ*fSkM{?%4({reU+Nzp2(?+CFD4>eQhUk#aChcM{qQB#{a90>o2woL
z`jv$}c0ZYU-60c7etuxCp=}hC<?K;QFrsE#a4~#f`#3zzHE(Vl%@(flU~rdot7r0a
zT-9;0NUQoNXOYm~>;_~+$k96P`r`=Uc{I|_Ywo~M%YBv^=%SZ8zh}ylrB$`C+x++*
z0M5VWt$Cd^sm%Igk{sgNWl^#P#?`K$Hxgo@A_>8Zu;_go@;PC+aM5E?DW%*UGgG~M
zbx(4Q?lUY^?pGaeerrzqgdnHtddTxd^Vaa&*+~6M-}(6fQ%_zYs2C+J_EeC#eqcFs
z2qD5y6DGDzh>@XTb`W9Ftj*Wi9Ch|&lo;Wr-LW-}zy4OJ6lI;Y>vTm<iG=g)H~zy9
z^*E{%VkXgX@w=~Hk~4P5bth?%b5`4u_*ECX7auzQ$d|8eeJ5_L<AaN!ifubzZphV@
z+Z!&@4ZVXM^cRBVh5X>7sE1lnMf7g(*mF7pI1xvY$`pA)a7<K@L3zm<0egQQHLa~#
z8f{5%Bw3Eo2Zb|DN!+ZO`?2_pd!P1SYpAK(IEzRm?S2ltGQhz?vxl#~HZOSDrZH_(
zEgY1xzwUv0gfZl#G!wsOdvc7FOo304)@E}4cq{R>sm|xwM-H#HqTfB^%3p1k)}0L*
zJ#6|LK>d$w_Wuzhiw;ut86yYox<N+AIVvn+!2T*UdY=3guz_Mg^pXsqP9A$e45()i
zZj&fYfazjYeu1F=>|H8h_=W+|j9S`n<YJQo$pA;Wibnmc&e>SW^E^k>gw=pG8~Odr
zOI?$fMnQ^}<%&qnV`Ca?Q<cT<P)lD~Pn0muDdClJw@m-p%tVo%%IXi=3f4X=n~x)N
zaXlE2-_q>c)H%vSKl{d_8U(TKNiBURu5#BZizYgvFFTHH&H(CA#{7d?i1Gm!Ibob<
zOm?SwMb2@;BMn<ke|x7IRds9i7)d?z(RVtZ^#=2a3Acwg7Yk2Xxc_dS{-2BS&yS*m
zlzp_wfwv4XFosvS55r#RPEu#qtr+(JnS~COfq@W4X6C^Z{JBctiuinmkbq#jH2Idz
zGEoomGMT%P|9S_}Mcjuyoyt^qCS@e<zy<R+q%#(T4BySVL>BF-sU44~GV7)`TYO2T
z|MKy*Y;txTkgjOy=zWo8`Ag1yds+H2A#kYxi(cQfFr`|@n5ry*J?`PtC;C3}5eCTc
z2$Bc|=lsn2DYLEZV0nIlQ{StLSaFi$nu+tGllFgq%?588uZaFU?ebV)Btus5w9xEN
zzjRwHdVgYo9wIf<gz<@0y<JOxx;<5?Qg^<dBOuPonzyet3?@BWI5?rNrmIR@%b@9%
zK$Yg=38vkmebT?jWMd-8uN`0YBQ-0T#oyws#x`2zo&svM&1Evjlj?@9;cboR<#JO?
zCLWz7(OtLXaF^pv3$kqhTC+Pn_4)^XDzrs*3153?(!z!o{(Ai=Y`B_MB*T36fywW-
z`|s-hcY*tr!5c(>6r?=X{N1JeW~zOn!-0T!8Nky=F^DjLq+SA4c6+cgC?q8Mmc7Tr
zqzdU->Wmv5n*p&Kx$Z!bTR0&9`yt^L_I9XuW7fTkHA<GeTOeh!yfk>}h+d@s)X{&|
z{iyq1ct~tYQ(K3B%RwIf!em(-JUYy!n(EvYAp0iQm)Xa8VaHKpW!96h<Ly~pCw>Im
z+6SPXLIsBMcSrv$^+Igq{o?m6z}R6x`U|Xl`#y7$hwYeavO5uZPSiiE@c()t`WWdc
zv#7-B;w=LKQ9b)q{x-}@bZ)Mfvg08eTbbk0_O!OEso2=Bt}c0df#iX2DhxoX83GRo
z*mw;J9DG0y9NtrCP@%r(KA2a*PG)m^W`f14!MCBwe>o&a`}rk_#jNWmozo%IM;jx-
znY1G6@20jtUB8~t?UkM1e&xKEjrYKf<ID8b#~Qm9`-ua?w_;Y6zs7rWg_mp3D`N6(
z)4zU|zKzD5UB6Ie=MjG9AM(JwG%|juLzY6=;Onmyg4M0u<mz7qA|qNC@qbzs;DF<X
zRF@WO^dbF0y~^?bp|byHw*W6LL@CWt0_is&g|Pyqb89$--l9QI60ahlTNrIgof;37
zmm6%Ug1dfC6CCMJI+>^Qw0Y4mFb16`%WdQK_g@!W{m~JFcix$G&-!@LN8-cLm3)C6
zlO(K3Z=+rb7a(1CrBcO400!=bg+CuwE-Y16i3F_AYQS0@HP45uO^apnFEH0x&0ro;
zvqg$e4jwX#@G>acRPG8}O{PFFk9K*Tp&NsLh#X$X>x!SI4H%^7!yKZ<Tr)G-&n2j}
z=z^;=l{#e6X{o86%f5L6gR)ot(g0zMe&>?>aXDhOuL!eYxj7Md&xz>tJZmKk4XLxf
zepSWJEGf~M<_eOKlImy<@;$uXn!K77EG2szz0RQd=sG@c!(V_Vv+?EU*cbNCT4i&5
zpRMj0FtjecSj>J~-GYOY*IB9<5}TPxt6A<`Eg{h+YY{n7kPbQ`p_6;QAZQ3=56G&i
z#oE++-dtB*{%sNPe;y^jm#gR?9kc|gxhjy@t#f+@DDVu&)hWGe01DCxDu9YnE*?Am
z7_)~?%9(!-4o{?{*ej;+WZ@S*XFD5F1I4N2Ub^=*KGT=Q^?39?(C|w{4j9j}i@|r@
zADZ<vioZ9Tls5ad0$FCeUw!jxOQTu`R<-=A_N6uM#jY+<;7heJ8MWbtcUEFzJ~4>4
zjrEuN!KHup<J(m}jRp*Gnu{f5JNk?=&CRka8dY6Rx!V<VEzzKh3+caxRNB_!4t3bd
zaVZ6WXg{yn4egPW9sAM3Oj=Y*3JpL1*{w|g-DzjcQm0CmQCpcyJr3n_p!z|_z%T*p
z&ZQ8FOJI^IyFb@1%eNZ4Tfwuy)T7Ss1Mkd#EV4yR(n^%q79(T~6xUU>+$>^o8&pXq
zE${IkZB}3yAMCe0GG0%3p{Db2T>Hh5#^ACib*;-0P}T>Kz7AA!(>U3HKmKPS{r4A?
zL}<u)2zy{pE#NH}8d6Q*fAbmmL|8>43q9N(D-z#7IJjeZP~4j>W_?%H+wb=udEh5%
z@H|%NUHkpVXIs(Ful%J~5XG}HDHY4|U`%TpYA#1-TV1Fq!PB>x%@4!!)EVdJg+s<M
zG5GtNhwVOnomUL<FH-{E8+SKWs-3PRu0M{soF!nvV>v2~q>-|u^8O~`di;u!^~g!<
zk@J5%QHDZA?U(7%!WCop({;Y7lBd#WWl3{Oc(0MrmASL8K@(|EP*6Hl>Q&r#Vt4ku
zz6wE^uzjJFrl#Amj$2yH$_7Ev(a|!pvgsAm_%50y=A{G_hV@0=NxZJ^o^eYiGBU?J
zK|7C>oLS#$EsCB6o|YN5u7rg2FTS`FfetjNadE4A1hM!`JHea+wpZ!S1Mj-}qv8_s
zpHRgTEXe_#)98T{uwRgnkcglEUydjLb!P%yFSzhURPoe9j|l#N$%FJtX*HYHusUh>
ziw)`buiv#VgzHV}O+QZX0Cq-Zq4+b{RHtA5&}I<OHc7m7b3FGa5t_X^YU>9soP~%)
zPW2NB$e6BD38)rK1SODnL(vfosF4F(Q(Sv4Q0n>LEXV7*)LIQA)y{Cg`+V$WJ{!c@
zFqt+jCMI@rxV9Jnk(itf3|S+c3xqxgyYH>uLv!G3&TEb?1pYf~=EyGMSLGg8E>DR}
zYlQxs;{R;M|9)XUft*;1P-Kz%AS~riz3UT>(2Ue7e0^%f$bJIBkO#&9e_tI;sRqc+
zdC3N=q)E#FS7kMAOIhSeoLi=#_bNLhqs)l)3>!{=(Zr&D7A}kbLquv8cB25;=%JpI
zTht8xdPoGidIB6Sph~oyVX|VYCp!NSSX#+Sh<!)Da}`h_hyF6*weIt+p$l<RgDSW1
z_uQJ5-#Y{!BY&__k3o11CV4RNpIu$ifKuSRWS?<{7Z?_1bB)?g^A9-q@2^McjR3ii
zkB_31y>>qhp=j+Rb6E7BuZhLyeVZ(ei;H{62XhT2r^Y@-n@9Nl@Ms}>H^)l^K``RJ
z7Cs#RSlc474CoHGO{(#jJ>f&e{$P`zLtI(86-wXBGtp~kdOWXWbREwR*O-Kg8RQ?0
z6q|MroVEKhScM17+gmrk{K(#8-uuq2yj@+^4_Am_Q-eX0_#1A%M0kFow8gYpCL7^!
zS<cK38~gB9W}ftiTPZNur62Rq|Mv~ye^B?e?%sMYv^p;<|1L6y#2TD18WYvHyu*d}
zopiD*kx%~F-MP8F%j{)v@n<v#zVoz)O}))=reVreqKX=2Ph@a!BV~0?Sew8zv{0^l
zX>+jL{X$EN38W#oSUd937{!!Je2FGpl3hx%YfrPB%qr{L|9<!)s#Zbk=mA?lPQMy|
zv4}hxp|Y?5kJ|o0&N<iCpXToGrSs1k`p=8LOEe{~vCCf0@QA<e2_*v33E4Qa*9(@v
zIg7XTKx%`T+)HU=kup$)KP6heUG*m(VAaz>-hSO}TY_b+bR{g7TJ!L9Cx3fFnP?5y
z&(F0Bex3TYi8Be>CrNDaInb=uOr()J!wpO^je%qLj7f#$-?RV!>*MuN16QOm>gQb8
zQGeFUe{RL6N}Pwx%pZ<6M&;ZlkAc%c&J&6U1wDKtHDEG=U3psyq@fpl{NJU34jqcD
zD-lyxB{9<8eBojbj=JWzSC`h_v&V9dX3Us|UvsreJ8VU|{{I&9UuClSH847Qb-fZV
zCH=22(HDXy`mn<J%#irekvt<aTl6ODH(6;S>H|H`7ZgWezK$}VXx5#WRZcdqyr4-<
zXR^xqqJ-<Ejseq?zhwTyND}wuH~U_e<!NR61zu0|>O4{}4~F*s<sk82p00oDcJEjj
zV3ZW=JmWm{pZojwwe5zB`t7S#c=QXc2`-zrcgl~ZK;?q>^D=xz3rk9dCfItWXy^CZ
zU%;Z7W0-W_NaWlP3JZ))|6iUijEp~H!mjShILk!N9w$HlLLi`p$@Ta2_1|y#=Qn)|
zw|8;jIX`y%zwaVHPW(xS(Yaln(_4Q~5-zBvi&b|gaJAJjR;%6o0xL?4be+NHJvzQx
zrI?w?O8u8frjF^Xa`#DK244W2CX&|wbL{=|jQu|^N<@K|O<BW-9&vz$nY$qK*i4Nb
z-tETu!^!`vzT$>>I|d|E`U#H6816(y)ve+!6>(@z(fKVfF)EQm#PcHB8EemFG?mk~
zi)%_GTp2<F!(y)SzO;WY5Q+G>m2?@#05FfIl>_NW-&B#Bp;BMj)V~XA2jMX12|($q
zbjj_hAE_6>thbDQ+mZc`-Qz!N`cIE#f(z8OCMoa8|BW(;;!({(!f|_X85zaHBh!<=
zEugEc%@5M@I((xO{rGl`^}C>Z&i!R$3<<w8&9(1f5n2ouRlg+>8o>RZ#Z+PgSp5A<
z{_;;$I^JW@xyoe|u$!_a<aAQOx&CLn_kVoKOPo&#{S^3r$QA$VYKuldAO6pkRP*}3
zuOwEMi2W!-8R<33m~HfLcGbq9PSA3TAImRx;D+7@MqOHypLPB?035?Lw4&Lce^J4}
z$@BTsP5!Sp{aqpd^RE{+*pA)3?Eag5o=?zURybtO1I3>V00%-y=smgW4fI;9muFD?
z2N%ngo=KUoUa$bITxXcW*S6Tnld00M0?><f^2;xdx0u(~)?g-oOw0PdqroLgV}BaN
zZS15B(Dh22$k=q=ZOmZ!y+!aK15qr~t^E2tEGHUJ8evm5?;6^8%=;+$!Q|N(_%7{t
zarGkWgrg*3d4u6#CBP|$X`K9ot_}yIl9S1Xd_}e^7Bf}8Jda99U<9OCm{NEt9Tpok
zwb--J2XuE(v7$kf@gq1Lr0I%1zAx^74~OM8YC0+k*Lkz3?XXJgsp+5VBnpLoLg0iv
zM+*3RKlsn%+V>ib)bnz0|6-@U6GVj^8LK;2N+D>FM9L=p?1PQ4374z@bx=hA)_x$d
zvLo2KOJB}=;Eoj_r)Oj=fiDm(?0zl{t__`#kk0EjZ;p(+0Re&bmY^uQ$iEoEb@=NM
zdN0uF-HPeG){B(vZ~}?k()cFGvXSkaUtC_1rR$W*9!6pZJ;W)q8Wdx^2*%3`wQr@y
zu2ySA{kUyW)ksGt@??r=`qX-Ge90Df=H`BF!D+xn*7t`h)c$%@VVS}&G~*dt4t7qo
z!xMggukO@_+gT$B;mkeo&eyFT!M*o9p5rN&$feyhP|Md)ot>Q_mcMJl<dp{5zi&52
z6mGLyX59`H8XPnWEua-3#~g)y?MHsa0(vD7Q~0>d4SrVmaGRgP#`YP3^JkB$s%o?l
zXeG}t<J0DM;tCM<fT;{#VA2)=9-cU2IvL~-W%uc=>)s~;GSYkh0>?z<XbLTdnXX1$
zK}~$0fWVUTrJPa2BAxdH<n7Lk?l!pLPl~MAC#xK+e)t3>0I6aJ@axK`jT-BWf9vK}
zGv$6VJ>d#(-xw{R04T^aJnaC7RLU@{CdsKRa>Vp~wfiF%8okP@6^x>X{HZ-*0Wuol
zG;eL%*~8^boFf&3M0uI5QMN3!9iK#bhxGOz>!WQrm)O+)8oe1rYAz)IfP5B1SIsDz
zi~3HD3M^^wWwALhx#>TFJ3JwWct4n!qY59ngfwt{=5(F-Wv_tbjq9aPyr5(Rl7YWl
z4AK{W8<nDPFNr&a*5m(3GEr7`-<hvXEI4Vs4VAyGoj-mgbzTT!Sf9pX{#`e5D}s%h
zr}v;EgBonqpOK%HiRjo+*yr4@d{3Lhr#-R_V+M|sQUe&o4+;`eUXv62eMv<zD7|>c
zR8&-2*4{Fq!l+p10-XbCm3WcJ1RbNn>_tgTT--qto}yLnQM)-&D(9N;l#j{H@iq`J
zTxdT~2h1&p1&H`xXEs>L0L^8odzX14GE=9V(4AR4o*9q(F-tAS3ZL;2%~qP|F8kg*
z4jvGJWtSrq{Tlrey;`ip#N3f}Se}5{$^-nTVhPobzIYJ!FS8Bi$d0CLq-7(k{9cr-
zfe4Lp0;FM<QXeBC^p}3TDJwX8@8NcWT6NVYj=cu$BH^{UH^%(#lXbC<9n@+4+n2Xs
z1h{M(zXkFX6ddmFMq6$U$gvOimYPoHZlz$)6War3lIbX-ZaDc9t=)I{k%A9Jg+6`p
zN&X9WQUby#B#FzPq&PTfx{{+Yv|{^n{!lqxOt!(!jt)yV*Sh?z-@}GY3~xKBiukOT
z63lDE*<a*Wxna+*_T?Gp!?!McVjceD-8kokBP}C?0}tQoOY_bAa?lcW$B}x>z7IDZ
z`2Elc!*}ff0RvXQcX$hw@xUvfhRqcfd<7BCyBr3MYx9&`j~>wimmBl&xH}jjqD$n6
ziJBW)9VF>|)Dr7k)9i(H+ONNLEa<+tT)cyd{4`50dG?8#=C+J_G=5-g(k?HKufNqT
zuxcKOY>6Hatke;|;yYRhnB5iqV<7HGzOXNm9Z^Vp3P{PiPY|4qFG3Mg)D3ps0^`;%
ziBqf$cFXwRZR>bS#!LMv+MY_?;#^Qta2Zts(!?H;9W3M4neTmewdOrI-A@7HpAw6~
z)@*GZom@}jYd{<>`C9n7*qb6>DujrtzrR2B1TC&Jt4aR~xG`4UB(6V7y{&K_d}z4L
z6X_^9#G_LV!tULC<1fGFSR%onVQlyXZQo=<J#_r><nOWE?{dzZ7HL`G7~~8-Tlemc
z5*?)Hcs0hcfdC+$6O=*V1#9`+Q%T7Adkx@HsFBeKOYjNFixucpzHn77LFeeFMbm&`
zS(8JVU#>1ev!3O^p+!Y3LyTb~sEpV?elH@+QHp&KkM84=)1>X`N<?Q&zMsl_p&3h|
zR6Bw0C&3_NuH*Xc=lIu&5@$$mo}t%;xDkj*nI7NR;8~7P0**1U5o7nibxktiOO7KR
zYrH9fRu>MHwskI%D^owA9O(*m{awQxhaxO9;bflyhv^A3Gdd>&)42w3;Oz71i3_hp
z#q#N?)7o%OTuLt-^%?w`^()_|_&WECbzxuvH+QtJNa-%F<HwP&ziwOOBvasevh8DL
zEP>H*X+x<-Q5PS6SELKA0LZ~*<xaMQakqZ>x_)_{Y<#jkEl^^k+qAs!k=$+f$N3mg
zUl9LHLsh+N)b#&x_7^}^ukHIjtO&ADVgb_KARP+QDJ`LN2}mQ|-62Ryh_oOm-5`rD
z3F$^!y1U_jFWv6Fzt8i``<r=Zm^}uv7mLpw*L9ueaUPkp<0#UoKuC9N>Op+KLx5tr
zU!LUEiM2wgO|*Z4E*|L<EUe8}Er@VMJWs>rLKd({;UaY8yoKapQ|SkNvgn3H=VCZr
z?^*lW`Y0>Z!}mZjmOuyb5T(Aa;d*`egwwD=ckkpQMG?36;;Y{zFyRAQc$ZG;<5OwC
z|I8ccNZ_zK+*@R~st3lK6mxFe>i6$CjNZ_Ya=lI09V^sX3g_&N0x~M$d-wBh=!41f
zY!Buws^5dq+~65*i&3U4n>nqZDfsr$KaTh?TlvjM<feM6`uRIt^31+xB_u?(7L|WX
zsQ(=8$N{%#9bP87d^X#+>c*u(oH7gz4W%_JV6U-XNpW6B;gq8sO1kYUV8B%i5(Kcs
znls~&#doC5C2PfKj^9-siQsuTy{~@!z36V^fPP|Y>fzU%o({ZFi;X^Aqh{X7m~VT|
zGNyi5n3FvzCE9P6e^BGp4q4WyNK1AJhY~v1^28vk8hv@kcfiW<-aD<@>2f}f?Auc*
z^>^ZL8)TCOXk8=5UOZ%uiV@OP%!p2_3Wy$fPMT1hN@`okfa~0JLd)RF`Zl^NlL_Um
z6_qU>bN^YJxi*E2I)UJ&OiE<Wf~&Li#2e?<iPy=ka-OOQj4nG|wmaH|L!;gq=%M_Z
znxXg(^&J3Rl+mtQZy5T{!}&u3K70RO1_5|xWwb=agI+$){fk>P?u?Ka7NFMVkIwte
z&JF>Y0m?KVhz}{*47!km)G96yKUb*O8C(OX7@1yy6K#P8v)NGhVc@7xR|Qx3K6LuG
zu7hhsIkI`G1+Xr$)uV+l)~@Ej`vsSakwUsBk*LHiGzr=UTbwBNsN>hbbhZRUIzzQH
z;Fdv>fu8vVT)6bC>d%asNx6=SgXp{iGLF&A(3FOU6od-Gn!|`r<-nB%BqLo3xv$(N
zlc=cN<E|UR65Xle#!(b`gCp_ag?QcZhRKeb3QV`VB7JP8XdK6KH9I6E(<fw5B#WvJ
z5lhCcbb|Ufz(02S)et#KUpF9*Jo~_T^WMm0ng5_3;78uUaYZ?MD}ZQ+=OV<t^yyY6
z_u<Y@tFG=Ayc0wW{#~DC6GZ)03<U8_&UWJ}ApKD*tXU>Z2{b$g-@#NE(!saYB9p$<
z_!Fn+w=)aJblv6e@5zzIKNAFNcw_}*x$Nyc>8kh5McPZNudw*2D01Mn3V3ODjB~Z%
zA^>FO2+<#gY*20TZFPy*iPwcU6Oxnj1^QbUvxeXXZ%@4C#jUO4Iv|Uc*L7WrGdMW!
z72Mo7KETi~W~W_wf{`Nu=Q-)^(f8)TXHW;@Gu#dc{RBLb6?M;~%^>nSH7ltGv&aE-
zPt(Y}H*2bd$y`38uLMt%dt9yO6*=JcMr&EsNHj>9L}1>tA(kU4h6|TAb>3a@`5W4U
zv7~I8peL+XjhHSRY1Xk8A9E$`%H50%@7NhcO6V>w-1~J20h#gS)nB(O&urTw8D?}F
z1Al<N7Hf9`YZZ&!?p+AWi>)9hK=iF*Ne9A1YJhvGsOM?XLT1yho);Z3gOV=XX>qb`
ziVXV-&`(n4=3ja{KHRF7`ZWY@ETNrav9X|_Y{w)UnN!CIp88#2{L>2XeMs?AG}bUC
z3k(zlt9(sF+Ew#+aUH&=3TOfKSP+Nn2Aij?h9?Ssq;ufe<9UsGS&ZubkiiI4A&3>G
zJZ~%K{Oi&0gLx5d^`=$3f@9K$xz1ss7)r>^&DGtX?jyc=cE51;nL&r#Lt4S%EkdWb
z#QQ=qb9c8=zRPH1DC;5_vZgWUr}UoSl4Yuh=Zm9PKR0;ltvoDQymM9YkXZjYy+mYa
z%Oq-o6ire9{eYQB*PSf*jZp&d3@Fd1=a>b>GYGZRHz=^2&zMk@F03?s7R5ZfH)vGf
zRmmoHGM2kb4%1wU{dHt7(e3tmUq5&ED7&A_b`uiv8rs|xn=~yaz*%L+S_|~2hZVUx
zFO0h=vi#Uk5x$nHgA<}+x09h&lq`|24qzLQ9K+>Pct^0X=Z#W;M11hU8V#&d#Pn{9
z2R$r^s0Buk%8FD6$XRWzs`M5=s!MR0L_CbSL-xb<iN+ObLptB-qePDbjpJ$=v1pM=
zs_Rp^RZaKW{aupBmWkUKOvxRnGbC_v_xG`Sl8gGp#n-ICx6m(4T_(E8xjYUBBrDX!
z-RtWVc&3|dZByySM-$l%J>ERs@;s9@<nI%@fpJ-m_gm-<uoCaUP8Y)3+QS!5f%9zR
z%66OayyY4OiYVTg4A0u#^V8XzYqgUN%iyEu3IZxKUKg+3W0i-3Oh7RK%xAnS@Q|d2
zgnHguFl#<?4P0F3+N6s(A}~pwXL{&Jva%3>g6-i&W)mTH7-m127#rNl-96Z))aP0l
zf5PWq&vpzt**JX1_>!RTsZbmy4Q(VwF8^ai^$|jlQ1iMrC;oT|%1{U?zL<@v_kjU8
zVg34fflYQqsJxmdiPI$FkxYQXV?0b3`#baTZ$Z7{%mEB3S1qAoGTQ3nb>vR#!<{eU
zgl;aMH-!44(qERy!zTR5ob5&4a66j9k3AbEl%F_1L-*aun;w>9{#S3poXWRq#!XfM
zy70aS_*wD<goR%~c9?f%?qIM$T#;m@rK4$N<6ZO{sqqVrG3mvn^l;2;*gn!T>4=<L
z(Ii=r2TsJ{xv|l6DQ7;b8M~wCy4RiT7+melIyxWNGMT~<opUWF9=c!L^MSt$0c}rr
z6aSH`w|H?v?WK;bb(?*cD9USanx5+xbuYBb#UCp49q->WbzGpr95}EOQGb<a@f|Ow
zY*mG!M?SWn)|1A(-ye&3Rw;)fq-Ux|vDEuK=chP7K(oy_hFc|^eIHSdTANo*RQX{q
zZyM&CdadTk<XVgS`TBWWaK{#JQI=5jogL-oZwC%>e&N)eI)X|+_`DPP1D;_`?rEbu
zzd)lf=yA1{nY_qZb2B1HL)R*ZaP{RyZ@*U>bL8r?HSkxXDZLajH;E+*11Hx;P1k6b
zD@uS&qFO-pD!`}20lHz<@OO&*9kU!)uY)-a%Z1iZ4sdB^78j%DhRoZ%b)PUwKq<7o
z!yeKA=EByY(W-^o4B!V?W(5~8Zw;V&ii*2}k-b)PO9!dDocp|g6vRH;=G^a0As_Sv
zroRd-3s8gv#Ny_Nc%a<D+iV%kmR)MaRv3;j0O%rN%uL$iJtJsi6Wh(3Gd&mYAHW&W
zO9Y3%hUz0F0~~FR0FP+@-2pJFStVQO1H_dHLOs_rUE4Ms+y;OR?*z))j7Y`^oXk~U
z6n;6%tU_DGkI3sQeSlJGi826Xal5`ebGxioYpN%(_JJxjcc&BymPF3ofFoOThLM7w
zt64GRC#`(a&qqaDCOo<miJTqC`L+=hJuDGZpm5C+c<|V4P&^F-`k4^me>S+R^A}Ss
zK-I&m{TR{WWq@Jm&h7Ok|4eq5GcNl>qQ{o~Gprb-{PZDi5L+7YfJDO%cC<qeZcj1w
z`~Fp8Jy(k~kHXskIn>k&T$M+E2(C91VDg(c+dN~{ESDl93gNfaCdUt)H+r;+l`aiw
zwegzM=1M)E&%nO8gOM^mMzQV=p&&!7_||d;1JHsdSA-U4)LA7L7#FFiJdd%9G~yIc
zaVVsD@3MsKu%Mb5E?xDeU%@f&1tT|RY%Z5vD~#gB&`>{`c8r~f_A&~71p{we*j`=B
z$phWz`o2L@V{vD}zuLCxs@S=e2(6$TIY)}T&&jXYj)d;@a|_RB83FgLrw)B%EL;}i
zIO{@XFy9<F>eSPAp98KJSfcVJbJX@|6nKQ{=&3`#E_w}bCj7^TF9+0gq$qk*$64`-
z!^5b#sF!sPD{e5pxC|my8edK6IZ#r>fcINgp?skRqj~b|-s|85N%qf@e1edlg)R!a
zC0fg4-epCqGQ8zW<aufNu8|BPDJvQVBIl%?I%mFi5?D<7GTO*urzVS`tP4NgY3K*B
zvDhziBwH(vWp$9fp-weyo<+wT5D{IMGz*%Qv6cM&7%Y7f$@PWio~xLvGLu0Jf^D4!
z+4kWLYU9?tu8Wt|Sd>msB}3*O!PPV2T<6w%%2l#ves$qRMei;JWaVO&6Lx!Y1<1Z6
zy^PvxYvV2FB>akgMN=rxc{J`YZmPol0)@J%lxb0{dS#ef0K3gtxJJe&6ywhp_b~QW
za)PjwNx&l;7lZ*~Q6e#(VIV8_dF(u@VWM$V4}7U2_y+it4RrwF;TBN_a`AXEDC-Xo
z9a31<Fbcyc6#YEGGMs##@;S1&`!C4RAe65O%7UjKSENchUyK1|7flD$cy4nM%ynTK
z6iK#gRDSYX0j4OGR@1!jI_206`7gi`h?^I~HweK?aT=26USopn!m-T0xmb5g2#zuJ
z-6`HQ6EpLt5k)M`hY9w0u(i4X#F3b|KtOTO>b-Eb$W3cKIie8iw^3-BOd*wWrUpHZ
zV&lj=AvU>pZsRo@w@_uUy02v?06JV3#i)4o%BT!e(3y=(ML<Yle$XPK$QO2E!;slI
z2J9d&z$Gfai%e`Cu=c3e1L_D}VHdq`$j_`*$)&Sy1j@WaEc<nyhHw$KkX-*=1eBsk
zh_?=@fBz`txS#YSln0OE&|ie>4O?G3IoG2gdk7}R+xhAR9<iUHhHrOn*R%TKw|;oa
z3g<t27MV}ZCkKv0f4sD@LcC3x%=|>Gz(0=@;{wsXM%yh^sF(K}<Bs#)6~=%pw&Wrx
zFC~l@b%m(4ng>G(<EBse^v%wPGw-Gla(Qa$=_v2NcHcRO?_82h^R{RIHEqQ75y#9I
z8$$7bb{h)Is_^j4DwD0NL|&J&&cvE=jty;iTdc8!8cIUw$;93F`riYK7e2z;2IW~h
zeK8UKNzzl-^7%$cUtc}P%5_9!^G!<DrcSrpCZ|={<uC(7%(9RTYDEf!z(5I7A5o$s
z`cXXbD1x-e0W#1@pmCuNSlZEBq!Ao`zpk*oF0Gs{9>Vrqt?1o8-D-$rX8O0U@pR%t
zS!|3F9QA}b9Wk~0VzD~Q+3qKq9HAH`zWq<@^0!{y?E26MmUF03TJ*Xs;q2)|+LSlG
zW;OUjIsbxlTl@v*f*2>;-{7N*%WQ#rAI$EHkn%GwV27MSx8@iy?$R+pVmG*4ZhAXA
z2PU3nQ1efSTtfW6p&C@f4f&4R7Gmk@F#^}8i}9!Z!z~^Rh_dbB9fD<6@it70vK|oj
zbj%l`)kdwspGe}{hX@Bj1GrUG%k^}jz6oFaReM-Ur$4f&%W(@kgS<z`<72jpITP@?
zLQE9boKu0&fdu_$L<q_`69P!*78{m}+TOsal%k;-Zqkm3@z%*7PjFKR_K0_-h2qrT
z2K%lPl#&<i#H!aGV-^lODk|FJxv(h|!<)+^0jwjNXGH!v685?x>L!4q#2ZVeP{|)~
zK8Td))|)K=d!qj2HE<OnU_`N*-uGa)t7PbQlc?w1^)lNm>k}-yR^W71UvQ7up=f<~
zOdog5`-dsw!-_C6dMC4}Y4RXE&-!u~$xX@1I<ovA6ASOo@@q6$fnODFct56rMD?qn
z`OH+IYC@zNFasbqL|7|C{fw<EdCqlse9I<0xDEJj{<KeTp}g}I_Fpb3^*r<Pg$|@F
z#{c-HSjQxWmoI}*k#tKmK>#$mM_bWgEack6seR<H@M#m+I+6PDAg+#6ud6ilC(Iw=
zZ~suDh-z?tUy-t_t0rT5;Jcv7EwS%(`4FkAEX~cuG)^mYjt!-7V-JE&tfU~Sg;x1y
z6D0(qPk~lDUM4HIvXw|TFTnErEhY7K7g=kCZBRA0H>+!HTvaoy2W#rCW=L_TQAN}z
z(k7b8nk$!Q;<>BIfj0~mWBGsjACf7zn(tq5@I3Lo1tlGt>ntd*5ruR?<8klm&w!ep
zK4kb9*!x$bDxGep6m2~@m^13{QK1w7rhXHgI;#M+dT|vfo=8>*uSuF`WnrZ4xP(_d
zuLOxp<AD(ro$z2~x))L^Cs0;?|CD?aWH5dbY&Ilf#Lx?P5LEqunBu2j$N>;y^>-l7
zAiWLdE_*u|@6?n%4XoEBfQVGQP~Ya#Tb4joXV`&m60h5#T~Q(&SoBFS9!fwspD#dW
z22r7i;?$2#SyGp*o{k{lTQ8xaq~Ld)42*(~y+6Qj77y5ym;u_(bb$v8+QFwqnMz3W
z;@>Pg1fLPJZc=R{Z(ZmM6~WsQ)(de#9U=jbIudQI2z(3GXgc2LXrn|X*P|xCJZ(Ub
zBlpW^D%;W0XaG<o>WH_j{`kkBkf<u6{4>rI4n;K2x`ny@%~l_yOwUFCYInY6bV{f?
z%D$e2jEpSOd@>n9TpN(>T&qLc?^wdlVnOna7(dZYaCLP_!)t@{g<sS92qfRvW>Z-j
zmd{bt=HtG0IL8WM<Uhe}nS1<CKiLQIq3~QIx<X>XR`;<=I^JV2`;flX=glT<4tx4C
zW)A?K4<|L`@F@;CXkDY8s`Gm5e}@s;1tJ3WR-(OnsqxIi0V>_03d~8K{b6KkEQ_<6
z1x+CpZEv}l%R8j3bl=dWS3?3T)4zVFHvTzfJaVEOisGM1^svbHy3Qjh2r@#P$<H1{
z{m?qRDFbWf4B<+|)oWjKNyE0ZI*z`ie{0X<)nuI6S})6U#}|)viRY29dVW<UpfFL4
zMVT|g(^FNoC4^m5Xcu5o7!+dq(RhTXW03xs194+z?l&#Obg<62SJgp5FYQ1Xs``k>
z(RW2co0G_&jz=%`LheaC%@hBodf}cRb{bmR$qyQ4i*W;8JTb*P&sTa=kkVp$1pBmf
z>#G}l8t-L3g0N%8j0R*&m>Re=CO@$^mToET3dcvI<k5>hlanC6bFlD0JOsaXdK2?<
z^X$5MV&mPr%HVy+QBG25%9%PD;G!f0J*zVA0M&LUbREB04YD&?WnCl$5ktLA%P+Iw
z!5TSsURqg_rUnVz>LU+tleJ_^zLSjt-AgIuWZ2>h@xtt?<v<EK_GH{}Zs##*E^$uv
z$7lTe!Xlbpt@rcIq0@uOh0Heki#_83P|j{vsMO9uMI~~8FS`*m$FhfZaf57I!owid
z7LOOiU>OL`tu#8qycdhS@ZIPIjj!{V2l<2~?Ok2oEmzm98<(2OsS!KZ6<d`W4Zzg<
zJxPK8S1}ZkLz!PRa(9&t<t_bJg)Po6DGmfP%9I-cvahtO%b$EM;WEWs(U43%Z>15J
zmh+bi<t>fKW*-hzYs0N0l<8>tE?+r<asGI#zoBGzRWbB4nT92wvAZ$9aV-%23v>+>
zb&h$S5i}I-B^`ef;!L$NDSt>9yWV$b(XPL4uTcv*+?k!dmr`N7*lw^Ow#iHzg4x?G
zUb1_{pX;PFKSTT)!BuNnYSP`G#(5x5IZ>0#7jOpWr&*%MZEs?CSw0r%BYjRl+)|DD
zD(2zokfOcxT_O(I9Exk~;rjX2vj&m<%I`QOfgI>&<0_fK0u&_)UQ{BOjtE<&%Ii4G
zwGKieO%e@;af9r9f8D2j37@@OAN~wa{(-<2C)!>m`irX@2dq3oXd85T#Q)=h5O{Pv
zJo_;apY{TipLY)36Iko>r1utEgX?h>KX{Tw_&ANdFA%++DYz}o1J)Ka0!Y#2`6^2y
z3DC_IAL}<GZqU%XpY27pKXC<BpexE2d3~F$?S9pPj}-L82t@4+>*8&#pu*%+0quDo
zl#`*McBa-^ab_1hGLz`yvA&6QsYUiUu21vB9i$hgg)3L`pGWV6>+8=Vo7`ys)z$Ld
z$I4X#KtJ4jGnH&YZ-g#){g3Wg-I~+qnt9PE;R3u*Myvf9=LHDb-%i$sB=6so*BOe`
zkW7KIU+%Splj&>sECdrz1#K+D2c|%7bJX&BC_)xqa`31kI%Vxdb=O~f_%V55OfX}R
zh-&rt8(~+@2A!7K|IvAU5%LB1s!+x$W}=myL4UM+=vdBH^$tR171cUtF|Op2qRnDi
zMmypRO!UAr@$yMErw$h1a4bL0*C+fB<&-P4Wt=8OrUf}3Yl}Aj&>T*z6zWER65?iF
zprG83kN3om3sDO6QoSll{v;au(8Am9x%8xs6xQVM(d08u8q?Ne-XrPZqk+3q%-^0H
zDlKx1&c8EuBR1yy?miNiTMg;tUls5QA@zJ)<=F64_sp2z?1KN|rOT_FrFE}q*Hl}}
z#Ep65_9mk(@|XP4FRka;ThjFXkae}#T;Hs4C(ijLpb?@xph|D1x+on)bl-iJSoRa`
z3guqpbNx7lxDdfH28DoW2WO?0v=@GjY1wQSQTyW6y_4eGT^Q6RO^6nC%2<I&3p3YY
z*SW~qSU=MJafP2AR=)@~MlT%G1dSAhQm=E9Y)h7?XZx|LGNwb=hsXYz3pl}de7Ous
z{;K_WSRjoTDSQ2BtS-AgF1=4yRw0(R*nk`D40O9>k3_2hlq3ufMk~12iaqL<juJ3j
z2Z+>lU(&qJ*Emdii5n>5l?cYhu2B#2XxEdcmBJg&k3C$1IC~9e+;;@NH|df}edYH6
z8A?kZBLxS^eh8rw^C+@Z&mox2{5aSr6_wU=nGfVJ>UxJ2?9<-~9d24fi@#1DZ=6TV
z|LUIFVjI*U$T`YA>+yUxctRo%J|!Nn+g<CDyiT9V*C;zgUO^Ilv3U7(RWE<>vKDmE
zmokD$OS$t7xtduP6PuxDHUKFEda=8M?U#YN+)L^PH#Xaiu9)#^I*xI5r@2{}BkDJQ
zSOARsDHCAIB&cA^M96KGPbEScCt^?ad#md}@+DlnjVTmhb3%-Rla0|+YSfL0=lIOu
z6sn8)){hJi-849?U9~_{1MjY>$&4VI=Ujo?qMHjCF8STp(e^M1E$&{$#*3nojNrGL
zbz{%32I96{Qba-tx~^c8x}3IP`~fnCJfp7VqNPR0G}Xx4b`Sp9WQ7rKV@s)}LOC%W
z1lGwZ^u`x|gW4J`Nsnd_ODl8^rXsbxOK1%lXLIz{qQAJ|&F`9yNmC;?yWq&STEw?-
zS2}9W7U|~cl(u(0anB+f>OHh3T&}(EVU=U*p1PNK4EEVNg5b``FW3};>uDO?i`++Y
ze4M%_^#qZ!p(I4k`PO@ES4p;sUe)<^h`X6)(yCQfI(g&#c%>YPJcTF^er9Q2kP%Of
z%S>S(7k3_e=&gyWef|0R{251mwUl<AVC9#9#~VdMyUOZO^=ditrUrS+Ms&jmU4D0n
z;=b(>NMF3n9dVZmd!Fx5A|7ImX<XuF^v&nifV$~@3}jGKi0CWHl)Dy)AJ*vxe%>}H
z4P(uF>CwjBO#J5=evF7t!b`2^c@zhi5a{Y_Afr9BW0|vlwaaD#qfa`M^LD&i0y|hs
ze6X#!C+B0Y%TufsL3V|(sIT=s;)P-p@aPN61C>6t8NdtAxAe|@oF{rKbbnU@5e9~J
zT`A5p41lXpUx9Pct*H8ms>Jv^A!7$*CO@1C1w#D2PR0?#{l0B}3799S*q4N1D2-OW
z)_R`ZN;4@!9~LzRTBCU?Rj`%95s_Oc7p_Q{SwfsET<w~gr$$4;C}!yF+0#TB3`OhN
zp0i!&DZXq&i48aQ<b|z!eu@)%4!1A8h5vB+=zcwfsTi1E1eN+NcNx~01AxyP-fW|A
zF+{e;nwNxPr0$KPXeWOldr>V=Ni^f*Ls5R<JnNa$_U02Y9*N7xTX+mm3MT-^7%kMX
zcvAzHSo#`@&h1PW#q!Rla%1Re?!D<5=RHUa_a~zHS9>Uz#}`}<T^&o!eCc{}?5t>Z
zgVdw+a=W90ki`w#4GnA{`|^cJr)S@(ycoLnvgW4ytv-3jA}jc<TJ(MO7py8fuPxAB
zWZ&wsTlw-z0G;aAK|bEwvGCbhmlUvZj$V_^XILH7wVPD-8EsMepu{x!BX6WM9}tUY
zvtbJ!3y=VV&yph&YqF|SBI8A6VxcSIJ#_1eyCkD~{Jv_UwIcX<g#otpOzY*|GN!<}
zz{V;YC~z&r(DP$Qh507xb&NpOw+&iE*Ctze>MSJ%lpVK{>QS$?k!OCQ)W^*yG`YH3
z3_VhV22XeHwT=00fKbSTnL(sN$62XuWrfM%fD;KNij+7R9q~}=Iwqk$O*FGXwLs4q
zvjVlJ&2?2$KKKHc4AN6|awYrMI$?yz)+ifnqSh>&ZS#Sj-gKxDTznJ!)Ar3rB!`)U
zET&Xvadj;op%NnEf<{harv42zm#ZM3`v+-b+V*b~UZP(KLyrLY+N_BPF$~H}*aG{!
zcN+BM8H8dUhSXdGtcJ`yZlG5qcVr;zQV%C}us}Bn{2})#KE2gvsbF%NYrMV1b~k$U
z8SfhP+H`GIzP5&gj&HqYxhVw@hLxwL1=7{RTf^3w{2r_gmv&D87VHSN2M50PEM`tW
zCq0cbhWckHi~~v-Ll`bIR?atQ>O=M_)TvUVFkRI#At!x;h=L)I?ze!GH1W=PZLn?M
zyxQZ;&K1-P^3l2ru)q^Zn?`;Q6{3LLYSvcQz@2f1oMcMqi^(mxe1`Ne+WB->-(4wm
z&2eLNZ3mN*86N6pH>Tr^lXo-ckD;kcxdZZk3}&wk(7K|OqIY^0+QN=p-+YJDbv3!?
zFTGJ_87~`diT#wWoyTvsA)aR*p1?JNvgz7&((oox!}NKP@^i(0ubtc!MDu`Km{#8~
zMUjKTY+-@QN%Nw&@p{={8Vhzchi%j>cR^r<gP=AQQ43N?&8ffQz*r<jz}sc!P+;dx
z`t-X8#7@;;<3(4ub=mCkzQXgEod}uxZ!aVKE^Lc1KhTw@Uw<#}b2Cc|;W4k6Ukl~W
z{`OhGbky9pANd)qJpE{uSBm4rD&|LvL^Jw3yf4U2NLC5v8o88qcV(@<NK#`D)f5DD
zjKx+9>a?XKQFL;y$Yk*8`H6}hmJY0PzPc$-6ITeP*Eh5guYQp0ZrV4<d~|;D?oefe
z#-z%`UGvmg9Q8Bu`l(@nAMF%Nym+dH^C;($=hD=H%vAkaaQCFhEhQG{=soOAm-++1
zn*IhiKIzF#mzhMS4ioS?<T|YXtl@6frFw((77+%acXYbWV8&8zC_sNtEU<~fEXwpv
zK0y&j^vQm?BsG2hDI(+fHw9f*&@&jCZqq%@_}Sww`a_y=*exocl7LdlpLE!0UC69+
zs_t8?s<*w@MPxt)$tN)^Ni=uuKxr$+?E?Ealhzch!Ss*f=rAq6MZVSZ8lq2{TQV{a
zh-X+JI3y1=6ey8%L%oiYu~YHygXXSH$}-lIRf@<{MaKor8=<1YeH9YJ=&Kz?d9mU8
zf;f*Q0j0cldHp8|kecM$Rh7_H?+-I8<6%OvKbElD>K4^dlqfR9rqYZ;G3H4I>kNIz
z;=j0g=n^gdo*;uJ4Gn^g)nJ8%T3tm>s+$bCi&pVVU#DaQOkzQ{9%)KMJMv>Va-N+u
zz+ffSy%6`dh<afE7n@Xsc??8hwjK*Ye`LWBWPK<mh<Omn(epYp+FC*#n*?9$%Owyf
z>827mW>a~SOZivB7aLZ9e^9WnOOKcqzPRzhN}rH2-)`H_&e#h2d-l~(D}C?XCVrM?
zPQ%pko_QAS>i+d=eh-R9QB$MwqcOdrl-ZXv1eq-2UA3V7TyVX&|J>~EZCuzTg(Z7C
zWS-=_g=d}tdh!rhVn?TitDo2|v<`md|Fpz&4S*m+hK+k|Py8<!c~F|`=ZN==Y)BFJ
z7?-Cgj$2AVVfzWU*!K=>?Y*Jt$=pg_QCHW+&sc?WDZDEY>aayV>lyy51wvgrPEwY=
z{hwOat_|bQ2l3|+&BlxMHLY*iZi1O^=0{FZo-oBJJROH<-0zu@z^9l-Sr>DTk(Cdd
zeGfFVXICe)M<@4gg6D2-dzdsK>38f6rh!a|sfUOGPX5K%8SVPJpWf_1V5yUVwQzMo
z_J(kxiFndq-a2A3#4mNXF!2i8aSnijsobQwl$7w|1CI;&>zSG2y#4PI80YO0(X3@F
z!NI{7Uz&e$yLrAKW=6_I<&QTg|3Ff?868)eeq!}2qWt#;9l?n}g8T?utx_vovgPa6
zxr~=nP{5dU)FFulb;-^X8T>@%31lZ}DVKND$4a_H_x3BKFqe+_j`5r;v4+IQqK69@
z;W6`7=ys=LOPW5pha533*EY<msLHWaP-bIm;1RR*+LDM#`-sTJ5KNsfBEX;+OLg{s
zBIfH)3=y)YJ}${5xZ75b$bCA$z{lEH*w{x|ah|24Phi00`VFWk=X#cTQKXKO_psat
zUddDDZ%Ft>PXBO^hu`owHF&os+2jLJ>s9^YLeSGzm3DCR{KGfX$W+#ENBR(NAep&S
z8+I+3e|T7~Z<8y2Sg+}=Xw2;*({r{(;~sxgj-_mTv;R&!Z7;tNd*a5asl)87t2W(Y
zdQ5j>JEh^X$mf;2=1jXi_>V57byAP7qYP5-)e*+))0lJ;VQE)o2RM?_KpaUPoz5E+
z%u91vs75DHKc6=Z@3Rd1Rr<lJKTSmF0)8el<Yd=3u{-3}mLXiVh>J9NaG6bUd<Ikn
zRJ&h-TxB7%yS9YM1;UV5n|e3r2{gAZz~ZT>#xUA_dIGe=>bgI!_aePb2jYihNr)SS
z$02=TyMhss(`<NQmG#81@r^SX1yDENkMHH(U=ny5(h`p6;O;5j(b6r|-qqp^#_5_5
zkQJilkXda`dC-o?nNVBj=Ao=I`ht89AIjXPrAR6#5>K0pO-eHFD|7<fD%~AaGGc6x
z%^>^kkbXJA2)>AqPgtLUWMA+m?H-z8Tx~HG^&A0ao9e8XXzu;jJ`L<}p#wtETVKN7
zBlqnZN%Ffvb6A;TE=^piZ1O@p%K$r<t5Gm)<l4ZAk9d9KvkUbT3kmMySwy`m!GIbD
zkB^%{b2CYpC@4g3^lmG}J}o!jcSJhsfE0h{P550MRD2M&ahwr=Q4G|3x(kSF_sn&a
zQ{oa3e4cjxh@lOk2#;jXJ^e0W3v|k-SoldL>GF1VrDk0;@GcLrJ;IvnT89TJ@xNNo
zQNnGItejV}%f6O*v3~psZ_?jqN(2RSvtl}{e)&oKgKDC4Dvq9ANtDWvhM#5TVc+v5
zB-fglxN-@D4=&r;0~)=(bzL9y6D1vT`LXEL)FuxyG?q<XNl#<Dhww3rX}ibLFlE#i
zE<WpfK`EXPATB9=>=Y@5c{Lz4XNoN)D;o<Bdv-Ve*2{7pk!U;T8u9)mnz%<u=L5rK
zjVO(k(qk;2epdT)v@WeV^qrI!nXu$pz0sKqIT59Pm$;AoM4uFt^*<zBjbYD>zi3vj
z_&(e4bdWCc;j%5XjlTPI*?h|kx}p0?lxBs=<tayfz4FoX2c#2u5s`5)v>_V9eI$hF
zjG=q>=o_}i9)eHr*~93n?w4VFd96dSz16^z<a+#A>R$e(C<N!~z5J`SJl#=+MS=VW
z+^o+xpah@1Jt}|hFuKuNtiO9K_&oB@6HkBtw##FGB)jh>ML?=pZr!I#7v-T{ODVSx
zipV!808kZDN3QE{(priSJFNpU5x<RBIr^KspIqQw{fwCTg6}-;zQ|m#azkzxqJUz|
zySJz1xu;*Tj+%uOUIxarB{RS>p0r3!NrYdIzefXME0L~H&L?OYQ9>Y;?+Q56@?joi
zZmSf`eg_rIJ$Pc|$O_?3WjkR-0G0@7${8O$x9IrAL_>_7!~N^GJkQNn@)s>?kJ-;<
zKJ54uag@oMknA=+ng2oRLM2}HM6Exkjv2N;@8Oh+oQphqN=i=61Cx&**_^Vid~~57
zf4mR(5|Zy8IRYtJ28^Hd(Dvr6@eT$Aw$F!VC=p^0ld5_>_1L7OEgyFAikGR+xxKuN
zy?xJyqlLG=57a7E$L~znKhPjHh6tndMO>o-4%KS6c;2B}!r5OBeVB06*SSNtPpUdj
z7}gt&1&>jM8c$2?bXOBg;HK<NjPyO#yTd0oj^Sj|)gD$euo@>K%YZ-|BulSb@<Mpp
zHoi+(_$&dow<E$Zekqf>O`ki1^ddplbU9afoo2Mhmfi8pj~ww32)R!<$>knp4({18
zU6F);rpl3$QxCs{SrqcuoDz7CB>owDz+ai-U4&(dV$V=6K^GtMc&SBT8A;(dBy|~a
z+fs-sUUiGP?1)T#+QlcP$Ogl83!vbAjqR71>M#24n_}b;6)j3w5o?LgWLE}Kw?iEH
z(X!C-?HSVI7v68qF_d-~z8s0-+?!OtT%(g+&s0GWp=7o}*!7#U;Go<k?NY_=6Mea>
zszicDs`s#aHyOFlY|i#}pK~&{Yg`4%@pE?+#K5OA#rHb2S7p>FqDQhaB5!1`w(Gtk
zV|*S1t3**3-5KYKY`w}ihn$}OS+I1wrbv6L0YZ~<(gh3py;0A*fgO-$&X(Gj!njx&
zqR%850<#!*AK!Mg%**mB@-rlqRxHQrGNH}$d{&ARAHz?$$Y=y%`b%8x`-R+x?VF7g
z!aT+Dyp52ClD}j#kl(FZL4#`e7YbwAZz&PLU=%Xb%vC=!^P1=HQ}$APC2lp1+Zw?*
zQI=2Q8bA<mq2#i!pm~dJ1X`jPHsg52_kU=OOZaBL?o)e`D7=ZXvjw4eYq%gAwUYPR
zv8UydHv;+i&WdpQ-AI3)u|*I?Ct&XQ(#NLpd(xw!K2dU1IcaGW2WOf5VE1WYIoa?G
zG``(;`{81(&caiYK%mYT?^6qR2i^aO)T^Qe4SWYYD3xfn1vljVp3XkaW%-!luaRnm
zGlH+~;_!oKBdR_;KvCr>f(`iw?-+oZA^(f#`C$n^iRSxC#2K#lf}U<AVN#d)aEXj+
zh%r}FB$b!P)_ekmrFOY#bV0{tEWd86_78>BvWmdQ6Fe_Q3K0qpiwn!MzEV8%ZYx`%
zzv@Te1)EF6>d)kVgm8gn=CKQ%V2W<f0Umldf$Yw6@+KL?kZe9~J<THv>Zt^z>!_PV
zzs2@C;Qd<-6bnv1=$-#<-u`>b7j~qZll4)b?&#V3+o>HTEKjaDg%}c2_k#Jm+#w<d
zkI6KUO>Rh&!*uky<xuCh;`F?1g9!JA{qWkrctIOfftj=UA}ljsxbMbY1M#gR8SU@=
z4>Wt-xHq#w5Z-m~VdJa}uj=BG)4xYgGPM1+ik!AawKV(>U$CAO3em4!+&MH>u^VIh
zcmLr(r7FK$6F_pQm{ph;v)w(*&`g#v1{4zycVGt*PS$A7Q@gs=&O0+c+S)nU*`2^a
zP~JTUwC|tQic-;c!lQcPwnSmDiw-BSaywXkS<ra9XKVH7&?t$d4#tgfLufAIHUDoj
z+ML$+@SUaYN;M5P#|u^>uE@Bp?vt^el=<9$e?R~Hoc?9oi@1*f9uakdLrimmwEe{H
zrNK-I2;MKWo}vzf>x~t)0JfWYOQ(}bcdO8BEc0ir0{;Kg2sfv_ZIZh*9*~<<Lq+^Q
z42cEg#h~;y>reN!952pL-NbPIx4|*p95QTv+hBy;un4|S*=$1c<#cHl@dPQ?3LTy#
zx=Y2B#n3dc-HfA!X#Lv}k;~@We#IKqQ}-dutHU>@+~te-u<X0bWI5ZVS5o5BJe~4K
zF!iyIl0=<7JxViIW#u_Hu?pL?1OyYxRaW7aKdNPW1*#f|1(PYBf4Zc!a`p`fy1TK2
zgqO@T>)r4Ia6V`l8Py^|XtKf)1r`YjLrc)n=#u*}@oo((ntR&k_GtPGwVuJHrVLEw
zIj7GGg#m!`QHM^qw)YXb=#*!Rx4a@NC0<@QmgQAWO-(HYB$uEm{8U+4*+B>p=ZDUK
zb9-pxZ_VoO!{gURT?gR@y@nABVPdp@rteY071YAF4J!DVh#$cJ^pw_y=cJfPMsu?^
zs^*`6ER66dMi|`xT?C^Cb7vu)lT|7|^dEXINJ&qB1^&+Vj<M*F5H^BG>#sEGJz}wT
zMpRPi7h0F>WM8~!jrPQdDKQLwIImxiMIN+DvwpNTq#J~~Mk6g9{Ifs90hCXvSO}lG
z)<?9mHOhj%{(wM%<jRf4q32y^EZv461$ED4g9_F~GIJo(85SuX>-MGt3OZVXKM^h|
z0pBr&W+WfHNby;XpDTvw6cubn!9|^+Bp<Uura}Cz5}*$k-P3=|Z}i0Uzr<hvYW9J}
zRt$Cw(~Ot@ev1A)&k=&Yn?JX(bm^4#OO><xQ*!vpAIF%6T*p*OS;ig@a-Bx)J0w!P
zCE`}3tcOg%Tq6OCPn(jeg+{1B*j)(ZA>`DN1O*04iHKz2k_H7d-Z7}BrXw4DJukpc
z*Fp1^aAa(&-)V2*NYf*v{_Pfkdf3?uq+&&{$jC+~->J=h)=i4_0LvVl1(=S6ZwS0i
zUxkxaJ;0Um#Ufu`Sz5j7bTEQ5FV16AQzMKg0jcN{V%$?6GrM2C&j0&O{>P@0D-G=A
z`O=bMhX1|u06`CWq28)}8u{^abJ6S-#{MPfX4BjRl(Gdu#kh)q(`ziRsj2CUd<ObZ
zIE^3(yun-$Gqi3HXrVr`1I8xZ4dgNA{*5Vb7fE;Fay*0ZT_@A3bn?Dq3H~X0bc_T5
zoL%25)N7de^40ag7?}G(&93SC|F+o<GXb;SX#Qf`z;E*&cy9mxAf`hMF9rdq`yRQ?
zTqZT8aal!*cgqE&E2*vHejYvuL+qM<$Zw}xFN^+)c=+t?GeVm8?%dK>5qD_J_FgP$
zuq*A`bF`(zQe?<bCw};<H^w)A$=JHp7029-D<$rb|I^rrK11Jk-w8jzd+2y)L^eRr
zDT#n;pXj8aap%~HHb-O1;z!1Z>QWA*I_3-ex?!_%accmnj4oZjV2F8Nsuo6ju)m-D
z;rGn>?^pdlej)sb3M|Y=eB{LF|9p3Uf8IDs^1$mvOQ}ivmanLB#5kiaz~P8Rfctq=
zA=YDwgq@#SF5%?$h$M#{=Tcak-r6#S%)8YyahZ=^RMZx;s<wGfZ=Vq}eAZIa^lLnq
z*XrDMWJD5eCCN*WnmuR_W#oH~zWL)z9ewZ3DbDmP=(@1Jf1hg8b-V<+G~MNOL)I?B
z=yZU7Erwiv$|gV~ZOvV;K?Fz^=|3$sva9?R`~Tm>fOUD`PF?r(;NktRRq4B!d`mot
z(fN{suJVZp`oo=|TJ){>fNB>w7odMmQMy}tY-x+A0<Vgh*v@I+38g5O-c{qX@@nsM
zQYg{dV-0C7>Pl&MGeQq34q*GEqf$w7Tw`{9qEYI)r@h9%$|NoOY%mpSUpB~m4n<sE
zUX}qe*s;ME5C`{~_XOrzU?*34j#FPFd~Z0hL?;AegWHOtlW){?{^MH0p91GUmeD`I
z^<9@G&joSCfg{c?#1jLw{a`Lq*9k;|#9Q)YBU`pYkq@^YPLG4Tb>0I?zJL2Eb}1Fr
zS8L=eS;6H-IFR<SY}VfA=Q$B-7hg0{?%j)tN{8Z@PZV%tVi8lG2{uzER9>Y+k61Ei
zA`x^RvD8QZWb`#q{X*wpA9b&fm^kxX)iqAPck8{N{|FDcpo1p3*cpKdw&u@Orab8l
zFkX)X3N_*i3TFTfwYC7gG0E2-en9`nqxSbR2Y!KwefxiXMq>#Te12*+kQoSwWU}h&
ziL<`Kr>3pJxi3ifC?;_p4(Mg<e=%jcY7~_9$n93q0F6jT?})AUTjwCa&=SlmAL)9S
z9!LMb-rU?RM0~%RN;3WJe+R|<Uj4!qw8cO>3iq$Iwzta|8-F4nX8)rQ`JWe*-+yS1
zaNA8dA4M|M@W0U;xfSrBM~83o{r!p}iAMi%i~QHF^Y?o+`~bc+y`yTg{qL=5SO(!O
z;iH)8T4z~Z-BfBCnvpKgpU?iefc~$q2fpy|GX&HoZN5mxlQ;hju?T`DKC*}>HPh78
zL?d7imj0JY1zdXm*9R%Wq0cu?-~akje@?ppA8!@>uhM%ES8tc}d>jA$`RTNn5H$2S
zPEGU#d(AXvl;}MyJW@If^!zwvFA}|2C;$I(to*Z9{`+L|HJ40phd}-P{b>MeptP*4
z8<icH`vKzWC@23d6%`c?9bHcTclBRx*DoZ#oL|urur*JZ9~TzIdr^Hje$5iEr^R8l
z<ye+HW*jiKEgbOwW+45?>&eCUHD?qKm@C$)bsGFAi2=W01_T7G3NSM<4f{0$%p!{5
zH9P|4nb4I(Xk=v7q$sS~`^M`G013gB=gi_^o%>0As(|~w)?g745nw_k|NQxLsoj#y
zM78b5Stlm=|Ic?_F5Nm$aIj1w(m+fb=4e)cLw;8}ibjw>(OxlC{qo(W)D*@0?R*2`
zzX;5~ev}<=gcq;zq?Tvol^Yg?r8W6gDA#FZyq<lkw&xfYFf0D~X?skJh|@UgE8R4>
zULm(_u|%PhBuSra7XX!)@=BHUtlTtfZI;=P%S5?ZmB;Z!pP=(+{T)u4OsmXIJ$Bgy
z<lv`LzEjzPHCTiMj7Pl5SsnhOoDrf&%6k8QT{{2c0aUy|d7*WCp_49+DG_Evi0G@N
zq{Q*E@zxp$pYs6W&zj_>MPr!~_u-I=a+m(pNT&kLiWphex)-11-c!DR|Nht@1%Q~!
z;YKA!GJ|g*JiWU=Lky|89c;L+arS}mr`jCBcSp4^=B+d-rsGxOIYMMe#dK0DSEbWl
z*;~DD>+ggL9RF2jq<@7%Pyp71PMPqCh(hC{@(rI{w!-hD5ur6V7vd;HOaYXWDhRC}
zt{VkwfV_C0Mv9-h+WLEMFAl6c_+okad)T%G{L1Qi!{@sHs;(P~WxO@}Fx0a*zS++M
zB{B@p+371{a8P#>+Wp9IB*QnOi&C5J5f7GYX?U1K$1E86eu8@P-Ri0-JYSARxHZh<
z0hww-*_*}xcryR<x4s|6(kJgh+4T|pPnx!-s=DD50X)%=JM$UPSVqV7;epIXfD=<M
z@3%VLod=1mpaER!c4V&803`c^rAD&MFX1HtJg%&GlH#_=M@+KirKPn{Y!^FIU_V18
z<dSk%=ARG1e$|&MQ0ly+TU4q23&*hjY%Vgz`<`Gi?GYgv9)Q5^s&5o;cJI5O19ikd
zuhQ3Cl$_7C7K{?!!SY`)IIJ*WguJCDq-@G!#+u5i<3bapCLkaveXSKkO*=Y7DF!b7
z_2*2T-@k(^OiHmzp13Dj_|YSaO6dfag8aHEP(*x5uqdb<RHj~OwE8?$8jKhipgAQG
z7{ZIz7EZ^-@ibEGwc@>Zx7dYPB_mmf;y%Mz+E*3a+`f+NfGaUIC1tawi67z@zT2?e
zH>L#Tn&QH)Z*e^C{di=RBbvEL^JU6ZV0#m7R>o^G^<yOl&a{)wD;*STugri)Ye4^2
z5_2&|+&RsAllwM}2v8z^E#oe78^Dq10z=-+S~rm4cjT#>es#PtrU3V;f;ylKb~q^O
z``ECKP&^%2v*DB8wSxs9E-lw>%`2?E70j22E%~YuaCue6^hv80o6BN>3c%v~oy;c-
zHQxa)L@6BkTCW+ogM*Gvl2$IU(S6+D-CtV*sG{Mk31ol20=U6aPzx_jWUOXT&~icV
zx`H?sH@j@0lrX>}ciJ2uNZR$W!TgsI4kzNv=VQ|l6zp0&@sRs(J<paB3}}_1UIcii
z3EFm{EJ3$o5X8ma{5p|y2@roExjr&XC;rt#haYy0wvuym=YfJJ1Pj7Ps;PrFIIDJ!
zeEDdsKbwa1O-)07F4Y`yfZAu4ii(UZT8}?&WOky=M9YjCy-+KCtm<Yr0)XvUTOZGF
z^;<#iY^`Bmy`csy)8JVbeYku{RYk6nBBlwnso*_<bPklpjb#-zoovKPox?H`xyiZr
zXsI|L;ih4{X8VVelvKzM5OO~VaL`w!45NDp>)X?{OCU?*9axo<69F5Ke1ye6G+~XL
z@iTkff8DS8j!&&qVVa>(fbku48@W@Lui)-xpp?|rC>HmjzJTh<{FbDekGk*c;NjO4
zXhql0P%svmdYdwo9*}Et{q=nF5F&2ZUs!FW)a6e#dwj%11(A;L<8SQ&D`0GSdAU!m
z`)WpT`2lv1#saAsFeBZrGHOc_nFB$tLlKs2lT+3WI;5^Yqs;|&*$vxQYj*SVneIXJ
zCZd}?xA=BoA0s0PG(jiz4GI(_EZLS=;3?uw-mMom$+i7`#4Aq!`q_if)~nLy79$th
zfGSZr*l>ZCnvl)YJBv+FGhmp3o22j0oP)^XgXTa9Yyp=8lDm6gk*}j3t$=OQ?E?x5
ziXXJkMGB1-``3k?2N%(gTI#MduL>{s8ue=|P3giZnhz&8GzX6_Df!Sh^J6F;6^x1Z
zZU~4b4Zmh`%v_f;w)&Lyia4rGEB@PHfee$bUvMbt_gd++__}Nz1FcZSjH}8l%c0lt
z)_O`bhDJI6TuBs(AUuIS#%bi2{vsX_e{S(aN$T9#+gBo|MmcAbpD=}!zOn!^`3nQF
z9B}4$|ERG~nb4;5m7(Y_)Zug8u34ex;26wnxQj*z5e#u-2iS_HpG9X8<BSXM;oiK@
zun^kGG8!f(In637W{3*9{vu%Kuc`FLnac@Fh=dY3q_v_~XOELpya{X0=|01nm?wU6
zxs}r8ZxKy5Zh)4kWQBm%4l@bGXyS36^5~r2)2g{J6#J`Ip~twbeSaaTIR7q%qS1#U
zi-E40yBB=th?^%<$A<%CC{^l1DB)y6Gk`^J!qAKN1haF1MNs?&DvzvR`l0&dTke_M
zowSVX#;YfPZm64xUkYvw2ukUhU9_cK8Po#?pz4u7GKQvEY$HY{dw}X=Ts*bI`0e?Y
zVEM{1tSb?p5Vk&mpes7wuBf})hXbw@nqukE_xiZKe%={mV`;KT<9)nMPUV)$oW^{v
z{HZW;TSavsj`40pti5~6^ZXC!ZzsDOovxNn8gM(ig<!h*{Mw;tJG=*v*QQGo)HE1r
zl87hIxO{Kzwe9FJE5TMrio+R|x;7C0yx_m?iRs4JreM|pHwT~7yx2tH7qpx#mljI!
zO?VHKfomp@K$Y<hZp;U`fn@`}OF%Mt<7ymWiqEK4_zwJ?6adH|&d~1WBU7BrO$1;w
zwC$>Nhr3bf4W(jypR=pFW^$Fzi{s@}YbHF23OUZPunvh%c`D^`r5dx}1bH6UEkg;-
zg2@NbIt<q>(G(@zA&a12)~Jek+-CLX6^bM5hM)!0JmVbm{&w={Bv{HkPG3Rb=$*Fb
z(a8Roo_E}OTrEdshal+j++3~*@gj2a=QaQ!mZbNs9|i>!{h#ECEcC9As~XGz_rE<F
zvH2@eOPIq@j@ou|+FEVCY{1+0o4gR+&Wq*JK|@dY6Owy{Xr6y-0M;2m#*<UkER6Bt
zpx{h+Dnr-Ok_joq=yv;8unyux$$2R?uQ`tiP$YN+jif(Iml~h&hQ1At^C~!By_CJs
zV?uss(v0-s4L?lv)uPS^ClJ+q)+O7kx>RQ~RR0}|2s2NBu$j}K_+Ix)cWV7AipUdG
zQfxI#J({z?vq>U@lw6**ympW7-J1gj-NO+*je}>F4t^ul-6^lL|3m@)xq;_CL1Y0a
zFAGru{e7^uNQ-hGz<FLEnn8UAbz}JRA`Zt6u*#N$j1fXxz^;PuyAtxj30toyN0CwS
zUzXP7w<C%YIhD2s2iC0F&6Ua0SkI>EQU&3)p32hQkJk^Krq0(l@s)~Dbww0i$CFQ8
z&j0XqPk$-HNa6RMU_`yU+k$an$!^s3fP|2MHC@|j!bouA#nWZD?37G%i>BCmR?v0M
z7ukFV-L5Z!@b-_Q=DD-}ZJtg+A9yE8h38cgkZ{z6{0ZmGt^DOCDI69P6A+uN8R8qJ
zpLuCMn*aVTI&0wRUZoZo5LcMvkxxp5L)JFC`_oDi6Y*nz{<e@1`Vu{>?ZqN{rh6DD
zr^Vhf`M8;~!S3unZ|k0;f03##3ZB{<lcv~7+|W~9C0%qpYaR2~*eDRxjgALbH>UTH
z9r@d^$O<RwR8y~ypZNM<;)1GOA;Rm$9Ez>ae){S6eX}@HUS4W?@w<-%Mo=Xyv#rYh
z;L86gCW#T8l*mPyR#x1DG4udH>X^%)O{EwN*cE_H_|?`Nu*Vb}8b%5%(+G+;0Z|h<
zDC4okyM%L%`PC-t+^a@{Lf0k9Guxy`(>ZYKl;k`@nlFb_>|B-wu!Oen>u`S^Gm1H1
zq*ATzl0yvckTUf^?&PbMxMx4~#*u_rLqT+-3il-AwQ|%V-@Z)AQ%MfFDZfpzn6yg9
zm(gVH545Xl5c9s>+Ag0~j*6qqq-A3q5pB-j-XDUc4QL`&iW`NakmC8bWVRtSnfXqQ
z^2PqO`71s`1nv*kL~QLkw~BG9(l`?f5FrOYy|>hnSVv!!3x(gdPa@%S<Hu^b^RZ~v
zW{JQ;`ZXmbWtLWz)nphCe{4=RPQx|BXHU@2Ktjj^?cSjk7h9bfa4<}>9y9b8mw|~{
z-}|{>!|**23l-0GsNCI8c3c4ROYK(sDJH<pw{ej>WiinSu+H3v<z!?yCUA5OEWz+<
zpeKdGTXvn8bmyzn)<Zt0%_vX>#=RKHLp@R1Rc!zwSZR6rqlbClWI&Tcn9;|cWJNN4
z_9KAeq42LR8gXrU8+oePV1ypvbfC?s%ho0YoOt5*Vt5-nKzFOxU^ho2pJ1~D7iVvF
z?2J;a>)Shj33SMPC*{-IQJ}Wb_RT1y?5HrZYY-Z(EBTFur?ssEjFxv)th`N0u&@?X
z;$wlPhK90-gN1AF={xoi3}Ey&RduYXX#N#YK#YViFh4NZuodbi>%BF*03HluO{b(D
zjf+_H7GeTi2Aw3Qn33Ai7cQ?LXO@;_lZ8Xa#50ViJX@u=6V~&!t7K_=JZ7-SD6vIb
zF}$zDNeLe5juDI+g?JRt8Kx9|OT#8SiY-L@D&_I&&Xdo3(t~UdMVwF8&O2jL6O^J0
zC*uF<D|`uW%vJjM>TG`rA@ZI}EeS><eD))O$kv3?(i+y#DJd63z^TO9;|8h{#}In{
zlRfT%AP>38MmE<MlUdPgAG!_2$mugzm-J73zk4CiPu57GdmcFBym=zGk6~T4{;1yl
zBbe}pXrbJVr9-dS-wN$_E6AEhJ8)DT-N#_wGgy#skd@NL?!2;y$hz529u_#E+0q#(
z|2|bKgDzjIfkN&q?b7Y5ypz0Aj`#GrZq$29Gkemw%_Ev%r7%;+FT(;C1VxpB+uEJl
zm+@JwE=>+<mIR|&k;4SntSHu#9eJn-?Lf;L)kAZ0)WzB-V|nv|dYj7{L-?rIU1ird
z`|8rVBE>nsu$%K!ZsCg76-|Tt*VbeQe{n~G>_{TsXV*I~ZKonWSFr!7M$@q%!sG!_
zwJE%gSeywV?vEhxfOAk3sDAt%&Slh858++T#&<sp!KC^LRI+iPV05oUzYkKZZ?u52
zc>}PH;Drcf)epO{rM0PY-~Rg)S}T1g+8yNHhpPj2Aed|8Ayh!e>ul-M*9xu+A5@nJ
z55UE6oB(D6s%p~U-OXr8(g89EWUJDokJJ^!VTb8hES{f(JMEClTRd(TvS1%nFvaEq
zg>aPvp?Bfe^@qME_7Ie<px6GfS4p$Fx}^30A7^hJ6=mDDeG7sNJ#-1o&?Vhn3epJD
z(ufiQiZFCHh)9Q&ARq|RARW@u-Kih~1Jd~(sMmep&%2)IeZKX%u0M2L!!UE6$8nr{
zZ2NDc7Ihvx^Y_4@hsb3>VU56I*4^&VezEc5>T>7Gne-48lYJ`5HoZ>2OI;NNIYD1e
z;U1j|XTaLaQ)BUkTeb2o#9Jf=6HUBXX}$Ji8lEN(CoSBoG2-~zm~Aq9v!$-S#2PAm
z3(0}il6`__`VM+##z`{|D>YG*Lz4+)P)IWK5VLb=@ke*R?T2-1sQTjEV=0JipQk)T
zM}Zna`{iUwUECdb;&lP<lac|8QK5vG7<h)~-u+Sw`yOROL5F!Gq<`A4vm5D<<ZDyd
z!idX@v)-o511?)?Oo++XBUBEaejs=n7rmDsuwwedm&&-R+z_algaw67vT8qNlnAR`
z!-vwg%;i0GqgV)M6s9Aw{rj;wYnmlF-v8;EzS2US*OeZ-jmoL$<Y&tH3K{(QS2n}}
zCz)IHxP=x7QX4Z{4RNoBK^L>idBBWOb)CXB8ff1TS`*rW+X28WDgq4^SL7Zfj=yUj
zA3~*V*X|7J-CT1*7V|m8*7bjW<g+cgiPw^++9vou+}UQhTS=Fp^w;9E!jt2etJm{)
zJf7kQ>%7m9f3y}uK$_jkw;+0c&$fu1uftt!p!{P3HDzV>Fv)$Kr`{<>Q)^fv)n6fZ
zBxf@!O}0<gyxn}ZLP$0e?El>Z&Q!uIGOSi}-(SzVs}AG~1;h5GF9`F)(6~`h+Zeh*
z#pmY>vVQSjD(nlFo*2p34vgOEfz}e2eWCc8jQ~XnWF;o5kQ$derS}Nuc0?Ju_pe^P
z?0-M?rhLheiz}=)wQ*!ij;i7zYST9zlS6sSYV40=KVNEnbbd|9*XqAQ$-WbA;vR+{
zLpz?6$Y3NQM>mbD3(u7LMF{=j!h`u>=X`>pOm0Xd!n5vfmDnT7$cqX+!%!v*^+q{!
zj5*tqXSs4zE-`_<O#n0`AGDZ%`oMY}0g{C1hfVciFcPOs2JAAodmKkeuN*sEe&Be>
zXL}f#hv6$v3-<mKX7WO$`_Q5tTu?~95ffN#0SP%lpUCvr(HH$<+5KP(v0u+bB<A;3
ze7VgKXa*gO{{p;H3WC(t;H0O%WK}-rE3^jCr>EyYXnUuW{C2UC>)X%XW%}3FyQiW2
z7%1sHe6(1aw*#ZpN=bg0Z6AOIOcpxu^D!BR%zEGj|FWEiL=HTMQq0AU2e1ra`|d!K
z{w1*ZZhGk+G6=Gln`k`TIpWp_tEvaOSpk!BT#m0iF7H*}f~{7Yl++uy<OwoZ>k4c6
z*pS?}_^(*yvt580muX$1v3mh&s(C|E@F7U2KQk~f8T{H@zj=b(J^`9U1m>Vd@XGO&
zb;ia;>5fp3qok?NB~a%7IPBuPH4qK5*V2C1s<zW>PaHrmtE#1Zarx!Tmu`Rn3dej_
zYM<6r()h!Tpd<1N$JOOgQ!glu7=bwD`86;IlmRV1VAQwQhFWZIp83AGooxcaiV|^4
z@+{{+dphoQ=k0eJu=CcbzF*yEeyja+(jx7+@wfhPD2L~Jm8xWdU*w!|#-Di5Z(6ze
zYNXbtYT$UcHCkYnybZ}cHId4RsDl_2>@HGB1tUCe&{`nGU}9p19^B61WJ?BALc}%4
z9aQKwH!5d9nPvYA%id3T>ekEO&Srie=uF9AbgR4f73$%qGsfmdF%vpIFHyTQs-6d@
zjjX6ppHeI(T=BH>={s@%dVOC1toYpFWZyh1ovMRTPpCW#o|XHm(%88{I{1Oj+mkx)
z7&(!U948fek=*X?H{@?w2Jqc=j13RopYN1pW4?PJW{&>vPML5x+M*wAItKTN#<1Mn
zJ7I=r9|$2xJsn{7^T^a3gO)p}lR_o9g%3@9@Y)sjH|uTj?g6mR?!8uPz6ZJ?TpCeR
z#AEH`rIsFks19C|^n5x=I<ig)K|b`{mjQS*Szca#UbQ<lUS#~l-)pp6An&q^*a-dM
zo@IHi<Jrpl`RwjzDg=k~ma$Gz@2B=>qFnadBX8<XFfd=K#(lPyWX-~zep+f0z(eC8
zMbXrdjrN*vtj{Q^J<aj0{L2G7A(zE1oBHyIgNVrdbc>hX-}a&ztXEtgtoOX`Iz*x(
z-jObS!L3)FWkYl7@6gvddoB8v;c}1FMl8LvLH|i1g4mMwHF7-fzTFkoLCvSR^NNNy
zl{Rn2s*1uQ*LIW-JCX^fKb4Qt9=v~+F6rYhkbaI6EtJ+nsRar_Y!xp*TXMW*ajQ#E
z$~yh7HlsCeRxbIsv4y5`gQgVT9&l8dtDN}5_AVqIrq_B7ukV=ixw^<b#Ne6wWY*>^
zfglZ-wCzt55f$I*ilP5ls{#p&6e=AS{Sv_kRZKa<jl}md_jU$l*XP%qS>92<;~oT0
zK&L1|fdALWn)G`V<C?eRXp!#Ud*$Bl^5St$&I80sg*4`i0;mPN^|rif$4K@IDVT4-
z#cn5UnPoR2wKu7nm8m1s&0RQ7+Tax!U&#*AK(b)U5Pu7S^9JPiMwZkAH_l;XDvw35
zC$Nq+AjkCfIh$GFCqg6zHWQs0rubD7WVcv|eJfb<BQz!*%G<pKk({jh10e$LVEWe(
zqMu-FW?o$WIdrGR)<hr2U&*tXvhy}Pg5ZuLfX*2NhH`f!jWJ?Al%_uWe4kdmsLg^&
z+`Ltp8O>HW!-)f4CMV%Z7HPKd=?=MZ1#l3bEyo2_<OpLpU0^7g?5OmB>xfWbCHMNx
z#Z1UN9T>`SZaIQ<5}tpeP7~@_tR$onFcY>W<uuBV#_fNY_JV1d4y~1ymG!iq-(J~Z
zSuEhi&=b<dYXs3;>taj50Z+(l{MOFv(l>akoU>p((py739XKUt(DBwj5hpN@ynbbY
zlxRN*dGh+(+0)zHS>E8lcyhM>F52K|07)6P3#>)do5;lgK&nN=Z&wPK!6#VDMPkp=
zc>Lt~SlWC<ENe}^o%Pocl;H-dz&&5cK*%@MbX+RIb!=~+5Jx~B+XJW8IyQbNrW4#Z
zLeOY+5zfykZQAG!9l|5ifYPNzFa)l*ptpi7wWu0)%sox(b?s@WO@gwb3BBN&sWNh*
zX4_L)w@r-)Q*IZJS1r4!W4Gf|0VwcoyzZCRrqOvf5oWhvv<5x*&iJ+ZF=HVnDAlJr
z*o=&rPW;!KkIEl;O~Ski&b+J=MI3e;8U68#im|#6y7g%lwV%YzPH!?LH+WT9*1FMa
zKhC%NS5HP`4Q)~427c?3K&uLXkl(8Xg$o%p5CIi2SJQy1qr_BDH?L<}6>t-gfG_uP
zJ*6hHUY|&kKuhahDLW-#>2vM&<GOq=j-xgnfUPB4<4zwR`l<Pj+u1~zZKs2hr%-R6
zBNW%Dj+EVO9)71Q;(@GO-VK7KM7bYTgI?B`OH;wdPUj-xD}tZ^`!&`B$#wq(DgM;6
z(?%IBsaTf4dQz5vHr**CkkL7Au)UZtVe;;1AN}J~YET&)`7Tu`%hdENevR=0Udxu_
ze6APm_-R{zK+j)F`@@Ur3&Ptp?>4RbeAI@0d_LxXG=Ed>R>fd^7C>V-$Cv)PNJ>&`
zhV#>pI7ZF&p3$X3M*d-&gp8`*SnD<I`6L*s>WO0@x!F5=B9*^gT<LhIZx^<#XlS=7
z!VIT157g_QE<wc`(9I7W3n1^XohWeVxI>4yeK1>KICPB_75vvIq;|!Q7xSY9T5DU?
z3soQF_HXf!pczA<aCyGgqE_fK2`WIK!o6Dskhns#nGHcJxx(b~Pm-_?tQS#GGBICb
zcX9&r-r7U=5Rr$oBeLY^DCt}Quq{y6=FmZNBEor53ss<q{-$S6yJU}#$`=Tg+$<{R
z_{~9zOu{{)034*YM$^lq9`=&aNT~PZLSvGkFxlzhR-rDu2lWL}3IY(-Q&{UCFXu8t
zYLI)xvczY+h~x5*{$Rad*St^yz?5lLrc0-e8-t#nfYNn&$`ZL;v$cE$urS&qgvt8e
z!b?&J5ptt<Z@(ZVmw6q!o0M3i(n(H>BP&wJeT|3~J?B5f|DG$c|LG}J7h$U${iK}N
zZK<>f=xGa#vJx8#59JSrPQLiwFHm^;hlR9rv%iJCxTckji`CCVGfjc}38AA()E$#X
zqlgz@kMPXu;K%?i2J8HTzP>(lw@KzC0xDVI4ZD!NJ#TBrMp+D$wv+HHE?8jTl4k%p
z*;QV}lOb7bINbBgmEpH5^p#o6g@-09!_>R@zt8(-C*{n05a{m8<JshuEtE5K|0enn
zA#`Ap$NnfX!uVWcr4tGmf^De5v@Rx9h+Xp*3^H{D)SffvYbx{!QJ1Q3Nn`SFrt=!(
zr!yo?;f6WmdTNuIU#0O_SU@ty+QLXi%wneL(}n!EI9r}6ICfIfbh2%XDnUA*pRVJU
zJ?SOv=IWY|D~+IcrJiL3rP{I&A$mnuqqEv4ZWBfnL(?mgP5O3xQ_hnwe(4nP^8JlA
zLHB);oG?kCccmr#D7g~}a~v5<zrpkY%%CFFobbqFnUfazV%z(l`)np13vkt&n^VLZ
zRHVo>S6XD<PVx*JrM}E3-QUn;-|;bv@>o~zyDtO@v`uD@%S&2_BOicQ1z<E!qEstB
zxfoZnn>5<fa@7~3acftG^OotJkiuF=vO%kQxD1S(8hPj{A<BuI)!yTC1=P-vxpx$H
zP~IltLf2<iFd)0L_h!N)3|}?O_N?U1Md$ZvIXYQ3jG#`Nolq8h+i7*(7qqjWNWpLa
zD@JOEB8=+v6Db_ja-pt!x3r8Hd%^Si{hp`du37wTIv1tif`-MA8}-W~CG7Ane+>*-
zVZMR&yxRCETWt&E>=r*{ug7Lm66aT@%Wl>NhQ9!!AYk$<D>OhsA+Dv3{?yO0M?Rpf
zQV=bik)pmVSwu?<f4KsrS>uGFtri(vLo}yH03}WiHD)wRN)=d^8<9$YKJo^6uqgHg
z72MkGczQ-!{uY;uONc;?l+e-oA<wb$Oxvhhn(z=I?ewPHd5DPZ>_{_vHdg=<bsfM&
z`B_VZwwpqE5)^zxJ!taGimB;jA`3uQ&iD)9ROC&3_CoLU0rih-KR>TmW}I_~oOW?>
z9Mmb$`LcCNe;To)mWe7g($OftfDGT^hkT2?LC|{N0y!Bb;!Pg-vatgFI!Pw&lMOK4
z##B9flK{1&tlKQEQyDgBr63fScG(!d>!Di7SH|`b2Bt}I>P;x+YV7DG`Q7v+0shut
zu?e+r`yUnnL=|0}d-(4HgK40S8T&#eM!%`j)$^EhvfZ4M87()#S@DNR?Q_@2b9Otn
zSUSuA^SwvZWO+cKLMV~|q%7J1y~8^5@tI)<#$j;oSaVF*S9YxXV@1YV3I$hVr~+o?
zJWpdU>m^*X>xH*Po*Grh;0??cd23BMndUu9+v*{8Z9G$){MLMS)U>u2-!~_)KnN2I
zEi!3ToBY4jFF+CAY<WjqC+WKg^79RcEC@z$n3jA~b2|l7I`jZ_-lmU1@BYmYR}wzf
z2+Ub9R9lzxgQGAQ&8UaobPwbE6NjLohK~F4bxWuYp&kAfgbdrG9&xZwCAU+aHw?o_
zRWq$v&EROE+}7mZ@}IqX+30a)KvF#Ey6;z?^YHVlU+QLRANpmxOc7Yl2HqX>*+ujN
zED^lotP}kUZ}rFBw~Oxr#e3+Tr7a#7hS|Nzq-u|_hZD(;TWoCD4#Rm$=%Mi<Oh4)W
zX{NklLJ1^0wCe8eK0PIBy&akwDa38^G6q9t3IOHvBH(Fq#DYY(NVx{ko`1F3p~BOJ
zx{wF+XLp|P(%0`XexQ`{t|$E^!|+%fVt$(`?L*1s>kv_-@AuxH_2-yB&nqkcf}<YS
zLDeY%I0|wB<3v}0)GiJ=fX=Z2f0zXTz$V+rRq-2NX<QdiBnvHyDUPThQot@?vHaC8
z_jeBYKuHTfEE82P4xYR%Wy@e*2p56Q?eA}-ZZbnQVC!usXpavqBG0&A(6p6X1LV+w
z*UV-~Q*lr@^l~ZSq9oMJc;2pa9{&~DA;HS0osf(A*4+c^(9aMQx@`fcXJ)iYeD4gU
zB@nCoR^RlNuCTcMAZ2BJjSf~|F5ydTV_+-!3dq1#L4m5EXsL|$PxpN#RJsxzMh|)C
zzxgitJ5E<TB@yLE%yia}blk<_+`cJbB%LjRQ~cqp;cdSvYl+{j85X~}kV8dd@AN}q
z#N+Cvz1lst(3d8`+}#~iStWY`$st8QK?Bopql^i54@^%7Q?b_Bi+y@D&HO=#m5M*s
zCCq-U<f2hdC{9qvBg0D7dethf5_9uEiDsaFuT77dB<}T%VlC<-R0BIUQm@(&l;&ST
z!~#FcQPMm(4-(+pS{!Q=r|$u<xp|YHTv;jZM&mfBCk0~Y@Q7W^2LNwj_?Ba+fit%2
z6;1Rpfqk&j&rFX>4C!)(CpZ1zt?-#PZu)cHdb(C#UC*M##!KRFYsWpsapFgf0^VmW
zNl`%p+qvkWSz+mk?_+k@vh0m}?u}@-rXC&ynpHh#6Vgn!U~{zA-Cmre`kVK}$(rsM
z&tTuI`kaf2XaDdeq5oaPmo{u(?$Czoy3Iw4IAgmyWb<e5X2!F{V++{}I;!-uXZ5@H
z6mWMQ8p*8$QP;_lBIW_->3aiO2olY@^_ItxMupCsPVb-C?RMlu#hqRh#kF1(t+%N*
zf!=3P>rL`tb-tEyBXae4_Qk-{A<DocNPxYpnOu<&sKonz&-se23T=_8SsNJSLJNiV
zn9*{()S1!DCZ4Q(D=aRlf3xkx{n$s)<)<Engu8R|yyOtRF|zdpFN^M51k{FtHt;kU
zLo<*rxKlRIRny1f)AyMM?de|^x$t9wV2!0qoYu)};DY&I&=l{oEI%7SO^FJ3vTOP3
z#q6lqt|b!&TkMEqyhOPM*<Jr9jSfK=q3C1=e6Ybnmz;<A%KQwWeO%)k3>!LWLH{`C
z$P@7C>-F@`vvl}v`BcDX+K4b2oddcr_39STB_On;5<;mFZoRws8ZKuExU23&<jR>s
zsE0f}zX4Muj5lPKI<c8Io<R?fgOr&Sdyh$Vsv*&{<#%0ACh~XpE?-_%?p-jxd2qBr
z2SM8rULk!tlo`a(&ZyY1?ry9~Bf8`5X1?E)qh2^qm~+|k>EpAnpL<xT!!I3XW0rTl
zpHMbQe!mkN=aYW*8s~}Yo61*cRUVtj)YZ04W*fh3T{Ds*wELA8-G%-QR)420|7qHY
zK^EO2F}s7i;d#eU4@`$pU1PW0gR=Z&@qL9GFL`#c<rG;%3D|$cv@KL6`Rrph_nK{w
zpFCgp5$ee*5YoRH`b2D0DOLVkkGk`4pjn5K<%H&Yy|M|_%Hc7dB~Jp4=v~Eiv4xd`
zz%RcZ=>*k|IjKCXsr&g4#qlRv<K?OCo#xZEM3Z{i3)wETf#=sO_cg|$`F`DLgdo2a
z^!dqY=517ZA6YKIm+H%-VGp=5m_$+D<mC_f>NW>T(={c{X}fW(THyyF+>Oxq2GHXj
zSJrs!+1X3@eHF+{))*_=yog>!#5TRf>>+r3@>OVIG+Vchj~1a;53t;80OUI=tKw1j
zL2af}bGWKc*@1CPCi#MLcA_?1oai(8M$fAcVBtibY|k8JRa{t!{8Lg;%3S}zIY_Ed
zkUr<d<BbMK-M4m}i>wZe{L<dO{^{$XqzXmC+0jlSfT@h7Tjj!q+h;^>-op8`r-Dkx
zQf@uKS$<|elKw}F!{SFf-WL-)ga5i;RrG1;VqiqZXgb~!CJ%4lN-oI^OZQn8MO*vH
zPH!7M?O@@}=>uKVmP^s7t4&UiGd3;N?6!B6(#Xpf;!9m+@rfZ_gOHNcqNnWEidm=D
zLXg`{2B%R*&aFX&1eC?{uc~{t^2n54iB;=)cz_<EbxpW9Y&<MqEBR45*S~8~`TVF+
zXC|=!(9wtGC$gM~Bro@OYfKomya76Ths~em>e^X;KYII;BeZMs6%UY73KFB78t}9q
z`Od}swh5WWtG0J|cw&C!);;=hxBl^)*p)Z$RaYLaznj~evX(l#{i1E&T1kFReyYhl
zffHY6!W}RqPFIzlSQd?LI=-Qy#rj%<HD;;vk4_PfK8WlD$^&C$yn8eP!j!jCV1B=$
zUy4D42K5m6;8IpT%Or5V^%qUxfb9Am6~~s|;1T39po<uPDCcPb=pxYkbJSUJ7hs0o
zrY@17CjI;(XHl`s!bGlrid$>8XVc_~tU}3P-}`5W(^vQB_%enInQ&fcSM#__9F>Sj
z%CV$YJ*>sC&k?6Q#hgWrj_Lq`@<xt_PfTY!vSW_1SKE=JjZjoyq*$W&qw_<C4=YI@
z%%!H7|5-A!H)tRLIQ8@qNtWF%FODp3Dzw|8BQgdI#K-*za@-is9sdT^Azg~=wSg3P
z0EaGj0Xgz1K<t@!2({7<u6FXdwUppQ8ju*!V-8Fr2<6)Y8V<${_dqI|kXu`9NYe<U
zcY8pM@dJOG7KmsV08pp2;>nWJ>5Wc7J%!M3Z|p!}LsXncoT{}gONuKLD%kp=?z_mW
z0uY@HP;LUAWsw9K<q{=UI%uA3jj8KCKbMg}ylw}0Dsh74^Wa~!MHYBh08RA<jDdF!
zl|9#WGG0n*1swvo?F6YCLA65xNc+Y=NW|5|Zz!4qM%Cg8M#8oB?A^Vw5}j4C0F4D<
zfTc<iv}f}Gh4NFB7ubK!qE1{tn@v2n!D<4>oV1s_he6;txUIUngt`KBKc(~H+*Xe_
zcD_adr|c78EP+n;=8v{10gWd0G^hTkH$>;yDv-M>0)M1zWc5tShvj9ctxHLKXPyM(
z*~noci=I)VSFUAk_<OGGxWS=%YV@TQVn*I`m7st_D;AG^A9Y9vnw*%&nUO$g17h>R
zR9=S$NtIL`OJvL9<2(bJ+lA(aKmWr3u16WhAg&~yq4;#vAuzDBLs`$Lo}Y?e%{+x9
z>@JLBw#=#|C0|q@o1pU*H5*WxYR>cbKlJ~QRfgDg@9yo@onOS;2<e`hsy&@2pD+dW
zs*2zcqzUrS6bE$MFANz=2d0KUO;8M5HV3)i{;Ed7ZdQ5_9l3QiC5C^@(z72e#hN<r
zkrhY>S`azPBqVjAkPvIBUN`sjba(5cRiDFo0`xCh^3pQ7m~<=+Ors2e3_13KQ**0V
zm-Ao6lIQxEQlY@Sqs^L+&mm){uZ-{4<u^CfN+(9#&uMRNJ$fH6SAhztacqjbPiX}P
z(1=<)FKl8HRWjAk_6Iy2iyvB_-q-Y!cxWAnsC_wK@AjOC$OkaXxTu94rLBII5fFsF
ztxQ{fHYHywgzZ-jwb8Yn_tSi3w?r{C)}tH&k(DEF<vt4(I$}95vlTmN*qW&S5i#@u
z|LWVTM2u4Vug-z7?A6#qh<PXd_PAMHl8<HkwmQkWDUFp%-d;@n?L1@OFP#ikd@;FE
zn3~akDBZ|%A>%Ys)HU&{)Y8*2Djc^&zJD*f_dX|QRC|{D3e;Me*X|Q!CB{pfuD{!p
zd|+S43D>h(XxzKh&M5JDnqM_B0j#n{Q-(tl#t3a|ACNUdwCX|o%B=)>x*0!|3lzz^
z7CWbdpMfPF4+p;AJHpftWQRD|g1+*hn(<3kvW`w~Ura0<6_(vo9tDu>g&d8;_o>f@
z!}C9l8MNx_?e5n<xaMSO9a{<Xy;GnbYKFbnUSN!O<xEK5P94&N8EXqZw|t1d+Z9kl
z$n`@e|0m~X-xPXn``tHxzGBi12)`bFC}Je9I3XoP$)SGt)^)o@XnvPIDLs8VCSv7!
zcC|70rh4eHUl5GIVY9~AXzZn(QS|lCYtW)CViM2>DnFx|NNEjd&3%o0((fc{FS+GJ
zR;T_mOH9(mduFI|@68<(LP^b*7+$;Qc279;1IgM~YMIxc^q1OviFjh`(BYkOH2;y9
zg=yTdvno3$RKAC^FN-Ko{WaFjt!Zm7`<ZsMk@;D#QOPoDT*Y<u2xc#(PHgqTs-lIB
zk8gKIb%kc}h)hxcxoiEQ(oW-Md)N{5g(A^C_Bu-_Jn8;0tUh6Rc$htFH?a59&xns_
zZY8(UOclKUz;3eI!DILN+qdE29K$0^MfxlGIqhr`Y!!AC%qEx3hy8D#(pBgx+ebpN
z&HeA{KfPovv!u=YMEa<^w^Nr2WACEP{C?Dc5KQltay`1Dl?&C>7Xf&OAp@E?0{JRh
zvI2@0mh{BT0@Ygf1`z{@>E5WCJ|Hz4UR-J)d)%K^;P$B0;A33I4gymtK7b4#f@g;4
zxLHC4Y3LXi#w51Cij&2dzc=p}Lp-`-!0YfaO?+ZUQ@U<<mHIY)>>}n+SGc!F#`%m9
zM^FenU?=Ww4@^Zx!e`!4wUnAA=gO1qe2pXzepX4Y==aE4v_mgVd5tmtyW2+CS7K<o
zN~7jSR?EeY+BHi}YA?Oy-Pe&#qQmVCWm|C}s7|{^V@(Gv{uB2jAom|})~~qRSlg?l
z<N5aTTyKq}8$`kbXxC`<R%L!jr#moAc(_|1<-t^6gFdpL{7}fQPhZxPoPvTC{RQwC
zNzrnGWMA6}u_6LqkU*&8qiChl<2r>P-(i96$FMYPT-^AH-fNW|o3Rz<E}iVpA3MxT
zngnO>Rk*seo{rstcip57j0dMc=6++fRWE5C+vEZ;s!U(Bg1&l8gIGjKHUWF<jyMq1
zZ_IuJ-HDIOPEO#2G+2O~7{$uq2m*^LeH^Z{k0wp&Wo2yC^stp=>+~3lPIoz<`|4aA
zZ4!-zQ8W_Mto-FY3TSAddS=K`fRa}Kz)=edhj9aJjyO(DE>*a)+WP@JHybU$s5kS(
zIt~ygH0)<am)5+{u;lLtqdL9F4O4Xd7@(<8jyE?&*@^x%^Q`V;k86`skO4zl_cepP
zUyIyW<?a*2MCgrUDd{lzM?1;!#;BbHF)WWZvmdRqUrWIYzWUC~jmgkZ{aM%i_NcgE
zHkx*lz#SuFnv#<x%A4DE1~1Y2deNuZqe7`JQ(Roym<qhQSbG>ff7pD<{eo5!ah#^?
zu{V*ok>&04PH^cXYadr+Yj!Kdm|ou(!5NKu^yT_C{@ys+3NY&d_cpswlrOOcJUkDW
zetnsZs~FW*P%P9nKFLVq*G!*RVS>|Cm@juIh);6GqROv|?D@E8lltfu>1BPiV6;9m
zsP#guQE3}LcI{~+?+KdJaDZTMJt;S0vOYQK#uz~47x@U|4v>N7lCr;@N@g+IwI2tw
zA~zgMW)q;0WPxqc9k@7YU?}np@8dpl5tN)$y(+t8gLq{`Wi#6A6qU9dy87grUr+q+
zkATOTSY-<pZiMvi4y`f@-8~Y?Z#-B}#Dc@Uy&{UB6b2Dp#1k>7qH4LB+wnx(=$!uI
zl?secr3lbM=DlSt@6^LuIm9H%;JUZ3jy^p9?v7cS>G}jU{^yxaU@|A{s)|gj%h#~d
zY}HE_&Qzq>eYN{^&zA4rw!-?LM-cKsy?D)z7#n*((^Z^V_I5^CJ$1DIFP+P|l?&``
ziPYA65*!|^1hQY#xV}HN$bY(K7gg}yTO{M}fh#QszY%S7?JC)JElY;@3x#GbszT{%
zK$D<bd{!BbR>ph_4ie*Ev{N0|-GGM46am{+FS1krMJOsPY5pCRIP&6TVA)-oyxvbv
z1ri{PXWZ}j5jSRhZ>{(K4x=jRhvS<v*OKu&omepx;<R*W74Ew@bmg?($1)~g-o146
zW5Jr(yat6@qNzbO=*0P2AIc%o&cHxYh2Ul@*%1N44fEC#xvcq0`pv9ZxNkk+nN}VW
zXqGUwdGfZJtu&%pv|sdG+eUS|4c#Rh0_`jgV>&zfR6oaGAmJ)5=>C-w{R>K`O1_=w
z*uQv*l?Ib+7csYluAPKg--N!wqY_jhJpq<ht9+=A(p^?BaSmwCBd0%<RDdd{f_!8W
zdum(n6X8Z-K?vEamF)VnrITBMf$7tL>;%(qzA4pSicG;&kAe1sU9Ez32I~)y(eo7K
z$9Q?s4_n>){Bm;@5VP<LpfiiZK;ze{?4#rfaVRXtdk6d3UVGyVD2Z6#smW>=;yX2%
zwxB90D!#UYext}5oBFdI7F%J9h#$^oKiPK}|7;H<U$j@Gx8J!fEXZcPhlb-tW+gR0
zVdJ<{f8#!qlke|&Xo?yY<y(jxczIsz5F-aP>bmktattiG5~nL{l5zGmq4-uQ5iEJY
z!kRnsPQ9clU1Sty8Y_wlrP&(+Nl9Zh1G8)$)$z|&QTJu#zYNZNte*cttcFL!9hXPp
zB~m$GYN0?1V<X3PemWo}Q)|+f+f`tWsvG*_+z>aG*0t@c;Vw-7(Ay&I&ZRp0{4NFh
zQA+MwYEbj8XUfTudLUwtO@!&9W;6*)sF9&PsCVqW(e$rqtwRMqmc!r@Mxs%^4~CzX
zuJQ%XzAqGIj7PK9Mptcj_e@d7GJCzC_;cW!qT>4b60)&I??PX&5@dRNBKL4LGns?Q
z8qyKVnC@VJA;%QIRp{N|7bq5M41D@xqUkahvl&Lm!Qm`UACf3+WV-;G;$>$|R~I`E
zq}P7r;?XRBqD9st*5Y-0qP^>(6LX*k`*P2v3N)~lR8(@5Icw!#5zq|oItheg?DD=T
z`;7de{K6gI1&JCGU6_?t$b4^t*XFDRgEp>JHgsr_fN=SN=YH@Cwq)gQMP7+d@i>p9
z#5Iv>|5oW^XXgsZ`!ufd6z#Pr0T4}0f&=uW0-DY(qseRa*bW>%8Z_BImt+i(kp^>D
zOGceX$KW2k$yN@<119K<Ql}TKJi7Cu2O9^a#uGa@ryW<cP)xcw!S*&HCY9H;7d6~2
zq3<8zE=VDq1L1^g^=`j%FtkDg<KaCyy!CNC9e)m6GCY(WY-?RN_2l12@1iV|hUuN0
zigW%`ffv|Y-E$uBcZ*)X&-LFS=<gL76)p{=a&y1{r2>p&@uq%#*n!8x$)rc?@w1d|
zxs5GILQxtbTotU|Ty`ZUdeQ+Ydu-<_rspxQ$=bu`a5iX9VM&bLlEFJ#`glt-^<iQP
zWF|_nc^ks2%L%G$DaMl@k3<U%t8eSw7s)V|JM?${&Lp1-`Dldv#n-<<Vpvr)7kAN3
zVySx7pycg#A7!oNM2O__+%8^x_+X3e9@qJS>Ybm@TY}NmUN-QP(&>BRM->%YJSSY*
z?64li$onT=a8$??<g(g8_uVeWcw~aAb@5rbvyvT6KUL8F108q!B<#@tH8g$N#sWxG
zGeMUn!SU@+n@M~`L(|6l)C!Gm<O7J)Z5*0GBZ;$?8CYNxH)I_a_d+1F7$z?2zMpTK
z5P8paK;j76Zsk7mV)WNoqUI*luf-z05J_-?3=I7=%+_A=K})w0*>MDrPDIA<UkJ!|
z%guvWVJj|Is^i`n>f@%1!_=%BMCow2{ELIY@0he+CZ{j+S}5%DcXf`aHQa0pQc!3S
zDb8E?^#q3owD$}S0zNO^LMhyI^A-Qe-iU!541>0&r%<MD>g^vqq^KPI4wn}}YrNM<
z`JH6%k;MAuW}RUO<X3UscJ@kVv@WZ^Q*+@ZC>yDS;8FATDP*U=wS`x5*=(dlZ+-T(
z))pfddlj-t{wZqx4Zt2IrV~DNs{}RXteFG&%A-z*LpXOuP?_DIxYuzBiX`Op?d3|F
zTa)-0CVfpGCwPaQo$^EQz32QuhjYaT+RY#^MV{AO`%k3&dvP7ymzEG8<0^fHPm}q9
zaeP;1l3I{yQ3)m@GUdqIT505EPj5tMw;)O2Ulo?xZTW@<XGtF=E8U2BFXedq*ER(d
zxpxT9$QQI!T4xhSIZ;H(I#_+iv$+PnNvZ9mv}Y@llx;0qPeXcs%s_Iv7p`@AGK<6u
zXUh0w$wrobZl4z&>h+x7&Y2=7(FAf5D8$S~OB7G?mche}$!O(s+@9me41)wm{7j+R
zu*al7hfayb2h~oagnu5UH{pPr1W~~DBb7I*$q?6)6V@hK77`Gs)LG_KKQ;dB%(`?+
zMJHNMj3x&$MBpkYKKiNP<#Eu~KrCDBk6*t_(GY0KfA|?0gi)jRR<yg((ZP(tm;Xoa
zBg#L>Bxuc25;^AH?3lxo4G3f8ir+<7R~Hh2KnjO?jDj)m={i@308`%=SZDsFW;C}o
zseZJ<roXsC&)k1b@|+Yz@3`1^=uGTHUU~)zi`=>Mb>&%GTU#!MB0?+3QP;r~b*LZ)
zsb%tN;?HT2`INvE#e76G-MU_gEIcXV=vSnA{H>8@aNnqK9BCkbo<_e92F@F(?n`hN
z-7x%kq{f|HX$o3WnDGtfyVNcOL^tluLw^j$DLmw4K*?5+u7MIE<9rjzzVz$MHO8<$
zm`yCrOog72xEZAWE0_mSVCH=yZqPm3p#JvO;$O)WSR(mEC<~%v%S!)c)%@!p(hbmS
zI3dm$S~MY4D7~OF$en^%sP+1=d$Npno^n9n)V@tT=mx9<SPrX^U{uI+vOQXChvq-N
z%kOpg?{~Z)0vF+eZ;kZNMfsbI|MMb*$_;ofP}?iP;c#AgqLA1Fa%wWm>kmAdEZx;?
z*wr+q__6U|RgLX*&B{Ji_n)8p_i_5K-*kfr8F>R6DzVa@``^AQjRY0&O5#9X+}PN-
z$|&ns_U9~Xo?<rbomQ62>b4vZyO-PPlbfwtqUn~r_0zRa;y->*CIP`@y&K=%yLSnU
z(=7hWMKwj;hJ3m)L`|Xgf1UMzKAa;Sq`k9q1e6DWnkfuWDf(riXVL#$GBCC#L?HQh
z+yBnQOi`a<iUX&iXTO94{z>cqyp{!(Lt2{w!HPNAdmH92*P6mlFhB7A1%fNi0?b#c
zyA1*w)U-2RdaA_6plwp>ZMDa!DvO>(lfP!vzk5JtrLNy)F%8PX#l`GtYSU0(6xq}B
z1w+}1z=o^5_hsFjcZY>Rqi3xhy_D2d<jnG||MoKe#})Z~FC95C5gEPxHC+FM75{NV
z{+-7EZ*P_P6nec^gkRN@{r~#;zssth6@?U*t~EPL@jouezd6$X{Wbnx`s-ir_g<#C
z`svSGJAZG{e|@Q6$9-7V6+fHOf_lu>tp^?Nb605z6kL=ErZ|FD*Va@S-I&*2MWr9z
zus>aXv?p*9TiH&xSHGHfcHF!6{Om}%TgL|OKx^_t#Ei-QWI@5QTEBqhC=O1peuj$`
zo$dRYd+OGy06JQaw|it$_O$oMyC>Sl#%el+W1oD~es7Hb`f>ghuKsh`D5bz95WKYL
z^7xOh^siS%CHY31z(gcbh!;HQlKHf{9}{kRF>4wB5LESDCxgm2Fh8O{;^z?548Nh}
zW0<#f;!9CpPy>sGkq6?Yi0DF~_7!_$%&Uihmz$rTA1ZmWN>sb`v?-t@McrfKW2T^2
z2+?V!L0=hdD3#gvsl?$5;nYG5y@I94W!t~f)BpJk@JoOdZs*<^cNF?xSN`uGp(OBI
zE^1pPBUR7=qZ-(n89wsj=qDI4A}i1!hN@hK9V0dl4u%)TcvD5W#3R|b@iV<FE6tor
zb`$aEr~yIbrSiR<#b-$>4>I%R{S^bCpK@~03WvqF$n511<TM!!XAf5(QLjp>Ou(NF
zxaL7;FLtW5hQ?qJuJ2L$fAe|%V@+$wG}{RZv64pJ^IhNBQP0ZCa{dwLw4R^x3QJZC
zzOQBfvG~Ad2LDfr&+Qj{x4CmwVeY*#J@Z$5hs)%$kwc*(lyNiuOL*3(#VKytw@ccl
z+%$TO%|Rur_*WKrTBZmFD_TkE5TOh0<QCh1?sby%N66|=eFwdH<-iB;%Xpo*44Hn7
z%zMdj5}4QaJ)@^JiS6QyonT-4{G4r}cSfNwBAi{P==H%EZS<Mfnf}y7F>PYE_d~CJ
ztw&AN)75zZSp4wZ-*9}5q8%M0%r)u%{iU1HC?))Eu}gyys%&6^si~wCPD~>UfwbK`
zA0B=HM5r0-ARJ??o7+BwsU-6T-HWDC1?KguD=YMJQn~Nn4+C2%*u>n!$k5PCF!mg4
zP-S=D&(E(c8jM4Ozw5_iQn}hYivHQj{LfImWm@7!bE{{=mg{HB*`)VzAvv$tg-@sw
zU6+3bvEV==a*_n8S0&#n&AE1<wkLRnVC^V*6BEWZqqg7k{OtN8M*fk95K$|kLoJ!|
z{DN$Pxq{-?d-aCm&etcG^gFuOgFcibxjT7XE;m^%Mjn7l<Ex(ubY=QjK{bPh*e&Aj
z^EWFtB3!#CR@KJ|BZz61jon7m&hlYmv4VHpbg@vq&d>9|2PRjn`Ot<z`*hfP1iWJg
zM!X4zMPLjnymy<JoVLu_D+j;4*e<DBkPE@<-b}ssk{j{qUw89=KAOON=GQ|p2PLoq
zFb4O~<yI^^GFTYYRVaBaAz&0fgM(B#{yCKE6&O2al@JzA`s}<R%hh;HHwUaw<1#XK
z;-aI#e53o}lr<|1Cfyr=;DN*a9uK6eLYX;%<7e**$v?-pwNmERYo5`^U3yb}Kgej|
z<y0}v$%kzR$-Z>HM<6tJxIcHwPam5Rt(2e~+Z}=)swR*4{hV?<#5_Jmf3rd)z1zV2
zMuackj;VCsm3J-o*$7&wH;T-t$FRV2X-F6jf$0y2%`QWPD2D*q(D4jS*6=c2na(Ud
z{=W|x%eMes(UrLS-<&VK8httu$>G?0Hb0Lhqm?avAQydqv$6l@h2&SguDU^HkuH#d
z05R9?91yej4n6>#)@y5Q#pqz9+VP+qes}aG5{Ft;n~1hmZu!H*LKZ&0*p64!>_LGb
zLfHpI<`Gc0FD_x4$N*WgswZN9UGsD)gqDSeM-z(%?tM*sczShtQ2`MDY%fLp{_LO>
zJe0y*y<hH0Z>vf+e(FhV-|yJAM=J@RYE7jxT%mJp`xp>(#9_T;wlaN_=Fatk2eBhd
zzo?40nUkf!cg<R)-a0LTy3D1FW&b~g??fzY?C!KgIYC?2FBMPZ)(&}lgg-?P&b-Wx
zT{b|c!HUVqh?mJ4+HF-Xy^lq_grZ3i=*!5+XcH^GHKAib7ZkFzd%w&?;8n`$!NEbi
zF=Zv5ThRZu-@%FZ<T)B;(G4dc9<6ZMGRW&D7*rr%{q%|39c2AE5CU^~-Bb`jChP-m
zw?sj^Nmz9vmx&taP|_r~%c~d}r4iFVwzPa=1=@?sVD9s|n3z~9=tD~0F(PL2fJp{^
zP2vea4}F7nWp*6{@;^cqBrtYdspAryqb>@On5kO5aDNh%Dol&!=|#QV#_J)nH5a2c
z<dj96NbW8f-0H>q`$^{udtGkb0LS2>b?P<NVcJ&iwe+5@<Lb(-R^%$5>FS(dFd1bB
zF^_Yg?I9`6`7ST*UPGX@{6jKyogzJWZ-Ere(b-{nS;-?Q&e*LFr#2hK3wT>Iv6tzF
z@!$Uzk^bk082CSf&cC;7a+2kc$KyeIg>_2=GXSv0%o9Ut^i^#FgM%NGKmKaDTVF2@
z{2&9tkeTvsmd$23dvPZ4Vb53n3<l~e52B?m^@wQcoL0MH3~1z|0V(5|r-6*|?<>RY
zCrYp`{Fw6O7TSaHmN{*f`r`^3;qYvOs(7OLS_Q3*#p(F5VAexIq8&0^YK53qF%1n%
z92u3QMDMs)cKXVB(YdwMT5&A23yrq%=PP2~x##;94~Ju3&o<CzrQZ#N&o(_yo>luf
z8rw>kq8X;xJNc{bc8Tqp3q2RyXQ==ZeA*)#nXEK!UOvqL!E*5|SDYyxh@TXsE^ynC
zA&wb+qZE$C@*Rm%i;sM6X$c-{%X&sejGOymZE=kw4c4Y6S2t{iJh;C+8cjZzYwMmE
z$O!-SoK<Rth5F1(tFjaAZ4h&1W<;<$w39bQ#jj-#;ctIh{L$HY^B&uXo684YVKr_B
zjR)o=t!*l&FYP}-i{nOelIL)HA0{HctR+6>dM3TTH-AR^ddy(Ms_^sYw9Y@#M?V_j
zsrtL@{R`r$XD}-}12%D3N6g#<c|ql@n(qhWvfS0{(}^6*LR1sf$iW4RRuW5+36ZQJ
zrwX$ns<NTyPF(hc6Pk*hgk~wf)ZdG_>Xkm6@See?luKw8#{$vYzSm5_1f%YQp$)rJ
zt6ed=)$)hoB&90k!ZEzR$h0gSLvaYAp7C%-&PlNZibkiXH2G8~g{$TEo;h3sYM)A4
z*Z&$LWy%me`Gne@l8=s#{`4+PQ9Bs=wZ~;^I#(wbiB$JFjjf7`2QH4H_UsPfN%9Lo
zdz65YWo~JiQxyfKbR|4Q<A-?v+2{R9(uFc)y<r>cI$Nvlf@ncKvMX=$-J(${PF8et
zr8RR4trYE0aZ|h!i9ZzZ1Hr<ZyA7Alj&p3&<u(P9%7zX@*4&J)n|b!O?8{ePuBh^m
zy+J{FM?EIzeB$Tm!3q!L%ZdF59acQz{aq_&9(R#1W##`E;BJp7b`eAi#iahM88W0*
zQH)BT%|chpD6k{)dc5(nBCDB5ws|~2!S>~-lFT>EYE=2#(MvwwiX>wRC}sr2Q}ra3
zKgA;PK3=7}lpM?Uj+E>tc{dQh{4t^!N-k%<jQJe{QCs$st(PhoO%gG+L_N(t($>B)
z5~QIQIIexTHe9j}%JA1s>fb4Y1~#gsx8Le9nuh02m}S2TW9t2)qqiz<1vC68=An>}
zc7&~$jant|Mi<7rZNm<*O>(zaxMCZknzjho?r>&{@6OyNO;x;pAO-0;RU%CxseIOW
zBqSt5%o(0^)tl1}`N!0FVd3%1_nM?%I&9w!c-#+^|A@!?@x7mt(3A)!NZ%?L$>#CB
z($subbz8Tk07taUi|;OT^_!Cfxu#wxxIF*guF?Pdz^Q>~_frbJal*jBP*x9uWZ|&0
zu)xY|hqbf;Besg!9c39*KiL{cdo;9L=>wyo<!HBV*;thlLZPr~9=Judn5^DidHF$L
zTW96&<W#Doun^t1D)sjo?V$O8X&1zq-&V^Irn_t1(%OcP7Uosb5TqmSR<a+QCmJm6
z+4c1(4AWC8S=)v)r=CcmTOBcnNk)Si^g$ErDm*A8y{)PE;aG)L|55-k8`GxQJd@N^
zMuL7@cs0ZivYRz$pp+L)%Y?YVR=4A{m0`hfq8*O6+MeR9M-df=nM=hBwR<iV3^7e>
z=os&M<Wz0iVwy4F&@e?jFUuhxR7cS9ViL40rtW0Lt6x3*wt1Bl^yJ2h)-A4RQ-il|
zn`kx(=OblY9B}DCUFF;5<FbxeDBtI48(nO$=<b90sHLNsG_N;%fru7jsC<@FSXorc
zsjJPWl&Hbiu#^{3D@Tnf=4$$Nht%0SIu4oL79pB5I<G9Yv@=tp5*IF15D$vQ`^Sja
zIR1oCH8&u{*3?W*pM=X&e&rjTGo325YrXb?CiCHGDw-QA?e*ujw#tS>n;I@<sQ)G?
z4<R>{^9SN=3l_DRDrv=o``kq0xV&fHwZBxTZBTi(S;7uOj(F^q*ft@H^q7h@7caOu
zIH%yE{K<jezwvIM5SV3xaFuHl?Jg5PS$YC?5P4Zr>q_iu4V31z`Mtmc&(QNCda*Tu
z7IepaH?se>67yfy7rzK<l&miTXcV-7eZsyhIq5g3?V_Tz=W!q3fH3tnuFPIcNJzIB
zfbDgHO*%S&Q_)i}A{MCem5E0tTPT#!>=ZK@5Qt3F0%5qubRg2a)60UAGrRbAO*xK3
zR%t}!Hy6B(ZJTD|3JcsyWcIGUsjYD4N;RJ9_1e<6a<cEjWjRZT($8T=0bj6r3^S62
zlv|9>BJ#+wpwV{v%&q(-v1>~Wj-!vFyI-nb#SwoSNkNZR;<@odT5rOsNN#le@w(o0
z*&qQWfm@T;At~wbV%VpzuS=hM^=4P&G~nwHf1LOtNx(~K_Rb87idVNL<KHO@A&C9F
zpG_p@{o)6{`Iih64<%))tHocd^nod36iG0ggLD!TrQNJX4p~tX&m*GMwJlZF3k7Wg
z7*iN`Y>$g)gNB$O8!ipSQf(;{Ho>y&4pvr9ZB3wED_?9OI{GaQZOa<l=an;eQbgK6
z=#5tu--qx;p@sSZ<+e%ZfnvefJ<<p#;h#1b9m#(--{AW13{Utm7ebjdyK!%iH#sBW
z@PpB5C>d?fYvad>O<xcwsKJh3p;z5xJAqvTV<3cCigRYV_(65LW!rg>lqht{8N2e@
zqPPZ6%WCO@Vp-0r(D<y{Xlqa=l#P#9o0sc<Uk}`V_W;5S0<C+wc@M<FYI;k#NZ@yv
zJCdg^mfL2LRhE`^yVf1l>$|L6Tm-#<44B{Z*pU^06rujuD*eq=bmL~E5qCK;@M%=8
zseYSaf{`~qLC2jfJp6+`62`tq`)BhA)1w+ndW;lYy1?aanPj=;DiS7Z6Ju|bT4lfu
zrtV;yBwjTY2KGt#Xfz_z$(ZU1TYF8kBLw4KtY-EUC$7<&c;$rQ55Z)yUCAXLz7k-m
zH@kS&Z1IMW*1YKW&g|#aN0g!iODCVAklCwj((<*_2KQweW04O`nsPq*KF6bdofWsl
zGdu=EeVFj}v-(GyUhyRoqKp&{;r!th0D~2XL<_z97(3T`oYNEOryU~Hb+bSrt-ms*
zBjEf2sL<#+YWVICN2-{ZkisZsm*syamP8EyV`7<`RKl>6GrJiWA*xkSt5|HP%&|u^
zZc;Bi=r(G3dQtaf)V|MI);%9d-e4B9@&yCI2&O7?ES|DgYFu_Z%Y~=ET3Jrr$@{9j
zKt={-kf4@@Vn&B}<vrr+T;i%%*A?o|*4o&s9x>SUr~yoewp~ZM{|{xcK_n(W7Rqw}
zTQN|rydREsUE=;O8))tg<dN%O)H@e|nr(6pjB%F;%)j*|qiNCwlBi3b<Zy(%w3?S~
z_IK>{CRq}Vd1YV0=eljAZ?`kwunz=-8h}CjPymkggm}GTcMt1#lEXvjD~*dP*kDH3
zu(*mTdu(DN<>QrroF(I^)+`YoSVGq|SzH&~^>Mqaw~Ea9cEBkuUh9z8C{~LXEf4Ie
zQK>BoA1sP9u7*2~6enbOs|3Fe)|I;&RFY}3t^I6whSeh1D=BBCXA8mhVylPJ=T!0T
z7m5qRKWYTVYG-9*%p#b#^iLRbcc$4|1$5oj9=sfI*4MLqpSYl}o%a|ToD9i$VJ&1V
z5=2O3F0rFwbaw91B34PNq%+Yn=Tn=Aih6rN#>n8U=tD6S>zDQ~eiy+PW$71J$XM!y
z|C>CRo>BTX(1$u3)N5$QrK*~hhSBXmzePROn4BGJ*zMSX<gW2vDjfAXw<28nn-}-=
z5>KdQ*N>UMU-lO_xHv55^#OCofr)2}TeROcgi+<%o-VElDWl{(I_EqKJ+t6wGbdaX
z7LBgSnRYV3yWl*#tN29l_cClCgr=K*p)zgtu)A2`8{HJfrTm2zN!N6!W%=r$*;QL7
z>6yllpA2J_JD<nJ#5`I){z;{PGKdfLnrS*T${lhH@C3cJvg(FEhu&d4^4O|$MlQ-+
zXMW-zJJu)(P~<!6))EXY`BD4S+cs3?s#vw&Yk)+Dg`GV@61eRJi;rSIx4XQ&<bN^<
z`!QX~4iwPP^yvDN_vL(ez8hnOiRb(P!6B;Q4yYac3QA-Q!t+o6o(p+sQ2QFeaTaao
zW1g{@ND97nAn#11@n4*C1c1F9ab{3^eR>x>4Zs}8a}VHp;k=*UrbXaAYE~2GI|+SX
zLPkt14>^l`-sJ--Q&toWu6If1^&cbuId|C6l)j<|Z_yQ%@GsSp&f|Ri^0+qazH3sQ
z``xKzURod7b~HDy6fw;-EWUNd`fWi5z6?QcX>+3a7#Lb$NX}{5_DJ!&)$I#@^|tNl
zgJ47!T_8ix&l7J}5FxWmDBgl($wezWyrwOLK1iFajd!_Y!tsqHN&@rq=DUI%1%<mB
zra{L$o?BY(r?sh236ry~i{ID3pX5Jlo)HUzSD^^3J$$+s9dNAscFOnXYqj<C6dCUZ
z$;#`gfQ(-I8CUF5B)**i{av3J%&)m*t&&>BB(3c#HeB@-slT4HNU;ZGzcK9Do2=UK
zw%zru%gK?SQC06;ve-+cAz72CB<E_CY`bZ0JdW8aY(r^19`jbfnCwZwG6_>Az3+Dc
zU?WRX>9CLvT)NhJa}enPFWdmJaUY1|*OjPB@W{D+@4dRsN)NCBy5j1hZhH({3r!i4
zz?G+Gz||Y2r-nq$UJ*^@D@M#lHs&hP!rOZKy9`7QCTs&@YE^yqmdY1?N=IC_ifu2&
zNHanch`Cq2lT8wQ_S3MSo71k3Hfw_%6L>w%#oqX2xY1NUGd_UDj4e4$t|%G3{!_c?
zXZJI7Xov@kKx>od=S;Oa5zaCt!9@5c0LXfcg%z2hO7+sew#V1^h7!ofC*pxRnwPEP
zX;jjUZ&6~->#!r!%kz`#GLO)DL$bIV@7;U%9ymGiU_+@UV`Q~EKz81>@-8^|s>ujF
z6klQ=Dl=OoB>dz-%<Y4X`u@M!TP7U(gcwy`S0jRqE5X73+5k8l>O@cpWDxo)R~_BJ
z%7}qkU~ve=ft^)r9`BJHx2#?0r@k6k+sv&`_>#xc?vI;AX;j!PxTM0-{ydzmqkZR8
zlMGZG*|DMNr!eV2gz9-7SL{}9F5Ar00$CKgA?>9*Lj}zg_S)_f67L@OYg!rJFEvxQ
zB56H8B~)>#UBx2ct!sM61wS7kn`i$zr9VtXL}+19otLTD=}=529>0z=&*gKzV==lJ
zp31^6sZYe#oXXH@U%f8!+Qq9na9HpnzwqJ9${M}E{C$@+s@&Z8@2?tj5`|q;7{6@B
z+87P=a^;-+%Z5Yna|fXV5=OE`PCw;y$#oWD^drYCKR|~+Q?U0q%r)le&_IWn|7my)
za${cCuZ6j}>W$#_Qi+L)-RBhw-+CF1KWlJ_z|6*MuM#$n-yN|;F6e~b+@;FoD#0qz
zE0z7&liRt1_`#L^2#$<t;<8#6nx5ggm$*Rby3(GbdhcGa)<S&?nhl+Aq6&~z@Q9Qa
za#4|x+&wlme+>Nk_JQY`mOJAR&=er`cmcb-k~I;5HwxIpClsKbda*)#m3b2bPdI)l
z>XwqUQ5yzMP3*ac7+uo3!UjpY3X|vbBiTm#&NpsB(8DQqbl_fJKfjNO2&rb!N_C>y
z$v+xUe?S2`k>9?c{|>Ei{iLg(&8-TU*>|GCHN2>@%S#0$P*1H3PY>Q#=hZ7%r`|y8
z9i(Fk_;w9-v(e)0jH3F^AQ?E0GSBh#aR?t?Uh8*93ouZ<H&5{@#TdAOzL?~5{j2wj
z@{@i?3`6}17zpxESnD<LGV%Bw*{u)U-9YSHpGGbtiFONtjTu}mxv#^9#$Gek+-5x)
zM#TICz_|<v#9!+K)4KhBM1Z5d4h_r@cd4MnZ`>7Owjw~l+M}c{GhCTDal#|VQ-FzY
zlw+yne1En?T?l>+Y?hxll+^U_|FHGeVO4HXySE_7qSqp%Te?xYOQgF?N<<o@8y1ap
zN_VGpcT0zabVzsC_prD7J@0kC^QT-~2+w-voMVo0-@kj}HYvq?$v)BoJqsZS@h7=)
z&eE;ES22~)RDSVARtm%I%`|l`PIuxA5l!wgONiN|a0oGJ^!_`~S42xyYR(RJ&hOMN
z&WG-Ozw@hi_lQj_?lDcP7u!DcpP;y|`%!-V85SH1R(G+Q)=<Q9-hEo4gnBr#|Cn3*
zZe0KHFq(`q$sP5#&HCEM?&QwQ_`RWss@#z*Zl`$D!7z1OSZ^kYs7u4iQAKMQK1n>_
zCm6Rr<-sh760);n<G+|v-q5u@K#o8MBW`VMC`d^mkr84azI^VW0|hPNZ@`49I^TTM
zdRG8Y_}GZ9P=PLdObnm%9M%%miY_FI<?*823(^_$gSwjzM4%%w_G>$5Ta=w;VKsfg
z(=M={lZJA+eq<w=O~h3cdd#p<wWV^sgQ6OnfWzWb)rmsK$-A7;xJFaQE%?^)=eFg)
z=iO&#xD|-@&x0L_d?$vi2x#75eTb)ut7XC{-&q(+hdV&Bi)gl+t@U8?dPKZmetJkp
z=|C~%ApCT9PZH6~2fNrsm(1%_)?BW-@TKs|9W)x`+Tu%RFAxt<MdQ(u!IIwaLEGyf
zoAl>fhEITO#yAqVtF!Z6)h(wiKn%{zHF|E*R@-mOF_r?ELZ_MUFm(8tgj5Q|0zRJs
zK&Po)gIx33viVB@wp#-vQ2!$_@cAK1N}4lqR?-@n0Sf$8tP^x_o*6;*{p<pr)aime
zTDkfYQWd`3wMNSi(wzZC0+S1R3WTdnMNy)df})ML%q`T-r_&7e$icD-s@1tz)@o3_
z_lfIo+1oO}fu>U93Nw$os@;K~1-W>ZvaM`NexU6~lc?Z&jJEX)zL7z~q!7~>SfmK#
z`x1yeP2yu-*6>|xhd93ZZt2dB8~}8$#Q(2>-3lp-*~A-JchKspAG*MY#A{^$qQ>ib
zJ}%);Z5D$?5fBi-<3HSG{54&`!`N0PHlsuj6zVR6zn%mZ3kR$?WMa!7&FkTsvzdyp
zNaC@SRuecQ`OOnJJ~qp3Vt<#(oLr)C7CjF>5L+5QC}40)R|`;Ql7a0hCZP&a{VPla
zTKqORXgI))BNk4t3(S6C@$BG{yRKl@g{78H%aI^<$=Nw1J(}aD@V-;UO`%)O<)P@3
zc4Ya34QOr6RG^dp{XOrvo<|$F5QuQTe7YmD#b7M0R+=74VthOm30pDA5r954+pO>n
zoEdDrUPG>-OIUV4L;ab41Tu?DOOvZlQ~@few?932nLy_*MJRu-gBhN{IOj&uVj*1Q
zs~YVs8YncQJ&0y5DwlM$P}KgA7D@W^`vRQhOaha`n=V>?WOxQ8do+@-gS_bkTZ>ZV
zjo?Y_PcE;c!M?)kZ>8)R{SGR+x8%t1qh^|CNooIdx$51rGK}<}>qUgYMS$7}afvna
z1x|ae4Vib}?71qcqSaWQZxrgd-lU4pOCzOCsf&!F3*3Dd@%7^?Bp+JI^ohC>jUf0;
z3Ll70u!}`UPMJ#y9Mb)js|NoyGCqHSi**Ly`GbdCPsk=N4;HBTf0D{zTijotoCDXG
z0f(B>W@=9W+by>yx{=)ikgg<MHM=>;ttwtX-r$$rP+d*GGMzhZjJZ}YiNztz&pLXN
zB1`Zjjk)L1my1tNQ<%GGJZFQCa#A6n8<NdFo$#fzbc2V+I5{KJ4e^R>zTUq3Mdz=J
zq4L{q$c&DjOISsXw$*`lw>p?r7`kJE1iqLkY}Rmom~4C4Qn}@`a(0Pv`T*+!--kE~
zr7kRCnOyhaBgwu5YV@NqG49@~`}Kgnrg>YJyJ&eCH@dnwCC!n?FQIl+f9Inpu*dP=
z{+Km69%Q{mEf2%_w6dR5QK8^^E--m11VYmWf`RDM%{yOGh-9Z(`fVQr3G)2{=)`<~
z&QBw#Jw)q7+jIY80qFQAc(qS`Zaz6VnJQAH--+V`Bv?{nyiOid{>+D%?dZhgtjjt|
zcAuhr#)$dqjr8!&7LThm7b+UK@&JAz`M%qyyn2oz>aJflkA=1_^9+2!YtCJv_b2Op
z{H5<DB_&VcS#3(?(a(asLFhhQPVN1ZM~XT+gdKOJ<m7AhxT$W$M=52bVk2Do9f(UB
z5Q9n{WqYpa9nx3{_2i)YP1h&$DM#J5x3_25PhL~oH=o|g$^EOx@yV0T=s*JNJFmjK
zbR3_J0`!D$1U1M(KudfA;H;1`FWG!%365}Yc>qeh?_<Y42*i=-`6ot#_FFP8KG3Rq
z@5M%k;#U03rDq*qy-kPsIA9GG2eVL7Q4Q9uPs78snXN#-asIRNOyh)(k~k;lXVc@e
z_?)K**seTF+aAp0&Gt0r8us7fbKNl|&FodpRj>Yj8rv~4gDSK<lr{J(kT~968_)?b
zQt9IdZ4wD)eao4wmmY}r`fdl6Xk$xOl`cQRzRyDi`caUj>t$p5N(G>izRP!FC&9T^
z=dfKDhgs`zKyc70O4-cwN}^A3s8w{Q-+IraeglpSeBg4k|0S82?a1>Kn=JF{>7FR{
z+UN&GcdhdWjOA8>9*{xNJJy-SY}3OB@GRy|k^}M(Dp?i=fPoc7rFly_CRWN6GX5Tm
zaJRg)?f^^vwSD0tQ-9r9W%ZAzF{Qnf|1H4!DD(o8hef8jKDim#ISbU@vQ6Aj;>hej
zGoZJ;0H(Ya_XARvAx&2enRXY|%I48AzOQ0@s-u_SN5K>Nq=eseBCN?d*YXFd*Y}oU
z0*_f`&QUjAh;(yiJ48z<BIVj-lTwe@3Yg3RBU+5`_A}M&Dpjk3Snn>)c61e0Ytt9y
zwl<xVG#?R9We??rv(qB=a8*5%Ku_j3H~PlEkK6@|Pp2p9Zb*^vPvr9(jhV@Y;yDYA
zC%sfF>7>)4hge+a*1#3yCoMW`Z#1K|!oW;j>cr?)fPO*}7S|eNPTXb5cJS!~p!xNl
z7z%`awJ7<>Ul!9RLLia!4fwr+81~X2=$`aF@xsbWq{^XWRT_^34~5Nd^oz6f5!+ne
zB0Akn6Ki|8$j?6T$WT1NIQ1Kqmn+A&q=(E3(l^sR=E%qI`QQi&dlE6{+7%}uEs@A}
zBs9wiAo3G#LbpenIqCeXRq5<u|6SiH>afm^NaZ2_WJ}NE%?5!PR{e27mFJfcUiYF%
zO$uA5L-c8tyGUU~yzzh}m50`Nic*^F*N;&F?M-+*4?L&6=TSE>RtFO{{y`Nf2Y`g3
z0B9tiQXXhvTt>j{zuXehl|6VlaWXLiG;Wzg-GRdpu7hk#^Lf(U2%tP`KHC+cilz8T
z*v>}IfW=qENpQE+I!uA_<b*x<1i-g?4{+^WEbaaQZ0dp#FJ6rk%sXwC4FbCcG}r54
zPoGkd{VDX4#VgFC_t&}O0A<1$07IvVu^HCc&SR|$y9C7kc`nxK7i7D)0N0crKAa9!
zT3x^<-0uv*SKXu@p_6|Yn5$$(e`yH|4$kZ&b_=UexeIZ$ZGHxHL&U7g0*t(kP&=|P
zx-wC^J?ou()m<n|`2p1*)V>f136Z-PTLywEKLd;lV&qrj>5uoKxE5gp7b$^P<3KX`
ze5o_m_H=hJ=B7&+N8Ixe2l%4arbhAo_jvI4$4zFh!c!0LS&tM!Ad}h|f^@Kw%acOl
z>UVqrY%~dyToR7}Kzs;iXNpziRk$DB%S&|~TmM$XqCKZqedho`Df@Z;mI@$3agkg1
zTv^FS1Rt)H1ex}k-(mlc{tuX~Ljqsn&^ntFkvIh)E3031*K7QlEhkx(edR3DEnc`}
z<8udeKK5d&FF2Q+{T|Qr1qYB>bRyTYIdv8vfu}Y}eezc_lOhf)AmYt&KZ+jAjYMXA
zR(L;0H!_r)t<A}GkpeVKv9iTEtQp0v{k9h=daS^tbfPrNg7Ka?95tKb6jVyQC#+R7
zeoR#Ev74rZn4K-u(_47VXK(#Y!}nv9a!ip>@*ZcGx2Co@BZ3fr{P-vwHU93<$F#UY
zcDY41g!Dr9l|;`((85!u{KSmtdd#0_2|DU_(v<s4+d%L;%gG4*CZ>d8EOH53KL*dh
z7HA~+Q(e52e3+I|BR0?l9LVWA-$Nv+rXPhld7&^jZb`7|M_=<(dKC1gE-a@bo0*Ma
z(M>^`@wbkO6iM6GeOBOL_d=9h@7cK=*S~TU1p-*ahkQlFTh9;+&PX;6M#`rkt}5-2
z{!g@6S9wb+(N0PnoF;>$CwZ-Lj{6^Cq!$-n!IPyVf*%s%CW9cq{i*AXrpk2R0*<k-
zLH$7cl$p;$qucLdy2@Qc1B{KWX$)L~Iq-R^iy7KH+=^B!jNHN~pN_eB8XOviuP(8(
zh@7pe;v%huK;k-6^5G;&UluplGHW8dA{i2J@!nALprvt1@>37zFh1P{*~oJI8FYD`
zGEdq5f|FXVOGUD;>ZjBD_-DF-|6s8}Ie<bW`I*UnaWX-=;4k?C^ZPN4k7P8U9GC=J
z=}Pe3Jvi!m<xQ<NAp`0Ua29cc<S>{agSD2JYwv1b$+kNhhH?lz5pzbe%icecLe1ZQ
z;y?F@Gv4!wGycLX;wF(3>7)^jh1~f1)SOdOx@xD#S7aD;_L}%kgy}&c<af2NVGnf~
zy}wRnVu(7wkZ_FNxaokyQO0K^{42sF|HQG+7Bs*GC;Fb}XMqw<)_}LC*Xt`~0pq!A
z!#MZ!M6_^LL}s_LEo`tbjNcI@a~rtozN($QX{k;&m1z>7%HL~TC)MMqtci|mk0nwM
zOj#*Sd-nXYm1%jIJ<xor$GBX3L?G+^`ODjIDJPG-%|h(u?zH)nio?>j?K(UC_xyQ{
zwpy+d`eGe1`q^2zoKXjVT=V&uNdz0dnH+C$b~lXA(Wd`<X3J!(Vq61+Ql@gj3koO=
z4Ul|3!o39eROHs^DaR&|166(l7Qb%+=p<zvsqtVXVcdX*0c?6gW&tj2n;+x3(m1s4
zY`f@7XNS#aa)U!dm{;Mv#>mnMOq4<Aq|RMKJkK6NDi$#q=NP{+lmJ(dZmA6a%Wi35
z;4bct4Z#_t1Y$coCICB0cgv@!B08eh0@QN|0YNcGF#}o7cOW!3?&}+&KNo;magfFl
z81l=R>~=a$6)09QQh0*3N7DF{SHRm1+i8=xzU>N0JWF2)q(Lhy)8qZ^4*(t~s!xVF
zYpM>I0swcELM0-PXFZLGh{%SEQmzmxBA4ec^x=j*)B`{${Cx!s+WxT=N;=qjId9J9
z-q4CRGfsTD4cNbO0*PINR$!Fzngs-a>v6y~=$3%ZIH<Xe6QjL|LnmSPzUxu+z8I&Y
zunI6qCIHGpVB@DW8v;atW^$p`-67Zjz?B{DYmI{d+yl&|Y70ZYHGvVd^@R*s1{5##
z?JW=cW_HQmjTT_MneY6itfW-2YmAGK@=llr$)gA0%+j4r+uG0#6Z|^@YlqVTspv5_
z7^fV`^6ei0ZQ@mNq~3tKSzF;&6Y0&D66~LJXcmEM`l;dUMIWY1y^x~^Zt1R}$V+Qi
zA!tEcP)GL&uuwL&2{cUqmWe;)NqH>=ZxDrv;jCOw43>f^svi%wQ4uO0OScP$a_9?9
zjymcoVwTWVJ1`(sE)NULU=j8vElaD6b0f%)?J8QQHdHNF)Hb5MW!LaV*_L=itr{F(
zKGsaiUcDGI%RMCg+`|3SkV?b5u|`$$jZ-1t6~#8eKrdZs-d4SWA{8cn+z2|9OlZ|_
z`d07=wFqs4xqjb?5bv6wE%Cx-C>CY)K5t1@{n^o8p{N^(td2~?-{p>n>b3$+u?s>b
z#7;<$RG})J(Re1NKd#H|u7Av;jJFiFsB^+1lKY<-oR1n9M0^OBf6;T5_F-#Sr7Acw
z>Eu7HZ(=MKBOetZ#JU+B$NExxz>t<Q=oPgrKB<UO+}L=wW~Z`m+odoM3VI=#64V>A
z>F0aj(^4D!3jL5=#3acdJWjP&0O<;SMfEK<5FUj1lUkX!48ZX37*V&4eXhdB30nRn
zI5^kTYPkO^kd*tdUJtX|y2jb1dxLqXCXd2y&HT8=X@IGB`4SZO8b@(gEl{D0ndO7d
z8NA|^ZGxhP1-Yemy-+|qkHett&sXRe3<4?=+nqW9nXlNc6S95Ef3--#FZ9v(^^*2V
z+$&6tQm7Cl;Or9+e@pDw>G0DeL6?g9LZPs}K2e|VB5~=4{`2U47a5lr*FsJ!7LR@9
zG0HW*COT4OCirsNn3DIk6b$)b(!6|b^iNfPUr!>YxS#DtnT)@=Ly(@k%>(yq4x`ch
zmh3L@Jxc9CfdkZ4?85u`Kr3Rwb%j?Ern6D=`=61vQFlPBLMg!T`?2yD^(x~Bs6zk^
zYsMAfc=)wo^Jsd%r(Hrpn^HK8SF>mgjdMWaN(q>xGc<$o0s%6^mFy1P7Mkj*zrP#7
zF$jNK@O7KK)XJm$<Gl~IFTXR0;abO8tWqrma(_2G$@R+~U9s?Z7&IESWUJfXcBL}_
zhE?=h{jEequ;;TG&e8Lj#3T0>i}d@v{J3N8*DIX)+oY1~JQN%~2Kw&6wMAbXN$0jV
z=`Yx7@FgExtfGI4LN)6DAXTN$>(=n5<cqj##J5C9IWp!|m87Z;+59uC1Jrmlu=TZ2
zFgltfOL`(Xlm|>FTmfz9dhWLqdtR^N_k~roO1TGZn_9QtP?Z9?!~xr>EC#UOFhsa?
z*7bnA6=DGS_~?4vfndUq^5U$pSiL;n2#?hedj2_pgDeY5D(&(QBzLvz;s}Tu-2t#|
zF)qJ=!l}u`gAW->s>J+025$|$JAuWfLqI5Ts?J(}XB=$E0IDSY0!u)lye1k%-hp-2
zjDSWMDISPQkO#!~AYOSn`+$5oK-6SHVs~IM;4aQMf4w_+1u*odub;t^@4LEedny|N
z91taibD|hvDYBM*MV5v^vgWx4)PK?IeJx0rvMw*7K^S_6Ve{PrzE6NGv^pW5luxBo
zAqZ3O@!E*m$5eJ*L;x=C+ME3_6Z{FM5A{k2oJ@v9I)V_S689U(r}|!jcBKO#eriw>
zfIZWC0N~y>E1(f$#dQo(-})Z>Zc=w`gJNb1`@NDJrx$~Q+t(6j-rIy;PW|}o%zF<g
zOhL?rtIn%#&@-Z}1^|X8#T-h5-X;AhhDtVik1PL#oFE*PPiC!N2n!i#{4trBnoa_&
zXR12$TfZZe5pjTQ7$~=o-ktkv7P96Bss&Gxqi(-FN8ytHcpYvqeC%Av2Q9K0K8^;}
z0)UQkzNZZHb|;(w2NS@Bn<0=Tkr(td`SJL=a6~=mBN+y~bQsAJQJkr$b6WS~n)A9_
z;1MmKZl}%2kN@m}FP??r-N~3NI%8|7D9&%Y#gRpJSI8wFz(XRhypFr_J#)y6yL-T$
z2e=J>j-_QwVSVB_I^<oYTudwDRDUH;DWb4z0eAW8kCdX+)Q&simlH~Zi+2c`p+Be5
zV6&=Im))fxKeZKALTgn3A#6U{VWyIO=7Ou6*Y)?~!qSKPdF5#}&5Ple(_6*EO7@V4
z+X3@0li8cQ4s93$X<DAQtP^g^i!G<pzNTGJIez1yy%N7Bf6}pE<{-XzyL+zl)Pt7V
zrve9Btx!X)x@^*M5@>D%d3SXc(K4>QI~h@WMn7)I2P?9@`EFEO&t65m_Y1!@RGXT=
z%CC$qF?8ma&D2?w9FP&sYt-zz)sZpn&LhnJbN=XjfD8G77Nf60sQJ@H#p(wVde8|L
z+_?V#%=9|_3^K2=keN{!`$tFBk-!I+Y_{o560R)6gFLckW_W8$+#=eYFUg_7$Klt9
zP0Ql|=fe1gzMPO&JjlgGd<~{n7OFcKdx3REAra2?(5Cm@D}-ULkG4cy{lqS?oI@`5
z3O$sP-E-OdBe#_^Z@|@;rfKr4{DSHaXSLoqjKgd541)Bc&N?I6mwtT;@%0>_Q0Y9I
zlL^U&U(_;Ee_FJ1a&ygMaKD5#H&=k#i(l!z>k*?*J0fLBQvBQm1aC`b8p?iUISD*A
zO8nKafk@@`F%i^ljM6z%$!-ICsYG|X`w1!SGMuo$sk(j^m!5A5#2j>~>^9)&jyVVA
z8vVc(gmih%2#xFpZ;(}&VKfxByuUUnKQ?YKV?VCWAH?>$!l6@Lg7`<4eU1VvEjLSI
z!f4G1h*K^ssrC#sujwHLe~~^``GYyB*P7!0^!D3u)haxhqnqwfRr;c&<LV8o^ZWuE
zqs^3HDqIlE%R_Qz<;Y<_r|xKd{nC<T#>AWlp-goT%D&fJ_eUb_R}IcTie>1P_32me
zxOQ#lQuxhruo)ZVhU3+iy4>J<`p1T7UXU3_9fxT!c~XD8Oz~T*54P1iV|PJB2O`a^
z^P`uSFz|BMuDZ#)6Y2ZEj*Fej?u+X^8mIzr8{Lh>kFScWI={~4?U5`)(<bQK%p2!x
z)8{F~lJlqXekD*>JM3&KY<pmCN9k4oBl~K<VsOT55eu`A$Ke|1Z7yi5CBg#K|1LYB
zE^=?2D$*R~PJC#Q|7Wz!Z?*@3Wz9a~6`$22SLq@^dCGLrl$Mo^i<&1j?j)o_As2Y?
zh*TRlfuHTE5BK*t`^kAe!W+IvW?|%sX-EfZCME6U>6T*|jvy~NWmtuv-FcgvgRoX3
z;b*&9Kuoqzn<MQnVTFR?KQ=iX<@JQ(OajzLrlUCkBhyI(`W}V?`ymKN*Af`1vLV7Y
zdp+GP+sVB~1ScDitbRkyqS5K<I%_ypQ^#rjEE+sV+UrN7G8auLz0vYQO#LI=sO#aS
z__WUlCB!+F2$b>o@1aXI<_TDr9lYdQjbtmG$X>3aAw@(CPiN^*pVve!L`#BgMrlPD
z0_@?_n7=i5WLr1{tiuTxu@M>tEw9jG1~^{8idFRTL&7;b&*{qJZKnLra5Mc`i76XZ
z4#-_$0BmuJ{vavt;t$h^b6CXk2#}X9j^CIX;-vz~RWKJ$+_p^6d&rh19x#ltK`Yg5
zQnMUf4_QZv0&3k>gzHvkL$LK4pRaJ8_fZa8$`3GsF9C`{Q`{K^%NRj@V;*fpbgm(j
zOp-ZX&g=!R-x;=u67GmPh$z#~d(~aL`g0T?x+2=ssL*xDQSz;qa4;#^pLh5P7C}${
z_OsjJrJp;S(~yp2NEunYY8tilJ$Po*5XEwREwqc#O(bdPpKlytf&n3*TeEq7UM(}_
zEAj4^W&UcfekmfyJUEc$XHMVpDTVPhR{*u6^X03|J=~SbiGK53bM7SpC%6C<;u42f
zqvJ;{Pd>Fj>Hms9-C()hW(d@Lf5{gh_;d7-foW;_A;fnFon2z+w&jh&d<>2`KnT;e
zq1}M?)(%1AVI!-d-N({nv=tCFGKAb>wR8H`P<2L^AF{FU$d@D7e2TgQqo@yK1g#To
z=^$V$>w$KP{zDZB4z|YOWAG2|zj_^G;7C?GwNPt~GvE$woDl5ql@3bmZ+}Cy;4ck$
zST!{@t-5LrPT?|}er`!+#_(z-$|x?;so=@zbc7=FxmU2G!PXiP6e<KQzy|Wuz<bzD
zVW(}aSdO%9e}g;nS6dYygJn$%{e?#SV%2h#w^=-nW!TeI-j!GI?JM%;RkO9O5RA<k
z!z#q1FmQiISSQ><_`@1*Ic~AK5LO(Hsrpoz&IfrHo|DYMN}>hQc^!tXx1xNKc^`lN
z$iSKj_BF|$Oz93RveLAo)0`2MfDt`RFyub!=TM3Np>HxfG%@AL1|R-dXMwCo7us4c
zjD&FU?T+f}EXPm!L*O<{2U#Kx^>R<~rDBSd6sRN`NIPlLVg7wmh(&7H#g6hr-uL+9
zItlquoW+wE)3?X=mpN^U@5QxFzDpFUIQK(cZu~JsK6OcXJ$avJwwYvI`zeg7*|sJ^
z6C}f?0XnVV(3+@|4Oi;($aL%lqC24R{C=%~itft*a#$%uW0rL>bd~o7sQTqf@V?FS
z__u+pn|LkP3N<fTNyWVDmmILAI%9~MdjX`f*e7t;H$rYDwVr3H@-&{v3f)O29RdU!
zYJVL0%CAp=Vw{*SjvyGF?3IeI6sT?m+&jHuhN^h-@i?*^F34fE*oosM1dmIT;dQAr
zFl+8p_M;#$Spf=bpzjy-6dCA-4}yF{v0nv8HsT+S#<8F|?6GY>07&zC4*DKvkp4H;
z4$<tTm6g8K)oaoEIUsC(08K>f!B&XBI@lh4jnCxzu;4+#tVVMU&u`pQh$SB`h$}y?
zV={}UoU~*z6kQch%)`4+&>35t>#IDfudK=Yk`*u_G3iNa;H(P8`yx->c+=BVpDSq-
zWE`fce||0ZQL=XdESRH@f2Vlfh|W?O9l)^vH-zc0$>86GV`ByS`bXiW{XE%Zd9Y4v
zRCaU``MH(5(n+2H^*F$sk7}q+obRs9N{sw`doL}aAt{6Lv2$Z3IA+SeQ)d3OEdtt_
z7xqe*JA#A3)$cMXSy`o+X@gpit0G>bKz;jCDI*tXMZ-%dMuMKgYKMB-U`p@CGfPwk
z>9}%z-nRk;K<&IVZ4-+`USDs(5W=`<pkuDbU3l=A1b3&=d+%d%$QwQi4Y3cV#VC7W
zf%~nkOXS^31?Pz@jxzEm9|faZAJm)?FgctKDcLN}t4!KHFn>E9uKzrazdJ?yeo7j`
zOz}EsfU)?z7e<~G68sbO>c@HoVr;85FLvWTH5G_eGIMDxA@wx<z2u9`p=YEBx2+#h
zJF7Siw@f3sD?C*K%Yc6{HMF@??EBuEM9)5e9czkb_Hz3(K=w$n5t%}DR_=hqqLPQu
zg_f>jR-|9YA>qhTmya2r9@)VsDZK|blhOG(54W`?YGAKbXO;V#rrI?PW<?XB!H{F<
zbg>iz3ef;{wUuK~mTHMcrHPf3Z1ln=<xTi`bSK>!k8$iC{~4liZIp1%pAidc4gfoJ
z>LK25xL~U|(<guS3q*A|OvQIedj=6{zr`Z$Jj=A+8?SP)q1R#H8;Rvc{uxE<?~Co%
zesc1KyTq{AZj}fl-}1WK3Gll8a@uT|02XRGSWpU6kHr$9b$WN!vxh8Af<OJbOv^#L
z@eXHqpBx=l4BGdeW}j|5?0k4<|Kz=S;@{~?hA>8ZDDC?ImQwHwk;IqsR_wv{q%@)$
zTDVY`XDgNEVtteiKhlx&wC)f5iwJWyXoSCk$69yr`<{2JaZv?GYve&#WFyaD=#mKA
z0-K@$)DW>)9|S%MKO2Q4-Xlk_F<z2hJAy%elZTQ6S(=I(POI}ODD9ygBEl5J^>n?C
z?jl2aSbXr1jT9Bey3=x0$ZCi<PJAeDyPU<hy>nI>{sHcN9?ppio%?j%%Z}Vrn|%2`
z9%ur%e^tlM^f-JDn5A<&LURK0<ywN2n9KZFAO`MHmq4tYG`c_6EZO5*B;JEE`RuP^
z{w%kxE6xTawt@xA=npP69!)0>yth7m!XPl~rxfk9=Ia8S%QfPO{&vKGC;E0c^8Q=4
zht}y!-fSHCwO_b+-4%dKs$TK+|8PkP;sFLgaZlG@`Sf28bQxSc(?dvS_e*MMsP^>^
z`K-kf;EjKlKDbhW@dza!sRWVU!B0f(OQFL$|A`3v<yY<iy~Fcbpit4$5i8UtBF27z
z^#i3Ju8Vyb`z1DCYvXgSlmQoH#1oO#f_L{>r7y}DvKl=ppRepqD`bIA-E@q#wQUrA
z)1q~m(-}>!RlQ^1U^=VE``z=-vMsTqV<SOOHi<2$)><B0MA+-3eOb&8!3mPtHQY)6
zAtN#NEXpK`n2?Z^k1}U6NAjgHubEjATgtg*oh%Nf5G8re986N#JP~JE%dsO4S?7Dx
z88boF4j5~~Ln^!78x~u8)8H3Wj;xX)h-A1_c+b<&{3R9xXvJXSMhB0`#|C8cfRKMU
zZXV~hKn9#L5Hq!rGYyFN+}|&8r{HgYvlq!|Ug07$W)&b;<4gK}L9LvS)G58BG1q22
zl*zVVZqj8x?+g(5xuK#nfd)Wv?ko<CQ(KorC-WJNH_$mOVJK!B)dqnjLEwwDt9{L;
z->TTYqJ2+4XjbUOlGLCEWz@iReU1<s$Wxi$irn&o^>g!?lcv60=^YYG)@yIMMK9o7
z^D0j+f*M?!bBe1~=9XsK>GqpWhiiRTzxTHYoGtoECykAUkM}VLB{TlFW>R<qmSbax
zT8Btj>bHO8K=|k|&HIMNHQ4#9OUSEV;sAFdGbsL8(O1CPM)a4OJj&8jY=`~w{@jo0
zyj6_ZF|Z7=pr_7I-;nNca{)R5vb@dvw7Y64!`#N>v0perb1ZrF^@BKw=NA`xuP%0O
zJ$A=3U#=>ruELX>IBbUAA%jXtwfw-CWM--wT4H^E2*be0snDuOmyQ)*%w}5ryo*(V
zSxy*Qa5$v84z9yb;<b8j@@?Wg(_Q!MVu@7ujH%^Z$+ldu$H+RpAi|9e$`f#m-O1}L
z*^OWjMAi;9l}R~Db1rovlDFLZGfE%i@f#0X=^Tt2V4pz+L*A<FO7>ZHS-3h>Vd;Wa
zXzEDYvh6LM1xI+x9(PdXU(^Ml@WO=cEuTx14An{a_aP;=Ct(ygvmAkbJLP?|^#IgI
zyUFdd%M97Tx`GNk8fUI1=U@CLsr%<_s~<z`4(L?~>_&^#jTPN-!NW%j+GFv7KZC?j
zZ8Z}Pa(gB++_+469^(#5Eyx?#4qy>8cY=fW==t8v%Hs<g*B|tgsC=Z&7;cu~iFZpe
z6v?LT7YrizBL|$LH#g*MQ+We|f7*R8J70>tm69F;$4F<TfZ$uqCW)m!1YxXJXd#cj
z5}&Xq>)qVmF3vSI*+eY2)9kd@Eh||l(F{9}4La?MNXNj$_(ZFxa?q(wUWTyOm=2CJ
znD8sL#r(6Z4;tvcL0tg)M%aKNgjG1qMsN2qQ=M7jT6@FA@L1>Ud{W*VGeA*MQK|nA
zfJvNufe5NhxcKAB=H(W6y;z7k7OONpnTAwT+{uz%q2Dy1MYQ*5U40QyZ+Pvc<M4Ep
zN&!ic*HK5pbx$W_V_q#))YM#p*j)+ZC2f;$(f__FEMn?nF?yLLi0#?HGfp!YpMVt<
zaU8j~wJyiC)8HNH<<y?^_vNKSWYBGlJ*;0x+aZ!?rt*tKB-4VVsUu?1o8y(=+^9Z=
zXTkB^;CVzM_&`p>hNoi)_0|dprfM8zH@_rD+;NzE89uy3yw~C1nf7Pq;}+q%oL1K#
z-<ix;y|P0@-|KhVEzGY@$Vfrbc|pKMUEX^8g*ua{yN-*g?EZp_6r<Z?4&dq1wlM9E
z;yEX$yfedS0eY{{yHb0zTU(Xc^3|FeVR#SjY<p}osgf{<2YXz<tuLuxsh072MB316
zh+nAx$NpFe5ZY8tO@>Vw{wt4N(ZSTX99<Z7NLVEKceee{#RZ?i=gIQz>vn)V{O$Pi
zwhoy%kF7~I=%9H(+u5dKAw^Wr>drB0_~=(9#lf8N4)@;KPw5STwwp=b4GO-1IkBJ*
zi4k?5MWMQCd4q+PPz5G>`f_p+{d$`kI`V||zAJ2Emis?L%(L9N=y(%xt=EQ(564{`
zN#O{~0s>3q?wTg){X&9ZPQ&O@rn}&Q=CClSj=V`y=j?H?LfQwGkIut3rim*)v#({+
z$j@I>)vuVm46xY*5d{RN?~2eLEjGjipb^pSk;Z=K9p$Wg@x)yY2X3s>xo;EiM9zGD
z`s<_EjNh^%z;uJe-;n2z4Hp$SEYCjc3>peMS(15V;uh4LC+HcK#7B29^zeQsIa!#b
zJ>*ctCNJ$7)HuK+nAD>5J#~D!lSw${(Kud(Lu$FyJ_XcAUJ(TSX*UR(SG;cMRk_yK
zncs+(l92?`$fqEbHM@-rM+IDYcN-@v28puRS&CsDt`<h6^TlNq0C7rZNG>1m_0<d!
zvj<UE=YQr?oHsDeZOX)rtMKT=U}~8}A&?m|VCkj<Kmtzeu4K>pm|k=}%x77x<-#Pk
z4i1p!cy@L*o-Hx?oK?%w%{JeAQN!z(h_Qrj09@1#L-6vt-Y$B>yfj{VrWkVLzAmAv
zWO6^rT6mTj2-bVya@ml|CUblPz=%|CA~ZX|OF9Yo$%=R8AUt@!JkHA96R9}eId4u3
zGb#cOUC{dQi0`H}^j$WwT}bk9N;{33mypvLbWRX9<C*oD1i6@P^!?8WGQBFlogJmQ
z9cH#Y99Z9exo8cq7~;yS0DLXH{K(@@0ml=Ai~f4*HyVadQ_|5IOEz7oxBK>0o>a?8
z01tHN46BbEU?ij`rNmJ5rvCGaG7-Y=!<=+-&ot-%H<|iRg7<ux0wIb4<@k?&<4%m#
zMCz|Z5<ro!7(@%To3N)LCzaXi3+xHLP_RTdGV00=?A)1r6%zPZD(0MuDbkNaJqrYA
zVqwy=vXP{{!i*-bK4&#@3l98aWJ1hG2&A>J+YuayO9YNLyTo*}#RA|5y1h5leF`!%
z^;j;#4DkTD!oT*9Oq0cLvpMv;4Oaynq#OU9NH6CUkZ^4@5^`wav$?SEdWiNNm5(p^
zI!%!#{c0s^6gfunWdGcif{h9vyhQI<fs0r63dirlqw2jv@!3|aq$yuta%g_<F-?e+
zTqcBbiE%<}VvNkMhs*FYkn%BsN!)GZI{G5Ut%lm2>f2{#Jj%X6MT^)jznoXHb!%F3
z)9T_Zwgr3&<gzDfIx5_HGbBE-v9VtWlrigRa`<>ZK8#C{#KrsoG_5i<dNSu}`YVOL
zrK=dAqy}iG)qRvm`JEh8r)>4)(?|cnIHaf=&vH^0=omPFWmqqBfY@I@9(!bsL?0qD
zpPCeX`&sichL>m$XfM)#NZ1o-bT9qb6Jl*>%{Y*@s#zdWDuPPCg?**yGA>D{<r<^L
z_BrgB5KEW4FchUlXq2<;hgvNMeJ(G~z*=i?OaG8y*!_Zf(0eCli2h^M{5w@kP3<j5
zMiP&Px9K@ZWg;?~TWgi$x<r40Pd>;ALRMBx&&D^P*U!oAZ=%ZFsUq=;cq<l199ycU
z@$|h5U>AtoGH_q*^w)|4*q0Ua<|d$cu-t6_?RjCd0JrmTh9acSESb}K=5#T5z8aRe
zWXj)KQW6oEqy#)qn_ah4ovQWDnMKWlndqH^C6h3k3oUD)?TWvP-<?;~f&1tHG)U@3
z77ht{IY6H%`cNZ1<)`qPtlYZgLao$7cT~3&23_rZ8(S>$P$qQ}*IafrL6v|mhr2uW
z))bBI$%6UfPHo``1)4Ot_>k_mO~|DOrfUji@_s`9_1|k=kFlbUpibWW^Z#X3&wzp8
zPP)XReB(3kclfIML{HPc!7Kptu4vr`f60KR@ILr=?|4t@dozl*%lYxCN+V<>l=Fmi
zTIE-WM>bJPVz}7wFsm#OShE+pwmmi{c$v9?n|Ul#bcYT72B?20L|32d-_=;AOg{wq
zegT!H_1+6ej49^En{EIx)ZfQkvGy-}ME}FPB(cxi8=2~gHdR0_(<@SZ21X9$(crg*
zclAS`+r#FbStReS2XB;gxIS;`;J>pcP95Q*Iu{q%z`=bZNW;6E=Vo@SdPe((E*`LE
zDN2p{7^axXVHzgrI^xNu>EKB@94vKJTP;I);>`0B`$@kGG-B$qH52JB=CXhLGgUM=
zQ3C|=ylARD8q|(k-%Ntoq>@U?$#GcN^oHSmpT%|-oeFH2uODB9pk}6&1Bl?RTVV9U
zOg*@w`n&*W{KsSx)rH`0oLUACgk($mz|EAM``id9LvdD58hI2b_Cj8L-86hVbKxcI
z3|>qaWb<c7?D<matpnt5T=IvET^ly5kH<7J;wsaBk<YeJDD}6E@-ga`I!n}Mc?)~l
zS|G80(ku&Hd$F236U*ic=r+Jib`Prds_|Kg??5P_UM0u98wb*4lglyW!m7f|?kI$J
z3{izeV8RFg5j}dryxMhDU`aG?(_8X??0?X@-i$toBS$K2$1Cx+PU6<CT>(UIY#3zU
z=Vi&CrEy_Pn45TChgAP{nr0wEypMMQ-F0LZ$EK!yn_In?QeK;<s@Z#K=ZAn*{{jN*
z=1M6DC=0xG86z){2}sq3Xi3u0;`-`<Kz2#84M4<YoD>-uNtXsmr3*!MZuLu)vj!WG
z0kfHTJqc4&AXEO!-Nl{+zw5bztl7}k&*aHK5>J||9g?T(z<52J)_Rh5R-dabAfm<0
zvJl&2>IF!^oUH|SAMm#&F!waf_~c7De}DpM*8S{F!j^mfCS0{;9ERN>;NYesf#9@b
zr#BroN>iFkr_>!kf_}^qj^k7h|EPc^D?;)^ISK_t_GJ@8KnO4`{~wAjb}Xm3&PKTA
zbCBpegyxM;#^`*<-hBEe{O@iL38qip9mur41+bYDjST?y1GO*U2s``?h#Bn;Ewt5g
zDJd`tI-C3LDcm0PluRX;qET8fS7@;GZ*}EE1(3=l_u-G={#POO-&$qyp^|E6YUZ}&
zJw>>%oDQ@@vj3xTXiNJ6<rK$y0ohifHCJe>?whqV2P8yu&gUg{_lDBjRmgGB`KKV8
z-eiu0%;$kpC-IH4UfS`!Nloy8pAcm0mpXJgIC`hRX<s8AREaIt(?dB`u8&aZAr(J5
z$ivt<|GlT{j!EP=A=5=cY=I6%(R0RN^?)V3WQ&guXEo!2Vhz!V-IOpZvb#2RBbA<y
z^mTMDOGGs9Wu!s2hr6ut$Pig_jSAYb1gOU%_cfkeql}DFcddoAgp&n?7$b(3Pat?u
z+^cp111VHCr?~_ZD`_l6YO<C$ctovSPxcludyyPjnB<4aHX=TI2Ky$CRzF>*z!9IL
zlJij422AsoDwBOkNa|qWZAiKKU0HJkkv;TDb<;(Y6Lux6LM;*8W4sNh`Q+)<%iciy
zcx>08C=cv*8y`gaElmJ)mO`=J4WJ!|P-z>0p8UZ&AmmFRk+B~!AJCWZ%7(XxO6uvQ
zF^qcQQ~68~g+lue<?U=>x`@e1$Ta959z5tU$wi&n&%>?cJrAg(^tb7&iD+&v*e!M2
z40)@<Nx8&+eRLLvO8OY_yG~4AZSU}O`!03Zs<_%vM%5?;y^sj;NGn!leq1%MB%+W1
z#vEzAr}#9w<kGILXySFBbG3v>d9EOWoeLrd8Nx6GwUoA$G@8#n?3L}!56$n*>tcfm
zkUn6-!HMxqkbyyrIajArr)_O#cGPEjOUPt!AR9RW=C}4ofX=M-Ewjtn7H3=69fa!`
z<`gZ2%)A%&_1H}fZ!+v{vBUHe3LG*VL4((0OIdzK=2PFEFs{bsWV%ahrasu=mg<5s
z=!_Ht74J@;?m;csYnr228a;Y5g1NtK)?tGvUd%w<Q&iPlfNJ4!^UFRNTt_BZhKh(J
zA<3*a%UG=&<R&jg^zk>-`tEMlaBnD`F0aMM2D=VHn(H;E2JwDM66IW;2#Y41=mhJG
z`A1MsjT%i+uU6&pz$@2iIx<o?s5h942(ewU6o_JP-WwITWAFgP$kl-T?)4^M91S=Y
zY4<>-jU>PX2IL%olEi)ym_6%ulaq2ylhu6r@}<bN-Xd#tDm<|IYrD@;?Sj?1cu<fY
z&_qe|dbpUK+eAsP0e+~(Es(*Tnu2$6n<x@_IRns8eBqHnI~l8BP#+(o6tv&sWUXgQ
z6`vhF>UFmp_^WWe|3e4zY~qK}u&>iv?R6G&Y}uoE$Nn#n3*#Wb4o44I4XcJo#B}SK
z>d)l*Ol79z(*=lPUKuU7dhDMDR`=kp7nipVJ{Y9fAa&PB0XC&8nEW2V)>zT;DEE~z
z{ApU9m-x8jq=(yYkKU%Ub%oFt2e9xMaSHLB!&j1oZ$2BufV;0Ln$6^7-x$OE*I9M@
zIN|Cd@ka2#+BHA{3nJ0+tC!=|>EtKL`rZ3XD>v&7f?&OV{T|%c3dDv(_hx{)0-|KO
zZXg~@ar_%$Bx)->uhq1wstSbuXVn9~lJ*g8g&&#8nH0S&$e9ZrrcPCdGx=qwTn@fO
zyDat*q(1Gte-nTu%Ocws`)-<}mH>to5dwjHCjGqEweu&9^i7!ky}|!}5$4}d@}GaC
ze1&V(+_Aa6wK<{QSl<-optKXZrcoDitLYMcG1N%31^Mx*RDrYV%k`)D?Cuk{!C3v_
z(A~V*7Z>o&g0jh545wUo`|oZa?<jY-CU~qO2tdG{Z?H7OD!HKDkyPmX>Pnq9Z9(aA
zrjbBo3)SVOpqzB-Tg`W^acRAQSq7F82FAQEF*Xz0HC=2v=;Jei2?xEdd!J<4=SA!5
zZGE~Bk;9R<m|G?%0h0Z;OD?nV_-bt!;rAcL5-qN?u(OUD`hn(8WzDwh!dWh$l~2>a
z1~YnyTyJL5s=3$b4}|)R0YZ~qm9XSspecvX+xTb7b_?s{R<Df?R5Vy@i0TDIdv4f`
zcEfj8Lj?hW=RjoJY6BbjNp|MzcCzVv-V3MR#v5(lu2i(4yz+~E#3aKzK&igMn$(wz
zpj>n7QFW-)DW*(%VV#6=<1eRTq%I;_vhDa=^(actz(VWydWrt&i|i5J%5qk(`lQoz
zlH9TS!wt-7A9swqil9ovlef)UJ>{cCUuR4E%O60#Mn+?xtIn1xJSXl3zVCHrb6o!L
zL5;&z232X6Gqg%yMfV4cRL~-QOn*y26QpD1+x+$$&^QSb=rpnZe%gsIln6zu;a7?E
z!1iX447?%WE&j+Anl$wLr|3Q~&Akr<^h5@)U4*X#63jQYw=tnYJS&6+@E>go{p!(S
zI2!@5e4kAz5O4k1o5iS}z{AzuF^4h|YD3aDL<pWW(4GC-vc-|M<#m4|@tUC{3Ty=B
zLSde57yaOjD=DFTefX==Pu$kVx0{_wXXV%qwOaIcr5CP@<TwMXEYQ!_SAzv{Jcpa~
z7A`&hF$1#~VLW5Y&uDEIE7)E-bnIMUt$v+r_ssBkr30E^-o7)La=TE|%AH_3k}@zG
z3Eo}f8JkQLxL$dw_2ZLlHs?3{2Y_h)Cdh}ZzPm;+g<bderR^{vsSkdC<@N?O`8KVC
z<M`@jrzi-GjF_1H3s&3kLf<bk4o6gwio=%ouU{IE+A#T&j9TJuv3p~%7A*|Qf48_A
z#Gn@^Qv$6L%}%>|7!pa1Fkk5;M4H#TBKEfjykg}OjPOWs?6sOXD`SdrM!9a}W#(S~
z&zf4vq4LgOhHTMpopdJbx`wzk!@j(a_~NzNAHdv%PQ=sgvG-26EY+~77C-PB?C|L%
z(_EXO2?_ppjqu$59Q|)Kk4Kl^--zC=95e+1bL$hbPQ%K`Vwwp0FJ9A$VgWRC1H8s%
z99uQGm3eA9X6j5KTVoeAZ)bPjeb}l^+j2T$K34(KmVY^F6jnB;a*!f_BUjMTk#Sn~
z;6w%?py0N1UJTQ(c?1z;*<iBf$FkM=Orj8ee0;oWQwA7vwr8q!9jF>yZtZdJ*EUE$
z4kgO>q(>-{ch3$`w+1c<&te_q1Me}}LPvl#jhf|SFL=)&b+`Gz>P|FM{hKKCK=rPz
zvnEr$^h0y+`PKYlUS4h59r=Y|ZtaAQmGX!`SmxC?_kd<m%sn;rJ+;!CAUZFvma^e@
zrlY^5OqQ30d<HAWs0DtiWPd7_Dui9@sv+S{D5gBCjq6+}Z2j^(e`CRlCSSj{#J#Vu
zEc2pZUdm+BD({#emZA{ju;XN`(Uf)W@;=0iMnz!H6G>?&hOGLl?19Bk9g#R`{V&H{
z8gEqvFX@bQhiXYudbg@S&Qmi_HY+E;dd-j=SD;LE)$Vf@lVF$oPQqc;sz~FMZ|<@Y
zvdn3qz13=>2Le6so8f6M$_&8Q&Cc~Kbw1a<x`_*kd;D?gDk>F1+ki@Vb*fYAMUVq4
zhx>@Xo0gHkm22|#@ZDCj^#ou|&q>+qa$uEbz4S-MsoKMZDuL>2gb4$^U*Z$bvmz|M
z0=&t6o#dcDhmCtohs%qvJcMN~0B+*6bj$acm@Y$!*>@A4AlcOKT?xQG2K!)9;VBa|
zt_3eZTEbxSHi0wlC_6%6kjVi&)L?~NW(~yOt{)`TnJnQrZ6k!Uma)5D?DiOPo;BJ8
zbf4HcbiTdX365y^)^zZ_Zrw_+4PkM5$Fi{&h9pNZKsxOv1^(y>cqjI43gCmb999Pd
zr<Q=)`bE>r?{&dP+$%!ptI11c4UaZwTL<;E;$FD<O`d`PvG(;GIZ?%4Wv|Nx&=Wmz
z$S_Y2)D8e)_7RAP%?6^gs<{io_>i}5+oDd1-n-U&bOJ&Y$*bAet1vyBKHO~!;6P3t
zQMW)xKjwcppRD$J^8CG+DDr|36SE5)o?P0e$vc_+aVvwl*_sk4MSufr<(zCKSHNcX
zs6j5hC7%D{!wbiiAmAqBVqs6G((jpuBr#rzo<CICyw4^fl?gbF52v`DtEiuk#=ocF
z=S;Zsg!X?{D^9`lYSpp6Cfu>=(9BTImxG=wf`v^!eIho)nP`Q_XqN@$fCTh>&Ok7A
zA@R62?q+4j7Z<sJ`K0OxtPZoT^#=PVUPMI1ln^{Lk`HmyvB@sq=EAGF<=|qCikyty
zUX#1h<^yp99Gma+myo64W)qJs`GX?$a1<N%O(;+ADp-q&5;&GRST}NkrYobaZnOM>
zaw@o`1E%0>uK>g{mLRJUPdi?keRGcC-rR;rK5j`0F2gE1`uAF)_~el7z6fT&bZ%H#
zA%oIgfz{WU5I%x^l>_~5%b~f0@!BUR%I4<6j;)`n!M3h}BG5nLHmN0r7AYAm4YkY<
z|2~iQ0ofO3k+uhcqZ#$+fqMhls9YGe0F<Ih82?jH;P<zrbbdC-B1J&-TwoI#3QA6y
zZd27C<nXYc2fKmhg*iEIUWa!CgGDNP#gwl*VbJb;jeN|Jf2@?VE_}6oNk-V61{fdR
zJtB<O=!U=Q=2J2Q=Kb&Rj=#{I40+^@W=GCGD2JI(#karM@s5d!(Yy}~oV2sI=SO`C
z8ni7<&YG|=(kGkmx_a^RWJw@e_}vA+k$^tyA;3`KaQ$)3gp$M(`3b*M*IuYU>?%4R
z!Q!XozsnXN-G1ITO~LE|rE5pL>4rJ^@L5v(e>Uv@^Dcm4f6BZtD<Ktt79h!YNCS^#
zj0I+~-~03NXIReB@QqjV;}+60{Ah5olR6HbJZ<65=DSB$V-50LYRYQ@L%l{ZgI7U)
zs!bve4H%FWha3Y&W%A)tiN^T5%WqhAjrun%xm=DtQYGJJA!1`IZB^IcVwK0o8AyrC
zS6Oqq)BZ9&jQ`%u?;<ZmTBeKDIZad}_OP(9z<PaeNjZ3wW_u}s1XcxEm&9UP_tkxn
zY3mje-!JH%TeF;hdzYT9%L+1VbNr<Z;iBNlmqTx7xRD5Iw(qxT+~3cz(aO?bt&;x!
z7dE#LFwEMH)38az|D!O>fQNWvE>xKe{Zd`gaK~HnbyN)?hXdB!XI41(=-U`;5&Rnm
zBIzYacr5gTHA=p4aJ*!@HaE|0EuKg#?RKR8pbc>jzZ>QpddZihm+^{-e^=Z8U4X8<
zBO`_Fp4<=`vO@a*e@lBX8H?w=GjQ6YI{X>)0bsJmIXA&Upv<u`()kL5I4SLQaS92?
z+(KpaiSA&dsjp=42oiQ7a}NjWu|qL9*!PVgMT{J$rzd%dQGPT|hZsebbA>+-)Qjxs
zO*}4QzH9aKwx=(++})g3B}l<+ZWb%q6mh8Nc6r>u!7FVF^u;`}mM+9hXH9Gt6nU>G
z6wxtLHvN?1mk7)DTi{eMm=Va|%o3&J&qD&3n?^18n^t4xrgTRnX}%KQzev{D8;)?!
z6#=`{Hwv(GFA;Eb6^#E%`;k<n)@IExBr`;@vS5V^k9sHZyS+%N@P4~(mT@TM|52j<
zU73i_PYTmlmxJ#4bNIg=WInPFqjs%=mKJ{K8IQxRF$i4V>I%oG+Zgo<<&TuDZ4{mV
zwA}kD`+N#iO1MxUYVQpR2&~$z`z~eQ1bc(vb?4B@`g^5sQb!vE#8UB#upt6h45y*t
zIbY&LkPg7jI+{JOV%0y2U5dYG*E%GS2@$?K;iytmjjpNkW#cT#kuy!ph705<VqheH
z%J_)yzIh-w^uW~m{SGZSZ1sX1BYHqd@x3{9i`*~4oEAEI`fMOX(u%t6pTC1K%A4Ps
zz$K7M$zcGdibzM)Mo`5|MSD%bM5YGri`0)o9&3bY73^q!Q)JaL*YrpXO#p=b_g&#~
zgga)@{rdGC5dD7e%TmnsHSB*22>97tJI{4ojv%z^<^THXe@|{K8W9SGDgZ<iJ6@FB
z=xB`HxgXSV@$u2(+!!LxiIHG&M>lqCoP^0pGJaa#rpSB*v{=YYjW|@XW?HH?nysjE
zJ}CADBs^fyFp>xys`e;69rqgPa9)p_P>tXKHX73zZze!*5OrKlM{1^7gnTnYquKEX
zE1Dyl3T*e6rf(DK3_0O111i@IMh=Ovh|`Cy0&K*lhWrO%AiiBArf8-xhAxT%*xSZ<
zciVe=(t3J&j5m?}zy5h<D!_T+i5L<S=<P7e*D3wK9*8I0b1u(%9qU~5|9(f>C8bw#
zAf&eiv5EjBN=0$i#+J)0c&PoqrSD8SM%9S=ZC@b8yzTbEyr`l`CFp<lB51p$JSi}+
zdG?_KQR)DIS?%??LB7DFGv^H**=m;fo~HMo#_al6RtvR^2RG;1MZ&wraWl9+Si|g6
z6@NBM^JpeF&k}4K4khYB1)NCpO-54Bij8#RYVly4#Kjh81V3M#Gi!PWZ8jVUWH*+S
z?aeOqnYsMBxEc>R63ksW{;Y?-lh88F?v^l;>iqPaX`!hZem?R?{{Q^p|9z^Y|G&k-
z<$zcX0KPRe5~W1hy#cz?+)0P_Zw=v<t&kqWRRYS2hcY!z9zO9eU+8#w#DEBj8408U
zpv^b|49emZq0^IJbkI7C09Zu<kgM8^k`R*g)|8_@T;<>Ws(nY6l!+l8_8zvNK1-}6
zBm(#S7bP5?wrv_c>&t)!6~#BO-4p>d^nc&jy2Z`Z|5yOv&pvPfz42!@9aGuUO}iTX
ztFN3EI(K>b`Lo5o*I<~{bndSWOp`-5Z49&G`-z_!rbbFqE|Zl1Kg!-Ztjf3B7N$WF
zScD*5Dh(ni-6@>{N_Pk>y1N^cl1}LcX=zZpyOHij^4z@YZ@<@h_u2dV{sk|<XWh@d
z#~gFaG32GIY#u61tahX}we0q7PnnPTDvh87(*J=(|9+kQ$FT=|0Ds71vd)eU{AIr5
zbbf*y;McUZ(8OoAKcD<uIzjk#qJ+RI7BHUDgUzgcl2-tVi7>DgV71#)!hM;r&5RN7
z;3O<s_1#I}QCb?A)YHGE$nojHa=Q`DAXDV+WW85PB269*xA(_~|LrCFAAi-Kw;6nf
zi_v6*x`=^ksMT%P*RI{Yy;;D}Q*#f<L8?qf{1@d=<QH@0GmU|(h72-1P5xp^pr_FC
z)>y#<bbk{Q69gSf-#`!up9$7vI!zjZmFB(Ob28Y^K+_laQ#6{HpO(^5`MlkE_v1Zv
zF+GR>`;Wzc--5qo<^O${{(c8~g7B^ohMAJm=iY&<d?s0uZx^(_8V@aNmXL7C!4hB{
ziQhN3D*^)u)!s~XL|jze7U%+=^YQTo2L<VnQw+b{_DqwnC&_RHUO}vm2ijJAqn`SI
zN_$sybN`OU$<{1e#OCWPoBzKLkspN>&kL81-}frL;6iS{vO_l=`2I`C$QZVe5usH@
zLTI9~v9W7SfEz72uQ2SikZW!xaH6RMyji38+k%+j;NXqw1@}xImoq2_!rwXoT}BZ`
z5*r?5^vM%acQGX%OUVDAT-me;(>Hg*B2c={=-S|BtbcBkXQm6Xt)()C^Q|QY=HE!#
z(`UQ=x|%BzTt6ogSrS;PTp2{4cGads+hUEptlpM<6BSg+=0VyAr08D_%pKlU+u6QE
z+hQN2K0da(jxfQVODKK<t(6bQ&oZ#rAYHu~ef=(vxen=UK)0d>_t<*D-Yr+rRg9LN
zDa$Ew4LcUOa$hzXn^WH6O|iASx=7Op4JAtr4=s<n+=(ZQcjoK+(aN^p^Q3LXags;u
zsN?z;$|Hm6f|Iw(7PH;`?RXLuKGi8)P1<ics>bhTm^UdH&d)pV_90S=hNgiJ6<@?r
zTzi7?ylc?-Da+q;ECUN?<tD1gFU)OFlHBLAvP;N6w&h`5b*a8W_(UQqc_6FYhpVPv
zQ%&@1w?e)=#>y`Q1RE|%EA)wu4iPyhlq@Drg|_;R0L<)i@@eUuoTB8zofG@|SG~O4
z^~)wN>ZT?p5_?MLMevfd#}6}p9Zx_TBO=%|pe>(S-7YOn=S+b#JgU;|iuWNJ+Omne
z`-2j*s_B{!CmXk{M*XyQZp0F0Wo4C=$1vw{oVJgMXTNz#9NT<<r~Jmgzz_Hw=1pw$
z7~dpW<}G@zaK0xUjvwFsVVbA3i4nN-n(o)dr4^rBo!u9pBajD!ShihYP-tm1lyRAA
zX{+_}G2Gv$@V65D=Sw8>=>9Zv6NNW7^JhLl2;%Gw4-}s(gzxtkpZI{DW%?QwQc+Q1
z0=#wBp1)*5_}34jii8pNWlJq0vW!U^BqCnnDn+sI!usJ>x}j(DxFeursEP3xvVfFP
zILVJWWA)UKjh=<)BfWe?Y<GR9Di{qP;iCC1M{fIUZx+pxg}sV0$ym8Vs{PEjHs(0P
z7`OQ}nFvOxtIQ{kzAvIw!?hO-B#1*^)^+C36>L91uuBYa*5IE^eQ5TqD#WBmS5hOO
z?95~)ad`S9i*2p3D8z{XA4dRtAgTG-Aoj@lrdowUR-@@gj<e#0LnMSmHX`hXtHZA&
zAtX;y*QieJ0b$Pd?W>zo`#QyBC!JQ`2hkrt>f$`c!3l&JN+bVsilDUEo{^>8Tt3TJ
z;pqvcT)zT3B8xJ78^(+xuFZSCck$((J(hai#2>ux;Dtp-yOgE{Q$2IlV-#vMThmgh
zBZQ>kddQ!jo0}mN@Q|93QQ^U9a1A#@5s$3Pnbguzw*+cTbaaLB;KW1#1*MQv<INRu
z>$e^zQZVMlB%i&DQAz1p?kFsT!(~81M9d9^fwjH;rBU0Ik@50foo%Lb4O95#*>09^
zWJ{&hiYS5e9DH<{A<Zvj#N&eVU)a>#j6vNYM<z4FwK$(<Qxq=I^Qr!Y5OHY*ADL87
zIcl6#xST)V8hyi~Do@A1Ggg2XbaC+0BOp31F7=v=+~q$n?Z0*Q&v#Byl5F9G*`ENT
zwoi)GdX^HBl2f&E`)bC<xhdJ;t|mB!zVzkNwX=KGqA}Ff6#xeZ7wY^O^IvDvD^^6i
z5DQf^Q`n1h(Y}Vu0mF|bE={I;69Z02C5n9ZS4#51Q$GZDi;OljXitkd!lBl{Pm-Nn
zo4G|Z>Js|Y*nRc%di#Vk@xA_@sg9{`G%Ko>zEX23LdJTX?{<~YZQcChytP%^S6^cA
z3&KtZ#5cQUs8yD~NncezS&dgKA%e_x?Bmnr@pIr)U{PXi1zpV+W%hVS^TSd|f3R%(
zCXG|rj%rfmV*Lu?(?U_o+R&l=`Ou_EDVEIjdiVN|iLS#T@&f9Rb7m!C40e%>>->u1
zw1#2sRaUii#@Wf+?BqW<&r9*MXEu8r?eUqS;|%MO!W~P|s)$l1(H%e%R!UJ70oO5u
z3v4fZ5BO9xDix}*$fn2Ikm`u1r+3FHbvxb?aI%J3TR)6}yol|wbvobMt#SYP{TqNj
zY4!|&#a9l$GiV_34TOr0o^H$x48-+-yY~aa?sNy8)sjVUL`0UaFZJGlZdo}5b4Erg
z^sR0ex1gwZ;YnZg=(DghOEs~j!yh<NgAxy@3w{{p>5}Wp_rnHDd=P@Z6#nAf=t5ll
z<J&DPJ^#-~D8T`HRFZCMbTl+ArR?_m^9&RF1pZS0`yE~R0*=ZL26MRu#Ib+`kCiw>
z6re?9OK79#FU-wd1TP2mw;?Y?c9OHr5it&a-*U2{hT>jS*!%01zlRKxkKn5^&UrdD
z+IPNg_$_Ogf(!MMtU(e*7D{jsxYveuxa99fxLJ$Olo#qwo0A%BQKYb$s&^NG=*>nQ
zAS4SKBoWS~bN62`6+|BRH%6QlZ7}xYJK0Hy69%^}tKxYdWD2f-FzhR)VIh8@TUw^G
z(JaxZU;4pD*Tg~)y2bqQmi0tbua=obJoCD`gp_6Y6(!G+#`=7JLHH&|0<Ze@8@)P?
z4~a7awH**rnOis7n;LunGIRx%CaYb#-t|}=Hs<&5tNL=|@bCXa_Z?ymm)A9e<dc>Z
zC(=^*jL*mjK~OH%fVem|KK8EKAnC`c?wkQ}nog^Pr*g@eXzc-<wl^V6?j7C&8oY+R
zFftR@Z5Z9=W%fK-y8Z_kUN294dSSzn&xm^J+{X(ai+Vs6)JwG)N&*6|Bh|F$3iHAP
zZldccz2nTzADG0jF<wOVC@Lz(n5~efbd}t^ze^h%Y5HkCo{P-wii66{8b4iyYCcyt
zW*nE2(m!#6kB=|<x%WTsj{m$>7<@b(dY*{3Wp3P~LesJCH?FF0--_O+A_MIzR}m3W
z;Vgw|W_kI?^?u+CkwP)H0`9Kp0v}2P7K>u>-@k&thZ346VOBW8=uv-p<-9Bu>Ug`R
zWjuUDBjY1RpiOK!a90Ab(Nrw_dy`Cwl2HEOpY~<uPV=X68goF!uOgNpq;Wo%Kzc&|
zOynuSF@p}0;G2-XLl3kSwFdJC0+m65Dl!s%m@T(0wy{{+6pO+pxTG0{H5sbJ5s2{y
zu!hxdHJmiv|BDsrM~HNvdPT-dl)@SMJjp80+9CW)U>ZvB!|<$e`J&J-yVF&fU=U6h
z*Us*aDEutSLGJ0V+%o|yyHu0uFKB5O=z0FCat<$C&Lk3Eo70F;<;X#8x&4Hx<e>VG
z>aj)Jt96%1%h5JMVT<ZcGi%Q5?gpy9V|oh(QrbNtU=0Lsi}IyD9V*=t)Ulsqz0@Vs
z!iSR>@_1|8D!M4?48PidQQ}eF)l|7b2zj`0J#Zv{R|6$C{QuN&;EFD0LHUL2vH==j
zorHYv_p4#{W|akI9z4>iyvbm~`KVC5s1Tk_c6fN0nu5aHQnMFWaTLfE!&3+!movuY
z{jP6G>~J(?yN)Z+xzFGBazrr@S_Kh?sqmC>#=v~|YX_}}6$Yav_E^H%Ps4FD8}TAD
z+>`W{me#sE7Wpkv56OoW@R=ld3NPDYUQn>B;}MT3kz&|-S582EmA2sbuuV!Z#XAZ!
z%@kB*9u&o$o&Yrqa!ZVA7gz^BDg3AQB#k3@Uwc!tSTcp}+K?~lpcKq?Gxl6PJY&J*
zj;;nbWAL^c$sNYo*`cCfyJ~s#Px&`%&tqDr4nIE!;=pS-I2xC@Hl718(SF9=zy>1N
z_lySHXV_QE;x73ts;9p5QOCa=r_WB<d1Mjyd2?2FKioVzeyA8Bn3tOeh}aal)C(N8
zMuPw)T6?G2=sc7m5+bv$N5l08GyM-pY|)kys(=ECqqoW`7)H(k<9k-HLM4M?ci4e9
z0(2H10#SN;dhA$mIe@2bWZXp2d$Ep=4sMJIBw)cz!K;sRBzfOI4Q8M`9j|-zR+aAJ
zxvL&B-UeZ_^l{I_+2W5HNqW&#qIC{0>7f<HYLOcy!zf>)b1UE05eJi$lsFt;C$a&H
zf+JzhEq@AL`hN3Q>LD7*A#<;z1^=m5_+Aa=uAHjTB6-~+lW)x_>m|e*7>_Z0;Dmi0
zQA*15lXkWq4}FVp{$8A*fs8t$La<AL{a%qDO1rCmN*5;}r>d-MFnV=~3`_<woSMyF
z(7CZZvwM@dbKST#1=l5nXk2(T#oiM|f^Vlv#mLy7r(tYN4N%dO8==T2ki`pbL!9o=
zf9Fj8gJk>te4!H9#v}%<R-%<o$A-9g_mCv{iGrfy0|S)V_#tMXXu+k)_|OsjxGsJ%
zEzt9mkMHjvTFDIuQl_|bCCui~j@!bpXcAAuY-C#-%Jb{)Fm+(<!rj)sS&iK32PLeq
z4x+4n$<;gEdzCd8Z~J-M7NCS;k#hRqWgYw(to+&?i~)fMAqJn+HdKWA?^X}_HGm|6
z#;gNlR&viDk)GFf*Lo`YJSljsKY6>d!DE}W(z#AZ2?aJYB7%u8dZJ3wD5n>$_+~?f
zf|4?MddZ77OL;sBcvgzHB}GN0hx~0t|A#ZhkCL>EAOrk8!hZne?*lkt;SV3^We*EL
zaCiLqsol;zNHPq4*=sE3-z{<8FE0~j@TUh4=Yp+)Ac;JekEbcxUqbS-^>Y*me1eIy
z^wmkqSmRPZ%Y=7M@YhrP`a(r2LPXQ&tYqyC#=ZMYg_1E16nc*t=D)V*e){K@6HNPs
zqC_X3HiHtH*1JRTFw{b1%#mM+1M3n2fiN$Q^3$~30&1~sAZiRX^g!8R&{B~v&7zGl
z?ViFlaYyGO?W{DBHCYc+F^P+#fz^9uN9v9_VL2zao?$%i?x>E%w-^PQrs|%zHx~gS
zQL<_G9TSbtB4V_%l1w9KjvPp3i23C|yw*z(Q0Ynl5=iCh_m(IaGu?Z;_P>J`6fecV
z<~MZwqZEQfs9D~_R=|Fir)LB#i7Lv-gv-Z9N4FOTQh)F1Vd*vy{Y_!KL-)EtM9z)D
zBD?%`A+N4VzZ(7XwJ8+J{z%2b?Qm&N5hkbo%aa=-ITQ2<<qKBDt(7$rt=jC_jh7TP
z-^5vd2))~yt91!Io$joBwH9G(cyX{~JMXlPU%;SR>Ur?-zo0k4bI8Q|n>(cpA<I)x
zoVa7@pE)Ugto;EYL$BRp+|%w&O(l~Q!8a(>=<K-_Xz^9qKc<4T`v%yXlQW%``dh?R
zJK#-h7cDq%7bPicAN~BH&U#Yk5~FHGQ_Xy?s2MFg6WgC1|MM(**dfvx>ws)^ZB0Qv
zBK#*FMBEA4z8t1ZuPc0(R6*c=5c3Dp{J)Q5&U4uP*t+*1<q!?M$a3MEsN37O$$?oQ
zNfQWqLOHYYUm_<xu`SeU(j4ek`tu+mUR5qzxAqI1JBAUIsCHK3vx!X+Gyc?6O#s_%
z7qQiKiD%MN8dU>JP8QCN3MyEA8}ppJn`o67!i*c4L*i{amcpK?({4E!f!wh@C?lK@
ziVzPX5j9Uont;!}r*Ws*_ek=T1c};z>WVgnw#r=_g9rx>1alz!RrhJ_i@B+)!LES_
zvPZoOO#!qaA-UU;^3fG8$bMZ^io$|)+_hq3_FNrR+xnFwr_PFyha~KB>#j*L-#&k=
z%NpD60$^G|?>CsvRLS|?K0f+&Lap;<IhG^MQr4f^^FKa7=oXf78G0Z#l?<T!u}s0-
zxYA)?la`uVdkA5e0r;54V_{)k<ffr*^?BJLp%Z-<!P9gkzrVZ{Stt!`uFiIA8}jpm
zds{^s-Gzk_K=Qzb$dMwO6@-_UcQjoHIg@BF2*M@t2Y4N0Ul?pt)K%U&+Vky<Jr5%x
zIEHEDx#P(%eS6foIO=fcbS@|0MBaEX($fjUduNWt!?$Fj>HgEZX_&9+j%~MRVZh|`
zK8Y1_2Q8aO`(>ktT>87}+LcI&Z6a)fwv}&{3+xF^2IP-baM;cb!}FUcUZseyy2p>#
zA)m@_iWNANkZY|@I!*-6(9k~ZHeV1ozxh@E<|HSbt^DF3ra&_-&ag@1vs3t8)4b;V
zXoa0aUFCw~){_M<i;G3v>KpO&e?G}URyZ{}_r=FHZ1i$@pLS0<Kc992w|rwoT|Udz
zj~hbvi8kFUb`@W&8zV|cLm)$5_4a^3w%baaP@I@`POKwk71SccyZ*jwRTR3tVW2p_
zvI-oZkL@^L;?>met%?4=asQWd&;ASrklPd+{=UA0pN&#}Fv(V~52VV*#GnfVTU6+@
zA#KgpvMj(nKtsz061R6Mhd4Be>p)7S^aaoPd{26=&Tb^669=wcK2sFG2aJWXvL)jP
zdR|igzG?a-7sog(2b-8~s8Hw0qOUGu&-1zs<#jnoadC9b5I^@*wDQz`rq30+;&0-2
zHd(gWnKiQCsmMz_PQAWtS|k2oZuu$JLqt~V41r0S+XikaTMwY@jkb=|4UrVyLg9}$
z)2CLnBd8^sHy=}0H?vk1jW6p`le!biU+B$A)ma?8YM}K^hTxe_v`RcXKwxuVwj6OK
zm^C5Ger{(#zK*KG-L~C|Kh%JJd5rUJv}F76PW8Vg0_@yg#X%amvkK|Hx4SfNd3Fx^
z^7oyxL82Qb$?%L5S>mN8^jT5LZ8jF_+mXeBy|jfd?)-E98vMxBmTAM+L}0u%99gjc
zb2ao;PmRX;65gTp8d5;w^67+@?01U699hzo<!J)1M+lD8rKR0__FPtO0XBR?KWG|~
zzfw{W%p78bW%1&1eI4QDj4!XKpt0k3DW_xW4CRaV(N)4>&}@jW9(ipJqZ}I(ncWcG
z5YvpQQ<1yvb{YknArVLd?=6%kF{a0Nbt<(QfE#s-54M0X*2;{BC^TcWKov~#M~H^J
zUrnIO|C(&ewU13CB*4SCVx{sS@y*#Xr`WV!Ba8Ih>v2?kSJGQ?#Z5~~1-tCySC?fZ
z)hB<^Vj9PTM<7+gwlkJ(!Sz##8o`VQh}YZ%H1(I06I<uqstJPngi5X;l;$VvOdh{b
zQ}Mtq8|~)yU~C=gy;{G@d?vP}g-SYMR3X4=Ivf?_13KaB&?b)-_~h^6hy7gpqbpub
zl8#HNf*6Obs7!Jo-n-FW;qQS?dj>HsgKGzh*z!Qgo#!0lEV7m2(qfCxY5r311xUBW
zoW%edfaI;Bw{$=YB1@w2MEKE?uO#kodN7n<bkCyh%Hw<pK65{l<OjNrqi0DIbINis
z*1O7G6+N|qYojwW)}>I%&GOqgXg6QQ#S6fqq+A|ybTiQn_Jx^9OTQW*-MizrGw0G1
z8R@+z+}kU2Ho7aGE5!NA_?HfhwwsJ|zs`Bch6<$_P47zUD(pF}Bv)G~M6=0rQ+FX4
zc7m`?EVu2daYZ*<J?F_44nlDty1i**VU@_%{-*ih3A24+!9*7))J45q58rT36u8?b
zcQ47&lmCO`h*DtGgW<2QX}&Xkhmv)^gOaqjSqT+ip*p-=8<366&Io-u&Us6Eg^Y-;
z**K8eO!En2cRItCgEwntb$71g)ENQHW?XFqWvgI@3@Z+ee8^Si>_%r=q!V%{dG#x%
zXqYVFQ6Z;iLV8%=naCpR)Lp}{2rtXu>xsOH!XoykHV+Bgd5bDQKefMH;KVl};|x5e
zxAbQ(Kwu1>hiux_r_DSuGLU&|(Qqj04y{x!c<Z|#dT=uc3YFUTt*zy$CvX#*E=5+E
z_`7^y4)U(i*-r0m%xeZ;e*P;RoM>m}U(ZgTEo`87FOS9Th`9W))@D%NO%i*YNNiEW
zpkG50u!J2WsIz|Svu*C@5?%sR7Bqv-b0zR_&!$K()pSRx;Xp0oit6#-TR;4nR}+W?
za5aZ!%}joCt0#X##N%9fSbMM%!S`i(xzp&Y6L8k0p{5Qj83H31i3+0u-r;odD_ogH
zVDt67=7#b<5Y_qmu<QLvATal|{x;7D65BD!z7`7kZBK)Mkmk*+NT6vM$0h^$xSwo0
z@r~HgNY<n&_-zF#P=Eg!gWf2kdHC-J(_Y}zpf3Ai>_kOHAy5fv*}-R&mPRJyscT?p
z1Ylq;13mQjnVCfBF~VKs`R<I^McSC$HQ0jijr(&cCpp4pD;u1goUE(<9DiQ-swzTS
z-XxyRSXT2nF@5h5JAVzFTfHekRgj4^@d{_IQXgU^51j@FvePXo^jNIgWe4N2N|S?-
z&uN`?BGwU4p09IQkdaZtV7%e!G?7K))wgT2Mmt;B_7KZHkGO9a<}d9O!HAh&Si-bM
zk^;Rt6)M<H_mcf1XP#{jCT+6KR|%d*mFzkT>Y`V-0d47TkZ-9<09s=Di<ZE9XY9!j
z;3nd)>U01gH`1Kb1jW?U@U^yervQEd3~(MhRmgt=nEW!8iZrHT4XVuK;)$CjPG=x}
zjs}9Z5#X2%ef%}Eq$R?X>)BOpQ)`3nsh^X^a~~k6QZO;05qbXgt!|sr*cX4-8~EH8
zW~5Wm8xRT!b~1`S+sk0TXwDPYd0AIkIR%A`fB_0tSqx@^F#WZxXPyCSU<m%~;Uio7
zo$&DR=M9&q+g<An7Prgl7E);gAilt#RDF1NiJlftSUS^Bwy}Zw!$unp=Rt}y{ArM}
zkbt8dp_o@PQ(Eh147sqPd`&JI_IGe=T?@U(TXzbMbPqX>(dYSpUDD|HOj%bFausi1
zRTB$)X>=aEmc(lkAB!ztsdJl(|BV!g@L^qX+l^W&(NMe+xCpM)Dr>9hZiwH*ts$TF
z9e3Fm3}5AmFP3$Y*Z^NVu6U3Wo}<yYkr4uHZZ7%}@SmaQ*g&^_KB1p=T2BUpgA5Yt
zzLo7`z0wDp3cpdTj4m9*ThH9jf*l^L67H^p3r!1FpM=h7{)$;^QTU$*5bim?dTlxy
zw%yy%D8ncarg3g-j9j*8$>m{rRIGcWTtC6;eAD8C%r!SDlJF2nP5zXqG%JKfg&oF7
zMtl=T!^T7QkmClWX?aUhQrzv&GbM?yVz#4NYu;t^iq@C~DCt1C+I`^Tw<fF1@CHbB
z?H4BlM+Fz|_Nn$t!2aAls9Xs-o2y?~IpWnTCTnWee#f!PqUmo&$;CIp-p;_H<rLbr
zkZnWdT_1>^#U(^wIKi}M*C-{c2?uh~z5vE3ne=6c=AugmF_(Sm)w6!OK%~a#CuofE
zU=0uVK8`zVdMYQyxqFkvH1q98Q3ikhpOe*-zvM7-X;<*d4f941$7zowr7}Hb*2@TW
zwI@(%p63&<x;v*^(2f{V$kqLPoG(yk=JGg((Ln|u8Piz2DbZ2#t5Bj0FRX4odFMrs
zyUJavu;-+dQJC$&5EA=qgvCHKA*>0{mLT*eNj04*JYjd=rtCD1kAOM2B-@-VHhKMf
zMfKV~w;!%OPY>?(*NQJFN9Ms6*3e62noLd_luFBm`6ufDR1E0yW~SLAnatTW0AI#Y
zh4MG#=B&5H%UqP)WYmAJjAp5{4pc~=PmI$)AJO8^r=F;a#1O;}Q`XkCS{r3Of7%;g
zen|@LGF6m}`hzs+(c9$$R2L0?o7er>lY^?O*Xjc6_JpD=<9*BID@&mVlTiDo{bi1d
z25Jus_Vcm#ftfDY4-BX=7uF>#e@Ck${9RWR1&@4>wwrfxLz07b#@r6wW~G=T)!t%G
zx=bgi(q!a0<+GRVo=|?xN@L8D9KX<pG<Wm)2DJfB>50DEX_Hz}o={!%K+H0?i2-aV
znraO+y*95ml>*`3oMFZP<?v6Qi$x#(lE)*ucz`(G^uyC6<6A{Y`1nx}#90SOe@0$M
zauXt0mr+-rr4igdnM7NtDfYi8{gUr{^hI4{T!=8)o&>HYzTi3b7xzP+?@Wv_g&cMs
z=Sc)Tf}c<(dyaE2);(UCXsEsU{oeTU+hARE@!c+ctq0pGu`ER`W5oRvU9^j742;uV
z!4^FmcoRMM#%k|7we@kRUcsuDP(X<vQVBSC1xRB;XRbG?x`dMUrr&)2(-L^a3iBfb
zGHe=uSN+RcCuJb40XQyR9~#eQIZsm;SN{I*T?U4tX2=>M*)iEa*H^?S>m#(0H(>ZY
zravYAfUn!!+0Gk&_vXFn*ZY(On&K`s&=eb^K!8P!=DT|PqTd261G2Y2GKA`#^NDF9
zS;pyKAp~ZMhUp$ofNhzYyQ&^G1xJ1A9R9u0yiXvWl`t8XH08<5@-aof=4LPWFb#oV
zgNh5tV`!`I$fIE;az?PXp8(7V2I{Y3l9HrA>%B^wReHG`!Zg{}uJNA6>@xz~bdt%V
z!jp4{tso3}6Q*fNKRzCDW)<1huPu!w=^3e{Y~yDA_?CB&qp(e>@oNnwMP>C8v;AiA
zqc92b_bnFr#fAIdlq?Yyy)>)qGCX%WuA*1cDyU~hM@?|`j>3(l=f4T))6L6{t=87~
zY>s{rVW7s-N-ceQgf5-7RsJELkz;bhZR~1^aK^9U#`^~xGi?&SMr#jW^tCQ$RMAfu
z<v7FoQIge+YSLe#Pd};1+3sFc5bZ^Z4KkdO<`opxa?PfQi4DfE{+?NT89wziONxwy
z03{(jvAMH>hlj`3Ts<401R*4a9MiX@iI|v}qrjJXUXT67+WI=%%6$DkEg6~T-1=b}
zLDG+qkZq4!tEMlRI2dRG+J4)L4lB}9QduAn!@6lQr}Im)`9m#sBX81h=1xUr<*~s*
zjQ0VzrIzN?mFeEzaIHR$VZ=>)L|v6e11USXpJQUOLn54m%T9M^;y#nUS%cxO8EbTL
z01_D1Z!4C)+R!<~YG>|TRVAg-cx8eyB#adDUCw^uB+@W9(xnzj_Kg)CnVqJ3n-Y0=
zs0k2^wy)EL6V9q)#C^uxCq(GSkoD@tL1DM3)4Z#DpOd$bfBY->+}b9^a<7xd;P;t?
znqmV*Xr7y^!T#U#TZsbKbaO_y^z3i_0n{TOEH@@87DTW%+eyD-h8l>Uysu{l0erR<
zy>eGlP!s%>{Yz<0v6D^t-{@HkB-s&4;&OB#l*A>=&;lw-wN0QAk|Z$K{OPzw!e$_s
zlPT83h=W5UJfpI|L}*e+q}8y}8SM)JH}55PYZ#s^+dh;<N(@+7rPy)ZoHyN>XKA|c
z)vix6519+md?-U`fTIX4n>rc}bDF^KnP13TyqZy>HRLPD+hfkhzN<@aaE1T=1;K}d
zG{r1B(a4o@Mt*iTq&C;J&&c1A`L=kKKDuC<BUQrPEr^2AIc)CnY2CQbcHUxFeGH5>
z=`V1>N8vTJGltfEtD}z#Ugr~d{61%!qI$&B-bk@Mem!}-s7zUYD)>BCIGgtj$Nh~P
zjqA^*?@h{DInN<4D5R~Yy3dolBMiyYR#1Y!U1RT2>>nTMbJT=;yJ$&cuJi4Wn)~W{
z;$=WPZ<NZM66E(+cO}z>NHZdDJ(l%!m8fBLrnY4B^oMLteO(3Sy5xU$SXz%HMf7Jz
zvRLM%S*(Pe+RT%RzIJO+zFTS|kzc9vZ-8qJ-D|;G7hCGRieayi$;Etit06dTVY3*&
z&3<x*FQFZui5H{&GNo1Qx(E7`m3H)^hs{;`SrfO&7~^JQqmLf-()_Dg9Q2P+8gxQi
zQm24+Yqg<Su{_tgI8l|q6hT)i41%C|?M#)K%F*HB66_)Yig)&Xe1xCsn*0*WGhaXB
zOwwTH3E-6E2Lcstg1miv`Z|0o2f@x<rI>?bPA4O(kpH7}peXNxo{o<}oXHKgmpj4-
zn5mm~%6m4ztYq~$gy%jHv#yqT?8+04UCbSTeD(92^MzwOViHEMiq!QB5jLFzors+u
z_#He7sq0;Zh`50-t7mD<9`F+)=m(N|Tt|UaT^=xs1b1)LqB}ZyI!CEF^rgod+XS1R
zB}h<p(t_@$A?j>k!?lCVRo^bd`Ob^OmCbOjy+w+h?cr?6zOe>b;Ks<O_5@izjsuLp
zj~@tf+teJvim}@z3}CCnyMZ0Xlcu|yfrc&2zP4TBO>6K62fLHE`qXoS1Pw1e7$bQU
z+*21AbFwoZ8`4=aJ6y!$y7csP-{_y>EFUy6X5N?UKZwXI^A<QU<Gllu*~h$w(?2vV
z@%A#=`M86`fUM1sfXza^ai0os&A)V5lLDlJK+*^{Nu-S%pC^^VbB~Lq0MTlrWIJ4t
z3DV!c1o^ggj;N}e#A4LX8jkt4(`wMX84Y9Rb0(+&M1)BtMoCuwQRXl=%k0G5j*%RR
z9f8_eB2mTxPCSe#oJ_Spv2gy7ugxYh;Bw3P^?<DYFMsgwLPIJxFEIH|Yawn%Ln37&
zUG-jt>Z-oZ-b2E8>r3gw!E<z5<T1Flsdd!HlErm)cxY#h(;PRn7Jt*n)PRCXnY3X`
z#=|=Nf;6bYTT|tWV6zm=IuVf^^pieV1-sX!*}NKvAmN#&Hlw~Fw)pndbS!vgOUY?H
zWn0tJ(3YBoA>7koK|)We<;F6-JGnb*ENq3CKzT3Tta6M+nafaKyIS%)Tb&QqMU`P$
zTJgw8GfCW*TK?pb5A%L@dnk%!j6Lt#R!Oq3IrX{ZmUJ0gul9MzMh`LDtUQ=PR(!Xz
zln(=T0h5D_r7KQ2quUaV!OVWfFKrKQlrm@GBt32-<cp15SL)<<suprv#_qZ&xTu3$
z2i!s%;M=01M+S}E^3voatgSQT{RcpoLGb99Ghe6Ok4aI^fsKt`xjquM`lGBd{bQ-7
zh1#BJJ<rwy%m_u$LHD0lNdg5i^Q|l&9o6@r&ZpWzr^^;8VzpYKC0xkSiBO>><@!`(
zc(INevz*#p(k>WXDZUs+Zp-1v{S*?4q+ZElpFHZx(aaULepmEG1c+z+gH*mgukC!G
zl5k!LV^a+@#MLrMkHK~LJmIpD9$*Z*vo#7m5<yy&ws~NwCe*8^^!f#SwG&F}tT_hb
z2M@3tIB8`86r!^|V5zJNeG%#z5*(cI-U8?no@59B3Q3JW$SIJ5ym=(O!xqvZFqun=
zK71O#e0&PBilx|Qq3{Bu*=_Wy-h(u}yqYRwiGt#Gt1+j1cWLCln)ehFYNh%dZelAQ
z#dl;9$7Tk;orPqF`5)-Mkm1e2t|vWfP8xThkDkEJ*yMx)Z^L!97pA!K3BMNO1;sZB
zCdcn%rF3+3TvKYsNiFcVSFXKZ3=&ZX)UR{xH?*x+sNn>Dg>WMwAtk6RIVE9CrUGxB
z)Q*svy$RTLF(}j_T-#+m$p+n~@%D22lr|uF>lowe4)9k`mX(i#**!qOn{?gH*-T#t
zx5tcmby;qerXOvy`?9Lg3wE<{dIxFlSn{x!XOH&+iebGNin++wM)sfWcnGDRSERo#
z-aiLhy`^FIq{;jOd$eAXW0M<jZKvP52IWkC=d7{y@s^5SXYtJ6u3N?&F5s8w#^}7$
z6xTnH|KH!d98Ori)xf}mv(wC8A;h1gB$B+aElN?JeylE8y}33h?^6)b+%jzKj|rg$
zmK)dbKHp9Ap7P!Cr_lO5f0icaEqsdL4(4N7TD<nSO&_Mp{jNenLKbi7V;^3wM2tlz
z5fvn%6mG5gHA&d%EBC|uj7jG`OyKhfv$jW33b&8ZuTU<a+8}1cgoO>ahhntg?Fa~9
z;t&!_a=pYju-+PEwuN3H(e@4K<cQXf33{b3jhdYpRJ!+9j~3WG1Xk*bpDn2Y1u7>P
zNV=fU!sV%*=G+uf*|ej99`(#(cInMsdHKuveXEHiS+456=avP0mIJPo{)FF4o?|zM
z5jQ}2o2?9iaB$}lEONr=s8Sthox&2S*w0dus;zt;6l0;x>c3o&`*5_V-+?XI?5tfR
z1kDxJgf&N2*a>6F`|xW<VvsFh@q<GR_4_Ljb2r48dzGzpnb;;h(4Yw&c+h~-CD?O2
zwnm$B9<tvuvg|h?uYAdE-x~7dCKT(H{nNmk%8SyIYPMYKMC(Z9jM_*R3+8tF^zOs{
zWOl4%(?gx9ggg1wGc_eWn(Ss7=w<yUjoVhFo6jF;`=G05Q`|_`M-ODb#G5sBkh(C^
zb=3un*@=++%1IJRH=6sg(rUlkft=@h^HgtcEh%sEf>?Q1Q^LLIQa%d{k3u50K`Q3G
z(LqDw(~z8t$DA9QJ^>6KR9vj@VnQf{lhWb$bz&jG{%c?Ac|<qhDOwZqv1m0;$<@w_
zblC*nAHpipsB|PgvPu(4W-*}EsAe!qBzUj&P$uzvD<6tr8`6T9Uj@mMU9izzm;_vE
zwp_<M(trjUmAvS_fSP$tu8zadTGQYm59LnX{K<<~IUZ-SBxzsWD3^$I(DfFwyh-<#
zPc=MD?jL~ck8&gYoQ<!K^=n>#GWdOn+4~W|mK6kJ&kV!_>$0(-#2h$bh3iAZTz+D9
z-G%%6BMr?5zB?pu7l*j?rSheY90OP#djLV>T@e(|nrkQ6!mxw(`S2@*M7`iW3EIv9
zHZ{Y*2&)F&ob1~$qan1=r+~a&5F*xMf@Y^GN(|@LeA-Vhy7KT;vOd%Y^((Rtmiipo
zn$Htd-B*DLl_MFNva(ed2f&#xErw3T`cf?`U3AfljDZ({>f{bMZ<j+JhJS<z3v3`p
z;qwk`AHIrVnx%f#biZI8r{(^m_4R=dJG#{3iw9oRXXjAZahj^)Na%;V)i|w5FD%B8
z4aIs`Z;Y?Nm~)5nLI@?NM1!1rXCw#1^41%bF%4KA^uAeis<BEZ(dBPwCg>uf2?0q9
z;woBhuR{7FpX2Y@LGre0wu|c@9g-8VECtpA<pJk$FUv32&NAQc=(`7+gI;bU%R;Vv
zFkOP`6==kq(IO=fOu=^4bOXHshdDOiDim(v*Ov3#-oTD;J-Ms(9g*Zgn>}=X!_({;
z(JM@LqXROKa?r1wWCQ7-*aKZ=cVFM?@kdnjW7Kuzeh~&<Um>b9<mF+VHvdEBfXMw|
zy5ck-4<Ed5H7x@TFd@Wxz2ak!bQlCvu|YlMy9;Z%f~=?Z8M4f$Ufc?ZDK4<6-UU&m
zyeLjxA_zKU0G0?q?qdu_&s$tc`n+tnVB2&6`ntWQ8Epz7vY2RJ5hWQD<b-j@+z&hc
zH98dbq+b7TB^h3d@%-xh#|Jf>PIM|%ffx+`OsO09G`m$RqU#<Jyjkt=(=RI2wn~|M
z*8#`Z1oMo)Fh48MSHD~-I`2|~>Rn9>0_Hr3#;Con+wRYNWoAE^CNKw5PLgQp7-+{7
zv#?yJR0CDz(=U~eAruyqk?9t?S@}$3yIYdmw5QMPtE@W$f7;*Pew&S`c6da-dpx*J
zvS@Yrm$zS`XX?%|mt0qnvUZW!<O<9^AzR=M+#ZU0an=COr3TqxHLglKzY@P1fop$&
z{T$kD61W60i?hr+_$~*ckZkICES@$c2*c>g%+5L={h*q9g~-+e*6Z1!%l?5m&C*1>
z+=l=u{|Lj9O_T9HBB=K}`l4BapdH@C<!+USlP9bR6{s|{B$r&XlyGI6DS|@kji#yv
z9~?hajl|3H^)H4K&eA#yGH!d?eGC22MjYFU@9}oi*G%y%4XnnV5uW1m4dEk9Z7^O`
z-0bFzdzVFe7P2e&?QkxJy@>G6{H;U6oSpQu5G^I|hUzd*vvE?TYz3q)^-TymMPHek
z=M(pS%AdQWt-F986@J#UkpEtVIZrCJU>0WmaFRllM`YC_w@IUW^=mEsrhkF5so8!c
zd*-(3Gfv?;Gn+JCK+dY`Gs$~Y-?6=Yz(DM6ku_F4%N((6`FWtV|3yqj?S~GJ7&HAj
zX_YxVgpAr$4RQY$aw@rb5m-L&D%kSsh-j7InhDG}CMbApI>tXoUo=0*wMDArnNjW0
zOcBe{{93+KSMELM%bY-&d*uii!j+8t-qq;4J~TP=18cwOiEf4wYMC(7bxZ|Lp+IAv
zMe+I%d&tMX6pNppkpJn783JI`uc68C%=mD{dk|jf1lAxwA*i#NRQyObMOd-Dnh(k&
zT~?IOWKV?o+t;`D)-4DjsHW=;r0y49w;(l(ppQ)5C;lNElk1*Huwj;(NOKt`oNyo(
zxqGXT8G9#~hq=*H3latn_U>I!vmiV2!{jQ?EpzUIscr@cz)JEnf(rV+cu2wI04p#J
zzMx+6aQQg`f+IxCM9fC2ECM>?)BK3W_dYAjM^Eu01B1b^%??R8owJllTnCLx?1kW^
zj_g&&L`&^pi58!xFEwg!71tVYgNmn7XIXlU0*gnIa&$t5Lv&kt0U;JF4BCzbF{cN$
zaB;#876;DsDPP2It`FM62Q-X*^d7;c;to-`)u?%*z!I?YtNI@c)xTSIMhztsZ?8qw
z$>w;$i{NW*sIxp<Yr}EFdWNx{&2d`lbko)+<d}=-VjQv(V1p^hhajA32upzw#Tg0b
z0=(Uvqax_SS%g#A$JvofKn!E%w{(2<kY#Sco%zPZh&+oX!#)Ds^{sQ_VSAy)0OUoo
zWme>GVpa?z7%xrB$bCN*n-AXCA$BeDry`549Sf)^<e2OWU>9m38f=!9La<s@uIGk5
z@JdNh8dT=OLg-fGelvSXUlEAT;Bt2NdcuFJh5xTI#9sAavY`8iLbMPp=3ztTt1)|8
zsS-)8gx?Yk8e$1FL_bmLbR9Ze`HM?rs0)wZAd|-(3FEQ61v2MBG@pg$hPW&cB~e$t
zMTdXYP5x9o+bDRMDTka|c(LcEz1<j>uvoP$W}A#(cqTp`ditz7GkFhLt9#{v3r~O2
z92Ye=@6;2jB*G;_)o2^f3@l=A@()xm%U)IO+Tj{<M4}UDWo)xg-&Pj*?UewMWi&g-
zCgHUP)kr3lC!sQw?F6UB$(zvi@_CsV*DTH`TRZd<3R}rj84I}BUV~^hCyJ?ZX||*2
zD^g({a-;d;S(v6wUzfK9(H-Y`eB7r^aAWA6-{fhM{HLTS2cxlSbZ_)+Vwf><M1)*b
z-#_$96ydnoq_$akshX|6$3Cjs=%Z_^n3MO)r~st@s=Pa+&kpAMW?fjUjvEE18lY8h
z%Z-|zs^*%zy-Tfi(x4}AKEw94qL`Ch(PLFGH`90x-v2@_4(x*}4h^8UAauK$5mVVU
zro_^$3pp$cjpE&$kO4-Y{IRP|COPluHrUk^FY2R7m`kD*eb2^nD<PMg35cObhv|%M
zzvK_*ikzdaKW$GF`k5l>s$r5Q1buI~|IE`2Af9w7+v^f2<&|>CG8SPETt&xV*DWSI
z$z=J|N1hy#j|V_7V7pi=E+SFKm{7)P%}5Ds9tXAzVJ?dyTzWl0NB2i@9rx!iOK*nf
zdFPrtBan0ksMIZywz2{0++=~fz4ibIe5*26nQq5J@Sy4mWGjUzaVsgw))HGM8qkIH
zr#sMZ$iaG`^n|(%8fjcx5XKM*V<ac<^??xB*XnuUcOh$uR~)zpC*uVyL@e~|ANmHC
z(ZH4!nDK|^bRl?Uazv&OtUp6=1;2gU>e^vvvLytfBp8?rpTUZNP)<`79$AOJPmFRs
zSW<tuVW0A4gRuCb7`7z|9fiuSxeS{z3<YJocUfo-$>d9wDvpIu7#hlJyK4~DIaJY!
z6MoGpgrKh27aA%m#%#m7k6)v;<q1{2lO8dMr)cC#QYMG-htK@0KJx0sg1QzgOpXuB
z{NdjJ?>8t9MZf66t1Gcy#|sO8d=6%WtIT3tNk%MdyTQ#hZ`vXgHf~nDAjjj)O_yem
zBDkyGQoL|IjBqA~vb^XjRO?og3c|2^M^8#>iA$(y{R5J~d&8D;etN1iAyjz2S3goK
zYiY@pV-KOtAf0V!R=g};`MEl6b&-2AOo+#>{v8ZyO_F1!ogxD6IoIiW2PQ7-jYQO3
zV^fdWyvyw52Pa26mPCxC&MtN8U&Lf#*vytx(=BJ4?O->TBheqR$wZ+O!ilhJk?rEn
znx6d1sV*K7O25{+yNqLu-Fzd{oIwO@!`tYov3Ae)!4ivM%|h&;&T|!{`iCkl)z$e;
zUUnY!-7%#Q6L-vFlXxFz_0ClY+jPkJal<x~*|_rrg(fg{u$EGOr@gyjWMQnrSR@*6
zF-c%x+F3qPL8v+QZ6R#58S-ARd2MxN;L%`!okw!>>@3w9!`0T-^`}c~PTh&uU1n2!
zQ{?gOXARL1mbA9o)7QJi%aHy|IB${dma5Zf?K?tjO?QEx*q;UGy)Y#%@ZV^{F5!%t
zH<abaVUdj!c~NF*?OqgwoE6{<c8Kz=;hXKfrc|zJ!U~KX3Rp8usov34D3N;jhiPcX
z=6BX{hyruoR6eUBIIB<g@HP{;29W6coG^8?rCDHt6~<cX=-7G6Qjp_r%P~AdvHJq<
z7_4uOD9b1^G+0yRJMWZrZG<p=TimAKB@49L80e89{){__gzmW4+S~J~xqqb25SG+8
zIpyq)CEjM49V<w~b%(@xQ~IhyPu|ztGjJ`pXvlF5Y?>2U<da$p)<2V+z0(RX#_*O`
z&*|*!tlL%K>aBfC;a3vg`B2NwMT-2TE!9gQVj^_%$PtrI@@oW(qebu8WLm<GAN2Ni
zJ(<wC<o2(r0))Nm+}YWTWrZAOD_?_cu+GFSVZFM7g6@Z|2J~>eGt8A2`vJciS`SZg
zfGAfHL;Cqayp@HCS8>i6H5*r2Yt)FwhMr&3V{JH0eH%Zgh42#|JzQC5tVxQ3HXvn~
zS8t1P|MM7GDenCdHne++!M-u{2<yenLTZBxIVB$4UtA3SAv-3*B6=WGqhdgK`X5<q
zj?&ln3^-2+WEw@aM7P&nC4p46bX(+4x4qi`%JvK_b2&~Mb(ZdaHPzERM@1H7dX{mB
z@o>rg<_}5W5mToo{pK?ne?!f|xfFr@idLTUy2QN9mgkvkCfN$cs(LPheoq{eiq_@C
zV5Ny<n7K9*8;*L1J2hJf+3ssG0<!4(`I^IM-0uzjQ6~Xk(fsB~h9lk(@xab<-}||u
z9g<tT)SV&<3JTiE@T#<n4-g9GD8e7^-6Z4(gyqv&_E`2Rl*y1Y>u%jFhBJjd_uE}0
zMd-d6b!iV`LniF*K(<^==L8f+DO(j8PAE(0b&ihcr9lk^MfbRSzoJ8vY2nuX4D-X8
zbZHWo*Ic}p&&~{CGp2|KhnwrhXLm)Lpa(0gy`n!3lLaJniRD)ohAK#M+~3&Au&jxW
zeSLVW+vt?VhfZ9mpq1#GcS=BP0xL|#ob1S8R_sEKq(a;Bt?0!k*G#TloL;v%i|lFl
zoqoz{!oPxcV;nCZWNC~?@#E}Ci-V)lMu)Z7#g2~rNU&uS8$+4D5QlKvWyQA(713=n
zk=!?xnvCJrzX67-!fU)eHT|%;A8ZeY+C$&D0)xF|gaAV-_RRDiDIxT*fBEG<cO`Ma
zn~oW(LN^JwThw7}Ab6O3iEEzFjVBY%)OdmwGJeoZIIO*`Gzr<hS8BQgHr(G|XVfI_
zP2eKg>=Die9-J`BYAHtX#8Zf99jff?Y?YnL+Lo$`MJ6$%&%pT>M8RbBFxL0hgb%Nx
zNk{P#u5<YYU!cR~#U2XgTe1gIJZ2_B)tD0@+)|uay5{`&g3EwHxhBW+h5clyj(V8Q
zA{0)T8z-lPp=@|*-pAO-rhx-7Q0zG6O`hGC_A&<^WahX3$PC1Un$L~j#@hY&a%rzv
zY3&WWbA`@?YzeX_y(RPOvWw9j;&~0`o9e-DEM#fikTGdgif3olgF#1izh$xCEQ5=*
z)z~J@k|mVF?er3F)4l$m9&pipcbpcNA_K!rIa?woNh&t@rSd*REjqudEE%Y#cD&=`
zs=cb=t6@(fqWggd0`?PD<H)FwXlw!M9RbG3Z0&>=HC~Yl=xlW-eL|xx>3Y|W0X_J`
zVlAsJJCk0o*G6aKyQF1jH*6kPWE2VaP{G8t<%f1$dtcC-Ue|LQv+sOH45X%ie~xG*
z-X8PU3qT~)Jr*&57qcja+KLp>zQm@ZVDd;PWL_s}|1{(EsYatUBQ&eSM#~{dvXPkP
zuv8h0QzHlip5UCOBvJDe=h6bUIa&~Dc4;&VOjh$_Bn`r>bA5gO(f@ksNyDtci8Hu@
z5yc3;QIby9wO{0eers8tQye#tQxqWW5o%>>B*bGVE67+gE};GMjq4ZUZCgH|FLOSt
zktK&29U6=;lZB+$enGH!sHLt#_V|UcJ;=b*Z%HD7AHEP&vIiP+Oa;vP^5I>XRhs@E
zw>R6f`DG<Fv8`=hj<q)9!h}f?;uWq#B6vfSWqJ?jPuG>z<1~O-1^qX~1^@PhjRFp#
z9DiQ*)M=|b=<W$`dUDP=*>Ld6tSHYcVIoWT8c*hc(J?RU`eYW<9}=nY!Khn4S0l&w
z`Tri5KYO5`ZTTgO(WKI&hx1{C>|5{Vw@P{?&)M->J4&g=I3UlzlDpKktx^K8jEImk
z{Q4O`E3&WG8lh_40zu4k4r*3!Z_11st^27Z$rg=ocn60X4(=y@-tImbF&)jaIxnU5
zYhR|JRY|C{*p~!Pj>hO59C_mqLY=9psU%+1ylSWqDkGuzk0Q&bOGGZKF)Fqb7CGYS
zes~t{%U?bV_dH!BCTf!jc=c5R_mdNW!Rpu4?_bpKT=nW}?3xQExx)|xRkd<-(6_8O
z98{`ozRlotr+ghtTK)EbC-8O6K4y3rCq44SaUnx}Kl2b@8CA?S5~E_%WU*+_YBPb}
zt#GgEdC6L3_oV$ERc2o2+p)s7gCh*)_JFb2m$cV=vPxABi1bcjyS}McvSVv+^=gM$
zBz~IoNv_*;Grb-=HkBaTBAkldE<)zcxjmls8vU){Zq5^gLH8ZtIVake0nRHSrIDtp
zsI`nhO_#u|hXjm$b6Yett4w3$BPz?qb6m4v$rpq$cz#wA@ZR-*X6e!kHemIismW<x
zH?JY3IDigDwF7yU3DC(mbi3>~ib3i5hK(O;q2S*O3f-43b-<dRZO3DkCm2+AVD~95
zDx)@iveAVthswW#oCuxg!8Tc^P^IlUhq{=_A$jK|m<&|dq~jLrkfu1T;oG0KHJGIl
z6Fog_b%Lc5Oj;1X30Va*e`hd4+yv%<wi;DxaaNj3@f3iL5;vlS&WW3v&KYso&{|E{
zJL6vk*dSYciI+)YmscUK-W+N$I*26hS0qB!H)n?~Hd_%^e-Qtp!g7P7;O9P#DBJlj
zg*e$iI?tp|gz>(F?qW318-8i-u_qk3y0{$bL<}EQfS4|Y{7e1KS<?)%N+-zJ9QM@p
zNLY$*oUbmd-~Id#;LE1B$mv=6!<p+}$|{Uv(n)lSOQOv_+8o#)tu$|%ciwv0<fOk?
zz<E_NG03UlV2u@6Z}QqHpc8v`2fZ;{;a7sNL9xqEVw_!Sh5o=|`AlCE2mz8U(GQb&
za`6vRmj)B=2`*Djef$v`NR=EtxfLYVS)U5Z-sjdC^Ert<{d8|>Id9k5WT%n5x@d*d
z{%bU7;544h^HHA0fuuNP&n>5bpM?$Uh$l`Ln$d~;*-WBROl^av!!3=`1f7k_;_8Z4
z$z*<KL}kDB-eX8H(c_TqDxH=bi3j1OM5-DkntuW0$x~0Idc`kNOL()5F2K5u3?zrk
z1Yp;<NTbQjfi;h4g+z%{aT;DA4)*^<p}^GkhUjqL<1SGHwoj17W&uKPw>up(BAVF4
zZ0T-H&BHTSRoAk*+7mYdxRgHg$ai09;DnEn5?b*vrf)!e(skX>kCN;LFD|(Ov5Mg$
z75Ppjr<3<;r(!dJbc@S)<(*21bQD_JGvxMMPF#j}?NTS@DS}B;@y)fBfOl}e*Go~Q
zy0#W<R*r>jX6BhgHRr%_Zs6>vlig=X8bJv?g>J^xreFH)Gac|CwMRpr@eGgd)TMrr
ziCE)-Kg{TV0tIRYYl#mNR{ZKgl~axbD@3Zb*4bv*PL7o%m^6RZav%q|kNyq${nxUN
zZ*!g`8JO_2>S1pb_S^}Zk03#a(A#veWAt=bbHqs8kF{v>mAUMlJ>kix+a1IW0z84%
zP$nXjY1}Tfe$91jsD#dLKUP9$z@A+>4SiX#z1t-9kb9UbprgHlMOV%-t89)!5{>vf
zQ^v+moQENjS#BJN(eKq|)I<zeFQ)lMIM$QewAQwFn~Sso0!Z?oc(wY(QqDbj7y;@d
zjBL>j1i9~+I02H7t}k9hlCvrkdUP)uv)}NP49LNo)wHDtlK2^(!*=XC@h=RK{8LB)
z*kKNGIEd%9{VOQ&^`YeZk*dW3*ctWI?~nNy{SRK)euwAA=xWFh71>K5jeChQBREi3
zF#q*>20bIKl8#tUX<4#jqtCk8N^g*@4&D#ldiKLBhsDh9w*FuBnc_jr=CxeCV=3!n
zcZj&gU!<QhEx-)ys+*dAz|CxLI{n<)kW!X_5Gjw>B%pblUe_J3TmRs^a7{&fA|&)k
zw9oO^lfK!rIs3HtDpGpSo^6dTO<X?WF_U8GZjl!o%_fbkLoL8_diYj8&doSl?JQNb
z>x~}SKdOnCX3*A%gIOY42-?h7yPD+$WSDbq;xOrve9~#)zmmbVS0hwnA!XHf0!*>X
zAQr<}Z$vo^fyKSh^dVX+2MT!{y;`ezYisKUP&V6}?$^N_QncHyd1fwCMsVxmq%TlD
zKskz>$741gBx`dUm_=@n6|Z_^m1_S{*iG?b-f<<&RqEUArJ2m*5A*12Y!<fMi(XDy
zuDt5}kG`w`DmlBRhP}~PN(<;{y@e=ryTV1?kyyrgzp<<pBCPGho=`_75UdBAooo#G
z)GoUMm7E!$O#(s79Cmnc;0pQV{~_!xpsM=5u3@<}C|p7iX%LVG0l9Q{N+T_T64E8z
z-7PKBozh)ON_UHNH;8;2fARPIo*Lr}#~py@+;h&}d#yd!Tyy$BRV|Sz^jwFQ9zz#}
z9|b*SV6ZDbt8Fyu!z+QOhl$psqc~ePudMAg?OUXF#}f~@bh|cFJg93ZZ#rm4Pw{pI
zRcItqzUPdJ-IqHSI#oWNSRTnsM`&38U<xVx2t*P3Y5dppE_DAcvwyTXEmcvlfMzpV
z!vUouOtc?&t!Y+UMp@$ik}TA9eAy?&qAJdj2VxF?_nS>Oe14V-kawts|MCyqSGz}H
zxFiI<`Po*ZGRPL6W8>n6?`i{*mNk7DQ7XFHk`ujX3nieGK$}$lz)Y1YgpBc_Q9*O`
zB)w`2D@d5T<Yza5o6dQJ$~Wv>OfMk#jWx(P_q}~!5a758#sf)Wk`aC?W>%GtfGll@
z8b@5ZyG^axD}wwF2~0W#g>&-OqbfXZKo0Y!Y<J#)!mlSzu<J?+_xZ+9<3QjGg%|p{
zFH}BnQC0}Qe#=PNa$$ix^^O<uyt(_4`d3R!g5w__3g$yly+thJDmZJ`5lRZ?F64Yl
zf`6PwjPnBBbAuq2YPWc4HXUKORB@$^R&E1>VWM@yhOQ9ZC%56BoCMna`HOrLtX1mV
z!fk^3KY7L)n9jS5ecA{w^$z)QQ#pK%KXR*p%fDj1FhECz(x0xTx3LuN)s(kqX|JDv
zK6X~4Jie#*HLWG){cH%PA|Nh3&AJ`fp?KudVMnKR$*+0FKzW3olQ9;u?Heo25@a9o
zq#rW!t#a>)%O?4n!zJ5$Wbv{L?9j((T5TksxLv>aNb7Bg#1}n~uB{83RyF_SC44n6
z>K<f*o6#BiBEduYAz=>oh`}{gdYe5^$*hf#w!goe_z!0`mlO_Ga0<F~9e;vyTn^wJ
z#S(Xs^%C$nFaXVzE^Xu&5tknm{Uw`#Px%S(E-x>8^Yh}60dm*kzP!w8zMW)NVgLud
zV&SQ8^8&6nW9x7aq25BWfu1mo@V6I5527Z3&)L_XP$*}?4WiHt=%(&B6ytsiBMk?P
z6)2VP>(BaakYl>ABxHQo9|0NYn2<L62h7@f6nt#HvM*Z$kp1lda8W{eaDWXN43P{9
zGsDP|_rG@p#7al!@0@=u`(2XSPH9IBR_hTAJ5PImULK>a?tsQF;1C*Z#Teo_x&k(i
ztNDd^FTz1}N)CaD%zAL?3N3|<-;U<Hh*sdy&zqaClamRgWTMlc#QDVpD2mc1oU*cq
zEPdP4KqSIn{vP02i`RqSgM?YKT>F+ruy)-A8@rxxc0Ju=kYTAcJ+rfXzvY&nN32A*
zDTy?Z4gLB+r?>n9<Bms^rQLnXx}bi+lcj9#BLfETU0E-Sm~Q!V@Yul*&oZ2K$jVom
z^zY{=qSZfeCoLNfk*KJtZ3wg8i<{d2y$6Kxp#Z7A6WCxy0*G!Y6bMLE53)ScE}zED
z_R^})i%#j*rc%GV4zB2}kdNYvo&O{5fwlw-$lq+j-NlOV_SKlUrP7DvQ@?dag!KQ`
z896)gX*7X7K>}(1pejar4`}}omORb=hjrNUrg&70w<}?*_9JL_t;wnP_ZGfQZ#wpj
z$?UDa*kyn3pYj3~`-u-6f>@g;8Jh9sM9Kt_+GJx%$#y}*k22%QqP}4I=m%d4JiW;z
z2c=e^#))GF_3JL{9Hlw+xh@+7NI3+9Yw9ZFh35sjH-*mi1>0kFr&Tx<pSR_u#@j{M
z{Gm3Edw6T{Q?lA=N9?J?vu!^28wh=-F?#IN?~y!SCa0gHJ@|%(X*$p`v(eNe($2Y{
zXz@CfTkhUUwa#sm{NqqXOslv&rs`cmzRuarpUkAt{R-4_{KAs~D)ie=h=w`B<=C(Z
zW89%zjUXC{O@5*8c*K4J%|)GlF_ghR4V=B<m_sqt355Z^!KgD`rdk;zSn5W%O7Hgk
zpc7P&Kdul<ht_D!$u+!P@7(cnME7qDa->_3Udn%UJ|@wrT3U@4*<M$^5J~f@#C<Zc
zkYbL+P%W5_;TWGzXsM+mJSrI3x4^p%@7JQS6oaF<3Tn}{kmfZVC-pd<N&NPMn*fWt
z-MD6K2E~>(Ur5DjOi1=-oZi-&$*w%!{o&=slaTLjFPMnJbO+yKlfhw=dDY9cqQsHS
zb=+f3z=E4OckNGPjps>e;+<euBI=mF2C4nnxdgP?AP@t^FZ2tv@7GyPizb965Ct6_
z-5#g5bNS_Un#<nsvB%YDx*eVIDoHN-xQA6>2mcaP6$s55n8pO%wfK#@pJ&06<?^0l
z)QZ!5IMdJJN$2S={k2Aaa&9t`&OS-%f)2;ck?fZY0l4+GExsD}MeH(25R8I4;W2qL
z{QRJwme;5QWmu=+GZhZ<gGbYvZoHDjZ^@|HT?av)i6$QfH3MxKPcvnp!|gZFbtH)9
zeHKyVlr8Hy3{h7AkzJ8s3+n{#uAFXywJZFCF-(`#x@6V%Cy3A{!&KT=rL`+)d{eVa
ziHjhxoMk>vF4=p7MBKWF8Hf-iP1wE)DEwP(3tT6}nVTD}>-+Iq?abaB?`BkZh}+w6
zDGYEN@D*W(&m=t&z=1&wK@Pizg`eVNOM%s}oy6^0M%&Xxvk?C#@*ZlW;4`SCb#@@Z
zR_;Us<#tViP_aThI(0a<Wj-fC{TKebKl$f)Lg4j2MtnO!(CDL8JtbcYjZQ`1Zj_&L
z%QrrY$&ys}K$g{*FEyiwo_!=S0yk<y4x1xl&&{Xw8Ly7|n2SwhMJ*>cZMMhyd%_#F
ze}rBuhVySbI&0^UsKCbg1hkPOyQfbmop~+{=CTMwrl4=Oc)fsDU>#V#tIZI#)eaPg
zNSvnpkd2(I*lmBvUT6B|$n|onJg3dZHvJ-9E#2DiD%jj*^);2St60Ogt}R&>51;R0
zEjm95J;JM}=;&W~3s6poBn$2-nQ8i=Qfb_mxUe+!TWj-V0;af(YCD(Lh4{Od4Mcpq
zI+t-y3E>IO9ckF=4k1U?dG>g}P6}{;9;m$k@UDQ}F=*%FLU>K%;>}^zhKW|D?6oT*
z1piB>W|YUOJ(ZR~zoVat_Qi2>^oT_y9u{7|Ya8yiwW!W4w`_K*G%Rua_W9QhcQ3r7
z4>o2+zxMX8emZ|8ILUA*43$6J(K=4Wm31j<KYSX}^X;Xz6NTl-Joa3*?z5};yj1dm
zl@T2?DvuGJ=#jH0$@j|p875XUuoW$C4_v?UFF&WUAXaIXJ)K4n4WAX@m9UX_6J0ub
zgtes+$3XN+3^;!w^3Y#5ixzpZJrRU}gG1=v`J*5t1WxLm$$*^ut4@=_hrNds_z0TN
zQ)0K1;rM&dZQ(_$)ax;2g|BmUs<ypd9LzJzVyQrJ+`wK<Utq}?iH85!`;j&pdALX`
z9OKM1riBmi+)BfHviy=zn5$@!L<3)GTiD!j%D^B&uhJEu=0_W!BG5XG&dO}7j;kkG
zM{DCHhyy<!xK5CCn~-MGyQm~E&s~HDVh^S5daZwx95R1)FVX1CkjPB0b!W)qSLF#%
zg%qCAgoz0EKiu_AKq0;Uyfd1kci5fN66c20|BUVVHiVSOtoA#>q%Z^geuA#E6#8Z8
zy<v0YzC}P3)&#ck&6Ykq8GL1>u%YFoH<pH_IA${^#T9Ox_We`MX@J5fmwVw)#(t%-
z+IY3(gIU$_sY#Av6l$<w-9v11dvh)Ws7(|}8KmfV4By%pG+GSwxlWMdtXZyKbz>1u
zu_>nxg=%76g}2D`5ZTIhUIz1%Qz9Y^et|)Wp=84PC<X;mUBvSeKX2L=iHhj2Y;l|T
z2V;Iuu`xzSIB=BZJuKXZuid{G@jhi`a6S}&upleABy-=p70AnPp~v+$r|>xL743E(
zKF63@6@GR6V_@ct`)Yu=h!CGdapjYanp%9doH;z+*Rm&{1+;~d>+zhv`DlO^PMz86
zz?)@v@g-Q^8;m$Z6O3pPqUay;F-X#`u!7O9XH^5xri~AELw%jqYnH!0ToL{Cwf>s_
zDyg2Az&oLv9chj<i8Y5+^tMd*lyPqnFThbitx*gSd#YM>QDJof|9rfbxx2ZuUSOex
zkDGlWTt&pG)-eOJ84Z;r*PevOeByGl@sZS(Y+M;c?)v82xt3rABKd^c#|0;cbi_<b
zYr=w$rap@{jHwpsls{Pugd5q&EZa6{yG>K1Xi=wAE6B!vBTi|(R)rlnFMT{w=oU<A
z9=erINhMQ<PC|{5AR#O^YlrsgR6?LY&AW2&KxW3MZL2A3SCPqkBZ3=7M|Dz?NZ7?{
zM^~Or|EXM>E0w10Cm^<2F&p=FqUmT3bmk+$#M)EK>EH~qM6&(xs&6GHiRl%4;znPl
z<WD=3%8WZ;^Qo0j^gR1JVo3pI^{8+>VZJQJuAA@8NFyJUa9boh?jI`3bpu4SnhZ+8
z-H7Weh^7VmE|lVblV_qXfKqQIfXHvPTFG;y{@HSTIRt<Hz=rs<pG$~alK>J<Am8#r
z`1%Npdbqv6_l$fxo|f1PZ^}U6RnX?jDgMx!bwu#`O<z2t3>p$F*UI9fr4vS4ax!7*
zwJKe}Tl{pP9ePohN2V*4I&tzU=WK=odWY9tGu37|3k;n@7jCE)1;a>6`jBB-xiswV
zufcb#L1Zk#QoL52<V!dTQL)@qhnLyc-prK|{8y45USjHi(-wipBA#GKg75lCBBJCV
zJD^4<a}hV#B7*cN%DteZ`y<7V759l$whKkB`10^Xts75)_gT`#S+7ox6xL4tEV~Q3
z|9V~^$lt|zI&9CUm<FVVkKx@#pBu^=N;<&3N{9&vDP_?^I^QeOE9r<>ar$cU>*wXw
zuf&yNx->FWwcLBGLW)J=kZL)>pp_(THo3V6GjH3b;_;oImg|{EX})ueo2B{d{CAgt
zmm`b6cPM!7HB0&L58<$32M7gpg0fq<{Z4t6w(IgY)I1AmZM>c0WoP~rq?S{HStt#9
zE=%w3*V0fNu)G~i;ksIu2F{JAvxmU)5#UB^qY47moRv8ryL*x`%kBqc!xmK92&GUO
zi@iAU55zHj?qaTKj3DjEWo*1;J&(@gY|f&A606z27Tv%8m6FYHKc0wA8rE!*J+E^J
zZ%y8?iWKa9l67NnH{Du4N|I%tT1RJ&;O5%%(J=6<KqD6tS2{!v&6oK9oR$B^X7FJL
z-7D)MS$pqgam_-sKFgzW59qJ9!SjkfrcsJc&`lu0&?CFQ&{X^^5QqGcXpwfE(yR}q
zDke#lU?2*oC=O7Gh}Cny6w?w)eilkDF1qyth-7W8-1Y2wzD4dd0Z;TLB@_kmiO!8J
zce}}!Suy1t%YTxCNWl^8#KW(Jtk+2E-33{S!FAYp(Ra5ZBu%z`K}c1-OICR9^)4i9
zBiG~Qamw8w_#Y0*P{9#8wIzo~jQs2k2m!*!k)4}%rsN+rk*x0)yVIS$`3A;Aa<rG#
zrc_YUB+tliB#R!mZit5;HJgEB)oxDUWmC4v^LH@n|9Szh8##RdL2xSzs@7E6Z7S_v
z>5V%SDcnUvdoMwgy=S!Z&DySoInr&89tp(zsf^?~x+UlV@z=it=H0tf^tlsvW~_Bg
zVKo$gP!d;2@yAv2%n+g{;H)h(Mn^`9=%7!M%6KSB^ja2h(S3t~CMsr@X~`fWTW8e$
zyPKD!h7jz9zTU#P7QVaw--p#b)Fr<<aEpC_q=m7hR!4jHx3F5&owT!B6eOfSpSU)}
z1GIyzGOa@XpNGkE_a%nySe)-8i)3ktqZx@B7<@#4z!km(p@Ac;>MQlt`F^P~XMiwy
zpC&5@$2h~n_M?&jC@Tf9glL|;D*F9pki7-HS`;mF9Ak8mU)j$6KNrTv{?gwc%V9S0
z#9(NO>i@a;fAdzo>gAU*tOR|XpxzxjJLY_eK9IxZEUB3OB9d9eKq@M#`XV78q!G|+
z#P^`50|=m@ZjtNQX5K+ug<HU@pvXl2Zk!9g!`5hUDX!`@rKK&w-JHlPWSA?@d*0CT
z?#~%92Jr$ojB4L}3toM%+}#NLUym_X2(sV3a$qe2kwA9AefaQeBCBEN_UTLr73C-1
z2l<-MUw?t>yqPS~sQ?-sU`r5^#u@I9MIXrObLEub^JQS*AsW<B@D&#Le#KBHvtgc*
zToX$v$J{<!8a~FwcRzLA>F1s{XDIM%Us)HQ1QAmGF<f9}2*z##GB!#TU8$S#&rVDA
z8dhK1?>+v?_|$QKNKz_cL{SkU)Uxw*E}v(rabJ>lrcv1Sy;fIT61k9`_4}T_UQt&>
zrJU}wBKWn3FtLAz(7$8pzkHwo_i7C^2S>^bM5JV7MhE>soDy2ePSB+T{EQf2HK5Tm
zvSy<>Dp>=-c}JnE*Szc>c;8p(`rF_@$!FH(>IgV3<}~DC%LsfS&cop$IV3&5Cj}wG
z1b$J%ZL(ed+}yS}*IHTIv$F9ZHO{AkRf<;LcPrvw#}>QSXgx-}kyd=)(kG-K&ZW44
z_sLWPF*!dJqV+W;>x^7Zj`$@`;)V61Leoz3e=I9yiryaxCtyO{#+Onnlvm0T4gSE$
zE%`-{BF$(Ok@>b*uccZ3cy%!9e|^hf45*~H3Xu!`1gI*-88qCNCe0~RkQe59Vf7xA
zNg1&WtgY(|;gy)rw<i^9QaLTt0Qpc$A$hD1imOJ=FWS2fi0Hu`%ikc~08I>(+9nz%
zAN)Ni8L{5R53A@B{EW6~{5s5cVSf$LjH(e1hF``#sUBmri2u*cOD^5R_WWYCa0Qf#
zKKFc)U$eNFEeRWeHAKCBsxDG9%Gl6^=zJM95FR_CpFdt1J!c;sJ*pCdajZ5Nf3+Kd
z7tqI;-F3OL*rZcu-f((THtvb@pLOHEyz9Sz1r=M$fRc%yYT_~LGC=ViwkPD4oTln*
z-{|-|TfJei?xoFr8%5Cz=8RD=B1UkaKFixUF@>z$+&*B|S2`JC1i<Vt^O-8z`p4^1
z;5BBbp=!_Wn##Cd%rP^6x!}Mts}`7p{V~g0y=V?LcZN>H7k}>Qt=QD66s(nf`L<>!
zrO5R-iRHBa=U_Hle-=sU_0|JMag_oQ>%7mJ#NnYJKYsDy?~Td-c2^lFM6nQ2qB@{i
zVgg5z6Gc6Jx4M16t+6o^l>P9mi>^Zy_z|X^J2zpi86#l?;cHuYJ<9C_4%yqgAJ%@S
zw1O4Tjk%1NJ?S!rr!kXm9~kCe3H&=k?}B$^YakZo>%F<U3c!n(o&?J#b+*wOMu5Yi
zLH2`l2GJ`cVpBe&URrCg9t5!)5@SmS3W|%13!iEP{qeT{8T0?1dW##*#ecEBtaQ-F
zo+dO9deb9<hXWK8IAWX|T`z6E4h&THzN~utQ3vZqnPCq`;hd~s70S8@(8X~7b@@gU
zG}deOv)(=FCl9^uD_oE-Fwg$bl;@Nh7jp3b<GT9ks0^AFqV<mZ%|qMEX#ZaRfBcY<
zgZiZS9xEeb@rWBJRn}Cyg4A-t&fUEk^c!m&gP2>H!)oC1md)eW&p;#jT;)N&bM3E#
zgA;2lzpe`VKd{kcV!XLKI~f5gE<*3^9+lzk6wMz|!D|cW?|7l&foLxEf3H*5L4qSW
z`puwZK!uC;706-QCFO%9+9X#bOKWejrG?#WLY7h}b%R~y?I@r%H@Sk!)H91Yn2_lY
zAm%Owwwd;IL+dyVR#<*-(%$E=zx^i2%uGi&G8iO5@;)oA<`%g}EX&jQ_XK{2W5uOi
zJ&$OS{^v6kz-hhN2U0I*$7;3Cf85F+tM{LgE|2>z_j;wibYwMW-Lpx)P~rycyH-w}
zDe;&!$^^OXHps#rb3_BVegY0tl};NJl$NWl!oX+!?C)mA=sG?taIN8*@jF8@C0Z6q
zb^3pUVXzE@kvW4J4ZTQ@2#lvr7NP(7e*YPv4|Pk}k`uua{o#A!e}4Zzz3S-TyXWfP
zL8gtiim1fs0aQXOz-Aszbt(7))T6!vQ384fbOcDfPLUCm`Zs>Gq)+~>P)dOnBajg7
zIT6FWvB2Fb@XwKn^7l|9QSH_IzaNvNJ49;R6Xteh*A|(U#&o(pIVtaNQKNNqbcC>(
z_(=!z(+d$_7_bJi=1v{S6hq(5xtO(Vk+Qb7wo^6xwOh0JIfqN=ZuoqaT*~uLU7N8`
zm+7eTAK@;H8}FLd^7!Z1e=i_bR#=|!w@Dmk7$x$RHUHbH^4IE_fdb~iFi|QnjcHSy
z_k^;>&l=cI_Bh=APsL<}BqR11lCZvcYiVhj?*o38eOs>lWhDcv?SCX7t<6y2V(|gM
zmWFz2ZJ+<|Ybw$sMC*EL(5uwGxO;w*N|0ll^*(qul4yvB*Urgq^xTRzYCK|0Rm~3G
zAFJ#=l+Z`4!axL+p76POAnI$N!pPdEDfxd-t*`Q)kj~cv!aJmQXPZL#etGmgm$A~E
zD&@%^V_VVzA`{OL1=7%-hh)?)x6=au_sb2GXeF?O>-%$f{5ww0QU#5TbBZ)8jThBB
zIqv4&|9%KYV`ad<iYA6S1pH^P{e89!3#`8%@h6L2-1FZ{Uv!kGNRwF@xk^%KQ(=`t
z_=$h?$fmgtO_@!wFB+%%%NA<<i65T}t4ZZgV;nS}@~W62j=#+sEF4=<4=S{#IUICX
z6>d;dHKa2CD;JOKM+oP?db>GWQwoZNUqPoBQ=2}^^4{6jxC|3$pVkCKm_~q1qShF8
z`2+|8ZN;^2Ld#gir%yorp<)Nr2=jS7&ZghUY)=$ZadN8v0v?@D?Da6a2D5W=q(LvO
z{pV0H+4=xQW^I6TvB)zMSl4<lmvvy^lupuv#<3z2^}H|tr1g>z2re0Qn~*;KzYp}^
z4_i!LUt?${=TleHqFUjeL`FrC1GSK7`BZMH5In{wR8(R|$H%7~j{{wE<x?NmaNezl
zDb8E@)(Nxtya%oDO4{1y%qw=-I0r-%dc4H`!G)R%*3aM4XLgzxT@q&7ZS&IVu&Mr}
zr>3^v?`!x`;NhE<Y8AnRvb$g<h!|L1w`&85ljS0c9$AA}*X+@h{AlX@FfSY;>%*fi
zZPn*`$b3^uqF&+eru*H*B{=J}MY*(R`aqKQ=l2vh-Sy@YvehvfQC<^OT{->bx2Wbz
zAy}$NJxE~MNXab$#k%;j-C6az2tY=yLGbZGdJye?bG2#j3R-KG6cr;6uI?-qK_VLi
z8a=)QKcxQ-UX*+-BRvTbf<@D*+U8tc<=)N%&N;HXeNs&QDrlgOzY7LHI`pZaYz1W;
zScI4x54`#LbIdNTA2JHwof&b(*oCYE$v5!#F70kkir+o{)fWco|33Bq-v<T=Fsh1^
zAazp_n5sq_7wzzWaO#Q71`n*IS^%|vCazN#c@(H86gh+iGDUDiAPeJ?byLK=Hj<8w
zpV)Vh;=8IxBeoqgqawLaJcN55l`C_YAU%bDqMFy^?M4&%e96LydozAS&h|-}X>W5W
zi|K>#SlO?zV<YRDEy6m$2^p`gBvGo@d9py7hP&A4NU@#A^+pYSP1`A(>74me)_XQV
zEiXn=h=2$`hJiO#LZwimtr%VGsbCQv&vUSWmDGg*<M(fqzN)+ACD*3hOOZW!E(lAZ
zChh$1dSTRFqNsvp_pS4SfP8IVz5O=WxM31Jdm`)#R7<kv8O*NvPYVi5q5*cP4P+Rp
z?wXNA)44?cUW{<bj)?w@m4AMgd<iLjSse`+HcBb-aWB;oiAdE-v}pmrImW~$DY2&b
zstN@3uK;pkbeyx6@N>&oFHK|WfM1?(a8%c@Ks#WG3di;rw~1hr_jt)enxq?Fa;@t<
zizlu5jd?Fer)&Pl>s|j169LhRK>=B`Ter0QUh4<gEGzsH;-8Z6$?BD;t{ri@qNdsB
z45=s{6#WwSu9NACN}}4sYw8+5(rCKB7ZrYjw32#h-nqbK^HNHBNXDK35bYk4#h2Wu
zN#_Vqm556OdsuXxIAIa;39_}xRf^3KU}@Rb@~)VVy-0{d3|1}J;K1r*#pzvC{1}RO
z7Z9w<a0IWE68cmPIQu!s@LIWexHH8BhWl_*Z-H*nM`e~$-KKga^*zza9_OzTOI`SS
zW3-7;Ny#RkWA-nIWcj?63xYt?sQlt&(tEbgJf!UeteVfvfaas%fg=YLMbYyu2Hx*&
znIHrY4h_nP`#+*BlFuO>0hl$QXN819>>0_=4;xeEpLmbHP_7(0RrMJ-I5_ylzL!)5
z4umE!c@_){$e=%QZ&yIGFzwHuHdNAD=DWC!7{t@XPh7q?KsZI!W0+pXKAb6^E9eON
zP7^t@D=g#sXzsIQaL=u-a2F2+_nsPUE!&W@T!@^qiw@I5x~?Kx!%+(+R@}LfIB*a4
zcyFdRp}6`EU7(?;oqPGw2iy6fdfqap&{)^o8Z>*2-%;8=O0dzcRx&$u?2FZd29QOa
z&z20O3+S=1fTa*j!>@P4(9to{#i12t$^9YRx=5o6KK(&7F@*Vx8?Y}eFDUyblZp<%
zhZrd3C^<zAz^wvkE1};%Q~s|pDrpR%<&v{IPqB#bg-GLlN}18lCs2xR&`n6Uy|q;;
zGc4>UzAZ;^)jb6Is`-nB2<l8i$x5nfIoh*|G-~W7N(#@O9ViYIDh<U;Ne3e*D_UkH
zY;6rBbH-*;lw!YrC^6R8Yf2VI$Qd7R<X68?Th~`Ko<3aZ)34j~;@Mcew2!pii^s7l
z5i${}rfU`n%B}_X1^h8LoN6s<cpB;$URFuo28Mf!p7*Jj$&?~neq)m)!}Br>=jx^t
z4>oGJfTG7U>y@M$N9Lee1I5EH9>0!B`QH8N`-0NoORkE$x<s>N@z9~EBh6{Ok%XL|
z-9=rk>_u>MoqENfn;w3)U6WwrBA+qd<i^zUSLmCLv)*?W#j%&@bVajKY6>Z*80v$z
z+u8kE!*2P)@LFCbT0aJ26x(uqyX-e`L=!O-l1ytfd!=KohT^%ueGY=>-juX_I=F-9
zEFj##+5O#!`@6;bkgW9A8cbCv=_`YLX{sINaNqnMZRV{$RbGkvv8_p##SY_X2d{%0
ztR=cELhb^&8wW;$H0HdN@Rn1;!-Ca#6qoVt52H$4T+d?_)3_4~oJv%hVq9M4x!H4=
z=bl#=!8n)4VM?|t9$MQcKZM2?Zzz7s)^Zm8&XcYq1cAmeVtx`nvu@E|%^73UGu_0^
zg{B7J-)<_g@1{d~#!W*b5zc!gxr-9MPKCVU%*nx_$_<JyHFc)r1!&B-JG*ZMwf)#j
z^dA?t3?y;He111;x_$(3F-a+@uM2AV3F-mN+7oS<=jb4t!b(?|uiO{WceApxoUgC`
zzP7eGR<A0T9AY>F#HiYuE$1I!J9=)}VYzi&zPXCq;9hbHSiJ%H?_FAs^Nt#zGh@tw
zUS>v2C#a=X3Su?0#iKZ@b8w$T1tfrpQ{3}jw{QFB+pE~ybA_gQilh{8Qc9P6@fV)I
zQ<`*-Lzuh9f?*uC!|LPX<JD?!!^U&!(+RFGgIh>B-Zyt`(e(Wl)3%<2C1d;SaBbng
zLMmg=yr}sU#xq57r9%><M>T#T@?`1XP{??qeEir_E9s2ErDu~=73o={A&quK#Yiuq
zy%lg8dKK2Gr}QLU;1_Ze4QP4`!^Xw?3dl4?>qGnvEeslE;{KTXxg`A;DpwjUOpA4u
zf;Wo9N|>lNR2<`!K1ip*dFQJUTCYK)XhnUkpaASyV)$Eay@_{2F(0LUYn=>Bh{g+o
z*n6e%^~j$3@wdD#u&*2U2}wCoIi!nPZCJd?oPEQ2w1v#+6ha!c;m&yd^Ffoq#m6)u
zNIA-q7Y3xg!wGZ$x%pEC+8H43jaJy!A?eE{K(C_TCM4Dx_1NKoP_D@PLp|C17FU|V
zGz&$)$Y|kev2Q=*Id<?es`-2=T=Myt1ADbo<e2zc?<$+=_~y!sO1HmxMa$ZlBcXN1
zWF`4B<#oz0NBT8JI^-J0$d#`(GH=hRLFA?<@F5*#3N>D{Iyk0NuWt<w%6a<Z(V#m4
z%`H`CaUL!RIhMhe6Edu`8Q;bmbF<Q&T56L{L8l+wC(A*?mFu<Lz@x2x!Kp;s%SkLb
zK4O0<J`OU7Opo;8<heM5!X~eh()E1K^fbP&Ls4Wjfr8X#{r*mu^J54n4ovN^o%8%%
z+)FNoObKUWQRxKqCvFFN6iHd>M~V7^xE_}hs0^f~xw}2Mn{lHGm&tgcuM9S~O0(at
zFs@kTN)4X2Y+NmnrsFRTm2R2*d}A45n9Ta!#F}H*g0Tmo)@A%Mb3rul=_K10H`(q5
z57oo`%+xi3$%M54v8ur;q-a)IE}nv?Kb^7=9AjHpGSCZ;(`V#gw#-shZ;MgTrB*+b
zv~9Bf9P4UdgI(N>XWo!xpKuaGIx(23#>26ke%tKi;i^`_Op-e^+j>QsbrE8=s|u65
z%Qui8z@hjq6-)tra{6jE-DYonROU{>K%)qO+smPsQ-0icc#vCE+8w=kZA6B7Tv+^C
z7$q{zd5c!Fp8e;Ik>2N;O^{@w?mgI^EG2#MP`I>a!C59pA>AS_0_?afNfD<4%u0(d
z&Zl?aw*b!!{|M+$87STLZ`uodC=gSP;5$p4vmN4l$(x72cWDWr6mRyiVcKHyU}w<s
zW6xMy>oo*MT9qvq8jXC)Q_B_|_jgBNoXXEnV${U%Yc}CE8Qcud4IFJ9_?4Z2laK!l
zCA+`va}Vn}w0U~9pKU0XzO+#Ze>w5yVm0Ed3-W?!ViJf*_chI{c;;;bEO!JVq3mzX
zo(=-d_A#=zI!-O}6<|UaUwbI)#<A-1x&o5?DSDu>Ub!w&>Ggh#9+^!D#+<;ihDh1l
zPOCilay<)+5{HZc`qy@??@882uq24EhB0Q7xomS90VIQpj#O@OeHp+$wV`~%g?T;<
zq_Os`yFS56LB%3x$k4^(u%Y+vXJ|b$y15l5D02Ia$Af6;$c@@T$Llxe9n8W8#7_Ab
z>j8XZu6Gj9_E>{a$rkleEs}4-vGA5)iQM`g%YOJX>g3}${Y!}pKml~5!ErzE_+byK
zTics?Ch^XFg&%3$^?Fl_K;T^LB;;@0Fn}6v{bSwioY{Y~S%tA6csIW~T&Ks<Z_07@
zF{0ymz0f;7(Opxl!<7GFTB%f1W;aqLrA3*GynXqj>>O>r_hl;Kq~__T#k_zoRue_p
z(dl|wB>m=-uLL7{7&WEYr}AEex5AZ6L^!+*eOnqp3JQe!2{saQsu~nJFF79uVv@tO
zGkpVu)^cEu1Jowb#17%J#hqdNR50J5n4Vqie#=4nvY9tVMkebaAjvgR_Yyrv$28p$
zDAVHUMa7;HxrfP)<s>;$W4Xwe9ra0Bo~w)QVlAOe@(XV3cpEP}+je_LbBsK<R5;(+
zR3I`_&V!z>av64`M1?+*4QBZ7G||sw5!5^=z2aghwXxypJ52ghPG{ft)NMRZRM>Qi
zSJgJfN2g<@Z2vH=Qb+F&1-?jJzHc<~!?6^SW2lZ(94Qce-zE%8qL1<J_6})QRR%N+
zkbNaORP+06bs@vEM@>c4FrYi1<iN34bdAf%FN!Gf(oKr+KtgKUrBJn{9tVRev5?)I
zf_v=Pj!SPu!L1RvpZ2AMac|)ELbb(_5wfV2TyzYm=|h*fgA7C4Z0J=oZ+qJf_E*yk
zx0KqYtpc=+{H$VcL-)$$ww*uQQXDr%&<A3^ps7ArjSpmTp5LSq$c(2K@@Y~iz#a+c
zXd89w3|f;r>uzo|o}&$*(FrkAzSbtD<rhV-l_YWZejWB0|G3g?NOs~qDM&doO@gr%
zjl&fwu-6tst?HFe6L0S#UTd4=l7h!ojDsuNWaJd`TqV2tlp^}>QkF5MGV_Gn0AtM@
z#iWj-4&ovCjEE$n!6O7aRn$3Kp$lBb&UWslG)GWQK;KGy#N$vzMcv-V4HVTsXlC^^
zIiHRQv-N*pUq@F`Pj0PdhcF}ZfsTZSooX5rjqhz4HQH~o`K(IcKxSLrXT)RyO%1A)
zYCFiqnjo@q+KHnOD5Ya&sZQJsT=6Eh;X^hIk;>PAB3Ab0OpW0pzHQ@fAGv1-|6|=V
zquO&PpcYq6pV>6mEDs}Dsh#Qy$P0M~w6@-}ihVk>?@AW;NOQk3F#+83&gNH5pdJ+S
zCf)6`aJn_o?P;mU=1tIodJ*RJF<3LuMN`f^w^zZox@3}Y9^;rM#mc+!Y{u-2+9mZl
z@1YBPXG{6uC8!Z^4H*^1=~#C?ylQN>4#U`?2|qQ-O~q?^TY3z`Pj@}~nwXB9vI@Of
zNqG)5^kS0_7vewZp47dZAG$x`*Gvl7Mi0aJuHZmtzS!;ulzwYLt$zxRos^31Yxt!|
z|2?o&AgA9~R9?S(hN!Gcx2ErR>U!G-gaS8h3U~b02H~3qYX!3n2P4yanwjNKDa(SG
zTkiANe7JO6_>f7H{{DyZsa1Qv4%Hy{wiBpq<=_z~IUAdAwS9z|ltQJIpN4p#H{c_j
zXFa@j>MnJj4pDX=dnL;E=@(D77LSxNq$lWDEwGP3p4j)yiI8-V*s5BvNGEy9-5yra
z^yo#R#g|)2vfx%A<xxNiUGeJEah%U4COhErbV1iPSy~!V%Wf2IUA8*gvGHQ=UAi!U
zY&(HgvJ-fivcE0f?vgv}yBT)ners$T6bn_4bm6W2Y;5zomn8Jl_+c*wJxitZ$2qx)
zcNXgRv@U|2xF1Z8^QMXiTAtBAOv<w3S5IgwFSE1F%6o{eEmyy>Mm3rqy)<Ll6*Vk6
zBJVD#{b0tVT(A4!fV+IJRr=KN<xN;X;NU20<NTPR1vHS-P)s`E*sk28O~N!iRx1*F
zN+>qb;e_KQnZI2}+q)3e>#|7fxYTJzs^dmX4xIjL_Zvm&$-I5yagPM-*pG~&f%!cP
z8KTZwoh@(K3smWa8$2pgC@YyiWKDXhe4)B^QBg>^JSsk|pH0cqChJ(UvhqczoTKcD
zqfYzmBO0=#vfE#&8`D0FPe;>1r8e7IPuiXzrz&N-sMVRT^!U15FL~^Z>yTrZDwiom
z*@<mx+Vp&50-nID^8H-=t`-T|muf1kspOrJC`9-$(smBE@3X~y*q1{oI95DkJ;hGR
zwU`1gMv(dQBG5(it@7?$e6TFWSoh^xSfR(=pX00|%o3?1@x~N&lO)xRi5j_ywt8${
zt>hZ-DrwkkSZ6b^LrW`>O25|;J}ErSZXb@Pa1&E)k_A7clBq=*JGP>`=0Gr0Ev-$b
z^PGrCCz$g$C1eW%r>!L%2<oS>wmwFn7CS6Vg%VH3RDby+dF^8W$;@^MMKQCkvrwz%
z4uAy5CX=D2K=DZhiJqLOMBx?)DJf*`AFmV>t(4x$=V4QV@UGB&bEc(p^F2mkBHUPm
zMl=@WDuq<MuHU01s?bS&Mepz~P!tnm?)XXi>i~J4WU>n?+AVE@en<t;wi*BvTwpul
z{nA?$Ry>4YD2JC^k>@=OIDB^&zw6cBIC}eOpeS4|d7o|RPX1DX2j-0<8UiJIbz>#e
zc-T!?{7W@qpDIE7)nPIyK!lR;y(Cp9D!gOahEy!E1jW`*EjD%eVDi76*P_%p0Yui^
z>j;;JJIU7YzJb_Gj^z_UZV0!fEx%@LN_`KY7``Zh-|t+PQ~C5QZ_1ei4lv*~R*6KC
zbQ*o_0cF<A+7JMmCzto43WDxDPma5J_v*SMNJ~eJM9PrFVeuD486-rwa;<BlC^x{;
zJZGNSac_?H=K6ecMLH0L{Hl{x?!=XI+rJDCuBIbjId^Lj`VHST+^SiG-4V1=n<a>i
zB9+8hjfpO${MyV-KPmV6g42WO{Q?1@oyTD(vd(sW>$2%4VCep!*y>nB)z}m%%<h$*
zf?B!=$|YHz7{TB=5WYtl#6jRU++ZVO4im|f>bajFT6VKadYd;S089lcLt3kXw%m=s
z{Q^AzG0(RwA49^^f4KUg;8DCN6TKz3c|PcGmDc%d#c9<xV2Cz_2`eZ^ax(7nH&h=f
zm`W`O_bQdYagOW1<TqY3)RECR?%!5a!UaEiVwM)u`+U4lk7z62<j*~CBQ2gI-xW%l
z3GZIopZt@waJy|JlEZEAW=N_ny!e^p&z@e|;X={iO{Ib@5yilFu>}>D&3Yz5m;+Zb
zH~gsaNKYE9+01xm9q^?()ZU#qm(7obGED1eKb;O6S&KE>$Fp3v_;6@RC9AmmxY~k#
zAro>*HI(~VovbI-CEHxLS@7ud&m0e4J%E|Z^BCQ}AWHolLdQzlq&F_b>3_-s_{p%E
zz1mfbn~aB;4UrQ}YNidKpU>>$D|P~26*jm8l$7nWR^Ew_fNZCY0A$h7Cp6F#nJDSq
zB(5X9`cH%6#Hw`PbE}_X<vYo64k|$^N?)NN50llt4=1ByMR+gyfQV5Llx%B<$RQzp
zw|Lu-Sr01Zy()xv6=v1AVf=bFC8<WJRgD6?w9W7LH5en$I187fAi2T`*rUtWWNDFu
zJja@h_u0aHX7NA`TfjKnRSTcIsZ7T+abh3C+UeOz#RhJh<g`}3L&58aE8%m-n=FAK
zkHcKk*|kMRV;<Bn)rO7OFG~bE{`T30xMS48-MYn{K5Kh%FpLeYZW9m8a~V_^x&X0J
z!S?F+n@z;N>fuq{I_i8l;ckHVo?2rRC1&_~6Ba!;&SX$zFnVuBmH2{5(Es3>8mSy%
z=%>2b1gdAdsU;(~H`x5lFBV%47U?1?hp>g}wMa?H1!cEA-Z)iDD{5U#Q(<k!$#^8^
zpS?@X5^B}(SvJqpj<Urs#O>qBb{Z*G!h1SwhAa_iw0)zC${UB1xm^Z_r6u;#4CX{Z
z_KiU;KVJ@E{E}4TxqO8Or!G-1aqRC>95Qfy>sp=phGG_3fS1XY^}M@!)gXX4{u>hp
z!L!bS^Tpd=>XH7B%0V~f<+{LazMqBL)yc3C^bj~DZ*2Dd>ab@;kPZZ_inqDk%A_U<
z<T>80=nx87ksV*bdhIOL=9OUj6Mn%?6t6pro>D}yJovUXKxSkmU~7ek2nNPO?<!TS
zhTU%`c~FLyd{GQ=5#-7tCV}L-q2ZvXUkHEsC79l%_<?j-&}0MB<!+=GxVjA9$92mZ
z#LXH3Sd~Jd$S?AOK+#1uvi)%;J<%K3cGoQaC=!Jf<!hg(=$VW$Nlu3=T@VA(IjrB3
zStG_BQ7me_=X194AfqLp5UpQ-F3o^6OsLIBo>^$R1QUuhh4egH;e_RF`<DHq1z<!`
zrrU52tEdgGhtS0N@V#J>M!B#R31v0Qm7(t2G0>*~O5Ecy7jpO36Hrl*tQRryC2RS`
zd1#WHT?j?qnjyI4g<OlKgg~#z$sUU(y}^MdCAD&$0Jt+z(@onth5V?qynFp#dV(lq
zMeaCy7VO4OnhHz;Z1G-+Sc#Cm<J@D8`oVowgJ~7U)WJ{w)4hdcwPl0*X(4DWSf}^R
zLP;rwa$C$)Ne!*K`aHs4C*NA$zwcXm(fFYS{l_`UF{I!wq4}%wtB(m#qW5(FO%<=z
z{mHki_57EwS5!91lx-e|wCD%m7U{i4g(8R63&qRbDk14Q6yhBVg+dILV-s#OUHp)7
zFARVvsldcB^zl_lNY*-(%Fbj&7_#t+miEgeg?PdhtH39B%EJWQuj>&3It=|+4Jquh
zsHig8n%9F^v*733r?}>e6x;ay@%$YUn`cvr3h#1n#U?i$2onbJ6-<-t9$VEfkcdXm
zZW7q6P;vGp)s1GG&pw`4$O<%$6qLhhg&&)nn?qR_zJ7ji@EZ7U{;rBmj5<M0A(#mV
zo`~r*ymM_LV!WMq;JE!m-nahO2qZ+T(aD0FmI8Eb6WP5wdvJ^!qfLI4uSQFp1*NrW
z@sVOfGS1i4=>vC{?j<^(*mKX9u;pg^Is}k58t~Dk4t{o6Xn7ib??up3XmVQqeRB1D
zn^@Z#6m-;|teqj*EjPG(rCWuR#UHV~c3B3BttIP*+v1qG$s~`NNj?!DlcnJ*<S0q{
zlcF>vpHGaFmmM2;e4?l_3v+tI%V<I~_o>T$5NVgH%2rIJI4RXW>$R3Q$L-H^%FX~|
z8E7#gu4UGZJqK4Wu9jh-NT0NW)Rr};*0whcgURhtWccGot5A4)YR%mOj*p_A&2?)O
zzI3JVyX#F_A3u0pI>~r$m`*LcEK%kwJifO)&g9!yWMmAHkGC2ql6un?UAoU!SPH{H
z>}+xMb`Z8Ru2Gz1mfx;iHO1oZS>k`0)mbwPmphm#RU<WVxx5{>v6gbj+V%1YY6YY~
zhQp7WoCun=;l9emDRbDU4Kezla7oARMOIqiwM)5_8NgmQ?1ftkg%jSvV~q8UA=X}<
zp$m`*?6)dKMHWFQsU}w}Vu*xH24c$b%@qolAq21^5M93tI$MH~$he}gW?-oZ*BXJx
zaPz3cWH*d+;hPw!eU%{u0v7f)5)L%VD`s+=Lu|$i%H$j5&nL%tL2&r7iLcW`!{6mG
z3YH;a3WS_23<I`JU_dmZCgF*Ke6ivA2y?S=m<Gl^1JC4o2<ahhmzxvtBK8eDTlI9%
zpc&)~JeFOmG(78wRW-VAZCZ5WsXvGUwU$rz9L?k^B`c~7!IUGO!)ZUnEXgca;z@QM
zHgs`5)+hq3EGjF{&Nn0_`Q?wqN-OD(ua7=>U1tXYCG$>f(xhjhhg<>Q9-R+D<$sek
z?l?Fv?uwPt!KYxRMkfi5`U_odehS+PBM!iIA+B&skV(5`k?3|WbPxUA{_}4cUXT$R
z<tjK%Q@MQ1Y*xkuU4;9AEdWT=B9>%P$Um0mDF&g+JmG6d!y`*VgPu&29+_)3Xooyt
zBV>=R(3cE8c9b@0E$szF#^{1|$90QgCL}*Uzusb&M)#lkm^2+5yJKb(N~Os1e)MnT
zVg_k2u&R0@zK<@vSM#4ciL_8}d2hBBIW;}AaAr?Wm1{yjU13vRwK1jhd3P?uBjfqa
zk3<C1;Co650O~NjO6lZYt}nCSR=fH3aL?bV);B=g>A*Ku-6_)80|o5;zv1mYC~Z1>
zOl_}E0#8H-q~2j}7!jbU5+Vx!^lML>oPf+S&3YhZLtK_agJR?go<$(_(uDt56V&oy
znED{M(Hdro8+r#sbSzB1V`rLD@V<o}-A8X5gG^24?rbgmsW-)&&tfXnvqu?^1G>B>
zggIWQ)z-P<t&}{1i+a^4cx4b%F*#qAYy+oauR|MeNSW9fqO=Bk3(5C9uemooUeqw1
zV)H39eS|45UdR*0fLuvRg6+I8cKXqr^u2YiEnX_#9m{NJH&PY+kH|Nj$=S^^s#mL9
z;+uGDpR<~C3klm&=?!btz4>6zOappjZQ6pVHk1kPPp6Q7swovKyr!)#?<n?#Kb;Mv
z<dAr98vFFQgc5g}$+ox6<{XaXa3~6GjR<Od!_kgrkwn`&^xevoJF2voPyD?R^d7V<
z6Tf@Vb|P5au3QSd5W&a@1zEq#`Ml#A0PSNzx2SGzRkdDa_l&L`fi_YUKc3enV9AN8
z4<Cy=J(N*Fw8jz*&a(yerj4tO0IA%^wtfXr`z23&dNLw*tf6@f?;;HY`~#sW0?Tw+
ztw0(%l>lZXw2o;^BJ%IvfyclNXuJnug@5(H_;Yzpxl~lBv%@)`3(wq;NNeyl-gQ$@
zlYAro<qk!&s9)*Xsj!s^(caElqCe=d<%)UE<;?XX%Ay9CoYe12N<GMxZwMS=D)C{#
zGI4!z29VPY{AQ~Xk)QbVyLLspUGyE6gysCqFx@GMIn0^!4tHHf4d`_}@oc+{36v~z
z2v)NsUtd#(?sE7{tLPpL!Y?&XRMAL|hi7huTW`9V(mKn79zr{SahXS0b)eB*W%rIJ
zMC;`v?iq+45E~ndW=W)4?|5AcofVmS7k+LXXD$zUQkITVJ7#$%f0~>(szZHR!Q%Vf
z&&5$PXp&ZM@cv@tey*Ht_21|E_l%5{-CJw3__E_G9UHx%dpx#QW$U}2vZ|@<!@ry9
zz7-(#z`NXmAI=k-HWFE!d-mOkbi}s)KY7)%MU>9JK?x})_B3xZO>nC2jbvR{S@xt+
zzi(&56s@{FitC}6*^Ha{C9-%(mZ98(0XWxqv)J;{t<5;CK03Tly5PwXNS@t^W?<2G
z!+!$YSz&?u9qc0`)1ygpKtn}9qunQey0WjU<t&bj@i7t00olYa!2#WX(XTQYMf#uQ
zQ$tSbR;+?@?ez}r8lI+<sN2s1tge@K-$8ZV#Ej+}(w)lJ=ie${yRx~aSNNTdHuUt2
zj=kk-FGX-R)EiOO;+bvf;4+`WWzKW4BsM(JRi=WeK<fCG)x1C78)4b+X?-qBHg401
zGJRF#7j-C_p6pRRV#=fRtZUvlGV82v#->#kK$EF2AMGWM2f6X(d|cVJ=G<0Xj2T|8
z2r}~N{rF6`b-6sJW7It`i`dc7SHETixCR)-xO3IAr95Uab_-+-`ONyjRu;wph*Gdb
zlqI7CjTfrckF{?jOC|!L<Y%DN;DdG2*2eha{9Wzs2hZy{fX^8j8-`myc+mD8)bNVe
zB#-Z}i)phZx7u4Vtn*hAt@e(H80wK3i=+d4cT-Daxmg{gVqp%0#a!ULjPBo?3E=IC
zm93+$8$<*(r?b#)kE|>X6O*W<M;M8<0g_KbA3ZpK47KP&CxSm-!4(bMXy7BW2zz)~
z+f_hVSXA)_s8uz>K$^O?Q#m9*wTrXe#z&w;EOLRiOstK~O7?&iA<?S4^OB^mnqOBy
z_Py%t)DV4EdpJI{dxh#b!k||ZD)jI}1-j7r89}G>a=l&*MD)5@^_0zU#CUZ|BHd?$
z{x`G%Ld}_<;0PM@(D<IYXB2hM6po?9@|0%?mFtV4R36SBvlvJy&2}HZ_aG88q3FYh
zqf2Nnb=FI@irw|jbg?o;TU-0K`mxQd6hCQfYP+M{@I#Vo8nR~VinEPkGPGe?iX~h%
zf{sUf^v8g>)7;TT@}KHtE4dgMRc_FN9*wUv9I39CI<*3U8rqLg=LglF$WzeBAJ3I-
zyz!bP+mnK)8z`TRDImsTO;3u-9-*LDXS7du?yYtVsj;f*zc}BnpC1e}>(Wvod+?I@
zqc&!f%~+6#(eV)?_x!V&AC@6@he<b=4fT5KbGIqDJ5zMFJsw3ht5PzPyHQ&NZcM71
z8RdLqLZauKV85J-&0X`2Cf`)=8P1O7r-^s=9_5SWS6b0EI=4vB?O!^MzPH5K2v=vS
z!p}|>q2;cZM`$Y|v8!;bBkutiDsg2ynyUc2VT>nVvhiNDJHxveK*4-{z=P|KKQkHN
z<}yo?uulW&U1KRT@FyXw=zVmRvJja&(24>_fwo+b;C|GBWs<1Oon~auQ1;53BQ+G~
zM@?T~bAHRYwa87$OS7nh&-9xu#m80&_w&ZOA6ea3j$OiC=6{u;qVD-t>jv&aRR{*T
z>x1ce)^~iKA_j6uzDfB_l!)|33%p(~Z$6X?=CYKQHAP}SeX6b?HJ}t86lL<5a;pIB
zAC1kIr9}CDljB>-MfCv}4kFQY2MPgW+Tv2S@@prHAlzcfp%88;-5z78b#Oj1O^XJc
zqX0_iO3={3+$f1t&>Ksy^~!6?gZ8MP-m6fz_EWBugPj+|%~m$PRy&}WG`d-^D<5U0
z(eo^;pn1Rfn$8X5-M)lQQa2asa0;K59!8Hsin5h(=tC&#O7jjVF-^+H>zkCQFF)r3
zjDG@Nr?NTs>)p6u4#Q#>y<TiSM>)Oo&x|fjPU%7^leH0DN4=d5F0*PyYarcXW!Slf
znh`Sm-9+ZK1%295P$<8BGnFG1L+y>rGwj7Is_}G{5kUiQwP#HOZ~da203z<Pg#5bE
z#0#CI(E!VB`2qSSWq95NJemcBERc7%YV<X*=zaG7==HTJ7pPlCK0!bWPN|T65Yap#
zILK2i`S`nUmbK4?r4^M_&Gdsm;2tk-`3$Kc<?4-Zn@5t;@`i`_JCWX}Aq;RUo-a7R
zRBY-=C&c*Ek{jf+n=NXFAT6srQd|-6kSdoS)-H1kDbi!ny1GxA-P>-$=hh`Qa+|qr
z*AOPN9zw$*$Nd1N1IqT*dCXLNBJz#jjWyXE>!}1Ae<Ycm$T(Ql2@1a5P~YC<`tI74
z3M%|H3VppV216~r<}FHE?jQHuW^9w@{fd95_34^``C;7N{oBH0gist*2VCaZZggI#
zj~O~i+KMA3?~->P62!<!(mz1p4A*#gyFwtatAhd!`U#b4h&N@bH+J;nQ+#3iHS5ql
zL^ZjnZ{ZJn*NR1Cb2%w>MU-Rwr$^uW>MHB+RwdHL8k*;Hhb;9zVos6kP559}<1pDF
zJxhl{ZC7u=R+-){l*PUPg2z+K;tyeuc-~!`RljI~<9XH&aX;<KS9;Wgr=c%KwJ4y=
zBxwHLuCqSoefNy|xKx%Q(>#pc*iolAB1BU+RTw7m_>g==7(c8**IRPnoeW>9Lwi&7
z%=QslA@e-9!W^CIX9o+FNsM0qI$`35LPI}4hCB9<mq_Bhx&2TPPFdw8Png|?qRbbL
zSDh#yo*DJ(>Y#XBuHlDJXybsw#|tz5VbrX#rqc;6%7S#j%sc|<Z>L;&Xm4$EIKESO
zFuoJCuCDH|po<}3S+>Rf=A@!#(Ot_nP_sO`9n^>q`+*)+F7liJ5pYa;X7gRr1dvM>
zu$83JLG|dFaet!pX9n-<aexMxa*Bnn){%WS2h~oR>C|<rl&}k^o7-K@!7cGdcN2in
z!B!<z@WOn&5<Q;BkZu83i@_t`_bDEZ^Y#gI9=A7V#vJ@%Rei9WKwzfYJCeP|v~m_E
zM5s@pyJcTVWVi!rAa5~PntvVzPs*NMT^l;<@w0v7TH@_0_e905)Yyrj?6m*g6!=l5
z^+SIH#zTIFTx+2lK<w@Xvav>>5_MHfd_rj1Ac*^j*hy<X5Yw96^Mw1Y8I!a1i+i&h
z8eUhmim4oC@veZ##a)fLki}_<Aee!&ObOx;Ssm)mOtCwPYSf2jkA+^Dy{0$&f5R2O
zL5t`h!EfpezkX`3VLWm`pi{=&IaZ6$_40$)myf}_YR16`Y|a!$b&}}>TNuYrx@@Nz
z!t<n*a!0+IqggPI+?}~v`J?BS&@9XD8@ib`j>7{Ix6>ofQc;`9lE{>t;@5q>T_c%>
zj_9Z)k>)chd;YcWc5S2v`td4>i%56J#qCM^&kkBM08>YL%1Qq!q~_{Ut=WDG_7P?2
zXCcFmJkkG0*jqqVy>0K`f~3?2q?GOsk?!u0?v(CskOomux?5U8x*L@4ZlpoF1>VIu
z_nv#sd+&ez#&F<v3<v0U@3q!kb3V`K*>uC7XuVwW+OYGxO?jl1#qo2BnIgl?O;yPR
z>#;l(vp{R&_)v1G-z$7$O3Q{>^1Ak5Z8mgoq-C>qHpk(kcr8kdQc2dRD!h~65_or&
zq5b7kBu;vKuSNt=L<Z*v`XXXkPmMFqI~K2{Bf3R6I_TN=|K9GteSK*EMa5jd!Np&7
z(-wV4){;RHlacHN^38;AP-_PM&c}0>9tU}%--*qh!4_b~Ta4WM+O_}(Dw;;PQ6(>p
zZ_8v3G!M4Yo1<t5Lc$wWf1kGNaeTIL+p~W!G;u!YD;AJ4aULe;9p*S}xEgw%SR<kM
zrEO|eg^7xK`p33?-8lLBhw^pvvseG}!N+30<GIYw@TCPo87`t)Q<w_86-`R1G@JuT
z32$X-CplHuu?0Y;WPIlp5RMv6dad}wS5g0<4NHD!fJn(yv6g7uSEiu$RST<Fdf^ps
zC!3)HgH>M<cPXlV#xNDoYL5?jKio{WmdMTNhkSdMLy65W=fs!S_i=@x=)JE{-$F6D
z*PM2kv7BrMzphhzrIS~c)$|bmOScyX#Ia(1dntA;vqkEQPSaXK(3lse&q%+!8xC2V
zx!CO_4030Z2@1+uxRJf?zr37ju~WSp5KOcnU0TN9rnYY)R*4*9G?-gEg!*^glntym
zPf1&TE_?1V$XJ_mqiS1ge9(8DHMz0DIHi2A8OcIFASavrS_+(39DI$A8`6(JjPqa@
zAo4D$#gtuqypSOg3^w7d%R$#sz8ED{;$hNjnxO|5W=Ud1#H**P@?04G3o$`nZH)h^
znVuj{U_on}ew=Ll=F_fn{-HHn8zLIS7`N*_T7@WmmFqjBzDCtmLB^E8waz~=4s5oG
zM;|<ye>z%>lJvEBZ&ZZ2=B48qFJ8dI0nhLkFyLPHJIW^H(Y0l8e2wIl=HTx>_Uh+W
z#i4|?-2v3DU4A6N6?+R8Zs-v%nj{=5egWbN)Q>uc^|OeaQOQsIgLS2CD5H$TT}XM7
zIdDRIavY1~0BGdy>~!~JCfBnD$(c^&t&kGr2xys=qU!aCd1VgxrM+829@NC$hQ@!r
z_SYsQt#dLtGvYhcKl<!Gms--TZ{gF4CccWS-f$n9c#bBTRry9j>cHva)n*G`1sB37
zukO&a3Aah9Biw8Bh1U|PX(7dDbvDmamLm?grUyv*T!9GQ;_eVRfo4?OTs>gz$$9-T
zzC*MlnTl;)e-GWKmay|=JhRi2Wn($bq+R_2_fUQ~8a}4DHjo(5;8Chs(wiRH*`1?v
z4soUG{kEp#-!?W`RqW1<jFm8#u@Y(0px5PB<Y&>lWPk<h)Gzj=fw^i6o|J7}ZB6!}
z!%y4A%178|>vpp_C#stIjsB(wQ8<`w<~lE4u1S`a4fP8}&t1kRA5f+uT?Ua+^vh})
ztM?llHw0$~*d60a?Ko9)^5Wg_%Ho8=#QS6oQzUS6td?w-xYboN{$Zwlf*6La2a?{^
z%p66uv`?GH%G>)5-A9oOTYcI3jX$p5pg`fIK0h89XG|3FLCAj0T|Ov9XeSMdq+D?}
z$6r25#T1srEfeHS00Eb<62p8r`m(57jaFsNYQ!_FQ0P-OwTq^vWTJ6uh7_30+3n{%
zrQK1W4+9d&69!V$e`SBj3ng$(Yzc8IyfxsQ<pXV1&ySEA)wsh$-%B2@^$)CPG7=y}
z!w|MttWlZp>VSb5u9F+x-SrM=!KJFcL*(POd5q3?Cp}Y39%h40IBP~7K!D1g6Gg-C
zf}F^2Iw&Ce@6kwMEsB*|Yp((ms*!|3Mmybx98|E`)L~}b_6};!`Fo3Ht{BHo@9D|O
zegtir-nX~m_xP*#Cqxfdp}@yQfVE5JQ;QCNe;nmkax_~ulKBkwu>l8#Ii%bLi=#sf
zXx1eo9Nwj}J>S8^O5zN;7vjH;@KOA1`89puyJL_p_8gbD9dZ2L>v=rupJx#eDFdgN
zC44BKzR~E_XKuXsHg{G69O0f#+;d|2AQNWjLf3tL?*cnt*&as?$>Btnr!m~LjVrTF
z9+fUxO0B*=<3YxMD+ocU@y9P<K?JQ+3k3Mi?L=@%85Q#+B<(h^_^zck>-mOes^M!-
z4PxVW^zKv2hh8nqWx{91Un}!&t^AIRU4k$}@uA*!32M>tLc}az*Wn5)hMj3Zo~>mK
z0ijy1a=tuviuq@TvDrWL9USC!iM)X3cmh~V+X*tq(K|=0o#&nMB~Mx<ns06QhtsQ}
z<R`eH9y&&~-i1ZxqIfInNDFRfJfsK3eutpC4~eIdi-jL6HRze2vuS-Y!;US@C>^`S
zwt9o513`yyiZ^y7-N0KSS7fqQ7GA0QP+(9aM~p_+56yZ1m<TPgkbTttEgZn@-AV4b
zHFA!>lrk7pVR&+e?+}nn_;rr<^ULg?eo>T7el&cHac7u^;|IhO^vSq1VRUqJl&F&m
z2z=vk{KQ}AD5dN#?E)Nw+;#(_S$<>jrE#6u9Mh5*?#x+0*Ydihv=`}5Z=2Xd(<fad
z9G#^<+_m}=@8pNTc53GE;|$!Y7gfzc6u9};Y{$eR7<31{G!MK_muvG_-sIgFb&TJ?
z9?Wv?bgqtMyQxbtsb;$va@R^li9(Jr!0J2`G877K7VuZqf1iK1bCGSS03Ta7Dq4hr
zDZGuR!KaE}$hBtc^=)M#9LGdV`^$D~g49%S#x5<5?hq#O1;R$zbT9T6%%3NSU{y}?
zk0Lk;TZARwt5tX(-Dl|da4<03lK!cZO}|h2wLXMy<ve<Ru%X%uQ43WaY>-yb(o;x3
zsSd&5Ul9|E3W}Zq`M~ZDAj0W2rUHCc5T^VmFqG#m4TA){4tx381$B1M-Ug+Yw@OU#
z?FE3W?(7u(z61j`t2fVKbRo8ee$2$(3}dWhy4C1Mvl)9G19?T>ByGZ$CS7dPI%Mvf
zJV3^h_PGq81snmTT3ffbU%?BBH#DT5D4i=O3bJJAvrUx>?NBzBC-<`X1p>#iH|q&(
zO!L<VL8jhgA~ws|CHhFFA-n~Bf6NQmEy)s%8tWwN)-^8PE?>@gOe*>32s3R^ww{}~
za|FMQz82^8*$=~iW`riy#9sy?M8BJEHgK82XLLZj+AS`lY?>X-k?3D(52WDX(T*?%
z`K7Qn_AsmTN;VlFbFcxQj-H<W!w4;T)8}TD5-=INc@Hv1-}sdtalrV&A0@%!<P!AC
z_=$TX)T$yN96%XTDRGjm<h>t8&`~&OUH%PzU~N#^h&6FF_n&Xj$_VkND(J4}RSvuA
z9733I%KgYNcc<?#EuuN&Z0jf_x4}h)FReZxQ8*c@Bq_3}X~%<8dV&xtG>|6IDvG~W
z_Wy6`yOn=}R!sZ?Sh5T6ZF=s@**y=|d!rJ7x{E3s7foYT)&a=Vb}l3<&yPCMBqrLC
z33*qc=<#`Qf5;K5)M>t_T%b=9$r#V(=G?}^Y1ZIlO1cPhU5=<m7VdnKx)>{xf%uT^
z2vtMF^U2s+;L9FtgTjSx693g^Q>m!2bfP&@E+gZMQyvObWgm56k*bK<i!Jr;R`aT_
zCL1y7YQ0)mM)mkN2~pESZUwP(>ll16@d}^Tm=4Ddprx%5D&F20P%t`wk=9z)7Go9_
zJFZ)nvA>NDQ+oJT5uZbbom+5j9EJt?jQvqHpn<PLLKz<QL;HbD_hg-u`)w~>=nJ-3
zZ=Z~-1Yg^t$=y2lF`H<IK4WMONw2mIj4fMD#d_h%Pfy-Ji|u+pyxz|(9Ku9!XPL=y
z9v_}#7}GP&Tb0%<;mj|*=dSFad}69;&@D=H{fp%XzrgWnf7Qkx{@Gnxs9eqvbEFPF
zWQY?UdZtfCZzO>>30bO7z0V7y3=l&vy;2lnmhgz6i%jEjdln=}c@M&4wTHPLAtVgH
zI$!agf<Hf4)YmOOs(`Do?&zPRIzZSvJkWow<L*N_5X`Cd9_)jT$Vk8!5|NN?eqnr5
zoson2HW^8GydR=2SES>Fq7HzXAW+u^ICm3)<;<Vob&}}Cb~tUFojEfk2APi$)=@!a
z06LnN!<bx-pDRBnCGNhzQ-9cqELS8?WDXY-Abc?4W<QnBxR_WT?YDCD?Fd5r13I@2
z1E6zY>QyktM?7>6_>#)Ra3L!g*&=lYFQ{ZI(Kt6Ne(?;R_~5BuvIg3$9l{5NLhyxo
zk?%ySLZE#@XE?cu6~%Z&0WRWv`5C9&i_s#QX{-r9aboLDu0Me*1@kbe@bkY`Bk*bB
zKMUjebHE>Un?l=lrM$DsLex=dBS6Oyyc!ct<ZzTtb2rveT<^8fNhJoLI7k`oqsT8h
zNKjAc>U7sN{A}+{Ix4YLL$B?B51Pp(pWrdtHXVx}3@9ooDP>{#?y;b0<aCGTz0zU-
z)pBc_#?To%+Y4w%JDV$#ot&Hqv8C7IuC0C{^5ZYddV#mGntHhPD8^mYxn2SBn{1|>
zxy0KdmP%w}3C$}vu~3YXo@b$sCnB+N!M&p{eHZi+^&<PWH5=zLaZV&%&RHD{p9fX7
zIk`OjR66=`p|S|@cfl=7MQ4{THhM>)ux40Y!}KsFsN>d*mPD*vs&PN#PC?oFV+H?m
zNdm|vRK@M?X}uCqIvIS5)#YD6)Td1+wqBOd7J{edWF`C+{`OhBHY|2tv{69S5G*H7
z%>e5c^!2r44(ib_7^ZVG^K|<MiMtKb1(w;eq)|Sk2ZPrJLui$Ze5f~Z2B%TqZqJQ#
z?a!{2&bq5D{p1rC?NCNKG()MrHhDguKY{hiBaN517@uHBzoGIW6s)p9tHZ(eaSexw
zdoubgl+8qLMFXpeRq_&j%VIS@hy0=1IM=-|O-b#W^2Ytyc7sX#iPN0r0ODii!Py3L
z6o5#I{wB3K(jyXgQP+#$_M7`goon#Z`BW~a60?{*f*ZIBoGvSS@e=8_?nB^a``}>{
z(b6e*9ItI#p+wR76=jVR27lyeERt`99l?+c8oB|<HriV>6hxe{nBuG-#pogt@?<tR
zEIr0=*<sLe@lW@My$4_A3i}>5U!KWG0e0Q)N%O<~Z8ZYpRL#l_oIidl?t$TQg2op7
zFE%iHvJzNDMkGn*vm%<Z(Kjn`9d$9XnO^GE7~f=tSS8JxIujhVbD=l$9rf_VaH*He
zdui95ta?ZCqbZ`59CHau+vh?`EoW*m7pL|^@#YiA#JFHuDk9m2=;)(dM`~-MI6mGE
zgD#AE<B7zykpAa2e5SFl)%Bl%m{fmYCU(B}@wb)%S@kVe<GD55b$8J+qSGthhgCGc
z5&7`E7CezBA0`g!{33Del|>D73;O>o={TJcI45Au_Vr1l!=SnXA^07AxPge?^&o^!
z>fyU}pJJ`o<u6a{UB560V8PM%qF<5JtC#6<yP&mP9c|##ee#93Ygs`-ZJZ}%Og=KP
zaMS%Td2hfFh{FC@IK%HTl26$EG80Zj-IeyMw@A?Ob@g8grC}Z0Xpl(8pSbP(*LD2Q
zwTI6My(wXEi#v{MPh`=P*z+kS#%YDSmx16l%u2w!=k4&cD=Yr*w8dV*;p<z{F4)#O
z1JVc&<DZzfW*d04M`MJBKPKr|&0s2*@=@kz2MDHpL#(o%HgJs;`3^ft+4sKM@XY5&
z$~sAir<><-+gpd-@kf^o-%GhQHJL=)ewEAaN}bP@8;?qoW{;1q8!Yefs$2Dtc_U;y
zT5;4h&eH8=Iz+u7UeRCLt)z{XB)fHNH?r!+vi_#!tQbD}jj;ImNS2ZaPvxg{^&d=e
zR%AN&7$~_muI#_ahu|cNTHGlT8#Rz{F_)NJY&n&VPa1Nh=jE#WCJRH)Mp5y}4sGKA
zT5>@3(TB5Pn)D#eBm;R->4=5oa<e}`sg&1MY9CQTkDoL+!8NI+PBW-m6bmDURm8)K
z7kzrm)v&;^C3igJ-5^YW{rE)NvSa}_&H?4wDoJ|hs;{H|(_ulttteIxd_6FU?xs2g
zAJ%7pS_y{S^*ebf&Z@i|2NQ)cu5>}TU-NYD?3pG39)V#b5R)XxC>)#_9VKwL0mlAb
zNR8CYpKZjah1mK2fXF=u5V;B%kI{o@7s4cX2i|fbPIwHI#G4hJUMHW09LlFpbD!Ey
z7RCAAqZzIMvo+>on)KePUM*--dFlhLYJnd-kVd(FdHGRGV{!Pyop<*kjw*{`hn*p_
zUw|Ijjqi)gg)91Q3}11Vw93b^rM)Dk<k^e-8sgQ)Cfe0f>5aJ}qzYUegadytJ~Qr7
zxe~5?$h2wM|G;(zdWer&oA|{thu2kQIO7n)HE43~qmVw(7`V7zWA$u)6owRdKu5J|
z>WiZ?Mtf?K;ElD4n);T%Q7gTad=svm?pvE)qB#Cf+a@OjCi#q8S80ze&Zbp%D#fWm
zInKAM3@)Q?{9CSX=z6ZXlZG?o3|p$OR`H8Aa*=EtUPHQ{TdA$v#q8Z=zr8&Q0@8qz
zvhrC||Aq=pdSncZvacE{4iwi;F5xcx{c>z&xBNNei>z(qfsXE>{zGzhf`~};=g*XZ
z@RwsY(Edug!#mE~Cu>G!Ky<E9mJh2}%x)92B*GL8nkgzt(jsFIYs>uuqjullJPqyJ
z+(62;H!B4$(w*_@n3gSefi<^-In`PYyH+BEsfC^_p(kjsRv48Q-#PU@YG^}uO9Kz0
zKfJ?e40bJ@5Q+23yQj`W^W<ER4Zr=3Bv5)ndtvsJ;n{oyGyUd894B&Q7#jxSGcHVY
z%=oy1*zcAF^09HWqpR`Po(1w==Nm;qp+Dj-n2ksDyJialm(ob%LK>VG-Ow91Egh;T
z_$N@K+LH%Q{9`BE3#um33CaiSR0LRueMJ%ke`|7TH6OM1qO0H(J)g%j<29>BpiWTw
zQ@1Zj4ux>O!mSqLZ<c|J`gY~oDtjlqc$^6#tLXHVI{3WK9)nT;S9uQO8h<NdJ;x43
z9B3vl)$?GceGVA+9~X}J3j!<?&Vszqy`6I(fM)h$!&@vbz}?@=_Rk;CmL>5BHd<qV
zSr-j^-tRsR7tkfc)U1L8eSm|cxSP_}jj{ka?m@z*rBpx_*so}Hd4itpLum5`XDA#(
zDx4Kn%c_WGSF8gpTv}J(ndC*1j4>qTp(*%7&$wHwo17n9@m!56s;n_4o_gM%N9_Pn
z&6c5Y*?$_!nerI#K9#%Azp$9QMW$Fml9qNQqhX+d<nxHRGNzD}#-8zsgv1uTj*z=W
zRvkW->E4l=JZJa5E!`aZW<sX<?QJvi%PI9Q!p{o5CT_G86QeO&s)=6x#09pD7VCvN
z-NpXAqFC*%f>;&)LVW=lU@fIEy}mfO{$|kr;(SdPb7%2Za%cXMTGwvAhF6#0Ku|r2
z$1S)4&6XSqhcOn!i)7XM^)R4CwB|}q{l<`wNs3M<!Tq;I(<7rPlK}O@6X0GV6h1ag
z<NZ>vOs+_UAULyOJEhB;HiTi;Y%eXmyii*;Zjd%3^s7rqsO@$<BAR6%c5(Vqo4-;z
zNelZ8Bab>OtJs3WUnCoGx$H3IhZbH!>4Q+cnk}}OE0P1-4k_34;Mh)?$b3S$ay@m!
zd>XC2peS*glfBhoIG3eKX#F45lRwY9|9tfiLd1U#vTNmPBmj5(C$PUvWDDj>gB~bA
zb!9DPW7MpJp!#vSW7DQLYn`aLP^*SjSBgxE4<tU7h`ASdoc5W{+nGxzDjmJ7L!2Uy
zL9EH$kL)LM5~$inSs+P@d2IoiXr`lg?OU59q@i}~3&2`!g_4@F0aei7-eXjZqr)Y}
zC4!d}TSvdv?CU8MQ<+S@KsDzVa>?bAyQSs+e64C5mK2@U^<I(!PYJrqpv`JhWTT@4
zgKM{-Q#F|`zitt9ReQdI#GlRMx-XiQa9W9Vt_Ro*@&m(6(F+T_fFx3hjSH|`;!L6L
z4!~xn<vr8nAri+(r-R0{l!d<s0tc!ct7dFX$m|PopdwD)`hG1itSzQ7rNO0A)?2Ad
z%8#o(y4NTYkrDN9tMXMl`hz6Rx*s2=|6B4;t^<eNKx?5ky|TTTa@xQ)jEDjDM`)`S
z>_apK={dy9?ZNsNRhY==S*ctRJ<G(9CsVG^eSGWRBKrvGeB`mJ$l5x>6lI>t2AxMG
z-W@d;zRE)jF`MEI^8dwf5yZgcq=pF_{cT{3>|j`HyUU=s@ds_Je-5`WNiNl~k47su
z>>J>~BpDrKhT+XTqr#9pV0GD5*&rVk<&v0~mJgFWx5nY2{6;uM0?JE!m|rcV%NRtY
z=O-4^)sQ%!$Uj8Ke+gvZQ`?3p4BOip%9ch@!!A$-KOxkLcyZ#(9}JYGFU&`njFE4=
zR(UZYEE<L&5s9Dq4SHb0g&EC|w1<*X_DU)t3&m)yD}yw?^<vIl7xmJwitW6dAlJ61
z-#wJbw@%h`m4qQov^8~?khe~PxA0~0!=~JeuL(ph6K}pbTX-}KgH-WnW6aZW6UwH3
zkN2N~moNc5u~yn@P8-`bQjK-(cg&<|){8T8zr?;_Dl!pVZ8nohs_*Y`>gb^G6l66w
z=qWOhT5D5((e{m73E9D*ExC5~pA-VL2;$%eesut3v2YVdKu^Q_ND*5rf9~cF!|_1s
zk7AhrbGIbJ=Fd-RbW|G%+;xd>FzJt{(BGON`&)a^KbOQ_@fk$OZn8)fwBvSw48=G%
zr@VYbb~ltF5lkcBtA-%1x2*tDRo^9hrR^d&5X<vfJAvipW!13(o^!S6$~GgvRsXP`
zO4OQ21RT|WmIpwkMLZc}l7R0DrRjr3Uv>5(f37%P0fC{V>WW@C;@etXjKZ>e<L{1i
z(*1e&lk)u`Dp2&s9OlV=8W10>l1C@)ctv4Ett|h5y74wK`7^~qB-a~uCVgU{<el29
zjlg`P*xGG4=Cv*M%4{LDLH8lTkBL>Hl|%vszi1xo*FfA?k6<mGup1ODLPn?zbuQMM
zN7Fg?*~^kWL%f?>2e0(E6L#c}?#|sy>0dR2uRte?J`&IDd?&YG-FA_tyX76sgiL@h
zMSRfySm6a#(A}G-7Yt<GWX+N0j0IkAD?=I<V}q^EP6UbfDe;`h9+f}D{+uvPtm)Xu
z$QY7v(2$F3)7EHY-B~Z92{$K$YZ$)$=2uq#s+jj-9vjE_`;Be)e<xJpKY@k^n5i&?
zb_6tXS?k4yN!i`wlZ}4WzCxYi60r#EIV^No;5aGo!%Ql-!<2`B>c;;k#iuxQS6~0V
z)hi3yj|Bf7AN}hC5Gxpyo^LstHNNr2sH<m<X@&&w5;dW_=qX;E<>vjUAY+VUbIRX?
zT5I#&()|(?b{+ku%%5@3wGZJ@RBcP~J8+vBO#RVJYs>04UkHV~1H%^$9F)2%I6nUM
z_)wQdw$>nm2-(JTk)ecCN`|-lF>bq_ri6uw333l(T7J^vHNW&T3~^}Ox|H}n`uf~n
zC^w|d+M1f0c3t>s)W}C5MOjXYDycr(X*tlA$r@&wwV*lKyZQR6{1kl+CARM(z(})+
zMSV;q&6zFH6+mXD_tyLUU$8#>9o+k$)8XGOZvdnv`BX*QP*wH1a3HJP?QjXZoI$%!
zSrND_WrT$M-<p~2Z9LNJb`7(^O=;>k2-pA^dO?Hj)40aGSsYJZ!uC!S%nO_3SCNl>
zhbTd2gss@0dpKUA|7f~}JkE`AcdHM+=#?YwydLzR>nsf}P=1uGn$Kv~l<3eiaJx=3
zt;X#yQ9z*MX*oI==s5Nq2M&i8v-KOaxvY}wl$9Put(ABOYeYW7drFrLd1-ELEkKr@
z{IgUyYkm@FV@=3VcJ`lsXE)dcrW*#?*XJuCVfU*Wg1Kg>?h!7n10f`kF4vsHdN(YO
z?krli!5`5dRHF77k1cSz2&C<2^y=}Ad?gGk97UY_7T8kAyAPs!xRPGE9hfeb#(A<p
ze*J|r`X3MS&nN0XNA}pNL}F@E6sC2V0NA~^0A%#dYMSwm`DtO)EodnXCKtX|rd5RR
zKk#RNJb}f)Ux;y7zi(}3g^DWTUcTaBP5ROD`6CQMF^P3R05x$PQ{8Gy#LHhYdt*~m
zQ?1ogQ<mCR#gj!}tHmZ7RM2r2?Au{sD#G?*Ad-^MZ}m+ne>^mqadNm(vd)Hm3cB=4
zUj=avntqq4^=?C6t#+jb6>mW{(JS{OgS4n_w8k(9AqrFD{;LBlhwGD#8x1kBU_tj8
zfCPNp+2nIx!9=pLu{99f0~XN;A7WkVqLU6j);|ueAPj1)v!Wqd-TM}7q7cG|v-)1=
zcqEeKNmhGvYO|O!!sPB9M+<af+LD`}2bp=B!x=<X51Swz;;0Xm;;3?(H8{TcIsnTT
z&m+a}(%6c~N7&k&BXs;rNG9*+`RwN_?&hr*-0tezaox*vmE_Wk0~|%QVfF(X&SCoD
z#D*DVHoh0VEJ1oT0@HiKzyBL{_NU$AudfDW7~3__qKbm<dEuB;y9(sApaY_Zq!12)
z5ZbpvMaRceA|fI>w!`AUsD`SCJT`@?hxapwK1&c<xN2Kh%&^)mHDO;5fX~3T9?Y5?
z!e*P6$>j@tiGRbI{ybROq0@7bo4116M)I3Z=*oOcw>jxxSUZS2$Mx?gFu&LjItpEx
z=r^Ab7Mx_SW4!$yRLD(anDFv9gWWsjZ}8uR#)o4loXqHsjdEo9A6{JV2UET6s@f4c
zP>qMnMyjf9&7RcX!+|A%2?~Bj=3+{9&k`V_a?T;@YSsd{D)LoBw11uN|F0LiQknD5
zAk$^~Wnw`HqtAyRme;@t6AOZ~utP~O9>Y~(m(W(5M{G54J=Q;RXt_%X5>&+{CDAZ$
zu#l$O%zhKQM6`SV8tkmUWQeK8nPzuTJl}n3?C{HIJly8`2dez;qhQaB@uT9(F@lOl
zw<(S%*YWh3%sbBWwU=KEc7%_+dUl3qFo&i{K9S%CZIAqXX<KPJ7`?k|nZ#-qIh5>p
z@8apTCI>`@HCoSFZd49aJoB2>4_oE7YHM2`gFJj8MoHrT*m3^H|GM1o@tyAi8351t
zD=I3YqocF=@JMAHH8qn^dv(;+r+4uJGmn5n3MYS@2E<g(rI5k|eHNz5`3+{WdGoT;
z(iq+=eCSIUz!X_{dv<&G_2Ne$_&K+cf{wyDP1ok1ySmw>rH#l^d(3Zt7AN{}P+$CW
z_HaNvqNq=HMUF<8FM`_{V=&v$tu~nLvMlYogge{dm_%-J5%aSI-$KbS{N>Bv-)u*r
z!%sx_yp^E>+HO2Iq()5{Yqc%=+@!^%K2NB|_8-yoO8w}m7CQI{jH5>#x?Z=ZlfNeP
zaBUWu|4%|_c?P=u&&^HoNVBSp_7!Kb5M;b;7VDYvEcNvjUa#ey;OWlc`)USrBmJ)@
z-)C!0!k1gMKjJ#a^8Dk$Leih;i3ZNrO0EYcOb=jNcppJ)t0#8uJbT$Q6Ff4ot&WIk
zD6bxiO;l5>puDtdU(~>emB$5nH9Nu4JLv0m+dn*<5D*Z6Z6q;1bl)=g<Hu*4`GAZ!
zEeez#9v%(X00ZQmu~=^Nw`%OKlk2Y+{(AC{v3dl_hPCJKX0kNP0aCrqS0U3qU*?ww
zy=q@^>bF8>X*I06FW=_smz_wS{O!B>|59j+iOquF2^ty6=f$CQTl!<2I(b_*U=Xpt
z*A6zg@Y<_-a-6xd^#k6|k9q&6(l>a7NTwtn?dcTnd$yBVB!%x`7UPfWxo}RCwB?3d
z2*FH4IO9Y40n_ixPA%)5Q&=QyxqJ|K@k+|}e}WzVUJPC+1MA7Je5&+uO8+JCCwizE
zo)i_eauKJXkpJt@nL$H%`+-j_0yT}X);)TxTf1I_mZJ>VZ>W}>Yu&AiyS0@Ws^c~=
z5*Db!`T#I8x1m96b08__G(XiZZ7JCkR^O-Sl25uV>~YD(=YFvEIKQ6{=nJk902;eR
zMq%#pzyFi|_iJK&;9l!|V@UXqli<&)ZJz=f<(w@*;bg_3Z{2`+!twEAe#o}L^Cdf1
zGF3kR%11Bl(6RCBIs{<~kQ&3;I~|nEO0#uB6u9K2*-PVc2YjPb<H+PtKECoiGcPPE
z`Ud`OL|9l~QdzjI!DIZt*0~^bI}AS1`^mLyF3e{jBICUhRqz9+Z1an!TeHOqOjHv8
z_zqs8nT0e*iNO8#Q6cA9uyu{(dQ5C=mBd|AA8Ni#u&^z2<J1)R=$7|0S{%U(lkn)i
z8Jk(DjSQt6I3DrLOXae?5a~}^zrMZ(K*bT^1@m2pd2avIRQ%Z*8|}T|h9h%5y>wd}
z0JqYep-uTa>;A8I^sg5)%LvFX*-J!}^WeKsSB(t+^QQmxSGKhtPnN|@);@-h{2M<M
zJqVn|dNoNBF~=*(xfz9at%{&YMJa-usqMl-^_>HsmufQN1)jVerBjfRR`V+?E{#oX
zV(IHQ6euh%8tLU=vb)F&i~Qj3u+ruq4Oos=9Cpebz2XkVM+3fgX&5}>KOT=FwEO!^
zLYxk^(7jemvv7XG8??SoCnIo>xjayB6_<^Bn45tUOlbZ6#QhZunMwD1EF~?iqDD!1
zd2FB;0|kWV@`u*0y@}IO<<-K`!z?r1EMe7zAMasL&%8x<q&}C4<yxj2;Mn5#61b&;
zqO+fMm^Wu$;GhHZ?OoBwZ$>+o&4<VC&M$ET7iH_ux>`J&u&}TiQk#*-|FIqY>Gt^h
z*AZ<*#dkB>!}MGK&2}Fl`+uw>O!-C)Vp4qeV+0DpGZ}AbqQXMzm~Yt((z06^3bLsm
z1U5)#TMXmsa*WBj`QN-(<@Q-&KBj(?RRJ#LQZ6plfafe>*3SAH%;Cwvnk@TsO@0mX
zdR&veDx>p~cf)>X>NlK0UMMIiC-=99dv}F6%ha$kIJ+&Q4`5YdhauC+M4a({G9yyY
zy-*+a5<iOnf=;aGz8Vbeuna==Tm(#i<K>`Ep7Ou#p=i)QLm6E+)Cvo`&fWbz+B-0E
zT0+f;%o7Q?cv@@X&PS75%aTgc0l$zQkO2<iROGu=Vp1(l=nbx&heti*mipHF|LgE<
zP6M33<~w93-~WE#i^+l_J|9<Nc->P^QuBp*i<t*Z_L7^iJB(Kw#E{-@lZ;ovcjfg^
zhRaD#L3bfjyegqtrt!^CSGu`SPrp0)V!rrnw&IJR*Q!k4zS$r_M?E;}3>|8PKHw4&
zmF=m=J`Y#+fD`3mPMBu^$tm$gMYIPjEIJR3DWjy~?l`a2s(xwzP}9S$E!Cmi7T}_j
zNPeMGx4U>629D0(HFFA*lArqeq{mAPe&bfMu-<Qaz~6LhSkk#_>b#%A+C6?3lSH*?
z++#Qw7}{NJHJz-B=K=r%J>6P_5M5eic3iwbcTAs;Jl;W!wWdEP`IZU_s1F=QW7q#q
zrT?qA{M!ppRwxNuTia7wA-i;%ttm$6BVwp|5E{_fcR3-PYNo*FgwOGh&C~k<=0oC8
zi`a_{ajcGM>(4z@G&F@WaIkhE5F+tcK01icC!aW@;|R0U4F^IPTmjrh<BpPeZ`w}L
zFhSS<XsC!J$bj82`QRYr!cM?cVb8&T{8zoG<**+7&d7zt2V4?x28}g|^cyXI@B`BM
z8+-HCyvQH$9JjoK$E9=0$EZa7I?tXxBWGZc1D(<-)xp|Xd9ZUaf=Vozz5m-^Hpl<R
z3sKT{<^lvPo`U-b4Dl5HgyNaCNK#%iJ1h48IQ59>p%j!thTMb|x0MN>5uiH!v3a3m
za8Z&-{a*59z~KGevA0o)lm6+)mOfdqRlH13Ca>mM-*|NNr2cLZ9fgDkk?hbem5VCY
z4QB^OXeEfl@Skq&I-{q+wtimw?Bo9Blm*n<zc;N?>_WeB)6{2(ACCrcId;jqDi%K^
zq8la>6v=|!>%0y^IjgRpfBLTyTxfl<%BC@Q6WN-@Zk+vQvGC?#+^_uCWhT1EH>2)n
zbZ=QVH&3ri%KIL%v_MEebIi?_&y8jKVx3DR)RHj<3u$x5Rdk03>}UD!BSbv-kU98+
z4B$F}dPp2?=Ut#<H{N^!FJ<W~k)QwP$A=FbuwHjGn=t=)e1Ckv8d&{5RP<UNr;l%7
zD=0O%)454*Y+}Vfap;4c{;?Z;YVs4EiUulM|NWF-alW!zm6#XGSy$JOD`m#$gO_UI
zJlx{h>zH3OzKpB7n?_+^y+{Faa8yHHvmyL6*x@4tGVe9H%lDwvjzF-Aqecr5X%yRi
z$cz~pC&Y!1Oe^RV;wY-fYC&fd&YaHVecb|v#trrV-o982b&M4_wTY!m=ov7=$UmDA
z*-6|k9xeI7*qH!o;_f|T(~)ptLBXflO0zv5*5waxLM`P(2kJzl;Ee-tPna1*yM8OX
z+;1D3nlnOFLS8O|ZX1IG8TZxhsU0~@;skc!zgYkjLYLis|GPN(YZV&!kqAPq-8<%S
zDg4(->TfHRnbjhGBt^(8AF3?Az4pyzP!DPK8Y0Z+{?qE{Huql@NyNje*ze_e-j8LA
z)Xu!V$8LW@whP_c-gszTewxY*wk<%Bk@0ChDX*I^DlVqr=hvGqqo%>gKRF9^H2?*>
zcoZRns;cVTQ^UIZ)j0Ikk9)<%UFzz^HF0V_RZtFOJ=P`Wi?z{Tn^<ji>t&fsA1?rw
ziiRcsxd8kgx=8u-i8wAUE{~_(n?=Idv}G_Adc7Uj3hZL|5nvZ{2q<1PBFeBpBg6(d
zD^{*16YU-tFL8=_iA!rv61SIN><1est8E|joDb2RoNX}dIpZ?5eO}zzU?14R>Nr?n
z@a)R+mCQ|^=4Kfk2HP(u__)=cj%fE(=5I};aY<*x%d5%zr{tRc5QxqH8L|`*a{5@0
z_=mxua{YunHVXLffnZ0oRTitl{=5J2dT&1nWn={8?wC+QPwJo4ZeCCQ0lB|^BVPN=
z<rpA(M?H_fHVz#;qWBgTbZ8hE;~)81ji^qo1nSPtRkA7Ua^Rh(vaqnYxr_i*=qgyW
z->pGtLngYqX^%DvC2j5bZ2W%-LM1bKAoc|U8iU19i-w~3o%|F}q9El<gbi+fNn8BQ
zi8EaP*l5obp~YXD{aNn)u==yyo1kEI;nYRPxgt43I$NZ+e9|D0md}gK&Q{nYpV+%T
zDqvKm-zpTW>uTXZmh8}wT}3^z^tSH4Gp=$PQBK=tADg8rzeN?^X@T!h@?891o9z}=
zmEC^Iwb2`hX*B_95%cx-@Q|4LZkqrX7uPqN`6W!q1|XP@e$}kZdz!PaDYm}0_7eaV
zu~My$y0hiL(cJcO1N`5~Pq&8coP_c4@ErHP*6y;~%e9q%Qr6HYz}duR)R{4TNk7tz
zAc~ewS#g~o#&b&?zMJDa?I<oKa_zRZco8>I<|kp<>hskLg|ow)_pV1~PK;?Ur%|t7
zdUvYEhfl)12&963J48i`$C?u}P#Cu8h$WI<i`914pC@`j^Kr>k$gdHuP5ANLFHb;R
zxkp_Z;jyf9V-IKt(x-6@;&dSTn@jQZn)llIl0eSRu7=|W;AtBmLd()lHGU8HUcHZm
z@VFdv2@ewVeQAIZM!lAhixet1FVC{<4!rHIwS;^3?3}#Q{6G_X^E<JA{YxE~Id$&u
z9`Ic*kYQ5FBJ=@rqG>HoD;!GVzb>GB$$}DxWjg>Km|=^W{<neCpNl^;9}{<pL&37C
z`qgWv@?5Ii9})U3+4-;SR|KUL6cRAXly_s@+PSfoW>)RLXK}08CzWV0D|k?qD0lFR
z+Pj*s>c(J*a>uIIZr8!!y)rC%ETaQ&yM6#ddI?csHHV1m&{ttX9CZ~L$7Nr~k+aj1
zksn8r<{YsSx7W%F69*(Z6=f~*TeG(`T6fiifx}ys>a}A>OXjsBzWcqh+*PP2WRuz;
z!@dyPb?@A>S^~p~S!bTpblC35O@6`RW~F8i;jvUBbYFoA4-ZGQta^mo4+Fh0{o`Wz
zy>BKkZnT&w+~`KBkWR0m(Q|IiQN;yXdOpac;*|(COr6dg<e5XpYZF9L9fllLxT$m=
z@4D7l*ItKn88pNW-e$eNPT^~-DQNp^?(a`1_vA95j%vR^2w`F}1gF=$IqIE<5ISpR
zzSpuWSI%L|lXNK(R5mpwB~n;eSW|U7Kv4Ked`yz9+?HY@Cnu*^-`wnUP(9rT6whyg
z<nQL%+wOAs{?9GCfdd?8jhEM}+yA{~dvf_tT&aY+dXY~N(51L}n+;;8&!hKn8c$@c
zMMi!WG1Vb`tc=k_--TL`7}a-C<nK0tA{Sz3Q?2qG2TcDXx^rMcuG)C;m(=JP7$$8p
z+{YIiQfu?HEaM7T7`fcDY^O>zxt))Jn#%baoKyw#90woyR;>vz8opIg7Z4$IK{j!-
zqAbWq;$R+Ce}5$3CfZj;d{Rd6`)KuI88gg<g!U2jzro~p9iiiQch1l-JUonsLG){`
zTIP>fpn)~qQvDgA=`9n961e^u!!Tzceo6YtaaX@;ON6!PCIGEVy-FumSZl$jSMsdf
zxSFFYag|C+YgdrQ=Z0K4R{P%vl)s+%lVM)@b5gZ}FS)rInkFVDYIEd(&i^*rtEw3|
zHGhIQx)_lAQQJ><N$AqkcN_GCmzWfWHJxZ>BU&6fjpALx@&{eV9~4>xW*39lhKnEX
zfWJNtz_*eYeHz4O%zwA;Uf$9OF65g9q&-em1TV<}73-3h3G{WH3H%eu3m--k){cs5
zjf$kZDslvMGWbb`1|u3v(Q5wL)h8dZfW`~o!PvtieksEtW$5vF61B_w`1m+_thV*U
zJdsIkuO)83iDhnH*ruDY@XxA$183KJ9~AXF!L=?C*pjhSTG6j=rF>ipRn*k94(9r^
z_y;yzwR=g3MX!jA^OnETCG1>8S32ev3I%7VrDGi2U0J%-9MPN2t;EAz1U(UclLTuL
z^rI2P5$6g86LG*nt=?TOGugTjbiRDrk*%(xlGy3#1*YEG(_1+D-XxD<0)deVY22#5
zAm4bm2{1v$?(Z*KCC+kjRX+3F1_`S4*voj&sOZ!1r1R)|&$lAJKx!h+OB0YNcQK2^
za1(F2l2(I_TSfi%nId>dd<3#7c=ttR&EN8B>w-I)VZXE3W;BHi43X9$MY+$dYyEm8
zkLMu_S7kGJbBmeX`Gct1?c-BYiYr%bPJxsZK|RRhUl*&91B5eNsO<g?jHuq6WyeF;
z=Ul`X+dyi*`?a;e+(L;cTqZ7WfY$<u_1y^tRPpEUr_&^cD*kRv0_`s$gJ0h~47cj7
zXJ55P4Q23OCi4G!?`S2YqHJ7w^bB6MMTzpgG9OP0q@$SMLwouqi&0RC)+BvH(q$-5
zU>}$68zIAw=mAr<{Y%~?1^Uf)NaNNw{s<)n1)72uc7YZcGnmki<`Y!{lK6u)5&X9E
zk9*jLMFtSaBjSMjqu&Z13jlu~l0E0(od|jiey2a$WVRS14}bq20|7(e_fhAF(ZV4m
zOg6l1mAKM*cMd~WDCdmgeOhd@LrSjhQ2^shjtgNLze~nqJ$1^|boX#+9zky&4oPL7
z@++)6PGco<T9;2(ZZ@$!4e?6}S}!9C=QSE-UeMM^ZZE%+bYY=1bM$i%?|$EERQ!61
znyGI0P}GgXOgOI&<3_r3=zMJZtL?Nsil5&GyG04DtvbPT$DVU^btONGB03zu*}RMC
zJ?NUDE96Bt<8xPw0($GqdIxumt~7R8Zf<qf`XN1qJl}|~H;bcji3~$Q^cE$I@#1U=
zkvch7OU|y03_Trx?5kJl2yH36ddS)>-q(b!nE@_C6~?{0I9*3Za_T`=^78WWO-;Of
zUhW29_`G!~nq5D;y=@NSjbeS<;nRPJ=-*o~;_(M3gdCM1MLn$c%-7oKA7tSl7|9=?
z@XX`2xQ`<KwvS{XyzO^im00#<oa<bGL&haOYG?sC5!a~Yst-=wpo7MDS?b->GlR;#
zO+3i^`e)e=&jL2#p?D;IVGe=y>^BOX&*dJElc=R#^%4ydP?CU;FC`{ZI>|nFDS-~r
z!5tykgDlW)+$p<$cj|hj;VD>Km$c|PEUkQW0VUp7_NRw;%sND$k%x1c-4~F3?orh9
zE0^(Z&)*+9s_WUU_Wa=eV{`Lgl6#yuU}9o!d=f!L|J~jtM|A(BBlE2HBa|&PP^rxA
z%E4j_*ayZZCj*chN`6O&@HNOfJ|o({NT17z;@7f|f$2o~0UV2COGWe&(6{M=Hc6t(
zDNJ$|G-K{<=xYK8zI>Dq6MNlvzpHP3z44*`y+;4MvkGcJyI<(m+NQY-ARvAHu!!j8
z8`#QnRt|zZUs0D87QP98p3>hQV`yb+N3=m2R~vz^Z57oknVADq-iFxOA(PuJ;kA9p
z?{fp=;?RLerE%+bJHJeNPkFYd|1d|}D|$(}5++{*x4k_2`yn^3o@e#$7t-u`pQ^OQ
zW;|R<Tgl;9tFA1)i8H!(gC8*x!D{2TZ)l!UtnWrSH<<1SFdQ3gx@1_jtKQvQ=ANv>
zlVAS~t#T6^4=X#enmwO8mwr+&##<jlZgTT<4k?Fgsi0|0t;wx+qSTV_gVtGFC&hKw
zGTfxi$+XOQc5m)Uj6mY1mi6K+ywn)W166uzU_c}w)}3GHC^cW%30-@Ai(%fOluGq%
zw9Vc|^9VQ&)>@mGCpR1$^nZnhTG3@uL8cHBt9)N_DwEDFZgisX`6`eJ)6BYP5(Xy4
z#K}%6tGcsQFvWh`1w+6vo^yTtD>tsl;#}>Q-v>OoGy(5eTz}$4yLTy^c~sG|-^6`#
z309&0TvThH6lbI09AdN0yBf~AQ|A@9iO7_WMRYH289!L#Hl6A!E;Uv~gd|!Oxh+aZ
z<kZck$9@PeZ7|m`lUq3*GpQ-rk<}BMIpp*Eitfzq2X_gl8k2_>?WA|I3U{i@MN_a<
z#2@?Ukq`PiK?D-FP&6V&`%loFH{>ufV3L=QZ8Up(KWOKh6C6x!toOcxNMI*7=I495
z(oc1DoL)7=^k>bNOLWV=w>FBtUaonvNu(SL_JOFOmP}|_IKnkX3==a+X6ZDbB{J3s
z;nQ^<72Et&&E_Ns$1A~qKB0Uw1GwU(bwr^@`=yP)#)yEu1+-Gw+nb#W3Q(+?j_6TY
z^%fpkN(c4$9ssYD%zL4+63nx&@452@`fv+^F^A$47;~4t?AyfZjmEk1gb#<82UiGp
zF6hbeqoIy4r8x?Z)$}`X1?5ySPlHL;9NHe&-5O5oNC#(Sp3Sp1FVa#fgyVheK6w1q
z!g1fU6})YLZI62NLSGaSNSnQVyKP@TlU$#zo66*#5c-{A!X9-+^Lc>SDS;qf*xgD!
z+7dBKnWBuO<Oq{D$v}BC;Z5hw%~Leqk=;38bFYiNLo~muKz_4}kzH!E!<;&P(r^io
z*W}0rfDC6Y)^@E$Mbh_=4j#_wi&tO2JPy3wg&5CnpQIxs{RS>6tw}V#GsWxHhg$(F
zB18oJ!Aod*mLZSRP0cL?6MI5gyz<_DSJ%CLH@Gdh>AfICOnMZ!xo(euc<5!9MqKn|
zRkHV@T)BgFNAr^aFdAw7;*S;H<||K}xw{tvvBwNb5kNpc;IOP?>G=5T>Ue!)ErJR4
z#@H+aZpoW-EsPAbw+4&QNXV8{xB*jLYoTdwZ*JUO26nw|kdPn3IwqOfi+(iuJ||mI
zM<yLp;?0UsP2q4GAqNWTe}}^vJdnMEh2UaKfg&6qyA2e7b{nA~t%2~OiG1EzzU%(A
zoxs1M?nPZe%Q{Mi;9g5#(}TxxFHOPx;di9V;@q`Tt*73ngsz)vyWN{NJ|Wcp`hLX>
zUZkcIcvH3qed=GUM8fe5hq_w&8rS>+x<bFZnMK8&C6&pXjToySY;Og?1T~~%^nXdc
zzzOHdyiOKtSu_eEr1Kd{S<Ge>jX{j@%M8}PIH4qnV-X%>@~jBHg7lK?%W&_?Q{XlY
zK3`t{+KFY5_0kch3y<N&;$U&LH^bXhN10F5XdA0+uY5Lj!llvNUB1mJ>Rl=g-{)hX
zFQJq3cR4V>CvZr9t5>P$vC&^ulqkBtT^V<DoMmuKf?8ySu*G-~tqyA<{B_*g<}^yc
zJdgV_sw$C6H26pFGER+tD3AQN(i_P&Dm_f_y{?$2x7&ev{ltw_ua|myb`Q~oO!Gvl
z6$b&4C4^WRe;qA}f`;mWpIZBHzum)X7T4+V`ml0K@q`7Fw`CSqMI)mtc^!<c>5p<v
zIh2RO8uxo`Tkl-!0b4gv)MS%0NCom%NN^gx^Nt}%AxoIP3W~{E;QEI`74cZr^+`XI
zwh>E-lb*+y2ET83Q#z|j=x}eyVcdHLUNHR1AhAZq($2zf`uK2vxoa1Qkuf{Ss1Y!N
zcp7xsU=K&4ntQH|(0qT@EASps*Q#t8uLUB+e>Ng=;~kRDS|X(Hbx@sL)=cCS`Pob%
z<<;YzLMyC(fJKL?_3pq<o7ZjTdL>nu{MnGJh(2%*wqU2sozAC--+_2V(O0ajfk8Ik
zdy}uhsb~2$CxzXCFvIH?7hlFm{hDW+_mL6K?mUXs?xO|Y+1H$J-+1vp<KcIHvvi7u
z)145L{lnd5X!EAS-Tn2jKaRHW%ck9;;-9HbLl%#O`T@)>&zrNItjW2B-s&(X!e6)V
ztnjn-5uSYvK4HE#wc50}=(G_jn;h~r8(}Yf04j+Z&P!aX7CQyr;~>G;7W7qiF;O;N
zJ+@54um4znf`=54>*;!1X0uav^d<9l6sC(%Fiu`nTSp_-d9hA;Jjn4>;6*aYIvo5G
zrlI@GCjz|cYHEET;18w)DD#f<I)RnTyeMcfJIXkUkA0uTG+I!BVugB{R?bJ_Jvp2J
z@#Vy|{lb4w9-330V7nf*XT$Rj8L%LyldSl|jWU(C-g^?9JbV5=B4VR*m>&r`KuiO-
ziK?UX2XI~zRA~S*K*Ems%cC_!Cdex9I~ca_X+H98wFh+PIT<IVd0q0O^`TNXUruvx
zP9>_g8twJ2gyD7WCauHq(2vHT?A%o|s&&dg%rgiF_6i?PQDn)5@i@f}6>A*5EY!b@
z#BQV@daw%LWmQ2MxJku2x==o!?Ua6U9rB`B+hea$$w&h3CRklCjI2|0-+yaofA`C<
z<YF>M991iAIG$?>MwV_dtbTakX{O&T$L@@_nv1%UfK=l)#UM-)TR|}|6#LXK$Z#fE
ztj4|;ALH44rk>K*>l@ADUoG<Q5QR<Ez0clV)%emdVx@DghGpzJMO08^9KD=nxuv&C
zOuxsZF#Z17a~WJjJ)Sg)y>PWr6z=x!-nJaX4d@R-RF~=w(APdEo|1Xf!G&8Iv)dg-
zC%(HNMn!}6fl6i}(TPnU_Sp7DG+3N*%%t(X%|d&^?q1DJfBsoLI>q-0Jl7^dR&L?e
z`!O~lLZbCv{XAg{c+yk%Nf-UE!jZQ!Y7yEVbzSa!PxH;uP1k;=eAyo)+B*)pA5Yq&
zsY1E+?Z|!kb#JCj*rc;EPr>73&^y-E@|S0BPnOGq#$1G!zYe8yfJVgQg|%&olo^bw
zn;8)gtsdD4Z7DB<q#^X}WOz+IcUQfu56jh2=tkdiRAbq2c_W1O&p`ypj?0j;0-x#;
z2Ffo767p9|UHj*qUsl=BpryzVI<7`2rxc^OHgTKz-y2guJ&rpzf{SuFvP7tWbiJv|
z=waDk$3?bj+taQ4RMXSXIb}7v4DOOyu+kd&!MGsTPdp;|Lw@&2g~$_lpp(9*ioju-
zS~WutdEq+oM#2KHZ&rdX1n#el8G-^Nq!6;pDUm<piRzkqr)?nF#fB_{Yyieev*D=@
z$)m=f(K4?w-4lb_Fi&mz+dM~X%Raep0#XNB6}&WOolr{8OJY&|Z62MJM6xU6!FhMU
z{kC7Ib7=4i`$@bMINcJ73ln$sj%|ob7@Np-#_&<cWKKds`lQ2)K(wd_R3+R#{1s?X
zNk?IbOlgpkRnMOKpzo*~N4m@*^;t}~q%3X5B<Ztx@@Yk4We{}XE+i65uQIps8jrlr
z<Ok63BRj$lXY=-svS(~ZyIW~sfh&tUDnRUHI|aw_u2Y~D)-=9o1v5gBjEu~=OCjsr
z75p-uPDCB0;n7I=wcs!_(2x2IWwE?FasU*OKSrN5B=NyQ&L3FFR9J(mnVsZ*ufPk8
zJoK)3h3yR=UTQBZxW9NkHG7D>yY7Me(A&PkhOvGNe7V(;Yv0MDCf<;++-KaM<;R<e
zd_Y?8z3$hyOoMI7hj4dVT3MaPKl~|4_#{}1Mci?~Y8!M6KVWM$T{`LKZZ?!!X!pTh
z1l`ge-UgY&@~RU}WSe#&aV-ylgA+nZO7BF@1MaCVnhW$HEe;rksHZ?Mg?V&<8k*z#
zGxs0&?SEY_+^F6yJC)bD4D(%XcQew*uVPw4AVxyu6XovEBAnbo?~qV-LX5u$PJad$
zVjZT5kbA=5S5?16G7H=3c=YN-J#bTV;DgI+X!2>%NjkQ%%bp)@4#&3beJ$@0QaQ5K
z%nkBrtRhBR`Xvk-hS0h%O_(`fdas{}){J?gFuTVgbx>Od>lg<qKFi3LTqdHQCS`xC
z=4)T3!r<Fcq<V3K*7ddNTFfL;1-b{lFF5Tf-QARfSN2KHGL7LhnHqKnWV+bC(P9fW
zDDVf>Z+6LdiOyY7-8<pa8^y7o%1%yOUr(#b?oJIR4A3o&8q4tiQdc@{-BMZpsFviD
z^zM7*nSQ>eVbDw3n!ceercWh%I93j6R6ONJwmrB!jv-QgLpV&T=dRm6`p3^0#DmJ2
zXl)8k9C0Dsi5)alu-NVut$SbSa`nQIKa!xZkab0tUm>bXcEexpIIDl_W>ak3by;M*
z_vcW^ct)1~>duXuNi*0C4#}92!o0ibMUiyw{^VZn5A__hYgNhPIn~qLLo{_5UXo2h
zTX3$po_Ri-59@QLbub4V(Vb3|xL~E5fkL$ct00lkOxDxB%PL}=)%s!_KE|t-4sNd{
zXOl<0qad_b(i2fV$e5uIB!o={AtT-ALX!bMfGqYRkxz%VWBWxYEyQ2w0~|?=Ljg3p
zzL=O;%Ahd4Iqz082-Ul}pHvC3M=_#BXtGE902y>|hYNv}X}ASbqpwjdXzPO{Jx7pm
zymzh?>yKaq^eK`dY)5U}#fUDq0AKYT1PhckFA2HBDTG19h2G%|5lcQIM78k)>JZ_e
z2)o|&<Z#s_k~JL|^5M#xKIX|s7@J*XqmY?)I>Cu%^)Tb`vKpYg_)xxtZ^4*{S_&(=
z5x9y6Js@Yk_K1ehJ4!~h^M}~4ZWP}BLRv6RWFPqd>N*RssM@t{3zC8`fP{3T($WnB
zNJux*AfX@~Lw89FNT*WL(%m54Fmy?G4GsSq_q)IUeZRdwk2ySs5!5xa)_R`%zOU=N
z2*~flFF~##%X^^BIXdKOTfFRwOkE#I3>JCVlJad?$`5nEM99DyZNJIU^FdRl<`vZn
z+U*D-KW;>R1EMt+1Zm7ZUGo=vVNOUt1jGpjXLR4%>dlH{&+XR42OW)|!ITI#v8Sm6
zyx2nC>?2B`QAbcA!TgXh21<lWd51x+tGa8%62H4(MCp=tWNqAlb#AzzpvG}qg?Wf;
zNg!Z9s1=*FE->g_@Ea;lYzM#R<x~N&S*Es)K(j%&6!fLtwrTYN1C7e4c9F8Xi{sb_
z;qe*AYXHCP-GAF+s6W-=!Zly(DE^m3)Ubta<P*O1We5ItkN)i_m(AWX3Mv?Ea@j^?
z^U!Mh&AKxf+VeDap{mA?A<`u4YkGRgQnr-vVrABUx%68v#Fl^Eez1oHaC}$vppc1_
zpPIWbK(LY8vH^58e$ik+vU3-@9ZQqm$r-PZ01e*=ES+Z$mfnc=unY;U`$o&+5Z!sU
zowu9x*b`ew&z9)|s?EO?C+<Glo0OY)CS(|Qw#_5$jXQoLtMaD$J*J>&WaF)d%;59<
zi&zc^M<O~waS{@sZ#2YlGyg?Y6VwXEZzOs1`Zg#4S-3*ls&B=GhUrCH8Rh4t2qjq6
zw0^9Pb)6(@ZEHou)zc>}FD0KWna=*Mb_X3<->W$f@M+$5EpcO`89ClWj*_pBvAAjf
zwARW76D$=4crkk;a*;p6+2G;CbQrK^4Ya6*?H(aYKt?J$gBzqC*(GYa`f+HGb@v<I
z<t~JEe=Hh;a;kD#>@sTO(+YE<Hl+~A?mwhYHyj;p9&rZqIc|neU)`sX0Od`t_2Uzf
z+fRm?=Vb9-K75tKHIoKHCZX8HZ7=NJ?|)uMhqTI~FELf1Gc0JE6j`My_4I8l(&i{;
z&^BzKbYlK;dBGa2fPYUM<X}Tcu`{r66;H8HDnxTFJDp;+{;A9o+D?<B=V8I0uXo=_
z&}F=ohJRG_Au_(jPREc%*5X5F@J1r%b!PzTv_5W!?&gcRq}|>f8rl`*bi#=E;hQWv
zVNO^1b9|M1Ytb#g#{7kJ@cFSqD$h8}pIGd&8uV61{Vh*AB<(l(j}@)=*&U)ne;&<~
zeFXhZO0b-z5ti^=OGG9gr+oH=3vFs=XUEYwUljAA2_(`!g4JnzWQf+$#Eta1_<7?`
zfR_Cd)o%9Cix4zMGYr||=ouu~55}VaV_N8gfOz{D;J<QS#zjsXQ(Xg;9WZ`S%yU*}
z3li9rj!kbMp??1GTOELeSrc5~2>^YVkEtS``(F;9VU&ifV5TDi{aV%TgO_Zazsp~a
zPZ1bTEBO-*hog_8?!!7L?v;iq5QS-kIeYBxSD4UH#OTs%!i_#rp!n_qV;#rYTmM5W
zB(K`Vj)<PPuu93fqt6r{K?BeIv08})or&ci1vn+z<ik^$rmmh44hdE^&eZH;9LYWZ
zc=QV!JDLq5U&Zl+c`oTr=xV6-CWk$spZg&%Nze*skt|)E>QNBtn|~GbkI*X<MB#GI
zDI{A}lYvHLA5Vw12u@uxk`4+N2fR-wnI}<axoC@-zAJ;sr@5aCdYIAAP!Q#n(-+yE
z4*C9L9Ox$KtL0K;wRoJC%6~xn!NLk;;IF7bSRBLLP`y)U#QrFq?sYeL;WGd+Q9u9A
zW2<<cDn3P1`jgD^3=b9a+xby;l}4lZl1&+DycU5s*O(c!_p`EB2manW9tjK@h#5q^
z#NJ;ftXN0Ze`4{e_hEdM@pKja?X)-PBCS12P_S4f9`+OvbG<)3>H0EdQ-;ZJ@#XjL
zh#0>dj7f*nC;Nj4RAGikZazmsoVZ)B5VeW|d!AI-J}$+8u;Z_^9tkLY{P+X*9buRd
ztpVAFi=Ihmi>T~Z5V9!bkPXEKOKVS@0>p1zjv2!SCQOrewQj&hC_O>bIyrOPFJ`me
zL&g<4Bl6{uFaf2~k$a^;uE~l77Y9|a9+C-1KE{=S0F7amQKE@dTEQumbpTJZ?FQpD
zziu_>Wc==J?sXr*Dif(i{wu2zbDgqJLu%xT%{TMSBylB6CxMC4^&p-0xo;io<$~PT
z)ht-AY?gd$giO-+{2gByRJ5?x=;J%{rCu>sYt0O8NdO)4(VKH*3fcKupWtNS&0EzS
z3}F>;<HL`#UX0?hUX88=bVY><LdjAb-yi~&8#D&1nv(Z(?^+fIGcdr<Xo_k%*rkXW
zYi5G8#<84QmSvyQ4kf;))0ZF3?t|hCE>e=o`as{~T_vILy9p(^tyHIbA+Xa&^2PaZ
zyZusT{>-<QVqoTDII4LW&oZ8LI+bl__Qyl6PwjKmzEbr4yTp?BDl%b6N;prMt!YfK
z`v5#5kRr(T0Jxya+FMuGlcX<-VrKml#PG_WZjUQi!jdgZO#(DmB-G)Z#am$GKSj;H
zCI(t#TT$EJhmOB6X$h{Ts5t#hTNb7^&9dxY#xa&E=S}a(1QX~W1dGgX`qKpH9&KGr
zY8rfqf@pD6m-3|u>&y|CdcQaYn%n`*Pe#d+zJ&~#d%F(nLm`P3n^X~?=I&WW53cp{
zu2V(cnCFpg9aKp6^j5D=z)w@*vIEfBiW?%w4PW<ZY+WRkHJOlGrI)okJj_T5r(MKD
zE@Wi{HrHUFt^MKLq}2a3kk6PD<_axkOkI+$c02#r+t)W{(p_bWR3FnvvvhzkxrGky
zPjLu*U~EOA{#Ek&W}g2#tvrl@2HnbK4@w1}<!e4o*#ArSD~05i`Ur<-@KQV?g_CHp
zv21C1?M<(ik<lr(TP%a(l+DO8J(`V7z+y-uKeW99X;w^o{@JK>CJ&D7#2%)cRN(rD
zJ|g<aFFpc?i=0wJf&aXWaec`q1#-$7rB57!!VE%9h~prJGaDNec{pED(;s$sEWe9+
zenE{INA#zs(_qq>W}=77b+Xq^Oz#pXcDJSS-plAZre1#R%jrF=h@SXrrGnTk$G8+%
z_;QvKeWru9r|zwY<+Ntu=6?M<nV~-A6+Duh@;2680_Ks`j)~^S-~Xs|Btj%}Qjo$B
zx{s(c?t;BzhndkGgC2RIUhms@TZUqn{|fPJXtShhw4k&i8#{_NZck2H@(m}Hkf=ke
zxeN_tAQia3Tyq)+x;)>ZO%c!=llmJRix&?HAY%fGU|d^Q6os#~<%F_wi;hCjtu`qc
zzbB}cu8-8}@*n$BwNuS?u+iMUZlrGi(Q=)z7<7}@OL)Ze>;Rg+aaB_q0u5ML`_=#i
z@Q7BrC!JQSOl#J6f1HkWu%*PTh_5)rjo?B+a1X<I!5X_#WWDb}Hp{;fU3j(vbl{LE
zv`o~?)mU$8lIKX%rjm9jYLZLY130Zqo#=E7WLohQYMb{>PTo_zaN<TV9yp4PV^G9z
zo}({$I{oH*W2C-f%&b^*n#oSMVYykY+reJBhO_xlih9x?zzMV;X>T_SR<gev1G|;}
zfJU%_kInk4wG0+=Bky6G@!4G|z=@kGn5N3)L_XhOuft&p*r8Zr1um>2lQ))`L=m7W
zh5_MOhyF;x&Wg51Bq~Y8t`?oTlx7`?a&h$|&f%KfBOU>K+}r@UwJnc}Bg;lPx58tk
z_t+Pee8jTrXeyWuO8<<z)6HRXXp($fha{NKtWge(gu0?ZE8d_r*L}^o;Zr{MwEdSY
zL8wmc&y^Ffkj8Ak;Xn)=lpG64kyXQ^SycGkh1<>7+=7*Gh7HiF!m+`g9sV!CI2|TN
z=K5#t=aV=U?tPsYX}}mPXgnABfX41=C7o!eOW)A<;zLRRp|u!~*a<9q%ccTEL!Mh)
z`PfGkf6e@%j}e8yK4{03)_p+2*u50lY6l$QWpV9{kX`q@E#(Le0l8z2v36UOZ*6RD
z@zDvDXaKW*qgDfM&md(4k{bqs)bU5lS5HmMq$h4#YG6tKBNqSH6X*>R!6&p3w1>NG
z(z|xuSfqA>q!=chYPl98gUT)SH1+yh&-Jdtb#PnWu#nl0t^I1n2fRufXXldZ30nVZ
ztc2@O(U!{T{8OGq&$LB;b>Yt7?nTdA9{%mm_Pdf5w=1q<ekH&taNGRI&ks>GPzQI5
z(-$B+Yqu;J+PzTo2nkwwY6mzF{G#o(wqAz?=c+Q57#iUa^!7iF^aO&1zCOaqDtIA^
z6rXN>WRDgFxfHF9=U*#z!#$cXBc!Cp16TcCI~?~D4=}QRu|&;IlOoiYbX2_%?}sym
z5@F-A)sQJ@$#8iX7QgTqFP>ta(TP!CB^|^X1I5XEY2)LolsFV1w|;)2vA^*1Y$;EN
zs-CR6#bgC+UxU$>{_|6@SAdC()ScWab{)M1B%-R}yRz$SK!QA^ZSNI^yHFtafuj!J
zy&g%iqXi<hJ}LG&<?QGw!7R%KT$q{3fD3^;rLqE9>we=Vu^IW{pAdrSAzyDMOTFk=
zo6b~HR-)Kl)@DX*Luh~dP4mw`mcq>tW3#9MbgMT9`tm6^j*hdliR=tTH$g#22bcze
znv~DjB%FIl9l{9)l4NMYStU$+$lZ%5pV_@&R4w7Lv6D}(vgc3?SPiTZ^JsUSlHk*g
zLaPAsAsPA$^3q=!emG!V<~t7O7#bPYS)NPQ8b6y+*TEyMFNTHp+*S7_@nz|LKcwVD
ztF5-1zi&6w`BbxcneJgeaBh_$?tcCL`Clic1-36am8eARONe_JiJ<6mkl@)M_Ph@<
zM^E^TNx+77xpCk*Os<v$J+6yFuQE!KoEZI#8?hv3_-#k$+nkpiio}t%+Q}#i&w8pK
zLccY?OMSZ$^3C4eCgt_!Kb>+yexfFcWub1%uO?PER_#N#zky$0$ML*4AJ|bze=5JV
zUU~1|wW*$78&~pO%$2{>OV26ivgv$Bm4PN#A)%eC-|6zVE#)=2TfG`#N&G~k3}TFl
zqiincgnC#@iLBFlCHVCPP(VQ}e>mX*{+zo#QnCa}?O^$YZ2R@J(alL$8YxmrV6>h9
z6l7a=@4FhDLgt4>9&|C71a`P+=K-bs1E?%G;iJ4@NMPCOsxg@`203qeD>5qy8<RCv
z5dqVDfBv=4b<e$kvgNv*tMvsLg1K%o%n|y#bR1kHO;ezA7jzjv-I9OSShl$KvE{Cm
zfHJ!oy@OO>hiO3<81}XYDMe0bYHmoG77!LB1l!<{lSH^;v`opg41UYVJG3ZZM+R3P
zoULd?y3DCCF5sgF_cO~64mlUor;W;J)EDA4ug0qgKbT*y$@Yzsv*OX~GlHo2v$N^;
z!x>C()?%G%&ObKOTSp35R$jVPvQkTH{&XsI*j)Jef(eCZ=*s#OA6cPUT#}W2wd0LV
zRa}!t;DmSH&fEdvm&ohDR~-FnPaF2P&YxA|a8wt+MKX#v%6Z_`ch$l=%&~VlE=!3_
zttorT77Jgj-6#<tl(&O6h^+Qham;`!X`&3rKFw)L`{a7Jbayj<D)$1=g}w{M(I8lf
z6Zohl)pQ4&^Z#M==?vgkW4V<x<@?O~)*MR*-B>_G0#?>DBcTA|gjqFLZd9GzeUCkf
z$3|c3$L`Ox6%491pq-l|0`W@ZclrTLHuzo}wmw?eC^PCf69#kEn1wv@ad=|RZJUcH
zqlL;&Uew^8-r*33Lt$J5pTtydf@yR+NWJcM4J=E&q=Sk3+WcvSYgv|`p-uCEAB-t>
z??i59hJRPjSz{E>=G@el*eV#Abce^-wA^u9-2h%6jb@>^+W6;RT5oOlTeEPgH`Cp%
zr9%(BT@;%+&;T{evrTG100T^aVRzVxLVs<Lc#u+sjB;yT{Tm$6&<4TC)=Ed!O8Ja7
z4K?6-q~%;hp0|*O6+k#SHeR(vyMkR*zS0r=*3GRRp5N>u&s{@1(tyT!*?GEkj4&MB
z$0)j%+40@zWO7wxhv0)O$$Y~`-^^eA&c8a6td!C0Fs)u9z*G}1q<})|ne<+sS28>H
zvGFT8o3T30-tP`2UwSw7iiM}8!SBA(!g`}ShU&rH8TK&{<F&J%OwmhLh&$WHNvG^G
z9*y>zBCaAhxfXBy`_cpkZL>jz);hHC@Q+d-uKJE_K9PF8QW>TW+3<pwI#~UJaD(Sk
zh+X~6*qDkXsTqRV)=1V*Rw2v8EBm<$G-#9hGV<iqK=X@_r8SNpDn@ofXd*+PoiVTW
zewIhFq$az~ACMtFPiUe`nr8hHUMQ@Vy|=LhYd=2--^cr<(c&BME*95G%mPiE$V~IZ
z$2rgd>r-Cgh0tTHFzEX;AMs+7=6zpVd-<pOADEVYoG#p9l>@dd!Ml_w;QD$ZG{17!
zJ^Q*al99b}lh$Pet#IHX$s!+0KWQLLH}}A=d@I1SRg&6!*ZDj)d;C7zM+;9N-4`Lo
zUl??vxR>Zaw=%LzyWu0s3oCg~k|yx-d(DQP%frH^x?WzlrQum-Yc`*(x;M<cVCmL1
z`Vw@NE*5Mu{=@0a?PD=}gY9Hm)#f7M9KTI*L|_kms+pOGE1JImoJR_PM!r3>tO({l
zD(&FU!?osNI&z@&Bc|_79~^GZtoRwN$!ag5<<@irgO7g6syzL((}b;=_XjlcV*z7`
z@?fG+Wl`_$RyBvm%1hkc_Gw**h+ANLT2Y_MYnL4#8CMoOC3Jgq<efle%W14C$mn9u
zq2S5ZjV*Gk<WOE(NJFtY03+I2(Z&SN07cN)594+Xo##v9*-g{&b-C<Q)$Ob)Mqa=f
z$&X$P&ev2?-ME>rcClXResr8&{w<Qf57;w+G#A}=i{Isw66>`-`;ICp?)R6#QNVY~
zJF6mLK6o3Dk4osf?{m2VLFK;>y&oE|Lj6~k%`W0p70~OcsvG#<Y?%fO__n1O0hV-y
zlp3fVhmm!1wE1EHKzDHnUK$yFdP;%2g^rZUay;lJc`H>|6PBvH3N07Y4NJ$F?uiO9
z+00F6dmI__k2(Uz2zMv0GP5dYcgP9Z1Q@XB)Ig0v>!Db`3keUG5!iEVynBU?l;Cp3
z=IeJaXKFRRyneh$padFjgw@PjzU2;Oc&Q4MV6z>@j<R2A*I!}3lO&;~a!-WEx0cna
z8|cwB*T19VA5caNp(p$5x{!^mqW@D~<pwMIkJVSdf~YOL1M``Y-z7~|R@*0cbSR;8
z*^9Xr?}svV9N|HTUR!_R1`p-4Zfa_9P}>Mf$+i*+AfJYIg&sl0cAJrYB%lh8@|vis
zqb-KfU~$qPO4xOy>T?G%blPe(ah4rLMwg?jdgX_;&gpu#1+RQQj28q{iv(?f&Kt^z
z)ll|L<nH|TBkoC5uU&~C7oFupuv!My7q;#0ksqrnSD{k#IKMQhdAzr02~69~cuC<M
zgvrCY*}}}G@L~F$upyByFX_CM4<i7ADC|~fP&(tPo**MP{p$NzM!jE3#}fFa&iZV7
zjW;hsy^EhLZv$88^4GH4N9?PY;}j#Qf^R_iC&2WuvYs4=Kycy=V*j|ss6!yrG;*Vk
zPY_+BT1KLfzgA=R=a4Q?Rh-QP6c*$OG8y&clq3|9eBDw6ijU%4euu@PJ~{ZkP86H&
zsA1_&LEqz8l9_j4aPSj52CpIe)FNB)hUD`iUoactN07uFAkd5hSorEd2Y)8B1BhSB
zCW^8F4T+(Ja%pK98)x5cNr^mpMN$9wn7Y%^*<Y#)klXZVeASCKH?98SLpeNOsF=*z
zd(v!P>bI#J@UA;GoI!^45OWF6%gTs-0C1)JYGq9n-&?NekNi-_(5~jc&U6_<W>{%x
zzDdRdX~UxK(w)9lmUFJyQ`zxNu}0oz*bxdLIFy`RCGkq|*6qgU-MdHu=Ou^PCseYC
zg0I@cE2!pHSQNn_AFufU>9K$Mxtuvb%dQk$Pl)Gg(K3mYnk~_NUTg4}5fXxF4mw+P
z>tdL95z$S9ZS42DbbB?ec1_rtGywLTb5|e~_#3mZnbjLjgkYtWoorI1@XHo-ef|B&
zOgWNyc%H-~^fP@#A!;Ot7hbh8-4R?~Y~2*R^Gqbuy=ZAxdx<8Iqu$Wy8Vh9y2*xS5
zU)`vfYpoCWBAy*^B>mm@JvfWc>@ayc`V&ywjS}x`>3q{gGmZAN$DkshS6y`{%yuH)
z#rlGK=q8&)@NM(|JPf^Qeae27jjbOR=7;%G?Cq0Qmt1Es0sd<DdmFIU8@gtTK{znN
z5wiJ1(H}M#*^%S*T8Z^wn_GROyP<SEIQ3OaIThswxVs_h;mu}4_WU(nOPfE+PP8yw
z^g0w=hCz;4resRce}({zboMEah6E1L2u{j=1zK*Edfyc`0@=}iM_OoAK}!~JW!7`{
z?3w;q5}QVxiPwV3hQ2r$OqUU;VPBzAiF`zj9+dORS9j(B`*9!Ug)@QU0weaFEzOAU
zl;PRF{}Oc*--#)p;NEg72H7YifGmVPXBS`X*0+c#IH_pS`rw}JwI+pVm#iAt5TU9M
zGICmKgtm{THVrLGi!*J>?J=HPE~**jGSaz0*}vFoRg{(8?k@)}e8%=>NYCoocBNIg
zi^0`51M~tlIpxm564=SPJByhH5?#>#r7OvXO+u0TCo=rkEJEvUbWC$sOJ-UArI$Jw
z$U{=GxRO&PUaG0DNGqgV4>`_@z<P1ON|)WiEY6v1KTD%>*JZLg*R1O<5H4`3;yZ$^
z(Xx%_X)RyVpx>fBHsq~v2;<v*S#Z6oJczcE{4JQYKq6y0C0nKH(vEQ<-bz*Ru0qW;
z^2@c;p>*uY;`0<2zs|z4(eAUlnI;p$HhNOGVotSBn&bjY>Zfv3*-ELKuy<0WdD8nI
zqXOUFQys6d5<(K?GWaxq5I)E^rc5*i2q+lGgC=oXUu9X|bw>dgy!&DiO5z{W5xMju
z^2vdIR(MNb9hf>#>95-^x$YF?ePm!vB#;o=Sgb7ma1Ve%qXF-c^iso6BD;8)4*`=F
zC16{qXN714JVG<O*h0bf;F-@nK#eo<d}a(L>a;tu4|4z180~Li4@>ZI%vyL5jYg4T
zCt_?D>o}!qmmyK6mM{aNBAT0I8^)IX+`Z81;f&ltw8e|E=CGpy(CZ|w`6%J*Umq(t
zJdR0y6A}!8y=xOzMmRv9IS77qvXNp_J?jlb#S}SyN76qM=d}_{Fbs$2y8`?Xq&2~1
zpT|g+lOZUNIvjcd)emt&fptuj14axzCOM_u;PTZIqg*QC%9ct~3N{H>TbMr~cAk7n
zE_Pep$Pe{GPSgNh?#&SvzlxgC$!+i3H41wm-euQ}s-)|xtFA4~l9#o+fueC!3Kuts
zWW446oOKY9{E{lN3&Z9pv+jK_?p=GT9u(Dxy(Ffj8qob5z20dL#5lir@_?NLnp^&o
zkia1IgAf)TEDO<*w16~-K|?JOoPjwvS~Cr3k~j_J1RgZN=ttKsNK?rl@#g|Je4rem
zK@Q>Nf~CmfaX-HTJaABp4tXr5v)qMwG!mZm7bbnw5j<4X&#g=BIs#L0o`7hSjlEpx
zM<%>exdf;46f5g^Kj54B{q1%E+&2s}Ku5I5f-iWfj!q{FZNI@Cq%uIWUTP1YVqj7q
zTgdKswYXp^j9b_y4X}p<k=fYWH@=Jhj9)sPr(a?T*fwbk3JRvrqc@$U3IcH`>SJna
ziJXcQm_xXF)iu+;r`PTN22z$s&aW>NH8H?W^<<^frP)uyW4J7<U&O3nEldH4?&@>f
zKkXV$1T(v7epsvNX1`x2d*L)0zj`rMsF)U>$glTgnkiwh|M6nOKxXXgpH2dBQ&3N#
z^Vb(qkxu-qfKNY2F7d}H>P2WQKBI<3lnX?IM;}X0U>@dysKwb%ZK<L0RlgF<iRsb)
zoIn%^3l!Q7A|eO{(LD}(sddT!aC>^r@ICRq2|diD@<9F(b-rGyE^`6L1Y*hO1CS6T
z`Cfw9>FQP>$NIeSC^+7>0haP0ecP6x-D4ToYG?3naM~dba)KyCe^Wb<_(RxR0)2Dw
zb%R@2S(AWS2Ho?7ACllMr1SR4Vzn#}f!8ft_jtu#^LO-GA83<3s#LDpn!Z3LhMk0w
zg0r&4535T%WAPw3-1#TudulAV-*9;q#*O<E8@Jzu6V2+Xdgc(%d5X;dZG4%TU6Hsr
zRr0ZLT>6EgPWwUX$Evj+_rpv!p}%%tRaZT@>l<SWDq@^5#iVbmed=GlEr$wWa=R9O
z*Koa=&}W_G3xsMMl_$CMQy)WzV)mos_Xf`2t7FCHLmm=d>AHF|-v;&!{>Jkn$&LF}
zl2C$nGBz`FN>FWQ24CPrv8fCLWVLiUQH@z>5Gxf|auW1^Hg?RMcI4o!UQV~%SKR`u
z`1J4_P%~V&@#J|7RU{x7^Zfb<lNwx+{&|yO-tyr$gUG1-EnIKQdJrJ2+2)F|@d%ZD
z<sgTu<faYVE3+#u%jAP4#p2V7ii#>J@O&Xfv0y3uuftw7r8NP{Rx#2}dx$T(pHxWK
z5jt0#e`b+T5U2x0fTd#02?+?OeMZqBc7`rYc3f#*+EOz{l#w<Ji~{D{RcSku0W+kS
zxL*jtBDUS9R!T4@Si)Tl@}tLfjsylz2p16t=VO%XeP@R!f&7Hn9UbBnM_^C$H}@zC
zoyQUAwZDBZP0-5~fw}Q+irj50?rZCPJphEZk6RxoK<LzQ+?;qoVBR#v%`%&FNUr$P
zrIr-yCyi)dladOA$l5>PNwjzG>5HyBkNp=bpzHx;3!5k)#-ZwtLPjxxG;~{AP8G#`
z`GU)c!BbY->$8H=OSG7M?ABx?0!y(v3$%wR4d*@uT(=A$3l$p~%hTzw(*`;rqhF*n
z|B&hLO(OyGIL7B|k+Fcwx!30#YitpEUcT*sHbLx5LR|)Q&)2{IU3JC|HObPaImA1W
zrqk|Wydu=Kt#mUHQg-#^mGz8NBS%os2t$(Ut=lBeYHTITYHX8_W-LuD@e)lh@+wkP
z7h%cB>Nm7QF_uteWoDMCahTE`k0aV+TbHDK=grc5sa2I2%P1a%IcjsAax5o&_%X?2
zk?TwJSGv%TjlpS7fp8E699<N}wY(4tcR=6039pEZ0-R-h*L@Vd0plzhMwvI-S0p^v
z6C$Y{g-GdFADW^>0b{4G*VQ^a{UhK`2qjEU%kU297UFAoScDkHSitsXj0h!<-LVA|
z9Gyoe&f4}DX_RVUpI&;cN+07(Mk<W~HW`BTNv0c@!pDW`ej+CMYmC~a&N|jBA2f8{
zMpgRmiT+xmU%z86ni2f<%H`*vq}4Y6I+@MpDWQzGX-Kqgm3EFGpN7}1sDqGBpTSQR
z_{2XH+FZSk@&)u;9oX-vdEOd^nZWD<+-8ffPh>u*v{1FZ5^=AUT=>zYxOL2_k$^&G
zskR7mX|j($39n&$v9!l2xoY^t(6U_P0||w9@5h&}9-o(qqd`Ob9@V(!1R`Fwm!CDE
zI^)~3HU`SnofHA4VQdQ^yD26>s;r+kGyCqxyOTHq(N$gOQ<D<N#X}`@Bt42#B2=A1
z2=u!b=L+b*n)XzfzrAxYFm$QmdU#{KIa#pV+dT&Xb2qh)pOif4Gfwv5W!G^RnY>a4
z0*vDB*N_S@&`p{dHU}4l|6oE!a1deV9o0Kxwk87sNZdDOmhDl=o)r;sQB@LXKS4Rb
z_w5*2f!xKU(G)+CmBZ8Q;nvkQPy75V3P@86kQ!ChBSadU01jC*Jn|vfnZaH}p|T1P
z6AgA>Rr23@(oO@Z!L9;Ygmpk$>-?<|%)~h|>$E08oS2#oGEh<4oBUd<13r>RHu|(b
zrQHl!*#g`Iqq|KoSo9mHDQN=`VCRoDGi+B|=QA^w^R`3S(r}*`T&bi8*<Ud^>`%uc
z)=ebiSe$BpypcGQY}SfOPAY!$*e0N<Iyi>=E|aBJto2EZQNB^hC3&kj0~oDldH@RU
zF)p>~ODw*F0{QSPpiARVA``ZHE0BEDyAk^pSQdLNV9I_E_;{GHOi0lry(ZN)dx508
zc5<oQG(8I{4#JA3LXmev9_DfaL;^!n!1Oul@YHEqFHeXr`NRwZff`&hC*B<#2~+?^
z78s@<{-x5r!G_Z>O7;^%4>*n!6N$>*Utp5W0K2u4rFWvj^R9C?&bFt1BZ6gw`VcYa
z{n?!HOH`hjZl|Nd(&pKcBSpv@3I;dZd?Jv2s+s4$CZa{@7uZ0xBY(PJu<`sL^=inq
z(3N83(Ib$ojD(n)1hG^Gb!4*MYF*0=iE-`EfqzgBeeYs?u8t=FvIfPi&qu)T?O!Ia
zly{!SD^9#)N$YyVJL&RmB7v~~EAk-u<H-6|XQ1YP^F}U(1)nYuHzkn?U@4uzXfC#l
zR``g*B(>E1fDoV1pLT1`%(wx0;*i%&FJEd7kCyL9{eH)l!CN)rLy^|67E)HTUOhLY
z+|z&7?*VOD33@&&Zmh0e{4Vvg2IjKU2x|)Wr-ZmTq<zV3n<X{;>O!>#TcLy7lrzW(
zk08;Mx;mO55%~A&g=>!EIDhC{8CAc)(sOX2_6V`}j^u2`+Ejf1+3`F(-glXZ!bV6T
z6XZJTi}xkEhEQch!qf7R@(<(mdj}5U`Bb+-Wi^;9Uko8Q6*Vby`%|Ng%i0K8>0rW>
z*<=x~O|i2uz?1gG%e&pR{eos5(OT!zG30`B*|xrO(mcQRCQ|tUwXV`<M6*$)*bTYU
z=TpQOhwbO@X@o~^T30JJ>K2PF)#|3DWG>w~p^OC?tt9C!Rt^|#df$C{1=0K7E<Cc!
zxBV3{*~RZsdQF2{0NK4#r~z1q1zGFu#ZB29B~iqd-s?iP?wKMtZHMgpa=)Hwf(`Zy
z%F1)E0#B>!9lLW1-L!XX!cKlQs4`>CAx9Of9iYuYN6lsWWV}a;<8Rj>zG&D%UV5Q3
zW0~C;*kSwIBu=S2{wHKfc?Y%^B56(Od!L}=mj`^4g1VngP4tpD<7|{wLn)i9G}X3;
z(rcp4YTv@8enOugwNuhCv8L;km4t5g3ULL9b5VKW1l7^3mcY&;s?_Ga#U+9h{0z~I
zFtGh<OS=W@XA2F0FiE6g)#b-F9{WyD#-BIaLO6ga<N{$jb2~caTt{yl0v-U7Zz4nF
zNsYDj6I5+(u!)ZpwH0QI%FfPq#wHxzguLl;yW5#8Y(RdjtD1<>9pq%&@c5gvB9ok0
zi1RU7r*4haOty&L@dDPkdS?-^H{Y9POb<KuGk0g^<I{Hc3E)vjbJ<6s2c-q!dCm5-
z16inmQ-7ohy;a9rstEAg{n5F?KyT2)ut7M+F{mpk^ol`*K|VF8w+O+7W(`_6B9t^m
zSeV{tlti7*a5N;~(*)3v2|#|}yS%w;RBw-$qE=xl!~D$#7@%QyIbtb=yhr8cdOt~-
z|F&?q>eKp|D<*n|aSB6FxOBcBUo|6#nC)o&#y*!bjjU6HY@m3HS~&dLPU!nm*Vmu2
z&=B{s)|~`@UBv`@pm*T(Y&<W2b92}c9Ss!GcA5on<3-3(1^t$L+&Vhq%5CK5l$DkJ
zx;{^gs-8g*ozxl{u4Z>B(=swj2@wXcClX^fn&vQK$MNx<6|^qFkRqUSzAK3%c<6%q
z?NPZvDsrSRAU6=bqex)4^p(iL8e4774#rk9ZrO2Gdyj)_ks?ZqU_8gA{qJI<9@W<t
zvGaiab>zQa`Iqs8c0?J$c;bRDQRtHZK>DCpNX-|Cne`(vXt)Fc0ow*8OO&#2-^K<6
z1Y|0y@<vKV0oo8$8DjK3Z=_X~#}3vO8H7G}*dX(Nasd~@T92AtRo05*vy%Mjgs9~8
zZ%^=rfI0(pC*e$^gfTiXfcChvD-5u-b9-FHJaI^+!tWZ)5;(@C5Y%WLN_72#m7~_2
zqi{5qaU5Ol{3(gl>r$;>HJhdAzKx?2hk_bAyLD<HE-+dt_;{AAuds@r7X^TThi8uc
zmc&(Sr$J$=Y=%pyfG$t~&GNR0vfxY~#zsB|;;OiM{!UoW3t>#ue;Mn5Q|mt;BTo>_
z8GB&cS%52j7o;46;#<ZGxZB=AmD;p0U4ika>8=KTGj-=OKgoGJ8OF<x`^M#6z&m&X
z?-PMDWkRt@92mA%_+_VHaYhcQ|M(Zm4Dh5Q6yql@--kK@dOxxyZKmZJvMlpFUE4I;
zv)*Wv(q?h`4DSdz{)<;hjzj7ibwKY%dC!J1H<#h9?7N>>#U{g2((eL>v*EJM)_YM(
zqp@>%`O*b&O%$g!8^J$XAdcRN{F~DM?a=-lte$M<oSUd_t!>sa9tjEK%a<=_W2xGC
z03OS>?Ld}3ws?VPz$Gx@!T^h#nww)ZzO)A5m>)lW1cz1EMOBjnp|afl<&V%E-y){-
z9_t-_7xjR~B{8gGdhDlJF7AHqSkL_b4Y5C+F+cS8w7GAK%zdnw7H9+4C8yc|6y{yg
z?#0wwK>i8L3PVdvG>q|LyEF~V<J|!`Cz8?Ui1_{d=-FBRyHq_u-Se}GlAWJ_cGmpQ
z=?k!^fIXQV9V|BJ1OT63=cuu|=?2zaTx`5_u)gu}X@SH~+#k9wIG8wX3lkwUz#+|W
zzKak|8RXb_dps|SX!z89irDh+5au%t#K`&id9w?zCa15dnhof!{wP*}jCsFg91r7w
z^|Z6j_h{rM)>JI7x9ZF_H2FpqU!a)kMaDk~lA?&d(H+Z%g3BhB!Vs~iAFKue?A3=1
z!&8W0cKWtcqKRglj@++RafKGOuLEht))yTZA4su+$!)y6nt`Oxjii_uDj>-73qV=i
zi@iFlR&cPle-EU9xPN-*>beuiVG0x_GnSq||4#J&*U|m`ci%;+R&t>Np^DvVa?l(H
z<SW2iv`F#!Rsx={C<PsBgnj#=MY<kH-8@^(_!H@GcRhGvSwj!7zpF0U*y)v5zpZud
zUdZ^n^=>s_FMgeX(kAg<f@YLdGB=ghitz#Ap=YD4=<~!W*x(!;9gE}-&&hXc+A1o>
zq1dRA!(ZgzR)@`GztNSg#3V|fO8H8_=#=|wq~oXQ9bw>?v?ZxNjKZ8|+4Do2xO&;r
z14{Z{nrMF5Q@%*KnjX4s@h?tI$tP}lCDqhQtioJxYGSh@d+4PYOC!AsNw2xi8Q(r0
z=JIENP4-lrsF<#;QtKf-Kzn@eiAj<j8(3;oi6?o1RHj-|{$YK6?DT&dCx8R|KOU7~
z01|G$y%S73;*Xw>EFGkC(6$*R4&;sefBA_oH`)O2)-!G0G6^gaeq{`hkTQ9}k5Yn+
zB}VoGBK&4PjqC;TBsPo2Ase+}w5ReBuX#PAC$4sW`?p6St)%kUEEc)T4ur?{trD~A
zjNgsO@bU9qUy7|>aQ}*oz;_er+s947y*#HVMDh<E{b_aJmge0W=cQ6#t_zM5C#pSd
zkcA7pilGI&!1sU^3Z46EG~Xh3#}E|G@!U<l%%a{QLCF3<(cV7q&q2p7q!48@W9e&$
z$<O;XL6IyvbME|xxH5l~jEqhJAOUvP`S<OL{f}zr{~zVwj~ICF>x^StUHA;+zv#sO
z+ywO3XV{pj<oS**alOA8yxMsc&m&Q4HB+TNhBr=2!>)Hyaaw%KyUxt6?kZfQwqBiJ
zlK_X#JspuNQG7sRhH~h{MlmC~FA`@=?ESziJ&}WIx{?(!6~}0;@3V2gd>7RgSE_{A
z{=4~@Ig*E)Tju!sHSjKQoXZJ-h&2xLtNN0><ULgv&kl=^-};x15@+yP_oX<?^O3r|
z;nRuZIj^PrUkCIbUjml~4G)it%TZ1>Muo&71KaywAfeu;B;02^y}*^fH^~qa`_C=-
zVW{Z%0Z|u>dF+ytoBJKGJ&=)=y-t5Kc5n7ARe3DGk$A_BI^C9W!@j;UPa=TQnNRmM
zlTG5YXV0WPJ)276qsbZ7Up1D`B<GSU1arPT&ip|yP4m5cVZbgHwLF{n3pw5iILf6`
z_q&(8fEh`FuEoRSZZot-dg=+s+N(quf5X4nvei!2Zo#{7>JmS2U)Z+Q)A&C>#lH?(
z9L|=dpDAG$qO8Wi`){9VYcmy_NjK(mHbc?Ew2sp(0?KN@Wl8h&6%q%gvE+nK)yH@`
zVF^Gp1uI@ueh~FQ^B3k&^T<DSp_mSw5P9J*9G-M-wq!M@!=loXOI8t~#!~rk*vt|W
zVPGA_OEFIVM_&G)i|*fEi2)dwL`hGh{>zoxD$Gy@Bpw5%@d059RMfxy&_7n$zrCJ?
zlnv&nRs3&@;fN<%XHU;AsCU6!f)pLyF;!GoSGR|;{9kc0|Hp0O42%fyKbt;kocTZt
z6&M))DgODhSDiz9Z)(~*RjlJaSIPTtQQZIe!T9Qn`jCU%+hl$}`(Mi@@TD88ub(Li
zE#E6`tRV`9ZS)T(s|lrBy;!8YN@L^Wrt9^Hp)%6Ain@(}9H?u>He^_b0lzD7-_O2#
zAohD!mRMiS1f22oy|Pkm8a|b?egMqHR+<7#|BHO{w>RvsH?r&jC-afrgTQ7g`+wXr
zMX{-)i8Ee}T1R!(o0y(P9u~!51611Ps|}JQ`!=VaZYv&1+^1$Q8E2`-CTIbXlIu;3
zyW`AXI8n;D3Qqw5&gUt}C8T|Ok8*V#tNz*w%J$X=0>pMd=?W&WrvJ}(;(xu;4$6GQ
zj`_^&zuc5WU8tgC5?RXA5q_3C#y<N>sNM0}7~E2$|K;`1oaTC252q@i3@$<r$z9$U
zOv!0(*3bU-&A)mBG86fvptu;=>>?Eu6>-i0CGi`*o<75DaU^?tds-Hj5^*Q3|8&j&
z&+PBd6E|Ww=WzD<8sr~y!9RZnjOrZ{1~CMdfK(0{pqt=vbb;E1zy8%`(OW)2;P=^E
z)86?RjkK%NO`UDqP|b8#ar4d1&3<4WQbY|jH1Gn9SYEs+JNYv<`j30qKhG}#-v`uM
X3(<YwEXCwUz%Lm|1&I={q2K=lJhcgW

literal 0
HcmV?d00001

diff --git a/docs/codeql/images/codeql-for-visual-studio-code/basic-python-query-results-1.png b/docs/codeql/images/codeql-for-visual-studio-code/basic-python-query-results-1.png
new file mode 100644
index 0000000000000000000000000000000000000000..84e5dee757cfc7285e61a42044a3487be9570705
GIT binary patch
literal 209015
zcmd>mWms10)-EX>FWuc;0@BirNOyxsOE(D8Aq~Py3W(Az-6@SA-QC@ACTlO(a_zm(
z{`UI*oFB*QLZ<M}8e=@;xyQKgVdx7*DHKEkL<k576d7spmk<yLhY%1@MDS05pHx5+
zcSArRR#}RPy^s+TBYW}2&fL=43<5$rG$9F2HEs&S@8BVy2Z}0?g8Gz3n$|CV7@Dpz
zOja5y5W|@4lVMUPwk{F{g{Hcpns}=keYv`L85tC!<}j?5>bP?m1ViElbnxOn|3Tx)
zy70y9LB=<5isukG?Fuq;_^Yu40~4Ca2Rapu<(0vRuqdPDbSR8r2ysJHcwPOVWMV8V
z2=tVc2Nn}Sh!1H8$qLuk7Yh$x=ni4=1t2oX0#~l^8@K|MC|8~;G4;YgsD*AiCs~Bi
zUJ<l8A;glkdB>&k4p7Ds33t9ajaSeNfoo%cSnSm;rUF5flVn?%A7OxmO_c(f#l5oN
zjaG?kKj!A1fFzfpC_5x04nO*;-@5u>Jgjr-ugCQ(#2=mN=fND%e?!lIqj8_nebh|N
ztj34g4uQW)6>101!TFxEJ}Gve)kOKWtpy+FIDa>vS7w_~sJ#I>IvIc6QSi>pN(J}H
zH~Y84sgx&iy$GpB&x15Jk>y6kOv^B+NOtkpWzAP)Rocw1sUW4+h56~3-UL+yf{-kD
zDXGVOC%VM)lBC5<uaLxr_A4A3%{-O*FKwGeqpWSrUnZAWAIwhO!cv?U4n@#u*?Rfs
zPZlcFe$!9eVhN{KM2Ve3dg*O?9Z~pVYFd6(bg&pD7Hq^Z$@(hDpY{+6vZozpsRi)|
zWjhoM^m}?uc6TX%sXDh@@#N(AUQ<dn8pAi@0w-VP8Ic$nA!w{zu4NmLQa($BIQXb1
zMUA6dAs56ESJYinKoA^5yl`jxGB$$-@f6qZ+B{t~_GwWn6RqF#dxTGZsH*-n!?2Pq
z$h`xoypTLpCc^0OZ6aKnP;O)hA0ZJmQPus=$k4F-_6%|9VBthyd7+{L;xZxAV3S(Z
z>@l7EY!A^-1IQ0CBK+9dAfKb7W{Yr1V~@T)C0FS|G=9$V9v2JZoyf=wqImdFGWtry
zX?SdrcQ5Fj&_BQRc{eDMl)3YQ)`^tBFDR>Km=+H<&WNuNlCb5(5a(Oa-4dG{dm21z
zK*f@-8>22%QhWEJ$0ddr=6=x4QqmzEVx~0R6InvDAmc277yh5{RH0<wY6tX5VdwNI
zKmA0b%D9dCne+_t3=}CbHY{I>KaH>#jw*FB+&^qJtTUXuNxA9agmjJS0U`MIJ}k>{
zoIMXu3K<UbolFN)_o`7CdoY`GGGnssH*|C4@J^1>AWhFgR&IjSh=Eqy*8TPgV^(AS
zvVb4TM5y^;oSn~Bpd55{X;{!|;9QYiAt&Dvwt2V29csHVHt+~NVQsT(!Ci@79$KkC
z96H2=aeph+8iOvqh^dZI4Pro02%HHdZ-Y_xe<kfi69kG2-3g`cAXvsWCOsk!6(1#k
z_WrGm=qTSyge{mY0!zQsm_li8a?kfBy)Tc|kByEcj=hih5#Je$IOKG^;Gox`SBvkD
z?~X@%!}ZMZSrn0hZINz@Zli9}tQCX*XC*V0q!$$ho#QIwGvgY^Fz(RqXzs<g1Xmna
zoX3sFIfz`aa_>amalK<kl)^4%6wv6PC!q77KgM>%X2fD;L>+y>rS}0YQffx}%SXK|
zl#wzgF}~n*dDcwQ{F*VTc&r5Lc#3#+x&(T#%C<!&-V<b0%7n5=huD$!%a4Uw-_&vF
z?9_{u_g|7|q~t8;QM~BYC{Wu{zxvpxdiGL5c`j=@^I96E$UGaTuv*uqc^bP)!*SCw
zZT)b4b?Di%4S&8u+ia5T^c?-H`8=V|Sp`cu<P$$~9JE#vXvD@8IJGLIPa4)saTNL`
z<UXl=bbh`As}kC4p2s1V%=`^x<7{JKQ*i!#&t(sRSPX0rM&YaCi*^dFW154RqnI<F
z0|_!W!g_o;{d`8UiFvAZEpuIergPSff{a3e!i~>`C%~i1zKUl~s7`o}uN<KpnTVf2
zIQO)Rpdvyg;sW0_xrL^hMux_WrbfX?g<mCWOK5EHYw}lAM+wLNjq?vN13%2Q%)gsM
zuOpv8oS>|ute0$T4TPuEnCR~`l;Bk36yPM_pfO`J-!buMa%(kJag;4<C1}l6<!O5A
zlvLSP`k0u!rYxPZa~w)EuWxaQv#Hp_<@e+d)r*`fZA|x0yVJkX#{pw^Ot;mo`#IRV
zYVO!iEal{YP4ZS`x|`F!rM*mx;uFlU<27JwesiB$5yd%qmFd`wG)6tRW|8EhVWUxO
z^>qi6M~|mzhP=kY+Qfz92Jfb-{#|`X<DmC!`-n+Zw}euBezZlCMSW7XMy*D{q=_Bz
zf%w7e0}!cB22n<M6P|(Z0&!C#5ejOwN+<qN#f8q^<g(H^+8OJaFNPro8Nw@V2-ZWL
zQpe{DqId7I-=X-Ey~nKOJXC&fG+ds!@V2b=d8=8gk{FYi`n$@YQPHFz5)@)2N3<E7
zbGBJJU4nU{=aC_ipTh8>Pa~KjcB4PwR`G3{S87+X)v-Up#RNIhnLEWyX6uCq8QYkg
z7<=LnvgnsxUSm{I7sw4V=d!G^2x13^hDY!dT%-{8FmFV4IWAvxMIQ>d)w{D^+1^sz
zm$qoVpmR%HOnZ@hC@}KO!D87y*6O9hC}UP|sp=)o6wj5&v74-6-%`9?K}<oF<z;1U
zB`1Z1a@Z$oJx*^4kNh91X|($W>$TRC<)F~!)fZ3V%Xo9x<D$5vY+h1sp^f@8B^8zz
zqV-cIW@u-XidJUZ<o5OrFlLx}T0F!C3@)v4m5l0F`FwAAeZC!FmHG6@>cixA@qiwG
z<)Fn}%vr}7{f?bY>5mt+OLtv8kqTc4zV5t%^F6%E;!|Q#ik+<QwH)&&9T7(KwO+7p
zbRSwTxw^e2gvEjFgw3cqte(B>J<gBKXtGiGG2Jv^J9EGHV=sG8kYCr8h+dWM8w=6w
zS3?VLPz7D{=3Q}aeKGC~7U>U#S?0Mp1B@4=wNiFN=Ykn>akBOOv;D6xJ|E0AxO$QL
z8ch1s+&zWkLd7DwJgqp~@PzY5ok${#$JH=oEN4hpmsG93Z@bRjem|Y{R?Gl39QA?}
z;o0a*GXphe)w|8=*R|T(f?iDLn%xdVE0IslpTb$;SHaS@AZ&%=Hh0}kJB~h>p3qMe
zd>FgVznB==KHkZ?PB^1PkwLkO9Ek*5+zxW_JbU{6&isC6sbboqe~=zL<C5+sba7jQ
zG=(e48phgG7w=|S>TY?`-mjc=Pz_U4X>ip1X7BUG_x_^Y38cxi5^&?b+ub*miO8T-
z7oMFN>zQrasrk=VHC83fHoo;`?O8bmjy@Y#ER)4@t^x<Tjs0IeD?E){EtK4b8s~q^
z-+SJA4jtsr`<{^Pw05*RdnY&DN*zask$w?od6>JrnD(i^cZ5!dwowwz5FlDbX}YCc
zi5?RBszk38o?$8Y#l!aOcDMAxzB^okHAp|qK(V3kMrCQJu_RJI<Gz2dq&ntPOcqZp
z&%(T|d;azQp=avFK+f}==<d-jnywS!Pd>cIF=u6GDy#VxnEk>lLP=ii_oJuZAFLK?
zD(x0JbP-%XV~dbOD@sEw?ioSQjX(_ZL6EV0*e}S3`EZY#OmUduR(Ft&!4JXU0SVs^
zNw$as;VB!Fh;yVA2}>3dwh4x?wqYjZygN`W5u!ite$N`q=h|QD*R=3-!r!;YiS$8l
z{voaPqXyyO(3OF!CwyyO>Xa>jW3A0JWy}>6AQ*sScnBCs0ti^(2om@bf+YOoSQ3&B
z0{XX~LqR|UTSCD6{uxE!`{SSYz}MqB|M(7-3H9?62#1-_KaZh^9zVLl{NfDwhF~wP
z<p=?RL;d&#Df5yFfYu@qGUCrw-5__taA{N$Q^DbB@tLt8RH_aBH%*j8TYk{1RB+F!
zES^&bi1!}#1g|2$jddKv5Pqg8E>10lAa%Q5P!TjgpFWi`l`=O~zj1fxQlDS{x$b&v
zKc%?l{%pbx`U%sy%`g=iB!aXE6vlf$nE(24QyFUIVsk_w`M*Eq&&$X7K?&Kx{Ox<b
z7hy$z(K3lNEco&7-_@`!TKHZQ@#jlMtiVV{-+K|!E^f(*K<$Ye#>&vx<Zo-@{^h9_
zePPT~Z6<2D->gcf{B9ydgw09%j%CR|KKLTR4|Mr?*&+Y$KUC&Z7_7sppf9<yf7ASc
zEk9$tXwkrq=BNJq-YX){^ecI)%dGbIeE#S_;ANqjKD*7*|NW48g#rodRkZZF;HMA%
z`<V0p4A@Dnb4BqFqyN`0En)>vw`hf;A(!wsqWkwyRiy^(#6aTuzwnN>m<XhSRju~t
z|3y$R0CrM4s#W>>-Weu<LcG*&|NioS5fo|&bc<iYy21Yo?@T-{OM>D=hQA*apJV|$
zsR``I|9$UN1_7ZsVPB>CzX%F7z)t`FEZLSowTrs{7*4}bP-4NwxIxJHqi<uyYS$8V
z+P`ZU%*B>7tNyzv<cb4KZ$4Vd^dC&W84I!8m?ah*G$j1c&|gWF>@+H4Ql~wJhF|U?
zUlPJ<e3<cX)`pEd5D$a~L|<tBud!rkO;y@OU=>)>bj`3^+8*^3JRbtW?Qp8!Ew}nM
zsg}3YK7?#lSXQTeSqHV|^KYKe1Ke`is1MEfU+0iNV-pV!0ngu#s9`g`{2vdW2}Y3T
znR7DgqtCal4YO;$bGbZhM<X0uAjJ2*T_Fu#c(}h<+9_#9z1gi$x*YPoAKQC<yNufm
z?>Hpr>UMWF+1^W=F}runlz9Q~#_Sp0D3$o<-GDSSog`9!jYgC1wtU!$YfuSWi$I&k
zhD^Xk7r`^{wv?NskN9xeEv&6yf<Ti@MiLF5x@V24z@;3qezjM#Q0@4%NCyo=(=0&^
z>VkC$VJQ4ptNN!?4b#GU#VK%WWrAj3Z3v)n212gdT}YbVn<u~iT(F!cIV5P1p7DDw
z*^@NvFRDglEUA-i|ITN1d1&A6Jjs*R%)^lmc-H8s6E`|o=z24!U7h;LT$RE7agx!r
zWj@No-GMLmp);;I>xSJ~Rhnt6jO<wA9{Qlb$+tTG6m?CbcWn2UE5V)zjWtR1?rwi^
zm!U4@Fv~skHRBUhBE0ovlPHk|Xya$%Mj2kmGHxdWJna=jLWKI>XW#X|3XI#d!s14B
zE4F<!*MNyx9F=1w#?dtNXWRN1*TqfIeYu`$*S0y5lY_q93P)NvJx|2v^y>2dqM3Bw
z_u<ZdOo8WVeOQ@5pMgUswpg>zUEgFVF>>Cjw&2;g$`Y&Zm0W`hbAbpclhgT>1zJCA
zvsdSb6-UwC^W%QjU;tRu8rL<In=HM<jZy=9Y!}?5`PmIV+du}K-`t*`;iHYa54c(2
z8`qe;(fB82=QYl<KVx6y1mP4Pk~GGW`-kBj+oY~z0->LQ&y`uk3&#cTi{M}qk53F>
z%ltcKP1m`zwl*YIEJ6!<b~C_$6-z;cw(ti{H@4Hd`muIHf)`A_ii})B!hjoILf;ns
zFw!c5Y<jqFMp2Pxm*~^3{YU~w>LtA-L?Hd8M2PqHFj#oE^a1QTk5DuF#;VhC!Rut8
z?e=7d^kTtjEQ4?LEa3Mb*F%W7H+H(*9UCGjp4Tv_zJNc-#&oQ71!32mVfm{l309pJ
zfA!Ebjgf#dem*Z}RR$ywmNd`(uSauUKT3_3w(>KIsZ%Zg30-o%6XCx^!_j_~B{I$;
z?y0qMa?y0rczF?*aZ82RzTb4SZyj4^>|H%&judi$_alL)nw(76X+*-r^91l_F<saP
zvqUZ9W)zBg^&jQ^EQE>LuM66;LEIRJkf3#rekM#7ASKXIG06)=*_aw`M*E!Rgjoy-
z!Nf2YRldC35PrZfZo1wMv%I-R-A5b5Eu+17!;il#=*7o`Z+JCjQFW!}E(EH|yO)#j
z+H+DX3jgV{6$*bL@<p+h>aDy~r#hhs^Hk>vEojjy_YE*l1Rgs@)OH{3YNzwfp6^Hj
zNP(|U)9a|S%@6XfUCRPYoDNt8b&3}3RNnF`mExuq%?F*3R*t#K)NLh_$HXZ$yT^@l
zkk`Zry86?%UGDAbjdafr6VsY}X9A?O8{jQf_|ECUd^#5C?unYNQ6)0}0FKv){wi|K
zmbZ~|U51c(!)9UNyYm@4T|VcbDirufn~h8<=8xf9q=8&!9lBX^R5A6I8cqhoN3i$n
zc8U*ypsH+5(S-e{)kiTrb05%&qr((tfZ_OL;|?$x0;$*Gb3+>9C##q-sA3)5?Z}+s
z4w|wHlS#mOG$2Aw><CX2evWZz0=~zDG2Gp-E2^466u;TtYBfOCq#S<E@s{)Bj<~qT
zcCxw9@=2nOEj~-*>F6Qwu=z|Zaxi$iNnip3f0~9^w>UDQRJ$hk+SOROu0Fb;lW&|#
z4Zfj2e%L|@Q5=xZi-iP}p@9}QGJN&Vn%3&+Lod*&Uk3e>--hd9ruAF8<s2{$Mnv3J
zW2D;K(S(Wa&q{nd-=7lN);>3M!l4i#K$5>psG2fQt-_Kqy{QeAT!~W>!YA?EJz{&a
z+Cz73QdifBLx@g@&%a+Q#=9IsX)-m%F?xNqkzw#UGa^)4G{@E-c0GETPv6NR+34DS
zGb=a{8kLt#Q7!4%G)Wv0a6N8CYTu58$`ugMwq{2pk)6Pb<`n>vURhav2Zo&Z5($Nn
z=*dCDiQ>}7I7ODEjj*4A<{b=?6A$G1l_nJ<D?W8l?Zf>|JNJw=rrRX3fSWz<-RYRz
zK_b5f))Dj9)!3!CNGu^SShme~=X94}p1xktgdL2F`O9w7r3D3V_Ly^zuQ<;bvr7tF
zLc!wRl%ENqxM95HM|$JyyyrGCwQQ=sFS|Rih~L&-E{F4<MWQbuDdUd7vr|;D&oQW!
zoCku)*%;?@47R4NO7_O*!9LepIR;PI34DQ#&W9J+={&Q;yw~y21P(<as8UMUE>1I_
z2T<@_51_lKZ^QL(oH;tev)Qm@3&OYySP58s7xxlq{z%R|wCsH`r{Or>v_Agh<uAD+
z4BjcqN<aQHZjDX--cY|3Z6DE6zX6c;d8aoXcR(o;cU77A3sw1wVNs++F~NL!dFaI5
z-HIW4XL)_}bl>}{AMf+B<fYbt1)32XNbGXS;_bfjpbjj>s~@#A3qS(ISA4cMUOK7o
z8BCk*#*vrowjA27$iJ67q<(*U(cJuUPzisk*(<=j#Sc<BS<1Y_6Y!yC?b(D*JFs!#
zN|nyN>1SSgFNVsjbi;o!>)74pdu3Ssdwp|F=TD#ifn$-k=sfsU^Y^YwW^u?agp|D4
zS7+??3>lVsc(bMF(^lPd9eTM3y?2<3yhagprRyK8f`I%|Op8XmSl$AK6bR%PS~hQx
zbHQY?qDAD>i4bVf?ExJ-4?Y|8K6bKzx|#sN(_t~AouV34UhgG)0FYo!M7FY0$|{$H
zerUPbMCIQdrbl$*Pm6Z`y}bGT`MP|d8n=YWKIn!Cbo=E2ds{=CTQuY0W=?chwMrd9
zCG;2kw>;*=6dxvl?Mp>SvP!^`6!fr3Yd96+usdauA$ae+2A8#$F<l{EnX`~59iJ5F
zP45T!?Ga2$pAqzl3C1Zme<`l}3|#ikuIbABa)tCEIaX2_Jz!GX>{}BTu(X4}u76<E
z-|&bISO_Rc`KsYDv$-J(kr?6l*>vuiT{>Jk(*9VJp`e~Y`crYw*$wy;^b_*&e!`j9
z;pocM0_VOtFD;*6fYU1$|7%a4RL|Sbxp%9yj`33FBW@mR2^xrFn6dS~4-zZz8BZrP
z1$7+<s@RD~E=EslYUW&Y+}2Yp5Kn|3cl_e|b$G@S0XlBmlsAd!+f@V<BBF&uPbbsZ
zjY)DM>HyGjxcGf}3BT;(W`R_L_bD5SN!|?q?P2?hYKs%hnC9s3;p?5!az69GQP{A}
zpr*9+i82cQB8g(Ay3PE9WgecM^}PGW-V1>P@)^5k@7p=EQ-K)oo3kAa#Q+r&qlsWr
zA5CRdB`U-04T_$Fg=XJp2LOINu|I5u>mGv7K2~v9Og39}B^XKL7?lw@Z7QmsW@rEc
z$<i@NZr&L$;yuwZ5X{E(u?I4G>x{B3J*SR?&uH21UT-&$%}J4ZW1Y{rE<g+gpz_g~
zn;F7pvm%2i#;S~iiQY(?k_emL+myCG@vk##22v)!!qbk$(27AmMr0yhwkEi|LfupV
zNw7&K^h*gF)-4O3|DdFy-X>q;&`vvPnb5Iov<I*sY@SbRNaA4^p<Tz>ZL@NYWTz_|
zQ93+)eR+b0{xc%iSqEZ1l}|gsQxLn%IZxu5c>qBhF_vf_eO4)W+(UV!FPhnXW~7a$
zS=Lc&!P;=x=C*KqHRK!RtO#Zk)YFKj{cDYo$#Vx+=^Ur$I_IpG|K)ba;6Xe6b1XNh
zkH71@JFQu?T%c>EjS9cu-bX=6GUz848s$Lt;3MOfd&@UE;woYQ=}oGK|CVw33-Wj$
zK{m<s7b0Q1f`M=6gmw+=*P_RkqZWPS+jEkHHduF0E)@?+he>R6Tc3qCF8=sFUhMmD
zvyiihAq-Ky_!cSA+|i>@S7N$Xmo}p3%-t7yW)gTRx<Zq?)i|a7@sjq+ws^6*a>+XY
zB{w^vx8>fYT9?b5@;E4j21T<{&e2-0@K(+l$$~%W#I%CTOD7F{1;g;eN1v8Q);T^H
z6Vcj5rtz4OanIPdqfnNt))?_`C{Rh=T1?%9>_8jr0*Q@2tvChVA6d6!zjh_+aMp3C
z^Gx=^WyYokbqHq&zlj<-qo*K0U3*a5&buE!wX&`9D?J7&bX+J#SnZqB&5<K`<PdYh
z8zEqqsxA3a;F7BPH2jyX<dc6(a(W*D#<^rHV8T4FA2YV~jScArORy)U?Wkzoq`qET
z?@sCmZ_SeQiqlSk2w*6|Ei#qTV6K^Uy$Tz}vFQ&|0igDQ=mu`?-fKeeX#u3XlQ7>q
z#wj2$by0PMZg%hbz(Wb6^?JY8pZ<L?=z(`zO1_BhM<maZ%SpP)M7^09)mI$f#OG7b
z94DqlUUA)?)AkqV+wiu7dU9_q`6-hM9_@~;uIK!{^6NH+)NA#IZjnIAPER8EGTiRL
zlS~!k%flt&Z3*u<Gkh#C=T`Yl#ZEy4u#E}1aIAiPftyV`515$V(mkaJ8k!tO&*>Z4
z`!{b#5gX#na-QYeFom8c^%)~h7f1AjZh&3&;f_e$KQR(h%S)stV}Y$S)_AOh!I(PM
zWfEQwA6J$FF%?5Dh|^f=HnVwap9sODVjnyWuUq?TAIv)xLV5co|0#e&5aj!(6ZG8I
z68!yN+=8wItnOq3phGv4#I>fpD=|}`63?|_*oVU)4GRQQMqda|J50elSsJ*=2*bS1
zZ*Ys|3R&pMxMp}Ml$Wc}y`swit1rE!)fVFKgSWRx(JVJR)#3Z?P5dtD!=)7M{^NO0
z*HrM7uf$$o#L?)T+<I{Pax1v-?}XHI&pC}L0*k!Wv8)p(ya`#zf;j<!2gXg}LIxvn
zdD2)ioPsjjr`#Owt)JF%;(nx4q2y4ibSw~UdTDFq?9yh(_`*mx6;E<ZuLLA!Dz?V%
zZ_Bkm>^4bmrwXfc3XK_ry^7vISs;2VxQ}$NX+d}+o#R%5-@z>QNAH0vy2Z7zbAYkJ
zl3GFdE_rJby_7vW??WT71N%1@=EewdWvi^d-@V`Eql|OY%4L79`oSa8ge~kHh$&Er
zmE&C5CkFJK_Iu2T^j2qcV%Gs<$*rJbt0akjlknwYK(<(|!f&@CAoGiJ0(MXaZz*3)
zmZr<>M`VnX*j5P!eCR&wIwFCqLDcxQ1?nVtfM<aMF%IvlA6~79(tkw`)ThW48uVF9
z;{f*ivHDD~7<j=bV!=gngi_s@>!#GGec4W6%=z>qdFhH!2VRvT7|%@vY`;jk*q$ZN
zRnLXd@bWHsnwxRnMD@I^n?#4+J!uAisc}@6vC~NxlLCtEGf6%*<;N6)kOE5`qX>IN
z<pX<xV}Usp0=)q)GWcOP+P8!owI_r8xa$6j@bj&B4v{Mu7MwA#_vbau?}%Mz*_)zA
zVjKW?>e8n)-fkM<QerNz2bHuckhk*IGcv>#9ui10cX$P*+W3NBqordWu{YK(3Nas-
z3o5$5A80y+0^c%yUdOXspG58tzW|}TClB!)fY?Co=uGc%xwiChfAE0#MULMbXe>nC
zNMAe_ta+5OSX+3Dj#q0MyeG1dx%0=Qra1>7qh_3T3xm~~e6S+b<v6K`DHp~0$lw}D
zCODcbZ0lvHy<|NP{+YDRo9dB?)h033ZttMxOl<==sHf98TR(vQ&uh1%PIe#G>9IT6
zHqmnsaYn1>H(o!p8{x;IzP2dQ_pvrk>kX+KZye=(DW_HSQ3je#Mkl<7BO&yF8iC-e
z(Albj*=myg>J2#p)K|NZ+b5XC><vfwi&929Ai};({ZkWmN(fF4svP2s>^|~w6Z_Zm
zwdr_!SJ|J!94rDJ(5v!p;C;2r_tSWwIWbEfHvxaG>P<%R+F<m^ChlA2Z=Z*)pBsM`
z?w4b2<eCVufCUlVv*sChl`G@T<Ti~nhF&gqI7XEqn}9cx{Xfw&7|bpS|5=6k>yy8~
zpscL&i;mJL9IZ6d1EszG%zg#*RHpOV*Lb;%M;+=Jgqt%gU3-V*>|;RFY0VTl{_I|t
zS`Hc*sE7VRni`1;C+(#7nZuxAHT?ag$7;ae7>dy5bnIB#M6!3k`2q4B0_Y$Y)LVE^
zf8g_Oi!R5Yd1_fmToUn;&qP%GJK-{!q<OxjO(;|K_4bz}a29+KfR*EUJ1q&whQF>4
zEVOZPi_f=z!lXQot9@7sCXE{Fr|1z=?Gb_8XC(@k=sIPR_YQExq`W3l>2&E1X-nMI
zXuejf1uiz$%{#}u{FPiRD8A;Y)jP!yEN_TzJ}@3{EqgIGG16oCVA^(+(#NwSqIlLa
zf~b<G*GouD<CMtu25gn?OG+IJsoq<b&J1+j&KVsoS`ZZHs6=y{fYR7}H&7;O%X)rZ
z+xL1aza8Lk)G=5Lh}3m#sx(o=LjcU~`gOlijVGG%7X;z&LIoh6onS3<e9qETNJ9x|
z|4%&G4O-?Y)ag(=a76ZoOIt6x3M&Q)E^O+yXqd4-VX0@LS?@AGKnA47HeRi#T2^JP
zEw%>q2Q;FqfwEZfl~>T+a|<jigE<6gHX>tqLi1it&O42{R-m)9p@2v&8SwX(u$Uvc
z4b_RH^$w-TqC_<%SKXdq8Bg8EdFgx|E&CCL9(68|=!JPC7JhFQKu@Mv_#K^^26ACs
zMQIKTk~DyA%v-EdfMS+*g>Pj?#s}4lNCHY|lyVoqN=W<?9khZruEn(8s_yM2F<z)=
zr9DY1r}!}@AF31YWMKL{TnG8Dw2p%HfSwl??jBInMo$KAy!EVj+0h!`RNr5-;KPse
zToC>6=$4%Bn@;^W&vzt$k^nUzT!iF0Jgxf?(NsK=e&GuQmB<dH@R~Qiyto0mUv-5<
zjE3ai8hEkS<?RB0uk#j+XshJOXLA|nYWwK#hu^={4@<RgL+H!(xxcblJCkLcIsyJ2
z%0TT{|9j&}3BBd&o1JBjZ?C)FK`$x+*Qc~KpfF(xzZjK-(GZv0k&$bok8-~~>Q3tP
zoZ=%ZZ|jZ1Y#!yu1Ra$xHv$EJ!_2ZEU+k!ANysqp165&)g<R0Jr4DD})Ye-x-bKH1
zH`atmX%>EFw!s4m6LF6ix9CcF*Hk9qNL!cdS*zl&G}K>e<=b9hEWTG-ZjASbM+zo(
z(Y)S#`D+S%G{I}KVV(N`s{QP+Gx#52iU|IAL76m+^KzD;M(XES8>!-=yGn1_j?Ftg
z=~+jJE$!6Hv84S%yf3kjyZl;LEqWv?`qO;{N4CnHdlO@XZ7YN*tJ^lCWmLXRymY~^
zj^So6rZ%YJn%Z%hGD~un4O`?0ZNtmd>aB4G5RNm(L2es5lyRD?{&*r-2$ximvih-Y
zLhqH*l_X4oxXjwhn$Y1d?&G-}O54}Tv(j*cwmjKKK+z90Q0uX<Ox$XLc2PyWhj(Mi
z_nJw6tzTCKhktccixjVQb|)9X7R}mFkP~Z$duyLOXJiWB#Y(g=%a56}JSQT_=h*m^
zIV9evW!ZYf)r}YPu0|UOkq@V1-}5!(b0+9MPQ1S(M%{$_ExCP?Ui|!}7}XMSPBvzs
z=Ue61DS9VHY-#+*Z@Gj?H3yADLPl$9-Qr-Yz;-R_jX9J_Jp<Q?Le7ewBL#o>cDLru
z(3oW+R{p!)vq{_xOfc-!mTqs-Q=*!Xi&6NiyNd;3NwxkwBVy&*7%7sJh1n%eFv4SD
zGn+^OeeD0rH6bD@2xuPWjqV3kvjWY}HLnI*+lm41wINGt{#;N_WO!cmSD=ac@>o$W
z&|QkyS=C8&BY)(v%s27igG{cgWlXiHW>@A3#gXn<r!aY~9hk6Z9D*7OFJb{ZXb*JY
zrm2WV6tiYnG<rRL!FQFI{#GT8#RBj4ff7io?6rJqDp<7UrD$J|VwMj5Tx~;R%`M#2
zrdmPKT#vKJX?&m({bw)bXOH`e376nGyV@3TIu7Mv{&VN=*D&bLxgpV0<-Msew&Udd
zhfJwa++>N^vt~oW66byE1(iYrTx0RB)JBHxVo2(vyQm>cAzi_>g*g3T=jHymuX}aq
z6)@z=eY4)-FvxRHnZ|YQjVD<pf+>=SFUdYj42dNtU56cyZJOU<Tvij5(dPlG3yoen
z+=VA+@)O{bJb~-k#a1R7@p>u_Doz?QJ{umZnrjLe1(nUb)+&LL%bqmRnz?<F9m?Os
zsijsH$PcfqAQ$QnnsBcZ+Pw3XU!Cc55j3ur<bq@>o5t}ChF%q_(h@Y#KL90h95+wp
zH}2Yv<QywVQi^8N2!Vf;)tT-v=%i{NP<cGD^0*49=a5(%@O(~E7fdVa=4oJ(gK$h_
zBV;KU&sXR&fZmUm&DR0`gN7r#ar(%P;)_h))i{;(hJ>^sUdI#4%9Czw`&QWgR6KWZ
z;q<0WUZ`!gAFIRCrTpAXg4&xX%C16F@m^1$<c1!(0Zfq>g(BJGdbZ!mZ@xWT;9{^O
zp9@XtJg@p$L&@5}x~#K}^!_mT(l*>4tCeJoh8?``u~USb|7pr3T96^?`XH3g1NqP0
z9TK6E5K^349R8p$Buw3Mde&M$uR~xnGoT_>*A5fvk>&VG12lta=tSJbh#5nUV$E`z
za&0VAu;1jizCQJ&`a;vwx2~|IMe`hYr&7%FMx9e!HKc5_zNb1Dr1{8Pd@oPDFv}@3
z>!+iAb&UA7k&1W43*`IV7$!mb9H2oyeh*5L5lKee412nje3rR6ZPw{f&`>G9*wykp
z&~NG{z(2Z|wc|oHC&-S0vEk!4szY(j<UCEqHP?#<5VS3TzLf=JwbI~x9~<fdN==kU
zQfkMJxgMwE<>2jbL+m4x`%hdpEJUMDbut|qUp`gk<9QJM@&0VZpq?Ahw06tI>6lXR
zW0zIx2UBSa6y$~^^~|fBNLki{v0z{`=bm+4@MeEBp?+Vp=C_6Bhio;<DUce~6p($=
z)vfe_F8<=1=|`TVVZH~Ebsz){0ZGVE<l)Dmj7kxJ)4i7Rh3D9C<SJ<i9KxB(rElfM
zz>@L5w~9CWVFrOls{Q`64K6Rl44(;~9D72+6fSKdkY>g150hvVfWP!=8A+)E8W^yW
zXBrjVBs+Yu_Eon7(@8`f@frhLLyL&#JbbyJu|t|}zOgnUkIgLqS6(uvt^gzD<Sxsb
zauZAbjfmY?e0TM+^@RuYXi9k3SViR}8z`4e5RHmki|hBd>n#lGYA608$uPn9e?-b~
zZ_GON=UR0XlGSWTy9=wEN1L!3S-(FcRAaR<36&0S3bk$)<A!)HxFHM_Y6;<k987lB
z$B6fSTxSf+t=h0&^e>>lTT=ZH8?iL?hEC8N8(fdRi$wgw+bw~s$EDBngpy)ACz@$0
zCtB!(`i?$E70QALN5>bS?cs16viLs4&YfM)buhI&nI`F;bud(fv_L>S4EhN&JTjNr
z`j^*DS*i=_tN@w~xj^3p$;3{z)!J^Qn}EIHZ!|}frZ*cWUZ*Fr{;{QWNkG{!FM0yK
zHsh7|iaUEX4-&kGEzokTY2f@CFyQaD%;(T6XZ08J?8|~eWS4R=^3`)LGcWUZjIv%)
z5u!u_9%WkJpst@+mKIOQ;>0z%*2^w)nnZ^jeI~1URV0@aF(~|St4W2zMj#sDG6QUo
z##otHqj&c=q?`Lj1HV7XrZbd$zzCs=5t(6oN(5#qXfJ_ceks1t{CkJXZP27iLmXRO
zG6%lk-D^v6N6Icwbj9!A)peK?ozK2&zy)egeS*B0_q5Y0RPSd;KLJP%ZT784&XEDd
zucdc7L2WsfXz%K_0ZoB_uhM}tfK7YtlNlRA&YlBCzNORH=~pLxU0^4_`s{oi0go9>
zKREI_20sK39Ow^5+{!}Hl@bq?kL-wV7oU=&c=;IuEzgREk90Eq<_*wg*dLA=6H_~5
z`vrJC9%dh8^4!89hY)hTdeHz?d3H!?3TrEo6r|-edYUI*XaeEug081Nn>dsashi}5
zt@R*M)sWzYH+3st;kj2exsIlD#JSOY+{Y-zj=hnAYdau#F{^AZ0r|~XB%TY;EMLXU
z(CAB~*3*|CTPaZcnQL^@vJ*T6jyf=xfUPW4D4FXO`UvKophP0BNFJBOJ&JgI$j4Ex
z-_W@1{3&%|94U=LPPj0F7?(_7lR16`GMgdCRgpT-$8Qm7F&*Hw>l5MXAzc<MrrhY{
zY_)*N6AMB{NHXwo=d*TCDK>F$e^4(Ud%khueBtQ2Ju_z#m*E)!|1RXkSJxAjwb6$Z
zaj#RxSRCI>iYD{nnm@Dbus75I(#GgrofCsUYWpLgv&|QKBvw(xm-}5JN@|x8m3t&9
z`0O&g&!^rzi$DfALw45v)hX8ngLl-4n%T3@WKCWd<R&5myoRg$Dys6{>#|2SwjhR&
zPLgEGIDDXAYmj#(;@HDg9Y~4QZ&vI9&Ic*gwoYdEbS+I$;OL_!S55>vt1(y8BiUBF
z|3`thP3u>|jX&5-(N3RE912#5>#*nT4@1s3Zd7c8Be_&e6L#7h&NhZ_D*-Z{5IQr9
zGnpyoa$4g`6u)c$c{SR@^<?uh%OJUMl?=BM^A3<EU7z9SxG-wvZUt2YFvN-p8ax@R
z#+d?eu<pEk{&U7Xpc5C-`51vc&M*;L4mwqQ!}xEH_SI!Ny2mRUE&EyOts@$`1w8=&
z1_Fz&=<wD}5l>f?c8b8N5EO()s_#>?KXC17{YMi2hlWB>0s<tD;X;mK?2`FflHkcZ
z5Oc(RBvm%WrO1ca%25dJK7}^niMY*ZKB^HzAnc}RR+YMoX~RgI$w<fE7@yW#m-o^*
z2;O-Df{2_?;akoKJ|cJcs>v{FmrAi{)N7WVv8}$A=9FHv?hla5oZCI5K4fp{Z%^}u
znKh^x-<X=Hud0SV>!vTqa(FLP(2+%_=UU@nmuo^k+n(evj7VuHS+NID#w=2Pt9<Qj
zRs}3TxOF&OYHV`KL$dO!pWhE4df-QBnX+v~<<j}-B`C{z*E8g#-(9A~x<xmQ%8s1X
zMo&o*+y<<Ym;6dG-oQ-rL6N!v%w9U%Mw%mRUW-}a#326x7NH*3d;GZs{X|Rqbocc`
zMR9xwE+Bq_vDGz&6k)3exOKX@xX|;Hjl)p40Oqf_WwS=s1pw!&)7XUl?ZFvpuSFWv
z*-=1pmy8_x>p=TD>A09`{E;SDfv;XmG7vgU64gt>ytjL&=-EeCet&lp3;>13R~oa`
zfDaQ1%ds)P{@y(s7K3q_^R8jDUrdhKts(;Y>QV4Y<{hq8tMsz%Au8f>KYVWXaP37o
z)Vw*;MrFPwRGTG5h;%=btwZ7dkvX<`mJ`MI`F1{bK*Q#dQ$_;{VG;TAoBjIkPp?>;
zZ{GwnY3MpgBm>0Ga&`7aG8M<l+}q8jkOliR4){f&`OJu7`XgV=y~?L0M!^CyXE1bK
z!)Y)d?4pf@hm(*3j&e;<Q{Re*$-e+9XMP)t_D43(=j@9?r*}7zqdeIg2On+1Y}9)o
z)T1mFg|1db^a#pS6rWKm63fj4jKmivbra8d^cTedgQPs()pKVWfo1S2>)moU!10o!
zZ?QO2lsY78nIpgvJH3#dU+D*2K>jFAaQJv`Q!_VVrYcxG_sFTj`ieW7$`a<`6`!V0
zuh6bS{zXIQ@9<W{?h4H>9D-(`PYj0RiNpx^fX*?9Y6J&#S`M^7n=p+?Vz6TdA8t2<
zUFo14v<UEmAB1=EGoxWzvD^!gV#X^Zg{D&zkU=ENwAV6^ikAJa8|kPr1)Mg*Pdr8*
zL{oY3TVW2N4afbf*?h1fPU?Z?X20^y3G~Ea^J!pfxU{dOJ()@wM=8jNv`b#LaD{Y9
zw}u5pT~0Dpkl#LLPaIP`FjQHcpb(cQ{+`^h|KeG$x324x(~*oSfJh7qXQ`vxV_?Ov
zO`(9*f746NE^Fd$LCknbcBo`;Ks7?K(SB}Dc)@y4e!a-cvv0JWUN~~H-lPPr1u9z4
zKr-iBOml0BT?jX!AW@J6A9rQyWE*iC7d%9oP%Kh~nU_oMq#nDv_Hy<uYVQjNy6Z`N
z7weGvKy_)->#BWTUr_JN(fpIv#&|Ds_Zv4)4+a=1qwi`O%#F7t`20BT&lM?C+${65
z-np?x>h_x$dT{C=18vDy(qjYWgfF=`;6V=^m`dvvE}Oao2Oq~iNFD>21&2SDF_J(I
zCDiM_Scns9w*?w44BUmpQY&H&kvsD8ssRvI`1q*E3|}bZ+t~ijeOB`O%h04#$#c8!
zQ3}UlHq>uOn6gV!t^`WNOJZ?Io>5Gjd{CDRUx_a<jTX9o<)m5h0ARt$L4iPX`JLyd
z{DGHe1d1<+7J1v;AF^1)2XpktF=^c}4wg(!UXQ&Fa&!RX5NI0u?q*&kWU>&(OhP=y
z;v|aMQrQs4O<kuAyd3ydQ7?*OmkbqD`eW~}cS_Iz;={?wZ<$wIQ`1tGpd;2PV)*&n
zIE;MCjTTkr21;9?^<Kt8l<L|kITU?s*LbGx72R=^nwQmz{~;1eny>gE1VpJB3C44R
zprYm2r~<Cp9WxMd+C|@Y$}-Ct!oV|Y-(JqfhBMs$u=ox$^~M=kgA7s*pVU#F^peGz
zj`MFQVj<-H`2Gv={&;wb^@u_3eJG`(kO9m`C#BVGCvuZfJqk34@dH3)T@+!S6Zsh#
z62Z?^#Y=Mrl=x%0_YHuZ>4$zgkhh?H=|do)3aKcvQIW56^oD%$im1bI#=1t8-n!WV
zYnDPwLav)e_&Ef8re9_x<Qw={-h8fp2%D8ca{YFTkrJ-=pq%t?+9Le8AZ*`L@W=b)
z<WHxpjG1yX<#M+W$Q)nHPg7Unc+_Rl?07%In_Oz3FD*eY^C=tDZlGj{>3{3Eq7j4X
z^5ZT>@S*qOyaZZqYYqyZ;Id^p-U5W8C>A7zU!Zf?c5p2NBkC7b^W445>ccPgO4PzQ
zqIJ8CD)e@gGe;SF0I78(v`Rv@ZGyqW?J+-&TYT%_T`P6;jLnAC2iqKG@s{lxF3uq;
zL;=6HuOg5&dWzYN<`b^Z$9UGY0_RXxx--V*75C#_+7&@@J;EZpqV9c$IeE?jtQ|>G
zYN34V${tyF6)K^9?7?sj$w&e<`mZy;WFHT|7B|O%r>+h^s!4d=8iN<9y(hGMbzfr*
zVHuQLvK_VQE42qaL1NA3BC-@2egBO|Xs1X+>0^GDJT&DyXy2Q?8rh9|NnU{HFcyOW
zEknW)X{y=(z&ty}`wc=4^B_c!+_}%F5?PQcyI4J)hh+%ev|^^rZ7+z*WENhNnjYeZ
zJ3z6li`-S^;>C7ArrmJvi%W!m2z?O*9izN&3B!8>y4-7ixM$x26j!74qYDZ=bE;8`
ziGBSn^r>E!mHapMlAK|raFolR3-^F6VQte1naePcE4x-QBIf(|j!@)m>74YFjUcxo
zZBv1?<K8KGs<vHtXQE>G!EzM@?C%f2n%*U|ek=q{0-ufA0+O(i7@c_5dXy|}Zc&oA
zEm)9jx%`0qp?xA{<T?buf*6ta1fN~MS6RLr;sRaKe7_8UaunElXWEIF&L;0nmaT;W
z)xl0wwp2Ib#`rEgVx0U-0c>X;#j(O)V6}~;;pHLcN+x)(`bI+GDIxpv+vKRzO8>fY
zkN$(t0vFNbY%|ssUDz<zjW&RUVsX|IiM%O?L=PXj0WUr&uVo;wJ6fcY{aTm-pMv^H
z(HhFqT+7ST2H7A(RCbaeHntreLqbum>GkhXkwfoVb*?s|1mIK3n?QYqrkA84<_6;#
z0nLWlp){Z4tJ+;)f&j=K42C5|A7Hm<4lO~9b^0ML?w!4Xi_ZzW>diFeR4UtT#0@d{
z41X*EW2AJ{P+~OZ9;iuB9#yG*INrFkCiW&YdD;=r6X0dzKrIxZ+oRRmiQj5VXW#U9
zeiWxF#Og$2HwjaOho(5AwK{D8&5&Ccn!}#}MA-7?jqDcs?b60))63pZm_Y_xfbfHv
zb`DUnuJ8>h_^{D&GA{1)5)3(i$jTbIHt*jVyiRi*#D5p)zGSIkww!PM&P}OVQDb%P
z&q9z7bCamL$nit<lqmE&`q%iKT|Hn)Nt6-Lx6?OH9Ob)6%YrNrIYxMQ=ZgVoUCl9+
z22oHQfY$J710aJcJCZcfi~EPT>C_qOmYZ|AVxrkR^kOln1-09GBxDRI&sY)nk~wmF
z?5EkG@PgeYp36;RU9m_Y4f20c`N%!GPP}a09uuv?Zorb^z_2Vb$iH-ANl%L}TEz7f
zl^9jNedf~=On%|*Gw-Xlq>(ats#RIZ4cIo`w0x}`rgQdAyK*MVY6qXgb#UpXZi;$H
z-C7QYc|W}|I4Vg`-)-p~ag;x%kR71@^ms<Vbs?hOAf*ixE6>^Q9nUk$Ij5X^jRiJn
zirDuucjDU^@4>3QSn%~7>-3y^hI{hYfrAxP|M^o=k(6qJfN4AtDZ<*GR|^!pCW%=T
z0No6)Dw5hH?bgozN(m?QqDM}ZBfH0Jrp|h!R@}H>QBZrlS{$#(sixQ9`Ml{z3&d&Q
z982COZEV-tVaNGzMlo6q2+&iipO!Q6MZaEqQ3E)XCtWUGMOi4&E<xNyocUu0jR9&#
zsF$Q_vuw}-G%3Q}Gxq@MR+^CA4D5rLDDSgrpf=GTY-^kfaf^m3?=J2FLl%W1Ky_KG
zwo48X`l4NEj5KzZp=)y#InL*IoISTrzHqQ-+0B_XojQ@5(Zm7o0QbbrsFEGoBPg;v
zubtECPSQFh9#u<Or9TdENf^5OWkn9q4(C%GK7BZ4R{q(5hmRnc69QdMuZ5w%V^#2d
z+fES7--T61&!=6bye?lOi!UEKS_lcv``+R0vV7N3^h%jt1f6Y!q<J4Mk*_5prnpt}
z-JYGv(-Y8Txic*v2jv$K|1wq)m3jZV%#J;I8?iF1;lNoR|7(?L$wYAxpe!AH^5i{J
z#WxP@@TJ@O58LJdx(pp7bcmAw8Y})u-Z?NQ)lvFFvlBXUji0DMFwwwJN$KaqBE-WZ
z1NwI|S=FM0dzlw1O2E$FETrq}?LfuMDry2VO%G*YVliB&TlpRIiTw*i#lx_zQd6LI
zv@91>b`dBGtmTRaqb_3_&m4Eour~roIQSHs!{G}Py{0%`Md!VGyE=rFQ*IeP(JP1L
zowwZiNw|V$_=!G1@T_o8Z?^}dv4%G;cahw}(dKdIfrp$$;Ux)4j)(#%3mDb0{Fx0D
zjyX>tH>MIu$ue+B5#3YV5uO_qO+GVF%pIC~<p3{|vR+O6hzsi+>{`P;KgWi!_(l<-
z8GtCBdNE71HF%|K3t@hbS)kfhrkb~@Y^oxvFZno9GNw@+fA(|2BNO~Mkdyz#Nbh%~
z(I^f`{`VHGun)iMFaH3St3w*_tJH3P{sJ}DWhkHD27joY4Ape-X?yc7>Ydde!C+`j
z;}>Gr^PZgfnFI`D*u{rv;KY-ZC?smzhNCW{E_{oK{IF7xgH1jDTP80&OeFz_!f8Mh
zPXY&Dts_|f8Ev@?>@rQC4o9JwJ&r9=w)2_jLN1dZ=5)s?INkl{_KT;1AkSNzUc15k
zM*|CBP-S7RFAhj20K&Yq4UsYM*?KZ1jfuGTmk!T_?Io9Ai{pp^7~8rnC4XT+V1QST
zp!+E1*nF#5q|D{{0sf2+s0pE!XG*nm8qS;q8HuA)5JI3r(I`XFL2?Z9U&O!d{qeeh
z&i557Ftswh<Dp6T=N<gH$=Ixal$HVrKhdf!o=zUJ@OMe@uQ=`nDP$f?k*n<db<}X$
zc;#Jqp16(TRuQw=R&G+13SE8<*=+q@^~|W$uWTLw(^D~l!Jc*8p6#F49M*@~2Xw<N
zl?>iCR4#VPUVt3FeN0K17)|)~_^0{Ll5^eOKr^Wg(5~SDwOU+D$k_s*Kv)8XNs8*z
zJU9UHF|pBvmIcZq_!69w|CN9J$rA7?0{LDDK2DL(@>HYosEbg!;o@x4AbLer!28b^
z2aqW-)XKoq$=QW-@V2(f&);Z2H$2@O(orrndrYFQLRzTe<fmT<asGURe>5zLsDInJ
zp(BW%l~=))JN<U{W(DB<(<wQN&Y#}jlmMn2m&*hz|14epqNn}U#{V=;VweUDkJ+U)
zo~GCS?UPSwfC;chnFSMIH1XE}_`P=dg-`nD!xmmS5y%Bz&n-cRp9c94&-mA?Zz=%c
z<q_A^{fm(Df4<{yiUNm3U>?ZfeAILK?>#PX@^C6J+IL3d9sTP9`(>^Dhr<;nz)UN<
zxfdNj{q^5HE^x_A9$?ySN8y@8=WiO=4+hXsBVKk*$sL6LZSRQK0W+JEsi%U~e>)^1
zDgZM@RwT`1{-)vh4_5gX5BSeh0b`6jTmRCv`<GAt%T@6#05cI<ur|`N{LAnDCtEkl
z0BPNB^y0_=e4Br|6x$$RCZ0ik4<+5d?H!ND$+Y>82W5XdB>tZ*Si?4l^KbvOUNf10
ztI2dG`epx`xPBT_l{V8LpO5t752WZ%0VTP}n7z#Xx7Yo9k#NAvR_uo1e>=1w5wJkO
z6tZ}y&Cloh=Y;fsPnZ5UkDH5e3(lVv!GE2q=qP}Q4hft2uTS_h!kB4*Q#<{b_5XHg
zQN4HsD!|CozxT+0d~@x`vBq#norb@?@TD`$UXJ4Z{J#J~fas=Ru>HO8`Q?_C?Eb(6
zU}mJ1#XmQ2e)-Vj;irU_z$zLp@V|MGMk&MXf_zjR+plJt04d%sh9-z58G)x<#sQ2|
zN-o*~lWR-M;jE~SBS4*%`+wT>-#H(cX9O~=;5mubzZm)jrvIa;>UQ6?842j*n#n%^
zuuOe`XG9$H9WWyG^qv_gIG6mOQQ=FP?>)Z%Ps72P8we3Rz}TF|#r1_3SRni7n+eK4
zA_33KkTX)-HiYg7{>$wzCEG)~7Ez?Pi*QDdb7?>i3*oVQ{W!C^!<6NC42ZZ`nJR}x
z9lD=R>S8tlO|-$#4-IC(e-41~IFct2O@lkP(itgyf4O8Ke4~{NOun>7^33Bssw~gk
zh_?k7AFJLR(>XvjoW+=>&}cT9n!b^5(Cl+&&X~WU<pvBP^kv-i^|kmzL$~DulPgpL
z0Qosr%)NjDj7Yp@+PJ?tKzjg0?sa;3u&1d0=DPjqUR~V)7i)jH6dVj_w1gXgp`4}4
zF-0W1h9k+O!^=S`<Auj*w-fT^9jl43g9mfnho-KP>)%tu2MI%<(Htca2|yh!3GJw#
z=J~^EhH12Hd9+?>-DG|gP)-<UjLxT{?599|k4<fPT|LihKBm+L^;<g4q=!K#LLm|0
zWh(2yFap|HXikeJ@S#Evw<m{>96k^^)Wtk&ekr1lYLZLBp1erzX}ZT|drD(u(Hjz(
z7FS@<@|}|KU1izZ&#T6-I|1!q;N#ewJU}G+FQ_4xEj|t=>;w9cLjVMx*CiMB(W}l@
z0W#QkkkC&$?n0DNg)SGvEN6`1cE93q4hc9mxR%uK*Xgg_=K#Z|`Ds4d?XT`{79N6(
z2=6PGZX07j{(}JBPK?$FaBp1)5lTW=A9d8Oj-q{un&aqJ0WMj!Ws><rW9rxX$@2UR
zhwX5;17IKl1yB>b!m^kYeSdQbsJ7uB2PwWO-RwW&SZb@8kCvSmzOE&{Gc9Elf7tP_
zXzFowu&JXzs$H_fSqNO_-Sb6<#TTwFSEAb=hl1?^=o(Zr@9~9A&t=7FOo1>8m@cc`
z@?5yl$I1mejrJ}99vGlO0<?-6yO;Z=W#MSeH*=t+N40jaDqtW_`t3d_e-k4>SIR;3
zria|2adQDj$C^Z4*P-)`2cK*lxq4<rP!Fxsb@NeIs-;Hf8Uig5X%nCwP3osypia`&
zW*6j7Hn#+(M&W_(q6WZ4(f1KQh#$D$?76l9H`n8fPU1^&7<^{oI;~#01V}p(fN49Q
zV7*9^3Ndn@-<H3BSy&4&h>8g`<WkvMVKANeSOdM_uYtL~ucf=?{fRy^EC@paC-V7D
zb5rjl6BG3g6jO=@>mQY*lmTneu-%q<DKv$E8I-Zyf!vemGr2HGYqc}vy~alsGJXM+
z8c6)RrD73YofhI=jb;mp^VGsOl}C{Hf=`okQoOFG1;@TQ))Y=)Zf;qm(G~vyMDtn|
zZmh~89STBuixMzDCSkmU`nP23epa9V>LfD%vIG$wq|3Y%^X>A>!c8c2v!Ixhka>W&
zo3h_6>sAL-0JLt93!NRnQ6h=2^dMaV(>v>^TVYY)g+y@=OaA4zxry54OnxRefGLPS
zodA<D?_-@c2Z3=Z;;2+sM_{T284%ie;%R<B+>KXJM2QwW*9^X$LPKII6-jpJ!mmhe
zWB5||Qmuuj9eJ$VGUd2C7hT+ibAZc)etO{f5-|12sG#Sn5?mgB>?D2Ij20hLwNJ#U
z6SebO?6IArll4sl%&zV|O72Sft5R{0=<uME->o^uT}U$!;R1*gsqBL0*=|4|tDD{l
zpUoc7Fys%|)SJH6%0p0iLi+@V>^=h+;-+NHjxlO@*ag&kxvrrqZOuTi#OLlMiKC?%
z1>v^=QHl%4S?T>w4%@V}_i(Ab9T<%6r{iAJe@v8~x!VH5gvHH1B}DZ#sMkOq>-IDQ
zNDHJ#{$$hkv~ivfEqbO2#^V@&qn_}K+4SuH;p;7<s(iP1e+dN@X{EcQyGx`b1ZipM
zmhMFf(%p^HpmcY4NvCwzq8H7%`R=`cXaE0aobw7_I0kF5?&rDZyykU%Cb_;Dol9oL
z1?OJK(t}4>+4=ti(c!a5^=Asc+3gQQd2jm)tVOtbf~-lt%Tk7^PAty@_}=CBZ>=x#
z??rr{#eYYd^+hGB*TH37ZQsug-kaqk`}9EqI}Hr9t0+IukX!9mYMG=t@>yk#n>?np
zvn0ZHD<fWsAq~Db=DEkwg<vGMvxvXTBnC5lGmr$NNntbkY)x2kwEp+)KV`6$i1$*V
zUWb32muQl4e8EHX5vfY_+cNN;Gx;YtPmOp5o+_<82U?G&fq!(!lHH+cf}J4M#Me-a
zw8X%=K(q>p^&D-dS*rWo(}rfydrPc%a((14p^z5)JUflzGm>PIjwcQg3tI<C(H`N8
zs`2fLbMU>mBX}hvYKXU*G^!Z3(ASiBK6p7lEB=30B!yVpimj58eB%Y1SraPE)u%d{
zJD(()+3W24`!)YbixN^`5=C)<0r{d`k6>M3H@oGG#7aMX$*yuQushF*q{d_Z@%d<C
z&Sj4F-sjQbMk}RtzscRg<VBr11Oh;+_k;btQ55_T9grO5gUFG@>$vSCKZSt5pZcH#
zhwup)v{tj4qY@N6rUA5$>w(Sdb|;c39z-p^^4woy@ma1Rzz0%(TV@~My}PKn3E&8W
zKIW{rW|kZB8GmPZUgJ?77|QlJ%o=qO?au~c3<((LN!N<}Q(6GhrP%6ix1Q{kGq{p)
zf=>do9l@984`R5aFNQD@t-&FDyf62FZpED(Xmfi9l3~FZP`66>9N#tuy!Vpi&16o!
z^FWEyaYMqx`0l>H=3x#lYE%#;Qxh^%5~3)lRAife#zo?Brl7sy3Cx&i_JgdFF5u(u
z5_7b=6GFc)(1_vPg6O;jAD8bN-2GOEvXZ6?jb7B;`~vS6LHRwPu6bR(<azU`7j^F0
zkAEb}!c*&=s~i$g6TTjeD2#_qPV0VmUUIE5Pd47C45s!Hd%9ji6nf(bj8fsSy+;-0
zYn6JkhfpIsMXUH9S^n(ptFITVO0G>;gn4`u_3Ol2bu_EIsk?W>1?N2CJK!<1K65V^
zg@|trR4=Y;7sy$f)Vmxa_{BjYYGTeeoprNXLV`#zYzl;Z!8184-Q)a!XZn1xr1_KM
z9r3|h%!&7A-@ct9LSPI%qRm$=By9jq=<*8>Fh3B``O1PwMnw4+#^;COe7n7WN_1Q7
zl6;X$blxsgoM@MiW=TrwX<+UYm38kDAwnG3PSyIh2}`I=AE6NN-`Whb#VrFy;d&~|
ztQ!^FO{mfw&;-vu_2~&|hf2rx=O{Ji6N}+zBk;|hjtG;y(Xwf~v<1#p=@fp3oz{`L
zs%agyH_);>;46Ls1ZA~EtLj<(^4~MeDG}$zm)U3F#L$iB{8Rj#S;3>=f4B$`z9mC{
zUJ^}~NIJF<&VPt2&V749o-ecdCU;63pbYdc5YPllKXq1tIXqHsT8}3<H<F{Idyn*o
z&(=+>P}B+EZBKR4+EQQ)`wps@8bZd%yFk=}Q}A!KghaF`0*t37skVd4r-Ab37!=W-
z;CM!;7(^m|>v6cBz0N&<j8?9I-;DfN`YlvWD9SjZACU#Fa}&eOiy#rjmOFkfC$c5F
z4a!d8UgVr&{x~U}{5$F%n226JUaC&^TEZZa4nNMv=Isqf0Q?Sm%N{R8TR|rE0k}*c
zpkVB=inRr9q@MHr7EsW#|E^sPCR+5Jk;l{Ok=8E*4ruD%O&4<;2Dxk)-jUGBv1PwQ
z4a`fHv_on7BJ3_7uj}!QdQHort31Xa*%1<3k;$`?yS1uPQ7OY2Is@;QP_J2-aylOQ
z`r{yI1x!gp0`3QN?=hJ`9NmsH9K=E|Q=4v229A@Mp}oItBEBrF33&Crje(PD%(w^T
zzf8)2%;7YE#7Kx(xEh!}9i<sRoT9JHW_X6ASIPTW>Yc!(7e4p2Jl5sSH(L~j_TdRS
zZf0hsL)L3`9>A9CWAawLL8wP8ec@}vfj%dO6gd}DIfLk>^J|ePsC@IlN|zg3bB}2U
z={AKlz3Q1q`k1rx?5+vnC};e$&y$)<vCMHw*7vc^3X7Ei7;^?-NG=+1;Y^nz;`WdI
zvG?p;z!z7k&H4PU1u$pCd>ovDzlepTa<>RxEggThiSwGhDQy_BvxdNOlzzdSF-V?6
zMRD&*aGA<Fo$sGQ_#R+h57W^mypyy4I(z@_#=5ECD}5h}CLa4KDVns2Sf!;ezOVFk
zi9K0vku;X5ma8oH=U9=gK!z$P33Nf%Jh(+=(bt~Epl)NkrZZa_U;1PEgX;Rr(TD($
zSyuonV^4v_<JfIg_h$yY7jCmz;@x9Xc47ObRjqT&cxYmLe<|AO{_v-lkEif0Y!H$?
zDfgxEIW_8%r&4m=-uy7!J9Fl)*dl5cJvF4-6@OuWa4ssaS=Vt`&6>!YRn)Ypf?*&I
z+Oh&_yMtXDN2u_!H-b!NYsEm+PHv+939cXobL$>RDc4zMZeTnQXO;}zW^(8p_nAQv
zEloTS;5(=sm(e9PiKTe)im2YR3-y<I&qy%-hXg*36W1vXi=q>1zUaUYiQvWHk0XBQ
z4*MHEs>-!s<9kUV+v8YH5zfO_#AP%~&|@jx#VGdAi(litHypw(v4KNv3uuY7i32{c
zKwBO>FCUp2UhY>-c^E-C<)26HnNE4}zO|4KY%)q$fS_s@vhY>odWzGWSw{&l8ok9X
z*dWZG2gnD7H&6`L!%+6%tcA@8NeUJ`DEI8rL8V|z<73btRA`t<tzpgxozFk>O;-+X
z9ncNQd!EF+{quJ9BW1}D*F3|E2Qa*!{JHHQ;3v(a2IgxVvwVgxMY1DF2qQ1B$ZSDW
z;}vN63`6zft1HA9-XqlXqLUqht4ZPZ7<8aGR0S3U7!!(=%{~Z75_)3hwbLq}NMu9v
zt&W!4(#(h1I~*zWRm=CQj5X^?%14Z(Q*<{^b4SdQK8`eSe#=z$bRt2e^@~T*X~X#R
z5jW+e2-u^DI^6?b5LoFhC${@!ln`WK6dr&o;&sNfL$O)XZi05Mhgs6!>B6l`aE%Ac
zy+=&FV?!t{?=cp91!*t)T+kFV)Zwsv>$(1FYX*Grc>E$`&6%ekZ<5O_C)vZdQGc>t
zfI5Lgc`_EQ=is%PmcspFNlmGQtI4dITYQC?xw^b#-W|W`pC4ysjq9!}?x{D+pt)n>
zmmYXd_nYHX{jdlsBv%x*)U{u=Qb(Stx2SQ>uobap^4}s>=u5=0Wr1s2yi#XiOLVxY
z#0WTI8foQv3i;bT`|GI-BS8lsg4-u>J`vl>L(|jZtVA~}JqDff(kEpP_!lemZRk%f
zD!ofewB;egkJ01+k^Qr_KWN?~I7|55@4TK>aU10N8b8EWo;st!$c5-3Jufa-i<FO-
zE@M7oQR_OKvdn%HeuV|`>SkH=Gx%l<Ii0;(8K}`g$q?|A!@cVl%(-1sW#}Lhl>Z?E
zN5UK`TQ?UNXuT1K^fYtnPZDI1wdYyxSBvUVS}ya6rS|tP!-7~OuOO_(Pa$GGKe3o*
zK{^xf9z3n_UX8Z<6dd5R%_~NKWvoa;3VgxirGst^tf`+5f%2lGbhTF^%;9;(@^=>g
zB?B%6EGINV;KbAgxPr%ePNMDgc54j9@JTiLfNvI$I@vU{)-}!1-ywJb2HMU9a@>Q+
z@-Et`VWFGfxPsdo36kHzbec~>DnI8mdZ#C`zqa>rR<#j+YD`?Q{rO)ilTWiaDg8Dn
zre=}<TM{yS{~7A%m*zvd*7X^{>1I?m`dBWf1LV=WP8Km{;4w4BJ{pA!XW8a%x%xP{
zdi8e^Fg*q~j+<LQ@ZghFeGZ<HoO2_@K)zK{X7*D$UoTQ-mWaCpK&-bf!?%~cK;5=l
zcXSw&`5M#brJj;buY4WyR~GWkCXi>dy`IPBq&v(%vTpT;10WSB-2#Hxj;L(V_ER{L
zFvCnjV#f&uBi1+20I9|vekuyK0`_sl)fv)V^y$D}xgqo;g}dLa0nQS;^C(-EPdPS*
ztbtWeFRf~d$%{#&;Jlf>U(<?U#3|TRitmuS7z5hNLj8goCMl0UjCm+t%q%e>v+LL4
z$EQG&Zm=7k^>W36lYq_e1EGo(KH>VpS{1T+NdJ2C0!X~~J7x*Cxw9+mU52lC(iCdZ
z|DGISU3#fyJ%f42Lh?Ec`3J4rmX|clQf*w<-U>KOZxVXfv?QCCT&m5yjOHbZzQi+E
z%#QFZ=>nIf^{vk8&CcXAif_>ow-6F22<5RRQ?+EAf95~g<QJ-HsY5~^wol(7UT*T<
zO66D}h$AnfMje90U)^sPL7OGKaIlc#!5_pK&6BKo{3z?okY~KX&-?#Y5L<cVeyDgR
z*%JQBWA>3lOw93x%RTd8?=4gJCw-}l&3?v`)jOk)A|^jIzS`ulU_PL#Jz@@W2oXt&
zV<;Suk}UNVoesBE_hy=Kg@fC_)5M6>DPE?DZoPfq<3wh-`z!~#T1po0G+kgP8Q-mi
z3Yz4rOFwaQg}qCF7Yg^Yf0J{h<9?uGPbt(qxKo>pg>tN;`f0jy?xEyIg3h%C5*&b0
zeVkuG-z(;qcs(q^XR`BTZ6IX0YC=JlGT9jUGLR|eKsHZ_qygAM2H=G<5l;{nRZOlx
z<XV66wgo69d8=o7VlVo_ljXNK?A8ZzhRd%E6vT<LOW$3kg)K_z^BrGmy6xn&qw?Rf
zNtBY({UK1veIjAgJK-vR0eB5v!;%-Ar-|Y{b}9cV9~t2bvJy2Y41Y~t3Z{A8v$oh4
zVOC|=lkSsWzxF>0E?|tFi9|gFHw~l2lBkUch1EY();~G7S5#5A=*<R`xv_&=G8rHR
z0NL~?Qq3BcYVCnS)S#4Au`&)#XQ=J&@?5w4`h4xh6qTf}pw9sU>Z@KEhw&Z}QRAqD
z!86n&&z=wMo!>S<eTv@29C%eL94Hh=E}a*ss_eHdYsL>PdUPIQdt~puvhd>_Vp;SF
z><n0ra{g3|)E=!$0Bvj1YaFNkx$uZjdxR0#aiY(Ya!8G9#5z~HeD4jRZO0iGv0I`P
z6$mDE4j}4A`Kk`W3cp@lx_E685sDIq_!jfSUMN(cr|MVcpr=vyyi}N|Rm1p_v&Bel
zIo6^o+#?&6mdhwfnSygfMfN67DMXazBa)n3y1JicU*KXwnzW!5G{~qT-L}&(u$$G-
zL^dY<@VncHFJxU9@G3IVW4VYjjdEWXPtHX-Cle>x*Mi8*z|tCIlb;CgFF>x1^zdjj
zj#;DKq}(yU{?*FZ^x_lY&2G^hSX@-3_B;M}FXLky_M}4G62z6tphdsheAn;^M%3Vo
z$i0~{4baWlL7|LvER2=&)e`fFO6M~E=(Hv!=bH1zjms__QAzra3B|8-IytQx_W|Hq
z(r|7NzcycO=87$4rQgSM*j05e3Metuc_i8`-)~^uUWCZEn=tF(G`l@avfNWHp<xY8
z2+NLH5AN$=-5=5D)gK(9TI;g#K<-9c23)mv1mV}F-Aoa`^bk2iNXJmdcgD!H`&2c|
zx*nT~Zss)LZ_UkF72J)?^^iH2O0(UuPZo+F3B{F9BNj9Lz%{^7;Se~MP(9tC<$e$z
z_3>-7t8DEa5JVdwTKxcV*W?z$lt;p0`ei5JA<-_+z*W-B=zOvzB{?+TJv6rGpFF}k
z$+vHo0giLFfNl`*tE8Fl#ok!;ess86Cc(*=2#1gHqxOM!Uj463g{hDawqsEA9!6}A
z8C+jLWOH1+-#0?vd^4%W1i?)p8xlP=4D2ZntFXkMN*arUp@mig+eyUU`K=6wziSPd
zhDuR4M^hgN>Q)v-QDusU2D+*r>(IT_dkT&E>{Kc`HxhkX3tEPXlzOeL<U9;3<g#cN
z<`mX}c;_U;owUdiF|&RG)KpPaUdnq%$;dcn?gv+JYYbbP_n9E-{=KrORNNt6OA`dq
z+YQ#`?}4L&X2^W3yAF?8EIy8J8tJx&G?}L=Y?<uTqj+*j;O|?nxhfdWzW2K#9?cm@
zbq=PYrM`g>@sZEGO5Ca%cZ3w-;_HF0t7roI1IV}zq$h$ed8%$MiQZ!3X#={~>v^u@
zcY<dndFjWh>2mxh#^x($ck+I1l<mWIppGWc&(=!cFvmdBJZ6ARIqN!m;#BN|zQ(tG
zE0_bkr7L<I{zEwVM_O9Lhns7@M8>npdDL`FCE@!5dVce2IKtE7J}J2LWZosI2V|&r
zz^1}}w7KklpDdeRist(gwjo86?9`09+9dyAXX~;S`@JKe=71z`@b1zFtKD7gE5;(9
z#nsWlb_7M(v2<p0!L*<U1I@UzTuCl6WXIvrbefF1TU!cbO103=n)Vk1J)`6#o|k%|
zjcW2Hc6@S80~}V0{je#`rSC3cj%m5!M#4(_2jv69th7odRHCWX;A8pi6*mZ3nVZ(F
z2GcwA_HfkpDXwD(F_-s}o7s15fWi+0rr<?>0n$>*8*e=axkn(Ie&0Vz0J9o<#&})s
za8Yc$J!A5V!(@x%SGO2B)<C9w6k6O<J()C}`yYEuX{GzH0$n<GM%y#MX-fQ5YNo02
z=A-&Vs6p<D_CEuUcS}@}uh%KC^CzRx1J0yKRV^0X#*OmyW%Wi*jgC;28Qalzg7)LY
zEK%Opf}-NIYvPQT^T}0OG0l4|E=97a%zBGPg6u%O-+88zS9URf$mypBbIIm#qh9Tm
zVGo4}u;e@JD^n{yqcPZB<G6&^Tha?4dXu*-_Q~Iyp8iP2HMva8Me0n@PeaU~2{Vmj
zjc1n47-+mU_kqLjt1Oev_mJ5GtS-mRrCz{ni+AdAnvim31DPvU`zxDX%k0J?s!SA&
zIW_}9^A~ZtX}Hvpe{0MKSCk)p1PT+tbCmHIWsdrz$WecG*8{^_q7m<g$>#)4i|<&>
zPAQGBqUL}ioHbagVtkv;gXtT??>8bQQ)H@)g5QkD=`ON4_wZVPQz+Bh9GHS56iyTE
z1PP+b((PBBzuk&Oiy!s=`0Ykma?s0vb0-Y&cfmZ51jXQ+8HK%yMi4rBmN}%x)-01K
zlmbgyygeMSD}Xt(x__PQ9LTnqsz?>g{g)v9Zzqf?5`5*ru>#8{G%xX{=0ep}1kajB
zr__b*s&H$-6jL{8CI~?AUwa+db9GFA-m7CBz_;>*yg=D6bmro@6%Apm{(K1}wE-oq
zDYt!zv6YwEBncO)g6w}d?0(16{N=y=a~x%}PyV1Hty|ft>x+iuWmeT@EAARny^{5V
zB$<mICR?rh<E_V>zkCW8^FH#-IM$S@wnYKKv_Gks06Sz_`9xuJAajHy?FkG^sLWU^
z=9YEL<n}`!Gy{@grmMl#pFesk-(%Hdq%Zz=_fDwLL1=;E(kh8Fx8Y8ANB!$M-fDA4
z&k*+LIpXs2P0|wbAy%ctdP!G#3uCG~Jp#joVn%bcabcDGTeb6$X_A*Di=JO-?IgB@
zYD$D}O<Z8*dMlEeON8U{0^{B+I|3HpM|7|4dA)Mtj`I?^WLYK|R#GCCP;|XyzeHKn
zQyr9gGzQ7E@#Hc+9eextrLGrP%`&uoy=bI=Pcr;E|AsrGdH&~q*^a0-ypUWf37D6(
zTu%z6i9uw2JF$fwI51pG;)HQ$L;f)1yb4dKGz39%RgEy2=EQuHDAogOXGBOKf>MAc
zUCUV6CHxkZFLSDN{K2OcnRMD^0Ba4!^-K_Wl-UD*|0=51aCIxM%o;n!AUzV-ELag)
z2Z7WGX64+IIS_|aDpQzHyN}dd*?@v!XrI-=wSjZ^tm97Zza~abG~Q1H@Y>Hca^)#K
zR1+1X_M`g`4%vbZFYgAYY8LI3c-Mbb>FGG2;4@00NKzn+XfVbL-h%|Ul1zM|S-CH*
zOOIZEyLorR)Aqdm2Gkvbq*YG(>(#W#7W4Sm%yzFZdPz&$ZLS%?i1IjMubqDgv{wqa
zlO=Pkg$DyK+yil)K;Xo2k2v4yx6@2Q6L%pmV_}eWvIlY1RKc$`>SN-aT4(ydEn;)B
z?Um9-xm<`N&tPP#2RA4^#61?99QEo<MUe0ylyGmftfJ^tugb1yRw7rmZm1aBTz(u%
zfbxZNreeLZmGuR?T*@_I);@o1IUf<AYtCANa^(&>5bkJ_Q9At%H-2|e-dx<YBnPsy
z=2!kcSC@D)d|qUX9KYkzD<m&?_cvjq-EpfV*~km0VyE8j1^1r%F!8wKfA_|~DfSEo
zhE&8GLOi?QyaL-2P`=@Vq;V>K6drH&ocS+1l_V=~ClA6~9?Q?J?oJ!P4<5EL_GTW?
zMh6;jv&CD{!egE##XHBVng;9x3;)J4u^9<;kGc6$|1mJIhiSn2b_War=x&G~MZH#C
z3V+i5KcZ*{6Pu6pVuK?La#=<|8%Y~Jc<lH9T9UQxlP8c3-vqOv@@@Y(k+lJr!q>dF
zs(}e_X_gj661#stl~qWp0e(!@>dB)#OF-T$OZ(UYUI%93r+LD6v=<et_Bmh0CEO#*
zOHDF7xNbr8i%EJ)Z$3BWE57GNMTR3XPX}vKnP1XqapOsU;{BpKG)%}FHHqN%QxFCW
z|E^4{q0!pAmHTm8DX{w3r@p;3c=2cbmp;<%k;(lEnpb{<aiv;awM`FFe5ex#yCL=v
zk5BIj2pNQqNa0h;3JoKWAi+ecL^^hG3HeEOFm;i(g2))=z!*dE<n3xvRq+JBCij$5
zoxm^A093|=fqpP}#Q<Ve$H^0eYFi;lKq{D~eTQ@TAX@hrmpjuoxw2($dm?vk%Kml@
zOv;&sB^Pi&>J}$}PIF2(K#t5JOiTWR+wK0!VA@`=!d0`Zc|_>O4+LxLL`MbqZ}mXe
z=YHkxyOn0<1fr{dd&!OZJtdDl+DvZyXDx=#H;8+OOU3SsJ!SGqmKu=ZVr)lN4A!}G
zlSz`HZqI&~%Q~*OdpAB}Z@QL9Z=1oxWFN4k96kga21r<ivIn%$w=Gt8cJ~a!X{Qr(
zSc%Iw?B9cOQ-rDCEnh57&c`-u@rA$?pX)ZC>t8PC{_U6$?G}SeheUnkL%yU=vHr_)
z&X?D{Zk<shooF-X+M)dGjww`lmZKmLw+ou(9`PdMKIf#NQ;eMnKUd?tlw~xO2qD$u
zYV+kv7C$PA?(JTmo$K#V;VZO`vj&0JH69K<ZB$XqEgdi!C3tzBk1e%fUa~K5R}O9h
zMs#Y68?7wW3p87Mf+FzB9&S*{g@|Xs{ESO(#{noUQ)dRVD1m|f<yp&DQSwSV3VFZR
z8h@>=)aGHODsYD3GCQBo0R3D^rBzM&jc#DycIn#7bP@;4I2FEomTU)cnVBQe_jw$T
z(yTwWO5pGr`^fEAeBtI+*U=xh*j4_wkiKbtX$s8*;ETApEdIv=_|6@pS57h|EP7sr
z5#-l5?V^nXNBh6O{!O{U-{L#OCc%u!$+YyOI0u5S%3;caNLTgZ68Ajzce;c}e~j*?
zxLBOTM*wNjrWQvXOc?Lo+AsSRH&j-j=84S`&MLu!>6!?W7}L{Q^URSTM{NRAMjE~&
z`~qDrdDR)wb#nZ@Mw4^DCKbC?%j*g#VdpvVX$sw|CbxmzgR>ppT;d_Ocr#I(5|-~y
zi#EoF8FjawLU~)I>gTk45^D41Bba8I=Y;IvnGRmf=?EC~+3Xtd^tqd3JMuYI#22}B
z*S&chRy$mtXfFkNGY8=YwWmA(;oiG-uTR~tNR8lGGSw~=90;tBnW@f)G><f3Hoe}k
zxTxN*Sm=f77oFp!WNc{QCCdG8573u=vUkcHhzM6sycrl5X|9_|8zK&~&R>zUFFts>
z$ID5_#GC2%#|Sgs;GwtxOMnx)d=4Zq8KCz@y<H+r_o|Q+O-Bs7+#i+tj#a^Hqyo)R
zZ*fGL$3*D|_R5VB#x(Y==&h*Xk};<Xds#6#bp`c)$tHA(Q5`Y#_$tcMOiMpjao;3U
zYpk8fUYoNd^4)$-)tLk_jVq4X5zqz5%|K3}@Y&fO6DFUfj`{#}V>a6=jDeTC^P{-$
zpITzES;=>R6f^Izy)_i<exzPfrP@QvJMo>5{C&<{=;bd}0)XaiR6B(sTpjnY8N7<>
z4i`A-wTn9Qp}_v_Kzv5F93m>F>`>JIG){HweB|puu?e)!ZBN5Nu3+D?&T?(GSLZY~
zob5|64`8gXd>{X1w}i8?v9L|y(}f{Phye&Yqso?DR6T2WhcMwK!nqe>I<5w#{Qe`p
zZQFgjMzJT3TenJh410CyvydVUXra*T-45@_5&`Y2`4!~}$!@MgG(^u?&v0eqd!1|s
z;}AN!kje%5+i=oK`jejMjIC4?Rtv%i=m$@NBwotBED9n|9pmW1=>QK%z@zx2z;QXq
zK2lm>2|+skt8zBq&YKDlPGs{DpNF@lDOq+JEfS<4*Mmk>QS-R36kHA3`awHPlB=;c
z1H{u9KdI{?-0qYwt49aZx}j3M_s-u&`fjZ8a&eFTE`L|X9*4?tUiKaxsO2=*Y?a8R
z3=BM%!8rA-oaM|Rxg9RA49e9dy|sy<@0h2ULeXuCNzyjDecpdXlWsN3vZM7YK{)Sq
z=JCg-3n`y9uWRMIZzsxf{7n2Yg=O)LorLa|k{C-j&=wL3=tfq-#Am~yJ{OlD;zy%O
zrxDlMT7(yDO~l0Ix}E%$u0Uvd?_9JD)9Ys_+q#Qli1Ed_Gqg0rMIiSvMpS+DG?`oH
zUG$Lf1MXAH>xIea(>^EMKT$EA?v1j>Sv!AN(=(bQI3A63S1e$*C#~KZV4iH#g*%X-
zgO7)+kYVYMmkULAL~DEJ-02=WPtYT~we~Nf)Lg`q@pv{WO6K!%S@w^XiR>OCY&zHD
zXZd1tdJ~vX#Mxe6WI})lP^}h;8N=pv19Ci7IE^3AL=+ri*o$X)bs^}aybxT(R`(b4
zyR7&_0L?bWmXd*7Piu}z&LOeMcFopA(pK{}`invbU0e!&^bR}tP;LdcQ6J31#8w$`
zK5e}i#v_!*4VUbsJ;#R@b11Xo2k;o<k;UWZA|RonJkDeZ^A)XUX+2bDI?nP0X&19l
zIWj|v9Se1T#m~A^&{q$Ulx*J*<w?P;Jo#77K-*-LEFgduhA(T2&%*ZF<XM(nP~ecW
z($phBrd5|wA_<~){8#zoS<k(+z?kja6|Y2TW7{)=PW$C6Drp_N!F3|;9mt8yT$a?C
z+Q*4*2XaBZBG2xa?c&87!8G^&gnp@c3vI3#=TRu~`G=*ts;QtQ0&<lv0$ygMx<yw?
z^%@x)kQ=@YW{nFV6|sBbgbWv$YO<$qWZM1xuP{F;*oW|L3Gd)$BD`B(Y(9P4{E=#d
z3uqbv_hsq%1kJL37=6w`Uwpg?E0YSagcLi4DszI;W5Wnl0ah%X>`-cBCE>C5QW#6F
z#)x96T01sa0C%;INO|S>aoBRnLHJ0HBGplgp?KJ(5{S!hZmW^jPk?zfzQ-#9t4f8l
z3ga7Ir6esA#IK0<ZA%H~qUadRL5Xj(-p-AKL6^S5S(Fo}FUno(tf!u_Q3EK(vm!9$
z1{lWcGWaJeMyd39I$fpCx_>By_qAGwBT*C+!4Thr;Ncs*X|&Ndka1V?1yP=0vcm?@
z_72=lh#MK!u=?t{bthtc?~S;;P*XRGn{gfzx-HX6S?_oZY7A`oJoDM>h;6w1+SlVD
zftM;OWT$m8^Lt!Qe)<B$I71pRnlaT;DDXAP-S&b5-z*Ngw8EbI?x4Tbn-vNIo~S~G
zRv8T3V<-jbrn~>mQ&ePnU|H-|POBAIj}+~99YwOSJ{??9TjPgYVYq)oj=4#3@Ax+V
z%*P<ruAg?}<O@Perq5=9wU3$naR%kD1dOYC`}>_*Gxd>kSyzp^^_%1mp;{5xKjWZX
z*)j!O{G!b|S|pw3VzXH-zV7LEdc)QT(@Caf;!E;Z<;a_{o$dl^k0I-QidFZ}4}q7;
zw9tf>TO;g<&C^qlb`l{T#DUAyN9RguA9YG6R0CdkG|zd6lgel6A$08yOsnaIp@?kD
zu#lS&C<%v9>Kbsw5qEi+ec_)yZDCy4f;=3}e>26llH$v75J*_U_%I5aIoTi>@vO-T
z;q0`>8e++f2rIB{af8Om@n*U}Q%c%t<Wq5kyy_;VSr;#<^!_fhbYaf-R4SD?La<i=
zub8rl<g1&CdLyjQz$EU3?R2<CFPaxA0LrK`_A$=SLwIg~?r4ga{<T~PL6>{Zny16`
zir$$pacB>@;xcxKHNkWqq076={kmTrHM*Yo!V#|?@ZTKSo;-pxv5&zVP>1zB!nbDC
zLLIN;kOTc#Vd7o#HAxowWKECrHlpZb-&;U(cAmKa<$i(=i$rXTSiG)hoj+(4x5ftO
zkd|NWgUWl)hCzs-@rYc(rI$}P@X?M%o7}zz**B!gfG93>zocz%x^*27inau*4_Gz<
z@@~umLhxPKn90KoI+iYdjX*bALo=a6o9ghl!Y-jn6NKOyM?3(ZP;PcwyhEmzo0)B*
zY$x8MKsq=+Xy8=nNAQpB`^N~zj}<9VJUzm8Y(n|QQkpgAh@EFMk{wYJXbR((f?eoT
zhTory`AbQ})@QOT?{Kr`?3wpL-7y<s0Hz)DDd3i;9ew@yChQYE{Tu0xwQSOUY>HG<
zhGT+(4^$GpWlgFb$KTfc3~ZT@^=%9(JA%Y1UadK2(Bf9eW!+ZhXd$F}HIiWC{WhcA
zd__j85HOQK^eIw)I(USq*_2X0uoWNU$Y`%iP|P=4_;XIaiWW_(cGzd|%H(VS>Lx#r
z06uL+$@<D-D_K`lOs4po$+W1JxX^CF5oDNgRL<Km@tff4<HLcb@KYZN;Su>MxVV$$
z&}}vR?|hruSNt?$a}fwwk|g8H*-;Zbx)`gQ8AY*q@l;E`Jbzu%(T`tyI3M3B^<B5y
z4}SQP8dTcDo0962iZ!Cc*zIhQT%2OkqS%Zr(iqQ1@Nqn5#HIS9s=NomP(t{q_TubY
z*sO?I0VI9_c8<IB;E?}i0U^$>ywd0DzV$fBp5MC2CEoqCp=7ot#8qc@WXL7HVx#WA
z;~_qaq@`eBp77l&P#JxMl5F5H-<kK)sMP#K<U)+-*oUnZPt-vqEgA~1N2b(?8Hz|k
z-2ChJHm$Dkg;AHg7)J;9Wd2HrR7D1vGP#`+=9ku&!q0p1CoU|`YS%?MzA+<ZMexxJ
zWj#c3y%<l|M^+3*gzR@@blgL*9mgm_S2QTt`Utkt#3BO~>)HCH4{V>kGs+rJP`j;`
zQl3&#uR09Cm?q2`@dS8c#-));oH`*C!%cxB_ab19G4j#5$9?3E1b8gC(|*I>68Adt
zMGMDJUOzP!wjWX?;k$Q4^zSRKU45A4M`NKcJPq@*%yEt{^bUT7VS!D5v8WHl?=sE2
zpA^Fi!`BS`JEO^Qkw4>ZU1repEif?n47I^>OSr}U%HQ5(Yq1ITRS%~b>Ux-#G`=~=
zZ!*UVb!`dIUc!OrIKvu6`n46-*LpTNraS!ECwT7N;x|8OVV-kbY(hzo?(>dyr=_>t
z`0+B@j_=71p2L&CB24S{6S%sLKjHMMX))s>G6w3Plg|p@$u_$@xx0>h!&+Pi?6I?9
zVWmU7J}5!;)Y&rESV<G|x{`FhwFMrF>+&1VlAW>-(yFuKUrMYGonJb(+_R0J?rfR$
zJ6>B~?I3Dghzl!g@%LsEFDQ8!@ppG0k$2X0u)Pk-WXu;Cn{elRj~gjTW;Zr<mj2W1
zj%w>3REj9RrclCpV1L_auSL5=6q<_>VkRRU<C-L08}%f6663#xRGh*3Fx&3({%p3L
zJ;Fq$+Q6+I8mE^u&AL()Vo;PEU)y46x1ciKjQkwpN+ctuj|_=r=eDWQ6gr$O?d|U~
z$acFx%v+WuJ#;krTQg{2wiUJIcj&a$a;7Ho`qQhLx+))wg<*c3b>%a@`%N+RqfKEB
zJ~Q5%HiR6z{ye>zZ_~`tji^nCU<Qr!=1fbeFxQi~yXGRU(VzGUf^uH^wO8ABch#6^
zSY`TkX4ZWD`qPWw75A&eT7Imx(1Bj+g$BwP*oPkP)WzR3o0(e@aYY9WP$4OG2d?*u
zUrLWp2KsghY)?9p1CkJK^X1QK@n#ypJCC!#U^;-HtzU+@O{d5r15*CmR%sJ(;8rnN
zTcI*bn7!U)2$?9IH#a8nzJ(JLe?`gt&TNHs_$Kh(Gc<}BU%`pCqO%}sFvH6W9E*K+
z6++zkt!Qwxq}G?S)=y*1($UAQd_7S;qyJL-RRUz)v_}N@^GNW+&ld_b;gOw#?}Q|F
zEc2lT-_}O^&>&jun#=@Q?B2t~oW=@;_!xSS+h3a6i(!}f`og#*b?EmVr`np9;Oh2_
z)$Dot{XuS-=8t-CBqb?}L>L;IG2%F{k4$ton^5RZZL2>j5xx`Y^#(fzoE_y&uDx8C
zoRG1vHps)5ZH;+J4*GvC*r+%Q5**y#NcHuwC$Ks%TfXi;bMBf9O3DvYkY6NXMYbQ@
z55YI&n5a-pavC1BJ#hYJdJVi}qH63qh59_x2t-K=zMmxAxA=}qXob_9Htltiz|Lk5
z76P_3w{%^J1wLr6xr3ZU39n6HLpO)KMQwQ9GtbKvBsC*G_16Z<A3eyqp2uQ`)q6)g
zH9OZ>g>?O`AXPP&%vv3v8Hl$F<G!#JAFz14c)wo3)6TT@T#a`Ycj?k$ThGB*^jR1_
z49Ph2RCWq3*EBh|K0aZ(sf28#>n+#0m5Dv$v|4-@0ldFA*%xHo|NIzu377VJ;GRrt
zhx^+UQaKJ{?Iy=W{DhqF-PzHNTE}+YH<V{VD61NULLaVa^7*sLQONa0d);GKu;y))
z_Fx$pXr8kdw$aR3<M#+--()7h^aw%Hj*KwQ8ClQPUqdyvF>j|8YmJ|i&n&i?ob!Xy
zIi5iyE<A^jtNf{mvH`q{LGpvuD~Zty+4-Lt%3;tA9^XNH?x}-@SE`twwLFDoZ@xZ9
zh%wb23Sn;E?uJXuFJ2cMvlGOW&`r5O!whHjQK9)W#vQY(MWbkPpJAcRK8sNNftR>j
zAhvO9%l&G@$l&JQv76F>vwLf8V!=kO|IV9aAwb#x#?)#$`=j_Gg>a#_xsU?8TBx0%
zXHiFgWh1aP>@C3XpkvR=lfo^`mS|@R_zk<FczPWwrQ!=vriT>VAGdq4;(6(F?I?S^
zJ`9&%9A_hiV?Ta<dU|b@z7`>*na>PEte8MvN6O|h@zK}*_%3{4qR<#ZKs{vLQW?rZ
zS*Cb@CnL2k7{+vSqF0cbdKBs}qqX$nh9>YR^0~)JdM@qV8F7JnWWLFYcYU_&n8?Cu
zpL??N@yuvF-P6BF0ekfA(!SW2$@otmaxrU|iQhQ{QyAUdo-$MZ?FH)4UN&5MnL$f1
zef#(0_j&z{i2K#^#c(1A_pv)!%>0yRx;BAcr$aURr)$aaZokUIgeax7G#e<nBA&7F
zw7nb$P|7`>+A8A4#LH~auYsdDc#OUYKR_N`f%~b{4iJ&1tN<8~lMM`Emc_ScN<H=3
zzkI(Ffv-L3|FzqAbhR^9BpFf0dy!Nu^v2|0N9|8J`f?UQ9LWKX?@Wg*e{5XhECQVO
zmX?DA`bu*HLU?eJi#dA3r=1m1EOG*|2p+|ZT=^=$*47@*G*fgb(&;}19X(7W)Dvp2
zx3>`$73B+0kWJ#TDndyyM`!&z`6>?BI6p*u2&6CD0ai8V!g`392qHYcqt$XkAHR?1
zkr@xJ1rnLd=x7%M>+VxHa-zOq^$2OM)jRlhT<ELFpi6Y$qx>{>+cXr70Im4Jw_<uh
z_U{8wZ#E>iaC;C6d{4u#4h&D$`&J~$NeUd^MMc>4W?A_;|4=?m8lRk|x!6Wozh1N+
zkDHFH<q`=nYPdLHW6HF8S8c&SAm~>4&hn|+99_S^7JH>IA8O@L&KwER2D)h9h^4Uc
z8S4OA6;m%SABCXGeXR}OuO!D04e#pqKoY}t3zwX3y6oXAN#4wB#+W^HXPkwSw=otz
z!+*4fxep@mL|wAk{lhutNTz9sCLN4T-NUDR52oyh?5$VR+sjPzlv2M@r`_{eWLOht
zxX9))72}kG?E1`*kdY!LOmr?@_~!tX`FhJ{W4GfMGBvyW&9&ylUz~{6#ZNDW?7dAw
z7VXJaM1G4Za3>5q8PAhA{1G{f{A8H@(YEQRX{c&{<io|h932Y&sfJEEtXV4~q`*cB
zCw-?XwHPIY9TDYUcfh}Y#M8j<hNHbl_wcfn5Kbw%c$1LJ+7bIiByAffh@JZU8p}P)
zEK&BQUW7FZ%9x*g^VnH!m8|3<DbcR2bmvh^#VWE+wh04PW+Eoia|;xMlX(24DBD~Q
zlrstuV^O_9?(3`WP`ouHsv^-rr7HGoNe}KgKG(>;06tb$+KL*HB|o|Bdtkb2N?cdj
zZHHMHBvlh3v!w>`_;Mhlei3W=oI1KhY=V4~pK}ub^SC~nc#fv^O2jcj$g!CIdZcPZ
zbi9YLEru208tzIVT-W(J!EPrY<nR~kE<Pjs*AyZ2ZiemCRhR7=y_3RZy2P>rEH&E!
ze3LV?!f16Z0li8iDp?<Xtod;~*t5{;RoE=&Gl^M3uX;W%jzeI5E1`(SX2gO<2>Gz$
zFJaFY93CvV*B-JRi25Rk@^@@!1fX?zqzE-Tz^DYNYiSF*?P_yfoBsq9b=QZ(m8F|w
z)}I*Odfv&VGYVwY)r`_usN(ogspJH;wlZ3!WTKX5+wD00&6Xm&O1t)(uZjz4cl63R
z$%EYvWuNzF2uEhZwb&loobto$vm3dtzAOH*ij+y1F8+mGQmw5>{I}O)zN_d>JY~!S
zM>E~0tB{K1r!gJNppZ*XX-6!w%=tkzje}EpYgYy~fhk=Y=|>2#@kP!NrE%^23}8}v
z5-h`GKJnbPtxOMKsvRsZ!O#GYKu4F9yYPB9&xmCviHVU}=C=0gR3G>-Nw<b0+bmV+
zM$2!F>e=obZ1?I8*^3!o{`)YQ-XSjlUTS+ljHfp{{fOFX2r(JSCPYj;Y>R@3l&>N%
z9OnQsT8SRWc3}EPpw~h4tpZNMp!casTU0oo5noE28{3{zpS6G&Su0rk_%N=Wt9=4D
z#E)o5$;Y(q;?o)#Ziz(8d}xq?<{W4dX}Epnjol+3wzit}kw1eYmCBGOFaRCB>Qr*%
zXGVC$pe1s!=c4i+`tR-icRrC3YQ6G8a5AU13y{h})?ZPN0Apb-^wSW0DBb;FyD4OW
z3-`yqL=U-ipu;_<1dZZCGu!i&*R_K@=Me=aW8wopd~3@>QH8PDCjZh_*k`djC}fH`
zvJaC6WD-mDyiRkhoj3~P%1Nv6bg6e-wAksCh>EiBay{Yq;bbPlww(^{zL7DG8dH#<
zd3uh=X|6m|caZnXI?Wy4h*c)JUgQVZV5A*WK3XQF3FANI5V5EWC&Rb<J-5={#8AvW
zNMmV1lSNF=q(mlX*MdNgoOuh$GU&<JU+>{GY^p1<b*yXq(gwKY8IyuRa;#}x!3|+r
zML%6cn^m00Q@Qz2Jw$osg8UypTKeh2gY%3Y()6?K*okl{VG=9)zp&pK)n&yS8?MlS
z^SbS|$Q`%bX}jDFb-sU!#Q*)C_`!>@JTLeBYeBF31kxzVbtf2L6ErkKpeBlW*B1jd
zKcXo=qy$rT85*YXBoxZ(hKfDcKa0!hKsnFuPW{|dcXDH!M5>W7DvV2Y6cr#8sO;Y#
zcfq++!(rwDt4lh2O*<RWxYO%dcqv)$pS+YlsVS|ML@2yYfE>?<Cz#Bn;(2Xn$BMnW
z-LZ+kx&@nLclx-bH_?H5qt{M-S9M=EV)QV(-d9zew2x3uO{agRV%yACCerp<u$wb)
z5u)`j-pjK^qu%0O$mAZ5$kRiw=8a$lrXDD?rfj;dX43gVDcacp%CF*@nxgD+x-;>5
ztv`!7{N_irAMYFL_LH@wR?5%HL>>_=p1eC3INVb!5q*Cob(TDmExb)$+>C(s!#<#l
zx1t_-f+3aqy9d_F_ok_+eqG_>l(*E`rO+dmN+*TeY@foUf}7Z1#t@=S=KYFhilf(v
zH);dW@?Zzy<*$E3wO3!@z?!N;j48XO#i}{&q#W16bj^|&jqpl{78K1*&Od)eerM|a
zF(QTgSq(eUzUhbW2|Yptin;?9|GvjLkdJ)e%ly%tVqJFu|4^YRm_1N9@=q2?B4i)z
zMXI0`mc5NY^U{X3g{pi&A4SuyRzL!KEPw6wF5hfi?!`X88geFS1iS1eZ&vah^`6Vs
z>UsB~3#tmI6^o{y@E>ucx@m*JryM7<o27&Ds+}nRP3Cc|Pl#S%i0#&^!Ga}VVU1Vp
z77h-X3dteaDzU&<PE347=zQzIVB2iFw?eRjqh;g6pD;1P9Uftj%h)|6cQM{w6hqRE
z-0wacZME8OVTxNTo5(`8rdt?sp|#gmCz3;pYJwcTqcv*t@i7`LSH?VdNILUVzu-;S
zw3W6wU%W&5``!&A4)aR;K$}|Rqj}9j$CL4&aL1A`aimYFG9%l~tJMm{e%tuYj2Mzl
znV-#hC(3ekdNd@p?G7gs+lZWH=b~N}SN_bm4a;08thEp@`Z<wq-fdoQUtpB2S^jtf
zw;?rd|M*r)wAC(H+?;)Ln(?ro9<x4T=wzkEiyu$FxGo9z`gNlz4drLd0Jh)BUP62P
zYU^26+oyfZzHrZxClt<`9E`X&s~Q^*J-$Q^*pIe6yL0T~m}HBw;8oFi$^C!c$4Qu`
z$ra%cv>k2*gQ<w1Z$dtj5kW$v$jUpOXIG5Y2ro&{nqjM+bKD;Y#TvCj`x<c(v8kA^
zV?5c@Y7btN2?sn`v`fq$siE^@S-L*o+X@u281Xav4-4Q7c-%qmf!Qgh%j1N2E5V+C
zv4gqf=U&|eXN<?{H@pZUS^cTCb(ig|+@f7a5=NOD7B&^_kj;qs+z~|@&7Lk%a#eEH
zyRQlZPqVZlgzKT*3!97ahl`S0qBmps70q?A=QS;NLm&A}>`E6&Xpy3xDU)FIe8LFT
z>W7_*^`x#Ij{51jG2UFU1DAiAVYIWjyb}9E!V&sQ_Y$1q=^Diu_s@yh#w!yxf@V}M
z+)`$&wr`KFR0W-*JMTVJWb6M7IUO$<++)=6u{IK7b=v<=*VNh{{^W(jE$P<J(C?Te
z-6#ZsD3O0AtaicXV^SO)7rim0z}22sL4QJS@aFxfEuU={R&X=LmMQbBO5ufAPPn?v
zTSEmVb{Qo+N+!<&l+{LN@eDfcLYrMgJ&Xj8d<9nbXoF4BK)0Wf9fNc>qRoVkrGNua
zCufU}L;CP#(Cz(kD4NQ_5&V|Jvsr(V7lsbaU(mxpsY)9GGlElLK1*si%0galMP9m_
z^yTRDb_NMPZc}=&M#zmRD32Z44y9A@L)@!7Tt9*S5eA<pyV|lSE6FRje@36dMVyN9
z%a~NQ0h@fUw*4TVQEsu<SEZ`3Yc0uld@DV5(-(YZW7&L&6h#DngUUDLuV8N`;0Zdm
z->vpIq8L}Ig!4*!2G6U>G=*n5p7VdP{fln0Fiq-U&wR?C#KAbd1JJoUbBNQ-X(6&g
zW6wVTWamV-)WG$yk>V;g!H{d1eJZ+`t@XFLx59_cJJ=t|d`aB*%Ze`sQ)#?J8Pysc
zTOx_Cem3^Xem$&NKr&szWs1y-@4L&mc`1CzD1cBaR~ugy!>?iNvDLy_vaw+c9bX%|
zsQbV#<s30?mo*?;ykSZ_&-MR%3^d^3A?!!m?KPB3SOuY%*AuYVNGvsp*a`FmiH^%d
z{c<u7i=Ex<opHvUo{mX|MbZ2v5H{L~9gTY@vIx@povxx%YT+bED-q3~uEnqJrE`!a
zbR|3hH}g{RW00t4tygicsIZ9=-YWI(wZh-+LVS{?(w%GGD!JvtH|JtMR~S6H=!69l
z9OqDHj>6*QR6?tNd}Z3Hv0}>l`naC?Z-jjW4*rqK24ipZ+e48^v7fpsC_C)6z#5x6
zFaN+#!j?)G!g;}Js5C7L^8ov^{G}8m9v4Co;VB^C?FHIThP4ZC#hgk!P~BzM;og-;
z9v>n4vF5UQ-nwwt32H1>&wnL&HX4CtGOHiEcieN(P}cq_W348W07lV7BeK4E|46sz
z#UwchKE}()PNgTVM>|<7Bslq!yD6;ca*?CxvQcO7CgR-{j9Dh&qr6R2m&HD5PR1fp
z#-Eo%P`*zmbB^|8llIio2di~D`{k4E(T+KGCz1p3jaBW7q8&wrW(I%VCPS^;OUGE9
zd%tlrJ+HB%5`@ofO&}%-;ryR(%V#6>Ng6r&yaReNnnbTkB$Tw`3p!lpSI(?SiLRHK
z;nA?n<2uW6*LQcM@Y!I1s_0bgx(#Gn0>~%A_pYe#J5zb>wYCDIy)Hk6)MJMq#zasH
z?Z!3Ygvr-@BtAJA$X24)R-f%2wGDhv&JH&o1<Tw3yndl@0>UAD5;&V2gGh^KsdsWU
zvKQT)0d_joTh-0wys+3l`I4yX6Am>27}Ffpv?G(FMZq*{zs;_33aW58Yn&}nPZaF-
ztW$JmRj6cLP}o!a^VZe(m(GWKT9OW>IqZR{TFf9S89FeXIMU+3I>c+V$y|{b*O+kl
znJp~KKB5}YOmO~2CikY7>hDQ2Y~xyMaQ$;dT|7JO$k_h~IRAbz4TX7M?1;RT7EhGn
z<PEK-!wbK)edZd`JYXq%BcSj>dc)Ol`_E4~TcXKxp7#hI$oXSg`ngMek<~|pW9Vy|
za#mnt%;;n`6{7G$MRyYPx!!WCkFC^#Sa&V*wI3_>H)GM@P<nc8T#ux)D}8iWB14fM
zcXJs#Ya?C0qCm{JlDYw{uGv*EhE@0}x=G|>rM%C5?uK5a{KVPgdKenl%|G|%fqCX<
z_Ay-7X(hXX$xQP`9@$!qCC&Bb^$s$JjBX!~!iEi%o19IXfqy|(EhhdR(e{Iy?X#WN
z5w8}|6su?vpC9S}h%q%oa5?v3AmseeVqSm@!5=9X3dOg(z4sg|GI0|ck1J#A6hZ!u
z-T>mvQtIkS{Dy}(1?gV1U)nw7dkmhv!jJu^IxU}%M+)o4a~!;I#a9~+##iONGEi4k
z-$gBP`NK8lnUyt0Y@X77F}4;N(9RLk;!3U+QH=eH5aZR0nh;fWH)vrI>cSRvdYVk(
z8-BHVN;>>fsl+MOUCCBt$hm<b?SGZD-^p!2ER2Vf96Klx&n%u84jIQ`&Id=>SR@JW
zQG)xEio6e!sdBF$gLW_ZLo$GYX7l&^UyC?I77n%dfCTc}*`Fn?JilN?NQ-}6<Gf9C
zLlYa`iLoYsTrZCGe;$y>X4~`$yzHh@14tuuSgX7;7<(bDQh>sS_zce&_-RXG9^noJ
zO2%noQQm-z&W7S+gF}`34l&a@;!b2c2s5Skx1Q`<eYV8tK2nusIc~Mn*YV-N5zA-D
zZ{tlE-G6)k0lO#jSrF~(V_EI1-1(lTI9lj(i1L!DA&1=cVcbtpR*9FEak2g+D&ue>
zE1lVk^~D#;eZT|ZYdMaTcPLhtPkE__3cIRI=E6&YzthC!a?L#twg>!${6~wRqf?Ke
zEaySX(ci9a*TWew;7uF*u{mIbmxq}IrU*-JL$*y4^TbxFjNuUJ>y?fGi|FhPz_LL9
zy5`TL!4(BEWp&=qVTgz7J1A6gRBrDD?x$PsRcLs#RYIk%BTpfqj_@aJX@NTI*>16G
zU&oQ5#z_`80cd^Gu)UuNLOSlm8Q#zNI;J@62sJ$9dWEdJH3h^r)ZIMrqC0wvY1LEt
zv$neM%IZ11&o}6NLck}7*<*d$-4@$gBJG{(5yt2x-WBnetGYWq&f+nC^Hu@-bXL=I
zf(uh|7age4nJSomONDrSSZBX-Dbtz1dvM2IbR^J5n(Oq@M-m4JF*M2FE4vY^z-IAt
zHTzUUTWg}zZ1}bQ(;<BkfA1}aWh{0QGW=OHD!hU<;yc>cE)+*<_J96IG8UZir$^F^
zULJ<DneA7llnS{bN8PXjt!WL`Qa5H{#C;7N&zbr3e+%>fKA`wGaMXfkE#zP66uSAq
z&>Qi41K=7;Jtjzw2)Mq2EmtovalRsx*{$4T;bcUbmsbIDA`hkNk8p8-RJ^rOw<xMY
zJQ)NQR<goNB)Cx;z0QM>=2kFK<38gl8<*qn1KS1&6Dk*3urHOXUUAoR|8<Dzc;49h
z>UONo`dkV>A0on}1*i-QWj-*V&SaFMK4NCKX%WfEd6uPdaH?u=AJeUAJs8O3`R{&S
zr~hJ|{nXMh>H7rnJ(ZbR9r}@t3QD>x7c9sm@*`>A7qCGu?s0Po6Oo^=mMYs$aaowu
z;pyg(eOKmS{sBlEPT6A7+3Ni=|F(PzwgqrIz21!ta3;EV?uw362C}c&6rOhJpKSdg
zxfh*S&!4`frYii|j}(L%!KS4KU?RGybE(}X4a%9AH(RNHoMN#Pz{z}YX;m=5yaT<@
z+I1_k?_dEesaU(AA1tp~5C2|0!07=1@41a5%WP^YN3o4BSQGE7fbU{DD!KJp*595e
zS?z2XQjl8Q7-=&okX-c`wxm_A&NR>{eB-oO%zKY-Zo)O?orTuMN@VrWS$H!5<=n=~
z@-b?95NbcnF7j7xt%?GNS=RQm4rrTJJR&T-w@6`<*z9H{U`3&~QrO0Ihkao3gQXAR
zKm`o&=^aM&(-~z=<-`xC*eq#%<`>*^%&(`(umw>)#Q3be(y`ApG(Rm2?ER6ML!DK3
zBfe|IF5zO6<%V9d!=E>cuQ)A8*ED^Nl+(<h1*bSN)003d&uS!|sX-f$I_+V%{07<Q
z<>GZ7LxCK+cf-D2lEdPm7OjS(-?}p%Y1c0(X;ZjsThznJ94xXwV+n0QeOB#-s?(GG
z%m44u1Sj;%75S4gY#58f`z}Wm#-+Kc!KU#7k$~EI2eYKA-<tH#UTy#Q`M(%D>!>Qb
zwcRTsT_Q-AG*Z$ajdYhZNK1E@bSNR6(%s!DowDd|>Fz$0z2E(P@80J-<2!#i7%pKA
zd7kymIq&<vuHU5?BoGGdWZ9M(B1rB2WscK@18E|(iy<MzpPfaY<r`PBF5M>Hs+Yh@
zeEZL{pRLHVE{1s-!L)Q8D7|0uqU4P!zFSc55#ws)eQ7HJ%tW%)^B({GD(KK*d74JF
z#eYl+o#Siz!msL62Yc;v=mqC~=dMxp<p)3-VS38-J17l<s0~Ze)wi!Y>w(o<TS<V?
zusa?u$oO)>DV6kEt`(Tp2ku#@vsinjY(Da8(n7GF1*7TPMjX<|l-1j9BJ4=Zui+tR
z5@+YT>GsOrxxe6pvqgR%<cfCj514EG6Oc=D3Ug_nI_q^1(=4ihXLPBOe@MmM36-yB
zN}g?MY{~%ocj7()$Mhkv&i2357yCS<8zI#bibn}3Q)ps7W>4y9ht{nY@my$Gu^>;v
z=-Z4P4>XmvS=FlfEw+1kwCC@6D5V&AfNh^VuEF&BiG&(Ny)Hid!Q#j5izmZjKu@Td
zk!Op*_!=*|aYR}PfS`%`_%t;FM`3+xYOI@d4t+&E$_UpkZEkEIC(e64KT;KWQ88`P
zi1UotcOuA~4_^rG_U$*vWNVp9mO$up7%jpKZe&4eOTP1O5fUQySm}7ib{B6S42e0P
zb^KhGer70gwWW-aHzfqko?@bSfk^!xL$sJs-W97}sL=<o3x{HkdGij_>&};wG5U*k
zx#HJXhFRNn_J;aIv0&|u4I`CtZ2gjW&G3_4Suv8wb7C-+wvvdO-<9wcT4jDuPUbvA
zVl9*0j>c8%;G$uMi%O@3;<Co8kphCKzfa1ZcIyzdw9KzzCje$4zzg!!KPjDVs3>b9
zeVqcB>6Sa1AHRNXTQ`A-ZNHg#Y3apG*THpYN>9aHnW6OVSaLjQq(k%H=u<zI)DJy|
zJm`!Ai?aXoLs=p83>_~-%?9CP6os^H7QV9nw^*c6L<O8}B@5{>enB6`bP1KwtGvXd
zKl<WY#H#X^<6EM-dPEXNJ0)^sUlK+=Uh%n}ZOOeP((^BM&jHo1px8%?2yspM%*D?*
z#c`=9QzamtA(oWwW(6M$!DgGnNpMz>M@sAK%{8Y{FLxbxK*WXyKB1@ke1q(?5D(q(
z0<8)0kZ$rj@<S7sy5NtP;rgecH~e8CcEyF;kQ7Pj*R@#-Hl7&{By_j_U;Tj&@WZ#(
zl!E5lo*y*QnkgWA2&o=COF}Bcp15V?^gFW&+*HsamqM;Vg=lgUcc;6#ms70!z~4^;
zl4fL5)~2pBcO<mo+>>|x5wT3=#V?`7N~t~-=p|ERgi)d19DH2ck#6R_*~-jfqW0A{
zhR}3MEANa|R3n!Y(7n#Uq%k%Hz$DwwJi3}`L0<(LmOno7B|V2zb2?KJlTN&>T6VPe
zH`lulE!D+0fas5WIVLj28cNT~s~#J$R&nRldYjUyB6=#vcd*hqR^mQ(lHtN6?K@}O
zn`JYibU*?QP8Cnl@GH%V1Jak~>7io>#6(HiqR*V_Dv3Dw-!yrakH^y4Md1%AAOG5A
z+Wom;csvEaG4`dYRg3G7jQ3V;mfp;LsPjej@<glTOdRTM->>rmASvDpM3Gi_IWE?p
z5oY(`7D1bz5BdCK7T1dBdIm>?HXm6f3c`SBQEg@sfTYHpzA$Hs+D>En-&0&<;k1m5
zrgULd&wrg5p62iWeGY9yQw7)scAxED%y%5nj?Un-T;@aiyV1!Chr>FJRMP{T5Yy)d
zdI;SH^H<Vw?K@wIW_^6lUR#%H;1hMIz-$<R^j5C^*Mw27ObY&WL3#hs=c#jw71cl_
zoK=X;;7-dq04>;;paxHay-hLp#bVuW;b8hO>sTgzw9#}S*tj?@{*NnhVb+l)MRj!`
z^;}to=UfTv90;xkKtYWeH|X!M4H1^3ku^l4fPHD{C9j&qY8FeHDiE1|07RV;12Ety
ztDui-Y1SThQ?AonAP=Rcf4~q`As6xM{#_61s|iY!oc?fE>}i2WDNz*Z7(QhV370CI
z*<x9l@w58zn5N}W2{M|59WIptgJ3)@40ujTP4<~8jcCGp(R4wWADE>Sp(beX`9uyq
z!VVrlVgeQ_`}6!m_nd)7rp^^6tQfh27ojc$*}qU~Yq?t)FC>#jI`51Tv-D>()#%}>
z;O93>$X{xyAkS~cLQ5@5<o|rER2sSArK=C;sm5z)wO?4ntsP5n+Q(nN9xmQ=+M{zx
zxoNm#Mf5~gbtg<1&JKDUcz3Wjzlp9<`8i}fmU6ziCs*4=XvqJd-|b+(_y5`+|MLd_
z{dRw*h8oM2#qzAj{pj1x2FG95W)U3F5!t{ql<kS!j>n!xb-?N`P$%>Q$yd_>XxFk9
zq`6Lh#y)rP*RjK;&(Khx6DUVBEHg*4HLigkk?QXuFy<P_E{Rsrar?>`B%wwRGl~Ww
zYVBqd3yj!h#JFK9|HoM+w@}dooUIpQNMwSChg^z)^`9h#{cHx3+%sKqS^crVILxlK
zyTEuTW4nVvqp(<&xSF}8k8MsOZV}G?-2!#(i~n2>|NaU7`!D!kzx>gwr+_F!phd3$
zrU=e1;Z<t}H6oG$hF_D&-jgA102@a5=^jLkAx&9y{qvDXb3tQ-(m7o=cl-D9>3@9x
ze}C~yIvl>^wC=ES;U`qgyeE$uyM+l{(Qi0&5XZW5{DcEvX(;}yG-p8t%v&?UWDADB
zO7#D~FTW99@rM>zEwxCm)>L42$Xmt87r&#TLYp_Mp#Z425c`99HR6L%BEH2Rmjwj{
ziF;`M0|SQhbv8Z&i%;yzz6<@Acu)z%j4mez?Z{X2^>z!a5#ofB`e3zqM*%fa*)2XZ
z9k|dw5j&**9<|~np>h(5(4-~=YS&Pi>A#i?Z=;V-D+<n~QR9EV_-_+kB=5<fHsFQb
zE<nz2AN-Hi=D#i*F6?u~Wix#IVvPUS!t`I?nuz30E*T5QH>guuT<kFS5a}?k4^hii
z4wR5~$*<}gh)eA6LKkZlvrs0_9*9iDHHk`PxbE7|9x%ld-yT0STp7`6Tn)L66|*qJ
z>`QUD9<ruRx~jCFv5y~gf7t){u!GxYwZtZ-LZ@80Nr67=6-E3k-SXyaTUwz8)AYZW
z(tp28L%v^MT_wUA&wcxkqrl%JG=Kd>Xuz|Q$>`sr>7)BMj!NU@fl634F`lFsaUm{f
zZLwrP7p9>|SIw#%Ru!i+E_0P1v)AmwKUf$&+XWxz9C3Xz_eN6N=EvE*i)0_-B+0Ws
zn3xjM+j<E%OUA5)bV<*=ArOTGJ}=ML(fB$Bhl|Z?q_pGzud8k=0y+_#LdH1%>#FgE
z7dkpCcOYP|zRt|bgotWyLMi%XXEQ>d)s#H+%NG8PQa0ivy8PlFF0Z@Av<1>J9O&Vl
zCUO|J6j0#YW0*I^EL?;mYSj_k9HVypvn$9{N6a+HB%xlm?1V_v5*Srsg4+(F8Il3d
z2vV*udJSrF@^5eGOl{695&qEt`S<HsRzdt3x+P{qYR(4tUkasvzajtnTN^?ke~Cd0
z^<k(?N5)8w+rXLZPdn%qzY3iWt;1xSL-Oo*Nk^4~o*M+)%}c{fr~b9c{XbLFq_wpL
zajf$jb@+xS!Np12AU*;-GHn1rHC9On1@r)%JKg5Es`UT0@O&o!2(Ib774cf3|9z1X
z{X83=dp{JtTdD0n*Cp+C)-}x{X=<kbi|#kLW$GwUU{Dr*#H<m}2EdrKAf+dC9OkkN
zoGRPt;<{#ML%#E;@_InC_9wR8-vV^pyGo-Wb^1U=lGd^^Mznh5aqA&<R;Z_X^=xlO
zkwPY!N*3&<m4pMo(}f5)-BvpMPr!V;QSDM|X*eV#WWKq&p`oEA>zy+9Wg5UHj}x2%
zsU<bQ1nWl;wjP9UE<A;nDl02<9+rANKG^;ifSu@j1h9lYFnLg;Y|4MZ<PmFEy73bg
zre3wtao^y0wM)%-W5KL?;!{+<Vs1Zp&uAvEk_|KO{kht>iVCKMLDRm<AhYU>jJJjE
ziFN7IrkpkAT5uS#MWh65x4uf!_kt39mdVDlb0i-mJ*T`C8m$v)2`{B~p|YM=vqI^-
zXsayx*Ny%+wc7viVigQDw$c+ck%m;{`xoR1i%G607g7ZPqH(+&1@=z*LJupTi4ycg
z>KF!RjTmK5$tL$#S75?M3;wmFu=DYL>9G&MGp5WjcP0wsp5*;Z?pM~Li~2ngCPu@_
z)WBHO=zcaT>ab%AO#g`MVN&}5s~j<!8KvyRJY=?QE3^z|QN<WoSdFLC^Uy5-0jR^}
zutNsSkXrryLd!RRI=8w5mvAtyC|exm2vR|8Z?<!%;KLE?fY?lbj>g38Y>NayKVyNH
zl}kY`B8{A1fq>cQJL%vb38s)jQ8Q!>P}~~=7n$wEBWRQ)CAYDAJ-E*Rs@(kb*E|P+
zgZzWE@Ra5}xxiomA`64bkG9>!mRdZ(0MeN6?#MTl6||DiwtsF!++Khdi)h;Je0`<c
zqHmWU{OfgKU5(rx%cb0(TT0vi37Dc`TT9^3=DiN{+<LLe<phlJ`T@;lnNqgi6ZGo1
zZ0Dn?6(ix?)d5(wltDAq{FL?zWMFK7k7^V+Led&0;Fbd{Oh0ght(15ve@SIF4kI;b
z0R)^xTE{-#@DB$ZYQSHb?RI%^a79cdlgJ`Y2&mnl=9JYtHTf)5Ho;^*)9`AmW{Dtj
z$q>_|c6d>N=TsyAYI^~ONUmq-k@%^9wo@PVy>03<OYyV+b!++8)9n4m`xzNC9G=Bo
zjm4{T6O$NKhY4k^7zpyR=<eXNYd|%neoB(dBz_rRO%IK3x%S%OVk+r|>S??wMvB(#
z?pr1}5Bi?Opr!q|4p1+$3c)^~1?C3EiT$v>85FD3of`DRIJ<v1ed&230q(W$fol>L
zq@;uAGtLD-W7A9--c%u7KcuJB&FDZTq}fiDikLpIVr4&NjM{d<Q*vbJS4qvu5HmU-
zeQw|2>2}a0`a$#K-929?t(Y3n&_ug=3h?^MP0IN?H+>m>t0JYzLt^ukm?#cyfN`e)
zVuGYc!W4N1E~oWTuYVCeM2x?whiP!!-<c)x+vdC9mJJ)k>Uz$!P+YsXb1>kk>FL=*
znnwuqr(x4QAKv)2D0O?J)P#o;d|;D;AxSzRvA^xE{Awl_?C=OcuXkHn=ODpTs&4AG
z`&b~&Kl%YUAvhd#`Lw50bUYlKQY!eC@~}3S0aH2>{8GX{JucMvxHPTcYII3zDg;T&
zKE@Ww^^DEK>La)hh1Ttl{A~mC{uIKmE%2kLVa=xGg1OaMSRz;EOSY)qge3|zR}rU}
z>p@MZ*gpF8#zkOuO^0S13+zD+>i=-(GvLfY|I&vh3b)`rRU>u+gEw41GgsaN$R(wb
zGKq^o0rGf+?a5+|S^GCLC$IRQBVaXXzMd&y_~UAyr?^s}Hb)R*u+|+K1(51pKNw+<
zu$O}<G_0DdqvPT}WHT*bm0;O~#}C)loZnc=DCjkCscDYAeddDg@O}?G_oYH1zErMH
z5xXHK3D}py)%ICrklz%UlVJ19-OKqX(9e$?$<_+8N<W}uIW&L+<3@xKijC=)Q6_T@
zXsA^5%I<KYB`RoM>n@LXb#}bNfYd8$3FN+c(_ODPssBMr13%0V%pYgzHItKDq%>k1
zy-j?WpI&#_g{8y6K1J0t`iZ1;MUa4L(dQ*1OFm*N@E>c=K-=;On_Pkg{Z;g9l2(DE
zwVyJc7#9jS1%aj@fvu*b|7koM<OiK57JRD<7nAIC(as9Jf=Mp9_#wj)pg{vI{BF`M
z;i+w($n@tepxe_2PMc)lkG+B;T=-MiFErCzHj7!7K;-^pu$85g(p7jJy})W+%mVj+
zon6BQE&lc@ug(7;Sb=q4GXHM78FRBO_SX+=Z!6BPmW?d`efFI6env!(XI|#L%=Ap7
z&N`hN0Q8D8Po(7r?p9GCo9wrBk?*huS)ft_ZEU6%BUPq96%725R5sa3aMX^Sti^RN
zswIfnYAQ^A->5C9eai|fSzF9z)5E#(kh>$jbn~nn_wOp`-(aPwZXZ^d&;DrSevz?`
zRU4NW!lZ^C;Tpo_@O0=@;H6CO9DUrn&vMnxR~phH7H)3ns}j|=hHcp?lg@6kPe0SJ
zi?`oi(BXA^&}DC{x|nS2A3xU5u4s~?8IUmS{WI6NpV|{94psDch!WBD+AH?%tDoE(
z+Jqzd#yUYRE0%GKxUi%x$R#$TY5~nac3K(u(!aoqEvEN1WaAD8Sp`YFAl?ESiW+Si
z*yIfXrrx2vuC5V4PdcJ0Q|uM;2BB=;zE&~T{bQsmpeqvEJ_F!cbNR>V>xL9zQW+d+
z&Yx0&?7xM{bezfw^(|dzG`&`X-`x4e2sxpTKTY-fXCu#e0t5kWI(cofo?+4bbjb4A
z;>&3r5jbn<W%UNmeQ=&|6I)E;ajPM%RZ>#&Q(o5gg(4cMf5KM)fIne7=3AKZY+m1p
z=f^M1OfEBTb}WzUNxmi~Mp{4Z##w@LW4=wfC2=I1{HhcCS)G#Xat9q^Kq(eThdku|
zJReT)bvNrp<I+9-;P+V^Xr_zs#wDOt<>*WK694;CBF6JY70=V8rQS6D4dfHN&HQp?
zJ!&!&u|w1O0qZeb<C&bxfv?yFfA|JaIhLOx#{ydNVtv!Zvmm#ok(lV{x?STqEk|($
zTH$-Sz9LQbI<?2+9wOGp4=5*Nv0xY4KbU&5onarArf~!x7s0rFcWZ9RO#j^5_|ng^
z8ax>@uLfsC#5qkPP)RoPpX>tSWc|J<Tw-DH(VXvNpK!P6YO&7ER$piM9<OENK0P|K
zSyoCj3h*&5`es761bi;ME!zn3=2u>3b6Tu?tkuIGwB-$H+Gz5cYyNv-L5K3(=w~SQ
z`wj=%BVA!iT0Y+OK_qVu=t;igPdJ_si;C_R<8I+nG+kky#=hC9<b6+`nk9FC4vG(O
ze_ske89@{8#|&M`yINHk^RMsH-Pdq1UJ)!S)vBpza9n&)JG!ooTq-H1eK5gME71>M
zgyg$1P#^pjH<H4q)F85{IMXqHL2Wv<c<;!)Qd-eP(u!JJ&8@{m{qf|4tkmMidM#b7
zr|2FX`RyK>rCGx(*wDyVuwjuajrhcKL{3I^L<^}omDwb}qv4hb(a=LLP}B4>y1%}s
z?`Amw1GkC1H<bo**i&Uldx9Cg-O}dYID;sPg81?twsTV_8!2I$NIvNvw%nE|?g>nk
zQCmFRUF+gK<!5FCo`t1TonR5D4{aiz5f6P?NUY#}XE%c;B`2hyAX=kpUD_7&7KQ{G
zD}&c1+!`)X0{xHsYT|oEKqpw|QA(BrPxBU$zh=ihT@u?%`eol6MGpyY&*l>!Cm%pH
zMJVu{(Hr0tpbNPd#OTjyQHRB-l6#k3B!wJ_=kjD7X@VH=t;=YEP~?pCoOQxkbOh}d
z0_SCK618x)=QCE5MQWarT)PrwtAtVCY&1>lyf2Uyh{<@XpZM4fiKme@FGj_73FzRy
zn~b1MDr5)$(M_u9Wc{j;6q&aMsg5o)FPVGl@fTh2-jY%52R;w2f?AYV6q3fk<V@AX
zT9B^UzQ3~>u@%eONpyr{i30<{3FM9Zu;SXoT2kZ`7(V@px`gxn4tDB?AIip3TVjS)
z^5319#N4M*KI|>W-U-ZJ^tt&xF^@^g(IeCJ#PJ=$u{QAXLl{HB*Iv#~!U9TaAjS0Z
zV|Vr=;G#L1aevEL=Xq;AROq0kAIcj0M}ihN#6m&0W|RzWy?XzxzsF>p&q3i!_R76f
zd1?9lzx2Zx7YqEe803qFNqT(6^@Gso&8$S;6AORe>_t9)MRlG>UWaT$f+oKF5S~zq
z?Mt>=vT@MhsNX;qs}lQNr0^eyeSSpYG~0Gs>eTzfs>9~Q!6ZhJhLV=@@kyl*<SnxW
zhBW*HliFIQZ(=1j200bpJBT>5Xx$=3tX`N6RKe>E?Dg?U+?McUS*3Mf?$)MCZbm*R
z$Tx@;^kWSSiZ3-<z|`XKckrZDezk_wco9+GTV`OuL<yVr_h+-oB~ztx4_WMnA%vj!
zyJ@*zB4R+9`QCf1U1SbeExKw)%|g(=phL@12zU!yjAjU1^2b=*pxp^r&9Ylgs3&@W
z?bBqTp}OjZ&B;TKsDrp_i@zFC?6l|eC8$S~MMEj1V_}5vH~Aiac-^fLS*HCIu!DQC
zBXJ0rWU(N=ZXpKs8m_tsme4s(;8r7n$qsp!6{S0Z>Ajc%V8F*|cmZX5ilor|yPE<-
zG<MN&LORfJFO`hzTLR!>ObTD?A0fnDyd;;pRC$J`0QoHvk5Qd(j_lI|hU{_n$<f}B
zbpURTJRuBhc)b&i7UaIx0#`y6*NwA}<1gN;%zGSWhE#F<L>EL?&A29+O9mB!gQi;4
zB`6!C%}VMi61!ema)x7fiYa9ix5}fk4#Q7f0+K<gfViZXNS)TF4cbsYS{zZIQRi4H
zBP{^49A+(`(Rn44V&bMbm9QAt8z``)+{Ha#)Qw}9u^9Z}x0IB)Klf<`Yjp3~G=N8c
zSi!0W$7yj8LIS5^MNTF<)@dPHDhb&Gnu*~F>RtRbaGLEeU=H$|XUN<PaZ<pL%nZ>>
zL=ESz`?<+^SStw^IUk-`A|_v>e1cVAP$w9QyCHDZ`Nb*uRH>V%&#RS~V54Al1_)Jj
z>cP6xu~)BI+f*tCJIkvFlTZ_CovT*FSpU3Q_2{%OB|oH>jc22iXQ1ARrk!`<{0^Ke
z115g&ioK|^5G;~B_YAZpxfGqn9)UeL9%VxfmRm^l0!5>G6RDjY3NgD#pLb%=re9>D
z&CD&>q)el)vKpx5KfPWlxwrDVO`7ZUuQ}93h-AGDpHw-mFo1gA^QO6$9Ye#5sAjPa
z4&#E5M$56DoA?k}<CC>TH7%}PAg$}A`nJm%qQY-|hy1&Z7YX-EzQ0&_Q1Ix4UwD#&
zcHh8Yqa(tv`<S1iyaW-40g`}{ZaB#^0GFQPRL9R{?p`ETmYT0pd|+&|>q6j)U@}|W
ztfHW~pMg{1JkMOQJS3^LnAOXI=VH+a({o(3?xfb0op?D&U2!#+JGTCXM}A;YL|rze
zIOp$=D+>;ky8*RJX;qcdlOb$I?;G8Yy*jJfOLgmZq}5O&4{^kjbmgJHtqA|@Eiwu7
zQ*K5N#jjV~ot^AU!hU}pf~Gz^4x0+3NgHmcba?pWdKV0@QxL`@XZ;W+az}XMqX|_~
zT6U(2;+Aaunm*^!FYKu-NlKLBwT9g)@VZb4eDwYtuOqj0@yiLXK+!0GUy&4zykg$#
z@qUHgqnf$*6&Si3V;jFKe(@Y;cMWD@Y=TfY83gKdAe-h&PQ}|qd|7nerNiO0&3fku
z$iBnphv2pyz}y2Gm7BM<kAR3^J00ea9`cG-wCAaH*;%A-ZHn^(5;c|TgE$~WAo*q(
zc?$$iXZ4NIdz_alWw9X~#l%me?nt-X7|+WPho!Xz3Y;7TQ`>B3>Uuq#rbcN>+#aKG
z0Ctqb3I_?+4U7w_VLyk^42plDemD=ClF!N5%7M!6UZ9<}T#{fuGSo8AWNe9k5N5$B
zcejn9AZ94YkJtd*)VIivl8;S-5q@Z|S#JVKPz3u!Xs~Swt-bMUb;gT`!@Ii5!=IKP
z;OcBpC1>Ah0%ZaMbP@<pU{cSnn)94H>k~+XSEire@dPL>T%|*WU`e~pVFwcuSY{kw
z>ma$aq+BLQetx6X!bRM8j6MuQnYa_r7ZA6UUKcy8KMYy}hhq9Ro4#w_ZSb7bu3<JB
zA%)|0?s-Q7xEtI8ol2*N1Y9*~HVsmkCC3jCh7r^$hsTzfT?a`uW}`uCGA1~qs#_&L
zy#=cpNih@6UqEeXAfi?&UFx6X8f%B@N1HJG#m$sTsldCu<~f|}_II~XT<9(;5}DM6
ztYb{Lr;gZAtSvmi3(kIGMbR@T*nH9Xc~PG8%|TBKiGh6TcDeAJh)`LvRqC764^Y4y
zBN6^9HG=JBSD*hnrdZFAOeBytz}N@}*WG0gWK+xc*u8<*!A((x-uSFL`|%6$QCzC3
z25u|MG@ab+u1jYW$;@#0z^>|B0ya*WkWVw3f4FV^#_4~qiT0Fa(r!gv{%Jj%!VGBY
zd5-7Ja8YIardJXQb-TsmwwLE}USrcJS&jOgP5}^GvO2%Q!*0TmLglq(cKclFPBruD
zuWE&s0Xjl@^H)k3-2Ik!TWy7UAa9}MW;@;_=Ux5Ul9MUHXpmzwjKoO#oW#WHONIAN
ziDv}mUPmWCDVcda<c&O!L(UfM8Mdn*P}=#ms-^HwzYjj#6lcA?3FF{LfKt&u^}1o|
z<x`emn`cdjR?wnGr0}2~<8zUr!GbBNQBc(lv{a}VErFP{aVd;vtH^cRtDWuE3bbry
zyB>F7)cc@Jf#QrI?;YFefQr__2V`{}*OJ<lcZIg2_zBDhS_#L;cI~iM#alL}-Y$}S
zuCp;nk;)>3+3l8`R;!d1N1KBmdLx-c*&4#8<z`D}RSJxTW9kn*-|{%lDsWlVm0;K(
z5NEGZ^e5MLi_Q3@M%q^6jq5a+$42}zma8&#bPp8jNf*jma}6GTz>#gHsNTSYxMZe7
zJjDbTTgxPK%jW5mtcb5u;vA&V-rvSJWt$G)F-qHKFDyTYSbPi3TDvjpiwu!aJKINP
z+W&#&Qxk!`9GYX?xL{f+2CB!{3y{vHSrhZfG_jF%KYN?;qS>>hrtmDLL<4%C75l}{
z<IZ;q+-Xjew`T*D4*zx*H-JX?VBf_Mf41Q6m2fet*q#o<ARn>q!#KY?sRZ3m(q7Zz
z^<R}AV|q{zF&ZBMS|XqR%-6W^xq@G8F((jzh~sZYobs8HlbKW0Mt3u-=0Yg~zE3m*
z16dVCN&)6A&2tYfd)RT!vZ)8&Z^eE}xn7EIPgZ;ItK$$x$WsIkgb~cu@1LCX^KWFm
zm19xsv0zY@d&lE;5v?3};TVE<N*UMq+{^)Us>Y2^*H%GWcaEPp4T8)TZC>~7?xdT?
zv)W<-%^J?UYE;BBLVG2i+r>7ot>Y`Bh4em9J~)<)+t0;<71T@a9u!M`c@U~aI#gel
zAlE2#6nWztfXUQq%#_K?q@Gy@Y8t1I4`+4>toYBxP`MAEvdHDi5my&s@XVJ%Pu~G#
z6Nyon8n%2BBG>AkkQ0B6%kF%%Tvn>^D??IQkBnR6oF_=F4!TFqpkX6cV;%I@?EFv<
zobr-KTdZfcUSIWQuJc5f5XWSg!t`NiwxQ^u(a1$yxu4uW=@la{iPIvmGHCq7gS4Wb
z2gAH2*a6a>gWke@kG<(~85>k42vDSKYUW3V@4h6jRO;7@enI`xb`(_In@T0b=lKKD
zLGru_DAhDd_x7z)QcsC_&~I@|*xKI~oaHze1tZ!y{0iy7HeB(EYU*^@8SkTpcqfII
z1KW3lZ2ak5Tu%0ak=f2eyr*qY(gQCQ;>!=inEPa=I~@r}N(FkI$5P6fcT#Zfi9fT!
ze-&K-!_OQp0Y|8Ou$407<1I)CY}m!NrCjG5UIWdZy=Z!QdBru&Ely7mbexhwo&0P*
zWz{pDLrgt+_a;b7-Ka*A0x|6^JP96FFLoz@0I#NK2^QHlTWXQCF98AHGMqd9>k=Pk
z8`4r2W;F%gRw=r<Gj&V)5!<2NCH7Z#a%;T3_ujWEN(r)KTM$Ymk%jq4m<gHhn_^rF
zg_7&{>1935M49xO;Vs*C87;=Be%1#(u2!c5VzpuF`Gj+w!LP^2LqjF~EzI>0%^9I0
zE*gkV<ir*WueP<+?ly!JSl95V3G1@$r|qLj`&peuXE4yvZd~#2_{A25&P(^c!M=Fe
z`Y~k|l}`!5wU{ms#t}%#5-#tUFjwjp)-j!83B3_M=QUl<<5XPj_N+$M%$E6l(l~u1
zckFR7^FeMMXT|iX&;HV&W!!T}gWo|z3KIqJq1f$AW?4v&s^g>dF#nnW!@Ww&+)NK7
zM5tA{i23<^rsVKXYw-)ABWVW3MYk#$=US2^iAM{R!q<x?G3gL9-<0grHeFrKT;(Z5
zn3s|-oV17nbqf!yi}3h&xf~QlBNg@V;l-AmzP(saavMevb6M-)Zh){(U#i2tWd3{_
z*SuQ8fJ3`5IjebN<q`kg?MPGYXiQc5XO;O}v8?K0$n{wEVY`>p?bOG8*J2ti7%O7o
z6xUvc(xrVdf14h0cb29y#Y+*=qw_^8N^dw7MRf}D+kL7o4_6b+?1i-F5W6W0gOij@
z!^v-th`&xl5VA*}H#Y2d9B8e_X*}R{U%z`H%iB>;qoJThI!5F%Djc&{?IE^vI_9Y9
zguJq;F>}e6O?Kpf4Ci(4<@7aGldGt*!G6g|@%mz1(&zbj!wUotlv(K;{5lN<LQyEB
zljyxlU#Y9xbI>a{xtd)mpQP1{KIe^cG{XD)k+5hPuBc(`SV60X-+A+(`S{@AzP84;
zT!}V*dr?P{ZI;g3q*0ZE+a+5_uTvm1s~|&@1}jc{Q`;k(i}>{ZYP*riIg@Td0p2}A
zM9#3i8f&s#)QXzc@?94JSKs&GHG^HC^4k73TaD#8hwo4@n8c>`NA_{TqEV`SNdVRY
z4+(n%);E*D_jzGR+xfxZ=V!$n)|u>6`8k!thk2Qfwz^}vBMx(5MRa(v{i{}snV5LI
z7who5-9dJA+mzXrjKX+*F6r_6zT7kqtc7ekWN$KPVurjV;kVfKT^59swN^Up5r=F(
zd}0c-e^>|qxft>k98EyNzOp?9cz%GwbnvzIMj%7bN5rDHKVYw&HGQXIA?Aq|_k_xh
zb;K^N;jN=QTd)wsh0+;c<G{)*&A(l+hlSUb6emF&SD+40H{H~zwOqIx;@YM1$&bY7
zq!P23nFi4?uPA!x$|75c$J5e!-tV0IxZ*(5OJQbxNsZVcme8do!CL^8o{Tu^YA+xr
zqXQ^QHFuC#m7xPNd`+EqfHUlKw5d>#u&xo0r4U3DZ6gD|i>X$2fx)2%lg=T)U5vne
zHI3rW;{8)5l@i<^)r4_mwKpBHrLkg!!|(=#<`;W2VfH;X`r|k;A1<;T>|QMrg;--7
zBtDHBbde4WNS;Hwi3j+<4g|F29#~Q{7TjSTkPToeH~gxm;SdRBD+6{w&KMy$&lY4{
z7OHtE(VKSGJlvil3z=U`YJxs~@mQ?jt(`x9I1^6>k{-N|;*e!MtS;g2j{W7juPLOg
zEgcs`j(YB~pfJgJ$Ipnbg}5vb)^0is3maq%iO@tcEj8_$Evtvo#3#;63+hcY&D3|A
z{dV6c8FOAyuV66!(GMqo?OjJ{ZMBiO2-M3j1&znq7M%ffNxAgwg|cDvt=D{WuWaG2
zrf-YSmuT7n&#KT}r?5Yv^dwgT%ZeR3EWDOUZfClI<lQc9tTEpf>ze!~0xb&M-~9Xl
zwI4u0_HqHH9*QQ{oyLxkms?eqJF~!87EWpB=a0zOi?M87DYi@Ev7B?om9opWPC{{o
zraM?nx9LK@G!qT`J2Oi_C-xW<`Fbg?>4GO~q2adoPGuyHJm#C;B_t<LpMTMfhP%67
z_FkaB)s3Fb!VG25Y$!%&(P1jCVnZu@vg(o7!w02t+1vM6p)6yLZO)voPPI)qNbL{Y
z@4jc2PyE|I3AEY&>_YNK5tkjsl^Q;Dj?7!Ftnd9?$Wx2ZK|Ueucca?QKVLLp(2`bn
z-1^XoOcpzGtql6*di>M3!(GgE9B0#oFRH(<W}S6uxed$)YU4*<iiHC?d{rkBAEeZ6
z9CKAkB+_<r0UM2KE4>Ws`>@z`GW7v=!5i{<;VP3TXAf<bjSsoKfiy&X5Ir<>R;f5%
zf%1bzTg1M@-$3eO+W%%Cxwfa*XQTywmvOo7#Y<M6YRGX^mg|FH?Tp31I?79FUt2BR
zk&mKBO{lG6bxeqFH=Bu)Z^K*cTZMJVjmjc(^>zjsHP_%J4I?gN$H)79Mp|QBh}`KT
zpx<B2*o9l{8VIQ|k{!OBwsp5#y5=C;6VTK=O&#Fk+QmSFHfS8FW1{`L&cz!O*L#_#
zFindxpC&1lxbmgsqL+>L2dj?wuk&%!pO8Sa=x`Y{i|h`6j#0RidQ9O{G>qHl<z5}+
zHeA5>!tYv9AR5WU%tU!1jg2IqHQUo~Ghk+a%PMd$-(vGM;5yP!QbI$Dj)i$~Q)vLn
zGVz8;sN@!~TYna>(^6Nb&pR^VUKfC=`ZJ_W%$z&q_(B;?V?3lWx=xwLlI^5PoIi0m
zHsG1>?Q9$}E>+4<a>CUC$uK1gKMH?-SJ64i*9PPOTg4pToq<y-65;pPO30XE4ybT0
zaG1=jV(=2CzZo_D1U$<^Ol``|z9K8+P$^2JZ@_1#fB!z_7Ovl3;((YyH-do#>pG|N
zJ&^45Y~-rf?6|G_e#{L(R~aXkNayO6?Q=uxA)eBuYNd7=8Tpo^z^Y7Zfakzn4Tjzf
zWQQi$19rolJu%|-Es11grbR_Xw82fAP`-ScT{QWK+$1X9I3J0`<Xdcr<W5LkJXq<x
zicryY?US)F*~wjR4R;!HHfMa^X)h5o5ZZLULeZH=FxHn?HY?ghJ71fAAB!eqgUk))
z9imhxT3<7q#p<jIzKg12=<qF&g||(W>Ku6{WFJdSp5hM`ln9a-Ua#{=!(P`kHO*TT
zbl~7UIJDV(ENuk&L8Cts>rfIynsOZm4YsG)$95+fRF=%(20o<>F&Mj)Zl2HveuekO
zTAMu!Zgb^+@JOv1y=9X4&f6E}UQm&5XzgM8Aq1U~ReC=1_A8BRh5?Snt^_xkl?ODh
za>%;tuwN%^aLoO#$1)g5lsXYTyf^SEPF<YDgZ0kH{>Ukjbh}mF?xi;<A=$&TKc6c*
zIb@{v26>unek55m9KIl$_|RlIat9%S`G$)6e#?>i{))cOEQwgotcgAaZ;{`nH0{=u
z{>#ByPjSRL4~k_1cQ9cy9ka+X=(O7~?|;r(@_KxMv#F8r8qh%XF0inhKwIM-3x=51
z;~(~<di{CO_4~-z`)SM9($9B|T!e4FjV>uJL1elaQ}>^eDKvr4!?n)^=&p3@au=>-
zA49XmnmI2nq709VQVsWi(f=qhBhwyly&2h7;M#D*sd(gs=x?z>${*FK5#w(cZci3|
zVFer)ntOdeTiQX({oMm`vSD?u<qO!RXtpnux;^T%c5AB<g=<~@rU-Lz;+Al9wV|sy
zk3i#EcX)sElR4YAy@*kKij@s{@--1pUFZ42s^!fTC0T1;3T+~{OgEpcO?)o3inYq^
zzKOT1R+@;9z^ulakK(**Yvx7Fv6mX#Ev9e_FYF<`OP4Uja7>rUYfv>#=27BeQ9#A;
zMxVhSh<H3juXMrCZ=iu)XL-`N`6zbKeZ`{oXCIMYvrX>35KRu{5$)cna=;>b^4xOr
z*}RQp!f_V6A{*SU)0Kjr@oyKVhrPn=y};B3OY5GdZsA8tf=OIj|Aj^bdVdm}ZnaOh
z-`}-${7a?q)CvP~-K&-S!l-aYXH>JOxI>BswD-sLy9+fGHxBc0Cw<JpyuW8Z>&bWu
zq?0zL@vlZ{Yl8&vq1D(!9(yy$#hwmD!x`Gka@kZ5Mrv*L?(jp*x?oy_akoW8C5Dsa
zL_(XqlL_c3A$zpD8DqZRw3hHco^=IL9(XKTFi#&`4%{D|v4&;kCCtBPDE<~O13_y;
ze%r5V8u3=nx8sOWXsHyplfmn&$}bBrLI3=fD^B2i!@~e{(sJ#n3(nh$N$Ib1WKwpb
ze-X##mCF#hc^sUxG}EoU65D_|1EF3B%vYEGjEr3fe&J8%z+pO418VZu0)nFF(&Det
zV3l9Wz+>A8TY`WRlF>b2?6NVnwAqIE+Ykw<KKK1{*-IMEQCk6EodJq*W1A&90bv_x
z-N)|$EN-pzmP|BNsfTwJDdvN+$e449TC?R?y{5lh(3}pEQ+}$)r`kuVm`1s!6q<EB
zWf&z^mY|A!IOe(-;ZTlYrJ--9PiUtPPNj9?8*vAB-7y=1`HgekZ;z-2B0a44&?L^a
z!Y$^%dxH7COjj7o^7oUpM6cF#OEkJQsW~<q`Kh$0HeSA;9<iJWo-U7aqf%r`spa-N
zgOl(44&ja+oE<|<JHd2)w)K|xH@ExPg3e}DAb<t!i#*bV+djydKRB=(T@wXmXyW2-
ze47o3j^Tpv?TcU@)p^F4_jt^+FEv|H&=jv{TT0Mo?=cT^{9=F<->y&J{N!`xiFmKx
z`la1nGW{Yjl0oElvzb(J0Ao&Spwd2pRBqboMO>ZHic&sZDppcCu;7-jNMovw^S!6v
z+QC4BTPrfXQSp{sC|%9aRMk$yo<0qt%uegsv2+_I6_x19YS35oZ=Q-8{s5ydV`6@+
z63&U$ViHMvndh^i?fXgdxsltv^O|(=6<lKL4xV{L{6;~wJM_O;03F{RRCMSR*G(Q0
zS?&p4o}CCvQW}{o{~4xbhK@g05TdkZJms8_^e`eP&*j?5BlSlu4u0(w4J1VLoRFHo
z9*aci=e=&KGiSjh-lg{aejlg56A^eb6l86_je7te*XoBHDbF?SZT8h?xfLqtbyp|w
z?(nu+%QaMT@W*{_7>w7&x7mk5_XO=FJzN?C(BiVoLehtYjl&TIkb3c3QU5IRndsY}
z2z_qjW}{Qy>sNlMS@*avvhP9v$1~8;yKteaq@Ov}OVU~#Q5U5`8{L}$ZkOxrv5g9+
zU0C!ZQ}rmS-Q+i`z;zyk(nOw-A18Tc0&!vDx4uC^9mD~+X_1%H+UQLh_wK(uDuzQh
zD{=4#E~w$%XZFT0jlBM?PFjaM+u{=|fU2!~>Fvr|VvF;8Rg{l#;JxhP8rn|Pj$A%9
z>P>S&p%0O7ymzEdn$m*BK3$gm&ZUp5gN3qiTH?ZF*Az_U4&tn%R2FjoY6=U3-1Rn>
zfuaC%_@#sSL{zx-VQHmL@Z0M4<t;P)7N=Xft;H@n!%wUCO|JQgl>->3J#94fBjXvq
zjS~3dS6ej!bG92IpFupNG}JSwXq4Gq;t~qy{pu<EiP&N!Z%vp9jSdpQaUoXmiO4!p
zBI~y2GJVKCeIR0+s6bSZ{%h08vhT6McC0mbaXJcG->MX5)9Nb3U*Oq?6~EW`+v4I<
z5#-T~0@|7tf@E`GztNJ<-{D`U&P`s09D(`Pl>hEb(eE5$6RKd;7>bLbaHr?JM^&Uc
zh9fHDzcLj(v}3A<6iPv|cKuE|@t?x4^=&L(5y#_@dSn03Ik5%Wyw63(D$ZhPS(A6A
zVhY_MQQf<dr=9P+>PMeq`xZC@w}f1%z8q)LrJ44gLVw>So!)A(&kxbLNroJ0#?^g(
z0K?Rk3g67g%exb~)J|avGE!@Sd(~a!as|v$VvB-|^wd-b9T#+4{hHXF8(-^e7#sKw
zWv(^Nv}xFDOrh&nwQci!*XafYra5_1fT}lk5LYtzCuCrw;d~cHS04GTrdgGF>INLM
zO{&rf0Zsp%0*;@Vr|Tg}su#l=e%jjtvPLQ#<t4oO@YRe)ULk4aIXnyejn+ChbPM^`
zu^mz!n)-;7-l+a%7Jm9q3h!tVo&wnl)*U)3yJ}>fzxn+Pde#rRb_ZuEi`H0NS&cD=
zMdf6cyy<<m)HL=h0U`l`5mqhn?H#4166?|dSqpIs?jKyG`d0ECX*r?vg~nmuV5;jZ
zNRPUb(Jf_~<c=x?U}fi}-&1JJ5(fzZ|7VWW&pWe7#Nes~+wXpcJYRnEvo|is=}<Ic
z-PyCR)h!?qaItVaT(p0W9*Hu@7auT(*Y0&DS@-9`i;R(Ya|)GIAXBd=>=CauAVi*o
zW0-7p@;=iqoJ5<}qi==7oe6%;|4qORu2~UbuS0H&yph6We{_JOH^wEd8IldtW~jqn
zRpIJt%?eUbH_cT4U+tVA(KaIJ!hETSUY|g(2##a#Jl(p^P-cvy0xSlx5OwrkGlr|{
zciT+PFR0CHi-gk4^qtt@#8&I;DnrX%mb@^~U}_!K`NVvYsB$V?_@GPFN!Oc|OyZ2M
znl5>ZD{nzpdI!$^W7YnWhIQ(<6;r3tsn?+KER^+Ywou&j_Uk;BpRN|0+6eV&Im&i1
zwfO_31Er<XaQxa%2u+%m1?(9L`)1S6q8veJ8c*fZH)6U|!!nqRQuu0pMyWrFYE1s7
zMQ@V`ZVU1i;at_;SY_ItFDzApHE1E?^H71Ys>;?FPJQ3CqVS|Nhh1+vFbjoSoWYV1
zxE*GC>={|`!%@m_L|OV6!gVQCw}HIsvYC3i;0AFzy?>#%sFzQ#v##_&^JXx*;<KLY
zm-b~73m1R;B}?Yq8l+&W(dlD|&2*xrT77gIR!%LZP#XNJr&gx{hz&=${Hnnf?HWHG
zUNB~qWbvjuebN}godmzww2Lo10jZ!i+E?i1AW>1SEWxECw(mm$O&42;CKX&lH8-@i
zWXQmH^`!a$b$q&5PaV1+{Jebzw$py~07WfLJ(Vk2vYm1OskBfNE&yuk9}tQ*6Bp*0
zzJ{he@C7IF^5ueSFs-tkkb^?Pt72UmD%O$hUvc&@WFz-~FA`Unjcc6MWN%Zyhl+%2
ziZ<W&W)-hfeZJeYJ|Y*GefeepIVgEmi>t$^iV*D*oAkW&{!5~H4JUg7mH(&+4nud%
zqN~}IrJC{Emm?zIuauy9yNxC?UemL1#~EV4&T1!*(yz_#19=2iL*E8R^xa3CWM(+;
z4+nLb{8grVj&D>(ZaONOE$>g<AwSU>@2@7yehyV8ulc9tl(a5^bxjp(U~~<P$4+0`
z;%*WM65^u=mDH_>u>1l3f5gfwgrCp_Csds+N|$0o?&I>J^={ARs)m4xny#3O(gJTW
zz>Bb&)+_(gHnnWKXP3*;ZX$*Cl6Z-=F-N?55OYpxL(MrBj-`W{W`JihHTk%0))bx#
z+UL0O?q<w5KI8WJW&hv@5s9IWkB@#vg<6clG@i~{?D}yrt&;?b-=ypCUxc=8dWUzO
z5j|KdaQF&l5+ALoaPLrHWz2(f$)CvP)8R(jG3h>2_a@@IZCT@9pf-+U8S@F`G~bh?
zzZQiQMFRQbNb@trWe_Pu3*?}opW5kMf`LeFZb8WV>*>g2W0cC|N1#AVzz2#jaR&5G
z8(-te3A$Rc#zNwQuP-i~D$7+{*CQp9@A#Mr&-{<)?M7awod3?1wYmmkZTx=gDA+aC
zlKMaDfJ&f`FaBfg13)Ld{;|kM6wQU$>7*eLX<mL3g3K%BIsnR>12Jb$4paf{3ZVDw
zpN4&V%MI4vWQ;mOhU@%C6>l!$%6B_%5jVHrG&b8g9nDSqM(ViVP_zeXy7XhY{_6SX
zXgbY-c=`2JG%f6NS?OQ1(3RG!MYg(kgMa${CADT@4uz3W1fk8R%+!o!ujfr{y2QJh
zwsoBw314K{tM90#7>+dybTX<8sOKXu+R0^p!$oj4?Yfr`gd)-%OLd-kb)|Y(zdOlv
ze;lV4qwQw78H+}1+<YdZ*Zkx0U0lQP`8PxBNwxL0iaIOt_#(YoCaiAV&t(ccUOz~W
zHk|gBVJVA^D@U@v*ZftA{liMpCK19fATQ`rDtYMnyuIX8j`WqtO$jHhrswJ8DN4d>
zNprS`ja#l~Gnw4VyCgPwt_v-pH}^MM{PXW@3S66RGsC30Kh4+2DZ$RgAR37aG|KoO
zYEKRrKklqv13{%m4$oavk!$}C0a35w=tmae+2R(7y5!6DO<i@3_t1&B&*9vuuFejZ
zmi9wh3^adal=*O>o678zAe|Q#*UU;_L$jG_!6D%=bt+?D+J|OqPT<4c0eU@RkM%Us
zfvAlc{3`@<-X)Q6!u{yxJ4OvFH8{qwE{0(x4Bv8^@z~Y9aIZUkY^3XqbQt&}5T2C#
zF5ngq!98Lqy7MERZ<&uP!H)TpoLbTi0JIG^?%`@Xd0fw|EpR%-3f8_6qORqdN_-!+
z@Y*hX!R9xfXDDdu`!#45|6Infvn&75#I+wpz8KGkmy37j$PZ<;m<x4Z&n-Q?DR41q
zv6uAw<V<l~WQyb)lsUrJZKwES9NX)Y@9(TXQO9!FQic)_q`X{~$uzPQD=iXaWI{)S
zlN?iZ^?!P%*`T|Ce*QQ0x%?XhUjVHr;|6LrhY*Tp*-sPD1<QGJq4k4*8qP0wquR%)
zC2w5RXI*nfY=;q{m?VrcQ#65M28RgcvI!`F+U_$Fp3LBka83iJ$#y)4=haWsj-F<-
z$T%}Z;Z}Rg4sqDNFgKVfqA4%@Qg6E=Za55gMI2}g<>B>aIK$s{C#xsy7;|+@bhMJt
zK8J@pGkhGFEk2PBibj@-(=FQP&1~1g)Tf)(`^iitmYwMNiLBZPzBfl^K|>A3s3whn
zN+33!)R3GsRWQuaNpP5w5oqmVVr?l%Sn5yi3A5<6RR5?=dPK+blqK%B2h=;|l>SL5
zl_Z}(-DYuleG(H8U^0uw+W?vfZ1l-HpL+4w=xAs|Epku^zU+{saon$dL{ME~=j{7r
zR8s^T^WqG&PZ?!mi??TEBayvsgM*ys<BGrV%3Ar1+RQ=L%>m58R4U8E9=2uY_`6}}
z_+zxOz{FITglT~L=O8}mLM=0$rK`bCFZBMn$HW?=SqAZOCfN|`h{K%XAXJK=<V5wl
zovRl&5Qk{mkNPtK45c(7JtyC<fa1+{YY=p`$H*OrIV&AbxUk@Ix0Pv7>-M=G%<1bL
zC*EVbm*nNyJA8bjB_6dGHKPa|fw4&`EUssn<rC9j$)87h7k@g!+c?N$o^yMIxZxX!
z>aX4G+7Nhuca4~A&ccA7uMLssfoASaO@5u#;sOsQ1>s~gm__kv5^&dcK<A4*j(Q7y
zUm-bP1iRz&EhI8hyIpkGncdBsk=Gdvv(TpC1z>TRTHQG=wnn4ATyN)!xA&~ZS$6v(
zs^0XNXD>EO`pjT-(fh4+q|jdgGvvhW$r}1>>R;X7UubYax(<V+rxU@5P)g|xxV4@2
zTM~Y69Jh8Lm@qHCnzCXVHY8RR<x?ToBKo**(_+FiYW@5ZrlC+><U6=@8QEW8U72Rr
zW1SM?uj9F?bSbyATR-qAtPKD}Rk=zk8zgI&zu73@HHEYI(;ai2?YwJEJFP(BQ-=Tk
zCm*@@K{e^l8H&ngW-sc@=-+CfJ-9or1Ig?41Xz3|w7nBVgcNi%kF<hFq4nrX5lVpx
z3cf8p6qrnhj^V)(9R!M`@o{nH-QC(OY3<*EJCKvmh`W?$E~vK~e_-*w%aHGj1-yQ&
zSBukX72V@N4F$FV_s-UMP8DhjuUquspW&3<oA&@%P*ld}3B->MmZP}8DkV<|R{EPM
zyUFe4craZG$lpSjD@{!15$Qt#Axc&u&Hitqch{iCVYZ!`LJzkSE_tml_r3Pm-OwFP
zP&`=xHz3{{>^HJD;`lByTAVTn(YNlaO6CEyFHCgMqOY_7q$Gn3v%3cFcG(v-*-bRW
zKM1CrLGc!h%7x;hqha4um}+Kz*YcSF&I5A&?(a7GhTl;~Cp}))e$nop9CwGL25eM(
zR73PZybZ|1%8l%CHqYsfp99U69nbFqk3dUkqqf#fKNeGOy&}jy86U<GPw&NoqK9kx
zbsCv{p7@FDz!E%np)~<{7_Ym`^M-}ukjLZ}OUjegi}1sZ`WPCST=T=ceBAX`67xo2
zFYuPu0zEU7+B@7Xjm>(wZMtS<sgc!!O;S0ukU`dCsyKCt@@Odj{jYFS%-sauf%?E@
zR@va*?_H^&D|Ak{)<>DTCzez-()xIRD8BSDF`?Y1nLQGPDI2#_mbEihVW#&7Y03%3
zag*f327{N4L~K69jAPv+XpvjRx*Bg&kidq5HPtIkmsY$IcqST&yRSq+DC}n9`Pl7l
zz20t|?rx|r|HSwRXbH3`>hzh-vC7q^s^l(bJRkTOI@&wib*dF{Si(jvot7m!Gow1O
z9!}uGP^uri?yyB(oz1*!z_8VlSVd4_hqfrv-{Rg|e|7$Pf;O2(d8`$|Q%6#_H8jh4
zIra&TYrk;Hm2f*Q?g_!vTYz(KH}PAq0&WO@N{o89Akleik+Av6p{lj+9#}5a3MuTZ
zyitL>U!SQ@AzYU8P6BFpT(P_x{EQ#K`8GL{aND_V$)=}uBP&YAU@ZSK#k%8=z$7FA
zWzK>f;(r>sHj=Tju{Oy3i0}C3$S17oc<`%SEr?$34|+u^sIWXLN<<E<5vA`aZ(v=*
z1EId#5o&&~CVlKL*KwTT6FMPe;04|eKG7n*91;edyyas_<D0iVh|~;!OzS@jYaao-
z?7%Nn1?}i1*WG=7!n@t&_*%Gm?7MD{uR>HpCLka)cBqVFBU%x9z6=6kasf5JW=a66
z4qrs;0yVKj4eBZ^45Ta<2DNclt3mSt29*$FoPh-S;Pn-;u^@JKX#UD#j2a!<mUGaq
zFaDjR1p2g~eG(U|npzOnN#{3#q%0hQnLVN1XErF1Oe=D73xe_}JCDcv%PEp|WIQ(7
z=+g=JX4h(DxUb{_YQKDjeJKrAJBe8P2~t}OA_LYWRevwX;$mBCo%n>_F?QQrY)3g$
zArZ9*$X)y<RyvhP)2=VMeV-I?n$PBZl$J(7OX`RLoiY+aNu+u{r2X60{I5dmcM}}{
z@V82znt_9D%+uElw;SG#TGbgc$IPD*o2_*=gifyq$a`IDtp_x2e&Q4x3FM;a%5|MJ
z&;(TKc&bQTER5EZnX#9p+T*s!9C1i<%NlbZOT;_5lw1|K0h#_wQ?~)GwkqwHTIl;}
z`EY>^L>hm$wwApmmE-<WxqRe|g>+-!^Uy$Kydl0q6YPywL$Zzub6_>+c*qd*%}8<s
za(PG(D1HqE3S8%K;}=}^u_jBfi<CZ2{XYv~XxuAvC8g6ER9+)>IubEXTNLhUb=eNJ
z1Up?=68N;F_Af7d$m_UNd~qJM%Fp^%?xC=##HKXQ5Hq-sy1CIl;-mnV8i~RRZK+xR
z!!}x0N<A@lGIGae965zk)jJydYZ&`OTDv!ND69X6v9Extvfa8B*mP}>ZV*%&M7lv*
zK)ORxy1Tne1*BUVM7kTK6)EXPy1VYfcfRjC=RfEC_uet~(AO=4vG@DD&wA!sYpywq
z@}5#WDjR)Lp#z-hsH{*?wYj_OcHo8YNw(n<KBrW(u+kQo<_j6Kd=}V|*cQ2K5>oN3
zo}V-7s0t)<78c^l<-2M^y0`1mt}R{qar>NX1rE)=(wJ_xeyvu!5SmF&B7&@I!!o=H
zB*BPXbLx8v(^!`XN0G&So&_R~T@Gp@!ro=NTi9jD5a*^9vQEI(BLsAP0n|lvWeS2f
zadBF0ECHo2iD6SYLrsz22EL8{xK1CefE8-dBGUr~V0df1pQTk<F7iazVWrTDEdoE{
zr5+m!CE+*G(P={872l&kFe48YKW0<#u;C%YP`fk4CfULd5@1TZ(xt*&VlH7v8iHxj
zJ2le`P?vW5ojtBrE>em)iUyGgWy(Fa0up<}<1}v<qZIWG35@hq3Jg;5ToON)BM74g
z4RYnk;p;fYMfiszQI2wsHRBAtRw;kkiehFPlW8S3lJ<GPF-%64=3wb4k+t@DI|gTV
zk*{PkVTzLBGUCd>AHq*?oT)!n9)?}F(u-H$zHX>M|GJhb95Cy21_lyahHqn8O~y_s
z91oi&x1(6MAM}RO)R5v86t~p$;P;zl(APxSqsfJ_ECI>NG52+pVOWY94r3*IE93Xz
z?1TZQ?ZhQ|YH^*`t4+-<fIyD`)m4DH)qy$d*4RL&!4Vl^8C;)hi@Lm5`A}q1#|f`%
zv8w3CTQZ@m9h>ER7=uZSzU~84L?2iQuR%l0g~_Wg@;ADb>i$UJ<*G=(_$`|`kekr{
zeMGb-iBzQhI7zc?%0#mzZ-B(F-z-C>@$}4vuwmCHf6#l;SKsRw8(q1M%Vy1a6fJ5=
z>QxdDq8g>0#V!4sq<r^&@!h*%j1<TS=j@Wn+xXV#xHDqXHG4<F1KlL2k#yns1lcnO
zb9Y3+PZS6UEB3~EW48&KiaHgJF)~Jbk8^TYFF4^v^k=G_6ERYv-vjYUBZZuVjF-HD
zT6c%5%A%55bjH_Uz;ggtu;V3kmPCG#zcYLegHE{zPBN4grBb0P|5(Id7|WmLe?NWw
zi2~3~9c|&72bw><G7S+T3xsky{%+WVPs8v7^jdmX4FNXKxO!lZ@Sa-6?eMz>uID>l
zAFt(rsD{JQ<7ta>#FB$!9dBJS!1%vY59VTq0cx(%+nxt85gKeogS`?9Afa7~j(XWt
zB5>IC*e`i;+)w`GBvOlC)#UkArL#k~`TeaA@ryM#ZvNA;d(;83xv1fIa4L;s-MUJx
zP|7p_qG@;$j6I*^_pMH}qZMGLfurx5HqeXu8`#F~g&GMwMc3GXcLzmYyH$R&1kaO9
zRZe{&pJ!5O<b#^)es^HJxAAHe!LD6MU~DVho9A*V{3?5U6YUNFCVsVQ%X8tUlG)Pp
zKo09Ii^G;^$TK$mi#Go^wF6AN15aWiov#;d4i<%(B2T+eFPYm*-gED%yPxf>MIVB}
zX)Bh-^>v=tUNk?3(s-Z6if1IB#EH6XGANADbXdkpeeibN{cskKKe+t4SuW|w;=rD5
z821ox;p$z7X#)F3N5$j{V<eA~|CAG`dJPG0>~2-7+U0Ijah1wM%6`S05j)v(ZeD>n
z)?#E!pv&F5Y4VuoG|pCDw$}fMgu3Q=ed%uI-I5&r=P~|a!jYCGBu{F(U!0$+zL>x!
zKFAvUPC<S<@2=)AH~IN%cp<XE)3sV+KB0c^i~8X*ltvf3w{@fJ|I_i{8@iudaoIE6
z<Il+Z{W9i7ui^_D%PI<I$_g10yDNQ=m19t;nSGLEYO>ErX_!L?m>CjA>nn}MPko*o
zf4;-E#BW$=TS}3-%!XIgZTM~_VR3$3aw#mR#**Y_m-pmXsp_b#>i$oi_4ouCVU~JV
z$u9z4-i04ksBs=qtc)Xgy}NC2az2dRkSt!(y!#H*tSx}#mb*#p8u^Yqb{CJS%yxzt
zbB}%;hO*oWs;a3=+Z}XiJrj50e>(xOTU81uz*i&R;&c#BDj|zKeqKI}1=DSXIPM5(
z@6T*n_8s&^$B2$`k4-rE?Tv#uSI($~2MbkrGX-pv^pBME1N^;Bw5zk2UbS+0Rq{}b
zEb`Hbo%qxu981B_=h#!+cAG;(Gy|4&W4ztj5tdb8(6VV)V9g(B_@o_CJ-_TPpFHaG
zub@R!#1AY4GRFN;Dt067D+xtD+3SJQT4UnTB!u%m1g7Q%@2UG=M>c=&p`cTeP~Im{
z^ZVX~X{a4hq0Ig*2zvO==RpX3pi}+XN?F|`O$Hh2l6mX_MOAEY6Vy=G=hjIAFF?8L
z5S=Xbcdf_{47@Tsk{|Rp0dY_r3L*9~nxXh=fOhF*Cz!t>jV3j}(@xa?`Y^Q{2@PH3
z@z~5ugec;lg7HPtj>GBS0t7yRFA?w};gkf2xtB<oQPjg9ul874-dr4Jx#Nvw2V-Bn
zu?-l6r^K?{2gY{!d=ZNXE8V=iRUaI#iwOilP0)!YSi7W4T2l36h$PYm8r4T^N;7%8
z+ycvJK_*74PxggR&gFWbW+RWE$vN(lbfg!3xhgV>tbFj~D3in)a_w2cjr3roR{0ic
z-h^0i*`<=soV!9c#GOARv^CJ}$u9a$Jr;=mQ*^$lN!xZRb`nMtA6iHZu0An-Is&{*
z^z(ZzJm|6+cMn0r?qH-jn$t7*iGLR<8Xi^_Dp=q1t~1qCMK$nScz=e?)_kG^u1Xd)
zso?=1+=(U;uXD)?Y#U-I+a5c)*NFl_cg=faTDWQ%ZE+>R(2xRzqC=7&E(qwIUYvsL
zT|u@V();W1JcHVU^<{Ls0=}R!H+{jl<W(VMxOp%wyLety9o4!?Nlgh6+1GJbYe0G~
zCZ_yG`3o$ab2)l^u`Z<CepmPODl9acN>%6;gRkRebD-|~SRta#)07Pc(-$)$97B-w
z#08++z-@Kc*vG^>!dLDAyE(HVHE!)f@4|C`HAmw)NFoY7k6$GyG`=N1RW;x&_l4HN
z8A;%W&UKdGt7GE}KGjgr>Uvi2S$WeoM|syfW~OBiBX|E+%D*A<G1on1lyy{vp44>0
z2=&0HfmUJ6!s#`RpX1C{8@0g}nY+A?Tvpah^ZJv@trJ2UBS$EMKe0G2I`pS8Z%=8u
z=+No#!+Z89A!K2b?HSBBmCM3p>_+X}z_x6pJJ>X${2&mZSR97boh)^ht9%D)uI02#
zgwg0^eBUl|thDv{6Q}WP`Y%{a(RV!oAy4%%-8uks*Y<Nj3dNnPC`p}RubkJ^>~a8p
zi7IK1OyaN!E(vTYN88n-c{G!ut0~WbAE)l9rrfvW1Gm>toT{hs665biApv~%H_E)h
z1(n>mEqOQ_Q@uJk&;zIK3EW0HlcBF_**VzJVHYFVJAGJbye@Pnr&&a92XGuy7a|bM
z(1DT>)5j~Q6t_K7HM=x)<1EwNpcvQD>F&Q0ofUsiNVw_G>j+IB_7g}(6-X7T3T1?)
zdXxLRI|Rv!u>^xa(2|_1Sy{{Tpk|srr+HV<QMboO{EF~CjP?REZ7+uNYI*(=f-kup
zf^+i>mb~tOs1=-}uVKhvRk|+TEZToc^_+0z9NS(@fJpj6Br}(>4$#pO77?td*8*i@
zqi{Ro<xvk`Eawc0J(*)76Sz~ME)jECacFE^)ll5Mf+)woSy`s0;$`e}UFc`KPEe)f
zd?GeP4pq&s3g+AAsxBjYuHb+_RgFrnUnw-g$%J7d&Wn0MaUm1IM<vV{#rx*kne96L
za>)6yuf|e#ENRBO2?P#?#^cvBK3%EL47%2q>uSvTc|u)$Tg^XsuLk}~fXAkQ`TI43
zWRy=G>SJ5CYHTWLZIXP2Myj6US8uc0h^x0!=@@-TNR(0N1VIQP>S#)Sk4;X$*@wJr
zYLtP*F?%tb9<31VX}dAN&ZM75ldf<rxf`-CdWv3U+anqX|4V%ECCT~0+&h&Ow)Bj0
z*;GWAmK9S=y?Ignkng>Z(S#Q?M1AwOt#Sw!HVLx@P9o%`*k*5T@`@;vJ8QN2f_*Ws
zlY+JMG*xTtmZoN)bA*OO2tHH2E>fTLYJaY5UY^vs^MBtKdzOyNb(<v^=sn*<;N1gn
zW_fxUdN{;;cFN<}oc@fes>q&r48z}D*P5Qp4`}^L<~5ELN&!JiQ={>uB0Lm7*nU^i
zr7Y4bx_J$*a-=d9e1~^G{5cE?elw7eo>6#<@JK*LH#U#k1zy9HSQ{4@Dl@>k?t!&#
zC%JQ8Y=~{)Fw&uYWjmeJry28AZY9j#3@MXB(~kwU%-QvII-dqVOA9-YgCJI#^>^nI
zYUeWS3dNF6g|EOSi}tgKjV@FNDi6jh4eK+~NC6hv-x5rQJ_WPdMxi~Wn(%#xY#_|&
z>BpAoj966@0Nn#BVpXc~1!%qONV^nU?Z*g9(avV$aH2N|Z$Ayc%G*BFfZI8#mI$3L
z*?ZeSD!{x{e?Yy6&FQ?OJ`PW^KElkhd|*Ukp~XeB%#X3*Z_%_zGGLoFqC)fzDUPC{
z%jwk@|L1b3D<#L7HVQ8mG_G;-BDeh?bQP47l?O48G5JW~MkcGweh!*zEA=kO-^hvy
z+KyWeiHpPRmSpo2T>8R$1AiJ1GYJ8ew>Q3R<dZM>k&(y`liM78PqnR)ln>h+(1gwG
zd~8mMZ21ZOsy9cruGEdEw$24y_Sc}+Ja<-KP$sm~p4@#FmiKMLGkbq(@yObZXS}4E
zxvWr>{;g9{*TPFa8zh%y$xw~MrY+m^+SlYEi$m^KB&QcTK?TrbVfCG@bF68^8v!l^
z?N_CK=Xo8lsnx#axt5gQC$f!^6bWgbJ<4ymDDRQ(3S8?KW6qTFY40Se?^EdUIgTPe
zK||#2{l?cM@&c2ww*G)nq;)H2CvBG^J)mv)Syj5B+WB?xjP4Dmi{#J@{!Cy{a4fia
z3#n{~YdabD&Vtcvl5#h~QtB)kMS7+lKA5eCN@3T(?fdw(Y=^#&HjUy&m17Y^Ll!wy
zYpqGwrh-q3v$DnqpW0p=y*v=cN7?@J#eDsfY98kv#}|}~gP;jwn<g_)0(a@#A7p&4
zUy`wHQpr8_?}Z=h5&dSy$o%4r|79=87xPEGgJ~kHfI3GbN-0J!>vjm1h1Tq?zu@#$
z)HipuH32X86qRTjhIN>nMPz!e9?CX)rn0s|F_rXd820*=G%3}HB_j3?bk3%%38o_L
z9C6voGSQIeJi5iskWzq&CP@}FxeR7$f_Ta8B!UG5Nf0aJo|Ll*93U3lL-o-hy1ZCe
zHPw6bIutt$!zAWHD~JNm7iG_X|Hx_RuS?ldJ7uAdgk2A&!0=;+lq~a)Ep^gg_#2Ce
zw8Q(5h%O4IcjN9a!BwwpBat&5k_*jR!FXSc#GMAbw^F^M22si{8_U;%{;o0y&PNS;
zF=Oh5*-I*OCFsz=SeqxY_+CpdVV7J^wTz-pf9kG`bFe+;_ApFCoYMSsa@01{uD1SA
zqqH;7#dxDcVoXeOfi7!wDZTapA%8kU{jgrAb#%HfGzRbfI}$QdG2`iVRQ%MCpp0|T
z@wJ}WP>7v*6bW_VHHOS+4{48^hfEG)Z<x)yFUeGI*AV(RnF1Tal>~2|%4XE{?!8G}
z8gyy#eGa9ypiD<4w=JZ$nP)Vu-H+#6@qcF~Zt^;nr@W{%MOr_AXVi9d$bLDe9KE-j
z57~TPl1R`!gj;7Um3;68Dzy;o->-Bm$tZ3lV$z%shb&$0J%~)~zS5s^&rc^_oE)YR
zGkOFg4MPtLiG@ez(1@CSLgwtaRDSPJPryOjDX|rQmX1rGe70ezCYvH&ySf&fTaS$^
z!n?H<4;8IAtod2F8*W!)ZdrG^>DxBkP`+I;ew-EM#LpWuW1Tr?`#aaFv?r1P`+n^U
zn$;ffgw}?By*<=72L(bg?S#n5-N}#4IkVycgY>MbQVxj3j*0n%=hK}zXnl;>>gI>r
zUWizZUMeE*%DT`+@tdTEyyDrbTfxv#o;2gbz5kTPJPHdj;3-+lu2WvF|NeHjcpGJ=
zLuwm%DXSFnmcnApA^IaAMQDeaFG4<}<71EuXd9gK4<g$Ubs0+{{;IZ6Q&RUcbk$km
z{hq{T%A@1ZX;&xU*L|?mIetnww%JxE$&8^8S?v3may@Y6V?5k?S9R+~hR-}sr26%W
zI}OSF9>BjJf&`+g7j0fnY!ggu^j+O(%xKK054?k$hj#ECeS0D|`RZ*btJjrdl2six
z70EqWTOY=r9@LmeSH4@*mj7|~t8I2e_U~@qi^+r#9#`2m?VRUXBLj9(4a{hw6mk&J
zrdo{*;;Q!QUqDX~hc5O8h?f-WszG0Gw(7ZiYPSXm&9jP?3hY^HeO!>4!-tg%6{K`_
z>L!kkv3=cHuMSr(b;Go{^t>z34Xw)o>cowZO8J8<+Um+3c6zbC+X6P2!B)}{?N&Q;
zUUOoXqAr9!9}hQMSI~y$vN`BND<gw9%2!v^%(`^r9b;ok=X8%IQ@=<3`l_|1+G(`c
zL3(&=FZ8#WY;ZMsSxjdta_h{5Z({)l7jFYfZ@qSP#e~L)-sDQ<b6xVftga%)@4a@-
zWOAN)c0;o~t@#$c?j>GTa8K{Nm(If#cpwx8yvN;9in~Q>UFFWajlyhaOz(3S^kS21
zaqB{+*;!gJB`@yCkckgJL#ha}U-@3SIuBw<-E1nXOc8UyWCTcwzx_<u&%Pf)oI9O~
zPxEDH++DJINJc(3(kp`I^4zD0;n76ErQ3!;2KQhP2jO+1Wd9W=^~I>iI8UbpF;$BO
z2TZk7WWV}ZX=DUb1bZj!dDyeNtUYD>8>qr8AZu9XHmtn5hdDALK}w+z|Jo8KpCQn>
zhe_NMz?+IuyeK`nS$ZnlnLMIP-a9czF5%f1+=hsTbUF(!Aj#|fXw<5jh}7p3<(WO2
zyheL9)FqYjAY|@?FPCgcaU=f;YqQlvNg-3h6`oBl)PGSM77p$sg`7{paR)wN1->})
zZ5N!m!2FPLC68vAh*i^w5NU%LWqZD^H^!}BIa3tB8*mHa<hajCoB>|pJDp!vocyLb
z(e-n4++R$hwlS%HuROmH)lq<R!EZpBRmj<WUm@W6{B7(b<X9m)BntTG@lBN&zY(M>
zCZ4e+n`esr+64-Y*W;s(7jR7S<v$iZAef|5A+`PKBk2>3d0&Ixl@Ewkq9ew>KI9m6
z*p!UneTsa&vtXF5I+DnfsQb)Ycsy77)sxM`F&DYpukTk@$AZP&KPk?UUEdm-`P5S4
zyo41I;dAV=)@2C6Yc6$>v9Zubw!9jH(2R*n>o^5{C*U8cBc#}J@GuqF&Xw}9;@tcA
z;uBE@Kh!KFT1L)3ygF>ge#c)hcldXfI1#&z*;P#A?lfugogcLgZCc}6^u0}bmG`L>
zyL?o8b6!uTZt#=W(T6+-Y#WjH4gp5#JXU*^{}Ldn7YY4R3#`(eo|{-aset4#Ag4C=
z)idNTPGu{OQSuv}@6F+2%${J_A;A_>AExn=6hP~Q<Y6*I6yEx%GZ%Rz7mdzI=>QeD
zJ&bs1{<632uVDPDQtE`sU|`@N@K*$ZUK6ORMOZ#K(hmdfPyl|!k)gS`cy&xJEgV6o
z8N4oKi!eWM6*rbY8yFq<bIF=&+mDk^21vgsFJ@H;+4i-q5fwrUZnc8$QHpI}g6+?<
z;%A}gD)ig0HK^>>jk&*r;7O{jfqy%S_O8CV;uO359Jx=(VVh>$Dca<u?JW|9!rlZb
z>+t2PG9bVB;%oHK=ua-ILl?MZrn<zpLv_yKmRg$H&R{m4_w)y@tMw23N$$g@PDzAR
zZDe+*jBHEFyMSZLGO3k@C%O_r@S~mS%(im`a*^uvv)lU60H@{KF9l_8&@wOZ8@8rN
zCxSNM%bzs`AI^FZiCs2VMI*<NkzEjnPa?rm4IY=0!}9YTaN?DjLRCb%@-hs!NhZF^
z5l2oU4C5#5pRlXCP^oI`J>NMeY(<R`ysLBfTCst2eN;6hzU2*cay|0!0KMcSnaRnt
zq3{<BZHyQ(*};uxVs6a63;rEbcuwdS&E5O#cLGa1FTM8<T~M-hTqeI=pY2*;lnb&Y
z<8GkXF49M}xygNE5x$je-=`g<&Cbag_XzX8txrbW%!?qVc^h$Rrf>jc)gl@pXAYti
zye5sQcaC+gYRH^j&Q4L+Cy|4(harG2nvg;UKYm&NtA7rIUEpn0_e^Wi>eDoqNYeKz
zIX@kC;9VO`k8JL7_-4g)x6IgqVifF2;l!IJ7V8cy2W_?6;lbv1m1+$a=Wew26%kaF
zi%3(P`(Noir*8R;Qkk!MQpi4@yBeNT>(k5@DoHdl5un=axYj*x(BS2of9uDNbLKaG
zF}T7p>-ENIrrrM0u*pSR2<FJe!S-Hf*m&W$Q5{@67X(=H9g=JO5Zqxz%p1E}l({kL
zjY~hwWS-eDJUbFvA3Ht)0bx$&YQ~l>zeimS3CHN(2aA-aJu_8ik1Nf3qe+#yDcd#D
z_BKgEFh~>P>D8ox5+jb%O+L(CfU6K+=)I@<&qWUNvG3Z50uWasH%<0kGl`t$#><lX
zEUWLC0`Q*Q`U6Y=i*UfwxGglr61ZRD+~!b?PEakrH=)PzWMSQJsqj?iCSSSWFYcOz
zt^{##jOJ-}c}O90_RTY=-9L%VNPMC-Px7p^=e3HNV+DdmEBHy8BQ4KQ%<74n8};Pt
zb9_^^B|oP>f3ffH^ZL5|p*L>{*F{pYv!);U%a=16{$S<0{KT>sU5=fRypfhJi-v<c
zKas!Q|C)sFMUBXf;vK?i5VKqOY1ln@uVMdlH2ylnM)C{x)TW`F7HY5ODxm|?F}uE5
zeu@!E#Cv|sTN%x!gUkyFf{f0n5zo)ABk#yhFJoX?vy{|(jvVFkE7XPmiM{>-!th|h
zY)bRu5?zV)yRzuYG6O7M-uD<T_~WOC;a`L36N}qU>FZ!w={R9NVJW{9h2?7CHW8si
zF-A%_ICyD`j$3GVc<}OzDw1VCudQsqyH5XyOFMLe$vJ6yz`=8PkUej(MtM6CNtpM{
zyiK#cwk~oBJ3q)V&#5In8jg)X9{nu~;$08bKw7@S`^n(OdRwns&kj*}Z<}gL6q4ES
zV~-8%v^AA`m!?Efp)Kiy-L2GW;-`>vO~?Hr9kU6Qu5)a)4b!27P~x`)#-bF={PW+^
zSCg<3oM`I9B=XvFrrdKcj6;#)U=x?pg?^OxH<0IylD8ugrWq2`ZPqS$_wJ!Xv#Yrs
z1Q?IpL{js+J?c7F0YyeqwN%sC)Q!)$A4im6e17-SMJGI}r3K&3f#?gf(Pn4W7Oh&m
zS=yOgDMJf~M*HhCc)X;#%JvUjwu_nePhXL9Vb|M#4|sy5d|w8;XFtt|iD5SJoQYoh
zpj(F*ibo||{LJp=0@(=>_6qQNeYG}(<$F$Y8TZEOwu*`enP_QEqcATj`o($p`G@KT
z`hN)!MopGz<Ul;{#EEof>-{jz*e%2h>^N*{?hn*wxfidHQjBJ$0x<Egu&|`7kT(R8
zE;~Ak2AbTC$5Ks)ac<gskJZy@sYOLa$B0OLgd7W>u(C?w*V8-{NMewMzDM?Uld*35
zK>7H>emgB7lTCzPZcBia(M~H7g=`O2q-`!kfYNpe)#AsTt=_=L)y^4e&VlAMcU`%J
zo!ez@zfUZ6-WJFuKi-V4L`zD4v`e(LUUG5#+)Wne#EkA#n@TmF!QUcNS}z$Tlcg{?
zDL7DQlPGO_ov^IM_)5`v=fe(UChg4zu|S<H+c?D9E3B9^quj0CZiS5i;v<H2+kIQ5
zePD~<D|n#@{?e#0H9Eg#4wbi!Rkj*ezUdI5VLu8rN)5H6|H`nLx;N3`{&(HyuM0oa
z5Z~d3M+#C>I^|3xbbOCN&ei|=Q3n;*N_!CIWMY87|Cm#6zo(qG$1kk5ZAdxRE3+_u
z5Mt;95YQD3JFt#GA5vlM>y<*>!ax?IA2HRkr}Zb}?tH44;_fJ@b!T@h*jaCcd|?Fw
z#3JxG2DC#vbiLgg(u6PyuFm(>gi4U|{NR{5wc25)#!0nhQ#e>>xbO}nZbA1>X&n0K
z?rdg1cyU|W_$O+_EYOHe(a|43I~8Q`B!2l$e}WgU!Ew`E)y-V2!Rwl1r7UVd<sJw>
z$?vuLd{v^G1Dsvqx$(Dh2DIAF8h#YJ<*gj*(V^T-bo|Ef7OG9$0r;bj>+Fp?iQ6)T
z)e5SIQqHTfn|FUz&fv(46d=6Sb`uw#Uh#Chzr{@5>5L0*pPA`3ld6NGVq_e@5K>Xe
z`_WDM+Lj`)IBvy3bC#Q>a3$>}qgGAq+s@#K*4EY}1EO-7P*x`*DJ}-8T?e-yIf*4M
z@`)@syeYIlZogl@JOwA4%J7cn(vL8qZ;76cA?~hY71$iZobw+>tY@}=^asq;Vz(xb
zt7LSsYoTaA<|oR#A=>y%fUnH4PuGgf{TTTH4gTw^4PNGv3C2}+L(WngyvHaXD_GA6
z|2DwlF*f?ORa~~g5Bhfxg1Wjm8$%yXA|HM2q-1{qyG)ylz!cTS?#4LiFZ@~q<$~_Y
zgL@X;DO^2w)@17OyXmUJBHxJsu$21pnG}fyUbkY6h?J@96d1(p<{zuKnv5+p$LLfn
zx122U?{2T@H@Ga)s&A$YV~S2n3m$YMjKGXG?0^<T`<f)}GCKzyAN$Foz&f28&pZPn
z+VApdq1-x)L{pnCVh+of`y!nrV7jV7+htC&P=#J3Y{g{o6Vp%%r`k&6)sGwr%*yE>
z){WF9CFIX_-8aSjP&3)TOaNDSO(2u|%<Jlel@!WpMQ59o#AW9%v(W~YgLYDki#eLe
zDa~mLJ8{V%M3QZEq+RSg5j3+Ndw-LI*Lg>|+hi!2upD0NY8JFO3LHBc&}+JrR>J8K
z=uCy`&NZF@IKR|?o~V)6I@>nwFj7zGSAIv4O{`jo{T!4PLxFDEeQb&~QBJXp@ywUE
zqJ_G1&Kv$tLb>;1i%xsPD7;;g=e>W{UHu}Wd|mW?rNxNtPKC_Q#vsQhhU<(R0}TIT
zCI7LiZ9#I6e)-4dA(^dv-yHU$-a5K@gYyX=3no|n0lCp@^Q=ewrY*q9M-k05?2RtO
z8CLz7xy*0}_)J@;pOtF27+<u+8!Mlj+j9+=;o0^WO+5|`569-iV^G)k@%2~}p|F}s
zd|zXjZnSfkrM<pFosN|Wm(h;uHb<%H{|MRT34{7Uj{DE8>FN~hqM*P!xyen8Q$Vo(
zz-nmep9h?#z5zE4<GSCspZB(iSoD2Q_N+39CVAvW()n|NTvHJp2Zt&i<CRpro`==v
zB@8av`2EIx-L<-ebZZ&P^Q92-{wlM3MOco=DCL@BwQ@yk2e5+dT^7x<cDQ4Ew(7^!
zi#2D1Y)Y#@?Cp)U3)Gf!mxYX{O20@vim0J~R>U$`$lHYrK{JQC1PDAMcDCDO28M*t
z3$Fs9$Gn}aI8_2BXDFk&@YB8ApZ-ih&8XTUkwTU=S~RxK^AcsPD}>XtuHR|f#DSs9
z4Q$@ohE?oDLqmBfP}zuQw*ztq5RML{I%EuDRo5*6&&B$a(e$l7LZs(d7Lz>m=MiiY
zKR*wlDQG*<U<Va1r1NudlIQjYDN(|b-z`B34EN`~!k<_s^hPzxCNNxz9W<2cwYKo!
zlatS6d>VD;J~=u{09|rfJmx!%+q-2apfp2)j9#5*=bSgyyDuXol<8i&SRe8TXM{Q6
zkM4pmgb4xmbiYp59PR5p8d2k-OJ8_ID}h|bhUCBF7x0vX3n?nTw_CZ)$^8S};8VjG
z1v$hM?)md+q$^h-E%LaTHDik8s%jd#*}uTOZ6?t`Jk+mydH`4e4FYY`_LQ+-_nPgK
zLO$TcJc9Q`s0G?|a$)%ti^WR$HLp{-engwR9;8*VQPcQ_G5?b4$&)<efdpwTPNQ%7
zqBtB=Wr$ry&~y#BXuAg^up<92zZdSk$N3^}es52d;^*cB(JzALCe8iL2I>~q*e>(}
zPzOGkw>a-k6J^tR;IqG+1!MW1SDPf`y+6s-_W@<VsIHLTdU{}+m15B2eD3_CQd*8L
zCM-9jFQ4l{?4E&j!~hDMkopBsIUkq_w#D3OI}RqceuL=%n-iOy{CUE(RJ3RnRE?yY
z-JMkQkT$f#HcUqD#vBE!&X}d#R(fQEeapjG0~4_+wobaHIGa|KrL~d9w8d0a6S}&)
zrCz;a92cagSDK?)nyTS)xVhXwd5~oza_I^!1_mHl?>~I7YMQ?pTB@FUqjm#`l+q_^
z<+}WxaTPU@z%7FdqChg-jR*ZnD(Ee;pU}_2$S8|Up;K>2HFR)ud7QT1j;NTzmX&y@
zjj4o*WI_59lh?@z{*UM`bcxN<J)S;i`=%x0=GsKGU;CAJS%@bCr>#-%v;NJz;<d5b
z)*G*99Z6E41NHy$!hxBj%Zfn5Q0xcvVh8)P9gTdpg?fkl*GVtBOF(iwH&%GB+;1K_
zSOSC35;_N}aF(jutmN*$g=vO6VYq&_^NbMzBBc)v8=I0!wfVSogL8F#SC#>gH9rED
zdngdQXg~H6?fOw@$!+gpETunv-9^d=!&cSa9$UI5@EENDdR5~2{B`+5ZR|rY`F#j*
z#8w#E-`Ar!8TIlw+bN9rYPTX@X~~Ea62FIeNRdvi7Hz@dF@5_2*ov&7<X`Kf`mKV;
zr!@6KyZ%eNm~~I2n$hNH-h_3YV(=n%_K%&N5{DJxopl=MO8Zwq{<-<Q?{<oz$BsJ-
z<b@H=Gs}a1%Jq7lZ`D5&EptI2rJ7BNNl96$w1+(Qk-%h0F^@!uSZk`wW3kok_-PWS
zO}Y+#-E|uCiGzWcm*zEtUW@kGUXZB1Ux2QzZrLjdi9SG>*&Ef^pVaeFvi7<<M_*YY
zA^b-ofg90wl~|qt0AKt!8@)nx)MAR_U-yGPM%%wbj3#q8_%(kV-VZ6=T6*OxHf><>
zb3FZLd+slo_Mh+geSNYx{?)h`7XJ0GAtf{MU_))Nt<c|UMN>+LE7OY3F}8q%?`W&|
zUNvO0RO=Zq-KrV*Ecr|mG#@%?ck4dH4jPAGt5O9qk<8!Rc%lm{MPkF63oF|NV_;w;
z$ffZVmO=a5`vz48lTRz`D+8eR%Ux1MeL!vN^XM-FK)-rQVC`C1){yK(^A?wYpkSDI
zTdaS!tLv4+YzK;ffWT;h!jsPNvd`4i)F@pxlDJw#hd_mfUSU1%Nyr))!f_(P9`>{K
zij0xBrEPKCdJ`GGJP7kvYp%g5zKxNGr{SAfVzDyv$LZ>A$=9zVl^RwJ80N}QA=wXR
zOhwm#j-;Gy(Ja^0QZbwjxuRHOzIs<-pm0@zj;#F~g7T^k|0?O|=HItMrakueg?)|M
z=PQ21c&B*Ad?KQv^c!LJ<78NE=Y`MY(@zTIrHEE~?7IMlk$Hi3{r+E})nC`@NGw5R
z@Cf0ybu%qqjiRO7bM$2d@5n-<qSywa;XVBn)Ah33f-s{!^KhYZvgw|!*bYk(Lb;_*
zj!gjrq=5#ZbB!)3O11BPh{VVBoOv$uzhpozj*N_SD6?EY5u<C%f<}j`s&!F0@yS04
zg^k-ISn4OlI<+<8^SnR`H^%Euf*S$-5F-UVq;nx8iUIoYO1Tr-ev68xVZY=5f*}6-
z*#Gsvw3{H$7wLN(7RvPm>wyB#?w-NiS7RAg@gfqP<&_nh7cUfTU1(+p?r!(hK2q!g
zMJ>8+b0AI+*>gb(&H3Y8r_>D~rpV?K(=qR8z3c^=*%UA^98c9zMqjf1`~ClKk%>+K
z=96k0MHW?XZEfv~SYKM?oEzk}wF__tIVThRYR6;J{;fQM^4CTH`HIkZS#89{g^cr<
zNgq#rp|X4=Y>UC-&iAb5G*=s7Ow(=eP2V%-qm`J%cK-x$0;^tHO)H08baZq;FfA4Z
zQJ7mU-ftR#J)t&^XT@O!(u6Xn`Ed1M3rbl39>Dv>85k;~O2?mk^<PfZf9&YL|HP;A
zQ^*nT^M!$f5GLqr`&sY-e=^0S#(D2+tN84ex{au9iyVoVgak${=~B(=vD3<_DRpkg
z-?5&+@9Zn^SP}^dHtV@PUnrl*mu0uNw_gPXVX$Y*d5nkY9KTSJ>`Ye|gE2IIlY#MK
zwE^IzG<2Jd1EdY;fV3NHiU4R<ypNAJ-owuWqr}XT0CTA*NmN49RIDzK*4C?~dRcp8
z$e974!ZKRXtTvDL1i}H)va@@jKPS2e?CuT^4;2Wz0Eng;ud$wMcwzJnn(v*)<CN_?
z5{5$m=khIfP(gX7&fF-h21r0+(4iD@Qo+i~3Tw*aIi*!&=_aPGnpC#5^Q-cOaew6~
z5Te?gYfKy~)shzx5sCcRNeKI_rP<@Wue|k+j+T~ood<kPc$XB4gZ4Xv@XO=YxSbsa
zVRPe~d|w57*bDi&XBnPUb(IXPtQD(p_K?5U{XYZXU+=IW@c}m*>EFgdekID#%%z8h
zC{3n}j7%j5t)kn(V*AnW{l{ADe`x{a#3X;lZ%}G>KZRf-4L*p&)-IQ4W>PqLK_=Hq
zmbSO)9}*3(eEAGr^T}ljJP2kTbgS)DP#)sRx!_s(;O^ScI4$D(yU@2B;O%t++2oh3
z0}bCBoGfS}U(3lQ0OVMRW^hGN<2p~oVOdbLHCetN2Vjc$948f32MOL}2qrjA_Y8Gh
zOIiN8K{BZ!zuVN%+<`XN3xQY6bmAlZ3-JD8eBs!{oYpveOg&uAJ5$}R)5hMzroa*A
zn41gce<ptaxy{?UMccNH5Y!rV8l7n+_(E3}ix9F%w2$X~?!D@7ou61GNBCX}>FTEc
zjLQ-Yc`(s2ny{GUSJwAL>ZG`90H-uHJG;u=#R_I+DO206e8l+|fhs9!>G$5ZSG0DN
zSMo_O#G;nAu0A$aZyu7?f}Iwb<~nkCad~DZ2SNm|9$QR|C|5q*1`Y{HNjmWuW$7*$
zq$<&dn@bWB`osksZZw))E693w@isEMJ>Ee$#Yye#>>kedW_sY6%a%c2`Tk$HDhIIu
zgOb4-I{d#MiHk-g95K%$m(o(IA=E640LZY!BN3KdX)z;HQ~C<h(a|j-o;ff`tA^Z7
zu~no|`8id<OOsr6Q-?A=fNQ6?yyZO@yBg#R?)b!NI3@tm2eh&{;I@hB+`B}?X}>C|
z;sO+vd66#`hY=G6AYC4{bIvJkRv3OIV)vILK45~BNr6hJ?q=z26d>Qq038v8HO~;7
zFJQA&kU7(J9?J1<2(#dmk?oDGd*c55EXzi^sXzDz_(mQ(aqru4JzAb6h1<9T2vSB}
z{Zm^ZbmJZFYo3}`FnAI{y$HvN@XwY1_zY(MC^ga{?mw6RzrG_RM)AE^jakXEM!y}l
zA{?wJ*YquzB3f4rK_@mzP^bfz4qXcidQmW0Ai4Jzz0&Cd&qivON5MV#{_!lB##~3-
z2tAXB00$&5^Me829<-mN7@I~*uS}zWl$Ts7BLziUsYj+Y=Cf7+66AJ8Y(rl*r1!8-
zY8&!Qw)e5Tcrp5ulFz)=bcAe;56SLHw%tlk&{^*>jDpEq7!0V~i$C{7=2z?kjFP9`
zPCVf@u54K4NAW>!muk4JnpWMQ(|CyS<z8D6CtdfheOa$H<sxv(TK~CphC%J&5mv^R
zo@KRKhl&Z!9k)5hT(}HkmXiNBr1A?F_Z_y!-6dRdr(^Rw+nq^)ZCD#fY~+h4<#qlB
zgo^W`xx-s2E-XfK!+1<&55vRhREoYeIBkzrJfuZdI=8;Z<fA7IC|q}xFWA_Offm1<
z>>@&)`8Zv?96sVqwZ$`w$ujmC%JDMiHV2$%$x*|&i`pSoRiPO^cfX_tUCWYY(61gE
z9Hb$c7=>ZvKA`fyE3^G**bba&{u|hGp{LuEi65THH;|I;xvQr%5&&!4nT<{z@`(@s
zSZlDjkA7%Z7vEWhp7Y=^JY$wn<nW}XEnWca*n5T+_GFofLnr(7fs{cGcIzbOJ9KyH
z;muoYPK!_t8^$q`+BRr|)B7Ez#?_PjVYx|Yy9)8mdvn9xkh8v4erAnloEpU{^%Gv(
zXj!^CeS8;<xg|b&Md&HCE#oN#hJ<l4)W+i}ipRq==7LVgmWHW5MPFB9GKXuWtLgKL
zw*vQ{Ns6y3_CCe9*2Ny(C&%{OY^Iur&uF(FCi&Ra9TVpA1|7Mz{j7fb#PkUbuY0lR
z{nuZN>QcWVM-=`)lN!m)4lG|dGP0l`yx&>qfd&(<Kud>)l~n<pL#d-1BCmo!mIc8>
z{GeBq(d2^GlQ^4ROQ|7T_N$?rRi=~Qru+`R=(Tzm5ixnH!Yn+N=c8QdjlmB^-55+-
znHrz%<#~|Au8zTJ1`OJCw~_+*x^pwiWiU)jQCL_gwyU}9Tv1W6P9Ryl{d_SX6KWvA
z^}t`0EmdkfOClY?jWxlKOG%*z_~3;SK?d(2`k$LvSrQi7F<y7-ad=ei<;;R_hBW5S
z+$?{y?Zg^=IaA~{Y&F7ubad#TVH54w!JU=zYr_6}t+-5~+jgx9@c`vomzv?uBsQnV
zCu}6m7`HU75c%q0Yyp$9pVO5qXOg<pgfs=H<}LvqFnS?BYTlw(7_2YhPS9#6h%#qT
zsd&ga@*vn54%rDxZ+(^@G}K-DtuG0a5tjBZara-yg8wD*e!=pk*ad)v!%n^1t{{*N
zP$hj$OhZHf6xmgrcqmypGiugYn(g&=b$v4Kg&jTK0wjkBZ(w&)B(UR*D#4Q*E%rKv
zW2jX9``jb0#As69qE09=lWx<L&d(QxA=~NE0FwRAo^u8+96-ngGdw0HhGOmzRPcAA
z4G~3p0IVsz0%c=bPQiTflD{f!DB_Q@n-5Z2U%=ZYNvO$Oot0DbI@dy8?mbcQcn!S|
zPK@s>T2e(s6l6S*x!vw`z;M09{=O{zbFFN>bU|uI0yOeR>?m8<wF-+Ozv(G2%mzMr
zpO{p#HCp3E+1^Zs1Nge}TN6LfM|fEV3-+_8KLcv+k;4npklLAY`@ZVWu9#Lz6Zez0
zk8V08vxuquN<(DcY|P}E*YfUOeVoLA_goW8{wG*hmWGvV^kpvp`t>W_+Ex9#|8k%I
z`eMsi7htxM*3Zwc=opkcY3S&RT;T|t$y^s<0PL!5)4+`O(qut=RtF?4Wos;d8E|r>
zt~#c2*@@t%)!2p&jEtzQjF)OnZeCo{feKn)>gIQhjXF@MJ9etzjXrh-RuL+s6EG%g
zgi*wt396-*_;){l{)DG>(t#g^T>vt~bVGYU@_1XZ%>~TxeA1yTNab-Vsvm*<>v2|w
zRpE(bRT?o7vr4#dt0j^dQX3fJb`TmpXZWc3_+FW+Zd3rV?w6ZdVOg;3)tZ^q%vl~c
z{OJ06TGabDPk`&0Ydimb{OTHWN^faUrB4eT?RF}uFDn_uGn8((%thLic*-P@`}K59
zy~!_~tZ9|<Pa(@2F>0HEPVj*-^`?f(?m9YZ=~^fk{U10ssQv<p1qYCu+uJ;VghoHh
z5+h?^sOlBG{o&^3_E7uK07HICJP{~9irN(aJX-%fU-FfJP^^nIs6edu7{fp4ynXzT
zR)C};HQ92eMix}R(zZ$qJxG6U^Kb+sK{=_^%B>rH_grV^yvK`F)_{LG6B}2rnl5c!
z!ERZM;q7YQ2b$;4B~^TYIXgB!{>D`9>$5m_S1`b34<?j88GHku6_;nSKc0RqoWAT$
zDn;yUrD@DBvYQ6S3hs-x`UB6wq3FLV#%&9)+wN20NE6}?(B~(umie1YnoeA$)DL_E
zWA2pI;-@Fdy<ON<0r!UYFg=~Z={P@lWv+Sov8MbD(bV*o;rfK6SIXBrFNaCZZ?Xck
zzw(_6m79cveVH#gJ?y;V&p3<L-8PYf34jY(u@a%RpYENCir4fyxAQXp9GCGfFKnW~
zE=s}nfT0YGp4*#slD`wA_~14$xx)<ZfP*IUUZmJ9AZi)k-`#$-{PiNA<FD=d*DC#M
zs42LCh({7oUZg`G!e$Kr*{8O-QtArNOM59986^WYq}{Et!Y9xyVQQq>T0m5kNMO(~
zkh5DKB&_rlcuS^uOU0+N0&D_boj*);sz~cQj8fs)Vsr+hD=~if@L}8yCo82_);8x9
zn3N5A+X4|iZHu-%XrV7^ghr(aEe!dz(8W2ZBqj~Tsj9_n(lwX;iv24p7U)B6wwzVz
z`}v6(-3Y^&)DoSRnG;WG3Qvv>+0yQtiUXyDD*c#3jxnlqTuzI}hu7@t5Tw1+2Mh~d
z&%BT*Lcgt5BGSnnIW3=5IhC0a7_sv4YActM(D^v{c(2<#sdwT{o9TN4zkk;9?o43o
zR!)GuCN?o~aZ6nXDHwXGQ7#sdM)0Iu-5Q>1b^Dc?{?8x(XI}A-lsgjwdFYLtFZi?)
z!O*^?MCm*aq=^Cs=O|<ob$bolV6HVxdJOSdBZ#%3czeJ_bHs8Q6mTkc)P1kh<a#3<
z8^q9!D1Ssd*rr?q!;$dmamx^#O832oj@+rS!gmqT-ikw#B@fL|hB&djFQG9pY9q#g
zwvy|0eI_kbC>A4G9MN{((fw9os)<kh&&1kTqD{ur;-y;WM%SJ*udKIoa$BBUexuXO
z_W-ySti(^HUPbI54~R`uuFHVW5zI2Fw#<>D!7j$ehSAh6?_Tb{P65QTp!V|*bW8qO
z%jB9})XJSQecS`w9u#YTABpdN`}>*0+<&77ItD+0p87#9-gN~}h!?@U2{<Hqz;M)j
z_m7mfyh9*Do8W&90IqV67B2b0O#SEQ4@!9n;LO40dE@F@*G9QFRbd!Z<KT1vm_o6D
zf-(RK0w1r5zxsFrUG$>Oy*YUNrS0+JjiSaPi}_jSA7s2`6TV~3&@vhtnqN_egKQ(8
zuJt?*gWQh4YM9Xm1_w)nLaNHpe6vUV8;peyTQ6HL<Zwl}yx^+#%!eEwBAAqvl!AqD
zxTd@z*jmmyizao>yP7oad>OVQ(}zF@2cMCz38>S5w4msU<Y_(($E7bB()beu`-RK4
z+2-9g!eV$%e3Rlbm}4IR5Khv2U87Hy-WHz&6E7<^BcAR7(S2EaQ}Ovn>FC?4t+dCr
zYW9y~@ZRQz&jrG^gx}uSI{m%P*Iw(d^~YPAK7^=~-5E7U9-UfrxBph|`3v1EV);U?
zr>o39yY2&8J74+ZnQ=8etA^7hk8VOXlTRDkjm}nKp`o!mJC^w=K@TKze^#Um=(n3J
zID^{MRFe4R8WtGxE>oVf{e|)fbJVP9psw`Pw$Nj{wDzG6yl!WqscS)}QR$cW2(b+m
z{fm-;sfq|_F3{*SPAg7ieFa&pxu*<%ezu$qYQ+MuAx(|OSB1gLTRQ+vAD;Mrg5e-F
z9jAEg1Ijce*i?bb)yFF9n17zk1vrq%u}W@J3_5&)1x=2M=3*z0OZc=&uaSY?1r;@w
z4N`(FM~0c@i^PVdCsMi`Lxr+tD!Eok#Sl+j7)t+-?e)kZLnrlxGwXO}$vdBRO?bcb
zhq>&2*-^_6_*KS-I={wE_|L<O!Vfj*QOn>T%)kGd)jdL1_J#!&p*T=|)~R1yvZPqP
z0{!z54+EZEI-;|!@qw~ip#MVg0J?zIH}Pn;7;2;81nI6pNJAvrHI6;BjFJLUg|e=^
zR!`1355}HR-=?v<pZv~pj$3zL{T4SNitpss_nv0!W+@fvneZ-CC<8-SSQtJ#aXQ~0
z8%AjDNi1oz3gh&%+%i|h;Ceoodjx)+iJTYAbL*qqq{^L6#5Q{EQ_*o5X-t4_Uo_n+
z?9$tr*O1}n7~d9#>G!f>;-sFi(fj$R_OE;t#TA5?O=DIWzT(YuWb^}Yj*Ij%4J0Xl
z#kWO&D&LQowhN*lZNKv8;Y>&SUpK9GBqWySwE2Agv7n$9QC+>mMnCAaL<Aaub6_-6
z7;gORx5D+96+sRVHs6{8-ZNB~0vDO~u9X<tdD6HQ;g4#qW=!}QB#BWI1-rl~E*&Ur
zRPsi9arIFSr}J-r6gj^*T*-#_-<~Y5-9~k3X=@W|<mpWV%>Y#uF)^{EVaMq;%v9UE
zAb7<wsvzd&2gj<hF=bl0tJ#kA=fkWeUSkCc{Z?4f{!lI|lach&nwvjbbzo=3hY6_;
zsuqskAylt!ae6YCu8Yj->Azamq0uhVyDpni>JOi%f*E4MXI^-8$Qfv*(Yq_i21dma
zLn)UXaDOSJbc30NrSM5Hf1arLDl5HdPPVJ@I<vAR=#*mEt=ve3S6PLPav*=F8H?4m
znqu|!99@+4S(4;9?eTZ}zJb@y1Z^^~$$FFm!4#}sBQftYJ`_f8<fW@p2{GRnVUHO%
zf%v=XSO(BAbRii&`WpsZ;%1pehcOQg;<LXGbiaNn{lzxF^^Wu18Pf!fe?8#;?Yh7d
zLgD=&MgkGxd1Yeq83KWT&N3l>kq*RqOXrKepW7<9|L;NV9M$?}yv+J)5#;DJ{QNpm
zb0r#Ve(x-SQSeve0laa@o-3%!vBSHXnVEeB4z+VSR`>h&ck;kLuW0o5M1g|ngHkQf
z{<EUIX}nxd89FQLGJWVOL=v!yfW8NfB&kId2<{p#sEob6y#v6Kd3PH0|B%Uox??Ft
z!Qj`ryqt4Wo38r)SKi<aW59)Za2EgRgk>F)&O+NbZfEpolsJeKx;k@Hte%-$)@lyB
znA~StGF&GRX(*?DW*u`uY;FILi{z#|;s5#p&j}6GyRV>T@_zj_yM_R^E?F_JGb;Gq
z9+`^{jaxSw@;la7VfRHkr{NdDoQaVEtuof5cA`j=nj(mNRw&D(F5cVDso5lwGiO2A
z2TR%@dsNXGt?^zT!}ag{PXD>+$`>zydg)rqBqcX*L~?4}rug>YM}|~?gA2`1b>^Ou
zQS(5E6RAxN<323NO=MG#|1Ky!<R&?9Ks2s)_GA@<(aZBB`oAP7EXa|BY~rA;GUOF{
zUP5a&1h;_#_11v*EO5rD(YS77w^<)d@>edky-ImmxCr~TT1Q00-~M;yL{@5ieBLV$
z+kpTX?L;OW?FKmO**XR9yGzsFJ<wQH%2jTYBW3nS$(0g!HzbX~XPywV{_|wd1ZPR7
z_Klh$jX{S!O)l!YQN4pN2#Ry=gx0R}?bRjYMX7GCL2Z3<4<kJ_TR8$>Eds`>-3X=n
z%|`ZoD?X$+iVS<&<%~7$daR8iR#1>d#~E{-rs-T38CFYNgCGyadMHJyr(U0Sx|xz_
zufGiT>GXGOzdQAqB9&jb&AAxgEO-@WOM<p}UFWV&Y)p0|%6*}+-JfGQ0Ha36W{2_5
zbgm#5Vm?tq3qX-d@yNh{!=<r04L>{6-;wP<Pt43nBobcd*LlrBGsIo4(Q$EclqsAx
z34q+7vuM9T7klM=b+QRN$=~~JWF!&ja;Z=p&=0h^WOpN52wKz^7%tsF-L=NN8+6_}
zEF)MAk*xS!=85(T8baq<>yEdbY-Rq!VzLzHmLIW4jWed#UaADg(Vd-`PD*>1F~*lD
z!9C%(>Nr0~n%;D*Y>)*>M9#ispA4^I@r!95apys2ZbKv_ouRZ0H`Vv|7l~ay+&!NJ
zXId<D%d8dxMhMMjQ0L2kx_BFUN^)@q8?TO`-<zgO^e5LcNLY5S3VxOXjQ&W@E0RV-
zkYc>AI}na9n%wh^Nb|%e(SCVc&|hpkpb8%r!@t$v^EckWNAVjRj6_{imcHc!)tv_e
zam7NM12Obb^;cqI@mG8#v40&Ff8A1)Cz;G7S`V$ihynMA7i6lOSsguV75%cA00`J0
zt@hdTh5>G4VLbp8de#p1R1d3G7mKubOUUHzx&Y_|W?KAVGR)1&O!ceS@#_yGPG14&
z0tN9SBcvKeV_3<E$o*JDL&LRb-o58*Ke$Q$Je6GK+8U+nmJ-y|j?n$I%a+s=Gb|dz
zGAD9XmX%7g;>cVoQ!hO~&iHwC5JlAbsH~MGCMNCFq!q)>!({c4ppQ}3-K`l@H<+vL
zG<+Y(mmE*$kXZSdf#E_+)U~K9;C*41-Z+4aE+Mk;MSOXUoS~kU^?f3CaWZ^OQ@<_c
zO$J@SW7l{ImLTi@nV7v7il<Xi?nfghC$GK(OxLvKX6eh<_CNl<$NzqDaQ;{lv^Q|+
zRdGBhZC5%U$Y6i*@%NBc^LkOqx}#>ha+Y^2)T(|^Tnt3a=~VTQ)f^$0S>?7gYn}SD
zWzzQw^5=e-$q>+=Bf{{M?9)>42T=0p^~aw)wrcVt>EF&%neWei$Yrdp?R<8_TNe)w
zYzg_@tBCXum%Hu3H2X59Y7c*T{kr+)f{(AzmkOi4_b<|;I{#4sRi=i$ySv-EMbYX4
zL3?enJpk7%OdIuo1qTlqz7RKdfof^;gCE~|WF2zq-(TvDGXz#E1`6uUGzFamSe@*c
zaZQ$*zho~sqh7--EI{t|lh2L@5K|u?gbk)$2lY<O=2h&q2OuI(_+0=1E@SxZ1!0bA
zDN;Rv;bT*vl&I7ZRcShs(5FrE@sDRS(*Wz>^i*Zo<7yxg)LQz7(|GA8sOpLS87=<p
zgnam?pFPc+d^yrh;2%&w+}HOfnqD+`3guWvKRiNb!OFEtf1=SlnRJaW?FZX}x|US(
zYU80LRy_^6{J+2_Sg1Jyg`YlvTgGodx9KDBqW@LetxlHn5gEuP%7bEEURNyeBxd~U
z5&nn)V`F1ee|NP_Lrwh(z0T{}`B#;h(k9xl!oTO4e{HsZyidpI_cLF907!qNPK<2p
z%1Qo7vVPN!lxuaZ=vl;>kgC*3H`R}#C+B>EcX)&uml`Pgp0HjS6pNlWi6X~Pm0C|n
zyP1EStz@MkDg8Z1yGYMNU&BBHd%88Q^rXAHJAO2@oA@(mA&i#kXpLWj1X&JNpu}cx
zwq6`%?v5^qY3@9{SL56t`q^|uW_&MR4Fl^=Lj1!LnAOhA#(JorE0^o)Fw%oY*MawU
z0E_dDMM8%^Hpr>}Cn5arryX42Gx)KY4u1oP#JxS8Tt4!T6<zG0c_2(lyV;wzG!<%3
zra3%SeDCf3RePh$2<IT4_b9?cBsUKo>5GQe-Y=y?(y533`GNk&)JLyaKq(5=w0LZ+
z>OJN+tcTkN0{>W%$^c2d`FPQTCZNMYh3(CSU0;8{eaX7O|Mi*vpE&|f80ecZu?Xvr
zHMu#oi+SX_4h{Yv&fYqp$~NmB76eIY=|;Lsx<L_??ov`3q&uX$rMtVkTj@r+yQTZP
znD?D$W}caMW`5s)2M$N!zOQ@7+H0*nU^Ck1s%U7K2jskJk&%(mL*_FxGlzKUp@P4r
zKzsS~hj=Vd=R*(ii@_Duf&kf*nZmrJ9S{;iFTv6H22@8eU}QSe>}(&g)$RDkWa>jx
zQ`0)Yb|T~A3^{TNlR;q~H~BR0=${gPfAvmOR2&q}!PT#Sf-T2Iol12qL+C~>fUiOe
z2FX_YznFgx4$}YTzQ4Q60xOoSb|<L09DirY3-G2o@U2Ltfe|`4fxV(9KN!uT6A^vd
z2#<}3SSe5~-z8pj2I$U9tisI-lj%d9kanr3yCg#h6?pTYPH3|7Hzexs@7}+Bjr9fs
z{)%qc0#qOCU?LW^y!=_Rm<nPEIG9nSy7Nz$5F+sb5=~CQEtuEq1J<9^Jqe@->~W0p
z!-3Kd4yQB2`ptww=x=lc+c3QqV7pnWDX3tS=geGPT-E{IDT+apn-(>h9~Ko`)FrNx
ziJ8dT9=PCrLsQVEgWCKkE*`!!{-qAXC;cP9&NqP1a5T8{+S7<xarf&{GpkZ@e!icB
z+j!?{EtK`|JLQ2<R}Jvxi&*LOi$8SB>%{;0^CyeR6y5b+>B~GhX16;B958)eR8&9i
zeSQLd<NoPS!^#_vx2=z?-bq4eL_~~HlmcnH$4MskIRWUD0fiF{%hxkstS3&vc_0N#
zjTBr@o)4db6Hc1UGbdo7ax|3O_?K;WPQ@P*FBr*bx~-jo`3}MbiBgxf|Bs(PWw+{0
zXROEzx~|wwrWAUQpWi=q+pGpnI#a3$hPUfc(&C`&DxO4p^@<*l0UDlmd(bQ}O*!<_
z*Una-=uv`V9t^p6-ec7~@$WsYC_OG;{@twe&w%Vd9&_++Gz>&4F1vA)3?aJW8CMVB
zTs|pJPcAR*)e1^WORE4+ErHF*lv2ve<Dj6hMB#uW3zu1^F4+SSMg}=u5!`raQh{DD
z^YuO3wT)kKFhC#KS=;ujUdD#{41-KK;Wuz_wllsFDLETQ%HaBJ$ee_P#A+i(1T@H*
zXaoes$oVJBQ+^)Kc=ID8S}>c%a@m21_?$AJs-QPAy2zITGr&S`Edbp&1l9X^5qG(Q
zC>vE*$62|k=HY<EOX9B%=HZTcoOiZc<+{Cnw$mXBYrEX0Ul~-slxhLDu4Epwj&eZL
zpkYp`F0RJMacn~wo0-+ofIVF9xEhzPQE1TC*6!0rbzP=`8BNyp_ym9q1@<m4Kxu)6
z1#V#pCrz5GXHDA8)h5$c*J?N{dj6lassMyno9uubwanG!5)c6An|CTpiAobX4FYPh
zGeC9h`n#{2A8y<y;_P6837SH~xzQknI2m*vz=JVWt{QRqE*Lvq%gdoSi5EwI8o9KQ
zwzNs^=Hh_%{^nc}@*O8eM>|@E9Dzf~OI#bDn`Cd@tim=EBJ(hm*Byg$?_{?|4(iE0
zg8~H2&4;>e8hDleod4?5V3%_wp=xeCk3L~z@k6+L+1h=vR>5t(=JX90S5*M}Up~#*
zA|6OCFW&h(`GUDN+C9j~`u8`j(Nw!2XN!ZsEe1eEmxq0m`{0fmsA~$st3g3oZ-+(a
zppZOyV@jyJIC;W^o_fwP&563acY?&{<I+L;AZGb)=XsLw@6r~l*UFs=r(N_jN)EbF
z@d93b#;vf%i}HopYLjTDBIVLWIgne(;a%1v{Pgdx<_>OllPNwXQ2BAgjsv!hK~{<x
zUF{OTRyLAv-kw`$$T3){I5rrwH~&Oyobv7ii5X|BLC%%>SF5|gxa?v4my|c6dSN{E
zk3t?fKJGvr$I(j<_edi0q906TGJ85=qY~ekMZThaV4H^!c>*@a0F|p+t7>!@Vg6jH
zRLku6$lyY=*1VZc^>-!iRu|lsP1UAONC!Z`6$BFFO2S;uCwcd@6@lGAxauXqIO8_J
zcyq*IF(L1MVuFo)x667FXxeai9sI3sJ5O%_BLL?x)FScT2Euw(k|hg9tIjh0q~Ry~
zJj}boEhMwU`YpmqHX0fUx2u(R<XKH%?Yn-P$3p=q2reYT4L|Pj+U}l8<oUf2k8cEH
zasay*SDDQz9pCuzq++@j2uU1g8jVx*n4|@^1q|;7`YW`8o$$5jQ7@pNXhw<0R7+JW
z-|{iBV}m@2Cq{N}Ng$Gjo7r~*(^UpW_H1^|(N~Jo&Mbb1o%H_?>GFS~Of)%228azP
z((M~a<u*HV04IR-W6mmdUH1IhH;B*+E`FxBEEUgNJ-w_C$v4uKxYRnajGst``FX?w
zLQCp&(gsra=01c4VieTzpmkIN>X2mitk@PHLiK^zM*%1Up=c&6<};wc-B9yeLy@;V
zFqRYxn#ddGW$m_^0imK+?QtN!G~W(owY_-%a_Lb}xlu515tte)1ms&T1H@S(`m!D7
zsPO!a;YeG_J)rLxHq77OouUD-Gt?2^$Qt|~3?kldRN!Ea8ul2-d`ev#lsGeXR9fAV
z8NT~J)_q+Y_{#rqrQ3Mg#U&EXX|pXe`NFK6f_EAP#TXSEse^fhhK3EsR@Q@d<z%fF
z`p^=kmSh9KrfFRBhgIUpQeMo=xf4`i#vKEI>U<W_SaJ7Yj8@nzRjrD3EJr|ai*7^e
zkj|3!O&elf?zy@<l^@&%2^=AXHF*r%DC+SfjB;WRKIGWxn*&;@HB=JTC=7(BZV)ED
z0#0f6lkpac*6cibdCn8Pq8aJrhPKdy*kXI65QF260iVlCv^fQjEw5Colb^rkMeQOD
zv?U<BOHjXz<v-gS&GaM5(=e>90(cJ2ZOudnP!`Dc@+Nnh3m*Q*H1g*k5X3>H`jM>m
z7G1$td!^;g*VWhOWr3Gxvs;6=YFHr{S!M$j)z4s>-S15jswHCV4`%f_*IxNghI1?S
z7O7TFBt=myn1G*WHjSlMH$N2K&&_nUR|nnPaH_x(#?j8&FR4_1k${sLv$>M_`=VYO
z933&vbk*nISdy)3K?yJ=;#>HMuR83_lhe}KNpGb>f$Bbo`MkJtqB=cy71zcLlpd#w
z#sf;WP?|po6|Kn*(u%kO{P#AYR+LbF=#-&*yJ!~0JMJs^UtZQN2r>Dp)R@LQ!sa{M
z0%~sn_2RfKfO742jCkyQQ3km-hweM_(R6qSBx4_p121ioG558JjG}B+J}CpMni%lo
zy(b!cfHm$^`=Lhs0O91bfq}0?VK7Fs<-C{tDmbX0hh}Pu5A0#gbahOP(yL|0O!Y8`
zWkkV~(w{H?<|HfEIuGLNuX2We-$DHSyM1xb2(C1qy`@pj+Vsv;6&Lr9=&4MY=>wuH
zI&}oV*JDmTFFL0Z;muB-=C<1>w%oKvtgERuUr^&Z&|VxFK>^YY$w7mb7HDb3M!SOn
zrvoMfr6k(6>w~8XPQ|RY)kxmcf5>ThAl`v|$_w@-Bv+QY4+62=0x1|Be^ll%5r{tL
zuEt9`cNn)e@?FVzf%?6Xisq4!uOU&SPNx95<#N%vLB&`-3+ZixS`woM4ybVi*SQSC
z>0KGREP^oa^@faG7mX)i?SGcN4M{M#MIzv)`I@P!jlq<oSd<%<%x7X9-t};}&}ds-
z9}*hM((h2bBbZ=7U@2?!3I$VmJ3rN3*-SzX3mu*8sOhw%pJchmZ<<KUZ;GwO{r)^Q
z7~e7ZL=7>V+jbZGTMPCi(T+74sVSoU5d#W4<`<+`1Re7K_c%!E38|<;jiiR-Cmc9J
znR4aFX8KDe+vEHUUn+%nr3UPE<{8ixS2YenBAD&ZdLI>SDcxA38rDdo8v^UU3{Lhz
z!TX5aDxP><UDzCak;a5{ekLZF>>OKD-G$!zwsJ<AJ_>x11XcQHA_dyLR7j6c%&X4*
z`TB9X*mn@Z+yihhjsE_ytRW0tUk4M|<s~_t&hj+jHL~U>nGFW8HEkN7JQ(J5eF)lS
z198<b{HD=FQx74H97&4k_S&4<kPpK=Jt2H8*+#&&@ZU5jgm2#xG9{5$zJ$n5mB?(g
zOs5Yq2MBHm`RqLM0vuWp_dC^8+TOnb*nc3||KSDDflogZwUy81w`k~H(T6})0ICrQ
zfyDUud?-7gW({7{k2_z%?g-;2Jm9QkR#@D}rU_+KsB2wfA~rTQcUCQVV*drT7eR7?
z67oTulk&7kmY?-A9+R`fg}Hgn)(6JQVBxRVx`YIWNvP*16~9OqDx`#XT&|d6epkCc
zemkoNy?jOD)QwC1njg|<|Fx47IJ<ksbplvXKSUf-rMFu=OI|R@)YE-A9~0v~u2=?u
z2gqImSu=@i!1LeX^8W&acq-0Why@{1A<hBt#?tL<>F0cVV85SqK&+L>x-~9*!eRK?
zy4!m4$1aBbavMbD&pg@8f!`ToK~JKrN^8@`-+i=z5pl#cx7`6M-4DGj+_uJeJ0j9M
zBKkE8HD-xiZ}6eP6Ri!1%_Ggu9F;g@scM;ZcjckLygomDS#O)By2v(VjDd*PK}Jqa
zF8Wq0m0vuQ=hF-1n(SepXV&1P*vS(Doekh;C@if1MCODW*vE|>ANm<ZIhhddR0G6*
zcBRgHXdu4oFVIg~fqCl&XbD()KfLDx9Ib8%HMN9xs*g?=bmHV@Z&=`$gQ~{GGu5A9
z@QVa?GKHwY#9Ea^iLYB_c-}n!vH<;e-<0VCtb10E8pBZyZJ(gUenx35&O_Bq_eZxW
z&Df0uc9T4X)RM7b&^~qVSGqRRCo{<P>_%6Jd-2#GVj19RZUa_0!>pP8;k-U~>-o<3
zG|Gdki9J4#<q@8MTap!<db3lA=|aO~ehB3&6nRgeBlD18-GBe7%4~MxJJK62F4cMj
zwOg#%$DWWxy;adUaq(n$h~&b$^C|Uc@dMD!{01dxy|Ipe+nvT#YAKqL+6q35r#iq3
z;`yg(942%D*;}2MP1I&*to!|P?p(~4-BQavfM9soH^3N{CJ2-3)N@;=RjFUc4A}K?
zbC|Y(y^b)E2?@p=AAvDP$aHy_CV?GrNYwSelOw0fE0D-UU?#<<Jv}{5(mLu+?lh89
z`g0oor*`kpKOjhrcFfRS&fuR;EK~Vn{<28QaY}cp0(5@7m-CfVG>YcaCB-V^y@!j<
z>XYj7J~y|wJm-Z#k4I8uyr&Qr2vCiLbB=k-=Cop6VsfUjdJu|~1N!m9u)YWY5u>eF
znh8K4r9?a?fsu3OJiNf&@$*y8u21dl?Z!kUwmv?Tcc61O34{Ouy?I@o<_;U19L6Wt
z^T|MwTq!kRQ}R7oGkg<E%Dfw{j$-$TX*CetD_**X4XXAxg%nar#9)@sdTFcut4uqP
z2%qR(NQ0De?2O&*1>~1*pqQC)DE@`Nf98$S)qMAxty!I7uB>d=c)qI2hVn!U$Q3m}
zks%Bk==?x%{8_sqYR>8@rIKW*%WUyXC0YDz@xT8;h4}lt`tM$+vB8aa4yVD%;>ei_
z7o7pwaNjp*fdZQ%Ku(I<E5V}%9k7_rVu2zpS@nK@g-$m-*H^HCcW+u6OeM?$8vut{
zTHf--bo1Gn&4%fVtr}3)$+<l^2DGIgR`fHlihd!3GWw_qEw@Sf(hOX@$zLccKqsN5
zRB|_N>0wf`X*!V?u?s)llr0(CfZMaiU6-lNVEII=XET&pvW!rteHTU;^Tuozw#(b{
zL1cfixflO&OcFsZ&HPtcd(pH{<Z&wd9(p|6PlHZ-P>~{xy<$|a(cpr<I9!lyu%#7W
z;Bme%<;$KW<hJ=WZ!uq2&U@UZr&?>C+!lkh+Lj>-N=hK^k_4(GXi{OQn{NTS#OEhK
z^cuZJ;2rp+Q3gsdVXhNTyrjDZ+sb-|j+ba#vQwVc(C$S9rM1dhj$#jY*4b^UWoC1d
z>%h)gc_*RYilDqa7o^G@-zcqcrxxH<07t+GW(w!rw5ErE<J+Gdd%=c}asTmT1*o5r
z8lv@(a@+qs9QiMUO|~cy-9KLkJa<YI1fe*kTq!d$`n~$5qAg+(Ccm2w$W=Q3&2So}
z+@R_j0k^w431s79ug^y}d++iK02rNU^wl=8W7Bmlgd;`;#aajv^ck;q({FVW0Ury9
z|8A!W&|-j;f$j;*;RWji0$<?|SM9~yE&~ymNYaI`>g1DDyUBdPsj>)xe5Dmow>Fqy
zYq@#d#cKoobU`=B2%sQ+<(Kc;qoXl4ko;SKP(?Nj8UeEpcnTOz*OVoLf!5?ugyj>r
zB#}()bReEJTdTQ2q6v=VHDM^T^F=OX=mzSOp67(yQTnTgI%yJOvAHh_x(@wh;at*h
z3FnXEKJ#6cv*;(00C>a=>mUBOqHlVtD51f~IBk%ws;Ua8ca*58)e4VAMIYLaGIYVk
z?k%sA{@ZBdUtZdO{${pVTQyBi)!Wk7Ye2K3p5l7J6<cBg;x(Y4<-~o7jE(*Bz1RnU
zo7AJYP}-s8Al5rRT<3>QvbaCE#Iu`x-|5T66LhF`IME@eqs!|b6|)Xv=CD{?jb_03
zM$37}cfBs(mp{D!8KY>g_It6}?^DfGvROe`XxTJcKkg#DZw*hK;qqN>rWisZE5WZe
z+Yx4ozDHo7{{5)+anW3A00If{l>b+qS+bfP`#=tciFSyi!^|3!J8wX>U(gll1l$wc
zN5pdJdmL|ea%0d_3z<o1l9<<CQBI30n-zO)ZEPeoIuPQMQRb#Ga7;g34-O5z(Rv*2
z19_F8F@Fmu<6|=aOui7c!e1J+DFiuOk-9A)!Mwj(3+pkV$Q)5UPM9cnch3UpOOo4f
z;qyGne<-Z}3<nW=%8@<^A8Ef-%Td47!twJ=)O->?3MqvOB0_zQYRpqEO}X0=V4c*4
zo#wwgb}zuk#5BmNFf)MdV+lUX@_S8|X$gVGtyrk^5zIPBz6^CCbiLg|H_Z<ix)<CX
z2Y68dM#ktUGh}V+Z`h>VL9UO{d#WxjP2*K=Zf-1Jz<R1$U~${YZrLD@X98k=@x2X>
zQ~+p$<p-Wf4wNbrW*TPYQdtrg7Z*ya??A=gh%}6+fk#GaEFmnM;k1b0+#GXpSJH!k
zg!D!pV$Iecqun1%>niuAS<rF+mwFks5^z)Lgq(U8ivQiB<$B5p5hy~qfKZZY%g$J#
zBk*@zrnjV?J=&Ez>@r`_9|Nnu&f;Fne1+RSLMT>`K4}YScp7!4r>DQV)T^tIBa>-$
zbB*QL{5}hX^!!P-JGq==`!5kz!5x&(@R~58mZATnas1LK&e7m_Y7oXPM5S+wcACYC
zKTTZIk;(gfs~-I6!nsvB!wXeLy6I+L%d+kw?68rgpLcL6LyAiGo@DW*aAcA9WM)8V
zpaD9K5=FnK3hFAKH|7g&DJZ|5PQNftrPy6J#{t;_gw4<Y{Am6A?_kjZq=w;FZjDaT
zucyF?RpE4wTRG6tEw<baLlo}eA$Xb<@h1MCFVi2_>;HIx#q;zJUnmRWq_#@sKbvN)
zYh-4S`pbl|E22*yK-nOA*?#@DtO}-&fF*Hbp`xUul&#@z#5l{ysbO5T$0&pv(lyr_
zh|9mTYyfuMm>5ahj)o{_8$E|R7*m4WokC;$WMTX8HAq=pZGDtQd(^f|#b~xTEQ=!P
zJNZ%5@+iKxEuKWIHphF>D5cd;-51=Pb=uiQ_c!i@A)P(h@7ikB{MU1G-n&Ve@4W1b
z_;-o?uY<Y1Brpsj7feb@qJu%gmmvd<Rv{FbW}PN7AukmuKcWC~rcp=fh?;~WCwzN#
zCH}RW_H@ggY-UCkFi$DP2?qW$g$(@gG&LVf7lFxFEc_1j;zc0nVbsilmMkkLrw@o?
z*1;t1)ip++sTn&DQY0qXBgqSlMy|VW9Sjl>pOO=OC4tA=flA$M!2JqGz^zezp@@NI
zr*p4Fh*0x@tEM=QWzhhXi>B|=>vP5(x_Yh|Lbxl2#uIZKt0n8rBVR2O8AFGBgex#~
z%GTOLG7cQ?MUpU3n^{6ZlVKM%eq%~ecS3BuWasMi%EIK1aH?SwKA+tx{K{8>-JS8&
z`t&s`w-Va4c|@I0|7#Au&W+jT=g+$YNHw~y=DvUZ9o_#XTN5rK9hiNt>+4A<X}B06
z51;(!tD7c=mgZ3kC5?x_k>c)V4EMI~xN#`yIu+sZHRCr{jk3?_%d+!8#;5YNv4ZHS
z6OZPBsOx=WKL5)|3k+D{;NT)iM0|e$gA;u~wUaVqSckW0eP-k~n3*F^Mav~6r;Ah|
zFU4DSBFt}FyM?JzT65*&)4*4P3^kFTAH-0rsLnx;a)gsnezrCmNnnD`kxfvfa+D4s
z)Xw5C#+u{6$j2o#gfCDuwAbeQieb3)bqqTmdu-$5Z6@yO@bKdIjnpQs$d$l}+9UeQ
z_o?NVg*8X>v!Bp1Xs4__d>n7D-zV0lRKp$P5B2r;szc&UL~v*Ny}yZwiad)oK_%_V
zJ+~mrb~;KpYXYVOT)_%AjUNf?HNVZ(MmC*&nBjj27)$ja`<H_1e<<Vy$zKaXd?I%l
ztNSaBirBM){8?@D_O>CH;}}ZoYx4IpGT~J~K3)I2JpviB6#!>_05s{hBY9<bw(L~g
z)!%zDda_<nx_(7eNjtLpkdocDLN^?##^oX?O>XJ^T&<(;<z`0Yn?tt#5_s+AhPcVw
z)a$V5SVN1W0`kbH80!3h+`;Q%Wy7)TScg<+0#j99Y0M#)T^CJ<CPY{^$9*aJCKzUo
zu}#g$I^!sRl0^hy<O(OeV)Ivnmw%hm@~%MhS9mpys{Ds#hfFAxQi%q2|95)pgs)pe
z$#S*kn)SeVeX<;swi*hMEi~+S2_IH3i&*-xtVzBuD7A~gcsndYJVYiYQ1mV)78VXS
zzRXjXtoA%EZR&E4vpkO_%IkH+GBlDYG{UpCxGi0Z*T?J&^N0-#^R_d|r5Fg6j$XKI
zrMj-K--L{uvWVJd#FRL1Ss-6Cj8^?a%kdBQ<xlOGVE5B)>UPnpqxoxw_G}Fhl#&Xa
zi(l!BO-`nFdwbJYR>o9&z!3f1)+rRDHO+X}MmW)qMVdC_R1s~lp|;-rVqNQf@Lm7>
zv`>L;f}}$tf2747&-E5oUpw->aTOl1=gRqOG7>eNH+11yUcT0GA_~QG!p1d3REjUR
z1X4YS--q$h{Oq+8-#5r&7^*eVY@XDI^lOXW7SET<Y?)xX(I@YIKao&M&VJ*;*0hS0
zKUEZ@N72(4uwgwg(Q4-vy@n*}R$YQ;I;4`V`n*zOD`&+3#|Ky~z3vpxS65?RzIfNg
zSQfZoX%ui$VX)|DXFHYLf8_GvTjAW;Gmia{PTq;NhPmv{w1~}zass^Wn7rZsxpyz-
zAIjJcX5R^$OvxUM2TwFIM>OhnBBx3WKsZzOhl-TMz9ncVv=h>1A2^vis~^+wEAfVv
z&8;hTfB$8N#WZ+@3Y+nS5?Qiz6g_x4Da`c#+C=sC{9O+&VZ?>91}%t&6-Fx>x`$j&
z*kA2Ky(swUalW7r+By2ln4hQ*C*HchOW!3Q98{S4;`Ygea<Q_6Qai@lc+X$^zI!W)
z^^<=@pVGSnS!D?+iGsyf%w1W`OBh*jVc7hFF2V(UGsVtOQc*&0XSb@JzauwT)H%7h
zjGfK&laLvI5oxzwmy~o~yq=R?SdRZ`58|!yC-2zSRL+*E%8a$w55tgK5|d?d0tq&U
z`n=QA;%-_kbZ*WCHmw(L>a!kY;7X@eRznHGn`zx;OCjt#IZT%{8$#<;NpWkV3szA3
z@>veWv+$SdWv5(E%bCqRKaYJ4PAjv-Vfh+3VZ8XZS*wzj6{=O&ueRuWYs;g89Qr(u
zRt<++Y6D{H`vS2E#n#-Np8;q@wjXNf9wbPo?^ifqUH-?8mjMM*3rHy{S|Oc0ldz@#
zfTh#6p;%seLag0Eh4WvgI3J>d2>o7KI+n{C9!hZQNb_3l%w_Z4$pr%EQAZS#Sp;9I
zz}iGfyT=?9a@W-3mm}WgOsW>nhcRbQj4|;{XxL_Pi?N_Hns4F}q-l9+S1|dcVkkzK
zC_<>B&=@jKN8-rjRWf6+Bw3f<k4^Oh^NSk{A(^k6dcRbTf4Ok(UpP3hSW<t3QPA25
z8T@h3x*9=^oe-__n|^&oD&4^QtRC;q7<M8Nrw%ezMg3!!vdesmQ&LY-Jk!!M!mHP`
z=tC}($Sm^cVys>Vg^v{;&ddG5(%xz5QRks1hr3XU-(5>;wNz0r#wi@??ma5D^T*^b
ze4nNCN{9%}?bp1D7Q@{cwp)0HF3%dmqKSjC?)qp>8A5|0`0~*lFD_wEAZ*hP$-7GL
zeDCBC`B6CDDu%shG<JsN%QuXdH8@;2xEDC-l|~Z>Cd<2}7r-au%^)s}(Cx$K0fJNT
zFNe3ZpBA^o?#oLRq3<Ze*2jBO;l9m%a{IKL?QdO0OfYmwNSU~^7mJEF4CP|*S*IA&
zC&!o1!{lgq(-pzGB==o+TMYB~dXjY1_U};*2JcSh!z2MDs_pTbMl7k0S-AU^pHZeE
z1tgLW-W7^_hS9d1wHAN%0-$DnUmmvH%e;_nsi3Odc=~MntbJeOu~#&)DoZqOj$B4>
zWAVoi?4F_pm~1{*{dhZ_t%@DX-@}u$-O-egq8_j)p31>(QIrL#Ut^p<tbGSj?=r4u
zaB=bB71^0FVM%T-rMHg{U#(ZEitIV@5767E&Ly#-q7wh*vk;_$Q2x*U_Y2QRDG%P`
zm^0<L&@fn(|9y)I76K0s&v2>;2kU6X<ML>U<3}CiDY5L9{kQt$zUK+mg+!MLetTl=
zT1rk88VwA{P8BSavic($42%6kAHHNXF#Q-3hoQx?U}FB#LFAKG^dUJ^?yUDvP<X%i
zvF_K<VlMY51gAp;{2J^b206Ir)m!hS{S9<;%d4Fro!mrDwBB0b>%H!IM(7n0KpkB&
z7VP-@_Fdzib^jM~3X%EzAS?bx<CwNzfpGJ`PI{7CUiUL=Z-+N*3k}SVB@D0Z%kxWX
zC##4bk7|BaS9`UI1^u>WfD8v0{$fmia;v>~+)os%o{01D3)egN(}qhAxE(YiF(GPc
zB1^_kG0Er#^O7n1ZD`8KN8#W25lqynH#^;!SL|axlI(`6UF8@3Fv#e7r)^&c!%p|^
zMC%Q@1%H$C^S-OXF3)pk#0bciZ-iu_CmAoB=iw>~RiRDeIGVDSQDmdH_zfQ6m}rZC
z6B_RvAYqypOtY-$FzMyy{A`hCId_f|8FmKNWOqsI)(QcTa)&-%s?;z{`dT-1eElBz
zUIcnQ<bv8m=g~aFn>nn3moiycP8;}oEaeUM=QkSRyYg%7+ZQ{+zwWwkf7da4ZsDs@
zIEMw+yQ`;I6TT|+Y%YZP#Z(%esdVJaML=`<)lv7Ncc3FM;L_mziI$53r|5jsK-0Ot
zm-UR*^17zfwGw5+iR-j9rud1LffFuolXY@(AxFFC;FeZ8O<W~APUR&7%io`(e>hTq
z`yx#bEv@kx`KfJoCMo38v3+_AQ7{e2J~e`68*Gfqs;Z*NC|<vAdn!I#vM3Jk8Z`(L
zoV^H_$CWk~_NP7}u<<VceCzmn;2?=)b62*m+z1Kbnp#xm?ebz853+sXt}&GUC--+T
zdO9_dg*`%YS1(iEAuB2_YCW^lFJvM~W#v>ff)6XfpNd26_7wi5d=xdPf$y(%HAJ`F
zJIm+EO=SLz74MzpapAQNv<qF6;g7o*tAh;zcVtsl&hh;Tn-Hs+HjjYRp3Co<FEwkR
znf6WHE_%<HD}L^EQVOp<WI8@v8fDrzk)Vgj!s^GOvtV^QpEgdSDY{sg8uxX~BYB-+
zh;1t=SsNbcv}lu^E&J(ES5?vlZ+lK6IC8fN2!tNMt+Zol|N7n9Mke^`!EvEWh%R`C
z8N14o@A8MQE&}Z?bKt|Uby!E;#E5vA-il$!hv4*%B4lE+8|JQid$`qMEl+QR={my?
z(+R@L_as4@+_g}{?F)_%ixr=U$ta|zb|lkej(Z+4nafl76z<(HExx0n!MCGteHHq2
zUVZ8quNm^pVW4A0hiU=Kwj@Yb@MLkfygAO}h>lTMc0R89w!W;&xPPe3w*56Bsd81T
zn+s#oLJNdcrDg5x;&p@c18za}VbAT<5wl7snO2A$-^`W|GtuT|zSr>{rB`>ji$!OL
zjIvS5PP!c1ap{6L<*4&mq~{<B3AdcW37@aqTUjEUe-)Shc8LCRY-CvA@(!7z2Xr(4
z?j-pOM!<cJlSLF;Us*{fSqusc{00cE!cI<35xs7&cyxZu?X?ao_+N&1p!;){zYl~s
zxHtC5&+fZb9H`EeYwA^JK^-clr}>Jqxqx@kk?fn@E%wu8RyXDu1s{JxOulf4Hm4?=
zJS|U4uE6kjkC^7Zal9ckJe&lRiv58PoDC1^ZO!Q~frAM0Q65xUT#NMs)FCmA=tlK$
z*L>1e&|2!;Cl>_l0@b*9YidjLrC`6Q;+8|&V;lkO4@DChx}%3immRmCde$5cnbCSB
zkz^gA2BhBWE;6!SVQdE+=`*`5_&6X>WAyT_Y5qz_W64l%bXs^}L}$Cy=V)m>zN@jy
zXL>fgN?lPb9rA)D1P)^x4gtA^IMOQhj1yPNLY3^a&)X+tmybHg@qQfhNSg=oJb01z
z=O2;(PgnRKasnt{T>kXfrbIq-5)SnD_xSNc+&?JD%M|kk>fq$$E1>U$QBtBiqgC~U
z^Cr+rwNOX2r={DSmx_qKo#;iS!#LDUskNjd>lcF**@EwvkY0JOA1|J$mM{7Ztldg|
z34w92@<_&33-39yky*by(BaQ-BJcE3Qc^Zx-jX1Lm;Sw?K?m<MOl3)T?B}sd$&je6
z=K3k8I_yZDKPI3g*z-Gi*9W6Xtk`jR#VB~l6)!M5`uFv0arE*RDL<MjYA5KgVa0J?
z4qMb42vlEFs&4M8zt4#Yu(C}Qo*R`<J1QbtP9{%WPR>qT8LT(aM<;1Oht^ge4tUMB
z%Yl}F<bqs8AkkmZg!c0*bJOg^JmjKQQ-rhsKq22G>i>NO|9FQyNbscDM6p5(h8y>f
zfVoWm`WQ%J`xWC^%B6u=HBHzD{<E&`b0B~914Na6CyDis#MHkH7GJ6q$3(@NM%}1v
z&`V>kzh;TlX&<PGmSS`gPV@W7oK#|5ig~X8rC_Wl2eT>kf!7%_Hh!zDZMyNd%tST!
z1@wFc3+wV|vwE5Cj?Lz)qq=silh?G8q45z3Nl{90aLiE=IcWBf*gx&MnNMD`A`qG`
z4sxKI(3X`d;z+O;4qqa2Vymlp9C?%QHWjCbGV**}am46$GI*w%zx$~Btr;%yR=<4P
zxqitRcwhY3;A$xJ=~UU)D#txbZH6~Z*3ie(gwxeU579wP#2aq9ovB1=&N0{=`JEhg
z^?hileWd@3_MCF+_L*pa*Z#E|(pgePbl8?=F+cKY@VD`<ce0l2)32QPE{*6sSpJ$k
z{>|wXEGHKvyb3&!e24HqHPX{fNTKxnfVpW6Y{*gY3V+-Aq+Ashe<Ea*AC3}}-INFl
z_)(jfU)^jPMed_q;ZIpHrudDHjQ%9JAVw{#d%k!BgSwxsH)Fn%vdrkh;TM|;{^u(h
zZHgR&<z1pSF$vwN{paWuc1}tZQqMQ8q^+8aX!--4xoNqe35oa+YPVbvl;2A0rWYut
z92ea+A>v6WQ;x(YY8eY_lt9BDd8%j|<+?4Em(}>Re|n_ocFqqtvAi8XCA7NSulWSQ
zq5Za}o-rE>*{~1FzMq6ulirxEw(7+r_s7rs4V@#W?vkSRA@>{ibIY~Vo$MW3xHvdo
z$(49E*c=2D53Z=ZG>X&PA~=7Xx&KYR|Kj?kt)u*KolalJ$0LCIyGV>EwG6-ws}Enk
ze2LEyU4*KrWH~i&Gmaq@u!dPM9W=$i=9I8-zDD}+Qj5xyc+=;oFvWHy5#r<L$1nuq
zL!mg0FnLw?ZBDnG0r}M(xU6>qzTT4UR>ZUd((!Ju&_m4=2rt4tS?<h)ZKAv6T6^a_
zzVTE^I@h!{aTIhi5+QrHZn{FvVM_UG(i-&FG@waWRDK45?^x_sqReUn&vNs~)`L`#
zjcoH(xp5(bN4le}>hb78S)TOsxH+!yVXUwBk%&TOMkdI7xdpsuJG+wl|IHCPp%8>@
zS-rm*-3|DoK;HV$)*(!Qi`Kati4!W=mnp*)7orXwuS79$pwPjOm@TQ)1l#r2w`1kg
z_m0(v5baYeq95JP%B76svv7!HG>Ckce8}?L@vQ91kM4{==0$uFJptqJ=iuC2Bk=;_
zA_bQU0qK-zYOYMTCoW&^Wd-F77a?;<>ZdE6(t>L1lXIjZ+I~X6rHGvh&vQMe{#amK
zD}FU;{yOsdu+xjN<DyhxjkL|=o!!rin1re*Bh7%Sb<x9<BfkjExU?g7idFf0BFoR|
zj{m;{f1tP^^~gA3$G`w0FomEDA|oTyPe7BFCT8AG!0)=RHfNzn%cfz6(q)ZFqoMwt
zLzUyo{Mzz#0%Av#jxj>xL*49Jc2KFgY;HR8W4Vr0m`8^X{gZ=mI-nU?onBsYoc(V5
z(S@zCWC;B>hr+4X&f#P8;kvr9Zy(YQvaa6L*qmlgsy->%+gC$VzdDlcKe_RL8<<VL
z+2YRfbzO?l$0k*d3lRRXt(g6t>ig{*GJ&X_j@RZ%zi1N^)n|U#xCMYnl12+<>2{x&
z@<)e54EcW@2P!Qn@iyfqEk-r^Kc0qTM7Xqf&A^-<&*^*@8t9iGVPIegFGl9)@$c^L
z(tw|y2PuD*w>K0JD!KU<I-dJVg~0iF-zr~us@FSsxo>?9Zr$B02zdvcH*zWux3PE_
z!*ZX2_FaD=U14q33SDbJCMk=q*3#ZlR?;Q?)JdTLDasy7q*fZsbIds|GZE`7`I_Ld
z)dvBw)lTS$8{iQnw5(p!%7!EGGQs*rTWPh;Bs9@`Mm$dNSJOt2jsb`-nZIcFFzFl#
z5n9-K8Jlc*IzJA5-dKZp+f(pJxyg{7KL7aEE2b2Sh=uG8Aq!!laGmjRgcGAMW(>h1
zOi};sIyHQBNGfTBlYqv>MIsyifMzmNO%a_lCLHflgOnQak|gdW5p)YX-f@29n$9zk
zX?O(rq#z3yUStgyg$!Ajdl<%>mlDo5fjRXTREM{g<2Z)QdXQ9NPAM@a!iC!C`p(&L
z(il>+xKLi0=Fg6djgdXDH)}U|h`z<RQZLf&e62E+a{h0Emp5u!odx+mbap4nAGb6m
z#Um;T{Ryc(5(M&+G9VmkK39;nfh3u0^)x2?&MXuOS2uMCTT;y}Xs7f7J29bOD3kHf
zXQJ2mB%;V+2(DJ^puJqyoKcf%`PA{ztUh6zz>nBwl8EIo11;6GwTOfcZLe*lO8#;I
zRkfw}I2m=C(J1=W8(kfPAs>s$IUAUH5G`lEXOsB$8>}|*Ee-y(-adUa_vY4IT!$<g
zA{v62_clx5Bm8#pKwj};Mxf61rH-&jT2(BO$_!UW+jXm9Fi&Po>07OM<{{LvfC|b$
zrs|9V8RxUl$~o`UTTYn2GSD+?{Fo;?lZwT>Mv1goc)n+~_*rQdm1bxZ5y!dZlC#-0
zNDZ}ljj8T@udDfJW)jwerk_7nBwN4%N_jDn;nY`R*+eE&lQD0xh7#|00LJf?E1uZF
ziMY)l4f-Q#(=u+M+%e~VvW4~{25-6JDy(tnS@}M$-6`6=sjPy;dq-(_F~!-EevFYF
z&=WW^ye)h5`@yWwoY&02=%<*E1>-}qbI!mANoag&BcAUc<PE4l{ta^Yqd5BWBN$B#
zx$apC)f{I-^~YOn<EVn#TB4#*ddv|K{0J{!`T#UTL_;H~g@U}|4nQo98qk>JM*gvJ
zb$QRe<J-avF%rNVeU&Yk`VjuQ+u5|Kao}`ukp7hYU7zY4`o&HDNA^^!V(FATE#-3M
zT6*Jx&%I}_d5-Kdw0_p*(e@Rl%85rS^AwF^W&~W!s2cZN7juwsqpfCk=;vwZqRYQL
zk^k_EK!vXai#N26(s#Q4achs-(&ips{A2JJ-TbX-^WarMHu3`y#PtKMMNWA~3B_VQ
zoogZ2xw#-`<x=#Y@0sT_h#72G%d1eF5<0AQ!9}qDdU)^jg7@wcCC#4irM&-Tq{Wio
za=<C^b<W{&ea2Gpj^xT{%UXC$S5tuTo%<_#w#!wGjcmxOjMO~khgSK}@WClJvpZ9N
zE*snmR)v&TG3Udi_m@p!bq*8$C#ZycvYa=!RkD^w!v-PL<MNTqTVab(X9JWU{4bfJ
z59~W<Ps_`sZh0H*ci6ICcLkbzbf}!TBRS4<x#KG#no;h>1o-a>S!rkhm*Cj%(Xi@R
z0EhOor)rc*_;13g5L7UYLLQZQb97o~hREL@Qg{*K5XW1R@z<X%ERgGFW@oJ+q(6K>
z<aN8lmWdX*aDk0eoAE4G)@Q1vhlWd^Cf*={Z{9B4J59H!Qw>%%G+x4e`HU|?n{(vd
zrG?P1$x{?O9OJt8THhjY*$kh_=Ss!U&eWLUJsBo%riyh;EMn5}YP5HR_!t><lvW+X
zgyZ7=gmR=F)@jgTHHZz{6fO>Ry>{Aq!V}j;kMmD(9Tf8ieQX>aHojor)R<0kHyu@z
zH4>9Qe09@w;7eIsoZPLjY;^l<s)Hz7>qQbhs2u))Z8tk9;Nh1Ps=GS<BQcibch3go
zpk&DZ)LhGx#KfY%`}lIccKSth5sufboFl6Kq+H(FfdlH9;R8WhrJ^5O4Pd-!oft*&
zH@M{QDmIxhI2qW5$OriGlfU&IVx%ZUM96g!&76?&)Nm-yYZF20&jw9VAZI?DIe~Jr
z1xK$f)+T&&FtI--edN-Q=*+J)=4C2N1Wqb!9q=T%k0y(`JG5s^f|`dnrut3mKO*hS
zi?It$v{0<6k>=uXEY=nh{9oK?hicexk0a=oMc`=z$;im)AL<6{{!qW;Q`9v*jRnj|
zVK(}emrozBw}?>iP2+MY0W}^8*#4|bKbC0JM+#iuk|J4ckJz_G`;;{}oRH!JYLFNm
zL<;#9mX#nI^&h!d5X#@<g(vX4h+nGEN6_QVMJczElR)`DgUUa=g8^jc%g&yR>R{N_
zHadz5IGkGk9;JXD!(=$3jtf<y)ojcJ0o?dp+lPn45Uzl;zjKIV%9k9#HE`kPsAXXk
zZM!Vu5|IARhV>7>kvSxG22$r#c1})*w7`8<BWeuVfA<@qK+uC<X&mx*fu5O}8GD!W
zHpy!i7BnC(NA!KxjF7?Say9Z<7qiwg1!ilt$9qchZ*kN!QalYv9m!A10ymiTzv%bb
zX68lyH@Auyl93ex?YMcMbcj_$9q``Pw}pg+n4B-LSS<X#3kzxE;^R-!!CleuCkfiX
z9!{_>_ZAMK_#?mm<wy>Pw_S*(LYV9Q5vu=MG5@PSoC*mlIH;4<D8!c%1qFo|X5q>7
z9gk)dERN!uI9a3AyHS+nH5n?!mFCv^FVg-$cQZ1Pu;DQL1f@CU<;)IFP8EaC&6kio
z^YW+&ic>yD0DYN4o(zPknc4E@pgIa3p89gY$X;@3DI>56Zv#|OVsdgZi%+bq=aTM6
zi+s%oqCSm{Jkj)f(9<Q*B7lTLHPu)uoB5)&GyF-eH#RfW(E-`i+?=kEFXy3kgNBZ7
zTjPxBGc`3OlP^auE-n3~^yGk7m3ph!`uTJ)FVi|xMSowP+?!ExEZ@qA2-IlCPlT3c
zKn~_rRmB!kP9^fUyZW!L-v3pt3jQQbQ~DZHv_>;Fn&x2M;SDDP*hPZOF-#bS>HbIk
zj9Z&%r}sB|+>38YnX2}tAN%~c-5+=dl6j;N3(M^-Ej@t1MhLLn*!$L2S3h6>er0*G
zDi&g;p99#bBfwk)r$TAM$Iq{`!zYNCj_w0SdnEaiM`dN@fUXV@#<PU=I;?a+r_`30
zdk*s_4nUjyc#Hj;)A2V3on`}uOj>Tg%)0Ld@GH<To1gD%1DdY3Ud4;SA3r>R#x;(^
zg8#Fcir0%$<~M7Oc7qAkWxBmcvgDV54(kKp;FCLKfg*39*!sz>57`|7WW0mj&wL!N
zX1lt&s1p0xe4jrodtIg*fT`5;FafG<mVs2D&+o9jxV-cOi&0SU2?*GScrcF5ejO(c
zt;HZ@LjC;%`|r-`pRRWI_h&vMicK~EsQCsIc1HerWw_lY+h5IAI!aYs&BTzy&0-)q
zLS6(0x4hY&G;9BMUEk&W>y?iyI;GpdmNFuF6xHG$_#ndx;hW>*V-L{$u~@j(RPYVO
z#0Icuz;uA+72i@*i3HsAiA=|zY+_33uz-`4<a4KK5s@%g32?o=xU4tV(T=q7Fn&V6
zc=7wIriO+dhpuk5gG`aM(&p>v4GM~eFjQ!(C)qpsVke1=C8zU6kw!1gW<0YlH@e*>
zKZne=YOxyeKpe9O+s5rTEA!C|X!np21OUqhdJ%U51A+G2qr$ErTyzW)uijtz@|4)@
z#;?(NLSOLOA6IwO!@P6~vbe%E#B+iI3PT2yCFGt^SL8*<FR(z~3O}+&_TQkmAa?)L
zg%_g)sEySxSK!#WyayaHx3BjB5gbU)nHdU9ewCr3ch*~f#R|-S@e)_VW|iA1Lk58Z
z(XlY$l2f5r4LX6tVyN4IN-B}d`b99#Y06ubNg#E!JRw91&^iI@BRZyBlKdXb78=;G
zj#bsvScW~V<EHCR!jqE+d*XkJc>+7`RUNMVM!lbMo79ZBQM`IghcJlP#9|J>>A(*t
zO_2bb9}%RfWm_tE(G{#AU}QkJPg)FiM6kI2UVk6|_UkVoZ-<!n_FcS2BINDr*wQjs
zd-H8tt8lp6m+H5Og?$vIJH;(7>B{D2kDri5AfP{a?@fEnG`)o2B6Y{O0^2N7nIlqj
zur2m~mG93VZ@5N9Mrs4=U5`Z!lZm{c(AJm0yZzJ}hL4It>+Yq6vgOcywxtDNvmXOj
z>u>q_)NCeG7=ZTNxd)Q$@F&)@9u)<XrIu!w=5B1N0TE_Gr!X5^`p%$_A3w4+5pi>I
zF{7@0mVrm3r=yEM9u5dn4I}KfKJ><py!fvo`JbK+@EHuSuICDy?(B_U%H@a*?Bz~w
z6bUKmw=Kp`EgfQt+a$<y>97aq)9TEqv4<$dP4cJ@%S~X{(YI~GnD9ejm{DdlZh*-T
zESD^_Ip=`TqNBmKz_N+6+aI;_`U7^4?ZX{3%Nf1z91xQe%<B?6A&H_Y0m{l%0vQ?6
zGjpmQbi32dmzcO$=|6t+!NZP%nszHydd=vr()|(QP|*U2`ZY#WN|FT7kAE7c2uj-;
z)|G&}_?zuvXQmPc>!&tux1q3tzvDV!408kfe+w>MjDhsa_FUBBmAYBqjP@rDr0;pR
zW39!b-$`O`7$q^Whx1xzc!S{&<mQ(d>1F65bilCbl(*$ASm@+!(V{vqJr6v-Y95YA
z*x6%Phr(EWS>BeDs)>uk-d(L3r}PM@*W7h)zV~QxRU~ZzQV`~^Td1m^;zU8|l;yz4
z%8Gvci;&;thp1nROinOuVPTFnC&pFt`BWSJ$s#&f)dLTFCZ2B-jLtREq2ne9fekWO
z+~8^#StHWC{>Lo+-`-L|0Z<SyzX4@Vgtyz{y*>3}ln)&+?YFjqvVQA9N+mJ})FD|8
z(!n8wr(g|0UsD79rr0YQ1q?+{z7LD(s#sp^bAb=NRMF`PjxW>cw$kz@E$;9~l6CR(
zU0ep{hX`PdyybZ3wb}zV7xXvTLHcMLQnhsIqA1l{=|^}2wzBbrHnbD*-OXP2NR65L
zA`;&!j#}I0%$LWgRlag;-V}ky`7YkY^Gz`z^Is<A7?{Y<M2ZiF<RMu^cLnx0s!IZn
z4ytsWEntmSGg6>k!$sdIY`4pHJW98F2ar_2)bSOwTPy}6M<gdh7b+EddwYwf2mm1y
z^5a~IrgO5q&Eb4N&{>()<sl#L7B)OG@XPP%a;4ZmH|~Ur12r041pFVU;Qv#WCIpC5
z?=lEiilp35XK^2B(SiE}9mau%euU6C5P?l|5jypVFgk2sBX?fG%ft6GCDHqe5B7WK
zF_gaP<36kMUEBtHIzAuHGpZUc%z2ms@!R*@JR~1YK>T#c1IctFeBO%$GmVnx>{)LA
zh;HhbNovU(F?tctG=3ps-<wyE{Je*)kBfb|vMG2{QrWgvc2-v3B@2{_ojjpks2)1m
zNf_5JI+2$;f!=|03v^FL-W4(E7%ZM^89$I-LOTmLQTo=~Q2Pg56`Wf3XMEUCPS$il
z6G8e^XDNhn>MAS@iH>!+MH2n-!-wme^5FkagdS(WIygJG=H(kL#`=5smz|=~2YeU)
zr`+%Z@LR923D21Pe6>x*VAZvblOED2YqGLlH&>>QAas7ukdapToW{Lx1T6C)YMT(d
zzxXgC{%o{dQRWS%54-|sWpAyJ*P;$-8Q5MWQfdpFDsVdi?@?t_I+>e(yr-wfL)&9i
z2JxEoL#iRlG#Vk{5Z~!adEhBTe~iEt5a`1M{bqA_Z{^*qrX8(Zt1?PGJ#OAUK<Pv-
z6h;Zt)^;G%-Wt-R`*4JGU=BS5WY}6Y&2IO;;QrblEe?_|iy%!+(U2IZsN_}De^{#f
z>V<Gs_G~!pbZfYu`@ij2{-J#VUxW()Zct+M9VY1jZQwv)P<%o`Q^AUptb>2byp5Sk
zn6_%QNUM&cmTyPXXl8F4Xhyn3HUq;Oe!(<1*zW&A{m!5XnJsAo|J-C+$uEh|RgHeR
z^FarZEOWI})lq7Dm9{S&AxBq-P`9EDgw>A@mkSX9KfBOagjkrL|9reGMCWp9dI(qE
z=0$_6gRP@|GX#O*Z;S{379!Z;tEgy}9s6+Rwn9@*N=gd%oD9kT&zkE74ixh}FBbAM
zQC>EO*4M{qrwkKrQ|9EpXwKbXadvjr?8epqh1ER1bJ{^Es?rCnj7kN8@542x$yAZ&
zLgS@ju#rC^Jl^PYeDfbUz^Z!$I1#}j7WJKC-<;oH_I6I>r}po7!*F8+X>WhhraJ35
z&%|o)aC(lRySz9*{~<oc$k~}EekxWbV9aLP$-zN9Lc=g`c5VLtHl6q?4Cj;(YiEZr
zeLMRHFr}S383f&cmh%C-!&(Rf%X%3o=4|$+UcIqcl-qtk(x?T(x`V(OT^_BC;7o;9
zeUG9q?vy=JVqBcK!A+NE{fit((mz#35*QHj<CJB#KcAOX_xWC%;IACrPrVS}*S#<u
zO(7y}3m!bb{w-H_6y2v@*G`!M@t@;T(=*8K-dD4%-sl)Ms-cT@U(vw?L*_Gw@q{=w
zs{z|Yk*d5B9I_tR!Bp`fK2NQ>fTfUQ0qhe@wk;`P_-v4aR;(STtPMPGQpK&blLvS+
zp$NCSgRtT`>KH%YU0rU_^`TUP_J`%eAsE5y<3-fDKk`ejp42rq2I+*jW=q7xZMDiK
zfl`*WG$=^k+27ihK66w{4=9|)<c<iT{cf~!r?un*NXk!vNys`jSYQ@mq-dxf?@AE>
zS|nf+fZ}pC+FNFKFl-f?F%$yHuMKk5tM~QqkiGht8Z#iLBjWSXKJPjgM{8Z0FSXD&
zjQs)j|8jyBye5oFbEysZY-%7R>MvOSdRa01%^8q5S$wx^Xx-c6VUo8-Fr2v5+`eul
zXR>@4cG=_p>e;fXpd}0kj8e*A!fgb$6(f-xd$xOJx&;WD7Fbu#vcH_Bq~1fdjorbe
z>aO&LNuaer5(EX*zk2-8J*=cY>;ZY6{`Nm5U>O(K=(|QZXa{;g*+zbW<Pud2M2;}P
zI2{sbNZFi#kpQ%}%13G`5ovv}U7)#9+i(U98baKjzc`!zvDg1OZvqrE6(~i_6>x!t
zInt>Nr=W6;H8KTj#o)G^k$qIzjVC;SM)!x)hqT^m;L-3b)XVkDU_!BMDWex@1K1k#
zdly8cPL3tIQNx?#6%oQ3EWR@8=6!a<5y2XHcto)ku*f;hYNL;rN4LiYo68D==-otS
z+aZu@LYxWveQQ78<2WuTRG$3S0J@xjO{=g~3C&fu8NrA+b`y$V0v;(@$oV}Tpt94S
z0Y0euHv{pNBe~K<DMZXVoEj}IT*`TKK#?v8+_@bR!T1~Nm%J7LVA6pNNz)Qw7g#&W
zD!{`r^IFIvcG9kK1#D3S;sfO(B#^0WxI}<R+uS}TS9=MMSiHBt59#LC!aaNdyq4GL
zcHWmfGIG7DB6}){qNyMO&=I*PD<UlX>vkss&DO=27n`S)W*PriB(kIZumqs2v92Gp
zVWK)PK;7-V@hPC^KCKVEtH6*$UxjBYeV4s^e6hL&A?6~{KOpW0#*<leEaJ1>xsY+{
zsv;ekRQ~SR+TqNnxLts`2d1xUA2W^?zE!PvH6>upai0ll<;$tIJUCxw5OZ;{FX^`P
zAGOQ{IMQ3dDk*J_sk3X%@w#C5mavv~fHmd_CnrC-dn?Mz^`<RL?i!se%XU{NlV846
zxvH|}=F$^+3@xxG-p=6?6-`{P=hi#BxV<M%d+S(cUAAGiri)Iz-D+~&Um@^&zi}H2
zM&)>gj7mTC<<WVNUpC(FOS{x9kM6v&t`6L!!rE0@Dfm{10PS6qbsZb*Duq7>qCfX*
zBO-tqf{5rlz-POQf&4y*0|S`Hc8f`YT1h7(*J`BhD;f2o$gmzTI*8<y-S&gz-@lwx
zMgT6&ik4eL1XRi;_-PK(4iQlVXRl@aYd^QU9J(G{ouJEPOXwTURAeJAB}7Lfy5F7T
zzCC)0=eE`%l5`7JzI+2dcAY@6Ju{g7+KujDw)#27OuDwF&_PcK-uxa>2^`<^)hkeZ
ze<p3i(}42Tg6*!OvP4&^Eum4M-IRsOH^YX+41?=@rAxH{%5%iq%Ok(jEk;WSEwJyW
z&H?#$p~+D`5QjOMk+3x+g#9z8GR9+i9dc()hGn^Q>Y^3jthMph$+=3EAu2v+S*qhK
z!e*%%*q@{S2x_korb=upOfl!}_ozNTz(qvQ6`5tIx30DwaOlfWs;jTr9CXbeAD++3
z?+!j*F5v(XHEk&oiyo|Vv1B{wyPr%>l6rxMncmXD++)N}2ZaniConspSZC8-al|`D
zX~w~cAFCvDnq_4lBuK!Xo^Ek<UOXzUebLeS_<%q{VxOi!{myVSgB-oM;deHb2ojc^
z*~DL>pNs}<ntv-`msr(<2pnnjKSf70l+#B|z&F6jr$%u-qR`XV6Lhi3s)%nN>ug;@
z$}#xBX?u@$$5av2-ZRM&UTM#T-EhaK<+{CPvD~)nbCZC%XJuibtkR-!zC1iEaO68#
zXus*m3&d_^+MSPay%vcY2ggo*lar{x(3zw$rvVwP9j8&oqr+xOd*#d|PCn*zI>?2B
zda}<q$aj!b+0*mPw^l6iT5~Zq<m&Uxy4aCdZdhW0$j~Q0xr>pykFJ)N49`y~>BsZr
z4cwOWpR@LKc~ozpV~-0Q0+VcNuKzrSkRSxj%|=sB5T@&3N9T~iV$WTj%pT}SA<QL2
zEDS*HAcNTs<f_9y&e)ik%}K7up4?4zZ$z1u+&HfPKhE9)D(bdv_oh1~r9tU#=|)9T
zx}~K{x*I{jpc|C#uAwEQL%KmiiDAeg{Vwn4y`SfP_uk+BzP;C)#Tphc^Jo5bo#%NR
zze9sKnlffu{Y_NHlnbB`6`cqTodBVZTpFKMu1dzNQSj`S=R{p9OX`+QUQo$H^L8KN
z5zueIZS{ioFXh@u6nIHYg5^FTSa-72@)5Hq7ZvVYsD}*j+D<VWHAk(ksSieFLlak_
zE<D8hoW`X-Th_o2#RFEUl4Mvc6OZzzCLYnpr=%#z%kwz<IW2F2i{qV}pn`J@009nZ
zOM<SgvQZ0yxcG7!GcG%bagbQ6r@TL#rjV}kKoulr&DVR7fbRV3d~Y(#dGW4>I+B~K
zG;addv?k<MLl-H6#`AHr9hjNBfs-;1@QYg_@v*QrcaQ9=+R<ibg$_J^^(|J<YnONO
zSVmfW`fKc<#D_>+0T5rUk7*gGDZvU)6eHY35*dsTeh6anYKR)_ak;siZjvNCI_mx?
zobl61zJM{lD-`un0k8r|5QT=yz8cT2I}jaBmB`#i9?h70wN}EZ^xgHdOO=XTQqgfS
zInfhWUg#Dj?@vzF)fcMDApuMA)x)vO6NP^6)z$R~zm+79XZ_kYb_+W9x9c}d4ZVx}
zkjP*jw%Is__?zdr|7=AmNrnI!OIShzKFDefmRRoS_(97<{XeZs(U^nr^*=Xao<Fxt
zM_KiQO3)yZJSqb2>}Pc+BHPcpiV!5MhO|<7%#Z-|Ni$Nc$L_2=QnpCMy(1iuloaq^
z<-Mmty6By#V(F5jPv$xMDjal=1b8>B+(ToEuuqFFMgqhmpvNUIbcxQPtjXwsoGc5Q
zi6L3rN!Jzl!%WvFUsPri@;8pDm8Xt02HY@}U|A_g&@@g~SlsWyBHjV6(i)4kt<@7t
zi{!3}b~0`g^Pavc_+kxS`*dC~;UTDS{j2uzV{Vw#vPS^lz_eha8SEtM%-tWpz0&xh
z7Z;urAR~_}pXlyAz3)x$ardLA@jv<oHB<V&itliMygqbQRaFX=qqR<a(?Aj3M_;O5
z2fO<NT7Y=D3y?erm{>Rvk&uAO`L0;gGKF@xL{rK}_S=yW$6Mz_B{{+$YeCLd^ghDu
zv9XDYY9EGExNSDvIMZHLi>KDTciJ;17+)JoLjI8|QuJknR?<JUAjbtid{0m#`f_S|
zI&F6dW4?Bq`~J6_XYOB(+FX<e(yrniPnnsS`C+J-s7mWEl%wQP-aKdy*uhxWA+Pgt
zO<5z6!&+$KIaOaui49ImV<r0ObE*JXp>kCw{0I^z*h?LEkK4GG2We()kpLBqsIM<j
zs@WbXHLbMLR@Y%fER)lO8GTmU*lRt^xUQc&d>}!~tYn<39V3VPF8Z{1sopvpsl%s?
zdgIUub9sMl9?|vjI{SqUA@$!)%#f6@V4$`CJxbA8^p3LVq~{&GobxR}B5Za>CD2OU
zM{qTQQ|s2u{&qA6#h?4EAotsUU#WL#5_R3gdsl31Y;+IE9*zREn_JusI2_!WEnC>?
zvD7bNSGzg(Nu{+<=0G2PL2hTX#RTOAY!Urj8HlJ+W15RMA7`3u*vleGl6)e&CR3Zb
zI^A`5_GIC5_wX<?i)BFUGxk{k@bWZo2Vy80f%@A+l@=R8NUGvK0NIWm0m9`ZOOBAE
zC>e%Ux!wmTOiJm^n|eh`V_*%RMRGbiI$G|fqCxj{l*<c|yaCymsh3^QGwoBivuhy`
z3rZ?GlNyDhh)Cx9PL43U5oATGk+Syw8j=NKPg1qaCvQ7N;Mdn~A#|0(Qcw@zN=I5&
z7bhej=<16D1c#SzypD67NXmtNU#?OP?|$VOU>WNb?g0gUAC@~azutTu=#`(&kq0${
zd_L<{5{s)0irJrap)QIcG)^p`<$5(pL<*8-c@33y8G+XWGr~EQC!p4=IsKOS_B>x7
zW0|1&4ePVdX;oFU<3Pst^DNUF#3gs(jw6HlWT5Jfhm$Ri>R%E$X<p{wyg3*@x+7Rl
zP81B+;j3No(XlU?6PPN#nLvE@cFfdab2S$|)nHNf_HLNKYhSriuG*CyT~#|HEG&o<
ztR2JPZ7FnT>!RKtD@dDPd+{~YBBxL|c8!(s>9xS64UC8%M;eC>Y6i(!D?vQn)3}XW
zc;^#Y(QRRq1RfW(JawG7V-81C+UdbHX^dawS3)LwJ7s@;=2>|9xID9cK{Nv<GJ0rC
zm(~#1>4lkpzckjtzZWPiea1PmTA0XRPsJDFC33ZE=fbju*dT_FaETT2{+I>pk0k|t
z&VRJ0vT&bj_Jfai*_<N}m~5jqs#c0G-+i7Sz`*aoC~7K?2p5-apm>-eecHX%UFB&}
z?WGe@qZ}WE^Ff%auEU=0WQQcn-8|2)&kj=c*-*c_)+-!XRT@{(UC!5~TmlE6@6$|f
zbLLAYE18?&IwO7S6N}Dt5(<}>eZL%igS{GBAqfqiujvV^*c$Rq!?}Ox!5268ONWt6
zp;&)}s_0Az0(JGFiEzDW%ue*(`vnAH)r0B1P5l<8@4qIVCa0yAW`ASbKC0lQ6~d5g
ze0tGTT@xk*4IH{LHUl(1nXP$|bv*jr`0mDtPkBnGcoVsoJk_o)p@zSyLl0vmKe_LT
z^#}Jmb|+_zD~SQ&wlp*>vfiXUUFNf*_I$#_v4h2TuHxQ=o`=`?X!uS8V?mED?){UE
zf4`P|&A9V)+)E`Lh0l3|=764*|Kd*Kqp`oK<s8ZHw@hwpg(}p=Ix6QY^OJ<MCK~!%
z{UHa|C0T<fpc!#v6}^Op%l2Yp=l+gN;H%$|YKG7@X*k})Db;w+oqowjif@pJk+FKw
z!$`STAJ>l9`x#%nkK-moxrR5(P8ZJ5F)<+mW(odH2W^jd@8yqylRXXbwxgx~Vfo$s
zG1lwYfH~4%=XbR#qc6U*Uy?JBNi620-g&9ST=J|H1Q{;7^4sJ^+e36nxH2IeF#;E?
zwu&y?J;eSJe0iY>W|b)dOzM{9!|)LIhPm#=88QwkBRX~ol8>~@p+LDtf4ymvm4glU
ziO3OAo9{e+)EScGz91WPFQRLYTEND~y;m7{;JzpH)ktD!=lk!~ay>rAe_z`|7#?(?
zUrw}9OTMbC2goCso7|mh8C6?z5zOn3@R8zi?;lk4#z@+7Co1u!#g}uU|JF|pv5`T5
zijAcUzUZ~ZkktC}qDvPPgw-`Q-@G0clT29^SNuuNdehIixbECgoFXGJOlInj2(Gjw
z+VyiX2w8781PMd~<y1g2>`7NqSh;#e{$@Q-<Q<o3U@Pq`Y#?|z#bd2}(3z8*fmB$I
z(zjl2!^A|VGf+Z503d<W#@It>b|!{R&2alH_8L!YaTKEW8mg)zt9WD9UHI$sGG02m
zX3_5y8@CAsi4sZt%oFY})72h<#nJQy0J_7*bS`r@1ZN!iZ1Jh$pQfgF5=M0O1w0F(
z_dA4bXF>V=IHaUOBK)>aV7ym|w+Shyv6S{OPR(hIaoxRiir9ZCVT!zWOzi#JQ-fXr
z&8HXRZ+bRb<1bM>Z-ezms}`ukwYsj?!R0M*gxpOj8P&YBYnjEjF<Fd1@2j)P&{^M%
zu6{MTFl4uG-qS_u;-<qK=T>Fy9I6}JBrxQnN_^%caDb{i>p!9pPJtVf>S~3=OMH;m
za*Z0SJG1EaIEpXZC^gEw5*q0hEYEcP(qKBoA`d9@*kZjYZmxj5Fzy;BO3M0O2+*8v
z+ih)XB1ZDlC$OG=EfYA1-IU36ciNSH_Ci%l=kyH_Fe1e?CtB}np=GuYhnQ9<suw6Q
z>xt!c*0$;u8sc0LP#H<MRoqP-jUKNz9ziQ`AD;4Uv+e%c`bCS-j5%x>s_clE^Wg*U
zJN-8NKWaj2f9HX(N%O+F&kg5W97J;`H1(uEd7j)7S~WM-yANtRX)Y>Y!KoJZImX0l
z1_B$FZ$j11uhnBJWW0&0rngn9>l>n^Y~uTv)F&*yHePbw+3+Cdl$2neT1&?JyubLG
z*V57|Dw`!r((<apq+JPu(^+JP4KFX}c-0;1mDXgNWCO`OI>;-Uny5A-*;{U*_lIv_
zb-6V4T%XyF1=bJV0k%^cGN>v(7|DNqWMb)5*-@^T_sXn1=(o-YXQ$G9;lUil$HOYQ
zC<&=!wLRlh(Bo)Xy3yUs%Y1bts+N{;vwLA7BqfDa6N{9K3boyD{1v`($-Og~hpLE%
zYW_!4Q8g<|3K`$X51tK*9Xg-w_<~M?uXifde7K8O^iK8mh06+byQ0FD6SOelJmJp0
z6eTXVp#@Y+>Ti_-ieyTZ>>ACDZv9;=RtO>K_~FB4%+kK0zo-b#<F|hW!*NEH<GH`@
z=6tAOMZrn^)^}tsKC`Qi&9phpc~9*4TJ7H*dU1&myBV!D?fR-4Fi06fABTEP7n#by
zD7)9zXiIf<0}^`u(7{?Mu!_DS^`F|I^(!KB(Kjry->2m6Npse)czPHp6rYU@fBPso
z@Ct-$ByURizq0+K)+ZxFhgZJ@MHXCC^6pIYC@-O&?%EXh$M)XdAni2+Voso{*6Bxr
zV)Z;EQ%qm#@7sA$M*SW3mUnkIm#6rMI6+G#nl^j$HAJUaAIEz4u;{#}PrE|G7+(CB
zs`M2Kh;i$cXe?cQgb#VCJVlh>y*&2t0HQ6-ej@5EM%%#h=%T;GNJRs38Sdkw&~5Cg
z$ac#19pPPSllhs;?uCIchE%J@=LBRTsoY>0a^L+I@mPrLMYTrXgY!FvoC6VeJ04~h
z<>Iv;qMl`pMSW9xVV;cw<;V9Y9ijXv+(ySs+IuQdIav{?o88~gzxrfU{^8^;d=mL%
zgvCP)s#fwb4yvxj;vNM%oMYmLz}sZLSv`+#rY=;C2PC4QxTima92Q97t)`FSCMQp+
zDSQdzG24)92ruac>G3iHhTI9$YDylSrNJaXA&)I@)cIx7YyCC{RA3Q4D{?XvSST-i
zu7mxqN|kwR`%N;IWf_P+V8Up88Qx*G_exyky&9RRV#u9W&M4{s8Zns2WlRACWV+Eb
z2=L=U(4f*Qmb|7|6K|mvN47h$6C)G87u~aGAF85RrB_HGoo#$M66Ijg1C6m>Hq0CO
z@whdxRyyW#B5b2qY;I#?CBsO5?=K@E?A^j|vVxViH|bf-9#({f8r~@%(vb*-LoG#^
zfP%Z~1KC6IAe!aYp;?M9)3zy-K*+D|!?FWGfLdS^@HZBS0$xkc=vE?*8wp4A*>ZXy
zP)tkfYah&;=j53n3-?xAqXLNdM25!i-``+hwf1sV*3GLZ23=TwM)iyCL+`kCBUes6
zuAtgHHoFM?l-YkeuNZx$PC!Oe$@*PZEwD#@gc%1l3>cicN;F$hbMmw1X(cF73SKOo
zmKPQAzgU8u#Zj7#h&3wFMWMp!K1j-`1+d7!ajV_kMT)sReo{?^>d(Z~uUtKk0Fr<3
zX?qCV7Z)tU8VY{h@d(MBN@&lC9+J@Da%Z=)WxTsSaLiU!QAK@WKa-$wA%bK1s6zgj
zn*X(dSW-%(ed38SihrRFTSBP*PuBOuuAhP;*TXNAgX8l>Z;gt1tr;`#A4H6{N|9mR
zT<KO)5)tsLHN1WT-P&jF`rZ@yc5Ywh=a7oG2q4G*-H^`4MLg?>D!e0TV;OkO`ai3<
zLh>KDxVWrmFY#>VRi~zsU--G$ewb+?)A*C_i6nJ*_GwJ$8ViJk<LoWq;|7`1JaM5*
zaC_@>HWX#%$F5sB@`x9x=WY&~PB8TpE|4%^uj2ZKVCR*@awGarcL`I~FEz~wSH(aH
zlgg982~P?7BN)bQ9o;==1}7Q5J6PjlK(tjIc!yS5&!zuV_32*{DHc&g9LfYF$$B7k
zLH2!4V)`*w(hl}B%>~Mbe-)MAayv5F+34^f=&2@8B#Bxr-$u{L#(UtNVw_)IeQ1~P
zJMHICT(0sVo&l2NBbK#8iy3d_S8uM067=S!8*I$|m`Ka{Qd<hG1BShF2KTpr7+`L+
zLysz<^qXIq^zF^faF1~Ph9D7P?9DTNVY~bvx7IhCKGQwoRh;!}qCumH^Q}>b6r^5u
zt{Utojb^jeTt>D0(FRMRMK)8{S#y(lEbyzj?5*I*Wny8s`QoWM-eX==8PF+M<X5`Y
z;Z69Z+hqzpVz&4GDrfc(>u^FHBHWpw^qAqAqK>B=S0AorY-Y|2DXTujmI|v|nv3OF
zvv_Tcvu}?9#wr$OFD0-*YGI5<v8pcxdvCuGr2vfq<SryT`PZhLJsGmo>%DE4@4r^W
z1Ck>;C8~Yt)%I_;Obr=_WMo!=A=5oV3eVvjjqIHD#^RZ=mEOuXv8u3=G!gl=HcY8F
zXoW+ma6o#NoLI7|4gH6;T}mNwV5$4#3iYnoC3r2o<IV%jNjPm8$%$PFRmB6vUW8X#
zuP_Yhr{w6D*1O#|HhQ0|Vx#)Uk|k`c*?ZuI(R)Rpi=K@LTaO6ym2+Yt%$28om4MBZ
z>u1LzYAi=JdLBA;m@N(z;oK0)od=$cOEK&FGL!Dt7Z>Yw;kF~^r#^@Xfx(`;94)In
zaeIuxQ_dCB?Xht7^WctWAQB&nu}6*XxLDsX)oZHSFh(8opv^ODXy5Yy{!!wK#Sm(T
zaqDdY6yWyyWI6O?4;Qx!f}ys%U%&B$S5!}+GclBSIa}C|?jIYGnST{Vt49W%NXTu5
zExXw!<kEX_l^*H>A*(8DuWJPjcA;O!%7|<{4u{C3k`khO2=*1M6LM8`<f1eZ6Qa8I
zn3E|NKdEYXa)QVsS6l3`CGjHPu8T}Q{hI|K)%k;ZP+8kYx&9m{xXX(aHZGY(r175y
z)$w<fiBCw2U~&SArgpq4wfbQzWCf%pol>p0QH@xjS=UL=QhLq=6ZY`up}DbW=75A;
z)<@Ea@(`2K5GfL2U}Li%zXwb(NEMJq8bQ221VoLoxUA(1Q1QG%xCJSx?-LWXijT<k
z3xSyQ7=YVIOKAoF2eBu2j5JV6Ndv+7%kA$ant5Pqblgwryl4DzV*OPZ=zz5!o@wLI
zi0kQWTpq#U-f070Gez9zowx1b=NLdcvyXTvL_vM>Ej1(K)UV9jf5@JFa&%}Y#?*P;
zmE^(zH6j`wOrprIfFH`;M&i*9G`b6>3+C05kXQY*<P(4`sez+&`-_usC5ubHHgQ1X
z^5Vjp-h+A}L3o3Jf}-@&db8~5+xWkh8o5ltdG0XuH@AdWAaU<kjP7F+zf&o$bvZSk
z<N^sgK}8QU^}Jn6CcWx#7pCY~d<|DZ8u-*^erl0KL#|wIjQCv>G1N@o*I(dqr0K4i
zlZvAj;9wc<c9FhH)+F_PofYYgzmzN7kr;K^eEF!Yc8_`@+A+Nc%Ym6g^mQlr;c(s5
zNBXm11D>rF-(q3~qZ_N*KYtQMqc<E*v4R-kQQ5Hg(5NdVot(SR?+L9h!mZ!xz@O0)
zFE$H<CP05d*U*}O)|N%xTbY;1Gqsw_5<pKVRKj;9Io`$L%oO)33%O?nzPW2^8LH{(
z)~4<_8@t+SS<Eexa&!)Ap&+S70O=kZVLkI8bO(F-w!khHNu-`*hgyW*;BZofgYWg)
z8iVb`-AZf`+&fSA`@xa%5NlgGSDm}tHj-qRs!3Nj8qVv!wWyja+90Zrn-U|R*YN-k
zTq_&7M%gwDtzko-xG9dhO+MzbnqWAYYXzy!rn7hH>|h}=p^sk;W;6AL*1OsCY&pu>
z+4)a*cYTRD=gcODvFX*$NX`O2-8VJf7e|$@uD>#}czI##J38ri!5_Z%`OS-pipFEZ
z9URKtyaHn$RPp_~yfM5SJ)!=_Hqe$$z$YpyB7L*UR<rq2ZkO)IwM2*Y?LotkO@&QW
zDf!lyvG{StF0yXfo_+pX92rDfipcOe=5_WF&^^nFKdEB@of+2EUXcgAsZq0rHs0hu
zBmZh<|25!JQ_HoTF66NsB#<On{n7)ad#!h|li_?KfVG~uy;p(cIQ8ZELEBHcY(>}#
z;402LR}@$pmUl%Vz!c}#g7)tv6S8?gwo#vgr+;pyly{v&Ukr&0{MgLOHDt=0|M-)d
zB%-OQY1{=%&r++0eYVLkrJx-OXupnZ-yzGrIb3cb0$Cl515~``@|79yB>XN=mM4T9
z=DTR9t`r*QQlw!tPPh~T2sjJc>V&kbv0apL<UM3@^8VKtnj-&HSac0PTL*$V9-kA-
zz|ml&4u~?weYJ`Pia!?@m%leea+0JEqxWdD0X;HGLCywqAYr!y{VRLJJ%>SkwA9yd
ze0zLKp?7|#M5`z@<u6jWYSC%XX+ZZU2@HUT8i!Cs4X*%+wQGD_t@j&Ne9(_U!lOy`
z+tqh>$D;UEoD&^)7lv7L7GTU83Iw>(O(46#`D8|TLokcgJ(wP6`uFWA{<yi`7ML8o
zWuuv?;Mq^2Cc!*cj*(S*5Yj`?MN3+!tl<;DqAX>1bBnp2zy<Wte)mMv@BS=VLd@k6
za?-s#J$Kkw>ul6`4O%vmOK~D%=^Zt?Y>fL8-d<~&Zn`qjuh+S84Ku60+7vau(0i)4
zQa_Jw)MeAtv&=R+TlaB96h4DuuWOpDyYh@s3@2=ObP&T~`Iesb<vBq}sro5&#aQY!
z>E57zipJeuf_ApbO<kwRshNx_pBR6ZpFypQmQQsro7_UyDYF}H1pQ0?v|Q}=QjtWB
z*xf|jtoC7<hS`<8`V{VY3k*Xh9(n!-br`R<_fnr5@nPOBI|OlChn}F-Uw|y$`8M0f
zae5s8CNIxMczj6E$M<-yvpXBw5zda@<UaY3TVOp0$UeQH5=mrS$aptXcu7=b$au-w
z;`OklSYf_|fLQ62XHygC!DcCwz)ivm6R}d(VjC$;bPpLLoLqhHcNWYH(i`w&zAQr*
z+;ysg@g>IcHm>4VkKe_S{I2Q?I>`Jmlr()8#8K4R)z;=kE1f`-(|f#;mFu`9I${_*
zv_*v%Oz*J&y#%52w`9^vvGIs}DIqG2aA)MtpAT!F8>F+vZM=ziTTeh5b5gWoXi(fY
z&1$RE(fU-#+{9>Neu<!IGN*miH0L|9r+Y@$jgnjfw~xMgZR_fHt@e1xHE{!8``W^d
z&aSy<QkT)Go(iYq8J=<KxD?JX`@zPQF$3%6B-!Q1V6~}#%>(`%0!7RdAXsEaVnJ|D
zx`!yo6BX+$d_xf10H^_8EjPPT^hiwhhZ?8kP2f5Q=glkIf_C(-tQb9>)@)v?3rLz?
z-tPm^(}~(Xg_D|etI~1_q>I+p*8Lqt7wh=0`&cd7b=E3@pI*%QmRD5dfs~fu)hFuB
z(ZT~Kv8uU{mV$OtD;kMlz@dMS4STO4Bk!*SGXav$%he*PPg8#{tN%4HU$<fmUNZ&b
zS-&pzW>i5hFRz8O`@0+QIDEp5$asR2sepCoa&P0%NO$%KCkW5(IG6($1mi;!NVU3{
zJ1)1xy*cxt23S?Dq}(Q%yA4=aCp=%OrY2ZPE{Fzl%X{rVf@-X8Pc-Cs*3cRBMWI9H
z0f4}h2g%kbY*=~=soa08QIuK5vQM(ba`|{&b1GNh-<OGFB_ip|F?cu{g)ev9yOBe}
zeQkvBJWFuX>iXJ)M&)nc6E<y#*uI5XcUjT>i9ApzymW?9t4q;VB+p&JblJx0OL48T
z(Psg6u6fO*T;0#NBl(GKfrzx4Z&~Cveo<n}U1PBui$IIA)E`Gt`hMe2>{Be|YONm_
ze)fD5Nz&f$X&f6)gxKpzG#48N2t?UugKp8-dUctHipvBnPv=vd_0t|61EC>LW~t=H
z{A$u^s$MlEIe)@CPgSejn;#1PFP=w7u-`QGj&1YP0Z*c`+>I>3{OKLlo`@AIbOYc6
za15HWF*9rFVH(6#S01RDtF?s$pGhFL25t<_nc4XlXer5=UBgrJEzBc52HW)NKXP_y
zdMESqjs@uHcO~R%f+y6I=7<ys)$)(kjI=(xR4T@~Evg8d;NjWjWhp8U^06cvHXd+y
zh&-8>9!?fqh+7doh_un~VB+W31U`7jof(BwCMUwekH+EB_}F}WT2PgT4_i?EpES{P
z9)$QpPON55e`Y+2!#wBU7;Q<d2|Qg?pEYI7G-`O2g;T<A(v<i^E1>uIBpvbBWyZXB
zlDEh>o<gy_t8YQzbgB!tb4U?^+J1UISWzY)oW7$JTdSLL&w-ZI5VjWP{)ftw8;x>Y
zn0O42G?z33dIz%S7sgy(BEC3eW>%AiIq>^h;EFxM#Orh0n?!VGFr)Tu?4{I~J=@*c
zLF2a`d4C5W>Bt~$W=nY5B<Rkg*szJKDnl|r^fFra{o3Q>MSO{;7%&<|qbmTixN@d|
z-=M|E3Ks%<bl<Rxq#1cA*6xFW5Mcx$Q^y9Aut*S2etNzhR|Pbg?#@1Y`uM_-Z-1J)
zl1%XttK8vDGPj%sbdk4{7V7}PtWQUn(+E@<F>}>)ry7+1U6XRmfcZ-P1>sC>?mmlV
zA&zrQ=Lc|~$PkkvSi7k~ig0E*02p+d<rep-CXyiaAIt~f)M7}puX-1)RcW-^S+M(S
z1nbxUsmkZUg9puUwTCk}RoclM`uVOEp{x7H>4@$3Z|(mC%k+Yw*;T`b)U7P9)eoBz
zX9mqK8?w=F-)>yGMBz~n(d0HEgV`kLFnvCYX1=Cy19mlUfHV3rr{b*=Is)5Zs!t?7
zhc-tVR9)+O$<d(3Dg3*A25x505OT!H)Qr~g4*(AL<I_B1d66eij$4&UJ<p~XSF(34
z2h7u-;b5bo|6Y8xul<%5wC>{IH0_glWa8{(wAJi}3N*%4*wCWk+BE6%Tx;t?x{OHb
zE0w}?#*Yk6du5@@Owt_DnB2iEdhf*BIiXz2dgtLjR6Jh_7)#_e7cH#oVi5$0IMsZ6
zb#8H0t?qoNYjN8=5jSbVWqjlJ*xq9vj&P>YJ%2&<mRe|(27fLA8sTYCh~%py$ImN>
ztos{*i^}iKZy|rN@&K-JUlu0Adr$kl^D8$NO|D?vijzPqt6dC_Rqs!jh&MchYaC(G
zqsQj>?PA3JJpLrDzTEMV8}Bu4=Us1=t1YsLC*N}yioMIg<6OHU2)y#93r9B<*xT4Z
zm7<72jga^@#>#&z!qv}xu(~V`tu80W(oMnKpq({?&rcVHc?f>8%F7$yS?=a(G;E~W
z&PYkY#?BM^@H=(m=;&+Dz5%6pA{Wj3YmcO;sDhz)-BXv3W~3MsJ%&xYQZf^fE(#8w
zgoRl6!aPt+A(%2Ym9Tn@n%J~2aL8Jxy_WKB!0~t(c`r8nn7{IuSZvq#spRobAK>Jh
zM@GSKa7c0rM0Likk+tk6U?ydyT@yc0f8X-gsAE1)`pw+;q<LIPJJvC2JMllYRE**)
za6$xA8URJ;{3XAiH2y6hjW<wL1J{E%3dk{NYnE2ksYZ#+?~#1%O@!CGinRn3Rk;)R
z3jT00r29&`@Q^)YHSbXAZc5*Eg2=qG{&x?NsYTzcJ1Qp7-~!z?$&BwM7(H$6ccXbv
zV-FB`9xaPJ0aC47XwdI11rTF3*UTzp)`N0IiP0$M3aksvstCT=UkTJ-gH77plz{Mh
zZ4Z%1^XBtF=%cM78bV{>&mg*bwg1u+N&nX&ocox7fZhexff*S<g1;JV(R-8D(b2K2
zNo^tpxN~pW?g`=t*X1OyaXN>$phHg@r?zrBE?S3N-vN;g8PAvUsq0H9ca^sKt7v;-
z&x-?nU>SQHdnOV=W)`&FtLV)c8fgKdyQ0M7f{w2bPPT`6ypD_lIW=p{`)t_OiIASc
z=*ViPJPs|2&r5?mQlgYG|8a?cq@#Sr|LJ|U32KuE@GV|R$9U84N~OWv7qj|Y>-<gb
zI~x`inGia$M{#eL8$+LdHd!~SV8lp}Nh^69yfkfKr%aAN6T1~oeV;V0`-7LH=L@8N
z@Y!2*V!Zr`&HIiSAHe`75Au7Rlr;Tf+2F!mZ>3%#E=iIv-uMcBYmfzw6yYwmQ8C2g
z)?XB)p{Zn&%Tz0nX5DrGtQh8LXTg!DUzkNLEs9D+{u;g#0)6`C2MxyXj3bgq8(yf}
zdAciNE-w*cBPBoTn1kWKlO66K8u4XWio#nU&mqavHQUGkTFD17#bzs|nh(C`1X>~N
zXae^5=WVz<X7RAlg{fH@UsYqQ7xVVU50tNHVh6$)UI&1zdGVX>T!G&k2+sa?ZE!Ew
z$um{feoVX$?vDrPv9D95f<BLQ7NhuL<KW?KXTx1^wacz+iwLoU!cG+`Oy?kklT5)B
zN}7c^?1#CA$|VOW1Q{4kCY6xEk>$kp3;pB66aY?Ii&^EPCMz?X=b+HK(8b<TMc0ou
z4?D~%Yv=0oBV-opUNQbfx&H(cARs_Iz-T(n<@<=Z%TF5<4N-zkUQ=B8;{RTwyh1>N
zXHiNB=jI8Eo59;>W_1{MbdzI!&synloJ;ebMuI4N4HO_J_>sXe_&kx*FuCYBM5e%7
zt=_QF;o;?N)Yerkr7LO;g`gJANew5~Nj+|axA$nc$=Pvg;#!4-goKa#85OVlj`CsU
zAIBpch%9_q)*&5jyTA0JLvQ8%AFr~bDBCIh=aP-cpq`I`fk;b3Y|^$aCk%3r$Z|Eq
zfY(eK_(603*g&(pz_TG*1|?;!l`>5ewdmuv>-BZ704h0Ca-)Dd`73ZByT84xR`sbk
z0fg{qAe7CXJU1?jj+%ij;v^{iG$V+JK}N?*+=Ad>%2lKQ!ANh}b9=gfcWh0tkl?*F
z7eox^X7FwD&aV6oGG6~hS#ekT#l$ZG2XUX)r>)7Q9#@e%yCyinytsRMvD;dLs{~F5
zZ5%3J#xSl5zawB2`GptF(<tP$O}_!G?ePMKu8+x%(+qgW)zR=04Bz*)f$9CsNUHJs
zRQ(bNFJoW-;58Pm!MC#xZEUx<m&$2PlGsdew&=cp0dGz!4EB%2A9G!tR+>nSACXJK
z0r<_oH<IZ732tM7vA4JJcyPLl)Ly6fjb=e068Y>!PrMY|djAI&t%G<s*HBz{_l#T+
zvjT49lR%onGlEDODr`HrMK3TL38YsUw~>M>I9G#-kB~5dj%OmphEk{;=V^jn2Q5%x
znF!3x4-7E#3tuc8{1mg`Lik?HA+KoUVnOD(VMZVMK}AC^I`7RS52TXIf|he?ByI4}
zXMTFb2aLdP+xfZ|U)H!t#CEu!N@`)8r8IN~bfUf_$#bJ@EPb@^WZK3)-TI(|#tv~!
zDoPug)VfI0Ff!H_bKvWIsgy>FX{eTDWAH)vtE4ue6HV`Bp?q0H@so}?LlHS;ISYb+
z53>zWO0`OQoWsp(UKSVm=Yl{4H`A?GdrZXbW^lH%uTg8ZlS|Z*$r7Fisbgy-92}|4
zezP>V(;(jiP0ju{VW-%7TytnD0jl{DVCDQgV1S@*LMcFwr%|enqvL2q)I6e`9&6`s
zHuS5*rrY){_9ZgL3bn6M7NcqWQBm`_n3x;%UNxNml*9cQN0VSgLt)<KpoP9mv;Wm~
zOK=cGGra<$L-9lo6N`F>g$E!dawub6Ft+-(l2hK2Z(HtpzH^`-BwpR*1?$r1UNp1o
zO6{-6+C%mv2VvP`utii_=^pefr{!iu;BH)}lq5K>P0O3T@jt?XIGnwf_(yFtA+z2S
zfgPN|)yrKCNcLOWgoK1AFRCjW8S`-ZkjdF5qThxto9>U{vw}|Q7jX!-{?7x&h}i2`
zuk!5UmWb_R_%-ISU8S#Gf6<`}hQWEqD*d~6DrvzgotIqg)D3Lr&Y4KW7P;Qzb<d?R
zB<fYmB1G+rMP?o$dFz;&WsHsp_RQv^3lSCyohZI{$o^1xvG-@BX0%wRKWmoXJOA@!
z=aZs>WLicM-ZQeFEJz&h6jmWP+xt!H#>Ytewz$qzanxds>H``^y}LVoSiPi0OkYEi
z0`7$m`SjqHnx1%hdr%)e<z@q;?M=hHF3lKP#6;@jO~ahS)c~}`dX2ZOkvO(h^y|HW
zoQAXC=SX^bX=N5_xz>Lf#6-xKbp=W{=hapGQL>ru2hw))hF@JL6F$%K)7*)4+MB?u
z_C3e*tkb#l1{0~l4l=IgkG56};^GF@8V6pNN62YGI&X{8PA49+Gp)Z^e_^l1PZFOs
z2fcS6puNfUn6tk9E#zA+(xDshh-y5}?p!Nh<hI*pZMN5krZOQa2KHHx=$Vqw^(FP;
zw?uP2c3s+Mfdu)JUyBYg;vn>VFb?@D!@Ej<mP<5=^^3+nir(asUP#%;|9~ja=-0Ql
zkjbqvRao=wL81*+r=Qo1AP=d4ec?%D9O!gNtC0i5Vzmmq8r_N9jZC;6^o{2MqvKVo
zkr}y?E;-hf;=92cF;o*%5K1j$vQb$b*Sry7u`A5f*zEz7v^dlpIL<=tucsL|dj+p<
zZjj$znw*u%o&GoR2m}KOm>p2?@$sd*DI()$gdmFD1oeA}_!Tl?XeX<TzKukM#8Yqi
zY6j5#zCzD5G&J&?yZmk?bj5t}Jo|Z*=Ggx9<-C+ZIe=TFl7R*$SwBn=VXf#@8!o-}
z*}x1!<KzWmdESF418DR3=a9VFvfuIFPM=_<hyAxncLC#js-#B-uT0}7%`0g(Zs6}v
z{kiYOI|5%m&aulOb|q3*kFwr>h=7P}jp*A?WbI&$2pYpO6*Xn_E_)0bw^}#Vk0>qS
zro{Nkj)L-!!t>JN9<lpT{!+OnYG&>!O6T;lA^sI-&_Fa&p+(aIDVqtKeI&Vo3+u7j
zb@L$qEVdi}4Y9Q8uv>0ECUh=JEz}_E`mIA{JFqeE_&nu#bMxjy<Wpgsf+epVua`Vz
zfrqk{9lf1PXn<)K1|(b6o~6U+#Ns+mizbzbbG}l0%9R}voL#QRJClE+G$HNp)C@_^
znwcGOLuIgq5ju`~I2;agfl37QM5ZhnieJ=g9BqAm<TKkpiMg1Ng?7PpG-MZ6#H;K^
ziY*csX+qD7Q&*4`*1dZL?c66IDe(O`wzifPp+kd7!sacT#3p&Xl|UQP&=6Sjb0ke_
z_#7ngyjw|ie0-XUfpKh|=kc^Fp4z>+OYJis^QUjJkj=>1Tp6pq?>_}E!osvwD|P^%
z0q6R{vD;~C%z7i!&wV^(^C>=U4&U)%6ZD01@Y}bn1cZ5k*BT;I4fdB-o@aZ)@Wt!~
z=8mE?cbF(T)4ew5)h92lsw8oQ3VA-Uqhmid83wEirV$#<#tR|;o8wrGSGEPd5^|wX
znMfMK$9M~Ejt}(oi<wrMUo<hxRg_?7so>xy2i%G!pkqHx3MN85B=P%=@34%`Wt4=x
z{VBS|6Nm5PmN)y{B6U}ZoqKlwrBO%Z%khif9+JbK?fzcQGR7cC@(6&!vg7LN>YD|T
zRkQBu`h)Go4coA=FrWECuq#d}?cC^+yD}WSEq?w9-I+7!smp#HMRWVd3`k#I%_RlO
z`ew{&L7L>Z$4vn8oUl8ZWER}#rOP`OyNFFli*=#i{B*OO>|ALA@{bEOV1yte-kSKI
z?P+8I`>iAnCwm7pg<V&b_;jM4A#9HMT6tj?D66m2NlJ`-Dnez&j5GAaW*HwB(~u5)
z<4G`c(=FHQrnT$wd)h-qMTJ1y+7m4W1jhOBh$GwvlasDXSyRRI%zvCR+}t6}OEv}S
z^ny${wfs|X^UvIeVK0*?PTqK0i+<@VMUjtu^3gCT09CO6wkzE4;*SLC`yJe?OJo9|
z$+wBqK19L@g6YkweoJDrb&7}$V4IrmyshHC<cmJdQ$N%<wB?q9Ti#fCW<ES1pP_#q
zc5#oY1e@(`6Q=uhA?R|BkKq2o-rN1iU=>|~(VIS;j0dQbMI!au-lmD<dbR&@Y(3@7
zXc)FOsZON1bh!sqFGAxVG<^}O4sk1z#)C~GX97op>OL?JvjM2Xy~9G$6Q))D)`yVN
z;&yYEgpHLXu|)kR9WcN7yF)SxD}`^V`UauSqiDw$=07e`_|j4o_+O}en2%?iKB4lx
zj9CCKG;WB>-H|i0Q%@!J0xD(E&f$VwJ?F^%Z6{@(YKm}6Zrv$JY7{ohuuec1_rf)+
zv#HwZkvMaSqId7SIYJh3kd=)wky#nd*ce&*#>=(b+X3xd3tP!O9D^KM)u`_=Q3#7{
z2a7%cT}mv#Vjf)j%!4m%*4zkGM{haSwv1TLdU0`0HMf5gae&Sb=h2(R!zIFlf#}ye
zwtZ>T8G=L)JIW?2waXF&P9g`zM>Ba{`(3t^MYK3`@MhQx!|Z=@M8{12&Tg^m7KNXc
z!Cv+EAm5<FyKWnD?5Si8>_l&yk9Fht4oBd^+6+w&7k;Cgra0VGeOENMIqh}9<E0M2
z;eD-bZS#AIFQxmW)d^9F+mML@98IweO$~p~md#g%#6;84XEE^h_rIz>I$HhRaTMk5
znQf5Zc;E#S5%U_j%&d_R>vT8v3o6R3t7LpZ>Bq`M8!*my#UFC&a1f#Md^nWr`s3}u
zjlgm3)9u&(@##0*E8}#da#vjGSiQjr7=IqpolNU{d(UFLRrVPTSS_9u4lR^r=Ov}2
z48PZ=YK)Q7QOOcb;_AG0+rSmo6N-z8$p=AV1W|c+yE#GMkEondB&^=d&QGIOb$|Qz
zJiDs7=k|qhq`Pge5iZsIIX4UW*xW3HVbkwtL5gJxh|&rt5NfJ8o4`YnM)>=&{)VAz
zQ#6pUxVSjl&Fu~M(~QL&1}BU0^%&SL%Kf|E9LL+c(M~FH%V;h>tjib5%37^n*A8&~
z2r06LId2?1%n|g?Hv)FwSy~TjhhKxxc)szRLmIyWUYOSn`nyOW{}3hH^_`u<$8ERE
zY3FRQA?T73C}VU8NdNViKtkLmd*zg`(lk*pu1k`27CAu4`lS4{W8i1cBQbI$=8~So
z_eYjl4!J7BNH7If%`v5xCw1ug?N!|Q5M=uqPmV9sF_)!SQ>=b--03EZU!05&TNDp8
zj&p>o@?y$&crrM~)cgF*v#e}gwcY^hSU%Tt=ih5lTACVM15;Q~&)>HqcegzOithff
zE`}k=#RImin`-H3iTt~h%?E5lqCdNbgB{b3r*zUYN><yb7+$ikvX49~96xF?I#Ux&
zKmEE|p{2WWa2ImJn*W&e?$8(}SmAw6|2Z(ABDi;=aYm28c1VxBMDG*aWg*>)k>-J{
zk}<7yDG3x709&%h*SsYSfaPwa4)mR0T})DbX|7`=WW*LCvDjeCFj;txSm=pUkTs<y
zQssO4eDUHCUCY>n?Wkn-^4ncKzI>7^9NF;&DWzYi69gtWG&raWHNJ=$$geBPF)8%4
zs`88klg8nnlTW2c@NY`3NKUPsJ%`$dx4!n%6#cL~4T7)pg1H(ujHg~HYt4mbOjmnm
zsy`0hQp~ZPk1Pd7bJTt*QMcir6zH{bE_68Wnpzr>T2b(OAh9(PjZ<#rchIJkn$;7+
zj@<L#L`$MYqQy+GgQz3E0g5_iXZES@<ji$bZhI|$rbRJ)Th(X<3RY)lo4O@*bGPIi
z#5fnz0i6!Zj%wP1qpQ~MZ1%k|WBa!x4P^xxN9i9CcbhosBU0b43$Z3A^ON72vU3@n
zeqF48S(?adQ(%;dy(u*L0h+BdVC~un;-jMP27hPk7&e~!sU8NS{B>%9vn!Y;MC_<J
zj0?mNUadbZ(QAEE!m)L7b(&$ixX$y;s2}~({+peh-B)ayeXF)V!ZXLx@EI#Y1CNFy
zuW69-($G<d$@rB^3c`2!e&{<D#H4SSHtLt)ZUi(Gn~Uy3vKi#sY4#5CQBqFlB#d~z
zE|4XJ$w20?ShT|ab$b8xHFFka{<Cn@WB`b296kEfzR#M2tXE$o*!MXL7>D8>@+%q^
z6kee|?o*EVsr^gTP4&gJM3o)XhD6gHR)-SE`U^NViZYy9pF8HCmyXFk?HhSZDt2@7
z@xu9j$f$74QNOAL_;vB#&E7^VXb~lb{QcIMM<{k+Oihk)CW(YRIL05GiDdpIHNG7|
zXNO5sF0KatxolRlt0#u)w&&X<cML`8a7inV=17{XO5A8q`PdkVq%WWG>9w$1svuP2
zMO)xCw@-xp%aKHP)=PN?#=CZX3?YN;@kcz$-cA|vjq$2)ESC(-5lsw7WFa9WLT(H`
zXio<TDo|~oClYq%#MDh29v&Uh$|8m-5{w&b>eEMrKg7H#$y42>ubDxd=;A=ca~;Vh
zF%Cc~mdD_%OX&NFDLCqRU_)YJQkj@jb=u{5)M61K4OM!+o);y_fY)L_W@JS5b;(DA
zm=sKHwKyJ_rSmI9?<l*EifND8zl*^lFq`w&_fue2wTu-en^w>hypzg)WB1Wy)~9c2
zL4dC?`PVOW^$~^cFGZ{ZbvjQs%v=r<31$5`?vHEl=(M#P@BIe7s&=Nn5YBx45I4Yq
zk^k}JD2R4)RZPn}KQ3Q!!=p+*y1ngmH-R)M%(?mOUN@VDJLt%E|2-Na!QL7QF=Erj
zh^-_%p?4^4+P}HE`ONv%o#iDcus5wj-f1>2{fU0k)%CU68|t&~U27EJlIrrkSg^7B
z<a4^C;aG9xKKkR^rvftc%2YA0N{V<Tv00Bf<EQRBBOlh>bAVJHjKY-+IRk0mecW(w
zQQvoju6V7HbbgBb)(BvKxnM~CtT2iDc0F!*o*gB2{)uIxIfy!EY-wwIF`1=f31|Ys
z52|wF<V?~YEJ~bz*PJp$ZQ6L>RZ`MQ)&w`pb(3h=|KaHX;B^Imh9-qqX1TMyw0@M9
zA=HK-Ka@(>+V>loRYJR^h#uPC=i6UL9yww2-NljuaaydEh+pn1#HY?A11RV<d^5Is
zgjc=8W-CeJxdr;UH$Zsq&8G7teQlz|jO(C&-x1_g^{OS}6crWq&8XlUi}uOL6?@h9
zySS{rKu~pkFLP!+1@X!Rei%PGC5~+#X?mWH3YX<*Kl#pGH87Fwv-9x0ZU}q^oKj`S
zy98V|H#gAE=diJg!(l%wXy~E`f5IQ7fpuSBAAq+qIFkKrxdp+^+7gwWAmaQC{BoIN
z;<yJGzvM^JOnDi=W^_$IL`6k849}_D_<a7nugyIB_$&Jg4*>$=e;#{rDCxzmbaFIB
zb{-tx%Lc{S5;O&w$3NwyKTc>I`xe^X7;{l?QOomQq7gP}VgdCp6hCY5qN*2Wdhhdt
z4u)u-7R<1^rBi2}l_w<W_T$U$^9Fe-4Fdz#d$_AQ)%Etuhb_UA8h0CiFPt^@0i)Yc
zGRG_NPvsTqdyBEddv&InhQ`c(8%q#ho3g`1v}96wqR4&uz?|Q|{FT1?iF;|A#E2()
zWR|*HjbUygqy77)8-N15&CKXF+;3vM6R`W^so971rFETm`bq(=t~C34o}X4~@K0i_
zKZ}s-rhMyew%-r(+ikGw(3w7v38RJ7%%KIU59E1X(XYHEV*a8RPn+%f#HbNCsmtyR
zl>7mKSpYOZS?6(aaSQOJZq+Lz+BK_fBmyyt#3#0*3>VQ=IMyvR=%W@XBzy(h@2~gI
zz-zzs^b}Ibk<79lNzGHOSV1SF5%W~8h>ecU1$4Lfpl_rEoZy91Q!g9vF#od){_KvB
zctZI74OAO(4RD;erT77vGqbj~HriBtlPnM(!6kIB+{=CU`Vfd^2!o#HFrwN6gvi<L
z>G*J%M40KDNd@0fi9p_xvbed={yH0EX>cpX`{jBssL2&r==@H-E`LBv%bovoesG)>
zII}+uZ<6JL3176tp6j3yDYOP=!{4W;JeadJzeU?g+?V6*ZOX{Vc;dd=08m{Qn%DK`
zMu5|T1&1r}-21-)RnOH`(dT_ZL17@fEzZUHdoA|wMOp4sOyzU|d2x(PwV>OYsK8s-
zx-)YdE34;CtD=UGBr?{y{?)^wp?7k77kfQ73qNcZdg^vjTbsn&?Dr35xFH$4dzB3q
zMt^@sA*;_{4Zf#$GmBiswlFuhY<Y0>?fb6;DiH=+8X*0776Y5-&zcp>nu=Pgd9TV#
z+76TB$GiE;AW1q3GkbmO61~*W_k@_suXMe-{q}t<?Rrg=v}Aq1xqP;+JyjqeSlu^e
z#?JNn>0VSh4$xeH=?c2z2jZ(5^#q9kH&fCZ7!0`VhoUTf<31q%<J<u|?zJ%D#m74U
zdzb_X+e|mvUaLM|qw-)jNEcrn$z@X%0)S8`sq>UQM+$!FA-7a#lK`i@rH$;%8e`wT
zKATqCwjl}Z-n-tfN{RA3j*LVjbllZwh>q}vsBZI<#=?o|a~7XHhMz{~z5XD9%$D7Q
zj!#qWORRfc!z@e6-#C|wA9Q5C_5N$qif4xZMy%<`uMuC|Ir>$LsDIx@|7)QRE^X3K
zhV>to+&$qU*t(ZC(<j?%)7R%!SP698)7vTgtF2{ZHCj17ioYv*RvVDZ(f+YhbDJI<
zpPwhauyDpS&>UL$Wb~q+X7|avkF$O`Q`zm;uGD^!JOUR4K%t}TQ)2OfI;yXAJJ~Rr
z*3(vnQq<6J%r+3C!SdS!bD8Ws*G?eZ+2m0xgj`dDn0PFBOiT<;+mN8kGgiE|Vf+G|
zINI78G8`*Mqbe23#-}v@*a~oT<)%p+8)v2S?%rkeIUjsm`o4>IzaqxW{PeyuCoQcc
zzCZ=U{KlGiZ=n86Qw8sPPn{#-A_Z;^k=hkIOV@r<K{{s8kVtM-7>YPr5Y5K8RAi2J
z2YeIT7dUxG1DzJz{hDw-WaQ*jHR)WqjG2YAv$LNM`EXTkxsvdoKaAQ}PO1xrf}rtF
z^nOYA258jAReZ^AG(0Y^-hBGl{qXON%?)}`TrwF^u%FX5P${$i{Q<_qKs4juvzKmD
zQmcV67q_(s-?<R#LZoTw35bX|P<-b;G&Pl-{mSELlWDeip)^G7JQcvue!{x_<i8eT
zT|ZT&uePfHx*_9_{J9}l+i=YPR121<O!Fn5G8RjSk586kW@7T3BhI4G#q9oGBD1)#
zFgu$(--aB7Uwf=}Lswal_vDN#D#z-Dswz`&lp5!`pzgp%eot@j_N5f|_53Hgsxr=g
zvqFYPk7fc~URN}xHZ%yfwEhaT86O_Df05$k{27;I`S6n&(%<LhU+2OTR1^pV@){UM
zHlf?A^&mp|Va#me{K)c4CgoH*six!I6c8l6SYr`|!);#~pqnE0<jLST<=EKR$@Zgr
z$W-#Vp`IQ=5Z-p+!S?d^VfDh<p;KI1Nu#3=y(_gvos~TI2feG~3tRM^5UbbJ#@q?W
zh&l8sKV<%OvB{-<5FA`ZYx2h7uTTG)08vei?Bv{|sJvX3jg4(zj(y<e-@m$#!NNdw
z2tK=G+V&*=qAT!+`}3DOAL!PnJ4Gev*QZSp-P%JCQ2g6B*k0lOr^NfK);pwsHIv={
z8vE~C(7y{n1f-&LX&IRk3|t-G(xN{9|Kacc7vD}CqHweZpeg_3CH@z`^}qS)D|rMU
z(SOYH&l~yw!Sj$KW&}jjOa6YG|FgIK_ZGd9?;0vbL8Y5`is9|;Jpq)&+jhDY1`4*e
zwgHygdQAVdo;q_v0tAsy*Z^bW12tjMLH}QTcK^#Q2*?CGA>bD2Vt0Ey(+6)fmDiZz
z4@fddF{J&UmC1juZU3qnq&u14r>8GMA0qtg`+t6wUV9Ww&>8?uH|t}@d`BUuRG6Ng
z&LSyEWAvY1!oTld|DR8C)d<1Sqh`#-q4R={j!xS8^yH+z@7e!u<NmoZ|9mc;LkIRo
zPP4M!7kWfmTIbq^hNM0i3^Q_O@c-)Ns+eER?CZ`WW5026$pu3MR)QDLp5+b=4S81d
zEG(q;^vHf&UCo}Fnqn0b%Xl(k@1<umH^k8V{yo9T$;rokWi_>;*49=}P7grK__4Pq
z4P;KvHPBp{u*Xrr5C77_;`1t1a&j^;HMNS4PBJl>*L<-_Rn4Gs8lM8^pR+uDmdO`6
z1E61k`u-z*U~Ft`!|?QrI$;?g@?EHGZ8fNh=l75E_xA^{FK1c0T8xbKf3XLAB@i*-
z0x5&z<0&-$$1+$rINuW=xJJ+ZzTL%b1<Ns3CMJWJ2~y5hr7Bz-Ce=*oIb$#CmX?;E
zGc$8@(*OtYGYtP;tqQ`QHddL0YH_*Z#a+{-Y|kMe?s-7oelk?11?skn{9*3ScU)};
zeEN-Ve!gry8DeJz>`pX*KpoEZ-h8g4q%>uJc~Cb#3GqppTJH{ftKjP(K42Q;_ytts
zsd@+A(DuuzKmTUd%kdG~pj*t(f-G@BjKcXzd=@CLlFWUMFoifO{q`$_w{Q37s#5$i
zfr?Du&~UgG5C$f8bGSb-h&#4TP4TrJ_vn`j%Q%hTnEJyQS*hALBKK`~M$*_UDyvFM
z^L0%FRATO);3NO{<;nk_i^5(83f;Px&&s^vDmFKSu6^gBi4us_G-y2&q5m-~T>kPD
z%zVE19ko1FdtIPqpsx?G)YH)tJz&url(>nPBi5#)tE*cxw|g#cF=VdyPS|B#nx4Q<
z;b7N9BEc7e-{;hRuEVORd9qm7NR2&#qYx@SumBYA@=kFAAa?mt_oKNwx}!MZdpWNa
z58;{b-(N?i*jkN%<CHa7lj00b$e+9Vshnn^6~Ff}0T#xwupQ~chtJ0)E;+0$Edf$#
z>)kJ(1n_Z_-`%XKO#)m{+^;3gS7v512M<4>CW3T$Eki@*UBC>H+793WJC}`>HP1B2
z*h~Pp)R+OgHW84-zV-E`!3`cWQj^gTZxxr9j}%M%=b&tjlJ5F(Wx2JfU}YOsLg%D;
zsT``|ClP{}tn)+g*1_#8j*k7QZp-T8M{y<N-)knFo*V>!uLS<zFC^FeA=U~yQiWZi
zH7O>(8YEC{Ev*TF-+m4BdICUe&)Q*8<>a4Q3)(o>bDcC=eSR<)tln`+h!vh8>Vc(_
zF7P}&vf-n7`F>?vax&*l&vzb2w*3PG5z8a?DoA<ErJK9^wuy+qJ{-37!(@S-#*fhd
z{;J??LJmK}hz$FHf`Z~Tz&T7I(>%r4Ic|&WmlY!o<}|(M2bA_Hk=;zWk?^=_hXV~K
zpv-s!cM*>x=glPL(4*4_jNHkGHkmR&O!DC{ksBf;CMK39;r3XAH90`kow_Y14itpy
zUFdiRMVp%serl^3?|nmwy_^@@a_+475_EqR6^T!)db(@Mb-4kBs`*z(bpv1c<XBdl
zCCh4ArGflNMEk?q|A(=+4y&@;)`tZ_O1h*4MH-}(?vQS25b5q*lt`x_CEeX!i|+1N
zba%s|;d^-Z-e<?}eAhnz$?_7{6LZcn?s124$BYhW(PsA3_Ki*hz?JvCmc8<h<Ay*W
z5`wzQ$~cCGhREdErID>s^W|So7wktiv&<eJVZIN+ur!?lL@FvjZ!=1)=hJ000P*B$
z9q^|%v+b&`uD)n_dMNGsln3`iN%ZZ>AYJeHbR@B_O<^tabrH#8Z+}}1;eJ7W4#&1~
z`tIlRS&-joS>iGUfR2NCKTm#j{NruCa(?wYEFyR5dU968u`63SF<D$x^GdNVMeV_D
z<NvaiX;8j^Nfmg;oTn0rL7>K`N6G?(a$uE>j_^Ox^K65y#x)7Cn-6Q|Cr`=%->x(u
zTSpvzWL0~nbXh=-_tKhXkPDCt>;jupMt8SZwG0R=S$jV_PKOpwlhLl<#|IWu?8<ZM
zC&}?;ZffiVfDBN<+tD}cpOPQ<jqdI3?Tm?&nX6=Vtu;|fk^Wl!<{Aok<}ue4@2Q8w
zTWINOY0>9?i?BNY9|97E*c-r+;0@Asj`SGPi~6<_ZEi#E$8pWs6AccnGk|B!X*#Wz
zRO_&N-nlTx;lPYSd)#1N4haz6JeseSE8f09AZubero;<(>fRbjEe*b+rK8LK%->wH
zx~eBswav&w<sVPXM?s+#cxBYz(B1t?Qc4Q{dkZ}>5WAisjQ5IBtInJ6?tqn+c3fNa
z_sjIZ7M2?g3|>&>%tCA^IK3UX;SkxkW=roj2>F85<ZHG80qPPa!@LOaSx13OX?l)N
z{{(hkd3v~+FG6z(%iYS0in3aE!eK~93^9dIpXJ$`g1-LDOu1%>OUjdO3pix>|FtIh
zw-3Mhd;9%4^Hkw+yP$S#0XFs^+9f3v(KP_+RQ0oh*vZnR+^7}h;2zT)s-;z%{+1o=
zTKj;e3Q>4opjrjr<#<lB#!_6+0WM3<xQJV)5^Dk+h-w3)w0I7B$gO;uGVU}GTPztB
zPRd&ld=)Kpl&SXZn|GA*h<<lytSMgW;o@C{#**gj#`bnC?b5pF_QpoR8m}QXee8xu
z`DwL$CrFYP#A;AZl1S01ya%!0I;o|v)2Cx#z|3exH@V!K60&GW;k(&Ta@8IT`wW6w
zD6k8ZoS%=xjR9DPfM%^#wsrH3m<#s3j8kP<Syl*R!|VbEHNrDc!6)nu-+ynvaPn=W
z`Xj~;1DxGeaeDi8F?jk;$9mO)tMq5bR)vZI)mTa#Q|5IkS?;@KUYS0xrkTxoD>IX<
zCKaMhg)+hW5-)nu<c{g(L<&-{%+NcS|3hgw$_3-Hf*tw_jW{oA?N?b&5l~AY-@O)9
zI>;7B+BT#0En>k#DF?6@#>xX4#!p|bR-X0>OEUoLF1jIUz#sYE9%%0(iuMOJTwjP{
z^rXDPEp_()4fxzj+Tw+v0>NFVg@&FZq>FCSU(JvKKjzZD-6%@RE;DsIyYrX)*}weE
z>A$bv+<bgyW~g_5|Ae+)sAjF#k<nT621LZh1|9502<T;?re-UObwxWp0N~Mzl43uN
zuK+o*nwC)c_6cb79e{%1S9Num;`@;%MzqR-8qgIZE&Ze}fND@=XJyHom{0=%=YZ2S
z?DGxr`19iFURFwKe?YSpatHGxnxB6Up|KNh2y^A6b1lwDT|236K&z6G&Kf5*goRJD
z<a3IL3r1JdJySheKre<}C|YK4rvdm=?|&A`|5|_k<InLQfL&>2ZF7@y*M>tCZ|_fK
zQxng-QsYdqFy+Kbo4zCfc+6KB8yhp@qNi_CN&j71S_)}qH8*5VqPS<l(aFaSgbUe@
ze;I&qae6xTHQy9(uDZ+2Z18;JQAXwvh4Nry<NZvR2dbYP*bg=2-Te3JYKB^Kro@`T
z{3;|Qq*#gOZQKY?$z(f5dU}dOaL*?Fpi-#tV?qT$XPg^`KoTr0Eb?k<rj=R$F(UAm
zfMvA?MIR6+)9fBIM5o$?e$es6_6tuExOA+JCasOD@woF+j*c;_C{5JG2ulT#z@rk#
z$fodhlIo$1%gJv={;b-LW6GoFpEuyowwdLO8{I*{k1DL?SD&9#QZZ%5HOd)pR#_e!
zOD2jo5;I2ljLvm6-P22DhrwA7Qb@jj$gQaRC3`S0*65`phAVm_=E0@(&G1-yDRcNU
zVFn9TkYxBVEA2Kc=ve-YkSjT%vt_XO=^d!_+Zm4QOyJn0nyPR%O?h;)MBpvaz6>-@
zKalV7HzO5jM4$pIqx`mjrGTL?X6Xqz0+Fd5b;yIE$dbmUU&xUjftf$iF9sEUr0y%j
zwup+}t4%VkQq^t(gk_sELQgc#Yv0J?!dk=@y1HQA*zB$WXpX1qUa-g6Lbzw-2D1q=
z=dE~TaU=g!3_jAaQxCOykDRjR*H#(n*%xP|oWGNV1A-nEqRd^zU^hwB=%zi|MeepJ
zuHq#&_-vYHD~~q+1Q%s0N7wxhj(AvH`10G1$mJC$!XA(LdA0l?r$Zg-G9;Lye=hU<
zS5eh&xcyX+1Fc%iPafkv9cjBjv>EIZ^;yWT`7DJE7B@t7Q2p=h%$HNaHjOb7`N~cE
zFH~|3tLx|+1$57vuPrLhugK|CjSHAc(;Dt6XqQ~QC85MwIk#JJZdET)%gWxCp65nQ
z1iq;_J&jhm>@plT|F+t#&9YHi!#n=Z4SQ4-X~AxPDA!^)@zWl~P*MdFGv>cR{(oB@
z7cXHkPJ%+Tl$Ay3UsqOCV3GC|<(HHUZ)9(mWirh5_2zy^q}EeFrNhRK_?4R*pjWQL
z$H1UH<UFM@1#_n+v|ns9Q?lq*czkSe@vSOK!8eH^Xup48KojT0(0DsOiITOFvx+5P
zm!0Z@b&kOAZ{P1Br8Nt_7SZ@S9?mB>min7l$Zc`e{hd@i{$ko6Q=2^w#Ar^G=tR~A
z3y*Uut=t7P-%pf$4-G6=GOc)X)nkmW)IQB0203vLX_*xu{h{aPIIQEjfz2HFN`^OL
zy6Nim;q5Lf*ljrUPi3Id@>5gf%r{axlbttQ>*GW_n<4%Lm;2H`z|M$%DdzXy;i4{E
zaPC%-`ZP8W3QkK8LmEGAn}8*(Bw>Gv)44}y>x}MO4KUZRZwe>`<5=5BSyu38Hb&W7
zD^`++UHIxH$e4Dr90N`ejF57EkuXgu%`h|8Nf*6)!h-$>TA9g8rEjlqLhFC|<mk%S
zrZO;NO*lHGzN9arc84x*uxjYO?eh_jE5qF2w<V=~JW0Y}uu_`oMB*ktBXS>-GT5KK
zUqg-KMnI4B82{uhMj*stYC>-ks(y`AAH1K*zLa}h$Eir{dXXC!>Kg;Ircvk1-tr~u
z!Vwdej}ON@ub7JxmM<lu%O%)*gmG3*9d^zIH2Ui*_3OE$kEko-x_{(yI||MDfG&-*
zUwPo~`Bz%paqf&<n!6uHYVK76;TAtcq^}*`QQx4hAIqdTkM2iA`GGAK7x+cA@X2@1
zlbuOPnr;QnikO?16N%oz|M%l;Q4YXx+OB8I-y@?<yS^vlw0r;XP+Ojhf<^+AXl4$g
z&}06zSU<mAo{&8FgigS0dWtxJK;_`>*y}AH#4K5zE(DSDo;C!RmuE2K)tpi)79Pjv
z&$Y!;+?0UttGQ=gJ*c+XyR@a!bOgS)uMf9ffoUo+J->NriEAVp!eu#Y*c<_X0##Ei
zhil{a9^+BD;+f%pAxb}VzI+1`Ggyi^nTmk~^6PDifJkeJ7mFyhV^ncjfxG=Eb~Nj~
zFlWd?6eDRiG&`CXXDn`;8JNmS>Lo`*OQPF;p<c^00L5Ufh^>H;j=Xe~`Yeo?{*J)~
z`tJ4`8bVFS{PnOWNQ%@|2KRUh1-;(2FDRO->8bt}?$=Xmy21L22wrS=%O}lw2+9X%
zW$S-<0h}%=sx+x4Buc3FtohCsL^k=n>tlVd7zCIv=o+(DXT!S*@y?tmm?2KpgbuBN
zbGlz~is@^!1AS{2%y+L(j7uAz^%xDUfHLI`jTSe}(z@pXNeN)qGmD+3FHm){)sr$@
z)xC6sjGZ8ARf4JCJKmkL$fUFyc?ik*0G?2v<L>)JFHqRaC8l!IAV1A0WYP;OhSwja
zb&quDYMNp)ll3_z%Ji78etE@QM;YFxNfl4@>t=2gSo|#~5;N)XkFFq%$_o38NM}!a
z0z2306Kb^tckiNuBtJykD0+0hyH^D?eVO-a9&+Jh=cxeYqiF^UT1VxH?;JuXchEJe
zf1(`R<bp(Uw~2cgt!(3hGNrnI<dvd}d49SOQ{QJc4;go7UtB~Y(v@=zhAarN^9nS*
z&sK933%{u8SvsG^PTjx8^of9n*Rl_~$cU>o%N$ouN%ltrI!hVUFl9%c7~1d;zq5b8
zv(3}NgNgEEbT88pj|_6TM^kC)Ik)|?+>n7)fqFuotM?LKmmKZW#EcF7KTz1e+T2?-
z82nXolK&af{SRFD0u~%2kRP~a*q@M^6JKyhWeAKh(kh1&$elsk$<Cw6&WxXsv+o93
z<qFY_tJOFr=>w#JPAxkv?X6{uj@!i!vzaI0e{I$P4jL|s+3p`4e2=y|u<vMZ|E~D0
zl==YR4m<_^KuJl{1zsa2C1spxqd*px3wlVF0Wr$k*|DG!u!!hvuXY3|SR9apj}9!y
z=jKF9Ls@}viER5}PVv}EXI@JalWbdg`7~)eHEzUf9NK5#{XzvcxJOZkKV+V>>K;IM
zOaV@|!~OMXb3-v-<x!Qe*M#wvR!PZK27+!Zxz(KhlB+Y1U<>#$P$LerMb5YIA?fk<
zf}K~7?DHEQOS~bk+n00Dg?X|}rdX|f=(<Q}d_K#_T8nc@iWQET^XweHltQWwRV0Dy
zqv4uyzHFV7#np$~t;qe01dd>v2H~8MX}bMjX&Kv3U0#=YT$9%UUKCQA;_S;BKEjKn
zE>Cy`jQvqEmRe0FgJ50B)%fFhbum~zyhxgE9q4QDNVzkY`L@w1Uae(bep=^os#1f*
zu>(Du1%{8HWj&<zZJYhZ{R8(V8HC#G0^Tisdyy6lDUTmEzg8E^;4sXC0>qCMnx%cS
zfwSFFs;fQMYyC+5>!L1-q>@L3!a&Zef;I5u<<r!<F+=-&c(d^zob__!7N3s9Dfte1
zp$+*u3&$8rhZS(5q1yN1$}cvP+JJ{lKS)~r4s%Kc$3CVisYMl;kIpcmXO(ld!nqWq
zr<BEmwndE#^82c2cP~1oM{&~OC!(`vnH9I;Q(eLya>7+BDt$7s$!t&i&+M4&lR#%i
z0_5w351&8;223DIiiMJCwN~TJrTeo$#U64{cAXqfnG4fVcy2VUtI=3m&jr$?vN`0u
zK}X-<zc=k^iAVyiR4<O_&TB6UfHW`)-YD>Cx0lIK0(%u875&aU4{&g4=;;R!vU~gc
z@h;OVp4kjC$4%$qI`e=(Py(Mv0{uEdhplbE<=*`7-2;vFb?hwfh;1zZW^1@R0{Om+
z-U`S7j7S`S6oGsxE*JS_;V_M{mq<E9AP;?3O8SEl3kZlao=n#nTH~_hx~)|2QsxE(
zWOBX^xhiSCrB&(7CuuAyN+R_8Oo)Q{Xw@H0^ZfYz(FobpoK~6jp39BVIHa-}$o;*0
zK|ujlhLQ2v)fN8Jllqqk_xr{+0Aw&9$2QenvbWZ}Lmyelug!{ia+MC=nk8Bqt=!r{
zx?X$KkN^;=>me_B8BxwTE-nc<Pk&1bl4L^#VeR5bmk2sEOEtY&(Jl3~T(z7NEE5x;
zCa&7XPcG{(E1^1{1AWa~<JCa`nbM6&zek%lql7c|H`<;iMyuvo57eu^2+wutWi2@P
zCOBP^Is}zozRt!uv3-g5V7@aYyF0t&;h*fBI39!5?5Zf&)PqZp$kTkrP>o8Z#<9!1
zA+6qR@fwU@vBPM5d|a^d3*JXEULUQeP;Cz)r+i8p2fSno3A4ttH?{k|F%(Hww>hQJ
zTfA<h-}Ggyu*Lh>)n@0SfZoY9g<E}lOg4HtE?VIx-6&%H(hxTqy6XI4W<g#@g0c}k
zSiUZ^uV3ZLBhS)ged3-s2N#~!ayFCfRPS3Xnv+?OMdp?R5_C(oOfNu?rs7{}P-i6f
z`!T9qi_?2M7wb=-@fVjPK<9+zpZ;x@_Kes5c$9iUdaY3h1*iuXJDCw<iPp`6(-hHI
zpd8IQn{=LND|)Bz*5B!^SgM|h3BjuzgGT_-#vpGI$OPyQcvQ-f#udu#D|i#^_als=
zNJG51()<CCaAnsD;?bSyxQqa<R9V6SYbJmx02`25!0vA4=Jx7vb__&nArt>mu&a9&
z1+|#JlG$KPBLyt>2+$JPjE9L`t#zE{49}VkN?l`xaN54=>WY8;N>LU6!#3~xqcF*`
zu&P%1FF?r5bbPt8@)nRN#om*yG2THR^hdGPpD%KU2#!Pg2oOZeiHeH4p=>Q<0_ONK
zfHLyzNfz()bVNn%3gg=;QNYL)VF23@Z{!zG1>s)EQdJKp6K0Lm^`KPWJL*uarh5}_
zjO0pnq{w=n`JG`F`!gv+3G#Xfd{j(c<74r$>AJDC{MqBQ7sB^auV9(xHK$eWl33^?
z6!p{vJQo~(^hrZU#x@)W$UFOtk{T@*<C<TPTh}(zBtqlm`Gr#APUOv!Ted`PaxyGJ
z&`H_5-r;uwF4_9Ft1rOyMF-N$2n%`OI|Df<3zpZG;YVGs)JNO##h<=Z$MO=`ebI6Z
zqlz;#Tt1kJhYtV>O<CVf75b+YH_H4J`==XWsugTXs1CWAs~i=_g~ja4&k0&$N**sM
z89a0YNy7M#%VtMB&fZj@UXT+pp;wemJ*4!(3Us*~bT=54x=ih=Z?G5z7KPtlX-Ah^
zaK?~uP;^_%H^lSI;KuaZ46X5-+mT`lKdKH#>bx*Nce}dE=^IM>uR!!l71axLcPb|4
zkaK{6r0#aohLGhg2ihDM7}y1NuuLhYWOK#Vp4Be^ioxy%$WAw2KBNl=V37IO0PGTt
zngf)MHK%Rv%CC4<yceS#7l7qL|HlSmWScf0__a~pR{_%=2jx8%C?Jl{08`%)9*`v}
zPC!Jw3^NT!ryYcZd~j9)C|e=$$RbOXh63&7tOyd)T3a4Qv0eNZVa@XI@Y<lmYL-v~
zdHIjpfUK}0;<ij<1C1mY@Wl%gjrG?jM}IE0!I1)%mJ9&bgSf#1kZL(BI?nVxv4Wct
zc!ddSM4QjyXoFFt(G+#!sRrgkijphoRN`WKn~Hy8Yu|M{Z}8j1_jyW^gA~}R9Ld06
z;&^XL=+T}h_IIh)T_bH`G;bGfhY*awJGQe6;|tPur$}$<PAe~ph{&SFEgdPddme=8
zL<5)C4jejm-FS5ESsY57$Wa|t8j4oTOb%3rz1p=1K1?sM2ENkHM+qCyGqQhDmm$z>
zQR-+XgdUotbewf-omOESv4<>3hh-zO$xKxnrxKISv};fu6*2aHWKZg25pSWcUJ&!e
zoc1UBO2>v&{8?D^<E)x4-SKA`);|_Sg$kl3PDevJ7^w4?4$b8a{(Hev`3}~^h92ic
z><NfcL^eZ|8@zY)w&(<2PrJp-l9QkJuc)u$95*~xUlV+v`P3Q!0CC!%O6llxd@i}E
zjc-yrGX#}lYt4Sg+xuVRI(j3HfKqq}&CT*zXku7eu0>O1E`<sHmoEB0pr#}<ps6+u
zv{xGgn5;_vy&<8YI2j-4xa{6Xvaqrm7W$!}DqAHq1Ijpzbo*so^vlv1(rY%A&XiRS
z;$xuKNn<!tZeTTM0ERZtfqsC;HXkzbxEFPQ1_S9G5HCcIM{80nxGs^oH29OnYFUHZ
zQrA-RP)jmlCR0s0dbk4#g_biZopT@Q)8*w5sfh+eNpt>msR}f6R9#;FC#a_B-7a8d
zfReswW#{ai85sD5Momx9OkJHo+pdq&DBvDI5Dj>j`D<zp^2M*pS}H1hu&^VLOWpSe
zp`!55mw#ahOMkFl)<ExVO#UXo*?QMlQFqB)t`uC-eKB%-t3htYWqP0|hk3Gi--dkl
zI{X)VSbK<tSUU`DUtb!8R{P799_w~gSn^MtbLxi})_|o=Tc)NfPCGpP3e-2>$R{d~
zT*U&<NYhFm9oY>@IrAJ8MywgQl&0mH?mz6dMbNpV0ARrGQEBa{9y3%<>iFyYl|S6M
zX~dLj%y_eNNp7zc>3cMo!oV$yBrvtf?G(;OLm0}3TQ1yAOS6$OqxlNJem>0lS4=YF
zg^IQ-X3TrCG)R<|3iTTf%gB-zq_%Vx8xS=AGD=lfCFk|np87Vf{7lhKuWZ4flxewK
zUyxC0SZvLjC(iWbw?{X&U@jCoq6&+)iEkm;PQr%5qLf`aPhS$np^f*jXZ6>_+Mv@$
zkDFEfPCd(gsR6@3`?Gp1ubGUm?_{5eSSQ*e@;d;|zrI4P^1|eBRm}6;IC5m+Pc(FC
zM!9Ne_T0XEyIphn(FM7|6=v>wuPILxfRZMDQ3reO3KsArNQ<Ys7pho$LN4E;{vSGU
zL7)Q{oa*Zf5(_7$xyi}SRxmT81qMq5r_l2W-cduCKQ!w$mF{&74T@@N@i;Gx3=O4V
z(m0u8^KCU~_Y10xfcay~<0TUf4<agROv>ymNLx}eIMPN=edHNNcds%kuGast7^9lv
zzGG%oCK^&QUbtH3M_dte*coKt`ssfBw*|+-cXQC%Wli=XK-bi-V+Y>@1i;d`<1gLA
z!{K6~Zx|atP?F>VBc1Q)ks9k5krtGc6mWlj*uF8Lw0IxUC4|?Ut5$^kJof!Dk?j4o
zY<p)15k~j3whhP_EzZosNp@)U3(B~oo-9}x0T>bB9fCck*f5t=o{YzT?N$bbW_A={
z6VKJeUVoGG{F$RIU_1y8zxVyjzq>0p=sMT3obB9M=ihy9alL`-3fCE$Hdcu@K3d5{
zp+j}GdGR>4tTeu?`MMFB?`~<z*X4B+h@-{{k4kYow*7l%lwjPP1Z6N|>oEj*y_V4S
zxc39tKQ%M>s=|p8pB%(LPUOF>1n=&~PBJnX6Ea$GzZO_$6l~m76Z$nKHRltZ^sJaG
z!gRsSG!_pP=&<r5W{uh|K!w$R^q6vI91FUdz0<y59Eo~uT{st7oLWn}GJ#Xr*WmM=
z3p&^+#9=0g_ENa-{6J#klVK=g8y(M=kP$?3XKmpw?kg1X6x-P)Me-GWn6&CflzPPU
zw3#AP12U|)Jx*`lh<TzIDNNVWP1XPU@ALB?DFAyTHO)$2UpNGRnTD*QV)SS=fQ%gP
z%+wMH0aiTdHUv1I(_aa)=Q>D08~bScd({<)KZNt4P80qkKo*<z?}5Wo3+Z-~>|bCy
z*<`nz3sQC<BN!9nN`Q-t+owa{oycYyMH>%{noL46Ra8}_#>_*)<dL4=?_5ln&$UK+
z1R=|Mi^8pa6FnQPM~`h4P37q+gnMR&ZY!OYQ#C|<9z$P5j12XqY6w?TA+sVGITcB0
zMUM)kP5yT+%QT|qB^1(D=G~;X*Vhk2J*I7yWMgUh+kK48N+ZYTuzZHc#2R(<hh;qB
zr7l0k7B6)%w>}Br>&$Tb(%L&@NM?iG_;yw1MmrKTN+mb~UMtw=oAWD7NVd~_6q9h;
zt#57!1)ztYx>;}Hz$mpxmvt0(@eQv4q?&y(R>V;ckMkBiniRD-ndeI|B0EX->d!(M
zU*2i9!)ggB1W-lUgx?27$XPAWT;N-g;mzh;eh$L_LK~j+OMDMud341&<vrdLYFWkm
z#<%<hl4GtipV{Apyh53_j0+fuCpV+k*~VnXIQawX&+`A&+5f?m_@N{TYzIFQ$(k#_
z&~R~S1Yhd_Z1YveB3~eZ!w;XA2pJWX9Lmz&4cih!=M}e`ay=e54T*98Ak866Vl`iL
zXr__4Q)*H58j@fn=Nf?4h0Nsst`Bf=v})M>V1`5L%fZ96jayh$^gIF=?^}EQ`~V+(
zUIcU-%4O!zQ&WF&gKTo)eM~e5;O>5iIH0`|3r`i30DUSX(QbO^n^L8M(lGU^4D6c~
zOgWsCmE$xX8MBWBsXOz(^Xi$Pvk>;*UcmqZQc_Ek;^mE<;mZQ=k?tjhmNT~gnCvbI
z7&7a8N?RSvKf^zX19}Wg?ZPg(PP1un@M4ErLT2xL34>sTM;fP;Yh~kNvb!TegYPS<
z%Bfmd8FLO6TL{BATiYdzmJ<lg9LZA(&lERxT;!V9x8x!IBSS}Fcc0j&3-x1--~ZZ{
zPgd>mra7lE911Wap@JQ05*j*(+-9(wHnApR?Qx3uNuFwpL%&Aa2q9k^=&o{>7k|a{
z(z>ka)w%!n&u-~opre2LaC8EW-pvgLZ1@PU1GIgOrd(gI+87^b8_$;M;b3DI2VVhl
zn4Qy})HMB`1YXOF&fB|jjmBW~5W2Zp{j_?FZmngqxszt@?_Q7fu|NXVdy#yu$Y4Le
zY_X=9_wYqeS6)w4@U$cZWFF6uKw2r*H-+;qd|hchJ-tqHyEzW&JAiMp(~iQVTnqoB
zGB{%%3nk^|7Y7ex;?F{a#WSy#e0xhRXikFc(hU6(ne7q}&Ak%sNd2ZBA#bBPVs^Co
z2>O##V9CRXGY*S;lZM6qj<oUOwKwfjAvFt{p4-u3#Kg;itMO2x*k50>@Ht#?l0D9a
z_tfaO_6I&)@8O%w%2-Fu3wWjrQAK|*Pm#K&2F5+(cj+#D*%X?HnS*MER>2zBl_xZq
zIn#0*G9e}X6A^iq@3s~S{i{gc`g#Dk;xC>3$yeI(96;+l1=62|ca~q7q|0*VS;Sd8
z7o6lEyjyYJU>Cy2iXGtet-xA~6Lo)w?<J%m=RVlSZby#_eq<+n>a_z;86E2ghB>lV
z3_gX{57CPT9nYflfi~(ZO44(Le7Cf7XKG6gI4rF6tF0pFr|lEjG+fLlJ>VP(xqfA&
zG&gn?i}2OQXXvU4G3xtQ2r1WW$~VY%Wb{1@+BP(=EwNrS8{_Xty=!)ffh}!}F49V#
z;^c_7>Rl_GEbm|cJ<0X{|A5%!BC<8s?&RZMM7aV%K|AF=r1*NGx#K{q+`G*0os^uM
zFXrN)C+CiYByIv^rZEKf$WDE|eSTde0DZ`X3l0&{{MxUFNSP1;jr@g5WAsxXheoii
zt&JtgK~fTVbL$g`-OLd2FR4_kskk@q381<k=vdgYv$M;qPL<fY&1gD=D>^*b4Ii0S
z6!sudM=muEj@dFAf8=jgt%#1Zi?)lP`X$%-_WOv3D)`>-#OEtjN5feN!GU1Cgztjk
zh-uEChKmLo5qo5b*FM5rjn4gJkG;9&CAXY;CCiW{@gk2Yg#D`b=S&~gyF;FXE~cZ>
z7%>lSjc))|N&o1s-@rL;bd~LNxp0aLid72`Bc|NNv14n(JN3*Fv~P-teR`^^@RsuB
zkPGTQ>J#arpOYKgLyOW@DobLPuGB_9-KLDxCsq++k~%GOf2LONp9Aa%f@%(sMrdq)
znKVkfHLdd`COsKw98SUqH3WZ`)OmpM({+g>X1G4s4~m%H8n^*bx}qiu4wHBEPEQ4h
zEkJ+ZK+EF<4TpH%hCBdR`?cb<XHlYDS!lxrd2rJP%$$L@OSw=vcHt7X#JNR`6ZkUe
zVVw}U?)H0qQyJywz+=(Vv%u?=jnP^Q)R;9-taK-tKiNM?%1@Zq#^wzi^;N<U`{<gs
zOpm}xy1sP^p}Fj&^X*HqP1{M75jnT7%nGod5CU1c2>17>w{zJg@r?i5p#Y#3%s~G_
zkha|5NOwAhU&K^gUCA?7sRJtFFE>TUx3}cH|48<CMNLLV28EsTXA+he;jJTph7JUt
zBPuUSzujzQtZ;UU$>1q=VWMM>1yT+T#VWl3v1Y?<3{#(V+Q}rPH0D@&o>dneI?|8D
z#SH>tz4sTZHR?eDz5H%(Y<Irm-J5oS*l{;6wh=}Y?qiMgh_Cdd!WM;vM-tvm?|wLk
zI98Z^+-#M-UESq2)K>K{rI9XPCDy=<PigHFICy_YW7x0Gs&+cIXmE@xLcgIu5j?Jz
z6-(0z+D()WL5|U@Tl{flg-6l6->cvIN3l0|k|3qta=}=NdMnsC>uvac45#@3GWAi*
z)dYaC(7`9T-L3gUF3l&jdU60YqjvsnOqa{%?kUcY4y@ms2$?^L6EXEvd2C(Reo=KJ
zWYOdfoJ~xiHGL?=lOAm_VzE_thhRiiDN1-Oj$e>iM-4Qj#^JKjn48B|AM<3*24coR
z+LM{?3tg+O2X|~dHiQ=~CiQ`!uW6c;cuvZHF<sSOPAV&jd!jH+q882po|Q*o@8(~S
zsjL`Nw+`U0fe((KMlYw_i<ua5_bx2H%em7-^#xNY-fS4f^h{7+E|%t%l!;8BNc<n3
zJ^}1s%0y??QP%y|qW?LIc)xh_4!0*Dsi~_+#>K^5beo%-O9ACtbZV;H!EQA_Kvo7a
z2;!J#&~IF6p^qE4>q6H0f_-<+qxe!K(dqW;?^QLmCB$orv-c`u;Xea|+xA2t<i^n<
z>JWuBYQE{fJ04T<<IWzo0A>4tF0`DZpO0|H%nO9?jOpo2><Z_Pf|=%b^2)_`eEkX_
zDkv0s+$p{!GM1~jLc(tUq-%z=R#9-TOl~5DnX<XpXh{TJN~bWeicTus==3zp%Ri{8
ze~n-yn5-mFg~9YnNyd~^#eh;l+jXCbM~&O{ON8Ha_>r<w5+y-(HW|vR<eve^VS4X?
zB0|A3-*(ohgB_a91Ddmc^G5R15~;E)+Z^?Qr4*<fYD3xh&1<f<ydk!LwIZL3UCQNr
z;>yf~<5dX!VTWIwDVbb_on2Z&lKU9b@4aA2)I^HEz#HJMdicC(dEcJHD`h>Ak)-=+
zjV(2%qpK@h?f@m^fcQsis{kMk-dT8ixI;oh!k`Jr9BMLW^34gcu<Z6ebV&ctWBKPF
zMrC31^YcG|1X_);P>}y20PuPyZF^}SPdm*g!nqe0<6i#rUp&L(x`-xzpeAF{rd-6U
zXjVA)ht2TOLu^>ShkaC-R6g_#Sq2!drx!pWn2y~?6a72c(Tu9c;@^J7^QCxm!jK8=
zK!XMXM1B52uK5pC<X?Zh5Q7C05ZO#d-`2AM6zSlQkW3(Hkbq%oZq5&oVg!P-xHvch
zso`GcWmQGjSkD_x;{Ai6HmU@trM+kZ#PS&BE;oB10Nuf#;?Jt9TStQWVi7E=GMZf@
z9gqaV%FDdJkmZR#0Ixpxe5z~dzn-7B#4vbnVPyQWC5gP|fOnBXj`{^Vprrd_G?M6L
zx$s`g?o&Tc^9Avb(Xx-=zK)KLFgSN|@^m(cuSwhDkW48P%ir${P_hw|ko3;Y%^k2D
z99YO8UuR@y2JwoRTMkSYE9<IKg(M{tYZA`@+&@@82A(Y7S>56S-0s_{&2FQ=Ke*>w
z%o*DR3!U<nnns{8y36%wV=2!6q9+(lh67sVDTD?36{W!$CV>{>HC}j`h?Edyls>+<
z0@}g~3Xut4vEGTjR*hP;Bjxwx;pF7Z*YD}>Rs^DP6Zln-fb26uz9!ew&CSg!<B=34
zcHXVONxpVqV5dLTIBZSQ>>X1>DAm+8@?rTbIsZ;Gxdk}X6Wc$C{{;{eK*v&Zvr<MM
z4$uGRW&AZL{j0Wg#<0OB-@+-(%af1VSU=3qDJ(3UV#DH<T4`<jX<%t7OiFsBOx@{@
zfY!ao&<oI?=ouI;`+?fRH?H}8K~cdZ-LXmc{JdsSo5tZ0eftH}*E^!)<#~EM7z~c;
z{7VcYkQM>VU`*03E*u;$adC(E8-0EXn@r|K8tCbzPbW&@1g1vP(9oDU0#O!;xA`Q0
zwYxti;-6oV)2^=R|NfGY!r;ekl{t!vcI~~YYR{{vV5ue!N}-h3R1%)AwPtNZWMZ-g
zb3qI0?6+mXEdQ9Z0dlgHxL45QW$UUYB<v5rQd3hE>g#<ZPZfQfl3uKWYZ%)3?bp+Z
z;ean7O9h<2$+D{0p#M<b{lBgG&TlwkVv;Gxc?hInH#pc%aSyOoVcU!`<K)K(xFm*w
z#_t>*l`y8Im3d1BhxAPih4Jw6WE=BUE53i0f>2N>;>84ERJzu4Ld@(O94N?i$;M`W
z&i>RkHKi$^$w*4lDkv--Gbh5rlKlGhs~G8{yRUdN%o>@dnMT2DT@&MD0hq@}GcV{-
z{O{i~#J3;W-ut?DB~1y1#{W((-Zl*aqlk%#MFr#{l;h_d6w&wh4o;#3?Hn8k9l(#y
zi|ZEkrXXlS3LD=1y|@KdAX;JxJKim@bWB5@McKe5o4f;-1_Tj#=)XQ2fi!N!vQhKy
zi`@?aq&zMk0dO1>b5-aKE@Q|{v8EjT#m~#vKL8Da#AyNxs0O1ID1k#>b#=yHNOxw`
z0JHMGt(cgYDyKt@KQ&cV88k{C_Jd&R+l3Kt0J^+E;(Cvqyv2dwpDm_mO~?cU4kV)3
zL=h7k+iTMx_ydN`VMo520EGby%R+QV_<`96_9czkiU2@>Y@z1iN%BW0%GoCG8<~j%
z5H7)Ix+zdPaq0lHZa-hRLVY?UXi?Td4E)di>D>_A7^lCB;4Um-gMxw_fSKnr`}qzk
zR_6A6OLoX%ixDV})BW@`{tpK_Iv^}^=dP9syyEgJopESh@i`Cc1o?;Pk8J^+0cr?$
zbZt$|C#++dm-P*Gqgg@Nrdb$!e~_(v4FUg9zg$ZAH-CA5jLIQRB90UjJwm<!wETzY
z7d3wYj@rV&=&r&4o!CEL)*lo8t$^$NrcRZft8C(s-n)N0FGj_YZ0bb$W~13siHL|U
z(a<b=4S{m<N3&?_^N#7WzrSxt5+K2Dc+iGA&5fk2qSE)P^5v`7AF<j_pJps@aU1rx
zkICK&ubMeW0ky}}6#K^RrUW$MmoITaY?rg6qa&bxpzGMKP~|T^9f9547Sm2XA|0Q$
zhm=L=flE)Sa^FN4Q*W%h1M?LUZYSlU%1iK?j*7|O;E7y>A3qV$gFhacQoXE6B?YxJ
z{<U@GBE~;f%_tSNHT~PQ{I5;>=m_G$;@#)dHm5dt{9nbz#nL_9q#5fyzYW~ZHfSiM
z3*)4Xw>L&hlDQ2Db={a?@IIYj;^2q?C!h*`f5zal*OT^;Jz(P|?QU5!I4BJP6to&2
zEg@`nj*cqlFfcIDQBgubAa($K<4HS8cAlK64K-u9EHQtH!BC2nq@)QzqgGy)m&2x#
zmhU*CB~h!Zb)5f1OG}S)-U#SejQ5ak+})e9y(4&;P64w$a-l6W)ds1^)dH2mNgk}f
zU0yEw54ON7+0>Ar<Y&B}16YA>_gLRx{`<wJy-N$c;)qL5F8*$7YYH8YOO4BoeP`>2
z^^FPSzLDHC4VW<>#fDieyzjO&i(dNebhsoOr{x~G#6yo|a7wBvA;G+fRO;Q#$7e<)
zVk58c_TOpJBmiSqH()IN-M^eV|33wX0||_?GrHqPsQXuS_4KVvKMzhbPAuU079D8O
z%qlr`klRtorO<a|*i$b75yV`v(ISS~l#;(?Q#tP$L#~vuP0<buQHvAJ-{LXQF-&2f
z<a<Q^#}2&n5x6m2p=c!kJnhoFFaR;l0U1#j<3B%qKFsm4P0Y-q3MW!HhY&*CqX8{u
zS!LyZS7X~a@Pbvr-QPc$9>g<O^!69rl!y8G!6!RTt5;~zEv@?yu;vWdp>;JF4H5q7
zj%$`#xjxm$AtaP8VPte8TD@x>8&e=9CvRhUe+URl^2*8tO0~sV?$0yWSuOPAt&92h
z{_TsrfYYG*Hs*$1^&i*rzy7#`2K(sg+1bup>>~H4M>Meh`XkN>&7sVt!tL5ZE#hm8
zfd^oJ+vyC#R?ITCx;*%EJjj|G)!5ir|KTs{{J#K>JNj@5x|@6YC_Q%n@qPZ6eLbxd
z+s4s;{{)YgHbMBn$pypVfE`Y))A?jY(3PXHPEo*{|HcLMJF!k209vPkF4SZsg%?8c
zTuJ@wZ@Z;_uBvwYIx7C>FMxXXQP@;P1s70VB|(Dj<}8NWglSA56q(xiA1pGHz=fgx
z3IYxQEcH7if<K#dK?dY`lcD`ZEQvcpNL=>U1H$W-9yk$xJ`g@IP^~g2X0zglQAOZR
zVC52Xl4hb$mpSd*dmAVBMzW^;PE1?)rAN#8FO8)+-=AUZi+uJ?#7139a9puUv#aEm
zMfAH6R&mVb&-?4)6Q{DFQ>&s?<?D08?@Y8rye%FEmQSPOr=TB|lIL<`vf*XOh{g1l
zjyBA!>9$9h3bUAM4n8-YQR|{7ICo>HKgrqQ6^F>M%;Vv{9Zf{k;_^gv<>Z!k7bCUg
zjT%pko!*~rf1(OQzRdJFqt&Q!)h*RbbrQVy8t>9a=*vK#K1?qF7?O@HUlQ;BxNoJ&
zBcDzNS$;i~%gP8Y@N9dT2nU=xe6ZyR`h9(U3eq3Ffpn96+31)U8BWeQ7Jfk2Q_aKA
zp9<i{hRt<wsmsbAJ$TwkFX<T)$>ujVw-wY)kw_%IVAT4<C)-2ksE)B0#k94xH5bZ5
zD(yoqa|@z)U)f=}Eb5ZTP8G!?{QE=1`>`bl>tVjA-JtP!Vgoqx{BCI>W6*@clW^K)
zNp-jEWN@-sLL4-JyiOpau|cZ);PB^Q3U8v1j}Nu3d)fVN?k3oy{=>{RfMuO;kHk3w
z5rr8*UA{o}L87|l#G#HK(qew`e5?+@Z4D<&8HezPyScdq^QUR_7qhXmD~O4`0t0%i
zJ+gtjGg8nzgv7lAKn9D(DhP@8K-JzO(?fCeMTdFK6~244!C}+O$?)rp%?SVu*2gW<
z<hm>dlbT(Px_EwRWCuNC)kyf=s2YcItpxzwa}xn(g|swGn|WhNiwdLI_BF<2Fh|2|
zUTgAml!bNDa;?r&(U^*FdSWzSma~4eIqY+C!RUat+{`c0AWWU#hJ{2v$sqR6VzHca
zQ?BSUuOu;Z!F=~r7cIp*kqJUdFJI+?(baOZYJ_tqSv39?fC6@#x-nqlFfDE<X%>ai
z&B7Rv4o8dBb~#$2Upcq6ea~%9N1I=e9@TGl_^FX{2>s57*AboCUXm_Ptju>8n`3H5
zg!|5&oX4rG8qY`NGvamCH|eZgq}7?ck6vp}=x&YPOdndM9_ml0reA_3Tb&DzobCC4
z<4Y6gJf`BrMWVo@27yRKfm7u0oxJ=nIrlgIB8#=wsfgJcQsLqBN9Hv^SR*#iG5a}(
zwjxk`Or2N6{r)Ws5GW=s<?eZdpG=GM^1dWy0}3#(JCL*in64@5>0$0d_O52k7ySM}
zxb(-KHY9!nCj9zq&Ba;$k}hEfLJMz@|K){RVIv2oS9QPQwCtE=Qg|eE#sRUITwwLl
z&c){C>1mE=h{KY82^dNU0h~yIdeG5rVTrFbiL)}B&KW8{sS5ATYMdg>Y9t+(_t|<W
z^ez*{x?y7VaYu;w`M&|S`EL=5z$moLWgmQV=ww*0)${!l(8T}*OKNQwM$YDl@kfoE
z@Haf`8mGZd$6n%~&ci41*iTU9sH(WN7Edj0FKd~><|kKxfx6avKl#1@*GphK00y^<
z<f`AuszsIOiRMNWHT@Ps=(Y-*yfdIRUqX8v#Mx+exYd1%vsAo5ayY1x$l#2<^!P0|
zw)JIYZr&QWKY@#!a1fsqmxx9#kVFn2bay)kP+ZnVbG>d0=W90^;C}K@&G!&J<}6=P
zI^89CSo$b=$lMZ=6<u9Wc;7u-G^EU;0(Kg#F#IiBaYbsOU2D9bI_v_k68<F1(m)G(
zGq}6lJv??ZLKrh35RHoR@-gfy+r&&EjNIz}e#wgJDc7ehJG6Rki`kEJzNrf3+ucff
zH#glnBOdPVf#}W7Kz;5^8~cOvUw3bTzZB<kT8z-FiK%H+VW&$h<`e?hV6~seAwZ-U
zA&WuTpI8#6?uRj3Coq@_wEJD|r%HPVMu-~fvfIJo{&D^#AS@b7;=~Uc&6<kR{E0|_
z`0_`}`!c|n1Gu~V=+|LafLBr<zk7FQ=O~b--ne-ckg{NJ{im_v<4=|v_d-T0KrPwV
z-Y+)vPEY!+=YW~rB~lvpT@8_H0!`2xR?%r-cNjn477e*me`4@pU6fzwfWs0o=|`o|
zDo#&kf3M|sU~Xc8m2xlp=Bsmva}(_<r&-S!8z(;KoLjp%^Ui?Dz@o=K#H26IE2+e#
zj0r;?sfagP<N)(fK(a=||9?!;1n!V*9Nu(QQSdTZTW7}?6gC3U7F+~axzVlZ!nTSV
zM#eMuSa=~PRj!7DyA)g^`GVI5o+->g>QlBvL~>!*a`#-ipFI=O>b(BjkIes8I#vAy
zT3^`dVBD6VllsR_YgUiTshPu8<7QJG9a0a#6Ntk1h>bv~mfvNWRW8$d3Jwmg7yg{x
zpyPp@c}0o{X)vBy_%YHiF@l6U7J4u@(Vg<pI5+rbyZ`CupLPP{&|ILzhFZU!^@zYK
ztF6toUGMH=pA7m%CdYU4o|1~H&|IV5E*s}eFs+b6Fe3oz{%q~xQ0E6Yr13y0`VaD{
zPUG&SR)9XI-v!icJvEZpE=Ksz*Qx10MaSW|_P{t&)nYe19W)hBGM8I;;?ldMG55%q
zGFAxv+2t+ZjCpOb&cDdc)(!u+I^>6^Xe;2kxLEp$ryxWOQAI<ephhs`3ge@@>GG(p
zugkLJ$m{+3C|<@A^-8g3WkO<Niw#@3nH<?BlZI5F(ZB3of6YHJTMhaQIPe5&X=`2V
z#kA-XG&dWU(a(wB@MOOJW>zdol8SmYYzRn&vjNgrFg4x}15?vJ(eY?UYS*N{l_9cB
zuwfrOsjHy&8^G#Xd`89udY;L)v!@+5fRMLz9cSo5tNzS+?d7yHqRozeR~O(N;G@NH
z6wz$|;MO4t7z}i>v~Ma_R93omMBR200>Wo%HnxlRwMmTXtO1{Sfo5?-E!Fc@cMSvU
zBZdje577|3{B{()b@MKe<kKUxN9<XVmFmDb2YMA1lSu?HXA~?Y7;(F;vjGRkJPF@#
z?8YUSnSGWk1RFRQ!a#tla-?Huut;i#h(2aiJu^g=&$~%{`2F^%-o_5TC@>XMPKgu%
zs0)gQ;pN6G9pxks6n*-mICd8i6q?Rn1$0aq!3X-$)$3FR4CZJs`o|=aI>Nbyi?~cb
zpnQ7oJ01(zMY?*f6xGd=a<c3t#GRQEs#fqa1zE7s##d!>yslmo^8|~HXrw{QE2jJ=
zZ83zJIi+;u2RKiG@qm)0ik}XF@qK2%#Kry*<>!`f70$Mq3Bh)>biL`<GKD5jdt?SK
zTG_t=@>??KPG9ot1yYo$l(~844Tt;jFd4tfe2U}x%Z;5a2_(&#(Rj{~Uaysp{hXw7
z=1U&276&9ITb2=#swOy_lw_26OkZPngdUxYWF5~uV^19H(oBB}n_9TM;GBhwmLI_0
zE{6*%%Uj(V8`VW{hrKpM+s$5qBuC5s5jB*Y-k1|YgcyYpet9SS&^x1YC0~)3p)uU2
z1FyMnZ8vH~d(g|*BMK*9)e@(LiE@oYM7SXwk`pRlp-c~LGV{tvINt4iV|zG4N+|1T
zHLM7yp$Ks5{IV}*R<UuIc=*g1IwxXs(8eE{yEmt)$lCo}>UR$#_o0-=1edkA6caQ;
z7F-_|Qk#-V`o@O+D>^;w>2tlE-sdQo2_iX9vD#~?R~2jyCQlP{7(tgd?|{7BeF57r
zi(+~ji9kK)pgSkIsPb03;rKUp<+a&fvIgVoK&2}0jZZQ}n`T|x6BV}8XfysX_~i1J
zz74f5TBJokgq5nY{vedxE`I2=PbgG#Ip=t2SO;5a-^%>Y?>bM`08v7A{z%oy4@~Zd
z^;e-Eb_E1|ub<4<TEE@c+}tIX8&DoCBPj^7v48Nr?|Mj8Qk10=RWm|EvNUO$sgzqn
zX<NH{TUr!_<+nYy+;wHAt`eqa&ptwmG(v<a+Tr67^n|`~9Kx@E*|CrxCikHZTv+!M
z9t@hC)L<mx_bsA#&@a!^WZnd2=Vb&x&U!_2@H5lKfA4%q)YKs7%_#|yQA{98zFA7)
z<x21mskW<w)?H}b(v@5;Cjy78ss9P=z%mu_7DTa#fxSh<7nSK3sh*U~$!^G1Bj!h(
zzgG2UtZ%2WG@6Z0#rfZ(FDYQTovIFS`B~p3d*X^~S^xr%&VZQf*N2DMAR`6(rbA$y
z5_P0Pex7MyY=}u_@zVE-4{x2_EF+m1U(fl*q|Xy5eq##^Hz=UcnW*wNwoi{9XDd#z
zv0o>to1Q)gjgJ0pEcas~PQX$I^#Q=1a*tn?v;GAci2<OZ<GY0#v>~g`jt)n?QZzC?
zdU!v}-2tnKj`sFm(IyE1%lfcX$MPs_ui0%XMWnM12ta6fwRw^T*gPu>vzceR?#lE!
z^6Kj16_u1U%?ea|zBd3KDs7o5ii(N`Uf@^72G>7LMMU6S-P}flu=~yqE5A03M$<Id
z*ezHA%9CPte#%P{Fn>Jvx&Cn!0QN+AIQvl^GF^#lGG5<a5>az<iuxn=4h>mK;a6e8
z0b~XGM=~iYG}Nfy6YQ{j&<rE<LXfwWp&yxZ-55mH8*E$wIGYUArpzy$Us&w&ue+U*
zI+ver`Mmm_i%|x!{c<w-cTrmFm{A}Z+x+BRAjmNNuX6&AW}Fks$FeHX)6^PW&2c9o
zo6pw?alO++s-^YzCm3g`91(xX?KGcqRdWqqsi`SkA2e=4qFMMVUB)Oad=FBuJM4w3
z>SVq)iiT&mnub)#7(%+|Ch`^_bD2``?l8>nOwQWpL$`)`Q@(v|{cN&#qxjl*wr_ZD
zDle(afxch@vLOB>{BAfomx01qP8U#>Wu1)uHth|ayXcCdn{vaq_R6%aw`+ZYl6e-q
z2FnYxyg_G0B}Hcrb}DK9fx~kDTHVUhm}z^ptgY6gDR@ckqrw(9Yc6qGs>i9LV-~tq
z!x!YJ=;F#&KT%qAPjEuid2r14%R!1TsctmIb4j6lhz$QR^V5mHD803|Gx^-S8lCnA
zr}ECC7?R%9Cbs{0du<C9)M<vO=-pkD!NNBhcV;bql<RBxB8`J`py<C&Uj`x*1tNt4
zbE@B><JarpVS>xe8ZlPh7fxk%+?%#_>Y3?CxNyu7#Z=~r)4kXLtz>F4Dm3I7r&zli
zyw&D(g=3g+8rk79qf;gQ$V|8VrL`v`D}aelDOh<*Lexhzfi*x}5@vaz#WMZYe=8tx
zMw&!|{^R%&yK*2-j~JZfY3k47BR-?k1p$7!hW*MINc!fLGHBZYJ44Qp5AV$|A@1Vy
zPNRhl7Il8xAyl)U8}Vtcue~(3eaC5Ii8UeXCA=|Wc}jb{a9E4$p`Tl*EB|^Y`{T@v
z`A!}ND_yrxhj=G%=T+4A1*gz!&v+`4xRIxdz70?H)|+EjV+p~;aVE&}@2zkmkvSoH
zlVPg_X0au&C&cnp8kl9r39-Hst2K}`-HKAP>MXW-U2P){8m;|_n|j{R({gi-;uR=V
zvBwzi0PHjczi~86&$k776tX2d;~Jd1S$hiN9_H=HOSns+>1>`!;*3hsZjMCD-t}tU
z2lkb*4+{T)9CHH&z&3p8msLG2Qq?_b^fQwwXp6Ho>3(tijkX%E|3(HK6@^oa`}ket
zT&myzF`x@_$c}&@9vp1uNiM&iT@BVx=Y1{)ldRy<OfXcVyTr*nF4CK70CYMN@Yj?B
z4==l)SGx=E0(L%t@nSc6Zv84CnRz#VPNcxpavu!20=yZ?#l;b5>FKk&LXH&&V&DRT
znpXXZfHf>b6SZAXKnp3;`#ERROuTm4e0N0YlwQIP#p$u$@p!1V;)OJX=ioCn{{~Fc
z1g6(yn7U?%7*I|DD?3rMKJAvcIDEk4w8hVRSczrhk^b#^GvEVKrJlYPqpCv#Hlj&6
ziFQ?=JqK(G#{jT7hT^ixVb>mqfPki_1^5QLC5?C!fDg=+YrUSRC?$htjdY#Wat4%D
zI+U~+^r8*K<8qQ#bYy;opj-Id05;6cG&F4Ul5pXOmp0!Ps6+jEGzP9}?=sm*B|Q|Q
zns)?gdg={fdm_lJ>tW0US8y<G92}xq%fBUiO%Eq?tNP!Um6xXjlekl_UGkgrEdDwV
zXJpcx;Hv~eBHyc~Oy!gmfv?cvjW-w!U6%KsYH5f(_dyjY`+J20`5d;jCvFpO;XS6&
zN;XJ&BQv)63>5E;&6=kB0j;FTMl#t15G?yy(^2nL%m=c!blk>v5r5tf{2XciVJ3M-
z&F}Pc%;smQYowM?z<}M7xv3<*%4Y8PQ>8QMH$@yxoaQJ%@mFc^o>s8UI}K3`2ToZY
z1DjS-zU_K6*JlLI=PlwZ3|x760XR{+VZa5)-rdnGZz*9ZW%18kQ_`J>Fkp40qWYxG
z+jx+~`B}fDJxUbmg;MSSwJGbi!)@{cSQf1`>>h(h^~Oy;w=dg1cVjj-Tb3Iq+)8Vw
zmTW#b6Xevpgc=#{c{8AVahKd<et$@Z_hqcVI!Ty%{mK``c%(N4l`h#0N0uba;iAn`
z<mZQQm*e2un)}sc&C46|#{t!fB!eL(fw0XMw72~ooH7Cq@gKC^s$Z4#hQ~beK&{n{
z6GZ1oA@!nfCxw?^t5@u<_dpNF(Y$wAjHb7{PxbGd3tfALI5VXwU}$k-;m`wlG4`WF
zaFTKhaGCOmhsNnt3zWxqV>Qn9cJdXrs=jho#K^b5hEs&L&(Xy1*n8=VH#y65s;(vl
z#0==_Q7-wg;`%b%<OY|PEtme(BN=ua)~MB%O}=~>!y2};DHm#0x4CP}9L^@;a_y!8
z;T~jT(9oQl5j1ikmWH~Z`;aaCw(N&N7itXlJKwGT1-X1|)(J}3vYK5@dUIsxLiXe3
z;@KexxFIV##t73fLCO8A)&X2IFq_D+;z$8|v~eHnoOs<PE;YVf&9C)d`F^YaZo!1#
z^LUtmB;phJd+(8cp-HpRbCO<NP4`{rPo__WRAjR8`SW#8KYpP+kn^#x<yh`{ZYi$i
z7xh!3_PiD2Do8?+>4YYw^CXtnQyDd{TA>$KTcBJP;0=(ik5DAhB~{}e5x=|y<xUmf
zdTif!NmXp;+2MZu{}_7<s3^aEe^^2RQ5ah3?hpa#25AtGP)b2Wx;uwP8VP}+TafN<
zL{e(#hM~J8-|e~Q{O|AFd(J)YTC-d@GULqi?ET%}_=HaI>_PL#79tHT>L!tM9=kv&
zAI|c}S!eW<gZa~3H}7rkRjsB}CCOUJ%=v3?kMC~HPTzP8G)~*N9zb<G?oTkI*1E7K
zSj}Y3X;95dax)s}dc9^Zw5sXDp60fl;GMmUx1K3<T@)sl=n{jT3!u&$QPKOmBQQ>3
zaX*qJThM%m8b0$#6}#*;QP&kYm(<Pd!_S7EmQ)wfAmLK}^#NT~z9%901UIo2aU&BM
z$iC=z7$F?-G*aikehug0#Tc`XdSVFoM9nu<liNk&u*;b_`nXF7^83gVmN8L{Z?83}
z8;M|tO2XAP;q^d%D%)bJ{0I<#LQ`@%6yjOsWiN`w*7mT_Ym#`ai>D1#GutU<gCwVW
zV4}CREvtP*n}qKl+{4SRzg`X<%8`joO^xu_09wlXOh{QOsP8Y6DE25k4h%LYc8y!i
zC6j@<(@)?sX_|Cp$vKe~Sq(Sys)bFxpIm8NTp{GmWb2I8s~5^ajSKoP{%zdJInUx!
z+`;trp7}yccC&~Lm37Nad@Q4CdmX)ct7k{OJIESyv`X}I1&Vg7>P38^8nrg>>rN+h
z97dyQS{x^$H!*pC%EvLw73=cfFSe11AXQz+oMi!~pEmw++C$%UM2i*#*M|%!fgL>0
zTnZa%x%2##;=W3nh+YFc(XS2GQQ1YfPZmx*S2RnEDF?a$tFv{-Z?n09N#9hJdBWTn
zlhNZ?4g+OsYUWP~GL0%^d^Tdh$7?azKxu_q`tuLA8g5PGnZ6@H15jA$4nHC8x|+(A
z4mF-AdJ`k+?Zq&+3r-zGBd=JnPKJa(@m2aY5FN4uV%V}>pW{y4F-HhifW_2Is(Sn^
z{Xz41<tEuy6Ze;bm_KnH(*v7ABvUO}#b)abB@zcRWQ*#+ezEC%UY$uqO>m$z_3)ck
zNowQeR-qjjE+Dk!SwCn|3*y;KaqZdXV(mGY#;w2vk6t&8<Lry~SD!V&H9q5~RZKV*
zs41*5h-hqDDzKonB*)UsV~gihJEnCs8GLiql4-2DDJd~NFQQ1HH`SP4*iO59nRgJ-
zH=i-ibq%{KXW<p5nHTh4PA?)I8RyVrmx9tI3uldNzI-?ng$q{>)oDOzvmN=h+J4(H
z$oq#Dz)j>nA0i^M9coGP!3NO)%W%JGei_D+qQ1#&@l{ai;Q8U!>M1jUiojZBjcTB?
z=kRNHE0zV~%_N?(JM(gv%)9+W+3)6Rt4T;v6BFb$ql*hUKDfmCY70Lrx0T#WcH1mT
zj9XV~<RW~f*M9Hcjw?m%OtGg4+kFuen)JMWu1EB%w4nd$O^$q|pS{}vP4m{G^2B-t
zr`ttnF}}oi4PhzT1V7c}E<@kDn^S`nO&m$FBA)C~;kTWts{Gwc-p{M~kSy034+-_r
zgX06851oz2&~)!wd;8JzDd*h{5BORLAy!mMo33ka#0G$GKIove(6{76r0#E@@+IC9
z(g>-ZneC+8{*Wo(_tb*2YpuU(#^Lx_GpX?171~U((<XI2lh=f!<}!_Ql0vZ48L99l
zFX=?l?l<18-<od^P!WR9BG@Un63acZ!cq&>xC<TMp^bdO^4=0*BM%_SVp|M-ti{Ka
zR8`|~CE~h`*tFZ+st9yM>*3@Bs^Uzqd;0rux*Tyc3sXfERfnWrK0O<2a{HNlP7$5(
z@;2kXr>GFZecwN-kB^}H3>K(RI`q+EFN9yKRtMdC;ezQ1@$-C0B)`)z+Ta?K+ltSe
zV_17>g2t0C_1Fu~gnuv8Wym~(^yQ&QK<jPjfYq3>5Ceo~W}9L#>CScI#SJf6Wrg&R
zO)8hS0`ct-?$erK#H-JoROJ3P{30lsoy7~+#Q`CF*f5PW>#eI4ET&AfYyJg(PqI_}
zd*s0cKbcC-Bfa^1_P*<hW16Qt)Iu8SaOO(rEs=NFc6t?%e!PojJubXh`c#%S^nsjb
z6WV3s^-;~2*8)Zh3wTuiAEWMJ{OgC91-cY7+>q<xRiM;8>N0X+H$Ly-fJNht;gTGK
z7O!&PkDF4CjS>$`f<lz{oVx?xJ;>yvnfK!w4#uI0t6lU=6uGfxQx;z#WZR1md`u#6
z)6N9kv|DlZ+l>Ek$>XXmXL^B*c>ai=)wraD2da3AR;w_!uOMGEXuxT^o$chz9(&oX
zYp07L$#{IY<Tald!`WZLUIh}Y>WY^v8H@McRQI1Fu}wSeOsY2YC3>9^defpA)Z$1$
z#%rt%)?_bIlsUtk_^{5b;F6@0DeoJs^bRP>Gpu!A)^4NNyX@5=DxW<x=EDN&n%45A
z=MiBPqWb$;%~B!DBURhSjDckE<x6xzLQ;m~wZ0MqCyJt`YD)^$_VQe}@Q;Hq={#q)
zSLx}kzstZZBZleAz8@Z+2AD9(M5>mg?n~0Rv&JrkZ3?Q0uvtm!F(Sm=rGWH)TxnJ4
z>q1Sv@C2114AVMrxD-hFe_sQ-bZ0!3w_Wb4dCDrx8MgMj9wDxhVL>8*N*WzRaTbED
zL==4dOe@>o3-DQUUWO;hw|><bVdAAbW;G-aBq{EYDo~?y6z<*|Ub2l_uZOPoC#s(+
z<!y6{_Aiu5iiU-hEvA~bAF#eD_b*tEM-{?YMEJb%gA__OIs>rXsl8LZ{ONThOxRuX
zyu<!zIh4aKB07e7)Hw3m=l5!{qbmDue;b+I?AnW<mtEHG5;aX8OR%D=j7XY!NxIqH
zYNcB>iXPG5W*415l%<~pjBRo$6n}1B@O-AC(-^eG4ijL$B2*fq>5v-=KJ71%=iapV
zTz+;n@3kyUTAMl2XpwplVmF(-TiFo*aO#-AiQRd7gkO0I|E$P>%KYQ?d#4qP2J61J
z!i1z~hYeKAt(pt_pG;Ipzw{A#QpB4KK80bz$SFf^?B9AWMiR}Y?fCq7blMg?u;Y~x
zyVUxj(`5tg{pjkN2omwxF=Il0ZLp%|v@YMPx|NvABOEF7$!;x5;cxHB7BYWK>Z7ci
ztefRIhVRzy-9p|`mv+xC3y;xQ(o2ci5-<$HMl-2uT(DO<o?6d$r(C|aVGk|z$)Z4R
z&vfqjcE_P3@usMTYLtjSuf9qCX`aQy<k+ky%RdUZ2Hl6(3mqZbUlA{Kx_|KZoWb}E
zB!rXsv<#&rN`y<y{oN_0jLx_Mozo9PCj?Btl4vq!=n{LLJ5}0!ujq1rf@kGn6C?GS
z5vE0bhel(kE`^~N>1f#Lp5MwZlE|$^5jx~8qJem}jfY6AHmk7z{=35DP>@IMGU=k9
zhd29Wr1IB5{1&72@1LpXJ6s?G<PBSjZ<xK6?LRZltd`EB+$cUUI`$&-7H!L<G`jyk
z;{h!?lE<LO@@lV7NrlN!08iu>29^7y$DJ5!G2S8$S}mpY?aH)b$h1+Y7{gEw9IKzB
zD$cgE9>B{!Q#~oklvTG@w$5H777jE@wRlYJ8p58g*ss^_H@iCuyd?#*yda1D`3{Fs
ztk<DL9BRc*a}Ihyp*K^BVB6u*tJ*cfG`}ZUz(!dH!0SqM*x!^(g>GJ+-9+LpuEu~g
z4eg0|&dS>w<#~@|HpB%8DIfOdJq4QBn3p78y!YMjaM+P#{eYY)Tx*y3mES(M(rjEF
zc<7L`6>ZGceZk!ovc$TwJVfG<G6y08W2eBUV+;Y^rs%Y_A=#cR^CLu?CIc$A`#Xcl
zM0eh=ot4*_{ToCmBc2;_)J8X*j3_97UIDtc`C}bl*8XVb!@WBm^L~1tgOgdC3t8E#
zsueNx$CX6k>k%&sYUM}==$H|9`yBZ=&0^=Ns^fK#s1)AM`-Jk|y6ZE+seK?1rs_8`
zNHtZ|;OK16t0Cwu+uO=vLp~3fKYrgIbyDD^DYy1h!$Fwz09@T7MA%s{NG6%uQdLNu
zuP-=L2nD~}+4}NvdtN@8PAM|(i+>LEXbsS|7Yw^TGesZWUz@Fyd1Foy4RjTBWKf8x
zhC47@YK<af3m&Udbb3JWjFbU7YJ#Fz;)4*7P`qheNt9V6Zr#kj9D3k~nn|;$ynt0E
z<W)_4I1D<4t3a)D%-1^GibFNi|J^{&7@zy6pbu;s>IV7&PWye;On$4AxpZE>LM7%w
zD`d!4?#6q&5i#@dJ8kJ56E@P{ZMGk>hUF76<DCSu`{HGO3I{J_6{l`&(JQ?)cqq-?
z|F)={bf&R$^NUE3N`7!<L*BWi?be$E93KUPrHA9EgIRYZZ0cxD9EEp@`Ew`BUw-`_
z&4VpbWj3-az2$diKJp}$VDKPeQm?*Hkls+FyicgfXd57SmhVtPZ)eiGk$^ig7F5r(
z%n+Ql^m?LNoQDp7_6dVgkN{D2B(2S2ClgbuNRU&^_OHy0>mn&WS?JRRD1Odk>dy*G
zu&GM*_m`Cgr%X%!Cdj6|mWR;=*pA7PIsPwO^^Up(w|_f2-!L92qFG`luruN?uHP?<
zz@T|Bkn{^N8+tjJif2SSRuN)P_mXyEx}wCfzcKEt*rd(^I;$)^yZX7XvXs96657Ft
zyl<`DVUykA*6~)HRioh39CYlLjB<*j+C+V1Pgk>!MKGrdQ-UKpuKkC>Md!~RTK7GB
zl+*CCha7vT<FH5yoU=k3<qtgl<O}pDWi(R=Nw5;oh4z~*-<fpBHqZ0iyOl)#vu*$K
z=#6SEGm<f$Ht_EH-4EO-NI6!ze@pRG{)q^*$Vd+_aFGQ3HPM6RL@qb77`epU;6N!<
zH7763hID%v-Io^+GG2$W+;X}NH%ExnF0|40DYtA}QOq^tFsBck!nG25zvS@^aDG%-
z%O_HAbsZvutWkxtk%m*Qaw7Gx2FF5by>uE)rhVjqr+I9JrU;wM^V7ZESSD|QW#Owy
z66?kS7*^1RXmN)|FBy;71u3!3uIzTAHqPE<{+o(GuC<aD^7Y_z#kF5qGJl*=CiXt%
z7wR`9^`{69kz$#;vlT~1-E-xBX*Oq%7~Hx-MksbbHq)0rqH$WxH%4PgxICa-^t*Te
z+^o$vU@*U%37f!WPs!g6ODKrn{!%3P&n%PB)sQvV`tT8DI7g~NEtLK3sv!0(@=|;d
zh+_?5<TqLD$=<1M-zo^t#oq-VF42GL0cxG7+gvc~VV?ybB$S(O|I(+_vbDS88pZyy
zSD|H8ivX{ZM0mJ#ZNnRo%;<+|NPVwHSWx8VL>=KOE$ro_0%XWT4ay=N<74i7Tp=Rk
zgm{v+$10!N6GaD4>@SwbNzRE+wYbE{dkg;LAYh9y<%C^Ql0e5Q>X^BQ*Tn9!2a;HZ
zGt#%Yh!|HYmGaasyB!7}@jv9-<?MNF>Pa105#+>w$|{9>Vg3V6ZLQj!HqJ1P$Jwjy
zd_3}WyFVnW-0e~-QE1V!&gEA3Ll7Uc9v?~K$I;-^>#f*)l~^Ak%Roh22S68jlHKCa
zlX(1jbNm@Heg#GHE^3_qp;cTGE;UiMY!_znCrH@iD|cI8^d3X5yVyzRukzc!*Kfj4
zbLO<G^B3=H3DoX|r&dVZHYIiQvX_wUImoJ-bqYhf1MkVZN<0uCeJwol#HfjCBwIPB
zgrh!!UoVrsvWo0kxb{%-=$_?POX<sOd?G}rE8fvm=WkpAT%+B(65Hcun!Rs~S6#<a
z56_}Bg>ro=$WT4*+e-<|iWeaWY;up^+Ur|Ney@P%&%uKYm40g3v+BHD*ca;=y3oy4
zYMR;;UH5#<2S%DD@w{@5bb}G>QMe+nvQJLQH|pQ0{L|j~>prqV#y_YF={)x84tp9W
z8Mlv}4L~j@c=spsfPW4Eq4i0B#<$%f<~{SATz;*~_BA&8qBK(?0G%zcBSXZ~jpe+g
z)%$h8*L<Ct1TqGWV7;FS93?V;WJes#X87&b8MRsx%gwd=DXb(b!HJw&SaGx<c6|?;
zvE-9gePJ>Ft#u)A0oXhd9xPqT#~wHdOKj<t@Y%125gxSeJ}TDRV=S0$gg~rorDgW2
z534AWPv2t-fi01vUR93>;m)K7Hr89{7g5ty`oi8?4@U<r0OOne7{M{z05aldr0sJN
zPmk4Gi~ABvq8>aZW@M<Vy!3l16sa8qX=vNTvT~{RDFHZZH`ZWNszxrHEq)6q$2`S>
z?$h^FgLi8Qe*MFPghOP@F}O<C7g<AOueEe<&>Xu5a7`WO4D(G#a|7t+I}Su|PV8e%
z@b=^M8l1-2J-`7ujx6FX!umyw5A}fS9`b7;Z2e`S+NAa-+$B16Yy?cMYAA<`;lpke
zyIOuPm%uJ7=_zEhd_9_)w<b>FRHrxh@Md-Rn>S2BHkt0ogcT6kW1Y@sqvw<tY%seI
zv2P-al3DVwEkd30jdZBz&Mi!uL$}<Xs$#%|Dh(b8IVB4nbl>YWAf{#wHkW$-ae#_P
zM~E7}FeM*yF&}q-r8#7ppO9zWBu3a@E5#GGwumuVK;yShpx>7vpI!4|n|#wj2Z)`H
z?_#t^%FE*)tIp(>dks--@@%QJ;O8x+gf#im`HUr$gr_p=S(VU8+x;e$rz(=Ho6$SX
zk<3aOx#}q>Ken0mKw8cqVd-nCV%gYS;(vLm8fH0iKEbS^Ex&erbN#9%rdz=7<KRXZ
z^tgYnv}5X=dFK>T=~kt#j{U^eanRr61&Y3+5V`C|6~d9JEj#E%`-_u1IsVt(`1EUb
z@sFY-!d`MC_DEzuAgqW6z4ApFMwy{3)Wh`^dJJ>Nu820B99{7=b*f^5{o||g3Wt{%
zl{n6t91M%L<55F%di!VsB_>9iG5@xrd`K^bWPrRd3p)COCbQ+nh3XLn_ufC2vZg2Z
ztZZU>FsoUh)`fE*?to&e?SPcW7Q79SwbZFH(`b8w&gVr%N3Sot7UB>K*`lmU*OEdM
z8;1re8lcB27U?&2<7Zg_HE~MWyU#v&lR&n~aq1S0-5-j~<UzG4`BSO(wk-||DI<Ex
zZ!9N-V5u0pAMV60RloGLJ^P(>11_CMfo#_H7tt1uCdz4D^KBXd_6+jAubh5TQm=;#
zY`H%CNT1Mq5Lf;}4Q3v?LAm2sitDR5Gf@1xK<%>9ruF#JhknvNeZS18=aeg&K}Fy7
zu#2ct%z33-sod?<47xE+=E5P?Ixx6B3${}Hg4fl++`!aA>H92otQ;SE*AQRTNbcr3
zyEP}Zu%PGcGci6yNY}6qF6YC{{SFytlI*q@@9!*LI5JtfFLhGA;VRD~v@~YIrE)E4
zkvw{BmaVs~mLtbtyyq&7RgzdRvUNEdGe|nQN6DAv?;x1_*#2y#@LooGNQb#eFVxsO
zY3@l4k@C0L=vN=|7pfGQ=bi}a`8~$kpJw(GoGTcmPADE1Gpn-T$T44_Er`1iigTMg
zRJ4A>y(Cyix>#5DAo?&y50#MReUG}NmqxMr(;TPGc02g#S|^{b_`Q*OeS+Uk>(8|~
z_PQC6f;UphUWhk*(qPdP3$gsU#ocq^iNE)bgNbTEf#xpw3)8F)$>2z43Q-#IWwJcg
z)}8xD@i@0p^o!+Xe?crV`#^DistHX)*l69451O(+st^I|nU~bB6_KJ1LJCdodl-=@
zbS3>lgk@9&1}t#W)e9a%w|;ehlJYDUXh@KMnx_0lq}#UDl?OO}#i%wlwiD(~_bl;!
z>U5vMB99}Ixu)ta7^!UdZfB~lsHRhc$v7+X^sj;ZpMH*-L}dg{>w@>-%y_c4Bo>R3
z_>GD#80I#QsD*+@ZLT{*eu$Dvj(x-|?dSW5i4&&d0I%71f7=N#Kj(6Z&vUB2w!u&e
zn779YXh1tSgH^A7>=B;K%;K#}5_5ftEgB3cfK*@20;VO(S;RidpEcU2uL7Mwn-<Rx
zUJ1gM$$bn^uqlKgOD^dk-N;+WFgNwQ&~y1J=<)&#^}ctNwqcdMYeS}6Y*6KqA)eb3
z2xl9C=c=TMV{^Knk+x*C^Y{FSrpW>FegXm3%xgs&m7h3oeES$WUB1vO9pP;em*GYP
z;OS?!yzAztP%`TV@HulNgYGcJj3<v2szVa*b<Wx3baJi5MUZcPQ$ocpPhMd%bzl2w
z%wJ|y<z;z$YE*E$1COE7qB3xsYwTJ*X=b~$<46(wKDtHCW7#bvZ4};$j>5Id`oyM4
z-JPbZE%7Mf(IopYG}J@|9d_}YpcQT4!n5z{JV5Mb*G<=19&0u-{P^w{hb}@vlr4(2
z?r7_zK7i(1UqoCq)4~m(7;V9FJ;dwo6tvQmzam)QR^~hG%}(*J#Ixyq0A?(MBA8_~
z_m(DN*GNtaKlVzDTs6ORYc*rOZzK_1WXO9JJ4Mo-{X5xdOG`6O+5STPe3QGT%gzLQ
z%U9jN@!;XulV!>;AJ5Wwbh3ia0qr9PIUMSCl`@s`U~CS%_`S`U#N}+e7TJS2%VjrF
z&cUY}#D?_@&`UZ8PYbxd$Ds2JG)sBQI9LI`BLErOj3OtxL$obee}3Q+XlH_Pz4jCH
zXD`+eW~#JvXU|)aqWLd}Ve5bruzUQ#?F9=_xFU;?VfP5*vapc*VI2KrD#g!?qI1&3
z=RXeE&woGWTpap+X%b^V=Pc`k`mZ09P>k#yl_x6@dMR7|XtrdIxhObiNj<0v1;?vV
zlGLB3--FkK)|Dxdh((&qa_>F1rb56@X_-ee%-3u7s9Oy1>Cge*dK%w`F5iy%h|0Dc
zNNBl&B*f?m-FgSeTGa;K934A86R`ZOcbsQ;18;2mK&SFknR+$m+Rr$=Y~GWHG=@@c
zQY+0tPE}^(4oO346!ktFWpFflY$%!TeVieo<DxwGB$16n>{<M#kqkHP)53bqiJ%4P
zpt{jABeWDOqB*Lu*_JyWeLs-qs4h<<tL4ASV5I4|Z?VvP^VS0#4Fqh9g?bIuR?gtY
zGj0}j@T2MSqG8|4H^9ZehQ6MgDmT_Z)G9ZiN;q7A0R+=|L(^p=5jzZyEJ3px`h3&n
z8~RDul0zcbmA^X?hkkHgh5e*?cxx<^dTi-9!U0oeR5k16Z>m~gT><mVc52aF>5R~L
z+ZwdZ%cSub6Md^3KO!p3HMG#umA}qBg@3iCiCu$uZI<Zw+JhE9E$2ZNwAQe?P+bBP
zx6tjyOXuIqu4||X%13asV%@vIZO@X!#z9xZE9Txew=d;V*t78SM<vb%DJXJSF567^
zMqIt&jH3r5Q(x-6FG=q!j`NhwHQ2_*7L3Xo6y6x)op+@PE#rx_mT_2KhS@E_cx9Yh
zCU=6|2XX1-Wy6ViVCo&e<B>(sWMG7p!JHCA*<;4EB2YY&K~tz+Y7wV5=kn^*@!L<R
z48<GmPBqM~JW9oL&7cfL3Q%@x=wMJ0Y=HW!Dx+vjHr@q0q5DB_5R;|nQJ#}bd7ACZ
z3gUd_{A8I-wB7u>o2c$8J0fy9q(7$>g87FQ8WqSj2h)Rltc$7UTGB`lD))FCHdddu
zap9{nMtZ&6iLHaM%ba^TD+>ET_FY3x_li|T7D?NMOTC7~Qv?L{lE!@N*rst4jj6Ki
zt_!vKN)W?NZtsK)oJ1X5HUgQw3?xoTY2)LTz*ulWL+y=0eE3@IWXiwU2R^9n^sOp#
zhGHfnuOy~5O7dS9#ArFT)`NuC^gV&@Fy-W--I+K-$GS=SPoAxJ82IRr->Y>k4|JDe
z08NlB-LIB`$_VtN<Ttpqn=iLmPN~)*yQ}daQ)fHEfQR?>doQ&IARppns^$Cy9Tz_P
zAJ#hcl^pjm_d>NUb-9amY9jJ{u=@u*h3sfYJh43G<5@$(l`)AQ!m}$yz!>bi8oAa4
z9D33YlKF`>|4RnClE}&D{YgB9pq(B%1UyuBcvqEp=T?~(C2498c&z7jF?XUyD*iY)
z?N3+T8h)LGp`efpILLb4-8c)sP&;^G<q;~T7>dnDxkJJ`$na6TK_cLx!XS*_aR$77
zm0hKL0=pi5-Yb}>4Az1!Fy)AUHM-=g#s>w}Y9CFcP-corv;g^L^4)I)h37c7@JZC|
zn=rC#MU{>7Y5$i7TW!3waky2McUL<6_3xnq!lcG(auc{3bSiN=9;2$FUsQHaiJn`L
zUS-&A9N*lkmEE9~n_kP<eL8I!JfYfQnLT*lt9MBMhG!?o2U*mCui3bO@Sp%sA&x;b
z&Qd+-XI)1#cES*aXnv<?g5%}9rTPPfUct0+>SnW{N70U1^ESFjoCu4Y;sol)ItuF&
zYahH82nTgvO$sgH6{rH^V{DyFQzEv`8DaPS@yb@XT*PypoPJN?s%JI}?HFF31A|i?
z?zDO@)?$)qTI#DO%DoRM?3Tt<?fKqVr;&1tj~M@;z4N-NEBY#+%+;b?SN(FVMKAAH
zSJ#qrCK(IS{l>u?oe6%4mL8Gcs@+ZJF{HE2a*+h3>a5scGZ^u&;ZHRM+lgKsL<@fS
z`B~|?)2$i*x7h-SY~SSO#M?{f$2%pOo4QXiWEM%*!~(c;Wgpi|W6VKpZtB0wo3aVD
z-_9FFN9;{H_vptN;#22%Og-=Ob7a|ce{|02+-m$7nLZ3VL*>S<>%(3*nLM|%G&9iv
zN7H`O)LfT6#V#jdr%E_W+=y>R&dk}*r)$*+g1alD>PH(kH6kZgg*t1aa`wg(m%Ga9
z=vU;gj*AVNYfrA<%ZowNMyY}&K%$kZS$f{N_hopkR@)te6ESdwwaxQDl|-%UtgfZ(
zB#lpjl34N`*^4m7V)!tV27Gr$Zm_aBtx7l5+Re|)`%0|o&hgHw-0MN<di}y&t0_Wb
z(rq!AaBRtSbFwz~QA)F{I|^^1zOvP~SM7xgMO)3ub-GrnLwL&sJT(d9jypmgx|H)B
z?llREk1gT5BEjJi>+;&QQaN%4d7VDN@jNuEZ6p#`I*EHvmPLEtHwC%KStujZLS#@Q
z$Rlr^zw!w@4x;)iIN-m2hVs#Y%Ht6qz_I7*4MbJrA}8W8C|{g@8qKX*@OmZ)Sr!j|
zaHs=lW~c?SyTQT1udv)zHkfO7pCSRFl<mq-_q@e!hP>zF_U7Ct=N#(X&$Y7cjMIV(
zwMw+I_#C7+A?b$0=^RzE2S1{-wuI*5j3(*w=tR;3-VJ3#9P;KJi34BxkdXV^%W7#C
zs7c4YsMN<-l`7Q47TA=rH9(dI`PYZ;Fz>G2&nI9M#OLiXUkxV2B<NS=A9^!`W-3k9
z)87kke;K*-p`n6hLQ({TnQV9*?9C>M66IGeORc!T2+T)9ZjLg^yEx|*=W$><HWfh{
z28Z*H;NVu}hhVfH_i-SJnM#$oZY{oB^HSFv`jHR8sNYz-c=Ny)wmEv|)M;xn2pczS
zwp;u8Eq2zFY>B1#Jz_8goORsIz|P8%RAAtA&g;rj?fYBDCc$^D_xL>pMwq%PF`V6j
z6Wz-<6<=wj27*1WJlLW7D~O>q6-<Ywh_VROSx~K8pKSaZ$yFk`vCjhbu}5R-Dw`kA
zg1*wc3_G~`y+O`Ex05HIAorYrl?CVf!bAefdEJ;PSF7DnU87!w*K1?JvWy>79St84
zq6_lT$usibDmQa>P)g+9oL+V0V47r|I6rv!Y7zkaVrty**!ug5*44`9u9W-67aFO1
zYQ7I&K_=D;W@XC>3t2ZS5MREfpqU|&!+tLonY3rG@?1?ye5!FA5o5d8>Gey8e3Zkp
zNz;H76MyE8m^n_+D-)Z@@;ZOf*zj(7Ax`!{y@I6BvbddYbt>B1JtDf~wf{+C^*Fzi
zY7WKz4EMp%lf3tj0vw)lDeO_xt)=SUoMNuzDkl&AZhAPEprqz2LznvqpX;RuGw<wz
zc*7GyRxRoJM^~e!Zd*UZH=VuNOhk(xE~VnNL{38&JfBhzd`pNMtht2w%n6Y<ZMwDf
zbsp_rWe<IAIbk1Rlt4!oN7I)zcN1?K${a+6!MgkPjGgctN%kD+x3W9<T-Q%Fvr}<L
zmI8RZ)~}^gUXGHR9T-5Y&?2l~Pb;E(Kq9&Ga}9ENMrdi+azcLDYkuQdz9Pe+rV2i^
z(J#X8+_Wdkge{y@)vOQ}#|2px6{%mJefl*lLTi0@RKr?5+u=mPPnGqtWSHFyqGM_s
zBanxKH!V7P^Wbxr@}EFr#Rvikkr{stt`*j<L!?QKy!26Tt(7Ir2%=qmYY|pKL1aGk
zlr<GI?V3}j*`=}0sk2ZuGu`8=AH@)cSkyK#?Bl=VKvy=XdQ&18tV1<Ta_Ye%<6(A*
zIxTSx7YmWcv6(gZ^5oa+b_;NMrV!}hCR%*UpABQnE1spT(O~~BU7c3A%_A|jF<5qY
z!Ni8#ebWuQoyiUP_(fBA^eap1KIYcV{5t-e%Mz(V{wew3>|_wCETt_5DE4oMe*P22
z=<i{KR({dN$5pkJ=w4XCJOICd4jXpV&825{mxGO$-#zT*CL!0OuesvZXpf#S{=xk0
z?x^R;6SyK$YN}j50!0(G7BA0~%!x;TJiOIo0f*xaF^^ex*GI_q$^L?hATkvj$Luv2
zQ0d3rmX}(2AFcM5g7F{V1ml5j+6;i9dOqd)7^b|CDCo>?I#c}}08MNbeHL|XaYV15
z$>*?I<OTh)tj`ARx3|GTqV-_lF1E-V)Joxt_L#V+PycRFU%UuR(peM1FiiOd(@GX8
ztk&f)^N&BcvQ}+qqR-45#^~4yG|~ggX+IX)&I}6gSpy)MO~K|bRX+;s+4amOPICNE
zB+;we!$JM&-}htB1XGgag+=~sqZ4Ll8RUMA#gs%&(W%n~w^3_ViDF{8{1YuDEiz#@
zsl2flJ!Ov(q%MR9<o-UC=Rp)+udp&i;ISlDwc?@YHvP(`O@O`?XICF@hpqG-j<1Up
zE&tRIt$!%^e9`V{!m@CGmc!=rOPGz2<krGN0%mm72J|9R=eL$Krg)j}ve}$M-#VIr
zxdu6^*UhQcDU3WCpf?LmsKV1;VfX^W#5-N!@P_!sWvr1h*(f`LU}h~Cz49-whG4bV
z&dE2TWu$7Q-%hU6sTFHj%O&#%5#IbhZLv`XV8{GUFZafJLC1u_l=z%9VRmB*554C^
zjNbzQomS^rwb@0VK!DXDeTsu%ZRZri|JDBDXVct<1w!Q3FM@E{x}f=CWHHjptJL|H
zE*#8D$Hsa;?zX}}$I<qdBI!840s&_aRIee77mFvP>cCx=DVM(7_?KdDe4bDCz#^VR
zu3W<Wru~~74uhks$mfUNCH#*10mmlFy$LGZae}F?lJffAS%gQfRTbOpItG-g)+d*c
z`TZ1|t;PVqB^aI&yy(p+|NVy`<vpEI`7G$Ao0+(19Ga&0LXTaCS}~{OD3n{gh+(vi
z(1KLZQ`w1BAeSts)Qf8Jc_v%sLbh%(WehZ!mPx7>ZaOsg645nfm8`vHJaaBzWqALj
zsnxSLRz&R;29a>^K4oVZdsIv{JYO{DJMO+T{?9^bN9c5<Ug=xA4}+9!v6L7Hg_MW;
z#&A=rh1vk~*aJjnWwF*ceD1*pvCY`dn*5Hl{$7EeYPqo@#V-FZ$1xazula64r`Hsh
z@i3ygD+|KRraAat-^$Nv%iuUHk*)iMafLJ)HOzi`yOaIuC4R`>6t`vR<F(Yu8ws|c
z7(4t;<K5uUDw9Yei>ZAP>5A^1!-ztM>PSz1%~Vr08DcHg0(j)jZD4gntj?TuD12(}
z1Wx>?XEp!2*pncx_3`_W^}(51bxOO!4A@O0GW9TY>$m$>_4K93IzlA1FCp&Bf|g44
z*xc;)>d`o_<+kO#wTpf4M{|m6k0YTr_tP6k<}EWWt>6>N?k=tfoAaBYTJP+hxyLzg
z50Nix-}@o9{1!ekmst|*>Tle-8V=2|Z;OwK9@fp@Otg*Txec`S2LK==bX9I~^)Rc~
zei_E|Kj-sNtvpJL_2tHWb$1V(2av?yj&rn-=9iFA40|5QWlKJUom0-*3)()By|7ux
zj?pbM3`k3!hZ|szn|@qkhv)Q-=7!F<8}C)Y^+&y<P6glXiZNbHo0s&h^+i+2um6lw
zxIJ%)L>WYzTO#%MnyI#|c!~Kv_;r!6+sQC>hnTQ!s@KgWCaN$!@Uct39|^LEXe=^;
zB(s)XKrpGa!PxWtV-C1b1}tjLYdBlv;e*2&27O}%>NjQ!?j<Dv$|&I-j7;?birg$p
zdBvk9cww~bzTd<EX7LVKz_^x0Eh|ukG??FL&xtng6e_yseez32e)!FBvp?h7`;Ndq
zP^@Q;q3PJNeUE&X_|?fKhbyxjd?bE~9pSUdEct_EIJf#~!uaw2)wAtPT+!A|tY0nO
z-Yq8Nj=%|2eR<-HaqFvyXFcIql4k`7PJq(rFyHYE%U=$%_Vibe>st8<m|2iIi&R1<
z_kj{F*2QgrIf?Mw5Vu$z3S^1k?r@Ur=M#Bat^B}7HurKEsCw_zCJCRsVqtn)`4xBG
zQ2&;i*&PNdtKY(KzQFB`>8e6|wtPXyt?Wmn7j&N=5kc({9?MEvJkA72!KY;rhg=_k
zq2b`Pa<5HTMNVCJXaSdew+CHpDO-!KCcB3TmQ}*&RSi>6LujsCr4IVN==v8%d(^&_
zH6~bl!|a~FoIbC$Rlc#4i*H|xb9t5r6RejRI&bgo5D$L{Z)N>zotkO4cY(xTW%31e
zhBqINcJw7bCgB$e9F6<zJ_zNsm?jd<-r_2SxQgZ9AKawpM{hw&ih748Cbo0iit^KT
z)8l9T%YBx}g}3O{@@su`0BiEgN(rK9DQNRL0(NvaC+KC;_G=C`YPq)5ZS7}_Dps0M
zR#!X((xoNFs9pSyJjKbmNxr5|<2%&<v*ORwGDWDa8l%YzwkH7x%pxTO@VF-kMaI-J
zVHJszrpZB~m{DK;iY@M82;H8Doo+RS5Pcp>w#^Gf2XVd{Yl|4^qq0xwu|v5{Q<(-*
z8A9?GNveVhNhd4oE*=)PdIS#<8vCP(#+wsO;+Ta?KeUx|dII?fkq0ChVge}zMV`<F
zaE7D*n$HX)y7l^0&A1W=xCGhHEC;DlF&6i^FJf#Zr0eWNoQJ_on_-MeQXul`u7b+(
zqtQP@kpGq*1e+j3!=g4?iBMel`cDC3#qD&f;BLdX`6kQ?GU<7-By-e7l(wzf&zm|Y
znI!sc>J&85G$m3ZbBubh-X46U07F8UU21ZM?sDMNczxJdRY}XdPN>=}H5&|V^95D)
z6j-*g%^9!77SDiU>((~Ac4>OrE422eCiio*GU|1sAb8buk7_ps1V`U8Is!rw`@+&q
z20xnG-_ZuyA@uy@-Grzt*(0<TkaJuNkle_GJ$Wj<3hXsZ=SY-&tqxOpicB~QzGFYz
zovO&gHE>G!Ob~Y!iF+~yb>wu|fUAzAPFwmi87OSiJRxtZ1eysr0$sMhGNoT1Z;v${
zhMWWR4YT<~kz=R1zR^<ik`k%6Pp5FTbcNHE%^(u*Pr-c)`n5ipPZ`NLERy~;_6YX1
z>)&5!a=8%g6aj#GQ3B&6kq0Q{6muv8%Iwpgu-~eJkCM*xhwAx1R<C;^UFq)*6=HYO
zD?VWvNal4`ThC-ebp;5z@FU%oC-a4ihSS--yUJVd`3g8?DPJQ4OQu+`>4K)&q^m@|
zm!lR5tXie_FXD493HF|3ocS&8{ix^9a2nm^U~v}9Ugz0#?I5PT?<7!e(y$m8gM#cd
z^PWUhhH*YLSrChttJZI+OI85Yi5Z7PAA>+PuHkjaS6mv(O5ehFii5tk{573?Cc1;7
zB0cgORYWu9ZM+6l7mqYfLU``Mn_i*ZP+lnfsLj6Btg!15IeoZW1lbwL_{72e$wKMh
z4w2cB9TwHaq9O>HEOD&RMD$!wDQfwprDEaiuRyki{$|HG(l}x1;N$Gd!GLsj;3Im<
zbtX{I*;VvqHXGOJIPK5xGI?NpEc!Z4Db1lTJ4&o$`%V$@yayBi2WU+Zj!<*Mh>$;v
zy%#*FGCdBq3dDZb7tfY8ciReDt@+;9f!d~>!PXA$!6TPvyCiG)y^fymny4*p0En^j
z>qB4l+QKfG?6FfEESBt4%i(nBo|)jmlo0`|wpdH#J0*z^gcLY~{0FH3;w{4Ouu+P;
zeE&||>h}8gDP8N$^WqM^1MyZqP(=z0tz*3BB)z3{!J?=9I1ob@>g63?f}s5BO1t*L
zVNv0yGs6-h5YZnYwt!kTQ>uu}1Qi45kSc{2#rH)y_FC?|Zq{OAZ7drf{9{K#S5;a)
zmInT8>E<UUU`tD*HLrRP`PCr{9Q;<dyYrs7V?6&CEpw3gqh8L&X-aK1&)S7@RMA-d
zy1hX|o@YY0T!az9Z2?a5O|`|FA05lNfI&{b>b2zH!v`tx4+Fc8DX-<=zW9aYTD{}1
zJiC0*khYf#C1i8>=|ojmj9ml=L1iPsQ}|F-xnP^-wI)PKvq)Rq+0QTKw_m+GKwX~I
z7cP5<!t57?K^Ofy)exPCzxyvG<l|XT`8z0Ol6Exl*;3z*v`O<*vHaIZkD)`#cHk9l
zS(3ms`Sjp_r3C+K1l!2~HP;7(#o+|6g_n<Glb(xMBljo^Av<nQ*eZ*dPgvxIA&>Y~
zTVA2VgD430P^lN~=L<`)u0{wc1UgS_pxR}re{ZqIFhj-t9$@G{`o}f@ukz^M{3*+b
zT!6bJC3h<1#2iv(4u7a0W*#I4hMgx}sr>dYl~aW_otFR!;|y=#7DUOVh)^-$1FsRT
z(ukH<1173<Z*3C(ZEyEq+{nKTM6NM(kFh-5&-dawg0TC5mzDA5Nz2Wq4aXEjyVfRJ
z*_Mz|%OM?8oOp0&s-h1JF*3QQ02EPvsqYl$zT)#DbZ1Y0y8`?5{^;*IHQ%^ruM)rU
z;M;Ikl8N4G^@7eU46N(Gcp*j5drCunZu}EJt;62ppDzcL5?!~>PWnLN>+|Xa4udmy
zy?O_^eKbzm<bMsg1{f<OWH>m02G6z9XrDb*hW_JQQ`(}#1f5^lD)(2=%OT_M(Dlx=
z%SHd?9_y~4hJC_*q6h?J3<4iLEw(j;cdrq#>uLjdVB9+*^XExL1}!3OgHL~kT-;5)
z`c%gDzgCQx1RnYaMW=zhVWka{w&TCP`@j3R|LS@4SFJsce}R<!(**TDJs%=QsYDI?
zl1KZOl_cAaiu{I`VTsA!?4RB%Y8iu4kG*|9>2*E0xD%(7Nkr-!xfgV8n16ls|108U
zss0Rasd!@&#Q$x?{qOgGha(%OIfCD)uZAe0ha2~DBt%-oAG0*q5SPk=J02{Sr<_6y
zu-WAnQ_mB5%r(<Lrk;X59t(7ndegjbnOg2{8%&b@^ZOGx(u8hKMlUh33_K14NCg}i
zf128_{iFj4-j|<oESSyrz-ZPY@wu^ltWyys^c4ne9D;JpHE5>UVROW;hs=3n59kq|
zdCa$y35s0JIgBb@{uTvk!Xq*PZV{EPGC8o=Dc=IPk#uMf+MmDtpO0cX<lo1L1R{MG
zaZLWfG*J$a!`H^Mi%#j9Z#5FodVU{tYc@f6<#xIzUn5clnm*K7`{V9wIBs#I%_<<J
zN%{rE%BO$mjXAnL9tv`F1#$RGilFmWGq@7JW{~ec^rv0)`&0}7JN5g3xXI3CG8ntk
z6B)#l_D&!Ur1|wuyWf&;&t|Nj1HHRE5<V#@sf`<Uz4{*w`_0>=l1RQ;&7N2CTVn+&
zz^!vs5V?7y+ex5Q3{>;Dm;47`C49BU^Hn9S>edK7=fU@2AVD&y_&D%~tTp`$hTM#5
z@Ir_RBg#kG2U!I3LFj+q&407(;Ox*`rDXXaEHYXUec<f=AMDl&%83#xb3Bzr5n6Yo
z(ya+g-9*=&?g>sDQK9bfv|kEWxaBB4kRh`KY;U=XkSO21KyEI5AnUITkx$%aGiYv1
z^VtWtbuetFykKWE55VIaJbst&%r$7ma~N1*DL5DjhA-D10P4OuLb87)!N4nI^cPjJ
z@5~cq!vWBd?%cd!vV3+VZ|cnLs;dI*HtsK*bOMF`51S)7y++G0I*cf>B8*q9MCSga
z|L2|lvkoZv@qAWB%uAZ+30O202NT-rbWlg|zwPdj-F*XT7LhmByTK4`N+_+^B7g<h
z?M#+2a`nbCeaTiz)`Zh&tWH&!WL5G5myX!_S1bU1%|Rm*5evNA-Uv>0<z11lI~}dc
znS9<ezuc)9a(FlgI=j8CP?QuWMoM8D5WpSDx`9$tR(cBAuW-wn&^|k`=1*<jRD2A#
zM=}87oQ~gK!6*S84ga9aX2r0BB?ADx*#m;U;2`mNQ|Is+g3&Wz@@KjC6vT*G{Q1s0
zzB~UOa`*SU9c6(**+fkm`5g4{N|2BvFp1dtu6obfiw{Hc2KBm~MdOaiyWHUyhPB=7
z-rz&L4O?&Cao?+x0eVn{g<#vdC-T{5HpsztBLNxYKtA{nY|fszAxu6vA3)5N5Vd;G
z3LI5yz$O5r`LUUmDPvNjC^1D;+#~*AQ+6RRivX)F>I7pLMPze<W-#hM>_}P4RCKX1
zfaG^S+lf|A5$FX1rYoBkq%YdgbrasEZH*l2VK~XB2BWG8K*OGLJ=E>BTkn6$knlGD
z6;**wP4Neiv+W#$7p|Q=mi_>SdIEVA^H)vOvt@HeZNE!FJW?yxt>aVql`8D+G*D`@
z)V?>`?MAV=3i4(qP}3xg<R}Pk2KtdbVGjZ``WQgib8&*Q&_;CFvQ7r?!feP(zX6Ou
z(S%;<@#9=QT_H4mgt(dMY=hVkOR8W|AF#!HV6no(zGn_5?Q4M~R#D){bL9y+7w9KL
z$V~6QL)rdrHva80=}@20to8d-tVGD2Az2{tQa}HgeW@^5&PViOAV2fG<8%M#)AKJ!
zz~6&7R2#R}Zte3mAXYxNm@L(f=-dmDqja4A9J7{@c9R>$zD(YRY5V?4k^g4<i&sw_
zfHy<9pa3<jD&V{am@gk}iD@417rm+Y(CUMvoWk^oLPWPl*yEy<P&(PoBD(r4oOeEI
zxhwPvqkYj!05}BxJ{eV6J6h{=O8C@Q{b?vg;=H(FF9y{2y61Pm$MD16Y~7zo*!O2N
z%li=&bEq7hAaJdPax@RGZFEmOHoVA_`$9ibtS4w28W8pE$uU%i8hN?)4m4D}vY<mM
zqBq&wQ7<cGBFP7B(UHpxK&x0ZaM5Y870Gq`drjq4`sM-PLSlC6I;9Vye%+aGn%UVp
zX)kF!`m77A<Gdv3u8aP(b53?=wAl3<H!5Y80LCE!WFwy#IvCPC)aKpyg?qsfr0YEA
zSWgDCYyrdT#21!H&GR7gyg6DQ*bakUMV0}4l3v~*yBIg&7HsEgI!}e7?s!nJN_!wX
zru(9{N828gkkv++h?yfVt1#--5R#O|$AMd5!03B5R%>g-VEn?X<u?dvDO2JXXPtN|
z8{9vYbC@aTPJyt%sl6pU`MH$2wlm}=@#?eDyHAnU)5&b}qF}0)>--Dr*cMIAO7wiz
zzWx%>31SP>^R~*brYWmE0nO<qm8mG@kE9e3Tw5g9+&3aS+Zt#2$yI8-0QOc(iwQ-;
zQAQ9suE$h|KJU9nP>$LebF`cG6t4NggH&S~uruy+pw451Jzz}nF%iVW0338ZVp#jV
z1H1qGm<0b?tcMKpcU+HBl|%i9+9(Ac#qQ8zT8*R=DAu1W7+53)7wLN(N{b$nC$)!f
z#p_r_gM&<JGf|*w|4pT|2mn=7gRQJkpq6v(Z^9QS0w`@!AZLEhyHTolwDbId&qkkr
z;+Lr;xAO@Rt4NcCInTy3s+Yc5g@7<s&2P6F<vi~yLwO)Mi5Md&_TE{6h%F-sV68iD
z4$#(z%NammODc4=|Jj~X?!3jEl_6xIEp9+B@(KfuEBJKw{UB5XOdp`BL7sP1UT&8_
zBN3dsaAYy?=4Hbaa8%noEq^Ws9h>{M`2OZjWP^TJD5`G(XeVVf$=sG%_dYKX{JjZ0
z%*ejAt=0=`#}O+~TWfEd`%Al{gkliS1{Pmu6Hur1V%>T1M@~VXXm1;-!z9)9B}K(d
za``}CY9W8b_xEe;GrORP$GAIF6M3YVu@BZJ2PC2%<)%!34q3CZqXL<exmfU(*eA@k
z^kjx7V#Bjd?#`yul?4XpHV6x@1CoO+WyPMR%hCvN!Ci5JufNl|4kTC5{qM-|Kc0bV
z<N4@3rZI-pR(e;#E~*oozZO|~shh=f+u3f5+I`Gbv9Md44T-hQXncq(D~9~?6OaA6
zVj`zeAWX<rO)yd1BB&M+sMkPRGP<Y7sf20e0J)_Cn9{tt!o?B5wH9XUhf+S+6rmDJ
z0-2j)$L5MniXRFQDi1ipufsat??j5;LV}^wm8Mxet&WMuQ_2n*5tj5}uTyOBCEr;|
z20n@gM~x0<4G5pP0g+!h1|yIENYd+j-#E_A^9}DVv=|6>WZ;G=I_ymTlDqO+{ehGC
z?7c6*xxNj}vr(Sq2o4{{@?}Bomijg-L*e;4PehswhBr`^#I{AXC^4;zy2s=7@()+4
z;ZWQo$o;iMPNU~$PJ+-}pN*dD(Q5Q#k{6$}xOMM3utkfm-YN3&Q-eZ*uI2hD)aju=
z1V6$Sz4oERJ!8S^E+^$DL~zugZU9+TS|3U)nM0!5>d?gjIi4fxyNrX86v=A_kyI3}
z`^Syopix`ktra%(q@vUYCYNy1^Tr&71hXDFQgfiu-rQ5`4NBz+<v5#sE+ib1PAIw%
z(Ys)ta0G#89{}EvJyE*4n4~`CgzYa5qMfUt`nzj$p%)G9x7_Iqu53O$#r7|MnI3d?
z2gW!X&5-AYb4#~=p<0uhDNB?gCV%rLE7ImPoh;2z&cW0N6sI^4dtD!AjPjrfA^;-<
zbKZn16)>*cPhD*2Qot$CzCT&kaZFkS>IGT;Kh**Md5o6Cf36Nd-pG=$di3kN7u@^z
zPBf#V*W=nhXAMv?Kk1Gj+pg4U@oLIeNKgiuY}PiVgSgq)R{#x?ugB<o2Ek1fGsynp
zc|5>d<$}p%EQyg_`{+d!Jw8Y9jv~kt;c_PCTm3I$%aqc9y<`VI4=)Y=Lb-7$;b2?z
zBU4!%kUovKOMX#?J4n4%b0&)*V16w-MA5T!YYao8`r08(3`A3%2K|2gK<)H#5$`uf
z-ktNM472o4l#LD>tA7{ZBMT`|p}O`HgJdei&Y6b(BJ}0VX5}dZWL`Ey?qX|5VB0v3
z#IsJYFe_V2-&UEqQAlu}h<A>|O4lg`P|;BL?yIF4TCTYD&)TqR>wh9q?u6UFTR#G)
zfw^tU6tB)RUS&H-z|>#|q_d3^clixpQ^upi<PbD+msb3$140QtJnaQpYuy?vJ#_->
znY){P?+6!c2Iwmsc2~OCeEcB-e^<co9Yt_x6~kz>1ER*7@3e<x<w6~rAT@6H)ntus
zBz@o|2BJ5Q(#a;afx@|?0s1`v&!()iN5libs_SDKQ05|k5IU|-hnWA`_G~?t`r92o
zL;WhjJGCI8|Ch4)Ulp+bT^M%?BcZ2R9H#R7=>=7O%Rohy*o%#~f%<*Q2mjA=o5j{w
zfeLn(;m;o9`Eex*QkJ$mE)#^Ar_Z&323kFZT0Aj$Db}w!FmXI(my&kcQX8eOw*)z7
zN(Zo>jiZ_8inF=C0_Xccv6F>8DeUdNe`o<X6}1Bjb&;?EjxQ4)M06_b6*gx|2sqZi
zW`Y|*iO#(&%*D4}YBtW?gvr1Yd>`-m@(Mp6P`t@=!G_;Q6YK;{6Hv9(tKImWOuURT
z6-|T0CZ2q+jjVPVItgffoH=swh)<OmA$%p&EsW<VJ7kHBEQAL!bDQ(l`D8Yo#FmOA
zlx0&<2`}Nl1+2|P!&VcjF@8ama**2EDB-4~EbzF_xc>T&1=inx0V0ef7@j+4w>|NF
zuvkuY^EE1?m~P-$6(s(2f5G67X&KPUC{ZTCP*s)32o8&)CxD)$0&Svjz}wO?VDT5T
zI(%CTe@rA^8%7mw3Ir&slGE7UAtPQ5-amhiXM^7Wl9hqt3LYjCRiqxF?2AeiD`R~_
z2A%v*Qua=wg5f1Np-V2h{TM5(I@OPo8Q+K2mqzTmN|}<%5FGv{rR1s7qI7fwOr2Az
z*rq);EaD)MnP>=;o)W7;^DO>NwYG_kL#JC<$z-!<17f)P3$2<^GC&ADlU7-xz-s5g
z&Xh*i&%zW^c!F)^`OXiq3zA@)ddl4jEq?)%5>9OyaLslh2VM+yPQ__j^8Y!!{Qase
zinnIJa-{I(GRQv!8E;=+n%B4c&uoPJMv3*o@lxyLo(v8wCl^7_ONV?(hJrI2aY<$!
zn&mzqW;^S){r&QO2Hps~y_Y>IpEWnMZol~|8^}Z&hQ=9g;q`;cGE{KjZH?7#EDAxR
z8kuA(P-38F4h!XfFH-$#D0Kmp*SmA5Og#wuccdq?M1~C?B#IuG)NLU9^6;I3HLSq=
zI)9P-6xSfh4?^Fa=fm;p^RyV;f)p)Ug!h#}KN-6#be5=XcQY?-g30bMmB0*Dz&f2j
zNI+!f%RP*2R^$S;iM0c>|ComTzh8(UMnXT1qIdogMK!(IPw3uuQv~9~5%9}3ODN2K
zasCRy1>Bf7!D!7XzoJV3@{;Pi)&6`F8PtH$D9a%Eg(cVz5Or!#QwzOEmQdVo%#(Hx
z+ehtr7ZKTfd6W9~hC*nd#6C`TayTdS<t06Tc$Mf#5xMuZ!BTA+n|mJs%H`8UJW-3k
zd?fRIoNB@+|6nU2wm94#V9jLpQ8!u>8uy4y6#oC-+}@abvv7K)q-+C71yvWT|8v>6
z&z{)<p1;=;)_`lOQas#5g?P^x^jAhTWbHADngMug^CUUH(@`Z=h(BErCQSGf!cT3<
zhAfc@ML~P0i)kq%h#p~4!!yVC!#nCT{;`zUr>C-=1gkc-Bdkn=OziBepuDD2i02y(
zJYEspZ(P~wd94jf@mZIZ@Oq&75%&Sy)KtAj(x-Eel|Jh`dzPBk&fR3r^c)Ap*2wmT
z#STMf4{Z8b{xsb4h<#@{jk-S_rWRO$Y)$B}6Ypcf-^6x;d5{DS^rQhf0c~@(uHv|Z
zVd8_|6H0)M@2s4pMMsVlKKr`hRtFSzPHsUqNF=piYZ~(e5tf{2kN=;lKak@=%~S44
zDMIj?ZqEKc&b~Vy>%Q$jA}gFIBV-k&kc1Q2BO-;$-er#y*?Wb^C^9lKvMPJ;EoAS#
zLfLzd-*H~|^W4w<y6^jXuKW4DUe_OIE+?n&_xt&Lj^n+K(M<py_>q9y&W9^KoCf@2
z6a3dQ5JUJ9%Gi#V+-5^vH%GDkgU2v1J_W$3*#gq`6_$zmTsVlMnY%4|q05;oiMv_|
z?SVoti<G2d^m~fzl9@0>Cx*sZ5ZR0L&Oultak6jaY19gg6w=}}bK)2vVBC_<y0zB-
zEVfCM+$=GXgubj?timt6ZdF9Ep#k?j>F7F_ImqqI-)s~SUULX4CbQOo4=w@n!^vmI
z#p8A#@0q;Hzh`Xi>@^+=l#!RF2ELF&qL}Z`V1bxlJ6@Jl^fA2EvTNc`BcFr;51MW|
z>-hIY@V~rJB=Q6~%y+mBJ4-O%G00l?Xm4#W%NmJ-rGBINy%IK7K*<2G<uYN6l1Xx|
zpk|h*RkU*QjqJiB@?{Px`M#__ny$c9-B-5D8E&2hoPaIe2VVjTep^7Ttzt3b9zLrv
zOcXv|_jVg5dTIBu<TlHEtlrG!4qN7V8xO;a7?F+87~gN*?oE+NR#KTg1r0zSUloj0
zUl?vMoQ3uW6&x*AY%zXKzbVLI(6StCQHIs<Ttm#mUBiyswu^n7<yJ+$$RUYxyOnF&
zRW1g~mK*oc^_rWlL37HF#;QnvqE1`z0Y2J7j>ikTPf!srHQu^oe?PD!OJuC_5VVHU
z^u}a5_~R+A?pedb05>TO52q?jil{O`?$BdJnniH({{VdgpM11$iuhFbgHhS;q{g4W
zx|yJU(Y_WJaJ@b{ob{RFXl??(?ZZ^L11>5pj5L7w{{%q%udjnI2zmn+1g_{s@6HkW
z&;xk1(Q9{vdlkx}!3=iJPT<?F?Y`2tJq3^$ITH^sXDhgZSO6gHyXh5XN5+8_I|wNx
z9Mv|OB`8rY%(UVOCs|h>E=izNnSmBYH^vX){Iqq(O^kQhlySWez*!G8-;Z@81d&a5
zJfBt}FutkeiUG`+wcxd-LudSU`XLCx5?TO|*coHUtE({W&;0C%22kWa^0Z&1upDiO
zRg$ZyEB)2rLR7UsL%^oOHN)ZGHT4s>2?mGsWInr9>nde7UiQqgT^QXN+~1$_cB1HH
z9b16jpRRVqG{q;mJ774c1NNkh#?OEjQrstlHsKqMu$u<NE@cfCM9!x0*_Wsz*Uh21
zX$`-bJgFYqab<}rVNJgZRUq+3Guvb7s-m<wjUQk2?uhAK-8wA61z^q5+*$12t?bj>
zj8X8h_EtJ<KqQN)vY?>`aTG(SY7f$SrgF-cLJM^W@bI-z7k~#NUDh<;#Fyqyw#RVG
zz9U-)&FZuKW{%V%bDK9+3@ytu>w!u|X2aXO0XL=s$J=i~eHqTKDV3k%!C`lM_~T#T
zbXm_Z5gW$<a_DJ{uB#Ght$Hwxrz<3n^|zSNZTWp7Vs~^9HS&uTXbPcQLw=0bN8Li(
zx+i=`sk9JEmB*WHUQbgH_h<5{ap~7eW{FPjy5<7%gc4C8ZIC6tzwWV0;Hd?G#SXy?
z9n*8?g*f}4?q^2{^h{LqM9>;te1S3&SDW(jZ-`O4Qz2G)3bzbhH$k9dSOq9#oCtN|
zq6-bQaR#~|P)A3(1>(*>yButKb*?j<^T8eDsT9@E=Q-im8b5&X?+r*xy_34nJ;A>Q
zzKyf@ZNiKXcBDP{5DF>RIt13h)TRMMRoeF*>k1#8PJi<3>Qhjj5+TXRZ#=2Vdh>o0
z9$&0A?<g)6rgk1J7;Mw8rxS~{SLZW0*3M}GB*Z%kPw9m5pWK!mAFxQ@dgPY9-i#N;
zY>BIZq%Y=9!M(50)iRW7<1hR<oNFa@jxL93UD85|^g8O`9arws*E}W1xkamNeR(Ew
z>8TM0o$3V90#dW6z4~7x<)cFjc}EP~EDb7J#`@Fui;cP&cN`@j0P!3;&bFKvhuQDi
zzFXyds++KG@&IYiAbB&ZS%{d(o6yH$>YSmFz03Zz--tQE{fZele*3eGSFNn%ao6a3
z?oL+`ODB$i?!t5Z#uE?hp2WI<&Om|&$*7|gnfJ%9*G)`$a~4b|DSDf-^4pMCS7Vp0
zmh<>nin`lxQEKg~tmb{J=DRxB>FH|DIqnBVm8qfR>`#MvA2yX5lFibE`1c^m8}@s3
zfX+jL<5}Wh{1@<%nD)W~<GF$?uU_{~hBAm3e2EjhLpe<u6_t}+d$l=>*F3jybZD=a
zW~n>bkLgL_5jt{h{r<G$HoiYO!>NsMAQGp+74})Hvf+io1+tD<P9vyZ3h3{4T>&g8
zA$EaGObIw+kyd(?=5XHJe)VHp4)^_OXV(Y1f`<d@r*GEw%lfqz8hEKbMM+uM3?<J*
ze$&C6e0KwqKI~{mfhUCz$r5EDPd#);T-SYdOm&A~_+i?_mvaQ;AcFcnQn-|KT(fBs
z!e5dY!TRjsmjhjDSI~fqJhH9S%?JPC@9t#70&^<_-;&kIzAxRR7~Ti!Eb2)OQKu&=
zzb+gy7%_+PT56&3*X>n+y<be#aM(HmEIPtSxv<iem~4DCTRq#RPOAjCpH?qqep&n@
zPHP@AAE#=STs_4c9nlk6fs)Z`qbR#>^IA>-cNQs%KX+#lxag-nN%YFI7<cMC`{WqM
z)VCuDba?Q2Z8&o(UvGaQuyu{;*ta7yi`*ESsjOd$RPE)-umC6x1Edu`hjY7Lhaqv6
z=A$;|Bilq78l`Ve=P1rL^iwo29nK8@wVS-Ai8;Uae3$%X#d>Y%Fj`|YQ7e6bg-^kL
z8-C%#90Ff`d`zNSGMwx7{D0%{MK<X@I#buF2sBdHZ5n0!BJXEin^$GTX34rN#^7>F
zE!{VJ^(Jh%hxYefvKDtrY2_ZQmr^T!5>uggNY8zv=kpAgF$X6_Q{6)F{_*84kI}31
z7J=`@__Q?&AARM+uD=y)D)(c79u7gpycaTp=3f(aeDn8RXqWha5O7)%{YCk3YL7c5
zhr82zaD?b(h0f?qWhzjShtXc_=MFt|&UfCqN27!FO+2R)l{1TD;#V+><P~~v_mSZ9
z;{>fiagi1P>!Bi+PY_z+(@pK#X_(Pg{qp>gBcM;))byu_fwWF)wPo9SLR;Gos{)Xg
zktkFddpHe2SlBCyOA%tu{%|}!iX1-^d9?%B`fqKIWqpL=$zC;`QMrEkMEHj6FagJ_
z2nZ02VXgEfbpeI+;zw#B-6Yp_SVP^yvFr8gPyi{C7g`!`P>p=bG9R@oD;-~LVG+o%
zRI2#qj@LkpOSbQM4A}V1?#Mk3U#L73yo#E4h{=0#)Q?Gp%!W`WgrrKuo|EpUTUo>X
z>i(@kQN+R*p=sx?o&_vAw5YU^1K$qdcy(9rpR*qB6=h%#1lDX|gmrM$Py3S4>ApT2
zd;Zd+QnwT7TWf$!L@yc@gW%zv+ldgVe-{F>4f2oSuPZx-QsK94q4nHD+Z9*axFb57
z6QI%hO>13gj`nNEA%#paQ4G7fz9b&w{DoGaB2E_DiApNrv{tNivK1s&3b6&l25W7x
z%h)8V!<6R{t+S0wZxU2*!AP<bZTHIJQ@fDyRoHh)aBEHa(i!$8>#?vxq7qKtUbMM5
z`ebkqD#qic=F*G88V`<kLq_UlZ!Gn$`WGH<wvBJw=nE4g*1<?PvQ=5L+IjbXppk!l
z)c^JsjW#TL51CA_^^z)%{R$!rm&DiVIkT%F1;xxe-;Pw|j`oAtnZ+-;SX_J{JlfBZ
zYBhW0px1trQfpenSx*QD@$&Wi3secEXnjp=TfZy42Hy5CYRLOSH_0KE%fwarDXQ1b
zx?(t3`JO%zE!`^2i3b}l*Fwi2sLuG^=npcZs_!o?0{3)oU6kZue3seQar@Km9)7uy
zt;t$YBY^5pvfM2X@zQ^&AaX?ecA<liJTSn1x`H(D(M=^TLKvW(bs5#!`>Gu?QPE_V
zP7uGb4|%f2SK%)8vfKZ%#ED&_-}I{K{I&|l|0HsX5log|3Vi#Nl?Gn^=ik&me`!CE
zquwLmDm*_^2`%HuGkK~y4vkTpPC*VBM)qn^!Q&HY-NS4T#44I<g0vcD;MU&uq&V4X
zTR7v6!CT1ZO3LflCXQx9WB?a4C;S+dMQeV(5F;`~=<tbq8^+3V&CaW}(>E2H5A7c-
zOZoH4rdxKDoZre+{G3N>U&U7Gw6iH-MzGFryZEz|y{pz@u*y}Sb8Bjpb-b)HWwqZu
z)>cQJyyKAPemmvvfa~qP9pff=F2Y_dZl~C+$q5$ir`AIxX{5jZX1s-+-RQ4YppGJc
z!rUZI)o*OA3`j_%@<(HvfiIP_G!kj=<PwpnP@_XcC*CV&Xgg4}K(<5j#RM)xqSB+)
za@!N(vmXeTFR6f4IR!o(;}~PX8sn~X!^5usXkn7Rc71|({djdKR|(w?-Vl2%7<$M8
zPTtnq?01Vwij{*e`t^Q3`pC0%v~tQ5=Su5-dXT2oi-??Wi<~@oP4%^0{DeF@nxObE
z3iN*}-$VOAq(ae7EBbI)S<6wCz?MGT@$BU6!mGQ122qs6mv1}~Dfaw04h>^+m3f}L
zMa71cF$mnqu|%i#paMMjyzBb}Cy5`tnX_Yk8Sci-rGMBL%;;Ymch6Xyv=iW(jbU&S
zNgxp=Y$`c--gvYYKzF_~mB(w`L-$aj`uXTcT`iHAD6Tv3lGhSkHZy)Fjqbs86%szt
zWgh*eYBitp7@<}!OZ{KcNTuz_Gz6+DH$a2C$oYf3bfFp+zoz~EI*Fl64(E)ZOYh92
zyP*khHDrU~HOM2@JqalV&s>z7o5(*@NLBc`)xRd}-4e?T061Cv3U`@m=Ru;Mnj`-H
z8w!rp1rJN6h8J%Gk1puOl|BHe#^9=1hh&2SMiOVmdV5GTm!UBcB5mAdt9_)KWa->$
z0NSyw{bq0>-dR2%^WiVmSbkeI`k=aEA{Z~2NjZ_#JN@B?f`-7+@ZLZ?&j2=ZMqM0r
z;2r;C>7x*m7%Lt~4?i_ig1*D=UmEmQ3QGuP1-E|mK2$jf;(ArGbOZ`?<%-@f1#N-_
z<&5*YP>cSu>WmF2Aa1G<*Gw?5R@rl4Mj)bV6-YYI4cJ0~z0HX{61^W_sqaIUWBFQz
zcrw;#D97`PaF1>tbPTL>=2kmb6&~X~svfAH<%dcuIRUbs9q{%6nE&F7`sJ~Z3BkA>
zRhGdH9a~F`s}YeNYhe#Yq&+dQUEBMs9k&dgWV^I7mls^5x_hsc%X6;_{4e9iA!3jZ
zwfzMo=8KM$a|`bR3Qd}_Rr5cPib?J7G;WP%X{xWVUs1}mtPURgH(tblBCG!KpPttq
zdSF(a<Avpt`4Fp5Gti1Y*i(FHq|o$yL9i?L*T>qBp3a7<H$qLsAUEviEcQI@2E9VD
zEnK8C0?~<jv>Uy_v;yI6YQ&l$?(`{Y6%Jw6JWHudQ<-zur|Ly<9m{N;`93*+xGHjT
z-jlY8D~bEZ`Jw^lIdeFi<diBU`E~qb5U4n6PCXy?*#w9hk_JSj0H~%oXy<PvjvqNK
z!`ULR^2FmtyQZHL@)HC7*W>m25E|b58Uh`I)$YRANm<jWxGlz{1A1LD0wJrIXPo#9
z-8jjgK$HBk>yv0}?J~dT5+f!Ns>qoROI0ceKmq=7<}P8QK)xDXq76_EwGQRZVseMr
z3J%;D@W}0XZN9-#9rWzCadnqi9!U8J6h~shTXmGOC*B@bAOdP%l3JMHZpYm-&T~2Z
z&7y|5Ao}Z*sCP2*b`sm|cg{Ob{f~Woo$No+&in1WK4*z+B%~9POE|ChK%h=@68sFk
z^;0f7Av@EBZgr{&lt`$qF!!WEa8aMpjn>{=t|!CXV8L=jd~c8C>!l$wRWC??eCLgG
zK0F_6i?=k(!b!~x5G4XUmTr-9QFjzVDs}5GuzmIIz1rXoKFB=*Ly&iE3pJ$Wq{j1F
z#@p4`JJSyE$FD$Hu*ieJDnH-J)nJRbZZTda8At$aDI=mEM4*~!(yv8&(W#yh4xM`y
z5Xc}Sumig62h}0EC!QoKq7u$Ozbo{%56=j$^?VLg8w%u`9Ye6QPCi6uKij@BoE7=?
zO7HIq!oL&?{qYU&s4&iAQ(DY6H@G!Zh~T&RF-<r_67%e{3cn=}n<(`l%-lAh-)1xn
z09}c-2HY^#8uAun^KOdJV0+SH&afe492+4VQ2)|e;v_W4v>WkMI9`lQD6S-Cn~Ova
zxVRx`MnwqZ<iXUjR)t*6dLwn*hz@uE#=uDAj9~fXsO6Ey;1is%Fgzv^u>It{d{mfE
zi(HqzPPF`0dw%4HDDrjmx-|<|^POt96UIhorU!1+*)xK%d!S6RYH&8VS~4Ky$~Y)B
zoEOH3mZwA+sQDN)IHztxPwbZAwo+&~qC-G31S+*<*3M0U_~0WNdmM<~_V<V)NMa|m
zDy(XEST!$M+JgVr@dU9&C7PBI3!(|@WS5882}5u8end?PIIQce;2uB(bsOZ&C1N`u
zuaYQ;65LaW=Q8BsVa*~tI!(HeB*et5nfC%ObNeJp(76c2e^1uLU--FJ(C2Kw0Xa^a
zvbO8zSe!JIg;oG@GxvxSo`67y(M>b-0;Nsu(a8Gr<o75}{en*$@OvWB1Z=V7mCf=s
zi|N76WgQ{VwJM8^P8QTNA2QkA!3_36DZKczy6oS7UBsFtl(|$}M59yK{q(q1;cF!M
zC0#SzrJyg$8VPMdIFY3y89WT3CjE<|<ClV;BJ%0qTnf0<cF$r=Ww7*&Gl}0nnf0lE
zSC*R{HLhvsUG6B4b8WZeW08sD<z}ArJ*8K25wSHfJm!o2{Z_xc)ir^7c|S!%Zsfvc
zfEQ8K-w?}Z^BGQer(*CNv#u;C^MAgj*vYt(t}bDGsH+aHpY7K?(tOL8Q8&G}v_Mg|
zt&4jZgqMr`_vDuhI^$>gCP1KFAVTKVEaqE*Z4C=*^M!x-S9E+?=GgFjw5DO;tCHG=
z%{igzh;p`A+DD+4dPc7%+0b~%Gh0@itD1n|nQ?49Y}(rCSN47h(BfTCLC0B>ceq<o
zA^0E`VZ>7UYc-wQzG$h6UEdBo?xg;kQ+oEB*W#PMwgzOsBi%k2+wQ`>=}H3C5Yb`u
zAT5MmkM|J$K+Cu>aXLV3g!G&GiWe!;aC{(?CcN;8RYW6b?-_D&?niX5(9dwrtkG!V
z!53Ji2$$8-;!fjE%)c(O|M6yCdw`CbTa8hd!_1X;@sqi=XnQp!&qw+KV+FKGi_ACb
zpLI4sLC4$Zp`NlOp{8Z8vmAwK9%|5k%k05j8=8f?7=C$C^L|U7OfkwM@?61{+?ZGU
zA|TGadU<yBE|v*%sNOE<Al^T?>L{V?sh=$McAH=@;9d$!P=Zy<o|1vS;e)j5(q%*|
zmAwcJ@9GOJ^Vv+Iy(zGFVfcCfx@|d8p=M-!g@HCd019Ma64@Z;MKY(e+4Fpun4mL_
zeT*_qVB3y)LR+|gxzN$B>tj&a5yp*N@p_b^vHMxmO=@>_{1ybxD%|ux@wJ#AOSEA4
z?(N@6D}6K23D*#C!X#`Lqw|R`pztl2jgONmmZM4-y*74S(PR^{R!F=t36sB*Y547a
zM4s-JEiq~exn@|nKH{|)qx?+F8v2@gWxZm^hWqWKGE{!ZH?~(&bpM%_{_pqTnmuON
zo4}uL*EjB+ogFV|3X49!AIF@c%YdqD!;*Na#le(Sp9{*)nE8#WLToc+^x)VNKMzDl
zxUD4O3^1e-<Clldap&K5#0!4u-RGx$s$1t1(DQAyZA5{n`H{!X*apBuf0t}W>mv@S
zlq*HNuJsN~*a6~VmK*DOo3pJ*KZ!y>$&W9|Wq&;k>!XEB_S#U^<1zP?7PQ16;nPJA
z{7W}JVSjNwI&EH~BBY3q)aeMa-Tk^oCB~{vMnF+VMVd7B{azWW<X&(TYWpHDyXG6#
zYk;G9iKy2U+h-TcPOOfHWkgoShXG~cC-7|dpT{r!V*&H8uRULgdl0!?EzSf|1U*tg
zCYXk=z*IFssPeP@n$T4?rZ1pCq%PHu2qnLl>LH-^$%8A7WNBrrREgJH=R&Y4B0~2F
zG-VeS<8SN$Kx)$wxSfQ$9oXja{*w&eVLR{S_XPLX@k!(s?odbv#FMXb^&oi7o%~>_
zKN=i&wYTA3P0$-7S?VwEF7-LsN`6dz1RlN?7)tN~4u?f&oZ=#2R;2>*;zTvDk)@8l
z(IJDJN`6%aY*GBqflJ~;?5+ZK%Y94KJ5c+YeP?{Q9hmLEwnIy?M0UISWLMxs?BN7x
z*&YUx+si@<4EKk3*JWD;_X@&+gKxwKZ&jH5$5qcD#719+bRsnkVb}+xcGa=`m2r5}
zuPo`cz=8ri5|ryb&wGQ?g)6~k!;DIX4_KbQ+M5;nzwHDm*DzmA*^EC*c`^=xN#x5^
zIOU)ikOrbhlP#=+Q!xdzHb@!Rjn*$C*+i=<sFqE9rmEUp@MG{lk}DgQi@tlE&rbwt
z7#&{Dypqkefgs3GdQi3!oh1~>IT;^E)K5cfOOV?Q++N|Am^gzHQSZZ!Cy;$?-3p|b
zed{V_mNQUIJ=xmsqGeiGt7}jy&sk*dJ;I+A*{cT9E&gOIf_H-Q=AD9&xwgnbRXT(A
zseLd~#2Hj=XLne<yAf5|Wamn~@x@ias#J)Ref0o<zn?(xhLJEy@u$5Z$QsT+!us6t
zNtpokMDF82q}V{tU32o=>v(eD(nwV5{ZJYs1c7^msWKIoD>ja$OS+hnZ}uC4Jr%c_
zj;=Xk{s#o(KRmwDm{=9&)$eK=NKNsjTi$r=<1>D}Dp<C30+f{rMjYFOT0XPl6XoQl
zowB$SVvTN-{x_H0hMULcfY*5t@4V_*y@-ju*#>RxS|6KgUf<1Z^<w$f4{Tp(Cqn0o
zo%gPGa4P+pIJpcUV&23`|I)MJ!drJ=el{l4Rxj}ot-#si^``@W-n2byiJ$AS)fvqD
zVMg&pSkk!PPHZF{4p=T<R%KEzkXGD$ocEmddib@lLTN_Xq^D{rml$szRdEF5T|Xkt
zdwu)t$T@Y-VJ+Ima5b)!%b;oPz-2XduVO)P&2e(gu`{miq<u}HSs=wo@}Xk(cX)VH
zOiFA;HSiYr*4Z@63Wl;wkQjrjy$gh%UB<BfdWtQDR~B{#o$-5|XN2|^`vpkfLn$K*
zx4z(8oE_5r6qkWHwjl_qKwat<^(qN5UwLRk?6_7r&HAa{A>L{6CY7L5!6X&f{gkCp
zx`6eWUrWoIZ>QTar87!<+1C6FX(SM>yNY^u4}*yLdA1f4dfM)4k>#X3IQj>rf9p`+
zGolX>8j%|nnW9wZ<+EAQDazHHoEH)~hp&8pZzSaRq1nJPNd}Dlke>!2uK&+dqd>FV
zEPZOA(8A#F`_55qw!M@I-CM_Lg8S+3aD|$q9)J$nZYrjP$8fJ*@~0;OEVTREksnFe
zjHB07_j38DZ(fMu0+iWR3mm>rzo|VNjC2*!APBs4GxHe~Bt^uze@+r|GJ6P5y!`ul
z@jov_^q4^Td}DP8c7hi`j>!iG(<YGlFUm=z90u(ZW2Er=wyA-;^4Xof99?lL==Br)
zne)73`6eeOtlQXxL`MaB(z{O-Vcd)Hcv-|n$~!fDbY7{T%;QUgI0s(q#lD;4en_+L
zp~XAsP(f&QpS^(o3lrxK?i@YRh9D|7cqaXhNuSXJT&xZKz18gf1_^HL3`vHI)R0L5
zA4#TpA!2~+w-5>CnQ8V;7hm*tO8VJmTfk8IRJ!RPd)2)h+E-P;5x*m6ySkOT#DTz@
zK1K`v)Q@Wlr~Lg2;t~7(-_#%UcIwgT$uM<z`5S{`+DR+so^gSo9o*6^+uCEK)r?On
zF^^Zez}nZui_13cuAZpHm0}!I6CHo@>2zL~{X4Z~xXkobSMEE6-rtar)f9e9Ele-&
zS2df`A{q1SD;1fFEMkSB22bxHF55H@o+w%c?{dTzPInkDU>{%fHk%Hf4`^d;UXQ@B
zTE%T&93sn*#-6%l1LJkd+;U!n%I!Lop*sNICB>pTbDlqvOAxBRq+j?=IlC&$ydrX{
zOyxmS^adyz^1x6geX<6p(-K_HZ=(R;wdU$8(}=H-Wu+89O6?TSd`i;cX7@2Fyx2U@
z;raRm?sT$h8&syGxbhojj00JkWbaoUiT-a}`!zh++5_i##BN*=)dc?jsoWr_7k+n5
zQ*mPEgFqV3#}yYjv$K2<qaA{hfYj1t?Ko#cm_I3`tHW~{hsTtB+QFdMQ&t^FpcU53
zbCt)|yqAqdanUO`K{_?MYWX!P1}5UzxoSk7?avY?q@(;R_GbcF^TadNvtJcUYZFW-
z2>{`^O!h9KXA#2W@w8A^mIhWXfBOi=`4{am&#)gLcz|(zq`m4kb&nU)CexgHQe+k%
zUSPPS1qQl-$lj^yx&q_LFS2xYEBBi04z>39w2n|OjyBskAaH_2-U(E~@4<SH)cdhF
zNtawFI3|u<w_V)!(&j}Zp%ExI+f`cJdmCO)@H@<k1gJ;!2)CDqx!&36KpW_qR9*Xy
z>4Du#j4*1gRZ8Jg{aV*Ioi#3c`Bk9BV*@Q{KZ7{(f)%3%wR(ZSv@dP%PO14Qk7$hf
ztlPnq_gicZ`%mLAqGYU}VXeNAc&Px?u!ng9B8$U#WXwo0)uW-AM%iobr<n2)qqUuU
zQ@6l_Kt7pIweeMS-H&44C@^wmxAp_<1es$Ds2>rxiXUqn`mFV}RVm+13w%rM9(MT_
zqv9!l#O?oC{r`yyv4&d$YNxD^t{XGgmEWeHBLbKMS!la5(r<j;zIbD{IZ!~8Sz{2j
z{3W}}dL*VGUcS-Y7wlp!OWAvHIf6@wGs>UCy5`rrTaMA-Dd<$e4CO%am%^YWsLO|0
zJ}rH%<1P2J^2uMSXss;>%p@FZl?tZ0e3R{V7Pi7L>={3ODflHxKTPj~l>a59B?Lbq
zwXM2&&<MdTH$c3wZK{7|%1th6JsQ7Hj<zV>axklsV|;l;T8@)qYyl_>{GQ|(NNn`F
zdAR!fZkicI(###(#e1F~nK0#@i@tBIPuB|#7RAR@4UFSx^r74zX_WmWt|@3PTO8TB
zo`6`g@9i7b6Y|EXUQuT{ise_TIe@ZBiAAV4lJ7NJ&kwIg=&zPd=!$Q3eur)7BzRZ=
z{Z~Aa8{};|*Uj8>dL{B<U+Ds6@6K@k!cx_O)4PQ-0q5PXSL+1{AAs2Q0SKBG^xYt`
zdJAc{oGurCY%ZcKI98r-_y~WpEzkO;P8iJq)x;NY%B^YC+fCaD+sh}@<0B~R3Q6TX
zNk|wb1Z?IDgvhuIPbnoh%>D!E@IM08GLa&AUf2W&U%cL}YRtMA@Q$Ip`FBL`Vf%6T
z_lXhWVnJP%t;d9`4O|-SQ;HJ1`1_77>=wKSJ#(u{wI9@TE<Jr<)prBL<X+oVxG9#t
z$Xi1m-d7|{P>dHFE)n^lI2)`=65{yC!bXr~rYS(r0e_TMCy1PN<fImK3jajADmhxT
zlC*TUsd@UEN{X~@La+WqTM?T;G4J1$@@~HPmwUET(7vSV)5BX)y?vVK`aR-Dw55Uq
zrG#eF%e(1BGbIXU1H7?#4AS0F#Fzrv{=W|;4yPe&@Ni(^C15wQLs7OcoTs_MeDwLj
zYPtWt3Djl-e?#SlTH0;}{Uz7agWz{}=WJOUj(@&?yj+jbHWg%x`@CC|Nrwf4i2gG7
z*nTJvf0qr-)YIq9WS+Og+8oO0IsRpA!8HUa#+Ie6bKqUA{c5g!Nh*%x1YD-yWZ$E?
z(oWrFUD_|5?fKW7`EveS0acwiV6N+^7aTI-=di4xi^%P;0KJe`LH<Qje^X2?%&I3@
zs^z<yim7s{g4h=C5bY2zz>l_EKJah;XUpZ(B597VGi3nD8r5|Cuwsq9?V6H{b{uBa
zK6A&?zwy+H?Bk_ebdOvP!+J;L3HL|fJ=!3rWZ;QK%7}I+9>(6t2S=pwD+lR9*$pkR
z3MCq{|J&gqf%xPRa?2AdiT+8hp5($WfCb|25?l*K;GtQacPx(+#RVKUQ(QpQgJ%`>
zfBos9HSVCCpH-yyyn(wsS^XHTSAyD(0yl~B8iEcBEr+q`mSszOoIv#3TKMd~I#gij
zP3S$KSAMV9sX-0;f7%lpggsw?n5vBCEOPGh-!DEXDMYArFsDqTZvW#7``c@F%t($0
z$GlmUl2qA1uJWmeZ$SEG+!vfxW=TwdxWmDe&@|cy^0}135qM-PG~ZJ&{zE75-|n*%
zd3s011o{OK^!^i}^q>6`FYFw)3*JT+O78#f{W9?)t=ELb<^R%B=z%464K;2%*wPqC
z!OdptpO)t+#t?eUFB6d;yY}q4;#jyQJIy#_+Mr9!6RBpaP!TWYb>KoDLJj&7#8Y`X
zwO*l3BPlXuXoKO8C{FQI`M4`RrPF4y;B@}om+`(TvKl1Un;;FBToi&9S20<N@aD73
zaI`6nUpeTbC}!^U&?oWULmf;*TLhPG(1VCCn<oJbEDKxYX4)IWS%3v8mc26O11EFP
z6>e4`j&@V@;_#q@86(Fi6vVLo?|}7`+Vv-3VXdWDg+u8*=o4C?r<{X<uz9vi&#Axz
zK?4I|)g<3f&AV!Tn6XxxGqlxUp&$$+cu;ismQ%I0?_KV&giJ(okdphxPd9v+By#)O
zvp>AikQdf$<a8c~C>#pu-=$!b=`#n&LX31>^xhyu7z*ySuq1?ol4t42DCoka1{sIy
zRcH)~j#taqUVw(GLlxc^0VUFJH>f#3L;2Ccc?qBVHhP~9yL3|#xdWCk#c2lCq{UG_
zPi)e4dc<U>XES1^G85jU2;QPf_<6EqZ#_V<z4{*fn7<5#@b_n2hu6K}xgm!Ober<_
zpGNHe_j1zshy~-#uEK0z?`yIjeqeZ5Lo7fFY|M8Jeo$U+G#f2y=j*8JX9}H}uXvY=
z@~Qdt<8?q7mJ9E*wMCW*fnw9><8sTLe(F2fa+n(u=e)|H7-;%sf}o|s&<^4+!DrF^
zVNiuw8pagz&v`WTQVDIz0B-Gf&vgi?ss5^7+(Gjp{m|};Z)q2dVzU*}fFbE}u}IFZ
zmGzf%p}HDDm#1?L0c5%>!Wp(wS~4ra%)tj^cBAH)8(ex&I_5cX3zuID7HC#@C$fxo
z|2n^3{!2E4o`g)Kl@}(!h@=z)2_tGES+Y3}o_VkEGU?j=A^niXjE~_|=ZkZhLizV-
z<#BNQBHqawh6o(p4i!;kMuE!;4e2vI+5indqNI%>lywtY#DKo0r3&e{Nf{nWzXAUE
z3~t*^Fitfb9L+&b8B0>Sa1ZE!M~U#(vsU0fV(o5B3DT~u_ycVD5X>yx{aMeC_n0!P
zR_vy4N3y9uFPDY3cL>`h;+FEj)7lad@E+WR`o5|0wX%yaPPd$|9~lV-%-`st#=tSc
z-zV*EpM4@j{{c4I!0RIMf3q0>FMCdC3EutfF7Xa5`c3r6t9;_HW>5vvg8^0{jXA~7
zn+cyumrUAGmVuT&cJIc7?9kquWC9LPXn`^)+s948cl{Ykd9@R?^|YtG>6u*oebx0h
zA%8fbsfs;_88d;a;%i<JgXT1D9KKbObZuJasjC1>z6d4;Zo`5NLI?LN^B-HNv;@{W
zmZV(k^uONo5YI881rG&&&otqWaVcwwq#ch?6I==)by51sgFz<!;l6M1>P&zjo<lgz
z6})Tgn5Yf!TU2ACbtLG0ob_3zGz16ekHxLLvxgU-j%4Ea3w!M#c2Rzqy`jLeoH%^i
z#sBFtOkWB6*;0SBbHAs;TNi9=W07xngqmVt8fk_?^6N_=bCltwF>6ND!02EZi^`qn
zok}_JsQVyFj&H7H)fZsi#(S>PoU3ZDr5|XliHtv=ZOT-5Z&mZt!sV^zvW8nvsI%Ry
zv~xcIMV%?%sAWD=Mg)T)@?W-*Z-362Knr2FB>DPkoG)lZhh+*dcUs9c(JWF9qm89j
zWS`D!&s4e7fH(TT7xTY=A#xk{5{K59m6lrBs|>@(Xo;>;NI_YUkIYor*Xut&e1IfQ
zd+`82FeR4?lYj4)VLJ}CK?htqVItUtkCyYj3bL3(U)w__&)rwQo+!<kO)EM9*@xeA
zP-HZH_JhIP9M&kdF(bn#9;=NRN!0?Qu!~pjNrTVzMP~B&NR~5fZab#H@-aDXwy+dt
zp@%{`Z0LcHB5=%hP}6M%Y|dwRTK<r7*+OFepubof2gB|PkJ$}q2+508a5LUOA#e*N
zD{<+z%99E3AXjVE7{Xdm^D9_Ihp+{UBZiV65MO2*zF4~gt->Nd?w%+a^fj0KOP59B
z0$>|ynW%Jb&q}3`Iz!xo&`GcnwgH-w0v1hH3w!zX%k-}}G)i(#g(Nc_zY-t^nPor7
zeMBp)(Z*=V?fB5Kht_+}rV@|A5P`v^3c0vSU!&W7oWpxNfINPH6|If!eN#y*OuFXf
z2B@gWkM`WtE0(QB=JuV4==F})>xp-I4BGp?sVlEBu|fmL3hkHO>kHGPT%Grs5bh&Z
z$NN@P+$Q0-RdQ;w>{?X_AnWHTMr>&|68AN17gfC-nl(qwx3Vje`YCamW{K{<ci<r@
zBFl5OK#Veu7oN!Ju6XQ#m3wCO`5t6lu%flNDTe1daVG+k2rB%zje8noM1yx7$m!P`
z`HKgMf*W7`aLBH6{y<y8uH_G7-0x1&tk|f)VwA3cl{k@T^YcGgi2|6AFxADev(b18
z;P~Qj^vcys-!odaB%U|j@_f;f?SJ<^M=WE6A@?mP!7#}@a0zBuz*;<jN)~&#0qG(P
zJuOmW`hnG5xNDys5_YU@yb&vCWpT<L;q@fzmi$KZRI|Y1iY$G)kW9;Ln-zZlFnXr~
zU#WSdj}n4aY|8JBK3DU&`bQ?LP{bz878dGpG{VX40Wvf^_czW=aeAHW34{3Sbm_J#
z_Ks#(UvH}5@_JM~A3{f$#(?${Td@AOdq!O%oy}!==k;&E<UA44XJ$=4O9hsbTC}4-
zknM$5?pn?(+&2N?%&_*cl=uBIH9yC{yc}~-&iDF=FK5BW*3<U#ulPt1ua?=bU6rZu
z6Rl?;>MU!oiw??OZ=$w@;l!6uR&ND+>%v`s)jqWHXgI!F@VO0*`o|2-qEY>203F_L
z%O$$PU3(gCv=?v}De@w6@VZVT=U0WVUx2KpDv##`3AiJq8J;va8~Hm2?n(GRTq|D_
zs<zSRH*lVCqdhGq8@I}~L3_wTOK>H&IHDW4se(WJRdoc3_m67G)4}d`du%+v`VPtd
z-jo#I{h|-MA4+!~GYW}Lmaf?RY#0+#v;Vyua7Qy>JhY}zyaxB%R1q)49`HdsP$mH;
zXb=Cj<Pag!5_?GsR5DkFDX-<k*O_Q|!trU!(B5V*%92<yj~B5GNlRo|HmE7DPZ#t9
z*{AMYz{!C!{~^G|g$HA$Hjuo8yC**yz}{EYUdUi{m))I`nr0jbTsFYPp63!r=~k2o
z&6mRN*z9VyK2<wHI95x)DPGgk)c~FzHshX@?r~6=xA0E7B+I)Yo=?Y=Xd~DXH6fk4
zkXAx!3V(x4F@bR^%5c8Su=DD-dScv?P#y};@CM3BkR?6UuwSd(%gkpCwqF`}1R0g-
zE6a3I6g@p>V2R({8Pr~?^z@FFd4Du!(`js@K_=D!?oPb1nRT%-x1$w)x0GyNl2Oh?
zx*)3HHxQH%2SE}Njq0fT^(rI?jVs09pE&$(VL0^<T&THNdp~=B)(1{?`~lnn3d{}^
z%B?|AY^q96v+hwA>{h|~S4V0hHXtNrgh+VG0N3+6W+%4Bg4^kV;iF3RG<jMGj7;ah
zW8#fG^z3V<Ttep_lwgUK_;GuCATMF+s5=~i42(bHoz>aK)eC;2{usIQH3VWp*&<Gc
zTeoXOtw9XidK>gBieH|yJ^D=W;hS3FJIJJTv`zdS<4wEegGcrP;@cKUhapyM#S-W$
zbZ`|Lj1Xwsy7GrfmLF|{=HGkA^_RLOTrN*^Yzn$-s$^VYXdp$OJDZ;gtfzkwRo7}B
zFBqlpS6@KupZq`6Kw&=j2Sz0tiyfu{ICKFKOrwx`%T6C73PD;EB$2vw3*djr#>^!I
z;d4CoR}bQaa@w3H6gTMaH4xl%dsL&^pOVjQYe4;Qa-IfvT#mkw1?z!7V1{3)DQQ~3
zjQGhG&Ykx_v`Ul-^}KU>dlMwi{BHhXq0a~XBT$c-<zv&Ule>f!*JC^=5gf-vT)EIG
z442xZ4fnGh^3=(tNWY%y#N`Tmc$M*biisrtBxEESjcCIR@!uD{aw)W3x|h-V+c^jk
zw%3@v^C2zXsZ}PT!fICPvKPZk4oor5Sa00HD0<vwD7mdgs!J#kKiy$8d)Wt=wC->6
zR>v`VH_>8tk?+o|#}}Fg+f|QWJtg&`mkiP>ebWhp!FD!71%?<TS&YY%4y;2zL<iOY
zuSCfFNljlf%wH$5d!vneIV^?>Q{k&~j;{zAMs6m_S21bRN%yY{998>bN<AZc6IZ#$
zF6N#x)KK5i@tC5)8n}g3jUW&^hcCLqRy@WC-C3k-nG%uRk9pT~VzOk25~oVysM#@S
zCa$qz$|Zg*SY<K%S8(N@Doq44CW2&&KpU&7X2+TuzxVSHA-YnzCXI<01u+trbjg=!
z5w(6D%(Y}(P?44?s?`y$<~CpLeH9_?7#($9kAX}|<i&2T?>T&9z6~!UmT(WI+a2D4
zA4%4tw;0O2?+{}sgvFKh6$F?NFr)?m`3JHfC7faj+zmOAsh^htnhAVLm>7YFi!nW8
z;778Ym<6de9f_#7cqigfhB!?+5~?UgZ<RYjjO+>LajPmCoTDgcmJtZ+kr}~n+b1Bt
z1@l6gDS-&X4X)qnR&?f|M=EwdJH_la*0?Z`z&61(nAcbZrsz8V7rDfdPqL3J1#W-b
z`a#}#F1`@V+yYAtH1z}IY&cHjVzl|=!fkM%4qinYAD#DNx&Bu6{ugHOuP6d6hu7yC
zt^?#?r`Z0Mic882L+oDK)}22tAs(hhcVKj1Fs<?!`!pkkT+Pl`i2zd8+uq0vdR!?%
z4Q+OQ1gY6RV;2~iQm~}xD_O8YQP|>{TDUNzxG<^%JHsig>=Kb4)!i3ePZI$pc~$29
zi#6Odf?acjkK(31)EjPwlb7ULRhPwo2470B6NxpDu(GR+n;2TM&yZONw2^zG9A3}K
zybWj86*ETPIA$K#!)<xBX=y^(?IJrdVks*zGrr_%A#OO2tJ8SrGh;5bVD)f)R4KNI
zyLo7y+i`ll^;k2+4X3U|zj|S4e5Q;UV*gFw#LNsVJK&w6E@n9**kTI$QY)PaIL&}F
z<i5NE6#i|8PPAL9_Xm=i|MJ;oxT;4ktAGq?sKa(tUbM>l*Unl5p(kL$CNbi(NbjdM
z4u2qhQ))~)is@wwgoag5lA$C-55v8TBbws-wA7&xDuMBdspTE8$TgO}S5BWLDm($H
zh;6*IXkf|j)Q>4zl}?9VUBCAx-IZC&`@bmrjT9ES{|tNZvlfT$lKR(6$-x>d41^g0
zAli=6tNFHKXK;neo-co`kTCTv9|w)Tn6{@+I*Ki5&A)A-2KlRW0W0@&09dWGlqf&C
zX0u_LqLxSV4MW~oJfh~XO69wt%ZT;a>M|;S>y5|@+6%7#odsY6fJ8BmACtkS?II)S
zP{TY{15p&dvUG|+N9q)_tsMG&`3<s#{>x?#=10>7Et}N8tns=L9_NW;6M>ii%tpbc
z_A}aqJ;uTz>W|8zM)KTEo-k(nzH|lFi+R2p4r^fF%XK;4XkN6Q<LB;Pfy72t-vCtl
z5oq6HH^eEi!<2woqKOn*&_Q6w;#dJYUXGgfdUI8ONzW*4tg#Y*yY3F!ZCw)VgG?Rj
zI54@7)1=xNB$(+;P)i-`?0fQ~EaZXhk8vJ`6`U*fFbpFFdI`)y8K#Nz)VLSI4*9zr
z@r*5K2*9#5!w95lgKafZ?XUQJPb8y9fi>bo)IA$`y560h95r|M5B(8*sNsw?CBh3K
zbgrVYzL)Y5t@O`WcP&BZ{d=Oa97c%ob=P}355u_DS69*YYoQc&?%y(;Yp{TXz<f=8
zP9hjg#=R!E0qCy9(=;)TnZk>y<aOgU5a!&JCVt}p*XsP661^UKxlS2>{WrfgmbYe(
z_-YoY$Up`Y0lL5bWvTM<6079*>_reImS^0{+-bAC-5yWq5@ErRXlxjdmrobGvN~SQ
zU3qUTeEJi`cVFV>iX;Gs<+-s+Q8<N-C1_CX)vvBv<N7}|V+|k9(eCTXhA#Xiq<Re+
zz~CSdw~;)D7%fq!-R0<C3ypuYn<8S@&yn<kFy^UTAAntkQE11qk~}MRN)LD#IX;8u
z-fNPB8Rm`{zi}H4zsYp8-j}UCY0Tw*>T&>PS14qWzaj<(_*z&+a#o3)H6Wh^MOVdo
zg!fWTtD+A38brk)7o(qoc6Of7_*c<B2dmYuZ^aXf!|2h8v4^lT3%o2x1nqZP(8&#x
zUjYHY_|_%=JphErep4<oFiU}oQd&uG6tdT#H^=*kd@JJBjI6vNz=A<qVuIc-On$u|
z@ZD&uFS-+KVrM>5@Btl!#j2b|^DIB-YTLW(`C4Ryw(brkpkd!udCyEN<=B3KaCN{A
zSY^aZfvXqeJqB?Yv-3A}5qn@78YMV=$XLbLHR5j~*f==kK>O!Uo##3!C68GYnhg~g
z2iNMWr2)1I3LQ)IT0{|&p@*%Yrz{+9I=Kr%R!7Y<q78VUm`xNdD|bG0ka-F2?Y)bl
z)R>cl5TYK)odEh|YqU97W;P&?gd))_31BC;3|kmVJEDQMkSeX1DSuU&4hMkB@j=(>
z(?fi;j}&A)lG-8nH~n32$ip;Sx$ccOEk4=vP@LCb(B9P`->Cc|u<k0X2nKB^I~O{p
z!3oaSX#kjHgX}B(LAhD2<=A~~3?esX*5_Z1-gNAyezbT)HeLg+jyTf-i}8_zAVbzf
zb4vbK>BBptBb{oXwLA{i#p&eM5T9jSw)NYYxlAb#-v~Uwg`caoSC;_DCFSw_-gDw3
zIDw=dm*udvUG~vUGie40b#73bw*^$TF9)+UcN0yEg0$5_geSz-Wtl*L;Z@Bq62AwU
zv$l!KqZji(=w5(RG2Uf;nj{P$G*vX_@e!pw->F@*r#mCR0&&NJZhITh*mo0udeZK`
z)&A2X(hYj6{(-$3Pw!1=-hVq8Pgcd*WR2QUoOOXu@bg-s80@YTIg_TpMSxaE@9g2w
zui%+g<p#5BluYH{7Gi|KieXl>LfbEVoehP$Tz7{TKv$9BP)lxPE>Rdi^HQe*_s@YE
z5f!|PG{`4VH!f`BVI-_vn4?+0JQcnL5HeERV6++CmqV$r&g`-G3|DvRwlV<e=J#wD
zpB})+#adODjy9E}fdgiKT!t}Y9P&rdVfo<G8ntYLk{UbM5ivdndLysCkGRJ|2Y}ZV
znz>Cm8>76U@T)(%?N8$zfS7)}{854VaNcL0#ytbjumzzJ{a&A$qd|eSpndkf?YRlY
z&)ESGgYdf&eU8(AW^M9Xg1A^MUzt18;Q1!*n<Liu(?QJgWa;l~?E@ficf4_U*ChBR
zzZPfocE1Y|K+8#9++W4V-2J<tKuX)AUAnv)is)s?dA+g^hGVSB2&S@EzZnr8pmJ2N
zX32(pWRW3?8#zUv7;3JFWom56p*`bDVoaL(j=Se~NZvbvWqdeK65U;#givyd4Q_$G
zW#^y*EJZuR8;eJP2E~Y7Ns<UEwO^a?+Cv97s!z@PZ4X*;8U(#W2hD^|Nr7!b84X&c
zvR~km05G2WI&UkgZJYGP45c?3X(RdMu~vQb3__z8I_5g!MsI!;11xL~!d8@~pDc7}
z{see>zKgr~5wJzuOM}Wbjic}VC<&_jAXG9XyXW&l8{k8hyfOtZ{RuZjsXU3F`vXe;
zi^D7&jnX9CXm=misRkEzPhx#9>wZ1XM^io^3A9dh49^-d9j53^rUEG(Ku16NSjUl#
zi(qhU17rJesrUP0zv*`#jVHszfAV07ykqd-$QjqZKT8~z{01V<0}n{KGwtq6{XtA2
zM9(o^MXrM~Pwp1|440VDN0KUUh@gGEk}09ww9k<4t%JvbyRvTG4E;2j%*9j4-Ahl$
zGv6r3%Ldf#dw!?Tml+0^$8hBoxLZV+Z&oZLt$+H19H=GBx)mxz#nb&PB1}R5&~>N9
zjI`Lb5G~i8XD4oe9K`b5;a0*A2HiiFvF9vP)<Bfk^yS54*ne_BZZT<pe3AlLhh=V|
z811*NLuMo(vnQ#qxe1fW3;fP?Egf*1_O3OY*}W#FTSZdqpHxA_yjy#cTCp3U_?YKD
zp}t=ghF%34l+#Y7E^!n4x-jQ}$0Ek0<|Ew^_xwtS4_N%}X!@EHq)Ai|>;2Htgf`d}
zvT4!d>X|BuC}Y;Il=C$~1prk<&84!ddjze<TXn)U(+C4h%)&(RNrk;TO7?8#3{PSH
z#5DNt+%++j>mW4;?IXah)_7FIO;~;Dy%;FK+M}C*rHRecykmMnz2w02Endnv_ZdB>
z?O;!lWMK1lHcyZPF&)27<b6<$oDdM{2L$hMqrhwKswo>ZW1WR+^)dYv`N&yAE7J8(
z4{Q-VdJm3Xal)fBcX7eUm3oOOYl+Nu{|Uy)`nE{MV3s3G>eMfJ)TGh{SU>DJqdYW&
zEyQXo9+XXzwO1W!ltflRrb4{b&3z$q)o)Xn^Bqo?$0^U#7H6-;=T}-rp5M9r@B}Pg
z+s>jtn#XyErphJ!(}O6RSIeOpS}b~*)_w1OH<7$Agg^TCabyMbRTeo%3cAMzF6*Lp
zyul7XMdMF6-LN1ux$T+jes;3wra7d)EwDZr++NH6v1oU1V|A(Nm7JZh-PwH1(1`ii
zEdJ}r@yK$ssG&iTk0@cB-LWwnR0!Vi#s%W5%Lfl|krYXiNQCpt$ol+paKu)x)pQG2
zQMf}G!uA38V1Ba?|5sIip<MZub4)bn$;fy($`eFv@|RZb9@g9Vyy{xL7=*O@)y04w
zy}aYtP$fWr>}^V?!MReyU3IdnUVX2A*H&M^K!d=zX<FW70I|5d32puK*YSN+UBeD~
z?61{hdR4G?Wu*troI2s{;?Fj_rx@!zP7q2its6h@Yik1=!L#2%`Z-H06DQB?^RHD;
zLbNBu*{Jb9_RrCB{+4!XozJ2LT7knrT0OR7M(_h#RTGCn^m8dsGe_J+<z&v|xB1|9
zh;V(L*J*r~;JO>VCO-FSK@D{EPgw+AN{q(K-YQvA9Bw;`qjlR`2a{)4d)Xu$(JDwD
z@130x;f}n=3X(3c#bMu<1LCtkQqLiKxRSXjhxl}Vb|d)hogU)yaa@KV-yKvi&2U6Z
zh2!b!+c^Hpsgy4B!7SH`&s~HCJV|Pg@itOt=xiLW>hci>zPy0vK!UVi{i@83KCu7k
zKT=$bE#J35pL4jhyo5Y`?B)wnJuK(!WA~5Gq*Ca`>1nB8KmFrvdgA9g6!$CN@tCWj
zQ&0pYU2}g6GsFd6irvqmn*1iFV@MF5bj1+796MYS=#;W5Q|^VD5{v}w^-6AyaxuJ;
zuv%KgOo~Ww-hMFg&HMQ<{?5W#`iltxfq1D_$%xiBPVlfZ+f>AKiUL#MdV&7Hc1T6M
z7T+*zhH8oGY{Em}non>dmdc0Qs)~cO@nGmCe<++-)abxzfi+<RCDi3t6b`Saop6eU
ze((($B7YHJ8TnuI{N0;2xaMeOE})nu|IG=@h=vj#2N~~kO1~~R(rvUQn+`_40Ctd7
z0>Yh@Yq&N7$>}~o5bv~-8J)5pe{szHsTSS)9#&J{>JU%1BTgN=DRzR5yO0Ipv!bB+
zOQZX)^VW3cWUpBQsIsBuVVgdoVhGATY)b(h>RtV&i#9O}<Q=9Z<X@dPlv!#ekn<Ej
zY`dCLntkg(9X#&&)zQeY3YY64#8k_`iBag-pZSa_U{FqY9|yl@)2k825^l$1JG1pZ
zKo;$<zXQa)(jIbcmrw2tHu>SEq%^tH=(Q(uxI{^LBmhwF<RStEU1aAw=K`%_#m{d<
zKWjG$Us-3c1ny6CGIFScc=q2ZR{w>MYKT2o^}u_$xe&3RMcDE353{!r-DLgr<@YuA
zgWay~Z`UF=#@V#+uK(>QAd^zw;uFani%JoF{c8*K18-Yi?a<`Fz$?d~&XC^$h^{QH
zN`9%dS+vdD<!?4`E%ty7K_RUWII%0Bz9;ZZJNSa@KlI7&^&Jb~r{sy#m&Ohx(ei^g
zp|R(yFmJ0sG|p!e3#E{!1z@~W)E%1*DZba=vFlCTgd5wkE{er&XTcfCM`zjb_<naQ
zAMvb*{xFnVtGq<9)mF3Fca6F}NxRc-bcsI#dj|6ej`avrLOF?5V%~$0!F&D2G50d!
zmLztRKL8}%yK5BmG{bWySb#M{oo?P3a|`NHRS^tjxp~9G;Fev8g;lVZilu(<E)C8^
ztOqs9sXtc2u*`J2Kxbl$QP7OzJPxTJ`^!EL1o}b2pk!+H)PZlfKSQaxIlr*TFO(Eh
zOaMKU*7TAsIuH*n>+P6^(5pilTy@EZ#IBIQo#4CY&`Er~sg$&{mUmKaz*OAB-@}7A
z*c-7OU1Ni|fr^{1pL`EF8Bzzt7mzKY%gUcb+#XQ+7rw0)TAXwjsi{T=w;W@>joA51
z(BPlH0YL;RC|~LB=ST|Hr(KV0Km?%OoY6iG=0|PkZ+;aZGku_gr7VoQU(w)^qsyJd
zQxX|*Q%MSB60@%e_V|WI7-1;XLSHfvDwVGC7LF&2Ip?R9THalEX`T!PZ+7FFLu<J5
z2QlCY`|*dfYuyD<FSrKHdsE+{D?zRHzCuFG{B+E^5-`0U23+jEYM0GzI+5Yk2=QbR
zi;T=$fqgQ#mm%EUPEA~e(nKWcf+yAftlOvpXipwrF!FXrD_3lzoR3x*oJJ0JsAH=v
zsw-bz<NPG}oW>rf!Hf9=%p6z71Rc$LV6}vLDn-<h=Y{sh@=cajPEGN@ieqW4#5<;X
zFB~ilW)Jf0W2n#2@L5Z!<)@0?aWCzvJh~M&z&oU;NkrK-$?{}5X}1xgXZ87o%R@?T
zd+P)Ko+2HV#Cowwdvq#0bNy;AXcjtU>wB&+j)TgsdoOgh`SE@%wS60um5c$dD@4`{
z9oOgDl-D&`K0dEkbOkY_Q2B!JvVlC6*AGxJ%fN+oU6bK$1zyG0jFRGO&q|GRe{u+q
zQu#cZgteFFu^nhA6Lx?;F?K)V4f_fYP`D9bFgl2Tt6uO$_-yQ^$^t0<a?8<q$^UW?
z{4Za5cg^!w=C^BnmFti3vz(bjpAR(L%6?_j;QXDd%BWk<_I6u>a6(x&Lj+p`8{$Cl
z?3f^?*L8Kw5k2C-hyr%A_psKYS7B~pdF)+$`w7+h$2ErKOAu*QXN+cM_-0aj(>nKi
zhC7~H$pg}#A|F>4LquV$mf&8M{Md!}2VW<<h#Bsnu*!F_l-b^RKD`*Q;1MX!GSXjY
zi!cp!IXk(hnxmr|p2Se@uJqc27=vLLT8cSH$FklVw+|#qgwLQ<b-XEiIXK#;j#Ic-
zIcF3`s+lPHuhYN6=Z1)~W!zCS1x2ld?|Gno@5qG_L~YQ!y3V9mr>GTXDwbNmyu4A%
zoeds_Iq13+79{+oyVI1f7?v={czhz9d7`oubLVF0w6&2>LdhiDI-4ep+PKmLZj-0>
zu{60&+Ag{Ih9f`GapfGILdxIN*wASQSyoSH4$)=_79oGqNvEYpD`()w+gff5;_f0J
zn|jR$>5r2qDjX2%s~|*qetr~sjh^y7>W<&jQ3<`OG?(ZnpvsPWOcObfZI9~^#z^_w
zKg^CYNr=or{$cnHT|3*4*JZC<o=7?Ya){>CF8Q|V-6fl)_gnn^psd;}HJ={@W0Is9
z&VVcg2|NomTm;E`vezSA+-XEWBwj@`uyz|)1NI7F?q!U)kYCHkLbKwVnum6i_um{X
zW(TFg&G#CFPHg9-?Y9T^pQ9)L4l0-SLT~ufsq-Ci>b<Qqmtck-qu9?M(MrAZNf)Q7
zHFl@seLZe09j&DuDLU^eaT1NqsTDejy(V&1ZnQEY7A3&4EAk*FQneEa*MBhAN>V4>
z*B;HKOf0Hl)L@A)f*6&+4oc48XfF3~-TH}VVPrnuYt_P1Q*LuaxLI0`pUY=28PRD&
z2l=>0d4S|9jKWhwJ6O<ahdIbiS)>GbJV?4j!;a353bXR2QY!y56pd`eB7cIoisQHX
zLi$${KBjIXs<^`RRTA`)U)YlHivpp4ZZ$S3zu`r-Du~%(16TF`QTEkwS*}^T(j_Gz
zARwh6pdg`iE1(k6N+SZ&Al-sANLWaVAf3|PA>G|bx5P_x*1KoE`OcZyXJ*eoZe;s|
z_lf(y*Sgjfj$`6{fuyAn_NDA=4>Sbw<hiDO`aH=Dt$;x~d2SPve1iOH+1gJ85@HSA
zr315v#TM$Z{Q?ed^1j|_7qk9R@Ocuxrg_=W-{i>g&o8!|)POPPD}oaXdJ(s+Dq`@@
z1O8?8YN$VFQi6tv4U>*jXt=2(yzn9@ql6wWByDqC@e-H7R;SO_#vHJiwwHU$ifwIo
z%r6h0PRwHudw|T6dS@z-q{UujSUa+fxv_J;BEdu@Z4|g4x^2I#_TQIwOI13q4m|Qo
zySnxb<}s{BJ_b7Af#>$EhRs`#dkEU#6QANpH%nK+U%52|nP&7_#Pnayz^$QLS3E7K
z)&<-`j#;N9CjpQdv?1*lY7S?3_;~t6j?9aV5j}eIjT7Ngoim{ssr<*yfG;hE!qv7*
zwB_+Tl{Xcx&kB?Snm_%;!#1JW{l9#}xPTN971cQV01(C`b`|UHw`mwixwW9WPise`
zaf16Iu*qnOt<m2;BeaR>R&DpO5w{Hv4PU&H4=u`M{X4vLSvd;kB3Kpt44`KPt#E|0
zRTq**wg5AJ&I%FZqE;3)8*5li@pHnq46!F3r#7DxMsT%e(y)e0!Ah+ai#8+zLIh)!
zg-VEUVMx{An!~2}Eje9n_UmY1=cz1hoq5EytKPR70SS7`-(-S@gxjqSCmMrHX&Pm%
zjd+lN*d2*RqhLgbO;-NVF8MP1Ap`#Hxupc-wX33F#kctp`h_IJJ!2(d*jNVnbuv^~
zjL#r4pfz3ku_iitIv4}<Q1EU_>W&TAmd7wF_<ZT5=GN@60E+=5-oC30!T}P5)O^d1
zm(7uMP9TZy@?Q>B*Rc)^W(7Um0^B3P5O=7?%FQM&b>>@lbnlUE-cd4WkR#4_MX*zH
zFQSo+$%C(xAEBoLU616icE=dT1D<aFFOoiZ>N40O^p~dc^sBaX;`YlX4SRMcM6J6b
zb>&q!XX<@}_m19<zj$!NR_j52*vB%bZV6AAsP-TTN;kwQUZu9MtKEL#elZ+aP-eIC
zO~LLsy&Hd<JL=vVbArsE;2BR&n7#i7RGN&m?mSaAyICOV>8Hi}=St?EW}N@@*Kkst
z9<OeDb(j!fCd~X&uF;r(Z^Vk&80UD4iGRPMnlw@dg_5{EQWt67od<(Wh9qQ63JlkO
zQEQaF{uE?16N^bt7<)oDz%}e6hQ*?l?>Vepq+*T68M%Vi<-!z1Uc(g%(5<O}hHZyA
zw_%WsX7CwMDAHXcA^J{==hZ<~F}SmkSJI8VwI!dxu|V)*6VQ5;rgOv@sR6yHP@O!~
z7JhtRZgk$m;MwSe6~QkSu)brB95P;{{;sJfQ4pfHR^s+5Op{s<6u?detqT*8A_E<6
z6P|wR;2`cAR$stSmUHS5oyBj^#|`Wi5{cG#5-`XzwmlF~LcVxz=7f0Y?nEt7wN(;&
zx20qPT#e9!05<-u#m$G6Zbgjjpt4V-?{4}K?SP}!Bkk$yZh84)m3~Wg*7aBCX@s2e
zIKFSO$p`5oiU8H0&*?h@CKqm_%QBXE?Jcd{-AX+QRv=4eR%ul_)%9}{zTju9Z{#)<
zoYarE&MZhE$6naRC3W(wbI(ItD+jbv1H*=s8lM=8fchzM;%2Ew?Yr(QactG97i&Wn
zC<!+G=iv7+=aG~5nU2Bl$*oPsp#?ykJ6Vv^?my?#{pt6`-ZO}yB(!Ys%<&`Wu@k~w
zei(NTpDCqZQ|BsG6%W613qS@voU?{(0(O%E<L;{gQAEf>!Z-^MqZN@x9T{?5FLe-Z
zB*UbQb%yQvk7P!dXkM%8;wHimt7HqHqoIhog_fhEgMw9}hsL6|BT<`8z`_g5b?pg`
z%ZDLxiaik0@|$QC{jQ<aVYz36T~C*bJ$zbuOrQdm1N_21u3<d6iVwfqqwO&He37v?
zt#=SD#CWz?I?5oN9tecrsBbWgqV;yiW+o=O42$()yY)sxwAUL#)ceWT{RFjv#JR^e
zl%^k2^b*y({_`DL-imn5fM&Y)++7hVy&$WR<s7?{BkHiumrCOkh<|NjgXE)BmRUft
z3u5yom<BtJjrhLBI@3Pw;N)g52(u_%G)7Q%aVgO;(rq?fv&DK=_pUqi9To5Krn`Q&
zDfk7aq&z%+o*aE|POzd%d#c7Wp=#~p>}UVNBB_oQ>ciYi5jxdwN9db=!23DK&g5au
zX_$Tav+|u5XUcMYRjBL<5Uco2%IR4PX%ytBkam;*rY!yE|3$|FYKZQ6_WHA*1lVIU
zAN^H6fm-kfVN>~KudbDTW4HP*RBoX!OETZ&J_y8S7EW$@peIDMO_{H@(B}9`7+uu*
z6+{<A2Btl5B3hX_>`iKs-OV$nm+&^AfO+x$`+8qSbYttjXhBDvtX!LWi^kM_cX>Iy
zzC@9Rj#~!wyx17qPo<MfhkatKyySZMoz%d{G(4<`P*PM8>^(Y6u#5T{B+z?(4P%Y8
zUYt5t`-EN2z*GsSm9+UeJ%o*~9ndv+pK%kVHT#lWi)X9+4GJL^JNhd=mj<$wUELBt
zlhmJnyH@ZB5sdKCgZ@<1ZOt@MVOvwR$<{jECx%Ifoc%O&jff?uYA(UE%SF{S2&<O}
zRR;U@hH-ZRT38zZ+b#pg>QRL)=S2*~GTh*i3hojpHVOaLJ^qQj$M$UWDO3V`+Ugbq
z71mX4;q-3>)(m0v@D)!NAd*5x>_l_L;m>z!%mftqI>ZZos);}yGCo?bNN6GpA7lN=
zsHW`Ntd1dGB}{haV^2D`yE9}IsQgy^ZFD6an`!Po9k!}IN^v{X_i2ybh$T;Rzq@ZE
zEQ+9@%i%(0<MVz<2JGw4V&7PDcfogPOJ%7uriG;fPpTu(CAs+?C(J8b?hs0_XW=!1
zhX{29OLItJgG^ne!-hahkquY`r%*kwId9|hI9ecInf82Rds_=5dD54T@LRo@_Z=-W
z=tzG6SRm5-45x}mX&s_AZm2Z`gdH^*y@3oVoyqkM0lZ?40G^1|Ya!NK^j$vBI1Ss@
zR9YkH8#=jc<{I@XcFp|}QOEmhf-Qhbt&j}Syaz$u;gn_<FbhA$8gSkLm$ji?l}f_s
z!;`J~l-7Su?EBLV>wms^gCE(O&wjQXD|`e})$hX41uJ?S>Ki5N%=%!`lgvQ@>(MgX
zhe=N`hMXa}TxNL$Mobxo$<e+IR7wL=_Ud=Y)@EvfLAPIel<&Nok{6U9TVoWglJypg
zuy1m*!m<4cN0m9j!!e20R}3HbG8U<GEwsA3-8;c)jNz#U%-2q=vktoBh1d9g0piJ~
zr)${u(LS{9dl!1_Z@O<jBP3?b#$5p->pV38F{_~Hf;;a(HvUrmLm~-&5+Vc2RFV1Z
zSE0UUNR22?-&Y15_agt4M1ldwu|neXNE_;vBm=4)&YF=B;w=n7{s#ue5)aVCe*v<!
z?~9BqntAeY;wh5hU>PT~ayj2xcK&hnQahLFz_JV?2@29^2i}ykd7;WwCtsWDM$Y75
zqyO*0Aa)nsvUJu@FFOAZveQ5PJ1sKQo_wdKPqCRg($C3BQ8Z<M_<W|I99^yeh)w)z
zkH1R^9fqYw^CP6DV^De0Vn)_44RE)G<g2qisaS5Ja3UH6^?_BN^xb8c<RZg@AmQhk
zE)1phXoHF`w}@in5EHpl_I^8gz_$;c4PEI|Kps&Jm7~vDTDq<YTD{l|NO|L1uqK=N
z?Ehwb1Uv`H(>3`rC!LM)vs;c2_lM;?Ebd!Qq@6$|+E3asf*jY!-47<`7_#?0QOwr3
zmwf@;wz&BeYrxR&NL)TVoDYjJHO4b8K}=EQm@S?mqy_gOAYR<epFlyd+w0^M0{>oR
zyi%r(TT3({pS+*5L_WEnBw!i;ZXmtiNkjpR!jPFr%k8I2j1MZUo4Ms<Q!aq|eWZ1i
zlchZW%Oupl+&7qZt|Q8mArL{A_at8EVVbs-X&53R#wygBx`?n|^@^80?PC}H3c}C-
z<v!0z1T=bz%|76VW2{KSI5~YT89cR>XFQ7SR+PL-GoXS1nMwV|dQw>Pi8h(MhKyVk
zl+kh@g5Scw-Zz8AXrADd`@@!+z#I|+56s@GRD%vOvplD+b1Tl#uN5$vd-yC$cCfps
zw|xq>wtIWm2mlR_C9HzCwqUfU8&m!JF>lq>=@H(ql4%d+C60h&aL*TE{={)j{>%3B
zyV}y@Od^ZMgs2Dt8<6UI8R(SG17;oxEx~ehU6rroJirS)Rj)y%o@_eE_M(&4^R)NT
zJF{j^<1Q_-MfxHx)RhE6+Ug%nGu4Ya>cF<;O%>EE&4dn8-8T^q>N{ZSHn5MCuM4wn
zfHJY-RO&%@;?RXx3^r2|3117cQ=Fh5P7R^rRZEdO(V5Z0VFo89T$~94dM=+4A{4|=
zYrgHo+|qd39OC|Gpx~ik78FXb?i|n4fBS<KxYHlm-76g2AsAOqJ2-CKvOP7_UFIIF
ztec~iN4yqj{_>@q3^Rqx4#xv%^rw7w%U`$L*Y0~+=K=Kn!${6Ytn^jyHxc^nN%}p~
zQj;Gqe=Yz|@B<~c$5Z20sD_d14R^~VV$1K(X#ZN$>_2FCGHpoYpnq}$wr;UfENK?L
zjKN%81ziUOkqW)<GDxR4Oz%jx8U(+9dG*pT=B61REh??gqujOO){=hkFwu=3ud6PM
z9kr)k?%y0Pqy<U2T%GB`+exsu>Sf+;TfjzvrIX_=p1aFA1sp|O^w8O$()a{Q;N$`0
zc5rfI-0{n5o+X%BvOtq?HTjFLbvB42j$iAdn<$B%ACfp0DU=qCTFHTwd@EuM$ZHxP
zjaVM27$zgA-LQe2i{Ep>9IJeE51QI(WJXVbK3|&oc8vC}-q$V?tsR%;M5gN9?I3Cj
z7*Dw~(gx_uxpi>(Nq&G+?`LD6?jsn~esqWO41+_EuJ7%e{zh+%U3Z2tsp`p>ufc-*
zcymkm^=y5ONUttye<SfYKN;t(+UGpE-6n*?>8hEZw^Vm)bm)FmX3dFXZ@(bP^YazU
z1E+zAauC`S%0~0BC<*^Pi1?pNtp8s<M#n-N5O>Ug6LFWtoc?p5iC8Qa;&y-JBw=hX
z1Wc1Z?YQrH@X4-JhH_=$5VI~a5Gv28Z_`(YH;3-jQ+AtC%P`||4#I6Z?W%CvX{!WX
z$FgI`lz0LWb|@7hu~x2!tp_typQCE;M>&y8k$9YYr<lbAf^l)Tf{PhpU&RM={$5IO
zwa<j1?HjRPp9%$K+DQk1D7f4XUE{yW?-3%(>)uWijJ(@;df)TBQf9*g%mh;j>U+g<
z9Ei-`QS-Mk-x6FY<i!X<tFIx~Sti|%*Dbdj<v~nHm>)uUf~$2_=`^1V#mg()naxRE
zRV@Ar#!{8&y!I3VO@u~%Sd*QHSM#+{SF2_$ueFaX$^)F;o&=Hi4EK?0dZt14F7b>B
zFxRWM`Std&KL7zp2phl(z4ivjVJla+c;U$&Oa|{>*rUwqaPfPd$A%&jJYQ@*4z$NW
z$YY~|cHT}AQaYIvJOt=xG&n8F{&P^;{|&l%HOl{O`gx1_%8B`v*2CHNSj^P`2byUp
z2Ye3qyH|}ik4#0oX}hTD=3QQc;Z2=9blJF8I8!D4z0z0cl1kSqaVbj7N3U?y$CSqE
zE_HF3nkwg+ju&f-&1&*JXYggG?#`)T|E^GLCkD7bIS2KmExhM%L(%qSG%t&rlrjQ!
zy?QV2J2E0-^-?LgbSn@Wl;#GX&lz~+Qz9Me_xGUqkQ&EtbcMJ9bwu^q2}1gD0ks8|
z`29DTx0Kvyg<WnBAz&D!(wA=_UG*E_-N8qF9cbQ<I^NpYV~bsC`^OgXk1u3O(K~3b
zje#t<o>nOOPMZ^0n6S^v`!V8Cd4WS6=4sMSo_6CZ*ceEZ`(L2R2Y6lN{#m5}+_^Wh
zzB=M43FKr$+Pmm*!lX;&B2jB}H;Y{7>*!*rvkWsgXYkag*O?t)e+s4%jsKVUcN<V{
zY|d&(RT}%a8a+YL)tV0U8T14N>K>ujyqOAwrIMTI{Hs2ej^zsWjTr;TzHlnxPklyQ
zx>>%4Zs~+wdX?+1F3|sb;nJ}qEpo|KMvcEQfzbB3+@qjJ5I!fM*zNlkn0EiTcYpB<
zxW!6L6Nxr2Z&=%7Yn56n0zE8+T({C`XOI#-_c7|DkF`iT7>G^YL!wtZIPb<iF#c)s
zCwlq+DR2L&0z>{)%o@4phmvS&OQM6m_~suZ;5onA2uA6-6oZ4mp1kx2`V$xe!(XN!
zRL!&h9boW3AMge~Dx}w6Lqrt(m3x$jbE8IH$%uoI<;UmGFL@0=J!x@hJ<=5^(S*eN
z8$@r!px?L&<?|1ZGneO;PBw4UrUt>6`#qoxZIB{*0}!!oOH#rj(0E3GQ)?@{!Y>;G
zi03}h--5LSH82?qSocE_AO(YQ1~?mn{Cjt<Jc<*Oa3+`wwguYLcNj#wlm(J7yNFor
z-241AM;S(A?&sZcg3Q3U$6HV-Ms6owc~`!^;mG0}rTkAIir9;r)(!Z)G63m(2R!&a
zSk08dJNXN#(RM{x!YszCBSBO&U;fU|cY+TWzr8O%{UDHA(C&BA=sbS5^o5~lVsD07
zWJiZ3^}H_~jdYuz=b20fx@E=2eWVCCBn5$F!9l9+-UQMh?>>mU=y49|qRo20`Noe!
zcnOmE70YMCAT^J(m<+{Q8&tQsa;b7LOkfvgBah~flvbZ31x7%Dv=2?ZRHq04=1tIs
z%DV%@j|N2-sc8KpeHy5{+Y}O&>JZJY2G_t|wFx6w2)4+DKu=`YK$+VS7lzwTwW*Uh
zER7hD`QOL?&joAFBUGgRiM|CiNL##~rQEZsFqUM25NWZQ`qE?c_o>~C!wX^7$NV)b
zF*2ytJfC#8Nw%~nN|e~wbzS$dx`@NYs7c<;5NsK92ExH8fLi?}*7IJM*VDER@;Nij
zS}gHUoC@<*;P<WsAZGd;fdV=Tl^g$U#r+K)T-!vTVy(Ib*nqs3KdVYo3!{V+-6Jwi
z$eAnajJc?*l`Va;w~;de20Pe|-2u?K$U~_c$%omc2rHs78m=;5s+HhB?k-ojQ381A
zjAY`4%H-$47V<a51f`u^ua@cj#1;wKbXnl$-iC~!2#8B%UR=>3F;Iv~^5*U)p;dX`
zzBJc`(osePb`_VfsRbQmrz<8Ty&7(5JtUSPb3Ryq?nv^7V0+M4!v?w*WM0Gq6iO=0
z6{U954I|qg7WKlZ!0I={orG$w4R~p?+>;E#+u**QX1Lc23}<mcK@j3wl6N5qqB)aD
zJJNO3YTzBd%6O_p2bz7b`LIQ%Q&%UveU(z*5EyVNRy3lIDjz~Dkjm^Tq%yl0xtZS)
zkN^M2nfx7Z4o~|-nH}n61r0F}4d}e6J_N$M^caRNs*T2tWQ!CfI3L7<WHIdYtf!Kk
zIP|9&Ls>1cPvKo>m9j;g*P;=&8iWa_3<B%73|y)vCvTXafCB?@<s2h2m1l{|f$|fP
zB2Yxy`7Oz1O|=KIwJYwwcOu+(@N}ST0Z$GZuR}M2Z&Y|;e`B59a6@H*%_DkS`X})}
zHo8U@ud|bjkpA;g{y$&lH(sJTPT2SpY{5?b3221eeNTalOb_N*s?60qCVk5e(Dp}+
z<ujlV%Y2r=vfXK%Lg%?f;ER5R7bTg(pL+oIe{^}zd?>13zd9a=QR)-fxMO5y#AQa(
z2yNgL$L>NYv-NR9LiVKiM2xb_A7~OPC1QC67;~G&iJLIb(xH=T+`4fZk851}=_-3+
zse%kgrR|cuLZZP}v-$<1Z;r8R`+_7n;h@v}0FB#|6M}&-ZCX(B<-(!9iuYppOOBwc
zZ2lepdH(HdXi86DxSIV34}a+%yp70$=4{>v2$4?3JFDb~{o--U573kR1SlK=qmpzw
z=L$j7J?5qP8{XTu<yVKO7K3-@g_%Dh@U-Xv09OL~q&-JdrKEeP0oUSJre-O42OjwW
zNB@0C_OA#3aoN0(xU~6%=ot|7>1S4OW}lqDc{`7CGn~Pevuq{8>hx7I>+d%+zK4#(
z4E)?hanm-Na0EV3xU|v$1~!k%K)@2)EYkp$@(ZLJhO#km*}{g4i4H&kJEgLA)x=B}
zqGrkbzRM8P7dD|J=fWkYU#7Z$`-XnVoqC(po+_ZnCxf)#MLSspfSD*r>`{cAfJFPn
z7O+0J?L-eVSvE$gke=5n?q+Xac?@K#D`*tHq9+m=^HOP|AVhx|aC)>WeI-ni4}sKJ
z+9db7LAqU02<@S}uX_Nhg&z?qjfmSb0Fkpd-!A$f(~f=L8_{YGL|ys-8*-F38DE`!
zG2HP`!8-(i2tWTD5?50L<wKoGSUrd+RjGYXz{gpT64Y*V!oq#sjCA1_z*l|=@ST8e
za#A-WAzp7FjP<XE({pWL6eA!<g64y}E)X18z}Mp=@bLK4lY2!sIftkx9OZo4+GCfd
znul$}!RExc^Bgu4mjp0kU+Ay}s@ZRF4Hal;puJNFR!04|1V2@yiY!6rET3QosU-CA
zjpb~b#aXtxHkU7NoXfcuG@VF;KGmLl<L-4wx`hLPV^Rk}Ir|wF?(_D|GI8^9&|uaW
z<C-lY-E~31S3jA(X+TpAX-*OGDA*Uksh)EV)jn!v48x|DmBW2a-B57Ji(`syz38n0
zC(Yk8u7Ng)j?B155*JSHB9&;5Ld1UGxKAtpuO;IDUElrjwFJW(jx~7g??i!1#F8_S
zjF_I+8|=FFN3BSqH;30R^+qura`||!qQB7sztLTaK-wKbl;SG_-i(UP@+a}oBgq(3
zDMk@nMPVWXPJnnL1ModE^E%WPnk^=fI8>Wl9~g4@3HeBr-#AE&WR1*LCpAw>Clj<C
z66T8tIj=MZTkc#RGinVN2iFEhqC@(1GgIF+e|KusR*1cjiQ8CriAD7yYm|gTC}&p?
zZ+{a)9?_OYQFds2EH_;yx}m^Hf7Wdo_M;55t8Pm<q@ntPNYsA0M|^cCI}@3DZQSLr
zN!u8wL;Qhr)SE3JiB79v&6;L{HlT0jwn=?Q(|SdTCHv;Q(exffUgsmZsRCG%S!@WQ
z&M$Wr0#@=cCsF)MfdW()<~x}J+gv&O#O~h`ufs+``MqcuHb~tvl=m8Z;H)QHVc^0j
ztjt#elonR%qLT-dOOjf+yb_Lj?<7KkoUw4RE$AuicG1zWqjg<YZX$Cs&g8>ZzF1)X
zv*KIpXyAQmb7${AcIH1Rd;eB&ip7%Dl2;OGh-G;n0-!K|8eJ*YfvqJ}_()#<)mP?J
z3z5!Lqem>{4qcI+SMdkR+n3~<vkc-Nq7L6hVJw7|8vzalV*R!CKQF%!d;qw?0`S1`
zSjku>mOETm;34L0s#>pP0%nP8OBYZE#B9|!JZ3{#U(*`w2?(@^24aOM&$tQv^O0uR
z{Z{uONF~?HIcg1=e0^Yn`S;{&bC^kd0_jh>btaTftZt1?Htt&FCibp-%ZVHB&?XZl
z{Rb!sJ~;&Sf!QFoQW;}-GeymZa0W7OK`jyl-V4UUw==k2B5+{cf*`$*;GSkm1F_dy
zoma8wW+Yrx8o`eRJ=D@V-It2C(Xmt-e$^+Wbhp3i@^1OUXU&%|S6dD8JK_a$e7AUl
z_3H<8lUvYn46+bOJmqVqpJByD`M9x74yS}}2M)nIphJEDR5eYI?twc6+Z-UKj(>z+
ze~>&SChzv5^mf((C+Rc<zGc`mU2L~_XYdiH(O&=yiUFG|EufN0M^GTPAl3rX`vmXZ
zd0<Y2#jvgQhJJ`AUOiS5j63c11~6^*(9*+Z-LM=*N<A6qCK{r}_1ux#oYjz2vTEAH
zQzLYj(hKl{8@8o?*;w9ihDDxx3yQ=7%bgY~ry*#HlS~3LA#N`{vu+LWGrU7Ay2KFY
zxyC?m#B-r`n7j?q*L|{sm8Ah-Xvy&1=SVjJAL#EQeJq($|D$OgksvCZ1NKVn^((EV
zIWtcT`1Zup>Sey7v+I6*;<>d)HSxWmg<<gM-VC@}iWQ=7S0kX564(GVp8@8>@1eXg
zrSV~xd3Q}4>`Js^#4e-JN8rQ;+x>unnbOW@8=-qGN#hJnhIw8*iB94#jptx%mlx1f
zHZD%wv*=3Kt*K^V<qeo2@;u$~Poef>r0ff4099!wG6q|n&0RG7^MJO$0So|ocINpe
zYC^c_&}~blf$x?survvWdI}raPjMn_&Pbd>M?CMI5@I8Uhg?c)(R({YI1KwNKAwkF
z*u6K~HVd1UY5x|64PiB8oY#hVu^VPqvFRyZKo7%u7i!ePP03q+wnVenNQS5%_|Lql
ztrA;R&a&ue3BhmaVWNOE><<B%OSK^jkXoty_cZJT6FS_tAChpe=VmBy5F&q%!}h=K
z(n_l8ghwBXlVz36n*$I^dQbr*n@Q5_TxUm3WYGHk`}o0kryRNt&1$zYof-fiLiNZb
zluphKgc)z%>D!l>SS2IMesMOx3yBFe*%HqS8(ff%J^NbNm*~?vKeBv)+Nv>=3df;?
zh;BZr1jF~4zs?p~Jo$^8@R+_a&usa}ET=a7d42c)Y%^jVI5WY@ZV_RTN8hNbX4^eV
z2k#=wml+L)OS2z9E^S+~7Or;h;~TNoxV|gw)<pP4z(4}@gY2;*PEIy)ioTvTlPwmy
z+81V>x>C%sC8Q5Sw`7|VBw)ADmm|~UHYHSErn29&_%^1N_Oy=w6ognv(Kk*@O>XsZ
z+j@pUOo0KJ$k8tnGmdZAbsup863nI2{J(TPfTR{##rk_p*r@NEy6r+akwGKne`I3M
zbI;B3AA;Uis0sAn6Ej3WqC=2unS9^E>eHkWPdRg&vyFH(9dz;vSTkirrQ#~rB2kzh
z&sQ4jwv-xwBUmYu6MJKfDj^5*Z#+3U&4MQGH^!uvpAU}jwE$_-A_yhH_i4+zT`Pz$
zYwtY*pU&Z57E8(haZFK(UHcpv4(ftU;AX8V9>nLy62jp^&aQO}dAJRyXCdv?y>3X?
z$|sp9SV9T$zmeH$pj0CJj8Dn+0O_5(l`ex!%vSnGVm6Ei^1<>$b_th0T(k0OzjMPw
zB6fpAnolC`F7~?x7_vm$zOV0;Mn=_ci6lRE@PEV~?83K5-;_#Y&9-|*a8%+UV{}1x
zLI2^ke2P$i1KH)4QyuA10?h$md-JdcXpvrPiD1ddZIH=myMvB#?Qdz>(V|*;G&m7`
zgN?u`k?pk#w#Sr~&T1(Q0vj}E2MfVR3{3@r&}x7Amby)dH5-l9`|Z(_jo2C1ndcIo
z)@x`~LRQFDq94~Jp^9OE({;a20IuK6{|!R$XA!q&*T?@ndZtDt+8#BTxBd##guVh}
zg|inBF1s2%*4>WLyyEi*=TL?LT^3grVK>u3Zi-ao!DmfDrQnONGr`XVtSEha9L|z~
z*$ptCN_2?(I@W-JpKksxfbhjOP#4$mB$$(PeLrZ^DL%LR;JjUjh17_Vg9dz(zmB^5
z19MpadapFCeVZ4qPI@T)Ofb6yF`1u%EJfIzfr1wBS8{gc)oHUiqNczSMm#W&lnof1
zxlOJrmWSC=4MqT~#&rEdPuxsG#lKKQqE?Hsn4)!#@)0n&TYk0WbSV9W0V9JF0CkpW
zZD)kp2C(fW#S93FJc|K`lhFYB+RzG*)p<a7P@&xm8j+TN0Tln<dj5mb6fT1;Hh@)f
zi-bu2k7W#QfsB{*ulM}|4z*fbmw7(<ME7PDLI>&7U9ROjWLs}03@#zga3T#Rc3oW)
zqwp;(&#gL$X57Xz+~doIGuC5HIDjRhnx~lEuUHJ{48ujgk`HrMSxZ`iTG@Qb?Oyy_
zm2{;ee8E4Ldm|$y!gyx{Oor%3W}N+!UVh!Z(l^0(6<&kJhjfYp+v26e`SaY>gcvPg
zUro>DxOv+6FfQpoqT4b==;7Wye5c@bCx=@0I9sbssV1u_vJ^0~M??lobjUr7E}!_#
z$rwEKeGE=2r4ET(@JUBnTwenzBpJ%QKnv4|W<10XnBQrxMJ!%rcZ11n4>E|m5>BI*
zH=EX*1oW>TjA@|zJb=r%QhIeP)WJHqXmV)6{XtQfN-_mAszkdOLr&T;HX<Li@75ih
z03;wi_Z$3nlg3R(_?H!HX*pE@Vhux{j^H@M8>Ysf6B@GV$Mi6_LS!Um{W|9VcmeQC
zZ0>#=`{zh*u+yGXkqj3!>AOL;71ajqgyvYWg_*-2_`laP5*a%Jw>-Oz;Vt|)r{)me
z_BSZ*zr3&xBQ5iFaMu5&Dfp+xG)EkH`VVsa*fDef*bw!~n^)a@dC-H=>j_@}8?uQV
z`nOQ-oo1>(Lb;idhps$-Iw`zROweW)K_aLWOrDoz@k~amP`@!cid}kzYBB+gj3s0s
zH_Qv8m=rBx)Iqa?4CDr>LPV(UyC5GfCJvq1Ibz!X4de#6Gd5l7CP627BJ_8$k938D
zAiju@e?hO&Q+}QfuehfNn`kmsq7v&YQ1B@sCue<f<NZ_FalmuFyoj|x!?`}c?!68!
z2QwL0Wb9C@0Zl#m*hk#vDVd{L!v4FF<W2|sUkH;UBK3kXSlS2TYoK_Twvl?BfV8g#
z@-O;}znz@u3dp_aH$<(jX2Nwv$O}Ob?XFJj$iqIO8!vK@vAw^55z(jRxG}acKu?yc
z?t~LJ^Ym4HKyZghF-SM}o@ATRN{%jSK>ia#|9O$=CuIcmqps&7mC%^~0$=-{$c?9q
zu@sB-gVf4)l`pskGmofeC?#tR^Wk|#_$6=|K9<vecOqyx!MAh>@j|i2Bm{0iO|yj*
zZa7sI;GpEK@E8ZYi~j_`DBHFaYw&)13}{KG<w!9RRt#Lg!yAZ~LJDY@m+#7*7B3Rs
zf4Xw>TZ64O978p>^+kXhJEyW`k>}Qq?A(5#<5lV!*Mi);edOpAzxM!3>yt|MHT`Z=
z17VlFG;oBh%X!?haOGyu&yA9Xsly*z4V^cZ$aTE0+fn0#IZ`wdA=VZ6l>}<2FwXMF
z(Et9La-~`>1GE+i2(+Xne2IslnN-50y}K~YN-Sb?lDt31>H5E|V8nz-#I8w{7S22|
zDb0gC2`R8LWwnmw2mSrl#jaH(&~&GX^+A91Tm)jwoUY&G_`}^bFs2q-9(H7+H`<ai
z_DiFVFZ2K~D-I)tCZ-urI<By^lh`78b)luHpqBiN4B7@`U7m+``z+^t-|UWok-=F?
z5YMKbkNVbBl_6B=zrie{4e;t;@ZZnUwC*b7lGuZQUI>S7J%(uR1(vKIg3`21;ces$
zUv)i>9^N+}`D##SpBGlxeCW;xMqyEcjya(;3~V74uwuqAJjf+3(GJ_(Yayk{{nBw}
zDuM-Y%+tDPVoz}&OlIl3>`KW2LU2*uCm|zXb7a{W21?;4(9zick>L&2*BsAW@446a
zrZt*BTY|P;$;Jel1dQ%RPy!&O&&QN_W@GI(eOiJknr_9AlNJNUh+-$w0%loDFke`8
zntc^WTA_n7ESwzf$46k`0nN_>+|Xf8^>n3&qU6m@UpPM_9o;3{;D{8uINcR6>cHwC
zI!wAU-x`SUMz+)Z{%|~dH9n#1#XbbIV6L71`g0tDJ-}UeaSn5CrI8$Ol+K3+DWzOS
zcVn3L5R?OqFs{d++IT)wd5Qf|Bzt!E4}?|-h8q~Pd~W;1sB+XEnHx}$kGaZcH6_%w
zzeA2qx{blm<nr%ERx)4Ew+&x|jr<L8ML)i21@jItgcp0}<!}&rym^1(Zv(FYS<qDn
zB)v1EdT`gN3@y|S9@6&;0mTi2Q=);on}mPURKpv}Kv`9ron^NYuoXdny9Mt>29RK|
zl_DgzpQSyeCljl`ca=j>FZzniNA#UONkZY|C5f-Yz@v8;KQ-{krH?y>Cg3JW*aRF(
z-DVdE_zLOoSi3b2UPA_d$6bKh9*RG9n1X(W1hds^wF2B`o$-+St!Y(ds1B2V66CbS
zo3xzhl7vriB#n{9n0*Seo(`~?YCQIR@|{L8TeCttZQ;7G3wBN%=rqaZ@0pK0-RANV
zoqO}FyM5=1w=ko|ZRL~@g=xj+*c8oWRFJ_e0>PN(bO(D1i_<7iD%zqFsi-AGo4-~{
z&Q#fK8EW(74~IIfol&{kdA|lqr6rf9p2P-sPYWW%sz<I_%R_Ad<=j|T368;6LgpFA
z&U%4@Nexg{aLj7dD+*pTF=QF+L|zBCg_^O3oeB@FDTNw5?eB4Z_-pNN3Gcrba<;5`
z%s6BC@9Jy119X^~r_Kd{s5xUks6yJU4$lTn>nZZ=5$QO~6rbsPxRmh|86<vGGq2MU
zD|H*`dv|F%DXP|0BM+rc(Qek#K(}3lJe{Au`S)WgJg+?<lObmUuR;8IQb-ZGL7KM7
zKYp^g({kv25r@6Ro_wpxZGCO#?ub|b7J>DmZ3_es4j_ZXzd`x18ojtlKJ2qiz;K6T
z^W+U_2E5nA*kPy`&**4aV-G7!#k73#=Mmp&bSyUJ51ckmUW|>{159rqz*Iq7VV)Cc
zq4Ial^!lPzs6Wz|@am*HI9K=zuw7&3<z_OkLk$fFHb?A?ZG<4ODA>SVX7HXlEz;z^
zcCuUE(L4;tVs?+$VSPj<A-@*8rMA&W7z=*(RAJMQrNOj<?K;?8I-qA9IQtXQUKLVs
zx()~Q!+?v4ZiXBbn`syr#`dqTjm-!C{L*Uzn7(Qj)hm2t_20FNlgNT}Q7|ErQA=0a
zXG<8mvK%WF=Fx4OpuyU=%p`lLHRWn$mwfD_(_6ej5{fqcgkyi(b|&*#er2Kgk!W0f
zw}?Ii^>IBJqf}**b{&0==Y{y}>V37d%M{yw^R>fewj~t%`(1)oAbL&TYjEq1cQ+W2
zHkXHSQAnZXS*Zi~aVooe_p#O7nE&n3Y}7F;fcPFMu%i149Qw4bvTIT2SRySHYE|j-
zJTDT|XEQ2q{L5J(mWSRE$@@n@cM~$8TODjFyf>mZu5hB1&aa<%x;mm-DVJT?oN_+k
zioEsSIY`Op*5eO1OiJY}8>R=-UiD?GJf<g$?yt4z5sUuxfF$B^VqgH5VZ1TdDFV@3
zAmo~0-!<x*P|#hw<Xlx;wYZ;!&{(tHIy!K@dZ#U)?P(L~J=JGFgXL61e`K0`kyefB
z?XkvPUx_^AK_?Qs<h4%n)Q|<=BAr$F*!AY^fk=1b_DMz)Y<cZWZ;5Nyl`qtSQ$dg1
zbxvgkk_<(0?vh+TvB4S)9`p=v`#>Ii{ES(p5{vPxm)j{TYW%QO4K?;92M-1uMPo@T
z+~qr#)Dq@)9xoo-?h1oPW>z{_aBURFCpx_?xHk2?+cxmZ&GmxF<(i1St$X-oYg1UF
zr=LUgD^He<<zV!@F8Dpso`mwI;#OY9)K3}7mn|m*E#oD7#r-wX_LlhkIgh<O*uc(E
zJLl3(d=&KGk+tAvFCiGa<lj>Tm7+w0E1=;&BWJ66Dr)PKF;wCdXN8L@)!aE&g4-ko
z&!;c6uN{e|J(fN<ixcf^jY#_aw0jvB6`StOrGNb+TmS`wG(|S*eL0EsOSo}*wB%1O
zG38>`7n}^;N=r6%3oIU~m0v&4xV+|9{Z2b_w378;<%6Pf-ea<}(+m$viv*Ij*O>}C
zPB(4O%8stz`WV%5w>3kC7e?nV*@riiW`cCHIabhamL^Hm!vXrlI(IT=jYe(1KGyOW
z@yeyHEsr&je^Ru|{}SpbTX?E}kMP-^a_7xRtuKo~%nIl9N>hkHp7sK>I*${w`>^K)
z-{{I58+cvWqH3!736)Ld7VQ@M^C|Yx>So&)81p<KRxrQ2^18<Z%C&dTcnU8Tq=c3p
zJH#-_UBjw4-)<Pt8%vNGy2ZPhI=xkSH~T?N-^p>VtjV9>n?Jo@RjAIzsME9l>h}@T
z)7+hd>{^GB;6uvXcV{8S$RGV`q4{WitZmn*(ZyM?)CRyg$E}Bp98ztl7nDU>+_?VQ
z?)FPEKL<3VZn|pshm(Q57FU?)x$F(Hs<u1wh!folfno3pVl_QWPmMR<Q&euMi(nKb
z7-|_;=b!R8xl`v6ou-oh;wAO*WW!2VLQO5$RoABN8^;aae?2u6VK&b3EN2ZoDhr%9
ziu4y@UQF=$ganILt4qsXmD$zJvrOsmhwEY#`4!g8te$7x@s1;xqCye9(n+0ZiV27Q
z_wlb$>n{z~P;whdWd{$pPP3H2t-?wn7Q2LkTvq@254~xk)&i7j08YM_p|J*n%`ck7
zTRW5c^44`^>Zjv87B1$?I*<m*Q!>#vc$xP6^AWh*ytUvFaZM0GU`m!^vN4cc^FRIi
zmLLedXOjmFQ%IlmV|&`sY)#$<?$rqr0@>u;Kx*}+s@<;5#k>aA?<?LpsZKj+=3-Wj
z0gj!eHo6Zjl)pW&smRSJYPyesvIcyF{Bn-h7nsdtuLkn6J)E|JIhs>(wpN75*shx@
zlo)kt2<lV`Ix<LECQOtkY@Y780i@Jwx9$|d0-Ay&XiwfX7mCh@^vjmL#u}ZxIJJ$(
zf5r~!)O=bCZT?Zp^87!$YECw>j5fyX>jZccgFa*!rP2M$%q8Fk!D3MMjpv2So3nvr
zT?5wTrU{-R?0e2b&U*wjF3a=|6%gI}C0*IGW7|DjX~9}^LrJ`!;o$){jNI=5jg|{C
zfZL%7@4Vh}Hk$(zfH<S&o?*EHBRN@^GcasDe_mj}cE7-U^mi*amw?iyYw)<Q)n9u~
z@F;&5ip5{v-e2C)RnAoF<gs=?79yq8JUxN+R{r%_{@L5@cnNP%3KSn5jQ?B=mt_4y
zqF`<a5*$-BXRr?q#@*I-nspX;Qcyh>Ia$Z!c0Hh7gqd3ab#5U4cI}T8sHPU{@w$1>
zPDDTJ^NOBs8zd!qg$ezr##b<z2gxTT#_#}eYD{ZLHr9Y;V)5pw;IxYwuj^%1bhnl7
z>Kld4W{z@84zpE22z}tKp&PC18FwA$C5>r=_C3?}>yHtz&Vq2a(@iI}9Vf4=v}snk
zyo2e=R!7$Jnix<8Mj3?mJ}t+h@IB3`{C&}<a%#KeI1S}D7h=NJ*jfl<P~>oiu|(i-
z$btPXpK(|GYCzz%GPK3!GrOfwgr>MWdH9FS&8TV8#(wGUu95tNaaEXs;Q85$Y?h|n
zKU~^MS|O2tMNG+5QizYfN|OeL<t)#C_^6GhxUT#8sXe=UKU|~wv@Ydgu#u(hiFSdJ
zeNwkSZD?_~;y_z#hx3wsK;_cCZ&$%x@gCPpTUA?-qDI4LN7~z2^X<M1tv0R7O{L+L
z=y)^?3ou2BmMQ9pWT0;n?k*bl`!Akxv{)OOTb0YC0W?Lgt~=jw`7*Re*Ckx?mLF`)
z`?5S1qn6C=vw7Hl=!>_1Zo!hK6g=SO)~~-ISff{`8)5p=Y6LuGGm0P++z5($hboCD
z<@Z&^`|lP4ANof-w8P{$kKBzg3D%7f*(xTEpGs$L(31$H_(j=&0v}SpnL)0aoBhKh
z25B|<?REqh-|U1d7*t36E<67O_Aa%nsqdAVW7BUdlP5aL#paY$8Ux$KFdNHXgQm%#
zK{;A6Jm0t*s{@MDjdB1is8roumlLtfzbL8>JpO#!WGGkHYPjV*(LO_C*^l!&|7(?(
zhco&4F{4KYVHTvf6Ch*#Zd^!&L)W_#N;`o-9P%m6a=R$Sg(_S!g8LaSQ!|3!U8Avp
ziiea^?T}Z~Mgj2<r37%x6r63AQ*hIbW}Qx75k}68@E6j@65_jIt^Qa$Kef#{JGglI
z)C#Pw4$3sD-F&lyQdgZ!jpOY7qD0)KRD2)c_paBwLgQO>vT_FHf$7U>G>f|hwoC1u
z1>FQV@i%GO?+Is)>2ya*cnCzs%V}4jrhw&m^!UgB;@M`2Jw|hb@qdg-|00j;4sOvq
ziX8_(B2W)-0_<iMZJ|QE^+{ccyj5|#wFt)X<v(XM8|?jxfHccvp0AxUE4tLFsh6Q9
zJb^hy>is&g*v>J?;NcJVck?|)BY7q3%vBaZ|Dfv6nWS_mLRBGQ-Xstxr~9my)~B~_
z&w7{7Y5PfpsUP!*yDC4&?OOG34{&U^s&Kb9tV+NZ0<mtL?ZEVlkX%oBW*ZuJ{Ng_j
zUgMsX8_Y0sXVbjXx1j@*uGYIP7shXsEXL!F(A+c-p#P`Dpt>iUSMPG|^+*wu+yOfM
zq_C=!GOh0ovJ}X|aJR0R^f)istOL0}B@X^M+3g{s66UypzAm<BX{O<(8Q~+PJDd(0
z^p&vtimXQQ?{?fT{_(XwcGY&>x^qm?t8poQoMiJu1I!jp_RLuV9!dU%W9^TBLMMuy
ze7knI$c(%{QSzjA1~Q#^aChY5W6z070cXK2b|fKTk_}P$;X2Wo^2@dDWBTHRts|mH
zK5i_+)XSa0D>Y#wyf|a~yS0*$Tp}nFGNdwMKmGXBrIMce_)}Y*<tW)qduTOgT$`T6
z*<g4Xt}Bbock4;c7M{xoPrq{y^Ax5>O9Wqw=gnf#Tk>CjQNp5C8jimOW7duwV8A~Z
zux`p9H`5tB9Uxuo%gfC%^jDOhR2W`*S#6k|7=KpmvTw?5(&t$G8Y+nm<A$Vijt|Ti
zdJWcNYIOqmPu9nXrPr?qsY%jiq8f04ha4Hyl{Av>wkRU_!E2~UoB&ULXEn1SsoqtC
z({zBjSRlbW7HQdCywBVmmJn_vDy+*K+cU8|I=H(cN^)K;%lKy{)SrDXTpeBM%1owW
zQaS(m;i5^7B1%;#%|-WZ-D;uEa;PPuU=%8KCxLs35EKR%X@==v0N5*{S=<MIi(-HE
zPY{C{Ga6R!dX39&AdOS}9(N6)#aOJVJpcD17M;^eo;GbM1%1O#0;(mJ7Pc$jBS&U*
zVE)B5`B0z5IsHg=l53LF=q;F9jMF<z&edE@Z8AyLkcHcQItH!|Rgs)p$m?SdDSM&1
zC~!3M-{gdlKB}4i#~4dIw{wKZIdonS2=9fb>D%3N%khg>g`E*WROY}`Cwldc25Gs!
zgdJ{wnO@5M4A=&KDHxzR;Zpk*!F{8`7tWrwYl!x<549-Y%2_F&2p_Vfoc_zj=&yTT
z-s#KX-i}a-4rBVA&S$>YeD+BgqnXruH>RE!JT1RI2Ps(%pJ6|YbRQ;n6Gp?S8wENd
z%q7JDIkE=OWkr8|oS>O*Xq+&~&RSXGenJ3A8$+!``BW1|qvvt5y7McI$U?N-p{fhB
zT+2xT<+iHzc&UxStD6!S)Y`rhB?>}IZRRl`XXCpv6GUKld{RpPtjK(Ifc8w)L4Yy|
zDk>8J+9mHjR5#ED;fGp}=vQQtn$|f^Z{&Ea`1KBQ;YVbqxTdxF{w(f{DQT=S^Tl1*
zD88n_U$rPv&7MqI5qA+<Zm%+7d&TXqzD>Wtz+PphzX{|W4St6J%o!30<(bde{EEQu
zfJ(s<9Ku@J%_d3}Z%{jG=S|7&tvh=rzaEk0jbWSy{yMj$U!{3B5K7Z!FskR*iM|4V
zF0Y-`no88;8x511WZO`t`Y`)60E56;(0BNvBv+AgH<oqm`?s6$igiyHZ<y4j;MSVl
zQWm`h0wkQpZ^2!J#l1e>y11Gd4Do*BosV4)M(ZNlY+9m{LQVBZF)J57Tc${dxh5UY
zgihz_qwz*rE|fk9d41x6N&cbM$Ipzw%%i9Rux<31v@5z5ko5Cik~hTi?6|_eTf6X8
zpyDA9b9DXJg*KX(JdIW^atO(HPjy@*ZcG2^#^&`5MQR~{O#k}-Tg)Rjw`A0Wiftf*
zJd|*AXBZs6U-s~z0@#|1(-+kv1XUStbj@84XHksmeR2)RmzGb*iq<-odks2h948En
zI**0<z<>DNhF$R0PH)3$Pthi~lZ}^xH(ur4<x(vB9lvUP{@W=Pk6d1K<`*qvLG|&t
zsfJ{9b1`WB(IxxJ>0g~~#}|vPrXA;3j5_<)43M_6>YnQf(wzAFsaDSgd5(wCF58W#
zw@ri4!!+LW+_M?qxBTM#p&Vk9w_NU9HJf^l`I73&-GW(%B7Gw%=M@hr?N^xGP~~4K
zF9w^Ly4Uy@>m{P+Bf@YC<sho_1pKp)V!qqCoS$MG9J=W6pxZvPm0W^(hKTvS_P^Ba
zAaC#p8+v^|_o$NzE+#aef^zn`053ks*xrAvTx0>|dZ*x4Wx_k**3+lF(-VW2DSEnv
zPOYtMmlI7S71_V0Fs8eFiKZ3$%@#lUDMD0bHVc}W3G<2R@e(V-;%vnvjk_C6?^iO%
zhut%epPRD*)hO>)7FV<uoE~K6^9oQ!t?Q|IRgAp(>L)(9T__iG-Hi0jUM6Wd4G5?V
znN@qY68$lyB%D3RkAlbu??q}m1dexjtT}Z#OjRB!uJL>bQM8=w=803#^O6Vw<DW+b
z(x8W1=Xws|KG23X27Xwt^y?K~N&f7hfzk?TkPj@#1?MxKHnS@jc^s^ZdQXlO3k!d7
zAn~WIUMlaSVj8h%=lxfp;m>w`_}<ZTx&;)G*$`UMI*`($nZ!o(PAfObvx%PV+3xQ3
zcc+Z94}u=`8AZB?`Tzl1<|PfNQpZ={T)TSE!95NQiBO$`xK|n!$V2i9v4?U!*_imD
zcgb~6Ig|lO7tFFum5+>R=h&jiQg~Uf%G@vFPowtp6d)2K|BrVRzm*EhazR7xm{<y%
ze@u*J`4qLQc@kY-T81OCc8g)n8vNcqc%T8u*-HUCzV-=cV?=9DrU@Iu#2*ywFjN~F
zb2oGV2ge6~ros*2ZrQX62AIOKpc`C2297$`_!tJgCs0xAg!Tst9GrBrk=;YYYzRV#
zt%bV(?#LRlM^Bl2z$H~?FRGpJ;Ye-y_wV)#3t&L$JF4H^egB00?zQvh7U!qF2jdq8
zVC3u2YH&yJcsXf3Bc$FnhS#cid^rk?*Q#m8M%Y{HX;<Ik)vr#POddZtsb+cL+(>NS
zi9sG~7M6pM8@%(^k&g9jRA1ZGdeSaHq5{g6;;$#B#)`Q6(OB}@83vJqL2gULn`g>`
zK3N$REFq~1=2U_Qwgm<)1Qkxe&{*siU5bJibmZv=3D4t0xkOmxk57WR;&k9V!slhd
z1|u~unWl271K^_>gFaT2=jYyFoQilhun)#Y!H-Ldb#;&j^k7_sB8LIm2TkPjA(;Vc
zH6FrAVbh;EboB{DN@HtU<=d03rlrlT6~tw<3%tYNH|gg^>Rempc<iX5I)-fTs4fji
zU7RBxMu?4}f@@wdLtO#m+cN;XuF6&fz6^Q2=20%fyjuk(;#6*e7pDX!4#Rna4gNKs
zjLNQpZMU5!es8v&>d{2yMK-Q~P8;kT77TSA_oce$2GT{3V{Qrwzie$^95c%;tm^_!
zy!3H_>nqa>G4SW$LTX{jIp6&W==P^;p;qT+I3w9%?1(h&yU@#FW7D0O)4)x;4+8Uq
z(P9fkUV2>+b@a#&!{DPW&#h4O7!Q0@m(76;)MAgb%^+*so}+Bfi<S;TQCT_e8(FNQ
zENLmVQDy?6X6JidaTRD@mT}dzuIno@eAbpvy}EQG&2{ZVV2<<?Gxt>A<=tpM2gbA?
zzAGC=^-!F;<P@;z__(3QvsC;Qoph2NWC~A}S6?#Ta=N;qBWgEwrFUK=>CLxkh-NwJ
zUXS-E-Ny|&J6^jin0YrT12aQ4U8%`~Etx57<a3td4}@(Cfg?WC@6+`thqJb2k8+Fm
zM?=C<oCZb%Ik?KJ*DFtdXC`)s-H+#4snDaPY$hn6$_kNPzJ5z~h0rz2HDa*XdG~Xx
z;BV99+$Rj(<MH}Q`<5W7Y6f5ZFFeDG2>Q$=W6!@1dw7d^0qBz=C;z?Fm|WY=3n-a6
zb>Kd@VpPwXjzRTn`vKVKG1BL^NlBJ<#gx!Z(tVuHhH+D)TB@=W>;2?KtH@Tn+195e
zHy?kzdyQ39a>B3Z<#EP5wUgec%&jN0jr%4N!5X>q8RcIyu#rF!JK9F78j#wP5*<|^
zT7%LV2^CeSzidc2*-+=ZVm+bFxm_}C6vdoC{c%O{17}<INz`c5t6Otmg;Qslf@|NO
zdSS$NPc6$Stx8%SrESE(G!5LIa`S@87NIJUSZ6X>BpYLcLieO2?YFK2uj&ySFrHpr
z;;HCv+9497)6(0SbDm{;7WDtVjN#1a6P~2&o@N@fXZ~TEn*GNR1jnkd7bBmn_7x%(
zBQ6vy6ipT8XsX~bJ6OUbc1nrqU!XubHdOxmJ~`7rXB(tPX6-8M%9@3?Yu`GvR;GHe
z4y5Qyk(dCS#d-YFSowP;Y?v>dTH$V?rI2IWG56be9<Pw|#`GXSAY(CD?Bft*JMV`d
zhFcs`;`x(eVd(5KJG&RoSwg`z4ZbOdF8+;;lw;A?;1R8)Rk1=1QClHq<1g<k4GO!z
z`pb3m`V-W$D>Ee95FKWuA_ppVk*UbavZ33!)b4xnm!=WZ3P0z14<Mdz5+FCccdV1(
z#NVoOSZE?jg>NPMm%GJFUK7NvMVAuT9k*x5ZI?3m&8o@LbgH5^PCy9J(flqw6Fbt%
zt8c{#-Zt5?)}FGQ&iFHbB>uwtUmT#=zr4kAFb`kPy6_u{kbePx9FTA(g9&=n(dpy&
zYv&*r=?JIihyjw8lwYhi4MH3qqZ#0JPm*TeA>kWJCKt(xlOObd`N+mjmU?qZ*Hnw&
zGzdN3)lw!XG}e=#;zd)Nk6`8utt0_+M>D}+eiq3p@UtE}^Yi`NUoVz}O*+v{nm)ky
z+vFwgC%yr5-Fxlkv0Oar<@Jw<Tdh!$0npG4=YeZ!5T&Sxo5Z9j49z=DQsaz(O=$=x
z!CRk$&aQWCDrtI_)kj9ilWKQ4DJ&X#=Vbm<aV(mbaOfC@3as8z29Abn_9`!=qTv4e
zgrLhDCf+)S*OmvsozIh}5PFC2K0PO_CT}@hZg19~r!Oh^eiBBPuYV83;z2nWaD}dx
zys7T;zq_D3&99J7vk0?g9<ZPIfd?q)3otnFaQgkG)?;BU=1Qkkp73)~{ja0dzY%FV
zWVf^isGWAKm6PW<>weR$k(12e@q8K4!~j`|zGc<^P%?Wiq<$EI7SUlE()0Q~KvKk+
zcqu``Hcrs7_(aFH^PbT}sSRv9MUVEG<Kw{B%o4KMEP34_-wT{&47?|i>Ok8@V(F11
zNT`egvIXWEk0O|Wb3^>WjB({>G8UyqOu~C{z4=A)eqt`D{Absbhr?pEra+5fd%Ti5
zt}GAI_G$FPu@WmQ&<>cvmSKp!z3_{qp$v8)HF(Tf*t`Gky%2lw6|hh#eTreQZQWuz
z>N50_FwBfTTU#ffusAkxioT>9__^evFQT~XqWQFH*<Wk(UaB<RJ}T~nDtK_Dld#zR
zLUnsYLr3nQlrXu^nze*=NZM-Cnc&b4Js^n>0un|{u5##@!!&JCEhZ$C#{6R^39tx@
zKM?|l!xXI3<FlpJRT}}(Z@OM!HC=54R+FPHr&SwzP8$}EJf2z#fTD%ecbfuT<gVyx
zZH@Ntmbj!y?3dbbbwl|4sQ>1fuN$I5?o~#*dhV2tgX&4w0%^9JmUaG<1irTQiTCBW
zdUb(c#OMgIv$V?kK#|BKr$E3rb4gQMo()V1O+ge8YZQ}r)@T0lr#C>@(V(27I=g%Z
zMkC4^?h4u<PL%9P8Zld)uBoAsKmY^hzJk!sgS<E<kiUs0v1Xcr%PKE0N(v=6#xO2U
zBYN}CHh$QaD<(-DSVMo?ad1f&sM;G(>jdh&u&&Fz;rKumNtPSyLC94`s<y<4f^o=`
zTrvhfSN;tL?WACNkeC_<_O_vF_}Ral2mjl2>g8U!rIz(&WvnQ(Dg}P|NM3L~N8u^s
z(^4&q@#m^jjFpj|n^eM`<+UI-x1hLlAVaQY?S+g<)<#CAP~r2&WE_Afk;47;H;5x)
z;gd6eqd=blCOM4HwiFIgHsJG!$T=yD8`+s(Jd<T4VhaDTB|dWW+z)xqh1a0tF6M6b
zY5u#)fUXD?rU7BuUC9NNpdT^<*g0L8Ub@=>;32$GgUx3pcgMpzQHV#>F-TvksdA}W
zwTHsc{$~HThj_|RG9(i&ssBU*A`>l;K=&$d1E@^iCY}tV1}7~&cF+aLLL`qYyhn0%
z-lHdLN6_p(YiJ-4ynRskJYHS*UWgk^0A*nW{dU%GUN|p<`o7sv2Q`$}i51JveaFC|
z@XsOC{4yxA^5sXLZS1Ed_AINP?Cqfly7h@`8X5@pDun8A?vhf%UNMef&Sqvj(m-{J
z+O9`jKPK5N>NsbY_H`@0O~RAzan2TMgIwOIi(8VS+}C(5&3RNDxwdS$+(S?1z_0}U
z0N1M?*83zIyHD`H9rXQR{i@q_-F>h3;4U&2jgs?)4?o<)0+(k8-6&pXtUPxYat?2;
z%3|>xM)pcutR>8MW)Md{%r?eELFXcW1#uc>vwl<|e)jfq4cnnqyj?;EBL<d=+t~>*
z;1<k#tqbv^{o6D@z9w|Qx=H#Bcw}QVg@d6P4g&i1=({jr`U0C8W=orSeQtRPG^}Zz
zf_BS#Ic1C2DzX6bF#`DpQfIUXgS*hN&FPEt68IGBBl(L!G%o6=q#3si|4C~M-or=T
zp63QH8YHe|ltL7S)ZmptXju%e13fh@>8CM7I5~_07flYVoxJyP(IKyB@_xuKsx}L7
z0V-bonn73&Eoe7|Z`o;zVUD)_psJMTbXm%q&!M^hr@ikAXlmWI29&J^0k?t(C}5>Y
zkt!er!LA@Jg3_f)N9iR*P=aj(TLlE92~t8=dM_#}B|zvMl^%)$i6jL6xjg6WbN4y>
zc<+6=ProlV2+3OO`@T8H7;}soPDWA(fB?-P-)x3&vy(eoFk*cLRGR*R;Ig4dH-TWz
zVI(Wpr5NCqrB40JPz=B8ovoV9t$5U3kw)KuyV$=}ZnN$!gZ;KJ3sWI3t!i{9{yj%c
ze279JgjdHcYMB7bO&#^P@5ie0?$Vb||D+uQ(CMK4y{OI4z54CzaQ8rNE%*$KI2ESi
zgI&SMu}b$l$rW@i@?fhX15=Guo-HK5-7w^AzsYUB+TrE)M93wysOa6sSSy8;^116P
znvDC-e!?p*1pCt2_LQ>&)4h)Ry;mAc=?hO2_FbJtmu_{0;z%0ulw4!I)fess?zZV(
zmL;z(5jpWfJrqA4uEj2ZYx>&Dt?Ai`7+TD@V!WYXk!1t^rT=g1Y5)+cuXBq$!&PV#
zf3lAtYK}Ik^dYy0wDD}QukGK$)q{flHF%S&Bn=LE9Ao=cT?oq@lFb$Pt--(lT33cP
zn&IJ2(o%fc*B9cywivCTceohlqwrVU^>@s@*>zctZ&>m7DBZ{t=)s9J#^RM;-?bIq
zeJW1oxS0BLC{^0YgC%BlqO9E9i~8<Z_gSkN>{(VJ?k`I4oRY}tb6i*aK+&C3pb}Q^
z%3IXC1oob7_`<a%2i%Y$Mw&$Hofs?(XEB-y_2($e>7Ko6KTw=AG{U)HUqx$!Ickqh
zn5)xI!f>GZ8+hQHn|LiPjh<373$<*i|H&`JQ&qwHtd0z>G%DLt{YTB8B(SL(PMbF9
zp515Tw><Uxk;?SkERE;Go+I@&sfY$s4zjprsvWAf15;~DZ~i_|VZT9RRF|*ND2XR=
z{Uc`B8raxKmHPeb;EGe6d}`xaY}6eMFN_sS_O*0710n{}lH~dO6JYq&{lnqtQz6vC
z<oO&(F`DWJKcx)pleyQpA>A!&c1K>XSkm*iBZ?IDBO4cw;7qqyo&M);|L=c#%&il0
z5c8WJAR^Re@Z@}~%0(X!t{u6EJJz(Nq}WdFJKE~E`<rRSt*e9C^iRwcPLoldWo_cx
z_tn>TyPXur4A9|8Y5}J==SY!|xlXQ6{t!^{8^PPA+u*lWc2gB_|L0FYB)+;Kxj+#P
zs6WDgF<|<D+1W&XMo>;inV>o|Tw~-hd-PfJ4~C!UFuD1b+iMA#7!6o%pPz{jJY0S%
ze6BS|{Yloh^y<tP1F%?Z0qb#UP?OQec?OzJ!ciPNV+CF*C84^W(jjY|1|QmrV3oF#
zAved%3jn_fSe(U?Yh2kKN}e@b*E+nwD=TYAd;h^Qv9;9X%UuS?h^DiEF3rg>l9{6M
zEf`Y7n;B>_aIOuWNJ+_1(VOM=TIk739BSRr?D2#}8#fY2Z>a>s7|L))a18&E5?Hfd
z?(zC3-@taqi+M;otHtfsg{!GIzd}#_Odt|6GHM2ZsdMBX)_W_vg3$`PXec4`t5k)1
zFfR3zs++0X!Yo)_SRc6zl9ESLt9tr2$1#DOs(K`BmwV=h#n@AQ?QLSS_WT%|<qh^!
z2RzD%FkPk7RR-VG$x-DGSv9c$%=DoidEMb+BqxV=^?+vOc*f3*(S)qnY_|-S+Q3Ch
za;N|bf1#VvLzKqsG1#L+d|t`*h0T#~xUY(hAhZhSxY29K8Gi<y-axX4O<$(Iuq=oJ
z^EG?NVn5F<LCC2CGK*_`_**cWWPT$ZbRo^~fV-wo5)%deICdYnT|0bG{kH2uS+vQv
zpHy0hM3c<7S1<+P6$8dXcpjhFSuq|}n;SpSLc!op#RoP{VC<t#JJ&*iZY{RhaZxG;
znZobY9y=P64JWu|wCL1}WL;TDR7(a3u_d-f+ndpmeAP3S{FoR5jOGk7tIY`-Ghb}#
za76LVe6H{B*KW8~KIUXaz4)cq#hi7>gw&RR+M5afV2xKc>7RaeL@Tz}1|%;sARoBs
z9>{)?uR9%l1^d>;AEmaHv58M7Y!_4;{DtNbz+N{STYsB2wV==wxWVw2^`19Tbgc1o
z;%V;O@d33~W&yz3hLh$6J_1Jbd$B{;M-KWdr!1Kxt+p3ZN<Z1QAhfR;oXSZvakN`=
zMLoZ09^QaTN?~i-e*Z2mE|Qu<Uzac|ONGbu^?e>DLl0rkc!%TxP_C*i)@~~5E%vDz
zq}&fopHX#V=wOsWX0OL-MCU3$*RWjAFF_S$UQexm?YBk#O|E%}(MhEqj{w#&6Vg&n
zTMFHGG%Ed*G5X-z{y=Vn&bDUMy_vG;9F|xIR91N{A-Hgz(X+G$;m^JM?HT?H)T>?F
zSJuRDQ(@+uZ!RTm5))(|!phBrNh$_|Gh2|-ug}+cRARl*Teu26w3vJH6F0f20yUQJ
zy-oV={IDmwjPEC9-8qd>NHb$6bY#%BgMtoZZQc;fv7odIW9Y8cKzK*ux~r>yFT<fZ
zB8u>fH}HY|V`B1OYyw?SY-JNHr(DcNQ0n$Z+E}js^QrcGuFa*3xky${QVgfG>rTjr
zJXlM<IHbUf6~8y#4<;!4?otP3Fc%GW5an5)*Y`*4*X%fYrR}3UMqHm;v8JpxAqqk%
zgpDFiu^nHzo0sBfqZ(HUscHEZ+Jy$yTTlTZAyf}j8Yg!r*O%o6e=o}~oUCKOi(j{6
zFlDgVxO~4dbQTRi927Tsx>ItITCf_1-6y|gc|s#klHkyIbuCFO*^-KO+Un-bRJF;k
zN7;+K=Y%leeT=qSehV5eu#|A39LrX+Ka0WW0Cir;@X?=Ppg+Np3F;MIbHV0=j_;KS
z@jk~d!Kzb}*un32a}UhOrT4!iynjnFSjh&Vih@y^+oO70J{dj18fB9cjUSr^M66Ty
z2X)C+rn5v4P-)42+<P9f=N<N!;3F7nMiYXKpgkw+BtsL0;z)199GG<I&9}_Y!w;&0
z7Uhnw;u!vUSEbmv{k_XIqR%HZZm!?L`B<TwCyQ@3tU3&{e<e(lr=En#!blbNrTw~e
z0W?A!cy8_2mI{*R#{H8nJhIf%G@SL-C3*B#btz-I4M<C0V)1rJl%c(g%#1Oy4`fE<
zr9DLl`0dsbmDVji&3ZsZGJRxjM~Takqu<j#39;#IFZiSSodxMR(oTSR&gpc*o-0p_
z@vh${yg9DyBfc&ecVy?BJ9)kN;O*M#!>}QZl#iH5{A5G&VWFL-0B+zM?KDz71aW9Y
z<EBIK_4%%BrTY!6xaGFHyqE)bOIeVn7mo>r6v`Ros?m6}moi@UIObJFeY;?GpQ6$}
z7cFJ(lBciPMu-&At$z;o0hE*^5)5EDAFhDW@%`<Z19MX4QwQ9KeJ6R**-txzu6uPz
zr{<c%q30qq<XY1oGw>c0?Y?9=^3~}xr728p+Gv_p7gHpiZY(yk$?&8UC6=q$19Bs-
zdu_E+6r|+T#)?rSOiJ7EE<*~IW0y*_>rSy=(C;#6k<5PS4IVUx#c^2&Z2cMr9PYqh
ze%S#1z*mf^0fr`bDp&C6Z$pw*tEcGChi@8%F|p9`Ow85T&uZ?GKfwTY9B`Y>Dfxxl
zj!WRCX7g%X`2#sZ{w)NRz|dZLz0ee-HCpo_lv~ecxi@L}511|ztc!uRM{I91Xnnv^
zIBL4|K$sMJ*B84)5XLkHKtRRBt0qZVJ~RDfQF+!Bu3LViL0g((?$@~<AJ;NfUStlk
zrW6I;?<PSPuxlUfb@|^O`^;Gu*Y1`<_>#7QQhQlG{#MOqCD#43s@q1`P3+}`^_gL@
z#VE7<V=0R^XJ!X|mp*y>G1LHWx^p2mcjOgft20-T#*{-}9q(R3@PF&mfDc?*?&U$Y
zqJJ-we*D|FqTA@fq^yXi!>kC@vb-=dk}DwZ@YEL$-;RN&<3Fz2einkd;;k>|=(@)*
zYBr0Bq$KOfgB93KQp#D*6gSU6SCk(bpe~AxTyxHPSbN(`N$d1kkiBw}ayWSW87QUl
z#f0EfaCVpGT$|#2GLU{*Foj_Gp%92FK6Xxm7ubwU-oJ3qx8U-J-gom)NDFmPrwDpj
zf~nI)ZpA!mLN@L@sNRFeu0u}dIax?JZZloOT@G>Cadi*>A&-GF@A?+IMk-*9<i!rY
z3)i@pJF@E2JuT;;^5obp9+5SZ1cVhwRJ>>R)ij{m>rU)~&jnBd%65f`9R8DS=^qb`
z`T-WyF|8PxxA^<Y-t&9O*C40e!p}9PO(z!OAY=h#kOS&a-|eb!yoa9j+~tf<j!ups
zJkGxX_}2vN*7AWqm&F_KMeJVRj>rWBI4#k;K&s!{RVI^YNaLD_G!;_%Dv<Fhf!_hn
zSHd>WA<hjOE)G?g2GR^iW@9Z@q0ZsEMBnxG?#9~O=NQTzJoqVWA38l&1rDU>7G(*;
zXGS2NvGF?Rgsw~<ht{5Cc){2&sPSpS(>u`b<Zer4#G!l2>+k=x<9W`lQ}hCc@2q|F
zFu@&CKJrfe;2z^t60hWLi>K%B{Bf#<tHTzhm1kB(W?>D6GP%Ug#@YcQUc9EXF-;xB
z{<Xnn>M5vEf5R6u7H}JmFu5e?sYDR-?$kZoX9JK>__aw}4y7+U6nO*a4W8w0y7@9P
zH{prnW1o#NTQUt-nLoaZPJM=7tNQdnoII~M?303IWx|JYe8J(}sx<iw9GLrTfPO9K
zRSWRxq>&Row5ZukL^c;qO!((pf7qF_m_Rs+0FV=~JRg>C4tWcabxz`^Tn0<q@mfW7
z2wvi?Pt4IshoK;w&T2wz=9qUwtl0OmZa@~{eMQ4&CkGQr&xpDAVVkQnx%J^N#cczc
z_hx8m_hIJrxY0mt6||977h(xgjS3;$7<oDF7To-D<z4v|)2<WTa-IIqh9llv(qAFX
zOD=3gmHw_%yg%8pQ;jUZYWqy$qkeY9!5y2wAJKmPtUWFJ2ll`9R{%`$x;xH9LS%}A
zO$n0o+3Z@wur<J5JZT?7?S$+_etNw5#xq&FF#EQopt*I3Lv99%jJ3hB%gJ%DWAU?B
zWu|>}1izvC@m@GY;HxZp=_O<q3F4fP9B_V?&SFW6bfHf0|8bRjUV)#)_$)x<>Jhq)
z(H&8p3;ry1!w<nMm6tt}P(5`5H7EKkwT;FmRcVp6mbrl1P8i9Z0e_#0X7GC(8q=f1
z$6-G<i^n`{ZJ}C>)&?o$r%mcm&G*Z(ezne?#B}ZFPSYpJl1q?Ecx!{_!tjs?6AcFQ
z`tnCa)1U9$tjE9(7A8orvaD>k&oH5CXPZ`Zb8O2Qiyf+1pnM2(#f-+uJ4R(fHmNFN
z3+J3TiI@+VE%4esw;YMjcb71)9>jm*x?qsVt=3HxXT64Lx!ho${(?Bu1Q4Ep$N8>v
zu7E#-?sT(?M?rHZxPaJ(e(5eG*oZ}dJTGWXO8vIf#)u}|y8pa`{%vc0|C$B$73rNO
zkZu=iaF58kx~83HT++IIpK_=9(}lDy9P131QODVnD%k4-$Uz_;x7q}OL3aEO9Wodd
z(j@GU(x}JcCsLV=z-Qx;*j>alI&h5vp#k<B%2Pr(U1?R@<~_4{Snf9ct>+Wrj8@3l
z>C<EC-S^QcQVjD7YuI)%u~z|1%2F(Y++U3U7#3MZhDF+N*-3;3pma;HfpU9YdLv3<
z9^9WARxYPX0@-HKfH>10%6hq-tV1Kt_D4q!Ay2(Zsx_Rd%Q~I5ys9O-{6~(bEXL80
z91`RGI+)qzo6Zo>dd9LU|3Nfd%)lMj49-b<8QEiwWE&N{P%$XRX6d~M<RB1V0kB`h
zc(mtOeI=y#P)^8rNMtX#?1Q5Ee}<IWu^QN)Yr#&E`;?3`YIFAue~KSop8sH~;+-e8
zNc4_nH-b{}NK(=R$Mr(vsNoWpvoS@ziNCq1d5s`>WT4bjRd~MB{}Q`m)|eiK)d`CH
zf~+U8RHC4N%X%d`zVklRD{fIJu^GSX;S&6;U%6h~vfPWK0tnIXV7x9J+p0g1sW%2L
zh$PVeceYgpu1Idsit_NHS1@SS@D9iRvzD5ePY;JiK(x34hh7TD81<OLTeNKT9rRpr
z7sFeEQu%@M0Ud@5@D{+*2i{P`1*A5N3P`PQ(4oa2=Bc$c#l4RA=16cLTmnPG-?F|;
z<n>geB!D>Ra~dk|GPg-znTG^-rIwlyK;)eO1l6TiR>ZHV*~cVY4N<cS^^5$y`@<Xg
zktVdZU(bXTHQn<>)mc6czq(-7`NcXai~}}9qxRVL*^QE*U>u=8o$xG>q=ZDFt9axX
z&nGHoVY`oUdl`7@QMcR2pc&9GZ6>;C8`O8Mf^;LoFNg(-=V3;TvOZ3-^&fS+uYtvE
zw}fw@od?1{{g(nmon@X!VZ9`6rCq9Q5Ps8r`%C|@R1!gum$6f=0%o0JV(|x4_WyXD
z2ySLfRL6)okO6Wqd9a;*#b*4wue~{YU8ZF)26K^F1)cO%7Y%X@3%YA1XhGArk?qm!
zL4*swd@LAD#ZG%ZK7%f1Zfz8s`?L|?0Rv4R&}j@`86f2o0`sMRU$W^bF6&D7seD}a
zZZLpTZuu5WLOGSJY=6uDyi2FoFJYxd(O{q6$;MN$N0H)!J~)kCY;e85SGe7|%Y4OH
z3+)aH_8rvy%N$uV@r0G>*w5I|&uS-?`5i>&AWwGS!F}bDkq5ga9K@GJ)sao3O7k|;
z$nZ_UG89}CfiY|!6VoA!^QTT4z$WtQ5Ns$H1IT~wgi=jvIp?RXq16lapO0fQ|LA%;
zL7ADk`h=&-)W7k0=b;gG(Q_i-{U1~<|NIj5?#)1(w1ijv?C}5dT}1Z0a~Gh3{Qp1f
zj}!a<`ZA*IoV_V$es=oYG9SIYiQ_#(yKU2-)*yUO$FIFm%1rTzErz_x2d3q}F43R8
zBz#>^Cu+y&#T==#e=X(wPp>6}u<9ag0F3`Pum7hPIF|#JQ77$|$N%OXGH=!ZBJlrz
zuz%dt|KmHRKGrFakn-Osqa)Z@SgEohoT~4*2yJa#BD!^C6GmtsWofpo?N<bB-&IPR
z$<l&Q%@(MAZXm^O8><J@n9n^r&f5ZYW(#E4wz;@?et;l`AvyUid9aLh0+P{f!T-XZ
z0|za2ENI=I{ld=o47#8Zi0<eC<A-DR#a7HL_kYMJ+5?3vu(0J{0(Crjz9E#86Fc%)
z)k};D1`d(f4ItSZz_;S@NBx^l@c0R7GP4Bme*0US^B<mJ3Tx0=0pB-xj7&v07(lgF
z!fb4e^E(<B8<%ovf~X%^o^sT<+E-?0YuqmEJB`y?_m|A>-=&73q80}8?=qPu)x8-O
z(*flG2^8_ElCHJ4nQh?`c#S{>I~0h}rrTJ*bH!GWUp0}d<CQ&SV75aVfp7`vuVjNF
z2aG$oe)MaB-+(>R{97n0b><lNw3>Sld8PrMSf{Kd;?@Zirasu8Tlj({$Q>s0GmRWx
z7A!$Kf`D1qD3AF3kWb#hT3c<^+TV;}EP7Nr?sNQu&vyZLmWOj*29US|wLGCbanK{r
zz`60VHR|9`Zne7F4uo#kojROQ4B3(_0bkW$`osml%zDOfAm=W>cBT#3vjor;YeYfn
zZ`E%78vC`Ai~6A9U<4h}P(UPBW|#pOEo@yp?0MUy_xwpw?<&uk&iklE(TLBn=((sB
za-Zzhh0F^hz~wXpH}K^T6$Mh!vOmcZT&P^qE*3By6T|T9>l?X4clu}j1XRa}eggQQ
zgcvYTSf4sxb&4tIDBF(FCYk+PezIEytsT`Vxc)YY4m6oGB8{G~5=Le-D(<bG5YZ{U
z{v^q8*6fC@m$Q~BYyRk|OF|LgnwDqg3<=V4X~J9fy4~)B7L9z1ojX(dmXk3|P?BHV
zos5<+w#9SobI=B@gz*Q-$S!K95~JBmf)b0=-YR$J!Ly_pv^|5i6yt_XFz7L;J-Y|k
zXNCS&S0Iu{BvsPEW%GuADO?a+|J!-sTIrRc6Q2a$tDC>el-<1g_2V>E=*dM(Pqm#o
z<Coc|a}?}a_p$`6P7SwXHop>sA|xyLr?|)JHFfSR6aAHgig#0u-+8a^67kT{8nFMN
zo!FQcRMj>c1<e1oWnu3@n1)oE06wGWA!1Ow1Z?+Pm&eXa&=XX*3k&zdgv=e%cha?t
z9bG_4^JG(n2iwZ8DZmYu8&j2_hEHC0+{Yf&y!qBQ)%V#_**^}P_jDH4r9htPpNhjG
zl!NYYsvST69Wqz$*dO^;pdO@Ayrk02hzyqs&OI1WvRQ7hl<*iFz!i*@(`M2EJdg!8
z<O0oyU(sbdMeC5YA!PYl)GP<i3;UBtYd0=se6s{gC}hO-@2Ux??~EIOGI^Vz(6ls@
zg^z|5kk7~{eemB^69NDLz%(!i+t6vu{vtE(#!t>y=bp44%mS^C?R440lA5nh(fdFf
z;wx8JIB)8=kTtBL8Vv@I+TL;bpJ%GO37Dq6V5T+!F45Zu4vjZ;ddHhL1U3#VSMKxd
z)TP9(ygu6gL&AxQL2Vpa5)dX$o}#~}AiWc7Ms0M>f?(B8j_9DHD1`ABumr(fGUnMU
zA0IE`{veGlf|eIdmc2Ur9(1ZUPNh(&Yuju|TMYk@N(@()l}*GtUIIIT;NRr8FMvf!
z3&^{69d+LYGJ?lLUNGf80W_J{!?_ZC4mc<JYrz70!D7i*?FFHn6ZeG^q-j_8x-Mz@
z7idluLl^5Y)A>Pw0Jb|5NWvz_Qe*)?d!W1)!ee#=dKqY$o00xKT~@hxNazXr2a(=q
z6CKl=AAuLUf-{iN)fy`W2S$;Z8{d2ZswK;?r})z6O18{$Z|z+B{j315jYtWkamPWV
zTi?tbmr!u)=@e-mSCnwqIs#Fsw_cxN&KYp2XxZ!Dd`$P`OQ6$Yz}B~Kd2T?lMP~{2
z3t5ob72-n8Ku_^QA4jVwQV(LGl;SoRCBDGtHNz;OOI`^GJl=5<XV+(Yp?&6{ja@!O
z65gl=%!c&bcOph1djkKs`>SX8O0yQUYsXDrnAL?H+oiN3Ao6A+p%3EV`G(SghuorR
z8_p;HaSgCBHox@Ifk;C$`%qnu-Di%-4Xyx@L-wDO@+P5jrpxrFh(m@sPm*x~B~|op
zVmNrlbhSFDtOys|zn=r3rT;Bajh>CTsLy$ji$tCL>sWbCRq6YA0S~3R1Z~_Kf$r8>
zrAm-hkSaF;^eMk-3&-}MMsuI`(>%Nw>6Ju&Uhz?JZ;(m^exO`MXD!P%x$aZ;kfvo!
zPuAsIHmr4lSfbYKNJQ1I8&%swn@;|RQxPc|tITUL5uh25t1@CdE(WRwR)K=T?R+X5
z`LLmpn|D{$a&DT%*o*0$>q;zJQx7IZbipXhUhZL18sUs5%pu1C!!6m85Q3Tu<Y7dF
zBl-!r?863mW~yR7X`cO)cXw$^Bjzc#pIrhYPvEX?(V1$J?-8cXMKuP}XBnSYNd@$~
zEx>OsUUve0R+Okdq6yw~h8Zot@!acVv*5ZPtB`rX*VD$^n$2@fx$^aVrT|wg*{|gN
ztaonk7ImMo)}=8OjLk#STzV$T7B%};!JA`l3A*}$!0%LZT%H$HA&AUHfoUp~>Tz@~
zZ^jnojp(qyY{}&c({pPvPg|N=7kQdivt;Vt^J&7W#>(`1Pld1d-jS2Dujs0aiSE2J
zWe=*fdxTBX>plE_v5FIWGvq<i(%rqT0JdBC#M9)J_lrRMmdvir4HYhoQ@e6{N?t#R
zr<9;S-8<L}IC#QDd`C50m}*@&xng^qYF+{J73XyC)0PIN-hNsqjah%OQng7^U&3wB
z&E4Pe+MSw9a7x79$=I|m`=pPSk2M0F+Ui9MV$HR0hBebaqmYCmB%qh?gW5?3j-TS1
zH409bK+pyaLIvY=9${<yx3t<Y8&V6+aG<|6l6+j|v8||6F>#-r!sXt53VlVM*kSVV
zDh(k{w$h|7FsW(=6r}~69Gwo!g04baX`E{bW*GWrOk+&(gm%&I=?d->myD|}U}y*>
zen$!Q=0@pd)(9~3e$qEa_A^w%1jVk*%HkR^mSm7BDWEoal6%_)G<(KdCk<a*T<*<n
z;3MdBzwI>G=d?IlH_;?jQ&^V+TIBxG6k68OY$XJKB9jdzL&KOPn6!z>*`6LEb4v?%
zcJ2>d1;E{Mr1Z-rW1{i;)Qgq}ozrV0W5Y6&XxxS-mZ550G8k=-o|)<*6J|;FIG7>K
zd4L$<6?J{*swSxt_;|ljqKsX(<(Q?-f}-O&Lq#9c?!f>{<AR~HjRuF$7J*=*30aTD
zdP%`aggxnLgkY4qGca_mv*Fp4^Nnrt(+l4q0VNhGF7Zp;Gy3LTE>L6&F-6^r2K!31
z-dBNA$x`Y{w0U3w4A%&(1Z0ZldjSl{+O>q7JL1|7L+6F#trrUBM^veUR^k|fM!X}c
zKy+_L8dU@Dm$p*vFrw@^(~ElKLN^F-oU+1H>wBtUHVpLLE)yTcCJ+JO9=h`GHQNE4
zh{!C9U-<@bRj=t{?=vQ~spgWFErP>WHz=eE1z<$ozmJ8+fv~(k*<;)j80}b)YlZHs
z=jhq%ng|9(F3av$#`*w)>k+t&Igh4I9aO2Zs0(g$M;cO!094!l#HueB{?Wz!sW1Fn
zSthhC2&$a^s^y0_Ld37f)$gRS77+L{36EK}6`l~ucMR<-vvo0O^m4fxZ+o@#mu9G0
z(^ybbRiG}YL;MeAARgox>_bIOTpsOh88Jn`R}5%z;dLY4%g<$vSua#9sPPYXM7#p`
zotwO_B<W<Di1lPY{LJ7nry&_?{QH6-HNx;r>>yXLJ{=NCoZYm!Kgey*j9p*XU2J1d
zcjP&<-j<(Q&{UWUvkS!=*Yak}b7hh=CX{=?7tDG5M93o({XIH@A!Q~cN<om&z5!NQ
z`BSg(-I0;88o_)tgE}<pX72J%4|4w7{wqPp*ssp?BQhP$N0LYLEI>~rwlz%wQ5;Fb
zI9GDKq0S|GhK*t3a<iz1$QJn_Hg+t*&ba3@EzR?*pZ$RKHNx<wo@mhge#FlXR??%&
zvJR!|JQGtYPg8#`c1G+(*2e9VBvefqB@f4F(&``033kh!UhR%(g8In)p&o_NYZcBq
zrW$|h<Y~-@EWT}#GgW%h3xHP_P3FO|xx=WdW?+q;H+faF!=cp7Fhr@C#HVqMSi|B2
zu7mjtw~O1CXb^7Ri{)nOtofA_aO>CL+TW|$yXr$H2XcH5(olV9iQb}d`HjZr9q*|u
z+mquKT=(<*162G6;r37HiizdwuR5pq%VYG~rF=0qr!{9pZzt6TXO$aP2lyhoOzUw2
z@<aIgFXGIMwWS9C+@*CH_N>@*`syNH=PqJ`^lwa|H&(-W<!<O42yJp7D7T1JPWxzG
zpv5e1ny&WMfPI--^Epg~9LV>oGlV+m7cvi39;Zr{&hKcC%z+~*3m~M~oMrAa79vzR
zxts851ZtRRTj#gM7VqMG#v=_Y%Z8qyE|sM%K5<PQhmq?mP~|JyzskCd+6=s>N-1p-
zJdOLWG8lQFy(l)Q+yX-~TiF+;%MI$ZouSx-arX-8Z=v`Sub@jC41=U*%;9b<NHRdv
zGsq>TWut%if}t-F9iEktX~UN=AkVsJqOT)MUZ<bbFUg^It0Z|FbRA_(_T+4kUlRwd
z%Ms}X2gm!(Aia2kNH2t4Rd{|j4yLUhncB%^pes@@n5%<%U|>1{!3o8Yjs{&BV83A>
zyldX*#|*UpliTP=X*g5&$yRpTp&gNR!5&ArBuQ;Ws3>-jB7!2IF#yDcUcKi+9#Epv
zB7Vo8$LOzg!#33yu+*YRxyHTu0V2y7A{@vNvmyw9C5F9m3z1X$gVOKrnSL>j1QD-^
z7`yVm(E)a)ELOs^^!;j#GzS|?OJQ`zl!p6y;JS3R<k7U1zINe#lfYSZ8pck9mM`z6
zGtRxfsUU%9F_JT3u02;0+ELS&)A{~ck+~X)=D+J`mX}kYz%2Wa;i_s!n97(uhJndO
zpj0X1=gT*QH2I+@Q|wg(DMsYqr5MV+`)xHA9*3nnU|+S<y#{YKvKrg>PUc75NNfnJ
zlL0M&_vU)sW3oyQG4jBFet2uuB-;?S+nhENT^r~_EVxl7_7$PgBs+H8Aqbs9m_3RY
zv*KL`vS;~6*hFMw5lNo!r~ATAOlP=>2KHKs2-WG}3cA@6?qM+5f7)*OZA}@xP;`nV
z-=w!ufhoI=Mk$N#$-Uq;9r978q81Jp;&UvekFt={T&!h{h2lK8MXKz}V+-Y~`}xUX
z;P#Mxc&Au%m|7+}P=~lM0te(;-`*JQasN@VskdhL%n$2Z%44FMGDP#!9$*o*HOvo~
z<=Y#52lq7TW0B0&%lHhfg;>+KCoxyFUCmcaH|8(q(OwLKGW~k!`z~VkDPzA$tvup=
zfyB9A)h!lwij;brav0wEudDiBSNfqNi*Q``&YYv2_Vm-jyf9e`U3PE!{saAdZ=_y#
zg8hk#&!UC#bTg-aCav$PUA#>KmU7j2T<r6~aYhl+Z<YZR;~b)l&Q7s-itj=KQG#!q
zA23W|Akrl6Vf|-%4biqm50V9SI=*($Git8!?Do0*<=Uq{1u2SXLZDrtmP_T9+>ZQN
z!!y(?L5ew?j_WG?6>2G-1p^Z=SC?ry8#hwGN&E~(c*tFZzlul@i5U*`o$jAvgWX4p
zS!{7UkAB+qC+MdTKdYQUV%C9FrV%g-(hQ$BjC;U1?K8!3^b}H8pF5Z|;|L~e#eyMy
za&NMOWnjv0iEno?bRB6B{bWyRab;Wf{s^?LQ;B?Y4q>s#d7zu4CNrem1>>%jr))xA
z5&M#1>Da|}h)?cDgl?Bc&5L-Jvw=lLy;jz8c@D2<(qn_8rb9|)l+SqOH9f?B40CLr
zrdoi`;$#VC^(%~EYz3_a!ZX`L6F8I&31bt`=d%sHWf+TjjHB6xc2pG%yiwWiO%CL3
znPre7N@(5*_`BM9d<oqlMQ}Qzjk49}@BMnv$%iO$;`1ZfX6S9EZC8=I`0A)SYxU7x
zx0rr{^S;kx0hgH4X%L+;25&V<Oq=2HEuIp?`5^-dKOAa;3PFe=ddUMupX2ylO857w
zqob+Ch{ebf*rLRM8W+5JJaa%ig($C*Q+m^wk{ovlYs(=tzk$!?S(rhZSNO140cN@O
z-SmbO1&2<N7TTau#NT8X0*DM_CNXPs%oJT7;@d{`z&z~=U{t-WiHqWzh}pe4_oc>N
z>ud^P?)98}<xJPfxu^yEb7Q?}<EUL(W%~=_69*K83CGfTd_1tD{II?ykus-;@x|e1
zWe#%?jE<3ziS7Ahln%^?U3y&-`1=5`kQS@pD8qM2HV9cg5oPK?4mU$(F*ga#wD#*e
z!R-XGbkOrt<Yt#hEUY^{b3kbPLW!K;(BXlFO|DLc{Vi{IeXuq`XDXJBr_2|d2=J<|
z<}7ViZmt66K8|`7t%5uH9UCYiO?5=2jrPRc=*f-u1(=cCn5Q%0`XruI)|cK46k01#
zXoI+bB(aA8OkN-{epr`ed*VX3^X|+x2bb<e7XnM-hM-*OZ!jNr1(|76<X=$*!Hz{W
zWRcbt#)+6!mfAz4d|XShYsei_1m(O0gAGI3jBffeC>qX4xXZe{H)#nCnOZgzy!qx=
zmnA30aIv$o+X+=EOD$|qMaJv}qN)=*YX5EZ;oTNnhbpnSseOMiH2=QCq#BJP)r%%S
z;Zr-zTsnYG)zi2SKB4KEuHPlAzkf>7XoAl{+NUP@cIe9@Y)k6Z+|M9iM_2uv<uhcg
zMMMZjl0{_UN*T+8OM{D7#zoUn$RJso^CW=VXN6n1SY<V(-w_Ndwt3yNV6Vswj}^;<
z4cN}BpOHM)Z<Bf%v@*!NTQdj&AFa>p`mDixeL<YqR)8A}`&QsNI|g7d2m6(>&ojo2
zZd#hFVw;y?HN}B}$_L8n$@WUT{1wbA;lzNB0Fa^=FQBewjx-ARXRF>_4_pJW`oD-R
zM#0CrI7psnU2m&a<X#(-5*Jf<05SN6?215h)$dAe1ak;0$<k34l`L;e*CcF4cFW{=
zu5DrElS9r6xLKthoQN(MEAgYcRKR;DFBVh+F>v+z)kv1y!VIfJvN@;#q?tls6ST41
z^P+@FKq33q2`^sad)XZc<>~uVxx>UEfujtX`es<vH|T>fyyOm7WeYm5o<jWi3edEJ
zy;Xp(O#o0)i0xi^e`zk(F}GmDrK>P-_aHRIv8iyE)p&$zqlvCULq9{hvbQ02#b;^`
zdDeWvoZbZz3xEZGBQ&@DSaUmf>D-$Hv`{+NAx=Y@_C^7d3V^N=`BQ*=-nzI>x|lCb
z<OaA2_`|kx=cBDlJRuS+cH3GB{V{4NeMFdYLqv~N0QB(An<7Bgd5rem89=aU{9`UN
zT2IZo4HcuFry0sYNm&eM%Tfi%VFGepUU%K-^2V%o2p4B+#Nk<6??)M9A2f=$&k{in
zg9O$ifEc8dy(ZpHkfmm?_9WX)LFq-|iGcvTIOx#!uqS6RC25q>zPG5xt;;Af>e;0B
z82aiH^9TksiImCi5y|#xaE~9D8U+5l(6SO4!kqdXO9&Lp=DG4!FG!W=+KGv0R*%#I
z^=;}kIh5X*Kb0UMC=g94L#^rB#{T<iNQMRbrrAT~Jh>q&Lph&e!vg2e1m%j=tdZs2
zf6<Wr0RX+<&CFn-hN;ZwcUcea2wM*-a)L&^xc+>vAI><<{hY<*e6oUPG0U)r8^v@Z
zo70%b>CI*qdf08Tw6du8#AB>sGL8iU-zUFOyV{<ktU}oNvp%|mUEiJQ!Lrv^%Wl1_
zG43F(@5m_VArl)Z=;>YSuT#Xl?eFQChT{ZsqJ9hZxus)M-AjQMpx43p+g3*eKEaT#
zhiAEq`J_igITlb)YG!aiX)5CL)a*$}@C@M%&%_J2-)U+v(UPHg*Ll`;l-g4x<-(7P
zLFcUe&}g9NS~C|O(YV8-aoN4oMz|8Sijhql{W2AtBUoyDPWF^oS()0j@ovJ_z9L6M
zutB_ni;SNiswjz3_9S5Oj7UHgjuGZ3Ilal$^8<vAk<q$4&KMP(Ij?>EC6lGRI&@gg
zpmUZhj(;Pt+!M}L{~bCjR3tH`ot{cPmMvPCv1m@N$Z!`KRJ{J?o`vE@WgzbH^lOfO
zh{@pZ)>_~NtNxN;s{ToRJ}B__v9N+%uxirW(Z5mtCimZKs)(doC}?*M-f8)lTI7~q
zE#up}jqXA<+S>>^{04yd#}D&2b4_+;fNBQ<ICaC~O}X_u4J;2!DPT|^b0KO&o&+?q
zaq^jlS%>4N;D^EnN!gb1>M0?C@bT%o**3Nnn~}a-)N_2n`aOiC2z=uusm@&kP0;oA
z;XdcUOsUw7iDJ@@3|h%;ygDXd^7pjllkz4rP;>@cDp^r`^3%ZoUVbK&FqgRycwE$r
z{`?s+NA2zB$mW&F34fhpr>iNrg^X$52a3nD#^P5_IG!_^OHZ;optWH}il~_XL$0y%
zIt_-dDe)a`<$&-%qVMnv#jI$bp($EcF1QT}pR?0sSIKpEe18*zS~dn=Z0;7T2%>JO
z*$h=RSHC4oK=RSQ)nV!uBQQ-};yUD-`==G~E%CPCp#FlX50RBRsK{Ks=I#2r!-^%K
z-LH>#^r4!J`@hz-)}}&LOoEzIwnI?||I!EdKXwig`9O-_{m{$&vlaMn#8pr>LTQ!n
zKl^Y0^V63RvV;m{+mnJ#KRHJK;_Y8WHfB%Fu>bfW{_;Q6>sdB`-+9Dp%TLO{zj*tv
zB!RV>#qa%JUXZ(>5;%P6f8h-9<8%H`CaeGAf^1{s()Qu>`ipn}&&u!HGsIT;n^E`_
y$G=|f7&e_CDfffLKmGoHzS7_SBs9RfE@*e>RjFPb{TdVeI)7UGRIY|a@c#oZ6@*y;

literal 0
HcmV?d00001

diff --git a/docs/codeql/images/codeql-for-visual-studio-code/basic-python-query-results-2.png b/docs/codeql/images/codeql-for-visual-studio-code/basic-python-query-results-2.png
new file mode 100644
index 0000000000000000000000000000000000000000..d92f8e3000fc1b8d70dc2f1e066eb8eb70a131a6
GIT binary patch
literal 247418
zcmbSz1yo$ymMt#9-Gf_jcS&%EK(OEhcXtTE3J<|ugCw|1a0tPJ1b26r0t)zt*ZsP0
z?z{c_^<|72wa4L{eYUN==2~;^3RhK@L3>903<?SgO-@$wH5Ak{TPP?PBqRjjiWQeS
zGjO5KN<u<aPC|l0)!D(^%GL}DN;W((8BrsC7W@72V-X(=O)wSh1)VJY`-Gpc46PCJ
zvM|BeCKSa+$-Q`bC{$G1nnrIVJKr!?Yf4s8z&z9b39q9u=~e~xBIz17Y~@Jkxb=KX
z?0Vridnhy2XEZb820G_wlZn#{W(@H(26gPU^^vHE7~{1p80?==l1AuAdIq5>WVpCc
zn5n6ctfnGRX&J{UO1HPy%a30fPT+}zp>imK*KdfvaR;kVuk)xd_rpQG3Ey!`wuqp=
zA?|WT{zTE`7oWjDOdU@u)@yl@prj2#?0NyU(yv!eg9TOnJkP@X6dOzIok}o^q;D>g
z@djCA!ROECSkh}S)IHKsCj|kT5D$Os$1N^{t@uHugwqRyLbzkbA<QCYt%vNs({@^x
zH-b3bP(&Lv;SNZgTpzhwl0O}>nW{m$I*9PkiVlkS<@QKKyT75vrVwqph}@gms1qOz
zIez$=PJJHVkDPA&GE{2^RbgD>T@^OX^8=zSdGmF7^)9np8fcj<F(F1~=g^v9EEEfV
zYTC(wsqYen$+8mfZcrpek7}G+&3se_!S?O1Vr=cqU#C>q9xu#7;Hj=kN23^Y?0o}^
zrc0F?hYT`yStDtc(LT+hy!Lx{8&#@0JEyquYNQ<PQ>HQJG@E5;ApHpp^p9@1)sAN~
z)ZH*}upb$<IlN>7Wtu%dOQxhG^uMEiLuceHDSY0f$b`bg1Vv}#ek=bCCH0FG$jM(b
zIc5^m2DK!ftfm=E1x0)YrRv50bz&X^iihC+t$CKlC!Vr&X8QLpACQaRqiY1x{e+k9
zK<yt!=ZEH_F%`o^>JsPHhVi68E`UbXM%N6yq`<&^e`rL&0FNjR&kqw56rTf~0iWFQ
z#u3N$z5NO1MG)l)cGP<gcIcOw=y~GYvUuYkE-2N1JTrO8`jG$^Dnxutl{5h<oPx3T
z*&Gs{c!(;aE9RFE{vjjc$vOL~^seN@??ZDNe$o@d#~TZlLX&iy8{rRy-mkKIa%3Q}
z1=XzTc{1t2BzO0%c!RNhagIXoR+CQ{p5@3gAjp%Lg_`6Fs|FSmYQV^U&<z@p!OI^|
z<0+=oVA@0fLVo$|5-VD2;-_LQ(H!z&B)ZJ`&%vKIKi~fRyhFX??TT`X?hPgK;UOZ|
zXp*ClPzDtdCq%A?xo^Wbf+LLGErlt?ehAYXHL{npGF02Al#Q1-J!-hqzVoPi%7o2C
zs48eijTF5of~!|x9mYvdkB$|i0nr211A01yq|2`({zTW4=^LLY0$Z0u2f=#m+UR=A
z$><3VoYx1@&Nxij6&y|MdaM`7O2PBNlwELYftIqabfH-B;rrpVJ;ZBxCgi7N;gaK&
z0v|ufy&4yMjl2uDOKkQ2BCb@Hm(u5>Y5(gp%`@XOsWZPbp=Ti`;!gQJs+^2(8Q&xf
zCiEp>ICBfQ2*i*Y+L!62>b2@6FW9^Y{Gwu}o~&9^(mSa>IX|g&2ImFqh2d2WA->_f
z;W}$Q%YViVuMi?0!X3i$Oa`x<Nm#3gk(j}o@eI!ej|rEJ34L6ZTR#mkT4rAMYk__)
z+E|sVgkV^fB3ll5QNx5x0&b#h0#$-0Ln33Q`kqA&Ap$Bobz)Vt)2Fd+a6xJAkS0EZ
zgJ!wf(d*}0srhS#RI2@2C2w{$Zwdx9E?+CDE#}VU+{&Vrndjk`*6Z1|&*9Z+x$L-P
zY@KXvj0y;B2MU(j=RMEM$~VYeDir;aTe6x@IW?2-q_dt#Co!SKrBfq&{%xxgUujTE
zq4-UK+sl1;_3(c4LQaJgmLV)VH#<YSlB<`8?uW=^5}A&fXo7Wuv996G%!_b~REy?|
zSRyQ~@ZMi9zFa=v!MV`6mAh@Ze0$l4hKfdo#!JLaD9oq9u|a4~qDgW^q!y(YokWyK
zvdHtDxF$+H>YB(SrGu`XPL9ruu0hFIT}VB5S9D^eDWwVBMapGx`zkGNc*b1E{FgcG
z7V0_FIocN5R>k)2aAazOslooY3jBKf68uDb3>G|=duBduUY)i&&Z;$?M4iRDLT#V7
z6?OKt{-&nZ)RnUiE~822EgkOhb~T3tLOw#_`q7J(tyz8<_Xc+c_?dV;b6w3_@0}by
zwD%pSR`c^SO$*oM`r0#wGG1rI2#RDo@EfwXJ3r*q#BfdD<hZn>Owf*OS|s~x*=d#A
zH0|T?>GQSCQ#M%Gn!0n|5#H6cgtYXuj`%HfkD1o>NvR|h#agskv?S+gHENYin>vsk
zOCDPvW0AkjCe4m)BQy+HCTnXYMMIBO?<G2|xqf>%y{2-7amjWWfNg|Lfo!P@#dh+x
z(&gpytNW0=5VSywk2sB7Cu$#!e^%!#f2itw*=g3PBEc-78B!ZM{wg{2IT{&?3&uSD
z75f5%9`O?C%V<z^aRg!PMHF+?L2Md9o#38%t!^!QGY0|z4wegpxog~Xo_=JgiJj@W
zi4Q&rt3eg`7Q2qNL}7&GGwUX+2wqrtWRwu`bt=gZmhG7DE^F7{V^4%VTfEqA>>*SS
zl^r^&44z3V8LBBK!eatX7Hf{5Y+gH!Gv$U=YJllx`EJC|JmrlBRuddb;!5hQz_pFF
zTvSqO5yiCnTz*pCMKc;1^hbtUjkeR(SmEs(st5^H{P`U5G2AkCuc>!2#sis?ORGyU
z2C0*>b#p6U)#llK?jIOt$~N<{c>EMJvbxD#F>X-j|Et6LYA?tphv(ELZF;YKSYN1i
z#9}e-vgeX<-@&eOMzwME{`-$;r6%I0eP_gglbc*Y6;_o`(=Gj06M^JoV$T9>mu*|U
zMz<<%AP^FGeE44Y?1q#21#tga(WmS-JEfVqwqg7Ehr^k}yh9NoJr7bw4Td3B(uF1?
z3qPzHhW4HN^3N^h1oOD$GfE3Ai;ITXs^g6^4x?8h*$VOUErSb#*4JN-7r%M<k_Q-0
z`#0S4AabMQl7cU4PPTmz{m`e9NfHROjF_rlWNAuk)IW6He%|{ym-|7&5Iqw8njBeR
z{I!|k8#j&noqFp=U0o4h<}2+!r_uFj9&;W<8=^XR`VQpXaDw*l_j4}ekMGVIr%KW$
zZi}v`#`ezkb8izbsnO)n?xV+|Gc6z^+<XE&zwXT+=2vUxECxpyGw0p2JVmb|4Jfk&
z(rgiIZOsXuR+U~>=iP&9$;b6@4Yh`+?aqf^u73@d9ZaE2XH;ai9(mpmp-n}Hrn~d)
z&)d%L+0QP0v1zcWXtxV!sp`(nFLCkTzG0m%SMU%%)@vPX@~QDL_OMX#9Bo~iS$gn+
z_>3MGEd`uY?05EbyZNQGL1fNiBgnssu|6(>ujl+*9$a9vVC__1WebyTptV7$*JDQ|
znp7B7BD1YTzIxkVLJlgg9s44s*g_2=43)nP+^MgQwpK(NWIqfZR@BE8$K~>U;#*#_
z_bR$QI`K)r9?pN6AKN$no$mX&Sg}9<S=?pSrTRvZ1<s(@x@fX5$HVx=uSc8ZhFXW^
z9zA4_FL>gVu*$MfD~HBV3}a9~1)(Td(~e4t;L;w@Q>ad|J)4iSu!W#rctax%LQ|~Z
zL;1+ZCE=f{M8i{nB6c#NZ0%S`xbBZNDnuF2`aZIK67(3XeBZXrGZh%{!<GC|f9Wx!
zvp|dFWc0?+!w0FeFn!h@z_GSw+H&SfN>DF=G7=OVG%*xBP=W?NqR=G&RhEWkfP($U
zbr>k9Fe@my|GY;T_<s8P2z;KN`Hydy9GHLJ@ys>{_Mc@Kq^DbR&_l6+FJwnq9TzAl
zeA=fEwA^c&6DTNgC^^ZO8lKPxnTQ!QQaA1UD?e6a92w+dd}-vUWItxC%6!Us|AB&n
z!kpthL<%e5#itD!Tsip>84Wm^?cz`QvLmZUve(%~Ip61&vS#I4ggoxPWse?RxN2!>
ziRhDUl{vKX*p_@wN+aY(mKBH5e`N##BUjPj&_x}8!q!1Wmd#OzD@-+?Q#Lab#s2sn
zj)nsI=|1d_9hh|N%f8tWbpboMVWI5sUs?b0k4vPTurD%wcE8;VJjSjKCml_US4dbI
z<fHc=HT<Enf2YW<fy6LF`odz)TmI?&|IQ=-Z0pneE#Yu&(TTk=nE$i=|Ci@GR4H?e
zT#7TS_8I@q(>YkGl>(MKB9;F=djJ00B|_eR7|wMrEGzmuPY1m+nyEB?*}0XIbDi^l
z9yDP5Q1M`J=#@1p1vHfFFBAU#X8+f_j2w{&ja?iYeKh{gtcPMkQ`@5F#@oH2{ljGb
zyG24$80i^O(xc~Z{_hKhB9KzD11Vi%=iS>kf2ZXLu^qTU9+t6xXT80LqYHrP4h;bo
z-I>_vl<MDU{Yx5lr@RltFME!2|JKmGfQteqeWdp9P5RF#TjjoZuKjnKp8HC?b4yiV
zVoLq*JpGcI-S=nALE!(;YxW;-yvx2dmHl+-7YdB5?T`q^5rORsg(dSB{~z0q#}72_
z4uywLkDn5#sr|3T{o6)FM)h9X<$RbAW4$ldfuYZ;D3iC)hWnl_-IjEMY0eg@BK*HL
z&wsHa#VI&C<&0t@muk^&O=TGD9Rgtfm9XfPA(e(_yc2S<9lZ0lI8z2bhwSG=Tzy^b
zr{76dzkDr!W|8SORiH(r@W*8qNGWX;gvN_>-2Ui4V;Wn*r*R&yd~2%MaJ{q)y1T5K
z;OHYI<DD_`%eTFPA2|H$-aK6mg$k5^uLPeiu_F9d3UCE1Fx_3ukt_t}`p&)V-3ut8
zs}rMyn6_<q-@h6!ps0iq9Dn2e_Hg2tNUdnQ&u}EXi<RPkyW8D~NKPtx8m`h4GnZ`O
z&8TUTq+^c!*1pM1+br=-SFHa<{>g~Yv7&ckP0#<_mVX^PGP<8;>UpE0)*2~R--+Iq
zZw#`vlY(q{8HuoFr?gF@<!jr*SNFbFpgXi)YR>l>nx~q<e8}Zn_T^gezdN+swm=Ay
z>2MM7JeY{v*74Y9zZ?G=>X8*7sK~PpsuffeF_{AMnXG>9cHz^*&T6`a?A1RQq&N>S
zcAu<vcLyWm=!#CFat&cF0hJ|Pd-P%Urhs@Vnzqs$532gU-+8W8_dWON@e%qke1E+x
zR(AC-i<yoK#$|{@#_fBE=9jCrNVd>v!+_RA{rw}Z%SrVxk7d6G`?SD05Qgb6&vYs3
zdoujzz9*e08}TYvce$sTj>1$s?lnq0zci|%z@a?I;_r3zEZg<y_1Mz>!coMN2d*w^
ze737!q$|C;8Ew!jP*)Zd&~xAY%yKM7D75zeW`kag2qW6j<zS}Dj=*&Hb27T5zt3^&
zHLh*Fl8YnPi5@y@K#ZtKCvA7lbS&EFvagx8Z^I)&VY+FSK?t$H7S}!N%z|+kSr<Xu
zNl0Y}3`$Q7g&-NG-rBd;vjL{=+_2|!U-fPxW-YQsAdqb_3<Z`tjc?mODNk0z$U_MX
zJSl}wI$&1`+QCwu;MK5m{k1b)n=(9qa5wq)O;~h(iUrpRrPguOUcBtPh3&2`6gJYM
z_QwauA&$O_R~>>WY)u=V0&9bM55F4TTQ@?^2D<|u&a(~7N*hedo3_3v&Nsf~KkdQU
zr*%pHeRu*XRaOQKZ{)RYGV9)MIofVsuZL_K{yclI>f0?$XGJINap-XHhaiBUPRWEH
zA?K@0KF4S(!l#n*qB+?K(aU|>*m-WvP@q>@x>lbnd$1LPpA27-qZjuS6D&%25^-`E
zN@8EkWU}acKHROyHH>TEclj#@Y&p0m`;c7$ZkLIDt}mieaJLeKvDValJ|fh;=&`(L
zs%ohtDq*z<IUgn0)OY)p_J$4$=79sE3&)-^c{q{%;9A=CBaWJ0pmXaL3Jb2E>hK7!
zgdsv(vCMO?cdy0#k_`W4@BE1wSdMMWx#zRc=!Ay%jajWBHiebRrEMf`QUEQP_9q!!
zs1k>8l&<}yJooTymuvnOE6Zd;Vlm#mnJasSV;8cMtKTW1WWS#8Y47?n&?&;ARo2My
zyV+5H-VFCSE8{e)!reG{FKWW=*pUx@*Nc1^Zc{oU;~yXMB3X&2S*m|f1<?r~s1>t<
ztEHukVzG2;lBy1WP{*PckfC<cnJ7ut3mt!RnK4hd>#7+QefzaoWNK7kJ7aZ-YZNv6
zcCu*ATPj`T1T6J?&%`lcaF#MLzqd|=ik-J!QHyi($G=<!al5SFMJ3Kgf!{iI!slat
zB=V=@OLu6yfiW4R86Vp36NJkjGU@Kv8DwoKEkv@<^4bcgl9x=pH)g8%=B(}1i>FW{
z{UgoX#AIcAw<!C0NdD*Wu$ck1M4cu=+_!@>p-}FZzqBw^#O_`Bw=-O<X)`yb*G==<
zkgBW(7vF(+n!ba-UCr5$9Br@O_OOL#<EYopDp~xh{s(sc!}c#8fGJKs^X9`aPK=P~
z317kiu&GCwJeT(2Dl4ahMs_6#+;(WAQWQC(E;@1H(|`V=mE3sp%qEzzD9c^^S;V>9
zPzuK{Q!KP~z`!ELDDmIgR?V!wLPX6Q*e`EkWo|jB{#DDoQYw105&t!lS27X2E%r#1
zne8h1vqYi~jf}AUX4qj(WB<umd^T2-m*9;0Boa#Yt%>GkCFVNWscfjGBt5;p6In=(
z(W$-JBU1kspX8V2y;nk*S!3YcAorUG#3tN>ixGx^I+l%Q&j#7ZdzE*=5OlMSC7X&?
zeCa4cEMRKu37tM2g7ArI!wDUoIee-2E86{k9lyLc^uO5z_nnp2j1Xf&R)tm_@}qep
zxNsKTruAVX-g9y?@DjDHxMmR=DG&)55-ztxHrWs%T$d1Z#){mF{;1b*ezKurC<bz+
zz#2M7FfX|QY=m1!nz8p$hFhMh+CAMUepVmThU%N-`*2Ga2>5hYBheoljW3)BE0<SD
zLeZ+Q{9oa%A`D!!e5C;L$(|?HvgdlV<CqkIo3J4laHlQ+Gn$FIibqTF3bVYX#!*Ax
zkal*5`f-<Oa&%s}#Gu;-Y&R8k^<d1!e(ZErkt+?C@QxL^LJGLwH}oM*vigKMvx@o|
z2Znxo`SIb}It>;>xN^?QX}_#Nx`-!l_#J;OhQP*0!pwL#pQ9#=15DZZduDnl2SKe{
z&hY{yXur>g7w#Dgl2ZkKQRR|pD=zbP4QOoNPG0TiZl##USnCFN0$23A)dUo{TtEN5
z<v}A~FhTn}l-JK$|1xDy<fCfW`}tiuPY}BftCQ-3k}tAioM;J&Nd++U4SUx{TXg1x
zj3c72;KU?-QMG#s7X~h7dtL8)gOGBXw9iv5vXHkkJq#E|@Ovrb{Ug`Et~x}r)Fbtg
zdFTb;*?bzhzTK~gjWdZ1DN=g!j&USwTEX8?wWknbpeAyt$9wqt>%O~bs?_#hDiDu5
zv#gEUT3poyel3yt^anHfk7BJ#j-K13e;dnYhbtGq#@;<%(S_ZvxZeS{o0+#MRo<#%
zy7iZmTUinIbf;pf?<TiYg?+np-GQK=7J=~iAZlO4YFkHRVnXTTaeD@Z8s6&#m%eJQ
zOVt39n2Ve3Y%%stcC+c`$c}^wMFRZg`wsT$z4VaTWc{)Whx*T2$m)u}e4e=mr$ruC
z8xq!>$98ir3sDVmKbqKS#q6N;vjQ&2z(lEjth0LA|L*fUHAkKM*E+IeWZ^HW?yu(i
zeq`LZ!-XtATs4?(AWz|hzaL5O<UFD#aroxsTH4?&f}z>ea@i=kFJ5~CptjyS(!Akn
zs~+t>UT}PUD&u5J-BFUl?^|DoIA)4h&k%I3erx-~nFTfr=S?!<PXBRpo;D6b!-BIy
zED^4zwsA<aB_==TIm|=7j(O^5@2F-Wzi)A%tVrf+*{FkA*;^ChnCRoE_BI4@`^ME!
z%A4~O2TXxl#o*N73^@wq8YSM@0?!@)J7s}*wKia5Zb{aTKOBmP!#F5<$i6?Ym?$TE
z>^Y7$bX^T0h}mwMg+(P76~6sq#S~-*7&P?IWJyw;x<ff)Im+B_ff1~}K{=0PTCGcP
z3WyKO9G^vMO3_5=O086<V8i3jfmVth@=E&N7o>C{|II<;x`9}*w>ua}H>5i>HyM0N
zYFMQZX9#BJ<SWE9vDT3;UGM3N5xw29#x5-G43wU1#!(TjY8Ew|0X%XZb(od-1GrC2
zlaJ%pBk_%9_;N+#S_DHviG3+Eh4vf(nDacj4P$Z6hWVCJP5WZdBzJ8mi>ayW;xRAl
z=j~A%mi>M5TdrkgV7pd9l{|c;-CBlzZmt6fztF~Zz4yxqJd8Ci0H>FH{5;v|puF{J
z&WR{Y$w`uXM7zhf*R-a){qg?T5x`a7ON>nr$RE3j?o&s7>HNEIn#Sdsq;jp~U5=Wz
zzdKWsepeRQOz6;HHmkooYUy(c;(`R@C^IOGo04t5OYj&=y#^qlG}cm#&=Dc#v-KfC
z04@3)>?a3OpY*@sLsuULk6ow_le$3^MlWS!a$Evgu92>v-yX78IhWO2Q_IAZ9(h0B
zUuz{tqDY#FJIauFuLL4`+bWY0)NWQQrzdz$>wBO*IYEf-R8!oz+a6BbPD9&eSqhmN
zd6VdqztB8ZvR%0~dG-~+WjWs3(n~IOCVY#o>ff^8@R_5C0e}GJTL0h)%JDyd*VoTf
zAu?eYQM--n4+@C*qtJz*?j1!_viawJ7h{cOnz$pmKSl)=es?6rGDZ!H?ie;@=W!Tc
zHJgJl1R3<MulKF(?7i;wT!!B)UIW0WLg=3T;RE+2dr;>o^|y<0g<tnN9pnw)iES>h
z<vH)qf-nI5r9Z_9u?3;TlYejpvtf-ddTnRcxqmGO>YviJxg<u70ilRd_puQNDaY#r
zz-IMw+EB&N$L|xyLws4olHfB{qS6S5c<AzbD@WxAasDfwH`nX2V$b30C8c_k^ql)U
zq8R&6^j)$l^J4_ROirJRJ)Vo5@`+lZi$P8dxPn*i=*S0>NH$x5x%5FIpSWW4KaF&H
z&$f-b%<CUQQ*1`o*EtHS4pB)c8(L8|AQaW>`I^Z&pnTUmfI!{w+TrY#UgIy#w^9Z-
zD<*qN1)7C)qw`qXh;1`G(|R~Z&HLqz8IRO3459&1v#tY>b+22$tJ$Kyx?Z<X2Q&$g
z??#-AW<1~9rM(z3-JD0*0MTm_$iYPkMWGVc1BH<V+5FD3(OX0HB9CHAbLxMIe|Mh2
zfU%w&V2XyL^GYQX$!WM{gr#X+hChE^<$|$#se*jG=){$8wy%KQBLMtW1*tM?simVp
z=&Tu^6%FT;S0x8~)A&E=;@LPeld3eCa+8sd5t_&sUdts-vlxzKHZrngd!<ov)jKq8
zCbecnl=gubKsbj02)MQE?Rz{I#!{g(HqY9LlX;E|05w~^UiuH?c^nafo0k_8Dg=Dj
zw=rBFL5OCdA8{z(d@&tpU@qIg&F&aNVICWQX>ilWVhlzVp<d>!yNx<$C0+8Z_6U2G
zkC-a~LoamotHPh>8D6|gO^QqzW3_?TW}+v?%hJ|a^YjoDwr`b<HW1})IchS7&q58A
zoZ;VR@xnyaYw)7EL9D5-cLN@;1J=z++xQ=vMrokkoy6Mc`}i>gdqA1&g=`9WQ^x_1
zcc;x}&u+Y5%{+yFg4tL-CVWetrfksO^aE2`&ym<CE_Pf=*`*BjD2!9xTscpo7~E$r
z6C39LoVPGqLB<T^yon<$NWELNPDC&yiWBGXx7p_PzS!AmmlyrwOY$J(k3(HMKrLR#
z4gNXcKds(omZVeYJ(SP}4iAW1J~iu;KKSw8X(0V>^`wNhooYUXC66r#3wHUm#JQBi
z^n36VDDgX-n!4IddRyKs2HOz1@Rg(n-WL&M$VhG0E7p~x$((t<=DYwtZ5LK*%QEv_
zHoP5A_C`%nvRY{ZqAi&~i!u7NvjRmhPGPqHZSC7joB$Xuiq)FjOpf=pmQ8Gk91iqo
z<d^{o9CgtN0bei8KQdho-)l3fq%b${<Z*OJh^nTn(<>~DUtgqFj7}6C_Ktd6o!ONo
zG<cRO`^vlz$HXzFgE^&{qdBgPu{i}6zIy2_^2!$FpBHUB=~I;R+;8$R#57j4kX2H;
z{3^_@?Plvu6&-qI*mG|NiY3zmL23gmA&!tA;>1*98O(&#X6Kxg#FDZRE@765bv?Qz
z-}uLzx3RmJ3ni?7IhJplC}rd&V9>vac_GbFWLZ%5Jb%g`z}NO~O2bw6$REKno_i%l
zCSHVYG3uE1j!i(ot5EZ@RPODoowSTrq<K(b8eF<$I+GxM|5L90%hqi2N@6tytCIA_
zE7H!#o6&%^3jt7p<y&13%oO{{0BUtyg^Q*1iZ^*?{+KVamQPmijzchjAcyYTnXh>1
z&G-E4Fab>ngSBnjGO(~GlZ<dU+?}~y*r@Vg)KEctbC$S@bCzkk_aN#R&|w?{qL*vv
zx1pda#Uk`e$tW)%-_>(RY~m)pW(uMT|MZc{OHVyqx#KdrCPSHoifDru2xz{e!%R7~
z@(jEf&2LoX-XOo<k@+=}55#jtDFqik9At68<_caRG%j!r^VgH>LxypJOLLXS`UPv6
zD$C?LQ&60KuZ>!h^c#e`je|PA7CNYu=-objX?8M4#M5i3z+5HSt5U1ajJ$hNmOv!R
zG0t&$N@S5Cz|d|sFz`!hAN}Ugp*y$zPJfZ=GE9sswme+rD^~Y$ui@Ae&gK8Xh1?GE
z{c$V__ofyaqJ^|_l31n|ZuH~$>|H|8Ec++Qh>ZsRF3GuB7!+nqaHhc^CXIbnFaEFP
zdGOx2q7X<@Mk}}=0p)Q{jy_X^Of~zC%n%6Ab!V@2M~@9+!qu)G@NKD#6sJJNyq{^Q
zEU~4W{nKXoHq{`()YoA&q6LfWIplO1rk?9I=J>c%iB*&s10fU`%U)++olAv|8uN*H
zu$ND1ll5LRzarEZ$kvXSBW`!yA*b4!3_aJ0pDVcr;yvBX5HSKnE`K`6G7<*Xhqd`$
zhe<1F>lk=L^zCRH_yDf!1l&w+a@hrz&Cdr-mhm>MH#gdJ><A{qy08=H%`Jb-{r$rn
zBqBRhPaHHCm=^JjaXQgQ(gJyVLipR*2Rbazxrg~<2s4xvbutURh(KqQ=t>iQ>U5;+
z{kaiAF(pIc!P0`Hh5VDBxN5XTB@=FbSOx1&mXHm~NIV`o1nhILU~P&khTt?zgv#Po
zy$A*2S>T~7M!AH<WA&LjQ?37yr~YZ07yCFiVx+tEvzIb_1!tRjTiD~I%Ey|CG`aRN
zYB%Q-4zA240Lk#@3GY-53VT);HuAshZ*JE=(48z}o$Si8E&BO+u1>XwI<Y~7%JxnL
zdNn43b&~ZshN`-BMW)WpW)cpq)~tL0m+An%tOy`GFT5`*>2dlpk^B8V!m8bRmapwJ
zn%_-(??;Ylh*(CGq&tOm_v8KYW5{;azCf8z8RXXHo-&Md-1L@?D)0eFeId6T*1r|r
zU<<ez{9<%o*^M4~O~~uJ$z-@oJF{RKEApjxh?-PGi?>O9a!IdrcH>Co(}bM3f#gmB
ztZh!T5B{28Pns|v`_b&YL%W}4ZIDCG;KAu{Da*j`$hJ+J_=%}9TQNeIW{(zPcRITx
zAoiQGpsH^`ypUW-9joHEr|vYL+;-9Hk4KY;Z-lKap#3o9yOmNc8#<iR9h>Z{t|;OU
zU`S1mK9Be9EK0P>J&Fi=uN|WN;$>q}NxsLBy<NN>lOd1JQyQP-L?|t?1cCdVIT*~0
zSEx<+2l^6r74KuP>ezI+MA0B$K(bYVgp!$~Tfu~NYTXv8aOvP6LCTpPmDD-3AVC$8
z%Sme|{!!E)DqO8ALN9P^t6}}m<5ffjZq2_EY2eF_iu;UMV4H8vpLWuVS#dF+30t$Q
zS18q#eWbgNZ%{wRt%MT00K!8Z5eVP{$w!f=;qADj%FF0>PP!u5+6Y|=NRfD(9!^*Y
z%H9s717;I1n-1cMS0%2Z+jj==@bSMgUPcUHKBupBMRa?PLY+;?89`<5hJTE2Fx#3x
zZg`q!1Noh%7gLH}AL-SWF%i%bIH>rEU<PTX6!*cB1-+9?+GTOKQdM+or9ence>AZt
zMw-`;6={mJZ8b({H-tN)m^djnnCZvw{z;pQ3|5T>3tmglskbr0CDNtQvXlwO=2Ohr
z&v2$O-gAcZ8`m94+{3|7jq$GASw8j^S2tVf4nR_@kuv7T5ffX(wOAm=asZ#Az-8?(
z*jBNl!;?v~qL31EQY_J?0cqo&4+^1-MX9WcYI0nqYf-(SDq`v>CSOXv-ff_8P+7F)
zg_vb@f?@)0C$cs3A<p-dFTT(AFCV{%6Mi^LZinkhl^PR@QJXtwEXu$xnvlQN&S(Kp
ziz8%xNjhQfDPKy_@!WFVTlnk;wGY`<P7rzo89e`mdaW@wrG}Iq|9)vrl5(W71qMO`
zka1*VZ8*oU@Mzwq%(8Ra^DKOM*NNeec}_LjiD_Hk-RbvdNRq=B*m-6_$3aeOEnPX&
zf<QU4*6j_a(WK4wS&A716$470OkS=9V^z{Xy<65RO}*OW6NW{I7w0ci$%fSTo$PL!
z4A<U2WxCWvv2HiVUYy_ZQJW71L~eT(th?RfJfegK5XHUA4;5!aYg39MS!~d3rr9#R
z0}^pdOhgYvzO9nady58}SkLR$g<kP%n<I%~^}Ie_tKIQ}g7Q5nBUJCjx#S^QQ$<+V
z-v0C>=B89OvzV{1lP?itsjp#Sx>Tzq1NL5^B+(=1##8vuLFdN~Bb=QVom<n_b6llY
zr?`z}?*%ps;=9dekxrz~#ZeQYO7sR$izwH!xt}#ME74EWhLL(rVIyGsRSaRJ4Fs}B
z%3AkxfI6ydBbX#V-b_kaJwkB8^s!kBe`MPNdQ~s)B&Szfmkjm}n?70O`77tU{p$WV
zJD#M@39Xi~Vh^59Z!U#kG(0;h_*n$i%js<-YZIl>*LzBNSh&UzQ(noC_`*0m-i@)J
z!zgH=oXx>{1cxVDmPY!UEwf(^k-Jf7@bOl%AB8MYFOtlZX<<u-L9o=;-Y(y2Y6Cg8
zubGTATg3DcP-OIyoD4ClGPV60GyL=IS9KL3W%Y9}+{-tvxq61_vph|}BOYxNSaGHm
z@{>AFgDee`3lSX|KHQmbUNpv@2LJ>+&B{=T9O1T+V~8fy-Isem62eXE9l;B&C1{<2
z-Ad2Y{>Sv7(Q6vVC9iF*B1sGBP~Gp`J2weCb>nd|qO{&+t`c7N9_`nyl~aN?4N)sI
zrZLC_SphF6?zY?S&n@GJ&4V2%ZV;V0bUDa<t-xgL2x-(aJ)`WtV40&$?;2i;H6~zp
zayWbY8UaB$nP`oRnP7ACQstqc+AnfHrHp~7ZRw$&yAr=0VT>0Ghu5S@wnlwIn%;@I
zkL|pqI;-=MaC0+bQ$4HZIrKJ;8&wEZk0O?0<U}5QHYe<fq30@mwapx+#Z)?cq;F~+
zEkRnny2DvFIU0uf3RN0Q+dATNPl|}B^m1{r<DYh$o6iH6g_MGnFLlhJn$`2JT};`1
z{<Os683J?HmJfh6W>lBBQQRG;uAm_^n{q@Odp4E5sT5PtHlR^~%Fh)q5%1dnQhNch
z$o}Yr*?!wc^h2iFRR2Jsf!zG3AO^qV9*dD|tY3aQ21mknN0Y<THK;DqThv#<3Zg9D
zX-lD4lYRo)P8+mEE>60akQ9FX@Q-O!<XiK4054l1<{W_0x#i=~PGp|u5SP@GM&8Cp
z`R&qmSxq~=gmTO<TrYC0J|)e*DAPScjZ=rOnW|0nYR0r1pz4OE4W!@R-5&>#Kh8An
z<VA++yU)@B-Yu!hC6w0((1Rf4X|aopiO<?KENY&sDu&fR-0t@s+GrH6%Tsj&f%1!I
zyt5xwBHI8Du63TrIv0REBzkwS8pSmNIt+<{FMQdDX%j=lMW=jNx9C34gLk^#-qb?#
z8`O7&g<iV62HdS^WY_y8-HDuSA+Fw2l>l$?wt-Dn%8z$xgx_YqY}P;utda-M210!L
z`9S1UME)JRNyq6$axkJ(lrtM10V3TFfup!imPg%Es?$F@tj|XBS+=|;h3tjqPsr&4
zDKA;lONyBT{JZIy(!Ch%Y%XxzZ!Qk}s^|<6u9Grb^iXw#ML$Txr6P%)Uv(NSY|w9t
z{`$hfAWAUz$>J=4nnnbmjC|fL+P7i_tod}yC>l%#i6Pvns~p9FG=yls9IAow+g#PX
ztQ<f*yFRiLIqILeMZB@?t~N~_po3ce%ocReC>j-m`C8;FZ~DYC2$h8{Ym?H4!4dKA
zoU1m#U09Qhrn>J)D|*MyKp1z}7Qb-J-M{!oZ^WPf$aLxTb2_UQ@h~8mn7oU5&n)0L
zQM)5Kub4LgOhU!dk$t)(@;A@BH^y5xeSlb;?OqM-#oD5kd1n6SIbom0nUe=0hq_t^
zY9UHN(Zkw_wPk<@BWnY4T78Qt?k#Hh@$VU%pI8LMJheg)Zn}N5)lkEj@0?Qdk%!q0
zg*hvipalr@?dL0$%M|=f*?huGB7ouam@SuZCR3BavT-J-w&oh+R=>bWnyvpq6$zKO
zO)*zGJ;qA|t!wos^Wi~)7@CQ%BKMISn%XRXT_(C#UJjRky)vqh6nQt^tSP#GFIv$M
zZTf58z~*hlNa}#D&3m3aVF>IE_rfk8%N?)!BR3P`-6rbI5_u>CH=20g^h~i4SN6-|
z)RM{lUzFEhr%W<opekG6P?EXn0km<RIG0l7h%HC|-f-=w@yT177p6zYFH57yVI_>@
zCHwL`t24dh2_~}GS}(?{lz|jmRF_gr7z3UdDHms^?^(ZyWRER5>VDE0K&E_@E71O6
z<hb-Y-89t>N#N$4W~Ju*oDus~%D-^mfy$VGAEL{DeM4f|Es!kTzlQpir@6UeH^g~c
zr3&4uz`@C{>=^W7VrSoX;G^!YO<DUv^<bAtB#S25*tcH%w~~mjS>4|iaI0_dT7&o|
zCV8WZ1FmK*6g-B>ay}!!V6t(Nn>fb3?j}ml3(NwT?Kd(i9QrNGL})QVDD;MD_##SS
zG4TRYH(xzS$5%mJB^e`TI^HpH!8vC0`h1RXbeb8Du^C?PqKd;+T^7z&!s1N5Q7BRc
z{T3p53WX{%uC*TBd_31r1M2lpHZ1)CX+*cnsE8JqSf2S2kWy813}5Fbx~{=B3o02r
zi-}GMRXKYKGDt$weJw78OnwG(=569rQxuqP!%PAU5^q^db^v6Zy!$00nMNjlre(%%
zo6Bi0!L_VVLi<mF4;1ltSNXA`x~U^4ks`r&!VcPD+VOXb00Jcv5^BV-{`2^%W_JKw
z5f_6xHO_2o=PaS9LQia+|8)`ZNjlrj1xU94_$36sf81g3LgY~qHeDwf!5wFeU8mLW
z)FDBqO>Ckt+hfVgtY3aw?Xhl3mnmYqI6$qqFGo@`h;X6-2Odk>N|SnOIpFc$_u}iS
zgkqfJAb)A~zze4VyJt>!hYewXJb+o+QBhRgHxg_&P|Dz`WM!nr4M_m4jn^K?ko&oE
z$n~{#3s$L2<P}+_gI9%iAN$y%N27|9!CI-GHvv-h%hYF_OF9h6Jjm+fw(x7Va^$x4
zyTy0$N_oehy;ouh#=V%!RUQu4Zk2r<ioRv?i`qpY6@Y22T6#-HPn+n+=sqZqubl(T
zB=YTFBvPIQGSVe}xUvv%p~M}V8$hLhrbaTz98PW{(C;`jIoH4}HpM~fQ5`~Hz|V38
z?zssybv~?{E*E?_gX6by@-+a!#v7~`n?|?m?x^$@)eAc5Q=dn5^XHx3(SN1=P`0_D
zgl>GLGBT2&RU{U^6y|h<rMCv|W`K>UkY<)*{cN{Ey?*XzlesJ$JqW9?vdCwE>>zq7
z?isK!{~7VYsH<_HzQG$J;<0YF+OMFDu43RVFVmAo3a$vaw}G?(4#y@UT^&09hk!%6
z&q0+8PwW#TP0Mnxc$gktC%OMw$lZwc!?5nvu1bKQeV&2hY%+<uSJ4PVq10%RgxDI0
z`m8|0ov4%bm7?Ir&P55&rofosj5P6hwF>qfx{jx&-tSzDI026MMMAJI_<6&U_kQzd
zTC|$i>=a(%v`NJgTPHSj%jOYqI!S8S-qkGO!i*BP`UVcmx}w5YDt+afGR#aU`!j4e
zi<o;Hm>dm2?r?c5xzBa?N$RlXpznW82TfLURx8M*;-Ar$6waG!j$y1S+P1K8qM$DQ
zfO$X6Imo<<VhDc4gWR^b;H>tRWy=a7(N`=<T~f_=AY6h&iN1~chhpEW;(qbhlF>6F
z*9#Nj5*I&$-oy8kOACb<+m|pu0pyo@z5oXi`b3*}r+mBLYCHBda^rC_gQh#wZtcMG
zYKu<bQ&~RZeCVf{>S@<z@}@gXu`B4b7!mDnn6)Qb_zTU!AskqL8KAfIJ??b*PdDO;
zAKu=stBoIi7=Z^dmDRo`P0ZRxE?!VeaxfLhHpv*9m+D^qSxVbSe^*x7^{katsdU-4
zX1MD~K~Pj>#%(?JDL-P=Wki4;(83^cAXE28j&!cIUAC>GDtS@wFn&D;U@3`Aee&i+
z@(%X)EWi>N*4zBZOt2}fk}jb}3?vvsxEU;(XB@5^k(aKcp9grKFKX<^jq5SB&9~v}
zsl^CV^m?LYCz@~V-ehvpAO7$%rD^50!b<T1lrQvJOYA2CzReLS4b{Sc{>k+lHa{yz
z@YECKVZGH3#DSV*%Zl(>2jGDO+g;s7r#>>9XD5yHw(a*<Rt=5-x2u^vuandLE?M6l
zS?s1?#rj!NKY6b3L^Hu*pV)&FMFd-tid)jSlZwKGCD!cw7__K6N&myo7ZQg!?nrFA
zq=Cp}>X(g`(cA@Q<X1|NFk+#7rr%JJY>pbtGI&dLb>V!}0qk%ya6GN7b4K!!9F{{1
zNO6ys-uR6`9np+;^Cd?Pd}4!ETa+fTn`FZ12?io^Prcaez*+B4v||i+R7fnucf(wx
z!o9zK9m~1)8(I1KN#zf<95vg_SY-QoqfXK+K2e$0&XV3h&})1tblI{N!SrSMG(U!z
z=gVy?f253?L>R$JqRiPlYdc6&e+n|SQoORh$DCEsUPnN1))RduPb}sl#_NTL)@f3f
z>i<av-|!m9etcdlKfME@>E}A#ElCu$u6<nt+;#$oR5!ULD!PWUOH*2NY;CAf&3N;U
zUoQ(6kL#ulPAgLA`%JzZ(|lL*_n4x_SJvEGr-Pv#vwvH)vAv$gnw70NI4>_Sa7DTE
zl6C5U$(jzxkZj})KST-ZYMM{~F;4jpA_^f0s{J?&<9nbD84jW{7c~%PJ4fj1@YH3+
z4I#Y&?Sa%S04+m!3?~&cm8P-$scsA_dhi5&G^b2$m?<<pmWgm-K*@GO=^NFIM8<I<
zE6ga-i=PrzdI|BxQT>eFvR4bIT1oWO>8VtNMI@o7ADzVj`IA}yonBw9oE)lL@aPzx
z6UK<t2)WlZ&dtx0agEi2KI0(`frL0lGf;h>7Xw#Ml_YsDwA7@$r1|73Afk$aQOkqd
z$iGT`Uh<~9YS7C_!#e`pzjH5q%jo6eA3uS9x(BRBExdj;wkgWSe0^1e0XQE?>&mXq
zLN_)bSCOe&<2d?ozjiVw;Sr*PZ%C;KS!qoJR<Yv`$}qT|QNj-jf~=UvOYZY_Y8{Px
zU%pBs`ZVLqd2}JupI}8_Dfr~O1lt^bCvk|P`u4TF`Gs;#hzp_2i#W!nN0VBg!X8#G
zxHvtZ%Y&0{j0)*uFhIZH)dS!@MOX^9yzcnA4T$~#^djvfFwJ`{yq9hZaFi;MBBJ31
z;XA1|%=$$|S>D#M+!B{4uUw8wT(>BCY~Mw=jDN(hqPzPf^PIz^xVm=fPcGgXE5&@z
zs>^jkMa#ye;!=)#)<yz_=>(4z;KqMJr!kc`nq(9b1>m+H6Xx_g2tg2bJ;cKLLt=c}
zfegNBu)MDZ_{)j$s)NKwUh|<8aI&u(($Oc&D8EM_1=F*WW!r}s`WR@{aeBTQyJKUX
z>S}w{$0nY7%E5^PCyKNe+=0e~{)%RtQgmhvuboC(=M;^-5oe4v07*U)cJcI(HtyX*
z)d@y>kM-9wP3`$}riXWsxM;#}t577U#*Cth2$3#X3~URLq2%-gQ`MQbblnv}%OICm
zEnQ*ybZd&c{cJZN5K=gQ!mQ#7Xa#Soe>p0J731~CGs}y3*)(v5rMi_S0VLOJ-io_I
zdYq#hmuvWEj3q2Mtb}07x|NYl?`9qH@mk+w5icb)6DjouDj>L_znFT=6j{EbE;u`6
z)}@h-fuL(o^S%>AqAmvDNn0!=W^t0d(y}DJ#Fj;sTUZ8?I2#+ODdy+YQga1mm26%G
zIu#LC_y2Je;E$7$qKC9%`jk}BvB<(>ZP^$Py;+OeNzezhS%HjhP6ZT@POI;R_WVB_
zt8vk)HeM^R;Dz|{zfCa@Yk$XYMQ9dTQ$b{k%b!Op9Z<uD&hy|*?a-qYO*leBS}%#!
zi<#U8UW;TASO#^3nZ5{DbHc=zL7=ZP)tMy}Ne{N%=w`THa6F*dRtK1?;3EEJka>U8
z2ay0NU^m<M7T}4ry1gA~8m2bd8UYTTI6phjJXdKN*APNdAFYto5r>OfrC?Qlj9N*G
ztcpj!^JIT?3+_l)5hW}VB^O<cYCTJL$S3Qf*SwWgy}9Cwy_{P*de)QlBv9&p(zeb>
zZ)JKcIRYg6)X)_`-J?GV0eoy_cDw++#CMy-tNyxf!&I!e98Z?5UCWl<t8@p8RL0!b
zMKY{3pM#2%Ru2l*%>k8fctEc!DCbG%xV8t*^wA{_AALqelHoco=QOYSm>itss_XdZ
zFew}PQ?trEzekb&H^+c#22-TrA8Dw1de3b=3=y@VQ9)SXAoC>d0j-30j+uo9V7C*S
z{8+$zwI*bg!zcOzf&sxpYk#7dCro+PWFWpazQQ}zw#(e$=Dry6fX;S>RNh6`2~S%%
zyBni}T8y?=<9KM<tX*}r7#~K3$IUrJ{DYpvB8|;`9=@(a8)~CQK#+y=$RbMO%MBJX
zj>;~`st68*pw6%mzY>>BQnZOpys5Ogd2{+Q>q$%qXo_Om%q7!M5w_U)2sz%W3rS}R
z9D51vO-8YrZN35{CU1-y2Han+=Xj6T>pJYcFUF^23Z+PG&!g;-#7!f4xaIE1Ci+qj
zfH7Ye3`5OWG(X>_<F>mm6D8{wTg~gu=Hf0wn}_R_Xm-l46oT{Ft$?BHQ2&de1A_2)
zL1_POz9Nc)ZQ^zfEQ~Wg!cbFK8Qd7$j5kfIC!IucwL_epbQDf8oSQt#oePfq?Bk?P
zCaFeTO6gsqH_ij=-_A!O^HMil758r>3%K16X1?&VFKgNm8RL$`ZeU7gBua|ZU6s^j
znRYX6CXTCNP&r~pa}tyn9{R3z7;6Zivq>g5RYjL1VkVfJ46~e?r+u!r42a6;Q_D~p
z)fg&@a`TU>)x)*jnkXpZo=n6#$S^FlQwEZ(nPWRhg^oF&K~PpCyYcK=o#uJt`q{^=
zm)_v*D#YN~WF3|$ZSaKg+^i^3VTO70NoUJ?x6ko6q9xz8&J!>^eXz%}XPx0Qe?Ze5
z3Iz3x5t!-;L2H4IJ&z}0VyFcAu4+!|2f;606*m;hQ`auPqw8Tvii#J6t&8y;MGq4y
zpS<Ib!~i%yhId=fbq4+K=9i@@1>!Kz&f*BhL@@++a&%k1U+Nix<~hpyzM(pqAwE*R
zV2Sh|`$6gW6Qj1yJD{&=X|D}dUnchV^(<?|j!fasEbUMF<Lo5;K_%c;Jqk(AwHM;y
z_5!hu8=?*twLvZcEqKnFB}+ZN8GG#KAk64LKIZIR24!Q!nI0{#HC`|IIEWWt*H!qj
z9O-VwOCUuAL^1d<J~I<U-wmJXpIk9(zZO7vP^XIK{88H&FhK7|mGtg}AB%Ios@i*U
z5aVblqDxT<jOC(ic1P*jGp(&@k@u-Ode-O6_hfa!u^Y|lr+pgQmlVE-jR_So5%x&=
zF+_9)$)t@@amd2VR4FCD(g!6-5969y&CNz%d0(b%VK_^dHiXYg)#>Y{Gzb|-vZJ>i
z-eE6TjFpZ0a=o#jk3LzZftD=JX%^75Pen3B+|h}exk*)qtH#^3?pT<&YYwKz%pO@_
z+wrDj1aj&wHq4r)8vGup0F*5I4BUwd+E+<B+ogHV8QSCR_4NbU{PA${RMOO_DP{FW
zQb3x+qtMyL|8Ay%-%e>b^L9r3op4VMfCpVDo;`onZqGp)Bnka_B!LAPAFGkBlP>R<
zt};P}CP;P_wT9C|qpZ0L9*ZRAg?3Fq4NQ%$S521Sp+@R+r0yy$hc9O1h4t7T3^y_Y
z0<n`=ee5Ihwt(g+8r^NL19X>byWST-LzuyC?0aoeydcb!H3Q8?KH@1z4)X2bgfXG&
zzxs7__QAQVObrWzONmh3Y+_XnUx0VHDATMQrCeR|bJP6_q8O6TVV#y<-IMOFBp2L;
zYb?1h#V-3USi0PzoM<l?i#CtH?(M?Q?_yMJk4GNuUzJg&q&1zi1pC|0GmkH@`|8t=
z3o0MECw#f17YkH12O0i*H)ZEWvaRm_?gXWs%J3x$s=c?;d>jY*<O2#T^WcaZ3wDY_
zTdcX0IJn@F=Dj%jODa)G1RgO!2-QkueYKE(%?HqIe5W_GV((bgblUhv%ptBrqTQ~0
z;9cTbwo%wz{iEbw^6985wugD{;;b{AUkN%NL;;OJUug=~Hb8k>{n-9FR7IkcPG!r<
zBCw6TjMxTK=qS^ZY|j0PLE8a}xz98JQau?joW=nmJBVZ>4PbrPG9T4yUFV?2hBf3c
zk1L@CmnF*t*xJ-BW$?}6f3sAF^Rn#WfBq8j<c{jd{`<8)TY#^<a6E&|8OQeSTNa0`
zzJj(=a_iS(L4TH&cWlT}jMR#FX_mF>u5O6`nEZ0tSL{tHpjfA#QC<9t)7@DtBjPYh
zzEAE}(hN6%34tJ^9da4Q;ip^;8~~wZN%H5VO6yh|$>t5mA%v@<>)FA4SK#ZE_SxK$
zDj0H}{kSm1Y6qkOntxz)xSB*OGk*6+5)SVO9OD?Xs-nBWcDs1uHJ-ra8{%Kd+|k64
zYd}5!TE;uyD+M@4^M_M{JEVbCrflJ<Sa#)DHX6mLXD060y=md0*|0C)6In#mjBxwt
z1)G(D_b~73_S@fe&{IulmTC5=7aH`1bsP|&KDT)0-ZL3w>`2vRqSMoVJ}M@50OYT$
zqCk+8wREEQ)<j*}54ymRgCy^|F;VCOnJ>+F3+$^j_mxC2t$A%oV;PTx?EG#PbXgpV
z2Ce-6*tY*{<^|o)HvnP4nq@=7egX%2RSD!ldl-G5gwrVRVTX#*U;|i%^WdzpW`Khk
z-PMDvBt^dYI8b++Yymn<Ui16m8Yhd#{tbt|L%)mZc0^%7yz!1Tck&j%5u`w6EDBw-
zw4+v?Q@5glpIV{``#|&yXaReOqt|A%+F<K48T-S}1`-aeUO2)v`h}w)e(`-S^V?wl
zXM<6Bp=ns3@gm+adqT>oJ2b|gg2*~O$<uf89!kI=rspsq`c!L?SwK=r3W!cJE`F)}
zDV6(=QTQ1ICE8|Qq<tLM3FT+}({dJf8rBtDk6r@^BSYe-Wi-#livf9-mS%g)U!MF6
z6$~7pdH#$y-3m?-K3Kf?t&9<$dUBxbAor$~H~1;eq(GmIGi8s)RR6U?=y!iPy`CWA
zdsQ@6589eFRBySqm>qr#Q-;|H>=xZmc-X@akn^OCtTk<Cp-d<X*%`^#0B4JYN!@3R
zm9|&W|6=L@jF3rvGG|jE6@V7^@^q163Id$x5cGg@`BxS56P|z$G=4e&Bh^sy6ngHU
z!>sqIfZ$VsP0s`O$7|pYGHUi=?g@8hHm=_*2xSet*}Bsxg-BqCaJy1!yZmE7ixtGh
zH1vh-|EypSd`ZP_Jz0FReDe;m1oOG(Uri$LvcK-oKd&kt0Y_(*k1S?x|20hhP2%w1
zTjU?6iGAnk;O#AACDcFb`(I!9hZ__};6l+zwi0&Y&ynlx|4t34qJiN!^e<*eArnT(
z|9f-)(DMH*req*%z}UW+$;eQtbc_E@(Dd(BmqUWYPwUN>0YCV!mH%Ob`X7oN@05)q
z`oH;Ws{Ak0^oLRVLlIRF8a_S9{~7b&XgIJ=xt<0O0XX(}PW1PN-xVHszrGVObMT+f
zApD_`|6?(p3wS#Ie75fIO}*gLp-lnW+nj88l)pFjN=9ov;m>&K_ql90|GnA%-I@Re
zt#bGhUQy?(|FMt%pGD2ygk3xYvJW0MB_!<o=WhY@UvB8K{na-5zxA*=NZd@?6+V3t
z_^GUrzd0L4lGz!f<$uo%n1D0E2N4rSlz(R+0V_lWqP=PQ?OPqbfA+pPxFZ;Oy`_K#
zU*a!~!^oK~huqp(v}FqLMt`)gjt*>X%iIt__YOer%R*>eW6D1)`}-~broCLyu{*6v
z!l$=ZHA?@j3S474Dvi5wZQap}1pdzcN)hM`EHQ(T-n!p<_-{5}Hpdj$p50MD6aC$H
zKjR&2YW#bS#Wf1}X@i(tZt8!|=l^M8s49zhnhOw2|D9ihpa_fsev@IABf<Q4QNh1!
zqyxwdGtAp-x_{B|+dyDGo2hQ0zv}$|TlRDF>Bu)>sD~F3OV(eQV?1-9v2jvw5=sqg
zlSzv45q$T_t_3O*@3P<eFF@T>)E((zKw=O8Zj(QxQ?BNzUHM<;A7BRbX=nZ)Wp5o;
zRrvR7svse`0SS?A>F$tjM3hFlq`N_2Bi-EyNJt~yCEeW(o8I)MnYDjs&Nc5j^UlmQ
zf9Zc-UVE))edBZA4**YacNeMVc_uyrGYK>}B3^Oz*lGla8MAMC=(<WO+TOt<W|y#y
zCV^+>`ehC{&LecQ9=MU^bz)gu8qU&Wq3OB*8$o^p*yi$j1GFyl&eVZ20DWm{elPyL
zdGh`l2nSnmGs5D<62%0Mzt3u!V=P(!RcgT>6}lKc1$Z!x3zDKBAk8HLG*Yy!m@t6w
z1Or=yUvqcT>WTpUVhF5CFyU*k|4_Wru0$M`0IgBxo&{gjM9ntNUWDDB0GkUuzH9)1
zSHDWBX$7LmbiVDtK<_{7=*sK>ymI`h#Jj?k0j!G*0p>MxxXJ3`py#66igC`Y6RBCa
zwEgMMuqOm`*5(YHEE-m7hXTd4_P;D&)t<;HnR9{N2usZwp!f3z57!4jr-Xre44}Sg
zYjhJB3IO@c9L59EeO9_ehWSca_mM)yyH$^;eYTkhsz2!kr0iDfc0FAR!4TU9Y9Xhq
z+Zmh3*6~oM8C$P?s6bl#fAe$ymtSv1E~f-B9lo&=6Z%pEpHhDUD?0OxaZM>!P1zQq
z@rc42$No)m+#mg|XPSo(8oHOA#z<bL1B)5gGcMRY?5(=yFQDWRbhUN|=4f}1DWnGH
zbmPj+cbf$5gwoNZBoq|(LK|RQr1yk#TrTvB075)nZGa0pgj1Wn5k$CA!q@Y@xCr<|
z%g1Y=FpBvMfcV_<fn)kdnz2^G6|Tz;eLqqR0JQpzipZ@=1HcVzvIGCr>Vb#f(=Fuw
z_`MI11;NUGx-3M<jRk-ikq9!;He;8Q*$9ENmiNO=?3MmruWWw0kxR<3wm&$!-|ZK6
z|4#n)?mskrIPd(i|CZAu08v>{5LnMPDQlM(3I5cEQBQCw8{}mDM&X*%v1@f-xe!DL
z5%+d{I9YI8anXQd-*ij&ys$=~;Sd6zDIwMI$WKX~rgkl7((b@!v+Ey${(E=jS<aLD
z78pQ|zc&PyQDu@*@A3Ua9ib1v3Jz4>ay~e@(tbBn@e_dMXj*`|@<xK1GK138=wN3X
zWY?6eYCUda;jr%~z~yo<wJklPO^vXtwDGe<zrRTJC9tmZEdOi>$@Y7y1fIp-kC`<j
zquhZnh}H+Z@B?410gYQi%iX}$@QZgxz`y_{TI9~cB^~X*{P_RPU(to(Z?59aKDi=^
zv2%(`UIzj@0*MnLiFGF4v(K@WKAJN=e7m$^=XbBu#WCQAQ-<dS^h-_UERP-{&E?hj
zMOG;GehNvfg)RtZq2v_N<u?N=z8tP1^-f3k&~{N>_l+RKzau<o&CoV4zPr7=64<5d
zdFC{XCg6bV=`^?!U~j-cmWwCM@C4|2UzW@o)UfxQp?n3|z!4<XgyqPwOKFv^?Wa=m
zO;(p-4F4_Qr6YO<JP)aGLSORCEURE*NA8!f^QM450ZjA=&@x0#3=o@|2%u8GLO5fh
zX*vR)t@nOz`CA1l;B*u|4K35eN?;2UEc&>w!i=>j@8P;cx7iFVjF?9$W0EmIq+={k
z_*y2h9b$i%Y@3-?aFXSaMSI+(6as0m+o`~!2Ss_Fj|K1rLtaS6)@88El(5@8UUzrV
zj(UaUR0gvm@As3*17$6b)yw2suX1{VKn0LqoQCa#t@#T)KLwUX6QQ}=W^PMM<Q8LN
z?+^14^bh~r1oD5a^a!gFMc(|HG@X$VyKG*2WO*X--1}vtq%f!dRmUil=2fQk!w7Kt
zkqD!c1a613897z~rAOH!(H+2gy6Dy3U3k0dnKFNx!{*zH;4}(8hQn)x5u_0TAWN1N
zyW6Abni<Ios(^90asr6qMH9MwXFHg)>GOU#>od+D0K!zf*oH1ZHvD9c63%Bk2wVcM
z2=^)Pc<&2zNf8t^2#}7ZSC{JHC|=xtD1|eTe*ok@Trz2^MHom4e~krgj@Wr`5uY{L
z?!0%k^4hy}31FjZrNSxGj2A0Gyt~k9T6P@z=fz>f8F5G&OEf18%E|WFO>Ky>L74_R
z<KRkQCwT5s&DQfr|M_mNq+KP1RuS9-B=m&a(tmfpo+e?xmuD=SE?I@|jlDv+^?{EF
zq3Q+jRY8S=%ZX&KTHy~{>opYmcEx$j=V_O*s|0JANW>eua=NUP+}Dn^O43lYbevTJ
zKh~{V&U(LA?E?SFx1_!|8}r{n#FP@0BHZ3bNtrnOZ}r~)tr|)I<vbTNQduXxopp)l
zc_|PSKM@LV#mS`7X|z|izw<8JOGHpM!ZTD8v@TK|Y||JYQKkZMm2MUE?>^%>F9R>~
zW58>6Horhi6lrDA$4kvI(_}rKH{cL10mCkECsR`2C<^(!Hr$o)PErBL`dGVfhSL3E
zn133v^W~IY*xmtcOn%kS`?|6^EY4dOY}=rmW@xeaODab+>-UrruO1$Sqp<NXUPlfF
z<wr<w4qA^n!>jG*hp}fcJg}$H<ee>Nnrb<&_DH1Y0G!6JPy7bvrMZr{^19Nj%86_N
z;;Dw8spYimEUW)bkLPg1>6qWs-=@sh1zP6gZzx4HIp_g87-<seFiY@%0oe~QOC;?{
zcuKvG_Wmoz{^X@B&-vZJv>6g+Zos0xd+T<)lMLhIn6LoG=ur5SVZMA8_%ZB(ul<$m
z7Qug08vWPu?#0Vj#R;%DMN03z8>6sB{@s+kVx0J_$9cb;(wS<W&uyt@X~i^{YD(N+
zBixbD1XAy&LW}|@_P)D(sT;Il8#NbJcRt0DixTK=P*s2ghIl!jVv>nedVbG+wm;Ga
z8Jnk?CW$#W!ikDVb%uhx_%sGOOLJ!<*FkL?*#3>AaGqi<U%mEPf+!@$n3`QoTQnwH
zSIxLLB6K4Ad*<8|%NX#C;Q?n-3mfo0_U=yzE+8#32tr7BbW29Es1`}*-b|6!e+M9m
zFL=S^+Hj+cv5qx&h4M)-eej_X5OikFq^zGYrs?b_aa#sKk@X)BG`6@Z%XT%aL>CFB
zDx7T7gez*#k9zLlz7Xa3#UmGZD!=!hWh~wdrnIyB6t4Muwl&Hb9s>H)0tbpojg;!B
zqz8lO*lhdmnuW)sJie*A6}X%v)ZS%H7H<(;$nE^fx*D}}5MAZ9P|K5vF3*A)rBy@s
zg-yv<iTQm?cD6mYZo^Shcg)H%VfZH>fh~peq`)JSX{A_L>A;l_P|78Tu>mm3afdas
zTz|ih3qbK(7kw{Vjb8F`+t6NLz93bH@^?JG-Kv*UElr)pMa`5ABixU-PlPJ^WJYva
z0CdID6A%mzhR;W7(5%X8)m=Qu3GVK*bV`T*|6%oh(EZ);zQaQ=;EAhC$fA)fU=8Eu
z7s)j*Xe|^rJQkrdrnPyny1KL4iaGgzQ#awnhy^0<b-&Y;(hPik$VfERKZzRWraZ;p
z#pUbVFwv;VRj|DZyt`dTf5%qyE~1nN={~6Dhq(4S>R$unR9<rHp-7hjUx1JdCeZh0
z_lZ<n<@u~G5D@Y$kvJfJ?O~VK;Vp@;a{+DMiQv})*548WE)CTfm=$ez-^t@hvQ3c!
z;Z#v;kF;|yj^S<(u1cxvaMH29ZZQ2OBjBCc9z25=y2w4UjWmY1v0k5L)E7k<GRMB`
zR;!F|z(0!EPCFz$iay@JChK)UEfXhVp(1B0;cqVc04hkJa>ufTT5<OSAjDxBNe>Z&
zOCOexfv+zrod4I|)s~&&z+nj4Dh1M1Gl!wF%8I6$)^IsgNm-pXmc!foaepN`uGpl(
zQuS5~^Y_Mp{>QX=MsH5OnXYRDo~63jX_~jli_9ft&dj5V;-h3sG^|!X9D3Srocrc=
zh27kF5Xrk50!sl(9uX2+Uz{>?ppXb3k~9mTp-cmYsodof%fqe3!zo$u7e6UNB!^?s
zt58&#EyEif?6xy7oD*~wiH!VNy*JR<C#L~)i6n)mM$4*jrO=o{(O6yqk-xDOAZyqK
z@W%p|F@b&I{B>i+GcfT+)v>Al>Y|?;RN&>@rjj>QBbcQHhq&-;IG8U)pU$GC-R$UB
zPMV>l*|;^`WDo1e+%O8GO~A(Wxr`WfA^1E42<CFbtjrK@Gl8!d``VcIF6YY$+E^ZV
zk!DsMYI$*(c3lIAjKFZ}vF{?rT)>94J$q+v1YSixJ;B<ON$>C1o_$@|`u&kf3CC19
z$DR@xY?655vBK6<JGfKO$kpyH2YkK*wt;<zHPfXAhpnzejc;0>W9EMx5wCQukl)*j
zWi-9-lx~`<dIpet94N!T!|3bm#Z_SKE;0Ensa?&UWvN!VF8E6l@F`-F#*ie>BA#l>
z1{UPEe@KUX^ynhn3bB1+Af~qPc3~as{!st<T{$2&XjmR@-*h52Bpida=yhIH^^u~{
zW!Q_4xHSNPyJ*tyn<vF)0ic2C2GA^h?Na4-UP{lccM34WMK0K!$#FtFjBQoaF>mD}
zf+lx!FHH8Wx+$z%eN87sU5<EDm?gA{PXtDu^&fA{7W)N9ZS``oIYXaxPbNAK+aJ>w
z!P8QsJNpy5W%D9B*t^o1dxtakvX<uUF^itW2c8dY_t+nkA)04e@h6eX@$uxfnzU`%
zK$78%f6$SXNTB@*Xda#`8>b12I)p<Hqt^Zenm#&=m3>WCDQ|K}`Q8hv<(bnJefkaY
zw3Zle>`3wgdtp7grrbDq9meK#vH}%Ci_(=#*#nU6414-{w$;b0*>oLO>-o6T&I{KL
z><Q8{qQaC`W!QY1*^4Cp->14cKCjejvj27Lh(XB3ISb}S1=AT`X4(Rcw8lJ;?)7q+
zp7d`Ak_GC8^g{{}^A4S_2_kNJaDwOvWOi@!ccxXBthI<olDEd$AO2=PGQDXIyYKWz
zVRM$GB4>K1Y6Ykj?5=Q-<1h=H*G~Y;g#TVZB%!ra6)j0FaGH`_sHr@vBEIcG97r=w
zxF(LcNR84v#NAj1cnMspoZp!12}w;<g9@*PYO+)WUQBWQz4c5Q2;TEU2?#$HuH~G3
zyY%9)5@5D73Jd>YzSLoVj&?**U2Xt6D~&OIZIuOj!7hEUlvJKE9;p=Q!#>|EP?~>h
z(r3?p@G3bLsbDo?1|$7*N{Eus(=N7K%w{N;(dZ$+W#`AAdoibX)-*Wv+X-Arj*5)^
zYlZ_nNl0=EcpG%MiC~<I+N+HjJdTgJBcNX}u_ZvJ@b2};gz){3AaZW2P|*F((Yg0I
z*DZ%7HlGcEj(m;%)JC?m2#gfAu3{=wJjm<BY7!BpJ<?p0KwF%TT$I?OI%!EwnL-yn
zxP{s_Sv7KBG)sx^u@m3CR4k0R4*L|#qo5;IBZt>&#yk`Lh|NfTIyhIA1r0$z_nHPw
zHhl#a|B;m#MXL-3j)Nrn`}NtOq=H}C@?GO9$oL&i@U|f0pt=ji_0+1XSslng$q*c3
zFgRGbTrRaOVzMXO_6X>xvnY<p;4NU2_Er~ywvc&4z19wAqChc}@|zV&{nP}MvtbE(
zOltaTf-|Iim;u^7p71YX1LTZ}Sy07#Y~f6pXg}Qps(73K7@qB8!&;!ScJVm59%IzJ
zsq3UfvCPc5h?u*(d6D(l55RCZJKOhecdb?Qv)gII|I*5m;@#X=3&V_*4#b-wnfawQ
z`Av0qtLLFA-jr>;V?e66b&&vK15`etOH&Suk4HU!6WrRT3kbc{@QJE5m64ojCU|Vj
zfbU2dt(-?yZtA@Qci^CS36y0&ZTEqKp4kibtF5La_xDR*q5JbYyeVP88s*PWc{>D+
z#u7Re<7Pmx51UhWF*bb}OMK7UC9qa8HI&%`nPprWM)SUm(q>g!sMC0IP#_fP9v0?d
z|BrQH*;wzd{-UtP?b8DfWAj)($C=QME+?N2dFjj{>vJo6)A`cxq_e1y3D?Q>c5O>N
z*8g^k^gn0YVq1s>rOp{o?Y;3ZJ9)%6C^UQMLsD<|izLw%K|6Z})aT@}2q2V6hc4$|
z&dU@v4FKIZWy^kmL5Uop%u9JY?jUVKI62uVEyD^@--}WFSrnlxM7jL{U<ctP&j3pt
z1RVanZxHsJd$ECfFjO|^1&x%ZWnC$XIJQ`f3{EU|XP`iJ6lUDCTu47vDEmTmlr1Gs
zRRnoNQ`gI?_aw~&MRZ*=(*t7(wvs+z<X7whH5<{gCQpNxX&!~>B$WX1Od5gtsfWjT
zc`{VuOJR!yBki9D3G4>=s<+~Oc#*T_--u1+L_bOP?>pWcLF^=lgphDq!N{z!2DMB-
z$$o{+G(Z@{E*%-joY{#YWgtmRBY<;^9?0Fb_=RAU_c+T*PEu)+)?*S0q_hLV0~O?B
zaxG#UH(7)r#}!3;QlfWb>r<;r3-H8#?aw~^NpF>qevt%L&d?V~4aJk!Uc^4m_MA{}
zp#9v(YZKkCB}dqKTd)-;>#D0zGgL$7V#~GospOax#9`V~#A=!ol|goJ2?RR(ygrs(
zjV!%|k)J3@s#1B9L0*GiLEf?G*6-i_63SyF$=_f6VHnmi;5=PJaJ}(#4a}M1TfSTC
zY;A?uNLuFW8HSL94lBu|&6$ovTPzhAy4bqFKst|6`Y;^zub<CK@ZWqTR!6_>45wpU
zx$p}ylX~g0OxH1C(y9;A#N?CoAm&hd8FSt_wBxua_Y<rEY`)HTr+(K(PT1FSr-skj
zuFNaXpzDrZ00yxXcxAb85$1R{tSG*ri<kIUaf~C&uVw|_sEQCYBCDD&5|4$@y_t|%
zD(0OdokN4MOHQM_|6EfieLhlQm8G|w*FeCb!~jXSH^X`D^yrkmvFzaESoSy5Yhy-3
zf90?t`}qM<GDibR^^)Wq3%hLD_C;t1CM$w~ErzCQ#Ga&!G;bu<kMs&-0&7z(LI9K*
zE#UCrjPW<pA5Hh(BVSQ6gKa0}eY%a16C5bgbjy;eF?}+SxVPz%RY@=^e~s?I4j{9R
zym2b6T*r0D<#ymAIkv>C!Wxf77Mm0ZzDs8qG_|%o-fT^+L0^p^D|o*V!F=^=BW#K%
zp1hqjdb94KF>{n1rnYG3sjobSj%cMjl|V%#ZokOg`xxzJkOirsSbVc-1W@3JllLr^
zOCEMi&2*}+t6mLHY*GJeV@qcoKf8{K-Wm&OxU<CZ+W6mfvb8?P(YBLKvS|C*EdUYW
zk~uDzETw8!5`@R*hdJ`q&T9N>H=nQI?8)B*ls-!_l(F=O*8Fdc4bXGl4tHAz{VwfR
zvc62l=S2@UxiO2A=nNU)pEGx~8K3pY&h@c>^5~O?YQ6Vz-XV!NMB2&(Lqv1G_#Sc@
z)iAH7_Gf#I4>DG~ALE4-P8?=@6mJQP$>P9DsP!5<F3HGVTvvF@LbhTTZn@@lQG42X
zQ_tuJ1;bW7g%#b8cTQ*Hv3{DDi?Fs_caRuf@2F#OvR1lBuh6z=d-#f8*+;vKcw54B
z&wS%nNi58T>^$mog}LuYhq#lG6wka;@9pSHGvO!M88CzW>X%pOc*Z367w?qxpB<gj
zs}*VTRw#iVtD6o#bM*hy)R%1^S1fs)A#csmy^w=A#9JMJ&JPSzTm|_}_u29TqxuD$
znW%pehVE1U?oJ(b5*Xi;Rr<*n<l}b7=Slbq1#Eg1fl2nXSEMK%jF$Pnky{7oPWJXj
zFjOTSNS5}Qev6=BrqBwz;8Eb^T%_;6+!tb!=FRV>k;?k@fK29X|FtLpB|6HcKsAU!
z9A|R(YIx|Urc?4D-o^XiYR(yF7T1xfuD1%g?KNdu(nq|S5YEKLBTm$p^U{61;*};D
zSfg*Jth>XMYpH2>z4PnjA*U6-S0()+KJoTp7KPJ9{#adNl1hLJmtH#OD_4Q5Qg6bN
z9A3XbQt0{51{5mF_W^nlqfRLXx&*=R9c6WQ$pStIgidkyv8Q~f23ggvKs=@>e1Y-O
z)n28_l1>>=gQ%4MgUcMs!b<j+^VO0L!!EKByKhBIheAr@=J8`OVD-zhH=3mbO}e@v
z<m^(5AA6htZ{Jt9ykl&=I85_NHd9Xl^BGBm%8uLJZ$J89|KdFMC6Dl=lfa8z<eX#5
z^%_-a(m1o1<kI7kELXHyBI~^fy{8Xwrd)AY**0o<;xo%Kud+oMYLMZK6#f}f8E=HM
z*a2ikh_lHuh!@RT8M-d2lbD@G$a$2ceNr|_CJ3dUrcv`S95Eb5LGyTpQYr`%^u{<9
z+;>OO$o)?gNyCj4o4Z8eC}dj#W60|8!PZPGV3xe3FI8rAcRgkLxGu2(ssc_GQI&Kr
z?{nYF^tFeAy9mg)o_j>7-27hHr{XM%2k8iLEfA%H5c<RdNaj5#+v@7t&Q+)R*svRe
zH)2da>K@4EU%F?V`*!=_{4&6?=Fx70pAdE({GrHvm^Q&KnOut?Xy<^tG<nlj)?j1q
zGJ&rB$FE%Q?7REudc-GTDM5%{VCOqHxdQYS6U5MoiuNbZ;ih<KWQ*D^VDtOK*ydEP
zt$eL8OoZ3%l;Xz9)T-j}6hF^q+y7L1vD%e`9svu7i?Y%f=eYZ5bGgQJ!K$|%>EFBX
z2^Kw)XhEXEyY&)z(mtQ@_AawD>g+gS#@Ep4W;AGZ%M`5yxq_G2mr!;wa)LjcF5JhI
zXY2JCei;fUzoLcCWn26T4=HxiMQ$^H5(-Kw?5@1*6q!@HTagpoi*|#3`Kd0t)C#%w
zS&q&k@@PsvX%lI&Kh*DTAP{*c2Ea!iVZ{Zg|Jk$|2i1n9cU3YhIcYg>>VhybEpCMf
z8ViUF2FN_9mbXa)-Ru^}4754t$hxjBy#hPE(QyWt^#n^9+ZcEDb^ll6&3~PE!AqDN
z{#TbXHFNh9%V&$qO8)T^{OKy(KP^tjC9sszOR}AF*?ioYsk(?WJ)A$!9rTyg0x{3B
zgjxWl<LSYvjR?^|kqy;M${p!IQkZbo6amJzCE}QE#wcR@{W2W^GdR|i0)R{}cW(Tn
z9;-acrV9F*`3JN$9YZcnNc{P1b&ImI0aayw#z4rIG#N&vL$yohHYX8B($X#O3;_T1
zx2$6qh!tGf5C2r7SSpwBL4cYaOe?pHui^aw1qKWe6MsUq6VQ^>E(zljYrmHBpG&ey
zny?~r@pnHE-a2Z1v-E0p&7M4!lkp+d16b+8HU=z_MmmR8$GoX0plOa!%_y>?`sp71
zXppX7Z@D(zC|_v5+L%TuMe%3wUz(*TxLz`1YxNVJb0HVPS?Z#|4k5il-?qEt#0PDb
zb9&n?!TW57ULw<UfjX8%5XB2W1k;e=L2%J>JvP;;&@Z9dEYwVTb3q&b{!~Ckk!TLg
zG8_apH^nd|Q&9Lpb*k;UU@@+iOO_6wGI!y^7UJ9OJD{qzB%7t_q#c{0o*#xvgrI{m
z@iAhFL5@VN-M2-ik~fU28X#7Oa?o1`yJB;69QrKW)kN&&xp)1ltnFs?Z=+Y{o@ypc
zgcv7l6J{ye#D&5`>WPLfEH7LCratJ%4S5l4p5#)nY?1iOwi1eWQC~w=$Ml)=FbeuB
zr#V~yZjWWVt`fuPZ_u-mWX@<s^Oth<A-U9eiW~(Xz8$54#7AMTyt(DABM4<Kj<k>7
zZW>q%cE6s(`3mW?bKxgxUO1#_cO&nzo{k$&zN|f=7+H-TD8YrYRPq7c{Xlsz#W#gq
z&fEw{ukhVm`;&|J*lwm!Eyk)JkwG^ZCC>?2%SAy*t_P{Epl&?+-Nq`QbwsER$r)V(
zzTpJWOccp**p5&|r><=s#?{x^|I=t9Gbd=dMh0_rKd7GS`obB7lC5i+#|C#pCro|u
zMffs_Uh;t10auzx)o49^<2&odGD>rO0@f@yj~zJ`nI8~@FY0=rB3U0F*xi4u^<-G}
z+#%SEeDg!smT%|1(NpK595bpplSZC@dvV(Q|Mc1XA3Z@U>UcJn94ZgUlO}cv4viJM
znfy`BRZa}8^wi+*q5lBy)A0nxQ>BBA5Ax+nTukq|o6B)cZMIXKeW^rpFA_x$B=E9L
z8VOmXU=q%q34W$O2?N`;r4gwR!J%)vP<l*jBhJTTgD574%5Wn>!Z@)ZoUCpRsTSW*
zxQgknq{tPi<$8ER_P<MM%aKfHV4c%*7Hs~;eYbk+!K|<}*i>CSJwS*0N~?gSHUh<7
zO5r%-%EP%@h$MsU;2(D+UonwY!3yNI0LAN8AZe-CE=!}#DtJ#Z!|os)J4Zde|035o
zVJ|ITrZgSQ8!`|_PcHf`%{5U-Q+Yz=LP$$ld|9_rRdFhN4U|stZ9VO_o9t;kJNO`$
zcPtFA6+3nrKAFm+ID5!>q}fo2&a7tD&3k015!;iX<{4$qjhD{0)B@>zqrNj@mOxDE
zu@A|8mnl%M?rSML_e%9!XnCl?4~z6NZ5GN8yZ-jCI%)g1v^p=sWE)O{_~%T0l{gIi
zYc!kH{AO{iw#SB@S-0I897%?j@2!Yj#4F|aiLhU`=kCCMdJ}h{FKX(?(l)ZVw^51*
zlJ#xrq53lhh-E!yTIU_t1q(G9m07qiBc#2xcHI=Ffn+B!Aj7&mrNP6xG1-&nPwIz6
zT^=d{N+(YHjj`7|@lK*ml*1b>1u$t!EZU)eoBJNCqh3_E$3T_s@B^t&EMY-5f52=o
zHT=}7)+dX<<{586XeN2=i%L?ukKKmnuJBKuhfJt9owC>HJ=t-Y=)aL;A%%;NQu~X)
zPJFa*{>De~sG0$9lHk=zmrv^v(MWBV=c3wOYjSe>F`Ufy#ylPU=X|ydJwJRQ4eSV<
zB389%wT(&q06D)3p2!sGl-IkyO`>k@Ue1uch1&A97Tw3z<rCrhiu2Y-s0`y&8mp>O
z?-vLzV{W@td$nDP=k9JH8WBwVcr9%vkgIb1q;a!R22uYcTXL6%LokqeJ@jlq5cib}
zQXFN@ds(aNyF6>QU&m9sAd3PBrc1u9W~*CVN{8QnvpoJUkrpng7e0g3H1lvVb;*Q$
z5d+D0_<;T)?;>1z5r`S&YCupjo#BEuJmEx_S#GJa&YrTQ+Rh{6%uwtkH<Z~W0wjhe
zeP(uv*2k&3X@~eWNM@U*-cu?X&S&ILi>n{<I{C7ThigTm0rOcUK*RQqvIw;7btp_R
za+a~j5;&b<k$6UCV6l8Ar23TK>bCgZrGe^Fc2<#2?;Gp2`Ql|;#GXXt8=l71bW7Mj
z<GHY;x$i#Vx41#Y!`k~9=6~h^5hk<i(|IbG7f^{fDobw{nS=<$Q;?p73q#&iEsD9)
zLSEsPr*iz#`Xd1_<+KVt|ET9T?~D(uo*G86S#f`}JFt*u?}<N}HfqN2*=OQN@o2Al
zg5vfcAWhvN^K+rq6W4K?xK+3|FRPSF)Ze4WK)RjV8PaIxWN{Q6Ma`Pr2IEx1qsT#9
z-t{_j)%1SbdWXI-YrzMhEEXjStgT#H{~(HI0=dGtE)B!)Z2F{LG6ztt=3&=gkp7!q
z$_#ryZ|i07ES*)@a!<XXPLy8lQr1?Ou#;FJG5^&&d$9hmu7a$F3Vk|OWxrI!w#@w^
z;LHB=%4~M#uW~Ezr0b1>dWlWJ@kmnq<7C2Y4b&6*J47!$V5H?SMniv0d2$=d4A=H#
zs1u(tdayVA6s2Tw#1cdQSJPd)D%xM6Wd+k3ykH|TnyR)awDfvPE$}nfD_g_)AJ6&c
zXjWKHTf{xbMDlI7I}4Q&kk8-QY!-&_NDY==wNQq!AHU2Sx$yl69;HU1{jik`0B+yY
zQtYvxRFjoO0*C&b-ci9|z-17y>vY3{TYO8o(%TI$+%6rJIZ`2Y*N3)Q;P|(AzIBRw
z$=p)n^c=tn@vCUPegmI@>r3tLU7J;iVk)N>mKopH?A7|(^?;xLKgP1muc}0UmAywY
zguwG9Z&*XWe+;$=`yt+kGNBNH{?U8^P-<f<1lx!9i+FJH3!Lmt|8|Os0zRd5CDXt}
zR`|NS`Q#nZ_Ws2ko?xDwOy=!Y{>2=_5)h)vwa80)K@&}=j=xf=B^~G?a>y=$CuuSQ
zfX0HZC%ZObnA(Uh6s7cdzFM_<BU|Z^{zjRQ&QrJ6uLa}kR_Hccn}@ARmnOQd$+qQN
z*0x3NuE`5D<QGpn#Y%=D$#0kIHpHI<?Q7P~J7N63my#F6&XzL>kWD$v8a)S0eHx0E
zO>ke17d;c(;_;q*5C0+@!^4I9rC%~?v&>ST>!y)<b-Wqx@fSEdB9ErVqo{@e6aJ-B
z;T(0<!%&CsHi4Ww>rHY~xsa(}yf`kk>K+1BZR(BT9&Vc%co$6fqnuCq@yc%i3xz)3
z0|k%dCryR?Z%Hx>P0BUFPiEssUh-PPfH~=B+MekZQ?_>Vw<hU2iWWK0Pc_dhgng|a
z>$Ux{JpE*c;Y*)M%e*PyNtx*4FVrVGenz4s=ll_Rm<kKmhUNnzl%ucPMvvcx1+7}^
z$?+ckvHF7YUQ@YlX0o192C#_JpRl(-9@|-kz4v<iXEaP%NWr6CwwJR=l`7Yc1Boh8
ztJO<mq0SaqJ>CfdyU{Kw0zEumzyP8lwINw)LoLo^6XX2AzUN<DU6mWt6k+IBo@e8F
zN2II1N?_OiVOZ!nh0SOq8j0YGEv;di7KC155z=H{K}@{r2PqSos!hwmg}iA;@VlXH
zJBzgI@p=KHMp~Z1#jV%g)xJ;EGiI<Uvq2dmYWYWAK9T6QVZw0E(Jpg<aU{3@_&<a8
z29tC@*3$aVhie>x7S$zR9Dc2dH*&AvE#TR2r1D4`SjRrqt?SKPTh@QrB-k1q&JPf^
zD0<fhdZ2yaxdk?*`crOG1lfSJ;_$2<AHjr}<j0~$R-|n<-Wc7Jj<?!FZ}&6uU-;Rg
z?g6aq-oUM+4^hu~xJg+wi2nQ!r`=1V)#*^-8!wbU9UZI2QTzqJnkMH4(S>h<Px;}i
zER5qhvQP`GS|l1+-`VhA9)I=4&&SJYO95G6t*`86lBL|l7EX<>wA^!OKCZP7SDE}_
zjWxivQD3HlLZP*!;KD@XrZE}Bf;8hQw(c;mpRlY}!4@Acb2Ii#*Nv;L1S$v`S=+5H
zA*|zHE~&w*7UE~#?U5H`Et%b*m&{Th(}DEe)^xk1*e}k+s3Kq&&i(-S7DI!{o8)lD
z0EkUz1J1<4FVu+c=H#{w8=W?m002I<S!qleh+UX;V1GohQ)&|zK?dmdL-e#%TZZ+w
zwmqQ_hn2S5^9&>KyJfC{078G_!%eI+pgS%Y0hn>hpw2dRWKYfrq<in{BHax%@6h!=
zGFDJaDO^Ecg%FWnx&AM_KlJvth;A`Qm`+uzY~RHaW~xrR%&eeM7e%kf5I}5G{H><m
z+i#KL{p1iFFr4ys8X79AyO+kA|L#LP(mvxX`Epx^0g@8(O%ho_jUK)?7p_)<NveM)
z^F4J5-+6_b%ix;3RX^jZQg~ThnDuUgTtHzo*SVFPunD-ohwAWYH#wYpO!WD|9&qEp
zU=#`$G6tW9@HGwm4+^BIHq_ndnYP72J#3lSR*oo?J!kKk{_4Jumm%9GRrF~npRCz~
zO9*vHEb`Q-QK_*l3D&-T_Ba=qNqge|ZF3p##sH>4;dG>Mcks)4tvfak5BVh-{8c-q
z@H?6I%Bn6)eTm|+lJ22004u3g<Z^$~uEHy;uwHvuiT0-+AXJP)-w*(iImsZ~kbyL8
zZ@uK3p^<R^&Q@#EOXLhU$}!L{ZdQao+us>SGJ5f+F|ux^2w-faf_tHR>Y*hpC~H|u
zeGGE!^lhGR267gSE|oWAakCzk1m{?@Fzfd+EB{(T<X(Pc$e?@0&bQRk+4TT3XkXyf
ziFoGJ<Et}<%^eO2Yk0^+qXH|7NUl<@5E)9DU;Ne~K`7Kf)@ywwWlbs2Gy_UKd$i5j
zP%47UIM+jEPD(`eopSm;>|x4qJ7vd{#`NIQfps?Jq~$!r_e#G$n3wd~yy7uUZ{nn}
zE4ia_OMC3~*gwZp-=V)kE8&e~D}W^CpULBO>%t-HTk6Nvb&-K}jgw-AH<!S6B|h%<
zf8PHFP#NSHU%Ie*4DeP1m$-Yx9(LF3lLAIuEiq4?vW8}FE{JhHzVG$A{)BJc^|F&z
zx+7Cv^5ab<ph=%fLH3D6V4lyI9;Mqcec`Yg-8C$S!gKZ-3J_hfG>-#_RTeuLJ?J7&
z!D|$LN$VGu5G`@v{nfy+rt~bTgvdHsec`qM>DTGg!6HUSGNN~?U&kNWyL=yWNB~He
zwCee#=!Z2_i+>%SccmApl6SS_W~+f>B{sz}w9LL6^EDFQqb(&fI9gi-Pa9Z%gizx5
z2Qd<u44K>)@MZQ<$zciK&FuFP`R=Nek%Uy9vo)h-=sx2;kXo9GZQE%Zgj}y8{v2x(
zOWFAA1-9IM_D*s9sY;=E7R$2JUH=UQH>-)g#bsz><B>r0P5zvh-JElj*l$tu@U89y
zs$GmJ<~mCgk&OZ3#bIB~6o=o!-CvwofCG8Q;dQ#rq_wHr$v?H4YGdAG2{5T-_;Ysa
z#gB@-hSh7?YU-g@-Uu5-?gChpWq}(?YcDtsJg$R6A$Bvhk@xcxLdvQa%F8K)UY-Kp
zz+#@>l_Z-hyX@G}?<e13tF20twWAZz?@QBeX69z*tNg+KITn=$;|$^U;sR77Si+Z|
z&|V>8_|};y3B>TleJJZ>3(z)q$83}Zzb2Q}K}XSZ;9hTlN$KDsR6RYmB5_M<?saaH
z2|jn>@3H@T<AALcTiw8KJ<n!!2VlnGWeV?6nw%=s45zaOr<B}IGyGXhyI*vzWYU^V
zI<OWL6<1W#<D&<^7X9|6ho<qDo+?<XpAA%PJ^%L$47jNUcMX-yRW-oF^59J%9cX}H
z2kMJHc%c}zFn!N=W*Wc7w_$#O^eVf>{0NMfK`|M!pp2S+t)jSm(Yf+X5{0$}H%4~F
zGsE_slO8k`{39jURW~`JAL)m8cnmkidUdxp3i)jmFVlm`)xVjO4{0UcU9v9Gu8JX)
z*smz8q*KvV-m0HADty2YiFb{0qqPvwl}*jZ=z2%|3R^^ZOEIVS_&(4wtjTqWg2D^j
z_%^^sGplR4ud&YrgRBd1bo^O^fNu|{3ZwmWdUc;7xs)CC$Rwu<1)tDp`$$9)vwu5f
z0&+-n#<?r-zw)BCnVIh_h^D>W9F6`A);x)bp>gG+ypN59ypyaSnasNJ(lN1lax2gJ
z60Ilq<DP&32)SQgII+l;POsXD&!`i>?M5r27Y|)!ryRAGAfs&@iPJ*z=cn`0(=z|M
zhcDtDa;<sLh_oJ+dSTm=DzvR)&QZSZC&_zLJfw4_0jK&E+-F7W0?I%IL9s^*v;miN
zVqUBnG)S7%lqhel0;5Fh^jGGqERXcNjJ4r<eYQ1W80*E#1#BB!D%Z1+^fp`*>;UB5
z7BJj@rCK)a$2k(I)D-03Kglhw`oQ%3MEqZWxm{gvj7aP$BYpc)N(}S~5$~l`jxqVT
z`qpfefBEibkcIS%a1y`=lxoOAmFx(FIhX8je`;lcM`9?;lx7p$<4G>QW({mcc=igt
z*pF>|zv#l0HBitsYXQ-riYj`jpS$m@eVCP}b9!r`vJ7N&k6M0CqwSVRyU+5Zz<wD2
znykY9VLzO~*`@2M`3Rmm1+YZz!_U)i6GFibpDdgJhl83<wtezZpV<bRVc8`R@BNF9
zV=9c`Hm!k21q42sMb1Qr+gFDWUP=8cfJ70bKW%;E)|=(;PjH4cAS;<D88M#lbbKjo
zjNbPfZda-h7Q%QO{VS9&9f(f8zR-`hJTW9Lm6L;#&UQj%a{dcM&B<}&M1VzsOmVVV
zYEj^XhBg(E8WK}<+6*N8Yf&iUYmg8eLP6)ldf3i_Odf3$(!^5V?Ho|$m|Bq7sf83@
z<<(^=3s{RWlkkK;!7oXZv;rItRwc3B?Hid5+aYW=GN}gB>O1?pjP9f2tXDWTszC77
z<J95RSs#sD1DKpW8{%0Y6a`F-pOX}1?H`+{KRKYI@|S)ay!av$@+BAaR=oVk*ZI-#
zTjFcsew*B@M97izNBR<Y5cyi@1`1?vYbBBT(FbaRLffqmTEVeLDN4TaLFvbws~;z9
z-#91_;^9Opyo+%M|L~{H0dji^w)Zkfbrxhuup$!0wypOW4T$l;wsGZzdX#qF`asx(
zWL2#{)zC#bL@qy?B>fgIx%75gO+_m*>o$V*>%4bmxCiMRGotjwu532sx~jbS3#8_?
z_$-+4wH9vKP$N!Fo6TAc=L|+Xk30`4I98%qMZ91hux5E5I}9ks<{#Xz+)N20>sz{c
ztg*KeCjcq^h5q>t8aCvW-(HVE<VuS*0xh86FAWolxj6n#R*llR&<Q))RVPhA@KvD!
zeqx2m{-{ZYxH|{ZPR2l}?i<sd9<NUUF4Dc;Ck=A6Te|Hv!HVwSP;lp8#lA?6r0sqd
zz2dE!z>@$;o_+8Ulg%6BLcj#FREL@%2)zbGN=Af3l5z!G_&od*6{mtg39EyM_3`T>
z`hXjn47=@i6Dy5;jX-#1=pir`PaMLRaec-j;^=9I+De|=@no7zlGgv54+<hFPLEj8
z`&^Jt*G5t-L3zR_*}Kyc4-7q{0sEZfQd^7HB&5bZp^y01!pSLdnUt}@6v?KlWMjTK
zw?r7))YY&18X6pLqtyzOV!oOY$pLHQ=P|CmJ{p_0nt0EuGJ`R8HavqtKF{IpimRdz
z=RT~*!ahmf-FZGdQ&rjda?xQwD05KgUjcu7;zQ8|!pyFUF_BUsT?1tWUqBXQD3#>_
zwIq1l+n+W6QY^#Oy2+h&9-6r({?OZN3k-7oomA9Q?6aOp^fectOt1eKzYEkD#(~Dn
zh_A?;jD}|*n@iD-v2BPWX{p)-gVgOoo58nycvY1P#HHF2DQX5b$_ac`*FlNoc!uoy
zlo!S|1QxPi_6bowvCe~|Do63I+qwuoD%k1%Hm9Ew`?UTdnEC)xzN3k?DmvM{=&w0!
z%JK*h7u8o^W^Ff6V|Gn09&oZqo&3eB_MO(-6_YX2JU-N36r>M^)~5zl=$d?3Yv%q~
zV)ifXKFv2+c=xTD91G<fn>gr{>9eqJhSuGFd>#6qb}zx{#8oCH#J%8d8;1HRZ?Ogg
z!&Lv*+Bth-<BQ#t#0P!<zL32m53)x%6Gx%LmL6B+G9AR@?9z!actN>XKRHruvDHbo
zF|KOx>KH(gs>4ZB^S@4t$@FxQiq?GlWr`K4Y(dkFxWUqVWRxjB-L1=!wlF@9qQx1p
zPO*_Y`(7z%{q@J-sL0dtG$auE^W?AUj)dVBGQ-X2&fnOknx)ct)Zv0C1*}qCC~W^Z
zCm3!~1jX^N(Tj`|UN3TYVxeOKNtd<s<_oO&eC*sC`+zTqop1=Wj&vj1+z2zX+D%kk
zOVfBF*&pYL;<Lfv3q=YQ@dF3BDBo9;d>+909f_TGn<KGBd=(Te+>cN$&BBEkcKR*O
z^?(qJjxxI)9*w=a0<=LBbi-#^w4CjXhGuF|nusrbiWli0maVhZR64#bB6c|)#u7hu
zV~JXGn+|lb9Md$@T8fe<8F)$}&3&{9wB>8$BM3k}PW65;C${Ce$|A`(_|bp=ipStJ
z1rbI#3JKK}v;JlrH;~UK3M3l5CRe1N;2n3Jh#Dtr5M1dJncvJO_6{lyEk+m)+>W!L
zx6IMcub_LZ@yRDs%co@FmpgID*9(fE!o^?S$_$VD;^UXl-T<@g3$n)W4{P(7%$KXP
zGvf@x2D%!>Kil&CoPy*aS{DxuLLIgO|4V5B^6*btC_Pb%gY5cOFPDqDFH@(D@6=X}
z`@cqncd*2Zu*W;RxoJ3N+$I@}YwD$@H#B36Fr=WEte*@XlqO~%TScHi;b8AF163Nf
zbVOM$lAuJzIBMdBP?GI<F3YYilz9PJ`o*RmuQzAO-X`(Nvax_bB$InYTz{YkGu={m
zB(#MyVhG%Gob(YmXKF@q$!<_P0ssCOEJ)#K(~AaoKt^9)fH0mtD%my8eV!zeM|cpi
z#R8d44f-8<C)2Sn&(K32C>g@5(2Om5rCYMS?<-S-c(#CJ>@SpIEx{s%Y|9dw69J+n
zUO9VtCEeyi?!)n9=8Ysh?b2&o{a4pM>|J~8&oB9oZ6jb^){Wl+yCow^Z|&wU?hgJ`
zE?uui%w@A*v}YK3Ry0;w7FjJj6YcW_A_Eo0<LOJ}_XdZrT($t^AqOt4Vx<p7d~eMF
z)6YpPIYC81Y^m|ztteLE%cW;5gVLg#_*MuJ2sf)yan5U^sKGZye{0N*ZhtY?wktGU
z7X6RY34TbG1-~#R_5JXlBdbOO@#b25`BuwI;<;8#Y&XV3Y>DLpTrQz#09iz@yQX33
zVjk043wSY?*7Z;_{PFZeZ27H%Pd+>w?3$J8q(!!_YkDjF<BC)Z*X#aRa+2VXaav6y
zp0<Tpl^Q1~V)$1Vf&E)wsYW;GUlGRi9Mzu=Js_DINyjcq;To&bvq~060J~~jy%NGg
zab8)cR}&HEN#IJk9m}vz^1XI8Qp9E9-l3}J^}%cyT4g0^$=a{Gg^q02SEx7_YVb?s
z?9Po1KbUtX{@!82!6^C)G7$a+louA1ffFi$=%9fa5&Hfri^I4+P0hf3FwYzO5{l|G
zT*I6}a=DN&N70$sf2R2CFG1~0duMr524_O?HS!tQ6q3di@8WMB0bk@UU~#BLM8*F>
zUVzPu2L4zU#UwlR3+c5r0K2^_S=5!qFz6n8i=RyDzWx%XzI_X5_YDY~wWfdTj#~#6
z$k`|AVaA-BbPiz9<3=q05n6FZ9@7$Y8A24NY|mL&=4v^O_=vpY0O&C01;Cb06kAQc
z6#v8|QQnZL<xYg&y?EJ`SmX)J?p&2g=#)N>X(c2DS<aC)S1m`I@am(F6JGxMo}JA&
zE#nIP2V%2lS1w%bLnY%)-Q~5tNo_LTAhSu!RYhLTrTs)fW8`{WlowTfj9?PT7Jq$|
z(xcag_^Kb6m{>2p>`&XK(1^2aHRr{bG_v1DUdYt{r1=AR%NymGgW8+R)i8-KtRXhK
zAwGx!nsmwgu^w9!esAgevF2QjWlO~^wbf+Z<eC_zTj+LN2ap6G0o%M==SO_4;q{Iz
zt0q%5?hiEjoB$@G-7>F9xh*S8B97?P{o_YkWT+=E)9Anj5IeR*HH%>GP`f+L(cvi+
zYZ{U~|4L>-W!JP%yOuBLldLdHRaWC=O&t>&$hSWR)E^BN=q5)J-s`ADQDjii_M|mp
z91)@bt>UsAE^0gk=;2~?7pbn~dueLM#3ylOtZVk?DzbI&`n)5E_pt~C2UC71F<<KC
z3r;!5862Dfh@draS)4_-H8s&MrlPe7bCZD2Sq{U_%Uv)8AEXURRVd?Go))>@fVsZB
z_DRcy^1U9-7Gj9S0GEw8-%sakMGnj8rSC@pt}l7)*%tb}2J@Y#d$>&9fwTp+Nv6O(
z5C>Xlity`_E3k||<DlMS^QZ1}GvT0Ub4E?S{q7Y1oAY2H7ur@?Fedob*=ob&#x^+J
zKb_k*TK(x#DIBt}+ApOA;BGcar=xD7qWE07V1djdy^ZGlqN<nw(*=;K&tX`~`VLW=
zi&=hCWMSK#7Mh*^GPmx&^`&LHKuPZZbpY6ezgVlY{$ubhp^>QV<D#~v8X>=9K1nj0
z$ViZSo$gNPEl-=>%}L*)#xzoz?mx)SZX}Q0nUwpjrGb_H{ibjM^N0a6#a<J7;(>ZL
zNVn%Jr+^459f|ytO7#wH0*4FXtf<Py5RBc@>;ZRvlIM^0-a}`{BM%rZwAL7md%;$_
z_?mPto7t2M4SlOylP$HkdK4DKRyQ(#m2G&DM^%!BaFZV3rnfn%(yE?SlPU_t7TIkn
zvJY}St6JJ%!7SAz-Par`ra=jfIUT(;52iSEEkmg-64QdaTB&_1<}0DssUiWMT@O4@
zTOmvJF>bpd+6o=%Bfs(!x%zx~S1t!yXnd<g2$%%%_$!lwb3u0;yXjNM-65<~FxK>^
zcu(*S{ifL?oo)7{`lD){3qv}rw+uI9sMp~@%AVQZ<%^bEj(*1*B6+({M|d<WbU_{s
z&fs%nWqmL=k(;;NJJ#kS4g?3>`cw0cE*C1_s}y3yu)(Hu(xq%Da^2oYiB24MdX~D+
zMVQuUc6&;epq@3<dF_Df?{+t`(&MI9+jC`nZro?JNpn-3g4&CAUW^&`x0&u{i|ixc
zCT((xOEOFk@I9}}C|bFF6dRMBiA}ykl*7sFG-=aL-X^N2#AS6Wsyc)gXKvNbxXj4u
z)=yH|pR;{95$T`yxS3^5ostJxaqUxz5o>$`D<M6moC}{cY%!rm{L})YqTy#yfErBD
zL>z%@NZZrlmysrI@85L_e^_5o?RtSPrW<R;-!w)@4tSM(lCZJs`ZMLUX&!)zb?!S4
z*d0fjsR1aUnN_2s)sPA)y+4VY8Fgw3^cgG?DT+S@9vyrira;Hvz3o8kF7j8J@4?P*
z2GF3j@3xy;_)c>GwVO;s17ZnRH;hA-UPvfRcZFrt{QfXjdD#r3$L+^P_YE|aZd5$Q
zzobBV9fVpB+!nifg1?bB^>#4o{KqMN9RenXjKxqu0wr0=O&?jHTECEy?Q|J33(*K*
zhE8%qLAsGbNWPEl6CQk3mSDkv{sx+}t>C&JLi}(}5hP8+9>_2jN5WYKv(<u7wcFmD
zG^Qu>!Sa@|F-@7NU#$|?3$3{GLGsRkL$gNv?&gJk(1S{r&_bGcq-UQVEH#UheV~V^
z2dp?kEAubYvbC`78-UU#4G#u4mZ)M1P5gYVN>XNQ7+31uwH&;%)k^+o5f><#q7W-U
zA%iOTVdcbU5-csk^%Z%|iFW@6d+<w<o#OVC{_Y_{m}{8a89V91KW2?{lmRkF>x56V
zDa=2qLvtnsQuC)Y8VF^Ah?rQH4Q*50-X5=XK7l<W3M$#kGz<-2Z@uMpbk6=u-hoI;
z)`u;=eD?a}h7UR08YTF)6iX3NOfvWdq4m8*G$Hht6c*~P=$}#!qQZHU7C!(P3ZLok
z&94=_PJpD65~;Dr{_N%M)h!>t{uygo%-P~+Vdrv)cPmXry))YL9;b(L$|28yNrpEQ
zTf>q-6YnK4Plhf)+}7Eerzv-t5BC&M^pY?U#%Qp`D$y9G8&T_}M(J4i5l)FYqbDIl
z*?r#FSYT^}@-DDv`!Jk+=7||658?F1Xyc9JIe4)(&)4&)xU^;6$Kr5`F)P)(?yZrF
znrKH?{~Xh@73>LIkjjIPOh7w4p*xf!q<DkremNl{(Kpn|6?B{I<pAV`c2dT8G&V!L
zO0`-#ygd)~mD;cBc!V|d`kYS$`x6p0Qko7-3(N*6|61G;>@LyS@dA^de;6FhZa^Kj
zwE!T%J+>_y!~&&ykWBOCPMGSaNoLVG;kB4)wM~;P*#wijCpmYfPk9~)hG!WMMgQpp
z|I-kPEs_6lwW&dFBpxLc<iH1L9L6JFq%9SmzG_PyF!yWOEX^<2C35GAQPyTux^1o7
zf-&Y1kwgTz(M+4+WKkBvo9O}#XNa4~_^&mGRm{s{ukdE^dT_>X&bBbx6~T65vh-9L
zku2bD7^iVVyt2T+cS)>Wj6-8@EDCSq;8^<`^~A_FZ#Cq0w3}<{41;BZ&IinkyN@3k
zkWCPJb?E6D?+!{HBl*E9Le`kZ4>D=8Iw{ylh7_f*bMPn=Pmc#ZUs98UHciln+|Vwr
zP%e^^^?e)p1`Y^=Ks%jxuT2RuIKg~9v=U$s`dwyB!6UZzHhZ#%N)amBtVRM2a&fh~
zYJZi7v&Y^hd{Y9vT}8MpcOKT0sY5|VZ~u$5r;1v7ImO2%2qwR~bki#YFb0o(`}v8^
z&6ZobT|0Uhwj7dy3s3jZH6xJ}9x!)L<*f{kbVDgJ&}Fqp7AY9KP~MN>MGcIcKPOdX
z4OpB?fxSi5E|o{7LJc%7xOMB6trya3zvUAJxJ_@XA2=dVOi{$&_zBD@5|g>ChMBqv
zR1Rb`oHeWobZfb~#&W&PR=b7_=E>-TPQ%_)$)`%q0IVyE^FXzqx8kxyzDm*7SgbZY
zCWT5IxsPCZLBm{wa6_|PB!ZGl^zfoyg$8resEtm(80oO~(uV4l51LE52q*4KXr*h?
z!#L*OQ8X=_f1i3t6gjQ<PDw0EHc>Vv{nV0%kAp$Fo!R`di+W&}BxjWL)HXj=AA}tg
zLzTN9mENBVhUt)bYbVWf>B&o>G#N#Foj+XInEoK%Q|<nsZc)6?vp)RH163mQokpvg
zm2VCCUO}|Rex29m@4*4GsxwGcevD-cGVi`4c(ngScrkfB)DWqJtLpP*yy9D7v>0SY
zNTK~-BwqC&%jYXDGujUvC_fua23rfP`|k>jxa8x)6#u>RN*jckqU)L<W!yy3XsIiC
zEe!i@Fiko2g)2h1aqdI@*nQ(hd-BOD*1@Y9=ul9Bm5s6K@e0l2xqPrw7WXMD&hW0+
z;_I|ZZgtZ5Abo7(c^q0dhIDaABDl!cY-?Y`P;Q}%)oXLyVpn!Oo|a11^vyVvK;yDX
za>n3WlFwtD*3IN?!J!!)aGj3}w^{E@30IJo$sOrkB?EC2@Tq$Yy1g2$qHuVd>MJ8;
zDvw-Y_1*V&e)wtbq%ECPP<PMJUXfh!xeD1YG<a&i;81!C$Nqbfw#gqq@43xvOpm_}
zPIgn!B6A_}gRpPZpfvT&y(=ysM2q<FmY{9PB%`~H?O|jxb0$}DGsE#%dBU7CV|&8j
z8>yc%?tzRV<u?XnL0a;Y^zW7kWhH}BZMA8j=>2=^H?nVZxPIjoQsqfR2Ks}CVmrwK
zx$!L)2Jqg8G}ulFo6lhddLSwpd`w(4-1r@?s*_}{dACDKMm)_)w8udhMKw)@<cGd^
ztGRAWN75ccRz!#Xv+F=UgNxcpLU_wKq>~82-Hn1hRrH+Z3Vjk$v~obYx)|oLHNw^I
z(EWc9_SR8RzU|t-0_q?&grvmKDBaziA}Ae0H_{CPLw5)aT_PwT-67o_(n>c&cf2>>
z{p|hh-`?x}y?@PG%5pi2`@XL8JkI0%9QGJ)d+bPFFjw~37eDi5=Ag1R-iEd2Id-Pn
z2sZeD3<?7MPOQeILTEKnc`jw<8!3+NN{!fdXB=8Bc<M3Um;?`nE7S#Ki|m7Xmdwqm
zEI{Lu$^V$y^mXds{fmUNJ8o62+XUCp`{-L%VJoH_=H8oU+l=IQ@-4?mPm|?nY4ac%
zYv0Mf2`EGS6pc8BbJ01NL{@|VPZX0b<7i(enXTYH;T`+FW_ln0oUm;E>5E8$am$-y
zK0Ea3Am{PET4dZl&?@x0k=1{&PhddvPCVupISp`SNLHe3=PU&=olAAik{wh!r8bE9
zNTig}kx!PG#1EXOxU&;AQY#oNn0q^kQ5NifP9H&vi}hKBJzY+a;->vxgckY5QXmf>
zeFav((0DW_^%L9b%w{9En9yM2piC~_4dw02*v}_4-Ujb~2JCw?{}Jg$8c(WVZ8r)E
zryO0v1~ZMRrX9?AU32;T(?G)@pQj~?UmRi((K2dsxS@~5IsDKxXlH`Sw1jARhrnLZ
z+8mn=4mHIn?7&b0&p9O-DMS4hD&3ja<m(Y+S{j!?G<~9|W`sP}3C7^MtUH)vMH}k4
zx|Z&MBl%&RkaqCJVH8LX+2Q0l9|$)cr1@Fy-K8r`Gy(-R&Eb>(J3?x*>}GOt^gpZK
zX^pVg;|hZG%!bO({hMBdvCzlT!$kczis;AVE{*eCN5zu`S3%ga+=rs!pEiT?`p3`6
zU6q#zb&fMgX(m?zw*c+(eAsb3e;X}7Lu(l;MXmUG#9NDjZ>7@B#xUGL5yb1xQIo5`
z^9UerSB3s<q9G^_za6XpBkT4{IUae6EGPz&98bxJ;3`w0*Pj9?rHevly^G>Oz03|>
z5;BN`zUUT*U>9)Z-IOAxN`A(6nKH#Y{>_NJR=zJfY2(ua+0fTP^d?O`GMT00v(-I7
z1AaB@3=W$ovOZK9ssR4urzSf^oy0iiIn9C$c0`pb_)}0X0eS+ziq`lh#bwZzk^z!0
z^Hr8-U%_%=*`bR2q|cHE?C>3uSZjAJ>xc(I2aInRa0e~@Bv^TVOm9mB4MIH&Z3q)b
z(*S%K!!l<~g9#Jl3FPe{s&5U;eSA(Jqs4Jsb6N5viR}q@9(sad;2!`bzFU_MO}p^t
zW9r8+@=JG-T!}fkhpIBjetP!e`Z>`H*g8$|LnrA1@`ig}KOPSlV}yUV7<MfxluN2S
z9o<nb3VG$C1gn2vo*VyNMBD*n%&SpRqyTT?v0G5xEIx^NCOtj1g{!xGCj(8f9!k1E
z!$_ONUOM@kf*kY_yzha@1M?hw%^;F!SvM`SSjS73HU1lhecmOMbW0IVRUESb%&gCK
zAJ&PVj>J!jUBHi*bv&N(r0`+Aw)yTSTe=mD=e#4*e=4#el}6YbQ;C?J$n+|yC%O!g
zE2vX2P`f)>lip9s3?5`H(z#5a`N%zq!bL;?*Z0yje>1&6H<;F3dpbd<lk)N>q0i^-
zYOmFlh|RHkA@OfA>BSkOrK1d-<16FR@7I5g<-|Z_Kl(f*Z8v?F@jY9LAkv7oaC|{@
zf*KQ9-|}twMCW98-&p+C%P!h;IMEYI7tbFd7_cQ(FmNsNygiZP*Y<<QRpfN={JZMW
zL61YQ0*dYFtBlN*;pQf1!QBKdg4-M2N|POA9IX)H+(kZ(_F9K;y3eNZmqAx=?G~Kz
zpaQZh*D;PSR<jJ)frk?3<M%F~=YtNe2XgKQabkADhZLCnPI0Ulk;j8V1&?R%x3q)5
ze1UurtY=v?jRlyd+GLle;8Ydpa;8Cp_}t~_@K+Nx#A*T6#BDc5E7t-WeNtb{bm-6O
z)!u@o2)?3eWhbwgn3!?rzK4AVmF*e~fJ0OA^HmIYB5GHi_}yx<isgW7VeBpvOwYGI
z$+?H2Qzau@pzn*Fr{$lC{Ts`hQL~h=HKzqaMHT*S6JW=9gpJ!|)9;fx>xij%v|O%9
z{B~Ussx~M(=#8S?$-tNVc`}72TQ1k-w6|Z9Oy!Jc;`%)CRXgzCcP#7*VLe6o*rN4G
zX_bcs7+8ljYJ%y80ZEX%33P;!8xYU6nq6!Mj2{1)K>9CG{n}t@F^9o^@zCSrk7oAX
zb^$_zInTtV@WvJxLY(cdDEkVmKKcZ+K8O=a3d3-V)uw2!OMTiQE=7{0Fg@tnMw(j$
zwxYm*5<S_E1*}=ovjD|nFSyFYq_vE*yS~SaSk^26jT*DcGY1cOUj<A+L1Fj|hLDtf
zFP4)I;XJ;Js6b0*g%xmdT0vmg)Qz9W$6vN<vdN~GVWs<l7nOOJQ64Z)kTj)@4p7o5
z#6VgTZi(xtX~K}w-df&2+ns&d*hl`@rZO3#tJJCQI$+1EI^^CoS+Sjx0)*7Mp>$B#
zeAywzYOlca`seI#PF`weiVjeWP_)12uHb$#_Tl)cSt1tk4&-DdCMpIdMi!6?3AFrN
zMQMtLiVeN>1=vY*PHy_#i&f$ckPM5kJfY?JO#ly3v;49s8jaBdRV?1)?J+Wxpq+Og
z{p{Imit(3W-OpF<0y`Of;dHrnC&T4rvT47%jksCz95@Td)Y@aI97Hh_4}VF6L{_Au
zWBb6M7V+sde!a-U1f}~UggpQH_VvJTzJ0FLj|^C2zZ4rm<wSDkOCiVpvAwk{ot`^_
z%K>~o$iRL40xJ0B-A`C?p8(2o1fS9z8)t?%m`X4-RJ_-*BVTB_N1CbXHTy-tx$(x0
zh4n0~2{?SU-&b8qFaXkb8mDFaeyfFwg`dTV#ejzaMP8pS<rS@u-5+tGZ+AKN{`sI~
zrDLk2^&R@7c>V4te^opoZxXnV<wcOO*$I%gC6`#{!s<?D@@Wz-VvbjuNAe$Dvl+pr
z`V|*IYr@^sRcMK5rt&uuB*7oGxSc7gBEUCaNn>_mD2B5A@uP~NINwA9w%-1uu*_f3
zGGZ<008B^V*gFv!%=nfna)E5Y57n20IX;nKFg}?0&HB-30Y6<NWRigrk)zuvlPm(c
z3%=1EaS9Q&{4;g?3#j;dMO0h^7(T@*H<R#?_Eo<g2<D8^Gxs$~QmpS$f8gw!;H;0^
zUa`z!BrPjo*e(y)ZoU{YJIIrXAn@9&foo)?_NG=l6~Ma?OEy+!-iGooO03<dixB<i
z9{cG(2Upze6c67LT>jKKY}PvM{*YPFccJ9)`@Wzj#Yt&4Jk8^Ad3ZQEm2b79dQO3G
zNM_+-5$8?4Ox+h;d!7$}noUns%ZJ+vyf2fYOoq%<JVbU|hTy_lxJqBYAeQD53sehE
z3Y!%-Ke)0>tuM`ZwF(Te)N<O%M#!r>c&JSLo;cpNp7uU)t~^cX$xYwAV+0%Ojx(dC
z?Zrc5gJWe~eG4RVdy#O@QmIfb>m)Q!nK>~e_yR-&RZ(6dJ>_iO2Z}mh?W@BNswhe3
zC@E!<0(9h;d$E#))@1{FQh*oXCDv0~9Qf99h8bmKpAT(!%3o+jGOG6Wy!&r0*>|ds
zUIkHXR#yjjIoL!=>o7J*uuJAYEDVq5h&H)D5VtmGuz+6@=-oj<?sFQ)^$;1%-U}+B
zv6vHo`wGbe11UN7D@A;6$xB<Px0hI*gPdI(=kXwowYZhxBAuF;T8;%MB;`4uDE@UD
z+6kib=~JrTNOGWdO!mczQbarkol2$+7n+eHi9ZNWdS;DCQYh0H()ns33)ohwDeeeO
zT+;~!$9ld;h4#6ROzi}VR8g?2&{DUnL%V!1r4#v(#x81G?@BWKR*Bo`*OB4D-iJal
zA4MT1E8SnRxmk8HEo7+;EXKS5+@LN?&SoM!HiyEyK6R88Yv>j!UrAOM+?T&VAzNM_
z>%uJCC*JK}{9>E1oobtKd7bLZ;XMk^9~`?weOk*`Ux_B^Hbg8%0+!>2ckr$tOtJnR
z24IkfH<svU8sA<e%?E56GH-#<ZmlK0D#**HvF!f0;b!WxO5p1<(33H4d5WEJJBmvJ
z+kCN$Nva~m0qvS1E9IWz3ArM{Z-)VnL3`l?)sU<54JxE%mSVEr6B8LuJc-;ySMqi|
zYCc(8P-mTbd!v}1Xkmgy?w6YD=8GkcD(K|1ozyBKDD=I^SSr1^51qXu7W>yh1TLM4
z={Cz4p6mmaxQ@hK(4o?U6bZ9!&3vtBDAqaCsZJA>n9~A|D|56_gMNE%a{vW~e^yft
zDL(;BX-Ta(CM=Xzu3p&{xL)uGyKGe;3#$Y<!u4yth7WR!39c#LYHk$Xl&5-jbF(ld
z0}7JYqla%`N-K#CU1lkUex1C*N8;b_L$68pVk|_Y6j&{tfo^sO2fDt}TyFU69`$~$
z$5st_c)S5GLg~HoYrSPX7~x=}GF;)0KM5mQSlz{X=4&F3IJ0)M76TeT5T4t%G4f9X
z_7P5XjqZqE4jKL0zb_OH-@eJi%Ehc&D2_or=3Bks!pMYw%6C2BtURqWS9)-GsGj2)
zkclqeX#e5oJtE9<!2e5BQj!8P+~TGpq7*Cnqs4dj^kILXpe}85m;<hVwItG9hTAiB
zSz@rlK+|Y$uh#0!oc!E2(}_%Q68-j0^2c4J&8X+OZ@OQGXAG;}v~VxKZK3|&S4(o1
zTfXyD&bX|W5Mh%OY`P}hI)-iT-gphvfr9PKW<{U%pWGIq#R?)`-KR?z<Vlj+3qGI4
z0<EUp?1QEC)TbAztc5Lm=}dVMMSs#v4Fm~xKH8hbJh9bwIB#1MMj^I)u5r7yu+V0D
zU_1eKih6=ftE!Y$>@?)kM4Sou6Y^u8BqWV5IVNIdo=UtY4;O_}{5sHZ^{y-z6@EQi
z5-yGW3V6rq6;Te(6|;L&5-x}_SoVfVmzk14S_#k4TtDR<Nj@GGz)|ok<<U99T-Ha4
zkEU-it@^L?0r)%r8nIt`Wx<9$xm9l&)f-{B7g{aDdT+HK?O-Z%ahDXSP&@o~49N(3
zB(x0`IRR>Rlod;E6Q%Y~VUa1M1W4c!@F802m5q1&o!@k^<S!a}u#BYjt6ggFlMWPH
zcd?3sI%E|TB)QSOOzUH^c-=SHl+WfSbk#Oju*3%w8PwL;>0|~eBR;E^39GrWrZG_x
zORQ^0$0m1#rd!P7VvlF(%8){c!as+_K3QJ^81)uIPbChp<G~~D<n<xkd=Tq!a#?kY
zI|&M2=`YoFF<yh5B@XQ}6R)rQW0_2pev_N9VP6PI<mG@Q>ER)9Uav<45Q6h$qqNkO
zc%OjC!|OBRT2<iNNDicjDhv+c<td)9SZ>kFENO*?iBBhbOAIG?I737SDhu;qZRv}^
z8gBYu#opG*zDG<E>d0C^mFVfqmuVGW$wZ$!Nmaeg8{;TO<dcP-G5$sXiQ-!?B<=%!
z(2jztZ(6=Fs{9JS8psxPB=DEaEP03D6e4b7BK*Ymi-Xjs9-oEtMBc9t`HCH!I1-(a
zJ0diHPRT8#F<z#Ahv<(N$P#uk+{JbFjeY6wmv0qmZ~oyw?m{q4j-7NWbLsMrrc{H7
z0wnm?j#VI(X`3MLMyMkO5y{Z5jeL%xI~KNVJ6JbJqP-b==~f6S$zoZNHg`dZ8<)oE
z#|XP*b}y9_0goN#kBk#3ZU4zZs|pmIwP&hhZ#(S+;Wxdi!dhytIVaUqJyc%*an@Rc
zqZ!DM!7CuUJQ+Ohv?I+&CZ9#M4c2Yd-Rm6^@Gu3WQs{rC@12<g4l|L%;0CjjIGT*&
zX{86P_=NGcW75B0xA_n^g<-|Bdta9Zy=-((Oy8z|Y2X#|YfzcCiEe0PbYEtS8TI^e
z(KzJwN4!|cbN!?G^iZlNV$wW+a|(E=gq8bJhbT7oi_dC|yL*uoeKl;^^)0eZNAajY
zF5{Tsza8rQA6#v|1G=v0jnrq-Wa!$LZ0+mwG-M?$8ObO6&)(Z#y;GJ+N#E${A@zmN
zpr)lO(kZ(90IlIZ#YfI>;b8baj`NgudS-D13CnD3hG8(61;0ge(xiu*b|Ym}t&a(5
zwyLLIDJ-}E<Sd9%;q!2bDVheFb0I`4_m}$DJNJ0c&S5@f`w38PIOm?JaR6*V6x-;w
z&H5Jnb~MYC`8SFb8ix@$+##Z)iCrF?R4?n>&H~{^oS8JZ)5N2HL+Vl&+d)2c(4`QB
zC?wpGg@6)Y2Na>i3Z;~!4MmHU8l~8JxvP&$r|fJ`lP=MTXB#Y5xh0MSeVyEI!|<mY
zObv$X$c7ef2UJPMskbkDYoK!psctT;7m&^U`$XEp2MhN%%J-Xvj7GBwv)2&PK~(X{
zeDBfksBB3W;e3Jg$HgSv?&77vjO{U>7OL{l#bmilTb)Oo;-+~W#92v&JOQeuf-i-J
zef8AG7LD13E)0maLo|G!wJqN(Mb7#+6Y(L8;>AI-u4C9uT^FA%vbdfHfSJABtp7!y
zaeITkxoiTEeLuE|R%DO)ZsB}Ps2`fDEUd|>3Atd#6oWekb}9==C<Ds{)-CC-Bu35^
zu5!n1g1&@eDVt3brz{oFG_Q0tNZQ#BVAG43XM!Q1lD!61QscF;2Zb#`!l^Y;Wll`7
z(2hCq9Gz@@6<dAi1+c2|<AF@PK*GzEf2GB*io{`FZCj*`KjS{ZSNB*cBgea)+J-|m
z{eBBTc=pzbIPR83x>S@X)VtfaA42p>H;xL+^-}(rTofXMwu2RSYe*COfW%FxUF)4I
z3C}tR`vHKIl>2V+fX8VOxy{(eD%aFYUS9+uf8z+H!W%K;Cp3HF4<x+ZEIiQVC6vAt
zr9J2!)-;!1ts6i1&i*}%+&W{lWzQS#SYh^2y6WBcc5@7H9g=2XHx2yF!zJ>92f~#?
zJaX%qGRbt=*Q%$xBm~>q5;<3qZ$1rEe;6%9RR>IB2GyezWY<xa)WZFXx1<9fEtYKF
z-AP=!Y28&kGh2o!P~ocX!4(j0m$=iNf+j=tSmc)93tE@jeYSs9E5?vMOs}+f8E^N*
zz-iPFZuZ+AI4E<kptvVb-vq@xiP+eSeJn2h&tsmTRbRK%JUEWy(Ng}xl$)i2Us9jF
zD$wohl(YK1BaUt1g`%lD?#i#vS2jwiExU5{PGgobR>>>fc45Z=dut11a&uo#9L3L{
zl<EguW5AD(>USg2rF{yR8<-PzNkx*PcmS2jGDX}1=kxovo2L#^_<$*%J(SmBJn;<%
z*a(IfI8Xon^#+q3j+ka$X@MNXP}EQ^m}qWHI$Bae(GFJOh#K$+PV4_Xt4m02v%(Pm
zshxw{Mm#(Kyk*7bJd`67w{gfqxu#s25GUYt#k4<d4l$DTT%fuNaej(T*WYBB_@MZu
zDf{W8m{o-UBe3%|A>Bs$R{;IGMuaCLo!og;%nZl}RiMAgPSZ6oPo3u7{+zDxC*mV#
z|J&$DLbi7P)r^iop8`q~rCU0$7u4P!ew!m%_VXh3BW!As?0u~y_RJ$~Sv5=_Zs_vw
zb-Obd8T+4C_@+=#WD;-OAN7#erWFU_DeL>5r2Uy8_dx=LjXA&w6ab};V2NCyKLTTR
z4yo^Rnu=x}14`K()&2W3rc(il5X>%1Wtv&D6JCTudS|we_MFh1p`yCX7Z-K+{AU>9
z8oCZrd*^uR6WbyVEO+1LlcAKtrQqO5)7)#^c1n@@gP4_QwcMTeH3%g<X*;4a;q;Qv
zivS<THW;1A$l_baV6j>&#mOJ<lOb;Y&`a@|+m#42rsx1I%~Zm-?=odeLkplsTS5pQ
zK(h}QJkI3`(^KDDER1=k@Xc2#&3?y9$6}27^Bi9kai0Y8$qG1O=W8I3h2sh~tA>Rz
zqS?*(4)yGh^TgEfcEgV!>HGTEn;6y0cj<`iE>vPs5-uBV^$)4nrYAaeu_UqYbVACu
zmpPrONJ^9@#y#R;RncIht1!+<jRDK{@)?d+{Tgv&Z&a-Gh&clhr_xi-S4c}b1^>-l
z@sBF}@A=<<`9iZnRm?~!{Uide#j`*vHzQk-i}CLn;KBF*%qUtLGs#&H@XXy;mU$wC
zK`XgziZHEQk`(0B=L@BNa`Z=ArtH(v=fBwJxRn`#f$s3I>?>^lPt+zKWCJOoshw+Z
zvJULegh1~b$_iG{^|wJPM|0}5BQgMpvm1czN1lRMwI$J(6`iNaW`sk|I-U38kDs6Q
zJ;5$@yvi{$YEr`+gbyntq`PbEJK-sbOEZA*P6gTqft_+1ZPeKvU`lVl%#0h!KI9kC
z>*S2wWH}#S?IY+^eYsA*^ARmrQ2ZdU><oB{X~FhmPa;451~%Wm2GyS`;%?dDP(+q-
zr+S4p4V+U(`Kco0h{dYHCa7Wr$A8<PVkZgnO}Iw7v48LiXYjH#=k4c%$Gk}{yT?T;
zk!7BzK&@noQFUQ3Kw!w%O6ndLEDWrLa@%k|p(FX0L!{F`%|(iMW0pf6jq_UtQX8Ur
zWvz0ti_dMDae7(qfEq$W7WT7Ht$s*a&$P23I;B&EAR;$jTB&#8M+T43G2O^rRinT2
z=ab-u)NWmFIN;|SkSZ8?`oLZ~t&Uo`^n?7vgudMMk9&r~b#?DuHgtd2uTTy~e@~Tv
zx4r+VqWzbh|6i_t!z=M8@zU(M-N#>ahN39JQBNf4tIWj}#aHzb4+X!tDkY<1qtnS6
zp$fbGguFCNeT5OzH@<cq#{V$?=iUsJ5{Q$9(^%`eOnuk@h+4HK7)KnI<J5s#f9nEh
zYlMBSHBZXGBe|USU1RbgR|~BBE#i1i6KhGYd`EGTSv-JvNpH0lBYeFoTO%^wXfwu7
zuN?X?9aW+&*ap75bNlt2QkK2MfARyHPNY=&G|qUi<wxJdI{?^g`%8n<ODtL{j~1pm
z*c5KY1Cof1VO?chlNyiQ@YKjNU_Oac)?V%Q0#aZvmC3#K*qnf5R=TDLAXGbqZ#zH1
zo5v9e5^@am$y1_~gOd85+cd~yyTDRk&63|m;~zMHcW0kW9R~v6cV)0mF$ML2N2)a|
zRxmwVFaFOlbCt|Et=K}3I$uE?#8$jrU^Cqb9X4mvHAOghb+wsA{#JGeXiP^hq%1!b
z{9)jP4*CGW&+{e{)1By^HJ!EUh(F(dl<w4ivwP^f3~=Qxm2GYlf_8tY*^6=fknDK1
z^f}~*Wuj;Lb^%T;I-$WK*+_-}Ptm!;ip;_hy$gtvZgt)SHuRWs8H2;L_U1}FyN&T?
zhi0PWfmk0!DiigXEz@jpQrmVwV`*4rwBqN(epVx0#x=GX%so|5!L!tYe0uOUyH7Q+
z=v)z=>}fVE#Fb@su4k-tP0U8MGH_XAuJ6;WuC@WUVtIqG3V-XFb`6S3O2Jg2m7+0?
zi-{1p2=$&me#)zKUS(rv6fQpi$V<MNmKUF*a+&TL+yo;ZszbJ$=9mlSH~daPbs0)o
zfe4;T#ObG>*3&gwtCl0_H#2OdGD0IbPp8V@G@p0${@+h31sM|Kc#bLRe(IYrkSMzN
zJod($WF8FhFutiD6i6ut(iE{$*wj6dM8=D-J6v1nB^K^d<8X#Rh){S_2sbrM>JrEo
zfJ`oKjpYpynWsbjpeXo*hQQ`X<8!8<O0%H~sOWfyw;6Xp5_g<!&8)OCZZw#mEr*CU
zR!TA$i=6ozY7cz{otaZysa_*(EGCZN=3gXn+D=83Tw3Z^5Z-WxG4-)*IfcPdED~<U
z@hhNTdVR&1@FD=)CE5{$D;q7&8eH}pU;NG+SPr!HI|aDb6Dk2IXuzN{<IW4%DNl9T
zjpy>9pHuM(vCPb;gerV08h>*TPim>NmhpMb8(<n!$8sG-6wR?-{Y8enBUGqBb3*RB
zs+v%)+!s^NXaJajLyuiz*iV=kY2E3#f<(2A#4&ytrA@z6bP;Pm?Sq|Q-|%XZc?Bzf
zI|t|&ID3qk(d?HcOYU{6Gi%PGgfSz#Q76bN@&t<=e#$hd(7ON?C!W|>>1ekc@`@xk
zS-{}KbhP0w=vvL^+PQO@N7^PC-xopE>E?^w&Fk(3z;{1v{a8<!DII8cV;-T}>E|+6
z-ybVTT^z@mI;Bq$UTb>w0L5XyF4~P>p2GO0>I7-vGTAt-xMw?eEV$><L%jIemR%`x
zI_`eprT^C~q5T^~`QjD87`1rd-^*9~Go?6^!EEO_X_(}Dt)9Z6K+CxON_fMyFKUV-
zwVI<Lm000LDJij?^`Bz+m>}635@KOrW@ZF-QAU;THd30&?^}0qGC?Ld&EgBX1$h_M
zlM|Caa#v+cw@w%Ng;f#T4Sfj3S|t_EugIyWqbmh=%jkhb7gF}R#@}1K29|*RQ<@3u
znBC4WvJ=>69PSg8;^#m9ZC3oh-KV3GPb6bQ$UJ*(0J`}Q&)J~NlgdVc{i*~mTypAX
zSJ9Npzs>;!OpOT0`AtyJlL8+p%}X<fxi9|6FNitEq);O+LH9MlnlAqE{iTeGnmolI
zel!w~@a>_*118D<1vcu+Z<=IXqg4q7ZOx1?UW{cDlK97eK{1lZe0*vS)wZMnI+j+p
zl=^31D6(1sC(H9ZRaW{Y6;(+I$V=*oRREF12>`(p?`WvxpRZ!*i`+S{=JH7@L9(;A
zk7muYF!-xCU@Abo3I3Y)n6Nw{(8%bc`GGwgOCZO9l6t&~`eS60RFOKOj`(OzzcgkN
zms4ICNMkSqG7asqZ+po7_Ws}^!4+Nx7~&;9Zc?|YdmehE?;0+4snA+}sawlf^}(1H
zs>J}WL|(3j-T>6o-_7e;4+y`9lM%MS*XU^>k5-<ixN{V9#U=p-dXV>GoIqqs670!X
ze#moPkWQ&dfGYQu+p4lF*~iSj1s24}uh&eaO<uLYhE;?wtfg)0lFmo6rmmM3G<Q_i
zk`M&~NdK)iBtpKo?jroPOu5m|cG+x^Y_%b%Y5qXii(;C|+>1H=-{>y19&%^*aw2jw
z<CzVT0-w;mHi4>fGeJcdK02ITj^pp{0U+9Doi6?W?rU4Z-O>AAY0Q<x`_Kk=;Bc-Y
zL>sG7@Pm1|dH)U0I`H6jVaP&6MWTipPZp|fo4uWEPUO*^-9`=&_o&oTfkg>Y8r}oX
z!JNW)Coe6%g=zB8^H`zEDRdHagP*wAqIqUhRS(>YjO;#GzN1$0iq2E+A9R-{PKDOQ
zj8hdIG#)N9i>~TDA~UvLaLl_A{T}2Sf#94kT};z{vnaD6li&{dVB)#&(ai8>H;FLc
z?L*5krrBR|TCY~Qf|DJl9ycaI6OTNzg8UJMiG$y%Nu2{m6J8JVR7OWtP;Tt^W5HTA
zMgvOhdOZByJsgy=__aTL+Rfs&>vz9A$2|*czk90~!{*1mSSvI?(auM4RPHua+*}1{
z94l@Gz7DI>0<8NDM|JoIXVM4YckN~eWs|Z0x02*vmC54=fG<^>267oR4BlerQ;mJb
zTWOM5!a*7YZf6{U2S&S00CJ5#k4=UeO`aN{{u0d}ID`g%lLgH}IsZT#@Gz19vPdq?
z%5&5NJItWiUqbkeW7@$V6+?+rY%q01-R?p%BueoqF(MB0kIFhQIe^uj2LECQfJUwr
zm3<lX>5W}S`wAH`6`Rt)3NSJ;@rv6Jsmc!f*c~5_;{>D~Xr=!`TlmES=d(*bl$%F^
zJFfwN3H!f3083f2U<<ffPLx8ATl|p=#@JB9Q8ypg(4S*OfmbY6D<JrS7Yk0oH8@(f
z)l+-eMzGl9Jq!dnOhIuZhE!nsafK0eu7{!vv;h#q0d!%-K(RnoW`@^6y>OgNdw&<U
z)4|E+NUc~7o5BvqS}fp+=uV{~u+8~<0t6LpQqJW=fuJOTj}i>|Sc<;nz$!!1mI9yH
zfxiv?F#vO)QR5T~e^(G|rg5yuccP!+b3XeqEniUOg1(b;<(p!m!1xQ3_>W=a300I9
zHC^ZxDe*ytRN6b9XFH~HDr-Rv0|Gv)Q9LyilX99Vq6AFIrvl(yhz#~QfOj_T(=ZHt
zhv<;)!by4!u^r%jlAEWnmE${lKyh3eArcKYOjNpGtm_y~_+p-N6YY%E&a@t8Cb=_{
zq+@5fOJs_v8hryY&eBZ*i1~r)4Etnf3BIxC*im)56VVggNB2r;+(Rswwf4(IB+$o!
z>pX$N9~`NT3uH?fI)Ek~>@(tFjvcyPb@v!vv87Ul_N^ZY#jc<8yU<r933}wvWXf3M
zuaTB4E9Y4-<XN2kY>+k~!>XR^Y*+l?c84WGG9P2}8ZgeD-sC++eqOZ|BP$^caEo@|
zw=9v2QKE5=^L)xIddCg0`$7?<OaqY;+avBFCc4yjBx_zvA{vBLva`8uNkgJw%c9y-
zXp<Kuxa7lelxQIQp<PSZ|7Y(6{;c1^+k)NaG9;WPM*RS(UT<1p;Z)>c%B<bUCkp<c
zsL)=LHmB_Kk=qB$r&B$0>9<vOvF7d*#I>qHo(UkZr|yuaqBgrk__BXVIH(XyJk@MF
z6*wlEFkO_e;g^3A$-Y=CJaIbvpqv)GGAyKYcFMD`b?m4wa6wXex+-Hk1D3rZJFn}?
zRm+M?Vx8OMd8pXv%cJ}WhmfoYBJKLtrVamyJ_9A{`%U^KZkOK~Fcz`*+fUwI_Ztl5
z))MpJ8um9KuvKP`DV4z5Ui+?JiZqQ?cAM?mMhbT3QB}oeZ!o4JhSFbPu@$tG4@pf}
z&6W)%T#tpoA)+L63>-gq6#n0}o+x%`$dffNHYd3lUch0yQAK!pCxjE2qnmY@%!u|j
z0^U?b#8Ptt--P+I&rgU8M<ZXtgPvK1GRly7n27g7xO2YB?u6Zd9Vhj@_Dxy&P|KYF
z!R?&Rj^b`=a`F;pS)aAnyTS(;$5La7C`83));3=jFcyV4pj7k%j&WN#ueuPEBcSgm
z8Uqv4p*sY2mpxj?;~QlEJjRLn9j8BI?X`w>Dk*N<1IU!}eANZx>p3pJp=OVhji45t
zSd3rK0{l}VLiV~xULEFT3`kR$iI3_6sb9B-K<o?jL04IqV><C+G)KZGm;RpZf@$Lu
z>HtOzD{C{E>AC)j>?TM$mXggcio2@pTG8DQefuXD%KIZAt-$W)^-{S6CST`$fWxXX
zs5w?yPsCya-D(q7`1)f{!1D8-5G{!$$$Uki)*v|v5xH%{$zF6{&HvEuw;V*^tq93i
zJ(!f5dx3I{w+tb%t%|#wjVSN~b6Co>qm0i3lzn?SdyB5lTUHSb3+vHd5*c@_*-uZd
z64=FVxJ~%SK}9Mkj%M%J8C2SPX&>4+>wfq3Pq_RZ8@3Fw^rJ|WC=IEinM2oO+{&V8
z+?3zapg0smDzFo?!kVBSyisVzhcr+20cThbLdV^0?XHc~<@GVkzP1<sv65H2s^lDT
zJti4ssujp)X`5#%<?wkR?1?P^mX3uiALM*MR<Pg&6%U|Q`^v3iL$*wSr`X(hN9`b=
zl~F8W)b#1NkM2d_z$JfLL*mHAbEU7~3nCs=E&f$SZV$<{EkGr*<3V#kbL4Ezmc5EV
zb@mue@xO>2VxQCi)ia~2FDRw+j*a#dt&#g*(^L-a`R&{Fed&7DEQFEf^QaA)d8V`m
zNiY55^7+eCU^h0BGg7a`Vf<a@^tBaW<V08&=(Yw4+zxxKxFdX5yO|xz4qFMd{4z9V
z`{D(?4i;oV$(vC!_Ja>IylRNAR1YiI+6IC>&c}n{#@bD42<(E*nGN60ZUi>z521-|
z)3-L0lzbolw3vNwfgASAM6<<0y%1hH0cpWI@@lO%{tVmL!uSfG_H-G2cOT%&LLu<*
z>hlXwnS_l8U(7y(<e-O27G4vnr=Gxt^~gTCBEn}YZ7kZe_Uf!=KR(I9Le!H3h<BQq
zBE+jb!4$TRuqM28CN^^Xtek+=s~+HWTiy}qPa#ex)1lHsHYk8B<!UnqZ6sv9Y~Keq
zDmFQ87wg!t|2DW~JsX)V3T)U|S2B4Yi?z3|#hEprvTdcsEMi*3_wQNTf5;B}NJxX`
zp(rEuN#u6C=KkDS?B0P-3#_w-Hztx>YsZRfH~R~|SIl{ftZS%g=-9j8cZ5_b`RFxg
z*z464&Nb**CWx7}Mapx0s$Md??u19FmFrKhU2SCqr&%I~S@k@V(o)~V=vEX@rxBlq
zDq5eG-*4QH@_rkymw^N8imb>Vw@u#&)*7_j=V4@VPI(;#ezepID=I3jJP3|Fu)br_
zdT08xt+1*oq4w`a{aL$~X#|8@9|_X(6^&$KzS_+^Eh~Q9h{R6SAx_Jo`F<k;HR|Z>
z^}-a@2p;^a{yiw<QjW*+FWs`_dSjDyQPJ6g#;}g`r1XLuzXJa&FJkm?8{*!{zp7EZ
zC`VLdYi?tEU%6jj5d^<jJ|&->SmC~zf5zSHLZ&Rcd0>jVZQc@b`F4}GfQ9g(tc|Mp
z<LfYum@A3T&x|=&DF*FxUrD2sd=jq!0uHf?ujD+Y$)XwU@`S>kdHlxH_mb7|l0~L{
zEw$uMRqYCvWdeG~bP*Pe@<Q{G%=>ECmjS9dY{)i6ij~<i9&}6tf7;SuOqOOtwgmZ(
z0PU%41XyuYkves~bM<t4V&90{q=?mj<^|+wlv+oK*PQ+9fafmAwi<xs5v_NV9jS|I
zW$m1mvy3WEYAOOWkQZ@!Z^ceX*GQ&yb>mnA9hQTo+!d3>@u@N_xFsb_8<294iz$$v
z$-T%Y8HxvT-2ABFn8g&jcI938AJGy!vFb72Ggvx@#U7_qQIl68i}%7_Z@=^iPLaQC
zyP!bF`fWeM*NF?!6tDO+R2=TLAj-RbmtQ(6QWxOix-$uYBU7@);!d*}qFnjptv^&$
zIIn^-)e!XLbI-?$Y3xFi8v>_I`^R2gq*m9n=0r;7F7!HGgl@2Kx*Vb5WVIzVgmH6g
z9CkD!`@fqe@`%0x@*Uf(Hu2gEbXx2h7MxH?#<5*O`MZfN-m%NQg^HSqNz9UY?JcKS
zyG=angL8en#v(u-mu(y-rd@NOW?amVIR9K8IzJ44aVH3S!=`70d~`2I`VtM-@s-c>
zeFE`@!i1(|N>yS_jyC#<+eXd0&G>Hhb%q1&)vbb&$6X-)<s^)e^_E?3cV@da`jJ3r
zpU)g4Cx0$i%=vf;Pkzjq@6P1jY-Lx3ki2`FyRJ;%!n+s>EMpv@nQ!C4Kq}zdk5mq2
z58^sj>VMd+ry1u7@?1FdfNz5zZ`T*G#^!F2+1SHt*Vznv`@1OGjyR#7W&z*^wCATM
zoMpvkZMO#A(fNK;&am3W&R5Y|T^APTYXPK%8buNW=R-(iY_Ukd=Wqts+K0AUFVY~T
zihFwC^xgKFNZ&o==#P$qo(e5Cy450rErc*G;${dWm!F^}*JL47YwaP5D{CaNN1~eb
zE5Y^>mNH$pd>7cam3_gUIpdz7$>FR1ThE*Gf_Z#8FKs3)E~yOS)~C4d|6=1Nd$TSv
zdTx5E8Ng?P>FQ3HcYbW7dAO0Ad+s^Mef!{;4C}F&*8TiZC8l`hy&&$QN~YoHF=0~l
z_wAnm5kTL{%I{8a%v$0^b1bb`!JAeCW69ezfpb!(4*SKy*aR*A#d3$zNCt~-Tym;`
zFgLI(P`X_)ES3XP8fQm@trqj0ImW<tR<t=zBsd=GCz{QFbK-DkoU)bA#eUkS4Rzwo
z%e36VAK}#FAx;J}Zw&wNOWg|c`EI|X>wR;DiRv|*%#zZDxbJYDKSg0_8ZH>|C$l^m
zPBO7URfvH@-mSS<gc)qYgAxb~6i>5p1Pb-jqrd3+_nG|t<!?6iK_kk!J^M|eG`SPF
z4~FUAr|jwz##-j==Gk{wNcFwoicotAh9yePn?3D~Pm4sFBPbwFR^&rUlNEGTVEO&u
zFqeONEdNUoE8TLqt`qvrdRkfilK$KIHSfbyPA?d*R&`xB)yH%0SBrqO_l=U{W<DtC
zoz`yL)2_wuI;DmiBd4IWALkV&g9mpFgcn!gyQe&@$_9ql#iNT<nA53ZKQ7oRn|JMe
z-W0bQd>g7giXszO;GE>q6sOMbg=g^$R~J{#%NLXuEZtMMog37DbJ3`*8onkUbylL_
zXiYIkjfGWOOur{#*`{hC%Hj&Hy-vyD7OCcnS{thf?|ya`qklPFkoVBvEVyDGwk=eZ
z7G-{~@`Za5ObkhTS<dn1&-$YL(D>DdjgC!{4qUhR;gxtJwLNUwfd=<ZWvrflz5($g
zoeij{uQ}JUG4AFa+6tS^-Ba%LXZl2+b;@~uJ{uN#?p&Tfy3;=gJC(4axi`EHSijiK
zH!bJZP-v(S3fG$XyP#jQT;ukTvTItdiW23?s7M)mM{yV?+Tx(J)OUC8+S!z2F$1LK
zq&D+^2jN$3gKhIOV%k@M6(OG7YCMi=Mn~~}@kX+fkq~lU_r%|k2#JLRJ~#YA$VRU&
zUp}9fp!ssLdC_sKgE;?ZnQ0yh{eTky@(6@V`2xT!MltRWM0qYR175EE&@GWE(+}J>
z!M}v?ti4&##iR51(jb=!L8H{r_xQ?XI&fvzxZe#?|CPp#zw$12k8r20K5PYi8~?ob
z<*lRE1>4md?N$mxJwU@(-V6H{TN4;AuS-yD9(5R68+)TQAcjV|21F!CcJci2o~WTK
zZM7MJ7<|Uwrqb{2GZN>YFXK4Fs(<BFww852PO~8ygnERxN6{r6r<{9B+c;8}!7tJ5
z(kHS)mr%7r&;%LI9zqYWe77aB707_Ql;*s{<bz?0mtRfpcRTi`2{kxtsQT0)UkEct
z05`It&#$5h*sC=06#x{=b1;wP3&$%mnhwm&r*{P6O%A^+7F&XRSqh0*wbDtqwP+FK
zmnIW_$M^E^@!*hZ2dL@jf9%C3BZhzkEhE(Le^0jZVzg~%pqi$hF)o(8JXJx5R!cw}
zQq?s<Z@z`sSN$AC45op;Zf<yi+Fh5-llM@%5fis>`oN~D6wAb4%g@DW4}nEjXB-pn
zCLF!TUOUD;I?|_2_&WRRv3Rtx%FL#OoED`3=#cCE1(~XoLuImwxfBgqoI@FbK5zvu
zrC9pc#x?ZWxUt(`c>~^#sTJ|p)nv3$9t_7-cKSw2U%kHk8LV@ZG{IrzFxU%H-CU<J
zCl+rjx}mVPYW6*1$^1A-6nC^6c#5rQ`sKs;1>SPtksO_(MU_m>YFyuM!)sQoc*aF%
zl!{ewD|*w+QSS?i1k}J6ST*DfZLBGuL`gXg;1=yd0;?buSLD$!z(8P)Di<KSa{!We
z-_iq<xA$Nsd}wpu??8I!=^?5R+!$ga9{Ls`4b8IF!gsy0-1(npNObV$#?SqHC*XrP
zC*N(0h2G~9ES?Hr^kCJoyoCbe?RMgcuNw75`tMh*M>_X&XB8BKzL8dX%9TvD5P9qG
z$Gv{x0k{ISU0HszqWKkZ3cYaQI`PxDxw|^@xSjG;$)l0%>gOB6?d-~wmItMsk)h%q
zQ>Ico&>iLK#aowAk~%US$$N{>B;Lw;Dh2UeEMpT&C3z4FC<s;L!PLfn3>M70{aJgr
zl6(_ye=O%I)tLd)*dvOBsI2H`zUVl50~@l>dex|7L%;*Y=`<eQX}0wM*@11_h?sI*
zsxgEQaD0otN&2%&Qmzub@EjyTvN*$Ws*!9DD39fWuPp*i;awdB?G=*Ngi2YaCJKcr
zWKd~Bx(hp0D7H4YDy9pSij*g%yW0ff19q~uki=D+v7nYT#%a$z%?Tm1>W(4LQa;?7
z7JH&3dCUGPl%^iP7i<x26Vu)hky1WP?KAs#NE?T^?HJNzZSh*tf<U*VAA0nak`w&g
zgvPgop?JHxwjq$ahC!_${~5B$k~3<v1Ena3DSIDv2`u@$uqapx4N5EifZUg0P#Scm
zIUD==`7rO}&hnawR_gmN=IpJc%W&|#4#!U$)?SkYu^Jx*>y2`z)&8|Rs^;0#tfp4@
z>5c6axv9?MP%0aeW#4DF*Z|+JnP=XFDYckp0%>%SKd9%pr-&uG57)b>h>5KQasS*p
zLNHvWn7E9(QD-KUQOn~Dys)bRrU$PXSJx(o9wKwE+WwOTFr1$=&!I2)x9X7YCSp@e
zubKvFKdG#5m_;#x%DG`LC4@1IRZ~S8{WV~^v7bZUXlaxPQ4WYv6?P7U8d}lTd0|{A
z+Lhrxsi12QK_dMjThWI_`)w2_d@yCKS0A(c?K0l6YM*_Ot|!yP5_W$j)mmKqKK+%A
zR>WEKe{zui*?#>@S>_G-8}GK3o|mp*2Y0f-7~e?zhC^U(?z33fXSGxLM^h;wp3MHb
z%TQVur6j2oCF|kXbj7JRPICiw16OUY%?pNBe$v=idCQ5ih&uMF7It^?%?Y<X?$SNF
zsy8N?fYUJ?{g5+gIJ0HcY7Jc>rY@qNXH8Y3Gb7)r%jHG~XWcEqx19I+BATybRuxoP
zk2>^4su%;7L+jRWvx*;=4ly{b3kj!v)tw^lqu~0lJ%W%!U<5mDHI?ue(TEV{<4Sp!
zKTI*%0Z^<v{0iuT{GZ4pn=lJ97ooNv08X8__}Bym6wL)Gcv}jau}zsp@7&VFLHM-D
z#=_V%oi^rJbVtA^nF&~$LK9bUbi@<H6p*86t(25&f#QK^zR*7NLDX$o56=_(4{^^A
zsszNldefguK1w<M=@h>%C{yoP>i!~Gue$;yiNVm@)Pzn8ihm{|&W0!{J-eME@KI|O
z%~35z?W*1b#Wm12XsSon($W&G;%h!>E*-8eh}N0ahfFFKeIxBz6n$;1a90)UoAlN1
zLOto9^GT|QRF@U5(avU6Wud7f;w3pu6D6jzIJnJu|7!rVPw+GuoqqH6ViuSy@PzcL
zcj^%1c}l4dKM5#K)<a`Ny{?B~cdoJ0{C(r_Dalv|W6CmI_@c^GIg589^-uSrd>XoZ
zo&9$Bl1P=q3Kqx8S5uly=|O4A<-+|CxFv!cjyPJ#iK}R-SsFHd<pERRlx#Q}JOyQC
zuyGt%E=i)i^}?>hAI}wBC2ZP^=kOqF$~;$An{!VIc9$|IMgp9fjrlhrMMK2N?F%nD
z;1_DS3`N@rIxBOu2Depo0k>5wuS`34D0HiN5@b`>_S~$bdit2u$Wxuu;s8K7->1`H
zvhpQ|J%@;V60*cafjyC1OQDLUvZ%5_^QV3Zmj)GBxJg+eoker%0m)7Gp2%hgj~OgI
z>|6`@9%H<({LjOm5L>Y|GX)^US^sSQ$b41^V*CxV0n+Sz?*UrMhX-Aie@XL>flo{>
z?OU$8BVY54rvveg8-Pkap!AD4{6F3uQ5%$$8{1l9?!}B+Mov*@ycH^9?mT?*Q8R`E
z5LLgPO=9ZnTzu_z)2GzRb@?8bhs)giDcYNP{L!t>6Vqf1#!0AJ`X_XR*22%i+C{9i
z@O_D_F#p$BAe-nZt;brLZuF3fli#$LMcykMRF6r_j$(#`D>7(Ve$}+|8zwdyvLl>;
zb=H`Lt1g&yf>hhh;*AR%0G2SD);K9?eKoyjtyF>rby{Xou)(vAB84t4Psj5Q2xwuz
z6$sSnI@La^?pQYI{>A3rlphBeM0lJ?dJWEUnxd<EJ&auJ?uUkz9hd@_S3io1*nm{I
z&weFzL4luvR1@#{MsBw8O91)?2O?tnkrcB6lYU1qH}t+SbO#Lj#no@f#CHVmFIR_v
z#8FM&ps`^!`MbZ1BOyd9u9;_%@gX1Oxets>t7B12sWt75mBL(@dsC~9u5hM*3P0RB
z2_&TpdN{V^j(vLNuL&w+do~b!vN5Dk=1MqF$^ZV*;4F$Q8}?+?gInt{5VQt?03eoj
z*9u{&{IcXvN00_zT)<Zj0u_f;NG-i*4FS7bTeQ=}yM%@BO4ljhW7bihZoDrJ9x^P@
zHZ~F=H2-eh8)GpodHE}PTs^Gbabap|YBuJRYt~O7i1m5<dOVH7U^<`E;AD}SvEM?#
zGh7Pm()xm^1WZQwv@#F*o;*07j+{W%()A8+r+!T-Iw&<peLLy4kL}BixDWGHf^p6U
zl~x0dy`$nrO>CCj{hDU4$5_?dM;hI~PT|K7Qlh6DRFb@#J?TLfQznBfn<Z>NSEX#j
zzSyP8zm->%`pG`g+|+K>T)d@fCYOHZlBsk;tHtRR=77*(DPkMI|8R4^Bb2aIS-_R5
z(W6lP&A}=5+gG&(5BPbN;dI)#<4C^8HzO5Xb0c>&f{&@0feoqOySP3YZ{})6!BoNw
zV!}mpAWyKBHzef*QqleHs#Q<ETffXOe;kq)m6WWjfBgl1EWT{QA>U+mmNF|@0mn-v
zfVfTt1_m=GM(~%mKY<*iDi46{Fa+2D_C_Lp*34Nw7k|^q_hk?J5v)*wm5&^B*h>{d
z=o>_v!eFaZR9ad?T%*mQ9HoFAD*hKhLv!7#|LaXS4tX+d`WUQqE0qm-i$sPLvD8!`
zu~N1-K!73gN{ZqY(ldz}lX5Xyy0J)t>dRk1bS)cSJ+Rg{s~3tS{<~BUV`C8hL?TMK
zbAZ*~q7O?c6D&%@ESrsJI*F$7>ThO!aI^>f;O7&!fZ%<#+<UUVT{!nL`P=v@=z&z!
z*h;3Cs=6X?&FRV$nTzND`<n_E6-0pnJMr)zprr)!dSPV`D{b*uwX7@JW&Rzb4T2LK
zGO=66H^H!3MOhcp+Z8ykOu)fM-P+cvB_i~nGaLy^e~%>E#H6t4ol$@hw-<-=);kfB
zLAPjfktKa{$6iQ**M*r<E%;8~@6P2<NhTg9ARua}tIwcB6y1o+-T~ue=&;a*u1JxE
zR|c;`E}YFcxXtEqe6uIAn%=~u-!#+ujqZQ^pa0vl=B$qLGQ2FzObKR;2gOlJ6--7|
z7?kwBJNunv@(9LN__cNwEpR|+NePNdztx52J^+D0RXf>vE3S*Ue!v7`pUJhEBZs&r
zi$ofd5pmwK&KHvyvQZgpWqMp?rA6B#llA6*JludSTaqF?mf_-x*&d^U@`TpHn37qM
z+jt6A9|M3;r-wUkftbN_?Tt@0Ge&3+!UwGn_g-kMP5sY9iur6pjE4rpMpC#uU!`3s
zd{_L*yncRpw|6y7n)Ye7@Mc$Kuv#5HmM4=2Smo33H$H<%l<Y11)PT(@Qh#8?MFT+t
zFS#RPfg7B0dG;~D8D`x~{~Dz`l4z9<-)SX?63hX=kQPG{e{lNs^hL^}_|<fGK5qti
zr!Kw_jS^)0p8)+UOX8j-|NrO%{+q9?mjo#XHq_LWB=t-2GPHmfq8;?CC%?JQIQJi4
zXTg|5L|=BfagR1TtzF9G1K_#RMhV<d0wpU_=X_Cf<prvZrD<n{lq^FE;H4_fiWZ+E
zA{~@j*j>*kWZ<><|Gz8t!87))cZ?1;vlXVUcBViv!l_9s=B2$koWZ0TVm%Cxf!YO~
z05hJ&27>ktAlsO6`4|ul%i!DUV?*e(-hL-%FagC9^K0+(TzRj=^z*&hi83uWz~)wd
z<a5+TFuljT#<g<496~+_I2#y;fy)!PDju#z{04!^(Do)2nC&M$=}D*C_zF<7)gFlE
zct3O$V9AJO)UAiQd=rlo3w*8>(3DSrB;s@gq8;th#{Uhz&hk0eQvUG2ZodDTgl~<4
zSVP7OD=JWf&y@{va%p=CtJtroPzJC>ZbzBP>g*maS|8v*a>VF{dv7dc8c(4N->@Y;
ztM`{b@(_^5ZG)Q5_#~UgXgHnkxUMVia`aM^Uk)n*Y)7o^u8C<Ud%srq+Ju1<Enb8#
zm|q*yPX3=iD3Zdbws*8yHsq^^TqUeJ#xo5C|MzqHpZ5v{Y&bX~iPbYr_>lbN%Pb#(
zEF97L(Bfal;6#D^9KEb)^%@}AmOD`!_+EWoZmCON<1l~!;R8)_L1F%6N~%?5{`c;s
zAEhOgJ=N3N132ts8_%J*5bq6}(eL%2mc_00p4q0^v~*>JQ@+~*iOwt-24Z+Ch=TvJ
zGWk4~rAk4MH;}z)p-Psp84xwV4wNfqIp&QWU;O~JtlA?}#INP2ST$Ib_k6|}_c~3(
zz-Q_fzyi1`zg9{s6$G-#YBF3A+x7qJd;OO&mK6Kx1_DjKqX5jEz$D1p7gO_W?QsyN
zS{i}RbWFek48^BbJZ3OJsemh?V)hYcyc)$l*Lw?q$uXU*5G8;Ldyl!YJ@HMZK_`=p
z`YrB|`7&hmKbn!$->S!2?)LBk&HphJrME$$Fa!#Klcdjb%7A{utw0#W8O|Eg!H2KB
zv%9-LA`H6q+Wwl1bD-$8W2L698~-T=Z7dZP)naF|XaguUWJ6U1MX5=-ZBlf1RI%yZ
zQS6$Iq@92#cs^>)B-lfa^VM(~&&UGcWZo#Q96oNnyO=d64-A$L9eV?`4k%8LoIJL=
zcPNx>#N1LF!x`2<t0(6rCnT9y0Sd={Dd$v}uM;y%^_lx%xg$j98R4T%_xx!A=;=`D
zqouYjU=HB^sMRUoy8|HsJoE@q|AdN&ZGlo6epAMUb#ZGHP*D!1uyqIm6O6c{oI#WA
z@vm_s2|~YCUbhFQIIjaHg(}2dzFY!jwGfBO5bw}pVS=*YrKuuZ?m9F?3F|Zl78hm`
zXiIw(mQ@q3vBGjnMbenWsP%qp7Nqn5WTaS4YZ^!4j~oCAhxzg$+U}zy|GoxBzk?Dn
zU)%Nv+d`Ydl+^gPnGuCfyd~OC_Nm!_Kr7$%3g)W`6T<gm<ax-wRxnRQp$CT}?N4!K
zpd%gqAz09`TKhjOa(5-I_t(C}k6x#IyN;DNon8*TRY55~4O6+Y#3Wx{Xb)6;8c<d%
z{a+1A7^p6lD~J`oMR}ny0@#fJ_hy$pNcPrs)|4Pn2fq(q>Hjwne{g5V>Ib$OC-eZY
z_<cmCBQY_BetG7xVMsyNTd*)9d^336p?La#7<=oeD%-7ZRC)o@CEX<mNOwy&(j^Vj
z-3=1bEiH|7cem2D=<e>0bMriV?{|OixA!?`48|JZAF|@&nsfeYg7ti?BuQd@9@pT=
z7C!b97)n}2e*zeZkEyDQG5Ow4_dn*UO&7?imX<Cp0fvQLn;p=eBy&-L!^?S19m?^S
zO;VBAPy~28`+)V&s~SE+P_(LF+~-|QM$*hL!o_;z`R{tdiTLJ;B!lVbN-Bi?dEEF-
zBCKTEt-XfnGFwgd_YY)3#lIdYsp@;D-NaonJVTF8!<CvOer9B2b7EUApC8iT<>(|d
zcd=Ur-1=U;ozb2wrc`?gjt%D17c)Y>_wZ-CuX&GXN(@scz~6G;SC%v;eg8S&%pbB0
z(8CcrMo+iRaTopJ$KJO2#7#Et2z1qnhd6JGVz?#vFn;niu6@Hlq=f!FkAXJ-1gH*G
z7_MeJQD1kQ%K`=3N?;i;P<9@p4+9j&y6k>X8jcnWf)V1UDZvOrW5-=d1EeqcEiH?Y
zpX7iH`z&zafh@<;lnr=X%p15rD0xwI$BrlaScvT5Q!l}QrNUnWAn_01eYda`TsQ(M
zsGiST%(wDoK#;2ri}fNW3qXK1Klgg|>6i(&1BD!EBk6M$(D32)8G{T%fDdcw29n`*
zd(4NTx3Xh3#DVg63e+U7R2Y4JmNM_yzQ(t2_r0?Rf_q={JY^+&M4))DP^&DWi1-d?
ztvdZ-oQGa@M{{;YpC9K8@Ug6aJ=}#S)ulL%eD=>1mhjQ9nvkN?p!;SPEat&)j3Alf
zK9tOpIt<q+L2RDSPXshn&h+y4y9KxWx4<2E)GS6QB~B9X0xX=bI>OzQKR-Y?f;>WM
zXA)-iBHv)|<I3Fv&K{!E&bPe`Js=_u+v0a5ztj2VAhrv;#OZUR@NG-LV2Nnc@s;-f
zTwj2}`W&!^FV*u-e{bldzdMDPRM45b4;_2AKmgHK1Wz@-!25|y;!U&L-50^JtWYso
zwSgMcT5Lw$Lw+guNa9Dbx2`#XejLOxAUng~V*h3-`(O3ZFEX&h#`^+an%|(BJ{Jx;
zn*#AL8h1>yw<Vk&R)omt%o|W3){BZ^&uUB=MZ(!{zN#C#zf=;xnBkLIN+3itkiHiV
z4E!R&8;wO`QRNyQ!V>~vcF@zqEnYLxu%{1^WLqHf!(c|&!wSkS&Q_EKWv%H<%Ju01
zXTkOPw%?17OgLeu?RP4Ura{|N-S55tT#GJm;DRj;bv<wT{k~Xzz3^)GGO9t_ML52M
zrj%)A^se);aoIYt0v_$+`wzYQK-n|up2B4vkJR%C=IZefq~Y~nQWvKlQS<M52$TJi
zR%JAz86}WbNA7@yw_pBH(5G9cT=Bku6h=u91=WSbTzl|B(9IY;fmGqQf%wZv(CA~Y
zv96);*J3;`aGgcu--|m@hC72u%<glLu>Im0dr(7qnS)0zULm47^L14q44j0?`B1$Y
z=<yc*0PA|D=(QUZh>SgRPrlLD0eNd$_S1m+BHi%=wY4aqKrKCqcjlmp?tW+5;3Tjs
zR%Yh_tfo%+2pADRNK;%g3d_B^WCl}sg@r;uCu@LD6lJpA$EVRa$};w6CTjNPYfNL{
zj=d0`gf!DqAmX={cEIc3d}P`qKRZ7BU3$joEsSKuWrOhTr74b%V+?>uXrZ(BH5^Mo
zJqPRsG=x#9fNI+xmQD`eja^aigwp~EB)QNpfxS(n-me{43Q%H}VmW%F2&#KkyCiRt
zM_q9(l&S2XCw_*H>)ZgZI*03ON*RM`i_0mVcuP3_t@WXOcL?|Br+fAOJUJN2@OYk$
zTp;uOcNQrgdW9#sXkLFS${Nl&moT?myY?DhX^Ux^-8ah5aFsdQORPdvt$=uZiG*zQ
zPF4Rcjj%Q<yGFq_ND}X-t~6fnzpqYs?c?SdA;Wj@Oo0e}yh%CSxM4CGRoGq?l+nod
zX#D4~gTT$SBak>~|MJaYy$QoXXT*?C<?reKFBkK_I>Enw`qC)=W`YzN67-J#KHD!i
zv=ERAYgXkh26GN}kvn`4c)rb{L~MI`e!wQiCLxt-O8MF&kdg_CvmIlH8ASC#kBWwx
zl|dwxTKriWJzQrWe@elJejFoCWG<PBj-28M7+V9@K4>@eXyxkup;uSfGp|jtic(Qw
z^X6qf3H&BMK_Sj+)r8m}<f5dw{dt6q1$*f7dYL16{$5iVtYE```z+#ih{3ff_Hz6*
zgcks2LQML=JY74i8A##TiFmV0e-~?kT}k>?ikniKuZ|G1e#tqNl3E%el5-uzRXdMl
z9Ke+e&01N62@A=rCfgicgu5{_WUdfEb#(HFvE4FGP>bqr4c6)$=)#s$1}7U3KoIvP
zHNxkAC<j5M-$73}fxVVNbyq-3-1_3cCS0|)5k^<WlnjLui_pFP3I7^M9x~PTH%x9`
z<r~i)@=8L5|EV;P5}q`6d;^T+>Jz^%;Zb)<3SeN?(}6RoeF2DaQvfQhm-<Uw!A2wx
zgC9Mx2E_to3$l|-=bp|0^!`KIKqlyGLPoloq7Tq=c$V%3qWrXfof^Csed1RV)O7bY
z!VECkX;$^-rB2&{>`^a{vKPMV+3v(2@rasp<IlIig+GTR(qJ4e?j>|#qEOYz{!Wz}
zJl99}`)k*FpaN}|7$H-{eUN#~Cky@*QW)jFKC|^rYP@B)z6TN`%TW2qI~ig-Z6NLV
zxgq6#V4Hj&$vpl99+VXCQB@=1o)bxf97}wX(PGnJ8aD&1PaxcyUWWU_37Ik2Wss9t
zBX4G?_J7KCfVuG9L9GQ+s!R$CeBb~y*N&%PWsYPZycagGQ)MQ3Q#=)txC7s&rE+??
zgJp>E)bBkRag_FjBB$rA?ZsA--u%+u+d6oR3$<vbr9rAiQTXO(RM_3*J*EHi_x$_$
z&dMS6HNlnP4x7P|xfMbWM`x8ITk*O{=M$DQwEl!G`0*}y?n<24Y6{bw(CuYRU2+y3
z1+fA>3ZFXei*_|9VyG{Sc4X%%g*GcD+3Sr^BEb5M|LJlv(Ra`*RILlh{q95Ri8#ab
z*fSrZgO*&^XV?SWIvl{<kV47yaTGcx)Qy5QBn*0K@ad-Qhnf6|#{x?NG{bTx-MaiS
z-$kc`eTprni@zeO>AA@57ntQ-d3ZH=)Vetsr?en98GAA_B?ErtAzfhuzbyaoQ;9L9
z{zIfEFaw&eC57lurc$pt3eEWu%P!CbB5v|E#7{ZlM0Bos(n3K&VC41KiXp=CQx)+=
z0!5>^)sIz#d>ilt;k7ch-5TgE(4RnQHjL-uP=y<k2r$bDlKif`rU2`EZ)PN$?6jIZ
z`d1u(67UsFB)8Nc-yp)10R;P)a;4kG9ut>QXSiOWJx{<GINQ=-4YC2=(As*?4uDuX
z5mTp4?vRxIFzb_@P|f1IeR)24DZ#&U0dl@?MTY@$kj^h8ELGrf4W$j<aUcVb)Rwr`
zrhNQ}h%y7{IyivlOu_$$D*=&h2Sl4kO%01RhJI<x8A__B#K!B?8CrJEi*HF84lDuc
zLliTUDgYwjFe9qV8Ukfmh0e=z$>V8-`JmgWGd-C*9{|s%%~(e`6OrHJfmGWhoZYNW
zW*%~N5s)(8R)Vh#hb-`Ts_-Fuoqs<Bb~FoCv2PTWy7yNHFua>x5C?s{!v1i>0KrSo
zzt4&H^1nvuM0x1>+HbPX`bR)JbG>uSy(#kf*dbmgP)QWXsz0UP!Ob<q_Uq&#Mm&!h
zFuL%ELG1a?cmDHtF#B<`=Q>otl7di`$rMQ{iZW^9IcW!6(?9U<e?yY~H7@?ahkQ-c
zTB1*-*Avd}i9m&pYjnvJ!ghogr$-P;ev4q8y>7RG=|XRiV=M`r)vhx59pE*b4yH7~
zf1`fJJK?}krX<34h7TTYZHOViP;NkjZ;E@cFS%j0fCXwRhR-^~{yRsU9*wfjcn3+-
z&#vz6PH2J~(|~yWYi*5iNH=}c08q+}LOU0C3J@RtWghsN!eGXp6A=AwYk;SQs|IDk
z(3QZ%L`&!NwhL2p9yNq1oyX-mQ)n}{RC$mHq9jC7O;n@`pNxW3hCpOljE?yL-wsBY
ze62|{W8>Zm(Pb|e$Dc&F)p21^J0D*-F`7jKQJBSr`HyAvQXokv)er!b(_hbmK9PfZ
zWZcS~XZ7I(cyM%G^}E#l;ee}^5N!fpQZ|rXcxKT1ey;%ANOn<Z;Ni4eOm?}XAKvXX
zc1lXE1J`c2_WKo2ABIpBmGx^<wE*MPQdYy!25_@voF+SQ4E^|i2(%COU!z*!s!TYS
z7Em{1+3b9M#(RDP`}u5!JCiIcuAl~2DHdFT+p?b~>UD$rCj=Tgw4?!=8^BlfpcoR6
z6~reov&o+-Wh6sn;?9@3NA6uy8&*L|mn_a|DU3-K(IT#>DM%Ua7#aS<reO^>GgpeM
z!D7C%!WCJcHKBt4!;#qg`ul%%zXNcPluNKF6Ql>JvDOhAzMeg3cqWRKuMtkP_*H;r
zlWQtDJ66GT(As&wK82RBCF5i7S$j-uP|~4>-A+cn;~00oGO_$#R+2LS>>@*kOJ3*!
zEeS<egr}z%Z)6Lf=?K9E@P~^_Rmhay;j0Q;8+dozd~%<UOMxnpd{}5`s+@d^)-Ts>
zq{*@rsxY_r4m)vK`M>rNS<z@;Aktv2jWz>?M>6wu(9Fs~U*_ZVk{jlcyE6`2uY)?U
zwJg`D2iP1AS1g06&8!eHLYRD>FEYD{_F9ucf~y<Bg71ZYLTmmo*4Y4-|J3G}xkXNZ
zPQ}PGd3X3Nh)bjeSHCM!`I+#6zGk}$KY9VXJK2Y_Vi9X@(BalHT$bH9ZAi_c#Q+J0
zmjmFMsBt}BZn)b{9S)(22)8GWa3Z5w_7$axwRS%fcONSYJp`ut?G%f$%ALk%xMfQ!
zzd~$rlCW3h%7+?Bstd$3RA$z5;39dD8&8yQ{ge2CC0-|)NfjfO5SqI)!JRU;<j8L~
zWY8TNV?^I8N?NKrw+UoYAi090=Sf<xNl;`FEfip66cQv%)9a)DE?F)3bf(@$Z$&Co
z)K>|6uBJOhHyMPRU>dk4#Xj4#mg|vW)v`+Kh8A&UjTcxU*_vlLfhN&jRk;d0g{VuZ
zW{gh+qo(&H<tRkFv-#g;VSpw<%?wY2$7G394>CqQB&%jrogf5#U=wwG97I4>(`+YO
z5PS#r_$N{!$PW5kQdzK9xv?T+m$YrCBr+{ry}E@sT*auz8X)&H1>3%RMK`qmvSc(W
z&1Y}i-u<K4jLCtRukW+h#n<l?@udwv_B;keBCLtHhdz7VsAl6wY0r5bu*iUsq5w(V
z@6^m`aLVsNm((DP=h1g3iwR+h9;vz>x+hCtnc9~t<6aGMZ*TCPIFdD97H1rFol5oq
zJKoH2OMm|lW4-o6*l|Z)BlnXBl+h!GnWdqF8D^yE2z*Qtf(5NSC@?dhOWP2+1vg%0
z>*a?G*Hn$i8K?Xe#nDtbFE#dQffmDUUR&GGOz!OgWF4;MIvDJ8d8tKAG{gelE$ObS
zIhd3Chk`v*T*MSYofMb?{8Y0aV8`R4P`f&#4zZE%9m>a*vi`fBz2iLc%>~uakHUZ4
z%tqfj3Kero`YELoMbX)r5jDK9$RHW~&@rZjYY_h+LiaEsIn&>k0FaKV2MJZ4j^9|I
z+bQ5>=dj<Du;?SIZUf3sz)6B>2<q-594WQkqG(Jb1t&cD<Rv;XwAhTVL~}Am(y4=!
zCxA-6)qDiNggAAf>@)N(!)Vmh-__C~n8QDBxqyFFc4HGB>s|vWG_RXv0~{eBBd~$0
zHs~#mBO)ylgbk>fEO}dwGMq9dPdbT;^EGV5htF<Z^o7?I(hn=*B>tj8zuOaICHkXs
z%(*Qi`czLcQXRSpRlnuNYi4a}zS;~+cZk36cHriB!T3C4JZ{Ir56uAhO36GI?Ue(1
zScjMSbWpPJZQ#N)-{y6L=iouvkFx|-&B3fAr{~8z*x@=wQD;fRI`M&|iR+L=@Rww>
z>`!+nRs{1EHcdq_o9K?gR}yaGW~PfbWV@>6|0DwZw8<3s?Rh3G%JH?JH9jwQU(P?_
zRnJap?@8NLZ~q|^M>J8CEIOfB>zU@?Yp`)t2Ha@QwMFU<nb3^aUF7!8OJ-@}BuA#(
z0uKc}JH6;?F?*HWF!`Q6?4hHr#m1QeE26XX%vcsj#8R^q!|7_v<M*XMK2lO@ROddR
zPTo}XV}$12UQf(hO=9pJWgU2o{<d_@&)u7K&3nOu`2J?2&slbM=o8n+Hz*IBAqc7I
z#;=~=b{Y<Mz5l^3{x5_f{7wE#?1ys~BTLqkzy2z7h2KozrEEo)w?A_yICw30qWXRw
z<c3M?q5?wS;04X3MMwA_EHg_&V?%+G*BM*NzGy2FP-Fq(k7gVNHf2F8PnmgPR8ehG
z$|(5&)elw)HJ22WHT4JZCoHG=@Xwo`lbfxI>cgh60#LOR{vcq7H1&Qw6Zc@S;F`<F
znZSc)OG-=rL*VDZZ4clZ1sjVl&4W~_vkur7u`xJaD6-UMLct~91VbD{v;SH|8TX6#
z=B4{u2OGPtqC+W(q4j%+e>RP}0_M27foz#r++s5R#b^XL)xcV&j4H)7hpJHWjdTfS
zCDg=cZV5g2g^}yF2Opo4(=<L7o@&dWpeMe}(L=5sKAWczCYH3j^cAT3&n>#Bs5P+r
zH|yUS>zq!hqsLVH-`IF^lvs4gsy>K@S-CV23PLpoXScPPRG@ssuiBkvTU9UqITGXU
z*<@v9DG#puxFgST9Ew4`32dB2;1unTBs}6;q&T&Cxwg4}5{8-Jgdn9}lzBO5f0mY#
zmWI0CIDytJxNq|V@2@;x*W*p6IC$Ud`U_RUavrSniRl^A^tV)1R~sKMHp=bW$8#79
zQk0Up_%IZ_L(IHu4gbSb#kcM?lKBP0%S_Ybu^E`Y>uF{!e^ZBf#k_%!egh9pfr`E$
zZea6R?9gUADUjz1MlYftsbom7>h}VNptT>Q+5Ar5MI^TGN!j{A8~d_#q2%ltXID<Z
zzzJ6%6~gt0<woK;CB<K92*zOeS1j+K-i;b9kAG_DuUzJn<j*Scscr13n0wun*(X@4
zpZ5-?a5FrA6fD-z&T^K|<kiB5M$d8~5>!&934gC^p)xjKplsO@HRrkZ_DiJ+fc{GE
zd*Zp%`lXuv4X-#Ph2VesQt*M~aXu{cA+IBWKnK1mprerx<}y%$>nUUD90i^RB3XeK
z*kZ>9Z6+xxIirYr75$CKp8{*WvleNukyOmzfoLK_1XOe!1f0WKXU5mjfB{vWbQKfc
zv<DEPs;+Nr5Rz6ZH-@?}F%Y53nG1f|qO<;b=(z?0b>=^z4S^I7QXw^Woa^dQSIG9s
zLjtvm7m&u&?TNg+p6_<-f#+cWZp$DkyTID@TNwJWd@Sa=@}7pK;^-7E+rjB`N%17j
zd}rtxkigJghBf|lUEf~&a1Up|j->aoAknax%;ZpHQ$r2yC>)o?(yJ!G71yAlsc&y~
zrZ)3_#v;rv#v31^lNCCm4Gj%Ve~AWwFJT^*l@{7@Id63x$3M+bqIZb^$JXqkdF4rN
z@wlXI1De}<=<yO3bcvLtkHy{G-$hV)P5iVguBzQ)ImdjnM>W^)Q4G7R1qGv9Tx~jv
z%@izsc)s<g^_PE86V1t7b+86f%kHT!v;^>#bqA`6agOtGm#U$Otv~mn^kGwq@W`fj
zN{uH_r?jhY{rO3@4(aQH<h;(g;euWen!3s3hUSLt-rcfBMx&aP48ldAhd@l0neu3^
z4CC$oC-SZmw*X0F{clDs%sTJSEx3bmtW&5zidDeF4TWqD@-w8`F1K`66U9xmxPsR;
z!Ps1mb%BnD#s~34T8tW0tvo$HK|}Rs{bYNW9rorJ%Oi<rDDco^sF=IZe<c5Y&j0-}
zCGm}@v#o2l;cyC@>;jhu&kj7vRjojM2O?vMv$-E#Y8abSC+gL3rhpzw>x5tP5(-;H
zt!fV!r~*(P7}jfgv)4zYGX}ci9Z#)lIx|?VA^-B1X!tq9Mlz)Wflu&W0N5T|p6{C8
zk&XqS{|?$6)$nUzaIh8xBXrksNLZLX@oyk5FU>GFwM_a8?~pu<H$d^$85tS5vK>to
z#W`qerC8U0skQ)@$)(OauhKjKrkMHnw%UP{mR{?QmIsq+Ui<954Jo?#hjj1XZvuIM
zF@U-J;Tp)zw!t!6UqOUktc6KaIm7F|C>o{Qw^?q{AYrnUU^VgHCknGuDG3GlJB;#C
zzhaeM!+E*6v*!A35~Ilarphp)0|0>&F6$J@fA$Qc@0g`t@x?EW`!%7YRPhLq=hbb6
zfeYI&ui5Y_{`vN%ga{_vRg1=(9^If@e7(sNZ;OZA(4Cv|yIjjCWTqYU*$rWHO8Xs4
zFnG6V#}^;n(>c=SQLuWD^ccpbSYWn8c0sCRea&k=zI3#>H}>6yG2vGg*^PPT6Fd5h
zaZeHR#_ChK$55MiNf8#^cV^0mr{Jq-E%a0AH!D}W6?-^Hi2t7-x5VlYI*4MOkbm(4
z>b(gR$IvSc-`9hVj-JLGGD-3*N^-<9Ax0jJd<W$GMPt#a&Q5ha_x!9|*La+qy=#I=
zm4HF%A9nZvl*B`s#xnl_z=ho<8H5aL-7iqUQhfpJBGo{{R}vG+x&fdyO&ozoGZ0z^
z?7hNS!2%Z6PJa}!P4Q3JEO5znz=t%wwQG1ap`LF@_>cJ`svl|h1u4QXm!Bc6L-E?y
zjX${9cw8USuI4~?13kQAo#otmnbLu`&fLtrB$OQcbOY)-*=jyQ@bu7-j48WqW6%LP
zbfl~7B{M?-szOsHVnNlM9}i^)PDP+P`b!@P0};?}dC85BPUJ~1$;vga#9sv1UKR+j
zA?p{c17Qc~yxva-dRjlJw)re(N?^JC)}Jtr`|u>_%FAiv*H)mk4N1e1F<p__t>%q(
zCR#mQ9&E-w$j$gXG&VLmN8T?J778TB{Z(M11(i|FF!0O?>BrUf#u=fUHSBF8Y6u<l
zIxdj7(B_@uC+TV4%XP&S+q|8?umxX2L&uTl9nOmJIepclqzs<9k5?g9O~8^m%ZQ>d
z=(xl)A3t*KbHnKR<3Bvj(V<d*y^P35Ia@NoXFbuYwnDRArs7Ufu~64cbfd)x;Thah
z94Yjls>c5+CANw1(CCGo({itH&eW3cLYvnE_fGURE~K1OLO=%st=pNeD`?N-<t)l)
z03d?X*-ae^DldY@B%zANM|%~-r<)MS))EVk{d;?RXC$j~b9+uEV!jd>j1**g&m&wa
zz!#OWF>M3;kr-aX@~|w|)d}C#M&?@t7f#-!&5T<qC`9uDB)IBgFmnU(^N!DRLB{pG
zuwY5KPHxb0lT$I+jc@GCuH-n>eZ&P(ai93*R@}7owZyF|f(ua=nyxjH+-13rU(KJN
zl2;F~E%teliFj#Vqx}~hCuQqEMNK%2*O|zUYh6M9!8`!#N&Bkq!(!yW91}SQ2%`tW
z{-wUwmE^mvt*yr9b99R)`Nu<3fohAcsEw!lD~HTqV1CikXULc3)tVw<Hy<a3Z$9#`
zLI852pd2dEjF3MJ%`%@`nv4d~wfY49QL1gJK!H?mx!J<+mXn(JR-?CyR-k#o6&PZ^
zKXUzL9asjgMl<VD#~8XFXNs0^tEHl`3H@bHYIbcGTgI=|RMM#P#G*Al-o@x>6Km!1
z@-b0^MCra)QPNZy9xa_&7E`UhXc-rab@l$^sQrE5{_Sx}ENiDwZi1a%xX#CZKo#Fk
zhnSX@Chkcuv!Y+|<C>DH5-Hy|YKh-T{ggC?5st($B+ZG0l{*X0;n88|QnVv<wf#@j
zlye*LZ2d=eq7O`Qxe~b-9qNNzx+Fndl<0Wa^gm-r>sF*Du~8mZ=cyVZFpaPloR@}O
zV}PQaI$`-#HGxp{t1vdiSzpO|TRHlu2n^)*FW4BoMA~-@%~3Hj`#ACkl<%7FlpfH~
zG2Eoc&*+~Je|ykLGukGzH*;tj4$OTLbpq8N@HdbSkC0RF&W_+8cF?uCgr^5z2iuoO
z?-;_d!3mi}SbKB(*mmBJ;RrXvz`$u_Bx49aOuCtS=m;dQ-Ay=QZ@FjSTn0b$TpfLB
z#Qt%n;Btd7da=8g?(_F0IRXt4vdkJ523fEdFiAM_5LQK^>JLSvbb5WVvVvCLd3OqQ
zyoo^Dim>=dQu7slJo&Ck*%RFBRY_R_c0op^BV&50VjkUTu_5I9=Ib(FV}6agK1lqy
z3b*czJMDgawA|_eL)HwBK?Uk@bCng`MK~kxNuicYtB@-(+u-3}#9<4%0y2!2mhP9t
zrEFxiBEgh_A%2h-{$@xJG4>>#R1*poz=BH=7Yoa^cL<d<x;r5WbZYagr)=+GY0N+i
zZ*-=M8%Q_&ancB%TDRA@-I{zI@)6ic-yu`XUV>42GF~M*<&+I_a+&-~VI50OsTSU~
zjT%k;{od~GO^*9hg9!0gtrPWfR{ggwwN?x41qeM!4>u=CfF5z``Y4Ta82LF}pTYK1
z+iv#v!x!^0Fdz@Ll+IQ00ThLDlZf*FID#E>Bwxyz*!DUkB+C>tyaa*gE5dz^o>o3!
zmF(d?*g37F5=(8>wSXJ5O;5Z05Zajk?me1U{(L1uJp<FiWQjau&2%y$qD0m+wDA5)
z;D^^9>py*IviL<V{nAN}hbq&!em5@p>%A<(&mjYN<PS-UQ^Foiqk(0b!`976QAq>N
zYgOj@VSL|qnYR$5)G=V5sHi0S{0QLTkrKa<PaU$oS0wrR_T$4Yj<84wqDZ$$NwVFa
z*rz&T5ShayLi#=5eb4M&%>gFmCu-@QB9~t)t79a4`aK0l>p8iLAv_$dCqJS_c*wYi
zBEc4p*<jDZFJ%JogCCV*^{7P3SaG6so_3oav}b!q$Z04BM)12ngGfd0J!T4Ygd{?p
z_B<<eFVz%Pi&PF(8_n9^r>R&UVdT*3VHNf{S|6}6T9qG+N`E-lG*v94j>x%2fuL>>
z!-Jr%d;8kyllZa7zbOlp5D0Go*eb~Uure!?18_MGFDlT!m)--dR7o-thY(4`X#|Hm
zfyv@i;5XHmkbQ=z&`>*K_B(HponrHrk3Tp1i`(^B@1RqQy6-_`z`W}&z6k?NBrFFh
z+eFz+xmq_#_Jp+k(|e;}H!MhbBp<6Qg1Yv{Ek?qAnUJN`u3fq}PGFbsjHF~pn66J>
zq0u7@o_+5A=vg*dPxT(`4N_-LnG`Ise>*bgDbEuY=?fB}6iq~Z>XgN#?O<C46-CCn
zGC<{Vy9hAeFXo_d#tW;5Tu5XR(IhhJS;M4qo;)nF?L3~g>_5!x1^#x;oV5MET6^fY
z0E37<WsAe7gYUC*#@h-I+vn*gp5mv^?m!}sdZlN*^^)Zk5<dIX{Yj5rCO!FIvk{43
zA1aMB82?LnfYCY(L^FaU0s3j01KGgK3!y*R<I~E|-??A(7=Ka?bM?gHGV0N)Y(49&
zr$6JjDANXMVM{DjqHqHJ*xnc-2YAgS^p_Ovs7xh8Dk;1lS1o)*cC$%9X2Hy4#eL$?
zOtnc_{C_^W5?N@_r&^}hF<+AgrO5dMznc`I$$S$JmNE)v3OyQ^lZv>ls76yGTSYHI
zo8w>9{#M#%LAVasqA-hMQZ-3Xakq_KMg0@Rpi>g<tD082?8SRPXt`pQXxP|B*r7B1
zsLA+?Y)jeVNA;JV1@eN7m0W*&VR-GeI1#p8gdQ!+kw8ul@F{)?N^E;tZPB?Ya@%!v
z=I@hK-ud~o>vkkwFDFp&p8H7ds`$t$<2TNRZ)h{|)burX#tC<=z*d2_(?Qw}^6Tgv
z-GNKK>WoLg<7}DJA4EqGsKc>n8$kXX9ug9Ld+S<Y6B34M4Uy|Garl;)f6;3;%PU+X
zsql|yE%A-#=%>zYK=b8DTjhTB)pW(h6wsQeo(7$Vg(2Jx%6pU97M6U7wkFt1I%@!|
z%}}aO0LOQn_OM@Ep5}FE*5rH$rkeExWY?v|bo-sHuUggm<8n@9OrS@!lOv_%(MI)x
zvQD>k5ET?v*W9;*bpZ#wJ9(XK)4<1xAGCT}sa$k?9+318$}{g1*&MaK<b6rd{N-IP
z59gGhZ+u?B{HJ*EnD4Zpkc;tF9+q!j(Tb|QHa4Bs3<n#JtNkqkY#a~mquMO4oqF?0
zs)zf2b<`L*bc1Z|m6g+FRRx8tNgg__+=So(ypMnzyAjY29Pw`hqwUl1@de6X@7^2u
zG+IarYTX~1Cc%i(c*M4|rx_TJ8O8J?Tq?_A{tGT=TGSNFFT<R9;vC#pA{fEk55tuk
zA<O~76l88yqR4HX$jTWpWLp{!`>aNDXR>ufGq{-Joi?cz)*FwB)zQ$4(7+gw-|6+&
zRq^-n|My3~N%Yy<jQ&t1I%|!?#=^P25cai-J^Z$<RGg!WU-b{)bHrxVKeX^#Dt%8)
zohg-$Zf2DIQD!XRhnyr4vBASP679ApZi$vgtzwz&RKZtCx8P+q`NJ?0uc*0oRK#)5
zhF{ZXK^*RgA+Y4wyUxqCqYOhJ18hu`@>Tl*Li*1LiIc<h-NSY9V$V>w&db1zV>wW+
z)7!0`(%ldLFfz7E$lFQ()w$Y!gMW?E^Jg6d<;IJJ8R~Ix<u<5}qol2}<{dxYU6g8(
zO(+Tg^1?_7kk{G;{Fb6(20q&2I>#l7nmp$rX)UX$%W=a_hR0&C)3OWC9VumfxrH8Z
z`C*J*E~uw^(DSWK)Jw#aph=*HUS7Y3o?Ee%T)aHBzffDdNLigU%Subfk&1kq#T*KN
zMXK^w(Chyca_|`yo^-eU`HHa|Sm=pX9vqAQf-C`$yXA571W(->)eMka4c<gt_M)q-
zAXAB!nHQj^?YDRYnAM>X;viIm`|q#V3b)I#rF^F!hSfeElCc)}8EV>MsKIvRaJo3@
z2=4^zSn%G87tYq25ZGcuK}k6{p0iveN@^77s$~esD4Xa24QxJn%Tp(cHwhpRwv9Nc
zMV;xYRO{w|@o*SHDfbz20TkcYPG_&shxcU;@!sdOqgN%>juTY>dNrYIsYo=EKJ!FP
zcQ2-&PYxW4`?HN*-Oj+--%XJwj$hSO={D8jA4-b4dQrX0kj--M8N@fDAy)m1J1Y5b
zTN=|~cyc%$Mi{*p75O=<)Ui5rzGEI;V|N8-8JJY7-0s>@seA2>Dvgx#f+O~p(XENK
z{goe2?+5R0?P!;4XAeAeP)L4%4jw98tCw^=k+z!b8ov1Ih(?f3gBDO07Yn5);dVcw
zyc0pb8#>IM*VG6}LumS>!o0I&IijM6h!hqc7YXK5%Mrki_GN@XVD}0=P5y6}t|}y-
zEZ$jNC0ce-1Dwu`4swa~m39Uzn1+t-y;YOFqmq6a1u4l?M_FsQ`7`E@8$k@L-uNW<
z7oz1@hJ^gKjNo?|{Sw1o6AkLlOl7IFT|)MwzjGk{$RHz=jQeEK88U4XM87&77?^MS
zjgW{Q@{<WoDBD}MO2ruvT<kN`sM<&3Na#nR;U~Mlqu%<nG2$45K;ZWr?cLgSX{!7q
z)o_T8nQHMmn04EE!o*HJv+jV6YWzA1^BAs;f2~9sOgK%tIC3zs{kHs$q?LO+*!>-2
zS1wsUcF_i!4y^lj1nb$cZ)#zLGCrTFcYoc{73bKDxz8_1?>DBeSM?kCnzxX)$$=n*
zvP9dw#{<2W_ka((l3uHB2%$1s$>q^C3Lkm7eTg=PwB%qsCm5^q3D61xYSRs3NJSh`
zO#pz-bUayJVqj)to0g6botj6rT!;009mN4PJeS`s;$9@_OyEEvDTGi4tf;PSTlYM>
z^`e<}72Od59<$yN3j@Q*@ysWZLMzRQnGYfK?|->fL-)kD-}W*RoZ&92kyd@i5m~9V
zT&R<sqQoeNIozm)6r#{Yw9VFTw9oS*I^}Kx%&2J$uj;|AFnE2Up5_ohnZR?k$YYBL
zs3)^)QmvaLQ7kOaxSb1h`VZbBXMq|bx{l5=Umgpf;o!6?vzmC<osg5%SA08IxVYwM
zUnBSq52k5tkFrph6bicgDn8YtN{T$b{aLK_W)E-T#M-dmYcoc?<O|x%H^5w@W%w54
zQy`maf=ed*NLSuMmg#+8^mGGgd6NcT?I|m2W2mFO*GCKK{3Kz$2dJZb4I`->@~?)L
zhZC%X)23#CttK3I(bxa^YK=6HO5aW+zVEki1$5l1$;hP4x+1O&r<%kZ)@iSyaO>Vn
zS>DnijSf4SomAWYHyVNEg7eq_p8NO5$;#vRe(>oL9Qy_$$1c;-<t&PV=Dlv1iw}uP
zA0JE0$>-3vQx8AWH7P8jdAH;q?W=e+t2P=HN;mX*x5AqCb+rkqlG2rHEI0AIFHe6a
zoG+L9(pe<ePqfVz5(%_F2<a=Le_X{2&9MD?D78^$4IPgZ^`3U|7R6lP3f>Pig`uK!
zIlQo}lTvdGf8*u-bwnlhdBTWxl>f^Crj^^$5MbZlo0aa0?UOn@Y)4Gv`6H`&S3!jH
zBmUq<I`!0f`RObK`Vlqj%OnaW_TNDK-!JRmAEBwnDpPNQ`o}_0C5cvg5#Ifgrn5w_
zZs4T442=Q0dR0{T{(fMxjI|>XkA>|=+_!RHae(8$Mnjb$bK(k&rs;+<80bn<dLYlY
zmVe6F12)!h4{=&0N>`cdIac-L%AwRRR1_*K1m}x@-6g=0ZdgWG(zfaqZyT$UN|W3=
zHV9@6bH#nDEE>fXCT_CJW)d(U<x9wWYJ@W9#Ltf!pcwYH!vn6cw%pVBMT7&aUQjcx
znaIG-XNq+hWzE0<;*7NPt>0s~V8IrpUKWwhvjb)$F$u4;a8CFx)Q#ouu|^XIqJgIE
zv<p$y6<+b367fU604!QaOjQ+c<|j@ue9$9_YXIuGslWqnSSzGIn;zOE@$)Gh-PBto
zq*^k*6=&P+&vv<LrUhKSf;NEZ<GPw~T{-0L^!C`LoenjW-LdT*c3BuI8JVZfv!y=b
z3kDI<F^FtwuXAbgTldefW(9u0{PbW8wmZ=S79&S~!Ps)uJ<}$4;_VBtAR}snFqH~<
zSo{dEk~_8lBn;q_;^|*%OX{W$3geQJb|_~9-(dL*gosy;yo%3*uM4z>K9G}(pd4YB
z+nm}4Yw_+gfS&+3Rm<L<*PIu>d**5Jt|@U}-LDSVC+xMpasv43aSA=|E;3)}TRm>-
z3@lnuIv}u6RydsxlX(GTrmgq9oA_D58*ngb*>UP}tlUNV1eY8hTGIWxI?8I?f%|#G
zGRjLXaTf`e$>jHXY#SBIdH^g1Akm=@q!W{qM;=7F^&n125sKlz*%1=IYN0m_KQvBw
zNh+(i=hqe@o1{-|#U+0iF#ODU2)Ao{T<u49X%@eI$99O_*-Z$bwy}amT@C_lFKVHC
zRA^r1Ovsso=q$qv`b(4Y2}Z3>nV%C~o1dHe3;%eJU%QliQ9ei{P$y03rM?=oCM9q}
zlo5&R<Mbc?b#5@|e#9=>uma*1>7r}_Q(mtfXOZ0`4?1Fy35_E)cMdP%+>Gi$Vp?Xj
zkA6@S`_HJ|u<#py$@*sUi60^z>YC~%I;3mRxaQiVYk{G}Vj>abl)vqj5h?l_jK1=v
z6F^7U#=k{4JMMp6|GLCYsuUg>6>qTN8fsOsR}7vVnW;th5_JZ}Ij_YKsmZdS9F*;)
z$Ty%lb{Q)l?6sUTBOLKM@#l#V%+EFGW8?Z2hDnSIY=65Fq=CngN-wxBIFd&AeRv;v
zavEav>w&TUV9b42xqIXQle)D0Vv?J?%zkJ#({LweB-_nANKPK9)&HMa04m4P9Y4q_
zj0R&_*rvGnMu7CG(Y-r|bJK5c7H?Un_T;0Mv^?{@PdrxQUVHYsY}R@+l&e)y5Zo{@
z(KV!MQ1fycJnyTuR~g8=@Ps49VD}`qt#dS72^9u8fBg7SmrRJ$O86GqMHm`d`FPB5
zXpVzPzJX*Jpjfl_{wz7I*33oUWk=DKHFWLm%e2YwIqcfBjs!j)-p-VNCz+^^$h2+^
zbF|h3*{uUh${1c}U1K2eQ}fVLk@)yKs`LFf9-W6UEILnlj@?-o@7+y6TZqHSCTt1s
z_mc-;Ew}QLbkFH5iy84R53DzqU7~Q!R`_lJ?JoB;33sVHtI1+hc)$%-h&`~BOtBG&
zS+Zd2z0+xS9+daFSMIl(T4D^GvRw;2#kbDV*WdQ2qzn80y_Al68RM%5iUZr(yw&03
z7_M%VI@GcjItE7TeLsY@a3)~e(P;Pfig2jKYRELa@wT#B+*!0*d?*aq@dDWXa{!E=
zqXOdhgPMz$TrMuH^m3RH{{gLJ#Xyq`@HXzEnfu)NNGlli?=QdqL+NvLF$2$XrZ20n
z>xJi$*FPgY(|%lKwZ^{}Xr5ZXk4wwfq`SV|vQ5h#nYOHN9p-)0JmLM@2SF)81hf|!
z3-u=gYB#QIYO`QO^+z}dp33w~!33Glg4D)4O?%sfz?+^3i9S1r$w$2D_i{w>>#f9E
z5VSo>ws=l(+CnTlE0%$I?J;9LoyW>bEe=07-$8tRq&@oumL&Mxw5<^!5;0HDDG$Hu
z@de)jEI0h}A+rE+yDBBhH$Q0>Q1V<LO+dPDb8B_PjfpC+I?RcZ%pv`wa{i;lbl{R^
z39L8O&-O$4gO&`4QDjxz#Hd`pMzd29HvR}{3?LwrCjZI`Dd}KFNU8`sp7)^|Y*c*k
zlPi#19ZD&Lcrki=8fC;|-fcdM_);s$w_+;N>nqW`*v<w)=C1<U&Q}amsU?%?IAa<|
z(dqcuO|xElGBh&a*|rqR=`m<#($0~nX_}oaQvU4h1Nh$5BQ-vrLLBga7)}bl*A>nB
zTw-cTR_d9>LL11Pq^Mls#vtJF!Q<FA=5;o}qUw}&08B44>7@+SVhEQ&RtNk<i3qPo
zQirSU*T9ACNJ5^H<T8dMIW;)BpH>TX2|$o-x#Qun^VJVVB|dT$9#J`o`sHX}8Y{q?
zb$#Ipj0s44*_~EIK96>dKsB=R;FO*L7ge@FZMX%QIRIWq_6QDLaS3vy%G`F}hPTMy
zlX14ei+*4@*Hw4^HodiK;*kt%G%bhGpJh+oY^qD2NVTU}FP*G>s17>)lzQtWG*BR%
zy&zw}9S5+Z@X+hBPu##M2AC$x_m>%b9-46A*IDLUbSwXX)t=Lt4wQj6FR?31Q8`U*
zUU}5T-|!75KJ>hVZ8O6RX;l@C)_Z&81w>t|uI#)El(tHY-&%L=vF-O7?Qs?W-IB)q
z@Q!1Mck(*KT+7RA*apf)A3v@%zZG{O*QlI%Bx%dcMl@3v$BN>4L7Jjw5(ct<2*ZcT
z|IeGJZsY1-HCZ!11IP@IJd49otH~@fHNF-Vt%z}Z?I3R8%`YKnu)Me#mU^9THVS0{
z1~FOo@!45*c=M{|S+xK2ko^ma7c3@W0-^<IX=qS62}qrYwVf-<g+Dcjtiky_a)yO`
zkEqU;d1MN==X73!b8WaHsaf)KD!QIc#2u&Bt|DoYke04q00MF6>`(|ezZ`TXAa3OF
z5!t5u-C_uk_4oHngMWEy*<2Ah=+B9|N>s!rs&!N-`OCE4Ix8xvD^Y#QGe$Si7DnUD
ztmV?04+@ktlc|s)oEP6NU9|jEctqZvXXTo#jW?}=T|XSBuyGrBzs+4D8Wbc|9*7*9
zs6|35Bs5WJmFp%t%a3C{Yg}&<w%uiwAh=rC(gBeT0->zB=6c$`MT42y_)}UhX%1i4
zCTHf1`b_G_BI+yL!vdYs9WD3<@;0r*6qe{JqB|JHBQL8=+9SN)_)lWf=TbF7Pgq!V
zxUb?)>5Sf&T{o~jzf_8A?zn1$JV+rS8}hL`@1Xp4t^o3=4#j6@$@sPnu97O7w4BF9
z&uOXOVgp!{Q61G($E9^e!YsPVV=j$tVGxOGHlvms>Wl{va#fyp_I#G-R)#ylpEqPa
zEN{vq@=*K*g_x;853$v?7+#M@8>=N?NowrZePgX%mkZ%79jn&oo0@;0y^^3>5-J6w
z*ZxkSB=n*H!y;SGSTWJ-OQsOy6{%pSiI-U=!+-hEeFag`h={BSqe!R(Q$B-GE6XD@
z(a?x0$!t6AKn8yX1|)>I7Jrd&e(v0Ubt(iUBVyB^W+Q$i@A-kMXHdLhK>X2RTZSip
zkc3>KH-vcL42oG4dZErL&MU}G_0)B%qRm8CMOE~Np3?gxvM!@PKR-K+gm8+87-?p<
zsTyhM@2`5^%w8*Lt1?ic8a5fsG$0xsEt8}Bv3EbrvDl5r#3txbEJWom7#<dXao8#g
zaQ0NgalQe93~E}KOl{u*3@KKsKk+Te6Ln9)>`gz?LBGxtrsaL?*2lkIu%HFin_w<z
z>up!S9E2AE$stSfsiqIG5m_lS9M~z_tm*#pA4p6dmPr?=Jbq=$ijsUrZi4acQN<(Q
z;n2Xsv$FUBpXqWFk>R@r)PMBDKt+PY@KrY1?69DyIWP-t`I28?VEkj#=T3N4j8_D5
zSjN|X*aUXy_&<}|tDfZ1$;oDf%%qWyJeFeO;?fm%>45_Zgk=@ZA;=_5qIlBrBH<0z
zOWbgXfvFNf`}n97`%%lYz<oIrS-h@5NUSy0+rk9b;6v8B53x~Z$ogXj3xn+UVm3N0
zi=pW@mQ-es`XD1iLgA?b`6VVi+i~g~7tA&9zVSAWl%-=lmfn7g6y5t$x`OM;VGs|U
ztRaYx<4}Mq4)%KLmvgF)f@Oa&Iqfzmm?@Au_B|Ykea#jI`8QI(U&GJ#mKNRxoR@!1
zKq0H!NLZKvCj?%8H;$=IC7ZJ87=U@+?Chppo!&*Y*!f6`{;5Q#xengLI;CtitLzNu
zLJk<}3qY%|<j}n(1-`bEme8mC5CskhY^g{ed8qz6@|>d}==y{AAJzD_G*uGPv@b<A
zvi1gtHn=-=&^ZmEH6y-YxKOPl(lhLWDHU+aP;9w<Swy{{kU{T?Nv#feun+zwdTyyv
z@d)16>$raRdeLjUK%C38>+tD)lSl3m8T}mUMaj>-+^BwEkHsjhsA1=eO;6?5htc7J
z$|>^kf9RYnN{m}@`|}oC>uWp>;ORB^Ln1uo3q@5Hu}V<qR~Gk*@Xq&G*De9+p*B%~
zxOTU8`uBcK=!pVqnDAzZF9~`V5_FqJYn5jJmdZTj1>D}~S_6C~<@!14;0&9?S>Mw2
z>^08joi6Ohd|0KN94ogVQ~u8U$cM+6675j7qOky(yO<J!g}0@h(B`XbB-$_-##a;4
zjB_Wx_k2tPA<~smY<C;qssPpeSC_@uzi)HFVrnMaRYAJ^9wY*QfY!}%CHdsq?0od~
zay-pI_U*TmkKAI?n4;_3xI>IQJPXSqN>B=PjBhdlWPoQSRErClp&b`~^#vZ#6~uIP
z370D>ct76Sl`|9l<C7OuMlXEN7}NEk9PwC=fv2gBw%K~7?Uxi{9<O2j?B}CBo;=$N
zPg<U~BHaEGW<&bu)kwZP-m6p-f?%D@Vrbi=#)w8&9k1!epfc#aa$D1%+;4Mpb3xDD
zo=v{RU4U7e5`bcK3&p)WHHHTVW2TGMc*<bsQI3%h=WB~)x%_|<XB+0*-T6C#uGClg
zk5~QE!%dRiMxRCjT*s$Eo~~ES$3knRZKQT%bJK`tD=|4ghgQQrT~_kq@Va;B{P0{r
zIj3K=Z$R(ZeFT}q=g6YUHf{%Qb25UM0Fz#R*juT|c~>cCzx(1@hxwfOYkYOq7P>2-
zkj&Gnx1Ooo17bMLVlX21W_6Dr&gyfu${Ennut*d78fnSdr1`aKloA;=mdJL7B>#mQ
zq-j7lWcb<IR7Sz|cr>Zl5qs0~W1PLRL4XhV!+|Bd+8-b|Z6N#8cZwxWEwVPiSU7*V
zX$uxjIS&kkwkzO!nW=9xZZ8nh4kdnZk}Yq$|7C?zK&EXteh%zenY|8RT?c9R`?2f*
zj$xx6Kh~oLKWvWUb@#{-DBAamk>0lH@B-HBDZ@b5|Mejt8NHvBl+>Abs&iKBh9r-x
zCvMwBce3u_6UU!QwwKuCO+|E~Ny$k1mxA=*X9yQgPXqePU~i_V*C-)eIERi$)COx9
zh9;sTIOLSoQ13<Le6#NzZ1gTXTbo31h8Dlwj&6Pimn8uiLnbJs>Ji~@Sq$S-t-^Iq
z0Csx6SF)eS?K~F<QTrThe*K}Wla$2M_+MAbfA~hw0lnkuC_fBnV9dvnQyT^%5Zn1Y
zt}ivK^RZ6fUvj-;`r_NVTh=AX7qNj%$UV!do$^g;6bYAE)TOnqA!NBgo_KGmxxV!_
zGa+Hii3n~oUp7v+)qR?#Kgb)@ZHp`*vAHv;R1Zsm{rbxV5y@>YW;G(!t6Q?Quk-UH
zel}jf3PfVZW7bs6*>e|=`x2j><!~t()b)hO?vg|a+>paZfn4%&jI>j^og$LBP=?~K
z3A2sYJZ<`E3&>pl=Pp^L#~8!su#15=kn}uh0&I6%K{&b<ECHzK9KHK9H{3`B6l*h~
zpLb9#g+q4au3r5Wsk&YO>vS!q&WS@>9NGuywE4Pzmugv|^?e&ads@dE0$i*v<@QEO
zew^sE18dfy+`Be2B>>y}Ah8o^A@o{^b0zDgMxJHS1&qQzCt}ZeIld#X7R@w&uv$45
z0F;Au)*Psb**=_J25*Ppy+k^~xH@n#g_Vt5?8?O-lrkFpaE}ZP3@nLf)%?nu)9ojo
zO@@;7!FzPGGLl>-!LGM!__+hQUX1kgA6pQOU!KvMbuR-NXA<Hf3of=3{|nCjH(5@?
z1fflCQ|T`oLcNAP7VS$1#jt5XVujuF<I|^4GgcS|BZ7X2D-C9m#PABlUP4S^h-0^Y
zYd{cO+^hewn5!q*mBe<Oz~zSg16E)jux+mvXL{WE{&KIccNIx1%IEJlJ|$DoP9w&%
zc64K)<)LSp8-=q8ETL7OT_t?%xu+W^JicL|yo0PB1HCV_O5N@;i)KN@<0!1^^_YNW
zK{Y_Bren60o<ExL{=tPX*6QHLc@>emM#4W|*Xmm|-v;z-;SjjBUC>W*XrG3%ob|5b
zrDnv5ID_vO4RzT?Bcxvg8<;+P7#?YG*coB(Mqo}LAp!L+{Q;W3IusBp8x-P*A+gsk
zFG+OIZ6S)O6w(LrC8vWKjm~_NPvg(FB^y>NZA;6i%B}{PqAq)MTR~h(DXFAey>1hB
z9nj5sX>L;*)Mb>UOzhgCXuBv~;zLm2Jf_GpD09`$w;MkRB2zdEIB>`<-n#B{J3gcK
z2!|sm7LDK=?zPy-B5XCut#~^)AP!&Eky1U#_}LNjnU^~yBqV5Y$S<zuZkTz1v@AAq
zH#&dB{l6=;Y~3M0s8+!5yg_PUB7wOFmVxDbs<l27fq;}V1E&7aR<lwhTL^rwJ8tgP
z$Hhj6R)*~y%NOq`t*&8?75aVaH>6bFW@EO9f@^IRCc}6h2p4@p2hAsK3z6VTL-FS6
zOO^Qyt-tjI+oTFgy6;ClHzh-LGtmqdoNK00jEVBqtNB;e>zAS3uMVsUSQqA;=WwaF
z)K+}@ynTd(e%f(2xnFNxFJ5ZpD^-|Fp8gY}juw<AWda&lkI7#Mj7t~(S*ZR3&;%bV
z%Z=S-MHfbaP?9iC741;g6%b!LpqlDeME4Tp-Q|B7Vj1N${7C@z7!&IUd)opL3(tSm
zWF2neMYHc-;eM%hF&|+#&hoA9QC)WCUvO&R5fa~Tbeu$55v3Qg=yAGd9|7P@%RQJ~
zI*FmyaF@Hr69`qF3HlrbgjGcXy~fN4v2hdo;lX`8#`ZDtRPPmS#B?!V(Pk&@Y(rC0
zl1BzLh^=z@-hSdN+CJm|*M|e=pCcai8yH(k7AP4Az?3BUflTNSc2q>q!i)pWqkB<M
z$IMH?hEx;P<g3@K*p_5Y&9D<+8=<^ROiVQEW#e<K<>Vrp5pMqOYEz;GM{kLkS<NLP
zh`_{)B>nRDE?#@ssT3IZu079Y?}*T?7hFQZ&~n9H`aSS*q>9k|*;Q79m2#~D$yvNf
zdUs&Gb9Gx>D?6sC6;>}cfsmA{0-O(;6t;00K;i}orIEdTmD4+*cLD~E3IWdMhsOP1
z#kqRz-hGPHI=~_gHb0Ni*Ik(DF{f_dM_1IsQyrzG!mMCTGhdfu9Qyz(?q+D=86<MV
zBC3$5Y%$z{FoZmIHNu9sOMupny_b@|;A}30I6x2JKDdB#<l$cW^(95C+;Qe%WJSQX
zCxxbEH>`4m3&hji6``dfSt}i%(Gx-Ly3AIW;+TaBV)~zZJ&Oyz1t8BMnq3ePRFVs|
ztTwGrPTa#ETI%d>)=qf$0r$E>@q$&B`+L@@-|i)b9kj~5Ihy@yB}H4aP5tBii#txl
z;GD<wey4)@E*Bk5Fke|>W4+(~)lfJ2jHs7R`AJH`_v@nm=b0?02Ficu$N#VIK{8pr
z2<+f;J!03H+O)lu_I3ws+Om}QB&y>yw6x<o&7Z;;8*Iq99e2M>s>}r_`$Q{A<z!_E
zx-|a%|C+%<#@*}DvwYK0$uZ6O9v_sNI7K7gd1@`P)i(|XbArb?t?m<j+8i2<HdUJG
z!DgSM`~hg>_bXxhFt=v??Q@KBzDx|jG0W=$BKI3wQ(`BQDp5h2I{@(JEW%NQ^`i((
zZHQTm@_8f=OG{?6NbG<pC@ho!h8wCVzUyQMWS)kP5C$?K%xJqJ{Rk*1Nzx3BJx#E4
zaoZ^Sz%n9L@AJ6KTdW_t0H^f|yN_|ho8#x26R?^^6K()9p7>e|@P3hMZ4fGkAMp@J
z$^3fB)BHkNd~)P8N1)&=kI@iGIk)EB`uAar=P8FE=G?b=UzGQ3|7P+3m*Dij{P-c@
zO$`Ka+s!G6?mLI_Jds8QuI8$h>(0!fcm1xZVWmUxa}d;lq^%?g!vzwLN|DWiQHZa<
zHd%lf4#K{5p^=NtUK9rVhEOsyPaJn^#34gt!~8W;309-cdU@7ghFpcLk_mU`=^3m{
zM%HpzWqP)@-;4QuY!#dP92S%pbUr*z`2R5W)nQTXd%uE6NVjx%cZYy<H&RM>cS;FJ
zcXvzo&>@{lN`nK8ba&mw+54RH-uLc(&h_yToIhY@t@ZonCkze{Wz!`+NH8%e{BNgo
z2+@r-HIvuRV91|(g5Z`;pL^CXY-Gz7Om=_-Rd{rCQ@#jDV|#0BfdE1I^JJ|kIzB%A
zGmPNCayjzFpaQRr*ghUDX{W?`J(}IL^h($yUt#q9>QyHVs_=ELmKx~uv$BvP-m*Xp
zi3sybt80BuoHXw9PGq??q;;h{3)b8M?rgyQ^KBpCQA!>X5^`awT43i<I5^(O+BGC&
zi;%ZH%j2z@hl`6NC!ro}i#tCICN(I){71?4uMyOL`=-GIn$?>B2qpuqgp_nh;)@Qi
zfmJs)BhV}q2k6(Cgkwkk=DWfvd$%zYe(Nv+Lkpwo#iZLLA6vCTB;6LR{u}M5%g)q0
zfTSwSP!sS*YK1F~eHTDdJMn;p{}>l=pj}%%@%Ow$$Hb%XZ`o^^j;`D5v+EHDZ+ROg
zhJA-$$Veww^8bCHSmuh~_Pl=H4dYt#gb;ZG>Q|Y}8y0--hkAQPo&dQDekyj}tpG~+
zj&ueHv(ahz2{cNVvbB|4ts&YNC%|5J1dxxY=)a^66*y|2=DS?+yj(Ch1rQTWZ}KMr
z;~t$JTD#b8^WxQpPp=*3W<+l<x}F}6yl7E{&SPCaOAyT5Elm1tX9`RUTq7MVHd=Rl
z4godR29B?Ph{<hgD7=-7hkH7+8?7w_sjogjRMXD7<prv*C1Nt%JE(_8{+g!qcMp7E
zx93hxnO!n~4Up2&N!wp;nYJUN40wSFom5`cDr?}mh0UT8F3cc}xyP{hq5|+_nQslZ
z6uNTT8cB-J%3_k1d(Fe)?hQ)r0M^TMCu1w0@BVlLl?gAFb7x!dq7&?Dsl&Q0pL>}a
z%O7N6gaGYQ2t@)hM+GQwuPVih+feM-dG&3UK|kaw!f%1vY3^a#P#5IzRT~p>!WVJA
zG+m<9JbQ8z%4N9@3lB3@-PWH@d-uGv16-CvTrbp#Y3+Brk#XUd1<`5estu2>1m5P}
z(hfqrjiD#fywu?P(!y#}A`^*y<M$uS{eARDWJmXfA6>$t94}kM|GnoLS6KgAK9GK7
znRohlSAL+3fWWrRFBjbMvFN8y_18Mcm@m)v-G>&TwHD`!VHZ`KDqk$GS;W^?#$9KH
zMOh6O@$tXLuS(egHJRbl0fNyn!0B^)yO4d_Fl-??V~jT2YrI4FQt98n?=NqZdHM@Z
zXh_yKYSlU`Q3>dI7HsurnaH_eL`&_BFI<3bB_KE$q3Pb_Kog{k7o7D|4Cb{qz%Y#G
zvYwl<cp0$WU^$)H@EdKSI|TE9tRX-R!qmJ>j)=>gI5VSePI&l757wXv?chA~iQvrM
z|4vs5R01vRY9ZMH0PE-Je=Y-b0_57_OaE4;W%fNx5JE3cEU|t8P~igm*}K+kU=D1F
zU3~yV_5Iu9n<xS%{5|cR*_*PLVebGU812>;F<U?vzXNAKSRPga0UsMX3BxMd-v2kX
zZektylZ{@z1}xHExdtU=Lu;p+g&Pi|HmRMXotatj9p|6*$8-A4eG4NQb7<e6vUuIP
z#~fd&do>DFo)&fkbZqlNf;^cfrdw%|lt}<-wzcIE-O7$1U!`F6GqN`!8E^%RDarDJ
zY*sUk+Omc2R2kNh5D=Qc<5_!-PV<g`X2U<%vHwq&B@H+Wc|H;dj?^&m@F3GNZM7Uu
z-sBa4xp#@SGx~tQO(yAxs7lKFECGuBK{1uJr#K_zE)6zw((C;9N7NWXK5`Pj>pY6r
z&wZ&YY7p8MAh^<K6uU^+*`Q?iC*0c*8o)z4;Di#qba?sJHZC<)d&!ayxVM#%msx$d
z0k^Bt4)@n5_$%00SiGhHv24N**e+*2VA3e^-W_HEi3q~V$EVX|yR=QnGaLOy)LM>V
zP2G65BxgC{M)5)#tm!)0wMP9>a`T1McZmOijLKT4xIl@bqGnb7(Q41Fs;XchoIBtD
zyxeRs>w#%;abOoHm2EA<gG8Bx&*>Q<in2aFku8cCHg+yi4NIq|ubp2ig0Ssd_e{+p
za!-#dCO1x#$o1jjM7CMW%VKG~j$y8IecF6{ucCEJIB5Sze+=Bw|M%~@Ai0A9zfJEu
z#4<DV!^Dc)cCv8>7<z4=P!ysD&>WKlwe-_7oc5=e@nCckkgd8c3luFK4#iq@V_W>6
z{1}7--oWLL1B=a(XWUEEGTA?Fr-d)f`ei9ps7$kXQF2?eLs%8leK@Ukc{Rkx-s=15
zVv|F4l{HAjd?jDe-5XmipOKq;&iCu^<<<TIh4ic+P^*9P6~ofaIXThk0=QnE9%e6K
z`qHlbzLPa|^id<#j<0%o)?#hrE<6CUfUK&zsroG6KhM=ah78V_+O<XzEp`~Tby4zl
zbl(j<x5NcDr<I;Yef$yX<~6H2+yaNG>jqx4`a%jWl%uhB7bn$}Iu14bx5vVv?v4)<
z2LCcN{QE_RD$L^?-7`XiB;9Lt>9G7jg+j(^Ytj3%gJo!}Lc!4Q&~d;xglcZ4lMGGe
zssWfXG5y)F=O$tBdK~B0pK6qA4g<6D1415?5@B*#_or(;>j?(|f7si5=Lkw`Om%Lv
zY#`NTuB+%ii%LUl?ceqRl9SXlO4$`k3HYv~vZGYI?An2mzo8s|NvHdCS`?|Vl$qn2
zi%>9)F8qnm{YTE{<OvvWQ<5!-15;gq`;C~xq<g~{s051>2z4Hn5;O{X3%O!|F<=)P
zPe((2;Mj0N=;+~!lnuYjSf%wmZ^rI@vM%)~fjwgaOV=`8QIRP?nW|Vw7NDEbs$8UY
zbUZlV!i5)rjHMav6`&FtGlD#T>Xfwl(b#Bl(P<_~yd;{#yUDygje{lmYE_piFOTff
zM@Ofn(tj(dK*220wODWw6g)7REk3xf&~a_2XKFXnVlm-vGETrEbNV}iikeL(x$71V
zX+uI?zCuF6+YXDFfi5}1&a-<ihxN{{jY!~3@#eOpOHSGXwC?jxr>s(Be}usFEYyCu
z#;;=&&?H6g$OGlAZDk=ihW^zl_}95u&m{X~{lis@F`HsE&_eYUE}AA#)p?E+PNctm
zOROT{=jTeVS}p5`@*UO|-7X*kpy^dXYL8IdJ+-w{@38(n&F{$qfO#>0xg`Ga85eLY
zAdHoO8`m?n&-?0dVk3@1D)V8kE+H+MNk&LuY3tWre~v%jy!Fn@&@0#IE5G`+1^1&!
z0v<)X)*b2+_~?q~y{PjT(Z5l=7VrU8nC44n9aUb+^l}lDPuIkB^5u`hPIm`trr$mb
zIo)g(6qc6ufd)$COiVx=GeA6!EUo`XJRUWh?3{T`6DKLeQmwo_p>H+nd$#~`tY-2D
zhD|nI(q$+rG`DV7{(F@v3#YZla2`<!@lIn+_VdiDK(VX31h*ZKxc8fej_$2w^gcsK
zhzd8wNa2z{=^al+JXwk%OVPVmb^c(hCE<2k0huMOhmIATbP-JZ2cCt-U5Xu!OI6F9
z@9$7-42+esq)$xL!fkLVFzq_m&NVD1akottZXE$_jrk!2rw>c`J4?;gX-d)EA*;R#
z3DG@Ff3sx!qpa<|k$J)2d!|@}kP-;UA}^WS02=gMQ)A>*Es}0-u2w4WbaHZX7wS<5
zVdxZ@b&-)s=3OAr&sHn3?|8VlG>^AEAs$iZ=PoN-f6Uc@WBRkhyV>zIJua`1At0|m
z_rMm*z?qpjsWDG<|01fz7#T<)vB$>_XB58SXBB`>sDb*Bj=K8he9>arayJocHoxmv
zXSII7(b$rx*0(L_Td{yf$C2lnaTo)^URAiTh_8Lf@=cf&Qk)m3KD%nUK4+VYQX+~Y
zo7?Y-^8^FP@>xK{RV-Py%PuXP{cG-(V9>uRm+#8ZZ+pm84N@tJTJSDafGO3E)zPZ)
zRF^*wL$Ey0ng$9XFIg79tHT5hwOd2kBrt?B{nbad?G-+_gV8Gk(zm+4EVxiXeGpqm
z=qa*)a@dn-IpVdnq&e`|ttf*u3g7N8^Ud)Fn8^Y&&aJ-HgQ=n?<$xM?o`+y8$o9~u
zaIMq_aJ;8U7ZM<M()y8D*ypEWOM64#Yc^wyHd&2#rmhbS;3oZJI&%e~>I>(o7@5I|
zm7?=*O>bv5yBBi=Uy@!m|2vlcRbdR_3BWn3Ndq={EZJboPuHR^p;4PD@CaMfZ4i3k
zV3MS*lK`{?kd&}_708}3)Xa-YGj@@q-^|QO0`bBmN%H|bS`4;x?qq7}n*i-;rgI4*
zchTVRmS19bV`&_wKl0xVl;wTb4EWT$!cEl=XhYjg{(+MZn0xoaXnfwlTfwgD!Hr?j
z=VDfC3%Bb!#AfZ#ajOS14CsQ}Oue0m10WaAk`3+?(6;~!dH>!qWe6y+X#p5^%|j1C
z+4m=aP0A-WGEf|X3Im@r`D`QWj4u)ic3$LR=iqo1!$D*%tV`1@#5?*Lo!@<rlH&;U
z9%tf7`gzPP<$sp@&AeYV#(6p|n`H1$?g|u!MF$Lu&#`#|c{}uuM4^Im4LXfx1moMS
zAk@w}x=}|*I$qwPVrHqE3Y`R-8z7?r^ch-lK*wJNhglDtXepFPcF|%la{XBPAl48*
z^Bdk4E>tm*#jtZ>XIj(Y;jOns2)ZV@@>BgJ_oDBz!%~41>cV*sK{i3?7=PfHd;gbH
zc5j2HzH|bAH8r&hW#ODVZv+&Cq=V5E=^|9jN|-zbvB`qRrpeW2QvfKB!Fy=j@dr=o
z|1I+Vcm=rFx%~n*&+`Uo$6|ZZ*&A#vy$vjJ565$h#?fzerlXqx@t76&GRPD_pis}w
zN_&$nALxCG085K(p@1Cp0nFm%2DAH-c*Rae)$TV`k%oMNb5!@LXWdKwl8-*3b3Yp_
z)uONtyrTb{a1LOCjE=VeXMnbQH<zUlXBgBd`)IoqL#BHYAwlrc%^5^j#jM((W8ZuQ
zppJXr>AYeqxuXtoeh6KDR&%}N5CA3%yrfjxd0$&2=+Bpz^`K(r@XvDm<qkcr&F->3
zE>_S1{L*L=#iW=uokQkde>A^;Bw_(5hPggkN$uYZa}p=B-@ev|uWN%Vn>)YjS0A(;
zRh{x*YAL--D-Ap9@v6{GY+Gs>b)4W)FD=_Tyama)9~mg!x(XSp9HP7JvNeJHHVHcO
z71z$_XJ(w-ABY6pEZF|bsj7_qG-#C@!rY!mj?HV*@p!uzpOa&+1^c7$3)c?_(C0?I
z3~D}xA|GpSZ~sIYJLTH{1^X0OD$kd`)KZFc2ey<D!oD2(ISJj!P|k`!DQMdiXhxa-
zyZCuMvlHV1i|X9<d*eZ<!nA;SMLoIy7*q}c(0(qbJ7NZQl~z<dvbA*Pq(qe+Rabg5
zANr0F<ODcixVEW*IaG~-U~?%6=l@`pHDJR)FQ_QL7<zQyaBpL`QFn7XjaayxgpYLw
zmEbFYI>JKYxd^_+`Vik~ZN;1n_1XLnL;`S?MH#4SoaW!^G~UHt+v(DwFlYS7l>Z4v
zQSL<-q?v6eXJU^~9<7rU+Y5LfugXU2>*^|AkfRZWNyip*@$<i5hlNF_SuDNgP!?d4
zlC1=Rcmoh=gEJQv7PvA68xL<96ciPkMi+oYaMMtMZ@s~9P0DAEc&(RRue9PR;OL_X
zAQ#8{V0*amp{3k+`_DdZ0Dss472)SL1u%A$YO-6Qci=Ws$CTbrC;c{HNLnT}wUvR~
zCV#7F-(%^jaQLr%X9G91m)d9V2wy>mm!WpGF`-?NR0`u2Q9Ee3Nj}XALMV6EH!$(>
z@$GeMoL7+miPJvRVeQS_vT>dNzpIG<-G2ql$>iD_KH-(%i@j{^wTdYJeC~kK5Kuo4
zG^KljYK4{n3#LAXpT|if_!vep!>(Cj-tzFzmG~z^Xn@L!CO82B2BEcf(=M4P_lzaP
za^|;Z-5wsF|9J;;L(snqeDZB(vPsYUgF*I3^8TxT8{R-a>z?$-ZcF?{;{udy>w;ts
zPo~C{R9tdy=>&?hqYM?()Oy0B4D`=nCKn3=vJfiMsb=R2$_9Ie9J@1<P3cLd8kklW
z3-cuatg#5bjN51;LixTnRvWar;woUW{btf_AndWuWZDh^8Kns_8i~m_kj4&b_PHDv
z=5u6UyL7&ZH4#`H)K%Me^av{vzLj`j8`d|iPUC?-8)c#6s@hJ%z$Ui38y`9wgDk4N
zwCQm4Z5{p<)t2eVvb(mDe8ih>cNZ4^C6?5fZE>Lj?m>ZQanO1-t>m`Nc?w>@KTNlW
zj-hL)No1u}1>vIB?p(-z%WR3cN?$!|`#^wr@l~TGMN+ZS`O?6?6oAcAu}nMA+Oxjd
z7$elJ+H1EvCmj{vdl&p!+pY=Y-zbv5Sos3Pv*Z`AGD_a{z5cr_YzJ-0ccXa?_trEV
zU7Y$2*#}3RmQ5_2(ZvoaN^XAD-l$Ymqwb&`nyuFq+!AAkjs12k9K9pFYLJB@>w}XD
zN8F!o1zzrrTT3V<3#Sj33vL8N=+yHWwXCp<Ti8iIZ_)fv4zhp4bFY9kG&N-go8mMR
z@o)%D_QXHD2@gfLF!D>)3Xvfr!ND-vD<f6i`zT=RAtC@5=`AQQ+0^`Md$O5@$P!Yw
z=kfVK2~w_GS#qYO=zskoO31a<bxp*yL7(GI8yNOmKJ(cj@zQG3{D~d0h;|d9Y?2)8
zWy2O)sU6R+>CW)lrn^l=qK*-bnzFrM2Q0ycwfrfkQQL(_q^t9P7h8W-o=~EF5>@`>
zg!6Z_`&i&WU=L)~>gstTaG@lJ=~3hg`mrm?M(LWiquaY#kuU|dxnjUW$Kc0NWO8ZT
zhu)$ww~8-Wdipt*Me-abw<5Cz$^~c7-~JY1qh8#R9Sq8#?n_VA3P<;}0=Q)@81{rB
zu6_<*7&)BhycXl;rk#kiMjMIs=*b3V9$h+HXTA9Sw+grTSq==BcINa&C`)hI4fG)g
zb}?+IZ%%ATC?;l3UsG7E)I6nP;fE^JoH5ON?(#bl3pQpGTMPX;Bl+uN_X);|=6f-K
zQw0r-k_JekO9N5w;OgM4kk?w>oC(A>zYv&{>7^JoX(|*@%m07Z?A<z4FM0@jJNku*
zlLp9C0qAXk@7?7%zacyt*=2@seh%YG`(WWu90cx`o;VC5NR8{@K4NI9`eIvAcOj`%
zF7smB%Yzz}HK)oTZg`<1dqQ{p$`aGZT?!%4R%sHn&BHj4=<KKd-`~b%80MPn3aO<8
z44GZCnw#b!FO7RVu{M8HC-3R`>{+)Q%{3dSs>TB_iJ9j2^+Z<y$^R1I9~_zy1QGr1
zO??hi@aG3h&BLO7{rw1P`8;@vZW4bzPOJ=ip&Ik8zph?JX0?Y`$Bn%z2?$5rLfm~J
z(o_akQyxmc=k+g(&4vlAn{`+n2XyLt!}z3V+>>CYVJ9+v`n7ZQf59Mwkyvx^38qDd
zpz8}X)jzzoD24o(q)b>OcqmEp;;rH|HZ~~2#=i7OmVtUaY$a+!b@xvVg&o;={pBVl
z%`KH@gw#&ZZ22v^RvPEJLq~81&D`ljIgNAx-{E&|F;&(2t*q*1Yj>z-dQzt9W1O$I
zU#M4zJ{8&fW)AZ2VRRm>7~ky8H~ZzX?Y?JG_Wq}y$zMh5SW#;#01IjDyA4cT{&!~i
zV<tozpaW)(ZS;;AdTg*+61Q<F3?_)%uEa%7GD=`?D{WZ*!Xr2CS4cMx`Zz`kj@7Z8
zwkP2P^r;g2E+6R%Yy}FpR{c2j2QFmdnL<^GdbZ`KtNP&S;-U#4QWv{McL8A-57u38
z;Lg&2c7+O6pS3N(^Q=7Rvo*xHruVh0*qx`jJ#r(rIYQYI5YtP)eY_tuTqvXH;14d_
zlKdY2Y2G|8O->5%@a!x6&m}7qMk!)IZmYV{|7ghn*9TUHE*coeFp`6(CUe@K5q=K~
zRQE0KsGROivRB0PJb4+kenkZp!}^eo%Im^&#Nc1au2>0xl<j`{%cHzOHwOTQw$yoK
zJ#L1R)*_2t#Cz@M+7QSRi5@Rm?~K#cJ)8X-?cLNjyi*{*&l!9TF_E!&6nAn~iUDJ~
zEjn(*a?N6sh+~W11MUvnqksP<|9H>GRG;?W&EmjyntRIs^@9v#2tRnyim=3uL#(CJ
z&xzYTZ*8p-t#MgcmOiNEh%1NlCOS^pJsl-fcP#qWG4=BUvZC9QtC(qZE@#Bx^c~Bc
zB~;Z^uo&)ykwLi|kyG>!xDk4##{LtAQJ$Zj4a+?J*IVN8w(s3%-nE}E@J~ihu7wb|
zrC|uZ`Mcco=j#9}0$|Eyqg($uP<MbH9v*i4e0O<Zy}_|{{(nWU^?R~)pz<CeO=qlD
z<}({_ynRj4_}N}ytrORNxl-d`u9@Vj)?SzMm`QD;#J&aPbcg$KO-$#%Y%agMz@%by
z>}c1~{PiRMzaERf{O_^cr$B`+ZEfklz54&<GKfMeNCAl0V&mcL|LY_FYpC`A^Gz;n
z03c)}Eghx$_bWqDCYWBaz@o2TWib|;lcr8zKNm^5mJ}G+IP^eHzvQK+*ZU$nx^+D)
zxTJeG<X}laY<Bg-Zu{rkQy?_4J4c!e7)$u;)LAx98|u6ZsT47Fu)o>Q@C87~CWA~I
z4-~{LyJCDg%8a0)Mh`G^8M|pJ?k*X=z-oBHO;gTjDCJV)b5tY_&A2dr^!OlT9N#vw
zI>YE)RZ}Q`DkodiJH|#YI5Rgq#Lxiod0H0oOx(mxk_PG)+b*z0Yb6FIHrd<HrVx|^
zn19q=5o+6IkB6C@y{D)8SGk2SODOlOQphvk+KXfM?L7l2JT`8=y*bmgyA*h=Ar5!*
z1K+yTXSxc_N8^7Ob#{I6UveZg0IJh|&HeJ%2EyMx8~!j}?z<MR0?_u8-n=D+2?g-j
znzSt|VJKv8`WyiyapBhH=oyK>X<HiCA+%20RaoTi%53(U8}E4Xk<w_>((f?Vmenwx
z#x6k$Gl>UgNf2*?cRu0BSS^^CTet74e(0vj$69%!DXC)QBbpWCrKP5SR7h(-Pt*Zh
zirt>`1g8*mF3ta0enD{2@yX*n-UOI|7V-_=nHB|y1poA+4{k_sdRTBe4$gWiHPE;5
z7P>f)lX^YZ`H%AJ=C|e^U3IXViosqq*FIa!iR1@_6N?49AJi}vskqs=$Aq@oa5V$Y
zzfsmsTz!8A)>lc5I*%?_w)|_F^_K<Kdd!P4xKxZ461?PpwLQ-Vy_-+=gTtEY&95Zm
zOLSbYBZ+`iO0Ol5vKz>u-`WOlnuCcG*5vP#kfI5ezi6(W%h?(;GM8Mm=kEwy?y&LF
z4)KaM#VLb1!#{mMQ~B5zNpMNx933G$+TQo6Xy6Ci>dfrzO@9%w%0`)O7`iC=dHY;w
zfw7T%!*5Vi{GL)3I#2SO4YH=)?eOVEgS+x04}O>dk@PI{6;86bnUjX6f7E8nk^+q}
z$vrFlIweXVEvpVhd7a5?l*O$2kQ&!8bVVy~p@6oE=Ss~7QhAY>a@5+G6>Vsd4Oan$
zl98Hn>e7tJHd*%h=$c>TKxxmih1mH&11OXQ0=R{|&bu2I&xFOq#cjPRrlzL&E3vKS
z0D=J>Gc)%D!o^db06BSYQ|0sr$lD?SwcGXuD7>=Z$`RUOsyJ9PoDYz4Mx77v%6&U4
zw{9x3deelKgqqs){CZ3Te(xD}(!De7H+O?Jw`c(7*-J-IH#gbpspb|xC6N<iV@dJw
z@VFaI3;0i`uXWdMlOst)ItS7KElCYv6>M0bhq%~e%K!)^R8tL6L3g(RTTtDq3y>{7
z^yoHm!m5m9O*{#uxVfu!y5a&N(7z)?^Q?Ll08T{jfic<EPDxIcWA>{H3fB6`i_?yc
zCo_VTn%`!_3>SryRfa4OcU$=1XopOfC*7`yD@OialjSDwwnsRiO+L$1b^sYj0H-e<
zzlS=f`A&PZHe?9x4B3U)7Tt^ZBF?CTIbe^^;;3pZ5qzVY(slE8%ql0RRlYUOm6ay<
zO1~K}K7tgrTX_rLUx0O!{~%{wFxfSMA0O_PI^6*>yp3^<@!uWq=ht5Z04i$ScwrzA
z$eDu5OI<xt5AfERDpR9ryG~5Ry1Ct}Rzf6aWBc*tb<Ovh8dhBr++1fTClkPD%<200
zW3@1~VkRv>3rqrlw;l+uM@B|Azvqe9Ic<%+f0s%j85#TW+h>HnbkKSfi45x;V7V2H
z8{46L_D95DC!}Gmk@HXE?gKA3xa>)(COSXDbF*}ut9q^n!0lf_`D9ZZKS1S=SL!y8
z04f?qR4cik2;?8ZB9G#*NN-318s((`{C4CKi*A!mT#A9$uwTqu9b;pFFXq=3c?swY
zY4(`8xHSBZ**)ZQ+0$%GMOzy-@Hu(sp781J+U^>VoM2wRnREKJD2G_7jk)K0@!$p+
z`RdUiWMV@Dc#Wo`aE~tAgFprNvy<%Tr<X?yVD!UTh)nqF@I<)J%hnk_KEKtzaP7Th
z5nVyvA=r}NQrBt!(e(iZC8kKa-nLVbEQ@!Uh0JDVW{HiO%U#8?#j(4hX00*yJ;4Rd
z`5v>kT0JFGb2q=ocB%{Hnz=XtYoAwSqVU$B-7&>AvhSwio?Le;88P%Ho94bCDYoP$
zo~deL!5S+V<_nXTm@hp4(&y0O)Xl0U5l&`Cy84}OD+lWmJ1F{E9;GEBync#YJCj`R
zcvYK?Gsk?C+Pq65lilYJSQXQ3vmVLP+iUE31P)OWgo)A3^`zJiEjV&u)UFz5bsv&T
z2$*@FPUf)MP<#wu8S+{f>F4$I7@X}a{@@^~(B1o(Df7~sKhsgqaxoAt8<lVpUj&dm
zOX&7tV-}kah0N;PDg8?W;4gdo*ltUN;LN50or)J)<p8E!+Us(EhbsaQ<f%6HheKl$
zb;uJ#tPC=~zee3Eum0c+xCp)<w?=fI5ca*51}KGFmCdX16%~xtXS|=<UK3U>L*bSI
zP=jY-&O+c>Y<!KkeDLq?*uf265RkeKBw+P<xkhrV6MaMlLf8aU(XT3<G^3-`TCou}
zwsF?FuW)(0u(7cb=4P=@0ENM!SGal~+Io@MKnq38aR7?t*-23CqHdHKGmKXW7lcsE
zeDNJsFY66?j6ctk5i38sr<<QQ`SW@?fJ1B@K=>p-6V7V^2Nq&JfSukkkTrWHiGX;y
zY|`>!e(%C+bmS3%a8!gDRP6NZgEowTOJo_6xD-W;-YZ?WJV8&({%e)~?U&<*Odm`8
z;EaCBF@zH{Kbf+`^ap8*)%FE=*k(f6#$G9SI#l!RpIf3o!_R&y609n<4mLF(JRSGo
zdkg;z6I;`%*Er-58-7hej)I6#`yffcMt(bgixyb5;@x){^hh36!?A2r&H78uT>#sN
zUQS<2MknL|^~^mq+uv>Hy>7e6_}K!XwRY}Pxzu_6-ju7w62Smc9axOii}j%pC&Hd@
zY8ZU~VCK92`F7pAD2*pt1Ff8BjPoHMDNtvIV75Gh2##*9*6x7hqQ}_iiTJX8LN^Bv
z+h+HcRJQ-DV2hvlzf6P!5Y`9oa2S3Dd(>5tzgVLZYiC^mWmymkdVK%FL8ko)^a22i
zLtRz8ghPQ3epMRNN%|(l8yhAS*n4CFZifs8<79fuz<5{VS*uGe&h2nn2jD4D_6)4N
zh*k%rofE)=G2V?^P=C$=G9zFvi;hyNFFlv5oFgV<5{sO-#~l08uj65G$Didz8&<9l
zUjRR^O;>guHc<p{cDeM1-A>HTW(Fkw6Mz}_PXYy2!)2SPL?~hapw1zu-&LNJoIGOq
zc#3OI??72yj;2Pi;f+VA__BW>YCxtUX)p|`Xo_x*mP^5>fqw+vKoF(2k`OTks6M{;
zA~djZ`|_N3tWG$2&!O-ox|fDbrcReL1i(-*23u21rP~87ndH?Wecr$p26Hr;9S)w9
zG(3WHglq*ZN2x+=BA)vo#XqJol&Ei1jDW_C&oVg4!D)uqXIF4Bud`|X%ptUW1fFk$
zR>$lzVpQ;g6vK5Mm2KXN)NkgIl?CK@+eDC<Na|_EIEI+FH+2#<HC;8B?UFTb3{Npg
zz@r?-^`ooGdNN$TO|h~BEcVHhv+ee-vCAoQ-ZhBey0;dyD!cZFioqF_v%?(ZV<Eat
zU__Pf-5`!2&@on?>31xh*{jVT0n@?t|H>9feb=bnL#^s%RajiSi1mA3&p8Tbw)Neu
z3rru*Gss+PQ8kPumVJ8O6Y~PFShb!GH8M1QdVFxhjV7zDt;HZFW_Gw98yfmfuNhee
z_q?;--120updj*k|2`ee2|dXCnmY;W&&M(P;|uG5Y5_pl0}>m2PsgMtvqt4g+1wwp
z1CCIifsyN<QIW&2;@<lJ%zN{dN?FMH@i$ZfBZV-|XV(1P3LFFwWnlo;3<&@^sWJ6t
zx1FH1|Lg?7!g4lvmRnpUcz<01`JJRhR~n7$Q39o7i_!-@2-}qK7#N1n9uny6|5h(R
ze7yyA{(W37&c57eon5jV&(R6};6>VcE;skPmbreMooTYV;NR0k)>njXB#V0j7S$)|
zj`K)dwq(kESNunF)Z%T{f{_6;zYjn0&aBvprg&sz>+fAxAsQPqBCnkp77_kXb0e_O
z2ioOzt}5<RCXvLAoA#$JrOwM=#e=DB-ooBdtTW@w%_3J`Y|R>ND4yehFxA<Qi<{&<
z&;QnBV0Hse?+iZyh-UJ?(dSb!a{&5W0^bRM%y?WQGOqHhN8`}~C(|;k(Sdj(&8~-f
znFl>BEiGDm8Yfl6VOK(btQ;79X=<x{BqaT3*Zutsw8}>ncH`^WrU(|dYEBXIlF{6%
zm!?Kt2vaPz)tgw`Lt1z9!!&C?W`3JhkLa!9>Tqc@{`u!e%Syirz!l!-aTOGG^YE-%
z2RgQyUSC&yd>}kuA<{dGc@g%tKIh{!s_zZn7cA?eVG~o$$ABcgXwKQo*ue6#0~o{1
zW670LopDKRT4^rvuMT$&?!?=WljDRWrE?UAF^Dm!@7Pg>S|12ZzV#Hls?QvuI`p|k
zaIGYqKz>~x*!wRP%MD&71F9oS`YQ{etS`uwL9XI@;RLeF0jKu9d%ANQn0D)7z~&B+
zLyrqV#GShq4#Fz&3VPkCb-zg?QY%u?cGvd^6tG*mCNUdWUVy;m2w<;!fK2y><ZKPt
zD-)rvSx%&Y09blu24s6Yqf&r&SruT7Sp|&Jbl!a&2aKHZw+;+AmRFx`1zUQFu-4v{
zC}z<EMO4{?0i5KsC@q+G*G>QcoTYKwrc=_;AWpS{xn8+{2WsDMM`wk$1RT`2Z`f-3
z+>){gC<i$L8<*ZUd)TgefTIHWzUdIlUmmV7MBuU{1Jg)2n~3>!efJg9Nftm>=rJP=
zfcTpRyMkeh0Yu^uU~v@rv-nmB9=WP@mwsoyI>$A{7x+XK&P>^u?ZrKK)$e#0!51-r
z`gZ)k!2Qrt_jnv;L(euEh{DS!Cxmm!fp~V;fX{KlIWQ`HG=!R51Bf_VfNX9`0!?{H
zm0K*%F&y*5Is(no_wUN1xKAvnzDLJdR^o<77ru(iU;xFM#O`<Rad-QcFFWR0xU}Ns
zp;zZ!6doW<*oE7^dhE~CZf>;ytTzP(=z94Qt*^m8W+CBo4!!OGw4O1JA6DJ79K^Hv
zoQr+C06ap(!xP!6`>{O*1H)*uR|4Uh!#Cthz8(*$Xu{gbK|piZO2quw-Y?D380GwF
z^S1r+5Clf)xkU?tLv`DZPW<hKN%8uG@8bS!QUK!X&V1-qtJc8m+EMS{O4J^+-huN}
z<@k-pF1pXVvg?Y--4NOLfNRrN3Gbr;;IB~xD9x;N&btDdseat;XA=TYBIRrlw1knn
zWL>*jA4ei+o{(QcUI5(q@@%xDDjD=t8UD?5xOim(xnAXCUL6mY9DhSpLr$oNkQgJN
z4VPH5g#*7UAr*|En)?kI)3R9w?w2S?!f1`>6_08Z7+*=#FRuUlFvvOou~v;aNeC<;
z?PU<)IACMl>~Pzs?a<M8-|A*#t|usGGV-d!^khJvJ<rfxAg6O+1@la7*QHP>^o%M~
zfNfPV;l0nd0I*xTE;Ul);MVpT%0p?cYEFUxP1G@dNq3>?AU`R6|83y-RZSUn){T_z
z<s!8<$v^-aCpEoT6Om%$LlcJ{KfaqZ@{vKzYsH@2_WaxT^D7BbGM$dF@6yj7C0$y-
zjp6<HF-8JbBKfgah0C-q`$hc}zEIiUeFbH2D%{gj_L>*m84fA=&Rbx_Sg1G;8Ry<4
z`A<z0DWFr>-FO1TIlZpVLy;Mf))x|M&bdn6lD4STU!g`(@feda8@zV&RarQ2_qDhp
zeH&5|FGAn+F<rXgJO2~#wfmMd&$oS<cQHYjlY&LukMjU-is|yH-ksP%Q+=L9WGcCH
zrs&($+pnbWBqX4)qr!3}W=h%IA_p+Mc`on!Q-9{yzAIqM{|QA9_T^Pv6;{zz>s0yE
z&Fa?JD$m{O;gV^<%2wuNXI9!0gy&&(?IFwSBf>@bTmtt6O43)Tw`W~z?T5X0gkF()
z-}kOQ;_F*#R|cG0xCJ8}a7!HeA62tE@1Wvi*Hf-mi&M}{JSirdS9~A08Ld)i9m=`Y
zCq|jG4jhPQjullp;1p%{+i*fgNil_X+SV9+P~qp^NBdkmRVqorS3LV8x`xl^e9aVc
zn8kK-v#^dgj;hvcQnw|#9`s_k`y!Rim@tho9ajtih6Bl|P^mQ#{`_}A41a!l4l278
zfMO=ZdzHTcgtTuKL&=K<Vd4Vr)G<(1Ym<DC%o;}hJYg&eGAh7R-8b5%#POZy@M9v9
zUUncyA-i;HCtKb&U|59>FWGr<xUz&UfDlCaY!E1w`GXU!%MP&Al9D|QZwK&DEfkv;
z{K>I4q_`+=SVgN^w$p=6>h9-ch+M7q<4;XFWbjAlDW&FYW=i7(=43(ngh=w;JI`H7
zNwya~2kU7LXDlOISbS+tU^xDsY~dZCzF*v9#|Ox3lxbCGuWu8xGw|LPd+cz1^KO_6
zS@Z?a97fTvcG_Haeua&mNEbhw+vx#LQhDS|u8y7Jodwa)fv;@p)|OX!PadW~2ra_b
zn1s*2X9JKzNIX~qCv2X1cS0^wzjH6%cE3ag-6gJRMjrq+nmbiNfCn~J2HZ=9j2!-9
z#DI(93_B+e3mwK5cOJXtpIL3oYGe&J$!ljXpeZ1wtIl-wfKfBF3Kvf=)%-cYup)Bq
zbh14jA93Eu3nh*}0T14dFPFOx`7W1}-hNdfxw-^o>ZO5lOP`f;m-Zuv2!z;xwv@w4
z$lDB^m5Z6C*9_9|O|Q<d>506}Pr=TKB7syLPj~NwAsN_N|JfGNZPPyLEagV%>eP8n
zEfQ2rmVI~hrlA?&bDs7hvhbdQ)+FaV?Hr@8eNj9f)>p@U(duZd7DE<D4YDy}pB#Ln
z58#Kwx1gKXafzoF;^4_J6!k&9Wp)^=BBXQ^NYWu&BZ*Fj-^kSMkcOhLp?Q9Rl%*^a
z&Q*Ggldp#0F!h99wl%ozkUX(E{~8Gt`jUv)WQu-H=5BRoaKrAA@)|zEG>Ds!q~W9Y
zcjm=!+@r>UzMmLxe>CI-*O{^CGHF1Q7vX=&u@N^=KP?=njhu7#6D>3m;phH(Fv5fh
zVjR4EwJD7hBDdRv?7alr*z4pDQ#C<mGq6OG!ggxE8@M%*<x|rAivKRp&8wN4>~NpO
zu`TefH~B-C3TIZcQ<fZm>0VxXKhwoEA#Ov0aWka@x{|@7LMIE3>2}1h3Bl)2WFO$)
zK>w#NZ1CL-Lz%)Pn0gI7${pRL%r=V+!^qJb4&k@hCUCIa@fv%DgwohZVXVhNP>TQo
zec8+JQKLeeO=N*F=AS=37A;`94arGDHd_Ua#+)gK2x-C$bWVjb>@}k$UAEpU9V&Nr
z5>U4VH!V3DNtFgOK1C%rTKUp0vOHgApc>-4hsCDSuZJBgk-#?6o_}OY_QUj~mFjdD
z)p!e>mNT-y<-F|7<sgsOTzaS2CO~Oz_Zo{=B<G<hGJ{K49V%p>uVS*_@obw5P2NQe
z_Dfhh52bbNBI}S~EEyPY*UGB2>&6WLA_pH))AqgXmUyrMIM8J130LTAq>iN<RYEMq
zeW;gsRN~ab0BV()@<_C^1z@7o$JLyw4t7e9-VtmjOLWmn{@|vKi*Ufg$7R<0op|{3
zGF;n63K^ORbnMsSv?UvwL0^A&;dHN}^sPI^7(OlGmX-QYVmN}Ce4@)_Z>HiQW`z8F
z!cg^n5GJ!q!QG(9Bl=hHTS0O3gfpet^=A*vjg*YH(!W48lcl3Um522)N)3cz?y+B4
zt3(oC^rSdp;1vo)zd8bcK-|F$N<`G*w$ft&P=2<6DPX3#YRXr~-5V6T2G%#Sd9rhT
z;BG*hIP*69kcM))?XZ<$zIYpuEFNXsAPiBDb`){|blXZ{oYZvzcalrJrSuejx=3sI
zQ~H4x=o7RlimyRl`eIgROkEHtNQlzhX1h2Qx`yTiQCL@a<k19RvB6Bqng1vwpuv}X
zpNQPkn2Xe&R59!*s^bBuFrm;;SyO*y08aW9(g<X*v3fw*idSwTN+Ma6{oT}v`7e+O
zcuHc}sJBO9I6d<vtyY2P=)=pPU=&BLW^ZqUNue%u&yJ(FA3`gJTfTKz_kXDfXQs80
zI!bDI00I`maC$q*aXYN;Wts;yl!FrE*yj-{*d7dxp?6R{)sne>H*%s9dQE;o0H(tr
z9hN>BKbqi3<}6wE{nnSMV!w2`W+qbDQ*BzJSbQ$uJuj{x_qDN3l9BmS6y(#~;<BCa
z(cuQ)QqO!B8NQj4gCA6`#xoJJrX`|znB+xsB}?xW8+?Cwxrj9AjeL&%%4;cPezCv4
zShN+-oNXzP@0chq;3~ptus8p(Rn|s9TA?XDtbV)<0^ngJR6+-;)8GOR>y~t->4hmY
zRv08G@$Ucdg_I5Y{KQ<LRw=Vex}TN|V-_zgz0(Noiy%_`I{(4L)tWo=^sfWLpu*DZ
z*z6u*qTe5n@u6P@l~{F_^T2k3(^|Eus>DL%>*U*AaLoQ01vcRVzG8ocwIk9R$+BNz
zu;wvs(K`59(?L)(#}28^W~qK<m2sp*gk5^m_q9H6z;kpsjouwi^yzZLIGsta^YMUS
z!>fzick{kr0=XHp(nV2((E*amH}s&h-ue)(^oW<xU?fUzyOygj|Aqi$t97-<kvx`o
zx9Ux+{5Y(>lHcwPyRwnU-Nti3ZLjF1i&LeOSQ*(4D=PSmAsgj38A5~f;xq~`fAK#Z
zrdiN4v%Y!u&rvfE_6Zu@H_!HzELe^orYv>(80+ivjvK38!xoWUGVxd@4b*h8CPX_(
zgOI13iW?*$odM{?^}m@_91+Dn0)}mF{m)3tg+$adRi(EjA^U-^b;$4b44-zR)$%=R
zK6hhjpcd)rDM3tP^-7d-m`h)Mts^@MMe`<mVPxaH`XSa*`9&~e$lE?oz`%UjQ&gw4
zYr{#9My^;<#6Rf04t=@EeWt)i%p^(a=r{DXfZ>3PHX&srAdftUKCVps?xXsZfc$3V
z@gp(<f>EKru#-^0J96;-z$4)MJPi2t;8KIr!%Lvc5qvHr;I(MSetZUi-0p<;{3>(m
z-yZlO9gBdG-g52w&p5?N->9`UxhmHV5>c^21zAxT26$ImTlP34jh`M?`HS24*+;{~
znDDW(j3M%0oN`-}L)+zaZ<56p;?C%3P+tzu4R^i`+~hU(3DpNW8nT;Y*07b>8wbxL
zUBAhf(%rXA*T77_Z7<LXA?O&1jXN9NzaLu*L_0AE08+&}0gZZAx?r`Tq(X4JIFplo
zl)Xx#4;%dVXUo(u0SKaOR4dDm)>H38M-dIMU+I-7H90NadoU(bd9g{WI*nfs3nB&;
z;x{r-zSkGW!+<O$KZzfS=4@9m*~X6@OpGRzvIY|!7OVHmR~|X*ddlK?I7S=?>&wN}
zZ;^R^%aityQaD#RGoS1MIxlT&7*hPpE4Z58E;Cval~?Okw$SrS^{=$ne}?w7#I)HX
znMx*d_<El$r9Bp(TQ2pL>HBd$(4=&F9_&sOwNQKgDzMl0{Azb|Hqyx4F(8!^@$#2N
zqiC7xQppLe?Er^fN=!Pt)UNvQdClqVJcm(y*{>qlIwg>vR>WMv-H$F~XD#L(QgM`>
z)wvDzMzQT$|Mi2D_rbcF2)($~<6#KK#@oN->zp`$6-{!iiRW*;@A?((?J`k`(ZiNU
zWJO5fuX_^yt8(Xc{HH40nxcPZ(!WjD{pbM|WvBfnM-E$`*`yJ465c8%8Yq{j1j4)|
zr^$2>>xE+APurWT+=G>ORgRe014tUJJ@K^aviToa*=2`<D~5B6-g6p!v$gzJD8Plv
zR%!0=bVt%jsH0}dq*uc+MHW=j=Uj;+C@@i&68my*I?7TZ>lNkF%oygMG-8Hgqc%6m
z05N57GS1Ds*;=ly3&~j!QY(vZ5<Y%>3NcZ@5L@=yh)C%b9BeuysyZ4U0r1R(1^LJ)
zB>>Rf>Bl?V;b+xhkh4Z$ydi3pspn)jDd5oD$1{X=E6fG}Nk!<@C&-nPdhTJ+kjU!G
zjIst!Ci04d->yv9hLb}Ql!ViwDrAJQMrJNr<K>+hs%iVds{}?>_Gn-yXS#^@l(L?}
zmT`M1@p<v_4m=f`_(NH;bA`+k=ri!MKK&ZV5zGl?(~}9BLJ8mHe<teC`KdR#PN-?b
zK<>ja(n;sbGR)xPzM7?0<_bZ5fJz&pvBr3H1Aj4>iB!awQz7$yXf$@?*8-rBV5Fyi
zR&`W9c8YRDkWj-KrZ23MPy^KDjDp2q;5Oh!KBExre%<!!0_<PK>Zk(%-`kx872)xt
zo9r<*KEU`=JQd`ZSRq3?2#>)!(7_@r;f@~XKRhFY6P9NM_{^GnJXpS&r+r-rjKt<h
zo5zkkb77=MLi#EO`23$9uJ+8Dwg4*oey3FUhx}ZnIZC7?MTg$w?c7Ot+}KI~SgJ<C
z<13lESZ`<YYn=0zlob8aUzprHj3Zp-O8Fgt1hvsny2*Cy_VouT65j^h?Q@m|XO{Pp
z21nk7p}9L5{z|7w^)fGO4G#b!G|E*tYgo?N%YMyBznI_Np%Ju{PhYj@S&~MIhamMh
zygU#at#a*&1JuotneHf$EhoC@SWn3qw~ysYhci=UI@wDMq`q*T)NoZDj+lyGBibE~
z_0Akscz(FFD!<~}&2m?Vt9{a@db}b0Dap4(;-KURvCZvn1@B@Ev#&Fi?}uj-a0)-_
zPg~!_Dv&V~<A88zVw&Wxq^4_GV)@&6?AI?NJQkDEm{SWeZKjELKbCFH$yWZ}eexKX
z1T-u*H>WSH_&}s<O~xq<q1PfXRa@bs<pCY>T*IUMT2V?9l!C1aZw78EHnp2Dizp_>
z{zEqYGgFh|K;3F{nA#eBi#SiFe^rZ#w9fvilvxpv)_A=D=!_J7UvWiv94@@Ekz{*m
zL?b7ii{yt)EXeDEy%Q8{&5l*Z3On*9^)uo7a?MKR2k~hs{VYom6Y`&xK)^jYtLYEU
z;h*vPwlpf9T=cWC%sW|ynpR9@2DPoFOXrDGX;#9fSB#ijlXBOAT!`N`&0Pfa-40jj
zFt`1PkmBu8zJV(Xlgsx5<zSgtSdN?#DsosC$k1_j$E~>#!Ix&Q#AX2c$Nq9f{!~<a
z7XA^`&dv^W874bC4B;B7ey&GI9#WW`V<WIh18IzqaF|8Hwo!fk&>pKIY-dB((E+Fu
zvGx5(Me^ppzasLT3{PP$VTDf{By^5+9*p>!(^(*@-cP!VO&#<Gj|%7ZAmU09G8m+0
z_chti%U^$G_3q;j*9lZEEV_cG4?WNj>P&YzLtmkE#pZ-Ewdp!WHU5O$zS{vNoq5D1
z6>C6;=}j;_2_-odFo?=AnaL9m1^hb9&Na;@vx(v-+t&*<RYu1m9<ISL3-JYd<pZwe
zlxB0T{(zNRg^W=$NY(5KR7@&N_mPkKhu@;|m?cM{xUInK-JVVPlJy*TVKwt;m=N>n
zaj3AVG*7ZjLZP$6sorF_5UIoMdTu2A)9?9|wX;v&x%900@`PLy0%5ay(<<LwJMiaq
z+pXn~Y6*3xM9)_V&Jg?srSdO<HGivD{)P?iW(#iheP*w0%9z)j%~~T<2@rrpay(XV
z=Ra4SwZAe1xLEX@|2%P-^=N~>#=W1?MbLv-)sxwVzRMoELU}(r3TlMEnPNGhi*(!F
zsC>!3W=Ds4UTK3g!$kmNH`WYm(kCT6lqr~ZQqE(O{3^iPrLnF^PNrpj@bnsGe1(4t
zKm)1aR>c}r;`b-2)!N|kQI%TDiT3un!5oec`+pR*C=~YFoOZf{Go3)v%Sd5R8%bKI
zwDg_td`;KmN>XYh{((}6dBk`6ezEHJBhsN)sSlUCW7WZGoo`9`(U#Eb)R#d`_K1s-
z0&a`5bfll_x<J(CB3LwwVmDGv7QcT%UKOfy{Kw+<AIB*mKjZ}%uRpp5a6Ui0Vhu}F
z!FXu}46syzQ8Or50XFcV=L75wsTcc)&{28#tWG0@AZt*Xu_%1Jc$eRU(FBa%X_>e9
zT8NiC`O?42>C^CTu^6m0HFUb7ks&Ucdzr;q`wX=@K(5(1pOV6yC5Iwno+<8DWA9ba
zyy;e;L6>`%LO>n$ZqC!=DYi}*pY^9~BWu`TRVw{NdL7wT?wxpJTa6K|VK(9FxaYC=
zanSw`fZiV95IzDNpN747IcCR^0O4B1saGbER<mFEPH}fgjkvAn#>(ubV6kR@;b96n
z5GiCoo8~@{W-uDG|D^jkKtV3HE-FJ9)Q%A&k5$dwOInnNB(>zko`aRH*7|@wC@eM0
zcBa}~{USBRr|@D85p(MTTgDeUFUJo!78@p{B7&=4?5?*rnw3m=c1`xR`qUHB6?Hod
z{bJn47;1_Gl!ci#8@-H1Zi+kkj(QZG3}6eN_5(ny)D#g`i%Wygbcu%RE5_I2>7r_z
zC7@O8pdPnu@zfV<n!Y2RH?SL&7}g8l9R@PiKHCp_f<q13A<3w_g7_Z=5)BrMCVQI#
zatMhh@HRi3Tm^t8k&>6|X-Vmu_Ab{!Xzk$|>XZ<>J7<<%f}cG?hNY!t74LDdG(Hy<
zyVN(t+vSMloTbZKTOCYAeD#s6<p{Bw_jdCL^H>lhh^3(1<#I#{PxVztWMsv|%&8A_
z$>m3jObjnf{n5t`)~}2erdXe;)DYZYtfF<@Z4i^&pt-JW>!_6n)u%n+GvwxMzkkrd
zqLrD0SErRx5{8dYtY`GVwRm6tzR5}U74s;Wpjb_Crp)_sC11RZ<`y64<Z8zaS~11+
zW_85_r_w}J>Gb!gBbh~VNr^ggT5ach+_rJZZwVaoqTelHujCxe5YQS}d4?~Jo6ud#
zMe$p9H6c<dUB2B@%hXowv=jdwY{Tz=;kAHOA*Ek$ebdDG-+H`mG+IG;R$-NW_zWbk
z-=vD|Z|U?H>%d5>v_Ht2#d}{I0Sk=GUpSV)<d0lss}N}S$LXx!F3<Gf=oJ+d!-N<3
zKRs5Zd%WaonYBOp=a@%S5x!zMc1M$|gtKpjeO=Nrd2WVksn%LbG&K_k$)-A<Nua5<
z2E25c^qLMEy4P%C*N54W_)-69aoowL&Ckgzr6)jEx%dms#q)fZ@JB;iWV*1V!TqnT
z8i|}wEiMo2H*Twatjwz;Um}xE0<ZXyitMPpj=>AjOJ=J?r2fZxF|9nIo8gN|0|mX$
zx+S3p$ND*+1A0aPR@LvJ%u?^&HU!f`I7*VRBs88-WC9#8F<w00$s0_$Q?Z{ufMEsU
za6)^mw(?fKAXRj3>rTR|v=*VwO6z^Oa@pQOro%CUOS}C5N0xM9U%Q7TCu15v7t^R|
zc|CkaDEGpll&S8O21GekUV?QtQpJ4&ze+BLxA5aIBX*3*lofu}sEI-~&D33?qDYrg
z`)3E=+zPYt^pCUhmqx#I6meWdNE9;G&V&|>^VbC01bbB)koz22Mi2brZL%Iu!lk4m
z=c<=(giw`pG~`@XH|T}3%Z#WTRZO=$cFf08(OGzvKFS`;CDNf=*5*!jNL<joHtb@u
zo|60~i;M|$K71vt69m+Pn<hS25SM6b@5BCb3gBs%xE^H4FfN-6m#{s*!~Rv)KEQA#
z8Z5-)7Qg2o@FA?$kV?*^!(0-~q4tVC-nlL@0Rg;{2-aaIH9JHZN=}5Noc%7XUcLl+
zpv;UDg@AOL%RDWT8y}wazOI`Cd7Qipp#O;z7fF9iC@%r}pSmfvg~%p`RuNh=G2)dL
z>i`B0l{R1ZUzC{yXfjd?X<+ya8!5*hPCxBO289GYXsb5aIQ~B#WqkPW&3eG2{FrN<
z--AqLv-?4bJrwb@Wcv*6;l6#%=Pc^@TM=y#<NK$LP!eKlInGZc)HT@u%oC(B@cYYI
zMc)%>t=|`=lj%5bEWUFBKiMI}RvK&kh_;*^Md!v$id%Eoz4@?faaFF>XeT<gPwk5$
zr1>>b$@S&c!x9mT;lz#XcGdl`MgV!q;;+Vtt=a0Qk_<STVGbhqMe{7zWb2o*J}N=o
zHvqV6;$RwBie@djB=WJ%tUHnSzvbTujVB8p##H2etImY{YW&#{6R_;=3emVtP%Wk4
znfhWTA)~M|EH?G*^jTj9CUTuoNpII?awb36Y$^yJdhaJ}*n^IJ<?;HH>{pr3pal6W
zzXwAfL(M879<`oIouF$gr}S)ucUI3T_I=Jd6(_@tXN#Il3GREomYvYqO0s8r=Q5u>
zsfKU2_783WgTh{NQe&}-Rf5rf#Nv&N&u4hEqY}ky@58a6xeV)EouYQGQt5rH@c5X{
zyos;p!<B|E_fEsp{CKalG>RV}B2RRWJYRE|n_c^rr?*^=M7MNSy3T~~HG~xkUEY6(
zWH)gwY<)f;Fd3a-Qms<wD>JM$s9H$H(y7wplj>Vu+M@(&6@!9P@3jamP0q-=3q2*5
zL&u6)-ZhlOtmQJ(<*#dLoTDL92=V*#6Z$$=j}|`5y@8?%5KN*6r=d{(Eo(!C7&`Lz
zhVmwvQ86XvEoC%bb9J+hs-~~{8P@EL*$;{vt~z5}Evs)DsQs5%48i~IQ2%~%t=xb{
ztJ093;cbmqsv03x5nMF#0w)>Q6z4P+w?Ivp#@IoAIK2=kA*19by31N5CK31|{(OS}
z4`W{$R%Mi~El4UTAl*o}v@|Hv-5pZW-LR38?vw`UmTr)4l<p2`>4tCZnQ!WxnRCuh
z{&2zG@4MFX+&QC$R9!aB!*CN{t~)3?#h{X{ER@NhKD}lTurv_kB(-@SY%`F{{GcF^
zer<+3o@H=r>os`6_(LB;wOV2w-)L~<qx+TJOc5xKD2R}-!FB9lM*86e;CTxN(Ldjq
zuzvCQ4V8`pjTqlGK$!4N%;q_#!tbdwJTZDU1N4I>>j5R8@b2YCvFmM~+g)zCIubfN
zb6yU)^37Qb1M~HBL(Pn+&^32HC9JFFX1^YKYTcO}5=GxVDz-e`(p2P>)~0jUjdj;e
zobETuhm)R{Q}{h&E;`}KR(yK^L<3C^-pJly8?|gU^1woXQItp!K({D=wix(z^26I@
zF-hsO;?vP$Uy4}asZLv%(q$7!%kdO=b}Axo7C}y#=j$xp@n7y<F$Iw4qT?I2sQp)<
zK_cQh&8`Ozx#~LSxJ;+XL<;0C_F5Xi?T0!rQ@^%p7M0fEpM=kkA9dU#W)A<db19HB
zOp~QDjv1I+q<foV@7<QnWkYOz6Z^KK{l5C-x&;2Ddp`g}=P-Y_6#s7r!2bk>X7-V_
zUnzYjx4b#r0P%ED2btC8lXNJjI`CVZ1sgAIcb*ul%fFxpVuF{8PsTWj&IZXsKj8h1
z`GAjTk4V$7)=J6a=vRHn>_nuJf%GSEXTZeb7-O*a>6S@1Bq?r{_bWds(JM{wvM8rw
z(s(_HTK#3y#SJ8bOTLC@9S}KJMCDpL9&+)3{D8-)r{KE<2imY}zXM9jTf2`}OK4tl
z*I)?{nS5f$6;^4=_a3HPqsqh}?x?lSX^#P;oT?tQWW)-*^t6}PMV8o=#O{bM7b!cS
z34td2`VSv2w}E(2`d%UzZE>bKwT<L!Daoc?bLDO<r!{2J)HccF1JIgK;9+4^+%_~k
zT$xc@QTm=v6{{I^0h-Lq^*Kv!_!DALzS(;qwCh6mjVXPI;5!iyr~8?!i-UIlf_J~d
z-x%kM;aV&NFd++;R{Yzk4jpeEZy8XAwg;NsPPJtZg8^RYyr9@FHfbqQ!L{upTkAJN
zKw0&EK}H1kZog`@qgDrqe^=d`<3)O_jQaOS>r#;p1)`UG0dd${liv4iZDE|X;M<2#
z?BJphf``e<^3FeJ1K}O#uJp^^k1fx)uI&H>)GdYag|dTFT0Tha3~!LF6$p1`HJ?Rm
z535N`R@~QU*O`F?%K8u4gZC<JlZJl-tN!y*ppS&f0f)OzGvO~Yp($^=I$dwKj;05O
z+|*pTkNOoV$ni8;SCWbalUGkm9@=@Hs(W8`lEB5&jhTHdEG)DK`P{v6uOf5o259q<
z;1m!LVG?{)5fpG&x=AfOL1);iz)Z;Bz_|)R^rWhf*6KQs&b<<+ni>?Xv2z)u`Of%g
zJvbW!{X}vxVx#Wr5jOL3191cPY0uG5Q;AIjRAkQkQs4wGj$;iL0Ou8RC}TL;(dX@!
zA+;IsJiR~qCmwc8*TBjTKWN@>6p-YAFG%62!?jk=>wI#oT(7MnPT`wqz}~|E$bCrD
z{7Uj=H!o)W&UQ+n51-pUN896|=5SGX-3_sEGePU!iBYo)NKafRN!A816rK0OX~u_m
zCbz`v`y+2=D4}Wu<gx}lkBb2278nEFTyG-IdP%%J>(hopWFf09+n|UNM?4cP#U6y7
zq1Md-fef?0oB(8VFmbvdiIOQwPT+dOzpa@jya!WThybl$+4vQoHArrg=Z|yg0-<$$
zCH;cV2Kq21cMc+yYLdZ1m=BTfy(QFNZ<9-w;rg?Uc<5m%_v=IoKGcWdvb;9n{y??{
z=0e-yjeElBiK3t&^F;vk;prNB>|wW(R;=JFHUWXkW=^c^m`t6&qdWL?>ODkd{YR3d
zZ$GVXChEO7vhbuoX3Y8WEQb#Cqh*qQhbK>a((82u`i@^n#1b0Loh&~-s3D*PdF5?h
z@?C)+ww*&O8;Iko`@dg}XFTLIrCRlSc~6x{C;p^iT5p`cd}#NI@L;?A4a(qOYdze-
zWx}?A(<YIFpMQ~mFqzY8_i%6`YqZ+c7^kaYTQHxr&^}_9%c+^?z9JIGi>?VW9EU_a
zcE>JAH_tQuovzeA+?LRDjo}q@S@Ve`m%_)H3WM1bocJe?&Gi6K32=B}sMjD^Q0$0l
zRP(qlbdVzZGKlG=vPX&T|LJ6`AeS$C!-Y19L8N>>->;u2m)t&FP_E4GysyrEKA{A!
zf)Qtn%kWWuRE<Iyi;A4QlX(gi@<#pOrFt&~5+`oZiOzx<-_z5mS8IiO@|Qqg(WO>1
z=J}7^<pL45n6o5-Bw;va%1Ki)Anuv{bYWe8gbpv9+HW)kSJi`s79{|8DE|(v-5I?v
zPmm2?Yf>T-ILk`fc)Z?KaWg%+WkQKD8J6VOXijf)XtVMeGY!rZXiMM38#La{-eECj
z7*$`@&d+eZDvZI1vomfR+ze@L8<<L)&#^3wi!#EBEqub+4r`xQ<mmU@pfxL@kV)g-
zR)+-CJETHxb{cnpK2_8R{+t<!vHA2*Cnc+3#s+M|q2A+-8bv<R#!tW-^~k)<3WwrU
zx7`+1CR;=Z#v^B+hy2W^ffVFGT&<aH$4%&7;QGU9kJdZ=#_O#V9n7M&M^K}>J!SSj
z&T?y8%<B+Htr9_Qn%L`)V<>`Qm-UDwo<HRdr`)FB!LUcOn3;mOwczYaskb={+OvL?
zvCc~%`O$^Xi|=cDmHrQ3ud(#Uh$0%7ms-@c#*p~smkXqwk7>yj#6cfHTDjvk?9qJn
z{34?7>9ATZc?k`{^owQGsL8j1q($~J*S&CwKUbprJo&_{%HR07o-cVEHCO~*2y-^=
zR}Q91(pUv8g<{mWc>90Te#UZAQZ-_K;QO}FJP^W5_7sOg7j68l>O`n8=4P);g7<RR
z$0#7@sHF9`Zx!VBCbbnE&G@9#c%RsI*B$N8eJP)sv$)ZHcPiH(m~3N{u)zD(QRtel
z_W_Vqf!$UM^(>-p>|sc%;I#LvZgt#I+%6+#CENJ8EX#K+;>~8_1qMl0=i|3K<16Yr
z<A2oMJa?5U?RtBX*c)NK@L51Jp<E8LbcZ4xV(u?S1&5U|6KTdDfG{?~cJN#f$ZcF6
zGU0|^61wUN-k*&lI$jPam!a$HzOEl}ad3!h<d;p%eWjZ?L6rt_6J)R>J!td1Kpr+$
z&_aHib8-sW=MJ`M=G#6N<uR5ntq97?myqQ2ju|S(SLR8XydZv4fl_aY(e*;~)Qlfr
zb`~vv{runx)g&8f`h^#NdGkq#w!<)obrZmG%5>)>?t#lgwkWNc{&=Lji^RJPqbAZ>
z5s|K_h;V<s_dYlnt2!3KVoRZWY+yeE!1RqnVSUHU{uY7STI>Jq;%fg9CX}T*lk=2U
zuogsGbA1-?<q@T>i{YR>EiP}30fOLeOc}A3#^%uAnJVExt_@$nDzfWVm*}+#Sifbu
z!kzIWH26EMi-`%_<YLNCzDVkZ0snaJx5{dD9QKAXM<P8siUxGJ8)#IRWQEQXZC~%b
zV(5g$C=r5Hxi#CAt8^acS#;cxVjSd;^}f-x#<%mpJt_}Ny2@K%IkCPrmdaBkwPI9j
zEU{qQ`E<#3N;MFor+PDc(lYY74g<a#ZC81|*{zE2V#cr`hMbh8Fxqr?f?@gytlUc)
z1xm|qxLubLVo`eXBg)eS$#RKN!63-F5m!a7ZMb>f^Wl0sd4bUe=&F9?HYQ_e$HB!G
zFv%P-D-1LPiNS(L)S(|q#yHOg6Xt66D^1V3i716<19$eZv~1-&w6E+@a}<$2<MzG_
z)>t_OoF(t33=ZD59%MHR`*isimbSck_oBULB;&8&NmhNITNPg)1ng(^TtD~WOux1o
z-uu3sa&~-jV|6@j#&z_ke&k~E@hk~V(CfzWdhrN?qwDAY0X6>JGU?L;`gLN5+k?92
zGlqn(4w2n;9MZ<N7R1{W2<<Iw__Q4cI~$(<O5`-CR+#U1LM0=FUlmEn;Gqq5Z(!ba
z5>4`62JN55oTCT;Gx$Wl+xbwJnl2c%rSc(`QzZPB*ZdopB4u15(Q2o$>FiM@YZ}eB
zde*&I@31dP(}_Zudl6Z4<uW%2ILzVg4zol-jHeziymYCcrd;+xqW6&UJ)@hr1m4dL
zuHcvk+jRb@yIDDoLml@A1+L}GUp5e#l<8VC0g^|f!Jm$e6P4LgZI<DFgje8>59}Qi
zbdj%b1+m#i$7|imeDjrxUqfa)p7CTZDZI~p*OCwe=`bFv7`?7EbKAQ8&>weF>9*Ny
zIeC6CuQtMesV#;<W&bl%_>c=UiGU<&@1%4KM3rCAIA$Hcs1TM#(JbsS3ja@3nFZfv
zxszp~@7qWY232?gl!%ut)vj|2ZsgiscDMd+<clQ5*I1(dz2lt2tU)uwT5Mh;UzSMh
zVain|qrl5GZdH5AKKsfH(w7>Sb(~D>%Rr%UXaLF_#}_OAcjEL*JB;W`RJ)T2_WJr0
zE)zZF(RNgGr229{G@sY1vVN2(zALYzU)b<GlJP`|^=EL`D8zg8J@<Ll@xIw7F?E2Z
z$PR@<pGRL_`I5ZOc^<O$MgCWCouP(fgbFJozj}lzt2#w&o@Rjg7(;1r9HWwI9&<V#
z8r?KitX26~9KDk4m<4-GwIs*WfMJYE$9qMMdgt$!v*~PE()5(xvB}}N*6}=*ChMAs
zBv>O}2F+}53WlHXk2)$hD{x9C^tpB*Q};m=rINpB5>q5Cgk45DAIvrU@Sb=<rY{8N
zixgF&fDmF{uMt=wk}~<hrJ2<cjU<4Us_LpM(RGKB!3HU_FK~?4=%siQ8iIp6;;`0E
zuu>vQp5ZWVgZM!19i0PCLV^I!ltk)G=&Bc<BI41H)YED%=IsnM<t&{KKS}^^J63OJ
z=;F0f%Oi;!!I>_hhsGXX(pgg|8S|?ezGb-O^X)qjqQ1Z}?BQ(SHN6E1R(sm&Mf&lm
z{1*9=d1U@fh$HEi*uQ&WWd1G{kx(lFai9Th?`vP;&}CNot5m_}Vp~4$e9{H`$P0=5
z<XY0i1#i-Tj|Fe_z*uX259G*pz5P~Q*DjeOEqgqA<h>lb)G5xEF+NA>2^0LWM_znJ
zU=bW3dR4J`jVw`DkGm}gNbp?H7guRH%X$qS^iGGs?U0B12X)i_qoBD(<GG%lTg)$-
zX>u`fbY_Z0+QzdFgXXi<Yt*z#4SD-B^|G~P8VoXHbdBrTIi@4ReSNQ}q-_VHqgWdf
zNYNdJ9LJuAl%UaZ<0u4dECr5HOry^?p9&dm5T_?6(~)@o@tK!Hx`|T)^j?yu=F4fp
z>xLJ4?mM|?1j?EUd0{c0WU6DjWgdqX)q$QgxAr5e4FS%_he^`BZd{oR={1lWk%Pa8
z8|r|Aa`4~?ij(<~7|RRNwdw~oG9GL;B9i?1=&{xnY^|pf%)W38tLxLX>(NHLvQ~xF
z3o(4i39}4l_@5T(zY;I7LYbu0-E0u0edHAQ&kb17aIlEaH3lx&f@8CSD83tNh`dma
z8Ri3zcZ{ui<<qeCw#R!Lu`xe(7RTQ|qm=DFrx;I?h#;l%>iaEV)r<D>pcXP)us*9P
zfMf}<qMbqafr@aNrK}ut6X<$&*!Bn!v(8;CINA)bZEU;X;Gk5|<vkYk9oQPyTcXor
zesuO$(J|UxU4%VNEIB<zPO*G!o#Z~5%SOL-Tz)~TA?X`J`N@Y+F+1n3kzUD;OOy6l
za&=@d0~*q#?PhpL!51^04o7d&w>Oflji_cyogB;1VA7B;8$~-vKiz4@UrsxVB>p<d
zK5mpDs6K!+K<**D92q2X>e&}r#Dvn7&eqekf$K%*W*Ut-5b5=Mce1;8Oq7qU?Bte*
zQjVpT|H~l$HVO%o-GJ@44%ffJq%#C?^3);*hoBF_(MV?C-GQlIasGi!3Zu>Ohn0Xj
zdSt<>7O_lV#5EwRkLRp3K?*Fzd<WO)v_}OxOmf5U*hH7W?a<%XXDjJn?<5wCnZoO0
zokd|WRvTu8XMdMM{oTAa5lLvs!=%SS7TumXbb!TU=a~vD{2B%fx-A!jV&VL{qXy5a
zlZ4fngrefO(Q&;r)*w_GVlRIw+J90#E*lF1=ilb4O;9OFe!x>2&%#G8jJ{vV-=X!l
z8q4-w%9X-#k+l%Oe1qJ3=U#w=vx`Q)>~*Q5Mslnv3-W|Fpz-L>@-`+<)O!b%^Z2=s
z@?*p#BKI8HAaVQ(PbcrYZlCWs2`UhN@M2qnSOZ%kt-Jj}(Yq~>$#yi6@$KppKmLm^
zH0XO(^ymUmX9IAfdCrLaU%10Na((~dJ3~|Mzmexq4&4@s?{>e6MO^5KE3gQE?6B+v
zlzs>??D^ib%Lb_?bj-wQA*#S8QAS!xz#GGPmV8HQB|M|(N9qiUuy*qpQGHrOp%);f
z;gV6|uM6DS7OzmP{GTzjo5rUDZnFbNAkveZRyKumxEmEfe&~1#fg<PUfKqo{HBGhq
zBAw2sK{{-+*r<{x{dKLwPGRKY=6o+r>l`?qB|z$Sr~BI@GC^Qv;?5)1E;5YbE_494
zK&JFyj-0@s$c1=`r!&A;x}qJ{2CRwJO%(^!w+n6F-ubONKsg9htK+M1ESNFWhrho2
zcJyMIJpL~dLg>qW68;&T^At7B_@BurAY<rzgL1J9v}d4N@MK1Oo)r$o=XGE^(3yp3
zr<DFcWQGmJX2d|!ESk$VlF_F4hUT$XTE{av?1w`(f9fl$e|nOU`!UU=(!t@2<)d-U
z{z9X0Q7vCbsf|vR2(ZiV1tpzskGiPj=jL)JE)sBBMnP+DnA#N5{onQ*;cy@&)F+a8
zf<rEQ$BDpYISPa9wPGH=F*<Q+AZx+P0I9K0&3W66!i+lM_6mK<^p>}UuC&A<k&)E5
z+Sww=ASL>vE1{#e(<6tT?y-Wl<=;h3{~0HWa)Cozc++9BWLHJ_H>M0KkM1J11)9Dd
z%lR*Vhk4r2lh{lnQauhE$}|_Gr;AhuWnK$~{~SV_!9glX<<m5}v_>XO93-QZ94K#c
z?onp*GTzz(RDz#TlQ9Twji@LLCdF!de7H48$|DaubJWagEj;XzD4&nw<j_9N`YCY*
zI?Os*YnXImNc{T3q9OY;->r2X!@>Kmwpdwlur0-G+?afMoS79uJwq$&50IL)0HIVy
zBu{OF3uZMqe9#+VfiES0hb|v5zt)yt8~D%v(0~01+=MfY%*}U+-1_y+P<>pHluI=y
z;mft^m~<V#BUjxsa0V*wt7B(?_!UBi-YQojj(LKA9CrXMUpc{><XfOjAtFQ)vhGsf
zWu~MwUOv1lZz@z^YQ6gSm877a(|SRjPPu>-*c*x%G%7_nZI<?Tduy&ihYhroMKM<r
zYiFu7g&ch(oqxXO9PFnt0JfBLcW)#oT1!tQvHnFyl8rCbP%mVf0m{?f<`W0AQhgbt
zpsNHZWrUU@qIIWJ;X!8V$>w0w+kvq&|L@_jrr_b(1dYH>U80O__PHU#t{mJ4)#FBX
znMR=@)Xy?^-z{>yzPbdo`#_0C)q;Q-uGFF&>Nu!@p-gpJcGODjGHZ3+K|0+#KK(Gh
z*RU42*O<=Rm{vd-ewhgDUC!nOkeOEPZFK|CayOeexzV(r*#^oS7!8kwNy*8-UG0Y*
z1pn=c`R}SdL>5>iW6Zc;Bv#K--~;mF|1*%;F8t*Q(+~?!38}JbiMj#;Dn5lA|9RZ=
zz>;7OYn^Pk9Rl;H^0tRYXf;I=98`giyS9vHn!4JTf+k2t#tifX(M&aAAg6&xaT_G}
zYoj@>Kcv_L^9Bu#&BtH%e>sSl8#XZ1n9Qr8v&@DJQil2aFDQ1aje2P0Dm9AZGyexQ
zayyzhwhu->Rkh>)^sIgP9NGQ_l^_Rzx{AfBjArw-rAkE<=}yXQ3TBpITc{Tawrl?k
zV}M>yEx3~t+i?IQJEZ`H(rJa1MWdOW(*W><AKkW^nwq$yJOfd45v;}o^>4>)=4%<H
zaTvwMEgGWu6h^}m%2#P@Kc;Y6*@t8p{HXo-zb)I)_k05eMrmf~sd~c1|Df^`G6K=<
z5&qW~^ERe_Po1QKl5j(kN-UBZH>U2GLH{SY+u_Xj&fE-MmohE$JJ9KPv`a=}3>q)k
zs373YH_#EuT#+Cy6|A!tFW*d{Q=!wkrg6j&08m_FL^X)dbhN7Q{+~a;zdlkzx@ehl
zb4V#}!b4;DP!>bJ3r+sg|3k^FoAu$3$_zJz9@hW*p5G$*fSa9)0k6{N>i`GriBYi7
zy?tFAQeT3TM=FyPbu&|;43C7Qd2$%xwPF%UCDlMmJ(1Wi48<+3WlwVdZ>`9|uM&5o
zI8}CH&NCo4v=k=h2H$#Rq7<=;rTR0MNd2Uj6z3<kY7V}aEp@N!K9l&mQK*z3p|r*a
zeeJq}&__ynt$yA}y!SAl(D!~}XVva>3)Py9y^_=VM1Rm*!+Vg%Vu+xy3i%$fmOsS?
z+)jy)8?kZ;&_a*{oPP`yF+ipg&5;7`>`~hAGVO*jMvxf4KOwk1nsGF?1Z<LJL^Kg&
z)^V~R6(0+a$FV?**z4?9S$MHp`G{&Q{D1vi{>|sTPXPB@j<aK{^~aPX$A2WYS292R
zw^0Bw>~EuhEgq{;kaW@;VQ4yqcoG^ac;kK}rGmdb9xTBk&@5Cm3^L9HdNo<3NKM^6
zKuwjC8$u@sERIh<N!6$&lP4lOsGNK7Op$W>mRdZToTb0Ab_ZBALHkGMNURbM)qrox
zaQBylX%ydI=LBM$gBAHYYaO%YR<Cy*Cf6sMMA&E&KXNo{%p)uZcn~D2KyhIu0IzJd
zIyGWmsGW+=IR2Rt{Ks+rca_w?4h|R3Vb2y5q-A7U4BIA5;xR4Yid0K?FJ8t6uUXb+
zbZ`GAX6UWFB4n9=_1}J#xc?J2dzOS7DPTp8^KA3aS1zO7wBWRLveIgMS8L3W7;>&T
z5P@o8yq8QlR%z$u<B0SN-2w#E78nH&P{4`CF+pp+K!vBvZhV1d3}U<tQlNiT1{xO`
z&qudXoLtEXYK1+^U)cc@;2NGRHd0U-@W-9a6yAFH`2v!Y&tLQqi~$Y))oGfjX*yH`
zW_rV2gSP&RgoG_+4l?br7rVKH7sc-ao>?z03)aQ{5S;UCa$BgW%3(lCE=U=pLdpk~
zPze~6lJz7aisG3Yh7D%pRCO7WzbEWZn?%T*I=`S^52tT?5_(ty#KCQ(NstxpzV!B6
z^1W_vVSYLt&|arRZA$+w3&58hT!ndZ8Li8E%;s1oMn;%5R9YVYJfi;NEAa7q0dq5&
z#3$R9tib>awH2QI{?)k(1&e3;{47Hs=6zXjY-9|oGJjUv|LYg_uRjsO(o;t!eD<M%
z2~d7PtDp#3tYJg=x<k*#h4_N-cTfn8#ybHhf%k5#Fv9@EP)GP9ef?FZTB^z2k@ID<
zW(nlu_B!^kHeCZ#$;-}aFMr_zf3)X#iu0=`?~i8l?(xg69ou>$Nk|e3ttKfq4d!U2
zxdAZXWbo^L+<qByYlTxzl-ua&^Ft7+)TZS;!J@cUYh4|@0h*AzV==+Lsh4kH(X4Ht
z$S<+BT{o721(;xHruDpAc<TTqGVtb3s3a3%5KbLw5<sv6KA(Ii|KmW{jR_+j3k~l`
zv6LoR0Q&NMDvjGFDZPc7Y27`l*qhbksjmf|0I%x}wSU#Y+_cZi4XUZ$GYgyz52tX+
z5qtg-<`U+y?(w5RE0F_;bzLuTLEGKeBK|r&I@RIm*b)ewq5H>o^j|GHD=Y8XsXyK9
zDPW355aJ=w&a$BVQT?40jzdC8bmMfrr>kH+Sw0=<v7P2}Clj1FViUN`B)BlT9oUQ6
zYWhAn8Gk!J@-RcMEN|2dk5TI{xOb!Z;5%QT(RBV?K=aLxoPt-l!8Xox_#?WwoLnNb
zQx!e}m*rh6U<PO4YK{NXUH1VNh6)GlW{V>ZD5!a(;r*qq-NBk5U?R;l`ID<7!4car
zN;&7Kz-@_gkuoh+vcx2Ko@0S3K@nPb1uD;&KdxDkWBWi4uiq&@o{qeK$&X23rq%Eo
z>{;4mm2m&&9R1g$cApmxyolS+^uB-mAWdmCS8X>>uXY%n8y?JG&y~z>_8J_4E~J3O
z>_tjJyxh_Eu=#iYi@XRrAZQ;*UC)JnvEb2b)s{%rdfhtDHoG}=Fwj_vhVu}+ZA3?v
z^mpw5DpG`%mDOLOs>Xa0Lpuj*p=Y(6d81KpYfz0e{{roa*q<WB+>kf@GvF%aWhA8_
zFkrJu(lGz$Q!IoCHdpeV?&!`dK$)RVi`YFYr1{?L`eR*W?R)6O%ZK)R%sGY6^8kOg
zVGj+@)tIq=Mm^hgKj|RguXlC3aO9KSWZbUz%j}*P`?HXWQi8wf4*uImCZB`;c|Y*>
z7%YW>x8I!)Gz-C7SWjdFPbrNe$380f*sLXYu?+R)#_>wL)Hnq%Z36J?cN^!IK=a3Z
z=ct{ufo;bgG}=&TRp+w7#fU!X*b{y~!=TexZFtpD!TC3p%Og@8lZNKV{)3haGx6oR
z>(@H>hX<Q3NI^6n7f4mWoRCYxQ@})-b<yQHH?Ag~m!7>`aEMF^-bf5JM_J{bg;qWR
z=_ZSW^U)F`G|$X(wvv)+f%D>pPZN_Cbs%TIr`V0N=D-q`YL`P@fs#%md;i^=RCe#e
zy9x@23mx<8%9E5%&Bhk3X3qCL_ix&QjtV&*g-GRV9cdeKY}9Dcr7^rNZ#7swW|N=(
z3M1SrQLhcNT&jKVeDuw9Mxhj6qH|Y8n_ww}Pix9*pgH4qddcN9p)XQOt=DS%jN3Q|
za*+0-Q_M!4e0xce&6?-=-`Cp^d{`7keV{n-nsMZ@ndDCdQnNp*;`5cpQrj4opa8bg
zYMzss^Vr<nyolXqX~C;_-6YH>x`iW-2}<oMV{eUSFiRycNHq3=0_mn^Pc6ALp2<RX
ziZpH#<Was;X*aM58-bzKZD6?WkTyT{HI!CAi5tcEPv5%`6|7F9BXBN;-7i6I55}rY
z<?!C<3%v{a&DD+@sMqLd*5P>k`Zq7Is5^8NfY=XS6VFsu5GVx^gQc_rP@@0Mg$YUv
z7!LqpZ#vuPWFegq$(ap^g)$QVhp){SSu3pR!L4j2L$=SdG))Y2uxl<3r3gdA{xTxu
zf?=G@%x|O<IO#amETf7Jz$&I(uB%gz^u`&Vb{@>Nir9>raTa)>&?i1tmZ#rIGsYFn
zbI6oVJ7FRxH2`t$_yAvM1kMXEj$>vGoBZXuCLBVFV^-3Y{p6DBr$5{S;(jYMz?<Iy
zLiwTiD@bqu;B2Tmveq5CSv4vU3p7zR@<b1Yk^HJ(Q1I4_7Hfw2$njF4C*=k>yXm7Y
zd}RRSP#M2D8aII5K>ayU%_=41%cXBBQVMh-`g1oj3^Eg_L3y{Gb$^JL=lR4U>seR0
zwP5}zBl)1J>4@aK8n5m*RSrD&9n!+(f{5aeyLD`vo4sQD#k(ikhtZ4#{j_OX4W97>
z@yN(2=fx@s<4tvTt5VZeeWEjbWnOG}bL8Vh>rZXGu@fzwFQWt$+cb+xX6rS|yv&r-
z=S}dyvtK=c1=nHJlVBC|-ED6PD`9j2OL0K_=>53PVFUdXHm<>`Pgbvlrg^uvRt>A+
zH|@uPB+H%T92F;#F;NahO3L=2?H@&`DaH#!*C!`9N|m|PD+3Q=;=TOSb_;MGuv|9t
zOr7Z-T+;ULm$fhkY?D@_>Xob%mKP{xEifKsEzgXldRxBqRU6Nfo$PRJ=E&7Cjx`Np
zn=RP}4r!?KFf6Nr$sltDO}tQ1YwQKDuBzuHaT;yR9J?!*luRs`+CvI+Ooo-GO*>i)
zFAw!{U5;L`dR%-25iaRcVs|5HO*$kJ-65Msw--cAUSC;r7jFjQ_jDR3CZ4_Ht7RmO
zc)X}<@pBpb{)5+I%YLOj9j0*iIW5sbe$euF!+a_41-mrkv){qOt{)1)U1lq%j$gYy
zovD}Ci-$AlKb@XHmF6L7Uh2+z7$BxibW?uR%{9PfBS5lm_-8wpIZaX3+45yNjz`B!
z<UT{%P5OZ%`0u-cD!c4aoi~rFd0`M8XUloIKw__Kh7^7o&N7|NTHYG79UhsT8F+GS
zxUYDyq_z_ZV*Sw83q*vpM-(`H|1_s54QnEde3FRWr#+YXjpx3W(AT%ohEzrhA1Q^o
z`H%0LE3{GhIH)>{sBkQDTiXl3K}LYfhuA9ad2X+=GVt^BQ}J)}FMkD>r=@g#8))Zw
z*{~5KRay9HWzG`JY$xU3_w>>bAZ{`yXvX7nt@zV<^#Iw)o$*jfn$_|t>5qh%QXx=D
z&H0zOfg2i`X_kfD$~|+g=&u*Ze>LexiNTqSq|$<|tZHxYbH&$K=)Mp(LT?ZohQw@u
zMzemdRHEB5cOKk+-!WHhMh;!-_qgxB$!!6;z&X~;<zS8y7&5bz_LOVnU7re|$KPi%
zzg8d_U>oIoRmVeh@j7Gza5~g|Il%?7t%R8GR*MS1lblWdWbVgxZ-!(8^UqsKg|R!J
z7)n(5h7oB{nIY}Ts6r=2f&tTgx$M2HBH=v&X5XU8rr<s|Gn=IEN#&mnv3&z<O?OIi
zs$_K@KfT)dJUX1D00HW%z_jG#^t8OHDxijwK<5OyA6G6mozq+Dv@hTNGm($s$MTYk
zN&u@k-Objt`2Q_fnXY8*r$%6-W?>d-4CG@Q^YfvD1O!(Ed-9If6&!~d#dNxDr>W`t
z%ZNumgp!CTh^O|?0B<42i>Vr$<)zgmX#pzB-y-3uW7M%!`FGuvhs@sEdvUun8BG}j
zX}^<~@5|;ZYEwBZE7+06HCiWaw5OLDD)*vbidFkOUzTVy?RouNCR2u28q62JW(~N(
zTClPIuIYW&97|~6aB^pC-y0+sI@!vB5|pqByQXBVTI=Zi&N=1A%zk>uD~F;o!y^n>
z=h-QY2U;IXM_1^(adV{jw+&yvCWs$2mN5zv+4MLqqb}y@pn~UfJ=f$um#aC^Nq|DM
zK3zx?{Psbi(t@k3Q1IDOn^TOlJT;NAbJp}SULtl&9Dsqo5*+istqCf^B;r#wkMqmK
zuh2MM8a(wpS#)kL4mQSI4i`GmnMpkM8F9EAe}8}HnaITG7coxvV`F+KxLoi)j$5f!
zG1uPyW=E`vCup>9W@Bu+SWW2#Z;8g6hT7(zNA?r5-Z5^mtx>gJve5@xoc+y5ZH}Ay
z$^{hk-VZEVw}Wwv%xT^Z2@}#b#IX-SWH>w>loWCU*T$Qy8gCEgE&YedN9!lzXIHPr
zbL@wCDxLfJXqC#Ee_w2<kvMtDOA~)VskL40u(Yc9?DxvYFoK&ZHT94@Q!)jDyZ4Y&
zeZI#QJaT_?9!p<V|61#jdgtpM!uMz&_`ZPFW3LaU{G)dTzeqe5ou;|Zk*Kn$El_a(
zSV@zZP5iDW0ZqRIZ(M=2;M=b;&<)Ndj$Y0$J@f4wiOTb!A{3C9QDq5#fGj@YO&~M+
zq!V3?a5X4VKMuugoZ4ap^m(HyiVW6R{qubI&#P7+kxz#AgT@26?|G)T8uCY^74l{C
zNKv%t#(IrZA#nh0oV|UlwtTBihuy{1B4;_l9);Z-PO#l|^E>~uM*@mL?A;uRFn<)+
ztMlW`yz4&l$c>pmSeVm>?euYz2FeBQlO2Jp=(G4UkUxVgeNC5L4R5Gd?FA8-;y~SN
zIB$re(tSi-P0~|^%%x~Z9zTw{seTd*RiHJ@bAgnAEY(AiiDuA<ZHq%^u8pQppBeKV
z1g|3DNV0O;uCzy$G(b5~a7d)GGwtf9mh3;5-UqrqYNga%7AOjmIYR~t3$U-Zwxyjm
zW(T*iL+{sfw}93NRZm;~^$(fF?F{e3IC{4Pvd#3N(BTJIe_`%4^sdl$a3_<2Vo68l
z9F!RJ#NWn@f>sNyUQN(kO#@W~gjh<;8@i04cakrI%H3Eln5jQlD_6X9_RE+&3X*o|
zqMuHPE6+2DrhkT!5<AK#D@!<5M;cmP3H~C|7qCsR#!YsDM$}4XW0OASc{aw9@nK{Z
z5s!90gL>uW#@ye;c*S53rb=4xE`pp-cKyvDQ%UD?CU=BY2R4?^l>a=N+hS&<bij^F
z*a~;<GbpW<$bHsi+?h8d8|Yg$IKT$?!Wm97j)9Vw%e3!8Pqk@zieq*We>AO$U0%8T
z2q_MXUy0YJiHH={($ga=y}Wq-GCV?Ln&vmGKj0AJSSRI|C|XrZiz+Rq4?i>1a{rbx
zqo=X0R5q3gpFW$=0CA&2zZ}9-Y@0j}r3=Ti(=12S>Dx*)nY6t7qY}g}o=+wACwHF`
zx`kglAN-_T93h&o%4Jre>PF|RA><+0hOlvJLFV*WNx$Vz716gL9O!a*M<~k{<5-^_
zHW_pxT*|DtsP97NPgXvB9)YMh`ZpIst%$otUC#sWiX}@6?98dJK{(KM95I;~tHPm6
z+ihB?AuHcgILVVPwx1w$4QmT5mPY`G6R?}633(Ps0;vy$DlXI3j9I<Drp`wS+<bcb
z^K*VMv^*0XSoCtWTSMh|57==;z04h#loAgSpVE_f-+g~`9VzjrI?!eUOliCv(s69p
zEUsfU7HVo##>YfuvGB2!qJDzQef7NW8QHkTOn?Dem;Xzn;6H?h|NN$b4cun~tzF4Z
zw*?DuNDUo34*L^@vD%R9O#^Q@bTpzJ9M|7jfxeJ|Yo^i%zlp-ykKNC7hHL$Y3iFmY
z9C^P|dJ&#=|D+aw9Np-T?X*0L6uFg`&(9eS8^86Uv0bcw8Nj-Os8~r=lp~$m?Lp<m
z43!0^CR3)?zmnr)QEo<|XUfE~6(bBmZgN?$3*3u@cc7a6xJy}8QC;`hxv4!ACgYvd
z%vo@ZHVqmR<TPcO0v^`d@{Md9_`LeQ7jTe=nGby2c3?HJ8Q%%Cd)J*pRCfJ!b!6Xx
zp@`zkLNSKiOWyrA(;9`>f90;)fB3i8rp+5)CAHxc>zJ%a^#{^KX7;Sk6WBDb>LyR5
zrIEOhPPwTbcYHZsbDX!T<Mu7A4KSr*-Hsv;^*ct{`tXZ^1$H~VQdlzaW|Go%t!BvO
zYggeZNvtZ@c*_$?2EAs*C1h<@y{m0$mxycTNqYb*3t{>&!p!dcQqcS0_saUxVwzof
zijdc#mG4A2@7bb=2Ho<g9+fxmrO4&tM4RC$A##daA)A5W39j7{o61H*lN$WNtLyPu
zyjx|mw~;bc8()OJ3+q21M#3|7JT)F#dB>Y0(*HTEp3P(#;iUi_sp~y{J$L#_!r6~F
z294Ls;}cgvU)y^=il#?L8e+IX@MZ-mQEi<6cAo}E(0Tz=Y$mMGaui|H5RHdr;C3VS
zXpv`kM|vgg?uSK$E4DHnrSFTMI=oflSrjGM1!vbpm4+E4hbJWV;=wa#Pe<dAmfU6=
zBrXS6`R7I-e|)R!KYT*aSIRJ{&FgC=Zi4o6#v8EAVk-ba!i3<yYQ5H7PeI9r<DhzS
zGR$o<gggDUe3ij&HTOOm#d@VjJG|cpjhD>oU0#lyVsK`G=`IC7QUr}g0Vv4=YF^M=
z=$*I)vVR?x!|^jdxdBYK{sL`OAJ({lrSKT^cSeJdt#0_^mO?*NIBg*7UZoHl6Q)wR
z-7PNnm++R3>yqW!0fAvg?S4MUefj3viT<0DF_c#L8f@i#n(qJpI?B{X|Gb^cG`w?E
ze=%oKW!FY3vc{D9fOSKiz|f!kIpXpKhoE++qXfxQFSm(pdUtbARw=4>UC;#STOVx$
zA$is%-}cgYEJwnC<eAetclXiztVlRRlvFRZZ_7af=u|nCj{+>f!m)v|M07BY+$}v3
zIZdskKBpCRs~csErP;9sUi8HPzY`paKBL8iH6|S$IJ=lXp{5N^aqEgf&pjuLR7T+C
z!J@p5wca65p%f~)nq8JRl_~tx#qMW=&0oZe?LI=87VDk43gMzai>P_+x|Oe(>xspk
zt--Z3l@l7r82|eDG*bc>bqnR-lxZOhVrSJ@nQ#iJj9Ouu=HRAA9j*L`2ESe&Q#zFr
zj*MJAeYiP$ob!3*p<nW!CivKoyFYEcHD2SsIhf9itS(*_HCG*>@Gyqk6%Z`F)94w-
zXC7q37<Dg9QWSQt;gi&yux2_hnu_NjnC?r(672uILo(1)N^oy}VNOJ8!htEUhQ}=Z
zmn{JEuurS{)2etZbe@$?ZDWCEw`tXt5q$DE?#8*NsatAtvDuzW#ZfXDfAc9|;Pm&e
zZ;ON4>`&RkT-`cc?F?5K%&RX+9<RjMXEy!zCDQ5%P4%N-giNSd3V>rW!+20h`Khb(
zH>1ub*xk%#zs!B8Q{nj$9*si;Avf!x09#csj0#e-zHbqiUs`k2$rz962q70~NKvc}
zN)ptw<`g1>!UI)Y4AU5jP67(_E{A20Fc2{Q(*Z5u$hWq|OoUV?;_2}?Jik0SHoBMF
zY2ju#%5|atvIpN%Nh^P@#b;C4e0PQPRnRnAxj?x!vzTUVb5*m^v{>|yq)`_aTMndV
zV2sU{XgN#4YPQxee@MM~AbQgoo`f&B<l`)>y=4m3SdlfV8CqN&UAyPS*yPF5#%v{-
zt=t{~Qw1%-tz%E~3Z(f*r1M_*c+mj*FhTwK5k!}+DxuVQZ-On;VGHq~cih{V>3ig?
z(ovBfXMY?#{l<OfNb1~xP7q(<R5`88cu{|?kdu|OyZ~MJ>C^b?g%XLMwTHs<$x}sC
zHH!2DH!@lq+wprFrNM#-m$xMjns$>Xl87XQ>Yey18$;x5g614A?AKmOsqUBzVU)bE
z(N;^IE+nIcVfmepWwE)Jfjw9!XzaDoYcx}3=eP$r*lOKB3#Drpd&MgYk1TJg0{S82
zw1cPZ&ojCOUSXH@BSqZeyU6AyFw+lPs3md_K96KQre2PV{d`1815biO1HXK)JlO$P
zTGNe2gN^jIlF9>vFEiUn#<y-%tN-0ioy}Il%~6`f*CQs7jz67g8$6ab*B7l<uOgU6
zQoeJSi^0J$Bqz7Mz0lymF~I0@F!Zo5y@9<mt>=QcF;a529N|gEF!(ZZOD!gki6ho}
z-KTp9tq&Qd^_MMmM3!@550|ej+F2*Z(vjXqN(F%Q-gy_{F9+OZi#}3(S<91~nsAKd
zzW{>0>}HTaggRok;|;_BVfbBAW$;Kt`>(vpZoCxBb@>xhkxv0_=fYkroyMc`05-)Y
zo7^;T82_5ZIQ$@Fog+hTaR^_ZF!}GfRvIC=xC)8rv%)vB_fuLn+}3IU{@w&Lh;u4S
zj|)0o2me)1IDwAl!L~k%ddm@oIldQ~D~rU&6rX}X2W>`hjY1{W!K47@Sl8ZrABO}W
z7~#Y965W5kerE2<%MBDjPF3;@p_(3-)SvW~J|U+Z^Sq9QL4*y%XVN`2L?a}XdV<C_
zuVTigpfUGd+&v=zb+uFN+2-0eZ9$oAR>lSBAMNAi)Bd>=@+!(O`R&+R5o+;9Pi$Fe
zAp)yuq{-suzW0LwiucWBq*TD?Cp%h;bWS-kEmQW2fe);94-{?`@*@iYH?mz3=D(C=
z&As1IOa!0x@y0HXVwb^i&`(Bzb^!WK$;8RbA>$eZ7@w+Alzn!g5sxk3&l|6J$pb`)
z2x=3HBij@u6B&rMO7&{e9Y6ill|{aI%z8<jU>0iXZ|709)|LsFD_N5v@v;Q~)hj3A
zejWzu3Vw_1gU>;Mj@-3?N<T(U;gd^;+?a`Not=`|jSS-Xw*ZaCKuhY)aY0o9%St>B
z0n0~!f+uIE@+70u3kRsUZ`x_YcBSzJbriG$<DT_nbcU1IpA-qb$0dQSZ}mgLqilg%
z9c4y@7Qu06&BBDzKe$5E3*4}yrsH^K(VNr4ny83cL5Wbw0v~{s@d>MP_^jyJYCwE#
zgsll4vKjrR5c@qyyu^-83{MDWE6*b0eHneg`=TFPPadXR;M_zQONC*Oo1rBF1!OB7
z%!BrZfq-6O;;M{51h_%NIrfCXbT6@54-p)h30l%uOK(<aezer!=M2jVH~2LY(_MxU
z;-JwcTEvmtrZ1I--@ZMVF8iweXEd4xZV;qo^tZGf>@66qe<b*rr+M(1w9v{*yQ+ws
z!kn<Ht21RHHkP+8&O#SIKAc9faZZJf2WP=7-Y|n6O@_?3_3Rqc?SAj-axCUY`$Mi*
zllZa_))*I3nH9l={WXcJN3%3iP;^pcaYn0VxBaTXC)demo0aICKTdC+Opm~{whEi%
zqM~t<xSBTaFMK=6GyAk{<>wxlqu#+yEC!#WZIzP8|5GZ0y4G&bSpx@6?;ApYoS~nc
z<?~ktv7D<2{55OVg?b*#QCtO`P@DvV{0}fv9%{VPLpsWDluqsZ2;G>7VLeG~Q4Jv8
z1x09R#O0B%64iFGf{uCt{yOQEu|jtTJX%AXG(z0cXG+ZPN=}JzMscIs9Th#B*&#_W
zLdb@`ANjt8<K9YU(27X&5elPp+unD3QKa94tg>(%?M#DU@f2m>V#n5E`PMgFzu})X
zVg22P@UMK(1~SZnUgk>}W+FZBd#9v~)@T4}DW$t@;TaI7w7wK^Uvi@!e~RWsYu<3~
zmZ=<k9c##8V=Xneb$NWXgNLIkH4&I?*aHR?w?7r{GM-r(b}+sZhVqVrR9o1b^yUYP
z8CT%LVKiWC6Z+kaJpVPKRyK`C!d*z0jBx4<VD|wUiwaa#Q;1}K&$0bnU#YZ@IX=XM
z623>3G7TJ`MKVAbA5ofeGU40%|A00PoT6lYUxr+ta?4D!R~3U!8w2T0T(rB&E`p>A
z<;Ua?Z)>f`d4QE7nqg3#3Tr?)N;aHFvbz#%^Us;A{eAHCK+BN;T5M$a?4XHM=Vznf
zc+_1>U3yio-VZ>*+$rJxqCffTZjyuF&9qb+zlcI#(l2L4>01OV9j)p<sJ|+}0$XxX
zzfFFZf`np{Ubj_K6|o3-oSTh)w-9F&GmAuR*|YV<NX}4@#6HdD1XA2LK^nrXI>53*
zrV+c1_f+eSbQ_R6L#XXLQaKrN8ESm<CpTkx{vXnFrTO#)74Xb}Bf2<JxCd-`>JL}F
zf;TF}Kb@4d?le??^?ZIBlFf}*b~)p+MDH3L7?lhtbQ5I-$m{p!B$jX9kTWw+H{b2)
zGuV}o_m}&{RR<?pP<dt^%G`l{^KijByY_2rbi^f!0PNdVG|6I>Vr;q@kyF*83ax>}
zVL~*WHnQVZkyET&E1M`+7vFQQU>GAA@fam+CYRl09oQJ{!WhaN(M-t@{568*p|HYM
zL!kkG!U9fmTkc3nN(#|9GBTnimMh$b-(TzC;iXYFySyQ+3QULN-Lyszg^%bb-bcno
zsp#J0?cazrV$a3IWTLR}j^l$BBD)G+#mgeaOwuRd^d+GQJYL;-FzG(3h|`ikzCGfy
z_D0fbwDyzMtA6d85Eor0v)A;e%EQ_Afbg=@a~PZHi058im<aPJ`K}J;zEn$5e2z+s
zkP01XayDEcC$GGpziq)(sfL$}j1}On@(`|WIBDfShtGAk?H$=t5WZXQ5;Aji$!wi!
zuxrUo#}rd-De`{l_Iq*Euu|9U-DOlsaHxGy8kVn@zff^eE(_i>+iymsTpHb-q?%`2
znf#JBjCy&Fu7aBBE4Yu%ti`9<?z#5A);bQ7(P6D|(Mw8@Cv@*EXwlI-^G#h7)Af{V
z&o_&u0IW!ta-e0ISXjljtWil>{RC_fGt@{W^VJ+b*It^0Aqsjo$kA23L-qOiMF^<(
zQ>Wpb2dQPC#Oi8#y8CY7sym1rUf@~wMq{0{WqW`|2HRk_Y9;05zdBF43VbGLJvwO{
zUWQ=zYFd*UZ<!oub#RpNG4RYBNqyKG;wA9sU<_WV{W15{Bl#36HkTtKI>q->tY??&
z--~Tn<LU7tdw}RR>$ocp_ZAvbMwk^X@Ep#W)bislcc5*?TfFWB<UF1iD7_5jJ#T~T
zd+(a#3cYBmVG?(^@ywvx{896%EcLE`0j3=i{>e9HgwdpWIq&PuL?Rc)eEUl=Z3T;?
zhxV@Wr=B5121>}$j{5I>k0(b-i`uinklY~T-fm?%;eL5|z{5>uB(j(yHojXM^U)LI
z6HqxXzz+>SsXL@GGMEz>wvhVEI`#q%wn*T5Eb%e=GB4s;ihP+gcYZP+0vvtD-5XT_
zkWD+JgU9RYTYQH26l>^aa+jNxVq>_V>DXpV1{0!g-k|Juve4Fap8Ajr2d99^$I_Ra
z*ygAreG)?{DOoPm;BZ?;#Ijm#I`jQ2GshwPN@-hP$)-aGd+A<v+`MeVY)doBo<s1$
z^%TE>Hbf0Tbo@T*{SKdRdCNx0SY?yh`&-b4Q}Luq#@toQbq^4laj!mRMo7T_LWbpW
zdy-A+XW8nsKl96~GNZtDEqk6z+vWYr87kM7IU3TbIo~V0{NC2<p23yVQNg32XpqH+
zbW;_3SAFY2RCo)R1u}yg=@tDg71<uC)3crN03Ug;k*ZNZ<mpC)%r^Hq?8|>VUZ%$V
ztrWw2zJ{RFpIrY3TD9_C<tq>Y4}u)*-4Tu5!SITH?!MlBsBS}9!>P@+ZdE&2(|wWQ
zLt{5Rt7-6ual){9=7<c2$Fw(#2RF4VxJ9c>w?l1@qgIDQKR6olMvpLRdImGR)e_1_
zn`Mg;MTSk8_`1^&d*PW(y*j8il8Rv~DSKF2ciKq03q;;oH&c_!+K<FUxYoR+8b$BR
zEO5xaL;8LkI{SRHD}ph{t8?fUe!%QFC{`0;&^zo}Qy@9v+LH!-;`FCRFR$7rjU?xD
z?SxUC=nq!}&f3#aCCDQWtwPmz+we~*C`om6=gNyMLd&(0SyaIP%ingm$-;6tN>-zb
z8KvVDFCOvrXzOm0{>xiM>ci=ymvL_$DwhH|!F>RY>Eadh#4m~hd5e1*)JT#kVzrhu
zkGDMIo7|hilJIgUYG;XedqlI<j7t5rAJTSD+JCMu9NQva{Aja>K|Z~fLZoDH8=7c1
zxe8pacNK3pM^jwa=-FaW^a%ePmeQC0V&s>I^LjB!4`HBS8=t1+0a^3=PbwZPw*3#w
z%=ry6k8|T!u7lT7QWAq_L#$(a2kadtd{GQQ?c9s>n?TgDA+oq;4b|s$<dav6Kxh_k
zC3r;~WC~(+9WyGpEv6W@4?~WgwUXUK<Pn&ESM-v1sHo{|F5#$fEA8pWxbgW7^<PS}
z5@WhfZ{#NwNbi18mTZPR-dHa>k%|m*%Ma3+#X2WdZu#)wtCs(JJ`64N$@1?z`^syd
zV%r;z-+}sfny6~)=1#jtC+LpzdaUWi&@?$6#;DxoKwlbtKEtq-+E<Z6k@#NN_54to
zY3iO!v#^C*5Dd%pC741TM1InE3k}X>3}#O)-3O!gmd>DaPL{qDL54Uobi|l^O;0}z
zqDY+q(k@@}q$@ath4{U0$!$}<9*46h3JJPTBsbbo(I^P_q1aK|=`W-d1vsmDFp#~#
zgw-4RiuQgghe)f|CVINfi#$(a)cfHm$!hV6<L8*$-mMGV3HemD2`Cr+R3y6Xp;0D{
zO=i^JxF2F#ulsn`YX=+#znYtrnbc+jBCo8CKs2Y&1Sd|p*6VsP8;zz9LPsbIoIL!Q
zmLDjI+NH4;q}g2aHoVd)0g#q`%Yt?eYO4l;;yJxkdO`bfN6y=R6iqy%{*9X9M;|)T
z_fcmVDmlWl80)jxN5+FB?GDI(-ZVBvzYd%6yE<J(=Rr9KYQxo9s1AGC>iQ%JvyB3h
z--0`!S-RQdy<|7C7v%a_&ij+Q?!mNwn7`wirP>651j7gpf5ov=>yF!}A!)}ZA!d-d
z?uL5cmq)diiql)yxYyJ$>dL@2ZsZF~Jk)>wz5yMp!!?11Pj~L_OAD8qv-ngF$^<eQ
zKWDiPe~SH@Lh1PX4-(>e0^HHfMMB7Kl}?#L{cjpE%!2}}ugXIaBy;U)?aw8|26{fL
zyRLpu3y!HFsO$T4+2*(x{E$_W2a-!OvyprpTr;JEQC}>St!ER`XDDjASNA!de%7)A
zL7tvHTcxZ#q_5VniE^d;zP1uv3Z5N`u$sEGv2cC?v78&Sl&?+l=9(V2F9wt|<^Zs9
zw>kVBOjwHCV(HgsykcLB3F=Pd5JPfjj){^3mJ!Njldxkrf>T;7!#zpr^Tf=m-l(I>
zVL2$lc5E@j>?oH?u5h-Jq6CZ{RMKlHaO-%?VjLk~t!}ddf2wr0L`$;9Wwpr8U-r&t
z*go{IA6Cx`ED_SAj=Th=<mW$hCv78BKvbN!@I<a6K7Z=re^O(RZbkoe({xF%FLL*&
zO#dC+ajsv#JOiS$86!FM!%BKUb*cy3`5y-I<wBhoPRF!9$?Q8E+Jo-{@QUL#6>e%R
z=)UC*A>WufBOV=4cDUa=rxVg>j58@`+`GF{eT?_prtG>q_yLiZtqIxmJ<3n>p>q-v
zdY*tk!WMZ^@*;f|Hx@%4_Dfjac~u+Qo#5AFhpUC7@!H_dKb`uo{WD}QJApSP1QphE
z+{`-*B30>t-{anFtIYPThiee%n3yjOE8U?RKky&Da#9+pTZtlj4_CML00(Hs$0ZrG
z(1gTks~b79r^^fsqi@&4azg(s`W+K#s}E6IjZr!H>8eMB)j+L1|AjJudB37B_SsH}
zDxgfOZp4j7+8^;g5I2>H<A(9KN7iUSa9J?QXbi6L3f}k3p`-UcLH%$G&G^QdxC4<7
zqW<X!FNqn5cpPo#&$t&I$7OtbM+!brpO`lb!l-vXGjHHJU@YLooU*SR8S0qp;Hw=x
z8uIV+T_|qk1+mCBMB})ulwn5Vl=aI$e*X+K3loM&Orb{Vkx=8~_!pUV%=K8697WVr
z3}L(QnnR5{E19Azxya=dEss$Iyj+JAJCg*Gr2{pvYcf=Ym6F#J6=5NuNy6ViNI-4M
zMwjG8W^M7ZDrEkg{rW2K`;X7tyM$7f$q5|exmGRjpQ`P{*a_6v8CH`>(Z;VOESwTd
zexf;5W44|5IDP4|h2p3KOo*~E+SD)PsrK5ghi!5!rpxT1K{j9cG^au6gAstS4+AhL
zF*7RMrZh~=Sls}Q+3BPMat^hu(~Y5ZR?R>nv3e>!E|R$WBF)wWqzRm9^b6s4DN~8+
zOEMX!&GH6xE3dLDc*J}~$8r+OC@A^#_K29KV#|ciBa+o5?vsQr738-O27;!;YfIn+
z;kCvKo|EUK3~j74*4pBTp|Jwi&9os%_Lb}E|KsZ`prUNI?-fBnP)g~P?jE{9kVd+@
zyJHAxkd|)gF6nNNM!G|~Vd(z9d~tvGe?RYCYZhyO1vB%$=XsuU_St9e$k_W+PAzPN
zf$%nGKKefNIwt*SVhcgBlh>$u*o6sUW=cPYc$}M8S}-CB7)!O^5_xIW(@DNaT#uXP
zjT0T-q0j%Y<T_VD_vY8akT*8@K+67nI=XR48b(YjD<OwqL$Q3$C(LCMfP5D|f3^pU
z`_5`_7S>kbVAQR`Pimo9zfP`q<F=)S%6q`R*x=a8YciNeuMkj^)fs4Dbx<ViE%ad0
zPb&==s9@eYknbRa9&cR6#hAj-Y<Fx{+xc9cz1c`JUEV}f_BfK@*XIRUC?uDR83~e7
z{~rE9JTYZt+FeO^_NiKjg>FfxmYst2yKS*de(86<*?#Yu3O+nLn$eIYSLz_^`j95N
z2=$)CVECZDxlp6rW0f&=k@<z*+93ZstPSH|6}tjyJ0VIv6T_AMZrBP%`w%%;(DCuq
zcUqU+NyHdm*O#WQ;tseItd+j!6NGr#vT!NcYg@I^5L4x<G*RA!m0c{{nA6FHZaV{p
z=iYYMlf_ij%ph?!S$v7KBENWePVd=>c)s*skW}Y0U1>)wJBkx7sPE*r1NPrFebtC`
z(NMR1R<QC8CL9_FN*QjIEs$4kQS?W30LL?{dwQ?y5C&6(HT8&K+ZjCP1)xW4B>l$r
zImg`^m*1t0XI_fkmnT0_I##POA`3y`g$BnW`D+;&nURd_CXrPpyl&Z-Fxz)|G9aw1
zW=V&2K*?L}Mrubp3>)nTi-zbP;F6(-InC=RMdoHp^&9+69{K0^>l+%VP)8of58`l}
z;LC8~=nq8tR2(Q@bFGm{i6}bOb|(tt2iKLx<Y3WsfyP+!B#Wymom!O`rt^?Ffp`<=
zwvetJ9beC3y2piT{NT~4_e>$WjAG3F;{3;|n5a<F@g;+P$~UHjFEF?|$nc!S#dYIA
z^DSWnd`tCZq@mGr@X3n}j`pd(enR15Q+E(sQ#U~4ut8c;W%kLJj{1XU>h~zIG0^M{
zP3j*R5RCUTq-Q}<eJayrn(M!oyx<h9nfhFVAuEMV-z+Ao7{^-gPY(S}bn>2eSkDh1
zKu!x?eQ=!P<jhq{1TZJ4Y`oHva}=eikvquF`Ol1PUJG?YLm2@DT}L8EBsGz7X3q|e
zudOJaV+=7j;7s+&#<&;ZHGLo^y(|UIhp>3sx4h*wmh=4p8T?2L;9qzFURw*HNhbK(
z*t~p|1~->SM+-YU%pkQEtJ}&LmVJI&B8w02=uYR*6&e6^l_8q(UPUY>EttTpFfwcY
z=SGJ=LY4rB6}@WIIrdDkz%YqcP@StHymIvkE{<;0EV8Wfwr5uy&x@s>NNFEf3;p`u
zynah*&kRS!s~dfWpj75;7KQQhuxs*x_lEi;*aI71lMd+z<q6{DT%=~9+m}!&sPEf=
z4HDV0qLT50*N?PF4|4BkAD=~)Lkpt|2&gJRqu3N>S<;3NhFazgNY<JjFdazdJ?>Ve
z7KqH*c4oe#g38QPl70RT@FL|Ri9{Ae7rfxPPG7E1VLNKBSA{1UI9j!LUB2Ak0!QC2
zrCd6v^<w&Q9hXkUb^EbcL-E(y6LTN@sGBpZC3Zy)#Gcx2Y_14+eNmYdrWmSQH!|1h
zkqm`F7udiyz3AarN6s@(q+?cQ>0-_L(%R<GqMWw5Y3}-n3Vf|kHF#HDUO}APO}K^7
zcm)1Yoq%vl;@u+oY{_MnhnbUI7OW6Z&Pz$A;e_Yx&c?Wtt1;aD$va+K10z<M>L?l?
z;%ZbHiiKJ*k5veri2QZU6Dn#;X~P5CXgAr7Y+2pX<g?CrcJjr(WOEE0;*!S+hiQMT
z!W4TL^E`-dus4SJV4|=gO8o6BSN6H~E$$mu(HJ2&$5h|If<Um~xAX`|10sD^n0VD}
z_7*|~+2K$RAq!6)h-@XziryIFx}OeBCYhikHF$Ur3BXBeP0q>5Q8nBr*S`COasE=^
zE|dp=h`&4TDS>Oojp)G%kftVXtc<QCU0vN9>!v58gaZ7B4+7W^R(`T588vg2oq<T^
z?PM)NtL^X)502GOJaw=KKj-@w39Z`4-}C_1og2?3Ip6h1gtGJ?mSey(aeMPPvYT#(
z<!5-LX_NN0&*B+@f6^lK*P-8-%<{86k?W_INLJq(Kipl@o@v@NTmr1~(cJ@pt6Di+
z5dZ;F>Amx}#kz#po5T^^dK+uddxXgH9fXH0dl;OnuO5XS;RfEclYvSa)P>sX%3U$i
znB^YKwQrN~U$8tE3v5?i1-3s4537epn^m6;o{5$y^rq1EzL=ub>my*YTO*pw!4kCS
z<0>fVgH}`;UMqxm=_}}xo}4~$=?ky>O64<4TFd@>SZ1F5;uE2;zIhnx;~LXlax$`{
zUpJUoSf-k5fv-Gt7%R$0PjtrW2K^JBhoqJt%-5<n_8lxuX-v*5b#njVHj7Upt2$3J
zW>Ped64kkpzQv~tuRN?Z7&qucLs?2Og(R2dn`tn$o!Ag8uq$BhJR8!erL;PU)R$FB
zAcy3c<yhIG#ml4w&*;^1M{dXT7<1>c)>;&p`dTSoz;h^V0lBc5XTX8@#-dDG6k_Z3
zSy{4)(C%(mxwWuJplye0#(mWvqe=%22H*2a_qx{WmaQH@cW9>fOOX~N9|=6KGFIB(
z;`@jQvvcpSwglL_m<g!!U9}^nXjIKNe{@oE2?P`1M`j?YczU+9g|I;9T)js}L(>nI
zl)_@3YVqviZq&P26fc?V^_A@$XnEeHwS?cY<lb7bH9s<v&S%|famme9c5S{=K2rme
ze5K#@04voPRs?nBYfPxxj3dKeGSo`T_Ziv5VFEd6a^^;cdC;_|SDtFHh|B%}ZMB<A
z?+`jT-&p0!l?`EAP?23lKb>+U#TY?iFlT<Pz0y_5EmHfGd%%LIp#*BtT@NEkP~ogE
zcpn5VM^Fwsu3+8DeizTvTRp3TWQaZko$O83RmN2b=3yoBUW{#2G7aubf=PBlxv9oR
zx+V4Y{-BeNs@kD(M33CaHpdI6y=*^2o8&y{EaBn;x=eL!#6^*f+#DXL?CZTG2RDoO
ze%Q0w+8#@@;`F$<=V{<^sq1o!yn)IcAX?^?o*n^@N0`FmGc&Tepo?&oUfPehnBQ10
zJGn?Y40)|~-shTnEO=ado-SOBEY=(;Bw*YJd`2<SEBQ&so5E!HC5;%`w?ss&?PVK4
zA5xC*T=rgFUG;%Oo{?n-L~@$HS@SmoOz%wvK17$BoxJnq_W))7XY!j9HZst)0PgjQ
zFOphv^@1f~754X3!VZ-8Z&t12fI%a3nOjT*;ry8&{>a)Yb%FJ~`!2f$dFx&eTV7|&
z?SLX51klV>Lym&#7y~#HBAbJWS$nH|x7;=!koAwaRk}QvK<lXHfeRYyQ}Oe0u|J){
z|NpNyNY9J=ngLFPT6u7FqqX}QjvMU@Iq~BZ2jIV{*<cY6l#z#Rl>tWLU(r7E-S5cU
zVDSnEjQX@wj?;UdAmBwk3F0Uv*q!+sUoTn)rI=310>eH9Y(sjlVcx)31o${&RR;J}
zzb3}?A4U5qvce6&N1E^mn3qEj2bQB;Bro6PUT}XoNrIze@2zw%rWf#g6^1*dS$={s
z@~z?ly1kI+JIk)a#ERsrJvq#Q5zh-|JldB;>lJk4lP6A9M-Q^4*B?E+62g*v7kv%Q
zf5G1At-|&k!XQpF1W_**d~wXZ8G++kWgUkDReby6Mz+8aGjIVTMEpw_=dA_ySMIOR
z;58(mu5kB*7P%bjADV<`AKgzMDN%CPhzbk1h)t77XIM-Z9fh^EA5UvZSqK$!L&aiY
zC{Gm<>;pw>*0)JiZ991&yT*GZhY)cH2~kJX<4p@&m8dlJDRycTV2lL;6!-V&Wt^-B
zjM(ez>wUm4p(BoqeQtkzHym&PEoGhWC2tw;CJ?untooO)UqOOlE#XqbZn2;fmv5IY
z*MEu<uy&uvGjeZtHX~{G5TaKdl~%lJ;1J;2<PBcr<Z{}#q4F<3>Y>h;|G-zbO+h?e
zpvNo<4yYM&Mn%J3tPWpf^#J<}4u`*6+K!Q@Amv7eM=}LBU8%A*)@bzpFo%6k3~GPZ
z_5N@$dwu|LzWT}Hl8kH1fp}vsULI^SlUfb^uH%+qQ_8V00C}Z1wzunUtVW100Lkgd
zbynM>rL8~4m_;9%7yEWyIQ))wt*YMQQbj|~@V+!*bo)T5!3XMMv=We~;mEcWP4aVQ
zap7e>sy0uB+ej>_RSABjZ&6%rJKH&@Z`C~XD=V3=@dD2Z{o<m=){dKGR2zQfwDeoC
zp#OV<;)n;TY&PNG<M7}kb~rrGPnPKHnH^r8$ExGsKrn<}<)~k#3y&lyj!J|h;mECc
zjRj)^jlf)2_+M;Rjk2CSd}UnDh<w=e41|@oFyL=wsH%0?Rhg~340@9ozLxnhtGZU&
zx*9XY-Q}n7b^Y3h-P^BaH)$5>GC7bS)#cG_q4=z(vbmtoS$Q|Zyw>ht-$CxoY#C1L
znH{UrU=O`9(K<@>AC8T}PTJ6_QY#ClQ*l`)1|I$Mr7*7wD-HTpx*rmRHSv|VTK#9#
z@#?mEsI&KS?S*wd>k8?Z2f)2ni4mo+yGtWPOlXwVp)kH&3T7Qhf4tjrize6=APJ5y
z(*23I!KtU>+ilbhG_1B;y-swX@%c}_<2;acZwfXNrQAe#o)Ir%^!U~%U(XMuayp9h
z#Z=@8OaupFAb-iE>q>Q5wKnB;{}%P^FK6z5KjqKpp;Xp@g4UNtyG29BqTL6^C%#Bg
zS=l^LxD=bVSXZa{g%*27+-Kv3!?eDm#YW}h;?~BY&^<snGfPXzTkKRq`{t|X>}>~j
zKhX8`poSkwW0bDEcwsE(QjhJIfb5Um$@w1C@43ab{PW}S;m&R<TC!JIG=+RwGw~b@
z!CKQRqRotuw$t6lqZW1W?S8+@{9Y~J2KX$mPlrxLlEvuqo9Wmwg0Wxhg|=j6G~O?X
zX$;TN(A9XT>x)SC3x-@-a(#@t#q!Dp6#?%x0ss2VC}?1-b7S^ijfaW6&bg-TO2WL%
zPgpPFb@#LKdOU`Oq_*Did)A*%D|xL2=BjM5bATCp8v=|+m-LQ5%*H(#cW~ke_5%*(
zCe|ckZKcsuApDv6&JQsA4c=T1E>kR*H13pktd%cdFFOF;i(b~o$-TNd_SC@J)FKr$
ztW6^QqSrG_HU$1eRSoq7^WW8Zy5p7gfz}aIp2tJb5dp(KubuG)Y^)P~!C}7>>A}8h
z?^5cs*3BbMP18K`T|yFWr~1Tc<rYY6+ICH+2O&)nBb?F#R+C*jVd?f8t}MY}?8-n~
zHq!$<j~KN}<IACOugG7OYXv2Z4)20qd!4l1DTxH;Y7(QfPP1pyb+mNs6V=LWv3ZFS
zc&Zu{A~+uNbvkFiDmm18Gv6Mdz&J8+BxKG?r5L16To|UT>&m6SrAVQ!54W>trs<ll
zF~2=*-uaHmljzR2dM7JD?IStlOY!NF9V+(v@k?+;mr$Wu=^1%e?ckR+Lhlx#70Fdn
zT0)jya9&unTm=ebMx&Y;d_i(w|I7N;qJAr&!Y%?;j;{5@4IXcwJooNXtY@to7V}PS
zDi>M!SZ14gFX=0-(w*Ei)61zCVONtW=)OVvDb>xOTeKU->s;=x9XJ`QP2KQZO?l6g
z^*w_O>;WcL&&GIj`6XP<-iVRuQX7Uf<~1awvv`Jcrc<^xTg&AM<~7jyP(=|gVg&u-
z*TSXVz4KcHd?O9A^xk2VwoM+)hlk4KkAb2-HHi466>t&N;>w-N*gtNkYFjpva@Zc*
zD|5K$W3G}90R79@Cp*#Z<?PKPDf=q6&~6VG`_IqDCuJW-GlYO)aw^-c>Qg|T_C`0j
zQ4Hp)@oI=|c|vzWDxVg7J5vm|TIeBpVGmYKi~j9Ow1RSiW!<d*z8ADginiLdSQ4ls
z^$dp_B@FtF=>k^D`}U$-%}c|6tf6Uufo%Gf(|v#24LapT2Uq^yODzXK&>LKKLN7pw
za~U{%QFw`1ECJ=>aT&hYKzz3!cDyDp!?$jMnY_^G7sBHhnWf(}^$(}CBDd)9e1-rC
zB@t11#`6Qj22QPUB`>}jcdF@L<CLhVjKvx~Y=EzBQGtfnI2<;M@mzCpC5ef>1CO>T
zu6;#o`aF=Jm8RzfI&`8Fefn{Np<mYaNLn7wx)%vQ6v=1^yo(#V6`HPZXAH)>cXQ=^
zM4@ew%{<M9OLgjChqGQt_#QnaGVYBV2YBp;+r0InA^7?I;voGGq{o|RrQXe*)t$G}
z&67R{2K?-B7;7#r>%%J>#2}E8F_vzcIY%8;Agly%wu5^x1^XSR%1xiIZm1!o-UEvD
z(#SV&0wNuNK|ZGtFgC>Iv8#C~0Y$09o_zQ~`v+lD3afb><=i2P*8Aw_=xTn%)kjWj
zqxlC}r2ART`r3I@db-bin8*!C_$nwhqmEivZ}bqCZ5!r!7q;kwh47#%6Qc_amDTKL
zb`KBt#OI%=LDA&OHk||p&E27JP-}^i$nzb(Bpntw0vc(M&{@2T*&TaG+u%t<0sS(Q
z>cjcSQPmtxlQ(OfpXKB5*I885l`9&L3v2L3C$TCj4l0Fqov9Ch+vSM!V2pNaedQ#G
zJR)>lt7rdUxW&qk^vo|_TK`x9K7&d)6M2cS*uuO+(OI9TxT#V~0-p-GvtvBrB-d!J
z7v+4k<)qDMq?4m7*ab;%0(ZW0Tzs9`P0SCnfScJZS`z$Dv)7H{)@Olrb`{0EFJ^E3
z^2l>@;+-FDbKlC&+ciJhlt>!ueJ-=tNX2A@>4um~)YG!<O6}$jOz%sznwoL-?A@lD
zK3GFFl0L_PQZ*wM_#{~uqckZd=bB?cebgV-f1Am8*E2<ll+6B%SHB-zG;)YNZ}c+S
zYEFzTsP1nqfc9mg^rGWETU`M)!Y>Ub%RupMt~mcA<P*KiN!QjxRd&XlJ$d*HySJxg
z3nkJ>n&l#nq-!Xw7Kex{<m}UB%G99ao#uv4kMZVe5pVnp_h#Cb1iqdZ^ixj5xoKFn
z1re@J{+%;d6qNGzY)juOwqN};7BI~@<O86B2y?K}sYfd-NYeV_Gu_gKM0m$Tx)Ijb
z2y4Kx$?Wp64Gf);cmF)l98bgRxE=P!e@Oqz>h(Z>zgb0o88h8uAcLwU)~--YFoQbW
zo`0(p(TZQ5?5$68Bj~smSxZH<o3l7E(Bm|%(QRht<tkOCn4h2Db}MVW?h+nl?r)A{
z{v-0w#$I@?53r(cE=0u~X?UH9a%yTxZ)mN&;uhyZfq^AT7pY{BR9T*mCX6{^qw~?!
zYKMB!v>N9W<BCo}R$O9Y0o%a)B(f=iZ?v7*ue2<~2r|Z34bevSGvxVsgq3Y4E9%4b
z0r>|Xj2j^XQ<q=DS9WNusL9Tnuk9OvaR$xk)Ka4UE(CKXxLGUblpr5XyfS(6`?E}C
z1W-jXE`mD)O#@b^Ub?E7Ft(>om>sqcW`5L(MDQ_}e4cbHpwPQrh&;3abOmy;$Qi%H
z&iJF<jS0@at_XuSPfklK?R}$MhK$}`uAcG%3fLq(g86G8YFOCFncazAY-<9pmPgvL
z$hqPjv7b--8oj=aH-dRjbZsG(hJ10Yc(ZiLm#vhfilhw)ejgqo`=Z4o6U1A|BBT_N
zstKf~#z;T1{epcWca}BJEU(iq)8vR=;1PLvG`kxZK@e3rT`LqO6#6gO?zX=KrhWaI
z*(ydfIR7MmJX>uZk4YbQWfz#rSjX0OEYg>{ih$9=E!bp&`0L^R_A+?@U9=8K6qCyW
z#PFVXfgVMAF^KhGDP8IX<_r9ocKM9f*48Hy9|WjrK9tYDT;o@9+Mg0=xgWsjs1Yg-
zu3r(DA$T~3z0X0qRCF<9v}d`ma_qubo~<<AdvDYH0Ju-gqFQzkOPJ%}tc1a6zp|BS
z21LrwI(q@}2hBWz>|LuC%xPdkSRL=p+&nPXoUHApUa}yCH8XTpq<t@5`*MWg@uuvt
z&`XKoBK_ekZ|c_d?#j0Pc69L~IbLWzM56z#a?}y8+s8QfA)?{kL(kDAc2d0%*(DU+
z7V&Kz8U<IPrt6EH%}*Bx+!XJc8P2}5wkb(VYf+4KAj4s9YVZj{#QP1#m$KBj6N;O{
zc<S9t6;DfEkQbj)b8vX9X70;F#Zij0!`rS#C=kd{dXxHLF~D&dX|ri4QA8NOqdHJG
zU#@9r)E}eJM1qGMUhh*k4QIUHh<2b2^;>!Acu6I<{f2bi!T31$dVroL@~9P3ihkC9
zyTLcyDu>a1G+k6ktN%Jo3gR`-7q3Wl$0;29c)QWKzJ=p#Qt_sr@a({EwZbkPo7!dZ
zGFe$l(ZlcfB%sTM_NB-E6i$`R={ZkeES#bTT|R07alj8YjK%EE_}0Z&+Hi(M>jGk`
zE`0M&+c7hpKJ#36N3~9UM+A=Uo_Dt%wSCsh55i9PeCF@GBhfUhv6(em8m*Es1-A0Y
z?G=())!-WW;R%t_nh6OAxU#ka>xGcPtgkIjTB?n9Eu%Ee@R6C?wU+I>P%S$2=S1Fl
z;$OpA-!?Z|Pw@#+1ah#OtrR-XL@04^Z|SngG`}6=df6=(+4hY5SnG!Jyjk2|NEz2A
zf???k2DL7Gi#c!J;fp#x!ey7#53UQ*$Fr9G&GyIH^G-GHhgZD!?W>Zt2l~v<=DN2q
z50MTL*L)J)V;;A+v7ALps+OBigB9_EO*$uPU(HH4g!m>#teP~mUFvdaM_XMbx-E7;
zKa%q-ShJ=&^9N^gbz<Wl%%OfJ7r(QdRqgEI19xQ(PdO{&<5QJ`=H7KKJE;sF6$^a(
z!m5k?o0=lBt&Qk&_2)1gHYb3<FC9Kz&BTq<Ykxe9J*AFfn_U_3P}<{8^vrUgfpe*5
zZhz0US*`qO)L2arhRbBXDvi&pCAP|N0G(X9V!qaTIztN>E3PKbotRL#mu+)_6B4;w
zskwZi?>Op>=9i^eXOn^cbufWZ==eJhw@EeGR7Lz6$J4tyBZJ!Gbye&syDGpR!$U)V
zr8Vg|*)NpXiJ<L|D)i<8Z{O+1Y40Lg#PCDrd=tH-7ymI+ob6%x-R<V%MEtSmPT8C`
z%c|3Tp>=+ILyudkQU5gSL|@McTcX6?)gbIhf7#Jv4&(}z0xeJ~l2zODgR4iu`1LWI
z*}kOiJd&YQeK<amkzXE4Q)vFE76!fma!)-g7#O!qg-#~$IFmCMapZKm;@5!BAh_ww
zg~^_Mohj~oLH`J$hXA;ZQf5|GwaF=v$&@zgNt-^2k=#MzTPIBIHwRIgju{3ma@+1!
zh`tlQtld4PFuQsD^2$661M%|cX%n!UM|6T|22}Ot_E-;(>b8Et_+GvZGSYmVDO%TP
zJ<!&`)rwR#8Q;haXNB^BoMzL8hA%rrhAfZIl^klU5Iv<S>W9MX-Y?oiI^FO0vl<m|
ziSQbOr?JR2&k6r}&I7erFuXx6AGL+2&MYxjqqHk2o%&~PQDQn<ba?vxk^!<6KMnj(
zl6`NiwetbT(7c!*-+6R{%u{Phy-ugBXgv`>y`Sk5ud2I9S5ir%CR$>SQyr(V!okO)
z@+uRKU~tL0i(unr={`H@JNJs_yTAWLJ9RsEz`ULSiAi)WSSSds7gOpOZgs!+T+C~3
z9THd2_shzq>0)Q2W?VfN%Bm(jZY8LfN6=cq8+0KMQFVTg2}k{S)vo1wS5weX-<r%S
zcieHMjv!!t!`h3%D;cfLvwpSUA~xAQFasie^BvqdsF*RNJ?kh2X7E2g*G3=tYF(6G
zzuVx(qf|*WFi}e|O<|q0+_FcO>bJ(X%qWClK3Aw;=0&>Yg4B}ZS7bRW^k}bTsbLf3
z781*UI=Q%G_Za&2-WhSXVX9R{i*)2*W?3nkCv9tQoW$O`c<g=?-DP*A0-peyi{v>f
zvL9+7>{1TZ;B`;4D2ec5NTJzYj*>?y8-;aznm8i7K+8=B)v<;}*RRrZJw>jJezfz=
z0WDABm^%FPJQ6^$7lt=N_xMajRX&efwfDzIM?Rj+Ci+fEo|MKfI8jDy(_l&PhTL>@
z_+E9hN6P$sv9-xViylE<fj+%?lj!`w?5Px<JM8yb^Rf9N<NnocPFUyr1jrRWKk;)^
z!vFr*=7qvvoL0E3otT6@IUYR+#<kQ+l}>CXf>?i&b?gDMjai*9Y9cy4t*oDEftKC&
zO3+sWWO=EnC7!4>w1pMZtA8$9mgj+dI2HJDHPd`eN)Lz4%SEH!Z**b%aVj>WPJ7q4
zlJVa2X0y$9<gCp}z|(V?IWZcVDkiSKO|Rr-Zsu-I=}Jn3QJv%3?EYeO614;CsN8&|
zIBUC4T*Nz9Q=1OnX|mus3ooz}>1_sInjQ6B$l90s;QFBlPWMj<X6iqKyR>vhY5{aS
zK)o<WNj*FqH<cl*71S@am{<G8QU$KA0M8&*@C$#2(Mg+SyK_GuO`c<DQ+n$z`?_8p
zV2D?Vxnz;N1Zo$WoA>d~et@f{uX8x5262h|5m>!deW>SLOfSbH8owWebxv6B%_M?a
z&P%LKWzvmkoFa0L9Zmt6MpKNt!<))W{oO|DX{9+CWv(VIL79`zUiAm9YQ<W4*C985
zP!Vf2#GV0=7|C-32uP_+Wk0*ORJS(raCk@Y(KQ1<U&3a#9Z_1xlo~lhZ610kC|1`G
z2)Rtr->*92`7EvrRT*Q*q{(M|BKpR1F%Gt#{Kc*D=yDIM=4S%2@f(HkfjqLKSK9aT
zE|-i(YKGI5-}A0zj4csxgWHpHxo#hdj{0^lFI6%>Ras-0XEw84vPDcTy=?mIxt3F_
z05@esukBQ^nb;v=$4<Vi)xCqO#n8?t6l?pgko{eg`$_+yP(xE9F|YN{^y`!|xnDzz
z<lkf26pb0Fo8&sc`6#VzV4Pk4iL;Qfp<gPep7nc;m8P4<*~I6A&d=qY7E67hq6)Ce
zKK7zOt$E$G4spIM<-yy+yNh)ynWCLub^(+V+i<0Lq>hpnJ7U5j`IX@olD_759ifrP
z2Q%tMETm9fQk-n^u;s^db|jxrY_MXbpFZpw4pyfXSVN@lpPeUyKlrP%q2q7U>+WvM
zrS)z70V(|!K>zcHH&EUJ@bK`{5Y>4_V`u?*!J799G~6}<SEH#&qKi_`(x#AKy~@P&
zqpuF3T!=kFG9?q{5f;6lWgmGsJ$w^$`Mq(8ksgU23yW1Sz#mDmBL=~a=BN&}k;Osz
z)N0;4ZwP2dk#bUqg9n>r-2{fwH-6;wZwA&_QEN%#X8Wx71oVh~a>zt=blJ8g?&1<`
z(0(m{DUSuzq+Q+J@ExtIr^p@RemUkNf`Wn$CN^+x!>L?(Fm4Bv0uO*`q5(iaKz;Wv
z=g1cD5=Cv|)UOi-W&;$#&Rv@?f>_mYDkCByLJ9b^zD7qoZac#%9q3ICpACGcg<rW3
z%o~b{dD}NKGM%a99={Dge>TsZ$eydTy9?Ww(A_z4<ScVGSI?{EvI=uw8LozmRHl-_
z{gLYEd-Ei+6OL{-Y!UJfax%XpT>H`_%l34DAB?GOXkK98I(mHnYzJzAf)+*Nz>3`I
z<Ne}6Lw#QD;n?aJ3NJYGmGK+hZQBk1B4Rx;7UbNf0-_kO*ynT&*-X*UclZQcddF_T
z6^O5q;siHh-=)oSs?`!7G{$+GP;h`Wes%cd<Trg9d8frbUx^}@VHO@`M^h{Nh*+ik
zptjW;@KU_L9J5dPNc4lWw;MfpHPG89=EN-=`X!6FRZIM!3;Us(zWyW0s6O<dTEKmf
zeN*|NPB?onH9PxNVfbr&zg5=LXfzJgf+oFi<uv+}L`2_wysbJ>eg=Z#CTqPlsKILd
z{)~sIsx{6>YWuwH8|1Kb`SfbzNuIY(BNKb1ZPV%@eLuCr8;%t6rC!$cj+OE}FZNxv
zPE7j_h^g$Ah7&m7Eu1N|;vK+x5sZng?9W#E0Z7YlAEQWc{KP*s(ed%=?zPHiHOptD
z=b>MIxe7bAxZV0jzws1#^v&ciT#Ml(JWq$%%%S0w9{_$9k^yeYEh`}dO^p_>8?UnK
za|L{ibol5kPz|D{=j#ANM|hc?WH##>Zk!JL>)pws68E$-+~>|dLuq@dJW-#2q~H{8
z_@{Gm7tlQ#h3*d>lcJ+yGC=PON=eQIv4+Wx<ATM@;pzJhg>T?|!z)~<kUGQq!>Zu@
zt(Nkqb`#y@TeXkqK+y-HqOU-y%aXtsSHubGS0LD3t`XPYLuYJIi?lNq;U6cL#cX;1
zx)=cX<QEViE-4wh07$(7+C3ILW4pU%Us%B>;HmV$xYR9DVymNOt<Oe-3A(|otCQz4
zUN`byo?Pr~sD$1iIE&>y@=lD4rI8{~z%UK!wlnl$%KEX*HfP09I>GqI^OCxKCvr$t
z?JCuA)z(SM6YBgw9ygrNUx99KxPF}c`3cTGLIFbYM=+UE`p1IMM@cNeYsNt%li{}#
zmjfdLdy(6;5{&+T|Hp6S@b2#Wp-Zyf;InT7TCBF&0CEsCTKV4V)&F=+HDdmDBXffU
z>A&JbIqEY?`l`#xFA>+n`Yk}Y=s>wb6eI=Z5&x_sof+Eg$mMZgYh-_`S>FK{=8wFd
zUj~(;G#~v3b45;v=YAh!IsO020f6*i+Z>u=X5ah>vsdDe7agUC<31Y|y4S-`frba_
zg7-F@ttxR3HzP01$5Lqje2pS#+=nu}OsTg_(<MqeFMn51{2N}1r~?(GAkx11?BV&!
z#K+%W^KaD9?mond6b?wHW@ZZFLuA3pu4U_oTJ%K0(cNq$YIaV=j%FYxrcb+jdpQ*q
za!@Z`<kZwC1%A3bIr+H-0|V1=2Z*&(0U@p=1=^Vgq?ru>ZOdPKdqo3@4m4&k(9l)b
zZViodwn@<R|KsvM{c7bEoK9G>&k*&qABDePqzuULT_c{d;!NWtOopW_Q%XDbHpgeL
zBm3_L(Z%BEwdr2Je$DA|dAP^~Sn_<7kcbA#AlfdCX1D6$)6>&vuERPZR8-XLh6XhN
z|NS-|Pph6gAR;2N;{eCa%)~^~z6nfs<z!|G0u$)YA_v?3cM*RF)o-ueXXsL>=Wa7i
zuViOQet##<oS|Y}^GI#PzE3E}iCLOvOen{HoJqjCX=>O`$<EFeb9JpZFf>%92o019
zq5}lEY5V&6^tdgO1OcMUCuL=Fc64-faaGks$#mXDD&sL8Zf=94rRLlubgQX}36*J0
z%U-k3<iEdI|Jvqk-ocG_ZYqB6C;KlUz=!rj1}v)JZZGFOU>F&g$HF?nCB??GZ2P2}
zjQ7$5P-s(1u&1Z*wR_u<MGr98o>XXa7v`$NWp`%`_jh&*I`gwgHL`GbXU3)S01;N^
zyqlRxrxfhfKUc=TMdZJ?(}3p=%+E(6BO?i%?UOC6o}t1aAdFYi(a{}FS8j3Nj?9Oo
zPd+@H&Ur1-4*UK8cj6l@l$4YdCywYT<ow*SsQ=y8HMD<7{Ibr;*$IY>wKf*$GUStL
zB<ZTY@y9wym8#q3x5G7HSl(`bhA}uOXjF@7RSwNd9SjCb@biCO-`d(c17s34;t}4w
znKJbC@qz9b7R7fJ9!}vP29yS(2L~nVffA9Fi%VTlNXU_=%D0B-N;tv6<=lZai2JER
z1@7BVM--=fKn7>(K$oVjN9FGR-tc&(9Tf|Ul9ZIR0qfR<!HF4vqPLDA&3<dx(Tuxv
zZ4YUB1=>2F$IxX&7l=ciNz&UVZq0vrV19${=<IB?+*Aq44IHxS><jq)g3{4J4obiO
z7Gse6(V$<$w76t!E1^Em`m@5Oan0v)_iH;-6O+*$01J%+eEP%zxHLOASKQLF1W^A{
z+X5Ol9zJ(~ccjVcdWKM-1E*kqC$Q!X0hfVKii$a>C^xtpYrlRObojyBJ>0o!T5a^l
zev*?T0ywtg)5wNPw!L^?BO?hXCno_Rx96$hHKTkTRm6CiBcY*)czSp+4d&bp%nzdf
z<rMxiW*NT0x9vc|B)_;3{TxmH+pFO{jFvyhMe8l}HK*mfu$crxPD_JiM~tyliZVuO
zG>~W=957K+512Kzv}gsg1hS(-4X&>n9FU^<eANHIjfIC-0+V(;_e43Nq@kG*b(s*x
zini_-GQq;ZF;DvGGmw;oy@%Z~+|a<;j$)bUw91NRnc#qggf!deT*m4--m(MaANwxF
z-pBtDm;bR(=(M3?0@6{4pVDA(Z7W~Wyp(R@f+Ha#+cgU94LLNaWUFa+z36fF*MI*X
zpVIq5rValBw~{qu#8&u+wS5<d7Mz?1t7T-~+>21p$yNdUw6O`<qZ%$hs$Lg>ZK)TA
zl`*U<rd?$c1vpwOqSI>?m$6ySWea8K^Y#$unRlk8rE&JHXYm9HaOtTa3VF!m-)DM-
zcBffcBOGX#oXp(r3~Zg8oN%(Z%M9rPG`NPMwcdzJh4}rz|9|2A`v=tdjQaW1`;f^`
zIWKVNFtg9;zr^EbWK6tRidd?*ZlBJ?f)PU_&%xT$%z^O(FbL>B02&bau?>928ld`J
zbt$0%^uA0h3}idlP4i15ot^g4=@q@!dcqnW@;8>FznqfiFx<a5ktLcy(QB^2$7i4P
z)Srx-h}i+H(vByfXeaH}gkwfD-)#;h19A!u)N-j+aaR49tNHa-Wlfa5#J}IB|Js#+
zBllSz)LV-;#g{3Sr2lb8{`}UPnhY7lF6rLv(X~9UJ&bOseo&%PA(%b_hycGQCMIQL
zQ@*>q>(bx@ED|}FMT1%Pn(s-BcJ(OxB%_nQx{KnNRrJ&A<#!D=DT5ErjxS<w3YktK
zu<63Y33oj#LKGAfwj;Nc^8TRM{q_y~^)`6<pGm_2*~1I#w}E26Urf!x{0g$!SGS1K
z#U0FcEhHnRCQD08s6gloC8hI#mC}>V<wx0AK0w7>4)!;Vqq38z(&0ad8OItD#C^-q
zuV$~5^H;UbFN({(;VdYliJBV|Jds}=1dbp{X6~>2WhBVB*h|#C-2%U9%>23I^IMb1
zy6xy$<4!4Jjemxe2M59=*jUnbnEd?XxbKG_Bydh%V9>J*2|#{z+~prlJC^vbQ|s?1
z_x^30RcwpW8;QngKLw>^NQ<iiUoF>ICXYKFmQFj|3#6IR+v;acDlO&Vz?2F2ayx9>
z<GsSGH<L03j<R(M6!NhD9>IS^^9_|Z@2V~{At67YuwBZ-^y~}>MFU`v<bWw6I5-Lz
zZvH4N?00o_wGFYMR{QkneWTOC*Zuv?NX-&f;CLnj<VDByWMXCkVu*s0QjL<vF~1(5
zf5T)pL7|yjTr9cdK7KD0s)VBpq-*@?gbc1Og_4+{mTnckfdz?nBLphR|Jd;{;h;ms
z#^wDbFUK+^NP85_8R2Zx8o|weB+}^1ktTh!6-sL+4K!`SS7$djZaIq<F>P)9&8z4*
z))i^KL%<v}45zT0g+(!qN;&`23@1Q;ivna4`}(5EbL#3;w1Fj79qbAaRNXu%`S`R6
z#>d7Sg3gPJX*7?XFjOm~r>(&lAeTb`y4|jRau{<oG#wh;>o+6_|MhSp^nQbiDTWUM
zdx)K_tmq_i*ykb=@Gk5ebiVflg8=2DdZ0r?laWIi(S0#GD*I7d`Y=+*ezn7&36Qvv
z*KBH9FxRMv<O5I|K=Ix7)zHS#k@e&TJaEMx-yct9)NZ&e+42-HoHL-}vzh)g;dy^j
zNf7gOkR@0$v8Xe74R<q`Vf#9f7MWJNWdYJw55BZY1k4rqB@>g93Sp7~N&hKFz!oDT
z0_g0a6(enIZhlEmPfyqbR4l}|$~5XfAutlvRN;VNgi?YV*aHFsL(0m^cttsiak_hZ
z&As#MYY1$m|2N1-=v|83hFt|d*Hu>A+vG&%T>`p%nr5s-L;?U`P=Augelrx^SV>XQ
z)H)g2-l>aBI)#FWi0A;l`xh@hjf;y*m3kZuuug7}ynSbPd@wA;OlV+|@3%@eB>!WZ
zEsf+iTr!2n{YrBlOZrJ&jpBUL5EWz;z*|Pgna9=?7ay-K_|d_b+v0<WNZ-zQ-no(b
zn(jC+uC=xG0Up{CHxTJXBUxElwC&{m@A2^2HA~9NW$o<j9GJp^Cgr;z_SJ5*H4gWy
zat-H2N4HA)v2t7IzOSS{Qr+xUb5(uSAGLm4X#QWS#~%oHW`>mPl(FuQfZ+gl2ADM#
z384vHIbf0nA*-savjy1u$p@-c({}3Jhp{c?hwyLD#^p(_V^tW5i1@oh`pD;)P1GId
zc9UKIdFP*gG8zxRp4UuFl~%`6;N{EB?Z|F_>ppghrz{aqH>uk@U96flZF{CSxv@<K
zC)#52^F1JTT$Et<#PC2ja&vRzglDO>oS*tNx0GIB4IMwTfWRy&50Y?QbYBZ&gFeXe
z3Jv_D|N8q^|6`|G6!@kLo+&OZjRTUqJ^(a&T4^hC8N>mRN&p+ZfubwXsUo-86O3>O
zI2cX8AN28oqNJsb&CVtPJLa7Ni3TMlC5qoZ6T&^*##3l*t3&r7;gJ`>N0U%;%DFeY
zuRG|*?GN2)0MinWg_0!v{!mTeF-;~WGe2SI4`Nc9VQ-bu2QpF+udlA8Da#5>s+X_I
z*%PB!q&{?$NVw?Kt!oTM5pPBGfw8=zdvbe}_K4Op0`bR|^lZXMI`|$=BIc42OaHO7
zMp2+veLJf$?N73~3?=5&8@>e2;m+qj^t82pX?SG{!6Z>(HZ{w)uI>X`ST#R<^Q82F
zT5u|_bYn$x+^Tf?f;**g%6Z7S*{Y0Z8q!4eKMpnESKi^s+toxrF9F%ssFPX>X16mF
zYD=KtnQ}FjMnyv-1%aj@qo&-JHB%n|;`Y<@cZnf$Dzw<Qc(h}=UxU^(SA~+|3EM1V
zt5KbXhmN%-?VICAchb8!$pqM(@Af;o!-D0XxavPU=8wd%h@u1Y`gx+`f2`4SuhwiB
z%E$FL%g1wUynY=Lza!q}I^D&!k!O9U@oFF>1#*A^Xw<g8*)tx~0w1t?v#0(eBJfC$
zb5xNe95t&AQn-qX7MKl#vx|m|*}{?v#`)MEGYDV73r7E*Tm0`U8aI5>twg7?$XeFM
zro8l(HKGdxgDb?~38ExyZfepXEEWC%nVVCq)pRK+R|leP(iIB}YpyYO-bWJXiEOh$
zKj?RlkkB~<rOEh1%<3NppPQPPjV^(F?|rL2L(;9l8lI<zk4^(A0J&(x{Pf``s`=*I
z^yoEL@+vWRl`Gi;R(XTS`IZ)!@#VgQHH_`1fS#8hxxoB%N^b`eh_XnD+!KUhMEXbK
z?o}R6y30(<Kvp=q@BcHi(jfBwzROgv;wdNkvQBs1fJ5FzNdyU#k_?Zi8^|F_%Q2LG
zpW6Q`LcAY@z9|O^A5m=r$D8ImpFzL`MOD`;YI|>w8U+RA>3n@!$0<MyRD=y^_5DoS
zLjI0GH2f69_sMPhKiO3Eq+9~7BiOu1kp(-rdAK*W#P8r_l8?2nZ?=-xE#xlVy+~ww
zuUH!vz{~wm!F^h5oH~bihDU=I5aul2DU$svxrM>7MVh{ZD*CAD;sv0t&_{LYzk>wV
zffDf2@5iqRk?*FD=+qJasK7^4p&zbR?SFCn82=)?vay=ek-@ebrhjpExF2o#U-PBE
zvL<cv(Iak)o7>yHOA;U{Irce*0F~<v@WuhEyjr9y;6gC~NGO!?%q6m+=#EBz{d%?$
zj>nZ<QSsB@1V{!)W#IYO;fe~%VzsUAt4XJXvHg<i_cf^b8g60hV$^$wqqg`wKc;K<
zc?oz5D4maACr;IKP%3NjI;R4et6DGppi3L1|2l-tYlmb?IAi+4B9e=oW<qbYetJ=|
zJy#_BKR@oG)VG3ykGsjcB}RKVmRnSd<m{jB?|)@XX->?2p~7K1)#_Vp))GV|53v@j
zTHjYOpX~l<V319y_G(J6918=-wqksyw^uYB<L%pRh)SbsxsG?!<r4UlygYHG(a=}G
zEm_>wwxWfOiptJx`dkl4T%NL6;_{V*xVT*6DgZ#)$+We#b$bne+F6v5ArSH6pcC-!
zkps*fDqX<fy@zrROmmrIiZ8ahnq~kx)j+eWPnR$cRKIh$z*yZE!Z8V5-Hg(K$A4dj
z|9pN!?(IoF(*;$}NR!Zd2N`gCj%NzK*pCtkLGJ@Njpsg(fdASCKxu4X$A{9<#S7@Z
z2hPtO`=@Gmv=!d(3U&|Ptq?X?W}!x0<h}J95#Ar9G}i##*2>#9ce{9U_{I3)B)+Lr
z`kexmIdzGHGkGU5YVo>Z^pO+SRKv^jZ?dj0!(M&)-rtaR*U5M1dv$%iW5CVNg2byi
zaFX<&Np6EUq34C~r>}`*QIz&M6*c1NS+p|C&k7tWZ7l(ZA2r-yrXZImoQyUXaOj!z
z8Ja9oCYJa+DH<32v9O?Ve;HQq3CvMAJOIF0HL^XB65h<+1r9YM8w&~t6N4@U9fIv=
z#&RTbfPLvNWGw_FAt7N1Kt`MdUJ{D{9B_kc`3<oj7MAOwhTCaBVOSjydl&||3hCK-
zc>};SVA=Q(yJqj}C}TT2CYa<T)W`poS9w23d|QSGt!h3;IAEapvNmT0fG<(pS1Z1p
zravNy;&ki*>GC-QD5fRAP7?g?i9LEI4<#pXeDw?2#Ld;M4>$nkQ%p_xO_HzihPcz5
z1?|3!^o^FgoSa@n$Fg~;wo(BeDKBPWH*z%h)Lce{=Yi9&m~IY-S~%Gy@%T_l#1U$Q
z4gjG4wM+f+q%H}X>Qq`{CDP!pN~xfXF1nnN`OMYvCx^G_M>xDNSyX*Sd{9<q<~pEl
zqSj`@Z86vT>L~6w9R4WYcqDCdYjZ9}s9`S&8M4yOL{2V>(P;||ka7wlaJ%VoBOB|z
zU<jwcK|{-GHb`=kdH@U+9UeEauQ8SX0tXAV0T2eTx}2Jv$7bWU&7}LY>RIWBhYs}n
z0Zd}A1AHjET@qYo7ERYI3-A97mp{Y3A(+1v%>qbDRkdC(1b;1$d=p`ZZ0a8X3MpH$
zL<_hH4i1)fS!Ha;#HaWs>Er}z#>b=pYC!^09SogKElzqc(`5}uGy>_h<)$;)DVNu^
zHw`YI_F-y+#$Bul8feD3d{8oti1};o!2HhqdUq;47wgX6269#>+Eydh5!Xh&7E9p>
zhac(_WdDEpBk;VfnlLi`B0Qf@JVy9KNqhc~fz<0EqH)HwvjH!y_AJr|CvRAZ;^~!*
zjSZDjLC*I%PbdhurRy9Jr_b{L8dMI|o?8LfM^x8=T-lR6K>#!oJ(9w)<}iV=%STMu
z-GFlQIq0p?ZkcAIl6K?8k(=c%*u}-fI`tq74D{pe&bH+iL4QT&Hm7&nH^M|N<8UiN
zX%36e;{g$|Xt2(4F)<`jX3_lRg}z`J--eOwoScsj{s@O(nE$N+EyeQgi_W946bhPu
zK$tM<1O_I)G|-NIc%P|`xdkfiK4zoJ6dL{4-qVo&$Nf+O1-^CK`uH3!OlO??8Gq9C
z`(H;#^niT|@z;eU6sPyl=-jkVe{@6l+@+o+&Yn?J>-vn<-gPn}OezdA)$V*o%}XO4
z%#zn<IlWAk@to-9bUXY6!EicQX5E0d=^1-*v6}zvDbiQB^KX^py=FK6?Ba5Yx6zGO
zr8iD3*V$&7e<l4Y+yh`NjxFXKjVfp`8fA{8^IoOrma0}V6;1|SNfaw;%hi0-=HMr<
zdo_=`IOb{5aNLT1057{C_6DSDXHoT!<}d4GVl>9apZLXX(RBMO?LubF)%@wFe5l)0
z-g^L=*C^r_I8T3GA2=t*;CzTnj?|wkyRyRHhw%#Z8VUbjaJCz)cYeN@H*W^><`w~=
zymf+}2hdAC-8!8xYTs<-^Y!&rw`3CLXwB5AROBA~YwdbdzaKq<PKL8*vRfB>4TI03
z+4)f*0siPEgI@#F%d$kL=XpTeoTw=D+qmDBpcpm4-r`>-lT}pD>5hO4#K*vP7Ktt>
zD5}`)b^cyr-(COR^JwqJ|9HDrlTW#pl~LCxTBq_`F+T!mHMp|cW^0OYj{SP+vV~k%
zH~e_lCFm+T{Z4pa?-EqV6!QDU$SFdobF5>I2lZ}mch|wAxc-B%u!<!s2m~IgMs*d0
zN+pRb5{3gnJ3uFV*KBVgg@l~E{+)T!9W_rlKF^#fVi2?wU^qc-StD@{w5xYnriB6t
zLvxA0(6t+o{<VW`3qhlzMH?*C?a^xbVR3?9&%q><rHcN&zj>#TK3yXqzkIT2k+KCG
zqB$Mv@pc@iHH|gVF)-A(p2poA58arom$(I7-p-hpHIu;={ZYRVK!5)-EN18M74daM
zeD=05N37S}LDw9bm{zgL12+~QOSdHs-bcv+UK4oGy~kZ@p}QxUR0N8CJ(pv}oujsd
z3`?${`WoQv7ZA<wQSN3V*q%%DdjOB$88s*vOOJIrUr<_Ei4)Y(+ts7C!%q1L=LD7`
z=hz3DQ-<(TBRoY;cX(}W4O$xeq6m4b6dem|BW4|$4mb7=D8=Z_ogga;`DhqXQBiuA
zO8#Ox)8ge=IV$|PmNa6nKQnd4M_2x)Hr&v8-`zo-YxbhJzI{^?>RNF70N78FN^;cf
z2Bi)UDoE?$4wvfb>2V%(R}y=aBmTXWeP({nuCzDlBjrx{IT8-=jBnEu)ziylO-@O{
zEhs6OoL2E`_j!RXQXY-YC3d+#n{}!;`F=%;ZP8$o%Vy=Xqh}5|fDlM?bqu)xEWgwq
zH3fxi!G{<PQ|DqCAjOb^ez?5n`!SC6AYOaXNxB@*=YCx5Znw)^<Os(RpGz0D^O3DT
z8pms@@Eh7Yh&Y{?g;*%Mm#4=AAEm$sSwW$_%Sn^M4&1rFT?jet*XuQ_Xf~uKQUcsX
zqU!VT5&E<9AA^Ci!t(;8OI7nYw`>Ec08NnFqO@)m|KtP`H+^xZh)oCn26urJ$JIk0
z35@=&FNR)XffnCHZ2h)yp7!H+P^iR^f}0NQ78XsGZ?2K3$o2OnR~93rwQOCPOnL&c
z3=OF=Iso7*b<9QJ|8UOc#AhJix9>Q>Lm$q50<_@T<HFe~?l*WAp6DF<JwO|L-lv=U
z?-2h0^%rN7^FWyOv?o67`gAK<0%&N25Echj0JF^lJeLc^$P&_k%QBF2!t5%by~5jg
zT0$iqA6-syxtxlzd>p$l_w}U!=d@HVXSM4me73Fzn((_YyB!=MK$%|OJ57%)8#4d8
zdxL#)3W*i)<$S1Hi6G!5f2_G`bQ2tp&ZUgnV(|zEOrVM%GFjyaCS?G0*4=cf^F}cX
zIvKx^z<OkJ@z9mj)sBH{vCtO{jyZklg6n!I)9WYEPk@nLw%cH)iJ`^%&k7w4x?Bzf
z6bf{j4cS5^o12?8vj>1$6CGfWjBGJnlAj+5WV*ZODNq|jh&90A4Q(8NzD<d`Km$sv
zsgs+4$}0)78z~71-22>>Bbufs28!m(wf1FeG7rETx&cpE&wCMI1>9ioV8RY+Em<_B
zf-IBddB*9uWB3PsTNvMr1IHYOgL*CxGl2!@4I*L;@a?Xv&%3!fAj?xsBPSV6hX<0?
z;6ODD|JlwoWkp2<!R*dsE?vY{WwK^9|8gsZ3~W=9(RWZ+vmqhoZ-TYtR4Fka!+W_O
zLU9YGR=87Aga}_aB7@#Kfo_W@rYCpo@3s!siVih@qGF*C2?z+xnUgoQZ)*QgzGODG
zPWicukHOA9YA2|R?JfUm+|yH_1@cQZxANDoz%S`#Wt6#D{y=|9JO-7S91$nC*Ky}l
za0;j6r(>`#jnfb0U>wxE8+h5v9EqD*F<aY8W7-%AG0alp{grFK#mvcj$5BJ=no|4f
zznHU6X$t=`F>*$W_WU_=!gKE6Mo)rmF!Nf_U&qt8N0e<~&C`5$?q2DJOe$-~l1jvF
zciYmm;rx6zcXu`}lf%5kdazcWKHob9IGZ7k0DtI4?)_T4JTWbrZdv2X(K}w;UF!;b
ztLp3j4e}Y{<eI^<EN<`o^@)J%FivkUnG%bNf|(%_d)S}a&qoTEfzQh>X)HuxCh7Gd
z^+7Ui@x+U)ZzqU1P389W^)y!tC2`h=ZEn7K6}iVNf3)x9m1{`PQNlz2foP->l>=az
zH>Mph>i8YNP#JxO01sm`fm}_CU?-qkU6Ks6#4xl;rM(kuf%Wv=?c6N&%_=cIO=6a6
z@6W_tK5iYgR?p_}Y^a~>Kna_(|9u6<5Z`6x`Gyp&)YA;M2yIXg)bnsgFE1|-%br!W
zCypZmqZEhyNDT81fX$A-XCA~j5Q+?LEg%#Vdi+rSWOQUoXOwpA=_A#|f{IB2UGBYj
zuFJTIkB?7wI(ZaTBmieT7J<iA3YsUdrR^|B-A48%vbAOMbpN7=uD4RV>;wlQmrl^h
znU@K8gGc4k-rp}?G6I1wyb~jZIIs#|d_8%OL61H#tO;}%Pe?W<o?jv;`<g6=?f_f-
zji)zLv^+TnJcXILIdEv&N?+2$C8ME<_5))Nq?dQDiS`4uYV2k=Z62(YlyYJ9vQ7mR
zm=cPXjm*MCod`;5Y8}VhhlGrOCxkc8y{W2a^|t_dwHQiy5}Lsi?(YPWA@YA`D4qZS
zf&c>iXk+Podou3<iQQu70lnu?jVcu;o^l7C2gP*|pn}3^n)?p;Lx>$`0%`M^6jU!n
z`U%n^df<Kdipl!vmtdfn+_gwwb4-y?s<VTVs9i+=^yA$DC?qeHhvM;UY}!$q_<f*+
zgKW&wVnhod;t*9hR|wi8Zn^=cKg19O14T*T=JJb6Ce{X(&ZUCRrm(#e{t1663qI50
zyf|E>esbV!!^y3vG#)Wq&8i297LNn;1<epyLJe=x0RXuI5dJ6##E#YtH@7MH9Xk4}
z@E^U)bb#;jnAA7EAmP(fJe-~KDYO#q$i!+)IL6h~%Bm`bT5nsz<%Ifx8MHMUTBHh0
z=mfFaY32>WI$=&N%n(x~AIYGPQuPs&FBma5Up_?$mDyD8V1f&Y_k(!b2wz)?N@dom
z<LiT&pKdgwP>Ua*rNta9=`L2kehxVhuX_Ys2jV@H8mK2vs!skNV_zAN)wXr5i1Hvv
zi%55eNOyNhhlF%@w}hmGlG0t$CEeZKjdVAX-@<#(Iq$vq-1q%{xj}tm?X}mObIdWv
zSnUiBlR4?IkVjoH6hxMgl(a)JjdR0JPa}-NUwyXL?Oeq5?XQsbB%Ig4APc+v6Fc5V
z2&?`dQRfWWrQ$;w$L4tMA<6Xg^!zZ|EV!*0kD&3ReP2n`6;`GKx=&cwFs=Pl?e#5h
z$=hwYC;5VZg}8r&Oby~<hdnio6X19}MxZRk@DFlD72svibTGC^xRUyYBJs2=A){`P
z_M25Qo%Ls_=btnoC1D#J|DY^^=hR5UoyjRGa_n*3TkP%aHFwtNmZ~Lv`*_{3<8!G&
z9XPUaTlE3CsRq7>Ab}$U`WckhVeybswy_5b0k7?b7wSv6=fP?PgYYO-C{UNbd|(XS
zNN4-!c*2#w?=#@yCV`3JDfLHTajB^UDA?F$ivDjrtFGMq!|_(!Aha5@BHFeGIe8}T
z>6IKMSzC}sx;^Jk%(rdJY^e6d){j=LaDv?n?d?NdGq-&H$~haP9wAfFqH9F1tOUEe
z5@K`xGk-d@g;I&%yzuV#xWlz^`P-C&*h&f(<8ib*5_dDuoLMD!f1kxEO^Lh~@aa3T
z<An>XSORqe!SL5I-2xI#J}#$u-yh--$sycAf&t%0CqS-=9iDA~;Ir4m$XGBla9++S
z>i5jj3d<6nw^UQi-)Auyf%>i$$)qcsqnaSlq;u8jJ)OkmnqQK_*~Zr8Pf)l2PySOW
zU|G1U*Ey8{Eqo#F>s^LK%brDtS@UDij_Y=Q*)b6yX-@>$MOXA*0A_IpU4~Qmqgs;|
zx>r;D%s`Aql_2fN^&V*0pXm}Ns96#muE$$$r_KSFN5HHyeL=;w8lactU<S>*0*QIE
zIZm08!v!^|vZle#M$w&z2T+2i@f?oq{9i$dJKBBC2*j3VDtajwC%Va!JxD=hl@K+`
znd5YIfYY}1@bGdw-XgndU=nctEWFr(KX7_}E_*S!zL?8#P&ZoRn5OO`>=(CVEdS}R
zTjU{_qApbV*OdIJ2b9W2)`zl-Mj32^KhoWQE#Xfop#JL7QH4;}JQ~nWYIrR7EqPjp
z_F~>Kd3T}yJ(4%NX4jHF{6Zi8PyU=^;2a4H&7i8Ps)n?6a8NX=fwgVch@_5LWVq?M
zKUe(~z<&aRX$Jtg+M(^c1eWw^?dkpqI3rt-PY6D-wjd-y4H_eP5i)Yj1P2F4z@m~G
zHD}Rw-HU$sh+OPSNL@3v%La&FErec+uP`5GV377_UtAFQ67jfWUKEkC*<2QTO!wM#
zIuBIas^te(iqmR*<y<47vgktkZfr(7RX<B`(+1(WHVdQHbc=}!iwF<@0Qe+!;;Vm4
zeBwPI;6;qD->6>_{j<XVmy47|q`zUcbo32vj0<fLlaL6(y(MV!<->jrD9D4$M<^?j
zPE&mY1JRqCMl>INACZugi^4GxL<(M2S+CmR_B6B4(rsfP#&6>7k&=;_Hj{Vg^?gQk
z=U-CI;*610PU?R{ioN^`RsUg5w8*5RHpMtt1T=A>@$DEK2<QeA@`^|LwMT;$ri6bl
z4%;-_TkRXCY=RKwNvGvIyW9*xb9`3aK&r&&n$1F9$4SO4dnCQ2Q~4$HG4BdXO88u7
z1gq@+cIb(B@nI$0H|keJ|19GFbtPnw04EJb9A(WvU+kH)leoM<{b<$b2~NyIOHU^P
zScA#d)z$q3TB&2&L&)eI7GQe05`XMFtiHu@VeLM9bqZ(r>m9R3(~10&D}nnrPH%v*
z%5QFrdgleu3Q@&nlS*C>IBNdfDP8^pH~}YifNhb2gpuK^>zHFTdWiN2`J09)v+)RV
zA_Ds1S5vdT*x|2{kvVk02a%?|9nA`pnNt%B3POQk85bBx^d9~Z;ZK!11#+7?x=?H`
zN-~)QBiTYK*fSG>kMo!s`=7S`^as~}k8S)5u=S8V;*kLEDW3Z(tJxoQ_rIZwO3)V7
zYv|owT}Dj1c^WCkJdQXAz{#S3SeZU6DpeYP$u7oI0akz4;GoyTg3ia*wUKmi;qC#S
zDXmZ7S{y6E15DzK3gv~!)i2Ojs9s%N<a^c=^9g|CK1Z^{NEAz3lw(u@&mao8v)Jr*
z?|OQA^%RcDVIfB77_*&^_>QY~ie82B;o96>(z~KR<fs2~v;Og8iXx!SR0jFI{`-@e
z7iu4ZAIZk=Pejc6JO6?A+RP!ho!KI)dpR*aVON7o72Y&X7#{VF!s*x5m6)4bf}oIy
zgo0ki`K8%`?awY`G_x76!@uPYgSWPl25b1;DfWL9iU0CBmO^<yd`O9mimL9_0b8=^
z5$Pj($LeEohycV+mx+nV2E2hgn|2E{l>$5Ga8`Eq&Z&u_A1EEYct5-gzoht*Rr2+#
z1f}4W@h$&MhFI=fHz)6IbYC&cUMMK2nV$XOx(`e&f4kS4Du~_yr_JZgMK~VklK&py
z|M4N+BOY-sSNjni#4{}CfaR@;;1v?8UV2&v#}J0cLtr?NFuVo$Sd$_*FvtmFKOWGZ
z$=If!V+ycvaAm@en~ykVE5#yeE}Aj1u<|(*01bs*Lm<HHN3#!%1ZZ$1^!7*DR7|H9
z77ir2D-K#WR=x-NU?_?)z3sv6a_Z{&rE$B{oPXPntLlN?)IOnnVsHXJX?+YYz$<XE
zapC`hDF56E>>^E0J;4g8+60nb7!Mrb;wj%4K$}3%Si<J;>;GLK0Bbp_NEdbW1YU^G
z+jE;NoQ!4$)jX8J1WsqUV96meXid>ZyRENHvxbEz&E@(M4aM)Iar(b@rKo_-Uwmcx
z9pMDLUybymWLS{!D?M>`cD|aMo$aJZC>Q(j{MZ-T<*^r$NLWwbYli$UOG%Y_M>_6}
z$ET-gbaWd{`h^!MU%#TfeybOth(`vJ(5p|^%7FeTzc60+F&1r=#cxp}Kt!9vasTJ-
z(8uLJ(4IfPAh>V|cr;O$sEqECqw65>_qURG=mPdZ9|jW>vu$xv3+@5(e_$NDV)?)n
z0cH%1B%hHUL_wY9w{bjvlkXJjudKNQHd{LmfOn{U2s}r&VP<Dn^Ow;C2bQ!JXoi8v
zIE!Ld2xuwJ7vG20lY7_x&;o#x!=5a7pG|OZPpsiB@PtI-lc}_{bQW*s!TqN7v-$+y
z&r<o%5Iv)!Ub?iEl$1ylIXYe1imyC{RkwwD`s<hXHR8UpLm3>N6#Kq?XDA*^%$1Y4
zIT9X|Nn`};bS^KV<_Dj4Q1`eNi#Q1V-PavLf6Pi{w6H#>B)0zVko}+G|05REVe!`L
zYPzksghYiCiip#IFE1*Tm@Tz@>W6HZWQz*mF^`@j*}xX(fd6bBFf0=QJuR3i1Y<Nq
zVAJ^3SPC|0;<xlIqq(2MZ`n!2TvyvLjKFSGj^R}?${FXgw-2$$MMkzrTxIYUhI(j5
zmfRvORvoa$+fG^i1euS-`GL%+W=3K!dm+9cxASpi9pLiH9iXgWPjWc8<p?Dg5_Dr>
z#$DUs_`_CPT-hcDn>t6@N}1Yy<MGW-_Bj6*nR8wGy*jj?DS7hGL&ZJ$<BsDebS<B&
zJ2bW@e`Ni((01jyzP`|t<AK~P$OxA+s2JqSnQVim_hl0rL>S};`i@6B9DlyZKQ1Pt
zKRS2m@T_3dL1_DsH=LTw*2c>-C1SQc0JAggx?!iVRuAxN*<UQ{5UltTm{E85AmtmF
ziL#t6x}8YvrH)o$uj^XE*ndFs%d4Qq!JYrIve|lSIHJY@+QLeqdGCH0B~Q3RudJ@F
z0fVRc$qyVfA-G&>F|7M5<AsSPT+t!PvJdDs58<0G0m7&$);Hv$&enyIX)XNrGNzk{
z(AJ$t=jTc-(sNivd$)$+HF&Gd@6u<G`2OtFZE`@P)2ipBOUEL6-W*9&P*O6+%-bZ;
z>t@Z6Pw#5qTn3`r{5)K?FpdxTXY}KBg)V;F$byxCVizMMDENlh#j#oM-xube>-6Rw
z#O>y&69ow=g$ww8KI?g4cjnHvN37qJbmB(5z+x5!lPd_SxPXj@<k})n3ZL31lf;=@
zZ@mI3`bL_-c8uq;Nw8Of%FpWiE(tUn&@~zkTj12NgNnD2Qg{ObUmXui3kyHX>jmuR
zf}$@7mb!0Togu~_0QK88&u~VFRkhr|Vfp1yx#x1rQw_xXRIX76aEQ_RGg|TEK;8`_
z&T!hTe5O1|?a1RS$UW)+>`oiUqL}cu?iDN)8a9pzwY?Q+D0M485!p9F@%BAF@vmQX
zcsc)IMjVZmdBbX7r}g>eEuWd`Rc8WzLc2<zo7DA#-dZ?sBXJ7%cep4~)S|*Ee8ui@
zI78)`tx)#E6=!pj^m%%?%0I*18<$h^vmf>e&#Yx{6XPNh=Sj#{J7wN^60zq!gMqQn
zeWCOx#ds6@asH}{ec^M7|Hj*bw}bjkYV3L-=mK*EdkmX5UWX{!y?Z(m8AM}j)SR5^
zZtm_CmzIB`KFtJmR&hjvUJgD}*1%%-t^KwFO`Na4kgL%N46YOJ$jFEuAk)ifXwa~+
zu}Lq80CxOY#cO}lUx0Q<lgGFwxtNt8mds+Agsx7wTLZ{=O}(&fpQm1i+=YA`j-;Zb
z97(XKI})aul9Z8oRkvcuLr(I|80FhrWlYoWr)*cJzo$SXN9*nD4jQf*4Ix4VHlIF}
zg0^%pDSarYBes68_B+FCjRv=BlDzh7PSE=18UzC(^FN&LCI7MBe;!%CFVx+khKGlh
z$fk@Y6`KuoRz$z!B>kDYox(rPcXvINRNnn_@aW&NqLfCYk49F2yrfnRV;S3lRP#(n
zSlOq_=IV57rquvM<uzE84PeJMl-3C>c2z~3BGpUv0>|O6d_>1o0DBYU``;vJAVMl}
zBO`M2JRRDeAN33SS@Gw}V-V%EEd==a+aeiW#M_YKnCrllSNlzhIl(clNpi^#fK3@d
zO<;fnEW;Jn6Qi35y5+P~3CCaA{wB$H^o0W|Z!Rr6nIC{n7N}nsI@PstE?10xZta`3
z#|2z#R4b;5X%AV%+i!RMob;eF`tw`=%?0lU1fCo*9s>LH6D4|VQRSJQma;3YS@J`Q
z=<?(--90`aa$EVr?WR7~2<9$2AJggd6}v3P&!znyHJZGxA?xVVdP8iX?rX7nn!S;k
zD*ef3H*<ZNP4sKl_aXcqvC&`YuQKb3^I}3HTesn$bws`|ru*XOQWQnVCnp@h39MuM
zGaX&ZLsF@oKrX!oSP2?k(fT7=0G8NpTW*bHs`*wMkCJBFsW+LDLWjI@YHO<&0}{P`
zV-HR)6<w&>P1+C{1cqM#5Ffuy!JYZoHI#HP!_xsj7+bhzPr|a7Mh$<$pxaULy2yC&
z^9FDxa-j4-YC$Efvm(rQ^_byEdzR8N!rYCIC}V75_4$=~3m_kgj3zDLfN_v*dMxfx
zIl_nfWVBA|3bf9$>!ag#2F_~@`Z2%roN)U*Z7cg=(ecA_k$d!M*uTXF@Z-E>3Ls?i
z^9#&Z2Gtd+1<t?+7`@uh&&U|lc>5QftT6o1X|T^2VTtb3o99@yapO;*pvqr8TYbF@
zaE(&HFmR~-{0}zsR<VM?1`m2U$PD!+3pKtbCeB-69e({NWP}=I3g|I%s;XNGh~}-j
zkI|c#Rh!*%o1vIFS$5~D%LLrnm}WX@0Tb^mVA(j82Ww;6b79`=ShMmx^hG=dNrTsd
z&9X{KB*oDTJ|c-xJiXwn!5Le=ZBraXsrNu;{^|jT(V3$$e`)+>a%_y;xbeD_ae^gy
z8>W-AyGuwb>f`2@mE}FEZHm;f$e$9+sf}XiFm&Zcx>E@v#4g7;O6)V<*_ghl)I5%o
zL2tPgoXr=H*=MuIRS^><>mAGCLl1WpEJ>WBN<Gt8wa<ULekIwzg3vI!Ua%xP=HX1X
z7{Tl{FWk?2<Wib@9H{qd?wI0v(y1QyQ@CKjR3=34K6yInB3hs2*@%yKba)(Iv+a`m
z-3A@@G>%UbHz50m|J9saQo@)a-&$szDRZ5e#8<t|OVQlioCwGJ>mHA=!fE0u`ri)=
zZ!+-*XqR)MfupxA0@(d<xRkCfNG>l{M4dv~NL3j~eYyOrP$pI6=|z0`I%k5MQ_x<$
z%H|T<7NUI5Hi|G(LhFk(hr~q)&w9lPXu{GDIk9H2^~U%p_dSW03VC*@ftcRAd<0pG
zs~<7T&Xcfhot?d)$y2kyOJ)ihS89{29yd;8rstB@0XF~9F#3a854IK#(MM7K`e~$s
z+*)cvLjE`nd^_du^HT`8w0#L|@_vYT`(u>o>$7F_x*c6KKjw5`X{4N~PyO@e$sSE3
zH?IQ??lS=x`9&wxH<PR@+D}>xfR16jXd@6tdJ5Nt=XU62iu{`#%o~RK@keu@Bb(qv
z`}A7gJtZt2Ch=sywQo1aZFiKj=4qHX(m_+P^dOw3{^zHNcyzjWcQSj%9T~ZZc1JHl
zzFbZtQX+3a*v_|Q6qU*zjne5D1$)SH6VofQ(7QG3+JND$$R4<FN)hJ~g{Q_vi>Mo^
z)?R8xv)>x<J2JoUnnD|Rk_frMxJnG9@{7&d<yGj^6S{XzS$!*?LOw_17lV-gwMvso
zO~-4!6=Y(dDM4lCU~gZsu>0JaWWr%d(FV}^uQqFjZ5QgC)jq<OWY<3=?$CQ^XlO=W
zBs2d0;%4ihM>rX83Q#4ze>P31;I9FDs-Sok!qZ?e&;G&~7|)|%W0C_{%S9@{yC0;6
zt;m0Ku>Kj0ns|vG89uF7D*pEMD<R9goqWs!>aI>_O9Q==#z)q&ygYH&S>M<)B4+Cq
z!5{p66Wc4xP`I36rp@#K3B;Fh*>vHpm8oB0hni&42}T9%qYnpWiU`D)!aA!Ym`(qR
zk+PeBosLb5AmoKI`b^DIldIf&CB2#<5xPcRSS$vC<VnTou1wTqwzbyQtfRuM<+WAf
z32Mp3!g`Y{D!%n0HpJlUutp2hO&Ub8fzS%+z1ZNi&p20TgwkU^{?f@QqTdcL8EkGU
zlDpf9IHY9VcSE@oG3&%%kvXmfX@&og-yslyBC+vpb(L%0LZPUCw;btN!HFFGQbBxT
z0j{Q~X1mZ;&mMDEu_i}(d8S`Qf{xX-yFpx|RP`^o1mhj_k~ZqFNHMKkUP~??e4teR
zVR4{6idh^}XSzt(HaX?{O0(h5_)UTV))AJW=MJDz@qJcgIxUT`z69Mq+~f9aQbIu?
zvK@<~#MHzD8kgIek=f$d=m_yJX7zet(}?_kup<5yo%v_81~6|apsbjuO@Z=qSkx<8
z^&x_xgPNT}gpzOE?lrV9Lfc@{Df`u}lo0g|Q35;ZVl=_r#6Q{Yurde*ulc$678|ud
z#=foq?ViZvscF&h%ODZqG5OPY>41mkx77=XAlavFO}aHDQTg;%flRSp9{a5z5#R7N
zr|Etc;u#dP=nd>BdCQxbq&>UP;`NSMgXQMN?(UHL%oBp+Iy;kON%b=ruOI!fSo<c5
z#jpg1irSThEM2V<pOifL)8s8DCy8FU7kmP3iz~ahHpQB*xzUkpV>j^(k}1ykXu6Fs
z^*Zr-4wm;y??|=|^w`MGN4|Glb#OCGXa<G1{+VCmd!a)|(`w|k78R+M3Hx(&#`S}N
zTKl-{>}-UHQ1Ji-?>Bo$R&iE)pnypRE}}G3b~OG>IIbLEu7;n9X0A<mzQPnI{)eX9
zk<h&VfWkfCZS^Ox<1A_(1h~9)*j4c|iu{jO<-di^NpIewmu7^!FMY#7Jr6nwI`#OA
z$h?pkT=aEFJ6tod<~}^!z4`RbuamP@Xx{~IW&aFf5s0*-J@?fnkz+UeUe_0*x4?#K
zK3c<f#^kBN!vo68f_nJkG`jeb_q(F+OFyPDCedAtGw0m4ux9$l?ES610@+N=jAD1)
zRIe<zg*kp{?S?qMXBw!x5ZS>dQ+(QkB|U%)i|J7BgoqH;bV)DgF`!C)punfW$TZQr
z)qhXpp)Ek{)Fya@02$U9gmcBgb${2uaRpuLE7qUnj#OBk-4;=3yT57g#2+q5<|jT?
z%$rMH_yum8YmfsxwG4y=Do`zM?-@O5>vJ>)^EJ7XzJ_BKcuqj^yJt33^5sdGW^S5&
zQ)iW>K4Y5S$z*ubBD1@o*PjAcCZ3s>F+KWK><3;+HW3J!ff%8`uD0^GOVud4zYn?P
zjaAk5HW5<N3kG5fmLj655Sol~d$1f`&!z}wv%$bgm2M`pw4+9Q)~RfWkoj*{*12&#
z1(|^27?T<6x{pmqouaCW=<bKt^h^`PJG#~m-;&DYSJvP@W9|8NJPq;;2#cf`%xvH2
zA-S;nk`!FaF1oWj$ahl(Ipf$lq{K?~&<uHzj7?MFFjy$=mQ(?d@9{`_k;5iKjhtg)
zEVMm3#Tb*HUsr5t>)*{BBka8TneKtmLgJ?KhMP2#_jWfy`6T^MaDo+LHdi$a+x}2O
znmWxf8VnFjl*gO8JFZE_)#KJVC2=~BB<TeTB%-{pZeoA&N2m6Gf<XWCy6~l!Ce_s3
z4@<3>Sp3r}df$%iAQDniage{CBRxh;>=-pro++I)mLWEw>$QD2uQq9+kbI=n=H%=U
z=rJ`NB;vRQHC9MU*EW*3b!F~hv`O+CYSg!T-Uq?Z;m&71jVDKC-|lb#f5P<MEeXB8
z(DyeSjHL)}qn!fBsQZ&TV*TZS`@se0CS}DW&l|5@SYqEdD8e6$^<g38_$$0<eC@+(
zJNrYP72^oXrsnq=4l0Iwi$UoM-z%is0@DZ~P^A|TDqhj91=#zGi#g7XhKrx1)vzoC
zu!ASR<`QfdPC_?slWY&T*nmZae`gC`0P_2?54J;NXqZk0be)TB3xc^s5fE8UmWJfz
z$XTi_d6#i^!{YnRea<|Ywy6p&vN)@8d{njy2RqXM)?gd)tyQwg8G*z@7aJF-7vGZ9
zz9&~$9_VQ672q&EMcPWVZ?*Csnl`5(su?M^y&mFd)DjDrc@6Jl<j~gVF*lxC(3w+L
z)sp=lA_611-K}5wfq}Cp!E)nl`M5t7$7t!NCbV`MM%wy0)?y;}b?38nsx?^Q1ggCZ
z_};3F9JRIC7~Dgusa+1{Z+==slNQoQC+9dKk<6(u1y0UXQ7^9so<zml;KDN;Q1p$P
zZ^_He33)t?ht0KSyzAlPHtR~*p~xl~UNX)-T?>A%Vzj*vPdFVo39qf4zbheqz`td9
zmgYtzttbyA&I?Qam?Q-{@*{Ax`oDe{LW8RCd~7LBSCAv+Rwv@-OAZgF!5P8O-1h7b
zy41Sj;&9;3&fgnDM<%FuXeioj54_w@3c<jQjh&R|85E6xf>g$>HxAc!$mf?vt_9f-
zZ_6qRg(UsbAjXR2OUZJml~|9CWE&S`3!j&&FpyJ46&;&iP1hYU@XZ%)<emW))d9Z7
z{$K>>^ex{`$FujHTH4JGA*6Fzu)0Q9h+#5zd5jye1Na4IPjv(Xm<TAj^wJpkH(}@r
z^OFNht6bN#QLW3$qbI)!zY7qJD4uE~-yS2%Qo?cM>kLO=ybH1u$^TZ*l58XSvtxA~
zE%*Rks{4slxyT@aBMVpRUR@u5Xi9)In9x8*f3juOH}^PH1+}FPd(|@68L^#MP%f+)
zwl8lT?L|f{dM<-rjVwN<&r%udk4Sv#wrk8`Y65Zfv&Fqoyr&}K<hp0bhFG%NM|Yjo
zA0gi>^$pRc;_DE!H&cvpONhA{&Wm_@HUzzq%^dcy1~;I6Lz8dJ6J=(zl3;3;u?Yi=
zv=b%EhX<I3y^(RsO6RWG?CW}JX`c|aY-gDI_mGO*Q+H9)Z&(nYVJ<|4k(_&8Zerqj
z8OI_Aq^U!9EU7t_`=-aNBy@6)|9{=~zjg=XC*E3AvyKjzkvsly=dH{bxs8E^@?<dN
z5*ZsS`UD0c!*Rjc|1AT9DLr6GVDgo#%F6QfM$>$+Xe@b3cqdp}@csvLW%Y#e!&Xap
z<CU-B9P0FZrQmUdt4+<%!KCRX_hkE3D{23_lU~W0tL{5g+yg;&NZ3UdnuxEIr;_T=
zmr+7(PidzFwG>}wqM_gl5g==(YTJfwSt1mqQcq?S-K~7;m!`DM;OBAIWUq~OQB$6&
z$vCer?i5^{lV9Z|<l&#23MUAn8gXoOpdHNU$J;wIhAJ`gMxJ;&8-9gNhe62bfX7(b
zOt3^o__hUq;^uVgjN5#IW=^V`w8FtY6Zx+4?fZrgz*x3F_+ohMy>M|(WoI}vp3IjC
z_uI62>DO|fMB03Zhd;X|+hluJK&8^9<+lWVPI25S!;%sl>WRaIfgrp1Cyd5-?s4T|
z?cL5$!JBV87vG*dVY(%vG*HG=B$}E#U0zVzT1X6HqDrTgUaeRq)nMm7*zJm~ZQvBV
z-1Q;1y>xbW7c7YN2XdtW`R}=>J2yB7+?oFMIev%dHRpDJKR7Wdd_nQQJ>ym;NJc>D
zCntxT+XethzOQ^^KoYu4LTFA(9J{F^9PSK^(uROBOt10a+B>2bF86my<;}qFB6WLv
zW;iax0>2k1Fvx+i2<85s9=T=%{GswtaGdmuKiV4BMzU@}IxCcS40Dq0aq1MiLLJVH
zXRy%^yvM7e4B{f>RDcgYdzsD_vZInqP4S`Gz(16rE}xPvbse`1L0Q`6=*sbeRY!`|
zM>IZaO%Xeaz6SVL-oOQ)YMT7SDoL58?9JQkk}iTw);E&;5NPFUk^B73Gs9tKXO)zn
z%D14Pzcge@t}XZQ1ynni7Eadk#)ZBzLHTJ+T7o0<3Zh(DaJcna;}10*DH*cbkQ7G{
zFVHu$LM4xp%_>iwhs=2mLxY|VGJAwC6HN%d_Wd4k9;C33R50TgdGO}V><{MNg?9Jc
z52G-F7XLU#c{xath5<7e%bgoXvm%^m+;N*Hx+w92?ibl0J4J2;tmdNE!FPrDoiO83
z;gL%7YvWs&!B&DPEn`BP)ddiaBfIV7n$KEWTb*vZkO!GkYLi3Py@ED3MJXvLR;{gG
z_}yi460N?8aok30z12z2&-X5@v%##tIVQ7ff0?wFz-BmtWl5b0fS3g^Y0-T)$YDuc
zf3cvP#Ti}WuqQryfor#JJ$K2zm3J^y8gm~u(vf6L=ys7tGRW1p+MT>94U6`AC$LIG
zR!Kafu<p~2Ox=osW@x-EO@Z60^Ya(M_`5}U<QrGniH;Nn?gxtO4sQf%R`fS;a~WOM
zqYM^3tL}z!U&*ako+-pew9h^jLA0*-ikX)Z`o^)j=@+);q!{H4p_$<n_1(N!*CuQ=
zT8UjI{-)Cef6+Q7jSCvST@fr*p>yl7r>_}n`Um;Qz~RGt2&-qNfqEldA@Z*~{NeAY
z2$mGR%2E8|re72VrG0}j$=wHtV?wHxtqZ7Y*E{MqNbf;eYYZ5okzc>^gUK{Toi>Qt
z4-1^h&M<gj+KXFcXlOVJ24NFD;!3^a?+lZiNm<&%Pyw)PBF-`+{16|J7@?>K^2M}i
zRwTvfKJ$g{UC@QY$31y$H%8EQU15jKR_0?qt|%Rb(~p>gWcJLo4<$nGiYP*D`evqA
z7hl89lo>KH_Y4&J`~hOHxcdv^KlfU8QL^`jY_AW)_Eb4eRIs;qjYy~h&|yo61Ow~+
zNJ?`Kma=wJ0&wDOgDO?zJ17Ru)UQ8aAv5|AOrcq`T<yBLI3_EcSA}{jVm!9+4OE!P
zb!D{dO^)V9T#>r6qYrqii`xH$3-^_3xR-k>&{Y@4w%qj(QxO?cR>{J%re#gTz38ks
z4f|)*_d1tI+4xE2WaCbE$*mZ_v)<CTr{LCxm3tj$YB01tKD(7*+fiI)v)Di#6m-me
zX}cC>h}E36apk%-@`6#f1EY|~!HgY_9MALS#s1<vqHh9{JLpXxUYs|1)mM2^ylP$_
zSC%0=<*=B;7Z=}_G@W$WU)`N^4!;fw4o-7E$+CIBJJ?ILa#im_GQ2tbB&Uisj@fLA
z*HFV2W>2#|(l6N-HYx^fc%Mnj>N+5nmA%vyu4vYiRO^;&rsmXro5zB(o$M@y%QWU_
zUx0(<=q+U-s#Jnw+1B^ii&q<KR<~`Mw>bx!ffdm45k*(HKd_wd*3@}6nk-NWxa0IV
zC|ns{zI-{X{1S)!E&V4K={Q5^_$c3d!$V#*g|F2e%$<gVaWTeCA0HbeIjegfXfAf0
zpJUtA|AIwZ{}Jjx66cx4&Tos9!>xHTC}C??=uY{VWXJ$^(@`Rx%Wk{sKQgNn^v6YS
zvnC2FRUcWC$|bid6{xKRFzGV`gT2=p?q}n5)9E6JBE=6~{*zX3GWHD^JU9ID`0~%e
z!Rc(a>#WF_powMVfq(d1DQ+y6S?+f<#rLAEuQSdL!y#W<_<H3`XtA!3Uh-}a+MjiK
zeeJ18A~(NO8-^!3=9ZLUC>}YME`cl)Jd$-5X@$$1PG6%k8Wq(q_eLB6#jrkAEGmAC
zV<_E7EzKn{2tNxYj(f>%Pv~ck+P&1iVEQmQ$Y1eMUN#$Mms(lIBFC;MYRZX;IBpD|
z4<fv49-g>xM~Jrgo_F}%kHgQ2$iHTX$$*2j8H*(6V5|F#S;)mXu<BC~jXQ1|i8Bw+
zobmE48}4ho0sg)m)*_Ya@}~Ri>an^(#p127wCI0?EnZjRp<&K<imC}BYrjN(DaN@s
zeOnL3fl*a}CD2n+qTQRe4XCl-+1(Y16oD`wAyGj`$nkK_p&rRmidUbGmgtJ8mFNUJ
zPgQ<LR*bez-qh;J#36J@Tm1QxRzXow>esJ!M(1NI?_yMmz<i49Ozx}g1+L}*{xS+u
zQa^;fDM79g5hUNJU#k8&j67k_q_`*Z4du@7<{8bV-i$hO173cZe<3xUuC{*m&m>`1
z)x82w;)vN#V}cWrw{kpmJNWinpnBl3!$d(hNON|%>YXV|T&X>?sU)att1t8(K?#z0
z-LleWLNt}1N1nMF^>W~73k^%+=~L45kIvz*^T+<LBrW9(xvBodfo#h6&0Fq;h`8;h
z#|Mb8-gqq2^wt3ocE|I(@Q+6EZ^~tW(AajJV7X)oFru=>nakmE8Ka{9dW+<)>G5mL
z%?Dc_%qSw`aBc?f<J;TiJ|yQx6j1V(Y#}-|PJ+8%doXmhtR}a1p#&9+rAd$1Kk?vn
z?!<G?Nw_LGkHFjT!QD{|o@C)Uv_%yj38Zr+ACc42^*Mm$U?83&>MNqW$f~v2r{B5Q
zB;I3EMSVXKeQ(R~kfHiX9+;;&`W+3)9wCDghvN(@M)Ez+ybMQlW#~Z<juv)CLj6-;
zqm)Efm$v3**;HS~DJLA}+|@=Gd)MzstiAM{n&WR_(6B!sQSYmLp=iC<AmpVj{9$I=
zeS%Lo;~H4I)e1lRqH*UF6aU<hsAa~v2~pFbVbt1P@9p^b+do2z`M0Jdp|E&U+!Nlg
zYR{2WU5JQ%`9_)1@bl25(1RPKlaB#{qjkHbWmPxbWQ!|1j~jlWZT|`tGC7$pBO7^d
zNkf$DZy#BE{p-M!XJa|MVNUBF=r+)Pit~t}R_*ncnq^TH;lO}Sd^4t1Hx(g`_D$L4
zVqZ#&&gGj>X2;``B{_)VYvc@bSRa_t<<^D!Fm8|aFf<fQ;rQq}0VL@w28f1sDc%_i
zwMRtnv)Zfor(J{9xHF>e3VMy|w|G~__O`6-6Y7TJ>Zaq^$yKLbKx;cX&Yd&zPWJyO
z>%5dio32eAsO$<UXkWf^6=MDRe10C$1N!3!2F5WCcd<3t<~1-cJTH}Cj_e>TEIff?
zwqkH!=X}CC&yGp0QFH1m|DEH>PSC?CmjVloABrlQHDA~8Rt&~$(lXaR&?WGQaHU?y
z+4ZK2mMc-}z1bGpL<tJWk?w~+&#!&zOi=4*%VOxFXn>kuxH}X1^>UugyXM8FnVbok
zZ6rS=5JpBKvvt-scPZe4<3^9LcUp@#d2o?;S@<+&iY)2svshN4I~V`*&r{mn>;0Gh
z-m7Vu#*8tf6}x&3c=H2j8&R(xJ7pl#D~uM>Ve#BYb0R)3lgKrdf?nqO9{R50hz+SM
z{imOhOA+c`WdIshKzBuEHmxAJSNRD0ALXzb;$w8v7Mv3jKeRcEc;}f%j>wjcSKEda
zJwknfI7N*Oj43W7u=~qXdwX|#Ho2B`LOB%r4!3|gj(TS6zq>+GXgl`|Ib(J%P5Q#)
zy;GpOgS(@roO1L?jO+WJu+?siS(DH~fb;ChY5XpX{+EK>OG&)xo^H5cY?^njr@K4V
z<Mzs0QE*6*oqYCiwK~I(5|BC_2uibPmh2p2quxZsiF?=;<>&wGf&+!R!%K_cuDGvC
zx8I8z(f}FZa%}j;!|vymKviM)B(jI!F(PcT%U~$N>u4=<)+JlR(#D2161{-G21QV4
zY)&C#lX}V1JB4U;IU_ylPn~4QggQ!5*I6mj7@X5bX@^TnhV`jYW5$#0iZ+h<cHl05
zrWa@xFgiR{$kq}h5G)sF(t>KQ)-T`q-g<+{$n@!1(sVEt@p-5zleg4SRbACchWX&K
zGQSD7RE-1q!S>7#)Ta`~s>YeLBG3|!H7*e1_bu#xm$Jb%&uBT-dc6C|Be=0Ag^*+z
z$K&j9Ra&Q!eQtlfi`~1O3y}K!GjjKCySkTBoRZCj@+xd^JFsh~5LNfev`bhsQW!u%
z2_~ZN?}yX1IA&|o{t17ia3Ni~nflpE;ZHuZImqDZliB#I_Wf^nC4~)A&e6OMXpY8U
z0JqNsDDV1?tyL17MNXCIE<jA_>JGipCe;RF>3x8A?BH5a-SKmRf*NzAkD9=f8uZgT
z+W}`L9kl+Z740-0vP~;F2pSI6nl%agl68d1;Zl|vI&mhv%un}fnCDN>87kU{OB+0r
zT@tJ*5Xa5?Bzx5Fv<y`stQ?sk>wDWhHa*ifpUR3FqT00Ob9VyDs-LGl*?WJJFLU<c
z^J@b+iVK|h-P7;hQZPb^RMW42g??Zlrp_2}DbN<VTh<ZjdWE?!R`43W(JCpxej8cf
zDN}B>tRE!ocp-|tSu^^j5)z^CGeY?OnQs!^PdIGH7Pxh5hLaQ*#!@UA@txW>r0~%<
zoj(M3FBjGC;cjf=9#qVvP*9W~N15+a4ph!gdgr4A$%JO@lg60@AlE6Yrl~<3Nto(J
zy^>!#mMcVvPRP*E{LW{<It*39VpCDBS+csVuEtA8o4YD)*Z)T@_3!wV*E$IjXFDIm
z<+p?cNn>N<o3A<FFi5$%7brSCG6-J@Wb}bH%khI9uo0MxDGjc1Jdlncb0sP((5Ri5
zb|j<%N)BmYLe1(`K;5^fD4{3M;B(GUhBpE~XPQSnfMikx;bV;qEWN$dHi8Ob#!00_
zwa0NI`ehYtm+hVj4cEYVp3iI=gbyKyExuNZ%d$WW%;xJd7Fv3Vd+*{)k92b5G3T+1
zn}d;nc)Uzd8<~3uokOw^+|CIVl_S}7KagPPUfJbfA$TpMf8ET-@{=#p4jiLzbDc&u
zhjtXmx^UQD+dT;h*xNN~ewks)b8${T=BXotCyOhWPUMm&Xz$zfMnx%dH3S+KH$W5C
zhuo?~(I<i4hbgHRFHjJ+gj_II+hDGS8X!>o8KP6gCs*%geD|fHZ6Z_68;|CVJMKSc
zd92p0=<mXHIKPWrMNUa?1XXh?fF;>~p<yoXG*qbOh>Pm-Y_Bkuj`lh-%KFzLO27Hy
z?>|~aHBy~)Gkw10q1k?f>$!%HZl3mNV|VMsZATnS10==2pC(pC*sk#^SLeLrA!n-p
z4VU=+uXDm4y;U5){qE*Y^WJC?ND`<fY~dp04h(W#sApg9{aDNbuoLSnaFT}YPvnRJ
zOkpG78^H(!d8B74a))HC0sIsh^9uWm+z*TSgc4mHoy`Q>0qe?ns(?#X&Ha$9wS}VD
zhm+oG9Y1`m2-VTGO|Z*{FW(npQ=G2^NaEyuskh0rDUlS5dS6I_X{O~5l8?R3dYta>
z>z)=?craMnM`0Kn+D93mII@?ogs5G6(;E~>&#E>XmyM{{ZCI*pV0a~&n=US_1*};W
z^1-vZ3_Rj5u!*p#Nk?v(Ua8i-hTEFDTY_bFMUcv%w}qLaW!n)|42hZY3YjinKf|em
z_0kkHiv@Pw$KOlqg7SL4S4(ayM}Ir%g1qw4f0?O>eTL4hYgXJ=mAaf1kiPU%RIoGa
zstf>1z9rg32Is3Wr=Q&4$2heGlM6gQRV><15nIG;NhT05JSC_L@8F^)^zF?kaDDyx
zB&AJ|h^v$+21H*;>-jX}ZJO*~@F(Z@9$RJgTdnnxAl%}&NwLucYO#8}xxTUWe1<#Y
z@EPBt(>eH@!SikC;Osgl0(a<+-#;HxFJ}Iw^{wpDfmXJ1hXaBJ>DYvYc!$`%ei%+f
zsnbntk+mqrNDY-fhM=&Zlvv1MD+PHng9W7iZrmWww#JanRDr$z<c#?_!-Y+8V_II&
zPBK?M9?e2kFv1$T4bQ8v*KMoV-E?Vrc_uwH=bU51Wx<A=0V3(GtvOY7-WUE8oQ#oZ
zcmnPEFBQ~e#TbN7vmGZb3>$5qb0H4RIi0IeGF($iCF>j96j~2+HX_$Y<mQwoB;8F#
zh>=vwQ~%Ja(|&c$M!^+z+s%Y5viECZZKJ|4WW~8fMqR7>GSHwdbX|D<^%FU_tKc_Z
zHir*Lm=Yd6-fMzAQ91mjh9;}AD)#I0j-uSEU&-TVKkfz0s|3D79Cc022Ctu0-fX+G
z^1`+pY_uyf0o}|**vmiS{;!jbQS#A+;rogYs0hsMrDbJXi}!ad{YhN$I=Z@SSEysT
zZ%zS6NJ~yP&2+|NYG)<B@$GcB#KRNU)J^&^jOPbySs5~6b9gE1MaqW%;QA@5j#wwu
zrP<<rH=KfMf=od1G(p?N_dIf24s(}%GGWn;5XsH0+H*%?ePe>CHQcO~)>@+jkrUXK
zzM6bvT^CndnH?vbVV-&#?{b3|W(8M!>T(LbrAnDIkVHy?RIhu;EPdPiSGjF)p=f1I
z2#M2aESF!jM@%e#wNX8{d&cSYGSK(6=qm!@ca%!9YGTu_ClmxEp+qeFj1(<mV_r+n
zt*)=B-$gPvs}yRL`xCCVz;0D)W1yN<x|N1~`t*eC!iI3Q$LYMnzj1ZHwsHSS@abYQ
zcYV?`&}^Y-BFN7lJaj%<PS+aEnKm9PAhn^B%L{I{gy7B-c6~^M`K~qF+;EQhMHI9g
z?1iU%d03P1c&ekH$w<%-^SU~P<|0SW_;nSs!pv8mR);WNeSJKpD++b+^#ol<BViFF
z4|7s(mGhk$?c9iNbwj_CsE5$dFR>)5NdO0L$;>YjaEtKsr@TV!#f<yaA*1-`kTj76
zje$^gW)E_j#ggQX)1B@$taE2v?`ij+7zbe?@P@L4SNyf!U*8rYE^h>k>4_A-HtuL*
zwGH`Ll2;SAPN&+sM{wgigp$@PCCtd4Wr?_;r6(9y{G{`kqNO~Z^-a`|_5=S{G^=|k
zM2EhgFuXQQdnZOobYV_ztn}aOT%pyD^*tdy>E%>vy8CS1|AUrCKS@kDC9t~Z@`MyV
z-QE>3qCDbGke4!{&9ZNt*?41}a7`tN#|A%>wC(zHt=*0$dVNyTL_}@GDy6#whuLaX
zq@seXwkjLnM>y0*h9I}w<-{wI|Erng2H|a;N_9L~u)hyFkgqql@cs13n$k|NK``$a
zhzp>bSN2brYZiTp!>u%pA%hawIXi9R9Cc2@Xq*_kQecZN2y~Wr=c7EmY{-_)Mb<>u
zGkep*bP$#)wO5wvK&IR0=Vr2VO~C(I>~jV=ktAcIoBUCU+zI8X(bocViz?orJxsAL
zN66T0rNl*_gFZK|wfDR36QJn1U0_gl)1=?D3az_jR(v@+gK3#kv6a-V6-Fjhj{X_N
zkj?(IIqO$9Ct@1=>xOwrOnY0m;C}iSKW}^*6J0xsr%+c0@`6mXAT^nPq>@izyPmv0
zN7->w#9B_HE(uk3b8{<mar_c!7f2o%U=T<i_gdscrS0O5UFP(d!$3O2WHlbb+~~Y6
zI^)V1(}CGc+7n~BIJg&vj&@?hdjaiT^>zTlQo=I}*6Oz00+zb&#!!m5o8j{kica%b
zn>6)6<ne63(<f3C(ln!n%Xap!0p9|e0!yWbzo6kDcbE%E*@*^lEnhUon17I-l)-BK
zLQP^qMrf<!fkd9hQ*w~Vku=2JrViIU_>u$BDp|ml<X0cqB*?=kC!ZlNj$YqG5oHOY
z4ej}tx?i<cz^zv-1h6g3EM^SM(GoDn-8!9eh2d8g9%XP2kBN+pSQx;&F0kT$V02f(
z#9>TR`s{C=RDj%~$+g935u@Xq6l<yEL2ucrZ1u5GMXQdgm+U&^(4<fwC>%Q00~W<P
z=8ErCNa(p<IcutP`4NT0hpw$rnd$1CHjskl#5b)Mp-<M!U;JlEKEvv@q9c=)HNhV8
z_{lTq{))D?wsX2EcubnT98IX~pi8L@)dS<9EQch@&Qd8HG<&6g+p%8kuv7d}3MeI6
z5GMU;Id3Tl=66XubBwm&0BB>Z9=*oM^cOdFF})t;UfmvJju%w+U;N@<kD>KpCJq=6
zWEQwKmZLV}OP1eO?)WzkV)DH4Gau26E*-3=S#xNV^Q+<Y&+J3AEnxnHB-E0@b5YlJ
zP{VqKCDYL^H`7~n&Yj<DU0}K(r*(tc=z6-F>n-J_8%;S?{$bN39X97f*>G367YZv0
zB<I6PBx@hL*dN%%KPpwL9u(Gb==cS7#q3>z$-w`fTQT}QB2*&8BuP_>jz66Xh=i@3
z5?q+GX7%s5kV*YyT3LFCywZq`N{>p|EQnf<oW>79l|^_=kY*<?ZqxO0@7R6Xd9J8j
z;8aAgPmulSHPKa>DC*g(!lRIK@)i*bvs+|7vKa*>=k{2K+vhQtV<!6nVwrf;8w=4k
zwOSMrHRqQWk2A-t2YdH^oKi@5u6A=%W0@SB3(N%Z?C;fVOK?4;ibGcrg|>`$&Ssd3
z!uHt+ikWDROE}v@P}7oXc(7-pAYbE!*zHV&&^F%K6xLWR^Y?UhK{8%XZW*OnKTNPj
z#>I()91+`mYAMhR*9wL&pB3ov)vU*v8f^?Dp8kxGx!SANYV=?PAnRAr1-izYx8~EO
z?Uoue3Q%4sP4^u4Cp`C~lnXFkS8i!%U}TfO)gLh%)buXE?p>z57TwfyElL?BO=H;>
zA=%O753Jw;Gn0m*oHCQHnfdYGLi!AWS9LZb{YtyZbHo>!Eu}VU?;=V$-%>}W^}+R?
zNW~o}M2KUp^nlY`_xbO`nY8{Qve~@~n}1LWrqqbn2I@d&XQDk@9Xftw;ATM#IqM*h
zl!<+Jy{z-<bnp{6hRac*fY7^LCywJgJw4+4rQ6ZuyYj?7$?Rcl=uk)a^tro9!bn;n
zgQ6_*6Px!Q2h|Ewwth0!X6qu9Q>O%JSmG(SNL5STaGN(LgO;bhU>;^`zxH6=;i1I~
zlvz)%yq>^dl1zd57iPYyr?r4bxplQuv~jk6WeYstP)5*z$kY%}D_Lde({P+`U(9yD
zKF<V5>8L-R$7Y!)XvS3B%$6HR5KWb<0!2?xv*E54?$B-Fcp|HAl9=+%>m|J>-n{le
zdck)PLC@2O%3JC(WH3J<0Mhf&VO;O#{$l6$$L`-tc!Zm$+-$(X)5Xs9$1nfK4f#!M
zfR2BpBTtB;Z!GjpRf%o>ptn1_@Q6NAYlWioZS4@MJ8IOq-kO{z5jaLeao9(;=V5XU
zV^~8I0wHlZbZa9e<y6!(8#zhjh)lBa8Of;>^Eq9+y{vImQUEBOVSEe`u&7#o#&7qQ
zi3ADq7{V-p(rGmws$UHn4*H3HmjO%y5^pK;FH?|BqhUtsCjcmy@&W~e*$hME%rt-J
z^5_i)dcFtLnSNUU@>qqbGJ4?n<TJvzvnwkrZf$X(Hxc>mn;4*-+2p;zWbD$O217Rn
zuguQ3MmvwT&L*|8iyH4{jz}=5sya63YguqO96sM&O*TGD?{%2(3_LX1y5OtjM#`T0
zi68C1iL)`3e1Bs|Nlwn%4%xK(UDSfrD%XN?QW1O_zjtxD-S^)h=OJq7b<ff`Pga}z
zghsb(?&Kq@6N-#<*kDy%Jc}t~4?&i#p?>BblFakj?>}rp!dUjsDI9-9L@pWyGtQ4R
zo)VqegXN-pEO=H8gcFT7hf>Y$pKm)-k-Wp@X*!~|?nOoWQae07@e<s|88R<m=XG_<
z9T*al86J+5#0br6@t9}?1EzJsWrqg+>G}3}aFXZUuMc*rmUvN7QFV*Sy!${Zb|rEX
zNt;%)ZYn#OUYAqH5v@?GG0Edsuh!LW=d-lXAOdeg+xJ?iuxJ#S+M=ttX3gtAyCZ;<
zwluVL-g9Ow?l`iR9bocoHhjU?S~iSn?)B(y5QoJA+Y@1lp#bQZf~Ok}M%rEBpTH^-
z{$sbs?;jX=Rn(;ZEt>pQ-8KpE`bNAsYU<DKp)ATDMOT_x8wsmzh@9Pf_pF38zwoL~
z{+`^6S@;8RVz2|+A=W)gRhs%~ll-Dyk((ysOM<YGof$4QteR5D&hawk9Ogv;x5L6e
z?4c?`(zLifEAo`O9Po0#zh2xxTiIuCp7KLF1=GVXgq0tkc^yc`zW*3hT46eQ47X!}
z1?CFn%Yj~s;k+gV6_qV>a8OW!y@o8*3*@GIDw<#1MqPOG;N|~f1X&%!E-l0N=h_~J
z`MCV9%KsZzsEI=Q0~ntPWkt<Zu>_;Q>@KI96w*T3c#KduoF!QNlv3<cL^BG%c}EG5
z#~HYIJRY0`Z%+f&Izw?NfL4@n2&O&%ZD0-xA}3=<OG`__Hc+m#p4f{5%t*sgO~>a?
z)C0r9vKa<geUR)Kr~J5wSvnw<sWO6uVAE3*khtl-*dvpSeP=k^)+Tt4)64q;v7FZ|
zm<^~@F$@`SpAFrWk4h6=V;|-Yd1E!Z;9c6j9#(5^EOZ8g=L{l(PGO+EIr(X^6ilkG
z``f0|@7*{|wDBigTvD6#IVXpQH<?@AG}o8-ZI&-hk6l>HyIJIiscHRr+l}U-58s6e
zPnpekiq`+H?5ZU+f{$302X!Y1{mDG{Xx~bt%c^0q6F#KP+8+iX=e4j8H#6XFXmcni
zzYBZm$oK<prV)gby?~|{EOWdY3AUkO#if96C7)C)A0p64k~<Vbt0C?QHo2SV>A@lx
z1}saq&eIZ%MfN#-P{p}%C)f9)CW)%$X<n!EID*5Z*MSx>1anNdju#*n%E`%nm6?>`
zJn}6I5zY7-q~4Y?H600w=ecY~Gy-C3+}>=0P(m|Tpb;5<d~)JEw^P)ZWY8bCcKI<%
zg0|XMOXYsh^G*PWtf44P<CoWhhdWm!3|EgquzVQgbJmN@VPFz|xDy6)IYb6;Uf6JD
zq8Y=3B=Dd$?)EtYUgGjP%=5;_N`2l>7lz;fj00B>AbMU31cijy=K<C85lheO_tIzF
zzz3s+O<x4n9}oB}dEN^93y~q!&O2`;CK$|Zjpe7{6sA7NLe<7jdS28n4u5?7gw^F2
zm}Kc(75Hf!e1?F>E!lWAUIfk^0qN_GV;f90DtdbQ(>dEg>%hi~$2V77GM<=`7tJq~
z)%l#3U4Xsc4T*+rKT~9MbjOL{G#I;+;&9lts=HoiX%u^<VfST_%`5Tx;voA$m%7f5
z@;w!h9$jsalQ&IsoZNlV%5(o~P)X{5azG{lE`n4_=f1H1d`4~9U3R0B=Z-#@V);N(
zS);uZzJAKK_4-!}9G%|d5*q$bv6#b>%7yA%I8$mqOBk}B2&&4>!3&>GHr|cX=2d`^
zVriaV-7=T9#KgpH(_t6ZN=oP_+%`W0<U^yfF5#bjFe(%J=H}rIGOWdc1G?m9JAuEp
zs66!H?S8%dXqLLN;U9<pe`eCZAOAi7raZ;(o507oI*4g@kih(mfo-9giq+_BAkPQH
zj08I<`7BB8FOeL1q-{=%*9#X$$3MHdxo6TyU2&rD$9w`1hB1$HGtD>g2)P4}F?Er4
zoAr!;L>=vwWb_pp7Ww<R=q^mjGMPWl&{$k#hxQ8NxnuQ8q@fnj*xdn?LN4G=A)V3S
z=T>?l;P%WK)7SsJZiuA=6U5Cha}n<Hr$IT&$pn-{p?n~xGgTB|Yz5XyKJPls-#!}%
zcHOV;6v+>)*+kS)fyfgim9@uBAua;=T|5q?EzIuJw6vif;J}<jF-=36;hTGooHpx=
z<>rG#PeRfT{^J!=BR`tqHIc3L#bm7cYb^6!d$U#dM@J^b3otgJ%Wh4sC^|zm>yM;C
zNGPz^Y@s{!(puVM{_J&8NJAdU{^2ry@g{4)DCYcT=eW0!=vK#g@I{M3KwzfiHXkv9
zY-Zz0DJX=gKida04Wr8{-JfRjjCViZI0j0ft+F5I@3e7aFMw=>BvR@u>D{suV~61d
zhC{MSQE*~ylEq)ieL?)ki^h<Ny=<4?bjrUynTNz7zW#nzdXX8I7$E$ly+PH7mU!Fv
zL&V=-R$r0H(lIDB<twm)?qi~G3TYP+dM7E!T9kg5U@fqDR>VA-Fv``dnm)3XSoDMK
zRxvg*I>+<8*rVKOm9~e1dfA#v^1c{P-RjvIdem{)7~G^;=4uwatjIe=hqP6k9-5yX
z1Fw^WV|QS79FHA*zwz93!rdhTB*6iDVA=fvol{Y=NNZM*w-dyeWK&y`N)HqV^{K!o
z5`BQ%b?-6bb*)q;rV-_)YfshNVy7m9dgJ=AyKrk`rc9Wg?843eRD8u@siV`!l}WM>
z<xZWIJ(0~Dk9E09`}5P}qBD*=<NAo{#-m$#h?_p{18TSi6ZW#Wk*Rfa1sc{3*uRra
z`7kR(RlpK^-ag`sbv9c%Q$QY#XIDa(oqXZ>GYBV?h1T3^Z=pgE6dm$`yvf||tTXdq
zq{tWymHKvh1uVe~6F`eC-tIfz3ag)XLiPmpE<v_D0%WlIR=$J8!bX7$@)f_!yNZ&I
zZcyu0MGqLB5Dswg4@maH!2SBs32B8_aM72qI3_W%f5(BCUocW|F$CE(4YdzOhZbYq
z>yE{8p|6Eb5OH_12yYNehc*D?;rJWfNcJ4~@`NDE$BQYp^?Yx(Q{txj*Lpn8GJ2Y^
z$K|p=NE*9!lbqMTQF97zy9g4xosBD3;}Ej(heHTR+RS4S(_XfSi*rs6s`w8E%u#eg
zz6kT&UFz<p0V@%}!bx{t1fpFs0k}b3K^75c<ACv}y@>Sx2>a@&sM@t}C1gO584&3j
zqy!0-ZWyFn1tkShK)O2z7#alWkOoCsx>M;AkPhkYhVSM%=ZSN^_x--L{DWEQTCmxB
z-`Dj^%)2T?wC+CPcs72ZQO5haw<EM8U^!b4&F6R*j7`7o&Kvo5`XuoAygR_U(08^~
z->Z@%y`%VN761+G8_Zp7`Ib2f8elc)ccN#GN;?4!g?mMwg$J6`r}xe<>S^E~nIgP)
zt-}bvbGsUc9(e_aIL#fy$9|7}dw(*f+d~aOEu4!}7K-mHLAZJawgm4%C6>?pMb5p<
zYY$!sAN8}lK1FEom4S9LMNQOwTG3WM#-*BLf_3^HSnvhNE802nL8b7faB#b}@Hurp
zEaz>W)4H0zy3k#^@Rp9{P1(^w_MPXI^z5?8N8edzDm+eXtSkZEO!t&Ip-|~sfUGz>
zP9K+uy0u*y9kYs#9fAXD{E6j^sIWZ>5}fmm<K-#2ROeqalvkP9jp-9GIFh%^*8Vv-
z{`Vv$`h~WyK$H01E%6HVw}>Dp6+_$8B4z7H7_~SrY6CfH#Q#BETFJH0+pXU8T=`X<
zfk?>8NaT^l=#mV1`Pp~QDQa?3#Tb&EtbKJoL`cqbGlWDcgJE!LU69Hl<z-W}`J`NB
zYvvOJM-P6F-=eY#sHHM|_E&9ZO16S9Q*mT`#7DU$GAjeS1FKa6!q&8|?eNfb-8ULc
zlCy>w@vyf6&d(R6E-VS-u;&zDh+?(H-l|}U^`ltO7@ZWQ%VYQCb&uxbFl&(}$!Jw2
zUiwzavo4-Sj`m~1;0A*E7qJHDK9)q6Gmf6~8qL(fR_mrVVeETN1mKxeWjmN2*Ey4N
zuGYOKz-NBLAk2G^F#Z?LNM6cNbycHWi;kYirKHe2F!O4{Z#2$<lt(F$%<VAY7rq5d
zu5XJ7F?3L&#@YA|4_>iAp9jpm2Y%5B9eX+=?v@DYZoJu_z$F6^B$1Dk2W-?X>zqw2
z%05Q;1&I{B5<Eu!m6d~J>F3~a{k`9&VG-ON%h{ZJCn5tv4twqb0>W8QJ{)ps8u#wr
z?Tdb>>55^ojb&ISW{Yh_tFiH`#9z|3m>OORvYl))#G+^kvLW0m#0)CZR`Qc>1|q8J
z=^i94X`o7D$?n{%5MQ4caz+#0!mk=|_84Nd<K4(^=?X;hC!=YmJ9DjXvQzyX2@OC4
zcn=KqWR`Ayx0C&y7}YSXATmrJdf%HljirfZY7d0F3say&PBW%KS=m^X9gEav%O#kZ
z3>xn-vFA?5W?l%7R@%Jlo5GrtaB||?^K|^lT~h#cBfNDBl@V~niAxdjf@-A^R!JnB
zY}3PcAD<{QJG;aaYRAIDvLYpN8nNf@<+%f97yOG23lD=L+SMm9ugwofK^5EE*Q?%`
zw~uQ+9z_OUg;==y+#g__+A5#4Pp~=X0fIe?nw?v{zjWWoZKK_;8G#xT!>53CZIdj8
z7_6xLLRaT|uKDo5ciO`wDLcth@dqGPEL$L$-di(US^e*)g<I~%2nl#vO8k{5|2IiQ
z!w*`hzPsRtkvXexoOC4gLX20#EEzZdk$&6HYWx9!mpE2u)HF%m)i8$(*mK!sy1zE&
z3%U)fgu$DY={!r%B2PzCCYYn|SR&f*d}BzmK!l<m1Q^<<^2BGBTC6%gg0{7fN~l$-
z<iu46ODztQEtaq|rc}j45>aIVIq@i?0H)|nBC7hn{O?^{^EpdWJdjtnyUI!<t+s8s
zT4E>X3@TGL;(iIcLf!5%Bu?yow4b9!#G!^rfwpj4idR+u!plj`d2}qGFr?ficN*zD
zS3VSD{TE9LX8o8OE$@N$^KBp`{PDY<-wGM`o+9c`yFyj5#YkHGQPGTk(h-i|un1LX
z7QJ(#Pz(?J+(7Y7j48JXwhqYLHb^p~aYb6*LwkiNGtD~y%W?wEgPe!MQSO(QNA))G
z4io|&xkW1YdxS+<r9ORl@Fy8J{4e%WuA;Pi2<8M5rH*0b5rnj#eSaC}dw_L<@4yh#
z#&6rY?~@qC#m{>#vXrb>VDIG97h?9;BZznjyBO3Zv&<##GPJ43->$O_;+hpf7Q)+n
zzdvt@f5f9TEwbH!jx-21@LVo|k5Yi_mS+Z`=2nkG`H(-LX5868_^2ML{H)Dunw-b{
z_wqM*G2*^#9-S;buH9zc+2*Tu>LrqvWYmo{?$RBHIvJswUK&BEQ>Pm0RsJoq`I7yw
zf3RJDY^|Rz2pYKjK)UYM&d<32P5b`oCB$@WE1;)rUYWbLdYI4<TVJ6_YFe{rPT^NH
zJ^YEd>2YgWt@}~Bj<i%5joPWiMQ_;~X=35d=T9kcd<vm{)W0)?%6zz{iZ_z?BYW9i
zYIj;3``_Iz6YB~jx6pwf>g>(iD&Sa8t6oz-n{2z)A<nUk;p2O5W(y4U2Lk512U5I^
zQnSH+UZM3he(h&#_S=rT>2=eM-<1EJ)`>CBCG}fc!sB1Da&oG?Skr=Matv6|%~7@(
zKr!+)%R{eI`$8L-`l;8}KjCe7O1}s70_!^<j2QtoE>5?dR$_{a{*>7KTs5D<B8%y|
zL~$zP-;G523M3eBLO4q!jgT5rvUVN}X(A3!By!(NVMRS+wOXegMe4y+ZcqAs_tv*>
zk<cUw%n7@cZ;7rLrsTI}qIFIix0F98b@kFKDXKX?Ad-%|5N_bSy?AzG<QQ6b`WT@_
zgkDe;S}-K`z=9-Jc3)*bO!~_utAIcP<|ve%+yAwxt4;;pLYe2?t(!8GY|LY{`ACmT
z+`S#fQQHwoXFCL0D_`*ZEk7XOP~`IP?#?=1x6NVs3)2&=zVG>-g~+t5Q{qeHpK_7^
z>p0yb)Tn49-02r0fD1*_O_ufRz>^%~0`{3yXjRH11CBLRbz~M6{a>AX`raMS5wX&H
zu)#6cNp~Vi(fGJGL!jNAGefWaa)*IzsfkPTB{blI&o}v5y?QcdBAu;!m0{QktRg=B
zS=zKEfRg0)k*81%IN9Qgu~4N5_-Ui0>CDR|5VGTMbYQQOFQLY^eli|xxlQD|?EQ%O
z(zBS8VJ`Prna9}mOTpyg1s>nxir=4$1v*CEo-Xk}q(e;0KkDb;3>$Q26rgCN-ut#j
zx68oVY3WDn%)D6S*vyvC!#rt2VI3svq?s0-=0PH*#^vTmQuO(69vRp=a^#kWlyPi5
zY^hwg#ZJM)+Rglp_S^?0k9-ps7k7;TDR!?Hm}x$c_-u#>LYO#^APvAavp|f@h2q!k
z56B6pjfgH`y(SqDr?bvRJw`Xv)D=2rxz#@jPzag?_n2*T{H@U@?Ps`I+xHAa<(Y@W
zm2$8a%^MluqQiD|V=#8Z#6_(+4}y#j?YEnT^y=|xg6+tWHxGAwZ>S++H>--xf(jRC
zA6n+E?cLZ2x2G^}N$50voh5W@Ahfz$*nw=9bjkA}LD^Xq_+E?;*MA8wrPkJ`9<&`#
zDC<`J19qXtcvkpJI5fRS{I4hHzZRjdehvGx#!)2Xt>PU3MAsk*7#io3q-VgKv{HQN
ze!n1mF2s^>P7K9E8_mkIrt-9g&!UOrRrwJ|Hjn=eD_wgku)Ha*x9^@upfhvPCXb8M
z7?E!Idv1R-TwBR1X^;ON@$+d8X~#tynH9rn%qi5H4Y0gtVje0CAx_Ab$?p+C_5v_{
z9E~{jmy$$BSXXB6zt;m2VD>VdMxV>O({*0TZ9d(?a-y)8u>V;bfe6hrOx+BX`j-9L
z1-*N{66dkTB(FtO3&-0HEPL}Oe%41jrwwZHyE9qH)yFYh2%M9t*-+5$G8{M1pkZbc
z*wk1G#%v0-E&K;1>jf1xu|sXLRj)r%{Awm;jKHy2PvE!vJiXuQwLcxdDjJTpGjpx%
z<SKzQ(ex$oTEP`!IlSDjp%hRFj&4sb-qB9w5^QRIuB>WEf193GHmY>~ro$^WPC>zm
z>;REj>IXD9j2PyZ2y0<V3}bYCiJ~f39IlbenZOGW8m3zNlkJcGvMqEDf-hUgv&YfV
z(cA%aJ*~s~jH|bMs?Rp7dtut0H8j%sPqugxuTZ7AS$_kOUTx3@uE3+ud7KZw<^LzQ
z!g~`fHMM=^s}#PP=`${&eXV!Sd-KcuF62Bl!I!S;WdXQ9y%r~u<(+)Ve&i}@RQ(Bu
z0Q*Sz8@P=1-KTVmnq~vhVH+cnP4ZE4h;K;C5->f`X|Qq{uiykJJn0U7_S$`WG9^+;
zTj6fI(96mp5k4>LkWa9c*4D$H>%BZ1%G7cJmneRej*}ORd5*COr$pz~Y%Z2cs<y}w
zqG-j$HR^Iky%c6vH7>TSq1WcA%Mlk7Y!Q_#NIhkIDeX}_y^*p{ZJ{Ar$b7IyCejK~
zZ7eD*O=O78NkgS!6N-fQP`LI|3?-aNU?_K?GtV`u94e7cv@bb|)-bDZS4!+*wM(87
z)xXhPrGYb!WgabexGp#n<m#!Btf>C=P(Xr3Ra9WtW7xSkQW{0P)D<TI`rIbOt}ZY5
z2o``aluX0_YsD~Fv#{AUt~Xu01CaQvp~V#OsGxE&-t(Pj)C_#MtFtrRpUN5RjB6<_
zn|y%*I|wQK3IjDOFfA+E9pg5x{NP5|ww!pM=$(KG^6X9Z-O?S+UAG&r8%___R)Qb*
z%;cd1bu=z;Cb`_~#Z-AlNI<}ACJ46}CMp^T?Rcra<k)MlY5u;0Z*8-Asx9&M?c02h
z7+ecF3zb@i>?t!|#6T*c6~ZUKBlp4lAMZc>xsnVc>ALt#>9=ZiZT{czh-?G(O)ZJU
zN8Sp8D!$m|Es;9A`!D5!7q%Kq;;!$ZPqnaXqKo%iXOThs@-@upl91dZg`M~TgX;W}
zlPrEwMy<rU*5b_ro^ZVJX68(nOxSy<&~Az8>7kp<=7XxQf8C&^kI=&E$`f0?=Z5p?
z_$az}C%=umbyyWJw7CADGb}fgPPr37-x65%aJsH{>bHxK5&PkXfPB)oW8yg|>Lpjr
z1l+k{N0MeCww6@;YO$xWsQq>QO{dqU!Suu79(y7$yDxMBwlTrl=kMa`aP=s393Rn;
z_l0e&V$C5S;1TnJ(45lx)tMBF6V)bw;0g!dxeu7H4A%;Vg>vo1?4y?D{z*@S(0ii7
zuT^vP0LGOBQP@HbUQbpw#0rh~fC)>le?(15NU~S>j8#%fiV*&GnBKE_E5SVBiSY-u
z{p0ztYtXD$6lnnss`^?{5lhF?ls#4JQtgmZYKFob92|@zPD8+}Udttj=rr!9(obQ1
zdGR$3)TzW>v5PzJi()1mQ)8#i!04V@YC`g+L0<5y!FH!$n|3oJ3n?Mcn7uHxvgr&U
zPaEQ-?Zeq-1|v~Z)-%l4460?-czZkV2D6nM0!6OQZ7zeYaZFx-)UF9hv1z}C=YRi*
zM!FbdNIk+UjTvL=N@-A{#rRdLvbd2hA~CTm7sJwu2`;Mzoii?BuRHcW+}NxAu~i_E
zf!iSBUy+L6EaG?ku9bTtstxl25QXFnePpZywe5<4fh$f}uKL%z=ZSa2$x@1v&n>*U
z1P-vQU{t8pJg5t^BE<LGay>daVh&x(P!uUr<I;9}O?y`OT8h_@3NLpg<wNnE{hdH2
z{&(Wo3gqhI=q~Dghqd1<UW|+fZ2k=myowUF&enLq1G`Uah&Wv@cznldUk-AqC&O?`
zr<z3fY92T8E%}_}L<#oe2=<~4MafH_+dZEq(p2k~ih<^AllUNlpr&}0H~WQDsT4_D
z(x1XQg8`($wX#ks8*w!nW|Z(3l*b>nR>{4RFcddf5|eOIn9gweE_+#;-#`>+gF}Ud
zCt-iC5J8wkxc7iNLVULU_x@DP^gRdJG0R|w(gquLnF^G~E&$|;bgkKC+QdYbi5H+&
zV++f~%zcgcd!ko4=r>ozB0DJTcVflXdmRZs64tz#iX2d@JYQHKub@(`@<Cq=TFyZA
z1Y9!Q*&jl;F?Cq`&8L%M(fujMGV;Sz4F?0<{PRCX`A?h}btl~x1XO+P-+I7GYJ%Oi
zE*)WZ;XVbRc>GH@0xyXBaWl0wj@4`5X(%m4v&AP40Z4GI@SE>Y<2lxaF&HMOVpFWl
za|IA^%=3CV1P+omjRqdSIbA=UJrzMGrI8mfElryY5>D!R-60GSA1HG_Sp{E*yQN%o
z7Zo|}y{#Jws-#O}a;(|_aGyP#^76P{B%h1j;X<^We2&OS#9qjWdPea08nxHoLPxYB
z_$?q_?IGk+=}$w_t|?plkgy92_dRl9k%o&#Eb8AE*Gh1wy~Q1VcvC(A*DUi<v##RR
zRk-~^@48|eujXfXr~~*}4wOVLY(r<5#~U@~Y~BLq42i1cb#Ol$pB^}>I}&0PXK3?G
zo&iu=^z^K0M1GC>Mj&7}4LNhP@8#LS=$p4d!1T7@gquXHTPu+|6p;&}=<<7OChY7q
z|2ip*v@u=*vEl2sohXt4^wD8JO1lhh@gs#Qq>HbN#UxGX6o4NN9Syiay!+j8@UD;*
zc>2)tupFNt-t%<Z&B`T$<k)844}Z_2eUC7<qc(LfcZsRiLG)P$v5sS^;jLj6visX>
zS3fvKwp~77tmd-e4NLiAT@CwUCTLtWhglnKQvT5RM^M2l=9>`uh~4Tg$Ri%oh<SiM
z$!9!`?C3+`zQzh&P(x@i-9|5R+xunkvL=B05*J1pLFLxAeQ8@K<CJWo>MOB+vYlqA
zby2({VSEyL@uV$7N2+QI?@UmHVpDid<|m%lJbfEuX`_1vpVS3a(!3GEq?m5B#=heZ
z@C^)%6tj;ThqS?5D1{aB=rXYTiLjo|5~&sQsi2-}mcdo!Tk;68W`z!$b?TVmAe_z)
z%A2cT?i3V;>o>KqXQ2F_$DX89&wABu>=<gH7#i`72l_pNVXxqsCxp~_Gw$$i;e8)^
z$3~7VdAjA&CE5uZ-qsy#o}=16-AYp8gSMgL>W&QU^7f#|g0nF=+@xRs;qM_6y8$l%
z=~~u73FcJ+9widC3XmT(vZtF4^=tcw0QBTrGqa)>5lOKOd-UKz;Pu@)P=9q{aYx!m
z^s)5X!<A`T=aO{%F)_XEvw6TADFW&AJj8#QP|WzZm>oh+URE{@oCv|U@Tt01hG`YQ
z^wQ9L-0uUK=+s`1y%$g#_f!OEO`Eq8AtvY|fR5~_x6{XkwEQj~6mmHn;&}#MbD)h7
zY2<%ANhDA0^c!{x4w9Fqqb2W@s=!}VQlP^z%QTVB@X#kMUzpwKIQoA$Qj0dAToy)j
zTpm*EqO`0`cf<p&F_h!^Y#4&LREU?7NP6&5)H~z??(A1U;?mN7!w$4%$X@fKHaaro
zF2=Vd+QX=On|^@qLo3~51?u`AJpN)N!k{F|oqDeJXgNJ>K#JN80Zj*`I&oPF35z_G
z{H|iPU=WI*^!{{rs~pS}DI(=P!e^%ZdtHwcnho!jjxTY9Vo!xZYsGnQr?Ni*JY_Sr
zh9wRo;JU@20bl-pNtyY09x2+e>^U57&$>no-7SZvQ4_1{L*?MbFJxq}v+sJwK8BL>
zS>G3-yeF-#MPm5&ErIwhoi}50aU&*6n)#eJ_LcIiz8#47^s>#i`xide0QV$UcKpoC
z!!z>W=ksfw1pFqzz>_qZ@~MAdr!K6)(c;^ZeNsz>=z?z@=6>q;>11NdipL4$zcuuN
z<?nCqp%P6O<Q{DuqH6o+({-LP2sev7h7=+L@#eevP7y^nELqGb)&e8y7el<ExakuM
ze1(;#l9>xpRzpV~H-;ph$>g#>X5n#j;8J0a?7D3{bX!3aMGE^xAcsgniWKXv8i=In
z1d8znIHUNn>#wynSHCgF+?f)p;&VRfKVnDJA*auR^$5>0DbJg0B2+0a1AiPBKXey6
zhFCF>q*BM}>R83~9zWWgu#$*N*%lpA;2<XSc;gWWtMCqrk`tQsl+GckE^TUd@aT4J
z(dE+_&@G$2#inaI&Z7N~fma#rCTz6MP2f73DIgk!awGWGyLsba0(QK9VfLCbf_ba<
zNavo9*c-<YZHJ%M<o)E6a27<Tk0;?A0#(|>zsBkg7~A(0A8i3V%NpNe5%K-p;pcPp
z9XWm}49Wd9b}p_}S3tE;SV7kyAAFeNjp&-5fF+VcGD`NmEnr%1$C@0D6z3Qw@Uxu-
z;TVi!@`20YP-D0(y-wNdDSW|gPi@<#HM|{@jvI`7ZrA+@#ozJKWDu>$SQvZxH72$X
zP6pmqsO6N$)y4i%{Z&%00we;sip1Sz=(k0j_jBmrQP!-qkk(2T<2KsumQHSz0qhr7
ztRGY1Hu=(nDJ4|S2|#L_-$4>P9qVT&it*}C##7Yw7Vkx;eT975C}XU;Lo0y%?ub8E
z>k8CYee1tU_^R?yd>b_CP_=*F&i<lbKvq?79myqUW8~9o`upzB>Xtzf4lUj}_?SBZ
z-rDkQVx9xi%O8z{LL3kwtNxcUv$<S?tqWzqZnizhTH)wDD=veXU@rTwvDqlLfu*2E
z+%Xs2mVJlVu4f<6=omcjdoKTonJ4E;ofe#oTfBPEsnrgfv{InLBugq$@i8*|OX5Yt
zgkewOMK_Qrp$AF0`e9P1H2-V&4op9JQIv8byODo$L7Lp+Aspd|+<0RA<F#rEPZxED
zvi~s*P26Jx#D+G%5n1&pqxb3j-Mck?9<1KVJ|xy6kD@el*$J|%Ir;6+QaLS4XOEN-
znBwrrNH!HYow9!C8bv$6Fa~tou`=3q-3Xe8OP{HSwj2EFcXTyZ&P2EQt`)e(fndm2
zdf~KkC})qugW$k)nSL3MdPHu2dd#wc3^H9SK7q{8T9Jf?#S`R&iTckc+hE%9hdWG;
zXJyIv(z6q2tD$8x-8?aG+$RTRKF6~11A851tQ(i>cGX|CL+y_yZ18VKfJMIe6<RKc
zU3CVra4P_?55u);k~=!K_dhr>9(muv51*ZMUi->=&!?g9(u`mp4(%#%KVS)ETiv_@
zq&}Y%4F#{|CnbR)pBozj(<gVbQ=ab2RZmO!-?8ejEcO51InC(@!H>8V5iiU=e75~z
z109|UCzu6-3aRfXBXU>&*!8$~$+QsWi@16#6{S#L)=9Gs>mxp_*Au<&hmY@>duN-G
z;KK-Mms_?v%6_?xEgU+#*`duE9vK#l*ts`O14PJF=dfxcEbp3pqYiS8pdWas+H&H1
zM2$=`_bDW9zY)PlFP=9fmZ5=|tl4QJzrf*E*#h+-8Qa^Ip;_<4g4|&zgpFa)9|LBG
zuHfn<caLdfMd;CrKgG~JItkAC_<iW0g;0s(_Sr-$KVrmT!U{`@+PC33ZX%72WRxPz
zbj-|*dfm=A%+O7EUhopY-(6|HL6k7iQd1f{d|8adEL>g!WmsRIOWppPpct0><P-4p
z*MqIY5K4jQ)=)@eXtuHCjvr%<p3BiDJyQDUo#O|LtC_}a3=)h41x~?C@1PWrAS~{D
zQ-<0zNYa$2?OHEb*U;R`aOq?m25^wJ!Q$2;{@yaVnP<Go*-aEaPPgW$H8PC6YA+7Q
z6Hng&6%Ghmz(tc2+z2WqJ`OImFr7(xKd~?N+dz;gfGO@6*WZy+34Ppd@^bFSC<-$D
z-NiAUGu(q8HcPUxlW{*eutlV&B5n`tEPI5h+v#l0gB`Kt!beukH&o(xw1<YaBCFbp
zIyvvuRYPx*DZQFcai5rIK)*R-MovW&Zs0XUzS*no>d+nc*gs(=3n%%l9eF6W`TnfH
zW@e0zzM^!l7Z%mFTaZ!z_0s4OHfEOKO!WzW;z`XlbO&UOuEH|{uoX3sT(Erf`c@$?
zkUkyz!Of`}bteR`1sy3;Ak}t(oN2k8TQDhzpF{AR6LebWwBwOZ6qew@^(Go{v+On}
z;!fsi@iJ%{xp0%C+g#9>^tAoH&q=3xC$ItncKVoi=EC<GM@5;KEYn2JCFm@3tKy9?
z@O~!aC{DZ*xqaC};`oXrH*PiPtqa_s>0|^5g3|pR&41siVfvXdz7Jt^Wq8rsw&`$W
z&3{lEmud@8OrE!E##z;W{_abi&~}@{YFqeqD)OW0hj*GB4u6!AD+JnPNce}tU@Wi;
z0{u>4CgQVR9HcJLKY~tL`^nJN0mSwJ&jCYb_P`xA_VS#la#$_F^)964-hxQWd*lWe
z;%DvOAMe+C4<E>!WP`IJ$La7+*L0oo(Hohv`v_O6^Di@8YXUkd!E$$xV{D_&Of@TA
zuuH3?S(lWt1!2-CNTcd2LL4f4l<RQ${pPheBUIn`s6CRyBR_@P4@cpdVurrbBN(^t
zslL$G>M#1x_Qq}jm#M}@fedv5DPc)|+hg|Jo`^?Odru@yA8nZ@=~oCZ;?_m%Xdhoe
zl)f%ru`r8TU5t_8;d_5!_R1n40Rhoj+&}HFrK1LD3H7fg%-{LDG*l3y-fLuN<;#r@
zQQg=Fq!XRQ995;}GmVk+aA&e3J}Zx()3rJXTnv$kk;z&YhjfqTmMc6U51oT{o<5!s
zxRy9<HC<RwND2P(Tl-q)cD8%rG0`jRxUE-P&x6r9E$YZ+m=}2>?0HOdRJ=3QTx)us
zOn{m#Cq57LzOt|^poTpmH~6j^fcp{3CfD-4t<=IqJ2+_iH4V4<`nx-b&ojP9VxP8V
zvrdi6o43S)`s;igrJ3#N#%sShExUeLmH(%M;~^BXPxkvwHzrw>9w}AwuCOz8o{rB@
z@8{>q<VPVJisqwfl;YobT4{v6XE2Flq07=4-C6s-9-n?2CmfzDy;U1EBEKHb?%X`z
z!x5v#MdQi1>oqEeyLP;eEL<<}xL_fkm+7FD@RKHb7m%O|MTmboPN%-eQEa48RUK8j
zm5%Nj%6)$n@rqO?m)2+QHolGM*geRj9gLjuZKaLtwXv?!aI5*K5s6Lcc<E?TDqNI3
z$<}8l_{o#en6u6dnjk&_xnu8qr!e|^H?*S)GXZ+}!(EVcb&G*&be@;S`-%CRN+-P@
zgSOz*mnCn1v2ixHC1Wk$;L*O`BneuA%VuLmGmhKHE&2c!WVofDni-6lnx8QrAzMM}
zzXzFne#UH$5|<2rXjg=At1%s~urf$mO3`NTI{^BT9lnr+9DQD$3U0CZsB5fHvZA<G
zC+%w&F@EMufR2L*uOjavD7~?Y=U%7{XmboZ-}V==%~w(OBY*DLJ6ADZTL`+T?v4~^
zg)&p(tuDdj)t}iLm1+>W(cn2}kDAD?=rC)q{*7!J`C^2>qPRye5TT=4mdr*f5bNtn
zDgQD6W*w*vVDbV*9vGa^Af0JX<ECVsbcBIP8O)2oZ#jY~<vm91^Tqb_6FI>V#J{aj
z0%w^?5J?AWzP1euZZy>l3J=HrV&}6+t3ttR<pfu5%jAag9iMtbqURV92Ch*{uOE+7
zS5qNF=~N?)P3x0|FRY~gkVmkJQ<@+nNg42}M_UbU*<8g|3vKD`DR9^Xa2Rw^aD_Vs
z>ZyfxrcQ|4V;hffS|9`^-DX)X|M6ofqXD4K#RY|MdO(8ob>wQZRH_m7x{u7?#QI4-
zSg(1$Q1FmSw*3nise7LY=}SEH*`Ie6!64~54cRuyo7Dm0aF5B+w~B5UUmLz;ZXnux
z3rp!+Gn;PJFU&0Tu0A+YSO14fWmux&3zLzMa8fuUff(9V!;B0SM3JUXlrQ;Cvm^-y
z#17k>Ce+gr;}&gufR^LDOboMH7Bt!1XJdRRAvEyz!5?u#pF&`<Kv$YA<CR0Ha=fj?
zHy}h~7w9_mS{5$aqUN@XWa)r0!{FSgBdCleXvbm=Zx<f7EWu>f)PtgCnWz15(S%{|
zn?!<xj5@dRrZJ)BRg#|u7**BvL~xY|3|w7fM4tpyihe(w@xdP^;E_GcVufK7Fk7@V
z5TeOXypedO3Ry;`4`DA7L<o7D&r{pPRL~+(2{Xa-gW;IYR5L4EfWzp5-GX=APcxVk
zAlPe{z(bkf(Q+UYE^+l0D3k;zZ;JqJ#K!id`^L8s0=Q-1HH+F4a=ValhoP-CvZ`#B
zc~p<IZp&jgGKF`NHjT0FXs7gH@}sr`OpF-bI=sm!Uk!o-tII}<8h=Z+8OL8+obL+b
zKZ=H7_dJ9ow9ep<&aCL6>^KjBysB4U!^2zG*x&GzfowuWtVv+#K88c@!)-0<A9bQJ
z{-J(_dW573N^<PkcH?B1rjSyLf5j&LL2qG%-Dq(|b)j;?iAlT+K2|2n$pmLNJ4t>U
zK>Ej@F~~5eG7N<NVRc|=$}kO*QVnGZz!}UQrJ^%mPe~LVSHQ8arbPOp)?aG8QY4fw
z?Q$ioRZX)?Gt<71;agRYEw$dXS54MOCT^>j{eW<D;ve7i$k1A)e8|LrApCggmt{LI
zolYtxG$)U!VCATz`oWTc{<QP~!-c4*Nw2`DYjtb8Dv<SID`iCc|FB}>Mw^%`#^LWq
zNVnExULJOtE>?4YvFf*d<6iYQ@cHLK`yZ0jL|KeaZXl#i0cEWReFN`^rtH2w`<u4S
zOJh07VJeq?LbTeLp@|5I1C^qwwJ_L73u4pfgto{57M~jWgf=t(4;bpxSHgxRR-`Y~
z^_P<N+#aDWt3Jz%yiX3(ZZX%6f)wj@e`)BPBMKdcH;|&Nghb|q8Tm-B4TLvh6#<kW
zsy)Vx6_!O7!7_QPKL^B1=1BY&lcDz7!a(uSz7g0c9n@eY$zybY6{+E_bf!2hlK%Ql
zpJt&0^uxl2jS~$MdeV5p9+$4!?_uKnnC>sogz!0}0-juqy)QUHvA`mTZ2YKsCM?lu
zi!<u69(?Y?UjVuq@@!Hs7O0qb2KLUw9y-m!6L4?@ZF`HwLR2``0ezAVU^K50p9?Ja
z^BF9W8S@=bTk3^nw9xUfhXd7j8l-#feR0jQtej0>)s^&4<EZ{H9WC?%fTgfMR$Ikp
z)!HhN%PnVlOZT8!FsbbW!%ru}_0mA`ns7dq>ilaj8l~Fl^7tUR!uzXPD6{#Hb#J3G
z+0Y1K(HDyXSt3*Jz~mP%{%wWmv&Kk%4CAmeLta4vji$i*<+Bj;gc<wgWxp&NKBtm_
zUj3*PSb|L1r|ZHTXtm2PJlg%UbiNs5!D!{jx`Bso<wvHH*0dgOQPpXrb?%b+(HwE|
zvXZ%np}<hr&qJw>$qQPv9J8x)*RQoJd7X}%PFM+B?^$?uV(034x0hWy-9no`bXU8T
zWm3V9|FOFMr5yO%)BxlHqRkj%NqTDVh-;2R2RZ>t5Pf6Z6l}R5%(S?b*Y>Ah?@|sb
zf8cZ8Nz-eLW_{TN>mhr({M9Sr_|jaN?lU8X94adF4~Eic4P$$L`C4w>PqI<zy8DCi
zkinzv^sWZ^wWyx3n*_#sfzADO^=1JaCpEVI2|tjL)6`5btd#BWxq%cqetm@@3DN;O
z2}>-AC*SoT+_ZDe4g|OnB$N6IQ3bEQ1?p;8ut_+ZY32o3LAA+LIM+%<d(a^wpgn{(
zF#Ta3f;5fC9SF%>*=U^a$Lfun9V?clzm^TW=eh(}UHVZL#9kL$z&C?M1u1HcXF3DA
zvXcw%@0rs0VQZM0Z#?<SXyFx<UkT5Yr`;0Qxm6j%j~G--o5LTp-g}?6zSB;fZPP0h
z(>i3muB;P-X-ze1ruLzBL|ov=_g6KV&U6h+Vo%C%nX3VoALF_Wltz+&t>~X5A&J1X
zPah{8N1eyhBuA%+Fxg+;<`|1fYM<8?d<)&+O_Z2d*zW|kLu+k>CBoSXMMzK2qZ-nV
zK&n+bp|CD!aPGq${1PDX8sb?2?+G9@DqH)d$rD>_kvKy1sf0)G$|W-7#;aoYr?zjy
z?)UcsYGUG2x{gQx{vjPDUt8qi^-#Q{d;XnyUn~25JSug$z{d9e$0+sq_o922MaI{{
zkMc<OH_0Q(T!B+3&g8l*P4$m&W$?OxqSlh|4${6;uTR&^w@aVqmF6+zwY;mR0QSbb
z4%Nj?;AkulAJXoveYo+jysZBc9sI{_=LNfdfd$O@u1Mrn>NTP%rUaTnm;n3M$}9r=
zi3g{J?a#Cw0WX8UNfZzQGut|)!#pg}DVZhviIM53aNnU!C{)|-=kxv5F9rO@ugLqq
zzIcB9;FUf=0}Ucy=!f%q8$kgA6fSwV-0u@kMV=B-hN)(WHJgr@I|q8<UNj!a4f<DE
zLix39!VNqbLgj9yBmGa27xrgad32N&Bz0dDqlI?A(<zYghwn8c(}fC!25d)V7Wxy?
zNrmpSjP4WfkWK%Dn#xA?F(|;LL;P?_=k}3&X9<iLxg1^Oc2Kbrw)dYs`N9pn{nd~c
zVD#7+@$F9F*(++`BBF9<W;-O}8Vx}s9n7aDoegmHE&lLmx)-fl$8AlLe##y;J9WAG
zKK<;k1Hdbq@doE>KN)r5qkURddj$U$5N=R3GN`&r#Sup@B}A>b6o<kF04vTFKD;5c
z4&ep~Pf^iZqrKv?D2C>4i3+IQwHzZlmx0U4SdxB$D8^c7g{K1|&_7*Cce-~xVD828
zVL|>e_c?#>kc0@9ysZ7PuRZX?zGgZMlUr+@mvJGLIwuyP()s;k*cxyOmGwQGDv65}
zQa6~#_CityL^>|N4G|U*Hg(G3ej%Wv@O>UzmBV<^z+)L<)w-3lt(?p_Q0F5R9LJ+t
zBC^wnvnh4;AIIAN@IiD9-nR)%gNBC4p(PFkLvxuKbW{317s?+|7?7hwkhJH6FI<@L
z#N+~Kt!-B&5RU+st=M=+3@6PQPMP<wbM7G_&}v$UZqi*Gqcd=oA|mp>z>ph_j}VGa
z15F{_;d2zm<2%3rs7FhqnozA~PG?pI8ST5He|d_lf3Bxd?|zYJ?hPv%T*-s6IQGqK
z&o+k`&3+~O?nE>9vQ&I^-EZ_%PCcv)I#>0zv@|N{_h{u&`EPp@lh2Q}rt9324ys-#
z*9!v?kPlBQ8XrU1%rWrWxciH}u`DVrEp>Lodn3PcyA$2NHYOQeHQ^qmjkHJ@>gENY
zM;pceLE!pgK*e@F19o|zWRi>J1$+<w;y`UHIQb44p{;<?bN=B`Nqt~dYrFM+m(bJS
zzknR0ZglaaK7FEeBhct$7X2yn*X<$ySb~i{;p)Os#7Ep&=K=OKGdNjx^<=n?%rm{Q
zb)Na=7Is8FLd4z$LftQNPBoOy64oBlMV-rd8AM&ITSiOft4!!E&k6zq--{!e{c>VQ
z*%xBJ0H=pjt6`VnS*j@;as5&#dB@&e5t=Bx$8a@E_6HBMgVQS?A=&;v<{H^gM9}R^
zlPR1;Y`@#mTLE|TI5KqY$Omd<ALN2KQh{nog!dto@ek_loeiK6DCi02U>Vk5d&8eP
z05lqTH;3eQ1UGr$v*)@VRZ7>)T^|{Q=7Xh#UvHJj`7HijQqmvKBj%hyZSr|#K=0F0
z(2(auD&P24QSpx3lE8E-aLD-6pzd-~Bcj0+K`W*D^wnnhlygvf8@21xAX*c;mdgXu
z0V}L#(^<xIVbVqSoK#L>3~MUem4Vh30u}NLZ1yCax2;LCT8EXAWvWxJqV1#lu0<GP
z<=o~I8Wu^{yiav~ev%gj;n`Sr&i91H!Og+YoL}KH{NbD%bw`xDI?h@4M>u!a`SHGH
zXF6jhl-(#zwg0EG>m^!enG01_+%>$5KOY)YTl2PloCQKm+jdt1As6*<vTDRaq+$_&
zWz<V8Ej?KvlSdUfFC4xPnaxbvJa1(egt4WZTV@X8w>?d<KefnZbg#T17I{-&UH>wD
za0Mtdl7tI*4Ju?X>lHo^(rvLVae|jfaA%Nwsr)Dw*IqM!#j}LU(ZjJ0g+qp<$ATg0
zmgZwyZjknD?|&!${>Mb|A0HZI=saD1OzCzj#gjKuj@~03qDR0Qvyz@ZM+l*c`P|Qs
z`I87<Ga{t%u(>lMft356sXqB!Z`;%K5AOetU&O;8lV!g{4O)>lP+ZsE4Cm!ke^;&c
zcV8jgZuS_j(Y-sy&8tIbFertbpJ==8v?5E_kGtB}qBYG^0p%3|k)pj%Bry(L*Baaj
zcG#(!AYmcwrqv3#ztG9>r(f$|w&Y6-QRVz{!yJ3M3J&&}GbK|{M70mnWz@OHe-gl$
z>G_$`D#k|O3UNj>rWXg~(gJ5>E%#W)FMh$h{aVt!f{l+tP_Yb_Q7~;Nz3n3wg+iUl
znvEA`yNKr&;yh!(H1lWflNg#bQRv!_`-Jo*6RwT^agZ1dRV+Bd328|%4h%l>@ms)w
z^l%0iDbPBA8)@#k<ELHYq3ZnLdPJy{%&gH?e)W`69(uX@px17zdr&Dm>Fw26t$$9(
zejJp%_2Of~ay*Ghc414fT_S<PUBz{&XA0xgDBkW1_Rt<|tk8I)k0|>9`$E5SF<ZIo
zb-XBLUSV|y3?BS@L{~fsr7PR%YPR=DzcSiwQAhz}lHkZl{aDwybXc+(JgkZLTcyl9
zDr22T_z;B1biA0f4HY#}<K7J=lp^g=6#c3X53g*XJ>pKQ<2L#pu?MXpW{g&3ASJ`X
zBYfrPog(UaI6pJ)MHeX#a^{L6GN1A<N7bHGlv-|Y$X{8!f18H?E8A>H=Ejl1c#<BW
zO2_?f)--8aynHk0+rS1)*mMi@<={O_S-$AkuU{)haYI}`fBBM|pYzOK;APC+jnVw~
zxVc~ckVlKU&~Sj<(syJYr-Lbpb}vc!tTXbs#|ct?qN15$kBM0|L{Z16(j};@ESWVz
zC;ySiqqG_TX?HJ%RnG&9Z67G<s&oYPLN{-7&lbc!%!_;^AXFZel$V(_HcnYvMeo|=
z8>(UBekG2<jBh(LQNW^_b8P)6=GwdNw>6j@R$^W-y3}`hakil?_HsIbRMwdJ<6X)X
zA>ojf3L7mh_1+(A()5N;8$bOm{7bxxc2Q;b+KUFmQ+gp}e=6XqJT~ob20AjNCv+UU
zsNWW-H<OR`FwdM;j#FzA&EaDD9$7L8RE7h7VY$EDEhg`5IsgIZh=eADXo;**?_*`#
zR^*WH8PISW2-g^qjznIlJY_XGL+_{E#H3_-Fbnx;+-6a&EpbV+OCO9G-KNCaOU)PF
zX?j)Ja9(M?YNS|M$F;{qOL@9U*X|g@nn{I7kBQ}@Cr!=Wz(+=yUyW=C$!8xZGO%Xj
zZZ;pNv~xpVa!z5;F+F_J&)11ZZb`(p7n3);y6Kd0ovq^$$0ywBu%69%;k>)^3+O*{
z)y|3Q7aZwo1y^0J<cews?EV_3|LczU^U*5AF0}7wGs0i9k5}>V{sgQb0)v9~T{eRh
zn1Com0}kWqt<HNqHM<=wTJI+Ll{#2UzhTCWmf`95g5QLIB<Lcy9=4PG;|S5g7CmQr
z>#-^O3uwsie|cC|N~a<F%#c)TfS+!TCe3=-@K_!{`l0UT$t>}OHi$6nX~x*RoJ{Mg
zsSynI^l=7(d6w#oC=tz|KRDMn{DvJ-x9Zt_Hp(f~_s4;SM9*Ps{|Kn|_}6%*T}w(f
zE$CyH!s{=|A2g#g5)jz{d%?F*8CO@qfN(<m647G{(=*%WQG*K^D#_AHiel(2ZZ0oW
zHFBhubNji-Ju|ESJY}Ce_JR`jQ;BzQAbYrP&C=qkz}2^emrY}$)C+G!I1Ha-bD3pc
z)+M^Gnxxrwl<l(|eCd+lWe(U$9H?nR1V&x%hA1ni*{8APLkp)j@Xw6WOyM|hhzVy0
zChwT7?O~n0o?{$~A?3_CW?4vnm2C78%4HuEmiZbaK@^rw(52<Qlodi;A}cSf&gvOi
zVon(u!&x^@w>9P42(Mb$XW<6`IQeyvs#y7Y^e2T}T*|n|j^?49+lp??e{2c=!v|#%
zuNRcB30EXRc%9>|vWA=bXacIlX(AtEVr+y^x5GbE<hHvUtV)7LL>ss^t@Rj)GXV3-
zNWR^0LX|g48!+3Hh9Kh{NH4Ly<q;x2^(55u0b8g;r!-^Lgw^b_KaA?7_isWDfc?Hz
zV#=zWa(_+tDjw>~At;#We(*(Cr57ZPwI)eXIU&`G>H$uGe724%MCEi4GAd>O;pA>C
zQ{-~|T+5dGk%04hQM=>bwR8H~zFP{SS$-)%%d}lKz6oXnfp6Gw-VP$$>cNxO3k_cA
z`yjJy007t;PmX|rJaQAT@nf|vJV$;*i@?i5j7P~IbuCv;fzeb2g@i0%p}p;j6{B`P
zrY&&;Fh|8i_O8r?=ra?Fp!fNpmReo}5TpA57vw*;GVKxEldoF+{Dq00-uG>9GUYQ1
zPGOznd@2$5^Q#gEs%@3$D`y_q^!Je%X!mW!x3sI6Xe6O`B_-Dl?X)NDMvA{wSDlR?
z)IWDnS09;j(N%%9++tF2j=aZ@B%nb)`OtT{#MdmqXY)8xUflD(AbZN}l*{SKlt83_
zP4Zct^{g*(2O!d04+^#KQO<2$T?bU#c{>SS9?yH*L?kDhCxnHDMuSV&0m5}RK%zC2
zwR$g++brG?Z}yRR#nl{fec=%s6l>n?llP(;QPZV}Me7ed;&)?x8Tb>4Y{b(<b??SS
zCUmw7yX&V>HrcIif0m4S4a(~s+(}t##j8H*B<_qf+k(FTEX3zlM`W>DWS(;MHdUd(
zWX`X8q5kDJ&KZr)bh9WQU9*YK_xKg>#K=twy0rB7+V@R~IjEv4`y5;L%ja{6Hysxl
zEk^R!hXvfbpM@nlQ<wx<8=-%naB_4Kr*Z1K8z}m+r1e~didD;<nq7;slm+ra<wdsu
zKD!ifm!#N?Sll+!T{HMH|MOBs7^D)GLyrDkhWTGzq<?-Chcb<LcZ0f7?3OqkiJUzk
z6g`g2mXCu&>vFn5;~!h?zAE`tnR<cFuqK&%;;`~ElRwATZPgbqUKHpEf#z)K?~603
z9Yj}1*6+C27bXV-<JzgpqUZw}oy*>(xD7iWsNEDm9Dcujoq8RCkR)=P9khl{DJ1bf
z$KN>2uihj;68op#Y1xJH&-uFdW#jZIF9KN*jz%GZOptm0@hQL<i|6VDwrbQiE9UQ9
z#ZI0w>ApDpP8aqa{IdrjY~$X!nagT!wyC52dG`Qx3Uq+`R{6|q2D0QAu7LYAYy#LA
zFZr5W(yZB@?cm<80X*-EsJN)8H&<C#fQK$Ur_Hc!UtxpCEO6AH@5+%rejB{t^B$9(
zYr9=Y;w1^<2UKK^%yc9_NpC8a4yXnWZEWNgRS4`l#z3+xy$iK(QPUSz#J2~gKkK%)
zu@@~LfVyFIi#*z-@!xXg_9q{p9?w(<acXw`Rv#C)S&@z%g?CR?mVY**d-gKxug2X(
zVYC!>ZR*kz+N4*q=<|GgUp|tXxo7OO1Z@9yY#d+U`%2d7CuGdc&bU>GH}5v&=nx#5
zXWqHq*;VAk^nO3U+G;Cw_hi8CMIp*X3VHZc^VJ=lhbs0z7PVCw`DNRVR+u7*zrv6t
z?PZ}m`2o&96`pv`YHQv`25=BjPVp6|WV~A%JA1nCQ?yn=<2;cNVb)1^SK!nu_3Ha-
zozn_$KJ|n|7Mtc4HKTY-^J>zzXrNoELsu~UsAKp@zKWX+*M*mqbLiG3XOVsIM(-O<
z9}L2ikk#R`c?8PZK_^6kzs=uz8Ee{j;&KL)Xiva($U(7>9T_8_fI6ki(neObpD;fO
ztsof>BWg${q3#$&!`}AV5Tz1)K<d>xt-$;eGn(OlY1zwB#^?Y7N|F09Z8IAL`m~O#
z-dK;$nZD|imtu##r3dwdq0N)+qck9H^d~6dW`W{y>p0#>;(Grg&Sf8GnD~#z)R|{c
z%VxNX2$s(QmPLF0+2q!5AUE^Tbu5?@bmT!cK;eo=MTha>GA*x!EZ?!J*^${30;*^_
zIyy5e^}9G?WGybMGK1q(Egx>*V+{vZY~2|c%!8-qfc9{@%I-_KNp4u9F_`A8feh+Z
zzsRZWk`L$nmjB31F2QUcmuvN9$atMwwdgudK~|xjX#`adAA+x-a^qtL9!eMZ0m$Nb
zt<s3t^=q7kKH;;zowF!;Z+<4#4KE(CWi{usAf=cG7K#<%B>y^MZb+23{v%^{3O!kT
zmY!&;wm<BM|0${98-gxd;l|xSS(`PYcJXnq9AX`%tHbj8msZRJlSTQjzIF7_J#)!i
zQ9B#nXzu;_@rY{DfH&a$G8^kRvB#H!m$c;$x(<DTT*@<?&Lg-#0!aT|u&1m8L5$?E
zX)5q;!JblJ_l85Hl0Uwqns}7fa6)dc(P#+vm8Ya$Z!><SO{naV%i-;X-|NWzwA;4l
zBAbORaVK?wX`Z>{rE8vOq9fClv}h%^o4_x7mv5%52l{Dme%hyC^>yb8<4=~~*)UsM
zAcYxlB$SvZ5J}zH8W=k)G2FT-kl!yf))8pta_+5QA>!m8b}JaYsb4Nw`YvrVXHR=}
zcgZBPzvE->QU@LXdt&YAv=1t@OvY}6slPp`Im2HY=;(Rx;2dp+-=y-pfQL%4(L!|m
z?ae{5kuN@!F}vc`Bw;<&^P;uxUlYcxzjZl@q7Jg_U+IlwbA@)|zKeBm<&L=et4r>G
zEbY82b7O7$c|4DW4*&Bv5ehLW@(^(-4rS`kqs>Vc;JeGb_xUaliz9mLZMaH<q%PJS
zifxzC2l?)jJtNSAZB_NSki9&?cSojtF$=T7w28b;&Js}|r$CV0`Q%yH?Ub`^YgFIb
zGI5Fm<RxC}D_+0e-F)q8S<tHT=3~9ppIHF+xww7~i%_OmEEj+!<AoqrK`LZ2Ux&;m
zgnUmBs5njIfHb+MhfAY!H_DIGVQp9e>P|jYG*Y0;4swB*l_UgLibV4QdP%e-wm0!2
zEUc|}jVll3_#IIRF8j;04>ik54G@kFj#)yKhbx5DnJ#Cpe6AURrPL!`kUN2!2kl`F
z((?P9zv4_Vut&JqsyJ-^eJ*_>An5aFo_Kh;(}Ye`)hevh2#-!wWQ9VrNGw9255ys{
zuMsiZi;#$!GPjkt)4@B)a#_cpNKuYn2+r&d!GiGltdzh+HQTyHxyxf~Q)llT*GdtV
zcERs3nDS=4P4&3F3wa|$je3vL6zxHX5kWG0k%EbG`*2WLK-v7sV!OhJqy%=&ZVkO0
zEQ@Hj5Kq{J0R_p3yBhTr_w=!Q+{2{}srH3Xo^i)~q?AhVUaiv?(^}17y}J~B)MH=F
zkV)T1c4&}-dG$aN*}dBOlFA}^8{_m#Kl*wNH|fm>f(B*sIq&!SiQ5ABjdaK3o)l`{
zC~$r|W$qy`@W@mMWz4AyG3oE|P=v@!gv`IAI~{Yk-o?iX#*er&vCL!tD0^GPb=qh4
z4CDV<JE%y1lXvI=i^Sb6S@uy@77f#EBeZux$02*Hr~En6mG3$$k)9I=qa>Sr-h~mg
z6M<Po#Kh{hUeL-JvV6-Y2ts)_12hQUrn4Gexf2Qw<xhOUkJe2_6|to|X<Tc1xf55l
z+wpshmYmF5F~8=JI3*?z`{;g08nv5_t;7qxTmNnYe<qGrapYO4xjz4#3NyhO=X1Q{
zBALC`Ak=xB{3$tY<%VmiGU_2!s93_(DO0F@zhAk?Z{u3!6DGp0J_bYx)ax_RPy7x&
z*DTov-j6<I{=?z-OayhPUg@?gYt=;$I{C<`TxjbFI*LD8!?U9POl`rBnIM~}`R6qD
zKb;N`g&Qh0op#dueG>2P{HuqV7h?(_|Ek#Bz&o=5@cld4K_$hwHGaZ}qXwDrXQ2Lb
z0aSFeJ=cE0&xJwdac*Ti%*ug$Qy~;W`j}xNjdh8(5J+)lstPL^xsGSMB)KwMbGAEf
zS$O6CRXCcR;OX4k<zFs4uRus!0c)FBen>x!q?a1q{t+}h`dX|M6~0s`gylwCPdKmt
zrede(WaG0!*?EI~_nYSACo;V~-`cnDVf!q}nqgf$<3f`&1w$g^G#PvR_HS&TcDeoA
zsrOs_TpkyjISb9Zfv()(v%?E4v(pNl4Kt72EQ;M(H$wY^Pv)2QoaPXCk?$yMqdA?i
zCBodT^tKoC?reAQi#K?rW0jd^QWA-4yw2q&rb3o=0uGrQ>}*w8qy^twYX!(S7x+7|
zH<-e>m|e{HN&{kc{mSK|e6rOnn+3Ic+%$QLR$h5z@A%>LCXx7eF1?zsv|TMeh$dg1
zulYo==yj-a5B}``(-QB9!8D2+Mkx31m#1gSjV7(Z2lzKxi~p`L2gRBl(GAGDq&Js-
zl#g<>ZRqp_86J`ieH<dx?-HcjA2$_uX*LJ0PAx+4LT#eG@eDsKChoNGb=#hS5Z&Q~
zA%?HY)4RXcT6PF^kHt~%1!Bl<GM(m{Z2l~g%-PBBCir>-M)e4GkMiOL&s-DH_~9{T
z!Yllyo}W+8b3h^~M}Nv<{iFA}luGIR-^{8Zsi9Ws6lEj=V;;tB`kIPsVVhIKW#dIM
z=mKH#gk)4&rIbXbCL&N*^U1Z_gQ0%rg7w*-?qGaPm)GQo@mJuua&j8Ud7)6eyGuVE
zjJLOKJ-lP=1~Gx<yW579-E`HLU$#fRCns@_U20NbF4Gbr<fqygdDNtg)W3RT7s%cE
z@ZS&G|9HxTi^9MKWktJF0xp{Lr!>N2kE^XK8Q>F?6AS@l0Ko`f!UNNZ3YF_jf*6yI
z1Re{v=Rz;|?JzEZU0Ft7Uq3*A*Q5rg|N6iG`Nx~^I}e&P>i%p$f&O=i6aTNDU}&Nc
z@)GMk%(Qx3x~ItUt}!mUiz$w8l8~FUcM-h18^)xnB4yE68l6T0WB640;vP`pCi43T
zlu>roPGNw1ISJ>RwHC*?YWD;)@wG;l#Sh&A-(Grn#21i`<%d=$!~FEm@j}80H@>Vm
zew*CmFD=|tW*ZBQ9&ry()^Eu***3v`3*Pg2>YZ6TMK=XY6U)AA{HE$DS#U_4$(n!O
zlW;^;DEQ4?+%&j>B|8Sc=AFLIE8Wgn5*_YYp}VGkcY6Qzu>SLlSy;|Mjg!rJv>csR
zB)sqQa~4exU<qLSspwSD<rIDN`0nL#PqYoGFf981f4***dNF7we6HVpc3qB9L*O(6
zfoekYgI=TfQx7+Im4X-HgrCoY7JhJ>@_v}vsQDal5)wX}Pm8B7HEEK3q%jDKC%-U4
zSzi>%b-u6v-X2SX=4&kUuwY|_`&nJ6W;^d^%>+*;W4FmwUQ1lIsT03dskOCXGpRva
z^5F8t7022OlREQncndzZ`^MpzLQ2FWVcFZmm8@Kvs;Y`9G2QkXW4~w%bnA8ed;Xty
zQIrcBHa506e!{}#6D!YuUYozaRxW}JJx=EQN%ItW1M1x&necz;dh4L5-@SiW$)!sg
z7Lb%yx>HmH0YSPEln#ld1(uK$Q91;XZi%J4OS-$eyPk`4&iCB+Gjsp`ahPFnV0S;)
z^?tw7x$7Nrb*Ijsm?^7tY9Tk>-KwH`uuW(;uB^QtdxgBD$aBB4REJ&OpINT3UfFYd
zIHX-YC+Or5Liad)DUCi%K#3@A8s;rK1?j9aQi{isfs*PCmE#qDrMRr|T)LFHYCMmK
z=U;Fl+`;`g)l=>#wT_s+W=wE-m9)-6K9~7RLBCY)lu{|KKx#ajM1gk$lc7wvD1Rzk
zKti)xTTW=pKFhj@zf>uaxzO`Z*V()ch={Av68(Q|6#p*phDd+*?WI+Yl|}lWzg_Zw
zeXZ<<L|;{2p3J^vlJ>r}T+H|Dd}Uw+3LM8pCk0HX>1)ef`<(fvYG>t4yk`$7`#iu?
zUS5aE-<~owQ0`N{8CO13g4?<Iy><|sAnsJQ(%&<oJ>SN&UQQVVV_-l{MI~p2ODn|W
zI_$q|G%~dX7H!OWaq`_z@g>Xu3PlVBpa_`Ah^WXld^wDzIkZ&EHGBR$7OU-#g?o+&
z$L@dE%Kyh<@xUkOGd=YG{w654Zg@qQMXV*WIU4+|soT*!iHwUp@bJBcTZVO+wk+Jy
zBA%9GbL`15R@VyoQ#0_eIr5v9){*4t=jY5=+co(y*GO<q)Byjg@~u%y!=bGARG8tP
zx`WZ|8%tMfE;WgLM%QuJ`0#BhHAmrvu>Ot&n}ES(nGJ=5*CbcP|NUzJ^U8l<e&{wX
zD$+0VLGgdR7yo=0{A^}uL++nwGQ98YzqLmoTjoSa?KuSRtYRH-ig%pr#)CMGC>75g
z#!BlltjB8&>NJzB@MfHo6UFCFGgoqAxi{C9WIViAghm|zzGCfCdsFl5(--Qk*yJ56
zZySTG&)ho@o&u?+ftZTW(?$-AM0Ouw*zX?r^`h5(W4x2U^^$>hgi!d^`=Qyl9Ci6r
z-TmM4gd(~ReqAug-2c8(7z|8IUFol)tY(>0JRXBn7+0H9(-`jhaxK|?H<E-yy90}>
zh8C!$AnMzt=_k80IyO}sOcO;$e)ou$)RomtRT(w~@5{*wTic^KAg0o)opdQAD@7uD
zMT?CD%58pB@73vmZG#i|Z5PQsY2Z(%pFMfzxURf0TU))nveF4+?^Kzrlf&fz^dg+C
zQJ8#_*t|ylzXnV&PGa&aG0yzSvR-m*($0?^mlxamW18%g;9Rm+eD=lKR6P4bGZov>
z#nSZsRWWbHU^fHDLdv+A_q!vt>p}k4NaoY^sv#ITOcFoisyz(0HEw^@H0og_=GMc!
z?pw5_Higiy^S82<Na4`>5T#a=<@<^ODwK05XPf`G-Ny6#rN_qQPyaHBUKIKYiM`_J
zq5O&z6K2i8O{Jr<x(aW_wP+Oi*AJS$0fXgB;CN=>=O3-x!-I;lfHdYqphoXb7IT-M
z;@x`p7U^BibNT65@7F(A2^>D|JnGatb4`tF!@Wov-n<(6e7ud?uUbSd2}fs8c7=pe
z3cQhvfa)z`fGkYyR7O_m8bOEUms4%!)>HBf<1KT=04kfP`WHTslUq=7mANSqv^ZIA
z&9-}9#&t|XOl*2r0M;*c@Y-YbmP{QiwRc-r%#eI7cUY0HH~a*Oi=KfN=Y%_8Rek5Y
zJx-t;jn04{++Z4`=d3-4p4w(#HFz*jCGIZlxNcaVss0E&_+g)j$;qE&XJ<<{u5MHr
zkK_Gk3`nd67rv-_zu1R2|M!#d`!Tosj5<B$p=+FD#czwyAK=YGg6KL9Ja+(j)#GQe
zX7irvnQy2;&UAz*NGkXjHo;{S-_L=emaVRuCLCHu8*aAC$}k>k<*NT#^Qfcl!~wRa
zE#$R~zW~NIwYNxmRgRJA>FI?1xOi3H{gZ6^|BAUCe?`Ngc(fHcDZ(jAwh+vRM<dP-
zq7O>!m*gY@Kp@|xRul4EHi=ca)x=w`OVyNyTOhRf+8RQ7)&7=5q+-siI_aJ)SpliK
z93f0>PL#~e-R`yTER+*<;|R%~8pCz%8c|Oh^Xoxo*0;z=m5iM~Pybm0e0W}iLz|~N
zrS|_m044qD?Px_ba$;3Xgyv?{5nt>Y7?k@U4Su98@fMJoVEhvNz=ka|1%*&r*-MiM
zF(zP$%x~CY3PWk4Q?4~P@GdUJv-w)n%X8B{O$WfvM3i{~9x<`nzsnY51ssqeY`+H`
zY%JaV{ak99ycnRQvse-~UTUs-U*Rl2B>QDk@*@Tolc2vw52bC*K=3`>*!|hLUucc$
z?x4i98)a6o7OgPJVq#*V%Dt<6el%Z4U`o8kGN#P%sOG5e51ucTkOSPem%DGVb3b0x
zwZxN#*L+a+zEzOh&4hrEd#*TFEfNIskM}?H$Y^bES1szq^83#`$4U+!YqklD703V1
zcmKaH<{j~s=U&h5Y^*1Eew8$3v;#FKSDB~4(}M!H@>f3cC)NLYkDrxF1!==((jp}V
zQ7m}37ulS*gO+V?#1mQB!3n3_h*5Jgs^c3oc6-t9EuZ-&$?86<kX=YfX!fzG12!GY
zrLbOx^bqKVBH1MLZC6ff2an5Tw>OZ~-FmvT6I&&->f3lv7mA|Ti6!@)Nv+Ve$NkSW
zCAq>R*=V*RUY|()e-Fdog&wl+nn+R3itqb&Z2yW7|JKp*veCFQqnYQWqho19v#LtK
z*9c8WU`z_2(XtKd>u}DdfjgqJtE&VmH*b!wAMv-m+<pBk*Z0DTdcf~ZIj@4m(+c4_
zaMFz1hlBG0MARFL5vNJO-utde!xOJS9=j=sf>Osn17>SDpF}9SNdP)SDY8s8<4%QM
zwe#UpghUsxR|Ge;*2v30nC-*wA}$A|fe(tA2JMoX{xC^DZn8^KEizZxujhuSeaSL<
zP2K$}YN;JFB(CYB@ALaNsX^(1cj08IIX#GmEIt#x4Sl;UD=Q1x^|2VqVFc$NtCRb4
z4E_)b5@?X}ecbylnw4JUYA0+QG?@~?a{vTs85j62ka-APFq#3TJ3f?4Z9=|uY989!
z+7D6|ah2;q8c_+D5`Q|`)6CR)x@%R~=#8H>s;H<8f}fR|LfA@^U45hIL+z8;tv|VZ
zVoquLt}bsDy|K-2PYveHp<T+dE=tL7^--&7iL<ZJy%yb4X=q;zZ!KTD%p%$daZ>7~
zWo17jU^%J)hy&{KHCI?c`$_0Uf!3dluQ3aYZSTNA#OBuSG7Y%zM;bNCUgmAOSp-b~
zee2a=NRO=4&s97A@Av&{!v>@BA2UUAF}G4)+u3PMju<Wj8+5w~)0m0plI)8zpDSJV
z^s8Z+zP%~e%gnydckex-h7DB+^u|e`+F*&%cgr>$Ae4R?1X|U3b`F5T6#CZ&$o;HE
zH1nLUhMWuPZ{66^bt@fyb7Y3><G(Y``$&n^qL~M-@MK<_>G6Oh%i*j@VhaoJ)?U2S
z=XBf%KmuEfK=i_#Ur%z86w`VAG~}5-6tu*peXm?-h=BUV>8o}$8}o#r1k?XruM2xj
zfZF|l;3>x7x`2*#+0u){_h<E<NQsM+M&kE>^XCV<VSqI>r5RLtjHvKK|7e?KA5>{)
zfDWj>z2!acyK41fo$2<Q1w8MfR4@Df%z!|Beb*J@3ve6qJ;}?*+&#9<*1^CNkt_`e
z^x&*of1Gdv@DJ_65gVc7+*6=hp56PQN<%0Og)*^bg8*jFQz<MBDong|d<yaNc|WgI
za;S0D^0(JW@$JYjV2!h$XL_!{4S92cKPh&--|TBQ#VI3-g8Gnh(%JR%lNKk7@e~kw
zB!*HCE<wxa8C)>5?A9E;p%kC#{Y-ld?2N^0BZ}>}?KIw2g?Nw&F#ZUEoCz;_gogTS
zC8dfrYCMxLvZqb@s`v&u3lDz)X|>X<*Oj#*=D75BK+(yoSFav!WCfyk=>s*+XGf}e
zA5sWbqcL#ros#wJd&*b?CN+8t=x_Ks_5BzZRtnd*C0VlZ#!=j9Bn5*kap($XJ_YUZ
zBjjEmiX%W<1qzq$+WnQXl96CTSkup~ls*HbxayB`o2wTBD7ViFDEKTsew(qGtJAv$
zan*2-b=)!P+3ML(Meb)dcYe<w;>08O?A%`MfmZi+%>u+?uym91cUK@IvSP9OUU|M4
zax+#aQh^SIHLRX&jd9JpwS5@4PX)O0?3t1X2ih^V`^0Qay?z+We&h=%hI(sC06Niu
z*XG2ZOwS@Eo_+B*ii%}5_BfU5@lX94fmMj{Ro_WiX=aMoBtH%(kg)4yqjc?#Bb5Fb
z2kcfc9!-Bqz9_as`F{=7#GfCaglj6alZ3?MtDWx688{Xz4HdIsDsfr>J4ndSc-)69
zBx%afkaf*--^@qsmqseu5w$zg>lpUG1oS|_(nofSjdRD`kd^odREr=5I__4aWpJWz
z*Olj<NcZA}_-TfYIG5_>XHG3%`hR_7YW{)QhnP)$y!8Y7n|fd~m7<em$S2vZO?RFC
z25yubSv8zYvhMrG{xjnPrR8%<)P--B2=vPpE^l*xO`9q<$L40<0;#Ms5NR+Kh-Zhl
zPB9tC{V1*G8`-X+5k8xn;+4zQAg`^Km~;CcCck|Od4Uwm8IWOj7a29@F~6vQ9)c6e
z^lnuK4q>xVu<-)fOL>9>PBX5l)S<P&8Ch-%`7lzm!b`2AQ4?e`+%EK4K&r4Ym$AhK
zztK%`%ID<~2v9fqtVv`#0F`yZ4+PJ_%wjNKWW?2qWnt~8xURp+7^n(cxi<+j2pRMD
zz7P}riW-?VcC2e`h2Om39uThD%><T!KmFpA+{xee2c2tlb|^P?FPfjuqT@#`(oxwO
zoO`Jap81^mmp70+ezzw&zy<s=K^iAlVO%3;66f<&J{4oiP!n8d+<h_3lg-imt$ecx
zCl5ggA7@4AR8WSA4L-ZHLY}!cZpw3f5437dopLMl=NXL!Yfv#aO{w%Vs*lx(=!1p@
zp|wQSbt+?MtUyaAY`>3>+Tc}t-W>T%`LySr)AFi)%0F1p&qaI|SZK~-Xr&r`D=Fc0
z!~ToCw+kkWge(L;OamvTk~eSsHyJ);bQ~hDX5SKOPH7VL(N_5^Q+58hxElTbGvj5x
z1>bK^E1ql`a^?{w7~yz)t&aL{+b1d_><UPkzLLEi6b?)8NJ%g0RvQ|zUC)*_7&l9_
zq5_`nC)$+vWe$DlOx2x>h?<q_qxq}zEnXn{*e~v|la!}+B6CNu+&OfaOiAuVIQ(vj
z35}Hc-4JJaVEmkUf+XX1ma{_Xd$Sd_rZ{4S?3{~(JhR@HoqY%XiX0sa(0?uyNpnaI
z2y`x|AW7MG58(`5BGY%HEpi+x!z)~4WFJo3e$7?;e(!{~paqGzTob#U<P^AjuWEA<
zJ6^znz)xe;Gjj|Co!#YrUsqE}MpU2~7n;fmLZ31ehwhq^XlhC%U!vPTnY;kU!_AI`
zP8CPa9GHYBl_RyIbqMzfKWosIT^y}#aaJ(kf0NwAT6_H?hcCTvoH^aCxxiuj@570^
zQPc8kutm~sJ^j}_SA#+eYw{cd0u)nF1956Z9JE9$+#)svN??eGm(nVzspdS6dT-~R
z-*fqHduS@_z)Sw2RTuxglrCyS=)ySYmD%<*MQnY>r%Lk-LZ%z{y;-8UE5h3`ln@dk
zr?lK>`Qol#Ydd_rSRRYlqRZWbtS?94RSkpyNJ{(rgc0s9AV;*k&0_q!FBXLGp%5cP
z;jp{@iFU*>=sa2T8lY?vUaBL-qfS+VJ%!^F;xU9#3iP?<$x=fs=}@jggvk4TnpI?6
zZjJB3PeFFS_h|~f=;sqKDvrB<D#a^i=@aUj2IiPkI<~2xBO2MHBHQ|#(Qq8-HeIP-
z7Vf7uacoe1dGk=Z0cZdwpGjQ;c?%~97`iL6#A!l+)q0RC3y!Wdj7-!+y42*!kDyx?
zy*#04!!}}qx;<2db?i-+<<>$6B-&8rHgWiM^=G}BgxWOUv|dSGwTaq$+1Df9cM`hq
z&JPfyJ$%{{&;7lzvegOgfD4-3OtQ6k?=_*OFYqL5!{&FhvG4uNBN`|@kM)ohsw*>>
zIk;aZHFwS)FXB?LgEwn#UuzNyZm&X5?+r4$Ua`ydU$<viqDEdIa^m!QY4Tx&q4b;K
z7w$0cMNj1BwH{!AdM`HKWWu~@+=uYG@0XaUvzF@jUI-_j^FGjeK){uz>bU;5F<AsM
zt@`$@Rqk($=3R1Jy#ES4x*qyq(v7!-;o8U_V;q9TYHA;|^`M!E_dL!2^0I}-#?g+)
zpUeAPS}SqEoD31B;g{e9(}A?_FO%Ce7$P>>iC*v$3Q|INgYxKKJ*}gmo4$aGdF8eE
z_7*s4%jd?*Ih@B{7;7Olnq?wLo>jdv$Tq&MB+=ve=Br2wIqN5T2x*V!m1i0DzH#$U
z(d1O?i2BQvo$a`>?(X(!w5F8~HDRW@Gz#rxQ@#!Z?-O8g&Q(m7zdjty{O}>$h-9ue
zmG4@yucIgWgtDS*Z0^QTHnB1}E{?fUr0mB4DfTz*0hQBsf=3PUV$w}kvvsOweOe6F
zr`uRr0vjb*zuz4(`To9nk>aL^OT&4s<|*m_Oc1d(`s!`9dgIV$YJ5*mUnH|WtUcwX
zK~De!4lkhQA?oSriuN?$INUkIVsM&!C@{5qw;cbPu~^DOQW$1N8GygsXHY6VN?!1M
zqCtEHwQzj0j9uq?Kj6s6^5a0sh<{G>^AvvyoXEf2smasa_K6ZMt())TP8Aof%E_9q
z!xIWh$A;g0qOLi(edJ9&Q|U2nXFiovDXUee*VgTOLGWxxGQfj(#d4yudOjJK9qnu{
zdt`Zt%d9hgx%bv&W@F%YZ779s1N62C_M<0JXZ~qk>6lM>?>|7U8Uqra@m4~8BP9O=
z$zG4=%fSY=_iHtHrnje}=8n4z6Hm7k>w}1nq+xc`q>IU@g<!1Fz(*qpv5LnVVBUQ-
zZ%UZVsshC_7$2K6o?k(|;D)I*Npq6);4=~Gu)j1Jph;6&rssX!W%7_T?M-Q5@w@;%
zTw(a&qsaLU<i=dM?Q^TV9@PtKGLqsK;lS@8D<Mn+S8KNi!9?4}9z}mwXZ^j1tJCz@
z%ZFalK6=RhlirF6I}K0wh?kHhykWpk#42*hmAo$P1zvY#sbcFplYfo7j~;)%DmA#f
z9D9ftV_1uunoH;0Bu2FR+m1`^yOi2*U#@99i!6g-DHf|BdOEWfPqHSw{@AC#vR1EM
z_qPKz5NHEXeL$|?vI2P?v8|@bd+A5~&fA*am3A(iAkxKK1^z4G3^oqh1*{QHkVV>_
zx6u9FaOG9jLs>1jj$FJYzR98&X&%4z<a-%DOYu>9px8BRwxY*bRI>9=Wye12;GRBm
zo01bAm8R2&ON~SJd@S(Sq}YW4yu<cYw!;yAjBBPD(ux&eFO~SEcz(KRpPLl^(W2wU
zxXbjBABJo^D@h^<`6FIVWrqiXw2VOYKfWzMaMvh-8+7K2!LRag?SZk1wad|J?<tfj
zS;Qzw#HC#4nv|2v+n;b7v4<Sw*S+caQ>MX%A}H&`Jv75lY|zMXAJm-;=!XclU6Ip`
z+t<-ewvfFDqhJIqhD<pzp0p&S*@Y|-*|R=Rw{kGK8lW4!0WKB(Zw9<$6Q<5UwKnP+
z4U$0(7ry>1AB?DVjR<?L-v-nR-CYC*x=*WuAi$$jH|MPlF94u#yW<Q{(=PUc%~|Wb
z26lIIwgOr-O2;ff#f|!tQjX5p#z%YZ8hPQCC}U#(g%^Jw;_uH`#|&LGtOzIf4AMMy
ziUrH#-<hvE*OC#;#m5;2Sc_x=7BFKbs>W3?T75`49lX3m34;bs;zC8o#TC;pU=E>j
zNFT5s!ip1<ss<%yq%ia_F_>@SG7U4UFxGf;id~zI;F>%~cH!x(8B@vpA9jRM#Y$cg
zvIzOG(@!VVBj!B^e|-|!x+z@d__0R;0_CHwb`i5~?Z@GdyrY(kP4d3-n7ZV!>q8NO
zo>2#qlU+e7wPrbS%-NRmna=s!c!Bzn`n6R~*X(ow$2ZsO*1xSHw%S_bi%|lcF-QGw
z|7N@5r=jt{h!m}qm4qv7IV1|EG&{B|JZ1#%sAewb-%8Ylmzqx~oYDxgDAga<5l}s1
z;x;?4d^Qi)P|uH`k=$w-iGIyV^|<(H+49r`7GJlGQhER9wqT(Lq(M(dF3)yZ=g1Cn
zTsZkG)JS3I{(SOTg{?dMO}Z=<b1;8id2EG3v*c2xECUTMw;L4K8HlKW%>jqL^n<Na
z47o;>gp<Xk>lMPVqT#YZeRLbjY36@(Sw6wiKRf4NIoKUN%bqjMqUx4-fA;h=CvxCh
zl=gXQU~WN`{Jg&dKsrtrC}F7f-X=ctZ~a3xvp`OD7DvQ$H+Gwi#|J+&^vy}#fW*Yw
zKSq-bzG2MT5(n{zM6ltT84pnINWH`;<obve(yEC7lW3`@AQ>Jqhe6$RxnC8FU+b%M
z85T^gm$UwFAfiT~1+e1Au$bm(z=ZvBfo|T=S5XH@Z6q-;8i-;riD(Oy`;{220$Tsk
zkqo2Q)uZ}+8=H^AvvlCTu5GH-P{}y+VDWS348qgf3*UeAMZ=Vv7}c0_Up^b}Zl25)
zUp%_40n74dD)!ogCN0QEdm7!hewuh_jj^+V)z;S_0jew+)&35vKerM4NVPa)Rc0N{
zhg~+ONJHQC`JZc@puK(S2ldo4h~O)$Sjtt3g}T}Rp``_8SYEpelE(H%^nIw*jj@<w
zAQ^757Qv;kCYc?FM)Z^_i15A|yrM>1YQNscr^Ig358~Bp_GF?WuLTRyDb?p{Onw4F
zT^y=+dD-T%M145237LbmeaEL^TR3x|Arx+j{`fU4y`?T#;i&*5bLNb(4WqvlL9!s)
zWtp|)hB#YY@(kEQUsyZvf;i3mc;7QC4paDNCsY=~_^#8)<n_5dV)^&eAjW%fnfC}-
zNU@T?Hb$AfTHS~S;OkUo+cm26_Rlb7&c8Bh#hvF!=>^vztnH$NS$Qb9%O6l-&D(Q7
zqttTW)_i?J7O@;k?a%@n>*1#xXf6xjTl$@IaE#=q@kT?G!iJLl1yW}GgC-yE+mW+d
z8*Pe+ulrS66jRY9U@1Aev3ob$q%Gr!aX^RtX|~)XhW*OE_JnmJ?^T-P?q9jbVe5UC
zYk1o`q?U^>B4@I%OjqLHZ;6$dFUf9vY>9UYLlo7Jw^ex!m49vS;)SyNk=KY9Xhkqj
z=e`UjV3USqP18=IL}-0N_7)v-Za@vVinx^Pz%XLWOP-khSfeI>CnvQ|o9<#YHpn%~
z+x&x(O}#rK|B3qY#IM)rNA%Ghe?MJyWLQ7B-NHQ4WiwB)nHk((3M?3CM*GphvyHN(
zrP><5&nn`w;IO6j$K@=1FwLC)YH7krBm74ojpv*Bkzq^x!g7m&mXd>2Vi(=Xt)B?z
zxPR93l`oQgyNZNESz%P2LM#{LSIaMLGKQ@s8g|!qm5QNE#kAEca8i8seVGQxLq^$9
zO;K6dM`OdyOeDKyHE!d>4y+lndh8HmBjWm_pNdusDyXKs2Hi5SFQ^9Wi;o$gZ4djU
zg`w6ju7(_^18GqhM0aSd0m>l!Xe#FP*ZosP7)TjDG)L?5k{0FRb@G?LzcuXw8j<n6
zw$lHj$!OSM!0#cVzjWD)Pz%x+M$nG?WeUS;{79d}baks7vrp17l%f&dx$I~Jscu%X
zi1&H!U>O<e<BN?gC_R#cSim#d<C$WOL*_7z5GfpAQj^_)(+!}cRHeeZ)kdkKDg-;+
zvDt#8XNQ^<C-H8hFRDbG!<vE|VV>A#__|GY{U{M<jk__liCAW2Sew<JXlxql=DSx9
zu)7aI@CK6%M&`kMJVi@FYF}aWz{_ujli8}w38AM8=6taW?&MI9Pc(g4>IJ3d>y#;^
z`Z85+MbDwL=oHerNvu-3<eNUiJ<PF&LsNLOl=!I4Lf`A=0FkrBr9L8vwT~(Nn#auB
z?;hm;HyfN)iqe&DsA`)m2~|>R{0&o4DnfjK=u;XZ9=ZXb{65jy;g7Z8$)XLSSn%fp
z&i=|nrE`BvyTEWRRsiQeoE2)$?{@$&3@VCxhAl~ryzxO~@$DkM$KcDKB}AVCB~J)7
zlUFg70u(6)N@axKOFKy%&W%|KT2L>gt>msOW%H!h9~>i0)}V^zQ(m=IlN`6v5+{f5
zB_C|#CA?SSari}@Etfobz6Z*CFAUXu8i)J39{KgZp0;#8rE|TDYPkAQOpo?jVo8h8
z`S$a?ucBY3vKaiXZWcmd)Em!Rs?S5fq-WjH;LDtv>2Z<7u36P(Mz?)_Tk7}h+G8%l
zxf$&wGN!^aZRC1t@OY!pgHS}Qx|}rhEX!3}n92`bova{rP5<gIjkecDSDC|<Q;Zh>
ze#2zHuJ=)BEKh70wX41)<jT<0_xF!eVaO=SKN_E(HH0tq_^EAtT2KUISed#S4}QHs
z3aDZoaS`;ohE*H#Ic=&{x6YZd8=HgO$s36Mx96;vb2S{;9qCYbH!UjfV^>z2O+vSR
zwCzysH1pEz7#UHaNimVQg9TX8J=Fh&i>Tmean;7h?vusC9-jX3Qx&-@DL=?okO})D
z>XD?W$ci_EG7=KLA+1`L{utzSFzG+T${T@)@O2!sR)0x6^)=9U`3<aQ!?&KzwG=f<
zi>Q7bn8_>z@s(+m(!9+)qM~w5`!1gM@FS`bt0>jtEy?WKYYWXaII}EFOwHcx)f7Y>
z3dI~L;&;2+sn|05%hC2QB5_t|{l@FBJfngv4Qre1$YLA(nc*(6)#BCjtgSNk_K@2U
z9*;etAA88eZB<JRF4VOok+=^tg1KiLcEv}#NASss(85#U5gl{&-t{MTUv5;5cF&%H
zdvlFs3>P}?M=W6G5i#U$Q=zxL<cZZ-=1%R_{m4o8+f&jJ+@t@pKdg8@4s7FaQeTcX
ztY#2kzyg4L$Q2sIruPIx9G-U=%y%;Enqo8HI5P{P5l=DLMZ^3k1x3FQhcBSJ-aI?n
z{?p$DqAw`l@I}-4I4J&n&T-^uwj(##0V~KOQBgcyhJM9~ds6arXl<Y{4}I>J4W*Rk
zr!ib=KBKK*e4Eo?TQ-$<o=Tzoh41En|9+hmJ-GUj$Xm4<cPB>Cl!~PGRWpiDdpT1W
zVIGXV7fv@@;+ff#_=hEHjGwwkXhvj0c!NA{^b@qE@?>K`OSshf$%x{|6;JfRmE5=^
z)3Ibv?N*xwC)<{bo1I&{*Xr^)1SO3o`Vj@xRxjtN=tFf9YJ@)CK_tWw21-+0(syR>
zO<#8vs9o615=sT_Dmy>(46umWV1Dsnu?&8B;7<`}R3KtIzAo*rfF%72Z+A|0vdqG$
zIb?70&sYG1LA||Y(c*7;%drgqlhL5A+)*2Be9J1FJ_EIJp3r~{IZa!Qyp2(|h{x|-
zJeaE`T49DeBOr+wk{*BObZ++(|FI@bXInEfO3}V7re)Ny0&TeebGcD&eP&OIl2i_2
z%SnZ!xjfep)Af1rQDlp^M{UlO;gTg;;$=I7HUkpyALqr`#)BI?tHe`kW8v1<bepQq
zdnX}$Ws7SDz5EM<o<<7jWGZ<YMcJPGSsEG?0#>vlij<k%RW3Hny$P4_zV%P{3+*j#
zVnJ~c&3}$Qmf+89e;v<iotTu8w-paV_##zw>jJ_YyNN4eH!)cT0(GEROXo?iaIk*c
z)Sa&7uMrzq&{U0_9+M@Dnlspypv;r6XJ;lK2IhkrW9Pp`>C97jTmRu_8#b6eyXU@&
zV$vcQMkUq7pZ`se8cNqeDei%AT7En2HoF0Je|6;!%H#4s5*<Ase@_fwkV?DXV9{`?
zK8l%h=_0tdGw9Mi0Ktlc*zn}obveiZDDL=9CF;nhjEqJ~3vRzmsp%^;qE1vc?-Fx-
z${c?RqFCt%q1VClJGTloc*hHZMeLi`3)j-eS`^_361I?qDtC}Hy5l~cL{ulU>CW*z
zMyo>fe;H{SUjLlN<X<5F!^;oE0p4YRv!1Fq_?86BGvk?!b~5+TF|R@FU_epMQpOG-
zHi}L8u-!F@wSrK(o;-v<tw&5qniCJP7{W35wq9z`!{LTUL)4#E)(`e;l2Ccywlt!K
zxyAo%KsBgSIWEEo(f@Av$xgaL`mxgR7Wo_+WxaLptZIgDuYKE<_ME<tuT9Wnop|o5
zm)-}x5vB&(RrTI3AC&8%_j?BMnAEcC3L|QY0gFb(n>=Fen+2MF#0Uyf+9$VjX{Gev
zG~X?`Xz1;W>y&9&f^G@W?y*#bWd3FY(#Jo$IVni+2az8SthON=%q1tS)OH$lQP3Y_
zoBiJ5(bQ33qeLRb-lepgEgM;3nigydBsC>?_jp;OLXV@&#6u}MjlC(PnSMc(J~{F7
zWIHV<FbN$m!2+k3kGx=EFZ=eEM5o#?bYZkmVFh<(RjZh36@F%fXlg`8=ehRng`=T1
z>BAV`l~=z-Zk_M4-m60%{0o2I?)uT9Y1DS6?)9JG>442Y9r8x+7mo;x7Jr3mQYUNF
z^GcsCdL3`UnyQ)N4gTP!t|D`QUG7GTP~z*-r@xlDW7gj}sVBA7V{`>&lU+}cZ6j5k
zvFV(Q{oHO(|CBhej2{op|63{yD2N9biDD@8Pq318`4~3Ro`)=hH+E|R`7;mWzs7>B
zW0aDTlDu{NCYkFQN>Nymu6-+Un*KE)YE2>tSgX>e7F$D5ximq%^UAl^oRJ`cZanbW
zuqso{nZKnb*1JeeH@B*50Dh9#cDTuMhJN{iQSr)KX!=tY-7zmp=7&kz$<`B4?cfdy
z(33alerVlg-Up7U0cw*Iq~Vv;7d9RIT}uh1;jjRM9seW2f(c+f3_RBSQnQG?=h`!4
zxrsBBpg(D%D?&k_N-d6RiRH?g;e15E57l=t!bjYKXwt}gT-A;IIfa)@`&IvmZm{G3
z((OKaasNRNp@e05)MB(maoBNrErkilM?l54qu!(ALBHqgRCFEnOVAvCp%wj+fz%7|
z3n{xJ@`4!vK93S*VTv{9w>vN>>tpE7S){kTxP-G;wly<~szP}T*5|ExCSiZ9^s0+P
z%?Fjlr&MYx{(S4P_apEf<xUng3QOC(I18~rHtvhvR4ISy*CCj#+I%L1f)anxjww25
z-8reJ#>3d<*FdO0Z3vsQ6@czM3u~8$O~W5RQsceB=6kW_t<U*ZS8W6~R0A-#DO}N6
z>Yg4#$P8@_ufds>Th<+b+89;%=oPOXPpoDSB+9rFQWA0SDQe5gO3lD8oo+mTas<5`
z8sy0{<ei1c96Wa%H2t-bqEydGo^hAPJ}n+%L9YfyDYDkSY_fo}E-89XLb5H$@Zb`a
zt8Z=9BinPwY%#l44I;x58+%ULLX3yx#PNdh`Jx$kVSJx@LDa^U^;Wpv+aZ{qmGPwS
zSKH4RcsPw~--wy_2q4zEe0<Q41UZz+WFb5?pg<88ou^V;b;5Erl6TSij*avJzxi^u
zx-k$L4-u<_AfeV9GT?PGkkW*C8wVv_9-u1yZN@63nBB8*KSd)w-JRJZvP#qSNJ12$
zCZt{t-@Y*u`Lt_H?%7D|u9)~i{A?bhlqJNer9(#*vp}Zejq{rVg7UEviJXN%zOk<r
zrtZO|R<kW`<8Xxd_w(8O%qvq*>W|ga-~RQK+|za7S)oQLf`p?w5*yPduF>4?2mUcR
zOl15Q#nPbl>VZB*{q3dY6@`RX&9w8Bb+imfF!}uq!aoyL1tR`kuMgT+zAz^jee#pc
z2U$IIsCN1hF(0>p?Bz({V%#Kxn9y?3C&I2Jes-?qFH4Q;>gwtwD3E2mxDpx?(JXxa
zU1lFC3V;SFr*x=G@1p$#srQicJm-ML_EbP62)h{!RRZoozQ7l4lZowf0%&L5kC&R6
z?I%<{y0%FGgDOfLs$HSrXAcrx?q%CK03;>~l3gfPlLFl8jAE6j2axY8O38rJxd}aF
zP8^q-%ABON`~9C)38<ksk;I>?F~&#Te*Ka#c|R$NZ~Pj1{qiM#jU93@7xyJ^!m3FK
z{;C~%1f?gO3Udtb$?uzaeu~=I(BZE1sv?dx3q%RmAB{C}jZQ}=vC`OF^#$>HCiBvV
z7OhN1)1xHwPqp($UGQmi&rbW9@`nLT=%B($>!{IR)Z>yTDaqEE>wxB@VC+o*(`ixr
z&|8w1qmeSVHH*&1q2mNcep1)#0d1eQq-%zL`|Z8f)W0>l*n7Pvf7z(uO#my|HkbY`
zBj~zN<nwGN!B^-4D`{LR%V7NMD2Afn{^(75FfF!F(;bN^zUAZZ7g%jk%r$?rowkP6
zU3N|fpEh5&{|VjS*xK{jr-`66t%09z8@IZ}gp;!t)}F;laE-q~cvd;lRpn~^2~d>I
zTG-y6UrTo#k|Q(_=*!pM_HsIk!%=6<53G~cLX1geU1rkX0Qmc&np}9Dirh@pCc5SD
z@Ni|Wzs|hiNLMFcZ;PZ&XY2W?Fqu(7bqT%|w5NlxhSsnpLTk)GX!Nwg+%h=tsqe%)
zOMXoPSdo46RIYye8qPW+@|9zZwcLZMQMi>sokf!ObmL}nCvT9^UiH%DSDA*I+1roW
z9Ui?83ctubD$tkbdG@DwZ9t`$(_yOG{l%6kssA>fc|e&qbvvc4^PBy%g;b(3luZPZ
zk~RH!d6u}}4=(e`Y5(pO-=j<Ihg_n{B%or=zaXwn#+19;#cLR6)s$$j*nmQ*v?zp2
z)Ii_sD$1}IMUgFci}vG^!vEHjgKLF${-uIK>5=XqvoKLm=J&&^FOl}&57LCpgEy)G
zsQutw;RfI(EQ~hweC?G$pRYZ{6ZjbTMpbxJf`-jC%`zzzqIaN`RqNs7L419!USfLZ
z-D#~TKO4)jQ=u6<9$@#fIV<{G7Z4XnAGq3^&|PlrgEz4^TdVUeRFlYP<UY2d3(Q%h
zf6-8)fRr@N6M-^|1-P~|N^Qy1XW|WF1SkpTGmrFf>4c9bQ*Mu$w_4CQ>d#xbFnhao
z#HW`QVg6I$It7TcM$k3A&ZQr{=jVBKI^o2X=YO_0H|G{{ToBWY#r{}%@v=eC3p8I%
z6tioU$TBI$zwd9nPecHUq_Vy!$Db?_CufEMbJ;N*I!ySIi&XkR!03Cby9K;y4OMjs
z8k3&K)iyK2Y~!-^WOHF{6H&>krC5<HiO*1ZhE=duZ|)O)M&qKQpLFMY;TmEKYQzSP
z(e~8cOFq(uL9QlBPq$8V`+o%zD<P7<iL5qz3Cm#%W@ez#{nWh3W~S;DxN!4mkM8Zt
z(+X7r@9`a+K{!uxs=zGlm#or<8{niY6No)GJ_Nz?(S?6{2EIx@fh4A^yUXLIcHC9$
zxYuhEDK>VmR#eAyy?Z5N-958eN}|E76};P}NIdqM4(^|dl7KI?c~&Ygn?guC+VWof
z>QLmK`?=9wpDebH^i}*mSLEsrga_vMgOzEb>8`zrn69T~c=;@Sy*kCh6Jn*aM3E2d
zv)M*vCqE3;N9pT{#P_%540gdCxcZuQhO9Hq)Y4B-f_Xipa2dy^i(C_WUA9OnY@ch$
zMU+|g*DVI4E&I8$V4Vp=-qk-&Z#GE{=6gDOA_s}9vaQEyrBY>^444bZY>g@#o4Zr6
zslIjilBY7mk7{ongPXr&*))#z{-`|Z@Rr#CEff{?PGE(SO<0!9F1A)2SVPrU`P{~7
zc}98TM6Cn1xs$Eg{6_eV4^rkFek5UPE|5vsHPQ}yxEwlG@7>^~$Y>W<x#EpITYIDR
zi(NFTYE7uTy#I>(&>@tx({L42$j=pv!#t(&l0|WH8nxRrh=BP8MMM#P9G9l{{!(p)
z7^HiI)&kEApCfl9SLcPxjSg&B7IN8!L;3RUAEr@CX80f8|Lit`IuO}Wa~2G-7oEwi
zOtQ&9!EZUE^LUByeLMS{Efj~MWnxbRQ7_@Vjld=!)Eh0Fqhr&sDG&PUz1;Eis`|Bp
z!gsCD;#S>b+-Jh$N{WgVD~pR3<a-h-&%CZ_UGHw<%!=7(Jq$X)&g5WKt)jxGa6!)`
zYc}@zv<yno*)76O#Ee^fQdl!sK`n8s3u?B6Mr8yJ7gnflLa8QnGL#J751QnW{(ApO
zA{dpsX9;nEE4ZJN(p7V2@KwFG{|BOl>Dg9U`;OpA{W=1cO}=!b?Ip;if%c}RH=4$7
zCEt1K!}UqYe$?1+?UR>Mw*$==<sKE0F`b7SG@U+4I%Q9)^M|tHj;X{3mOVdqy9j%S
zZfn=SEg3wWT<Y<xV<E6+zE&@BvHt3rYt~`^=dS_ZGwpEd#+%TKw;$WYe`=6c$HqrS
z8m*;;xIauf_$iHl4j6b&Ao)9tAYO#)*i^Q9Z|}~#^xlIs0UsQPD*uap#yt?dR!kHe
zz$HklK0k+D03}-9ST#_tLPqz7eO>p5YJ!VeYspa}_hA^!Pc_{WK{-$@UM-N8-Ym=!
zJjFL1`4)xcH5Ulm1xo6&o@B8pH$iwa*|tm#r242&B>xWu>~3o~JF2n}YTIf)sb0hZ
zPn*ZRU+eNSWskFsM(%sPb+~@+Uxw}P#3D}yx+v%UlKz<u1zgEASzgF9C1jDHCHyqu
zCr>)%Q~@s&gp<H;ZQ&0mW5!OVs(m~hMXqdLBR_N+=SDN{jt3u<xad?;_+AdV04fTW
zKW4opTzU5Nx|aa#wDL}no7k(ro0SmLr2(f_%)J?>3>YH?(OLYq7MrlRjtw+!<@@@;
zf^q!<R(Q9mQU47T4-LC1Q1e^G65C&5eP6&`6#)|dD{(lwa!^>NQVJ)2V2bzcg+n7M
z>A82vne!FUKU~s(l2#5rn*zx}JEHbtX}8(jMRUa_f%WD!cyuNH>rNnV>eQXTu6<F8
z>qLGMq)2c5o-_C&@;^skykwb!Sk+r>Tmd$VbNfrM9#oz<XPbki$6zNSdEe^`7aXL?
zhxaxqW_w{MC@K<9fA+UDX%8<m2vEMg*Rml-G{aH4_<Yta#EY?N6d!L_P6(3N88$^<
z)s2gwvfdO>Ub>vS&M$Eb6=O9r*DSRTANpHxVRkVa^suvvyw~sA9hNp$v|XrTLMg$u
z9g6nlg4tABGrhOVB~jcVbqq??rHj(Ry;?Zl$S2x8I40lc4%X<z#;OA}npY=l(#r2O
z@(6!@oiejupg)89aT%BnGIm91y}cJr$%Wp3K3<=GlNM^IisS9BL-}yE(A&#T^aH#d
z(pnI3)=$J$Lx0oLbo8@M3}vjCqF}8B?EnCoM4^Ii(d@d~`=!OvLaI8VjCaWdKLbj{
z-oP9xur&?e=ug#fJfFR`%OU229UTj5*7}jh9i|f0+B`)<8GD=~caAp`sDAy$EK?qS
z<hp7mc*VFel<oYsn#YXm`=>A$MUR4}DKiyc#eFpqiY6ZOhP85%Q!Bdo`kS`yoe%4+
zzxpcHnp7Fqjm!&?dC|Dq@fCA-TxystDgN=v*a<^;p^m?Im^PY3mNjqbIwyay3uTKx
zWqMXn>x?)E`esE^;nqn<lw^2yTDz*>e<ntF0S=uqyktY~zQlKC_GK{~bJZ>)Y(*ZM
zPg2e{UquB>T!&G5o^hOPw#K9L=5&V%gqQ5BE-z~xFv%v^Txl07rJSxVObeHIRNAI$
zPG#$f$OE~f#}wKj=qoC}0gChnS$%U8sQ#C7EJwe>n;%yC&t6pN+I?B3>5A@sy=L4&
zsFhouZli5^Hgkujco~<MaP+%$_fuU9|3?NL@KLGXo<&TOgyc{&BNre>N`IIfeZtL{
zI6R3j{hpqTjETXIu6M$tQ+SotZGBPtz4t9WtM)OX@s>}nA)X@yS0gh1Bwl{WM}w?!
zmEa4v?_c`BXN);gSngis?4EO+JthxnR=OR0CX*!2lsFy+VedCoS_1n;oV(`7JMX(I
zg9h6ae@t$l|0v(O$bCS<NbnX10rYDBkfO^~?9R3O`<V$W15W!^OzU15>mLw07n$sJ
zx$)T%hJfD}+FbXc7L)7Kc<lS!Cqb!Op$#xljmbWL-U(8|Z4D+Nqb~+*vi=SOR{jr^
zMFkp(vGAOzkBxTN&w9K_>Rw&iA%iFOeoTCRAC0R}s^c6yh!Y7O^5Fzp1jdy>sod$t
z;s5do1jd(gRmk*EzH#mv3|@K{UpLQjpiqlvcNf$Vx$p4BlF0Z~O%0mLlhpz=-J~$D
zf3g4w7Vb0cuNv?RK);QB@4Azp!+bqZN7n}_Zy6^<MVXAv-3vLQibp&-&}~cix3!}K
z_FmwNNr3C=^ajO;UNo^Pz>@s&dsvGThnSeyyr>VkegR#JuylS*nN)`tXziIeqn+(0
zVp72O5ICRc_gcNHLx1tkqSbY2#NmHd#_xDYsJRm>CZfz@!PC=7wkj}TGzqopQvlMR
z<DG2qFwA#D>V_Nkmo*Uq%E*_`2@MSQ)v&@)ScQEMn`P<27wEa#jM9^>{6EUeW;BRC
z>CS(7n&Ecf+Y;Q@BH|@5Z3E!Z!8EO3zA+eOGfg$T-=E4#QJhXs;fD9ROiM$B{eECY
zmyf~7+50FMN6$!w?6{lj_jYNm%Cwu|Y4w@`Lz(5R))x#9QlTi3`cvKwYb%fqj1#O7
z^xBnXv4FsiY=i#j`r9?riv(B2i%s_}a-uPD?7bhaV!}?TVYhciovf5qH%bxW%zNZq
zQCs|02ksF*c1LLhe);XsmCAUWAqAGBwzwDaSafyGLK8_<O0?^u#$Lm3{XVq6+0otr
z48f+<c6>s@T7LvjYQMYF&b-8EQeK|b3^7au$1Jih;%z~NVujVKOUJFG9`PCxF6~t!
zX~S(jk#dZQ#O}v!Fg6^sT^aE>Ez}er8!gE2JH&K>Q^?nzY2k6M9jDJ#kOka`#!Fw?
zB)R{P!ykerWk)O=7}kC+XY72x4)y#75Ne6<IF!y5{j7@l_|F(kQ$Td{6#FR&EWgbd
zx{G{Jf$jT>!{C=(qhI+)g(IG44xs`uoTJTV6*l?TJJKI9@Zx4q%k+(n^|n;rZf%vj
zIT=XA7p|P`DoQN0@=S5s?adZxQ<QD7;;U!;w)!z0>Nn{17t%Ri{rYrooL%$SVl*$#
zd-lcQQC`tA&f?;mXPGNbIwO!LM&Lie+nsshM9I%K4DC|S*Pk))+KYbwMe*aJ1gK75
z>r47p=~<?hZ?rpyJ!T?T<T{=hV-k3Dy@nnVvd;iV)i_%qE>+4EM3EL#dpC@|um3CZ
z0fb6G#o>B&H|6E<^-_D1!!71L{U?|JL8$x=z7jz?_@SLuubSG0xIviyodtx4<#PiY
zGP@o0g_H%UO91l@q({vLP>4`Cw`-|Y4q_u&20+TNm0a~l4NE+)oGEea7MlG1<Gn$i
z7E0Q?isW6HbF{{ZXbv5u!vV-H^+Kic*z2<JsfV&Ku$&dtdJj9=R)UVgPM{?2m)^=_
zi70M9z^VBx^Kv7;d`WCgTkgmycLT&-Rj#33;J49DyUWWro)P8;o~q|*((UV3nGZ1m
zu29*t(m$A$2$!pZ!(}eXPekBYV{{Ms?9%DVsr}d0emKTnbff6e(xoq{d{9_zz!`f1
zmu|JbU#4b_Eu90lSu9V}MDwrA3WHEm&nCYQ+*luMY{+ByCjDGAgTB^QJzTz*Zv^|4
z)wy#R-huY`DDb=Y)pPm?b3>%=tLI+5d2`Abdsl|TfVfKS3)E>7F@sbrc+%``D4*V|
zJ=up_-Q)lH05T}sLr`wz_3hiJ9nuj(!66}kE($E2@;_6)oYs|+M6Fn}01@8FGp(dj
z2rd`BSON35v<lTAC2gmdswr=&lUcMegYLD<&Lr`^Y&aWALlocnA)M<a$lOVG?&iSw
z{u*gu1XEVj+%@i7V&$(6`;0Yo(yB*V*@<S*XGR?()l?+M(pn=yIs8~gC+Y=H&YzLw
ziHd)s<;64&jDYVlt5GZBwI6ARx^}7b5<fMkD6f3;aeh2j+eSV0#_sZ1UAi8BtTCLL
zgZ<I*O3?6^Tx)45(wX|`RuU@$Lduj4MM~x>t=3(c^!P~f>q(q5VV3eJ2W{HnlOR+l
zzA^X6j32Ee3zgoQHG_4V?PHPEHc9XM4QdX4Vh|)#)=ll;J#KqvDKJS&GPhTGqrK&i
zZ@expCfvDA6J6QLHZ3merc|pt&q!k2!o~?TpA%SW$No{)nSeZ-DJ<ntia1%^YU}K`
zP5vn3eah>r$Ss3#FFW=_9rMUvpEq{b0Exq5s=1dHj5|XH#n{dn{jqGGZqDV8&sAj5
zySn$zML)SFv^k-WaC>AR(i}M`H-erAU+N|tuDCc1rN7>G!t}AzcAIaOoP_=}mncs_
ztm00;D_xuHmgUCoN$hW~16&--s>5MAN`p_o=0xA23Es$m6Zb*<&)HT-p?dGx4Myq^
zR~_uL$LWOV5_OBl?n+F3(S^3bRS{mD(2hk_#cZBdcW;x{{vH__slw6IaNGJ5v5#2&
zPxj3aR+CqC{=7VW5PE0P%?mG*xl}*H1r_VI?z`_fBRSohTB`YWZ--_$;04?eHY1k$
z%_*fFFLWjMq2zNvjzD2;DC!PEw8!O+dty3DHc|7t!~ykD%SHA~fpsdX=M>#tt}+Vk
zDjAQNf<FZhx{en(E9(1q+|r+SJpAoxr`I8Bb`OB+q0pjWkFEB^scz3@+ym>=CZ0N3
zuY&4=FRRh)3G{=40+na+Iq8;5G&<g8ExcuT#J2{3$mxJP&gXxO-uYBCf{@wXXn&2D
zqSz=0WG$M{$y;La>)*9Ei<!+3owa{_jpIS^7K*p^nMSawI23cR$V=<H)T0p6$+lX1
z^{?phpuCh0M(5!M>P@XbkzE1TnKXac*X`%zRO^pS_kDvjSY+<-O`EFe+fdqt5rIwJ
z#PyXYd`)Qyt22RTeQE4e`i+|=GnbCFc=-I#Lc1Lh%U?!UT8tZRH#r|zW~;07oV-9U
z@da$cYN|Y+qpA;vJz|-~Qp{IJb9=8IcOoPrvQ|@o*zrj}sPRVoW4DU7mkaZM7WDN%
zy8fIKQv7r^H$^B_bjqX$|4oxJUd{B`KFCV8PClzIA>(Q4UGm?ehC0#3j+_a$`S%yD
zrFhR`_WNPX*P1Lo{TKWNaAwI1I^_+N1PH<B1o_xmGB^9B0HVjQJvt94YOKPcVv`Bm
z5>U{!Hq%b}V7jHUU;xk*+gxiijf#&ZTYHI66ZC~eIc-r+*N9<8(=jf}bxL|#vjMQK
zwx~$0dC!8ZH;0NZBReQYc1Xt~GW%F^J|4I-k4^-0X(Hg9q9lD!UcQ<!nD^)5<j<gO
zp7`|qoBJsV{I_%Pxl8lLkimHiZcE{F48yW(KBBgl_E7P%Je#|N<=nSyRT&r&o^ee6
zWivqcqz|J%kGZoe^eYl(4fI#D+oq0Zo1aP{(fv;1gKBj2*6*CidrIEqYH-kWZMSwX
zUBx$lw&s<LR<+UVVnr#IFz$7k{vDHUegziTgJ0ua#OV!Pe3a>m-DZOT?O=OTbDU;$
z*mqaQ;(WY6f6>=&&~c&>US`V0XRK87Vpx}}+DQpQ!KYN=6zcM(tn}Eo9zA|_hGZ<W
z;<}ScrlWYV{RHVLt9bt;10U9;u9<UVL@;Cy*QjEQm*EkoL7`*|M>RlLPkgbZTmkT7
zI-5pp!~YLC`g4#_S;=bEtnjNQQ51A0U-56H_wm4)|KLo0Srl`B@r8|$fC1YQlt<Ie
z{-jjAe0Go1#$B_g$+z6{MZ_Z#ucq9{v6{3uwsmYZvdKELQ_0aI`Q<BOqsL3_VkSVA
zzfVd0k2nLU7g!%Z49e(>UUy<;XYX|Njm=~6VHg$F$k%@NjS0Cc=bVjp;L~Tj0oV^_
zzbw0zuAzEoV%)+(JK?B3WC)X=D+h-SR5Qw;24-*HD!sbYD0sGj_=?&sxb*(gzeuh1
zx2b5}<AmlDsQgPx*4hrVxL5yZ=<M1s)Px(E>b4tn9_E4c=hH8&G0&2DRU=||75Qw;
zbR%MIsDqxpOGJuUv12PRP$)X7x*DrmfBigF^J9atBumVicAyR+3m(d01a<T;GXluM
z-z9o1xX5qngp<_|$9hf{D5PLCo#D~q8iEst^UglBBpYB7y++02@?>gXJFT69kG^~T
zQCZ0axg2Mc7|uCeApt`Kf5sGL`GiEVn^tvDhph6Rg)7!{;OTL+Q`n1cWav}<B{`hy
zUV2^^Zuj+Mo%}Po-YFZnU4Q*;Bs3b9P{KCCH6Hp5%HLeJ+&gvS+Z!Lr*OafG+U3cA
zBeF4DnN(}LF<$=Tge86jLLj5a<T}LvYR07jURG$iB{_|7{H^ryL28NiA0lZju~F+^
z0jNmhNlXkdL3Op1g<-B&ard(_RBv+1{g08KXPTbv&G)42!D8#z3Ddu2D79)tl^gJN
zMB0LPRp!4Qc<Co9UO9&=R2@ri6+iGyk*5SafcXwY<wK7a3uVQ&;19hL>wmNf#6A;S
z<&*X8=e5Z7aqH!3Va0_1oD~0yn))|E_3wWZ8Bth4wsXN?ARdj4(j3Bm31xvow;DJb
zuLErmKKH0q%I?g)aWDOK3@86ZMg2`aZC=%+j%_U?43!5?0|RA6RwSF(s{-{H>Y?Tg
z%A6SKtI)4<Dkte)?-M85x(j3)TXhKJhFyEM7Mgi}<<SQ+)XD8UBk*>M7dHt^2!)|7
zBo=cE0m<)S97Y^vR}OhZ9c0ZT1ACzl7*Ym?A*J|lD1cN5|5h-yPN^gAgQ!umeCp3r
za*L}rbk)2DcC|VI>X0V<BGWahZ<z+JbIEwNamwv0y&+6BkN9oI8+xSDt#emP`Y=qW
zEpVBm#22r<?r~XE-htnqmhM(X6cKRLCh>}|;tfB|%@81kW_2MW#kS4>e^`W&)wsYy
zr+jZ%&*!7{L2wye^JvOYZB#wGY|4*;{W`r;tFq&*nGt=`m{90rTTem0ylk(_R)ves
zvY5$|UjexLSp0N@&tZ13Ot>V;7*$PTPMOt!tVQC!WSz^M&sVz5vYKj~kxZQo_S1v7
za(>qkM<Bk0jfG)OE+_hTFaLjpodr}>@7nei>5zdD0g*20knR`+ML<NlLAs?|dH_l3
z7D2kZrMqG1mZ3{xXui$)$2sRc=Y2ny%e9w-!{C0NXWwz%zYA!d%ntiMl_MdzoG0PT
zt!Y^dne4s2c_#=o?#t7;IjY`nCW1Tz^EJm#hPpycGO3G$Hq<eBWZy)s{~-jHNAr0!
zQ|Ie0ey-tMlk?r?O#H81`!9@;zbjtA1wpJ>-BU}agGFt8e0*k29L-=qpdd*Ma0b#Z
z02&zW%a`M1?Q2GW=R#3@ObiV$W|`c0*oFlgmjnh(*MY%8#MIScJMPWZeX@W~!_K{q
zR+l|Ul<Z;@`t5h;5K1}gcd<e(QBIZ1$pe}_!{lB;&1MXSO~|9Ua-|}@apd=LI~rk;
z>h5u}ZeDR#g5!Y2QGJ1_v2dfKl}&&g5QK4%xfS%~=nnjLpY=yn>(go3*T`Gl>tOk}
zO1J1S&@)SJRZf(pyj*uCRpt}yU#OaQL;6X1waq&9HVyWDjp%2_dzFKr<y;bPv?Lpz
zD`e91hP+gAKfRP2%QhsLyC8`F5|h|fuvm|yxn~!6w3%cAF*h>P7N{ifck8Np7?Gx`
zKxBpDv1vFCBSli2?|s(Mx^cF{@aWPZ-l(g64gYvHs=PbIcjd;eZF&VZPJh`uIEZz4
z&fhaZ;%2Qo(`XempkAs)0UzM?UCm93;=J?~=b@<%w;BCCS+8k22Tc9+IwSWjBF%+$
zzg8{X9Aw+#XmpX(BOV*53bEZ^!Tg>xoI;=QsL`p$CiP>dFX#oKiKg=|zW>Vz-n0*Z
znV4#iQ2}hm94oFc8c*_a?j~K!KCkg;Wux3^PM*Z~=9xWd?jXa;hPa}qd9qQ}jl(7L
zmY$HQ#Pah2(EgJ}T}r18N9Zs=RD1j-=b(u`@7DPDilRVKQJ_AD4TF5EENQtC?}{MP
zcp<DNp{|S8da3u9Kq3YW=~8Z}fd$uajp%PJ-G9Hx5W>Ib><aGJO0KT1V%quXjh{j>
z%7A*BIZ)}Xyat$DHI$Gb91=Rf5;oSb`>l%!b>=(G@{hqlzAc4Y2k1=>L4111vG$1D
z7mr9B;<oXWjkLxe0;{Tj#ZY>Wqa%K0*4bS}CSKt6`=U3>uM5>xi!C`ibWfXDUVe0!
z_i?TfoQsIh%@1fNF~mkV){p7p3bNUx(3!c4lsSoYnemCCpWMk^yrK&yHxjM|MoJYA
zeWit52u|E6g>WPp%R{%8hN_TiWWa5tX{TOS{mCelwF|>i=zPGL{NbbEfRH1yO7RQ@
zbr5!>fL)bUE*!`kFm>2n9$YVvBiSU>Xp4#`am!;1BnaB15k-nz1sQRAcFlk0dM>u<
z)EglAalYqx08no0;%UvL6CHdpGILQl;UVKV@)f7axiJ$xkWVXaxMk_9G#{O4jwE6p
zfCHUY+Luh-y4?+ren`#C;%K&=X{dh?ObV(CC*@GX^|MwjS}<*DLmfP!X(M6nlf1SX
zp4p`QeI`8)Sj3Wh9SuHb>X2e>w9MB7OAL^`vR%y3(PlDkbbarGu(L7?!V`3Bhg#?;
z0_pQp<s2^8!@`Cc^iWM&ZXETS_TlEZ^d-(w%$*gyi})IC?c80UPwu}b^+f0}&EK?^
zk7)-Gdfz7e)$B0w{aMsL6cy$^_VJ>6;Y`HpT?4$l^?AwbBhMC#4>{Gpl7n8HrPr#4
zhK0mvL^U6{$&mkvwCYM<o70*2p88h1S|>kw$vV<|+Cx|T;#;a_UyZ1B^ukti&~4YL
zxy{w<!5*F^v+&n$^2MoMH?yNo1*cUv{?i)KU!B!H4SG%<78kA0DJNTAJ(}Y_uJOAX
zsAOJ}<fy^kV{!eli#P6+MvOMwDb&ED5VJe);cC}qFsERk^>*ZJENny3dGYkErx3+t
zi=5J2I$T->F?bveK9>GYgw_>d*Uar+w?{wW!QEuD^Wz>r3>(iAi~w+)Y@1leUf#Ei
zqsJ(5r6fZ;W;+aQq`3QrBX<BPd#|=T;n?@AYCd=0YWITA^1SwD=G6uH|M}n+EBgcU
zdmU&9GOVw5+S91JyS-Y!yFIwe0y-+Mmfv-<y^%;(`tcTnxNF`@8nIwkdzD0Pz7yWR
zfUBIgMe}YEU97Z@+dV>S%pn7!T3|+#q@48%(%OyMk*rzne9>eS_{{sZto^sa?+<l=
zLhp61dN(F-RiXOosCGk<xxe8`Qd9y8%XYIug!?S6#<!SY(Iik^gfJp*p3g3&W9l@x
zAJ0h(hg=_>K})N4K@3Sl@C0@`urb8#fKw(hCVhLAFP1Rb;V%_bXE0ba=iFOx;AKuY
z?^~smB;r@qUYUt;y%A8eo`hjYlc#RDQ>85HK3w6RYL@s;)5Tj^&}qQAs#R&d&FEF+
zLQc@>eC|cim-zk--Mbe*$Ft#EFu}OYV%?L9K6J&oN=rI!(kK%DAait-yOz8q%wq8=
z_;u+7rVu5&ihaPyA>ZZtz(u*<7UQ5(wNzLigRxW7F~$JST`tWYG8>88K)Uy7lf&L7
z*wV>#d@Q7GuqTvs{(cydeGz?q;hS8vSO%uzKA;L<;?;I6qv5u}r%3DEfYsw9uNP%x
zj*KDHclCr(kVNf;66qh)ljt7_*XZsHpL~)!M|7uo%38Oqd}8{5AmkF%WB2S5N;E-k
zF}L<~);%t}v0gN2iG0?*_-WBF2E*uEpWC?h({Hl|0)MWI6bz(1w2H!v0~Kmp{}=4E
zERvaDOf0JOwKZNhCA@H5#aen)4Zd`W2EfBIC2?U^m-%~n)tm5%M@}S46@g-n(CT+=
z$M4cua92#GjDx*ejpfGCF6$;@I+spVjajNrgB-1mY9;|6lWmKuBV*CA81j+o#FF`7
zyFGzOv$@eDQ4y=OLD7%<`ufTRuX?(VRr+X~1gBkBpPoe$C(jxgi?FBWR8RH4JYc$X
zj013z&~VLTWl;X{l${vOb`tD(NOio7bh4?4D>R~N*MZC)W>sMTv)ACR9^ASZtF9so
zZ)G|-RP5zMOoL!;^LF1oiTcEAgO5k&QlwLu_J*G>d;e?X@}Jk8`1b(A<5ktAP^%x;
zPod%APyHoI0K`|JW{rIG*RMr2gTDn=L-@;|zHSbP0^}IV0~r4N+kj|rE;`mTjnpkw
z6)F=3-5z7lFUGM7XNQ})5+kvtaFIVm-%R4QGHoQ|c>-NL+nr-$5L7C9SKi1W;j#?t
zvd}k>5GKKNJFb2rey%q=BmH2}UZC27p{&Xfc~t~`UOu)HR!kd)zb*R+jJa?=6(j79
znA<6-JzV4tQ_Tk2@@h7birf}`&6SU$%iRwcNO$rK-jU4(pjR6mcb!#W>2Kh{8abbd
zASl!V9=KTjerivet-5KZ!@J`9`3S%v+@U-_{sUQ=@d^KPu5Q3hz4tu&(+E;tHp{T?
z_V4g-0=w<WBKzOvv%|R4SXVqbXI+kh2nUO<9&3~>#WV3tTYGc6eI}l>YtcIfn8E!3
zYFK46=;WeT(DKGJk>6?VhkoNn5`~1SFkA4&Ram!dj7==aCLj@j{qoH$p|epkTB@)O
zxwTC=d_ha&Y9Llfu)YFWypmR_am-J=TDs@Y-TH<x@D#}zG?L!AAA8^;EpTPUpGM{_
z3KkHr(7`dp*97fV&!cWFA-Whaog6wGB)I1{JV73I9g(lj2Q@clBKz&-U%H24UkwDG
zeSJ1jwgv?N#(N_C3-k^++`4ilCVlNB3_`)HLYqPqx&8=6baiL4o>JVG-_unU(6#7s
zc8zzqxg``1XOp80BREtBu+}<7{IgAU`$-3SD>fc&{M;)6RM^qc(W@Kw`OdRd7A6h%
z_GEecA$$KFrS(U4C6<UMBO?=e&mDfLVVNrfKzg1A=d>B2f-O~QUjuY4+YpS2kZ?w2
z+(T^F4rZ6JK3tz?uRgwO((vKUwUtKw1{tE%MIW-=NwHc7i3qhZpT|!elC`=AJWY9k
zlH6Ly9(&)1V-$QyU}lh3?@b4ID|3<wue6d<$)I0pNhZN91h(~d7aazrNfY4T8v*5U
zDEnHRA6?2c>JFiLQn6+c>I%(RC3(%lHc<%!^eBUEs*>~`xk+UIImaDJrJv-jIPAo;
zTRWuOjTaIj$hz0RVD6b3lpN$KtosfAZQar1TUXI~<Beiz-pATMWWRq51pUuHeMXQe
zrkU#mC>`7f{+t@}sqhsW?+X4szC#~lUVQlR!fC{IJli}xw(s);31i+|wBdBxnx(s&
zt!Pz&P;(*MDY<NXOJk#r9?>+9Q)a5pyg${IVx83Nvo7KDrSx)_)z*xFO@K*280gUt
z;^Bl+4PaV8$M6fg-S13p*drPtJ*r)vK1v$r=A)B{ck8Ama(y~XUkXhc#UxVDZ6aSp
zl+Lv`R9COQs_`TcbL-7}!1<w`m)wesUxT8{VNQ4#?_0f<xnTXI&_S81Sl&fC8_o&#
z7HLp*j;6C#65Kkp;D9s;HhJU{(X`&Q9<rk_w-)yoBIGY<?7v086p_Gf^bvCT3!>SH
z|Cu*&Ok>L;u38$#6#la}Wq5Vg*lP>@FeN6O#NwZWXAb~yysN%oACxyaaby;xDgqq6
zq+NfafXn$$KMRLP1mpYDr*oASusFZCgA&-llLbtr_d>i<jRG*h;hNSlK^b7Dosq?d
zdls(Nf722E?c@FZnKP*HUYtucQiUZM{&|yqUdrfAr8V8>&2i?)4N8dkd@`m~0VHzI
zv#N<Au;%LHa8fMnEA>^>Az#cxy3ojD+Nv*wyU{B8u7B1hDDDkH+%*CxB8q4MeCDsi
z(eF+T0GnJi#A7WLUxyRG=w_!MwP73?Iec{Vu7fh-RWF8v_e?uk+{d#W4H}DrewUi#
z;oZ8WCeg`Mo7wL)I~2A3HTD0m6^(zr{y=ok$x2Y_^!a1)#1JA$zuoMLwcv?~U$K2o
z|5~rR_(N-`${8}uYF^_ktX%5vPy0z+&+GTuXS<)0PLoh1@833qI;@lVuM%w6d~oYb
z`EBZX&Q9~gKJ8B1je?d<!7H_)1v#g6v_8MZC<FxRg|Ph$|L30gYj}>r2UDDaKIbQ~
zSOC%C>&MZ)gI|$*w*T|_b^kZE)nH)ss}|3M4EHDKZ47Z?ie|4Snt_~}-RV5fKiNkA
zOE$kAD+X~TCF+*?|789D{d@o8O=AOqB^$f`_7mCv@kRglOY3pKTdbc=*y{b?Uw8lN
z;oXcN?s@+9@ttU-6snJZB)i1t2l^!xN>aoj&_3G<?J5ncs_N>qC37q9suq<w^P8Dj
z*keuUDvg~C##NOkKA1oy_6*%!^33-RajccrUq{c26`kNeytV^RIZho$cph}x4_~Bg
z{5{I}Z+FQDE<sUV$Lzmz{s{x}{Oc`zgY@<jY2L=n_<JRXKzQ>|F~ey6&^;Y3E%=km
z-)m(S|NNwV%6u+h?~jd@^w0-D`fW2d-XoBI^+YW{y>h7v!MH9iD9M(Vezlph2VTq0
zD%8rPqH<tjfvjeJ&nmozlGOx<MzuwA&e*Z5YQO#x7Ikje{B5an#nT9$sm!@o`O~Q{
zlG*j9g1hzTO@DvYP3`T%debm(&uybbYRyC#Zo^HZ;wSbN8I4L)%8Izcr|*!!m42za
z9)h^=Ej}>nM@-n|+3!=g=W8(ByQ4NY`Tkv+9jCpidf(Oey-ci8pEeA&0L|7+vSx<k
z*~Vo>1#L;GTF9IJ%B6fO_sV=ZVB~j;$jNk0gMFyOM_A%~SCD6@%H*-4{O#%4-n`D0
z4~fT1Nx^gb+Y#n<bgyN91dhGXOJ}p`3pAswJa1~ZEGAve?tqyl$v!Kx|IY!Gf6q0X
z^iY%iU)Jq1^@uR{>i{3nK7pV<g?|uWbfWyCZY&s=@_C2dCyA6@kr;Y!k1H_g$|~N?
z$JY9y=!K@Qu#%pcqID8y@)0YE0@K9pj$|I4Vla26r!>9Z^J!YS>RrLCV|Xpg?%Jg0
zFFo<7x6el;>2UUGwWGmR2kjLb7B{^^CV&<AJKh8S7aM$bYf;qFv<xCDQi-Gc7%Jye
zjEwIMjy@p`64gjGe4<YY3;#0VL<jwlGoNmh?3}+evmjtD%G9!7_|2EQWU)-On}fBw
z%Bd^QbEh`)lui(y;GG3lli<>Dds~UI!g$?!^)S5sxi@>4`v&*jbv3JH>lAE-?M`n^
z=Yah$M#0|)%D-Ra`ae+0R7DEx{NJ|Q3I?Roa*Im5I`Rdf89wR?Md5rfF`>;onGh>8
z0}dWaTy0M{Lvc~nFcTvN6f44tIwJe9)XgHIC)~^mzXLwmE9CuHFv_qDOkrR#Dx_$2
zW7Rl2WTK>ZYlZfSJBh9%i6=cQz2dGks}?;aFBoG?R9KnXlPV;;YG<Rb{zqli%7+nw
zpBVH->B<z_v>gdN;Y+#}CMnlDRbD(cK5Mv3c>3U5B59iz8H7&K#Rl)4rI3ZHdflY`
z|F#_dIQ>9rVxfSWrB+3D)X&#=Jp%(1x4`5kU!L7F_YEbZ)R)EsBQ?GZqa;`K(YJrk
zDg0RkXGEsR@^h`3?q<?@bJEe#fhzv8Gke<0a7!Z<%RsIIJ$`D=-Ew_e!V<lOsX$sc
zVe-51`@*S?$Y-QCO?x|^nr(M5H^@5*FK;J0w!oH;bU)9xEZVkT+;GS%H{q^y<rNm*
z6D0v>y1x9KMj<99*=|70E|(giP57v*69sv|k>hFiza2#XdPjZW@)^LdIyR2l=81_9
z`fpAs9`FC_Q|@1{Cjx&K(ypM`Lr>Iv9p>cSgB@0(UKsk{vzM*c-a8P+#nhoEtTS3d
zLaZvu7YafP=c;s_$cLuT(}J|>?V*^1k-ns-)LMN9>ar>pzhov3hM6YlbcwmeHqH-2
z<=*c@((G8J_`AZKqQuHNWlV9!O+4OKro_#>?v~sD&Jj84{k<S)j828)UO!fht~(rb
ze_kOyq_O-ke3EgOfVK{jb?a|^q{zjgo2MyyEkSZPv!ChG7TNav)+b_$e9ay>zpk>Y
zgK>#-nnHi8Pu5NzS!`scyWLc|8e}3}M;3blXW=$AjF14260Cjc`~#v&bNvsN^#8Wl
zC-F1%Dl{OL|H~ti<{b&r8rsJ<4gP8b?~CWFr30d5nwmsgMx>C18D;RAuim9$f<sdh
zz^j9etN09dS7q{zu3J5~<(B=dKJ55N9Vwnc4sPgziV=HRtxZ|7pE5J<?hgx3f3R?~
zkayiYpLIg$h-(K1H?`wDGQC&FIgCtV1ZAgsn~#VMh9PJ;fA*YS<mAlVcz-O?Xs+H1
z(S^hkbcj#&D$6S<R^W)XtD$!gx8<-+VBi2ae-5Ex;S(3H1XdWXL!5z$cJifLNOzqJ
zMD+CFr0@&K`-{REM{|1p$?@S_*G%PxSWlU^*70{vudapJ86i-ugk^&r;^FBq%mhh`
z<=0;$t^a-H`Iuw8D^+Kq;`#3{1H4}xpEK6?Yj}h{cxHoyf{H7p`>8a2Qgx6C8FVnE
zt^f3at$tYur)ITj-Y8woz9=&T>ziLcgwe94HOikmw7r3NaP{-6M0i2v&2EawMqdou
zXUagvm>sXAvVELD!ESTX^*xacL((L;UX;&rT6C9&_GqUDQCjq>S%q!AnawxJ2=Sh*
zz8%208!VAT>8ua05=5BQ9VLh~rVp9yh)u{Haxk^>4T-jhc6DEibts%$t(`~Qtj)R=
zHC>n;KXX2wg8SIGv;ZbhAD)}vM1xmPZYpo@1$kUvNO%mMw3%z~%n~OSZY0$yq|&d&
zvl_FG1m*9+V$DyGWG0<^Y2!EN0c~?MU^PB99TB&ma!@^I{gqX_zUQlg2m=5u&$U~s
zx90oU1FE~+E-<>eJpH}-JtB~_834j?0;943Wq0fn=<4eLc<j(pD|HzpZrab#tEEd=
z&9hEK#t)Hn%Z7WWzRwRI0aR%Snfq?pSJL9vOYe0i-6){Qx7A{QjtKu-EhL6?`g%DA
z&+?U&l-V=Jl;>mrJ+}XhydCkA+J^OA*^j|eeS}vS=SA0873F%Z5AkSuz>gO-)zcE_
z7*Vv4bREr7o^JQtDYucOU4BCCmwl%J?Dz}~lI{)IdubQ!XjIZ}IIHh$S{6x_xP%+3
zj!FPqXpXy1>dS^FdlocHQvLo-o|a_0L7LtDSgM(freLj(w~#6>$&U)>h@)*5%3HOY
z1}0dLZRMvsn5ebm^`hO{{XYMJJ&1qcZt}bpvry1^e>Xj;oBlNgD=T2O^ZU)#LPL$i
z?zEz<)iL1h4b*U`ff>thfM{Za#zYTcEKNc6YL#x0Z58=_w#8E9n4`@HHG={U=QnT9
zrX>18<FB>D-<J}%0d(^bE%X$CdCLj7kZG{x<mSrk*YB|IO%<rJ5d#x>`!;}}L&bM6
zl(k-lV&2#Dz<ufKPDzUnVrOT#sAiE7Fqn>MYm=x0V6&1x>Hvj(Hh`KR1Mt-94NgVC
zjGiFnDNuRMTVCpmW%BctW9vsF_jvcy_Z1R1CA;JH1nLdhL`Tl0rQZ_9S9*n~*K>9q
zMna~HzH;Yb-W7oN$VZ@;Cedo_>Gg(>=kF>o`tuh2d8q3$(t57qcVva%t%u0-0I#dy
zl#hi)E<Lb)oPBh3be4=T+Rn~?vC-Adr=ngQC}1FqPS|Fmx*v5CW@ltjWNE&66O!f;
z_~i02#giLgSYVxLo$~K*@oyJgqDa6qWR;3Dq#*?f@0Urk^LDkBM<FK2E)`{zJjh{>
z0tg;eAINxypDaV8gL9)cTX=a-p1tj^E~*luW0a`DlTQFTtQ<8H>x9M#*wL%n4{JbF
zs?thVjIswjRrsT|lbjCDzq>o;ee!}tTP`rZ`hj!6^pdbB+OzwbL$p++P*Mrnz_mfl
zV8s=1mGOm()VU_KG1v`VG7K#oFAN;mlTu2+-{45fv!77-Sr_d%w37UNd;4s|W-5D_
z&UP0B(<R~Jbh1p+aY2#Q_XS*YyS9CnQX?lwGAHYSG`hx$f={RmCMzhojU9Ip_Z*`c
zWKkV#vEEUNC%$O3?!{l|w4N?N@mc00V!=7RqpK_MOI%6{vkMNHkea;U9@jmc7yN$M
zPbpa}w1+5on_Hdo`QRKaP)7X_&p~N0NPU&^*=y+;zlMf`x!>CM>kMM>=2A<`tJ8u#
ze7m7{get0Q6BF?OcoK7eN}NU|_F@MZ)F-8aF|)A50@UZ8KpYa^_T`6|*LTE$SAnN2
z)4M<!Y9uG|rAZ&)Bl+|so7D*zsz>eZ>4|)V_PEE!`)aP9s9Zh5j<fOErTa+X5>(03
z4%9Ds5<WZv=%;Dw>gsZc9<s*&S)fSb^?AiI{T7(m;V|q%_eyZV5v|RCdF>*wQ&{0E
zA!`vqf&_#slR3MG5I4ub9Ne|FM}+O8Je=iJoI<f^ie}32mY*8Rny~*7N&Oj$h$+#r
zFG_u}+~|k`;jqq?%K`(5PL}D#j7a_<`}Jz!hu^-3G86A0CvjN2hlA1L8j^QM_b;(J
zlIc3Qp7L1R<;f23ZG#OB3*Xc*rZ}wW3HD~cI*3lmJr)*nZ-yy|7L|mP??6J5q8GBY
zB8m*W9NGjZa!-;j9#X!5MU60O{HQN$nQoSz()W7nB$7dvH^~uRbui9gYqgV3&Ni-Z
z@?|qelf=2(N9&a7ibxvr+usKln@ZM}(ZTl(q{G8YoT4+gh{TG0X~@rYI(A?p3-owA
zr9{oUYzOzQyuoqe=y$3NxO(rWzBU?iQE74)&iL)7WPvV{iyo=O+pMU7b--8xm`Xf-
z=%7U{r=T#klX_2hhhRy@usy?=@E3z@th5?mlz3_P@pwNGf&&xwV#hS4M*UB>rr2!5
zSG4sdBz)aBsU<=w9{k24+F?{$0DwCAnPQMtFTmNek#(ZqOI>~0C&3n}4vox3Oes^+
z{{rwC4H!sIO(hl5Y4)g_cRy%qHJlTlP<#nFEVKa>aLGSnx`faTlz_(TxPqwmJw6?j
z^S)I5rool75kO<d0;kf4mS@$bn8+C>L;!K(R`9d;c!m`aJux)epG5t+Zp`H~GA~Qv
zo;y|Rz;g+i{wKYG3*#=pJbCQ2(CAw6YP=)j1!T@Yp@J?jXY$A|n<p@5|1r6U);C%0
zo1aDO>{$Q(sgx0gXL>*-K!y2dfbhvS6dDVC3bcD=)f?>^z{am+LPFt0<lrJjZoJ{V
z2>`Ih$l^5ji9i5eFQSP+E3TTZB|<xu-(raB_O}v?T$|MwDyX@@jtEQNga@3D%&PKu
z*MmI_NL{69Ime{-Jb<uNAm+lyVOg!4xap;X5ag+p!^kPC`HSmPH*{rgMtIp7NJ%3`
z?igpM)NYVXu$l+j6YQnVsw~LYYIAUDwE*X(GNF2J9O5p@{D!_OM4;O1*d`ZjX&_`_
zvm>VY#pd}}AfTw#b<6)HNC)^ZLBJZM__ctn#@9gZBa!dV4yLSoRfPvYX;mGCM^Z{|
z+ZsQfoCh+q19G+1C{Bj{#HsoC{!?Io@gdy-9r4rkpd-MZRqOI(>wD)CAh+QTsBMwc
ze!h068zJ;tMjKoCI|qe`zw2F#87TmpWONCr00fVyp(cO_@jPPx2_YdG?(y*>yfHtN
zc}gEfbTP}R$R$5UEq#K2Irhb<sYXlzRp7UKYBd+iB>*9LN9`b!{<!`1Az(QRj;?;7
zFuY=rlg(FRDFzwnKzT>xpT->)S@*Fw`dPL{iKR~5f3J^=DbXMHBx8Ljgg%*rKA0&t
z!dj4ECtf*=qIzDfXJvW@&Qbto&nx{-o!TH-1iTe?dqjrf4yJH&+$ryouH7Ttr#t5x
zxPxO{ON-5>Yw1g(&0%YZM|kW^7NH`yXRleguM24(9?@^#{oa?*4)XrutXhbxo_>1e
za{5#ot=4VoaJNycL;jBMpk$t?O@Cp?lX8cbwfl8j!B6*qqcG}4k^>JPm21s-<lTBY
z2>m^JoDut`mp<L}nF?eU0wcGqv0l*lMv5hqf#ehCqxn!83n9o2{=TlV+>V4#;iG{k
zM%Oqn@RmT_t@BIOvtMe4kl1~IRBl|ZS!EuZvgraVd5(KJ(UzH+>088WHT&fLjy!pS
zjN5e8+V*UpqJknbjp~t}c8;<%jZ&7CZrvxN>7Sh34jh&*&%+St8~(M!As@D@I8K7t
zod6Rv{VS?z`4XL`k9)IK<u*&r&v3$yGxir6ES5<jU+)bI!Y*A&fQhoZ^ZCT(Db1zG
zE5}n|^o^IkG?dA|018KY@k=0RP^Y56qiUGq3Sr*QUbFYvjnPvZ_ge7~8s+rZKe}8E
zWi!97Q;?TeX~8S|bh<sMFSV$A@d)P;<bV%NH0t0e_*^Siw2=C*Ow}|A`B{-3cnifg
z`uM1ue5cpl!NDO6eNEZ`AYfK^MxZvf5wo(Z8Ugm2;Ua_0Cc|XHtvjRCk)QJOMeg6l
z)D4+)&N*Ixp?o2%nELlv&RvuuVE1&m-%caUzaaH_hB@6@hZzgzjqjw-k`;ixJEr@}
zI6U&P)mWC5mL`9s_dA}w1)Bb9)_5a+pBM*y!G^Zl1inOpUr1Yv&B?OLQ$yLAOmUA;
z&^}(khK=@<BDCFF)_7@e46%EOXbj!c8O(z7SSNLv_&>O)Rg+J%lGk|^IFq$(Z5(tP
z{#EGv`)5T*f?h)jvCT$v{s>v{vsSzAt8-y0#Oq^rnPj7!qh4Bf`@a`ANPP1e6&Hu3
z9GQ>iU4n8yeHeC7-^f%e{<PJozo&)#ItxSEUq<VgUzka9r^!G;mOA|6E%Qv7l||}O
zrh<-Vm)<FsYFJ-tE>|0dd|8vrNAFV-d;M!7XC?f#4hYJ%bci!LG26g?(Q&x#D4z+7
zI!kpkhq|`JwRT#C?022&;LuS!s+4#7nX=B|rm0Y<D@6;tfBLESR9S0EQ6{yrRtPki
z{jTwl+=~iDka<Sx<m9({sdWJp7DQaCsfo={3)6vZs#;zx<P;Yu7w&0yjBLPJr0q3?
z@qe~2gB~+$J_RiWCNpX|rQ7bQy+WcGfhX^~yT2_AUVD0!HwLd(o_4$&A?W`mO`OO5
zz|R{<p3Ehd14*nS@2!e}=%dtCM<?xv5F+PUP(uIvZ)-Y018C_E<w_3?vEX&yPHvvB
zYZFO;&X(>9C%*SrkepR@)=S)P!{E8w@V=D>ut&KY()ab)$EQGU^#%aHNCw`cyNQHe
z(Y%+HvNm}4Ax*}AaL%Sh8*nlzx{Ij60AW0lXivY{H4*<d15BW?0g-wcU41Ix&ajN)
z4j|Qj)orAWdtUpD>`RMYMgiFd2hBU2jv$b<fhAi65PI=+przRBy(PN5=iAiVcpp;q
zhVd@u9z@0JhuTNon<lv7PHBdFHaeesh=~RB+|z7nXlRg=NrhbA?YG={$(@P-G`Ch0
z%vIT!=SO3*Yyn}9LwP_A_i4sB*BT5>^Q7GbPJVYDRHKIQzUbG@7sF+~x2H;NQOc2T
z&4ru#FN@z@wcIfQ`4RS62}_Bd^zdW<Xa$jrtT_KGGO@#RKl1Ag`DV2HLB8dHrHA*t
zZ7qPm$ygXj^u!2oxQ_=~;H;Yq%BtG5=yAUYSia*+bO1R@=~$5OdnF}DW_151)IeO}
zlgOGEwGjt=B3Oo9UletVo6cr2krXP$X<U&%__oCBdbu7R?`V@W4+B|jGd2kibB8lD
z4{z{^PjVaaEOmY<uj!N7mBuSTGip`K+RC~4<aX)q%KP#_#{UY(BJhBt5_!1^@QYxA
z?FFA>qv~xMg>qgYz*^0~|6zKh7=H)<KRwwzw(gIYV<2=9rsPvsS8w$KJbi)C*%(a$
z#c6XyTmhgij#F8|jIpbMmX+x<WQw7bIL|17IsUw_V9Ri9fwZ&<^`V|;)Zg8iV}h10
zn?euq8BcC^PQ4v?M^^pz%Et4oq_>vpO5PF+sXw*S*u4~9wVqY>$aIFlZ7+uSYXY<&
z;&=OFa^($=W4DHKlG7V;q$p9NHrZI4Ri)AvF$d;q3~dreY*MaQ7DRjJtBxBd|D#Up
zgGy_A1oc8v)N?|}%i9t&F?~YfE#cXJ3|V_^O2DF&>H^+sQjDnFFvWei{*%>AycJ$$
z7}U2f=~}*oL4=nFZfiHvbgDy}qN0U04bb84(=w&H9Ba|LbtKGbnLA9RuZ54|=1nPz
z3RP6N^A$tV5=mr&`Mtz`3`L+PvL9n{@b@na@}e`8aktn!<9*w`w1%8?*ic(3^ik*-
zYwq<BJ<;qQUnI#Y8w_u4mSRxg`n5yeg1(B#B8F<ybz#e31h=mr2G7m0lU?5YD12q+
z*ilQAd?!6>?A68erRDRzU$<|a5Aa~P;@igYi)ku%$h*dtMlV-T%Y@Y)>mz-)P<a)y
z&P_G4TDzR_YHtP#n5D(gu>&0HEg-c)K?SXOu8}N_^dx|?5?!U_7Ck2<bAv=cR2Mh~
zqR?~D%^`2gMOaJynBlcIp0TElWb%?=daUc5D*}&uWPn6@oauArWnVR@Ph1RDKYQuj
z6p)W!01*>2kmu*1mgNo6+X#1<fG+i)w}^k9YVr2IXeYnTpyChpASy0uDIuk1r1p=}
zF;)qJCN5nJIsXC*4CMw=rpuVgkJ3W{8@V~*2LzXQNr3kmW=HA0PEjmloA>-Sw!}k9
zRG|bYPRKX{VKz5Xo$9g~&IoRs3i>9+v(u!D2TK$XY=l<^_J;l;hIoKp_0t2js)d@m
z(cy-OwfbAKghTuT;%40ySg@-;$U;6{MA&xuDinPmG$}C;eG#M6{v7mk_2n|}0ANCc
z=v{1bzfpGE)%G^BY_e+fbD0W6ppPowphodQVnGU*qVdGU#IatwfazG)9qa=fEYg3^
zE|Ku><l(*4Tfh~)F1<eQ7FD4vpG?gij^!w|V>%w+zE@QKQRM?RPWaud>9bpvo$OSK
zxY*b&C2IiKdFh9??$U>=P{XWNDz^Jt@b2^ZLmumSK9<|-<6%FAs*5>gCl8pq35r7P
zkv}oK{i{&ypy~`CGXPUIbwL7INN8Qm#AUzNQpt?sHKh8Evf5YBtwnj4fEWhlWNMS{
zirqe(X=IajdOk~eG<qa&%ipo^OEz*`>(>x@ig(UDLc<iZA{Y9i&U2O5k5HhRY?{u(
zsaQG6g^+NjLRCY7*Bpy<?rtN0G#;%pDIi;_9Cq4ocQe<3p6V%ZX2*M>G1V)DeAoCN
z7MDJ=pci(E#7bHd{b&1*9a0Z_nHUxAsQkS_3{=W)WufoPPGMxHW>(?S%M1>9FGnAb
z@=`AhmdeR<O;fYX+&rD7XJB3ZPMoPpB|uAML#1IH4p5~QFG-zz-%U_=3S>GZ&0ITK
zdac+sy{|!?$8LvRck>aEx4kdK>Rvpu)L~L^ZhKu>@hO>}o1@i88!E84guzoL!o*7k
zPd}}>z$JLX6y$1Ay&1Xac5b+5DFW;@T*?Bw&MSj8HPN-t2%}_h>R7WDQZ4b99)+iq
zyH!&<SD#2%cjbJ=_Q$`btkP(#4tc(#dVkeFn&}sfXe&cEmwuDf@obX@NI2Ih0L!h8
zkoy8AV76fqVgxz#+XNw%0g8WG%Z^Ul#qa4D50_lla9nRMHn`uD?UzyJlMS_k7Vx4D
zDKHCzDdl)O+-eEcz*oHrUYUwGl#d}Nazx1PanW-m!63vHyOUK%5)tkW$LMpI&ry_s
z8^Fr0mxm5fZ2LaIq3XJ)C~!LOYlS^GH4rF8wI_O?m%QLGF4yV~OtAz%;1YD&9pNA5
zTf-)Zr(~j}!n?1L&f*{`KuIaH{A+P`#49Bdf(6QO)A8!Y7pWo7JOSdmA}#QEuEr)6
z_^?CqPV(d(MCBxTp(ORCN%&>piwtN!`cZNbv8TwzFR<(JAn)ll>ZpPo6zwQmwKRCR
z;}Nb9=*b|Z>>4oHkd0eHVNQMRJAyNRD24?;C4u=>QHIbBeLvI@n|2%Ip2}4?#G;Z4
z#aCC-xpg)Fgsr>1=B{UNnCjwf7vTngCEV_MMMOcma~oJzKQRp~(7A_&5n5pe&qzp^
zS^$UPb(p5j<gf@Z)dih3KVb1Mf)OI=qQ5&ztQc;*ct54-@roUBpYf-YL#{iV(e2x%
zJ?QTL9a>JO$qix4xzyp6uRG#gXzfPy=45;w7!fZ7N%2h2?74jZxw=H`;iOWmmA9ni
z(T$f!hzDRrmXd8%l+y9U!FNvq>al9erSjHfL430_6#YwX75iLZa*)yA?Gw2mu?n!|
zDuf)>=hqkFmlE=&wj33JahuyGztZ#bl~vx95y{G6`olx&-0HxQGvo77zpoG>6zB&~
zY_>_w*?s-oqYjw@*0>XpUQ6=9CzQ;}V6Nv*`{Hw`@7SB6JyFFp?Zd_xQU)x6i^Y6g
zt?l2g<<^KxJz^&i%JEeE!p2y>bDYoCjdEk6s>3zaXsNZNc1+w)rEK!zM5c&lM115e
z2CMl-2CEMigpy$Yfv5iY=vk__*DzqZ*`&`?+fOm$Si9PZx7Q*1_s{g_#fTU(s1<)z
z8Xc4JDYgk7%Ol);bzx4??XbUC0JGjFo$$yXEpF@7!ml(dB}pIy{^(;C!$VkE5nd;$
z0s9CQECzcj*@V-IYS>UXxvRZ6)EinEEJ8%q(qP+;tC@_`?Q{8^^2V|e#Uf$}BAw{%
zWr6tJ7F%5~XS>&S<bE}My@~wT_||n$p`gZ*ggoYZ3kmD4K;hCFIrC%nmRS2ac4XT}
z#JuVHwQy5Kx5GsL+D>xeeEr5%X1TDRQSCm-SJI)lXj*J+QPgO>+*L*+x<K~%O6-Ae
zr~7`LG^|*g<OEfsxtq-W?Lnvba=?}C;>k*DU>Yej|LtMGmGP!c;D>3DG!-}RkO?X-
z8S{PhTv@g52Ef0txlB$_%(h$H-QKjaswImSaWLLH$e8DE>9s%Gf1AR`F^y048q7o0
zzZ^{~`vHWe|1?v+4K#QNAac?18e7R@TyYTOb~+DK05r^dywpia|7w>bgD@^ACuEhY
zm2S3;8IxgA>25k#dfQy^;IrBZkR?i&J@fYjwTn-q`OusliM{6Y0}-+jT_bhVr@2Th
zX~wK9=JDbPcO)lZMR6Sw`^bPr+F0v;;S>DQCvTHHH$@evN}#Hz!ro9=K~BzXcYh$B
z9@YTh^VFN%s$T6wJOMYWQpExWHVfV4B7}RX*UhEC6<Gpqt-@onThrZh9m-2OY;4eL
z@RA`B-|8*@m>;!~kVgu;zHj5r*_=iMb36#t2IAXlSh}%3yh3`o2AI)iM7=mlELLcr
zZM3%m{KEtC_;|ZEV9g5fb^!LzaE`zTJh-~|IQ6*03qHPgy(;F{`Y3ydgyk^>G9#o~
zyuS7z#k$iONa0sXbK7RPDWnQ9F;XE(KT4HOI`u<~FyZ^DMORy7`S_oO6fPE|LHSZM
zdMy_XRJQBQpAk5g4URiM6tcu3T^C(9wjz+UmboOKImj~jgIxvHYc98|`NSm?oP`1c
z$-yof*rIf{zCq+h!y;Ff0V79~VZCm^nhB&n?Cp{gFQYRS{@@~`qbs1vDq>aNz(B-c
z=oS`@t2&G$aMCgFjf`j#tc^va)0XrVfvrbZ$@X3vnaMB1DKRx_%t<Yq^$}gm&3nHH
zHu@VKeH=VgjORM0#gc+E%U3ZC<SLJb3_brtCg>AL_jxm^^o6rrR)<ti3QuFnfL3Ln
zROFZV`v&rq@Mt!Zw@oK%5&73iDcBz7JhQZLCL~i=*4Yoct#hwCQ;@2PcQ(v+lmf_h
zi-0MfxtVm;+~WmXr)pUxogcn(5V$}2j`o!gv03y%riaMcZO-gtMWOaVZ=kijG04KG
z@{KCfq7Bd?#0uA4uu_>eTH83}jgC6OOe|<v1>Ru3L1N$=eR^AIO#mJvv+z9yv@KIh
z6_VwZ&dh1aHCp|{<k8CO_04d2L8v38fT{Y$Xa>1V_v5ZOjiw(5$=NZ|S&EGcm6w#C
zHzBtqLkSqX*?V1XHv<ETe~RuhfH}>nMgutupJjTW{R5NCdin~|l0QI_jql42#brU^
zzNCClqchmrh#<y`#mCi3`1Uw&M4{v7j)m@(Mz%JkhrjJpB#rrk!XifiV%I>yn5$Z7
z2AEi|dE-IMI^3tSWeJ%c&lq^p!74H5r327e7#LoMMm}Az;Tvw<K$qZ0?)1rh8i*cl
zEPB0yYsFjJnMB#R3pCb5HdhJUQAz4jy>E}x3HI+K*n@it(J}q68gTSaZ-jp$09$~L
zdJ2DT4pvC<t^J$pxQi_XZ$_7hBQlE1LJS@}Vi@-Gn^oh+4G<l*r;Fz-fN)|Qz-fu%
z2a6>2;77eEv!PO|tlKGWU<4{tU&MEV(M!D~({0mvErJe+{WpNF+QfmRQF_DdxuxMh
z#U3M#7+iv_KM-4lP%b-PBZcD?>D3qpC9W(%iLYxk_A}+5p_ufRF3+$79nkprOY&Cy
zpNI;8P!}xtRysXuYeSAGXFUKWeUse1Ty6x4?ooUB9dmKO&In}LCQ!5Y;Tzc~SCHdy
zob?_j4GYI$b|uz)j3vnw-89d)$)lcz7xRravZedKqvFjchAwt)cdQQyko%eDW|C_Z
zIHT9Nwl_$>TF2ipdnxnm=DoNqEEMhk^G5$uPDzRW<sdz898woE2S}BSq=u}8<(;lL
z6r(unRhPT=&mSggw6tSz8fv>1%7Vk)vNi$}*cVBujS%<k{i_-Y5=5I*G}y+;j-fj=
zMeKNG#)p|f=G)^?TdLvs4Yv5a_RCy~QIzNyiK!vWE~r=iPP*t-f~XCvW=>llpiih=
zfH(PU(j|vJnu}1iiSk2{LVCE>XXQ>)U?}Lkc98q=2VDRVU|Q*DibB$owcVU60yPM!
zplt&Yy^?Od<tz=pzyxfw4ZP;aU4Q0isZOPPuNN#v!w3=ZrEH_)L=#_*Oiaw<O%}b}
zqz*%M`2Erj`OkDBH%+Wo=F4Wl#Dwv=x3XiPyBWHN?*nE~gg6N5?s$IpjEY_3q<g!|
z4D%FZMu|nf3s8JwfK&Dzz+lW7C2tSjl6Q~;@i^IwTSQ8bvDpTwfl(i-TVdZY^F2O`
zdM})kxXCu(PHTD)_IPtI0ztO%62wep{%r}QJ~H4wJjH}9HPLNrY#=-Tb#JO9ox&}1
z37AQGc@CI$S-A#~6wnzh9z0yEsJ|u?`-uL~f={wT`Q>5$?oAbs%sS2^rBIQOBRn(i
zloc{T<WA5rEJ)wFq2_>;d|l@uL-V6Jf%*59l57v|+K6Fb`O+<$P(4K`SI98?A}@PK
zU7b2#D?Iqza?S2<)zXN^KNhkuM_>)M0&1e#_@c!1vLqu4Q5s{#*LpxrhU)!!`l|#i
zr=F!PVQroFIv28eUgC9H;N}}ak75P{F=6pPi`yHR_-aJ&YC#Q>$(50pc!}-n@QN0A
zW?n}?%oQ&4O<iosOr6SoinR4QbwRF6<<r{q&S~rcl?9aqTof+6V|`89VrOzw>S=si
z@o6eXOd|qsK>^$t*+<&kQoFhShT7h(d-)%(Q~#zb;(Z87fqdu{XDz24i{Gf*j05RQ
zd?DU|B(S4%0GU=o?(mGa+Iy{z-tz?0B2g{1LPZ`*OaIOBfmwCoYUnewz$3h)vU#a4
zq2XYL{)OqSJ$$37Zysfp%P^k#Yq)~{F-{bH!OJW&U7+2Ay$4gAT0?X%iE?v@Pu1v8
zdCfR6o4=Ulny4QjKQ{ad4m*>Pg-x917HnM^uMx2c!mF(@#7egmI50=M6}*0f!@fAc
z6HPE7Xt4|IC7L#Te+()9%#+XH{Py)uL`#kjsQ-z6y*KAe`u4a@6x#DvrrNOkaiXw$
z^`dS;uUc3g&U+SW4Vw22?G(?GMLg@9ZE^AL$i4ULHY6Y=+}gPQ`Z8EyJ*jj<g=S0n
zv#q)>q5JpkSV8QD0CH&07Qud|zBZ-}2U<sr@#KZSliog|B^A;~qjXi94%y@!ks8p^
ziV!Xvy3)?2`vd*LC5rl!<`$4%68iWOEWC-zGPDshJod)@vzLruIM?c_k&gZk=WtuZ
zc2j!lwnvxAPbU1caACtP?7Gd&PzjNs#mnt8i#2;k!?Lu$1n3#AAX6t_xs=bVdBh2K
z-4FW?{h!GD+P&ZQ+{PN^(ce7q#78yK`9>?T|6NXAKKzHMw5M|5SIMl`-Q!k#3>`{l
zEAr6=&-@&LWrrh~QJR(81_4PX(N+q0iDziOQN1sTZMD$mE|rT)^X$*ipr!l-^O7iO
z*2KRo?=qcw%EBnpdg-^}P4g8sjXM5ui`sXiOnr~HjbFC-HC`czXl)8zWYaFsiT4g}
zDws_Iu6JXvJ}l4VSy9AdAb*>_gLT;SaT^v#r?<GZG#u3|%!OV3M>L;-tfSeev5{P1
z{@uN2*EFDxTBCa8)0~Q_ZK0lTs7vtXS7R&~e7e}$&J)crL73kpSO?MiMUl0St~!By
z%D3?>-kC5k^=^S+r~PtgFZ4zMXzB(!?3B{OnPFaD-j!p=8|wi~!qVN&ByQSpw6Q^I
z&Rli5C0>g=pp)gWaOx@vgRk<4J)jy2B6E}RI`ktqeQ5n0Fd0`s`$tPnOo{sQ#5QO_
z8?fX}(wK8^dEBb<&KanZ1jy;mPrxw6$vXV*OV>Y)dBlm3-R@h&$T1hdW1JzBkgfP=
zj3VnAh|9@8rGqybjEsyJWBgx?j)hOTj2PlXeH*ceT^R4Ukw>3z3;xx3vtv%aF=HHi
z@r0N-uT6Sl0}j_Xe$}82hz$L_aewv{<|A+q*r<%s(53He*pd(Wr_&1A&gbtveZ@zs
ziXQrY^jJE)kj|3(Ynm6>`V(<Kk1EP%&n&a{urR}=m2-C)7*bMJko(==o6}$NJtXBY
zfMgfE)Tj5t7Kf^Xk8f?oE~yUe<Sr|4fbv2+NG4n%A2frH$37StK94OSd*!?qUqLp}
zlb{l`w@F3~=wfW@_Q?6&AjWL&O1i0E1<bB6Zo07E=NZoTKBDh!tit-Zuzw1pt<|o&
z!Ma$q7mZBlF(r-^5d(5aanyR2%Wrp9;ATqaro%No_y5pCib;ZN*&AvK?G3u{So7h9
zv<1q1!8;sR$4F5+K*V2y@BDSDc$^{$9$8FUNq#NmFR!*UO|&&v*F;9%!#3gdLYig}
zXrxr$?6+SCgacjVOFa(@LNLL%Jp>%Jm_*z0Qtw{cNN_FSEu&&9bnXZJY7DLA&o^-^
zCG(Q5Gvx!Lokg0!QO8ui7ZzUUR@z5N;;n=8W;nvLRSuHIRL*|E8+tO2>YME5*=NcT
zk=M=(DyKHHhs~V!ql~He$16T!UuNo+-^z#@8fv*Y$;6$pN^IF5$5|{@AC=9r70F4k
zkD1jX9<@+6-6|uRwVhR}pEOMTHnO(r4EGMvq=yvfKF>XWkY%@44M&bNC<BcDX7v~9
z9b;ep(5SW5KXmsC>bQTT-2WbVg7Ir(qaW~4&Srx^{ax$;aX@rhT5<o@==Y#knZWWT
zOkVvh;h_V#94(`?-|a*Ny6sMvF|tBR2_b!rfVfTa@`K~&m}R<8!Va5}_l)LM1@*gM
zUllO-U&CN=%<A~NNa;7D&3>^swSLg>^F}@4X{ri+`?A1mvSsJa-|PKG6S<0RtQUaG
znD!z-%YXJAl9Bc6*GHUp{yoXDQiUh4)(b6dJvPdmT2gyVV4{HtB8#E^{_&oK!zND2
z)Zn}(D-cZ|)h~%<z)v)y53n%bBy$tY96WU21}p&WWPZK3@!tPuXIjh%ISGJX=)(a1
zdGStX1i{@`Q9ir22y!C%kpYU#6HLCM=bA$6fnMxFEQX@kl^LksyVBsKHc?=Eh^^6l
z&P^mav&6P5wrF5&T}useLO~RH)W}MObHTlKVqxRDAGSC$^_!Q+64wGwHo=!+<JEpI
zQ3D7pXT>^=Xn$}0=)9CT85Y&Pf`&4KzvaP-aQ?zX{Vh^GGy;iz7*M;9`())7Y55gH
zQbrDdg8O7@sPxHK6!|PZM>TSmpvX^vm}Zvj#z1@4K`wp2BRpAqcK?^ZnlRZ?OT$_J
z{^IM|x^hz1BEH$BU;Ys*T{TXf+3V4&TKG>?=qf|v@^VfmV|Ew4;E0bKFRy#Ir{$^N
z8QcOb29%qM3knTvlktV=^?f>>JTQ;JbFiiLqWimK8`j5`cnkPc6GyDkFJKi^CN(f!
zf%29i-fD%ZNJn+i<ndZD2Ml>*_);6rTugFN|D6|+^KnVJ(^)eC8Mssedinc${qlB_
z#<B6D(`ph~Ui8MH4saW;!h4^4k4-|Kdq^dBP}Nr&rY7^J{9g|G0IAdia6P$9;xr1;
z^1eCU79PvuMFWz8qG>>M64HEoy&>8URuH0e(R(CrzzF`iLYBSM^#$W2LgM0{y$>X#
zU(~@X$qQ_!;SoRipoQq^oSdAE%DUSk9lk&}sSgWbZ`V@&jpcbs{mD1VX0&v#%e;A@
z9O=dye6q<+U@38quE>r=vLf^ZX$SC$ENc6G#NTDoZL@jMWU`bk8()eT*jdxh0_tRW
zdSEZ{1mb-iVHkL*D}tPyISp{Wy(J-F=Br*Cp5H1d2{lC5`fKZnAq|F#bqY1fd3XW@
zTUT3@vkuwPpL-`;<Mb{r%RhaVMOZ(J+@7!L>)yK%RbK%cq{u3cMUZtQe;b)p0ZHS9
z!}ZTHdTZZDpMsEOGDblOT+1n#&2PyZbV_$aNqu6xUO-KWM;hqsa#L758HT@8Wqvfc
zTN7RNeKeuB@iOB4C67QgsxXq=?~vb&5VRsY6P|yCuirNXd<5ts{~_jwMg(Dna#K-P
z3qB@OkX2jt{{kH{U6;{pp3Ww&@%mHfPw`?N4oP&fyqRriX1B0eo94XU8^A4)X0%Oc
zNe?r*rFdf!9ja2-8%*h*MH`gLHYQB;MJ9erKE^zdW({O9%cruxv~Q0my-_%u)uuSH
zP7vE8Ll`>&Kfc;Hu+jSRby8ClsGJd_6(Fuu)dfiisWj#@q)tYTQ*x{37hL3QoIMs`
z;d5Z>LqHE@X0CXW#%1>YFe%fU3+$LFL{HzXJNQ>O-*f`GxPF__^Toqa?xQ=w7FTL1
zw~FnHIqrb9`zCHZZ0Tm-nIIFf;`L3H4=%?7ct*_C*aT$H`jO<C0w-y}B>)ahCg^KK
zfj&W(gouZlZWk>z2_Ay*#`2S0V4AqCzwSZsu4gkQC>ECJnpKRT05S_{$f&K;l(uu8
z!XeXqecNf?Yjwv)bI!n)Fi%_%MipfX8Z;!>VX<_jJ*Xd01zi{Cy+dr}q^rc;Bb9wm
z7v0yO=sSd}tH%yNHwb0!${Dl(4n(leCn*4$M1l{OSE&OW{+UoM-1bJqlD9W|>DRF2
zxH!5gE&DLiK+C3QfE~z<6A**s5l!go5O&kO30$I<4#yUx@t-*lr!p^@nko$gl*oTQ
z8FJCNw$YRM#LMY_HY!9?Ue_YbVv97jXLF<RQ9@-BWt7vRqp1KdR@hg$EDT>qpb>kR
zRiBtmUb+Te@Y=J`1q-G6fhU2?-V`0-?~hCnWNc!B7NiYOrfk#iQOjWwVu7JQT-S5^
z*Jn`fKA9bb_tlD+^!5y_Y;P{kH~D_}Wz2t7V}5A|eOW^08F1}BD*ImT{R^3bTTvzN
zUt_Dv9@~?bI(#2PQr5;2hBX8<7w-(hW!(wS5lq5$6<UIDMhm)rp;bAi>tj`Kwt^Jf
zll9KKs6qD{Q;xCf^aYc`(5^B02<MIcGWb7HtbgV`KjS6zT4&$k5nFRgRbqc+^O2OH
zd_4MVep0jYIYYJnt(V5;ttJ1{MEveeUYo(E1d<vzbFp6zY)tmN0TF-d)D}eY`uFf%
zM@pvvE*!%3HtR*uj7RN5^ijiua0cJXUE>JvQnhhxR1HnD&b^9bBwS?C-*Df^(`k>*
zgLOFh3J`qWNV#2a3SvptUXsjQ>CYD}ws={XoGJ{d<7=tL7$V)3-U7zy8enS$-v=EJ
zKzSzzOS;tH8z6*?x_9NYmBX7Nvy;5Z3}wZ{1RY*TGRpoH-*M3*rF;Ai{vi-Fe9!Fv
zarVkV4!xJ+P5pYDrf<J1;HBVqC1<yBxYF(`<6Bl%_Iue6w-0DRu(b-yLMR~`Hedn?
zimfn_O&l7(C)-Q6XEjE**B5SSpE)+}Gk3aH<WYQJx3H0Wo<uFi``cn|{VL!@t}Htl
zLCo7nd_D$-?ERty@T$iBt)MQLqN2CwfZXdHa#!7MdA~2h29QX7nEc?Vf&ki!Sec{}
z8JPc%u(yDUa$Vp51yMj$22l~|?v_qr=n{jF5)c9D9%4X{l#&pT?vR%5?(WVZq+{s(
zKb*bY=j^l3_xE3G)?OovwRPrw-}|}ax;}Rrq`n3aF7^O}PdZ&876|E>`>o`B?)sJ4
zYp5s_<>7uukN><nm~K3Jol~5HwK>Ll)ylVAAmt0y%~*6D!OZZz#di8-adqddE{nK3
zyLv!m&1t-J4gZB>_oZpqy0Ggsc+9PIoWe?Bd0i6zPsnDETe#mJZjAFi24^QUX5{jH
zNv{CX-=BzIxz_u5OK`7^VsEQ*`wq0O?_Lc2aQqS4Fc-;$CXj_VVmzm-F*mP12*0f4
z1aneegg-~NQLI`0%o%=*6Y6tnXkH(M$WFlQ$Lq1qEyp`gTtYd+K2<2-b=LnWkequ+
z)t7NAnrGLGXV6@V&83I8m13T3kxz6!dfuBz!D^Qh8!Z&@afbccXJ}+CUON2hBU`t6
zsqXI=n(%{J0g?1Wkk{sAXaNUES*mgBuoJMnV_5L+#%-825Lt4UlDk`9Y$nruJ{xn(
zu%4q59{kz<nHp0|Je67A2UoFS&kso@M6Gpn;hIE|thpcduzbtkc;9nqS&D4sk;9fi
z(I6(5%5kNPhE2>DDKbjWTF+F^x67u-_VIZ$eE*SY{ppJrgGd>Nl3u68N6ID^*qPrt
zBeR)*nvJ^fMrx<Dp6%U1(|rz2W29vswplvXELw^D)!!i-`{~|AchXcbF`**CjLHY*
zw@c*aEyk`XoUP6f_lAjbj2ItO-=S$KJTto5YYCK#zl9RxbyL_~?7U=Rn_RQufu7!!
zdAT8-B{GSSyS~p=YV`gDw&|RC@BQ|HneJ*Eq=KNtexDttn-9axfoRhz(N&h7_gYoS
zeaolH+ZB0&);?92<53CPkt7$vKL`=zA=G!*KWpCt4yZLIrt&+q(-plWQB>RTn&-*R
zNyJEplZ5Q-Dn8!KUt=?N)T*A?KBO{PPN+UI`+nNzqJT}CHp*ogFle^yWFYpQvIsfT
zb}(Wc|7XGel;Ik!-4VrU{My3DI#!mY`n9%;YkzJoYTj|HS%%*G!?XS%my|0-@3x&D
z{_Sj5PU5j0zibOd98?7#TubchZH_~uoh-GCka#kBZfIz@!Uf=Q;Z=dV{gY*5YMMke
z5JJ$<u0d}QLVt;o;HEvV!gN~&2?bn`L_(s`LhT+7*+cgNFV+;StC^#kbh<g5MRam`
zXl7HVvFeec>**`=e(7zM)^#ZLF?%gKj1+@h7=zN1g-BPT>b%6TpWFd#a{SzUd~X+I
zajH8naD<{E<YJ`$5%|Xx`60d-Af?6--5oD}hJe5pmN<R%aK?+7?*%)~a|>l13)Po0
z<W;f1zvCQUKy7}5?%AjCy0h&^ktd$1zl>3TeSNODcf%1KBY1b4vZfQLpoYCmx5^NK
zbLKakUAwE)By#-Ke~a|oT4YJTUS$TKdgIpOvI%&4rw{F*J-SQ7PCe2TiS?NAE3ftP
z5X>--WCl)97yWj+!^Dq9W9NN8aFOKrfd7k|gv?w$H?bXecE|qgU0mbv@Q99H?Tb|B
z5-N+qUX9r@`%r<s9+F$SvK+X^<fzLmS{L6QRT5|<au<wjYq6XmvC-D`Vm=KvMV*=t
zonCcJvs^0X&r}xbPOhv`bnKWDpv8Rf#=`D2pE=KQu3>Wacx2rA4<Gvww;MjiY38xz
z`6s#ZHUH=IJpQ&xV*Dj1p}4wK?bXag<Jyk481L_i#D3F`oR*|6ADTp*8Qj)tZJ8|N
z--+&+7<cB{+8;dau%TIt**FzdHM%`dabEWrG4sqUQiRgTt^iqS>YVki{Gil@i=-(e
zS~JRqzr>|P$atG%cDdN@(w64BKIpMuH&92sbBWScHg`6eCYme>chekjM;xDw@l0_E
zp+YD`y1<rZa}0LOlY89tWCPHYoJS1wLcdncdl9d^>-s5Ln>T0R6c+o22{W#-9sg3A
z@YrI^)qGPcbJ9}wX1c7^`>^V;IaV^WTXi;5Gh?-130yTxK!b;s_MxO8pNXD+fDd|^
z#enSHCMu;DuHIC5PZGRiR(+s+j}KvBdZj3Nx_7O{Y1okxzn2(UOY&6olN}iE%PJ@+
zc%FjPqyyXaSgfA+7Ndr%&yE&s-g6HA+Vt1iXQ>PysE<#a%jaz$f#V!=I0H{mt$dk7
zf6ENk<ms71=S4g(1|q*?bF%cTa+OadSA!00Hmp2Oc5!UY?%P#;{>JoUL)K4AhBIe3
zMNL=is;a89dFQir?JN4c+Dpf=ZBij^MZtrx^EH*$ZR_zTki!K*jH5mXd9$wkn_F^@
z`~8yoTT|tamYd5Wadqb{mNkRyXD3HGCuVQQWBPn;gva4nV6M!L%$|)m3qePHL_QvH
z(eMbK?=+GLIh{Geced1BO{(=yCq>FGfWZT^W^n$l_4gSRL={j<%tsaY|J4W#eqb0J
z9BirkqfMfMv{oJV;C5zT@LQtQ4omiJLAAY7;eJG0o0NQGV7fUlAMMkT2|Qnv*Re>_
z<Mwn3PnwBNOQbv2R3}mVX4@0VCe~jC2-C&lLyHrx`b|{qOlRZ=XBDkxuTef6g_#X7
zrDkPMS1Xik2@_XyPc4wEOUN7@P6JzH#fCtUtn#)7VxXR=*5^@f(6?rZ)-{35oXJW<
zS|<Io`puussc$7e9;{_szoc0mOZ!Y&{%`|5=GZ!Vy%O>6n8b8ApcxD<e+!lVRhhIX
z*5&HMfNd9x8_(1aUe%z_Xw>$`1rdYuU^OX%G?qJw-Q}lC^c|kFa-S$32^p)g{rL+@
zW@?$k^0r`z@+Bf!Buaom@~IVc9Ev6nEg=jGPP@R%o~EZ`?s)HytCb{7uBR)M^4J^R
zjmhSxNs_W&QiPx-8P4)65q~D<?}riVb9j<>f-*n(#^CPA{yKy|iLiFKZ}t=nmX{~z
zl041$zcMsd*bnIW2NZ4c9Ojl9ytQgOR`JJAL8j5re5~Z;KlIE#J48y9``=4_fQz4a
zF_(UV;;MbTy%H(IdjI@14dL&&j}pI?DP6IJ(V9dUf3x-0LAx2@j>D+<bQcSKaCh88
zB;TC$<#Uf@3+^68t1+2M1AToXBIw<Ke#qvJ+`FTM=s*i*gh$rb6kzdJ`bUFWmJYff
z=7Qehb^^7AnY=m0z@hvU-wJGJL}gQ!zq^8JI#JYr<9^xpFK)DKl-ggv49CHa6xHWZ
zwLwQuY6<%Ao?DQH-!t%mja56@=ZL<wLF+mBd2dC1S_5h|6(RmuBF0adsv?`g)wp3D
zx_k;w44w$d$I{M6kP}={pbQ#2`qeMy>PP;DkKAyi1*lF_L5u1qSf7%Q+Bf0<Cb}dN
z567JBWA0`x@9OI6DNze>M9$7n94o7-LpeN05`iVM!Jg0-woU5zd+i)>9laQ|{+d=L
zfh1a?=+??N@>?o#!Hl67Z2<=G^on<dF11XAvA-XT-}AYTiggS_P;*@4s277J0pj_X
ziPTLYCB=`<f^q}~QklJZ2BWPe*QzEvPR}}n$u;mD_`Sy^mr?h{9ql-db!(hDb83Dv
zo$4s;b7FA|t#!>>tV<Ai<#V}QnV6VdAkIcj4_s=i^oE*+z^cKA>%f4>#~$>*T`=HZ
zlyHK>GmI7;+`Y}T_~rllt+h~*BEK7$IHXCs;bGroUqe02Qav#SJjH(b>~UGLG5d*p
z@5K0;wUts77~y-<sm+Oj%kbhl<LVL561dK|%Eg=c%vRY@mgEtNp$EAxtKqTCno~IP
z&jWX5G>W9VYK2+8CME#8-w4HN>L>{Yc`Wsyc(DL;+y0@LNB58O=Qc890Oc^;iz7Io
zKN2!re-L$*RkGR7SqdC<NmgHMEa=*Cb|2{VY81(&l|Ne<BM+h7_%VpyxgKBsFv4th
zT`@gngzWM&4Kxz+bK>!4J%OGuhka)BQO3S)uq+!%l7;R?vL>aH#Wb8pyPS{_11h_h
z*C;GZZbklu_AWxs+GwfzQV~BS)n)Q5;3T`+ZsGsO%S?amWu_ul{*xi}4;bz-Cg}ke
znmgpiV}2cym*J(dK5tN#WN5TJK0#WgnyY~e{Csy)(Z&ZH%ByzZOwO5|ANbN*QM5eX
z8aS&_qR`qsZZ9>N$l~#3Fm?`yuBNg?abTB}u_*?-H!g28TWG{ry!uka#)mc(eGiM%
z-5?D)Ihn`j%4qAvutIU(WH&IU#YZz@aB1vzW<9MYMpc@xs=PgxwK~DQC6w?6fFdw+
zlJtM5zjBHgnO?{Ch;_M&Fda|LoGT!jOwTHjB*>%U*ZxZEl7bty{3t@oSMR24KqtaF
z+|c@pucB;dW9Ed#ZoAjrR-I}x)vonac@b^EJo;*x`!s>rSo}<^_460U>4ksH{Qh(P
z_w`edi0mxewfz~WcFAA34B_f8g}vp)`)j=UyLU;WK$@g4`{<=axl}YO2DXkAdJPP5
zIA^INop}dRyf+pvH99)6vT<z(??@$@EE}nr5)YL#kH`q7#i1H(;otCZe_V`fnurIj
zo+a@SOx6gKhq}pGDe+uf^p(=PzQE=X?ynv5eblYZfL(M4+Ub$O2Bw6k>FF|BO45LL
zV`97sLd^0}>-N>3X7jO;Nn)4iap&du6Mc>B*l+6m+c3jd3s2I@js`|nj%LqG96_h*
z--?6ZpXARb$RB@v!RhuGXltEs*L;-7&OvblZXeTPokp*xMP?Q93V)o9vnki}oYfk&
z{h0p_GEq1vDfM30h>3L{KLH~EhWQp5IYycl&;CqyMzunD#a(rfv0>@f5%F2)#lfYX
zF}53Ni{<xv+W@YcNgtB1U*<KEcA<Sn!Y>oL9hk|forf%)FHE#1*WPUfU5#~^s%usk
zXMOZz`*c@b-8-IU#I=d@qi>0s-$AnA$kV_)S0RM%)cJu+U`A`qn}DDb9WLRC^fcSA
zAiFVk5IeuNq8p85s|`X1haCgU%07K6A0Zn5z4hmxVMyUQ>aAP1(z|}VdiBbau3zzc
zX*AYf8sfj7(G^sz#?r9*squ>n(3jywZZ56cHax-e#a(UR6)ox<Wan?M&^#-?pE(@d
zQaR<zg3wJW>YkaZyTw=JDYTQM1HX<h^r{|_kj!ef@M5vovPGIzmfl4He&385&pNuq
zv(V^T3QX6NjFYrMAe18<6N~#^`Fe$`e?Dg=FzoY*c$5$kvd$ifmDDQejVu;?S)fP!
zWI4$9PIl*c*<lyi-l>7HyUP}^B$sRkijy{@wD2!DW3FJY{p3q)Gvg+K5i-&aTpH!z
z+6bxS+(w~Z<EJiG77k9Ds?1f$CA>@|T6SX{<R?i=(1oWixgDV)MPcRBsTtm|hnZWu
zm#=q{<=uOdQOEQyzmGke!@v5!BG4ZX+iUSp?%h9r<p=)v{qyHFNEkr_w4nEevMcaF
zTuE|v%7I|9F#JuZ8`g;Fn|l3hT+J3fw-5f4Nt)$;cb^jBXKu>9aJUXAqp4)xeO4iU
zVdG$!K&rsVNQY%)54;F`X26Otz)YsBytttpe;sWmul=kp%?eFVdW5v9#hZh1(f9it
zxHfqcT;z!dWW!CzA3ZcVU7=%U!rr~v(4VP5`6X<A2Z&OTwtR@M8_ta|y)&D8AV_7*
zu}=q}5C`?DC0(>)w+-2D3Ph&2LIRUqx_jVjE5EcfMZ;}%>_`qeVLBSedh6aKb3#8Q
zD@y$Aw{O18zPgULF&*cT^E{2`mquh)e~U){2;i?}!58-trvT+Y+>HPEOCqKiqzj8&
zcsT{y6|&n49-q8pe?90Y)NC-7w$yEjx$vfH7B7Gn$v}splx;8Z3JNlYCT@KYdoATd
zdPK<FclpFXTg%Pw<@nwh%*~D}m!-w?#e;qZBw$DQV+fPV6uGoxTCQQAci5Y9Z3{km
zGB>7;<N#smVqy`RE;taPKNH0?(I6aDT>2c6`XEUvy0@c1!6JV*d*-~ruB92KTAq`Y
zkn);BuLR8Oci4sd?<1nWYjY{`mzr4=o@B=tf3D-|5P!~@)rCEzM~sL4X5|m5?f>IT
z8S?*whjTOS|K{N=q(*3c+%U(y_{+xk=fmsv%Ke6iAL}*%R}onTKfX?`!8QwmTM-x$
zy;B2$(P9wJ(?LTDs?yxnr*D3We>C@B-40rQf~R-9A{Kj)l}&8gfZqc3c;O?`{UZw9
zbS{4V!9u!a{x0j&4tiv3Z{uk+_VBPezdCp1YtC6Tyn0+E&I`INhUix9nao!-<2CR~
zdG+nd>}<wZJ>Yjd5E}KBgW%!WlTVL<F~{%3?Z4hANdFO(DnL-8N|KM}5*E}~?(!TV
za7#&{Bs!~e6Zui#82w9@`1rNj%8xf$Xuyp9-`}4Ig62j)$z64)=B6g+%s>i#?j&CF
zk9z)2wlW_#(cF~Wtx~va7xth3)So2_(8VVpqVsuzzfEqmTv@c5U&MvUZVJ;LUne(i
zDSNhx8=Jt|AZ`b>k=$po38vQ3w$AJ^jiFV+TOn5iRmIj!Xmp-YElz!*sRqO5Xoq+R
zw5i8^LFCGgnVe=q&kXtt+9Z9QW!Va05G7ALOVQk~95|_7e-W2v<~<vUt)Aj6`Na}i
z*EH#N36WihtuHGu)5^Y?BwbW(p=wS<Q_7mJg+%Pn;IscUs9@|JPem46y0n(>vJi2;
zC@IfK;c4N4sFv8Qi=!#2t}CO=?4Ya{gstG78vG!E#3T`J=3nk!RIZ<93pYhg9<KcO
zHQc!p#o=8hmFdlCD>yRFnQF>PProdxeoU#v77`tuRr9PV{+dei44CkYeO5mTN`{?f
z5B}FR`p-Xplt?IgW>H=8At%}{3sB}GyubVh%;ax}uL!EG)SNC&qz3RN#>9P_C)Xkl
z&fN@sUy94u@Ri*eu~m07o}0Ixs_Cngyw*YoQv(HBME<Tq<QNESc4hl(1q!5*@Qq`8
zbH+YL0)tZ{xGk{{9~((i(#^^gOpmWVUorbBmjkSDI6zjl^fG(J*cB{}UtlQR3?`%@
z_k3RGbCP|z%PU({r8hakw*@#iL*_-FuXczKSDP1#VyBA4Q?jj_Ks%62F^VZ#-`q0p
zz*^U|?Dom3P`1&`4#eMEaMG8ti!JUB4yydZ+lDl2UDgYu4^{|9=2uMC3oog6VgyoD
zFi0@i)A>rI+5>Hwr}E`JGo?6!b`h~p9+OXek2fz){D+kGKZ{|M2N~{wv-hU%Z-(x_
zg}_bBFdh_2XowFhCL1NWu4o?y3TX*2#H03;kiXsPWaw)PGF;)rKp}ewwP_>7(`2V&
z6M~s+nh-{#E77ps_XzSC@TL9w^xL3#L{n9C%#)u0<kO{IDDIu_;*(MiL+pmlaK#T#
zI&<ZoO!r`l&AX!0EH)i~7@2Lk&Qfz5%f@&{W|p6yaM37miZ#7vokWlafbN>Cqm?cO
zwy^<Xf=4{HdBSC#&1{*4+{C@NMG!qK{XkJ(uFo*tMM!Es&{oaW*jw)ycZJ-W{0lu(
zSY2jV1D(y10Quj)i2qDLG6MgIf}Q`H3Kjsi+W!M1Z1DqUCrz+*g6V*_L{bAPJ*i8Q
z2cTdqL^w?@K4zIU#K;dFeT)u(4u*G&!-DsYQDZQ0f76UW@h8Sc9wUTH_QIuvw^R+E
zT9p?2X@ZX|F6iuz@$kb%c6ETkWXD>!Inr_<A&zYQ=Vb|}u*F^G%L8Supo7vJdqRdn
zQ=S=RgUi#EV#mpeCoSkpk+|k~C6|{{-N3&qYq!*XxY>Fuk4p<~TKMy)%`Z;lk)hFt
zgukgC|M__R^?ofz<l{&BS4pG1Z|?s!+53Bro6duhLeBm92@a|V20fnX7;{7rK4ov0
z=8s`o1_ojJ(s*u}`^$Klb5<Z18<-IvyzbN&P5v^c>%!s0U2O#}esv?Vr%O1ZqJ#iq
zXxT5I`NazF0!NR6>I@`zocA1}%ar+ql0@IGA!lM=HuT)Q>YR?WWM1NKAp#Jxz?<pa
zEan#r0sO$qoh|oAv!CirBSkLnyT~Jbmwt+lDpYAgl@BwP=cWw-#-{#-L@FisxV^f4
zkJ`<*b1?+UCc&xU`Y7nXmA8LCDH<T}WcFEKsQ$*U{#S^hv{*pv!5<T&P@|@4>HxA=
zG`e~}nNHCGFDJ<>021I;eL)Fwp|8@Poyv!n(4WPgERt0h)nam`$BwA9)~Rkzjh!Ly
z=mSN@K&iD8Q25ey*pqaGHjO=rHIJ6XBwi;Mx$eFaQ!MdJM8CtmBr~mWjaxN~v%<@K
zHsZ_ANmYithiKwM0l^=h5fteET8VB1)fMDrhs=KeP`~~C`cXne6ZG3~u>ZQ||NUl;
z60@llD*Mto8&``sjM%8%sw`jCj<9Q3i9)?3%w;um0K{`owZ7ajU$$4cxGA;9dKWo5
zuitxYl?Xqs$L%KpctB=54b_)VA*#gDEUlPauQZAjqGu;2Vc)txtA?a9H>7nNAXJ^Q
zxLr*ztCAkzk5g0+9E?}}W2*X}5eX~_i$YWQjuEY-q!e}d1GIGNXI8-mcWEP|OxeVx
zmp1)Ua}UY;D#cj7vzfg0eB}DmGPtU8@8Zr9<9|Nmf4n!;LW_$m91~9vpby4j;vAqx
z3&dekH;l59E!foDO;@nNRNo$maOyr)AFqf#TMS4wKIr4`0VJ%xlWa|_2niyj+L!H8
zc<aa(7`)n!3ikp}j<Plw@T4LgRz%TLj3lEhv$4F&&rMM|&;L>N{@1<Kiunw){)2`_
zjQ>+k8PMDsMjot>b^=~gP+n3<by3kXd|s=RBI8koq~zq{N6cv?d^S=*^Gw6b%lmC#
zKr069Rsp_rr2-lmZRcHaI$BzunYz-^QgiK9zz`}jom3_#M^z#TEPJR1BuwGJ->qn6
zeY2m^c^W2#+WkdDqVg{Okp4SQ&Tm9?>F)|rA3gp@qBBTgp<}n5uTWb7D-Mr_^`nK-
zGBR*G=#Ay-U{zoAzZ(hR)R`Q2R`y*No;f*h9qB2#bO<cF%<ot(bX?z#pY8a!Y4o4h
z;$J^u`47U7)M&0|wUDfgj7*zl*=Jy4?Nl>}ef03{TLP%+r^ufGQo{MbL?P;#^a28r
zQwfz&4m6o6vkdw6?U9KwKa=K<y!%9a8M6;fo<1^*=5Sk5S7}4WS3xuuQX5%vcQo%R
zU#nmK{;*3WwBtlpIu>5`e1<$2eQPqg_*m5Y{~aHs5>PN-=L(sK&@{+%zN@>z3(R$m
zZ{Dbf2M3b@XQ5sGG`K`>V$@VsGy1v6ma~1YSx`VL_bN1v-ELznK@}H=b2M9x0t~)K
zqaQ<z57&le&9#OMS-HsFs1@F=Bx>&MEvUF>MGBexfQmzJ1(pAkT-aBHN!Z2`^4JX1
zM{ISPYx7ON)8Cuk|2XP0v{3_;^H(3qY)ur)zDm%xsK3RT<hH-c3bluU{gCe)z3$b!
zj7jp@LR~XDzIwr%d~hbvM0>}^#$=)?*3x`MWMySJP5B0Lqn}ru^h=T`<r|6o?@YsR
z4~?<D+;wshujST%-%o#ktiOr~;usdWcPAy0kC&K6JD=~iTFup=_yz{%;-IF;D$2+V
zlt2s|o1<n>NSCuadU#g|pVK3OOr#CyUQ#84h`(`3QYsXA!oiC2g-6D3)7O>@?WRIR
z^e9<bt84FeKOq-<$w5WU{+4TFn$nMpIlMVKV#u$ONxdk{`cx6pH7Qh3-D8<C_ceRA
z`uTG9r4*#TkX_ctH=>}rH!S;pbqbg<j7O9zj%>YUG0%mmU#p+i)0PmeK@r!`oJp`k
zy>h@+%srs&A6F=y)Q!Nb?70^F;0>JT(Wt<+9}WJAlbTur+}!R<uy>EKo6W|5rpm~0
z&pH>*y?vpk_8q`?uyVJr*A7^8Q?alpYSWsJ=EnAf0%6X{$;sQm6E+s&BqELv{)YtY
z?|lL}%x46qqg?T{oeK^D`4MXg7<)rAGH7!oXMu+1JMgCoo%?k$;o#uxf!W)yx7n`x
z>y3Q#NZ_KkC1iYj`L;HyC;HnrDxfGUzc%*BXl4JmsO#@{(I4!VKi~>UW%;Jp)7;6N
zVJ;4iS6^EQ@y`E+R#4`W0+Na1JKT>fINT&qyFEpUa1CZGw@Tkjwak5`vXx(@N1Vo_
zx_1MlKMo!L%f~NW+0i%E)7$cxD;0H<-+JB;oodG9L2oPC@LL2Eqp*daA$^Ya&nWf2
zI@=GFiVftY)7XaBYu;`jO2lisSx6GHq%NG-*L%l;A_t(+>@swBJD{`m64#rh{uXiE
zUVRnGQqFk~^c^9=!HJ@sK#xc7iO=yN<6R-x>hLxYU58BMS^e@gr9-q6Jjh%gZ=XMR
zBNn4P0qf@5fY$C{UKN8Z_@t?0_Y)H%FRz+-l!`XIxaadF#7>m)&TRGtxBywA9ZQ`N
z#=>U-=$6#Z&0~<a3p&%lIV}s+DDV3co(~l0Nmeu4bTX9=8N$IoIQ$WVa+`jHW*P#3
zF*ZDwF91*nZS*_s*ifmTD~MHVZX)kL3j0cvPzSeHFG~61Ho2bX6Efw&VsnVomcN4Y
zME>gy;*j!%FAPIS;8PI(X^CignuqG9P;)lDEd%1|Ql9HY7NdGeb_;yHf~==I7mOXN
zy^p~9EpH-XH+3Ma+<zxgZ4l=m0qnr|B}`b-32A6Mm5YJ=TYa<gL4t>45vPI~nY}cV
zW+2v{&Jhv6a{^OIMZ2=w>#o4${OhLsvHkt4nf`xA)&wEUXK#V8g_)0yO{r2;z*h<j
z&;jV{M0uH~wr8r<A2X^Z;O#VayX`OY1bfVTp)!xD7=$wuag%-RsCK=&JiYl)=_$k%
zmzye_F*9DuWB8=S@c|D$>XG(d?EnC95RupNXos6<(Jx7Ma!!2EH8F1A;(KitYf*T9
zxG5ad^^6Se%CmI#yx;>V-!k7d^oNg6_|$$YOIHp$w?CP{d~*?fWfq@Nt5~ntWW2Qb
zWLBEORze)wuKDURe(JKzUO&&TLi)d(9bm1oC2E<Ldq&ups77RTG()mPz`$KPi2Pe#
zvmqyvjAqUUQ)Ng3XgDnk3rhsutF$&?*12AX_tSbs!Qpf@ed$M5?!X?n*H#4#gW6(e
z9OeKwDKI51?RIMc9En}ipr}#k7Oxxx_mQ(SMaSOV8Y>VJkKakBUT<uy+1=fJUhpG8
zebNCirhYJ9IK$*nA^5YdR~M({X!o4CT@DN5aqeQGVHWxL2Xn0mQ!-827B;YGg(eLb
zy4#k7!Vae&2rqo#A2Pk9aZP;3;emk-rbrMGsHMQWSL$Lz))-7WfU*(}wEikbmc%Lq
z_0;746j_fpfOIJw=tVRD)e;+OS?zc*;BDIF8jXcSXc429%%R{zm5#vaHn<38+7+cz
zJ9R;rTr6dCsJvI_$l^<|-558fuwN>H8g1vRs+bG*$Awq$lKPwW$EE3t@j|E3xtSPT
z^V~BG?_Ylk2few|^DqmOzaHFwc~dm1Jmy9D6|yHvOtV^#KZi1=^fX|XjB2}Tveck6
z1Z|QoJ%UD;wFR}^;bhZT^d=);0qv@%RTf{^&u=t&x}>PN0AC-c)y)ng%DyqonD4fZ
zFS1WgO1@cLWuvE@OO;m;^|On*up!djrJ|D^{lg;gY8RS<d1<OCQ`EWLXq%!+1>ury
zk&*T$Bls_0YCU~9Bl@;22Vo8XSlHVay}kMeJ;n80aQ?&ac)5$<%6FR+@@37#SLCX#
zM1Osd-*4O|a6kDx@S0WgdHNaMVDrhS25H%TxN+(k5_tW`fd|E!(DdrCw070@(Ro^<
z?PC+N@Frlwl%#Dvc$#;zax{`CXx5?^V{!ZHopR9na}wtrxA1Ym0OGk{S_7QBa>>gA
z2ScwMHCK~^gzf|y>y4NEaIn0<AV+<Qd5n2Y`*Uy8{s6f(C{-t$ApV}gchlPK@wb(&
z4AL?GRUs~DwpxjOK-kuaXkhpwNAGzs>Ji}}X9YRV>T)~no59ra6BYSMm67`^uzN;g
zUU&P^Eq+9gY6pE{(JG+s;Vw0uq+TD*!>$Ojex~Pp=6_A2oT;vya<&$EceU+$rLORd
zLB|56h6ozm>bS!?1Xv1lSxbrWb?rNQt~2L)$VfDLiccF4aH-|`W}9FZSlA5zrqf1Y
zyM3S;D>97m`S}UYMRi`3yX1J+EljQKhAVJ4w*yr-PSs9O>B9z@${k*V9>Qv!7t`ti
z1rR1wuOc<p7}j}jLgoboCOH%?@{tj`)g%soiuvpos!HG;fz2;Nh+4-BZeVkE_O?K_
z2gNJnPzJUh3983Mo?&mqg#iu1tuu4}e8Dnv{>Y<?jM^){-z)%@<uM%#{<KkAY5#lB
zQTXoQcQRf1XQD;jIp`&r1Ib5QUzZkRnHDq7g8tdGvd~3K!hQAZ%VdA@mP8fq8#@B)
zOq2L4cg8ll@IV6%GW8V!qKB5cw^N8(Z69FV*x>{6z-LrTK!G%jG9<R|OArNnf``43
z1h=s%+M?K_%H5pvsu0Zf^NESju=2eYc(`LIjFCrm0*zzZg2GTT_5?y=6ae~?5jwf`
zpV2!3JmTqoYfF7&P2}Xc2X<M_d%Ed<bT4BmA1+TewxAsJQ7?<TZfNYK9<rups7gd_
z7i<L#fnZmxely6jzScGQ;vVSiyhE{<nnS~YrUqdgPF!v0$?UdZySHASzlL#W7ME5#
zbM<%p8ZYRbKA{~Ip1ZThU=4ec`Cxi@Uk~gp6g2(ShM(|kfA++UA*Wxq9o0-f+B(OE
z#M(_5)$8m+?k8EE-cyq7{yLpkb8qSzSTmTdSy|F^D;kIZhCgxhV5hz-Jhex@hs__|
zpXu$1<?oyYAjCBqJ*)>7XgmBi`@i~6w{Kj^f39(Jmv?#g=P8xofOGA8I}7$L#T4#=
zxS`;6=wRV75ACZRTl!#K0#<66erLE5k%BX0&doSlq!4fVJ^B+wEVev^nn+l*duNDX
z!0vgG?`tio?}5)&pFJ?#K${@M6_F@=CR19T5e8_jefk*0)guf!=|?*rN7#=Ehy3V{
zh3?CdkZR*w`c_r0-5iguEbU-(O8Ibm9o=S&2ETpvxoh|6lZeN6yb3DQ-nXSyM}LN!
zti(BO1%uW!f7s?E!xxFq-~LBt6DhL7k@r=MKsYoE1+ge4ow#*V5-Jz-aAQW*?e5EW
z3%7aLqvyQ1lOD{!^~FbvpneZ+!4=s5atMT>V1Nz$jRvNU<N6Us5@BFenThc*lU@fH
z3Hq3tzPFXV1a-_oS*GVMX-bp4IR->ITa^rG!G|6uf;s0}??9?-vG8fqy@BLLMGSGW
zs%Q0STvo26J08!a&{1ezgmne&?(Q0bl(6v*S24xaSCM;|bMyP=@OAZxr?WU3D;_?P
z5~#&gkZB!}giZjo96whwtt=D-kq4LZ)0rOZWV0TfBn&VajCSvFPmzLo;w81M)m<{$
z<&U%+iJ7sl99NpFD>{;1FK8ux7mU$sEjhTuweA<u-E4{^|J17oj+`hw!CbF@7k*JJ
z*O8=2Tox+!X}&eWmvfT|D)WOOw@efp;AEaWG+7X>7GH4&GQ}K+V)d)z?dl^fDH4I$
zlK1To;CF66iVSt{hCl@jJ<ujf??Z*$jDvB4*~zV8-?T~sjMeqwru4I_m*H~6&!j!S
z4gO?#Pz71CZj1}q+plt68xhu$u!?x6L=tgX#V0E-caLFgs@Ao3PW+$AMn;rKeb2p+
zzJm0yM}#3EjZUfAv??KvK_eGQ@X2Ql?*S3dWTHqK-96y}sssitj_m_fDOVW-zkJMs
zl;Tp1=;Z)kx_&%vVQXvaYugkbb&1sHKrUtTO|mNJYdL7Xe^8K$@J>SB3G!ddROo*c
zVb|{8A8>jjQor@(-Ax91<I!UK>Ec9H6_a@5?dlxk=Hgt_P5n(>ye0+n0Vi{mnzI;~
zS7`gxB6T^Y^l|MuGY3#i8hkMOuyxXVcIxQtBov!LKkIUqbFeW!xD+ek@N@f%ac3!_
z6;X;4_%dA%O-5$!3q!8O%F~0p`0P#hg^u50a>?GYy~(7V`ca;Hk5hJKV&e5fg6|kU
zpD@BaZX6j;P2L0axLE-WrS&D3ERgMQ5eMKIFCfjnkEncoSD3(8=DNSEjk-7Kg8${2
z?1Bz%Ix|c+p2t#mr11wLI}HSkt)&!`Ua<l5Kpd~e=%k+H7jb7s<mA-fmTqMLFy<u4
z*f?C~eR(yLs9$pT5_%M{{IF!?xvWZ9>Wxnt3C=kmuecv_DrSQc=LXA_ewrR6(#`>C
z<rbI?T|*jGL7OZoo>JZAU|Q)k&}(-HYE02~IiW(F9Hq%eS0KOd?m0g>V%Jcu<(e?0
zpmAKm|B8p>_py1^8Z69o!GWOs>*cnmm@t6JwVNOUV`N-ij)`W`@J8qd5zw1o-s9`A
zU;WvmPIBh(VyC5>-{IJ8#=CeyB9Oo+TpIg1Y<l0T)9O1$m_2IZ4ePaYqr>iFbF7U$
z|6A)lyQmx=@~zue6vutqg(uo83C%GW3f>MIPkf*wTekJSY;5TwG*+p$GL3_5-uuYy
z^YL<fXKKerNwlHkIPCZpH7Ysj-(N4BQ8{W|TVD!$sM6P!zsY>tJ(Ang{%Ty&Re+k<
zrtkUIQ3$AO2boUfy$q>@?v~A7fhvUIj#!TeNy|3l&D(cbJ5HT3M#g%v%B5#QX;+dH
zk1rOlfGKZmi9C1i4HAU#(#hqc#C&0svl_3}Ax>aoR`I$bhRvaj3OP9Qr{L;_Zgz7`
zcF9YHQscTUJg5uZ02$Qg7bHIbJ|anI#u&}u^rbov4B_*tg+JEQP=1V<>*TQX1PByz
z0cUNkpvtF0oq_%gaS^mHGIRTbilvtqXOe-hXoEflJC(ySESoe~s&?Fs7XYNcfWW+p
zP0<>-wu*uJc);^?iMWfvy&K?jx~}W{_^|!~to{Zk4(%O)tYn26Px)E7`U(O&)`=D=
zSleCoY`)rxo#j_RM97zqcv`T;&7Ymj{jyKOR<!UE=RxiFxSQ#6)7-TX<U_2A2e71-
z&w^(gg<H4o$D<@p536WzHkf+fEgzMrlb9yMjy!cTU3(Ynq<z<A%G$eRP=S9O^vJ#$
z2z|Tg^0X4}vJ4<l!m!N#{PiBo$#rXh(=gxcz5#GuY?TG!bF>^z7_%T^_U_we_(l8x
zCkw9=C`=G<DovZrJaV>&GGE1Agf)t-HDU|L(8LCS-MfvLSUQ$XIFe<iqG24R>j6%1
zm}l_lmyXWSN6a`fR@mNDn&=ohyrYrA_k+l^G<hZctcW1H!PqM&bM>D$Q$iKkb2(b1
zCr(!4x1j|!t~4<g?v<sBsl|PfH){b+e@`5L$AM?N%ns4|4ls*bio@UgZ-QL05=Sep
zhS24B{sb*<k?a9+VqLp+9SS;h#hj-^mbtuXvl0IlObDrI1HyDA29`AZ7eH0rd-{xa
z_C)TzceHs8Z>CgO3vc(yb2N;rs&<83J)0Xl_v7)#Rbqr1=Rj3bs8D|*KXGw1tN1Oj
zQ~T<46nf92GvNv<g7(LY{;r#C?a=E;X1uBXoy}Mq^LfkA)^2$iZYx)d7z($^Y8Mti
zruEXTXo04DBB6bcrA8OncKp0cj-QAF#m-rktvUIn(2>2<Vb+v)`_Hu%@ZgP=D{32J
zNS3Y_1#DKI#AULslxscXHYz9}I!yn(S)OO@`YTa!5Kpf3zP$BO?fJB8tYpv6wX6x8
zKSIM_|8=_;EJE9NcND>R4djNsq#SuKsdENb?O=_^b6U<i4)QqO=Fo9*Y1FYABdEpk
zJcB!JU=Qxzei&um$Z{c68<74Ogb9xuxa)EfdNJv8i=9x?Ni@h*=k+HieT51(NO%Kg
z46n8wni0r8a>-b+ZaL2rYS3CFp?WxCq@Pb|sL~+~eU2>>tN?7)yYh|(@I}rG#<0vy
zVoxHCgcP0e4~2pH<E$EXnPPewM?ngmd(3?}FS6WD6JNy9D=>&jh_(Kz%oSX`(rZL%
zCk5ZWY2Oi3>C^x*d|!zlB)a4}8ayuXqb#e6hGCLVzQ4Ym7w)qSF$;XcM$Y*706lma
zP)WZ@PDx0_tdjmnHpl2)@M`VU3lbcORb;8&e;GH;vvJLk*~1Wk-|ir?Y9lkt<$5^t
zbCyK5#pg*b$n9!Wizu&i3mbO@*Q(H#EvzPoll|j?Qh7(%`55yrzIQX_8KZ9IelGFA
z5aEkR(Y#wgy)aDKs7KZM3wW08lx{Z&`0(S@S>106K*m_PTng089tG{&oHq#QIK=mi
z@tE)AKIN|QgE(8wwDii>R6@Q}7k6U4#2_CeGVfUe=&A-Ilm*k5BnXKZe^!3y5k|9k
zvAo*d!?D14Noj|$zk=?IOU&1NU?0N%#Z3zCi`|`9Qzj?T1v^YUW;GW9ug>!=^%l(s
zV0{SF@2ra`rWS||<SxZW!x;pPQ57$Uje833#yj-GL-ztjdG@&ois>xvtzYVde|()4
zycaoMC1u;K%{M!9wIp^lUeTz0cyz&Ru~ceU>Ofq-oD!BX<ZZe=l${(9BUB-^dE6yQ
z0=HQ#cP|3%q82Y~k}Z2<y1yR`zt0JM(YYAw9?L`qqr3I&#D4F|Ul5{lTn&%@c%5ZL
zaB*Um)&CJoz0f4C+hGl&GCVQN;P)!E1Dx|F322c{V%cr8sfl9V6}7KmJ7QqS{M5A)
zY`S<J32{GhC<T@O^feTVyVZ+!AGkZLkuaG3`#6?Chhhiha`{OmFpgKakn*IsG`Y<r
zAINi0zX$k2D{+Y+E$-e=tik2=Nj{vJ9=ostYD8TpZDKN5Pp{4o!gcH~|8i*$2aN6=
z)F1<x0Q!O(q_Oba_3BK!Q~~3I`E_sq*=&2KsCn&03DAvn7yIIg5e`8rTmV$io|u8o
zJ3suS%k>;VvUSWx%=1nwrHv0>0|IWc9+Y+y*eqwOp$(A`KdbXL>j|TDs+n}y^I3q?
zojV<=ur;PB5_{bmS*?l$pfn3DAske8NrWfNo5(KG(_MbqZW~w~q_Ta{6{|isc<c_a
zc$ipFEDCJ41PD=dHThA?xt^}lG%8`QP;3seJaI73|GxL7G_;)yP8YCVSK7_PTLV&&
zRFFM&5%CLD=mJiu6Xggcc568D?sh6HLEqPV>Y8185Nu77+?&7K8g6~NN8<>?87BcW
zd6PsEGqN%~t}FxlxMsz#+r`G%+eI<k`@8N~%od{&=3drY;p%3-xp)FPHDJiJb!@#=
z_j%i$GFd2BF_*x9`#U&@`W^C{Q6B2!bF5%57)~hslsofp`LvDNP!jLBmRYiz7G0rd
z59SaOTAY5kUV@p5GPu9vooX!_eeAnXbfSh^Iv(70rcQ=aV=zQo2Z4EhYN6oK6o;co
zovEPCuo%M21zbvN>8jl$M3AsorREdHcvjE~sQr<O5oU~vyDaytO0C3rV1&!8zqzG{
zFk)=>V<z{mN;=y2TjNz!$m|}8oE%e`b2X}ipsx<%#leG;<=zj713$jW`<8y3kJ%VI
zD*qs8de^XWA=PzpoW$(m&}^*z%s8Lz+CzOBk65&5oclT89{%Sm3<ZU{{rgS}#2)fN
znHsg3D&MhwJNMVbBiHk^YR7L&UGkT)d1a;<F&I8|Ue9mzkBH-GzE51S6!pTbcv^sq
z%2K80s2H)DLHc9Qou#V(<VEcw%|osQsV4ufTMz)i#uk=Sc@t+NaJJh%1lioJ$MNTG
zd5mq`B?Q&ErgXte{3Ad{p%@lnF?4y$-@N9e#Zz4p;?3HLe0LfAVp(fZTBm_2^zl<&
zxtO-PkD$%V{JL<qH)aVuYD5kz66csI{#8%r8`+w4b}OV?J4@{W<q>DwZ3ePJ27qC;
z7cn9sUsqQJ+$frsKKHXUec$)g^Q#619WO{X!5QXRAO&G0>A=2jeR3dQ2j*Uz-wq@%
zWd=g&0t}=|!jNq$Os@7`HW9|Pbt14<hYZ$iO*2wxpjf(CE9W47>r4IvEp(sHg|<Y;
z%n-F3IJUHV`Xn3Dt?w+}bYRhsvbBUjHVDnPBv<tSlyDO)-myCSu6Kmo;Ne+#a=h+Y
zZW%}vM~k_w71c7<P|_Mmv>qsos-5cxJA>gaonbbft<a^%JRrIPki&XRRuacwiA8Y?
zlO?9>xtvMP<O>J)6OU_P0B*YJiKk_;@{y<Z35l!H>D^bkXD_mQcpDs8{<={!1km<Q
zOIZvM3!5Y}T?j<=hXHZ3AvmAx%v<1o;+z@g<9<=Kv=o3&IMarFZ124_=vT4mHZVJO
zv^71+2TIR3_0eiB(a~(x2M-eaWq4^UX3wxC1gjQ4$>tojR417#L#*PeTk#K@GO_ue
z8^pyH1jMH=UPjh^p1aQB9ZNQKx}QF?j{osy1b(mBbgG3|aEXkj!sNAqCeJO=<oKFN
zqkggTyum%MBm!Y4cepSe_r`7VLD}0Hh6l#OevV36j`EYHgEe-e{iPF}=vUfdxsQI=
zCBGlWKgtwZb2JR|HP5@S+z{VC?spLf(oZm^hsLKu^WS?3;wZ2R`(&xyS)05Q=jk3O
z`eE#|KQi`O>Kv?y=TA|bccz-$5Ib(;LBCHZ^|GZ!Bg4Q3v>%ojym$Js3?_@{93OHv
zIX-bOc#*wIPyr%}W}8(><B580JQV_|D<2=&$MmqRMJyr|dzYxC`UR~<vvd%51H3hW
zjiRb)Z8VR>;g$c26PP9@^J>;&v&9^BJ(ZB(Ka<r{n;1nI1>){@o+t6~Dw1RC%~3A?
zJ}`7_;tej|+hj+=7psaw(e?d)oN#hI89pu-*OG7_YlNwFjf1z$K0&~ZmI}P@>|7p$
z^S08&0)y1CejCYM3C}-I*?#F8^y3`&wv2T!uY%3*D+yU2<(}2j!nIUnjQ=X0zI_)d
zKg{<f*i9kOn;Alyf48>4h+x(42>ZnY54(eB0oWCl+&VCx#d`u~84b~t#PkkGMuL_A
zB5p8lJhV04X(2S4LfhLt1We48O3eMUqK9sK67Npk@ednHS@?UuVG#FDubc22^cI&0
z7<djVIF#M(-E26$>{97fua&pA)#>Nw-hLmk?JE6xaZM$!R6Bk74(qOqTDpWOLH?4^
zmYC|{8)GYtD3*NsrCW2~bn;HS4NvO4vBym%r`{hJkCx_4m>XU3t)ft{NbuO1;~FUL
zXTAOMzapNGNIAL46B*%p|DznrJe8#%jcfk@3XFBP#Ym@TQ&<OxX2`KP(41gD8WBWV
z4|mI?QW%=P!+tiMNb9pfJ!bSM=0mV~7a@B0Lkp;VSHJL^ZQt-dc@_DyX_D@7Pr!$l
z!b?@$q9fQmbDx@YVeCzY4DAiH-t#U^X-^hvQXJlrgv1Hx%<|j(5((j`5~5c7eEXgT
zJ5mJ-ZF16`g7i?~!xNpyKD?|kN%b5>xm)N!#7fgs9`PQganM5OT!C0e9zzaTHv!p3
zHqAvKhZ<kuTR4k0u_r{a<5kGB3575Ik`+hqWG^((wfOtM@jXhpAhW$sH-p|HhOyV+
zZ~Xa}Gi-N%R2>Z9l68lFyy;B8MXL~>e5aWFcfRz(2s6yMo|>DrnXMtvTCY={+FZ#J
zcePo6sJ$DeRAuaSfic=xLv~{c1(%FY2epB~Q55TXX;^=Nj;g{s`HMKrs>lZ>m-}am
zb}m=eIXbakTYRD~R!zlwWC++!(4z}1(iCMhnAOX>ZVSQ_?@c%**nS*g3;M+F9BMlM
zQ~dC(imp6y@D=bKeH@-{RpE0PL94uKbe))b?Q>A3bhuA;bF-+1W-@o$&JKRhGiouO
z&o!$01i`<X)NeP2_W&`eB=NrwJ0Fp7Owuo;P#THI_Up>IlPQDm&oDwOgd)06{rzY$
zvWP`<Vktt~taQrC&$_B1=IIPgHM$H`Ij{OK3adLN*I8Ve28y(sG+iO=>@)EACP`@N
zaYicF+&B+#7hfL5202IxkS!ea`EeB1Q|*U*IT{4a|LVGrtLVhM2%OvH5$)mqUU+&h
z4Rqk-*geh*Act}uh|L?{VA;g`(8V3GY&+*!pd%c~;O)na7OCa2I=CQPHRotNTT`v>
zsmC`@fghQE#6o)Vb6lgP+W530G>~aUq1v$==j6^h2e~d<gmjCo-yEL+cIaNJEQ3t^
z;BcbN?^x;9A)cUt#T5^{{<?!Lwt~5b4vkn5CsY2r%8$(%Q*kxZj5k2x$t~oGZ{B!~
z2Vi!-$(>Zxcr)8RSzFa%6VGi=>fPdg|6wUjPYECAx@yF7Y)-dCj%m+AIo&Sebt9HR
znpfLiM?@Yo>)ClKax-b=HbER0j$Mgi-;_gFOo4@$d=#>>pq5m<`a`kc@qFz@Jc*D=
z4%f$3(PCVySQmx3vq~~TrZx;=^1lwRKl@LA#Cf-a=X2M&U9JAW;dO@EguUwmGgtOe
zKS$$7_4UNUYbpGw{%4`w!Gsc%0J%emGXz!-2Di#mAdNBh4yUXY@xGKL@hg+Q=S`At
znFOOnDTsvX+I7BUH)Sb#27pUCu#ui2$V+w-e8<xF3J?0pL|+I65ODVtRS2A%S9>Wo
zsmX`T8$sOEL!_ALT%`xA^oZA_M`<Fhf|@SBuyR)l<=#AoG5k8VbjE={_SREcnTNY}
zAVQE^Ygu`AqZVVeJ8!Y_8d-xzK$GXsx;}vvb$zSjPRAR!qxos}yR9!Ci_PD*>xyL4
z?+=@RxUo}w8rxl=t1VMB;{LK@wb5m{^(v-hWa4c!*b8;`Fum%!MEM^t5j9+lM!K!)
zqnQ?(STd=ygAw)Vt?LHZ^^a`SzA^v#&@YA5fxSAhzaaBu#N_tl`gr`nsN3zdJNZ6T
zeu@j{fW86_*2uM>uTPa162a!&M)I_U5!>ZQVZKK-asf_gEDxfEU28O*Hj5u)tAY7y
zZzZkA_mNd392C+n!=7;x78N!3`k7a-lpd*F0=|dZtY*jCGkpgl(iBS6C9scfG3LJD
z@!aP_AP9Lc@OXI=^HvY<WVTvikrvmuN~C2s$6=X+dF1Z?f|>OequS3VUb~NAwmb20
zEMieJG=CQ(mkllVdNGJoK?hblj*ZoYXPoRHR}#@*M;ti>lJPX#_|5Mx{I75Rk2mjb
zl3H}JwT|g{6D?CuL~fW4rUl?^1-2vN1f42usB?VYHngUL3gg6XK$@n!YO(d^16k^&
zJ5e{113^kJ)PWbi4i+wi^>{pi&x^rpG_`B<(m`9dziIroMcFgx?<WuiCu0b0XW+Q@
z>Y^7wM{38xYP*L4#VUDP{f_!-*Sj019adtQtJp=^vw;|W%Z10t-!dp-aU6`FlC!}o
z7D=H3>KPmy?#CYzM`hyiw!=CjSnQ+0_Lsf(b@*y5lJu9X?#stSatq(O?K&6uj=>$L
z5rHqO1oiR}6axsTbxK5e0Ft*|)I3(8mkPhvX}rW}Fs+<^Ri(mU#0CN6d9FjTK|-f(
za7BlLv{|>Zs-k;tS#rO>wFE1ijD2D*hSB)}!@oLGe|wX#h_*w#2ZSkQ(v||AbJOV9
zG#-lY$^BTv<c1U?S?fJ{DL2ShulZD9?`SW83z3XsHpPWKFOqiI-rXL0rDz)`7YDZG
zL||LeF0bpehggN3fF7MDJR3pw>$(Khm7_jOQ;3a97hbHduvygwGLcaAQCIR8Y8V>e
z4jB2V--+riHfED6o^)p#u-KTlLGv7oF*)|nTj50<MvO%RW(lCN@MF6M317m5uwCZ`
ziE%dRe+mM{+?G)EnZefQ^6f*fU&g@U-h(7Dnj&yQY*%q>rO~%NeP;O8{0Lm62o@%}
z9e0j6Oqj#RffVU^vun&I*$8DeANj;}ZR2oA5$O!{U$GI2(Ddu}MBGJc!7f<CIq@Od
z^aIAdT`L%1d@dV%_3Z&<f3YkHkHxzh%O!@dI-)vN?Ag?cB@MYZ<ASU7k$jN=>xt77
z-S-OwE4yCJnX@c&Y?gdbQbr?rq=lJ5SE<x^EMLcNNJ+9>uTIwax)Sb=WNXB;KEZ*|
z;Jf#3*Ivy)M6B+j-+l6K2yfy(|HhmE%*%*MGhK7*8_t^n<_rGaCfsh4S8I}#j(hDi
zG+g5N=F&650CuA&TX7ryJ%sV%=mvaFm1-JE(Y35E2hF^O1jJc>OELZS=ywWE3rBrm
z5-y}y{JYok?}zVSKUw;6BeYpAL`QCn%;UW%MlUDR+oF6BvnwF>azbSH3AoK-WDVT0
zqj{~<7{s)wBj7Hj90w$!H9qWOdb*=4#?uwW43feam7ul4UvU`813j0n-bjwi7xtJ-
zCMFp%0|r1H+_!jccjVuJz}b>c$`5Kwiuz^nU}AOrfd9V!%wW#9?L!f00T;7ry_g2t
z0|V>jt^y(W=@{=y4DP`hIQ|1i7#8jv)nJhC!W;moY8*7%jjkIN$TSDgArYUS#i<S+
zo&43GeDMP-(WPG;4{&|p%L0VVs`+&}6k1I^eCv$%wf;x7#Db1v&(Vn%n~aohVKQKd
z&j)IPMMk#`CiaORg8I~M<yKhVD6Goh?og0@UpM#c6y~#P^j@$wm%8Zd1?3o7U?YWV
zdRXK`#cY_qxXD<qCO-{jO8k>JKyw)i+0S6rYR+_mgGTog5=G2Zhx$N-)9@RW@m3Po
z4Iu$N9OjEpH}6|4$nNbm#BuioDJ4s&0g+D3T&Q)Fo(ORdmev|_<r@nwv%?m$rC7+Y
zkJJeizSGEQAgv)5j6W3^f6G2IZ8zDi>0R~EXY3f9k(Mks4mT%956AR^nk;@5U4h?x
zy72bybGp$<(A!>ZX+M!V8DJd)57)NRu!gq)1BD|ISjLF^fqbzF)ZMXjVgAre(yr=%
zM-*KMn2_lb(j2_}9c2C<ntw{nWv0hj;p+L2f4{qcI{|iKZBpkztf|KjC(XC1M<ZGF
z8}49J!G7(wG$|Wm3+#NteaD^&tpNwt=(l9}2AC!IPUw+;kru8Ex~LJ}5490+KgCo#
z{8v-?_g_VS+YJl^yG6}?VH*fs?!9Kgt7c@_k*UBda-aP;MwZHrpU#@gGl$?~^@av|
z%c8|h8B_caGih15X5<4Ynx2A*mx`>w<vixqF(SyGL>rSuSBZs1i)tJ^-1@MDCK&G>
zmZ+&CilIiB8(QxySUy#bl#%+ik+L(6fe(_)w<>8xR|tL9CM&QG(Z}hrNQ!SdR49>c
z3+N%drKz-7{8cQU)~PR?R@~QeT%|(X;?tT#OhFmjY0P|N@GH6Fnwe{kb+7f8{M<O?
z);-5aFXx?=)QXh8WuWx3MQsBI{^XnXfxI)W9SJ{!QIn^luc5sH)>eZ3+$;_In-<Iz
zqRYG-&&WkQS}{LdHcQ517dTYBSQk>X496J1UeRcO&x+}~3t`tr<~@dQ5QBpm;xOK?
zt}_FJ3o-qb$#kH*{a8vSSo8c}=?KVCMARO<BgabwwXQTt<c$`7Y+@-4r@+$t)Sq`Y
z>Y<QONx7$RfInf51;mKy%JfYkTzgeSNo=-R=rWhhSden5rM2;JaXP1TDyQK{$J(=x
zYkRC}8^}tJA=iC2xz;QLoj45m|3}zYKt;K=Z7ZUHN=uhCNJ%#+DIF>u0s;a<*U+M*
zl+xWwcf%0U4bqJ;gn)GSzvrBz=X~#X-v3*R#To~JVV?c$ecxBznk<s39N0VKdHQN!
zO3avPsf(TZY9H6(7hbCr%r`n&ek^*ekXsI3%xzk%hL6uD<|B5JneS7QVhHOd7biW&
zG)Cye=+Ex9yge5{yAFQ%6I3+E;39n45XAGpWM<H}74W7P5@Ufgvh@?wL96J?xsFF{
z>p-g4{cq+P{YBL7;x;@Wj!Wn~$7p>dr{A8E{D57*-ST3Wf(iz9iZPe;gSB0EppEyP
zb=@fNlOCx4=Bzg;upIe(&t>%Zur;ivsAc<DE@dmmpk`;Hn8JW`VJ=HPZm~>SZvA}0
zpW^<&X9*Nk7G3SQl`bE34fSgBP)bq~kM1K!tmH<6Is>l@fjRbFtF;!ZbBE|eeQ25l
zgp{{XQ^?3}s~ugbM5ii%G$NQCx1T&LdDm%;&2sT8XBP*Nb}apC1rMmdq)(!QNEjh|
zbD+1!>5jX>B{<H@!FV>BdCo^-gWx`&bjdpOIC3l|E6frkH%Nx2U|WGvJ0V-~M~59T
z;IL_sOJ^Q0|N9<a#L5oellnOBE7rDF=c*No>aaG{c1U-H^&+%3HmVT90Pnra{PK4P
z`uqI&$c^MV#Gq5!?=M5%_&N!54k~L1T{B20wHB1W`fm1mcd?B%n12Ch_hT2$<A_#h
z-PbzIHD8yfQ`<8ZkjeBJnR&lH?JS>o7SN8)7g%M`RoYGBxGnqrROpR)eep<}3klT~
z8znLd+YeigH%(jZQd#i#nMF&loTtV@(4F9>A;#L_t3zv@b}{l+y%TJIg1dx<`SSTv
zA;e?ZD%7jSm;=7HEk+O11{XT-DagDlhsN0?)Lzz$7*5hq_a1_h_NNo2dxEf=lWHZ0
zLQ5UBhxuTtH*PD{hh@@7mOVb|wr9m6Meo66u3CbF@BX|p$O&<T1Brmvb=2G??A|w2
z$p^GhJB$fw2I5!DmXBF3SAHkih{#%{!JYwyt?<2k(L(cCM3-m3b8-!KZ+nsL5hbbu
zPLru>)!y%(AX4}yY(}nF^Js?2IEduKM_X|s)6YUO+zfx0rhj%?*-gk|X>=_+h6-#W
z2Xb_iCy_6TT|jBfH^3nOi1Sk$G8V2TRMj9nJdmHxJWhiqiGWYWG(BV|M21}bhjSzD
zKw08TrUFg>5X;SVZnZKiVQoH(_|a@#`iexWl>0S7kWUMJWvOTB!CIO{$TSl=MJJ=x
z|7EX0Y!|mF-@Ynyy}g!K`(FqhDrG5T1nbh0fH}uq&&LHh+pL<eG#|}fMx*Sy0wl`_
zs_&|$zqnFm1>;S#sK`}{XbNFZ|LK<%T8A%M=SWjnmf5p&Un-0e3^eYHv+a)%;0=EG
z?=R?&HtWR`Q0b^Oz5fEDO3ZLS(tjJG%Rl?Q1^#O3+;Jzornd^;1016qk3VlSVxBIu
zHNhg^s(`qXqhdD8!i|K}sIX6`x)n{pBC|DGW4zX)Kz3iMavYyz`hvD+v*0+{evLc#
zrQ>ouPxi*%fNmm*)vk|jRSB<O7+3f6?O5lOirkmE6ZtRdCwA)~mStHlswyf}Q(l}L
zKg#i7wiwUe+8fY|Bq=O1&N!<y&F!m_4(>1Wvdj&w<+hj@iptY*RW!dJjFwSPR<}%n
zawv2-i5k;!E!|lEt&!WyC*v5-S2}<%xj140uMC|pdT!UEWi?h=!=hW#t@atY^dQJ{
zSaDlnYI#8?&vmOhFAF*};42qXXI0Mw$=puXb`m;9)@FD7(s%m(o}A-Y?pUF*h3b9P
z2F(Jkq^U|*&0L*F9+utq<`u3rM%oc~i>g$%Eg@^wGKHa|IkoC+n(^IbQ@NuBNsm&D
z6wVIqI$q6ztlCO-E%TO9)6Wzh90Moil)pf$-&@8%9^gg2MNYsw?97?}eN+FB2g<U@
zA|(9Z(DsjJYZK}(+QOXHt)?f}BmH~h8NYsC#AC8t&Lz!@z)?t!meo(zO5t;Bz$K>2
zr1ALCDZ?X5dm>&PXc>ufL3sg5#t{j>?ypi6YmWTXc&(;8>pFbqs6!?yACHa3voT(1
zhH_<AmQ8xf*vL#vo=Ksn;qt7AybxoaLL#iZiYn?jCX&H!`-Lb&)x*&&wvG#{X(ubA
za$d{1bRl@Ed^me3H>0;v#0#Rcs*NvX`@tDnvQIQg6&qOA3!;dpF-WTH;pQKSc{icS
zo;qc!NH5RoAJGc6&B+JqVwbdAo^B5pnCCV)(Nmb@#S|4+FqY6E^>Fv7PleC7YYq!L
zJFM~F!=HRt<W=l9eNarSz*CAhY@$^WSzTtn4t=SBrk$|$jUKPov*M*fpdPp?CWmei
z!@L!?a=M(_u151MclDIMSc>g;mH)Z^f7Moh-VQjZFBG0V5C1PWR?{8%S9;xoE3ilc
zd6@ZD1kQ`aUF=Wan~j+gQSJ6-e8=()gsX%tuc$0O;+%5JyI38pk&`8J&<|+7;?7-l
z{hldwT7P<mWoL+M(pMFt&9hsFt`r{2M!<?~<fkT#=QO*0yjh?a$m}1ILj1W%J|s;u
zmt{VAyNFHNW8{5DkCOti)F?cv%(h-Y<+}Oe^&`eCeDn?N0Vft6QKFbttnHL-UdtgR
zuSD0QpJpI)gnm-9V64wlAvZbEH^_3iTvLsfwzw5luF>X%P33IrMRI%}v3AG^%60;(
zux8ODEC<&#+|R!+QBn?~Ap5Y+;bObeb$5uNv1s6B;or)R|ItVPdiU<qDt`uQ$cq(L
zTyGrg31zW27KyY13NJMNSGAlPi;Q|J)K_loG+!og=OWxu1f8T1mju78E1Phk7h9zE
zD1BrG4<@LVr`3kao&4Hst={F)(ka8nct*rM_2gVSc2UQ{J4gybnmBedB<Jq@do&fR
zJ?G%$w8I@IKV?r*6g7Kaa^kVznKD=J$Vnn<k-UG><*DDeO;OQ)u7aajjva5^VZU>E
ze7S$QYs@q2@Ep<770}4Lyvcz-r{$je;<okLe(s!knPoo=ejqJi*!w8Jj6de0A=N!9
zk|C03l7iUL?{vD{%m_pzqL)RkyMk^-=MvZ%9*sJ^sQE8z=Z_uvb;J`eP*tAtTbaxY
z$G@nbKfdt$00c+L!$IIcJO^lkB}hf}JsR_$SL_amWixfuW7m(}K4tT=O9<epr(Hf?
z?4ns%t@WtceDGrKm>v@5<RP#jW9f6=#c8Ld$GUM=tQbqYEiJ?M&E(ClNc;KfIlSir
zbR(YJ+c=aavXT7fn@TvtGOxV^THc$4`x^FTUjEG*{|`L#SL^(YF7@M&E}h6n|Gu9^
zMK}4N;X)!5cyh|&!%hFXQ2u^0RR{;PR6^u<hcdqw$*cEtHrt=eHitX1rbbQsm_D`~
zB^245inzay=gv*}d70gGxBU6v|Cv^~(bGe_{LQyJf}ZF)zn=fKB>(<Re>^jW;*Cy6
z;~GNDoi7{psM2n^`|zu#C4zi;l7lq?DeL>0`X0m1aUK{rz(lo0RWs=*@Wn_n@1!bC
ztMg;sbz)M%n(x{bDN^I*P6c-P=6GdwY;i{PI&-j}0=dz@f7>H2Z|)rBakG{;>OVf^
z?EjCg{2#miU(YLhqCLn*VxYe))UGN#1U#lz`I`k-E-<b2d?ms9?xrqCin9bNhGL+B
z)B+hDx>q2+bn4yhdq4LFM60?Y=n1r>;q4)oO>b{1{*+lk2nC{9`|wmwnt{9yQa+#c
zS=$rPVmyE(bEx|hN0p>12Fkw)*1DgI-9i9*z=7Zg&iN(PfZJCsOOY%A407xPaAJ#}
zO23p>N1MG)m|A|mp%QE=wP}t;Tcu6pqBeB1q=jRn>XKt)${;Ev`9($($J9US9;_2E
z@%gsc|8YSiQiBl;jtOv1T6T~*mxGMum9IkpOck1zA(^dnt^%ap3a;v+v3*7ePpJYA
zs8YY00E)UmuijM!cQkKRQp#iDioqy83VO;l8Oi+Dn*1z#BP<`9LJoX>N%sBxpQoZ9
z4J6)3=GNxY+`J3hnX5eyduLvK_O)HHSSC4PAjJX&(_B;8Y4bmjd<J7Am^<r#Jo(R?
zqBHo(jEkYk=SNnBu=N%@u22Ll0z~&&hKHy{2A5}tLEVapeBS~&V_39TV3t%Xy{(l~
z=1dkqOYE(=J0XM0?vt?ATP0mxA`f%@k|(`}SP@wCZ`Bhiye_`c4kQWkHfT?SC-H)t
znlcEg$+N83e)>uCbY~yqeo?FXhHIfQ9-0S9P*B%+?`i@07M@EK^^)#C%jAE);{SZ?
zT}rKN1=8}A?b?HhSdq^Vb9#b1u|&wk<xdgFZ+i#{L6lLF&H8OL=C0m^9pGKETgGz5
z;o(X00OatR(=v8ID23=8mSs0$^*_``29hQ#_t%KmoC4nQI%lorJA2ER6+tw$u&afT
zpCuM1pSP@g?~v6s6`q>HKVV8w|L1G^wbT5|^WL&jsWW$ZV%YSp5W~cQzG({PvY&6#
z7f+N%uj2}Duc5l#8keTQnSX=b^l2rSAD{_{LrVa+RoX0wO@qeoUU#z7JkK-)ck>(|
zBpHqf{_O<@5|H(j<0|rfMPC8SmRIQPXl=LyLBMPbeGUTHUndxfde04jpnIs5+LaKq
z^X<k)%i6UsW0^9z#~v-ta{yo41lGkeka(MUTVfW96G~$F@G)B_RtpIK?i#DHH$B#^
zF>Jf5UHr;>_fn#6e|11f8wPS1#~Qu7z%b*4eGwtcDX!I7PLaxTya)Cu@L8+6&3u5%
zs}<=9w?zB^!K+KL?X!jyE=!*(ze$lyvNc{9f}btZfDf`yU*zf4*9y{6O9gjUQEd0u
zZB{1WUWfvgV#^wH^BACDC+E$!K<KEBvmvsU8IcdX08;hkA<oMP=&5qXPENbRJW8+<
zF^Bv-0f(pe9<o2FU4Ugt8~#>xc+BHvYuK(IiF9m?qaFhv==^mMIIuC8ol|-9)}4vU
zX{!xA)>vSc{nigGp8F3zivpz5Ir0ul{>wZy9-Hq?3`tQ%4QJgAS7#eSX0)>m>wF$=
z8}Qhs6@YCPgMCIoB+(T7sTByiM=F$btuDHndCTRAvDaE7P40dp1wM<<B8vWa33rZm
zLN4Ril{t@SnPQ?(BmY<P^Y@7gc5w=%WwqkdS?77YARI9&YlNy^pJfQ=6CM)&cG|Gp
z6tgOAPA{qmwxmITu*pF3=Gb8hI2V>F2OB)x=(~+1P?r!x3@qkgE?iH>P8Fa2bOyr(
zY8)hd0fgxu*--?}pk^!=>bbfFKa#}k!R>o7U`NwQ=DBD9v!DlemJ<50Fp~kFc`9_j
z%51nDtU*peFu!H9xCKLw*%PcSt(hKnBk|w>jU5mpZ%1|B+T12DG2%MwI8JnVFT@F(
zqInIdyPe)WZ%nalbwV|WKu(DKigiSf#&dqSK|rR|`Vp`${&@rAO4A7Q67FKVaDu9H
zh52aW4?A#t*fcBYhtjUfhLH;=z8cG-7F*V!=0FdDfk8!J`sfru2M26o1Y`K3H43yU
zAmDH78<xKEv~0XQIs(zv!eQU-!QT_yj;|KbIWoRFybz)A)x@@a?Ob)N1DX8*=uQoR
zc6dkEMy}APwGJWtMqrIDN4_L&{Fv^i!cH3W)#OJOEGdb*;g5fWtQVDl6O@BBBlxdV
z@PD6+|MrZrG~)gb3c6wKtO1OlEP!8gA>A0siTD&sP#VW+It9>5GbZ&yc?eP(CKb`o
z)fBJ(RWz0o<#-8X$p9X9SbZ1RrylWo1HIRbi-yF{kStl4#iB6o)5L4mw{HpFeX<59
znBtGFV_Yg>2?KXbM8>=maLw~61=*U<yYGkKGKbFrtERhQBh<4J`^eW&0fqu+w*lue
zp!qkamT~RQT(KCa?zaBe2dMc9OlQ#+_Y<R`xK9X_=Cv2k{i1GYV7^L*Umk{1>H$Ha
z&E93-$hn>EnFEjk*BO1C$A!5ro`&xZW$i%QH>9$|Or?V1vYMg%RL@}Yt}WAR036+r
zNY4C(xg7$<{w%bpBvFp)jcr9Y3GnT$aC)WWpL%znWNU#_Ts;~dGB`%!HH;PPYLs-<
zgddiiW*chUQ_8M5A2TFEw^I$I5Cz~h7s?1h;D^!d-^~&(byhh|dTr)-JQ~BJ<C0Mf
zCauWqThbzUTn)EsD7M%j9%nzz6^jF7`dI1;$|<CbSCU}Gt`++K*E#>sg6yFnLX3!O
z@WAgOE}MGVI0v#^KmryK_E@A%gKbL$fgz(0zYjZWpk>9Vn#wLX3E8#A!JYnOnWpI&
z^Bn;AV1sDvmkg(RXuiP#dkFgg0!!X+*w`<bG0RE<a}8MSWqh`!n2C5LJm+>8Tz-~x
zob{E<3Egrnc}O0N?c>+(ybMYo9J-oAfMiLn`Djbu2+-)8MhNU-7#vP#=fG*vv;FAX
z9w6`oTH|+Wfe&!@xU}d2TR52ZV63%UKcF5?OC={(1elg(6~V_sfRnm+KquR2Cy{K+
zmJ?umez1n?Xa;P1pEULXNz>ng5ta|Q%ItGD2~;<j#}~J6-@)~&1Uc8!qd~C;2-<*Z
zK`|!=??;j7@lGs}Yo7$NtY>R7^cf3F&lumDz8M9sM2B8}V8G#w{XobGqD<7~y(0ZC
zlK!ygKnQgs`z5FP4h$lRM=&Qe6Vr9(lQUZ2mZkH}G^>&y2V#Px;PSgV{l6ci-bY)i
z^<r+hBUi^L6l8!(i}esVo|yR|6OUKxgFR3=jsc1E3?@PBcLNnuYXZUH2o2PP7+(1E
zvWgHcesK^>Fnm!!1@7$S$Q#Xk$a>Je`<uW{Yd6m*5~4hd32aJ$96tBQAS3<^m*LRH
z|1d5cLL613<?{u>FEktsGSMS-Dd)?q03wDBr~GhpnpgjHk?toD?-VjLcT{UckU^6q
zglb=XeYeP?@`fK~G~{%0*~d;t%CkxE+J`+X=&B=xWVJOivSovFVW|W-$(OJ#!g<_|
zAm_lSqUo3}E0#}Bl&o5>5pj9ZcTfClM@tv|s7k!qByrZZkr_Ge6yf7nZ>_rvYgXca
z%+O(P&yb4W_bxq7U&k4`P@izYVpGd-EqrCabz#1%OJsR1V3j1@SJ{V$FHHTWo93@F
zl;pAZx+96!CY@#e^XuUPlNJ-JdXx8Gtm@S=@V^aFn>(H~j4d_^7f20<<hy3vQOk4O
zA901hk#P-a2T#0rRm*#6Z_%I+#_*UC9OulYDKyxT2|AT;R!+0ZTHE*DENrONozkwi
zO44;z^$>F2d51f9<Z@Hyx9a`hHc&)i7Wm}zez6RyrZuYi4wqE5dN5W|06XgE9?WxX
zNQv(yh&8aHATK+bbF;1z0oq>z*Kx}S`;C^BlXQ>x4O;`==rVzy5*2ep>>08{9Pzte
z1n;(E7<jBtVKVK1+P|_yZO~g!<}_iTIN|UAL`;O>wY$D6LLI)3I(s_TiuH0xUCh(8
zCARv|kvbe+=kB3V`*_Ls(6^Bv)EQFVlVT+li&qI&wT#4N6oP5r>K95T@9}vM_v}=k
zIS84!!X=TB(>8iaxfSQHhlJ?Ly-}3z-?Sg9xB!EQB-xxGrCoGVv8N8vT`nIhA?!-0
zv^{o3GV6zP0>c%53yf}Jzo{F>=5bzHt$cl^fs%2m=EnbNB|b5#^3}!hSoZ#yRgK|S
z`Km_QLvx;eQEScV2#kt~Jaz5Scy7pHxUpJ+9$8iXY++P^UPH4TK6B}9{p(jREyl~u
zD=aieYby%O3*yHd!bDuU9pf5WUCOO(o5)$~0hl<p_;wcZZAV`>i3MYZx}*UOmyYn*
z5C*FN&d3BVvv7<r|3B;iQLGXoMS%_Y$-BW-LIbaQjbRFGWHxCs$H-~OY^@{BM5|le
zaev^$3>v=)zph*NDThyX;c}`;-Jp?ufrS*O_+ato3BdV-8|a77*&d{3^+cEn%=@Db
z#`7w<e3c1g!q(r@Y;do+JliOe(%7s%mS1ldPv@1`x=l3i0e!sURzx!f<|k%XAHN}_
zja-loC*+7&!9K?`0o__y>Gy(?$CWJFmBD-dOv7Ik?(xnFM2yY3L#-Qi$9f<k!^d@8
zVQ7}nPY$(4gdg<p?Y~VZ#1M_nT#k=?-<QkSXB<Rl5$;3~U#Yq3C_7+QHeTPP`sS(e
z??zzaA=<;<{L$i?WoG@?A$7;>F!Ms)y7p*A3e!VvYaEu<tGygJFsD^;Pm?H}ScDuV
z0%UYEmsGpXBt(0KSqGB0(p&Y2J6F5UB;*gYQOaDiKu<Ssti-9oZl-E4d?;6RJulof
z`dLj?RaDukW>O?77hu8FUsgy4;S&wWU45=X-@9Qx`2Vk2@WP*b#)YtIS2E)e`ZnM7
za@e7hex~gM3d>h)(P{26th(+_RWu{fRfu-6^F0cu*ccrVATi2`1$oAwOR9=|2C&cz
zRwS9lnoMlq%unhcW;@5?U5o?df817`FBi-z+HY_R7{lzS`rcy*bh;3IVVU|$y#uz`
zbulye8ao$qEaBoYP>k@+L|G?okBu@a3DQ>3Da1>>j5O)o&;G>41l?i`1-h1^LBlj&
zRphcX_1?^8Xn<nr;j#x;4x0>OBP>E(EklLvS+1*6e``@83UT(bc?woee$3{J{2~p_
zw)GJ$i^KH?O2w0(F9p7?L=r`9;j@LxAv)GSKWJ$lpSIBF%T}y2Zb#R!>GWM}^+lf8
zRmhb^qH=!r<EpyINLov^Je$99LqJYO;^_;<?f3w8OGnw%xY}c-%a|&ZoOw;)cUf;u
zgu*38h_s?!co@{U<aE-L2{;r7D#36*KW{iqajt3;4Jma=!BomGYBNdTSK2QuEWTL~
z^dGR=fBX}mY|3jU``~gA8z|9Nf0y>yM(Z~{qC$s3K%P_&{i?RB0X<cg!#f4BaaTmQ
zc$piG*!U8k&@J-Q(Rjq#O2pHrxZ9aya24@c#OOLP;;EMJ15Uk82}o88KnP1Ea8D7F
zlb>SzoUSTbFn|K(i^@6l`;r?rC7sxCY4Kp*7t<)SI?o}Vu3<$3q&g@`9O(d*sFD-A
z0N@7fj|3ckD7&qFj!EC_E)U<djb33-v-0x#E}qd5c00MI9*=IYe@SS^@f5(iqXlwx
zFLO4&<-aT&<*5(Q<Cw10p#N~P6{BMfZ?O8C^p<!S_?Ez;6tm=u_7&y#8LzxTE5WOI
zix#Q&2)nB1jTO*OU-bQmc3X+2x+8h}*p1qKWEgjU5GS0@UrU-b0BRG3O$bp!gO3kN
zsaj=y`C1#6`R4F`lf3Auy`pWo%h;0A6TI9^P_TWb8%&qHC-}3tWrh%tuITr?wwWN`
zFQnXnmWt$)c`|en?Ho*8yUV0%eqJ@_Y9R<326TERAdGloC<x|>@TBiLZjAM90xjF>
zY>-%BToeNm5zebEV=%67c~PLVxQDjC9fphX5xU|A<V$io`kF6ofX`9`Y(2Bbr1Q=k
ze?uV*3W#l!-+4<1o_4q8J)J?R7`%Pro(n#k9_ePY#g}6m0@|w*9M{=q67uw{$4ijd
z6dS#nUW0Po#E;nq9$ExI52u4%3A)BNPe5!(7yVd%+#W~E@iQ}owkBi%l;sxcI<~%t
z065_8;&=er1H_S~HvLquRQ0}m`yq&bkpNCH5m|=UzT0ma%FqNUsz6K<Uvl|eWy|24
zZBf7REaNqA3D*>h61?}d`^-I?EgwC-7CVE0<MazYvN4sxv%zf({;zZ{l^Z3^b0;*{
zE;`DmA;e1`9<H!voA;<?zDW7!-+R-0KuXbp&FM5o>!K9-Wo|aOAb!YJHOtZEjnDmF
zx`TG(2n;gvk<ps}i1s4S*zp+l)#aHU_nD<O_sXU_m-#j{ZFK4=QfQ6IPc$B<SFSh?
z<pYmIYB<&ekOj=holBBou<c@!3r*m`+pa-dJzIb~TFB5CNM_S?v)|x`FG83=jr787
z3V3UcC7R&84Pep|m(p{DeK&|_6vRj#*PQ^5@)j*62L|Eehx*qiNmJJiM5Qnw{bXTm
z)=$1uL5bvr#Rr<?o&y1m`R{T5^Um`gA=?-$!%QDuMR@Kf0epcaf!hM00W}Q+G!<-r
zZ97pZhz<A(NFgdgZBj$+pVb46odg6cmq4yT^$@seIb_3%egZ$(imwRhd%c2-*Vlrp
z4qycXRkuAT${*asX3$55W(-c7<S2V05@O~ZdN}*}S`<F4$S^OX(?MacaINFh&?!V_
z(0E)lE<tXOIbsN4wcvn&Sl6QKllx3mKe<G6zY%!85+5XVojq_N;Wl4t2&-3D7}_nB
zuL1FP=a6qhjcDYw`5jR}?L@SwDp3rxbR7^rt}fn}(e1_`ht59!vgNSY3cXr{#Q59d
zf1V%CQgU7;(JOa5-m(OphjH@a3?>xrNj-hE=yteSExOtuKjd7uEQtegGLOJvQXfE<
zd$b)tDZ-Jf^jCw%BagHn&CIKJa{+@|$10YK%N(0Q5J_nGEauxi3%sWx$O*nGQ#MEH
zIeI<j4zuIv(9K1nQ{)8hsqI+l{2G(~H`>Cckp;RH?k(P#pFT9*kxB)Dg8g~=D*j|w
zb6O*%23L?#+%e5T0k&&ii!tVu2p?!1w3R7+)5lQN6HZsFc#^=yW(Q|{U;!LbIrn%F
zX%UBOQR;dn5b1sDJ%VpdvGny|*IW!JC!<!z(KGfSYppHpyDNXAL}*_+Q5-Z(ZX)zA
z@t|+kYkw6=Pd+>u-IGrP!UIJ<Zw>m3wD97}%u`JAH5lcS-L&rAy9BOf7NfaQo8`lb
zB6%Ue{i-!E_TjjptuLb4!8j;)9oxHG{NcsiB(T0xdGk{*NmDjQ#`q-xQ{5407N%`G
z$X1a<8qgcc6!{jA8_fcE#od0S`3Ivt46X_WBVQsrdQe2)Cb@0Z9Dy-lB-W2jdzy>6
zd<?h8i}XR}_9?KbrjuZ9`X2$*uuj1z0JtINX9Wz0jY9d`D<@479&fnnO6Q;cEE}j5
zc{oKwqYMz5bdiO_a1>kQQZ^u!icIc{0>EPR`i_(bu$tFVaF%I`I!1vdVJyGk;!kk%
znm5S^fgg|@QxJ-cfIPMbpVx!;Fs=)}^l8VsSvWOW$#Fb_bLzUB2{oEmiB2;7(NO<7
z4kLY@Y;8QONmp3kou<usZVcGbyL5wqY+$(c%{yQ&Vv7^#gBXg`BvKzEjZPH?os}+C
zG)|?PVibSg){DLC-;iFMJ_T+)<)>)!@myU{evvE9dRIp-Dyp`&<8%H>hUe_+dTyKC
z=iq3x1ae2e;~zsjo<XhQ$adwTo)=Iz;Qid^SD64#g^a>W@ShOs&`HpYr_kd>U56wF
z_lieXI?B2r(Pna`q)VlBXIl40sq(TF^xUNfO9UW`=5cx`zF|`QkC1MzR1ET+Y~Nh5
zML^JhenbT!EJIxh)Ow`YhO1v*gBJ5cxE`2oD`Z{f0b<yk067Bi&(UBM76}2NR9^#q
zG@~Z*H#{LI3=(1!z|UW{XvUgw`CJ$LxQ&z>qT%dm&BwR(E<kTcOm7Z9|A6wiA@Aht
zeQ%BMU3}dijC{TJK#1v^p!nmslRB)LtC??Swku4*{US`=K+s1NF|B!T<Y~jSRb8L&
z$22d1l~$eaM6(;qFrib^pwI7L5K0OnVh3~`zDX9&U%Bz*=r&t?FTmLVX_pVoeLVLv
zh<kg2C{q#o>w@R&I^V6y(j54%9%FXI9^5kGX}^&NZlL~`lG&Ida|qnp+3IXFoO%41
zFKEaaX0lg$d(N8w4gx9^BwuiBK9q4an{1rVw!Rgn^~TY>z!4-%yVrZBDU9aUj5%#Y
zor~{|Xpa7jDcR6_%~)Q{@i(UWgc#}EdRo|a08|fjUzk(?{4a<MU6`3hm{P9VBvQV7
zMtu<Tq+&(bKB%y(B(W=npo%yO&?(tZkOK%i=&b-eZ+SqnA7`4ZX^tczq<J=P4)<UP
zv7`V2^-m)zZ8EV0o}*5$Rz3M+zN3C$nNEpeQng1{czXStq%0~+hz;_IM<a95dvuKA
zJHNOeaFOsL5f@xj=hI!i7DPS+oW<dOS}1{qDm|s5OCH<vd*|4N9X<ZmHO7KMPhl*U
zpiYd$L|O<Fz3n0DQ(q6XaS$+cTP2)8#MPF@AZ}QbVM#8gBg@|fJAJpZoOkMgitFqW
z0EmR5{j`%nvb!1iT+vp{p)sWvzzKV(DnWbo>l=)30{we|@#8U0%uq4~u4O1G|B$Z)
z=EmC%;J!((%4TfwS6%}dNx`Ll9W1i)1(|Y~`wuGhA_ZPu0ckmH=qINiylj*{_{pXV
zwF9`76ou!Po-)<v2&=z6(qg8odjo_yh*NRi>Z#F=%Ux~!&!P8NtD6uby?>DIjiXsU
zG#3FI9%QjK(3e~Dr~O)T7Rh98q7LQ3q_pvoVV6q>OL1<E<WCHjapr>whWEcWQ<FcG
zCVrvuuXl}2K1azROQcpK$Maf~<I$1=b$zK+s`*yWSBscFh07bI{dIa{>*|u=Jtui^
zlZxUHl+88|lvRzc0F`M~3C{7DY!SBH`@#VxL%i1soG$d4i7Yfkjl-_@#yzyY$mz{=
z<k4aym06C+%*uq?$WGxqE<Q8`?1eq$LXZ~4vNJF_lp81TSgxP-b3AY1zh$W1PU^}q
zP%d=J&<N(IO6_AvGA3-o{)m+EjgdO>Uv-TQ3y86yxvK$;2F<#+3&#tz$9Lf~46-#y
zOe~9v{ca6GAMECM&4yZ|7EatQpQyxJj%0s=YtC#`^Len!UPr3`f-+MLv9gB%!z4@g
z?L&gnoP3dbQ8GYzdjeTxwPRJ;F+7~yWT38y@Z8CQ>cr76w$Wv`RKM1>grQy#Hi@%{
z*$M4OSMCmWi}Pao2nFojdJ(?Et}A+?_*n>8)7z+ZGGJbA{JJ&aU-oZ36rCu^902x!
z=QQ0)xe2z5x^Wj!^yTwL7>QRNAH_+@tL{j~&-hMm9`@M`aETv1m^>G;-1aN-1W0BJ
z&A!I(FmJA;8riqS10K_?#gpa4e>+A0YIc2G*XX&aT9rsg!Mzj>x}=xXe{P82v$0gu
zbu>1s=4#8mN1j~*De3YWpGlCneReWb+~Zgqhj?|6gyy5$I1A{5vu}aYB~s~;x?J*p
zkcAhhb#!0fD}*;*EVH#0NG<a`L3(M<UGA6Vu`JbK*NUZmw1#d~|1C~5{*rR6*Pj*-
z!{h5M?NvFocL)fV4$E~y2+Whbdr&OH@B`q_12<iOiXZ*yEW-IDt<kmJ3X`}7krGQc
zJLbiQ*b|XjGsYmW-F83wTU6q^+KIeAF|eh6xlzdyki0f^=@f#}3wS$9B^5oLj<vhT
zy<i}H_4IMmEliD*bctl79CSXHRb~`&XzJIyf{OvvI+4s(pBB7U6YWDmrA{CADzx#C
zPb_u*%DE##QK0M2eZr5GW1vF)iePHqh>F$qu-5fzRaqtZQ#Ov<r%24Ey*&i`RoAe8
zcKXO&<A8oVVycGcO2VUL8IO~$aAt$x#Jr(oVtQNXT`i~28?R~^!~oS-1#)b^@>e_@
zS_I)8iS!)!mr&5v;ncSb;oFnI98%)v`-i!f`Aqqg;7;%m-YL2S$f8CfbTP2dV@qGW
zWG<M9Q)eV+FilFurES_c;dBj=e6cB8i}8b?pQ+TA%x1gOfBynx82Xce;E{G19h}Az
zV9z`zy|LK|9i;Zbm!QV&cUJtqkQDH0O{l&KP*tO&fLqUIReSX;lCM7wz$mq=s$QZ!
z-2FAh2-89Xsn^BsX@gs*cqTV;>;d8=3+|t{f#?hXpHvDimOs^t))6S@B~U2r9rRc~
z<ZG`%e%CW-^TrM^N0Y#sx81M164B2G4}Kgp3dS8tzJt5@1h~vqhjw9FuV9NYDW(|Q
zXyMb=XVd8i0R$W#M|+mPgD^fTq|&fSMLErv>WUse?_zf@n;mk^4<k7MVuzv*@@z9~
zEa2~ZTXhL-dX&5Sc*#qM(R>o>=~>LsgT^wIwH+WHWZ|BL|3Jjg6^>aKSJ_7KYF(*x
zvdomkV2G2uJ<c*LC9YC;#{B~8!4=_)8P`%xjP3A?)EA_1LYw;50-;dOIqAx^b3m~!
zipZSHaiX)u(UX;T5|8Q|5hPVNg`T+umG>Q<58Kg?(X=#?aC+Smw)CC)hr;jXO)p*o
z{X3fFKqd1Ls0dp93v_CRSmJ!PK$s&gJr*OS2=-5oHBoE^R_{j}$S7?EV#}bT<{?F@
z+p5iT{5ios{}vlgX(jfC=<bP_%JXW)+o*>OxOcfd+5#@Ic6T`rEvsf%BJSy)%|~By
zF#nkuW6)qD91O!%B=<+^eC#zOAjXgU8kGs&-k_KyFbU{Ar8<ysJS%tMd&oEwc5**W
zp8+Js*jx{Sm;ex5ah~`Lgee<asjKSg(={wfI{AE}<V^98X#shGufZ@^n|?fZ0lE1*
zt8E|}G+uh9-P0#9z~K6F+lvHg6llUFN)nY2rC9PTpaF{!=xtcjuxTo3vlg;LfRy<D
z%nuT=)=c<Q;&j8aa`#g^^_ei*{JiXq2Fq^W4T$Nvz}uVc?C>*L;;f#JXP6}`U=R4o
zyU#pbVX-Pv5J1w>Y56)G9l2PB4RvS^aP-!_t2CN?R}PRCAp^372|g)+7hpKoIZ7-d
zN+(>U#RF<C<c76E0#dUb-H1Y^#2$(FEqN9*3@z2$uzkfk5caz#G0tR_GR(eXnYEEM
zU-bF+5!eQBq1y>~@W<IPh^<oLt$&t-bvE7@!Q4y)E$%BE#;Y$5cKsJQs4^~abu~{^
ztSdwb%ckakvcPnu=27x!>d8Gzmp666Qdi%qDhiCQVb&3*FO=i{CSD$jBS8yH7lUNX
z^~`r8#PjzJI0m;(XR`+4I6ErduF{A;?agG0&_VqM^$w-A#)aPwbfg>4NkPkXV5?d<
z^mm%`IMyA<$2}YAu_tD80fc~+)iv1pehgs>{(S7V+eWY-94(S;*Uf09N?IgSE(&0e
z)l*Y&=Z3-hKZbT>Cnl2eN}Y9Nl5C#Zo|k;Rp(ej_3A$x7dd7VR2@<N0Pi|n}YUl27
zK?Db^#?44SdF*=dhL<Rr=9x^kstgIAx8(I!it4~fd9B;L`KZ=Gc}36a^diC4PHH8c
zIw8!PdT0l95gascHE>H7fq~fo;U94OMuO>?q?#_i6@o}i7JAqBF84F3aWR4fOZK{Q
zaZVWpqPNwTVQykD!9~&=DzE5xKt4D982pL_w{EYSDG7>Y`%rKHvFG&BaY-7zn4Y3E
zs>Xv7x<htyws<4bk!xUCt9_#i#guSpzobRtk_ZOfG-6!1X}^6c!SGk&6^$RMe)CqB
z_55>OH3Z2#mhl$$ATY)0cy=bmF6HO8KX$&YXz0iAbM^N3RbsvK<E4rzyEAKH*vGvy
z`bI#{WB;vS!v6{Sb{bSIIDz0`LBqRY;r4@~4>N4%?9W%gudf6_M;$Iat>-xei<Axb
zZzlvFB4S-6>?Lv*<8H8hgj#0m3rRPHl+*ZQ9K@9@y!Z~*vU3NL0n^;`HCzgb4^X~V
zj^$+zf?d%wRpN2)?K|+LlSNA$dQzcVr~4?o6{3xux0qVTP`PW4TZ0%Cm8=?0O$0ac
z%Vuhn>JQ@hNxdL7Y=_3!Csa?C6ZcnP+j5mLiPYtnQx-)v`~Ie~g_KiY!V)8(APl3%
z6DSKL$M3N{u@$jrS(JnV1hZ>ZaxBJ}$klt<&Cedi6f@vUP5bUh&pyj(wN*Itu!w!)
z3F~)SR-xPQoJcMqq;u2Pjq>KwX1~h{Jb#3ac~v7P3p}Ms(<Gk2e2#p9DKS~3$z6zv
zRI50K;#lzymDqC74N4;Hhg)R>B37!wfhzYY=^|eHco~V}uFEfRsK^Si?YxrLV)vH&
zAx<}lg^2N?tHsh)P404}vx$4thKnu5C+rj9L){8+9&MxW`%iCdKAx1SmoHo-x@}84
zKnr^EEV=95ju#ByBM-Od=M}ilJUKN3$7$%A-=ti~`*E^&(eOmLW<C#<k*E89u_U_5
z{%N3k_riyrF_?g$8++_=k~&e0=5^qco5(w)zF@%o#1VkH-1+%Mv7@jmZ2=G|i66R@
zr;HYr+!XKoe3o#$P$O1wY?R5e?*c8#bA~t-R6R#%4>e#Hdp)y3w;G(buE{-54CtK}
zMY<d1;m7nWH8Fedia_Fc&7KHFS~0ftS&RchBz6wk#EUJY7;py`fk+y6numHbyX|t=
zGIRNjXX{J^=2NRZ4qd`ucqPL1CQiVMB1$g9ZnYI%*Pm!gSOC(4Xz3j(uV?o{&Tnpc
z8E_*kKA~7xX^8wH7vjwO=^ShmG;AySXWwJnH%vs+@^UD|na_Y%uEz07e8Qiwzwt%$
z8TYsj?k1)>*5cmR9|WX;iQj#O+I{cZC+)}&8c|tIu}HemkSt;d3uvo(Z_B1cQBV2I
zhj9*%z12<Tox+jreXN61S9-<7Hz4cOAz5&;5kwS~+C($5r8F}1><ADFIzh$?Z_T45
z*L=suwCK0K5}Dz>kE%4_82t59@!pIn4o9-cR!IjrU?R6`E&;n`k0ize-4Xz<?TiiI
z)mlWI2JA`XaNRW3lduwB%P^osLwmlP-|ezdL_ZH&dy38E{fQM<Q6O>5fDdraAcClP
zS7-*Jci!C|CuVy=xww4#0DiuR0H7$v{i^Np*pk=s89Y|vSNRi6-&mI~->wo-koyHA
zdw)=P@~-cL$Hj;ns6Y&H9>Sj5&g~hcD@G^Z5M{=~$lz-iugG`D{_YQh{`e^G)*1Hh
zACN4T_Xnl7rm5i4jJXs%_35O+qkshz_t88$-!*@y{3$SBIsciSkZS4tJqq!!bOXi#
zq>LS{h_vuTzM%*NH^{VI<+Ab$Cp3_A%3v?pHEs}CN22zdT9Jt(&NDgJLI_9hJ@vR|
z@HfSo7x6HZFPGL|L%D2@4VEC4y$%?8QtwXaj6lXkgm6^+l!PFu+jY@YAJK01zYMld
z-2Vwue@cPMY(&=rdOZo^j%T==Tt37w(&ZWdb$cu0BV!d&5`Q3Jt3Qdk5B0ti=6RdQ
zYaT|4D(>D{AI%G6-^;nbBIzA$oM2gLJ122jJt56-ut*5oX-(?K60yS!eTzR3Ey*p!
zYzV!L-WK1G>`(66xii#RB1g~_ybDa+Y#kl~R9t%UUr~d|c~{W*!m0@tJy8r;{7|H=
z5t1hTkmz8d1zMG+YI@AJWR))?-5{}oEb!1>V1V#ynf-b%cwSwrXQ%<AniX!S(Ebi<
zEXWqS#<k=N1^pap5m0Zz3GMGgRXXqSAn1maKHK1+1pXD&2s8?iY-Fzivpnm&=XmhR
z^L$l!Y*#h#lPM^oPeVml2@REmn%YA+WL6UfIvo9W5={*X{T)_yRnC5HjQuu)rrO~G
zF|!?oeuyG~LeOuL&zyFa%Dt88m!F6BTlM4?aG~y0mUwN{ajmQWvUvZ2Q7y+bA&j?l
zr57}h$k}%J-a)aAaD->*NGWk0<llVS>cMrzpbnAg0#)_AizOu&^_+HdpzI!{lu>#Q
z$)Vp0{dFufLvbo-{HZ7G&}Xf|L%%<aI-evgVb_6f=FNM|m5try9dhw(DZrw=@O~N|
zLzSX0hs_XtV@`*?pHWP?z21}EAe5JtZi;^uiw4Rj>N{F+`Rk(NAgyiL!cd&nSB#^Z
z?_00Ie!i1dY&Akf@;X^SIev#kPIyY9p?UvP^l@kCDs;<N^!mbn^^#piUVX-v8uByp
zu7VP(i-?V6exR+W_Ja)4jypz4=SMXA>5bLA;wiib7(a$J?0#ZH?27t(Uf9AVnXPBs
z-0u0NK|SO-*eaKj8^Mf{z<yLdIvFW_sO^_*SonH34GRo|&twvY0d;!X6psj;xl`oO
zF}_L}$$RJdwnyaIZh8D`392W`q$0z#%S=|pmir#qyhGyH^y6<a$+nWJ9u{VL$+Sbm
zkrQ@duo3?(m41UzlKXWIYdFSoKntBUpyI3bJ2Eo69GJiI%l*}E{ks&{dlCC#x%L}*
z4qwCe6Q}C1L#PW|vOAE2>Qs0VRel9E6pm7ub;ooVaCV$JH0mnX*xYX*Md}@N7Z&OB
zH#c<yn5c**xF9??CHezyqq-1&;P&v%q;?Vk%!lq!zu-0ml&qoi1-~lPNMdgXF?tDQ
z$qGadTnH31#~k;YMI~PAJ>x-$NDbl}o$+Q-D}t+@!5WQFI}owJ$4_HFKzD#_r$YH4
zek~T;Z^4XYAW1JV&TR7C-Zy>gfGtIl)7Oo0)tMB~rQk5igl6rj9lg#q2}JlyFZ^3Z
zb(NBHL;LoAP6k)VDvns!{?pj_&5audkQpppzYc<%UkD7^_s=$!eKv)Qn%QTMZ!TB+
zx3w6XX)^TQpKeNfHq&gMRV-qU;X}1hTqusg---cZhlExQsvC<B(+_HjYs-I&$WraF
z7^W;<Mj7=I|2J>$AJ}!IAQI}m25_*tr~4OY_&htVygZsdfBB2-Ol`(`ST2w*C=}Hp
z%#PEX;K2)g9&s*$%nCMok^cTe$`1mb6oCN>PC(a)5V2}!vVx3{*N$Mk1~qUVJ&_0p
zc4TfCFa9_T)TQJL`a}Mg!SphOKYC2;11AQxRlT0=Q>ly*uxKrn#Y`_}t7LRv2t3Sv
z%j<O!4h=_9iUVEK&LpRv9cwfJlbJr>c4776UBR;-8T$d;{Nvx%NJW-?L(YD8jm4g5
z`E^X%jhD(Bzw4=gc~JZnrzv9q;nZvoi^+9J>#ryD4z^WkyK_(J79c5sRw5g~qJq4y
zJF$+xiqkB%Ap`<oUd?KI^SlI11pvZ9cvg^I41{U+<Q32pIT&PvFbefmF#o7q2r#hl
zwjnEAoEd*A>BmlB#)^i}>q{^hzyM%-a@x|hWG()fVNTynk+U|YcYbu9HbXU%K}N+!
zot&lxfMRd828mvsWZ<5aUIDEte%Eus<1B@EE?Y5kA?q*u8bq$k@+coHl1n-Y_*NmX
zP@4o>Rz286Aj_JYfRTQ<vw~Qj8)glv4h0A)MifB3(uO<l`UmaJYI!1m1;Bv!gz~1#
z#C@|jy1$^hf2s?AJs!K|4JKJlfbx1<#D`D8)aU7OG%GCq?>_GZGLlaY;#ESxOd0TZ
zhe_%l84P9k$QE<hE=tg!39Q5#CGyJq`E>L;Q1J@cwj&%0!Qnu**Whm0SL?W8LNg}8
zOw23fu&9X*pUZ^BV%GFeh_QV#o@}Jin}jqn7rqB=b-yD&IeC4t?L+s2^jF<f#flvL
zM*XYRDk2B2QviX1;#bY4O9r(bgwync91OfH{WXb%we~U~e3Mr20<FuITXzumWhkp|
z?a8RBHkD1(Z_5x+h@5V>GL4^b5o32g@&+X&QA)QJNjD$Ux$Vfw-_7Qq?+8F~%`Hc|
zr?#EmjY1}R&3WFK_f^eJPaP_3ADRZS2x!N!7Ca~a6t5YCPZBpTaxkbn;|imI;u|70
z80?RYWlNG&K?ch|ABt|sRy7=o_-oJO-f0WcoRw0@mzh>%RjP0A%a^I^A1ju$m|hr+
zC}_c-mOg}x)Yk9ruI+wkcFO4(pWe>gFR)DrRT19Z)5Ro%SUL&K*ygAdm5f>q@l?zS
zEslWu46uf6`6ddh?2L1Tm69NA2#ktyCV$&mcDj<F4WQsXV^bV=&~AqfT?1LN<i@Xk
z+WW(k8)=BB=`|sXqwRT7{g`@&V6p%drcy*alvO@pj-5reJpvk5`jbe|t(Uu_0yjXN
zq8YiRj@9d80c_5ox&WE1CgsWHi{fQ)l|eTy^!-x;F=AdT2z`=+YIRQmh)Drl(Ix-@
z+1oYnj}Yyq385glWCR2h3WZ7sOlCSV#vC$C!RmC5t@|e%H<YqLaL{+WVK)mP9N4tn
zD5wf`?n84#peBOR2q|efqHPZt+eIZIP`4A=-BS^0siSXamnYs&xjM)yf7k8ch#wuQ
z>;R4kR+7y*n-=tb@i!WX>|Kxm)!{4i&6QzDl9`k@`5KYgr_|r=1XR&^{+`=FRUYWL
z_$kuD0SLHzcne#RWC5%Fr;>_+7x@8B{S4_{M~Q#GgFrF@kKkpSW9G1k=~R4F4`jFe
zTcyLwNqLgRRCyY3RI~t-%YNi)<ma3ivaFg-0Y`J9l<EcFrK}XsQr%Fp*KmLIioRpM
zK{ZxwL%6@!R_R#oc#}!!Ig4Jelfe3Y68;0-jc?AP+DY+Exhi=;F;?DWr^Z?p@3=lC
za;wPhu$Po~NUfk#fm+zAj?}Hvg5VSV;j5A9a!b>Vas`Tw+7_$AWd4Yb8drq(fuMAI
z`sK@fr(q|>@){?{(3b@&J$BJ7r2>6|0*bhPqSgtJ(m?F^a4fF~I)x9s1(w(hADh6~
zDPtdg<K}ZPqp29Y>?xN$gHjjJ0+&#S332Rc9RRXcIyv-i{tLms+@h(Z*e5^~r<-kG
z+bWEoRxc{+GA{AVk6{gP#9^-Ipu?8jz_T?5c)TC|SCD5q0SapKKL7|2649SPXHZ|C
zjphCNhsR?F(&ivVL@KlgKx($OMI1eWz-6pJo7aB{P}F5W8!!!CkvYK7a&WD%6&oHV
z@LKE91lNI+4!s}vBto{BcBa;REkOpn%_XUTL-qn$B+u1eOrr$35WRe?vhs7y>0<!r
zkj!CVXE#5<{t4FDn|ZJ6dbh4+urBP^xSpXxwjxT6eRm%z3MQfema3RZD|-CqaU`l1
zB4&twM|`QfWVvNu4xELSfXs9}PG4Gv?fb<N?@|v41~^&QZSpwZ?;OsM#&pI^=zmY^
zXp;{^us;Csz3&E=xsEO>MTA76h?h(>xI~egwHt+70!zzTpds&=^SbsBM}~peb<IZ4
z%RRJQ54R=3_3Vrpx_7FDRp34y_pnAlTKKLF$Ht{4J|0jEdwHxdDpyIqpzkD<t3Wje
zK~*dPZ&*y+TLBWI7i51Olf`ME0Jj$xy~Xu=7QnA1|L4Mg_E5P(%dtnZwn>dOaZ{vc
zRbHkuDq$q|B`%nRpeCDLO|x7=+i`J}t<oq6s^@p|cNWoKpT+9uJ65qk*51`r+Kf49
zH`sVP&YKmDoN*=WpF=k$%d*%Rg<bYut4sEG<Mp4@;%emCt4-!E%dwb_$|eZg%6AW&
zOlKzxp!1f-=Qym>3+shhkB^t}a4-0d_uVf0q6Jsm%y2bPAl&SxhS5kYq%Zg6KdtLa
z<g-_hEv|7LwbM>m_g@`hSl0FJa%y!-<BdK!sbE1`Llrt06!&}lKG3G08g@zJauEmc
zEL|{@a4lEmmo_3&8wrRtD}la*|10IY420>yW08z*J^-6~u?x>UVP^}h__*_g&`tmi
zv-OU9!Fb#2U*I&yxyiN$&OF~6x|0G76_Z#g9$?>7<O=K%Z5G-WL!q#SDre4R4vs8+
z6|W+2TqGmM^oZPT=4wqqm1nE{K}COe+B~lySZQVl>%*&j=3qD5Ef1^+96EBPC1}nP
zE-}1eJvXm86Q_uvJ&zAPe_-P~i0F5u5=9Q5v8FOv!mUE|$e`)3XNWV+0#ikrtM!*>
zBm#m>rA6kxi@F{Cd?xW@Saa`wXU#@S@P0T>${<$9;v{#1UzXlkUrqO+Ptz_q*ZYT&
zS2>IpXYPg&>^5&R#kTo=j%0b3O+2O^>FDzl_0wtck`|)G-UP`*#ej-p!?Cx!bQPCp
z`CaB`^C2pKz7AR8-^o$GwWx>(-W-&V7YfcHoAINqd1a4Y<`K=&h*OW8#&cUd$JKi|
zvo~ofdf$0fJ8abp9s+ib`t5nwITw_YktO}nk=K+|y@T<YbV;$rM@I`8RazD6+&@>t
z=APkc8b#i-JRy0ByJ4{RD4*V(_vOU6c)h5{4j6tW8@1#*!GD>juBwsyrTg0v#pd<b
zoTpWV{hTUWBI;3BxZYIQufos6<ycF+Z=nc;3CpMZw|mlsU{e(XC!<o6hv{_*cA@n7
z_)0R{mf!%rIY8rzpW-xeCR8<VX*M@<iwG65ZNwOOEVyd$$Y;#}uz%g>8EDksh<K0e
zE%$69pb`Y|!mF}q47)6Des@N+!qhL2yn_gmqQ@716|mDyvbl%U4!|QgEa=Rkk>&w6
zIclBLW_%XuId<wL7}H?CkhMERG$!bA=0L!axEBBm4`rtk5<*AdfMzZHa5Ow6AB1X#
z8!|EI+{3aaXjlqj$wul&B28B*NMyk92a0=*!7=E=@Kw@gzO4u>t7cBFsTL!ucl|pJ
zDMAKG25~m^sX}o(cQ@{i4=3p#@J^3E?PSuyJco~89~ODlxOLSZO)<@Lcb>K#`WJIr
zp}O(kfvy~o8+wonwJkdC143Ws0VI6e8-=_WTucG$+BCj!*WHW2EJY#Bb{0~lYVwtP
znjQP!(eSZ3$lc+qoO(>V5HLvYSP*}qrbi%s<LUc5{M#7|_56ugMT?(@@A0&h8c;MJ
z%AfbTAjaYds@Q=+ip_>rNtGg3Cr0#djejDPJ`F;$zZV!oBXX|8k3q_9w&~@nqIFGv
zx+e^r%=d?tL+kPie;0xOkYo5#eW&+qrrmIl)j0sx`d0e1QsIfqs?B7L<v$e~C3d*4
zn%#lF$(ZLE1=52BLl-WXu5pim^A^M>SR&wQ^}#N@!!*x)l=?5_%<{V@zzdcS<Yrss
z(I0!(d=!?`%V>W}fN1BWL9FdfTNQ)aTr}ZX5G~`(_I9<odVw9wGvIr*Qj?&EO7QBP
zZX7An5=i*M?ngJA;Nl-XMf&sYm%w10l&IbcEE&~q-`+{YOs-qg!9EO+oxw1wW9Sok
z#>taKv8hZ9p_#4EnFi8*WINuQsN@6vb$^*q^YY^hXO(pZMZKvuIE$Wk&{@*^XLx!#
zC~<l%ZEHrb`yfg}xdiyS-N*UP`J4jueq&dk&|bS@s($MDao&F!fSi!*7fnm`@T*DS
zPEPSJ-shJd3cRHcp1qZM%nZ_eOg&I}NXGLv=|apXDC6||bz%8Uwr@<AX~6f+!Q+7i
zZZ5up_OG|=e|Kw9VNHH?6EB_}bUR~MNc``wBc4&tMP6aiv_f`}kRoQ4t5A9Qk4EQT
zzXLDv$>`m=>)<;53@P;0AyGIIZLdb1lO^?i@83B_zq+75yMRa3-a08MK;hNCTEzs{
z;QqfX!ku@#?=BcbJQf2femsWNMhI^vNId^CxLXC890JA;6i^46f%JQc@qe|Uv%(1C
z0OKPmx9V2`gdk&i>TDT}KDS!z?Cc;Qfba;2ey6}*q8oqpd#nAu?ElzTKgfUY6w#je
zkT`nOWsRF})kj?Eu$+5sy{(s$TieeUD%yN=Y0>+}r)TJt-?^J&b8`v=a1}Nx;)6KJ
z<_{FUtXy|-ac&A)aKb0p;Y%;MR3gT9+eZi!kkJX*RA@fDWgy*(ak?Dqnu3I;e_<m|
zo#&=@+jg9`@H(pVAWvDYk{pnuflQ1R>F&XF%^FRe-Ok)SCLVb_?Gl=wi&{Sp(?69z
z)B2ixX2QvHW!+<!@*?u<b6U@ok`h~{&YoSkJ?`WcVS7kzWiw1iTle|ec3#P)ICV5J
zapg&M|J;E`&kEkj*|<7OS<7`Tr0upn%cmq`^Kk)=)$=a};?Jcd;o@C(^KZLnE4Fw!
zcvi+g3-ld(I2UbK+Apg%7V3|%mWQ#HpL|!FrLXQ)!auvx@?TlA-%vvv;N_*?Bp$o=
z56OePc|9Uh2ek|r|8YFV#5VbIRbN|WJxpu<Ydf82))j1jYQ3XUY56LzEn?n6(aDL6
zo*wn#+Z#y#_DKmpcI;+C*XyCNLR|~s>uk=XXJlhbak$J50^?t&00c#RThUMCZYDD$
zV+puTg<m$UM6+n;7Z*RiU*&VYu%IG&nVXkKVXk@|A5T2*1f~<qeOARhOhdYfjP>Nk
z|M(OugEYxXxZ6^uKMmBA#d55%w)Wx$=(RVR|6g5K8q`#>g%uyg3;`L3O%OqAN)(V~
zh#(>uH$;?0G!Rw+B>~yPDi9JDMNkoESV90nK#;}Ao<I^1jfw^&?1T^qPR2wC1Q9|Y
zVR?7vy;qhG=Kks*_g3{iefm46yUzK(ovL44oU=oTo{z7!gN#v~(kj*K<G=W=aoU`{
zIAa^j$g&p`t>HL@YE=7?DT&U>`WWwbOY0mETT{^3`2lQtBBWJt{9dxrJ&&-82R^Kn
z^;3bA@GhmgN(q<T(PI(A`g2%Wi?}g}MNbf&4MoBg1ID6!4Em#3<ZO0y1X?RZ^zdZf
ztou(ORXyCMi-a`=vjR!hiUg0`j&p;RkTI`jDPNyn-&ibrMT%rKTthYqCckp^x)L@F
zLnmzLjs7KCFz|-ji=w2Dj*w87jYQBxr`Q2JED5OkOti%xUnEQReUkFxxtIkc%>O)1
z{k1VcSL73uxg6it7t5Bpf7PEC4`X2?Hks@{7WCFlvbNT;ACh2Pyu7?ZfsS%Xt-!^}
z2@Yt`rM;bKK~iP>cFM^u2NlS2QTYu(C%T@20s7iVfNEtGMwcV#Oaa(g-6J9zb?TZ*
zN?y`SX8VYt>=1y}eQ|9$WwT>+L$|~6tZ6BQoLvhb)tTjss@|2)aJ0wA1jg2c34VPz
z)}*0R+AB3EKh7CgDodqiJw5nmn4^cUl|h(sc9>SiZlp*<!$t(F^F?{Qg2zEs-iLX?
z$DpP?-AJE_OAxwrk?y2pQiUu-j{mMObcJ3dOnO3OMO68trG3#ONVZ?St^7`j<TlT7
zxK9HseI&c?d9S8Gk!e-BzK~^w)|9@lJ5W(%gLaK*SY1e6mp$jCeI=t$OhuKj^9sUz
zT>Jgxh8%H57|Ftc=y5!eju)oSLMZG>C6;h?USu8`QiL%?{3|FmhPvxJ7yah3Hw!zO
z<Qey6E)a-BiGFX)3}e2<FP+(xK)OrFHAk<u0JLcO0RydsD+=zp*79lxnZq7q1vQ6y
z!4L?ftn)S8Vp~&H)%%_zJHL!xk}_ol;AN3WZp258!}z6J>_)KDWT*id@c<MJ{i&Q*
zoLSr$M8vkX#~w-pXI~c_Pn$jyJD2s=W>%&L^{HU7?d)2UaxCSR#NYmd<*yMW7^;x4
zkFHUBI4e_Kq>6nB9^|*z*1Cmwk!NzBx`mwMr_qU#r&`$)md}FO>4vKjm6^%boKuz4
z3xQZ0=;)C%H&zKIh2rZjF_n~PQPJE+-|emvn$`w-Dz2&MCe_Qq;|rfHNH&73e|3++
z6bw4>f5#Q+Gv0I(qeK=2PaIf?rZQ|rU#_Oaz~OLIT+gm=mi&HH@l)P%xP{f7;_A4t
zuwEvUIRmf?43Ccox3(&dDr*w8;muI*CwG&<oR|6YNb#YKmWCSx+E<*rA3WH}pPH%%
zzR)2D@|P|FSBtyt*O0!xuSp~lieTqdIhP`%pe_8kHS*BRs^lKh!mDgE#kA7N^Kd4m
zA59mC<i%o2VGstY1uxf#UK84JuLg8Lo*Rc(>o0aiv#+5!ggpxG7;LLtRz7U|Z!|(x
z8F$o0RGJVypRcfc2*uBZu1J8F{4%lKCuzMZwXjQn+~FDA)>d7_ts|6@cMbK1lfeNa
z>2E7vOP23yt)rMn=8NxegdaTucZwXxp=)5t?RlTI`EB%Nl#k~;$;i3$U~`Sb4{wKJ
z5x4+P+*-@I??LpNHS-P|1@ADW7egSi<qokxi{bB;JfI_9^U+3L7J$XTVVt+B@B^(^
z%{bWJ#9B9}p}+q!+vD=(KXzDf5<nnOSyy{|`{zQ%&7kA0Et{?KiM+4t7QV{UzpBKi
zfJac=m`0H4KjY@6VI;XM_;Y&iySz|()TsKNT2{kRXZ?t={7fd<x}Tgy$?Y@56(3FK
z!~{;SQVd(S_0`WuF4=u3J4sLF=>-kl%R#rB5}k;Gi>LnS*G_tygSttEqx;7`eg0gj
zV+Q1WInJJ*vtW1Kx~~8o=P-lePo+{bQHJSfUzvumK96PVUl}zihPt`AJ*%#!#l!=O
z#`xyuA({B<(@DiX$D`oGgQP>717L@(N?!5dhGdEcUv2kSS5tDF1Wza(Y;WU4tJ$b9
z8x6n}4JT8h8*k;1%{^nv#bwr*%3=`1w&id^2@1d|dJQU<wp>}por)CI95T4e4UF1e
zK$^P<;<>XY>uy{OmEAJx{ymWaJMUrXAQffh*z3~10%mhp_PlX6g<_$nr`P!Ap6b{~
z>YZ7D<grA@JcLpAQmLs5-%SV5BtA|3saYR^FDrOfQ`0C7Qeglb8#92ctFwnk(0($v
zrArD4NV@7E9;<JLw!C9f^ZKuwrvW9mV*<jD3hq%DW~2$z)WRZ1To}-LW7IX`bWWSd
zhVuj+02<4v89*M*<T~}4vdjl84i<zila7UuBQt(<M@cTMZvkTeHL#JLG{Un3@ebj7
z>5{kjX-5~Ai@-oD?1DX?Cw2px?tfj4m)hpVL1?M2?(TfAp>)NAECs14JfVm?4wUxN
zNMv#_P>_@R$@mo1+4&qbH8phxD8(Kg8{0F4Ox_}3sU&qLzQ5TEzxlS;FY@r-#42$&
z8aLu&n|G%3=A&dY&cYiB@<E5gfnGM`H>;(mZaYL)Tl!wol#Wq-=is6TJM*ejG>|%-
zdzmj0%@M(VJ&e`}-b{+Zi8>(XU0GtWJOcgw)5N;JP=Oo0wI~=2>)94(5)j{?E_DRZ
zdFG~=48b5OazIqx=jf@|$OF6<Us`$^tF(E$Z8?+wt=%$2F%R%58bXb>vcS_v<HcDA
z9a0f55@K6i8W9<{X9@wu9?+0O)F7j}T9*ymUIHBGn*S2h(rT6`Ntr31Cjsi}#R&^l
z+U1J>?2MbY24LlG^(0r~0g|!1c9zXXGJw3AagLUjmM0P~tC?K9aG`YRVel1BU_d}=
z+@owP)_O!J6rPAj1P0bbMMsOpB$7EsWAEN(pgzQwc>!2X{_x=7pN+A){t-YaV)Rsh
px&I0K|IZP>!P}N2?<LTx%>Gk$68iZ;^=-goV`YE#`DyRue*@@H?708{

literal 0
HcmV?d00001

diff --git a/docs/codeql/images/codeql-for-visual-studio-code/basic-ruby-query-results-1.png b/docs/codeql/images/codeql-for-visual-studio-code/basic-ruby-query-results-1.png
new file mode 100644
index 0000000000000000000000000000000000000000..13d5e137bafb6e9357ed17a2e002d5c512e6891c
GIT binary patch
literal 231511
zcmb@u1yEegwl<6f3$BB^1^3|YE<u7raF^ij?gaM`+=9DXa0qU}g1h^-^PX4lf9lpf
zr+%u2*)_9gPw(zts~=fCVT$q+i14`ZU|?W~Qj(&|U|{e}U|<l0u+YFOM2X+6fEVh_
zMMM;(L_~-c9c)d^t&G9IB*T)DVN??q(0or`3OOOj14$_^DJ7|V6DJ_4+rp(KAp+41
ziHr1;`!Ka%lagwv>Aw^0dPnnBO|+UA0$yX{m8R<VkJVsrKHWfu{5a-0X}kC-aI<`p
zJ(8K~F`k)m2c9$0WN80}4p}gbS_N%mb1X7E+F&CK0&N0JR38aeTQ@j`00RRIB{lVh
z!H5qmE#o9b?*9H}?WL6Z^c4;-SPpUE<{eHeTc85jCc6UN5ER(Eu-%Wzrr}g~xZO^0
z@x<L;2^nuk$rA7d`phm9<upQJy5E5P7}BmFM+N&zm}hEohK4HeK_QS{)H4^>V2hyf
zb3wrcs`v&3S+98H>1Q9cM;C9jm!GV<KNE)K63;Gmzd)VPjGz=cs6S^9oOMvpzvD*l
z0mIoM53_}3VU1;NNsd2eG*Wu(?!>`5FFY)KE47cu-_wc^lY;Zpk?+aaQUx1&#Lj;r
zo$MlE2rk_~C|G?LL1s$iLp2&X;UUgXX_HN9m2TsEa&U>C0z5Qy4#72nsIN`ml2Ls3
zne7+(k}N6m;qJ94|8b3do3V$&@U2aUaI}@RiE>J%)yeY0<15nZvhhf2O&d?Y!nrcJ
z#u43&J%$JhdBpgI*UDZW?jy?-7Zzo=gvTln<1-Cd<`~U_{iseMzz2Jv);r<n$$B85
zAY*AXnB64&B${0dL{m}{hdz+Kqttg0<-KT<rF~6H3r1<_d@tSlI<-VB)ZSYyIr=+_
zB|>omK~3{5DH!fKn4%j~>GTpZ7(2G_y-Aj8JbQUM9hI-pGhC4`lByr&#4GVmgrQNS
zx8R)QMgl0X-GXcy5U#{<pTXfYkktIHh><aTkMyyrU%?2zdJ7R9kdOnO@hZ9VogKQ9
zugxjSWdO-3TBI*C6SxoxQl222B<7U=C5g%)yrB?7EH(yMkl>^uej;obF-<M}A}pq0
zkRpu}N{PRB(3oIy&VeG86A`X&aBjl{73fuh0e2ZVUgw2A)=2QvI+H7N1}tMh&APTL
ztu{n*&%h7&TQpDf<KTz&<Wp++97$?uX*}a#!(3iPzao$-gtY(rfNv6*`QMb-izroT
z_mN77uHdgwqr|2sWNUF2;f^AZBrYa~CoCtlCJJ`RcHNy`-y^w$@%cZ8=jwlF{sNLf
zfI$zE>ZKdlG6-i5VfvUtn_@G9VuBFS$5Iun;ZerOftwyV+GW#q+%s#)Xvk9?Ft3D<
zR2a_M$F&JzudPkVfZPD%g5Ux^7lhaC)tPYm-j%kMlOLL~+qM&XGiGCav*mRB6dlUV
zpT8>(Me+x_8d^Q-8#uYZr9hHyC?!8LNhiu+)P%5uFp6H>4NOC#GlDSDDH5(&e<|T9
zZe_SVs6AYB-^;i%Ne&W^Sfe53bG37WbFp);a~}90LqYreUPTrfEt+?U!-)fl$PR2=
zj$G0BdN$?SsoHJY$;*~+{7MvzRgx8Jiu=B+d|&#meh%dZ>4xl9@rZlJa>sh!cAgK<
z_DUv5Fo-RP9$o^of|ggkmj;*Go#q_V5t9~!krru6kxeHJCQ4#Svh=e~F5+ahlL&W6
zmMmiqQDMWhL?T9#RU&Dk8g&v)rpmr)4hR|ni7cr)%07Ow=k{}1?uZ%|wXIr((y=n3
zdTRd07gEI`_2PGXYImQ%sa`3|DXru#=G;pnmYd{ZmDOuocPwJosXOjEX8b(;xi!wk
zwd2QKW|K#lmzA%ZyZVK{B)51ypJaAE-(GVwiBe=*j#aZp@}l);6_(tvm`u^T&mV;j
zUa5o)nS5c9NueJ>wf<<WXI*?PbmV*lM<9}Emx;(-#~tGo)=akowL-dLvVzJ--}cJA
z^s?lNa2Nej^Iqz{<x1;n01*L^6p;gm4aCc-%De?K!BfM##!-sYj{1a?gtx-pk6RO|
z5_yB;lF~_8Pbo!dOxYl3pu(e)yT?C0)|AqO<S6DiymOrvH#%>kX)<F1`4iy+>;my8
z;?K&Rz0ru&1|!{r)=I2;tYWMrEM$62`X@S04GzurI+p4U%_Pm0x-S|YT9tJ+wcbWX
z7GzZmwvOYUOj<gf6Rc~Fuz5Uq!gQims@k%=GM;oFbg?oqdl$Q#fBM?nxo8~N&93L?
zXBvIklp5&B7|Br1i00<YwtcI|)Zy@)QxnZPcbDVX@p_tKY}+*1Tisf{!m{ZAol}Ri
zeTk&O)XK=2<pK0i*Ampy+cxI4+%suZHz1~vSQum4ZrYNZr{1VuJZEG}a3XqQae_*u
zm5rYr(GJq{StDp~!$(AlQR%}utGUrSn%hvgM!sUa@<G!_BZf1355{<^RpltOCj1nX
z7li0X9E;w_da4v_F!42K&A+-!sLQxZL4;03EvPnlN;o-~5Ru@uBk~f~HPbS+Hts6E
zP*iACQ8*~(GLkOxFeVMVj(gvv_I)i=Gcz<cI;tbJiBsHMo=!xtp|#P4p$8TogKqWh
zJz5<_vCJ5K0mC)}A7)5cL?jRHO)B0X{Z4eh<Hk*Y%qg#HiyPye%_He^Ri~yRwd<!J
z8Hy>Vypvq^rW<zgmdf^1w7DTws<)I2oOgofuG0G7))Q@u<BIFdZ)+QCSxLo|!iy+$
zSiQvD3+GicsE+l1Hd@VnMGfoNQiM*dew)vn5X~lGtxUFuJmp81T=umLd6?`|_WRr_
z;o3awf}wAtwAscUrZ4dUW9!>&l~cNP-ZPyR*ZTpMIqYYaX><D(qdGjbW2P%{SG`v>
z2e#H#^NNk@PyK^Ya!t5R2M#bkr+2yB3JePIb1g&W(|$yg0`NXoYgTP;<3B6!9v|^u
zVZG{mmECY!zkEA%UKpR<ZY?*z*gk5r^n5gbly}6(qwRuEqe?x(fWO?NZ|a3wL*23a
zR8i1UfxU!5G%vSIzp|o-ra09oVLN`!mo1YZ-7>s9Y;jX^veN3}N#vt9=iTtc4#S3o
zfq#2hbGqXJ<ApSvjF*V5u21{*O_rLtYW;KfeZhY0Vy?f49#RC-4G|pIl(MnjyN{|*
zyY&{0@89!z(p_r|*pF{Uv74~NSmM;ZqUwa(3&ZZ{e_C{$diiicGh3WCeP4JpJGp;;
zkb9qWMTRJa_!Ko6m1+7o#>UCTKJ#SqytH1kXgWMbley%a<;s8a*zkG*TbwbRvAsFb
z)x65h{Gw-ADfy%xs-afzti$1`<Ys2L{BZX5Tt;PP+p+7@2;yv1aJn<+!IIU|zRkjF
ziDiRjWrwv-OLb3fezBwX&K<*Cg^UaDiFVs?lShq*fs3hv>v-Gh{OYsEqsRD3;i}IC
z@j+K_&quG6_D6~Hm~f&}0fv{A+nYu2mS;!EEJ$kw;cQ;~EyVUmvdx%rktPKig@|l(
zzEXFatH;Bt8@quBF~(rsa6S3fZx1T#<875uy4laeN0s$)MRB>D@tkX`Hg1LY$EP0Y
zH>3GN`7r}i{gnL|0!7|$&*QGDuT-`QP0@!1Hu;l1nV+XFXI?DV8ftCVdbQzPN-zaU
zAmt^&ejFKqQBQ(RaDx#uq#YL*LZv+;rI4OxyEdO>q49vdaR-MT1}FZ31?C|g_X+Dv
zA?g)zX!vd>n3Xj>9_!PIY9&9-`9LgVJh#hmm2dkR`>dbOpcB!H&gx4>*JpLS)A2h!
z7Z2F3FX;<50FJdX){ruhlLLDL9K(V^f#ZU`0*=6e2R}I8pU2|h)L@Xmy$%5e7Ge$t
z_4_&U!1J%aSm5#NGyi&q$btCd40xs-$UlxD2!A^@*X{s#hO?8@bOZy#qWJXymr^D_
z1p^ZVlM)qDbp=1ngz+U8TL`u^xe1k46ci$t8q;);hwldW-^vLU1s75rq87r4^AuIe
z`+$)Y=}RsJ(ajhd8Y&%~hrc}bc=cUV<Yal|`0&_jBkRPb-lMs+q%`|Db+5$z;6Yl3
zu}zlU3@z3dikui6PEru!|9+Sw2W66G{)K7HNG33~e*~>RaUf8+3IC1GAZDq7tf^^{
zT1oEm7bDHc|NPQGGm22DlcWuVAJvQ1L}=i#Wt6HlgzGiJPNapvjiM51|L@KG>y~Ph
z1Wk)sBXL;85*a^<d}kJaWklihjy4wqGcwbfFFr`>uT%f;9pNXL)7!CY&deaJuC9(j
zFJ2izV7yAnY_zjv+d)tLXOG6hMiRYLkpJrBNDzdIJl9NUaRg@EKf0Ztm}w`&@iV6a
z-_>^*Je`Dpy@>%kU#a4|Uh-!zrbNQY@?G_wwM&P-P&x%MXHKpeQUt;!!P$F#Q#?w`
zf$1N*eLnq8@t=;TAVh#LaZp4wMY7?pSt}#uO~fRDQIjfC5=gjtxr<QlKbRVSb!2U-
zAcg2UDN7%SC(Uk3sVOCTV&=-b$mty>Q+;Yf-+$BPC~&Izc>U)uy%96iy1leUiOl`h
z1n4(XQvY2869gl%2)Ly)bCtvL`fk6Vy^!e9eM}T#562ze{z?d1f?NLjABP5T|D6wp
zo_#(^(&~?RZ47Gp`qg9=i6{)8HlC$-F%thA%l{<q%sBljEY!nsbV?{)BBdrk&CRDh
zZ<W5!A49&+`fo0nzzHra8M6mMC+R(%+^$gED+#nvUk2&0I*V0C5@cou$7Z$KqK@nS
z=iNHt4G|c7yq|{hx}yJdGBX!r4P7{`YASQv0fAmesdL`@@Dufam~4O^O=*QowCe(u
zE0_1q^(sy&b%W-VSe%1PAo_<MpwABfoB1x3gBuiHpv;x{a#JFX9XSKyPP+-kE)_zK
z4Cq>6`7f@BMy&6I!6F~p-S=Tz84VbB^?v2YIU15b^T2-+loK`(+YS<;+<g<1sN3N)
z4ruhj4ws#SetA{Z%m3}5qZOf0HnYNG=f_slx*KFDW}*mF1b>Q#?;pEW0MEY({ck3c
zHI-sXqOh?ryK0`RJ&^dR-wC6!pb0nAwlfDhEyZc&{5KbE)R0}zBZF^cc24A`WZ>!l
zOb-ugllX5U(TvAWx&W<5LS2MCI7)m_gT&d1y6@_?veW{0uO7WY@V^-w;kx&T1<Ewx
zAemh(s^FM@7^AtsiAg1nz}o+=3y-K!3L<u~M7Y91B6S$tn!Ptlb0A8mk9&UAPlNPI
z|9J=!gTt!ky{~>Bh6KtV=p)yCT+_S$crNk#n(}{N-hK<yBhpx52^ZPRE{!Poez+uQ
z>H)>60%@+`B+5Le%fb1I0L|$CZHRL!q57j&$gOH8#l1#nmG2KKJ4m$c`!MMX*yH}~
z=L9|ARKw5-#KM&-BoX!$_roI`xSZa#2unyvP@^k1w}sTQ{cnRNXbFYF7)`*#(fV-Q
zLT{X6QBthjtTt_1I~h#VM%w@BG)?l~b!cr8m@bw`0mhrm8FE$G_58C|jqvz>YTd&(
z?=YC^lN$dwd>}Xs#WAlRz+})JShZx+(vZ0Gc;OR2byPREN~33++8@P3W>wX7?{092
znE3GT@=7N$N+-Bc9XAQL9$kpErwC{d<;A7<20fGY6DAW9giA!?KcK?@DGp?>q27=b
zgQ(nfB6B~(QOjwV3rmxku?1d!@QHx^eTimbfg52NrZZ^X`*Ps2t?PZaefl%q_L}F#
z?!)6{p#XvRX#i1RMMZ^OCpb)?&(nb(WJSMv$Ndb`%i~4JPPPw!hSQW3B*QpFaE$Mq
z!|lAshkuNW{uUaj_z6ZumRZd8r0qr=s&Q;=tm<c)WxrpZvg`Q}RnOY<b%Ri)Ixw`{
zgoJ7mU!!nXDcu~)DI18$n!e0h7r~abT`&4QB#*;oWB(I^fZqB=E5o4mo6TId>d;?Q
zq<xMIj3=Cd=r1nJ;+}w;(6fg?R0%}gBHD}EbwYgY^CjE+{<5NDN0<8ByMHyZGnBll
zCz>a?ZdS8p?IVxla--eR%-rQ~H-8r6ga1j#dBJISGn$9t5QKy9z5TkbGAPwFi|g@W
z?M1Egtzt?~hEG-HcA|<rPS5ob*4W$4NPgt6<<0vgx!MdN008t#p>cElXNNeDF)808
zgDN$QqS(86FGkQo9)fhC)W?}Ft8k3%w}!5llM+2O<NQ2y$sx`3&AWMf^O`9$$Kk~B
z+6F<G-J}t8XkXGSO1_J4fs&*tB8dd};ku5S4=M<k(v1e95s995C3=7WBdlmSZgy5@
zPLjAQEw6u{Vp-8-F&9Q4OS%1??{Y$99ogqrq}e$@*-uGhciC~AKuyy)=?i<|I9&Bw
z_RHhW>GhH=ryS>dXS(*=jp7p45vHCZbfz($lh$?MZPVLvpXX_+<!M<~xfJXAh3;tu
zft5l}%1?irqk^<hh8J(^str%g*dmynowS`$rE!TOlN6)TL&Y<FQO8Bot?SKGY}@ZF
z5P#gP`3SgCHv>K0v*NP0LY5BnGL2R18KuElAGS=?bVdpbq1)D^9S~2!>Uv)6wiWb4
z4Qt*HGpjq8xNEj;S89j8t~7}A*WbbIPrKIOrsa98#}@6R_>cr1LxUg8h$}jt-PbpX
zUR)cVDqGK`8=vp-(y|_$m#p!ybY0hLUz!iRXXq<!e-A6Nq|V!${*agFosOr9)xaBx
zYlIhZs-IRb;;PFWs!;M=+ljYjP2L)YVH6OCQdu%u)k*5QTp5mITzd<i!}JXZ$O4ac
zv<tFi{{%TX^ibl$FI|Qa^jN2h!DiKFtuKQT{PDWkcO$0pOvm+0Hnfy?ie=+mI~m|-
zB<M@~QP!~3$=VJ>-&Y?;ZM~;eF*qI$YYOf0M1uniXv=GrZx2lcma5DGGvBrf1~zYm
z(+0~hG?By6;8A9caIi2te@Qj5aGyO)r-c^=dhP1;rsIY0SK^hMj=m;XCdyzmR6pL1
z`w)t~H*GKkHU0A3Q0M)QKReX@;<kXaKhEi0dBmUj`PL3auxS3>9(;iX0>KKZ-kBGd
z6n1HD%`)nZ97qR39LjUas^*GZJ!B!$afDeyu&CjO|Lfq3aRGtR{ZfU&fQO0}?~n2F
zP*Y0%UxyjcKk2#`+x<*64H_WyDAT$w{*uPcv{Vx3b!bE+6IC<r?R<CI{hE>TL_CU@
zY>fM$3=!`%>KmO+zRkl?gDtnXy@zgLb#GH;?Ns>LJe2~={A01gXx9GN8T;>%ZAM}z
z{V2D|&V`de0ZSqmS{#7HZRWuJar`3`N+Zy+DSgNQo5E~w_j#|I6^|?BXqPC*aXwDB
zxyGwmt)9&o0e*<F-Z%eTClk>9){g}=Oj3>GZ>d;K9X2|iuPRUb@ob?;Y1U)GVgf;=
z?F!!K2~zmU(=pfE!msHQDSM31D0gBKV0Ft_z5T(WpIZ4}?#5wS+Yqm|I4KX;cS-QZ
zXwE;9l7fF6iK}$&=t1HMj9_ek+xmDu%oQ;#={pqNH?a$=x}MZm`j%wDrsb$x3|r?i
z_tLPb6XNyf2ke+kGP%ys9kJdBSX5MUQbW(16&H_I+dG?Y8)BlViMf9#So%z`PSIif
zSoyxy?~BE=BV6?&eT>qpl}mbiqViCt*x<jq#z9ZD-K=6CH|=Dd#`rvv1$~(JycmV3
zxj-SA(jdLmnf#gI7`-cHGFJ-+hRlDffBSTDf(-CgRWv@d3j0*!Px4V^Km^m{dtEXY
z9~$DgJ+)qpMIhFO5t^HQXZSkUEu}pe@JuCe7iPB=ClM%u#Kjh5G2#|3!z;#r){EXJ
zS9c|zTXwUsbHIK^8nxYW(oVJP^YT<&-LdR2OtDT%DlV*Y*tA2qJ|Mtftd{ks3=l~O
zF`~R?QCcpp5LCVw65a`<Qyk}2x1G+KWA}q{Y<Zre+FPq8Qx(+B^I=9JV34xO6>vFM
zoK(<w>-X!<L|%<0{F97RYC*sTsp)*2S-eBP2Tf`z{pgc#eO{kI1}B0L7ygc>>|Tp!
zM0!xsV#Cci_A15}8^|N%Mr5w8BHx2Kr4bao0`Vv>PZdFgq!Alp{Ye$Tq9C={l6~7t
zrQCsF$g7)f(`^3spsXf1FFgMzsN-SfB%W&W9^O%*vgv197~ZA{tX6tdz|78-mj^5g
z2ks=PzbL<@=a@Sh^Z6YGqWK-&s{H@~y@$1xLKMB&UvNg>fdnPJdlD9lpp9w6l9~I2
z@m<Q6TC{&ZwFP<PrJ3JZQl)2;+PhYSjrNxX(`>n#wk*%{A-fUg0db`b5t>mTIlXuM
zn8k_;&A6m#nn?g-;)C{lJ0S2S8j2epRK$0)eBlreKpdjamDZ1I-;83Om_IVao_x}>
zfuqXyl)mlfyhcXmJ=K?H?!!<C<h!14<JUTR(tEj=r57;9(7QrxE=bnphC?5UbUhm+
zi-G4{wi9s$()tuaKd@@?<J<Sf)m6;_X~Sp#v4~&<^Y?J3reIpRoPNa}?cvUBZcr6f
zCFbh)1)U>A8RyXGT8-ZzDrLEPJs6LY@q1eV(YL3}%*>(u-W~p%CZ=J!8ieg!NNp_5
z4{@hKjGiPY?GeqFGq6;3UC?-+;h4Qfm*y@J-jiT_5QhIq1m_IIPe`WoBF)4eVn~7l
zf0MyV%A=$ArF--oLY9Qfl68Yrt8Yx;MK#ht6sXRS>`uFDq91Zh9)ur+=YHK|m}?xZ
z-I~`;LA^>lZY`t-3zUy&W_S8xB<q+4kGO){IX^Eyi+tx-f&S{9ERW;M{c@tfdLNtd
zjmcR1bn(1iI;#;ReEs@KalETS_or_nd^JiP!;BrCXlJAkdY)%}rxALOq*QWGg0ic4
zbY%Clh5T2=OlzJO1qaJ>n-eEOW)8<m>m2<}D4oWe8EFfGW9j3N*{_eMC-p^i^!P19
zv6{wFDM?L4i!^MlhJ_`j;tOYDr>~6f{=xUlQHuIGj1uX@w+%7q`cbCt-jUQg(dC@v
zH<#nrjhgdcq`FzKUYPOnUyQIK#`wzI7kqlpGJ3kGA8^$Jtcgie>t4(uKJ91ycs*n>
zyi-gsBFKCgHf<lXs%GC?e(C2UNroetC?WAD@9hNg3?2XsD=-}NbJkzYYT2$hxtdr#
z|9}y&0^z1dgLlh$-?XgB<yPUq7FHMip4Y@#{d8QO-fLK9)_L#-8O88(FXQmxAqS6g
zELjb;Ec?G^m@jwD5^-MnICt3+aRbH6bJ3C=B?K2}4ge36X{lGP{{0>-=xCqbTNG!o
zd)^J}A%zfmySm2^m+@mD5=@Ugj<YU0ibG4Ct~LVbBp4Ve2HWG0Lp4YV%;&znVN_Wl
zKCYL>InOAxAE`eMYsQfRiN*prKYJXMH+1{K5Q2WV%^QRil*!TwT?UhMlWQ|O_o7OW
z|J;*XA2&(2#wx<QF1Pivj91i>CFBD7um{(&EG`SuQ4KIqTvn1=;b%QMh_!FpACA-G
zH?HCx&agV&^wX`rO1-`Mt^%1G!_;cr3M`c7ZO`KX2FuLq+C3E$Tu3jkn|;3?BJgO?
z&_%xQ4ouo0AglAZ;bhx1?<vm{9#`kqdz`d!uE@Y*H1P+D`D4mNdR!L@JefD!dIK20
zkb6g{D7T_?;D69Xri>?;+K)9lURN`G!In?c+0Ux4XQb0(y#3U5-6%{IWCBBKtsQyz
zPCoMmlfh)*vDILzX^;@t5Bm#GF*|o^fEy9D;rO#ImddKq;^t8<mg0A;I;5u_bv$k}
zs_032r9EajoVqvmVQGE#hP;>G70BV^O@ZE_a}F@F&5e4wpX;FPqIm+F&x>Hd&3Aih
zR})(t(x!?We0BANXtn0L8I@2KdzB#1Z60q=&~2fD^pO_#>Y<0|c|s00<pw~Bv&9`@
zmeOoc_blgL-5k*(O9WrOhc&aaG^$`-KVFPeF`MQ)JuQf@H2E+`tJpqq*?tqWYPkEE
zPNmzl7JQV!nZ>&&K)WiTO>}G6@pNR17fd@KLXOT^oo?IC#d|$(WZt%rT?vq+6@D$x
zv0bh1U335`s#s_~ykC3Y&ry!T!R=xA!H`4O5H&d(0PX~SaO+k^YXDEkyuQM+XqJ0d
z1Nw_B_zfk3jq;0zCxJN9c1!~!GmSG^0NKl4qAB0e$yNUs8?a3Ng+5Bk=PFNqy}m20
zAyQ@7348u{796RXlBS)De?Cv1o0-Kc$1t5MZ#{>(!!59`EeFZ#*Uj+55=>HC+b*Hd
zY$1WQ@~}{^j;y*L9HlKi11o<i$L%Uz+tMF2)l42tXt~n+s#K9tmwW)AED7A=a3KMh
zeeSK}kgwc^>fMJk%dgCDkH*!s$Cp3|g2X8oJ4Ykhg}M!^?v@&+nIF%85+*y5WA{bK
z_U=}?#zB%eZ_Z!wf)a5!ZL}NQmDa4pprgi8o%)XYuC)8v=d=@`HTRnov0F`bJ&x+Q
z%&j%cAkl?BX*+C?r@Z%XggCJhvt4z=lWFDq`4zTnIene$0-!KQl)B`|AB}TD6-QE~
z@*R)LADxd(?Mwi?s4$+5(E7M5As~H2kih_;Kei@Vepm)f#`=in?SDeN{IE{oQaYB|
z9T#IfepS6~3&zPhSShgmug7o1(rM+Rd-IL33NUXb<;kH~j%vjFMOi63x353Qi}0j6
zYfnNNtg36XAo=|$)oqo;?e*CjH^Ss1GDy8Rdz)+$P37SJiODdJOq{1tsY7OQp<h6>
z>DzTf$CEYMv74T~l#@SQXpgy=%}v6W`5Q%T#-FzJnQWm;^$RBHQoRv}0XqOuPq=4s
z)vMK}Tt*@0Xjb@2{K=c1G>wgg^vws$1~P;cW1G9x!GZk~w@oRhWF2QIC4QCwZOW59
zQv;t#{ls#9h5VzwOE;gVuZ3)VUQflgPt}WOS!c?k5uU5N=^|BwUR@C%>#Jkf!m*cx
zmRbI$GPsj=lDX4JVQj8B&^U>n8A?bvy_rT`lQ=W9l8Qt^js$>B?`Z(+ZHm%NLfhq(
zjGy}Cxhx|$>ero=jpq$+)@fIbLgpa#yms6HeJpg=6uYOj!Fh?hC<J8brsxszVZ>}T
z+?R3Qi#ZJcSY9^%RUnwfL+sLjqaT+6V41xDfHQiGt_Xb1*h<X%e2b1KLt=FVu+-#h
z9lNd|In$G0=+dC&s9vF)&cvHlMDsxYN8oPmaW8e+{*b!|!!C`j!UIV0hYM)4fq)S{
zwC>cTYWtJcmo?Y!8H557rY-*7)AxdzDXv19piaR~$q?>Ugc>SelPj`XN2S)mvPXau
zv}>O0Hn8^iT+OH}>@`xl26mQ0WY&+wQn6v>ro!~3tY@_mPMv+**=w+O<}<KE`Ee!-
z#W`j_&Ua&_@e10&722qukD$S+ep7RU(dSO)7xkFF06}s|0OXeZ?#w+E(H4deC)eXg
zJkK~z<GOCoCW-K%9Onv~TghQ@WbSfE;lxq>5(6C8Kr}%*w8W`k7lM~)t}E`~c)5rs
zV+_UL=%!zsESM11_++49^H#h}&&$)=3ws&EQA&Bk>YF3772sx8nFw^dB?q7iWf-5D
z;#_bQaVwq!@@~XP>1qux7dZDD3Nz)&eR&CeO?i1arpC4jb24LyBkj6e8}nDvqujSR
zxR%T;9o9(RZ1LxJ<P=sTLAlpTTvTU!T`!#WqN6{wnJJ881|=PmaYH0vhrRW~91zg;
zdAh1CPZFqXzqbhgAohNL^^kQ+TC@D~5W1q&QurWSvecRkmXm|meLQEfQb!=!8nPzJ
zkXOKtK#E<|x?DE+6Sb9PZ!k*{_NIntATg-~$Ku&SDY38^<<2bL9C|+A+F+^4;=;H9
zz+k;ZecspmWpJXauvYp!Uu64HTSj7%YKw*rXy853i_Vxe5VOu@Z}(yAW$bsEzCtB_
z(hDRV2-kfpA?;PHj>X&^HqPZ`3_9?PP7O_OWBEex{5O68!h%Q;5fDD_1c^mvDwTm^
zpOW5?d}G*Pv57p$eNRXLAr75YZDQ~+HAeU>EAZ6&2xumj>p5IVQH`F<gyA-g5mnP$
zg{TvQc1Po-ag&|6oW~=zw6CdLMMP>jX}{b7fP1!z>~jOlGUIP!8U<%n-G^<-I+{x1
zb=noeCL8L?JT7Va)Cq}fkrK@Uz^1WU<hUe=eko=WQamJk4Au)r4O8CX@{Z^Gx-tDg
z69Ah#z@Md4Ny@&zxV9yUM9;!z-Vc-r=51OBu&2~|62KixKIB2&U=x%^MV^WVdgnP}
z_dF2i#={u8t`A=W@&oHH<>1a5{wC7ZE<cK+#M*KWK7eWA0SfXp!p1~bjD0ys<8I}|
zJ2}P9Q&<z5XTp(h*DRREAY?xZoD4eRRJ)VC(uc4w;nl2_ey+x<5DbCp=2##ecU=u^
z@_m+lKaM%d8<!F63#7UG9%KRh`W5FT>g9H(GC;>F#tmfxB%+u1D<P#egzA5>9YF}P
zxK02^;hJQ7ZS*=*cCx3zinXCqjPXAl?qO&MY{iP;Wg!^@>;~U_4S<AvMG%?6n4nj9
zA*C<ALplq(0FG{5tlS1DqI&vaa1jD>)WRul=pcQF?iT`SSB)_|GFz;u$%?k)X5>6Y
zW@cnmGV?T?qxD1j7!G|Ud?}sX7(x8ts^~#**`nU?O{y#FZIb~*9$~@73ytG+Nn7YW
zg~?Q?jS)3OB@-;BF{T~_Yg9mSWnbfTl_BpI;;3Nt;%mwd;ExuE5T7EmdfHR);g%AG
znwoarac2>KXM1V6#UIjMRm500=^>iMWyShX1N-U9FT>^7v_Rl+N8p94kKzH4wNfhJ
z0BApILP+I!@5i7AsJN<7SAv~`JIF%DZBdE$Kix?bKYV4_=;Jj3Xo<Dhy0QF;@?YJk
zzY8bJ@C2)qOPiQ?)AudV;<9-@E~_}7sGs`7VK^a9e#1kq#M%wn)NSW!<TTOn-I|B3
zr_2KIf5YA(zpX$vNYt%gS>eunnazE>6=QB;L5cQi#pOjy%eG#bw_|LKc{ILB=U?B)
z^agg~Zp_x)N3ZFky^^X0n7gxI@m-ef+0P7DLw_LHx`~);zU^mLc)K2$=31=*BWi-c
z!W24rm<ksYDt5Nv0#Ie}2y7h5;oNA{b<DnqCT~~%5klPadS|+b^{>cWTd`@b%*j!b
zRUoYNu@~`R34ieou_?4;E-f$6p5g5-ZDlJ9m1Xltw+0#$aa>;n7bGD^H1~ed<7~m7
zV%P7sY^|Vv<2~}%#;7;fVx4oli70~xu;JkweHmDjdRT$>?V99$&vc<=wo0uj7aJ=H
z*CwpP(HN)mk{!Zr%myqstQc)LSmPaxt8ft?X+A0WEIYSJSOqf^CWz2AC_7`7#c{CO
zQ0OU`htD0w%P^#p)A&!*g&X->)U=mt*|vQ|J2PZJAR+H}n~S&)U(es`*^8m?cs!>G
zWH%^tTUUyIM!PTg`W9{62jJU+<+simoKFFlmY9ffdjN6A%=C|Z{Y&4lpR1~jslP|!
zVWRz;_jsC1r5GjjS%e}SJ3o|}!!jYXTKi26JI8#UxD6XhCjsxO|NX%p^$ue&+wNYg
zX}Y!H?k*s>wiJGlyV>4kdR-C6%zE7Z;Js$1-e6tXb}cmjN?3&V(QbTQ?4nEz-kkk|
zSOes}_-{j=hSvCaPAiN=vNBRbkP3&VgFv!UCismyIM(Kqjl*jD3*ao&&8F^ttP;Q<
zi_A=()Af?euEFAQ#QXTDLfri}i!r!c1#EyeSg-wOTK`V3z7%r?^If?30Q*MYA<6oW
z0AzXHt8jA-2@F>t(7)RrUuShCl10BIwI0qQaSLeZG3gf^4yUb{w{q#I2h`thb)LLb
z$AB(XcjHz7nu=KX8P!dt11wEkcjPjGVSpfMwI5iCOx6a7ai1>{{85@)IMW@+!gSTo
zu)+q8#l_7`0t?9cP;@p>{kw3XApv=Do{4({k%UjVBL3=cjy^~V3XpyF-^1<=GqjYM
z&%pk6>vSZ>7$TCKGMrqtM8B=LUzcZ($3F^QCI#tnl?diLJpbZ3w&90lswaRXnM{hb
zB^AUM1xIW#OehdxoWS||u}H*zLx-8bTCj}zEnSw+^`Y9xw3Sysj%nG^x9-8kU?Gj6
zNj?<FjVM%m9a=REdMpBk+V}>|G&(Hf7eL^dWm@>IqL5jyqF15GEXu~S8?Za%LE7ER
ztENgM-aOAJw5H}`wP;?5*qVm3J=Gw@SA)3KN)yA(>59?^ZCmIHO<@R~w-jeWR^AS4
z;0U|N+mtd+>-8ZxmeAZK=IW1SQs04siR+S#yvwi-gVIS3*65pxD1i}$yEff`*%W$S
zY&HJI(j<w#=he(yx3=Rb<~dz&`)V!Q{m_~;8Ln-VX5>Wjf@_mJ+pXhsvYt1E?eW~#
z`E{mo-nQ2uR4x;vpQ)7p@+QfAZ%Z`a?rtc-?oCTK4-ol~dOj?zF_?Vx3Pd4BU=^24
zF(GBWW>u^LcybN*ZapCWelb!k<VEkOgfSK*MV5|j(A?q4T)1MrJcy~=&5M}jV7}nj
zQmDCsOIWo5H~QIq2B))<&W?vK7`Zrd8t*!%<MOJNb2cPy43fuHa`$K<!gPc;XJ*<<
z%#;Q4t=nmdW?Qh~1Ax`hy{~Js3rw{FYhbb9@WkKl$#E=@2bnFpta+uodx65a-4Xtx
zdq7<f8$_tZDau;<I%cKj{H~#{a5tgz{Cb~UMGOkWN$Z7tIc3cl_au$5wFr?K3YiJ5
z`_u5!`B&->!wFZQo59%x;_?*ELetb&)@9R31xHH>B%~sd{qthg^iiFMxgmu6G?vzS
zlX!a7k?;LEDv32l{CUQ(&$MWRRidnHThGLGk8W6AQ#*pURZ|iuG2-g9<h^A|PELk>
zOnDoI^3~Oc>5TQ}^%>ucUcPM!HE+QPot>CQsz~I{IgI;iD2WR&VaT%z=*9x(_Dd_X
z#u82>@AK2H9Jk#OW*o?8u)7#G#P0JQ=FQ%2*-dHo&X*Lq6oK6F|Lg#!Ce#%Cd(@OQ
zj7^MzFe#<7L6+cX69OS43C}Sq@5`do&fC)-<PhUen%tvR??1$eL1glbT1C*;hejnU
z1Of<}Z5a?mX%<d=e0)YaWWRNMSC+Zn9YU#OSvc-^d2U@icX+y*D=laPJYma&C(YbR
z-&?eXTcG|;)#7$rG2k_Qt>WzlHm5@0#!-a$A({+b-0HNF5SjAt8c3uGL}9k``?ouX
zH4k3!FLx({=|L-N2}7$8C|z~K(E`u6rvn1d%oCGZwScX_{bMGV>f!0c<A!`i<=OdY
zm|!b$ZaN1hL1un!Emk)$cMS4%pcwc0AQ|K;sAljKP{gGw3q`3O%vb`80bA7@ck8Z?
z(Hph>EXwwC>>RApnX7MT9Ll1003hTnnT}67*_W68eYxWQ02N&NlJhpMoZ1-=b~P)|
zobPBeh409=p3%d0<RgRoyOAXgQe`8nytl`SPMs6U7ui5pT8Lre%yQJb1wH%XyMxX?
zltT0$7WwaA4lIb}Pg7qbvKh(oq+>rk(9&(<|1zSSR#GCvisG2RS^+Ytp6<~FTBX+|
z;s=q|mKimzf(BTIvs-mWO8h}L6)b~1oR^IZJE!<zk<U#4A%vk^M7t|1Y|qtR>(Y%*
zyeHKa%?YJa%ImXVIp-VTen8>)`hl*l<7QF+qSo`zSwZZFjO=IORHG5akImDaLatG!
zN*Oq|>%~lLQRWnd1ilHVit)Gu2#Y7p2kJe*B*!Icq(VGt1<a8^Ku93dX<M?*rq<m;
z^dC4J`bn#ICynpK|AsAXNK(WS;EHm0<{vIUV&Uorfkyga1)?~!{BTJnp+n$Gt5h<K
zfB6Rmq~^X;C?D!KS3ORWS_QXbp<PxNcs(}-4~)G3)yhsqRAPh?yFh=TP6<=)%v)DB
zv!7?N@(WpIRMjLMfc}{!m7*h`>L_*sKi-dX^u(MMu&b);vhq<yQ(fC$Ot47p64xG3
zDdu|J%kd$ZHvv?4m*^CPsRlbr={qsBoX)-(4}-gZaly+52!w^BvcfoJ(H4}`Kdk-a
z&+)~%Lt;!$e**ZSxN?#F1T}ZcKz7GYA&cu2lob@0fWab)*BBkj0*5F*Xx&O@f=d6+
z7iRt2+1Oy+PCKA<@U<X*Kva6i_djYh{l2>};XlF1!UBnzeHt^TTtYxt>Brpe6p9#4
z$W5OS2@*nh0&K)a`~9QXcu-Si-n_ts%BqPMsP8c_wSB*&bRT)?l5eL25P2z>adz|=
zwbOl`?-G7QLWCOnCG&zXd*E2B9jc;=-YiUiAVUHmnFG9%EFYok55Ln9*748$DZJ)r
zlh~VlQDwSdY13@`Yl5QTl5`=}{F{-i4(IiZ2AK~A4j}XU1SZjZS2L?*RAYa*{H8Sv
zAjFYn14m|~FTNm%CbXh3IuLL%@}sv(=(hkudJqupY((|-BXiaD>prx7cDq*((D&ZN
zR|LD&L*snGA=09a%Pm*Az|<Wf74OHClJUtQ?RTDN_*<U#6NlO`^0=&>$EgcvwsN9r
zHX{GvR7^%mPoYG%{&{JqzfcKru{H{P`WMbj>i0eVr2?P!YG6Q@)i0Jv4N8zgR}y($
zPA*QS;<ye`pyM%Yah-PB1_N3|1;<-iqw|_<9e#Yf&gZ&REmwA{K9elBFY}UmtZrEg
z-Va9>n(_iqmy7p;YBr7Q{qHwj0euP%FkV06UjEFG=RF%JHZw^jS?x9R1mwJO^A&+V
zT#Cy~u*{i--AAhr2=ExD8`#qyn29rkq9WyI+MVN{k6nml<v~2oR{4gI-3{pSZ%Ka8
zGa=_-pigmmU5s)L3=y{k`#f$EnPcxL5-k>{6ee8(RW9Y9A~lyr%QPF0Ha^Gm<|yhx
z8${qO02YzT(n!vb{vx1p46Aw~k!A8>6aSzKe{e5>3=jg1+l-1v2AUAcYnc}$#qWq6
zPyRA~JOSC+*45inK1I8ScpVzg3Z*{^Pu-)QaO~d0>aTS0+mbIL28ODLRZkL6%B`v(
zj!W6MP9J?1MMv6mCyX?-WCcOAZL&^wpm`}t@YU>VVe9DP($@IEaRj#5z94`1lwo9x
z6(9wh^S!t|-|Zw6MV(H)^~rgbEgA7=xmR!?k{)9P$xsUX98|l^{C-13+@2rZx(m~t
z+Kb(B+xPxmIH>{$mYD8nierZOCq8)=$|No}Y0e4jWvx36SnR#w90B+q1Id;n&W<~|
zQAp}JoM5rxkLCkzWJsTVf|z>_PXmlFPuB8sQiqD75GWz54_|$4V0m9`YioRIEZ`-t
z**d6U&UzBQJa9;c_!O{3Qu!~K^RIFA>mn9}-D6OVNUCL-yf9RyQ_E8q{~VE&qOTel
z3q5At@We5~bK>cTGBGl-1Vp!TegYDN$<1~@1mZF47>E;2!6ai87$Ae0cj{8Pr$B-$
zObmuTubq}(qJN@qSjJ6xnjZnCk;JHT!I-~2u$vOGXeaGUml0y6xVVuCAY_#seG~2j
zymY2feQo2UcMz3_`)!|2eP~0msPp6K>%J?mUrsAn*3w!pSyr}LBHn!oTPFFJECnKk
z@Hn}+s_MtJtoN)nist9$)j%Pt&!}b~VU0$$Hh>{;Qp`cWKJj_+pvTNS*Bnt>($MIF
z1kddG3{3D*$}?TN!|H+AEG_s2ckQ;lFX`PRA^7oAfak(LM7#Q{XvN0O8xVRzg0S9G
zTU%b@Cx|)oYW-NjIU^z%koCU>N?t%z4)_!0t!ir%apU@Mx-h3d=XW!HRa=u+S*e;Z
z<6kXWR`N-qaX-xg{7b67X8o6~x%T*zbGjX9)&uzX%#}grDfb;<+0Yhn?R`#w__!C7
z3HYZpPAqPKcsY`$5p#4E?0e~${h*C@wcbR6mj!{PWmSE74O|(~m3t(B+A0GO$a)My
z2tFks-#Gx|fC$ul%cm9lY({Zj@4t()YygyJsxC5JKDa&6&?A%aVi9j)LdCzx`mah@
zI#>kt7jQdNu<asQ*Bm2dkoC0tuoskOZ7@t<-XMJCizrC&LvY~(;JePPgbQjXQ$bI?
z=p7d7M?!Uh+=^dkT}FuWFQ$(opptGd_DjtI#Ym@1YtQvs%KNfQF<~~59TSve!K|<D
z!I}02wNkt>A}?A1d(}b-Z=dRL@`VKhnvs|9=TKZAsfi&~w|J!F`?6_)?xtf5ssrQv
zQQeHjA?H>pQsF*oS_L&(ybU5K&nqK&H=?;rxTr`|>zYxHb-<Y$Y_X7`tT0iC!`5+9
zI-k;9S_r|sC*IBe(LR_bHx_bq#Br>59|8*4Ty6|0_Naf(;=J+78jLV&cy<)}{CX^G
zT>bcFBPG<dMyb%<Xo`7N@xjRLG0KQkzc0d~{&|*jhiEr`oH`+*=>>)I`sX`TK)d<+
zBaULtyzk_T-|W!iAF1(|1K<mG1eKLr`q%?$RQoNkqA|dW`Lh!SXEZK2S&{%ybkhTr
zprGRkWXnL7W@u*(iRb$TQvzy=V;rv-Su0Ugh8!mWo<rldp-8+q76}@#j&&K<*XrVH
zSF8=?@MS{XtlT`X#jaY->f1=p?3^6&v4SD<T~@J~wF7+P^Xqie;h7!!zWE<l;`sKz
z7r8Ml!pd^>B^vCTzt6r)hXIFn&vN}_#KE085qf?qJWysM8WBj-uLTx>HhKuygE9oy
zhX4lMR57I#=ILJi@e~^d>&4FPhXbZh?7Ks>@4q9uFUE%hHMk+hjROaegUP05Kw%34
zm?<5f`VR^SX55npBiF34JcU-l^Hy<J3vP$A_r8jisgqq9BD4w5fHMm>K;WXi5B6mf
z!@#&ERyI@&2W03QD*v8ahYLm+^DMIQ>3XTK+0H5p^TES=%V)13dCHNTV2uj_J+n)U
zG4}K3eHMTM%DxEULkl`kaqrXtLHs54Xymd`CFN9nnKe|J6Y#Iom{>5GdVPL~QSsj#
z5PBRcU2IIMu&0m*N@7&PWbo*U!ZMfty{ZKmJ<uD7o*AFcJ0Ox(41lk#a9b!`^Su_Z
zF2L6FWacswj10zpG0gV%!l0mxTkneH5IB-tZ1lOG&Q|tt>w1Na(E1e}2FgrRRE!|y
zQnDrMDbTt<0@ok`hf1jREzqR6vf^!{1R^Tfx3Pi~15iRxni(q5EJ90-W}!E`H7T_6
zTfIe8O0;G>q@<gD^HPK{Qehj}dA>}xv<!PN`tdpn{f$yjTVp1B>xdzT2GP%$qM?`I
z_L)VD%Lh^XA@0oBJL!n1_~`eIl$SD-oFW2ptoghZa94tC;Tq>>14Ig>l2AESW4Z*W
z$(Viiqu;FRGu!F!-!&FG2w(|!Z?sL*+4|H^`vCQ0Ed>v;9$=N(n#&7o7hl@#w)?Ku
z2@A&ks%9=rQBeIadO$=Y{amE=#v2UT6!+($Hr=NF?vpWz7u&q$412G?ZH8Z-@!tLj
z*dxrVcq+Fo9XO_60dnuB{eBRIm%Ny5?&!IRLgX@S2DUNp)8+JNe9P~u-oK=!C(=$<
z?ykJ*+d!fLd0@*!4Vh|lUJkRowD7)K8eq8NwHzGGk%Um9M<sIoymdOnNTFwEF=Lw2
z-;?QyfW|}KV9PKUoQ|!q^+X<BxIChE!kFm%c6<uxnFX%LjDdhGOvm1fVnFCHn7h(?
zcX<T+<+qAMzoFF5+q0ACl<C46bjIOw+;NCeO4Qo-;_?GI5dQ7=v7BxK<M_OsTXw8{
zin2~6Q_NXBCyrUIA2uKf_jd*RhJ~)dI=!KyVTe5Kq?_k-J>)j_&VZ82Qn%CLZOr6E
zx%R^&UoWTr%|1UQwO(VfCBV0_T!l+D>q2l7^?PDAnY|$&`+x?wAyD?bjB;|dg%c+f
zw!9Ec^(`+1f;$6s8B@fZz2pU8CyR3PZa@5BD3Jp`1HoslBH^6x*=G%V6;6nTDr$lp
z%e4|GL5So0#??}AL=#`pfC(}Ne3bhe4rrY)FCo*zs%iVvu-J_&y=545RW~z^6;N=>
zdVeSu=SMMCyh6zKCF83-^)-0L7tKGsTR@Ex2l)XDxn#m8=Y{Q3`kBMu3X|iqI23JX
z=gvK7$Dh#QM!0tH&0m49*)0JzEOy7WK`2DZF{_bqHnP$qBsmd#dlH>X_?twd2ys{m
z*ZYX;>p+!)Qb*G@VHdHXD1yO<>NQ_$*fX>A8z-xK?UYuvmnJe~;R?ewSYr;>d!kU2
z2{Yc1XMbj+)Aq?0k}A4u<jYTxlf>vZUvJAAE=5&|-G#}>ltsOWWS9xc&h0~?m7HRQ
z8g+T!bEKC^aeeN%-H7M`Dqpl|KefL;W^P0cE5$TYrtx32dV4yU*WFs4M1jhwrt7wy
zh!K-G+WMCC=g2CJf#Bz0t0z9&-e6cB50=0%pghZ9|KZyn3h&hT%*ZZPzC7qjI)?w=
zjD8P*)ycDW%ik4(DZWB`@ri9ZW|BEwHnjJhLx1H5bQekz<F?cK29~`-e1x;SC+@a5
zmySQFcM2~olUm#NH8mvGPXdHrc2iiQgPg^Mj1Xvn0xaiVl&JzF2&ow1d_VC}6BA|@
z$5Mfseh@5GD``L(okW0ZoJ^k;wTZy$$2pxnAbI)7LyQ1>!zfyx?+=R4q)mf<2Y;X=
zs9S53e%sPY=P>N`;Lh0S2XWSDJ-{6&XCwchNR~exkMjco7K5iqDxHtW#CGy3^J+nb
z$ov2XYQA3(I<w?z`#ekj9rwfm49WhqvOGti1s59zBtu~CaV0aXpyt)i<@3WyVf05{
z15Q?GTNLOiH*L0WhD0P4HJCWnQ5ON6<AG6QNmcK^m#@+qS7(TqU7UpvXFp#Su0(ec
zi?#s;Q|9cpKb9fI&PdHsL(xo9ABt8b6&fo|uFRdhuZ$74_*UWG7Cs01wgc#9i9r{C
zuqovqJ`P%nCoF>L3wWY=DRXfQTwtvq9?p>#l#6Jp1v%jBN8_4JbD|O2BP=FF^+s&<
z(GuuFMOf?9J8JWuVTzn^SZI+(k}o?RR}$NDOriTX#kt0@;X@kW8_`Fd?>L;Jbs1%$
zq%~ZbF6{EUzX@s1{8g%}z0bw|E#$N^br7X8DRTOIa*qe^+WJg&>g0_O5!@!%6|_u-
zHOfLRwJtfq!@UJyK>5(WzA^FXjlfXkbyiqTok&jwc#V7A;fdSyTF=wW?&^jHtQ?%B
z?pk5*m5`O@+CW!RRg6Oo<~XCR(Za4ak;h^6rKaW2m8y;_dO{cCgG*zMd!)T`*>kpi
zm?Qe^e{2kxVDSU-zOA#^V0BBR`@(7dtQ$$dmuuO*d)YaEK9v3kAoSx$1qpa>x#}OP
z^uaJQ>w+9_iMS7O>^foNGTJt;wv2u4dJ=^sbDZT;av(G1^|_~UZgVz2eg^42rbNjP
zl5z7p!V-yktlf>dD6=2%F<~7<yI7gbl3jmRX-rM2Orfgmd4(L}n&itqSK6M>U3fH(
zhCGiT$voc;m4>OVU2V>s;bWVd1^92*7^@ME<XehZ>uCEC(cWVuYesU&mn3WJvQNl&
zudXluEG7^nuL8I@bZcPU{bBYiF)t~fQTDk&%L?;DsnLiD0SK}oNTZiA{ZofYHHjPv
zRk%EXNt<ymxN<^FTQk?C9uWbh<P@km*$?mN60YAIP2!lOkOXCmL(NII8{*VT)No3j
z&%N#mH^(baNT!Al%<C@_P+~QMtgK(OFvqjLvfu2V>9sN6M0xf@&uuf`am+;No(z`Y
z9oz!;nXsRCs_V&}Z^{K;9F`O1@H2W*Z&93M`S+_;I(l)9u41>nBK4&hxsa>^(CA#0
z$7|hXl~K{atDV8KU0UJK5_&RZ28Lc)YO9+w32Ws0laj5=YxngIhm-OB-kFmQ1!aYQ
zCJvA`M6Cywk4YcXg=#i}N-%S7Jf&HZuxXRghF>YgtH=NkIJ!S9vu0RoeXA$;x;Oe(
zZN11Y-_%}3lBITUC+iWyrU#<R!y<zP7{G%Bax5fnVCb~}D%v74fd~b0E}G>Fafw0k
z05u&kYT!l>sq#n^Hgz*<2D6%`a)sel==NultWf5c2C_iSX0gRD(<qIYYifT%%L`@v
zsCs~Kj~AtSqo67dyJz*AeFqe@aHn^s-vn#rpZ9WmiXzzAc)6wq$LfqC>|UZ6?cZln
z6sR1DlF}_HL1N_8`$xUr?~@=3mJXnb2Geq!h@}<H7AdA#Zpvu9ZxBAYRx1%K|AX-&
z^Y|T9JiPl+0AM~M8wjANMYFSoe6|F8CYMsU?N@2I?;L;GJ4PQ7opF-^GL~1mf_puK
zq_Vwv;n?Y@jxB#S@|Q8ggaMVJ@vc}+n8Lj?=Du%Yfm!M6ywWkkcJywPJ@uP)=07Lt
zuaj}%el55Lz&?fIcbTz*ft|B|fBSbgZ5Iz*_~x3O{Nq~mMArA(C%hmi8-=|9t#9zO
zWwFAcJNd-gtw8zXg;w(4`3BIK;2^M#KE>$VyqBBGQf0(kRm5$S9!d3Y@Su?G5?94P
zG!Jn;KP{Uk3KTW7+R<JjhSOhbmh0_$$n-j}on>#mL_9m@0TA+n0O-sLcv?K*F|U3F
zb2mVXmv$WP<JW=hJV?JP@?9U#1|H%^YyU?xe%+GnPpDr7H%v3CDh1Caz*0#PhTW1E
zg8t9_HnE*{Xw=Eyb}>boSmCkqKZ*$%(OBTp&QwgG@-ck^zUH}6>#w;-@@u~{=-1W%
zf7tIl0&r`CVpDY_qJs<?S$30s#ncJROy*A_k#7h}CRKcz^6~kYE&k1&{j<93-<^;%
z3RR+1KG-3xP63at8G-s)1`t*dXrp44z>U)Vv@-rNe|{hHzj=KB=1|{(%2%;EKc5v2
zd(%RhR?P@@Z`TJE(+Ei1xxV%e9a6kLe+=%wnNR<p3ofV3BmePR0RQ@&U<;h=Wupch
zK|%BcrdR~9Ap?hCPK3+-LnO)P(*MWVSBF*At@|pXf^;vXyIVS?LrSC@1f-=K1nKS;
zq(Qp78>B&`ySt>}j`i*Ho%`**&)IkH`xiWq56d;jobw&;`>Ua)^fYAO&(isSy4L^l
zeElz1;nnx`kv0ykLY6AEk`Ur6eBa>gT7nJ<(hqb!OQZNNAe0xbou~1CvH1L(zgB(~
zWD^TwaEvji+_E{V{e?v;u9ESsjQ0IXlsj{P-In={0{x%c+25d|e_Dh8WxWK6zGG#s
zcF70ncSHENi{pjZES*|d+EB+9i2w7;e+*xlCRj!5qLHP#A}PMCpHJ!+8%6-h)af2U
ztLYLPOZv~B1hC#82_L@>4#3J(W)6ZBFuR@kT=ExpU6`+Ce=c)xr2qf1tb0iinL@96
z%bwXc6gfS!f;A>1740xstt;>IsK#Hc0RQ@K|7E4U-VmX7h{W>%j^Ac$XD5h8Y>q+9
zDkQs@%=~>TCtNT6U!)@c?uRmQVG#MeE-5a)P^{g0m&g&Dr?&^U{(=Xv<Xnq{sefOV
z|Ca~yFJBS-syhPrK9CeYHYnTlJ#DukTXTIzKv}=~T+Z|EH^NqJ|M?B~>Wh9fBiaZ|
z+PK}O`AI?&@tOL}k}r9<VQ#RPWK%EvjOqXW8~i)h4tWjZ6CT#zMfHB~MQon(9v!gF
zcB-~NAyrmtP2ju~|2rJ--+Ruzs?l0INYXQSq!els+Qm=9JlC1h$FSxZ<AjW7!;Iei
z=T{Cc>zmlOq|RV`knlkL;-zrF0#2ri7+L6~lqgCFn{4s_yKMgRT8yy6WZNWCjis9j
zoz+6(W8pDGgCBw!ik^2@M^+R4FK_U_{EyJRw(OW`uqj=13p<_0v|`~$Z}iDyXx6tv
z(fAA`Q9>5}+y3(}Kjt5bY-POQ1f8E0CX@22R2`{{e#qg#dKhX=r{_mpS{Ge&MjPq>
zyNN-Uc1Be9_R?`yDdr!f!hbG1BJtxJdq31_|ET}2holLuu7{y0>6x!+j&;N_8I<dR
ztSXF3Kcu|t-FsHqJcn&BYgiqDg1<I8|K_6xse<K}4#1Mu192mHahV^>%rYLjq^N;~
zKco93kB^m>;otnAzdn1d0pufCO>}+`rh3h=cU?gAMHQbR&`qUZD8F9o-uZJb=pO*L
zzy9%mU-h30^5@N9a)BpH*N>r*eNUHjn)kk5D6k45rv7+!tEuv*=70VkFzLg`l#4LG
zcv%2wH#QeNx_EA({LB#H?h!71Gs~`jxXXWjiGNvIz+!%1H>HZrc*k6?zDE_i%I%d&
zE7_?UDkSzaB=h%}y7hnl*tYhPkD!SL#Zsx!`GXSetV8E3rJ|Amf);3EK~zPg>vmz{
zf4-CGo}q7jckngEr11;eax5!AuV2Yu3Pg(!G2oVd0TDmUuG;v=<^Pvg{>KgUij*dL
z7K*%X!{wq8qL-P8(~Ww^+%1#-E>xPAC2a1y2J8QD`7R_Qqi=+D{{9{L=fx+D7R*);
zC4kUUYrek6L1U!|53zR5&wAb+={#8&`%eq-4c-en$L*DNAnT2a;vfNuj3Xzom?vi;
z>U}|Cmnea1Dm0yzeV0Qy7Ct8Z#Q%R>?YDW@?@sC=8KOSH>kw}49c<xz(rZJqLOVD6
z>YLATl>hvav@W40K$)3~=8Gn#dAsrKC+|(xFLVvML*Sv^vkQI0Uior_Ff#nGz=InK
z*W6#l*8luzplpbL!}JYi*0(E%*V0NSZ4PIEtd_G{PCYTWk<f_xa{+{fzE#+++y=vA
zP#|6(^Zzaj_XRW@OMQ8<50ueb9^_cWJ7UIB|CnC-OFuZ<rWnZAMz9D+p3UZ@*z_Mk
zL7P*^o&l1>)sOzGvG`_8{^LM7A01%)ScbB%x`Z~Z>%+jc-6uU$HKmPfjB!r)`qfdJ
z3-#yWVZiNAN`K#IxS|8yHR~Wo$OxZVVVRg<tvzt+`z_ubI6f&RUqk{PMOm6nVEsmf
z8gQOz<~&72@p8}{NWTri5YwxfcaUD`qD*xnNpac9U-re(-a;c-jBR<iJB;q>1_%N3
zx_Bq&j5$;D!>sk4IIj3E?f<k|e?CAEQ<!W{kyl?Nay{2;7a|*((3QEHSNsBBd`>Tp
z?ZH)og^(rFBHOVt{a$>yca+%S$Lqn1!Z;=R<8c@<hJh;v#<8YSU>5Z?$w{QBi_Jmx
zd4Je^V+kFZI?ktb(th4(Ix)Vi2K4wDu0%O~^)C{rZ@X!2%bjC0@@WVVcWM3MZg<V$
z&mpSZ62rB?#Mb=O#sut)upTPRol#J?In)c*4h&jsd;0bKsmfB#*E<FNP}5%#2LCyb
zDILl&3&%bGtr;xmzN5Ik&;<SG*qgVk!+5g%`x72%576}~UEk2zbG%>f4G=WxK;n4o
z51qlr9lOEpV*U2r4X_iki;|cpE5VF3x_GFA%Y(clW?U0#);kSA$>tBW!Q(lvMM|bD
zym)gk4)y&ncVfuBy)s$k1B6x42YhCeXR9}!-=;h}TgyoP)%)Uw_Vye4*T$Id+49Am
z*1MMi#eSwIr;34kSp%8Et+l{E;0HM4Ok$%(#wI}VECY*^S?x)GK|7FBOfYF#uhLcg
zzzgHQ-m2UtCA^YAU%$KTq4X6ebgxXH+iQ8?7;E*c32kb;TDS;9_5|9z`s^9wH1~|D
zuc9zL?ZAGT{|R{Fvd+aktAWC_bjGw`a*S0z1*z=W7bU0WH)r5#88@_K;svfp;g>TB
z?>-jso@m*PcFBxad|@(x`oW<o0_}jr*1+IjYT5?42s|(yDf5O?Qc|x1emLoaMkdn5
zoUIinKy&N&cMh2wuvT#YsBM?>XsWtiPus!cjmOQ+O~J*;%S`-H(|J9%LyEQt({q;L
zML6$CFWL69^7JkGl3M-<mghW&Ai+fE6j8;KjuRUBpcgH}E}1a`#cl74TQt+mMOp~y
zr-+5Knt@x;^2Et+lXZbqACIA++qm!HKKB9Rou4U-G|yE?wQJ7TO-r>ea=Li}t4_yV
z1a3!dab3ZQFeDBqXx^{T);?k|U8@bLjQx`^`LDa1t{s}Lxd3vE*s?ww7Y&Vy!PZu-
zc00!EM|fgBKo3lGI))yt8o~|32i*UWp#Wfj3kZpIv`n`Ht<_F`F0zwBJ`U3mJD~2e
z&FuEBE!46SYHT0#-%PKY!3b6}mbTt{akl^ngG;Su9gsmk_iN7$WdTa02VCOFW}Wg*
zP~-25=Rb=+w<n8YtC9Txn2awyF*LV>51>+4eR4jBz`8lV6M-Q3ffI1~Vpih*zR;us
zKg&jjL#cu5dWTsxC*hZ(xV_B5>$QLDU<e6doTg`iquaD49S-N{SqKg_?41wl1_#EW
zN+Xo&BKu_}?)2;J@t8ED3~^Q>6L2S}tPPSnNPaYIUo-lGfkB&a3q>@@wVg6MobIQA
zjeNDDv+s}miXoPjc&G5&HA;b(z|9}`I?<q0g;P1AkA1Z}6hY@^W-97eoa+^!JYU9r
zKfRiE8<+84|J7kXGNt3mH%|*J#cyjtQE3-!Vnm*DcAATn)}<0yb#pXm@(r~V+XY4Y
zZNt$J&y4wNkB4yf?w@~;bpJ#1!~}t*nFIlHfmj8j&I*VS{6+sPlR`h6x%+ek;-*gY
zV1L5frAtmCPeH|0z=F(?-GF-JMdtCbM#Ud0af{XPY%Me3fZt4e7{4AwTEyA)5hTUc
zj%mI>Z_3m)xM?(rTE}TV@|CP+-eLnUfFCsVAj;jmmFI&(K=1J)FoFug4evb;b^$k+
zeHqA=%%yu9mpP3(q8&5;*r!6^U~ZKy02EfWDBn(pam|9jXhVLC-UtFXe7AGc_$~B>
z+6}__*d^;zno9-%e?|{Ke4S*)Iks9<4iegU*a)K0bg+?zH2`0saxJszcn1~YCDqEm
zWsRCbGbEwIxA1G-2EJ$s60t@<8v>xSVHBG+37NTG0NjjMJcU;q$&#^KX|IR;!N<G%
zhb6?nV4VL$VSAejn^DmPM1nz(%uUb%P>0yPAjTKU&MdHhOezG^4nO5ey+^CuNUb1t
zr|Y8AUk7;Ts87gpK2Gn{KBhl4Yk%6`hC2?lA7~5>dnb}XUk$>z>H|-0V4fYle9Pcs
zAw+cy(qVWhB?qiLZ#1edoL<*ou1K36syTz#slG`EX!{zPhOLxU^?c)=hJXj&qTi20
z{A9m;KqYF5jQ!mqFda2++XF+o?<sKuJ;(Hi)lcp40z1{A9B_i=a6T74vA08x$jDqF
z=RiDy#y-3Eq=c_9&0%Jn>}w~Sq(dKh=+kGS;l%sA8)UJczWnVTNx=lHU4?eQIXjO@
zQnF!^uSo8L?Eujq&qe}$hO`vitNjjWFizIypw(-F$If@aHX=cQ;$I1KtjjduH-ZuF
z8Nj!*f3=wwK1{SpxlD57l&Wr4RMid~W9n&@^oMAPE7ZwmPm+PDvp{a$<1CX93A7Dz
zPJnN}<~8x&<V;1VlRIL$I%qhowlk-&V4D8&35e=0G+*4zz3bLSR|sbv=4IUjyed?E
zBr~;HzgzEGagZJG_;ACP4MfSDs}A`T!!J*&Xzw%2@Hni9#^PubJBPxqdfZLq^2Z)b
zL2bfMOe-pH+?<TWK8Jiuc96&%c5Dbw9KanKwk{SfkUp^Hzi?{wSJY{-Rp*n<v=hF1
z$tY`M_CDTd_By#l&AFqmLG9}=sE9D<=8+!t;wovM-)TchOG|JfAwfjGKs1@(Nkwe<
zU%fH^H0X*^dYPV7L%M?2x2&1N^i)<ZxfyPc`c)b1D;ab<#|cy20Vuuq3G`6EgS&wU
zFZtON5T_P@`aQjQR)EL?Hs?iC?<P7<s9_i?d{?5i1#&biD&5Xgz3SuD9!foJY-&po
z7BvqWf>?fPY83Fq1>FvsIrF&f1N#^Wdne>GnfVC<V<o@p0MR-~+rWR0Xe6nfZ&Mcl
z^J?;mTr^^<G1L?U!3MkJnL}9@_CRt2JsK0{{`Z37;y|2fU=ND-2RE7#@V+V3Y6^R*
zKYCoO+-$BL2w3B{{|5GmaXhAw`EWBm?16pc^Xms{$dbt?p!t={AoXxX!!)u+NzaZ4
z`8P3lBf=;aRQj_fxnH5#L{VdIyBdp98IlWy<^42ZXQbfgkw<Cd!A4r{4&yn1KwBxh
zy+)K#a(jNTBj1o2iLCjH_W{ES8<y{74i+=Tc5b3kQjEVO2^|0F)h0JqJXEI94()>h
zUGcT@sv_;qoZ~U6x4g$H+7Z6PFTJk9D*I|u1|NacnB7q0P#J?f{V~kYGteK|JAsUm
zpycuEQE@_iIJ17(7Zio&%~u;<o79MpS5ZK;73PbZhQ&L}8L^j8epsFH{%UTMA4gfk
zqRMjk&0a2Iu>ot@9I%c+*ylcV%rM&~!s+&2n5U#L%MZX%wo3vZ<BlZWRe{c(>9?-x
z6weK+a=ydcw6lc!x)wehhhUO{HWrG@qgxd>*>%=0{+-aQtL41RFe(3g;7Uhj0O?NZ
zY*6X=8Q0Be+CvKeX%)UN)&W|GYs#<=d;bR^?BU$Sn}v&$jhUz$`@LUfk|P?k5EaxW
zbcgy9A;o@u8%(j}RnTvixR+#wx?fg|2q9z}Ke(W5r>ue+gGY($PWg2f*Qyci644Mh
zKh1zQ`~ZaS<R=A)plNWFlL%j4Y`lp+lxrSX?s8#o?)lh3^s!T#@#oeJZ!Y1MO{u_Y
zz)%@)TVcuh;FS%R`(WDmMLfs89>ptNP~<IYemgQGO9p|(QgU$xn{U=IkrgzWDye75
zXz>Bpyz~uv0FLkn(wVi!tNr{3{NWz+YPtpgCwFuxJ&rp3CC&E?W8&?nsA3N&i18W+
zU+$k?+ua{N+*`@>57Z4Y{6)e*#>9p84Zjkw8@atE0{6$^vo<?`l~H>&kVzPF|HR@9
zJz=hx9Am)NrwxIjmI%y9wA(AAn-8H@Zlv>5px1QhC_5f?jTPW!+q?;BcJ8KxzD@)^
z)Ir8Fo@f|{Y0evo6UH$YNZl6(46~ry8WDq89}4tUsu%Y)TScSW5q?7yHs5)i{A)gh
z7QiAYoN<bw=~)jrGWAszjlXAf$WX`{4z4HHo|aZ=5@x9zf31pkI^M5&zz4Zgekcx=
zCi`G=l=-q(R}0<~3TL^#!&965?704dK8+QSi1FSv+>y`+Zl47<xvQ;0QI4-@wsrki
z8KD!)-T-rO2J#7W-b^nvIB1HUHA4AJA`n6pOl=mp(hu|i7u6LYp+JU&m-BkdAY=1e
zN%j<QJ8Jw`C^-jvcnggw#UG6>1RdsWLT^hC9CE7DN}zUlFy%LBGn2hqQ*-H>HlS~O
z>{zEt^_4KRFrh{v2^wM$9bic1?*?kN?d1kX%S&wS+A@x{>s5sspnj>L(C#!?+Ro+p
zZKIhMkL+dc^hNB`RPy|%4kWf=Z^D~jJ@tXVPwF-dGs{n!8|iXDz!iTqEX_GE;w|-A
zfIJEr0_0$4)nP;8i5XBL8z!l92Tg*uPx<2lUhi~SI|~r7TmZp+(l1sk<3Lrvp;o#C
zx`S0{#SH)4T88iUoR628MZqYP?I&E9akWE?K-7TX1lX8%?J*eN>F~2^)?`qQu2fOT
z+}~mg#G6}vICnn1X{6g&o=!q87xQL-RfLlP<!5;2PVL9+$FImgGn~*A$YBQWAqzv0
zR;nNz>gU*S=f9zr)25wa`j+7Vv7X_Zlkx<kQvMz}{;Lmz73-S5@E^MjDpF@@;Bu3y
z9D|&jPhv~54rkrc*4*J#96{`d<ziRp5J#?6k4-86>RjfPYrxRlz3Na6$adnmZ8od=
zaeu;4ZuMJ@A;-j!Zz}O{42<YJ@XM#{adQ}M;kJZl>o?V3)7F=-4_0q)P8(Dk*?Hrw
z7qLV)V|Y~44Ez6%jRf`?T^kaEn6pGC<^ufgPF;$3WfNi?UVZ!OW5#Vw1Ht$C=AXVj
zL|C{PRYpoa@<-9+X&!d5DVNuAz24~SDgXH8_)e8>(H<bfX|Nf();ppt5Tlvp`lCMg
zG`I?aqxds@_nfaD7&&S-v+_GBTi>$M#F=LOBOZBog>BhJs^n|F7=3QA6=a>g+K^{V
zS9RcphC=9rcMtM_g4?S~DBc&j=xdr4u{~J`hrE5bzX(V1VKA>@rn)>E_k<6oXCLh#
zT4#l*oqY>%Bzs0&G4FOtzYLWEUo(HeeS!-|Zw2J;DIWv}K*w7VN2nl*tiuLwVD3K9
zFPd9;%F!lUa<juDCfJwuk_1x>hjQHkpNvYfb5u>)nr1?J6p|c<Q-Slt-9<+Nv%%N~
zqnlo)q){$3T59ymq$QU|()K5?y-?__0@TG0iWNl1hbR+p!nKG~9g2bUm=>w!!(UTF
zKz|uG`v+D5rmlnnqK|DDIt9PMd<yI11WENK1OuFM#c$gAc+jd~rbhh$O@OxUJ6M9%
zEkQM#KJw_#XpbMY=Yg(qmXF}e;y%Eea+L{|8IBu&ndS}el|_Cb+AyC?Sc>pf@X_3t
zUNGuuH5-SfEuPT{y@ExC`aHRDQr*jIq<Bk-_r9m~3KGDILkKVkJ#UXO@3~x&q<NBV
z)m*l-6)CYBoRyaeTBULH-*w`^LC~mH)=$9OQ)K_`$gTISY>06`NCc#qOk_$7kUiq=
zV#|1P1vP?iKf9(xNP(jqWF<Xs0wSd6>gFX^I+s%|?Ku1`dg0sZO@}UYS#7fXv(uT>
z4RwpPV!Wgs5XQVYLSYj)*gBlLW{9?2K1RAiKF0a7?c4cnLE+2UXbX`1Y2wFha&+6n
zw-EHLRv~dN9y$vYSyoayS$3NdFEY;^I$_}<;_eMIFCu7K{aU#zU!Wx*(5-lMt#h2Z
zPk+lZ^(+#r`!0CXxtMg(%B|YO6KhuNOIu;{4+qcgt9$OF)+dUW+RchLyJ&H4YnwNh
z-@YJAExf(D+Y1gAS#ayw{LOLkD4LLS*bN0Z(Kl0G&*2X89vdO=-_o7lF>5Zm-`#2b
zz*9vJ!(DCg_aJT_-x6;F)j`(x`tK;4XfCg|o%qBbWiHo*Ffc_SGM;d<wi9VWVY1U2
zi_)I56Nf$b@~q*oGjh5=ejxaUTiH5O$xQRX;EL18Fk3)a2io<n&%@xyi|n18_Q#6a
zT_0{+^EGeG3<5KQ1=;LG89_#}9UV{r(3CN@kb+=Y;GF!Z)hh9fI~Qt*UQ4Z0LL=2S
zgwz_Nq8{rj$V(*dS5l_kDsnuAf-rMMm!TZ@Li>DQ#t|Q#2=^@M6HxUS2=l;(IN{I)
z!I$UuK(QsHZwhFQA}k3%lT~#=SYhF0L#@rMMT^BNeiS)o(GvKplvJ0UVe8UQ8I*Zq
zPdZC4&r3Y{0*zlhV|FeoZ8z?)Y;dQqE9;?sFGpO8risp79?5sPBy94?$9<pIDAS<s
zZ>j+?94}sZ*&?))D%0CkBP;(e<U4)#Z+`h*u!e+T2sL~tBY$$svEXEI(j2e^8!k#)
zSSs|QE#Y*E@pvuZh;WxW%hbL3mft^ogKyZZ=#~8tjF`u!t1E>`wq_&khB0cYD;!QT
z5;HL?6<Sh+-=+`1@F))tsy~d0=yc42u!PP)4BkZ$0_V(z&GbhqL8m~#%Q}ICzGTW(
z`80C?TWVPF3>QJ=B<M|RyGUj}lKV`lUPqk)OVP&i#n0Q5+SpUS_;)zv3<|XYDC;#U
z3<a(}sSmr;0-jXIsnPEvG0yh~$>ssZXk>@gvz>i>&_Kp;7%|?4W5h6GWQw(O!2_(u
z9K-N$mD#BC8?xMuTh=8cf&*zanuiW_&u?r&h68K}gk;&}u>p2Q*#qc~bw@LcfWx!u
z&dms|*s#NuG<rJ@^w^Ciy>a{3A*4CNufs>LT)}uZdEnceig<x~<$2jbNI^_z!7VcD
zGif;~MskQpkYZa43|OX%tBsot1do?#3JTk2G5x+zTcO;{-l-7`9X8+JGqk6F1U9qb
z2KVBVW(UtW+q%DRx9ZS1HxdlmL26!1_kv3@FIQdJu^V{=ye3F~GSLKO%NPZUZ7uBC
zz@q7vUt%i0jWiW`u;Te~*yA8yi3ndA-ilelNXXwjNzR-#^PD(y(S7Io=wA8(rwQS`
z(B=;WpM0D-s{NiPt35Rh+>H+FLwdJ5mKHkXbS8l42moA!6Z1V%HbjW~!62oWHyyp^
z_b6)X-H|^fnVfKwZ?rb}9_?VoB07V6@GtJ(U@_XfTI~rxbYOR8VzJV+8%1ekU126d
zd9;#Fii^T0${6bGsuPcE`D?xcnq)DWIRvI!WgZ5@F#HBdo#5hZ9pH0YY2CUo`%+wm
zZ*2&5iZ*ralBA-SYFOPZ1wVcxYTe3j3=NL#0GReDJ(=S|Pn4H&qXr9AFh`)nuTOXt
z_~+Gsvx$8a@Y=Hvj=CYq8_;9!>k;v8tE7urgE$QitaPm~4+C_J?3*wz2Z#z@DYo48
zdA)J<gmk~wdbNJvYF);|VR`zQm0{5<z3&xRzM0M%o^b)}%)AuXAn1V3huo>KGbozx
z#3L@H2f)qha}&GVQ@s8)A^|@odeuG*RJ^UeecS8WXg7)59tyR<H$5YfC}6C)cR!fR
zUtBo2fLnNWvSa0b!q?5}3Q`LO4BAl$I{e2_EA=O~fd{pZ%wJ6YhjGdc{9(u-;$e!K
zoxfu_z`893S46|2jcF@9KxD6@nQ$pmct|L}!5(fN((g@(H4}+kp@J(+NeD!Lc0r^m
zpv1Nze9<ezi5Uz10ZQ7)%(8P0%G3Gpu<|EtvY<O-sPlL}tm?4@j|bxw1DJ4)I&s)W
zj)3y{Y6UMS#ZRuZ=*nGzALf-uvBdb$u+4EovGiZ&a9tZx!P$6zA&L|e^aw!%7*2Fu
zp$*`H;OYDDtD9?%djb~j_$$)pvwfx(!r3>YEMy}DFxkxGJ})`=3MjPQ9<nLhgL4@$
zv>&=smlrQmU){SeZZC)K{)T5vX>@Wryjq+>=3b>(6>|Q*ZFZ=Y=myV3kPI6_g$0mR
zP7*x(5-sc70(9<-fMd_{U(JtQuD5dyI4cSLo*@5fG2z@+QqdwG#C8F;x#-QVX2hI}
zB6h;8A-#^1xOi<Bt`drH1}-}mTzKX>Fhk|s{dm^v$9ZU*HcJHFEjDMxmN*dCYg*&x
z<24k=H+<BLB}W9%e5-z`yW?M%SHqqR^wXEnln}Q~o<(@*Z20cgeMB+m<<N~=vGXTJ
z$_-6iUm-966~Hhyz6R6BwO*?8hU_v<uzl_v!0tKx8dFqTG>x=bMvlSczF9LL7dj_a
zvzjoE{9lMTBo;OZ107YW(o`)#<eDzRjLk}C97{NIg}OBI7;z%npYmjBnm+h4LH-!z
zzf~$IG+7S7NP6VntPq!O<)h2#Jz+~lD(~U^Sy5APZBsFlMWsxi(>ANABkcXb$};B3
z7o(n`9^wxU>_VQKeUxyx;UIbg(;NE@K1_8+EAysF5Bf6o0uI{u<(G|-TRHeW)N#iE
z9zfdsDv&Q<l8}>Y?~|`#dEb>9^?I(SZew?0i;Kxv$W0wHeq;YjS(dDtyx7+ytxX`A
z%kJq|9b`qgN3C6<j)WIE_rqxd;e_8kY-=u@+6NZkPA>=-jos2-vow1qIrCb@G{;&9
zpL6A$S_5gMwEm1f#H3xERH8#2t<vZ)uPIx+G*o;rz0$$Gy96ZCkP(rt@h*2<fCx=X
z0<Iey*<0BNLb-N0{=}Hy0FbWI?37s3y1n-VfM8PU0C{|8VjG`oK^hdT;X}3fmUyfs
zbm^383<aNhvrAfnyKHwQ8)fPp+~b0K?EcPELF)Br-{zVsAy2|nROjaVvsJt;$7G<F
z9D`8aJwHni#WX;l1le_I*PdIO=HfaA1)E|qd^5La)J$bXC8LkF3Dp6@-423Oag)x^
ztJUL`$3}5_IT`kgnnj3Av-gZlPMU-Xx!uX|8WbLsDsIhlTm1O(uBBa*@O~-2>~cSQ
zV=XY=-HkR}P|~bEH-Bh<%@0}3q5sjOif6TzKk@?(>5UG*PDm50_OQKSJG1P|lg|0n
zu&HAAvty8Ez4CZdCKOL-ZMVBgEJ+#Z4mORp*|>J2=<S}4!?dB|@mc6d%|h?9-G-``
zO-aI+*9gU0q`7dRLtYkF9xr>1zpG6bnQ!v=;9Oh+HzB(uHi^d|7QRARi`t@%dybb!
z{LlE!8x%sX@WM(tDmgv_?y{ZBnhvvg3mlrmX6C*?<waM@Mu#q0y*Moo+<wAD@}<Dz
z%mPoIM(2(i3Q3KYbl&|R=?2%+!t47u!c()H=5N-1HlWql+xl@GcVpKtT)O6k9Impy
zJEP(<+IYHp)%dc0!Hu7wv}*OYHmf2g{1NWmz0XDF6S+nvvHoMZv!;ZU_rUS;d{}>_
zx$sojH{dvVkyjTTja07{&blj}I2C917<F7~{t}(x6-xdz``po~GaLOCT4ri!Na@rQ
zG^P{X=;wI0SA$_);kY0mAkWOG>oGY&J-nAw_siVeBmXtEPi;@@4FU6LZ?=4O5@ysR
z{<-aoQiUH5O31V;DF;US9+X4VG)HIqxiC?5bmR)Q>M4u;yM4j1Y1i$X|Dye6A3b(s
ze-&2bgF^1EkT7QYg^n<{WPpx)?V>_;@jgzt*=QwSxj*ZaDERR<l}N-?(E2ISKJYV-
zNyQP2V^T&Rg$VZ!rG^+I_~>*Q<BwfXc3LZ(b+Zzeq!v;wti2*Z71H$^mDjPXTOSMF
zZD$<>=-pf{a!6{}U~@((e7H5p^SA=W=!Gzjxtrh%F}bh3e1YLJ?#M+y^J`X(j!Cv_
z9h2u<oYb?C#-i8RVbhQfgbQ;IS)V=O)aL1sz^Oyr*n|up!9kd3Xw+&YHRxu6C?G*4
znc?bduNZDs;;5v??bnZS#agqocQ12g?(Pmf1yTUQ?lq*_y!y&s>O$G`B$9BHL4Us)
z*#S%kU55|KA|->6s%tf|N5kj)eW>QFg70p5k<J};A`zy(s>mtdYSHEFTD+5J;2-ER
zsQ;_R#%r0Zb&Z0z5i2cnn^6CRI=Xd8;NkWtGTe<!^usiWq%cz=pMl-Ketl&-KyNl1
zObaY&)->_ezW~apG~4w-0x$Jb3U6O^HEZz*G8gb(nGMOD@TX3t0hs0!7(_25L;Q62
zfGNK4oDVcMqFySVh{r>~Cd4I~yb3^ExgixOEJ9ZNU7!X!SORdJlKacm3Qo%}c|3c7
zLVzRzRbnMGu$`uo^&@34_vc$368#`G70qPo0KC1vX~Ae300kSe9N1UuA<>;&L(r_p
z*F#ciwDx8nDle!INZ%jSG*32A834=;Ugvr&K8iF+lcI-AA1U$}FeK%bS0IN^&ixVB
zpkUk}#F`HhzCJT~fkdPUrj64vJ?N<clx?ekv(sqM`Sn=fn$;8JqMX;coVi*Lk3ICe
zuwU0fdDL5nC~^|Dus~)bLD-m#QRI!(Wf$y$Y<JnUSfj|d*Ed%}pZktMZuqukPp0hI
z>WKgN$6J9#owMcDth~rJ{LIA!gAb%3?05EO%twh`wq^&yA}N<uCGPZ;p<#K*5^2mk
ziJ`l)p6H8|gV%WQ#sUs|zh*iQQ{qp6q<V`$wC1X!SM^B`je6#x@^1l<%wdvY$!uZW
zR0Br3)J<fby$A}w4pv-yzX5>ZVM8PL8|!Av1=6UScQ1?E1JEb8v^!nNH@(q9{qqD>
z?=~YXKE64z&o0Ds4qBuTvK;qR*<;*r^*deWD7>$i*RHVL*=~q&n^_arP3mfS&$F$<
zI8XEbeq7TjEZ}%jx&_nd{zRtFV09wc9DAXW*<({w&h^&>f(4$@WjnRW-MZ~mSb8oF
z;&{nTQ<7j5egN5G{oSvlG=bNiVlP>Dqx7!r!(JE|X_3UnJ~Te8tS%QNqaYpLt+qAh
zSEm?WxC-}(8;9x@S;1Q^*nCJ}{+Y@Dz|$f?+vsk5`@>FVr!Ye~g4Uf<K9B&?L!?I6
zb(o3DEw%3CSvqtoSoHuSX38>Z(1B7P2yrI*Wf)&V7JGfs;_3DZvh7-QllnwKYZL(n
zg>(WXQ?|?N%Yu~g5)9g-itpD3ymP<1*cUDlkO*~MXfipO`cY5?Bwh!V0^qA4w{ZS<
zn;)Ubv-L8Int6&3CGP^@hd2#1>G=dc@-iuS{8kt7@F2S3mfn1r=0V}4{k|KXwtvQ;
z)#jb2i=y8p3m4dg>l*yZHHnQm4%7ACG^0!egN=P}J`WPwq#`2nKFjgf)9U-f3kKs_
zD~E;I3x~yan9V&9R657s;<`EXBXN<BlE#jF^5svf8^6!Qx^NJfA_T7yeA|!Yb!E!s
z8E?r6Kk(AiniO<;9(=h%S1!?Ki|~C>_kwY<5L1L`>w~oJ2c>c;e(V$<#;%xTOM6<W
z$Ek)BHd)o_T(hMIZw(bW_Jc}b#F=|dUFhUa=kkIOuARP-x_=wN<8dfd(Phv5x`q@e
zqgpJ)m6*l((UMQ{%9wL(Y}p?#2{Tqnb-z4*pb)+0M8pMu{D+&?K%+2|@+V?KoR}}m
zY&hYYswEw6Rh0Q*-R<pWftB?3_!a11FOU|RYP;X7GKU>S62&VmC$+GdYwWzrWdt}W
zeTj%svDFJN1<4fE<#5k$ACZ2sWg{(D;azZ!#GLd-Z>#%F6n|LFI!PSHCA}kGA8=H4
zqUTs|POxxQ-ZbOVK&1Qn#|r(|Lix4se0lV<kVv^}ae&Lu?Ma<fT9ti)amgX+@uyJZ
z0u#Fe>m*8T#$!4^sI!eUDr!S7cwLb0TsXCJ#)F~+Cn@|QF{1HuD>Ixuv9b5!%}iXS
zZnSR-2nYX?=ihu;x6L(P%t<iw({8y_aT9pu;sX%&xtBgaX*|XbFiX$#NA36f3_(|7
z!#|u=eb(tsxcK(?EhIkTSKfyTr=%k%5KtCH8m4MVB)0l-xGn5R%AJOo{ngJH`b|HL
zlPpoEv*+5_(A2GdV0KA9`Kl7AFcCQ9a<=uJ^o`HBm_%)(fbj2rQHG|ocXHRkn_dBq
zLtL9#S|S81=m&~Jy^*AMY^a3Bo#~rh7-J*p!hChXOtBl9I=Z+!m6dO+-KIV}LBo;Q
zh;B`AS2s~NrtX|xHBpQ(-|wijm@=tEhQD_5le(@Jnh#;y2!X1;knF4?a9)N>!t{lj
z`5i}PDe7B}mibM#$d3&cWqCCsJ(jbEKP@YPbgm}brlxd&Bt^`U{u-~{XWo<_rY~<t
zC(NX7LSNV;2dNPF?Q%s^G!m%A;4!o!4Ya~g8N6#T^RbR;0$j?C*%C-#N6bv(jnBc<
ze{Kc~LvCh)7l}}i<4&hEu2^zPhWdT;ZA|uJGlk(3aVOf4>^pzSbw{h8l=Pai#g;Ye
z3S%Ax>%l^mh2G_1W6o=YS;aH%<2P$>kix3F=ATQ3r-fN#=m<BslQ;QETyz}7Cpz9r
zd^ZjaKPgp|f4>usz;hNyAkItYyZ_4NiFwPQ<hwa{_e9o>+L%U%5nk9OY9Xr<>%~{|
z^nK2e4&A@Mo6cQ+oAcg4gHU_>*U}bCkTdJ+;|v5_n{j6i=Q8QBDp<ALIe6g4fidS$
z#6RM3dtfSxUZEwNVX}o^gMaoq!+dG$ctUVKlV@!UaNqj*qwVq`uDy{o1p1xP`NHZH
zxyv>m6g4UBH9hXi99U+egXXB$g*5Wh2I2FhFr>8EOa-B(cPqii-l9)q7n)qNRkeJW
zM)6Ka){8^9&)v+;K*a#>!^kyiYt<tL1!v;@nW_TM?Jjr!7i-w|C?VO|AlPZ4rPG(u
z5|uX!HXFnwh;eIWC&W-vBX;3R!OZl+1m&PpsMR5%31Ml|c`tGKmTLOMCa7wQ*x_#U
zc%Rf;PU6GBhsRD+;hkN<xkb}ScE`f#B`zaW`S~+omu5|2O8-z-F4n*dq?$m*EQzqS
z!AjLqSRkS*k$-FOGR&6*E^ZklDzml7_dI{StRrFGPCgh!#yB>&p^jwHPJKhS{0pwH
z`}icP+ln_dY}Sdhpwt$viba;7*gxk*f;NCiwA+GMf+iOVy$vm2tb^GH%VQeOkVS==
z!;pjzJq;P9D3?vA2ele%mGnf`Y*Ce*2q!3P9ujjRR2nm&ct<GJh(%2A9$MhdIdxpT
zS$tKAhcxVvEY}!)Kw2rhIcGlGdH2kaqy0P=;bp~O$#!{D-0I;}l7LAA%Vx9N98UBQ
zH8maKl+C+3Y@@#|Hnd9rQG*I4U@slIZ<?CLGbvZ*33gpj1)!ntF^2}U85UbC#4_Ix
zqI?%2WXoR@+0#jV1-lzw`y{gtagrKTl)mlBkfujzn!tCQi)5C|ktlTDcI9;m0pq%)
zD%lTL?s~Mds=?8^tODFSX^9<?v}+J?;@SigHv}3lloGSg-+WTpZin&>$A%*!nT)<P
zGfoKWqAAd)D?AgatktzgS;jRnAn>_F#`D1Grdb35#!L1gOO^8uNG-NKy94JCbc{6-
z@|d!ZaolQ`vhKPfi_8>6e0tQZl3N1UJ6<KJl%1jh6>w{R2m`NWzrGiP_>qfuh1s;F
z0-eN1jI4gm5OkAiC%*|Z9626UN+0o3ka2cnwE`+q_OKGlLdxzgXz-%Fo;<(ad3h7U
zeDtQKE}0e2hk>B!Ihn>xj=iaCa)Z)5yukzLqmSxQi@sdPHcCL^Xs!qz9Yjoxq>Zu{
zvVr3*d=(UXbJs+%g?6~!h~=ccMEHTP>5BSjG}FiXK$HCS7;2gZu{vvwkWD8K!uc3u
zos{A*25pU$_6I~jx+gdDReCYQ33wk1y()fbf0|liMl*GaIKIolbRg}f;T@g1AOSI!
z((aUha>1%8{e{_jj&>=2Bwnh1s7Lcv_3&>ME7+i^S9o7_CoA{tE<WTXT}KM)ihLTy
zLxZ?W+zH5O7Z$~xI9f)N>(pCOJ@p+k8j&y&*dt5(Hn3H|2VZ77Bd)+8;XjY!sO%gc
zi8HWRKfUfg)HNkJ{fsob<5N$MjWwUgb;OTa!%Y#h$Ot^NLVAXm50w)!!x827j=!<-
z`!uTW58jPAO6Mn?G|L%3B!vrl88H2v{3&7aCK8h?B+)-bhgId17irvvSE~dDrA*SA
zWC)NlaV-cv_vs#Sd3P#DTIGWw$J?giJn=koLiL#NX5u}AwZQFiZw#4=mVGR#%FtVQ
zz>7@HKlzD2+A#<K&Ji*g(zQ44s<|-yufUlwo{Bpwx<I9M(JB4gS>l&bvffZq_beWJ
z1mK&v3B@+84Fc0R2qWK%h2JYk-9od`R0UvV2%e$wZyclc2>(uCM(I0R?x^B?y!!=(
zzxRTYu)%2we)r*Qd^n@>7@wbH-d3)hOQn|@e4VP{sA29^i&6vOR#YZfL@y<j#{pLr
z#>2lm1p~OK7Ucc%KP`65KeMKS`4s<ol9yaaupch)rRuYHZBlwsX0T0^ruE&`bBnP@
zEg;&8oroqfE#4U}aIS^;yYB~TdP2h&%H68xdBqg6+}mV_L0(7ZPrERJNOx8=iD1(|
zD!z$qL*Q$7C%nK)AEP^{j^|(UW!Id~H7t8-hRJK~1s6C;z0&>^>)4LoI%EZ9h1NSG
zj~ceSR4ary#`v~Xswi$$j*20Pgt#n_zX4FmxKu7l?+(64_?NY{zv>QCN02e)km|Sd
z77E;y?>36c!#d8Y&0<P*f4NKLpeo;Sj-k>RiJ~G(MYfw3J8#;Y@U2z!*bkRVOEUcA
z<x}U|nIOYKr(WIw?}%M^bc3<EuG?r?W#3)MQ(^{_RswPs+xiz%+U)If-w$@`evhv!
zBAiUeOi#R~J$Z$)*k@y6rFd$BKiI`{W`oMmKYlXJa$t+L;i<&S`fLo%*ZH~8eFBSN
z(8D+El1%dA^;oWp^_yl$4=wLdPZeIA@t@7<f45%!f{z9ar1rj?J%00C3l<s};%cTz
z_frXfE$AaDw>-8JDQcw97%D8bCYeFVQ+$H@f`}9>D?)2xXSAu7t(+tp;!(tMjGuE8
z6|hd}l<8r1haNIT@oxV34yqy)>$vt3&8s)0hg3TbI8n;zUXeB<o2Y~}8FDUj0pnAU
zu|Nb^9(-CS6_dAA(u+OB4$CV_zSS8uO6^&G9F7QLQZH7M@4#0g3^iWB*(Sucu_f4Q
zBI2Tc!>oM)?R8=}y9s`>jhfhMyP?Q#T5@PBZ*k+}+yCNdj2F(E1){apX%>Rasd1~*
zt$kw4?{mNypq=ZdM|dW;<xn-0qph<wMg9EEV&A3WZf?jOvq85LPU{xUC>9#w@4D)u
zy4f;=o*Xxh(Gw=4Z{DKPO$^M}pNV1TFbrbe^!Vo}!Mr|Q074l$?&@iMrq5U5zS~QK
z7m#aO%#g=KQZFWIKUs<{!Y9gZDtDtFj8iw1iO#5}S|+=sx_K(-;rVa2@!NXuyprQR
z7O4X{K5i#&+KTF)iq)tX(PwG(t;tt=ATmt!{c9JN-VDv2A0}HvF|7$Db+5nwa8Ndb
z4dVVCHdJD2iVWKwVfQP2AzJgjd@1WiAgf_tEoDYTf1j1~`5ye3^ZUCCy*cUO>nR(#
z+OG~=0_AXA57V~UD;=JU!@F~0Qw%92Uw_w%l&<{JOO7^d`!$ex`N_CVI$rW>wnpSl
zZ9(@6X_jP`c`LG*ZpetqJ@Tn%I%b`Y*F=2_Oc;J*S$E{CIyoHnmY{3&OF>7FA<J#s
z)nch|l2NTfcy^{*!`lj#{U2Mx!>=0QB+VB)TE$3#Km<av^JhcMgb%{;6F!EdV84-*
zDz`&%1$nim?&N*9)!4Afsf7EW8gX0$qFFim8cSu=Yu5R<nrb%^6a@{2p|+jKBfK_%
zL*{MtX@9OrP)<bRbKbF|LMy6w{VDBCQb6lic*bq&FXLDN1q}3HwTVyK0SXj(f*x>1
zWSO-Hfz;uAzY{3VHMG3C-$b2!!7BZ}B+-|!{D?gKg-AA;&`;{zloc#ZD%Mw|5;pwx
zmru&k8FXwSYu|lVsx%D^vT=H&R5Qkldk3yE3@!k*TJ;F^1vUlR!7?<18M1z1-G<JO
z;REl){)Q+}a47_Vv9A!$c%6m8`Gh>8K|YQ|*bh-sGk-uR1S-y*3MCPGN{(J&1meOL
zDSsPYh9n@Ay&o{fMNd{8l}V$FTyN*4FB?|HUo9>%_f*kzS6WDFt00BZV><Zm{i)YU
zRZg1H)Ecj=Nj(x_yxfIdMIrcD(~-(%6(&9Gc*q`ATTzc&sdlua@RfKizkIi0c`76>
zvT~TU{KbpTOSb38l2ZvAYFNbv#a=+0*3aSmO)-wPTeS))aEna-9p_JSAv%eIDfGM8
z*T!$?CQ%TA<eF=W)?W=@ICl-0F)S>vG?2Bk-1$i7YWg_3@k5B*L_Q<p;%q!GjQ%7i
zYuuNf4ayPQ1=}VlM<r#en#Jqg{pC)7+aDhP`9s$bM8?GC6SgNdlYVq1qI&a4GcsdA
zEbkO3@xvB8tB|(xiNxM8dDq6vJ`eQpt~P*2@}ipnZM30JC;wcb-!<z>8>0$7<yAS_
zBw+-$=8Cr{H(dm=>i5+zPEoq^EV9}Yc1wXrsjqZi2Nz2`mG%q`RF~;^r-L4eB!rK!
zbV|M4zy|5+VKsQpmmh?F0v_QA=jdj8+Q&h5^+y_~S+g0*N>Q&w1jy0-woNcN*Gax(
zP@t&x*b9OHw~&YCN6svT75P&tAK~E8%c5{P*jE?SX0Zqb^y+gC#?v6?Qs|S>XdLFh
zN@K`6mw&#Z`}Lhk{2QSt5jTyq!s_%rkV*w2Pr?{uE;*d>j(+j6fZP0;Rn|L)<~WHL
zmux9eNIHA^A?$r7(hoFZXNBE5&=@tbsWE+i$cQR2lNvDVkF%1HTodgdGfO$`Fm$AX
zJboh})nb74o?OQ^KhAh|64$HUfiDB2Fo}y{#>$-Xt;R18=a+iT<U>396512BLE#6{
zpmbabSH<O7li%&&K$eEM$rw%Du3R0Z2ED1zoo}XcCu=`8{Ma$DYcw}LHXdk6T*;Xs
z^MsrDS$9}_P*(UYPd;e=G_m2U^K!D>*Bi4fL|#w(&7!QMXEE=o)`Ttn5^y~Luc2re
zL@KrybK<oN4wI0iY4<-CEQoW3yBrM{<MLk6G8x|uC3=g>zk~*WwgEl6%5XEInIaC!
zru^t{)edTmqWOxBmz*6>R)IY4K!>vu-|aPmWPAkIxv-TfJPB{%J~-t~fr(-gXj|Yt
zp&`+|0BT&}uP4B*VwBo)$U{Nz1P4rE%_DYPn*UzitR>m`k)svY4Q*8(3xBgG`aH=}
z$h$p2-$|i-actvfCIN>!x4BXP3y(7I{)s*PMl8TW)kI&EsvkXoK{BhmTmEyaSJYGT
z=O{`M!SbfZ?}BNc&J<w7DR@)oQ!CaLx_w|H41&?lg2pc#dXOrnG9iyq7VO3R^5sE}
zp#~>!o(Df|WsoduWqtDzEtsWE6^nDpHv@$OqY?o|f+Ff=v2l!f*XdIqu2fti#WxJz
zNBL4@+9{{hRCuMOqG^Hznc5yyO`L=h^xw%4divJ-qDcp=s4V4MBg1WaGYx!<zu6u1
zv3|w(i8J{#3qV}Ld<<(VlyA|9ri9D->4EPzi-u}7oYC$`q*HPr75Xf=_f(~uCXT+&
z2;xbVX!j$#0L74~Q}rYh_5&Mh+(hZmXIzr>=vf14m|^9qvArP(%4w+}QldGWc*O?a
zfB1K;py}IMWCc`a9R-Rhn4qbgGmh1WYhpK{a;S9IeYTcgf#En^u*ddYgL3R{LR}!2
zudM=$bJSBMewVz-XA90kD{TG7nvFz2gB~FG)>r}il-Ph)b0p43$+kmzjjfnaIY}yP
z(yh(|5sujuc|j9lV$l7wYw%EA1S&ChxwpW)e|9O-v3ntMK{BawA8SrRiSy!yy3yM_
z9|Q4@m036K0b1JwvmJNlFmd*tY3+gO7()|q^Z#g9|LccWtk>sy&92PH^(|y?hOyOe
zq@|*Vne1EMCPzuUoA7-q;IZw~)rpEdxlV`OBXp9uAsh}tPkPNer_YCKgM!{{OpZ1u
z(NXg@z(y*CjE=B<g$-+gG+M+SaVwIDKyRBK^USSQSB4T5V=@EpdUPbTk|FiOaW=z`
zw<^f>@Z^5^v@=<imA)5KZh>L=yiZ0@Bw<X@@mk@URHMFG$wfu{iXGCB;!RtTbmDHO
z*iSdVV?bpj-A*`F)OvCkHYsX%u356Rt`v_xTmV^janH}@=||8a_g`0}SY#YA^j$pY
zcs)41nKHhOyUcTh5BmlO;lj%d(_OZnIpF!LSUW%X*QpjMl`jsypKkI9QBD6S+R}om
zh?q1oZ)CXS5C!tcB44u|^wXA1%zrFc&90kz|6UivAtvE#Ol)01UD)nR+APTLrB_Qm
zs&Av*eq>9okHx!*_mep(4*s+;%dw%e>>`%esH6H`m?tck9~8!N=o5##OB2mEtmJX3
zJ|jfa;w~(8!-G&VH2+B<w>dRNRsKCmm)7%ZUSEp_iD{PxiVa5d@oE3~v%)lt)xhsY
zp^j_0Gft(X=1S69hIN=R)$u~cZKI$x32KVyc1|i!NiCNfz?Al@?ipxY31~7=*69u9
zOoL3{pJi)3M$zv<(D&nqftbtEjyR3aQc{j9ft2J=DgE&6Cq@I8B{{k}eaZwa6GE%x
zDvruH6xEy3k0aU#Etguo7QRvvo=(0Cjl;5JjeVITJ!571Rnkx`;cpmc>-X^1{hGxC
z9d#w=_MN^Fbc0(&XT8mAN`^T?g-6>oyqM(a<vwSqdF4u#AFpZ!z2q|)w4M7<bj~Ej
zlgqUR-}0!P7pw^!w4grHabCwNVp+vrM;=CvD3gaAWxVhr#h6Al{KHH4O%sy`^+LW_
zkj5LcSI+lT|BWxr;_DRp53PVn8OLB!y2^Hk<OsKk*Soz4LXHulBAFnUkPsZN=d{Aa
zqXAxv6hgv?h|6W~WF1W><<Z!R<665O-Oq*sF^^T-MXnNM>tc#S-28@Z3SJLiUY$%<
zg~o=K)9ZM*V<6=3cs~(U(VXt0c~@9W0l%hN=%3*veighMFAq`to`T%Lx__z}j7}Jw
za)xz>Nn`n%@xyGEndoZAKEMpN`g*DMKcW<iy{{w8F*8r&@+wzNd^<~o8vcrnh8*{W
zYBzU6r=e0^7_qudv8F4Wty<Ix4OyYEAM#TbDpc{r!`2s~HhFI;=n2!*h4dOTO01P&
zPRrK75yt%{vfe*(u~}HCd4<iRe<ufXtQpwX$hM@vMR_{lB~^(CzL#y9@jW<aasCb>
zs8G^>%|vKGJAPxHz^*fO(w}mZ<f4OU-RmGQYsNKu@(-x>XW~*4w554jc#rMg;L7Kj
z#9N(F3mvEP+6xyICW;2<Ck%Pr?<JDMest-ZYjGwN{}_P;M>&tg8nz?unqFzDO6d5y
zXkz!WQ*1q7g%vyb_C<m+!t?!9*5Ozd(!98FChfa&QfJmk{K*y4?IhY|CuJ)xNkf}^
z)CZ!39sOIUdb_L9^);HU1|`+Cud<(>d_@4$6<`nDN^m!4)^I$YEG2Vt_l?*p+7>fT
zN;Cf+UlvXtp|p`1B{=)K;}uxD@j@(W4BiE&yAfTV7`1#Wns7=0f&aJ^;^GO9L?|eW
z4Bsz#-g#aF5qk%J?y{`<<F(vpQYRzz!lL!v>bgz%O=1oBVN%63V_O+R4dZw9Z>R7V
zvPWz)g|nO7qL=*#%s0w`EuyU<%ovSXD9LRw`?%Vs<l~-4M(0l_Z63=exCw?N0=D9;
z3#0N6?VcH{Z+Wtm^0i*eI4V{vvF;X8<iaxW<Rz8OkrEi{DU~@Dg=S`new~W5e7=B&
zPq~kY884Yms`Zm0DH2^vBeGGqi&Bb&J!h@@OAe8|sytQI!ByrxPku$6ss@p$ul>8#
zBL+LNNf#FbMX73D09K=Nmwxt67Un-NzA4M)S}F|TP9E1D_!ER>fjcViLBI)m>Ym^K
z9)nR+l}{QyK&~<3d$6QThx9RkVIoh;i>=LtGt_EJOjOGd;mL~kRv^10z&BD=Gm*EA
zON()$v&HWUxC7HOQARr4luyDik)$5QdffB=yx25MY$>));P9Hp$<E8V^t`V15E`D<
z;~1}Ci-2UwyJs7fhjO0R(KTX4_I|Tug>3vG2p4Pww3>x(GTffpN85+B(l6Sf=Y226
zS2AJ_h1(j@Q54Cdj8p7K6J{ex)oJ#LNv^YTAZp6P7~LRXsSOq--<}~U*GGNwTT1N1
z!kC%>X68fqo?~l&AynENnqw!vpG7$a!6y(Qmf>&KdMU!NomFC-3uEB(o|1G@79se`
zL`ly&X-W2|GWc#K+tH(mH>{|da#fa9Y4^;C&5vEs6qd_zQ!1@}p*5gl(9BdlP?}>)
zEiau&8+s+0(>%e#Vv%nps=d1OL_1=WxX@so9hZ0>dW@N88kuK3*2Q#;Xj0CKj5ghp
z{!?bzh-cC(rHF;-zl{ytMftn^7Sh^TE{UFa@mjhwD<)nw#;N?Ad;UzOj?r&Qw-)Gn
zW{qs=a|g_p|3o$ZM!@;C_KQ4f(l^6c@IU)Xm9}q?o`qi8ZY%a2c9eD;<?CWUb}8KP
zk~`yeZvC4TqQlpssy{+XC6xM-moqlaaf)w*_H<sra91nB#N&Sml9rN#XeTgvwDNqK
zo6%fsc5kAD*!goisP9}$O*LcTdw?X^%cno-d?wAj*mWaxLE7z^AJN3plVxJ+<TJ@B
zOg*?+&hB)L{gH~Gm3`Lg))viS)(Pu1p*VA|oXsYQvmQD~x5TshlOt~ZNWM7EQC8Zr
zQu57r2Uv**<eh9P9EpyPidx0c@)BF-GSwvy2XSRe;Dule&Tso(rPSLG^O}$oBO`>Q
zzaRceCMhsBL9ey7+J08ua)PRB>D{TimAV<EDNr8k%}s5i5fF+bV_(=<tv>kI1$!;{
z2*Kx;h*JM0l5_|h?QbF*!FI)(wn7SnY_-dG#ZQGa1wXM$s}(xEpQ7E?>@b~I7jqjx
zV2mSio;K`)V2@G7$98SQqT{yMwIg_3Mx`-m)qk3S)x(I7RV6hzr`trNs6;@JEUbp*
z&>YvtM~;WF_Nsk+1+OQ{hJEN%_THC}(-^&1?AD1(OwvcNw!K`Ln+vJ{5EWgHK(Z!G
zktA?GQ&{eilBX+vBd=HZK|MXsU9zr_*9Q;Q8tt9QWqDfuf}M4Qv8~!@VsXkOIo_@X
zUC44$x~IHT`up@Wh;gD1Gl<NOzchpH+1hp3zb)#^yj*|3h1vEabT3)8AIp+Nf>Tz1
z<}+buAL&>3)GYD}6_fwAHmohAte>l=Pe;<e>gO)!!p~1tj0fgXKF&x&Jhp0Mc*FM4
zGg7aZ+s=byUtsHO!xVlZcT)8*aDSO2Q`16HVm*Z6y$240+$b8<w~o7Fh!)l8J%S!w
zZpHt9=sL@Qs=n=OE20w84bsvLf^>HZ5{GV)?(Xg`X(XjXIt8RlkdT(<(B1JaZvF24
zzxVn{LGkQ!_F8+*F~@vH$&daeEmPV>4W>K=FUaB#^p__LCr?%hI-a{|Ri`|p=w7na
z+o1g6Ue-Vk4byLoJoDzSSWjfRfHrQp=^CXQrLNY@Uvi|Gb7l5MA^o4T>y*!vgI6ud
zhm0xxZURT7V^l?ZDR4Yeh@tTVBoP;k*qS+-gA)Y~S6w!zE)5zz?yvTmf%BJlOblKs
zuRFtxkx`43HwRISDYd^zi$k^Ur=p*?)&z_(F3~xb>reZ-1ig9V$0^0`5(3lOo<1H6
zO1{E68ix-A7os_)zbRc~;aBZvOm=;c4n9e%N)L=e-q*KpS!!zhY!%8BIZXeeL%DKB
ztNxZ~@i)t+2gtj<CN@Mk5I;@RK+K;9!QMZZTC7LT0yBkr`7aB;^%eGD|1_jf*Oh%o
zytbW4M#vb!N9Y}sgf|G>bR|?Q;}=^ii7|tIO4>e=R4HJhoK?Fjbb0$Z0-tq5<=Yk=
zwn(v+RB7s=bzWO-euE!y-pG&)QKp2*wUbooV>2;=<FSK3cbBWtH^iP1SR>DnIR!b@
zqN?f;pz&g3`b%r>jNP470`ZfGz5@q~-#06q*R^J?&1tAj=^Rzger!0HAdFQ4iA>R9
zeflBtyelIvGfi@Rt-dq+Q+wXD-NmTNukDJNV!SM|qjl>gGDMvwAQ@&%MfzxFu4dX+
z)rFLaZMMxF;pF#lMLPwv?_YJ(GuQ3kf1ASldv^*nslKzqzDE$+{S|$PN=%Y0#2+x^
zFBlNgoT#0|H>=l;WE>g?lDIzZ3N~bWwj6#WW8%mSOaFGP#OHPE5{-ggSjh`VYBZA0
zr4yRFMwNhLn>>3o@LtkjMz%lv=u)<Kjg+a~BEc<XV1OOD8x@;X-8U_?1(ykDo%xE>
z+U9M)0L-5-g9P&z>58A%$h7Ps@<X-O1SS4$g|c35k#Cbs#Jbs>Sr{A3)5hzj+z1Wv
z-Y*R0g3Om+@YA;Ft}L<&ykSNgt`tl`M<reS7ZqSA?APdymIO5k8@#A$IS%IMwZYB1
zibj`Tg&vi9leKX;Y#B0jw)A#-^g^?vj$ZwBQ3ZLLGxoY44#H>B%^9cdIM&ti|D#ZQ
zDxxPwp3Th{q5y^Shhq1RsZu<P6ObaI`_eolro0KiEY|=2=oV;gN7xrtO~lSS(i#qM
zE))$QStj?wNYdOT$}}oqjg11fd(eOFxjv<oumbM07q29xS8(ho#j-KPA#iC?ut^C_
z)65PjTOMd3;W0G{hrK*b9DXWqDIBUe1u_Dr4#)HRDYRG&hQ>gl)+ptOu$88v(b*mL
zWpKr%_1R10h?nagLk+z$U85k`2{W4M3sDPDingM(;8TuXu%i4KzzJ=ZSM~hX(|cmo
z=6aqqyyE(c5Cn@&AA^CQZq4PAuU`-QaS6DmTaSW3VhDyKUs-RYWg~K;MT9&%BX_-$
zE;qVi6W1FZRm0xM43kfsWEiHG;HJJfDMsfls^^-<bkk0B*q=>=ErzBx8>j2*!E~+w
ziy00Uj*hOIJOf{{c;eg$ZKR;KTt0oqX|X`?V`tv+pa-YlnaDE|vu<bqL|NWd!7Q0l
zQ<RagQd`49dYVXwc(X5_9dY}hAC=0MA~NCpLCCY^PM00kCQHklFtlna7MGMwTKldZ
ziDMVf*LHGC+&up;^M{e(lW&)h+?Cz|Nc<3-Ag7RN(dVk;pFjTAGr|h}4#vUv%V07c
zr_^Jsd8a2A=&D=G$`})dAy4jsoq2I9?4uT)q1*xS!)5T-xTe~S=vtFWvG3*UD)k4Y
z>;L|6!-Xk=3;2=tXasdrn^dNs?YNQQ_T}^!gado`0{$Bw03;_!m?2T5CwU_+#2KOK
z9q>BDEBd;!G^xf%ri<iT<yX0WhZu+r)q=9(pw*fHm~g<4LF#zgsmu+37V9z{ipXgC
z3+-Sc(XoJ=5qMWWk$O<B=(Q|fvMiFIhJ?5Hlhc1Uta8yJA<fwgiI<zaCNfS3Jo_UH
z7#0q-afrXL!P76sjd@3<Nx$C`h!!Sc^OkI_h|x1sf|xi7shpX*;G=gRhj3jFJ6^7X
zs3=>13wk>h_%kxO);8g4V$u3HD~CYQ!c)ggXV&*qJ*eOIO5u8rSYiv`|M957BI*DL
zV$r<-dvo!^{>6#lCl;m6XOc-xpKz^-AC+qVViNq-9D-*Uk2x*5F7(>P0kA?yh?`S8
z<;~?CydjBG1?l!5MlcK!-A4RhqF}cq{RphntBrAG|M7)uTAA}jeBS`7U`J~aOl*d^
z&k~4%p3BC?W;1`N{;6&(Hj=MVXsKoii`~+4JIkc$?F_B7yz^v%md;u`M${}cEQYZh
zA?migrAa|CXZw^;gU8z><k2jLk~Cghf3~c`ri4VS%q9FrY1~A{wEjxpOJH4Bzsf;i
zmmlgl>ps5vHRxhDp~k7Q6ZNZok1WExZYu$l%*3_o{q}3~Smxf32`gAr=p}uB7x(_&
zj>Hyz(%l<Yw?8dhSlt<BjAizrw4to>g@zcoXDT(weRgQI*GEGQXqdD@+cmO0G8N<#
zA6yxy!q{M|g~9Drs#h)gpLbWu6Bznyze*Ta1iDA6Q5r80xfb1Fr#c?(l`o944{J#3
zzapwiT0qpgj!D;Em%6YAW;=nxv;V7Nu7^7b_n0_#(b4^@8Dmh0W7b~6Nm0L{47B{^
zd0Ggns4utRZa+U*TMPc)>AFD+(feUWtb=89=LUS4ZsE=V2jp!GaJY%F<Prt7b>iBj
zPtm8RV(6;OLd3+bNkb>TTDE`>^0v_*UUUeU+r>bVf~)Swhx@yAfXu?6U@(B9l|0B{
zVQUI&t-qf1hy6^$qCA-IZ95tH^B&a3@1&oZ?tnq|!_S6Qe=AH{094&ig`-D>o6bwa
z=|dg;aUlwBFzT)Y?<y^B3)Gzg!4KuGj%*DOrY`P8wCU^e7?@fP{T%jYRUjn2zx!24
zhKuNqz^L*hhAtk877B=AXGjbt_JTO)7fs{12z}2VCB<5D_$4>?yElx;vk7?4uH1gM
zKY&@X$ZezG+jJ&37Rewmg4}wM-f`*2I}JL^38#%jg5!p__6%U!9?5H&&K_+F+ZLmO
zv6i$pkSKY-VHKHJp_$~#>Q$JnZ!hKsN1vB;4stJ|=T|WBU9n|VBbTZPIMnI~e8!s@
z&gXZFm=|Mmd<xh8T=-m9Yw?}}<3t-ulC?2~DqEVsp!H!0=MS7>tobqEyd0fy*|WZp
zY6)Y1{>+j<NAfcdlz3n5lvMOXC!QK)YqAXyzJbn;ak6gKX;M7fZG%(&bVF`j|FZvH
zlsoFOmK@cJvB9=H^DKWgYf{=aT4>yBXEkqFd=Q69*~2DT&zB|MVPVHjeZoG3KIO25
zpes;`V=GvZZ!PU1D_p5sq=0@-Pl1M-F@8kgHXhSiQ#Z-u%x_}oVWd{S(qZ;WtA63<
zruuFFXW)#gJVvFaw%gAEHu!>a@vv;Vrm_e5HCbk1v$rs-13LsIGyk?q{(hi@fqlQd
z+!lzFgtgp6`PD6PVcq{JvFb$rSg{=$_162+FBWU$C}HbKm|CB9UWQLj);h?nB%99!
zIa`I44cIS*wI$h$Oeqok>nQX0+H8j0$CyKs2-WMSj394-GWtLqg-qU0^{|e7d#%d8
zdeC&20W}t%B5V$-02X$Z{uM3GyK%@+=Qc4c356;^#|vP2eG!cCB}tCdgMXDX4!n0e
z@gn=z$Ae5_43Zx|1Qq!DoP$C1LCx4)Pt<hb@Q)DpG&U1?vRJg~fh`!4aZ>uI6&wUu
zfe;<rWkLiklJz2Y%hJOm#OJqw=G4MWz3CYufr?#)`xOSBiIEfvpM$!_GAR;6oP)m~
zfi{3JNdBr-e%_9JSq_WYZz%ZUMUU3FOMwM*5BF9Wde0yLf2~OwYMI28t?c{vMiOlP
zGMc08YfcSjC9OOTM}!KmSO8gO{#ZDGU<<BB$}p>mCTmBAfziyJq=uE~XSh&je(8G>
zodWyX*99{5-e4REjDcvaz}uqYt**yM*DX)dVwTdaEaK87#Xw0`z>hTQdxYE}6bPX8
zb%x_GMRht-nOgB(Z{@PjTBlHvTu=;`(ZKur7i3ZeSe6F^Y{10m87i{~dV#9%naZgq
z?Qm;BL;Y7rQD%QhB5C{U3|9oiymSmdm7$-k1ylY+N#^hWxsQ9oVz=E=nXp$#&Z6*)
zWyumqyj@F{r{!<Z+z`l;=8q^WyS(H#t%s71>o@<pWg-#)b&Skpg0g}g`w7+Ht~+u9
zkp!nf)3-WF_Zm5UuaI~|-Tr+%njw=Lh5#RDJZ%!O=VDO@2(D<tx#Ubun>(r7_%s$@
z%*r7D=g9ZCliLYDS;rfAtxA;pip})()A@WK9O)hvDaQ6&yY|#HtX>8=9oXc@X67oa
z>W4yk?Zj*iia9fv%_+;0<N5lWiuL)J+KK<%$%6!~-~?Bi!O`$TX`Cs1Jf+;RXoZ97
zA!&?YF*)In*7qdLLS%kVLVv9Gr^%C~3o_@<Hyko{boKzlj8cJIS`vDhanBCf*fSJf
zR97LNLoBNCJj{gUC&H9TL&9;<l!Xg=c-F~1-@0pAR2PMl3j*wQ0DHi^r@Ji1)5e$2
z_1LI74{meFK#HDf<%l%l4R7aV-d#*3oDg0A0;?&>Gt$$<IGkGE(l7cQk@kpz=XyfS
z{k1g(gA>WAl%|6Xx!x<5qzq@mTRiItAMpPWpG!0y5oJm=y_K>gdqtNGL5sY2{yT>X
z!O;)8tteX)1x8;b9?w$Z`@Zby4D0C0Ypktc4_+6RH=_SB>d#q9FkUG28$&{KE6YXa
zl*WuO#%^V^2)eqQr_#awCh2t}BYSJlm|6hF17PQw+SGK%(HgS9eufW^7Q3Uw5Q!c&
zDeUNvgvOm=l&WdFjx?h>O0)P8DLQ!}{ltjZhHsm_1bCYRY&L%Uyw2%)ca};fph`y?
z*&~%XAvF&saEm5IA*iV5Vg=@r_5gSij((u4C2@MO98ApEfQXV`WN!)y+N&^yo9OpT
zW{l@DjEXOYW)<+cma>m{u9>htG@dNTQQg@iKTl})OdE1PrZ3WLV$N@A8n9D8%vzG_
zmbl0d*b$nni8eZK4W_8`ug2!ApR~XCtYkY@%U9p7kK){<=sHo;w!FJ*D(6UgSNn!%
z0LvG~8H{F|UFkwdYORn<o$kJCK|&mRg#0;VJ;O$7VPvfTX)MHrDM5mfNuHt`Q%%FD
z#$b7DFaCRn>7R|J7V>PXx5IXBi(hJCKp~%<Nb<8pjR}ug&xa~~Ip~8F6(C6-VNX}$
zIz7VfEcgC&jCg+eR{nxCwB`zxzO@XD>Wx<!N+|FTsx@AHBG?SO(F(8++VX#7(Xkr!
zp|%USoqlSUyMDRYu+WXJj}E1yi4Ll@URvDDM~e9t7owS3N259Kk_Cd)`RU5DDw?*7
zYq}lw=hZ8fv*bx4kR4QSDktD$;l^=b8D_me-G6NXR#ovWh((iB6OHejt2N(b$?=>(
z{8Cz7T`gt2PKPmdj?0$LBl;o4^9ohcG0mbnv=__ITJp)Dve$<SCVDGYHN8ocV}jqp
z5kumAGMZIAeZ0@4n3wzpKhgV*m&*o#q6q@K{?Zf~F&QEkiHMC~r4_Chi!M_W89Gvi
z+QhYKaZ^}j2kbOj;eWbbXRQ(OYqt(J7JU8|giN@-DYY>e^EIu!O{=rYsE04a{kdoI
zo{I&v@olnwWlae(j9A9C>&38G#?6iRG<`bR<hS<Y@^rQgu{qM0lF7untMNlEo_Y2{
zcY#Yx+dpLxc+O*I!)BDe{kakEkJgaTSEmY{t<(#fU@Y=R9&?#1_keXf-=*m)+-203
zap$}k6H`)pPgcubyAr|TMq?8oPR?9@>s5{Y54$Ot4S4aCoVhNwyfWxtU;58os0{n@
zFU*!#1pyI25Rp8F!M7?ft!e->3;d=w6E#3Y>zlAu7dI;Q5GxvHni~;=oSubQGkq3m
z4E)nlQ>*s7bAI^!@NX0Y#<agyz+I;|EJ#A=Ydg$&!+t_f%525v_ztQxF$}zn>CK-^
zqN<*_hX;<}=H4`}uCQa^^O*m)+w{NQyZ`zk3D#5kK}%rPWc9eTQP6pVjZ?}Xq$684
z69w#lFMUC$=l478!B}w}EywF&4YS83@_j(~yCU|TUrZCsYbl)2`lc<;h)MQIr7e19
zd|zARvxv!mDDwYu>i&<n>#sNOXEEycak6q_6%rF|;D&Vjq$#2oDe>fDTD!^Nh*S16
zvwmc6*OR~X`M;y~A^Ua;Zwk)dnPnL7tZ+*hIH=;vgoU-TfDi0r@Rxkn|FK^Gb<O|2
zmVMcAeL;@GhwD=)xh@zn$Bz&`F9h3Ph`dZP<1qgRI!P|$0nCmvwjbR9)a8C`prWD@
zUTe`GN5N_}&v}8?E(oACt=J{K2pq7-fr2;Zdv~=$u8)?1wy;{e$Bz(6DBEp{vj{w1
zz3XbRzD>n^tNT@2)^(iot#ivuY{c>{Pwl?imSjW#)+_uPQcaA1{|wW~Ohdo?@3&D<
z92QWjM2Jy}y8c#t|Mx3&fIHot`B0bAl;%LU&lsq*Qp(H?le@~cBHr{KA+LN&OR}(Q
zr1SqMk^ldX`s4^V!S#;kHpZsCu5OArSo6G!C_#$5oK4g$DS;>7HWoNron}{Iipq-f
z9EwVcV*SWA7Yj=>9CWPdXtJ*J>2J?J=xW*ao-0kXWyok!I8L%FK~!mhF--m=2$|Fs
z)_uRN^`x<#C|9B{qE{!Oc;>{TEpA^s@2e$2k-Ap9k5!o>xzPq&#rv}40d@Pkx?sc#
znu-`F{}%%*p-a-iqy*AuEzeok_j|W7W*;zNNigNJ`1vS?kpKJc{dj?&kl?Zhgwvk8
zR(-Afy*Is6l@2dn#PAi(o^%1<t$+4^zw!TQRS06BexJ-n$L}W+uqy2vM_$Np%8NW*
z*ngtVjRKSYfmB2<Z$8zmsI2HXuRCYFu2Ug@)60F}ww^zZan2GN8YN~q;Gz7mitG^3
zm#?(rRg>>=`(}8ho=<$AdVQ6W+hFBMa)oLbcTIez`vGlj_>Q)WeCvf&R(YPL2@P~s
ziq>Sv={^9#cyZ@IYO*De#(1W~4t8L0(D?rLYVetcONCm64uh6I*1tX2{#tU67gvG^
zvlv*T*)m`-jbCUjY@!TN-YR9{UWn0DHizw*%rD&I{oili-&Uhuq@bWwSd-<5RI($K
zVlO?gJ2f9Gs-a;*U1FC6#&?V%vceHzy=fLd<=wI+4LxJ*xIABO@pf@>evO2h^DaF*
zH)4dOkZr6o6J)K7!N4?jHB}62-1T?Cxcjk|dd;U;dfPDQ^8;^6!usERn$GmpPPE$t
z(naZ9z41iB;F0l5MJU7po1{D6`d39gz1<X!9C*Rm#;BYCVVoxtjBE!60<Lx{jLoW)
z{_71sr3@SPS|1G~!tt@)=)l+gTugpbd2=g*GuFx5|Ai&wz}iSotZ!uQuL_F{Hi@y!
zc^T{Z@2I~dvA=dW!4hG?GKL^cM+!n`;*3Z{=w<&IQC+>P_q4iDgqBL78nMWG%tDKT
zdl-<S9v%j<qPL;j>R<94B{ZI5dx%t9j+R>e)l7cwzV}Y)BmZ5sJ;B~Q<fSkne+J#?
z8$Ou3>$CWS_6L4XKi=Ly)%bV<ULKh;bt|fGVFUoV&j{4QN0XUg@RikgAOULuwq*3L
z7yj2rsmCs!Z8Dm9?0?{#NR-c)pO^hxQ>(P3D1IBp#B&S{H~enN?3GVO>VLbwf86^2
zTmk2BvhFukr5GjaVyxLN=P*aMDPlbiYu(qUQM(PYB-HZmhj@IlGiK^EzD|#~oU722
zm7F-76Qw_9@B6^vlYv}3!lp;pd>sIGFXkry)a+u~iRuCUG#S`0bU0=|k!PI%JuzvN
z|3(%85pf-mn`56od(j7w*<>J7Suu)&ib?>Cg&6?_CZRCXO`6D^{^rKU&XlY$!znc(
zA)yb<!P7n5Ssx4gIk;+a--7w41R_4SK0u3E2av$w;wCWHgP3Gso^HGWghthm!>NfX
zZ5~ve$Bw3^MfBQDZ<oY0UFn|sg83mijwKI!^=hNg+dXS<%`Xh!w~s=pGPibG_Uh)0
zI{Z$PdMxK_Wv3sZs?}Y{JePrx$8k1gHMM$Ku|a8LA|3!czqRiM5v^)P#l>c0*QGWh
zdXB=`d7C}sUYA8m>}Mi0-kVb`=^AN5<oRC*pA>0x%3(*l^D-H0kgAjX$;?l$K&jua
z{W%<LHQH*A)wsDMTu)NhR6eUEY4Y?7#s4~~{@=}9uU7Dh!7rfq(LL&@X14rSyrH?#
z{2Cm;^`0qwx*XKKkNYsz6^w#&Odj*C92_gtk2P1Oe7^(W1|3y~gOao%|NW(*f?mKU
zI4C?9V79LVu!Nk{biy-9hF)UtmeDY=3E;y1_=e5+L+{pDu4gsB=XDJ?%qozUn2e2$
zS?xE5O5r0O;hv9^SVx-<8!09OVmR6fNUvO_a_^p{)N0mS?fbj?((AN9DCJV$0AVhg
zDs)3>40PB(D5Q?_#!Qo>rk1+Ef|Ok*JYJW|tOK>TzDFPpDIVMz<MCAS`|QJn&W}Rq
zYlojgte<|8bgW>lI`u^0-7mfclI#^=Y^(DADJvD1Tt&r=owIIlojI{GEPUsE?=b_$
z4f7iseq(&809cKlYDf!M2=pS^J6`pYikr3hdp+(lXG5dL(032!92|sod@9n{7BrLg
zRCvBsGoL={`mEA4O;(VpII@#jp;<`j$DV8~`^{fZ<&ar0r~b85{O3yg|Nm5a4$!bS
z0A53GIa{N?H(E<W)c`o7mlnSY6-K#ve#GeBZL2+waf`ZgJ8om{&5acMKe@w>!>Nin
zySrE#1h$5C1sFP(t0Zod#@}z)U`WN6y*9Llqr1^J0aI<YOg$*S)^bjj10b0i0r9(K
zz3ma|9wFbX;0k2D2C8_|956tH@2l7W5vhxzBxNE4Cnfu5GVS1<1-W*?>3|AEvl`KK
zeZIHj9dmBg1f_Jnwf)BVf>8?QDW)*j@%LvaYwP%dm#?5#0D*ZtiU>K+U^SLjI{Vu!
z7apq3JrU~<4P|qQY~+F*cV}9g(RS3P{1J5{hZ{!8V)J1bL-PXx^Q?d0hRVR<Z$(Mn
zB>FmWnN7e$XP{92lcQzLi!ul-!dycCEEN&`N|M5`$F_0N<#8I;oKL{)6h9P|W^aa%
zA_(V;l-eR~ZDL7qc+|eT1ruSA1&K`IaGdD{U!q-k$%&A!J<a?1Mt|jD%`F`pIsGc`
zi`tB|fB)};1ijFHgBZ{C`u00ZW$Jwh=_kCDDk5}xon<2I{wa2wcCWiNAiBnsYd25f
z7(A$%!UE<fvFP5zAAgjV#BS>Ed%U-YT`*Po-VgVF>n$E|M(P8zK&@Q|RAnn$I=!n;
zCt-}M+a(p}jCm;)aix>BqV6PYk9^?~{P(d;Ub8i($DodOd-pA7l*C_1haW^pdS)4~
z7T*8{iKQT|d1#$xN*Te^(t5IRY=$`CwB^XJ0-sl|cx2q;>>KTeGDh?#EOuqJQ^$sf
z2_NKRkB{wKkGgSkYwEtee!6ir%rQ6gGJ;rup9xkR;c<?pbzLWuow4OmSiqaUV)7h3
zMMwx??1{O@8e{m?iwiv8BrdfiF{T7oz`$WjegWc75O*ip&EyEW;THj?Jn;)HV{BYC
zU-=qJ{C}y5-v`8=h)n{}@v=7K&$vKDoPl@+{zf~3T6A+JT63n>`kCJPY`YFwa^@GF
zic|T?m`OFU+hJEqD*Q|#>aEV<v$e71<Uv>QrI*{yszQ3Z)m^Ge6XllA{*Y>xGs5;*
zHNQ$e_n%HoJq}X|`wkq4)C9T@nl#i!-h>(Vf4;Hq%&6g?s^Gr=T_<~;WmD;J-|;iS
ztIUy@iDYQRbDc2dF3W9Q3>;KhFH=uCcfrbYJwi&kKG-d#G*Zc?_*Z$MiUvD1Ymk@V
zxKG2j=q(;LFe^1Yj!<NuS1=y6kXK+=MW6D)8ZU2Y>_+OW)2=ABSx|a<o7TA1O|pAB
z-uPaV_==6e=0NUjRNYZ&qArp?g?Bi(;v1A%U8(K;wN*or!~UegqW3ocCec^bu%y@k
z8w_QY#vjdSwC2-7AH7c2Y5mgK?d8PuKw+Px-?hEu-FA1b36R~IWYi?Ef@VS_0?P$e
z>{7{$+BqA7Jsp7*Q@FN~W@NGEdX+Bgi9-j}c^#97;Q57%7Pm2+MwP+i92F%MZ|!^N
zbECZmq}llTC9k;yLo|6Q7W&1T9o+}o(<&(|IEyA|f#QopP~78ccCvHYi<ze}t!%cj
zM&k`OwCcv%fnJxyn%IW_Bea!f@>eDrx%egXK4K&qZq-JCJ@fuI(zujTSGZS%+;6vU
zrgh9EJ5Bc+$OSq*eKzAIh+N-1H|kmDznR!M^FEHx!u4f&o`Gfm{bZSA&Vu||#+eGX
z{O?w`?mt$wrL%C#T=ioonVj~M{P5<j64_G=S!RT$RSlJ*W(&IdvAHZ$SWV0(fn(~^
zZ((wgF#o-<8YlTK-SCLHeov3d9j;4D9Vqw8_YEuu&lTkbX<gaS!?yO-?LJ~$9OO5G
zu--sMw4`lvR9l_ArUm`pJ00)mlNOV2g9Hm1f;q=U>Z#SE6?u%`FxNq+WnSnymSbX0
zYx0G#Hf40ip+hVCU)&eM_V|sX(?H{zo9n9E__}f|m;QMygBYUv)IeBP&7o)hS$&<>
z0*Q<Sx8KolOY*fV9F3tZP}ZZ+b{BeVuiL<SpLzY<GvlLoA8zkj%tkz*)qB{P4ZocP
zb?eI#W+@Vt_^k{?^>%-@CMP7+##Wyb8u$FLW!*jn86vigbI$7w+GMR$1iSSrGT4Ll
z#O;=_J?tOX%2KHw8#VCdcq(mI9~;lEz%ggI8FR7$WS(d_YYt<NznWUKAp|oE)^({)
zwMju=&-g-!!7ZngJM2g8myfyz#$K`>C8e0h^oK=4joikxBt1}pjKR!-GmtF*%`Tg@
z7~*t7%+3V*+9L}WWWUE!RlO}MU}sYcb?;S9d21TC&*3WL3b4Y7Ln&+$l(L_H?%sc2
zp~_1J;8jsv#74<xr#&N}rzZpZTxUJiTnnm2<$Rr92h4$Vb50IfN$Enf^Mzqz;Gdyj
zhGj1vZ4sO2$aq-OOL7!1eX*3ZwHJI^BridBE!7No0k^L!J6;f=Ca7+`lZ=9!-fq7?
zV**rc`|*NN3O_D5bnd&s21t{Gsp`xas48O0@pc-dM^)X<w$~YAM>2S(qYEuggxWUv
z5nM5*8|Ou;ic`Yh=3CFzTQd<@HGIiR6SzD5(C_rhytzgmo52GRwDITj81jU$N{_np
zxmL@;$tDvRU@@rVEd+JmyiT5cTqu0lr{4C)-+i8TMpyOn;^6e){AQC+c@{tZ<HTmj
z8L#rY^g6)BrSdsbPR5Q_YR$R>uBkf=`I!i1zJe@JYS4WB;_8$pTnTBY>EpI%_VEe}
z?DDh3g%m?E9k;2TTQ)Utc+xl~uG6*3P5CIp+C0@!tK4;OKB3fJgNtC_Cwx(%X;u9W
z#*kLa$>=W`G)RySrsa^>=KE8cA7WhvM82s52q`C5CHH#EYf~3OJ=guHPkd*X+K8U|
z1`?Aqi`$f*W>_^NE0~I;-M4mYg6_)u{;1lXGjDedQJvCsE{ToyyVx5~vV6WKNq33t
zt-2EqMc(Jr2~0^`h6G*_do^e8JGjYNL5|kzMzY$r=LcTftGoYt{8tu`zHih^qEESN
zC8sZ^I-zV~(4Jb-FeCIulZmKR89YdycQ#LdF23I@Q#fM7jKw+FXL);9JLNflF_lQ@
z8*5Sl3Q6pa-}%noH0JfOvT27!Lz%a=%0pS?h#%$S>oS@oO;z$SlapLw$Q|Wf%q<c|
zonHA)1wC2BtJKQtlsE(Y!x7>fk@w-^u!1%|kg3@<AYLSb7=*f7_L9k(mj<}3=2NAm
z{pc}im3`Bn&)9Wsi0&Vu`!SDmV(~&@;o<9>0uPPO`f_8=^R|CGKeb`Qy?Z=t&4V+5
z>sQA!CYW8fb6M>PClGQXL4}N$u=A2^0(2$*bV2PUEod8(gR-BaMX($JhB;$(L!l}4
zDmVd}3$ptE9RDKnGKJ5*?lB=Ib>132_;t9<2S*cGSVNQ*dd4Brg#rvoCsYkU9?@Ns
z;+C|kd6+e?kV}?};@ZHqHpVoNryjD75bD#C@-waiNXn9q##Jvat8Qi*ZzbH5l9Bd_
zVOR1Py4oy23Z+p9y8%Qx+U1oKd=r&a{u^*rDasDB%y7PXua?;|1j)LK4PNKETt8YD
z&}LHF0wyN4@ZNrkxjnCM$J!T=&MT0;PI4vd_oF@nHCJ7ITgeHbKAfoVv5{S**My=(
zKbQi=QTL@FHbi-C1+rAX>cXK=XlJYiroZ4vH4^EUSQ4&T<BrIp%bT+3S$TA%Dkvd^
z4%dKEzdh-Z2X2DSvKgFA1xsd*-dM-A8fE*?LtuS*OzgHr3IuftUHgYVv6VZaMG$iH
z0h6EyIh<S>aOGcmdn=XX;>!ydl5#Ha*`IEW*@5VkLanZ~?oJkaliL{tR%Rp9%>Ie%
zys7*-_x;9R-NFgatuMi5HY*%8?~CA(0j_sB`1WS$;T+Z|a<H~_ZT0nM%`JaWACAC9
zAQV`t;elhSQ{srb4y7fBhJ0Vakqjj-6Jlnw;H<TKam~^;ZtSdCirb`Jj>AP4am@Jr
zoa9;Q5$nl0AI4~XZ)~)bRMv35*>xf7&d8Wzs(iC9{a(G(0do~AyO913k#K4q!Ct<Q
zmuB;)AbO&U2726^ms#&9Si6M2kPDu3Uc*cL)S4?yy|{!{U!DXdHL_vqE1IHG(|@<E
zxd~d`FYF#kc5sXYOe9Tm(9Rp7&ArL*H|h9y&8Tz??y$2$6=!g8@NVz{Frb$Hth>s=
zhDLv0C2p{g<8|aQ0gu_fXE22Cmim(Yx(nj0&ZKY3=d2TjxhKuIUo9|8vmMl47>(CD
ze@a*y!MjQF@SgJ@UzOkyTSmobZ>?IEXgXuMZgiNps8o1&m2{Ku){#RUz4x!G$($9Y
ziL=O{=M75NyU{yOJT$VzS1f0ly&v?h&wHAcqTD0!Nxx-zPpa$K3~oJh-CJBIW`p-S
zPDM;l%O)!-Dz9%~vslVqU+6tJ&+8{i+rx(e6~*Ptv*vvbFC;-^B^da%AX(TLRcC`K
zlISO}Asm*om!9-e#^k6F(z10kc&4=KU-`ayN1$a5DzDv@_|t=>rRFv-aDwJ5+5qc3
zg8nTsG5>t?XCffYG_BBk;K7ixFvDX~+yp>7J&(T<q2-X|2~(U0tS>{?g9xk+%X_<Q
z7-R;2HUPhr1W55}&qM8b8^y5)YS~45+4R$|rX<EI+mKBvq~K5RS8ydE3B)*k;m|(8
zm@yK5;h?Dak;)%0^yzho*A3;6{5~jYwcKA;ttd1YbbE!cVB?TtbO)ZsByHhHI?W&;
z&Jker<--}(I8;B}-#j+!J>SBrdO>zAqat2&DUE<sFj0Ew95{{7L?iaaeG#;11Jo<@
zvpKzfE;dRM!Jfc-{;h2Pm5w%~m<f_oA<W24iYS(X6LZKDLw#UtIS=3%Kq+J4sJHG{
zXic}*B3ac22oXP(l{d@WEoW1j<mN&8__GmMQX%%JefCv-zjK4hf76>QaEB)k<2fg|
z0;g}luw~_FdJgQ8)-2Ka%c-!{fP=~$P?X3%GS+?^^<O=JdCQ{<ImzKKg1B<dmdsHg
zAWhmENkmn3jEgND=dFBws(3wqX3elNGPJAlE6v^{x5?1w<;~}%vE#%k8>qvEnj+aM
zVBUa!0l7_6+6~F{XF3PLE{(CdHJwa*nXVBDqa`&&;#4W2iJ43`*EOeRkgV!>i$axB
z|9SpielJ?Is8QE-z}W+U*(96`aOy~FH*d^)2TU+peWKxz9re;r8=+b2z8cLmU+d<S
z9Of;zWz3UFM>Gw%F_W?lT~g&CGu-}a`ccf>%*kq&_tiP{m*#%UNfw^kYH1NJMaD(6
z*IQ{oCifZo%(BqBCJ>kKqw}BAoo`~$69f#*pB3%*P0l7lA|%Y^MdNK3*W;!O3<T--
z^G6l#<_t$6b>>JhL?TW}#odTT(0S8wljdhF@P~K@eB_TMvm4T!%+#!f^FgZB>|FHV
zu7a*SP0py(OX(_m<982f(OUOK<MxA!XGwa+bjBTd(MH!`(tEvghQ_tiKki&Re^WI#
z4{$^BYfd!EBcRn=H>28Zg?VmAoy?{KUW)4O(4E<^q1!Eiwmrg^R+M}}``d%XT5lyb
zB5tyVTsEaH6zf$_d23@jSFV#Q>iAv`%r?Ky@9^TWUTI#W(3RFBLPkg@!wz@adw~>F
z_v{9-7xE+J;`$}bGM!YV*)-5eTh5v|?%bq@bGnuI_2Y)_4tT29nv0~=b1FemD79G@
zESctb?KbUuvUK}?p#3v$x5=z8@04i?>A02uQ_ylC!@_8{PdepKdVXMZ&pF|hd)8tu
zJW^#hOAmPbqwaT}(4(#l53X?j2Wi^2TgnfUboAvXhr`+er}3aC0h`=Iq0J+OBQerd
zYoMQ|q<*`noC2!K!BXr-9D~h$m$Izg?YUkqhK$r=-oQW8mdS46f!}mpw2L>XqICzL
zZN2A2O9q?#jRv>VtefrD?iZ2E{W!Ij<mP+Y71X+G^MZ`myCuxrv%TH+^$T^{Q{^Z|
z{q-Mm8a8%oG`$I@P0ptKPlGe#y?S>K%BY+OkNibp$UQ4q@0K?m-x+J}Z0z7gw|++d
z`0}r9JBAO2Vy`)yJ&Avgh~(Fz+k~;h4>5`FWUns9AqH!lzfRuO4!do%tE&vyJII~c
z#jVao&!?#H%NW6x%7UXJkHgl_uki6y3Q?s`ma#FF{04y6CcZXYbl7k%G1><m#<U-h
zLQ_@zD`)FjVaL}1^^X9}uTuV^<0bK>twdU-QvRDN40+BDjBsItp97!l%_}g3kzi9E
zVa3%k=iuzXMaC)gYFITP8&>f#jp#!4sV!eSVC7zUb!0HBqJaszMDcK5U<M;QCbRlX
zs=e&z_#*^O_;ns{Up?xDuu?R3=^Jv%iWn`@@2n<59->}=k&R$T`DR&|MCq7p3b8-9
z_HAGF#4}&C&f&)y8mWkFeEdP%8iih>{cSF9xQ?1+yN-tZ04E_5Z-DkC-?2i)nOq^X
zYzN3Jz86=Yo+S|_4h1wXzVZFz5<%`yrsZ!d{3ZHRr@*z2trwU$Y{^$?QvvB<`+kX{
zE0sPk7a`>$B-Udlq^?M%m3jRxMiIh`et9A0CfC}}le?sKU{`^V_UnRSJst&TYC<X%
zm<36zN8nS?&D{YFXNBZwNDY!n&NPjv`i7JMoVSWJj0fsyJP|`76=Hq*+)<>{LQeuY
zU&OLV;g;aP^nz$~n-Pt|#01*5$}Sm}9e{8GSz0odh+A5%QMp))9_=Q(s;J^U%Mk;_
z3^f2gBv***O>7v6{e!*e|M}$uh@rVOkG~JP?SnJ|1I>C~ynI;cdxHh+d9+fDd!Tfm
z7zVbPjQH8ewE>Zs+qPWBd89Gu8>cZyr|E=wLU=MX8O=Yy6DMle+_=}>%J<{r2t4|M
z`vJwyp}l2${ySI=d|zO469FYa%0mXQbcEC2ZFnn<+hdqE&wNqh(0ggh_DNahouTVh
z)X(2{G0o)127oyx*&Teri5Qi2RaY~2%S@wVPQJ7u->gG@lF4o2x){*fSuH=lpza$%
z&&2N<MSt%gD=dv@Mhi2tl~Z2_QB(U9ZWB#)7OuCz23Jf?&dh-|L$U;F(LFe%xvQ9O
zqx^%hcna_amhT8*0QKavE+M;RDjM!DeWQPlBhjHeRqa>+y<NJBr)8xZL{S#MP3G<h
zY6e;j2NR}=EKnC6e=<YgtsK5sCY&ZBGq+?>;zs)YHf*P1<o$(W&3t2tI~9Va$%P@|
za+PG0Ea8TfpY*FYPoXy!-q{{bn-zpKwps}i&P@$XFNt?m-EkPaCoHG!wV~WDn$Y@R
z%dGpEh{hf7h|P}^EYr$cbDfwn1hlVTAM@z8Q<^nTagVz$Fyz%3I$!N~^Y9k2LU}`@
zgOeS0lbm4;Z#s4cn%cQ&?7|6Z?FDreK9}%%FkS7|ESXm>C7tgw`ZMzVQm>U!!FR^x
zmUP?u7VPmbDq*yN!IZzY{KR0*Z8Ph&dL{X*>2_`B-viC7>zo;a<ph`EtAveK@d<BG
z89~@r1{JfH=b5FFnsz+;s8Cjy7g_5$F<xN(($BMea>WsMLmB8wpP&3Ma(f*wnKnxb
z*dCpm{bl&n$-#NLa&P_O<3#)Yrmm^u<u4{z_I?(9Tx9H6;RL9-b7l4Nn7aI4arDw8
z%ywn3+K%5TO*uC<m(*Fk5>)C|Qj)waDJzZBxrubRQ>RWOuZtb^@~W!fxv#h&&22UR
z*hxVCx##2~x2n<`Q<C3KGggRDW}_IYU*pM{^k|sxR}K|@FPmJ(FCGmB|8fEJVZiL{
zy80=r(cAPOOXp8d<=&lGTjsknsx$u*Xg{CdmgqbRkSHJe5UCnLT4_f5gyv<Z4+8Ps
zWT$c#zbCK0=qkzAKRQ2+CPkhYyv$ikpYnK7a|AYn6H(+@_@^+yzO|^)VDrU!wFzL=
zuRr*3!uG!?@uq~LJtBXo@P(0;I~;A|!qp;2YXTc^noKf*7u<QTBmlS1cm@@hRFgC@
zG4VKD_m-?UHAW-npDci5z+yZ5At;%ITJ)GyRg*^q7uN7q)t57H&=AfD&ImH_feVD5
z-7>E3f>y^l_A_{&5ZKVo$A~-0&#2!?1cm)XqHIO^D0-I>2;vBhNl-ID7^P5FJqw}<
zzX-;Iuf$erk{jL)WN4MU10k;|%gO+YpFnljW-Q7kY9j4TOn1T>oGUZ2>eP4bP}c}L
zI6vAU#27_V7GX#LbD^kcTYnr5P<E6M)KQNy^F+0j$cOM!qYXno(*7y(l*hgKGPeLG
zG8Jtaquv+Bsa83KP#6+oWO-c|{h7s)35rMqod>rZ^WWZWF~$#eP)#^}|CiJ5e|%mA
z=Zm%`f&45(@2sAD&L916uEwIhFrQ}uOPt~&@Z`xr@(#TpF1)>#{W3KZ8e$2%vy5gm
zu93oroaRl5_7QQ7^ymehHt+?%!<q+yPHG$Fuq&cEo`Hc@<z=y9=G6*Nx}xHK*4MzZ
zvY2k+5YojMsZ_2N8NSLPwx_Y2zInSUV0EW*!r?5_7^9N-UD`FKYPGy1ZBA!HKcow;
zd<5u-Do=e^%Ae&g6a-%uOsOOdmU{1z*J7QCix-<H*r*~9C+`O@9W01ed_6I3KH?u)
zcW7NsEG{A**mXy-f46bn9S4j}31QLq415Y++6Z%w$#rSF<R=d&nnfjA3BOzX#*w31
zF2CAj_RUKuBvR<|LNE4oiO{I&V>Eh|*IcuGvdF&}#8$xx=certW{u@F!fkb_+7GJ7
zA7AV*(6R0<PN-0ppz8pV#~SgFdZ1Ap9}Km+%a<9Wc;#x5a|(#`-<O832WjPDvx4#c
zkBd9&<+XX$kSXqx&^0yR7Kqx1Jq8*xNCok3elyM7x#x>3lp>i84<;ak_n=|7A0ByV
z5!&reDnXQz;@V1Om}a&rWyp`opjDR;{=JfG55_x639fhikQ7tVYaYZf2*g2QyxM34
z(;HbOeB)Z{`SY{rvG4+qWd>G*#8_feG`JM}g1MM%C<glpvFiN`Z6~KkIf;Kx{k?~#
zO;NK;N^MI{)Si;LEz=YKic6KpZ$jy%n|Kig>>9?MaF!0X?p_y_eyJUHl)o_r-_>qW
z-e|jyqIWr9%R<@lOEK!A^CFDJF(05ysy!L*3$!jIewFyNka#j14$cKUk+Dekv<^Eq
zGq<*O9QG{B{A#<;M($FqiGKVDW1_n9TINNVm(k$Que3~|Vp2je6ub%KzUD+X-_#$3
z?{XY*gHdIR9nW0IlWT{iNa?B_JRj7#-DHRft7toeo*Y%2aGVkA+7Ki4+b<FjUmB1q
zJ85iaaF?1KO~>bUExx?#)2xYrvFQD$V$2MC?C;}_Om8)(SWLSiV>ziL@iF}%%X=sN
zCesyTF)HfhLrS6nT&Ww}VHKZ4M#ws~Bac)%It(Wp|CGopX7w}F-+KN?9=TO-^0C)7
zPSgb{4UftYR0XS)0tGQOn;eS7UG37)1#$%EOj%$rKYm_Iddzo>+75W~IdbblVuNI!
zE!eLaLN9J$j9UL)3g(Cfux3)3Wf?HhryK1}6s(MhtFc$<86hRg@Fzh_?IZj*77zLw
zzp4TS3)T*pd3A4M6yp1=zZgr?Z?dbADEQWo+@bKD#tfyhmk3qGyiD{#&}R<aoh12y
z{S?xz+<~4MC(gc`Vv>2ZCfy?@DICyJB>eDW9XQia?{vb~B^~P#`xOp+f6!IY51~ly
zfsBmf)#p2rv|rX&@>moV6-fblypi%EU~r4%cYm#Q)o~$=uUdaNe$Q)fP-Q{&{ViQk
za5*d>(!93wHyz2AjOZHX$eRZi1AR{OfyQNERxwjhT8FUW$7+*017#5O+rlOu^@2-}
z0h!<WKupV5V-X*1U<nY&^Q2vF2=c+lfs5B0smSjOKjLO1d{^Ik{aT8Uw2J*h2DS-Y
zsRgX`HGO+D@U)hOv^2D6JF+?t9Sx$Web+I4SU<T-e;IANRJ`3EuHmSCrj&B>T~X<N
zYAOFVV=g1OR31OE`poKU#(MXP)y~ynBMPDQS~q6EvGe;a>ah2?;b92#t^J-Rj@mtJ
zFLhPJ=bekz0qS3E6JKo{Xq5Z&5*J6Wu7J*Q4^!RqG`0)=pi<;+Tc8@?dCj@jw9ewH
ziyyJ6H$l;_8w(={rhh6;6g#UjEE(uDL9T**G(8+;2J63@{lkO@hxYlTk$kI>*w1~V
z%=_qonS1rV*IPgid-PhBgZq{hS}k;k*iH4osX0*SLF13isoR8tM@o2&B(K>s&!m&g
zw14A?*?w--E7?wna)ymR<8?8fp*Y_paP3+n0G&xQnoWxq?Y(p67rtyPG{8IT%IXgY
zj#HB`e^E-k(suoe$D1M%F^P_>*}`X~IP+`6;he&UQd(r53w;_|OS*8%==h@x-D0uY
zKBqriy<+R~SJUK3T3ZGgRnzwZ5#yEq;mbMaXL;g%KDyc)s-{fj+D^ZXp3VGO`L!bz
zF;d2~AE6R9TYskdj4R0D{0f>ZDR*T+9I3g9#N=FX@hb+tnaey>I!^Pn-$iY6>9udI
z&J2R7WtYI+cyn72^Yr-_lU7Z$vii|4XC>C8caZ`Y1AW&z>RGi$hm)J!Fy^6@mX4a1
za~ID1=>}ut%{GhX^)2-{)8koLUPTl1<!Uf1ZmvHmOs>74?h|c`D)p+|3(KXj-I*f>
zYxVC6+PVZ?CeBCQuG>?~X6ArHPLzR`(Lq!hR&DbxTA=S>6@k#tjN1O;qWqL+sxh01
z(eB6G2<zHGa-%KtOcsjhQ1_B7eEeM7Uw!SjPkk$hTDjSi-OIZ=*}|h@LKW__1mxw6
zB!a%D`aaozWt&zE!=)%C2}u&ZD1kX*2<6Q^s<Ui`6Wo7~{<AnQxD5!LYe29H_v!ZB
z1zrjUVB5!<mlZjEub*Y#6<8@XNalkz6!Rp%R){j-)bF{lV^N7Mv<^b-5BuT@PR2bZ
z%Eo#?LHk+ZpbTeHSKJzqaije39%!%Sf($p_QFNPmco3k&Od8;=&AbsNcC|H*)I3Rw
zIZW?777^CwGzm7XUg))>D7UPAsMP9n{QO4xG$7#mQ6i_2iti*j(eIDt3UBM$Cfn1K
z1=)?}iy9_M9gu?$9d;k%wjg>fEc=yuMM>OJS)!jN?JBo$a45bBK@iK*f}oW!aN-l8
z6k~6|&LNUZ4c#A%P@K*8#G67)vG0o^<==Yjpac5w=+Y8tz=~aSkzccOqQi7SPw<>p
zkM`$imZwsf7NB{xU53DF1rq4Z1+1zN5SH216m!gZi5a`jbOyYdu0-IgYNP_aI<t{r
zSn%W6SMdz!SKs%~r+OJ%r_C+eM7;_vqq}J-^%5b$fH8x{yiHtcP5fNr1cfQeWMd(N
zp`;uz)H7|rK8R#TER^0`;R>ZtlY98lm~j7wCF*-8m<L@Ak;rRszatCgx*(>Jp<=(K
zR2nz`>M(0~<vfrFgX7KG(_ASZ_N~$lcKdaIO?kE?0-<YF`B(Ykh0YlRXRT*f6P`}&
zFos0p2v($4AeN6ep=JXUq|BbZvLxc<zgqh>dHv&Wk}&PivYm---y0rS7u&D4VaH^f
z_wg@xJ^B?T2%&0d@&L}y3&ygpXr~7L;Z^GMd9o&!XK?)^<U54lSlIJ-L<OHOi<Q)v
z1mn%cq~UZ>FzZ#mxAf8;@~JAeJ2#Fqsc%)L7WJZ=tfWq!Pe0QVg=ZblcZ^rf)-Ca}
zF+;H8A)Z<DUQx=4qjE*WbZ_Z2xh<;O1Xn}`+Ao`)x+->2-5*hAi9eK`t!g`{wOzG)
zi?4~n;CONfVSDi|YN`iN2L(zvPKQ&7Qc%l#|AB_INVXwtHo0~Lujc*2Cb0i4c>TID
z8l^;Ag9hWl#$HtC4XVM)#RD!m!R@_l)(gM&wK<~Gn{-3lLS!%R`!r%vOHw`PL<;N8
z)wEIB7|+e+)HMoSqOJ2h>Z`(q2j#^yUf@>+N29>x=rrm_#fhXK=}bok7zHRH^P(ho
zRSLLM9PM{Id^Cn%HWi%CpbamMrSx{|WbSf^5Q0C42)2~ksS=TLIL%h;aP5*O-T708
zyB|4bAlgYrz*#k1>Bpi8@0AwnB$=XYl-p>l23r18N(45JAi=b9&*ya8pQ6=W#yz)2
zl=#mEKP}6f782dhe98Xm#Uf=|xUcjrPpdeY-Yz;KaNIF>&+|I}q~K<CQG3?yojV&H
zqOsJKFtmBOV7yUH!1bZ%Cfygd{<y7XqW%ftdzE$c;>2nvLZgj$y4Qz`t<7BT>;p$q
zA&I}LCi_8%BjakXg46zHP;>M$;)2;7jKqZNr1$SPZI*LN7e{TgmOM9ZRb&Ba!u+D&
zkOXjh<QI^Ud|$vtJOYMZ!Qj3Dzpia=f!I;WqW&BWWD;oSsBU((S|~#h4+ND#XqJYx
zU!L6`-<Jq^m?6Y3U)u;8aUnTp#7No9n2lG%8C_?_(!p<Dv_G^uH%F9cP`C&kcjhyx
z_I-BV`p_mq0lyy*FS-eae?KXrp+h8L!wc6rU%Ss+$I4!)Yst`s{-PRL6&R35uRTw~
zOqRi2x+ICEg(8%MHH65c&r{Q>9|LPeNa;CczNPeUAZi_GKe5+7>FO-jQ12$Z1`p&7
zZw(GZi8+zq{Zv_{il+6Dm;g@fD0q5Q6S|2aLo)59_t?|00YgrEv#y3hQtO3-S>@J=
zoc)l&w?v_cI5eLY9;ZvDNb2XS7kS{<<^kOI_d|mdSjIa$K#G$8W>kxGL$Xkd$3&fM
zi!*uyX37!U-=8ly>k4@P6lkysI?Y60V%BZQLU!(nKoITe>A|ziuJ|77j%TDt!NTe!
z9`zdP9f20{jAh!GY|Lzd&R}l-JSaei0=Xi@Ns};0&>r<YVnjo9xi%}4rDDwU$vFL4
z(W?-frr;GKg6p_q6OXAibX%rjh5Yimdu@eiN6p_~lBxBT0L5)PWpzc!>9t6<xLICy
zlWOtyYm~k_EY7=VLuNN&!>7$vr%t#e-$kC51kcu69}IsCro8Ys;@UIt@;v;5WPH4K
z5E$H-gh>?e0{QhHH6GAmH?k(<nNB9hbl=NJ%)D575F{}R>g-x;8fjrGp?0z9J5|Eo
zFw`X`a;27@E+{Y%bB9R%kP&61Lx5Tz>&s!-uaxG%%L(?5lFk{b&Q_6``y)*`OOF>Q
zWX??0H{}^>&4Zy<<a!~U#`KC41Fgiw+M|!ZPE-mK4gcOMk0E+GKT<TIJf*qokGbA1
z-SmJTB(wFV1IFNN<vERF=}+~;J*vM6HhFu;Dk~I(O=54F8yoE9V_bFH*5TrL+>ZgT
zRckFj-c`5tmru)Q#=S6P>-r9#uLGu0??0C%IPI*&uUO%)K(sbmPCu?uHVw~ul8x(u
zCVOt)x863qy`7Qy<Ry6-J$k5?b!^^ubzI111bJ(x_DQ4vr{oM^kr(f^oZ2VY`&HgB
z<h6XJs-TyCJi3l8xVkrbaWwzHp>@W2G3m_b8{0Hny1+xmY{&a6_TC0Z2l(?F998Sb
zAt689$YF|97`U%}KHl#%txla$G;rySQJn?A!c_LaHKM8gww!{}$s{!jPH$tkoP>H@
ze+!2VPtV9`K3<91V;?xU;0Il&MJq(ShaEaz8ji3U!oL)lPv|h7bqk|>{!9ru)lU11
z8hfFk5Ii+J&TZu)$I){vD;6b7m3;S)nN*V$mU+{atw#6L#Fx)S@(${M>EFAw>U3K@
zJ)x?eidj}#abPvx;~9tuT{W73;>fJ8*wsG-D*qqr3n3aV3criVg>73O)Q-CWWnN}M
zVkAX=NuAQL*J}$d0+BcNh)Q5)3M%A&a~T$vUu~lw=y7+Zq|3xDtJNj^Rxb@IQkR))
ziS$(L4_MmCAkR()<#~M&1X)-O*;oJaa6R0ia_aNQ_y=X5y&7rQPA~AUr!|cU;_;ss
zQP#`{$P+r(!5LB3+I6!`iI6I#lxn~U%Knf$jrP7ZR1n+)UXnaD-%~$h&Qj>zu8F{4
zN<cyYtPv+xkL+!8c8`#}pF;sQA1PVczTe!ZLy5~e5N3TAZo9fU{Ek}E01nrn*7|3*
z5KX@@&I;-lNtiG~8mFy+bd$qNU5_KNHOf?X6j(K^SvXq@fYCj)G}6iT?&QxohzsEI
zXAx{^f+DrY8}K<e#yKn%a`l34`gcv*AG54^`mG$5K@C8|8UV>SBp}nMit5S7a4E^R
z8w70z=``MTtBfD;^yk4u<%$b}|KH}Zr}QMEiT3(G>!%j%2VcA%kbF1tSs-o$CnT3w
zlVx-Hg;p6CtCQ<})1&MRx&;Z3Hryh)A@jD4ns;v)f>y~YkZL+#`A!l(ZDX6_u0RXi
zpXpZre~f))P*vf(FU_XAq&D3tNOy<yraL61K^p1q?v`$(OQb;%1nKT>X}HUOoOABE
z`H2~rVPLQIzEAw>d@RjX;5?7>D%GI)g9&3=rTaHrorl>dqRR58mo7kYcQDt-pK4mr
zgIMqJwXFGtr~%V)`QnmJRf0+UGalYwl6VuRBo&zb1%MtBTC=RkIA30FvwR!0jGptB
zJ+@*p2OQc=UN;H$JY1GGzLR1|vtP4y9A75S^7K5PNWDla?gAmBGBw=~naP)}s%y?;
zYeMyj;Xu;+r&YU7+C}%J4d?4AnNq<zY(TVBc?u-JXK`6K2?2SvPd0)u0BX#+5n$JK
z^E-;n3J};+e$x<|?)b!Zzr*IwumSsSBl~aSG1Cx<OEjIevtJnbi+Z72FoBJ1sO)l%
zbB%Tg{I42df4!81`Q6d5&Lh2NGm;6%sQDjeyO)*WeTW{5uMv&t5erwYY}O`18Gvg%
zaQR<<v3|Q_khFy_fFkubJ2(?HAgALW6F{XP3`KzINFXLAgbP)HMNX}a-SftEr_X{l
zXT=4JT!uot*}yiZES$!rRO)d9UDH@&(fy2V=htDL0~hnMrs6BVpdIA#Bf@pmVv#0x
z(PvbFkdKEEg%FornlBaE^{83|dcR98lfP7@H8upb?iK0YPVusubhD$Q_@4$$Bbo@+
zMp5NiBqr93A(h*hBwj0!Zg8@uynPco@T+RZEDSQcta15K;cID4J8eQMfvLt?-Wb8J
zalaS;>B+X#FaBQqX}{%-kA<Cw$|k>vJo&6<>dy}*;G|)hFm>l1SF>1eV6x2eo87K7
zr<|RYy{><`u&X3sPCR?@%X{Uh;m24~Y>&MQXwm}^RfnVSxGoGb7WLPU<lExQcK<=r
zvqFY};9Zr}w2z8d&H*&`&5Si!>(ZUc&{@`Q=Womm?okmo3YEbjVkaaE^`?uG2R|)g
zb*`TYguBSn*q&yNI6AIR&zPC)sejS>FgDWpv*2Cr4F_iYD*jl?s&*J2KTu+k+bf%c
zv-;-9tz15uo`og#{%S1e#VMDHQYk4{sH64St5Pjk3j&e3U{>2rj|*T{+zS&>W^SwF
z=74h+gMy*L578iqWhK(;)HdwH#w^D9S~gRy$D?fHaWkvsQr<V+3<H;}AFQzIntGrs
z_Li7y131W0-5Zz@l|O(b=&H^amg`i)@2G$CrZvqo*yB!G(Baq<3sPt9LI-#ht87h)
zfZgpwd^He*ll_6`?mLFabw4w5JHQKU{9`Ib+-B)gi?*^oNGz#;m%~N2rW;40R1bnN
z$?b*t(0&%W(E^cm006y@gTDelk75)W%cf7Jk4OdH0u;<ce;=0>fR?un#5YHx4*y&Q
zjHDz_0fONfjnZQn%Wt?wJbl49LXJK<%W;dxAF&QqGXp}LztW9SnN-m#8vrHkgOl=y
zs*CshE1P&<!I?EmRnO%EJ#IN-<W=(kd!Ys<BEdZmII({z52a(PV8JF=*%g3}>O%BM
z<2NAKb-;u4MDbYlHbCjONf=8`x1AWKa+SuIO3@CYU8&WGuRUMH`Cl*WOH{E3b|kvi
zb4GvaYDKYspvpNv{;f7W^CvV4V>)Is)uu7U7Q}@Y0IYK5t=FoH^P9TfO8%VnrOV9H
z#;r+xD<`Jfz=3m#+pP2AORr9J<8=BsR(0_g2Ya;@^nJi>JbkKfT5wEuoj-NmgRf9*
zCw*|paC^)>%^GvIjfT7xNduJ9?~TF-%tJ&IsIuB?qx-51PP*|3aQT^{S&J8i5c!6t
z0mt_ukL?7RR!B$D*0+~*L{Uw?3n<J)WKSXu6K+R(`eA@i6&hYgFzEF5WTCN?>4*`?
zN@jJh3_KD^H1a-in?Svf@#98hLIt!pMYx4)NOakl2?T52XV18oe|O`omf23yqY9P3
zM}jypGCIeDPv{J_V(TV@cuwT8$tYjX!$c%8l1$!^H3Ju&TB)G^%Z5Po+%ur&QTnuV
zGq)E0Co3@J!!C3>VkW??u~KQ;`DVWVv!EN0hOdh&H$_vfOwgn~83Mf>A;P`ygXORH
zVeNMcPZCx^aC~s=_U)g}b{{XQThvyR0vRwmqbt!#7X?1?rgX=of6$tyht!)o7sVhv
z;xPelva#t2mCWe@=u6ki;T4}f_m1=J@WO8_{Ky+sL+RhTm0?EZeEu&m4ujqRl4)K2
z!Sn`u+(WEL+2d|EWD5u|be7-N(1MRd(qy3MK_`AUuG4dTVgPLtO8!ksVKVo1a@DO@
zMz!;Vr_EIs1Q&Sy6TX<Ki%Gi|qn-!zc?pv_9PK#rvw_MneV~CgWn>6#A-$}_v@JFa
zb@5z>&(%0bR$Eus_GzLq_$+JfgJtPiqj!soz@(r9i<syN!=WQ1+Xmtg8jn7kQQtZ|
zrDll<6fw>gwI&H~UEVwUWoiv2jH6O2f2iLzq)dL=yd#agY^_P5EJoepjP~ug>#)+F
zv5ese0~%yRJ6oOK#*FW$(o!ai7x7iAv^Tj7B4|aV-UoiCin05%%uH2<c-$t%>J}*3
zwmFW2)X>UV%JjZXQ`*~oLwt@n2&RybdbG+N1)CCky+$je#+iU{gTxFEIn77&OWLnr
zZsMjB2}Q{dx3oeFEZJ$=T(PM9CClN8=og(lSyV$gvepw<Mr2Ekk#)>xez=h#@|v3T
zw5KTx!4>WHjt4o-egaZ%Ht!+2?`ZY##NhDfdUgi_d+AXnXI(embXHY)#VJWcz{JhD
zFVRjU;ALUPsME#O#NM*$`mo0%GZE%AV%d79E&HSqN3jVwX;KFCw=mIARJ|Z}m=_91
zk9#{E%&2Jgd*-xnwvZFRsI=QWl)uOxx(~j|qn>J%mw>r^tA8Ebwtg4KW<UU8^Ez=t
z#x>LE04wydwr=7-SZ-Lt!BC-A#MI>o*hYNvqi8bzMs7;Uufjads^%&4P-7rdmvkm^
z<EqH|eF<3>Ph0Y%-w-3pg@|-73f$k&wep9e)q<@Yq2yyVHML@aDS+YL??H|+%R+y5
z5D78l`lj<D0mse;J&lJd4zi34(2i<@vPj4I+<=dITOh2}U^~a^X;jhKDdK|F>*Bf6
z?&kbGdm7MKF)I(+#E#`P>UVj4#q?;C!G~AHmZWe%%l#pm`MnFsGFSSo=0;DM%`c4e
z2h;UndEr16#>LPP<3vv9w1=OZrWY2A%;$w;66Jd*B`BJGJi~-J_)Ks-%Zt)@bbL`n
z@K^F8b@wOH^%l<7mjMzA4eAtZ=EY!VvQwn^sdFKVcgvQMKFuzBN-hmXL+2A=_s)dj
zIaj+sTq+UaIG??zS%Mf~T<(A^V2SmwFIb?BbX%GGO;F+&M*Z;QboIHt&p$k$+s*(r
zmf3RUI`Z*q*OGp<;O`zb!M31gW^Hk5e2fC&^}-faagMl=RwKt((=1L4<gd1KO1lHu
z?d`P}I{m(-!AavO8-}+#{8?jLggp$M91ahahf_$=a&mHvnYYoRA<|$Gldk=>>V`Oq
z8@Bvx1Cfp!9(JzLqDL#4<|L-V4qNwfQF?|&%A;1v6xVovk7{Z*1kIR|UdFG(37+HC
zpk<vfZgT2PSbEze@J&{D+MjE<z@?+7B0UCeOfCuHo8tUKCtM+O#u8@29ZhnXWOV2-
z4<lUqRc<`cnJ@UQ>BKZ^pV+1^_Ns71i@Y5&bbROEJUKV|6`{`_@PVd1e!e^M3aEwW
zfqhHRBS5BHOc<@^j&WU&*-%emO|0|JV6XFYfHjw(CWjScMstox?ju_yy~6ScbMrSB
zN}-#*Uw-oC`EkTUFqwk18Z{^YAQBG~?tfhC&e5#ar9lem^13NLUFje$9@eub5(5kt
z74X~^f;z(qn6(+8u}N3eP2(e6@;EIT#0>jIw_DaU<xPn+GdIH!H8AV(ED6{9&LwQW
zhoVVq`qzn@tlt6(qc^aaPxQL=n>-uBUX{FiWPLF*1otp7!Tj_rO6e+1n_GYyo@O0k
zY<#?sMj>@r7;vjl8m`2^g}nzQtjeNJoZ-O!vgXVad40nZi}UOve|Q8Z{iF?LqDl9y
zuZyF&NDLfoO8buRJTAt~6s6EeT)Z$^>s9pF1$`9;b-}Oremb-QrC%&w*exmsEva8q
z|43Qnc_t=)zWJk`9QMrEOa&e-D89b1rg?K`MDXIfMP5Smm3olywyKEAb=u}|&?F5)
zCx5_2wo5if?Vl5Y@b;x}{wUfmy{|SbewbfVE4>|sQn>9&=uU$uO%+sB>H_He6u(>W
z693~ui54A@fZCR1LP2JFP?~)2_Ch~`b^0YGL~^h!e@s|AYLagwd*5{=pA=WzuRBoJ
zzEdUf_^13IR>?A|UE1WQ!XlOEGvpIfsigF4v`E%IWs!mPbjnVbIQ#^ptGGPs_z9KY
zqu0(}UK0g{7xEJYaPoIP1-bfmyk{O$3h(2Ie%OTae`}bJd{XScQzS1k@j1@!y{!>f
zHdk($CbY|ID7=V|#KL}n7(|3gF-TFg1~hYK?b<BJ(_HN@=TQe>S=bsZrm1OGQ<Y~j
z#40mC|EiFuLie48;E1C3?vCWAmZ92Y13=YG!I*IC2e-bPW@o3<#EY44BeTTR3)rWn
zV~@FYHhEiw(ElnejnDx<TWdDC&h4e575e9?8^nm^MLK_Y+H4XA_xI*wB3G)$U2-a^
ztd?JV`a0jP0ZzuDGBXX)+ozXb{wfulCMq8cAAXTcO%-XABzd3DzcInD{Oq7Q#P^|=
z6<=+88!w)UBe&wW1KkYCKyf=^%Pvx3A))inTH^Y2ny|y>V|l)NcVv7swc@$5H%bu6
zRWobT295sG4;198<{%AC<Q;_zGgDb|`n%W!G=XW8`oVIqt%-)Jt7n{LhEes@N06%0
z*C;3Q#ri0CK^;$}K#L#4AS%+G2IriMjl%51B%2nwlfx!~DZX4Z>?m#(j6vn_wX|f)
zIEc@4I=%eF@RzN=6K=(ghPNBRf`49&rtTIVIkSHe!<~~o0rOdsVO%`<+$A7!##;?H
zOtSejmd2KbGLsN`o1@Yh$WOJD5dbyJGCBbmmbD@}<uQE!^gGL;n*l>iNo`a&9I75k
z-pkIC3<i*XCcqHy-)C~$QU}P0pwP#EyLvM`yP7z4eW__eA5hNEQ3~43t*Hp*jCsSI
zSP|$!2USR@v2P59VoDJoH;4rq=N%zrP>TwhP!ejfV5?QA*n7-=Q9+!@#%jHmX&{<T
zMIWDU5_MK;9tcyEX40xjzA_%b=T8Z5)1c?xbishB%rLLO{|xp92(~Z|*C<yZcP~&_
z%2<$_cN^G5!QzCw${Y>|)3nLf7d}BpCQWEkDl3i#1<1&-8H!kh1;0T+{ghAM?|89)
zUmiA!x=B9VW?|B5xnYeNy2rh%<2E2{oIhEcwbT#9)A5e;z|#59CKtSh%dDAnm;DhR
zmm+e6HkluNYCBWG2v3Q$djv$K!?tBxF@otXA%z8;Wi_cK0mCE&1axPxt<5|l{_Ld~
zJ1X>yn~kmjA$fGy$m@WHk1h6$lNps`a^ZBXXAR80nX7?d%CP)pD|53EIqjr<Ls&Yq
z_KSb%X2-nU%O9=TA|@l4x9_Ca6-B`!PK{GP_P;r(Oh0ywB$T{<K+8YW`oVsg4(k~R
zMYLF)r@@PA{WIkf{dp&`Wc1!N8tT(eVeQofZrmyBU}n{=OdZ#!B#KSCHV<gW(c;Wa
zw>*J}1k-Ld+oDH@roO;s^)?g+i&auw??-1C3eKt>3yqyX0eY7oh!y;+Y49+2^7v=r
zFetDCU7wLrM)2u12rmp+R)y}}5tF6D7#&H$)h1BLkH8M<V98;Ruq%XVkHbuwc=`Yg
zH<8!VD|?FzHH8{18ILBGtq!YK<)vM>F2K?HBx{ITh432<RudCusmYpU<P)K>FR-!L
zEO@TF$oIY9(bD%zHU{U@VqHjhFLLc+XwINeZUSC!A=6vx4T1=Rjh6m4d?Vpumv<L9
z+hYV>%7jgf7Sd1qqym4$zMmlbr5nSK0hCZi1Z1~sQ+pG)8tsA#W#@;eS%{W_wXBT9
z&R?!1&tXVAxgl%U?P^Ejez=(WSDRVt`x>Pj{^A+1lW_c;RuEad2m#xRoG~vX_2_qX
zR@s(st-ok%PLmXzaB!NwbA2}95EOP0TN&Q(S|jCl>UyM9r#LbpkO-rrVJo8d%^^)K
z`3!Q;<HQYOpbK|`3ud#;EO~>J(UK@dyg8mH2Njh8YW{1Y$7UFkU%IKI_r*ZaJ^(y&
zOjI~+@e+lB^nU>o_y}m92EjDo^o_U#M*}7?4jt8s>c!*9$>x!9%8vIJfe(>yEk#g}
zD%Jm-t<jw+FB=7HDxlxm`aEGRcKe1^ZO$2`4ZG?q#A9*3eOs(Xg{_(z^S3dFmd-b&
z#ME8!(#O(l>^^4KFv6Wup`(_bu{ZS;$EuHsx$B%sl=GMVKn|<+ad3#U+kA4B+`&BV
z(2<q&DzG;k=1;Vu96Cxhsaf(I>_!YRVOZOR)ZI2MewQ&yrB+t{mohz%>?^N*C(u%(
zOYox@#|1OUmVPg4XVCT|@@4S?r1@03qu2|@C93#kW02Qu=`=C&XEvWpbcpOQ>TGU<
z<B++%ww4Vl5b;5$ZndJ_!rKDks6nk!jk!$9sU(DWweH&J_vA7PU9I^h(u4Yp$9r>e
z^())u3ya}<-k4NE(b{qdYlOnnk*(~8zd-m}%Eyr{WSE@IJ&M{jZaVQfm1DXM=npz*
zDh{!4`NDAM3qAEC?s;MVS!n+@@Y+<E3+IBPLK(7zOazNpatsMFJRPEBOIObHkNp%t
z4Una$4J6rbiVv^ArJuI@R*;<GoSo@*BIABxh-K12SgKWRs9wf|Y+9(It@u7NjkO4(
zbBsZzjCa=7Z+dzxC??9BPg_4*e!$1QZ~g%tK4O6ChZI1o!pKQEBH8-9y@z@B^H7tZ
z0-chySZo_|QE@sEa|F7TK<8%w#emVJQMfN)F1klqo6W3sW;EhK39-C0Mjg6%Z8DxS
zOB&a(C-eP}MS@P9_xUczD20WPo}bEdUIR-WCRQ>U5+>pS*f+t*fk;*LW#r~^*U%U4
z^+Rp+>aAsFt6HdVqM@G?Qz%XQBW}kX1yC&nIthk4bjlRIwY#6l1KhVF4XY}`F1Buh
z2WnpnjoAK2QwuOw4$?c<eH95Sm}mG5+47YY=P?#%bg`VFXri}1l=EfIov&wDy@Ghd
z!lNB;cD?bLwZXfB%?d5GDpu;Fb-CdxFWCct_!231{U;gdqa#lgpTc<FAHX;WdtRd>
zTnmAd6eO805oiT>+6A!m<QN%)G`u%L2;R7)S13xY2E~`kdhXN7IyxF1jjVH^o|=nU
z1+^+V?PgoLU=v=DFfjBO672e?pjgEpoga%W-JwGrXq3|wM%M^}OcDXEpFA|4;CJD>
zbyywr$(DzkBZa=a%$|YHW+iaY92e%MF%SaSlI{QfEBr{UQIFqc8y(I-5AZ!L_=706
z?s&2pQO%%D@F~)GPY_qwnc+2}cJI$zKM|soJ1nSre4AKs#D<~NYXDaFRtjO1*9SdF
zT$`yew0?dc>a1LNm1r_3F9rcE`%GCZQsZh=^Co?ZeXVjl5;u&?|4bkmo&d@R&KOzQ
zGoAbuQ05n}qfB$OpqiFa8U?N+OC2<Db+W;U;jfW<XhO^Qgo$S0xU_?r8E4H50<cYr
zi_Xem*XZcO?)Bq8q<FiHmu``%AtW+)rx~}(IMr_G2C&E6CP&6sUV3*7?Wqyf!Ifj*
z(w(yCyZAp=9>Qg4XRM}1ZV6GTU}4eAt|~0(b(fr9)uh@No7rbFjre*ZzUJraR?`<g
z-{7kCL=Dw^hyU8}Mr$HJNkmZA^Wta(Uls6qGkg!3=rN%2?wVY!52xfuPdn*LaUDl9
zQv3a|kc{|gPMoGeekcnKGE~Ll5?snQcaP&D5#pKQx;b`K{`=#mw{$#1(Sr!ZEYTJE
zi}l3lkRK%`wRTjW10r6$iZL^0lstSb-SCGbCzTJb-P{+AmyOkg;kxsJ3xET~M?tt8
zj8ypChBp^LXkszeJ49eUg(YTmA>7`esKR+L^t-o^>y%go%s=SK{+MHeF5>&+a95Hq
zDG=!RJymz0M=(c&Rg(I9p|^*BWVMu;o5dkM0*<-SW_bJa^+Cw;A+o5(KmPnhHw$-A
zb$a;FhE(u1f~Il=qR3ukuLziKra^81=Rlp6kaD72gAan9=oI}81rz|t-TMlf0Hdz?
zkMT$Yii-M1fNM9Wav1taRF{YnWakF`^2LK97;T&X*=uts=z(IU-HqwMhWH*E2PZgd
zr#;xU(c~xE*vQB`P3-$cgi$7ab`YGkdiBJ&UINw%4plT%H)2l7x`mA#!{l#qV1rZL
z>S1xOJmIbZjNgR;B^9tDBu@rAuy}w$?u#CTM(f7-E5Yf7SP<(wP&63L?EAgg4kruC
zib@L?vdceKIY7neqrk+~gp}1~D-ea{1iQLoRzydJrzh!4ZU=Q(+cn2KM%ue~YeYC%
z)qMF_0HK#xoano3R2y&^Yt+pi-yRb2RtmKf;d&quk@q&DHoNMP-gT)VR~+(xFu>$n
znM90qh0lz#E(2@gnRB<|)GW4V5GN?NVMy;RJfahQG`Cxk`pSC56laTepd7aPI4vuY
zzngE!I`ja22;Ih9B}N))^*g-5o&0A~47<L*1dW=`?}<Wqgffwx7H&qlQ(H9mKSMOr
z-^H50!0DU>HrwxggrJ%st&9(O>00+qKfn9XEalxhWCy<TG^>|jE2bi!bQ^i&V#2dm
zUncTs9H@}V&)e-mljE{tkqAZfHoqf!V%2~C{e{|&miJq-U9%L7$6<FCw3~?}|Bv}p
zZw($J1i`Agw;L!RwVTx(G#IMzT9d$DuS@0DGDjXg55kav*(4-*>xluY(>C7Ff7ax`
zA9SPyScED>yy7=lrW^dU^8u;Pge+uWh9`D_*a8{b>;Q%%bTD04M|+lD%&<z1XhbeK
zCsq7@Ge^T-Gjy0(`d!#_vbR<Jx@>euQrvMG&YTB%1+ABuZm^U9ydAw3v(LAVDMoPv
ze%@g@rC|Q80-Omsgfgl=4X;Qr*O$HR95sz(xl5xO6|-O)N>GqH2Rbq?a`@)QRxk}V
zO}1j`19zdhSB(|<O%Pm!5H9&t%`h!eG<@kpk&Wg_#Z!gRu9uiADy~_FF-P}+VGhA+
z|5j_HtPC-u@O$R-aLhe@ri#epAhkq|lgsW+FjT`(v0M_Wvglv0AH$T~MAF~~(mp~0
zGj-$`ywclT@5}w7I4`9tIEF~c{9t;<2Zk&>{H?96fu}$h=r^+5hdz#Em{Pr_g3WJn
zpapRN`$9dlSY(@mcGEI`CP6Kswi}42&w_*y1`HVRA5RUIh{vwaKy!%z+cLotAs5SI
zcApD@V6Z@6+rJGk4l9fbq~&T(^{K?qd<5XjhXOsqH3~3$YKut?L7uJ8?|`=;Yx$2V
z4#fAaH;U2Uq~pj~<br$2O=+oQVw1BB(QSg{A?gD`?4d^y_i9Z@mjy~Mn)g7XDL{bw
zlNR8~?*|YY&6o`0Sx|VumUK2W0oxL7Kh~K}E)7Jt9kKB?aV#ufPGSw%JnvIJ&)1;O
zVQmhL(4_!yFhpW-%yEh##jZgu>jM2&xO?>zkp5SqW#}p8H^H8UazVw!gfTvazH5>P
zSafq3y%u+BiGrIbu{Jx5H~S-`=gvtH#F>Uu<{fKI-x7D@xJfBuvO5_R^nn@}L0{&R
zH~7s8LTl}d3nIhMG?ztM_a2c7S>KiE2kIX<_(OWw{V~3~sr1BXyg4HZh>Y$X8HiJh
z2O|eEgLuYf5%|{jh<))H!#t6Q>5EtIrIV4jPxZvwywe0Agc4Nc4|NzCiOWHPpuhr_
ziW&u<dPMP$9QR8J8ds_0=KiAjO_Zwm+4B+yJzd&%5XO42Cq{`6PiBSDMQ(J3(+!>L
zF>Jl|+b%0swVj==GZ4r<*@F#x-<3ROb5o#Ml(`s~j4kT-xqjX<GASdK{ct<_4PhKJ
z@V$W`bdZBYH-2b+hb3U*09+BN$ben(d!7|~EzvTsWUoU0!QN8<4Tul(;5BrelH!a;
zT<AFC7hz{)BkMfeK>0M8Yxn$67}0}H8VQQ<@{^s?BhpM}{Ds)Xi0(~atBpkr$;}n=
zF3U$b7!Mc3JBMdNZ7}IoNLv$zq%4cM`-~<tI14!T@>$o^+DAl`Q_NtpIW3u*+Ps-<
z`Ups|)1;t+@&FB%f<3<{mfIOH6spW=?1gzq&7dG5xe;k>t(HT^7Un)KHB(h``7f$i
zI8B-u*DL{^7?h8XFOO0fxJ_u{U{p3q*GtOHbE<<l5zP@_`B6E^HbTvldj-ROC@qsh
z#sOmtk!%y~91q$jOikZCA)u+%5QNKLjKXub`F@Lxy5<Y~GuviNB5=AZ*Dws?U|Pk=
zjuW?{`XB|7cYUD#+6P@SvstAjfmLjrs)>c4`RDXDpZ4^e*`razw0sz^Qf_*(&FSQr
zx!T{&9{C1Q>!rF8m$99BL>8D@MuAE-9fYL{_GUOU8zPYALvPVbT}p*b`Y9Z@lRO8V
zk}f{UsZmhE*agh&2PA|(t~a4A8G!7{{T(Q!(4*SQ5T$M%S>XcodJ#TFq_~mclB(VY
z@K~DBRWH1~Rdc<KJybarv$J!31=-v#RI<VemkE9#cYL9*nr`3-;4QC`ezn&)@!8u%
z!_!(8_MQ}@5Q(!k6>IJ+#+Yq033oIhp_-f{CipQhYk+TkUp^5c27V~N3bdiAK}yE!
z;%NOGd%8=qw$;u>;#NdY%o5ed-9$w<*N|x@QpH}UN|cDts{W00VF;C1su=fc$<s@m
zMUEp;^|G`CALseZ?MKO9p}4o})ib+65y9TdZLQKY5Ivrf)LP*W+wbSXyHaBussGEI
zK^dRX8m4ypu{b%$Uv=?Yb+XGQyT#xcSM0Ap4#ibwhzyT+6r+ms7Bfy(W4enyFBtrO
z#yl3ef?@)%`tpc8wFSOMno}=ml?*3$s*4@&C8$N1_}z?WT+%d@P--UfAKrcBb4_k0
z<&zc&#^%w$xJA|)%fe{y&`>`JOZtV{GUerK`v*CWq%b$8kohoJd@B?di8I=V(O|ar
zPsJ+QBaT&)mC=pNZ1pt64=>J#9dah}82fY08-48E>jHtpOwr~mwzdC>uwDO_;2)Cr
zsWo*Oon<Q3>E4RzM>UvYsGkXF2$O4Fd2*ecoLD6rB0Z&-nZjj0XG1aB!c)_rs{E!8
zBB|U>bW{#x{$f`QregRm_+BS*QKQT9k<6UH!fT#UiGW(Hy?uAr1ERT>b>+b*VEda{
z4z7W+b^XE24=(b9<FlQ`u6xyGS@TWP!LL$<uQCP&kdmM>5J4Sa+gBCI`Nwe&`7#mW
zPmu`CnRS>1>5!KC^4X8&x^7iO$dIijDMxT;>gtjBPl<g9^x|bn_93xg@cL?<vk___
z$+W2XTjE?ucuS_t;LYbu(q(fApCP+4oXE)Zs9Cff_Q_j7-qc>kRw0NP6~LKWvtKr?
zg6|Rz_+4@CN<wt4YgtB%44Bjyb~yqlc5$jvT@Eni#dNNGBacEninI3Ust-AbHe8^h
zqNBNTMRo<dNwUt!*Q4R_TT?Y}5qB>*EYY1gcD1{>9cscVP$KKj=dEspK2K7C>K&7+
z*A(syp~dji5A$?pB5XfD?gNy+_-(OS^gnmZ0sG;eZdYH$iQ<)=CfHrP<nkn#&wHP`
z43$EjPuL!yFDo)T{`8NC3cr)i7pDY+B1eqY6!|*vJKWe__ci%n4%iuao4>QXmktk!
zVYsp{%_dz#sWqsX#BMDW7WTGEP_Rk5lXWtsR^z_7sx<G~4JBP*NdCI<mS6a4v#?#+
zf)O{071A@l<Lu7*CAw!dWojDjhC44Eh{4PQ4WAi0`NHEx1ojKEf}$=vAU<;_ZCskh
zTwBN^`#@Qg6&9R{6LldoimPokEz>VArcUr>z%V5k)^-#qu$wL(VZ~7BmmpQipxiGv
z^Q|3Im*8I-WpDk;DQotf-BAU@yV3`YRYCr|dky&IjL|O#gF7;QXjSFwM&O098zJZp
z*Ct&hFY|8-=_Jv{2+^eQlTk}y8auL@m=q*pmdSEL2L@Ex&DE^H_<s{cM^05+b3}u-
zokQQ2zhEFhxc6YXYK~#iYX<4uq&7s_*0f1ut8JJP)udPZ8FSg|2S=5r3Hm>otk7|p
z(hBO{tf-S{rs)!C-j&T7?UVaK)pPs>2-h)Sv_0~fo-6p-rF$bqE$&XQ2WG<<KYcm2
z%@YZJWAtvYp#zPrJ*SRAVWlOYdD2gjG<Afmcp&!n2QD&uTVNTk%}fRht*ZKqo9`fS
zQ-@9*c)`QVXcV36q8$Xv?6s$iDF{f*%=tLXsHX-5DSY_p`I^O8Y4`ILzwZmP^$JGQ
z?W6T!-OMA^+wPJw^lEB37V73uFo!V13isAfHl_c;X~YzGnZ2}Tg;~xyz;xW{)OHJA
z_+Hv?J78>&irg<KKZ+FpWFUr=VXKY}7fue7e1{D!ExQJ>4QYt};)whp+m@|Fw163w
z^9^1sZg9IGGAar~Gho!z^JRB(h3#sl!-8<O%?Y&aXf9M!jq4Am^;-@lP3`y<3F0D#
zTIIU~ZY$83*pOW0a96v)OLnoD4x|ab3gY&=MlX<L@au)vGXaxr>ZVw25*RJFE@iWJ
zd_4+0A{O!P9@=b`;cPy|Kh4UCN^yKvu4$kp@~SEh4laxRn9bMk@HzU2fY7dzUQdqA
zHBMyGrhbK+tug~slph-$%IzX}OdjVZ{Y=3713szO9!i{>3(SAs)gIFMV85chezjr}
z#rb13U0(cqWxGfJnNw?#1@)*-W$%uZDzR2n{boC&93ZFXa=d=usI9X<Sa7vXq74-x
zj<3p(uAr>$HF-(SwXRD4{1Dk_$7wVDyBa07BOU4{CaSq&xPBQICNbVrq2Pm4^Y44W
zmK4P#VNNKQEc`Cbz&*nPNVV5DA*z+}Y8OeCVHK)HmQaD~CmRp@wuKk2d}m)ziCE5=
z`vAbxYz!EnrFr(2U^GdFCfl!sVzmT$G}i>kW|)!Rd?;l_Bcb41YPuJn?yr!t7QmaT
z)1Jl?O~rz{UQVdDEjt!~{WOhTNj+Q7Q)1ml<666$t=x8?w_ZpikbB4pFNbxNke=4>
z!wT}$G#7Fq1xuL)Es`!XnF$kJP4Hul>mv-M>jfWKhtJV-K*ifn5ili^jwTO$l_FIE
z_wz9(kc|^moc(ax8Z2N?_^#ig#s;^6x)=3QI5ADAp)i{*vTMAdsn^obdM1jhaX8BR
zi5|S^2^hEXf9iVg(6_3O(M9GKx0L~}oXozy7hxCUdXACnxl06BLMIwszOIUO+8gDa
zyWt}i8@eHYy%&9vxrz39`=bTmAwX-Fi@HYID#LDs0gVEB-4~aC`Ev`9blzraTs=v{
zArc0>g@Ts(jU*=7snDK)9_b!wf|rd8K+}8a$%}X^Tf4s)aOJ&Kc!C!SiB*kd@fu3W
zXl3j(qXmQ&#$UCy7i*Pq-YM@63$h-eX>+C8&Au7#UQqu-e50EpaIpZ<oRZdmh#U!y
zskXxc;oG!9_bDKxzeg7fXQ3uufJ?wytB>u2qGdmHG&{eXQCF6aFu{vMq(o5m0Bt~r
zBUZEh%>_c5mD1V~o(X}bekUlYz<Je+;Y%M|9DXmTtho%ks!oI#mqHIV5f3E7uvHFP
zPfsU=^nWA=;EApC@1y#w<W-Ks^Ntcnk|HgkER^SF${BRiw9^}xZw^LA7#O`XPA;%f
z;DFs84W!$0(vT0zcA0l#c(Eo&J%FBuM(5A0EGD$k(tO7!@@oCIM8K1bfny-fq)gcq
z))QNV%Z=wJ8u2^!Oa<BV=a@Q)`lT4%P7Dv5vwhXQ(N8lPJ$^#8>|PiQd*;CY83(4s
z(>}9;zX$`?PR#IDgk2VMI+*A*`fET$z5FOmO?p678J*|j87}p3xN6K|dpv>q?URH+
zx8v(KHF|{3qcuV$mKtCA_5^7o*J-oMKaeI{bU#<^7Tc<Jak1(=-s?fm*e3-&5i%Jx
zgy`a7gz5p&<xjKr4vS)BVUAHPA7|cbe7aMq;BL*Mb`8iT03$qc8bot%=q}nl8a|08
zB2BhEVCzUHkS1W5e_xqYEPC43aN*#;AL3tR8XSljdR9(^n!-ngYlE%*k=!p}87$Bo
zvGydZGGzPo^R>9rm}5A<_gp2z;CDin%z^j~$JxFU6?(upskil<x_bG6dJ)aY^nPXQ
zJH*w8<To*G3o*mHY60$;BHjTSDOEytV0bAAi~NOS&W}9*D<@U>FYy)1C+|lz!-hhT
zO(lOJXmq8yU~420ynS7fkwft-8H`)rVE#~}Ud0*u?LDt-yqiP2z9F&YhYdyp{UL+6
zo)4Zv5VGUA*M?CryZA>OxY5M%=&*b36pU(vU#-8vKi{mOF$Og&-}_c4_0n$^db=jW
z4Mv}M_jk4A7V>{(rF4#bl;K&<3KPks62bB6)YJZ6+v?YvvIY7l7W*$q7Ft?V!g#gQ
zGx*1-E4N^!Yiy-9=z3pun?oK;l}Qt0#T&Nei)QFO6BAFVrYGO&xFnQI$Oi|*(k;bU
z5<c;HAMWvA`!3wwse4bW6rU%%Pkkpl)HZXnz+2)aljK3I;dB8Bn}<O*q`^>1Ehb8f
zNtR*`4~3xI)om6A3|s^;%6=bjAf9Rk6it(I%T2o1Z90H#6qTam7Z1Wq_?aeOkh>q(
zXW<E2{5+{ba)G_Kqu`$cg@LOo)?{u5H=zNS?~|U_v~qU3q)di65j^%A`6O_TMqjiM
zq7R1*FPG5&f#9^~TLKIaXJ(&ngpAuSeFo$$pYo;ZO!j&p@?jv*v|0aJb@c=XH1XK}
zrZa3obS|W1Gqu28K79d<hgq3a0b@aMxXGSp6^?yu$EUN?L_ferF9JgTsY8~@VP2(4
zji0q9LBa2Nz4J<`JTF|fO8b1k{cM#gg+Ub|5<rwARf;dSrEw}flXWR^FI|D{;_@(|
zxmi9U&(H4p0*SC4Wb|YrA+KoSi^;V1r;#W;)xRuhRW1N&dP-NIL|t!eY%EhqtC7wm
z0~VGd048r=Tpx%Q^d*x!hm~rsTCdhJrLyM98nz-YzIw2Nq)M|KQkhC!Eq;$BIk>-n
zcs;9SG}5e;O`k|Ov@Apg^KUNzw|<-SUlyvW390V`Tq};ZM}Ezb&(fX|K})Y6i$Mk3
z+oh~vzh)}W`_u=|x*%oQNBFaW?b=C~&fl6`nS+TwK5m<AAh$<SQ}YKm`D8jeSWb@p
z(Fi7i_iWm_q63+aR@~^SX)D5x3ODC*1`~IRdj||T%MQygDp%&=^mnUiKNM6qOqP`O
z9ToN>+85LZ(Bn@DDq+sUFzl%ms^|$GCxjzN_4hmAt9yLs59FPb#e7slGUsbFEo!5(
zwr%-2NIa+pz(Nhx<2jEEd->{Ep5M7|Ga5Tcf}&e@{tS)alSyy%u{dh4Xpbrg%eD1E
zxWbciQFq?0Tw_XcS&Kq+xl8m5($iTro{$Ibbg>DA@S4I!{ycN`?ZyDt;dqvvy{Eg9
z#}Ag8Vvzn2th%M@Q`P+@N!Ex9Y{4&z@EmsK`M~A!rTVipwb^$+kZeK@^xRWr^))QS
z&^6p$Pn8+9k5@<W5+DKkV)8dL{w^=qF#^k%yQB(Vo@@P?8~aW^S>@<X$23Wl+4TMJ
zI8C6IE99QDaO<?(T+*B(83LGS|01OQ>q`nQ^o|?s*>;qAV`cIAx%IyYYss)MK=5=X
zriPb%B<(jB6YJrWou5KA4J25EK%$HWr4-IUxk#!RL95L_&isoW99+*BI-7IgS1S|{
z_A(zuIOR1Lb%82Ki#<TKL-0o?cZv*npzFMknjjF24M3OGJFI;3J^mt8ILi;Z)$9ML
zEN1AR+4=03gE-&74IB9zP=XwSib;5>qv+l<I=dkvxmPs=Xz-d>3F!>Q=0q0*pC+M+
z15DPtkGPd$4<l8#%Wvg}IpW-1Xr7N7CqZJQT2i=>Pc8OR!JR#?hDC)thO<$yM)iH8
z1f5n;hK`daC8LPgt04sF@xG4$kV13d@c8E=f+wz|5GJg0DPG$%Yca5Hn|tq0ZZ8YN
zqLEcc32fHXQ5`E}d8W1R5ylH_EV{qEG((frWnu(<;C8fM?IberI<UaS#x`x$9`Z%v
ztZ*)RLqH(o=<V08*k;Dj66QxAM9udv`c7{~+-D)4Bqck8jb9O;htu7S8<%|;JwiVq
zsG?@g(GGSlAa3sLx@D*nJ+p*uI__mt47<&DzMGn>5<>j@{kQC9e)5?b?bj_wDoToL
z*R{$6AF(z<FU?*qaC=S>^WHE^?RFO91jqaf;r-Xz{+~q5X-X)LsQrB_ofsX*f+jZ?
z&wt<Cy*MzAjoqKl3=fouuby-DNxT^+FDz+cRNfE^c{LqB0qImA*0qIy&~D1?K=bg3
zNRd&^qGE=EH*`;5ktUrtd%l+sYcH^09QugC&7f`b8bP#OTY5J(u)N$jmrIq&%SrZA
z9T_*jA%?X7V4!LH+fsg*$Y!7kPe7fOZsarrSXRstoPgEyS-EbcJNV+}WJyN)b8(wn
zr31zwx9#sYm6%h505UGErO%OUYGy0vyuLk>RA#MChtyOyTlf>6K;M`o-6BsRDCOm|
z|7n{g5@UROLG9L%h;*0t?H6EA_Xaur^{H`U*c}Mz(`J-0^g1X}bHf?U`W|XvvdtC+
zrGaXqqqAVYEroerH5^s3@*^t;`{;cp7uKz~9+B@|or(_j9E8Vzk&r#VM<X;?yx1Pl
z)Z$k}`xC1k?x5qcpOns2eXh;ueZ#7eIvDHwnGEoGY(H(cjk&bIvid37s#|sHGg3T<
zcss|wz9E+>$f@Q+T28Rb{-2WtJB%eCjH4>4S|h*Ir!!d=L!a>EvBUnh+*y@LXW6^!
zf3u$cqtfOlQb0MVo~yxsN<zVBE;F~BEFJsjQ9n1LWOv$>JisQi|7|;S{^R?)|AK@4
zl0O_+)a`s-%yY#pf$`OLI}xChNrFGU%8xES;aSu?7Mr@qd*9?yVuDQGT_9eXLM_Vy
zCHH-694jsto2Ky$>m=|&7LOTV*5v|$hYzP6@Rt<R<?5DlGr;a*#yO2dzulF{z`HuB
zZnj)qrX5gZ2S;w!Izx;Am%nlu46V7JUNHvk`l6)#uJNh>NAmjlHp={NC(Q`!FdoOk
zW2UU5WYf^S`B%s$V0t8jLnq9J<WojmldV<#U{HYuAi)apw_b$X4FLK(0=_&r!6yh^
zTm=Xq`!PI*X*OZtx^E}%-dRMl<Ky5I6-EmUyVpfWqw?$wP8)MOtojt7E*PPougiNa
zHkCKoEpP_>kPeKbkj;vWk4#C9{240N_q$pT$sTC=#dj}vn2NEf3=KsgbuN~rrZf|_
z3k^FBuNF6K3<vZB1Kg=<Q}H09mI=AC;LPokH2kx6Y}Q=hg`k|p6a$Am-|yM9)ZG7)
z-Wq%l$57W!Jt98q^!SIg!LT(fRE>sNL?kaCuH0@Y)}JO83k!?O=k7<7$Axn6W3yqG
z*QLJQyFIP<I+gkeAg@0F2V7C)>6~igD(dmHFp9OftjwmtR%MTiSeUJ#z$8&H+7<(*
zD&x+Y_509&z2mdrgCv_Bq}~s%?KsOj^5u4JE2r@a|AY1MU+)B<Jljcuxw#?Co#ful
zxny|+|9l@s;ibVG9I75BBw7L9!v;*YaJ>raPBJ=0qc;#qIAEbeYiAez84pGc_5Jw;
zOz_gac$Om#i)=Ldw*ll(OI@r<IBB%6Z7zHATK!Nb*)BG}{zkHuVAIf&rChKk43MlN
zo&)yuWu8~NiM+gy>r#QZpAr<1;t$4|nDPmEfpCNjjQ$Fsa~YwBl{=WNe5GtP3uW8}
zB&+fO+cH{l4X7aj>vsS&H2ep!qi2z|sA2RP2Br1>C77mO+>k#!0@VPCyUQum8y<of
z9^uf%ZNP|^i4+Y6F~aNvZ!rYR?2Jvb461(=@QhZ(CI}!s?*wAZw?A-!VKOpw8vMOT
z^h0`pginnYd(v`uq|JOhPsiPHWz-vmE+6YY+qoABCvj`6DpO4MsAa1lYi5t3Kmg&$
zP1)JmnF4|*$~3FBb%fd2v}zXF_ijpK*8KFufH0Vp8+0<kU_f}xj)%J)^~lm+W|+VN
z>5mh6p_hvTpbNan?61~<u^c6mO*}6_X@H`~{!bG(ZQ94GDrPyTuWB+OStkzN_k-1>
zsF*pU$<Uj+MvOd|Q9n*wR*;?H{`u^B52S#A%WPWddb?;*IZ)YBNwH7%sif%eHB%!B
z_xUxNz<zI&jz-x)rR(Z{FxCI-yYt_>g@665M66fUir}>9V`38_brS&!JdZMF5$c7I
zt-FS`u3*quU&$rVQHmWL9N1gdTa4jn0wz*eXXnn&XXT~2_@f^F@`*XB+Hm<Whz-Df
z@EC0c*#jJhnMNXHKXaP+_;e;91^{;NS<Wsl7WzPNK$$vSsXUkx5E{q=|1o|5rqw&l
zXU!UY29S4cW|HJ<BrOLD^0EDa7hLkGbWD2~nU5pM`@ENTU4X{MG-X)Ab%^xS=pPC3
z$Z-1#eZYZUBmQ@dfo<^3XA$l4OR)0hgEqq{9xg732UEZru-R3^Q%U(o1~)ZC=B>!c
zp<8|~Cgpg!&2W7+X>q265v(5n;p*y2$qmW82MUG=i<PON(M4%M?@Uxl1K^;u;<+w7
z{zA}~0yaJbeP7*Dt5AXsr3}Y^{74urZjBrNGeBS@n?^jm#YN|dbyur*ivi?(X|YO)
z{$w7R;hs8E?i#<`8M7Wjr<cU9$0tD-prP*nb-a+L%gFR{IaaGyt?Ij~l4tI9gy)j}
zPndXJL}tB~AoS<q9&3St%a^A;-wkvPeYkgM{^@n3Ubk0~OC!khjR2xz4K%VNAFo*A
zreEenzKCDw1^jPXga0Tg|MT7O8H?T<F1XU_8xArv?zWWN1w-;_QBJ#6Uxw?|E=y#(
zh{f6ikscK;tX{JnL%1(|VDeXm_VF86PP8{%`Dun;s<gF+U725$az13>ow^>)@X65c
zkUCRM>)_K{Q0vP|Y_Re2%3`)-(_pD#^*xopInDTMVICDo526uZdfYD}Qu~1^`BUJ`
zwfze*&#BnK1kpV}5JfKtO}B>3gfpROnwXeec1{_!Mhkmh7OOfqL1+Dt20BFCicoF_
znjPwZCq%6g3zOS5{~qcRfOi?!{p=pAm!c9Id}!(H97%IOQ~jA7>!k_W)F_AFjrtoK
z1;saG;j|ea4-dlG8sAtImiMkM1cqu0iPK{7T>xXyyjdy=UykRjBCoY)O4$L`V*T=s
z1+LDoEa&VnEZ!w7dP<7C6U))P|Fz?e?#+n!?A23xhBX)ppJfxr-dt8z_V!A$ZBCft
z^KH3IEXhT=qBW<PiICmiL{3S0=osgJ>)HQ(LVI;$MeXdE-QKsx7us>tQ-gzH;EiOw
zT=Aj@dPNJm=vS@lQLHg|pmEW8J}z!k%yN76etwabRGa3YvO`~opFZ%3fWwof=S)or
z;C<(HEtEJ8gpxQe*=Y&}k5Ys?*8zwl(R*NeRSex2Y@@!U<V;1V%+AhMukew+GK9}p
zL6TB5!24AhNMjDefPLC+qB)u#9!9wboM<d&o~u$ceal9eG9J=kFKSSJ>Dbc&-Kd8P
zTW*cZy8Hjq!2I{O?SE6A{@J-UqCtD8qtzh|7J}IjL~W)HW>StRS7~LV6^)q(@Xl5`
zcvgI_-m_Mw&(#_kMZRHjpW5CwU;JuIVB*Fyb7bh_6iK~JD(s`(PG~<<Mj`f$iQqhc
zyT+Di5`UYIfFzJp{BB|0|LJVidq~Bq3<t**-hT9--R}SCFZ!Pj3?muLc^M7FxT%JQ
zhGq)LJNYt@ooftCKh}5W8x8e98Jq^_Wz58bf+Ujs`JKmc-<S*x4Rf=Xu1b7>hh46m
zC)}{|*N)Td5mPu|IJ5`BLAT_h7?SyigB&@40JN5^#B{<fl;gY8tRw;hoGXSL!1&u9
zZ8DQPN-3Ln1Ah|hUoVFxIt+w=Mcf>v;OWjS`O|jZ+tMw=Yuqiyb9`8MZ`C^ttS6~b
zWU5VA*!13g_~6{erjOpaD4tG3v7~+sub%b=n<YTpP$ie&li5tGlbM`pbZjiGUAqb9
zD^N~}<U;|*Qle+VUY`F%4Mw`(s;0?PSwO(gwhuqv^vs}EAMWt}d!qP%KG}c<sdWG~
zbFakA?GeNx6k`VjI33K59v7xSTY0uTdW6-zjVNcm-W$+x2UrbPXi0!E4BciSGsSW^
zd|DBn^d8VlUEVzJ^MrF^$%GCQ*L)oBchY_V+llvJxzQ1GRbe5aoOceZifmoi*gJcB
zSy8Q|fJ~YN4#UpM`*5b5^#D+n6ag<Sc4xBK6P)KyI*%S;sLYgUD5@|AY<0vXcRxe|
zfZPLOLCW8%^zwA2obtn&92Zv-;Qa9bI-poUhf31NF@d<cmddOn4&+JIGnZ1T?*0v<
zpbnocQ<Z4OfT5Mt6$ZkooU@LYPq-n^w;znY+CVY|JvkTb-em}Ja3tgcPtr8X)cy{L
z11|tFP;iz-H@l(RKAo+0VgK@feQue*%*9q+o3A$$qUq?L%;rl17D*0iyvm5cja3MU
z)mLN<zuKe>P1Yxj;O<YCpajeSdMr1&!h!q4)cAPOGJ-6;5xngsAoJV+JNkmi1IR{U
zxjJw=+_22`ls1hyx&~&hsdl#`^Gg6#5CbmmpN*sEz%4rnC(Wb58~C@{1iVEFD2vLT
z+^V_(T=`+BhNGIH_U2)|!#v(0!0}s0hrl0;w`+W2T&6P<4THV{#JoylsVr;|UrTY5
zCyxyF4X4A|N`jmHsT|;gXYv=^-rdDaCj4}Km*#iBLohl#%&t_L-^=RHP5}ekI%>Y=
zb5(t(noNgqKD52w#F^vmnZu+B?FZQ4JHrD*AKh3bQBB%^lBND{w+bTz47kb!9rJ?}
zLUd$gqNE7sbu!S2dXgbUckjyN5a>GwRK4k^!$e6zBNI$NZQCQ01FJiMlf)dipROiL
zfx?kD7(;A1{-a#b2BRUJQo4dSS%%#E&#|15-#v}c^YyPLpwUUOYt!1ZAKbebB2T;7
z4^a^b518k7-3LFO$w8a|8c3p#6)QOojs%b-Lj4SE-QWgfn1U8JfmApJfN}0D7g}hd
zub(ZZ=mU^h^`~dWetmg=@O91*CwDIplDu5B3Mi@M64wB|6;<a?-?K!+#h__Jb)zLj
z9jv{ID!`nD(W<Qnh&ZMm!JJcV0UjmxyJenU-;KTyuLi9RV5S+f-Fp84)4hv=ee+>M
zxZh1Zw9Qso(mZ9TQ^p(2)+Z|6FH}q%D`xBm#0YHfAs~mh7x?B_d3;CX`Kc(@cRi@v
zY$pd+VU*B|><#x76AMu6+cUgT-P!reCizFN2rxr?(|@b(W7<T$t8X1(fJ2;{3TFd3
z)}b6s>o<j<^bo+-H<0G1ei12cWCmr;ch&>v2fKOH3K4^>D!SC*bZ`7}ZwH-&=U>0?
z|Ncco7cT$uc9f}BJJ%mLCI>(kRqCi;Dv@GB_pa6e-h~_;NIU~`TgpO3f4SAENJA|+
zkUaTDbT#mB31I(7T3cH)RxSrwaU1tSQK3`6Pe$acd!O|#@f>~{Z|1(H=f!Jue4Oj@
z5E>IJg@CgRU>TccQyK&qe|0<34CEvqb_TpL($dAcFsMc8c{4u(7U>9{SV;@#_RW@)
zWHw99ECFETAWoWPYrS%ViFA(d=Ol=M+W?)o<P%pJN3+$Gc%raavp1lRriO+%kOz<R
zta^NxO2M387vy(8rjPIfpF{hvBY*8^r~{tzH8f*V<WEhtJW=T;XOZLbWgyL69LRIY
zOQ_NyzzR4*ZlHH0;<icdG)iSPu-S$LY(9i}%jwAV(WnSs4-UqWpNSh@e~ISt1lts&
zjuzfk(W?PdwWEj;i5S+cz0*O3{jo#Wjpp-D8dPp+z`n?xXv5|E;J^2U8m@38?gg#%
zzr*KAP1!(EA)B?mWTIdW1SFcl{765TWs(2y`yN^g&hKsmaSkNhAPKdN4loX?Fxe|n
z0`;}Cy>e>rAtGXj$Y^LOVeJo;%fd`SOdndSH4!#90l}ehYj%jhF)#v1(<s2?D;fG6
zRkz5#l0jpkI62~>rhQd$y582*uC?45O=&=jZ%MYH)_)gtjR5F!FyT~1hV8&z-+XU?
z;9N)pH9(dwIR;E?-Bg!401r0n?coGYBJZ;2fbBBWj}kHH?#J^Se;sl`hF!_PO&Ct*
zu@3Dy|J7Ct@8hv*k8^pn3rvK13os%4m0?g7y_~(i)Q*FqOWMAGtHhmf_RuI99<;Lq
z96tf!M5D~^9R{00t(&N=y`Q;HYwxf2I?Q{3G(amrYR-vnuJ|?pOVYTE`Ac!JY}$kh
z&n()u4&iAAu|ub-@+CkevuUwkG1tLF-$3YOMlIHB?4v%tpDL13P-9ty(&Y75hT(CH
zKrg%i5((7p(j4E5E?SuVm2~_qyc4u={VMA1G48mF3@T6GVwy<C_~0^BsS$GD(~a%*
z{rl<uAI7|Y_nH4xFh`4ef}w7N32F6!ErdiS;HF#u<1W((0_a^t@VLUABk#h3pC4~K
z;t8-2VF;56QpE06dFVMA^?=}16i=)RUb^_DbsGYNMDk@=JtBR`cNOWjuOUnZCDMp)
zk~y8>onSW>od!5DYknOpEERK&9VfpJTHgR7^w<Bv*;fG7wPsld4Q?Swa0?dP3GNcy
zJ-EADaCdity99R$9^4&5a3>HXfdK!<o1XW2dU|HM|EgOR>W1RNIp^E5_F8M_Qo&!n
zW#Re-+_juk-#iGzD^fC$egm}!`>KBcv1+w0FBw0id}yHHm&td!B0Sn!Ba$xYHuDv@
zc~aJe9Yyl@N(C}#H=}z-r^MQJv^R@(u9+DbmgAcaNEaU!C05&9tMS~?({f=;W{I4e
zW+i%=h9Vf7xjI41Z>;`U3>R!-ke@xc!g%@-Y$Oyi8Ek;`Yvvgvfy1^ltx90Ony6A)
z0hHCIaF?)va`P(<JITN4-D%(;AwGY@RIa0d8Eh<irZr@Kq9P#ia>>T-gdG#-)sEu|
z1c?fDfv#z-sAi14SJkIxNdFwu2pf^l&fGue7B<WHUd%xDL8b}h)>FAfV#?zXUt(v`
zL=v;WeuCUebCYbD_=g+xxBK*u|Hv<)GbXswyaf{L$nFE7XEruZyGlV?LIYS>d!LE-
zSPVi^e6B1SG&)k5J7aTmBlB8TonoWXFDK^BcK093^&^CVZ>acam`M|_a(GM|o0~at
zVPHf>4+A1hMUAvNy;@pAdBoP_g98QQ6gaXle}Z!EP*M!Xh)GmR*pt|RruSFweP$*;
zFwpuK?y?ksQwrx!yg<O^&?gZS8XCLv?P58hu&79?C&%IA3H8UOb8yq_rYa@;no;Dl
zFOB3MjwW*h-bKg6q#R~~TJ1-o&OpF^i^r7(ZuVQ(s=;>R3I9lQ_WFPi)XeMGCo5wb
zC7KNu%(CdFYs^2<Am-#s6nj9;AkKkNiK_A|@g+^FR1)S#omgRB+)kFfygVf4Diyxw
z6O%tqO%5q38jfyO8FHqC{vL|`f$sRJ9@WX-V5wA-XNgpCoRCSiFNUtU#dcWBIUYjk
z*C2%GvjRgRWY*0qfw6C2;q&x7hxuERqJ1{2a!@edH$-G7xL-O9eY`$ONObMfSz~vZ
zwGdRU5N`2ImLJeNlW&mL%LU5qTDS44{zT?8dhWf?S(s>;QZQdU4;Dl2uganrB|>Xl
zA700>EO?VHdk#y~p+L(UorRQGEVP9|Mr6mpP+m`dAtEg34#g?6pA)a$KVK52=GPB!
zW;4}z6B;pXBru7M7>JQi%!UPvU^;EkE+3dUJmmSW$Lqg+CpPqkgFA?Ju;vpKQ=8oj
zzsnG4{fURd>~yp<4+;cg2c4AYOPK_%WM_UDo0z-`A%;&!?vtP*?rF4IG9VWYL)Ee`
z8b@>ok@Z`=O3P+2O^!x~g0VIzSp`EaCv*J5lRaY>q?qSmFRWLarzq}#Ja5Or$~kAq
z-Z&R4^j6waM$ic6Gv;<5m*Z}8sce~}Z}}Do<|D$|K81=U)4V5w-!Hetw39yb7O%<&
z%$DQX0oV!Bj|yH?rf|M=uT-%xoF_2C9B0TI$XH4GwtipUDVTi!j(YE#VW+OCnf^P|
zV@Pv%%1jQO?Hl3Ru)undmRT&9cq9(VTB+7fZ-ep;E?il+{~wr%AA+AR@#b9fHH-g6
z?ov-Wa=|3*8r97PjcL5tvapCR-6F1Drsh^DvzV?a{4aj0BCff1^Jqj|d5U~~CJrx|
zK@(jX_;?yZ&q5UQ@_B)40uj-=on!5H-zq~C<)dC3m8*U{E)5yeplX*v|Hf~62ifH0
zD5Bg2uUt5iwQGhDZZ5?Z!jLoS!^b`i2}u*PWz-z)f*C$SHH%evn1@UgX^<<dpEGGt
z&*C@LOw0Md7g7H$`1?Np!z==odVUI&#&mY2<#75djn;Kli^9N~#4rl8FteC+qX#!o
z1g+$$Ak0pLb>`@^yR&3p6Fmhbzm4p*8&XgwiEub(#wbmEc)dzI29dUKK;%If)ov-2
zyqnc(bIm*08WfB0P8<-BlLVWU_;gfP*+hx3=(VYuHgBOEC^28_|Ja-0&^E_b8_1}q
z*J;Hul0f@u0(R%9B8e!lXedt<+y)&zZ9Zy4zZO8zt}zHI#3<24T@9u!91MFw=^?{B
zfApOL$)Lhw<;5=-U^Wg7X=`Luplo@0x%N!$kZ}WEk>&-?eFu$pG)R=guly{q<(P*e
zu4jc4TXvy_c|S?DI-=OR@&>UVO6re|=n7(41j*YeO9iL-bcu7deZVSKlgJ%|#ia>h
zvrU(lB)X&kM4=`n)UqX^ft}-9$>fIOW6CEo(8%)lQgX&k;`S@X;h#TbaH}69IL|EH
zLt85o39s6}RX$7*GhktDBkT+|1wn2reiP!3@6ps1Lnp8)qRFzIi%?Ft%OSR0?&D<D
zqhf$XydYf_BO6!P&w2Ko$**R572YfFuQVV}1MMFWup<rEPHgyR5%52?ML9fZ-&2S=
z-M+uKnCjsYL~WWQ=0CUw?V%(j*=EkOVr`})_q_akN!OhUWxOjM;>yngpM<j3muKYo
zt*JQjGOHlr8+b)g0<{h|k)XvdrO^o^M#`tZ+o-8w)H_5}UTB`=p1MBCp2;(tD6tn*
zjiq0xO|xAU*-)vV;O{#vgxzfdpUCe;sm9q%h6D0IEgR^dm_xovJx!?X8sOFZ;of7!
zp<i@!xjS*i!BLlr8OXDCE<Ey)X#;xl9gw3vrPW{?hV|y{QTcx6C{QH6=EYsr1g=31
z7mkxnwtAAIvp+Vqzb)fGIfF>a$t@&sjXo7T-9Ew3R_Vp-J7gR6Qd1=DJS#%|VJKac
zuCIgqjea&bz0jG@3QQ-_R_j&t@rbNt|Dewb!JJFRo1GVEdGJgStzvn{MoR0!Kd$Qe
zw2x;Pv#Q)ez7gly_pjSSvT@ddKwX*E4R<poZx?86{agDq;!f>klUmH-f`g3eY|>&2
zCs5AQBhQJ!T0}KZz*k<+DYT0?xA6dNi`q<XIY)q6A}YxLv$}gd744Mho|5r@R&qFg
z(`0BE7(xVZT?)WvM?bKC2IXn2whuJ@N#DRcG<%d@O6n`=!vA&HlL#Pu;QXH;1AsS(
z3qAK=OQaS}*h82A78xZuUT5$rJ;Zs`P!LE69^vxAZoE1>O3>oXznwV)wWG1076D3g
z3=W0EYyvbTUYc68UBpNdS}gYad*TUqX#+2CyWzIqEdn%UA3R7&`nC^#%E1@m6&$Xo
zs~C6tG945<=ez02%Fm|-@m0J-nDxz(5R$vmQ%krNh%m8SPnLHa=cHJl!6*<VGJW;F
z(fNf!7&wzetM<wnD4O*K@X(7PiMuvCc#&?B=Q@07EYr>eth|ApVWFj&a`eP{t?>v?
z;}4)f#~Y3fM=LiSaHrBX9ZN5ywEqJv_j|<j+u%Nlx|XB&=q6@(6(@wuWIX;DjxxfC
zseR_9q4i<Y1p6Y-g4A)1(nu~MCFJu}mb*%NjVmS`MW1V=u%iI_3&GhyJoB|4Ej@kw
z!)-}2MMMEQX5xbI$S;~4BSGyYwSL4Jc3#EY70P!#&(7PiSw(X@_Q~nPJ9Hu`a=WPr
zeJi@vOHX0>H2%uJ-(UIBR=3BOsg&;~6EU2i`79Zyd{K$*?})Xd9sN%{@2@ldk2e@I
zz*iP6uvSNMzC?j+dTp;0Og-w&XI?iM5I;PDVo%bf8IPM&8DPMY2f)w+UG<jA#+8#m
zms|(4YcZ(J^x?fqPs<XxO&wY!XW>c|5w<k|q*>ti^xN1MEsJN5j*f2D4zs?8+9W{2
z*|%_Ku1)n(-$rQ|`1FY}%@Vi(CELVDl=f7U+g6)PCPCc+++o;C9`^D&-M!59*Tqg^
zQWAxviyZ^XG;NhQKshPsK@0bqPPctg$-e0)*cOgs4?yo+;B7xb+`oxqGbtDycmZr0
z;!R+_z`uBnbC}hv+S1Y@mSv2K0~%aJziE>?TqEK7{LtQ?06+7}X17`-hVMg@@I5lW
zUspRUx643glXf9GftQRn1(?-Llz?4Uv{-_BNJWy#xA+!fcLta_GlOk9YvOLKcf>Dy
zAbazv>m_|~*&h*+9LM)y2OF6vzihStbl!|u{*i}>_M+UyF*;_{rl5C)bCB_u<O;OH
zMX2#T4fD@T7aEC{5Z-d-J;L7siCUKV0u*q*1u=VtKgELt{XgNnf3Ypv=5~!8-%Fo}
zOA7((75?}4@n_UCU7F*ywv_nz`0bGxP*z*4x3^TF(gvUs@f|N5Dt5i?g8{s${|!Rj
zs1SJu{W&xg&fVrM01eLZ1%1=Goy!C_G(WwE0EDWiz1!}Bm;w5vT(4gb453_LV;(;(
z&BRSfNH8oQ$$?XatJZ8lXfr@2m(;<<FcNCFWW!sPG!(+SFV(0k;#%5Kr>4%cb--Aq
zn7i5l%r(kFv#{U$5lzq>Z;X6EIDi-7T?D>A2S9CLXPtu|?bT6~-TDmj5P)mc34#)I
zh)oNK*!1L9tvdGoFKY?3-^Lm)RA>lO%4Sa1xgl+>-6Aq@>UjH?m=*5-0!Dslp{c~V
zpo0#N2yaI4Cu*nqj6%RI0=C#D3^opv3bt@@EChKXNJX|96mZ3GKY+O}oQNC_CU%m+
zwl4$}xjD}H&&=9CNcHk@Xz~b=c0?ybTn9Clzr>posr{HrRB7|+n(eFXuikAf(x8Dt
z+fT*tOI+M`yteuVcecGG=5tU1K>HimSy@i6N%VTxlggV^ezc|sl9CrVh$7zENEY!)
z(}B=rvsh38fsoBQu{coQ<TcT-tp$y+!It!Hb?P$&KJ&ls85KN4#rHm%L4e>cP|)gr
zq97-i2b+3~ynqfZt$W`ejp)A>VE?s&^W}#tagC<ByF2T`)`A&|CSDYzkl*nEz(P1(
zfCw7?Hz8blcK}3Ezr4+XZ1TQyxdjM)!3}Qg)cexXQitjX=aXd>m;)deW9?CeXy@=g
zt{Fs1Y6VtUQvfnBOi~#TOhVt5$yBp1!o-PCY8CzkmSj(YG3A?bNWU|`=Y+8ck^OU(
z#h<O~0W+Hf)oAE~-KUCrmC-Qw9zcpZtsFM1oV^5`t04>3XNMRs(q59FTKEGym*gEm
znn1{$CU&0(FN>vG3c%z^kw@jh9?L$Fy5Kx({{a`MU6)4%7qO0}f1a&dYUYnwu1xq1
zRtI;Lh4vf7%i=S?N^bGX{_r=YdmJIT>n#9aC4054(M<Nd5sWEVHl-1cm+HiKt5wRe
z0HiGZflqz`EL3BNApH%9B+1Ii#edAS<*CtpA@glusPC?X$&ljp^=-J9>e|UB@n9MR
z=7Z%*mvbcJKf!TKU(fbpu6vZkk$K)hl8r(<qIG{~rkZ^HB?6-H*>DqftW0yF3*3dl
zd*Zg(Yg85b{=dKzQ(nma%H+Ngo@O<L(}D>P#-Gst$EnR(Mc)Tgj;R6QeySfh22pa<
zad+Al{MHl=ic%)sXngk^2f^j5&tu2xXqte9GHlA1R%(BoA#IbJX^&38!J6(1dx3mG
z8k$5=y5&a>Ol>f)1%^i^CKk#Q^-EZ294N5TJZk|5^i?2Z?Cu8p?Z)ST?Ao?|aKC>P
zXuEG|=Ng&K5jFW2hJN2m?+IejrU~GL!&swhS~a*7xFSL)cA#M{juS-mg}wve>JSbU
zVJFy^$&AD%fp%hdx*PPMX|D+iZgNIa6eFoMf$*SkimG1V8CE#rkc6VB4-(Bbi9}E~
zCY$pn*(s{A6v2x@plvS+Z(QZDTAbt@1gf6JsPE<)5)r=vRIoZr*<ke1-*Im|>9kgm
zn1I<RRJl?aTFGm7_)hmnX<cU89}vHvz=s|&gwmBTNTD(~weh(xaajgo(sn05-fXED
z`Hr>h3lSXMbu-?;Ajyj=CxaSZN{d~AAo&-c=Zcr)dy)R(C?~g!a-+AP^G2Jcl&<~V
zCnJ_joVyE`vaE{bC974wU&l8N6i5)Cd!p)znPK5J4T#~dtaIH?v^fHB*#A1wPm{nd
z^zWC7{bvX*#Q%wW|6^MI+o@KTg2p_k;PfZPQh8e7SD;O8yIdcZ?RD`5<J_N_a23wb
za<(MS_yby5j&{j0*bbv0DETH3QBU38h&}dD*Yku;vP^g#utJ*Eo92h00>trg;KGMb
z>LVu~crPb~2hbCbE0Aoek|M0y*672m0g<?I*aA0%o!j;F%}kDn8=yX*&614F{O%|M
z65&EWmeAnrs`4&xA{G;*4&Zb=&0E{bQF#cqL9^sJH*HmFHZW`3ZLRyanXgr~opO5s
za>9-a*o3+-N&gMl;ouJ1?RXchfWen(iNezqZaS%+yBL-Kw>*sd#M6lo0P0C#bT^d}
zdy9>u&x;0dt|{+&vX#<(d>r(AY-)t(uyJ&?vQy`!^7<dxmu5D16eR9{tWAR<H?%0)
zOMN>s<dnH#Z>J(aFHxX>G>fy`pM(`Ho0FKKtJg=p|1=#41!xH0I5o4Y*AxW&Hq{w%
zvk-9tA(`4@t5};LKT`d5KN4R;&XuVo97dF!{XE|?R-s$y{p-yBeIEWZ00S~?396Ww
z*l^v~7RO?7%#CndazPyBqm7~^ynsW4l}6eAkHsH9q}#Neus0b1jv_-)P|%m3eSIPU
z%As)0rz*Q&yjdlZW{TxFw6TS~&wz)PLVx(0aMIJBb>@j2!2t4e1y|!$FuAl?sLFab
zn0FC`h}}B(e3NAM>irOleh>7)s};KZkkH5bGaptkmPkvFiz7+G_S16D=vu%$jmX`2
z9zePaX2_9MLUAt;!uxSo-)(sapQDP1rpn6pHz*m&Hg62v>+4RUrmTa-V~?h+b@p3g
zWRa~o*(KU43|ft&62kAtGr3r;78!9}!4`XI*HIH=xz!i)mw~zT%?Ya4Kx%?}Qy$K8
z24a&v?n@#fhBIn>%$r}#DGV`&@8N<}nj>SPqLOG*%qXd;zwEq97GKe({Nt)W5XXL0
z7a5Hp{0&Rd@ihaV{xlt`<W_}+M>UHQE;d)@RzX0XDhSR%Z#}n5`$CmVFH#aZY-;#o
zYax!Vj2>p;Kmz^5Hm4#=ui50qjzQI3q`yJBbnVu;#`s>I<?FL(=7ov8$s%m2O#`Ee
z=SC!wR;x`t%7VT_9KKfmvG5DiK`<@MYjN({G;Bhp%z0aI!|UfAD=n%ge8K(}tz|DW
zX!tEr38IB+Bj~8m5LE*y%|o&vNd|G$sjhG;&wT5!Q23bs{*+6_2mk>=l+-0Qw;1{J
z|EY`qvpD+>;RiT-xGlWs(8cf4gorPwS6ZFRDbUdmh$Y9ec~|5;0y6ZdUicfqL2d)4
znaGnL<yZ!X(z|y^e(leNl4_p@voJflaftSx9CoBqSn+**OWPX8$Hpj{MH@+_NcpjX
zg~Mc*lIgVezkln6R%?~lhepTPW@-KadyY{cZERPEm@?DaV6_wvM#)?nSm&J8z%O0E
z#)I#rnCH^~nVX#Io4yjP{}PyuSE8(4%NO%F?Z-xTJ=`80fQ{sd`pv^)UppG6wUyd4
zf~5=qQwpx?qjSKak>qef_$LH|4bY-oZZab|%azE14Wf4_fwR?}x5LEfkY7PdDyZv;
zIW#=%U@v`Y#|hUbQsT3jJrAEe^f5E@9r5tyhrqY{8g(X9U{Eas%uQ0ruaWUN<#k`|
zu;cHAawmOuZfy!~tQenKxiHSM1zwy3doo!cn~c8Jo+2*%L81W!w(ge>*U7ep%p^nZ
zOdQ~{IE}yk`5b1>f+93%K}q7Cp0L~x(ZZOmDpQcs$1V0^a{&?Zy$ph_Cz}e_qf63p
zqns8~notIE;`Sf_d(dfOWT?fdD3+B_;Yr_1hacXh3c`)9GY?j_GoZKJePDqLmDdk6
z4*OBmlV^&$DbO7G>N}=?o-MZGaC@5(&ZD9aq1=>k(U+}P3!_DmbGDMkgT9jz2)0bA
zq})-A7pjfVw8fso!d;W@hX=i9!ipE}TM9(V*9lDRR$n@W<J0@=QKNbZ3CbmQ)hfcb
zE~Cbx7Ns=1J^wU5{q?52Ir{!o{!muVOTkb2y}`kdxsZ~StEHUYs4Bg)%Ec>UeNT+V
z%TbmI2~nQdf!A``6{Z|L#ASZZN>*C-vT0FgW@hMgXr9m#%$F~XF(KS*I3bBc?YaHX
zVFqJ}<m_@IYKc|+(ahPK7d|}v+8divB#=k{91GVVR=BvItRb?&TP^#3R>zc#Uzs?9
zWg`bJ5}>L~%CO!V-*vGToWL|Tu(I6>;Dr~Res^}UdP$x(j-J%i)EBQ(w{r6UK|?P+
zKgv-12Ozs7$n&2P$%W?;M{2I2iiw)4KXXJR-rFSf6@+n|$`dtR)Ua~}^;8ZsiJilF
zJ|^Z$x_>|H!tfky$A-sk4~3m>4=h6I9@w3$MuoF`s&lHWk15i5*vn@}jhG}XE?cIo
z=_H8;%KBcX%^&5ZyJJ5Jqzsb~Pl>HeMqWro9nfZ3^z5=$$G|8sS&nch7tToJOUw^U
zM14XCWThgt44!Qh5FPQpZiK<~l6@;V9Jpy@RBi7t!?JU#LGu#-s#)p<7NQkGztGFl
z{WoxtesB>9A(rOyc>ll}Y8S{c8A~rv6*4T`1KE6ElzROC8o!y6LAtc9ankAFj)$_s
zgpYj93!2FS_ej2$C1c6CnrrQFQ5$wRNM0ncT$2{66b-?RnDG!+D3_G-bh$xVj%J2Y
z`Q=&L86Wn-oCg%~^L0S6oYtu&jQR9Sd+cD>@Ln@@rk!hkWT9M54oi?I$LXN**RtvC
zksPkvy~2%^y|cd&hu2R#Ni()KSFsK*F0R14L$I(jE<8MY`2y1iNVzmz0DCie50+vA
z1`#V(1ASJ>J9~4k#Y3toe4)CAuyNS(WpT<>FU{HBN9;I*3W*W<0c8^v-NN(ir-IH8
zxUUmaz4q~D**Vrcp4Wbus&x82qpxgd6{3|MiPqPh=-#9hZC6^cN>?6fC+F>TJxQ7}
zOIp2j@q%M2jKP+;-mtM})k#Y0mWRT}p6=!H51oXd2m|wUk7`TU8?rS~Hf6%facal0
zkO6n2-%N9r@%4o-sJ9qu;Dp~7WstoMlBI7?sbzP6eO>-L2#d3%p2dY>78|NhRo#rT
zjhG=^|3zxVHrn1RqZizf!0br?^KZh9|LD#VGctOq+ysc3nd6`8q}nhDOx=Aipy0wJ
zB03}C5dSB1T6sRW5_l8u7)JJYqh-83i<nC}ULL&-s+iCMnVb&WL*_@(q)W%EEkEiT
zz99e6!rF18$=kSrI839mCo7&|Mn+B^xI6KYAw#R{Lx)qA_PVw3IZ9PXE+O1a>rYv|
zI+G~lIw)AAoDf0}i6Xy^P}lq&YdiS0T;b=XeW`!~WQUE!tRu=wr4t+!gsyxgu>Cdz
z*>EJ9;O#IIWoQI0F0QdltDm1=t&O%T6$iam<Ga>Z40W*MJ>eVKcs70dfVEQaJ2Nw=
z_)BpgsH9#ZK{P*!Vrho3GI_{X>EC{YkvERqx2rq0?vak-xn9Ov3xxz4Up1%gBKJ|#
zBv1>AHd<U6$Me$ZQgLM05AV8ao8@OKZ*fz8=JD>w6cq6qtgU*c^(hql(C?aO#0eJ{
zhuj_ku2kweQpCZC6FWALtxLT`zLTLY6Rl6KL_GTh3lC2kn;a?UurVDIAB|L&Bi0JS
zU=NMHAi#f!eqFBy@u2RWe&feqP`IBW85$uW{aTi9JDgUn5qtu+bQF!+|4_UCSr-cA
zc;1}CqLr&vv-j-aK08Mek+GskJ6*p8d@x#S&$I$z>nUv4QRC?nqNHwXHZVR$yB&9d
zs+q)2lGOX&y@`jWQu7~5e_*<z4ZU%}#c$sBm7xA3kAUc_`A!w6o_sR%4BMdgaRLE_
zfY)4(h*y21S9LtePD-Bj!_<esY|S!Bk$S6JtsYTjlsJQ!7B-yARf2IiOITho3_ddH
zq6&>NDv3#51%`JV*t`fn1|2&A2iAQ+C5uaWM!O6!6lHye!JQP~WbJ(`)ib==e;VKX
zvT<wmZxs)?F1~XUZo2xYz<v1TlNbN&l>^LQ`R1QqA$cZrv#*`JQAGT@E-0tTrlY9}
zRRkw<<tYk2?s2`5u)pEzE#{<>{Vgrg78k?O%%%&%?7JO9VKMQk#G!*x2&A4s0y<W+
z$sByG&9XmQ<`R6kz}YjQ&(6zAZb$l<%Dl4Ktl9zrC0|s7;V@xi(X_CP`UM;o5k(eX
zH(T@=yXDB&Vrq-2zJDWJF;P$kxHX>P-4d68*pX7&-qggY?KBk>_@P^N!Gg~Au4peJ
zs!|k?Z1N*tF&Q+IR}~Z&A8By@F%)=4W|s_n<j8?h=&gl6B$?I8aswcACD&bA{i^>z
zO221teSLlMAmdTsfGD{m`@UibTCklgDmpqDi1j+OPJij4LxxMJ%FEk{QHfz)WeS_p
zK-%Gr_4Tt{9olz2r8ZJh`GyrU1ncREeN7Mtdz>#<2AG}?!}<w*2If)I1_HkCX%S#7
zOVpnuh~>*z0g{~+<F4j!ksKf-s3o_VK3Ta>Nx7<X&sPWY@h8>5g&QD!)jw7K$PkR)
zOT$=xeBK^PfT~T7>jbb9V=b<QKe#;txFo(1Gf8T?l5ufywF7|tRC5&0+>>0c|L5T0
zpW%-*q>!oAJ)VM3KyevSva}n3b(KNek8t4MER{qP`0yE6I?B`U`Mg$3PfL?LKR>Sr
z0uPp7tj%YpXpn#!Pbr8zX9W)rze~ku^7Kg?^`x<FK81Gh`0s*#aTPbLO|vKaSUq3L
zJB;VOV%#Cnkj4dLH}X~fl$6hvPV>9fMpxIDeHRu*J#&cbc^#92?1DZ1x1?|6V{v{2
zy&`kM)$mgg>Un%Xgg%_Fq|M+3Q)i#4_9+wK#8M)IS3G*X-r)(P!TVnUNB6b1#7!K1
zfrj^#?|AjIPywA*rzGR&$gd>cy}v{hqkjr@#Sng<1D=nh1e+l+<bLNdo3BXI8X?}S
zlQ!p2{|{#5Kf6kQJU5(MXgB~N^O@e;17$hC`9g-6l9G}+sEpQ)DihrSSxahh5hTN)
zZeVyRr>3-u@<%VlM-p4-$fW;v=8bp1QIAV&#YP{!)ctwf%$#<Rd9ger4pTLu8DfD@
zTNb{59}d-ne*vQTYev;nM3p6O$fnWU+}w-$Cfn+t2ws5l9{Q;!i4Y>z7at`=`*UjA
zK__>~C7m7eAICcp8M3CPMod)Q_=$A*YH+t3;6_vo3={Zc|3yahXE6L<gMvVz*fW~F
z9{YNwAST8k+}CY(5qQKZ;BM5Uu0U<DSuZCFX!;s?+1S`HwX7uo^2PqDqn4tD#Vf%j
z27dmpya}R6q2Ay^(eG><Axd8B#QRyqjnN_8SE^NKFCK<pUn?jo#%pEAlfL4xc?Sej
zz(9+=dZpi;-F#Z)mhx+pEm0Padu@S9iRnbP7~zn%mWKKFCw!32Vpjf=A_?fHtyR2(
z!g}3%qMX4Dj0*5>fec5&<um*BJeZu80?IoyHY^xN*wX^%wz~s>vpH>aLo_*+!zG$8
z*TXMa2`Z8>Q5GMQe-PC50s_Loa1Ev9R_6?rAO9h)6$lb|Mk}!Re}s%bo5sIqm3R9<
zAIs|@p^=M)<N#tFo0vGs5+VW>E0u`qFtiw=6~Ol;fXFqxOttbb9szO-kfEi3{w+<K
z2NNhOyoCn<eJb$bmuZ%kdn~ble<t&eXpG1Ju%rp5@A884i!DOh$x(k2R?YxEyh{DZ
zx=Gy>7{E$^kzy>lP!b#lzC@&19VfG)?|15lr_MnL_s~CgEin-jkiBXts8QTooeqSW
z)?8>+%2km=f<O0P3=&O{%k_yEK@Tw2*MXT6uIi&#zg|-B!?I;{;Rt=(th}oT{<4I$
zbUwiULLVMHk@E_oaG3nT>H!RAs+(>iJS*T3a0$HEhQ0$(kSeqSJrT5v`QkBg_RYIe
zSx4h<&q!$(rn?=lk2Nk@jf{*Y30zmHM>dJ7ek|6Y%7>s-Eg;{o)f&@w{Jt2mxf$*Y
zn*hAHs*@6h8?<P_`98M5m!YT}<BmYH7q1+CYdK#*J@XxPr_p9j3iy98ZC*aR;JX;=
zoy`%1;!WS&da)1Kw)tAN9V)FWVnnv>=dV+M36qhj>CEn!mKSx8`yWY)^8{|=F7e+H
z&-{6te~Sya#l8-i)N#@z=0Z3zLd3vl`&>@r6l(YG-6+e0n$L9-KHqPXS6mL{L4lmO
z*|)f`Ffa;Wh(iU;01&xQp*tfO2+8aGCD`4*8`DE`lM@q))PVvHT_V~f0}R8Q&(>wM
zu_^uJ3-j@B{aMjAfK)O+KJp$oE0(B~J0fFbNcq<485xlSQe*7(8NUFC!8DTd&l|*W
zX76%>Lw*lW+PJxKUY&jY_~Fs}rLl2K>#g-nQ3H7^K)Omv2M7`3i8)Re&l$i&Ga9-8
zMT`n52Ld|abCP`_`mOQ}-~jib>bL*t1>jc&ESoCS`t@TR1^EFsNnf*C+b@}UwAzwD
z4t3~$^(6g+iJMHrzVf$&!#K(ll~tRbnwnD7e_@<M12>(!<f{iVi!tj^g5^9WI+dQA
zeqOUp<!Tk)tyY^$#ZCva-G+cr+t5s%DJu2_>8sCdBA%3TMR1Bo>KqvK)0PWWbax$3
zSjy?<ZvdsLXcSBPb9Q?}FO(8XfEm-tL>kLr=Gf8JQ*8G{yBUrnJEz~V`}#!q^tk8u
z+=IXoZTN6*E6q&;AtaF-1da|u==(EuU(>TZKF`k~Yh8=|C<cO<{g8QZG&1RM)1GJ0
zaO8dh%cqaoZKFnw1&Rro6HRGvo5r%fqPVB6vFshq%YdChMKIZRC4m9dA`N02ua4I4
zwC`;(qI3Nq7x-5BNQMG4O3_7mgQq@fVNl6I0}b5p%)y1Wq%X9@-@kI+p?3=x!&yaP
z^ZDo}dPDvkrJsbFFFqWdyFu`<F!I)qeFpzeUIHJWV}EgyR5k{-3R5iNl2+j-CCyhU
zikD-PN7<PaK;;J!ipT&KCx<2IRw)p%epiY<!TE_#+mXJh0$FQ)`5Kt^jdhAaP^Y4!
zAsO%}-U<Z*jV~o#MZnMVCo%%)ZWnR#_C$FhA#1)Q_{0HT0o9a>Gezg&Yaqy)91IdT
zYx-K0z9sMW^IJ$i4x&9lUocqKGS|~Qp4BEHB-D;2y6*ERkIUm0x}a`Y3|Q^UxoAD@
z;K!8Bjx+#8#%FG4b`fh=YL4M=y&u_HEf+pNDfO!1lYmQ+${x3t57lzMxa*9<cfi6|
zB5i%VZQ&R4HH9NusM0YV_ay!OWB>^SrE%GaMC0_D^%6jSUbsp^D+LHB1t0EjJv#Oc
z+ZpWCGFeQcH^0u~zXe;F(wKMDcqgI>9u88+`pbGiR=DDfN&Qp~HYsw<o9LX*6gO#b
z==Zpq`~uI2%9)mRhtIY|Fjm7RukBK8(B;95S{v`CHv#u0-_Gf;My_$Hjntp9Xa_Z5
z*i%rIp}oWBp7h~tau2lEQ#ybIK>=*F6R_g159g#ku8(t%GT1DOVAAI6cYA|*D}%!K
zeG{jiAhgk}w{jpflQutm8#fEpy&|XlPDU+xZ-9XOf|E&8hbit52)-b64VGhL<>}Hz
zxNm^|=nxwP8MdZoPG0$-X)95{HHIFKpBUC=Dlcfc!Th{hK`+w~$FP|K0)zP9d{Oa1
za564uvRBdttWypVzG*qd-{}jTou)^?sgxig3>YCX0Gf}BHCJ~OM~Saq6TGgL931to
zz@rnfSN=Nc>S$r)lm0~NoJ1Ut;lMlhi!YS*`-iKJ6LEkWlzQM7Cxjz6DCBknmVO;5
z&)~EJp-~$9iK{zcz}KrI%So$MX=}7$<q;UvvRm_%rpCScc|Q1&Q3ngWU%0?;&{y6{
z6c}n(eg|}^OtZAHdAARDM3V;0tX3<HG7%X3KR3KP)`2#~^Q!Bt(^Dp;SI;Ml6d0(s
zEJfE(Jz-QB->#;5zGT?6N)~>)mQ_O%=OM#-lWL3E;8tDm8x)I1<17}lRMkKFxP)Wf
z0bq8-w;#dwO&v}C6)7ic57RVF87n2Syf5tzAgIEe`l8*C>@?SWa0*$`KiMJ`<&-&H
zs#BZ50AM?)KIe@?W#b<3sH@N=Son;GZ7;4@Y|Z^h0;?s6Py};ryQ6*_6o;hEMPM^v
zwVR4b*%l!C0KLYQbC7IvHZftpbF}Y|*8{}F-zz}TM8Bo!0k$b5eV^UR4rB8M0L3kL
z-<4|_WLM5Of7i#|U>`&v*_>K%ygCfKedWTL8Low$1^E`}z>Aebq{#-r&KzBMDN1*`
zO3)2id@VZK9Zf55>gNq!2wWxkHy;u3NKs)yr0BrETyrUeua&Ht{w0t>PNVQiS{W-&
z8#^2+;MwX8n60?n*M?(9UE6lz+G468tc#f}Y5E3iI!^G~R!;8#G7ybvA5RUT;&VJE
zk4rP}QGh7-Vluq4UX=aF*Si|DI2G!0!c!Vn^9a_wrEiMn6Rd#KE*XIiaFn7of=X*K
zTmu=-ZyHcw@5v5p1y5yMY;2C})F6#6>n&L4tXZr%@S#$ZEy}{tGL)WIHjEI0;Fa_+
zQ63K*D>~Tx@B@S4Q0i(6ELB-JP2BioIOvjp8`v~|xnPG<54(y&k}CY}Bj1{p(4hsH
zSj@vL_{E$<PzWxhCRWQ{2D&{kxg4u~NJ7JV#pHa*s?=^ai|a3XOlIATK7VAf+FUJj
zo;MYJa|pIDGrP!r!78mhN2Fo-kt$0YjX7th9jLSmMr~$<b&@Y8x(F`U>IM_AI<D<=
zOO_;G5>JZYzjaZ*KD`PRkMKm|h4A?&;s2lJgui<;G1M0sLlh2cZe&-rR<uppIw@zW
zQqxM7n-NRoWocquI##p`XcTFptP_{kY+O@~E%hHCpo;498VHR;2a)zVu;|heGjYA4
zs=Pt0pOuZ^wCN9zo31ewugjQ8OSx(TtOJvdZ;Ym@_zc~@&HxI0UU|K&S5GA;VrI>0
zM=V;HBRfgT0|y;vgF_!HaTN)Ng2JwYT)8FBK5yO(p}CR}UAz<=k*zwbiAT4ScVP>*
zOL5VlDdpP(0f*Rmfpr`=-a)#3r`--dKcC$8a$6InH*22{|0B;5PtlckxniM%K(I<#
zU+R4Zhiz_umPruJd)adJDKlxg8_rMzA22TzYiL>P@J!JdXfT1EPQ-)29ut7jrwFVX
zxFaf=2%81ai1@nu-kPsccNF>pQI)XetD`5=bo!QUMQ6HT2_WCXU_G7MisNgwP(kfg
zDZdcOqTmwihN+4FuL=C`lllMjb&fpbBo%dOLbF3{e=c+cDasf7y>MVF%bf_zAcw5B
zue_5FrMS%p<QR(iV#ryLEzPDKj(gEwA#e0LSFMDHbuC$e?$M^}-i1z^Rr{{u#BW%g
z43e}PB>3ltiUr)gS>sJC(1xA*&C9ubtgOn#Cf6s1YlAHU&@GlJ;+!F@Bf-y5N*lfN
z$$x_sWFlJ!JhbY(xDn7WHdE~wD>NI*(!^dpeg|<qKjjk;MO9-?N^n{Cf$@?x=8v`c
z(u71?EkR^;Ernh*m`zRpeYP$EO$#__Ip_Dh8_#bhCMVG-GLhMI*sU9RzU|yz;U(6Y
zHDbiV9<WX)ymp_KXaW)`x~Z)XX&;H}N(MRS_J)7`V;S^6UAaHs&#AzW56ipqVW&_H
zOdf@iNtk}*B#`~$+(PxfzVjUIB?{hk{Q+SpduVrUZLQPo&gkenI>!3wb2@BsR+Gq%
z{XE2-CqqD&D=Z=Ag8bl6G}0=8Jh2oHD0EdyULAV`ADq(kDB+()+3bfTihW$ZS!|$5
zGB~AI|K6k_mRs=K9-r*Oae#GMt{>}QAPRF73ifh=I>z&INScV(e0oARq@h#q*Lm+V
zMiEb`VZrKiWB2EfOMpI!b(Fr|Y@gslCnHs6o#)p}y}9ujv+Hu7f-9Jd36Wd?^51=l
zQs$7`NVsGk4J#bvlNdOK3Kzx%Un3tB9(0=tx{t9fq;85fLv`L?zttTNMmzHcjbt+V
zL;v9%Z&m069jR(@H#pI$I!_CO>wqGXe<Tq8t0&j>lZMh^E9#Ny4krjS&uP(7_V#ni
zx2qjuGt?`9wmqAP7ah;g`7^#nFHxw?#d^#};?XiH{$h|DFcd0^{S%CHW{2muGLJ8S
zymAN3HJ80>EY%9)9#n5H&kJILpE;kdw&;eeg7q~b;^IfGKq@&X_kM5g7wZXt%9X0&
zOH&LD4BD$ak1z}j4J+Fy8=j`?2Mg67x%R&G9@M(p)`G5)N(^^8S6G+Exh{dmmtne!
zEXoP!Eiac14ayGbBd{MWPiQDWN+bXON@=ekGPK^$U>l(-8i=+n66*$1=F8G&2t(v2
z836t56}>j5p4&H3zpXqrkIQ|VHDvYZu+luGHCU;x)gl>7$I)8jY^Q07G^+w-u~+*w
zhF#3yQi6ILN3{AR{3Wf-UKePRsK0GNSGyc{ci02dp5-Z<@ywQ5qc0d;eEp@qsYu#F
zLPAdIC!3L?Ukk|PxVP);Sx@NA3G@^nfYFhJP1_jD3&rQc0ytDa)5uLXy;5sj{w|w`
zOCFoT9}z)aPn}{KvzH4EvI~4%`ayoBzno$8T)7&2U~(uRc-_I{M|~)E1hqdmKtM|Q
zjEZFmcJ@Br{}OOA*DfzMum+qF9==K~P_#pFIc$e6=mU76xXO@X@H!0YISN(W7CJm?
z%%ph%$v~iC>B`AP+q$#|(nn#3l>d)_2nS89KFdI%S^xGp{$yC?E-w<6AU@$lF<wke
z01|Cq1L`zFwOGV5qv6<zdk2_})T<si01<6pI-fg;?XBzSvYecpi?-SZ26-6CZ0F_T
z{duB~saI;+_ANQpw!{?d)3~4{m5Dg=T9K{=lk18Q!Aa0+zwe^%K3sGCI%ShY^x>!9
z63V$&5W>q#K5azA@XhaXa&jE~u}^mM^dI(q$wXnUVe7i(?oQSgk|h3c8W|s#c0{J^
ziig%_i2~bjL&g%nN-&(@fu^3l98^21Vd3G-H&H@>Yrw|O`9arZsZi_+oE@#?y$UYS
z-#S;i;Uh&s38DS$L7c#AD>lL-(2<<Th_j!SYgY$%#dlNGkYpsKda@r-X{qc>D7`NM
zAmD`HmXF#<>40>^^Csc%GW@?-6kz)KuDv!;%8rn#Pdyn|ctxDVso4Q~Q57k3JOZ3b
zIFd5qaE;K0U{oUd7nBbLGw4m`GpbLhPFQ4Qy~{+?DgacHG=IUQaXA(Ns8b1az4SV5
zE=;1<btYrXFs^nwJRX-NE{y?>UjZ~k3LZ<*4f#dTMpCr43B=BG$P*j0PBXghPYO;T
z`z`7DjKwY0nNmORZoN$f9$>S=-_kjq4`&5tFxya0-8iuTVByoLTn#8L(0gCNGh3*T
zF9yj(kx7JJu3E{ycecpH0Q0>k2yx6K-;VURc+7*cP1l-XFQ?HET2__k?IrFqb**&D
z_;jPS?%^S5IB-H{R{$2CaR;JAJmAS|Jx$&0C;~Zasp8VpX#kRu{PU-qUnquO&HGI}
ziTfvz;lvFtcNd5@=~+xhXJsQdU?~S1t$C|5?4bJHGY`94{Q2jjk4~PLiGT)ym`MTF
zu)hJV_4L88+zxkq!j06)vgEKNlXjP01h!{jb`&1R{DOwypzf#leon`Wf?Q^>8Ji;j
zMZZJliZlEvGl1}Kw`jzEknr0*_UP;pQhjEwrR396jwaBGl5e93Y(xQT+|y4Tp{KpM
z*@A}d{Jgzy@S6Z*=&e8GCTl2c9L<tMiq%OMV3%eQE@(dgyb1n}qH-X!GcF2Zzr}P~
z1!EPZ2nzc*q2D}i_|&>0YZiqnZ$UGxRW4fsG=wJZfTX|k`8m;S#fF<{^STBlAE2IK
z>~-j?f(~Q-%>-Bw_XaQM#W#M#0i+W~_$Hxt9|?}g6x-jR_j%eoTW!H9MF@O5+Jp^&
z8Mn@r<z}BGGa#N;cfy>!%U~ZHiE{u@*Dn|G@C!g+{R2j*7J>^;v5mz2k><N~5DKsY
zm4z=7V-PlJcD41b8ba^F8kEbn?WK5@EQM&kFAtk5+&9KMj&q53co6VIe=sLG>yYkf
z@{=*FtF1KxgKotJiweSzNlDZ{oA&X*!TQ?LEcb6`VRCsmh!iOTYe%XD(ftprQX|Rv
zYyvKYP_?wYitpLvNgR{sc0q^pB|(nw<)pK1fB4Ibz87+-#itG}qqPm60K`hS96&tI
z0iJP6Iey;JCQXpBwSdiM{lT!AlkfNMfI&FbGu+;apKoTvw71#+cw0CUw1I>Y6T@>+
z;$p%2yu{!6e!jK=725C@OyGMoQCJ76zE%>d_Q!|k(Bm;;v*mmCuc7gpWp4+<E{OO)
zwEzCzi>f==$JG4|5Iipc9*Y3&=eG$aYzd%c_hjnh{0gURdYQ)UoQ@Uo>JCVQ^A#>v
z46>gfnYT=^=`ZqzflbNM1RIOI-qALFp*lO{S%B^K_V(P)u18nb($do5t&gJ1>FUAT
zcU==`m9GwZ@3}Jr!-1vxz9lb1AxB^YyC2RuVBIM$jMhNL_*+hgf=G)8l4BTQuO;*8
zzZlT|{@XAmx=%kvj8u(|IIKz4?H*XD;Tl*U^0&=UH-aMcXL&tBW~~=%&)5^QM)Mq=
z3A0b<m#C1CfBW?^+#1rib%0bCi~yLDCdrY2qU3GS^bebO!$AbB_xke6%89dJ{~rpz
z1bS#C!i$OnD1t}7*)A}Cn51?BRvu(_o;(D8KQ1}<!dyC}B_+?_TFJ}DdOfs=^E7+?
zLfCorD^HKeQq=yZ)*!Air}4lbrP(fkF|RPJUU@@W*T@zigluAOPRyXYecf2rXt0RH
z=W&zhI)l-%EjE;SNu$iDq`$>25^mM^_;3^X;Och)@azzoFaw}8hnxqEe)3so#s<f8
zeByJ$q5^!@n3IJAXj<7pCRw{Md|61-z-JHq5rY5iskXbuVB}+{w^0~CM5V#gN<1%9
zui0GkWY%7iB#Q;6(%(OCC%8QO81{<QEXVTuBwxTk&+HduXn1(E1TNRf!=F_s775El
zBU-BP?Moh=7OmfrWD)UjJ_n?OH(k4=b7X6$oBa_HvkUvsxv6uK<0TBkSkazn8Q+|_
zq4rvgzQjYKn#&M%m`(A+T#IgnU5GDRw}<1Qp}=Ci$8ycyyd1m>u3vS_qJu~oEtF2l
zj^7cefIlbgK@+<rghR;!&EI(?U+G=(77nHJ=gi1|{_Fl1y!Fq9;*T$+a3Pv$Ta{m#
zH}%qSwJaGpu8=Pj0TlJQ!--Vq{u|@H-koGcNPv+us_~hQYuAkm{UWskjC~0Si4xG*
z;En&g=-Lx>k`Hag$w2X5<Y8Ysj@UGIyVarJBmgl#0&;-)w(+BLv2g*W-x0y;J<d*o
zfSuhZKKlY@&1SpY<K>2OFaHe<Pz5APK@OaKs;H<?Y<WoN*v~;oDwLWb#L#UhS`6sD
zye!4T9_cKck-g3xUh~qIoGUaqdX0fWM9W^R^YO7$&qQkAwsI%B{|nDIc5H20N$a-Z
zxPUw3;kS>p^RsLjuCcFq@1%DQB@JBNj*s`ef5ch+Hg&1l)i?c@5*3v#^f7ze#*RZ<
zpN*PU#&X%&DzSl+1?s?s*fwUSEfDBhEq)T5XgBB|R<aA6=HCJR0tF3?R5F8}?yX!A
z{znMKytlIqvGL)qPfg61@$vZWZEyeCC8Vd1=gfd7fBjkt;LH^4?5aY-!gDi3w>4<S
z)+g~`Vbc)sy*CDBqUjIn%-V+j`hB`9dUpv-%xXjEAn_Dw2*Xu2r~;{v^tx{#PsksC
zwjF2ikjW=#sBJ}C7D}Cs?{+E-Eq)r4?oQ?0W)3@@pEskoYukOmCchb)g1k!%8JLHv
zit8JwB<G-PQ->U|%zjjV<#KQoVz#ingUNWSpbzuUp!)w-w7I>oqfHS_ad_`U1tnIf
zhUr?RWo7aFD|?$Vw|P<Q^{z@DFDC-u{pBZ&C_07!u}HVd_DqX3z6qd)h1aEs0^M1X
z6V+fG__^KYl+SK9K=%GcfGrm&A|@sU@|!ULx0sEGF}wJTTY3mFNu3!yx-l6{3QrQq
zJlPMG`0BrXto1tlm91qa#0DQ;m1^5Ig@%D`hzVsw_UiRc7<Q7@`P4}p#ak}Xo3X|H
z`^Q|8xvg-gcSw!TX%SrzaG;nODr$8@vWwi%QKrqmw2^y1>hfCMg<rULU;}sYf2o~)
zPq8uomK{|8VOsE5`iWbrou)2r!(K%$)bH!34buKP#&4iE8k;?DY?c6xy8t)~xVbgY
z0-9SJb59&P<lt+W^dUfHeUm@zQX?b;brn*$CpVPk<4w2nh_BQr*9>RsYPR0BSzCZr
zy;|3M&fluzV0SI#7(DBvnz|zpv_D=scIX__^|~`pv~H@{&g=oho?zs%bZlj8j58T<
z)}$>T(n+~A(j2xYA4rwVrfwYS&Qefy7&0ESEKlqH#nxS(6T&q*p0USXAq+cCY#CNG
zf2>qV;yG6U)%!R2B%XifvqW*oI@5_{u<GV6>lQR{<a~U(^qoHq)_@!^-+|&iQbegf
zv!up-iU$1z3>@4!Go+A+r^F`*-qBcVvcXq#K{mphhR#H;RpmpQqDYJ9=Wbsl-)isw
z-s$Mgv?qeo?GKZJZ*X#LYK_ZttKr;U{MWiR9_VA)wngRJeJj`KK<E&v8&Tt~66Hvj
zBnY~<92t;ex>SGNaI{bXSy|Z}3!Ud`1INc!@CXR;`}_M|cS%XX%_u1n@@|QIS>cj&
zV>4yTWgnGo7W-G_zP5;=R6ee(av-4FI~O|SS8b|3o@8Dnx!CnJ)5v&Ane9Mxx!5%w
zYj7$ka?mper>=zl^uU-o#t)MpkBN@8<4SK=nQo*@+3uHEixPLd$WsiEg$x<$ZCj95
zPZBB38!#?BP0(>19En@QD;Q{bj4R=;r1&9Udz^aSl6K2&8$6@sKg4uB&9^Jqd#KDY
zV!wdII6{S=epijJL|rIH?r%sVxwD>ig(*I76@OW1`Mbz5Fi2`HVq)$p?QO!&hMv25
zyrD{mP6Lr{i(u{bX$p;ZtAx>r*yi|f@@3M|PIo<5d{+D+N3jBWva(Jdcm1U8$~wH#
ztgwn~n8jD2ytc;V*yb{iaqq5igl2lf=uI0>lomaIq2BgjV|=N&maks>DyGMQfoidx
zt~~n3Qc16zM=yd<JI#_6e%_?m8ttVQ>N+phEFDiDlxY>HjznW<wfVVtuXcP0`pt4K
z4WH=Z(S1Kb>*>{2P<A<6*X6Zf%cq>_IYNe^%cNP$67$8D>?7M<eaF5>SoK$Bl+$(k
z$KRJhPHhkLr7N=cZDsNbE|prZBYX%cGq83TSW#li-t4Xaj?K3H7V}a1BKc~%WW{~D
z_UlUwwWctm0)qGk$D-j1hIRBN=`{)F|0VDK^<O!u(BFBPrp4Y`(-_x>Yq!bZmkn2G
z<E%*y?SFYx8<kwj`YRd?vp^KYxN!3LXul+PdP5s&aos6-EJ*U9_{G8lX?5$Y%p)u&
zqpHQC28O40@!hH3Lvelcy?4#qfUz2V6-%i?SOVkzl3WM3J<YmKj|n_z21@}X+?h>n
z$$f{UirZuTFH-#P*#})ag=pq2Y)<oiAEvHWMrsmu44TD*2VYA%tu@x}H~7Un9*=Ti
zbLW#%oDTo!n2#XH=si{Y=*hVi2ouRw8bVQ|=V~t|MuncMrTX=z-RN{_&-pjE+$srr
z6i;49rLE8D9G1^ozlSxhb)&Rd6sNNcblM4e)RELNMTc=Oi>)+B&L$lVXmgz{?z+!S
zAIXsQJZCMVClBovYphwO4(d3dvwOMq6oz?WQB`h)*sH5rxR!n);Lxf@rLbdrRH+;h
zhhlgik(~Z`$vE(uEm5%An*x1GrJ|RjNR`)oeNRz?QNKRr8G6>{5k~?@W=@azN#S1W
zKV#YluG>6Qo!U2F>omEa<5xG*L)oTCowHFKsRy4b<vOU;@p5+tvmUtnjs8BCxo5_E
z6O@|nJobaT*)s#l%f4Qu|8*)aO__ss$7@LX1Th|q`F}A)ic-9HrF||&p{e{jQmP}h
z99i&KYBY6gJn4N~0^~rRzY+gmg~u~LAdx+o$`5gQ*ZTlQa5dC3aqZh2@X?oWwZsnr
zmZXsW{i_v7KUSf*sM4bb5oKVz^7<pHGT%_ptWsAUzwz^(La)%icq3G2Vf}m?B)i4a
z$pN4G#ZLy6SRQoh!gX5f@%^@Li1<-k#)W5Uj;3V|ugmy@2{hYNvq1A4q6EG7-jTD=
zA%SrC%Q?2;koi}k#MIjx<{!;*V|X+n!W5V)dl{{EEgCUG0|VB&ck={rB$dY%)^_5f
zydLk=S`sa(po61yJ>T6_bNtrTa9(&!6m9ENi7msXDIVF{>=$;#MidG5BW;hSjB?vO
z^>%QZgM}|oBK~$|Va{Z5zegCmBTR^{W}=#tYogQfxR!rsD3kj9DA0F`@Kv6z?r1cn
zy6=|0omq1>45?6YZ2<#SG(I=+N-_g$8#$|0?qKtr=jKs%^V&2j;HuJ&SQE)$wY4^)
zg`iRuPs~Zz;~9+Yo;dLahK5{QsR<3pITQW<`TMiwPS@9R=U`EZk1Iq8$cRNFos~z<
zp5QwRdv`bvFQzVqnXhX|T95Cb_CnRJYw|trbK_o8<myY)tp_6RtVfj_jp-?Qhq#}(
z61WuyiiwquOwfs=oMPiM)Jm~+d}zDn==+!IXuo*0p_f-5S11Gx)V{tfKg*iEQJ|+V
zQkEQ6_NIr4r0^SN`ZF8tM05vX>y`uwfG#|Fa#H@sHc(0!kK@~lv)0uhy=?q_o9)hi
zo<*Ocxwlqy!|}k{GXgPntSmsn$t<R*IuUpEwW}b|Q7qjiqtCVVU9smiQiCM&&TWbC
z{dud`tha+viufc9W&7(#T#`7pbSe_VNM-YB9h8dn6K9c7GGu+jyTK2Wn-T?GI;;jc
zhkMD5kN2AXq<IuHrE_U78BOq$#;QLURCTPg+(-nOAon@H87W^sj+M)uI*QqwA*G@F
z0ioeMVOK|BUg8@0AY1m;D+yX9I{B5W4#Ud&FCi|P0qM;RY3HuvMB&Y&PBU4%_Gf-O
zyN`E^713SSLZvRh+?R9FSJt*Zu&+SAv^$=Kkv1O5Fzm~6<YBA9_@vsAlVWtjk7Fhg
zb~u34F^uo}V~9wmSh#MwI5sYwbe^fn`!d3XcvMA5%d%sFvBPuc)6Ki{&EIEYUuJKz
zS=v5-{=QyQ*Y^!6e!Yp8KH{}^p^|jIu*<H(uZwSj4qI<u%%0)4A-Vs+b3X~c-UQAN
zN4kXhJ~z#C$ZMuIdSq3QiYr9Ya!F0L`y`8`u?V+^ru@@8d`<icCBEpJqHx&!9cNOK
zOD&=?y)h;o3{xC&CNTfns6-wK@{m@qrX|sA>Od7kEKp|ErRmljI|YN$<1n0wq%Ho>
zVqCzT)c3M3EG#TOHg<zT_noY4GB6>MPL}#LOvMdR;H7(W;)r!lI?!r-^ZQJO$*8{|
zc@wEJhf+p^We}6$Fk5P<;e1fd8Sg`%Yv(jTyhdk@@~P6E-|Rc6E`MlH@xd(@;5H9r
zdB=sF+`Gtc+*m-TQ904>5Ob|qYKd2R)8*MfOSX!`f#kX3WIT#GaedQuVX^#UjG+ka
z|8e#fP+4tj+pr)Ah*DAl(%mHuB3;tm9n#(19fEX7NOw0P-5}lF9Z~}S<h*C^efB=*
zyx;!cF&vKdFdX{0)?9Pm_jO-U{@9?HdplIf$r_vm$!uaS2rty{-#RyB6jup4$s6P^
z6nxVB>HQ|Txg#`BVy;$AaWJ81jzGd}r2dfv;!vbYUCHAqexzGsnszH<fq9bSU?8vo
zo?HC-p!3c|xb@`0i#W<zB)Ux8h)`wtOdDPE1EhS%(`$&WPN~DDY4N6@5~}+vQN>^E
z4CyjOq<@DT;Ozs)7At@(gzFIh!A4_d)?J1IBQ8(IAVlurY@L<L38Cg+?tDGT6Pe+|
zg~n=lRb}M_(6#KIj{@rIBL^%I7>wfp5N!UG;xPCqg}Y>gK!+g>wR1b+*O8^iUF4hj
zV%hh2v7q54CT>X5;*=G}j!xciwk)z2nt8p6EQ;kWzUR=tmo6qbyW-V9T<Q^O<6(CC
zt#UOiEK2qAp&O_1uDLv>9z%Ed*VB>+_8s9Sj=G7#&gi$;)xN}=)YLyc-c^^;<`lf4
z$P5pXhU_4)bkh^{H~;bB3$nA%Og4*#{)9wi#waGM930Y~BbP7=R<%52_o7g>nF^y+
zP71F1;g*u})!LTF2UEibN{!NH@u}`9OHyo%q0>D*`F+(!dD&0gtD0F6YJVJQ|I60L
zrUTihi@emhHEYxPZ20xX_stp;nXDf=Szaf85VnxN{T<$nQXmqT>yjb&2L-pwdDLUl
zy?}sU%41j^uwsaHenz$j6}dkny)Cb!P>}2%@#Y0}ULTK*2t4M~dU7mCK?xtbu{86v
zywSKdin&yRhT^IRwk8|*7Rat&LxXW~G}!l-5zJU8c@CNat^8;4B7H^v*Do3NqIEf>
z_1~~*ma2;%=n$-OBz4c%K8y~|xfhCEc<8PvZr((P)PtgQ(<6h=PCZRzYWDuxv-A@T
z8FlRPh?R!>zEx6~yIoMVcv}S(nOYR-0xQB{-x^Nxco{Fm+C7c`!`yjl`t9#q`u}zz
zjR`@bfSRK;zETBKcvKx5GI}_cDFlnX)2591zUGg?iI+d<Q6hc;XBhwkD+EVGptCUq
z1O|!=2?gX}gkB@}NX(>aeNs7kQEL3zHWGR>DS0EmcIJ)YQWGTZ96RnVqUM_}bk5I)
zQhMxniF-6o{5RW~0*B>o?E;Pt5$s%fy4m{Z_}T;Wa%KHl>@pM-@_DGHC3d%cf;QT7
zLbmUub?$t2ybC4<lUxv~rwY_^B)SXBdK6mYAq78gEJ+FEB=BksG{kDC4KV(_4bQ3q
z7I^Olfi@cSmK#Hg&!`-%r&Gknw^0J;-b1YQLJm6rUTgPZcmtuvM+l-J4pLH~8uK~D
zmM5{tW*WPZKib<VZC*r#MDG*9+yy`h3hZ$d&Sh$mDXxpR;i3{>q`mprK$oePQ({hR
zzQV}PW@O#6HnJSnC+=@{u${MT{Zc?<(&OQBV0J2XjV7(CCa%lo^mFxQ#neC=;aQib
z*&#+Q{dRRJF&i}<w4<_qmHOpa?&-#N-{&b^uTiEyRQU*2B~<8%d)uxX7A6Zm`&%eV
ziasQzPSp*f)`tQK3$e0o*=M-4B*uQ_!X>i>FMj+3Ec)l0<-LjmTMio#rI=)W3X8*C
z_C1A~u%tz$2Hl5<+rmbKWRRT4dlqqldME_#ye&1|gRcIyuzmezvo8r-jhOeV0D1U%
z+?Zu+0zbCVgSA8DWj})q>+S;2!OA?v+F%u0$uHf@Uu2s_O}X`NLp+I{e_&~p{HSTP
ztNYajncM#3BU)kC?L~0m(s<Eaqe-=jq4ysR&F_!q-!CMwAxPw_3XdvdZDi_m^7cm&
zM9>M;tM<(FQR&la9DQI2f7_SIKR^{h3NG2hP+T?u%buhO;32}$Po2W%{hgD$on`=a
z=|r{_j_U0`^-uiBwfSgn>|e7gGW6aFXAPpAEV$7cv#o{tOLR>7YiCD0?^*0Cr620Q
z_?UaF1i{7!J*#d`TIs`7WO_ek06LioMO+7m5*0u<jr7&2w55&Bh$?fFnnOn2pZYvq
z7k7?h(^@jj;Ud6E8{xc+)!REXW`B3+p;|EcoO<&uDd$$#1D2reT;85@Lm2b8E30gq
zv5(H*xgX0_$h-x{adfJ9!>L&UVSSOKIRfFcpJjrv&K?X;t7xMCxE=W3m7z~?&>qgx
zA9{cuh61o1V)OFI&5hpR;825v8XG{7fE5S}IzPAT?df4_l+1`N-Bj+Q6<ul(OBYn0
zNRr)ZzeV*NPA^7=yU4jmi%d4EGoK|hyp}-YGws+r?-%(N7JpDjl*>&#UC2Y+vP+?&
zYqvG2+08JiV^&O&UOu^73#f|GuEhK`VVF7nulH*E(vH4v+emL1=i4tWLr$q~^>Tj5
z6%uwzV0K!0U-@uYN}9NFDr>c|-cv-kG?8oS_^fxNbW0@M@L=Ev*nGz1;joV|FOs=<
zoO4tnAv+=fCOFZmH@_=%P}qG>G?OU2q3lxNc02H<fv)7?q3N!88s5s)eDvtKiSvD2
z+WoE*Ytu~*RG_Om3oCU30RXfb!r%S-iu(^gS++y*`jI(UA`mL}9d<2T9n+V5g|G$N
zb~=ULK>v5-3S2-DO6Q27fmj!%3{s6Pn|l4z_1^26$}j6sEK(k7NlPrUcLaM;(=1Pk
zYwSI(Hw>vDl+s)m?hQP9%6%KfJ)%A_GlFKCq#=~-qSRgt7SnX$0k87oL##@L-nirD
zeJ>@ZPsgv#x%+!I_Tw$Cau^uV=9SBQvP3Q^R&%#QZfgT)^`{ID!>p|$@{NWlij55%
zcqCowRk8>}s+d-)LFmb0ZbIsbDn4h-tJ4wOF`z*!cNMCQr1+w3rR=wag(IfTwm(dx
zd4acN9lfvVsJoYTajiC%o!g-J2}=yrT=gdhM-fY28$mx-8-kJ<O<y>#ncAkplZJgZ
z?>|c@O@GLxPCZRUCk+r3>c1#;qt*I#$+2fuX(o5HM-mwp6?%VLaqsBs4wXXS>3l{}
ziT5`*cMdqVeaVw6+SNia5<~e16D6Syolk2+U!Jb*xG_0V|9<|Dy?@f)vC!x!4)i!J
z@QdYofnnIJlCpAgX9sfV*hQ;UT*z|S$Gb{Z46l3D^m`jw#SK4JY$1t-8H8X=xT(dR
ztp?y}UGV&})=5xn_H<rhPqQz!sNHgZTjT65u1Yz}UOyox0PR0&VUS|^z_(cu!Q?dF
zbo<O&$OXzBiOSGy-tgdSzv_6x0rK0)rahO+*6Ot{*W&BPlv2AEg-#6aJ6I~WBUF<m
ziw1j1%_VS07G$P~l0kwm8yD7&ccvb$I9>*L9Ppsw&Cg32di?yFD2c_Yt$3ol8U4Lt
zH8OZJFG6Xa7%p6O_wMN&>pwb>xv+Mrhs&sJlB2Ok(c;Dg+E5|Rngqwuj`D`SL#vOh
z!uvQMILV0u&p(f^t=Yr$BgStysz;Y__A8_RE#_GUIh6Vp?$p;7DuoBz`f<l<2hc*y
zk|?=j7&%hC*SouU`TU-=np{{1@AqfG_#U6>OgWJ)@{=<P8kHhy6Qz7!22GKitn4~)
z?TN{f?P8QfgfLRhmd{&M_MwuGIe%lizRd%BbVatm^CjIe_On(i1xug?!r+}!P18w!
zn?FN^f}S-MMmGQwJM3dALe7kX1-hrAW{Ww*_2ZP;%iJp;3rd888Jz>0_6^tWp%{SH
zRC}Gog(d~_vvafTI;6?x;ZT`wNq*vQtW7^=V1xMWWNn)fZgXPmZV-G;#}#H^2Ihg6
zOkovLj{#9&gzG#jS@quc*^M%oBygH{uY3Q8t-%XQ49|OdT6w3eGE)9|Fmj;U>nL)D
ztPeY{edRZs=jU<aR3u*e#J2oc4f*4aFP|d=4biJ6Orr?ip;0^bs{13R+9$Z|_}=qj
zSz-fqY}(jVf}t?+DTWX_77m|_Qtp{f{;1u4@7@0WqD_ULm)nMl1(U8I+ZaJDsxDS{
zGzaIk0t$~e0TFbV(Kj{wZ_pSb7rPS%5BKhjI_;N6`hvi*{xiaxS#dz#xHut`xRRVK
z;bxZ_el&D{<g}&V->-j?I{&m}v`TCVjP9%p<b6O0!Y4r8NDU_G$zOL9k_>|RKQQd^
zz1?8RQ#13_2`EFWKG?+FWiD(=3x$0wtZ1E40N?i7i!*fsFps<eQLY~tgbxRKm3uzi
zGddmPm&yTak_*vS^awak;lv~)CJ<}Df@Ix3<wrd*tHE=x1FR1tfi|ZC_H@b5T<E_&
z?ti~w|NSSZLQixBNpR%E1TSPGLTA|7QL+`n5jJ|ZGrY>_y$qV0`TU=2u66=|A24|$
zf$Zx#JC$Re1R1C?I8AIn*91$#Y>jpK?frgZ$PJ*Z<i51KyQ%dlYLUk8^(i<yQO+Mv
z8vW}5@?WppR7Bc}&CuigWajJp{AFT|WpZNB6>J(;`bA)bM#!f?(1q#QFQp=70=lN-
z%z978=b)8DK}F5Z1!J*^-h>MIA?pJ6crkKy=HKoHZ$4q!`7DgsgiHT-U10>CT&@(-
z;po3nm1Us5Dx)aRTrk9_bz$Fk=v6=nvk-Zmiu)mPlIip6+1i*?6fY2_4!ribJz%YL
zt9TB!WTxCCR?8L@T1$Vq!TP3?_3J+x;s5>&{&F``?x4(A)<YFz1e4X&4{?Tl;-ZjE
za!%6E_TTw4)$%n$#w8@=X~I>Q{4f-il;klFwPwSSZS`=^mnPr?o{Hpvw@!IlzTyH{
zX6B+&Qt^P3(F4}i*&A%sSVuUZoS<3q5aI`UUE_H&8k0pTR3K16$i8I`IMnR2WMiqf
zxH-3Z5D*Z^RvLcDm(P!B%Q*oAPl(&pkiO$%E0gK6FZu=s`Ik;|-bF>--PPW2ePLuR
zd^HYFP(3C+gzDK+P9h&;@O-L^RVsxTnV7;&{x8B5d~aF)wj4V>D;?B$7ZVJjY6X*=
z=yzDNU0fHc`RqAzt<pgtTj2P;$wEV%Pd51*MA&hBUAOBErC%LkTJCQZFKNhMp4C}v
z?IeP57sAq}Q_rp{%{fpSz6Nq06JTYm<o@wvLDS{pZ3T!DEOpr%YV)4z0cL~)v4cW$
zfV;U4<c(1vF9%Bj&}S^gB_zV?Bin(-(BN<l2WS!sE{O;U*8$^y#D}|#0g?-y`brIW
zb!d<T*<(*=ss;T*f<eGJ-g||i^x-jufV<RQ+QFfwNTX2^qz-7J#fEPK`n4{T{E^4c
znXShGZdUI+(79?HHtb0@KL8a>574og)TqEC1ui-+HG90k7wB;P6ceL+VDUK`;no}G
zFkZ2^sq|&a1DGCeOei%^spAX*a$R&F?oBD!N?bJ@k?1{u&<SFAN*(j>RUm(vaav6x
zTZJxo3yhA$*LURjh0*44R?fvCd{AKUxAS7%2VHeMi@B<6aL>rgRc^M!=KCAdg68lk
z5&mssv@2)(vi<cbm=X^np{89j%?@c;Y&_?69e1~Wc|+vYPI21$4ymRf1R!KQ1-xVm
z*6!zqo;ZaW^pmhKK+v}omz_=Qem}{u{Ub-*Xu+bGwGSY>=yg<t%hSf;Jv}1MJ2~;c
zIzqRfMr#9V;&~I$w!RJA3H^DMR?bt&z}w8Pb=ATx01p+2_>i9Ngv?D)2XxX~cS92i
z8#6|MR62zZ)!vt_fZ=uuY!|UKE^6{pTrYNWmWb-4v8G}ekTDTnGb$gpE)gv<?}|5c
zvTIs>gSG*}Ve;}V4IfjOBeV!^utDFoyDno}`I!Md!|prj!{$re`kk-X8$kbr#^&+&
zCSrePsED-1dkt=U#!;%7o_ELz^>I%7fV10*FI<K~H@n@o4Zr`Gl>&&mJ0IDW05uOM
zk=3#U9St1fg251L)paj*E57*#ULm~u;to4;%-3f$Y`rB47!uh)SFLIWGr9=WI8?v|
zE>cN##bTks<b)6bL8)V=@<G-#EmuzKa_5IIJSIOsf1K^Qc%Qvho@{x;IM=X=%sObT
z@;iMnZvl~vGPmQ7d^dJxTGMgC{wu6CaFRU*48cC2#>@eh%?&RzMPQe#Qh*KO8~%aq
z+3HZ0M=qpF0Ndfi{Sn%?BqS@N6n5LsVtCE6gL8r)G9{z)GZK6I!7;ERW$sQ3;{#fZ
zv}YDcfR7mqC}Ra{4(L`;o^1F$7vrB8-Rf#FPaeg3Q$pt4KYOBITmxkoltmKQ<D|Ei
zln4piFRGuy4Aw5Xs9jQVY?*#oSp}xL>y1aGK|gk4ak(4%A5FC8K#D@f5>uV^XXc@I
z4{m37ESp~R$hrb`fn8mSKPDt|zxUr&07C>Z0d@h3^fSLw0)j7MSIUB+&RYZD-m)$w
z#QZ%#?=M&%QtcS_%yNUVV<^8teKn`K*xJ`7OpV<@Fjy}YhqCas(iGr@y}DYH>H%=+
z#eH8~VO8D>gy3x$WX+?+ElOmyWz<d=X*iGNx<^*v{?ZXLN{ME(D&T;^#PPTQ+5<uA
z8F)|xdfhH#GHXac@?FS-GKSfDvkS{~!8G>a;bsr@026LYBxq!aJvUzS48&+c(*+@i
zPnYR5i-k82Pfw`9k|T?3{2E|-_+juXfyX_-K>>$l--KqnNUb&kg+6Jp;YltZ)MPb?
z`O@f$q$;UX4~3Emz#K+W(8Wsu4i!|7JZr-j-|*+jqy(x0o!y^i_TC<Own><VuSur;
z3SGVQym7;N`!Ra~Gg=l4!ow<AfOk3sbqyRrE_g?yu@tSnKo^!XH4iw&)%TI>z_>oi
zS|=sC4_o&`2T0d4INz4CfBg>RLXg>~*wt@hMFy3F3QcVOCVoaUg%9}Me>l+vkl*q=
zm=@*=#8>C2Rx3|TaxL2-u_0jDeYZZzRQq}O0UUKTu=5N+SN_HC^ZT)CQ`Y7ou)jP@
z@s0c6V8_4gkH3A~i1eB}h*6K@;F$IvAEmW!^9SUQ1(wD-GYbxSRk~oHg-vQ)^0+Og
z&}61kSOFfb9JH8Ka01$7oIJPtOh8UH@UpuDuofwlT5IhTK)Vq}ny*}*i9Yy6_hi)*
zh|6Z)qk+I)c4wdiv_lj4*omyc=N9CJtqsg#^g$)&g7*&pu<2~5alm~E($5+;2+<lr
zh}mL(n!N9a6yn)O{--$PAe4)S9k{pJy<;OxGlN(IR8`OphIcNzkxE=?vg2yzJo19`
z1wE!s=2++q*q{OeoJKKSw?_!xI`~MIhH-?YzI!)pKemlwY}y=wZ|KKF(h({22(9`|
z1q*>(;d4}Jx=5^x;Otzy$y>l}ncOM8z2JPeOhDUo3`rv^uvTT#>Z+lKq`By_N5esO
z=e%{H04Wa`Mtu4tztw7gyGDxTheX(@*hZ-x3)%=;*pyeR?Gq}jXroj~;wOoA_{>jw
zo%Sdo7_0%Q6G;Z91SBMaIl3O5s`j$|z_1ja4KD?G#RqmvIJ=ysowA6Z!zde;mi&c`
z&U<$-yq)#M{xWFz2^epx<a}Nv)@A}O=#YZ`NHsuAzmxwMLYgYeshkNZ8DRC~1*(-<
zRRhbjUAZw1SmLu+0)!LQ1lk?WQYmbrcwH{$^7*pt_*;|;x&tI2wk5L%QYZ+oob(v7
z7U-=-012*y9X!(|&HR+Xr>K=)&Ib<bQNR@0tp+TWuPQBW{wNGJBS3+~p@;oSP5~p@
z#&u^bN2q%7Yi=%;^@d$4-~5Wz?nPF_zmq?ITby7$8-?(KEW_dPFV6FoL0-{1JJhNu
z@qB-!i*CetePE~KH~`aDX7-@8-@E|$0B0>$-5?KR-6}}!^=f@wLNugMzX3$xd#Eus
zY>E_`!Q3WTvKBzcTX)5QU5Ki|;1eWDdfP94J6ERj^jl$u*HsCdH=x(H-X}?}y+GCj
z=f#C7ki&>U#g}wiS<wvi^c*ME0JiMr{gNjgbH78}4;+&+WF+6T;2tUF;A%jG6z61G
zRS(~TxR^w2DgjPE@@Sa$yToYIhjXw-!@zU%b!rQiMZ8Gsf#^5)S~31+VUJt$0x>!6
zPDkbF%e{$0qn{eJ7R>+x1_lzlWZF=H$5xR@_FF@5CJzC_{pLcoE$F#Ap7>{KhB@WG
z?Ad?kBY7*7jr?<yWE9Gf9|SBp+IG`6)whIp`c{VWNkRed+eB<%u;q}X?1sOEY!_#{
zhIaXaIEHfjm4~Hkv(}&f1Q?Nh2I7V7*ij)dlk>pBB~XN}1Jz1&UtF_)G>8DrQP-@a
zmud?->B5<P&fNMm-QZ%<ln_ZP3!z_#on%A1d`KJk2ie>nIQD>ey}NmWwbj)}!9At>
zHT*1GrSdDhqcG-qp>@ZXy!d<ANCP1^6W-I!u91s3_g>qRPExO4y>d^k|G%)}CE=#=
z)dc#C(dz4G#0HF~J`%Gr@Wlzh2!(f@J>7xA@9^DIS66?#;Z{2}rdmZfe+DTCxbaUF
zTqks>=i$z5b(jT=Cx3#SR}?fY=UnOTKNBUAe>P5~km<p+OR_y#g=PU>oAK~;P0~qk
zO$#ogZ?5id1N$Bo=YdQ(umqp^cTI`#?Y`fv5UQxNis&Jj`TF`6H5%6Ic8XM{XniB<
zgP%`|iqZ~&a@_B+#d(yYVg5R5xy7ZCeZj@wYx-@YpRRjXNkk+FXf<R2|BjGp!vR>;
zsJrZtJkHY4Z}F{^K*v;!3uDyFn-8?&d55f}Zzmi)rpowL8de*4*U2KzlM~SX52uDf
z8gJBh3fg2F9r*?Z5=Plf!N?)lk}wfE4VR*4Qs338bvwn*$btHXsecj@DgX%f0_Q=0
zF;<{JRoQEm5eno-dqw`hRa({Yj0Wsb?AmH(W(si6PlJ9&ZB7S)X<#?`N1ZSAwjs~i
zhJgy4g0&69V0+|tFiTmEIxsLW*(7tSbV>Us!*h_?J0+MR1v)~RgKBfo-`RLH$=OB(
z2alTP=Q|^K1K)wB8*EO{Trh-OTM*O@9J%jKj}krWTn3_^1luCb=00jyS<d9f-0Y~t
zL<&%k#{erkWssW*e}+lI%>orBRAo9fM4qI^CZYO60{f-1uw;a=SJINJfxX6jmB}ZD
z*x%}@sOJ;dqRstyaW3&Zgg-NoQ2xGHo!kgYozlMwfGfS3f;eJX`nI#gN;c!-BvB4<
z&|#B%I-{9f49g%R(}H73<@N;-kb=-?elS8I1rUParxke^$9LI^Kf^)7+hi@}GLJ0u
z?N_~kIx`RfYxn>P(Zmg4sY62FKYEMw6}YvInK3=Ln#X3^lq2!Gl>pxSqFD_iGy;CW
z1ZS)ixPniWJ^(#vY;kU%Xi58S#iK~7vQ$CaM7~5dj_jG+&zTiSn0KbU+MwQx6a_gq
zIba9W&Hky`%poN`4FraJNE!ik%u#H^rC9||z?tAz!AgU3Cz?{i#lwAL2Q{5))im{z
z!(1^0bQI79PlbKEuIQ(IdyAon$##tO$rdn!e>JH2$BIa4#I)VUrlpkx@~zK+z||jb
zk((^*R-VDVd<oB19j(eik?+uEdYfYF@&<3~Gw645>1_EQ&jy3|wnxiR-)Aq!=zejx
z^`!IaUy%NTjA>$B!p28<denpd8yx!EaO%JAmfnn_ZE=NuAtD$DibJ7dWkK$NgZUj{
zlI0W{>dS831}K6nWd6V&<KeDWvNtTY4xl?tzaIM=Zr9J_`Ep9ZI}JfA%&<lc`Et2Q
zpZMzhQNLqe&YBVd$WEviRCC#&n}IyZTp=_@=*jhB9s^Bh!NMgd80kJFF@FZ~pl%5*
zH{k8zcDVpmIttS1!cj6bN+a)pN~Ra+ob&+-8WU|TkS^ZpaVHUtKO2IzH&r@S5~=(u
zg}~ZE?yE#JSOHYH_Ensj1UyyGf6Z2(Wm9%p1AW<%BU?6a7yJ9XVEHkSy80Q|2xtJr
zp#VCF+w~_>wzSYA{~dn}q_+p1MFzoQWHSX^Sp&-e`&nIBR$yC4dB%0&1?jPT=LAAn
z^t-}#`b?~gJuC?ln1_sjo1Lb~=V%*e5RC{)_Mzw?oK;gv&xmr!wtDVS+oTY($#N5P
z1;gro69yS^xNtuFE_6LcoOU$s(Js%Wl&Tk)lWhPzI;p$3c2O50f$JKhQhmO?&U$Sf
zn3kY7E_@l2a~z{6sI0V=Fp^@U;YhvDuP<)_I$^CyZ07A}*T9(H0NBsT=F3){@7hPm
z7w;mUs>)elIGXSO<Gjf6e{zqIr`6h0KM(q)L<98yh#mj8A2z{}4+{b!U_>ZO<8<oo
zhQr4#!Ro>bV^n&VGuiekRt1-J3}OljQTT~Rb=q;ov-y3{`?;IOxm~RYtJVco^;l`U
zEqgbe_ie*6sOk{H1QDM2upwshHx+rWAz-seT$WEtrE#eM);Ouvk?#{k3u$khFZhhV
zK+{;v4^Pcc&j!TYUz71u(25U3x|Ts6U_bC257%HqW7v&+!)Z8)4V}^rl#XBhL#-Zs
zqmYLJ6)*YE{gqD^9EGvIpF02qO}FknA1|b^gemX-_MWzhxv(>MnNct>ay2LPLHKdY
zASCM`a7J4!y$1v}`PDJxm?$JVWygp6t-W~5ZU#M`SKq5gYH3Dz1d@<KSKaVY9xbuX
z`)lcL2;3b-iD+m(v|JlDp^Fm^*506LhhQM$u;Ig_Q%6BOeRlPs6)5}N4}eRaO#64D
z@msr`-KTO&Qamm%o-hpzKE90J6%tP#@aA%*fCwOji}gRfuiljjZ6G+5^iea}?0Q)c
zc-x)YNwqQdmxm_y3c^@hED5=aIdyACbC3ISJ}ayvr2;g9=K78ek)AAX=(>w5;5qTt
ztEk9?Wb(6Y?PtC=Vc5o&MMHKyIhq8G$R_~UNvqac<Ukt;VX*DJ-@X_Vr|Sn$TiC~D
zK@Nj3{#`v-Bmw~@NXf9$77jk42sb6AdUYhv4d_ilUiz!!?~!?W@9;&I%w7f!KgyO{
z*Rb3{Oiu9_`xbe*fu&rmVbx0f01&vt`$e=w7gDo_A8TOj5=aO<UvoWb7H%ZLaxWL$
z-34bM)yk%+VUkhZD=dmC5VEd+aHtSacLD&2k(B7wS*!%dwXP2#XW|~faYRJ12$Nz;
z-8LK@8EdT#$s!Wi6~%EL*6}N0=jVp=bg__ZWEisBZM(~Yk!Y5xWv%5BEnVxckVLGx
z*&scxpVN9`Zr4FJU1qBnxLH~@HWk3Egd?M;jD85X0%iGS#+#Ir3zSWI!P)_7<YUdD
zTqrIdAh!*^aqgI4AmulGZa4&lQOQqr9@wlF`a{mYVwf)hoKxIqali{VCBfg60D^h|
z3E(p@eiv11PI~%}64skh<Ow3ovZEcKx}ezc!~SRK5;+wV%BxowMw3oY9$Ib>nWW%n
zFmXZ3<el@?$QS;>8zz}Luo?jo>1rSyvWw{i;W*(>m5wwEY+Kz10EJNXIsG9pe^ypj
zLMO!l=ttu*&WKOye7CT4Qbo{u80t-LG?DQ66|jTq0a{0s-Js{Gc`qF4B|1=0Q2Ls^
zM!zt&b7<EZ*9ONhQ1&w?ljT&670)O%7kk`2Tm0C-=%#~uIev_Yy4o;3UC>u;8Ob}Z
z7~57S6pmHkxh#25q=XX32!#S1z()AsvNso6Jw0U*if=o*yZ5x{uQH%Z+>umM!paI$
z)<lBCwYaQa_`!~{;vd$5bK34AH$CD+tny%PYC15X1oY}InnksFhyF;B%pb=^a-)FL
zoh|R^7wfQJHEb9uuR4OkV;FChKHD=b?sg5+YF8-iB6l3*hm58Kju&BGuwa&Uvm0Np
zmb0hnIJRlN&`{lwmQrE4<PityQn@61dwEm}9YU*A(sX}=?QtLkUE&K2jP^`V^)=MG
z=I6n@AjKInG4Xz=-pE72$OD>zf#Iv%F))H#&kUs<3vGY;a+<DCCTmLD{o}3DKvdRk
zEt*RbV76iy8AFTCwa5bD1j_yt#}Ny+#pvFYsFlB%Y>tUkaKR5%^_j$&8vFYF1a`$4
z-$F8rQ@F?Rr1^{zVIk}1vVv-2rnf2xN9shb_i5zp!aq)5lgQRvD+T8%Dlz`}DSo=D
zMV!ZH5G>POGM}A1?aQ}ee2PB9a7)GRpq;yfqr>oag2Q!N@0n5&<?8~=*_w@*U&Hzr
zto)1L@jRZY{JB5P_4YcUud)wi)O5<2n$8Tvz^yR^W@t!DE1_S1pk3`_c@NVKceNSS
zcE03derG&_Pb1$1LN5kaSm&*Lht_?EJx`Es62pK$MLR0}W1NMN4aLp$mHI=?9M|RD
zD^iIl!BF(nlea1uW#(!t=?2QTl@fnycQ?GB%%g*4>Yn2tGI(jXHIPUIDh|FjhcHiY
z3RfADYQreNO<jR^kTs)(yp_SA{Qgm)o9jQ23!t~4DT?-#mzVPNW3C`)qj|P(7NMjX
zq0vR0L^uqJ)2B11#j-k>|1~3rb|<+-V=_V*bn_0<6TXB1C2Pnv#S(Re6ao+T6P+Fa
zY2WRJ%6g;rI;HNn!K5M4qNBdysA5e9=6R-{;VIj6kZ2=2Uj}VySGo{FAd{+NhhjTL
z5<tEnhN3=HZ@G&Wa=Si7YndQxS^{mrn#sVzY`E>kN5nHgn%`iVRSm{S-qvdqt;lGz
zZ$tEWPT0Zncp!*mXtjFWR2{QI+%MD8MNhABxEBl^hg4i+M1HdK*gAwoVCoF{3H{C(
zBCFamj&vdC=e471A#sHv6N%(Lk@#Y>iaNWBrulSm$&@CR`d!s@>Ni6*K%^;XNhP*x
zR-N>?3(K~+nKG+HM`=)}K|{g*7_Dcxt7+oaeEC69KwTq$tSFw^=^k>AK7Vn|C4bR0
zO6g4m+<QH~Eh>WvBScf=93`0lAP<gpfdsAK)Yh`=(o&U)oQBr)*4G?dUO34NkZ&@U
zDG1Mvvh*g!9I^`~1tsuL6E)sMGJ0V01=xR+TX0hXY^3c~(3b)|=%Hbipu19dt&fL5
zUQ`(&9H4+1r^BWG3{-xl3pj<KW&mL37j<CSW{_qiDpe*NiF@Pz<a-6JHWblz(f)e}
zYXUj?v38Ewr&%|Ml3{h5349INN+{jX#9mrLuyvBpY>Z#91;yq1w*e<PXbPdI`)eO~
z+E|FEw9<zWDjeZe<xhfM0rzE-eH-zAtj-Kr;ESr*2<7S_JVdS}Q89KYZlxcFg5}au
zM6tb2Wa`|q{XU(4@8Rd(a{y!3|KhXS?&Bei!?Ht3wkZtwuA|;9ZZMT{qN$g;TN5WV
z#ceeCt(bwxxzbM||H~U3f{$iyccG_8bNtUyQQOVSN846h(&h(<`b2FSZ`RlZmMe^X
zKh%?ybpiF(HdfKa$c;bbGq#80X=1qG64F5n5AkKv{QHWUF#UfYo@P|N0zQ?Wd7zg9
zuflICC(J9VY`1RyU;_MO$RUa64M5rCRY9(7XyJ>ZBCb!-phN0=ipZ6L0cw1*R{w8o
z{YdY0e}SWi<n7yueVCP1AYO-ltw5zvKs<fvE;6t`z*kSWTm?gctQUb&7f^6y9Cwy^
zQ-GFek}3(50kmPL^q&j+SH{z*$0&sb1$TVSW~;8pal<MxlH0&5qW|ma#HN=7LtF&b
zgJ8O;BQy{(w;#+1UGLJx%Msfl9?v%EE?D_I>G$xM)~X-?4Yh84_2H;bJlj$&Uyg^L
zSy@?N%0$mWbgp8a8XLOy#@BAgwYIO^7dL);IfP-%a2rER$@0@j^P5{(Omo?zu|RJA
ziC1h?-CV>wlr+`IXmQFFy+{T*C0&z^`^XCxRo50TFT0B6-o-4OwX!C^Ay`3Kx_)l^
zj+jz$bylnBvXV*GU<Srf?B@z<WwT+r8u6F@I7&2ol8t+(xM7z;3+g{D^nakIv9gd|
z@m3G_$y?`<!_q`VL>I4B_MWB^-n17(y|#?PeUVOpN^+dY5e7l;vDOt1GVC1bRAW!P
zZ~OuR#2&FZjL;rZnUwQY5zfeRkbn-FtFO2|!w7akpA^BsXR24~-5s%&2Zf~98Hlnc
z)N;R2uns7v`xAm2YYGV}NtR(x&^v3c3NizyhYuyqKUIT6LtkZwNJ>bYH>B6y>=q85
z0Nm>AM?7!Q6^Kde@5FFzvE5s0Z4G<P)P*BA&j;kt_a*3w8c!EK>4evLesfo_K61CR
zaMFG`V_i%*uv&6rcR^>qcd-#uXe0Ptz3W*dW*npHMzkVn7=l5U@hb&!h%7q#!}ydZ
zJoIfa)Ik(-Ut`?}Be)EpqHeB%1=7UFO8_fTcDh#Gyi3-o(CbFXF;iqI{wJH14pQVz
zI33c9Tf5ROn=)JD@9$LGU~@Z0`rvG+4dQwBZj`tPB9^6Ra-h6TlH<2IzI!u(6O^51
z^J;Xa(khceQ$P=h1K68PQzg&#!;YuNv3+%uE@Cp)>^Tj?FHq<*5$7=@59dfl4sd`0
zP87>UyH=yO-b2U^xMk;kg9A}-m}0$7oyPZVE71jX9S7s3oPsfAYW2FdP?mNW%V*x8
z%r)Rahk3RCwd?klm3VZ%2mVg1yG&ljh?ftr<F8GI@IO{fE?Iql*)R+`8cHxW_+b!)
z2%Lyb4rq1H1)oBN{R4hWVUxK$yYr4U1AtTRj;3x^ZcYvu;k42LNS~!3q^Vf5x#6*@
zl?CjAQU)Xf$s}e`P=p^SSS|o)I&|K;`;Bb9je%)3@Nen?4Kb<6D*()>hS3p+H-LE&
z-!UI>-<&!HMkH7t0GOoN0Y5|wuyChn!7#vl%Zb-S$u1L;?nt21W%<+M_QHV3b{6W>
zg@t6bL@<*GaDl}{MuJhr3sMC^=J$<n5H;U>qL42SD91cD(&zj-B5&RLX=-~+OPdWB
z(=!f1^~9Ll**yG8iYxl4d6+ESP4{Oty0+#Sh%yrckYBvX%gqN6$ZAJvROs;RGQ3Xd
zz1#6O7>J{zA?{0cXW-Ommkx3R8l{_250O)cxLV)GdR}i}aN}Ae0H=(6+BIS8DN_V4
zcz6f<;Z)OpwD=pzsS+Fv0z<pTI7!imVM&NJm8-P4S&|jsxZHGH#g9{3Y3LD%sephX
zmnNCGCH8m(bdo-q@&nEc+z3+7<GRbf`Ur^`!D4<dB%zSeLwprT0A#@@b<AI>taUQj
zF!77+Hor8hwrxwBq!r5$lz*wmjvE)tu`DV6$*o2F8avy2^2_~ncu*mc@J}b)%wu_%
zhk1?*y`zvPt}7E<S}qwB<+s(lTPJH@R-H!UKIQl&>rlp3ZGC<D;a}<0{{!uKkBKg)
z*bYSl3Rr6=wq#h#OA$}Q4q!QMhrBa!2+~UA){U$5uu)Jlf0P5eaQV=KB6Awmsu4c^
z!sSupz=YFiVO(Ul#TL6A*+-Zxh49254@bm}h@4!6w)L0I9g-{l<tN2r)g8JG$YPlM
zrANOq6OgdRTNg}s_Pk$G=Z<m6k!I4JjSkGZRp5~cM5sf8MkzHrFbWfV|6E)WOEW{(
zc~VfnI3c{bUi=jHhO?$@#mAL~=>FH4RF?AgWL=~eHrJu~X(Q`*?jMh)(aX(<P{H6u
z$e&`+IrX=$Q#yM&zjnSqBL_AIQh<LkCYPfVg<ZV9?V5D))ThBdXqn@^)DXhkI}xkU
z)Jv<h-V0dEJXNitni5Rr55|~q)t7TS=<`O7Cfnh{RvLc$sNMgcUv01PpK#i6$@sSY
z;0G-m`_n?Uvp@mL4R8#v!Ujj>%@*q)wTnVJ3J_6FTI7d{w3=mqL?D(I$Q@YA&k8S}
z-ZaF!*r!C!eA`~7Ju3G~r82RaLYqBX*6kirD9&d#={d(TQ~?S_ad_T*U9!xJI)8W~
zO$#N9HV4Ij=OF=_5x~ccIPO(iwUc?=8|trkFGOezvlRl=vQ9RBfJs92EBp>0tL3(M
zO=I6mf)*zxfygVyW8fk4wi`TKk>ea(KW~vOFc0Hg2(YuT5}@ugLb-~8m&6NjLVoQC
zxF<??iO+bJ+M2Ei4?rN{xcwv@ax~-1ZpNXfh%JEPf@cH9KtKT>sfpN<X9_4e4&r{5
zgqlo7L$M(FVw)Y}g#}5#oW6%7HR<#kw0@J9-g-Y>t2!}qR;d%RUTCt*tmDghvOi;w
zJw(!_n%oDHK}i6JMW?D}#Px6irnJ?jL|sI_rZPt_N0wmclb3NRxw$p0mTL5a$*^%|
zt&c#)-;vY8ZCf)^_oLj@`N(!cLFv(w>Z18G!_f!U1^o~VrBY2AFvV(U6Ggd{0Oqol
z%U{YU6$&0XLlVLQdi%Zek9i$@{QMX0n1|N*H67n|Vd+^{%~VRu(_SqWl=^Cj6>ZBd
zEzFKP7OC#%pNbl7=@%X)rUHgPy|(1<^E&BG*f!@jC%$J|^i>uMvs}V^pXg*{WEx&7
z?v+W<g<1nWGw9}oDCIBf2!Z-pFr9QBcEtx%vHG*v+I$Ds#dvrq@Elr}^>jmj>(ib!
zP{R3e(?z|d#8%<z?(rce3o1bn?mIM!&mcFvC#_RZ1(RbT-Dk`{we|n_E;;dSfI0z1
zCjf@((6qQcZO6dGH;HVb#oaZv!W5WCs^S~7<naN2whPShl~DF<cNSexU)_ZA1Yw@A
zL-Hum`$bzRF{g0iU)_Sd*DxIp^K&rOqIpEC-2uyq_BBh<agi|anj7EyCU6ylV2gPI
zV(9xoTSg<reGyyI0KzMqTRL39E<8BQJA$|>M)VIquTX)Iw;j+J>KUD(SA^E!-#1ic
zuR2(0RGRvto<d#_6usKHDs7<kC#(zD90TTSGahf>x)0C{g9AtT-3w?X{xxsPuy4LH
zLaG}+n?0p3FEJjsc>J7-w~yt@*`g6(fcm(S5~0&+QUlOUI#DluQUTM_-3k7Z1$N+i
z>ET`}{^aSUE0t17EEpFHE@8hl9$AikjtM}e>_~Gi%q>M9o_Ve7u9*tWCHpwHB~li*
z?vIXz6!See#VnMmRW8#*E4t5jVr(}=e*3=OjN)xqgb-xLzpOF0^-osV=bs%18mOSr
z<IdJ8!(;jq>Dk?^mr+i1#--*9czk*+2~mFh!husj2ntHk3%sC0DqJ0ZBR-Qar=T}5
zG^4e%hGx{Hq;(N!B|~^?oW#op_hsYfyJnh=P{uU(zkqz;qZk=Pook!PQwUZ8qT?Cf
zN58z1>P6!~@c?8bruO%1fRP~-_h|2RV*uP>0RYM$f83U>&}4j$&2Ez|Ss!o>G7`<@
zG3v}`#y$~1q~eR5zl23zp@+l}OnD^`XXPdU99?#4Qg|NI?lfxdm21or-A+0&eB`H{
zyw2nWbO?n)Fr=XEheZF>u`fa$)5k~G0ItX2=2NZ3=F^{6!vK}eX$o1(0qNKWDaP}*
zSN7z5ouFsm0(3L_z2;%iSuC@@!ofaky!>`q4?DlNq6rTvLIh3_ibo)!+*Q#`e9i^l
zH{e#fw$CcJHE`IT3NDNMeU^=$d~lAfIW6$deHQhH$H_+I6CSop_ss4LFFKZEC=^If
zw$&ZXHMrMVQYy2!s;#^qFPa6@WiK>+$F*WuMCTeLe$u3Vg$|30Bg*1tldr{FJbbW|
z7FE_KwnQchw-r$51}c;a;vcA{5}V(+!9o5aRNrM=H(KxCtar#4pnzkz?pLXr=V--<
z%=ZAG_aF<F*F(DdW&m{<4(1uvZ9vr-2Y>_YV_WD#D!4vio?O1vlt<6w2zzdzodFR*
zj$#f*-SFd`cA*_xSbz}l3ij1Xf)CvrWRd!x5BsSwyowVKU9Dyi&}4*p8LNHGZwF<P
z0FIMqHfP5?@L9!BO}z4k)ziSlb#|m`XQ27=84M-9PfygzyJ6?%_*+`1_q-!p;}>bJ
z0J(Bogm0O;o!>I$!nfUDE-ZZ>8L{jnDHFL6j5#_iPS>2xFR?~I`CSMjj(YA-jBnl*
zC_r>kVX|Y^tg*S!jn$*OLWp!Fnb%vse@5r<$iFxMOK)oE6tp7o*Qc>-*M||-TDr}w
zl{JN63gNtcxY+IVe$eH}_tSDpq$>gJ&M}aHyy092WXe(ON%cip!DLIFUv}HZBx(b_
zz37&7mM1dFF62}*yBoY(8|~X_$}mNL94X#s;cZ|-2$fvuH!^lr5pD<QFxP<cqVbl~
zsBi4mDzTJ%^!e#Y9EZlU9eWb9U&3RNho4fYFEYL=-iPy5Bp;6o`dgdbddk+uAJF9H
zi64Cq#|yWf^N+7BeZJ+kiGbA0`B{9U=c{TH=8Rs@z7~Dqc()zr6RQ94TE_7LlQMj2
z%oqg$FuQlOoqz9ZcG*V04Kkl-yZa-M$g$vb5|IsGAfQYm*<fLh0XiP2u|1Ief>}`b
zM6u!8yMe(TW+3gQ)3Rc%g~m*)XKTL;YG(L}7ecrHMKDVO3{)6wsyQ(i4(D8NToAJD
zM=%JMZgQ%5_a@?BsR33cD40x!VG(SB7vB_cbrPAFnBX;NXSvP>m>dp1f}jo%&@oBa
z1(?FGSuIjL2zpCo2w;%t8*D87jz?UMY=NB?`k35(Ga?pW_BCKLevB8L7hXw2!an>G
zf%mTD`-kDAx8jmuXk*-JFq)A$SW8d3tEXTQs!55J_MGV86V>WLu3uQ6r%XMgSP2Gn
zm_Gyn$bat?QjVY`ac79W*<+br3YLk?R)`RZ&QvNEyge{nWv_8hOnmoAV)jca<a?co
zuGF}^vP5QV7Ey=$;}HGa++B<2JIHLq{zb?y1nr8JSK8}|FLH;u%eKYgjyOczs1znw
zMd`FWXC8)g#c)jE;WjbU71|rsiB?ie<X0*^brN=%NQV&q`skMTkukx>$ZR?}U;+th
z5(i3tZ<&a)QALO~pvkmLC<hN}uWVST?rq8|WaKY+ei~pm^cgX9f;D2J%EX03h$unn
z2#1~87wv%Ia{6va?C7p*7DO$R9ut$9toB`dO-I{VB!W<AAb7R&^tjgw;a^YkEkf^=
z?}7cGt15^Oa77AwJ=_saPeAY<;N~QcHu(-5`(ruc!Mc@;w_p}>b9=kziZ`D7bvBJg
z7llnIVf(S%Drq_u1NNZIM>(Lhfu<|>hW3jFLV6O8qg6Y_(M`2&tO@f%){YQL=dJ6Y
z+8a7G?!b#)xy#I5kD1yLgz10fw=Or4TDe_*O!ktI=@H?;ug^8J)F3gt>PMyDG&B-5
zv~dfzp1t^iYI4>Fvx<#LsG!Fo)?L1o$7)ky_pm6YZk)Y;6=NObC2f7n`YHSR16_)P
z4o(qNjBj;6an~8go&PLmyz6hr=<j8rcZfJX8=JC!aYb`kfC#)0W1rQ20ZvIs#A8a(
z>8LQ?&P$yiz~Ywx1i3b2>ZAf+;&l+Kit48WNbJ?l9PJ+>@!l<R(ONtkB2M53lh_N7
zo+tubM}wFBlXc}T*5xV0g+a)2y3^Y>r{Aow{&f3My+JaWYS=BzJUoG!otc@Lx2XWE
zA@Mvm2?<HPSt!O={3ik;CP8o~jB#XiM)msxvfEBazPCl0r03q-F4M;-N}%|9bh7>g
zoQ1db=BaqD*FT;15Jj@tA6)SzjketoCd(+w-ZCXxiVl9szBw5>i@`xt7^Y+8rNI26
zGJuA+(UWJ>=LJS^F{=X}zpu@qSCCc`^f7NOV^c$K_4-~iWZr5wS9J`sTnge4o2wNp
z1<90>i6&7IeDOzHOtBUdN-VEsX0t!7D@tONz|v$_{aAfixPVvOF39{rYM$<--=iwU
zU~smJs?P{YxOYO%GTM+ooe4Ub=id7|wZQr7;SzOs4NWhdUc|rYE;8DY>i{F?JY_`$
zFd=Gg`$RvH_5vP2ZvRQt0l*!moc#_|>uqv`!JVrHN$7HxPMA(0K4R|-Nf8TD2=)vq
zrWlOgP~N;bkV#Kt<_j`m6I<0$lfgyMZL!k#TO;CAScAaDjbi@_CZ;`)W#jjr=DVMB
z5fe9<17eJ?35CvsxnBLTgFJ2}yuHZV3yrma#?9TpAB6G9YvlyN+*VJTm@mLYYnKI}
zD-&P7E~IL|yfAZ@8PIT*0&Xs=*`PWRY`L_acz5W29P_#c@U;88@jQ!?K~dOd=CMD`
zz@!CSn3*gGQ+E2b6_rFyTO*vMHusz)ojHaSd<5x8bO+>gJGm~*X2iK2FJvz>7RA0N
z#IJpT={h~vv8MffX>FuGX~Ag$nNS;^nIvrA$EQD>E_Faia&K<v_j?W_+EKDTN1(ZV
zUsf;P=$S@2J)gsMfsT-Z>3DbEAYXt?5J!~skxZbDH;t=8$%av?fm4CSgSpFG<2_og
zB=JtvxaMLD3hE-S&v!jyVgLLg5stjB`CL9RBMdu^z2BG6?-!Iv-k?uPuB>h#0)yyL
zYOO|x;>21*i{=Z(`qdCBJL7E-Kq>I3kuj|XaBMGEO@MtwWaQLp=f{bH9i$(i=5Lun
zcnymr^9%zK_7Z8es0^ge8PaHX_?7~;$0I(xY}e-p_o}K9mJ$hN&Pwsy(>CA*2Rl!c
z4oXNer5<z|)gF+Dm3Qm=BTJzzA<iH))=LZ)N1Q{ZPI*jV2JcS~Hwc{J@8QwEK@M}T
zu+;%p2jA$j$CIH@kV<xw_7%toDs;X-%RPIBfRm>+%LhI54U;6U#%v}NI;`$8k;Obo
z9GT?Mbh#*q*=AkD9lWbpu|zA-)!?L6*$RJ$fX7p$akJ84X&*XYXPq@F0F-5Bo8d16
zQUS8cgb-TATBkh#{2G!kjkmMw&S=J<`sx^XD%D98&*grG@=%_>kua{xKt>4LeHRc#
zyN2lZ{SWNm2^?x1Z<;<a?ueSqFtvp%EZPr*!x1&>+hyn97sl@w8_8Y-@_ub2lwIGS
zaudUDS5#`W_B^ZYdJKH7_07@)(zp%K1dV(dYj8NA1S+O6`>VA;yi=`1-?rm$)<x-W
zFPhd13QNYme8r$v#s^r%C}KXyek}O@eys`Uob;580XXvc{9sNAn3xj-L&sL9;CkLz
zIHS(T^9)9Jn;anchu@|FqDE`keDS$0yaEhc9(682vXI7WJX5Gd=gkxvU9`uWIPoP1
zke^RMlh~Ij7z*Vh<`=H_yWahOz)f;3s3aEi0)MwUy!Sr5i0xcTt6adbwN+EGNZGqc
z5@cZ)?l3<9kfG<XeXL9Oeu9$O_^2_F9Jzdi8goDQ+=J{7rX%;vtgMTEt-4F#!W!3d
z`Rxw1!%Jk+6%Q6~1uOD44KU(&Z-CNm&-wd%WP&ULVgbgK>*&B9q)UIR#%^)LI<0ni
zGmx}A#Ww;D*5s`(?lLHRR%<*cCaWF6H!ap+tGMwf08h5>%3y(oj#a8j;R*LfYu*dJ
zSnMntEx({qHUH=U_$(zrFi`I}quMjE;ri{w@;>FoXJX3YlJK?tE20a5V#WXDp)OQ^
zfhh9jLz%^XboaCOuYS}^fgoF11Q5t=2=A|lHwMNl{bmE1FZ8*}DED!K;J{H<g=9I9
z;6~;Ndvi?x0&xYu&o=%sRXP=MVIs>794<FH3Dqy5A|4xVbOzP_VrQ-aKG=_b&MYXn
zli%u*eZ={>OvWcbm&bFp{Pa$Gh}?FbKkORNra0k<Rs^ow;ptG>(!rDM<wxXRUr##)
z#WCky+BGQBFZj8;Px^1BtrDsCtl4q@^b*D@K>`6|JSan)xwxBB)}5rF0)K+wxuOvs
z5bH!yr*+Ky+V*>^LEFKiMtk!x5IxERkgi?vyYu3WEM`Xlf4~dtsbbphP-SH;;P5+x
z;L{B@+IcRA0nl7N-}Hm(b_wDN*Jr!nC%>82i+tVbf|x7DCZPK2aOOA@Th@BZ^q{n9
z{d;?R_L{eNwjpnVlfmsYkiFACe_dP~U)wT#PD}S`gX{M_?!R7S6v2*{Xs97VJHneX
z_MMcKWca~2JCPgNTQbk`>j!bLIkS<nxwKu6#EBE&Di5Z=TM}&w;wfr3=;k>Yd9m67
zzz|Nwoin7_13+x5cJ(r1_A7i26$X|OQ^)`}RIJmJz(A0RzMYWfv<gRa&b%4mV!Bw)
z9r>5h8YKdRQpCB_${tX+Owjs8EZtcTd&QTh0TL)-Fvk0iayrLYK!A!bRB!GG<gxPf
zjsI2zh71=wx#@j?@U*ZPNTb!F9`F*|5VX$DRtdjaA8y~VJD(CG4EmKz2YQ6B@20`o
zm-Iaj%0UL2Ty}KPix5t&tkTn(OIaJiQZ7px<#WZu(7qrU_sx%TwTYTy9U|b=`WbA^
z^UpoW3LS35`-HlEYvlJ$>Yo?O5D;s4mBp^><tum{;oPUwK<ET9Zkqx32J_&ZfE4(B
zn4>bw%j=2BVpIM7Yro?YFfGKj4~o)(Z4Ik(Jkrb!G{CiA9f4gLd~`DQyeBXY3l05o
zW@Eg0ilj5T+~c!EqAV;FU^L3{>(?)05SY@)hRf|TZm?va0ls7f>Cnl)KHni>NYEVr
zxWq$x(eB+sEeDLATRZ{M5aN*tfBCMY!zaSl#|t4E+6s4be|Lki+tw=V1SltRI+I~9
zU*vYjh}6aN1?{~elQiyj@8${R)av#anq<JioI7e2_;}?P+*(VQ9j029SA^L~H6?Bn
zn*@rp%8MN<^?&XI<bhDYD>M-Ad9J{p5D;*;&>@k~2vjb6^s>B0A$Pg@fuY8Oclt|+
zth*OZ^0=_lZOXVj&_jQ5*jRQW)Aoxh+12>)s~NI$s#~cuLUC2_0`EStU)+4ROg9&h
znKVEKfqXf}x0ydR<G;h!|IdpycA+PwYcAJUL6NnQ&#_afW@gx9vRHZ*4ns9H(bU>t
zS5^V#jut2~KHcBZad-1@&<6fnCHSwM!hgS}q=h)*dc%fQ6H2LFg+fEQqDxzZp};2)
z{d}(t6BCo%vW5KvT{g%WV|2f<d(Eg{#<Pj{*A@3W*82atFiP~Qjb~IFh{Nffcy%J9
zlkJYL<`*C{p`Z)_<ScSIU;}foBa=)a2L)-V#%siXT}S`FuKUuS44^lk;VaAEhkooo
zku3>bT$~L@E(vQfc$dS3XAMRnV~viMxe<Uar4M=#$qf>Xkt|_E6OaI>Z)n)}IL>mw
zLst|R3ab-VQv+PC#+cYx{YeHn57-wtY`nWuk-#w-p&#T>ZI5<<*I+$@(?ZF-Ss%>o
zDm?C7&YGx7oA^L#9SPVnazR4f6tz*nKc5gKhc_6aDblTgYP@t?eC5|)HlP3HKRN{I
zt<FYAxsr*&CrZ^Vm_47OesX$(f=720LZ-bBkbkbLWnWqu$)t0iB4wEy$S$xtfVvqZ
zRa8I61cf04h%O0En+rmA><6vrs!bX-SL0&@H6;>pSGOyz_KTM<-wIZ?w6uKnLe883
zMZ^yDOFWNIYRx8PV23e$2+7Xzr*r3boZx>hQo5l)`pod!gze6MSR&Fbu;eqDgVr+a
z43vmMZ+K?=#p5X7>q$CDcB0Tfj_r^*W))ljbh!aQV_OA<00Y<obMdl9eM(QL_V1>q
zCxnJIfNRK<hW~DpNyur)5eW^A<Y2D$6Ucc1MbJHat0ryK|L?cp1?1u)&#|_AyC9mF
zs(*wcmXNm>11p`<_(P@`rKHQ*pb3CQNpj&lkG}<i!3R@HUw^|gm~}^kV2pl%WkK8O
zg6{`{J#-{L?u?Nbw$vp8RHCm)rIMJIR?=`F;r(Ujst;G-u<2q`BJ)R7A`JDBRUA!{
zc%i@UM*rcK{rP<=fn5)-MWGI%Yr>QYj8g0qv_#`kz0<PB!Au9I+0Jx%){p0&H#=m`
z2h~$4eZxZE07cMXEL+q_&p2X-z#G6L+n=p^Kq37p&<JgQAJo`rW)lC;fAv59forG=
z+X|9lH5D2{eLKkr2OYn#QBtGx0!+xR$Au5FwrYMUqz=(&G|0m})3TzZ%lFC1z~4xj
zly-A-GXQl`Oj?>Ip~mg?wI~RHu@jjAMEQ{1m9K^J`Gk+GL-ZtIPXAdhSJIg|9h_A8
z0E@(jas-Ns{iW8WHCt}1j3^;cbAJL4U^i;8x3^cacyBzP2>d7xm~@GXiG|2D7eY=4
z1HvhWX-IhZ1V&w9%_QRhGzA00D9t4hJaebl)!o^EP~*KFqgc8_4u<re9#}x=kHlfO
z=~!c5b^-jRn6@_F4WxQ4+tYK^Gp8s>tW_*T1cVr%(%{grEb|Tz4o3bJ1{jG7K$Q=_
zP0{)sp$Oz5fGs6cgAVZxN32#a&j0qh{N?TW=SN<^$jR~%-rC%xxYMmcp}Uz@$82tf
zY8TS7Tso!G_ER?Li=~j1CQ$ZuIsvtYq`i@<bfF^6YtElCB)XNs3t{*8xXCOBAJ#@p
z-dQa_dClWiM+;bZ`4w*0HjOOqw?E^+d;Rf!;{V6kTZdKo?OVJ*5fns8>F$(9x*G(f
zyQRCkK~TCIq`SLQy1Tnmy5Uat+2@>n_TKmI``=<c>a$qB?|kR{j?WmQ8p8BN*^d^r
zX{??d1cnze7*@+TfOaS9_ws(d1=AZqyH_6ehxh{g4TI63YJweK*VpO{Y>A@4(-?i|
zvIP{9Fo5pClr;JcxdaZ!5)CdmnucA%dcdmMvGMEc!HMeV==>a!Pk9Cd_G;cTp!h+w
zla7Oh$m07Q92{J1ZmNrH5Q4iK!rEf&uL_MCv-&0=Qqe$t-#thV=oSUnNp<)HE4-;s
zCgCFM5)22ys$V=ZOa@zz-3vJbK8gM?+GYF*AayBPAGeovP66*b$=?jT?#`>;Z;u*2
z9kaJ@zF52+jt*yj+^({}1R5;<#5lzOrpaQd83_;}K&?_C2qFZQtCNV}0C+(HHs4cQ
zj*Hg066ME4VVq_Szm|d3Ge`U4?w}O8Ou*;$9^k274p`ee=NA(j`k;oT0e9=A*f|wT
zFj&~f>l7@lHqOoIA&sUOY0M>sDwW(U4eP1@yD}{zIUV#t8cz^QJZU15k2GlvnR6(D
z|NW0Ce|2zjj_uLsA1bLBSUmE7CTVbNDpkrZSzNi(WQ$4qL|fvd!cf7;iTU+W?fb)N
zJHhGsP!!CGd{k@fTNgWAtbaV+{@bf7nG1p~lBizOS-g9fs$P5}Cil#_p3<*sTx5&4
z%jqg-d#)Ee@Q3mV1l3=#Pf*>!I+bGl3etwQiB4=)b0;2uG>P?;?Pz&NIY6%vVI)xm
z2htPasa_m3t-EkN->>wDQ(p&Yyr2h^i0kNb?+uFmDwn~Dkp>j`#O|af<wY0to1EM6
zrvcd1hhmnozdXR|{SK%UDP%C2G~#H-lP?jrQTHvh!NWrde6Tya9BNITuQJZW!3$wO
zzzy}$HVcF)wnsnjfNc~5+SSL(w?zu<@K0mnll$>yq-BY$)*1MVb%lN&AysyJp2CVJ
zZ{MTiBdoKL4(573OT^%pdh5kFABN-_QMRLuCk}s0L4fGs8l%_Ywz2^n4TXuTfMThp
z`3&TuNC@WEnM?Z)C{>m|a$(i)KXBMl;W6#8NB>Z49?Wo9oOU0GNK_R*rE0ke##f(+
zgcpx&Eb34#n(gbra9Tb`s`@#hRK32UMRT=fH~!DL3osiQ#asa$X-)a)lz#fN-7dl-
z#&8;smdOm<3{5^LM+xr?*w_LS&gmY2t;T`De?NE<?o6_%3*KMs5h48ac&fjzUu85|
zX=#=(!7hU8LZB&CtCixYz)X3;I4XO4d&7aE-c4S!pk>qdyFY<ZcGZO4^=ibyp7ZZV
zVDAisyyd1wKf&r)IpaPX?ezQB&Y$Ck&Sndl8sF9D4zg0`OX?m@iv5SCXz{<6xEw0D
z{fLd>aVNc>{zP^7v2uBahnF3`L2{qTg2Fq!CN4rY3^z7S(|yvc^F53guc&BvFrH`S
zcVGqAs&F_Oe)o2};JcD|T0`??la~6axc50vG%BsRNe!weo@agboa9-1ci1~KOZkF0
z#_UMXRKe-t*qI(u@dd1XOohe&xO<M4gP`O4qo5{5(;*^YxJ9y`_V624mSr+#!ui0M
zZxd`P7;`DOPrIUkuL3FeERx)5JK+>mFRZ8g!=l0PE7TfUd$&m<(0Cv)ppp=LDIw7G
zyEy|p>sTmQRFhK~&_$LF&O@q`%uato93X^Qc|);ShCjOTmHjx6j0)SUZ}Uf3F9)+T
zqqj|#E#)vN_-|ea<}cp(*!Nb;pqV3EE;m%Q>y0-lHctCZc~3WrJ{xW|6j>J7J5X6q
zt1|Cw<iM_gex1R3^OY725O>1G=5QEq2P)Lq<l*ExO8R9%1*^ASw!$c=loKV{51M|=
z$xiuL#|caxir}^=p1+!)2?VO8<Y<f>si2;ym1&o=unE}Y*$g-RW}Q3^zFCx$4K*Fc
zVYeIgk*@R(NLVki1x;k&I~eu@PhQ2DRV0#qvl4WTyhZ2(qjKs+<^cHCspJo{ZETZP
zpBF3igYMW=s71m^MZ<8Hrs|h2E?;U)KcV_{8i<iSn5|-Jfw@l+7#x+O;#6R7w7E~l
zV+r~oyqXt`LF)s9ue<~NMc<ogD@FhK7e)<9pveh9Do24oMwhLE59iJaht|PZY;uEI
zy{=4I!pDoAvniCj7NEgMC@AJva@7SxDKI)sogF4r<=;Y842M>CP%ii1RiZ9z1-!>7
z>d2pA9DsnJq-eL0e4KLw`?DNY%w#k7A8@UqWhc{qcVN$BY_PYNT0f;cVhEPtHb#h>
zMl;|eg8Dq%-!DtJQ~J)Vv;U_^TMy6I2Z5<;u1ho(7k;zfYP^Vs*wZzw^5%;wHq!dB
z4PIlkbp<zX{0qt%h#7CK5Di@nhE|-YWgNp3wn!KaI9iJ~ORj&7nv7?R#5AyP_40*5
z1tUtT4VX`~AO@lrQ{2m=LIo@0Z*hj5Xh<f_x3vE5#+9M1tb00E$P^B27{OB8oO-xF
zaY3<O#j<~v6JobB${1Oxv$pg{rh9Yyrav&&asPHC>`_j(QWo}GL~$}&>%y(?dvkW>
zH!Ssh9<!I3#90d-!myk&3N7@E@}xYG<Wu}MTkQlCXVY;6{wW<U|2-D_A0g+TUU*lE
z;Y<HOonl0ztqzD4)d!uoB5d>p!Ib2TuQsA7q5wjy@DiF3X7wI}LC^wN9&>BJ5)}a+
zzGL}K#P3$c(UFle8-1W**V}=6eP1uI{Uu4m`TnRjng1O1vqP(g`w%Ih9u+$pTQ5$R
zK`eIj_3}jjIIxK9F$7)*mknE)GpV0|^*6JV2n(lJy<R+s@`b0=u-nUi>_VV}!(<X=
zbDG6n2SX{!w><%qhUUl$pwC4T9M4>xcT#Gr$=_#CK`-EsQ}6kG{S5#Ut9?}6uf%@O
zDRgTpDPW@Y{1}D=Z-E>rT7C?Unv~^<#h4|&-+c)M-Jwg9fdEK#Iyabd-`G}+9O{Np
z13un8#H#}4sZuR1Jbr3p`$BB`b=*&o0$UaO1Bcjuwbz4YX&WHGsy3dHYbD!v$dtOf
zE>wG&BIqs&1i<Z`;=l3VwLIILsk%Wi^@mNf=325HachUy`R^<MuI)>ok@F#z+@y2A
zc!VR;FHXXxC>?Vn+)2hg?PhLoFx+zD86m$<Ln4N+nKT%V;Ce6QMZ9EnT&m=}gKTo*
zT?FQ3l6m#4!qR4k@HQw!3L2VWDYGDE0F{d4I&UIsz$2PiLj^bZPI&S*1*V~~((*q9
zt*DVi;7|L30-6v2twv>K3F4SE3Wp@REU_#xeF<_V`2L~~A*Ec6Zl$o>GYI|a=2WdQ
zOFys*E?a#$E@TV*wQk(x_w}m}7Q;ln2!7Ec?~evMKh4>F7K_Lt`4K_p9o!$0S~7#x
zVG>5ZHIY#<G*p_n@@KE>_7I1Ibf(N{3EVh%W+e+FKeaq1)JmSN=Lg$~1ujvr?KjGb
z^SkxIbuEj>@IKz@>@OQf<ARRqZK{a%6Plhv`97`YK!uA|WI`fyT95j}DhL!!G}~ea
zxvuEe+3kd~=lc|%mw;Z3<p%?2_e-X4u#zi-u(3bjiN(HVb2@A9TE9bwCFy?iZ;v$p
z`=(VaOkVg{JzKqaSzd=Q)f%B-Q2jp738$qwvLY!&w^&qa993ymeJn^)P=m?krV0oB
zb<j|U)OKCYU~B8)y^|_Ng8d=n0tA!16mP%Js0I66)gbf`2I(usa%{oKP#At5C728#
zB%Ffb@!=$-PYrl%tFrkpO_Vqazb-W0nvf1-`5h$e?&8wWblNRX!sM!sR&B9V&;=C?
z5}s&&2ceH5$nlRty&~~57WPpFg5NO<+z=Q4H73kDi$If6G(qq&$R#2}Xd$dNUl4w}
zw@i>JhD!O~`|aN0esrVSWDXb8CrIx`*Y3|rD{K`q5jH|l<j=}sfOf<S@P?ZNq7CuK
zIG_HGvm-ai7Ma#%&7|SPKK3M34gh4*q(IZpYV^=F1Z9iavavjx2rkH9q3c3+@5fRj
zK#&P}FD2b0&?z93^i04wMTN=Zfze>Omsk58nsi<Go40Qd5JsodSTZ$auB?<_qKi;z
zQMWjy=QB>=xo_IuqlJuY0ET#)Ap0?fLvE!d4p7fSV>~0Lr>E@dPV&)`PNqkAI(ZS`
z%%y%-Q=<=7^<UqhSFg)AR=9RCGW1B1@^&F3YiME@52^duBjm^8)*YUR0&r&RopN`w
z!_3l?mp(h>^|D6jHqabv+@}c?-*=8$sTnQk1?cMENpdZ*d>dlp!)LqoYj~bruZsO_
zjw!DFYslaBXkKHVqwH}7OCr|HhCMd}CGVO<|LfqC%Y0H)ji_0H;c#^iLs(zO>!8hy
zUfgk>eOYJMrN+pFsJ*eX)?_)AWAx|(p<o2^=LgGnT5P9DivPS_kA{22N=Hbc$Eby;
zMPe{m{+oqMLwz5j+j;|cVok@q5&?tf$rwkx4u1x8BIaNY4RLizj_~mGangjm=ZC@S
zOCiz$C^pgu{X~NBkSnO8IGRW40AXRQKt|9|_*$i0*B|Z!uxlI0jT#=k*5&Z?5$3;9
z7I<%H?)w1G!`diAIQa=_8%8IsunLHHOJvw5AZlo{pbsO4V6nOpaz`wXn*Iu$_o+b>
z=rlpQwIq7FFV0ByyE%~SK=b;|dn>by<h!#a2{6tz2lJ`rNB+vkv#o(4&gAOVZ-JZQ
zPKHd7r5W$gN9<CLfpmcRaykpn-{XSx7LM2NvFe=u4ibgNAcUj&%GAaogw<zCkV*ug
zsjM|Rf1LWlFDvO;j;3*N!?Ut9h}$2`<341TNT+d^B*qVi)}?~nz?{z5MzdX=HE>Z&
z2sH(+?TkEkf+G5f_LI*KoU5u#9m<&&w`ck`ms2x&bPFC1I$7nz^VOY~dkB^c;3O6O
z;nl-a)w|;X1Nl&X2z`Oo-ozECh5E$Rrdg)>D~*lT%NSzjp+-@OAx>w015Tzo(H+0Z
z0=)*36BT{iSQ^>4X6kFuS=su%QPLipOea8I7R6)<o!kN^pL$~A*{&+74^&osJAXov
z)-8knqBA`}6H@IfGS>n|u`ri~vq%^B&Dv&LF81fCu)==xnXH0ZCL#Q<IbLH#W@i5~
z%KqQg>u)n7Lx0{>8|@3(=e)Eys{TnTHPh+UE@&?7RK(~4FT@g~5<w9Ja!u>sF_eM_
zI%MQ|zEo+<d|7}wLM{@@jug4kB=$S@7ai0P|MDd=5ITt?qw({!O&#JeV2Lam_DD6}
z=hlG-_`wG}$Sx1)gW&Kw;fe;n<GIQiavD2$Yvel-N}~_xXmCyl(SR{SnYWa|;^o|<
zX}+5O1{zQ)kT5X|@DBNTe|#VS9|ldwt9=9D(FSP3H-;Y<!BE1WzVQoivK$t$+m*3l
z=`KN!m=bsP!Sx_uH%I`tsO&~Vp}mG?vOVSucL|?5ODZX=6ei5tkELwMq%$1NKj$jr
zFoZ&mFvAfe+#GxX_22JFJ8~BIb9wNsupS<-ohd&$J-wDVs1D|~1c$Z8k|7(vwC{|2
z30c5oliarlm3km$<#e%&$hW&69!|M^iy&)Ym<FytQ*`4%=k_=G_yl!xh>S1a_*Xs{
zKgSl;2OoYC`)5?Kxkf3Is>4rHiFOffn3tQI5nM>Ex;0td+t1D0bzfRnO^~KNyyWv2
z)E@*)#kR{kZPwdR*_!rQ`lO`o&1kxv@}P~wpRY{>!w4evjMH)#?XGF#x9px0P$8#_
zXqi<ns)ksyVpTUZ#eOW|izq%7wA2+^p2dDdniBWdvB;GOEqNATh=fx$F`rxgBP`pj
z;^=N=wqwIq?pdgjG>=n?VA(3}pg*@qVPkj1*~p;u)|>f2EX87`aD-6S&9~4bRi!6P
zbUaolvdTPvGd~HA$oU>h^xL)Dsn*wGa*eH{1KLZMh3BQzR6Aaz>1X3)lUmyTcn7iq
zU#$Dw1R<WsqXY@HN5zz^K7aS2^WeemRs)F#xS1J^1CJT;M@1a_iC+cG!E#y0P)A!o
z1GJdJ<dDO9TN#tJX8C;sbBeQ<+S-xEimD+Cxg+6@Cyv8lxsysPcFhRNLP8TAPRK$U
zFUA6>JRaoXPHLWmWxVaHj#)%&=PIm94pqx}cYF({qCp2r(fL5jy)wV4i0D1lcd?Z2
zPf+IzjSl&#dc*nDOWjj=af@715QTpIsmv1JCRSQSzn#~N^Iak?)g*l@JcqMTBRgMC
zASMfIY%R5!vgFgB(OQvv$=kB0Rh0YDkJ95gGtlHrHFe$f)c<2a;_1P*`fzdY;oOVc
z_0oh0G;c)5$3vf9U(2mLZp7$4xLo2eJukPRH)^%QjTgimd1RPO^$VBVoh-{1C=5Ke
zeE$j70=4=avP5%nN-*sFaLFLS0_M2+4Tk4RwC=wPzfM=eV#BT=TGpk<wO!J)v#Zxb
zrpaC>zWoN2g$nBp&D?w_D1}JC=<>%spAC5KYf?A&>aB0$B61D3DB)`AZ*%n>epx0_
zVN+p$U`j^kLZQnsbP+ow(E1VD8`~|D%Zc&R{O@|hY7@TIbzoz^S<3U1-o1s2!D}1*
ze|Ki^ekakUCS>a~`Fr85E6Qh8uIDb#udSN}KV?zq_>0bG^)?_g1O>36BN0lPZ?~B+
zIGqA<W*d(iBme?pq!b$)OS;j`rD+ms<lyV<_DgpJh5qquptQo}67!OG?+woKtkpoL
z04a1I!Z6UjJtIbVp4G44SLa7GH3w}Y=_M;^UL%mcq!o;VUHKj`x7nn?vOuX=?KB=%
z3{?HO924nDB>Y0<>mz7`@GXOzVlRH_EE6ya^c|iJw)b-L!nFY1%*a_Unt=8+)3B83
z`D9e^TSY{s$8p93;J!8^T-W`-_-66~dblo5US)nNc?JE^^{PoUz_^F=v{DE9a&&lU
z2kxyTG@(pdqD#ka#q9l|nX5H#Ifo4^Vp=hW&dFNm=T}6FsO1J5wmuxjQKXVFb>%H{
zNdyg&Vr-g(2h1D>e^Y|`F}&~M7SkaeUfH;fsQ%dZ3_}{&YCL;0?K4{%cle~Ah^@la
zW4x_^<rta6B85P!&tsAGtL%+zv9Z#RCZl+>#|LAvx!U%;aaTRgMt*yQ<vsD93?wwV
z=_BW;$s_lmCDt0|t7vGFkBgjoMc*jBe?>^8e33aoFZeXwIS(HVpfZ{Dnun86z?9jv
zn@2&p1}=xzA&`7VzwzQ;*+srzluPh`hn{)2RNNIbqat0o74!9Dn%H^{RK-T4TRE;@
zRs>f7TlMwXl{Mwa7w$vZHswiroVSfx5>K$Gg|)NT!#E49xB`QQ(9cEoH?H$3UgZlR
zjuJ=0L&Zb(+(kN!?FPhw_v$d{v{;W#c1`n7?9eblqdvURo(%ggVvDUkyTVe$I57@!
z@KY-|G`sHpU+POTm7xM&wJU6H&lvnH_4I0i@%uU^sxu~8rH$C5^C3}e3H2z1lEffb
zK11R%qfg&=tGV%QKMaYHT}+v#<t3vcV?jC7-n5eHWpj6l%Fta%mgYbx2@?0h%#6sg
zhimlSw?OZXjso!jI7tu=pemLtC3!h})3QabEqJrt7j+^dwRF3ZJ6b1|vOiwD0JZ<S
z!2+;@&$(S5w>$zY%d-;A+9>JwRZnAOIymhHl31S)DZa`ZnI9N)6J~rLj6aRP3q8<F
zh2YbhDH+;I4_LOQ5H=gdSI_xUuT<nCkqkgXwYw|xQcVQ4JoKk;R{>v&Rntu#HSAS*
zz0w-qnyO{dhYYj(%|T94s8B>kDP5e5zny>+vlET3%AcFx9nW-EZ<1_-M(egPXZW_q
z?kZCwl2V5Fp9BcrIfSp{RJ-X?6pXY+?lx2O9b!9Mo3SNch=sm|t98~0^ipyJ9_J~d
zt4&v6Tb@U!CT$E2X5=!uJ>^ooxE?o%TY1~_TV4657^wJuR=_?|Euao`7|GLQz1nGe
z)@c+wH!$%TdSy-rw@C5!{cfrH4F82OaCi8>qvy~H#pR+rnBHonXK#Q(WqRW$jo=O(
z{VHW|9AV(KJ|J#I5S8GGcO-NvR5Wze7hGq(heunh3;1B`ZMzJjr_%Y&78bYg1+jrV
zvDbuwR;$G*umaEd=a(9NQepX;sBxVvzo4Nc2x4c12aCX9lir(iN-4^Hc0E14%bho*
zYirdpjOmpU`Gw9!8fq8zb+)escWu-KLMh05w-5J}HKX+|IBd76n{|?DG#Yvplr)Ur
zC1Wue;e!B^YPb+M2cxhNxO=d;HIfUY_}7g3H%ePUb?le~A{T!ulrLwy|23={Mz@YY
zhpCfw%JFUnD)Q3NubOrnD8AwWyrr7W7uT;Z;OIG@j@7|l9I2_!k&G%OA=$I}`)8v<
zv=ryV@GRU}O1|n0l01jk8mLRpnrsF9cxpKBUKdQq0wk1$FNL*CavWKAitPhbi64TH
zCf$RA%H`cxwwPG68jgx9$J0{X`;vF%dfEG*PsdM}Oo_>;R#4cb>xtvO{lv9ObMO>Q
zL%<?E`8uOu;v=8G!cPZZl)IHOG3iDCA-}S&AkNbueKqK;hN*t_>qeo3l-?ItA)`Ic
z9_Pu3L75Gg>XdN2BrQkOz@}+f?OAlbMzFfP9#OGmVbILdd?OzIhlTl1H2Rq;0gkH5
zOiOJPm{21^E3pe3r_(nUabjv{NgDp2%`CAb9#aC?lqdQ+U5f(PwUX&^IE;0z4HwEs
zF0a*kY;|X7(E=aB-Ck3|bUFExuwoM~GRg9O)t4KDeuba>F(f*1_u=ul;dCNf2ro$)
zb>{qO$h67|Av74_V@Js8u%k!hOo@f5=E>Wdq8O+&sVL3b&<ODufp4=CcmsxE^Vlo&
z)5Vr<*}sE&J7G?DTX1^WNx+m+kd2iTkNcNk08VtJt^(J#hUGK4T!8wnU1;?$htBQ!
zJw$zs{C%jPETX%I{wdS^6K;}o!s#rrT42a;GJ_by?{fd7CJcT!NG@`Qeq}oSeo6=f
zLq+u=fEz^ikn{1q0wD|0O%G=pXMZ|R5_3PP*YVZ2FJNztbt5p6lIHZb`~EQC__n&K
zJPrdFE?QnLGTE$Cfutq8SATcoMD=Rp62vD*9ewvRI(@vxQ}mRcbJ9yytLZ9m?chBk
z{&5Ck*F=}ph>Zy{m-=$yf3oL{iFiqS`9b;bb-pHp!~88Y-;>jA@+z}6tkv&rfP`D3
z;g{N@%c!7v!`<>bt$3+ddJ%b*^nYJHlJ6n;3mTqlPi;Lf)d~J(Nol(k#wV%YB-D+0
z!;$@cY>AMtILswA{<R*XLS&|7_nEj>Ti{q6tyX&1k1&dv-z<^@82w=2;WAfk8uxPM
z%PE835>5m&x?6xmgmlWTST59PaJ5yyOuf*Qt&dkp6Y&U8{7&{c6l`oNKdL-N7bc{6
zio2V69p^Gd96v4l$YEh`;co^729Cayhi<^009JZxFl3*C_z4INQ6&L#7$uQGWPY*W
zt$2KNzxa1BY2Fc`cq5irs0PU581~&QK+hAd5xhb$<J<jN4AiUn6l5H=PGQTr3KcFl
z)BGOan`-iOTY^w#q!J-h9|=NijP%1|HI|jRzWF!Kf7pS&lbyw4F$<gBoIm7v$u;k7
z@Cw@pSU$WCbAg!m-U|R-wr90cXS^ANRTXJ;xIJcP9T8RB;ZHuHd~iCNuX!8Q&1Trp
z;|Ac+Uo5Ppx{{(dZk`~NE2XCz==FM+ZJ$Lwg^w2*?Kfnfh|tC@V;1Z6)(wkSA!SVJ
zY<Af;C*RL-jrT=eb&Pd&32MAKCGQYj=qTwFpW*)4AQwOl#2<2Ni0=rvI2%x2Wo2|E
z<i<20ha>LYL49Lak6yqPWN1lJslSu3aTHc+?Ea9e5xuTaCR}6_<MWB*5w%mp+VaXu
z%#D6ctK3)l+L<92IW3>6!j0h*E&7J&X4_@@bNdEODw(*@(Vj++#3D%lD<6`|H4Fm?
z{?6#m4TXj{IkK>UJI9kKIkGcLn*Hl$2|}7C&7hA&4J-I>(LBvVot(C4*|Qv`;-&g;
z%WB`PG$|vo&_>Vq(~l##lUm#<A$@+(Pt_YTduG?#oHN@M%%88Tte)4$9Snht6ACt#
zM4-D%LG{MmVoNaA#VNe~M0;?%mE2!O#WK%v9K@KThxh8KrnM8%=ITOgCsZ;yRO$K7
zUt8dv0!?6MYZaOrd&;kO_@rIm<t6Homak9UQnVfy;?72TN)MU}c}ynF@vXiJ_RB)_
zI-X$S_nqDk<tT+EQJddsl?wfQJa!fTfq2ft!OGTcxA!SxXkOg+YAJg|fn}h7j<GtA
zp0nG*(;Hy~981#X(h3LD@R|sNT5otXpd1I^8az-;5oJQbg@2gW$m<krWQW&()gD8l
z)J$=G)b;k;L58ydWAIAVefGAsH6y|f23!yVK2WZy#3voq9pAn%Q}FTE%%OVtn^i!%
zV%&HQ-<02SzmSYd;FV0Tm+YWxw(wavh#-V+AkBkatBe3NPi}<u>_1qxev-Rgv2Uq*
zj%V1y0;zQRF6cZwTJ~CWe6UDsRl7H`gN!4Kx<AocA052mn9T>_X@V*ZxbmUWh=kQk
z)Su(#>m@Od%E0lj+j$D&to8MYL?7Bd=4I-kp4`Tu0W;;)ALX_>kH%JK%@kD<DjJr*
z?|J_}&?eE<U>NcN+E1z%N;$C3``#KQ3=*fqa@iis>nR6vpCN>cbk{nBe8Sr%a$ECp
zQ#S+7eL3`MEzrb4&e|dBJxEONMbnza#hh1&UT+6T_~yLn+dV{pU>2mrtbR8l<|KDn
z^B3z*@41ITPL+Xg$$+FBH%xPvTFo$!yua>AfDkSWf4^P~WC3HD`HiqJxzHF|73nC0
zp+pL$hDJLK?EUwzHb8hswHG2v6e$-ikT@!A?S0A50H_e}UaZyHKDePyRBgF3+?(hM
z%?fhZjd0PJUzcyyS%>XS;Qw+xAKG)!@Tyf@xVxG4chRgiseT!CG#mjK%T#H2qsJVc
zCIk-O2aDY<kh|)KfVmIU3yuk(4I<NHWF(|X-vM@2YIc_k@=JsZ$x65cfL8ZIq0Qp{
zwV?3P>g$7jNpzBBi`carAS3#L(6M9J3_N5`a$unlY02D77dVAL6LWjX6_)2Qy)vWE
z1#X=E76Pw@D&xv}AE3_n|3<qW>xt8xmktse5|1$kBJ-Y?@uzDho^QR{^%t@WugxCR
zN79}Hmh#nVx3wInzm5SuV*)~W!w{Ze4+l9}O|1qr(gPGpj7&51D9H8wTDqkAezw0v
z=x{c`V*DMJO0{?{=^o@79qjl03f~?u+hafmg~Fss?hI?#p&LW9MXYaZT#o$EQ^N(y
zFPMEk-~_c&{khKvQHXaZ?*kLuCsz~zz%sR>1ZXq~L#wL-4Vdc(lV`_yZ+|d0Bl-i}
z7!<mQbo`?MkbJ)sngS~xpNA*me5}Zd#vTagC~hHyC*$l3R<5NOgU_cEr00L2(Z@YL
zyHVOVz{!?;=SG??X-)A$yhM0Y<0<M74fj4G-V`tHFc^7UyX`S=JYyh*r>Wqa<WeNN
zV9h|us>bfi9*lMW5rbCXrm|M@MkM;g$PB6W7x62K;g8~v$pg49?H^a&pSq45K&SlE
z!sO}r-MFa&mZfpNI%YBWES^`rl4pNv2Y&O=DZdF#B_|8Ri%RVj$rR@x9L8i(-&uN$
zuqOQdkv8MQBC}yDyP`$XRR}kfJ0GOV*Tnm2Tkx+|g{;)8SVE=jh%J@rpe4EC4>NWJ
zv7-41m;vF~YHsS!+M^vCHkwFivc*p{nZSzL<vW?Bm8JBBw)9a1x_zI@o1O@wo-e0_
zIj_dHv^<LyhPRe3iU^5J`=1_b?k7h_wJ&k1BWOhCI8Fwqoj2hB-0h^<vj;Qzg@YWn
zaF9!9D4%qn5p0~A#h?IwqacK_`J6INZ1j+CD1w;!$5+$gf0zqp+jc{d2mXt49Hxc9
zYkJm6_=HY78n+|QoMq#jio5ggSU3{#UriizCQ)3_Xw9}U(PL^4F%EQUNm6;DIhy*L
zZAJ)xgNg#J_a|9`37b!Vl-#(n;*msD+WdL0q=*`BwGEnuKkyBKxYJflTs6nyc=j{J
zD>Yl3vwEvI=A8sEtW*m6Aank3j$A#e(-)b2$EObTen}lPL4C!ZKF8%-9%rECU#PGC
z6=(~9COkH`n=&xD(O8`}$^r)Asa_MM9&UG+gV9N7#}CWT59eVn__bm|@BjwU{~os7
z`s_um0oopBP;0KUZ2I4i??@-#BqyH4v8x*-eKwB{{PTtj@7#~j0GNEzQ!emzkEV;0
z4Cow>)#pH}a@*V~Xe42|4=@@Ng)R>Mx^C6$H?WFj*;F!pQR<-Umxt6*28UyI?DIMF
z89jI3!`f=S3+71PNHKZ%rGf<_g2F?2wMivgJn(6eK-k-<Tq3Rm=LhyZ^)Wjl1190X
za0<u4EiYZ8(U>mDUz)$B$3)$a(STURiawkacVcr6=y~II%915m+QXcsJ7Cw(5@NBk
z?W(^+^GQ4eB3H@eVEuMgae5Vp-7Y?naPX-4A2toUF`<3TYOV)nX>whIt$qbCSXVlz
z1T3Hf$@iih+~g-Jz~N8KfGq9>zdEBoKq5+L_PjrGd?9ghkeb1Qbar<jci{}3_TF$D
zG-y%uh>@tvz@(LCvd$jnK{5c>483c6-Ak;FjR<FcX%C-o$rw$9!D|)_)*1rA&mN(O
zJ~h@G=oqYj7^dbW(!8yzLXGDb7B0Q$#u4TT>rHl?a9>FO;pD&k`d>WWPa671A4-}5
z2wDH)I(XLf4@B&6&KV~NPv;leF)*C7w?OH;RVx3{Hr7^ZV=sr`G>B9)>tb^jy47D^
z7Uy((WAe5K%t@yA8HR|8sv`(#F$*ecTH)>H_Nb@f+V#DJIE|8h8-^%3Ee>3tq=T@N
zR?J-IpdhM-7`sgf631$YugJo>6Qx3|WEWXZxY$}uLoj=`jg*k|Sg&Lv^$b#N4x8Pu
zXNuxHaW3jNWG+=yOMEA01f?8mZtiX+tS%o8mg3zNT@nYeU4s_6A2}{L`qWC&{?wH4
zlka1|e^BJ%f%4>bop~~}(?8Z@Df-G1qT=$!uZ)H~rC$_;@j_LzMX|HuW9}tcJ~3Bp
zKZWrqHlonId8;&j^alrBC!<-TjF}xsIji=VNBz33&bBSTM$l<#jsqhUR(wt4!4uPo
zk*TVpLAqh2LTaJ<n-%ZdqlKQjk94T|Uu+2}H+D7*aSgUUo?IIXJ3KjiEZ@>{B;qvo
zCA03CPv4}XQYJwS{#!`xAK#3|f|%Q{kBJMjQI{_X5@lmm9I>=n?aE6HaDKA;<rnK$
zHi+<x4||uAAegR0GOhSx(H1$z^!I`)9TXV{^!suQm}4(1F<*qfiHjkY6>>yH+N0nA
z?vuI=xMsFgu!6MC))%yUp8`j3BoJxEJ&iy<q|XrjOZ<h$9mR_A>yFQ?Q{W__P}!}%
zrs*`_Hp+>Uo}K1)CU!pC>vl0F0<bkv_rO2RRu7e=erUqvN9)9a+htPFE#dg+UEA^a
z!oEgbiJDGpLJ6GC6)xI_wi4K^R$fS+AId(D-AZ#O=zJgQu6|QXodsqp2hAIJR=2+B
z<~LSJ93MKIu?U(&YOJ9BHnMZ~zD(bCW68xVY{QQK;(PsgOYnvDvuTGtw09x%8oSpY
zG`P4M0>^5&suv#TUEFp4rTnKZU;K|V6iAR|vqdm764sDSyLw>42_ZvPLN@q8D);+B
zzWw{E&Xd20)>Ls>j;%j+_-jK$v=9h<-yJgY<#PH0DDvvOu5$z`e$MypNG18;aHbW+
z8xlS~M`=eW`28435HjBI%NM<7wi>mXLmuzhIePC`$t%FLo?TcG1FZw-g3uu+kQDj#
z9b`pCg?zlE>l*fVK2}$^w0eMf+ABME3RQp1X`?~$E{cXEgHz<otle_7)God=SP0fT
zHCRsU`@(I8`(`?i%J{T#aHC@QCSWsYtSCKFW9T(a@GQPmRZf)1)jNKD5%{_h>SgA8
z`#w>2BiuOoHv~locJ;zRJnbcOqdWF9D)}%r-!9eJfcLy_fI^vCX|g`LD;^r_!;-4<
z<wG3HPxi2JGd%Rf=VtZ-$vB7rAKo#wX6<!y@x@l>YU*S*4VPtxeooJ)=Vtr>M@#0g
zCH=^a4Rys7*$&Y_QeXZv0mw#^_}Ifk{G$R5>w%6AvyBas?8!;HT#NT){5|iW@lKnO
z`$YVSj3#m-^pG1jMn~}*H!7X2cEcGbs;b`Gf(_1X((U%px#x*OK9VxXKI=R$WvN7t
zq3DmFK96KP*El^;$TuxMW3}WOnb*?6sWOkHb^9W9N>Rji@E`31!$_|zIZMwKWrZ#e
zg|SNXU4Nvx3<q%zPW7v|LBm;5_>{dr_Lzp$S&gTMum1?Eybxo6n*j;^h9Dyt_<`2E
z0-@I{7AzX4vc2fZ$ez>5{lta&d;1zsa0$TSy3FO*<h&iaVDk~5dO_3U6^BE|rww(#
zTX#^EwFy#ytdPR^W~;Q@Awaqd_vgeUS3f0>{rp^%5&9f~6qz6NYfQJmW;pL}{CR(^
z7ad7f=nXt>kx-m4+pvJBUftyq&^8*Bwd8ZLc$M{usbDh)X9eP+`Br-);7!u=WJ0;_
zctsCD4&5vpWCq*@&(qC@>aT$C;qKRBlLYM)2bp0{hCPT<--Tb0mI(X#kpxDiq3oaU
z1{|_A0&RnD0Ta{<e4AO^nY9<rft|;c>BY<_jw!o(4>yJYbpsEDMtj}&56K`dbpXP<
zP_M&~(fv+MT%J*#gHH9pT9QVkqD$<?sLI<nv$eI=Zhumy@f+sW&6k#kGpZMR)t-&<
zq>kld5#rAg4VUc%n0b1{b%j90VhSQ60fUjJxolqy$VzD*F3p$R<==(V=WVZN#v4ys
za(O&WHH<e6fqCx*%K3rbdAXw-h_<n=8*{(G7pJSPhr7xI29uu_-^0K#|FjpK2Ms*r
zaYI4|33>*X`^-6V2dP|*IEBvO?z2LL=A8{ZfpQZ2s}=T-55!Z8A*C~f5MtLY)V!u@
z8}*B2Ir)o}L88hrmU<c8fSIy5241UpgW({B$8TDwunfOH&ik-Uh0%qA7t`_|4W>bW
zm|<>iZ{l99SY{z!On9E6>enB(t3E1VGJrJpC_D!;2gDXHEOj)T)wPiH3=Evbw0Tn@
z-!^RToPHC}PaiQxq)C3y^7v@$ow<tHTe)bfjI~4FBWT)hT}M-7Kka6qT5vf!xRctF
zc6tg=H=wRBMLfrk(O5wBgTd4D{v;&Sz2W}J7#eSkn_#WZrfhlJsbJ~!>2X-sxbcm?
zQ+P~_r<THO*;K*S^D;Qzly-G*b1*lsJI*o8WK4t2>JbYY;~Zy^R(4AQt$2=RjElj!
zUhLB#KTE=A$+ObiPO*=44eedJ|4#h+2WF1-01|<eU5RU>|Edqg6D0&jCrditP(`!f
zkAIS=sgh6|G6v*U%LbvRfi45&@!c^!dGeyi?bEq_;4qL6Xea?}FdW&3h>wt-#>O>o
zml1U9#cj6-5zRn8g<fg%Rbt7z4<Dv<LJ;{KKmxjI{LVgh=KBr~Ggex5cGcQ|*I0sD
zP$Yg60MRZ&RS*Q>oZ+JgzQ7JMl5I6MKXcMLB1ho2vsYGUh1;c$$UlQ%@N|CyVQQNa
z;AOQtsw1^k@@}=_tqhqU9`xLYX{%k|b6q|d2szdxf-g28*Ct!BIFYi-u%gW!!9Fw}
z^pF`uFw57d81=PLoP$Ow6hBHh_|jrXYY}EDf%shu^A}(~8|~iAdd66tR+(%Y8F;7a
zGrA-|`Pk!MG@)fuX5E+TJ3ECV{;Olkz)fg320~mfTfn5v$8;M2^#;lYrtvlhx2xZW
zq99Kz2(&H6v&xb3w~bl&l+seFdHfJOHzPzYE(4tv@?}+E-*Bl!RpU82Lr1J0t0+V8
z1R_KLzJY*L9V6tHR&|q_Kbhm&vE3l+dgYn-@r$Btnz1>X%SE0;E7Shs(doHP*6*M=
zbd}?m%^<_8LT!3h)_C9=d~nuw@=N+0=^2A5JZ*7eNHHSHsjZ|m{Wdomf0UM7zJ4zy
zvaU5*OZ4;`w|8|$*4h@)QDXOdmoHM-vy_UpVvTPMt^N`j{FKI3;`gvDTW`UbKULB?
zX*Q-7uyJ*D85eKbEe`Z`DX9oUx-5q^&M10#oXeQ+_ER6i88%=`6NpY>wj_2Ta|ND%
z_3!6=5;161<RrW6H89V*J_?)F!KFJ>nQJu2$6l)KELl9o&oZdfi{QS3ErT(ultO)Y
z<g7(6NpgxBPAsD3R~d+q{_;hJW^rmLPNazTYkG^~ry2fD^M$ik7ChGQU&p@>mzJ!L
z>%*^(ha8hM>a2Wi%4ykNm6N#vz?6iGLj%J7b+(26J=$MfY<T7w)EzyKWSq~}UfUne
zPo5RcsFjTl_S9$pHGblsjE289VT>eLF9V0wxb(UzacMVWNX7RsNhIXECL;01&v8Lq
zZ@N(Mi+KVLxe?4dMx<$cV-Y6W$4au07ZGQGDQwfiTGM*_wKtUd{?90c&yGM^`pq_#
zX=^3JU#C0?>5T^&Gy6_lxc8{4Dk|r%>R(p~d3@9X#l#Z{Mab)4%!DL=H*3<t`Pt8k
zQ?+y1b$$;KI>wzLT6{Mk;A2%@N5RD<5TplwMZ!LSRPW{>;CG&e`~XCm8$zBcvlf$Y
znsiR3bQ`7U`+}v>EkB<Q%=j&po+Z|p{FB$hXJ-_%k3&XE$?iGtY=LXE)F#vp1-GG$
zn*hCOby`V?>U=WU@##-NmpX^k_0)PzU&Z#&g1Ee>QHpe`jo+7$g`(P}%9ZdM_$O&f
zg|IUJIK}iPX<UbMoFgVRX#AkWpB&rk)vr`RQ4za(I7KTBH0Azi_B^)&8~XHD2;t{n
z_;G9Luvm+L)3-?Alz@Hsqj7azOV;o8mMl-tvfg}thGFYYN{S%2*nRq^g)Y~mvtRxd
zY?ZaR1kK!vrIXB?Ywzg`;8@;ATP)HS#!U}Vs|lVCSZZL7`yIrBq2RJoq7l4QZXF(J
zBg^4W<i-RU{#$Yy%?sN<?)On8@yJ4xbK0CnrZA#G3pL{b(zL|P9~vaokBUV)L{tmg
z&5X`*-*#M%xiN4eXtf{Ab#CwKX;7h4{}Z^hL;ebHt8UkK$5*^OkgS}p_Rr<_y})-Q
zM_Yv^BQ`Fe+{?aKt*(MTf>#X5>kllApXhJIzhXDlXVG5b9Dvxq3F@DsWio{+a%CUJ
zQGqW|Q>IY|q}X^f;%oc;aGVkX$q_@XdaHqlyU^SF*s(F(-pNIF?ce2@b25>9Zx=r7
zBO_1~T&nF?fSEOwq3#TUKV#TV(4=oi#?c*lpYJBlfW0FEt?(7PtoDp%zxWb8bN!m}
zCojR<R5nYAj_y{HW6LDEL7uGGuJ@P+PU87Ex!qeq{qK;-46^6_Zk9b>Nu^24knQZn
zuMCYiGJxC@?YHL{!|BBHCo0vVj;}3V<Hmp0j^p;Ynqk6(_k4ssS`B>gk<RTqJK>2%
z;h8V-Z3{QCnHadz<*Ta9>4lyDsn?oPTCV_$KStvrGN#2|esvNb&{?NPxqE%|a9cRI
zUAw~FHb~@qes^JPs${^$>O?1l_uXG13JwQTt?=;7irO(QnENXpj>dvUWu;<^y=iho
z-^kd8uMn@7>zF;?0cRA{gQHP`vkOp~6RwHnKK)Acy9wCM8CW-OMdo6IH_sq6)9vZ{
zh9@R*eRjcAL-Y?1$$t%Ac#$IXAm;k>XjsUkn`{*R80lwu8**w=x+T^!Wb`VGn2j`e
zA#w(nRqGFa?@ZZ%1SEVZtpl~~RKdgBw4IxZ`X*aHUO_=W`C`?h3+7}pFq;VjuE1w(
z6`VLe2o&EoV9uma(y)&~DiVa{7bGIcas^|DEzst}h$fRL^?MtC(CN$S>UycYS|Ehl
z(qrrmB;=mnN*jVP*ZQX<wRFn4=aVnB?jX!%rpOeW#$?$l@*Pl_U?s?Hwa4NjQ*>ZQ
z)WAkZ_GEpb+BIXWS<6a6!6C^G^E%~)x{xWluIA7r0My3x?MCBF?^;aj?gN-kip~=x
zHQI-uHfI|Y1|1D^MEP#Bw32^1Np^8jPf~`?XbgX2e%>Pk=LJqWOK`Slz1)>0d#f-=
zUs2YA%-s`EV!wz5*BcbJVoQ`SU8zrz4UN0r_71z>v-S0}=95jV6(nsHl$Y*fvFJGv
zRPXo3gtZV#Khy}(;4$`*Pv5^tp1s?jUuivrN}inr=Qp?wCm|E>wP~hUj<z(~)gL>g
zI9|Tx?!4!|(|CAo-nz42yHD&c!da4JBGTiS>S(W;5CeF8jZkc{=?!KxWsw(V0l<vW
zurz^@pfFAb=A8{5`_1hR597}5xP)W=${t!`PcM_HqLzOwE`jY%%ckNgwDm6ngv0sj
zdUX$HG~lTnElI0%_NpIBz70tADJ>1Nsc@UOD-uj6ID6R56xo{5(jt$^f5Nz~-Q1iL
zjAr@V(juy-j%6D%_cYUNJLsm9fJGx2)%I6YCdJt$=R&pGEZaXM&HcYzgRC5oZom|-
zD-?*@9NiP#Pf>|+dGbJcvUOzdARwBCLyUdtM&K3T4C09<2Q-?TPH!vBO3twffJf&I
z%GHA(F&SB5__noA*}@A6uP^aeMi{XA?+z{XLX(B1Ddn6AfGf+AxM_fSK7sD5Kf^K8
zv1=b!429JLqpV`T3|mtN=?!Cl(S2~1Z={1&Bcuou;xi?4jFDwxwdzxn(Fug1l8T>i
z(<1iV(-5(-#{{fu9Z0e(v(d#a(jZ>Lg+a_IgjDK%^BQkd!76$2=~A%KK+S-g;;3hE
z($vE4lE_B)8MTkqq1SA}`f!HQta|8lkXjytZvSpj-87=eb;m+XI&ebYs?0CGa_;Mb
z6Z%3=X(Yuvq0HB+ye7yfbM|(3tABpZ$(D{-9krm(=lND)UH+J(mK(AjvU5$>5DWhC
z%HT;=MHo(U%qLf^gq0xeG4iC}NNUyYO$M)7iEJ&F2=r&7-zSUICt<y4Ojuh&b32ql
z4{4enf-iHa2IKSCn%9<-YFGKxr!tnm(gzg^T=`u0*xag0`iJ|YG2r3LO|MS#4)h0=
zBoy#GZ1x^E^hfqdY`%?rZv5QMciHe^^Hhr^|La8Vq+!&_YVGMr8u3y55c7nQ>*p(A
zQIvp1BN!Fv-36>|Z?dq7NrM{S+HlHSeL%~BdL!GO;Ce-H&?3&2+6qid3u_Vk%t46{
z;&E;2&-yJI9*M#h@n?hm>K|`+FgN}b9r8TdwOs5^31c!rD;>ABpKT|>?<aXI!mDVY
z6|a>^*ktU@?VXK0d2U6zpbd~*(#ASYw~~=b&2`N|g=`ci>z4*$WF-|z&*F<n;Zo$)
zYb@<1g&u6EUmh6De@QxM(RhvfkCU!{`#KsAqJM-~gbR5<L8kmH8aXqMcRWxyF*7x8
zI~olHf(QgLvc*9csn^SPhj|KHQczIrjE~pFo_q1?>Sh!vm&=0bve@am^B-s1A6rpv
z<$67fQtt^eLEkndI4fr^d@f>TgfMV2WYI|-T0S)hCE40C7)Z>o6+Ih{G00bFim%cy
zFLFjEWV=5f?9OFO;&D|EExKLW4&SBwuD8I*CI!L(6$@`MOMdJQ^zhJWHRW{+=WXgO
z#Kw0rwQlLlG1cjBBOA<`W%4<=6qs>*GVz0!t!1H{S{@+N`ei`jkWwAEgK)-9#<<ds
za4!Fo#$D6GA=aTf`2Ij|<}sN@sL|eXg#_l{Szfok2x1|lg1B3dXMzVlMsBXAo||=&
z)Q!KsaPw$`JGo5HRSS(EWsH=i2X!9xmh<vHqpV859Xr9pmKIdB9gWojf%MNIz&k2V
zOXm!fSenoBDcbH$9+n~#VojzAUazf%(a!mK?C!);q%BNgy_INjkxns1PEz?DG~jt7
z=;1W>Vns%Cm7X><Ps`+oWF>u&`a}-e{X~xI^eV7f!?j(pq?y07T3#OufDUZNK{@GU
zQI>OIgZ;^qtsi9Evb5j7?GiT4?VP~t<Q=*2@&G(6w%HXPE0^_XtOrf&;nQww9w9Gi
zj>En_sH&;l4(U@KvHyKA%t1B~jB);@R<vjY<a6KQ_{UCL7dcD!FwN`mm>$I4jrI(P
zl$bdASNEGgt-H8)t@NOxK2Cf(*09FmFhYzXx$H3K(R-$bkG}Y_V7NCM+VfAS_`m+R
z<;zP08MN;l<Cyvmt2o&2Y!a7mUVD43IMvvR89)xJxwTt*ILT1|&4KV@AoLDa!Ep9#
z=e?u%E4}NG2Tk`|#|lCa5D?LSkxBwXJTdc>Cb>KTs$8&`rt4AlT@la_TF?#C9_3bb
zp?liInfJx+#+q&T>nXQY{PYbyzh5!_k+t~7xAuXUl~dS8-pH7hk8qPgFky@0Rw<vr
zyB~@Hzp7@F60Q5fZ&o(VP%QX%^iz-i;LzvO^<VVW`j@e8O2cPeGa@i(2epUf5olFW
z!IK;P%+`(Avki(i(L{P;*>8?$n4m&hTe)On-LHA_RazsMj+UjvYE8EwNa#Lk&7{~L
zF`IrbSovKuQUL&7@n5X+N<3Gy_dekh$FjiaT4jz!G&WYf^=D15!gPjjYt~~_<NTeP
zX0DWd^DrheKQYZQ$a+O3J3ST4Zb|K7=Om01zKp7pGqxF`ok63#O19p6Ca$pYE8=R9
z!qs3M-nezYok!f8W*3OQlAm8uRtinCI+ESD4lomaiHbl8_afk|JqAft>5b(gxN4$-
zmG=%%>YsDfp}j$#!DUB}H@|9(x;@wf+Zis@Ha<To*kqzK=K?Jp?U6Y3pF-XL<`O`O
z<^>sw^(oHE%JFuKo<HQz^GUqvL}fhSyIb{dlS4&!>YGLDHAu<+L7&SOz*mEDdJ$?B
z*@?<##)<z5XpMHqx=>8qh?ZYLpv=KpOs|dHuVlLG6PNsGrk^0LJIKNf8?#U<7Bkvk
z&u~?<!C<GZtU}YiQI0RaSZVNMnUgyo5|gy+7|9HU0ApQf(0;XTcsrV4l8QV#D>)hp
zcDk_mmm*5*@n||Ro1Kw!0_|pV2;M%zc)LgYc)f#&3TkV|5jLj(=gD;;ruc?!$=V}q
zDz|9GatW%10o1eydH;1G5nfKxf7lX`(?i(r3yR9iyU$fRreTNj$m>2<5dHJOhm{tF
zJnr`)Cknr+f7tg8!b7wWo+;CM{#P5$&I(pz|L4ZBdO|dE*H}8Y9NTI8*=XO$3u?dK
zBrqEKyWJl_h)Ho1w6t(D=yq-O8<$0Bu3a77$8eO`LhspX-=Y}6^e~1=Jmb+^8?`is
zp2W7S!2iiBu13tTVnOF+A)!Kk!3F<^oDfgt1+hQbDwPHe8!v%~poS&d^<FC1yFeZ$
z0?-R4xeFj^<5U)YEi^Z)H}ZE-%6!Ft|8<Z&Gdfx@o-W{8JD^<gE&toMkB=)mnB94S
z6c&q>j0_Cl`XWgzdcOVFoy`kH_=_;$rf@evwQBb$J7arGJX9(5CJ#asgF?HAH;p9s
zZygK&_%-ZcdH2V>1|8v)3}&;xT?CY0aiTNH*8C)SShP*U2>8E-ZeD-FQDCmW^a(wZ
z83MTzTQ{fQxSm0hR3I3o4udc{J|v`2#XNh3%|2lvkp;<CAPGuAbl+WO0<EOR;mGQ1
zv57)11M1%&oNe{IAeU6MKt6xnfg*+y3g}RujmHHEiHMGd)#{8QzNN8e511&HuGOrp
zu4*@)JN;L<%2#ig&HUc6dgsWE!Ut4^kAjvc?DNtvXj4RZmxChY+C^=6pK_)CIjcp8
zG(6MdeModtl-{?2Bks>vf!J)3)YT^bCTkf4nu9WyJ4f^OUvWJj1djTZEzsJ2{GVh7
zFDwYY{d6}#t_;r0<>GC=#Gruc@ximj#k1$;rQ}1laJJZJVsAvmZE;{;GT09J0ua_<
z>g)gcu4$leZr}C_aWyo4B)hx2NrVta%dH6f+f}lPO}u)v^=aSpw0}rp#KlceC?wWw
zt8KUNV=w~!xc4dc!)QJ6KVRxrBKQuSHVIDFRgL>LN-gGU$-v|*Hc}`Yf{?G#n260D
zP23Zj9otxM!~Z{@;pN5Gj}X<SGxSM21p%yN(m8t@^J{AcYz#ldzs8;LSt$MXmBlZ!
zcyu{EKaT^gY+{kRtx{~-s>qNz+}!)#NhCPjZp!sc$B|KcWS_DJ|K6$4Rxg1s(v05h
z`RrlqZESq&`F6TcNo&5wJae%+S~fepiq;|Ro4$TxaYjbQAm`tFIJ^)$aIdmuqMOu7
zv@cE-=YMnd`8&zLVAv|8E8&8DJx3ao(!UgR@34Azb$x8_{=XxM9SH9-)mxgNgoIo8
zW77ctgn@zn{tTzFESb*<)R!tCEoAmc8zjI~6#Cv=v_3yoQf<8YZ%Xn2k^$U9pk-8Q
z0OSA%`EfJ_uTA#KTCs9#md!=ReQh)H?xcSC!^r}WHjp}*hz#t~(P$tZy{b7UH`9Wm
znF9xXBpp6Ug5V$4s(*ikZiNI@3B=2}OZP=O850wXkObKgKzK8z`Kv=X6Pw>#eaoRs
zz5x>4Ru*XU9P|`2p=4wdMpFf{nJyoW28~i);kGfG&5ELBr?L`=gkjex9=I*JTtaqC
zw*A6?#K-|1HOubzcCFLhd<EQ`oGS^)_NS)-(Hw>?g(%4qn9OE*PlMN6ey_i&&coy@
zY78}-cqpHB2{K=A^dW({_GGb|62Aa{^uQFw7IgwSC<NYJrVtXGjuC(L%D@@Sgp=80
zvKRk!D&R%TOPYe?d1O&M-QRB!FQQim*PsF69=7HA@9!nAKsLpg$wW_Nw1k|3J|=ZF
z%`H1tV_+OSIRMRj|MANrf&de3TMQ}0wV(HwM+Zzn;Jb_80`yWG2n%AZ*5T_zG6LyL
zlLav+73ihv=>YR09ZLLczenzGHD0V*JsIUSYW4JRyX^=1SNes}F0J0Ng**YE9LlE$
zTmowTvU25<@@J=~%=ZlJ`FILiPcr7glT9kNFL7JedDlIWVHB@2MM2&|bZ<q2iX-6R
zy#<K7f~G%a-<biB=HYRKCo*SSTk>e3x;n`cgwmKS^p_m^u?Ij1Q!)R2`Bz7rZE<fr
zoU0VMyFNK7NYwwY8*vBm6)lOjym#i*&vW9pYnd_eV*>+fE2X?$d7B~sztWwu#eT_Z
zhfADh<m!=<k~+;tAN9ZT{`E_H4<I!hYiS!*1>}ZZLH8FjVSmghn3;vxh`Q&PeN8jg
z47Rq8K80ZQ%ueC`Ka9O~Sd?wM_AN+?Qc8Ds2}*}_hse++4HD8rN`oLB($X<>#|+)w
z9n#V{ApKt6_j9jjt>;_c_P&4M#<(ePG1qmT$GIQ-@!JKQWh3e6<`alejR)Z4YQT)}
zJNJ2rg^G*P4WShK6}Ck-+doWTcljrn6TbKNQJ>~J2snhydR+fph(p=Su`40@n!@J?
z-7>p`I06C;yfV;f5zTuU)E=k%XFqTLYX_A5@f~S<Bpos;`J0;le=cNxXYZb5$yZVl
zfe+Ry%$6NLeAg!B2JS217&Q&ia1kVGSfT>6_z}O=+_e<XhI~v+!124daBe>a30XSb
zMW{x`Cz@lx4|aAKyl*aCtx-dyL$RN-W%01E;Fyetdkl00VK`F&GpRA5p#tmssgG#o
zfF13%{fdxPj^4{slZ~spuL&%0aM?q}<ytZM`N4QjGpm*n$)ZMT$Blyv=HTDgFk*-Z
zWa1^wHPAk{v;Kz#z(+=PahKPY@Hg{>@1^QvVqUhCr{{GcLBmO=Qdg+&`WZ+$;@VAg
z#G)$j-}S)1e=Yy)^8fmqA4q7FX~#giSgz+Duow|V{{A(Nq+MlN$!<Sa5kn--$HJnp
zJ(R4DNK+jiOZns-%3D5S*I#4p2e|8#fBa2C()rrw+pdU`XfJTet|hID?FewRH3eLT
zj-OI>0kQB2Pu_R?fuhbpWjbv7&CWBnr!q!HKY&IQgl&LT!hCw~jrnh@=4XQl+x6CP
z>#!(M)|eQai57i9K^#+H=lfs-r&SXbuSv7)7l$^Q4TAW+HXr8&vA!^t9e$%|LJLJ^
z!LKknX0y(gR<h4e`7Sy6z?5&fpumw2yZGqg%eCCKNyh>E{t;I<0>;Ap75SYc_B*79
ztLA+&b2ke=eX*~rax;xii%Ykug4KgZygLW+p`jkJ1(#O;+P{8E8ew#YD{Fn1`Lnmn
z2qC}=Gt2>_&`lOABamAtS~wTqboTpy=CJ**NAzehyqA_gIuJ<)=k(XLx!B9X`hj!Z
zm5vp?HGv<9O}FWVJFxmBy5k@(zONs!i>eqs6m+gwI9RG&hCo#^S3vx@$;ru06!nTB
z>GQsKRDvJATje>&152pc5fp4tOU!F`kYMrp?CdQ5s+R%);JxDiA?|N}JRIxq|1|&m
zKS}TZwM{U_iK$iKGNYi%$vS+$S(FU=2J+1e#pPHxF3w&T_b_6Oqh$HtFXX>tDaGh;
z3oS6HpiaG*ke%Qc3LT0TrU!Lr$%Xm=i?4GTWeK3ba2$sLlxI7aj~^JVnupT`HI;=<
zC3)?`@=3|b0J5o#tG69am4`hjQTMv6hR07++SBqE5Rt^xZW<OnvtqRPmd=N@TQCR4
zKKZZr<nM|M`17YErL3pk^VonOWC2rWY-k&5ktPmO#Jg9V0`E-zJNotuFM`*u(tjw<
zg$9V--DQM=muwU6@5VmX$!?et$Y~t+ft_*rs?d>;Q3vJZBk*&5e!Od7C40S(9V_B}
z^ULdi`a?zKNP1kZM98JbRe9?+W0dDB9^$ueylq5V30W?Mk;5~bPFOh@8KX5InhIBT
z%R-Q6LIR1s80#Vwt6M(>$(spOn;mA(jfluIsD%d`|9i^AUsq;^gNFH@DtFpVv;7@a
zaq*2E#<~>U$0=VLh_j_OSw-6a!$VE!fcW{d5*@2z(12qF5FQqyr<r&fn^bL|IV!+f
zNQOkoT%U@=pK^ESbzCt7xAg~k>XtCXXk4=PI?HnUkY3b9V_$i>o96zHauj&q#WZll
z`Yi7m)IvSb>e0ld)m8|xn9)rt0*hN!fEt+j>>%m?{?onkGgqSG!x*A;VBw3V&@!nj
z#z*9{kp2;hFqF=#a*)+A$X!@iXep<t=v=bU@R`PHyejWtF7jlgg-t+UpmJ<d&|ca+
z-$dB_Kf|@e%&^fgpK18gATzCoV{<UuM+}I^7u<AoP}7;R=6|VtO<9fg&qm-!6Y@lS
z4`>J&o}FKJzSGEne}B822R}JA2$_T3sLVH>kd%9whmyL%^(TI4E68aJ7~<c#H5tl!
zkhvw+><eqvhd^BC3b6DT!1LNZ@XmpUm!YMGD$0k8+Pq6mf(kymwf%dWY3<8&)I1-a
zJ;N~TS=s{mNWFx2c5d!*J$2zVWY=TccS9i$W*6d-q$k~Y=5}@d)l{xb%n&bKQ~OZH
z#h&BoLjA<_!|fHbcC&C!2|WlbwM|5f%SzKkFDpJNjY~q5b*nf!lCWD%pnLC0FYwl$
z)#8O?P}r@-r0ccSJjy8ZlBhUZO}GtX@6}$R#qA1(g6X55zX1O^jaf#*=d-<_pkmM8
zl=p#Wn&C6QT{s{S8@G$S-Fw2>R*K%*u~ia21{nwT=Q@U>MP@IF=2~hqdPP&~`irOZ
z1@sqgeM>WW82&tiaepE{0l`~0iN>^s%d54*I$<!*02o?h9VZc5XEQvy5u}V-eMhKQ
zYo40gY<RHVUT3@Dj!w8QBPFL7M{liM*4jBaIZ4M`-!-`%O(oMfJgW|@UB158dp2;g
zurt&3L0~DNtMvAq|E_l?vQ%rMd3w>-z%mRc--1wV|0n!QObYE4J|1&-wiZ?HS`5xw
zZs*joV)jFB7HZGeF|$SDcRxOF^f(?h?(9{10ZbhL(UVBb#g6I!*M0lr2%8WvN&s2m
z@+pNJ3Bv@??(Xi`loaMsk=v3#CD@T-UGPw@&$(pS;n=DTkJLbdyAnR9G|wmYc4PRa
zkzL}egT;+E55+@-4mVP`AddGbb%$DZ2qv;x4NE5v$G9(NJ8Ue+zpXPGU1Yz%CMqTF
z?rW5BnI*GdjXR__f;wn%aQVM){_<J2;H~49Wzv)JOdR2>Wm4^uE(b1oNnSnlJtIhc
zo~CRY8rNpgy&mGw#ew%5oi@G_C*9r5U$~rQb1B<NzZk~Ab#_Z)84V{$VIR^C5;Ywv
zJ|LK&(ixGaOo4dYE18UHCIzb|^fyumn7rdIa$9dKl+uBuE2i_3h-nf$9Cn&!x?g3K
zVplQ|`b51~^-*!R&J$N{!D=yY<lE2?s3f-<C<+eQaK8Q)Y^~bE+Fw#0`L!yg86Nh$
z9x1}zm-F~>@%8fR<KSN07O-U3CbhMA^ZOGFv47BOc1{1Z0@dER0%HE`PgSaL(~`Yd
z;=*(!p6rx)y3I<+5jsOarMXT?>{YIZI(fXTu?-D;08TiRPD?6%8lpJ};P0dV#MH^g
z<MI&$XiLDE6~7TFIAR@eTzGS}&jN(U@=TM~!={?7izDkjuk5Ufh5X(EDKHR&O9PR%
zU&uj3|FMfCNK?uRHw3NDVock^sM@pkt~lVVi8ol+xQbX22`DLK8Wet9CenjICho-(
zAE2|mM}ijhcdoVS4w@LB^P+8i*fO_&GVK5`vBxGS2l#@B850_Y<qc?ceZakYmBW4L
z15|!DPjov=XQ#_$W!-a4ZM7I7E3J^=D9~m+2}NC3ICe;W!Kdh_1B*`|jOOYY9Ll}k
z_^j7@eNl>MfJm#s?=qw$=w^P986fgzz8=Em*xn{!%u;JQE7YcKj-QMBTX<9TMsn~y
znyzcaM>agUW0>Z}CQn9^{TWL8L@h<Q<^+%kctSYgUy{L=xJ2}ip@APz>0v(i0&tib
zw5z8_r+RmyvHIuMt{e{DvxJ@dH}XTzFfcIU?3U%bqWX06y1s$IU;rjSPiOZjiq-bF
zo%Qk!yowj%jPOwb&yJXbL1Cp~oGJDHlZv2PgmiK%0A<H#vX5wQr&<UL!RKVgp%LZ;
zF<ZNW$dDomk>vGXTIUG#w440BqE87U@-92a(HV5z4gtvo&cEsJ#>TY0*Ouz-4exVh
zms7#;QAT^W;@pvkF=E*}E&^Ex%ZA#~KwdwM>eje9^HS4|>{cj-_h!v8uVT_G7T!ZF
zip<=Z>a%fW$SD#CauQelp}|~5uueDo!KA#RPz&sM@qkdw+#z_ZnE}}@aRQ5l@b)%Y
z`;BmCSxJ1O<!4j3^SD}U`WkXxERIMLA0q7Z?Ql8MFi56&r7S8Q4B{{&Pyc)U$j7#{
zdl~bt&s-d(-g51TNR*qqI{$g{23m9*Fv&>o&}MX%8(MaN2%3ZgKs4hZe~~>#x6uex
zOwwrhzTUcYAfAe><qo|onUH1l<%s1?m3?)5#W;I*O%m0&Gc$!G4|Au?|J-4j6P}1m
zZ`l9LRt=2A1aZI_u!UaZvvB3$z6FNuiyG#&U9iP|A<qHEmEw&PA^N{m2r)7`Y$75i
z0KPL;%>tAvo=1%`K-P`v@Fl>NoG|3u2*Ce_WR2(tbj_t(LvZGQ#Ms3(vH=Qd>#m03
z)4=EHm&<zP2$Y)+unN^frGcU)$U8dIO<>&A#Bii6FvHrFz;Ec~nw%2aNo$<C%_S0l
z6S0EPa%2R}I<esUZEX_*V${FySqCk29_wEoeaNW8gDhaNEV;Oz8NRb~g|kvcdQ1`o
zI7v$Cn#`N#B8#4-p=xMug_im7jZ~z7bp__KUaVp4LM@B_!?i`$Wm)JFz0!K_XOr30
zz5E%`N7mPJwQPxb3Q0vF*0)+<`2K8C*X5yE&NIOyt3Nn1JQmIVFAw*$LQD7UW6$y4
z-;}pPDf}<eu*3}}|8+8=R7I2`KhF8pdk&)?YnlJs!~__J#L{4tbb72J0Q3tIJuZdD
zRQfQ3_Dn5<FgySdJcSElX<Vqs083IBFlH(RtY)so9sh()poO*pEMB&?Kgqtw^aea+
z<W}q5eGP9X9Q*ij=V=YZbBG7p@8=yUS(IGMZzNm+uU9uSQYA;Y?W!iRD>3bOsepom
zR^Y*6i@|G+)S=oHYF0z<-$@j-N}f?M-(7`ii=||knER5_rlzZG`lDi-Cl|TXEmqao
z1Y|eZJ86r}WWp?`-am7EZMGT-uks#I<d04_)`<GFpuFA`RdM+(sjtr*J-gFDmyX&q
zmO$Qh;F+#+cdXjCb<;lZ<IZ${-L!()mc60p77a~{4aKhK1Q?|KD{E8@o)CRHl}cWD
z7V~>;D`cz9=a{pe??`P&FaKtb;hS!4LfUe(>EeRf*=_SAEd$MPX%v0w%Tlfm?#-`;
zEsiX`n3C~1<qaA;1-3d2=c1mA#oXJ)g1H7CB0l~0tjo1GD3A1P{8Myc;*&;~vfvM7
zQnXMfFRGW^WQ5fTqso<U^z3nTwRk^>pktIXz*K}Zn<zYsyWZL|c}}_wK$GnSA_uF>
zo1m+-O)bxl7nE-p>SAwj)~XE9^F=bM^<FzVk`<)SmBd`w?H`e$;O*GYF)zNZCR_Zj
zC?w_fK2v$3Ss%lSoTRjx`)X^~qyu8AeW)ZFVnWg<gj!=yC&#vNaYAXtGXrzsCK4@4
znokh69$95IusPIp%XZm7adb{{osjxQMm3;5QEl2i!*gxdFK~JnOXSpk9dKXuG3V3j
zhWALj9kAy&jdX0<R!Ikq1iO4%(L!<gRC=41H8WQ+V!KrsX`5@SSMq5tnF(Wx_{OR9
z*oN3UZM-#HavCEkVc_NNy3%5vZJbuE&&!J&VTTG;ko_VZ#i%|z+Wesv;nkDc5y2v`
zbYO6y$x$MB?>olZcy><Y%*v-t@(^h*|MQeMH?a_e%xc$gJ73ixWVb4@+1obEQ{2@;
zKg}d9?(Zg6!K$Y~9m$xk+bx$SkR({`_~F;tb8mJoJC$(N?44@V#*UW{E!J_kViXtq
zK0oI(MQ`zvEq?5DWuAg(N+WA|#Y=4+tO;gS-ySZ|I3@HhPC%D06)c&^rd$$}QyE0r
z7Ju?1^GoaRuuZ`Tu5@l|K}7pMY`oNoii8l{K(n(M-nU!F-xfDR^7dgpMx$*>iLmMK
zAxsE9gTdnyoXqcEYv{T^H>d%JwDcUpl@^w4)UFo0_mOTJl8lxM4wnmHi5?@XA~F|~
z(#wKIYgt)#R~DOoqvb4v575vio<GL|w7|BG)<=A(knQPuw?9GY4f;^>2HReBl(p_2
z=vo{$V1o7yCB`WF>o&rvwX<`C&lgUoQS$!&%Lmr<m>70LuT!Za{es+2_|O5H<_Xt7
zP+o|*dWb@&^xiEg{D&QA#(=DDxG1W;)%8KSy@>t%9|eXL5p^nn$P8AWFb$kJ|I%ly
zMG;=U79i}9f<KEfVtU35di;vZjjz_GwZJr^Qc6c}?Y9I7<r<8rI}|5ga2$ZBsej!W
zFbOD<W`Inpamn*es`nX=5ujbt0eJZ+C!jBYXs`aD1z3bN7z1yZq1)^47hQKJq@1)0
z#L3;CiHgTpy=7vO6Q7QfV*!<1Fkg|5Rv4F6g!E-{TSQt^u9Tw#AyQT}fDk%ERd!X#
zLGMKbm3wQyqBlD@ICx$h>@)>Hbjez#fSmw=`|k@wq#tYb^<BRF*&c9qf3=Fbq@r&%
z=eS8X;oP>nGHJD}k-~^z*z<MOY+2C_fs|QdEXf%#FhecvpZghAw=h^DY%HjdGi%&g
z+G}Pw3)Ar(c%0_oj#o75{yD1UZmC)HCu-X(>`_oOCnTr;_^B!<wB;fEHZFv%EA<7g
z$L^(#C|EV@?c-GU3&D$|-)kF(8ZH7t`C*zqT8bO;c${^6OA5h}%>(;$R{ap~XN1k9
z-u@SY)1FZH$B(eH9iN;0+=7O13Xcd8iJq0qT!C`qna?DJ71O0n7l}R$QE{W>8SAbG
zux3}Zg+Li;IRF4PM%|Te?d96M*+?`|qtB2IzYkYGl+w8iEvUr3!AuAq-dK)YWUZ{e
zQ2W@0bqrO+AYCRVU)U{*wB2q#fnaTZC3xJQLG4*-TEwXGJtmhkDC}?{^P3TRD{s(p
z$3yoMt<rqeAZ%0`I2zVNAJg%N0L~3AcA;3`hLwCOV<v~zR<bP+_k~S2swAXM-Kj8x
z^=y#|W=KKDDrn*0M#O6y+_q?}R3Wwv4#sVSf7<XlZr7u{=^WI`NHI~u;fy4ikYFd&
zp)Ttpq&o0xa5!iybDZrJ?PsS$d!1O?L6`{{!GkK0&sOK?oi6z1jcvyu8;DU5@k(b}
z1ad!u!C?g7bK(nec8F&3EB6WW4N09$>yh|%&}+yw4TQs${CY3fO>Sf@Wh?L<-<7yD
z_38wEDJsC7Taa)y@m_Vk;nLZ(JjN6s<PsJH-g=YAR5oStE(MtjyfjUfeb&#8&O5GW
zJ1MWg>nz8&GEy^w+i1r51;e_n(`ua7d+!3hdWkyUP{g6GE&jkPh4Xv<tTwFWoQ^lf
zXx{+Kz{j+)T{5N^`pa+qU>v@aKxH@Pw0`_sXrE%FmLMAm^D5)b1TKaNYlAeU7!Osq
zaBs*xcLE{a)sK7BXQapxFQ*o)i;udCny;GB30ayjD}oQGZLJnmZwmL%k?8V+qGyv}
zo`?LnrAYm*0epB)Z7v~i9)CYR0O3_X${J@sW`rq`SdEwMK239A`{}*aU#^!qt7@K^
zQxt9+`c=cE3?U8+hZZ>^7^VL2!%2eFlME?WmZ%VSjU>Fn5CpfpMp1VyeUr7%|11xF
z9`HT6as#?mruKR46`Q--?cwQwkzxJS)MQKghs*YxzrWC%%r7i~7w_N>n%`$4@ECjf
z+V`4$?pnUwib}`|rgh@8r3|vwFHr-~OuIZZwY!VS(LR8QL7gthVD)38*YFnzRS*r8
z^Ygl-l_dtUpBEbCN$xVht@mG+ulyQ`=ikVrPLF})>Kd@P4OCcz01}&upP&Ddntvy)
zdh4KibOwwid=ahZ(2hJ|5X8Vq!FbeiOFmy=9H0wBC3jaH5!hGUU8seK<)U?R`2d6u
zfciI!{Bg8DjzQt-h<y|*pLFQBY2U7#>lfyf=%0~pxr<sL%Ra8Oe!3lHy<;cC6GZU{
z;J;>^NVz@+dQ^?WY1oiBAFoFRbpkER>)q_@(tr`XL|!@PC&7;oS2;R-p1XNTec!oE
zSbG>(fh<-b0Q#+S5b90*cU8QF8~XL@1eqNG3vN{b&PyPeip%VpE6}d1`F;l&M#ryi
z2811l_t~11uoR$LB|@k`DW>dLSC%-|M;K<EklXEjLi^KHxZF!EDd)h*Ao4(4(2$E|
z%D<=LrgDODmvNWx(lByerr=><0Hc(E4aNW~Tl&^4vb}w%oB&Hrl(mErT1|mNN9?)x
z-uI6#(CrSIgI#9f>%IyBuEH)N+f8ogujex}sAIlu(CMI4N_5cBu@=+DtB=&Zsq%E`
zkJ|Vqh!ync#5A<ZpiQzYY;mA{d}!Qh^TfyWV7^7lwM5sr)^epXb<qMD(v~QzT_?71
zL1?r^`EAqz8GLJY+q4A|!M(j~cq~LL53*Q>r)i*y_g}D)#1r%&S&bJp<D+DFA7fNG
zt;_e%?Vag-h;9Wkp|`{v4}wPFpXr6pV}x8TpD?}83^&esJT?TxY;xkAVb;?YOEOtH
z;$DVd`tI(E`qh%_3$Cx+-2$T>?@W&SHVWXecY0T&C6|}7hIgB{O+Mr8i2b1Zws4aY
zT&ZAYtXC~F<rWkguw!hcykaaX^y-;U3bPpt9`!awLPJuP2vZ3;D1GVj&}}P7!cH?1
z-B<s2B`ED$;DeRwsM@aZ-T6j;lOvD;`9^|PUI;Ek%oLO|mM7H9SQ;tJqXgDMeXSBY
ze@S-ch|1w7J%na&z_jaGvSzk<P(PuJ-t0a)U!SSY@_1gxR|iB4lvmrKRjze>E80st
zAaH*laPop0+S{8+nFKparejp>?~9!^zh~3@M$Y&xd#^t}F1SzKFlh<(m{hPsV05x2
zHD@+qvX3&Fr*{aL6QOQ)_Y2{1w}U#Hih}oNebZ93!GttOF`N-Z87L&hr!}7lH)<m@
zT7J{|F+M}#2=rwskN#bi>-!OEaD3w6wjn103k=mtl7@y>c9_sW<$4O87AvJ*E?ZRK
zit=j%OQevXd7WcvOya;k&4`3{u)tN?n~CD!=po&yMtRkBz?0j4nRPBbNLTK~u00@_
z8JFC6<0R^^R{#b34OLU`<U%)?AuDTIo^dKd1GpUGxu_gj4FzH~Hqg|>HzQ($_xh+O
z8J1n)4a)eo3;Dv}4i@UJz`SIf(GB928W#2U)3Ddf)QTu|QAywX(1=Qe>csoNs|72W
z^J5%Hrzd>Rq9EbC_Ok|oRC<B$jGn8MH(0b+X@r8@D|k?%N-U$UP|)ZOQS6fv%<Fhb
zn`Lx8n<gT=BmY%2{Z|+3Cns*3{X^IQQG8{5{HyuuUS9;0X4k`9Glkhz$9xXEzZc9s
za)fh|7j<QiQ=Q%Nby~TXKNDgQrK6lM?Zcvk&O(j$t$^X(gb;EMRo6qupw=_iUY}#&
z&JHHAbGSR@`w*1(Cm*Ga=BK)f@Zr=_IrMAfo40R4!*FBX@id|*K7B`1MRB-&!e!gs
z^TRpR+r|gLu;SE5p=$fph5dJ5c9>$jxTL=cfV{O!eE8lQlnEhcGKNr|BwJ)80stn1
zvjk5o6>jhKBB|;*wF3HzcAYOW3JlfNz}lEvV?8|q(FwsM+XUDp(Nj}^P1op)CjYkk
ztiIa-fF5V)@24|Rf-)!4&}fAz|0H^eIPoW#69N7dJ@OXFIr-%RRAHic@2M3UuO22K
z^*{{4A4WeN6_pw>Pw2QxwB1~EiI8Pk^rsMPLIX0+fIsqrHKX5&LlQ3`wDs<G^|21=
zHz7N8Z~cw)FV)8L5kWfP<tvK-VgcdSU_6LqaL-S(ad!$H@QE^Ez7VE|j$ZjV@Z^7N
znLb`+>y~0)(@}K@y=eHD^6Yr&9oT`iOo-Y?t88o}qxWRV-gnPb0s8&yT(|0Qln9i-
ziFes_{Nnf*_RLAu_sTOj-qEPafz)gq4)Q+bq%C_zR}6v|YNqRQv&9Y*bR8mrfpsB4
z<nFgSI-6*II}1cuI=y9IyUK?5H)|ovl}#-hsT#PT(Od2kjdyf2!|8d3^v5H|v(^ZP
z9s?fNqnl1jb+h;e*ebAHwe%>Pb($@>!!p#c#6wP^r|%l8HB0nqrXU;-ymj`nq-shd
zeCuj=v_CXVo%VHpmfp#U?%9LwOJ~0QtR2Ig{ln3fobwWC%rLgW$HaPjzFubj!^Ga)
z^0S-JN;2Q!<+IiTyZV7NTt3%<s_V0rQi8$ur)8rFmV)v@<ts3kIQ6*B*n0UegkI6d
zFp-&esRV+idOyynenG5bI!y)^(@%dPmmAva@q;iXo0y{fqRr>Koe2r{Qf^Kx;h8og
z;;uy~r|~$^@1Q`d*);&Q#3W(1_i0F1>1EY`ylC+@k<Tw<W_K~xLBwPRarO=5fFB37
zkAe~ftp+vHEe189g28hv@yv%xkLogy9~BisN_S;XIX)F!C`}wzIi8yhT-ZDR0!@y0
zt$A-LZu#L*OS!w;etM8s&y}bXH=0rb^9RWAh5BPhUYc&f$~AS9PzOY3J|(V#Y^xUB
z=_#H4le&gO0@Jk=PEek`!?{To@vO{|k(|U5=ch?~4SmMGS~Y39&pGNHk3CB$WR+4|
z&tq1gn0_6;HT+`#s2@Y+mHWrQA7^pkGEP{2sXpUn?pc-P42(&p^;-_?xEW9XnBqa>
z%wZ)ACfGl1f|4R}vt(cfIp5~M*z$cWsocvD%`He1ttn`cF)ZuKQt>@c(%4QuxdINU
zE1CCV+eE+kPc8J!rc3u~3Gi^r%2^_wlB<;aocmUBtiqqFz8|DNn?vpu^x63^({Rsp
zWkIHw4UO+Ox&C>H<%=C^VSG~Z`^>DsiYj}=;rEV=OZlzsv^3fFl0n2(#tu8blqYr2
z81_f$3WwK$m6>-VydZZMckGsT=wim$maP{XUI1+!=lE$4IiFiii{aXRTZa7ri%q!a
ze6PGL`d~e*H{tTZP`lS$^gm?lf4@{!M-zLBPmIeR6eNY4@8k3W^O;&J0_g`Z748Sp
zTnV|^_)5?%-;@1unMd0&f~&(thE<>2^d;ZN56N5`FY$E11^66o)tPa0w6uMt^(!B}
zW1!a4%wQn&sfGYHU#-DcEMfRTJmT%=b)*9JfppFBN@~*!pwu%DBbfX!_eDiCy=dnK
zK5MAk!5#XH!sj<t=7xV;h3fr}x4sWv!m~g^lmxcV!Xzb6;FF`n`bQe|0uf5zJGJ#J
zlZ#*DI#9GI|35C@%ZA^8n6K;K_3M`<5sziGMN-oXJ@rl?+5VcVBEN!bT`I8S;b#EW
zCct0-`L|KPfKxd2OwUf{qbAVIF@ViP5LN@d935z=cN#%_>&>1`qKv%IJmP2~9@k0J
z`q#k()V{bp{br<E`aP?t@7O%bDLiuFFH_&xlnpF^$xx_=6*yoY0Qf8|_U~-l!Nk%{
zAQ%@vR96`G-NU8r`5%FxFbnDA!T*-#`IYFB{i(<$PzVFi`Fnam7jG&7T!)UpuWZj*
z|A9fMZnIiN**c7}V+ibfgFnB&W{Yih*rS&Pd4;z*n1Xc-lqG$EZk@xct=WU8D%Cy=
z+Ph*esc_UL8Wy>l_<O7fIH;?QR>^@bq>VnN%2(-<LhdP1^xmXE6NCG9VY_vyDJBp_
zc3i86GFb0|?T*uXy7sV*n?YXkLrum^$0H2T7A3bA_(l6yYHXXJR^qWuK1;%m50@j=
zRkm<k{T1V%4n%ye*?M<fo;LtQfc03B$O3FOl|cG%ZMsKWzf_*lqW*P?->+TJR68*#
zJx?-aM;rL2y_LQ`_gwu;8Sg>o%xt3?SW!Qbxe}Kti^Y7vU9Oj|54mf}1MCC-kcZ=>
zCM5S?3}vJls{>BZo4Sf|T`X{CReiws7umv}AOqOsa}{OQYL-$vUrv)N1%lp`Sw32d
zes-tWhaEj6S1)yiGlnz_rA2WG3s4RYQ~u`i&rVe)%7=B|uNFQuVM2?9)xXMOCTy1|
zRCa~Wt>!=xeJUN^#4bGjb;6Dgv?oPJy#;%f0A=UI)e39$1r`1CtbU4{J52>>sL;^y
z3%X10;OIG5oAEK1Rf&}aiELKSYY<*ALAI<4BodA}>cttVcDOFJ>CGbpehIq5om1Un
z8%-iByY(yINMaBjb9$fAa$lsLU~?R}LRM<?a%UuzfUBi;k=t~9o9yBF^l{TeNdRa-
zg0X9?g3ekGsL;IK1@BMF&17$CW)pZdhx#W^lsTOY!jg8Che<p^m6rwHyt9Y*PBULk
z74DXR`-ixWm~<QIh<n?|?x@Hdjehm~el^}n;a>(*KkPnLta)=tq0V+fjM^EtIpuxj
zi+|Y*2@!8Ew{(s<w!M2=hSf8UpH@aJ6N%hz-D*)v&i{oJwx&n8yYx}L7a>KOCECLf
zyOTy`Am7`;W@2Rifhv7#wGSjjZYg1}JlH``=@t6wfmBaA&RadOve&@4F8NL4UNHo?
zV}K#_7^}&Q`X(9ojZEJRx<6T*57ak-FO{Q#NC}m%LeLVe7Xz{%oJ%Y+!1-s1JI}I$
zIKQjsFIl3aaLp!ji>muK6CfjEhGGE`J=EXh3h-XN>LYVoDuThmiSt)f%Fx~XR2M$e
zO`w&m11B>E;|G4h+VZ??=(qs7%{G^sdTY2Mz}$@jC1UL&FnCq64CKJ;?51>}JQZ&^
z0rIGqiBr`P*SmnCPAiO4-yb{hDEP-k(|%cPG0leyps#cxG7tkCI+HGR<W)Q7zs@!8
zWI$&8SxVIH?8+{;L(fybfBzww{cY;n?ZFS?eJja-)WCH!CbdTotTP~hzSLY}y9f#+
z)ZMH6M&g!%TiU{woSZ=DQ$!tS_Ltj+kpThi{xFzxf_K%c8g3Bgxd>z+WUn%;aS>dt
z1Lfv?>Qs@lK@WbI)iG|KGwiq8{9Pv`w$?Z%m2%vw<HQ{;puRiO;sJvRR{mH?S4r`5
zH7}R7?ZbybTt6lE06sZ^E4%5*tfyoPfznMPk3X@wY&~T`Rr~jNw>U5K#gzinN0u9L
zv}+`g7M%AjDlHeCekgivo46PZ%Q@Rhbm-5%czE*8(%N0HX7M7mcTg#FB<ZA&k$*S1
z2s9qWA<Ak+0t>1HAt%fwC9|VZ*z$%NO};Hlz-M-L{k~VtntC<AXr{qWJ($EFT3*M3
z@V%0Lpn0hbb~|L(wm9T{3m1O1|8%8>U7)ERSH7$~zU3+T6wV5ER?xR}w+~oxQ@Tzr
z1cf2f;{Foda!5$+!^_-0i53iLxqC?cQ%=&mb=bd_^2DP&pSdhy{%|!fJ!u&o(aB&v
z!AIjZcnOc}6g|mDDUUMKmcYX$Lpjdo%@CR@ZAvcazjz*!5u1_Mp;$lBja7I}RRaG=
zH{m~4&m*|B4^#V)OXr?i?-RZ;hHtl&FR>RKjI{4Cf$i+Eu+~K3PCg4%1EXQ0y^Ih$
zjdEenIkSTO&DjJJ7slPH9wN&|(fub`+u!be`fN((doK&NNHzz?S8(VKTpY+S-)Cj7
zq1Q@%ia1*$%nv6icClsE0UKSIotXZz!uIY^r|%f}r>*o;mgY$>vHSQx>Teagso7zS
zHoz~RUmie#FY+4vrAAZwH7Pym=>GZRV_qCf{KqXcWRFJdtuQq+IZIVW<cQ13)p~mh
z8-fg^^p4dPms$O@8C`oFQB18DA3EI41GPrk4R~BARe@BcRkO`LoF?H8IJ@rlGa8e<
zcsJeg%8urYN`N2Ii);E_XlM;MhiI&KExG`iO2TBw5kO!bi#jwE^WnxOlFopq_q*^d
zmO@*D-LilJ)N)|F2aRxJLtm6Q`Sqt;xD$Bd%M*vS4&Rb&;K^H)9K_}LI40<p4{R6Q
z=%G?T;83gq10R7j@E_NZpMUHuEM!y&wH~;er@rGx3aNm3RwM1Nxcf@35Lu*UNyyS1
zS{0-@ejV^9Zqj-<&vbMCWvR{p=+er-kR3Y6KVec?P(NQK)9z~n9bo76(|PygO1l|&
zmWB@>(6Azaw32|9*(`FQi5W8llZCrcy0X<G0UjsQxS5G9f7CbRf!fNqJA!x**EIF2
zLyS`&#ppixQ(ZW2l*#PZl>2sk^zxiJo$lclEtU$~DRID?Xeu$8v6<`GLo|7g>2%MR
zkrZRS#l1#7mTMcvSEK!L=XGUQ?fx%1BcTf4Ow3iU-E;2J(TP<2(S*j#7HxCi+e>#(
z3-O$^W%hAI$<KhUjBJ4KJwKB`mr39~&5wKTX1?XF<oW1_Ypm{W8LA2XL1b7IT~`1<
z&K`Z_4`{|Pz*Z|=ZPZ->b#Q*N3W*ZaQ}o_9x~zbL^4Spls0}i*B?EnfQ9B<=G^kZQ
z9&Q``qsz?ZF+&81_!~jhi38QTR*4`?W3~?WjfW=z4&^0aYQ4H;5#5US0IS<_{H;My
zc*{;nOcUXT<gZ1Qgb+SM^4C~99`=*Dl4-4-YbiZHCadHF`%b^wI_l(Sgx_a&f<-GR
zW;30oMu4Y;sT6ohVE7?Wlyv~&%s(lTk?sjSUc5Z}nt!j2+Q1&cUmGw+bj~@ORb*4w
zKwmDp##ltLhRc@XHELUkODUMlfz{oUlU44j?9CPRpFQn=pYng~p}oSRd8S?QjDie>
zDaSEB+jZJ4M837~emwA_f)ma!;N%?yFh7Gp3mIRG5IUqcU}N#^>RIR(2d~8Ervk8F
zAW9PoArm8PND=5WN`y3d25{OAU5Y+lM?IT{iXDSYOMbPXA+A|XxC`_2axDTiq_!bX
zXLEcUo7PX_DD`Avd!QY3sh{4XPTT{u$Unu-;CBe0OVv*%Er*4LHL*+5qnX&2<X8AH
zRturn$7P`8RVvt$Qn%=t&~))5Mc{D>LV!6_!}GeUD<J8qZ?m6QR!gfvSl5$Ss=;#Z
z?)n@kcKURiT}%HMV?y+8rwY5OF$OIE)c2~oXg^`dSvjW$o3zSZlLy!~o!I70?7C|Y
zpS16L-c0QMwsDy=bN>(+)Y~Puk3%2_G2ZD9=E#VRz-!ee?8sI)dPL*W2hDBWDQf;U
zh6Fsp?b)D7F)vGIX>5jy8qPHjFKDfMj~^wU{z%~%P8Wmy!u9J|x3_2@5IC^a-o7Im
z5A=Gg^i!%*2o&AATDj2vl+IX=xT}^?qYcge8;?C=OPA)#8<vdod|W2>g&O@bQf^i7
zykihN0u3YKs5G@djv&3TGj!#2Jj%?Y9`aju?kSoiDQ-bWYMSt7)k`ussPI8#+>pi{
zkDzdD$(7|er3%AL$+KDPb$-U}DrJ7;e7;2z+L>a;4t@suH>#!cB^TYHvW*$_yAbSo
zP1tpwqR8h^g97Z&9VwDPhmd-dcut9OF75Cq_{gE`iV$zPjc}wOj_N~cCCUJIdR)TQ
z5`V3*9vF|GA>mC=v4N-b(9TAz69$vMwo}#B#;8E(SH?!=bf`zR;Sx<+*U4c*Z?|u{
zYYm-UAf-nDZWRrZcTCeRj}124AAeL9*#y;o%{_&ea>0MvB>$U3cFGH}{ax8=(&;w?
z>}=Aaki^q_1I`Bwj4YtgVu}C=H_d1k&$F^Q76Ha}(wE9VMqd}SdawDfcq}E<?nT^*
z(b0@%=&%%Cx1cwYsb3@TK8n$JEy6tOiTr2rF_1}txuw#vg^UEs*Q`-nJGa|mm!Y;t
zQBpE8`=7JE6{rFyCqKR#A=kFc&SrIQ-+4ax8cVtD;@c)P8**~8^iNkuik0QUQ<WGl
z*b@u=@87?7h5_7XbS$i-r>K~G8h@K;r?e1}k&ywwh-YrxyzraUD~$pV7rJsvK?xAd
zv-u{5Un^VJEhgVvCA#5=rgpaD=a>VabA#q#dsuj&1v=TqRtRm$jt?E}((C<0W*LO6
zT)@-(7_YD3!_#bLhv7J7L4Ai-Cc==cI$`!!z@ORlP%$BxO=q9T_i_DcZ03IJRY66l
zZ1TwzYN9GaI^87+{nK9Mc;rX#f)6P%TrbE54?6}TN=eA}zYldF`rvc17CYTW;c^<>
z_aq@2&jVd-NBLD+E-KkLowqR<!I$w@4_fcjC4@dk!rVl~OQab;s~NWqExrv)u!*Of
zwnLkQx;CGU=>~^L1~SMLnl(?W`-4oHtI{7uxVE-%v~BwtPY1p_Q`)ddeA`%2@d0JA
z`6JmlD~@71D(<)nJm;3w#^!y<6W3nsPBM=Ov4PpwgY^R&Ci)LPDtmr+FKBurTn=cf
zueU+dHXQn;{7VGijAopMls>Jf3lDmse^Y{;jK$gvZEBd>T;=X55bo0&baC}!?VEYi
zyBlqD`0sby$w2mp&<GE&r_+NY_<u)#Co*a8l|f_w$Fu&Ii}>IAz+W$0(8X>)6#B?u
z`sI)&-AdKIW3+-Vr+A<(@S}tuKkPZnndh?vzAwBHC&*?o46bO-)3#dGz3~w6I$U^D
zWzrk@-cYyhQ!S>hwn?o(i5Yrx{QyvHH-CGOwb($(i6EnCU{cci9=E}!T7g06b}+Z=
z9&fw&zSQew{=$IKU*1Y<1cZ$&!c263vW}VV-d^46xw_Kzm8Yd6*6xTD?A7%p@tYi(
zG1reG5@)W>+mYBqF-nU%IUGZywH@*@J&j1`Amb<KG!Z4Ug?Xbhx32M_d;7d97uutm
z?d?KIJKZ;I0)@=K!2%9Xqnb>c-<DVBPu3MQYxOfT(r~TqV$nfc2KQGEt_-66g_0b0
zyY`Rc@(<;OvIJdTF6Snz*YQ~I>gb*vXw4&b18aPr1eUNVjJ@^Fv6qXJn-dYc?7qSo
zrs%Un0zRoWELHZXXF)%-GkdK@hct27B(fvJa_rp__&$$}Fgq7@lq3gP_P5~GuKmNr
z^!O~z4uz(9=3y%D<(`Nd*pwSYL@nq}#`BTevryORxo;gdW9dpFJBOF3N{>>iaZtas
z`|ex$KJ63@xW{TfRDoFG(>CjGWlNpdR><?uMZ1uEdlpCKVh=k!ZO_Zv)dl?Qd7xW>
z;hl_Lbf8d3s2^;hZg_t)P#+TRMyxp)+#=D=z~eIfG($zWJDktJf{w6Eo_lrlUD`p^
zviFQ^GI#@d#^xrs`rc}!=|Aq6f4_8)#2r(!q|)oEZnMTH;O7h_#A0NieZ^@_TIM@b
zzG`#`Khj@U8z1<99vB<(4gT=?<LNpbs5UUr6|}%T4v_a*FpOQl4Szok15nmVc`XOV
z-&tORyyU`9IxBj<!F+jMoA?(<zr+`0V;eS|4L$sVa9{d)DD#-zNN8eS%V;2Gu5r@E
zV9jhY>5c8)nW8lZZ#Ma6J4t@r8%tHk^!V-F$s)GD%oIQ9v3~<G-X+FqZYyBW0&PzO
zkx6W9TH2?)s2a)3MBL+v?SOn^BcveU-jZ|nvWPpZeesN4_rOgI{3WolD|$qfr*q$A
z{9RHKZ2PG)o_p|xnR4%t^5<bXTA}wk&mDtMuRcY&GG3Vlf!W`wN_IBUb?BT9K9(?1
zi0+cJ9LA%epKptJb(n@7FUV-B=)<&p!25E^pN|tfDE7BwtuhPGw>-%LXCWM9D41@7
zdI9-tbajmivT1Q@*O?jsygS#h)n~>AP{r(eca*nqv=W*WLeRyc(3q42g^(VUU4<Qx
z+Sm946dsga1Uy0mq95xfqsGZe)gEiLeFu*rZ~IYw*{6p$;zJsk7+$#S4Gai2s>CL|
z4V%14fNGY^>G03G0F~Sk`3kjQ?Fn0`V@eKD(j@-=4B>+-d$~rpM~LMx+UyN|&Dpcr
z@aV4P_0&Bo^R4Y!ZTruD8F6PBg1-C6O_zzbOkmlQiwAuurl+|5YPK(pa<|K}(9FF(
z+*r<b@D;u%SxH0$oO!bv2eCu2s34uc0%DO^YhTvbGeA>b5Q>esJF#u$^4?EUI&yH3
zWyQ@49Ok^Ya_(_O+N@5p{r|g{w#6tv5trhNZojgT8hA-#P=Q@bQB2x-GE4QX6FxeT
zr?5F^BD0q+7grVoe88X43A^mwgF;Dk)%CHc0%)kIb6spS-Gx0H<p2qEl(w5)w&wL<
za$%p=XEgV(;%GJz^+348M}pjBs*8j9$&~%z7j)~&>IUhHKvaVFZ(vmCnYh=&p{#|8
zg&N2Mn5~`wavi)g0N60qU?Q8F4WfMx7uSoWvx;iKQp+W}-r1Zj%+pk~)KsgW`b0$^
z@B}k20ru7@dPG2)fa$rf1>LL#agXpx)Y-4H|H-b%=xF%7k*m%y8`bOn_y|ysttY4M
z$Zc+&j^m8z78I`G!t>R3e%6L1D}w%X^jS$=aMG<kEG*dr2Li{k$2;_0r{&Zp=we{6
zSto&te9yrA%qi8U2+?gXs|nkN68BsBemQ+0)SUj(PLDN4Y082XPF1(_s1!FW3S+ts
zfr^sPrIz^!aZId1cppzvXfwRh@i{JAE?;P$k9)^9JLMc<n%IrCl-G!CBLban+H;D}
z1Wfe4@U)A49$Detm(=JC201}r7awjmRkaQ%t>!9QorU&Y@i1>itIm(hg+dCi&Ry-3
zPEeFw2>0Aw(rSEL68ybAN%v>+hlUll<@SoZbpq#dl{_2Q^Efs;o7t1RlXpFcaR#c_
zzi_iB=8QDzg(Uf`t;ft<Q0kF#eg3*48lA*)yyBImY!8?O@6M-DCyu91{jtXhMBeHr
ze5+po(~qRy6hl7`?;_eq!%avAA7SsQi|^p+7Qzsx)?l131eFZzLhpRE>fVWDw!XjI
z+}_2ZE;&rdLDlkgD=DEJ*LjiZ^Nn<*;2hLvb>D<0RFw`i5(0}t;39W6MR?En>wJVY
zR<tR3?#xeh>Q4q4;JdW<FLigpZ1Yfw7JaC4fyIzMdw^hFBIZEzI+y+ex@2rClW|U5
zJIzm^lVWyr9DeaM30w4q1|kcgq*el*k=Ny7>t^1d^5ngU^NM9M;IX|{5Au48VoZaS
z*7>1fVNvw%-OQl_`nH<SBY#e=kNfwb@6C$%^!Ae*fm%f}sphY<A^Z04L+js?;mW0m
zKulnxA9l_=ay)JP7SsvS8SA}I0@^T)6iowLE+c;JZSW5caoTLX1>{V!xEIccfSE>v
zl1D1^YQxhdK95OoE9y;ZZQrpqUKK1TgmYY^zP1kT*^EoH`Y;|9TaHwwuhZTCf`Qzu
zT!(3Q=?*a&(j%CwP9n@6aXg)g|I5Zqau!M0#}HLsZk6U+wvOfL&peu&;@i>JFmoJ~
z`?d4l-*n6uE)f%FfGx6QU2v3;odfc@fXP1E{Ye^N4p!wwJK*26ZL%8*uKus7wSRx&
zx1jVSD_aBG>P;ButiAYNvkSZi_6ivfVi_vmrPW-Z*_dNk@zdUqvJ6n>5u=<(h0bfl
zpik5gySz?n;-jN~p8r^^KUUp3bY29WHG>S_2XK8;x}aMk4vk)h$q7v_P=PNG+|L*N
z($Xx|DMgOp+XkuvMxdJ!0G|>%<9sBscfKEsxX)9t8Hpk#Og+8Xp)C=Lo&TwKZSpgu
zHk6_|QuG0-zki;AgttkO9Gk<yc|2$)s{hiby4tCRSU?M12uPjSrZWoUtWzLJDnP!F
z`!k>Bw;&5N;8aB(ewz@9`aoL<44j7F{6$DFBE)&(3TPkfg}O;>e9)FD`+2!0y^}8)
z=4*cUxVRvdaP(oQ`eRyF?2+j8A3sTHD~zF3Mvu1L7-wQPtvNT&W0i@u@7&t{=CoGn
z`kKvZVaJ_KG2*?+uIp(IXgc9|iP@94Sp*`cML27c+f{Q&g;P14JFCHAgFr3By&%kx
z5<LZCU`EJV%Re@lL6qIBCvpk%*}YC&cNt%i85p&fj~dLJ)V7UGXLKi0xZNR<d$3NK
zFCDA<?B%a_byObd&117Fb(CJ)&n)OpX-Ljr*#$|~_-XO6$6Ir-_V|u<Ek<pkSi!y#
zyuCWGVdi&4$Hz0YHyju&jk0F|7(-@u!lI6#dYA_s*Pl+NC*9<4A9`ga@SX`&9;*_0
zU7EeN-_`{gUP@{KFp}*<iab>^?k-m-%xcl}v|h_M!3K@Oo_E7|Aj6F|pGvRU`a-O?
zNFpLQi7V9Z=zh}z7S7omBah}9d`2Hk&~bxb=*e&vLB^-Wm^q|x><V!q`6UE#8S^2B
zs(N#s{C+ea^tOna$mR|Ged5m`8cO6Hlwb##Tgyn_h*8+K;`ZI&hOaJ1daV{zZw|Bc
zTHB}artwM6d{Rjw^VD0hI>h^|)GoL<hoFB#7PNS3peCL@P-UAue-?u)oep#=$tOz-
z$k^%&O-wT2@jGvBJ)3s8a^iQy-EE<_LorQg=kQP5>gbNktM`(^Y{b7kT5pGNUjOih
z?x<co3??-Pe$PK4qkFjXYG;PsCNE?ZBNbu8sB+<`vzd?}8`tuDz!M|?scD9%e8%?2
z`SXjk551-=RhI^u21@q)F5k)D)~PEKXP3uJ%&;(zg8bLydS6WJzoMEKZCMjylkb5?
z*kI1W%54NyrR^VYqMm=S!QX$7+#)+eqHF5<Tw$03<Myl+T0WB0-{OI{d`W6#k4XmX
z#TX?D`#IER*yd3bGYS}Vx3o3!n&ph(3S{Hba-WUCug;@&K+XB)%a<_L4^M+TsQ#Df
zQ?Z1XbGlnHg>wieFjM2K35FnMj)-E&$Ge=aaH#>g7cHg*U&ea~)&m5O8q|RldZKo$
z#1lm{ECqL>PJ)&bdeqNJ1+bevh|cp+&PgD9eLO24NMyj0Q&G{RF3*{^DTHsJ1;&IP
zlND+>mt^`rG+w?%ucY7h=YPD}FR${te)h+F5kbn|@r(lIVpBYn%*`;C1@dTa4?xxR
zX4m?8-#HUA)Ptx#f&>i)$kwxt0K$5&7JNBxvG0P;0iqg^VmbJMiypWjiI~3+-{-Z&
zVVxPf-ie9>^6RzB;csnq2IUyibIYlw^lN@mOa}hdM<{eb0yxnM{X;|Xkg_KEWsGGh
z%#$Z~9T*&aKq#~IGW3qj!Szf$%#xIY3J30@-i(di(Pk?TMa#;LqY`BS$Izy`MFmQ|
znaY-_zeK*SvbbMG91Y6THufoF^?7)|3%G7^r?Ufe-7TT^^S0f-b~u62c5ZhGP2@t%
z3sLA<A8)F(FX=(Vh<$0L5L&AxZ=EM$h@Oi}HQy4oCag^r+QK)#*4xi?^nQOkFjy(z
zs-dNgh;qvnKqlV0Fc|aJZbA6`@OFMza5JpZdkb1rF5BDQyElsIx<<WcZgCKgY^YeD
zlKyx?qSF-`(c0>+`IhbSLGk)>)5+`%wR*boS=<K0G8>DJ#!edzEsv0xbWhi_u4LEK
z^~>79&C>nRy2zd6it-n}$f5VQS8n@uM@x-%w{JcdK%H3M`%V&87bu*`mocFY9^mUl
z!cF%UB^*0a=Mp1W{VW7Z4AFEC))QX{x(zz5j^MnUn7mNaUliN1q9`Xze`(>lyeBVV
z>d|fUsDTK>S+Jq*LGa7qDk+*?oIoaDix74=V%$GoxD~zcey0CvfJ)%zDye$wp*m_>
zya;uKj7_uUA&9B2E{bt&!?u7dXZ9UhOQ9+X&b~zEW3li^qodcO&CY&vB4m?h%f&%%
z0Mk!Kz&){xxF+0UE$b*#X%RV_4!E&Qy>d|ev4=Q4Nh09Y$Sjgw`n~_K0BZRrR#0}o
zmbit=4BA|}=oGdX{%)OpWT|ISalDTw#4sn|7}2hm%DCH8;i$~>wq2Mse||HVBO#b^
z^;Df9`tL^{>9w?>EoSdRKyUY50BWgC*AhqNkpns4SkuEAJ#UGsT;|@e@T*sIdN}R=
zVdd6c_%KoO?n7Q#0M8Z|e4)NIwzrqUUf(clFS}=M<^6gOAh1l#M(=3FO?y8Ul|RPs
zM^b$HHofHg(+{pReQC9&^vc|GapKlpXOYR!qS$wc|Fv$M{i;8Dk9QU>SH~^nUU<-8
zl>3k$t6;yU`o$Gs-zp9f8(9&ab}}MQ_}^sWwwNzB)&|~g1rO?mzk`AUtxl<ZdILvT
z3e^j8Ct60G4l2ql0ARs8yT&bZHlv!+Hw+9i=y(S4+@qu{C;4c9Y_68&)IfcoxM+8q
z1P_SRUCT-j!XOxkQxVzvu<2$X)k91|!U6=omSEBx?zf?_d3U~uTkhbIC<#_gsgNND
zcd;B)>_SRB0M~3kV015s_yU8aXGhH|9U)jE4&Z}#g(jg2#`P;6kc<7DvjfL@v!ua?
z`&*Zm9ntCbd<_WbY)V~aFG~y?SeeSfm<q>91wgP04APlsH(w?7054yJ-n2IYJc(ox
z-k0=>fH|MRWbDVg*QR}H^3H^IHu*j!dNAqob6~=20AULT&_s4@x2S=CIcCDx-*vb-
zRvyJ%>vjG5`l$I>;cGHA;AA*OIy={=61KS$gBXAL{P{EDyO%4Enq_)Sy7h^n{Kdw6
zAzQ#eS~F7kwh^iXHC>gqKknt5B<ii8&%PdCH}h>l<d|3~%z1WHUnGB-19|XsJNLV~
z@eW+IQ*ZIuo`>79j-RF{xL3t&9?zHc>PA;L>n(TKnDX?H%u1hK9mRSt^2&l26ZfCg
zHsE%A<~^R%Sb!6=w#$F2wwctC(}#VyJRUBY(q2Ays=Co5D+!94v~Lm%i9GT-DDqdG
zvU#{uJFBW@hPz*mtbljOfD0}f5h#?T-AQwbyb*G4GYHy!f+i+A*`jS?RVMy}+L;T<
zB-QOOX2^RabN4A9QYw-xrKGo9bYX`;z2;ix6%)?-r7#fT7o-)$SypvGjkiu{KyJK|
zKRiZ`_!)XRpuVI-7q6&BJzM-XFz{$DyRzneha{T0y4x|H`vA)@_C%dh8m=148i7!k
zt;Pl`R_dP4G4{uHCsQcya~j2C54u+Yvy)Axz#)3i6uWPs(;df7xX3K6L~XXu+(l&2
zq#;AF*anhr-TXcbp}yF~hp$9V(R+8fE-2TcxudP~rHMAmXLD3wE3I7D(MxE8ygwE+
zBWtZoB%#Xl4(Bm&H(K}<(}RJPIk6|=_xrcIoKopRYx%*exY*c>qlMZxoz3OmpJY8B
zg!i>ay#E=1|8F#$LIos8CnuW&=O4Dj@x|m{Fs(`u{|{wf8CK=Ct}P`ElMaz?1O!C7
z8|m(r?vgHPkdTz_?v`$ll$Ml6QW^xoZ?N`WXRp22I(wb(y8Ho?OD6Mu$2-RJ+|M17
zAyy|w)k<vL*;*P3MLq$VcdyPU{i>Shbl9Y{8m#FcT|so{*kDa2*eo{emTdH=@67iu
z=+~HpAw9hdkV)ed@-(PJQh^Rv49xWboa@7R9BFlvGEGfQM?hR0j;B)w?f4Z$^*RU3
z8@T0d08R@^!{^JM0ilcDW@d)cjJEQ&3T0pX=xRX2{zeI#-`*Qhr0~@Gc%z|ua$9A^
z<J&O*n<<Wl{tZ7q=FjI~i~?6F{%#sQ@sQ^m$qpIe=-3ztxs>zn0JE27qJ0|joQ#t7
z2i@#Z9B`tdtBe%jV*e+)Ee(BKgn~XKQS)?g4AKhC?xwiZ;!y1aw-C~CNXj{)vvGJ)
z$$N)Q_dNzd)}~uIsc<w_2|fe$O__GKeu&f9N6nVkUB0h)dDUjBPwMbQhx=EnK}3>B
zu90@A=Ir6%=gRPl-q{3M0A3(0A9JTYX0~>F$~3HMn6>7PS$Rqr80GH<UtR%NCyvJk
zA?mvIg5y#yrwAs8hOMdbgHM=!QRdjX8#i1y8AXEVGV96bD@BBLw4WMZSjCk6Lx%iU
zcrT>_88iaHQ_8L!KBn-~CXJ#T7djg1y%TLj)n;BKd>c1lOH>apX418<D=i&v{k45r
zttY{HA}2^rP;kctp)nGVmx!8@(j02@@{p(Q(PR?-XmRG`DZN#h8$BK|Dg^}v;8MBX
zgjoj;uC%(>CfQF!?tl#wqjjjJW>3h#tqX4B)nWfs50$WIYGFUfyxjcKz&)RrpP#@*
zgVM}<!PNZCXyC_(5s+0iK?$=0th?laqM>-v?n}%w0s;bP^lVov5R9=hI&^yZ#jo%h
zBZ?@vJu9U@B>)hf|7EjQpU@dYCh{zL4*~DjcB<X%Y_a{)zktiXyfFWGQK206*fTY-
zC8zmuu`Fa=s#MfoAvFB5P*_@h|C{BPuAZKrtpzI@3rPs!itFN`)}T4bcKw`QX`j!a
z$o1eP3NhMRY&CsZ%>a^oaH)D_MR>NFWhR)J)ZJ(|9osS3$P*P?AD|4S_M@%?9@zxa
zPPRx0qA-=IX|u3^aAYXS_jd-)z+yb#H8m-zP^=?g&FBw#sngKVd>-djtp>g~yM;qR
z-eF0HTF<@EV*l#+`yV3o?_XG=_>*qgV65P&5@{hKB4UU>$J|O}k=#8Ck52@g=f&cH
z9ih;=_wV1=g`QLo5aWbG8f}+LT4{qB(1UF1lek{^cb)(da6>(R>!*bmvqO|@ZpWmh
zEdsxO4ofd$Nzgyxd3##0M(6P3^z{(3u^l2RY62j_=>!!pO|KPK+dbppP{04NLsC1;
z_)kI-sN;!nq5FmwofIUiJWfl#RS}I7ZO*9c<Fr0ZITKz9`jR;m4G)FODSV_bvHRQG
zmmo{}f>RVOA{f5ki0+x1qHcm^b(I2K44SHceuM}WIQJ>zC($rM!@^=g8=#Ach2_oq
zX?#4XSeYaS1Q_0wIdLLcPH8Yi41m9z67|VTY`4f(kP7eZ>PcC1f|yGLcWez(+*qWW
zkn3xg!xQ{CR82wtfatprbxs2kxCa*+FpKx`Sy|)3k5<`0oUYXWY7+^m`<>wN`;90`
z^26|7Y?Ryx`ffLZYtbs>{BG|ld$isREU?9-VrQ=}K{viYr+HKbHY6=~cDl76SJtwG
zPX_+vK=*KwWV5J$MMWS~!8An1QfJFjQPRq^3D+45aT+>*iVvVOIIky-;=eH`0I`sD
z*7MS&!Edu*GVs+a^(Y<;d^a~YuPr^koLPa7jkJ@fZJP*8VKf`8KVZ&yE1ABLz)WQ|
zjL#L`=zo_F$P@w3mr^<G66@;f9P5m504C8a>IdE5?EI2}AMbuu*&+DA|KC<3eX1V@
zLymsjB{rjQQ|RE6FW_metO@D7w<Lu^!e5q0`jz3b)5Z6vlLs(dvigzn8;NP&1*A&4
zh2CT!b@!2Oxhodqy`>aAED5zf@6>3-qc!`@dkI{Hdq|ew1c{bQ2b1q{@$F7B8|5EQ
zF>lyNa|{X&;P+<r)xGQhL%H*tT)gji^V#Yjt$_Y9n-yH9R+xf|eA|#giYh`VrC}e)
zjUnEO07cRM73uxwW^WHpo<IG$e|WEd!BBsG(SMKBzUn$lvI^;GIWJQ;97SM6mC@F_
z>gPoY0lF<e{|^Q^{~|y9zLfs)3VpPoq<s}O9&U5DSgCCSx;T~Iv-bv6mMDFtr)Yf{
zfBbKInEojTmaR+<+d6-IS+bJ^8UYWr)=rjoHz$WYJ-XZ-m}-n?9%=sXe-?d`VC?Bf
zd_qd;TG~D`%O|iTkzF^p3{CoZe$|c+wH*J4>*UXh04w$~(F3MpR*&QKmyc%nSxu`p
zY>1Tka69H?Ya^@}M^es+30Ktt%y*9w;A%*lAXsZUx|!xQHsR6^Xh`#|?oP!Qhe2IK
z+GBw0L}Rm17Yjx_5{b<Ew#@uxyTF-g5YRg)pS-k=0Wp2^Ctm<HgVpWWKuTJAa*NG$
zBnEs;p4r!?qtt#bJQkCbjMi=^eRxz96uIK)O}zWH;_{v2T|q%XpFmnXnUJ*KDG-$n
zy{CHh^B~)!<PGQ^<T%%0y^lc#R8xOt>0Wkk?t@i@AP(d+OHP8hqF4-*TIza^uuBZ-
z1%D1NO9{LKumXVIK6w9c56ZvYihtbOELSYxDfm(51FP8Tr}IvK7)M|yGINADQ#CR7
z#OrO~75)yP>V(jz+kL4kj9^j8bIqv)x9X$>{rK9qAV~8umIRVNmOSqS=HfNmPHQXg
zM_`8H94D8~{i#SX*O{B0eTEro1EhB_^@O0$+1R!JF#UKw`Ra}!_^Zp|nfK`@8n_L1
zSD*p>=IJOb98jj+DCcvtOQW3E_&~#&yH=~vu|ULswZB+SaWstp&9P+v))}aVqqkD5
zDq;b%vPe8~c#d>PE3<uJX7(r8R0#My>WF>J&CSa(o?q_IjW?5wWeQ|M_b)U*;<9~U
zY)Oz7X)xeZ(c*XIzNM0MHw?t;7pBrvc><o=Wr8igf5>(I;zIrYD3ruM5@kx#b^XwJ
zhF@NSfW64wP^de95iH|?#f)pKO$y)0TvKoO9ySUEdb#Dz+zR?#x{X8imCKeLNs+$h
zUHsJ-0P;3$FBU0Ma6sj@MU!6`H!d3)837g!AUV`{-?~c4$u*QDG}@IyVa-T)wqG9X
zT0T|bLO=S*KRh2f6QuwR=&g-{u+2b-_ycGhqZE+RUV^otOQVoyBq36TuakG*k4B%^
z-7SoWiWrxbW5j5l2jAb^4$Ud>ch8EyBSvUwXiUpd^Q&f;eYJ|4GHg!&R`+p+H&5W`
zbu|1pnZ1@vb3d!Wl()83q9?BZY@6lBqO_;Pkd%^gXr%$Pk5`hR;a!E#czCo!=IfpO
zcfJf&f#3z-$p#zku;}Qd-Kj!#@ud7qsPWkT%kN+9-h15kV#$AlOhTx}QrL&fQS@da
zK}48Lfn2(!Yq^buw{}8u5ew`CI{s9c5E@>etjB7^U`9|{JCofajp)@Vh2QbUa|GZh
zROY@DLh;aA5<!#gtqBH3FsWqciiilSa!c~j<`PRP=Je+nC8%?S7&8Cu2~VluiAX9#
z#k)#s@&Y9Q(e0S^w*HMNyVGXh?VI8I`RHpR9m%+;W|Ry(I=%C-FgS@v{_^}kM2}Bj
z1WvK9xzNah@s*Ll_>KQjPaIL8NyzZ&*;%>BL+F(>MYYK%%uGW|AQ7{ixw~AnE3e~I
z)cShqAv1>pZDC>I2n>GaBD>;^vGdEv9bcG%<L|dEzGw<I9L*hGeGD&ubyWya)u^AG
zE)jCAuM!~M&tEiEm>KsU?s9)VB52Y5fw8`pkyzl<w$mX7Dn7n8URljTdIZ>yyu&z0
zvgP3`^E8Mte&i55Jes$UQ8C>z%ZuO`D!GBB5VX7z&Mq?t#~fiepUvwV$-tl>O)8KN
zTQhkX*e2k)pjXIifv`xH%)3{Vn+FhuEeoYJZi5Aom^zB5xA3$6fz$vv(y)df(;t)y
z(9DSdEW6SiDApz2;fr}GH}KN^8~WK3V6?=~43xYaVp}WZUf=zoV1UgXTEKnDWGA5&
zyq+w>l##LV1()qyMY?e#j%MS79e`JLIU4fj&n($Ox%3zN{qLUK@`0Qw2VGc4d1R9j
zAN2RA4^MLzE{0!YpHV1&!ho2YzH{3&EO2I}GA|QzT2uJjXI?UE2w@dI0qkDlD?Yb}
z^gNGwTrm)2@yQem+jHJH@^i@}y<v)rDOjfTSd!roUDNGH(yI!H7ofZv{^i85g9a|@
zFIc9Q1J;M#DV3H6AV49ZmnfqsEXjyZ?;f^#wsGDKS3!jKhZI_iFICz1WDD5ci)+B9
zrSf|*btNxwtDsx~&;2BDqQ2X>dZ3E8h?uVd=d)&)yUAC~nzzR)AKgxj+Vr))s=Zah
zgrqG4cQNj~hBm_1i}kjR<u_mJYqaakv-#B52i)DNTenlJC@Cm<=q1+UmE~d|q$fLM
zD%Y|c%Xw3)kGrNDY!){GlL0_dEu;I%Jgx_y$$(aJrED?TH-*EFiMjncXXOs)W!OuN
zqxsY#JFzyr_RAY(To{jl)P>>vM=h(W5fCtfEDAfMv5#?Zjw^RI#ye-5aq>e;ADxzi
zq5bh^A3WMxMMFS_Nj#pOn-IuY+nNOzw*8n1sa>PP^({vqFxS#Ku<F-4ig(q@y!3e3
z{c)jEocvkKP}6RKfLoBQagLeMCbK7!fNis+wBkK5m|r#lUK6aZhp<ZlVS3imnbv>*
zpsaSRW){6>E&C>f#0L_XboKg}FrxlDLmJP5H|TJhe>|}9xjDS&cW?)P_#Z=du)9Sf
zyYO457v|bOT`dXsdV;j_UHh?1*1)WR*3rAqdboqh4t%_qUyLtpVb_&=UiSo}dJx;<
zG>JU4hV?0aNCdihu#tOQ{ty>mCbeH{zQCSG<n3BW>>ql^|7{zR;Piih|A4mg)ycY{
z7Q9dw75~e!x|_9<7szPkO-W6YH)aHgM2N7#=p;-unO-%iZWw1#QBkvi*t1)!Eh+iQ
z#X>%J44l846A~md#J2~+Wbs0N@Y$5GzW2$?Y~+DTu51I1B*UBY`}0$fj|2?mcFF@l
ziHJ`2(sHq(Tpb5ta*T5W<>PTTaycsk$~%1QfD&*d4AYB{)6+{+%Oq!=ks85B827`F
z@^16poliv#1PWrVi=P{F+<L8{o?UN5zro6!-@p7eA(BZVe?q+1`HEE3zG%b3KkZ6z
z;mgjta|YS-ULsWHTTZggR{fw%*He7+J>yXk&TlV#-CDfX!)Ok46F<B(uB()P(S1Tn
z-&b#j$DC3V7zq0ic71m`XukcZG6Et_c#^Y2dZ*iXdD$c%`GjN4Y9x6F3@|pS-`6#Y
zEIfZM!#jL<Ysy4DegN;`bJTh!cPKR-*>#RAKBwnd&cx=PvG|JVqv#Qc*=0T<-&^zG
z1s`Th|JO~D8JiXA4cm6jmw449b_COhQIH@iO_moEeR&RMB3@|-&$&i|iDLc<#86QI
zgYWt5@!7!I|4JSCosUWM82VU6tW*y=$by0Dwk;0CY4<aX%Sms#*-zQk{6bHvD&!Ps
z@qi!9jT3xI`UqVg^4JGVaahg9h#37^zU4%~lG7vjRJ7k%X6jw>7Dl^@Q=Wq-8<Dq5
zD2v^w7l8{5lj@7$vmME5hK7btt&f_}$9*B^?%{Y(8A@dk#>oWVenwg$Fg(VzXnk6t
z-=Vj&M&f(>5|ykdAQ=^!TEo(^<g)j%{2Q?6Cd5)mAoYqrNM}gD11FiOi`A!?daIBI
zf^LaW#I-Ke#~AS#wBCU3^gc1M;Oy{Ma#f?j6_{iX0eT4|03xsfE%-U=hJO*}%6i&}
zTY*ly*T>G`<qSU0-ebQ`^c-oY`_=qYP%KX@8}L6^E4;p1a*D<s?8?oq798^=wHY}{
zYj~)1s15?n+Q2W>t<(-g308pY6M2!L1euRo+zI6&zHJl>l_lfuTL|Jr*MSfd85TRF
ztMq=RaqD@GRwnNj9C(d6Cj~NQ+HF_gVG)bmu}~QFrKAb?wp%N$O^xcn=r(ftfRveM
z-?P5xgXmS$NGpVWn6(BB)^>Wvm@}B@*j1z+Z&(@o!&SoGCa_aI138w?L@!~ZAU1>|
zJZ^WrT7Hl4G6=ey0UnMCj?LZO-GY+(3$u|X-0CR9?bZ$c=Qay3(jSZf+qQm_P%5Y+
zV3P&b-HcNi1)lYhC!ozj_XoU1A=6bKW83+w^o#%4ChAiK9kQ_x=Qm%5<h06E@-`wZ
zfrjNc;*lsHWE9lTW0vqI3jo#14)TMXbb1<TW;>CsvKXarZkjBwIA713Wm;6P!r|#;
z^$8rC!uxBw1KPK{BY?3J3QH<rCJ6LgtI@Z&DG|;a?bt${#<(Pq6RSF2595A3>3<>{
zi`&ulw(?}?F-8i;^PI`)V&!@RRC3z*hofK;7-R0Pw6z?;ti1(bjZ>+>IBc&wi20})
zgAcR=@kR0Ap_9#|0a{vvaXkG%#bC(r)N}X^REW_mSYV4K0aX*~dhYqSI>NA_=Wo&Z
zi-uvizWdizKi-J(Qx~I9dixnikAL(>@aLll=JwBPnTw5fm0}qPv3Fp4!F5ilRc9e=
zn+x52X>=$OiS+hSV-9pbi*f(A_G9!`7(y1>S=7M%V@ky8k~kX4QbW41`C7AKr*Xa=
z)m-v@T&uBAZ5Cf1flz3&oS^4*C8#-CzGLXy)+mPubL7M-A3+ZE>*Lj~g78ILD|&Ez
z?+^$z6jy<`;D@+uBBv1+Zsa+lBPThv6_yRXR*wtIMkf0<&+U(@tKjeltScjEGU+n>
zJP~n*Sgzg(OQt?CA$l+8D#zv04BgT`r;X2lUxWPKfDB1JB3?LH7n>Skngkw9NuMr1
z)_Y0@3XZzbyg+?uo<9CO9d^OD&|l|PZY;1nG>iutQP;{f;m`FzNSBTt?M4mD#JU<g
zfsjs$FX|a+8thNjO_XGc;BY`kz1(P*$$NWHtH!qBJ~_l0?+5Y{PRPSIHa1)s-S%rE
z@X*<3pg(~=uWhkF_DS5~HbHIcPFu|!QtK~*RDSPfAlGsK((RPT#S|DR7aWst{C?Ns
zn9>qO51+vjQbO?7>{Uzl0l<GI<`5h13Ac}bo{jUoEFElSU*RDu0>6ILpLFuAMjid=
z*E1OAr2bO6elSE#aWG;^j*D9(4z0R!o1gP5MwTz`2mOiZds}VafrHs(o`+{dVF0nI
zE<(B&A9}*5D6lB$vZsibEtviX`Q>j~hW~=a{^3V1X@1P#^$>)t%B13`sdt@HKYS<-
z5<LEbARh_oV$^L`Sw%(5Kto1C@@gozfpdlW`fVcjX-IU;*mJk?w@rwKsqciY0~Mw~
z3p4$i`WL_$XENwV+jnr+U(!_5?R9x(Rs-+Q<h;e%Q2J%o88lw&_13PKhLF*j4<Yv~
z#Ds?#Q2$u-(LHQ7c-9L+jh7w}Z}KG;VR#YqU6bPmGd#Q$ZjBa*fG`R?KMs4~eej$t
zeydQ1>w?88paxm^KZUKpVX1OSfw@6(UY-TW;OUs=!ZpNWF)5~!+=<oZj!yvL#2V#_
zoCb!$O_5RldLJCB-lP5f{d=B74gCk?uj4|>JB%9|U#C1k2YcL5p{)_|$o-`G`vW^v
z2O%X_T21=AMZ71<of>oMk9K~C#{OfM`t!Hpg5u)A6!7xQzEKIhtZPq?vqOj{g_%Q_
zNl97Bb3ku23^oCVuU=>GBuW?Rk+YSYo$J`m-OLz<A*_o`2BO|>T3%p|^9<bqLJeBQ
z(&>tt+FI{Kkx)4Fuw$=z;Qlq>(f>BbEPJ_!dLfCO=DFX1IE5qXW-I(;ztfWGSA;WC
z*18ZhjxE!O6X8w-GIG(#V@Zp~r6rwP+k||KNy3q8CWB+_P{@p%&@)8;4G9u&lamWG
z()Pe^&}g_a$3Ee(J?BaT@*KqOUiE|@o<5P1*c+PFMnU6-WSecwP!z)MUmXUXK6JYK
zS{L)NBK{r5uHOPQe_NY{h_DQ6M%kxL_|N(r6}%G>6^mC5sEkx{#DilhrV2CuzI*#;
zKj%M0^9X~u*G}K(M?MHy7&v@%{4%s=fY@_{F|S5DU#kX&S*Rc4GrRjb(1g|rli0)K
z)7!bB8kCH%lI{mb^k$b7^iu-}VoIF__Mkg@-a9Tm-7oytt8WAFc(YPI&nDvqc8CO{
z#Darg97Hmy7b}-Xx@a#DJ}WO%qQMk2%YQejP9Xa3p#h+zrq)^)(`kgfp|JL}Fq(f9
zJV^cUVeNY{5RlN6+HrMp^ESiDgvb`Ka%qJqkiPk!glc1^J^vRh{}&9K-%BO%BbBsA
zfqYYi@^j3Ai$VBS2Vbfun_aAyxw@b9Of3QG3xiLU<u@p3>Jb)DmD<tBrQv_31ruie
zSJ**lt3ltv)-soI<>jK0GKfKZxypypU^U02ugkg3tW`HSB!O>$u>Z6Ew@M?eKjHm*
z^5b~;@$fG<n2EskUz#Jt;PcdNj&g@;I{d6#7f3KF6nTSA!mks7@4#=@yi5HNRAcn7
z@xju#yntfKWUdW4y;P-nF|8S;w6JhFqptY_IB!l~kxcJ{BM~=(yZ!{n(fjB1iQ2aV
z0JjfK$qO7d*pj{!<8=F{^^*at%DFktODzkWgcuAX$Di<Ixjx0f2fxmtFLeyK8!!W(
zm@4O^rFk`_>P?Hnbb5K-lfX2$^)Q_MBHViZt$5|%I-uHd{!-j`3*JT7oe^BCaO#^n
zBu8HKHR^b?5@OrG5uE<~X#U$P3UdgZ%JaZ1mR`9)CidZAPRT%Iuz5XQ6Ns3u)8XTN
zLN!QlBW;%H-9Yv2C!ibDOK?m}@C&ouvW6~jyB>Vg;5F!c#NZ1$BDH2-#K4d2Yxx-T
zjXAi#tu}%}KHlfBwQ`SHY^<%zm`V`W#l~4|f$&Vv=f~@ZhNCa=X)tL$*nBfoVOG$c
zmyLM)bBi#@c~H9pdtK?-h$Tk3j?0vZPjbytYc79*IZtUgpG<RtJFTH`jOTW$6{>M2
zw@V4=h+HJ1h<4}mCa=hb@*fIwL0zh>x(Fo|ogzIk>CU27rjlF6$(-JZimFK$mu;w#
z{YW;sBrqg1Z|vk);iU2-ZcTk*HLH>}Yq!j;M=jH&0Wi8&hMBH3V8J8S78VUbn6WH<
zN5G~v4s{k96@^<7J;W2|V(6_xjC%R+Q9b{5c^?j{d064~W@*vPFiaJJvC{plDoMoe
zt`&g|Pbz$#v-yumm%xd!E88%~u2M@;eUJfvd=rM>@g6AjXEN~Q0S?^AdO)gD!9wvF
zz*08I<F?NOH-n}KX<7jETKDFqn|W<S`>KV*Qj<e7B4;bOrl$ZP*!4b#ACJtR2VErt
zWMdvxcnFxBX=@HAF*i<b$%47)ZV8BXdJlkr=~9Bgl*-oA@QkTcyLO8Nc*hkO3*)Ds
z$*MuQ!|<j%5D^n^$2&7bU5euID*#pQsY^irv@e$dB3QyW0{C7>SM>M5Px!eQ&Wf7J
zGGS$ghSf33t_9?*YdD)3gcMDRji#_;(bz>KY*|eD`~(HH#@a`ghTLfW1--JV2d%oO
zxVXpGBAdOghn|zYGi;ZG>XRe9b`-My%8%QGEE!_nGsgVCRaGj`$4#_D<3{!|r_Dur
zLpZt88+I&PZ&^5#$?^_q(3t2M7E7{*hlt5<&xEq%Gx?ig_n}FSLFKTQYq~nGL*ids
zy32SHhz;9%d$m(ig^)>i(xenMHAMNjNKu6AVtQ(ND&*Jriu)r@#X37L$2Zt?lU(5l
zlRWgY;YhTXr*xTKSpfkT=#!%1ld%PpqEJF`qKY7DLQymv4r+IjNAi1{)0V*a6Vv$v
z8{zj1OI>G{wluYDwY44Tqg#V<JA5=t2K(cG2I~IxioXJa=;pKRnin^6%_e0xDctu`
zF6osAryUcf9`?!M&GQV_oVVKYE`}Gq!#$qls<URkY8lQSu;15a{QT*I^Tumn>+Ts?
zKnVU~5x7#8=DhA;>Y#dgFyH5Wa=g}40!H3@ph&5ge2_5H7xs07%byF1N*Zx?d%L#~
z8^C3=><h;sr@r~_`-@?I$=()#Y)SyTtdXlV8_zh+=A{otdrF^)2f9@K1<ox8)jD%U
zDgPxfE@3wv!7q(&djv%w8V#%(6eSOlIfjAF^8luXP$+`>fP(S$@mh)RuX|PwuMD^e
zs%<#4P9UNv1*Bx@1?$Kb0EAmz+gEsUdY8d8V|U^eC$Bw1h+PNMc9X-=OacAmSrFcY
zL#HI_(Y<>DCjSluR9hu-X`E#HFx?;hVc<)`uxRK*pPy)wE4_cx#Za*Y)_a__QJ7|<
zeaOLbOJk@jAdk?Ii#C-S`9PT0iP5o}#32L1D4{L_9_QxuK%?k@9puI$pTX<j90FW^
zzPE!1|04d}4!H1_Xw{e8fUR%q0`ZJVyP@oB^_mIN8pZZfrM^H=^=yT1>8k4uz`B}|
zSnkkp*U>ojgek+|mq^UU(&(;o+!_6IH?{5BsB+hNL2Am#c!r3{$Trv|iv9c&H^~fN
zK#xU`8;NRKS&)<SVLwOu@Jhhv+Aw7(Q=lWD<}QMn`pcUj-Tp?vuS(83YTjpJ2O1Dc
z?<tJSye}-Y(A$g1+fS%<NQ4ZHb6>$8Z)1F=7ha8)x^3)YVqfbI>TJ83O`0<}C{Zgf
z(W)}Ye#M~n-(U+rUuZ=*+m2Q?5!}P>WQo4a6}uTRF;7$!1&oA_@Mu4l^?qn_y%+Ct
zPrp_$f#5KE`&ZDo{$Mo~gGqM@7+{63!sn1t5Y-UwLN5qeCnmy>b8<Ecox}TM@QVbN
zk`iC~(ZRq*P_Lqy2Wr_%)fF}cx!F$_DUy?V9e2TtWtrn48ASs5Usxza_<2(Y*VEPK
zm0-9OL}e17fo#+ais`|NxA>nKsh%%Eef7T5b&_`E6KOm8RIRpJ#R=wbLD*j)j|0ev
zFFP+Dk!(CR|C;pvb)NEf5Hu9ZNap7a40AAvh@I+rbg9iD;$ltvxFG=_$AJ#!*_*M`
ztzib<11N_~0U=V@m<NlXC1!gA=ZrI;C=**XCt;==f`lZ}t4a$U!*f(>)mwh*;cw9F
zxa5up_<!C|JRQXy_!Wg(b>?eRuxQam@==doIsFn64TIN1N8#`satn1mAvEcI_lboh
zO6mbN{3P@U`h+uDj^rs`<?BeT!J?;Md2fb|SBzS5Iar@TD>V3Cui4L(Yrm-nDbJ<+
z)j=e_X%*na%>zfLsZog0FKlwZ>975S9?RU7eSC8gNL?M`Xif)T6!&E=4;QTxG!bN0
zJN<`$g*MrJ-Ev&j^S@drk=LsCkR`q@ApgyF?Jvh(0aOO8rIZqn3k`PcM;jtq(!8no
znW)z+`t=v=tdgo?JxBZA2^2Re-<s_7$qL+t;wie@p4i(Bd^y|uIdrmenxE+~@TMeU
zaeJ_~Db91IkMXDV06Zi!j}UtM0uifu(kh;BQBfvx_^x1}D%y;B@pfU~L5DNofxe8C
zna#BU@ZuWu;)FQ*w1LLxC*~QKu4{>8oBK;2YZm|*9zX_0%9Nb#1Q_I^A<_IdMRk2k
z2jqe(!kz5yrzZ2!=;vg0PLE;DA^6RR2?m`2q?m)<=DOT}5{efEXV#0(e=XQW_L(4=
zZNwei!u(p(^sD)&V=m~0(RVrrb8|8UVDYU7?7C*yvjrwkzf0dG`PR;2oKn7vWxii|
zIF!Jk3e;CKN6Rf(OQoF5BN#>>f#>^U!W9?&EGNMbg}L%OQc%L;DQ2GC_q&fJvxvZk
z7qp!%b&*{0i#CmMb%#yZw53*$%+8Nb8(T%0HC%dwNH2^=B{SbvYN5bZFf1zl=>1N}
zB$BIT86A|A?>#4+ouj<-Jq|dW*tMtNwet$}s|@`2t>`Z0Kd|;SqXY3PhP`es-)}cm
zi2|ziYwWLcT#G!hrlMBgv#_FS(XjVYnH*f~?<HZJhCn0Lyp^cEsm<gTx9`Qa`W>6q
zbfhTU{E4-fr{T_6y5;wkO{`ajQP<m0E0Q1EggBgtxEupDSTgxM)!6Os15`G&(XLG&
zuN1A~Sye%?khSwUoft)GQ04m4`lmj^J^1LjH9b4MnBbs-@}eJ0{-;FQ#Dr<5-y5Yq
zj-GB^l2tSxd%Qjlk<OJvSszm3uA>&cS&1rMAbp|s<y@ELrf`F9(gz23`Q>+cLO_nF
zRsjX*heyx$mhX=dd|c;zUgdrN4V?W$+W<O;JU!^`9@bmj*SyDu$@4jp@b{xJ4u@E@
z8dX_dv>8ff;mncbs|Im|Z}p92->GlyjeLsZuMO|8U$|S1C8*nb<!i7_odHrHE?r1s
z>nZJZvHVyN(#DVPjX^@z5EDxCZ0G6~3V&+fju9k(jZHZXd>nOsZ>lku>onMI4p@Hl
z$NEi`U3@IXx^QGoy*twgd9mX3#|GqS`^0jYf=*CaUbx{S=GR_`XYxZTBmPlO$M{?A
z-o7Q~uazws?+*AN0XCvc_8u<Gqqo;1SY9HU-<$Y9;~7L;MSVuk6YXTIcRN|9f0g)*
zbw`1}vX4-V-o>i`ZKKq{<%yJo-bbgM#E#vpFngbZ=#Il{E;A*CZG1|58%$28ZJ822
zmY-1-&HFwH6!eYK-=&zDB0;@!b0Jswe)gBxx33tA#jcm?hDL62Tps7NT&Jz>zG2W`
zWj2PHX+o<YL$~eTw;wDs55cFU8&@yW$OgD!O~NG@LgXB_v3=qo(rWM;Ekw^Cm9+%?
z3DIM-uVMNt;PgL99V4`}2HBVtcK8Q($H?aoxNmW3+gbH@<i@3%*T|}E9xm>+*8QCV
z!Rzl-JACe7?sIyX=ZX26t)L8<3`6g)Uq`e9PTKh`atFxI*}K2}UYiCPbvWriTePDY
z=HQV@pTFEaYX~q$+2F96)oHubdZk)#sk+}}{^sVK-~zy&#Q>C?a(-3ScG$3(hqe=H
z*GD?JaMPIzf?gI%z;QgY^V2~N5Qk#z94Ti~%lB=(2Llk+;qU!S0_6<AOey<~(f_13
z{h4(Gg=r5tX3!Jm0fF?i(3hywvA2?|+*FT}_|HBp)JHvnhDx5uGwI}G;!<|#!N81G
zp!mmPIP2c&w!i2Bw!xy6Zh6juEw*H8f#w*|_Rw?igc0#*UT9G&U)Eq}%^g?l{I{LI
zeJ1N@0Ym4AU>>kpPeMc4RN}+Gxua#&j65EUtPXl&9Ei)J)M?%ldVT2^Rz#a_wuozg
zBC?tarH*8l8v1JWa3ht4UWK+&EY!vu*3|SXD#ub5F(@xob3_pVN5wAFj&(H^8sPD<
zc8kfErpRjx6w$mnivtW^A~Y=iT<8R>8tv8VMDQ|5cuZwM86=jeW^aa_&q<zVb>P~Y
zUhblaU*nF0Vkvi_(YI%3>2sA-oY@Qzu5C^Y@OEj8^UbLslQ5g_JK7P#*N#^WICQ~(
zeeCeKH}BV#Z>6Qsu3^3DyIT^x0ut+bvTKnqmHL+YB*}JQlBg0(E~apfsKZg#veM=m
zf!Z)W2FcW^+^4{oxxSp{yPA$G0D76A`Y0Lwrr1OVb-AsP4<ce>VxLHYJg<(FeSe;W
zQ0?`3*e*52mbHOmc$foM*0(lD@EX8S@r6!1V>3);Eh9`0yls;#W&O>5b5YzbN3*u+
za4HSf9F`2H$fu|+U@CWWCxT>^rBeL<MqBcA?-rJCZ|9aX5aS}=XRjBe+A3Y_&CEb=
za9(UB>6d^$W00_Ke||E5cp4-X=I7+*iZw;Ld!O{d?$<*JZ?e9Y-mgY427k8ZOp!wf
zy>>%dYXhk+hf>=HiTE*m5Mt3aiQB4=OAl(&lsJd^aUMciG!a*c&(9NysrWzT>HVu|
z_^ZW9>Tg2&s5)l=t9Ti&em`dgpa=Kr+=ZdICKkHJtVD4lkEI@w1Md-T;G2ZtbAP=d
zpKkP{sQLD&rH>1}n>ug9{BxFn$_tD4ktkgdQU59=iOxi?*|K@^=gpw&oYsA_OeZ`H
zP$(58K6ppMcqr(fO=n{Zz=k#a9;livFlHXBRvU?d-${o-Vi*O%zWgpg+9g?~-VY<^
zoJ`UFLn&YS^#x#p3=$c#qn^w}3&=Iz08|PF{D$=|aJ%R@jn=)a<|^`I&~Q(H^2pp_
z1_N&3m6>23eEYR&UjQ7k^DlSuhF0Kan@4=x)$X$Y^8Mt(iU25$aTigaROlha+t0y|
z<pXMhqm4rF#wNhdf|T>6ab`e0j3@D#TnwocsGmx&zLEr+8unc@@dv=c4NSDU=VHAW
zSn%BbP*^|e;gjj@76pGW2oerTj~QvbDCpEHmdKx#Y1Rgp`eBR}t!w}<V)VDcjwozl
zyzZyw)h5OX{N5hQ`QMi#-<u*CZS+Opl|C55ErdYpMF7Nu%BC%2rjR&5^qdZK5jS91
z{tSb>H!S!QXf>!@?+Yl7cwn~;7gl*?uo*ofrZ+T3Q#q!($8}7TrgP;%;A>sPk-1?=
zI{sATYr?lQ<iH`LApHM-VUR;YoF{UiCWOU_MD}s{w49)IHOg?=l{%AUR^Jjdh(-LW
zC3>2~sLe#@E!#o$D$(*yLrn>|7fLQ)y)PJ{HbC=5wwqjS49bNP;{myXRL&THf2*_*
zHY7Czf&#2eg0;)Ja*_J@K557@03g*L(uNWN@_@Iv>2r5uNv0^r=y=Nfcmepb@6FdH
zxxjvT^?k8Xf08E`6V1UDib7O{8jQNhDy+A;0z&~`b{cx{*I>8LRzgyJsu6PSqFIF4
zO3T%vCGZVX>ad)#<U-RSAwvsXTta4kp$>>Fm%H#7@nIdm^vuKQ+EL$lZ;of`3mpXe
zJy{0xO56PFVA;z^f(~=Cy<5k7NNW@!yH=Mge_9jqoCIguf%hsAu$ZQi&rs2Bw8ik(
zpUCMGRe|48Mew4LNhVz;wGM_rt_Wt!*bX@Yy+Z-ZO?!@I+BoYM;6=DfwSJRjL92G?
z3V^GNFor7*fmsK6Z`j+`IRM~FbUWz{+jx)5uiJc%w5}0KvetABCg-Je$_2?xvzK5o
zsIjo%)j#sA3~l&z_a>yCS%C~da!Ao2Vl0%DkZy}CaU`~9-z1Dns5kT$czqpOg6v<%
zj*Se7RidgD`E+iaZ_k(h5BR)#&?Elg&K=?F$b>)4ALpQ<%sFG2xRoMs>-7|^+UtT9
zBk;vq@d?DBHfCA}At_{}1q7V-1_8ySZ7fT}(h2m8a@GY<u)fr!^v;iaqXArwy(6Bd
z9sG)LvN;$_Ly+3G<xuTnn3-)<nV{BbhogMw9tkqY1ygJk+fP8}NM^zcHSi*|4#MdR
z3ijmb5>;iM(k;|)IWL{ID-+!&_{F1%`DO|;eaN9D^EzGofw3I5D(9QL`Zg_$qnjd~
zAFftI#{H4N*|gyFOSQ4(>E@>r#awYEm;LgD>Fyxk)MYZ8%7F_EOwy!&Nk;GcpIjfA
zHU@lc^Ap9notp@RQPOCl=cpjd4(NiNMf&aa3|3T!fla-HI9HDX0}z(3sD=3+AN3G%
zwW5WBA^|s+p}(7?zX?93pYV!m$smd8f_SH4(H5&wv~KaEQ%DNu$rJ2yH$YYpT|)4u
z>JLfH;{&^EaTPzAC<=S0U2kYCzp?NaR1EXkGEG&NL+P-(Is7Nk;!O>}C=9gCm`hmM
z#F>YGKNTeXh|mfoCZE_}3_Li}{o|j1sqmxqzNRJ(oSiVtwhwZo<vEn)brQ%=Tz-^{
zgu|=aYl>LD?getKXBcr<qw#cKc}ja{MpOWzGKcNm068Hw=+G>XvA}>?cL#wjb+_95
z*t#$Qb(e=<tJ0Q8FX>cE;_JKt$)2j7O^FqNu)I>5huop%m^t}C#<pO|gh#d%*g0w6
zN!)U6JDM_+^n^zmJUlp16l0Z=vE=J@+vYj<_lvsmZ!QlsF`knJJ=0lCgW}-mJ=qxW
zhE*DK{q%#EWxt2Xel&rh&|}pf9#du}Z=x>>35Q+_x*s6V;w>DrGM`uUSZtR#(`P-a
zRdl2Gd&bDqPV=O`-W)bKZqcVxw>5-^OVeC29Z8glgx<w)6WE5jLK)ALsG2-Oh$rKH
zfw9MO0BzRFzuL~au0r%HH(LBdb~)n_kEpeEB(9d{)Z(kYe3BwI+X6|tcMb<E0J^E_
zjlkak)h107$BEWF7=Mm3Nk`-$hxtwT@FxEKo%(%#`;R7DDZ?)@+fBrdqJG0DZ8om2
zl+)pL<jih9oq@~`D{_feFmNuXuv=_crq?fiWQZZ^OP%3aQA~HUtX8DZh520A8P-83
z%Wo=0iY{_`42MB&n!FKd5-!S45-|c^X}-IgNI0Jlc$K0N4C;<DrLd-xeP*q8J>*uF
zsakGwh!egshD}?Ip`RtN&pyYKG(?4>=#{hg4rCyM7G~&yFZQfd3vA(kuHTYNHEE+y
zCxc{E$Dq`k8qT4R3G9)rt}Yt*%dq4Fx=}eyR6xHQi~Wdz&2)O7DOYaZD~`QJR}{gJ
zA}}A4x3G)?(!}Wx*Zj<3LuMZ}Lk?J4g+F0A%5RRPOMq5f4R#1H{T0Dsq6)d=hN*-L
z#iEgGBEAJ#hn67jXUul?Og6Q(c)2{B6gjyxm6q^A(m0*XjA@ikJtnuB;Qu;F`sbWU
z&=FIx#2lwsMYPq`X!-`NTxa^11bsBqIu~5zCn<r>FZPUV{@CMPk40tOlI^i@4M{{p
zAv=b@KE)NvI7u<u;ALs@FyW9wJBFj(UhFfI_k+Gi35Quv23Ey9%9vEu3QUfsLG4?p
zR;IB=#1uQuTv&<rLLpFZIy>a{i|bVvID)Wms-&hVmM;8z7U$wRF8o~~mPWq-*XBgU
zXrmvM{5{+Fas%L*oEEod%!Z7Ih5UfMk_EDeKA{(1$Z(nU%HSf|ot^Sx+f^qycRs}p
zNR#mS-a}_*cXI(JYTt^Kmp0^dWx#93WoRpP3o1!H6vJ#Jd5uElrLg4zGR?6TmYhzL
z{fb><Pe^pA-%0Qj)*m)KPycg3@rQZ%U;c<r0*q{>&t<AlxZl;`vWZ*hhBp|fRNr(+
z-jTpXlIbCbLNBlP1AmIrOYN(10fusKS9spiNqH!|lk?rF_3qF^K;YOc%=f(TgZkd|
zy-D~1N5LUR;QUF(=y14DFWQSB^cqA*O`nZ(v~<&|ue1T;!eN<)E+NR5QnUH8dX%G)
zBkEvP1(u%XYtL+xPwy?4x!>SPP^^oFTWz$5wyTz?Gz4qZ(K>^(N{=L&7dF^FLA1{L
zM@p$@#)0z>C=S_1=T0VB?~;n7i#4Z7Lw@(QpzZf)gv(?qeD<qZWnG{lDEaoyt3=Qr
z8c{rWargcX{`}sYk-CBuy1zuVRJ!GCXPioMhj@%-wVB)Fd|+J<!SM8fJ=qs2DfS&B
zNiy`oy(_>~V2Ng+&Fv%rf%aVtOIKc8aralg;GWlG2RKaqy*e@lxlS6tZ`%K}d;j+@
zz(}CCzfW@En={64g2a<MG8^YSiNcuKUw!6^#>cb1*+dtF)>cd1F|J=2!DZc1J8V1x
z>cqq<lmMz0tBkfO&?_l3YW>W_rEfP-O?4jq!1@{!D!ZN{2<d_5DO@<Q2iT>JV`N|o
zOztRsfSveE(+E|uLdU)I;2Ac9noNnk?$V@$u^DJ}(v~;5(%?s3cs<T*Zb@BN9ETYv
zA6qz(5hA}-n!3?wv@K`1$(xhgZAzSzFw!&yM*$}DL$(bn0jr8^@^c~COn%+b3_gj&
zg{^&C3jtysd<@Cx$QP4+;qFrsmHHiBD>78u`1s$zsA3PC{O>)zz|7#iFyRG+UgV28
z^dW@Har3z<UCq15NF~55f5WGCd9d=4h{tuwMS$V|dq+-u<m~V{z1L!(525Ydxu`iz
zzgs%LmRZWX$SfG+s-z8&oVacoQdbT^NauB*EZm=x=eTqy9>GGu073KDl}<ZyNX2f4
zip|azj5=P5C94hBpJ+0r-N7KVL^KT3(GXN<xd5&;`A)qBG^ItSTW!#tVBW&uFQOfQ
z=0h+3?nYAdy+kze)WB}h(+#8YM93kTw>798^T$4TELh?TL)nHx(8%FzKRUj4Sy)PW
zDEIg&URYnpC-~sa_31AGw%i_2h&&Xk7Z!jijBXe*1iB5w!?#r|04+N80#K!z_w%6X
zI{sBjkb)%g;Swm&@>VT(H_w5y{oafIcX^;1P@V=A0lZTR;)0I+K1J835Jklz1+vnl
zR37u)$^5drv2H*Nm;nSWxC_qDzk2~>^+hO_=(ROBoKLi0NpKF(>NHh#@1y>7-x<3b
zm8S5$JmA7$14~J`Fi+kL(U*lIlo1)5miDYjqdI5nv*osK$9-FgQoi=qZYT!D^anPx
zkqS{eVCJ6<YlZ6+SoEaYw_}cK@=$PM!W{>8=r=q3zvy`Vt&#+l?zN}uUxk_d71NeZ
zR1g^_7HS%+612gQ7`wS-CZhE;D<V+f{u+W(huk2L5K#I2$*BX+NMJ)D%-dt>JYTZQ
zTq(pORlc|1Ml}_y7AXj|-MQLfpdW(pZctCWQhJfvZ*R_aa@ZKBn$GPaY7JjK2{PxV
z!N{N@CXvuK>S0nZ_iGOaCxhFC-ui?*>dktu6an&jI~2_0BG3s)-7M&QbSwdd%`7G}
zF|V7#nuZjHzV}5vI0M5_E*7j9Rl)m+hJx5AahIL+`UD4@KtIRnq6r`LFe|v~^#^bP
z1lH3OS9YP&RbjBOuvm^Hv#9yDw4^z-)Vk_r$E3`{6G6zd0vTv~tHE=v2K>HS5QJin
z8bSY6;<&ZA71;?1sJGwn&>~r5t+}d2HvSICvguLo(E*(JIo|*eTc*(3^^F_5ac6zC
z+X<!?zJ^o@Sj6;nTcbYKJzS5E;94J(kxJeJ1A)4hJuY{jfv0am-7w@2=$4b1^(&Ms
z)F+OrV`~alk-}8gAtc5=K<t(@m3I%nVbm8s%tB@>zPArZ+q4LY7#dS!b*HX{s-Zct
z4U2Sp31dJ1(3Sk<dGwzz#^k{otsB*ADE`_B3yD;W+{yYL`dKbgfkm8ZccNmgi!}bN
zJ;pjw=sQ5`*mr7x3<jo1<Df+XMS{9+vvVx6a;uvIqa6Ja8&ifLEtkt4x*Ff4{F}XL
zP1L8{qT6u-zCJTRz2mO&&Kb%!48ZmE>Onfh0{3j*Wpd;-fwYtEEBKHB0v=bLLF3!~
z<1=sqa_V;5pplCr6dl|5gS$8b0PeJzQ=$kW;m=+_PQ$)nb&Gi#`~sx|1KRt7cFUQP
zf+Ad|pNsVH%967CFlT@rl}X5HpM_hutq#cypduc_=Qv`6n;ZV0JJ!?Y2}ELyZkOC2
z+mE{=wCwQ;=RW!f&0=6VO<*D~+<rLy`2$(B6G4^R=*MZ`zCfC>pr4gqkK^`8K7edx
z(-g?0U+f+->u^?rBi6JaN7r1wI1H;JcJAp?;R7$1x9oAVpVKXXwGLFnnBHRO(6*6F
zRmM#5e;fJGVcs8dph~_T6%i5V1g5N&9)PD+cYGF4$aPAQ>FV`YdeZ;AWq&L=V(MUX
z>c%Ma_FwX972{`<U#t?BuYC>>XVk+cGoB<qT6l_z_7>m>cymmCweYaPKnGr1vL2JQ
zNR@W?*<>`OenH3~v@{e&I1fA+s$_64dO0oy_e_bL#xvS3E$KEmCFO5#_77dcH+``V
z(DRLEN@hxI7F};RJx#j4+zK}#tSRr$+SJ8Ze)LukXyE5z=408}?0*f&JK%XF5fj}y
z0H~5?&>cXy9gj}k(QIEOG08s1J1610F%EL7l>m0ln{;WE6V&mNHv2F#53FIiNLw#-
zBF?P7T9|3TToU0Lg|(?Hyog=h>?ylGs6DX+*hzEal}mRh9%%Jj^rmWIqQdu0mrxvZ
z)34HZi9nel-fX+9wO{|($R-qzOt{x81f9e%Kk?;2*PVdNo{G!$v7v?8o`bFAR3uBR
z<wD@1){EPb*;c02kJ`5YFbKygTQj&3ia{t;-SK{R=T;sNarom*PhDzSOiZx@9qoVH
zQ2&=&L{bhK!Yuq_djd(^TnI>VRMK7!Prk>-$)1w-l#Zv}t!Q{PrkOuk9UDbJmyQA6
zU*&s;z=%tMJr#p)b9|E@&`;8tRHyD|HM0WHssuEJj@d75muQO>@9OL4%!cBnaF}#7
zctlJm0=oGsj6^(dd*fqs2+{NCf|Kc~$o1RJ69jyr9E^J%(vK`Jxz4|T9XGmu2oGcm
ztpe}QH1=V&_KltJ1Wm7&J(j58qZu%mr(5*Ro4N462(O!WKiy1p?t?7pwYp9CSW2n2
zs{yFTZ<SE1#non)+x#=BI*T4STsK`{tuV=3Hbd>B{O97oeQVW9b`uQ@?HXg?=GIE-
zzI#!;;rq*~2nnZI6E+Q;5HV{k@|>TADG|HgJcnu=e5P45xNqgS4Bs_E!QNPn%%^<D
z%k?L@YLgyfGV{;*M%oR3=Eo_FLvFyM^xYgo$^Kp|GVU{4{g?8^aZH*uc|=IRqDKGX
z$a}a$zObj;qopO^-4$L(3>HtiPg=o?Ga5}his!u#Hpk$Sv=Dlo3#8b(`}2SpQC?H~
zC>tXUD~>ygM4$q6@tH9pL0AMtc*^9fy`d7){b0s}L%jC*KHIe?xbs(xsXR%W^DgF`
zNdCjsYX-y!_ofUDOf|jIeF_y($UCrMh&Ok2efG*)B{KWI;yqSE=?m)O<CGek#mktT
z_e9-&f^nU^jn?y+MN$FYO}GF{lTjE)`v0wa^JolqP3w$UUf$<~hs!YQx4xS$aOVE-
z0xt6Lk0M2qA6`%9^)1z=G8U~O1VL?Dh6OCMey9-y@qBMp=DR&$(;?wkx$Y%_sys7d
zY<oiJK((8Y-%0Y{HljanO8@h<eL6-=Szhc)TvYh9PsD<k^e+VmkA1~z?B^*L2J-ne
zK6f5L@EbQ|21*%eU`PrIf}x#W1{K=x6ndLC$6Y-%Xwaa#nPt~IAy2z6komDP5g`Bn
zTdGQ~-jMpq6wvF@yo)+E-|2HJ*N?=qK>dkFK|xMu@M75DYrFT}Lk|t8{gy{dUuD=E
zEh0MstfVR<6De#tuK;af4njl<faEG6YY~(<E=X1t(Xa-S27m%V5wENZCdvySV1(O#
z^^r182=oz>O`+VK(Cg6@Roy20H6+H5z`^F<@r=Lumb4z?r>AHZKAY2rz^E5Fm(xdk
z%}gIHflOG<sF*{^OF;0i8<7PRyAnwM`u_JzU!45tJ{HgLYfhwuj!s&=7y&xK<yE}2
z(zM7Cv7c!u9ImwS#OA_&T{fwkZ*nj`PXF?k>gUyFiWm+%Jyn-E7<z3{rUWwbx8a}3
z#S!qT-_87T4N{r>{F3!=KFxpm=%iAJ-!><-szT2vZjc*|1`y_Re7-qPW^ke_OVZHU
zp#4=<`sa`O7q5`Qu2X_mFOkKvI)_G@2;bPqSVc4s_hr9?V&|aC|KW_iN634XB-hv9
zAFdqO@v;m(UC^XJhu&#)R(cn`T#oTturHk_(LN^Bncll==*FQXeB`};AJKe~9P=%&
zA<rzpP+%z`PoI_p%F;6%pwBG<8bREuHg7Xg(LfJC)=&i*2s5BkEPK#we@)NX0^MgR
z==qAl(4rI&E1QX1G^&jN??|gerC6!P7Z3?8L9<_Bqxqp3(O?;{bLD*C!F*BlDYrAN
zsyt`%#fK7k(%w(`@|k+|<`cpmcVMfs1RV%jl)Xy|9<!bf-{~NQ<1wHjlh0I^mWqT)
z{Fcd)N3%L1(%(N&f|B7(uNOf;W`6z+d-7z#`y}U{nSK}j6UN^^Zls5pehAq>s9It^
zk+TP&jCgd7husp$So6dq@w0(+In!01DPe^7)!`-mRQb4@S+2k!_ldSZ<_Gs2)}pj`
z)FtO|wzYf4@<;i86FFVo7s9I(5+tgCZ(=Z5=y|lng+ZJ{(dz|5i!vjDDmN+yHqwo;
zOuaJW+#3ifRdU7O<)!HekUsPHmK|bp4a)RlQ08ccbf4HYtvz<P(d+POOJOk%t_NwW
zKX(N7Kw)-StX*#jOk7c3G|1ENOX0wBJAca>N@QekvH+B|Juo#bNlxmJ(y{Qq*-uj2
z2hYE0TgB=yv4vQtM!6Qd)e1Onviw-enFPlk{HaDULgx^3W0|;_Smku^V+9DI#qUJ(
zBS0&h(vtP}ByPb|3^yPS>r))u@RtbWP#DYLYk8o}5dsCQ<=6H$PQMR#OTi+7zDBQu
z+78M`9L?ZKPS$@sMV{&7v*=m=#Lb8+Ns5RN&#bQpNPd)?v8&c`*cf<tN!UHGeBuDJ
zC_4k_a8k721b?WL9wc=U%+{FoR9fDAR|6GAbu%1K!;F7WDbUXcA8wU$7n7nN>0}DI
z8rSZ}3uf|rtEi~NYXL=C3a7)mi?n~CETFBIV;!5Te+Lp$91ILPVR2f#QT?TBK6&_l
zD{r{tpMSe01du-hB49L(r!fWCyGmp^{tU*T-^JDmju|=y^aEA<*Cv4ytJAGrH*ZVv
z(<KgCx$Esk1B6(yn|n$Y1<G>dSY&5$A-EL`(DpLCuFnj^FTh}ND5TTRVZApD*5Zg+
zrzwUqtw82O4sepgb(xaoD3%wvdm+`2@&X}^LN<-xdjb13vcv-ps3#f*^j7Ed>R`aR
z{{u7|*h|N080OYy+WZ|iupncOmM)J>{OL>UFEg2+aZDlR-g?;#Z}fLyALPemeseBJ
z_?2gUol`XaRv-NC<xpVn9Zno>_^jjawV%uN?K2~ZyVqqY{*r*&sP{T?xBZLV>i0eS
zA3qYpx(57FtNI{~?u-oV?mhrgXl#w9s*8$94sZiEj8Z=2Y>ZGoCyn&vnI5~sq9v-=
zBxw)Y`iL-|3K(d>bX0KTgjr{b(`y8-|9hZ<9;22zB_esTp+Se^8k>EV7LzlppRxc3
z1RBa|FKtp(8}Ojt+1L#@?vYmc{_>dtoS12r52U6T=H8Dd(q;d7FIQ8jv*ILPHJdXU
zPU{;@>6=VdL|`m<<6bz>>Q9-C{~t6N{-g+`>8csL?s;2)V&@Gk!UAEi)9_@M+;`Fo
z25nd&$KR%nLcd_Oyf<`410=sk&~Brpin+l<fX15RFZ!*{4?vi>jSIbzW_XO;Pw`=7
zG0B~<0Di+RmTA*ue2bEkxn$piid5WYHB*w0g!}B<Qu?#;E^H<ndl>QN0|gk1L6A?)
zl)z>tH&-!V^I93qw-Z7-UfMqG`FON;?!ePf+~dY6@Kdkf<x@Oe+&s=X?tUR4{XPIv
z-1V<drD-2@^%VtD1V9a!WQ8)I(kMC7-1cKTHHf)Eoud0A|F^eulvTlTu0@8kbVm{P
zdQ;sWoQj-GJRhnzNoCl&#T+#T%j_IEs`6j65q`+VGG!H0#d#O}+|LV&OFw;ja4Gq(
z|0v=89k+&xzi8Y+g-5|5<2Dh4eoR%(o0BA1J6%(OAbdud>q#UIW{7~Vj_#Kh;rs}u
zN=E^X<q)}o(_gA?q+@osB2Pa|_nHZ0f;S43TLpAx)vK?*9nrM#MnX*^+{$bsD3@SZ
zI3xsE4e0DZn~(`3d_2?U`39qZt;Y;&XFO9K?7ylH*-gbrmJh96>2k4hVHqpZ10aw<
zuR0mbce3{&hW7?QJeHY`rwGxUDDbR$HrFp`oO<cs07)Zbcfnvx1kLD?z4uQ*{4Lvq
zhC@P-f9@YarKC^7?L4>;-3<~eEA-sAaEjmBw*y9llK6rxLIL0&QCWA*xsQNhO%W)(
zK_l8AMRG==-|qE*;hdg7z@9dMc81fdf}j%(2#%6N*H8}X0LjDYwY%i>`PoFs<(Sva
z{w4x&rHi}|yzDD{?=F(YRqW-O+99soVj=&Jva^7Sy5H8nlnfyZAs{(`gecvJ2uOn<
zAt)VEA|)V=q>R!cqNE@w9nzhGillUhNS8DS{`Yv!z5jFWJ?FmnuH|~yYb+g@-+aG&
zKl^z;+sQH5Widh6&gW?QY4QdLQz6CMzh>SIzt><2aif1wnXlnJB|7PGL(cz)zA4k-
z*#ch(#8SS(r`vNm_}RfbU{_dYMIh?FK5m<TIh^`SwHxDa*w>{AbNJFh(!IGl^1(q6
z9v2=sT!VA98m;*&(?#({i4>g1d0sn<X1isn24X|_c3Atw!J&IY7ZI-%BWNud+D))d
zMj>n{%}I=}mox-lX2KggF_*TJO|W(yhvRK!&wTLQwi<xMPwL6vBm~>nXC~Rarc1Jj
zoSln*)?Ag6y}s4DLI_XVyj@3C?Em<f!LxCZEFkW(UJjU4)EF^n-Ic6I3(ROmni+~s
zxnW5Wo+|F6{;G2fuP5_gy1}u<jI4z9?%&<ImN;LEyI2jtywBOGgp@i{`}noLcK$U~
zIGu!RR%PNyh^$S}7W0eXY2Ft_VZ;$x<2$05aDD%4k*<8-(}1=|doEI;E6lA5>defe
zGSPeRc;rA?ba!I&>MTU|;uerPyXzBUqoJ~JUG&3bgwqXK3=K@jsAH=KGD=o%@sS$h
zBK|qri*t7v+?xC_!wpT$TKlMjuao5<pFQ+Vn!Q#UplS-<d^x`R8$l1nhOQ+^?b+G!
zCLT_EO+(IJJIWs7bZGmvhKf$VZ&KiVUxsb+%BV@Xt71le;Iw|Hddomi@%Ttik)AZY
z4^9ZSN~&Q!F!P7(Go*<LB)Bw|1@ZNzuH4I78T3o{(7?rdYvlCwM64TPayo;db#-+Q
zXkK}a?u&Qq35WT<)2JN6-v>YKfDg<}sl!2M<7ifpbPtO+_EKI4*wQxuHsqW=M~k)@
z91%?tPu!iQ?~oL=NLawED2SHU=kVu!)9N{0nbqAoCv(>J{L)iOO^ZA~Ue`kgYyIom
zU8#TFemswnh7nSJFEx*$P2622T5Rh5LS6jp*_VUnZ3{xK>wov~>!5ctUmw$=c3+q4
zqes7uZgf+drdr#?Gn<A3gg5dLl1J79pX|JxqSLRR3)Ks)gAi*_y@**on?pdsjvgjp
z`3&2v(MST4$H=>oWBEEVu`6!4h+1@cMr}m5qJm!KJH_O&9O`y;ZO>|s0;M^#*7h5F
zu3eTzVkDAW=Iay6T7(#DGn+kFidYU>4`su5Ak3Wo`1grk=W9X5QJHZ9(F$<fq7h`~
zvU3H4n22@IlezXNJttz<C(850k06Gj3xB*KL;ML168kbD$BCFV*mbWvQM6D;<_&3l
z&0EE&9Pr|+FeK5=@Yw`g!5|>ULfX)On}6NS21j!U4xPN2Ket6O$)Z+c?K8?tEZ)<3
z@PRjks6<)Iui`G}n~nJGj|?6oZCR$vfwd#|9vlaS=<P<lK-rAUQxG^ajViD6F>NZC
zGCJ{x2wqHL1vE?!#>LyLjqoexktINwk===Pic&aobt#xBFbLNxe{h$Hx*Z&c9o22u
zg10f)sEgMGN7?m)U3^iMxO%w8ijDWc8!?Lvvom<7b^#vxOGB4#Oe2OgC>HUDG@M$m
z;cH&}B7DF97N|MJ#ujSc4{p2`T$e{{kU0^_PrFS+(kb@mOiQR`$DbzODIbaMaR?)0
zJh7x9<595rCeLjX9u@m-+k=JEv{si#sQcer;QwAPpbilzBiql<+2+q6@zqi!#Scjy
zB}dXTQNJ~he6TBiJY1qk-hU`GO#z&#XoPhCx3nAhWuOP-GT|C3-5_E{$w@kC)M_mo
zB0R$H;Ag8VhSQiuh&s>8DTfj{Qw5t=Ogu_Ne9b$HMF`VHJ;?hh`BT-`pd?!6pqC#c
zNlHva@%0yX`or5v)kL1cI#H;+8@>Qn0fiZ})&<sR@=*lM)~`;{DN1U2Cx2<U^!&7;
z3)6PGE@xVcf!BO-xQ^-yYV0>8MSO0gj`XcmcQOZLK!HiUQWFvLOF;?u^#@hL;8Pjk
zDC5D+Q&J{wVw3Y%;<xYO#kf_O7JSyaXL4-h?jx(s{eE~s=s`t`j+9PB4Tj)`aw(O@
za8Z?zn#D02(gVq7m)`C|9<zeHw146qtT`M~Nz(`n#@xXC7Fxx5!>j<j;UCsHa-E~`
z(4rBGos(?*D^%(s3gZ%vlahdG!ISL?75U7NW}K=JL3>xbd9-3G3@p4Q2st>uY|DzN
zr>o(eSI!m)d{Dx)5I%Hs+zwG`J1gZHW(q%>1$V&_alrA!-Gy)d8kjc_b&kScm#onD
z6AQ!p-`_;S^*az(6>Ml<%j!#S;{QdJ0@ud@>zTA*vb@G*!gb|8YN=8f?sN|(o$gW;
zRvIq$b=75Tl!2W2mf(8uyEQo9`XS?)k4g`0<l<J$REf)5s(D(Da?r1ENG=UvWi%XB
zYs`cQel!=bA=Y)5jrf8a`ENDGbfc+n)@Z+1&xSj7NU|)6BmbFd2;ej-pHUZ&Wn6xO
zdJO59u7c$j((5`P8pnE7UPwSJREK_Rr|-5m02g)c5%}?7DY0%QkMskpNFqIjipC9>
zjI>8*ljLrKOwvQyGWqPzoR*`Q!6?o#it3|pU(W5z#|3Y`h~a0DyN9*r8H|5JAeP5l
zQ;|zeBZA_r{VO=}s<AIGxM1@6lFmG092Jdrr~(|uJz>+)=1T*(a-ST?mXjvhOc^lW
zM#EfON&O<uy|5#9YMpQ=Be`=dvX6U%E@jkRIf(u1bDJE=sg;4ofDPv5grI=9_q#``
z>EfL~GazNT#?+c2(5v!U8_%t)V71>s1WXSjI26!3K;q*umltC&27OB9M#k$Cr(c53
zz|u-g?-qgQ<tKfC+k8j-{^2#O844}38^qR0)V(ye*)h+DOr*zuu#3pUZaI+|jW-L0
zyh(J<6G%>g0$W&drrHB$4Tjv}H-lX!T9zy#7s|^7gRj0ZklrD1W*>YA0lA3;^jM0K
zp$)Csn(QwGKmEZ)5tNf~V8!p_hTqzN1<Md~mK`PvurtSgFwuo&@ubF~Sfua02JbgQ
zq3h!tdv-Ceww+dpMCB@6w%vWBXGdD$+*Iqe4%>?U!H}I%NC~xKoHx}9)1|Ss{Qxo*
ziFSlrSJ$bJIwmqSB!E?UMYa`D?EYX?{``fRn;Z-qz3X8|9ZZyb#vOX83x6p$Aw>ef
z(If1-c&noq-&SPH6y8C&fZ5LINmV#i|Eel;9&BPjX4^6U2&h4g&xf~+L)K-W)b?9H
z>GfaJt1sWB%;C7Ps<*broIO$rcrl{xE+NJZlfl6wUu@?Y=+tmX+-6$|8jhJ;CA|0Y
z#7vq!yST%H(p^#~%qY5E>q$UR-(n7|X!o-Ig#D7XMY<zcFUmcE`G&{<LHV5^B%ir&
zvnIedf~4#ldD&($NjxQuaJPU)?=TEn?x#PEV{f`VA&Xv%=nL_Wt*w<J8egmPwKAUx
zv(p=#e1tP&&Qb4qf2fx)ie4l@XZF+_j!Zwi@H@Ovbn6`ae0Du1y}?<NX*mfe;-fF7
zV|B_W^S?!AvLijXh*+yfh+D`74+W8J*zp|enb=u(Z3A%S-zf3_@#_J61dW;xz^(9-
zh|Dl$yzjviamkuLG2{eHe!nkYJw@{F`1&dbZiNhD4l<8FVzovl+4En_x9q9LhOA_a
zwIDthk@7s~a+3HwGBKWHAA4NotSi*+e3hx68AUE+`AzE2k?c}yXEv6pN)5R%Q9OK|
z*iqUAy!S0oaOFa;@QM64`@kXl$LbJOUHx$B?Y)XZpeM2j@aX2fVl!^_C2|(+E5|4A
zcqgxrB#8O!W=LWcdT8d-%=e@l^*30}?%HwtS@#C;&le)1lrRt6|MVmJ8377*{l>87
zQzk-{p$V6P>PNvJ{g}gddKu|ov;Ze!9KP|@7_P(Y_bFN-gy)|VU~Y~S){n0G#E4f;
zk#|4bi?Ij8M2kcO0O}3WIf>5<wStHE*>*|;R!sSzNuwF*`cpK-6AtZu=toW2vPYk#
znXUd?n1ZRo(|)Sn2#o*Q9?ksSsYS#r`nb43>ihB)&apKPpd1pC;u>CLdi=}z_Iq^(
zGX7bw=1hvE%vcuk5{I=F9NQNs@^Dc9TKlk^Y<{-{$AnyY`A(fz8Cr(l0bZ-zmE}jo
zk1q{D@8IeDT%HNx;M_erbguOsIJ)b`qVxX7-$MlYb4<RSot@J;Qd+Ce!uuKhDeQ&j
zZ**8Djs+4i68u*O;ItR>88WP-=<usleg2O&CQrP?eN%wS2fgjhGwPNwbJW6QvoSK7
zusRgjc@Ooktd3V{ze|QDWnLrt{9<i1&oDv)?uN^e4mMF<8CHAL2fjL(@@WFft%_y9
zxIKsqy40xIn-Q;&Gv2E3r(3W}+1nX+;&mlL+jeej0RXB>xGKjDDrjx^|MN|=V6U;{
z0h6B&NGa+cJVW3VlZqatb%sp?$H`I3PuB(;#Uf>GmZ_T1OcO_VIVD8AIGvqS;&E5*
zYCUNmXJ#)8qb{CH@m?ozJ-9eReO~@|@kOl9GVp9@u?2W!%0D}*yZONI%5z0kF56Eu
zG3vA$yT6IA22dN@@Hpn!^=FwCst^7g5VQJ_(&Hv1R{u2Mdh=H=Pf!@=J%i3FZ?C;F
zy=5F>aaNGG{D1mz29zqDSyBh|xaBe=dbEMWsUG&;d7@jK%kgep)p8gYi%Sab70D%m
zY_&MrTw?i^`(vbAC!4kuui5l1vyYyu#J?}qxQ0<04B0owUAnUYt)qK0K}dO~gv+||
zTxToDC^z|UI&9UP3D|jp$&9XuV^+l9OqRIK_$Yufi7HXZmc<vPLnmYtjTrjs;p9m~
z2@V2Hh~%?^xf}fRk-Bk4J=V94(@YKNT)ux|PPLavypeSX3gYKOAJ`T@2&-lP9*U-d
z)@GpoU^a|PBPF<Sd!ueYW!|F-(_owoaQZW?$AQi^oDlmOGWh^Q;Md@ud2>4kEo(lw
z24leQpO9<Sb)?l$%HM{F_es|}_?tfPI!@Mp>9j8fna%I`NsUE!$~9dthp+ii6B0b}
z0%iJ&`x@?5-rLhsp|AQGolG9|XT{WU-TmTGw@D4!(`}G1Znxd-H@P~9>Bpt-vz;k6
z52xZ)@L<`c+){fV*><l?kTp2sh11mndcP5tpYvh5AUiv)-b{I~H}~qZ3;WPe79Jtx
zEoi_}lZ5ixi;WpQzndM3ke(tFB@b&Tu^tLXzGmTQ3&LDe|L%u0Aq5TW$@%bJwKeoN
zZ|!E_$`zCZ4Q#X8HLJ2?)ipkkt?8+fE!qA1N_&@nN&cv)TG$oWY5|H7CZ=ows(e<B
zsBRzC<h%S$t6C{&&bZ@`Ra`8-R&lq77=Il&oOf}pDNDtJgPu2_;rFQlJ?>T>T+z?_
z_A$-8Ydzno4an^w_aOkRE6z<N1thGHZkL$8D)gf(!8I3?*ked&NS;9nU!JrKmq7NT
z)nT(_cE7^u8=kFjwdHQs%)uA0caB!*mQrB^<)^~>qa3l{`pFOQ5T9V5<XgYPd1|~+
zaWP&D4)SG|^Y7D>`&~)m<%~_|@ktr4$f|rjmmSVr{R^sp$|NjESrn%D9oZ@;M)a0H
z7%@Lb`zPD#CLND`z_KfBxCi@t2jIvafIQ3qoQ!GFj5O+=@I1t(IC;_Yn+JDrUed!{
z;4?%sOJKu0KS&|>%E{mliN{^tP_^`C4hV)Jx2RXno7ZEou~NU=5<>aN_GKZSf~`(5
zgqXdv6PmjV+(ph61Wzcq28LhJZ$Xdp=>%Oo<uP~84V*%sM*ZnH2IWz`^MLQPy#9kY
zjlV4rNw-h0)m}ruAG=IH?LiQ8F}TH}^8jW*^TtAjY<E_W%B)U|mDXGO&6vA5pi~Z}
zC9kq<gQnghq)M9)OF{J8Dz+Uc5z>6?`&i4k0O^|KUAk`0lOLvWN2kZx*@OWn5qDLd
z8fl;R7vg)pkYblJwKJ6mrAy8f4XFl>pn9G575yD5ysPd$SDk)*HPPOX6BqoC`~ANa
z0EpN#t#n<a<*7abPUXp96;qe`O1d4r`ce(Ik2=phV)b+MZF#HDx#k+{CCdVoc|KK!
zSqYGz|JfD@`T28wOU0a~LPC{n0UfwNZ7M|l<k5Z?j(&lfZE3k+gP&%iPlBF?y%*V1
zCp+3?7i3D&SL{88ah`A}U9-c+_F(M~RGppu7}m)%0GVjArW?`+K>c6tHnz$EM5_L=
zrr4v^SAqUy|CynOK~^x^J=xJEjOGZ{*O%QO=`Y-CJmXk1*tUOis!T4DkH>h7s?mI8
zfm#ThCM2o%w3k1rm~khK@ckFd7=i-#mNAZt``I4}{jwcSL)<^g!KO>L%tFD8y%CkP
z5rbL}8Xn+|W~7rfLHtDha!J{SZd|^0Wl)sg4Qc<9$4GxrV4WMyyHynGIq_jAjrhG<
z66sOXCxk=jo_`DLax5#%3NyL%_Uc9X^R~P;N9_tf&#YdWV;=oz7fmM0-tHsDjyVKC
zLiW(8RiQr5cIoZhT$#TnQJck_`3uF|3v<`_)tHm%d&I5!$QpSUL1@;$lo0Fiy)_CF
zd_z=Mji>H<P_!%g;@$@o#7g_=JD%N60sF6rDKwXEUL^$b3`bw_S^o*=|I5OMnH<sn
z`Rs40uZSq=T6HF?kUF32zSaH8)smybOG!qeH;JhBzf6{_Jl-MWP5;^N<48Ds@M?Q`
z=XtTz+gAExz2vdg6LR<Qt%>Dd3Wc$6HCUyX19YTO?Cfm`ALER}P>}*N8)aQ4bjQxC
z_I$?RAC(Wr-{-SN8C)>D58fuXg@U5g<HW0HOS=Vc)i{xoG~EU?M?WTvPK<Sm<ZQm#
zjYdNHHai@_IF2$c!4D1qd;JS8v3j?S$%%S{FUU6-*3sH{m0*)p#z9C+(zoL7t|rgA
zq@cz(mcR-qkoDOK$s%V_``W@dW4P~hG+g+0tV%km^1+CJ9u~(qF*Caxh3D(zkM?RV
zDeodi5{{$|j(yhFrl|;qnqXdO^f0BmmfEFp*B*8UMK$g|B-(%eS`UKp-I!p!jndOo
zQ0ouJ4Tht(e*r=8V_I*idl$|x=LTuX`#<iFHurwxA#r^uxRz{@02i5vmEF`3l(}Y0
z<Do+t;7`tibN6oN+CI^`+1HMYhH~1aX6T)K3@u~5x}f;fhCG-y$k3%EcB$9LQJub(
zz!VvBvv<4qXMKPcf53rQCGY)@>3$nQjopZ~X7s*n3OSp~&qBMV*^@1JX)0J#xJv^a
z`w<!Wcb`)gw(-aA;68WeYdP!4bJcA*DO{1zcM;Oa&#oPVw6{z5QbeE;&eA-}zRtu3
z<k1_mol4qvVv7X5%nmT9JWakn=_6v>x0CagIiJ4N@5FnaP8nh)y;CUqSkqBbNvDR>
zK~20vR=lYMbHf^3a6!1QrO<bW|JRbS01Nv^(3L;wc9{fBx?PJwpuiU!h9|D)buJFQ
zp6e(;WQ<zC?aMyhYx`!7H|bGwItN!!7gxT#(dcdqH}<ZZUAF{z<s`wqPth`os26ej
zOc24?C7U(0doX<vO8N0_iPd>c+F)CcsW=_18JeUO6n0S2Ip>yhqUbTU@gX=pUVJYI
zL>eZPb||s>F7~9oQRnzuo;emPmSyxQKNzG0o|>Jin_0g(y;MiK?ujY(DVvV>j2_{u
zuX{qwc}D3@rIQ)hxcu(MPSbtyYTt!4Wm2APCDUxlrx%EfdkQMfzpmk$@vpx(#j&Gw
zX|w*?6H)oJG>GAH|0587Vj7kr8L#Cev8Y$xttPl~<J#G=KP86>g+Hs?Kr(4g(vnNA
z>(-Kd)#8@TO!_Z;XP+zDO7C~%3HCfZa5SMFKD0!eWF06-^TmL#)-&jdN$Wv*+hpCO
zBhA@w)b^WJG`8l<rgzKkyEQr#nW)F}sQm7mMD8##ztV$tQ~p|*sHn32NQ8WpXci_N
zc(5l^H10I%K@qr9S)?ZV`^+lonMtwf2qJ99QZ0k&2-IY><>%*jQ@dZj5uZE9nb)y(
zmeTPRGre0qe|29~pv8}`uls+_U&byVy7PdVGup&{xJa{LD6Z|}X=}m8Wd?|h5C}u;
z|KrDWMo05bQPTp~+Wt~ZzSZldHRbV9zYuR%$bWrO{;pg8v8yz*O>5Mmx27@i^xbp)
zQ4mk}V)O4-m=<!shKqYg=`i7WK)2+K$SXrEMI}kuh(A>(b|+D)W%B@OR4Ec!I~&tS
zwq6}_hb(nvj!b>}sBwZX6DPgJsf5!!f_>qH3XS(Q_7~pAu+vXPDIm9TBc%y#lP~KZ
z^R``%np9Y{H}pxG^a=^rw4J%A)j^-DlYK>G0eM+wda%x$l&ogLS<wwI?0&0tYJ?sv
zOi<#R#~8QDY_=Y2{oZO%%@TL{anUA-5Zwg|TIR!ruC)>-*$=RTVQ7O+5#5AA3rr0b
zxd(S{@;3ZRXII;lP#xXh1tNe?>{&<J(K2r%gZO>&ed$t}iIQ%Sm>+wOc<XjPcpa}z
z>U-!)%b~3#hhOY(OqqmDjyF`@0zZU(#Dv<60oI;>kJIX~Ga=PHJIZNwtRl*j%K*I`
zPRBY)52`+O>PZCciN>{^o*OKUr5nQ~)={*Q9_T4YrYTsUw!HM7uA|~501rBtsQQpY
zRr2un<}Zg3{Vx9!KzQ(@?~M$Od~oQaDZi_CZ-O3B4fQ?lOcl^Web-M6L-`j-!|vzd
zRh*f^>}3=!T0M4_0+->=@ed?+*MC9_s?C#uqpbjHw>Lp6`uB+=&H((i;%XR^1I#PA
zow>N+Qec0~IXt$zeo`J7I|Y?tLAtAhH^sqQqHTi@_nv0|9C=b*fBm;lZTErL%b8H`
zblYzWK5e9yzN1&o^Xs=1ysI2Ht4*;T?>C%!rLWip*tYz`Zk>NyhW~SUZn%QWQmR9y
zFGTafbCxywDm)jmT{IjLnH_}bcFA%q-5U^}+$Q5CVU)ZBLnErg%A03O4Te`(S$9L6
z2*lpNMC_ZQv{iykBfjR8U16EZG&-J5m1+dvUBX)W)!rx8D4Uv25ANxsFV+>WDGc{f
zTEWLj2E$|LXnIVV=6fz=1${b)-R`pB^DPSS0J^Plj{@SCNbPoY^NlI!9JkLQTqM7>
zRekhX!`hmK36DeJhcC$bnQ<6mVVWPyfwyO5E(K>gU@@CQ4z(X+;s$#Lxe$<HfhK|7
z@c8tQqsh-YM7#E2yIb(e7RxBDh@OOd>F&^3!?Pql8Z|stGJ>g%hpwx`GH#1Ky#sL+
zvjZ%nRecv;>4gx^msOTkctJ1i`)CXg4Nvfgm1=2x?;4OkDjD(1VPSYfLE-Hw+^Jv!
zYhSt)DT?}?)+*lqUE8)i?e~#h&=%&|SuYodTwQSK79P0tS~WZE##F@yVfL@h7Sdb@
z7u;vJn@{vXj#F{D#s<!dw>CqDl^kDZj^<feZ>2NqNdjfs$2Y3ywS>f26(d)d!KxIu
z47$dR`A;!7Zs*;RDbH%%ZFZB*8(PnSK;QEZC-^jzZbQirxwopZ=uV-J#?Unc19}E_
zI>42qE@Py=UnSo#c<(&_9{5A&y>5JZKzi)?3*`R~@0bg~5vJcd=j4!l&HIs(?#ABM
zUH1Q0Q2);Yn-Vj&lW9Mxvtj>-!UGR(tA4Mm+}7V1!(-H#8NOOdtIU%yOd`|BgJp5f
z*3J!m=6SXCtL$?;Z|Z7b;tcfc1z<LQbH6_;?fy^!cOWN%9zG)J@{x7<%qX3}tR6J=
zjF_0+-~(s+T9`}8-NWVYfjBppZa<Pn9LM}3IvTZUQ0t+LjrH0#>JgGlR!rEUty{wF
zr`K&5YdP};-y&~*4=Cfib-z#fzR8cm?0kgWQ)YD^+;Ptk1lXK&2m8>Clu4J?HCMGv
z)&NOO;K@icmnZ0jTJGOJY1;V|@z2V0x<T)lQYlV#<&Lz>DjpW=u)pRXW4fUF5sQ2U
zl$28tbhb2xi(d!hc*xOSaCp7_`*f)1cH^DO%}#+XAXVk_=PQd7RyrW566}P)DDJ%A
zBBZ*bjsCIepEv__7Xp0r_ImxXgY!<Sguk~{$IC(xtQ`h&;;7=z$IQVYq7ZE6<e8_F
zoo;o<q)&$WlGdFhhP9zVDYHBxC&Oyj>~Xpy5$7_gc4w5+3G8{<)i=l+Qe@<QX_q7K
zRduft-hCT0TUEP7ry+On6$oz-=fHGhw%}=19c;f4SckknUimBctd(zSBwfjs97yCy
zlP1OfnL#&@0l@{tz|44Vs0-s9WYG<NJD2P}I5_uSFjNm%952C0AY9h-D7=48(q;Y&
zw|a)hniB<|ZmzCTu>Yd}agJ;V;h@XLbY=J3OtjrRyQvRg9B$Y99M*O2c1wB+EGrr(
zE7ZKgfZ8a=DLl^Qn>5r9For--;?rB`JdXShM%&rW+YN*R8T>pqF8A6u>V3yp_U>mj
zt8rQr$FARD&i7Z3t<pU1<^|fXnh>py|6=`R>Ho9Vq@!_5BN4PHQXi~2mQpAFwnUXt
ziZt_C9<4?Xw(viR-mFL#g+MU`iSx=(VS`ph(LR%u&z+j{<rD!-X9KoJcb2Z(y0^H0
z^dyyKtmJ3O6q<#+Sy8JA1P=OnypuB+uY(ga8{UAN<h4;%2E&1I-0)!nX6@rW#{)Nw
zSgajV1TlXK8MZkiWc5q6q~fpK?GuXQ?lZg5AL73<4RTOsIFl0HNi$KWybYpB3(D!T
z9w-0sHMI$1&6E-ni$*L`EVCu=jdP{rNauC2Ns#DEmAD%CattaWsTMr7-G>Sv7w)t~
zL5!;@2Q0}ow9q-$+e#7^BqGGlj84!oD+!vnf{{dt?(y{=Di{A2)GQz;HMQUQY!rH?
zuM{g3p9R9(MT;5I#EtsI^lyTs)XYXuD4o}mNPIDCs$F7r&Xy=<94HPv4qjQ(Qx^pN
zG+Un3@xnLF93GD3Ml%Zgn3sp3HvA+@OPjo46MAS?$J|J#9soCEoQ3qNZIsi{KBzdC
zTc$lsqjqP?{hIHl($HL*oMC(>t>Pl)mT&-4LBfnO-qvMcz9YI4MY~r?><qG^_4tV1
zw?J?GEUOq2Z2CnBny3E0-(x}t09_JaENVY`vDsXVyE%KSIfO{6{fcpIrDW*A9?V0Q
zK^3GDm8%^z%b%NsX;oTj0BZC?WhygIFsIA$o;}MGZj<`Jz^u(Sx)SAQP6(Zw81@Gh
zuh&Ke1p1xtkJq>t)<&A01d!d4k@MME<p0(=IxEa8BBBu7`ARVI+}697KXQSysHl}h
zhp&=LLG&*>*MIuOXaxeu<#I%HC4KvcbJ!ib4MqIKX3LrX`I;Dyh_SqaXKS2hqJY3J
zGU?@U7{cA1{m6LDi#->%Px!keX@}z!cYpspb@v-&*Hv_@;L_2pGN@SB9ic>#1T`YD
zwrKnF9QYrtR$hKa-Mg_;$N}(RK@!~C3e(ndMpjJpNHV1H$j30N-|tf+i^tDI<fe_d
zXL1{|&iq2(DSuGKW?Z_zGBLJN9V&s&Q=`FRPl@N$Y}PRti($RqH~UHNyIEJ~YOqBT
zSd}D7V3mx};s=kd?d}F8T?pJAgM12P8$r?}yZ!a}A%&;p@$&EDE>AfmJVlTWeP&b|
zxC*qm+%NTec`8Q!2nUD)?r{zM1X#zFt#n)e!`F_{Gk8SlA{5GH^_?DF_LVDw(4^B6
znk%r{2**K--RqE1_~l4B&!ab-pdKt2REj;YQd=4JBRG+v%pWiHS<1b6_A?M~ySR5o
zb8jV#7EK%R>e1oP`K;$F{Ett4+zyKLb_ipbQ|7P&vJHSwsptzG@u=s+mtyge^x|3#
zejXvu@rWkBf5Wpa;-{`Hh@jhljp6YiBpQDGR27CL1GaQ&_5n=3JN&7BKL~yZ0vdr^
zD21IQcQLAe1R<u?EFb%S&e2H_v}TK4<4>N~u~U?Eg2?<Ej}w!;!C+1edIp*kqjH!W
zu5s?aJ9C2$K@^dj*dX;ZKeXdbgH8z&Eex?#dhE!1$ZeEE_0oqsSq>A`S_{9-<U%SB
zEWf;<(o^)NLxe>Oh`sVZ)5#4&=%sc0M*$c6F3=TICQUPXOk-6Pyu86WPI!Z$MvSP-
z`Ls>cg6fi1D`nXyyEJv*lTt}ulloe9@8jYOA%$hjj0v}AO8Jr1PRDD;y-cI1`ErBC
zOp>lJh*~_KK;HkeTgvwNU}tJWqgySE)1OJ75A4Rq8^;R-7lNxL`b8@{mrhpJ#Nnxk
zMm~4mYS7cT%XQ6y)&^qU36)!Id4%aka$0$gf(0&#uXYK{IM(&@9LG(V9!u(j&Zz?K
zcOT^{;)V7MVzeZHs22q<4o(3hEz?NNB>D)J%W$E|XUsj8Dc9TcMxPcZ<+*($yOdA1
zwdE``wf(Npm&je)+mr`}EqYF-0LKk0BkIa=dMbBC|GS%4>7!-r)&UQr5HOk0i?7z?
z3ADLM2+p1g2i`*%L&xG+X8q6G5dX31``7=E+C^?k*Jk~W`gZhODfv8gbsSph)ut`K
zg%2)X_$g1Ewi-^c*27Tc+?7Z484p905G<{5l`2!b0Pn|a)j~o-`V@EH2n%<aAm3gb
zwtckKF!ySttJU>LOKcK1y#%H%{74T6Tf0uNJy^n)RsdSt&!P?Ym&`ptSLnc)dAlXI
z!*v2IARF^NU|WvXxYC&Ae3@W4lH6Q7<G~{$1YX3|i+gnL5*6jjw?plmj&^JtT4Y?~
zIW!o_5)u@Y6dlq5D)nyBJ<PSyfo%1}d2`w_E!~&iI>BO9^~<jP^_Q189{IxdH<R7f
zksDeyH;SIUn42t};~oIDv!A!&YyYK6-w?ka!)Xr8O2O#f3rgAHUWibl^VQ0*!VxFU
z2Ht~@&b=uL)gI1;W1Qpk6KyV$8+-H(a_|m3HyzrVo80MU?6!>8bIh@J{07x5$6^p+
zMw;T)ao)YEgtp-g;+h^hUz&e9WdG;c>7U=tj`c^-%(+$D<U2kM3sT^gm0yfd47*@4
z=ccmMFTU0<nhUT00MVz_Ld?9`+=452&w-Scr?ozoL*w<2&-G<Q2TptyRcRzx%x^BK
z$|JAChQ)l{cMW6wJ&OR*eBL&?{D$cIshClj<L@V8gyszdd?B&piH?uT4QV^25DXEy
z>DOgm+S*Ok!*;MQJXEC{H3^nA7Vqe;YKMxa`+Wb@OPT2KuyCWbK*R8H#?ur)TVXHs
zWAdw}6;L`!?b}ptj^hSd<+&`>?jyDCCf@mg+x5nysUb;$mgIdK+4;zV8HEQAWSQC8
z9#Y7S;)NgYRn=TvA8`@itsJ`sQPkH?@4xu{U%zR3ucaY;_*1$VaVhK+%kfIabCJ=P
zS-Fx8I=%;>Q)L;~d1b?JBh1bS4s{){?c#Ka`yRO#9LG@Yt6;fHKE|?^Wz`)ovx^rB
zGDSpsBL~cmXTx|8SNv`-WBB4Ll}d#~?bR8?V#*0GDpP&;ULWla^=J#VtZe}SINo+f
zg7w@!4(WKIL+zGAw)al2;!b4)*IXn>Xy;ZaskmV|-(lVUSqy492NE$IWkCie&_c<p
z*`Ax_Z2a8K{nclD@3q8^uw7ICNQKz-;E7D<g)XBH^_o*3=IxlnlzMrqSgMBHwemEI
ze$9pv{FGJ!W^-;X2DWw{Qcp$WKwVhA{@c^==Ifun>3o)7Tt{pN#DO6XZ_wREd_~oa
zc_>>(RalMcyo8sY?F=e)B#~o*jZSGhQfIphPPdNiIUEAv<P)G*{_6wd-{qZ9yA()#
zg@Y?Bv8Am2W%~cY0?_64x=2*~l6Tquo*bpN(s50&60^^AqYT*<62J$_(Cb3J8Z0E*
z!hXLzQXSacxVV^U9)`g&S$+Gszlq@-kL})0*1G^QrkO(^4csitFyPTl4~BtSteBi^
z(hGg;E?Xt>b7t|%-VE#GEUdgW+zI^C0z-Kt+dnCn{9DNQ5{ipLhA|VkpNpeqxm<b$
zd8;tvc*!OWt?;t}OOWq$NA5Oy^1`A)ts@e;z52kbj0JxvgYA*YNuBvS)0L+VfV>c|
zSjKh3SPV<7*eD-D#J>F@vh4k$F@P;{Zl%?R2ko?jQ%{5M$3R}AVXV0?-B#g=;q!;S
z=7xsbu=e%_BgB2)_~qNMgyIaf64I1dZWG>L+g7|llCae0sm(c7czKW8xc1JqUz@DD
zv`e$`eTp!CC8*K9=#+=4;3DzdKMLCoUKCruDeCz#<y1?XW3lny=O!z$v3_}r|0@?`
z0X25^wHix$+^|t!ei12Md9OEEH<lOg@CV;mH{-UyS4k$VV%`cFt^PMMLHX?Ps{QAW
ztht8rYp!tCLYt;mRu*#EIF2hm#Bq=$UN%+Akt3@!o>yPkrl&Cntm+}RCxPAeg1JXF
z!LDL)xHyQ)$d8?Lj(A~^M|^o2JJkP}sWr9B-+LU!fG8I_;bqnZhZRo<C+2^+)R^Cy
z(SCLc_+hV&2C14qgP#870A>fp%icSS1#RJnI#3DObZ~c%W)ne|UYauc&4K#zkMrrx
z$|QlpkInj)WG{_ps_Iz=XTIu&z0nD863OzLLj>&xgB_AJu1|=`FjYLmO!we`St=o7
z5fyuyFkI>U_EHXp9s{{4KV{rf-H(~rtsYh<l3T5hlWJmjJ<W$Isz{KH)%hn*L)LE<
ze#h<x3F`o&f`DdNzD=nvdH7Q_^IJBdvM4w3m>Fome@t@2v5n&)3+?*(?Q(yWfm~PC
zK8MyveR=7;HTHuS$;_vXbrb;3=gx;YdEg{c6uM!BWuUYrn_j>CfBV=0_)`iCLB)E}
zeJ8WEw>o^mIYo?+Ca9|RvToij=&s8W${i+DWOQtr6PE`Q>(6KV&3w=U4=tG*MyR}h
zut^%181!bzajH4n5x$OP7`*@rF-{9EGHu8_R2<#tDYIxN$%Tz9>bhVmf4+chKgTGk
zbOZ&M9LQeU7_pI%#0g0#>x9{CmFuWNsSx=~X&le_3i|q#*UC-qcR6nzdb8b_!|4DQ
z498yl*KY3oe6mxsQwZ+IxqKk%tp_PF=`5}ugG6oGH&jLRHuvqEjQf4x?{*fXib<#c
z2Bc%2c3bf@8eLlM*f3!rXM;?b6>m+)B<4y(vh2Wlrv*Iax2x^3KpRvt;=7K4zb}<U
zNUy>Y5c0Eo^*^eoCBb9P$#NGhGLv=Cgx}KI)H^w8a$&Y40B1_O`}*&sJSGH5C<%jk
z=2L|Pv%CuwcU0TXlbQ=uM#$O_R%jw*F#~F6a@_0T*WA|~-`PETKv7c<^56YV0NAO2
zI9n{D2AC}9o4Ho-?Xuv+Uj|=O-+Hd6CBs~TS$@JRsS^%uwf?>O<MsHmh#_)%>XlDo
zE-BX^tFMiF-gUJjDTRsDCEdKm^ZS4X(PFsfC7xem8@e{X)5TcD)c1a0;_B#Fu=Zr_
zh<D+18CkPNZ5uPB&6Q=G!XQgk|LemmU9N+F^@0DNo+nf%MbE=5)mizqRx}5fu{FcM
z(@bWY@NK>j*CIU{S#bm*@C>-ko54M70J+P)hl9sE-!#q#M<6n4A!3`@-Qz^$DlvB`
z)T6PtK9L&|b0`NXQBC+rD|5qHQO^^GWP1d#3~&i!&jV>OESMI^=x6BJj(3*q3RPl$
zLT<D)>tPWlGir&&G9bv<C4FRt5KYGL$+$CeIR{|J&TWrI+X8?DW;z`0EOEg!30DvK
zXrREzfU(PYT1d=$k3QF{FGG1&1)rIQ5uV%l(1B?!Gr%*Hg(VNkbfvV>E#=-I5c`Rt
zi03$46vobCNH_4Yxc^iWlmYH$dBYoGe2_UEwDv%3J^cP@Mti|0u*@Gn*xczyNzHZ|
zch_6+<q{;Z!qoM>d=$>@0PMpMyx?~pVix0--4{E{OQgh8p~?h<j6oe(a0KKL3#hJO
zJL_0>W6>U`p#``t&i8$tGj1nZ!2mKzIfzOPsvc&RNPJ&#a&DE7m#~U`K0+MW-(ljj
z6~aa-vO9bVT?A;Y&bh$<7=R0ExXA2ny=dJ&EpC*@H2vDFy>+T-%5M;Kn;EdX6CJoR
zK9+T_I5>H?@?LbzGp<wN)-N5FoPYU$yu+tynUT~BorF2F*U}vWocI~t^cxW8-kzq;
zD4;|{cw~fe{hhwuXv{7IADAv(<uN!{)WyGjY<43(u0Q-imz%F_XLs9>3qlGyyNkWr
z3{pPBRjT6ylU})DZ0|}${lz}m4LRKZJ9^^)Tvy*<MH|bn5>dWL|2>I{hkR?;WdQ~g
zK>e{Nag2|`)|>!+_8rV~;-&9|>cT&I8xwC}qm-Y>RIA`r0b{j7=PUk}_YotZE3nLh
zLhg<Aa*_NAEH23dsVl|*QWxG()#Kk-K%%MtP<=aJe}IekPEiln7*T*2sNq6*q8hkz
zj*ntiU}RfnXW~wlEz#~D##m5Du=1{6$86NX2;_Oq*QFiru9b_Wf>CNo_(Qufx8=?T
z5a-4C6N*<OqOC4mvFb{)EgT%@nPTPVH;#F)5u~aSXiJ@SvvP$lG}OioYLAzymzI+j
zXx5KbC+kA%3puI^YJe*CS<3KR2702#Jsafpn}UieHjdMhFvv^?4fdIdp1dLaAvMAk
zk1~(q$1$kE3&y!ThLxryX{$WpUB_MbDdn)RRV!aMU+SYX-kN<a_<la+75`j3O2O=Z
zAx8d_S{YEPa7N-1jjKGQ5PQjDxYXmBZNsB>X-z!=py8=J`)W{~d$&szOlh<Ih+Z1{
z$?zZ(PQfSAA23pEdEn*(NJcVl?Zp81$TRx&VbQhMTdwE_<pVt7TLQvgAnnTqHtz7q
zosY=(cyvxZK}s7SDEhr_4j|`wX-cwRBWPWlU03KD{$S)oHk5wPdPuv_4qv5?Y%*l8
z8irAu_$;a1cv8ot{v599KJ`@1S^ovfk7ot>VCnPAE0>l$-PcAlK^&x16LqG>1QsEM
zStU=2ubHSk$IyS~^EfB}3SHL=<ag$I3EU?RfC!a4S_1;Y;_ih)5dUA@`wDYJZWpLQ
zVvkO}9cjJAs>~T?M=SHSk3DCor4vQ+-HtX~3C-JpNjc_z%pD{+$b83WiN+6qs{|)|
zc%}_qx-?TOa&+P4fU?r`haMpU{P|n|y?0SoX#AD$0LTLT)3vV;G}~}~vo}}n{lOKS
z*0E)FQU2aTH#UT1wly|5^8brd8|<LSJgMdToBj$J%LVv4<!D1LUpa-fa+<V=sptyr
z8ov7j>8I4(@1oTsiGt*d;kzk!?%YfdOk*g1(uj!w)x!>TyVRMP*e$XNy&3(4F6tIe
z`X{i$AFrL2LCIMl&|0yAsAc^UEBka3tlk+23d%C#w6`6y?TbH=ELLS8FR734zW>G|
zv_>jsS>l%059xMdHzv7;Cc?)n1G$%H<>_&jN`oT4|N3}#i?g-k-+^QTGFVM<^OZ$e
z6k$jAKRt+l`)NQ1^O-dBj7P@7Yw3!RHy4sHmTy(GIZRLY=eOl^d103<4N=TIZM8hH
z0a`R3xe_}zW*y5TmI&Po0{339q6UQMN&f*N@xN%dG4EFNbKLMb7A+;#I3a-~mI&7j
z4y~*FUYw?CpTn9gGL5hyi(10|`}b-xzA5F$v9>8y*%+3-T%=bV3j<{)XCU??O)@;P
z^LXcPH3j;k@o+B%a(*P0$2&E}ql__r!NL$Td9}~``SFj}d>xZk8=s7LqJtL(I=Z^L
zzIL5HT7Ni`;yrn|O?}4_vhHl;(22>CW6f7T1C!1t0K>(SzyB=${|5&DJWl<0Q`Zb<
zY?WNj;^hWTWoskb3=S2R*|-QwK7E}#sDLxLaA9MjS>zcBPf+19*m{ADQ2%BdQVM>8
z#A~3$MEHfrXvMlu8zUu(Fo&hlF%kI(LHJ+2ZU6nf3~(a5_4@7YYMUq(+O>g#uwg~Q
zC9ybz1d?#tvyY=2=Lyta@o8?FMmNS?bONMOw0Z?xchN`16#w4O`ES1R;Mg-sR51dy
z*ll8@a$)Ivaam-$IY_duSm!JMyO;XkUpyB18LTJ{*)Zyuo0PNQ?2u()(YZTdah)*Y
ze<$WRWg<KZI+!oyUgI#HZ+3QAa@tC{_HwhIZ0RD`<MU6y8YoNN{i!k@!~M{2SCn9^
z_zCzVPyxUS|Ag6hI;QqoK)&2@im|Bf#1yC+wNO_)gcUVkexFSJ{tTbY)zCs4&?~=S
z5<4Tco+ZRgQscYhn1BfUrb@O}=FS!b6F))IY&7;kz>=b|daWld=%MAaSRe)HkT6Ll
zrE??!S0kMl_31O5tLm7&cEKEscY*hkXILfhiL5|<8*GHCFdo_c+#bc0Iy*Elkk(rA
zCzW|X;Bh-=G3%4-C)#|!igwwiEV-~4ayq)pG0P|Hc;PeFU4Kp10MiwGk)L6j$`1ej
zO8`?6No8CIb0WsW4zRt;prtE+)QcB*mr`uSp=>e}bMU$K<EN336JHLh*D@c*uj@Xg
zzO29N%(1W8Xwz#tqtEO#WaNI=Jkhk^5M-V{$aPO-0uU7AtuO-Sh5Ie+HYmkZ>%4Yd
zr@+pr1do5<YlR;BwV|<w$B&zQZo00G-iD<ooV~rhADrhDUISG_Jfi~4weEq3FyQGT
z=Q~R~W{q0UKwyJl`5Y*9i&c`aXc;m*sg(S@k7Fyxk9LN5%Lc7GUf!e?d64y<>HPV)
z`?%qlRc5<hm9UkakVbn2`+F^LN3<9M#GY!ahcP}452xgPsAxiL*@(Ew3JfDe#ecs&
z{_C%ti7y5P@Qd4!(E<+4>FEP8!LkgnDEx#L?wEc-y$F}b*XI21m^jDZ;bkU!WV~(b
zcUkzo<BvsV83_z=aKC^Zc!D&jPN#A_n6+70-FyLiM$9;r3~cNBWPGFT{+Cm)eX#0W
zW;L#LnhAt41mrYF%!O4~hjsC(3b?S2M@!-hmovycA1)lJ-4hk5Q6RvOim}NS0g8GL
zklRC?c*Y`_01?L<V(+rthk2s9EYa$;8@F#;!qGZA-Suh^YxC$|Ty+0MVnXrbMi-Db
z%Vns^CrNs0LE)Y=K^+FsRPd4YWs`$jjoV2-@G1?f5VrMiS{8C|nJP!aXqS$9B|asc
zfMwl@E#CXj_Q##=z^PsN5&^p-Z(zF6>E|W)KBqH0aGGv?N^yi^=KU7*n=$trJn(*Y
zYk?o_60C>`XSgcz-I;uhtSg2coYfZ3yv6_@mMlw~-U{P{Bl@7+gr|_CPzBq~*MhQh
zLgfSK5Xu{-&`C>#2x+Mvsa{AiXU}CPxAA?K;rWo~Qq-BgC{|SKJAeN938pSIeB>o@
zQ93(Z)CzJ*qLUG1CilWLmonb6q;r}QlUhaoCCVpylt2;|cE0p*hA66jxT(7)fX<)P
z9xdnUx7tWOP+uGJDf_W;Z96sT_0Z79606J0p7!ZlrLA-mHA$y)$X8;{>C-dB8Q+AL
z+^)JVqST91OMJ7AJ<bJ3uc~~6ct@T#23p1Sw&>x!N`viv2us<OCI2H-;|t1Zx)Ey$
z9-1$&)L1Z34fgb_iGRP5q!ZYYsj~XMnzzLH6|#Oye(@#i3RAkgw(D{G-2bLkm4@pe
z^Ac)z5wxOLjlB=R@}?_+$&24tR4`X%$NrLrL+0({E|Bcs0;kgVFLA1<uU&xCcy88M
zRSsYwY-e|^wyVBJrNY$SBRM<TO7T3&ZueleqB~;zXTQ|g#dqODj}h!!SKk8N_vzB}
z?;@u9*;;I!)I9c0XZs$4#Z>S8{G%0bXdQ_RufWcw<%$S{hFk02oWA2-_RD;X1*Ger
zDtUoHBM?enCx0{vuUHvgW<IaL#cG%6b4`Dc8Z(&6cFCK#-KIk6OLYj2@PWCvFw2YM
zASqa((4Pm<4ziunPKl4(EH8#iZ~dU(xj6DSTPj(=Fi|meGBxXtZVewxh->get8h!g
zB^}qx;<x|mUJLksvB>A}VF1Dk3Ku^OmtSJq7mh<HS_85c$1ZMPOI>2*;E=jfe5|K>
zZ~fu(`50xXw;8-Hh0_6*MHcl*r%M-7=P=vE5h<ALd?pN8q|%dMy0A>y+tvRS8T7ip
z7t$Kh&=egdAp;9xr1u%KKPK7rt4t+BBs7MAg}R?ZUUu&L^MkId8=nA(e9?G*aJ%OQ
z>C#rTz8Dx`q%0sW{B<-`dmgO1JAQA9^GUD>kx6b#ee&=7%SD408HNtQd3$#NW~1M_
z;zo^>s_sCBV*4Qg4p+no;aIMK@S(yG^KB1^IJsRIN4<hIU{M$b{!efhafmIz30bPT
z2{;xv;AnuJ`V(9!%M;LT8I|O~nBsKeiON@(oyFdFRaEW}5>}tOo~w0!v&I2(wSnI2
zRB7Y;rpLpFfD|-2{k5%;nk|ibQl?jI{t-951;nwAp0peD5CPj-3SziwQW+M=J6L#a
z`rQFIrk?tC4oB6*O$@%TGXmAD6w$*|9@27Y-51u^2)lS6OIscbL-8Y%;=6aZ3KsXd
z#)HiH8FYyUZlqQd`pG<0o02uZPml9=gYIYSfO=nzs;h1Ax4SY}-{88w2tI`q4fl3$
z-aHqIJv*ZLQ)v&hH{lHP4^wQOvb{3L<zxf22Z#ys$z3CU#FrMGCw}bq_+5D+K6mKP
z+cAtYtKDJ=7LFr{)%HJjtAKtrlz_nU>`vX$$<u{&K(`o%bIJDw@C#2Fb|wFnih%OL
zMSTr0oq^Dc8-tL5fL4v*3<~!$l7LT^b^0kElWF!9^LKgUqS*3sI(<g7*b&_p7oE6~
zSwOfFvLEeNtVOSMJ!cD}8fnVxX7rd4G~<0+0KBcAP54YU?NT+j5bdbOpj+gD4W`ZO
z;fS;s*S;REEeN>nJ=znHb6^L!&*;He^Dff-E%+-qY_MhYVW#pOZo!I38B?3qH%J{!
zPdLa=DPY}o1#a;{U}^-sB`8&F<accJ$0}F|mL^Z<4YwdY-fcd&4bSQhS?b6bu=Qo8
znBIGk+E0@s$mmDKSYI47sxTdwRZdv{s&5mfHQw`-{RHQphF-h$H%2?gW|@kW&@oHc
zSG9V>xctEn8<W(<;B6Tl5S)!_Z6f6r6+1xK2z+=?Xz0w4Jc2dCqgVX1=}>;%bz=?)
zHpSq&w7G#LyjAg{?MCPaGt*aMQDgg^Wv?Vkn3hjGq4X<_&3YYlfjZpSV+POnYrl8}
zrs;9rn7kI?LAJK(^I)>Js&;SG4nX;|#8zGL7A{qD1nf<JW&}zzxV0%_+=k(sa!UOl
z8-CYLiaqt;uJ>ATSz<6CY(T0<{ndNyk6S>6g=U_Fy^5+k+wh<o=4WS&Y_~Dq;ozuu
zNH64FvG_8g>|1oc#6B|VH52dZR?5{FtHNYz1#G=%XXxuu#7P2{&#vf~DiKXXk-~=5
zl-b;d)ZC%lgi9CMNw^ZC*-@-X=8fB!eT6byGi6!$*$<gN03-WVNzIB>((k{MG;+Uy
z&%_3cHdxomT24CLVVnf~H5n_Lti#1O6%jcos~~@ZV$h-2TF;VsV}{CmV~*752#|rL
zxF4hnT1PtIyDL>TT6U)xg&~>QgM;X>SvXm59l;-)Zw$bxo;+>IsKcv)_q78ykY>W9
z4qH(k@r{oO%{4={K-Kp8Aq<4E|DZIU%>+!@B5x-g<Hvsiy?4pX=^BtJdfO-cj_tXl
zgWje+{c}%zJsdB0tlNFbwi;YA3A5MTYWXjw2)yF1ChF!}=)v(pCb<MeCAaJY!rn`R
zJU}`L+?iHN3|~;z!nOz$#olf_3KqQB8t;)p$*r$*-Eq2&puNYm8F8nW9r6rU#&iIq
zk)KvzkkkOh^vkQ9dvIsHzc42ryc^&;rgR}SiR{ZsfW^g1mQ4w4c8~RGakM8)8}vcg
znUSzZ&@+z;1^79gwCekxq3#Md)qksS?lTle^uQ?+Dl2dLdZAlB&my>L!-IiF(xa&0
z7#vGGFRx>YHdH5aGsm@eiG^*DE_de{+4An~sv|Be3yED(6G(63h1>p6*p~gv@~&Co
z49`9GG7enqHerHnRpx$~YH5X61X-jdvyl$l7lhVVV{qN1&Q;#PzKEp6LVKYS0O<I3
zfONJDHYMEuJ4eItZyXJ%y1A<xE;vE)sec8Ndb+<wI=+hHQ&sx~J86G{T*~n-+X1Kd
z0^_4%(t^&LNSf7QD{{<Wj_QipW4J?L*j@PQhW;<8bOk!%&NYaJ`;$e$GmwdAhm@Ha
zh886gZgQ=9AJ1!N`|v@G+#mGl!fy2hOkvSFelR!!Z$5`vg5ea07{6@MLKJTw=MD5c
zv0>0*-C6z>Fbe0fE748V`+BcUBFIo*kejTsRU2tL#q4uhoH|+2Y+6A*=Xp|p_}#GC
z2jB61(Ro1n*v4>Z-GiNF?L4ecsq7P8jM?~?*4;TqzGXo*-puhYhQ&5sSAO|leM1&x
zJ|TUFkV6@Ldm;&y9|`D?ADyvqkh0mtyl@K>wr<U@^t*Z;jm?}M!Y5RPlRj#?PFgU6
zdo+?7rj(7rb*sR$eUl=UJ2(nb4E=5j(e|_eu9Y+PT4Dolvw_?B6c>+Vm$25Z3xyxS
zhq!+MyW8D5Sp#PsQ}0Q0v7cG^SUD^<U(b}rKplbBJn_uOCdm9>2{BT*(=T!Pu^1J;
z2b{&Mhe7|%F%eBm(3sZAV=OdeN^J{zc(2a!#D9V{TA&d84j1~MZN|yd6}7P!^=0oh
z*TG#GxFp-N3lHkD7h>`zp`p$nxW;A;?nz9-1*|7ZF7%wyv%{CzuemM1@cH?fLsxW8
z()PCDl}6^So3-c`u+aABPY+tdr)xC_?>QK92Wo(c^)`FYxlL`=mvmo0;5hXua2mn0
zrX9+i#M<e}e9x80hZ&3Kb(eo^7C|K+yD&;e5X)NCd-~2$fzj?Z?wBdg5Z}E|$RP*i
zyA^G96oC>o9=%BjmTPGFSi!)$>mE~9hBx^|;TOMB3<cUfB&t2jvUcr1pc-<}=K}?T
zZZ*kQ!X*@QQum2rSP%3Yad(ncXbWE}G3STVxcTbPHuxDc{<U_3d-DvBp3>!~{wOxc
z97*6Y2O~j*rhXi$D3gk2z<gq-3CTAX)<Y;u**Cr1tHd6DM^j-p6_crlBbzWDrv{Pc
zrA@eO<LOui=qrd0pwnHHaLjO3m=5wpCq|c#;09|b2`59I2kxmT8h+WUw-bC9sAfe(
zi!Y5f)pg53g?zKu+D<M`D(*f$Nn)iV;>DV+i`)E1CWTr@_p`+F^`U+3Ql!=+Jj10#
zj%#bEBe`me43Z~3ecaRK*3{GqB6n(#*JX+ErIgQQoIY7$$99N@XEzp{!1n_fa0`?P
ziri|>hF@5&h8+g6yB{N@w_Cg~K9;S|FpOQITRo9^W=-M2{g9|AFzmj0pNXQP;>yAU
z_|Wgz(U-HYvRG<|+84Q$?_0k9^UanB$U=WQP}SLpW4RVH8=*ZIrcy^U7m)^l%qbsZ
zroZ}zOWWY0Ooc89b|R1{s5NgqE{YNgM6#g<*#GoET0{Y`DXd0)VCm<==qF7A_eLq-
zBbzkpRtF^V0$DHU7M8I7MgaWUiiQ1UL}^-p2Fp`!NnU#hhz;0?HritA4CA4fH|T>g
zq(@@0e%N;Xi!l^QMDo<B{%b5pl-<?2H;a-s?!$7wJB%o38jE|;hBq+hj&s-8DxDdl
z+>^cjnIDxS=JiNES-?xN(qCG02BX!n!-u$-KH9IvJV+-(xo7t!Q7>D)pF*CsYnJY-
z+%JNV*bfeCJTXqmd(@aUSQ$?>3J`mzG%=h%N*=B0H++-*;{6y~A>(ITybf%Ld~i+g
zgyj1})UbFBaT6D&dr>OEt!13AMCWR^wHBv%^s<mEDsq~=ZSSD$v)yakZvN}LL-kC0
z8!S$^6C~m|InGt`N9Y}*#X@hQ{Ep#d_`cZtRw|yfLWcer&VFAlu45q;wyRFJg#va;
zz%F&Mg<o_g?He0uL0mjhhOSzqQmRy4cag(TkOZz=;JXJBArGf+ELn8LQ<Wdc;xal(
z3uos$8zE0&skZ?JoC%_i%N<@}`W2BLT4L8LdDP_1rU5^GY|zL>fZ;P6?(2SX-dWH8
zAZt9~lYfK(5(L;q`hTI~CX+A`3a4h(IkG8xd%Djh|8|IiLyg(DlbgVp@2?&y|JXBH
z?3f9>p5tigXUC&&&_`yG8q`X3#$6w}yf8e@f%$hzRn9c0z(KW)-?t_k?gmT%l{DFq
z9X8fF{-hs3D|^93Cfyip_cckpWK!zzdn~h2JLIe^o~HAiF+9KojFb0&oug6ujtIS0
z$-x35@S-DP=m_Qo2D?f)tFCnABxgB;G2fy&kq|(hA(DPh=b`hjo81k-#&dN?oK0R2
zbC_dyXSg#L(0F_<W4!<hek%T1zenriccBJ6|I+rN<;3U^eyh)EbIO-7lf*1ecX5?B
zWowRk9RqW!>>ejF80Kr3{KV0LYSrnmMbzEw643|4ZyJisO+=B2EDVx=QxQ-?*auQd
zNh<%3vbTWBvQ5{&NqG>3hma7E5)hCQkWOg{K}u3WkOpb#kPt*rLTRN%K)SmW1f-D;
z=@#kmJ0EBNXV3oj%)GPLV%Bo`zN0S>_kCSw9LMjV+)!hcEmY@`{V+{<=zV2Y(?pif
zO!{$4G1*^zpnyA}#&B619-_xb2-33dkRjQxYNx+>L+;zHqlzM(j8LHq#6mue9z-=h
z0`^6O%NbLCsb+NNMJAV9L7V4T5Bxb+{Bf>*!b(O3i2fb7fh>y!Y4V-}3eRy2%W1uZ
zR+6a2;Xk;I4A~n8qA_A9+(x79C-ca+?5(8$?i{FbB}@?XDXSQ-u#X3ubQhEY984Qr
zSh?VPyEHy1Wl-_vr6UQSlv#zs+n7<i4qAE1H=e-6CErOe>0Q`|w$VN>OjNmA)1&C2
zdX(^5x6@^(Etpba^sRy4Yjd4w-#hflpKCcv3-@u+dv)&iCgZDG5mtem7wF4MJL#0s
zO?B&bYB~OL#L!CoM$joMcDM+XIzHmgzWd)T@+DDtNTBRJz@m4GjlC3`N}`&jkIS^E
z;Fg@hc@QOiB{y5_=6#wJ!RFV3FIP`uq<`F85NI}lzv~WKGc0P46@@wH_y#ECW38JJ
zrC)ul#+$!iM&Ee~jg@}(G)!?fdM<?Au35%Y2?s1%=q4sUEQVuYKC$8*fn(7w0Y(=B
zfAZdINcH+({dcv7U>yGOi3uJAO@31bLLLX?4JdrOEY;mBcA{i7kfWCVaUS~od&fG=
z&Mb|%-=$$K&8S@f42{EE0fd3J-;3LL8(8(WTbv#NcW5~2t2FK6Ct-OIZcI@r{=Chy
zHeC7CB)^HGp8~lH-ZCRd98#ibju)GlAZ=OTwG{siGl-7|j&H`<D<(|DKX#!~MIf1!
zL$a<8qxbHT6aHp6l8V`FX0O?ZwhjDZ;++4$%ur-R5>mXIAY-_WfgjNs#@$1iH?248
zGLo)OJ}K&Xe|5;gkR=7p2XckRz4GY41*Q5_=O4$Z3xQKL7J984_Xa*ucfDq=D9&v#
zdI^mZuYX%*7?36OeoHz+M#v*m@$VYUqqi-e#FKF7OXE|Ga-xi00rMXbDQNX-X7wvq
za@=6mmI2hY4`JG}kyMZBa4!!sQ+1r?zmQmCp;}t_ce@bnNVIcX$^c5Q<rlssr!ZAr
z0JJBO!0|eS<$w_HCcF+6K`aj8<Phc@n@HOm^B99rP*E{1Zs&JTYSD4{6B{$-z243p
zyL;r<@4s#$(iAWpbuf2T6>Km+%`6g)epNQayOYs%UB2h(TwXho+j_qRZv53^X^fHE
z{(yj98~m2`t-wIIYBrd%^kfd+q)cFK{)DFUfuGO$kwsq8RXk82M}aO#9_WJDo3_aJ
zP(<8?#I|>B(x|SWprZ`poz%f!`N+T=)Ez@OdxTGagM_0m^&N-KCkfrs$8^BQ7+{Hl
z5!u?o0WOvqQdG+9<zT%-iOuMzcZ{C`kc0)1P3`b~v!VzvDTzl^mv#eq9>T!z2Vi7}
zElapJK?Cz~_RoD>q_V7zW|UzPj7cl~9F*yU*7g8WPp||7J0s{`4uS?y^gjdHswbMT
zkQrISY_0+{QWq@KvFVj6+36Xp2y5pIQv@98ZHVu}pi$Ti#!Y3PGQhN`8-#Gv{7Nt<
zBhrD1y-C<wgv@+6IWIZ{<#Jj2jn;6O_2LhT{xF3JUtGwwr}76|gSoFYASVK(xamfz
zTwAbeI-;gj$#N$M6$B5WHrFs@8e`dIqugeB$bqeglGps^8J$Vp8_%G2SUIkGY<PF(
z#u4z+m(?7p0YLTm{V#G!mB4Nkah=u!*FE-xUR_p>?h)@g+0e?MHAicN!@~@}KL6ik
zBZgN(Gmt&@Dsz+sFx@AH?H1lN)gAr&HHX+!)qBLp@q+b|{`L$rG`8@aF#_j1+Q>JV
z32c|~Y_H)_T{#9JvLQFR>CPPEVB&}IUmk8-QwvTsTUASTXN$mu;z7rbaKGcnPjIr|
zhDTmxI9B1?zPeUQ*CB2L8cb<XQoXqC0*Qimil?)I{7?C(bmV=*Db^6VS|BpG2?nVs
z=(%c&o9n{KxSmH)9=teb*j9YFTX7pBKbwu4Gv(imwrOjzw*B|O56s-Bc!;Lf>U}V2
zf$O|((Tvmm*g{OFoW}HMl{l2uVK-C3?DKnla;NZvL7zMhR{Mp!3#UU~SP_IHWZ&jw
z254D-cRxwNkPQsfBl?7}nW$6)fHy5{fcgVyLW3h5K3ip6e2i1{zzR?yGZPp3Xv7$T
zFt6%k?|i}u+D6_?K(&ijO^kghbEI=kgbcEe(T$;ZEtTlwAZaCs+_52gDMZuE`J%I5
zORXV5grkC#kk*n)2hb$0p5Sn&=_x*}#Pk7y^Wv*tXP5TtnLBj-Tju=GF=JMgj5l&{
zf&oZ!faw)MnRYfBdy^sg7`$A$)7lbf<1l8$%I?tLP>ILA8g!3vwYn{LX6g{Mm%5ut
zS6DTWBJ1dmsp68fSW%GH+uutjz$H|81W&#0%wrl(sz;%BP>M9<sic5@g`L6Kr<b<F
zg?0D~Q1U9m)#=gzKY0aE@p&aQ&Jyl@A$(|=;)_(9^B=)%=}x(IZA*3MYU@GT7e{6k
zE(9_l{pRU4!X1koiE<6oV^h@XLi~x-6=^oqdLq7f{2UZ0Ka0OPB{50^r-}A-fejP5
z*ZjS9+Lpe2C|13^zHM&0JtO%9c8-=R?TQp8rO+(r@Z)5bdRK`i%UV?yNH_(J68XNN
zjo5H?b|z#ul%}p1G&SP6F@ISm1iv?r-^27*MeMgt-AME9&FE{QQ*nuQAJVFf>u4X!
z5Y$(IYzmgTO23;N*_{+4tvj6dKs(4d{==_}`(LFN^kboWjlLuZho6{sQ~YEyx<9%Y
zm+WfKJ#|;1j+(54`E7J9FZX#9rJa5)-^NT=+YJutOZwHHj6bv{Ph?XXj0$waG`6$k
zuGkA2+Wn*?J-*xZUON^OMafT$*OcnW+)N7fM@1%=1l;6lGm)Px?gUoJr!`u~<B}^@
zKJymw{5~~e_>y}Du|MfHjVnFbBeBR%b;oMK;o0u#z9VM$z!b;etspOueZB_V-gR<}
zQ#y%&`9wlGDd*9T4|pa?0V|27hKoLuq44^bqnFl&cgZ~4!nhcB_}>w!pVq?&0+;G!
z{eU0InS{5<2H|Cd0$4(rPUlb{WdJP;S4r+~;}oOtv-5<idKiX|VGnEw&6*>)b18)f
z#J}yfM_86;six&Olz)~zgzWGeyQ!07h|gjd3h<nQbnM^}+P@RVic@{z5^}w|EY%sb
zTe^cwUOw|eJ7TyPGQ>UBIKCnWbj>b3&<xwHO-4K_@A1jHrspJ9Qbw~jkp0q?&1JvC
znn?OHJf>v{<0Ir#BgQ>;y&+J3tu4J@S*AL9vL|4-XjPs?P%f|hG9p%GIIA1ZP<v4V
z<I*dS4HCuvhCNnfNF$QTV`*CpG>H`!GrY?%=t(OgLKr>A@}O8_#;ufP<M}HOG2~kc
zx@$h~5*jHx;8e4Yj?HZmH>~}sxRiIEf0-wht?Jo5h!^g?$xTB_O2y{3KFadx7N>f~
zr}DbnPRA!(3&&)I-#cLR+0a)b|D`Wa+y3O885@i&^v-s^se$o*LICXKEW=f_34wK@
zo7Usys(O3-81>&#5rNCBUc_#Dt9-i13zROz`!0cHK^hFQ86mep?f&{au)DM&u3S~5
zPZ4rRtqg8Wq0K1|&$j$#@%$A)L{0rW-<-EGVRdkYaiP=wv(@iTHcmbKh+dI_^XGzG
z$9k0h!>{>PNHiKNFpEfG<D>c(W(gM)D6(I@LL>>h-DXq{ar)nEHwPpaP28XKB!ZT&
zq>n_l8O>zJn9;~c`6XqZ7zj?3BON{|g!%iX<7>}^k2vf!HBiq7+IrFU%8O!&tnh>%
zoU$C?%9-E$jm(!eu$xmDVt8nDK=|M;#t1LE7t@6$p4#7y7QU{=_jEA>r+E&Q@K`eG
z6kE0)>bq6W!Dl#>+C<+)8Dx*}nnKh&7zKKoR2pE@RYDz>BSzLQ&v3=v1a^Mc6jLRf
z(1``O>Gf!fu}scqmD;G5C*D!9!M54;TZ=_TWrsE^l=u#}f-DIpaCXEHUV#s`D#aac
zw~}sAPuA1EqPp}@QRBTdu5E3QAkOYJd}|U4Y&tG5p!l9$#CvTz1=FH_-vLRd8IsL8
zdtrY6M^C;6n!<iGLkt6C3Mxgf+qafiYZBxOa=a9q$?4PxSHN<t)!_S6@i_FC65Ynu
zCd|!sQ+%gJNXczMV3%9({axmF3yri_VZ(XCv1?!Ad9Xss9t?ttTf+|-kM_q!iB9|N
zM?d+Coc$Wm<<iVld~}x8dUW@88TtqPs#htu&gtACiVZi5fNf*iXZP$j)6`&@?YLGW
zCb%!0-tyb0oCh*Bp;=a9*ek;AYGW{aF#VerO0!S<YJN@@uv;HY+&_IfDZzE|#OuPp
zYvuGWV<2Zn@B0|O5Zq3BN4(8u*cw%|gn>`>$-Xf~L>^;=3B3}#*>Y1Cfxw!nbZ5le
zbo}!6Ib~#&I~L`iCIBmeOw2bpkLFq~9qrS$c}2OLHBu891lkUQ(ZRPM*qU$RlCo^u
z!=)E|2}!*b61zo-Cj#SYwaeF=y`kYAltvTEBe#z*+ct~%{WD(?2&|nqo`~&>+?U7k
z<l(oQ$XWL{DjD1a;lfYhprhLWM&m1!5>J{w{^hA2kNF0t9viDdz{}}^RPn=fxXC(?
z3aS}(Tlw*oBFJ|<Fu=Tew$q`sM&mkjY))4Aw!Vj5`kj1LgnbFq?Pf>sFj2C4gMh}0
z$n77BN;ArnaA|^OyR;CX&MZu$bK|=5g_l5L)`53K#9NJV<?w<W0HL8|V3nLC;3-3G
zsQE(dMd)A`Yo0H<4czj+#UEc@kM&G`%70LD;R7e7&WKLBYj#(ci{k2@ft}Yi)R5u-
z^yP1z;z#yG=4Fl-onrNJ>}aLV9x?v#wwXpj#E3{55>4VeJ{^O!*Qaa2pKYLW9hT2o
z>(4AvVVfn<Xi9J&{WLpfHR?<*<Q%F}5n+#BYIl~ATV4)p&MMcemI~q&_xCOsvq>v2
z?J-35G$`|E7X4#tkng@P8BbtBMss}QCizPA?9-5CIHpC8m(z9K&5s)Z*)bL;Vk#S}
zJ8OcaNPO$bj~kQMlrg<aFz8h)`I`NEu?j5u-ix0JZ9jYBZN7f5{F8OC0WZezK~p=J
zI@wW|^yURQ#cV%<ODQl+#xjxgYH@?2{g&6E#V|{rX5NQk9kRNuMYB<m#kZB@i{aC;
zV8!hF$&*-<a6{b5(e!Vo2O$8pd`HDFj=&1t_ZvEX!)^4zv-q=Neizf8PznwdX2VOt
z<X8OdkuDp@A9~&WZ&o{|0P~8K@@Fm4=Q&dAVi;0)9@kVdMzoH#SF{}Odrxoi$4ga-
zdDH!$12bWUhNMD&`9xnsC>5ca@#-e)clz=a#2#{|y<M%5oT~e7{>E?}JT|`wx#|xL
zX}DFq<Da(1M~$4oY(YIYyXFA~TPPh!w^mq#gNWY|?llP#+PUvLUvZ%M8qE-L%?tV{
zvFx?Uns{lpB^ir{l8v*4P@bd2TB$8+YVo}JkZ?)%b%gz4lWh;)>@2vDCKA3tQ;&^N
zBY|#=3O4v9RaOzGvkmvwKtMOFTPA$u<L^|}V+CTVsb#C!=J5r^HeCqvK#uy0Z&rx1
zYJT|9iDv7d3Qjp@hwanDdGzY>&e*(<MNz|JEWxF{Lm74DsRSkp#CT+eMArcxtpYQi
zOsoS8+u2Lsi{`^I(6`3Q>Q_pN@ChCGyk?)_7o2U}9+z)3Op`!&EO;OqdOXYYinrtI
z{tNzUW}WGW;Vwt#C*H9VC3#dL?%#Mv#_tvOT11&mpm)GVk;T#Z0eeKSCvyRMA>nyH
z2MI85!((7%lxcJac!L}OY>0v7BQsKXJlkjf#j}`k7JaeZl~uspet|dBtc%pm(;J}<
z+ZRsYa%vVTyj_^6+I?#GW(1UN8+WWFSJGdWlj!$Cw^?xfV*vlH&cVsS*6W>lW*{aF
z;s7Km`>EZJep8_1DnBSGd<C+Dqlj+mzkZSByRfz&aEWal!#y+b^U=?-zfWfifWPuU
zBQ9J~?!6azY<UM|wikI_5m9bN_!Q#QEJzxyAe;$4RpaN1$kA>h&J;l>*~MO?v^E{6
zss}bb<+JhV=%pi32qx6*1X^@<7?$;$qP&c^0Elm03rJ+0M<jMN`6&?bv{`^s(dD61
z64)I_K&q-Kv?N|C0D{No{W*QquLPZ#TxvrT?l3coQQ7R3kkJ|jt<8gZztsIA#p@Su
zmf?AM1p>9zMP$nr)<IQ3Xj;4#b~BXdi}CilAM8hnPB&TWvHN2%_dcqy4<no%D)g;E
zWpn8YSR4n<AAi*eo1F66?XG5lK=`NFl+ZYr2YClGw1;ZZ4`>^0SW%xq>XI2mH7ioN
z%G*_C7O1pbB4p4fPW37-JDvXhVyNdWvd=`Rf_G7V#0JB6rZJxgKb1-8qC=(rRYJN=
zH?XCC^pJ3PylGMQv_e-UMQ0w6I*!Ve@VS|LUyP`7Ub*!h_!)-tIju)UQ?u)#Ye&oJ
z1bc_5(3&+J^Mdp8nG4(tsOaW19Tu7ABz<07IQsU`Z=ghK`J1zqV%DF`Zb+<;)SvMv
zQoR|na7Mg|rmq1;gKo}6wRBt&RdByQbltnHni8Sw9<dK_!LqjLsT-;(6RUhU^jeIM
z8pvVjp>3Df_Goo5x7cn{=ze~M4ySVB?V$i^C)zu~5xSo)qBBxS?Qr>zRC*oF88Pf6
zXl2Nk3T9BrmaG-mDZ}Y8<PxL37r%JF+(xj;6!bmEdtF!kP$bpA_>ynIijsNx5A*`d
z=YIX1^xn>(SdnI3lEHc<$B@i>p6<sTRCC!)h5;EUPe{)y4L=T-vBxoVr-5DX9sL4t
zY{VO7<qVc@S#lFiV2_u2D2g4KMUmpX7sV1ql7k)DLB0e>T46uOK-lmwv>K#-D|e9E
zS9fTztl)=Hz8H$a7unx(-=<~%8Q|~)N^I;+iypt3kDdqoH?!qWc8+$J*wE*@<F<?M
zy$e8%oW4N#2ODtAha(-qMxi|O)tsiqFjxXqD!#=ZW(4BJyoK1u?lAUXzhkD?AIZkS
zo5N|%Mr7P55C2Rg+zMks3%;_N#{m?Zq8L4afj9(3V@;FzENRmo*&(E)U}DgTdVX~&
zq!F3>o^Ci$pf}@DyAW?~0XH(H3n_Kgr#%zdaoe`~M-sd+a_l#y&q^&DIsq7@Ht6p`
z$H><cQUyaOEwRHHOs7!`yq$$_?^2Hk-zK|FZ=_EWa$7{)HwwGI)3}Ss%>wPf2Q23S
zuhzJ%LMOa;YoG*qe=;`;M;GtwUNOpo!tX5Wmqzvkmk0~am{Z)FA;enTN6APP(D|{A
zWueun6lM3yK&9N-_si2;al(SZ5ERcr5*iUMf5OrigG^24+ud0E<{2eR-&%vzD)yUz
zN)@|ZGz@uH?RT245I0<dj)LAj+3y~i{~o-fFUs5rQE=*k$P)J+Q~c;?wbi|>NY{lR
zi6IIk=X(ebE0Ud+UX3_h+g_cAe{X1wqPGH(Ssb#q4$hRJq+#J2$NwNh=I_TH>KC-n
zi2deGq%(dR2f6p<smtXl*Ag>CPz)83i2Wwvt3xRi$!=9LW6(F-O<s;p4ukPHAV*+Z
zOf^fZC5;kt*zdGd&IrnA%kMtd0qojT^NY*5UdrUmbufU_rI$Gok$rj1bSP0weoX|b
zgp$0ZJ=O=0JZGT-e{zL0;kJVvKz&!lOn4mp(@h{b5rPrj7Q#8j;!iefdYv67rEXY~
zaVE&_S6{qhcWX%Z>tk22BAZ9F+C*Qa2;gdk6P0+N%?dMmq-JYh%kIe|7wT4hheh6K
zShpAih4#Y6y`!idMt^y3O=Ol)ggoY_?<x)*f%&YvAiViFql>&ZLkLw^y3~R~VfYwA
zLhChO#`GW%Pc~pW^$_yNS#7rk>+~|@Yu^k|@#yJ~e==_AwhLgFevWM09Iu#OA|H*r
zp(cgeGEp%#4A#yNk>AKtO|=UnQx^V;Qpr6Xsgz7Gh0}^htFi*pCzOecU_^Ozy31Mm
z?GR4bI4FQFVm%LqzhBoxdshU<DKu*K;>9L5tZyLG)HqoE_(Zr?^1$g_B6X{tval@*
z#1JFB;+3}TAstVm+r-pm=lSsFo016&sU7r!xcXDB)$3Os?s+>Rt%=FV@}w(_Sol9X
z-ts=)Qp{LO@u6PosBYQ!{hfH-wB5@x?8a7YNfF<*{{X1-XD9i0@pf(~nwjgETvuLO
zxMQa?9+QFLLTAqPo6Zk^xv@o?909%Pr=X4gPo;$vQO``HhI4c6Om~@!gNKJ}g?Cqy
zl&Q;+ev)RffJ*xUelM5DUtVSE@?tHCAl}YQAl@YiGGi&q8%La7xV&oJMA&L$en}wf
z?G2;zei1M{zZ>9AG&N7;vG5u*U!QiqFS9WPE2n%y<pl2vI1YVS+$BCCmTp(xADjG5
zTj>Qjbq%5KwWvDQ?v756e@~#ixJ@(17`)tXi-=1=M;AHtHRZ$jhguzXu)1QYJY|X^
z9St>5!<iig_!Bn0I+k>iJFVR`!?*v(0$8`qba}Rc)4z;TNL633Y=Io&^Z}kbr?~ug
zLhrq}ab?Awkn*<8JsX0HSTB$`35|794>@Gz!#vHg5`a1HX27!?IM|EG@OKSwt-LSQ
zdI)Nr$0H4(Nm3PFpFMggU>tq~X`DuxrJHtPp2<sk<?Hqqu~Xt+hvNP^g!6uv$)Bwq
z>#LFncLJ<NRMEyJBF~h*H9$7#`BKc}3UUOuLh57}TS`*o6x-0qfo9#`#h}no)BxL&
zkBXfTyq^Q~igojc==`!J7w86E!omG`<Q<u~4=SKkfmCgsyGXSbM$!YqHON=r&BFT+
zH2nX+XTuLIiELhE2ck<j=6qj%2-kQk_*Uxp7XP<UoaAoWQ>oP<m=W$MFxu#^%xGPZ
zjBN1RCJbPYAgGY4`~i(24F)&aT%4X=U(e%;X+xu}JL|#DRme(+%#;SEaV~ZQ|D^M4
z#^VH0&q%v)8m1xcPKfQ`x{Z!mU}uMp)6jZB{nEU@pB|lh&y-^aH7lbXsR54hAQ(vU
zdE2Xh&Jk3^6boP($LIyE9Z$6HYipNTX?i0Lu31K6K5KBn++hvMk>9g!-t@5~OM5$S
z4*q=I`!VX7iVqgxSy}Z)$PpryphlI8pB)S3!$fDm@{+H+?A8pW+48(jdNB9!D_jIC
zs!00oGAYH26P@OW&-cQ_1ZI`RdP%-O!qXB)@Fen9-Nm(<AK{a>1{X(+MT(_8r2p)1
z9k@6`1<v=@+or|Ed!M`If$T*Gtk!NF(;hUoO71aJ*z2rL#Sd$uveHz#BYt(sm)W$2
z?C<aY1bxMNjTVJnnEbd+>&IdLaO_Z$a7e3isDRA9KwWK$vPxvgPIwzTS9aGkC+fHR
zU>YgzAH1Vs=~l~UTZxL9{l9$4S7FVRlc!1vsf(<NtC`5|xHD?4XwaHRRNTK?wcGH4
zC-5X*ly*7rKD~MwhK&FwMkbi}*^KWoEy!y>z$0hV2z67J*44pU#6(Xg%mWwn-H|)n
zSRrD>$fCE1>rz4TxE;Swwn8nh#j#84I7GChLu;sB?OZ#9uVMv(5h_0g3)=T6LPYcv
z6D4}|Ng~H5x!%c)7n#=3Di<m&*^CKQa8&c<g(c=(#)*z33y?*S&;_$Y<Tz>Bd(mOM
zVV0oR0>F2`Ol}{^U^T3|<zrw>6^gwvYd`t0TOuuyO2ysXa8?bN9$=B6S3o@M7AouI
z9DSl#Suf#qd!=AUC~9=H_)(s&_HN8fRRJkMb0&%12lv)i{cmeXmZ{0PuWw82h6?5s
zc!SVL0?baFdR@@sJKvD+buHd9?)MQ+{4VnWh9|Hl!VNw7`=R<D{UWLvSE4lMS-4_8
z#4&S?^cO@3y(kUAko7$vFlkm5qxiA)$y!vu*A60eH$J{$ki&1_h=3|?;EWEdBz)|)
z&7pSoz_S)wX+3g0Zqs&}VbaLw^7DGt&X%#o)ky^*o^K6i%AJ-t^0x3eYjb3tR~x_a
zAwLkkWHCW^cKHleeVxmFI~<;_OVYj@#P?GtMwXH=TOY|jydYO8!415z9p<Y}YZWGK
zig`jp)uEcMq!Dkf?8#rYH38R2oF09UjSg98o#(*=dcCg{mKD(fFde!QXT1bd-)^qr
zCkvS#;QH1@HU2`R1sMG*ccKt#nc_`Xd&(d<5yYwaMBSR-vJ0R|x~X5ur7%!QG!h?!
z3&=Uc8j1v$xX~g2=6`VGYOV_rxMI?sljE%W*}diR_ebE$3#0BSqc*g-3WGUnAfpAX
zPy0%!q>AMm>Z#lX=wiO<JJNy%u{>+-TKoior@!8?Jh}TXqhZi-XQm7O`O28(nV%dk
znJJx-Ms=n;Svz@V;{98)nI+*6L!49rsl_hpMJ6($X7D1Ljg=Y^Um{=@K~y23qTUz8
zj~7Ekf6Ibz^O#)yryVTA;-jr7@O|a`CekFm*|nPe!C$sAzt|!E`y*c7VONB8xxCCo
zgRgiU7_3!1Hp)i2-(l$?1eLK~8;<^R9A`S%6YPDEH_YfiJlA$NDdcsjFC>9>(G}f$
zC*{-eL4Cn|ja>htaw7{Ny?UrYk?Td$2%46Z#iyGS9=eThIE}<MhC}KdqJ!>z!#bDj
z72vxXqUv;0e;nlT$`DbrvzTbV!n=On4j?kIJ%LCD@2BeXiuy+Ci=iU{5EZ&Q__HYz
zQ*s#&#$TA;Fn@ig?#Let4r}WQtqk4}9ihR>n8gXUmJr{#86S;2EoHX(JJd91+X-`|
z?MEaXQ5?zt&>j6}uSPW@2dkV_(>a5Pi{865XRxpHnc9_F*4WZpW*U!VM-ijXf*?Mm
zQe|b0>NMHy>EjUDL1An`hx<G#&$|;Q(`$sr8{gu?=!H7*wPEd@bg?v_n|k{dEQ%-l
zy*dF3V5tB)9ldGCd8*HZ+jQOjop|<^9YQHZtX4bO(v@{YcDqH2NBf5<;4W#ZDAH9G
z_5y5YC{IrlVw}r6XIUHB3DGO6pv7P!C+&G!F{!0GV(R_Tpr$7qo(Ah*KF}pNUwpC-
z=XHx!$-^d$x&jArR4%eX10XflDp{xm93;r-f^8s+1LlPe`w-R{YRJPN>t#N~T>g;k
zm+SI&?VgCkJ|~ccRATK`IhUSVjv3e`PK>x!?cxa8rBH&c*x6eQu+$7I01@&r>x@w#
zz$WBLB78xdN8vl)uG|^B(=WuQQn2X$Nv~3X9^Q}F6150_IvelTSKX<<q=-&A4vUfM
z%Mj`uG-ZsGzihho@5b2w#L(L~1etU1)qQW|C%$55<zwJga?ha=%5)waO4J<_-UZG-
z_KKT*^$HVv4~#Ymus7Yn1VI$qg&KM>DRWJ10zIc62P0`PDuEARc|yv(_y805oZbEP
zt?!K;6WcWbszZD#f#rb<xgTKxlxJ`-vnb#&gZ37x1(lX?k}|gm#}JMDt6R%B#@~Q;
z?0w8^j^hmih=N2&CQ?qd?@6jEhJ3?~(+g^*P-=hF7=C=XH!@Ge^Xt*Le%M-xD#ii6
zBV_dXo0?RbwuTb+XZO}T?Vg!xe&^H_a3oacK3QEMKUp2$`k~=$KQZ>|*jK=yKhS*>
zIyi^O5Epmf?oaSLNpUiO<aeX2nzCm#Q=VIUeVj<;gb7Bt5(d`@Ogg}i`5EwA_L=>L
z6`M49MkaXhUvfWS*j1>_5hehSAfV<aU?34mcV~Y*0P4H{IHPpjv5ey7O9y=p0$e7M
zU%b7;7G{R+U?5?VbZO@_$a)TDMZ9@1Bv*i;g-ZoEEtdzoM_F`B-?-XHf3PilmHvCT
z_vz#X{CtOb=|;<em0uqSuy*Df{m)ii@^T~uK#8Mybh72{?+m-eSmbd5t?bWfl7=*t
z2Lf*Pfu1xFb;W>afwkhhdxh>tf`7Z;_$LpB#3}<?g$#l$c3Gj8@WaRRmfwV{;-Qo*
z4=?SCZj2vzg9kg(#9`2S;!x%6Q|g6)TN&R(!BkPF8&79e93B9&mW_c6o1V)A{>050
z@%xq;u8`+hsJJ^}l$qIGxa7~hF`uw+<a6XJgkAJqb=?(i1jQMx&qPu%(lf+knmjhG
zPxTQ}qTRlvef?nXt%npEypvjWH6FX9_o;_BV6Kn>eM|sJ7jiQeMyujU%#sN+kcU^)
zW5uX{(qW-|3iUhg*y-89Ez7aeT+J<gZ2`23UQl()gCKuTgtoP<g+l&;sKbneh0FVW
z&?jMfC(k_Z0F!ju@oY2~S1L>?UT;f;@@dZ<OC=>F2{@{^zf7eC5YXT{bQ3o~i9j!d
z&{6)HEG!oms+VK%a>DySboG3Sotv91W|_Or(j@G1{&VC-hqxD7D&YdEptc#B-w#jE
znZB+_{nA6y?@f%vb9=<~Ef7v&wLrGIB9lteo3xZG|Iy+44>dkZsvnNR`=Q_8xTI_Y
z{D!d-UWbO>pfVZ7eM8cNMq(wAggD^kiSwosm<L#WiV^oTjjz5U&Wo5_yGUPT?b|o}
z_Vp~sHjbNilXJ<0lZ*b&)yUV%sbZ7aMmFo2Yms4LdxGZEO>dC$kyrV2XP8z<A7ge@
zju?6x)ZD8slT1EKIv*3*l3N~eTS-V-a+%ivuZOiFYERv{kAaoIlw_K4+-0j>pw9xE
zb(bq;CSH|LS^qAYHeSbffq}ltw@sM+R;<z{?JZd$ipHR$k4@VQ8k!>EB0$i<BXXtT
zK!iiZBA?%Y$cC;QCgo(<1(9~OeRNDrve}I=&E_u)O!G!o#w2`-hgP<y%tV}Yb?+$A
zT41y8Ee%#ZERNG%m44M-C{+0__Vm|d?%b?CoZR;fM~ix0(S&o_Fe`G~{CN6n;N{cF
zH#>JG=l0CO>9J~<)F6Q66YKut^vLOHy+zOU$yk!Li<|j74Ik!Ip_gX^cuzFw3dgo|
zs|4um{>LB(W;uWLrGCR-V0k+xL;kxNOOr{4^o<?*)wGi5d+pD&&AzDnUy)<^)vVr9
zI`ay_+%DqrWUaIwX-ju`Cl>!}y2EVqD`7Vd#v3B6$m?`vP|j~!USXTM&Zro3Z?1e-
zx3LOji){2Fial$87F`>7S{q}c^V)}GDsl33mpf{lSKi0?S*L=Ted)P_vms<|Or$OO
zKh4+(PP;v!mLX3Vd#&m{#O&P>mMG9E>ep<g*xWU#Wpngac<Tl@6PE*UDH^$whmwJ{
zxp0yasE3KP-G`5G<jpWEJL%ibe1B6b{Pb1?*|YQNphBt#$Q{NM2K8~U(kt=Xhv?AI
zZ~kvB6YT;Kmr-e{JpfFM4te!rb}G-0*Y0n&IhY$W+=G?K*;c4A<@PO1&<!e9G&Z2~
z{PRz^kp{&&kl!;<X7n`UP@r+7PWn<Bsuq)_hDQN_C0XBJAiRCv2su-w-!=ww2NWAe
zBbDHfYL;$PZY0loC#Xb(d#~}0wBP!l^vi#I7r!Vqa_G0_M!5GO$hzY&+Rf?-S!~?F
zct3i1*7=|Q*YKhv$gMZ5m`3ClqnuNIu`XrH(QA%9-g!FsTd{We1+uIInmh-FC=LT5
ze@c3cg4lnBHu?9hpnofI=uSJWZ>g)H^wpJ7f!N!+k0@hxmdQ;S>38lFG2-g$VSUi5
z6FmR&p2HLFi;>~BU8{ek_4%jY$bbDNZ5URmj@k=CO0sln*u^Ne=iFD2%i-<6Cd9=Q
z%~_LejKR%aR1E2G-p|0qE8n8sd6&VTO?3ta7l1z?&n$Qu1>j=CBi!wXfBazolV5*P
zp_QU<BYqe396%R6l+4j;(eGm-6l=-fO_INr68dhBt{SC_d()s=1Hc~;*hGMGKQQ+;
zQpNuDtN1^@Wm*|z=x%#<L@*|Ux&qt6d)J2%yR28zpTa{yZ%54h9~8kO`2L@j1R0%@
zRairGB9ioZrRRF8&8*ZmsaEi`G+!n%-n#1(c4QxzbbOL$jYCuz0}mf9%0-OI)9Uj%
z-I4nak@WB7WSKGnfqgfcUgifxwnqWekFnamk`lP_n&8|>=gIK~mr+3r7>e{)hx6H>
z85!>ActObwN@FM6uFe=`w6*<MZNuo%Q5^~ahcxis-H=fg;9ldAF_MUSeHZn1f>`$;
z0fZ7a^~!JlA#*@B(Pz<viF8#Ug&AcZy12O9*!hV1`5=8T2vg+Qbu=ENGa8r)8OZ8d
zW<>8RQUR1h?mvKX^b`4mitRJp$(+&AtlhECVezN{<Jf_IM#CNJFHi20ebG4DIoxIC
zkDM<#IsV#294q;xl!|i&PorqnRCPVmukU?RbD2~cbYlQzd!5F40H>F(duSwbchX}i
z`6&<;T(KA*dd>LbWPmrVdW+J&mJW4UFZ?)0H&z?SQr_E!zcUsVlMk|+j|yuxg@B6p
z=A%)Ap%19q*2ph{y}Pi~etIg~4st-^{J6i3iX~URrbnQt2kHRo6paT}r~;t*)LUy$
zmFJ$U4Hz{H>ZY>m-ClEH1o?HYY@-h9>YIWJ8Hhq<91=Z=Fw!3)3=I#zV*gS5OnF1i
zNF|go(}3h9zgWI=5I;3`MDAwfljgsC{<UKyV9AD6V8{d)lj-w`U?nt<7Nyay9hV1o
z-a~S=?sgriPmEPp9o%kdx3S{}1xi5adR<6JX!+fYIdLTX2jF#Zg<VSrF~;y7jNb?3
z8XwcN3Kqg#cnbdCv(4Dw>pUyK>HB>ZdiH$$oBEm<`+PQ>MnejWKY#S>z5Q%w<NAUK
zrErjzk@@m-p$pZ)|2K$ZW=C3H+AOG(bVKcX`fP3J*S=0~wJRc4D94RA_J085kYf4<
zItKscXM~0r%u57Fd;JJSI&T$~bHSTUGZc0o9}R8L=&NPE5i{QaH_iwVx&YHP(FCrx
zry#Iq*B*tm`tbW)F6XC5pB_T+-d5)0zW3@m_vk42tTc4mFYzLh7?hI$I6<;U8X1AI
zH<L0#D>b>KgR)PYK@b9BVmpcOv5ke^rja)WTy7&Q8FaGLBJSHmsox%%BOiMkX0Z_%
z&12csADJto6|O<_@qD;{yefue0-Cx^I1#7p@<IOSdnWZkEozu7D1(2C>aRL6i5#q`
z52c_ltoF3A`3Uke73ecaRvp$Y7?7UFpQuuIBJ<lT$Yb+j3jB8I+rsN@D&1@e$@%S)
z0Id;Pqx5tVir`KdU?(d#7ZVs??{Ud&=D6i-H~<~~X;yCCN><`W7T^o?0+j;6TV6-q
z#S+*Ey6#LcLb90N3VS1yw)Zx4)8_xdK;T=MASIM%+)%@hI3)PJc5gg1T;@M2YizJk
zlXnH6U=&aYyM7Gn>iY`Ai!<c5wDc-NQHR@+Ws?=im@<eyCks~$f(-B$gn|veyG~Cp
z1(g8<9Bj({?yi0B2mHCeUGKK$8-wSxt;{mVR2V0)k~+5z4m38fPdZ;yiSwRds4Vs8
z?0<wq*~fa>1BSKN0a8<7Q1YmY3AB(S1irQtLcxE`L#}rBLv|dzQBs<E&UapYXlvOZ
z0#GkDQ>csU9{o~;ZT*qDG9j1;HJbB&Is0an6ik%h^c(gns=EsAW=Wb_CV#&EJ{(H(
z<T($*PHVFpPWY~oHh+9OxzGK`UbP*@^u2LQIwn9rXhYZsNkfv2w)Q^;y#w7Q8TmhM
zmw%`V!F4Q+;s!qec%L4W{x?7jK=VB)Od@#h^7Rf((_fE68m#D+4ho{2J=o+6n6nR)
z=<Ywm!6s;}%6D352va?zTEYjl@irDj-U?byR2IFwfn(CdS$`;%l>3(M!pZdS^K8{y
zZkzf?AglCJK{RQ@;Z@3oZzsewqazIW@ez30lr-O$gIlv`3>*pltm)hE_S}V*bP#9K
zunLxbdqt2Gqz<Rf`~dzEA3B{-(hkzU{q_c?EuFv}E343jb$^l$2X8<#W@s8fmDWwH
zG-DDrI09Pf;>h%G?`7~jz`WyvdQ>xD)mj}<I*C+*#p2x(Y@;PXIKvshK9&L_6wL!}
zaX43)p*|Q!h0_m>3vX7o5Y5l~c)=fl0%_E3H{)UKB#NR2HgLC-O*mB`7V2@vJ9=<N
zs$o3y2cvO<XUyDczVGMBkaP#;4c3LjkA$b8>3iJXv(|yy_Plg8RN?YVy;!klX%A>B
zZFY>-TIGkfGgHtGBw{RvT|VIh6$bxL;B)KZ_knDtbofd;p82Fu@9)F;mt8Fc;x_p-
zR3Qv}!^5CrOYY7;W4WL8*p1zHWuouf$6heZeMXtx_R5U(ZXDoPqxVuE2sR28kX+zb
zZ5DdjfN=~Q5=Q@f<oE@Z1)%q5T)x_wwBtn%VZFUN$keMGum^Yr7tPV1A1<gX%`pg9
zMG0G<UyBtQOFt#$?4&3Q=vxa*$27I7uSydB%TwkMcc#Vubvcm~1>!pSEaOaAXf^MQ
zOodEp^<6p6So#4Y))HyB-iiESd8-I>4R1)sx&dw3&;GldmN@(;jUb*%$%~HO>B(6X
z2y#sI`WfcRUxN3{feJ$e!AN(A2gcSrh|G249((cl+>(lt_>ElxIBs6*Q51wADFvSe
zJ;sw90~skNIHZcIr5+wa5wPZcs<Hz4o-UW3L0KRVOC4uwX&ZQ(iz6wyueGKl39FNd
zF}}cbQ0Jwoiw5?|9z^aa!-9U5L9C=AAL3Bz#Z`8$jWsfEL!B}bpyo*v^Ea!@w4Uep
zuQ&&oBahwRKDB}GC$FvCF48~C8*YjP_~|LpPD%TEg&6}%=?0U~SE`LQ;$%m$P(@T)
z@{HjOkSE)IfLrWhXLO%F<|cJe^tnEBph3lcc-tBlR)lL4W8}P0BA<2ENJw2>oelXL
zkFl46UHg3Drdg^v2ROZDkUw)6O2*AWUI(Us-O*6*3irjg7QdYOx)*p&+arE9ViHu=
zGhcetV_sL;jp<^p<lFJ!ZzswN391RQAz#I!oS=wKUp3Jv&8xolcfPx?P+M5l-0F${
z>pJ$8KN^)i?V=<qk*nB#y539xFT|Os@{{iiDyj!Y+DmqMLE?%(-0gOi1jW`249MK}
zD@*VWpb-eTjuyg+z}y+TASYZqEa{Fzctu*y{cLxsdPzhRv<>Xh-{2Ua2V~oT33KT6
zRQEYt_D0ELt<aBv6<uB5tR^56LL4W}$&9prAfgwJm<D)U7a!UCQc#qva-gDrsxJta
zuOR4Pc`V-)?#Dx~-w&b0@32!V4MU@^Jzb_lNsquVdcPvDlGx4;lxidN(xJF7YR2^J
z>oQN$W<gYf9qHf0m7CPG2~R~-!};;uY{6i1BnBJeg9AQ8kn=u&PYi76i7F?k1)oTR
zZ6z(SDVGpGQ1)@T^NPARekj60w7m}BmUgxH_qD${!97Ixy}x!Lgl9kUTMyr?vzxUF
zIWkS2Pw^w@*(g7!?U!z}B{aDoszS+UmC@!ggRvx)k(mP3^4XwdJU7j@?89pg+|PKf
zCo#Z{$_}ctk>>jdpCXO`T!b;9&TA+G`&S0K%Yv)zxD7!(?WIpO^6^3X2w%#b$`qK>
zt^E4>I8h&k(U>99Cv>Mqe+~Z6$00fs<8Xm1LX^Bg_9cG?eR1V98bgLA!d}5pdNn}I
zm;dNV9)J3Rd!y*Gd5=4Xl-F}Vy&D*Xm@r-%Sb%eJjolYD&XdrkL+g-PXvi^4tqa&H
zlwoCVmsibbZEyQ<zz|Ksl@&|bz4n(IMtLD%fNx9kVbG&xXgt!Vz?iBeht4Iu_lrsI
zX?$8wHo6<!ZUOXYYA7r^E2sx6jwKtP@s=Vnq*^f#q%-{RNs!y*MfmE;_<&@x5(654
zGCtYdO+?cNi2K4e*9t^?23Kw;v>e1~&$j47d$tcjV)zlW@;1NZ!%wD(=#Vy}#;(&W
z)_<0u(K`w|$cC~{-vsvP8A}Pd=G<ZOP!>)vAdz<4bKiyq2GEUXNdFxsr8j9^cH*=>
zfsKO`1c)z<WRc#LstzVl?AIIB%QxZC#qrGCvPs%P^;)Te)yPlujNDl9NObzP(yIDD
zbd{vtvaJ@)zR*Eh=eE<YXOQqvreX{A;6oM|=97BN`Rr|skB9|n20J)Hi0!c0@GYG?
z5zqb5_;WGZA)~tMY6EC5<H$+gtBV|PjU)*=>Gm?`Inv`H?XUJF*4<SfW>32Kq7qfH
zik;G4Y(2SNs;~(r_fnhh{Ru?F^=DNA;HqRt=0o(}P`jbu+9EiSoMQ>i66Y(;YwhN$
zg8dSiQbO#aM+N80V8rbrc4y{j^W&~%;~&YTd>a;oaK4icM`T2``*Ig?&xL8YbOv#s
z%d^%?sQe{(38o=3Gs$jKMPj8PEyRCDHPF97GX*DGciDFtU0Evg$ST_n{4it=g`3pC
zJ}Q<R!XlJt-v>0Z@}Y=<A6II^%4zM6K~dvODKOWR*^Q-t^~E>bfF|JV=;XRJAu&26
z(B;G!40$(D$vp65j{aVj#GL;;{24eDE1#1&lACyA1sy{g<+n#CFCjRf6HWz}D<G8r
z;|(|MSt<wpc$TK<lOOVTYaeTVz-TpJtaW(gj8~~lf4Pij=DOAUhfM)l<UdKJ_=p|K
zOK~D4Z$4jA0D<R52$5zxA8l-<9vH>v1Yh{2^(dd>Mqf)3{X@-gsN%JJ`#-4}b7C{b
zMwnUbN$ScHLF=SVJ>P9F4WqcJ61t2tnmyq~Q#$M>zjB^<DO$Re!B7Gy4w(O;*Lem3
zbK^;q){73Z@9|U|PDc}<X<Q)QKB$JhuZs0ghrk;B#vP;-t-$T(Fhcq|@X1>j(I?^e
zri%Mk(W!Sk3Y@=v48<ReaA6Vu;b2x*`<)avjUySbGGrpAIomx5Uqr`UW$`$}ZnbsI
zR`L|iczt_THEpSoGl|l18hL{s7zdXYN|d2|p9<m0{%^XFYp?^3GhV0|T~DiS55Rl$
zh&TQ~GGzZ7l7Y~FF|z@A>GAMh8VNf}jpF%Rt7F(q7NDELu~&2(0G5T>S04Mg*N<<>
zs28;4b50;93%aNOkTM`jfJ-Koz5PytTgIz;eG)b;C2@<Q^XTHqa}h2ng(Y(Mn7^m~
z*~dp^;pSZGm#3#*(rorwXkAv@Jh}Gcm6pjV!XEO3ERPp==l)fh{rBG|l0l<?2F$j#
za&B&J6a?)02O7#hKSL{eG;Og8hw9U+GRNU2YGkf8-J*XD?ZiSv%LHt|7ErP<ATNCR
z&aS!9qTCls%<Y)rU$0O5sC*z9UnLx_^&+Y{S`HZDKW%&$Nh7{_AP}U3ie2uBcSv!<
zLs2r!-A03)78eR|FU^crT90suYW(r&_jn|F&m(Z7XTe3R>=M8}Op6tvlj=YMCrz3v
z<#r7bYKJfR)Z`<cG|XKWqUEmj5rpoL0-y<5b+x|fEAE!|1U<`IIb0{hQ4ThHWNg|6
zzua!z+-sVmL4+v7Bi=9yHdiBbhT*#)kO#N#*wcbz%8q<7z-7E>5<-bg<nyow-9$9p
zuPcU;iVDS+78^=uj=3|$gmUK_3KWL_b=g65Hw~u!CKFjvu1J&1mAc<)pimS76UYET
z<xeiu=Rc!+9gXl>f4)iruR_h_cZx<^WOF6J(N8io$}1GuA62p@_^oA(w;;YaT;j0l
zaS;0QeR3kn_O<8qDF@GzW6iZeI$9#$M+0JiSZPl6rJuZ^MqdDDz;I6wQyE_Yo=Ql?
z#FKDTs}Og{uRlT==@K6EIhPxwdwjYG+Um#Aj=+Xt-=R;bK)Ny5deRozSedm7qSBlj
zW0{b%{^RuL+P`zBIUU_|M!qBV#Mq>8ucjCL3UaT%i^ZyOgE^K>Tm6b5c#^`7FVAGA
zk7(r@w~RCTo}XeQuI1kM#ao%%k^P<GnXp_Btdux#AqMlR<RpVUj!rqDb-cYdflm(h
znZ&F2*5&@CiUBnSa(IS2df#CRCRza@4Sq9ezQ50pw?Q=i2m-Lr6N(}97$`k3R`!I|
zUM7u0vCM}bC|flu7|44P=KtSL<hhftV$yt^zly?;R)7@CK|X#5x;nl0H!h)#w1P3)
zdP&q5^8(T57Gr|VuuvF^9Z@!y`9Q&;CEAa6N1x2*zu+5%w&Udr5J$zUDzJD&949Fq
z?)UK9O8xR}yC)-X87OT_G|Ci%=Jv_SMujyY!zQ!7P_&^C6+oe^jcDZ4*Ev}=1A6Ej
z1lo$T`1*T7grNdYZ%ZRT$V#;9H&Lr_8lB$y{!)Bz@cx(rsS9#qPSDzj-+k)<iuBQ%
zPfCA2CM1?WBogk(wylu#U(1NrvWp<>e8DX{lt)iZ9{7-AKMMvpQDbF0IV?~+T{=0;
zwQPhB<}vAI%3%VJv5G0(6Z+n(pxw`k>cA~C1+(nhDI`DOyO8fQ{QHsm-~Oq;h8&v8
zBZ!KQvPkvT0!E~h^*LnqeCo_C`UHow=mzLy^i=Aa^l|#JDJ7R+e_fhRd7OUDuHhWx
zeR+T8q_`9OUe=H;j32cGxv>RU6Mppr1UPJk=#%o_ARR>eza|_w;h432(X{}#+(d%@
zP&FvqI+;_w-eZS@Ev4Vd-;fs8XU2)z;2K-Q%*`i+l4)O<<~7lHJ~~zm0--!f&pjts
z;p4x$-rObOwCjda!uPkBZX#cgwS^0OgN>R*HbED+fY+a;3GD{ay#SfL)P7dhCimlT
z%M2NM(bY0lL7tyixSmZNK`IKMqNnmK4o<dshWN3DLu|8PsE~9ls~B{=*m&V+qk_Vi
z^1zBfqd@<GD7MZEP{tftsdg-#e(@0ZR%!kBrVsxp1PY}23T_=g?`ZR@7=b|d|13x2
zoiPp%X#@Jn_RJ6+GB!KO?1s8r&&LzBITh+(Z-bZ(n5qi&@xnxlRC{cb^ToJ!m7^)%
zG8XD<mscf?-&W<Ix-`ASBlda*A2;I(hN{?62Cwz7Qa0M@&n`~L0%Q@>#^UEChBKMF
zO{3}z4)hF|F|7u=zPxmmS6;|@Ici1-#bdj*r8&F@ljIoq-}0>_QdFm75PWX~oWOBV
z;CI2mw4fufD^W1z;XTd1Y*iXdh_PjSDxHWTPFok&ne$cP9e?cXBAFRO?3nDYe=nPH
z22p~T=u8qn)G4T81C8f8x3|cjgDmxnfGY|B>aTb0J<O$xVXuc}QsQ%V{2($Onx;Y9
z!r_<p^+&QbH?KiUldV~i9TlvDPjQhhQigo?p}=B7jEg5wa@h;oY5|(SMB}yX-x~uB
z=yjNA{>m-cLit__^I;u^m>?~(e+e^~F}D`=DPWnpjz>g93_1nYEWi}qyB)Pd{k7YX
z-Cq>ABsjGuX=aVF84j;FZ_StTwzX%_MATIe0<#vTR5`aKH}^*(_E3jalnE}aOKG{T
z22uOyDEXNfqEjYTUY9<W7+}*ZzlJ5ZwLWMlh}OVo8LZj(cmjPVn1LOae0L%IcL-zc
zm%EnHNe4Wc25d{f;DbNyUwq|8qfve2STfl|O=K|IVGfwl-c`%ANEKUC`oqU6p?>(I
zi(#C1VC-k9Y?knbQ%c=S@eyryBf=e74RqPs5#i!#K2Pc2U)QdAKol)jVy1b5(@?2w
z5@}Nsi2^$zRcAo_-j5$J8kk0)Vhus9H7ZMbHLkWR0IGPl3Xfz3yzSe-i^av#lV7>i
zM>D}V%Nyq0=y1;qI0fw4)qv91nUm3H3o>$0mzFrhZyJMg{|7L8kQpPg7k@0Jc&dn<
ztn*B^A7Q30LBFi)opqAfXbj1bDA!b@F|x?_x6fNRqe{jf9pGFdPoqZT=Fhkl%tqa6
z=y2g97(GaD(%arP*<HNb&iywxX*F8to#^AM9G=L$%QRy8=ZEtIU^XhC73E6$`J9Zi
zAjA)03+yic;Jf>#D58fK9m+zhioJ%5;(3Vee&vZ1X5M5R3ub#&Y)3cP_Vn2s*e^WQ
z{rsGdfQ~)|5801>ae^V#w2#Kx6E2>o)J+S>IT-}yYX($nmHLvr2KX83d0Omsw`bbJ
zTnOczVdH$ko60Hp8@Z`u=!+#P^$upaG3yqzX3fy+bX4uu?LgFpAqe7K(J<XB*%_hj
zBtDLK^GkMrs2zOBP~uqGu|$=#?u9<1fF1X_X$Fs>X)9<`gM~i}8pcV0TJaaB3$K#p
zW_WzE2<1P~tH4eE4_`qqB#r}yJ{E~k6f2s=iHzCyX_(*886sh9dBF#?i|7%uK@{yG
z`D!?Z>>XfTR7yXD{@KLMJusAjz#@%0$R}5jHoz0424=wQJ>HcMC7neJ4H2FB7&2JG
zl;U%2c{c|;z7?i@Z|?L1s}(i&CgpGb@&phi(7lraMi@oA=<z}ZG@W&?poMtU0W^pX
z_bu&c$nG|3rXgdFl&{L1eCBvbpZ4z^jr|FT_^gcSu`-bt0_d*oH=d!<IMgPfyLEw_
z*t&=@=>3}-9<C7wJoY;PYZ{07W!XKll^H_hxnP?w@<4KZl~n%a<#(J|9`HMbN3i79
ztz8@DXK_K=#<AR&EqoN}L|5P1a&6J2%P{0t(k(~PWo;PRdVm|>`@hH*KwOLapgBLC
zNIvW?+DK-B+>hBoZp`t04yAl;Dn|7hRe-z-M8lesr=#}R38ywJdnr-JKb#lIbxH&r
zY(>Dov&n?ZT0ium6v78trRIYmZH-)}S4)YQkpnA}_m);~$Ccn){RZxfJSZ;%=lp!&
zUuPqYy*X~ZG&(z0Xn58yejE0Y6E36oC=6bltUN_$$swBF?~L0xCgEi`$bER(@XOM>
zlbbr8e7G8Ut|cNzKjzi5Rr2!$FQ>r5?H?xW|NU#)7szcxB|e*S%OAxBosR%j!I?Z_
zSg&Ip>8T%Su)1t0wA<UO_^DExMx^ANjAn<P6>gM_mma1)Uve`|oxh)k3RWBR*c}^e
zwNsC?FWqhx7EG9*cqO4oha@I8RbF^fsL&HrrX{D>WJG!5v2OdV3@T#XpryEdQp<F@
zZ)=e2vvE^_?ZOkPl3t#BHTNvgnugd4Yv&TGubk4|3rb8Oq-&1;2^Zi<HYPt}bRFFo
zm5uFkMXYkGFFoY!6UQCDVCO-YMk_g7V)2>fT5?`5adMdAT%v_3(<@l&Fw1X+yDsCY
zF-pIA6C(OIT*b6pg|)xH4$M<ruQ)V!BTdx#qvJj5D_>X^43u)~-KTkMomyB&JwZP!
zglb7PZa)$a7MwXRw;X7fo3XN=*SfuX(fRT+8H!l328Oa2NKMjOx4zinm<)ly;jWK)
zH<EYJd_|0CukktY+0HIolHmwdz1{EOR`#_~rUY_@Csc-fcbB+pnJ!Za+{<?0-`E%l
zUgBC@P;z@w4(;EzW9;RFB(OlRfsiB~3V}Dd4@N>Sf<tF%7H%v3k+PxaKjuC8cUZNn
z2O*u;*d04<2@BKRf2ZG<&pS{<@;tQ~uDzm=MR6Mgsy(^Qx{4}AOhWrQTYPG9AF297
zlZdDDRYMvN^g`!>#-pnk&ym|8YK%Wa#xUiFf0b9MPI6n>cA{YNzT%mY0>Af0Sp~|X
z`Ew@lK;i7Tej0<z)c9nrZ~$6B&a<MV(JE37uk_mU>fhqXsI21_0-RA*#)F9g=?4-c
zBhwLFI1ZwKLWp*puYU~<L!wox?dHU%8aoF0L>q$BX6zc{mU{VZ*`>1sPqy*Bk5Bg3
z1@}5s_&xb;6(-Z=_`5E8cg7fj`ElB7%z5MZ73p0QAGkYrj-I9H$nK-xsY-=SnVP+r
z-kNd!?{nry)Z%Q*Czh#q6xrnD$fAeyY3{S273*2kGcjpF)&72pSNWoK!fuAX@Z!N|
z1_F5yetcY_AI45W-EorNi+$IQLzL8e-fEqY-iR`)Q+xT_{N>rzCgMVEciR>rqXwVA
zGl%D_4ZqZJSRgj<c-}s~SpT<xOgDR`iuu;m28)YT(*Ne)`O*6|bP?{ece>Be_;mv;
zBWg7&dLOs(@`VB}ZPuuBf+ESxG1DjsMWz`w%e1;B)hd-fSoJ@O)uQjLyi3pJ*&^Y+
zv7rNzFrmzTG3}@(a!VX~mL-N(1?z~J!w`}-E=m6zmkDaOE^12%Tv!qcZKSoiqwhB9
zvRYDDd|Xlp_L<;GO=Q5`*RB+n83fcqF*#khDDWrqH?tXeGHU94CFP&1y@g!9*`Ijs
z{buvNwCRE3u&NN&!pNM>_4wWhI~6V}2LfdJBi2NJ!(_nJWyJdGW(fRv>*+@>rBh~*
zbWGntlFlE+j5c0vOQLfK3d~8A7ltwQI0umGj_rlKE^LuFp8I+(p)<=wm+!cl$0af5
zU@5%1g2cwUq9H;^s3v`{*UKj*AmAc>6B<U!MfwX$7W+MZE0@wN&`2buv9PZz_Rz{j
z)(Gzo?cxvp`qgtuxW(p&#{vKN(2(ZP(C>m2gHekVGP}4wthlh0z>Pn5X$39>6v*i2
zS4p#y<X@MOk^vsLJ9mP1*3p4ZBN-Q`_<ea#`-@4{x@AI1x{cmc7&Q<BI^cD65%aB(
zOSKb1d|fWm>$8IKIu#f84Ow_cAB*wv$fvl^S*8c~9^+EDd7h%ZB=h+_J0JFyFWS-Z
zTr%*Oa&6Y?K~}&T>N&Yc0#ZuTqs^LJLR)y-{=d%7I<CrX-}(XzSd=WJyOeH}ZfOK0
z1Oy2I2_+UO-Q6XjgfvJf-AJQS(nyDZba%aTdE)L9_wIAv{qYYr8`!d*XU%8M@f+hi
zay@~ej{H=n0eo4|=;MRX2=1qlwAtecP_3Q%{IyP_fb0Ir(~fWp^h`qIi(|@u?^$DU
zJXwqAFGUxmV(!<Mv&~n6_RDXQ%<bkMDPch&MNRHE`qvk8wm*ke87YoXMXpbwo{6(w
z?u}=V-r|5R@cb&p`!u@^CAKy%))SCj{Lw|$ao(;gsD+Gd*7$k>mjne3oBPHRb|wC^
zQA82g;0GFNs4iT_7HlvwnRKE^4;-u0*DOrxHsaEX+_4k?FPqdYh;b<KQL>$31o7T^
z*G4zM&llhE5hh7pi3;?&g~e>>z&lTcUelV2nXEPc#^SEST>KiotpUunbrkobA581;
z?UaME^Ndt6bdb*AD`XpY8plDHMo5}v(-isDea4I$7l+C67fQYD1e{&c?I>V}jOybv
z(97*}cS!cLiCEA^2yuI91T7}X%*iL|(8VYhJaPF2mXl#s@g59D3Qhn#i08A`E%Yf;
zO6tc$?xGT{7hII7ZS=g@GCf<0UbbH^jO=q^A1&ixXIFMRtZkcsM>}QkD4hW>Ggo5Q
z=j3MPpKVyezxIAqcoRZTVBn1<P8##;nRbb839@3u;73DhD^07z^NpLK@{3@~e(TO~
z_{6*WmSJZL%@X2Id^P)=Hi9%144r@6!$X#>CAv*&pRtrsYdz%*3UKny2)5M)uMUaU
z`7rkA161J|heBfO($D5-1l;F+CHq~<AodpKsPR3Cl-HfiYO=>8u6E*Ebq7mCC!=A+
zd*M_8MW3&Qw8i&)tL%?PMMp}2lL8AwIH;p_JJ66Ub(r*6Xeo5GJ<kvCcwj<(&0!n1
zW5tG$?O0+17vDUoZa3FonXR(l`MIPv-+up!sbf<6RZ1cP3K=SAH*z#wIo+cc9Q*lv
z!5GEUwxjlW=AKcz)2SNPLk({2lg8iO2LFkE@VBq|B8;38$DH|yUjKd^m4zS8vj7a@
zFovT0s1e(G4*i1Wf(;-IUjoK<(e<Cr`h?ELKhLW9<fjhlYygLNF44#Yzz~!Jn?QGt
z`0U3lkyq}G_RB0wiYFy@4DOm2T17<87$Zo=9uIZLmV312a}^2Gh)yf9)~928pEa2n
zHO~sAW-G+Yx{1<OJT`D$c6wTW|I(5W+6JmL80ck1?h>*jXb+kJb9$taWrGT0=I|Dc
zOc-Vlg4^(JF}JUA;t<O>)b3Wb61`8eWu2;?%z;S7@sXGRvd}YDYqFgIv3C|j=H6S@
zc^BrXgKdQwysO&zso3<6{oxmDkA$d+K-D6?*8!IUx!9%J!CH}ZKbtwgF&wONa<xs%
zRrYlf8=9)$|GY(ULImG=UX_Lq62bh!i!#N-ujj5>1aZc=3|7;|XLF94AB}U2bpwje
ze5Ha+t5BNTR^yDxLm1|BuJn%<vDoyf#2H>;56mhL?&|V8tPFq|s8{|J5K>B)#XN1a
zwUuh^fc~o&gyY^}iC+@adn7~NJ$6snAnR&h&)xm%HzDf}hloEODE`gI5?&1RxTLEx
z^jgxB7VkVsEOR1Bvq?;3!P}9alSG7#=>zD4zKBUQ!Kk3}zWmB&ZH-E?0nB?Q6!R+T
zg9OtHH1~xj<(*4^2yzA(+UzCO3>>cU<~Xc|SCSda)o#<qG>@aDGBk~2wEhHXc$;aq
zfiW|9TR4LeFgaG*+55Yc)m8)k@C^y^mz~Y;Ppjcb(h`jiY-gX7|1u?A?!4-?S34`n
zlJt*v;)7AucZNHM)qa#OG5|w@0>25cM)X0^rwWT0r_X72^_x9%FIUAgz5)-x78k?O
zX%oXeyBBh7KT4)@hpJwg%VBTak5KpV`KXdM=?3A*EgReU`E~9qDsgIll&|+$&smfY
z9!Fe>UdHp{W$iD#10osA*wLbVZM7amZ;}k$o)EF=<aBe^|KjumI1#;wjdg;$&2kQw
z`A(t6r6~7G917Zvk-}V+(t==r=CKC?V!JKv{jTLbP|9f&<5Y(M>s4s*$&NTphPT+D
zot4Z5xT0)yxqQ+c$yfpTE>zKc;6UcO)F>n|T>J1+57;B0*4TJ<d`fyYq%c_}tTbHl
zP$45dy%hWUY+#&jOu~6J%)HrrVB2j*tFg|cTg73^uwcWi<Ey?fkPVZ7ile(DzTzte
zwxc{7%U1=Z38CreYac-fMrf(tJr(a|uuQH?G+-^_F4xSJ=fwfk>sue3F^*KZ))!lo
zPWyfQ@uSNl51fepuSdu4Q%V#bGAL23xGs4P$Ufa)2oHGv{w<ioNEzZrkcck3K@Zf(
zW#hMBsWA7l60a-?xax^pHh(z$-0x|yc;b(Cgh-#T2uUiM3qYj~9daZl7s0WR^ttj=
z!ts{EGP6E1l^RV960mNWtJ`5FbE?bI%dkDeqva6Usx(u<-4F=I%$byxsH}6^xT)N{
zLi5ekGyNrcdl0uH93dxzEsk=U(99H@F||z;v{tM>ZAZP8sb<@}19iC~4V-@!D$JBe
z1@Wb%-}O(6Do<xyoM5yy0xIL|jAo!NoTtR_#&oG%unn&)kwgERf<we@9d{Snt<zZK
zRkiS^!@I!P8a8zq%9zfx_FeUHS+aG=k+lZxl+X#0L(A!QT>>ldwgc!W=mC9XTd8w1
z15sE>k6FJsQOgN}O@eJVuq>wJnaHK#2qZf1c-8$lO1U5)x>~GfBd_$2r$HXD|A0)_
zB}a{e#X}48T#ED-en|hKi7;tWu@}R#03Ek^Twp|u9&B<(9{xyS?HDFDoF2TLt5=L)
z+qNi{z^*6Te7-&vvNR#MU5hEJ<E96}3Mm*6sdy8{*~GksFRFU5qPz@}(T-igJq)u0
zpH${=V|FW^G_q)ksGOgC)|;C6x_AzhlH4Uw<|e*;GIvIepNR8k0d9CPjD*{`qs+dr
zQRQzTU|*8}iSGiOQlFs9`YjeBekom-1Ha(AZ!jd6xZ7y;k}&vra|D|&_m!$dDawF3
zxP&u=n6^AcV2{;lbN}{4*%IndX1gmMGNbJ~&28$wXBE7-A2oi&o=ZqT3_`Z1UQ-mh
z_AbG+pZXG#<>q&*@?-lJ5C)Zix<2FS?B@wnC%ndsXIAFm0s1qHwf;jgY_axuYd|fj
zft1(Fc_>)!9nbXgyln79y;BihRTH~>(e2h*fLqOt$^kbhKV5ZjWgn=|a=O^8Fwuk@
zx1!(JNxQhw^z*YC%f!osCw5peuU`gN#eVpt;toPTk}>KR^R0($4^1NJ`b4IsXR<1#
zN$b#q=JCh(hLk>n^-df$Dh`G#1wq#qXEh3_BdC?SbxY*Fg0!S2`Q45zFwq#>zB<Pl
zay;2Ci>k&>k`!=U{1GTHf|hDt;)2)q0vZ<^M3yB92=W(bD=+mqqwi~1eg^I`$5Sxz
z=mA07Vw-5?cj<KF&xSQn)8^-iFemHgn~-;wsJ$;!>>|@_Akl<5fKoA3poZe>U>r>~
zV|sZSUFpiR+Ug|16n1eL?Hw_6A_=_<@L;Sk*0z%2eyr5(hL0Ix#0&MOV|qIUOLWsh
zK-onjd_L<u#m?jS>r1jR++F{_eF8Nz7!66&$MBIc=lIKhgYIR8kwqr@BX@C8uL`Tb
zma;(M#vGz226NSD$z){Oe#+OEGdU-zIdmjb7)~H#TiH+_ctHfvH2De4@k05$Ckk;X
zMGfA?`(R<;5m1}t18_jBag@xgsX-iT8tgW#qgfN@2-9j<J(#@nDJkj-6LrA(R(j9+
zh|;WiBKFt4gyQ?nQK97kS@smT2Zc4^T6OmK)`pgiJ)euVq&Y5ja7GH)Id$|3J70#E
zqUJmRx^@C0Mj1VjD%ca!=&ZCe>&?II_#zi1iuYGD^ytqS>QS_%AY)8j{af$`sH`ym
zEH0G?ytciiT98bZ#Nl*TZgh`eiPn>6$idLA^M&k)-lHE&DZM2=$#<A@X8NN5pF05q
zzgcrIi%`>8Y|fMaNlZHFqGZkKp}YeQ<Z}Jf+Q|jTT^71E{qjHTg&Q=ke_%bj!thhe
z;X6T-F4M^K_&9oTY>gNIwN58VuA}`ZUtWvy;Z8X~j6b?NFJcJo=w%+L4`p~dlVhOu
z<)h!0sW8j`FhO}@zByr@W^TSV^kU_y>vUt#hgv*jw`uMFGKoi^iHw91kWYoJ;KrmM
z1_>i6OHp97Zl-ye<HP+eZKl$)qH+Hlxf=wzh|jt|!C^qO8;?$E{^aUpc!U(on3B~X
zKw{bO#!WlMev)0Q?x24PH7ZCD4;<baR(D3$I8`*Dw-{9}Z3A|}cBLZMe1J8Tk4Yi~
zWsl%le{nKfmLxJLHh494{K&V6tRn_!9di2T#kcxJHNh__&;YjJ<ID|Mp<LfKF4odt
zd$E9HofH~2N!Ipj_<+9-Hd2i^)N{`dz5zhI<8B_pYdP?jJ7AC^S4>Tz_sJ-BY2r12
zd<fY13M4*i8N9vVwH-&wm?9>hVxvLRz5dyGtDX(}`>_QH0+)`*Ie7rGr4vLCUf36F
zZmVPy5Vas7ok)>`G#)|Yw68hY4nBNY8rTR%JOyk>qlyi^QXa?%s5gClTG782ezZo&
zCADkW8LskB<8;60<8l!B^#{uhZvMukdk*OUzr^AYLP(o)1prJ>zCb0}`xkCQ`SE}=
z(YYi1SYXl?#J@jie`EkK|LW2I_I>JmHzqwL(^w{hyObyW$(>#(<~R6r>>wUyBatEf
zKz||#uM6-K_2d|r<m=Cmp{glPRhOjE#)usQz_;_UH7#B+_f&V2vJ&ryVXKbVm32xw
zm_Uw=6D1RHJb{Y$JR@hyF=H@eY<yA=aQ3o=;0zo#Ip0z3dXUJr1+pR8Hl_l*Kg{tT
zpq4h^Nk4|Sq>6j{id^oZut5FZJ-fN~98Kw+AzB8bBMZU+2^b|Mb5sYD_{;#kzLE{K
z-1;1tr#&--*ZPM~r<hmYKe;p|e4Fm9%Uieq%?5~;3-=p!ltO^F`dh7?YF8@95P8GQ
znK564gHd-Be9|7u5>BAdGo~BD`%Ef$p2sC;0@!Xx806Z&VBVTRG4Wh|q6x-Cs!f0>
z5yDL4$&;!Xn@1W|Ew}L<vuxe)W^y>Bjl7^hq+#jDgFD=U6%{Ua0?PtjzCGJOXs=Sp
zS_QN6y`iG<5;sp+<5J*B1@MfPawN!S*kqga#aBWzUo@I81>oP#U#j-3`|q$CzJAiT
zQur1snXY3bs!4b*xRQD7WtEvdCs>MT^q<`BI|B7z34lg5l5<Hx%b1@0L;%@09fx(u
zt|1c9&Oqf{4F<U*nwcsxd|2}0*7R?&w0Rt=mVU6SpSYo5b)j__&E86KJ8Gj-*(u9a
zx`BV75je!WOY8Q~ZAGi39|o1ku3JWpe8PkrepuGsW%2Fhrgn*27SOsznS^}zz|pYq
z0yrL>*R5$uWnG=bxy_*k{lXuc6y`h&>FKJ*?WgSsbL66J7FANLqrt&oM8MdY7}{yi
zI&XtswymKmnqL@e_ZgNPj>E4c!Z}MknaPp(sW&P<Z7WYXxU(FlNt7T!CL0{H8m<&*
zK_F!U2^ip`Q30J)A()@{8tFbcgTjs6fm-XN8TM2nYFE?b=3t4-U~{zoVgSswq--VR
z)|D`|$hH{#L~hEn>RSXRN%WB@J67FScuNm#rXO!Nop5-THm$ZcpVYO8r8D*d5O6!2
zwc+of(7%=O|LrH=)8Ii*hda#gTQ<kcnO0#_4Mik-ntr=)2$-|=?_P}+zlm2ZHF?<<
z<$ZHDunOkE4g^{k$L3fD&=93O)f<JL;k-VOz~dO(XU@N$SX8>s0qp1e%+5Vzuj{q!
zyGZlb%A`M+7&LXQ`DtbWr7*2GT~rRFlxYDVo_kFlKck3}OLXSv9sWgWfruF=ZQC<|
z<#;hufAn^pa54Mp0=Iyq@KMUpIujp|x>iyfa%94XffwGP0*b#?`&{lD?*mZj+R-Kn
z@b;wp7du$Ebw^cqSYf(#_EmY>Ri4?_v5H4O%ni958XxW;xwQ3dc2l=+E}WV#)y%E@
z$f{5dQZtxQeRTfzm7B%7RYF-}5Uw|YOe8uLNx|l1jkw$yc(f{Q=v7*9cwbE6=-LeD
zy?OqCW|}r|Za{FAjW7&E%nZjq&c(biElvUZc}1{eOS`{e0Z}8BHUrLw1dyL#RQjx`
z<s)~powNp?gELwhn%!hKKpBFL-R^h}0E@cP6&7@+jZYWf;K#m;us6PT?qw~7R&-y3
ze5F;@GkXO_WoDecd2-uJz2OMG1^d;0;;)^=uN^1N^5J7ottkih127CfI54J4;=y(o
zMH#g^6s_k#xpICu;d4g!bU@-{0W;dfsNj<pEDizHG?KmM;C*64kK9GsMt(_&D1td$
zF@b48@&6T@RY?1|-1O9cr;s!<``?}9uNgi8R;Y)lWKL*5Hrl;k{$~kxCWq(|MBM}n
zNksc<Ex(%GK_O?L1OzRgtC2>wqletkTl8yzWV?-lJWhjgCrhDzLta=a&2d`~<y6hi
zW3`NiZTT0_=kpz?c-S2pV3huS9B^HWm_6cCibPkbz1a|j0_!$SZj7%m=K;IENBo*w
zaU-U`Mk61qYC1=OzO{!^ulkbt4QudlXZ=R&&saIx!Vsv96%1SQ{ZB$>pzRIdoz-5*
zu|E8Cx|WZh^J-k_kW0N=Y8s;zRB+}Cfntg4QRXSB-`g_detE-JD2oi_AR}lWkWt`Y
zJBUdFlsc<-g-nFKWwYv}I#@tze{#|tOHUmw<OsY#RkNPkM;qhhNG2#t665mYpPVc!
zQCdpyHprPh%4VC8_Dq~n1~AoGw2O7rI?G)Q<^xu7Qg?=wgf~3qkuBQuOu7VVH=Tsv
z^I5xvStssq4e}_ONg;%$GJ77+?4!DQzk{?Bky=)|tA<EWZu=5%fV*RUTi|HqSK+T2
z>qZCbp}UvOfhRGc_%|CiEaqvW490T}D0sB9Jv0T*au>%7C$FG2Tb`<iA|&Jk_c~Hw
z8YU$s%3k|lS6L<-cbeS~6L82zhL-^9;|U&n>XU5I3h*kckN*JU0YT=H83(i99bEr2
zA^f*X%O5_8iHSu2R1<|QTR-8x;oEu+ve3XmZOG`CNah^<*LN1*A)##ZBd5+$`eun@
zOJYtB%|oGTVZwm6SF}j6!DbdM2}9xMsCk#A*Rjlj?*DZ79f+~?htO+NmG@O<2i1J-
zCu{=C)A$ojlTM)pymn?EwV>Udnb+d*A^za#@Gu7k<#P@xfuCvo(!$YVLP8%j3}t2W
z@Ro{WTK$8~@QR;H1}*K1Y`W4;R%X$M2riI?769Xs4G7q5<XDY{J)Dbsk+69c&{>G{
z`o~yjLx#lx*pUgIoOe^3Pui^4Vjz(qV=pY4p?Ge30%GTrZ@@M*P-!W?z82GUQ9Wf7
z3e#Bhns!;LG7fxsESBl-#2m;3<9I9I6E2ZaR9dfoy>nxuKK>P7MZjQVi{D)|KV$Y;
zU`O?}{1mwBhb`@|j=Ud4y<Qbw?Lf-er{rFg6cs=2j=q7BM}p(uFCqtEnSRybB}G0S
zQD)Bq{;Iz`rY+NeU?deRnYA==JdaHK3!pC^z5K~ht!v=1N0=YsCu*A}RHa$`5?6}E
z0Em(e<YiT!kJr*z1IC~NFUE?rwR=v3M%LkDBI?s_8*@2YCA$}BL$8;}*2h2Q&w#G8
zbw_aTfcJwsqh|5iY?G~1mt>~()L4D=iF-poIMXQ4sg}*6;WqQrT?u#80C&Kk`O;>^
zQaBI&pIMy#ruzQfUjHQ+67iKTf*36Hm1dGAajX1qF&dF&r+>YgIZrJPEAw!nb>+?l
zHbs)yXE^jUQ|#cWZrAZ*Z^eEwl(9gVR((s>;Z68B{}{JGTkAr<t-WtUr|9<a*IvS_
zg<C|}QmJ*U;THJa+#JA~QXE{FZ!>r=syiGI3`t|v9}sd#KC3b5?sw_K7Xq}@w-J=&
z&Jh7jzf#Q8#f@)FNtTbV0^-S~mBB&ji@hjJL9%$Q3EjdFY{>|P%+?b8FnckWi_5fN
z0yn_0>C_}4A9O%JZvjPDDZWPzjOU}3OU~3+G0oG*zV6JB>}?VrQ=j^Q%-gF#^KB5k
zY2Rkx?tx!OzchZ`!a)3r8wRy_&=ugGG1ZDYFp(WCR@^3VzkEEzi)rdiD#j{}(*1ao
zV{0-kw{682g&LkQ#4LU~Pa}AJ%EDtiyR#3P6@-trrLrOxBQX}1L1NU&C5J&a%$QtN
z^uc7U5|tU(>+ME1=1Ob52GO&hLiQk0H#w867g7^T2a=-l<2?ucugulm4Yv>d3rHTd
z;u}BfMfV$R_S|urd=Gn73it8^LxKLQ7B|0=Pn75<c-&SK^yPp!!Va2glw`sz!mA=$
z>QImlP<FphcDfH=o#1My(MB;kqysfjsaW8S2$vb?OFwkuW=NF<hT+`{f@g4A=Sl}C
z*6T?2{Y-a=R&u;@Y$UfmE1#9l8@>ER*MD7r;%IzsiX>`ln3e*)<0ru&^$kcEhgN)2
zlB9nOpf3lR`@6y74kn1jd3>1d>78pMxJ@c=tiuE@6XQ^@_1_i5|M|)9-{1K%z?@U0
zSx8qh?i_1>t*G8%IMNuFeDj&-#`eW^IM#~Big#T^KrCMTtpFYQ;ClPzm#g9s6FxCV
zqxPUk5Fxxw2qorb3t$J;VbRP6((g=H!n|P8##Zm{kUMR+)Yekf%1_=9I8jGy2SIWB
zedP<^D(=zs|0sT{u{x4$=uAf{TjwcGTOP(>&~dai+r+po+Tz(-mJ04IWT~86U3E0I
zeo&knj1ZpnM2@S6omxhlQJ~sKdVaF*)woSbHL`MX&DyZ}7kpKbWt-9$wWqB}1L;^`
zD}*K;3OBA?eJI{L473%PkXbJ;-l9xpD=(jM#}Z3hM{`rx;i2PF);Xu#1X|fgoJ*uz
zzOG%E?!7kIRZ0o5lsz^xCRENmPUAs6faDS6db@qC)6NrEM0+N`Xe>1w4A8znPOpuI
zO}ci5TZn`G+q%xHIYWfS%4&h_0-UIvzF3Uoy(-mvbbelDlJOv_=(#WF7(T=srqjMK
z64b;$QL_Z9^qzuAiU}cS7A}dA0nAMNcmls)R5ru3pV#eBgU6)n5hc2~QS3F@0LIu@
z&74XojB}9!sLyer2vAQW!z2o3Xl%f=<Vq%V7%PIuX>9XfQX=H<AsMy^aFB`0$eIP=
zaY}hZ<YeRV1ZEP}T9Oq<C|GNtfQcPxKWW)_=qP`ILrX~i8rt%v95}kpWy?*!Qp;M^
za_BJzO<>!k!x@}}QM%T#lllOGu`q-+v4B_0a0Ku+l?TvQl|x2|*mbRjvdlX+vbt&R
zwu{i#S8;gBZ6;))h4Lt_RLU<$9!MO%3=I4l5pO|VOP0v0JvJTg#4S@l%e~Y`*rt`k
zF;{D+(S~eUyZ~0O4+1mpDmz{XRgLa}P(bYuS6jd2a=?H5hPvIP<+zrnWU~b#!!_~;
zBL8e2jG;if*pWRUdeOL>Db^rE$_W4!-F5GevQSKZQiAB@UEFPi^Zy_J5ZEA}&G?p$
z)+_z2tz?N~kcq&5qd>mJODY|^I|?Q76#HCg9wUKt_c4IMr#%=dHj|^#yv4~qr$Snq
z;Bt=)ZvU*&#j?6V(h6$cWQx-EZ8MB@X4S`Jb||-J`bnLZN`e{>{zJvZMtLP{?T3wb
zLR}mJZ}G++{S>pM+u%<*khpvsvcY!!snX*N^Mv5PoH6>gNzTVS9yIR=f6RgApR)My
z+(N@vEK&&xpl*A*XP*@7R!w@iHAd90Q@U#pumXR@-=9wZ=?A`-sx%3f>N4hUdubUS
z-W!t5M-8(WdtA%e78-jy;_QaXK1dDPc)G}{_VTIB|7z#_=PUI`*Jq3^^z@<Zr{w1W
z;g$?999u{@(IQc@)i|X3EC?cGyT1IVf75^c<$Oo(_(%^@Lqq0rB5$XBjKGeUBHIpU
z$h|+LsL_(FJ4+GyzZl2<umk*`1@(`gY=QY$3=$tIm<8Dx+@Jb{pS|}S8?~<$rXla}
z=AZ7b|NLKn-a?9JCNu7&vqV~I{1qSZ-p(lCB1`be_ncUj9$yW6`TywZg($RWFA6Yw
zby;^=(KDf&iE?IM371zN5yw{ItH!tN^>t{UyI|PpaiFg@rBzYB0>9wmodTe|g7SC$
zsYl6Nl3-d%SkrVtGjurv(5>o#Zh<I_HwCG+?e;od8_*2@%zdk>9JE@yUZ1UIrvtTY
zatN?X3PI40idx*O5m6TSQcr8e7FnkTq<iCxxR^kQG#<zzD;pT*=AJ7XSn_atK$DNv
zv#FDjVFDUf{G8VXdn?|4o-5d0<N`c`+dlA%bIyG%YRv4Y0DUtt66+WweOVA>FAOs?
zlGd!b5aP(JLF(`Ls2*TCmPaKhclTd!fPef9Qvn1VzwTLD${l+nnkE|$`h`)Ccn&;f
zJM~Utv+@tI2k4V&FY=?KQZ?QuCu|?*;c@agt@}6dtGE36ZnU673m=pr7Bqe*UFv#s
zeZ^z(on}iNFnt9<r%+X+%}jj&Bm&Gm3oBoZt6Us!jH}wzujNVS#lrPYjt~xDE<<tv
znMhjf3|A`Atuh72Eig5ln|N5i1&Z7g&)9W7wcv4ekqaBsZ2!bU1|Ei3FqmC`X7l;V
znUvdDx;a_9Sb@UQvuj=Z@kY-ZRz{%7d|z8S$@8N#vKq_^Jn#ycTi$Qrs(xRJi(ruW
zKpG)ZvY$vW-`*cuY3D|wf7a1F2PMU${R)VuSP_3tJnd%i1z;HHbVE5l3|*}ynNq!M
zlB64lae5j4Vvp~&Ob9XW_zfE=`HFz34vnu#pakd^8M)#b+~}kZ)W9nwV{CA+{Qln8
zp$Rmxg}}J#yM0(Qgn=s`pVr`!s%jDrIo}tM{ZBLdK{>V7B9(pz{!#R`peo~=zIgX>
zbH0YMAKZ%b2y-Ov0HCdDivbd$Ndht__|4vb$LIR|_8eKB)Own@Puq+M|C<cGSw}E>
zid6mgId21+e_rGN`8_Cc4Am^r9kr}=Ke74x<qQ0{DG)gK+=^;5Zuwq`i_*uX*gO*$
zT5jRI=^f%Nd8w3dvnsBq^s7b1JOlNPKq3@@M+FGe)a5u}__Q9{4IJJ^&<%z+>&XE=
z<a^UQ$1_0akB?UoQUJt11~Bt68(K20q3>AW16Bm{@cO`q9P08969g=WazaetPb#==
zXGKW)tdeJ(s`t8_$;!Z*C<6T2Z>5BId3nvg?RxM&<&AaO;1%zSclhcJiSeR9qUA%4
zINP~~%YwDFkaqrnd@$?mR@fZ+Le>v5;w~SscKi~zIF3$5p?z>L&-8ySz<*hcV?JV}
z!rL(VFXw|0h0Ep{fg^XITNfFd@6P3WB~b`f$4uY`IWF7`3{(PW&_>V;>zBkIqcWa1
zzBO8u<kIOid;E2KDf$~MZdnTqcUlBT0d+i;2UA{+oK@L6TQ)KkQLYoH;Y_?3xn<LB
ze@*iV&}2!494)SsAMu&t*?O8~3%~p8m6FJ0yw#c|ZYn~8^1RMC503-QV+BP}EYqj#
z`<&;0aDA(xU{3SHGI%6ALgcQGxM|9l={gQv##W7Zi3Ntoh3fY})kjnq^2}nhY3bz7
zNzYft3^pKxC4h*HV)@e6OvAWfQ^Tfa7ZU-qdWYbh9@=ry^oC8xUb9S>y+w796JXXZ
zO>Lod00+b$n<*X@VBb<`G`f256{ypY(s!ZKV9qw809cf$<zTqTrr(puUUY)H)V{!@
z`;IN`kqpm?Xo}cizx4(e6@?TquW=ySd4bPUA?t)6*s|vRf;S9+Pnt+h!@X3~s+Fwt
z15h+WQ|Lrf4va+8?Y}XfFJN))b`2Kmed;7@OFdX@r~Eoiec0-t3%=_qr~tU!@xD2r
z3vI9+XP&n422k;Ux#74JhiQzx-){~AWMr>P@`0R4B8(t@**c3$Vr5DVd1Ak*9;H8h
z+{&Z+f)<=#TyTnq-xOv0@#Kp}4HWhF{nCw2E=2D-42xiB+OXxidy&`;W#Mq*H^SD6
zyknX&t_?fvw!!7St1=Jl?unrM5-M%S2jX!h%vnu<Tq0jtn4PcujscP4*~*#%(Uxy5
zz9_i>O$_iKI8c(Cs~zv2j!=B-C)L$93)$nodzryhaX`-=y^IvTt8L(#8+8J(H{p67
zQQtuNqF<0Wl?BmUI1|lZJxr^DL{|qQHifY7Gi;)w`X3KUYG&;}Ed0V+Rpe?NNC1Uv
z`qefw>lAXCAi-@vtjupo835*94$+CNI45Xrp#4hj8wl(sEvF(PItiTynUjE#&WT_n
z*fn3Dzk1;W(tDwVE{k3WaFiRxT))V{qdH&{IJ_2olZS|nxh}uahMb7#0zV-B*3t?%
z1Xut=oNR|C4Xhnh3sx3lGS8rcR^7XxO1L=8a^{Gs;cSr#oGU&G&*z;23JK#~-SBF$
z8I$9+VL34DUz*0EXrF9p@&;`EH+2o3jpY|)UD4E>-ZvL>xzeF`CQ*^w5t;P0^e^>J
zLX<4?f&i$a*O9t+F$mO|d-9yrtn*~yRn)9$!snj5t>}}UAZ}6LzooPNN@?X<!X?B#
zta5+*<ZkUq{dluz#%uTUwfr8+*VCD6sWaU%epKVubGS3zaVfm%!5{?QD;hCU{B(E$
zIg_W<|2HiyFv#cZ0k`PEdxDcBu5y_QlYj`90ivZZP&|{#o9mjw@6T8{1O9yf6?YFl
zZP#r%j$ld<`9*_z-GU1I>y{|T#E22t?peEKJJ(x{<6wPaleE?hXB{iTBAg9y8eYV=
z7%xo=Gi@xH=Ru35l=iY2)TM!+);T5(f~WPsxR_0B3?(swWfD7i28<}5M&+jK(+(P?
z?A^Ui&aCu{eQE70@NBK77{;nW%8P~1FFcKZw;~JpI#^`=V=$0>X*=G-!WN?s0N&CL
z5++~(2(Wd4U8pwV1<tSqiF?X7$+p!3<H_76bOCwQc#t?4zf|oCkz4&o;wV1@yZo(a
zc3{H#;&@Qmy>JJLHw~0Q#1^Ysx902giRpRm$9t2WK`pyE@hV}-?`C{s910Y~BR39&
z&~%%14q&%+!A}Uc2DUCu8qC4x&h7n!J@~8sFkFXyw5ZV!Pn3XOCbKs8*}IyObn8Kj
z6P`om#q1uwe$DnZkkHExH-8N4=e~Gm4w8lt<VKz6q&f^`lbN%^uNyKpuSi8)KGj>g
z4Pf}116bQKAaCqa*&o}2v}xVXIHgq2*GL0Pxk&~rF2|paf!i=Ox?@GYduG-Ax44Q4
zL87<9%|Y$B8+%)I+=7Icm#6PDs&Xro4ELr>i>5Rv{!ce*G`^{{MwH1k_GeRb*9^eA
znOS?|gME?)bh~f#(IRy4Y2%zkiIo-9@(sf@$L~DjB<76t_Psi1X`2_cY?~OA@@y|&
zzBKP1lz$J0`Lq)U_#&E_fsI2g&=C+!OTr3hgzC4dr|2LNd!=Mo#gEs3)s8@*RT6uw
z+0(sl{X>yvG9*|$q?jh4N2TSA6OVWro!aB^%mGcMpD;Z#N9@?vcXlmBM=N2&5QL(i
z>n8<ray2Sx6EqQEnpKht%+===i(u%aT?QD{p85I<w=sxoF$q};zTXztn4b?K;WF|$
zI9LX>g;185nk=_Z?|5E>^@6%+P+`Ih*9_po@naFFZDr@s)!CziguoW)o647wxGAOI
z9ACHQ+5<9^5O(Qm<*>@I39iVl59ZH#3k&*`i}Xj-?#&icAig$-$JzFD2YfK@qzAUB
zWpw(NmqA<vSydJrxOB>pX(C#_z+VKfh!;iRg}PNAgcueD1>d$LYc+<r8hO(72|@B)
zRAN?025_bY7D(R8OF+Y0-hzNzUh%WKp}H~CarUlPppts&c9>@l6}pMYLmg`KRJ))N
zU=9wpXN#*7hetrPA+vHVkb&FjlD*{Aijp5LERcNZrQh*=$1Tm!!Gg`VrQki%1K?tS
z_KX9DxM4o0>d;=&0lG2nw%OMnk5>SuYOG#b!{8O87b3Rn>+y(&0Gn2$()8sw3;L(`
z`@@@WHIiHjy}~3p*y~#w`S%C4KOEZZqi;cIp_iHD$Y{0_Y{<U7;Ms8xgz*@MAGsq@
zZh3vV6nu5@Ekw=lqUJ?mxCMf#;Tr&z7(p4t?wH`CF>nWYsV7h<9_}>$%vz$g@Cgwz
z73<j3W{<k#nr`v)U-X1R`kqIlEZ4s8C_7YtgaRp0!R_!@Y+BwVS{85Pv@!KFz5CtM
z(%seZzh;{nFcUuk*Do0Yx3xt}`1uOlEiCfV_oOYfT0*V>$rU7?=$I%jz*KSMO}Rom
zgFx|`KVaILu*+Sb*%^S~Ug`zX!c;J|7ZaGp#mzF-wn}~?4(A+VdKj{d^UU9gDj@j?
zxUn4Gw)h^5>Df9-Uozo>)L=9t!jHc6h(R$EL|>!iag3kUvQ1v#WX>R>$G2Ub)<@K0
z8P!d@?U4d4hV!Po3S+8?Ur`%tLLjwrtVWIVeprrd9{$4b3H^;{By=$O#Y3KK1v8~~
z{a|~PCiKLcbB|B_tyA~|^Uji5FYq6cX|n>k?&s4FUiiPN_Ptp5B8pYN0<`Tn;9)ey
zfTstg1~a%4C#@K3azv^7P>rpj;A*NvCFTId>}r;b^J>J&B1oIdVEeAl=n)V42qSi~
zk9{x#(ugDd1_6A~(+eZWFOQ-WtA_+@7uA0KKiKJFBFk%sv`}x+hMj`{<uWKjjtB6_
zuV8aQIo=8OHU;F`Ed5`(5qA^~KSoPtAG<;2s&jZHAW^+6GO?LiOQU`4-!erx=W!4z
z^n)(ak<Bix!PAR_ezZK&7X^JXt0M6ID?lEo$CVR#r$R&sx2%+6go57e!W2BCko(<x
z$jnhq#_Bl{R3Jb&+$W?eL>P<-4+#f4=>nLFS+WWs1LtmV{RfFVrR^cWpE0oxUGQ?=
zasM!mIelZ*2$*G2E`wvwu~y~X4WOjiGG8VnTJH^$!|zlf5qD+dKu4`wehg6x1dR;3
zsC-hs566*LrDTsXo6$W{fv!(4%D7X79MTZ=eU(4FZdo3xH#4!Z*~>~}EJYnBVBe(*
zx$sGH$C;>xD^?BG+L`D@OfU$ohV)M(I&yv6RBokY@kTzw6DL-l{Pmu*;4?33Bt8AC
z_*#q31o5qp(SP<xr_qCi5wU;RilHLwmokv!tUYOA#-K|;oRu^_O3Ak&_Mg6fQZ$JT
z#OmKC3jp+sy=&TLs#-Zv0&W$6PcIDzJ2b-D*48!HPIlnEY2;?Gm6UE`+nC2f66sI|
z#VaUnj5%+`_B!y7l1sezI*CUMhqm2oU^O!M@3JVTFRZ{?Jx)Ylt))q-X6ZctDfA*p
z;zt^vHY=`Y#qCHN^A^)>cOK8_gWbd#KjoU;v6<UhsyV_z**pP>gUB}SHg=iT{#96e
z^d0bdhf3d(Ik43qdOnZ#BUgzyMa;7vbCU)x`u5h8#kdc5ynYQhRX9!yF7@FS)|g<N
zMXkKGnv>qaRTr6RaaXGZbutBJj8{%T4meC<2S<wL?&q)C+10C^z)Noa+VFP{<^3o8
zFJB%JXPm88&zUz8JxFu>a@qKRuIv6%x5YY>5!)uK&-nk1mjLgW7<Obpn<uE{T8y3o
z*Lo|$O@JH7HcyKB#V)MQz+vGPuEX!9jkEL?@XpNcAKcg{u8PgSv+V;|JdZPpJ8WRE
zr+9-vkw9Q+zn?r(twFBB%8YYb?d(|Scg~UcW>w>Zx3y4t3i{~;Z`;8b0QQ4<`!NuQ
z!dxk&*aYsjo!u#I8Eg|`a*M8`<Qu$^ABUj9tt#opf4|<12h|r^$>_1qD>Fu`DOa$N
z=mSDv+-<Q#lmNKxw6mf^%3RV)v4M<~FOgHwg=MS&rI_<P(GRwz!w<bjAokX2!#VUB
zIQ;ak^}gd*jbRYWryIO5k;zI%lvh$Y=*qiNE474Z&cbK9f;EfZne_T*QOG;?s|6Vm
zBGdu`U1XMP*=mcW4k)jz$FFu0&h;LGK;|5*t&-Kie-(}YdQ1hf)bBrcrEd8lI9?ru
zcrE(9vf#959jk{>>jYMy5&`IYQ^3*1f|#Pzde!1APMAcCf>ls3OAYBqEA@mm&6QPU
z5@Fne&i#eV@q4(XZ{#p@G<rin*|a-vT8#S(L8Sevt)_mj+a?3rB-IEEV&lBeOAWoH
zdYVf>nTP~o*!ZC=neYUImn>t}jSon6bQC%7hPE#Dv5#?wkRkBEU=9u}Z7w#n+d)&#
zB4t*0G)#&A`ZqlFM8Y`RZBUl~e2MfK5(d%y@{9lTt3ltrWW76$Mt>?gav}+AP25j~
zTZe(3g)q(UbF9dFp!)#veN3B>T?4RM*{)-)In#F4Z<hDufTxbznu}rJ@HBXK>CmW2
zv;@3jd-5T{#<q4LD5rD@oa*eQ)ktn}cxdZ8y%E~!B;!i|g2y2XSCt0vhI?Z$wGB{I
zvou1F!xi8ZD*Km{^h%Z6(Mw+qDlZ!oawQ!tFfrS@-THpqlY6pOP#=BFg%;6SRoF09
z^(voEc6tEp&*Vy*jwcfyEm@3}xO+<U60=ShHkwo^D1~##h1OJ?L^|c112JIz0(bI(
z<&bn|*5LWX+)-n9Y26ALqtkKRJtb4n5Q4XXW~`CpZ~oW2K#qohXDv(l!>``n7|4hx
z_g%>YLN3G8r^@JEKWoeXH8%OT+vl%$lLRfDkE3t2$bLvO4P6MKJh?TZ`=a^_JK`>*
zIDpJ+@&QzA-9~A{PsD@WWukIOMFxp=V&p4Ay3p|}c1d#VB-9r0>j$^I0p-khsw4S6
z3Raqz!r=DErV?9<;7vUTQ!c^fO@f$}vAm?Nf#&SU-|xOnk(o7L+T=(g*f1E+sNgQ6
z?`6G?0t4wd0L?JCJ|F)arYwvt`4UuhHYvx?syfdYiygO<X@yW&-{HIGTxl|9H!_Q2
z`))IYy2&%DQXFvE@<WA{>or^pj5K20H?}H*>Tt>V*rXams=?vBv_|RMNxXty+P(r@
z0&$~!p+%OYH|o8=Q-<Vy>nuAGD_hlrw&H=G>}CH$B$L~|tDpY#v5p$tf~d3wY&f9>
z4HZF|Vu$z(Od7UdL%HD^M?hy4ctNyJ>?@Hgt6qGDv&j0Cxu?TJMp1sSOIuO5&-uKY
z*A~UFkR@*?a`B_iocr%Ws9>ms%MsW+6&@G^epm%u^20N7t@kfZuqKK6ZJ;?nDFJAB
zWDOUvL}q@>e_tW;Y_%){e#S|3igeH8r>@&|tB%x5tts3FBB%5I$lU3|G&!47H6Jw|
zcwc+ur_T5h&TAJumPDw;Y%???h>C;5w;-uSxa#uzuI|UkCh)pGGtWOh-}soM_@=yh
zp#8~ESSxU$ZC4J2BcCojbp?m=G{GOP5^Sr^F$jE=sN={~_S2fNQT$izlfgnXEB-yt
zivdP4nCb(N_@y269=#dPxwr%(hU1WfiOn`{>Vz{8vEqTyJ26wBCz3R4etSC{MzQKR
ze?_N7(|HPLOH@ZE!#bV-pbxIWS*S!yk{Ja_q!FHF&eaMkMz)<PHmYA<FTv2+nt>h1
zpI#<c`FXGy#(`&cLCZXl-4bf%y!2)|q%vbtK_>3)_Hf?jGoY{a9tOC&V2D)F&Wo3(
zCp53qzffyjrYv7t9$VQlIc?VwP;_?F9a6y*w%mTlqj|gEdw`0^TNq0|<<)1HVQie=
z&*FyJb*5IzB3x?oP>8$)1_Cpw@z7)y1UF)V>b!BW3?6g2z}IU(WnCkfgJ5;!KZ9Wb
zrgReMM>Rwcis82YFl%ts+6VlX56K1KIiwr?${$80PHlxvDWs_%_(|M(Q^(f`5Kb*Y
zUP>FGDdtHugY|A1fJ3VE>8fEdl7~R!y({_Bu=eTVY678-WC&EdTiRs0)^0!A`|{!H
zSe=78p}sLdeprF?)Zwqehr?zj(?E<CYX8edJ(Wul$s;z5^tKO-d2#iKVChoO^W5=;
z8<3k6z_y{1F_j9GWh^sg|1=l{ramW62?2f}Ex7`~E`;up2NN>$*OGa{6MKNgWqvmS
z1jE{gVjyzJG6{4^&{NV%a^UZRH{jCPBI+kVWGqp90VWs<yOMad6jF^kfM4k{6EAi=
zC`bJjFy#xcE)Lh|fvqiJr};u<E`w{QE0VmMf?OpJCT83Z|JkJj`2VolH0O;m_75=L
z6(bBPpQU@!aW1V_dw>)<WIouO)S_m;JKrkAQo6KW^l|JY4x-w=g1Bj7@*#fB?_=4>
zYGmkj1B~#Pb05Y%ryvc7PLmGrJ35O9{+XtK3*#p~@+pctXmL8i-Gs>?!r|xpDz@!G
zILO4*ve$QGw5mE6LJ3)|pOLUCSqw1bb8MZi1otok3WL#MQptx!nJJpB4kG&)WZ7^4
z2Z2KowF1C0L<c+<+O4?K548k--seHB^q(lEL6?TR3<UqeMWz=xY<mLZd~IrGh6xGh
zo4;)V@=pqm`L%&AyCC4GiS!&OESm3s5n&of0QX)|2uzBr_OmPHJl98X@Z)5r#qZFC
z4bK24iQ5egT14U<l5HQLx70S>ZORCpJxSGJh3io8nnlo{@&))Bg(L~X#ap`Tk?NzD
z%}Ccqg0V@njFq59pp-jf`7pU?YK=$9|1L|MevJU(G%zb(Id!Mu_m8;Lp)5A*_(?!%
zGThdgJq_ktel@Lt>tEP1C~Cm+4HnF2@m+%E^r6sDMZb`e;da^9xzl*&C78V^0o}fG
z4udh32F&roERcicMpmVLay_qUvO2JK&=cPYzYy^f?{tqL<X`FV5MV%Dq@PfvWRAB3
z2`>sPxQ%9QJy%|nXqbz!StLX}qD`a!F39v}S5m^4{uWXz5PwHY&|lcTzwJHp89eh+
z?+4EEO%E{m&OdL?G?E=t$$Z$Yzg5l`W)R<Ongw}nJL12l^f?5S^xEGHEVWVc;(qb1
zvkmGAZbpAy9D7I@@5ovE%0Gwmf@M+QwLHydm`{8LPHjgQ*2%?FS=ofuK1b*1RgQ*>
z`VBiV0ly}2b&yZEY&YjV8%EPs*?(vQx?t_z%9>4*6{(cirH9UEFV95U7HZ_X0?kkH
z=%j-|7r<b3@;g09h$2YLUG6><z1__Z-D*TaB7+1C1}Mt!xdR#A+-}ohZqB6<&LKdL
zAo3swOV}FqgW+e%G=l!-TKg9j=cKB3=VMxr4-(1<D(|Ed0^>1cv1xVVG7w2QY-63_
zGNoe;3XNDniC-dE!$>1#e^!KTv{BF|UI2&RA`bOY@@o;>Z0YfmhMNEke9e(n&t|(c
zuu$Y;5?H(MRQZdidxpT990Kr7DvxZs%k^x<^`c8eGiK_eBT2ZWW)z#Q_R=AE`+#GX
zy0ZNMEtY$QV#^hD2BnLIS7*Q8q#s?XO)Hw26q}%Xa0TvHlA|VqZiG6qD)_9)&1u>x
z^7yx1<x4aKxyyBscvq>#W1)$QV1MoYk?3eL&pBukqdwE%5jQ|x1sv+XPM}yJw<#tv
zSXUPm{#DG0qc^(IS((j>&^{ISX$M6yeoGkHyZAm>O7|sYRP+U>t6}g@U!#2;-xY>|
zD5MhDyNsk^uI28@y_RjIooCfmltMp|&Vav9wmavd`)aYMFidYV_lv$f5fWvIEN_Xu
z%6oZTW-&--hvkn+PI8%A_(Gk4KKH(~<tb^zhRPGfuz3Ah4QM$bY<@lsX1J_|wI5qW
zxkpR=V9yrKsgOZ22BwH`Y_F$ko@!&A4@N2p!g>XqZG&g|JcJI74vY@Kj`4E+JvuGf
zww;Yk`38|n5Iid2f+iqThdQ+Q^)$5rxpDX$C2*Z3u_j^HXyz1ifXr_{sl$McQ6$|P
zpveJWYZNnE@3u>5CHUcS*HgC_RX@UsZ>qx?K0Pw^s0Kj?rbfsyDCV){ye*!sSK1`a
za>}Zt=B-A^iPk$noRgq(kefm<1mFP&TQf@?e|?#0aG{{*1pT|K;y-Wp<$ZkgYC~+a
z8s(8pkYQNQH84r&ZC|pWM#R!P{OzP~pDuA9$)rEyjXC1z{`(Kp7s!5tPub{O4t24|
zYGHYV+QeNkXS>0%>}0+ThNx4PsH9@6|I)Pcr+bIL-6!H00bsCgQ7(JoCx#Jb*T#RA
zb+yv7DgXA2=iYyrv-<1S`}a;fC)sC!Q;c4>7yHHAl33RBh_{1QkKRB$CF!4={_*Sn
z^y8m`zJOZW1I!bQ;EMGh)WQFDiz6O%n8>oFOkST2hvm>C$+PE(V~m*YB2~ydZYdx+
z{cj8@`-v?eguL&JEb<2&d`_~&mkG}E-Xt}4MH*O4FLu1}<PNW8?m{cLf?;+J0{?u4
z|9;K>?1Oto0pVS6HGSf$TMJn)i9NgC4635ba^U~}{y^Ume2H%s@q)S@VxKXIQN-f!
zPZHeYy_?efh&}JRm?HMibfiBhyZ^9S%ug`fD$BCdmp-=;;3N~5)s+7ptvU3ZeW?s5
zMEmz1_CLMP{<13lb#1aoh8x~L4!_geiycnvX+|9tA(_$q-uAz{G5+DskqE;Gh#1U@
zWhO)E@=;)<+(mzM{OeQl;Lb^?0#o0gT@Hj4Cus!6Gl5G|F8{7P?lBZf^TJV<>0y|>
znv+rQmoEg~Ew*v;;il()F?>A#@RI#+FXg}eJWVG=iq0#;aEN#Kp2fbxyQ}~n<=j}V
zb16roN8Hx8|5S<k<E#3|kKaQ)#4rM--U?0H0&7Gs$-ZPuND?0Z`s?57|KC=YKYv;N
y_?5l{cYJ!XRAnO8>k2p`T8$n@kY;0KT#By+`k?hq$ZOsL|0u|)NS8_(`Tai*eoAQo

literal 0
HcmV?d00001

diff --git a/docs/codeql/images/codeql-for-visual-studio-code/basic-ruby-query-results-2.png b/docs/codeql/images/codeql-for-visual-studio-code/basic-ruby-query-results-2.png
new file mode 100644
index 0000000000000000000000000000000000000000..f4f3393dc58d70a53b2500fe9a884566939beed7
GIT binary patch
literal 268498
zcmbrl1ymeSmo*9mcS&$-oM6G--3bJD2+(-Y;O_438WNnw-QC@TTX1jeb-vN}&%FPe
zw}!Q9RdKtzs_#91_P*gNO44Y^gvd}(P-wC;5~@&8$ZSwhFocNkkP*KNDQU<+y`{Lg
zimbRexr(E`xuuO66qHPOaw@`?#AR&1^S4rN7^)x&>KhsvTEC>JcXaI$axySM*e2vZ
zj8gkQ=%G+hXlWR!OLVK#*J?=Aki#HrO~Gk@nRBUu`j~S6F7)>q|9SiMzVQ9pdG1(t
zy60qe)+2P@RI`c0M@9^h3_3OJ?VX9Jh#2GT92o2=C<!BUL_LF$G?Mr4p)k|a-<VAW
zp)#`0(-gtr`^~psbQf?00#JG6K|7BGZ5%<$lslZtjKi={>fwhjsTL8mkAywWND1UU
z-icW}<CKZS!u`OTBt@+-gr1L3zlZfIsj#4GNee8@FR`(NzbXeYNqFTW8t;-c6%`j>
zV@YkpQ1(ehT@?9hJb(AWe%og^*iRf)OuD==D1kkvAHytl)O^hyyzHcAQs=|zg(BFc
z3b#jOV~=BRO-(psG5!49(?x)LRr;rtNA{RVsJ9I@HjQB4N$|zYS`80=>|4N8CgpYF
zFjA(mXo%(^s{D-j*BWdp(mw?Ia^^d7YCUFPDro6_VSai>$B?=pEEEeKO6ob^g#q!B
zR2lKFk0=sCXLSzkW}eEU4|bhmF*dg5s%cd==WEN)a1?jtlTmcqc3%Fai{*+<V+L7A
z%#qYeXbH<Gs@`A0QROPjD+;?}6P0KQ*~V;(EWi+d+6x%yp<dXnF61T3UKrSSar9cO
z?$Z9!EpEjUX=zErUn$jTj2tBduA3DYP#74XXslhqa&0K-KPAH)d^A#H<}j^M%MwZI
zS{^8%2(O@2+&}%AUB!Un#Pb82=X^=vtjJ`f^%H$X`r(KE#h+#hPO1xacpRMvnw!d0
z7!$EaghLC)jU1^68c7RX!~d2X<GtUh5gr{Jf(RTBOiW;69&{F5YM1&q9A`hf3(T89
zzy)@cAL}P*QB3p#5e}ITGXXaMwIO5^QRX<j_fWwi(<;PCh~eb)AmkOq4<f-T^v;++
z1AKxfL{jrkRA`;a2>n9x8>eXT;S!Dc%Atw6u8nZVLSD8$xv^#;vIN#`>A5lJ!KC&M
z{`Ppl_QE*}dD=?7phM1+p@WwrG7B-u7f|v4f&T?YE<h)6MEXPF$Y;(UG+!8w(SMTN
zBHv;~OU_OyfCyHQP9xE!uct<*tfzFRiVrCdJ)BX%=pIml0k0AHMsuts_|m8dIKi@g
zjDx$z5v-w~T+$fQ?8Y$7Q6u}=szbCq%UQSxGo!}4?Yhr;7fe`8_-g`}J`<ytMzHtu
z?!Y+c>CrG_G$MRQ{SLhtOw{Aum3X1!#?Zzs1kciA--WjmyFIzndNFx{1M40j)E$p0
z^BYG4y8-JXl48(m5TFP4vp-PAnI;4)G5jQ)x{q-Cg9+IsNw~xefHy8cR&0h(73m1}
zh|tpSCca#T3*Z@NI;?u7ab<iZdF6e@j~r|w;!xP9!bY!4ubwoTG?;|p$ieHx8$)bp
zSD}}#*RGekX8qCsr?Qz^s!Cm1|D4*~>YU~ktou864EM@s!bi48_N(@*LSzm&`CyS?
zj$kHa=?|3*0-AmFgmfPCS09`{FuZ4BK%Y_J(9b}KmR^<lRivMfHeKT^&KH`az>-H+
z+Bhqn^gh`pi6TjZE}1@C?bsp@A08E*GPx$&Az`}rp{P86OaqtBUZe8!nJTGfdf|2n
zh03sInfj5&W6{W$TUEu+>-j5rU>URu^8(!R20h!(l@IlrPKQoe`xpDWlf1kK{(R+j
z1*8Qzg$DT>B|<;*%eD#u3rmF#+B?ZK;<JkE+I2G5ZTr=@ildV9Kh%p{L{H$<!iUXE
z*yPig#;|N%Yz=M8?nF;rPmxH(v%h7d@zwLiI)}F~uEVZVtedZ62{N_AdHlNhc}seT
zbE6HG1-IVn-VUOnqEVo65pduOaDQRl#WyF?Ai5*?9HkeXLXb?f&N)C>7o`?;Pw+jh
zi>84_md1>xQPEh9UoHPgXm+AGtr^`((rNVIE+c+?$z0of-u&G@>NV6g+CJKT)xptt
zWO}2i!AV;cZUb%^ZZa+g(+8#(Ms6)G?T&i3nr-c5?e+Q+El=I5dOMJhsi_rZ^|HOw
zWQuufmusSJ-6<ZwCx5tp^m=uBj(66J!IJ@Q_J_Weo|b(-hi~7tPQEQ{6&7Zjmh8w5
zc4m!bsb<CS3Fg}K7=G$>e9fziVPAaAbLvEyrJmTcNcGXQ)vUB`KEdJE=k8bqG+Nl0
zy0SgtKh?JexAwJ9c(3(No7N9XDkqi3T69>nrWR;6X_hUT+LN41oLik^k?H0V=SFtm
z8~SdNbhHzrp~tHA6I|Ba>z*!dE8k(<vfTP&8)1_p0d=5QE_AD%L^s7=f(wGt{K?~R
zn%FNs#~Dx6=4}Slbc=SIbt{WAifaUeLT1ELLrBp`P@FJUaqm8@(diLx5Q|2KMgNGv
zkG+XvjQSIsfmhFWY!1=^eQIHa$HT#LqBD1nUo6m%3^B1ay*Ba0C1N(Hc>rVAQ<uq4
zFcmZJF$;bO4UdfCC%jK58e%$#8F1RZABepWaBFpEd9-_`c&+ZzR-toC`JJVbb|Em$
z>tM0{Ex}sVVTK_;wED{f%`*3+$d#L%(a2VkeOY{2z2yU_3B*nz`8nbTwLZJIq(|w}
zmn_;d!~G_k#agWJ&RrGwq#B+=*2EYNX<JpwBa9h;#?<oKa*R>Rlw6(sYB5lOZSnBP
zI76<Pr^Q=B;KbG*N7al$z0Z7?)!lKRbsp!Xb;jax<+wgSXu@JW{<iOy{>0w4dP${e
z>t$dlTCth1`NR>y_u?_1PnlUcVX<}Ca@L=0S{T{aX49tKeR99*@%fnu4i~N;F1PWb
zVeMh~sx%?D!&Y%=rDNP~_4Rb=wBS^bU++6H{TI41X5zJGBMWb=I=arom&)SSO1#zg
zWJ`)`OzZ20*eWwk()N>gg1PdEa;>9lqgMAn&)3_&dy)AXF8VaSa3XM^zbAgUsk=Dv
zMDRvmNF_?b(==kJ{g|U6^`+sp2V8s{w~`+qZipU<eouzPJELl5sP6LR<*>o3Nk>P}
zi}6lt&|z{Xn$w&U!J42Rj<yTwC>*bI;AO>W=I!e>{X$vBEV%T3Vfy&$Bp;l7ONl0n
z_7XiEoo(?v!NJYTIsan*y1G@jVlg^FpS|ju<0f?f+=#M_C&d!M($SLSW?AiSdEGnu
zIrY2&wh?4_+39%t^L~D`;?DxgVpdgl`<dIz7}`Q~NTw_I$*RrjvEA~<PwPhOs!m(q
z)|%e@!ZIhHgGc7YO8M^s=X&j<&7O6h#@{WJ-6q>NmNs5JpFJnfOE-M4$xpibdR@HJ
zI-aGkVk5|Y2{XT~KiseQw7xpM%Xw$3ES4)kyo=WHOt}*~Dc-D1uN;|cDfr97?)Ldl
z_5HWONJ*9ug9t;Vwvi{bt;zPPXoK9>(bKAi_#g54+zH&98+Puc;Ij+Q%=_^|(Zbll
znE{%CYvCV0JXi6zHMeTJr4~4&!aG8#UaYS(H}h}Sn~fm*%|1P(?>|3?0NyFdK>a>7
zhN7E>n&N{ZXU;e)D}~K?MNgx+$aQNu&%x%0`se|TI0{Yv8yCt`E<OeKQaKuqJS^fc
z8_LF(iHQB>{7aP({ncO`O9J2b(Q3brP0j^>-yvtRH~o#btnMOBqKnB#!|$Gm-6fgJ
zc91;Q#!O4rTu~9~Bjg$p3Kp6W3J!7w4LO9MiT?ds3Yre;-9N@*prAr6p<w^@9wo^6
z?_V6``1_rIIm6_^{M#MKY<chg?HY#g@2xc?Qhy*Pq;E3XPEb&|)PE0XSyieFC@2vq
zSqafEZqR?S;qplO=LZiq?zfSUL<4a0ns7s*kj}c1&agqjDcjV*NCf(`_e{)Wm6Gp@
zMI4a(1^w}BXg8nt_iXmZSKDj9pU*laJS|AQ74lziIysKAbb1wj{tWvbS~4#hD~-=3
zL%thiskX{PP1sJ6he!t#Az~qtCmoxU4Is)ukQBjE`Frc%(+V663QJp@{Gc?M_Z;&~
zVfep(0`x^Z^mKb-z)_6<mk0R$=aX%Cm!8wOS<3TQYWC_UJ(|Th_I0b)OfUhvf{>x9
zFYhdnAd)wc`*DSEc4^AUk+<^8zrOB&bs9qS2Zwmf0^jE6=F(c=<xN1+h>>V1{b|-?
z=~>hq6wO)G>^df<rw^Aq>=8PF|5%RyJXHjkpIeRINr5F||1tmn_(6Hr<ay^?`h{7X
zsS*FL$^PTNq=>GYqgi5yX)TIE^>*MDn#Plf;)bQMjg3w9SE*mY@xCs%Soxnh*-|1Z
zTh#t-b^qh(|LJ%9PX_%95ViIq7i>WD!&>&kQ7Oedy;i_-`*Np};^_GSt-yB-?xftj
z^n@jR|1Qb@$z%UT=Ktl+JStd<ipa+{cG_s_BfW{7MSkk&0S+D?N`zUzg@FVyb?N_R
zMIcJ`Uzh3sHkjlmGQsw~LP&~HUN@nDoywMwuw2{HbX=BuKg->cgPm(m*Ss)U=U(&e
z|Mrys>1T1!FpBS`OplK((lRpaQf7ci(Hi`wi9EMaG5cx1%2+ucb*S0Q{hHzP|C-1D
zznT1>Utq_o)+kb(u+kelu=;}mL-}PuN?xa&HTvwmcXV22LrF2w@f_$zVeRH0rue^m
zmo~W(K?LRpYsdP9C=e&D?IaN^(|A>7w@@7)5fNhzRzjf*T?=7dm`?BiUNiieV?;~~
zsTme@X9{Yl1_rXq8eye=<xa;FDWd(>DljejQS&)GO24fGc=zG|L$&^=dhb7mH8iia
zT~JRs-YM`!@>fdyN!I+rknqIx_+M$&rw>*_fBfIdDMBPwvdi&(g_M-MaZo3sKdZ&$
zx}v=Cn5k<^_bw~LczQ<4S?#R^d*%ODCBDExkIC|TPP=PGq_hE-qaMAY1toDP%}bn8
zy0q*qqXtOlLC)&PqVLrIx1OSf5hkSz(H+Zk<`!+ik7EU&$(HqeOp!aUU|RIu7M7!_
z;@j(sbThy0gT>43BKNPVjuvg#WwXo|q2~+nStIt(5pxR*86@A=rXQ<*{bDyAjEQbT
zBjOqp96h++k7VfxJ3Enm675<LuN&uDZMrJ_L!+4SMRi-lz}>9wtmP!5AJ1^j>!KSW
zKG**pLPq=j#_Gj$=i5tFI+v}^je;`7)#SYZJ~<z%)C~|?r#<dxPI`flO3kRh4O6Fb
zc%Ig$Y6J6w$6C)jbW=9ViCJogD9jTTxh%OtSWCv!SPPfkz9@OUgGc?ue+o)`eAtOa
z+tJYwduzH~&}{|95OG)TzH<F~;J4x-vZ?lmZnf`xX(%+$A1!&}?tF~awr{^hy&kD#
zoVR=8<m5E(3&RTWG28A7PZ!lcb;gqe<~KEN`gqnoUyTxNh<3caK8bY~`797R^ijun
z(T*1~5LBVGSM?VcGM!lpPLR4(3@)4MF!ou^@0eV=-W>250<{BB7_0r3ZR*C?JbN__
zz0JUPrzgaZC$>!9M<o9_%>Eab``0cqFb`)-W79pKpGzz{Qp?6&*cX0+%4$~d0qpyP
zj1JQY1k*!HK%}TR5~n*KTTdvA0^{?Ic3rBynn6<boxxap2jMe#l%KyU8ZtcldfII?
z>aZI3QgmCMdP6a|-(K%K$9IPlcLJt7ZNs`UtSbqUH&3cM4IJe{Pzkn&<iA`!owc%D
zHJ((qW^@N4v|5LWEb2Ka{=3kiSPKk0ePW!S`*4(#lDh=&*Jf`Hr+eech2Nf?u8)6J
zrR)i#3^G(UnaqVgZm}-;+)PWqRwPUU3@WO7km1F4<~0p%OO&#8YB$Bu@$|lR(^bUT
zC#7j3R+L!8odVcg&o|Z;e{Q(#L~rNJNw$jkaW&0r=%zm&<Zk|?o6Ph)Z~wlpDRfHV
zUXc-I)%a4JYOqpXJMz)ItT=^D6QX|R-tzUc`adv{``Z_Eta+=PCU{HTPbwOb;S#~x
z)_qv1O=8!Faswwt_w`L2pm{-v^eC%tc{~*&gS9F=^cXi{p7jn;E{mo06I>d;Z@AOW
z#{SwioooFkv0!Q$6DaXiP_rxfYv@z%D8w_i?>G~3k&q-~F-3E79RSU2l%evxvBcmy
z?K>W6aAu?u<wow3<Q3(KVQf4olQf%GmbQDYN7sd8oqpZ_wU2A^DUDMSnBpiyZLD`>
z9*2PIyH$Js+B;|jVk3{cKg;gOKLhuIVn0^4-|4V>gPltq?23~$j*WN^TZW63^Zxie
zY$3c$H(#}FJZ&-h!h3*8eAfBq)0?V}K;~6VzyVZAHl6$ZE7(ss1$;0cQ6(7s>$XWS
zS<1}v@}$z&K>G(tZ{xzw)o3_h!FBMJgBsaCS%5sm_u}Lh!;xrcw=sQ(<!rjOCTPx*
zzk&t`Gq_xMN3F)hjU>cP`6=0y(mr)V#141%eJdEx+ywpMAlH{GPLw>Qy7}h{ex!PS
zgS*iEnp0~SeHG&_WXjyRURU9>WA2Ok-_5X!LjK0()A#<F_8rS!5Z7fsmd1Lvh&wE?
zS`}qjC>=XNg@n4@xaJt?em%}T-h;wobGPa1Tk6i1*u@!Fi}kSi_Iki!DrPRBOQ6G}
z&Ib>Z#@n$S!I1U1S-)tYI~=9X*nnr?)@?ZyGREV$D?@qR`cbM(R1@02QYd!8LoZlv
z9$wT+aN)IS&8qY|*bz(Z{-3XlbRP6=WHU{_E3dqk4QMgi{a5rf>GV`uU7ytJJoj8W
z!7bWpFUa}QMty&~`5=e=`O69|OxoLk9&JJ}msAe{w_O$`)3?e3$jq~e{4s=|r{Yui
zO_>4g8?LLiO1h`^zE8T+kQt4EENA&lU01zxrrN^O&);DPO#NwCwX4*d$|#$8#q!Jg
z_PCeIujnrxf?8wv!jXnR>X!FH+xD*H0^+WnAM6^}U1P=&!{0}zeI!AE&Xy)BylvW<
zTP#X~OxPpq3peum;-eVA`6m58=luWe^!F%LW`V;I8czl49Y9CkQQ)p`AT=}BLS}|e
zSoFZ$;_7wQ{46lHo?&*T*c?yIg`vD!Y@g<2Kf{{&uiNEMbSo~Qw(rid$Z^;6*iSQ!
zQElh_4*aF<b=j|<)pv?qUXD4#Us+MXIm*<S6)DX8KF9QofXQgDC{kd{{-`*W3lf%e
z^`@B4L?^IBueGv_R6mp>^2=ZU+>I7sZr)8O(QUMI_&m5lnJdp&6LgKBQ5<1th^zfI
zUg26*ju3o%asUb&=Ra?&nHa{i&C^4ZoAZ8VYB?-O-z!VtThcg1R`I>g+~i^0J`Of~
zwFE~xu4>o-5V+}29G?V{0t9f6r9Td{IQ-6SNdIC;O)@W}QRtJJXbxb1Ju!S^yCHfy
zZ8Vg4Wv0zCu|q(`H%ifWU9JU-ffd0jAROlEE*P514ZO%yzM-^fh(>FbCJEm%9=T_g
za+rSB<8ip}c-Tg9npfB4Wji`+JwIDf&T5rA`*8A$0ZI2+&ezb+FzAiL$8z#|QrP#4
zrj?Zy6+JZ>%57CKY=FiYLsi?17sN8m*IgDlb#3d_={HvTqBng@vROU}7u%-rk&Uty
zvUEPzLiEs6VY9=V#68K~Zega=*LU$1SMQr>Vu_GhcFqEFtotW#np40iufxJo)s1(>
zjE_Jh7~)4ybXXY#DhBJS>6{lfPFSx+_KyP*Fqo~!MXngHkp`MMoMZ-Y7lP9mQtHeB
zm$W3hrX3<asoLi0eVj}yh?55pyDs|L&}2Bg=6}Noni8|qGxJjaKTEd%5;n;hU>Rel
zt#r$|T>*<6TpT)RQ42*NYSw)whv^OHx0ZQVYn_8}PFKe0C?fl|nq{Lvv<xOk@e8BG
zBS>IT?z;fZDzUeF+_FK!C$~kGgB1JsHQ|Tff$Q7cD4i75f^XNkZ)v*r?ems;2~Un+
zd!5hQ?_K-&e5Z+hfxaT93rjVo{qA*?k*BM6trh-1exvxXDtio)e1B+Mf0U)o{;H*t
z!)6xo2zkodHZOORavEb>EFtGdN2fk4=_X0bYA{4Etk8v@FMw*9JhA*|O+%+T))i(A
zYmTG1L0B9(YtFNZ`*o8-k!xUD%>1b~oc(an8YC3%S2S*1Wpndeu;W^SI96kYz(1Dj
zmMwDE<6W2fF5#kBX)~!#%Ijj5%`<J+OlK6e!7y9qo8I>>N4KLGiTSYtS7F^ndRcMG
zBg|BA3fX+~ZQ$cy6H)G2!d&oo%NAtPJ~unPOzzz`1m^PMya!oMdZsUsY>UK!#%tmh
zq9P}DzK|rZaw9yGeNtdHKHKN{Qu-Q_7^IQ7E&)Dja!`f~ubI*$dmP!5e<n@)8d@#R
zJ21STX>YdxSxocSZ_*FHUtjJw2i+OmSZqlYW-ITOOfjUd$VF*$y=wD`#q-z5zXL!Y
zR#0n)X)^J_RIs*cx;8bz{tAFS&&z(iOo*n=2v!w!{wT6-9x{Cu(d$vT%yOC_D8{qc
zjpm9O;2kb?V<{yoqw4HK$UmDB$8eGEPJE37yFq+JMoSByYzqHOsQ6*t#Osl=uj9Sz
zhPy@Giq)@Xry-6g90$ke%RwSg55-OXO%28Tk4<dXX6dVer7j1E@wvQE?2JVbu#ceq
z4E6+%K$4nv0$yxlQjf!Y3AOb&3`=3aaMF$FO)DfD9;@nnU14NC&W_@)YP*U!(Iig{
zmogyUxrbz54z}?fDX${OP?MI0i-x}51$P@(AiQm~;0DD_w<%Esf}yA=>GO^!yTkIL
z6IHMkxbbhs75x3}<$f^c^RM#Sh-I@>{j5yLdq$&W^@5t-Zf2D$&#%JsK~)g%IUoQ&
zES%_kF6*lb>TarCH1MoXWBIK4`n37h(t_P^<OtRbFP$rl!#U&*K_@w0nd`+6*86!s
zv>r~Ia|ouJQ4+=;DJ#vf^0+@c<-k!rAFg8A&UHsPps?IWG3Ld>d&!MD0;WLn^e3u_
zK1y43+hjx?LuKB*BwSO`f`c>!kkj!(4FB072YUflB3QGmym>z(Cg^z4_)3AO?Q(!f
z7uIlCYm=fH+y0aNZ$bapND!;*bf-E++`y528qrhF(vVx1XADd7ZtIf3N-V8_@>2)R
zR?=#$h58%y>&1^-t&^HLBygR{3Ho+J-QtcS_xc<v5f>w&#SphQ$@QS`^A6d5_V*1e
zx;0jtQi##!WY&FBiug@-f;#pNWgG=x{=v<zFq+Fs%H&`@_)cfUjn)B|&z#ec9Q{o&
zqP~nWR$%6Kk8P0pw5<vv>;Z55zP91>lQPe-bT{e9L=Gneq)?7(<{kv61kxN<j3H$C
zaQWE(HX{DV;1nm8Q7VUpqD-OxGz1|)89_T+VP@oKiUwNsJv+C*xQyynM3KPJaLp|(
zr6_94a_@?B>9by@QHiM}6*h^hA;OAszy?o}Z<m8+<j$I#?qeB+#JjHXJl$i2Io=UF
zjj^7gcx+-E02z%;S*e~cQ9Cie+|~4zsZe=4qUJg=P43d!A>siliukFv!ub&~SM58!
zC0rAqh-F#&C}gPf85@>NVvMj-X+ezDN65o;vOz^d@Qg(G6iK(|KKJ~km#SyOSld`c
zFhFoP&M^C=n84B+9&yiApvt>4X+%n&CE(+Z53vtW!4K16$vCt=EcR1aY%Rvl4uQMB
zil{fL<l56C()y4~nsPHdWmv>(Nas01K>r9s)mniq7B?X|`9r@YFlhG!b|kglnwrq-
zev$x#vw|+dYy$(CW;dTg?r;2!`xmhc@jyvce9NauxmArc^U9;f7{NQOMdjclYUMuJ
zY{Ys2S)WVFQ(9)Pv*K|UAEdX#!dSb8=0Wcf{|+#Q?}K<G*M2ElW0<m?p=mT{h8?_b
zS+1DL^Ioc<P8@z+<)-M3nc<A^hWkPGJ|r=8+6yutaO4;skVJfpzMQAU*+x$g-lYUJ
z2a6dhZxScqJ4io@HsojZT<VM<eV?mC<6f(lYy(k((Yd}sZ0;1-Ho`;J7l}YH$qJPE
z3H=QWDYzY1UX~8cY(%V;2;+rHv<#VypLj+DW3ZLn&RQ*Y$e4n*-24nj0(t#dk{^=4
zJ-AWWbx7zN>lL?&U+yq1bcXoIH-~(UG#~iuTu|#IP{R)Qkj)3Mj@^IQ#<>SX`5G~h
z*~k#D;n+%h+5DEzcnpZe+W|P$SHC<u^kqXz;DvFSD6c=5*eg5FA6gOU->ITNV4HYK
zlA4CJT(L>OEtt$aO!pWkLw9F?N=T?F5~uT}Pmtw+bni3~AE2orX96p{pC(izIU`}H
zko)H#(c;ym`SI>0B~X$2+`5QYQTVKs)Aoh-OswFxX*xcro)pjUdmgFForl-lXK7w+
zW1fkr$xnBzp*X5-AcoHD5rkkir3j+uK>ZqbXlpS{`j<~gf!5oK>?QJqJ*K$VaI!?w
zR}T=swbAbT@WN)fX<3?$D&c)ac6WQzs}=bBT?UUV`}eqS=sdsumfQ)Q`mrdbcmfKW
z<_rI6wrYvl1>z{@q>Ctz?m@P$&cGvju;9gvp*82^T+pg5tg*A6m6%!afyW@V3Be#E
zm5kiyQ?OCW;26ewoAQ8hD9{tV&Wq!o5`!20+7pBn)6~t5ySN->F21z559cnS@SG=m
z5Y4^uDNVwBi{y%uXoXQq+~%VGMx>{^iczP~0SYY&Qajgmx3T$LO8bz{=DX0#0}R5j
z8HWm~{j0!|<e?%!(WR#SlP5@kSdTwh!t{F%eS`E}$_a3RnmiX>?+OLHAGSg#$UdN{
zmUt~s!tiEp=cmYBd=P^(`#lN>CB{yF456do5s#n}1lr<YC!AL;@tQH1UChX{qz{t$
zuGu~$`d$sPgMihRQ8aR}wbbsIzL@ww0_X5%#DwTuyBjJC!uKKFg~$YGA+d+cYyUf;
z?Og(&Wj_(ql0E`Bl`W(oDp;m)AVW_PjV*$Imka^L+7m=nc610_a!cd|6A4_$g;mfn
zzHx1s91?zTI^1PXAiS`sBnBdV-^WqIETV&^u3V5yb;arj?E=ynyD8=XjnBt#-#5Jv
z95Wj_e}HVMMbSPFR}BKOCB<=F;)TK-3vH**ay^dAaJzqVmyvZltUSv}%+MBI#`xeB
zV0lyMXfE}MM^foL=Xjp+USfN~`mSJ~roCo(5GObyO2Z}u$Z#Gv2I(Kgx4_Ydxgv<-
zpnU`iqjD}L5n{YxH01@~oi=W|!b)-Zbw|~jtIaR|Kykn>C`-a2G$UZZSEi!{dn5k2
zImNV|fQW9XXi5|F9Fm@$te|<L6V3Jwv-|9R5c_x(aEJyS>yYjt;@z|rLR3)wYu=y$
z5nJg;F6K75W~~E;@ew5XQU0d?;F{mjQaw47JHs8waGK+e0^^S*2Izt3(+T$;FFNyo
zNgQAyW1Etu3<@uy0wJI*hY6@HK6C|M(kda}Rymx>x6|&z%0NTfI33n%`BEcd#-en%
z1uWhn!e^nomMd^Ofnj6OO(i~&Us(+?uX-WL)pm6W+56KjY-P71+kAb3{H(MpGhRGs
z1~4NcRvf`}iR5Oy6gfX-8_LwZN=%gDjqnW_F}*TJR70>z<58+CiY?l>Nq)m6$C1e&
z@h&uhVPR7)m)O^|ni!wM+EHeC94{Ilc+H276iMNnlGoG>_lm*s`u)_1%yXp^hs*D#
z7gm$EOWZDF0x|A{*Q6WCN3n+phi_@}1!z1<yQc3qWRC{jrTbY-KVG}+!+9wLx*qWu
zj|aadcO<(Gx5YW6G*k89LmhF=Ars(f(BFT|W_fV%Lp#?lisk);e>I_)gB1owOcQvy
znXR0Zw&r^jPpc9ozdd+K9wX6e#9ZroKSqbMe;HMgR2tRF3=Nk4?{J_0+@bb=kH|Ap
zK>cz5iub9Xdj*fELi?!gX@1p7+DHPeP+#1(n&t;TY&@2&03(>f<^fC-3^1>$9^D5v
z_fYWkh+S;H-Zc*K2jOxdF58%~lJulw5&+b~%t^S+q+>~KB{I=72jaG;28Kd}Bgf)k
zmYSr85KvAL`!IcHNnyzQV1_&)(QrBtL+FspCp$FiwHkT^zP|H8ajK(4lFOHRJdT6h
zErDj3TLK&R21^FnDCikdXmDT%T=?-HV7LcyNG>&X-*6DMbcp<Zf609fC>bf>MR|tw
z-b6u1XwWyqw7JeD_}X7tq?dU7z6Qo|j~PT(Yx^P51K4XnL%Cy%s^uk-WO8DLN<cgU
z^)X5SE-QdT#qg_>pO?t7e^W#p#*h}!%<r&Uio=}b1$;_ueu2=#Xg(u;IgFbo_`ZPN
zy+}z+Ld^PoA0)5h2H3dy!P#NOU>1BjN5MjBTlR_v?-El#%jzPminkUBPU8iYfEbQg
zKHBO!d=ghJGAzica}TrB!vYJ8c;|ZGIWz*#9VDbkX>KW#cNZo3t}!exhw+O()D{Cb
zg2(ithGbMQZ9>tA_Q5R2`8PY*c$p=Lw`t=N@m6#8Nc@qMN9~aQ=K6z3YkqEVt`cPs
z+(JhR^$M$b17JYKf}AA+$(l=`SXd;Ide^!~gpM0*&Ox#ht7ywr>`hTrge8m#bs2~$
z{1ThQdjAQam@VOk4vmgh6D2Jc<AiaV3rXFPT9@L%;qLAL_L<32&fLs7O*}~HG-=<w
zmtt<#vj#WQ9H(h%`1UyIYZAyf$YKg5!4MQHG$Hh4vv~h)`~jicKUVNC@dquYGvFyS
zVXiaeY(`IfrI1t%#&2raE5@hreSY>QjIVZ3?urB6&jkcic<J^df&dZ6@imNL#|}RN
zk1)hy#IHCUa+FbMkcv%-W00ZWx6H09*>%#3<ciK)S_f$rsSjnJ9n%m~24E}twTSdj
z=i6&#Y=PYriws#RS5-%6^<?p>7zKET?CtP)iz1S7TPUV`&RJKc_}p6ic4u$y&Cy}T
zLyy^nY28|o`Pq&!tbWl06)U$U;5F;J#(+~$M~wU3-wI;m&8=#WgpC72Vc97Z*$|Y(
zR|8P934NL@R6gh(`8F=LR=3}ir55A>t=bV~F&14%!G<kO4T<%I#E(tC6XcoW<?r(Y
z$6A|*Jr^LU*rJWkcvcoGys@pQP|OeKv#wB4iaB0i^u8zlmEd09=%&Sg9_))LjFK5M
z^b|L+@K3i(_t;j5R8ao_3@td>7FHrdXh!*gR-ne!&M*xauBIIs1Dk~r3J>09tSdMw
zepY+N*X1!Gh+7%|@wqSqOTue59(aa@UHGtr$Q#!0=JUGU3hc<_bFpHFjG4U?;mXnO
z!r<=c*QXvVLWAxOsNMnT)>fn8J_q%M=^|z#t~`5T7q(iytvO8!#&mVn1F4fNh=Yk`
zpKHk{y}4v1rqKHXI#_Hl4IzCmNDqDDk``tdy*8Q!6In^{_DiZVfc1)43|@>RNDl`&
zb9fG6L~l%Sd!UL1L-0mL!sO;fydc>*JOug8z4*Y$6Vh}Vgx^VRjpdDzoejn_IIR9n
z2ZQx~8;K%F+MPz4>s(S|HdT+7<OP(Z_SX~xf`}6Ehf57#_wMkL8!C9R$~sj$y|D|M
zf|F3T5aan+CZA1Jg;iyJUM>I}!9DQBpv0yQD(6Yg-LGYuLYAo(zyO@+$}~jW0)zTv
zZU+r{34W7|3&7SRl@wAhZOZ5X{UrHFSTz#E!-(KOW2Rk;EOVja;^Dv;j!Yz=8=<E#
zNLv2`WE~~NiMJ@lN|G$*fh^dr^wP52*GPc-)a}Xd;`p-O_2-odP9VfVEP3x*cNy&D
zhmqTpdju~IsLO7=p1?5j?M3$HLDn+g+x4$526nm$K4cXBERIZ6$U;!@v2@>PPs1LQ
zesAxn4|_o;#EntEaP((iZ^38$!d$`I74wb3J19-?oKYI-Uye<@>Gw|SepUptt&kVR
zF1+986EoTE{eZ}4Or~k+k#>(9f{l9)P!_lh(&Ne$mgd$yDw?^kX9Qn59{cKO6`_Ji
zOT|@A9Jaojs@P86rhR|<>?-JYAKr9}XV~lhU`NjxA~fTxne+s_zdN9lwFUqgZe*jj
zb8FPX61N0CuYGkXFM3IwQ1N1{!3VrVHC->tJ`8CTB{aV~pSsGYxqN~wYc8*#ljDbf
z3NU>X>$-Yh@!2x5YIr$z`8uT+_@*s{ZJl4P#<ieZQ21hTz62y(?Ua%l8%MU3<BHmW
z>H$p^L^2cJ(_NCnqH`qz&`dt!u%Ub<7-OPIpA%P$N3`1sg1b?<CJ*8TjDHwG=tEQZ
zK*{*(3u&M@d@gE{rWPqw&x*59V5YPg$Z=h<REmWDDkS5vWx{thHAC&b?Un7au;q#p
ze-*j<1-A#*t*#8f=5}Gk8$D(y#ciJB$6oZykqet#sTyCo1@NI7Nqjw@aav>#N10ma
zIImB1x!>4-mFLvu6<#4BgaPpjrsy<t_<lrrumB1)BP!8$2Ij{p_;5?vW0<|1FUqW|
zbTGV>Wo!M>X(I_IMWz{iOQb6w9<gfW(i%Z8lDM`E3i4~5MejyJ8-_#3Y{icGUQDvy
zA4|{dFUE%YkjIe65Unu7O2`(Tvz!s1($ATO9q-~eM&7V@Xj>W*nbseF*8|UN6xvLE
zi{z5x7%j+Vt?)8e93Di<?4#(|*9Bxu-On`kA?@Ja204Q>D>`%sR#gs5`^YjM9K_Ni
zkj&jTbWSC=QDWy<IId>M#CjBu`Ne&=T=F~koHOtEWYvgDmL!Lyvyx60&oS^<w+D~`
zLRe&kAzm;QMSwEj<bz~lg3alHFnAz`=wr}?YL6Leu$E%3guztPSQE=v4US?lHY1oA
z4J{Dt4D&-A%w;%=_Bh^iEIsm`|BZ}i2=PN|=QA~hGu~C|9RXp}w4I``&uRT)3EBYF
zyf{n{EaggDy0}_N1t4GcYnV=(X^@ycW?lXkdvgien(y0-BLNA(fwn#KHv&@<qEk!5
zl$7?-la9uVTiLBJOv4yX#h@bD5l}G3@cW_FZCZ_OwYP;u)Pa7$eb@&LEr69e8}46;
zf6^Fece=*!$pJc<D+a{EieC;+ToA0F%VL-^IlVP?@Z6}4xD;Q*g$KIZ>49Hj5w$##
z`hB^vuK;!*)A@%Gih~kC`w|}Mlmp&h!-W62Nyv$IF)wGdgz#C5wPaFr>?^jvq&9L}
zUvZ|4ei2R#3})j5aqh1O$4@U#y)&kiU20?0{1hIEq=&l^{0;iZ<l$mVNgUm<xNuK`
zLj<b>2ov}%UIG**ADSC0hH~s9w1hvTqZJi{a~0qUrN9QjlqCOh)r&zC2o$>D#(5SH
zrCWtGXtx7m&iq+3_r>D;8M{lMD0H0rYHTV4>wp?@7O(LZ!5o8+c6-E%&Y`3pKPU;S
zyL%`)7<Wz4-#ewIN#kB#YyUux@O(R5Oci@Ha)PPFJo5joqO^Xs6UmRat+B>Fb}dGV
zb-f7uu?lH^uf?L#a3y|9r8kqp?+B4R2G)3d42o`gc=1eL=x(sl^dZ|i7-o5M9GR<f
zvRp~Y4Y|k~uM)gl>a`qUNXEnuiJyxt8m}VrfpGln5)hj^-Y$p}@6#em-tvWU3KG(i
zX@qhG)GNRwB@CyWkC@n$E;+BLj)poAv@G9udhBSE)((J$dp!ArEH3$QQ}U#k4E>-0
zn!Sx>QPxEv=V{QY0Z%xm$tkzb4FdY9OJseV(;V#2-Z#L0<fv@xy%@b^c!A!^d#p;M
zvZPWvHjE6`{L`!~ClUytnsYoR*_zD_(;iUQ(C!~kBuAu(n*e5FLXoS9ocS3^k%{Yy
zc@<>;R=3$uv*}Qg)5dNbtK%s>Q?Gk{++_imJ07SOeTGetOAtXfMh_G@ySP-mO6>Q}
z{iEo1<Ldyk#p+Ddl8E8e^Caudd6riA`FojWe#qmeEGzw|mv8x3x0_DSpodq6^!p^8
zx0fb)!9|a?prnNzni*%k_M?xtX%47rS7P{4y#-V4Vq{(y{`oT4?#xG&#LqP)<Rx+R
zv0~?;*vd7Kc1N&@!^7lgdgK?j?{TpN;ruZI^p*w6${$f23Z?(4gGUC$S=&%B)r#xb
z&$BG-Td#NEf+S6IFRQv=f7PrIo*WZFRJlgQ{KaCA@gYK(YjBch2eowGYA6n1KEZns
z#g#fu=jY1DRWu2~z`_)0B?y;;QmSkDN`|F19K@}}DXDbywH_=eu>e(pOva~v@6bO1
znLQybi1inhQL&i;rmbpGQtTv&RT%$A2?{*7aNn8V{qP7G_}pvX#NVY4FTR&0@ry$O
zh$`gDrY9CzC3}W1S47l7nqn)-++R_{+EgonGeK@Oe;F7uodx4+If-daj>!_LXLI3>
zG8%geqT#=mSQQ27an0!`i_emD?Y*MHOV=8blek89mrP@AH4eI^Mz9>yH%SwEWLt8%
zI%T)a9LOj}A#n2f@hzn7eiSAhcexZMU1T7yCv+DODR3QYdE9s|JkEP7BNGLrZoL{|
z_+<sprAWBi6KiPRm#gkcpMsa$7gi>@nPtM-slU}+#Y$JE&?UN}iv78kQ0uV>R!B$G
z$t1%8Myv{mB>9e<%nOk~N9fte=Ux2gA$YcXK*yAq2j`WJT-wdk*d;lEIg{9HfYE>#
zr4o_#f&;ce^NwALCC}9m<@ix)?uN+*%2phPIkIf={*P6*&EPBQ$%GYc-P@gnN)u@a
zzJ@vDVYB$f=8c3_Kc5r>((<m|CddC|n8M5M^vCL6T=pR`M{JU+eUG><gCz;aLbr)2
zNH^cYHeMrI?QgZ~KM@3FJqf9Vs%9C5J#G#aY6rl0u+Bone<?KVNNVpaiC|lFv`yws
zA=C+1qfH2AINi!_Ew80oXi!%Y=ZaBgD_3*UC+9n0@X_;Ks-C0l@Cf4Fnv-%P?PzFO
zhf9RjO{{(?2cM?Wa&Nv}jq>o*J_L`ne?5PDoixL?#`=rGwfg+_M_?OvTX3loyx;Re
z{foo%Nh+lp`nbzJ)RzjSgH<LroMZ{UNJoh9i<2)_q*`Xh8^kN}k1B=ADRtZvmz=Li
z>!8WIn9s<&+OczPL>Td=A9De<XT9_5wYxYH-(1=SCu+awD)EpkGnEt(*}Srn*wSN^
zY*-n?Vl2!9SQnO>g=dzG&iDBJq@<P+X{K#pX~XS%J`F3bdDAQcfA0(y@DoijPT`O)
zG8(Ywciha#XMZ1}EbxY!(XBy~4X>N?8iMC}6^dki)CQW0DDcQ<S;p8XUDk%>al%v3
zQYnv3P#9f9x@^4H;XXN2IbEY)dABpap^Y;qqHkN6z;4K{bjr=&;gv)pp%c<Q8pB5+
zt%6Ug$Smo^*x%#uj!8aAlv1&m89z8i)0C)QiRz0j!A8uk;n_vWK499_VUDPd;MBs=
zhydJGOMf_l{Be{8rX_>9NQR;jS<?QZxcrmH$}4<YKYZyHDrNXrkalP~6vAfZa9<=d
zAjV?AfsOnb%W0o`!_73(2fpsg@;VD*Do5knLYekJ0?`vXmmr~jZigob<i{OZvU1z1
z{nbow3O%?_rgH|DN~*djI!`gxhgVjHVVC3UT9bq91Y0YMHy*V4vH>#n6fNrp1fq;D
znH2M>^+@4Z80E=U7f22f7fgN)iIw_UtX;F_3@!@teS6w0la0b=apDB=vAbe7>}rEL
z9VIBKcX(D}arK=)AAA^(5aK2O^%zj}YbpNm91c(KHy7+79s#ZPvp9~s#&%*Sxh(EX
ziI!DX@V;>XlQFer>dyf!Wv{e-2%D`}|8Z8D)Nu%4cbQ{BaieaL>)oK2;&L-y9ZEV~
zNq>$oSIASQ(Lv4JNyf}UChuW*{nDr*%xuZxI_Kdf%N_<IC2CZfLQP7?gBaR1AP<o&
zkJbEvjG?^!ZpE(Squq8)AUs+`>*?9!xlMjQ{AHgOc!0=$$gHlgiZ`yK2z%J0Lq%36
z;aP+2yB`lrN!PT=m=}#w0*Cov^StN3qC$IsZ#_t~O}E?|rdpnV2~(pe<O7^V=o=(j
zt)D4OQAJ1&H8dII@A9+~MV34h1i8Oqj-r6lA+&+wcgZG;vd55xKHW&vI)G3VBIPD{
zs8|-_v?;H{qvj9E<du^6Y`76GeB53i4_XD~WZ&PyQBYc6Kb?1Wwt7R*TYfkJZ7-@^
zmv!q&Z{A&p_k`1S^3-e%X1QZILl8V*-IH-|k~2cPnxaeSb^ZG$(|l18<<q9u5(|v<
zZi=p5yu9E?7~24m(=JKH+<EB?(#UcPEAW_E)VxM0hXS};;c1(i{b+tvaXpp{B)ih0
zQ}nX%7<kk^bEdf5@U<0bGDn>iR?w%e=7@Wj4sW8$e$$+=RJoF8EC$za6{nu6KO}3u
z1voBS$8E_Q?dm&9YVByJ5OBD(WTarLxUtlFs=M@ntLPJq+uqM%N8Jo9fZGOXvWcro
zfDXT%W=fcvGANNlN8_{h{AoF<ghvxZM0qwjD_0Tf>tprtg2}eQ6lsaXfj<SAo9y)L
zkm3k~Q1aWSHZgG%%afvahX?8C+b%j7BgB6su;FsQit$nP^7zXnO6H{hG19n#)a{(F
zsr;(A0(j4?rl*AJ3IS7h1EU;?yjYzbh>yxS!|`k%w#8+ZoY7YJk`A_|V`PbXt^~%h
z*a&I3(m^Pfuvx)PHxLqsRJZx`SwWYHQp9|>-0J-9a2<Sjk!$)_LT;L7CcDQyLnYtO
zmaA6rap~O84bBi^0e)xpRuEb%h)U|Y6asJkq8A(UKZH(K1AkKJRNeHp90#8c>K?Aq
zvR<hRQb~25;a+9lvWE>IdW$85f59aP`jQCeP^LxtbKW3f`vW$m#6L)XPHf-x+UC@;
zrfEJdIwrBISFVB&CyBl?&n;M9$s$2$YbDJucdPQRasu?HKxYXcPHzaB(}7pg1%yM<
z>a_Clnm8!foj~omBgDezE#16B1b=VnFM=v2kB|wk9epD9YJ%P$%B+107rdW|$tv;8
z3)(c)FfA`F2iO)4XVyyN>Hq=kUJu`7mHMS~sfghB7x6&&VPE(+u`#5<#_6N9#!;<B
z;Q5so9!q*j5UI6b%r9E~deUoV8N;B9EfO-=5&qiWpfR@5A<JznN68s!f{r&TiUMUF
z49fUs%=4+>v9-|Go)fDvydIv~rpm8pzhe`H{5cfxt_}XRMDRbRBtPk#kCio5f#t)6
zF?lI9Ep9m}PT|B1aycoNd>SmrI_25QcHd8*Zl%11Vqoz~iUCQr1EYEPlq@-lK^5Sy
zcZ^jKMqXV%t}gz@lbND_`)&6^233*9=RP&$l80VFpS^?g>=f*fmd~(kl3fW+V0-75
z^b<b|h4T+mX&FA(QdCmg!}r;%H#+9J?28?->Cn2%81UxU#O#WJ@VMlkMk!)r5TH3e
z=miwdwgFGt_CE62M!8QgX@k10e%OHai<{3hX2)~5LB14}?hg>r@HPcs|IOXApL{j+
zUDS8%4ZxEL6ORdGXrj;CJyc4|QAyFfJy+a0%NNnB<>DwPmH~{EL<<keEW=v(5VA-*
zqXFsI`<Wo&pnw}$D6s~A;sB2m74k_W2P!X(k=y)G(&K7B5PmAHVecpej3k8Pb^W9D
z9etYFt~Uh<4hJSIzckBHZWjY}N-MC>*6xXrDJ?4~131J`@-&h>&b_&|hm+`QT~V)r
za^4{;>}xtedp?vZ)L}6a!<J|Bj5G-eB6z&3R=+9~vfzh%(fJuEq(f-%f}cfRcR(z5
zkiP2Y2TLV7oRzNJ*BjbWrV)%lzC+)BSORE&8+zM!6&YUjILJh#Z9tVXFD&(lqKd#|
z(63nGR~|V+LJ2WrcBb(14=vHHl|`L0s}0*Tfcs}5ib|o=w(E&)j`^B|=aPtO31v(!
z$yJ&ae93oKSzM`B^XJ%!D?J2eG#U6uq2#P`ol`vy3~LupLzFQ*1^rFpn;j6)SCann
z>FUt@gVN7wgYAT)MEpm{&g(v1aj&)DujhlKqtA|`Ob44**G|6As}L;H1nCh%xveCk
z#b@whQl6J-Q<igs<X&U8jq4h$;qlG|pLGnr1`XlI?1^#sy{CSu2HGUGf!&JJS!8&M
zNvX$;0Jmu%2x#Rq9g0#M@}cE=*bu_ojh3DH`2ozZm(ff~h8zqdtIy%UDt&ptGEaJ9
zhJ|4=2?44xsiVQCiKvAL^vZ`$;>H52UlSDzR)tuLR~}<1vfWi7)w}iWj&Vz3Wj!f3
z0740LN26~zn@T^ai83Uo$b=W-D+eT9#gh<5>}+6YPik8hCl`>v)W;o`2#TVd!Y??A
z(Y4`?wl*m5qOX5wtz7WR*J`uO(PaDnn?z@TrMh$y1@0GWftjFJ$>P6;!(_^D3)&XV
z^>2fuo?{nk5cZdU3ZfC*9waYz9g$wLR<ZO&tk(EAB2~-wQt@K?#Bi{ngeAdVBh-iR
zx@uDw&3l*^2;sV~?<T-l;+haW32Ev%NY=S@$<6$9sruw$J5Q^&Kt~|<n>J4n%S_;p
z;4mR~3ia{<vt*3$>qEr*mL%*@h;hnElUu-_ITs$aUzK~$x8w@5CmOb{D7b++*xkpH
z$3dUOfLTuWp5@4`88d|{sb-X)E`w3VcDe1U9}LZCIz6<PU+2XIVA4{!zUW(X@#W@P
zniJkeYLpjSJ`HZv6+!lbSdDQmq|sy-2>=Is{9t+G`kiD<6pW_w24Ofeku158rgM5=
z1W=B|1Uw;3*(`Vx{1=;q2wp>9|1>y5u8Q!)8<CPg)IcfHvGp1##ubw(4Z6(UF3*GP
z?|k>b8`F5wD>9$uhrpXK!)0<K@|0k+=K^END<l9EstlgQaK3mbU!q@=JcCV(_<;DQ
z=ui(k(1&<Z8Yr<V6V*=;S}h&nFwWW1p~<^<zL+dX7`3H9x9fTe83V*a2%#ptClQAx
z50kh%$?>6=?Dh9Z7TR~vr@VPOv~JXbWE(FLbPCjC>|JUZcO!<Y=j+MQve^}9NMh3p
z$_ox0|N70SF2WH9&EBnRECmtA3MBhG)a&^&);H=(RIu<h0!io?Wu@J#Tlf~%E0%X3
zzm)U|!V7dT%&ykP!4~lDEY6w@p<}1<mnLyZ(&d3{x^{Rszism#03^IZDhE0S07YBK
z1y%N+$s<2E%n?`$Cu!5GTK=V%c_kz#3ERek#O0Db4CTN(YhR}glm5l(wG=Q55N>n9
zy_z<Gr>WAI&k~X0O)U3XvOc5Hzx3|sl!rzO)Pp)uldm0AqroJ2$~B%z?Q!_5HQn;f
zRq0h}Z&m`*t<*t)0dlU$SO^v6dd0em*VYjP$QcfyebFpC?VJIXkVKAzFVeCKL8yfx
zyyDhK*U(_i0k!H>hYTTNw#Sl8J3_2&T?WPeZDUd>e+<=kC>e}YDw@E^-N09M4wh+B
zcMYaXS){S8Pc?g!H6O!Mzonsw&?P#=3V>lO<K1%w4#dN!{&+z8V!|DcliEQhHfg@E
zkNSk^tF@wW@Ra)!z|wt6a%~kxZo&RF_5+iggd1i|I~Wbm^7~no_&7z}bnB~{_k^7U
zWDFk$Y`}W^xnqfCYGdjWYCJ&}j~C%hI_#T$ntvU_%}!C>`)QBz+caLS442Rey;y)X
zyASK6DRa-D_gL^l7kv4G?qo)L&ACc3;yEc~>&N-}(&U4*;eJ){ROb^}Vu-O_!?L;E
zS`Udg`T1POoy9;shwAvFSjNr!Yqg^_|4S<fEz5Db`n6w=R6*MpYF2E8C9+sCm*HPF
z`@EO-Yloe_FkGu|QGsotfhm{If^hZq*{?~c7HeNc9slBM<_T7(WbFPm;t1QmL(1M^
zp2B@e-<tP>BK->>Za~a-nzn9}ij1jN+7(iVN~KW9GLgB}b@-Ln3=p1a9Zn)Mlp9r7
zhE)rlGZcQ@RnDb{nHS5O9P!K~4P1;2c-!ly980<<3#(iY=d@lkoxUCKBC-FLy1rkp
zS5}YCooG<ILZJRLK%}?IbUcXGf*$xwj!OTN%7VkGYqcdPs6UI-E~PO@>Q&U#`K?@P
zK*|%t&eXKB(iD?mIjwh>#ZaHzi<Q*Ms4p7xGOLin7ylas`&^cJhZ%V;2E1t(+wg!`
z(~Iueuh`9(v+prCz54=zIjCOSaTl!GhbR&qkXSOo1g_)7PQ_RgZxEkNWWl5Wgbqvb
zQnC3^^bLMh>hMW;DkdfKeRhx*F}}>%{M#Dw$@l$)W9ual=;gW-&HayUJMk;zfBMr`
z#n{o$B)lk0XHs=i^<C3>A9oY8_ocWLhJ=N&u27LUhQ~^pu49340evGOf@WPk?Tj0t
zXU}Lx9QnqCSf^MI;`$vw#_nG}4@?SNNBNFE2ErnBb25|hz^f@>hfq;-^^*IFv`7Z#
zR2`xE{>})Q3O5Y$aP5LdXhI`Lj5dB~0@wn&v1@6X#8C@p{lEN9<h=|Pi9oGa;uN%e
z<hCU#FVZ(2!Ms9E{C^lb3!u27EnNq1Lh#`35Zv88Sb&7!9%$Tx1!#gd?ry<JumBz0
z-95Mk4eoC5aA)S#oqMO|y{c11bysyC`ka0CUVE+o|CR}&Ka02#BQBrI#7m>lf*tmW
znlh=K!21{VDSWC1f%jc%fntGfi8T~d8L*o~p7(p#8}Vv<lN|#+*<h<z>!orJ80(Ci
zX)3z&+Fn$gaTYw)hJaOJt8P8Y<suOB^>eUPBa!Hr&mN7|Ge9{CVoIeFNh&yT(V3!g
z9(vf)Xq{EfK|`ER)Op?3NdUUZuNLk9@X=sX;W}n>$NhTM&xkRCvjw^N*pqH1VlIZ2
zu=>Vv4cJ2|%8oH71YfQAw(7J<Y0&Ey5Gn<&Qdtyra->@3XR-&HBzis6wmu9G*Hfl)
zRT!&-(0^`%XmPT;{@UQMGGs{Ef5J%S2`Oah@YJ@6xPYWlb)KnqL<{0jw0=Vsu^<0^
z_3>|p(^vNw5bzt!ATfTHis=z|pp^UjuvdC0?mw4xfu#m%%ZgrG<$*?SyKV+d4Hrtg
zNi{qi&`cA7bk;V(%h4m?Djd6g9=;PX6QYprL%|-G_UaH3v+`+oC&;Sp@urI44&Qsb
zg@N^ys%fg5cHdhT+FzG0tIPZ99|=n#c=%GMF?O!jttEfnsv7+1Bg*9J@sSYE-(TES
z<JG2r%%K=BrClB5yVmfS5S(>3G9Lw%26$VDpP%9}zCIgtnHIZA@xP+y{Gc1w3bRjX
z<v8T3v9S8}?cJCB!=Lm4rig3!;YvaGH>27V#uOp0=qsklM}-+Kuu}ExRPIx%Z(tsF
zh6sV$p-(C4rrmxGfA!|WT-dJ=^PCq5j&2!Ozv<6quldyBl&!{PX++0-p<Mq4qP0Je
z9f)kew?t=UA{SdLG#DR!x7A`APAl&HBH%dIIpcyR>qCiyO1j!*yLNTX{=KNggswt<
z%lnDKmqAARL_Q$#U5{%&9*Acvv8_1qy5L?{fkJ_g6_ZoG6T&q0=H<~EyNKy9R1Esy
zo-pv9+G>y7X~OrIisBRD3?zP{+oLx{$v5QmYn>3*_6$WyzZcVi5L*V%Ra?4`*~Htl
z9fkqCm9R;m7_FN?b~jKeKk2KUZH1!fioCBXv_qSWIN{IR517E47HPkG$x?D7IxpR&
z&G88czI0ea+peYM9Pt)9n6w<aW>DpN;1}y$+Nm8G-<qi{`(3FhF7vpq=3HpeCPlwu
z<EHsENKj}pQ0HO!$G~Qp0C$Gh2PO5kUp(a&b!EPNnQL?aOWAbhJhOKy@~(?VHCsP;
z)T5~0zFAr2DM*>k$ZWS~UaX*{szpRBiR;KezMFByA&cId6;7kz1w1}`eooH#8;haz
zFAD_Qta;<932yJ@?iMld>eDise;g3X$Z>VeJie*}^i2>L_K**9I*=orvl5SmW7Ic~
zX;+WBmZoInQlAAvWoqtT6}7ZJJ@7<hdm0q2vvU|Qi0$@yHBoY2hhm}3zvL)j*n(~n
z$<z1P=1LE|>Q}dQ&g*8Nl~{}BksvqWPJo+>#$^RP=cLHm{gRJ4vj6b@3F=T1j(-6P
zRSq_<1~mQKvah%!jB#GZQ%poySq=0NoOYqT(#5_f_+)sFMX%CD#$bDG_<3A5>MLa$
zTsIjz5msT%lG_5{5I3@T6ntb7<}*%t5oA&6(H~Tby2JF^a2bjlXQ}N*MJYx2Un~G+
z?{UMJ{0F$WwU)a>5<8r06Yfw1ap;Gfm{BFR`mR{?aqmCL!ts^QlCQZg=JQe46yFte
z3lz>BR1-e}4sq}MN+Kj|y2Eb3#&PJ>^-7_MDk_1A@OGZ*!DD@d`FnuX0^ZJ7mVv-D
z0wQsWDFZ$y9sSS++B2taJ1WHmqkJp9pb5Ah@LWfRAp1VVQ*(OC;r)5hfjsRY&rKra
zZ4^$D@9QCHe&-c;lC0_%>kj4kcTzliK*6Ud!RA(Vm*T-I3GKI-;bVO^J%!m5DL)Hf
zX*98q`m%v$uR|$~tEVu3vJmP^e!DFcp}9y~ki4x^OAs1Q<3l-5N3=4yGjq=omPs%`
z0twA_G6w7_(J(`2iqhGimT(?`TXWGmI6L~6?;+{P{rbw)<e!zRQKge`l8K&0Bx)+O
z97uMjOOH4x?av}L6Z$pNM+Jm5x9_z>t#PO7_H`|HfFF~WnoHy38vf86PfWcURT&8&
zW`|_myNE|-+|}J~i<m_rr(&beCg7&=+;|}Fzs2K=PGQbDz*kw*3C-4;hdX11$=&69
z4WvfOZ5=qpb!#6Lbw<-1isef!D}k$R^S?Ex-MrT|dG&P`Ar+X=lYY)BuQk(@@0Y|n
z{FK{Z+*#G`zaxH}JYR>jJh*fy(db57<`iDk-MgZU?G0TJu8}-oA3Z#J;XY6vWLHL^
zBhr>TY>1hw@pwPaz^v28VBhZBx6_U(nt;^3bS@3)<YXM5A|pT6dW2x@R!KZkOv~vZ
z#dp-5*(5(z7-|HKiBJb$Uv66seYzeCL>J;y!WJi6Gx`sm`e%H^>tZ51u}A&%$Mona
zp!!34mDRqOg&CnOOi&LPbC();Y|el(Q1zm{TNm|<KU~2B0-*@gW>m4bm|E^q?f#e~
z`!ROjCg^FHz0bmb3!8(M^g0))+0fDKhP;RPR<fM7wAjUz=CH9+%1MyZV+8jI$3IG#
zIzgVD33=X&efpG9$|u|6Pl6hR?HM%sdTY&TjvaNLMY7n)d+Is*9)E)DOU+o;10I1A
zg7`$6%yrk<aVKVDWeiVjjetoLElZ#)q1Y)a{l0LeR_A;*$f@e^xo}wTYIRsW{TcAF
zgvW<PDH5uamy)Tw{Sl(MQ(;_{_&L?xWPi2f9=(fp)sCrhUrLe8Jj7jG&4_!vO&Vi_
z7OOC8L#-MZ9rkoP)5;f4yvFH@Or1-?=0bF-QjF^qSL34|)rG>@8yzj+!Cz#5B8C+<
z#eVsyD)1-pxUv!1J&+f34a=kzRfE7w5~g#BQb1OX9KME*UFtX9bAKyWUybtC7pJy2
zU<C;4dJn2^_E;7fyf1NH#yS+RRvoJ9w{%^UiCEf&h;b-}T|`@*h2mhAQryrAPP}3(
z4W%pdE3nc`K=8ryPb{cwfbuDw`g0T!1PPgVZ3qr9<?Ew{b71$-4^eSzU3)d0b8m!j
zvak@`(`|l#XB5_IjplK!D;65v0;T9^%s=le^^ElejqhthuYJTG*k`n<&lXq?5?zIF
zg^YfDxPk^$;+C*Jim^PrIf%c|_I+AZ!`-Xi-@b8qoi!Pq_li;R5Bwe9dE<l}o${$+
z@k3~1omr09+)>F`zS5#enhvgI7FMkrIRVAh--_>}`*!{xGJYmWG)ii-D^PQp20?`a
zeqN!q8_8mWl@PzMnIv{?*cjjx`kcak|MYNb-?+a$N>{nM(c)`PT3W8(`!(greRE+$
zE&jkSK67pev6LsiKU~AhnC^ktkYRWGbv9IHr<_DnI28KcSZ`F!g{r8vx;}w#ORKW`
ze_y6t6z7bj>Si66lC>Vxvo|M^+aufhgf?ER{~}4tQnLGWTiO&&qZTGS^eNBIxyRjM
zuq-Y*hJ(rxr<`5$=`Jw!_&T(3G%cjzT4APkn-yPh$L37cFy@F&yMt$1B|NJib<`=u
z+v_mbZ89(PXxyw4eW;DB-2KY8!IOl0ePK&$mg8W_VM#nitb}~*RZ))>?(lg<Pl^$_
zV9&STm7n`l=R%B#H&142k2uyT9yE8Bg`tCTCDySgbv-!5BrImwTxQFLE?KoHe6yZJ
zGxmq3JMMyazu%qBeIhYWNM_)>p#*VoveBAH!G$I}@U^9ayHvVf24P<*x8zcjy)txS
zpKy9iA&nz9Owt}Q#(DQcBG?Se0{3gESXZycS%*x#BEk)(k%&@cYmD$j&qh=bAwJbx
z6#}%S4OGc=sl`F;o5WBYnFiBzyg=Fd7|TF{qSBUQ^HcFzwuTsSdSPYgTWlub#kGp5
z&}1W{K7`GWss=P=tMX)@){=e!$zb`p#4}mic!zmf5@wwORy(qUD#giij)gt~Vc4dC
zsa1i;-KLSfuln1CHw-@K1yc<8jNtX(*VeGO`=t0}>qgdE2zOTB8cn!b5NzPR@WF2k
z3RW-h?>|T}k6B`6QxI61)nG&Od+su;4rF(Q@`&-K6!*Z$PqzrWFCSRW@F$kYci$4<
z>vcx2_$CP(fg{g<g$P{dW((1|{MOjh{MCDFZ5HpQx|nt|vgT7(eYLKk1|v_tvM;*O
zwpLxB@Z6R{KtB`jIhWc)YBC}Rd^T+3SW>f&QsC`U!DF`JJB0~hUJ9o^3w#@tQYuQ@
zAuK+MCr*?|nj66ogAFx07nJ49Pm!Ugh?4@?dnAA48J+Aevi{*sAVY!!EnvZ=boQX`
zxtDrMkeaefvCysJYha(@F3-6ECK`dG!*$o5rkH(DePHyD*mrwEhg2r0I!tWF%O#aB
z)+>zY3qk}L%!&g;g0kM_dFhinU1=+Yv?&s=2VQYaCw?MZ870Y&1&k~Uo&ndW^f?h#
zVfbCTstV>TNCXNF#@lFb;VJnzj7$#KaG4d@Pmb03_E<nNC_M5(@Yu?wvXaG0)X`9J
zu{N|at3K|iQlc<EVX>Ef5wvmdlTJl;6qYGztLzhKr_5fnUFQ=GDD5I{@G`a5aZqkb
z-oBBiEbr2BiQ{;u@k0HzNkt5%9QJ^I0z_iq^a_KM;Vp@Rb>lUrQzFMCjQxJ%<Ik)t
z+NmPIh1P_0qNWfA{s3gI&CHs^Nq7P^W@Nw>FyVQ$J3j~{sIO0#heF_Gto;40`~))5
zOYs&7Q)Oz?^{B_lTbx=H#T6;vuf}8uaY+i5Es4#>)BLmP-?A?h*AySj=x%5+pTQBd
z?3aWyzWH{V(jgd;18G%$O{8HCILSb&SL*(<FN^a?qy-ckd&T*>{klteg>0LuKibRc
zPUBunj}lr@yZj||{Q4pydYx#-!yP-9hWtS+o0IFi!5BTIkVda;Rk_zh@>#i3HZ!eI
zs9IFhXs$7>caiMb8?PNmBY`+6(F~=$G{$AYtoE=W`~ik7h~_ZhrMQS7`xJwck*twq
zeN3>xA0OOqA)S{8@?!V1t}_N^o~VFp;>=i)*hzl5;7B%}X&U>(Yrkn3<5j4ha&*v)
zlX_IMT_7Dniw4i_e0>s^%fVfW3;%lKQ%bgdn(QIT&)>3zGh7Qo9m_DaEH2SxTdTQ#
zPgr0pMa9Zc9C7;e%)J8LtEVhqvCZbYVRlTiot3Jt0kWa5tn7|gg-!0+O48gY%iYm4
zcDB2a+rCE4jVT=F?Zq>=NxQMCN(?Ft)w?y>Ntcu1#WROd9RcT%>46rTrx62R_dgSb
zPCXUl+=4s&=K_=Nk<yC=YUca(*Yp;b2jy;8y~|b2sgD<}UE#tQv%9A0qx9io!{kFv
zlm=!FE8RoakC}g+R;XI}AA(6Y%UemBBZ>;REJMHXi70_&IanVDrTLa-KOV|-cw5X>
zOmkGvVDK!REg6hhvv`hI5oUh3QgY()^vW7MGmMgxn{?vgdMn8J^O$RhT?rdrtKNib
zmHYUV`QsSI`>0)Kz=Ipq>6_GDpEAbC&qDvgiJccBP^Hk>T*p4;UF(c7$IhySBexja
zpJyA`C92ktT(ke?JNvclq&ja9L7sq0Zugq`#2~v8AZMRULbuv3V6d8`4{!RQ@dy-$
zoF^2F($0}I1^>Ku)>DL_1ue{v{!nk#6UGDp3}eZTzr(5%9INfw3%cgg?AyrDUy&*P
z#iV39)?|v3u-p+3-{xsX!#5ke`734m<5HXb<o#aCf19twVdQ8y1!TX-lY=#F>eez#
zrrdAx&&NiXQ%8R?ZN~G*t?j(IVonwQ8T#?Sy|Y{cBTWt1n*Y@XN#wSNeZ@l5#+6;b
zoxh~a0a!xOdU~3a7eB|@@};Nqe||ww^y4Y39uXSRz%qyLQ;j)%i8?^wjYC86deN~H
zJ*ermH*$YK9d;i@%-b<~&>VcEiS0W)>UO+WO>NR3<rqywf=juv!oUs$o@^5zR1I+%
zI<YEW0QsU9C?_cW)|C8NCBaJrk>J7^1_x5TCA^mig!V$DIB{sEedMA@i99Wr125pW
zs#jqE)kBuHr%yeIAtse_9yJs@h@>kNUt$e`W*|xk?gn)@)k*5+L=~kaP7M}X4tOL-
z1UIGty$NR$l$d}Vk)}P$u{}#jMMz;1I3-yu;rczpl5`0SW&m@RCiE8wz+>Y%I(fCm
z^a;ZX<9oi3WDluGe3!yfQIsDh#h2r8bXsCD3?K&toAh9HqAzG&yp#Hxd)Nx-g+_3K
zyCm<Wrq{@2^tR?!qY8zfP5I~tk*2?+u1^?f<+kGD7{vH;Grpt21n0?R+G5Oul0IWA
z<WZZf3}j@s;N@b`@~#!=4<y2F0`uu;<#s7$bS9*UivvtuG5KLc;}WSK(%<lBw*ZML
zF18bOLLcb9<peSyB~QfZ;f4+v4{?i$1=zmTd8xx3-ZG_TG`$_+i^a=n#lE4{Lqz47
zRE?=dA<_7i7StbgD_>_UZ6uK{LE@tCOR>dlw-oQl$N=%ilGBk$>YX4n7wTb4K*(Wz
z?OX`5Dq4w!VAutpXHJ>yvdVa5WkPOuq7ZkObzb&bTP;NV#sa4<C}dNed~!_?gx@L1
z^b_9+T2%X@PTN^$Fl4IxeW(3LObp>p`g#I0_B7*NPM|Sr`D$@42*wM)w53h`wj<)`
z2{)5Ks6D?*;h?QB+HpfS3akPAF1a>EvvQ6}F`tpCk(Qry%XTv|_OOjMLAU14dyfl_
zNe(-I4{o0s5fN&t+<K>pl4L=Zz@;snaWUbcsgcSQnj^`t8RyRN$US{$L%7g{i}h9>
z+$YcS-^$kw{a2}jLwx%llRoXdnc<J=kKGZ?bdLx>Iatc?9KLADn9?rxR~Xn8`aI_D
z@Lh2g&b(~Yrv4iP?IPT6CBC{XyDEZqX^Wreao>ChuT+|xC@i9*xx63lp`Xdip8R|L
z@Tmk((cedW&ib>A>HUSc7VbKY_xXh2U2$;F7aP_2T_f0BwY2|aTOX2{iCJ?2*Svd+
zH`~$eUU0CSrXFImmd}v6{(A{-=<zQ+v>$IW(ctKnsJ%@JpAjHo67updH0hhXfBY+N
z>_5wA|M&y*MI4i%?-Cf-U?5olt4a&c02cLwK8&(N5@qbXO>DoIjrb7CDr2D=fDqym
z$l9kUrpT;JGYUM?^nS9927hZ3Y_c7ZcTf-Pr7~Wy4}oz}x>8G#szPGkRz_{a9|M3M
zba`bQm!_CsYtV>%R4Kes&hZ1ZLn@erEjDZDqYDh_t$|;Lx-v)!gqx!!q3}M&G*Cc?
zrBow3AU39xvJHUIJYuUOP}6M&T#B4>&f=U>3ZtrXMj$A0KXUJ8fy-!(Qe@S*I!S^z
z)8F@=R~hle(D|rj=B(t~?E1%iqC}KjecjH5A%ou+5mQ5XrkG*1K#<lH7|{=*yHFD=
z&N-A8>)_!CB!=dTT=Ckzoqr=LcDG+W^4^gUgLp_bO6>M;u|X7I>9%^LwbP!AyQQ)Z
z0;#m3^vmz^$wQ6KePg29ye3unT{pB&2GwCjYeq1z^U9IljR)ph%6Zuo-OvwQzVzu$
zg?aDX9o4`u%FVccGQ>>M?b2Xxa+nT*tg>5lwXG(OQ5p@REXX#ePmKA2s4!HP+-sjx
zem;+EvPiN9kJ?Pj=X+P;MQqI==0P4c)}IN;i(bM_8=;MLR)y@CdTfR50)_d8?GP1l
zmZX<;Pe1`wC@vcemv3|t8UZfKzsH)-0}pSeJrW&M#JqRv^kBJ|rYPB|=%`E+L^R_y
zKea|hl;ea`B|V=67rd6@q&;JSM#Rjh0l^O=36{w^Vq7s6|4s?zFJLGg!1;L}6}ruG
zY+9-b8^tE@P6_53t2`m8lneXNec3ZraF||F^IaL4dOEE~`*~P|IXo3jQM(oXv^7Mq
z?KNt0TMCJxBhA{*k`~ynUFJL_bzWBEcOWZ3J>B53>G3Ro$mY6faS?VIj_=jC3bh>G
zp7aP7xtUbyROw7`QZZ4vp0}o7{QXJ@2t@2MmbUF~IeJ7{PK(?w+o#`Og0_D+-I}Kt
z+EKd<=UWZjVWtVXHBNpuGQOau`gB!Sctk0`ODmIHm|nw&9-sc&NAg%EeQkfiV5cw9
zIH+gXD!Vl%<tv<C21TqqL#tC>>hVT4?vh&=N(?@$I(C(*S$U=65x{Nqx7w?0#>dGU
zv{^Q+EmG!Q<+@qx{dS<HHLoee%bG~_Ro4?SQllX4Lph7wMcF@|MOSQXfSZ<gqJ)qA
zgCsBbe?!E@;KRWjLnTCTb0Zf6iV?AY@*>%(Qv)^3_h{(g(gNuie=wpSdnj}afUP9E
z@#Im(1izu;#0geA?&PV6A@mIXN>K<Yq1wj_{i?(WE)K}>|Hgs<ua_a=3<8WI7$VqE
z2-bx6iAqQwpp1s%^TMRNvF9nLKb5Vv*ZL#LnfMeQUKgeYr4Vc(X;i40CTvRut`Xzd
zF~K{@^jTv)2EO}yN2jv-K1w1V56*@vb)fl~{VAavD6`X>TH{j&l*MphG`MJ?oDEiL
zl#GfE9k=U^N?xj-S?-3obCj<-XA<h>t%rG^j$d`)YCFEpiI!j{ga4zh5OJE3=YXuo
z<9s_xmkmZepIp5vb8?Msq2Yl$3Q7Nb*sE?WwnNk1#p)9X{8t{7(3}fEEAsbE+=ukI
z;|Wq(W`_(TtMv`FOZ{%LG_)&#5c2U5jEdL)gFW$h{tg?x3(`#042H>Yvr`9x-PKp4
zDdfJpvcDQ(NAW}!)VYn6E!FyHB-6-A!Fx?B=Y+tNEb7*EwHN(+L!7jvAI&Ap8uda0
znhPO)oJExsLW9$!0!wQ|(%g4&|H;D&JfVpE^(IWBQQ}2>gBCY6eE(0<)RRsY8@n4r
z1k>gy-_rzW*I(i5&8H~0!lL>ayOtHX=mxLtRuS`+a2BUA0v`S-->T5RqYv|lnxio%
zfn9_*wZzwjO~RV%rNi9${TlfTP1RdZts?h#&@O>NhrFAc!v{-)nvT?HBJG!<<I!L4
zX?(e`L>Z#%2S$41@h&e`?)4{a>gf*>>W<E7<<M}Bz>)XWX0ju31SFi<cD@%{nr15H
z(^I@t^6PGq1%iCPuqc-J1h$m|B?FLo!&6`NQ7-QL8GiOaeCHdj>oNr{`NuLcMufGB
zCgfRve%3i-@#ddblIIoYqpa~nzGAE=A7_9T20qvT=gi)=^gllM%&yd-qMY{}!vV-6
z;@!w-{cSUk1bd8~=~Xo{X={BNGC_P)Mt3@dq65^FY++2geHdb>DvQ!1r=cp&E8@8-
z??A6xwtfiYk~|WYPz|B_O<<P9x$vxoej{R24UF;ckpL-xA!k7k^vc!rsI+L~90X~}
zhMy8YWYnVK(x<42-Ow_D+$kmkvAWDLaJT(n_m{QRd@<{b2`*~87+%(jF7$oz_UmJ&
zfk`z2ey?yC#M;A~Gc{z6yX<hB;?J>a)F90Gd^Z92Air2=c{CcC_w&q!CGmYf{MG9Z
z2A{x7{5ktY@f=j7IkB$~LUhnPFZ<s^uCY9C`p5-0Vx%)db>|srNAiXK>fz^#gkVw}
zqRg#{&{p_2Vkt=5c@~_PrR0mRenrsj()=rz=54BFKpR!cG&&-Br7sv6rD62OPE-9W
zlWO2MvhBncXiJnBW?6od%{cP4I>9<^cnc4k{($q}u^gx9T(4&tOMjX^jT&ASZDiv4
z=F}bSgcqS*8n8h4S#;4>&z^sZm@%a%_03SaTNC;2^HT96kKlT30<aojUJ#>K>7db$
z*R_N}h$iSaE?L&dc&*>dtmd}>g?82Fw538d9R>H;N8q*|z{4pm;s7Evc~vE$>GO1U
z=NSPXjn9YK%1@_wPh3I{rRf&Ckoz_XoP9p`$wj}Ar7fGZJ?E&cF7oj5Q7dlA&Tk4=
zp1w8~-e(T=5mDSN5K*BkwcTD{JcF&WxlI9h;|=32MShZyzH|28KC5aP#K8uq>@-^L
zg<(=l$8n#>4|(sN^LM}*d6dZ<=taDed`r4LpN2<(Ea3e7Qug_Tti>7{0n8C$+%?L;
zzB=vYy7*X!G$1ieJBiL7n{W_rHY<}AW{p6vN7kGKpCwj59f$<`PLIHT_kl<E0oAXF
zErCqWb6PvI<9q)PWO#3+-2Vu!ETz77k30IoxHr|#{_)N~aar>vUvPEOCF{ral$>>L
z0c{4Frr=8CWxs{fe5J?dQyDjh|D!F7{nr}w(}Y^4l@^C4WlW5c66)D&y@r^Ro4|vo
zgwTad#lOlII>md`bcWB1z)Cy=l2;JL!hUHId|4z*VDOqf74&HncN^IA=<w*n(0j@z
zdF{fwy+RNX>yiAED#i!+nIorbOsVtb7xAb?!;t$-|0JF+R*a^cs^FYrS|R5$ZBj5O
zK29={o$$`*#Bu^k@g`Dgnm-b%e%^8m8z@#9(D;;GA3*Z3sJ2#`@52hPHQ5MvAvj_J
zUyBiAW6zDFi0r=T^aHpXoPZ8eR#!u4B^D|muCTnyd&qObu3lp##6IC=k@7z6S6k~5
z53_Qw=eM2Z5VVt1J=-(QfxwdnO}$2XzmY%T-2&7PWKB~pW=G|7xY!F+hF|`=ua-JE
zoYGWt&3EOQh&Al%zvn1WHo64f5sW{LXW+N`-Jzo8W0iv2^KutLh3#)c#jhilXB($r
z6Ev@>PdqUtDxM*A(jEKg9a)b>93JVFz-q>0*ECg`c3IyBk9OTZw2^W3M9aj3%y1Lh
z7=3BEb7V#1?TGVn8mp<m2$5u{{CRw%`T?m|m65nxj-35IYj6>>r1iFbZhs;##gaCK
zxOg$iRclv_h4)hw4cC^}u>Gm11$PWw<7lh%2ISI?Eqo+i)!Qz#CH=Plgd#-p8_P#p
z445>ZawNlFT>2X;Ug~vt6&bl?dK(;(GEgY?lPa@`vP8YNihA{2O2eT7yn1DO)M!!(
zC}2Djpc`+n`i-}sZI^oPAkRi=c{z@xW!M8_GYau%;fMbxm>>$;){a79%Qt6^n|uyv
zK2$>^$SSdThw*6I3VpqB`JAp}Ygi^jtUiKVa|%WIE~vcma9FH<{R;G;O{EHMLiLN-
zj`5fPr45aFBRL_OVjwmG5<;<;KQzu3)g=s$^RfI2#;R$HpLO(o-si|9wpghI-4B2p
zWE(0@Vh4-mc4xCIAwFPc@+tFq0>EE9F<|#4*N^fRd90LR6a&jl*P$3H=^>y(O<k6M
zO3EMeD;}x^Lz;hoJs#j-e+S@p=m{BgE`fx<FAINm44rJ(P`$qUIS?}s$v<1>%U5!j
z(H^m?Y8UK<1CaH$d}26D=90OzUQf!T<&(kk5~S;0E8@IwC}^-$fhGWVEK?A)0xFeO
zJ;tW#FExM)v;K>U_eN%PbsSF&IbcUsud;8x(5k*(3zwhygK8%SS^`{HlBHVxW6_4p
z@QKv##Q)f63eRY;5kfs&&BFDr0lyT9%P-N4?Av}T@f3*#1DF2apTq5^9`1EMlV?dZ
zYzSH%h2db!Tc#n6!UsU4qqw+RycU%2Hg+u9d3Cu5C&fGmmX#n5Wh5V)MtIO*k?e$C
z)~u4;+b~W5Qs?MyQyhJn?C^!4Mm3|yTue%X+KhxCMXusGw*04w=igpQ{KB3EEQ7BA
zYvZ>Pny<*TP(iQ+i%iREz1nqXrwWwDX;g|!DublHw+DlsXik|uf!@jJFSL*i#F7$C
z=L2X2vuK*G%|Sz@NoMnSYwK-(2$?#4QuAAH#~Xsa55*A5LS$$PviVy}j{^$pt^0w}
zI)3W$>$8d6Ol&(ZfRe{f{L7(*kEeIf>yp?0=4vuS)4dJZ&L#+!t4=`KLb(FDvr8);
zI6WH?J`%to%i<U%O`}X|^B&H2u1KKqYyn7*i_t>A05}@)fC^6>_8}CT<`v@9+xZ#5
zpMn3|=U8Q8jQ{EWtkGP$Jan=rWs2hbXr(n_AKz7aDgHJDUs0j{x%5rLt#KLiB{1a<
z;K>O()A*T+J^l%yU?Xlhk^o6!LA}c=AYQER2|SaMw6#^mIIUWizwFiL=LJ>8SiBSW
z)v00P<UI-*^~B%ASjH5){&uI{1I}JB2_bvsxk-Fbf_2Q%xR<Ol?ZZSYe&g!K1lR=q
zgJ5PI-!L?T3&O;;xRVtoB8aVZSb3jC`NBhNjr(hH65>kDY%(zyD)tm!`;|!XQFE?a
zZ~HiVNzLXvLr9TuOEHC!;5Ee|i|3h&=3NOcOfo&>;bjz?KD)jBx^gxsY;lB!wUR3I
z1>>MlJ~{K-nWrjU;&f%fr_T@c^pVKjj3z{xL)VwAlRhnpD&<}j0hfKji0IHIWY&*7
za?rF$&H?6e1)V76r(5(QI&3bhmeGu98Mh|n0aFuIkK4~S__sdXj$LIVJ8cK$eBy?U
zIW(bikg}d(C-)-)1Gg~T!T!=(i{CDVJ#nwk3diFJ4k*A8s+#U*W*B05UQgvE71eD2
zKh%C9I`|j{Rk0iMqQoLii=Y0=IqfeaT~ofVm-r@@2fUz<!3Mok?2=sZwgz^j@Fx@u
zu*NJ=uO892O;^uu0!u8Tz}I*}J@3~jp04Gu!fB|D4Nrg!25(U|q~Qj*#~JQ@HUKyl
zLik>11_&pik|r;($f!oTP-#_S0l0y-YC2iGLX45mMWV}0ky^HeMRmI8$SQm;b)YOF
zJdHUk)uSZ-8`-fq`Ytvowqg|k{i73o>uSW2JED%^1mBP9jC(pRPth&df4&S1H1eSB
zbgn4-5fLI04@ZxZeVg5fcr~$|p8AsVhBv3|Tk`d>H9j{M1LO9D4Ce?b*RoP;Sos1n
zS&e8%qhZYDe+@plgdtCdvo-WtZQ^QHOrh`W8G3FeGE#Fk6E873O9{W8;7sF`j%`W2
zj_Zq1^id$xs@yZZIsYY#PmOu>Oy^L;%Vjvxnka-kdM4HP({dk5A+sj+YGiAUa_C_0
z*tI@bU{l;*(s}-HGt#wA6Rv7B1?I&j&M2skQ|tX()JcjGD)(O02Z{Q#_&P`3Gx9S|
zSU5FUHz)-<Z4S&KG&CHW4|jPRqcx9;a-iVx;njS%sBV>~$WiE_s^?M5UlEa=mQ~_E
ztnTP=6>jC97H>Y6AiYEM&r+zB92~StC%5#zJ7Ro1MC%$&r=q4$O|(zp8YFdXS!q(&
zepEbIRJu!+9kuj6tLRgS4w{Y{d5G7qT`nBmMM-V3AvJ9nUJCs6lyPRX(lV@kcQ4C*
zQs2raT18Bba_HPhV;5{MJoD>!19S(hWKddLIAv4nCTH_uergVqxl>iZDHJ~eSTbZk
zS_*yKv9bR*Ht0Wte4c6ajv(X56M#v`0ay-_sBr??0P~a`A7FvAv?sBX-2}}V0vq~6
zluG3SGpbcwN4BQp4(KXfJs}S`=2=+2QPr)k%v;^>Z?*6)N?;9&ZxU?ZVUx{)biy%(
zjH-AH$Qv9_a;#X(M+QU{Sg}3_y+<K}pRm_G;gvZ65K;8BWc~<U-)SXF68g0C?C6Td
zV=ohA+Hi*zg4Wt>4*?$35hMr{s2+&Q@C@+rg7-W5*@@w@9Yg<&mc$pMq%oc5qRkBB
z6YBs%c3j=-fEaZ)&r(^+c66gjeSIJNVcRwI4$WUklbfdV1d$O=UB<`QRp9SCIgd*|
zS4&&vjfc(_uF}3>|JT?!6f;%}$!fO&$N2J;VgPfQ20ehPUT!FBqUf6w@9XT(_+reP
z#PQ!(;rzJwx&NYgqsL89NYu#W5p~?Z(C}r%iaM&_CZ8#MJWXzuiS}_$P<#Cv1+pRp
z_(|~}D1GG9M2h+uEVk&LB}@5pU-ruAQpaOq-@0QUi@iB<e48`v0ux*^V{f-UVa+qS
zKmc2legc8u&Ewrs-s#0~aIJ;W8>^jHy*#cJ6W(Z4gk}Cxt7n}XW}!ebfBcu)1jAbN
z?`H>V&I%waNpPEs4Ri}lk_i-xbXo^4BYRqqIG_UF8sZ*hxsI10tmv|{!Fr%G6m_#h
z9BZ337pg-I5p=8Xv?7m?M(S85ZCp07JLDr;$b9@w$i1Gf<FYrV_7thg&HF&`$|3y`
z$Q`8?UOwDyBh<8X;q2bl94`RX{o!w&D~_#MO7?SWp40pm-dEX-eQ<hFd^gK3GBYX+
zg4}l)GsssK1|!#pWq)&LG+0+e$2Oonz0T&h{MB2dfQDhzcvm>#F+JPNg2XNNxjI(z
z%jxjgsd`Vb!qC3(@e0+wq9=~ka^*72VpMoR7Q-NdSBr$^Vm3-1J*pWztl~0iZN*cM
zEDyGY(aOhbPEKT&-Sdk7ud%~(Tp>_hWxEzC!Du4gm}g}Yd;W2qF_3}pK?#q~Z|>cN
zqM*}8f<~vNyInxr#f;GrlsTq&jMxpJK%_n6;!??F^=9Qr?56x*Zxp?b8w4V}Mb<uB
zu%0w7H7yzJO99mnNugzcey{(fSTp|wm`8cRH38@FJ6b#vQuwE+Zz1y=r04+*nV;hX
zft)N^D(DGIr_Zw9KZ$|wDp}hUwHEH;S?+4p<^^~bhffFDkNVma=VzdU3?Ge8iR0*W
zF{sQWD8p#@-x5Fb>>HZ``i+(Pp4qj-fCctXhrY2N(hxAxt@By)ZYpEGE247mKtl~c
zrM6YE9}$NFDc?LY8Yz3w<og12^vFdCoM*Hx=@$6-?wP}z1-Z2fNaEZ55T_-MDm;u`
zJ)3S@6<QL4b&xM+CPmo9<VE$$A9Hh>*ck|;8cwO$ZdE2ufej2%pCE~ST~3McW+B39
zMhc<$`Is~rT+*$C*SE}fwK9jzSB8SF`HwsYXib!B8e3RM6?JQ2#fNzxqPYwJxuAgv
zI5=?i5bd#_-3-ON^I7HxY_S;1A(FZ2UWXm&ix6$6?U;+=Cs>dYd-GK4bpgB79`V+C
z_Y~hcslBXy-5=zujL(vYki+_I{pPlP4j+<yaVojniy*GoH-Nf|sc4+D+`(tRviH?S
z3*i1}a8@(Z60#Fx!n_5WZ}i2MlPY5RFs%#FT4N6YTp2!DU$`hNd?FIIx>fj@>`4ac
z0l?AFOubgp^>G9nhrownv(rPCNNQtC>;a$Rqr%*c%;NOE(qO-umwS56;fFZ(-B%PS
z?`l%s7e-FXi9eicRs%HSR6q#HIuY^Kml}9@r{H$QA870nE587Vc9nauL<d++9@JNq
z>6X^%_nGs`pOjP{YfJC}K)jm?*zp}X^1r-)hM{``=wGzDF~An?igmpiYc{k<W8}8c
zp&t#gC`ZWRj5j2;D}>xeSfyN-^<R;he_`R8I@jC&t0N<3<9wZrVma(;s%a5w>T>AW
zntDF)$zuK~i<=h#pXXU&bgug&bSye`3#k5(d6s2gN2cCa?5Sjbxa8%n9=6<C+>^Y!
ze^bJHOc#H&yl}4X%slB{)|tMza9!j(?R*~%KlnG_ezC}6K-fLiaPZ(S58g=SohaMz
zWUEKNb)x?KxuFw*<(42*1Ce+Wf#`1IH1-J3#Z)wTrTLhBVehKzur0}uE<-3OzF>R8
zc^3gY&vVIpz&1+s2yh=YcPQWOdunpuQ5Vj{>B$hzs9pD%KH0`%MY0ak4C&vAA2=Ry
zdWh;x11f$af!5;Is2$2}(9T8umy*zNYa`gxDpzh|WqTaK*=6?cVenG}Nzx)vhx@n9
z#lLPm#=c`64{PVnZ2~@U_rlpEUF+|viKDPoKgVEHqpq2$4~!x_6_W4#6LKdiu_ZJ~
z%rT+jSV+Z~F-qR;FdF*af~@P&u`zzY*vSom1Oz)kfm9G`D`+QJK^l!xhLTGA5D>Wr
zXR~9O7l#yp(r>Yn#)bkVPH%zJMS>Gp=w3M?U>^X~XgA$W1qvC!W=ND4M~TpdP0X2y
znhGyP2A}E=eE4B)9)E+w(JzC+qIP_sca-2bFS|sBl2TG%Cg2;$yy>0yDXuxTg1OYU
zF7ZI#@myJLh(}-$>fXC}GeUX68DqrnM}R}v#r&e~R@uWiqGoIwXBW*3gH~dmD8FQ^
z^cZNHu)3I#Mz7Gc7Q#VQb&7`MF6LJgcNtV~2$BRC=Wce~rFUH_*D&_+HpU&l*|$Dl
zJ&=i#e|r0UC7QAD<_{VH;LmU6&;3Y2b4;%&TJsNpiOm83)jU3@R};{mLr4SQctLU`
z!n`-I8&AYF%`xDtJO&b&oP~vYF3P~-mq8HtI3xX)-Nv)g$t~P9z5^4$is9snMO~=Y
zlOQnGa|`UI2MWH!R5)v(H8LCl?+%sdHdV!g<TOqLztK(3Bru&wwB@0P!GLwu$t~Dy
zzTu<d^7#H2pbDQ3M6+|h^={uma>kOzruLNtw75V1Vd%I=9Bzk&U$W)6?bV%3jdpSk
zvfyG9J=}dM2f;of5<|#rAPr7v+`abhf_4!%hSlkFd_up6EL0;^oY!HY7W;O>M9>h$
z32pvi<)?euNnpif(K#~Ti^yh3f(l&LU>BO~vP=$&WFAj_*9u>UFWh$EbK6S0a}b)`
zuiQ?Y1ok8j#D&AR9Mm2eJDcp$<Tlo2o)*eHGb3WN=PMgSTYsc~++V6p0tv(PmD-Py
z+=VHqqZuX~3y~7~ulmDNDh~M^23vl6DqJIs!)l(Sl8oyEB*UpU@!qbV_it_AVWK+p
z8pf**yyl`QY`rV@$sdfbDC3?sLus-?S8C)OPE8)k`!o|rQ08gH$!m~aU04Wo*#dX(
zTJZexhNJGtH|nknLb(Y`l7&+jT~4ixMS?dp*HfCO9;s_mKSDVtHnuq8ZW}7jwx?Ik
zwCzzNIwEX$I%IB^_jb9=oIKwd@AVdc6z2ZaGxav${nP)rW`B_TI_w#HoMChGC-_XD
z+GQ<!y@Pqw?)KHb)w0(qn!8s!-ZoeB?G=Yn6JV;JZtfXMv2T?wbKqI}a*A%9_dVT&
zz{M8Fx?%29W&<+!r;g9t72CE;H(I}ks;4Bl9~b(!W=<wEp6r{gha;>mMpzF$35I`f
z3~e~69DN(KZ~A$&@!LVgfrR03i&R8!BijR%@R?_pXG-rWybNfqBECK&lrG*_{C)-K
zHQBd&Ci6(U#Ab3|d041w`_}Tani`kn3p?gbaLgd>1RF7k#5eZ>A?{^bn+%5F29~_(
z+AZMz{Y?M3q2nb`rKl(>*@-2Cn79SH4vZ8i(-<}&DRMe!L%{s}0FdHJfc?LC1ICi2
zQzW10cpFOp+B259U5Xkv{#S$`mTlK76Z{jmL=MU`$=4Ek$@?e@%i?$Y+?E!{YvJrk
zdc#pzij*@ZJp{O=kIOGz5m>!rw8y@_CA#rnq4o3V=n?%S?s2?oF+xd`gNL1q6ZqPQ
zc8G&*5x|E(Ii{sN+oqFMLA<%+Bba%!g2V>xFI56_H&yOq>_K`dU=`|5et2C4&+@w1
zhA#FSf7{R+#%xN)Q9-HOb{;+%S%rX>7)wxkAVp1pfQWai(>4}CkOxSedE^zhJ*DY{
z*mq_r(}d%(D7nmezzIw}3>Kjg1uNtk^{{|5UcVU>xN?sEB7ZZ+4-J0nDc3ZWsi`X1
zZMBtnN9r?KZTfQFcSP_LZQO=jR*3vAmn*W$XNWMIUZ3j}0aY(uH%*GdEKtaU(KtzN
zyzF-jRLX1xO#I!RpOqI{KriB`uThz}UruFlOq*hem7>)BA#x?CQWvoJrf4@+td2d$
zGE_9Ra@<0}KTkcruW$`Rr!X6M8UOv9C?y^PY50e63*d9-v5Bt>h=KO&f}*LX+;^C%
zWEd24S`sl)MuhfQX0}e)JrjP$o$4xzIW+9h6JX9ee^O4YqtXdLm_L+KTqp#guqGw&
z2ilAW5BQu8W+13EPMLL$x-cDJi*KM#@Z|F{;U3Z?Fg@U>?ce|OOsZk;cCZOu>Al{D
z+-o>=-1qye*m<zoZ!nH_{@j4fH!%DOI#H-2MXNU{{bnSo<fu=Sx05W!lY#k~xWpIe
ziNjwjDQs0QBiG78yA(&zZ{}eH5T`U2p<bvT%frbYc<^2J#Mv2CTEs;^B34Pfz?~E~
ztoEb%d12^O+js6#{gc(?XolZ`7uTqz?;GCFlzZ=$cDAM#8*Q#7WtXYz?{_!c+>e#(
z%1de#J&5CANQ*;0&0}`~LRkQAmf+;n!?mPKYh?8n)D64(hP%Gw{jsu@t%4&B#(m!K
zRh{q^#{<9U;JLmx_fu%<$wMO>d-F#^Y$fw9PF)5UUQy-j4_E00;}gsBG@IA*Pv#B7
z)ut@5<7#=nY^W0P77zJHwsj~x%<S^i54WyogPpDX=<yJ&Z54U(6>@TsQi`X<o0}|z
zp|;F)F)_lrr4L(ogIfGp2Ey@UMQ1<<nh^*K_&3MA)0nj-%)F=Y#%5C3rFn7$JoA$^
zwe&{sv!#^unFbepajN{9p~YK_eB}^3Y|B)|_uK#D+!gj!no?gT*+vJ78r=<zU`96@
z3cA}u$gZOal;{gZ*xE7c@ev#!`lapL`SHhkOA6Sc`pP1`vG#lQh8%>ua5@z;`(fZl
z4{|0uq?R4Y?}Kv5)#}YZH&kgXzTJw?wE@s#z@c-QclM&zD$6)TE03*Dg1%_w9LYE1
zw<H3-;@kFZO+J}VLB7JZ;buQn&~{RM+FJ@gwvt=yZ{ud%89p?m3n_VLTx-T7Cv}Gm
zt*|V^odKOO4jm?yb?JQBG#=uK;K5E(>6$j7DKmkH<B5oxv8GWm-g$m1%2iVSoe9OD
z{MSSEzuep3XJW~Xk)yQdl!O^eK1J&2?aag<e;uRJW#be_!A7XUnV%hlRs(K!T2B=p
z3MrC8C2S}vc+2mzpTw&;%x<df<5F$%4EYD#@V0M~0i;ye8Jwd`X+1z#WG^qpq}7um
z9teKHiCU`z+DHbTx1saBnbB_sY$cA>3M8J14T@P*_mqIqr~J8v+mhf$F)f_Kt#(h9
z!0E?0@x!Z~$=(|}bnv_N<WEbz_s6mF<U4UM)HeXYfs!(Y44siq-&3_a`3tT0mUq4m
za~No7`x<yMNUwily?-B}{chi&)R#A{tGJSmGnCj2C(`J?rPzokl#U)!X&l|`E?N2-
zd*>(54$H!z-P4s|GWSqsv-_3(%BSp)?2{uIE?e%FTO%VPXHCog9*iiGZ!&~W_L0`u
zLG)wp%&>GZp9aBfj~ToE&-V7^CV`JR2B1Nq`JV{>()--AZu#<dWdvN5$^mEub!+ak
ztcW&H6PIZAj58|3U=T=-(Ky`2QOM7A{9_&Wng~Lru?>n$4;D|Zk)er$wB4V1914)%
zs)v=Y&EnqbJc?=!2=v#<U`l(|g_+d8a(D+K9{GD=@t~^`Bqq?yphS}WV=0MLQ^1mn
zjAJBTz-Z0AkQZU3{TjW)0jZ_&^Hpz+SaQu4pIc!=TI10#bCTQh9kX(jcPLQ@pR+d`
zeM_9k{9Nz@5EZ_i;e4f`n4m}TI(j3<`zP#o!dvqNYg9X3V^U<2UC$%jr;pB;Vjn0A
z^?YZb9_lJ9XbjRu7MQM1`bE@zD(D|7%~FNdkxo&5TvudYnxqGQ02etZ9%(PbnY9dw
zbRwyQBr2A&LBs--%nl(Zt(`MVf;^u_?*)A#*3Dt20byAD`7AT}NUKvWU$4(zeyA(H
zcw;8#3@<Ay%VmAx!8F7Y_l;fJn-lNN?K#<(=HL^eU%9Fd*&&Js`Tp|7WJF6@FCM>2
z!L}dAu<hLL*wbDpd`0}1BTcsL;VbF72gd=qDQWiSm91WM5)hJ|gn)K^!8{0`pKXCY
zsMCvxzYC7$jxfj6EjpsEF{d27gjH!j7yQ-_?6}~L7ngS!F%DM#`FMzenUJL;s8NIw
z#+VHxZY$jv5q@ZLZoI$~?D&Jdxw-|t*!v-+DqL(i_P52N(e|ba{kH9QwBFkj#ufd<
zF}7RuZTTW{y%=enzov*Wx#NXMvNI>EqhW+69485ys!lZ^>a=o7)6YUf*wV(cKTRy4
zA?*UbMYvcL5>tpp1(%?F!WLjT9CpAsEa-q6D|{UsK&Ib<<?+r3X#LQ?9xc91zBJFY
z@U{2{UB?>`qOLF{%x}`z@)hXQqLo+rd~ecmaGUjVlc$OuSJ`P@OTgJ1_-&+GG>58}
z#5kPuLX<-7MWP7s^&>S$5(=n)v~5rp`&Lt?r@)6NK`U_3@nb7%V*>%4nortJ4w}GO
z>ME1XR|~CamR8!6NcU>W%saR284Op!BTA&Kf`yJF)=HMP_YbJCV9h+%(E^nNrH^k`
z7JVw{7N7(~X=hy0O1>p}6PD#l@U&x};jyTKc|LH7mEr8#5-c|~?R@xNO|1`qvcux{
zc{nFh<*BUtAzI7f14GZW=iJaVD$0PuobH*^mJ=-<++u80hn@OGD7LHVt75Dvf}n5e
zM-?=wux0C>6(dOI<qp?NBF)@=Lo^|&_p`uAsc=Zt15PUO-;Xg}#6@ZX;iw$4+Jn_#
zWg*j^Id*!nd;MAth;*5^=Di%1hHB%U;oY!>k0u^<Pu(msM%36+Y1%JIGOWF#PkMaZ
zCo0DI<-y?b@{jl3Uluk4|5!I0?b=%&G7m;}no3d4blu9*l{3XUto(+Qq-Y!or+&e~
zclJkY!14o9Bs^4jt7g%nTj!5IO3JzT^*9lFcK~C-KFhko4CUANg$g&}3Lp0osP=px
z&$5x1W^}#wsJ_WI3@XOcr~ddujU>-f*Ck1a<j%hr7Lw4UAiA`ap{bWHxVM*u=%{}H
z^t_?}^-Bfe4k%aD?wu@)_Pdlc;`jknu))s+xh<a!o*E`DD=Yr_n%GIVDRPwaS0cbA
z^2$vaOjdj^_|Q%W-GMDDT$X(0d=;Cgs?j&gw<4Wf@{2|$h-};<`Ob9K1cwstzaM_8
zl5MPSVC#ep;#zIcT17qL8gxBOnefU3YPli36HjNVT-GD9@~m{jmqZT2Saf`Jww?~6
zD&GS>DSpdCjUeG4$$tTR(5|+KT(9#0QcOy%kcWNh8(=${z8SOjzAYAm$~edmOloB?
zi7G(pCL<vtXwrcw?}5rcCg`%2@_^yfa8R>AYQj1Zv;s7yDobjprm0D`i<6MY`kKe2
zF*5&EVGn>>)x?v=Nz^iY-S%wuy5b{EVl$XO@Wgt78uNb-iCaWUjdPm@7nQR-_O=p)
zJc$3T(NF~>BF%_cHG;EMi0?=7IEzhW`reLvG@URrT>hZsf6h%>kNX7w^iBWql@c@b
zFaG2_q|akCUgB3?(T<6tZftE00C(ufRwT+U|4Q~1sldA^p<PBx9mdyjR+EK-lcYOB
zh!`Tr5|cXKt#+x0mAuez(Q2X>3Hm@vu2AT{rw#A?s`aTkAvt*vkVKdRZ9*-G^yy=9
z9)O&MO=O`?2u|ChpINJ*m3bqLL>-~jap31x1Ev^je5QFS<G>OonFxX2+7DAxQ+*vl
zXv4qOOLeN}e-KS8!I#NVva^pm-TMI9EWI*AEt&s%c*dOJe+@4GPR_QW)6$$j9cXxm
z{;QiJyf8afySNbTqQT1z4>dnlLkRv)ZVONL_gh%XOTt*gd2NnepJ;8w@`$uZg+b&c
z{+XrqC0wJcCF}easaX@Rn4flYCSI_9zJHm{pI?3xM5Lsx^mFodr08zoSaZ-59=T&q
zdL2SLb^(&0Op1;D^O<zSJ)N(cOl66wK>Y>gY3HAxnn^SUA#H%3)kH{7Lt`zYQP}0E
z^>&w8@UU(@zqq*XGj91eM-(5R)7A#ikt`7bLqMXcs%oeT=*t2MOv6gx)Ky&ts>8OP
zbW6p-mRX*1$2-<eKtDg2P4eFE?gqd?beQ3rBSeJ-N?2Ka*9T+;tl$0j;{I#!z_9&x
zk=RkimRPOvTdA%&gv9+)3KM!BPPJL6C831B2I;e7DXyk@M`6KV_}(%SYZ&Bx;cajz
zZ|qe8)G>CT&w;|G@~}C(mUs4y|2~k?aetc1ExfxA9>TDc6V8^#q4X=4Tm@)m2~^U-
z0+~SyCnvoW{FBc?*ZKb3qz*FNBCyHYP<F}R!}_|XtEw8ca}2PU7Cs3*0#?<*3f~8t
zqE<(g2VgU5zSQ9Ae?AFhoTI8=t<Tnkg}t;Sm;WE`%JYqBMy31(V=tVLt>ds>SLX%2
zbCC;G&_;@apxz?9F`wev?JaJJc+FLFMKGnaP+bl^V6r%X@(DBhUWWhcx~=fd2J1MC
zz^>xJo7n<(rimVMLGp$-?KYo{l<PZhm47OiRYm7!=FL&+2i3(R0nbk(dlvc+6b1QJ
zT@jc9djg@;LHXy^^+KhS=S(K38=G%e`a}8(XDEM6G)ko9b|zydw8)dOR62Ggu%|v2
z5M3c56q5T|1dm`U9R*w_{@5%TYEt+RIZeQI=5s5@GB8~pE<BzJe;<PA<_xb{sH`|E
z1!`YS3rgWIk?N=dI=}Fnq~QVsEMGA`V}zR3<s&Kx{||<)wl=sSV&%EroaS>v9pI3t
zZ9JFU7G+}R38Eqa{JPA?Ig!iwfBW^o)ih?H#ZqUGTNK8$e&e{<h*9h~{)+b(Y<Zre
zwtCNWw+D*aO8b(?U5b1$p9d9I^mW|rJIy@I&PCzBp3Hw*-^dhKn@}}BY2H}iaZM9Z
znYqc;?2N>|v4{XSL?))MuXTho7=jU_eZ7w0s!7*6B1fCp5JpASxo*#s96f^)AdkPU
ztGNnRI78lE#=zlx|DLFAr|*r&R>8B0V&oj$Rr-JEI_s#a!fovfY@}fW(%lUL($XoZ
zfOL0vceACtLj);7y1NmiySrf{()}&YJ?FdUj(hGu4hBOV#Jkoz=QDrvdH7o1{L2e~
zlF_QST1J%v`7e#KCd(%lyunc{f4lmU{5crokp~gG7)*|ze(S$tdVA|XeAPv21?m~6
z$q#gVwopKkkiy4R4rH6WAaxlR9pz}`nT((4n)oiYytef_owG%L4alD)mjP_jFko{0
zpFBCgs7^wY_8qW&caqg@KB0g3U)A3~UKiqs>omUj98#ahi%-|&%sMNsdt4<*2!VIf
zZscLdVPElRG^PR<i3A%1{ZZU$sS20XHH?5w?C3)Mai!p*3DLh_ivRq092fMbp?oR1
zs*1bxsPsFxj&($6z9DDtQgM@JQ-&fH{g3*xl(UxT#J?F%3tCk(CFtmpk1^@=1dqrU
zP^D>J4zojEP^5!7YU*bhi(zgYzAFwf32oAfdZYJoMX-G$oecUlW^E-XKVt&(7DgWe
zkcl=92gw7W60gMi9k=>_t#<{Fn2F<uy=i+1QFN?d0$k^^FD8BOF5<sn(+yo5OtoNt
z%Qn&mrld+WBun+S&cr+|-C>XG2*NUru|P)j>F{EmHN2+%`tSXim$%u_(9m)Xui}3=
zI>2{)qS$F~5<&YVE&|6FYu0=56Att13%@Y^Qx)mY)BAI8rVM?X$RY;FB~4DANL+_r
z3m6IS1CKS0k6Xn5I@n*AFdOg7y+^pWXwg7%;BV{EDi8wp+Q5!%xI6CB=*z=?#K4Ud
zcVYI?h%}5;DaacI3(ws4nbKsa2D<3C=C_1--wUI{sEmy#_8>_8c~w<TI*PCYM1jC)
zRq5$ZxG<vfIb}bvP@Q!mD=WJVWX)#2Y<$I}9RnjT9Ns(0>64@hF2wDfoe#03g7W5g
zELziC{N-&SowzYk-1T-VjBKrcg3^2a(y~e1FZ-fs<WkZeCsTIfK#K_?W@d#tj(s@0
zt%#|M743JWESW#luag*5K+q=M9DN`M+-rD+)5*!Hpt*TbFmkJ0WF26PQ-R^tP#7A~
zB29Lit^I77=3jsZskcCRQJV-jOk~7J8uea+Rv8_P?M`ogDft<V?(xPbHwkUo!x6jJ
z)t%ve%UG25_J!M9Ed&t<0$-k34f1k;`cIv77uQx$(9ySIp)5N^pmLD?{Q0x98rM<n
zHm^Oy(ym)`{-Uj&f0N!l7Cxt0lzh(nCcS*#=Z*J+|5c&MD3IqrTl`wS1Utvp{{7*9
z5O-~-JY{uH^XW^m#wSkcOz#a!f-clcgNqOJSlr^e)K4eZgA67%z`R?oHUNPZQRi)g
zx{E~SNu8}t`2YSr--8_l*o|5lF#9qK2?I&tvBq6}15p!&@(s2@B{~ffRt>gqd6wh6
z_)9H|eHmSt7oRmWAD^DnFYgp?+Y5t!Cj8|?nYLwD|2q(!Qo3_iI~`w2m`J<$MpasB
z8%ob_TdjKZ_pfK<h)stOV)SfiZ*IC_*kT%{WQu>=M_9fEWse7H6@80a!U0FDrTOb#
zCK@$$DsA)j;%gXjt@<K<u~{n;F08?k)Z!SFdIft$cqcE5^h!;=hMg7<_Zv1O7iHMw
z<mA7=P-ht6Tur<n-ll+W^p|B|v9<pZ3Zxsw0q%+2%)xO6htnk|l*<+@I(CLq?r#i8
zfemQ%p`QtAg!klEoJ70`Yu@%cs2GO3z^~m7kHByk4&(j0ymJU>F+-$6uWcKM3uYe?
zA)m<+lY)5r-%aIam=hB5*vU7Syi6APq}%{NkqX>%2G_L$1gf#T1dtKpXlDaH3{vAU
zm)=*$3^+JA)n+4v>73><?}7E>-9>uKo)wE-0`n{iczAdz>N|jRti4UaAbd9n@rrr>
zS0-K1+bwe0eB%1y;lax{4EsEVMf-3>7{Eocj)HfFQ-_})#-68{wsIzt{<a)fM`pQ9
zelT-|pst8X9UrCYd6h&Fa>=eEMz6s`oFXG5N4R8+2UdUrlL?scqysJ=^00><!JT(M
z)XEct9}kqO{T{tIEAspSiiKBN{t~F7sNX!UUboX3@Bu@%9_#^4pkiXyZJvgRIsWE)
z1Gdry9;KHI-znj;*rO^ueV+-PM6O!al)8T$?EbqHD^KqRZ=m?1ZUw`vy1KfSG}AS<
zch<cP+2q}I7>PW613L>`$?7kL&Phky^{?jMx(VA99|JTN<I4n|h;fs-M~=~b*)d#&
z?do6+_}u7U7b)^@eeBU&p!=`tWhg~QZ0$E<>yT(X*@QkIww4hN0sWoPD&Pb%n3bQ9
zEXR!@wgDW1c^f#1h%286>p2rKsVoF~6M3nG^OsA<03onUkXCL?yn>Unv^}Trnw`m=
zd0V3eE5Lw#9p%uztlhdIXfi4wM*4!ZmXV07rB-k4F!G7frPtTKk)vOq#cqzZn*Dz^
zQvcmo@dO&G{QQV%P^W6ElSkRfk7Tl&7Mo2rVY+eXgtU9*RAHtpWBz7aZq!b^;NrZZ
zFE^VZ@R<3`+RDOTt?+{1pv-gr%T9cTR*7Dfl)n9?+*&^RERobFQLV#bq234-!n3z1
zG0~Wbh0RVIPDSmy?rSUWKlX~Vyw^ZIKr6beSY;DuZT%b?Yp5$M*PZ-*Q@zXdK;2$;
z!%;ZNqC7=q!>DhQtzgbiI(_FT$Mz=BzPsNs2*eM01%i3W@b>hGWL*!Woy6=pfC9`*
ztO)oO1q>`@C~&%U*XQSPHi1A7Q}unb%u7cgpHOiHFnz1yTuql&<lA`@*pn3f;--W-
zFJcmau)s|U#Kyl4MXDzbr>^7#Hv$0n$P<Pm5@>(5@t`ns8;H<VNQ>Trho$rZ4C92i
zXw!c`q75v+_(Fr<Hp3Z7A$tD_EPg!vQNg__<xUWDO8y5Jp=ba(<vdh(O#lt*&TP?z
zzZ_3t6oP#Mgd);++|5*Iebn~(jCfCRC@#{uy+T*H_OOZ95%<!DbKKCSznWyVvGOe2
z`?<tow5(gvb;bdog}xH#`{tgaSL?;7DcZZ%yNN`)ZNKHd0d~0Z2{5gO?;v`<84&(`
z8LdmV@aH9;pr*?lkZBa-u@!l{98K#uC)7??+oBO~0D3wp_wm?VYT6>TB^-?M614=?
zEUW+*W&_rVVZ*V07x_uwHd2W9SWGj=4`}6U-CJHt_r?nU@z2D<B_UA`8ht{0?N^=r
zjaPl<KrAoM<s;x^*?UY2-y1al<O2IM{{Wf5k+|_Fl)k<s@Pwpr?g8<*$8Gud{L>h)
zl4vZ^hl0nN1VDzXZG%x;?(pA~K)nO%x~|Ct_Qz!S&z%&r{DqtLXiO$Ll?H(#$B{BK
z75#^MPX9c~`xdZwQ>C!|#p}t09e&@u6uwMP`gMF_kJ!abKxLjt{iD!)5CeU?MEBok
z{okH}K&T?Q&Syq0?T$nP#dgrS*N4l(<b-s6YBxWbRH9UI_#Ji3JTzg6$iqT>l+bAU
zDzg!<UmqQf%nbDps;)_~%74Z;kI-PT{)lUK&AbTvs9KGH@$tH!IPevgWhtgxajbnb
zm9hMA^2n2#jjzK<CmgOoNRLrR{=2rURgVbCLuws8qh<X3Ji=f50y304+TY#8tAGn<
z<gruJ?tX*<$;A!U;ZsRTiDR?n6ob+0ER#RvWPu0~4mKt(Xs`}7VnA2!{^d=L-asFa
zK&)7Xjl0}(d}WZ?{_t0>E7<ilk_!T?LwV3W5iHbmHGnAvhrN5n4!Yd*7pNkL24pgo
z8-P9)v9tBah;WmY$w<Nz5S!o#!rXiz6bAtrQL8bY4pE_h%z>U?z^vW@l_By>83xuB
zh!I|8Df<*P4(xnayzwD_?^Hxi_THn?aV>=WZMKD#r}kc><JNEbpKO&Kl$98(FX3Jg
zOjhR?1ML?^DQFE2^iw=;^$|$OY)^N4b_Sdr=^*$NciDg(zK~kJMLqkxf#GkVx9(7J
zL^5EH-hJ}ZWAh6gp;<8;3_?H9bB-1~gn2W-!pcK}5|M<@CL!9rjW!D$o`9AE&qg?Z
z#Qdif5NPCeSN*k|vKo@g8`usM8>Cv)j#CsfLqkIqW&gMgiN8Xus>EU6^zMB^3>V=I
zSUiOvcqdWttJ`c#t{xQ{!~OBP-gZgZuTr=Gdwy(XPW+%OQIVjLbrB<mq#==SG5ANt
z%C)U8H0kgrI_N7;cBdRuNxOPuSId~v!Sn#fzsh<7B+x|yJ6IJ#N=Km7fE{wb#GYH2
zaaAIouiqDyu^<fxjXrCc$#!I#r~9{a`EQ4HpB9wTQHmk<&i6Ga2s+QJZNJvIo9XCl
zJk!7EFJvv<hc|uMBap&};$m_Xo@>2m)p}lf4VnHjQB)%ER>JC##a=13J&`UW?+||r
zqqsh@cKt7;I8~?OhSXMRg|?QBy&!H?kJQw+3zgya!qgVy5y>#6%=?Lzb6c2t{4=6R
zF>K%v*PM=Va}+{67^#y63FDc9vJ=jyx6-iZH=Jt3AZm=_y^@+*3ROWsi<xzpZ{=Es
z>o-=2iS3=_aUx(al{*!p{QzTV#=)Mdl14>cnTUDQh2dvVk2pZ8<G2EY8SNU25-Qfu
zHIYsEMvRhJ4je7AJyoGEywK`dqXG{yRr9F^EF==!2`O=j?D8;_8I2cNpw&CPHUh9?
z!q2UprlS#mezvgYa8%Z5zXyD_q6fz!lF6IJ_+14~Y%5B3R*tr`U^f&K(Hq3>iC#I9
zDepDI*(IrUz9@fm1^N9?(bo7&b3m;#ME3Lt;rh^QDK3Q|P_+ku+w{7f1Yjmu{lqct
zc=}%w-f`K#{RGk?deXxJFxf&y-bUH-0`<{Ox_ORciZQ5U!}g{5l=@>)w1JE$N^*yR
zAVS<Q%Y|*K<(1VCQhs9W9L8dcR}xFH8j8(38QLP*@aql^vv>u;;c>CSe$AvW%X1#V
z#<Re!UudhnKd@%Y-tU}9<uyZJTc9)NWK_=yChHfOXDE6@+>2e9XSe$yYbul%l<FoN
zG!8z|!Zd4krDozWA0^(pIn;Fn!pDXIB*xB9_$5`oX*~#qu=T0il{lm|y6+`oMFW%d
zpKrxLR)tq{*j_wZl968aTF>EBRG`Q-qEDalX><COolgnRH{B~+E@*4c|9PtaO$T`S
z%y=KtJ{oZaWWpxi-0wGy(S@BOBWAuzYy`0afr|M9%iM^)j|nK+4UtZ&fqr5s%$pzg
zC-xLs`51{*Yw@NOlaUMC7B7+u4Xi_uCvbs8dy|D2$*|dO0aa2$UnHKuaDNPmHJ;=A
z2P6%5ZWj!UJ#8v-;x2L924i#UY3m~qWa(q?o6he;{5k-HRU79<AfaiO7pR-tbAi;!
zf_e{eC6RMiK=i339fgrePqz~Zfy)~OmK@9`iHllDhw>C4AIK@IETNgzLPL}aG`*tS
z@Mio+;xZvmM)T7FZ(mzFOqer4tgJ}t--DFZP=n7amtas#*Jmw4dD+@75*j6=G|<_n
z0X;nO6E?u`W|44-BSzbZRBqw28wp87-k?=(=&p?_xkFB0`SxGOGgnrSn=*o|!J`FE
zC$jZ+&eumKu5|<N8&5Ypf;1}gip$Deh>=zfOo+6K_=YRl=6x;uqX=kcs+N*Rw9Qq9
zmo6#7>IOo!=^+=@h=>bqfad*N@qEX&w;b!+LvmwVO*vR+JvWQZ{*5^#Oy8fx-x6t4
zm&wXyF8B;6Dfnt^7Oj~;{Xs^qht84s>==|r4FM>7=<ZRZf{U0ld1czgu}-{p9XFdO
z<~Rim?$UCx=P8x0*ZCz|ES7lp&93C3kY@I?r4Mx3+Yf~!xx)IBo?m+Om^K6g!4uxL
zfk#DL*0X6N{jQMf>sLm4#GLcFY(Of9mq%sAQsvKYZq0n+S^2h$t_68g{D<{Xz=jgb
zhDOK_3vn3r#eUc|Yh&1{{=;?Pb`SiiL_VJ1VS>7-4=eb(_P+nd`Chia^O1Vq9mAKM
z?`cy^g&%XD?;{6-ztV%|t%7E`rl~IhAJ#FCGDpOfT32Sf&d5FoC~C=wn$~cHKIF)9
z*+1q^wX=8*O@@YK=6>*|h1CcucYiQAZ`!Wumh`{+&Hpd`0GblH?{@{m1Kaug@s*aW
zsqDy3AXIwOWe}M?iy+$tL>Xifh;Uh=%umZS=2?Q&iHQtL#1ta(0g*?oOv4aAH6?{s
zmmnq$Y~v9c@I$>K1xTD1{674qSD0tbr^XSr7M9`Nt2``_6WEm8*QPq42D`UL?T^W@
z$od_S<%A^Ry&4c_0RXDIh7;2zD$$h|KulE(FUrmY>0OensuO?+qky#Rq&#jwqSB@3
z`6mdV^@e4qNKBpP2E6+}9Z#1P1-|u1g@mN8)1MTd6G?`_mO*r|419_3y+#fYagR`5
z4YkjoO_$wQ&>f&&>(ldD4*p~gD)&H$?lI)kgt<=#cPG&R-!je0aixDZ%Q3KP#AU>;
zy((xk<QM(;JlFA52lUzZr%HF(#Gc#nLHw99MTa=$>F_`OE7_XiQ}G9$f&z>QV@QYu
zy)NQ}pUz^dm+V^jx&@fwFdzuP9_Xl-5hHW>SL9LqVj|cDKnFpt(H0!XXk4dRnoHoC
zo&H<g!}3Pr(3}V?oi9}I4p3dBMML%l@m^9*G{5JyZ?#B7*!2RkNdoEA?8ck>Rba*-
zuZehAR*Y>I`>Q*Gy6QL6^rC&oW7g-mE0S(L`<I@Z!*=mq&9isxR0`=Hi{a6Uxk{n-
zB<twJ4f^q|L01qwLuS8YXwnAau{f{(!?C%roaQR)4KN}aY2S8Lt{r9%;k0C&5WbSW
z*Y%d%)|f*ks3O@{mxCQ>TZ!#_9g|zq+sI-$(87A<&TH6xJJF)=HN4p<ad-qQk`A;C
zrq`qQjH1Q>lOPu+SiXG4gok{8IxzMkWF|%KK%gTzqpxB(;AnI2?r-dqHlxtW#;EY0
zz2WH@R{CUpA!gH4n&(W%bu=c0WSra;wjHun!yoQpeEDN>4?X@gPo$Eg@1v%fJynKQ
zpQ0rgxv76klilm%bfD8uJss#POm4+lXSJucyXN0;IMF;qGDo~<#`GDv<PvkAkrll~
zs;{$*hRQq4YkLnFu@?U--Z&!{%xy1Gd#k=@3e(lAxv*vMKBE1V=@7ad-J)Up)Ljkr
zcWa2`J5~j~%dRy;_)Db?p8RkmaOPmr>l&>@La;H7e_4V}MNH(nhU`|_-td*P@_vBm
z{Q-!%LEm!+r-;5R_arozle2FS=&tEJyuXP4XVLIqB^4K9CmK3TV8WbXxwQ?9_d*6}
z-RU~k|ADH6h%yHUl}u>4AhH#xP2o2s+(ml#-A<g@f*awCxFG0>C+2{D8C$Z{hTc!n
zA4IeQG~5;;ae%Y9rWhuovNF;;at+Z^ImEzL%armo)FqTNu4Ur3Ku>U`=>EQf3bG+d
zNYrY;6wz{fE2{(4X@J;SUd&4SnghZ<VGfBWH?o!$d1KTwjC4-su?}-yWtxB%ZmYBv
zX$mwr^7Jpt51l++Ca^O@m9^kumSor1fpJX79qL+rNwF!r%ME$NhDK{V1H)QbjXJ)2
zuGuQXd-I}`aly6bhXvDLVQ7N(&J75d<Ig~f*ev$mH^o{c9?oN`Upn?1vj`Man<3bW
z7T6S2Sv(Z83N#kn(JfDwR-P@T+VqGN>1Zv!Zu|@20pV`%<7Qo!w)@5w(gp+D_0B-3
z<Y=RyUR)3f>^l(f7;TiR%yVtxdU}RVLVcG`91gWsvcwzgR;)rC9q?TL=WVcd26V6%
zekelE56;r68D$vYqNOd|J@>}6LTray8~Tq$IKRXo`#9duFa7NE_48Bix_7YnH=eS=
zs=~s4=AdzmIdky5@mly-;p|S&UgXLuB_r=8&Ofj)AyMG0d^SCEgGRMY9+JIo=TSbo
z?{Sz*r?|#q`{|>6^@0t_w(+l!YDogiHWCZ2e+l${si)CbQ#$bN)>WRcACN;TeX5S!
z631bu^m&T9ae;fjYdx~kgy2s|RS&M7YixNm9_SC0c8*`(Z<Nwmj~P>2@8?~rRcPLn
zQkncFa5ht>$Y+bASZEoj*b_f8<6$%kF{l|^h?SFizSF8a29%gtR_p?|nJ5qadgqck
z_R)O@ShcSf0$5XPgK5Q_#uC@YZLJ}lnBs|Qi+J;%AyGHMY%9}fS1c4F-I5Y|dO15Y
z`{Q~yTv~DP|9SNFuj_|D>lO4st80AnyPQC)@Uh4Mc0f-S&SjS_@@6#fN>c;8lqcRu
zaL?PvjZU+~b$Y4wLiSL>Rb3~jl&A$xp>dd-VZdWG2O(J54AZu6o55u7jt3tBDn~di
z3l~Vc7|vEKYs0NfU?)k17?TP_<WM5M=v@mZN}^K&2G@yNY%2~}ec0kdtj9C@1_)=L
zfSq=tDb}p7<OL!v!0l}-HYCscvuUcyh~$Exl~yUoW>Q-_u+nxwP+~=G{IxL>B8cKH
zAfGaXRU_<OAusnQ^JW-D#6Q;&`I9AZOJ18_1eSG_n|{&!Kp9H_ToftGOovluu>VqP
zj|pHb#hgfa-2es`61$_>nIE?S8Rz@dYY->6SZq7^l<=OQ*BZQJr0-ZnYzOtr9`|69
z*Kr=<3aYJfNbYkM@KK+q4bgT8_wD76>efZyR6zV1Cq*>ub#-hhVKZ-bv~ST8{)jmM
zr-AN_q;m3i7O>DAq*5p?EZMQ$X(=J1fn9<Mna}T(gn<c+{iT@o+u!Hm>j<1Q89v;c
zeHcU0Fa+A-QLlPd^RO6lU%^o>#4M^zEWma*TZI@s0~#=h5_nok5w4OoMef(r1h>b?
z>s5%&!Z-TKU)*NOvZKkA&>C+K`SiAX33rl2J5{0J@rqPn_3we=77qwoaFyl@-0Mf>
z$l>~p#f8WPy;AGn6LKH6>2`f~aiOB?hzOHwPgf0Sesh4Gb6q|X;1P_c%ui5sC@r_A
zZOAfe{wqck@_s`v!q{Q_tLSdx@ij6Vczz9ty7!rcJZmrV{8R$!b}mHFJ!+~@k?^rg
zz166(a?L*1m)WFJl@0a;_w}90t*^t`JLP-{eA^<@y@+{6w^1$Me|j|EoFm9Wh4w7&
z2V}p_u}%UmYeOk?V>4t&7HzxbkSeEHD&>a1*eBQANU3FU7JX7k<(WT9O0RJss1#x$
za^D21!^jA7D>#|Vg?IImTw3R<{9PoX;wNX6Z~MfRTb#l$wRbK2C-9D-X|=GU$8SKC
z6A&o6p8`qr(RDG%hhUc<%m%sv$S!0lE~}`HxB0ly0<m$Jcn7~&agQ5<8t{)tN`WEE
z{K9MWRjFz`<Wbl;L}fPej~&+lF2o-5{|D&*jbQ*Ib&(oGRNhM~&F5}?lTORIeL>`o
zkl_Z|#%fhrA<wR9p7o?$<W;S!gPtK7({z(l4%t%m(NtoRFj<~o?n-?toMF0WcqN(*
zI@Na=oWqZre1)s3*@RvrlFIihQVh8bGL)aWwA_=Mq_N7&6GilXO3bV<;Ko?A2&_J#
zZ=1*!H1{X<^hi%+ehg-PFDXXzz51XIW2BaiirzPtUt`G3Kl5Wn(r12*>?-Kj;j#Eq
z9BY%M-+YCUe!6U>81#{fe6rl_7daQ{E^(IL!veW!UXhB?W7kK)zb$lS=Dsw<UQq9=
zk7QgH<{S$JU+OWCx@;<H$e*@s;^^mwFv|XRdQeHqr6Z~nc7u4DE8$Zq`QJs$3wlH?
zwEsQSDk&~W#K3!F%>KgmMPdcqSe$M46<&iK*=5#WVj;+N{2wo45Mf!>!BG^xb^uC~
zWsY3`wig@mA#A0zTOxB5SNvETNMw(5G-PCEepeD%E>4;Ci=0(dWEy@VZ{z`F&Ix%~
zfBTw(x|e@HR~IjcmFW3#?V05z9ya@3w-^L=<0izM7#v3d_qjTtb6Z;YF8-Vt{-B0}
zG?<DMwp-F&WZoh-lYFIoi4XG|H7`|=ZguCCb{;}+kN^D=kXHIavp6=2cbu&wZ%!08
z5^7;8G_!gt_AE)0#{~|e!$=R9Y$lvYMkBq};pl=n(GtZ=2_{({$RKhc4gNUI^gE~%
zrCSXIs&Lq<U5coklUaHg^M9H;rjtQIOI2b*w}JYtEZfS|<>1U1E|Ht`o+ZeG%=^^n
z_Y}SFfu$Y7s*{&oE~@EZxGeRk&^_0AyXmzzH3_P|(BfMUJIm`Ix959BD`;6Nz!>Ab
z3aL-m5D8d7-|OJJ8SYh4IGJDLYJ1q@B1?vpVWmsUwL-?bU(<p9%a#?{=?qfq36|OS
z<f<<#Z&<Qg=0c}WxgTZd9J1!kYxAX|ITYhoIerypI%Rp!*+-Q(_*g3dD%g#pJ+LY_
zMRSa|KE53A6@Rn|5mHn>j&muNwMxA4^HDcI1ovnAYG;!tkbTD05zc!}19+;heSjQb
z&NuvNS;~P?SGX4dv3r+xdM-wMITP>$mI!B<BDO$*&VrLlTRd4n{WdO$c#-9jPqoXG
z`x6?O+gmYEb(x2@CR2`#a-VZ8pV>*zds}hl_1U0t=L;uwEqhM87B@@WqNx{|B7Br)
z3mHxNp-Wob5d|Y*R!%LMcA-LY^Gxon_Ulh(Y&aZZy=j6z%7W_sS?omuCv(hRb*pz!
zg03LL1Od0wbohy#U1_Cwiy2%_lGSR}QoPo(tQ=ejCqZ_mh{!Wk{N{q6l2z~G0JN)V
zF4gA$!}LN~syjYgW)RXK`{x4=v=-&Yc#Op3i2d`r(V`yp7RG&8Z$io8y3c>s=Pcr0
zL8luj^S^e0ym9!Q$>pOCw8!%j&@$Y_;eEV%*j20btlG614RJUYi#1y$d<Zm0|CR;z
zoKSMM9#;?l?)e2!Sm~CC&*Y@P_ow6@G}9+f=f5bk+gEMJ;M0E3^=E0rSk+&O++Uih
z<By6E<`iedV@-WHGnQ`(>gku0NZl|~QI+%;_j4#rk0}9TZIrtkSe9F^2~kHMi0_Zj
zD&sJdT1dcxMa(V^Sa8m_*z(NKKE7^Vsn@$e`{eRBUg}TULPe}4TWwSC#V|4ff+DX%
z_smX$3a{$$=O0<@v>T-ynzysTW{<h@LLYbER3vhu6WWGJM=$8^mg$(=rKQ6zJu?gr
z$FJTQzH~FTuwa;`?7Zfy*~;s3(N5o7GD}^3zgyEHE#~vW<36zhtI$C(OjkY*dj`SM
zbKudkacp0<WE|^c1SXw)+WH%BKno_p%;!{*UcW#%BZsy8h6(oW{DKPn6YX9LvqNE-
zHNFphQVzq_cIs~F-iQ-lyj!YJ3o#tvL(a2t(&k+wA|ig%_Zrz@=If$Q!1q!c55&~f
zWKr~HaDT)I(NePszqM~Y3%i}?P#{=5?PRH!b@$al&@@B>siN_P=P5!yC$NVG6ZdB6
z<s4kW?K}aqy*ca@!**}|TVSGo2*IyHg_&!o%kdD4+a!i*XajQe=A&Bf6QO>#YR6yw
z$su9}WMup<#br88lLts4?IjXT^>H{HT85?BYsq2IcRLQ+3Um%-Vx3l@{SN)X&Upfr
zxt$}}u<w$>KN9Y7c`qBRg|+0kO4S~T;ad$G<lq==waBInt^C|070dGJ!%<Ju)L_$W
zHey;0;nWx3z$K(g790(ZmQ;y#cK1D~bWOD{Kby6>284N+EaWQvciV0Y8f)=Z%Y>k&
zVX@ZK<Lfb9+L=a$&=_C54s5X5mOEO|Yhn}!{ZIp}T?vo8PN+2Wj(oKC-jBoaYm1F_
z%ogFRAPLBg?K|r3@Ir&F{^+1J5n}0iscSyMAO)XOh)KsuJ=zN<<E99k4yU?bgvrXF
z2xea_FV{YAQuVvV_(kNOo;|||Al^AQ-n|uPOhPUG;gE^X_x0*Olb_~#FI5SG2WS9>
zs5~QGwHIPliq}rr7Sq;)NYHlheZ}&-H2}9&eXRSjbC>VnR$Fy41GwDhXBY9He&24A
z%YK5Uja7|GbruEnK~~qeCV@ZmFQuoGC(QlG9NX}x);`FK&qJPrvu)uPzX{(^^*>ES
zM{;YZ6cN3|zpA`ZJ4XFKo@!gzE>houKWULPX=_SGu62iE#SGl4Wfu8v;*QJl?BKZH
ze&R0mtH-|%@<t&z^$-Fxw0Q-qxeAArB`=<~ONeH>)ePg-jREaNZdqWca*JJ}3GP*L
z=SSCfI=9)|$L*1;@~GAV@LFQ_v?Wx=B7HtWwgNhOmO8kcC|o01DJcJi@od!wbGQ-0
zN;UF&9ijc!HMCQv2u<@$%U{AA98tq8Xch&UmDnmO)ewSY8Oh|AIjr3<t%_1u1pP!z
zHbz&z(4+feV!+yk^>2I}jYILJkDp7f1PV6$luMYFm^I<ysMDsV?CM+D-M>T;&yNwb
z3z=6PtErOT9v*shKT#E=UNICbkxctZ)e8UD&nYlF@|A=|zH}@%QRqd=TQQLc3kcR9
z?R4g4SWd)e!0u%GMZ@NPd}}6BX#l5a`O9cHh2?MN+5@fOgeU^Zwmi>;4{VSGA^`<d
zq~({+H{~yJ04Ed`huJaA{iiz+2eoiBu)4;4Op(zf1cFS-2}vfO4nU!rv=J){R2_<L
zs$B5%2;a}gsa(HqXMoxJF{KnM&?zDU$Md0~kwa4#?4sF)9-{A%(OW}{%GR`vwUvc5
zk))lKP)2(C{(YHT3M}!?@;$PSC?Et_ti6^nRvVnpdR&~H!W2I)YIN&yN1jtW9+;Q@
z^MP)KSHj^fRh6P6NfjE4?G)+OJl*66=a?-lN)4vfUPt(bK9jQ_`j111q~&jq0sWu7
z+qBjcUR495tlXfypny7$5rTl3miwE8Ew55hBo4Vj%R8%k;$8X;*vQr<(zX74*0_j*
zv}Oaxdhr%&=p5tR;-@md=&EHruXVD?)7f0T*_vb3A=5A>vt~Eu4<_GSMlj^LLh>2l
zRV2a=_Fk%9<MD%A$B$SOB$8o3J9`FZa@H{ihCN{f6hH5EVo&i(GB7>z$kV5OlvmJ*
zw?baUe@A;bvAVVt!0-*F@5u82VnL$uu?NVPl~xWK*;ZMl2F`8(O!G&cRb$i(DoC|H
zJm}aP;%Y4<*W_B4QQcG*8f9nrRk%n5sNdtOeVGS|FWL%*Rhr&?b6{4b;gVZTIF28f
zlVh`86mPbS9%_osG!%a}L0!(9Db;@TocuPi$bn?9%PKQBvfm2&=H<_~j{#Xlo9z{H
z6g5`$hkIntRUA<5EoLaZv==P+D%E?PFxnzmKFN7a=J$&=O@#~gW6Mc>re>5dWU@&{
z@iX3D;=fSX|5?d1!djC)mTPXKfIfE?ck{KC1k-0YmBdJyJVst;SUwmJNw`6X*~e0}
zZ#ys3<O%EnKdkQR&)0$}Z*7%jtV=B}V78Wo(rqOogcMd#rKO0pS2Ih3#94}XGJO~+
zL*^$!gdqL3tTOcWN4k4B@K1H~YL;O%Wd8A$IW-R6ZS~oHDn8XaCkKmTy;o<QBNC2|
zK9I``Db3$K)_wh0T?mHZH8XjbWD+6`>OZ)bfc;Fef4qSLvm;(jW{JHri$*1X_2LRK
zf&hzxNWGrb=yhpj-a=th8Tjt^s_JjIbdu&iGq4Fc`B&=*@st(?`$7hljVu4SU3|+h
zOoz>LWP&sA=;`EN-Oa+yshV?Qzt3lPSb5x`I@c!Myu`He$V9N{KI<~3D=X{Ouj3)w
z^a+(t5lFnMix$6sjimH|ZOUr!G?q&#i8G((bw>rz&GZ}@dP5zmgNqUF(R6rE8^v|a
zGw}DNt1HI}Dp3y_h)|f`i8t*Y&qdFyr40LDx2&btR)Qx)sY6tIZ^+^KLo|TV^iRiJ
z7XeW7z40|nMdzSyVNEOs8L9t1I=i8<nCSbOkoBqN5Zt3nD6kKk<%C@oD_-dhbkclA
zN{~uh12Q1>l_BJe#9(m+0Yb7d4$)|I$kS!n0ke9^e2(2BIRl{L45ezE^`t200#`G6
zwb$p%G4Z3Wei7Xxf}@{wRTc{O#S+aM%vxS#ajJT`-ET|NqZBhu*AECAXMo?EosKG<
zLWYSBKhcoazAd(I2t5|8X9Hv+C79_5g{_qwz!?GG*xLPyc0wfqWK8N&G{obgRhL6E
zQKl#3Yh(Lli+kV;f5W@Wjk_<PY|`V3%O<ZuL4`j*eRLDucN_Ck5BnmTyn*i6*m(5#
zm@f-Vj&s;AxD;_B#5hOnLfzZfr#_mX7N54p{H^-f)9)z5hDMRk)8;ao#wqVywdho$
z%~z9GIKsiyDxq~?F;btj6CaZ))}Q3T-v_H>P6(5)HzrmK=?MA5p+SwSW=S<EXWubU
zwv`6O73*)iipWKENc@^7+}yTCt}MGni8Y~S@9MF%{qBEZ-!F~uHH`thdrwT8PJ8BU
z88VW-DrOEp-0rU2+m>(`Y_yr7ui~Q|!yDX?;@d;6Uqds~j-hZ{loD;Zf#J<p6t`XG
z&mYZ%9^;NLAGb_aHa)AYR`JXPPlW|hBIE_@KI0VT1n_@9_Fq=jyy^>AR?%eT+WB6%
zIvKr|{@MF-Xe#{E+4OK-9Ys37Yr^}-3j{{c7Yyf%k;V3AADLW_#WG?A1(Hq$CLCln
zt6Rg+Hq+a%at_t-B}VIl0*)ND-5t$HtY+@p0UlXuRl2r_*T0&-pVL&h>!0a*K|nRt
zBUjrM56avrpN9rNtR<SFL`td_Kx)UQ@XF=E?27FVg?E?qboPS5S7Z!=-j{KvWFy>{
z7MQngC$tO7s}6T9A&SmH{}>Z}Rl$Ctf#fqb0JdQc5xL9)2C9Kgr<f#;Avle=TIQUi
z8xtKAN0I&tJZwW~+7OxKdR#L`^zmnjq5l+-b_I<s^^cZ3w-YxSZ49W^iy2)OAaFWu
z$4m3a*wdp(mjjt~%LV(bfJ<D~Q8M7juqXOp(!)QwaG)xVuiKeE8nF`hbGkX|yH-)&
z?c3Hy0ID!uthFpuJSv_W=U33&eR?8vimJU&S4W+mer#s&wLYl^(^LAs)0tg=|K+jU
zPYHNHZ=3-ulp#Pj-zxY<cLbds7g}8OwHvu3H|s`-kNF5bC@3c)X?G_Ui0%Wl$7t+j
z02N{ehl;+3pLmm#EY{lyKzKa_mmXu5VBW<v0No%_;P1VLkEa>UMNE?BKT@r-Tj8fN
z>AkkS-Z3$yAeLGe2%7@luLq8+#Pub2lS#KDmUu>D$82^J4DCM*m*CH3hGU!ufV{T!
zah!&h9l$d&DpD}bh)jluoK~{bfyv?hRupG1lSv3Z(Pi`4T>Vp6?`b`17HN4LrsAO5
z;7v{L<8MURPw13;6ykB;$=Q!j-x0q#8Gda&TV|Q^alB=0D=pZXGs}1i?YN;B!Lnw9
z6lH@i<^yE<qzMWvg??z@PoaXr+IIsbbX-hQqTc<jMS~zweHO@aJn=ydhVP+PZq}kS
zwO*;2A`Q=^KD;))e3PlSn61`)cx0)iPGqCMC}`4kMGKzx?(%DcM)ryw4&j4+eOH&s
zX2~R0a4t-paJcT^_<x?W+YjU{t_s=~UHz$#c{F})PsX)_LD-OJEN(AQKUG*s@SkeZ
zKs&LoPLCWl-@(jUj$5;mxiY6K19F9hxvWf2{DHkUiEM8-dmZU=m|SO)u}Vu)aB9qC
zHYzc(K2vPpnXYC0P3LP0ibX3B?-e(BA0<6qLHCs68r%LzBQ6<?kmZzD0!*;R1g~Y%
z*|&&X{RvAjsJw@lo6h{$v~ltHp@rw<ub5X=jYwy8-a6{H@laJusz`^Q?Uwu1tEvuX
zl$%y7sL0vR++O9yoKS@YOF^k}1+SG3N*?LgTJ^f?xRg~s(F)$-5)4QtEtFpVe!3v~
zb-L0MB|f+x?Q+C0Gd)GskLrG?+0>+ZwZ9fFCdKwq@#S_G!J~U6nu${<>I1`$1400A
ztzYlIj2jbU@L^FQM3~@x4M$0S#Fr_n1Zpw17&R|eA-2U7KMNFa8e>4iBbTj;XAG^?
z%^4l%5Y=>#usLnE8<08WkQe`b3mp6&pFdfzmz;pC?O%X(p;3hRG`s7e>I+4bSgvPJ
z8lvXW4;LfjzoPN=v|+_9)7dug6irbJ4PHVF(MP%@L<JlqI*usKcg*Cl^f#iD&?-OA
z)M23}#v4!1BTr+lD{S_R)q2S9L~kx)eEIw>6j#JEwa$eQgXN_mKJU6lPF02ESK1pA
z#sq-PyEVs&+{gmHd{9S4M6m@Ne|lnQNuB@<>MbQbbBH%p*1_b;UMKz~oi!Y5(G@}I
zQXuY$$b$tO!-fj{EMSm#PvS0l>>tesYa~3thsF*h&~F80miZlZAL5324|DDDy3b8u
z)kD29_*b*sUQ%zJ{Q@AEC0|bXkkNa%|L72prlG;>SYm<&yV=2kTSy(j5CFYES^km;
zul#lC{B4%y3e12c1fz=B*TEbvU~oKwsjA}po#M)U-3re{*pe?UthtXe{HUqJsATKa
zqO}ts9(`xbaCyq&b0%B~PyCr?LOUt7)eL(UO!gqMuI4lSNjm-D?_VcTFOSzR*A69k
zv9@zz-Qam*w9%b<Uf56JFgy1x$#2=TTI}}U+jGD2PIu=imH%$yC~H5&bFMT~u?K3f
zp9YZe{i9F(v8yQeqiMXkDPz?u%fLGhSwM?qtZY-4kBUTXHJNv16l6eN%(hI`65GCv
zJ}0Sjv_;Aub{EU4k}5TE<W-Pvx3^m7?aa*uA_Qz0-4;)_FgWiA768g#S+DZDE(OZ}
zAsc6ay190g-zt-l9+G4i7fQy29Z@rNe605BBg5qzZkP+_kQ06uDV1#)nyq6peVnv6
zU58X9tWfFq`AaIRs4-GuWHV<*q{{eB7!={j9PQw$cpQm#1qfxG3K~F;o5w^I+q^Lt
z67n9sjvf=@FyCIC>Kl-1Bqx6^88nV+*6R&-(Ea@xuOF+CrF7iku^xG$>}Qw<N&~&H
zpD`B?Q_n#xOT*l{*gzj9O61<}=_`zPJoVL1-m(W_b=9VqPE?c3#LeL~Py3D;2@b!Z
zqb|-ze76q_Sfxwx?E*^o8fv;n)5DnmtWRTK^@f4<I^jnn2G;M)NxFmpODpsIl`)d6
zbhIduH-<gPgvYfc-RWpX<+;xfd$fY@c3YNgWZqe*sEWOxOe#~Yw><^3@o8WV1I}cJ
zy2tW7p>UJ$I?hK0`gKo%yT#?O@}MxAAUaATJ`$(uJ7Y}km`n+ZIV-4_TE=zh<GMg2
z@K=GVcrdIx``g?})a*F_0kd<a6}f_kTz=JKbAibK+(sZA0<G<6L~H`9O<(%FKgD67
z17;8zQBN3JO+J!%W=dmW;l@Q65|isUB*b<bYHWf<Q(n4xms9YBn8$3KHr;ISK1zxE
z8Q*T2vCZepuvtxvm+9tt$c`HC>x}|IGU_+uNW74z$5VfIV)c%vJL`e+G3{AFw7e{|
zOxAhDC5q9$Sx?ugLIpRs?n=Iark0@HO4o|D<+I(|$m3wOZPZWeB}F-l%e#p`5!9u<
zpMoL$pUFcTF^Mf;Dj@SYHI)y**7k>DBf#<eFMxP0`1k>IJ}tAel02aMrrShl7t{cO
zCV~4T-MS#ur1g(BW4a2S6y2(w{=gK`4H*`YN+g)LGi-kmJAE9o9U}CS88WSMcz9AJ
z7rw32mg<QAFo#yYbjI^xH}34iaP6$TblE<J?A4zS37mH>Dy|;GFFjh08fTuXz=dwQ
zc!ECOea*XIh1?CxnE^2pX>!6y{5i>7rDyK*gEl+Y?cU*&Pi;@J9prhwDuTu$*LZ`(
z?pD%Lt&WDavu9@E_ZZdv?UdJK>jxUTJZfaA|3}Bx43fp|>%$WAMZw{5iF4{JVlb%p
zxvy%^(^_-g4VH#-f9~*_Q^<&*dg>&FGI>Bijz*;pEhb;18c1tT^n}5`-}2<xkUiaw
z@lfNVTF6#4-I2@bXJ1MbvMznMXXC`vKC9)YT@;D1T(155dPwpTO}8MT{%qrU#aJ3U
zj7XiC!>Au9CJSQu-?pC}-<$D)qO9vvWK)E;trZ0^o(|T&T$+GP&ziRx+_Ct3k^bv(
zU=>~eLYMQF)kFrz6OiSo3-){M$##2?&<)|=gQ-L+U&A0}4UscD3E%-379p@Z(11DS
zdw<f<KY@8pArpea0eg@l{B&d7H4K6VtXly03ulc@hGwI!Xd}XaaARs$*GOhRb`Uni
z6RhC*+DOe}oeVL2{TLqIp|Eu;MgU8e%=cm<CSR)?HakFN9-y&Iej1XKUqo=l<xGd+
zL@yrnhk?sC7GiNOsF~JU-0lA%Ulve=MlJvxV`7;__xtzK-6*6UKS5{2S)0q<V%j$^
z(;SeR2AyBIS!%rvqO?K*i6pt}+Z-iPnO$_mG*&=Q;Y9hlI6G0zcVBnkQb|eet_^l?
z&c0n9CL|iDqlX<p1yw<P{Vw(={sL(4Dzo&RTfq-k1XQWxGqb)Q&>j2+quD~J_^KDb
z)grP4g<{A!kERYV=#aVzF`b_yzY893teS6h%<t5F<BuZp3PD=3>=fN+jY_&d6dhb3
z_!3`ZM0~AQc7#j94__Zk{<%f)dA&9C9rOS+8VJmy%NKYYTDwkWS$0E2CP@*B$Gp+I
zT6anJH1H;L>d)#jpY5HObZaf*o#nq?Ua!SIuLL`0Z8;Egy}3E5>R^|#jD8$sdE*28
zl15G`de;D_$JX}%E^;|4So{KIIAv793JSm}M)JB-wn96>3&v!<eDK{q5AB_plO!IF
zuVB>xW6rZM5-#*F;7{CdWQ5Vqm_`Y}rj(uK`EY9(phaHNiWVsU6v>0#ytBLXb?gc7
zJk$yYj)!?B%xuvob~g=B%*pi8eNk)%pX@}(KA*&uxo;?}y-;s7)^p-f+J<GUXNzA4
z426~IGbF6*3Dm_KiLTNdzE3mz>537#^GX<f7a0qjynfj0E3%87LD5U7cDGm1Qa9$L
zPz$kOpLcivwQ~Lb*W!sojqFU;z+pMz{)B$@HNPearEtoh!qCyb<9D8;9;evQ_-G7L
z+KCXCc_9YgEyE&IX@0gqM5yi2vyiKC$VYZo(`oi>yqWvu#?)v}vve&^=(L#BL;ROW
zSdblI0g=W)yJd)Q(w}}pU}*R+km27ySd0|$+YtFRbV5=0`OZOy3>M)c@bPItA=y;l
zhn_2WM_EPB3hFukW~|L?=RiEqgK<a8RW$3LO`+4(!kMAsZ#rMs+c=?HGi;}68ceZn
zQFuYq@<LbA;+`F%df61@D{}7lj?aP$O{wNILN|PWtBI(wN)z=YgH2W@ZxiNPDh{MS
zPAOJszgPOJ?q?YiOhxCbl)}P{yP!cSbJi+<<TkK9Y;RRd+U8C3KN`YyZVctm_Mg<H
zC8&uxdT<tF1aK|V3ni>)rjocdQ~s+x+(H!L1sTo&zM%3$zg|*gAgtuy0@lY1g~HO1
zO>N%;pn(}*4#hHH2`dFS!Ap}7IKB?y1)qx6hIaZ8fd@njf;lwsMq>feKBpDfLxkn&
zdqFp0u@Nr;+hm-UQb(-X7*n2QhhSo-K?*ZL2-o_t2?-iSgavbUv5F-j6}VXhG3bes
z<{gJd*C)*Pak$O^tiWI`dN=_T#!JlMAKx4pQX~Y5y!pn9cwzGZ+%#4BmS_~?Lu2ZD
zI6F~ZwpO28I6xZEcMV_&g<#3j##l-p7<LBO)cTbU-<70LhwOL&_yHQUn?q`W<eU1I
z?28<)Lk9DeS^TbZdI;Xea_A|3NmCd4W5BC@U|B3F7(JrpdR@T1BWW`0k<dt-i8bgg
zDr*WjHzg&7u!^<UWOk;yWGVc#zwosb;R;}Et(U^AX_Pa^qEXq2sBk9Ojf8$rK+MTb
zHUJ_%I<DGwqpkA|Km;F=w;IuF7jj~342C`8$IH?~-YnhB2jHIpuD7*`mtpftHeMFT
zC=MFE?XWSt16_QMfNf2`B<4M4h%I;JT8l2}$^cKyo(as^!JmzuY{~PzF(uC|Lw!lI
zGH-?uGjK^B8DiE_95OzvbXGWpQ=MgKyx%q82<yJsCG!t3w$DCX;WO&0x}K-0*cxGm
z#fKJNH8#L7l!~L*z1nF<wuk|7Or=R}Q7n;8$<5E)LB7d<>Er7)w03dGZk7KN@S5Zv
zU<M_C-^Y*%>nRF9y6jzJt{ngieFi^xdVW;2YXQL|pe}p!>Mh)kU>T%nXXMeT8->18
z@_MumbMUS<o?@k|@REMBO9>z$JzNwCa~&CLFL%#}&05Bq?xV!8In?c`@NzBT(Jba;
z*u0GJoiXXXpSc-ADwS6DycApY9-4fki{Gl{vu#5iYa>wIA^nM$t%@oV;)9UO`<(lz
zBmfkYkX0WDjmP$<)dbd`>NC>S@A}b{9TvsUT*tf>8O>IIz;?%i6ywvy(UTsi>~H}L
zOQqiJK!D-sgSqI;vA^8YL`P!TN~}|a`k4PJ0S{F(T4-vUJt#eG^<sPji<N;pl02;J
zX;<?XfpeiIdZ6hJ9>#~2QYC7Q##ChLF?L_>&|9S<+JGN!mwHjpMbIcAr2V>9WTHzl
zVI9KH<M<P)i<hoG3WDWqVy=hfmWF$Or0`(zR2pw&dB}}w@vzF{!zfnVG-LkryGX>~
z;TPUusi*#6BlcKw^Pwz~ty212zP<mij}z-KMLP6MW+PxG6W}VKx-=Z&$%t?&_;C5&
z9m)acv`~He+o7R*RqB;SYf0}ib+f@{yH|&V$z_T%((BDpi1xe7^L3%K%w#}fav?>}
zM6Q44wAdE<yWsph?K1QD-RIm3X>L|VK{EYf{9;DPe;LW?$1JCIU)*h*H)219$%Rz&
zWzwkbw~}w+0+(gWI*i^Ir(3{e?9wUYpWn+Q#j7*;5DpLYSD%ox5?Wy>Kq11=05Hmd
zJH>QoGgxnZ3yt@aXDAQg#n95(hB`(@J|6gkOb8mlM5t`vyahPLgBw3mC=}t~h-vJj
z@q)Q`2X}Of@+{x0h$8O;*7E~}_`NJQjc|5;;A>AfbPe!RG$Gf}#qF~57>-YCpp%}u
zoISzmJDtHYOn3<`y;1N-tw8))_@l61eQ;`HXcSnjn*lY(1Q8;C_5n9m@G8xbMXtV#
z=G?CJOo|E|G>#j@;&Z+FuDqD+zDRp;Vfm5p8}m^?_$ex^qPs`{uoR(xU6wWUGvi-g
z0JZ&RD<T>p^Z-b5j}`Od#kLbMb^VnGklUWNGhdW=G6&WceYJ<iwBGjs(A85djZ;eE
z(>7GeAIDE*Ak}E!A^lE>Pi1kKQ(&s4+A&`A^#DjL4=|8b1xlPkTM?aov@D*sJ-CMb
zNo~?8UVkxiYdGIv1H5j>#?kIu95VOyEQ@P}>xX|p!;$7=Y9=U#t}5SXPQH;4W7r;S
zUN5aZ%|5&q{Tg8lGG~%?x2KCSE}(I5DKp~R6_3ke{38IbE(1wEBSLnU^=XAU^H%|V
zTfG$6dMB|5J-_L}m=Z1H^iw*<27+#35HISV_QGHIs&v}(eqHLD#(cMh79?1a>*@%l
zCrZ9U14I}TsppBw)9zkp`;|pD8s|SA*NmecBMA)!7ujnv75UEwy@7%l&&lgs(Gls_
zA5Ml2Ru>d9em-3ZOAT762N_`fjDsR>W4K8~rRC;5){9BW+k0=NVlgjjb6j9E<I}dq
zG?CP}OT1%t&EOE2xq{LUR>e@S&jG>>|Mnc-iDYPmhb7td_uvd)#PfJ7!kA@t9L{gQ
z6`4$W$*w$VU;=q0GybZ<v1Zw>M<W7V{(l<S)Y8EeIP2ZrB5)j58h^K$@}eR}-G^&m
zg$pZI*`n9%xX>oxH7XmdX8T@UsCeof5*1M8{|uYB*;H00tDD<D*dM+0+hJs`FX0Dk
z6cdm7;ZnI*g^6~kqe%$%R&#<=jb)Q2K|*dK3*E7>m|k|<e3E#?E`T*DOcA^1Gv;ur
zxUKAov~v7-+-LYsG%MRTtB~+xG%8g5IxYhzH@#UZmWYC{iSO^h-^RG=rpqj!r#I=>
zeKE{Lo{Iw<Cm6w?W~zTwo&t7mi46-8u^FwD>icRSv#}i8tRB0T6Yi}ci|mzGFx><Y
zdUCrE?OY!6-T)1_d%|8Gs0h%_U56UbX}%CtPUj;$N0A5!_<^}BaGb9jEk*G+aVZye
zz{Oo%sIYGfKD!|-hKw^U@WEbk<JL!!G!Ki%!G2oTG|%2abgv{f-B`bRS?Zf({SC+C
zZlFz}+%vFb4nc@NY~l+dhRl{3Q|fHBib=VXWeA`fl1XF$JFiV2Dvnl#D^FxLq94hV
zU$J~{`Grr%6zL?hcGt4@I11@oKFNQd<Czy*V>TkI(bja&wJg5T_+maSFgEj%{SF3m
z3HV<aZiFzob!*cd6zG<?eRv$^f{$_(RE}8@26zz7{LdowsUb?Acw*RX$Up<D+*Qjb
zvgz^`;T*OE&=Z*=5_``E;K^LgP}D6M@`x3Myxv$x;Q9S{tv*Mq^!5GnA99b2*CA$z
z5URxQ&?~!G_eYbdRoA!CkHnizfNRB!HazU&%R)gmrFBkbxoI$Zk7ff)&x)Pgk|UWk
z)X}}op|Z~%mQJ^EY;o_n9yMmz^=LNz^mlg3BCEX(<dUK=bn6h<qKBp-FI-j<!@47C
zv9C^7F72$$O_mIdEY2p5dO<nrbp>45dQRW@^*9O*oId{D8D5FR?oTYw{TP4^FzEvD
zfs3Z6zW|;g<ssjXPUiAB1o@m%=rL2(?^5aDd1_nhyTzs2!ow-{_w}Uv=s3*LDDKh@
zU(un}CdoVfM^~Ser&X_ftJ#kDO$je6WGe{83QWA|ZMZukC>AO2z(0Fjs1W;;Yg(Bu
zpLm(L2~f8mmE$hdD_f<svn+Var^qb0_os8@#nsnc9-tHeG-cAUU=cMlvTYjMcl#$<
zr|a|#oxy!*O(Bz+3o}edVKVv;BIEH!_R@?`a2=lU8XEA?=~y$SXX#!`nrj&)9ee$F
z?g#!w^68X7EI8NFD{rTUJ~wfql+;vn*5gmF@%9@J#!0#tJ9u0+{vT&=85L)ft$_wY
z5+Dig8r<F8T^o0TySqzpclX9MxCMyd?he7--MMdO&i&4rOum`B?ppn$x><DBTeWLj
z?dRE(^EjM&L(|Kzr^WuQWFM#in+=9JBIrK-_6d%wlbzR^EGG$p(Wb0aGq6P0hH)Mm
zifQez#k&91r&Ie_@yB$B)E3L+_O`tO*M`ditSFpWIhEpY1MOL-AB+-u6Zl>joaLXB
z4b6SfE5hIMefU_e5^I#i>0T$vlXmBR+Cmc~7H934u5KG<KEfP!<!4no8NBq`^No!u
zW30j(ml8!*IRb;C2MtcIq7~@Z*IfCRR$=Tfw+%c$`1+Qq8yOjCEWj2~ad%+QfAj_5
zBczAh=*6Bu>1@;u()BsE6j_=|Fct;WY8QZdlwMf*<ZNdZXZ`iPHQ=GM&d`dZ!h(#Y
z)_xV{NBqDKphXC(bBe&>7|$OCR?cuD%g^i8f!;F2wMf2-OtP-Sl?6A^r-3a1UJ8Xd
zkVZr*+5JXP0$L-sdp`5~Y*OIMx9mbEAqIWvSJS|KETlerqJ9T8EiG#v)%BTU4?%tx
z3qUCc^im;Tn$jr1$>JeQWOF5U_+pVLs+IVW&p!pxUm&CEGd{tkBV#OKJK2c{KTi5!
z^|Z26S%m&`&;aT1kDH_Ip>#4`pEhmZF-n>`9TM>lxNU`umvWrD#11+ZZS!2JGVIg8
z0PYmz<n%wq6ut2$=HdX5yLNdoddWm8NwuCiyIebfu_zn`ddLyYqGSF#2rnUIY8D)F
zZah#V>RLMULsT?5*A>`T=5NB=HYbkb0Heir+ik9~{4skqjfA9FHpo2^&w75K<LQea
zjOoJNC(>1`F48W?v!FD<U+JpCW)r!vc;xZ0;Nm*6YO%O5+L9=*T<s{3C!O_Bt<`W{
zFsISg>s}pCY5n=i*mEh<E;6OnI?9FGFE5X9&g0T`HyuR$ErpZ5GzU}=cIW?ib-&co
zVRFMX89zqG+g60D9Jvl>X5DkurmWfXio<dU@rH;>8<D7g-GA`)a+ARytyK)a7-Goo
zP=<I@J3RwZCEW{XwhycU2zGNp6*9~3sKhNTMHaGAv89m0Xw_ON^jfMzr%Q{fotrYC
zS_mOvFIv_byLnwuA#DYuw*qF>o(U*zqCVq{(0rIRjWT^{9eYz}!vFbYEE(?*Op~Vo
z!juLCn;3i0syf0rVq-lKerNb0&Bwa(&sF@6L2`;<03*`bBp$guzbZ?SQEvSOx()y?
z8HVo-37Na>E8O0!UuJskRgCr-^OHj(66JCHv~Xa3bC0MnQWWp~wDJkwIqe3p8JVXI
zICG!%K7DyO8?c%aE}MEkMgln;Fl*zo<!j2B=~dYLF72LccJZnS@0SI4l!e?ASAEL7
zWiIpC(??&f$yYDaFEHICJvVcH^}al%ZJR-~GlVcvmpetFGh{O|6vHZYwELnG9h5cZ
z2E8Kk7_z($R~&-KC<=}F<Idh&KClVmu~^x+ofs(=V_a(g-ku8pde~ge@#!Z~o6QS^
zv$Z4K{NP^VOB;j*$g=)#7U9q192uCev3o!Oh|=WoRidgQFv6;Zq5Ml9RQV@@MGTX{
zl(CJ=HY$Fl5TypzCm{5d($>z*w7gsmfI-gSTo7d5Q(7KG%(rYj1q{PH2(A(Nv)Op8
zeWn1UmCOs-(q6&P&-1|z*72ABxS*1P{>s8&G8r1ju;UR|dtGu`IvH5KR(r3hKr?f=
z26d9xuDdizpmxzUX+IX6Ys{Y9)CAIRk>)FPRt^RGY@;xKzgq4Fu1F3{!9ug=KS;6t
z*svz*w{7b5(SBz={6CoRzy4&33i*q3WD)3WL%MVcBob)EYx`zzVWcxTr<yRoM{EGi
ztt}GYcRL8Md(69@e0u|+D`=c+rh)<5kz&Pdpa||b!X+v8AEb@1%!;rjPnXp17P20D
zhlW^WKbxKdp{~tH;hYK^$&1z6`-e#x2HRSo*slcvBERp5Wpg+H&&Fd@gY3QIcSu<P
z$!2RfsL&%KgBM9WF8bN@5wm&_8drG(W0a9AlgPl^yM4A%@1ye1gz$rEgC0&UNkyob
zVM!c<KRwuAPx#M)sUoEKWdzCukOGW;hsl^Pv!K738O;B)-Ag9TCco9nEX*li29MLx
z^n16!2N(!l&F(Z7i$T_egaqbYOk>TfKJDwZuJD4K9Dd`Ww9Tv`JCYX!L|3f<^_+UM
zJxOW|e>(CFP^)d&8G?8@pBt5nhcx`bFEfgtT8m0qmoM<$7bJ}ZCoNwCCuOANFKYU^
zzxZs)l^wEUMq4h1w$si<rqO(;k$Oj2Ez)W^XUyI}nzx$<gms4^a@Duc-7yc<MTt}A
zt#e{sydlXu$|T=k004*#hK>%9KZ4=eppxixm#v8bOX|G9&iWS(;$I-^&x(j&g=7Le
zLhL;A#)_E$Q|dZaLo!BI6}@4+C9bSpFVV`NcjH&%IRQJT)IL{&Ht=ICB!JMVra-?e
zHCvZm9=P!lw^9!5ti$K^3P+_Vw(NlCy$@zQ-wigbI>sm4M;nP(K5w_(19(9R=v_}f
zs<%2@wK~o6a{u^b^*3JoKb0f1Xijml_?3>6??vAM*_@wc=$f}XGbzCFgi0%#V>Icp
zn`W+YtSdAaaxw8s1Po#TMfk^4%gN=}2aZk<*+(CU^}r=yxf4BYvDzo*BGN2^N6%mA
zon(uw_FNo&EXZq6$a;EEua#JrYyTR8+>_~AIjO8FSzM^0GMGjX_(N2j87cO1pq*ut
z(ZT)|{(qc4@DO#cAkNo1mPevWkiq?Ek){kNFjAxF^7maS5@c2x7>#U4HsP|LW&d;`
z4~VVb7P7CJ-Ee7D!IwfU)&%Pq77~jB-I4aV^hByx&25n>hyw$TZrV-5X5^)8eo5X>
zeoBefi4_*A{dWaF`@bR@khF@mUmR!>vltaHo{jd^l(>d&pucyXUWfj3u=JNrsw0KS
zj|w{1XUAfUim=t~^x^cITYH;Ak;vY?86i!xly=c-tBo7G)l4*h@Ld<N_1}5eM*W~H
z&5f@S)^F-W%*|R$nyQgU8x?<yeNII^d9!B5X6c6_ls!WC<O@)x`90<0h2UUvy@4o9
zTIOgMvwror(>o}Kk~ZIEc_Wei(GQAv0vh9`cLyT#>y^>st8n*gE?P?^=%%8f$#Jgz
z<*$c?e>(aAXnQz|UNj3R5=eDF!64$KuBuE7OXIw?6{rp{;DQQ?H6^aF3M&B{5aT%Y
zuX(Bb*FDCDXp^(r2&4QMu&Xb9to|c#4F3chzB`4JDU6QN+bb0xC?++uY_th_4<HKv
zTH^m5@Y_R@b_H301azV<rh%C6j}rXXhb@GD#ju#*Ud#MG@a22&>Zk}i2%@@31}DP{
zY&Ows`QBO74uh-IKYa^Obs6(Np{o0)u@reZn<X=iqp+eN(_i2I=Rpn?(n*;sVzxMO
zA)#n~e0Lp&9hh$qy+gK`0Nf`TVDD&n5cZStUi#m>bU?`f>cw@Zjc({_#Tc%}tn-3K
z`M)iwqcS9=Vni!#sW>7<;p!;HB=fkfNyHtYu?~F-L3>J6&jSjh^Aug$Bk7;^clH)q
zI7i>`f0y^qYpzO`<1f-7rzn=bu*`r9kHIEtne?-2-JOrSoKTcHxOeR5RAchvpJ{#m
z^s~QNlpSuUm0oDSym`h_7=y)7hC<|6Q{g>9JyfPrN4xvhM+lhF*y?jnr==>gfn>U4
zZ|otOKR(TGU;F!8zs!sm!V$md#$QsZMU>_s9!2bpryxR$cNR^Q>Q5peP1cRKghWMf
z-9CLC0;-RG|Ns9lpZGbGycpAeQ5l{lh;<a+oym|Ff0xZ*pk!wtKTzBP5{%{KWNg@P
z{L%eq+4%tDM}YpIl2@;c^nPZS2fM=%?S0~2;yJ+al}_JwdKny7PQ!Q;H$kGINS6LH
zt=*t`83(Cj8LB3CA~#NfDRIf<v)RDL;i#&<L0bQhMe0)W>H-ep|2%O&W8{!MFO&S_
zs9h^_cDgiqZK5NM`$->$yk~*M;##E>jQkh|*^uYIsk-Pv44G6aEwsIl#Bn6TQW;xy
z@55r}UM@MDXbAqr7^kG7(qCsbF<5TuR8ff+{|{bPaV7iUW5Qn)WecA<^xUV~qSMY^
zl4Xzr1ZRB|IFw^8=52u}@wUpT<(~Tj3sAxTgEs%m3ja13wS@FWB@-;h@Qpz{3g<j@
zzts8p1HLo){^b^))8{!FJCVQHOFtEYm65@ulop29?iWdF+7;6!$Kb7tn2+8a0cH!c
zrOIXb4QQKdt0VmhrsUL5<?l{kLH;6`8cni7+9`>Os@!ET=oS|Vq%EVIx)P++p-yb6
z8H!V;=lAE}v2w!s^NRg-#Q4LZg_XX9bPCAR5q3EWi$wC~r^4L~h2M6UB9;`aPGek-
z#a4^dH8cK64+7>A((gFyi_n=U&WA*)_DSXuP@4@H|Gn;q6nd+4;5MuApcvEpdM7-N
z&Ads8R>K+xBbIc&i0#wL8Fa8HR~v6RMLuFzm+{A~b*mY1cHSYMKNGC}b!C`?3T>)j
z=A=F8F~!@#$+*`PhH21bWwrI@qP<?1B?=TOytcX1I}1Ci{x=q>F5v6RxlL^8n%lU+
zq+iWbU`Oxhz;P@f-XtbFJ2$p7ZNzyc*)!bkWoE{`fgMbn9#L7QN%ytqlg-tl?$P^n
zWAl`K)L4{LT|am3JfwzNHjxfMANy?{Z{|9!v2qQ7uDZu+>J6XOwnj7(nlcpso7B96
z6vvGW+3_+JM;r1HXR4S$e3WB}be&laKxFF{yRAy*cXn<7`MGa9{J$Cg-wv%tI{(rZ
z%iUSYaznL?Rh}M9V)+ag=Rz<ipMv%(^M1n5cAVizY@Ie;LY73kH)1r|EVfOP<=XmM
zxS3}Q7EJ);Yy-&MJME=E?y?QD{|)W(|E_-l6mxZ5$@gINJ*Rgi1+msx{@pKtAkBwY
z9OrVmX`}<WAPEoXNC%L|aME~_kdOc=fvQO=F8xkuj+3u1N!Zv_v#~ojvsP`@R4O!p
zD*1<MfC+q3Gx%=|T228}%shw3Xx7?WW64zpbPFf<d(xs{rt*a*jcFdA<cSCxn*qI+
zpCEJq38$I2H>lRULDjcl;M0foIeoHHS5H9<?2X+t1JcyAATzpXLX3+~7ZMW<271i@
z^-O;nXb67YJEjkKOQePQc&GaTA;y-OP{1dsJ*CQCG}~KgqiG^P>1e675%ELeOFE>`
zNh;@GwX;AjXm1Gq^(RJvbP}M|sWVdmRsVR*(a{_Jvl{m^MwoqAHlSpkyhnAf?Z(wy
z&fdyO$fHO$j}0NFf=A5XVO%^J^D&%A=Tf<Rbr}@1@7)VP_UjFDquPMN6qt#OKY#CE
zy4EiV;RGPkFaMR1*W(O{5Qavj31XRu>Bm$C`unVjD{U}EMRG;P*xjCOA}R0pDUAV~
zn0~W})rNg>0s08^YoGXW!_n!I0^g!b0zh8FgW2lwGF7^G<6o`lk^!>I`Gj@8KZ`if
z>%jT(n~%h0nn*Xu?(wZpEJTqun9b%wMOMeAgffdP)$6r+*v`A2M7vp3pV%~~0g^IP
zRhVR}*!l_UWVI&Q*V!($!jw`ZWzY05iPmuu{tyan_U#*R*x-^<Hu0sTdZg*iTLU<z
zf!H{#%}+e{;&ly@jNw6&PN!^fxrez+75IGVjzITIlbUkfT97j)uiDA?9jWM6rFe;%
z73sfG#{XP7fCc%(Yjn{mI&(p@)3S2-UGR_C;;~f`0`1AoQoTt?E_L(WwKe^3WXc)N
z^Jc?&Zs%JZ>lm0E_W4YYK;eHcz$86%0h9_x6raXP(K7Up`1|`eK`Ie2{#od9>Y=|H
zG1OUsVG)8!mDC&EB9|9WvGwxoG#1<Ij1Q4cjSQ`_zh`E-CX8eg=%LcT_CQS|7*`6G
zoDP5YQ;d)WmD2LSCMnVLN>Z>{XT2yTU9`y}0XXI<cZb+D8ka`N+N1!{tiL5{NS?qW
zaZc43+QmM}s_o+-dLhE|e~z|y+M)7zVGN<9CCw5U(w-q9WN0hsPSZODKfEL%s&nO>
zHN(NgzU!{7tt|kU15xJc%;JILOpG!zGU8IWJ(7JKVL*%m+Xt|}MsN`of*R`TP{0u?
zq_*FA6^YrX<j^W~iFK=<M1w9csgbX_g|8Nj@Jqr23{US!&K^|hB$c(51qWt_I{57K
zBCyyMocGz3%%}YHce{<wR`a5brjn*$jM|Xz4_l%uJyI@4=;96{EGa5z<BuiV<D=0>
zM!l)8(Bx9!ZeB8)O<o&a6Uy)`yA*$P_u6&8b)4H~beJ=NF=AqALvMihGuoG8Bc?u%
zSN#xd!G~~6d&A#fhrevv=j^_39=;1O!3A%*y6u$|0nE#H|7Z`SkYIM_Q|4hm?B_?Y
zjcK1i{UI+TFNb_BO=U^h#%5;8f#=wHq)ii`>32GQYIF(DN@05aF6FB)6v>;um+$D`
z{SYSYIlAjOp3!ER;^AT9fzk8Su`1mwqnoNK^Jr<!a$l~*$eZFVl1Uc@Y6S|P9`6-D
ze*BQhZs*Txy(n%mQ)xAR1<=nb!`isXx&G=zdywo8D2GHsBBGMY$|#@)dbJh~R^SB`
z|NnjEFhNhEZ-e>@T}rmk#Kb#;AwV$sGgAseT^z8x3^C>-##CaW2IVUW?Mmq`851IG
zG5L|Kg!(70){5T+JE>h_MH@z;OZzyauRfb9t8Ulfieg+^2@q_Qm*w^oEl_xVHJz%8
zu;}cICo5@an4Zngdq8rk-EPife1hA#<qB7aq5ALw@;|)z)F3&FqLL1J{iwAZ&wL0!
zCfM3y4q)DrdK0D(hmp5t21X9!2gTU^qQ8QvHW|TlSW+t~F3xFcVy~yzEgI<O7BO61
zT@_W{<o#&<u|N@qI@6VBTNpm4qNi~}9F0zA73~T0(>rNA{vQ)TV?t$5Q{)PeoxxRi
zEF_|&DMmGn<VHE>&%izN_+I9*$3gsi#8*#GEn>ws`uNdaJo*Y|<ZlU0;L}BXG_PIe
zZ4KjlybXlzo~JhXib7(b!QwO%>mFkP-s@(&og^2vKpoLhI80>WJ{h&jLLznN1sda(
z%z?!bpC@bhRpzoyLn11oM#DBc59jV$BnT`D0`ga8eQ_j?D_<epfonCh>!T%Y?$WaR
z(NTGK00_;qsB9!BDG4i+!5+Ick}da(L;;By3mFTzqfpm{8UUbcN!3y`0KUq)1%QA|
z-BoJ0a$o7a{8tfp0mYgAHMKEYUVH1yjb?p9!pPZ=$UBH&MYgg9MK`(eO_!6>PqO7V
zfjuY@XNzo48zAqsk~iE9ZEU6Nk#zyxY}*t)V(sVkzO};P><Y<tOQ!&NAXb?<MM*wO
zyP}H1rw{)kasOBP{yENpfnd-~cxIL*7%C}n%Ipe%h_4x{q+$SfM@1TLpS_Od;Pl22
z>;_oPDP`fFAf9%{z%nVgoQ@&m6BEkKA=R>(oJLOwbb{oF5)vWE20}t$3qQ(EzD(JV
z^x;rF*SKYOG$quz4`+~J#snWF9cxMk6EpR`>0R8s_fc9Cn?qyk^eTcUw_BZE1}is1
z!-i9ar9mSl%jlSgVU+D#>_E5jWKnX+gd(0E9IyxE2@)l0W?$^%wjq!2##&%?CEOa_
z9-yU)$X;<D#?PjYue-A#vb$f8B^^fLm}qv#wh-<-PGob_xz|tk6w0KVZuTcS9xZYx
zE7Kaj$7YTA#ULLO67Z`RqdU-3phXGl0pN`Xd3t`q(#27|KK@yyQ<j>Vx_3!+4AF7F
zbo>u|gByDd?RnhHHGoZ%)oipTvBQYP;Pqsu(Q1;fNKQ_k_(cm@ALaA=y62QZUp&q!
z=AU0rq%n!9e=r5-1Y{|VP~^QdP%OUd<b@5{z^1?TFgZ&1x#9>sk&eVgb%I^Q17Gz>
z<A^Bt$SP<HFr1>R$O;`w_Jfjj^RI$!(V)mom}9bIZ^RHtq7qQ>E)TZIbJ-@#j2xar
zd=Uw|w{~)HeiyfYnU-&$&VvEdv-3~~S$LMX76vYs#c|W%aGq%9KyRN^t0+WT+x=V2
ziScoAc6PN)%$_LR^IM|U1Sv@~M7n~)!tqR(WeGPoHxyi4nILTNtd@H#{EFi~79=Pa
zq%=~J|9rE$UdMOs%Mk*NDR$A%+<2U37fhk=dAY#0)0T;!a-SdltZ@bP%0Y6QtMF&(
zI1ihef=T2dlg3nHIPLRI|I3X2=0!^?sx@f0hC!ysTF@%~_OeO&_&~ZY7~Z*xq0vZW
z5eq%iE_8+4xy}Jh)H63tKoV&WF#XR@O6#y8!Sg-P12lC0)<9>+OO2Y^LknSHC>o8r
zkjmyQEKbjx&q#1#A3rk*-LVNroM`|h%086}S_2pm5D>(KVu-{8i^3l%2*qF|La*qa
z&*&}yH>-?I3emQIk%Xi^1n<2`tj}GMkH4=v;t#&xw5Ybk2YSk^y)fByp#;x+2$s(=
zpmFJ$<c-+chA^DOf-Udc!@QcBI32G`Wo0x3Q~{?z5)?iUMlOm{P0c<$BxxQSUFoPa
zjZ%)-0l^-3$_LlB(rivMM3xhmRrz*;5p~syqcE#tN-%OZuThjAD#8nh|MW7YgGe%>
zAmTuzF{f6sw4ILsF~%=&^`T%OHlyW?@28WTEE)@dy|FnqMHgrt18e)Ur0xx8a;0aU
z0)A6*ettlqY-Z^TjV>)h*SNacwZR~EKB%Ydb5uM+QB37=25gGdAO7D>35#r#*wcIl
zg*wTNjHZn0te>|j+Z@F|Lcc#`NV(cNh}WhR-XRA~$S(+Yl5e)k9ma~p$J9+wj8T+6
z(6_R?hhrE8C-60F(aFp=6y<<{&1C3uQtI@z3dQAePMIQcYULK@Z~FKRa?_lgP!RDI
z93FQHp4$duX=P<0P&qL6tM52*Wa}IVTjf^)ld|Tb!Y`&b#ZK}-g$DgD*t<g;pRzsi
zQd6N`@>g+?np&92G@7Cy5UAe`)R__Vc7H;SPlil3L*D8X9@_WCzq}kt{2Uhe2ux&9
z123?o-L)%>$lIk@nEn0Z*yEv!643m>0qp$)$EczS)=NJQ_sQ95BnrT^KOI6Kk@ZV*
z%l-GlhpWK`?9XVE{Fs=S{X8A*rAp1TtS2><<uU$qw+sNS<bPGvOwhBAt;FvLgO66;
zjZ-UbT>AR*Pj5*yPb6AvjLR-qQr5~hqA|XH^(ytqK5k7VAguj+H~rR7x=CR&S~9PM
z9F;z`oe8p756}kQZ`tSBi_>GeQ7XI28#K)esqCcOFHl`D?S<r?-n#zXV0SxtX#`d~
zb|*}Jral5Xlz#u6F+`qnuUhYJ;l%oP@&u76zU*uGI`^J?$MTgX^^WGmCyB=)Z5u0}
z9<Afj#3(!y&25t1+~d}&F}s?I!^k_r51s(s@DvdNfuD8zt#KNwRT>g>n7F)f6i}W?
z5(-^iUOs3#U0JZ2MyW6HLt<=4yuTa>fY#4V5;}mpPiF52S1e{z1ep~2Z{#Ze(j2d$
z{$+!J{mOucytUAh4N2qio!|}!6Y{aka$ow6thUvPZggBXmln-&yboq)Yyq1t8Kbe<
ztA7$o+`#0jsnxc4Xp>mSk92H*iw5zZ+#%qMXNr6+VJrSwW(D!h6Wk{BsA6T3nI$Wm
zNFojuL1_A}=1u9LHI3om;GpAzd|dF`bhZPaKT8^6cSZ)z9ncJDP^rf2{;HtaVLL9r
zuWhfi?3Y0zHY-Hb7R&kkrFd$%0<uF5jZxONm5FtRo`P}AU<S~21;LdMWXi0$$Lw*z
zpE7BNlQt(b7nXBn)PK58vayb@dtjC&XuFR8&$_D)mC-z+p`nfIKHsTow7IkJT#O1$
z)|$voX$c1r5*~@?7Zs&f*||mbTeKG-G>YgFoFfSsh>M5J(|q6dd7SaNR7N%WO`Uxh
zEr8;rB(Dp@m=eA<mJ#aQaagOtClt*#m52V1D>lji8K<C;I$kYHK8n_RN8MhcGt*lM
z5T@%dAv_<iq@QPQ>@1fQ1jFN3iiiDJYxjyY3v4^Zy6hA=0!Q<nAyDG+d1nBvCb&pq
zka8!1l5GtX5%=rJ!v<u8#?EQN`AjU0J*$yr0S=NPO-p?zgM=^-Sue2;k7H1a!=2S6
z5vg*0eeKJ@@}GR$MRgBxMi=<U&wjGW8}1j_MiRBkAjQ?{Dk@e^_YAAd_>i}oI5tu!
zC@3)@s9u3hBsxIhm*hJfWaM=a2_2nWLFyH`<+`Z8KA6A0xHzQ2=I63Ld~<WwND)ZA
zv+s;oFQ8nrG18v;cPIbfU9NxoM1$<ByNE0W4P3+n{#$fhxM7@5BZcL!Y_khi)OJet
zxS2CnORBvo85!l{v#^Ya(o<7YxA|lxV38bhke1c~fj%>qp+gJFkKG~448|*ixn`(N
z%<6h}uS!r%!{!aEhL5R`g-qH3UyMf#p6j6iEF5%RL>8vw+{s)*pA_PGSAfWbSFMjA
ze8rjL<^YdNkmwaw?ww?mY#!70V7`{jT_aiuK`El7k)>r*GUB&Y9g@nSVRqSUTsB2=
zxZqzMO48=`TW`Mly}bDPGOJ{GYcN$P9E~QA*Xu4NDs)_<^Lsj*O(9S=o|T4-dWYBL
zvKvbzHi$c(&Cb_A_R9rJIYuAX$-u@3l({=VeYh}zJO7*h{qJwT!l(I~e$FUYN{FcF
zH;kA$bbpZ^UL6+}7%4j>!KyPaJhwC2S`}jl;9s^vKYLtTJ1lv0Auvcbe?3Q?KFi7Z
zpsOtJoCRZuo<%Pv9WBQ;vrwzBAYY_~+cn2PNbLXQJ@9OhSe5DCUC6R~Bs@k@YbiV;
z-4Pf8Xino+Q#1*8F>~oKm)QBE!SxFceloPH{h4U%=1nv#CgXRnpj?eB_`L3z+b*Xy
zDXlzAIB}B_6DjH&zC<Z1crsZYBK+z-JrQXC{Pc)|hE@oba)wu9yDI1o6fkM*L*D=Y
z5GiUXVF$82kzjC^)ZCrS+nm>ce_ul_OEWZ2SVXyrl*z2ghRPTgBAKyC+zD~i87exK
zPFeS$sHg}=$<BL-h>j*hq;zj(gTtWzYDr+`i1?EaLgH3ygv>36N1lVC{pm2>d|_r#
zIAJGx09=>oIJR9n4DuBIQdMcHD{ByTwoj%dmVKxxChPspEf|`xqNJ$IyiBQ7-^~wB
zeD7F0vk*RQK3^KPWsltpt~-!SE-U{R<&Qe3s>)eZ!_3a;V4<-}T|`F==!}!Uo#heL
za^~c)HHf)4S4$SESsDWGa<phR{H=xXsO<9cta}#Y(;N6gpn9Uje{aux^DFtK4glhf
z+XQN&WLljM6|}H4_1^#P2y<rhD;N?E;c$MMKDyT`n8TQ(ibuL>-7U2`F8+pu44!gf
zY33N*oiy7WSHI}S)*YX%{zT5fk(7DNr+lfPxNiFN08{6*Pf%K3o_lsiIYmoP?`v+c
zKgZ)kS)tPwn?#+OJ1<4FTUA^vUElM&fB0|u6%$HnT0@4Bq;{Y1{;gz~nR;@<_=6(b
zZbtn~AC+GNf4$XygaBO~FW`_F!&aA<n53r{5!4_ttOM--V4S&#7Qn42)J#vn<#C^!
z4cxpI=MM;_vvwC5;_r-*qxOmbtVAjk(!v;G8{<x+DxdVo@@ay)b$R*C7|?b{$C>X^
z*3{AA9n8Dj0VX;ok%-$(8IiI;RFR9WZ&gZcdIEYEGwFCm2|I>hP1v_^;A|atHlF4S
zIpfr71&zZN@`O1DcEE2JMSU|1x%0%qS1@~`22Sg#0r%{VrQ&1T3rG*2mX}j^;BOCS
zp6{r4#sJJ*P3|<0fX98LfCzr~(8KpMhNC+!08kDmZZ(vLsGS0BEqU4ibdBVW>A^cV
zxWZpRoi7MC09#QI-QJXfh)7^5-KDTAWzWhXz1f8y$?x8PBbr|z7+qdToOp@TiDQZV
z)E)NyyMp+n@)vABxr2k?WVX{s(8jb~wEKQ8*-wqGt`ayN%wjrV5!yyX!EL9rfXQiT
z<072Tw<5t@M=5f#vAL3+rgdz0Ok7`KfB&uDw3Fj&h|{2nIh$CSHQ~?25?E#pdMJqC
zT&+otg1U)SgpTf`R1J;JV9}6t4U1EN^z#J%o~_JtvAVjt&hyrObAx=>yuz%Ypz7@G
zY`W#g)44GJA_5&IeP~cVTwy>jl)Gi$apHL%I}5-g1+8lxK`59pYxBiD#I>rWJuQC_
zi>kwWxy7uKuW?lbYt90ytNMmMw#VzNn@{l*SfC_GM2SLAhQx~b;p0rO<2eai$&jwj
zQ?z;I8X5&iQFooeM0w|_h^WWxu&8V%+ieT8e|WfXZEdX*uOIvj@U@Krq=&_Tv%~)7
zdf8*Qi0`q)UKd4GWZz<T{-nAG4-8~Sl!*y@yza4<SQ{<p1OfVH%%M!KWV$nv@s8*F
zjtPK;!_X?q>GybL#}V=jxB5$AMi^CCNpVfeaKcuqfuYgnc#Z&1NnKr>4F;E(k&!a9
zk>u;DWCdAS2qWVwWw?lO{zY^}g|!>ep^xnnLsPT_1Zfj4>{GmU#?15BkEt*9Uj2UV
z|0Mth(l36#m7)5vLNFNWoxNBzW31+~kr`M;DO*1~S-9@$Yc#>}`}Q@vN2oxcAn8gh
zrmUgS&o|hZg(acT-~M#B&+M=zEh!_T%wG;?85iXYfQubZR=yp*+K1%90<GR*N0&eG
z4B_&oC)M)H3kTSb^&q^F#5X$dZ(8jwBwg}yamP2xe_!;%!xyPVT_j?BYxi<wynW(6
zy)NFrC5W@-xgdL@rccVudy9KY=Z--zAc2tgA}adITha^pemuc1eu~y0EBHKW^q$(@
z)3+-UiLm@4>I$#Og-^S=4cM;AgZ8fW=c~q!*bsPtvr}NRm~u@-0@)@YKP7plD%Myh
zL-oyjtbFI~jg3(t{;^VGNd_o=i2)pmWI;I|hduF7DpT-urMAUU&%cSiBdMPW+m{?`
z*Z5;5XW9C(70Z*ICvbE_G0Ny!=GZXb0W&i@_Z2qw^QG=F`M11kT!fFRhfSKbTJzz>
zAi+p7J`{rAHsklVImj@xj!%c`+xSIuc(Sz?om=6Qj@V?W)*q8amr=i(6=X_Mb!SEF
z?(WJcD`v9ihF4G_@^$s}C`wDe3;kN1pDzqUNY}7#y6<^^xnGnP(z?`z#h}N){GkM2
zBv?ezTb(zPl2>NClzRft17B0a5?(S=7F3ccMJcs&(X7SkP&sz`y|umS5NKMD6|<-d
zL+;=@h%7=j)kUW3R3N>@k)Tc7MPYwk!lN|sy|+QwBdV6>QTM<}WH2K&RRZWMT=?+d
zDO>F<%|m;&{{7)MGv2NX*)3x-T~I#oV>dwwqY@YhwWm80i|VweKz<V3IoWc`ckuDc
z)ti)86@u{lrlhMWgpBqW(opH`M@o0gVCDV8$suX7_WT$Ny#143x7>4a`y>=h3trhF
zrd+(|;Mlh)=^>FKcR8n2RvmXQPJer=w$~r-*&wzWDDZ)XCQ>$=*K3*7VDX*n&B^LH
zE9q;<zt18xxxx^Wkc^#VgrXoLhzYnuhZZvMBZJwU^(SAd0k^MS+6C!bT&GSZY(O>3
z&V;I}s+h@e1}Hk}D)4GM**65O(Wr3<^~6zvwhv5Xmn0H@cEV<ul^*TAZ*xg{Iq#4m
z!@1l2YVCWA-MZ-IPIqvq(93_F%+40nU38}C)Mmk?%_1{^_|0!Am8_=;#!XC-ghL|;
z3t>1erb_?1dHtMTs;aBFF0chKwr(U$BwhgRzDn&qY%!EK@rycR9Vo~t{rYRJi_hxJ
z*c5h8wG(0(!ZVzv5-yLjdG5Zw{x7<{F3?xV#TLs<0(&WETmso-o}`B2jc6Zc{;A9*
zRx6WvMuGTtSmdqk0we66|G(xC{<0E|m=Jc_)O3SH9v?p>qHe?vb?@fy?~@a>@$F`y
z%^x`%ms3y`d{f*~P&TVBMaRr8pT|JvayuiQnx4i=S5j3GXAvo)us$K__o~h<%+P-$
zS6KSR040{w7pqiK8MhWf<@aOsTfmWn3nkoH{K}MapdvrQ+5Spn&2bzn98<lcmx^_B
ze8-kuJRlN*vEe0S+Fw)tmjS;j68mTG_kmr+qur{{!)zt<ePi-fLA7%)dv{GuYbwWW
zY<Uvb=G$~Bz3z64N-Iz0PW|4SU+#Fw*_OgRjrHPUT@Q2+B9fi2{EXVDRQtC;{$GCV
z1$14uZ#UZxkaHv}id3l#r&g_7fJ~GkIvp8JE5;Hz=<Setb8<WmOgNiG<IhXZpN#N1
zn_GxPy~nhBr6d6XQLe0^4cy(A;qm^}>%h<Z`UsgEUy@&IGX^(&ImbCY=0?Fm69D+I
zsO23MK8llvmVwzhqq2NndR3p<O?d;?vvn3Tv{)?W2^zq)vua}W&c_a*d4~LOG;lpz
z*tqN-9v2_4ENLNOK|=s3<pwn74pLB5+y&r#@|!nr{-Zt0@j#Lv4qt2UWm^r`0x3nt
z$!erB?A6Fj=1jF(SDI841w<^JbAJW-{YkX6I-&G`7*M2ih2{F?I@atYxDh}0$b$FI
z6iUg5i*iQkVPRpw)o+tdm&&m+7h4m%sheW=N~uaNENMkZ3KfL34K&Plg@prdZ*RAN
z^>nWL2{crf7ZilVeC+D#0@>Qq%Vcq@54HI`KPf3H3IWYh3QJ2V&s{%5{^uNk49sWK
zu~l0I{tu^dOz*30K{!|<gQhc0F+MY-WZ~E%6UDpKZo<Fq`d@Fg<e`v=kWIz+5GYHj
z3z-VswiY{$s=v@j!`4L0D=A<pC!*D!>(@)NW!7&>)oXj+L5YxEujqPjw5upoMu@(V
zb+-6&F)qcC7;Isd(AfAhBI4cNL=ikt4nfh=1yJ0iF`LEN8zy)WYEV;C=hxIQ_74pe
z?Ch9w+HZs~P$&KFssHPR*;0b9qC*%wkqP43&r*Q*z+S_Qi;H2N#o2Vy2)`&J$;T~I
zt-H9OsHoL@>Zp+4R_zIKXQnE<)b(JN;TbCj?GM`K!53Ow!w_bFTs)aNk6%5x;4~yG
zY!8X^CFx+!=M<><^Ic8e`x$1{G&mOg_8(Km@bZLWV0(W47c9)oG1bidT=P|#il5kV
z;J~e<Qg#suoQ$k_>rmt4<2yi`VBF*05xm!c!8ga_^_(3+D}Md=TX!Nv`hl$jek4`c
z?#dO7_Vs7!F<DmZXYZj7RJIeFKGt+`j6=!6UgwC7k02risppsx3>>aMJdp2K5rK~z
zo8c7n<N-^lpLPaU+nBeHf=vgwMyhM#$l0m=&C4inUaOG33JRzZGKjR-!{K>;eW$;<
zzIUUqudj5s3;2|!6%_?kl}-MDD<XAyc_|s-b~MY&*~238;g_ia`kvxxZA7VweOg4_
zhb_v7s1}wY6fGhBE*XMB^Yt_A-#_FF$fc|oMM+x*b>RfyZi|D#;#yzOxcEM2IL57u
z0YziAkim=XjG&n6g=_?N{@<O}Uuk#0@J#;a>WSi(FA0=k=M?135&nYTO%MEyBr{y?
zk5#a0S44kVtMS@q6u?xycdEw=_5>PH6<-V!>Pw4@=Y0LjkHw%56^YN6Wo~Z11C%TD
z%P3rh#@Ka*q2e7@|F?{!6;Te76fzmoTI-S(^~cHHtx<B{+H3L8S+SXza}{G05{0Y1
z#W^eZDs3$?sQT+j!`N^{Ln`X(b8gtRy50HbtZ4sc_Wde}Z4X*)T53El4n@9-6VXVu
zD<|0CByx#rm*nF<6wL2B7Ekue%7%`mapkJccw2=H=)39Rp=NPQf+Wn8lr^N^Upk?D
zg^N_zY|kf{*aE2w;B^&Tk}f@x{2bQr0uEqlaj`sMS4aqSSX7kCIdV@|LIMhj^{?~S
z+bf=U$3adm4ukoahC=yAJ@=Pt@a1QMa+Dyz&8hu3)=iPGUQXUoP<u~!dc4b;t{sZb
zB1?5RnUP_brj41t`=;yfPBJ>Q-^=|Oc{OQB+{Kg75lpX}&L4*Bt!g5s6lU30S1;<B
zDfxg-?&ed&PUV79k;lG?jAmq;Ko3mR3iaA<)1ZF~J^y!p|IpHP(Z0a7s%7O&4%>;$
z?ZFpvd(kHu4HwQSn{j6}7Eae}ZEEbfFNlKOS9+pUf08f=1a=#!@9Rjv4iKr13)lZO
zR;@xvuYyJ70RX|>DH%O+LT4Lj5kqXG!>?WKwkd7h7viN7r<t9;rKxF7T^%!!t57-$
z2hI=iCem@obGybG{-1yFuluAOXo&X6tjkbVXI&INQ8fB_wf^4kqLG2&ly09Rm#{dd
z>WVQojXj_-xdgGTesggD#|>HGM%dwV#!^mBRuHk{eH9o4k{8E_)c!2J)aL%@15z88
zFdnDj4zNM=yPb~a3ZdZONXL`PD3lcGx~{&8zMK7PdVe1H!671WiK0;<y~WCu)iFPd
zxj$!t{RjeAUM=*Ft*i_RKmgVa+L_H-OI6inIqJwW%4r!6_T}%w#*dEt)un{?^}$rz
z;(JPX7z6EbUH02xv?6L;S$lR|b8Q9YH&C-}?mM%EP1H%~TcFiGFiK*AsB%Hqq`Yp=
zF1tUu#XvH%;XF4bRWG=yZaM#4i?}n9frv;52DQr$6cB;5_A9F^t*5646vc|J^@jZU
zdH(W*{f3FZ!sOqwIbIoVIF6Sa8OjjRsgIJUpDnaBG1aIOZ6|DHQria*8JLWV>Hb;X
zM_)m~mFo)WF~B(5{vhM^cs>aY?lW$riY=HJ`??Q7U1>?bPpk7K#rb$yM%U-Do}!c4
zMgPAB(doVz^feIX?@e<5UoHS&aukklb$i-%5ti6FgP2{ZW8MCu>5+=^=Wu|q+{5tu
z{LTCXAnjJ|_Iff_d_R`DOoHb89+{1I-px-)cf|Ss7+bN|PoPvm1Y1^V)Jvj4{}<_H
zr-QPjR+?nSHeu9fAbMVtc|c}OKJocts41GBX%WIj^xRNU%>p=8yjf@vsMy$2fS<#A
zl~>G#Bn}-_h*<qNnQPViQ_5*rbS7*%YG#<ODR-=mf`K^b`@y$TcQ-H8iV>TmGX)DC
zot68S95#>TdggKSS@HRsi4E*}Z9a^<X4U!1GqDYqYT-_FcbR?<4+C75+Cw5f<mej^
z^txVq3RzgspoMD^koVOq4jE}!s9`pU)*;c@*wqZQ8vnya?Ooc(Od(gbVtd2V((e1D
zjzM{NDE^i29}vFdH=EC2CAsKH<J7+JV?}6k+Osb$sRBiZ%}a*ChFS_)D82eiZvHs%
zJ5KgBp3%beziEkTqL;)ov(rg<KFE;OaIvMpW}!?L4F=ysW7+^P`7}<aQr(NUu&}@C
zADrS_0H)rzLuoAGf`Wnxdx|Cuz9E==4<|wzwZ<~>cjP;~Q0_q_qbW^(d%n&n__-}D
zupMx;yzF5~mzhEWta37+p$WKzdW*?KV;xp^3LQ#ZVw@|(b}T98oDGo|9GEL6lu5op
z<ipD<w^`g830J^i1{cIGllfh|elypa8v{CK$+#FxM($#a&yh!WLPSd3if=HXF$-pO
znqoTrv7daq_mZ?Jsx?NW4vhf3Y(l)ND7-Q2Zi=l-MC0MIj|zGTMQaOLTNnW@i5FFr
z|Cqxu@!Gp;srvdw+jF0L?Vtw<0c}ua#~q`jM3`!}i($tXD`h2>@i6q|JOwmiLO`j}
z;y^yMMR}tXDneD^Y<gJnmL?*pE_Q7SM5dR@TlY|`wa&rbtgl|VNA`P#Jo+~eMK@RQ
zRfpft%5S$CGx}6(A<fT@P)%W>vZZ}<V{V}pE>iL^0HLxCB)f64aCSKiU9PVme0=KV
z;Sev%T8#F*t6b-`Z;F0DxRFxe#f+crq{DTC;XKI}WmOInobLAIe*)F`Jow#N<+JP$
zHw2Ch)I==x7Pd4G>K{$<nyC~-pq|UuwWhQ|wjB;lJ}_=ktZYAK=5^dHj<`Qh|8T!1
zl-E&|?LzJHL@$lRTBOK3%+PuH-@Fd=mk?vi6sLsg{-M=5-7|rXk%|)MiFk9{lQ;9Q
zRG3!wa{)fjN&9?Dgh1p&!Ogu`WnlN&e}e1jZl*&)QZh`e`o%x)7})#U6RA|)4|-lh
zYo)UGp)gEy?(a$~BXY23s$z06I!gxBu#*gKp6x7U<Kc=<a{1vH+{alh@uCf8o>uxF
z(vs#x>x$nMyUB<ls&->I=Vi3N6YMT@Y$+tBPSd3VJzdf`A%3upMOI_Cc^!$*^Q8|2
zb)rq>H8GKvfc=W#n}Fl-AzRF3ZO|7h5zzoeLsyJ|2o-v@H-2w@ztTT-Pxm~=J$_%M
zh}vJhRbVwqCp71@W{dB#*PTZ4Qs15fdQy{$<MI&-csX2H+At45Px9QwHnWnsCp33^
zM5b159V1;F8s)COp(ZYOvceKd8K{1!zM(`D(hw5Pcx;OHrvBhrCQ7s`BnTBo=*&zQ
z8m$Na_H`T2jL7Td0qv1mlRV+9vTq?aa2q2xqBiZxgo7v$yYj{#4u#8IM?LthDWNym
zzb}bj-xsf21SAc=)V%~v^FTlRyff*moGba3$-plh0hj0v_Q1i9g8VOGC$cSPM*hMr
zL2%#mj;Ef6_x`lHW*4PsyY+WfS<4KS`J=l>%}PC|@YyeJOt(nnSZ`*E<nR+|H5wYN
z7K~BKHtT0}EW$AM_xE?Z&~@_x;H09lF)599OTxjs{h9$<@KUSG#MR*f&%8d^1A$#r
zQ80MGe)5|V*Nu5qb}YsklJKU(J$jVamPwhj3RMa5p<!&99SYZkU5hd7S~C51xXbX+
zht?({`^>jAbzqawL!pq;hi&&<+)q`vJMqaeSqu~P;mT|CewUUoj-&ONjJ_9o6Kebj
z8)X#zEouB9II{;++Pa7Jp+i9qXf0-_?kJqntvyFhvqv^A)1ItPC|$b+Mba1|eh@=G
zUs^4<3>7<Fw=4;~o-WZiHPxg)-CY-A#`nnM`oIYS-kp{jlyPh3J>~7dQoFIRP0cYj
z8dVr8ZN{+{vR}@sH+%eXD8<UL|4=>Zo35lzN3yogcoj}e9UC@6%f%Ivw7ThJC%mYx
zL@bfoCizZ(LfZsuMs;O&cK)Jg!)qZ9JPUDLpoZp<Z}Vzxg<N06jupi&hn;upRBKbM
zO$aL5;MQQS(VHFLz0qpm3JXmUF3NUjTQX}T7q-1@wCqzTH$3p)c_Rw==a=SrtdAV<
zp7la=T_PW7xuZrfGyPxs&pCF;hGLk&WeV6>su#dP5q5{~-*#I5*?aqE?r0@gmR|zn
zRzEaSQMxrC9E(H5;Kz&@@nPM=wxN(<W|d8!2x^s-96DV)UHgsy#+VlOX(w`FjNKIF
zjK~Y{k+Q0`QTaH~&r!U&x!IhHiz^+F1+i$}yW)ABI#a}e2-1?Hdi%nbl;wfB$-+;t
z>)}$B16>(gRbTd(5bBWw4e#&d*Ky{sx|>aLc6roBd&7*jC%+kb_=v4Py)~3s@JZVk
zs}NMcfzMv$Bz6|7Zo4L?f~vuWKkdXDZ)h8_j!b4r(mVWuIC|wHGym=VwiWj~D9G(}
zeg#45Irgsn&gGZtb=Hq)^*Z*I5waQPx5prJ$-Gi3)+M=)3)ZQbRwd9+>z`6*{Qunh
zPAmH1OZy@^YP0Az6N<IADw)`<Ud+($YI<A0g>SZabl26z!>We0A8f7Odfl578G#nH
z%RQ{)2suM%x?mU+2Fh;3jU5Pfb7sn#TegTOQqfNzUZ1fkBH~C&Zo{h~m_~+D$1txM
z$<9$zG?2)iEsmTnxzDstXhyHQPfspXYE=4|*h=ovP}f)<^tCiPOp`=5a>FzE&u%8c
z>p{|0tV!5~F++v2XsJSFJ_U4a`|)|@4hPDtOqUFl6t;`<P?}RwP!gYg&!RVe^PeJP
zz(J!yK=8`bT1ZM5Z+OuzyS}k-I~N)2h1u7)FI&2ue)qBo?s&arNwjws5;-h99E``~
zUQ7uT1S$bl2_PP3W+kib?d^0zQSf&FQ!d^g9~V~)B#(Z%^Y!&h1M0)<)A;i>K8EmN
zZ_VBHOik?2Sav*>C&ezp#S11!UF*dHB1A7><?<;K^ehz;!9n@iwC}wI7I^1nqPUDp
z^)3QJjDsgUy5a%nfIJnKm?YCw0Mo4JOoB^i)Dn9x7haa6&4zII6fqxFC8mkW+-+OK
z5<G8oMF_iLR}Ru1sSNan#xnTP$59AhWDG~d!yHnl;rxcGihw4(C+W84(9(gy{^o<^
z@mva__d?|(ag;%Y$jBry7LR_2I?cUdCDNPJS2|R8u4sHxcq(vK=v;OhA`zn6Z}5+=
z;3F$YrP{8c^Db5g8;a(OP&3xbPN{vl>wk(ZNe_c&(~D1tL5@hfFS}z^K!Wquc&$4q
zyX)*-PV)$~RK^gSZ%U<|kT9h0LYga|<h;f1dYkjbNKP;^!ZP-E%|3-P8pjToB(Wgs
z-lf@SVeP&o`>c@rW*3n<&8pa`88?eZb{-K;E_A8NrSr^f!iGAzCd_-L=s~M6X4xkq
zjfiD3)|oWC4%b4>>iFJ?bZPgc>)<kG{&|yz9WCgJc6=D`9Ir&N@p5pkJZGijjY)J|
zl7nw_YP7*u*KrTKyXDv3yl$RW+hW2_Q+VrpUZQrD(%yJfBh63=gNnyJJp=G|n+dmN
z&IPx4hlXI9ZNGXuvF^I7PnU&IgzWWa8+Js+sv3-4UBZeYMyQ#?14VRf*5I=+%IMcH
zb`1RxAlT^4-qYK5L^Lcx2NP+9!_M22bSn?;JJS(S5u<gE+0hl1^P9O?b~$Xl5RAyf
zN}a+2;#hWx!cz}xS2c3f<OGGQ60I(kqn7IK$xtvkFKf_ox81ndKC8kf_Ivlhizy}+
z^+fMxGtFQ{{gEtQKf>?dO`lf{n5`%2_hK`|-Cl_RIFHw`aIpCU#xjNZH){QK)Va#X
zRRyJcSXG$KtV}@{MY*5uK<4(4&wce&Jp+%yQRBmHN$H55bqC)FC)5>t6fGT50s~(w
z%2?rMJ0#W}uQ1G4U;E0v9*_K-(c>T`8$rh5vzbv`URntDl=W_X<Z^=ZfG;}zNuRnM
zqW6+QG!p%LkD`p*t%&2z4ovoTO?@=M%ezsGt?aafoV$^JUXgva<D64)kVDuReSaU1
z)IHp-_lWg?+eh5<;1=(ag-B4R4;Qv>yZ7pB_hr#}k1`@ozYuRKix<i5RN{!_4>fYL
z0BCrd?TcZgIE7{!hs1<ILfHpYF3d2+Txj~4^O*|9>ji&LJ=8`~7z!rgh)Sg7^!yM=
zp{9x^TJM8P<)K+J|31*7oaUBs#8}ei47DuIh`%JJ4K1G!7e_%ow+~XSnzWfG#B<F4
z?LFLb?D<y~#-}zl=!BUB#cI#OZG0yzoJuBP1<U_d^thr=oD<3)YeXU&S*5^YOK9fd
zE7eOLWL1ud7z>WC`e@b?iAw5x&e`APTJAk^8-#65zwZqc=Wn%?UmWzUA-kZU+@LvS
zayW>>U~cBw0I;bYpiD^=nVL=?aw3kAf?zfgYu+70tY2=TxdqlDwwagKo4z2JEOnt<
za^$mcTri^3!T8LkpeSZ}7>%y*13?}q+9ONo3-50u_?t)!8ZM-w_IvBhNP0OT1nD6!
zyAJIL-d3x<Fblv#7r4toAt7h(Pt)Wy`AjaqW%wQ~cUBXTk+TSn(903uf-2bp&I0+;
zkNYZ?yT)tr3$*Ec{+ML1o}>J?JR+Zfh#$f4a$vyNfyIP6h{?5Ef}sbCT=mE8rj=>O
zXTJR7+siWUa;h3?;JB>WVDWJf{!fYd?Gg8ohl@du419ZEkTT8Xjn2cvNyfm97gaaO
z#@M==<*WnroX$hNlqEWr$X&{9<=s(%Wr(YS-1;f9d+JC$lG5wI*oIpfW!<UPh;0gg
zsVaE~T*k!vc7JXDY<Wmt3)Hr4dIzo265_`=lIf*<sl7u#<i4wJBF`hY62=?B3h!Gv
z?L09Ts?1k`li7i>gN0N=*`H%<UO|7L@nCb<FzEd<X~53YOgCbIFt_{!Hn}Zs7Cw78
ztyU00+&w=&U!?nTA5FBtbj_C3xXx{AIXI%{(Ou{4>y!;8Jn3}kKWFIDiYr;LQw&Y=
z1)Iwrqr&}|>F#I+RBL7C7Kr5ks=8O^3LPbpoFGNrPxVNx0YK7%1flFQ5eajU^>kmn
zonQ)r%fIG*lAN=-pSTXqV47sh{P}##qtWS)-M+LbR|_}OyjQc!tS7yGU+ze5d4DCV
zxcPiN&ZVTbNS*-y?wyjpU`a9xzSzi@v&!<cvFHVDCZDAFN@F~H&z9xIndL+?WU=_n
zz+ggsW<pZVxVsB!<xM|7+FOvL67iD9{rijU4jvmNMJWz=Yt5Dz_bb~rGHfmbgFNv7
zAHp-u+dcDa|IYoJFW8CS*6gK(fry0gE!q9$QHgNy_%xSc<=gEc%QG@ITGq6#CJJV^
z1L(VGvgeUj%*O$`qx=uXmhUBGvc7*8PVLFBPQ5rNJFX51>X3KsLUkyltgZr4M{J~s
zy~EBQPY-uhe7d?rVr;nNrtiMVr6tL%$(K!vaU7D#em~Qm^hC2t7X&)uC7h!<#j$Zw
zF|@@pg^`e<84e*7M>)+(2zRZjsE&<3Wo)!%`Xo0Z^T41=n7TcpsA|_)uy1d}LR;hN
zDd9j<HSP+o@wm2ICaX;9dq8OHxf-mn%b%Vx3?n>1Nfu8Xkw&AFq&zScW$b&jdwe%y
zRy8A*v*msiah}uM4)R__yy>_cDRmrw|KOz{C>$Y9=C#TrmogS8@qvfu@p}e_v6Bu=
z2DjVUm#E-xe|O`lLGU$=G(A%!tYv>b_LEG$+VGAf$<R!>(NdqW1J-f!z(plhO~r*<
z^>G$+-)6wZN_h3Je&fM#WF#c71iRr7zu02oQw-$x(<i4ZNXtWsya{ULZ2n<XR6M=g
zvWH>$mRTf{gxZt3oQ7o~dB&r~IhBjkgM_gYB@a}8Z(e2eu4laOfO4Cc)|qv(=B@gN
z9@dJr;ok3JcAAdEL#BlP4`FW^6KA`we-}!T3R2vyKyfJU#ogVl$ly9Sw1wjC?(XjH
zQrz8&4i1CM|L%UX_Fik}$-5IiOvq%Cx#yBoj`R2-JB=Aq@e229%xA(yVEl${T?3|E
zI+ZgGamRFK!>bw@2AyYhu(1a-=hiK*Y8%DS$j22&7>&(%P4RwPSRDw5_h=J<!d=tV
zd+X$X>Y@cHx7SfzaS7M}d2~&S;h6WVPSbOhN5+~9>mK=^y~B__FPD*WpDl~eW1)w-
zIwGNLbggAZdUW3~NYfihE!K+S?jn4_yG$X72+d0r%?uajX5mch&&4vS*nEDWU54dc
zXS_vc7@)li9Y@*CdoqU5P^!IXABttijz10wiCrF3QoZ}%v^S;^+}7$mk*iuhjYlo4
zDw=UfSl<*7$zI`(;ERT)s>$<IC5*#>_b?2zD$l8eZgr5tu5^|CI=V}KO~gE)L2(a?
z75nxK+@eZ4K4Z~ZJ|@&OA^zF3UE?cn+gfrxDRuaUAue_5*wC~0gE@db6vPS|xftMJ
zR6@3WuIEzMk{fToCJNF3eO=dkW><zj?=^8~YG8hKsXnWqCp~e?@T_X0m-U<jlz-pj
z=~69Ect+$r--zxlU@~cOL4q33?@RWo6wWb~?Wn^29a>%JJLLHK8rEIe_^w~ljk|tG
zQ-6{R^$%1ez~^xJiJ!yVb=-0@ErOL2q`bkV{yV!t;BjSPcI%=<c6kW(Xms=Lc)_t!
z)2s`N$D(HpQqdmjSK*gi%im|?wZ-~*%#-XVx_DQMZBsbW(|DXk$IOFKj~d=g2L}%W
zrDDbvkrb!d**j$9>=bN$>RA;pG%mc~s)kgL<k`bGSaiV}te^bok2(K5Vg<;e(FO0z
z`z7X?gq>0eJe<oG>m1HiUG5B}^0HO%x49SYN&5Y2pwrCk4OJQl1j3hOGO<nNUb#54
zF|0!S81yaG3^HCQGMXAgDo2l}M^uvpk9`9M%r_w&tC$<2927JwDV6z|;&Z97IGTBT
zH0$B>yvqv)Z@K5aMUGHP3+ir3d%C#DhG`uzEvBLMsb0~M0bbs4%0mI)o}i;wo!Z*k
zO{NyOi&cor0v>LnXu7<^OYH7WC)gvyuQkVWyI^0It@1I(;I2mX#ND#`$hj=IUJfpB
z^jB^Wcr>@lKleMkNPNJ`R(DS;#z0T|qnX|q)7)Vlb?kIDWT(Gd7<ZD5T5{4#guj6B
z4D$||!Q~w-xvQ#3+}v&IFF%gzN`+MFfb+-emOZPo=_JV13kW{4pM=4%Gv#h3`f5$A
z^ja#-I`%;e-0!wgq93c92>0jotM8iYPoZ8{Lw@;0%ztWY{&x%hyAPa|k!fFtmt}U{
zhBO7cB=zV?=+Q`iIS2QhRAT>26)8Cvkh3P(H@gG|DozPX1M1cYYihoVjh#P#5?_5p
z*Ua4_kB-6rrG0)LhV0B=oV`y*R#|0`!L_Vd^#qcm;c2h?*di4k&HG8@_ICRR18Lvb
z7J02N@gAE7!M@JK=cB1`_x!TifXc#AdZQVK;Guf=mXFNET*2F0&=?79GchptOatNG
z%;Zk_L5N*s8n)_;9m73#yJ=NA#3(uaqwH88dNQV1Bi=dwc(Pak<DTl#(dX_VH6h~8
zZeEu_NOo@3H6lM2--?&>vhjf1+D2`csoh}%`<r(!u?C8GRf%KQ{iiadx&7Tdd(aNm
zqA=+5w&cUEwOXPpbo}I3y*iPaFt_c~yMj|wQreCJKrrJy;Ij58p0FXOB<6vHTW5Xh
zn7k){d-&uuRj`tIA8Bn3@eqmTcbhAdVv<M=PZnt$%p%;|JMV-CZ?5!fhheXa3T4VS
zkL_p-Iw};E*VIeJ<agP8spoh}OC#458Oi$PSiFG$BAh0CKS7-?B!(3j?3ncy%u(Am
z#=8Pat;^*<`glL0HqHksiP%$F25LiA^6Seh4C+mRBou77;y%Xb1v}34pf;{wE;WW`
zQ1}2|m!&o5u-Tu9QMqO8**SYZCL`#c2&b3wKR}{k7f^Zcrs;kv4@(6iN)c=>ef&X(
z^D#<8dwEEM@B><quGgK+Y*=88o)$Dqs>1S$*2aAVOFs+FSQ=Yb?&ayXWj{ll(9KAg
zwyM;ILi$TJh5E$13ZG1Z!+cr1oWmgF%vfi&1=n`I+a_ism44Kv_PtkWoX-89Ex^<^
zp+@8Mq+7q2ZFD4jv=6A&EbHxgz!LYz@4;<xg=Hn`M<S@^y>;q(QaLOEpC{LL67;gC
zB=8^7O%S>fPFqxwAiLw~LYf2e)brBze5@;I0{5QiY4o4jlbwc@QrTW02kMfk7(Vvn
zqs8M}jwV-s*7dU$u-Kk21=g~L{Xd+@r!<_XK@viVLBTkEVP{3yYhPC1|GFGMX_kai
zA;%u@DaQ^@CYEyI;*p*tFKgsle30ZK9Qi4KiZeRiLTbnBaP+C|%zuxI5|kg{cyF$6
z|9zT&go|9JjP!}`EG9)W7q<wmHJWlMS;=ecDyX=*RZeereuz{~n4VO}FOKwH<yX89
zw*!$z^SMV|+o>SgHw^o-z?hu{iry!csTAAAyR`Lf7co(LRD%8I{A>D<jnJ81>jMw?
zcl)1IYkHBeX3t;vg;!8mI58a@&#mI}m$YwC9L8mbk=YvIqjo-@h_4ympFi)epqD*q
z%+t~-2Re^yUxzSFBBH6@zqM@Qlvi^jEDfZWzOyu7Jxv)c4}Dm5yq;Azi)$M&>dWwJ
zq4cCJSY=NobE)~vHhxJ9su2c`m<g-Bh5xI-4%A+BWxkiq&9KR)O-o$jd590yp{F$4
zn5cggOKC=C%-cFPYJ!{XV|hq#?f^)1zoXV&dv1Q+Cnw{zpW$UsiHB?(>FK2}iYZA-
zC!wK!!TVInyACIkxG!VWK<>SB7%j#ftP7(VS(xo7s*jK2Av45fl4+U3*txv6Jo(uu
zR>_`M$0za%(qF=Tf5tl1ZZyD)%$Jiuja6gK1&rpJWW=jWElJ9yE%OMn^KfMA{De7B
zL8lTs-7ucHJ@*P=IB`Fjpz-=Wy>MV$WTs;gZ?WEP9gL$&8iG}KObqPoDhQWpSC*BB
zNRwzOIl~WoQ0iQhUrA%dp>#3`Z4*~6c&`6$(L&nTOcd}@dE73q&Q9&G-Z&E@HGT)G
z0X~8?UvF1sawaqq=$^$<8>#pP<$T*jQm5HPl{XCMcS?3U0rAWwl8McR?^Wy&7?AEW
z)h*7xnCrK1P#eX<NMA~Bi%VxQBcPz=sFWL<Nsc%!ZeDg;!aj!{%=Vs+8dJ$Di)d_H
z*3|j?f2D`qN;<2HT0+Yn`ntl42P>S;=D=%0bP#@@`M4U=mPbjeRcKm3pyDvHsR`{K
zpZ$ikRG_2R#7Bw*9)6b=gy1trgLS8!*v~eh7lP6!3<p*Nof#|jB6+Xa`xESKn!I72
z4mvWZN^(*WH^?-9#}AxDZ_QC1Bqr35XU=d4DItyM2s|9(=SUzSJXD8d=3??Ery0jL
znC%q1J?iZeor+>D;qC=a&OfAn)KbC?`OXkC{Vl}ccOW+wKmX1B!_{_5h3dnp2Ka+l
zjdg_-&=CpG;Iw{=6vm!b#hap^+e~eEp3OV@<>gUm{-J^sC-@;J5S@HMaw<?$xxYx&
z{>A$~uR#_q2SdtBl9s_pBWP$_%pDQe__p<nke=gOREm1%Sis}+3FhWz*meg0^i^9?
zc6D(3YWsXioaH5SHshWy;nI0Ke)ZEq4u!~Vv)Kz;9Ru>Ot#s<B1buU0DQP!)*0~{!
zrm$(Ur-+D;`BJ9cDNd~2kf0&0U*`1f+7Byi4O3rM6qT`Q;wYmQC~|RdYs=6+Npl;K
ze=2jbob-L;9zCo<=2ud1R=-)TG1g~o|H{gmZqYV34vQ~6H!hy@P;a>TNMK5=Dsxtp
zIeyPpB==qjvQ!M}H9Aro!5fL^<V>%#!Y{E*+IBt){`|B1`H^0O>nk2li-BAG=FuMk
z>m1F`7J)dw=BbX54{U3pyk`yiGyhAU`VXD^AD4n(SFqAbC6E-xLXSH3?UYFH*|`Wl
z9Q_{L@uVLss`-(iVRGi22}}%zhKA;@wRzB<?Ck8s#>MSia%t3<e$e$euCrJ-j^Gnx
zY`gjhjCREOqY%qUCon+G(L2Kx5m9gT5dG{d_K2!v{jp$j>d9Lqn{va|y0CZB5=^Q;
z_GtAP`&NJl5_zDUSk+C!Jdu{A$<oIgN#$r?u+&kT((noALn)U1g{4@jv!#8u-LP5%
zU&o<Er%z|xI!v=;QL(-iEIUz_U0S9;g*jqh$d7cIIGG5yVpAK<1KZ^Qg%}E~u3XKo
zu6P--MqPB(WROczKXt*c_%R`|3bVx8dkb}Xxp^zUT`&(T0gh@@u1R?%B4u9WDk^kF
zkS<-;35h~<);MfKj5(}Mqby@(K3Bq6Fdryqyudb%0}c$OqMzIw6;(`*@=NJOyb*Eh
zp7hZOmqF|`<>rqFm9qv6OI3trYL}{l57&hHed#8Id?>sg<Q@H27Tc$$9=dS4Md=(5
zJfWKMewJ%RR-<XUjnV1xR@ZASW+=_u`IfPEa+uBXE_bgeNDDeR58Yab%WE4E7!pUa
zbzD4GhQfc4abuik^|~Nbt7vWDCWP+PuKciAQ}Z54&?#C&cRA&eIkh_k0lgNZ7R)0Y
zSE>T!1n?Gt+rD`{bvZtFB_n;iMfk__r`@U-dt%84ESk0|z{l|p7x`x~fCu;UhDkl-
z>?ZroA{JBIu7B=vC4==gIMC+$3dte?aj%sSF^rv1H`p;3?ILS&jD1h-M`7U8r(VGs
z#GWVZaQP|m2X48XazxlNQshWJkH)bs9?eqfiVQD=2=_qJGH4i-KyK2ycSbTt^{I^K
z<}Qs!XP48o7d386dxeU^q`?o`*iC07i*|@t1!)oPFK&7?eMmR`6$(7U--3@ipi_^D
zR?UP&vi>v=l;S=6KWBm#O}E8OPUWR5o@s%J(B?Nai<>iYC2KFGL4%XyMfatY$bRG+
zkCdb*UUA-@7||-@(O(vM>g^un7jY}|<moh9FE6orqu=QHaPQ<<a(*$bah+VCFOM>F
z<%wHo2)NLBybalB)`b|tH?9-s{)DW~tIpz#<dE8G6nmV0Y3MM<N~k%nZB!XE%-Wx1
ze@j0azEpWZ9fBp^tV@%(Xx3_tX;nX?>M`aUf8WFZf2cx$t;)F$*BcP!C`L;qhQ{U~
zC4t2>j7dDkefW)>W6dl#18YExIH6_iCbq?<l|ni`5j&d0YGLB&>(&gX*S(XJgoFa9
z@U(FoIieX*9)8PB<M*gP&#n@uu=@U09lfxeyezQKJ5@<b-hhgy0YAslQ=po7%PBjq
z+^N$7Z)?sxaP){>?rHh+)H$0h-*2+dA>el~qJ@fk+tn_baTN^QI;P9ssRZQH6!S$=
zLG;u`sw$N!tIyNlwy)-`EN8bk$-Y`C`Yp&<q7_QeDEJ5w+=ae7<}OIO-s^6ftQe#I
zrE0fibU{&QOqy-@k|$2ddff73xk-4Ne}*@gkv#P2#HmNDN^7n~H1dl-T0YK{!-<3i
zh}<Yz6V3x=&(I2^0;h#Hp6&v~Q0qXf6J{UgIJ2sOot5jC>VegjR}v`?l9RWt<QVp3
z2ysYhroJy-kjZL@tVyzv4K`U*EekQ@@g&kfxOSAWL@(u_Fu>HLpz3EU+fa?hAzl_4
z+&>`Nx3EiHg|as(qj)$^o{R$bNn!n#m3iag2cik>Abe304v!@`tsAxwZ>~^`DY8SX
zs%+AJ&%3gS8IQFPTW^Vm_0QR|*~F`Mn154paxUZ?Jz?L74wz!ImlvdWmKYCE$<s+A
zVYIm*P8q+jxyWr?AfXQG0lvUBt-f1>YF0*FM13i(i-OB*;aUy-^}%lH%WaeeF?UF=
zpT?zpIg{-%XAkFx8n)gK%DoO#>|e-qf+R#GXsCxej0Lxoo$*!NjV<vt6P%{DYN_S2
z$lx%u3VFXh7szGgxd_~62ffap9B5SR*$-Y+9yMkfZcDiE#EDAXf5z{BBieUV4#AB6
zsp;w#$hqpwz0G@uS1!#yz=9oAb7XYS9^ymM8>K`bzvJw%JXLZK)X`DMZ%Nnc37-Ma
z5R}HL0ydSYX=L`E{n<IeogavZatWd#M)A0;4UL`J)<A8F5TKE;IM~e&UEZz#3s53H
zS?6R4t(_7hl-#5f5<^qF-Z0U=$E1=Zm!h+MjoEy(A?d){o>M4$N!)OvY^^;llY;3g
z>VEt4m*2aEIK|zC5aK!eQfD4Z-Cc*sBpkBo<M;^cvareY%gj3ds+Vr6NQ@*2mVmL$
zx(EI}N40{eHlU<Vmab;)DCvuie)oXTK|1tM7Gry>)$D}TcHW=B3O*u{k_*q<%Xm>C
z%$<pO%JOv7CiE$Y>CmjJgVvf)ssIz~<n)?fgzI94l^6p%jK?wremFRW6pBZ<YBgPK
zzaz#n{r?|1x9dW$grssWm3c>v2sqG7m)}&UykAUXe-6{i4R8LEfOgssT)3%#|A2e<
zAMxkE?43R;z@_ITr{%Og<u6B%!Zda`+Tk8(6aY4rl+D1Lo9e@KfqcUP3i#(&b+ieM
zQuBxANthunw^s+-_tb_tfzMVI*6ab-sFV)erpM;(P2=;yY8Gfz7ov2S<&ZwvV$1g4
zFj<SboXq_6BStHdy_NR~m$}-7l4zv4^851PRbE5&*F00mdv!UNa#m#2X<?D9W7a_=
zH#;u%gVyZ5JBogRVyn9}#V+8rgL7UtE7v-wQ<kM6y`1K%+IoWqk-ctx_WYu98e{tn
z!vt;emZqXz<J}gmT9R+M@!_-F>7@wGcN%-<WyYKmS|iN{x+R}MfYaC5xT}q}(e|m^
z#%ba)57|dWeT7KT{S_&Jx>R?zj!HkHZ1OmglDNZNn>!x*69)&wHM@Kkm-=clq4H`6
zEH@VtA-e8rLJ#EHrRgC8tcVB1s;+wfHF$AN%a+}_ZKE97&Bb<M@llKM)<*_D*B5K4
z@0{Dw_D+d!Y_`7PVEl=`4ji<gOpp%5&q3VyR4u<dwQJpS5PeP_$FhCQp(pF(<BbV)
z2}_=~+!rP*YqZn+5MgeJIH!zUq+%z3L-d0XM(4=Z&c0cn9A;zQovrAIRK0FQGuZ(Q
z6~eTGvyJ4tY7oy}E)Uc}2W*!bk$ARmVT2dY?H~6ySxx^a#5pXhC+|}|--v>XQVY|C
zg}>7<q&z)b<?650r2dK&-w&J3aFZ!;sZi14w9WsxJA{nZm%ei~h{=oMhWrQ0lWEI1
z+fO4E>m61Yr*dW;IL3|gNLUTzpwX1g>RQ24Z)`#-DzGJqeGX>M5819uJbZE!gF^EB
z5aV~eDr(3QJ6gkBI*x;xsusqT`4S*yMth><BDpTwIO|>gZ#W!=4?0vVRMsCsR;-tn
zT&aZcVTs+@BT@0Tv6EjidHfyS4|K%0Q$sIy<D)+=AwujEv~e{0!o_qo{k4{YnQEFM
zRmL4Pr0Jf1BhP_U>+%d8!?-opx}B1bo7(mSYY2@7M1>7D_up8QH^}MAv3VMgpTmM>
z7`RQwUUpOVCc+8D&99G`>0B%F(s*iS+Rx5VxxuC9mqSlCj7kqB#TG@aD^OiVW@fP`
zJ}k8D$(*L*G{uVie&?F${;-F_>gvg^RRWy<!(EJI0vT3rwaY*BL++xm#5UwW4s7sE
zUJQ%%qK|G4!Myatl<R62RAke<>1ZZ=l3|0ATs-{S4GcJMo74Fa<Hc2f?a)fSR73Cr
z)g=y)lGD&T>zcR!rO?)MadGW(t9{*g_++r0Dmu0nl$y;k1>GM-_NLMa|Egu5$HiuE
zUu$in$!nw*ALr0+he^B{E$DG%XT9$kRXXx>72EpMO4(M;U5fRfXG(&&_rRYbkCumx
zd+%E$Ux=<Ek0!xP{x%wwsJ$RY6=_ROWT2A<>4|!vHgOB5(kp#ITZR>zU@a5nhLYW6
zC($N;gP+t!GuPg7OB}Xt$mpF#V;@L!_R_(&pg4-$fhyyaKA7K2NknUju&Y{Y2asp}
zjJ4Ms<eeAg`8xPK5Z*JF-;^<D6&q9y49tWBk04SxyO-yL0??wf`e(s-0qaoiEqI)<
z6EC1rJ@@&-(k=RphkVDv#pv5IXO&^0at$n7$x_XRN%Al|OY5+wEhndCS@o1HChF4x
zqv{}ImZ5}KqvrGRd4VgTmHC+EhU$w6>smQFn0;&~YG8Fwf5LZtdGcFVNuF^=T5}~D
zR|a7bx2_1+(p2_Iu`^vY8UQaW{__rNGvNm=s-Kz))ZINUbDopsCnA0z%*NoxlW>!e
zeR<C@*A@<U6a#0BSg*3#8=KQ{u#MjKC~V)6_hR~XEI1l#rGH>9L(~s_;M-^BEKkZf
z<3^)vjHP~1PTSt;pPN_qPO;)zQXj)iCXII|U_Nc>aAAK5K+XkDpX$boShvs7{F>L2
zt#^9Uv4i~!<#=H)SXdmvP>~}VA&t|@x5Q-+z*Sp$J-_7cvF@9`b@LJJb9^f8CC=76
ztS?fBmq<A*iD~(V5^wCCyg{>g5zU0FiM_;(@98(Ny_=cu@h&lZSfg0`FEvW3vfGO2
zI59Z7#}IpT74Cz#7;<!M*<_o?Hf)nK+}d|oi;U?}6GX_RIOD#fVPa7jl*+Q>-QYTB
zt2SAdbd!0qUgJyO_1331>GkXMYJOS#lCQWYqye6Dvm+&Vw>trbC3|M5pe`^1BQgHh
zv{M*|gUSCl1bx>KEJgE~Q{3bzUf@55poK(?I~t#cN8t_*Bt2Ptr=5V&XI$vkcFs)u
z{=OZzCr*c3?USbPJJfw{*uS<MK%N=%Ezk`*tKMQma`pb76hLRbpGcaE4-XHC|5Ul`
z2!<r-0rN%ciS52~75eLO!n(I!mvwAS&D*i>bLcc;A+dP+AC$$uwDt^HR`+2GVY0Nh
z&hQzZZ}si|@B;iicAEugx75A`;^aNg6e+8+PzR9b2*4@sd7@45FH7IcCKPU_*7!$1
zHC5;ehgfEF`bugYG@jMV4jhi*0ML`kNpcO&#htG1_s74vpqb8eD~-SOeWNe52<72G
zzuNoQ04=XEcCp^>Rr^9?T)1h2H>nL%0bN{ei5LNQG9Y5FnO?A}o*5%Do*(RzvMWGI
zl~~G>l|8(rQ7DQ+pVAfLL#uWxAg#~0+hrYIx6Hj_37Bv98qncT|M-wtl2)&z)#*mG
z+Gek1$vu#*YT4V;t2&n*V*ixQjlv+-d7S9ztyq<W+~_i{!tHq_lH!5JA&hn;=~)MA
zaTr9m-;Q(4pE^h9O50k9PtgB1Mw_-r4GIWD&0302Tc^&7<78gD%%QMIXgm&*HUI=M
zqN4sWY<(4z*DreR0p8B*5wU0XbFt_7gR<c{If{CUl3jpEhHy%KX@BnibZBc>noGCd
zFR&l%<suOz+_O+-$5rs)by9bed@Q8I@N!Ym;CiIr@~jPgbj1L2_F(0&AqvX9WL3<B
z5BSvGBKEIXby$d7U(_gs;@YR(KTQs$iZO@W)XLXnDiNJ}U0|*{9ed(&7giLLNtZ-2
zr>F5z{7H?h9a<yZi?86+R<Obf+0JS30IjcqcD+yI!qXAfo}72;8v-YBAW!mhHI7#N
zvT2;j*>`oHO7(qil;grz3#TXZJegDaVR?cG)K=0q#l^R@*)>x7Pr?l!e<{SLxVFsA
zdbPC38pY*ZQIQ@L*Wj(-my<zHnZQOEirI}U!#TBY472iZgIaRXG~<mKYio%+BRzx2
z5j5d~C{|=;ra`#6(`wJ@p498gWUYV+AS<osIBl92k>_}T@8+_^#^MLYvw6;dkFv{m
z2x;*42lc(;#MYY~T#uK?FKv~VE;;`2BO!fCr$JO|Zbu2tWZz;d%R@M|>+=MRJM!>L
ze|~MCij0pJdwCpxDb*Qy*(84M;$6GCa&iX<E_ZBmUj-f($A4d(8t*JwR^%-#XgCYP
z2=$+C<8~$jMcx1XH_?U|7}PKCeS!Ybu@RVpdiI(a;}D*wrJq@<v(z31)3TO#JiFs@
z*buCLO)Hn#qM@Z#eb8+I|8+ZaT4O2E4IH1qRM*MMpUn}EAa0FR+<u?I?#+3J)(QBY
z^Lz<*Roq_Br|6ZI*}j?{UXht^E+7ZIo)ACaFnuMgeB8gCRo5?qUOzfc%W_negpK@=
zQ<BLzRq;PgVp)2$LkwKbj&}*a!T=YCy#K4E0}W`t@6W=Fb>s@c+#-{Z52rjXHKUP^
ziO#jF=OnP;>dTFgQEy4h@rXITd@@zlv^TxJSl}nd*J2>fLByrdYGmT`l<<-JwY;wp
zKXyR+g!biHQl4D04&<lv+fs3`@j!M8`z55fT;2eoew!!AGw)XRTlgEQFq@!@h#Jup
zX{MrxROzK%)vyOwSz@*d`-h{+e(0(3C}qOrD%yxuuspuD#X+i5*#Nk}O5*S^G^v=D
z&ygLZ-?24W#&4B8a4p(mkCukuqkZR}G`v8(w)Ot=`Bn;XBJ%g=+L(|%vf|>>VzqLo
z(Wd6RLunCr!mu`k>eyEb_etYpF7!yaeLIz1X?m+T>LN4##s<hO#K9U24=Ux$q>4E_
zi+l<MRBfwQq1Vq0eRc90NEt|}4jMXJr3V?J=4{{lR-%7uoqUUO^%&i=pw2EKq7E8f
zwcTvRl{(4?p9zrldK@1|9PCo4Cm+8J8K2AoBXWoFhwU(9#ZUp>fxDh>Lb%sooZ6~N
zhNe==5Cv^beiRbCBd-5Q|5o2V6azsLZCaLy<L9*TDQGGIBk*>dr}w;)Han5<@egNC
z4%uvL^274BS7_NN#f=r|2crQQBz9HXvgRgzxI6zy<^@{5)~>Hg>Lbm8RAH#Q7Y#G&
z5^qg}E4i%f1ma8=X)=?xu~P3XmH{1?x=&eL-3?!1owv&gpTxy}F;0(>@OH&%vz(p0
z(}jq@o;Q|XqmoPrt+Dt6W>hwszQg)}mw93EqO3hqK}|gBP5)@Qzy~pwjFBSGqoI?8
zBjyv9`6*ipm$=d8VZkU!@7Z=LK`PHjw`B>C*LOC3=Pyq07_lX*+M@PYeFu&V(Z1q6
zd99C(@uRe#Zg<^Ular8%A>DbbcNVe#n{UFSF)|O0zrUie?uR#U@XB7+A7nMI$d{V$
z-z2yG8K}JrE6}xWN>5vV_}8Qy4L-Bcr?}Wy1;F4vz<~KjM-1HMsLHRSPMeB~JfZ};
zES(z{j5~YD1pP=?2IrkH4&_2*z$MTL9oAvHx{+|$HefE1->aD>f%qIP9S#^=69%k?
z6KFgE(|z-Y>+to*KU}c&|0q&v4*uTA2%zbn8G(spxA$l`I1(3W`qi_@gxs;-FAwV;
zM;z?APXJ1_2rg7CiH@9{95fh7ddO@!N7wxF{7{sg-L3Tof&~k(&?B~VRa8WLo-Z@#
zJ(?jj`s=$du(wNPkGpgb?uun+9>&F-FucL6^U()7quBMnFiVrwVE<fQW)V~#m+H>J
z2-nB+0m+#z$XuE7f!3eCCctVDkI%i<f*$*$9x!(&;4XxT%Gm)|TY(bQ{w*7ChRX|a
zaaBkRzlDuEUfwxQpC{ZZ!%I9l*908E06SpsB}tqpRIjQnla&JwRsN=SIlDSRG8J(1
z=}CndB)$M6WnA^Tg<nafa8k5@Ax%Ak;_X`!YY6jHwXTs2uCjaxg;%Bax4{ZwG;{A$
zMF;;tU0muWVnqo!F56p<sdm?J!cR4~Ld5z<(nqpmK_N5V%hNZ>)3euJeZMP=;(k`9
z4Ur9?Kc-r#K0vdSxx%hLsq12iS_E{kEqgK2lGQ`T$B_aYmt^V8b%#I$cd(QN&C`r+
zVG^knJY2O$tGV-M2zaK&C`sLSb|_KcP{!av(U~IYJ9LGgKIHk=RBi2U50<j&9a}mt
z_lG~Vu&3P=6jY`dV96M)B03eG=h6)~=kAatqiBngMMFOu)p~f>YUG7r+UJSb*`dn*
ziLH(qh)_7OlrMK(OwF!MVsrkv6o1t;-rlTL7V>(nUiSgCQfT<;XO*^%M(0Da3koZb
zmB~(vuO^Ld<q9G6(!(ZSeeHQr=A0I`pIeR?6qcN<Rd=`3Z_NtsRiHS*A19OG%5M<R
zDCmv5NRnK_Ba;Lf1S*wz)tPyXE`4C7ab$XPj-7e_n~9`T?$qlsj`}b(I5bn5D-8<h
zPeG?Y$caEnwjBp}(>oUsTX19`4n?ovMaF`l5>DXR6%LP{)++2W%XoObn=!QDYI?a`
zeU;8ka6h>YKTbG*vVv23ES+C5h#<q~$qOZ_E!PekTh_jFrR}uRok+xh(=QDJ!66xh
z<PD0<Rcz=7deTBUU*M<J<hY)o4Lq`DU%9CE#_V4BHsJ%RtII|U{dBpNxuCV2-}GE&
z3GUBoD&i7Vm1v|bTuz-<#Ed0nX|mU&dJw2@#{Q=6YtLtnH2msPj<*ZRjt;Tcgj^`0
z=gZYrrydI0{rgAF*)1stU<A6Yh>z`XKaX)8sUVCD?{*_Jcsnt$POLW~T-VA&?H?)Z
z4c@K4ExCI{50D6YpKwmMPCc-f+ahyZ`DpB{{M%r2+q42>5r#Km&1Rq<P7aCBZvd-6
zoSeTH4KMwi{$_H3KD?DrrU1Kym1aXS*RDm|bvck;&lq=SZA4bb7VonDJw&(9*yGjs
z{N?JbaYJ&5s?I^v{7YFmP({dqvCuRBce9gr+v4cMVwzdN1DA$5j)0CI1I>7C^2y>b
zVg1FnSkFr~Y#=L8Li%}Z1SQJBrFQes6a_hl=6NM!@MnK!Aso#Jc$FZM{aB2KuRY`=
zARUkCNcq<GAbiU_`Wlzrn*{C)3(IVj)RL*?dt!ba>)pK;ejlxyr-^yMGe?|UEK~s}
zoPZ0KbQ|T#uk+mZzf~{)dZD8Nmk!uO1qT_%&>`QYDX=O5GajEhqTUnnY8;g2%OnYP
z+|O2czC9{E-r*PkT)<}abPy1b2@1<sDX6HXgE48%7pqOMF;gzNG@F9d(h&@Ag;BrI
z+=#*-{V5eZ`X%_Ilq(7{J^b}o#f$`)Y>3W!+p+^@bvEjJN}7>vyozJZwMWMmM8U=u
z=YD-u)Elw}{e$pQknSElJi_=2Chq1><thVgh`Vgwa}=LveVbz^Cee<5+N!K}2(nwO
zt^~do5f439&27l9AhItr50$hzh%n=-QP;<cQ&iVxo2hB3m*UN_s8G*YuE=%7+pw&r
zN-yWg)PxrAM75D7+{f}RsJ6NB)z0lX9aeTzg#-St>OWkZCmp}Fgsv0V+4IYhkrl?G
z?o}DinIzq<D%>oVYxtIYGVtpoUIJ3pf$_jgw@=+IcQ->GmLsH~El$}Q{vG%}r3`1<
z0~Q<mx+=~95dMx=$?TdIQHifdoiDzIQ`7g1*Wg^)L*cQ!4)S`hO=~q_iJ8kj#YI3G
zF;G6<t_!7+_QJZ1643EZ_2^f*f}x{{5qGpVLIGuzo7>pVC+Lgp3C{O4+KIVB(;^Pc
z1llE$hNm=~D5<?ZAc&S!mgKhoPOS|b2Sln9ynOmvb^RDIl6kYlK1F_(WT=q&l-1V*
z5xJw<E-A;$H5a=cmPL#$gJOOGil0L!PYkLuek=3e2BoCCNDN!r`(hX-G?MB85*Src
zKi><~a}$GCA%kst#$>H2-1ZpOx8MYq1nZ^vrXYh0f6Lt>=Kjh=C88}0YMr(LHg0VD
zoZo^%BEcD6(6B1$pc6f_&CFc+`0MTs`Ije8^a7chE;kJ{nDVG4ZMb;#(G<CN3@PPP
z7{m40dJ(uoZl7S6AXvZEQ0%#`Y-$`&VJN;<vB&Q5@Y2PaR+AU<5^P}%zt$X|2Zj$Q
z_-pI6YixXtC{6m^NX7#iMWqJ0NV}Ew&tWozUu)=4Z;OffRY5+#q}c_8GBPB#r%zv}
zBZ#dF_~jwOg~g6;WiM!wYV}lT)^emMt1Y|gPH}kLFv<n^OH9l+QqbW%j!T7+xoROz
zAq4<=u&q9+&=9W;Iav?u2~Xm(W?#&OoO6n(r}-5rb)mj7+V+dtDeuOg&*hIVrlvhs
zV_G|Oq)2c42D{-xQr}Z9`J5Tz6EE<mddZoMZJty<RoQbBRCO6J?N)Y)#0bLuh!jzI
zwNpB~n@ah(USV2XU<Oue;lZ!nyfMfxDJdx~=^!*!eJZ&jQIM&Xy*DFmr5~FgzFS%|
zb8LQ2gPSz9eUrIAZh`5Xp1C!)2DAatOk7O#XX@`E#~-ax=A0*VJCXz*kvbtp#<MWz
z2aZiy7vJ5+;JJC6<f7zOCfB|7XIPB2h1&?K9%Vp970f#qQp2)@9)38nR?7C<fD3+Z
z8{d~9m}PFf;#>d+jzMf6{XFLPX=3iPsCepUdW3q(6Tiie=0zMPRy;b<o#y1PY(tq4
zFIG%1*8$gJ7xw9YW}Gk?ArW{SRfPwl#c-h6XXOYZG~|GHlgx&(J8ng5z}-m90l44?
zfWk?r{&Jb|(mFF=qDEnX%CrWMk)qSm=tV_Ee?ohQa_Z?4j6=S2YqJ{Wo?pMKNXqPb
z=g%YC2oi~af@&usEk48kKt4b8fb5qPPQC^W$5QuOQ->Fpm&*YY^Q$Gkz9VDb;9UyV
zpRXHsn)cGA>yzBbW4|WTczRg!L*WyCcQa%q@z5DpS5xmb3Gugp=kvHurK`H26Bk@#
z;M2ph{^jiR%0QjZ)H9H*oI-^vKQqf;u7}#G-1&*_23P#qYckNCMCRUnaa~=GyLwg~
z5ehBVa4#cpHMCNCadS~I&vr_u-Dc%!=E>cTu4GG};ZuDOLi)11hu%j>U&EHoWSrXg
zr?rl!2v_#@T%D^?w``C;?_uAkNnU)lU~$n%JamR?Bv>(8BNhA1y{L?$g#KCkS>Ce?
zL}ft*b;q5>ZI}3=`licl&~m#6G0fAZ>poUge)0lCS)ii6x%=sh?XmooXA>kxnC*w`
zzq|lyJyz4|>A9XDQg}o-eDcqfbL>JoDV7y1dY<OXmDWUu@b<$Z=#pH`Zz&)(mW~Oz
zjyQ7J(owykD&@Y7?5Vn3L5-t22Rtx{Pd3kY#Il?w9&UoDSd4Ei<LBqvAgtcdygl4a
z@-J$Z&(~=lY1Zua%d04yKL;IWeTjPYpO|?oygealisN2U@e|^-Mk0kESCF5XK%#yh
z;63e7FWDpfhxo*80ue^m-&?Q}eiJv`ZF=|k;&Od;`|752`hH#i$n42u8BUK54R0Aw
z#8K_c-;21kIIe+1B>fx}npXd)p^O3BB4Ck$ZoU1moOW^M>bBE&F60(FK$k8889f!!
zY1^mAy5WhUlXvl(SaW$=&!IsL;$1)A|A`>=pp1~UKDPP*)zBSREeog|IRl&1mxmL*
z=4IeNTW|!|)QD)8;bE=d^+sH~zfsnSczFo$I5ssyLdlIN#1<p>4Bgd2GZr<e<AT@b
zJZWS@Pv^FO%KCtBMEFo_YaY!rGo8DWLigTSzvA_BKvngl!3@4}&V>$f3xT`WtyY<~
zhwO_?mCI`(&TZo00Gf=2NP5WiQX}<uwdRJfw5ns493Sv9*oyuNX^o0h!BeO&1y%aw
zRE#jF*~c0>XzA{;Xl&n5qjdSQc>!2CC-7K943K^lEPq@+E>CX>mnAMP^+*B!*_`my
zhP-0U%*TyrrE{0as-ilW)8Hws*S@EI@kl5TmvGXqN_0QjF(Tl7g?TrC(m^NxwCnSy
zO+7t&p15_I`sS9=X6lQ+Gl|u5{pfo<e!!6BqWc{q=N;R<ZBo21&$p82)eb1JK-AKW
zUR>}zalEfBKWR(GQ;e0z6?XN_P6zi+63LHAu}*gqJ8{RZ^+Ln|ILAFI9&oJaLhfJZ
z*n!La+>UQ=&@bM;efuZTI2^6@E8qYsw~)M4ync%98tpglCmBNtEs6px{m`S}2Yx6h
z`C1b{?TZ6JOu=}IAmL2jKk_NB(mH_<Csk_w>BMDQBy`~n089-1c#R-~>lZ0Upx?L^
zOq+VovFfCp8i<BZqU8xVrloxWEN{zW<S3$|qDZOIU9-_eIjTNf*>86Lq7M7Du^<P4
zz`JlpB`Txl)){1=CPt`BAEEX8mxaD8Pbh|Y(_VN(DyrcyoIjOx<FUCJ%zXj-{-x=M
zScV6jGTgkpJjykmt*#zrn3Y0G4>TUU2%n{^q}@t9JhJrsm0?I1x89k*s%p`9>p-iu
z$%6Nj>HeEGDmXYq35-g)zJ0PZi6z$TdiWlPphgvhvk@qaccvWg?BSh#B|V2S>h+Re
z<;g_DVx4T%Q?qEA?`nX`()e6u>0zCS=iy@MNoIS}dW_D-z70=<M)$Uvpmk1GTSM{7
zF89scW(-3z$>tPwKY5N>hC9`9Ad(q;T})rhRdN~wkzW&kXjUcy6ld~Qq6rzEu=i{c
zMo%J~Se<No_L5ZSQOLDky$7$MQN*|>s{yr4HeH2bno>4W3|d?3JfH_{U1-^J^41GK
z$4V+-eC=|w%II;e#tGZs#mkPkn=ePis7x7-9mqgiTx@dM?i>EuhUtbc*4nJ3(E*qt
z{8C=4afpYv)7f=M)RW)iNY$!9_S?lnydb{f2owLva_J9}l9G-=Z`PSXkir3<ZUw50
zT*enk$}q+l-&wY5H%K{u27)WRwGD`krND08^VBkfJ#oIRO|max930|Vs)Mi!E3v?&
z&Gw)!&iBlhZPdypxhwuj1^2Q9QS`%UB!a4!MqJ@nf-EPcHe~iPZ7!h**Kc5aSX<hQ
z`h&`6dg7@dCe-d8VFv{S-AI3fm5fE{h73i5KCb)I*H4Tr^vc}6gp|4cpiB9<2eoy9
zFF&g0eWhN#PV~3|r%AAA@TBp$l!M$G-Kl5JM~P6LUK8Jb_k7$Y=GY-w^Swp!51IfI
zyx$UgAKPPLX_;o<RpE7Psiavn$vA^bgA|j#sr$<3wWjaDw7}DW{KbSY%3^6Fg@}K~
z^Hl-i=^HS4|CaX?M1LfNvE95Tbw}4_)#Q45X^AF5-@7Ts7Cn&R5?bM-n=hYXQ}g@d
zb`pT>sC+z+@ChApsW9k#1_t`}$?~m0peSG;2%$0z<F&HtI8BOz>qagB-cp>v%iXx{
z1v(3fNG}2`#MW~gpE6X{DCrvnm3htca`flK+~2y$-6z_Ba~-^Yq9%S-hwZrSWBh#!
zL)OqJ8gvqkbNbyC_1c&C@vB;SXqW)G3hT43p0ctrFJm)g@hU*z(Xi>H8S<MZdvDEt
zfDk-Qn(+5~%bHt;7G(pYx)<nXt*~y`dahZ@#KxrSkGmW#gzuV;>z7ljPeg2N%7LQs
zW5n-7<{lBTn&pXSpo;rVh_@vz&42*O7`yWC`y~fFQ0Z@J_3whIU$?&i2y|II{RqD6
zM9B`o4fz5n6rECrG3T&CITL>~u{#4`BA%4{CH;aeCh4y}96mSaN=Ni+n@0J#($eZ?
zYB1YDiUYGMAO9$tfk;2pgbmsv3a6z`F!5Ao9U{Xy55a#3uy|QPL3&RE0|oCd=ICXf
z9r(Hxv*vR13!BIuZ%vK|vOtyg7n|#CSJi9-(&@c;h`pA(Ud5HKR&>uly`Iq^PA*!c
zC3*^V$ETj}DilDgdhN#qllAi)cg)|e?QA$eUjGBp=XF={UqixHXIl-jd~dc`l0T3M
zxsvo2G^lCMliXg-R#t=^%GOl)qt0p9pMJ?`pR3zRN!GSflH)b4idicl`z^ev(S(fL
z*V#7ez6qH)FhPuvfh4_x3%w1c+;(P49y2{0a5x^Cmq>934HOi$X<j^`RoE3Z3?>7i
zq75v7#%ne>W1TED>+khM#4Hm$LKIHS8}~YKw1*YbhS$R-z4bK{2|QV;cRe>E=X82U
zd<+hxVb1&@xD7D8OlmxIx*b2k-*5gPncUDsV?<$km2s5Ur6^8l0>2#tMIg=mD;n9h
z{s=2q3v;?2P<;Zwi4Fla&<hiz$l2EGP<L`urx2V5+jZb57W*g2?*s=d&iMXNe+2O<
zh9p5wBk)6~S+7zsT^k)Qnq|}t5hZ|iV1(F1ot-$;e3@f2fK?Gd@a_lG`Sr4G#4;6S
zXSQB-ARf*oCv-+R%w@o`ys5t^pk1TpsRjZ*AY!yHIKJ*RskX<_?r-Z*xwl-#4IioG
zhDAK|!PSd!y;_xHB8aU_FNkzE6TxAIi@7fBsZ>BU>Suk68?Y_;E#p5pc?O&xZ|AW2
zK|+-kI(2h?aN@++jEUrCX+%j`0ZfY(Ekczj1I9QuUhX12G{#`fnzy*lTe#MtA2*zt
z#N<7@4LR!Bq&`qK?UQJJMX)yD_nXcHZq4_IKU7Q9xQJe@zJ`qR-K0)?S3ln0yAQCC
z^Kvf<?)|m?c7^vdM`bx<UI?>3a|(oUq4n;S{(kCp>LJ%wXF2~C{*n|`M1#sNNsQ0W
z`DcI#e*e&cN;DjN1M~EHFwV`<BKcp(@gSzx5isW1ulN6AXonm-coP8?&|(5#xNHjh
z5X(5PF|R_peLrr#08VCxfKU5*I--2YEeY!ru+hzyL=ra2I^8pl%BXrxp`TDtqR$Q|
z@R^OX1JRr(;lutB7;S*`JDqRYl~$xA@cobT$Td7lQE!O$dbDN@D_-8xT$%Q$tB5UR
z*#W1dGf~ReILCkhLD8wqknT@H$D_%L24X9bk<3=CvYdUt5bC56;GJ%I)HnCkOU1t#
zh{IvC@)_`93OT0>VvYsQotU3P*+2!^Va;uiD;>jn^@ol(PzdHg6Jmn*V@3&NU=G57
z-<|W9_ObT4Z<*Pjv>+mUH;p>A#bP9u@fM4ZRF&C6jwDl$A6089$9U8I!vwjpPf!j2
zf1H`2Xt3Ts`E*<k<#&abO2+rLZwH7xb}2qo;jM1``C|VW_MuRZ7bBgyCTzYdk!v=9
zcVby>&8AxtL5LZRTu5~qSV{2yoyzij6t|rKg^)6_@8xP*eq`MHn#BwO_^476r*WXt
z4f6Xr1}_W9pp&=<d%p8_3u+5DetLfffa-rh^Q04kF(tZ}v(uVTHrG$RZ+NsvMf~rM
z%mirv22IqLN#mYke|b-49xg#8<;}xa2+Pcz5$vUa`V7C?9cpnG@p6k211*yGqOm!9
zme#+I-Zn(rA*rst27H3wwu+O@d^~!*9OobtYyG-VY3SR?$D*R5lE|yw&@i$Vj7x2F
zM6VeC4=m^(&uE>WWN&U?2~iUdljuA?o%+~Pns$$5rI`nDCo+M0=!uKNPU;O?H}4@8
z*nV2zWpVxsG&8zy095NIGlnHlb&r|X^N>Zw!}q^GkxavZe9szX1mGG#7!mqXs^6jK
zecMBvTonz#V~~p@?U(DVP1n=XqRw;zKL(!1i{LXn$sVZ}Lx`Zgz^bJ&WEJYGWMKBj
zdg~wBI9UKI7R#K!hEM%XCXN;IA8~3Y4!K=rv6@uyyBXocX19iye1%n`82A3Bn=Yzv
z^XadRLlIFD{;qEL@K^BVu$zH_Xk|*hoOV`=ACVf748Q`WOFbKelX$)UsLb6fcVHgV
zA#LBn$<rHYZS9oNXyDrJ_Dl^mHv$r6$~P!sHfTBYE<ji0Ew5m9+rf0f@{uq@0-ffT
zRR9z7B#DGy0F0|@FLP3tA@mhe3gFDDX_Ws0pa8sLz&>qH*UJv`x-Lnmi$A^|CH-NT
zUU!l=5(~z8kWPgD1FAUl299ZH+TU@l-K&KKt+oY=$zM@LWya*P%NHSxN>n6EV%8g4
zqVJ5xoK1hDF$k0i`WQxge2ra<NpW0$86F`RGolJ<Ew{K-=y*YA!Oj|V;#xi)Kj9HR
z6SYxxgQDzKiNfUlrQx<jUCrM^9{MBwQ?4xvL7~fvgA3@2HvbEL&IIS}wygjAi!>h#
z7B-ed%a~qCaS=J;|DaESqZf-#!vJ1%(y+l`atti~oXlof8CU~M^q}t|=)rG{o&ymN
zrmKL+;LcxU(g8`!GA+y$wyu++P73%<I*P%N9_+%GlRQjuveToQaj>n!)IRz9*PZXM
z888qrHkn}<@eL5$z9IC>`a>WUK2If<)^^dWLAX^7DYos4e(C)q=>9Q81kYA+|8SUn
z-QZcj3rAPNi(!h9O_cfc%V*m72+kN8=d{yr+<v=1X&gW}*rU5`HABjktF+eP!f*=g
zB4!(Jc$^Pa%<5XIP<iZU`LKRU1(yD(LX)}b^_v<^;TX9b7qI2$+}$)KFYDkt@44$l
z@IRXZoplyw<&xU5PKm8zsj-nu`BkmP{=r82ggOY=gAU@h&StI5ZxFuG{vYQ1k1FBJ
zx-#8sB2G>)a-z5tY)|Z~7kai@D)`r+>l`GOiH~y%*f^2z$lm*Nd`{047dF~=FmLH^
z1Gd7|R|5bJ{PXN9Q$wO1;O#6oD$UT;E1BUiOidXUDU3>^CERH0hu{6)+Y>byk9eWo
z>)}t7I1!p(M7=-i^c>0e$9bP8^_FC(Ai-6Dv^kQ_=MilqPC2~r!>#mYhH^NQ81)NT
zZav%kU}76-N>h;x)3H=)3}&K}nx3ba|3-iR>qRISR{ype`%mL`I7>iKAv)sx%G%o6
zwqee1S&mf<_43+U6>lK4z-QjRJ>TB3)PG1$D#TGQ48RO+qeK@F`o2%}u4&UB-`$*=
z9qZ>$RLeE+vUNY?Q@<*cm>){N${_?Ii*pDFUA48ewA`&+KEDmEeZKDfGzvjKFIE?G
z4h>?O;%=sJ&mVQixuem&A`{33=_>uxdj5CVF-{fSU*cL4hpk@1^WXmCX>`E*lnA>i
z8`5o$(>Am254r%?gOZ^3LyI3bI+Yyj>kZ<^4TLwO;Y_zSeDp><?>AFpa7Drqw^tSy
zldK$dh~QVwtLAi57C3t27uF^w41!yFjJGK|?J7l>$?rwbw(U4sj$Z%A-4qEt!A^6^
zv#JO$nK5n%ons(Q%=f}7fi<L(;^IG!84sxdS(~r_a`SwESRnIu#h7#z37PpE2+|kU
z78dr8h#`o?Ue9-XBY;i!XTWUKp<fNC1i-~;cfrCA0aTfSwN0u2dREkhW3NaQRG`^@
zyn>Q9`6Z@`X|D_In8^u(l#Fy(4qX%AGxH;>s4`dN{wdV^3hOItpre<R%KoC_=KfT}
zt%Dv<p^PO7vI$!0*oCQqR9C~YbYdkX5yY32bL*b8oVr0P+0}<fLjK76xKB}IPYGt0
zmcIYsjIThdnmm?!G6T~TvqSvis>#stsG^MWOR>C}o6PP@+?^<FPV84Xxo~&656L-~
zcTAT&M(ik-Ll>JS%#+E<$$wCMZhh}aJf{Ev3Ekg#Xu%F}oEwh^OqPXE)7@5^o#mYU
zvVbaP$8l*v@^>@XD^d=QdAf?`!(u&-9prIVz}{bP9{=d44Kw+5pWT$NZ0hkpEN2r~
z;`@mJCoASJ>EEl+{9@LCXpJ<Agq7vJG0?GLlN>Q3qwxEV$o4^zlv4BBbjoz9UneQ(
z?+JWRk`)H9MixAonl1}-!lQvyNhO|6)5tFYhv$Bmqk~%i`68i(HH}ko7RyfFuFmas
z-I2TxLNUtg*>G|4P>82K%fbBXKBGZ$e&`g=b+MHq-xs5tLp)g`wSy@8%)y#}JA40q
zF-t^sib^vwu~qQh;ejAlF~@N{-_)Tt1$8AA{KBG&DJFfvIkP=lEv@JMST*!i1B}b{
z$1cOGuG<u*9@5e+W4z&h!ql|1GlD(e(U@&k@z6{c9XQq>u?rZ`KQU<`dEQTFum|{S
z-l6c{W=g&QXGcOSfQO|F>w<Q?JOR1g8K31`Df2;kJF3({l36-4aVy;IOaZ@1G06(6
zUnuH6DQnF7X##L{-puG!G>~7h^2!)RwlOlknb3DN_d}5ItL*ROgYQQ_PIVlMdh-q|
z(M}1lq_^BMtwA<@4O06Z$R3sd9}&R6j-L0tKc?k)WdG`orkO-S^`8#afx_4zr?HDi
z&$r>fr7qLUa6%p##KV)}X5p_bRFPoy_J+F_m(%#W%e@;nx=)%9IPbdtD0>c%jO+lZ
z2}hsl@5D`vin222DRfF1yQvcqAF80{HksySS(%&sjv#0MX?L78?AK}0`P&LaPX-@-
zKI2SD_MP<yMo!~-!4ayVk;h|vfrXcqDqvv3kV1JK(o;3wW0$x>@jqK1$Q@)MYRD2i
zR(}6=ZDrcRZ6Ki$C&~smPrNf^VoLPuN-+3rK82GjEgj<K1vyS<La(bTQ?y97$Zc*C
zyPhYuE4En#)aPSqbWrH1lBQ-smXY?iyNh4R<q3QqG$xbTxHQio$9myRxbv-<qU{-U
z-NEzU=8#2jDj|~~tnv5Gt-g@7948NH-rYpw)JKkW&uPgPbO0FoLWZql_oM0M@1&3$
zfTUkZF?qU&jy3bFTml8a(7-By((RZ2yn5=r7b^@aB=W})O90Lj(Rn7udZDrl5tn)6
zsV3t|h9A(Afr~COUhXpbTVAn~sMJGCzyEjv;=s49lHNBh>&IIZ7lY&xu|5wCJ}k#w
zmpR&l3zL(ZM+ia#KiJ>mAS8cY{-=Ny=Lhif;%<^TFr_1*_@%I02V?G2{yK+oHA>~Q
z&&J)>s5Osj{eP6bby$?`);_F&GV~xK3_XCLba!`$NOyy@fHX)CB`F~#-QAti-JMcH
zw^Dw$``P<>_Wr%ke&6Fej``z;LkGC#y4JPUxz6)k0H0b{Cf(zx!Hk8P<16MBvr;WE
zp@YJtTcd9ji1gV;GU1NxljH|Igm!GesofD0K*v${Iq@e=tiA_azL}Kyzy)20{Aa)@
zt{U;*x0>Sw$76?`5b87w_1o%do$}EFl{_9}4hzcZhpPfaQ5_A*k#C!_D$$t=`GNc5
zib9@Iw1pp;@i8rAT3E?R_X|z3qa0w0U>C{1kFFs|wmy3b6an1^DWjXQLa)H;-%oqh
z_t*5r<o3?pUV>o({Sma;v_R$5HewcGBS|14k;rRvm9=O=$rKOL=pYXWvQ;K|dS(co
zc!F?xowkK|9Pt~f(hLml1*Xiq0r0GRUp9^cm$1Nf!{~hGSvz8M)JfmRv6J7UkWesu
z#>MfHz*Ds9rE!Ogb;%ujk)GcvsN~oNY!_=W!blE*fF92}!X<iker^h+9cPQH4>K1}
zHsoBjn$HGkhlRKZ-dS6R6N1~e;<dl~{JQp0wN9l16rZ2d@4i!?0V5<)krII3c410x
z8l<=(64A{T3xm~sB(BVJi}nm?h@%9229b*Y&By)t8GahlC$0?;#co$38M+8R=prWM
zqWm71VjMrK??WtY{M(KZCu9SFxH9+v)XeV`0|bS(YF8MEr<5N9sb`HUvWXjze{&l{
z0W}O~tOzqh)rUhZ))#)KxG)66qY5yH3|kdplPoXgedzoHfCMIacV&@_NQ)|gs-k(L
zg66=RVz40J{ycoaj_w(t!0+Ii=oPqP&LbJP{s#U+xG7WqyP`KEvOM1&HuHQ5><H6e
zqPj2A@VwmT4L4e-i%DCaMr3_7$b%qbc{mL%;z06(W+eca;s)Kp=kL3MQ9_Sahz#+&
zQFi5~Uhe2n?LoZVe5P3uMkDt$=b!Cb#8zL(?OEH!ZZiDDbGs*X83;-6kx^T|zLnCY
z-<kAn$l1|*J$irIOEnsbU*QLg0A`HezE93+DHZWdn%}UA3`qaP29E#K^DY)hP{Sn<
zX2RA0e)T3Mmj6#CSK5OSVBPpx`y!%7@a=!k`y8UK;2UUY;TO5PUj22ydRAiRH8|z(
z3Qia6BI6ji>;aP#q&@jf`%3Qk0kj)X_#`$qIbbXm`gKscOCSR@xeDBDuUOo4Nmy)j
zF1iEWBb|2;Mhw*m`1s5j>fXKcaC^+@|I;C`LFDhw2a`33>;@sgWCmQ*N!-x6z4)?|
zt0^!%@c?!j44m}Q=iK)flTXr3u66`}X+At$w^1*~y(a<Chv<#p=>i0;Lu|yVtYyY?
zDT4gX2xsdl1~r<WShzL-Ts&pY!e!$LWb-}6guPt88q|My)B12(mP~i@@#CZoFtPH@
zn>QOHaMc?i|Ki-_dBtbD#DxPVH0DZtw3z;I^=>CPM@g!;t_yC19UH9LhySJ`GgMOa
zajIve>>Ip7`>DX7B+L#wioXR~J|amOXkaJS93Z~o@G4Dl+;lPd*5)m*P=A3_dEobp
zT6UyWPT)s>nT(pAFE%sDTw}+@V!XEZbl%G*GL|en!qTQAo{n%6tJZKjTwXKjpUikt
zX2K2O+U}p?=($yL)6XGEjT<<%_z9FuG$?Ti3CWwC2OsL@JzZb$#dRP;pKdO%5ZSo7
zx^;65eOF`~+6|`eHqk?4R=NjzJ&>}e_;D`DyeTcbq?YLMK6|qI6Juu{&p08%Y$ANi
z_FWj#Eqt9t2x74{H8r~MOstd2kM>g>Q_)Rey{GMqeusp$4U<Qea{n{80y5rkIfQ<4
zHL}jGNbd`Z&Cg5@bdQWdiP=8^@In6w=spV&I~i#&tM>e(x)qmB`5Jm=fw)PWelwNV
z7#_Ifwv&2xXy?<k=#VsBq&_Gqc%xiUSQxs<&ZqF(s5w6V#jM!LZfiNlp_VL1ke^Ne
z8Pp`8SH|^I^|o2mJ0BbEE*l7Hp^!2KVxTig8?xiiY2K_fhS;%eY$hX&7cpO5r)qNN
ziTXFLHC~n<#G&=TGtTS(D%1_cu;;36w_tEaUfJK9H7oGZ)7XQLG4fq1Mz4xV>82N<
z%{1f@No@~9;oihIf%-o)rj8b02jb*PiEce+HRc(chvul5?|qF_P*JtBu#vy4+>B6-
z5w!J-8~tK8u=P1EjFDd#Xez1?Ka2tufiKhV5j;%$-_8|cst-i^`xvA7M^|4?j<yOT
z$4qo@UP?=fem>B2b7{L79uO6M#JU!Xv4A<V0^n{|U%Y?aUn5)L-M^a+!i1|+conB4
zCB06Jh}?OM6qTBq+VbvkhCetSQVWb+WAOjp@{TeC+(|SH;QX#K0p-|fFAvXYGAt5Q
z10=t&%cj$gZ(3Mc?Z2VYlxP$%2g;0a^PYi$0Tb~cKD*gcUC~y>qo}{B!Fy;Pi<Pvy
zcGuc0B4N`6O;lD@4ZBJJE+0wXLr$YiGCR5jI%r?^G$>(tDRAtuRbb9kw26nkfM8R1
z3K`$Ikf9sXg1nZerYI9BlPwCaI4e@SYA_>X(LN9}inkh_-d4WN&Ciq|o(;<JV24$^
z8=${)B9H8))*HUEfLWqKux958%x-g{91>H(AA<k-{TiV{P-9MmMETzzqQ6{wC|(6&
zGKm~?^I%iq^Fikux19py?xGA1KVO*CKv8Cw64;Q7?JS5kLYO2@boJnaN`5dS2)_$t
zRe~r*MQqa){BFrJ5k;vF-v<FRIEuLyS%(l4>6Hl)rn#@zzbEQ{J^O+lgCIMHJZdtN
zz0!>j<~?QdVwS4(g$WXu=wQgL+Rh^Z;#IX&3Q^hf4d~;)AeVo8hc5ZATzMLy??X*I
zJ6vD))5ixz5Sr+vN(P3&*O_UI#7LLP#a$NS9d|Cb6T@NHPu3k`$a_}Ej3IybZh!s=
zUp??g#GbFG-(V;|z;y6#_g62bi*gi7I5)(d^Inq-pXF;yTuySiV=!>6`&HFJl_eNa
zNFXRqFV`3?6T<xzP(HZkxG8>^MHqtm8j7?hlf(>VVoDEAkg}vdxEDB2<;iM0Z!_(!
z_Z>@UeGsbbmFx^=KN=dxo4Y~of})$YK%jfpa<Nwn4}o%g-L^d!xvgoj9YI^CK{*B=
zR1%hv7Ca}a!`h&_?UW`boSctA>VKThm}m7@->tGss)jwkEF`~NO;4yMV*Tsj0^#<5
zz6>bAC;7+{uG$xF6A?|{gvwc;iSQJ&NT_m?%hf4TU_F68Q5N3J$6+C7`1v|7g*=v8
zaR%`+$uX#0W_WnG^4&BIPI5~V&ffK{{PO8$udJF{d`P;Ut}eY@%VoUva$`-?yCG^{
z0i2Vc{xPaE3>hCKwXV#QZXkiFG10THQ{_b|(9aT_q}1G!19)DW1PCE#(rGA(b62m6
zw(BoJ#nIrZ?xd^KFha?~C~TwhaKBGK5GP3Ygpy}<d`gh-x4FUk2KKWPj{Y&M1=9ye
zo!bUjB0Wn5!yAKBj!H?=&`q+`FTmmn!-FR2#JYbBOH~^*C5ZHhy^@~!nVgJ-TJ^`0
zG=eRxt>V7q5~MoAKMPH<W-4|G{D!^%x0eCsv)?N>O)Vqz>pW;`Gm}%k6YkBNZ@dP@
zWy-aLS#D-1V~u3_^(wzKp?mcz>UV{{7BX(5WWT+=Jph!5uYue>2532Uw9IEib;NXG
zkdlm4V2~B}W;knj`RVV}JGq|H*BkpIXVubcdWm9_!0?}}Unu!G$>f`=UZcbDmRr@Y
zit?-NZL<nAPTz%KyIi&4&fr@hfD>PgSlNq(rw&{8Ad+28Ds#SXd6c__L`ly(_XKd-
zqeS!Ty!wJ(u$;(fcn{5sZnq}`qq^pJ%a%@lP6;WIE;G)1g!5-&=0#<{IIt+M5h3)-
z04~yvkM4ZmR56NCh45E3_Z!9eA1|V(2n0%6;h~B-SQ72|hPf^9{(&&*JE${H{L_rA
z?E*;&E*c_Lksbg{T*YRdnVA{jJ#MDZ0F>kUW}|5~wE)nl$YHlacYAdh#><bV?^!`%
zwAAL)X1!Fe{5uZ^=%+oOx6ZZ(a|#P(Fp0Rp>XEdRQK*jt`UB^qiow>x-Mb^Kw0Gpb
z%yN&61PNst4Yf<zjw4(diRGmTT*Rir(%8J7=C_Xv5VB0;m_8I!6|C~{b)nQA46=|w
zcnPNNS#7MrV}e8_CnU%z1$qIoDDQipqLciqh(*VIj6Q+X8SR5-g!P;m6Vtp_=I?Sh
zp?`goi46(t`zjj~bZ@!$43+#%p(HVn@KQd41dNa!O*w~Ouefg)n<Y0VM_Nx$>;!uP
z=psMd%3D|%1pffL0U$kqKSHQY=xAtIGR3X^Pfjy}Nkk?zJUp6&x<T5FP6d1qKQ^g`
z8J|gg7GfDUa`!$k#SIiLh%s#e*fR;Z=K{v!ZCP;qOG$hZjpe7z#(U#6RA_11P$#h;
z*Xw5T1m0i%M~|~BupOZN1<9(<Vg2`T>HEqzN@4A~Fsg!et^hlvnW}`O#EINT!xKb{
zQ5Fv7EcEWo`V~PC84k>784*{~)ZByN+iU~#kcpsKO?0)S&Qr>@iN#tq1JV=~!0c>u
zFQDUqs%-ewc!R*40*BHbgaCmz4D9<?YD{;PMpdqaNBxjpcv;lEZ0&E*uTLaR5pG*9
zuUl|6={Xl1q%iVocPhS<iqg(X)vQcQTz{O@H7uaFUZ_fuhhQ?NB;nGdCe|XO*x?Y)
z!eP>B<HC^x8Ffk$Kly<RF1IKF46B!G3pNgl-yB-$b<1kJ`idoTQNu&=TCz#78qW~N
zlG{ThIiRMLosVu=ug}_BKVCqPOQPAn_TYLSk!!}g^21snQ&aP>^}C{xI0Fx{zHRy5
z%ZZE~QPLCdmb7X}3eL&9vi|2pjxO=V!xzmT8y;BBc!veXB&<vi7RtlNyk!8g`UnyE
z>Jg6k($2TCof$7ZdwHiR>eHwBpqux^^-VE3LoEX&y{N(!+;#(mde5*o8mgf3U#`ui
zx#sxIT|5f19dzj3OBT<u42?ZF4XaNN+PS;$EpKKM&5nkJtgc5fKm}D7Zc(M9i27!I
zOx^qwvFkS-+)~v-VR}C9>6a#4WsoPt(fev>!92}DtZ6T=ZjK5fTCIDlXsejskFKY<
z@fmhF;tx%{B}0>N&85Wov}pW9{iN5iUbHNv*8jownA!fDv!B;T+BDO-;08{sSV8}T
z(`<JIrByzhAxB1oD?)3PQg;D+QtBp!3PzBLp$$PRk?D!`z*wutC1kZ=R;kK;k?7TF
z@ofX*%v$u&i8k!^#nbV#jM8<J%VoDKx3C?<@?~mn9IfH1%1eXX2NIJn`>Xo7=oj2e
z@7s@EB|g;oIu*A0-2WVw-&&A8;GF$GF2Fy7ya5-s5F2>}6FoF5`3zq;OOc-`$lq{!
zG@nGeOHOo%t1uv3US58LyKm$O{<^Tdd~AMYVqzmZI`MbA3%MQ`8_TmuW&}if`x*X1
zFtMPwrw-(wJ6QajAbgFo0(7?gR9R-+PfBldgvfGX`cmsd!trYiW&QpQ_m;iO3@|%r
z{e507zQfmH+1jC`xpyLqjdi9kLcU8CVK+?`GvYH<pj|}^R`oOa%^{KV!}g1X$ATWF
zY=;zSG6U?hT@72Z3wHZ#z}8!%;DX7MW-xuj@X=^$u+vKQc6Tu_JS&JOUX60rl)4n1
zh_@59i|oO749#e&d;iHID=`1p{;PE1>gxlwS4a}I!(T)DP<Ltx#&H+Q&BOvA72uJ0
zWtyGt+WFa>WpksJ?sGqZm#7ex2F#_~*Gk*qXTtTNRt$FTcQuc&i2~lSANP3UEnOnh
z5Idn@M;NeY7=pG!Urh0??;e_6V0lS!y#rN0!!W9d5qEYldI!62=Qw?kDn>ii2W%p{
ztu0kLbPjWm0>ineb7ZZa+$vNTJ4D|;v=8P;z>?})1oycZJX%EaHFNbCpgpxg=V-$E
zTaDznh`rs;_1B@1Q|7rv#TN6$?+=UK7tT1Qzgp^M{>0n5z;Q^oEV6WSeVIbZ=dV;Q
zxPx?<+zMwWG<Vmj$FxtSLPdtERqODr5cQ`{JaZ`q8*j_K`&`Hw7q-t6Zq<fG3!d8^
zw%}+J-bGuGH*07dP3ezr8>X4<p~|JCT~yJ_eP7YL%YX)DC{^c^ErFKZlyoxq&Aj#b
zb#tDaJWyjE=`Z`=qv)Th=RY3sKOwy>%>NWTr5Oj0KY5so-To}Zm0$E_Mtzy&ass6O
z#&w_gEI=YsQUZpPoSY0$8G8c~gJ!=0Jx9k+%>;HHfQEbICxBDM#!8U0vTpdI+mIo#
z4;^0*{s!<SN=iy%K7Tfy00bXq{fy6c(H^@t_$9nbyzB!-s%I#)Fi+2?Ek7OAhyB9z
zH!pd>N21M<g@;qqR3j?BJxP0-fyx)5X=mDh^*AG#0%<%?Jj|WkpObGNimkUM^J1D1
zTdDHqzTZC)^Qjs5G-s=uuLyU@R))rej=ONim4fwhO<s|I4uYkB(wL*j2P$8CJVKm?
zuh&Z^<k!&!{e<$=SBDGV7|YPr2P5sSShzT52rXs#Qx3()39l|uQuH*0h`ml%IxA_`
zm36X}00W#(T2K#Wt6s_!qG|T~@4R+eVW&<Z`UtSFwHov^#^IU}eHfDLRthEC`2O@t
zTEZ3O3O=xHW1Q(k#qGgI9S8%E>j*|x{051b6X_WVpEG-g;+F!*WYu)qYQ{(jul%hF
zvKW?Ad|Vy6ul%?p5Gvj^xi2|tqja|_N0xIP*MAD1<;E52B;3kCzs5Sku&Uo4(#PS*
zN;ZXxEsfs}xsQu!g9y`dZrS}hgw3=(P5kGv(hP~^X&R>%Nv?SVHji{SSLixeS>J(M
zoZ&we2PZt_(q*?vCJ%9oWQWeX<5_)l#ns751DT%PIV^!?MWpn;j*{`oYF%o=Yu}Ed
zr0Kp4Gxqw{Afdl5{A|>fNV`A)k5-TVa3+irDTrzFQq{+fWtx?u)I&!UEF!|SVmE0V
zl>eer=<aB(jv*;;{Qz(|QO39?5I{8L+Bva!*AlW(hoSdsJz_$qtC2$I_Q?GGKcnf-
z1;STK)_)X`26JHi1a+#sVL{b2y<f!-1tkC84V&!!-3?pwmrjIY)HzJ6<_&sX^D_>{
z4}U&8BmX&>p5`=QYJLkaT8HD#;X`WZ&*$CqQftLle0(AS;QGqY@!$aTH~HjW8D{$~
z#n*SQ`Cs9(2B`*T{R#$V6y}C}#g^QwXP*jxC(zt7>++M?IijCrUjH|LD8*&P4Iwi8
zHy+H!!GX%h9-oka)*X&t?E^3xOh(iA9gsuq$ICx`lERnC2CPX8;ne_ZWRS6q&OF88
zX=R{@guk!87v-blK&AjrVxRY)r9~+b#?i#A)S}+oN4RH(E@kD)`Lu?+6y?k0DYW=%
zMp{MizDL?1r`?dMjl6>>W92R2ZC1!VVVPNDo(M3HKs8(15Yo<V8_eaOpQz{WwS1a(
zR;da?bWq3ygEMhl^ZkV>-(Ksbsg$|d#bckZxg`izX#$ZZK-bnT0bKcfTfBLg-FlE%
zNilX8{p}WbM~KZ#Ec7&zEU%5j*Ej%T_ilXu@#TKq_b=zLtEHJ{PB6E^Z~$jbP)YC$
zon-rEn&&0+U-j5k?M;V|W=oqAytt{4+`Z)U-1PvaYRn~;5d-M!Gk%>79^U6!CN`Js
zSR|w+_Rn`98B5DgeIWs6<zk~@^6+mp2Z;oZ=|augr&=NBd>zi_{PE-m_RG16QWywQ
zphHYk@b+{IUQw*F(&3WJ^0fcQ(a`r$qvAKm!L~)$-;>OxH!cqtSizP=oXyrVo2~Zz
z`VOm`^~K!i)#!Z4TG-6B$sTfnov!g~Zr@-06#fyu{{mXPe2oKNchfFiA#fO3Lz$&F
zIT+>cpWbgLNOL>-a9S)zIz9`Oe}3j#E^6lr!gNkQKPZoWX2*80VjFUFxx9&4&CGNF
zK@8_{7B<oj`?}ce_zgt*_@dMbcCb68m$1}|wJ*&w1R_;IEAu8dre(@atN)DP@EY^m
zp+9o}_Fbs`_ypQehmOY?`^3yV)grA+UnzWf<guRDC8W}J*^Ic1OG`_85fB{LCfaaw
zd(YR}w5c3rhAFU+e?w#7>WBkiBv?_Mhf9vaOt}0T2O1XPf0YS;)(ijnfG9<l?I+HK
z%NBcBqnrAnEDf)Vs+o=IAo=SA{4oP~3_N-BiTCQM&m&%k`Y(m0rSWY5ird3VaTAr0
zKn-;9nEb?w1#b_k&H#4<=$?j_))(JEbXt=X7Sm9<G`{&bH+Vr_%2kvwG^?Yt>^VyI
zPA^}HCZpF$+7rjHnK#w~rCK8aF#B%TH?km0_g98!e4jN9$+`u>p7q1@F;yGSudg0*
zq3_-;KuF&#(%V+7&>ngpI2g4UYRlchoS6bG(9HNSC0Y)W!l4g-2~vrdcQCf*Lg9A5
zNZh=J!S>ihc31SSpHfsee%CUDPdP-pLar@nrdTpMbjcZ}m{;zd1Vd(K9b+_nUd<ri
z@Z<wta1GSDsgf`|5B`Qq6-9WY{rKI}b72c77#RCzo&f3H35hwzEUaZ`&6knc(@E-E
z0{FO->?SZz*{YUgh7c#f2IQ9Vs=ey+rpifw@^K4ZQ=(q5jjFp3{5=!KC==`>&NZR~
zC*NjgF{eoO{^v;TZWx~q8b=&=z>+QEwFGW7l`-txTvSGzF}>E-XGHp{9)>KxbZv`G
zu@GcGcJ+h=+QjO5<|Js`jy#HQH4~ewtLPjeu;77`IWOjTq`U01Q9&7hxZimB0J8f$
zb71%7@(!dJI&*V=YaW?Z*4A*}aAn=rK>0^Dpo`?Gm(EtZmmPP5T3}lmeSe9Zg1A&^
znm&}us|nvvHa%XUv9z#=-WtS{F*R*bm@AGG4>Ri<O2VPUNAHJEC#Sp*x%_azMYh?4
z%X9dDZZ&^VA$BaKS8z1TbRKBHn{i_uR*7mbh?N+dM?yrYcjW+6!7iwJ8t8LCBEwHw
zLH<n4_~>7l#+5#F4sHN*ke_Ubxta%P+J#FYqQkY0!+1X&j3pp?<N*AK<cRs&L!Jc6
zF+2p@aU+e*mM-g+kM11Zj$||=Od=Tp3L+MU{76*RG1V3z>+jS!Ho`-u`{aBFLWD?+
zAx8WMlUkYeJ)!<&+f|vA+AjuYWZE{@G4E^q1YMFcq$r+OUecgMLvFql=#3Va=ZSXR
z`Edq(IWa-@AA2=!e+NQ4IuCveD!8Lah}K~Kq|FzvF<VOU)|Ex=gU3c?*$!pJgHkcp
zcju4$HbTd}qL0d<cFW@SEBkfZNw-6(c9Ga_T)$@a)0)CL={HiJyFqAVj>6rYs;_BE
zed_Q;wChx#1lk&=4j+$B=or_>T@nnxStsuHt?w!6D;2c4&M93SG<UfK$INTxx|hlI
zR?)lL&3o>wOnADg*NAYLH?7oxbJj_M@RwG4xv*x|KF<o=s_;|0de5~&@0?kxc5u8T
z1fQiB<WK66;>av=Ai!J3zF>_OAXQW?&&<B;-aQG0wQl}2eG<2ujvJIYYP)W$e;uu{
z;x%+rXV-1?MciC}#BKW7>t7Fh?9p($BOx7+klqpJf25?o(Xwk-2}f}TQos1WZsG|<
zDk5aetzvT(_LAz`h=?2Wb?tPatKL%J`3%kQZqnB+*$o)dn$=#tWo*SQ{aaGPUw5^T
zAj&SURvA2tELudvGF_cr_$IwIf&+svGTilXDL~@3Ct?@r0en~_yFtR_opOud2?zx8
z9-#CT_4+!n826xa-|S|Y9xl{81&K&%pWoiYhYcFO@*zc?tbs&ZYk+P?^7j~|8@aDx
z7RtxpE|&TR3w)m|{A2+vW@19($4(6-DW@DZgzNc98lMCly{|33T-sfkS#>I>r_!pn
zX?XJb<{*@n0zRH%;34;MlL7obgbey7Wcl>yjemOW%2GLX0JUw=$n&<)v|`i31Ws7<
zQbyRaVIWk3CUMdP$*@*oB1cb!Kj~6xMuoenrEI5rhHzj@NDtX}Cgaw!+Q<-=ME1!a
zI%R9-(1g0R!5_OYHulPxFWjuRZBC+fap~Gz>mq3^m8qoZws%>N#?qBWjLZ6N`FEM;
zNoF6QQRSenfX8e=bGuuhkh#XB>2^{bFQ@aaZvLfM_t6JzH7+3GrO>P1YNR{83l&HM
zwhXvJYyYUZ;aquTc~)aNAh^I5hV$&hvUSmwn<Y|$Bb#S~9`ZcSA`#SBElD6cYn0A4
zhDa&Q@O?mvnpo)l+$t_iwj}4~b~b%==|Rt<_E;z8AJASnCIWy$k#V61AXa`)8KmUz
zVtlD$Hc)u$&1eZpnwVcP3-|=)9l34iuKacHVlvBHmhAr16lX|C$z81$iDwF@@?j{+
zo_IVY<yBl#D(xY?e6EhMb6|nXT~0dF;Sm2Gy5@a5ac)|ZPNU%9!ED|pgY0O_o3z`_
zNcom-MxRqklqWn+8=YJzwd{lSIXiu=s@Fw3*M;4gI{y!4^RM>6AK?=bsguMRAsgrX
zG>r&AAzcN-`fo@;1fn$d7jQAp)V0W8Z}C{2-bDxp`2Y+-9%wf7O*Og1!HYBqsoQt#
zhN}fD`J``Qc)TJK*1;CoX%JwbZgze?Nb?Nf8_SxTQ_`8MsU2*&tEj}zj{wya#^bh7
zwza^4FPCGVd2__yQ;CZRF4}-zqeY8rbj7JPs~J_PXt_@herBhgDc}D9q1LEKYOMBS
zGI7>czXetG8mm2p)4~fX)rT_(m9gdeaQ$X=XH)I?%^K>kR0%fdVSQ`L;~<C?ON2Q~
zvrfRzENBnw6d@6M+WFE>zP+BmJ3|<V)FDFX5pqQgJtFk;DFWV>A;I1@Z4y&Oa%S{F
zYf7vr2b&Zj@(-R}*7UbnvZG$9LFKhUR#_MMT8<>==4@!qPK}~O9+Sq`?42^#lv3jP
z_Et0dI*QlT^nyx*xy$oZl)!K?j$)oPW>=1lNwrjH4I$dl;F<4&xe>3evi=4~)6p=j
z!bS?zVl!BuV0$%>qxEEGFp&ds)Nk(7?enLM5o+DGESdTRX*hMW@*cmM7R48i2=}CZ
zQi>caF_OHnFnEMMOU&2NiAc}Kv@tjCQtrP#zuT&ZY>;p&->qQh>D{UIyDGUEKJ2YY
z81pLq=MEJ?sEYRz(jwe9UA?tS&eDE=Wr|QiE*82t+d>DS(dh17;O6v}<k7l3?u$25
zVQl)^7e|{cpf1956rHxmnc17g_yhL(dTm&rMb(BE@?fp`q2m|ph9r!_rr{>kYy7@P
z5v>VO5oI?tXaXd*w!{xqDfS@`yt&F+G_|s1%Z$UwwF{*V(*J8J$3%r9_JnwRcG56{
z1PM)KDqlGkYSv99_S!G6N14Kej-H+!IkXJWcJWvye|%Muks*wVh8EE)UZ;)#A_f2o
z!z@}F8k50z`r1MYTd}8s;g~O|+=U-)1RZsI>z-YX1em{ylr5eL)1{=}cyUxO&Un;m
z+Y!VoxQj}Uy8iZ6W|1Qvvk{-k#Y;X19Yn;M%u!B|N&7?|dAZ59z{nAw990n~z8i=U
z1Iq+VYxe!M2LH~<+aSkJ_C+T{ru;08{9GGz#V~BBrqzn_y1JjKqEaNS@@x}Ia%1V$
zo2ki~4W?np?*1AR3MX{CP*<NUM{<^6><PT16g~{ACxLX#B!)Eut%uF&sycI|G)<_}
z;g#Fi@crcC6_zR{0y`1%k+{xny_!Qym%T1Uw)6SQT!61=&F2A*1jJ0+B4q8iyXyG!
zOO>muB`{u1#FK7N*LnGS8|8!@^5#3!9)+w)vBDk7qn|6oZvL-kzT76+o@4e_ijOh}
zgfj&Y^s-y?Kcl#~uxH{dYQ1~-mWre9>T=E8;1jm=6Uexh4w?SZ45eh^L21AJEt9vj
z%1@w(Pk;Sn3&)v7ND9+>o(yN3A*O|JHSW$KHpSnrpe#CQ0MX2vVr)KR>ni#E$@g7Z
zSv>32${V-K@2<74&1uz+=ByVwK1|8Vj>2fw`7FQ8GY)joX4L>@U?IE%;^wj~3i(RM
z8-ZIfsY&$mw=1!k6bf;G61G;g{*UzU{|RS*eu*!NBmxtfg2b_r@-Y<_C{Ur7h2O{!
z8c77iU%B(cOPKRtN6_(V&1L6&!~BN&3?~v}L)_{WqGEV?V<QiRi5P)lLAvLeG$k?6
zhWZj)T3qZjAr~d2h_uFDmc{(uM&tlN@vZMRTY(qj=v#V$$`x1`(7BVY3N;VM_z0sx
zQZ#Ty*zF7|ieMwTRTvD_`Bjl3MYHydMMNWkj<TS{qdw4gm-*)7Lw%QHW8`ao>JKTl
z(V<Op-z_2i4*XObq3GQ*!J%M)nBdxrii2&mkkyF?YP!n-vr62ARnAO6-NUseOA~u>
zlg&pQ)#%ttV+DhrA-*R@N7OrMpUWk=2e06hphNGfGS%wvggmgWY6t7Dpe6^UdX2Qz
z@9h>3thhn<_SQev>SbQcCQ;cRVgc-4&ijM6Sot&UeTOKM+tk{fRbO%Qg&!r!E!li?
z54i-cPTR<gWr1s*9UQ;@4yJvKN?vTY4S|m5X=WXql3lV*qUl{-yY}UOR)m~Ht`%5+
z^vV1c4K@dQDVxgQu6S&{uBxiRTFpwsMU;qxRfO5IJ!cmY4R*dC*KU2O7r}x3mKln^
zAs*MI0fK8*ZCUf<C@k1I(c5qbG)j1tVX`$WN)z$UpWo@0F39~6+5SqW{<F&#?u<~V
z{1)v?`NUqU6NOQL0dx559KMGdbC%?+Kh4tVuDjelXJ@~#fyI+x$L*nLv5pLYgnD-;
z1yXc12QE3HD?lmt@^^WNq*Rvkazhsd0*ry}38R<*SS=0&nT+fI@&Z_llBDnz#r`;k
z*eQ<R{JsM$gA4q-uc%=LCCKd0Evr-d@jsR+VAy;~L+nTiI(-`%cobC$#@0NQ-zZ(W
z|Cq-H`?M6Vj9;`kkAL2?&cGVCr+^zOf{&<-jwG5Ye;Ub7*!bK_hH5~}yPSf`=*&{v
z|K(kU9~%hEkxD#`)dv1~DBxx4GNqeJ*1Bbl;>n7|u-DPVMGDWM7}^?N#&Cr-q60BH
zo;QHIghyfD3rlSma*`k2kyVQH83ag4y1K)Dfj<cpKo{lAVb+IZ9=O;1@WyY^bEwQD
z0kNW%+X4}xB~7k*!~>tiuD4!b?kHHrFJS1lr131juX1Kqpwj5RM_uWsn|AaAm?N>S
zLFN%w2|@G?4zs?uo+4aa8r!gkILS(LyUP2GFZ5&P#7Kz^$`z(fK}w2LkL1;S%Flty
zE&*<5J21Oq&}DG@$DZl(YwwV^lLF+WIzIQ8XLW7&!xt!-okK%%n<&_T$LfK#8$k16
zTLc7#c4A@p=jB0XfWk;4oyWNlvRZy=J>PArfgI)Mo0w-_2V<_F`@dQpU(p^%s<WfO
zU6d1imD*u1_(8NKn~Tw76Erp_g(_4S^u!b8lc%BS3?&gM=mD_;054W97>_~6qM6PX
zV73<TeE;6}1W#uTedTzyP4K8)i4zP0HS+*y+91HC-2xicxKp=d!2;i>JZ=x`HsKC|
zNba(aM2KOihG3iaiSsNH=C>e3;Xxto$r0<<T4M%CwkLNQSx_tJN8hiN7OmSZ#wXUu
zjJ{wYk&m%?nQ1+#+_`Ms)ZfncQ@_YJ#kwLp)ndwLTB?7-J~y!YhPKZhV3UDA8b(vv
zpFaLQfWf9j>WCiW(vP7+v7?x3lX=p$%`qfSskH5>GWLiswyou_wG4ElSu%l>L_FLk
zktu(su9>BcFH8OO69wdw`^*foqBSB195Xg#rT*)k;8~P3oFsAL?HlKSV0Zo*J7tIa
z=BE@=0E(>u=hz}-bg4ZC$)^Fd1J@sX<%Lsbvgc`Z9W{tu_jboPu$2=}d~_&X>CVJU
zX9@fHjmBSO?X2sGP|#bevPd`5i0|n4oMI!p6e6Tu+V9qvBnnmw5rkVf4eQNW!+6oV
zl-g<8k0k;=*(yV8H&dW@ykgnl>-D6m)XSX|HuyQQpU_2-tMbLqQm@NGr5e`^_r~x_
zn^1wKrhQSLGhX<Gi<MUP6P?(IMaPs?7LaWR)wmYc&681$ML}y)2E&~3gonF_oSWoi
zcunxb#2+LF2|?fA3<b3kt(SmCjTPCW3xiV%(1H>1xhl!X%H}jSY5^{?jG$BWri04C
zp=Ys7>md#^#hST%Jwi+SihQR53IX_QJ_m{X=VAXVZ{j185fWIOAX-`VwJ}Q<!9DeN
zQ7v|6o=6fS2|$qbRCOtT56FXx3kz8ge@K$JWn+_guOX5~0RqE$S3RfT)F6XXfIJa`
z9hRHsePhWDU|RCaIEsAACk~4MJ^Oph^@^i8vphlz)gy;!<`&@+i}5l)yu{6<p<;|B
zyl$8Up%H<rGErOe!0E>Hq#l`+FBvj<(oz9^&n+Pm|H-yliJM|Aw%6QcS53e!nxS-6
zZyf~7bn{b*L-WkMK*q6JxaIkhEKGf2nw302>g2212d5H`sso=2I@=aO+LK&REfWA9
z*A}ApCl#mRPCw&k=oB?c4tjlUrSZ-+jc)n@GU`bq!aC}%OPNMGIfj2j0NXd<TK7|z
z@JJPk0?@~9T8hr;TiL9Pyvr2^UWqan-0=0grj}x=&_1$HfhYKBM9P@gA(!ykNe2&B
zkvHC+&J#xURMc^*K>M-1#I>Zmcry}vYB+h^T3|P8FK=73%Q-x1sH=mZZc8RNv<})H
zAcRkPfwk>@rODiQ$U36hks?urx}Iqmsf}};N07#N#56#q(stvhpoM7y>7Z#I7un@`
z$Sxgqfu%aMpvOD2WfP85iTG!cN^p@bLlP-*8aMCi3KLf8T5Jt86u(1kHp=PW+~4od
z+S!KAt{D1v6aPViM2Gl(`h*E+EMj|lB)HcDaI!Omsk3+Idb>k#hBc7M<%>0|diJpR
z7>(`_^@zN9x~AhLvr(?y9UZH%xp;5^9}s0BvbJ*9=R{AieE;hfyOH>sQJQOq8&vP4
z@i`p+QP~gfjGZY_#yIS1+->3!kRTytxmln*m|dj)JKsjyNzikb2J}^1KQ<#d{VzU%
zSJV9YJ+AryRtlplB+BAs0GQnuIry8ev$w~5?D{C!=0rn?!uKu8+*qbWH~x5S{trqT
zvmyvzhIEZPHC@W=Za_qh2sH)K1TsQ%<V#jqCyhR1Jo)96S!YgRd@uHy#jkyi9TYwy
z%pmbor&XsIgv$j|S9-QIlx44JHL}`*<)~HT-3hHrYvgG4nR<>>VGG=GM!-?{d0l&0
z5^g?psGc2WP#jf3oHp_deF*Jh4qN7h*(h?iQVrp`eEvJv7((=38tJIs>(X9?({COv
zGrb>>H+Y!5_BXvfy!gCcfv{ORP4jl1kdvy<Ii=WvI#A6xzwAHqGxjWAe~|y+Bcc<u
z|IPiRdKB@X$h0l!E+X{Qh<^TsN1M|%MK-w*?0rNO;dKt`ZE-yoy-2%SnPK#Jo^S2j
zBgBjAwJ%2f$t!dXp!>8FI$_dNKI!LrB2tI)Djm5qtj?J`2!0Ywy`-imX^BH`1gPC(
z3TJSWK0xaO=FdaeMyUB@sI<~YY#33ySWO=;sLpl#ET$_&r@qx#28N&b?P2;JO&v>i
z9`OhqxL^3%a%OtDEY!698Oe6w9I=1gt66dFsV*y)0U?P|C|&r-NFn%nA7SGQ-|+OU
z`4}GH>TNLqX<CuQ<AAw}zoJ>U?r{F*pBTq~%d?`|4ZtS>)0SUalOvidrtLl>w<8-f
zWj~Wxjw+oH|IAi+)j^SAuf(U4r*OEfdSu{aXR*+|=IQO-8W$HQWoDL3R{RDa54?G7
zTuIX5(UC138-DE<8j5-@LZ;a;9#;pjY$YbwPc)u^g!qtz<0MHDz#HvoYIeg@s@S+<
zEMUH*^5K>ePyB%nR{Um~PSzBRWl#J@W{ai(jaRy&o}0}=`1_c`{1&{#z8H~L`|WAZ
zmJ%$vg(<TAcLbNx`B4!suO#z5^v%Zju-xhFT;kzxu7k@jz#xhX<{OlXxv$5Z(+?8+
zzF2b`4Jf6L?}^~^mT8{{aIaqlOmp?<X$y{^+yr}f#+oQy&(CK%z70Cn|L_x@!AecA
z-TWpn%WGrG>MNoO)AXvK3gfp`or`A9*_B*pTI6lAdDMS2@`TbsiIB{32o4AF40r^Z
z+VF8~7>eQL+kux2WxFu%p<=kSlpOEGpKbrq{aeWAbGx`I$8Z(q@agL61BLa_$jAo~
zS!1K^dWTIpV(pb9yiH1ro%LYS_<;eK<RO;Vu4tv{;ERrW<n9P(XXo4>zeSeCRU<5!
z{lE><{Tj%wW_j<0+=!@e>Wsdj3df;Mb^RCwL{SH}4MbuH_;m|_8j9=)+PVj*bH0RM
zulfjjcQI*Bo(>yM;C%4^udycR(?1AOw&q?-I6Xyp2RwSHUO6%A!%Srr%xZ_qq}(fP
z5!SoP*v3lww);iSWsT<O!57Oeq}R;kp~eQJX^>NCplAODUxEkMzL?b-MaUCT@nb<^
zL6P3HM5yp{)|5cz`z_GAk%#0jJ=j$p7DdK`MH}V;_ecEltkOsljLYLko2SZvMTb$N
zAjN@7a3Dp$-=P4m?v-A+McQYY=ZgI|4hm~-_EMwfGRXJ^NWS`4-D*_`89(iP)bjp;
z@aeSg?bqOC4BGvH1CL9sh0>Nr0j>`H09$!z{Ws5@it++bUgrP`*21Eq-%6-YQ9wL}
zfhq!0y{_gZtYOk=cC9~if82X>1M-t6X(Wc4nwnI{zg-?X2N!LdhQI57m^U>Gd7J}i
z5xV}NoGD)Po;&Lk`vr!(15AZVyH$Zr`ibY;c>jCTH<9|IgIO8R6|(?>)86#;qF$u>
zw{T^waDlQ<#=+CdA9?KG?1_?2V;QG0KK}QEd=dZX0biBzGmy-^smvci@n5OtB`@E#
zVWs<*7|A$VNK!Hwa4wKGHqJ`1??j<`ht%zt_$?GA<>aQ`Y?uI9URCw;!F*NkYb?7E
zz;R9j#O-lqtwNecRAQLRu;BMHC|N;K5zlkU?ACB_@u8!OqM4b4lanwbrwQ}F_}=}i
zy=R>8QBpiCin@?gLi$=Fg&vyCMo#>MEsm|32_CA<<nGlv4(J{a(!5Ey|5_e&QUu7)
z)Hjt}&vGZO3R^ft7id@yX%haVY%YU8?sQkPT^bb|rWhtRz$bl)XpO3;8CriBZMywt
z4zg(Sx*V~|#s$t{+a!+75}*>qYpfJa>Wt?O{{oDCY~UGm3*|p+y|hW3$F6{@Ffx<v
z{~)ixD8MmMpKSJj)Ha%;7uqY|Gs8caz_P6@EJ4KnH|dHASsc|)MA)VO{>c!LAn>^L
zXq7M1+Ds=+l+(|e{RN(_kt?OB&>8;A2#LpjGj?)2o#wivbv4e<ek_zgclvt=GO1G;
zk0lJ>FvR)Upy+py?2shMg49smRt0~B&G+&DjlK);zS_Y`c43B$d`v;?DNY)mG#1?&
zoK#22e3v5@ckCjEu>SMz|Kvpa3xCam>Rz>JaNx^V$^Uaf@STxL|InPWrsrOn^<VEq
zG#Y<@{J*zF!l4N8A5{1geZn+m0qPQR+gO$hMd$nL5!m}DBNlSs!k@Ez%CPbe{#!~Z
z6CVm2;Kw4b5`nqx`Vt%-5PRk3)m2q>fcw`D`S)f1^Z7!E%p@Qb^r{4!&CU}g$<HKG
zw>w^O9QDcnw%Kyy{AYMV4;U$uzq)t$&z<!DJowA4)qbu^wx94-lIw;g75-nl0zU+)
z8SXq@l=h;FK#hO|l3_LV%bEX`9>Cn_qH#tS?~)^I*p%Xvxk~!`AS;3GYtKce)(z{*
zggHD<)gk%gKKV}+<j=n^Tp0l-@_g#o6eO#HEfN)9b;^Q5#^tH%)UN*;wl|^W|MSQE
z|M-$g2#HJ$y+CO^AXY7doGv@|h94TswgOqtXMT>pC-zGL6+)r$;}7)kUnl#2zCA^{
zkhicek;jq)i`A7iKmPuz!FN);$UiBF|NdZLg3XjEPMmyFh}V<<3HZ5JA}uh_%NYw1
zxqSi=rM!sZE@Qj@liL`B-8VcKJE_P!Z2g7H&`)k`RF<(du{eJS(6h)44p8dvX9I*|
zrspw${8a^0?JXt!sN7!%9bW<Ix9b5Q8&q7#0d8WqpIZsBw)?Lga}}N@2{^x-FtV|+
z0rZb$l*>JT{x{!Jq)zOXOo-!2z7qC$P793zdf*f-g^|3KuM!uf00w;oTVS{@gyr9)
zDF1#=gW}q&3B9RGcxPp=hF(rIZt6-irjgO}u0)4VNb`K%{5*8FH=(HwwG7;pYw(Z!
zwQ^y%(Doq4vrqeSYKD$PzcD`fg*pS#Zj_K?%X6YjVavrfc}%_&Ru#Lum-<omlF8Y4
zpJnq~#G8}m%^+~=1VpR{kzAi`yj)K$1z}44LHLx$sbY%pjr!@Xog8m$+0W8F^Ob1o
zWN){7Zihp&@MN<Ab9rsBC1YJ*T$$VHL$;^j%^ud^?XhhvJ7a5-6ECZ@K{0lsfN{{!
z6jpI*sUF}LWHq6ZD;Le}xSi+(bcu@fS{AYao&WhKE^<r}X$OZT9<{Z-HNa9Qc4=ve
zVe!4=`>n4^eREIHS^r#^AY$K*jc5InD3E?SYHDiDS|0DSfl5=!<Pf4-p`uV6echUY
zQW;B{L!O$XKM`Vk93~!#%hp}?Pze}*OQAY?2moSw@LR%Dm1V7fboK4fuCawBCtvR0
zZ=<zxFzCtKkFJ2@6JHFsVXo8L!|`ic9<=E%x&Ait<h43%ZC5pt*$RSSp4<dECL>W7
zZV>K0j=AjO$}o*n_^`P+fl>EYRI)C(?;t~kPa?e?FiSF>Ml*JY`#$VQU}n^!?b%{Y
zukoTRU+I2nlY+ombmZK2He4toE*_72UoNU$gPO@}f$jYL3q}h^M`K3gJh>$JcbDt4
z55-l4MZIlyZ4dGF=#1MqHdhCl(&FJETlN2D-jEd{6s>T=^{d&@^ekICCO!Swb3jH`
za?<cj<Dbh4h!0PMa`4{(qUAz#B-N5#jG`#zzz6~e!i$**Y{iH#Z`h5kkvuerpYn?S
zeNV?Y<Rj*a$(GFdc1;YcN5O~?2L5qy8hV>Mmvurd|8W>&laR02z{?oRvN=OOmLUIB
zhppx$I8<3Y$nqsl&VBobJc0#AU55zQn)@hs?drkmC8O88`&#`(f?aXf9TZu%cFPrd
ze0vayHQ0k@)qVB7jP)!@qz$8*z(glN%}0W^6|-~JNJ&Ei!{d<?DA%qiRkXEt9`%n#
zx~2K%Nf4lDAlzOZMW+%lxKCt<OaT6Ub{6@&Vzl)1VS}jfuz=qNS{(y2mhaw<^ZlDd
zQ-aKQd)o}q6teKU{Nlxd$i~w}1I`7>HvC?POEoGy7pv<txqIKq|Fq^4dWS@2@^&xN
z30_~L&QD<_X33f$@Lb6`Ydg<vlI_503<iN{@v!$4i~s#PBFY%-9Jd}+tN#qZ+|JG^
zN>oO+pTeQwqk<<?5r;VJc)qFfd-L-<F;$y*m-2OwHGe?jRkrD__1xE><Mv|pWvnYh
zBe!m?vt7CQZqJL+T9wO#ba}z$d&j!4E2Wh${0vPGfChUZTeH;LFxBY;(#Bc62!iqF
zM@PS^cMqJH^11NQu9K6J_6!P&`F68`69jfWALbm&<0Wu&JB8-__JGr_wcab`I{)ja
z7>I%Mr=%f(&Ph#2|CIAm6F>;O+XNYYDbeC0V}b;*&q0CV!I|G|{&^4BTOb%>c`}5W
z>~dAXUqsA`>-QBIPvT#5Xqs7TIXWey5@IbA)%`cTAD!LT{_Erc3sE>8(}FkA-43aB
zrJ}4$i~ZNG0>YVc;(m0aev@rmYKNw#<<dp+-p`44v#*V+DeH-fkeYe&_eVpUP3TG0
zNrE4fm{mHy&n{<Lv9io^9~1SK`Zj7K-3jVt@BFN+_=s_jS|Q~-k-4L6SSxJRZYFOu
z(Xg2`J1>uSF<K}!iPb!*S+~hW`YY>$X2fBY+3<}0c0&y2akEXy8x?I@06CmYz&u)g
z9a+mNx;S30tPB`ee+FpDP4D6X1DPo=Gj2Bw3=BAb!LwsllbNBU8{z^i#b_WGW!j=r
zOd`*D`7#DDPmPF(K!|Lur+zk^{+S+!TF$;wIX83Tqlwu~1SliFUWx#|Z@SqNp#Y)!
zGeAl(`m&`zc%_mV1=LAgcYhuCxZq>?=S{|Shcwi7GL2z8NBDEryOB|zhZk{U5<r8o
zgF-G0<??5vCbP8qcBdgP@aNVZt*o~(Ny=hPOy}&0$11+Z_$L0TxU@<$ZKdr)ALe;|
zj9W}{+RIz5LKBs)BY{H~vm>OWL|vMnd-Lu@(ZU^hS7p(d80;Jea-?rIW__n;<_2pF
zXM3YpGAaw6>HQFPe4dtYgu7?G{{Xv4qOpXZW@OdevfMAf5m4!rOrNd!Ol%iwzA3AF
zj!c0p7_Ui?S(GEJ-3z{H*LLlAO+NX;#d5CdN;%qpvFSUjaX9!@+N*W9!Ql>fJ)a+A
z*PHmlon8OYHT12JFzE1mLW7^2bWuL4Q9*9`@H)@4{d@3RrK^*!8#|PRL@Fj>aX(<d
zm=pe*_`TpS2sR6Y=8`iV!V_x6G;0AVP7V%GGend3s(y1Lz&HAi99LE$?#cNMVVNWt
zS1Y;9%~mn9o`KZuLRs=eLrLk?Z$CJC+xU~GC{W{|P)a;{t><+mt*r{b-EVP~db$&E
z-sW?;9O=wgnMW4u5(-lBYKp!Ch!)Wbgsz<BE_MYg>ev}n9O08=i_ckjV2S^{&3u_f
zAH`D6?5<+|baV4-)3o?AyYg2Q+I(DKpj;zJ^(;!#k4CGzQ8S4Di<&S+^(!p}l`O@+
zM8GEex48kt^>hy%O+&-bV0)`jwP=V=Id*;+4^9L~kXXz|h*S`&cuA*yUl5>t6beFx
zn1BCtjF3e?$DA$FvpKjeo6D)&^ApX3-XtLA=R%UXtV1qp^|OO-{&rZfC}uv#lmG?A
zv*0#&@aa_1kCIB^W-AvWt;EFG*BL51vh{rWVv}%Djx!-ETfAeq&4y+hb;h-5vlfrI
zh`CShz5?Q*dpJ*@c7rINonQ$<_Eo8AkfDNW3M#U><kLugs~EJrPHG*Rb%^Yx=W~e>
z<WD7LWv=QEn%N95X5NuuGU~8scE&d8iITYbLgb*vjryH~WpO8L#B`&5p~Nyu{9vM`
z*J<=+Vdj&MP+#XU$hoIf>OM)94hUc0lT3Q}#xv6tw-d<wtty!0sk@}rBN^dG`?DuH
zC)QIM%R5iIHqE7f^i9g~k2Z~}^v#+375`_33uLtw?qRaiTuHpD?~7-NeF3vSDs1K+
znN4xTf%e$Whx=P6QH^hp_rC{hMmnNq3}ptQZ2|rj9Bza0#D~_R2(yPbm;0M%OSFRt
zjFC7Jjdj8wHS<<*>qyAyIEaYr#lw$o{?gHh6C>2X<!^AOQQOY}W1T+>5Z?^wnlM=~
z8+N+8PPd7qDw9kj<8pQjfgZt&8NSGO{wL#^S-rnaq5*&dM#FC08;A%9SU&^ykt!TE
z3zUq_CnDCyY=Ms>0C$ys5#qNYulOklD=T&U;u&fZnP)&k<v%7mTvEF9wD=_7Pmr&B
zrwkc>(a`&l4YXY=-F&QSsztMNW?txCHSIUh@D0r<K118tYhi29@RO9sIi^kiR%I)h
z@Mb+k{8^(bB+cM-k<4u9Qg+uLty?9g2%%B_bTQbT9zFU^Z75x=23MP$$p8WhsdK!m
zUcL4=yQ0`Q0%1)WZ;bS7yJu;xVxD=EmqbN7-D5ec&yPg~**AuNAQY6jUBMdyzp}hr
zH^md{j^!|BiVxh{)({IE(3SHMGVQcR**6yo3_lj2P7Ae(UN*&(aTV_NkVv>+4A;Sp
z{@}PgPcEGRo*54c7y98(8o9&>pP%yRO$fGbTf+X&!V(}rN8w+Mc$xSLQGN+pTuk-g
z6}g{~T2n%@$1p5j;(1hVdP@Fy<dFgKc=-fi3X%Yr#VnAUh1`HtQ;RZ&mTib!mMSXW
zZ^`%yJu)oDmT9c7pDW<CSzw$0nvoI~8p_7!e5divsz~2u;H9jSOUq&<+VriFymQ1+
zQ;*p<`eoyL2SVTi|7Qqbq5?TR_3QCx<>UTKvm2BqG=~%al}8XwO3AZO*cZ7+!6MER
z9>JWwo~_yzP=SgYw0qHavipoB&FA6gClIzj)p7IrCkUUf)h-a4l5K!rJNCELU8`3j
zlz<t%P{(~QM?p7v^d$=AvyYEXrVA5Ys`lWir}iK~wYF?4B6|F;RO-N}ZolfBD#->)
z9Cx?ZbK6AEsYJ+kyFV4HE1KPKM~9;LCK3Tc^L!Fn$>OKZDg1*9Rb$u54+Pv;aXv)y
z!Kx;$z>n^p&h#{tv~gp1A>>cy3#Syo+!Fhw@qz9X7YFlT?1ioP{EyQ74Ta`{ppDKv
zFF8I{UgRa?btMw>9|2gsV&RAMGy-04TZZ<&o-E-|@_B`DkBkNCgO3mO--H0XA4G#o
z<ZtIaf~i5BvZLdq<r=$W=3PQBr)Y(C??#i2ndLdAVdlNs<h-io=%)q^q4+z6c)lj&
zz1|lcuF}<M&(L}<UzxCF_Fn5BR`#BxY*Ngox7tflrCh$fq`&Y?AZ9X_LUE<J^tADz
zs2r`$g)Vct{0XAi|3C>Jr2PkuqgduMgFZ)>R4FBMxeB>1b882N)EBp-?+RHwLk-+2
zEK*3gJ@U|_HXZp(G-BwXrWWMngcQ#71W{P+tDngHytk#LCF|i^b;*b24|_SJQP-=h
zS?j!!amXaD{c$b{=eMlcEiEdd9yi|sKj}%OOl{|(9BB&u1J2tm0Bvk<2fLp2_q801
z`;_T9tp_S(0glb}?ky_E$M5hFYc@)q_gA8pn_RfJ63GDaLwR)Y2=@+A|4_KRgtyDR
z#C)qwm<n!854Yq0N7z?J#kFPK28Td!cPBuw!X1LUySoK<4{n9K2X}WTxVvj`_u%&G
z-tOD4`+i@)_v;Lx#$nVsd+oLMTyxH4%6%dZvKt*Ls}dcctbYCCjQjmid;u91*H9FD
z#DGXuICM`j(qCD<*ocn)4`<3bXEFgNjCc?S$m;Xqr|o%j$p~luy}iBjae&tI)6=n#
z+~<u(@3zzB4lxiuOio3$aM2w6Z!7)@_VAfD99wMDVh`mXKobxjJe2T6#mv+N$hG_F
zxYg29c?Wr}{urMkpG%Y|iR&)2?{#j7Q{7dL$<55n(GdFR^?sAcUZNxjq@32D`Io*p
za8ZQ2*dKWg+nn<#Ki+9dk9TNVTpt_Nt#f;v@1BO8*MV29v8>w;cC5}K+ik;n+{XX=
zm45-vcUo3Yq--`l9$$^U-{j?6`4#S}wip*yT4$w0S-4jnoiaUx<Kcm+QP!O0)S=kC
zWrn%(?Z%9`%~xDg5m-UEamzQ8dISr6cV-7$WU@fzMYGa-Kcc>`d*@zSVr90Wfd;Cv
z25t*X5+Y8o%lGp0tQ(Yd@MGsZs|(==sr&;MPp^x8HzVG-=l63DFFCqpYX!P|7ss_~
zXxDgzfO!c0+A|#*Mk6=0;x&@2B3rx-Z{v%9)sE1Se_F>`>-{0;DD>U5UhMkhqB2NX
z2r>};Q_i7Lvu$o+ZJo@%5eh5o;P7H^*n?-=-uKPc!XkNK0F(Oj5Yug;9FeVQC#cnP
z(l>eL@DqwE<xl&#y3O)(X#$vGbXd%qPY_b)4j32>imIx`+e4vd?*hd89ad96str)F
zdm#rR@ec648L^#&f!Lnaq@w8E%~X+)&}kpOvaMb@)JI;q&>Hq}y^xn{KjwyGOb(PX
z2}{*3l;{$GEQQI%2wS>Mhx@{~B$iE@D^Y@5smdxV7dG3~Ie#1VhhtEJ$5*6hC)>tL
zBwH<1CU(#>NIN^DDA>*PjQvNs_$Of&RB>T5g5xscUgO;M6{83``wM<XUSNX3U_SOe
zj-N&V5C;Lcws|}Pf#>oViHV6(q0@2eAj@6#KLy=J`URbxZ|`;Ygmw<fYIm0vvhj{_
zEO}od$;lH?P*EkoV*{+am(;DQYd&FnzE&)ryyIS&RV_ZBRW4dx98|+0V5j%*k^@8`
z;rzg1_X1fYne%YQfs{q(mG8V&PbzBnzXP*~Z^zcSyRtlPueonaTc74j94$b{0jJ#|
z6ctEe(VEz30bNDP@gaP<9mVU<z3GxgD<?;8Qmocx&n#an3>jlnGWe2A&E#^w+2THG
z>srFqD_DDyos}}=q0to?vL&A0O}8w^x8<ueWEPUG7X$XoYJ%3g+&)D#AwUi9K{=8h
zKgFm}zM2w~+Dy5oaGrUX;6a^hn#8{RsKf@;5yy}9O!*rLS&@e+m~GR+M)5AUFBh=n
z7y~m+MjO|a?E!3sE|iD~K)QS=N4i|*?a`>D*(lzvrm0MKPlSNWLGt`x$tk}FP4|IH
z@NG<^#?c1g#BI~`8PcYjY&gys!WgFxo|8}K^Pf`f%w)}+1zb+P71s4oNS)(4m(y#h
z3<!U9>79-DPY;0$Ibg)G)uwJr780dsYUp}qpC3o1O!}%5H_q{sCO?uDrI(S7*9--R
zb0MRRCT=K&IcbcVhwUwnsj)*gf1ou+g%iif7lziJ(Aaq}`BBR}W?x$u4$b(W?2Y<<
za=d1^bzfa|454M1t+DGT*1O9<+;9zvlJ`9K1l=eu-s+~)fN(IgdL-INXfYA$keF+X
zy?$N6RBHc6FnM<#bX~jXFJ8g-Ugc39^w|O52K<ob?NyqkwZ;y983QymA`dPbD{rd#
z9c>x+!P;Kg4s=B+%TyHsZCU;RbH|E#vCn1$X+nfVlU-1!``&Dmx7xY+$^iAFcv&VK
zbjuKqMGt16D=uvxru6QO+n32z7rsTB;iXsId|KyvR@(-h^we>81Fvyao9PPP6JLn3
zNWw#piBz;nlZIt+3OIB|m#*G3O>!_ZRulsl0-FhK8yz$|UH0o+#6<{gv6XbP+EM~B
z-$=Q~w4VnbLWfuk5K}vi0Rk!gEz9Gaa}8g^!h*UpQk5)JkI-?o666R~;W^z)lUy#I
z6Zkf2s-*5P4knA*@l^@-)9=*Y+WlTm_sLf<$J6^al@{>bpI_;eH;FAXr?H1SiHTuh
z!O7sjnnq<Jts|93?_*fKHkB0gERZgK{dAzAquaWTFfFa*llk<CuHNerAMxg5X=mQ)
zyd}P*rDa?e2CSfNR<1Q;^1$ReUaP=%r9PRy{Zd;c+6LrD8ut;tPK9g4y@SwUpO$_?
zO;~(aOw-Yk7L6nbHuoyNf|zj$7M(K`NOwA-rX?uohgf<mS21HQCMkf74GHOxn}Bwe
z2_Dp+h2XCJ!i$OUs><(n`2qf;^ttL6{hOqU^(sG3TrRun6WsNjUNQAl`^HRKihj-B
zS~7gF7{*L;QL#8kC@?_*WMoLlzhCr2Q7&&HfQ1p6qC(!W*_pLnBqEkhj@a}?TN1GO
zqRoi|PtE<`aJOYMK~6uYU(;s`f}$K-E9~gsNIF1XSfD8u{72=r1Qf7eXgP}DbL7zQ
zunxw542~`+2${L%xH0N$Fz-3gNScDD^*T@oNGigc+f1N)9QB3N7j2Nva@8U~IonV3
zm?eA+a9SpaMX{-38Zei-&vy#jw11lV5zX4F(=ZuM&{sJgiXjlX9&5pjB|RtTV12^n
z!(Efy9VCS%uOOI}Syoa~ASXPq%v>}b2W8-J(46c4hJrKgU`58zQ@c-hxJ`ZJqL%^Y
zxHT{B&^mx)5?fHnxEw8^RoU=fIb=J5uwRa0T>0S7EEzPuW-lx)3`kxR7@+MkiTmY8
z?;aW!_Y<#c@@=QbwkQujG;*M3UFU|()C(I4d9`)P!so|GzObPoI+MYyh3PP-F@5_;
zxTO{4jemOPuyL&+MW}Bj)!PQ?n@Ikh5lm@JYX^%<)BSlK6D<?NBcLr}|Ayhv?0#N)
z!M^~&NpEcWlN?|fb+XQ9Efce+o*Ach-1~^a9*qI_%O+hSYEC(sLs&G1o>le5ZcY33
z6Q2*sH9@pM?47_JWQ)rUyruMOrYA%u%>Lu)N`^%3wCRj-lB#L$mw2H_{&#vn>L6D8
zEmf?2yBUBaE`>4lX5!&;nJ}!xvK`Bd?>Z$HF^h<@O@;l=hIpsry<z1;to+W=x5NXX
zWH(BPL2^Krt56@))cj|xgHQ7wO`{8Go_f)Co|Tm_Xa}g;wQWD3@w|EM?y&L)ma#;d
zZP;%HZm=KMyzb0|8>m|AsZn^zJ~#{!H0jDw?0lKYnaGUKlwdBB$-UX1EQBHQ<nu2-
zy!EiS@;Yg2Wn@V9x$l}hGPLA2F=SeIn=hbQTUimc(ra3)7cq___{UQALkZ{>Iw8vW
z5YPW3@Nhpl>BVdFxL!?nxo;O)cVcT3&&H)6CE`Q$3&^=#3FU~GAs62#SKmN9eF7$V
zMm&W3NWJhTM<+pSb;83iF_r^#(?cR~$AgIikiSw{kL<jNTTaVw#gk4(X6Bbw!ak<v
z)L@WL-}LiES5?oo95VK2@ERTrP8|hTHD8*xZ#I^@4K*>=YY$)*+7{zF1R-?7P_n9b
zTOvXe@YDY0WffakkNCkMM6##_WMPScK~5KaLOuT9|J-)|cIi$P?(W?c-qXbW2yEv$
z3kHzAKSH#>of*mu5PK3CsLd{ky@Zkg{4-#ira*Q1NI#1*mX(!8L)fPX4|UkNM%N2n
zf`qfrBKmtNQ1y(it+>2i<wQ26KSX_LF^cw;1Qjt&YBaa4;~Dba*KASTp&<&TQbLO*
zfCMiBr5W>Bat-YAl(d3L`55x0++mXnKDFq*X<S-lun}l8A4$q_$;>!Pa~qNnS%Skp
z&jNlRn#+4u$49ZL1u;7mf1+_P8&Pi&!Wr^e!9NBL_)rdgGLtfc;_$}T>V>r8C3jpN
zH=bzeTiIjpi8SKYcrDKw_EriLkc31z3BHIunI^I$gc0pjE<>>6b`Av2dLiUACuxn1
z_!fi%jdh<109nSUi%0RQ8&ke>X7Sj9g*2Okee{%77&W-NZV>`#3Lm(ojb}|k<KO~f
zwI~l!U=73jLLLtfZ9f;0G8tx2J+zLNx=4CY^gDis3);_+8h+Tl9pZYfQ*&M-jq%Ti
zVqdHY1rne5^$nTgzXc8hb6}bgw{u$#EdlB>v6{!v3-B@ERqa$6Se7m_tX@1Ru-KNg
z87Xcgj#mvl47Cr{SM~vMMB>djj|<w<j@avj-D|UXQLcmn6f=}e+v<WcD1)5Tk#Iq1
z748S8c{ZW8{@-?P1gMh?vkW_BGK%&~-QUa-;__-7Gc#3S#@v&csUJi;%I2^zS}@LP
z4GXv!@DG9&LjwWELt}<~ck%!e=}*o2u4zV<oOy|o#^w{LspaK8H>GMPfcudI!~9e=
z={{p&WZ>5R#_i#z<{+zR5L+h|5-o*TK~Gx71h)I<<`+zdj)zg~g6)Vj&j}|@=dHNr
zj~!17&ra>z<m>KuL`59m?%#xdue3%wtsh62uNa^FwAG7vAMBM=^nC6n`u4iF*eRZh
zV^O+{sQS$3(H=MaSul;o2cLpz*xu_3`za#5O2t@oy~+86UFm2pOcKX!CeXhA+m-f8
zbAKAQgaqHyjLd?N1+ticgRr;ZKLddb3oHiPp!xh+hJUZN)rp4IvdO8w6e^=YDQPO_
zxK}ySlU*Hkv(>&ed(;`4t2kIs*)I`OM$M$~`c=xugOImjPXnV1G@e<+sVCxxIYc13
zTk%r!mC_siw<7NI=75Dt9jWZsQ?sL^qHI-@7^J>ukiDalhzL|90e2E1NQ;(8`3_2y
z`j;r5X>ifD*jASP<GT-mi-BV0zTt4-0YM*N&!?eHdd+8VWQ$T2+*`@`3yW?p<b3RM
zbipGlSu8gPH-)UrH-52vh7e2lz#-;Ry!&tY_g6XT2M0rBh9ysg+poN{IP;?~KawHA
z<qeE!;KYILnBz95qKL65#a*EGuhZ?k8X7tdhy`S7x!c5FBcP|OoIeD_{!Nwb)kB{g
zl|3Io9+|BJDS)pX!!6^SOED$e_5PdH@~&w))Bk$Qy?h83YfS3eY^G2tK*%dI?I$D}
zTSh(-zFU}%WYelODPt-I`UzJn>Sm1U=CZULp*xJA$!6Lkj-+AJ952qAGPjP3ujjtm
za$-XWji%+{qY<754VSUSPZMcE6VZm+C)G9r=FIGF3%rTS;U!k9%a5uD@TrQ*v)oI7
z;pq(T8jN0>A3AdHzHAn<(;rgxp+rPu5Cx0Fi67_j$&5xLj8EN06~8(yjP`Nfq}i5X
zH`h6r&ZU-56iS4NKKcN3pWapY<_Wd${O2%wrIFX_YpmK*29T7kjVSt3&dpQnPdu)P
zLUGGODxl{`x-OMO?pVy|qVe-|G+w}r?%R?^D3tfz#-_;uK~}|@J3DHp(7*t#A#Im<
zQd_?{toF!gIJ61*jqj)?NTp8l2y>?G_t><z6>4qJw8GG~t<kXg^}=lUMn15WuvUm_
zJ@QYzi6f0Z6TEFa;8zm?!|<ouDU+f&L=iD1w6NN;MZv?3T%UGz@nLqz_y(ewNY?cM
zhL=)aUXNVn6J7qT$T)(k+Fl(h825{AkL)NPi;go4Oy)v&Mh?DT4ZJUnqh*JHjDghV
zCLZjf=t+!Dq_&zJ>B$`*E4E&3zV2U7u2K&S6rI)-^I7(*QF^3F@rw<#hMcuegY85<
zTYvl1{NB?7x2LKqW77AqlL9jx^jwX!IMTuyWhFs0g1);ae|GfLJSy|qpca7Fc-44x
z>jo`t-2SWGoh__pdzbntTP$lI&*nrhJ)P+D``%)gxV&k`*vAMo$$`&tdBHm*sunMA
z9ZhKH1XY?18Hj{@qVufIlIsfm8J<CKSyW|K&M3<t!T$_qASxt%c1PTu%6U;@9eqLL
z1Y0SGj^OaiOy7tGmeTk6E^n{Ru-`#wSn_C_FuXNK)Iri9K6J#d=g<A=U&S7EWz#op
z>7du07j@<q7DU}hls%h<CMVVMMPsm$2)OdY550!qSDWqgX!2Zkvq8xe0S<h4IO;Z*
zL#r6BV~W6xX_y|iPxwbc0VgTpCXQ|Um8h_`E%$>+i}A2KQ=Ooo{d5mhy)$iF@_9c9
zv_4v@$wO($pkIjne!<b8iySNE@;@r(f0og|zL6mt<A{b<re2y453GsYJq2JFGx-Y^
z9FpM=Ru;bc#fli0mz3lT68UD>wCrJOrJ_`-)py)3XgOW}66~N|RS54Ekyh@51M>_Y
z_LD^=+h$Wf%NJ=WkR-TTJEaZ~HI}|rkC@IZPePF~6mAPi4{kvvf!<<tM2H7!a?{aE
zn|`F-W4bbzPMO+%+7;(;4WInTy_Rt#>?oPzJU@fd&Wc!vYXD^LCD51<pUP+q9P?6r
z>%rTV2Lz;LstSC^T`N2weKN@M&Ev&f9PMh90CL6Gn9!A>S1LP$4yYnAFTfqo(919b
zNdpv14|($4Hx4Wt>v>jsv-an~(3ycdcDnl}`Irc{kWrI@7wpW5XHie7l>I&=sk|_w
z&xWTSgOp6AGy?QSA`&zyeJMdzlQh;J-UTEBMs11>Xi&`qaR~=&R&7k=OG?UMn;=P7
z(vf1^moqU_QK;Q1jJE@xmRK8WPOK>hg0vMvq~bU&vKkg=^y9HrAZauFmx_lAqDaFq
zj2*g89<yB)PMM?5!Vk@S53=gwnhyjiv!zIwOGlj;+xs6e3V2FU?c1@RQ=sFFmR+pq
zFI!Np?FP#y^^8tNQOHFz7nkaEVJ43;ZQ2r<NVw8s!dglvJo&1|so`6x0N3un$V0EK
z7%d6Q+@nWwXmAysYjGpq-><IYAr<v_R3{$OwNi>v%s6A-^<j{R8a5Wf@)U}x5a;N1
zI@MKB^sl#HeZ2-KnMhG-!Wp_+vTWMIs;Iw>VopX716-V(W_qK$#PyzM%;s0c^g7N&
zpY%r&X$VI*eZPf7XZ(mv=T|Uzqyn8wL7~Lhiu^&tes%iHX=Arvd31Ah@I+RgkCwTJ
zvLG%*Z^HZ+R#XgMg?XBXkxHIYcbAl+*G>uWqK)>rw~KkJA3VP=I2fACIb6?tYm;8y
zI1o?ED@4#8<(&OW@o=U<>dfoX&95FbeVohg*LNGy#y|ccB<#1>L!;|jZnu~SDM`sw
z%tqVIpSI;NpW`QcspF|uui9MB6c3n4X=uqhn3qz?iD7?3_{CF!j56!z=;5|L5Yaxm
zRQp%W4nz?QZlVxI0p_&Ji$6ETA55kfb@Dqwc3NG^f5qE>c!Pi`smak5>tCBlWloP0
zOd<Z=-P^k<0U~)v4y}#}OELZLM^^!4aUMt@F)b7Bn2f#wLA*QP6d(LGu3v;Z8@<C#
zIQR`G2Vz!;zPbrEld86MIXX^*6#SQNBR_IZP7Pjc-3ChxnN)yC2X84kwb<B@3Go%N
zd`cf=TMXSeKTJDShz7S0vjAUjp0+eMDh&F!!*2>UWjWz)y$|q*LaH9+#`lwC^J5x2
zu-WRSUL)lBX9gz7&%^>WY$N`QW6|LTE_VSJj283`Tj;4ilfp5->y^2EWppOtbGUX^
zFKlzp+U`$uEWaJ^Y?}evkX1%ZTof=q_)S0LpJ*MM+B}d1lFD2`Ewk~WZ0)c1=c~n#
z8sR7t2>yVWmTIXnMWq<CLNTEhPH7;0<Zp{p8VIB^Y?_&do=M|0QE+0Z;tx3%kvxRY
zlcJPaIgR@j%7H5pE)+hkK6>s)MSb5Cl>q_oAER#H?NFz~60}ZIgdBuUmdI_TY8goV
zRYzHBAeO+G$AhTsN=J+`;e)+)gZ+}WQ)IX+@3R~*=r-xQ!!SOV>GW~*=hC5q@?)6W
zE@9T4hjV)J0m5h8i#118%nP0m%gWS3fL%4;bRbez<668cJ65JO$=E?a+M=Cz)D5}Q
zi=cc%BnA-nAe}8H&cKTR(CEtRThRykfJ7m~dyg-fIFYq{z`9Q~aDHJ&S;n|;js+S&
zCiXMv?n4-`?T&!d>&fW-Y6|U@x^PXZPFJ~W1TjCxCE4_{#_!quo3$e(3QWO>Ik!u0
z+{V^Lu2c$gYEs(QGJ4J2+WN+ZSu(lu$O-!AKNA!zcpju*5gUJ==u>waQtYbT%~!-t
zz1kM{pJHt}1Dz8gjHmt93>tpL@0u1@i(PLGq;Ucr9}72}_8Q_389OIqf^X5vD?;JG
z{kx~g<bC{yHNO#mvFvT}c&K*P1I;S=LQpXw<!-PVECe0^6tK3AOf!<*-Wri&D7as!
zDl)zM9_XBRgUOI<ztdyoYsc`q9f29kl-UnODU*giUH0jsOD+P7PH`i_sb}UU`FH8>
z!<$F*+v8D<#H$pKAtr;K2iULV$E9W_zW+T+1Rzs9P=EYzV2EruBkn350(r&u4b@1)
z{u+FKIpzC)@VlKdvl$_Rqb7*!!<uA3U#JLLbLs+pe$A5oIP0RkfdPq37EdZBz4j7S
z6NbHuU@a0F<jitMQsay?Oo@mXS0g>2#3kGS@e*h4E%n31u-suG99BvDEVCpm(VS=6
zx<r>=N5mZ){+SYQF92;0ZB?V-+zB4%qRw;2L3Pg&x2VP#HfxB}Xa_Oi`;r-IZr<J9
zT~zaYm$H3v&U{k*Fns|Wc|S5p0W7l9T}U4uvC_{xLerCxhos|Q3{NDJ5iq(tze!x@
zW|~}%f|A3xWKUg=4i{i(^d&;jMtNDl3la=rfZo+8kzHt)F|i2meipio{@gH=1eGRR
zE5LG9mkd{}v@{Uj7E}~gT(*>zn_l)0(ia=yM(ugHAdM64foBZo%CF`7!>QhBQ||Xz
z-|u6Uzn1sdv922|{iJ{RF_&7r5U_e0N`LQq&PfyIO4wb|%6Whq0sE1CMs35W#J4uL
zsOG}^WXVOyGO*35;@k1z*G1w@a?UVdp$pW64c^&JrBz8Cp^<4c+<i_CEvE(r*MTu+
zJSPD?#aYh;50_$gdb{oQ_%?BNPHQ4c6W!S4^qQhG5tqf+2SMHPpM@?v^p}$t*10n!
zXclWJ;3^1Bgh+1}jwr`bHOKLP02?6S&o4ImLujDSEGdCuy)3GcuV~dVd@Qz#H)33F
zd^L7v6~DCv&Oaa!_wvBfPc$VfKVnKN8bDJmOlbe8s?ynP3r)(W%04mJ=?r`YQ}<l_
z3eNROi>k(DdB$Xdywqgz!1=|G_6VM#eM&Z9#>nCbVWo?IVAREhUYE@{$A9K%mVjxC
zxU<dWd<`cmCgy(wKK?*M$PvJyN9mr{q~(lNMB~?`+uZoS7rnnQu8cd04rM}pWw;{a
zF$@KQW-&El$yXESN&q<k@}}BtE_CZY&u27~Yb}mJL$LayCGLW{23ANeGmR?&ytyB2
zPXh!Eg~?1#xt^|Sot+++`V-QPTUenaP`9k4l4c6t9)I`6HkA~1<P7qCN)}#hT|d2^
zQ$#(in1n8)O(O>QFYOy#XJu0_k~qFUIb(d(<%w7?2u7cE+Sb^>g<+4cxhg?k4%xGr
z1lj*Ssxj*Dr20#@JMiAf#q!Se@fX9mh!xLLbnDwUPa^8xBnt<{mn%2Z2d7&g#|k7F
zLD)wx^=GuMl%-7ZSHLcPI+99u#S~o9-zMuMPw)d`MZm(%3t7uJbD_6<3M6V4r9^nk
zvNvQ%l{eV+Nv)%=AF{Da=QS<0ls3Q=O0ATVQx8Hs_eg9z9==&V`@N`)>A3HZK4e~K
z92^1FTDo2$9MglEI<!OpN6!PmI0lJH7SJwu^s%NZ`CmiFq~82>W^MvL%1oIg3N-Vn
zp7(A(Lf~ZEI5!#=jCYKML)bUORb4rs%A)jXvpH_#yATkzMhT-?2#N=D4tc2x`@g!<
z1iQH0`~o=X2u#XQG7plI4|qyHfeC#?ySu(|*rw5NE={^v<tj1OR?yx%#!D;CsR^sC
z1AHc1&naDzq9Zo%hPo5@5}znq&&t9^d%xhpztC9N=vjcwgN%T;86bQbqC`&qkD}-g
z%>Iv3r4~h83Vw5TVLnI?dVCDw9h29a3!lGsI%YbP4zg4>D}P+8k!DZCjL0w+yR1xZ
zI*YemwI4cpuB4phqJBKRsaOXY7i1OpnVtPb%YFc;$fd0+nn}<eh1z?3eEgY;DubU3
z#5}e&ZdzC`9~U-D^8RlX2}d35<;~Iu{u||1Q!rJd-GkrscMP9QME7)8dd~||@pcYa
z*l)l^5n`G6`8T1ThGNNF)M2=|xl3|#{6O;x;69rBkevVJ1rYfG8mX#ZlnA^+noH7|
ziW(#0zSJc{;X_n|@@znM=T~ASS#jE2D9%}PLl2aAX#~j|@>$mYgITf=)TM$W`JDM~
z;|#9|Si>kIld?SNDLj{fd}`Gb<}F05bE`+AD6_@A!6omi#yiu9r2$A%t!25Q+xqb#
z_;_p$Fhvyd$J}!k$9<@Ybvx{12V#87I8~1Rk3VIszZmUtTT_-H;o9BeSyPi-BUToy
zqfq3HB3yOW9Pm=MR8SW9q-sf<4u6Rt9zFZI$DqrMXiJ8M?T-v+G7^I$!)lOQM5bF*
zRuO-Q6B|R!?agTlk?ILSKskq{_k`iA$K29lhnmVvPwaS1I;sLFgYw@s$A9Da$~!$r
zE=pP6O89QCrZQI!4q%OCYV{qLrXStkIVJxndLZ%LJ1>We=U%bS=zhpv7f;r8y2cSn
z<5Xl6b0+)-t54+}&(>GqnU5~7s_OBZ_Fh!2)&BGQCBph$OPPf<i5~M#weRC?@7&xP
zs#w@i`Cg(y@>+xQ?eEjk6H?~i_7`#Rm}1Br_Ek^wt9(NIJ8xV2y3+sAQqliS{Oc+(
z`5SGjbm1qfv=v#^pbH`AjBik2#QI#iz%#_y%9HIHU&rqCM^&F@#t;$6A4AyIcHW&<
z_ck=#UK|O=Q$QSM(pmy;myDGaw=)Lgbd95{a9X!BN@HTt9+}(cQxC4BpP3+A>_l`d
zG4i~#vsG6{CV&G0lLz@VBr!PKGRpt$@Q4y?_7$FV#CHE%tOSI8fDMPfk({gZRW)W2
zG~FdSrM%IVj=>eO!XX=JsCV>ZSkTJ(fDN$_%p;pD!KK?sM&$PtWhyBnk!wuJj5udq
z&o2xq=?_1_F;tVOeLg$ja4TW|e0V;Cr>u7!*GiHYdD&}-&m*y)@Re24aVy^k4TnLe
zGo?`WV;NiJYIQ0f-H8r{19aPUyWP=OJd+snjpy%him!}|t6fFE4$hS*#xeAWcWS!e
z7s1&_<qsjQBC7<wo%O7u=o(HyJ=72k3r{_$AAn<JSf|3q>K-asXGFtz=4InrJ?S#j
zuN<_<G)5|4X`aaec;Y}!>nTAG;1~<6C&!?GrqNfOhmRZH9RpEKUr5Q!m=3Ba>+EV1
zQ!(C(w*~H@JSF{diO`NnPn{kFQ8{&9kEJ;%y(s`(Dx{7Bhq$PQ+&@~_)ycZO_}xPh
zyf$9Rp!na7NSpnFSIqC!NzX{}+&n8nXyl~|FexcTHJWZRZ*YoehmF}6Qfwi?&Au#-
zD%?6R&ohXB_u^FEC#UphA?PI?SkBb61UjJ3^FwNCu6|pz<Xk54cg;{q1a+(vvFH^F
zR#v&qS0}uk-f|rueJD~F)*R?~Uy87{%N1(j|ADUjx%+`Y50J$Vh+UPkenHP?Y8r;$
z0Gp6VK<VXC3!0c)QM4OczcUzx!dFsa0g~Poz($VK(J8B`N%>$Rg|fu!dR_Go6&Lfy
z;O?Z3Qg$shIFDkk^km~>QeQsB6}ObcYBnR)oKF1=2#iko_nf^>Vt3gM)+6?BArMRm
z)~+9#4Ev3qh+oq6=H@pszI4DEc70ZbPyq^l`Q=H6&}I{fbxvz*8l`MT@k$DxH<!Vt
z#qjWO{(6-_rh+(7)=5<DL0*Y7Qf64C@8`{p+4R8i`a1Xr9HpUD7qbR}NS3gH&m#Ty
z)b38XL1C8mxag$muN4VfL0Z42Ee7~hpW9+K7fkPGOeN^!CjrC7hTysxY@YkdG&K6)
zibIs>(MM>p_A`NoX&hN_3M7toh1R}dz`pP>r#P&Lh!lb338PdudK@vA;<U)TwxKU6
z`QpI+7uw;6Lz8vmMY>QslH4zxI#^hj&gV;&p)Ym~qtYv(934i=1dYQQ@)0Z<CImLg
z&ORNicfJDq*IE^wvcH(Vul3VcG^8GA=LZ;{>ez<B@cvM_M%O?#>RZ%Cg2q}>F-h{@
zoa=WPuz4Q3O>5a1;`kk#$xix#Vzk|mmS#6g{j58P6*lygUYo#3qz>VJJj2JQX^=eE
z=aeJ#hw0TA9|~LB9FsB%M2e@-JVoBM5<t*6kn^B}Pmg0|*Jxo6*xizh#y6?J(-U=0
zp2i|4LXCP&+Z86>==x&`*6`bx*+EpB-MooZ_2p*_n8n2hMvK`m2J?%DE&_)LElO(i
z4W18(Cu-03=pN6n74=4PUP#fh^I4|J`aVz5Az7hrU<FO4TQfL!AykWs9-5n7a`uiq
z$gHC4RV%Zf60*}}G*WS-iy4mY+6H%A>b`KH)f4RBdK}&{to<ltZmuS#BdjXUrPh`M
zYugv~2H_$Fky?%1k`nU&*jV*hh#4O}T@|bI;#cG@rC8cScXl?peBLIm_DvN=w{~`i
zx0CZ9Wah&M7ic(smGnG<7cHLbU8vA+Zpa=T9XahKs?j*Wb-pVqDPe#?TB^d5>48o&
ztnBP%x2U@oR#r;z60EFAGb#q6U^;*kLl4JAt&v_qZ>vQtG0|R-t;L@pCZi^bxrN34
zMU;&XQZ|_UCAXe-X*Sr80=U150DWvSd3kvOQ0q{ItovdO<ZAHSibX`ksJOUTKGFGY
z;#|!{QT(q=fxQQt0<A4>M7_GL>lXq=A<8qwPW)kDQcUJ8fJ&>FB?_CAY)yhew_Tm!
z4Wwi$7KvOxT>wu?N)r7em^*&xDg4YY`P{pj@9u5@j*j_aVB_<P$7BSZn;rA=<iw<A
z1KJoHnvbU;1amK`mNYM#{&R{9VXq8csVfaMV{rVjL~c+<C$TH8bs4WXZ%a1cobpfi
zB3g7C?5>Or-bXkB>qhP8dgv9nk%*OZ>W-`^=IN^drM8mNafj6t6OkInI;vH2(PEJ(
zRYz~T82{v~yikds>628Tf?1m0=*wyfPjaH<e&FR}>LGRupIf*;yO*5vthS3|%24x}
z3gAF{Bpk>?7=yG<2xz<(5<3GVs3687#{H;y)>(b6|JlbQ6D!ne53&Jg5=1f0Y6~BO
zQY*D9_Z>*W8vdeF8aJk*N3ql5yQQM%gFHe$@GH_6O#;$UwcBx#qcL8><0T+EOyQ?h
zmry1DyKKo?>THtwtC){Zx5cT)s)mDnFQ|_Y5jq^$@XPEi7>JZj*1VtsJ)@2ghp8=|
zp6tt;OC)azG%@`N>7wvrqBv-AB4wPR|E&RabIAgImqkQ;r)MCn14TuDZ6uNvZFr3K
zf^uj6eb<RkQ5wjSyonmyv`7Gi+vTBLDcSjbMJr5T&BOkHiz=j1z4!!8-7B!aA<(L?
z`$`9JkHQ5)z;=IBTblxA%BJ{^bU&1GqS!$9%^?4b{zzFfa`F{0(pYjMmDqNjWw(J%
zVzl|Z(9&lK9HDqTwvDMdzt^TBg28T6N7}~U-Z5x@B2v}<?HdB`g0{EFKX6l$<Y=!4
zGd+i|=aor{3&Vfo?a*=QXw}I$Jmap5$5S*}D5z204!G`*>%1%4Hhy7%{$YcR%UV)X
zW&KIClPb$M^Sq^(>tb=u>r=<eKJ?1(E7>;7&-9h8hh8F*FRwccqR0eY*Zp|Z!)EKQ
zo%cV*!uvw~kzTGep3*(L%FjjqYzh!?%2JgvW%vCPKNp1u&l+<&=1?(1y8k^8U3}w2
zhN10@;=Hh+6w_q|F;3_5RME5{2@<yCfu=;4H3NYNmX?;J&AIE%_GDX7lb~7kk`<As
zD-9q8g=W5Zgt%B|?<pp_jZh6gXo9v1(h!jUopaNwTBqxmW<!U~+kE)Y!(gOW6&dA!
zoD}|fU;rI6VZnbv9&Yvt`rIw(k&^YrgHXzN;=DMUf2LGe@LoKyUP$}c!R|hh80;F`
zV*VIxLH$6I0g=o?-(6%JxlAq*_0VkIbd152ONXr>teJ2O+PU2J*)x_o=(m>xep>8|
z_x<s7F_3u2L9~Q1^iN-Of-c7c*%c6puY<vFE93*Ylpe<$-#W{dp;jWw2#`RKk0fOd
z)^*mqp|()6)TXKk+yyRkq_VUMAB%L!4ob`FezsMTaysx!SXg{PD#bAb8`FxEgGL`z
z=E3+#1(&%kb366#$Rla>FawGbsNahR>V0tJc@uhP-jt#febE3HLMpO!I3IXQ>W0`~
zrOUz(zry!<D8WokU4!9r;Wz=5gs8AG^1cw%mOc2CMoc+DzAQMld;<F__cY*fobMl9
ze7%B1I{iy=m-cHA`dUA#vKko@h{ycIds|Ty3$)VFhX6h-S@q}$V@TgI-&vD84gd;%
zVYWZMHzY!mUH30BvGK_6W0%P^t0MYr5w-3D_}o@V<((yPGGL8v9M|p(7M8A4o!rKo
ztR+*d&bkJju&k>=gG|s?rXrQZQju5Z977bDhubgVRoAB-5h+%+hTJZuL%D#_sVN>4
z{Ye1AGMzNnw-wTk+xdd}Jhq*V!MP=5C~!i)k!FTU7`M(0I=rDZJb`Rb=L=Js^d`Km
z!U!Bd5<ix?2p;o@T@k7(;Kh=>1}X?)gPy7RI3LzNb~J%ej1xvhpNv0KyS=*3dqIRP
zw!dzc-$3o%J}yJl%q_hlrbax1@efr{)D3~yHCt~rR_=@0KIj_<F}Or}M24vjIcMUG
zd|pYwGuu+^op|;yiY#kwH_ns~d-D7_kR_2il6Y;Kv!1mChL8g7koNY&{+!`%ZtECW
z(+y<|iuXCq$xc3zoNcuZ{qB%)WC-N_>>H2WvcaRrgQ>)i{gax3@l}AWE3>XgZ!8h9
zw(ozP07UV@Z_}HUsw)EGG<f-jBvB2RhceToB}87d$Wo*zK4pf7x*blDq_J7!Ztck+
zBM(LsRV835AeN$olw+1e3^qNyRG~n1GC|$XD(Dy()Xt)xx&4vDl6h+uwprL|2VJWz
zn~1vj{|fN`)+hT1_(X^tD$lO^g6SiRsEO%F@(Tx+$gKe)dZbr)a4P<l&=Ox%;$*Q(
z%`)sD+qcsr6oD~=d|+oVdUn;eONM};d<EU)gXp*4#2@DS-uW&`y<K{OloK-YpwDN8
zu{L_)6gL!wVDRLAe;gq~>JU@|az_`MpeqRzC@39^-$<mTsOEch1W28dGc`V}9^Qsm
zG^XX%DeRt=-3A4Q)qG0jEHlM2yGpa-ExS;ut{tLLHI@Dt%R_LAwDU_s70TGTF=`2E
zJa^J4M)lcnde7ra!91FRJp!x1de+qzbNS4@Oar`OA}QcHOQACwIOrq(llGj{&@c<&
zf?|dDG-eqgs*w+`03zUu?3=ivY9rA?T%iomIECZG1&LAO8QzJeU!4<$E$!8E`Zgry
z56em`GJ_acH|-}C59aMDkVhUbgXrz&??=aR$?MX17jFzWFzh1iSYc9MfKJ>Vs|~?+
z2xX|HeC4h2S2SVdRs*Hn$}=3T0b?;%N9S|cvGX4U6V@er&)BqYX&lEm6Az|T0UN$?
zH7<NS`{<NXp!0NWLFaIwO26{Q*xdvxn`W?!;l!Hxw0ZJ<C^Y5(EZ;DbK*!#EPO+?|
zpOu5$E}in<AWexMZ*5+)JSQ464A%4c-aN{7+{@Og%`k!_LhJ%6KRHH+dDYB8qsU1v
zI~6$dpg+dI^$?>3Kn|IVi!26OhWo9T80~ue<~z~GQ?uNgJ%GOx2sLRsS;w73Sw!PE
z0PHwRi|QbA>KS1esx0uOGc(XSw?1$g>fSkLwRv>}az0t$Z-@?PAvqY&VUtxyNeU56
z?Cc_t$&{->>Uy2&thipnt~<Q$m7DG<B|}CJS|`I-OC9a(sVF;-D5?a~9!n)<7tL(h
zJpFw4o|q_u@Vp}`JZnRmT5~K^l9U8^zYWa)KAf#OH2zl?+YYi+*G(#N%I*fQ?7<u3
ziJt#StFy~hUF0*673s6A*V|2Y5opAm--i1E0XNoysDP%^3W)e`%Ye?g<Lm~S7H?@S
za=~B!hEmXH-trb|&yd4BqWV`!ct`~f_SUhwv}FETc)(STh5oFOijMYI97Fn{M1%SU
zbS9=I1NdfQo}Ob5ox%%q3-TV&@Nj+AY(8K*|8@p@iu&F^$TWBDLi~%0A)=c^)`AgW
zuaItWnZ`Vu2ZTeT1UAo`A!9Q$Gbeg{SR(}y+E8qa4N<UJiSxYM4s)%<=pfx-l~OV)
z_|BvqN>0pkmC9?2U+a+A7~LgO6Lv;_ILUovebfR0rGBfsP+T?QknLm5goEU>ER@MA
ztT76`kh!p^vc`7?ErXVn32M@&8*Y?ljd2Qk<C0N((yhmW_5iwcY1L9PJ=8X?4Kc|3
z5pPzT$uDU=G_j9K@Oy3}Ukwn$V@fon2iD}~j8W{LR(_{WV7>Inh0VCXU4l5^hgGC-
zn(NNc$El}$DKn`FOT&W@^vzdWTpp|mCQy7aco-Im(Po#0M4G~)ssj*5-<DPd_H}(>
zqS*wY`<bqo8=Vt7vdPRN;0h>1JG3Xh<K3-nNF3?3!lD`@W@kTo`P7o;D>!Bpca};u
z))9g!I&KMPwHaX(b^0h19X;YYEO7I1am9?}_YR{CC>Z$AXWE$OkCfsbSGAq0hn~G2
zuB%U@{?)SWgVnbe>4GfiC075{L<Sous2U9e24R4_6rZ}pm%;`b@mr7)+Q>?cazdnj
z6KaBX{)*a`Wm8a!^(JleX7ll~7jt&9i?!MJoJG|mWP}Vhj$RkA?IF+5xRS}bpfWQ%
zd(?VTnOBr;O5ws*A8|$EGheFmdq3Tl21-0%a2iFjPu){c=Q7S7L^vow4Wlau`6=&#
z^c4*^IrPN>stoD#Rd0$yb?dJ6>8@w&!@F3y2vyNE+0Ph>USWEChC#Q)T~7XPa;AJc
zQ?h$<Z)L}`yIn6ts!q0KzCw{B2Roi+3$>ZM<J5}J8yQS<!(H>*FWYFx(??n5Ugx&F
zJA++y%^RsQo(V-U<``1*L&z_*^z?;jR8RKVtCO7xNtz5#r<;>qFlbY5-ppX06gsH?
zTJnEqDgTi~f-(K_#G(<cAs~u7s;gs6iF8Dlvv{s?zd-gnyDvG?E!f|BuxLvP<)HA0
zhBmoFPwDnx_UoUVoXk@ha8naVVMAU{mDDz<dQS)!3266;m199JdDq*M&qQi4Pz37%
zU?b+mhJVRrM-GRG-Zb)=MGp;~;b6cRwi-nZVOfO?dktLi)+nOVPvEonk}^3=BB*Ks
z<x@{en&gWEY4_f+N6s}iv*UV;#{O7tVkIlUfbz0cFebMjH;F`3O5;qFjD)idl>3;%
zTB?{T$GKt4y$Z{;%|ROt7coyj$q&X;|7=GJ`FBUMZxm~b7v<-F&NT)N`gFkhWFoQz
zvRW$%^#=*3Qs(&>o*-9OsC{ogT5foT0`@0K<KdF3pJY}`E?X1Pe>v@1tkh)BOwy@n
z$r!hTCZ(H$R2z`V^VO5y=Z>X1fhb6Zd!ROnH7VJQps{e*uS(pHu^<qpoF*f;v81G=
zTr(s8nA80_-vbQevC(E-5+obXPk^5|Qu7^LXezTWDkvzirlQqQ>-??9vd`=rR(Xw`
zJ}+f2`q}5nJ6h@13aOOk<;HYhL2Mk3o5(mZen2*7V)g|UzKUVqyE*Aa+IURUt6*jE
zsEEDGa4@f9Hw+EK;zk+;=L}5zpX8eVe({485s1f3Tp@)Y_sa|7NdCzX8Zaf^J{i5g
z{)GjSLNo~v^<O(@FekVj{3n$@N440NC%ij-Af44&_21W+-xg3nNC=`KMB9in5#=`J
za^KpWla?i<93s3sx<bW<6OV6Wyr%tgUpUaTDBJ6ivs_?Fm;hsb&LuxXu`sHs3FP;i
z1Der6-QVZ$55BkUcr;T`s#*`<FVd%`rZ$_xWaQ*%IX!%EL+wEE<oEU~QmZ4#knGsT
z!a`xE+bsr(CX$%suBnSyuGKA8%2vijF0RY+llzQgiT>@`?lr{?o@_Y>PPpw_N9>I0
zmzrm9j}xo8de`{Os>g0s2a1BFXRf?Tv7(|$j_8?54bw$<6Nx=U6|9(wf5+<nxw8KA
zl7|l#pBhF?-Ks;VE7aJI2V#R91DDvBtzsG`8TN19LY?S%M-BwKg89>Qr0(GvssF%{
z;ex)qZ&@2pv=isbfha)3ApUr0Gjj{`wzgEZ#AQC+A00##FnhXnGM>24f1JF!V@UM7
zI7jFXFH@c9Dqx^zvTXDQZ%wQMN9+v%JTHy3Z9QyjIrmyZ^o3iNxJEPkS8m_f7baXX
zujIo6+bo(Rg28uI8mur%<lDLyoJDN61~lW5wlLM(vKJnoX7$?22M6=V5gV+!Z<%$E
zRCW*tv2-6*2(7-C>iITH@d<N`_OGY~eSJr;vEBb&QV(KAJAcct5W>J*oQWL@w>lE%
zF_!x)4gYWI2q)s0%gTaix;%V2K6mMCE@JvZ##T2SF6{4bq*W+w0v7dru+id+GkHcd
zBcK1t@%#pPsjrB)hH~K^4UE>CXR5{c+nNjJ1()a7?(kskc)1=8|Kd6;!#+JL$1ekt
zWvh{QgIvQ4oYa++&>YJh)qIoM%Vks8eLh-yZTnn5#1+?dMD~AtJX3ocYrm8%UFr&m
zI$tUuF~bC^<cr!$(mZmn5FZv_`w5rOQL|=ltX$@dEUG&yie$gHR26$jGBg9(c%Q3j
zLcBm@AymDGsY`X57Ny`TpLi-fFAqxJtrp62tXCVSUmkDfT?V5FN;|_&YdQJ(^;)XW
zPfwMN7Re=k<LyMT#b6)kxGP2PWM-H;@VhRHFkgRsX3^!1I=sTXag&?lSvzqH$hIj2
z=`LfNe>CPK|F1OnfBPlS7}8AwhdzJ(R8}(<Q>I)(>tx)=M`ELwA#X>-iTMzfbVoc3
z2Eg_w;s$~e2A&3CvxNbR%<p};!!MoRg{CQEpQyb5t@{D`B(^T>_h#5OkmXHrMMWgv
z<1Si5c3fO;0y0C}DL~}mxu3x&XB#9&mfdT7tQjnS-Ytos&tDkupxNxwDVS{ArUchO
zA@A=cvL+@%!@Qby*=zEVCa4&no1Q5jDKOnD_JWF+e6(Kv;2s}`ab&;MpeO&B^<31Y
zDB{f9xvQ+{bY>m?0_%`Jq2^o5GiTFgBWVqKqEad<D)~)mLmVK;Zl%SMYTfH*d~R+|
z7~A&y>g33XqD}cl*Sn9(+w~}e+SMPkomb@MuFk*E=2^@Z!o@OeAC5--e<B+w4w>=;
zdpBCl9f8!L<~TQ-cdy$kI5}n3+_S}Ca2EZVgoQLGMi4|;`Ns<|Ljv=9bh++b7C2Zw
z38??_A9x94F7jn<xB+N`OiWHzGBP5g(`ilk#g$)OE$^LS85SzWXDttM`&5yz{&dS?
z^thLx!Xn$Tr|E9T9!bZWTsn#<Z)#98Axn4LpzOIFy5iE<6gQEaktHF|fB^mCWH$?v
zi|NQO23&u}%9Lx0c#$`mgT9}mRjX9CDXp1bSX+|@=^HH9&dx9&QNn>k*;!eYb=0*x
z=j&}}ufhZjPe3E8|AO!Q3&!#94i)=efVCbRq5a}VL$*+z$Znx(F&8K*-25qePv4^_
z5Y8Z5fQ*m;N8c6pOY7mvc^tX!e{2cFe#lGD(`|5bct_!XKKncvurJl-xjzuor3>NH
zUVgG6=YQxL^Jhedh>!OQ_!zZ%rh40x3FukrsI?I;I(a=jtEa$HvUK6I_I<TT+%>$l
zi$Pc?tU9j4@qovy%weh=pXB{YUw_o3J2w3|#W!NXTn*d*h`CuUny7T1@0@E?b_2$p
zuy}Uzg)mwyQo`1`ee!@zw@vZ92<1T0_B=Q`XacK4X6|YtjWy!#eBElY;LzvZxvRN3
zMK*(DdhrxuLQPY%^mwVu_x<|`Zumz)onuI@W{J{&e9OP5Tyb+qT-im+Z||4jZ{=iC
z)RS5Qd}^rov(=%%^0wlIRCfYgdqQ2kU>35_s9<Cqv^%$~=_t6^D_{>@<iFMyXo*eP
zLIw^k*&gQq`19F8d=-etQV2uLmLT2v&czTUh7bPL7|4?!WTbAO{7smI(SE=mg_RHo
z2>Ntiba$*b(V(8V<o|t}|JpPdN05t45j^)K>T|3}jVg=2^OQHks)&AOF!Wy6#}I|s
z6-m+qC6Je&JYj6GN74VEpn(PV7Wq-K<)l|9*=gV}5QA0Q|Azv=iHvyhZrc0B<oAE(
zPS8(`0OanE(bs@oLnOh=Z^B^0pFtGfoSx!2>`#>JUo-8E5wt`}{v(z^{757)1&&i9
z8%4?g=cE50iOBC9h4HgF^w6ZQjjC}V4Os*ujUrhcjz;9PjGzAZ*)^Jpd2f+8(!c$;
z|K*|m3;z6Xe-rS66$qH_Cl}cV&>T#Uz==&c&{+ctrV*-1$%-Jij8^Evfmb=SE&ol<
zAb`vP4?BjfBuPh5!O~y{*eg1iR?^B+>A+?-MX1p2NYnLsGy%BR92BP8<Q8T7q$M%v
z$-*EJ=7X}HrLAod$igVmcRY=?-g=cSjo-I(<s8Jw*1P>7ub_aE$>Xk=nC-UMrF0Uj
zlfY#{*pPHaZhNk7NxdrA`C@p7zMY$&D>0|x8ppF7M58xPd#|<E`DQz(p(pdR(G;+z
zJHgIGntgOZ?CZ#DGOj0KjS*6Oz3i*DH{i9;ZR}DX%U%@fe@3?}DXFrmZ^o^{cTbz<
zG+CwWBd3{!G3owzt1C&!u5){_EA?J*Os#QqUz&|mr&jFK5;seFe2XEg{HR2kWi$_J
ziCiys-Y3v7{2?OwdszMb-5Qd8fD*-?!_MhDG^8~8J{(Ed!`GGsYGIa7ic{X;=(ID0
z0|li1?STKcd-_3&5>wHIIHV*bZ_DK5u@0VQ`8TJerb@W3J7cZe4-z<mFuug3xVW#N
z3g2njBzZcy>&1loeW}LCVy)Rezln=v!{fZ;UKfM|rqNGW$@owbt6q=RK~qF#ekCZ1
zivQUsxXOWVZuRj1o?;GEzRTXg2#eWnsEe>U?L#Oqxv#NUa@&6oiy~~}3KSGYU<8{%
zfIg#J2|0S<;x#(&Pf!HRo@ZAMotqWEPv0J29X_4Dw1WSItNgcR_(zoY33nR@lk(Y-
zeVXo{_^wCI0PQBDMh$QvABv(+Zm2v_SBTQc7XGKq;D5bQh6&_Hz_rExQmXQ-wiL##
zG`3U9;z<FB2u;JlPy{kZ*KBp7CgAl*08Rdxhmnk2@oyKX2f3xpXc0tP^V|x60l2wW
z6*4xHWF(6AA+$6In1Xct9}=H(sF<_wXN%7sd>o359eilB^L~76%>I%$krqz>D35td
z5t#}a??Y!P^!iw~5Hp%wJ{0D0A~9LuKi{<a=<H>+Ot0#~V|_oVfuxM<+?9JWzcYPy
zVt;h~KMKXaz3V?#Q)uJ|&sfu@=~LYmND-8iIZAiwrt58^MEy9jDm|l5tKFM{aA-Yc
z%QYtnOA6n+b0aDVpz;z({{1mcVfb|rb*!=~8vb>Ezt51>F}ZMlTnH2bUwXcyV<S}4
z=*MIl+HoMm$~(j{lm_Q4JGZTu@&+WrqTD?{MyiG!IT7q#xhWHN%wKWo>77jPwXWh4
zGQ{IRNG76iP;U}PjRmRsB<6uDzdrRwEo}r$I0T0<?Q>m<GOVeUv3nBa%gmWJuQBa7
z^A>G*DBsR5^P6>ObL1*{XivPL;7m-(+S@Z_a@cPpG>9sLlGn-#D0$&nF=qvXTDd#J
z^zI>G;B}Z)_|P2*^q}w7El*l)HmW70(J@E&KX<|IPyvttgu-CZ59`c~Kts~K^Q!~Y
zdU@-iA=a!-LvYls`5kSAIM60J<S4RzVAR(jn+J~j%h7+(9sa)mqxprw!&B3-r@C~x
zD~ot4t?kNO$58zut(ug{BmmQeG-MzkbU8Y8on6vsQP!I-zjkS4-kKpIuiET~6woDf
zz?;)vEu5juRLj4{NZglS-j}=u*`H00+Ky=6Ug6bio4&k&b6qQ7FfgDrusIc9cPd98
z!?=L^P^x+8l+tDLS?#&etUAQuZoCH^XVdh(D+1`Yi*i406RCx}ykf(o(^riam{OIv
z_3o+MYV9@q=G=W%k(X3OHE4fhi}+P?Qsr^$S_-n_bP(qM<YM4&f9CnzEV=k9!pW>(
zdWF|MRCx83p9N7|ZNU59Zqu*kylGxGW(Ain!|pUD3Kdr`0Y(CIkg2;*J#okxOmDYW
zb#YMezY>uDwdbMYf?=UyZE4`bXIN&U9Rpt!xgf!QbMFQp9k4|0NRy=v!BQ4Y9^^H$
zSuu51i6K@dRL5*i8_?0;H)QOhK?b9N54)f3jvnU=ghZr8M>zbn<8sNXsG_%xiF4o@
zitn+cw>kN#FV>N~Vp$H8ocAeOeaG4T;T6(H{L8}sq3bP!>T0{B;RHQF!oeL55+K3d
z-Gc^Cu;A|Q?ry=|JxFl(;O_1&!TsHtnfrcbs=lv^AN&C76nkIm>eZ`PH#1a-<BHTr
zV^ururnwPHg`yf4k+mFA6wXtRZUcor5enV&S}V@vVM|ij$_Bysf6#F^kxyD|crc@M
z^LGN})6(3o;sqtQvKT`eDkbuc*+9q7za<oUxY^^51XAqWo?&uyDdQdmQlLNDJPrjZ
zdl1nVmh#Z0bm&XAz~Yy-y@@;jK9z_)Rb1^#F+Wq{u@dE5{Ix{W%Shl?ZivsSK8g&d
zR~adeZ(hSmfSht;Y$L2`Dl3J|b#p{Wj4^v5xn}Q~TR$n*=vQ9Je0G&z3~w1Fk^_n{
z_K_B^vt`4F5;v8fg<cs~&57ux=d9|v>G^XqsrFb_w3nTdj^TTE97Wez9TqqeJPs$T
zKCL7k=0{@jH}Z(}G)M`Zn7d8j(f`R^yZfGojzd3<(rp7HhJ!fiWA&0(21-*F`)3X1
z{~tjJkdl2rA6kNIFMB^XIozvPN6Kgvv)n?w%>u@u4JCVt0)9Z_w}$<MsFH$04q&pT
zwqbDt*k3LJ171Qdd(anDxauvy``cu9I5{2w`gt@lZ;!`-Dh-TFp#e!8O-}eR2nt%T
zBb@*ORukYcEtdGAd|%D|J8?oXU53cC65kaYSn48-SC|&-lm*tK!CQa6qHI7}&}dWt
zU;vTtIm(Z6UO%`Eonj9}bSDgem<(T@xZG&CzQZARJzdr}73aq)>$s+bJw0dewTZ^8
zw;Vh<LXGLDWvz(P?tGjcCZ49m3K7WBymglz?{(l<Tr~9npex)5Q{ufZ-y};zVGk68
z!@s=wUGd*ov!h7hjTs-L!vwk*r6f?0qFdR+HKlKO;LD*`aT!OjLrk9{?WdL0<AU%!
z4ADA2Zgcu};%(g-F$*r@0cQz#8+sLw0Tih1gFh6a@5|=(P;njj6`10bnwy9;`46Ev
zD|7RwR47GKh)Y7AI&tDnNl?Hi6h?O#*>Z_<J6TUS=a*KTRI*%0Teka7!ooF&*b)(@
zEh8@j55ky^2b8ZO{SCDTFPjk?5Ne9*!b4C?G|Ign&0Vm4e$l{TQu#Gu32_tAO62O?
z^K5_V_s>5xiE#F9>e!u1Y*^B2`*Lk&uLu5}U;KN%|G7{82ln`gh`w3o_M7uxdHT|K
zR6ne(q?MoWnT)>oPe}<W=O5~Aed#2IPF;TT!{E(*RTUMi726?NHdIEHiB`AUN$#^2
z^cZ^}IUH^9M*s2ltkB_T_B!4`t&kRI(sWi{H)ij{B>}4=n90rJC|c#<Cs+p<A%&?b
zB~uzH{68cHiEN7^eR0Iw$S!Un%Wr~3I-ucb1WqxyA3@$}s<pL!DmpM<i)$tnG><q=
za%T@WiU&Yw6n!(PKHC~z;|iHJyQ25YoY#l08{tlY*=k>Fc$aWL=!iikD%{$JW&h-T
zrF*Zr8r=oCt+AA&_?3>Aarr1M!?NdM@9G8jtNPQHfccsD+55bP`2S&la6W*%vjS11
zgJiV)-&Ip1(e!!qV1ufM4Bx{;z5OhU_kcZ}ldbB{MKRSWVDF!*Z~vA0S#+=e<<13m
zkdS$q_f~)6y0|Gph@`&rEWpHE9{yoMv6(6iY2Nn<IO36!nQb{qnqO3_n@HM!4PmA8
znb^eGS`lhy9ttb9>n6-?$tUD`e#cS}v+vWPMb-=NliCY1LZO6fDqB5tch$aCuiv4u
zx?bsmzxSbcQxEBA{O|5DyA=PAg^5YADfE$Eh_Q3kS95(52D6L77*+^w#9xpW(UC!G
z)vGCn@c)6p7#6{Ra7uEX1RD!$GEI+~YAIcq$Zu}QWo72%M(wDmW%lrf;T75}Q~EoL
z3+nW`=s4<5&{>LEMU`YY5HC@y*Z;oD5r{rw0UYZR;AVQE;or*xv1y6W?^Gw{&4J{i
z9Kb6(g~bF-CX-Kdr`z`gFm6y@po9G&1P(@j+weQUWJeTSC!lNJS4;@huW(%$o?;!<
zN#vl(cc+fxDfjAX#rcDz-+hu`byL~9o3QdCEk5K4Yko=Xtfau8DIwbq@R?sw_-z@S
zjDg$|Yddf8U5A^0JKP<oY-otB3cPRpz25K1r!fxdN9lIYVa}D<f4Vv}9G~S{jnCKl
z@>1fZu6hm!@gMAq9vGC_GpgMp?D^xUxuFS_ru08jEQVxvRLPa(=IWkO>*n~`7rk>%
zvEHY_pdL-G7)ptJuy?iRhMyIWz0R3Rhmkh&Sh*%?YB>#C@x%y0y%^=0a6YKbkO-e}
z_`bGal@J*jAbq>SNi?--b4c?SP5M}ZL9SE9Rd=5}YxpG&D78K$wl_+RW>F?^F%>9?
zKj<^9NXBc_$HgAr+W)3R{oB^MqIPuGrCK&gzC8z`B_?9X#2=6Xhjwz@&RP?JfHb-G
z*XJ{nz0q_JI_`N~tA-7@rtMg%ePCjdm8k8>X?Tr@O-JrNzE)Sq_OL_mRb0o&ETu0*
z=I!D(#(P_YUFr!WjsOuYXY^B<BX6$_JTpdKkR6wRRloedsaVR7Kn4)y)5XLVamDlO
zbK?JEvC}+YppFMA_Ms$W5^yejxl<9XEV`v56~EAsb{tg~91wGgh@sT5Ff%btb7Xs-
zPb<n5r#grzsi>4NNQD3Vs8}EZ#=U@h1lDn-A8$?+4<3jmA}}#A2bEbj0hJD=h!}FD
z`D26t&14Sy6e(S{f{f{b6SRUn7>5MZpx7mM$a3K1k2FFAH|kXMlMC5$uf~Y2sA%}3
z45~=qbd?2L2x`Tz>}7ZZ9Grpha%D+r^JAroqjI%-`u_t*85B?(+;2WFsy1e-j5ftD
zaxE2Y+QWWui*tF^MPTsh-@7UKuU%+GH)dcLx;O?QAY2NJ!vYf;8oJNDcK`kZB_+C+
z^UKR^JHN4ml&BG$Phad&QKNCd430J;a}*!`gf--2RLR~8E$qrhBAkqBEEtze9xzP#
z?o4J4h#?pCvz^7D(AL&oPS#3D!3}DSlL~>om$}Zt;d9zvt<Ta2&1=tef7`|jd$QA(
zwWnS7glKUyGwSDcc>bS5e$#b8NXM@zzB29h3_QFtR`K+MApR$kkxYK=vl0s+>|O>)
zhCB_1s*Ym-xdTs{;+f#;wE3(c6YvRoH&wqMd1c@!mWX@$2thhJ8Z3}W4MdKyX}ED~
z7{fkj|A(Sshy{C3l4^*--^*A;<MM8+(C;z_#kA%-G8M;!M9|fXTI%Z*qUH`HrKXw@
z_a7dbruGz(Ii0OqtaWf-l0E~$WK#=G=C{WS!qh5d@}`lkjhUwkYNRkeV5l~8zWe1L
zzIaMgwT<qApGWmzf8{u0!Y20pZdAdsw1>8^O#ii}&c66vH=e#U?ubFMar-29NZ|_e
z+2>o{2IKFw<AO-Bv*-q%fY7udbR~TnaCO$V<oIq&RmEo*nsqjeixoWWWraVDmAF*h
zr^`=pr873#X6}qO(<j+{i1?+3;9hCEQsf*Q>kDqM9VN85R6tEWY4X?YjR(CMvj&;Z
z22OJf(KApdSonmW+yOA-&cpRPz3j?ihVd=k$uCLM;i^MnjWVw6r=WXyOo3V-uC&t>
zR<WXX?f$&x(JOG}k_gtGjpVN05f5Dwx^?Dq?`9hO=pSpwQ{7`m6)@6_ja~~Q_6TIG
z5Dta)QiB1Smzduu{rTM%P9CNkje(dY!k%@O-`<-bW{SXga%ZiK)uHX@pT=P;7}g;n
z5$U;JK6%IQ9W1lyt=+=!LFNpUjO|bE(kVl6E_4p9mK!b7n@5mcf`Mhz(b;>~<HDej
zGD#l(R(C$(a(P0(ag83AiMaINM_O0+C$c&kckb|7Nz_SFpOu;Wst!$%R`NF<dxqwE
zS1V*V>Q^L>H)AV}zFpTebGe1}H|`r?&!^LtJ^k*7TKm{wSo`x^QTxou<*$VCN`cg{
z1VzP!SmQFT7|M@`a|~fEQD<?HQ##6nY6jrK^X<lh2k#@oF~Z^OHZ`wZE$zbuo`2do
z0aD1D>dm^`rGu8=VZ}dYu%hPDv!23vKFfUm5H%!>Y!UIv<J$zwANVf%u@6FP`6#{u
zq@-^)hg94CU@k35k=}fHn8t=l<8MpTDK#G%Zni+nMcrPbD(gv_j!vSRdSv?cn+&J`
zny5*<ZgmRS$0?I`(pHCqyov7%->dL$;JLj|cROv2&&*ugNmd)nmx$p_C+`D5aaRp%
zp?cHH?27tQEFTMqV=sf5hoxMy+_z&v_zk%^h`?g4Ej`0!H@RjG)#U4c?wtq!H_M{J
zj;No)8|07~vL||vMcL1qmxpQBS^RaZe@xXEc6gXR92)}K%4+WD6ue@~0DmC=l6&P|
zcsTM{Sith>@lC9LNQl7u(oz%EpQA{@PI!N|)AV{-i6nCiay9p=nZ2xZz#M;eXT=+m
zVGpQ0gu+PSZ<P2fG^h<^kuy~XQsaf=#mWcMElw(E48_&4<1!8p%<$s(7(A&4ee&RK
z)7hep$BB!^d;~BpAhbK9#gr)M7HMz>&BMQ?@3^9~gQG`TRx+61>!eccO5kwB#9+P=
zQZtQB%YC2|4A<O)e}~{t0uIXALqwnmptC4w4>5Jrcal1NE7l|no~V|h-HfTR5hc9}
z(Bv=+f3TBIyY54uwGc}T;iKDEWcgajf7!7hi$zQZ{$t(3xW_~x+LWn~Cr6<>b2@B`
zg&)fhoU+)<693U=SRfoa8wakMEZD<nQa}Yd8wutJa!YBodJw!TXezyPS!*lYMu;-0
zyIV_<npBD&&F<ljSSn7T_}p3HKU{VY5zo~}dU?n+pW}fuN=6W*HkZZhvC^$Ev8OUV
zwl^C-aKt6i0Qo)Zp0+|A@)fxv(F^j{P`0jO#FGL`EEAq8(xt3jO5g#XDuyv)C2b22
z!=k~kqm`3kJn-oBH_9a`s67e(D-Vjd-_-O)+JL?dg~)8p;~ia(M#knsKJuVu6J22&
ziZfk~wA}1k<D6o8?7wpoay%$Gi#notp7T@Tmhmk^?8(_P68831yzfqvi}rl2^y+_U
zCK1TTk0C(m=HuE+vm-^<w^AdGwsEI@ty^b*x=%^cdU4&xasINL$)wWjqCQysy`SGk
z>!^2YAiVmo_@x{7uU4b4rJ%5|Fb*H(_dFgxelz$rtA`usW;2X_65yzc0DuX2?Zk8z
zRrhl}c^(llJlq4bG0f);6tAo>AUs72NE4$o4VOjRf=1yHsBC*MO>}H3ZI%)XkpRJX
zJ|AgQ&rSLWc)wiozcQ0NOlwlQre>}r#5oJT0qq}Q^RObseA)H?=T3>f0~!Cx=|5*m
zj+w!!!qNk-l4i?lC^9t^2)9rbswp2?-~h;$bQQ<%nAcJxt4U2=y)-fjfIUD^*`m1B
z*=nm}L;V{ioG(O<httKY)ly9mF#20CZ`LC0RA@M49fo@YIs<b~$OHm9xK^Z6NAA&(
zb{>SEpz3k(^-XT?EytJ^@PGTUgd18%6y47H+PGL3Q&8o45+MYlwv(<dH$%)=V-t<s
zgM-5W9WoZzS7M&s<_kg(8%Sbrm;D%3Y%6W;dq_S_r-+cmk{is>!qD48UFfDumFIH@
z=hu}@5#a+dg6o<WzBbQ-`@nAj`KYVGn=FH{Stn@hC-_kw*NWjiI4P?Z?hi$<Fr;CJ
zz9_e3q>&Mms=RCVH9Um&^8s2vmOlg4zTmyW$jG?6&F<M4qs@;f%H_GONh0BhD*j7|
z%9=aRS{57#dX&Q|3skf#f#j|`!#K`Cbzm|Tn)blubGM4|&S4>YUWgO3M+fI2khA9&
zKh)j)JR)!^T5il}+XDJ+oZRPVAs@zpP>4PoV4A=dwDADj?SK~QA^+@`P3LZnOs%F?
z2(tS`a&=~|eJh~b<2=prH3GGVHyR<E9JHeeW`{Q|*9f9u^8JnzHV|y)TepkOi~eHY
z)@GUAg1cR{@eQsT5(yuPQb87KKC}h<WyYl(E?GGa$3|MPr?=Su3=cdn=-un2-Mum3
z;%#$ygi^6lLNFFF-NmL{P{;@DZ(l1F=KVXqGQ$6h;@c88&%Vi_0ZvmGE*EHyWXOpV
zp3F}QiE%y7b&oVBh)^MsZ<gtWCSWV_bezxEe$!c8dFI?|Kg?miRW(94NZ?&y_0fC!
zE$Zn0c?64uanTr1x!`;S@!W66`ODRIj#M}{{{_cj4MvmzSU*9i>|<%%w)*eJ?2Eus
zmrEDrj|gIZEzzy)O~4Bml{)M}Rz#?*Ne?S}peFRqfDix6Mbwxn@uo>j;XSS#Z>;Kn
zE(4$)hg6|jGw;10^X-h#_3}MdTg=bEJW8zceM-%n(*Hsk8I*az&`eR)KU28c`hOj!
zu2l%*@c@r-3|v%*`=8&G_D^>gd^17PK#XT`y3<;lhoc&luK*87pcM=kJC=lrMS^wc
z3(4|^iDjQtU@KkhqMIah5x8JMk6|y*>!o1KSS3~=H>Z)xHCOSqN7E!l_!CL-JBuDd
z?K_;0{7F01zo&;FS~+c7Al)cysbH&k+L>dd0`9X5q{;gnO$G)ARV=P8i^~zPrDzU7
zg2`~F;N1L_#2KKeXMTN<2l^!iHm_#JQ~m~B>f5W}QiFIy_C^<dz#4+E>8wbf2nk1p
z^G(V?q0;tZ(EKPRMt#AWd9J>-%_Kh(MiEdvNbnlpY)KJ1duk}kO#yE*b#myj$CjbD
zNrP=QUo3<-W^-`H6FkEYJ{DMxP-*DlIeM3?=5S3ZiyCpiJXxSQ>?Y)I)WaQ>I_gwV
z_YHH>MN@DIa%_^gKOe;Hz`DkX<a>VboP6Wn=RoD;*xD2*V4>VhCB})P(N+JG`~GI}
zoYO2nTEW);8^yq&{FU7<=h7T+Lu|$BpuR4JMHgOFzQRN-o&)k{!tN~s7*aCOa0mQh
zle`<u>BQ-%O{>2S5y~zr-n9vo+r&NVA<nw1Qp6cuop0~2(5%p{ijZ(f_>s%ouC3xI
zyW<zO>O%(5JV(9ti7D5Q0?=X+;#SwP_XdGLvuj#I9kw;6Lr|%$$O|Bo4=a<r`G?T)
z=@DAL!89u>uaWUcSxo)N%=xrLS>^hv6%{5B1&V#uIalUe8L;h?*Vq2~*j^YL8@s^_
zIxxvZW%yd9lG>c^RT}bNhYCyyWxertTj@HjxRv*b)Ff@D=ombn1k9dXGkzJ35gl52
zG!YEkT_mX#`XA~#89b^x+4D0oGta0YJK{P4qpXtBEr)axHYz&5hEO*C=PSkQ7KRK8
z!7KmjT|gC}cY{4f2;^y$#nYh>^DP_cmdzb~XgKbx8S;Zixd|cXQnM3{BEA-6#JJ@y
zl*=q26OR;Wz?i#tUF<5SSGusKVSLFZZ`OSg;CuuIWcHgqAsJ1Ws(Ak904JH7feY<t
z+#N>C(Ki5}KlkU)pM4s}TOZ^>z)ySv$X>9RNKZ-*qN?WaH_CdRy~H@I2mEnDA5&&C
z`A|^Z75-N%i^K#K3e~Ie@mDWD1vOmqLXi^ALLy5Ga`Nzj4lYLl6H}#O^b&vR%*^!k
z_*N9ZZ2hurSotu>LCoT>Aml+O>(*^)vk!+~>^mUeB^T*i1;<^jg3k>Dm6>Wk6AySZ
zP@0t2yFSFe&!<aLsL~aRo)VZniW~sVaLOS0hiOuVpgMSy!;=E51aY0@zq4ecbyFfm
znx+FkXHx7^DRTwoWD`*ivJoJ}5m%u|XRpJG(&uvwz_6Ad2VOCo$cJ3z)h!N28RNrb
zUPV9Zu9rx1eIu++A2Rj})pPnBDPP&sAkcAH#eJa_(N3V-2zOTT;v6Med4eJs*qH(E
z;Kp2TH#wmiJ;jg-HzgoD9hyr=PkqZ6q8wL09y#Sv!TsS$g;hg_8#&Yq^1y{`n&Bri
zICJeMF^lJ*+4<DlSVBv-{et6BWW@A~VyDDD!w<rIctjjrB#UMyR}no?=lB?LPb8?%
zGc?B=E*OWyD68RR69Ka^nNHy1&LaD~z?N9}iIi+@sMxGA4iaKUz6)K}$mGuRFePiB
zEDK*uxIwNRL~3&6e%IFF04hmetVJWc5tN^s<2=^0q_TZRqKMU_DXT5oi++gQ<WSp+
z8L*WP=pnF~wb-eBLD4_uJc{}GFX%7^0r`On7K*g(je`|mpl5G+mnFi0g8=y9cZ7}6
zw?8rQUX2Swmr8u5gn_bHuq$%hT`8fz=YCCamob=TkqImH{l^Qyl9g4ufh5PvVd@m(
z{ykYdBl{|pUp()B)IhQ@ZGRFf$APdF&^Ct!B&XAXC4-w2SqOhI|0)m}e;=6n<})W3
z$fkdO-Ftl^9vmH2A?Hp9O|Iug@s+g2*=uOmEq-vMVcP6Q;g^PBcDgM9PB#w9gwvk{
zPp9B?R}|%V^Bo1nx-VHRcxTEluWB`c$?1yAUb<=7s5`JOas|)^k={{t_?8Vm0AZKw
zC>Z&;IM-GXcYG4%c||4)CDH@<f_&dXTDCS9V0rBKdJ=yCNQ_E}U`N6C07o;~{&Lj*
zX)=SEXzb13OxhAED#gvVH&B!vuz_y=@Wk%&0T*X=OP0B2m94X~bMGMY*)OO5N-C9F
z<$Z~<XpLI%q#I*iFLt3jl60$$wt#ERIH8l;nnls29}3_2ilREWm*IB3^L-w3A)q3N
z^}I}7155mx*zLhK&F#RxoC9n)?ia>9v9MieXP@k6?@z3}Qh(5@WBIV|Qb`2x-~X0t
zYLIgJ5%He8|GWoXZk)aC0(r6@s{a@uWg<0U$j8n+Z<{rD!P9b##Ou|(Ki(>Sud&|f
z3bsQ!tQ_UUC@tfocRHRIbS|d&ad3GBoN1LyjXj&la-dc~p2diPl{S&vRkzANKZ+jx
zEr2k1TeHf_pwZfwE8M;A_NSqCj?(N9bjrm!dhidQ_Ww1PB&UE1EgRStjT(}Yey4yC
zp|;ScS^Qh;P3MPobsM%(zYz(>WeuU2FKgag;#i(78|Ao94BaR)EwqJR;a4n{Enok}
z^d`Wv_sP2f3kPta-V`U^-;I0~h6}df62Jq>W-~11p*zRi1FYXj#&M&5DqhoKnIMuA
zYR-=MCv>s}AXjL-w?p&G>e^+AHvA5`>?O7MrNX@MVY>qFnO9vztU+kDBo>mET`5^s
zP>?Xlm2?c#A}HkBtb(I)D3+>_tvA;X5pDF~xdAIJV$v%OyD~Q*L<J~2?QHT=tjsXS
zU-)sNFs#8{yC3VUw;jt4j?^u)h#NtpR&{1em+S=$Vmn0YGovC|_N6<f{7$MG)iKI=
z2~1Tp`N=-j5Az&IT9Q#(HRvGT(VOHBQN46Qm6;adec&oQl=eQ-a`Q-XFY7-rVilyZ
z;r{KxRo<?yfp7gD8eKy*?Y}rZ$6vCfWrUpG-f{j#-L7G#Bjc)25{-*jJRP1iiTj7#
z2qI!^drqJA8!H;>GIV3PN)P&&G#w#!^eV0YYydz&X%;X<&bK7jjwSp!6pW$x2Q?l_
zdCwb>9Y9=R!qA8s%1O}UyqLx7Mxlf{l{wdzeTv<X)yv-^0Z69^p|CaWV@QWY3jH9?
zw<}K6n?K^B3lrYQtl{>(3?@)3<5I?eFBrfV0!eACW?0Wl?a!&03qh}oziL;x!uD_U
ze(enxc2C^fr@NM3UK=3hb4PdP9Ep6TI`-jE(bkp&gxyLrog)kbo)E0v?d@^xr(W%O
z5m9~b2jX}n9je=Y{+BNS7jpdQJvANLPn+1N{)*`)!%2*xPq0wxcFdK^fk@kY7RI?*
zSpsK{3%)&f$z$#XQaq&R?te00?=xpEEX-?Xo9z3nJdV`uFM6?$R)T3kKCkB}uL3~!
zb33WWLC?!D=APPB)!elXVh)KCg&wZ;>qV4TS>#t1T*a+0P86tY3Ky=UWOl0zQd?j5
zdDSV8@C-6z6n`FCmaQ@rlQ;^QoY$AL*Mh$V<g`X8mk4?qb3(lJtPEc#c*~n6s1d^g
zhaFV!Y=}gvRr{C4l)q%*BJ%%j1=IjugcD;V7K#Z6j@#VFirYswceu$jVB<^^)h+#b
zO6R*X5NC}($~(+kcwIQwsxzhDRO9jPKh6ss$)X+ltYSD?gD5zHwv2O~y=JV=Ap<)$
z)T&eI@=1Fi2-{I{09JZgz!WW)g6J^SB6CdK8NC?LPX2b;vcREHax`lA5@3eA%mLN#
z7gmo|pRde(yzqSk-WU3&zlpp&&;=LAu_KF6CE2iQyu&t=6k4xAc;wNl92%5ONa-VA
zsE5D*bI^20%xF=d+lQ^+*RF`Eka}nTmywJmLT$g6{rf<TmYh$~EbzPMxv#l?_%;^S
za!5ib%bBK9x(QOzqiGdk+<4sv0t3HOR`W21?30t0z*UTf->8_r8PpWENQB)cU8$_e
z=b`NKoYx0pR|e)(uFU>kTjS7%E~{7=HZ7VU*FVw4+YvN&$XI&%)0ND8YGfs%Ruo~n
znPbaIXp6e6Nts*uq2awx+5r!-Zi0jCtw_TuXC-@6JKMzA!q;>TZ`yc7W(qdyYti-m
zy&wv4zvYz`)|U1WuFBq&S{zhh?UhTi{(&3TvRE(qQ<R&ktRvci1LyS(a;b-yI!#%O
zQI;Kj6X62(KN4%ScW=w&?ncgssD*T;^K!{Na4SIT21b9gDqMG#;uS7Y9SX1%H4oBF
zJCemS3%3_7J{_N$<J?0AK!Bz#YYilDf#{3tEL&@{CANcnET#PrORBhmJE`fkf|*S-
zuP97a_)ZESBR&b@z8|X-ux$nmJuw>*J_SP5eahyr{ai^hLIg>w>ET5AYVTXmJmh{s
z$L6Sbhf&b<sn=T)!_+>WHjfb<0jb}{z*g9&`&cQuY*<9BqT2Sy=61zArlPl9<0wT?
zzT5VI=jjA+-HAzbzi2<tXczM|P{LiH=tb5oFKb}J9<O>nS}ax@AOdS4E`UYn*t0+x
zlqB+@O_elYi(TP=NH~qQ@q!B{R7%09%hz%_%6-_-&C3i*f-vQH7BQ{bjqy6ZW{nq1
zhEv^kK%*43WiKnMYUU4=C!zm6>14s-e!QxlciqH`<YH7XZNR54c?I%mRrR`g;8BtE
zrK3-ENBF_=I`Z27Xdjj67}>(1^>ElN(-h=;T$sSZ=_x(Io&qx%^y%Klp_lr9wtt(x
z7xws5$p37jA(Nl~RjV~CtI=eN;uAG>O@F9M;8vkz_`v1EQ6+W42qImBH{C`fVmJfJ
z`4g_4z|si&nmK^v*uSvvLL?fg*!B95cC<A2h(j&BBF6+CkbNmKhRnL1v!Oy8-;mP9
z<M|xKevkrf3Kq(yPkueI;PL2d40b`9>i-*9;CWrDUCco>2KYGt%K__>g3sXxuByyT
zJSoB-UD|ZMuZU8x{AtC!#QWHRk|CoTspuWxo;2_LV;;{BWfjmU%pjwh!byIK!>K|s
z==){%O7CU_g(K?HcHzXH%1uH}zR`xt2}2JS6%<t}Q~Gw1WBSX~th9XgTPcwEUM~J?
zHrKTEajs5<Iw!}Odeg@lf(g6b_6`iyIJWY%wzuRSw_w1&Js<727qD_~2<&sU-H#j_
zI_@U#c_@$0Q3_j6!Yo}G3yGyUr#mj1jK<lXwLMl;<%)A7p&5UAn<sU`Rr_+lO?@hH
zq)t)X>Q|g;k-8#wGKo?iYNUKz<sit;-S}0wawuVpmdS>FH`r_${g*kcP7;B`0+(Ru
zO2$u$Z*1T8lopD_vMh?H0Bcr|=6Il+Yp|Pot_ryMGuX599Xb>XnLdpKQUOMww>Vib
zU9Yo{7y~Oy8rjNY(b3PG@1MSwhv~uOhzGM<q)+o1P<&|c+&g0=eTR;(QS|XKuQTwQ
ziD7t@AH}6fr(vgLrFB4orlm;7!kAbCv&l=2G&5qqN<FmGf@wLEJt9?ZdB-y^6si?D
zCEsneWhY^qYE#7OPF_P0G>!i%SpMifJcQ2gh;Fzk^7iJuHR!UU6_djeqAvpZ<vNkV
z(s>(XpxtCLR*@`oYL<5r#xgSV)4|Bz3%l7cm9(w@{Q3ALvd-X0i=a)q_U8B|*Hba7
z_1wWa?f>RvXW4<z@2GnUD;FDF>u(!Mpe~fnj|lJw%7G9cV`V7t2SJ`107@D0f_DX@
z;n;bX6@61l6@=L_z<<;xMh|C7NB-2k0Ia6*<o0M1V|TFkx+Q$}S3RgM{uVrZiT2Q+
zCb?fC<7aWEQWx2N2x{2$Vn&(~!(_?vUMpD#wsp6nnN*Ox_)#GlfY4FFA4rgCPj>{7
zU>V7mFCka~5HO?LjX4<~Ga2eCWYRBs{1gSW{x?uMitnLlLC!kJkBSjb+ngEZ>&Dw#
z85qkJpmv=2>b-gUg}4q?_Y>&;XJ!oHC?Ac@W(Z}9t8*%=*$-w9K!p2eTo@(U?FWOl
zpn&;1_I@>DYOstDOt5znnr!m-2(@bc5Szk4JtC$>!JZ)d^$86@5{X~M4OKjmlt1f8
z<v=#-pY+psT$obW-qs6H+xL2Cf}|%@gH^hx)RzoySf0+iQFegBvQ&<DitNX$+Z~9!
z%Tbr`GqdVt?fKNn5KScBl7#HXueW@sE*w}80wSQgluw#=7o2APxWey`$COvssayFu
z#{a58*ZyRi%%J0&>_0}(wnr+e_ZWV*d4BfEeYLw#^c#F(%s)BiwX|;==v^bC^Htm*
z@FCuhL#EMN6K*|k9n5-I_HkMd=ZlP%DOT*4ZaBou>M0YAErA-{{4135H!y%5w&!5k
z6qk4Y&XvK}3HBjYx)IlO){Kl3&;tpmL4S$#XiQwNNFj<%+QrgoIAYH~cBBmdG0L*&
zT2_iZYXnQRaa2cI!rNFKK#zTC^XyxrE49^ysRMg@Vjq@Is$_93DM26MJwK2)Ipgtu
zjyEqiz_>p#$HZPaIMAA#Lw6~*33dga+UbMD>XZ3Ljbu8BGelLk7E|T))%|(D^P-89
z+QiT*zW0m8)>E`UYh^1esuA%z`)QlXCNLKAQ?EEI)^{8;rIiX5j>gqm*p%zMl0S%+
zPUYF_ovS$&esQ#V<-2TEt)BpkZ9Tq;nIucn#q||~X~U-eb7VE19Aa^0*zT13%qv)5
zW;`+5%c9=5)+@2`V(Bzy^}A}%GRWXRVdlVz`1kA0TaLO$(eNLk>SeH(;k>Xg`fS$x
zLrrZ9CVxW!HJmpBC|d1VV$#c(R)ef5MLJ~0Xmx9!1B-s<kUI00TCKG?R^xWX!;tdB
z`1^oo2;GjW4Bdh0J;_1ANY799Jia<oF>b`-yfZ+*%zc<w<VZ1%xsJom?i-8>rPQEC
z3Nfr9?Q7~CUhl)VvKL$F_gmsbt8m|VyFsoHx@DlK(Ep%@%WN24^9>|g9z2m;1lypu
zcr7%J^AWP?ezy_ilnQI~1%KX%7MY#7!Kn%QGFkzzg~8nPJAQN>mjZ;a37I1?5MBeT
z{qdBW8Fw_2VN|e#cd~#rkYSoumj&|*xl2Cy^c!<Zlh?OJD|h%sy*Ur0c?<WO1tW_u
zV&OO&@hbrZHw&#aL;q&15(atmTG_fDqew)wi=B^E?iqP1v$-lAtCjA#zI|SpHX*?E
zXnT-ZKo%lIu6IUtIF{rz)N|o+@h#i~|4a+=;PHd`CiJGlMLA^^J!Z9Cy4N@X>dV;Z
zneTh^uVjc3-wUOu27XvdB2<*1l4gJJ-9LNFK_T>*4Xyq885Zppt!;Z?YK0UGI$96J
zB69pn&GIg@oxOho{tDhB0^_3idg%bmByif{K%dk&O}L~^Kku`s`0vBXcc>|t6kWxm
zTZlMLeR;>9jJ&cdBJQrT8c?@B9Qny*EV>v5Kc@k4OTvc^n=wfQ@F!_e>dPr5#VKS&
zh$s5^>pzV&Zj^=zPik<>OWz$__cQf0ZJ?fTm*;w&ef`2#H|N<OXytat(UTpbSsD&z
z_}Hv)E);Ji!}7j;<9bP#;Iul#6vs5+VFSvU`kUz5^4f$%m1TE2*OF{l)SvqD5B(Vy
zslxwxDgS*tfp31o<TQGaoRmdauH2;QyfaB5(eL7=0&PLg9|14|duok{MH78qJ6d-V
z$>z_U-#Qjp&3#?wre4Ot5L-&r6Ab3g8IAv_IIIi)+1TrQT4#>yKpG;;xR#!8alYQ^
z7!#e1SsWlejam<8prxffWLwyQGd<M9XOQLuY&S>ti@xM;|7~BSA2g4hf>)Pwc$=lm
zqA<(m0@c0E3Uxpil*8Yn5f&^6wkn`+TP2=*tHK`3!IwIj^(@w2j(6u91-PKEF@{fZ
za(s+Xf=+C0yJh_aQc<;K>Pm>JBNA`tq+w3kh0}r_2PCr1p)(I8-db9_5OCQW=PfWM
z&rUz1A9<qSFbKHb9GfW2ZgJC*k##Rr7~h_xE*cdIV*MN3$A#e|V9~*mdem%4Tpq(w
zDTfBpP)ZM*+fsxVb1<B~niLf86WBv#+LSB<h|p9(L*e=Ou5ZPsaH-6qowvB|(gw=m
zu(%L!$x*sHq~K9JqP(Bv9ZSL+7)&r7DWpe0=~#kc3Uc@pD)Ns-h%B$-M>wk)1HKTs
zfbSKPAc<vCT&IVLbLE8>U9KJl%R&}usr_%6O|?xNcNnAv^~y@6@)$Y9Km7%MHsxte
zhx6r6bH-;ANXCa8P#Dl6;Mpvy=qc>MnX#X&pynK4+nSy+)mV!P`X<FU2!AGT)n<^P
zF;u%1i(h#hEqt6dfoEp@nQ0z+vL5eo#*5W2=vD~#7Dr@^qhLcUak*6p*31EF-*Nta
zQ1e3UXV@7MLH+63kLc6Gy-rZ&iO8?0I-fB%f9q2TV)<828#(btGOx2nSWhse7@AF>
zl~ul{7i5Nq0GT-mUbFB^p;A=b4ch6MK8JXql`2A8`yo`O9=>u#JN-x3GVDsJUp2$y
z&wx>uuy~5caR7Ud&Huc^#zrvj(`-|ED9I)3+x+xjE~7%|Nxqa&QxD6qEKA_C>4chp
zZBv`2e_6h2k&>0W#4vNW4V_jh-ipXD%qG&HHzzO1lQj4mQmopdSDMUY`2bsxp1nmm
zWK{E_^TTc~Oztz=QN$Gf5PYV6LCfp*N?l_#$+DXDGwf061fmkCjF=q-_urC5KK=!C
zJYPkotJ<ykN~(g83i4S6oSaNyw800068gO&K%jdJATH7bD0K8XrG7kzX4K6#0)izx
zgyl>>zg%@31S261Oj6Nb$PLY+wrI7NjJ1)0rzUksB)A%oi9(>;;pWsg)+80CI1F|J
z1Vi`~&a4=gI@B6OnJ&Ay;=>?H{^0F%p-f1Ne=4B@b~D+J{!q+)L31D^dtFOL0{8Ka
zkQfM!#86~y<%<edOW{VwEZz>FRa;;X4|RY^gN|v!qX$+<$1nI_@8t#<r{+Ds-%I#x
zfk~C|-MB2jpgj9UPlVDjo&dx^FGLrT?{0>Go7&{1J7JY~_wsz^MgRP8ZKv^(%+ftR
zMCQaU-jE~tAMBWwjvjou|Lmy|8%Xy?hfeN@*HW2jwq$@YYcAZcL=2Pdvj%W#NYiUQ
zJ|Wz!0pkKDIcA@?o;cF!Tr(OB{T!a)rmgKbIX23@B)Bk_U`P-W?q-GVV8h+0(p0m~
zhQAot+ZZ)RNMvU;Yf8&Kk!z0eIl2iJKf<`;i}L5$e2HBUX5GFK(P$LxnjwxL0Zf8r
zr<Ajvb)BCS1ST5HQ*cY~07GuAGK8nKPlHA$VPkmQEA;z8NpcjqDcXQgp6WiV2~M-s
zzPTBRhH+EO9^RL}UVdOjwEj}HZyjwb>1(dgIM^n^&ByQu$$&4_MBe9_7v<6cOkGue
zEliupdCX^#MKyfOw`$)qnTlsIX4J6WGO8yEeyBU-;|}k&8An~mEF~+%w00o;MkB!;
zsfWL*9@RulQM_g37LucU@W6}KGQMP?lzpr~`R(yJh;OqQM7kWGfw^mE7G+m|POHh^
zEt(>>5*&8T9GBhis%ywF;+l7IyuaoK{?l7Z_Ms<J^QyT>da4ip>hbNG=tNul=gU~w
zHAJ>^UcIl2CKjADYXvB=NHnaQ>QB6#PS`L>AcD%evm2|Z6SD*aohn*zO~EyFTuF}e
z-kl)#ItFcu+p(xw)Rd(6e?8!=RxpnHKFmjYy7-YHKRROg4CfSqGEmHBN&vBxF9Oy@
zHRFydyQH#9u~I@p%8mjPlT2&cTj6VhZu*N5NwF*Efoa@=RjK;dJ{r>{Nr}%f!i5<Y
z75M@LCP$c-D;o8y<92cl`Rgg6G9)*C#7_e2Ki`TIEwcoW!E0y{xg9euiN61zPXc_N
z@0p};Ch%YsfF3;&po&A6BEYhSNlsT2;`lo9<a^DLZ>UMK`KG`R__XO2yy9ggq3-4M
z?vEsfONtG|^9zbA1;b88{@pGXwS0Q1kiZ_!pWKjPzq`}2no+d8&vhofBpJd@CV38G
zgdie|W5oW@m05{yb<4(H5Ud>kv%QZ?gv<)k+jCTL0usP%A`XaI5(W(8aZD}@Wx9n`
z*>VW$Ik3jzhoi{TEcS8CjWaZ@)RFNI)oWeA2EYK@%YL#V_v~(2h$a+%0df;K9wYcq
z>a+k9M`lricjIW8DK0JkhuofGYO-ZK5>o}-2vZ}d-ImJLhXTKv?l?i`NrUZy7{e_}
z=_H6ap+kJ5+UZM-Ph6qXng_eS*@~R@LSeShrv|a_&x9x9p{00X<X|C4w$zHE7Ttud
zLOM==u%mD0RJ6f2E+|IQ#Xu<%5k}s~VRj)Lj>eOZp>uh7RbUt=aCF`^En-24@*F*W
zKE5JMS6tnDkmlf@SQuID`MTvQ*ht~z6Z{_E4NEOYqQLq0ATzWYmR~gpvUcy^Ie-@a
z=tMTVh7DRP)(X+oFByn>`sUrd<BAL5rW5K>&Ndk&dGNW^ue%v*_*rZ{QZ(z}ZQ)P7
z)P`5Z@tzBc8>Hbxb86c2`_8>9eVhYBcWzGGh%t3?HdC&w-C8+CfFOK~!oN=?+Ndq4
z>%r`P%MR81Tt+lSqVqi?xrqBsGa?cLy@LJKS*sAHmmx96(~Hl*R71J0u*0k6J=LFE
za8INPQgDg&iMeXF2mRz$*3nN_omPir)|}I(QLK{htUN!{I4$kr0(aeHqaM%oc-<R!
ziQG0${%w^P@qy+FYj00d^h@@!*Y-v1L~CMWLtMRW$Q1$CXEs_*a!p$|?iD&}n&_Mp
zmz3CUYStO$*m~QrVtC4a4(*ojFN0&dC2?CJ1sR&wkBgWEgv0%|ZFm0Bu3uXpQ?GOQ
zG;l2d;pysfS@jl}c9R0ja)0w1lBH>*rmQ*d|2_)Zq~7rS8J-U&mqK`2!PVz)Br^Ft
zkl^xo1230{lbN~6e*gsD-~qb^9EpUPX<lC5fI*@rR`vY$@3@iHR^#H_FAIhSh+ltN
z!tC{^2;gK)&?<P`vNW6$dfsgqP6Al#Bf!WMxH;wyT5~@QX}{<mc3p!b!zt74W8*xX
z7HdrkH0zJ_%OWw;3Weq27$JcZ8n_!pk=|;|%Mla9^Fvk~o@I(3nEsH+aKdze(R96D
zcG=rw>_#~$DO$U%FwgsVb&<w^^#`%~X8Qw$OU^#125~}KLXX<`-BZlQGo$80c6;;Y
zBi8)oNzd1PaeiA7VE2bU5fBnmZZ~v#R--hs=4+Qp{d0oG??EsyCb?VJSd|5Fv(@5+
zcw4pMZtI?y91lw4!Fdr{nWJ-;)v{#zJrz&;xlzDw|2R*GAG$3M?-t*|-)yDfbZ#eh
z65ZNDNv^exPFhoHC~GzmoITO!H>7AxzH)df802u2wOx<z9Vm~v%G6@3{bX@fKuUF@
zQxk``P?HW~2*F)-UKt;f54S-i<RWB|60(o&W}>d8`L*TU=*8-tCa9k<Oug0x4Ab7N
zc+7lQ-~44KnOJ0L=qSpa=)mYZvb~J3Wm`{~9j;kXEZh*zDI_MtYzYlTL#;3JZTkGp
zCDMxH5ueE|Jd751q9bE*3CV-4K?tH%&cYUIbWq)|euV59eBRj}M?D*Yq&8NY)`-;%
z9OWLy+UGFot+K<0$wm>Mq;|8$CLEQ(0)5Ma!;>n5pa>HbQf`i5$C=uG>)GzTL0X}n
z3p4+)iZ-F`x-BzzCrr-B65ve97IR}6Nt`A@Z3%?LrJm0pt+}B-fLAG*SA$)x^@m?S
zDKZ6OlooxH+k`AG2@BN1(^(IT)`~UR6k^N1HM1qO#}O@huE(859tmzsC<QNR&&&|i
z%qO0n_%dKdc3M)(HWLu=*wAz+<3#2<lR&oV)M80i#Lf^@kPlR?73?Bg*JIr&|GVS%
zxsm#Q(83uz$*SJ=xNR}@o8IVEJss05oC=kF)fC#bE#GH)ykY%vk#{acwKC$)%(q>f
zL`#HMgSyj}&78M6O_I{Ws41|Hs3QBji&YwZUV8ni>yWbgcIN9-A#T5n*yXf^qAa=a
zw@uKy=zka$ds!%Jnr>d|mT1mnO8)zh1^K+x(;^|UywG1C(_$>^IBkF-3OCfpJaAwf
z$tGY|#axlVQ5b>2aVAptD}h?|lx@k-zB|0YQ0wvOat!u#3zU~^85uo6qj6gYSY^5Z
z#+t)Nz_K`+ezI^!)`vw;fNy|8Px5=uHBbiKwE%eHj>NB6foHk|2`7j|!cW_>!^_-J
z_@93A{23to6Xo?J3~>x#z%*&e&G$mF(v#Z)r*;{DEw)yfi26*WJ1{2;a{4Y%Er=H}
z)?yZW7$dgkPW{fga>XJLGN(5$e%ve>vWcv13<v8?6ZR9>g}c=%56%|XDB~IB{)>Pa
z$<~!ObRqJ&x30?g%B2OOvmsxCE<RZ!!C2R*YIF6p$bQg=>Fo`}M$Cxpn)=A$)BBs<
z6Jz~duCZ*Wvu~&%RJr6EOYe<H@B1(&b-RRulW&-D0^4vG@Gx>j35>$?@T$}z*`et<
zuo`bjiWrAVl2A9%K{C-$jjXyyg)4aGj&c>j`Ja-y5OqH`d=etiQ)FkKw_cInT5M3c
zjcfbH{CWB}TIG3%r-?ECM7!piLrf0q+Yr@Gv>QbKs(D!vWu0?UVdrK?g3al`#ro^z
z?jNV<PU<5c$v)6($%OnMfOpB%XE#tDsX)BYQoI$t8-ysZtdTr?3G_zp=jBUf%};6L
zkru&fGq>w^0<3yDea1F!=&OerkEABX3Jc=<ZV?~wM_AGNsoT7wJ-M_J-xW2WlJY;U
z%#61!F0Hw_amik!PsX2Nx{tB#oI$rCy8rGBGqwJKTr@yGTO}2++WaG+E>vm5xiQz;
zAY~o%<2p;&83yQUgn-tVsEzsj*-wd~?|47DU+UIQz~x(a0>=k-(`kBREW_;ov`d9B
zDxNoj5@TgJ69||m!?4Upl{R-~hgN?UT{p(wOq)KupSGhnTCzp4;N>2vSc??L7i*p%
zDCaAT1Kx50HwyXmMe$F~MFS+Sh!-lQmo3z$t?v{vcvV`Io5@Y)(9+Q#B9_LhD-6|u
zjQ9OKm{Gn*^JFH2P?wG^?bnAnOI?ooF#H~GLeBM1AXKt6c#=_fpcxiogD0(Oe?GAi
zs|~PdJ?}zHzqi)%PeQ8F{|zWk{P2lkoULyI6}NzOhNEc|`eo~G<UdoHFDxQTusVxC
z|8lC-%iB``<8Nz?7u3D16GUhz;sbc&BA7st{sLN+l?EbRZK3&qhWp)AgY^y{F^nLL
zNd^rY_+_;6=!t?)k=IpFBovDxPj~(NKY#($F@=i1T>)kQ;L)(S(%Y)#32?zM9|vu$
zZbPXn7~aR!q2F2fJhsjk1{>dcSUeXXZO8}fp`dvFP3ALP*%*2S<Q(j}D$?zTC8fhJ
z!$U*N9x(hIOr+|NaHnM(VD$vA(DjzZ373NRt_9);IkoCuStYEp&9JY>4fD+9J@0CD
zu8&5|OgNY-Y*wB7v=gW>N^Cno(su_kSz@<ZUH)|RzfN2Px%Uv+C;74)Rmm25!O9=&
zo^=IDY*1nttdB)neK$RwHC5;cxIXXX9=7sO=;7W)dwWtS!N4ch?fQRJ2_Pr@0I{wj
zO^lq}E4V_>$s8>4FQBQGn>{)1_o-35j%q`7EN&=mg>RFBi1n0K>GVX7V91?Ouenh?
z+owBL*(-8OQ4{Kjr=BrjYOt|>`;%-rS~WNQQpNY5s`$4&3hYtJ$4yGrMLo1GjK}h=
z#Svv{=kK^y>2}Ivj@lFI>>8E1s3_FWhT+`Qn(r0%(*keL-EqyB^q_IHceD0fg=Pdg
znTYLQGz}Esz4v(wHAdV!k!sH8o$wJwDDUm8Q$!YzqxfIu8xE22*`!A~wvghwu$Sr_
zPrezUZ-~L8l0qFs{Pj0dYy$>FFgfJG`4BX>y>zGW?2u&K8#o_)kywB^&47%sF4M;J
z;SP~Ps?*r5wB{Auh(tp*g5QuV`X(VS`C(6j$xc`%Mbt^wfuPY%mIh!42$zxcu6_eh
z<e&$uk=R1xgVZmC1hQ@c!FY--Kwt$^#^l@sV?`E^rz7oG(@5ScyYVbR+vBSKLGQQF
z!%ZY&Zci8eGL7Y{kWD`Z79f!AwC&N-<+O1RMprs%4zg1t(;ewy(wkYee{?y<PY;aw
zW3R64YhHlxW$jh3R}UX!Op|&!?h_Vf!lO?gKfXiFZ@b$Jvwb)yOtlm+=XN|+yI=Q1
z8Qvop^}oRho|QW$1L4}Z3l=>B00$wGuz^UZCn+ut-C_bu#!9k%!yI9Q0x%Q8w-9tk
zx}5^lPQN;p&S(#7>C6Lq!O}u3;m2>RPilp9IP|pKPJS7(uJZ#k$V*(a1J_2Lf1bL)
zC1~CKt<SMwU!3HahjNqgD48#AJS%kc;S-OkrBd!IUL}RGmRAGDKfmzz9YK265r9h9
z_?t5!cC~%F7RhO7P*VmQ)b~@}JoFzH;lI00Zx}9CpTR4^(Hq#!*xt-&5}U&|<6JI}
zEZWb?57A(ft&ATISo%IN5?NDdYE`-cG}>*;Htv4=zY#K*@grQp=?>f89q*u6IA%8r
zKET*J2f(LY|Fx;+j{6&mDUNhE%shq@12H7+JrhRZ-R9WV^thhsJ7DCwKC94d4i`Z4
zWoYOO;O-L43o=OE!g(2_t^_Tw$?{x?O!Wf|CxX@nAn?#007}n^w3w+m2$tk$52BC^
z^{o9TleZN%U@OvZTWUUAo4mKndTC4~VE=P8dZ+Kt>r=B7jMnEOcs3wm65}U8cy)AI
z@G-a2+A`c={m$Et)V~2dAlL$;lsYmrnG0|r`_RA*say7XeU4Bk6DbiVa>;XPJenVC
zcT1rqvtWa1R--4t?XJf?jpwM)BcwgJ^?H5O#^rNwK;607pAe>N+>VVt?YuypQYV8X
z)vkR6D{jJmsomL?{SdVUdYlX;P|xKzkNf9epQQr@rWR_z*_*+b`qp<J`ywwNCxpq4
zXP{?s?({}BsMXp)|6eEsd}EIT1%R_ypbw1Y6A%q|_7;`<6aA9>zna;<sA1d|N@W@B
zPTI0_QWelDBVdQRP~?!nIKq2MxAfqKLveODiAqOtrnVn{qHBV$%`PgJ^-bY&ck#Dj
zL!p82Cp&-OAuEIC&zxA=3eTLWsf1Uos|X56mQNaoP7PM3s*nh}Am)ClYR*bZN=Yu(
zk73Fzwdr+MjyR<bi;nA`?tp`N{DTzxvJ-Ub*Zwe5nPy*W-6hOr3Iih#G)5&Km)IMK
zg&-l`;4|#@yMXi^BodLD1JCpjhk%o%`l0JN?e<i^Ot;t5kY2qgUJAhfFr?u%n)DG!
zQ~m+;{bc$xfFf4R{vNobxP(O2-#)_U2nHi<Oz%hT5>TI7*boQRt^A$v^=UFpI(Dsq
zH(LUGw5s?ra(>+ce|soDQR`DGo5kWuP3VabF-Z#aRDoD6@WCM!t-C2^qy?mX)!^|?
z8`PY}^9DeC5rJrY$929C$bm+xiht@6V6q-H#@ExZG1Q%m3N^(mdS`q3;F!6T?WSe-
z7=dxJZ|96>Ufb$?p?mqY_9$ew-gv4i?WB}&v5rCH@a+C_PyC5S_oeJ>P1+e&o|V;p
zgO~?!fBZMv6*xlsscIDcnM+nt8vf~Upa`9p>lEcqxgofAiZ#XK+up%7UepUi(U{jn
zlZW2XNm55PdSTtxYL(f)Sn-FzjUe|2zScevPHE_7zO!bD5@z4h0s)&}M|HquN)-k+
z$$x?Q`8m)!MOf>E?$ECkIB0BDYdcu%@75cz2Fu^2K8Kg9|9RmJ{QOn95owf=YQbb>
zJAmFWS<@Q084wA$m;xhW?)=F^!sMc9hp>mnFXDD;zP>W-A%%Q2QTVEogO}mmL-|3<
z!60BZEYVMnOYuR;ij|$krsmz-dW2;dvBTPAW+S{k+`Qp#M4fuVgXh2F0n7OmT=%6?
z7}wiV3(M2f@`U$<T+?L;vP>t8>()K{8Zd!T$<vnXMQn7EJTIZa&!yLgR?HgqmB>w|
z0jj3P3+GJ)ls+Em9h39`oB>52;=H%yaMGwV|EkofZ{+=kve5_Hui}@)YpDHV6;hr@
zVB88Ikc)Wp-h%SO2i!JmJ-;_hvvhtOMtzM8FecXW{?S#8K35A8*x@f_0AfKkW34p@
z?i~gnV-|MyxwI|4%pN9DJK?3tG#8FDSS!%v&!}6K^(Wg7@3#~)EFuZ1>{gc3FI`o^
z9%(;*7)}xj=gr4=y!cF!1ajO4;y7A~NIgX8VVG=PaNjkbwS|3RFpoGH7#(G6|3U(V
zjD6m<!W27R&HB*E_74|G`;O&Cqn7p|*lrZ{sQ>>l_7_l9Zr%4dE{Jr8bc2Wz(ka~~
zg3{eccXu7>21)6Z?nX+wyFqCXlt%Es&%LkS_rCXjzQ6w%4#wdO&pDju*?aA^=A3IT
z*+gc^4R&+Kv{1a~wRTP>&!e9fTSPUny7Svwou*7p$}uiK^a$MtC;orPC_fYIPrA4_
z>{P=C$oSO1o}LSXV^wCOeJLK=f6`y&-3M<v+~9_6x4tGyC*@|B6_0Bf7x)?X7j!sr
z^+ESXBMGZh@T-I*nf00B30g^;CY9GIobJ6I5%(c@tO^<Y>b7j3B2A5rk*wuN?Ygn@
z@76j49+Xi@`OIc8$MX29LH`~<0vyOAgYGwLy>p7}HI|}-c4W|WhT0cFa*e;98IG)}
z)4~RRL{*bboJ-8gm4kyq&$2j94|?vmu6+wpl|+Ofo-8c-t@7IHS-$D8a{`vA^4dd1
zQMdQ&yIMg|=87Dj`O(7BO(iHOxMvwkkdwWR`kyN?*9;flnmvH~x<W0-<er@rS7A|J
z>)y!D_v>&Tp)_<0eS-J?63B!XM@Q=mzxk=ZJ$T;_XFpL*%ac`JI;=~liTpk7%X&P7
zxYkykVPrJ!$5~0PthEh20HIR$o}3h2+I=x~FrEv<$uslFFgiP8u66H3gi)1fxJQ{l
zZjGK8A5UQVaEU+Q>EL<@x%HCenuLF9S;M=exH#$tbvQ1<hS6t#`}ALj^<Pg?V8fhg
zPL)ce^h*VWRcM{M`$vW+>ui>*$QwS(V^8GR=#`4FCHfU({){xge+u1DKJys2z~T#t
zcZB49-;$D<wNyVJPsQ4Abslxvm_9YKwL!hKs5xL0%^by#9XKxcx!t#>Z(Kra1Cp;t
z!-Q!R|3%e+v*(}xFe8M7exxW6?dCjxRO|SGm(~4@{Ntv$h<TJkXAO6&4(WSpL-y!2
zg@1dk5bR+>ho7=S9EdkgujT%TH@*RVe=tcC5_EskOjE^+2A)b)b{2s*8=Z9N^j`(t
z>gQ=7gjg!k$??;gupF;r=Qvb<;N``79OKUO|9nvN1X+Ii0cEasFMG$YBJR(9VkQa;
z`~~8{oZ>5xYA#gZYjOPj!U-9{lD%fwOVe=DDaB#Ap3WNIkBH-TGCaMpc>TE$V|8B;
zPFa>1)${ij`_KOSbI18bis~I_;pDb7D9Rw$NsHKr($M66%2FQXd{I~S_q`>tq^A6u
zu*wc9(4}BJs~#1w$iLwK5u&85!(gmAD<$t48^84dxo8yY*B1ZdBg~@UjsOU9KF4_e
z_E(be=aLaZnwk-LUnnC{j{I=?9oD9;!Ib~2-LCT!vZvZpSJ$JFSkO&KM^$0D-l9;$
zv4s1#_x)qr+QLpJ;3=hL(p~MVN+&I?D5<DX0El%%Iixosb2vdCM<E^nud&n3?Ne`L
z(Bb}sQ+1v^-S3H*HV#tKRQ?bdzD!HYA}+(}L-+26oKjOT(+Yn*`tN_}KUO%Ae8>J<
z<>72y97#I!SaW%{2-@lN@e=EBTm3+M>cB`H`R9k@ySS{JM2t^kf3NKSejs#1QQ^2k
zBE6f!I4I!GW)Py&yv=*kyG|9OgFHc}*=i@iR+F&mzR#%1-WB1HiA1>lUkKEH=U=}c
z*8~cEkimQYMClc6j_VKMP6MHGb?Vld7n8DGK`#%9&hq>v<XIxH1OAV%_MQ~ylgx1J
z(3IS6%(!S%p0V`!1TCv&lAAY&L3vDeS2=nZCJWWUGXrCVzhd~WsQvdPMS!EYn_X8}
z?i-3b9aO2(x6vvf&kQcKE26HhM0er+_}xzgo1`6Ee+7*HzQ7bSa3g|yT1ACr&&p#5
zly+m|$@X7YJpaeN|NCb{2w}KcXWZF?*iS?E8VD4H4Qubhlv#3g$$Kw~-oJcKe3sef
z@f?@6H=LiC>hCZ8&mZrnLZztnlHmdEgDvUl6yBsBZu!>EzkRWPzRd4jN~rejUf<4m
z_c#pc8|g_ogh}bHtd|rH>{Jp7yrFb!dC`^6kHr3W<^TG=OK@bF7xCS08@Z1#<?zt3
zas=00RP}$8slWc)|6HgAG?+LIjb#E#y+Goe7?xsREWlDJ*=jwA^lm*moJ0agt+g{L
zpUA(5uNb6o0lOwBldk3I4`t1RBQqH?hp!RH)Dybn*^3yS#w-X4ZN$aqHC2i1_YD4u
zU*@(ze4(VG@`#?E-lPG@#G>)enomiJ=3nPV^|>3}q`C2yt8B!^b?fT*mB?(!%S8*l
zPH^=U*mYjQs`@goI{Zyqy_Hr`*?5myP>QiT!M(Gn$*AC+p#5j5{*jSH41vpz@E56^
z@+xIo^iTu<)c*TawF;Sv3UYGs0|PQ|XYVp?KO%iQoqUn{g{ke*;2n=cKK<;}jyU5X
zLNG9KSIWCxX!B~Gy!#l0Vhp5pCTTV|@GvBc;UnT}gKnK)lSgV_FA@FwI-09Tr0`<b
z!pADsWIqb?CXJXyI14b4kbk0GG8@lvrFgF>Uw&BOdTW}00SO67>17uFaw?`8ydMfU
z#cgpQvm}QFr(kT5*3oWrvFw+0M%^a5O1Xcz{w&nbF2|6RbhIARK3Jro<Ppb?Rr)+u
zWSUB+KFfTkh5n9Lw0J-^&vxHrH+E9_P4N?AtqXB{ZJNBiyl(&~NpWx9VvgU_?wPQf
zSdaDk7-OQbTQxml_09D}^_7g%ox<DEy(hKP)0Btj{|U_fJh!iR)U26grsMJYo9f9p
z&LpD94j}|AlmLMMO^ZYOxp4}tw?EGpZHx!v>9?+jflfR8nB_;x5Rh=ndjN73zkQY2
z&TdbtNVF!TDT@Ca<Xt=9Xb3sp;0A>U!>|6&;{4mM?-`Nc;v{nrq?iw1_GIH5dlfFD
zBuU^g!=Linv~aaKAQP@LJhR&n0}xnLV<8%*Yc@Il_V#Ed^Z7@v{KcK+=K97@>A>@Z
zDYt6`8%vSyKEnklxg@kkm`2yzL@9)W!tYPIAJlc?-914jbjkUM^v}b-lImVk&&Ch_
ze%*GNrqAbzRUcuCipsDvdD+W;SeBut+GgWgjmDL(+~&=YKPw4(YFMMz?hV2(YNoET
zR<S`3(Mk7B?oJ79tlgYh(MqK(w)@ta$lIc$lb(JU1QH5bT3RJ-mB+Ol(@HsA#o3<H
zLkE;?pB)S4Yb|DplEnF7_Iu8fva_j*R9@1gf!cBdg;3DD<@5HoY`IQrxDeJE%cz8%
zT_p*WXTwzp$7D5tguGnNmgHtHQ?Kr2>ZSbqVgKJp2zV?+jO}ZSrNRH=!=n_=6n-c3
z?%FNxOJ=H`8i5-0m>d(7y;qUpgoK3ly@aNSX#~qK1i)O{9^g=eRmOuNY4;RucE++M
z+I@U3sPe;|!E}vbd#T1#ARRnV3BfsMgvDg=uCc1D9!D@eq$_HpF-?2$FWbiq4OVu0
zI3~VqzUm-{i<<N2A8bpHmuoWHTKRa@D5{mQoJ;!(ILr73QNtcGv2=Z#&Z2+E#ebdV
zx^c>jlBnuOGobR={Gno2Hj)-(!jYo3$=Zb?f_*|(({3G#zhxZ8le@0LP%DU$FGq$6
zUUp&(1>~2vd<!iKv*0KUuy{_Okk0!WsBJcDCR;sR-qxWPV59tVDg5^{9~6YjiHKvU
zhTvNFdeutM!*%eOJ|?pG#!v9B7UbL8TAXGt?LA)zd&&)Z)=9B8N7DI>Pd0k|*N@k`
zj6X$FnygglcNz7B;#IkQ--^zFnFGCZMw9vSN@{A4ZJoPWZIL>9><~#M!wD#56XBQ-
zLKuc(yn^r9*ZZWjPtC8u?2SlK<^%-%^LqLbV1aX()jS2q>#foUjA=YZZK@DdL5;S^
z2?3^iR~G(}Zwp~ra`=w*OsipGdx^9ZktHCIafNQovyU@x`xonNl7N9j_MDzjJYtAA
zF(w<8j{7bxUq7ndExg|~1Vq);EU!(`!bG@`|Gpmo`*^Glj{jPZ7cP9O)3JeR2A(_x
zL!huMKm6LZO;9lhJ;J?JbueAx)6Vy+a1W~E&Fph%vtuy9C_urDAp}?f@My?btYA@x
zd;<Vxs@qXL;EyFhRZU-zW*_=4{0qI2BaXqp9(3<H5Yv378kJsZ>+8@a<W0~P31~Z5
zltx+odm{CFM+h+>!I4XqdvKFt6s5}X@lLT%3JgC9yo%<XDYT(hdf`GuX$U5ZbYZ=?
zS)@BX6hp)WtbjKD_vIHq7O$NVlX`)z(%Y!0Bmn&_^piMa!!Bbtf4bAYmMQ;i9ZQx;
zb(IiQRcYDGu+TVQ=K?v)N0-~Dr*1}%E;}iTU5iL!^$Eg#^>DC0$ii4z-8-O!Pbg_W
zJ(hYojx|pLuU~Tj<#Xysj;hw|iq0?GzrnWO2mE_OtjA@K6a8ah<!4Lr?e@~pH`$%o
z{;yo^*UNZeVT`bgWy^A?B%BPVAj&Y*N(!5qBOJ^G1R`T|=7HfLI*r^3YwR4`hG7m4
z416?|Bn?TRwPe6TLn6!J>>xZ$?7-ro{`@KJzR0y{P=sOAA@k@5FWt~$VxQ7Lc3k7n
zOTvA`SlJ%ViMg`mcyy5?BsAq#8Wgf9vyG;y_OpTPJgq;+W3x6ST~1~C6GfZR5-{o+
z6Caet&mQqIK&hm^|8wMrjT-fk+2FU^qU1a!qmuA>FVN%Aw@7uK{C{Mne|}RvU8;M_
zq*?@7Ca1;G<M&x|Ok#pPU&<|*mnT~Ee8qsQ5-ZXh(jh@`WMyTCXL1V)!WNyzONa&B
zPt8nalNdF(;)$Q+=I4X+O*vi@a}o&Zh>AztNFg1$WC(mzy}sURDtI=WOyP^uF<3C2
zYxDQ%`W(X|cfH?J8<Z+>_0-b3ed~$*Qq^LX)5NNh;^cO+juzJ4;Cj`+Mjr{WGkyKm
zv(=$ieWZNAxI1v^B`bf9&s;1C?LX4RoyTxhO4T%M9LnxSr_t8t>alT&j0KTbev@9I
z1f;kO|8uqe=T}EW*xFvVm$hL}v;+BafNMK3VUEx@I7x{HPO4XZb8aMrmBQuicTJvO
zJyvnJS%Da2S4m5Y!S>C;N^3I~HC6dJAgl!Ef%RyyWO$KsLGksZVPLehw6p?g&DlvG
zIo~FOqZX_-d(dg8y66zRkkF-1$x8f03bJWHq)O+ynv;>-8EwD*eAnmdAH7Jr>G0XO
z@C6r~4)1BaJ$o!7UB^|(lV?OJlu)B^JR)D?N4`&XUa2b=y^h<Ejn71X_vB=6$j)<A
z^z~AMaA^Ze3u)v(*GG*m>^8Ym*{fHo$*R)EMUK)kHtp%gqkl^&ey#n#p47vDi&i1x
z<xfTwsV^|xC_0l7>Iow&m;Av&@J52F#f>+Hnz{k#HAORkTm;j!H{-bnZ)7Nx24YaF
zpm-wUyASe=)4gfgC8}O938Wv&z5rXEmq}m3L2;aoj2B}{dh)ReLqse*`TV5L=Jb95
zM%1UmvVfsy4{b0>sfs!9lAZJ%>zgG=iClt^2yt3ZSZid-m91pmgdq?toWVCwrqk^b
z-es<xy~CY03AFj&SStie8Y*NbUTMj=^hBJuv=~XpM~K(_HwOFnJ@k83IEuka(W3Q<
zLkOP3;4#6o2h}vOiqt+Zm9WuL>@=2Je6_Z-4<RP}Fp5d}F=jm9Klpg;>jm*kDzVT$
zQkOJTB6cZgPYiE@shO;Ao$=tq95{Ieg@?I?5}J*TjrKF@ru{%Tl-JV2??@Tx#0}f{
zRy$pQJma~@MLk<_(3(_)w;49S09|@@vxLK-__T3sTrwpliNZdg&cnh<!;DZI;?Skf
za;DDio>gfRrY$Ayoo$c$Xt|xPbBzX@CO(XC|H}bQ8ql%%J!7IkVKeuUqT%%X;Kna6
z0A5rq>PcyraIZccX93uglas9!10m*8R^Eqx4e{2oymzeQeOGx#clWUi=V}+>UE@x#
zwK6NQSHJ6>(Bw;hDR#-TA8uLRvx7y7?r4*}r`~2Vl&pWR1q`F9G8s;h=<0Z$2X+2~
zrb2FjvirPW-fn$bRawUEb?wM=ce!ailEwqfV#>uVy}?TIS8eyc&CSjhIRaGU3PPAv
z@$HLlJC7bb)ntd{_Pew4Sm16}#<!fjS*>j&gu};W^a)c~MW`FdZAYEkeGayqro0#L
z9Hf2~2xDZ3aOLH~_4s2;<5J`wR>CAQz7)M)Ru=lcP|TL2db<^E+cXK-JiqZ!0=pP2
z^L#7h-M~ON9*~+uP}l*g8_>ofpMb!Z(9WjOXXwgP;2pPJ_CfuscWg?^6Xkrl81-rs
zaji%kK6F2JJh+7l>kwyt&z)%uY@L}b7Ef>GUctF*L7oq*V%49#cfH`4Yf$ieU)1?L
z9SoiMI-_N+)VjkuoOIB@cBE2iEg~VJQKSAZ;MiCs(%Sk!%EEgH)^aYSlJqNs^9N;Y
zZeaKDfNSam(=mxjdq{LFC@823w2is#WQ7>*s|au}U^#m(yi}DL5H>|<F2;C*KitZg
zyJ$z~MZ5iD_H{?{k=(@|2NyCSDG5WgPzc>IkRR(R@b2b5vOy5@#H64)U-j|fSr5dK
za|5Ded2H4VoBmwsxS>Dhz_au}qyBITzfN?d-*^-CT6oGCXlqhxq4VFrbs~@>-jy|O
zf?mT!7Q@~Kx_2J>Gh@^mi<Bs~xyzUhfYdkYhG69jCTTmrgGvz&^KI5i&4*41+vFt4
z1rI8^(!M4D^27y<DwaHSkrdRK^Z8G5yz>f<LM5<^goN<q1u4-7S?V-Gi`SoaL`|r?
z9-~h4Mnu~I)n+7Mx<ggEA?YZly{fvP%Te&Br?Tnk&iKoq@S}jN{CtV%NM1TR$tLH+
zH-XWh<_4wrR#~q-0yU;?Qc4M{B4Ze`3g?{1^lh(LHzc8SdTJbcbVq*Wk*L~ZN)(}a
z`)x`fWU!J0q5u2-)<EO{Rl$oQJ81>C*C!_Z<*2P=YeS_^$0AtL5c~d;)c$vH1w^3h
zy=%~{J06zjUR%SY*n1|_@ap;XPL4g$HVh0Tpy^6h4cgBo!kwOY(Jg&h>n`1W!AsS<
zkRns0#rNXL?5Ink9+aHj#Nl4^y>A3~2>BIE{#V#xbBoq(2&9hDjUm%hXB#$|n%!zj
zN>pGDGD_pm>7_cu&KN89bl)2S=cLpX>?8`mbNRIyO&h#qEI`kyep_-Ft^GPu<?=g<
zN_0bHt&fenzdp>2gnQLt1{YD>|E;@7kh(ikqjwal@*5f%ad!UM<g}kw#rR59Rrck}
zn8tfZAre~QmIrV77rKIE;bsEpjtNMUgc{prls2#<ntMVPAAX%in^&yU&d@q*5|W!|
zu5Bhs;}N?qaN;W7e5D(kw&an<-+FCT@Pe;+Pds8UjBB92d4~7<AAG_;&VB$SnGwR|
zUIswM;k!en?k{}M<nog>1pc8EIH*eO89)lz+^9bPh1-%GPDY?fGV`;li>6Oryyvx|
zQ~|$E=4Dk#iuv?nQh(&nn~a&Wkg0Wm2MYDk`QC5=5q*Y=!1L$Y8yiz!MDJgOehl(?
z)(sJ-D8Xk9INP0+%y8X!tHwUBN8E4`gxJ3NfNmXF!fHKwkzvW29MsIRVUrdSLhh|*
zGMZr}nXX?`myXO(^Ar|{i0h>pBW|64-d@y~v<11Cyy!D^^@@!1O})p;Om*C<K$(+@
z`m2#^OaMu!260xrJU?nCzM*(pi6uuT$B)l2LMKW3l$N)B6gHi{mOZ1TV*Pb<ztp;S
zF_F`cyI$==896!N|4`od?vqFem7?0~C-nVqV{;996Z0c_Ly%(#@K<T<ENht%Ld08Q
zH?cqCix#|VbCexI)NlM?P{5WEr<Q55@a_``>;HO63RNSeLHmWP8g_qzs+M~b^O?Z;
zoZ%x`lx}7zw(HfOceC$CMQ*6qm=`I<zb+9}8rr?PpT3JHtD6NG&+3Fla%6%9dZu=`
z@?+mmgZay?YyK!AX$W2Wbw(tx(xnzQL3nx+O{-_X;15|RCR?}N+k_P^8cGkp>M`Q$
z3YW5y)bhnyjKA0IH>>3!pL(7}|I}vZ(o%-+FRdz+9dAQ&ecp*MFgD07|5O`gQy7oo
zdfE$XcJarU_H=@HSPY)ep$9Sbxix46967x`UmT@h6j4%&b=;lk3EwcMxxfHj3ga{N
zqFNOs{H_(G3E<Q&7!v8Dsc15)-sKhx->eGZYQWOD#pJ+!@Vdu@GyY?1Y%|9zjy-;E
zvBa5p$+Rf;NseL#36gjYHAa<v!L@aigQD{FGoF7^AY<N$pYyjr5r(8cQZG`EeV0Pt
zhno7hAmS=(vNJ6W6;Ih|ddiP*4|i6asns!s{>3|1l@Y$La0M%;yEsNug?{!YJ<93V
zw>K^>iTlfZn$_|~QllB__MH!u)4o`Gm<h76El>4TyvQV(j8u+!fW0FIXIsfmN7rXL
z4rbzsf)os50kJixVbT8xr}?>p8hZ>O#_BSRbB^kda(2uN_A(Wae3DY47x6@k1Vfx4
z**978(VWl`73mGWHjwB0_%*39$=rJJh*NRo)2HZ4!@d+?#IACAphAeC+)&r)HnBo%
zIS>kuN<e`_rx0&;dpMpGLIP|X-B+H=C@CosEwi)s`aL-JVpmQ)?lo{KopT;1tHapl
zkm^~9zgy(A{ptv&%=q6_Ml7Q@TPlZedv_2q6;z@cZFC6)2fWFZQc&RZtT<X}^^h#a
zwj-L;`)R<#?O89*Zu+yPX7!xA=VUqUYt7baBjcQX`tKk&O!<B{=PXmV_Qji_LS}hZ
zD<x^s8btZTk!gpids@V=b6(pR&ZRlk<`_rcxdFeDd`a#Ti9KIh*~H|Nsi{}ODFpkU
z8bFp;uzgwSe0Q}y7)i=!1ON?*LP!lPxBkbs^a|`RC2;Za>lc*W6++a^oM2JDB@JY$
zi%!R|2={J>vu|`n)%)a-KfLWW%Pq9prR4p&R!Uh_sF%kc@9pl?|L_Ab?uf#^NAA$#
zwV=9g({PP)8NKCNi`iyuR>7y<D$gr+pSPAJi1~F8)#j;}+6Xf4p2s0fOH|8#0>i_a
zG;tneZ?4@sqv=^Kx+FoJJoc)KWm#AG6?vKe5Lv&v{nv?iM?LC~{t;MrDBu)$T#I*i
zuO!o-;!WdKncQfox98}XfruJsy#5i-e#tIG%FQj$^K4p1S&)N6TBW?KeI%xo5b;<>
zMrO={G9=Z4G7P_*#h9VqX<q@)+Ua#jx*m~8nCW!!ny8OyhFj^>)Md|h7+Y6-yjW3b
zX(BLZnpgP}4abY-2fV_0G5AI^1qC;p*WI%s>Y50xW=GdEkZ8~|Xw)Y&S@B%>+2o7s
z7-DPe+M`c%L`jRA6ug9vMQ~evO5(lmlIg!kKucdLtjnuWA11mCR|5!lK~2q6!+9G}
zdQgT5;huj)VNN#xzBLT(FrhXQ2-M|TvJJrcH1DBOsHm<^4;tp<TR?6~d3M1*5j}^=
z^szxO_(pd-!=uc6uXa|);V3~LHqdD%2Fp6OA;}~stIjGtIJlwRc{eW!8P4!XD8(YT
z8lIfEAj7>FI;z6N5m=qugO1%r^^s!$3nu|D(y{Q-G@eQ6<p{?WOa-f@hVhCAx`<~>
zm2Tfnu7E<51`JWOd+`tvJJa)<G~2K}H^`XNZ~W)Tff8vo-5BhD{wv^dYSzGmQ|s#l
zSgjBKQ(G|`9;-JQ0%DGx*4e^KgWdM$-uWK$`D9N4iZ&VYj)_xVPgC&j($K}hB=zn%
zM3BJGwBZudI?@&!1V9_n#7;=+SE#azAmr;L@D-b|M2Ot%mB`(kY(22?xzVJqtGO^^
z!RUKTCeR4@M;d<ZCXe~!Di3041KS|8&y}pHuH{@s=X&rLisY8_1q&CxV2W#TWanJV
zC|tczLktmt3)AM(QaPw&t5g{G<iWQ6c(%C7@(8MGCs}5u&t2n^>t@6V$weIp*txl@
zJ8*Ruph8%Zf2Q^FCFNWhxR)PyOBmS;Mlbo7z+qa4#1@D+ZLi*FpQq(KZ%p}}=Qlw!
zCV)th;Ao|#81+Cn=Oj*<F<y1h*5K7VPCmRg5ufs#-5)<Z9sDCuqPc~;<HY{x^dT_M
zWawflE-H!vZ|zdw8iW!9#M(pFlZS9=B%6U@<0nW$B$ordFFx0JOQt%G*cx}2JW(|4
z_P2dwX<5qHA9t7#6q`ezrOf{NEM6ysC(K*DLTg18D?36APXYaKqOax688zgL)_p${
zPO{bITU*U^`g(SHiIJLw;BH(jwf2Vcmlk0<qH)?ZBAi!<=3U4vhur^yD3XQ=rEw{Q
zJ`K%#pDW}X|L{}d$Lmter>fS8S)w;PXw6FVZC**ZcnP~*NeE_*iZ*H1TukA4d3f%I
z%%j|ovvr)DB33F+`%N<$C--S`hU{&PPH)bNRMCd2^%q6mg%JriH(E@Rqu1C(Bs8N$
zv3KO)+U~9`c)r9d6D`rCy5l5J`0Lf!z>>|@vW|a!6<FYhN@vnGSTxS?C(Uk)#eLMU
z31{%`*jMNn44}k^I4$|}U)(<C{@HXNwh=03rlg|dBNyREe55~Rw`f&A-|s=9u}%PF
zS0Q-HL18l=_vh_2S0lNm>OSCDaRbDO`V+DZ&e?i}3rJRpDHoui%Ou<cDs(F(0l&r)
zKG%Gx3jihTWA3LKSk&D<m|hDNiwIcsaIrB<Ywl-zv_4mZx}Sj&Rb_m9{G9mNdiwQu
z{p7sQTU)%}KcZl=Ks~V6<A%ArZEWrC`d@fwZ|{mzI#GN|Wj9y)#LfpRyat?m@-Wbz
z?;ut^E9dD8y>WF&I&7kVC4Q#oONvJ5&nH%onGqbu!ng_qrj0-}K^jxg40Di)K;|ms
zeO{f}NXMmC*B5NHs?y8d?T`5`7-0(yzy;uQ34xYSHr$uJMIqO&8U48Tu3~fDX?+Dr
z!PXEJ1MvxEgLtpt#fj-Ybi}6w&6~bM%)T#ps#=t*UKi=<HH*)P!j_-x!CkO~T{&x}
zH2Y{we1+QNOUw}$Wqyi>*4mw>UlTR0k%}hL1SEO$mm?N9mnYSJ2YoYgxE7shy<HB|
z%sYW^CB%klcU?X&C<=%DXZnBGD<w&!;ZJ8~)kodc7vht9oyJ_P-{*5k8%suWyhZH9
zdFik{@_N?q32-cV{4onlP$4@VPQMZGjufB!A|~&lkjCEA!XZ~@(Ns9(5^kb1PO-8L
zgQa9&(y9|xd1$k+d4B6~wrFoqUdc++>H?`y6ttkMEORWedm#n}B)nY)BE1x3H;cif
z$W+5m{=DBZYrhT(zZ3nOOoqT~FbMbJwhw=hnKArFuCA*l$$$D+{_8X|^MT8_-Z4KZ
zDG@9)?k?KNmmv3c=-V&%F`2LsGBXnoKDw$qa5k-(eAcp^fj?xgMkXRr<439VlG>`T
zRGs|YUIR=Z?+!xnWPXI|cFZRQr=xTAM}8wR_xy2)Grg~i813i$5aSs<Wd@Q)v2;hC
z^{1Uz?7E$_@Z}j?5$7K;&oB7Z1#1J)a&8fh!XVHVoDMpy=q{MgL`vaV@J5o>?rl9}
z<(v}a{-#gZT~glm1ezCzKSni>=6<xnkIEE`sVQ7Ko9ydBdE`Kuqh<)ZA=~f_YG`fp
z98*ZgL4K@u#_KDp6-TXAvp3?{8mn3T88C-=22agh-(9EC$2;YR`GlGI@)-RZ=7Q7K
zR}XcIDmlb%QL@Ib%`mmAE8h>Ek01pAb{)Bb!H+RvIS@;rBmDZVSUlaH8gvJs+qQO{
zGXnweD?X6mlVVXvBGmi@`X!=^HqgB`k4otskc`n6a!4*_35xD7WbQkZ)t120H^TON
zAdbSbG>X`o5qmX#An2+fQ=~Hp6kP+lYnw>Th9&h%rlS~tj2Y71%Yb`$Fc&=lR$1g<
zV{!XtR82ZJi|O#u2wqDAdnXEyC7T>m?IS&Q(ML)#QjmvZeHXqAGt8oo0eZXQ%{Jzx
z2Gw$%L(8X;YzKl*4a7(fa1i-o{E2R1bHFHM?P%I#(D>k>f`;(&6vNLes&3V7n{=}U
zS)wZhBkA^Hb+u@fC}`{84<{H-Eg>sCk9An&$jc#8=Q;g+PmuDON%)d@6<Rlc*h5X7
zF!g*$DI(tS92bV}C88geZHDph3aLgJwmAJ;2|Nl?epcegD{PQSE)k6RkWDMDYc#yz
zP%M019{8qUadOI<a(R$z)zi>BzQY*nh0c1Pgs`wM#CN<7MQEm&T+rzF<68!ARDD7Q
z;$3OZX8sURJ{N`l%y@}KWna4e$cdv|#;5k6^hu1TlRCTGJaMI)BI@XTjb0Rot`_-^
zlNrX!Fr!DgvMJ2!GH(WqC5>as97gd8A0BGayXIZT=9=1b#laF66^^S~qWqHxdB2J6
z3&HZ+$Kt5v@DIn4Qbz>p&Hj(_L_=NjB1`NaYmpm1QxHGcqE;kFXG;#@mGUu3>WrY~
zW?ZN!3-_CHbZ}TvsOQqIB-zMI5>cL*cPEMMXcM~kF)&LsBt^a_!ZEkf2+$R^?zg4+
zdbJt^v^?n-_*SS24*3;-=*eP`)|PgPOUh!62NQYlC_an0YapWAjRf5&&a{pd;i~vX
z_k}v!9>EKzMu1FgB-v3YH^`wCSaZ%H4j=po4wj+~1IA(*TpHt4b<9c{hBdQObynmQ
zyftNZAeph3($Izo#LVCqB~l^>+^3izrM7KDp``APSi4ui&HY1|0U3rKb|eBbQyc|y
zN<mX|bN>RR6Cd4s?horDERi-TKdWGhr~DN6#Mel!Kr<Pufk61CS_h{9z;7fzh1`a-
ze+Fa$uSrPmp2QPlKCkKG*AncA<M@H;h)bD)sfJ)9G{|bkkaoxGq0b;LDL<Hm_8|nL
z5*l=8*z$&NAtS?3r_ouhxx!jNZZI)7>R$aZ-+8eGps4M3fn}IU{#@6gH|^)&Kfkgz
zg1K1<U0n(TbxBu6UrlXF8xe^mgI2>BqTyj>DDH|i<)*r6x^YR$XoLsZIS*XYW?z)c
zUX4mt(M<vEZ7@o~pT<W_h&(5)Z%2t>4Rk!wse$DY$!;@p=7rg+Zp=)N`R`K6O0**<
zGW?k*${MA20;_wBa2G~DRhiR%!ySt2sW7eA7D~Qty22;KgG<VnYHDUWz+2|h57YW;
zCH{+gy&<-*9!q&kN6UHdL!kzUs>A*4o?dQo&U!B<$zO2oZ$aVMIo#UgfYcARaDE=B
zB$ClhnEqnivEc+PB30GZ5je<Oi>W&ecA>=awhMlRSX^TGj2fT0^`J?%#4)t*B_(2L
zXao_9yY4oz8i596fos9-t$q;}5w`aY{@kty9&i*X4q*h0Fp%14(BIQeh<U`0%Pm+9
zlSMRgGB7xJNaMB{!8J7aZp;tGc1v`P(iijx7}YagEw0{~1j=)V1a0Q=0f^gptJ4YN
zaLtBgX&DoWv`KRv>Wm~(5>x{_A++sopS$mwq@ACI5lC@geuA7+za^kd?rP-N03tsJ
zvG6)CRLT|5IPuf`QI^+JHOH?P`dz_|_$*(fs9s&LR&uLE_l&?RacW}aqz6-qnKHNB
zL%84u=vHpW73Ks}2tu0phv-T$u4cVDmEW4Y^rJtf+epUqMf3aLDFUsmfwzzWztY^)
zm*kLFW9xpSmlJui5zSPnb`&DwK5Jx1)`$&mP2%BoXo#X9>vsE|I;;?ORsohq-fgdo
zo@n+o7^=GfoLDGZrN*ZOB;N!~{^o{w@4@ghmt#CxC+`l|8ODW6e+U=xNiGoKM{A1K
z0>4VRL9YV6(ZRjux7z=%Y4a<DYjXK&ZSC0k1<w5Fc+J?`yRA___|y~H7>UI|HBGqH
zl?QJi0Y^ee=^jW;ZQa(T{RJ2dvwl}x^>T2TjihRQtB~Y#Kg5PcQBn^epx;1RH{Kwu
zkFAwxYnbw9lSIW=EXdY*t$r6g0{qhYIqs)>@E6b0%7qCKT&kd5+lYH$kb4}2u;+Zr
z#3L;V!R~;EegM$uGTqj_eSN9Bwza5H`(@1|5ZLuSZl}FhY{dSR;DF|BdGm>TPYgRf
z8+$@-5%Op%tgciOF*zfH%qi9K22+2*_x_h4d>u0hO54C>v>W0wUt3YJ%r5GgzJZ<b
zob=aot8gQMO|ahNLaw2Pgc!2o$PHh`_n4QSQ?>;rW8Adl!F0aIYrEaRZ+~Xq3ra?d
z<n?+vSy)SItNROq4tZ$&BoFB;eq!08J_qRU&=sZ9<He5qMlrDaV!Us1ldV6P?cKd~
zYDYjLqQR`%V2cRZUCOk2dWyPwo`25c>Gl^p=!gjm6Gepm2HV_8JN*0ZeG1;l@AO{1
zViAOA{7MfZFgfA#B6W}n`94`2bNwrleNG8$D`tnF<!*Z)kxCp+si|>U!%~|&pkp4E
z8P57%v&~E^D7EW~2}j)B6+UrGO6lp+-NQP8b|G@_Q)tuZ{3+D-^NPEtbxjp?(-|%G
zomxIXlR{}>BMp7q%r>>!Jc!F`!6<E8$L&jkRG4$JIcE?HFY2sxLns$6w@c9Xjot|2
z^f#`)2xV^8>r_k2R6Iz$DCSvN;TGKF!S^3s!_hTK`62jGJy7ym^nJ>!gZ4lR*Q!IF
zlnG)hF4@ul6`G<jpY8%(KAZVK4C_2;CBI7PKCL$&AfvikQ=(ZTK_z78X+S*Y;?h7W
zwmfO5Em3Td%UHK$XAMjgO;hm2;%s}mPu2uXh!zoUG@rBxM2bFD>TY>XT3;A&w=Rs2
zNMt3HM#LDc(83WEF25{Txx*Ei1f7X?jH$?8X~0gFyfP)gHT7`&FJn1F*cFY<hMj5l
ziDK2M{h1U4jlp8$DLOHK^(2;!4`{qP9*ZaW6@N8?{0`922Nf@{cVbJK9?}zj%jp`8
z1!OpD&5id&wd{+llNeK3l{bk-G{#aUZ}PkH`x?ll+}mR|CYz+^y=b#!>)hOwn?grl
zkE*{fTYLCCcyyB+>A(VRE&2@fzwz!;uWR7a({8o(1}*;S2Y^WoYx^UW#V~jXU>FUn
zjhaDmgx$(eH(t9n=h1yB<NX@58&v!ODdwS&3iR*b4hxeEeFZ|9+&3P^L}CS;mYF$L
zIDzW6oQ?>AZh|-SqjE$#^|mM*Jcx_djb9%2)s8dOGm|`Z)}%&TAGiY3!GzZ!d)}@n
z^leeRdylVfR(~Ere5n~%)68ujRAHI_G)Tb{$wuYsJg&fq3wqJ#D*ByjdNp;D2<i<Y
zm2d~<xFL~9eSlzPYC>9KMp`My4_1~q%ffz1B;Fq)t+{!49q81CrU+<Awh)BoC#vA(
z;D2=|Qz_ZTf_XJ%e>?B8c#;16|5C3i!kUuXCC0ysm-5tVA>lHJEnTe?#@@s+()NCq
zzVII)?c10~6oHN%Qoq0I1&eZ?>ur7PjE7I_z0XNg88_1Ji?vkR9Pt~0D2H9>UJ)j_
z_oY4^=_93vRp&)3G=@&~|J>~{M_9~D{*!K;t)TYjIFIC_p{efm`Jn|7F{=@TP;zfK
zlHl?N3=FM?8dFekoB`}+F}f#u?*dq$hNtinCB%$yY6!6-a!H8k=;+kE!7BLq)#qm%
zbrk=^P=N0d0Jy@`%Cp|uVzdBQNIn7R<TpP-Y8E+fk4|?dzf7y@qS>W~Pghof7ST>#
zO3r`)9d<v$?ixfygsx?R;qcZU@JTZJuaH#x%_sBwS^7u}$+$c3egKTfW<sGaTN885
zkBfwjg?}@gjcEA*nhkd+sOe1=zLfAJG+#HPA6|Cq3hHnsBddGs1mN54OrJKpMDcct
zmY$PC0c#3gFHlDrEL+w6P9DaDk%V$~Fs70LSjW-p#t{}xt{%j`T!Ty;qeAo(%h3qc
zevR+n>5Lj;SXW*S4wl!UPeSvG^JPHKhq2nIzLJvq6GM11svcf1i*=QP_AiUGMfVNM
zu$YfDt{N|6Cuk^JQ>WtbWW+m73do?WdoxbQuq`4^Y4SaDSTN2oc=@S4@_#<DJNjPQ
z;0h=_8bNRAmvKpQCk+88)oCyJw4-Pw-;C^;o=|m@4;WDziswifR1pE4#e&xKdgJRA
z(0SREgrN3C5O0T<Yc)>LbLAfcu_o`dWs{+)2pjT)2M>Tn_76$#(;V`5Q{8n)kkf2&
zS>PBlJLj9KpX*yVlY#JMdt0)2B7YJX>Qh7A;jx$!6BAR~XlQArot>SBuAztIq{^E&
z#ST9>^6lzf>$5g<0O|5FwHiGaGfg5CK$XuXK0lPVFmDe*Cw(&$)h7CC?;(ppFBtDP
zn|;S&qF=B1#&EA1{nrH+TEu)tB@UG1#ox2-v|kNpGwwG4$v6ftXJ{x<tD})+>T-AO
zzYEWV9ASNYepc?VIiV|AubIClelRFdDbA*Kac(Fv1#u)Hv+-(;mLUPnZO`DMd#gPz
zj`CZ8ZnhD0^hpK7QDGl{iHz>P+syOqAH;sVOs3R_lS$Q2o&UC-8*ryX;^_U+S7?mH
zN-@;nj-|(TfXM@NfUmk3j%fDzu}R+Cc-=`l9L#rHkv<a>Y|9@AVPRvNgs_vl(d<xI
z*TYct0FG}7ahpOW;QeSX5I(`tTVP?X2_JKrjZtj6CS_zWscJhVEP=PJyS5gEP>k|y
zlf<pej0ARV0%w0dJ|ZeI$48usz7-hsL6j-H8xZQxz#G*m4ffDrZUqQw`WncnNLd55
zAy836{!cYBFQ{%-yBl>q5sHE-*A;~tdX)-6kS_SUp$cXI4fk7TS2rIu4N7CQ00n?@
z{f8AO7E3(a1I$)Z9QTi=CNPJE5s@n?vx|$Lm@IemP$+qAy3BZ8EYl@v+4oypiOPA5
z2_wAQg?4Zb-7U4aRohhtZqlC9!W98*2TdKIxaCe-?V=`A5x5T@ri{v3TbFfsVQn5Y
z0N!pXhlRc`dvyoVRrnQh<p;C|mJFvEb?2Jt;OFkAkcD$F{Ujo85869BUt_L3<(~Gt
zg>~#2jzXzhR8n|S{1Z`YZ~9A)FpU|p3HK`+g>8hX^vW4!SxUqGuh?aP?f!2D{nuj+
z3BBG1w$C4IR#}>oapfts^LMlDupW;m>5&k}c)PE-kPpmcTbYQ9Iv}L-1~?$dIBRgZ
zt%s?b@M?+JDr3@59>Xy#sTP-%MC>D43sCluPAsIm?-j8+Y{^xl?yU!ZN1{ukfO^gW
zWmD)PX@Rk3Z=UpfE2Jf`>Lv8_Jp5AU@O50X0Q9%9#S`gufp!*+OtL!#=gD&;J91T?
zY9&Yh)1tpwH;B$XW?5p^97A^Ez2T7Ay5_9Re74WLdR2jOdMH$#=BNP+HHTyy<(~vJ
zwUVul$IW5Ae2Ok)ld1WD)pXHx7&)V!2ZvV;#$TXed)<U~0;cON`bVaQJyP2a7>Nc5
zZW{#HLGx%LNOs6Fw@!s`+AxZ}MT8ts$b59$2hoNRG-d}=EIZ`-b{zK8WwM(Wu5%;M
zNu+fdsCR?r$S)u#3#%~;n4}O0Ld4Ae0L@PXF4yjV_s7IBFR(*Lqa-$1X>n7~oD;BQ
z+W;7U*n3h26i&=KAP=4%>f(V{GNm>Ei<18>`|2gBuYdqB<oyP1;P<9lW=Z=Fk3nWR
z6R~<9<N0Ycef_j1kO}aZPzZT}9@8)HOf#?`EbDETfbN)*2A%qEn<|k@O@YhzBXOR<
zB3tPo!zUA(7l3VtDvPdz&V(KJ9_9)B{PEpHV2hIR8rn)nu$c_6`&6aphm>C(#gCqo
z2T8|JH;k=nm|0N>0i~^Fgqd`E60@##9g0_PWkemtr(RR^qDD<>(mLaNFi*Q<FC#)7
zu7I)NvS<68m%kxtwldu1rUzms%Wth1h-b%C>NTNwt%^)<I{d~<Fm|XvI12sfO&>Sh
zavfT=OyFew*EI^BTwsIAeJ60$5tm!lq|`R3$rKk%4rSD0b*n%>kjY!-5jtx3DBHmB
zcSY}F2{I{uHE2$*!Qa>47zMLP;?6O4e^R^=Tic=#i@;<l18u5u)n}HW9Y808lBgdo
zWJ+;QU;Hw{nB*r~4?zDKQe_oH&v?qeV@mBj@0}-jVbIi__l4*}oR6jQBCGE4TQ3Y0
zEY>4)b<;nbIe8iV0NV0)@dPdVam&a1XB26BpZunVeXb`nKLhJhu8$0m&|_o_?tS%2
zs;y;^heQ%!8i;vBhJIH@qz0ALo5^nSyJLhd^vUH)i&>`4DFk7HrL~Ww>l72sKna#g
zYxZ%~hkwWcjQ&a$P)K2y25$zzq%5w|@3F&F+jx+bk7u#KORxb$b@N`#g5>F}wo5wJ
zW0Cg=eiUNyu8sHi5y)*V2Ymy!q3-S6n_6gI7#OD<Gybw9<a1mv_)h|{`h{Cu0r{Gm
z<Z-K3@3d4iS(&*`6S_%4H4Xd(Qj*f6vTlDg7tFIp+91+V4h7tM=9%hpFt+Ns+%&((
zLR^=-YC94rg}=C1qRM=AR_;SO!OSgS;BL{q(GwQI_GF>AkzeQX_8RzeO_YwL%aCno
zAILtnw~V-}kpHFI_X|c^)A#hTicpaW%y_9y5M!Y6ApD7C_+$vx5L<R~)@<qefD|RL
zyyr=R<E8P_50N{FzBMU;7FK#TIBInjcSyUft=45xe}%df5efk&o#G#_-N)%D!e)FJ
z4G|(^fRcGPV|-a_Z9ePE(y3)ZKM5lp-DyJY)xMFeeg+$984D)u$5uG=Z?>CATz){;
zU}2rHu|-J2w8jcchoy;8CVbwjp;?gXz#04i+l<n0i@RC~amcJ4?#)?|H{FtP`VNa~
z@BS8NS3-g3uB9~JhAMW_it<2GD-o4}SP5<B65Vc}4s$I>g3@)5veQ#!bl^B5WgH2D
zSPe1^|B$}ni`6eGiow_8cPe5fn>ta==nGANL?!hjUFu%)bDWU!3w<?EiQJqXQ`b3C
z-KF+nvMwM*7i!r7otjgZ%0}GKfrUBZiy1|^mVy{V3JY6kt18n#paAA_Ls7CoSIng>
zFPHZpEXo>tAsx2X`;ky>DP#RoRce5)=*?g&|9~xm*y;=3T^a|SgA6dJ%rw(Wg~HVl
zf$X0Dd+ZI_+}ygdh{F5lQk3C`Y7Mqo9+f7fPmgX%ybrSMo;9EJ63f3a`T=i?u!Oc=
zj4yp)92FyFwZLgf%2zW<OtjE+<eek1M7=J8$YKdbIYto7)CC9tcZo5Kc4H!9XKgf4
zrTgn01E(9zT>svtWj{`e_W?VYyOUk_ZwNg5!U=Hzgj}~?1zA;=(vGktcOgLVDaHS&
zgGjh;Z+5>d!xkoJ2NP?ggk{lWe=f_4xNGa2xM-D9r+fR!l9wHnDAm+)U4Kwrtad?|
zZF=mlht>WP>&PmA@AF%_46`(~n6~E=c2*BJh<{~b9Xgc04ynLscT!@15B7=0l&pnL
zdNA(fV~>_|4b2ZTVK`9&!v+Nh3F!8;hjD+{42(urs{Sf7Lg5}8S&BDUru=7J@)E)T
zIS-elWur>aGgld0E)!U9`M|7f!g#v?26~p$Ek_31H4*d~zi0Tq(f;>e)C9kEBC2Mp
zZfR1UOEqgKdSi3YI9NwkH$P${cT+mq1ZQjL1c>Pm&Dg5@QWhaX$UN{!2m5gRNJUDT
zuZge%`U;L<FBQ<IQ1X}Xh&5)kqkuiQ-^h!5MUkKdM1O=di9y|fjA6G_6AdOwUOW7B
zLLTcqM{xfjbGv1?9A?1nXF5TaFd8~K;&FlzixW(RQf+uUCir@uw3{yT^2*3BQXJuq
zBd%(Qx5)Ue;tMOlm|l-nNIYk`*##f*S>+3ZciB7>oHa&7OQ#fa;)2vjh?*15qJtkB
zvHPst-J2`{W#2+n-A<v@D{wTC7iNdlZ8s0P{|R~Qb9wSp?JYTsNn`dveBqWDH~mo;
znDdw{d{HwdF3!-q;OkPOL;Y$ArkV)D(C>oMj1Ly5gjwyE#dh}w<6U25yA`h77tgsW
zw;{r0H%Pf=d87XG<)=AkzS8F(-ih>{*Kp0@{}F=xTE%@udRxU)_WyK!pzw=)(GiMY
zNn6)a9~4fSNmWmw0&ZnEo^+k)FT8bZ97znD)%n!Q;OE}}p7(5+zR`A<3n#I7nTCPk
zbB_`j_fl1rr4Yy`$_KeVIK1kHsHf|9HKP4zk^IJO|Nnk)7$`L6I_?NBA|55FEMp--
zZN%&EiX}>b&~1KB`8hK`x-$KM%lV(|#IMZn|2k^_e4h6{Om0}P(0I-hiRq_Av*ITr
z<Av0`FyAQ+O7Yqw;iroJ+Y<Eu{T)cdJ3#5lq^_=B1w>)!GY-y4e+6jpX}p4d8VQf#
z`GtW(uZabIt*!89%XK-gBBPxSgdigSC2fQh&+zZNOW~&=w>CiDMl0%W700Z4p47LR
zHuknYK2_rPEqRCZ`Lj`SfeLU!HFLYWYBW*4@27FHH(5gPh>lL?_3K*8#k#?veTO6R
zJj+7^>75zbZ#qr7*FS&g(Cc1&pt&F?BsnK$x~rm^zZ{aMJe!mxGv4xuQ_8C=7TI8H
zmVI9(hi!i&d$nNWc!i}@X<U0b!76|AfV@pFar<}3_(Sqn^T1EjrnQz)Wzgw=>NIx$
zd);9IQ3-T=XO?&@R0)nkKi#I^Vkt!2Ef7&#2JVc{Sc*-OmWR&nCjc>ZQDNbZYr1Ka
z^m`cC+7Q&}g&LX@%X!)iJU6td&kWGD3wiEGAJ;1@;hs{uT%rDu;m4!%rx5+H90col
zYROV|M(dSvj$p=W`d>#api-ORMtDrC0Mj9&@?pVJ<wuF`t>VDo(+FRzu7QC!-`$Tp
zlZJm3|A^Qa->2%-BITu5q@L#cPSg1Ht}_c6`}Pa%hy?f9{vPewyzV!ho90vg!+NKv
zE_a&BZHl6~8WH}JCn+_De2jlmQvZ(?at24CQ95ohVrTc{<y82DH)GB{$zI>YmK0|q
z^oZmT+$q3^B*(^5K?QFDUe}M|mK7}vMCchAp$g|g=q!(#-WGX~5kb9Bia}?h1e8bW
zW$5LlsUY_2!03~*Qh9TGIzV)Cz<}4!{BX1v_QY~QU9cQ0uVYS_3hDY}SfL=g601cm
z2nd2Rgp>^YjZB@U+ast_ztv5Tnu+XI1Yks8x@LYhGOhEV-276|VpvyN{77NTlcg9*
zv%mPS?>5$kSgO^i9*llSz3Sbp5Xt}T9z6p?!r`Kew1R>v+re~6Di-U4&g``XP0_6P
z#tE&|2-5bxQ7d<R+7@a_omDg=^NL|f*aw?^eg2yUho01E8W<-N2JMr)Ty!2aY!B4<
zffkOkYXzMDk9M4BAw-z+CMF_3|0Xu~)4ZtF{pmO9TYd<J$C;Ai;k@+@NQ7*xte?Z#
zM#gGn=00Ehq8S6RFNx2OlPb%3R;X3io~Z==+5YScpk@*@wKm!MS?xmRYxin)w!OK8
zNj-6T$>ZyCZ-ZW{LHKTKl8|pS*+dt9><{Sz8cL)rI7C`FgW|XH%)Pky9jzBnG<y<_
zoDPp%Mm1Z<58lwq)>#gIYpmd7vsv-@zQt9&KRxu$VUg#18l_)8HloSSaCUdYf{FAA
zwq?P`UY&VtlG#NFVe9wAxACgeGwUSKGnwQ8Y}^Y%TIEOKtj||}MwuG@^vlkvNJs>N
zAA-fa_>@l13QwUy0$j=8WwH=#h_v2Hi}<4;M+)EVSHKuZXaD%BW#a;2=yb{9MGTLF
zfRp>E$5%o;;_EZmmxXQGF+cAdoM+^!N88j(E@?HqAQa-W55_|Tkm7Dktdw8KSr-0W
zpc?s&IR8nB{qIj-(R*6~j~uZJ&xuVXlyj*hsBOEySm1H(JuoXeRjp&9+yvG}Bv_lk
zrr#L!Yx?hY_}$NYkttxZ41C#)K%aP(hs$F;Wr)fpUmD3M_h$I92vdxZ1LoL^9MdcG
zm?<%&eA>4)(@C?`olLtMKL^Y=Ze}H^Xz@apVoj%+VmMPkD?Z5|jw80ENToXM^SOyD
zEmqr=D~@q>F7vsx`2yaE&(Br@AJrQF*T@hvbGUr@RHpg)`7PmLd|gi#OIJ*e{DO<w
zS$8MXA&!0cv#+LA%3w|;h@}b2E6px8^3vLm9`}joauN$X8zeNh%4=%UFfcHHn`cr)
z(7$0rDXZ7xAn$fqUt{={QvJIm8V<$`H{vEc5#e<U!C1(a-E(5BK$IMor&Gk&*X^Uk
zlkS1x4Pz_$^2F6SwsgtQJ?ePz0<{qA?d^y7#lj&vt?nF;jndf7WAlf?6DB5<98Ol)
zK^Di3;OF}!bi4e+Aw9hU>~=(~p7Rrd7;J8<_paMaAGCEx(_A{6+-EBOX!MH|@SArK
z*-eSMOGNiUu{AhI#KZO|UszF>d8$>`5VFds`By0Ku%o_bw+@Q`^nF}5lc8s`ysWIO
zM!;StHaePu&2%Il=oSaUS)lUw%}pTtQiuU_Z+XAyUJa-kfy5Wu00X?a{84e$%D}W<
z7s+<4=VcnT1N^w5k<b>o&AQR0XaCO&)`28Pv4ch%rE*9WE7KK(^>dxl<IGFc+1!l4
ziAV#&<LAO*xziwIbKe?9rQ2)}4CrK3`Lt7JF}rAPVv?`?b=hS#0cfm7%QoWSQZj|i
z^IS83%KfO%WWwH$)B9?<IrCVYavQ}o04b%)LebQ8{9Qle!_i1jQ<lAOZzQ-7rv$y(
zaK+U^xY<6hpbhPukz523bJd(Was8_N&ZE_F2xAP@qH<nQKe9}BwLysM`9ldC_@sVH
zZJN24%2m`s&Oy9RX4<0*&o}6~32M>yQco8P>syZm9!Q=&Gk7tdNSEQ|q`VGaz3{mG
zJlZnM<;3I`eu`N%_vmO=*xw4LCr9r2V4dXGW{-S01ZP(Ccf!xn$(}P+>0a0^Tb~>V
zU^=zbVIKOYI|^363NPktFcC~Bp(~$L;mO|JRqmBWwpKfuV;ofZAZVnU6M_-XM7k)e
zKQ4T=78gxSI&~llf10Qta4n;;_)1zvE?UV+wSPW|d7sNF4$p#<bMC9UGM$uxNK1zo
zhEucS8)idE)Yyz=-hHMU<Jk-^*00M^wWIcv7&B31oMS%>1HUPdRt?!-Fp=iT5FRe2
zQ<t}&#h5Ry1!FkSo;&Ha>r7O7<#!i$9j&y$s<&Flc{XO3-E*C|#EKnf8ZNwJnR!Ff
z1*wpGiJGrROgJ|pc8GG5kv^`F9@Pq(x*49%TE_?JmWG!eF}NH>Gw!rI^jS(P$i(~K
z25qVN9G_s5;@mZ&M^#cI$QA(Q73t|mX4L^)d7R~XV2BTiiqqz4tTNhtGG9|$CcCj4
zcg8QHf}j>*?M`AjG-jx&Qnre~;pfA*-NLcT#H(DB&TZXLZE0$Ipjx(UgrB3}HLy{m
zEQu27(_HhaNO3!Jna8b4t*^=9Vx`dPz_s3TmDYmGI>C-Q<dbjPa~j6lh|gaIDKZ%}
z9_^nlSv^)DZ|haR9WQPh;Wzy&C0!GvjZR9U0~0ahff$^~&Ok;cG=KfLe``2Z{$VKa
zET9&txtVSA@}PDPXXq16#bnGT@e(<J7(>}^6Rj$vw?Y(1S=9eu*)Mw1J+ZJcw8EbT
zQd5P4Pc-BAglaGOS$Y%3@4q(em~<y0TxZg|&-5S$$fUM#*R#F6U?lIuX`!!4bx`;j
z3g62XqMn+Jc<^d$`_@Qw&Lm*BA3J%DxfB&8L;HsKA#47l(4WOfRCZYZKf>NBs;(~G
z+6@E(1a}Co3GVJruwcP0xckE0-Ccvb1$UR=?oM!bhco%A>Z{tj)&9?2E=X%6Ypyxo
z(cj*mo??JbDp3!29=T7}7Ptxzb9Qi5p2Cj@t3ezN*JRiltyF7e=I5F5ovZh8_24XF
zeuqp?L>{GUh{c`tX5#VO<=jnG*$XXcSz8fAjt`BV1C4$B;)=4B4U0{rhPy;nGXiq$
z@w_e~+Q`9kbP0iQ)epY)_x}Mt+<{);hs&Uu125>d(3rm9d8$sOINs1-TW6>=<?~2~
zt4W1W%fgxe)mqr`+@nc=Te5C`vO7bt19F2%SR)*naWu)H7#Xk0Kg`kn6eCz6QPnZG
z?rQ?VLNcSSxF?6fm8|n-<J<u{hG54BuC>x(hspMDh}gXBPa4DW8~8moh)-MC)xiRk
z#JD+vV!~g)CQGHW_YE)A->B}38ath?WlrLh&D7lm6#$e8+o||n9EPlBrl8#qdky^&
zSk#exx28!d$S2JXr3={m7h|67o0gQVO^yk$MlwtW29(ooJRt*!f?ZT}X+-mFT#L09
zBs@(Z#>dx3pedz-@p3nvMWiqM6N=I*D~pKB0ju20JQJOymOw+4!{l9bO!=ciQ4!eZ
zFua{0)CrgyRN~QFOzMQ&tL=#21!2r=jVlI81f|y`Bq>o<)gf|K#{=`JscS!@7}Up-
z)yo^jQLb?vphjDxg`fs}{Iv(w3EU2}40ev4h|aiOABrZ)MfhS_z(j#xH`<X`;|qbu
zLnBQ&6W&U}jVoZ&MgYxL|HnN{h8di|^Qj8^qRt{~jRT26&^`zb-HEW5cl-^wo#L!t
zY#m7R3W#bJA?F>a4_;2l-fK?{Km9Pl5xv`h#e!jm73ugSjBqo?{AB;|`TseTbVQ>V
zi@$fwb!QWM{CO9Sj3zHpLM)LNRt!67HWh@0&fvn$n?7|o`4GW8jeJ0^$i?s;DnB<@
zI3_k$I>bc7n(hm9UR+P_9pJFx;Hq;dqpGb?pkxF#D&9F@v@f237G2JgM&_L(*->p$
zL82d5qt+R*QoO4plBB~>n9cvpyfkwy^Sm2bjLv{hjX8#oF47q;=kJn_C~b6%LD9tJ
zvo{_BC1<&eIRhrYj<AqrAzqk-ODiMD^BP|e)H4U&6fy%T*P9TNTOOe)q=z7NK)0%k
zH`JH&8SO?pw~ON_m5&ggU8Z<QOV&Tkx|R8tC7dD&eUWxqP}MIrZjJ-`<cjP)Ru~jT
zq8ytbzXLADO}!q^aLF%4OJ_&Zr#O}S$><WOyjfPpd^y2{B#&k~&h<@4*ZT|KR~`;N
z){vz379ydI1_$BM7H}=633oWtY2&@#5PV@Sr{Ym`gFeR-4yxDk41RhJ#*}J(Smo3=
zz*6Q}Qa<mLM_28`VMu=tB>zPt9M*sw^6X_?rJjhe^MRr#*+>f8Dh-!p3HRipzTKsk
z|7Wn*xYgq*E)OL5WRBVA;JN3c#YSHZ&xJ<OVdHwR37~OdWu}*LDG1?n7&dt(t*WI`
zf635BZQ>~7<vdgn?nEZnI-}F`_AaLgl%z!X6xlM`#&A-;Zr@!4yHRU;<C9Od{$2;K
zA+r0H6FLDkGCOlN{4%!Hl-@-uAK%Hcc%20U0BEP9Uum+d$G?S`!qA4DA`g$}dA!gc
zc~B!dPJvhd4u{1V$hcSwf{1dx*}+z-JN5D~%<g^ZA{NlZK_bRKpn~4*v0&3U2r}N7
zZ=^EHB>hZYtZtZKg4jv?p!Kv(xdfU=D^GzQVj<y?CPWgEN@WJ_Y)7Gmqwy+hwd7^Y
zJC1+$cmEU9`kCGP1@Gaji9zz!=m|wK1vaDW?;*oTPRA4K0a~zIVGYdA(;?|p)?~)v
zEk|r&Er7huI2wwnVeM_cjAd&e=FW}vk%8nuasSkKX{T{FgX!6EZ(IPF8xO`0Jr3RF
z>+I5<wopiS<J-jpL)*%hCWmByo5(kT{Cn~o(IV-TZd&ZyO_sJI+QsiPMo=<Wq>Do@
z4Cd^J1PpddPEkCAU&1Hb0u|ABB+Q!;<m)WrNw2Ypzdzne7`)IH&0ZG?k*8kcXTI>{
z4>4FwlF7<Z+AOT(nIB37&m8|~7HVzunVz>!6^6rQm$e>&ehe%^_d(!$ln<V%QdU+H
zU%E*rBO?3G>%Jj3)z{{|G9PLgB|^tXA@Z2by>3WlEAcPg<G(6LvVre3uttRLid((=
zI&z~BcqHjkKx#f<=$wKHdh(L>#A2dRNkE-*8W2g^*}MXpH^_T?dv|=eCn;2o-c}mP
zic-;k2zC6TkgEVntDVhSh$r!(Z8Ahks+X8ZfJ|Y|kM!}HfmLPG^!}%M=?e5Ovqc&T
zKeJh5XR$*U+fRe<H&~)yocRm(EW;=VU<;AP{640(RCr|h^hD9mJLt-bl~84INxAHO
zLMG8bZ>^Y(!0zgJ2NCc9kCw#9?<OWU0L>;IB-CnEPOmG<)we!yvT2BSl#HjA$9C)X
zjYc+4JFm<%UqG6}!Y}Ga9;H_r@4StxpKJc^rCKLePvi^EXB@}h9W?@3&!u9x7!wxL
zBDrJ!QOMfMNFx?Ys;?tV?C%#<sy(XH<5><_hjxeN2Ks2Y(in%=^Ow`Lo0S$#o3x<&
z2<?5@tJ;8dvtZk<wlk9yX<*&^$D6Q4xK}~}!bURu3z&bg0NB{<Uvf)=PPpo|^lqSv
z%A-dcIX0)Ox&hNSgkvQ4b@moLOz5W7noF$>wcip^PaG1*qLZNJC(o;JobW=soqbgJ
zg5{^@z7+;m*4*37+ttsbyz>r8T3Iq-tn0LQJCB)*B22vu$>m*wj{3z|Rs&v9K~>qm
zBwilIUI)OWg)Fu<Rj0z$fB1yRZ-}Z8kU%SJ_?RdNAs)>sl(#wM@9&s{cI;uXZHCR$
zoEIq=4SYh<STbDi;bZd`%S)`9=&U@G#;<oBS1A*u-7REN=@*e11P2}>Jx3gbli9V)
zC#yDF`kW3>8MCe2K4jdVzNU>VyIuQ>+J|`N1Quf1-yc{*sjD;avi_k~lta&1>ZK$2
zd;RwgCT$*Kk*t2osBe>$fmN<<ckZR`bfzQ`kWA!(M57MAio`UO7|NAE;u|nO2*=J&
zsH;uD_XD=g7LZLDae;mWP#Vb;>ql4xi0k~*Nx<z%GLaU&MhFg%Q}K=Rzx4#Yk%P{@
z39c~X?M}&mg#V$A(W=0?3!|&&r}H3dO_N*V%P|^`wnF{Qt?GGkWFD|yVz8(lW<D&%
z`QB03KIaOL>Ul4K&RWNIcthvLQ>wMZV073^)4G|*N4dpygEH0raw8TH4yaJ<f_;^p
zjTkPG8Po>7{_>S(B}Ypw0AcQWgDpIISAz&_J33`Xpw8{Qs)vm9_nuuv^esXA+)PUK
zzr~{e_H_*>dbbk9pfx>srX~Ez1p1SWGbWiVv&#?0{OV#0bDrqTOgf-owZ(?8L#x&#
zXEQAVFFXi&=r3G|Mgvkc2psc-=%7=?S)<Y@s)K<{R-Wo7Z2mkBml!)Z2)<^6;!9O^
z?Ua`XN9k%_G56(&ta`Z}SgvtjqF;dHL_R06Xq>B(shWv2>T!fuzGB^mySj*9IlW2c
zhFXxgQea<cREb*Q&*Zfk&?J|mYElrgIz2_%%*teN?x%tlN>4oGoT3Vo@;rLM`2v$B
zU-!jS+I4wsa$Vt~5TedLKTiG+TzJW-%O4ZP&AcS3olcTt!}SP+by%Z#7y5ux<*1bV
z^*|jY9Hs(O5Fd$2QIN8?P*$B@=E!+_4EY0`L($Kgo-w}aSf@87{0DdkILL2!jX)w1
zE=$X<w<hIkrUC46kBN?hSo8|<e0$jugFQ8c-mrlwGFbv0mG}NBEyeXGe&c-#tieH%
z9)w9avU=Td%s0$ATSotf5394=NL~Hn$Rr0A^DUbAN^*Hzqp1wN(08&oSFja<!B}zu
z)1&OHL0Rt~Q%q{u=<A6^O9QPZ^0NbU(8?qFnff9WJFTRj9`l?>d9$E*jUt*viPwog
zMqAdr3&gy70`+rUn!VzUjVcz*xpeKqH%el}<7*>a!$tP~`*|4G2UoRVG~n+Ci_w-R
zbp2>XFx&}((=X@{N)rlziw0QVk`4}aXz1uL!l8HJEkG}YLcp4`Lu*;2cSkhxH5DbL
zJ`ltdg*Jwoud`5hzFl#Y=DIS<DJB%V@w^D>$<2lB31lcr-V9g1_4KSIwLhRjcdeKB
z{(`Trxyf}Er}N!k^)xsbG^p?p86PKrnr84kB;68BA>U@#dWWJQow<6qxMp9+n?`uv
z-K5{WtM++fffiq}*S9P%q&UQuVst1vdzmMu-7Yi^6J6pp*yxi{A1n4kOtnp|{Slj@
z1T1WBarTkyiVe^IQ_<ij1&hb;-M`kMyAU<gK~YSX-^;TMi?EmT56{p!1Tz2WBAjIG
zj9u=?a;mB(wDaA;?}&Tfe0%GPZ-LN27|Ms+Q!5Ra@g1Ovz0*$sygz|I-1xUS8bx#}
zNtEEH=Yz(`no(~U_a0d9^n4JnzDjgf-K|^Ib<|AyM@m`dEQFYp%VCN-ri__p5H)s|
zNUn=$@j(vKYHzKjA3W$(4x<weFE9l4{Vp8lSPaePg7UO1D!NWS=b`Vx6IN1DHhaHR
zuAwL%jRgc(o_`)>{dRbILR>=fbh|joa<%&B0&HR3yK=LN{fxDjGbV+I>EA(&(i@?1
z-6tK6>xDnwOFe8jm=qnfprF_g_g07J3PG=p?`G2}FCK)aG^G<+_-<~ZcvEGK;Yc`J
z3`OdH{EQ88gSwx?0P121WlSxfSFK>;a@ZaS%%n!n?Fx8zc15u@YzhsTDPQ%YW^c7t
z$t@6VCOmxjO3j99(o778swa`*fITTj!?m0B*Q-coV5onUM{SdpTD?fF)oO!*tA4d!
zo%t9|u0Jg`r;1UtcBu+g_2M_i?Q~9k5fF}uI<)kPcg+H;Ii*cAu7%pRRof-C+AH<H
zdA{CyB08g!YKf+|tmpKG^_DC8H%AL6x^KY%2-;aB3SxW!o@W<MS{g$;4~KE{BP9vz
z`BB_6a<TIHWM1wNJQ&1ka5Y+R%KAO}g2OnYbOx$Pk-G>spZoDB6*Nn?g#VJET4z<~
zb_?rSDPq`k9L?38K!Pd363*O}<M|D%U+lS=<yKmAHuT55<$>4Bo7J)a`)26*7uD==
zCe>Gy<X?s_+zK^TL!3<42ObcLVf#}r9bkG!|69rZpL!+k2QZKp+_VPOO<{;!E7r9x
zZCJVwrR9~tWNubdeu~*-ZGuH$RawF`sgejUkm-UQ5oc<(Ga5jL-;aI^JS;=K;pTu^
zqnI&1#JrZ?rr)tF@TDI#U~FwoHR07JUu>w$(!3<^$dL$H6`T?*5(za>u44&srzD>q
z<V!fuk7!WFd_dPBH$JQe%xNEU*jZ<}xIu)%4O47^Gc?5@Hn@DUjl=ytVask^;bu8{
zXf66h>JP5<m@UIE#jrUx*%}1fj~yZ06CX!oSWd#~#yF>pi@FXKO&fGF^9@cWi(2&!
z{UEHxSu7xz#7|Sx7i6LyFu_G2a8Xtm40{MUcCWq$N<oI94a4^epnqp&Sy#luj{i>d
zBSqZ|OSOPvXx?)Pv*F4bhBxOrRxuLwPcs2cj7MuTtS|_A&x_#omg>hz#L3H|kr8|7
zl15Q+dY6k~OpIx7PT(gh;RtqGB-W<)Ltt?9#5V+mJhw|mc?8NtB$g>85)wI~1(z2>
zqiKb)dHwWixYR|iqmBOIRW7luZ2*=k^5va`Wcl-IQ3dVLzqhgL!ld+0XF9Rpbpc51
zFPkmVOD}Q=*E{&&nh7NOt{*m&xnB)=ZjevH#R<Yeg$jA?BNjNR5{n-RXktUl`TC&=
zwOy5FeBdF{u#h_s&eqBwSMQ9bm9FE(%5d}O<#n)15uVelfKRn@(NZqQwYN`%pb0bG
z82}Bwq`ah|r~Px6{2y`3fA2B@@Cpi;>vJRLPsGR)Yh>j}mgpKAZRSIJ?712q(}#f9
z1Lb$jCe{7zjI`_OKM?<d@<ewgp994Vi8xj*6VuqN=1C;_xD2{}HedK#-$Nk`3`CPK
zn04I*LgvbMacYcfS7n#ODiuPmeO*6;hFF?zDtBHtoR`{o7Wa2qx+J3q{R~2%?kzME
z*>yl^*+e`4gBEhzD+1~bIgmBZX0(4_AlEHGX<9;F5_Y1pQDl9cC>uN5D3{Jw7E@4Z
z1IIJi_c*BwBZWgcNy|}#d=xkeWeA6wysYg;M~7^aw}Y@~KdrV@O{PrRUOtuPT9biy
zf708Xvep0!L}u*k@BQ>ygq;fL1@|4WI2s_jm@v}Dg5ry-SgL_XMYV?K_Uu#K9moAb
zozUtG>2mpNdbv`{Y)O<bOxTa(eM-z3Tf-I$OR*xmYYj=Qv_;AVG02rW4)%wKz>iiT
zTduKn7_YPKGsCY3H)dPwonQ8sjt7H^K-qrX+aWAC#Ipf(n*=AuKD}OiPdk+s1|r!i
zmIEUbvwUg_4PO^4-Y?@uV&oarW-72rI<5rVH6MzkR+Qd+bu+Ie?VAAwhAU+n{QK;-
z&PEph_HC{mag&UJK`ttI6F7<zFD`7o32lJz8Y5t9C9xFdGzMk{<ZC0qgXb6QREe71
z2f#19OLEW|S8a!AfYcR055gurW?VX`jmmj#ei7apJOB5t;eWn>{_%QZmg;y9ACZED
zUBIL#3K5KQg&<B@mT%4(ILxK;Q5<xL%xGw6$f;jvQG$LxF9=N$5)wj6LnCcnh3|t0
zEgZ%8`vXM8wTP|luP_|8(VDENDqaa{K6CICkNM#D(wLzf7CFOCb=$$G+64Z~?_CYQ
zTC3E{avGH39E~f1Z@GrvPK9sKY<z@a(9=cj39z>8fz=kIt;%fH%hj#huxVsUVKk#P
zn)y~ooUf#^Pitn}h99k5Lk>uzy|=^t*_8aTK1*j4ip!$@@o043)d3;5e3=~5JdcvY
zm=qtmQ*T0yMl6jq6%1RNGA%a<dra?SLNKW2%;Sm*A{a^@O7wKbEYnAxxKiX@`f3!y
zLv>zW)NED<Yis*a4{0V}+ivQpwee`vaQIAvNc6+%EF2f2g9ewMnQxy?(%fYdAqO|M
z8&A20q?5t)*tHis&Vku5^baB;uWCOsGUy`$n#69zLO$m*Hc2|Y1z)s65Im6t<XAVJ
zSy)EJ1Th)MZwgEC%6&yn38tBp$uVx8EI5mh{Q>E`IrgCJmX2*wY}Hfi#LE!*T)RFn
zyO)A`ifEtBPgNHi4g(JVes0FQplhtwR)bJC`jXPqEy|t$Y;Pw+u>*!2Vub=379SD)
z%nlcgIj<yS??7fE7r^d4lFB9t)Mx5<`al}u9d!Sm=<|Lerl1Nv`DJlv{r{E%_`yNY
z9W7sLk*nHNW;E}<r@T+s`cjR=jE%(N(pz8|elS`1I#YaiaAmKH-T)bF`B~&vt3gDl
za7#H0a+0#Mib3rsue=fo;XnuE%R^dTcC8UM408g%jv`_~v5`XAmmv!C2yFDvE=niN
z6*`epFllU*(`L%jkvK&9SB39?AR+jhu9&9b;vAx=W{sLrdcf6{fs){Gnz(2#U!Xh5
zdjiF!k7cSgr{=@RN^^25z2cS*DvdQTKyWXq1)t;$>3PW9^cs6dZRvBuk;AzlrIQ*D
zUA5sQuUqtPwVeMHVdmUaDl15;-}Vx{e<+;7m+$yK<l`^7Jv=27?O>shr(I#0Pcyh7
zVN8;vsm=t;)(edLO7@476G}Wk3i4bO&|l9sTw68O%DD6t9124}q7;0?H%b9Idj==t
z5A~n+vPAtHSGIQtV_%)iWE`9AE&v&=E#FPHT`L@e5u?Oa&y7>~x=L<JbZ$X54*cmc
zZjoFh64XFq+<#M>{gSpU)a>0iOA-|J>o++j5v0AFTUu`JbO_Z-dV@&L<1|@Kqh9YU
zt>{3I2bBHq=x?)EmM7AceE;@qu$Mys5G=g9XSP+RZvC{%qO3RUu-ys?FgdL|GL_rR
zLls%`^gfSI0+ti>*+1I_I{`Fy|A*`Q??uZe5&l~EO>bd2GVzoJIfL-x*m0m*$;)h7
zob5O;Np9s+mCSdEG7|HTq({<gZA3qUUB{wCVfJH?kVpi3f>i3vli%_)a@uc!dnvq@
z<Av(}X#fFXl*Tw31?;JzjURN2Y$&h(pobbMU&6W&_wO&bzgvUOXNNx55q7FG9sH9*
zZ<2T{_=j20ey_?TVM|Z?;b7pv`$ra9-<R7z82%NsurMJx!5F^XLd30SAH-~mG$51n
zY7t0JXq-PPvMX)fVfDQ5AE|10r2opWhAolHdr8ScxS3<0h2LA6LOWWno|7W7?YZ^H
z%pekNynhseH(lL$3KEx+lC2&-E9>d&8(0S`6IwRFdtS`1i(chvnm%%0fsw}-`@p{J
zGy@qx!i#}K(+1r8byc(5Ve}3-Z^~CHd-qK@8<0VFi}4o3er~DtC(I?*2x)eGr0O&W
z%!^JIy-fLjeu)m)Q{I$?!s`T2Y3|O3ych5?F|4IIxtf-vMLgs-5Bwb+DVMV=uLD_G
zX!~E5nzqi;q*tCrMm;M9+ttl<g)5F75)}UZ02s4CjB;N}y=65108MX96uE$hLki=g
ze(AvAU<{6BL#Na+g0^)hBqK2F2uK{%SqLF=|G+!Y1}f5Qr=;2ZXX=lav&Gc=DE^-p
zFu+|A;`J4$Y!SNRz$mH+%_N_pmr+sDN#Hk%tbv~F9LvuRj_G{0Sr<pneIlWNfu91t
zX<)?eD75qH8%V;za477w5LewWY{Jl&;8RecuT%wZ+a;qf8IH;vmtx$p8PqRJ`I0&@
zA<oN18L=#y7udensf47aLZ;gTXQiuT@>^Y4M+rpUc47eqjxv%l9r387);r^s`5BOh
zX$I`PoR$H1f+<;om8?VsqPfi&xfKqO!fE7+D%eT#RMtK!^z*NK4Idt?k}18DyUF$(
zLZ**#HgctX@%BZFv@=#CO>Y!L!d?!^CFrNN!GrYR3=_l9Uylo#Z_WmQ>j@%Et0_V%
zwR-KUeS@y_m+v(+Yl<W>)#^*ySepk5bMca+T-{$Umt>|MJWg-S!byIXxe|ZVcB-9a
z*=ZUw{M`^O)a3vb5z3}vlkxQQSU-!*>9KtPD_v~Fe79Fkr@xyKMRlMz)^ZfIYLvk%
zw`gQCXrufG9XF~Lr#=NGh{*G91SiioKdCM{E$+*lwoSR)?yQ-4bn>XXkvCy0vu<g`
zWwu?uKOPi2jTXCI%G1-R`gRMpf>f)q6-fXb64eJk@#{XSF~=Ld=bhseT6)s?Nb}|r
z!&g~ey9eR!oHoUoXp7WePkiXUiw#d*)oC>=?3h-QRf};`SYzHPm(#OW5&I9C$9WCZ
zaibm=>*Kq*91jKr|8ZW)Lla700fq-@Q{ym`zA$WXo2__dEsE#ITTJe84j}Yl)DRpT
zoPPwM8Kd7)6cqj3_)k(_zeWR&`gw|7xc|RL4+g9vKMdh3`uCjN(a<Pb;$CL7Fs*00
zpO;B4ipmfxLM2~m(t*8jiBcKk2|$2<YfvJWPSF?sa#AxTUUdcJCGcVN>d3siKfe>m
zl-@r&5m8`t)z+rWa7U)~FU;}be3hQ)mFgTl?s*-lHgzp7#aQb;P2T<);!jE|>O;~T
zs;%88f+XXkw&O?ZnrQBTvBI?4I7Dil%-L3?LO0Je6hsW!_2sJM(fdp|1exWSQJyJ>
zcTyOtoP(uCv)+uT?tVk<Hh;L~wmN+Cbg6S#NPMsUBwTin$e^}~o7L6pTjtG<0WM{U
z{p+%uz3(dG?DRsZQ7^*z)gfW0%yAeyll2TleBfa{^<5Jlt=z0smFWsOHWM-Fc!0S3
z!eCUC&F{$>+gZgG4{4PjIhq-dC*X~${w_g)Pa#FQmUB|AfDig$J;^b<Kcm(8*WOUP
zXa_WxF7&%G9<z{pws%A9;n}@cU-ck~#UPex-UNt(Px4B972v;1=rT<F&erb&+g~L4
zKDcB|_jqc%s<*w?9)@j^`Gsn~4x*FO5JYf8xI*VXIzUbOwO>6n+xGf1Nwwz$z@xQ{
z(=Dn@v^GoEI3G>*R_B-O*%a3aG|SRl@$HTv=CCjra6Dd+d3t6M9<!%$5_#G8zdo+4
zt%SyuU$?ocH(*UE8E3{5z20td9c3ebd%0K*9J#1Vch!F^$K9W8^yOHyY<@v`4(cH1
z?17Ar>N?wQ%sQnmh&4=ez6|ZO-R~K@KFm=Y#c!2gz2nwcUkppt{g?R~P+6^qVb(bZ
z07!nGUVnt`AVmQd5wXXk<!X!S!__{Ch=>R|i9g=_&G8Z$7uVI&Tz+QVq3*R6_!B}|
zX=#l}+S>@;0rRyZHi;HS&vI^v8>~p>A_`*2tQut=@1mzbLaJb5(~M7pyXvca>-GDh
z#q(gzk-y%tNo!I!osq9Vj%<^4k{u1dLhJFNkFAYJv)KV%|5>fkb~`HtxAvO;E{PLV
z{1y>qbUaxuTmsrF;@17o6A}}LfXtvyz8qC`r3h+=)ic0Y>(;P)2IvXo_xJZSE-m34
zeCk&S%r@4ouD7g+nOO?}9(rvvGIFIA6}0T|^w+Qc*S!JP6CD3qU0Bxy8p8&DF{db(
zN1*+F<zx8!8me(*{$Xe_(ZuZiJH!`pu}YmzaKN(|cfQr1+Oqg=9fM&L{1t%8jqkx;
zif8I~^H>eBlX;7xTBl3q!zZw~SMBl_1#uF)U|Pb#Y-EE}NMu6lie-`|>GuSR4RZx7
z6LD>|dpK`h(4}2gXG6b0Q61R(g6DeN@VxvOsH&6<N7W3YqN%t!Rm~X<N8WIMmV^mA
zrRl6{HLW*0+<SS@(!zC5Z5n-iF@=%B!!ixDqV}`wzkM>=Y`2jxZp?6uBrbdInN^_3
zp0Cc~_t6BcbwDlwND5H%>a9|!k&%FK$$0i{Z!Ze&;&&-i>zcrZDV$Ct&F7Pf=rxMK
zPh4pjHj6q*P#;49lZ2|XKQ1*ze4IY$_cWa&^usdPXR+L`863}wm#sk{rJe>hwzbk~
z!Tte;#z(+l7~Li1$cLq%KYtxf5IW!@t(kGT<EC0~ld9qIl8iz?V5HKR{^6MtZMo4k
z^JoYbZ)*68IhoU@bOBD-FY@&<o-<XW+9Q-&yR{RVpXi}kFdZ_}-6lh!;@2+;kK4r0
ze>UyD&2c^tv)WWmet78&M+1_&#h}z}@4(D>oEb6{K><G=+9W8P+`7KH9N-zwQ)P4b
zqcejsXNkBu<oRS)hla6l)b8yB%*ETp=mIwftE#$s)>BO{gV7Yf4=ajxjlu^OW}UD0
z6aPG67ZgD|RxShptXsEAMSS-ivMQ4)3mmEA-OdcE6VQqC)4Iu*mu8(X4W~hQgG08r
z#y6boUeMp?!sk!kZ^gH83#%%DLCEdSHh2*2-N#nvK<~o%a64d70DOjgn~n)Io&Z@H
z_p|L)C!u$2{5uVqx8T#3@keiZh_;5&2EBfSWIoR}H=vo}GgS(zX*+74r{rdU2J$Dn
zpK61Ajcn#m8La7K*AmZ<e7t#e8ogm?jI*2TxG-sZf3-Y|QBTLYdk3Aq6`z|-)>~;O
z^SU=Buhp6<$NGi6rJtpeQJNCmfy&)MX||Q=xF5`oCv)vDpi3l4Rn_FDs{%gIqR_Mh
z(4m}c5C(QTcJ?!r3&8WyVgvF@vv|}795vGQHQuZjEKNX1ecLq+Ha%h7@qwB4V+wF{
z=b<q)kA815e2=}bBdi^uGw)GBtyZ(=hs>B!xWzj$h8dChPuIH|s<+qbR3H_}$x*8P
zB&BW-$k>?JI{i}&$}mY0^Fa+I5edSd5Ok_xR7>&DxajCC-2|tFcF%S+G&E+ljvx=D
zhP~IbZX%;1S(v|6ox2xj2+Zctq2Akdb?LRrCbEZ&nS$TnRnUed(7(>qjKUnWD63Fr
zxS?~1G*F1Hc!kik($T?OM`vL=O++^FrZA5q{g_2v^-mSPGLWY=GQ(L(Fd74!s>>kH
zpRcwpxSQP-uhdKV8fYOen;3vAfY94fZ5(@dH4}F>dQYsVIb{tsrFd3kQa_?X^v*)(
z^@w$Scy9`G5pt;n3!b6{cBseqCUE_+<PpDWh1oQO?kw~5<y7wQ<)!m;PQp@`e`ZD0
zSYlZMz9yICE`sVWx^{k6^U3LMmsnKf{SKq0h5Z%JyTEjdX|(bHOQY@qQA;A7KTRZ>
zTJ0vO%a<K`<Q6u74nWGqq=|rr4yyr8B9b8vuSuYA%f8+er0kA7uE*p$%C+NvHO15H
z$WZRve7iGvgXcOt^?qVeumg&L1R`vu$v&z)ofF!x$o2BVAn_yZ@p<qphCxNqA@QW*
z+v;@1F~;CHfJRQldty-tpyM1hPAJV#ye|++CjotG{765_VKtIip1vd*Nt-@=KHp#v
zr~`N1OZPf|*4`S9_w9S_H?1fAI1L8ps$4(^cuBX@Un!5eG;?1v<oNeMl=cN8Ak)35
zr;kh==mM>=SW`ujm*1Yk#D~Y>#XsYo_xMTea{skp`6I5jvxq<UCsmTsn7g`#nEFi~
z7{%}6a|(2^E19FLhwD%9%1jzxi>WOaB4`ae+(^8;N#9`>zaiug)GFp=G@^lgwG%u6
zuLdx`kpOF=OfwoIb#gF`i@J>r#Q40lN7=HV32mb9OMD3jny?n{WdJEv4a~dK7YfI*
zGyh~T3%}69+;e2+n_fMe{hsXa;bD7xT@&+WY$ij$U@S=q2~svTWeG{Mibn#=wQ#)m
zhb(kpw}9!wYPGDA4Tb#$g0QRaz1vVCU1B0o|8j>IMDn*FY8>^BJDyPSs)#{_pM}y|
zU)XdXtAaO5dkUpb608;Bcp~sjJv|EfF^FK#N%s>_C7yN#F)cDyt;`4OglG8^Q5uKF
ziG?U^ouR_SB23m+T?@5t67D;!grb{@?H!&#VWacfMm^sLni3Y8yFQwwkwYx=^53ca
zYCGL9?5LusPXeS+b3!c<2828;TGB9Ko|ko+J2P>B8c;_yTbN@8i}=*s;%*e-jCYvD
z%ja1-{Ha+(9)<GHK@sfsi4h(9tkC++-&bq#^+KdQ9+zKn=$I0n<z>IDF4cl1X9LHW
zMKkRD8wun7%YL}DeLF!Nf~`2y^@OAPDD+#*q`Nw)*<CV9VhV+bdSdFuXlzAH7mXyD
z-2gL;V#4n}<rm|@dr|PR@OQZ0gt9f3w@`@qaWv|6Nrxdo`U-&BH|;?xMM@>n3$y`a
z$WZHT0Iy_OxRBXG=7m3E$Xy9@iEzB48$Rs`Myu?}$ex)4OH{j7NM^fAMNA<6g*naR
z*fa3iAORfAW}uXz5FsQk4(+p^w2h4o-iEe;!JhX6Cw!_3z0oKzrj@1IpDe3p0O4=)
zI!gc*d0;yAMZTfVYK_+!=mFoZnUaaEUv(*oz{yz(KCkM>j|GH`oYB6+!)6%~j2dWg
z0CxEED-C?2LqmD}ANJ|{g_!=)Dm+i{o5vEs*@MQ2|JvP&{Li&a2N6sM)<;!BB1Od|
z5f=HWSKkMv9P6I$t4iHcrRvV4*#xzRD0`KEs2@Ljk@tX&#<IgRSs+U}%YopXm2&ZJ
z_kmxy8jttkX>;SuDT(9Xt%~b^NMygu(e^rX$j3E{T{v1sJK!~c{cE2osx4Le$6SL3
z?-4$J5~%7bFK%UsOnpR0M@Og}%;u&TTO-?l{>E|=I<wt7S^f$^F|t5Sf%hm5GRgXh
z;0vKf<^6UgLS~@VYEgN)>*osyRtMNSpWiy8!jdLdnJvnw)w(?(hd$;W<*W&>pj)XS
z7PQztzkboRH?|IdP{Z^F7z^z_%KC&O<<iZrKvf2`JOe?v*CPvrK|f`2aq)0|>0zB~
z^IL25Iy%j|XqeZ#i{ttnqa2gMQ)BmEM|UV*>}NpHS1;gIL#<mKzhCgPREhtOFxF3h
zR4*;${k*L!u&JM7=%J$XSQ0cq^`DKd;`f|yD_F>7lhG4L*#GQRlYs`eu47+je@X~!
z7ODI9&JS31cqa(xj65~Q#3fLe?Tj(KU#vGsPj+!niRsp+L1NkraG>w9fQ#Th`Jz(Y
zL2c=B{8HJ3e=No|E-7^|USYzAMLMnqlLpM{hI53ocfbIxZNvru%18m6JmY8>&~j(k
z1V9xyuT{n`V4U1+MhSgIxC0R2MuEqJIpv)^`z_Fz0+e21+~|nsa9Mx%L$wApQ&I|w
zuK>KmZvJ@zN^!kwF7E7Ju>EwsNkx09`<TlX7pUno)V9HM0=DSCJYQc1C`a0G2?(tG
zO6GTfI0OW3nlubF&qiq@@N5@uS**3SUL7q=v1@kyZmjB>pPyF|7_?;Pw_0vsINAt)
z=$q5n4LK%w?qonKpMpZbjRF$3{&{Hi*Pl{|%jodWI;whJ#84+$r`sqFtzS9}K>ZPT
zJ8Y^7i>!+Ez>hKltsI@Fob*9(Pbb|BqCDJibpWJefKo28^TY95$N(smke3~=fs>Kr
zve4bwz|ADVtLOQ);n8e5Q%vqzfH#_y8stCo_Yy1u6-+}rz^RH8%Qp6wsMenT>NXT;
z-xONf6G>J)yfy(DaLa7{G5qJxcOcDIvngviu{;@?>P`GP8nQB<QIZ?eLh^ZL{7*~u
z`XAz`j5JGO|8s_O`R$6hY?cy(>5eJVIOwJXNZ~MOPtZVmfrE6nU9?ZXjx?X~c7|00
zW;vNRYGemc2tt8`POXi9Z&JJhl+a}_LXOrNgER2R#Qw2+{n6)i)}9#ZdHOM!02E4^
z=3+G8fNHe-*@<Y7@5NWq?Ou4^h4$@T;Fa2;+;)M^@q9G}xyg=$luZP>ay@M|3LQr4
z5>AzW*ox#!0MN07=I%h=V*8C-o12%1U9a7YlHK{1Y2E?YV4<H_YALF6f|1_{(cXp7
zg2jM>I&%e8FLCR;eaB`EEUXRj%6YUr?zcxBa1NG=raR#9F&cnZ^>ABL$;R5u8=wxH
zmzB0*9sCXFJWSkUqy2oKd`xNN0vxY6$b=uYT#s1-nHo0c`HgQ5wO`fVI5XJD*;BGc
zfCn+`&^A{G-lyk{w~$YnMzJBwVX?@3x%AGT9UmC08&o6ffuOeND9^2iQLCnRApZJ+
z##%RmQ93ALp}nU^c&SH<h_nSj(ij{s*8bR5F+ONyG@GSv+|N&y;@i6fFnO?tsDcb>
zu0Wp1Zn@CHAGj?J0*b9NNpY=#!@&-0z1&&v{UJh->+2cR^X>HZ(}@;=1@Gehe)(;g
zmAfRlR1#9(r`<2Y{%>rPgIr0+`tUTz({5n8C#+v_NS)X7*1JhRb?Y|)j|OJzRn=YG
zE+IO0f~a3SYWxFGtiYQ4<71e>p99{&?AqGQA#^IG0f2uoWc)pCjKZUNle>OnwZ5B!
zSB%jz><3UXauIIjCKR=^fCpq_$je%vdF?B>(ipZbk?zOkZckS5XpyLW`Tl+ke{Lh6
z5r)?Uh`n~d-i;hjLG6}pf=wOh#2coGHtiDvHINwpd|gH0cpsRym#S2sH(0z1FP>!*
z+}{Q>Yef8y7a%swGW$L!MFk~Wg)cf;ObU`mP9Zj1Z@Kt-E-?}Xeekj~yV6D<1vp#f
zA?g?5x~+?IqV<W-_ZIAz<&4d=<_AR<s7j-MHRs8K1LZczK?cO{!8<G5kIh6IwlV&w
z76?r{j_ElA%0qs*x_FQ+1Q5oTLI9kfC(U%EH3(%UcPsgxbqbCa&CkY5c5~I2(bwjg
z4yK1Jh93*Kf;x#Gh1J=Q1lW~;DnBaaa^@AH5&9kvB#b(<IhpeI7Z<U@ppVwCzOh8$
z$8ShvrbssEDkSUi=GT|UZioUy|2ELxcxO;Mp$-)VMO81jO(wiK2^G~4?QF7OkJE$*
z<_v`xSdUfv<I3sqdAPmj8!(fiAl*T2+5rjTW$pDjllzU)d1XL_H`=(lis^b};h7|8
z44wGf80-W%SLlWrLZ8a??l;o{y^uEN2C#VD8jx)T-R9>j^}@KtDtVwU=<^3Un(%pC
z2D%aXsNbMLILG70w_qng?YL&d5rHmu(6%+L$cGyoAN3##qMp#OHwyC(cQ|#R&IRz*
zX|h=l(=bY;c|X*XAeJf`u|i95a?TNBvj*_a0amj`n$BMki!uCB9!K2KB*fkw*~68k
zUG9I)*&S76KNoUF-aly3`Gq}v)G2P?g51x0&w2R$IeQRy#D&g3tpDcB`u`xq0mQK0
z?Ou87N`AUMr@W><8su-~Z_JVie6VHyz=jS^>(-ZtLoqA8qx(YSLXDRiMGH3}H|%FJ
zlby_A2jB{;UCi2UvE!T9C}y#A1mw-udjOmt$uh$0ZTstQfE7vk`}c3#<J!4T4Cp;#
z0L<4lsai+KHOxV&@~!z2I&Fh6!e`(ZK)Ew-QZ`@-nnPA;>4Bg4BPn$f{bB$U<2Ap8
z;=A)+KoAa@1*4U(oS$wxzBxbL9rL(hGSUX-LCVwi*EUrifW-I~uUEZ&1wK@!Y{mvK
zVtRxIaKS(J0AK5Os#P0>O5paX`>AU_!m|3A71Ip|BT&F8jXeLxoB0J;&#<{1N^Mm9
z_~E-KgQnN<F=<MJkT)e7Ry%2s_cM`^Y5;inXdoir(>ShUu2H}{R6)R%r`-1@U||#B
zasvFgV|>>m1}4^;RG=sqxqdUP;o+d9+b?Xyy?hxorx_81jNpB_JI1zkx>R35GV6~7
zrz;h7lAZ2}^pkkK4f?ZugNE)}CBb|kK+nO35^<A>ARRA2XVArU+Jo4iBVz8|%{3a!
z*uf2W`~z_Kr*fq?E<?S1cd|u7^$%yuM%y;IyUzi<=(ICH3mX=qe(M*Inz6$Sv&QE?
z3byO$1ANdsL0C4H*;Z-3NZZ+(uP@KiE+F++V=2VlJKWz5MC07MX?AIvoiAOGXuIHk
z4c4X*Q#M<DUx8R1u*2m59ZM<ng^dx9>iO}U00fcP_NQ&S{3EB_Ggh3PzeD1{7`uKO
z-M<^{6@o#edsX}kx%xqYh}2v$nZ!dVsWc9ZlMx@~3)Me|-v8wQ=r|`on}7P;vwQv(
zL>R~U31}?r@N5a}J&xrsA$}{a{Y*w;X|LW-6huzQ9=y{wRs61IG95-K0a_~~Y0*BT
zb5j$Ay|Om`guxNO_x<F6S<lDmVZvcGw{G&MNAzKC*cTXn-}#s&e;_!ZC&HD=X2p7J
z5lGj174tRLb>_QrGLDmVz3+G_1K0+ERycgFw#a<VL{enJEY`O4F^&b&+VhEHx~CA)
zJNM1t&w^A}cqj4VcJSu}!atG%>5;+YP$tJ$3u&zyqG1?FmoEu1{0Wg5fQtkPFB7cX
zD&eGW)HpsO^g7UoB?6Qjhz;BLFp&rcU!V8#3Pqt~TdxVPvvt08DRgppc@-i)LNlQI
zxv`Im3q>%`1OYeEB#Kqwz&0pw8%m(L0KQx+(5+D+SYTCT%ebkJ8s5ez#QYFFan^$n
zW<5ZJ9MUq$diW6VA|sy@;W@dN|3u1NR9rTWyo4z&8$cCYCP8P+u<66zTZC8!FB`uG
zWL7qCg)sE&nSra>x{<8>H=z3yP?Axua6BnV$8uDq`!>#T*Tq|>RXqb-pTK-*Vu|`F
zWD5(gNLRd3Na(=+NCK-8+*%Wb$g$`!oZYy8P=u>`LotWy+n+6xxt)JebQvM6*-d0u
z>Ge6<{BcC*J&iV)sOx0>*GkZPOY&Vr=$Zc2L9GSQx!oILtzCMdoZJrMcF-BLwqQE>
zMe7*{toE<??|(BJ(<F5O%e!33dRp@Ih4oI~JWUs_-va~mY)etZ2y8M{VfIEUk;;+y
zJi{)_f4W^7hS&QFL8+Z5U1U9+u?>!|PbEeJ>vGR4B59w!mA<_@;k#>DHxLP%Hwl6-
z)ybL>T1WVYd&LjgOD|Qu$5^?kR}C0Js(Y_xhzP5_*YswuM-p0r_^IvX2wUpa<aO|o
z`APz>KNk_WrHdtU4j!AZKQICq0z9PhI>55z5$5TLeE0lOZl%U#YS`A&(o&_#L;>qO
zV7ea&w<;6GUuC|a+5QnpmX@=aTcW_-$_7Zm{I%_{godFvsq4UQsBR_b(aq~_@Po!Z
z@%yf?xoG`E`MH)Sb_M|adDM^yt(I7{K-OqI!lWKnK(D4_WIGVwrErvzJ#?{yfosy5
z$=9`js}g}CuM>7E|HBQKNl6amWY&_Gor!*jfz3)2C?Cs{uhRm_do7Z+jKMDp_%{^&
zv_c9Hw0C6ADeB)9?+-uacRgtu18a^P<GD>sM}MNhp-JJ~F?O#E``0aO9fEKj=2KSo
z3)&P#8rJvm!lK;saSvIMaBI^ZPtMOTIxGs3nePJQg#IfPnEf|Q2MEHF&-%GD+=?Bb
zU(s9cy+w+bal53?0ZAbB+PX}@y`f`0UtdEb&1SeGTxHo!gbPB0-Fk|dj7-Ejc5c=B
z;i5V|CMCf(M!~AFIWpBFZ0Ga4Idb+BLTleon>s=6HbSp&66^Ht`qUH2kH~+>z%>5+
z?v~o(TxRcIwQwn;^05WUpAx!H8K9pM0BYEag(`pv5(W&nik>u}*5}rc^B=3}F0(v_
zRB&NC#ZU~yJrRX=K(R}zAyQ>yug^)_5%+;GYPv2DL=fv6*ukhfUnv(usSwtZh|q&+
zuKrsco;<-4fC&ap3nL7opHG00YcP4b$p$HGWjT>yF}1uKqTaBNvA%fx<KwvzfJ?hy
z@olHbhFreQ4#(W3eOdJanEOxS?<qQg+nI5bcNDrwAK(2SR1zd%iCq$yR9YT20!uj>
z4VD~84JLpT?9Yy9G7v4e@PT(~0(^P>V!lGV-MAz*ue7MYps_zZaF5gB$XI@Mi>n;C
zzKwdQP82A}GEGf0h}G>f{ylsI3%pZi*yw}q%zg=*R1Rwsm?_+TAb<#KnBBkZDQ=4{
z%KH|UGbk6sPeoRF6MA1}Kh~iBx61y{Ka96PtS5olykUERh1Jrsv7Z^7<;M-fwdo>-
z5%?a!C!TtZ^kV_dZDwXh^eQMdOx$3;;2VKzrH(f?p}cc^Lc&K}@#Pa1U$N`ho?Kzo
zYmos^uJdg`Yc&55={uqvX)6=4Ae{X-bYgfC`2P8sv+o!0e}ELMZIK4X#v+??PS&L5
zsDvr}_)me}QU)KoH_rPn-E1D$n}HVROZ}7OMme<%b`eW9L2kGA{dEE0?FJj`dl&(m
zL^$l|#3Hru+~%kwU&qV)r#U}04IOd&={rF~>vdV}8~@NGCYfuzH34|kKFUHH7<HSs
z4}iV<I0*Y32alMeg`OOmZo|-sAh+_Fb+=I$(gg_z0}X9ndOCR%YaI*$8imNPXMP1>
zkw=IS&afnr^m2lGLJ@&jwC-F#wD$rRwO7A%rf@uEcb^|=fk;J*?9<MnE?5M9VM_MF
zjNCd(+Uuv4ITZTl2j?acHd{ZqxQ~3{z-HrrwLM2FtpcCsq3^$Ke>9n1P+xPtcS1vn
z24VX?TtGbm7GP7=Fd0y5$fsIGyiYs;r1L&7j^w|8RTp4}GkCb*Isqf+4@(Sz+#siQ
zZ>ThT>ywZMionlmWxm={Qc_8=AN``C**TiF!WT}PF*&}0e+GE#IKUX^aX%61p^ug3
z`ErlOm{DW&-ZAa%9TE}tPS^}dT+{Y98Kc1<noTou*KfE(8Lney61b2ZH%EPSKGw1g
z@RNv#$^EWml&+@1K?z5Y5wGnlks+7j{91Eh@!a(F-LrX47K2_UVSwLI8W-WP@7)P7
zbfV=-)S2|2bK&jhN6%t|2%Tzd7}Ka6v~#4-bzuB_-r6Xyj+f>Dl-xV+A6*b{ZSqei
zj_t8@ZFj_Km)(@UL)qaEqv~m}Snp@WP)Awq5m;+REpMHqaXzWL9}*4%Gm__iu4e!I
zd85AynrDvS5&ZwiaG$vnBPm8_H_^EGx|FFE@LGv?VA<;V>E+P6`kGFQ6OoKz{p)c2
zpLSbg8;Hr+scV7hpFRCOlJV`6+*O>Qb(4#(?5Ll}m|no}>f0|pV~p&KI=@1$=AIDU
z@mu&^c^>e>WNU_#vvQ~93B{yi)zw*EFCXjO*Wc`O|3`x|yBj!AV|@Wok&`he&jjN@
zKwMV>7_+4c#9iTb8v%C4`5Bunt~wwcB#zE*Fk<c7AC;Qxe0b&cJXBx%SOUxxMgssj
zTixowSW%R7=>a@jfQoQ<WTdP@ZQ8csB>hbSTLDB2TA-rbaM}ePz3cd_?eT=^`??FX
zSYI-e5$C=m9iTf*RV;yiHIAaQ*9pmf=;xL?v@<xGE{eq_cqtFE*E2U>i<sq1<C`r)
zX`hRl!~xfVhOyypzimDJ4KRwAs8jpbq}Jj4rKH}7yP~(Dfm&xAqHy@!DhHBc+S(F!
zw*kx9s*cV=yLHW43OkYZ%Rnh;Es3rM09AE9>vvyWXYc$P{~xRs)BZx3T=#=IEZJV-
zohtz%Zl{V@?0QiVv?$Z_LL9w9+T{N$qFnO@oK2=lru>s<V;YlrKpL-cQySle##d?M
zsqDUi&Zv%H8J*3ZU{M{gXh@Bi1K1$UGD*bVj%zvHe{53t6<|85j({qQs8hFHu8SVj
zZ|ox$O(q5F5Gex1DyiAn`-X_0-*$Rpg#Kt<tZ$7%*kGxe5ov<UvjyKW2Xw2s4TrG`
z+yI=~sGFYQ8NV;QV~UCT?DRf>Xo0jm1R%@RU!~2LzGZMPjLs(G|8CrraWsc?jK=XQ
ztOH*B`SUcQp{0&334n-4{>JLmup42~okA8$I*{3N&(*8mA0f&u`zDKJfn%vW5HO0E
zy2+(RaI?YW3P*eh<k*;h?FA(Q|G_ua0ae|}3>PiQoS*~b$a7gdTp7+oq3hq*e;)@U
z-`>qlKUwQfmlJ7RL6wX!PD*Y0pA{<TiTCV%pZGt~2R}uSztGYpwEDZ|i5JArWW~Ai
zR#b?DNBa_aqo#KN+SzVH@+i=S(dbRksQo7IDAWLZS)&Z5&jeuFJN&@}Hoi_VjE6@p
zpIPNLKWLIOtQ73k-Y#Cn)#(aZSm6D&ETRL0u8iWuvJAUp`^>mZYpGO-uDUC%T37C4
zjo$*uQU`E2#8q#k;J&hB0K057@4`+;Y(S%XeJ~?>b_;-+Q?`M6DNdPiL;u5LpxU94
zKW-NRda4Z&$hbtTRm>&+?Cx@vk8JgY$0C!6PMaV^F9O_Gy_<bt#&ehjO!MuG{dj`k
z51aN&r?DHz7AuQFfT7<8mI0_0arr%5`e=oPe^8lS37Bb@i0~3AMq%8PUM>>b+4X+C
z_ck6q{-UaFYOCH(p}>wtY@PEQ>G`BLozHjw``a)>z|>Ek3=R&C(bKQ&i~xtTNM?!a
zv_&DxrKRl)H8pd|*_jmcZSRh4hP_ogM_>3$2h{}=6kDGpZDUVsV-Dk*?BKmzj_B{X
zwi}iznH({LcSmvmn*4r7LkNzB-VptW<z2+oV?@e&&(2gFBS#jIwT5vpH}Ln8?0@~i
z_$vf{>Z@O4k^){KYqw9(1VK;+ZxdN~svhu(2EUX4EXeMYI%<9Wc8mH0eBDvmr;k>e
z=b+KwT77p#S>&5Y@<_M-kgiLgQc)<k={xZLIAY5^t2%e7<@tl_)s>s<8J%QFbS}66
z)gCn%KgRVFVP>{y02>hbl_Yflnj*OYv%?wCj1^r|!@Si89ld;azO@Y);2m$=foAH_
zr(pI=;7TLy@wl}1>9z-GdrtNgdn?cLE?EUAM}L53Gd2phDl7GROOOMyrTv?9I>Pu8
z{>ERn+Ia=4Jz#~uB1sC6-T+;FejM1GczbZdp`Oo&+K`A;gd;4=G|_zvAIk`Tr2*c7
z=C3(BL>j)(NNn0fhTSjg{>(k%T;a?UO3-%zvzOi7a^aWA2l!9=37(g!YXg8ZN(DfJ
z>CNBLqn)r|-uM87H|0@dq0z43>jbykoi$S*pdNRmxndbrXtnAu)|gD@h#^*6u=BlD
zwHm%SwF1i@7{4r}mlfcfbMbUJ2HTTltt~ugL`B$BRkJy^gLU{OlTH<UOJucJOga`4
ze`Apky|sv7oxEKYx94Yp#VVwRMa$Ksr0s%1VzNlC2mzq3ytyED>=29uT@mIVq7|+n
zH|Rzy_@4K_?XXdd;x*t4_9Vr}qc7yDCPeBlTeJ3B8HZu-vOf6SVVx8J=Z=k{fMGS9
z8dp(qF=Kfdl2jM`MOpnS;~L#fQU~^B0pD}c0`8qQXy*G4)2zml5#Qgh6={-ppG7m9
z3WN%=&Y*e@&jnkJ%RyW9esej9rzA5q36R_#q#1_)U6KF*rljCVQs2!|;Bn9x)KJo5
z_%Bg9!sp)X!IMH(>q1`EfX2unh<ck~-HmpA1TTNfIhu(Jq01RwyfSfz1~M3q(fO@a
zK%MViCZsIY&+tRAPpB5exdHeF`Af(u0m8Z}aOT+H^o(!@Wt5)%Zk;Nu2Z&{k6EJLu
z-l!19f34C6V8A(Bh~JO8c;0mrr0KF_t1%Gb-V>q-1NF*7fa2(Q56mQH37&5ne1TY8
z^A-Tz5+#Ir<Lwf^@pgsOQ~TytZe%Z=#=%aktfzXg3Z#;CwW5y`09(FQ`*WQ_*z`Qo
zM?sxnOurPR(tX9rWZ*oUvAO2@wEGbk^KCQ}XtIKaAZqCu!b6Jmi3C9b3U<P!b%pRJ
z8|#3d=RoO#NBW3fX|!bqh?1r1-7ZubDp8L=KZ1;hbwBWT=5Odc&S4#+k=1Wb*R%<L
z3WZ$$h2U+D0SLUnv^;4jR2h2Q70qCq86APU3$lX}&JN@{d0P%LTCek0x8rfzN4*tt
znmbv$3ExjZLz5pne(Z^J5<s(PY*hHY#obl)$LcP}hIIb(Kd&at5$|v@qvb!f$AV{!
zzt2ihRP#CLf|ethg#xLXB_$5xs$0DS&&dBjKliui0f=rc*Yrt`0efAc!NEadWgIy$
zOE+RN0|f=S+5Ip`u}rU_Mpl(AV>7l-aI;N|n<&l-Ii}AVFu21EBgL%4u&4~#m2T&2
zf|?Ihxw`iXS@$WoLbdQE!+@Obog>&mqt*SM1Rl~)f|a<}wr+VP({*)aRx`rE8rruK
ze)DeN3mqNX;rh*-#>BYCV%36)oyFA6du5<Y-A#7A91~jy;<nSu<1*F9GZ5Lj%Xa_)
z3~c(aqTO=m7-t!gC`y<=C@`)n+PjS~BaB>SaAYJNz`>V9_+~!d;fM4By*ZS?#xdOG
zDGCACq}%hhdCealww)$Q>+%0%>@0xlTC;5(EV#S72Z!M9?h-UuaCg_>?(VL^2_8JS
zyF-Gz`&*pu)7_`L@4c^zDzcNJvN!9ODPw#SC<eI%hBbmlA&LYb*}M{l{mBBr?k=6g
z4|b?(zU}iOSn_^bjW{kpOdp|LghMX#YU+;DA3e*eJAVx)55K9978@**TP^~9)N1sw
zNJShzFU^D;G1T(*HoT27Fa{bQvE?Hg00?)RM8qN14yYesVNMKMZPdZrk%?4&Tp55d
z-iRLO>urub-W-AQ+s`Gb&1~)9{q209>(ad4e`*lHxn$xAK<0kenKmh}FC5T{b91Y4
zH+boX&8$ms5+1jr9qIuUv)xvR{bgLPYQ^k-1a!8J&;nU|^A^nBPQ<|)Ojrsa`7fB;
zp=`KfW&1H9lcXS(yOaEI-98WmtLOOFYv&@US%Lly&0hAf{DEgX7~V6MYi-}hu$Wm`
z4td<rK9$ziPVp$Bep=H^5|`&}YB++q-3BLl%XcX!OgUBl8o~R;r@pJATfn7r<}1O}
z15HyyV^@#C0ILd38GvsLylalf#snr}qWYFg)Z<o&Thsx4Q5KyZ$s+RiRgfRmdwYAa
z*zpUVdf_!!G`;}cLSIVyPyUI-$&4=FQ*Zk$xX922L_?^o+TSlPNxjJ>Gtj_e4zT1*
z?~a=Rr|34<f~E_eoIQ}&vbF|aO-U55X86^Q+tx0(x>O@~<=UiV_%fWJ3cXugp%1vD
zo2xMtcUalTfg(0E1l_NTrN`R-@jPToQaR`iTq+=_A!2oPb))Udc=5kwCh<65NOgcj
zxz27TfCzrzP6NVQue%1fw1~K@*XFbzk0B$Rqo10Znqt*X8BoF9b?qZ5Kix##<cv;!
zwk6x{=M1YqzvFfVs!rE1aMAtEcF}}B*}~vB)Ei%0jahSlO=3Yl{yp#X+m_6!=@g9~
zz&cNNIJ=>a`z@WUA>W3~xV3JLg_>5%#q1tqu1Uyo4enG1)2~Ku)Jymd=+Ay%+<ZWI
z_d*1K=n;F=gs(V&NxI)^2O-{h0+9qsxYj81*NDpB3Rw!=Ld4t9PR$$|e|dBqrO+EK
z?{uNK<%zc?y`=EwGmB%G@O&I#uzNgyqx@MC5s;=tk{$d{Y>|Kivgy81zuz*YR7-Vx
zuiN&BlT-FUaqG$Cy>G9pVWe=rYpl1XvixCyF4HJP5&0Du6NyTC2p~j<tte;ei>Gyc
zfH*u8fy#<1J1xBi9-xR97g$up-^L~VH8}+0DGr>s{E(cQUQvp6`09tUcJrh(J3+LH
zin^4&XPk=Kd=XLa!!!9~PtatpFl2ntIEJPP42K0#OkVUqcFBJ$u>!a1K!iYp^-o-=
zRPY%rh&^MQ?cTll2#jWg6X=|G##wWuMj}g?3m&976Bz)`(C|Dm{F*8t1bMPtz1sb2
z1h63s-^M7-Z2zNY@YgN?9xSK{LKgj@{oL@C-*iD+nKncOdaeB~&Hi#n^oO;J?{LS=
z8cz=i=Hnv-U!K?3Jr>{&fl!T!dh_DqVh0%WmPDEDIhC;P{dlaTt4j~WV2NR2FhE{8
zR<i(a{f{Q=zp$$Qsc-TH7XqJ&RxpkbYsP}R8*Nh;4cA12iPy!c)5L;mBp^0)cXuBp
z2z#3iOCqM#?0#)7{s()|K?<}owJQds-S|)L-JNGGd$oXC^)i`Wm4>=W6J;bJG4}D)
z)gv*{<=V4GS^2ZmK?DJxLW`rN%@F^cQ79S)euZ){#6N<TfBYem@?GrK)bX&f<v7z@
zn+|3;tiVJ~9)N91ib(~LmC_nUu#1HahmQj0S3vO{slY@_E4}7*tD|LED=V-P63mB+
zf|6nXCM5aimw*MySs$hz)X8I|min!?xW$tE3GBc8J8*2ofN#`e!5I_6+~t_V6~+cV
z8VJ0?hT>QxM5Y<E%oZf^xqefVNK8mj*<C0sEaWt%<K%B<kpMhWEJz{Y;fd*0JbEpT
zFrf%m$;VSl#sb*{%+9@^-JZUy_w<HIaDN0m*UD_%q&hG6r|On0EXT9$b=rXcBb9-c
zHhF$Mjj%E6ZFbJTeaTWXdYnraO&VTiBV`Ym{66=^)<t5ZUulzgdg!I0KU=sixti0m
zNo|R>dDC9qT?sZGnD3l?{^tjOyVMWK&fa7bPA6EmVSi>Se=G-05RgR1Fm;FsL0MXO
zLDC4!=QP#DLsi9m`o{qGQLRH$i1sY}H)1CeWl}<d1mH5Y!|j?@2S)AujxpE`hR6Ml
zx7J`W&vhBg0(6+uzE4D709?PtCY$UJfIf<bmX@>}zzk{f_}Tben@d{7TlRnYq)NW*
z@;ikg5D<$>wuRxfI-d~D>p52;vn*x0`TQ{0pKopDqW>ZtZJlY<ouYrSANT8v6JWH{
z_SpZx63u`ef_Dzl^Ka=B@X{2=FC|JC*YX`^KaG>2jJ!3aq+MvO`>mz}a`ExqCdx$c
zkkm&@7EBi&cVwy>6ZO);pNXGU8^CGGRgOw@)KyZ$h0j}jJJ;hLBI9#9HHVxJ*pRiU
zq$H9)H_SzbvMIy8KjdY47%A7wyl>Dkh$h~WmP$MTdn~Y=cR%m%mCR|GO3fo|-!e)n
z4;P;QjI%<m6B;bfL=f@;`R0d;b`#JNjzz%dN};YAAUY^tuhQWrow_>I7!_r#n=T4<
zt0R%qM(rM+qot)SuT&Y=UT?G_XJJwtQUOmZ;kmIeKk<$FuGBOuS<Q{U&z8p#BI5MA
zyw~Fk(Xv*&tXDdp8)WijOEcqxD!a^8UGBGUS(SKZb}zBcT{r)>oc{9CRt0*a)=Ho{
z|DoOcva17~<=~eZrBJdn@s|YPNb6k#GHdxUU}}#;>|^aPef-vzfrDV1*W=CaJT`hu
z2CYUJ=aZHFu8<5rq^b8x48|rV!$1)JHbN!-Ehkq65{Ga~+k=J8s1UpHHJ&$jXCV%I
zKC7oY>h5xrE}iX{qf&%$K)1_CBHpSjUn0F7-C>vCHE9O`l#I8N@Z-`u*PFTf`-391
zciV46k4CLlB59TxivRK%{@5^)q%m0OIhf9#zqjP{%@nOj+sjZZZln(e1-UBK&h<yv
z-9pb%6zp`APOX)`Gw3M|l^048ng$&56?s2%e=|Bpk;MO~>hHcu)o4|8*PsW5&UCGw
z5XQjN7lH$(ioT_KUI6VBc$G|;u#?qO!0gjR_QjETy5NRahQG{`by#hX!+eJ7lF?LK
zTYJIr*HB_nE0bYA7RZ(#803f}5X%(dQGYx4Ez8s-HuSm{kHRxM7y!m9dT;RTV+aZD
zK_Qb3Z5o7H@T9!%#LJJ|9B~lauhf}D14nM!1uOn72s+J|(imhRQEh3OS?A+=9>IHz
z1FjH^QLg%ldlen^ya?n%uF4tbMndI5_P<=-|F%guprOHIq?UrkJ5`IJt_>o6C-b8N
zwp%I(@~tCV#w6LS%p2pHfI;v8ZGCt2tK|_2y|>HJ0+W$==`a#0y>|1rwe~)UOQ1dm
zjfd-Uykv})TM|)x2LO%XruEt*zx#u0V)>b&4x}LeaN3$Q(X|(epb8A%dV~0oX8j%F
z<8<bFanJccj`C33{CA2^L0t<gNu%X5c{aW7m*0R6_TL}x#1nYjRy<jqY*B)0qNH7)
zpb6OQ*S@Vu$PrNV#4Uae^C4cE{>xHR26|eZZ+t~MW#2LU!}*a8^kHs$$<RsDXhqYi
zz{bJ^ojmK6^^|a@)pKfBI9Looo`IN&X^TX;Z>@4{=EiVXR@94D1yYDd1BbKWkangW
z>5$kluzBMB!~SAj@jjt4ZtV4Wml=TAMm7;jF`YkM@6?OQ?2$Xqp?T<qop-Y2U9QF_
z3`}6M&8>juVESEVK?)vT!}b_$CNm0)5aE3l8g98nA%AGVr`t3sKcJdt=x>;RJa9Ao
zzdAWHEWt+_%-Z7)F7H&nVYTRnm+}c&D-fZ|DfC5Y^rEZF127gL3r&zxz!`-rE~Z@|
zPK3`YqTS3$0Gbb4L8rBI+_e4?v-X&NdyA9acH5wddqa~E(3Sb+lY&~m0|o)twn~+!
z67v39QLAHEiAD0$d)`CfJr%~Nl%Tfa2m3;I(rD^<IyEVCd5bxeP2fE@(z-5}%_CPd
z2SsA#2DojWHh)m|1jah+C>L9FrmW9URLKAP6CC*Ji{7Wd?MyHh1mg5T#5}@RFB2Aw
z25H94fsTZ)>W3WxO@m`V<grxsi(POzmwU}XsHw4YAs5eqYVO&Cb0*)t`P^)i<?u0@
zk8Mkn#V{^YpA)XFeK1|!wCUlB@rj!UKGXn&&!a(DS3NNQTC4=>he3VE>houUlP~~e
zNONY=5bmCN5P4iI*CU2u<Z<zqhecL+?aV%0ADVF0Af$<}8D8GJyOsSH%-LV=Parn1
z1ecN)Mr>{BeeM_D4``H+bME*ci;YjK+x|ZCut|c!s(QOS7Fk`>u<ha9_b;!dUOR2%
zCyJ>3;FH8tQp@2}5-e8A62c`=f+X)YOT7yaAAmAb<{GhUFD-M7yBUx|*!RG*r+Bll
zu#lG90yid^-_eNkLoOmbe0C_oDi<5aSV7=j$>I95Y3$YEst%XaAoHOe!```1=hO$1
z{t{dx;=jZ)z}wFt124O+FrCVBCQPLJxes0Yka=9Bqomp9h#yP7+_6xM5O$EHfg)uU
z!R2=_aaloi%E}=ObDJRXBg$Z!o{tkFx=~7|LjFk;@v_E_4;|w``CE&&8d?kAl#^=`
zSz~1Kv9$0r=`-X3`fg&Xx0vpP))1oF&!j$1vB}-pYb^PbBB9c<GwH;l#{TTW#?HVQ
zj_HmvC1w4?^`sgm-8!#jgvZTE;OacoaKvlxcS(?iy-nf!_G2i`uHiW5!|YP0-q-vE
ze!YtMO<(Wf@Sf_^3LBDL&^j0KmpSd{8SXea_}5H58}6!qJLUfJ($7$&i^sESxwc!h
znu}#AyhCh(N`emG-u!Am;I2|^kOOd8lYRs@2|)wYOv6aj9f0u59-tbfaRC|!Sb&fx
z=j8`X19cMvhZfYxE5f3gt`~$uG5ray#8%l7nYV?q*i7!2Kb#~gcL@ta8lLgXHW{wH
z27NPaQ)TBrZL(d8q!U%r$Lnqj5~t9_#9F7yTxm17Y8wj<+K{9q5sH(<O7<#=_kG2e
zAKz!K$<j!dtBUL;_kKJVyMv51bk>uduh{BwB0OSMC8qkYq)yZLD&RB`LR=X$nLied
zgoeOb9;{N%F{y`cuOTB5s%)p<aD}z1d(ntd7Q;lgf5=qUZno}Y)L5#grlQ|y)0?o6
zo%VcI)`h%HwS?;)*PK2lUh&AtS_LxQDz)ebL+aoAa<38-`fXd|VTqz{<bS<ehyWdn
zKs%<a0bvM6tb*n-)^!V86?t&g;d@?SM0U`W+_wIs8mW<EE4lS@W968lZ>s^&%?D(>
z(0DkNQ+0BER1m=2S|x?n<a`wqWN17W&{l^VPD84R`bmayuk}yXLnAZF0}{z{xibf*
z!Q-Q&^V&vA(vQ@pmM~Ite{19Y^TGR(lDwPuIxI8g_D|3KvOG~gXD+IN3Sg>6+3+wG
zbu-jyLJxvW!Q{L8DIUniPz{wBwznoaWFg5a9m32^4in443?#i%jU25EA8M|T9=2AP
zLuJoOscMHph__X{Le9yG`XtluM9@i+pjJ?CE1;pVtsW7cms1}kk5MwvCQhD9s^B6!
zmHHy^9~$CoyQN4y>zCQABiQmJkFw?ADJIvVdgivTc1R}Tl=m{U#r-}0Hb(Y8Vt?Q!
zYygiD!`bRP_}p+8qp6u3&>uH>$7r6aJAfcGQgV3J3H(kYLQ7ZCIVi<oL%vz&M6Flv
zN8lhM@h?$PaUA^gJ1PQ<o;?%_nrhY=sCHRR(y%Vark2GzTwjK-es0TLhlNRfYO&9Z
zAmmkvLqXkX86Hohe7)2R(1FLDQ5QqN-<bK-Xx_fxL%s2z%UK{F+VkGLd3s}ry$NTa
zZxE7gejJe#Q!Hs2o-Vy^aim)jIV$L*C3kC^iPhc%WCj7TcSHm{taB=fwmFlR8M=!P
z66X8!&sMSvFX|)9C~E6b`5ossnKPemKKyK29o%KGX1r|lwtAf4$O!vC089W^!+$M@
zD3cW+^XlTAfje>*9KxFVL0-B)bCS7QiVF3wtZ47AwYU1M1CGKUwcIEuC}eDGvuHmu
zC+Q3V7s@*vzw5L(#sb~HH0NKxi0x8Z^~T}_q{$U*b0nCjrwgpiaramAfg2pBB^8}>
z4J%u|j8vq(riRIWTNQH;Gw8m9F|RMv<3^I<n36U>bKmCgnM>>{=P=mgbsQgWE7!29
z>MR;F7jVk{`wa<?Dj_d7PpKSWzZT-Kb6t2TV_f|bn-m*IT$pG)#obzLbntXU&XDf3
z+F@6DCp|=#gP5o9{&~%lRG{9!bL=&{{q$W#eoITo!D?em>n~k9hR+coU_}cF0(&5E
zK?0`GNZqerucE>4goL2Lg-oH@uA=ro8_KXW+MTMN)Ebw6(s|{zaT2!?ucK+D{e*J6
zRG#W~dEjQVHgdx4aFTedAo^mxboqk%8BfW`5>z!gSxLkZu8`1!PqdHHZV6@Sc2QbI
zSyAj$v94(A`hBwEZ*h=M#X7R&>B)-cY1Q{s{>;VW%)70xXS*tPwhYJ58~kXAF*0n4
z=oIS`YQ`dbM1pw;$dfe`ZAG;ic_`e9#go%}6Gg^FC#u0PrL}iNvnr~#1k@Bd_Z|4Z
zGmt1o{jS9a6Zg&biy~66lD-%%14UPKX%}=5Q2}HHaJ2vB8v-t9MHf`Jfr<(%chZ+1
zg5Ja(X|IA_$bn*ndgH}oAzX7mu?QM*f{Q;l#}fd;ho6?cA;^v!T_AwZyO1-8d+)7T
z&))$|teUQ#00uZu158shU{plVyHDEMGC+>U3RpgHfW{B13(!*=>o}nTwZiwq)b+`(
zYJcKU9+e);6g>63<Me8G{jO|9MW4m!6h}<{vU|_|91^9j?TFFW_kiKY_h^so*9+xw
zwXeR9Ij`4`Dub5k-aT1wCry96R!&ohP|}hQMFkq>OOo?1-vm;SQrLc>&{R?tqAz=O
zT0MPU!LH|Vfp~31mb7E4NkEDh(7LrMr;YsSKU--0+p0coNa|p{lYjFT{)xh$?gxvg
z8S-`8&aI5bhoXzNW3=?S$g)&RsPYdxr_M55BV6||!ZaTiw`kd)@4`p!FWR)#lp+c$
zu+=Z^z|pJqEW0l|-NR{82UFa-qf1PW*%Mf8+ZgmHMEx_cGUKGa(()AtuJy>c8te1n
zKi%*OXG9oXkPSv7%ec$%pMX*bsxkjy9xGVBpW>x>rLAt8s>Ywn+RgG9%jg79DNqbq
zfYUz}=tt}UlMh)pAH@HU=M1cYjWZGjWogZdo#cgl()`ik$Jrz5ko$-yS{6l>V_o#u
zkMOho2*O4q!^8Q2mto>;vj<-PJjF07ms+_9>zC;Au_O5_)eA5(^!^$J4ZGFp@C%<e
zWd#@#elp!9HH5~GmU5{2PvFicV=TRWp@w2uTbuio@`b6>#c39xA|fSp?u+%*s8D3$
zSQ24`BhOQz?~`Z8Sp+Zg>g3tx7cD7xUe>{0ON;kHz$X=7=-0faW8xEm)$(u8^z8|=
z`U>cq5g#)w$&1Qx;jO!Tu==?y<;C&{xW*`ZZ}LXnv`lw@a9#hn;C(cmzdTiFf;CaH
zRKpRq`e}G#P;k!|Vr6!ssU~zJqY6CP@pVbNMb4)K+D?$+_p1Ga3$FPoP<i@n<rHe@
zggNwv@&?_8^r&RgR4vL}eJ+FmhmJaKd-%S#osZcVp7t5j^Om}hz^Uk``UPjbF*^Bg
zJV7Qi9a&elcoxH{R^|Ph2DD+V5|)0JR3NEME3>CiNlLkp?YkQXXe01~O!V|)Hnh92
zFfdS^(1isBNNsi{)c@@x|MmA!j}LC1GdOrsSbop`Swn?v8nfo`l4kUARwZCPGj(uA
zKP19*@9F+>ACSMYnoW^i3iE1XE|R?+`43mq@}+HUc$4_U<Kx8uscm;*%`fm5(CIUt
z!8x{FRR>=J1GVX3kDjYo7uwCVLjkbaI2Q(vjtR<6%^KsYHNiJK_bTX{VGqsulqr|C
zz}l~?=Cm_5nO%~tcl^bL!)ZxGPS!hpZz5Z4qI>h5GoE9?d3dZIalhOq5$Xssgy63q
z<&Rer??9u+Ji4Enl|Sj28EjgqHg9wd3=0?p9($h9g>59yH(t7M@h^LJp2qkfb-NMT
zeT%!jr(2*|OCyZtI9(!)C$pNbvo2^qeNC5)3g*yFR0O22&P@2)SAHT)%W<Q8i0`xr
zzt8SaQVPZyy%NdzM%Z>EzsH<ugrIqSzFlw1pIz<*tR$m00<Lzdvj6u^%Aq6fk}J4p
z-!IcN7DK{0M`caGF}x!bnIs`Gg!@@T;eQLb+K%(N8w)=MYG5K^aXTG|?C<Z(tc8&x
zq2HdG^nqadP13&)9Ega3yL`_-)pd-rw#V?{Lw&x}!n2*SiSt6ES&t_a8T0-(o70no
z#8@#%7#K6mawma?8gjS~`|HnJltCP!PnS1@Igc;bmhE|J3~A~NGGPDZq&E$RnmMbc
zz3VdS41#tK(hjjwWmB!`Ce{t<l{P$oV*bQYIlk~gN-DfKk<glLk-|ANUpJq{Y&efs
z2B{*q)_{-+$*zp{9$sxGzNZyYzBqt8-0bz^`YEoRq|67SuP=KkRApPP3(=v!n)DYl
zA*b+Z&f1?AEmSDT9i#Fqr9JP(MMP6vzq$p>+~<$)$)gu0s;DYjHR5(Gn00S+_oca_
z|B@-#krENTj8@68AuDb=#Kj*lws-B6Ts7@c=Z?fhHX{1va*`&JXsjAR-t=`D869=M
zK)j>y>kC6^T6d?oPm9Z`95<j+ZNNapVI53pa6VpAqg94g`d{xoG{2j00W~!Y_+?MH
z!hRzKOOXsSC=M^hr|K}hg<#T84wi$FY)9~oEr!(0QuF$PAVU#%tg~moU#fIkM~X|$
zShGkbvXFeW_JFB5Y4XzZ9%o&6!M!21x^9o#N%TsW>i_w_=LnO=EV1-edp$=VSVuh)
zE=HQC1X6(ybfC8480fPCU;tgalCV5iJ<C1l_R_XM=#WI!gcuYPC_f_3FYreOQ<e9u
z^CA$F-#*JjOTNq|vIW6Wi-?JoRglxFu}ms_FtKb5Wp|ZH;`AxW8A&jdh{uz>2siR4
z4T*thm6n-W!y|0`QdRv#JncT23uYVy9_lQ@bdK`Tz&+}x%THX~k(w99|9sQ`9zU3t
zL!H51oiXni($(G)<duccIFsU=frF8x_Con1dxJ%VMEEwDvHcNubcc5h=7MFy<vulA
zJ<{)LxcrypsQ{i9{q8kM`2PEgE@_TEl#@`pgsDVWMI6=US2yy6E}BpS*LxNU;;^1A
z4w%=FUVfzGMcXcMYmpXBT4Uq>Ew73Wjr7jm_)BsbX7GJvn-Pjy`}~w%T87e`xF@Az
zyo{zp+UpM{%!c!VrH*@_Inht9OL<AE6b<W_i1*3$@XG&xj$0k@4SJjcQDLLN0n!&q
z+#ONWe#pDXmiHp!QJ|;5z1-lqe4N#&#o|P_>ik&5J9pGVJ63!&;#lPl&wF)>3D)vW
zZGP&w#-(BG-)^(6TT~D`%E-B4Z;O^B=lrN9<x#CNSFMJ*Uk&(>;KJ3mp``o2I3^lv
zJY&Xa8R*wA$2w(y0vOR*myHC1dbdq_H8Z2+nIy@3rJx;)c=pP@^>iI4y65(NbE}fS
zghGD}jC@HZ=#hOb_K~%Ul#=%x!@?uj$@)XmB=RTrNSRSYMMct+_d}thRZu6HbflYx
z*QTXtLGhvde0W|wA<ZK{ivH&b={F}%L`OZ^7U}-5H@#O$?jQqkCT7kSk8#e>$*~>?
zK|=c;COOGhWdY6N1L4kQB4%?UThg#uC@NK_(`A!~n)udy;qCZ5OYD1^|NHvGa|X{D
z4Dq?sNx#PU&euVwf}OeUP3lPy#F2!8jpz|=2Jv4P+8=*uOU!67M6RL<bVM7gSxvkd
zPvA7OTK%I4I2Hr>@6LOw(A-P@7D6H=rpQUg+mMx&7349T6dz21T?>RpoXXVjQYy$a
zF`*$R%NXPG<<-hw9`sGW0~Y+<3rS37rtI6?caRMLWm^pR``NG~1_vct?tiD30`u>#
z21%nQ0FhLB#>W-paiEXDwO<gw2Y5?!-{^-dkI<+TNPK{ewFnsU*7A7Lx<8RCoMp%M
z&5G35&I4fGDXOZXzbUd3l9T6)Xjc->7mIKwMuy<A7=6EtWtb`P0)Anu4xa+I<AyaQ
zpVfc<D!VqtyNDT?b8A}CLc?O2`Xe1xWzjw2qlhdw@1ZuOjCh`&3)%kXL?MR&^lRbQ
z`c6}R^hEUOyADG$={2>3^u=VdHeFD7;OG3lk;G(V$hfSzQ3BAOR8OE7F8U@6>DCPT
zg5eDwSG*z=n$K`!Ji;G{>G?p}DU`=`n>X^wA*Cy2D^OgFk}7smP}l`HlcT!;nWP-x
zTQjf21w|o*3i$@e$fmFMr$=9afGJ(n2%OUbkgHJ~15R7%mJNT{5pU^d5Id`lF2A5a
zs%!C2L=B@^yvt}F*R$%=z!crL2*`W3%ggHN?%Z2nQc@BjmPujF8~Q3|l*kq^$xQ*`
zD;Y2AwsWzEQ5)~+F9*M?B$WG$xn({0vpDSXSgJkG`!J7#1{ZV>SJwu@=k)$u`g;;k
z0s*nuVPcU?aXuzssgqbd4@j>k{kkDJV;ZBcNa6Uh|Lf6GPYzCyc?&Ljj>wTXn^>ed
z2>=MZ^V57*HnUwgwBKS7O$@&`AL&e|k56$-Ma2gbJ(neB&?nkv!<!BU#^a0ud=x`j
zW9&q$EOBG4PFtnDC}79e`+$o@U<m?B&Qa@-W>yPlA$3p_#WD0XrQm$==%SI4k(RzL
z3Jg}memH&<Lq$bo0Bsp8B_)-C=RdmqQ@}+N9mE4}`LR+Hnob7U6axIDc^e@tDyj%D
za818axM0Z5k^gyyA;EwmS7_>uR^{i8gy=P#KRT10ii$oAh7)m#&4}2WvIUFM#4@3M
zW2^k14<kCicNm1U7M^5cJL}s);iZ-X1T@->L1j`>)OpQ;dTNn52etNLQc?v6VK8N-
z6?q|hTycgfLOiPYTg`amAHJx~D~NW;hZX}fGbnh7{SpCc<cPO{0g0-bni9lrgUhMz
zbOjJ*#ebv-(((SLZ-*=8^k%^3;p1C70_4uAbJcn_TWFY=s2Dx5m=_}63nbNm7;dh2
zl0Qs9OKby>S{LLB2RHtrF<%8GQeb_pK8gz29V=s|dAJbl)IgSjiXOu<>ZZA=D)M^e
zjNDec@0$bz4g=FyC;`FqF24usU&=~Kc!{h2{{HU0{5;EnJ-S}kst3zW4A)1C@qk^l
z#@1-@GlA=v|MyUfR+rNvaYC;ITlsVr6FFYCe!zRldCzw>A$;{a-G*zR7M03|vl>7y
zbOH8HLv88&^%p=L*Hk(5-F$lC&QWw;ShNe#uf}j7&2Z#U%IGRU4DrvS(62G{-75wB
zlz|91D$aRaM=nd8n^`vEdG;;s{Uc6m((m<N)z}&<=lnUTKiBww9te<rQ!6@X*r>8h
zW|`E?^hwNeSwf=2b4pt|cwBeaN(c5cSY@SUc?VO>Yii0ymT>6RYZ96L(TwLx(b)2;
zp4NxY@~J$V=1AdpL`?pln*oT5W{m;F4<{^%5P81)f>4)Hws|b|uWzPIyUq6qRTJK4
z0fZ^G1q0pu+UWi>P~8UF+IX3s7e7_{u0tau+3tbfTO?q_I;j^2PLIa0cZ2QhE4Bfp
z1pSQt9Q_TNj{-SmMug~|cUt2^Vud$O-O}pqxnyFH@T-d8To|C^JeP2r+aF`vdXG=g
z)wMT^dG?}khnUc?71b<Kkr?g9?U#YfTj<X9)9G5fEF%WYy4x;(HPvryM9Q{{8<`xx
zV04feu-En1N1xyZgi-3Y-1Ef@Pu8lxtabqa?d`uR+H;1v&R<5V5sOR{nK&D?g7uS<
zM8Mj}Mx<9WQpyNi(;V1Vwi-xS%+3e;)atOR{~n6@MMZZVh+cB3kZ!jaD=m(-qot?H
zDSB;{Iu0X9?X8EK)6h_VBu!i%lH=5fWul?>BgtDJchYA<|DgNxd|IY$$e*Na!NqsO
z8d*g2L#^<q8bJ5=#SRB{1{RaP03e=XL5PAN8V$6y@%S%&En(>P$_;cmoE!aMFZ>Ku
z<q{tkhc|_ZhAk~EE$gjd*2}5rp77)ZB>ZgP-hgB|o+`$F0(Pnj1$$YO0pb&(cb#5E
z+2{151GTrc<VQj3Ymx&3_I?5|D#J~-|AgixG1#=8$PxT~55?f&%Rv~yCSqhs#ouiF
zRj{1_Ns(!xZS~id8>-b;tA%fVfLio43gyPIO@jrHF6VP~Sg&$j9xY`EZDipY$zMgP
zdjb3u0G@WsexE1XD18z%^h25tpflukcMEB@I$QA?D^%BS;?TyiUkEP)loL^aGFT66
zEQ)!(i>^8pm2+SCrS&-aStjo@{4ap7HX%KoRu#$(_Ul6|sW^&mGjQK1w?CcP!#-gB
z+AgdDoM`jm+vx8sW9WH#Gu5iUK$v>#S2WP2yg)asG0UB|+X3aT(X46zQU{CevS0s<
zF9mF&R9FO&PYNttagl!vMLbmpt@nf(eHG&o?kZ$`O!_@SIw}?#@nf^1^v_NEpM^UB
zm)pp9R<HM||0`?juM&MBk{iSi8kTFOksIn7xr0=Vr`rr0={+v=G;z*Mi^$Hv5S=tD
zw0MH!zQf||n?#4XPbR4lKOav4A%Q+PwIUqsI<OAdHs74$isv<#0z8+bXr21B)(ADG
zv_t%H(bnjGjY02LETaf`msDWGX93Ss9x-!cgS)vGC@Ips4^Cm`Wnk#H(^8gF&s`L$
ztSeM0&N;o@vf+_OXhMx2lr9SA?9nM+&wne=VS*}@1TC=++8MY?ZpVrf<le6P==qOe
z?A!v(te;2Y>Fm*OE|$(q0Qq0=hW1KGO8O$<Y>y(+PnqTFzvj9P4{bixNL)*NV(1zR
zE>iYpK-jqjRQZpI;U=t#M&Q_1zeiH#zQg}I7BT<4yO$qbbXe6IC4f~2FSTZC0`J-T
zripL47@{2|9&`c(<uw`hjX>B^ObkM@@he%+S=*&2ll|d68T;pO#E_82<As`lH>S}X
zX@y_R-Q9L{dWnCJBxUAK+l=qa9pK^EH*$JYx0`@%e8C;+*pA|cVz_l(G%L;&Qvh}9
z!~<d9lW4O4HRS#?ja%)FbKC*|0c8114*_o9Nit=KfvY|kxCl@A@_ROMs!*ZaRjZF3
zZyo^njuSqBoM|J=ohCeZjg#%X_-0((2dZ&)51_k@VuCbpV9mqt(oNGXx5poWu_1Mi
z&)4(ZULYj-8$ph?u&={<FSTn}p!=Bg3!Am8!@ku0Yk|<HPgP7Y+JxSB`qgA|DcZ@>
zNgtSuxhX5~v9s4bFX5kWnw$=%otORhvlR{^4|3a^R_tM&4rYFq(WPQ80lr28j}Znu
z$R9J<^F3a-tGmhS>m6R1_ZEPn!x88aK4i|nU44JQHcWA$X1;A1z`rp1#S$jC5+;aZ
zDPxtFbA)8dUe=+#2Fj{FjlW9Hip=o;Gobj_>h0fB7AtJOEBexeq%<iF&(X0#)<Cf*
z7^8SBMV}H@|0C0}**L6Y=kL%V_9uV^gavk=h-8UOEMuT1(2!}I7V!f!OenJ1H>9XO
zayHSNN)lgDZM%Vxn((jQ4L898A_doL-ej%h20e&d@Sg$;XBHHAc#DDHe_bA2j$;#?
zYdeDFNg_f36#T~<tb-MxOYnad*+=qo)$jd?wDWS))QMf#2&LOq2QR{dL?M`C9tCYT
z^4u20Qvk<qMyK$CqBq8#(9{cE|8)v~X^Wzbm=Ep5y7l;Da6$-UGxqybgruSI<~oz{
zkB=9S47dV6k=|brN@N>M@x_1(#*6^+DCMy?JknKi=Tje59Je1pgr5gYDA0kzNH1-0
zWc@%umc2qI)(deD&j9oNr#1(qP?l_la0=GhJzxm697<%g48W$najm;0*Nf?z5c?tB
zT{Aj1_OU>#8Z(-VFX85-<I#GYPxN&IqU3i<1p80DsV%IXDYNOK*+bZj!})4L-s>6V
z_YRWN3u;5}*7gwDb5*ADUwz}}vAUbzZQcMDm*hR~W&Wp4L{<RIu-g(JPjy(7Zp|FX
z5A9$BroR~#Z0IqvrLlxz`5LHnT3*!>=KcD(?h)lta-R(h=F1wN`7yI-A(Q`X5Lb+M
z_{UxGw-av(0d$N#I|NEt8{BX5$q-%aGCC1wR9fZ9Lt8~8q9w_iTc?=qf38;Km_dEc
z#kEe)mGBq+f&?=Q9H&IC;5i$hN-%IDYXGMfB0IInQW*-3&fOoO(knQRC0OAg6*091
zeXKQIYQDqbraa8EH}#{cS!KjqP>l`#P`ibxyVTVV0^`!G?mGz1j6Nvd?6WZB53h<B
z<|(A%4&)MhsU}%WB6Kn2xhYU22r6)bji8^Zso!4<wF!W#_sKHFFbMWO&Q^OH4}pLv
zg*@eTQQfn$+eijuTIDcPS?M&}5_?@uivK3ZtXD-lM1mBd`o5b-pkM=rKolW33cqXn
z!KruneF^u{(Z>?)ZeRSN$Aj`}Q(($V5E_&}PKYW|T-ZfEx0jk)612aTcF9`qv+XM!
z_siWjd?@lG7UJM5U<+a~YI%c5&}kzFj0B$(UxS6h2l7bXZUi8v)!QC=0zkXBTnk=~
zNHT1TU@OR@;++NYt|0MQygVP%HU^E$9%_UGQlBs4&<&0cQBHSG#~t89KvJQX=Q$Ud
zMz~@d%urAOr_aSY2w(yi=FKsODU_g+1Zaqb{Z=f4o_BnKH4}K!a&jLhb93$i=_yvz
z(v(^R%N5}RauCNJYKf))w+MHTe1JMS-~1hT=h3n}Pk#PX2av++q^ED#6{>2`d>|U1
z0<yZ%`=kd{8DL%6L|B#hhUK=Wkou8^G!r=)yq4rg<&BKUECFhE5vRt{QkE*w7zKR=
z#IJr&a3qXJw#{cBAr1-u<)lLMgEIY)w(HWI6tqSXoI>Ypac7A(d&d2lLmgGIQlwuD
zc^2w_KBVfIz+qru0Gmd1PMe?T;$}}UYWD_?>{||(7W@ult!4wJ$Ka#(*D@zOaPy(?
zQu|l2B*rio997krLs$nP$G^31Y`_JiTCV4`%mBBb95~YVjVz2n;TX4^BC3P0a%A%e
zAv{7$eo|~uRtA5J%8Q4M!+_E^?2lj)Vc}e#z^F1hH!BMjYK*~{<YQ>+AFTfFCXFw^
zg*MwfujjKmUP&*Jtw0%gK`fzf%S%TyNJQ>82xU)d>#MZ#W&;$)NKA&$S!uQ-9p49m
zBjZJaF60NoYPl{<81FqwDi;3)D3a{t+)*N<@9^LXSRn~-C?&X5!~rZ=)9uceYX;#R
zVg4TY`wUJ8+of?;c5Q0uyC8U6I5Q*>1|)8MBCRbqz7<0VnsA|7Flf}2@P}Wu#={Xf
zzu#<2IE<ft?{)0}I?xnw%u*^--V!2V<?>Jmor6~ho&@-X;L^mNzYUo`+6QtV=a4F*
zWKf$KHeTM<?^zjxvMYk?u=k^K_JBnh=Lk6{xz9IX;VsN$QtPMDR$Lb8hox^8$V)ry
z=L_b8+_b;g`6-u?v}9)ewsJ~rVf-{h7N_WuIGJp=Gz0ub!Vf2g(=<)0zr)OX<lGOJ
ze}Gs1M<DLk6Y!3INm&Ff9_{-bRSfz$B6H-E<tXAyueTRmO-)cDHmNy@pohvof8xJ{
zZ}LzAbUR-$bs4R%v%DY7^5IBf<Bm)5HPuCP=!nh$2KF2hg#soOM(ID|M*nvb4j)4m
zyRB-IVtRKn<}tvTnUH2hu4TL51l}!sdErn-WddZ}q04hku7dA^lEDbP?>60My#U*N
zL@kHhl`*-%@>|Xc`V%q8Q-C5q86H5t8HPkTd*1Rv844LBH~=-9E1%a}AA1R)NZ@>P
zjK6a#Y5)$Rx+3WV1QiIOlXA3Su~2oFO^;rKF~rU&b%<MJ4|s$zSo+Rswh`zhN@2VJ
zKMMhPliwirWrn^=<tO{~LN^Ut2h^5m0HhTo_B}c%3j?8x1j7t4WDM6;+a7q7l^wdJ
zcbMC{6jj4^2vs?&@9o#hRLf-;6YvFvz6$axtq=&0PE#<YK|MkCD#V;<PNgmL=g#3e
z<V5Irz)9e~QSBDl7*;tU=j0p?Ey-tf{$)dpL#Z$cB4>zxp;Ka`r56*ceIn69=U*1A
zMBWkYu{TmORFzGnVa9R1ivCNg_P3DZ?>qe%3Z$8Z$8iryP!<waK*6M!g!U%)Gb$>o
zA%<OUP{3EVP{>)h-qMm1#!CD}?sSBNgh@p(k2J?iHLIeFA)3o&<gGqiO$`;JKs{Gu
zRW|azzNtI!RkP=l=lbHDg`My_N`lGktkl;`$>glKy%}nzk3mvHv=WV~8RBT2k>T5b
zf+p=Q6LtF@UOSJaAHJ{&vpRP~PEtilP5;8vD%WNc>3T`eaj^F^D{X6Lc&sUHJIDK%
z3=WbE$$1b%uwnX-YoQKwPl97n4c2*M@s4pi!{R`Wc!IARJX^$_`=pR5?wd{QKL)I;
z3xvN<@$DdEj(T<7<FS294!|5bnj>G_=wz!lJ0Xot)^tVo<(By57(5kS))I)RH~L41
z%<m>jAm`D)(jVTbx!)21Nd*mpLx}U#31(WJZ}kP$Hv`1=%ZfP-g5ymd6~sv~teZDo
z?6~>%C-nEK(oL&?H6swy=?sq>n6BV}0}hP-XdT6$J;kzXlPC@WXP-9k3vu_GS`rZ`
z$%QnJ-&qIBV2f-g=>Y!9DoW6{H(X-RCPp<k$Ta?jOtE=j2<Xd_TciP2**cq3-zVrT
z>VA7Mu^_LZ#erL>>W3|l_YyI8V}5*yvjSLwOFTz!pcgxq7ogaPGqUlU6Ai3U*GeEu
zp$aXatSCA6RsXJo&7c<w)DD?Gq3_Kf+3Ky8@ZESAW7}ZqR0InVSc;of>>b%#sW|hj
zGor^9S|M2{zdtsOom{zB{8NE&3<k0-h659Er*dgCulR&Z$4@AjS<})ImR*@LGPrBb
zG4dp~%$J6)O?UngZY_?6jt-s%tochf;^PH|l0vE}$sbF42?=yHE^lwox~53%5K(O^
zuDzpg_@jzwr4+aDXU%br13X;GbQo8jU;D1+Cad#12T@}oxgD8#`=8y|yfU=rb{ut)
z>rhC{EQ@Ri9$Y=J<6%c=Ij-|=q@walR}WwBzSDHZVI0#{W9osS`Sl}V#o@?uQctR=
zd=kEN3H%s^ODjD-FHRKInUXa(use1>y!xxYu30X!!24(p8oSRyi$7}_hSq$q$Lfcd
ziDhP*IkhfS#tdy1*MKNvY{cH^Xd%ccrLGyb)B;dq(VtQICK0&Kd-kIn8$+U|PY4Br
z7&+=I>4y}<S3sCs1Ssm`L<M4y1f|fpy^fG*XlRRd%`$96$*uH(*<P+*%q<GoHY};{
zLe2un3$K1XXop3I7J<KLJ3VorMsYMsy6O_QJ}-472VD=cF4u6bj%YQZYk%ziI>>Rj
zz@*|@GJ-@UPrw%Q@pQD9W6Wnd%QL=m=eCJcFJ-%~ACc{vW}Azc@FymvVkgT0JkzyM
zX0r9FERnTAIN?CdX~7GxtVjHo0acohxcgZ^wQR?(4BnTi=;P(gsd!YG%!2lk<c)1$
zKXJP&*i3f_Yg@Cu3M8i`d>*3SHQaDIDcCF`kZwG>>RCst^3j9``Ow&7OkPo28waGk
zRcf?ae|9WQ384fE$A?$Se01$r^c7$OrL}m{{R$u(I2ALNJG{8tfo{SZHm^Cpq1;d_
z6QwMEUfV%7;Cg_IAOX|C0hsx%KoMx3C956SqGfonooBjdWOV#F7mWcVS56`Cl9`9r
z16$iG93J;$#F^P(P99YwP$cz-*#ah>nEB`IuzNi?UJ7OcNLj;`gdXEst4%!GJonIs
zF~H}r*mrkq2<JZ-avu6I=cEy&bB?hYF?iYF2QN2w`kV3o62uIpECmbkCdJIW{j6=*
z7%NyvsrSCWpKdG1n~2$eg6h4!IZ?pW9?;nU%S7O8`~Hj?<!<-~PbEJi1CPZzZ8_xk
z-1qPI7M}ldp5sD^oY~yD60bZF!FH3}oa6AKV%7X2dO6ecZpD9`eA-tCVs9^!%QWw}
z8^k4e2f{zKO-IlSVmf$+6w2;(Ruob&kPPkl=_?+`8iL{<_j67=$pjr!SWwZ!nsekf
zt{@Q!se~ASNJI|N)z%aGF8UH4Yx+tqj6zMy2N=f|uJ(quZeS!^D_xSCCBim6JfKnS
z!%}_ink|LYKJ+njl5++P!~@MIb@qDK@8XP$kl>6l2*TvdH(Q<*Mvoy8dMv4CKJQ2j
zKaQ(EbItpxh&qxpH@YUf41)HbwOhT5E`_0pr;4q)Zsj0On}wP38Yf!5`<_RKge_jc
z6dOAL{`(_2^Lu^@gn5>qDI-{*f*3b^sEWgf{8jJQOPu3Ss(ya+je^iBVG<HF1`tEP
zT@Wn=4SEg8y-|NiXQ3c=I)&h}vZ9v-GExz%F+$h)N(L$r_B!h+LKpT9oZGSWeaj<~
z@IWCLy%(6ZU48)_`aCNFEiWy{8YmD?{TgfA=GJODjexU4*JC-r7>j(bcHS0Y%QVBz
z$(MA4k&xnU<Rn!jLV;bi{CzwIft){-;X2NfOpk{+-y7wXs9f%5T+Yy72c(XUhK~Jy
zi)RUzO?-!3ZOlp79f>`6i)sKx@4~4`eJj_q9+4)BNJ6S*MYFAd0Cp~@h=%lf*2)%Y
z<!z8)J6h>^Yj$&Yy#s0=6_Q+Fv+vi-pg|O8cR;i9_j(yP2-V9EbXti|lo_`E*#_7N
zBLZ1mz#y-E6aL3f0<#=H%PXyabx>c!?#N+UxVfsqi$L|YWLN=a(>g>gC&KY}2Jo}k
zR-jC<RTWlXOo%(JKzS*!Kbr8g8GV3-bB+uMkzSME_<Q_Ki|fHP28KIp!8DYEfWq=U
zBEeC`{FcXP0=2R!5My2eX85d}B7FLQp*)QoyYLGp0^2o<_Jt-YhVOSaxLmu0b=T22
zWm-87wuuPI$2Zr0hZvxOcN<IAVVYKlO={9Ae|{!3zd5m-unnQKOo_|Wp4lU=ma>+(
z+k6ebnjkYkyHyrF4i!Y&npL&0AtF`+n*r3ay!i+7!OqS?n=<6M_Q^<T`CU%5$Gtg$
ze98<cxn7TL4uh{vbd&hb2bi^k<NQ%_5#Scjfh}M5O?fYEwB?s<OfHh@V0Yv#TX~J#
z?Cu&zjAU(OJZdtRRPPN@FCv=r6?tKhCOi9^LH>fBOw~<RBw3L4-?fGakf0AT_8bbg
ziT8lNZt`e@9r00A<|)Vzf-KN57rpaq*LE+!AvWHEP$G6ainrNZ%)g1$Shu0JrKB^D
zWa)>?bLrGF*^=PUW*WXnR6vZ1{z@MM(?{@dhKovno~89|Cc}MeT9m?CM@BEKv-7c#
z?0O~b#-7vQ(B+urI*$3+Q?c{jqA~3PnQ$m1HUmQ|2GxpNUxYuOo?72FGV+QDM{2F(
z#+pg7fZ*gts%8AUc80K9obE+GhFdOyc`zo(azjB0DMT4EM%C%}T>^)Px9;p4YFR-A
z{vYcMl;mC9vSBpu7e0mee7{o+_kckeg}UwTsjRNV5CgWns{~e?-CyMzHo0&E>wn`w
z`MnkIp5uPZo&wEV%n2t}65&#wm`!YK^N4S6)rhd)*e|Ot>yv=C&T8x#sNJx_>}Db3
zLiI``z11c|V}U9t8un(M=E`XnP&fJQwyKs1H?OhS=EjmM<7x7)=0gk(>0mvhXRvKK
zQyOaJ6C_Pyo(kYO)Z@AwVcBoqj$&aj%jJLF^?4a+&O{JzID3Y6HKfDVs$gTEedE{-
zCWiR*B8w{!xm?{inB=srihK?YzCN|pD!I;Lvq%y)06)jrUM667b@o1nX^?dJlLgQ)
z->qXcD*tE6PXT<17*s}|wV|H{6Dne1PNW8f^tBiEc8c-x0^D2g_clTwUn-Mfkg&lB
zAU<=u{5=Vf3giF|BAY<YxvOviQ0!W`W+~wSs&+Y>xv(|{J{LbJ>&<6rwsrg8?Iuh8
zqnY)$#40V|oyvmRFZC2eG*Pg{mnrl7G{|2(o*EMpvdB=-AlNQt1h^;>X&S)WLm&kO
zikB5`Kc;jbp433>N%-z~g&Q?|1K-H6{j#~e4#mlaF~>*iyfU7L@1JhA8iHa>f?+w4
z-6WdR>nS&tqAUf;;GW2cY7T5x?<L#GiZU4vD9>x69cmNrYM)K-#e{SliK|u#@WLfK
zZrnI2jdQ$ocai0{Byj$<4S$OWLY3qNAW$6N`qOWTGo&xTz~Fj3wt|#$+REdkq@*l4
zShpL%k1}A^h6)$-Lj-RW2y#$3y{wgtr{Men6y;oQ(rYh&B|9-Jg|u!L6~LmI0KxYa
zkVz-gx9pK@r)g~Y6<`huVbj|Be0a|$%m7vjSacOUY%ChhrYRnP4D(A!_*oZZ&#)#^
z4s<fmKpQmz9K1UbokcrV@h-SHgn$46AqBr<;D-RmbuB>kaf1j(!!U0@W^;;>vO*!H
zc|W_D^id1Gws3gr>7NQ?pulz}#KDL5vop!R4JuktMk9i8{D#kE>aGy$v?}0Aqd1tr
zGu4WOoIp)UNl8ZMtm_s4#c=M3w&{Fj1TsmWhMbSjeXxQ-T<Q7UZ-tF)1(ATqbZZMS
zBqrPICUqV0VN4R}+Wl*1#FQD7J7w^0>OojGsu~&H&zAU`kqyLVe$iV5F5n^hPKrih
z&nz4^{1{!ivWeuK@$}Kr(R)ANN3#zJ+w8*4;{lbQ>WY4_y4P-#AZ4;eY(2;n3DfEo
zA8fUI!$*cl76j^>D5-AJ(=1<6W374b;z}K2D!#439AOe$pz1#fqz~3}sc%G|dFAT>
zt~9I_)FzXjG(3q20J<Mka1Rg$9@!wv9HRLiN{Gk&65b1CFHjd}Y*qa7^M&jtoVya}
z>cQCn05(!C>t0PF)lCr47vlU6vDw4sR6H+Rn4Pv;OTB!Q-~8}-e722=E653)W)%B>
z)lfl5G1uQ#`#hI_O881b7^1_-!=3XY5zS?}+M*hlLYH;^=Bd2tBh_vmfC))a7!S~K
z`;}P#`G>!ILEYO~RCE$j2XxUa5z={q&ViT{vOk+`6Fq}zu8_td1TvbDu!fu4_r;)X
zL=mfv1KjW<fcH+Q0}Nceu7yZ-23Y14PeHiWjL)IhUuKYDFZQI7l=z>olsoI+aKO;p
zj4}GMIP=ngx=zq*Qa4{Ljkc<pL}4nYr$^BS4WaF<!m>3q7-t&-Qya-~H7yNk4GnA&
z=uJe#9RTC>B$k_O5Yc3N{<*Sp*pN2X#m`23F?%e`7vhnC&`+L?i0Oj=3uCRgnPH;p
z)5<E2lX)cbQIpEqTyR@EiSc%L0220bGe<Q0ryV-_5{?!^B;*0#5PYBufKN10=kYNT
zmop(u8ey{I3C!`Tcan!mWGb()eDAV4c>)kA?}g}t-4Cm>dDXdcdNq`sh@-T+{ge!K
zoVkmgDHs1(=(H~*+DBgRHBazxb@^3A18pJEicDT;zybT&-d(BKXdQDXPPnk%!G$2X
zVZ`#-{^<EchedX2W-OD6i8xAXc<6hDfo6?6DV^qfCzb57kW31C`lSA79I=3h+aff2
zhNw<5{0~&Dzdq=81lhYBHReAalOCUoM;CXrdwjD9bzK^>>-<#fuduGz<5l&WKkF5q
zK||%Cum^-<IiE5rFGF{gnwB&YovqAtpsM|f&9H^7N&gm&x7BzuC6>>g?P96T36f50
zwvAmdwu(;kix3&Sd^pnqP4?-B{D?a$zNjJ~do1<W`>>*^A?ff*r;?b#9QtU?-N+s8
zS}K%zA9kpmx~U|rV^LWySR2MV(~#6m=1YX10quZaxp7mUsOW^Ej-jkAL3tb9y1KZL
zAjg;ueMKIa@hmF^Y0!hq&8!pb{Pl7>&->wLOv07>=q=WE<-Af0lGeHHkJh{Ho&&~5
z^rif|t7fefVv{j5rUyxAqB>h7r740-s@k%8NA#Dp>b8kjldj}`bn(+YzpAWou>!2L
zAsL2Cj<d70bzuyfZWYk2HXHLZtJp9)ciQ9bgR!hl5arah6@?F*BSbTb$SXOwyQ+de
zhv_~>3}~Y1l?PxOMhvU;V?95yMUz+8*po#EyAmKWC;2`i^I$MhOf+EyUviAs(!4VH
zonWP74{!VG)c1-jQD+ZuX!LJ?J|$kqZE(gnUMEPGzNDeb9&jflkS1-e;>C7|2v)uC
zuv<`gmGIWp@;DmVwLm#G9eg_Iy$)v1TYm4nnJmz9ci<Xx2v^t|1Z5Dw!DnlSTeaVR
zuq`*8VK~BFLfdb}irE=oUD*IhbEoW+Wh&Qk(%kF~>A;DFjz!p`WH{oKnTjOZ>PjHs
zMteIy%6)R>ox<*bN7g5jQWJbW6<Tc;VH2UOoqcjYr9&U}%iYWp!M+&Yc@4K~9_4o&
zYX^qmohI$(Jy~^q7~>1rs1_A>z`%H{&h`k0Q2OM@i1t}euZqp{-4?RUgQ)SaLag}-
z;iVuIY)Yd6C6x7G-|a6Qh#T&BgWLFqu88BQ>qqo9->OoE2QIvzw-Il-nkDr{z@<j`
zSK~>br3%*VJbJ8Bg2haF?XeYqdk1bm^AM;VR~Mjz^y~4TAV$pB-$6+k<b;`@3gR}8
z={gj&j{QiWb}Q%=n=!z(I_Xic=(`k@UU4XtXY9P7^Rvws$*vF5f9cWaY6yD7=|BF`
z@3NT%<4u3jnJnRjgn3JFWo(I-`UrJ08xFSOVrN6x{Tw2>7p_zB`EUs1QW#-AH*WaR
zUVXKlJBa&i&$?rmlm|EQ+-=>}rdj^z5#|8zh(+?-rQgPt*Gl(j>IZ9Y!sTi!HE>N(
z5GrQ2qM<*Ut|I+!C3*6)T(?G4@H`es<=+*YMUB+)K4PseW4)*^Ai5R9sfdc6o!cXu
zKW=>_$)&Smm1i_GDf8a^4FbWU8|Bp<d2jNndPH#Q3S~h~Tx)N^sMhm-+|0&KpkX}b
z?Xd!qi+JFs;S#|8nQGE+0YbGMKm=lKkz`rvzp>5JphUZXM)w$A0M>gY5;!vMn7AAq
zsKg84UP<0KSsWIy^>{iTh{QFg8WRk)1I9E^&;iCtmbMzUc>z8MXr%u~*jYx!(QWHG
zc;htgH16*1?h@QJXprEN;O+!>2^!ojxO;GScZUGEoo(OVcb{|b82zILQr)$BtyQz;
zeCPApLjK9<e*kyg?n9ALtt#~@a)jBjRIo?n`F>zO1&i$vNl6M}xIm3y^xe<Q-gGK`
ztKJ?#O_A)NjE^NS`7vN7B-)?q)wgU%cci^`FjX?6R#eIx99)gRZ9S{2s2C3*g?;`F
zuB0E97H5;ivF3GpfMM&r4vW(%VFXO#yx{VFzLRQpVxpObT3#x`jLl@W;871EGsm5n
z=cA!zqMDJ%7K{t=!6x=ASVYNzYo-8YL|VSxo<houhR52u+4<rRN6fMStAQ$N3f)~p
z$&lnF4h=XH%VKSe#{n!g?{B8JQLdUG!h)&;7~s`z4cylxUG~RVZz6Bu2l!-)SvF%m
zhsFuw+CP>5mA_+*{i0L58SKCl4QoAJ;d!HrOyVCkXp1w4Nz^?#!wJ}WO|DWqNm9|!
z*u~tv(~OkKCr2+lvk%ONK>8@bdB0PXrSt&SPegQGcE4J`9GcvfxsTKjbL@w8CuOCb
zXJ+vF(h<=y78KDh@R}^*4NDBxS!Ii;z69%5xPTknx}n>h6!3kHqESCQ9k-I;Q7CCj
z(Y>0_d%n2kU&yxwxgTYUfoNk0IFrtsA5{JL%N>C4w=;Y9qKUUIo+0}B#%?u^7mBH)
zac6RfKcBmXJ2cW<gwQkJBKC?FCs9xtyA_3-Nl(30B~N+hFqGg>H^@`By3Mz=gH)v<
z<@dZ|aQVJ8?w%Kd8}-sSB2&J96ZCxYJE~*<d3cRDSy<Qy{ljq<3wnqdo2kfMDD%R7
zLI_vL{GB4<&Mye4t+hIKex!I{P?cHhFBTY`ouu_Ex1Y$<h!n}68R)MmSWHxZtwMx{
ze4>D_F^=(xJ;#>*ZJ;HVk@^m#ImSSP_Fe>~OYyS1NHV0E^q{80QH9Ju49?rW;5Whe
zPp<)jv~385+;>L+b86POnHbaUvBdI7YyKQ}0vTFi{LBx4uzOxKSSnW1^PN>T$h4oM
zB5yq3l>@|kl6XKTw<i83g`b^#!%2@eGo#D<`niJP1p}IbsM+x>^x{ABJ2}ujjMgyC
zkXI88P!OT<<>(uj0<aTe?c#rAFu-3UhIzm6OGawD4Eh_u$6>=@pt1W22rN|@O<TsT
z5bNnEsKC`D@A$X8hkbxhcoq>}+$Rr|m?o$9VN!5JflkvAM@MFzjmhW@N*fli6kgRl
zmL{y(F-DR#KxJv!Yd@7B4s{Jg`vuDRa(M$ETWpLJ#7Zj;NJrj-I;9k<Y<MkttFhYc
z%jir|nFU%uI|&*sseE1~C3b9Bp|oCLfk&1ocO<AZ8zV1Cu?NBVKO&iK$@}=W3=6rf
z?w<xm2?YPb53$8vNWxu47Mo$A`UIzzkK{&}>wAE#z+t92GP->&lF9eYn?bOtu@CL*
zUS@~=IU$9$c-liHVY0c*N<zxgH6x@8<37gNB<OeRS)t*Tg6ZuKY+y09KMhGQ#q<X+
z-mXRdB4vS2*eARpGh`s1@*&>ft~6Ei&125Q14~9w<eNm=M|-9_imzK<9jO<*U0O&t
z1MvzmecFS#3<v%=4rJsb&0hw=<{ym~E}r6Pn{EP4M-ZLD%WfyBm=W&%gOB4|-e{MG
z>fTu_`q|hDX$ioA={xDd$MNwlO9~8DR&MVO0NUvyRQM&CR?e5zs9%PDI$s84CB+x1
zZeH<xArq?Y*{n<rUq-jZ#C@73cZ8yUHQ0;UWsVh!3nVrVXQv{@RCWAd9;UYvEBo9w
zaCyg>p3`B>6%Q;lPP<^;zY?$zhJ!gybQDO0<|kQf_91zwxvT}N$}Y@)HjMwRbW{%y
zZR#E6ehdVrh^Y?iNcpNl?s!Ed8bq9MPR9-{g7^Krf9(73CY>6$31n0sn~|?pZ9bp#
z*uUbQ*r^D<{ZR?XD1op%TULW>v*WO)zx_dEqTr#KOXxfV(y@ib|3TPVKZ73uYy*jU
z?D-uxzo;HVks{eRI!N-w-TFQM%z>5s;I;Qvs{{<c`Xl#M9|Y?<fI<#X@W4VkR?<O#
z<8ailbg}s)p2Z&ZOd8b2KJ6B;qzG9Q2rXEV7a$QHYfnS+_-?S*TIKSkm*maZ5f&cX
z)t%rN-=T+c0PcAo>~+UZ!5fETHJ)xE<n~0PhsjMz_=?0z6y*}9Q4G$-3ON(&wY;6N
zEDb(}czdGVh`jsMgco#hd)w+ND2sE<1>T`~F(?e`oBn8A>T+Jks`ylVBs}C7|I~)r
z=&oVY&~u^*xX}$o0+uRwMb{;b5Qe8Erv6PXG}Q{YyjY&owu>;89I(+eGJom^P%)Z9
zRHfq)qsi^y5)SyphS^Z@xS>Ju0zV3MgP1>-Gi{TO_^tH6_I?%%hz*0LlokMi?Y5VE
z;9J3@(s4a}L!)XwfZcM`1q9@K0op|hfjHcnca64_LdAE|wa5AP(k$^8tL#e7GEr?0
z=j?@&G;}>84gwcriL~V3BeTX%jojYwP{M&_AsLN!+!VvBS>6Cwe-kq2l_^nQB6M<0
z6>!s*vFQe%Zj&`V7UpxMef!cLm**&OD-6z}_d>IxNKvneU#?7@D*78nv63@&kuB4&
zJaJQjK39V}KlZ%uETpXS@_i5>W<&2MPw*QZCza1TfRX5W1}e3E#f%xh(cMR9F)5^0
z6LWo_`?*MwMLF$E8-J4t+PrfnlnJd3>-;(wn!8BVCmCck)+buR5+OQ%Cfr^Udv6@1
zKN7^2A;K0uOfF^`MD`U&7S_}M!<UylA-Jzpq|Kyu^HUV!HlhNoCHJqpVdmg=r%x&(
zbt}Bl;p89|&n3#hL_&0O7Dy9V`(Q|H877tzvvAQh)Dg4mtA0=c5{*eM%(?@A+AlGg
zC>m6W%8xDWf(<tQpdEv53i2lZI7$ksLcPJGWcHX6@*!N1P|!*M9-RNNBYZ5*E$IOK
za)ck2kKi{<YJw;{QdVp>QfN6Rv1XU1N4f#z<75^ZdqxW~Y|O<e=`cj}WJNo10cQTn
z(Ad+^Pc(=Y2zW&f6dpx(Ja%THL^^fC7+(17ael@np?aju$%BFbE0w}NZE5~~k@KF^
zOSZm#*C<p>D81!M)9bQ0T=_JW=o8{T*0^#L&~w(@WKI}yC0}0E9)52od4w$}QSqQ=
zDwWffa5KH%2Y#Co$&A202$BM6VV_d`QQDb`&Qr(b0JIAnX%9US0T?vHvM%_m1lN$h
zZgXadh$_oObzv1=SLpzO3wW4rCddY(pwW@VMB5Dtn;w!lbWzi>16D+}dc{iq7I*y)
zXN)vVfOA_t6hdHg&gR<}Te!mNWR_iT-i_j*zOd(!)D&J~SC@>ELz5W2$yW${))0wd
z47vi)J1?DT3pv9>^|5i44(LWUSeEQHW)YBLwHfLT$t3a&H4Un7fG1!95cY%7<inur
zOBBeA*o7)A&qGOsh$UIIm`3X=)hM_xYzg5N(q~GV1?{Jmi&0Y$XR)%FFBQC-kYm$I
zdxH+ahl{qIhJ&5@LJm1axuVLfHZ?D2{Ik*V0vGDcpV=9OuHg1kO33XZ$;Pu<;6{Pm
zg2saHZ&L3Z*0AbXjHkgG%L3;Qa~TTytJX6_y06J3;Xr>$#B=ro8@kaFk1Y&Kqc@IZ
z&F!N<N-<p&2!Ku)Cs#3I9@5p`gP|<_iip#x^C^#v`zT}66j-rzbcBL)Ug&fVR*fW+
ziLJ}=cPxVr%n6)LDv>%Lw-H;x&C~*dxezH}4Qh_%WcFEeL9mUfl2Xht3^Yv>9i;}6
zWEfbQiFUpUONPJt3Z`_7`$qgxP9$BgBKRTSrSM~vKy`v+^wW;v9FcGj?VO-CJ5~S0
zdhIsoylZe`(=9B*8D%k$1JHATq5QbP9e_vgCfqhiJOXVQiOqOT_)~=&ns+ktl+vt^
zUb&5NF{K%OeM)nC`A*8GL|QDEg`2y{(60pQ`2no6D+Yt|zvZ32PRQyYH$cFP;Qrx_
z3m5>&QJX14=_q7e9H6?fT@z||1uD<LIp&2Z2>7}|qMk3pBmEwZ#i3=zis+wqD6a@?
zGWz1b&qA#jpCB`+Ff%iUf)$`w>S@UCS)yLq;OhBC!-pp1<G55*W5<ni&dPDwe+YN~
zCX@IcAcD*s_N6KGt4ka%d0yub{q(>%2lMrn&PFR=RmP@1^pEjvJuK_5#|?I*9t3~9
zQQ1FY<Wb0Y??it;J+*^EAT|YY$8zV}^@>xA^rn#aHH538qk3*dVi5E2=SOE8CstjA
z+5Zx1Jlfr%#u)Oh{`~ffat8&!P_TryC)@aaZ?pnSdjJ;9ulpmDSzulQ07~cbK4;ug
z3$aGP2~F^IW~JV(7uyBpa|qH<UgT$wbl&w2cVWTH#m`wTGB@QJl^la0)^*Q~oeAF4
zFYkEM3|N^TpZP;)X@C>LC*}psVLJ;4K5~dZ^k|F6ux(;g<n?O?ej}R7vHcL_$y$@G
z-rjzD3G}nx#Q!ya!o<12jR`7>4uiHBsk6#7-o98%QAQPbHZs(>R}39gBvz(Y$U5A0
z{arBm6fauU9Oh)EHCqj{;Un!L^t>9rLQ9$E(7A8Q9@{l{OM<7x?7rwmLdv>oB>b{F
zswBkN(7PsIqs?m-=q+lf^}vC4nd=Ae&c;IPSgl^~ky8RmeJONVXbM&m(gqAdaw0tm
z_l-n?-gk)@w>xRnlDd<QeMfP<Im8ri6>WH{D_e|}fa$LsO-+J=>IO?-R&vQc(b0eG
z7IE~<`r08<*6I}mZgZeYea)IH5h1Pyd#hy;20+QcGCO+r=NePe+1@Oz?NP6sU|#w0
zfVxZcNzbJ#lA5~I456L2L*j=+C?K}S1S^`&&5-knG24tw7R**P^$g&l0rfEF8KON`
zwJQVPa7~ehL?)|`b;V(~50D$00~xL_ugO9|p`WOoKZl>#yX#FE$)GM0H(?@)rb5Vy
zhp~f9g&MwXd2wh+|I(+~dH2*jSE0$SiXi9jMq->9U~ah+Q~zW4>fMV8NLa`g^X&K;
z6fLW$LaaYTp@J(ztwIyzKl>0BEJ{LL2TCC2k5hSTEIj99g?~gH6464gA}`u({lZ4I
zS{mse2lvteC_^u<IaBnp7bQY6=Pt?OGzT4ueI4(VVm1k2!K5+)>6juxkl^Yg<xDR~
zBS6a@*lU*A4h>v2c<G)sJfot*%!ye4w$i5-_km2q9;xt0ayXi-prkd`-+qoeA^y2x
zN0p6`cWP8oVV(FBa&JkySx_stLRu4(m%?NWZh`$9sMZ8&{ng%oLtA3KI|?ceH@M<y
zeO^smEYWNExEv(fajce)?1qA1vEJ+Be*$OrR3$)-;G}qr6x`%P^#X6A-IG_s<3ETr
zrdj&+2Df}zKsv9AfW3Rncf+~(*XJEI!UV1`-;Z`>-fvB;U$!a3EKS*6jy2p4u3sS?
z2KsZy;3&0m&k^03%Y;c}R`(rX^a=wZPjQk@jDtjZfo0w$RrVmHfXl-o9v|cl{@~Oo
z@6<Q~N?#U>0G~+jg4DH~X0FeCBizbcFTeeEF7QVN)_ikp4zs=aCKdA~4hLYFg}%@r
zBD&`+?qHiiPpYw@<_U}q9^5K(Y!%Iq%WAMWWf@n(;$epzH0k&ViyHOhirBQ3H|2Dk
z?|DbZZ7Q0-ne7;x5y<7ptS@pMq(NU<yl}V+iRi9~ghZP<#wmmHufe@Brxc_YJKQij
zgz>NVR6QE(tgwjebMNO~1Ve|*+G8aPJ>L8<Bi4Mbl}qdMXMG|@B1+YLB8JbWJ(YtJ
zzJEId0YuiIf0#8ScYh~BV%nX>^uOST1lGuEsGq-f(2?=Q%)vYo8yY-he%P5)(dExR
zrw1o*2BqIQB!H=(mf1vFmHJ20Lq{LJhhBy?Glh5`wF~4Ji#0DlJ)cy8J&oeP%Pml}
z%N#6y*mr++J(&+Su&9=fC6=;BnS4`OcJU5CoaOR}4dk~%qf=$(?jEH#0B7&#MO>Vn
z$Gm6&sfQTc-9O8TL+O!hygIz@*zQ&vY_-bYLj~zX>4hD9(Fj*oe@0}AogU2Mb7c#X
zjvC#^eYSeM+_F^QwzA_aMyhJgn<X&AbcGegFcourUDZuaOSA4QJ~%j7AV(B$ABz02
zr0e?A`L6=Y7aDr{$PjzpkQuXDS|&FCoZ>POtKE$|(GTWYGYunAstU%?HPb=v6q}dd
z#=zODi{ddrsXIws;vv}CrBd27DkjElVn^Co0JQB-^zmggI(|lN!&HD+1ML3#7z3Ts
zxaS?vb#LIUApfv?=C0cw{vOe!&9*n6fqN=(fXGB9is$!u!k!<6RM2<Jxt>56p@kqF
zJnN9hFh}ixz5J)H?q|eX74w(V(f&J`D4CVuHO)wSb56;ov&Duc;&7l-Zph;)y~}Yt
zu2W@6s)3EeO$RM%LXo|+GT{!P(C=mM_Qx<vl^owzW75ylWxq8kC#b0U_$j1Hr2e!J
zFw-zN>pMu__&{!3>9KKOl!-iQpX@Vg_J7n~lLZH`(7OyeNy^Tp;?c&}z#%}jr@}iY
z`fmUB<|a+SY8;HdRanzBv<?yT0KV0t1`4(~xVPS2mJEqarPv*A##)3J;XN;al9_Ed
z2O!o=41IRa7!<MuzEUi9Yx`;94O~diQg=pG$OGd>x)qlblsWRBc?!*p$P%Wvdo#B`
zsBca8s+SKz%PsIIIS$OO)p+VBUg*<#5>&@28L465jFbN?q)(51UJR7GuL#J;sYCeB
zct9Uev9|u~oY*mu&-=ZNku(R686WeP!+e`ot{DX^gY{u>HpQ~V^_hDaZlM!(!L`0^
ze`s>E6?y~po<^*vWzs&1LZGB@Tw73Fgd>e#x5{T`??726G1ERzw2oaq|C5DYd+J&A
zQc+Fs2}$A}!gn({xT^}GE4eH*bRI(lH{B@$I6WSGps1^miqf5TeZsf^f0da!WN1Fp
zJEXmqDf{j*(Yy(7wjWxT#!lcK58)^$?r`ANed@BRzVu~3FRljO9^XxH&;|3rD8JsZ
zOw^F)TMS=?=vciXriXurqNzk?6W6Z;vtmRG5{l2Ia7l0A?ugxJ$3G{zxNg{#H0^7d
zWOVj(PqE!q8If3LS)I%yV}Pv?4Z=?JMvW22^Cq_$6n^fD9zP*C*@vX%*4Jy-hv*g9
zrD7!`d@yN`GfBkFdq-E<DcY5CK-o8Vli?d1pMvVhq(7f21m7@bd;sO%(u}i}rn%4m
z@D$^yudOT7hI;-Day?mVeqEmIL>SIJsL_VtZ%gchG60&4H6K~U3`xS2;{XZ`w4(m2
zp%R=yKqH3E#SU?$3H#_l`x0E7)EJMbFC$)xlH-_&3)O&@PoY90k;b@1=Lt68r25zl
z@sTbZ=qhQTQp{;P&k>Fp%CSXE?{S1c_xX<p$W9ewBJQ*w8X)g-DV;(pDbg<((QFf1
z^2fJ0+;|j<PB7^wm5)26FYNY^q=bme-Hz0r23xL!Rm!O&Z~eQhsf72IJ@6(Xg{&w6
zR~!$R{;wtt00|^eK|6>=#KJY0lupbaXc967;Qski)%q>M2+0DU{P+2V9t5({Qz$2O
zI|PiR6e-iT$#4m%Z;+sN4xTzw<WIpD3~2895;W2}heOKzQGR|$^lCej+47<8YCoF9
z*L$bhtp<Bt0a}6)dU(Vp+*2Fy)v*M#CpU>^zD>IEwAOp?oa0x1-SJRFgF?xn?l$?X
ziPyvFaU6`Op~M^DA~{ReD$7g2_w5cnVB5qjgh#OL*GT8}cHLoza%V19IX9XHa)zl2
ze;SV^v_+x2iJCcr<ly7Crl{EorE6T2@{&u&bazuqX<SGD+QOAahYd-n=X+;3^&G>s
zOqS-<`<_8f!=sd+KS{ax;635YhrwxFK2ealn?zuK?#ku_urLgl#f#y@1W38L%ta66
zW@g>U_Rt*w%9w16y*KTs?hNu9h)@DqWUc*}ux9{7aOJ6OujpmE(<_+>d^95?7=q!N
z9;GVmE@DZ_Uv+I*^9Z;lJ+D!<OyM!Ii`(wWgSBevwH01*w&E-Du6VE2cRvS%kOeXb
zSf#Q|T;Eh$wwJ#iA;MC4XfclMWkory%`3!<^2aqPH-H%_P-lF?-hm6^Y+^J?$Z58L
z%|2(f9fXS?rAOsgs{REM5AZ?MDpP@k3Wp6cQoRl2H*dz5Cd!L~1^3a08tzl!k)y0~
z2d0{~i9g7#;G2lWh3{qnSEUyWGHBL*mlShe1eH6;w@j|V))qHM1_v06&nG#35lTw_
za=B}f`dRdFKqJx*E>Dgjm6vAL^TOB@x$P>N<z}o!z-nSc=UjR=p|zz6q=j74@wM0f
z=9fZe;B)C5p?g9#(N1flY}*h|RsDGjG+nQ0vqLTl+{$JiO1LcwLi={eIu85okNZqs
z?x80KN1OVV;s6c=oC%gFR@Pr{q1BE_N0LJQf~pLZTmdNa*Z6@%-qCl%qUWf$k!zZ?
z!byydn758++^!YNF1_e(pU=3Wq)V$5Z$Awp-Z%65qTAsmFfBfb%zVyiR59$!DEZn@
zW~i!Q8nj)I{=cip|7shVB1S{QnE_!)vT&D%lttqg^cwV_Q&lN<d)q<7x#5zTDJVpV
zoA&9k{wYg*Jj(qE3KazB?Z|ch=y?7R)I1Ym4la|!>{aaRk=YhK=+D7@E^OT@9<$s$
zc0r$hFp?XWBhAwy%>(g*X00&z*=E$Ts4T3$@&596WBaL2L`J^Npw|#1g+lOQC~8Lv
znbJpuCd6xNg=C^w@pNW+R4DZqWi-Cf5L&!?LgHa)an1*!&_&5RXDW`)n`s|qobjQP
zQ@o!aZo|4=gXF6qd5{poXZ9C$gQZjrT&aO`vhE&}4z3c)G%EYI=jSoo?yJFTCf;~5
zh5YWJ3&9~;yrKL^g_2F-gZetVDK|O_x#&<=u@{=ohb=IwU5W@$Tf4HFJkL(w`K>8}
z`0(`=xh?%?pAb@gpu~MeZv&5&wWxF=M6H!)@hHbS8ixJF=)?$_?^xZJ9SISaP&_#`
zwa|nwA+E>-J1bE|avcdSVfoHGKMmSWIPnbl8>~+xY-0cF7^uvuIz=Sqo_eft!kFWb
zJy}18udO`yX^*j2BTIS_sf6&9wbRzECuQrgZ%oC(qmMg&Pnpf(Nipl3OA)ELv8|hU
z71qkZwce{}EEaesg!9hs>-elxSd=0j93K3A!%;>-A;S`JeWgxG`G^nRDIq2}>%-^U
z#T3hId8fRHMm4t`=m~oR((u?iUK`Ct;$h{Vk75L8bMjf@AaQPZV0F@p_pn)$wzx7D
zKOiC&IGDnXw$p2j1#Mt{_WvM@e#<pVR>qxz8+)>I+j%8*Rh@^>Ty>%{lH}Z8iGeoM
zpYKFo)?hrCT{23R5g_8LraCS$(0U>}f@EQf!R($gOCs)n-8dMBBP64xuV=*F!l9Bq
z4*x*Mu9Cw+ZB*6VJppIv=~`b6PT$-}*$}o-elMW|gJE_;h~=4mUK6a#5^(u-V{N_v
z3K9R+?D?OlfWt+AaX*}?Z9K5k^+R)F<^E?Nr?%dHgF(zY2X*KwWRu|*hlbXy9X4=3
zw{$p=E+P&eCy;FitP7N^vm9r0l8PZbLc;^X^+}iTn4U<g1<4g?>+0_GF@=}wf%`bg
zK_gLaf;)^4Q<2G)waT97AII-n9FoC)j8_ofb$+BN32uFmQ@V~v&h<&pN&{E@J-(50
zyzSH+oX|3g#b0(xXBQw&@TIj{7V(42SZ;d)CS#8Hqd_vwPH)F67HUaL*+RZ_(Y&T%
zOM``t-WNj4DWAWf5M9S7<%Olr7bWtd!ZzV1wHm*Fzm7OIH&t<0ouo@Cof%+bW=L+6
zXv=MPHB@v4r=uSrMUS`&g{SeBZgZdCem29V@+<<)=|0KXfUpNa_6*SN)a@eT3e)F$
zvSuuwKNFl~(Qz;nUGr?qGCY3|)xe$PNV?)5XWS-vKZ5Z}tFq{7aUN8>g^rHJHVGI<
zsvkwNAe5<jO72Ms;<TWLo)6g$up+OM%e_(`=%ZxSD^l+{wfB3MA5BEP=v(4pavBhY
z7(8U5a2~8yJX>j%a1oDoT)+}FE>hTUd@_Z9BoPg?=-#_be`gb{mXZv@Sm`67m9C^E
z3^gNM^z`@|>ddeuB8QY)xsb_AljMndw={$h4@%ETP87)(2(<<LQklwH=g-d8Rafw=
z==wmA<V>QiD`Ca9Rp~BQUx15XAzq@dbdE3mvHI8nL{^xk<?@i>!W`8Q=HB>RWMC=&
zAkS~;a_?k>ZmaY;z|K9UhziO5(9uGFC{gejUah)$q>{c{OAVaF6s)mFY3z;>bov=}
zed^5{(+|0}vg^a5=S}QPFUXyg<7=?ORD8zK^SvP?!<Vn{b^lgY2F7XI_#jYa)E@Q7
zO0gwKj$UrOxTGSLuiyIz<{a^IzUyCV+rKLdbrB(&Z3dRt%HBs;S=DQ1)f4_DM*qiD
zza#~nOwVaZ#)DXE39NU#W0b4et@mMT21PLD4lG-H(eT*W*fLqG!A&DpMs9R;bS1gD
zUs^vMnPTFLen3aZ35#(gLZ0Jcu6s|gv%TG({~?uZ$^?yP=sZu|_C555$#!mYj)M|Z
zN~QjwL*fE(7LZrV<2TDv7c0Ov(>kR<MbgQ2km#jzJ}E4NDs%;zh)Gr=+~%6i;TGg{
zfkZ~JYLqjuI}{wLRn6bPmjDHbVbT8q65A)Cxg2$$hq2<3kopCkglA@E_PG4e`E849
zdDM=3mVUvGqq44JyWxRF&xvk??91{Q`WbCTu365<b0L7_Hsn(s(Vm}!N=7;kz%>O~
z)_KT625zCu_L`o6vSqOksZAh58;(1P1+B1ea~|v1O_39A#IX*RwJ>roxxVx$FdU8y
z27rFJ5bN^#HH=_n((MKhkmHzutD52%1=Xh5jn1B)fMP~Mf+h#KW!4sdr`A?`VpD#&
zytTCq_tb=n(d|Vg4NSseg>Ayt1P%$Q^qdYjByZglCF||JDwr!ZZV7Y2qd@QMM?E-l
zBKjI?Y{ilQ3QhfIpLc!K2mF2Qmm|s(;2Isr=`9CQ|CUQh^s?K!x}T~g+c|FiSWJ^1
zhb8Z;LyE}>qjLs#itrMT)sMcmBsP6r%1OB&&CtwAoQOB-;$1%s=Q5R+iE`Yw)k?w(
z!)<1j<7!lGptPdXr&B1-FOcM$wDM#AjtdiT=Eae8;Uu`7>AhEHD-U2Ax9{yx4~uf+
zxesLgnWd~A3l2f<Gi^6U&z$YAbBTyYgjVw+Ilpz$T~#-nM6zm}rc0wqpL06YRwyRi
zdD+!LC&w#hRD<U-m+BLCg~Z<}m>*YdH8h_p<(m^V|Eu-TzYDMmR+IWGALISk4Cbi-
ze5nWcWiMT~5;qI0R<vm&#}G54_h7{9%<aOUJg%RxNDLevwtf>am>zwZUF3;D!$Cwu
zM2-iZm)Zvu>`s>^Dvu)%f_<jrjKLyTB6NSjU-$gy3BPVnrSfPHh>g{DS7A2NQ3278
zILIeI%k=^m{rhShb~JB9`&JxMEoO<F>>m!ZCG}j~({95n<^k^0)eVFj;Kw+gutY=6
z9;R|p^C0iT)YK1yd-Z*1BM1qGjrO5cc9|#12GY6r5i2T-n{U2{spNxvs`GY>3OT+l
zi@ZXs{Eg@;c3&FQRiR7`4Ylo1+l&ZxPnHNBD4JkI3;End@(bMV!I?EkRq_~k2`koN
z3x0Y<&Rr(l%CZiHRr<h1DvC6N<nkego$ZDr38^I2kv_3FIy?6?Lkn(7hAzfQX4>T}
zTq27Ri6653FJzvCi#D#Hv`TlNfn8G;@o*pl!XOWzY!igxPl0gvU1X;?V=tt=6uJOZ
zKJ%d#8O~Qiisn1AaxCjro@r=JYX8DWY80-t{p{L8wB<Si&<FYlpa2u6gr@{!TNmad
z%MJ^xd+sMV3;vbbG#WZfBQ5m#)$duMXkBZb=6dJF!9k2p0cn9^Sr3JFcA`B2>5M|S
zpSfd|Sc5hd$|u}>mf&;{DOOhV!T2Dm{1YiEjD6Bu?isFyhT2_%7{>DqeZd<^c|f;Y
zCn&|$0phxKZQoA;VNFZd0f)d*xXsN0(sKg*b>tH(c%YbfC*#rl80Z1d*#7xQDF1<E
z#Yg)JVnxA^J3qN8Bd{MMQ{cu1I;B6|q)NxB97i@TX<Du=CYq5g-L?KE4D$TJSwTBV
zaqb1Knm6AZ(G30peu6`Tib`_UGXA5OnYLw=|C*uy8C9r2cYX#`GqcovvDBPF%43aK
za7i=j?t@XmsR;mfGv6*$w^{E5v=)fegZr6^X~77QPxlsZ5s_jtL3{;qxK4gg*L&#E
zU_92=>FC5%o=`tG;l)amasU`(^GOCe`Md5#J>q#D0UIfh3sZW+KNSE8$q)kne!PaL
z?I!b3%Czx*NYipmp~|9*mo@ykPVZ<UE8%-w>l$)~%Q(c)=+AEo75v@arKb^mj18LW
zLl;QX_e9==l0!goI9&8X`UsarG$Gy&Z(K2InXE@7g4s#g1#CCB8s`k$)u~qG5uJP%
z?1~dZ_iRvoSXLjC6!?RvE;|j>)GoZEa_SQ4dG>PW73@VYWa-P{q?oo-{4z*VGSd=H
z04fnJMX{t$7d=wcpdWN;K`ur2nsc>fl*PbR8j86qiLROmsL_HZ&ES%pb24CTEE!F5
zSf?vg3o$T?s|liGrTQuDljyOibiQxk&adS1AWj4~&d5CbxUEUJQ;dqCxyrSE42~7Y
ziJFRH7l<x_4xYF?a<(A0o^cL4hFA+$Ja*?*?8e}RzAU6j%)|H0X+PL_vvKkiW){s1
zdU|TI;@<z(O`B~%S@|C9>S9p6*L~L1{B}NhlkJTH>EEVx<`L9p((+r*^Y6(YwMK75
zHb>RCH{Yh3o&wx~yDcu#YLnBJ!6O<fgg{3;hZPN#(C#Z09VC?yJ#YxKP>o5|(el$+
zAlhthR0P{D&Hvh#K_IC{OS`-fiBk7L5Ni^Nm5~Lw`NqIhB+8^{_Hbl~eSwd*@*RhV
zO7{UpmcLovz}McHdV+)|v5iypBMv-PS)xB+GQquMWnUnXLqn71MpXQ%vDoD?UP>ma
zq$vS+Mg79s;4gjh{}KeNK(7KMW*_GZk*sU@AU{dQpj*!~m)n+=@<EDmY76gqw13#^
zDBGTBAR=5jFBFv`<g!auKPfDv_|vlyy-Wt_4kmx}Yya>Qe813ICU`wW{s$qbv`iku
z)59Brc)Y4l@-!Tt%O4>ECvJQ*Pn6VV)?|$}i&WKe8Y+dXnvREqBd@L_i$)jDt?%g%
zonaqasdKxMV`QI%V-HEHuVD1)zH~y&^L#?k@5u2oQRiSr`Lho&nwWL5MYCo|$j(t1
zf5_pR3CPrL&9FEO(6sQifoV&1;SbpvPq&YVuY}pa`5fugYdJGk_~6ASvh$B*LH(N|
z7qnE8`|IhA;7<_R?r=*EGsgj`=dT-E=Av~l^8HHnfIM~6<MkBrP^(FQFQ}=B2(2=A
z5hl=f*v$4TvJ;Z&l(N(;Py*-NI{g`AhRYm85{^KqA8N=!Gfm?viywz9#h!NVrMcN^
z`XK>2gHeXO`2H%MMD+q^;TIrE#pJ~<bn+|PYKK@_4QX5IDCQg)nm<$1$P-1=tSrJ-
z!9&wijOb(YeVDm$!aEsK5Ode~oxRzKhA(Ac6E}&o22j~#hH5C7D+RKzP)|FLAx=+u
zmz;@4b%S<oCyFk2_hKEKpxD1X&^RBp7JMCrGP&_U`PILOSzt<gl;_YCvewX(%j2QT
zIKU&dwz<x^iao*ua5qR#*nnF()^{~xVTpgg<rAxUI9d0Lng_v7MIcaqqu1Jdaji7W
zZOaLG?j?%vZ%W+=2oxnkJXlV*XSxKwQ=Oy_rBp>ptjKc=MXltmS>Pg0FlbGJAM0I|
zth7HQZ)SPRamvD{;9Is%uS4yb3hy``T1;&Mw>BQXvyf<3M-KJv9OZs6tuWwaSSpz$
zGeVoM#LwQnJy<<+HPaYDwnRa2T@O6oMunrOMz<&0!s%l}YwW|S8?#kYwqqvFl+kkh
zjB1Xag8NMH%Irc>$v|2ym)Tnrj9!g9aJV`9ft}k7X>82;@s0c_y{$i0w|#+Id8gA=
za3j{PK|gM9)9V)>N|U0@VsmI#-wu|wiONe`$i<a|b43={BHNijdL7Bg;;(wQmjYK0
zH#9c#eTb;R<XUd7xp8qVRAo2AdJ)erUg)vE^acta*V^*x5&BhekGaXI*V9&7uUw{=
zUNOdbU!JP(@gyLFBqGg9R7Y{UUSFMwBRki>E^cj%G^`|9p(hca`k=j~+s6ErkNI!b
z&|kls$_KEh0)r$iUsRB>xzdW&F;vH20H=X%xT313;hX_DK{hsJd@;61U|iZCf*mr6
z&??9Ef3VUmEGYj7V*PyIq3>Ab_)3A>j~KdL&%o^;reV?V5J_rUTn_kxq~U*lCz}ES
zJ<jLckBYSn%=MWc4wEfpBJ=$K*V)>BlK!V)d{>p1blo!9s?1KHZFxF1K~Okp&V$gC
z7)lo7sz6|r$HW-MSaEIb2)E9hK|sC75?!bd4g8O1H#{Oir+Qw2*WFSMmuFV0nC8@~
zl9F2uMQHfz-WH>2*+C-f88XyiIEbPmi&N)yy_RzfDmD}nwlB5pKLO|8tDdKqzA4m?
zYnou@7t-cty+T-TVo^c)D*!S^BzS#RVSC6i*Lp0fT+%==0bx*V8<U>#MoFmlYW<bE
zkn|&xJb*wpjch}`?ZR%)I9!o05T2Gi80onj)Ciw=J`#ixa<izSOEBpbSu<mF&1*-*
z%iJ(x@JKuQb?Dq7NtBVWI{}*CUz3o^frxunVN>Ej?SLnA3NfGDYRh8R;<{L2bI7$*
z6CqPnjpj?BUVT&M`ntY!i71ibs$-bQY+qgXv_fVd+@7S%yB<iqFfXXK$E3boFZem3
zU9C}1_#}qHOXC4i8JLhb++Erd8I*0-kWMHFfZ0586%zaSlG*|ZDJG8dj9>*7odlb=
zLZAdgVRcsj7A0%Irgh@fsZ<vj%L+R1QI(&n>#g~%>VOwLa!H#TFzW)3vD%ldZ*YnR
zotKSpO$=CUj+rzOqm?PbS_QJMN+Tn=4>J`qGChG?IIm>hzA%3@GP=-Su#gFM+=fw5
zfyG0xu>}eGhn;4(iOAfMWx(;n1+!g<Hed!R`FsKHlaNlrV;e5Ohk1ae%m};VCe~uR
zdPW^lo#=sN!~^|R)Q^c{B)Xaso&s)SHQyD~`UQax_(@LdUs_osd_?QvP_`P~n}|*G
z^)VCC$dU0#7O?h-qJ+~TMHHHlAL7bGew~xzN<S_><PIF;E2OzSjjy4)o%*I|nPeM@
zRQI|%XAHW|thRDc3Y{aCKT5ufa=+~k_W3P|YD{c%D1@4D^<KfJubnm72)hdr>V2j6
zh??d!)^_eJjQQ<&#eI6>b{ozxZk%_6w?o{gt>r(ZTnku!lA!X=^#2Em<F9oIW-*~a
zYU8oL@EbC->M^8BTtXz_lk3=pdU}HR0#<Rc@Yb9#@gOe1?0f6(0GODS4;=GUtYV5+
zKYqV5i|S0<gZ)Rp@w)7zg~hPM<;D@iYR!J^xWl$zZJs6s6M?{~rA@R$8!R|gBa&Xc
z$Yoc=rMdaewQm7ErmZ)fgVy6AjFv#c0}<nT*{ER2{@b~HzNXW#z)x_95t$s#F?Q%X
zV13B#p?a0d8^mWwiWvuUtw|731Zmb~m?+wd<rRY0U6%50eVy;a4$SRZM1xXVvx6$r
za?6J!8!F*Sx9wK<eczTaLyuQqI$n+ALgs@L-~M#udXFc3YA+{QU&tA#*w+-H?BCHl
zmdj(@W9T?gs?J9vuFl#YZ6BbN=I`V>N<tamAvjO6(V{uXu7#k*?Y)ifk~S^%mift%
z)IeIdPvlknV4|f!L){esyc6paY4ug$@L%~*!~TnkM*=G@rG53Gr@tPJY_fV=o_I09
z@f|wC7!|97IpJGF{!mcc@0ZXO)a~e9<ZXXNm3KOa1m%@(UU8AcI^7FVMLt%=!Cr>q
zOds4?!f!XqBNVebh7#O#7DLn5d^fP3w*s$KtZ*;a2jo=BZ%!)3gT%jIh*CY~GO|d(
zu|i6N%n*2`o)MkI8jQgS+i!xfXP5h@H@}D#W8Pj`(bES<auRxot3Y#WKkBQAk0jWd
z4oqa34|Gl2mYl`glB(EQGgjMbG@n!^Oz2Z#%gn?N>;+B*I_?Y1MZ7Zmw7rdW@>CfT
zZI$v{svvIRDp9>xP1_ex+{GXD#uwT%kSLylYkmC(p?J(_<kJJ6h5B#eN+w!wP%Q~_
z$D6;gYDF%&;4HiUR=a3Hyb8<;49I%mx@tyeBC4*DjXEsG(U#TH;4Tte4DeyPL5ex^
zgRVS0iA~!*wh-IC<~u-1v_c8u=Ey$#WVp~vuYmtM=tA<o10!gLJ1w`dDVc_rXVEjb
z7M1XPr}HgBwo8q=-k?%2(;Y)sv`5N7)Da`m8|^$8x60I&l>!=^&`P0gCc~)`IAh_j
zOu|21^#0%(@A6sN&^hbN7|~&R5}Wu^XZ;&m#|ZNWzyR(;0PAu@?O9E9t>eXSxDA)R
zrFYhaB=NB3ALCv-PA!;FCuK~XtKJd@`>%aFJ$nXluk13{4#qr($FLR<xZ1}5uI@`I
zAN==4_&-=U{Nrvq)d&oW3ZrsjHt0Q3<5V!NFhM~(;Yg3rstbD$-Ii%-AZ6IRX%D8U
zcFZ#@yU`Pr5&<N^dWHPkTQG$@vH<M0xcuYu4{HBu`tqP4=;P@ExIis&@B7m{Fw3**
z0}-9w>TDWOnc#BjCFz%wQd>>Fz1#EdpeVp{VpC3Io$ZIX-;j8KSl*5{f?!D+?EN!g
zk(EV*JO99FBl%JTK2>E+e+Bt71&ckbdY1>o<xaEM9Wg$YG@9biO3H~2Kj+WtIh!V6
zTyr_xc#e@^2DZ^RwlDh+GUdc!?>TR}KA!sx#pr${aXlY>ETo{G5ptl{x8g4Pe#d6h
z3!%bxoIZqGlQ5f|U}N~9%6Z6}QRnRTQKp~|h7Aq-ATR3B@D{b<Wo6Kv&Ai}iMgARI
zBA-YlUYAWAh}h1O4Gyy`-E{c06UbDPXiA36i{QYYaV&>h7;!EepF~Vzq5m9UJTqIb
zSen6)avAhXkLCtKIqqz#7(1swtB<hv)pkQkRiV0sm11;Y+uIUd!q_${5LC982Hoto
z)5%~OC4z+f;Bm*G0YxD3Zh-@nkTnJ&O$ByNFzU$>AM^bd8L=B!O=kJlbvO5Qu*Z!U
zF11Z}M&wg~jS1`|X>+pZp~Lp9MHv>jqA}K<(p~0p<fH8Gm3tei*ohE?p-*f@C83I=
zq&1PKOl-EC<VmmM_Z^6$FB$=RgbLelw5rTH7&x@9mONr{D-*+3=z_Mh>BckVgIuep
zMa-`g#aJ0>FZmT>hf8B)KWRxtNKp`HY_V5AuJ@su#xENtyt?$^;oE#^o`>UAlvR+q
zpVXq($O4V9Jg276tc16-Fqyr}K2YCG=HO(KPPo=o+*N?^ARr4hU43CLa-WmhtH9}s
zz`s3?;@4w040ALdr&sb+McKY>OmEraV9I0jqSQ@2xp|TKjFWh55vrDt-F~cUM@(+i
z?k6wnt#T?|OG~Sp9?FrB>sJ^YLS^RmOIolhJ*>7){Ydz?=SCm@UK0F14=-<bX47cb
zLmSD9F+#`lvCmt_&KF;~hZQ`?wKn%+B7V1e-S2R(pYJE2M9Q|`c78A}#Pai;$E>$u
z!W5Q-MFf+Xo@%q;hjX$f<J#u44)mcbR*>Q&9&Uu7!_?%F<<roC6rUkxE_j;P8($9i
zM+Mf;&+Y^l`8$OdeJ{o{(zq{f*3Ub#o+d69+M0ysTU}33mRLPO|GWFC|2KIMJG*+!
zvU7gDvz1IHx#2?<|5mhWnsZB`U~kFL&t-n38PZQkeHcG=(kBV{?ryHHZ_9<O-m9sR
zfjiDhlvR^S{R7#F&Hu>)u#|q6Q=HZ2a$DX=4Tl;*@HJGj{n+Mm9(TgbOz}=cyJfrh
z`Ln~cCAn!|O{?os2`c<#1gDPgioSZsbUlgT(<R?5tdqPwG*i4CPLS0dd<ybbo}k7@
zgJtOHU2Mwqz7rK(Xht-?;2T4owX3c7r-PZ~J3=Kf;;z3yxIK~Bg3y;~A;mw&zh*&j
z+mMrL_JaRD$oVqgs(obsF7@serEKzn7&^>jZVn-dr#V+(^L=Hd1*(?cPB`jd=p_o7
zl(yM#gTUhHWiNu@O)N6rc6?J;UQ6*9vyu6O^<MYxWwff^Z=C~%Jts6hiVOW{O!&mI
zCpLGlQFC`Z@k1L)%lP3p-xY}xVd1E74Owj>k~EX#H192!S|6;+4=qx%sN|C?Qq+}+
z$S5f-YCj#pb}-Y@8cN13TJN#1X!lSl;N}H=74k<z-`m+Sv)Jy7zwSXK(Y0t6gH+5C
zF*P++7lvuf`46M&e|IcDR>*CBG*0@?ha&_HldCQPP3K|!i3ZNhhB6LaW)}Eu%K|F#
zvZh=I0ncfK<IkKZ3GZSa$YIFhZ%nMh`As8SX;>_-*IP&4&N|RPaJaqkQl0<JrupCA
zki(zW7rjUVejodcA>~Yt1w~$cU4;3}S4ICS7(q~x9PB;sUj}H-WTK^Ej9cx|U(!pW
z=f6SmO5dn93B5gEQ&n7MNH{%xO~^4~pw46w`F=3mXurhfXv|GZN7v8@HZ1%8(92%1
za;ApCg_;b0PH9tVEaPI&`d=^k@0VXj@g;8hvbiKFA`BW)wP51{^EQ-xJ6>Iu=v4^|
zD62SB99JV3u?lvxpIU{dprn$KI?;4)MCaIsxkyy;B%r5ZNLK!#Z^zX_0lt90zx-|B
zyG~5C?v5AeSV$p>9p498kNPdDuOAZQeGhaBhL*`426{MceIiQ7{~@c7l7gT}!oc;i
z8Q9NP$l=%2tgm$C(c`VoxsF#?3rQxk8!Rmqh6hZ*&#SWjzkPiFFMC5r8o*;;IZPx|
zu^uz2jf8Ns)}24xeAagPWf?0cb#PSZcEBYr_#D%+#yiPpGm@U>3Mz)UCQ^NecV4ck
z$L{OD8Tbe$G$oV1-0N4^aEyj&PK<y@DFy(ER*t9c5<EtiA`OBFViMvLl-gc{xXTB!
zVwbaYlQ__Recys54Z_N10~@2;!+ZEbn2-fU5dU}<!gKHJ>l=tHZdXuS`4soKi>Y(F
z?;<+4#XVN-;zt{4)j{#(jS`a5Xf?v)mVkMt&usC_U0y*y-(%D+PinSi1o3{k&gK92
z9g>N?BgW0L+3r*i{(Aq^u^phHid>xkaV4*vt<2-+h;RV{|Cy#d=b>C|6tH_j4tz=J
zWd0vJjhH;PBH1|`f+?seM=Aw*`T9Po3y?In_(2oD2>tMb(fOONI|`aeiE#+x{@FW7
zlHdAeModL!cEEDW=+eD)w&p=<lD{nmet%+d<)nlFf#J1IoqIc7@*3IU)`V^hCiI+i
zpRWninzhM3lr>l3Y@fD^uAdNNk6+b`mEMzni`)fMhkveAE<$&gkJn%n8K2O}o=-`?
z$Z@32R;E0T$eZ{6CNA~f(GK|kOk*3+W~el7iZe`LH{0FDfd<C&96Fg4qvdVcQ0WMJ
zm{D+Q$e<Jgp6$DlHSh!&&-tS4YjVDlQ)M*%+s-rOU-K$jQRH<$;Z?3n=5OmU1g(UI
z{%b&{K|)T4`n|(wg60{Yd=7@vLN=bkIqp(}NkjdKpi0DzbHBQ(1Ch<i{C71?O-uU}
z^N;b1NeYaHt3S5*t(VM7c=R2vFb`xs{bIhx(*Ntt{^tWUYe*`-GHj-Z>z)!Ml)<Db
zsVjbzFhWwxLg@jS0xRGD`M;(dA%z)J>BAX+?iIt39FE+Zf1i^tMkjr4C-zUBK2SF_
zLJcb9l70arVaLl1_bZ?HK6sB(Pr{7k77QIBEDs|8bMgLb760c!7$yX{;iodR8I~|C
zgEAxCVVs&gLnWs&G%Lr&Lzl<HcviJd9n}BZFBohY41P&Oh^Xm?fS18&*o_}0|HAjU
z^}!q}@Z2x#b?Bp{lGky{J3hFQRqzSu@-CpKl7fx>F@(UnR%;<oluk}cD(d|qlf@)p
z4D1{aE&_kTMP*0iVq#Jn86BnM=jT^bv=aQEhvZ+IL+);bTtyiC(*#uf*etYnReI({
zP^D@(?wpcnA$yT2W=eYB<kU>N^}pW_{yGMY0B&);@{=%kWlheB!xd$c79S<>_^#9#
zl~!A~`SIAUOlg^E6WZ7KDJToFJVsDM5(i54UFY5><m6OIMjag;p%(<j1i~UGnDmCo
zT3eT%uC}Oqf9ewg;DP;Zuq~h$3ICsC@BdAqE3Yp?uArnZQi#$}qeqfb_tS}tsEuTB
zqUIa!*CgPtRozV)QZx0=WjpUW>T1j30L#xY0;2zQR{s&`O^X_kRm!g28Vzk4Q6Uer
zmH^h?c1-wJ<j4d04U9oKzk4RxlPSrU^)5S24+}ytSQZl-+a})B*}1mx+qZ~?lR09X
zl}7vW{%Ej4%1pi_B4_U$Wlc?u?vQp1i~{L@&Y6GQ4*vB+|7Q$Gni?_%UQ^7_4bsJX
z(!yJR4$;=<11)PbPPL(u>C5Q<d6nmfb}1w7%bAXT(y6;FsE+pfUDMWI8WiUD17Tw8
zuEe#;FntUxiEcIw)&`16nE_~{Ig-Smb*!=||DgHX{_WQEug~)D2mWDbQ@%f$H1;s7
z#KW<C<tj^_OJ0w2)Tfk@siU>EtWku6qkwsT+c*E37GM7PQ9%LF_Z8Y@{GXWccy)wy
zpK1!Ji{+g>!!u_-){p7j`wOA-dE8^2{XBtE{v8Zn1Se=eOYQk&e4HZ~ylz@@u|@lM
zPBV>0wsn|g-?Fp3Hcpr70<Rqd|C~OZ4MJKhy^qBEdv?Fk{cGJe^LY6uzL;iArzR4*
zN-pV0aw=7Uj05@pNh7V1L1=IQL7pOFY56Vl^V<`C7uceJS+CKqloKgP4(!b5M-F~W
zOh_^E)6uNd*Ey+;pYXU}vKk$x&SCgNg8ho26@r9E=8@M?R8$l&%%VM$P7JZy1ZE$1
z+>gD1Jr76MJG={?DQsLmOWncG);I}z-Nu1^QjXO=g1vucjYwR)6dTsQz3M0YZOwz1
zJ)s|DY81)kaEU|&U15E1l}5B~`yocvM)`Bs*B~GY{`*;L0O3*m)uj=8<G)7pKMw)`
z`d+K%v<!?%xLQ$}UbDD=g28ZglcJ_wySb-ITuw=_5@j!K^4rnbf8T%jd@q9{lZvIP
z3eD@kR!|zr+WF)oWqFkPy!8}_4(`Ch6AnWYd+q|A+HB9M4B9<v+V7WbrP<0#gdZM(
z+;XR1A|cOiJqvG7HZS<3BT*9Ao<5T~`CrInsfOdxnnyj$kHRL1e20%B;GRH7oNJ96
z0bH$vS!bn@x5snx15tPd3r!z445>+X3S|?`!N{N1Q!uB9PRr1<$naxD6M;jssMq}|
zEhQzT^MZl9PN;v0{YVn67lFNYvt!=w!GYed8s|yDhauKMLX4#3q$G2Ayz(;sl6Tzs
zAzjhj>oj1P<lI>cn0&bl<~D?-HwJSRay?jmNc+}_++F=-*v)QHkEn=z@om}RryrB-
zKgShC7y^zAp)^I07OR7}s@Xs(15PRo=RLuDe1<sXs_Xw{0m^`M0iatKHT{HL%yX<*
z1fr~IG6Qr|{^0?^jNL^C@xt7C5obh~@B5lbU*$w6n1(0UX}y~)WXs*MiYDQUZ6~9c
z+@nsHt96&}h-vygTeeGSnnu8pV9X~-czF1k?|MzTCSQhv#Rhcq_@dHgll(?cPyG9K
z!zYO`S-nOJO;5D8m)^d=5BPKMRLl_p<GLE$yIZs2vpdL4;>(H~?eTaVa|?@$ZJB)<
z7z2GSk*si7v9YjZ-P{_%#zcB^vrP`=kd=gLkoVq`oqjR|-GT94q@Z^|E-F$+qfY&G
z&x0&+M+xG81sS=d&;mj^2zZR!DiM-DuA9STAC!vqJgqfOY|zU#^4dA*hzg86EpAIc
zb1HK>$k=Kp|8qC^=Q#gkqsX0retY$F)IOX-K%-hN;`5Aptv9ZuXjDka!G`Wpx)|0i
zcjq;5nB(0AhT-`ha$I{V0{?tjU?Z=y6+J=(M8y7`EA5p$da$7nisH6g5|HNgUKaQ<
z__?w?u9ifsQ+m$*Tb(QOn(4;6tJ>v2OIc{<M!2dQ{1PGh2Nr+uz>cU&6TL6Z-rY5K
zDvh(O2Ae3!_58TL9#XhX74&ZWbiS&?_vsMyvsk%mHb#az^@m<wPlKTM{ZJGh`)*;P
zQo^5oHGx~IE$r&)ASVTkkgrzzSytAjCPgIy<4>LAqZXQcU*^AMmGi#mm8LQMe3Hh2
zF9RC}dh9_9+@ncj9u;uXP4)LUAWlRPI#UUYPZu69i;2?UwwHjMOupRDrr}e0r|qkr
zl)dqhT3#`&c||zQL!t;Y{Ow7-x<lq|>Gij*Bz_}4<zV>8NaM4LzeT10u@UFCpo2Z)
z-V+I-v}^_>?v8UGocz3fda=2uv#fkB`ZQ=WyrFNB^~Rf`jD}>|`EV@FXFo$({C^1h
z%CIWCv~5L%jS?G>?o>b;=>};;x<MMGdy~>3-AK1ccQ*(U(jg#7N_VH<VrKN6nP=vk
zU*2$dz~)|Y)fros$O{xid@l*6EaH`=;e5mkNmV5lAQZzjmYQ3ki*rUG&`q+df@|=d
zWJ#?1#hY&dJep3`qy1COa_HGFed#ENn;=a<aNb8XpKPE6snHEceQ&)U$aEnu2ZU~D
zED>#CK7{wzVqNCxZsXn~oy8)M^m60*`rqBRb<Y*F=ky*k9h6~saqhQV?eY{^=J&T3
zHVSMhpdJ0WMDNlkj{6CAwGiu2;#P4&{#94`6I;aFhchTb*~~c{=42E~sUQIRlrgel
z1R=mBI~hqBzxBS<x?IiEbtgw_;%CNB`po{11^9h6-~CiB?|udzSs=~KNWif>On<Xu
zJtY5N-zYi~`Z2-CsP8J#mG8#kO<9AoYr)}j=i#x$X{SbQ?wcbnT}i3_m1hFx>=E$z
z>4HEb+A%Vf$5~@b%ghs=utaSu=lbGFkp>eeyeVIs!$B6mH@i7s9Q2S(*sH1+_xtw;
z9TcYVxk>5kXI+D^a#Au>B_gMU<eWh}8tN<s(=IBo@Yq7-GnA5g&#x-eH(g~Gvkkny
z*rdB^0nD$;2CE0C>}Q{Ls3-Uet|JX4fq?|->^!^Wj6|)~T-C?^qM{;=#|8%a`tW3p
ziw|8p15o04eFMx5a(1y4IW~QJhQo<?`hdKS5ilweBKs`cvKbHAdRz*ti|71hBRsR&
zH)TY!O9E5B0sGwu5JVhlG%V+V%`YBEhSIv=5HhhzNJ>kY58KDK!il_p=w)6A*R~^^
ziGk$b2<V_jCnpmm<&M;D*?Zv6SlOp{T<ri+_RZ^5m2`FvZVBQ)7X&Fe{PlioP_Qb5
zvG|rNZt5lP$E%4IcbOXTq?z%>kIkOeN0=;2;y>0$vQHk=U62Lf83C2~3eyqt8w#4(
zW1|G^JTm{hz}egF$|3U048mPp8S@tSKHBexodFDX7NuWVa(YxYVq4@q2hAqj<q}QA
z{@o&;5{eE-z`h+h-^^1Wlu2*bf%Jfqu~ed>@=RJxOuE_PM@uy}OOo%-kK|GWCF$HX
z`MI2&e9-|XVd17%djdJNl$6xN6xsK?SJD602utVTRw~4>BP_Q`S_p1zOrw;<{8g-}
zb3W<6G}kP=6d)6KzHE)co$Ocs3)=K1SC{X(k+d%I%+TLTk21`2AlX56=b|J?Xo4)v
z<`>?b7&XTvW+W{24oE#7g2H9iSsF;;uY~jLM#j@?B7{i`v7G}4k3Qg1=zBO-r6;T(
zctvmuG!c<RUqThMJx(SXXkmq28JWzGE#U6>iQ}Ml|4tC8F{h!SSZ1Oql#ojSNFEmq
zO{CEa2<YAd#o0&axI945&*&}^V=mR{{<@qpPN;4=n|G^*K#_nIRN7~}?>3gCY*$;l
zzi4ZJcs62_X*`_h1D>`kz>R4ni_eW4K3GoRrs|cCiB#y*G`l_;I0h!I2;gZcRJyza
zK3p7-tJJvqiVE3&{Z2V8^-j~>!xKcoydWK6iF4q$)R*+a+-J00e#&iifORMq_@^mM
z`Es`c&FTzpvL~I*9HzshFJMKyi{C8HcIOVq73Iw2i|N%%XD&KspPet=RugnJqX`t<
zrcDYh5bWMoO}PMPp+10N#OcC6dnW1+*!u5sZ8lCTGPh3cVMkv%R+G$2<S{$orr@Tw
zf%#0ud%+bK;KriT5V(-}<m`cPO&}}N!(`xa2Jg`goDO|<Gi{8%uGxKlk97$Ao4B;F
zx9kBdSHUAaS?1KfaOlKLqH!bun2hvUdma%8C7Lw0_d+{nlJ`WeS}v>b(gOpDUBBpr
zIc$u6UV>|9IUoCTmuE$Iq2d*1!PgTq5WSk&JEPH~n8Aa-pnYlZM%%^8Z@paI#jvXg
z_xj5tk9$24EZ1s0z^?No!W&p>bu`$0O8`ld<y4gqq6a<_n_pW<dP;_WX#Vmgt3U#e
zE`KfAMEUc-6sT?Jg21~4yAU<)L8a=%MV3J4svYfOoE+oRSA;Z`CX5vl14+cV@Z#d=
z0~X21)N>a0l5pa*-c?m>9-CrC_ZNlJ`8}#Wk|RH%kfA8vfZA}Poz7`&)l`+4EODw)
zZ+lXMo1Ab2eu49W{)g9{iDQma+8_NjorKbC%e=2o9W5g8Sj7^`A0tJf`a;osdOdG0
zdj)RMp&E#%O24c+1d?<4YPme?mZy(CoD93?y{crpcw6cBkte8KcuQ0r_RZJkIU}PS
zNa#NmiX`d<-H<-Fm?((T^1N6Tf_n!0<@;0wx33v^b-5B*8_Ph6kMG<PN!vg5j)NFS
zf9vCg5-t}y-E(b&-1yNrrsp}CKJQwJ{ebZ>#!@X9`0ia^Vn2BTzjL)?{f_Qws)NGo
zq-ihGeIRBQ!h81JUgOwkbj!Z<+t6n%H${?oD1Jx3A?JfLV7n@(TltzfZ!yG;7*3et
zuxiR4;5f|5o^}ORzZmNtc7yNnB}KD*^kRE!rn*ojnO*kI)M#qvAe0L+lp;IKn5W7!
z=zui7v-!zePHTu2S)L!1aU5j23_H0jY(zf2ce%6M0`i<m4a$SguAD&4fSNgrsk2MA
zoH<o3TYv1+0Q0A~uaej#_oq9XO=>Tz>Z#dZ?9`H^Z~f^M1SWcI_K2aqxU7kDkavIE
zpPRN7`BRk`mq@BD$mBVMXfdl?{bck_O_a-ddno;YRy&5k^+FcO)#d399gvW%)$+<-
zCT2|?5Yeye_aBtTZEJVr3WLWNezVr1wBwIHkL%|AjVjo7RYA*%sY+I4(^&nl<@iq_
z;P@-+ID1YtNc0qI-fk|+-mVp-FQ4y6aIFt9WoDOO|M-RKT6N$1b*BEh(@{oOC8>7+
zCKItgnDng{6qbyVKe`fp*3_H9cmQ04VlN?F`18V(!>{31`%NT12cUhPXo#Q;|Mjt?
z<anzmM}O?8>zr=N+^|R)FKAP;Qr|<TXd-F>w(Z=TID`hIeK=i8xT+1H2=e89tP<Ek
zOtjsJCh!Cn;LG`lytX&y=@#>I7_;BENBYe(xZQ0`P7l$ds+nOcoy^w2lFNhe+LD!c
zLHO6;M75Q@J7oCI8q55<<#dJ7A&8_~b0Al&Kqlr@+q+sO`IZ0DXdeM0!n1${HE=OW
zb&PihJH*H1Tgz&^rUNnWnDBX^J?aZquKU|Rhte5;y!+LROu#PVrsgMz(m@+EzQD(j
zf`?Ag6_+@0&pH_L3)wegA_&)3piS=)d=X>_`98H@Xg-M!UTN#CYoW*fu$gG+v$N}?
zp{<(C@4)}7x(@4XgepM`gVHecxcRQiQX?0GLA1)=cw4<I)oDJiU*zvOLhDL|&iOa~
zA{F#+zar<2>gcB$L|OB;H~rDle3}uo4g)%5;0K!`HYJf?bNl6;r#Ng)%Kqrw=f7xs
zfHuDIy1N{O*OWo0NsZll-XfK5msLxELSK{^_QbF32!ykQn2F}cVs&Vd#?DFh?GJIl
zXZW6+PjE&mTK_E2);Ls=BX45uZcjr^UnMfNb5o@-HhC@SctLT}@Y@{#FFiUfjRCY_
zRCFp864;k3gRXFmOL(XW`G8(K_l}L<{v_g0g5MXOU>N*9a_Mb|F4se6Zc!wxxg}*C
zT(URgKUISZNVNFGp4qdLkWm=p<JC^UB>d>yk3<mA#?%6X&?iCmCjA9yigZ%f?0~75
z`Hfd_6)@8+eC0-55+kUMB=hSSR)3Xsc7k}2HSz<giEZ@Heg1zBZO}UX@h3FJ&n8Mc
zD##^+(NHIh4s9jDP=N_9PXPVFSKJ`97s$q)5615#oxR0#Z8CX8`fYd`Am{xd@Qi^x
zP+^SXBOD8yAGcpeCSKPBz)O(QBE7LdTEYvO2@^_06vFS?haR;h>&ucklC3ajr2^~d
zjl;Yap#Ci$*xP)*6jBX=%<qu06^03&2dY}4EUM~tV=_;6`o9o!)!q`r`}URNhlR_I
z@4aJStA)J%dJp=GY~V%LJE*@NQHLn5s3b(h&HwNaf%!>S<bE1r`7?O$vgt|_^Meob
zkRyaBVn4s1u7daOj1>Fd-5!y6q%IJlW_1;uFQt%udGrGI!%q)-YW?mid4bqVXgtu~
zFY%Euzm|y~nRw#cZ{NxdPB5$iajRmKdHx&(ebY=FVf4;@893|ks1{YyBtHl=U=0`6
z$42~7wN!_GKL9Dh1()ZuJz9si>MGU~A0^E91SgB0aOM<;e$d)X;qI|lJSfWMzO{lB
z4mXQ|BvoxsEd5O<WW<<V%p0$P8qSHmw&^WU9MG*4=T4bf;Aaom3SIuSi1uz+5-LB_
z6E8oB3m{C3I$k!gt{`-3>1_HfR}cJAtM7_pf|h>MKfCS<mW#PP&!=~?ldn2VP=DAj
z7S&jGJKL^1WAX20nk|O6|7}io*97$Lly1uuktkdjeubqmvy2(h>1!iGtNfDWut52v
z>W+Pg9G|(!08DTm1|uK}&QAWIl26CO(-^$~MO*IPc9GRkmL5Q6HTFzQv}BOXXo2_q
zHvIBtVZu%yZ=R>HWulDm_b&fa-w3i&y?(7h+IZw7-J%ii)_0<wRT&5pV5mAAq!ZEi
z4V>>4Ac;oJTDNNNHXXhCz~fx9>dy?Oxo#W5+av0KKQ@9@m|i{XjX@(-Qw)>%Y^ITt
zC3a>w9U}S0O)Vebj(&a}OY=t8X`qct?IqZehCTIbPfpYBGMzz@C*vjV<aXRNj6T75
z7f5#KD})P?p98?ftXk$%#7qOnfZ-moF4IG@*kgfTc>7;M*f6tZwmGC>p^u;H``w%H
zQw&I?|E{*!d^T@hfPQuJhOp$#$KYFIBPBZMtEHr6BVh&cOC7G$ZwAF8KI!Pp8o_TL
z&NF|tB{M}ff!gwe1UAm8y)vI!t1<x4_dG(ePxMKIrF?PX9bcq8=uin{^%LPh7|P8=
zU<?7$@e{rK+YoDCCRha9d=oRaB@Xi@@+L~h>!4lyu}!e*Ggj`1Np4e~Xo>djz+-Hn
zfDmYCPd0eumRQy#taAT;_kv?&3x3@4!Pw3G5$8m-MOB@}ysQPDR=FSS8e-ezWo-^=
zUxKEI*>U0i*jMVRst+gL(niL{(~QX;#;C%d$Gi8TGqT|3%aq})ovQv6=psQ%=uM9G
zikquNhDGsl$Br@n?_c$2ncL817A_t#ZrY3zPqaVq4MHd42Aj_N3r0{_*aQ}N3bioJ
zOy{Uj9ULR~{`G_VB5Q-G4<AfHMTh@>Gle6=DZ5+=e^WOI+E$JslVSCf*<XO@5yE@+
zCotl`0<XYnreAcIJrTX~gnjJd>L{~9<1@EzL`RtE*&Xl<LML+)O#?o-8-|c?+xkK=
zQ!S!tHd%@*-uFiCOuGi&4vz+n`(R82XhVXKpvtK+G$!3x<tS*eig_|4jiedw7eIyn
zTwBXIXns43PmzE0?7eoK8O}n|vL4cbiKk}^sy}k3C1)q6McwHV-Xn4eWWnVmj&UeP
zlWwbL13p9@-S`^FWKF^e`8ikxeX!YB+$;-uyQs{Xf+shhc<+HNaYrPDUj?&!UMF5%
zd%pod4R!8>OK519%H_<?0r3;FsghJw^@zPXP~UDfg|3fDah54eu?NPlvHyP8f@7p!
zOrubS4n&Guq2VACaVkxvp#;xWc3x5khkAV_DOL;?Vbh>jq7KwcLKr$YvON^Uk=v{p
z1(%C>uEESaeY{%JeB1#)m)ViV0|l*wqOn=HW0&g08~G}1O^iJX^zi<g7#R!RB}UHU
zUG>X39hxOCL!X}UNX~2VDy9>?4E?%5e)J?Ox((E3s@~7;`}XHCj?BN#>117=Hc2mz
z5f8(sBJntm;(I*x_oinOvp3M=58!KjUHVRs)t^#0;|zr7bs?UhV^T^M{VdSC=tCrN
z&-nGz?}@oW@@Y9IEY+{4W)s=KW`DsHC!m9sj2CN0<f@}llT*&;v>{Af#4SlZFcMjZ
zbc7nFj%v~^ZMe>V#dWeXtGZt>xZR<`DRF1fKxN#8OD$>#%an!cbR-iA<IK`WpS?$4
z7qY<JRqr9hnaWTuRJpwMOJp9em$pppO1#``6wNnh5)X33<wYcSc%cK86<$9F(l>~6
ztkrzjeSxgs1G}X;PNy7xkfY5Yl4YZ7lUq&{D69Fs@QbyUAu|BWN;wl&4udiG7?Lc<
zv26FMMyXA)tIDIq{OSK@rQB<J4o1VPLGlbWaj!>KCudOu70nM*q`v19hdqcfPPzSw
zsewQBP~dPtWC#e%lO|}{1<Qb3x^cNjghNZIbJfk#WIHj?aJ*Un^P}gclu%|k9(%Mw
zvA5~*IOVSD=)X74pF=7*Mq%?gpT_PW=&?~pM!DUlyn*59LU1(3kF1SUh^7pjZ0J3N
zjJx{wEn?^5i{5W#dYxd>{*P4s^;0-#u@LFWyxU$c=-T-9b;RJE@&P~hc;B!LWLd*b
z7&rS@f1ExW#_hnek^-B?%(P#m#)Z912;XpjI*}k-napTSa0wv?N6t9;GVM9HUZu7X
zWNAM~Iv^x0AT6pqm@(}mLOOfTHD%L(C%*54LpbJD&kXU3;MwJL0g}%~z_5>+i(DF}
z&W62vN&Xc=R!;niQ*(|_ZI0jmduMe~iKX(6@3SLdWiS~9Ob^i0HG`TKVfox6+l$<C
z#0kGU!wXF4HndS$Qy=-5g>%;xe~I$Bedu9?5T(-MN2xFs*o+~jx1cGyQMjlLgaWxY
zjup_VsN!YC=lH=n2;lG3caWh8vc<!hx@Itmsf|rYm?|J-jRJ53i}@G^ic7<d?F}0L
zYWi;XKSj=;hp&->LT278*gxNkpqRQgA$Ce~bSkdWL<x>V+cFA~7?Bu7mHk86eJ4#}
z`GOR0Uj?B2eUxX40l!~s48*Q4{h6AeMmNAvAriFDHcyxLFnEWWf!e9;lDjZLJ*fWa
zkaQ5p#0m?ksHywFcmh{x8;IA%+;u|whDW}H+SDlHiTdt$L;42?OK3H}Imo!;a@pm~
zpMk$}yq}ddjrH~*;@vv;!U>cZuP1`UI!vVFh?SRrw)vIVrp|POV_~>{;2N<TTjOwy
zB}l+u`PeW4F(%V_k@B#s9$3NlXl@AV2AD~i64?<>9mQ)}MfEc@J|~y;zK7Pd$czch
zoDUPKOU^!~dyb|XJX!zI+KR0kKxdK0)w#oJ<}^|y*;&!xHk($;u!UmDk%IIAdH@=F
zF?XDU^_F&im_lyUpAGGG*qDFW^wLFNDKlF+(X15XMR#3!xZo(cXJArYmI~pL0@pz)
z9^Ut%<wXp%B&HxVX1eYH>~=I?)<I5@PuysO1)nyL5z&Y(c39B*RNz!4Na5h6`r~HD
zA7F2xA}f3VNzR`x;qQm==Ws)eF!_0HZgFGJv+!%{Ubn-gjtv&e+aqyo_%wPXLVY-h
z@0}0rCJsVpA&XxOyD<)KBHQmDmBA0cP;YU2ePK5y%h3y5B21O_I%GAGWKAE+kA+SN
zU8fdD%mLfjc)>?xeqnRKn|i{v(66o-xCK(X4Ih3ph^VgNu=;LVJY~GvxYtryG2JPn
z8SJP9q&3n9Qn(bwV|*n>zXd-{GgYCZC$KC1)=4D7NiaxS@M2IqOQ;KXrkh@~<_j>;
zr2{_YpRhilbtt*v?hUgz&ap3kCCe$6dW~B$NF^Pw);lprLfusxH(jI88<}MOW;Rz9
z@MCe4#us)1YG&OhhfnY9H-yN=*mhT9<g9E6%nRCJK1DPnXEDDQh)@S^=0Uby$NCAZ
z%0vvOiIH}ixI>msNLR2esBDZWZr;K#G;x|)uLJ&u0s&2Suk}~U?PA~uOUCBo=ocZM
zfZXqk27<uh5neBsCtpB2`5sft-8jPG>v!{snp)CnjkQOAx#ZfS#P7v0@wNEIe0LBZ
zj0*HNk%0@0y?1&2=<x%276fEm(r(PCW^`Oqfvuv-q8#AdqrRoZbqJ{&y^{RS-1<aZ
z-!(VJxr<U_TOKE<vEOv!K*xpL!_kONx%+Oe3!s5;MZkF2R4&w@C%o9f6Ow6;tlySr
zA$E*5<O^nsM!AaK65GJTruKC56#T<sD!|J~Zb)wd%y2dK10x5@R#sM|((q4EXJ_wB
zV!fXYSwZv2sw$ZqVZ%AfwW4gC%c(A)sI(hk?osMPjhX>{$E=|ZaP3x~g8KXBvOy&O
zZIhJ-&%~o9Dty+=_Y@wb-~1E7Jh?vSqv|aI!q5k?CwB%pV>z7_U3}g{eVB5*deyyb
z@XM{Ik)NYN^AOSenL^P801fYFq)<Q4UX!A(0SupQ%6_UuTjkswW>_WX#q1B*1S*me
z5=_Z)@zjJa#>U2Kdm&MWyk-J6Ahun$(H*k}GG84H@(g*_iK&+|tndm)=sM3i>ZR`y
z<T4k<{=RK9q~Kn)VldG9lar%!#U<DryHSj@iH0=%>hg9Zu?v!Ov9Mql7ULz<uff_5
zB=L*{E<PKMO^ZTKK%QUUxJrqG0^x#8pABsrI79d!vSH+-c%K%ZsZXD-RF_TGgVDwx
zbjd$I*qB1xuXbuL1=k<DgV6CXlV}kIk?i`;w*CUNO3nPUMBim=o7$Obe90DleBVTa
zQ8Mj1yepzXM1kQ((6Iv1x%g@LJ7J9O?~IZrvN7LoaS&cK=2ZxNsK3MCJx6*DnhB3T
zkQO9!I~Hg;jJ$+HM-}zBvugVeYzih_fa3qGhV^^8yIc1KabRoiyX$2Vqk%+bpW%jY
z0k2W?xr0*w){7v&y}iAhYMq>gSYHo|plzJIyV=r(i|}I#>SDUcpndQI^x>r#TF&)1
zW@}4N7XmFQs(ilK0X~Q_Rw>Jz-xq(=$NKDkEdjv3arr%6Nu)T5hmru}LQ2c+rFkK-
zOp=#Z@yihGnFnm5MM1QIJ9h@c-C+bDkMyrGGAs2!NxOfoPd@ZvEfqMLOI@C9eJn+s
z0YS~#!@|b%_M&qOiy!pkSv%n|t5EcsN34Rb?@ZsN1%u4Zy3!jCP~6=>*Sh$URK`CN
zLvOy(aVt+C8}_Q}Mb8U_r&pZEU~3r=5uJ5|ioPgybD<?Lv6@ycF)#Ad<1?HzKHI@_
z&o<`=yz<6|hKWV!+Uz-V#@B?F0fF`@=3wFnkfXsYmNQjlKGPB}<{=@r^b05$DWPRg
zdc05<N*Z@Z$-djpg?f@I^!yX<$dPj4wQcr@e-`!Oay?G6POB<CnRXY0>Kko7Re)!-
zohrY~|7w*k1dp?v84!ridtGBOt)OpUaDt4EX~)gBcV}Bh1un>eyQ@VsT2M^tO}D_N
zR%5XxWudY5f8J|?aMh&y>A$YU?<6r~Ez($w-Y;Oi<#FD90vpRDs)zr+6G+H=QD?Xs
z$1HOFvay)WIoX%E;rmW_++mzG;dfOLbvg=FPzNQ^d!KAg^#i<fRjm-@9jSgN-FW0s
z(4g?yi#SV23aOy)I`Z0kW{#`6WG*z=q#N+w`kL1klWEHW7vT;jQm!QAANc^`R)a9W
z@2;M9a}{lvJKg(H`qF0~9?9A!lX#JoUqpTRxJ#!d?*vRz<R15vii#2d;l^U!%vI2T
zbh`jId6A)CH~(s^B0QXQ6X`gczARmgh6`{_qA&Ffvn_2~UIK1$)Q~e2y;ab_JL#WC
z2oi7afgx7y@x*TJ>jX0`Eg%am?!EhUB^4;HDbnns(x=n||D6Oj=?ley<ATsE5@9kn
zE`D=bWIk;MlEb4P<w)o=d`(e1xSO_(`G1|VRic)Y!#8p=P>=bgv35i)w}e-{$e9Dz
zQ9O3%k~`U(rrXOc-z3C{2nlOs-&&QUR5)>Qn9vi;x@nQ#W&Vz8HvN%qQ?#u=FxY%=
zFGf<sW1bstB!s^E+5MSaA)B>6x;MUU=s$f`#nKOF)I=O*jX8{q@e1D>KP1I1q(w6p
zCNo4vW_8)`1kH*tAyO_fCSRsjPMtnl)cMvh+vk&@WA@MY&7bGjAMPP!@6|1%UI6*G
z=l8w&a84=47i2l+o;bDgF-~QBc|DRd9N2q|U3WfV@y?(j`@6-soqD-d$@wGajqg}n
z0uT&l^77-xj}KnB^ygSy9JgJ1pC$Dn82v;5t>SEGS;$m@ot++P=$@xRrao7URq0TR
z6{ESFI2R1!TlN)($?B-5uAxzI);_D7Q`B(8X35$wK{Pi0pwvf>|02hUNq=+zBXq%I
zzqa+Jc-0Jj{yS-fuh2dJXXZ{<V1(BN^8(`!G6NA5VYZ;Bok;N&m6fY$ZoB2YyB{h}
zw=^+BfYkJ>pM$9cr<Y`e=f@jkt6-@cKWQ*ZOG#C&V??cNpCLFcT?(>6q85P_48Bqc
z|JnN+E#V0NzF+%+0+5tiKOQ+4haV>+A<tNu#1A>;iCXsyyZXfd0z)w4O^O0WoSckR
z=viD$#f8d_GKy$j)i8$d<pzP074gp=-zVZ_nBfafLPq1=_j<0~P^FN3Fde{&L9S|W
zYVOar-(x~zFq&!Urz!`LF|Qc5JH7syl$`6K>oFS!-7#fNf%wn7$D%tn8Oc$ds3{ng
zAFP^qE~~9Ze#{{}7<k3-`BuHsSp5e*<cH3jN7(iM_077e7nFqPW6xe<O~Zk9t>$qd
zbQD4nwsyaXP^u*;p-npbQV$x*&hFHRU+-CW#LoJB-^<W>E?lIir>B24LAL}e6;|c~
zjNLnGAgqR=ny$R?i{2L!WtrJeiIG0yy;%EJqMXL-;js|7;k?z*_hUW@T4QM*{~VG$
zDEim3TtvFfp<p53c&=1fFQfCJFCBlWT$7ZbuOo8V=bq1#pS&%H>LssNb1}vW!p{5N
ze_o@RO69TLah2%(8He#BGeK#^sPM)z*RY>fa+_O__H-wHr&J(6V(g^h-G-%e|3KTV
z)q`AzHELTb%8=S;a^Gn-6q;Q8S3J2C*R0)6tv@fmN0)2YImo|}<U`oHDL313xEypQ
zemr|y8E`zZA-Q?o$E%}WW?adwn~r+rO=N485L<Y>?CKbe(r9la=P94TDkaMx8yXgc
z>FPYW+M@oea!@r>Ewh9b;UxAfp@eTZYBgaD;TW25xXb*`F@7+Rlj4<fkDr0-mU})4
zyIZeDGw<m9f->dzd*%kV>vN5@fCO%sHL|eyOd(+3yE71N$|DHE6V`5kkMs?RQ$J?>
z%&|>6kx#p{acP_ciOTB{x_pxRMEr{nb>NcVB!`fWGxOFhPTPJ>dVxV}@%9yTK@#<y
zu3k_+uoIpSN+a&z?~Iw-oolSVhZ<)f19e{vLxKAu;fB{$sn+PUbL{Ag_!5F=ZU9N2
zt2B|DO9LHmb^YSaKCw%k`<Ovu=mmH>jJC4mcv<xg_Me7YP>HxrBV3_5i})n8okvC>
z>2k!i38FpNCVHiWGei76q^`TSw>ODi^t~gq7Kz_YH^$IBw3GOexkRIF1o;5BCt|5~
zV~v!zo<RyCIs4KXmuN;NoDQrO`Dv9!s8iXif9w~|6!^DS&s{lZf=mW)HD5)?mpBAF
zb`?^eE2o!gI-bx9Wh>Av?bT_X+`o#Q68rdwZb!K_A}Nf3lh>4hjKVJn_NILR7q{v8
zs}xRoXF+{}%r^xr*Ja-Kv5hsyBr=#GS}vEWD%GWoxK_pXfJ*SYKKjSQ!WYT~n|h<E
zt6%X>YlXvR>z|qPy4-Ac8v0wT*Mh{6@K^`ygpsi0#LISlyEHXS?P%iCH`nE7t#p&-
zb@2%p!xK4a)K20U629+ozBoF0^CrBGU3)@LsSXuuu_HB!Y?W*F*fYk8HVq_T#0y>b
zm@O7(=o{V{HDNp%)Tk29OJh-TW{OjSIRq*e=D^cDr%SM_PK7SV>lWVRzUBLvp{8Oz
zH0dKA+vqSpGRn;*^hm02B^hOwQfHOO&4F<vHa_d<>dAvQxU3nCgNU{(hsBM>?)Gu(
zBg8J9RSD7<rqAv}aA<Tao_+qQ-6Dlf@k-OhplGmwUQ=6W7Xa2xo!}Sv_9bj{yvyof
zM4;i@)QvoXBCqK|9Vhr&T~*HKZkTZTR%(a`ioWESkK%KWbx<q8p!35kk?sUrkA<E6
z*P0?TVQy8-0@f4dUwV5#*>SuKRnA&O{k^z3@KCJIPfg65gE|g!h5Wj!*n%fJ1x%v_
zd$S=ov_!;s<&D!2yn~DiU^%)0YV6%F{9qboG@dW-dg{-&&1PKPZsft)Ie<UF>Ai?3
zq0I29GtLMfX*^yqbe2xU&1z)Y{xF8h+}YJKgoWfUMHcAlFPynj-i*^MDZz=R9}Ym!
z-rpXw&}jVfr92_D;4z=b&2D-gZ>9OPq)UnJX2I#rJFQtOg&I2P=qqGQxkdhi!rRF6
z)8?XUqec$%p^%asC82X=xm%s)A34dP`|dv8GzM4irIbHnbTnKTreF{Y+o@+xE-Ir}
znjFP3q3dARuKtvEm5QF9*HkOwDU3JViJS*mF*`hZj5rSI*4V;|jkj~Lofx2U@DuN5
z|0K!%<LCCxXtr!p+)!0#RfzOo?$m#QA+M9)+Y3pI3@;m9SL<GJJ*F`T_8Nt<k>^yY
z-Y8BdMMR<}=mA&U8KSEobc(8eORusJ+*-?7>Z7%xgu}zbGF8ikHgA<nVE$6%SQ05n
zi6leZtmbjPU;f0!puJ2&<!i&g9~Y4QJ@eMCy#3TfQD8Gp%UgXKyY4{aohj$IbWVAd
z?fbNPRiKvm`)l(L%OwixO%-5@>pObpNxYw7ib1rCi?uVZY2;Z+(o;FxL-Nkz$N1Ly
z%d3XN0^ICQk2ZU9<F5sS)L3wo<NWd-tPIsd+3+Duin}pb1Vz_Y$`L({FZaZC!}$az
z<rxo2yC7W=-KZrWp8RfD{M*6){bg3Lm$>YbGtc)W1(ugE0|zdx0vFVYsV!ycWBS4t
zn`+e3(68MT+4cA6REmZfY84d}a)3}c1`f_g?a8&DKUHYnuo;1#hNVh9rMDObla*;3
zmHR853inHcRxut_I_iI3kiR{fYQSHo`C>9IW|p(ptabjHq)tBkqLz829QR|pRM`lT
zr5!W7+=g6i+xN@JGD<w*Og~u!I#)oy^=9>&5dXi9EWFyHsiZ0C>18KNw53V^Et8WM
zyGM*O$B=N^w63iGGU0Mf@uttF3$mCcVut6zK&9W6;`y=k0twHSZ&)%dA>pI0ypzYb
z6pEC#1!7GqGIl1|@wZ>E1Uk(2kN?^|`uBCuxV=L@M_u9=OaAMY^cJI9P?QgJr+oyy
z<#MOBi@02~p~a#w45f{&VigO<Q|1;8-|zXh&C9}0tF7`14u!JJ!N7#;taOT_3>*9D
zU*6uoQvm+@AH3J87GCSWgz2#TRMN{O+9W{^e>9P-!>uhfoIi^Cb6oxWueh~8Y487f
zKp|Uzw#p%4E3cadV$cZ}uPbee3AnS-%7tn4=hu>%9*<HOh`g@+D=g@5tt3$&LE{i)
zuKFL6EY=ey1(-dI;?DTbHhPPVex6l2oZ#VoS`rKl-<&@96rSE2BNxT-BZW~U@HC#?
zQlqz@@m<joV7baz14H8Vo70-iYp%7>X!T0$zBIn8lM?R-jgs>6pJEeK^Amcc_9hB_
zpWq~HI1n<@7yDQ59GrLUI01xYQ*3PPhO3On>9Xzrp98k=g=*pC)9X>IRbP1|To0X6
zghgdIv4nmyhL6%Gesmv0m#`8p5#uOCq)F<}9u1}ZC2)fCMJff6!RM8)U3o9Bm{XOd
zR8hgvKiMpxS=_i?F=p5sePXxyNu&y9voVU|s;i*TWHD1U)@M>v?kAhbB;2HvE(i%e
zJUA$4v0ah?DJR;=?PRecB?E)lD^5MHCr_SeZm8;d<ZaJX%PA<v93PMxb~&l5`@?v3
zKIQL!d5@*e@<vcqJK~d^^?zf5{0{L!PcuHh=U)w%N5XOZX8H{O20~86^ik@hLpxjJ
zlIZx0X`Rh~DU$-@?r}Rll6p*8%cOdWz1la}q^;t{Zt;x_v>sxcn#g+x=NT_9K5Muq
zrlvlftuYEYC^G#gVkL%~OAs`y+A=whm#%xmb!TIL6o{&pR4&4xJV}-iJhE`DCRiA@
z1b%5~-mCv{k4fB<_fdLo_OPS0iG{W_M9rC2AXI7~=!>Wh)+_v<&d->$rLx7v!hEg&
z?Uwk*mp12+raGGjn1>D#KY*1x@Y1dX%<-SUDMzIV8y;myP;`4)wa2m5&10aVA_yPc
z1SJw42!f9A4|pm&&AU9^+?mq-_5BHoRO?>LhARP)?CCOB>RaQYw-0p6s;Zt46=?jg
zRq%pGh3<c18hsTAIEN}8V+v$e;-S%u<Uv)g7vnrltirPp@9axCG74*=f4yOT-vFEg
z@TB^FLZs^lZj@A1FQa2(a+{j8g0cCef^gS6g2Td;^-}3p08B<z2b<%|T^4-K4Cr3l
zcwIR)m<b=XmNbmt*H%feAV$Oxg&6nETED|%e`nfY6>->RIshU2dK!wCo~X<qxlo4w
zjDdmQqUWdg|L0!p0L-M!ELGVOXRhJa9VL%xMC!gmw!rtVb6mS76lieE^Det-49B1S
zx65cmWC08^VnNfZH(x$GR{UitIJu_Q?~666qk-@Oy-jFDL;`?N^@HH7RJY+3X}dZ8
zNkK`8vb6a$iT{HW#Sprjr1z7(K@2&WrYAcyxO`80<NpfU{^#$o>B7y7EZr~9(g+L`
zOB8vD;bS89R9KFLY1=Ld<-hK}EZ=*)%%JnN-rYt)0hXyNF+H8p$jGR|aZ9ClU?3J0
z5t5*dSS&{2(GyNI>GaYz?VPqR7GyKgqb^=BsmD3W>B~hoTK|jc)eZQVJug@NM>21P
z>L8^dOdmUQCm&>qrOWxJsxaD)P-F*ma{T9=5kw6K=m=AbIXKVNGI*R*UVS_rz?~8E
zOQ{KTy9FD<x56S>fWkDH;6ERYKQRHYfkDIn);wJi34h{#Ds3oRRj5w7xMe3@HU?u7
zzg4<#W-i+2my68*9v%OlYh*CMD_|%%sD&Z<cK3_Z3B(_-IM6UKMk!u~#dG!Z4=ZQJ
znCOo1H_tEj*?(5mV7PsRmRBjIMGz-oo?N%I>{C;@=3a87Yyb7dA%GDeZp!nC+uGVH
z$jfJPN2e^=)f<92XN6uT0v@xz-vDUbKGJ>}mAd*{3t$caG^eZ06Bq((?HSTD9>(uA
zUq;1sWBun>_9x8R<PVRm+n-)FZ?0mjrW|-Z?2x^Rdn&g40X<8+cKR#TUsCG7&rAdz
zpmoP}y$Wg?&zMVaxlZz#D;)QRFmN#GH0^3O5&pr(?_*7u9h+^5W|>&Tg!FsEw<fJ>
zL?u5hIsM?;Iz36Si9+^CZ%W6lI5s|B%GS0VFb6lGlTa386BB87_a@IU5&@kBG7NT`
z1wlLxtCS|-7U<dt*aaX2G!Oolz3}G`V}c(x*ipQhWO#8gzY!?c?L}5qC9>o2EGj#k
zGsj72UxF-~tn0u0d7?=7gD_&2qA5Sxl){>bdrhMlkjhgHm(yhJENaOV08Xghzh1>W
z)wX;|aUNH@SMsfT<|xsUR49(~+mMW%`wtLI+x3NnyzlVhhet<LPoIiAW3*EkC@4gC
zb$9no7Hd)g<j|gYLpgv^TmVkP*Szf?$&6G~xqv?MpEuX<bXMXX{DQ4K4Q^cINHHJd
zrsae)%24PGLH2v@m2m>8{dLSocrLU5eCq%2S+ENI{A_JVd6v>|#paWGVYkx&Of~w_
zDIu#m87@@>v5A#ii`D{>I|S8YkMH#x09SIAoyz8Aa^<C^tgaZ76VP_ky9Vfj6Q}jr
zfe);{(Z;gr1XW-E7ZG?EeweYiiN0ftTv(iLE(?Q!+rin9G^a{|jXTyyeq3QEM_g>4
z<3Arw=qh{za&K%-6-=Gay3oo@D+Kqz?FJ<0jQkOD4H2eK30mi94<x-y(xR{JQcKVB
zPoo=)UsrJKPR*7FTLlN(hfHmat<KppXwTD^uZu-9w%!P@Nn0jUrm>U`1`bkfhXy-J
z3cU)Rx1Pt){Je4a#pg5@>tPc|R<SA0sI1HLRE9tYZfcRq!5?{r>+DU%D?87lmw2)8
zXLVYXn_$W=6CZQGjz_rC4VTzizvjE?c8LD^V~@X0&m<$X04<H)wuJ~Ww|}VLo|2zS
zEJ1vB-zRb`b4Dpvx-|O!sQdpf`Stz+-KX%Zy4=Got-EHJ5GcAVRZcIS<S2MOib~=a
z+DDiDh_Bd3j>DRaLf?dfP{GV>jwgG0c^QO6UT7c>%Tz#hq+lHU40TTLaMir)ucth%
z33j?|m|}4c>;A?R{g+*~5JWy)U=WgVw8LDHdRn#az>}LbPI1u~a&kN9%X(tBgL6M~
zp``kXlAWfTcJ}D})ThenX4I#zhq_B*@F%ZXR8;=h7<X-C^o<clGA;!%75;POjxXQS
zAJZb?k%@L4%t@_4h9bmF%|<nIo^Bp~i*RkiO4N26{?5!``^n>{yUaznc;V|A`lTFG
z-3&QIIGOR*cWzO2`n;nxa>>4N`PGTAT5M)~)I5H}jtk*?ALglEhOo-F$nL2$%t5(?
zwd&oiR9<_0|8w^L<AW*g{lG^AI{;fIC@(v3Rv5f@`EW5y6A6b%YGGaR@a0EXT#uNH
z6q?MK^*8410tY}h3MJ;#;C9-6#(;&76o5%jOB;O`uk&P+3oNVwG|C7}KYh5FC`bZ^
zrN9h0j<NN+LdWL|Em}7b<r|7&{><uQ>761)>|J#svg|Mv)xV|_<2gzbviHd{jS@c>
z@S?i*@x9%Mv7@54DC}~fa#_`2GCeeMkW(fXNLY<R*FnWp(0@?*#&Y%OC<I;yS6d1f
z3C$lIeGH;_990Q3@59}E{4#MDN13g0;ary-8|yY!ib-2{2*wDp0rgyLgmor$Qi1DI
zv_ZAa@Cw}*8q~KDl5!HkV>eu;h&ts+R@(1``_;_Q6EZ4=yi5l^37d*gnsKhHw;=Me
zEV(acvXmR89Cojdtjb>LFU2NEI1c`4JO576{^h*`P@N4e8HIxzf2;V(<HFv3;)%eb
zCPsuNwt^t8TR{o4K#~eE@goeDyu7?Ve;l2BrQ~*^VJH>#)2ICa8pB{dSri3$8d(@8
zfHW)xx{q|ZjdO3s-kt5b{xC0XruO&uk2_@Y{!fL87d(DU+o&@Kf->5W|N6a0)jHYS
zUk3NiG<peI=JkpV9+IV!-TPk7&5_SLI&P>&B#fVi7WRn&%QiopibA1_-_M)9#!9H|
zh~iRbdxtBL_*sNqKB8>R6q<E#+3=yj;PjJNMu*mt{>ee3N)Cigfk@+_2>aQVO;XG;
zr{_FGshPaI2xk=2XZAN=sJwy)KYzY2_fed|KhODRN!Mhw!*y7e{+RS)*3-|b4XvY+
zoXd(-HOoxFW*lmSw!I292Z}WP8n0<cFu@rO*MbA1#V7#3P<sFa!!0U0y242&CVod?
zxG9mqpuJMRmKL+xpD@*6k;9q>u*<Gm7Qj*d5KQ6yi#<WY;G+s4jMc0WfI=f7B?X76
z(t-U(e;lLD<8C4fZpS##htaaLv&*U}HdV9S9m?nT=4LMe4G&P2iE3}gsp<q@ZW+8P
z{ZunsmHww4<=rXQ_AyQFp~uiVPWNNIoH$c?F1>Mmv15VGg?e<nq&V?z)*;?84CY;+
z_N-E*My7VUH6^#7;ZG6?SjcgA<HK+wM4rP&S|Ad^ly0Y7Z#BnF50jCTOYnYx_y|7w
z84mzkxPXu7$lvmRIGW#hjk}oEmPyWJ)c52Ahjp5gl2ZOHq2D|tXb+5me3O_eW^rl0
zbIMW6CQ(|q-qe7YE2Xaf0s9fYElGUlDhun(7d(@c%xp~%#d>B+c@knxIswo`6BKqC
z5pnq09Xy58mAESmjEqw|(~TTWugh+*)@aG1`V<#OSS^=la-?l1*=;{}Vr7X8IGv^p
zInDtvz{F0Q7tbIoHMLl+2YBT|Yi2kiNkpe?jrpTNOtSn}hifFh7t?39H(w}hCe=;M
z76CEp{cUJwx(y&F12^lpE`ZQ*a^txoZ>C|A!n>&=$@_CuF#ATQH~rU}VWc_*9?5Pj
zl4th~9@EWjyvm3i$!f>KFujD|*XH-UKIcxC074Piq*-qOz3BJ|GKpSZ$RI2hR0(M1
zzFBvC@!pl*m=jlnW}&*tLRCh3VLz`?Tv1C^ZO6Fzrk_dXRlX4*bX00G0&t7x9Z=YJ
zG&(x^Ihld7BO=y<*f_Lqr)G8q*x!uq)Prg0s@%Iv#qlcoDzfT&0g-;T6H8I}u048O
za)?;t@c6z}!4CV*TJ-O;xv-DPggKguilwYBo8$b6${{rCGG#>0Qr1&kysE;O!q9K6
z3!5H}==Hi`3YUEzHq{cP^Uh4}6zGb!cV=mS2_nhuzN0LWkd^~vrWO6$Ccsd7(WFwW
zv60)%`aO2}&u{vZCjIRJKSU7B>Wqdngk}s-5oShA?k6)Fhz*m;w%mdJj{)XgmPsDd
zrxP$cdjV@cI{^UU?=bFb;%g(|V9|}`$v!UN0D>Y*%gYaSHkSaK6cMZHz7Jy+B01x?
z@lT4m`S}vi3AmqhG-E!Zz`g6bU?`8ALr!al)iHXS{YsXnr1?}sn{hLM?_^w&`f&m!
z)D{kkAOP^zqn{K%W;8^l#m7@;i-kqE`y%%5)c#=jS&0=JMIbLqI=n$-8tK6o8SOOx
zI6i1(k0z$#>*E}Yt*mEn1(E@p1aNj9ARtGUAQGyM=axu>UA=MNe2t&B!@|N+bWk=!
zOb{-#O)e%%F$*R=ksM2xliIWFOuB|h-}dybTn!^SW+cF(z!tm_;Tybir4#xHteb4l
z3A(WVq>D;&_w-*jEyT$O;~dCc=ssyxM8Ydq63DCykhi2jcC18a$x<A_<z5zf_gw#H
z6*|kzQ5G`yTo|Zd`-(QHc!}By?{VMgeIejBm)%>?jG-LnW_Wp-;}Cs{RGj-#CTk^j
zwYO%;LcPY?U|2AOtA4k4CnvQ}bA?9Pg&k7kmg_LSdPMu)(Bqa}y<DK*u(Zm7&gfvF
zDs7aDMlpKgpa#pRf3xXp+#&OS3IN;i!&CRI{Vy&qX50`jX-N;az+~ao6<`%PI>lJ;
z%v7`3tw@04b$oG^v_-h;QKcyS<8h<D%(4Sd$cTYy^S+p0!$NM4-*^9y;$y^PDk~xl
z%qChz=dm1Os&>&DD*1+ibr{Q^Q)kFc39=p_XLJsuDp~{d-wA2ld^-n*DJ2|q2_KyT
z;r8A2f%uNc<MevKg)}{2*!A!;yW`8zp75|MRH|9>L7p(U%Q$+`p_R?E&|LrgkbzJ5
zs<v*-ZL8}2_KS+MRV3QdN7kZugBlh1{pWDj4VehyxckpgI_<^QaWT@~k?R2tNVL^l
zgCwZER{;UfnzEp%1~pW#UD)3|(dG~^m>yGCyYIIn#&uT*pc1{Ec+C6@=!FzpRw^jZ
z84Dzgyu3HWx}O!ib=rj~C#t$Etf4q|gBP8eObHdeH?+p&UaI&7*Dv6A<qS=QSJF*J
zTY8y}L0|9=`hxrB)eQkc8eX|7RsJuA=29@qku~8cdBi;~QVb52iUO$Ws>88jUo45O
zbVjH(W@eA#Ha!|nLiAo{36I8PL4Z#UMQ10TZHQ<pzp(Eug|w(fqN3~9Z$iI@TGRMy
zIM()MKlcmMj-KsHv5YgZs|}Kj>~BbAklck8%7|$dV6z)z?N*H5F~|Q@@xLE3;dNk(
z4^#cZiIF>WZQ38+#YD4%xP!qUWa@O92ygS!slv}*xMhKXT+iLkb}d~TMRkzhP>>*>
zP>5zW&jTiy#@=HO)*a>zl6TkT>J$A$tn+a>Epxf1JJeLT3PdW1!hW1u1(kg@mT-#6
zPKmC}&jj>3{4%%!^eT$d%lkF!1zvg>z!q>ni+;=-$qz6q8j)~OJAj8x4cZkEhL~!q
z@JO(bGpXAqx6aA+w-aBb7;iTC-s95aYms^Xe7P{8s*BYmj6%+c>2#*rdZ`?_);`>X
zGTr?HWBF49*~xfK5&D~?HBPtsJI>PnBNG5jpX`NACh<61)jgld=5X>W<gvI<O{@Y3
zb81}<=Rq|m*tFZ<+#PBd?`-<#7d9d*cmkpG&T_TC?8<CNUvwOCd!zqJQ<mF5T)y69
z{Hgak-&e6O5L<H504R|@0)k&~eSQ6<=!j&*zI69wk-CA(35L$2fe7}xzCaE*RyP#Z
zQgnVK1i4V+h@=r|^F#RVDx&8iqpllA`=3ZQ)%|&L+Z4%(FvcD(b&Mxc)>qA%9d0+A
zb)=aWT`~!Esr@XBr1x*68pNW|j-FX>@`wxUv0hT4*$Z#?Q5!cA4c(uwt2T`gyoOju
z&cy<Yfd8=gFVMXLg=H450Zzyv-vmaO#OqRVz2Aw}pbH=Kf((u=Gn=t~1>-JxI34h5
zK|PLY6TT7~xObv1a=CsJLNu2<*PBh{{8bfWmRy?}d826S1DjcN6M!#c5D*mdF)pdW
zGOg(Ox1E|+EH!AUxHKL4KKS-Xx^IOqJqsN>>Dtz&GfA-xz?L5Tz$&gqb}<%#S9p}X
z3|jvRcS#1HXx0xz^8V;(48F2(gAP_I<R~_qYhdB3v(_WXz<IJUChisuk2C(@v8o&p
zQYy)A7FfWl0GjzOyOn#Z(aVURTqknWSJg3QQ<YsM>%~2pi_+(<Qd6FNMA;_0`0Ne+
zc0oV$D9fX+F&)~K`E?jcXw3-LVGw@PfJ^+*5%u`xSDgx#+7H%Y;tLI1C6%;2&CLcq
zV0X~%Gr6v%I`@HeGhaZ!pgS}(k~!!#=FICG=kBJ9`;0Zl$$v`$^HJ{m*#rb`0r)Mv
zOGb(8^e``sy0Z%-)T~&mzGD7F`Kci?U!Dhnp1K|kn|a9l^hT}JdM@(>C_-)8zq|y<
zzT)!6VfU!--J<X?+@7OFfas&+V*0e9rrqc?u^dpxZd^2?gJ2NI=bCRKxQhF5?a8L#
z=d`Joa1%gx=ht}j=#e2%P5?3uGe=1$5_5E?mrT@;tjG69Q6qM$En7c5h~Z(vgSW7`
zh3>P*FW!2eo!)_oYb<BUop3p8+P^V(`&Cv{&`yMu>uDJfz5}g}3XqpdxpYu@q4X^}
z6L{Kx_(8XL$gZN{Q6eWYYq_f!I>M;i(lq$P?8MC8;J~2y&+&-@(<mz(WsVY-W9h4|
z<&&V<RqXWlG{p~O3sV_t57SByxs+N!iql2Y*?-S?BRd;E4QXHG9?=BI>qm&f)^Wv5
z6NeGCd2_O3@C4q@RGU8qnjdlCJ!}LjE{CC`EoSOGw2{#mqlnBB<^~PeA~pXHE-uUB
z+)7nkF)=fQ^qsM5FN076Kc2;X=4$Uyjj?{`lG&8g=X!lV0_#T8Dehn=aBB`6zWyGb
zRu1)C@sQK#ZB%4o!M5|C@fVZ)gpYf2{zHZhlvnORsB?kLR^K^^H1HR5^%94J@6Q4)
zf<Dla28kiatWNID0qTW==dzJ4$TJ%VF9k`r-2mh3__U*1^VrLJ#w_O8Nh(38!g&H`
zwB<%Z8}0J-8;Bz0fE1z5mRAP(v)y!FI%RIZp!An-S&F|hT=R77TIRbm4)2n$(!txN
znQNp6;^yttm##LRU}L78KKT$Goi)@0<Mm0z?CJ3`0Bu6tSI+{y#gWI!n+se?;XezW
z<SoH@+^(VQF&ZGA#PVIdR8Uf3@R&7O-_hga?n`SD{<MF2?6h_)2p?H5J+)~^uaWT9
zyR)x&!k&p&q_n?Cu62SJyW~P?>Z9I4@d)Hi8&*0x?j<^z3bF~VS3pn#_6_`!YiLx}
z5!{sRUT9^m`x=WRv2AJ<=SFx&cWugf&ceg~U)T3(E_drQZvNhr-~qv=S*1Iis4)Gd
z40l>O0IJnXEsMb>6G65+So5YG?gB_jSiN7TYSQ_&A@^={$O=Zxg0RSYi`u^Iq+P^a
zz6gx^a{Z&vdDubCqrC%^x=4;g@9U)=d<n8;;+4iPEU}9D*suyrUP(E=+xUK?$RiU-
z321xFagN(*PnIUF2c6P(-N*&f6xXvqZu4GxNwlpzz-%B`Y&u8@Di<jG{8(7DQ7^0G
zPQOCR=LG~KOx(V65p*VTf(qW$5&yb9Yb`GDyy(~M<629}etMz?2!uVJcj;s1*G{}{
zhDD?&XMuA}G)Su|r8<^!lUt6>s)PJj7WJUCa8OU#0+T!}rKf`%5$~?Eu}PQkzF3`y
zd9A$-jRSncJpk0qy9m%x<dt6LwIP|B?3hbGt+-PYSOrN*RmsECMdHtuH*?NEv}v>&
znl08FZU}Gpe%;D>9wq-!n}QP->qJ?FV&4L+ZGi)t&~XTK8!}Bi*!JX%IBjny-7-k@
zPByP3D9)Ha;hfLcAduDmohPWJ?SMLmhWhrJO8VAVq*FFJ=MV6bmG`d(tj<&4AF-q>
z{zHA@4(fdRHV1TgCeLuFi|1g=VM14T`0BrB8c=$8Qq|)PBqgbWXJB|*YS6(ACoR(d
zRLW`9hNeB+b^fuZLRh?gz6sC1!8Rbe3={3=!&UN=%CMoWq<frxxWj+znd<@#uZ4#q
zo(}pTaU^cieRp$GR$0=a(%qF$&7={GaIon0_50z=$RKnx-5vE$v8|iFSr%{lcU|#z
zcYKLL=+P-oOJ`cuo1~bLrNj7e!wF}hbof`MJ<i6;jIE0E&!7cK|0PcLq=1r7$L$?+
z+A`C#V9AtyCAds7-iLU;CSu6L9h%68d()LqO}(&ui}Q$Mr&X0`uO3M|G)4HNt4d3r
zV%v6indwn(dVe!t`4R=74BQ_E4hBZC(kVZ?RpjUfB5x$-AykgvYi=ece6aJvxAVoS
z_!SE)Yw=O1AnB#qz{Nre^J~j+>qCN9fSB(3W;%!9RpyCcsFx?H{jK$L4YC^^W2qVp
zmfdfvq{fXoO~L@NXHKxTta2lfN65?LBQLwAJmJW^D&vu#J_&=jVNCWmb}tFldwq=4
zdhVa%e%L$N{PxrqZw{UiB55e&7}`k~-Zn}Z$Uwv{7nXTdCwsSwcN#L-l_JkfICwd(
zcb!{fMzY0cV?M*UMfKmj*<G-LtlVA<y?ZNX`ExH~I^>cpu}G@R@X((j%;vck8?!w!
zs~ENhyTj}X$Hv5j<)KnFklRR+&R;;eSX|r%lbl-7U<shL!Md0S_<ME}%Bp136+rAn
z<AUtAQjVW#4Ka!oJ{rc3{37(?1}Ggsc?+k%dNzmiovQ6T|IGVw=17l-ygP)UAwN0@
z{fgAn4e$i$g6qrBe0UpeP|dpA*6ws<dR~~RO|I#b|FAxFRAdx=!ztd`pJNbgVi;s4
zd(3^sA46hLg2s3J`kVRtt)rC~ZzQ<WiizUntFPnMhx!Cd3b1z6X6$cMV6NSs^PH))
z_=ABLM~QfT#`yRHW@1kN#=v20h*fFRp;Qc?smrgMv;O_X&SDekO3a=Hz{9Iv7|QWy
zDAfOde4PbU)myjrrDP*WBi(|4ba%Ialp;t;H=FJfgiQ+4jewMdG)Om+(%sVCNPdg=
z-s4;6eq%7s*oQL?%73rD)|$_p&+oxX!k9Vpcrvp#yX67g-+TAl$v==UJ6<2<j1mGK
z9s)~RZvWDrxkp2ek_XZMIxd0Gl^NiRaLM>(SoM(<4DWDfMewI-*2tK!WE{GynfjoB
z%J2@1GfN@}{qo&{V4;2$0e|t~H$=>fmSAM<0KMUm0R$N-@4g%kjE%{lL@HN;c7J+r
z(d8}_lj#I<RV;JX=X{Ka>?`o|*wBNhO__X;w)wE;hxLq|{ImS+6<#G?ULJN4UTP)r
zZoM=rZuafHHjr13{gGt@V$mxV87jEMRsYGH`KNMDK>`OWSoHe^M6#heHf2}~$;rFP
zHn>a{gx?C@EAJlOP<4NVJaK+0vXuE!-(n$96JvX&J;z8^e*HEsmuQ4rvZL9q|L|w^
z`xPoq&Q|d&Rl`c2wxdXQ)*7qn(6b8R%P@;$un%}TbZ30wBj+%~VBzHz)^+AcGs6sF
zPDynC>HSqt*0_&_K03&h1&smQW@gn9Hi4gj7VJVoPWg*nU3PbiSKUeH(<Nf7+e)*a
zmVZ)nI0R>7q9pwlb*n&{)41k)IL)gEY{G^IXdf&C<%TPAWHO*XLRHIbifcG7<-eAv
zk3CcVwn#~@bN*TP{K=k;`?HQGz&1s~4nG%DLpsO|Ff4Z!K>`p0N~6{{IBC?2aD984
z-@XU7P?PsGuk|HTmo#1$komVx;tA3&yCLeLQC7WwQ^FnCq~dzpEEzIQ&>nx#>I!%o
z8!L;NTM+{Ax|ZR{(rPbtwz*eXe<RKR?yEH@YX%;?g7mj`#hr$vM~nN+RM{;*(Oqp3
zkRhFm{g1D{Sx>{7dd)mGILLe2B>2#Fpn|;I_f66#Na7iRrQ#5|@O7Egsk6Wz9IOEy
zA0`A+MA9(yb5ra?$ey+H?;(%gfx%}BHc~-933cSbMOW#rn|IU5Sj32KIkP~;%<64@
z%bO-J0I*B_C{%JQb{KBJ$>i$<6ls-8bn1KR*Y?#D-94xxG<{`?#1py$Jts%ZV|CSQ
z=Y38q(egrI0AYd%ZBYzMo5;Wn1BAUy!}-w&N>Rm}-Va>2aj$4TZq=Jbbz-A7>aYz0
z9fr*x%4^zo=}VVO{H>A56NosO6mO*K`u6FstG<cgxBAmfBezw`%-!<@&Yu!2C6>QT
z_eX!}*a>O+AN)s6^%Bx3!2o_!Lo=4RHjKa28w66y0qz<eTl253GG^;eQ!Fa=gu|YX
zY#tE5cR|zv)xxX`f7Z1H@TM?G<+|&te>|F=$wYbfSjLVy=!FOeOyfpL)$YsT^-ti3
z!z5|t5>R@C5xk+?B|(cO(sLjIFCu=x8WAK126Njm2uC!-*~z`KTamt!+p_-ZLck|e
zI%JJddU1@<9<yF%jwKs`at#st>XEB1Vu(skTOSrA?U3`zO_}puj!q=@3}XvvLXqY&
z%KmGSruwp)q1P#2|J=F%ypZ9ALyLL0_;@L0$n;&n>y2a4g!20`3R4NypN~McU0(pr
z-{e3T=10q@2r>6B?{_ooSaSZ+$kK?Do`hNOX!~e$MdroXERt#?&s+P~1MwFX=*!1>
zH<1(hy3d*hzxuFL+oopDjMn-P3*{wO7rl8+)7dkf+7f-&bBu7BuwoD_wkY&M_@|s@
z=&pxk>uU9SGey;Ao!ED;xwMiTCl8@T4Gj(|X|=t37wOkZAr=Qu2b~b~1J+Z!sT#z-
zMfwPK*8_c_MIv`e&oqiK(Qd&Ll!0^+5l+<VtQ23p(>gbMo_zWn<Y#0a$JI!~Akx^1
z3`pNg&wTf9XKd;eU#hbfwOnAgj)+46gow9|bskkQ?I%ru;MzWV8XtujN1&`Bq#7;i
z$?e{vEp~uOC0oF!j;~cFX)a-ASnK%Ag=|}2E$4C`W0EGBjsZs)4_zU%Wcq;;>`*YQ
zj`F19a58ZH4VY81K}2>9sk_|zTKQ&FQrUl9+I6|O=b#>y@^dZObB*HBsM*C9j0u!9
zLQ46<5S9VL_l3&-4{!rbs{z_+kjSvT!Pnt>(C0SmgJ;bEH03>;e1ecVk2rnu2^e^@
z7^3Lpq}&M*vqC9Z0rSSJx8{=0uD1^zRw|4EF>IQ64fp~-H++}aaRa!-UVjYXycyif
zhj7$_FNxZ25XTc3k^KLGFacbJ#4UgWvMCKH#*BZ@Gd&I9Guy{T#>K0TiW{(+rb4wn
z4?B{ChJmB4kT2opMI7T$>l=p>D%?t)ZeF(|qv%&YHal0)e#)Bm{mRa&@4D%M6~wx{
z;l9(5^8Vjq-NE~cp5ywM$IBkfDPvXrOO0O-+)B2tp3jyh{JC2}T_G2we!=TXG-d&3
zJ^6^C1;|?3@@24f??Z|94K*_2u>iZ0t#e_){;+G6tMh$wW%Gi9LkdgDFkWo$$R)}x
z;Ewz0wm3}Y7WSDDEp^^CqrEM%6yS4OFj7HlWQ+V2C{$M^qWnfA<Jpk4W8!`@7-`y^
z`s4De)?HF?jfQ<23P?jQ!m$4QcSYSRMCSSf@!csyFkh|p;Ek$k<`oO3d&#$N%I9AC
zi&*|D0C9-AeF*Q=hVZzRj(AC1dj@Sx^H+3*nzXEf)(a*RM(t9i6uZ(--km6A$CZ5F
z<#wghsM9{d%XM#L9>vh{Wnp7KS$}aJa{7JY*G9DaS8u$M>l$b{8KRV|DG`dK031X)
zti=)y4PgS-1J9yFkdX>>m9uOAh*xOc;$|SEK~*j6f4WS5CQ1)7`CQ+kbHOSXui+m?
z5d;W~5h5COQmFe+@CXhPUI94=sbo!`_7{ub9MJQNhUxEBcCE<(Qw?66(wRcd@{>j~
zA$PNP6p~I*Zg`-Ce|*9}eH>IQ!D=EIW<s78OYVK~?ggtGFt7&Tv1i_bp<IYEn;WFc
z^>8`kP|5)f#uL8oIBJU+dbS;L*rAO2OuRBaxV_=%ZYLF4|JCZvZPWSuPC!&-K*M<?
z&HEm8#`lY_C7&}Dj~BgqyS?$UsLtu_*YPp_+bS3;E?%`%9s<&o#2F+2uUl!a;cov}
zcfRdMzoKk6`k;pGfcv1w{4w9NrP*`A{o@abq2cT4KJ!>?(@qJ?gr=anUK66zCZa}?
zOp&c4A%i}t6qhy{_-awJFeLsfc%7Yi@*(BU(!&8b`cCQ&UpR!6F<B&1vJ29#3>q}t
zwg()Rg$U=eFncWMv12HKH7RDGQo3+MU(9%w_N$!O2H{uMJhu<yo@sdjz6dF0mKO%O
zw|A_y!^N%kpZR7p0>m(cEN{|B?yo{~)1bOsfo%@H7KB{yv3+r<5yRoozS&Afgh8Kv
z!=l&0oJC>%ghCo~(dsuK<Leil<<)%8^hCkRD#9R5z+|U7_~JM84doZ*O*zYJHId(|
zO#)9QdVVywu#JB;?>WVx|CEXTT~c~_!0FFU|L27aHyqk<g%>sfEI8hDV^CBN`BD(D
zJdM~@7L7ds(9;OCKe7BMxst9{ZN#K=?2N+XZ2bhyJ~h4j+U{b_(sAYR^o=^>&E+YF
z_>at4MwBP``L1j)=CEDlt?Zu%huBi_c{m`V^Le=Jj>I4S&e0i9q&7gPDbs=^4E2nu
zjzsCm@pj!$0Wek1E{pm}pa}zmVu@Xs_;1ibOcs|8!Zf`<NHY#`=z4ci2X(m@(OvSI
zubypxdi;)L_6J2+kicxc+i_n;jKtUwW>woMCUY#L&rnn}ySa`pz(d)O$z{g6noxy8
zo3tp4648oh!LytR+b)DXN-~!&4DJzk5B64UWyxE}B!EP-5B?a(z{+{dtE_APgT@34
zUIsP=ZLphL3fy?IJLOeyrR!H48eY~&y?6x|kXsW!xBqt68>}Z0RgXg<q~#Z$JS|)$
z7NV?XA8hY2cyb)*GFGf@E{O$_n)`k#x&5<2ZZ#ItkF<Rd(@+kDP+Fw~2p(>;WiYDx
z63^>MAZn_qOl_;p?d}1Tf@pWhf_Y8occ1EAkBb9`60794^K}qz@xS9@Z4?=X8<lsO
zB3sfC&E+bX#bI0R8$+YR!cGPO&$Hx-6ceRay3MS&?1l-DaOh`Kqv;IE3#~QJo$Jum
z&fNvJdKyxXABT#@<wVQDKF0FmaY)M(>)@D1tHqS)EoRcNUFts~KDQfQPO8P{d-+#o
z{#PdetQ{Ii^ANljxhr9aUt*PBmL#Q)DB(G(bc~Y^xTLBX#P8aA8^s9;lcH=-3{WX@
z6!8g<X0yc<8PqWq`3p)QRr<?ukRo#RBO64cKk0bURIQh09k;}(HvU3i%~wP=gAB_T
zbCT2sE6YO&5wH8~{X$(?JI3Bo%Kwb`m<b{-4&&3$B1lkKf2=^a@sl-2Rl!J`TI4nz
zd1O0P*1<d2pTfs6T>RK1Rq<We!#1ZQK-^-f-o2>CLyy>Fw7fVcEOxV5qDuQ<&Ht;6
z0qxFZP6vIk3)(E1yeNrJ4@S(Wi@5y>cLIgIE+N9JA4oj|*b@^I;qfJFGO1Y!%mM#)
z&7T`+v%}f+E~ZfuwOjQX{N&Jvc7Y)vG=9E>`FUW9OV6hBB3I0j+90c(Uv8zzTtaIM
zs5|&GK_AB+@U9avB%`4n?Kg{!rVP^$(IBC?H5f&*STh(-3z=vDE(7)eZVDx)=aEYF
zv>(F2o-#IMGs^-x6S<CCqd#VOj8i={x1Z0fm2EA#|2327cd6KH^zB2~%d3=1(<!6N
zL$f4vUXF(+BCl41c{03)Ckqgysh;0%o%2asrC#~*s|HaqZn425!sWtS_D8VLR{4`-
zXh#KvK-s@72}kI3nYU4W<M#M!&MFz!rrJw>6QGx}1+#Yh%o3zhK)d&8^t)s%+dQ3l
zGW4fPMY}ZfpI+xbU-)8+rc1lKf6va&hG=_6suJ1I1D%$Qg$Ow09apsB*HKRZR#|Ae
zp3XlHbAX0>jN`1uxxV=ZplFTHT0(Q5{GiWC%g6}|gx$~U4ucDb16oX1uYza9FuoIY
z5c$3~P7RyQOjSSD3#vJyfaqKuXxRzr><E1qA$HzJ#Kj)9p>ItRu0I}QA^tU{#qi?6
zpfNZM8tXx!-FY+6Ad=EYk><V}{H%v_8ya6yay)K6RE5DD6D2$uaqc+zgnq|EpziVD
z7biR$YCQ132T)oWd5OOxwAL?Nukp}6E_qvnbVw3l4eoo@E7NA@0@!<a9>q~P1d>O&
zA~$l2FpGutOp^Jf2m&_oG`BTE8AKBEyEe^r?#f_CuhM}>lx*ZbK9DW=_k<i(#a6zw
zE@COMHnwhiPz698a*LuCr1*y(s8Kw_weioAii(bx?fz62TNrRGB=~HLx_6<&Vn@18
z@6gPi=wLX8B{}o^k~0jpie7<T0P<oFbW0Py`l>v=$kb=L8_Gw&a=XF|L3ef$O@Uzv
zT?|7z2~88Q#$6#&8O(xVQ_V0!={DMf{()6{M|lh<qp+xzk;_NzAM{L_RSs=8P^HDy
z3(>}R{Z+sJXq~expt<2xeRFO-|HC(V6aagi=DN!2^qWN6UEi(i5scZj<@AjI0fYQm
z7^6@9z%VxIaN$x1sqWem4V^A7U|Zo!L7%ly4A86P@Y44e9z5Dj;<d{JZeR7zkK`-_
zqvoWh6k(E&cu$fk@RCTIQT(0`|7@Xw7#AT7fO^0p!hG;F#bJPr<#3TXIy#yfbR54=
zovhr&$&ReaRT1PqRc1lC?^)5l;v~Xn=BF!Zsrp!2&p!LtT{8-@Si1`br&!4a{lmee
z>44C=wmBf((4!kZW~4rKln4XD-n==ts;NZe>nTx-tz?_;`Rz8cr&oX;5W9VC-LD|O
z<Ejt0f43tV5Ed3DE7hZ24QSDX!k#r#=x}pDWY#m8D&uYzI=H>s=Se=ieyky#Jy*5q
zG6<C2W1C@Nhb(=kxqG@PkN;;1?zRVC$`DO3N2m^T+Pt5!KHu6v)@CSDqtT{egIWTn
zgmfQl8|B$<`2hb{Ev=yaSBv5MoC(Wy8d8QoKGCcR5cQA)Ox!@-=D`hh;z2+>3O@YI
zE<yL}Ih8Tzm&x4yyuFz^nDfiG&I>%4sf_^WF*av4F7wx3{}U4>5BGV-?=M{BkwemW
zm!V<AS+`I}PpH`_;>hxt>G)P@@>k@HpL`$D-4OY44p%X#Q<y;uuoeKGQ&|uQnEaJo
zTo!vjlFog=e*h(I_MTku<`Z*s+>jx9w^AH>e473MF_eR6kfT*<GOjiDFmQgor?O#y
zedM`E3Uk-i_cykVm8lBOc4>_BbpxZwhszy0&$^u&2DrNvf~{4pyWUCtxxxH-5gz>@
zAcR|y^pgAF(_=3J+0V!ms5Q*3rFLLKVR?Y@o%!O2r@D+;*W*Q>6_8w20{v16+6f!U
zb;VmMhvH<kq)4a*h3~E%qW6eqtQzP>T%Z`6LnW53cFfVD4O9=_y?6TEf@)BY`w{nz
zt<T-hATwl98HV1!u2jk@@UDSZpg;QS-eC{0A9qk^Vt&Uwj)k8l2e#RytOyhPZNZ>X
zAyb%vN*`c73qZuiw{OGQFV4S%@vth_;7!o`Nm=Ex9Opg8OZ*KGGV8eIn-QsaL2L*z
z8-S~@U=J9j38U>*A#8@7lT#oCVD`DJj}?M{CKZxo<!kj#GBmt=E1g0htfvZsi6iM6
zSc@72ZTbC-r&9+QvQ&7*+Ese4C$;4q>e5>$0#XN*O`Oh1xg?9D44Qr6qF!s5>%5wo
z%aXxx@T?%sRIP?#5rZDf+b?IYj7+QFT1fSjqy4#n%wa;@^%?N7nZ&bJ{i(A|x;oTX
zy%<2ta8rGba7kpsjD*lm7lgmW-j`bV*kO$CGlp(3{jpx^c^-bSqZf4}hO#wpaC^#q
zJ3HCCi41X{uXkIGI4N_on`VVr^-WO@7N^meIuXz_t$b3<qGYXr6BsF~tuyMsWpa*9
zG!SZ4>VLm2WA>GPQHwa~#%$Z=)7zB&?DB|lJ$cF3DiPNerbS^2B0Y@pud1iI$^R^o
zKQCmS!qvA+>2-icit#XXQK|?}zt%4UO_z45gN;OkRTQW9UTLF018-=OFi!Rnbl>(|
zBIi+z&tV6?qT5MP#z&+9Q4Z6A7(n9+@%j-2e<t<qZ9D9geBgov=ON0dC49|<$n}B5
z%9{|6n-ZU!ud|@d@nza`!Rwrlx;+Xn(C!yDOn#rbl=NeKz45+0#j|om$V<of?dN<t
z*H;|b`g8c7=Up^{kItO%R)9TDl$z!M5YM%ggih6uNzOs>Umo+7e0IpHW&~r#>9P5v
zE(yU<gP)HjlkPW@;5CV-XJA-`c!@;P9P?z#*Q2KY(?d8iL?4~+j%*Pwib<SNV1b<<
z0bJGe@|PS;vDR6{RuN*T>vbFXtv>z>7;<XtYM<z2ke{ThuJB&X$}i9;c20rcwc%Zm
zA#-aN<e`2`5}*US2e#$hOp;qe$O#auC2KOM3!~(n7M^1oD1j}8WCh^Xx%LIxq)c5O
zwsMFV02Y#omWIgf!rhfmr;{D<xzNsizY;)Ao1;MdFp25cqC18M$d5evjfV;sz-iJ8
zq+rbg3z#_|P??S2TRGO;mpw42A>K7{t`lJ{LwhwK{sHOyou;45%!OA=GbdVcOPRnu
zIOp7;vQI;%ZV2<>ectGe05XrX(WAW0=H|LG_(Y@woeR)8ie!2#-?+_WNnZSCbUcp|
zo+10a=+KJVgp?v%_&2W^*EnT4;G2yyoTk3@6?RF+4&Ufn?g&NFyU?fni0%<a)!N2P
zX4UJF@uBSj|F1*nha1)-h~AS@+Y1Ck>Q*Poboq#oM|zr9r7D*>U0nE{k49S^U%so_
zVeDof&sp-FpFA+WD8TL=EMgY<@<3I=C$&}`Oqt7<Z%AsUr&2;KB`H?9{<^ySIrzZ~
zQ3@Ki4z$eB@Q_$4pU)S9!h|Cp6$*FGfpEXPKd;jU#%Du#8L1-IdPy-^r`h*TopoF<
zS>Dd)gms2$K1AW9g}-MMr8o}D<zSQo+5vniizLp1_f?TxQAGT=@m1U=47x#Hb`;4k
zr!f`g<O$KX_SdJM4g(&&)W?TXB&FY0v^x<R#+9wjGSs5#34D{9LqsnvQH$gNpRn+_
zW>98P-#3`~L?GFV^=BY_BAK%Zvr7kbvj=LMz}&}xr$mZh2F9M7D_^i<Gc?ox8)~sT
z6g~)wwYLmQ_qm<old6xe+ba0l$DZayDK9B%gsg%+e;y9*ifH1#U+uGfn;#?CM+QHR
za9|Y{BQo6y72R3`OP_JLc(vI70+&j(-mC!}YOB30O`PNqHp)2hB(vv;?akE0ydo(a
z%Ye!IWYpiQ<zef%Tr_Q>HRi_We%Kap=ch>~+14OshP%dzt?^gjY(^}lOaM@)gB5J(
z7IbZse}4yHmdYAaiffOp{M`Fq1s05LsnK=HIG)dZ(vC@`>N|W_3kT&qi;L<z25r@)
zgpiYQZ~#SvLCA#))Gq&xQ6~9RVXyB~5!SMy-aDmTM4dIcEfXQHN`+K2m?4CAK9pX+
z7jDmZj_cqiBwz%T(8Az6`8tgvE#m=H>&}Mo?+4ywO%AgCIyjr(m=NmsyRJN8ndGjE
zaKFK)xo-jALlIgc;TZD3=bE&2pWx5h$*_SSHi#(_?hY~IlD;Xqp>y@dgb?-Lk=?jV
z+g`RbOyBK}-4UfmVoeU^Lk^dgAee^-<<>LY$N9-Gy0gZ);eHtmcF$M~SK3*T*hce<
z+Z2TRAKr&K{>RtjPt6rrYBWuB3!Y`D_Sxpz(GT6otT<6dUEp2we}ip=DE=wz(E-(6
z)r`&aF{_w1RF!JO*ZJbwLwP9e6{O24>CdWyFFp;2UuEhL&YYPEJTKi1io;|lv(Ph@
z82~p(PAzx>?PX_Af4WEM2cmqCTq67C(kn2H77OS{bM@H)d335hIs}n#N~s3$(Ys%x
zLD&pH4pED5p*g1XyytPh$!{=i8~rZmbZ@fGrNnN_p8^d5tCe(#Vz>@4?$KZTJQ;s$
zn;2$;^Gu1;S`gq9kkSu)Ay}CV#IH$^{b+<SEwoB=nEW@BZ5uahzD%??yf-C=;0gfT
zFyebmmE{$5Kt@6)*=Ao{yl0M0K?5_`h8+l}wdUTxm?f{_2JyS^v3`iv^D3q?9@-&C
zSd;SXx@(*A1}_8V`7hvJ?CY}W8oj-(o0xK&UBFZlPe6v#zu?=SuIx=Xm^>QeDw3~T
zN<oQY9;gN~ojnk7<ISFske4>n!skdsrKLolhG0BAx=-IQNfn3{yv<qE(u&HWZ~o^g
zSSkNtGy4_omxagry&GIzfeBdTyj<>F$whj1{yc`t@R!kly7B+<_9~Y^b_N$%X39s6
zC38P?e2y^}-W`1h-V}8aI9_ZWpqg}kp;z7Qp0@8Ib?F8b5xzOc#27Wa7-`3TfQPPz
z`%g=o6;^GxqqsrUrDbk4iTRLo;5RL0_n2QXdHbzK)V|T@N8b#2(DX#y3Sh})tU=zK
zo0Gtq5Ue5v$aDADA2NImyW-tr&)e@Lwv7SsJ3fOm*6X+a*7su?LXNSyXM)tJ{&Oa|
zuY}*cLAnPsfJuG2%q2+8{c!sAjOEBsD;E}(03xFDQgIBFEkG0-E>{?`*NWgoIk%sq
z_{I9E^UmbEl%rPC>z+E@rPDT2%*44?q!>D6Q|av9DrTtj!tAUzbzZ=T!^O>mGt9^0
z2fv43(A>@Org(ICrM7+iaOOJ&QkpPTx=~ytV8>L!4Ld^E`AQyXRbi>qr>lzAnl5!J
zWP4FiN+4W0<S)FcfSWka3}r4Dbx0I??Y8b~D8YJBw{XL3z+f=y=eQ32P_cJD+4T^y
z%Jp?cSK0PqUAP!W4YF0uzCa;@4+;Lc#KkT2)G-vX&28#vH8q*ZFt>^{fy}0^1%5Zg
zh@k?y)QZhqJ~n3pO9ONCZ<k$$ylkLB6+Ukx8-<3wc1@by{>TSJv>AF$?>C|k1KUH%
zQXig7^;}<t=ks%4a_&}ajAn_;e2g%mzaxJ8xH^7p0s~&=<D;pGiI3yo@Zy?7$Q#Sb
zQ~otI>3?dyQA#++!pV4QXW=|?f||XR4uxiN%%%_%){pVBcBO2uESRLTsZt&7C}J3h
zsH8^+Dc~^800gcbzmQ7`*?bpMmU3c}8UP!>uq^{fpyo7304@y+-AkUc<F((fQhcA$
zs=WWehvjl0*-_Bzds`%YP%Tie>~<9xzj_}9yF%-$-sN?9!ZsKIr1<BQ-R4%N5uDT9
zPHe+3_GfF$wO$^AIT$V_XH0*w#XuPF2m=Zpu}0I_R}GE2UW&AiMeZO|AKqQDZ*QVR
z3*Kcr1ZH6GKEijED#-f2kH<SI#yJgAGO3%}xlr(3r7dK1iu{vx!6cXB)*`3?wJaYZ
zme<%ObDA4S#$vvH{mY$lm93afRbAo$c2&miw>?sAtLN}iV{N{mkBur8e6H<2X7*#6
zwW{DwVOTyt*ooL*2g&jDG*1HSjGulswyq5C`s4e>lmqUL`E6-A3x(&wQE#aA!-j=z
zjp70mhH~%n-48`A%yse`!*JP;2G|hkj0)3v;6H?&9)JJ#>Ob~t88W!%y6uTGzmss;
z$=m|mI%6qCDGiOy{+ZPxYDkMI*FBjq7{C5kt^7Yf<MD?F0bw`XX>>mtIfKt6zq+eD
z?IAW!!kFmrl_zLmuo@+EITi^BQ(&4?E@qzjKbQdj@z?q9e|_xxU|9aj|FeQbx402I
z3FTPDfX7m2-ayz^Ti$WfYpuZ`@y>@(m8t&*X8o;?>c75eMu&LKpmp+)QuQPWcbIZ1
za{_|D)B|CoMvQ0?RaR3%ruj87sXP#|`-d#|Z@#Sm`gs&^GzVZ&$pJqKqh4c*;J@D5
z!0RnSI9p|}Ck<QQ^Kb~*THV<4<h~#<XjdG!_&y>X3mM8X1_5lQ_>uj8-syk)<NVT!
z++}Uvr8z3@Gv>=N8Fil964QZmAT~SuDLo@&%<{59aL6O4-S+l&SrwHi5->7fX3|eI
z)#z16_#-JXQ7+-%p72jIlvzNX4L_T8HTd`c@DoL}Fb`Xb{tQ2Kum?B12FpBW=?83d
zc&jt7TqTX}ZRY26?wP;ShQW^s4-&OEC~KGQlJ#_~x0<c|!B=|ky}$l_Y}^jRT0Xy`
z0iiiEB@dtS@o55!QFt>O$dk=cNTfo=XU2U*Na~pK_rLsK&pJ;LUboUf{aoq|JC##K
z68qL@0%rkr)?juFcmI%m$1;e_<}Ok65*|<M?^QSku$Q;#$v>+8u7j6~2}v6IJpE%i
z$$*R;g0hQye9_*~sh*!|uBb{QoYPRaP%BntY|QJ_63oWL)X&%!g|!zZoc<D|1DcW$
z@>owl1^Ke?_s_xjY;>)|I{%eDNXGbwS?2%xr$wl!^06H9t89YHef_)dU0>;QBx-XM
zdp7CtxE?wt=6|u=?m6K7xA)@DA*?J0U;d<#y!02i)mjb9-RE*i3vP~~lk;)}BC9G%
zDF67kwer{F`sX+OzEk-A8X|KtI3Z%o(tw|i-#xxmQ2SZ3JK}A1!TE4$IxhzfmwmkB
z)iT?EyDRU1qYP}sByMYqS^TAL$TMjO9u^xLTW9d$eVPhTF1o>EsWj|f$&OJ{ROEW!
zH97f)o{o;ycxjo}``R^;%Q8-lxj`-|Y*R=}So1RR0>S%7PcQo^NYQ$0?*I^SHlN#R
zpUR2ZR5>#swdZz`axMw}{$0mHBVyY0Yk!cvtADz5Y=>tplh|lT#x|rW?`O<;f#uUy
z8y?h4>d%@X?KE7m%dPN-`1s~suPUZ+@rZM`kG`CDqm)^X8OSjXaPI;KpZ{E}+FvK$
ze?K7b9Y1$P(Q=~0{(+LeSOC9IvkatoncW*0v;)4Yv_Xit1}pGerAebp9B|nKe;z#h
zOBVT8L)`<EQ9bzRXD{P^AFuZUUQ`%@p{{P4owkCKQrymtmEXUvc}K*MdyX#%9R)r<
z0mMw{><nq4e|Yx%+NhT+#G?C7M*VULC|AB7>+$rSbw!Ra$ApJAMYlu`#JARy&=2!t
z$uVikSA?K{<nt;hyjrr9$(ziyHr?dh;N2A7K~xjAyn3Q`dyG%ct#)O2@mr(2r(|6=
zeaKxK&n(j>tjBtoO6N$O1cl8IWI%V{TGgTE{`~^{Yb8GR6BUh?zdFgv&r(D;kL6qz
zd8r)lBq}`o;z|%|JbJe{JBc|EZ2k8;rXO`85bDg$%^$*%5H1x!u&4uqp<4H$f*?V(
z7mRFw0TR}5iJr*jXnyomBLHKRGv!I>SPMCe@Ti6PN(HIdWlT0q_aR?*l&#IMJms;h
z-kHa?mpYM>d2#%DH(TQF-KSEM#ELz;m~y?>Yp>;O#^&jpG(Ln0jF)_B^tzG<2Xv}E
z)W9lfe7Z)u_5Kr$$+pZZh2-|B*1M8Z(RMp#{g2Z1?{De<3fQ7;6uvuRm~>B&Lo3%c
zD?_)MA?s4FxRP)nr*f7S=6IYIVuy|!KbL&p8Mg6?Rh5}Q?!(s9!|=(_{%+~{eL|#w
zm#oQ6=z5lsA9ue8QQ$c`ArH&V7`ip+uJjRjqrH8&in&2|1iXwDgC$BqkQhILVbTp&
zae4ESF3TSApRkRwukmu5XrG_9X3a#=PN$TF5L;8wa7OT*^yww54=*&{ye$6_7j#TD
z?qo6131gznt9W-VWr{Zp6Xhf%TiS&zcxN*KnAz(pE0kL8@y^=wjiELY6A*7uX;&jp
zPE9GMBS83nE(&M>R(F4YQMGB9-?<leSk#mGI0pTbByWoojqMa?&Y;U_MRxPux^Z38
z-6(YSO2>wVBrAfy|J2k#YC3{;iyM_6RqaLIgldF{@aSFh)k;?o(9y+gv?HS6;>mrR
zWJ#mj#U1|XO&J{V5ywZjksiM&RRS9#Ka|E;F2qNpN%2sk3tuv1Xse1B4BTse)AtKO
zZJ=f1;!gzAvRp`xqDefqHe2Q+IpF}y-3>bYMgRgiT%FimsJWkfWX2*H4g2LqoNd{4
zc0WW>9(EH_5zdQFLZd=HY%H+|TUmK?0Z!Nir*ScCc$FHJX?p;KWIxpb12OKinw@Ug
zyDiS6AHQ3>r7VDKp;eG0!*R8UJWjcK7KctvlV@I-75!E|gF*wo<Ab|rNqf~EgWGnz
ztoF>FYD{eY%v-tnz%QSE=BJm<Fu%R^O3(i~g7-0bHE%5mn|MZmoaXn;cnFKIT!~_w
zB$s0B>}ja+xsPeWQIS%Uv|54Wi^E$T)xsH^I&}6KLshNh)0uhq_Ly>!pVH^2rQ3Wo
zf4k}Z&o})p<saOJ!su)(&aSpZofX-N#vd@em24^{Lflw%Jwe!hNV-U7HY+aeSdrBx
zAR@9Ln&0=arlzKCx`e$;f9g^$<As(f-<LbrksAC)ce$ew2A{jpK@P*O|9uz|q556-
z6E25GeA<XHSq=}68jY5bJzIYD>1S57k=Io;r-)4?;+P*>q+W*FE<s3eTne7$m(57;
z9POiS%H;`b;&jgribT*K!Xk_y7nwf^nrsBbA6&pKiUoqskJb;U;gMJZ+Mpt(wLS&x
z*S@oh3s*6{N5VL?3Yd&-aM;U|+f>2U-1l>cKL!T4Loqii&4$FQY!_@&811Y)q4i?^
z4+&MMw#4`#MC%{}%{0v|hyEDAx)b?#>?Vrdnoc_a@h0hVh$Y}iA`p#j9a&`sB%T{1
zCQsVk8(@rnU<YrJ&=Bs6P!|o>qDc5Drmh7!XLeNWQF%1Fy$pHPoxp9A^ymqP<o6Q|
z@6Tt+_R#Lp)jZLVsWft&XK5R6rkYMH%k@<ESK70Tt=g-0jQIBi8BW41;%Gkz@Fed#
zH!zvzE={bTPUux9^ZtL|Rd+ejFCm!?qYOr9Um^lwSXiu6{+!8}0pSc#$tsF;bViKF
zp(XLT_O9Wr8z(AR(sE!ihtbejw8(mgb;@)(x#dR#0haFO>YOKaPuU|gOX&IYUdNP)
ziBY~FnP87tnGBC!8}|AuyPR&HMlXNy&Le%hKfz~zHc-)2Oqg{lEz%4-4Q<hf3;r$r
zzQ=EA8ZA9gp5VPuuqdmN!?DYw&SGKHCB60Bx{jy5^488-Ra2;4_L@?yuq-**&TW;(
z!xeYDxH(_w1(G7mJ!>06uoO25YOobV*li4OZvFrT91!ReMRCol+rqK(#VI%gaHs;p
zphl8}*;RpbSToj>_PaCHJY9h}PiJvT$-27ipn}`oFs~tLUZ$KcU-(w7uB^SPgq#Vx
zB-}i_H#o#W-MPamE(>{zgM&k(H=>yvky`M6kQXJ7gPH`_{{zyea(BO{&csH^MQVy(
znarWTlQn`_#CD%yw70DOJez!-`h~(U_35dgbV&L6MkQTb4fmY29sOkEJTJ>7cJgN4
ziUIw6b+1+RHaM3o2kd}L+Jt<@+ruj*gjeD})wO@!flp(7BM3FTGUZ4~S<%BXZ#q<_
zdA6{c9uXig=(h`=gp)ZLpMX=Sg{!Z=G3`~y^jM)LM<Oup$+@YIlR+O{fT4&N)}3aa
zj#lw_8+|hTUpk5I+XK0;(|(qhrg>brrOxi-vs<^TmtRg#*hKc-2(*Pl6aVXa3lf`s
z#XdpK!LjwGOH5%GnLg5zL*bFRBA&IX9YreVTBY^IwI6lX<6M%e-}TZvX4UUP{8BN=
z4D?{@RuobdLOgZF_4H*%8R!agr_I4wry$N^WGBL~wt8m8kh-TO7<#rdl~c$RRHaXL
z^?k%TSscqdqrQ&hOyUk}`oYkbv+%@<$+SEIG^BB7OMaXZ_Ma=;A0b?1+Ofj7*i6gu
zeSCL<HSDb^&*ar|&5}o6Hqsfm)y<KWfFL&$R%Xfgy>FfrJF_6*#6vB7;QrJb)dNFN
z2KpR-q|^Vp&qr{=6Hw^tA$TP;OoYb)WM}YMdy<K})KxK;C+%v5h7Z+g#o0UZjb0n|
zh_H=WX=FYF(Ca93Jv89h1=wQ3j*r$G5ZwlMr{IBkFk`|?CGDs$u>l*pyT_G9QOhJn
z*kx0QBOd~Xox;ua{~^XzN`V#t5?LrVG2U~jTk&XnLxuez_L~{P92BTtg^Izvp8d5&
zuywIlidSV@H`8VLHg!??43#3Kxa6C|&rCoZ-=Eavc)SpS{`|buq(A9Zrr?tuX91>H
z6joBMd?X{ONrX0^VETt*L;A|3M9;AWggrk~byVz8sTCI<IoB1TA=pt%@utff*F^l+
zn)sI|wuJy!;?Cy&KB+_cuI-M%cmG(@{AD#dZP!Z(ffKZWFtWtIhZyYDS=;wINiiIM
zuW4VxJLx?`DKKH32m%n{&c)92oM5=t^#GJm=5yy=4yzcJ<qA-_gk-1XL=I&vV*Kr;
zO6#d_AKY)L-)qr2k<^MS;$9S$lZa&h9bWz~e^+o!F(^G)mb!5r_57I~^?E2%grKJi
zfu}PAy*;RJC~M^qfx*g(Q@j(LG{~wZCOOmw70=_D-kQu3l<qKxu7V>*!3YepN5F;(
zf09F;0|X2$ED9=Y7v^g?0_%__%Tiv4i>g{>hHdewx>sy5TSw1y7w_nlxnB()4So7Z
zBOp?zzUt499%HkqV{E&p``dLh_x-9NKRMIfTj%K1B=pOf%7xzb=kmE&)p#9dJ$cbr
zsZYJ8PoiS7jWkQ0zIawz6wme1|INi}lo<Z%_`G*-XD+8L_rmvW#>)|Mj{iQD|Lr>&
zx7Y`H$C-Mm_!4_z{C*ZHcN&|S{G1OR`8H5sgT!O50bx^9$RBJ#cJh~EMR4Y&I_+IA
zj(1=YgMw~5#%^$DzF`JJ_|7;nCB-Trd~Y|Ugx}AP^s@KyGrea+jb^!J&OfY;MXzq{
zFEiwhCNRjNI+El0XIME(?+`a<s;YnGQ%iL{AvLl}$4S|pbkPrjvsb_JK5FlJ$+x|W
zrfNUuai%jY_&HIBhE#RBmluzldHN)}JmS6u^`BqL<RAxr>;>&Vl*S_hDruiZeg4hM
zpVC!-$2<7fr@#pJlH%8Qf`HY`5IiBW^duar)CvYdr&Nur+C!8r_w3Zb&QcY`_F!PQ
zTGOUba;#%^A4>zP^mf3l_)TeRV#$tzs;a87%e&tam>VSqZOJcde_*jOFH{ZJuxc$)
zwTD+LT>EF!R>Iz>c{-+Gv8_E>>*29%Qfpbk&YiW>36iUesTwFtt-UG~Ai*-s`Oec?
zYj=9aWx~-O{dcuQ-V1mF-}saS#-gOkPfz6NKgGo`m_FufGsl(+Lw|JNKKcKAjY`0a
zDdJlnNn663XUE4;02LUIsh}Cl@XU$KYwmkCYB*gbXK@EIxhKWF-J?0`5NJnS=9x>Q
z_b2d&#aB<nG%L)atmf+pI}~>onidA+%T18yey7CpBj8ID2L}f`$BkG}_<F8uq`KDT
zqfD$9yX;5B5`Ilh@~GaUzjL{?E@&UKHw2uRbN-oG4nobD)ioZQ=+<TNa(DGXEc*_W
zCbr|1t8g4%jY;0`Bl>bf@nWzqZ{vD}%J-_1e}Njg8>vglE{^Z-&P^vV{b^YKrxHTQ
z!4Kx{s2n@RtxQ5e+W+4J0ndtr3~r3M)eg%h)K6bDbJPuMGg}CgqrjwZKM1BmooCFM
z**7SCWC%X=NB3DEv@g>bft4e1D3$*bOt40CS&A2X?5Pb54#wBi@J0(0U1^%i#Q4GP
z#Uy$q$}Im(Et80S??TRSTZ=7shZX@E$*?ylE}i`zRS;FFbE`24TU|5g=T;`dLC@P1
zYJ>K;lGg*Vz0x|2Dvfk<wn@5~2ib5qDXXSUt^<i(eT5&&SNpOCF>3_b|8)`n@9T`>
ze{^r^%3YFG3Oa86H?y}3gan!Ip8zK!eA)$WFtL3tx*3LS%lXR}tRi34%Y{l6X$ty>
zmM!^21&2^n>u*u%r#Va1`HF$0#A}aoU#|lLtKoxs5Mm5iih+;XeDga2XMqXau;TBH
zp5PkXf~JaBoSpP2&HHkb-K3A;HxP@A!I6$-Nh;|2ZPEX1S!W8k&@FPXP#ugLXnn8F
zdY+eza(cnJfd(t$zQVSH`mfu<!QB$8neWcK4EHg{Q;+w{wy#c0*C&)`tY-%QY<Qw`
zI6s+*aCFmiV$P7mbcafwH!$2Bxn(+Pk`noop}_Q<!sk0_jI3s=itLQq@uei+z5A?U
zBc2VBX}X7Ef!0D_Ja^6A)EiJQqLB;FGKwRD32wa}KtBzSUg?gawr1m~bc%oT<3k(m
zPp*d0a@(dVuWSi<fd;nl@p0IbQZ{ae@t78_orGzz@qNZQ^Ka~iv1%Vv#R|+}Pm^f^
z0zNr=X+^7Z)Unt$Q4~44GS1e>Mt(~Ay93@y>OmrsCqI8BFI2g`+i}>*iOY4iQ+^TT
zzD8eMTs%rAyF^=XTTguyZ`v~b43lR^D|pjIccc08oWo~cf`(|xeE4;e(vT%VvLm!1
zgpl4y5a#dj^yg2MFi<UFp}qo})p8whcl0sO)w#q2OUO_k7@hs1`j6;ZMd@%N<A21o
ztloE~6gU`k&OqGtKgcLR#F};AE*iMStW-?pA7jjVd_U#`ToimWY!1MC+uQ7i@S@N^
z5%~>8PeENfx^^B9;yt!!69^RMgLoR+lpwkMWrO)!R|y7tpTPZ*pYfCgRX!SxU@G7t
zwUJfcuFb|d>K|n}Jp93BrQxW>Q0_n&T<S+vIO?z+_@uYf)CGrXLJ2Y*ValOgL^7Ql
z8)h=?upwz#4r?{puJ-os_Fx<&j81^?;Lhr$(5>*pvb%2s?S;}^h3Z|m+OVsIg_sXz
zen@o5&16=Ap$181NXUDbHt8lwUn;}7bU-PohpnU@C7bZ~yglNsMvuHYdf{ze?PRpq
zTk&^&u1L`$Oj$VvHbMw%LP@utnPixu`^UJ=g#p&CTv+LAW(j{j*<^0(r<9bRTPms>
zxp7-R_MmAAZ{=ly-b@Mpi1|cI%XU(9x2C1(Ct4vd<@ODh$jorP7l(1SJ0?m%izR~d
z1JV_dOG{5$$jo(S+12-64Gp0^{@&!SCdK^x{LT+0_4Z3Mi)ial*r?Pr!QJH7+8VzU
zMzu{Y{J<y!+<C)#TFIF7f&NovR78r_h>(y^>E4%e^Wd%2;-$j)vjmlC;F0@w;Jy2s
zh}E&Oc=***xA46f-nN&2b@P_uiC`dn!BAh|`0M)|p`Ma;7qw)_>vq`dmc&CKaYO?-
zC6OIeiTKr#SjIUo)0u(6l<R%x<YXiQg>)*VaWl~Nj9UYg`Iid|hc{)viL4wzID;*h
zcP{ommZ$tKGZ{B7eqNdH7;ltMMf3X2yR17=i(+hIC(05!7EiqRzfq(!q)`-z*<P_K
zW2EoACo$i;Y}C#|Hd%cNMZ^KROAtl$3pc;rDzt|$IktHGu5HtB5Ao$#m7gM^rahl}
z<5YWEwP7=k<XrUW=8o?LXRgW*c5NyE2RcCH21$GK#{ucG05N*O8A}Ksh_~c3a!8iX
zZvgl#!=ELP#U7U4OSb$4jMWj#%aI-~HPFX*oecn_#SStM6FE$k=y{~8VTZuZ7!TUP
z-$w1gr$Jq;I1e8&&GSeuT5Ed$ym#c~S7;Mi*XO-K_gP2oA~MWxK21rS=HirwLN#Po
z@c(->ktF#(!b1QFi@3wx?ZnD#Suz|<$Xxvu8dnzL!eLsdI|QdPSy=1_?TL?J7;Ra3
zdEK5Wmh<(s%}!X*)~3mp9%6C`)zZNmWo7*WLUtpVnoiAWW4RwkkQ4>=a|!+mNG*F~
z!=es7U2)pL`y(QR&j#WO@7ud1l}JYgKfAfrIsA7m4;uagemB3bj9t!bMuOEm^%qH1
zty#e_V-e8|wtuhgp8J86=rSB6Fz_}f5ohZ6od&aShRN-&fyIEjzF&ZE8&#v>C03S%
zKgZLbHIVzO{ri`$6#d1Dbsnp+8cFJXOU4C;gz$2Z9*gG(d#G5<eeL|$b+5*obarQg
z=6e@~rT}R#Z23!O{r4AmYa#s49@s6Wy3A{?@8+2y^wfzw*Fx_7*M`ri5B$&dL~k1>
zeY7otcO_lK^3+8L{qP;$Swka*!^=a~!eiT9M3mHw+177NrR%J6eGL(eSsCb67g5vk
z*bD?_$*|}KM~5FuRo+b2c$A~<+K1(rs9DHpCYFAm-eUfm*-)z~-JOt<KvF6j^n{eE
zcwPQ)s**f<_(7l3Pjb(6NFcRa84f|4*_I*P+cbV4mllZK)CRLv*2#>TW!VM-W$F!2
z7Y{plcOUJ|?DRSOqpids{~++bMvnrHnON5#^`V=&)q{uvAeVoNjHCdQb0RyJJ9UL+
z^Dea?H`A*3VxT&VmJ4k~GhQTppjS1T@_c@X5@9+`$fGq>{feEvM64#n@D>aT#(GyH
ze}0z21!|cmr40b?5;Kr0K#ULzq8nblAwb2!%ib9n7>ENc9!cDcz_z?%kB;%s%SD3e
zVjY1gFhui1VO@#drZ<+SLqM};c}Z*eni|EtcczJb26_j=qGW)h=;_-ktNgy=)i~?%
z!o-v9i9w@_P@_l$85?cG82=GK`+D13G-!iJyfcw0g{oO;5qn=f*c4Q5E@`J1RL#ui
zLYu&EZvN#ihg2!q@-ZET<X^XZWhZzB16(|Y<=@&jgyE5Fc?HrRC$hw)(=~HV!c=h?
zZ3M+T`}!0%Crh*Z{^7_k6F6uN4$?uCj*30)=xe}Oiwd01`PkyGQ4?zD>c*@Q(TuU}
z6XOt=V($F?-~#p6OWV0uCP-ta*rxqw>0cC&$FX-q<NQb;cDIIyrWgW+Os?d$P>S*2
z-L6HgF-3hON}We1GhjoX7Gn^%B7A2`5ATzb>jDqD@n|u}%qyNMxp&44dK;EqRI|iQ
zw#3WN9`eNHQQ!UwLL!&Eo$!fzPp-#Mnu>Z~)hyCN!3b(E*xitpd5JMIDV<J0IIW3B
zB7HzG_m`6iJs+lz!k1>jyTFMOD*`fI-|xJ$IerX#sOPcEl_=!l9DEd{^^Lxiy5aZ|
zOefJ};)%(gCNErfsv}j)pW9Iu0;FHy)I+vuz&A{lh|{Q6%S%ZFM3L9b4JWD&#d`+b
zo@aox4!M}*y*U{%2CfVftmPUI_1b4+pW`xX7lZ|8&;e#`NCy@JEfGFXfpg*cz3B>z
zl3!p;0hILDrzJjInL_985bSjKE&B3D12L|&B1-`{3gg^`?WeBbw@cOe2O0%9vQl=P
z5fGj808yx0{P(>f^*Hn+OCmj*c<ViY6Ob_9eYFRMI}KW;6gqqz$EYcCr&|zA=CIX@
z7GO|welU-d$>CzP(5Q2JR^3FXQsg1DHs`s-{iw0VXAaJ8U+*^aE{&|)aee;vxM%j&
zh|bxxWl1bRdle&E&Sqia-E%6KW0~g~Y%l7sNbXOxrkh>c4qa63auEAHKZQg!2ta?O
zqe1~Ly*1>KWkRaH^pj|0g23?lMpsui*n@7k@$B3lOs@lEWYj|R^uh>$pAF5fSCO69
zk`A2a%hwGB-V>M(`ocH|_qqoMdCYfr7bMQB+RQn;$;mtq#9X+f@%3v(zoFg!Dfj#?
zWt!35{miiFbNYQ4%ti^R4NkTf8G?rqM=W|FGM%4Z7M$*TGR#t)n-PX(v}};vS6=T~
z#LjvNrImw_t1t*yn?3U-YAY%@L857xo2;~^ryFRIh+Wud7gPB;2}}rxx7uu8B6%+>
ze!@-O7$qXcqkeWm#Pm_`Aad4gjdb9$pznHph9_mN<f`M9^e7AulWpGNOlQDr8F%^r
z>YO!WNj+fJOyzfCUq^d~I7dL-xq9x3VX|wtrn3#4SnG?zSk(>yAl{6ns1NM4_C55u
zF(BF+g82U4O9yV_^@!x#j<DE0H^y|=<=`WbAubC*tNG`cn9E|UC~&WgTXTG>)Xp2v
zF3#o>Jl<yiKCrJ+5(uw&skwcShQ5x?>?+}w5FyGN$j%*ULSVp;cyYa@(Nvb)hr8zk
zWtTKEHvR$Vau#ccZ6Qbc@*pMkV+?l2XN9k?i^48Y_ff%mNq<a&@LmEY0BoaSpdDb+
zzKhwkG#waPt31dxp=}tD{hD{ZnAmf#@yf<Q`~0%4R%3SEproNr3G&!3A}-#87!jOM
zZn<{mjwN07OdmbS;9F%UaQ8JRe-$cBatAKB@RGHExtK$3dIEgn9B8a?$0312$TiQ!
zDF`>UGMKeRV5^Irgk)x@^E4~MFx={S_pex|AJQ=*oB#zS(K_m^jlb@rvFdBS!s>N{
z-pSQA;6yb)uP`6^1zg<0t_v&YhxeJ#BG*e8Rrv!a&}mOP?x5*Cl9Yc+CQi~6ix_;Y
zt?dIi>Mc|$1g}DaOewQt1Ak%}qYHnY&{X@n-V9`S&evnI2;tErAVE3|46*RCd?%lO
z7kvjf!*Tp{0ihRE{#XV}a8QS}J}iMtMo)qGuhNT~gLjk|>E{_wJ7|9Rp53h0hNi_)
z`9$U876)^4@676(e&w7?EthG0a~K=8$tAz6UVm{AgZw3<MwueX=>JwNba`i7*AgS!
z(skA<-eJ*QZ{pEw9e=*iI*AED`Iy+bKIkDCGVX1)=3krmcspQH3pDt(XnYm)p#q+O
zyJ8Fync*pCf$hhvUELMm36y*B&?k%~c9VmT;)KBfzaIxlyGoYK$2j0hBJjhWR}r&9
zD%F*O-}?aN^^-7?f{*azT?1Q=hXV-=w+KPIM!&SoX=X(N_uhBPxBeZvB>o#5u>B?k
zFf=00ZmX-2^jjlI<JZkF=Vm-is$8{~La&4`H>jy?+K(Rd%<7+YUGYQi3crR5(dN+8
z)0<%JG+r#D{sxYr)da%`HuO-;Jh3-OQAsm)Qw<{XI8>~zaK$dr7m}Bzh>}j2Y*bJY
zPw+deeWw=UX#a>g_SqZuyBJ_*a=oA%?WdJjLU-54Io6Z5tpO;~vmqYK?@^gq_bC;{
zZdB&ZdjK(Y4|cqWc>%6)iD%Spqyvx7`2zGY4VMY&hHp&E=Ucq6l(M0<?X^pSQ1p8v
z-x}+MP`-SI(yRoe0--oZwh0}J*862-72!GS?6ZA<9g`>Rd8E0N@f-Z;9zdl_b?ER4
z+z#4?i4xWm2O6&2cX13)=8>ppk>3P)G<Smk!*V*vcs4nY_?$wrcCrLmV`v+`GwI=s
zwAF&e%!8PO={D2+yA=ud96q21YJoTc&_D7(WL*^Uc2&>mztCy-3i~#3pPg|8XjchN
zPEoBhBncva)DU#J2ZM-WP17uw>V<jm(taFSGV!M%o?5DeMSda(?IGKOSwI*Chs&P!
zaWkLQB<nG2a1af!!eGR?Mut3<ZO8xggh?v~J|#NZurXs9l{m`;veP@m65r$*uFZXE
zKsaU?;MVPgN?<oy<Wc=&r-MA!OjPvv3w0!qkm`n)u8H7P$ML7w>X%C7oIhepsX9Sd
zWwm@Yz1K}*kZb$!OTwQ*>_0?I=r7Fs#KU_nIfZqW09@3Zf2DX*3y$c&i&$I<=1&;l
zsPPF!JS(;hFzr<XRZN}@JSL5pU^ze`=UPCHDP;XQNZSRWYJ%$WIuN%)GgB~>ZsPOy
zo`hyR{434p_V?NiWOkQ=^Q)}rMbJwrgiQ^sy>p|eVWKPr<Lypi*uu@8OGGpoVg`um
zRyFg#mE<?it_{4v$Ykx4NPzj$p_rTH=JyiM?~9?KoD0IFC?S%4NnE|K!9MW-a?DLJ
zS+f#kM5t}!@0@#g6zc>^AT8!zYzO{&*g0$o?pzUZo^TH2T)+2t0H;DefMvh{`3+5t
z3M4Tvz`ECb5|_KceD`jl9<VoE-|YMFh_hr<NsC(5f{uWijMMycOhs`-m@foJDN#SX
znFD>6b!mL^%L{z!WeNTRkT5-Ig>eTbR-o7sZe5e!JRKrP*<Mr-d6*roWRH$oE&AM1
zYFrSaF!UPsnwn37Um%X-7&v4!$iV!ZD$M}jI!PND@x3p8&+si|g0QQ44~%+${}47g
z@$drhVRU_=1pCF7{0tsm1;aM8YOh7DKTMrn1F=S+7R;1~ZDNiuxuE;3Q%On9gf(?6
z`FuUNB5PzGX8ULFB*O+JK}>dtjP!5`t10)*9KP4`2izB=gkCB`N%C3~$k%IEaKlPG
z00IA#MYn!3EUr~TI3V}}9tDd^+MuQ>;e%cdIL#ASQV8sjuB;)%Y)Rb@9<%hVT0HYj
zK1v)+k2V$Y(beLzrPmp$%Y#fj2jZ&n$X@>^jRcLYg!6`T{d}iAyotsqM4#7n*VFFK
zc}7;l_vd5o#|^bcI5q3dOPh<Z4hJyGXQlqu63!)`F%tVy_O_}LJ9%C#<b3xNQ^|s5
z#Ka*F#*6v2*yZrx=rEVG$k(R2xh&2N%P*{$Yq#-VD9BqLnsNJE+X@-<RP!IZ<L&%<
z;b{K?1@~774|j_Kf)tX8k4H*gyUFKMt=9_~^4iIJpQ^ost$aj&2~OB->EztfddbLw
zaf#*d7mO;l3hpv$!i|RHBYSz-Mrz(*EJE@Zr+E*{Q^R9)^Mx-(Zhrj7m7o0asQ21q
zpDN2B7QTTC^10m1-Oj@k1THI}j*EIxJm})Ch7DDr7%=e;QC^<!vtaJU{J+A^Ix4F5
z5BHQXATc!3Fd~8ok`5h`N=S!*iXaVxbP5R4jnasKgp~Bq-6h>p(k0TR_nmV*@jLgN
zds(c-{J~-^X7AbWH=gJ7P(mXoy(b6?ZBI|nXq^}VeU`K-o7+$6^y*zv@XM(*(*95Z
zu-t$@sRR|Td;2m`p*s{?O2fGsmo>f*n8#(;%z9)KnGcJ}xu>@8aJT~Pz}J-|TY<dD
zbfM@-;&8ht=}?zB2#y3+tCd!(nHKGd9ZEtEw3()F5#l;b8Rv8`{nKVxG^D(G_YH9L
z!UOytjs#PsfZ4jUqSY%TnQyy1I<aZyDl<Gpj|o<&tJ%_rzmo#(nry59PSq|>Ew^BM
zm+xJyu$@(9N5a*iZ{9tN-EVG%)i5X1EpYf9HHwnVK%uXzWkM?mA@_cQGW|`$(A3+!
z?y{2c?2p^+bB*7n^H8Q*nDG_>?n(oZ@U%X;*i76X+rP9ONTW6JPRLoyfu$w0Iqq7C
zws@07aW${SNArB%#|hN$BZ=4c=3jBiN97L`*X1{Mh5=s9+wz1>OCPk6^68`J@hZ1z
z`*YmltPKj^Mx3F11^@h(pd;>_E721fEXD~hglP~-KXgX~AMHd=yrtV_=e<2sr7Lpw
zouk4en<N2GB+(0YuPv}(V35*dN_=r(fLnc=h39;7Y2r}nEaL5AT|!p)#2C(Fy{R)9
z;h5kfV|o3WRF(}H&zrWJ_T3C-EQUf$AGi&lFbz#-Za^NryPho&v$*(*>pKzIsvp({
z0eT?O)&mz~XP+3--&e&T1n%M6Y09DgsleFn9-C5iDw}yaGFn=u&{vJSz@kioZ1DsP
zev;I&$(`}fS$8O#1ex#bDvNH4QQpE2{rVAyo4GaoCNGdmmeOE7gI;}0d6QJZA=r~q
zqHGX&kc1x@;YI0XBCeu8^-~)Yob+UBE<?xZ2ITWZ8OTkh=l9MG^qm90d|vsMv*UiH
zqg?gvH~hr`Fquuz=!8zm;vsisEVy<I0=bx0S^%elkp(_eOnjp3!?y%>cf1&qB1xJo
zjRHf0Y08y36orXV7=;NC_-m=;0KTvC@2xN!hNCb#{Cb{6(2Fu#7ru2wF$rdOlv9Kh
zK=ZBy0I6XhVj{ub5b7x#++884MyLOmn-~pZ#%{iyHr8}<rkLg?8%W`pT+dxu%9a&n
zqc<8RyEd^#dyS@%#fbD@W_(~jn}+4{OGbfpnP_-V-D2YAR0@;(N*xR#uSj!ODLpak
zBd?JUndvS+XYiHjaT+<<NA%}Fr(r=$i@8w&VU<(Nh*s<UaRe8G^K6{e9zM{Nxb_Sy
zC}<XY(n3*qekibz#nvNQ*J(TnXgShq3y3-h-VkZ}_@vw1O*Rldil_AY4PbJDGaHbM
z2_(K7xIVz5RjK>{W#~6e{Z&89-S7cjw~UD0vAuFD2C<e@nlnJLQ8iIYyFp2Gxd*{I
z|101vMNXEQ%1x9m<Trbx(IE6|PZmSAjau2Tlo1GrtM{S|uPOV>t6F2edd4h>JGC8e
z)KG#U#RGqmt^}mU#35C5JhNA3R!2bUKvQ-t;_9P??<Zhk0ymO{pGsa2AezEjV4)?5
zs-B=5buH5Ip>KWNX{fC=Pko)0HR+txNERR|0Bw4wjXFv0qvajBU`MQE%!QLcfTMs4
z{Q&qmPP+k(GHw&x*LDn2nHEbAk8gLs_k{B34YG{gHmD|x3G|8m&JQH&TZg&fPO!FP
z0B&KX6LLW4v%yk5uH6Di3Z9P(7JtmXeB6{7*Kl(Xs&x5|_(Y&H7$7~!p?UVOJOmwP
zhTlc=-UOeoeq`wI;_Q>_KbN+@S3nPg8(*8+-Yn+yykMD1SaMdAwe@28DuLP2mR5go
zkh7!!Wy34C$9dXgT6-Cf$Mmdhyu((XBI>nJAkRks8leNdf6>5*)j&mR%DXzfbg!+=
zLdwJUwFH4&O74XD@w}$tv&LESECj10#)D5Zh<t$hLPJG{JZE{cXjL;!qlF8D8`tnH
zZ2m<3?N#j-arIR6-;W6csJ9sbMlRU#O=oI3)etv#;ZMs(&|CXSnpCxq%GBJl?~SMO
zBy_x@e-m~^pN1*_76(UYSyilM>gBPZ(E{cz%MC$Z_Kh@FMOW)~K~OTq2|7!}<Lu4G
zvZ-U`Ml)qeONazG49jnZ@<2tV;J=s>D8>Xa9*TE61OPyC*KyFlfn$QT<uySJ4!w(n
z*U3VFd=0~xkcW1$>X>JUJGyn_k$m&y_noHi6_ZP2qh+-KF+q^t3yf|(3N_&sOS=@U
z>1}Oo&mYqGh5tEVKqtAAF5`K0oU_TiLJZ|)u03NoODG?Qm&sN#c$^8yocxzECanV3
zq53;+*Ib2`(Xg=mUcEud@}avDsa}d}ozR_?f1K>md;O$F$05Eg={B~GXZ$X=EM|!J
z$GD=l6Q5HL9$iec=;$*J-k!P-PWO$i38^<h^pj`1=Y3A+&pHCQ;wRN{j`@bU;)>#0
zCq7?Ymr}wt_<9__Y<F4HbuM1WN2lmgMPAU{9TUF6UerfW)x{SU!M}`G9@D)`wALfH
z9Xk{_dN7o;irm>Y={t&qDcVRzjpcEb0MPC<*$0!#9bCZ;>5n*vDWdsBwfmPZf`;td
z?8NoUrf6{to^(o+FpzH3;&h}O-utTIGtth7{$ReOhqJWw`*Fk1*@Qpk!y1%6$;q^?
zpd;(UF?V6=7Fr7B%>>Vg6{x&B{%RF!Fjh^dn|F8tcB1`z^E?nqJrfuR$N&qoDUzBL
zV9))I>ZucisQsh*EAqX~KI1`nd3k%-DeOe`k5Nq1((N|N$FUJ&FTz%WkaFv9KwArL
zf<9~{eRGr@=<<}$W<k{0?8v55N`9gH73FnkEYl%xmPr*)h52xM8Ie&R;%@tpsm8t~
z;-^k_H;|tv#(n`28a&N{`U5mJNJ&6AYql_lV7bf_bSNsKcDmZgFCZc(Y3|w9=Stf-
z9-QXbH$yX?jFo0%b@jFG(*}h+`<m9rS19%81F3**l_f&tyL`|&wyz32_itNiG#;7E
zH-s)4y;KiPWw#p-*Z1`$Og~eG_UrQ=&E_9VPIdleTlineD$qEbKGL!b2&c1k`%Hkf
z$tZiUx=O_=E9?&;etKNGnRLK#dv6;I6Ko=^XWIln_;Jc9>{P!SxsjoRI^-AnZ?l`}
zuUIvJ{JUk)nmfN;Eu3L|Tr_pllxQ2)N4oU2)yv>(9PCWE$8J#d#dq(W7n8VhJw>vF
zv883S(g6ZnUZ#ZWw@vAXA9=kuYAN=t>CAoQo^bi;Wv!Q5^dgI{xYOk|y(9eD4p|q`
zih9SykJL{iEXP%7MCBvKJ8}n70}3M4Np6OqVd2SV1WuHh$ISb4{PBshh(;SyM?nTq
zzRsQpTy<Y*yR(v<wD{7lWd@hCB}UmCAr=7y*BMJqp2=zncxZV!UponU;MsvCz-+U2
z(lV+v+yvd6scAhkFWA1MsQ0EkpVHOs0>j^<&d_VTU!xyza_0tZ@4)23%Su0FX@W7;
zdN@;Z7#Va_z;dkD>LU?z`!@lbiBFPXWp94E%=MB@fR5WQcZcuG!nuaiWY*n)$O;b0
zr<p>tg^|m%3<7P=nL_!Pd3D$eCgDOGIo~uj4GS%5ws)zg2u<6+oj(V#5>1<>_w3&A
zxIf$5&u9=v|1v^FA_^LXjP)^r1Yd```?UN$5!Kuuqlp<B$kaP0&^XzW<o}rR|Ggjn
z+=<&-vB4qfsEdCV!tZZiW?!MBOed^a%bn<}+!o|S{U(;#d?_nvcA#+JQG-UX{n7pY
zjVl{psCGw6Uru@`Yzb<_m4}~PC+D$w>uZhkc(FOx1QapKr=o(VC9J|K;4#5guHc)w
zj`K9`c$r*YQnmO=wY6=hDDh69fR!Mfe4b4R`ci*<GL>!jvj(M_V+D(0X`sfq?m7KI
zc$51~K+k~2+Hd^XW=}s?>{Ek#{W9=Eg9yT+Oe9sdm^*!in6g3|2ZsEr`74{yw^-Q=
zSRT1`EKc)9Z81=iy6Q^z^d*+8fhv+wyVz6r?JuuSzaJ5B^_YOkRl6J-21h30Ynr7l
z)_3|FSlanI3;Cr|w@qa*lZp#{5%jfd=^^*a>6wece6k%`UiVF^lVFCzcb{2pjQK4P
zs$snZp4huR3JMAzlBxT!$0L58H~b_G{62&JbP5njR`Y#Zj7*Gxn&pN8=g~F5FTtmU
ze;V0==GFmP<w`OjK@ggr1EGtl{VbD4d0|q&Y)TU^k|60L68Ir2q5B|L;|(vOg`QF!
zZmOp`0T#ZqNfw^;$5>w4sV<AS*-90}(7q}<mY(}cHa*(U@dBi<)D%&@Mi_DvR1!vo
z+{xJ6hrOMhcg%;1F=?;Kg;J?n%z+`hYNT6jerI<#PtwrvFia>!D{epY`~*O;MsN%l
z8tf6zL_iAAY(QSr>36k$B6<;>LgXS|v2q6g5SrHgKklK2Oc-a#C#lywzTCvc!mNIx
z{vaTkYOpBejjAfQMgN+K#X6p<3DY07%Rinvk{C3pb?>FO*O$0dabz2eQRM~=e|c&D
zv&@fj!uGv^nm2#wFYKM&FBllfciwT+Z+p-O@+z`NglN%o)1x+AQ>%H;9Ah~!dfI*v
zJg4U>^tf>u5FS6eolQUc;G6H@&hcS)*mJ%D?VgFtzHpNZs=WRPge6BFJ?%i~XVFjM
z;bCr3uUqTB7<ekE?c64C|IzR><&h;TT0llSt;<5FMhFCg2WauL@hWkvPVrc^Y_lxp
z-H)E{BA*q$&0h^LAE<F^WC--bRgu>Sh;(7v4H5o;=z6(zLvW;CS@M^${x<@|wJ=gY
zQYX+8gwepHU!ZCWU^kl)Jk~9JF1Sx%x00Kk8Vz7Zb4XU@WcVPYzW&FVrB9w=kzt+j
z_pe<y{JHwA0S~aBtvPH5oQb?W^0pU%Opthribi9+@2i9N^Z85Ahq5H&r{FnYr?;VY
zD&N6I40lMsWtPM|x!^M%GYY@bUH8C$g-QPv1UiroEnNW15Nac&5KO6z9HT$!?m(_R
zFx?Ght1y(Js488k3_GAi;kQD;qD~mUU4)KIqKFQFPHLsbhuV3R?Ez2||1tg4Bp3?`
zf{jxqh=y31KzMolI9=`YFu0tkw0$Q*g|{$wk4W_TPq6#JGEzixF)x>rLl^b*_Dmhi
z9M2BcUjS6t{g@j{y?acV7vTIbS!ni`#diiXqWD9&79b6H=Y@gM`~ws}3P@GgI%w@f
zf1Al3)Asuv(SKTQ$<Db72*r;hM33T8qcG@<FhbN1B?-Ij5oe)W2<-h<cndeCLfvT`
zB|Y$uhXLa0Ryt#;9(BPRGIH{3<64j#3)n%sB`4=bMYze_wsnVE_V90VE9e*De`V=z
zyp}+_oLJKvi5QQlx9&Ca4;0T?&pH%8*u)k=Cl|tIGv+h?uR?Bv*oTgR-XR;%9EEOQ
zwOCco^j_muLv99@)iG}dkE#yR?U*?5kXxP+(UelqI*`7I%L@!7cJ!z=E-2_usNQVa
zn|Zp)PiM44kj(0HABw1v84N2XnGgSzu4;|VAhI-Z-O)rb=1ISksewk%D?$U+f`HiH
z2oKpLzivcmR}o0QLJ~-wU=GHRi&d#mFN3-3SHscy6()o)+BPV&>WBp;B?44j8g+NM
zUY>@OQY*g(tOq%<KrCWV(fYo8_wu-AE@2r^8YbbQMs>nRJF}Kp(NMo80?rv?LT1q|
zcermB5NhDf%*|&734~MgcYDlqbX*+Iz2rhg6qQov7Bi9gHIgtu_zQG~*)n-|>(2|9
zHnd5P@n|U-T)z@aR@*|bm}*-)=%5k45so+xwt0Q7NNwgYIQ-scmtm#5Z-hjqsCQO$
zKR#s9p8w%(&+LbUb~bep?ZlrTF*{Jut=YWLi4rj6#z3dTMk4@{Gmjbnt=$IqloYus
zD~OZb3;;L16*A3)b$A-gqDQSQRGg#8HNfPMv~NB7@r}Og@*9>!oDRACq9E@lLqC*!
z;z<|+)3@sum02RrA>%{Aw3g|j`7wXaXgo0J=>iJ{eM5Cr`=}fVCtb=Sv?&?Q_@rbF
zj@H=Ui9PVY9=<%@Rq*f4*zbq%=QT(pHxA)L2)qhVVY3EPmWUmtI8~kRJXD)sr0~U2
zk~-^-V$<V)gfV&Td3O3J16br4nf!28@n=7vly6eu3Roe!5E-dw!LtYQ+ca6=__AEU
zgf$aE-baTaijxg?3kO7Zzl_(>pEoh#Hwz$x{N=p7>L;-)8#aQ!_YYU}Dd%m*SI{Hz
zP$^It&UN3=U`QfEfCs|Zqgn)Ge?Dg6-g{_=fC=(+3>V2D#TeubC1QKlg6SwJa!uh=
zY(fHC<(!v08;<z#p(t6%YO1^P^MO>ly)z~{_|R+dZ;hBNiErZKOr_(lQg9&rf-BGp
ziKJgauQlfm(goNTAqUz#8K&HRehUz%a&D4e{T=jBTzam3e5s-3DSmknqYqYcAlHRr
zzhs)8K|Psr3NlC=uO-kelvRMUIEC8FqXNHcx)Y2ZL)PYzkU@PHln=Z83f~3Q$?R)5
z39~lMj-|ije8ik*pk2#x051$HD<JsW<;?Onf2BHD5L@3>E6eDM^6H@EGPLrd+_vks
zc%-{o{LVTrWvcp)%!X}da>PL;*)({hTd&$)of+$?DN;@Sv;KNmiX|ec$*}=Hjr3Ms
z)hu2c|3PC+@0+ITN#&R{j^xGW-w&6Qn~SCGHZ0wKwtX0jwzWiTIsO)a9I}<3m;Sj=
z`Rhg67-S-jV~1^Juc?PzxJ^V1G4v!-LW$VB2V&?jrZq7#gow_KKo5WcJQfAIiefs}
z)q9*zKZLJ`jEcFCOZW%fw61z_T<(wZGQpW4jHBGipTEr@joR>*geG)UXq8`})O^_i
zl9=+@1}Q#e1BjAo;A$sse7^&vwJnr3R!|A8${t4AFM5?W)`c{*WK72S@=v~D4PD6)
zbzunDe3^rqiz&|c#;2y*=yTaAedLwdf8U>7G7X3mmb8bA@-6&@1&#YA*~%%3K(Wcr
zWRu@{*jyKAnH(EyjNK)Xsguxn=rhce<#P0zszM;0eY;&WxNHxaSO{X86n&m5CCh<L
z)G259uIvJap$BWk^|JgRr%%ei3JTD-kb6=Tga|AqlnzXheyHLCmW#o~{gV-&J#P>O
zPc>Tb1w!}UmXBb>1n=7BqS|P~Gqp~gpM|)O{?xksSp`3Q2|->7HG4zOt%shGvbank
z27KG^EXS!H0rgl{-hHNL3iK#38>)%&fdxriXIhGK_#vYGx8lYJmLyR}$zuaoRjXZJ
zB#<@VFbkxLGCPyNFxTXAdnJbJazXOpCzF(TAIHmo&SC$U%#K{~Ik;iYlXYx%YP@cm
z_z-pzbBclG7nmSvCG!J6FHGZ}Z&#XP!V6!;cR&1TJspV5CwX*#92N;?&7ACY#4l%N
zx|Gg(a#Ah0tt7zsM#uD(9#g#77e3#L+BhiIRX^F*l1uOgDSLBU000`S7=LF3?o)fd
zGp_9F?D-1``(LdhqYn>mqo2NG2oo{vxnomaSH|T>BWXf&C4LlpF<!O-?jLFr{T2If
z@5<k*z8pG?Y=T5%LO$Su>f-8-b4=JYSt?ZOZvqIP>!%9=qdZPqPn5W{7{z}e+pQib
zh7OlGOeeo^x~AUBmW@A5_6XevN^;)O*4CM+&;e4wyv!;(Iy&&g02#{{@7m?}Uf$AP
zHwX(cR2)on%z)h4xsT^R-|1ghK*ArAW5b=}D+3{q(i6&2zt}x=bM$OH5KlVwrWpDO
z26IqNieK0LZ~w|~w?QI{w`%S$8%W75(@LwJZUiCnd7sw$U`C3u$+G<O6~oC&F74Mu
zyV?7?C9d{aw2m64U0q$yZ$WqYw4x<}o4uQL=Q1QXIK^$eXdv?7VC9CUfM4iNV0btW
zox+tXGCQOHdqsTQ?#+YcTO=^d=vKWjsWT^~`A4`Qlo_hwW7N1wS;RU9=aed2+n2^2
z%cINyaDaH84X1ZqgkRS`zkkKa6YhY4vZp}+&cQu1WB&C2riw;NuwlrrhayzC8SWqE
zn{zpcK|kAlz!3v@jN6)WuD2MC_)-KmyaS_h+k9Rb-P^+9HbP4gcB6eaU^zqDlQ&><
zPZ!QJbvY=8rFK6<EHgpYPqq<zIlnYT;I1kf8h(g^w4{b?{2{>p@t!|TD!|+iJ(GOW
z8Oc=QY<pAG#kve~jAQhdVVddv&^ZF<-|sANIn36u0P|pTn+=HQAM84^%9n5{8F{?N
zm-^x@#BC8WxVnYgT&Q}U<vDeChf9k)BQ8Aj@W`U%>AxP#a`@<hRK!qrU`S`-=htNH
zmy#nJlaZ6_LE0@DH~C)KsEvnBPENMp<_6Ov=8W+1OTGWKSCf2T?vjvve?mfPyh0hm
zl0z6ecso(}{Csh#*DW*VNWhlekX(pjyNk!Sy}KgYb$=zx6Se=}rn~dRyIQI+3TXek
zKrJA(s;i%m(etn*a-k(4Y5PGOC;xVnmyC?eO6^rVJgmdz<z)q+xu2x8Ze_i3qdgy!
zA+|*fG^5H@U??WI3aGvR`AJ4S$EINO<m4P19eL?8E_W8i4~<8}47aZa&}0Nth6SpQ
z8yRFM-wx}yYM8SXD|g0qx&H5eEr;3%#IE5<doFcE#9dr?>`R8pCsESS+yX^?wEtB~
z3-<NM$UPLg(6<Tb>1Ju+FYRBu@bf!3+~?hEZ<pWbf?aptV^>%kR4A#xR7hmFEAKmH
zO47;o*<7NQdoa4xsDO`dXdw0hy`c0(we?a=QT!SEbm{}nD(T_JyD{XqwBnE2J31cd
z>nERrr<vrZP%)Z7(ghOS;u{sya4;bZ)gkSHs#g4NN9IISmx&;Lyuv2nNtYRU^#Z;E
zFe=NvyaRm8^locRk68XcsD^TRM(7BKtmNoUt{HK72$U0B#B1+LMl0!uMHxE9UEGZ{
zM@JK~+rw*qp(re5jIvOd1L7PJO}*Cp1xTnpjwVgB>}&EjeF*na)?grqQVb9h8sdKO
zaxh)yJD}RdmD7y>%V!a_OD!ky?%V~fVjL<&#A#>794iz-X9a8qb{6_IP6ZB|V@fOi
z1Rq|10qh66>t$j8;}33E`0=`cWUjmpD<qiZ2ET5|`h>Ql@c~PFl5+aurC`Z!hl!q8
zTkNebakph^j_x;jv0G^zcLZ19tcR=8d$J>B%eMV#U}`}UW{`1d$hDBsC}NY(FELe_
zE2cj!PgUC5h7*|HhjSW<y3E7jFMm0J1%7t`d;SZ`>hDM32oE}!bg(?EKuCt1U)J>=
z+lRVp!po{P8h~G7;NW4FQwboXD>GYyIM_VX5Lde@g9o9W^VnBfdI+tjqgw-55Kiv1
zIfE6TB76%{ACcPpplmRxj^A$zfnxt(OHb5WsepmN{|yn*A%tgSA&wx-50_vFSnnNN
zN_*CUtp=?Ala9+uqN-GbAGb#Zg!c8a<%FZ>JIyj$1-2D^CkE+8N9l{4bbRQtcJ_Tq
zVf~f>)V}fw?tJXz?qMY@2$$(k6`hVPUv9+SpP)4AYNtYZ+Ku|BgzoCIwtm#iv)GJ$
zBSbj#>Ay{b^YSon^!Y>nJ14bsXEB+&8drn%+5>nnb73&4n%7EmpIFm^vg_pe3vL|@
z13c_tl&I5|j$A7e2vl@yU5W+QL1=Rbo<N`3O9zAsh*KEhmzJwidRhh;gu3+}RSMb;
zAkjNXD1eB;M)tzg*f@47?$%$`=ignNX+pRTwL9Z#pBw|W9@nZ}RGlskbdkS1^5mlt
zl6Wz06WiQ7OG3)PTAztkDk`HcY3g<I*jh>+G3hZOkxh#gO0UE_YqVuYGG6!w3opcY
zGjBI>MV38)z+c$u8Zm5$KVzT`Tc2qm2jVP^WMe)&1P?w%Inq|+HTWwR=>E-s{*Pej
z595$FB^#1@7VN3&ob;q3S4ew0c8pJzq*S0wc#bQMLWvM>xYq4L9s4Nq_@zFZ@NvL~
zEj7cfpyEBA-4K-z3RY#o6!++!6thooXzVT9%})0uZr7M})YICFB;WJR8fdqB_&BRj
zE?Eeft=?bc+h5mBJy@a}o$R2Y-2x=KnptA`?+#n;D<(GzPVBe4`V9O!3RY?tl!Km`
znwTUwdE=(1pHGe~9C;&>{vQfEaQEF~gz{;Hu9c6W9|`4r*;E}&?{~-C=*?k;er9=@
z29I^ptGr9igjx+>7Z4cJ&mf=?i02zR^7RB!$uEG7>psf+0$@)hq@)j!JVq&w_a{Jn
z2=4~NdB!t(X4%#>$yZp8f6Xrb=dz~V!2N354=oBN%1}=Xx+@^7rb5p&8KNC@ms8dQ
zWTyz(_<haSxn)Rx@KhKpY&|<A&9|dAvL!uu<6+@!+iIYAgM{xD|EwxirI<{_Dm~1C
zPdW7Ia-=V{R7VPfmr1uu0#93}Cy2Qy)wLPQ3{s#Ai|t1ZNnc4>JB5NQZ#-<jW&+}A
zrbSQ#rK}e<y#UkED~A%jkoOEckMsLx8K@<uGG1AA&fMB#7m&V?lJP?)f0A{*tw)8X
z@<DP5+*QKa)q01y^m6OH=hv5(0zHV?fujCU*F+wg<rscVr;1d|_naM@VsR;mvag#W
zSdl#y7e9~scRzI930^X_QG)qSt!U*#k|{~A_{;h@H|^-j*X*@F`g!Za&nMd0vrfF3
z#)%I<lktyj7;%jA4GUKGA0tg`d6`0}DCRKtFZYs<MF#fwb`Yui1)Z;?XBMlZWLy2`
zhDYMtT#sIiE}HU-;dhl?qwA@2n^ym9{^|?|=XtR$nS;^elP0P6k=w#CT~rMg<rY;p
z<-J=t&t@m3+8u<f=a$g8!u}X4{Qa}{$7@br^qh?{O^!~Ig2WJ;a^<o#)loO>gL>RH
zdgCXm^Eut3k*W2)NvA30t}2<7c>eFi3=9q5S_xS0va+(Wyc=-#%*x8DK9+BGw>C0L
zKZmSult#<WN`CqKQ~0mfjgOh{xVY<ti)mkn(^CAbW0Le)7;QBWoH$|BX1=S$TwQ;r
zoX%@bbDW!8!biP0E+zKvKKpJ#!`+7Go{z)x_-_UJSsjdzZw?7rbv_YsD||eE#;?T4
zf8`WP#%yD4-L<xsBT<JT<JK95EcESc8`*Spmt}2!^M?GEv9z4*Ni!Ekh;E0J1Ec<<
zM==PvRWRk+P~fX9;Wxp{pB|d&e3^}TG=;nObTQoN5&nG%Qaxe4nfO5e%paHX;i5xR
z1ly@pgN0#h;;#9}{d1?D7iw{VPA;wXjz1eop89XAkc>J9#&M-mki8Z1;tW5Y3pg!L
zNT)Rq=$N$)sOaC@vzxZh)!@-4vo@L=9v-gXBD>@3KV7+`oj0n;-`du&<_t$%ZMP9~
zsIBdN!EN*MvOZd&A;@0r--{zqe<7)S(7)<VCz@%hrW^%1JuM>)^~!6yhjsAW3O1a_
zDfUKRY?QWIXY0YHKk3e%%gk6M5^2UG`=t$|`{JUuuG#!ZpL3ipH7Tj|tKfBS3JMA`
zou2l{GUr*Ul>MQh=-3{U<C8gkIaygNF8NRY76j;x<%Y{>inecP7x6BIeOn*=Q1@C3
z`@X7jQ_4@;p(dsj&J|q*E3!(VNO`5TIO(3RdG$x~Ldx+qa`z+UkfU0P&ln0@rcO>{
zWE>B@*YKa+)H|U5&J`YVTvrp&%R?B{tYWWLQdPD7+O5z_G{`;uoM268(7gD=W`Jnb
zyRt)($G4q2?l36tH2=(>^bi``+L~>1&yOCOpj>QZyc-5jP`;qF6{y~u(VLG`yitHG
zeJ_(?Xn!t+PsS!>e{pBr^(b#QO~O~dZ}L<vH#QAk^7!>n%6uJ><<TNnL85;<-hXeW
z8ygfDsl&P_j$l>X(5U&w$P*<kJ^QM~y9wq!j+XcD&J$VKXzgd~b)H~q2KAv`*hhUq
P178X<%F=~WPkjFmqwg7^

literal 0
HcmV?d00001

diff --git a/docs/codeql/images/codeql-for-visual-studio-code/quick-query-tab-java.png b/docs/codeql/images/codeql-for-visual-studio-code/quick-query-tab-java.png
new file mode 100644
index 0000000000000000000000000000000000000000..68ea2ba4914e54ed7e3d2608574fd8d0538bc64e
GIT binary patch
literal 77084
zcmeFZWmuGJ+cr!JNP{qRN=XdeDN+K0fP{35G(*hLAl=d<B`BhRba!_sNOwy&L-SqS
z>t6R-@AJI(+P+`kug`7R=3=&!D~|I#k7GafeILWsUnt-{q<DyggoLZ4_)G%{3Ed6}
z3AqXL0q_Y%i7G7;(!)v{Sy^=@Sy?)D7e^}_J4+-a#qgvQ46TGIBLDrnJRy|FK@3bM
z%!(}ji9b+T8zY`8q686{(S0>Z=_E10W?<0OHhJ}|^%Yy0_Onttl!v-M(Dk%_xs@V4
zNk*WCF7Ao#Hy*D`A!hfp1~TAY!x`xp$RB^ynmIq=z?c5Os!6oGG87dNW4fG)Li7Xa
znF$`Ifl){*^`l2f1aSBrm$?MehxGka)yqr7!d(ID0Xn%j(nq?Wl?(C){vb8R6#+Gl
zUNodv;lJHdtRq-1DB4`H;_2Fa64HeS855|aI^Ucms_KSev^_yu>@_HQOo&uQlVfdl
zNJJ=Qp%%pX%sU&?bd|d1b8hZ2q5LumV~2dy!Dm11YY$(dyLCRJ^@M)a#KRM#FKGL0
z0|a?4I=5Nfhs{i!uSAL4k;qpchdW~O^2PDhr^N4p&0k)(wUCn@<?ZAND{WCqwm0C!
zrjoBiByKEiH9-#soC1HOF&-!MVx^hNgy{UnQ67=CC?$GKvqQfA+-l{yW}D^ZV`PPO
zDKRz<myq%xLTqbcMy6kW<6W{}QWRw^F0h|T?v*<?T6(GVpF1=^jj^-0(nu|~+n=4f
zMrSxH9FAhubMOwxn<!MR88AxU<cef^fg3-Ct>I&F8C9r0HLbGxbf^e7KEsrE0{kW<
zfaL%Mxu+d%spa7$V>=2OY8;y`4@@CIp$?k+EHyQ;*MjjCvx&<y@#9(*c5HTbBxYOp
z%jXT)@O-&2XJ74<m|q08INuVe%j?b=kSLCj)M4BOqciwO0wDiOt4ytUf$wP?EdDaL
zSYQ3|v;vrapv$-5^bX<)BMUt?mm<Jyljhe&fzn}pM#j>`(+)VL!++$zYXV|L$B;%B
zMu~Zs@DVv3J*DN96S1qm!vVp`JNg5nD1RPqWEldy9BF<<l99j@dd;4PW-?rHphrl-
z(m&Oy5;4Q+*eV`QW0FV*tFyTh<Oli&4@swd+*W6CrKRu>$*%svLWZ7TDq4t4*>Y?`
zIuLTR#0}+1#{|DCUowEQ8=$1LcQ1OL6L}Nwg<LJA9I!t8sL1-@Ii+QYS+=-(z*jOY
zl;?r3-}NbweCm5C@ReDMeG4z2_VnQ?VYJ-n50wh?X{_ByJcZ*Q{XcAf=>N$5&G_5X
z75fs;6G<ZQHX_^P7ta?m1sn|GV5JU@?p4zWo=|SLRQ6Pd0Rk(W$WGpp5M8fAupmWR
z)L^Sa>t6e~8Q4s$^xfo3D!jZ1zD|)96lVhiW-k0{3=bR+<cVO)HlLP+gV#{@1|i7@
z;5Nq=&`Rv`@Jju`@BuLzEKsubJ%QpPu{Kc^;S(&?pqU{0Hnf)kZxmgbLkJVXx5Jq_
zD3(dgXb-8wpN-Iq#04rn9TC;Q+C<x=u<<{6U#KWZ?-gg>t8t`#WO^ib<Z~qUFxX7m
z`BR5FFPlEwtHl1q?nHbSei4XB43)9NcLTUVqe057?UR6fHA~GD_403>zchc%{L(o>
zgQ3FkVMW&z7rYmIM~z3H9`d6r2TKR@2Xj7DASq%O*XdxRVD)4>B7u;wKLWGkji~b*
ze!z%Um{BbFY?zJvv(!~qG&EBM{E;@VdQ>6tQIcIEL!vfo5?hAmmi0%n2RL|)Nu|-w
z@ju(oKNn^XXp^!!Y8SoS)1c9Te_H;+px&$V?bW9C#pgb)Qw`OZbJ^1$FBNgWTjh`z
zRvFkgPm@&YKz>8g*ALcLhebp-0z?ZPa%gfgKN)4uf04}3{<idqethziv))P)v+SrU
zpI*7*al?8EscOHR^4C|N-DI}WHN$(YzVIriat;vMyV)Dte>;=eb>GFJmd$X=z!j|&
zjdcyL<CsI6W0<p=Bb4B5ME5K>$v>s}O?;wvsdQO?s(;#zi-XI6D@e{yCN8AKvr1+~
zsZDuC{xZrSI+;9)a!#O&qC8473PJ9X+QMALti)`|T&-%VDW;jdDLFb+n_7zpk%RPa
zoPBsdIBBJ4HD-mnj&qE3jJuAzUc9k67zwX7H`;C}Caog<Mw&#5&q>00!y%+AsMl1<
zTe_^5q&HXjMb}HexYD7**WCOqW66{wWH{NXzQsMkzI+!X<|P(x7(G|gnCX*#V{~Oi
znnBVr-B!2m@9gBEyX`c-^yyQE`Ii-??&kD?bdB^FQHd-^VPo!Qm)no!F?<sjA0f@y
zqfA3<)+xR^_ButjwcEr(hC)p<^wrjO=I*>#WLK5-!Sx-DLq4<ZKg}z<<<t`MVy&C3
z>r--cYIMF$m^)JMKihx1Pe`kuMU@rVL}u)_K;6_xg^L%f*-3s_j?mwoSXMj3KLwxq
z5t$ItVZC{c1U}F&fygX8y$Q|<#top0Bd*~)co}E<qwM2CU}>vNt7WU2EQhRia7D<-
z)07YzTxx6x{tW3E_bjUc#XOZvbXfG)2(s9dD2}L|*bkse(JiZr*A?7#JP$y`gb-FM
z*Y^`ShLIs=_U6ZCUZj*<My2PMM3qe6l!rKTxz@NONJ7ISqr@l>aLOLejhHUTGNLQ?
zKpa{R17A2?Gu)Q6=&7?plNZy~QxC*{ia1*@JH^{-IFGPrhn8raGfxR!NFPC;oAfOu
zI(~cqt<vVaqNak6LGES5S0+O~A34vwNv(92J>&HnyNNQw@a9$Z2Z^P^pLh~t_!aCm
z7&q}p0yt6%%L?)P8I!YKXO}#!$g$7u?Hgpzvh=dPi+?w?w8mdNVpQon*7Ejj>z(aK
zfkWF56I(@thGG>%)^qPqJ5JfQ9qmgd)oYe+x_Y8jYbk2CT`>F(F0w_{xYXh&>U(WQ
z189FrJ@m6%uxo@3uNPljUsIx!qIaTaRUcH%p7$Q*#b-6yt4>Zg4LZ!+?oRIJ>`I6k
zcu=uvu?}!i&DNS&`w*71HvhgU%B?Q~%{-!=RGsCVn=>X-AE{Ar96poCQcieY-#^>`
z7LmU{*Wlqz>t{USTYV#d!H@Td>ineqV8aW;2X8!uG7+R>!d~_yQ(IoE>bC7NcPnl>
zJ5bgbFA@(yizPCmVQKuzP3z`&)!UlauO+-W&UCw-hgYHntOPJ@$t%%WTCg_5LCsw^
z(~yxni(|I&Zy!c4^AO`dw~n^6FOyCgag}gyqJKtbSYHqE3yBDf-B{huER|1N_YbjU
z%(!PlB@x%v*i#^Ra0IxiE)i-|0<$@8?|+%HUxij(VSL!^vYU?>>;Jwpjy;iHoYA-k
zy&1qAj}A$57uue&o7r-hn$Nebwk>Y9_p2{$&;Ilc;=6IdHBqGOA--?W*k9{a?q%v>
ztp*)#oS&S(^}6;N-p`x&JEq%i?Pz!NNo~4TIEsy+Es)~6n>$BL`_|t=P%}~O)t+XF
zQ?24QT{Eu44$Ic6v8hF7*+>+4I-FkblpvhCBjvy$MiIs@8v3p@mxddQqm8m|`*(}0
z-hX|cEfg=bFz*1%yWBhQN<$2OlKB+dJ<`S8bu9JOSNQ1tY3ZrvYMwQ5ztoCkiZ{>g
z$jR89?Lu{h<3fi4mPbB`G(GAIMWn@DQzX`(NIyi8=(s-Yeal1paEq79aF7M9+s`Bt
zLwe$gjM<M&w@8ZQ_56J@>7iOQI$c=A?+he6drnHen|-ZfNw%ZzIB>kEM}LWb(}KWw
zfM1U*?VaKLU3%+h9m<2@3u6y2%+@byQw{)*wX@V!vQkw=dIB6{BB3EuAfW?C$iR;z
zGUb1c<&jyDQ2+Hg3KCMN4HDYF$GiaE@BhUCKlgw0$2-bLls`wH+kHg+^BB45eyEz+
zcXQwk%SllWf`mlMbpL~_r1AIw2}v4B>6wfc6nQ5DtKpUARkuz8vj#sFZW!xJ%%7iG
zWv%Fw*m$*qaEjq7j(y^4^v7g5myDWh9m-u6G!YM;P`tXkF`St8$bg)QAkrbjjfmNq
z{R{6s39sVDFE?{uS>*^vscpTavsuV+r93kV1Kodrsjs6wNrB=2LM9~mr<byH;P)43
z|1_qD7=_60cvbo<<v(8Tw0gl8g#PD=0^AZ?B1rlteo9O@MEYZ{G6rmo*{+&b|6=)b
z1TrD(E0m)W&R4T<RnVSE|JPSMahyq7dUREoKjwdZNq-}XGttkl8B6`|WBf56v(U8)
zics1U{zE(hG??gGtF)X8c>cQ2{~bTY7t(?DE`rkx|2_P4D7nvpLEo0O&HpKEaq0eO
zGplwLa{u-DfzUip0tRVxe((B+Fg>FaLB^`;oq7}bPa#Nr0u0KH(2oxPr)atW6P{51
zlk}fL08Ac{oia%^1@S*ca~19JB(wD=&VLGldOk2H`H6$TKd$FqEX5MlA$k3O3c*J$
zV9@`+p#I-1DCsc`d)2?K0%;-?TuMQHx2<1FWtG2IVaMxmxkyry3?4N|6d6z3PFX*f
z)yeOlR?8jXoqKERX^svdc+_vVVXN;I2JUVV&1Mtd9`?nwv;?3I3eMP>lXB>q6g8er
zmu-i=CjHw2VRc4HdR;Z^X&+u4|LMWo@j{z%eaFT^+OGUp1y;0Zu+*!KEI*fD1tZ_A
z+Hr*{aFaGLevZ)RYX33oy!0hzokuEVDR1T>A^1XGr@u4ZC_Uz2dE|)MW4#n`e_*2*
zLa=(?vtYL^f`oklIJe=>UOHq*#HuHbzACePSaL@E=47<9NRuRyIzX@73cfW~Fmtt7
zWk0iC$Y@yaE>NITEa=#L<1X*!qUO8xE$@TayX_c=ppJH<XSBhqT+hFj-^W>^9xr_T
z23b6b6N1q)OJ&Vk7a6qBR|VQ|5y*Nfa2GQw8KMGA*AH;F(opfmdn)Yf8)Zt|<f&=>
zuEWWN9MVs<oHq9oT-rl$Aq7ht9|UX%mOCQ{fvY>rdmpPF-yjx3XO=-+4F^(R+;^uB
zdwI4`Rz{S;kxCGDuf5v5%_#_N`C%7j{o^YUzgurU)3%P!SM$XSJXZC)Rpm3ro;Kbp
zdf)$@Go_n|bW2@=^{QO;#^<iAUtM^Tr=7-p(Q~SvbH|3<F5KN1*AxaHDSY(3xzsMq
z-7xmMaT{{~2!v!k(`%1sb|KTL4a=%8k<DgoP(t9TJz{T8b$k5#U@uEny0(ZV(ck7+
zF;?0Ly9zVe=ZYqygk|=zp#AhOI+d!oV|`KNd|mTzx~ykSL#YEPdlFP~pC>H~=^eUn
zWO(rI&Q$Yx%(+zq(X&#?q!4)fq0Vi)>vL^VwBU3PzvKMuPMs|VpU0l#`j<3^h?C1X
ziv-oD@28SfHxh0r1$R_t<h6Vqrl$}w)E@ZLO;dE2msOhpKxi6m`m?<BVF&03F7V%u
z%XuAkf>cBCs0Ut%?OHfA9CoGCEm{gyxo(d1TqUOS=RAKNEM08W*ycX(gP3!wt-;Rn
zIfKK1yBsj`+O^!P-<O2UI(NfuM!)110uPqIem3J+ZMJ)~);}nVFOkUGEEw^({A%%n
z&JkVT%vGe6RK{hxVl#yDm$C0fr(J0$>3T^!o<N#?6<o&E5;{rkF-usE82lh0@a_Rg
z!>)0?`*%2xc?fL35rNy@O91njhixooe{CeuQj<7+1Q~m!GgD{&<ica^_G({<U57L*
z2bY2$Qyi<R-0W>Mg@DRRSM<PIim??}-EXtw31dGwlIqNsEWcaWYSq^tIM(Sr{EuwI
zyM^4g>eqqAR^7%|x=Zku(0<A3ax)Jd-(5&<{QI*%Ye2w}?Ba4Hcu3EhaBMbmL+ew3
z%lOA9PhO&Ah<V^`XYt!;)ELYLC$a0i-q+pxgqZhoJZ?e7Pc@H~5UjEG1(&@YDwuJo
zAKU@<pw(2F<v4rw*PjmWN!VWgt?<z?1vHS@sfiy3m8?MD`(Eu<FJ0;w`&bq=T~a`n
z!&zScbi3M}nf!t3cX#8FYW?G*%+k@E#{zMX)VZ+1-D-jwj-N^skJDnf;7y|D19&93
z>G8k{cp&}4M#ZjZ!pLjT!Rj|zAP-LiFzs5$3wJRmk-_~7K8Wx3U=_vEA5A`9>>csw
zrDsR|#bJjuncSv<OY+q3Q`NCLY8Ye4uNePb>H>~bJ`RPrsSKI~DL=V79+ooqP0(E9
z+!K@^wW}P{J_|1Oi+wrkS<b2UhSlf|UtkER6|ym;`Z@`G;B(N5p>(|Ff(mXYJc0JA
zsQel!d-5tj6?lrd>%(r^2eCg@?E5*ZE3!ZP0+XPTmdZH_u>}HAT`%`L&|u+siOji=
zEl-!8RBfK8wWksp^+D?SafrFs@t_dp(PE_!a1zjFblPUAy6>Me2W-s%6cltB)8nYF
zWPJzIabrK9nF5dzlwQ8@w7xH@d$z``(eo5XXvuK9;W>ejPpRO*BM$HLrO@@$36`11
z9m6WJn2WHh(}{9>7_eEIIE!}6hv%yviqpu)G)T@$H5;A5R(sx?vZ6ImS^T@wtIuPl
zdmqsqx5(mux!xuSVtk^s;_H8Y)`7*OEz#aVs6Z|_)I(~veRt4~e>RK=V{&g$Ze9wZ
zWT;mRLrGzg+-cpJD&MUF7Og}!2ZHQ=O*GOjcXArVjpnHdCAQA|>^w(cpZ)&HXy69^
zV2E<n^Ob1=gf?y$&5c)b0qoELzF~3mtBXOQh162>ZVKi|iIph6Huv=3iu%B#o2Cvq
zU9*bqHymrMXFC`*jnW{3z|GfXmPbH>Wy+9U9MdtbbaPRG)#A&h@-59A4}(;65x+mh
zPK$pNPk`wSi=fD!Wt`@4%s?VNDTN&D3hsa%6#169U^nVq6euyAvg^iBV6t%!?K9{j
zAV&Mmcef!aAm|b)iD+xmSl-`2n)Eu_kw(d!ef3<s1e~Ak;xT#0VBK;A`{37?pX?@)
zb-tQ+OU&lL4m(rY*1n>nnOb}8ywn}aB{_v5<~&06L_PK%aaou9Z=m1@PGZmwC{maO
z>_&pXSdG%JE8fstl*miM|Gb*CCz|`Lvx3+rQPv>}Rr9dQtQ%0kLz3t}h?)!6^0jfx
z=?!NFgHwF=<<Rt&C(NT5j-pd~EBevQ4tXxvAT7ukx`)XJ>P>{$AV!W~Gmg#F4h$7U
zX7&lps&*9M%JSN~Z0?-71T{&UeM9e`slM)8zj_~LLz~P_+7Z6Fv_tW@%^sG$8ylv^
zSzdc0ka0b0xaa9sr&9n{8@E}#*Tw$yQaMnS-7B@fzh0NRyHM-NcqT7sidjN-wX}>h
zgSNl$O2?2SlTl6T#+5+SHn&>9xm0*#ylTdQa(?3ihghG@=wZ%o9KCFy*9M5QK9tsX
z@`q#0?(d(U-YI$GS0KLJTp?mbXgY0Q<;wl7<H*5WwNwm}kEWPzA|f7#{g8Ld<QK<X
zZp2Loq0k`7;r6aPpj=9UR=_<cM<neFbxYg2e$Kg$swzF_rs4Q1)khYxe%WJTwP!kj
zk4*R~rUEG8LkBIga8b7{vXJn;KQM!fEK+RmN{pD`d5jS;6kC!iO!a4J4`JvfV&9t5
z=X|LYD?ztzp5U&*xcSz-M|j>J`k>DYE2{3+6Cz88lUtUvhpmyMS{Yq)9_If7Y5^7R
z#&S+rm|kiRomseSeTNY`2GlXir7|$rGCHND%9pKy;T7y!$Hvp-elrOzW7t}fI+<(c
zXKxzk4no0oRs<P<_bQfGa#M^blHJ-KBOdHYzEjtLqSt%jiYtL@76VIEn6VXTeOwPl
zt|Lk?(+^7IcEnfXWCwV<sm$d}Jsc~YmfBLiL|KAdXp`*l{4HQ_x?$Tc_#q(v`AYlg
zic$tHakA5(l>Jr=TB@`6t}Gqx{$AYT4u&}63%*x_>vB%}6UB=k)+bk#wkeM>seI3u
z1jEk`NncoYN>pFJ*J?V?%pbI?rk`G}9dL91A%j8wOy5Z5;Hg<}JX5QOq2KXO1zJn}
z#=gIIGM|;`!07rN3LLNOs<f`EO$ku(fwU#^tt@!vO&)A<Zh0D4=yNT%^$?Z5FMuzj
zIGlgIR3N|2i4wK|YHP||kjZuwy{8;J%X%eRDBeW>5w|_)K7Ha~QaN`lEqx7b^0|7D
zGa&aqm(X_ZH)is%1frqG``6C~Sbzs@PAJ;UGZm<*s56hVZSR*^V1Z=o_7lLCA)+g~
zOKxGTn`m>Lk)UqqD<XYT*_JdZzb1ByV>m}Fc=biPFb_xj4_|Rbo{(+E&myuMUCQnN
z*s4;4-io#+UtzTongEa?_r^lw+s)a`Fc)K2hTrXlpm%_3&jBsYwG#oOd=xig7NVw$
zJ>MSY8RhS?T(XS;CxB-l3XZLCvG3~RIPf#OUKGmxmQ%bwod8H`IG;5|D&ca#jpJOM
zn@VL9_mHz0)USa|8QJe^vn@~og^TvYYt}#5nhl{!W$AP6)g}$~BTZ;?N!C6X7C%<;
z;-vBXot@0HA;#cd#%*5vM#t^%{rMxJp8hz@J!Z1uP`iO7<60NF*PS{=9B)F;4W`J1
zZglgH#DnB-YReLfUssmgto5h7PaL_vDR^CJ!fM%vGR^w$&KjnI<Q%&&Vt1D=oVv-y
z(8ps+8p84wJYH7^t=$&qQ92Hmyxb0YB@X#CFnqicE7fJunntN#We2y<T8p6;o5mW}
zwffow9*+;9*J7aIz4kj=?L`l7^^+1uWnf+|BDS?b#n&}kwzAzwhrA$TBz2wv*&1d9
zVd+-9d9PpT>@fGd+F@=sheW5H#IZHjb~{wo<V_QwS&?Yzc<vJVRt)icg=(6hTUwM9
z;mmIJ0u2PGU8NPpO;pW++2b_&0F5gMZ3FEvNK?;wm~+cvEI-LU@X9P5?awm#FaCxk
zOWMeDa+#;qi4QbQH`>0~$AbNmz}Pr}Ic@T>!%;cU1l~Nx%dQUG(Y$6*B^$H-Qkztp
zn-$0H?@zzlE#cQ4<oKz)|El%@vxHEfX=#tc#GzKR3X(aHWq91LK<%p-WN|URc2bT?
z?^H}PS1#`~k>T;dc~~OL`9f1oLV!coZp1>+cAR6S!PEylVCXR?aPnA{w3!sF#KOwA
z`HjzrmyevJ3r&0Ig~-~YYBFL^I+be=`nQ4QT!wW)QxEW{$UNUMJX?N6;WzxF%3dD=
z0M-!898wyu9UigGM>Ck+{)Y@7)Cqf|;$AtNyx$kui7X9z9L8(>iz%d-59F0ng+;O$
ziXArGF3P}}P00O}*(9-XyQqH0rOYoVzC{!6^q^_ZrJr-@$)QnX*>a{n=8XfxoCO#)
zVoUbRj7`FEL>%VqOkEsi5avt8AQhV@&3_g=e@qJnASKM8W0Ou3pzb{o7&X){F_Gyb
zK=<_#XRS4b^@ea?UaX|RSqGA`gutGd7T$1+?OW7er23CICmFUxuU2B8mQLhuYW@qR
z(s`i_Fl2Ew1Q@f^L~X7zK5(cye0p<Mk?w`Ehj>JfKm5Z&9!JX>D2FbQU%U`NdxCJq
z<wL`6nqW8jHk3*=fK}Txx!uMR7i)S8pTrZ}A+YlJ6r)&kHf>AX@p{Ayv1bo7J{@Kn
z$J@^H9Ub1PZu_fGRhP)0&l*~*SOmAGaTC8>SNpKu;T)4--pS(Z63KgK*#JR1zu3t7
zE(FOh3;Tpw<y-UQnFUBEr3Ale!?CO`!pq?>uw}O#e8OT|T(dblF%MmdK1+AvvBg>l
z_E#1+>DUKQB-xz-r$gEk@ZSinIK}&9x}3RNq3PxI?)i187T@yn+Rqy2Pjp|#S-Mnz
z9nO30W2|A*_)k~P@Z{z_G2$5tgC&1E-Kka6?Z9otCgwFTIpXWE61ShOcC==Za+W<J
z3-kbR<rKx?`m#)$MBGwq+hf8%mM%aC4x>3V?+QYSLD&MLK6-U_HeclId^aj<U2V3G
zUU;umPsPd%bZ8BE^Ni;nZf+dP87|2F0@t@bpqyL|df|dV@%8zZoWZR`(=qaP>|q<T
zq0i}<_H}eD@j!>M9L%xlpbfi9$w;IAl0Z@uPAs;v@%RnR0Hyz7nMf1ZUG`u&n0L{#
zYQ_&#6)66BbU$ZjR86W<4^wREnKfEZPE>0BtTmx_fE4pLY7v*uobrC&!&6#rB#7A~
z;|B!OIgfEmN%76vthrwg##Z_Oz(&s(g9iFBBW$N;B}Q4fgsb;9-{CJr{<Y^G^I1Mc
zbqJ{~mAqI@*y$jR1hIs$w_JVJuP!<}Z@5_3UvhrB=!VZa5axZcrZai&Xd2=NO0BIi
zZbsS1p$WUj;#oeH|IXL&K0BDq2(t;HsCDZ)Lf~`g+UgaYwsf`Myg+)jRZzV1m|FZA
zhn#nk;BH7_pz-ERY*XvI_`hL#+yokdN+gl0vKa=@##$Dv&C|o_wM6%yoAq6e=g48#
zNBIBl{^9|v$#O1LCpX*MI1DyGEW=&GtW$}}cb`+-{r<#$)emk?1^VO(f|z$sNIUH$
zItGL)A3aP}RH0f&DKUpAQ+iKYA318V>|7GR8Y?oKnIBeHD7#`_ZeoZxo4pfWX&RhL
z<uS)efaTgYac9OHgdZaj*P24nR-}Or54HXlXzVDAlJm^(alvsr=w#GJEI~Y-uNob!
z0-#6B-~*t^9DhNzu_dibD`=M*4IXR+FExdo?lfc>O8Wf06JHIHHhLl2rMh(A93bM-
zZXm-F6Z5QB_?$o&Th_(|KR`KXWFqjQ_1baP&*a_66r1&|s=>gpqM3J_z*`5HB)m}g
zQssvjfj8<4JC!=sA9v|Z2cGuvz~s2>mOGTRuXBqsJmz~(cD*W=kb`~dmO=tU*{mep
zWtk3Nu=P@&8|)-({hLk>@Mc~N8LWpEy!2s8_a}b3qHrtx5)VAUx`JL<j{%qPa#tZ`
zLE)20F`kDtXbg4MM6;0<9xSJ(H24loXG(a5Ozq*AU25!qlzC@&jx2bxJ2Nq_69nfq
zpwkK~|6VoS$I0y7)=!?0BLYEy3t5Q0ePmz&q$v7&Xg&qtayAt;Yh>-AYfppM*Lk%0
z$iqf^ay-oT$5$X@F5kwQjpSqbbt572;&VYh!wsqx1DV3LV5|*xdfMgap9Zp_cml-C
zD%|PE<|seYdk_DQa#qWtzS#8s$}`e%WwqB4t(>u%KZw7j;N)aftvrWGsHx)_<gnpD
zqZYuz#M3L$QZ(QU(OnyBUdh|@6+0RS_rtw|-O33gp>NB9b562LQ60V_$+fV?<DvS%
z@Ta~}3y+Fca$AfO37dCMMlnLu(z(3=TI4nUBeRsl4XKV`_&aoQv#*SO)0MU$%-(7_
z`!bt%82DJB<jjMgasTX2pQDAO^Zat%o#xyfFT!KSOe3V{$Te(jCMTpvOq%0+IXa(B
zS*N}HB;Tp!+=j)Hii#&pr{V<=Ky8+!=eu2G)Uv`TQfNqlJ3!)ftUew_D6XP&7!^+f
z{i?mxoD{RCOCT#aIHNjmCg#9%P+(&6Rf9wZ%NOuR`a;tnuKOCTk|pU=*v&=kz*8YX
zxgz-xY`WJ;wx?EqNT0ih)%N<_l-xVu7glP;Zm6)6kI3~w`=CSp?z(oglpb6v@L{pe
zQ>_lKO<vdsVry{Y$p|-dDRBg$!D#r^eIGh=#l9y5Q`&!aLC7fI5tQA=^U=83_bfBP
zix<shAp+uXh|*d~2|l^9e`HOrW;KMt9QY2`sQjDRvCD!NKs#U{<~=5{7HFW0$n9^c
z&TVsqeKhp`N?rs3CLM;7vWp?j3b8aY9N&FZ0kUaFHssh>=JP5ub!jr?0IRwD%6`+;
z5S2?$tLZtCaiQgdMe8gd!2^cW_v*6}-b{9wL^XPA0p^z{hymN;#^hfs0ixc;i(l(<
zMxa0H&zF_$c1i^8U(aAD3h{GG`sF?ke=%Y^K`JiXwJ}!r@9MtF7qGScN=U$VOr<_@
zz$yzHU`00yO_U9x1iWQyz|2%<g;KlgvLe-08Nt>_s^3U8-<;`>=D%XEAMin6iXzy;
zRB$@^sSr9}X>ri0{EXMSNrA-%r(PjZj{8~5XQQW-1Xaj~lUW@*0P*EM7Id>HS1e_h
zg|&asCHI(Fklo%|>?wv!>=oZ-S0m{>JcwMn!IGf_U>wAE)EcBCxOdyM>9wVRRlWXR
zfu<Cpt@1WFC68~fdO6sxO^1*dxmdl!Amnf*IP%;JXm5hAhOvD>9-!ejLhpC+rLGtA
z!AHcV(;!v9n^PUJ&17SOGt5geQxL(e5BpH<8tsY}L;ix%m;NBn79M}tBLbrv(8J!X
z<(hQ&X&dd|OkG?FaY`ks^2(ckX)kfq0na)09jJFR;f6j;8W9+QUsQ$gY0^LFB0nk)
z1z79HryS8+Xqhz7Kmr6wDTyQToeXonisWZ{Eg{?SfnUYO3+~qQ4GZslvTV5;Pl&eN
z0)Bh{lmms%OI-Z0K9%_wM*4V7pj&DNn|G};Z4ViT@Xg^lgX0QJmofdCK;IWI(4H8z
z9EDE)7B@DeX?O)MWP{g&Y8vbu<{MzCyO-O=LMoXN^j|KQG8AQZPGzy<NF7(YW2=|R
zH&5^nQ?HoCd2g@^CilG7T<#W`!It{WAxM`1`8soz|J7v(HO1c8`%o?lQyJ*<W=#NM
zUY(Q}NB)F%#fZ}gNzQ5A@&e$FKd6s0wOj%G5I?|=mMZ}icO{RG9=Vvi-84Ne!8*Kf
zV2VDJDxRAG`?dq4OIU5T!?g$}YbsMeU2}+-0)N}JL#uhtHDyUwm^a3TIfM^6p_qR1
z${Ei0jq!=&>6SoFeA3^PtnEhueQTzUwJ?@dB%yqjzTi+)8#tL!L68Jp3`N$OOrho7
z0o0@ow?W}NO<>!WT^K?<949GEa4G%gN!Buung=nXH*eRT7Y0+dHvo^=NwyTepnDk<
zxBcuHNPpZqnuUd?@GytOsEAP^h94WmRWY@~!rop_C~Fc0vQ_H#N`iiyZ9hjyaA>lW
z+8nyNhB*Dc6fu`y{!K6LYIt`jeA-_pI&$$WwIeN&0G&h3T*_)F-6jN|b}yd6JewCr
zVwP{5jB>m&EQE@Ihtn_5(`pV1AdFpw&i@LPR?)>|8P|Z*GNY6V8On0IcS*d_IxkFf
zY!aEpZz%f&P-Ok#omBhrM<uz<PzCEJ;~Fu?Y2gdYv8XfuN8RXTROb@6i>!`(!ucl(
zjf;|&giSJUo7?0uCh|PWoGc9UZy<9sqsqo2pi0mi{i3>C;vKSgcfJzaTV|R5;ye`S
zUB)6TFhj#WU6@gex|V=bGg>@5Npylrui!0jf#y%C{-M6E<~Y`j5}$${-E|wl9oYt(
zi5EdERn#NT2UrTR5dI&jELU4+e#H(`CdF1Pr|b7_6~5U#D*66KLF<a~Klg?k&=6yq
zHi-8v>aT9&Q7F=(wa>9E_9GGm$$P<+r{A|RWXH)Z6JtsDZ#LDKwG%hi0Zv7$(6G&X
z5{3&Z$f;=y;*k#Pr13sz{cOfLbI7ea(O)6FL2BRom((PUHjWFZtrO8Jg^iE?R9brC
zTL7AqCYj@T2`*nzJ2uw~u(QibJIyLzGN9p1k##CiyCvEzG&Sx%F|FaM-zg*7t{VDI
zBwG;i7xneg01(&pi}15V{{#HhN6=;;o8RZ0A!ZTwP05s3H`~R{P2UXbtL!sN2-Z3=
zMR?3Q!nhxB-&h6KO8Q(T{^t5U`{ZRqzQJEiejg_wGq0Wf__p$&<dZAopIUmlHOBrk
zJnOl+)bmf#xPp@{HQX5H-7%ce%#e{TK&`XK6bo>QRPSH4?56c=&;vTP7h7uD;X~go
zEE2i?3_Kmmwji>qXq5x4-)`f-Lf<0#LOLPl`wEM{yD{2Pls_|de>rN--hb$bM67^5
z%aMEvl0RejzZHGp6Gb|}9)KK9^!K>`&*P7Fn1I4ex%c+fUl02~$4H|Q0fSVfbN<m)
z!Ac3tXn#ok>wmhb05o6_aUAO(ne}gs<=?N_7Xr8g%9e_>|C-nTJ(4Z}7=-rt`TzCF
z|3su^^nmxluBPDC-)jB;3fcc3rvJ~wq@}9(GVre?^T)bQL=GTfPfn33c&qW(T0DyM
z7q>g!hJF?L&&K=T2ix4h?%Y0TohSmFIse%t|Kng41Pr=x6aPi|-xouGTPm=s+|Czm
zC;nmW0r!M9b1h1<75!f?7S<xFA|1FZ>U~hT{lD+`Kc8I40gf79YW!3Azn=K-JK_G=
zgqoSI)ty@MeA?|FZv2`7*z3(Pp`QOq=YMljDPd`S(_q>ZwEtsYd?iE6*N&R|Ve~&D
zbpNY#=VSG12SYxS79^k;QS!NMY4KSNq<$8gF3<tDF8~_W;AE-!AfUOz`HKbrIKe8*
zePm$<zu5mTH^_Z229xuc1%1=Zi^(kobpJ%HdvC-CLHoCN?(;Bf2!OZX!1+Wh$?gBB
z1wG(@c`8Itt9^V=bsGQUZt9`GUmzPLRq@~Q-;M<$`tPof)q43C$LfB{Q^JAFoho2E
zp30I5ZR2=d(KGX5Zu!0zRxS8?>7T=`GkE|j#86QV&huBrMstO)EBp2o9&{e@+OG8_
z4FY)91|X^|i~zI+D31%PmQpt_>;dg_9NS^G#`z1YX(w2RsNX<pFimK<?rl*ppoj==
zA6dRCv7IP-ko|VL!e$-lliA#b&K&@8CiMFTz?}+0)(6<!GxC8PySl8Kye?n_%mQRB
zN$10E)y$Ch?Zw7AP$C2XDV39mW&sXe-D|qqtD?%Whn2^l-wt;kf*q;Gi~+X(Na^Du
z)>rQ{!$vN8l-Wo8_zpX@gt}FBdRUc2`u2Ji<TI$>|4<E9v60cf_?%63-}_s>0HRX}
zh9J(;n~S5h^-r;qyg-Xv(qFrGuQb^Ep?*VzF~)G;E8C@MCQ|7pSAbLq&s9z#tsgpn
zNcO}FP{&e%Q@~Hh^@k7YBk1wKMh%k<z;E}q2}>@TE`(UdDL|N}p6$-e6o%oa7<t-=
zcJ^`L?}(75In;fV@Bl=yTHZCIW*Jn-v3<4G;7W1xEw2xrm^cu+mjp6aKyO#AN()^K
zI1^g|1Vt`w9l-@}$W_KOCZMrNLz^-C$uZN`DUqD(6Fq9&F%6KOsQ@=K+Z3f7O1H5I
z1bXlu7WW@}BY-9`Pm|yAD6s?K=N#)d-||uc*gQ|f0~#LLc>oF_1n2_g+Pdql0I_Ag
ze!mIeOO6XKfWKlqz6b||BW@i-w<Oiq08IFf2?MkexSHfe$FS9q<Q2!&N8$wCj=nHL
z9XPG;IX&|Pxpg`r^i_pmMKD0faX_XlQ>NCw`T<HD-@SF<7-GH?6{_i*erUHy@3=R+
zF#F|m)+dEnUP`+X8C}{n8rbU3&lgiIC2-UBA%0H%D*j5_2|U`9gCV$(V^i(bUj4h9
z^C#IcK<LEiIiD=edE~(X?n}x_v&z0pD~IG?do19goC&b8c<xa}_y=|LB~oOMScx-k
zYB6^l-x(Snz>(wp0<nMyIZ1&`E5@*IPnBE$z5p2uP;HMDSmTNQrehCW00`*T{mX`P
zJ6NNUQOvt{ihld|Mv!|sepqmv(7wNK`~f1qKiTRIrK!Sbej{EDCT8tYyPsdMij{aK
zFvN;$*A+!>6ImI90^Vg+P(**WaKt>h_1axQBMV4z+YI-?2d+mM5&aSa9ZWPIMepK!
zeaN!je0Ss6NAHJ0?dqiB1MFG;2K!i$T^j!sKeMsc%%RPTM7K?GmAyLKQ1yeyKEQJd
zo`~p`AedD@bW~6pvy?^vI<RTo1KE0qrVG+zfV8b$Cz8~!cCZ(mvPeih*_*4+dt?WQ
z*cPEv9o5QAVfm^b?1-S{24(<%Uuwd-tjy!4kQCl~u>a8QTsvLx#<POsUsz1t8FNt%
z1}JF3&Dr8#d8Sdp^hPGU4G9Y>4Qc1w6UA9RGVsWyp_pYrmvN9~I0!u7%*%4`g<UCq
zMGEl|dq)h8hfV2!lE>}Gc9e~}$^xt*Vl^o>Q`bNnSfn`bw@eM>67$g#Q`xH{(S0#0
zSAvZ|K(Zgjq2TXnGFUY51yVx)=WPS2P-+)Nc!i;M^eteaI5U{C$;%ix*&J1MZnW)x
zEA`9amWXxGHhtfLBZC|BWrx8VT6yC{A@<mXyS3=jOLi27xaNB{b`Wg>Ppm?KQQ=ky
ziX_5fQ;J9Jt~5EGKPGr)3Z8J>1?)%^l5Z}f0jMqm<amsm&!78!v!HZtAt?htvSkA?
ze%*4hEtPxh&tutK_Yhl$>plI1vu|t+&AkC^F%%)6Me$iKe^xshAGc!gx$vSDa!f}}
zd*uE*6Ja3x7KBl6`ywzYThw15K5lyUvc>@&G#uEnKbQ|u+}8)-SQiGjDpDXWgEzrd
zD*Z`vz76kvN|S#oM1_UNo<>@aEw;Yfbrfyh26B3i&r5w$pP?_R&)x)`99dzC0=qht
z#QyN1wUiNbDfp<0a;>V_vFYN=k{UA#lbrMfROvluVReJ=9cV8g`M!_>T89$4K216q
z4efsL2OCXjzq-P8yDanRHDDIYB6)bozovRoHB<GF_SaVo$23Ww7;Yd5Xg#eQh}n#M
z&xMN5F)My$BqC0B@2}#DylGerJZ^Ur*QW6~DRs&S24w!uLO>^)=h=3!1Wahk`X#$F
z2r_*fN5ei`DrnAW1pRy8YWo?%O=p`qPq7J$fejf9>NkK$Po2>95WitBJH;(T>2^a3
zL;*?;IQI#qdHp-7^$2iLyckC_4;wU(m6KAxa14S>Sv_S*{G+<7b7385#4QL%(WeW|
zxoUpKjLf4tJWmx521Q~v012r&p(JrV=9n_No5ipB`Y7`B4d>vQ4Yt(~LDk{!)g{6C
zRC4cuR37cGmXruhuieTN*v;w0O8L44^~;R+>Qt1I1hPWJjD@45`gW%6MwX(b#0ckE
zkW1#GoXWt8YZN3rWd`T&4p^fQQb@AztlNa)I>2oUW{A3#b%(0I%C#}jIo+O6n_87B
zxZ}ZI2P?u^K$M5^8~DY>w@0nQ#^FK(7kxqQoiMB3(_5$E0c?<w$srYyo6km_s*bUq
zQFjskrmss3WR5R~@CDp=<MYf5t)`KNE}y*2uT77Y`>PDfF8ks=$|T>vIHw&#4RUSj
zKJM*1st3<3$aTjOa-C$QwB^F=YtK&EP_}skJ_mAUrb8WOeGn4v?qhaz_pYBa(?BIa
z3TC-d5^K7<4ORc>in1**VPOA3$dSg~Hp|CT{$UlgN>snpESQ8LgLS4rXPB%tIrQOe
zJUPDXH#9pd3wb(sd83Y3QIuS5NS}${jVEn<vD^CftrcV;yY03*0>g~h!pQ6pcM`q=
z2;*Ix&cgcM7qfzhUeq+lVaY24*75k;Uz%$0@6`@AfMwFE{9?JtIA$&9yym*rZglLM
z+8+u3NYy{3V+c^F>EGqq@~$A0tBn9k=U4>C^%=uQQJ#0|SYkUR?>Kz{BcMWrdpEU5
zI(-y@JCIQH->0rgAZACqye#3qi;dfq`1##5UWL)H{f2<4m>!j^aKq=qfv(Y_2W0L5
zg-Dr-+`!5xb?D85#*F4refQE5SUAeZfbJ4f>HydoC&*e!k<%BTX#L7uwU6^3rp2T_
zyz3AADRS7=*hSy^!|Ui=-q)-~zLU}_203K&s4W$A0+5!eOTG`yGXvi<Dop>t8;FZ}
z*$u$R-LgAJz^zu9U3Ps%SEY&3%>x(i+1XTiu{Q1McGRLKVk8fmNdG7cMPvRUBTg>m
z>+M{iTJQaCF}Ll;oJJ9T*G=oopNE#?qC}2|J9~H09cudke^O{3+HT<7Nm8|WceC#&
zC|J3TVLDtR-*kIv>or*KdY1q}TcO&xgve(Ie{}K_HS54kq4ITUx+g5o(B)IfIOvXu
z<>@s|GwPfkv_jWST*S|KC>gET81cOGh=(Z84gvIpo6de~j)-=$b;!h<?w!~s8$Jp^
z#d!TFY`MW8f;Wr)I`SxPeRi>)%IFrsvtTaXPPfSW5H<2rGImQ=(1yt;`ZyjJf+qk!
z`<VnewRk<hHk>Rp+}@zu*%eI*I=<fB>SBwGQzTmot9iil^y<;+%>n?wubvLzU$mUI
z`5w;@--$V}zc?J0!jJUgOzHH<nyFOr1N~I2p>6x3nr7u!kjg*i<M?S4VAeoPE}Zp}
z+koCnmn^+DIo4L`ykb;>kHnJY9e;YnF&jUx5lb`oUANw%*SJ+>h<KDeQKl%8t8P+K
ztA+u9CS{J@b9GmC6Ga*N74szk0y3?MK|H`Ws^vv{duO!-AlS&-mtyCOPu0d$rcY?i
z*fxAymbWJXfZX=jfyz79oaR|Nl*;NM=`!sTe6gJ$K^Wf)it0oUaL6t0?tPHWQ0;!p
zpH|w`ujv0+=^FGc*k%Z?0n~B8I&EZ85A`I-BU-7RxNG!qtF;%@oRvbGXFcwhUn3WF
zeG@1wEs<#Z<6{81q<2lmBvbz0Isc{4I@~(MjFToC@GnS2Fg0;FUuW=4V+544rU^Tn
z{T6v{pl|%y^=eD<)0WH3Y+jc2y+ILw_0WtHcJNDVJ=MGrqrf=CQU}!b3z%!_QI?d6
zwZr3jd+#H43h;xvU8poZIq%~~)rO*3VW^=ro^LGDcDjKYZN-9n+;34I75X@{O85aF
z#*CdK?54)`jQZ%!_5d)jB-^|#G=bASh<JpE6}Xu7sq{0fJ37odv;-o2atv{d_J71=
zLQg<nm<5<6mo7F_qF*yVhJ(i$7_8aHmj}B#BAaxT(@LaMALCWdupl-sSI6h_lo3*M
zf{0B=_HWy%;gJ~|E|B4+F2^)WL}B1$@(!#UEDHrOkGO1v&xEK;nY8$)?k|76al3#V
z>S;^}Z?J-sxtX(vx(sUZs70UoF68Q4S2g&Y^%hx5sfqR%4ST2X8b^Z1%c3EH`_4n}
zRGJ(iFwT@Q58A7&!TlURyBhFH1H_Ee&5X&76ZEU-4gh|KX!%_%HE#2Zyg|2x<ss-#
z=adBDLY$kEMqX~^!~q8fPIGQ|0yv%hmCnTcUS~o98*kD|-a0gS<4*zY##FTnS9?Km
zlNAsGmX$Wr1G$(Iap&d7DY?2?fUyU=|CnGi#JmEN8K?bP7-HHL7A%V=GAXIf<Ne)j
zTX39j!ZJ<Jz77tUk@Rt;ra&P_A}gv4^OyzN-^++Y-_O@0kg+mrfo8*ZG21nQ-70io
z&Ie(r-E(ufJ$2tBl{w02!gg!ga99}m<q`oU3M!T!X<uu{m(TfcWRnO+xkVMvOx~ne
za-R))9ffAfyc1tR{6e@Dulh5tS>rJgS*-Lkz_mU5^I?_v0Ues5Q!6@KecS%oed93R
zeV{6COZa4jXXCxHQOCAxG^p+crrGZ|%$5n20XjoUEE$g?n8knG8*AN-YY<DmQ8%6K
zc=YVIot&o(B__}gUqHzdOb<AISWX##&3HnZL)+E(a0AJxCTv68j$x8PWu?;_Q0Rh;
zdcs_wuBNk^y!2!~R+B9FQ&5th*5cKG1>7*LxaRI(iFJ>Bb3X`+I6~k4{o2M5+}v}&
z+ON-hGt+~OJ$$mK(&vXv@TWQ91!4JF#&$BW$58ADKibP7xfpPWj+l?xSFlfxltK4N
zhV=s@*Ux2usMzA^k$^G$V(8G-=;O1oUYJsY&4f@UOO0a}d(uAHkVk{Oa@+Gu(RHtY
z6<qy>w3SAh!vhbnH)gPgmN0P)ZVpk`MSsuJ7{&!hgBfwZi(z@DR*t421LGBMzYL%w
zI`azO&$E-bWmAAP#SV+@i*JA53oVFTi2Zu%y*lX8;B~uBwP*>x+8jdO!>&p0X|H{6
z_c?fG!N92B+b?m<!?>zBG6pp(D5d3mPX@FshD(j!e_CnBJ|+dU*^2l0&;`O1Lm}{l
zz<&6-enqFPKL&||CxNXGvOpO|r{eWi0oWXECIpwV<CptlKx4a`Ls#w6Qh$0H8^WZ8
zvep2z3L1NkuQrr`0Q&zbAskmUu!#drgr~3>rdFbA=C%CDk_i;$+_7_3a`3~cn-fHf
zU_x*!gp3sM>bkV0DL71@&)8QR4zlIplo2N{o$`4&96`-72XKO;%E<X7D~!+W`YqF5
z+Ow(ti!l1=P3VOG;6yZ`26CObY#5xB7-q_je@nl*G#5f&F$ef!+{vW2#eb-L;P3UE
zIP#BHc*yfxv+;MAW(p{y$h(ZbO;EN&3WOJ+I$NA;i@E%wWX+@Lt5>}1R;Sna+&ia*
z6}7@(XatBIe|&XGa%tY{Q@h1seCpCXoUHVWXK#NGFagJ*t6+W#o(zEYUj%r-#h6dJ
zr&fCt+Fkebv%HU#uHyD%gbE4GTuf(Cmuw<i1|?X#QR%ZkM_(<Lar-gIw810*DcDqq
zK!<?zppZ+oy?h#Wz|)X&+(iz?h9U#aDEbf%(ABE2O)l4VO9*%M6Fe1uv|-T7J_Ktz
z=IB&@Fl3JdRvLPRCgjmLg)4HYGcv(LuVz3-VHDAUUG)NL?lJGV{ha}k4@kSFG(~zr
zqSnxj%WP)@;M*kYTNDc7t4#DEKNKe^J-96DXcIr(dkGzb{W3S9N^+@TuAH>6dMD6M
zJCMC8ePhdqJR}0yOk=pktrKp}N+c#GT=aYqmRI$d7z>%u<?z()K6_w2?QGrqp`{rD
z`ofh;*)V-4jHUWK;~$aGWGkl($rw~4YZn4vCE9+jRhXO7k$5;b=UrPNX#cR$5yrUc
zy9!0!j*`A@800D<yc?+2F=9JNh2EU@n%3JP%(pHtM)mf_zuP)7LJgq_n<>C|X0n_}
zieJwMncfC5h)ZAMvlg|q<HuH(2G+EO@y@F(Hx8(>I$}diff~zo`Car6deKF#1@`JC
zgc&7=a$QNpC_VYJh-s?eK}6IM8gmiXQ+hv#b4RT#vYg=?4EcGL&ewglUZ6dDUU+I`
z3HFe8_H3@@akygi65)1aWf2$6=R?J=>y#M>v8<hLpf%oOA*mhU@n{zyoHrqNl+>5%
zNUUdh+#ET&pRy*CB;0sSqTqkL9rZefwu>@}1!RNi-FeYpg}+C&k~s&M6@7$-xfu%i
zagk|1so{$sNIxBI@L!_X@NT;jgfIE*K9g@4zW*kcSr+@P0htiM7Y*>C-L$L-Zc!+Y
zcdLvj1KGtAGe?m0R6JmUv#UQi$H?rUtXBeYD7F|`SrxxXTUwMLF;gR+d#Lvs=o0so
zC6Ac3g0616-%U0~9g7fvQ})S<*0g9knVjznow2ho$j7~-JEpFvC!ybV%2Bf)sBz(F
z8lIDNJLT5Hcp(S_$03o8ozIz7_r8x9u{~kRN!sCQ6&e}?F}QD?DR<HAelrN~(`vL&
z<=e4YW-$wwgT>KZQQ7QtdilM2$6`9Vi(@Xfg5jYIvCc%s!T>&@!f-bstcV%XQ&<<d
z^|Zxhtim4f?GZ}PP2MFkV%+ltmbhWRNt3zVf_k{~Zb|V=*{e+0x?Vf2QH_Mx8IF~;
zgQ<kZb(7|PiK+DiSz+wUjV;$K?^3_>B?Sk8b-uTl&$*_fY@V_IK}4^```@7?W3;;t
zVu4pZ0!`{H`35)ezjqSz_odFVCSl-P9?U{=n80zg07U+pAE5#X<Zd2?L;Wu^duj>z
zYJ{9<0yxARznoJ$;g2^7?{5IMzKjE9U-FIb3KTf;mAiceC~f4~9JBrIK?clUm!Stv
zu_hbXbww&%l7!QTMRKX;t2&82agpxVq7)d!zeof&Q?sOe$?2PhO+&j`K(#|nbt^P(
zw7;K7+aWq#Q;dkRPI|H4oUlzf`vS%q4Z+yzDq>;6lf$4+Q-=A2_>&deZbxfsHH8iP
zt){zk$(5_eedo7If;pT|{6uYX-KZHmi2Tx0Fno2<+URSbZJU_qLsuC-%1K!uEvQP$
zm$fYl>k$DozNcRa@ZJ%KHg&r(Uv=!Gt&y_@wnP)-Em@CLdav&K-4S<7z$MNm&3gr>
zPF#yEnMEx5ZFpDegPd4rhZEO4vWA&P7v%gFG#U#TjEjman^idhdEzmVqH;+tnNV?9
zReNYw0^KxkVK6=AtnQ*-+7_<18K_Jx+)r$~`*h0ht_`c^O+XsbCAnpgGi!{A^0m0f
zyR|K~aZ-E%@Atf`Pv93)9~)ZD6c+%fL4${|8_TCNN?=!0p*PlLlF+*ncVbv(_F`@0
zn}BU-u*jAJzWj|3Weg5AMAa>zE1)GLPI-Ou)_Izv&VB6<VW7tYrQrb571`$+(jLFy
zN1(>+P~#bSwfRijSL){0>UD8Js7r50j_cO5$1cko_wuIs<`>N&N2w>wzM^jDu<MkK
z*_Csit7~ruxEFR1*PT(Q{S?j=LQZlI>q6PGNq3Ov8G(#?J7$vHwZ^S5*X(G+<yOIa
zqxx^tij{*P7Xq`?&L-gv>HMlA(=<N^C#kdnjd0H1K8v(WhpdSFh49MNm04By+hwKw
zpdJgiI%~`#Tu>S37=j%9`VBb6l+c@t2}aF#G_0E1QyxK_4<m)hL*Y453s~0TpP2cc
z?wmIh_a3c10rIx+@UIC&j||+Gir0EgE4<{v%V&`;i5pDl;5?{Ia`+mf<K2~1(i`Jn
zzF)jJkK1Bb()yq>!6w_rYPmOa8<3@%<CMPZ1vx3>m*7^28|Rh%TRot`dM`a4$SH?C
z-xD20XkS}PCVcQr>>0-Jw3g!!;<RB&bi$v0{hcYFC@GY(uEBjdua_b}gl5{YU>>Y&
zJQ^dN3ICq<yd*lmy_s<JLG(Gqfj4Gv4iWK$2>yVQd1H|t4QNf8Or?EkGWTj$hDxaL
z2|KEDeK(Sx!sgo)V1z;Fk-Dsrf|0-D1^<x266ukp8vLame)-B(OIEVlAAFvgFM-HO
zSZFmMr?G+tADIbi%Km88e<&N*V$M(9o-nA#WmM7~Dc@9GVH>LUjBd{|-MXZibH=h+
z(3vIu&;JWxSIccw@FoJm>ihq&_m*K*ZEY8@ASx*(AkrWp-Q6unN_T^F!=}3=m2Ls0
zySqCTq`RfN>zf=s=RD8*zTe;P*LPj}+HQfp_gZt!HRpYgdyH{|N(s_@N+|Vm(<ir=
z-8Ie!k^LPCRt<*%52<>UCSw1k;PX`Rj#+A&(zA2^ubZx`a=O}#nkwavQduHLtj+b|
zn>ygeNF`!dh7Cru3NpK6!D>!%aKc;9<CC*^5wouSZj}aPHIcB~RtGzsEb9dpGgXeC
zu;eWDNU94P++u&S43$Cv=H^r4@@!`R${a?WT#c!ZQNEN_`|^6i_9ke={5p9{ZJjjL
zwH8g0Z(&0uI9YDZHf3GAf9i%dYbNcZ8%=gU|E2I3W>|yQlOsePukWrGRDQ%lBp~Bm
zuJ2Y|o}s`yb4`}6?46AkgK7oB<H6&D6;IW}b^_1xx%Bp;R^ey6ZIlNkZ%liH<2fvK
zfr2SS{BY%4Et2IC^!P11#L_iS=B)ePdoge(xDwIfpwSS5@{u51JQZ-1{iJ{bndgN$
zw)7Sm$;xqlu~BD7qs45ET&OY)a!@C#*`_ck?(8*S{@%2Y!XLGN$6gN65twDece}-I
zbB=dvpF8}j+lH_Q=QjKj|3hZz((s`m-eoemx<Wz@vmg&q!*?;Qm&Q~mOo*w^n%j}-
zUg{0K)83PR+uw2Uy`vn{F3rPPw1>U;jj$LQgt*{yJ)e(Nbhb6+j~*ne^O?hyu4RgZ
z!M8ZgO_H&2Q)|mwX!-P%tMYQEHv3z8`O9#<2P)k6vmNG;JE;`TF;21<ippiXO_A-^
zXCp7nHsx&^+oE=r<u>nXmzp(#>98E`x;AV!EZkhOO7rL5Fm5fm^o;9px}1FAVqnrk
z)v^eMtkm~b2cwf`C07g#ze{mbKAek|ST%HI#4l=cYYKN3=oI$bc|1X<RWgK-APzsu
zkSdna6Y?@avg1S_I$PeV%30#-l@qa9)<*pdf%4GU%E;*L0O@|t0_xRLlilbpdNUjC
zPr`{byIG0qhW@y{O5A(5-99n**fl3W62;0qqoAb0ny^)9lmN=eH?Jd0b>98h_idRE
zssdcUSog>MW&3#YD(;rC(wrt=PM4(|k6Q=B=ssVeTmN`$)N!&h^O+TBPX%Uc7?x&E
z!3s-4)rwjAbIw4PPWv;!rZGbp#;bOpD}5mQM34u-c)0o4CW5H$LZGY(bNqzE?>BvM
zduAmOWVLNY{#;4n8g|6bvZcn^Myssj6F}ZHEjaIW=CX%T&mc!D;n`8z_u#1T*Tb|I
z#U3hp!7^3b+@Va)c(MJg7XDY{ze^fLa0kS;tv*kbVAqH|etl18?Mj`Y@HoFZ+chIN
zKqbP~3sU~-day$D(-Xx3eMT0a?q|+Y=N{XSO1Yop&HH;#$QdYB{IUB;z7n<^U5C+c
zga{RR1T3wHRCQvi!_bA#%q*zrz0h(PQ^b~1@e?ad+D&yAc%*AfXB^ZLn$vnQN5Enl
z9hSCT)r~B)@p4hK<5nQLb-MHJq?+VrS+Rrl{z+L{_SabK!c{$I;wwXv$t(92Ts;^x
z&xQ|9S|+&J8G4CVrx*QTPBG}~vB3B^w6e2Vzh0cRnO~H<-tF!VT?n6eb)KG_B)8rj
z8$OMn7BC96!8!kv9mTp(6fa`Vab}PinVY}&9?;`Dl=UBIlU#WRV6<3nuQ2?c3ze*O
zzPqW6k!2TwUhwskTXYeu2)o*oz(B9&*60Sx%<B1!l8v<>*HRcvHfZ`M#Pz}ZN?0EL
zW_+p~Y=R{@S0Bq8nTu`i6R4wjjn#)L<uvB+-Y6}=^^Of^Ck2hlysI2Izeg3r)h)Mv
zeqj5$5At;V+85Flnio|4xhA$BAk`DiA%_h&ry3gl9_|m$0&ic-axhRdzOZ~7@SKMP
zHp1F6_+w=eTd&85gXbK;6`*ZWj{Dak%4$K2X0tUTW84r@JdTg>D`YN@peJ#~Im5ol
zyl=?fmDRXLk#*h$?Nn=<hiW#XaR*#v@*Q3ehRy!^!R9wrZ@-B~TTXAIXFr<_(n`c*
zIpbn2o?T94`$HyvTi+fedSoq+Ysh;py6BR!nkPqMw>C^G)DsqUE&xb>2pVNQ;JAT0
zOLqhHJ<5la!;*~%9}d6^ZI|U)4Nha3i!h!j)fZEiy6An2b#G`^L)7U*&<CqaCgG*`
z9!(UQ=m3Khww!OzkZl<ez0E)mR+XEYV+Jtpg{(+M;`#gi#TVy)0Y@05C(3|bd2qE(
z7P7|XmYw2w#5T3o{+x??J+)=Hr4g=6$VMUl4NN@(UBh?jc)QJSaaSTCm7(!#f}#w3
z{0i*UTHGW7Osd0xQQme2B+|@W-rGPvj_*u;>naR$W<G#rdw{zdFBa@O^)p2rduYtq
zXPauS`98dkH)>0MeQh39h;VnI*;7!fLyT`-&+RE&2I8>m2I;R28}#l=6A_wvRBsI@
zP@K{ebc7Keaw>Yf(TbJU>tDWDv+NyavrC^XM!7$E;j%nYE9Tf0LbY{*^jvNtzF!`{
zNWTaQ%c;tl@FQ1OsM>*cL#fOj=}Qu7H_TOs3AApiEiMG2lp|7;OWUxxRo?ebHqO^W
zqH=T}*rkCGvG)TTq|1rO5ki5@;)$?;%uRKignN3;?+YNfKM4yH=Ocl2$)YvMZ6zR^
z25M<l=gC-R?(@gV1$Z4wO)!U+&On0EMqqyAv^Pt!{>*)SKqg92-+0|2729CiX+g`I
zkb~94<J^DGc=1^a_RIo=<Zuvg29AZlIc4MHK5B{4pqjGCDmkAh;ASEQFnQ>%=+}B!
zM=gd71WoL9u{LGEp_9P~Rl4}~f?^OOUDL&9O|TMFYyuLyb(FK)WHY^f3BN1%3BzWx
z*~~)fknIg`tZ35a$vfvid!6qiEfdJ$g;oJ#W|!T^^l<KjLoO^nfv1~??H_KJf?%B?
zOOgqUoi4wQbO=b7F-5$eDUtQ)!qT-t>A`1;1&Q^2H}xam(EZq*i*ECN>_JYR1myFR
z@VT%Jp!{J@f3?x7Afi`AWXnW738&hPYZr>gax97h4Yl;laex-zY8L$hU&cJJ6oKv$
zT|hRPsJF*qOOk|weo!-dTun1S;c64qAuPia?-@AqTr!>DePhmTh}e=qCxZZWrsmyC
z_s+Wmln9-$%Z=V)zI$AkGbDWO$*!Gj+*8@E6q4EV*9g_0@;t$^=Il#uBzIn&yG1or
zCE-o3Kd82epv(eo!=l{PVcO8+MYTbh+ONTs>?wJ$K2&S4%fR-O4*CtB+lBS^?#FE0
zc}NfgY<$8its&zShgcrEg8>{ygCL%+2FN1k+5T=O_tEmq3a9yaLBi5?Ul__FsQ_zt
zQZ2~`0`H_a34pIR?cz+3w~^8L&0gXzAdmO=I}A9XFHr1+xH@C55e<h>Z+z-yinz}R
z7LRZ_c>}59IO-v>=;26~z2IG)J;H-zs9>-af)x-8hh-)Xst9)>WJ=8jVn_3xwfXT)
zRn5MJu(F?m=)j^)N-jg*SD7^4s+af^$?|U6#|?v(JAp(e!zl*4t4C_I{rgSko>);f
z;xVavmC1R}Ex-=^R{BA(6>uVkv@O$w<F8I8<I#Q)7tV9JDldRrn*H90=jxXra#~I(
zd5XQQf~~={7gV=sRs=2wBV%KZaDe)YF+SyIY}L6(N7mg0Y@H2D=J*YV>s>K{SR28M
zTSt8IW1AZxYC~0nId##$$;q;JaI?UR!SM)R_(kXsvZic{8~h`bUxC85GnekKm8g+-
zU)qRY9wW5|Ei_2(qzB@crIuLsFt%r19*6M~!G6;}IR^PZY^St`Cn`5k1@GE_oQcbs
z6(Zy%av?N5Y)O>R5b;alcD5C~g&ly62_g=96ZGYVL%$i~9jdI?K;%KpOu|0;EIf@X
zz(cEHgAw)XZCP(D>Q5B=1NwDug3^AhSq+XeS3ozi9HU3)*?5+L;OQ5=NH<@jY@^k1
zIP<x%{n4;gL(_r12hhQnq3wSjOEbB;aXudSKKd+MGgSAqmQgEb5o$l67~QDNKhfG^
z(Ii~iJ^GOG(Y|#<1?ut*2X@ae#~Ms?&XJtS>;#$_c7$0tMt5*CWMxh8XC+!%#OZ_U
zMU$IAWCkA?_RqCI)|gS2CAq@oT?cScqw6k&D6K}9&S-&#6^%gghM2hRm%0h=Yt!uz
zhPHQ=kYnxdhezFP0WBoa$L`%WtNvagX4^-H8G}xiHk+Nd)VqM!Ko^P?4p_8<zqsHI
z(b5U@KX;lJ)-=G;EVl((&q6+};H0KYtDKF>(;RaRpL+u5mR*h(1hu>6FgvQT<AO9k
z<-cLMUv_VuIOfba=B}b;{;Gei7nkYvn-%(?E<(k!%_7dM=#tG5R4?m1<V~a6F~6y+
zZ?K`cD?q?=aAETys<KPSuB<l{#RanYD?qZ26J;TYWE+{sappoe-hQ2~z5>|&jPagy
zMX>9p{NU^O*qJ%P){O6&z#Ww0!5%c<=o*M`=z-T8yJUYlrmXJG>7kw3M;KfCgZIwy
zs`Ir3q_b-uC)4SH`DOid=VJG#P!Fu%R?f;(JN$xTfO36BkL$7v-cM4G=nIU)h)NUQ
z<;y_nzV?2GZ>=~fGeTFt!{|!A@<jD4!hKz%V}(IJlN%apLm+EeBFo}i6aj6Aj`TU*
zROKgWbvb8tR*0^Mjp+CFSqUQz`RZBQkkg(pzI_yh!}m^@&2xqIGI0?y0jtN*0j}R6
zcKAo2kg7kj?|X3^DQ6GMQ$!;=B7*cI+=|LH#VisFM{WXb=9e<}J7pPO?e3z8y(s<t
zP+3>G>y9^15sQ+A4!c<TdJwzkEV5}u^{#aFXIXh~S2pObo!`@pYME%Q9C%~VAvg<Q
zVSFafYhL97YUQ2%*J}xjh3v63R?`N4kF|;p>HKthSw%hAk0Y`@-EIuy;%t*~h7hK{
z$v@L-Y@iQ0FFM^mjH5{EH>)jZx}J<M_rSU}`>vhUq!2p<mXL-jz(jdXE}LuEUnn2Z
zEu*FMuh&)|$6r*!U3|i><;#F<nt<vT$VEZnL)Yj_VeDV!^ipOR0;J@zQr!?shy0iP
zCEOIa7jq^eoD)N?%5xt>;aD*VGL;O|r)xu6=*@pRvo2rS0Z)@`b02zS2s5J~Id73c
zpHHhOH{zTDAFQMtIyr`-Sk=to&yLLSK<golp$L0KE3*z1KQ&={ZTh#_4M#7eypE&H
z0#<||=rGFR=o{F}9B06a=yeL6w^@-hJv8F*h-7$SA$uoZcq5l~GcuV{I9Bxg7c_@b
z8r}3l+`4I+3!<Sfb=%3TEkKMLBYyp9c;XP4SGCt<gciMBzYWHsT`<gTTHzqC@xZo>
zC=a${-+blgW@i)b?7SQ(A`VX@!$#O-JF6KKWV6!s4Y#zVpKrNQKQyu7S4N2K*|oC9
zJg&T;(t&&bIX~I5PF{Pv6GAhT2DwK6p`LkO8EI`{LGyLlt)^t0c-@3;-6=&H0Kkd7
zJ4%`TXDVL*%XBvs^?Jr}w~QnZHW`PQzuFq1JHmZH&eU*n(f{qxE1|%%)|@=54h1{-
z2`<aKTfn9<6JgNPXRL@vLCw`G$L#J$L#2@a#1?fc8H070+$@PC({JD-m*qg=$qY3l
z1LJmA#!$q;rmD!g78SDuL@dQoYg8d8%N|Z^+YX@@zuK}0r@z&mjW}=m#E0-Je+r8W
z>p0=r%E>hU03+O@5Rm<50%7R|fb!v@c2|P|1`)^B{nOt$D35Q3S!?Sk&Pr)~!F}qE
zHmjW>%8VoBDq8GeSpjrl6?`?YVf}{D-aLZ|y8Xz8fywux4A;K-XMN9O)>H_skpV5i
z{5yB!pI^Yx)V}5~kQ0?69OrDcxw$x8v(@g)7<IEcw*Ab<JtU8v4t+!aIQPgj3D!V@
zf5JAaBU&4#j08}8xhyG3{~k@*0GNX+s=@R#!<u{!vqaqt%eM|gl!_t`0eU2v_k*NT
zkVXV{;s_X4d{tGOa)YjgCs~}xHAH<I=T)?3FAgr!iwJP=%ZKtNe~$fc<~%jr0h;$k
z0YpR8|G1}Y8eTJWX|;nf3?4gbm}}@AD;dvg1Nf*T1_l-JS42d!!s@g|7UEUaMH4jh
z2`Nx(m-WRJ#cKmSl+~~bxX_9A1<Sbac7y-0r41wr)5!7qA;t>-i`7s0$h!|ihoA!C
zH!%HwKg$vUH9{dupd1&`-y`uKT<1UUkwty@BUmxH>;L_`e}3}+e-iQk_v55ch~k=_
z@@Jm?b<4bAfR4#8GEO{W|1r+DzjDvyIh>%W2b?BP;Fz(kOLCQp!&Q%dU>Pl`?`Lbv
za{MPV|0t2a7TsKieF?&3x1J45zZ~QfCyZk`e}f-{&};GhF_ek}ASU~uR%LE-{@}G@
z^l-mHB0f%>QjVD=b>TfPiz(3HmhmYJEO(g`&9be0wVw7ZWFW8k{-i4UM(@`Bj5#L1
z*f{TJ5ov4Hs!jesmY@J4Vu4<hD48>i(;Rrv&8`n?>(DmeFf!RJe|`V>TfpyB20T;p
zdOwh;cPd7u0X>H`%XY1;M-C8Q3of{dc?Lf6&&cmFD~{)zV7fE4yB+rUtB$1${@3JR
zM1RBPLxU^<%3V>ruD4e>N$Qrhof@{ir0a*>X$R+G4>hSjk4Oyf2ZuRa$4OlVK?@}e
z#TLPQWm*=5W=Qwm)aSJ394}WDUMG|Jek)8r;fss>quR$?mH(k+;D7CHOENhRFexKI
zgbtqyrYfpw`w4h&z#%S$VN>lNK0b=KB;0}Rr1RJv;87cam^2FnZKCs)T?ML@Z38Z*
z!dY))n*HDgoKHH@ECt5?Q=1X}#M_o=5-?6W0856&d-&$^c<>p4TV!OBpD^_9bR`pz
zy1}v*umEy;nrfqqgI*SzbgSJa;H#GuHryQbuV<%uP%dGX7dJWWKbG7W(tOa|8j(rH
zN4kqp{(&egVIN5T4^n^zK&oB`-bp35q9vNjg^nvUQYo0bXpZ+0s{4s+2p-~Zi>JOM
z<Sx{Os8*VnsvdT0l=tohCP)aV1TO$ye0)y9586g4->SL6>9PBGKpy#k>2_u$iI=qF
zQIo6I7^`~HPA+iCk)>O&m9-bkmB4aez#P(i-*LmL-=JD+ARvkD`Au!tB}?~O%gA@I
zie=kkk}zk5?RbJt8)i+5^`2UN**Hv<jMpmaOYvlbj8>)l!WU<C`DQ6L^@+Y_%tU`}
zX@+J``uPIQ`mUN=`xts69HnwyyK?6VDB3AN8s0@LU+o^&8~IrN-niRBs?b91wL+==
z__@)cSQ`1)dYI+e@i})f`RqBzEVWw~*7e;!j^lw5D-UK*>HA6Qdz0|~S01d~HGyFf
z^*i-xgBj<%aHF^Wc{r9jTjyH_QJ7Cosjr(38hWy%nk^q{SbuaQEp?KF`%h*p=jsxG
zU6UAoCMro0JQ+ch4h|eSZK>G=?LB-|7xz(5<~pGLf9#h#%I9&hNA^3XtxB&3mX@nH
z17-doWrznJMAIXWpPsPEXGt<hvi@<U%bA4n0Ej!`&yf`jS8}Gw`YZ36x?ambvgjOz
z-gxb7-jqnK;x$^M(V-{JX?I;ntX3AUc4{JWN6oM4oqe+`2DUIfllY9W=DS&TJ=_Qn
zlo%W~cJxH#$o<|2-6Yv_&$`_$)_TKU8>&R8=ipQ{N~OJ%`bOzrT~+z2ivF}}YS4T-
zxA^ktN65f3fl=KKLmJB#%k%3-y&qOaQ6zMgyY-SRILs_KRg*sos$09(vnRS$P&rKb
zrts6WEPTUkDJRDlszY)|J-8++570|l6Ljjee8UDDtF<xL9S~SpEey7HX1kbqZTXJ3
z+gAqm=^EBqr)0>OGj|d(s0PVzhk~cpm0s;Ej4^W>Sk+%m45-ph#r9_nmO#_|E877&
z!7m3ztjGcnN@f&zqCP;VGxd$jD!4(>sj@H!H`00tT_5e8CeZQ>dO<zGrw2$(#wAdf
z>JvVlivp|T#!!k+!gzJn@_C##8SjUU8V<$ZYiHzR=yx7h1B5PmF%$W^jZ&k9n8lOL
z8*UaTW(*x_+-7k%C$+igkYc?s$2~lf$?1+o?OiFg>CQC-&r)J4cNNc33q)wk?G>?v
z^J1=_0UxX{^Cv6})bQNDsUyM66%UkM@+GQ;RnbG>l#7(+%-I&3jk<ni4uVw|@mPe$
z923$*-0+l*%E)<ft$u5tPcqC!O0x2FJ3%4_o-F+uknsz;3#poauzF)Te$gZ0r@Pwo
z1oy&~kNrRZweo?U=Jhb2?k18GoUrwalNU<4rc1kbN7^3c^A-8)_qse5Y_s1i2yK;F
zrLG8G{H&iIaJ>vG$?`9jDc7S-EyJmp>!QAV%^<xes_9sIIYF(idw1pLsKPqK+74gw
z&q50%4(#4-Ts7P<t*`Z2On<)pH3cw#v#wBQdLm7@OQ|p7QDjxV$LoVsqv61eXrRJU
zb1~%z5QE5It4{WT<OoiX*uIJgbyZWnp}i8=zQD}S)lW+RdY2VRYZZiBQSE``BN5Wl
zMwbPH9wt>fh-#^mT~6?>elx)dxhlgXzllV0uF$b+jn`c#9u&NarTW|N^jR(EraqSR
zQr@iOI}Iw!Xy60))#8<bELVI(9_z~+6Wb+soe*~!<YRZfLun?btK+3BBh4%9I~10r
zQ(OZhK3B~e8dIp!SZl;I9`;$VHS!I-ccSv^^<k^?V?Sue-Lbv1%j$Ds8Pw+UG%?~)
zeS;h5Z&y>Yc<O}YIW!&KI3GY`y)BoPe}6SY4ROdzxITd?Hx($*(KNhO%NpcSPLNQ{
zj~5Mmm^DLbC*c_8x#b?kLvTJ8r&6!tO>xF5rS2F`+vBs!Ets;<{<eDsiw=;~eQ8l7
zM26A;d^)3z6a>qI+r2OxwxLj5juDv=TMk10cwow%Ka=WlD01hj(ge7BcECU(0Th&C
z9@kyYiID99l786k>VhZT;Qmma)9($FgUBn8s_LZLs{QKjuCnE^-RAzn6f?JW)D#=t
zEK2$2MlZ4|vL+hNUWN8R6*R+Gyy82o&Y((ztINSsqtiY^*88p*%nr3M3fyKi$he2g
zy()tqjp|+Ut;bh3Yqvu;jeFzXh4t)ud>It8&F!t`*nmTmV6p8PzL0yyevg|mGSq9<
z`KY)9#G&;t&vu&WVe^^L+`qXQ4~JOt9KGiqvO1X?CxF<|o+Ctgp;T9W4NXV~Df~P6
zdPfT`1JBNn7}zX|+0uBUK;F^nM;d~Znk1?9Ih@Gg!Kap5yJ=t`@w5^NJ5rkCsvg+L
zKJ}FHIcs9-nD77jAf|cn%Haiax{4V?zUoQ6kj19P&wrUtrg?U`m<gZi0&x*+6i2w6
z67C(aWTgj|u1Hs9Jp-wl?62waQp%+D`QZ9XddZUFYwb1?f%=FcQ+)A3=J%k!I|jar
z3Bc`*RM&|;HCYA$lNy$MP`u|w9Df2$^=z90oZkHsRK45fQ4Q`?G4c4kO*fuVeqj|e
zD7m=_M(?Q0ivK1CyAhW-4sMljNmG+{cpb|+n0SOvm++T(1#a`Tb{IA>Oie5k@Ku%?
z<c}4gTjo{WiKa(hh|x2sMBiSXx_XOQVc{%beu50<t)4r1dK`Nr`JyPwILqW~WY*<Q
zls4uznFy6@-G)IA&zd^MnO03w&sO%e@^ro0zjJ8qa2hZoKP|<t!FhUUiPfn6@>$J%
zD%X^4{+$LchY2=Lxe3!w=$|s}L(~UEn~_dF7U150Fug>34wr$cM^nzWF%9r<;|H_W
z^1G|;ZiO(N2ScO8QhkD8ajVG^-Iwa;z$k`^$;d5UcD~c(fh6`BzFG{|#!nzw)XPqk
zgBxwXZrc**ZT!(~YIfa}a^H6*JB+JlY1ZQve%Pui)M}jmSXGfA(IE1n5l8?FyhJr$
z?mmc!*1`7#zkuo;O&5A**9O;}1XMVYW8Y!14_Y4U?-Wey>diujGE4*GCK<gdqrL^Y
z*=!kta)4k4%-0u%0hhm|2mhsp^Z9FC$K~+{(vo$`lZ)d(u;AIP1E8X;|3ODcI6J`z
z3Ifd8X}ptJs4@xq5h-p*UwVRj7B7J<>eNbGhb6!a%La$}!jAzp>6PB4En;%(Dln!h
zPhB}Az6Tn+={Q*28K7*Ssd-w&95h;V!zX~tb!K<8%2p60ecR#TC|V0t69XD{gO#)t
z>ro94mPY1Hm+K6h&3ByLq4+$U5F6VDBmx0~>oXoQG8r<e{#Y6&CS#98an!Xx_+B=Q
zTkCjmCT!7=Mq&uu_Q>2uA1T7D-T?UL7-8IZK~@lj@P?5nzI@Gdz#)VI5Y29AG>U5v
zjn?;T7yPyl5#D)H9o&V<(Cu$`<XDt=vf&i7t~DtjJza3Vdy23SZ^?=S@x$nZ3t5Cw
z7oN|<`B|k%lg!Oi)(7tF0?FWiL-mqy)E=(Z*qX}2fM52Ye3b|SB~B0d(uwQyeJogy
zQlV{)Z;+-3mSq;O?(q)do+eGon_oqOB<_KElJ2$6NR$HvLXPVnsfy_RoPw&&ifX%n
zwKO&F)VQy;+qi1`0H_DP<aq7b5rq255EbEY8kfgK;lRlkT#reJUQy}&&4$kxH@j+6
zzRi769E%sQuF6S(>)74VonQe}N_K!r|9XeqKUj{_phw5|?ML>PhSDg)k3??lVv#(R
z&wzm}>ofexnZkgy9fXXd65aLzP>lQV;FDKhXo`|X6SJhbRbaaYEr4OAV!YqPHHd5f
z-P_Rt1a=5UXr65r@O<_5aNH1|v(o!pI!DHGkZa5`N32Nm9$7WJC-vBM!fl=S>H}Bs
zR^d0PHngd3N4){NLHV@J{cSEYRThK(Sa;nT4r60r?<XeIc0W}-yXZ8BRZ3)@>d<hS
zs~mqEZ(*6XeEh9`$e{wbiK^~vY71w(f#pjI*dXpWRNY-w4t~^OH67yfyR~YfaLZZu
zhr-_pY6gDP_6DOJJ%Ei-iZKmmwnRP0s^Rg+duuhw>pY2I{8w<bZesN!w{_#|`Wn{w
zo&nX$X@^1`^+Ka1`nxfzjP^Zx?D+CLfm(%F$rC9>vW03E-iA06h|al><<oB8-qv`x
z(8y<#0bG>~L;b8;!rJAwF_+sRRs&Zv7KY<ibBri%`7r4eN=Z+z9Vl|>F8J<a*xC)N
zWs_Mo@veSLr61C0Z-)f_bitTsFN*3+{qXwm7Ge-+FJ$QJZ+>2^>J^hL?*O^0F3*E+
zY69;q50!_*?sO+;Z!!<B*fG+HZgY3z$-~u#)>Q#32(Po?dGDLfE%cMiVS022sHc@C
zMWT5&zeWu_(8Xdiw8+Poi8wrN`n_w;n_K#An94ydEzzQCYPu?f5Su{A;o@LPSC!jq
z!P!`1af)-y92mD7ozHQpr6YZMZsXA6rQgna`$Sl%W9)FHTV3vxcuhEuqZiT>@1Vfy
zLr|GT#ca(#xj7z27O9WmyJMf6s4hI1uC>elu7Bc#Fof*4UXI@23S8Q8r18(kl*`*(
zLfSp|8(sbMXrK>(7yAJ4Xu*K3bl5S_rBQ#1jNy&)@ym8N!hAVMEa1YorFEx(!FduK
zx>l+C)#ZkETayS)!-I()?kU<bkwnSvkClaI8DD&iQz>3x1R`Ri;a0C#sV&zmCk!$y
z=mu70iA6LPve9jHU>hSMHB?(ke@JCTHG?}p0B%Z&o<0f5*C!mru#e>kuaI%szsFtz
zCh_3$a74L}@kEiPR2*%Jg$s}-6a*IUx4QO{Vg>5a5TO94FFYW!uRjxcyur7@O~hua
zOQXh&Jmj6IWPbWYU6AddtplqIDA#pi>jfa6frx&Z@9L2+NSjJuHpG80UmplQ{c5{x
zA33@>w?iGps)7Ayjz;4_bxgj=SId-5)-3&yI#|XHo3<DV*Pc<37ze61TMJi}W_Q7P
z85-Fv+&PQ$22uxtCm}@2@rs@u0ZBRYH3DxYMR$MQz*(ucR=tnu%i6==9VD=7wA$LM
z${eiI8*1>onv|Vo&Aduy{ueq_iGz)f*Woh#dFt460Z@@t%;C&%&OQ`k!ug_R4+TPg
z9)h&wD2EP4@|_1tI%r+Mq}%96@{;?)o@(Gz%|@!L3K8|dBF*9@7@)WS3dqx@!>*+9
zeAG`S#f^2qI=;&<9rY!e%u6W0E*z_d-md;{^rb@g`}bNbAfpVy*f==o+{P$YKs+pP
zzxMeK4Z$NZ7*3Es_#$X7dj+)JBo@4W6M$0(@7FqEp?Xh1gf+x%7mqRgmV6e5cn1jh
zbwx@CS*bz|yUx;u0{yf)iyIhQxlg_ey;di|-wh^DMF|S$DRA0=BTok1AXptQ8VQ;m
zuTD&gaxkdM*8o%Cz9bc34Rl6)Q^qjAKpAX`d-a=4g}=^@Fdyr3?`BAk?l)9~cX6~V
ze77f2VSFL+!Q>U&d{d}+N%vHJwgc-!G%tOEC+xbz>t|k}PQe*_>x8=l375AH_m4%@
zAqJse<hY^=h^h@zAdf>+5BG$~+6`y~!MEuEC%=R5z6r;0rOC&*BzuL&b)w(rP4f%Q
zIX6at&p#II?i1wZlg%mPw8{;l4Q+Ak2~oiKpkXWW2U3{%)ZruxQH^ye3+_4KF{@T=
zA((D01w!Z4Gu#JotKht1p&HL|l1Qb{AZivNRdVKFd$jB?7=V8YB}dCDswcqgCtVGn
zYW)?#il3skSK-))kRE`fRl$xb)An)Cd#cm~`Af{dO(8CeonEJ`G@WKIW4`E~5pbJl
zFO5A(9F%WP)?~ibFK30wX;8e(Rq#yX8O*yxXy@FJaS5c<qs9W-_nhC__rEYhm1l4Y
zw88FVLq_}ajlS`5?qPHVq-F^Fd;uZdGwsNH<_{IMi`C@96-{yK_jhik<17aq=rVPk
zZ-=#6mx)~0Vo2KDEWN)!LQHoGcvirq7e2E7MIhTxuW+V|{P1lG(H`fF^M+3^o{A^%
zwi7HJx7dh!SrJtH(CT70sd<owM4G8!mJLRj{El%m(Ml?jxio+Euv0B=1AH%XKxuJF
zzT^#tm9zovfgcUxXe5oN@Y@b4P=^P}L7~|-K;+BjyR9E=PBm;x`9N^IRuX<8`wCJ{
zjG`AsF7x~tn3P^yU*264z=99$`D!uDEq_s_(~XCUkG>01N2#~M8V;-`BlrG#h41X3
zX|^S=)&}^B!Nz+iTi`Imp#(hPKdIAvk`W9e#4J`Roo&H*3i-JVcROq6PiIm!Q?xiu
zv_D(>gzil;{hkw|z$^VDUNVDrMvHdL5uk;6*j5-xWh=X`jBW?jI!~aA)yW%ZwJ*$S
z!VchQ{RBbQ$$E&MpqQ&Q^V4LyYhAn2UhaUamW(<n-+!zhLDWH^c!phBalHV)4U0Vl
z&B)ARY~bf4wL|m7)2Kk&yAr}x#ofXrtN>+L!0%C8hON=4*t{zEEp`2UeU;%>XWP#j
zj)#x}OwZw*AB;IzpOXqoGU_vCLtKGOnZ*D5g<GwLF@!^?@KEJ7tyv1Ef0UVGkp^j5
z?&UF-UuyXwHcEf8vEfYB47p?#(3Ue+PZ{BCi@&RP*fQ5~1cbU0N<J-1u${EqZwS03
zyQ%jwCXWjL#z-a}QU<Iho)Tdss{B9|h+aB|T%y%I0)^gF!Q!!tqoTB-nbC#$<%JSd
zh&XW_X}SI7ep&yJF2*5xyg!bQ|3iUXd$5-=oe-9<<!;&Gb~VaB!{dDKiO_RYuG@>;
zI~$Vl{NtNbE)bENwvX*rTbZGhyJt#kCp*l<Qd8hw-GgaSzj|Odl-w4m#<%lGmo0gT
z6weU07Z%KEu{8?m>DgMlL6AGWQhhRCmF$@u=%Eq-;%~Yj5;tpWTBYhz)7-}-xPrb<
zpCIzxH^_DjWrg)Tf9Oo1lS0(8A5TCx+eo<T8c=gO1p3;@5~HWrT}_-0TSV0Mx!F!^
z8g-`GA!V2)p<BX!y1BS|yu^smEbTmEKEJCXPf?>hbN5w!F#9~sB*<93(g?5ownfL%
z&r>_=?q+>5-nLdvwaGeMwOIPGe4`~vxk+~B;66c<p3?2DaZw(f5|5vNO1Yc=X^=>A
zVZAF?`LD(neaF*RI8lxv2v5H$-Zvat#UpXSkT^oeI{3s_PmWCS#k2IoYfWCqtma8I
zOaB-AC`y>^v-?0pCrADm7(@sROB#iW**v*sX8jas@ruRyI=tS|1<M4uArp9n?><J>
zPnZTetK^EFfdr;@3q*nQF!8LXNUse1)iz=_ts>MMlTmmwmp4UYf+g(c0}p3zF0w3>
zj@1krfk>bArx%c8^fnP*p}oT(G512h$sh~s58%U}8sfb@k*`*vOoPp?2o5y$eTvjp
z0vnXRCvXQK=O8$f?-eHL6Q%czB&vbclNr{(jLNv>Hcx0Y?TFuOd`756Rg9$vUT2m+
z&osXMAh=kX)65h-T@(=r`yMi#_GoRp*!WrMN<MUJLn0A1G>~PJDcLQde1`kJS*1($
z^Fg-e5c_CJ@kWl}Im|h%>waUkdS&yI4w2%V@edo1B|~nXitTBQ;y(u145s@z-*IRA
zM*Uc_8}UdL4krNWF@nOz@&X-blg=|QSMH~{kPmV`?uDiK`OOO<u$;`h#uy36!oZYn
z8(+VOA%_0=Wkm6X`Q(!u1qI<dM_IYeMsz_zy7VWoC~AUecjqaFmU~qOY*RnohmXzo
zW;c)P*-#gF?8rv$Lb@`kHs1MHIlZ-BLVKTMu4uw@^(@;FZbN^y<4SwL!!3cmVwK6{
zBxv`$25k4m2d>&pwyE=et}9mcqV8sGYK;AQ%`iOHWnI$oS4CZv9Z-x>w3?WH3~vXm
zWwAS^S_CPEmw)c}&$1qN##?e3L%~Hp`t!Jef=Yw0LQxY7du4%}$UHhk^?aT(=!f%!
zrtfZKoBR)#Us&*{+72hb7^I&mPqCc*KoVBKZTQ+K^n*sY*v}6JL;BIo&FIIa&9Jvw
z+3qtI?g}-q?h#aeOn%B<AK-uV#RMgpn~VFZ@{lTulHGkz6>)*>mWAge$e<p7<ftTs
z_}+s3`=IIOT7*qS?XlbVT7r$p1tQ-2#c_4lT$&rry03mh7njD@_e2%EbWS()GW5ci
z2~4F447<2f<V`4EkMs<q$AtmKCA(oHUm2Mxzs(m96UViSVphzhi=NBK2j*?dKJ3?x
z=51%x&uoV(4lkk2Q<RM^p?@F>=)}ccVTBqKE4_^*YQiiYpOh}(sdfSY^LZJ%Wk>lO
z_pwJV(}xB^YUlyVqtsv(ih3+b7F*2-R~nAB1q>9%#!7@ApU`-(IdVsCi71r5c^{pe
zRz(aHcph~(zpgQ0pqQ!8KZ@*J(xrz?rQSFPYlJjYV(ir^u6?Vzn^a7C{Z-7h++s&!
zf~!ilRat+UtTXL3KlGo+q9=?S<s>vgRnE$zOwed=#`2vmKuf|d@}kx{vAQYy0CvsN
zF}INt6!G#f86=;%gy@WWb=$P^1^(w7z%<2dqZYpOD1>f3i_><kPjNO@ok!q&XG(wk
z!KWqR4kQzylPP?Y&IX{6C3OVQhXe<E=s;fq{(yM(bV281St`v`Y~_yjv8NHb9X+RA
z1vXBlDRU1O%DKYI>YCswgt8tULkF*W!UXruzrAabC-m_cie06#j5<3E>|Xd1-*W=q
zjOX`l+yRKr)8euxr#IZ2bex=OgK+rz?EHf%-Hx@kYuuZ(nhvj+KM;b#UHQ~mn?HLy
z!u{7p>+1eEI`Je{igbYi2~lV_R8bgRRFq6iJ39HSg1j=5Q6n=&@%@*MDF*@I`WC|i
z{7&QG(21+*>>h@|YG*Q$0EQqRPy0M`QNJ>t#uJuz53y~3sCGDC78XS(3Vmhm=C07F
zKuvk~GdjA#!~|XL%PJA7u^1mB#Z}t@s9J00J`^%^O%{e@+7xa=GqTC&lq^h*k{x)@
zmF>>TR0Hy!y}Fl1qK?!)^`?i(RXv&Yw{^QCrqHNQT%}W2quu2tj6=@ylj6L)&G?y^
zU)D}Agzm=8q8+-qsZt>J_Z8-cb`J9zexm+Jt=h7Ys4JWi=DSmLbxy!TZ>&5>)q>k`
zA)38IQ&ZE;5tU;g%jV5M-Ih@Nq7;+!(Tn3nY91|+Fgc9uR!SzIR65KkvO~E~V!pDP
zF+zxV)T$T=>-GHvw6x(moy!pEBT^i1!{cg`8Xf}C>lB{Cx9wK0bMI$+%J?BccJ+q+
zn3~Z=R2@u^S0u58&wCf8#Kwxdi#xpy!$U{<J=+7qy3#GGRCTDhVdRw^ftuuv+)<0S
z?-6i`tjp62@~CR>*TBsB9BgrZfaw24wE<$ogzKZYI6g>1><I5?__C?S`h~qiV?l$c
zsAzC_VF;Z}0fW;iw{=aDhq6N|T`@&qzGf6M?}e=Mg!;ABSRXrgm&neCj<5#%&5Rec
z8p8e}UKgQs42zv>7fsnth}+!pWKd{?P-s2)(Bg+!YxWoKi=PHsyWTB2o*w4u(iUh`
z*hthAUSyJwYCs7RbXd&A81ZN;^@KCHb9kPK{5$+pA}v+ql<1<`O>X|7xR(vn>sGs3
zt_!i0ihYSRK${ypkhF1GedZYEZv9wb#Pp!3(xpwUzre&#9<oWAG*QCRtlR#y%Uhpf
z>CuU|?0De<dq@8d6k~J?%_-ngF|Y&m_-e*K<@*!ZL$BRS!18^smoYTlgJC17i*oSb
zw47bkvIPh{it{}L?kDN0&r6ZDa_Ax7vW(^rB0@r#Iv0T3$t$fyHVy}O(01gdP1N<9
z=Rsm0D)W`)8)O%A6YzbND_9{Pw^1-*;}$=R3(eyLSlJ;bMIX=asW%%N@9ovxlFH8U
zwZ+VP?(ApC_~s2%tjLNyDC1xT0oN#siO;0K<ct>k{&BGE8zlq;1UriHEzX(h89gkJ
zAcdE^t@fZ|j0jJ(vXJPjT<a#ny!Co`lqK=Y2J5{i{K-B$a1mYmtz5yCb#1|5gU#Rg
z{DhtN-<>7W3mMMfV_;$G!e`QV(I2?%jQV<;-q@XJ+=3F%S{Pf_wvno%e^3z3C`z^#
zK&CD?vkAt|t}toT`tY1iV)QycIx}P8Rs~oigM=`KL@eVQaDwYnx_q7$RBb-RD6iwE
zOtTy<IN)cz4xG+b&lj-ZxMgPmejF6qI2L?f^pw}*#&4;yVQ7+aUi1`6z@qbGOxO6J
zVL+g<6iXKGBD_|q=gpEweR}@g+*<23s=l{;u~zk4V0VW|_hZbby%N+)$WbDerVwU8
zr=*=Mi<xMeU9ftx9Xk+{-0<DIRoQ$<8XP<WxylQ_v<pBMjv==We7^h5us_!2CFr&i
zo*=5X&~&@b^ZcjF)h1Dy(cmlZ35pIKnH><G+U`s;z#$=F1a;9@JV6%|dJ_VCAJ%@r
z>$-G>R)Y#m9Hor9wQsg%e=KXUDa2JDFTp~E>Oy}HHiX_{npw5Vytc)zM!@%K1Xz$T
zudo^0hm*^sMwXOp1!SA+o;I*rly$bX>+(T{-<N~GkN{X9BJ$=<)?|ar>8orqZ0z=2
zCZj(=06!~Q4v$Sdni*cU*TGXP68Sre6_p{^hkNYL!+TbYQ2vSf;sv;J(Ltbj#i+)J
zz<|1+OwaS{r9gt8;@?q-QPIzA8i(($3<x8M`B;2kKKt}S{r>dK)9kiA5IKK$ew-V&
z0$47|tFkvp5a@i{{>r)sAgLJk&{D#?(_cR{-R;#iY~D;1s1m4@Ge*xhdp18<=`jNP
z8Pe&tOgUE;H7;J)vjQT~tf1pU^=j4-@TX>350?UfrP^x(h*k>Rz^uEw`v)eS7Bx__
zSM~>VmxK$1R0Roz41)$zJ27$Rz(>(!!zNj6K*(=4p4Yujq2Og+hYRfIBH>=(h7Hed
z<llI;1+&8AtnDnYf&c@dRBwzS!q=w_pFe0y#1T~Y!%nRrh8ihUXImLPb(w(bI!%PP
zK|xt`L4WkTIwUywQ<)*EK3fa>4z1Qf{jU#Tm`myAqyCDu3>cwSnz>l(Js_%N$Z<1u
z%|;yd7<OVc-sNUhJ)a_)2QA($xrzUEi~YXQMhF+xki;`TRd<4tLG<B@wxel)N;GI5
z$<`4YO|vB(!^l9w?Uo&icm4TYaUbvic=_yW<A?Cn0vTRbJM&=o>obZ^XwY9WMMOk;
zYiw5V$_?*sE{{O!l%!Q%2koZ>JBz|tNm|SP=CS*-H7TsAQacYf1cZTw+%|=V<Cp5A
z<DBc_L*oP6Ca~Hl-kQ!|^yX1y52=@?@};_Sp5Q<*xYR^1J%OOl$Elx_tn1M;^HT7?
zbHx4W+VJ+gYanodf1X&*SdryGqU>C^0{}~f<(ek#n(wzu)W3{@tybUYxMCX0r)=qz
z^;L}Bydr$$34{LLame%V*!cL*aR$jxEm%5U;Bz?^5I!x)T;dS=I<Z8L+wX4Ux!3}A
zT9oaV<0Wf`uI+hqD7KPP`+18VLS88%vO6wbZzkGZvK`9yJC;h2(Aiz(-8v|qL(uT-
zP0RJ&@ELMKN+VW(%4_CP#mBDp+>?HoU19L9dB0YNBANI<RxtioFwmwGMf$~8-+mC1
zbWYasI+}lkbpf7CTyP=Sn|ve|ONAdHStxIb?)V36jWMW{qS+QI{H?uYFM)(AKQHL;
zV|?P_p>pW%`t@pG%+Dv}%#?B&em{#e-$|$OlAy$mp#3VaYg2N>g#iMj?r=OT$gz>X
zZVK!0TRE*T<Dq1mSC}>ys1X<ekW7Hl+T`gE9t1R3rbxG=b23+C=;32yo4_Wd-VP(I
z2Y<&3qCqU>qCy--(wYKG(5K1C@~ztJvnIpNWE3-%K*tu>ph)BrWi4mbTP;E$COTjI
zOpC*5pTn8F-{O6{OgTiy?RJPboE*&3Ej_`X%iQ;o;XQV$$m>XbxW#5w=D*j1e;0*h
zA;M81VwE`1kWQmA%yYG8BXqJ*-!@bwgrn^p`Vuyy-Xw3)inYr$vL8c!_LuBkS!Dbe
zl!=30iFQt~f`8tM9JhuYZy%Xu>3iep_o<~@-B)%?!uqU=z-nuymS_Nmm!os>Nuz^V
zpMXJAGFFEP><T>%4A&Vl^3LrwGP}|B2`^RG!KU97_J3Tmzw??%FKx7*_pO+Iz>i;_
zbXt#!i)J6K#anh-sYv5nRKpdvw{fcT^o2X!hoV=y^dJ6>y#EQo|9Y_pXHcsXlKa4r
z+B5F>%q{RmI)&2|@4(a^V}VVE`g6$JD1LBTDdPEEsWf{ujzU?RIJUt5-=DT<3{xgj
zGPoN$oW@7zdbT6iKUqq`T}?+WzuxS$uZ5B3bbYp)Fv7<*_zD{K&^x|<ljo)N-OYX&
z<U3r~k|BfRvkJq(9S->a>uevvt@1*vy8KevYj4N?z2HRh&y%$XbswD_uWkKaQT}<h
zCGc*UWiuR#|Fft6^Nas{aYP0MU*&vUYpeKwpUz+7Qycl{$&ALucXq@7H9!8HC=KFX
zJ{I$CMH(3Y_n|-RL;SR_`CD1Bc$uXW{@)LZ&<gE~P7+%hmGVDvT%-VWYisLgKF>SE
zv$pmBd8CVY-h}&k<*fgH@2V6uiZKqW`5RzO9+e>yBBAqT*L8Pw)gU+|BnsFz_JRI-
z$Lq_rl>dD`-nc@9UmSNiCu|4I*-`)goi{Zp3V|o-yYBv8Um##ok%)ftY3oI1M#d`G
zXv8a@BmC!j{xG(LBrv~plTcmE-~AnjMsC2qe*L-!aJ*K5Eesj~0iCX{?t4I5s2l>_
z1bcuXoB_ygoh|1yQ2srMzXoiG5Db_x_p>38<Nn?@2$SH1#l-s82a`w{8AmM1P^=>G
zxX3i??By;2tMZ$UnOM-DHSwQuYI+T(h?{tn`=`HeoK-bwkbF6znVsqp6BEOfn(LbQ
zOMSP1kp6Q$f4}fPK>^nS-_%^_?^9W<hAGn2zwm5!ztCX+uY)y!0#ix#QG(Dvu*0e)
z^g$jHV#RIw=FeRDT33c-p8tABB!4&=I6W~weChCiPLCYr*LYzP2U7RTY9lE0f6n30
zi^a##FU;K^ebW5*OEjSY86y&O>CJ!A)zMKCW|!myXKnaD-l+O8JC#P(RsQ*T?MMCu
zM#Hc2+0v#%?Djk73!cM@#~TL!<6_zpfRn1-Pq69w=Z&iTUsOudgKzTw_5#qe1x|x+
z`T4yTzm$Rw%ZjwxP03G4>|p<%K!3*66P)XKS{m<!^gm<y8PqKOSBJRvqXF?F_lWde
zY|oEOG0ky9vi}~ZM{pOP`6KDL^tDq_f6dibD->y{N~e7M^aR1<px{%4nZLh3NTdtD
zDHTrVZ9G9}V$(Ykxip9dUa@b%Y7@gY^1u|G6imcB>mj-S^yQ1rRFy?ifmS0YR~BJH
zFNZp2hrq*mw;;o=4yS2@&TnsO+Q1S@0a}-x`o`D=|8wrYUvPMX^}rkg?|yX>3&Q?9
zi<l{*$+NAocOc{OsE-j77QT=y!Q;N5&DCnGLo<I^oa=4Mj<Sr0Q%!5&G5U-{bdsi$
z%RiHL6F-cNClShv7hk!}mUIzjN_2g9CQIA3V}~6+|2<iMU+UFI;L6*z2=(+)yr5D0
zDO~`%+vef&d1##NFYK3_w79+uh^n|9EAuIDE?cX6I32=rSeU0zCGPKTpOl*EPNtUv
zQOCfm@Z10K!I56?z$a_!_0}f<V{107XA$YWQQ7h5O>d*Al%;)qeHE3toc2yc;%dtx
z2G*0Q(yd1xh9R;Yj?h3Z_x-n@)W8xtrwLM^m>)Y@VDkuD=ry~p?$iIif?g4@vL&ae
zJ+mWH;J62JX@QHh<Td4wT08Rc{IUFrcoWZe2CT-OE4`-=hsUpk(h?Uw{qY3_F^|j1
z_iE`05MRF&6!ekjW%|$M`>*9D6XwmN8mu0b0cgA(DkCygZPlF2?L6{6u~s};5Hv!u
zpirv_0;c84L#aI5hh7&1lDL)_SXkuGp5w}v+RU*$e=hC33i@W-Di01IBOw8<IAwp4
z<|o^`8)v2k%?wa3&V!v7o2j;PQZ3~7hJIgZs<_q(LpKW|)|!Gi>;!)VtXN>9n|I$k
z4}5U*3JO+M=30_l9}~T9p{1bcRqLePMcVN4dbDy-t>#k;Fs*mXD=WKK%Se9>5&t+!
zi)a1++M6TiVBY_%-$@l`4M#4u2h5F;24^O3NEVV0uJDY>sFod?RrB2yl_FbZ3H0&0
zdtu#lnPEr+;0o2L*P8{SksAE^Zu||j%y7H}?9M3Fa$ecP;~jWvHul-=2fuM4lwTRZ
zkGfCYYB2KGuMa7tps!JQG=+RugV-|2e^~cRyFmVt=L*3H!@JHvd($e40|CrqY2dTW
z<M1VZs9KB2v<-xJy9&<&J&_1_HBQYeeA(+hefo5CwQU7E^1yL2E5XjQ+!(qQ1ljJ_
zkO4DrAZxkVsS4)+cgVeYpo=H4Kr!5aa-@ykqa}=C;04SyzGd`k2@mvWAsbAbYR0)p
zy8@UF$fI{Qc91rJIeSmfr{UbkzY6y8U}k`s!uXoYU@(KgUkl2j9W>aGYKN~40{_ST
z`g)PZo8Jm&wet$}F#L>3lL%ZmRLDCdAPP;V<4K~<2=(90yay>iOe>bm*5p4f9^4#V
zutqcc@j`GfM{YR(kVZ2>Jg5@n8V+b?a_JyvXEYfRZdb3)Q6<p-X5<onK>t8e{tDW*
zncj}G<^Xz?tD@!L#OBDicL)u}x(7X#ubx|jzPWi(Dj}RGA~-CjU$21Ycfk}jJ-rC^
z_%RbgF?qq|<x#DcK9DA?0Z7XReESoa_1-9QjzYx<Cf&CDfXMwD%f(AJ%h|Vp;r=B*
zFF!lE-f=fC6;+RP%Sqe`CIFyIUWhnG==lyFF2yP&%Z#7{pC^*dHAQQ^ud#nAa9H;^
z{b3VWsNb?u?XayRdfR$5z$DY}d3Ri5zdx^8pdL_on(!NS`Zp>5dq3=9hiX1AaR*ki
zq|^n8#Bjr1AP?vR;6ZfIbd&otp&LX+J^YSx&>fI|rGtitKfZkf>_`*cnl!*yJrc*V
zMj$u@g@jx>nNTQz+oD>k3G6!(1tQ7^E}8(DV%Qj?j20SB<%!XGXk^*W1j$=c<W%?^
z6&2<|Mu~a>b_j*#H`Ac1>KZ`4L-AS>7FJ`wb^~ADKJ4Si&!DZ;TRnaKZ|>KQd5FaH
ze!QU%ZQ;{{O+dOxKMK70Sw>MFgN=!$HCgAN2}BABJG0o9Co=-mRTh~YhCy`)Mxef4
zYNW3Hno=R>OPzQ139zA$$;o-EKYIopzKASv{w=QSRYp<c#T9Unc)2ecZ|ZuuOsZOD
z5Zt0(XEI9Gb!8PzECQeJ^bCIlc%FvmZE$SVOQoLy)pzuMvo@iCfB={a#@NgsA}P&A
zv%*}A4yvS!ADVxzACJ592l-#X?;ijJJAdcP7dOZGK_ViefDbocRG$2TeggkW&?@Na
zNN-J|!R`(xQ>A=0=I>bHcR=*_vzt^)@e_4OR9iXb)1_m7EUjpu#K^rqI7pEY_I*aZ
zC1AhvBeR}px^~{S_|><SXI*$ei=WJCh%QY+OuQOMfca_(WnNhiuMK_HdE?RL7L_{W
z3F0B3iRXSQp}7Z8R#G}*mBkEM^L^7>XP9=Tml?oqU2`lsf`CuALyIT9Lz!m~^!LL_
z$JaY4tP`XUAYyI>M*SHh7r>(Sp0aof(0wSN>H$C$pks!a55p~|8$SV*Fbc2uo+AD#
z7MA-;#A}L*eZF`DZh&6UPblZ55TU=5ji|81$@T}7;6NlC%K(#>8nEmoweCAq;^U${
zl~KT(z`9wKLiCM{h{Wa$piBJ$!re7M;!v`)1a7qq_YnZ<qWWl~mW-MRz07P5Hba08
zlq<gCyW79_VD1Wzs^2RMt^y2V){YwtqguA$SQ_<2Jqta(3^jF0$xtH3KylDGA+)TE
zw%+%PE4a-yvCN8l0h@Tu3l#@@epoSIiNSA8XLGVND$y7Msp;p97ymoH`R^?2btEse
z2hAj);*NY}^}KVFFJNH`>i}zRF~V0U=pX$PtRTgdFBo%gCvgPoB%{!&>B{Y2#1vW$
zHE3|3N<lpUyo2gxFu)x8Ku7fVswis>s0pXuR0n4T@4tOqd|_^ZQVy0@3ioY$e-v2X
z$&V}_%DXo3*en|~vA0^<A?pLxYoJrud#T04Ewfg~oyj=KQl(*pZPk*+XYH8|U;0eP
z3vwwYL7QPT=*K>Jm}U;@xbW3Ft<V^>kDNc$8%cdsE-l*FGIft2oNqgRsaMR}vE+ai
zqC9c9>e7y+sZhDP`ucLGTqaCt(>$=A29zrRB^-48)NmZlma!u3%Qyh@pv<+KkeTmn
zGBY4PX&9o#_R5FriFzDL!vD*lZN6Td@UZ}Rkd!%<auMU`IL!0RHgAmtLty3VIK{%P
zy|e~DtmS9;-3S8>HT9ADygU<4MwU{y+EW<`ND^_;mRYeBlOX91dWkC7w)2Q7{Tc-Q
z;d6_uz2e6f(-D2MDY>~dvAJyvwQ7sDzOo_vlyE`4OvkCv330eT867r#xm}Nn_I{dl
zBQi2tX!aGG<#MSGLMfIVG@bSJYE*<F2roY#gUx?O5dEvu;4kIwM*;l#ooaInXS-a8
zKdOS^)6$PmDkZViadrJ7zd!qb82jq5D7UU}MMOd=rKCX&Is|D60YRj@8|jh;0i~2y
z8pWWykr+T)T0pu%x&{zI%5Tki9zCA(obz7aKVBoF!`%Dc_u6Z%U##Bc;))7haoH28
zfToXeY<Ih;-T$}e@ZXp_g^#qVC#Fhe_h<M-i{<rXphR!l!hLI2;(ZM5njv}BF0xQE
zOsTwRC{J4oDcwcG<6(?h<SRaiAA9PZ4UiiL&IKup#y{CVSMV8n%OlQX;Ks7^XrgM@
z>@tS}!Qg3(EdhbfS9e1zQEX86Nu#_2ZxP`J`Um2&Bc-{LVJjA@MNC19-<S#zxeXj2
zlE`MRSkp2Dk{S|)cg!~Xz|214k+Q7?)O-=M-OS7hv(ZFeH{_ca1~|9@IAi{MOH1@{
zn0r87CsQbaF^Si-oA#^x`c=IA=f!@Y$Q!$=wpTSvHiv^xVjK@-?0KVkFuRbSAMT1$
zT9>$vw-=06Rf`3CuVm43!klv=I<cU;BHnH`C|l2M$Vn~-$&cXFLz>}_uTdu~Q7GX#
zAtfTR;XaYO>CaTlkEatU>~xh_I>H9dnC+&EKe%U?PFB7ghluxq<M(NLidK^y1I`G6
zT0H_ohSEyUbI1VSlo=efs8ccCYr_t$M$QpzWM8=kCi_{LIA8p8_`UnV3hmLlVaS<u
z8o`E~La~7Dl@HhLuo?vVVrU1gwF1kL!p@7PITE+5_;5Qc;SgB4yk$pV{CNn2mYgbi
z-}eG;?Mi<}gu`7`ap#D<BiQoXvum~1xOqadw77K9Pk1mr<8LGUYj(d4cuyzZ_9@&Q
zlqF%a6+m=!+D8>Wjbz0R&3#71l=yBbiv9*wS`Z#J2c8T$=NAix_Nooq<I3r6fJ3w7
z{m{;)f`OVNDAlvXH$GWGhhRQj;Gn%B;K$-F4Klg;tuebB?rP)bTuRj}r4f&uzQIof
z8<R6ope1yUKdqOe<a+XN3qX%n**f2wGVi8t(Hb6o=7s%A4bzi12VY+Nh@llv=ERM)
zG*j!P3dE$GZqMaV(2ZF|z|ff0)QK{k%Ho9?qv7%b)RWGi<*%}H^#!5EBAhno?Rsu-
zK3rmVx@7gyw;=#0$q>(FbJBRQ7t7n8Y<4R!FuiGRV7_87PkRWt=B?z=BC1p9w5TK~
z(h<W{uub9fIa9Hbqhpy0t)zPKb9vtVBgqt~2oh`nwoA0o&P3bcQ6>!DtOlrsjBnfh
z`)tUM1mjd!Ys~Udtuo8B7YjsGO@oD4Ri}3D%9dhnY$V4F<PdX&Tl_u2{2A$M>8D49
zKD!<-E+zBWj?+NjxFB)P_w;d?c*@}2hYw39UbaS1o40V4J&Qu#@ju6mxJAJDVQV@K
zT#d)_sa<akAA~oS=WglJrbCN9$LvLB=5?+xk6>?{O&v@J)JS%IQf#W2i`V4XabICy
zDt&d+qIg8O4E;_&l+9U;!S@azQyNv3V%G3C^bJZI2q}k)H51Btlgov&_<=DD>hCXJ
zMKFRV{)=pCU0l)K0Fo9=ge)z7Ptsl(<Fnwq1Pa=v5At)8)PtAvo9>o8X5fHS*BuDp
zEPU?}+2_ua8Z6jMBAR9G#w*%*L#-pLpfTNgMNn}3#zWBpy_zo@)#q~fp)mS7e9;9t
zUHt`h-mF8fX7LMy4N*9OEv-=CqQ5KQ=G8mvV079B8<t2PNyTgb<`VOR5Y^S;+hPpU
z(?u%-jXJesVDw!x`6aP`vtt)c?>|+a<Bii^Soe1H(Uj9ie<T4ZvgLpcj3)lvki}8H
z`Z(pS5w9biR|m83&kP^j1|X2Z5>BH|{7Oq1Xg|vq5hn-1*ADugNwX$aC{cZD>Ln|9
zttU|M+KW&&pckomK25wZeuV}h_xdDoJ71^9Bkbk_1$~I}X11+$Zd=d2ejKA!5B>pO
zCvtoPc5n1Rj(P_uUBaGxV9hQY_uA=_QIVjJcDLk}#nvl~zbNR_dmFd5;jJqE@wDmr
zB4P|tW$hfb^1Qu@pr!Q(!+jClv`6S-^gwhQ+lDieG)UD(_3`S3TMreDSVn2fbBGHF
z5>KzPDWw(~cnUY^1y>FS;=T0%!}|p<iq?mS)*YBM9e8vI#K&tksUGDpfrw{JN>Xw(
z;DQL|>EKdibYP^Qaf`O(SQ^HnYJ1W?@Mdp{;SSG!6EishNRKk;p(o(HlFMW73mCy4
zHYm(oS0<KKm$9g*=vgbwp|&gsuH95;>3gi;`Uv5JVA}CTt_GG;Wm=Maz56$X-p@#r
zU;08}iMCTcAFHiW4Jr|NsEAxg>VEh}GpZ_8xvZOcNh`|TZ@w(nFb1Q+|Job))#vbq
z2+A^y)&`K-z>Hil3ASOrRK&)Lar0TbW~g8b%}`lkuD=%MOQaEnupooZDMm3bCe`d{
zUGi4);1ByEq5dDAMGUZS>~GDfQd$Y)W;5#7BF5c}<r#QkIJ7j<;bw65z1XAm`1Nm8
zXv?tDbbuefUHRZNxFVE8u2*3%3MGbsx0P+4lrS#8)6HCCpajWe2Do1H*LEw{s?qMn
zm|X*UmEF)0=p$Z$^Pc29YWDXuM|VEOEbGC&F5n)Rx%I0lP?bG7HzsJ5w>!fk1itlF
zu`=?>g3b8-8RQPO;%9d@23Co89ddciyLB9#edCOUyzvw-&+-nQQAGIsc(jtzu}idz
zA5K?;VR#6-DdpM1E@Q?Im#n}#i3REz)u4}j-|CE8ad$W9(rsrNBtjP-W+=`lZWU2V
z1|Ap$*8Y2ZVwfJ{u;y-uP7t{v7EjLlEI*#Qn_M!#vkcJN{s6@=@qAtI^A&n5k)__t
zX_pK+_(p1VhJr*6j&@SeCtrnQ6xkenz14iVZcuA+r{}i%WWnGk^eT$6C5L#TCP}G#
zGBP|R6pI09m_<<HT?{S=4^%im{S|fQ))>$_iWdf^5%*j=uGyarc{ewrbtqXE6{Q$>
zZWEu+eLJ=6t~+K=0$1zuCpLEfy+T!940&~z1=(Csdo!U$_4Ts9Cef#`B6%k|R8MN$
z5~`S7evq)tsl%aOSnQ#<x?RdU_n~~VHpz}eOYD8XQWz&fpN!k>aZe(52Y$m87jBex
zs$i0X#su_&!uEIq;u@Klp$mKqeS*8i6W?5xRwDQQ-Mj39QFzz~_RUvPc1(YVhksVW
zP#Ys%(M|*2T%>;SI3Bb7kp6@T_lVzRt>T_TFA-HK@bvR%)-R_DUhBW;dMUZedF8Vr
zRphWG?%QGI#u)`9O~5rK1Sgwr)fbC?l~q~{TgcT^Nzb_XR}nhQjD#p)6^@iFR$OAE
zJa<E*@Qr^!K-MD;efb*Y83rw2YZDO~LJh+zq1IYNu}Sd!wAJI`3cytwbN1dD6UFVh
zwLn3_-EcaZ1Ch~#eaBthsIsHQ!bI$AzH&ynh=^3Dq5f{jnGWdcUAejtP0(jh*Uyaq
zgoKtFYV9w1@6C8)R?j2O0Ysp-nOZQ(GI6T_j=B+f8etgHcjsHrGp>)UXyF{z-(7E4
zC*S!NDzIa7=!18joL|uMYJ=jRz2gr(So_|0(N}kZrm<*osqN0MH#E9>^fzU(-r;YO
zy&qxNaa*{S$1PVZ^L`h22G|hO*XCTqz*AbS*GeuGr96_S$9>QdEc$S=$~k99cbZK6
z>q7=FkBJ2FGycuPwcbJEwk>vWP&o)Ow{nY;Uhobk$F+JA58cx<+`%d8C37F$@bLTN
zB>$}t`wksLGvPTwA+*`ThH2Hc_A|HS*@T1GaL-lmZca_boBG21u-0Jpu`%T2{m7&5
zIPqLTq#=!;|EEj$^W5iq0v+L(TNIA-%=lN|+<8i9xpDZ7&#tm3CZt{bg`})u(>~0B
za+wpUdA#Dwm7@`|UkXjTlv(!0x28@vP}#&Z7g}&{cq1)=dUEV{^k=FT*JG;3=Wc#V
z&}Eu$YMFYueaw>LRAZ^cotmok%})E>m2b1AG5HrS)8$#Is4a&brkD;X9u{g1Zr?u_
zE_3H$Xtwq{d(q{7M7|6)pOajyB!z;-$?t8QkB^|~Tk?bK%P5(FmC)>m258bnTMb3U
zT?<#hfM#Ga%~e_>B=Cfk-larf&t9n(NM&K$nI8S4<I0T&4unxaalYTYE{SjsE@N*J
zYGoz#!ukfMN&4W~4o;Cb_TN{O-kIIYpnCp-(5ciw`;Cb^)_K<JPvg4V213kVEo|n5
z`mJ9kdz`l(vW;ANk!~=SWy@VzV=BZg8}+ze?y-$j3Sx72+bCc=>9NgxU$dz}bzt^H
z?=UZRd98=STF{?ozL$va<2*c?11l0FFH~rVI@a6jdE{F@{TFZXs<S+QfdX~>&JzNE
zCTL0F_Fz8Ec*EE?pwCA^2GX&=b!7KCCZeEk@taL-<Bv}6>YTpa)AZR9_ix_fax!?=
z=5rgs37odd8gho&oFYE^z?X!-9bY20^nl>J7vkuS`}u`v`Z1>?+n`@fevVrbg=Y-R
zgh9p~1Gx@k#25<i@;!aV1l(8?c+UB(@3$vBc&aDdqw^@O+x4D-!lRvJtiJ#!ND{bF
z$Me!ouYM(+S%mR?PU-x2`ils~XiKd}l#+c;+*Q%pw6V*>quu2Hy6dNz;QxC|JU{+b
zbbYZzi(?zZb#N>ThQ3ET<Sq=nyc%L+VmhjAFWdv#RiZw9bCr1;DMP4|ntDYq{Dr^M
zwRzblY`%+?TKQx!r$+PX<*qc7bsnWsBVGCytJ9Tk))7sYZH!U|E3BT^ADy}}R+@1s
zXYlSbl}v^<b?}V)%KCKVAVY^g>f21F1moxEzFmHqs83o-Z&WgMYVeszA~vIpb4c!r
zjaxX`2DGca;JjeRzF9_M|JKp)T?21C1D*MvO>~9$Of1FKKVu9E;jn>g>o;q<{A+0*
z$<eU0D?EN|{li*D_92_n0)y;ZUFzq>dA6>4O7jPVMwqb~jd5)oXO&;J(;5tt?LQ~9
z$_v21)4^S*iB+z+b1jYWo7R~7bJho#xx1UMukxPiv~1448TrZOcpf=b!r;;Tevpof
z5})+SfamR$1v9hDSiu9$jft7x;QwBx+m%t(>Ek8MQ;PG<RaNEpDZ<Y<nl?(iG0Y!j
z^gALVq6HBsT_Sk?&o6%e4KyaUVLDh2Y56GvGO~n4_e*(wA1_%IFkB;>EUKPwh|(og
z$&A00r6Kh+;dEf|dOI|+Y8j<8XJc?2c`RS)RL7>Gk54x+q^i7fQCbaGWNp?{KTeAw
zQ7O#4>Ai9h>!bOhIg8Ou^6f&^$JoR#l$^(Mju<DXWA~jn94!y0<R%8{e6lYU3~J09
z=Plyd#&u-iO26%kNzJ6)pA{*Zrc3K|AqkgkPtfJrB2GwKbx{aPVQAKmb~=0?zZ=P0
zZT@7!ThcaPw|b$tl6%OM=$=_|QfWu{UphOHHmJx;?tv@&bCX71#6m|${|NZ#S-mpo
z)xCIp7ALVk6mV)lB&QHPIZp`#GqW$~m5x@cEY=_197bMuF6F%M5pTrO)S;_ib7knc
z4OQD|zwfENDVwA-*p`>6s&vms47pPUFxpczZq-V@ew(i0`Jipl@!`CyS&RXFsQ8Zg
zVs_+t<U64nr-WDLc36$tY9VD<4jCq`8RF{=)FSBllUBh5R5PI?*Tg6^8YxPtN)(<}
z;g_b=COsJ3ai0BNKz#3$a}*3~Q7t)Si?xZhQ@2sy+hRr3)oIj9)auqWW(m^qOK!Nk
z*0#&b%JCc;|3a@(oAwZ^!X@nEiMs>Fue*OGk_DY+I1pgWfo#?FrcvnJw!w5#dVHIm
zs(H33Lak}B(h{kydF7ya#FJY$;#F3^XNo=9FN)e}Nit&LoT>4!-wFaWu)S=_G`&CR
zqxzfRXxmSk+^vFn@OFWoAk#ITlkE1H8#&FIF@{H&)yr6~qILBnN-kO{`jXZhK5`#J
zX6l*_cI4j?GkUJW>96ILt5+u7Hq_~rO36~@I6-}o{(JZ43kBNO!Y;m^$6T~O^P-QZ
z(F=EvU}R)_WBG&LcS`T>U=iWc-n^-Tf{e((0Qx20i&=++GwEwPH+1;CHJ%MT$U2a)
z9)9BEb!G9JZTUq5-3!<eYNQAYt6lPd=qmNw%+li|IVx;v%&)TO-g0-veh-OLEOP4N
zD2O0Y$*j=K&=`<(w4E~B(Q8FWke-#ty~;(-`5!3g=dqk{7f|o34W>iC7P>Ox6uNeB
z@hCo_AqrDVmA>fbD_}d$i<%t9+Wlha#VWB(0<pJBrk@yXOxol`dEN;oxxHgQ9sSGt
zTP|<Uo)UffI?$E#{9AOHq0Q93jYrcW`Jq}-*kzrp_Dkwo#>C8;^|=vz7#Ji9d+Ksh
zN#A9Eg<aGO5toa=Czz1;o%=6+1t={K(A4vFqHZXsf6Ub^NqxB7hbBK(Y}z3sD=QnG
z>?(OR?jfI?i}yjQ3c?~7oBmXUrpAepY3lZcJ?ZA~CnlQ_cJ0f^v<3Eh31!>`v5)?x
z4VX=>RNQ0fx84eQ^a}GhhUq-xi?>u?{FdQ1q$Ol`F>JT*FAyqC28!dLoQ%HsYw;pe
zu>6C9?k#qgyJbOxsH6We3suuVML*$I9fu@uu*eOq%H(L9M<vk~!>aCS7#Q<$TCRe2
z6q4m)&FK=y9UMXSiY_Dga(F+4w80aKsG+c&t6EK_bMW@AO`^JUWc<v18|F_7lrPP2
z)PB!NX#8?%fvHg($R+jXwwgx=6xb;Llp*0!Gf>K6D;fn%r{uXzCO+3X&WCn!5!0T<
zj>)q$y8EooBvAUgO8T>e*OTbDH=YnN6RnhogtYF(n+9~K-|A1kN?0%~XoaIL!mOjs
zdrp3gfA9?6<=@V7U>Q6<byizn!G!wH{gQkNm&C~&-wGzlS`*ui6gSHrYSV4lS5%s~
zO=;c7$wVDj?_yT8Le~0D`&on}VFd=UbzVKGB37OmNO~FnW+ldMKx+E?YPU`pnd`^$
zSjZ)$19;w7TR(HT?rJWr&YJlSEq1?RV}<ke&jjKRKu3@^lI_ZsFGTW;#kfDeqsSzE
zWOQ`=9&t=K5fP)xU6kesK*o?S9dYu6goIzfKx-wk2)J8qkn2cz4$%F8;_-g#b-p@j
zd;7vflQ2KFdv|yAV8}vxx>O!*H*vwFO7^aoN`N#z{mTz0Q<EjypT9pDyD(Ey(9YCf
zQQgZk%Bq6qKVGPP!c=w`5#{80>lv}>I)CLO<zeI`i&jxMwx&Y1oOUIlr)=mx4xvh6
z@Re&iJeFiL=R^5uPOP&=ZO|QDI&Lo0F5+27<&gAb>(N|~%N!B2-1U}g@DO6??N}VS
z;C%8y4a;UoJ}<*0Z?Ii_zaa{9fKAZ$-k>Ez7*)azNEkbsQxsjm877N=UG;9jo5vEW
zZoy0$5qGx-n5uZyb?ug&LngdPShTENd&qywonSZND^$Bs&gobG*<|;*f=~TgAb>&t
zHWOxfiFpR4({3Uyek~}#9f5GEFHbA=RlUOAkUK(aul8zyxK)yq3@3V@SG^=DCjDei
z`4Z7oRj6`^cpH+V%OKVSGd_IX)r&`k^^R2H0L8`c*q35sd%WlRtXvky7thWXmIvb9
zk26vwU)E-L*|0OXLKcFLV|8tpXLSi(&?#r?ptM$1y-Y7eoyC9oBKf1DoD{oh>G7qg
z_q%x$yI<0$Os3d2hv(<NBqiAO6edj;zHMCJaQ{U`f+!csjlQ;5WZD%^5%A~kalGW$
z)O3gM;Zo!khLPFys>E?1UYS6+b63kP%jdJ5k`$HIvXR+Gunvl03Kf677iYw>lEUou
z%_%*O>5g9YH}$!&#&)&KlkWpttr-Ki-XjhRo5-jN_}BdM!z-%Pa9(pMxgV~0Aj`|1
zl_4vHYB!{;E^=L<bvbMmzj87z&DAsdt*`CaWwuar*#qqz*C5Vm&DII$+{V9_)5yS6
zLe@2Jo2&l&utm0Ferg>2?gxG*5{&Bk%s}sq0m|A4kfcR&YrM$DkUQlTc-l4XO<n=1
z3YF|P6y71Q#qGa;rmcLq{f1W7gIMN_Ua>@IAx3~0<GqIO%8uVZ8xma=-Fr<oH2p43
z^=KSYm@6l19NbemB;9T|RSfJ;69t}jaGL9B{n%{m+1y`Fbs@5mskf0Q=r)a9#Lor&
zV27FNJ^N(p&9vB`$*0H{<V@p=IPp89&U9jP9u`UDbD=t)kb_j!A@zBD4P$!sjGStd
z#zT_i;z4_y<(1&DzsB4%s66NtRgxK=A0WdWVA47;4dc$qe`N4`Qk{|dI}h#GA&U+P
zFV|_t>P{Ur81fXEuWP69gju_s+3B3|=C7dj_ZN`?=x$3I#0?7ywX~mdHMs@|<W|Ci
zgOT?$)_&VIfBAyG=#Hm=`NcO)YmYrikf~Ah&JzFP#W`K^!GB{2(D+fv`O*?N?w^_c
zx`qYRAvNqv*WYkLqkV*A`xm|KLk2oF3F}(_$*|@I-3L&(CX<-|NfUGhl2Do8y`z*;
z;8MuokC$1+=~O*zQ%ZCx)+jO}Bv!kRO~hzI;qQDWoccEFaQSPp*xpL9uVC?)4LGV~
z*A7q#9d}n$3(`knzV;31ms(FE7zWDW3{$26+<>L6t<A+46)s^mFTJSf_bb3HSFY4G
zokO`6nhmZD<jebZV_9dbWYM8|AhhH_8M5jg;W%wKgCf{@z)9`Etk#pMQ|VX?{Wk~I
zjnBShe_!sO*+*p}oF;Qys+kIUlHn9LfLB!P89(g!V^Evx3%G_qhlcX?-mPTMjk264
zNiOT7?WnO0z=11ex+g0e4Sk$8a6^0$_c|&mw3`TR2CnGr<97oz%$p-6QhGke7b@*%
z9+%zSKsfoHCuJ9z2l=@)2;Ob86jK5rrOrge>0Q1C47ReITZRpHmZ$1ogF&1=O?v}-
z%k3XWOepb>$T$^nqi<Rdi^MEDvQrCuW60oJk^vT&y7bpFm{R>JFMp&S!)Rs9u195#
zO|$q;-c}&FZRGT{LCkx%EhCVB<ns;+_z26{)|AC9vxK%A@H(&D+?A*Y@%<IppEt=;
zj$qxkTgdy#-jn<r0Xb3%Yrn<-$8H#Mpz8%1t>!xA)|v@7E#5UXy>w*e+yuW2MzH(I
zeN~u_^W^d4R6sM)B6>hfch5ZIFtN8X_PSz&#;S=xl!83QtQGL9E{GzXjfKS51<i_Z
zZGe(rK}fw@vul}muD)0CQVZ!swJX=1E)$E9;<OhZ!W=P^xXcg?pq&V9YHii7R=1c~
zgbR!2&1U+7&f`WhU9{GoYrQgLM?=IE$gi5CS&}aMl2`OyN=h2sBDr~ux#1$V_Wdok
z4v4ZZ+iTh|&!4~KCM?cgpz!wbl`A@`b13Vj6`=<s#Q`q`T;(1eZC%T-6&Djrh5H0s
zTK5?V+f_GWxKUh!sf`S*tle4v%W?b3@esTg`L4-*@@mg#e-U1rQ5EIf8n>-?5CC)r
z^L3ek2dZGigy7k7Fa>_?_R$Xg{URPZIx(O!W}#0)ULXT-by(hssEn5<OcpiS7-!RQ
zo>SD5TzrO)39dtlHwKdh-Iel)wAX>!kv523pzekReQRmx4X-=u;j6rO{@i4)C9J)X
zh=3YjuD+KhR}2Z-m;lG6PqfR>Uh%~`Z$T<32@t}$kxDMH#G4k(poCUp4k2b?M0Jej
zJK}OY4$dv80m;XioQy23L^UZ?P)fh3*N8<-z<Q!e0-m=Fgjv^9J$Vt(c<!QF^l<y1
zgVqdUq-(abe_$ZCFp}m3IBF(ciDitX4WKTgpGLDYbz_x(eUfhco@#1N*W+ui)cK+^
z|B-YNzsE8k@_?C0A>i^Ezq>;KYbEo%;sFW(8KWh*tflCUpFazZF^UZZx@RZ<ldFHZ
zj5Zngq@5dQ?v4;0yY-TN#7fa$dOiz;fXtVJja>Ts>j*wTS`9rgLH7q3D$a$T;aj>M
z;<H79TTK@iTzs08y+P{Ol@YLh0KfwaTb-aDmIF!$db9~@d9sv&wGXsWy_MfqhkEdr
zp5^F4hu_9ug4EU{(<l#z_=u*&tfl~6F*pxDNw*o~@?+rWz;Ry@*Jv%6peMn>m*8Rr
z@H5gEucP0KUfs_}k_Nb<=GSH~3`1pet$y%w9mEyxt8ZU6U|ba24}l{!!O1DcmsG%_
z&*Zc#shFaOh!3c?%$)s&hY{{2n&Dqj%#uyQ+Up;KFMxl|C9AF53kDI3S~VW=w0*Ih
zf+;ywYqdZQ2-Fx;j$ycVEsM7cAT?zN7g|nn%-Yp_QBKcq)=$HnsoxKoE_Pn|d2anB
z%Rf!1fR1*YAP!RB&Uv5hwv2QQE3?Z_i;P<n8`8O{E!N#}9QqgsS3K~)#Ilw>b;U2q
z-O_TVlrJEA#Z+ErCElqS9H`cK*{rj$*+@cIP*0Z(5m97%n?<|KvJBLHRUL5!pQP(g
zn`q?@Bs@sT18xkzg`Rfl-KYB14s%zzZf6woIj^WB8nImUo^6r_#!ZMXZ~kkn<N#p2
z@F8N#hF%a)Iw#yx_viXx=v26~*h5B#JXidnmu{{jfMI(%<8{{JY<?ZM`jbnXwoDH0
z5CAfdCX9yn0+1~5J+dcT)4)Kua=m<P!nxk-w|w;X#qhg{xnCB<VpML~NbIBTGT%<b
z@P+@G$#7!9`^9Q(tT%^`k%MKc7gmUq-;BNAR9FUShC2Vlr8ha1i0%X~DZsl6+BrGZ
zAHF%O;6^Bbo#ugDAA8Tlfji4Nn^jf3yK1xJpla3yb!5n{T3XMmds|h4_S0{a`TS*q
zV@av0rE>IY4t5`PXBD2W63i&{!(4w_`RsPm%a^%`0)p-7ughGl)uJE6=_H<2Fz?*#
zZ(ji-7pH{L#7Qf)&rRGXo`bwMS?ao#)H`tuFB*V(hN^?rK-Vs{qM{;9wG_=#%S!~@
zuU)I@=FigQ7smIW7rrFuN285utrX4Qyf8~Pn6F-K$;yPtYDVSH=o<JWzH}f<S?U^4
z4XX&tX>2PGquE{)3f!W13fRvI5T?MN@1}{h#0^$mZKuihFxuMMaDR7PX4RJb(0EYv
zNR6WEtkWe)Cv0-{pwtAM!YhP?FY%O1E_rsfjPm3?ga(TW5n^Z5c&MlgME2pDGQk50
zm^0Ju_&KD+6co(gcgApP^H;cj<$ph8?|<{74+*~dp2ICIE!j_A+Ow11x!Sb#&~#Wb
zIg#%UNnuX*`^quX%eNF2qX>aE#4)yUf}EjWs3};mbcydERI~d6xY0=0<kZM;{oOf9
zoINZoEL$rS@R+Ml{Dw}@yo~bpBe84ifP1F<w~Gv)b#2JkrT=eS`b#I_k98a-fI#HZ
zlU&ns`W{b2BarFZ!4zt3dKyE!{$BL;ndmyx4mB<|W@d>_POgG$z@L3!W;j-X!pPY6
z-7LuxnC=)`X9UGrF86In7`e@^u;cNfGhNfnQDf;^&eb+&8$J*qzZiNBtEuM#)(vA1
zrfN&2a%-{-Yb(+V2q|8g?%ro4^52D|yIzbHQEvX39shO7lrZ<5@A`v6_s&p8vPa(~
zCS_zW%zR{Goy($o=sSs~U+HLSb+P*4&H_uPr@Dh~SHn$0_-a+c9$zyrzeO>wi%q2C
zQn+o$hjmurvC|!F%a^6B`v&E%T=J)r?v^BTRPClpIqL<7)62w$B!ouMtlW3cZ>dd-
z13|HTYS}uK&)dZ+aG*c_@bCTcpV?aSA8UDhZ~^T!e&Bv4Dkp&9-Ri&|WCF+HI56F+
z5c0yY0f09=#PSe$pqZt+Qb19d4<xV3WOl0z4B9Lu_KfLX(t(sWVGgpf-b-fAR|jEA
z54$%LNK<e1kG%RYK0Sct#Bk-1i`?$@h5coA%3Bi;OCHct9E;>O8@k~;QL?aZJa)LQ
z^}Ky!xG2TA$bm-lbe4KSZF`;l%sXYi{~^EsTxmh@^rt0w{`~nD6!8=CmrT-fq+kuq
zW%(>M_oU*iov6Bl_3eWtdcXarg;<pQrRr}lLRvrzy2R&jNo22a)A!3Dr4vVPZ@gg<
zI;X?MKLosX8DMy(xoyo_vS{pp0U?usi~l`f-lbX%k;~%Efn3=XQtQE)67Gp|8*Qf}
zAebasyh57uB>H8jy9N9>SS{!S3&~wuTu4xB;*ig};(ER<(r|2Lqn|x1;QaK{MP6RK
z%}>+yu5J20EQ*^RF^n;3>IHf$u9#swc9UN|$Np<_jk;ZU+BA<z!94R~)8!Q9l*XBR
zFf65tFzsRT?z8oII|RqXR}JgoLO(%pOx*^1HpU(;3Nwtc3Wt==SBC**7FB()%lxar
zR58hr0`BuQ$W@+$F<cC)Yx2}S{t~aj311sH7ud*|L#_b?H>5g`8b)%u>-s1I%1~15
z-Y_l|&iV6DNb6mUUZ1RKHC0D>dMypNK=lw6MCEZ;GTf_s|FLo5*2(bf5ZqGT!8|A8
z0bQ4mvj1{0oW6!)k>ywzB<;VD7iM_-_AMj2n7w`E9ZAUq2mQ?|tH}J7hp_E(K&|Jw
zJ^ciamr@R+2Sr0|1646^**!Z+$pw#%aXvE0=E-=h<Col0JgAUYB&YB*fuNIJGQfS~
zMl%;LM{haHWPZbLQt683nAU35%00U=Da|}BZdD@8r8qWy7ggPP({oACNN^I)%4_TQ
zSn8~DDRH8Ydg;~Wk@WT^u5Dw6O4f6w6v_M2ckkkRo%U;Nf_Z|g<(uHHqZBiDd_&>Q
z8^s=C;TdR95fYV+A*+r%Y_y60H;Db`C#m=Uke<~l`}I+=NezhTe1>S2%||Khr2!7{
zUmPC+w?E;TG7iToc-`A;o=aemi3TM&yRns9<TJaFC$-~G?Q8`cl&4oK=~%5{#B#Jb
z3ql!>N^t4Q=c)vmShI8I&UKLJcd8oOPSuL1%O=d;tgS0{K${Vj1Sl>|`bA6j!eq_i
zm#@qHa(UAX;f3coI5+~$E5d4&8R*Y=*DDKvtw+F`y=ss<)O&odMZAt;Uf!1Oj{Mms
z`1vFr1*6V~1<(<JCx}e*wtpcEw<Ptmw<@C*54>JP>@MJ%{^$XzpvH_t64}CPWrH%&
z*pyS1W+Scjct!pE!{eB+d!!a74W3oX8QqWBF~J01<*~K3b*|;vEtCeq%q<iOn2gae
z*ka?4+M+DQiT^I>`FYq@0Ndj+i{L$4nHici5TMXge7Nbi<N=lkjrVx!X8g1U1cPxN
zZ@>*(AvQ51`I26F@LU2SRp$nT2GjIBEFV*2(`k##hWz;E<<c+GTk4HOVf0r7>09FG
zDivoboyfd_O)t%3Gdp9L>}V?V&s!Qv<mUy1_JaNFlJQ|YTy(3?nNb8CCDDX7yF8nm
zree`=0=Q>B<b(D*7B0_pmC&hQ$NMaHk>8f=G=ZSc$)0WXt`v{0VXC690w%JwnS^lv
z9UTpgg8TSrqApi$VX#{A`%H0q@X9zufBsy_$YJq#z%k(OMS0{7*1q$3?bSJu;=L%6
zK-4%OH6(7R<w9Dk2RxE$7m0S*VK;b@j2RlXiB^&cVHDqAKD&SbQ2}@$f46X1l(+8l
zpAij!cFjE~<<Sip@LTsm%}7;hL<IOU;*Kwe^-f>^7p=ebQMS>bkK#Ua!|}p@zfz<e
z3be!u@A}(6yi4-}6WvUyZY}ojTk0?W@B>P%RfFEL^7kwJd61!g9;u1yFA-~g`_)_d
z{oS9h^+0I4%D}F6?f1;|Z?FA2=>Xs^`B<#~&v*AfnLYA3v^v=QiunH}-}_@nnh?WE
zBuK>mj{xoGenmwB-#GZ@9$29R|CUXl76X)R3WZ(F#cRJn_n%MS?@NUMvF+eJgWO+w
z!=Kmv`^qIq07PUKWm@<95C8spngPDK9-6W9|Fs4mnNhvD5az>wYu^2_RBTwFgCiu(
z`Gx=dLqHTUBLGB3(`1D0|5{ErkaXt7eb9LIe{C1e5Fn;>(sexgzn1g=cS~&t`1>QC
zYrb0i`sm4%C#D}GX+invJ^wN40iX9lseHN@IAeV&YNdJsWZ^cLJml49F1MNLx;fcb
z<LQcplXI1TfPl}tigi)F>Y;`EwBNZ@IJO+OzerblednCQi%UiHbmD9V?d6!^5PqbD
zhndi+^$y>?zb`uSBI<~QvS_^zlvXH><#}r1&TA0}pb<NQi_9PHCR>}2P*1n~LD%vt
zi0Rr@E;XVwo%3p|BPBsvX9g8ZA1KZo&QxDZAeqFQ>NSx6`z`;^UYSlt(MiF%)k*&9
zD~5zmru^m&W|M>uV3eZe<2^LJ2Cv%)hNY?9unFvTanI=w0u1b*3VuNMk`Bdt1kdJ2
zp!s<-8Z)hGto9F$Q$NAGG}rO++vXUKL2N*H`7$GPNa7$Kx6ip`sfL2pMnUa?Ox43>
zx_hzAQ56*xpR-Gt&;8MkO}vmy8@d_P@PV3&aA~wG2c^{<u!WXZu72HQW9*4;o_P=X
zz?6Z)gZ}g~kh-?i`PuLO??pb62hq?NP}bUk*0{M7Hyx+{h{)?fWzZ=x%}du6MDFv_
z8O2p?AAc0;VY}A(b!|k$`0~Jj3bbEiFQ!K`E!b~=!Gdyc)Y<l$7w001+|qSxD)r!C
zt)yojBBk(h+^c`u;A$vs0}s=w3?7WxF}g>#ARY$47-brK4<j&LyotMq{bIH`qyuE?
z^TS1*7lYVa4|Z3{gNiAmK(y$=DO7@69&ihWEkL`736z_hJN+^uf_cyeuBTVTr4q~>
z%@}CW!cB&G43UwMeZ@XMPWMuk4DyFBL#~^s375;$Kay~F^YHY>^tnyYB}FiOla`iF
zD8A(5ep}G*y-C{?R1~7~suAL=50VKqKr*)Fx)!X1a8s0fi3~H)&QzeC!-;=vi6$y~
z)br9@9{RBV6M-DDPuHE?)(pN6cA-%o#7t_r(R)+!Tjj@)6-P%_LHjsC(EVA*BDdY-
z5Tg&|liQ<K1xd~*P!H9)e#z$~iE<U|9Ky0b^afIHnn~Mp{(HJ?`nAk3o$~z{^89e|
zZR=qLkl;Sk6~L?sAz|YY;}~8rR*&ya0>1ropwG(y?l*GAs7lQ36{l(T%iBJaovyN|
zR=M6IcLZ&G;Pt@kK?cF)u;ZR-8y;*_Z>s4zjP|SU;m|G~ZjyWiE!D$VcVL;n`<$z(
zy!!*$_#-OgH5DDonx<6(4B^?@z~#pj1X5-Kt#_cGqe?tj0e$0`Zkx?>$wat4;>>!%
zgQJD%{}FLc+IQ#;?S5Uc+YHLk`L;2!YN0w<f<OG;?)7}Q^xvOyh?Yn@6dza%4+9&!
z-F)xrgL)=?;X|)#nISuhRdkHeCQhp#Rk~2}o$qyyfAuE4W148N+SM*gx4In4OLS>D
zxj_jfc+SOnldmB2oo`|~gJ7FuMgN8S&H^8?r*i~fPyALaSxEmVscfP1cMzn$=uK&@
z_*x-x2%6u^kDUpul%3=85l>OtLHCWyC>Ja7W)!#Cwq{qYn&$w+TWEj!OyF?5LDSh2
zZS$NQvj~U!R>e+9hTuhc;qUt5BDYy)W(3wpSIH-E>8gdTI}eT=4-WmDW#f_AV6rn5
z9=I5|XWQV9wcUWj#tYwQvtTpmS|p=t_7x~O)m4A&)v<N$-F+YM-W_xiX%Cl`&<c8n
zhcy}nPAZ`1+j*&POBifg44fZ~0G41n#H#IvJ8>?5U+fFYSTNV;<hzu6#)_kS%O_`t
z=BaQ1i`WrGOfpXin;C?KMM1sG0@J6WK>ll`$`$7N#&&{VsX)(rzB#N;8EG_C<N5x(
zX;3~u9j42ZHA!0mGR3G47x)6H?}pEAg8x^N2@rM|A1z9qxc~G5$ivn5)tEilq^fnx
z(yvSI-MfKWSCllf?~SPV?)$Sd*YK;*_4A?CzB==HDi0=DX#%EWy>Nl_lfL&`Cm{P0
zWG|3#z5Xi+?mt<^$1L<Ct-`LAAT&k$uS>n@8aRH&BgOMAu|G5_X9CHi&9C@VH0e{Y
z8~Ap<zO8?s01fMo0?Q!X&3aUE`B(<zvY}_X`I$t&ejBq>ev6~DbLGBO7m(#So3-3}
zYj?T@0v}wu0foC_Muj+j69p~G2Bj-Yz^!%mjJ$ZK1MqJ9vQ_UbgSTL!aR4?^^sq_T
z)>zIE3w)6xR858!VV?V5IU~HU)IyoNn?6F&C|KGYovJGwLy^#H#wIip1A>6UEGMpy
zxNv*@$%uIne}IN>Mu{1;!smybV<$59jz6Hkc3&W4@Ta{HVMO6}P7XvL1QaXiz5F1%
zJx_U%i#Yx!kQvLm)4JEFtbn}Erk;;bc1C!D@oR)iCcdS5pr;qg(yPS0N6kTP<|!4S
zk|b6Z)cdYCh8uP!c)Gb6%-$*6wS0PU9R$d<xKk|OcNT{<8ADHr<xO`GQ6!ebE-N{Y
zb;RNU!j4e3$Y&$-;=U3|;E?*!b;{fPSw8P4MJ_TBY+w((C10V$h!4tt;`|^-F{P@#
zRpZC^p2omWl<z`Rghy$j+n`x!-I6Ksx{3`Xc7{-}ebPkyL#+ZX82Iri=5ei8_dYAj
zGxid8042C2l=??8t>p;=*qDIdkXHx3sWSSfB-^T99dEc1DsHDuXv|myRc0J8HaUZd
zxXin6t_mYR9GmeAJ>8hFp?drPXgzN8QP>0)5SKVz*6uN;TkGh&B)C0Pvk&yT8*DW<
z<zQx+zN%0CW9lyez1_?>!zP|1db97_$ze(8F2aU=<jtKSklMcp!1*ChB;M&h`?S?r
zHG`>X5+s<}Mdfx=Z*d=in7h;{upN2T>r2!R-m;RG0+8H<DZ8tgrtU#gM=RKq-Hkk)
zltav23w$9y!j&-5ONHMQ;-y7eIq(auZny5y3%$&>nI_9_);ih%45WGAd-Muu<&_7f
zH6z$=md=DwXaLJ&UF`XiBW41-TZ3MuqeNN_<(V*BK#W%bIWb#{gxY0fzq(WrXdo)D
zk@gZA_&F1BN&xfi<cKe2!li!G(+gokh0KIDaY5PB1WBFwrluUmo9)oIF$GbanWp7a
zfG?Peh<6$^0C7>8Y<uv8ErR_T%U4k6h=9n?^rSllcZD9W$nl@l1(D<c-t*wRCiLef
zy%W3KpCJ$yx_*F^%h7(HJlc@Mq;Xa*I5Qlh{uU#njQawe*D1vG*K(uQDvOC#`%{@i
z;B7$9vq5ck@hhKMC(c4mbrUE()>QoSdNA+#vP|LIme$kbiZPyFl@gLV^8yZW(qyN3
zrQPR;a}l?7pNRw~9fFGhqoUMnNju6EiIC|1vf=bsy0MdcDPa7#5RLM&Q}!~XI4B3S
zgiO$_FdKZ;l#M$MwMxQnVfjE3H#3*bD#jr4$-ni0ME|Jge2g!W3aQo{M{U|MiV*3g
zsyl;J;XX3EP;i(Yn6ZjcqJ4zB)L4r2Ea)2JKzeFqN3#U-G>uAx5a;C61kbvjG9*KK
zV%hx&Be$8O>E=Qh8Ujl69HilLX}b|WPWG@E7Q_@Je}tc#(5=9~=61V`CU?x;@oXJR
z<+6HF-((<DQTb`R&4mJEe+Q8%eDj$Yya;E~+9PR}h4O22CBGO!zg12qs2WA{4!PdL
z1NJ=FV)5_7=8&UFpA+#4xNRUf^-EXheDi;jq3KP(krF<@|LBOfvAW=~uI}mubY8bL
zOL?JSa?nhvs#19@(Gq2!qQ!`1)1To<Pb<3}d=oI960-!0(9@!tP9lD)*5~o23<sTM
zrxoaeRW<ZAG~z$J=<XfNcV-crWxs{VGfb$Pt#YH)%#!IA=gij9bxuCj?$ppw1htyz
z?JKFJ;~;#OEBQRup!li6;i7V3&1S9Vh0SqXx!pW6r-e?A29;cO&6E8{8k(usgisBD
zB;Zd^U>^3iAunA}+vIsfy+tK9e&@O`;F4ol<&cdidCzoQ#LOE-P&OU};GPIi@5zL0
zk^TS}x=%Mr{b;ftYKbtmSnC-rm6l!VkNuM?m{D(pf}JTTGUKU=h}RvK-pp-YJyC;J
zlZyKY>~;yPat~&`e<+%0ZlM@_67mHA|1I1-+@ogiw_u=275VZxaJa}q6S9%}^~7{I
zO&>m=PkyLXC}FMHlp{gS9-KNn8;UpEXynP^PuA4yY?_6|sTKuCJ58F+VmIcihgFgi
z>%`WJLG}GTF$Oqn#;%|N$6^>Z!r?}E%s68|DNOyol()2T@UipgYb|yBiveTzPj5sm
z<dp5Qq?*AIkyXOl>RPaPcGuJ-UX8834h|7xChm$@<{AIA58i1qH}qRHB$P2L@%v~$
zXxFGh59Vz;8lE~!q1NKUGAWPY@HYlYumdvPM;fl+Bmi{Z4&?Z=`i{JpPl!Jt=Yw*J
z91N%%7%NI9s)ca;riZDFD-Q@Uzhidz4wna0%R=|%KS%VRfBGTBpt2?wl6Fh85dVlK
ze}N8HcvJ`L#`Pyl*c^oO4h|#_orxIh87mUb4qe0-qL3H__@A-2+~>!MQjXevt_{|f
z4})_&HlrWGgLP&b$<}&OQ(d>9xclM5B`PXzg&3VZn_X52wyzc^zE_xeOyS8k9tc-@
z-d4bCxY-U4Z_RndVBx@kz2d13?lBR=ricB9hVPLNC#Ux?91_c>m!)s<B0GrVNDT=R
zvkK8MrQS5s0+VDkKj~}eR^5+ddHkKrv}9;!cF1Vav$OFK`?R&JFh_DDgzUJPpuNvH
z|Bjygf%M&ASM3Wy_+o`DDw&02{LFtYz^^6o8<&KYxGaC3E|aNIdS!BWFmJ4LMGa4i
ztN%WlUKR<Po{C<1h48_Wv8`oQcgtJdWe$o5fq3VsUJjd00S?A+UR;EV$2t>cP&6(t
zkLKS8n}Hd=F|~PGTXU0CD>m>6uu51TZ%&Xv+@~m=Z!diiW-~BaO}q;dRtq)#_uZcL
zJk_u~RF4@Efrj9}vEC=3L{znZ+Rg$LE}+}**pAz4wC!C+)Qh@e+MRmB?z3$Y>T#|>
zr;>TTLp>6N3;et1?Y@ER^z!_C7@PcMrh4Ka-+KHWZhn6FIvy>)>c?=_ze6Z*Nt_oe
zxWpFjj*)q$hlUfTZKwyjt~ziJ4&-3Tun#umO`vmbwM=Z11~Mx(UHv@E&h=LU=6`C%
zFGOg`)gB8mM4lD6>lXqmGV(hw-}<atX{_hvg}9L_`liT3LTmLK_-Q74tVoN;dpC6s
z&YZK?;ul;l9)(BP1XF;z15R|4{L>B(ipm7QYany<GLLoY3%Mcio6Qy!BvGHiR~Rn0
zA<uC6=xd(!D7>iX#$?)cKt=gkEt78D;gn~&RzpodAkbw&uX9IDTkp|r&UV70v@(rq
z(C5Jnl5{Va<c@L&#>S--7qoK4VACcAB^a|<S7Nz6CUg@=x!XRHE-gXpVH@Cttf?)a
zv+D=k5fQG9_lwNAuxpS%E3(R;;Lrsw0NaZ_o5ic(RLhYCNAY6u%Y^?e)UQO6L+8kO
z=kr%TzTv?0qD{Rpn!~m=_vU6961&K$Grm`DcXc4g9J4G!29k#^x4caM7h{I_3RmTm
zQ~SbiONMz&^7=i>KbUUX|2hh%>w}kHP7)B`7n01bqfe0Bky&+l0G{Pl$+y(qsx9A^
zg6%IW-Uo24epC5M=QfGD@i<s$w`6VcD0XO_v@@|K88SejZ9**iQR2MzFrac>Uh;$<
zRD3hXg&q_r$E$Q+8(k?t96I+>^y>t2CG^scmyeOyp-Jtk*(x0ObliQ0a?Ay$dvZ;r
z*T53V{Y%4KndhEutUYE9b6FFn@$@k%K(#M`n=!IKZgMS9uhvWA>HAS*Ri9qJ(`6N*
zh3A8v)*sxO999N$RhIC+V_V!{^<EyR7_yYLzw%y_8%FrPVuZxHW6Wr?iqV+rA9`tD
z?x5xG9WFK{m~Fi*oF^UYq<s!k#2$W!W=ypCH9;ZT!C0_FS|#gB-1Q?k+~sEQpH(OT
z?~ji_pt7>|7Je(IF7@%W4e~>O;Ke>DFS45?g1KNqL^`u>l?uMu>B*|&gI%t2uCY6#
zpo!+Si5on2a})x;)b3dhCrENRfjLk{NghN!0l9Sxt#rAAk&#j8i#27Vd5^yL)%+-p
zn32W1qvedCyMVHrK(Vu8kPeYKOT0w^qkbQ#9+G`&Gn%3=bt@gyay5#?0vu1>^1iMP
z_9e8EKDOm$9(a~^k|pe6cjP>7PtQF2M2I|Si93w~H-DT|tH42*CT212HW$`cY>HDx
z$KE6mr?-=_M_&_~yPm6$J{=Mdyf_)_HO*ZHg{j*2Ir~L}2jLcO^Ml!{+KD_i+0VL@
z!&GUNa(DZ<FdmV7t$)1#D*2XO@{Ev=gmXyaG3aoTj|TA>l5W}Yhy|A_ZP{+g)vuDg
z<(S@$_|9!(DWE~1w-(2$TP(-XxC~DwR!fsWm;x@qh$LR3XBq`;j{DHu)#N>zvLs2d
zj~Q^<|1tG^@yCPlkmkHtW&r7FJnfh7Y`HPfCT%YS2Cajx#1stGWH9rA14P^Mx!5JA
zZ+QC$q>TyRF*Dc!nMvSt3QUxL@F4R%cpG}7oY=QCuia0y?%L+Rz%~K$EhY{Oy281t
zUfLEo7sH3VtF4gG1i%qg_1vwJaPTwmk4OPuB<uI*UWu0aA$8x1on^2U&n&y#4s8Qx
z0X##>i<fp`<cn2avKc=FmH4$UZOSGGUzY=Ysk6mId>Mqpc|ZnSO<Eg1Z!rO9R1`6e
zeEU|l=ZZ?`*4c<I<sTqb<3?{WnG?cO>6&TFZdO!3p0Ve^EJqdxfEHguH}5vAey#l{
zpGNx!Bu3PY{giaMxI>Q{YvJ%T!3}6U4`qVDuIoAda44F^y*sfb(X6x)ZbjTojTY=;
z8t6&atuN;1y#kt=(UYwkR<Q?t*jsf)v7kX{1MRmN<^&0<JSxp;{heI>^K|?86x}*o
zRPLoFPY)JVDx^Q^dYbr$xfr6m;F*-5+1B=LzUo5}<#uDE>t(89E}ds)_<AQtJM!)`
z0VHRQo($kWJ7r8I<k6X!*GGD8EKe%bO%CG9lFG*Y7O+qWJ<}YR(?3JGi1(IQtf!<0
zm)k$3%VmOpu#5@uC}rqN_6CW*7cD%EA!JnbqbI;MY;ieZ`vP3HVl#oXdK>sY?Q`8)
z!QXgwu&he7^0dk;Dv*~XDeaguYN!qP%{ocvEmogxg3neM8%}x~bn0fhIA5(C^dHWY
z?msj`;lvK?<Ay0^>zn?>R)8iNAo}kqtrPX!_sp5C<Ug5QZdoQfGr17#lk3B_HGc_R
zE;v7a^Ki3=u(j~o{_ziB{;7^@f4)~_#fW?J;Pcyy3JWW`vKGeombWGb<nLBw3m$Wy
zo1j8t7F?$EDNqcrQyot8Ju_OG=Hix+-^lb&Aq)Kv?Xg21&w~Gm={5zv-YHsa15_Ue
z1}L=72P65#bEVzf0gN8Aa_BM5ki0r84!WWniu6!<+3Y&24<$xagawOg=4vR4iwLbK
z>68uj+`UXof~+t143^R~Bw~z?`}D(ZQ*PRf@$h!I{vG#BDn(3My6C)sclU9!uG>UB
zd#<n|KN3gm$@uQV4bP+urRA&#wD+!S!;fS}-WN-J@u?k}aNgi@>KR`hKfhC{S1|UH
z@6i1<SAWjtQMa=kn`Mqo*#vT>a$5N7>Rzgy8!+TXq_JPM#|m|*Np_eYA4Jo>Z@8fv
zl6?c|zTI|h-5&WmW%uCIZniBAYHX(GVa+20`(yNT5p2Ybtt-1xWaO#=`Y;CFMRE5u
z<&9jJC`R|q^UhGJSo7M0gpt5n<<CP9J;$t(iIc~SIu(VlR0r0JY@u1PuJ;4MU~M2|
z@)5t<V?ASoUEz8zbwyvl%7xt8?130D7jN9Y66!5MdG_J(#bc8xe34V9(SQEocZcBa
z5-Y)18tS3Xt%jxP1`;tvMYb!-4l@k_WO{jwU35Ypt~WBtw4$xF)C)1QP?ofs#DW{z
z<zv(GEF-qzJ+stZ^lI_=+dg`!nrlyz$Nf{5Q5RV&zZ*BPu2Cb*xso1<Flxqj;ZRMM
z#J1vgI6hdyYi(cRN$Gl>V6!9u+zakrH8N)}7xXg4TMPF;J;FF#yKkd+>;9q<qyQT%
z1(-Cxr_g@;qp3!u0i)bw^caS9uDyQq;Qi%8E_QoaEO1GgxSb5Fk?)O{KQ+F+e5*EO
zmHtk^tzPu!j8>3vQ@F%JktLZFv-R7D{r9s)649{6f^67xb%6rcOU>ed4pa(rJT>p3
zY`igp9F^tq$imoF`picA3Xxi`?+8U{!#qYl)Qmx-rdz~czTO|7n5s=<$Yg!Xdf4DA
z4VzHuLI+z$I(aDB+&zOy$X0+TfAS=uuiCXLPs<w<j3;@U={%+hhorD$QylM@6-0zm
ztfA!n2Uu#<J>wp)2`WD?zG9ydAH#Frf6}9*|19h8S3q%$hIRa@DCNgj2lW5EXL8>+
zDBQFwB8}iLw_5|}igg@jQJ{(U-#_B#N~oR1v@T)%xczVMhoWOz8>6>b{@g)-?xjCo
z`Q>8c51Xk*&j022{`rsmNU`vTTQHvw{Ozv(`l}`pO<`9yO$Ys7@A|LzIS6SA!w9bA
zi2k;V|NQvV=*5g821%--u~Pr?zR?vC19JMiYES<6uKn>lOjLb8@Z>yZ{)fBz$NNop
z;eE--T#Vm;>2HhiG5eICjoMjFs(*PuI11hmrO~|b`=0)Fb(l1fs;AM$a<PjA|K)vr
zdOsZwtsced#KR3MGw|E90nxjOSx>UJM)=%a>zzUh4K(Xi=>0GFUz9@@#6fyLd5KML
z+<K&V1lo~$XqfiF|8#FhZbTye*1@&T#yjNF4X<IeG5VseHAFC>=>&9yxS^|36yyoK
zNY9#a`^Md?J|{=0fpzHRPaSFPU;gh0itu1x@iIsXE6?S>hz12NM=NDq2eW4Juotr4
zUpANakT?sHnY!&p)v$HD$bVWZKYx6h!u!GfUSBCtE&BED<cEDv9Y}`NvYwaPq3|-G
z&<lAej41yKW`BN)Uy3Abe@gC*XOu#HXe&8tHULdYd8iKy|HG<&;9wL9uzC3s$iq8{
zV2LueHdQxu1R~~g`Ojb1w17=63-DAYgd1xhs9Oyd=)X>GK5}<l?6v`oh0(Y5!+vHx
zL=!c&#T&qkuYv)d84R#kfb;v=&3n%rMhgH#Orqd(j0cf=64*JW#$RKiM`=JJd?3P^
zfpf;POTWWwr*1woFdAEcSzGMciTCqfxr|zTGc-;#2V^R%%R^R90NB_yK|Ax$zJCwl
zj-|p>2LgJD?L?JELE<hY0~)v0;7x#{i(dD$)xGqHUgNHQ`nN4EQVd(KSmN1R99G_`
zQmdivz%cBu$!_neFYK{aWd^zfKDT}ZmL%NZFe+2DmKLXHN##`-L-}JRr?CqFH>J)L
z0$^Wr0}Gx9NRXBvzrwh`X4LFUGa%g1&P|XDomz!NkH`F_Lm;`SK2hqUgXN5cuv?So
z$qH@(ZpCBT9?julpf*;%E(<mw>t{-C-k$@vgLn0j-(h&S1sJWFmI?*r=fiJk`wDb&
zV7~Q+VY|aL=qiiBHNBlppC1Ayh{pp!cMB4nzV8P#C~vU^CUEL^U(HK3R`@iQH<m)%
zPtJW1Q3*4a5U2QDKf0ZDK64J26Y@vxk8XRCcwW^2l62Oc?6TczuRS?A+%$t8lo?E3
zf(uB3ZbOym4)_G^H)dS`?D&J=;o7Mb1>N-t*H%xwtK_do=^VJ%b4$88^R$EvE~yDD
z!e_e?wP<&NTCoe7&vQmTyCao=WYkboF?t?TQ=9KezgB<M50aSpx8nLd(9d?&S+hcH
z`q#=QyUlK0s=m<!=ncxXI0;l9*Sn})m2#)q!z;GinQEww8AmrI(Z(7vd(wXkF{p@c
zbX6n{Q}KF^Y7Q~sATF@n1IrSH%)3(+?l!X0^w}4lZKZbAF<Ah5X%dhaQZcQ{sLsY>
zb39pfSXD1eNe>7rOUyS|2O$i*>$pQu(u9xmYI_1##s$-|<GU=pQ_AwYTri0p2g|A~
zlu;XoIBy0;)$d+sR*a{h8njG)A;;fVYJ2QcUNyinSH3tIRA=e)<i6oL-0G#E;Cc(}
zSR&bu>xdg7b(^(jHyX6MGQ1&~t5$qNo~4?n)fKL0ACvrsQ!w`xuS1_A(I7CvTQLr{
z9~$PJQZdy|y=&MHMx!Y^_#xk5*mpc|>f`URR$gh$$pJMAV3?u{h@I>JFSW08kMr&F
zoRHITq1{q+WuP_hPYkCLV*GNHW*W%`FzZO~;<f#Z9-H2G8Dk0vkb?}Wh(2Q0GTY-O
z9y6o-d(di1IYm@X(EY3mb7{EfiN59`069qz`y}GItWr?=UG+DXP?u*Uz*CkO!d5#R
zC|gyg?bi?W#Y#X`&C!J$2$kTKY#vp`gJzN!HWJGcB)TT7)oV)RI@}Kwrj7tIH){zc
zJ1MpmF^sKZ90p-nf`F^u=W`D%gwK{_ze7RPt|434%0)&J+HbS*<!2_2_uk(G`N(7K
zvR8Ew?jC)}v3EN7N><)+dR-eOvM&Xv0yjT5&lF=+mVQ5iN@$ILJcsc+1`H8uMfIEY
z>(F=u$}F@0UwdC34rSl>ol0sXT}3J(xmpm4s0eA1${HuKgvvVB7;8*ON?BTD57}qT
zjIxiNitO7MjIl(P8DojD%$V{1=6>Gyxv#7Hd5`zc_n)ids6&4gGjpEj@B96%un%X)
zrOh$sU|<$5k+Oal`D(DpuOF9h6t^Gc@7)r4Sh0C7u6`OYu!)@F>Nz5k?O8Fk9+o1v
zrU&ADXGwr^VN!SN^6#Nm@*RvhVy72>rtX#S>d5G657m6n0H9bgjRwj$PO~k@^_Vo9
z2RB*AIk%uxzAA*M(Zy=Vp2^c9(O0fm!eQJB-RCwlqP>?w2SNUBJg3PROl^lDo)O;%
z+eqZ__Qu-a4u7but$UVnOo9|W1*mRToLDc#GjUi}JEZa4Ao?R4q&CrV0kxk12DJe(
zH?P1`TjFK_RKAZc`(zY<M>y(hb#_Tmw)k&TgnJPfKc1z00{<!rKoA34ZU$SYss&c5
znVURq6Rao&*9aYDKw@ZgcW1R!nn$TGqD)dhX}n`ZLd6)omVU+h<g=1!T|RWjAmCNu
zol0TNya!s(gLkKNe!jZm=9gOI{esT{t0vxd^hPkMZ^~7Y7z6;>=K1<GKtg+)&!sB4
zn30Z}%!6bN?^)CH-*=!<?vNlF<&>ldpX5gC4IsjOt``8k(R1>C5Q|ce)r-Y~5{(74
zC1Q5)!<9@>F;6~Bzy^jTT)LPi9RbJQ#3r*qD;#T)vg+MmU~`Y)wI>7RqzE05YW3D3
zl*%3j()280kws|9Nz5XS7w|VFew!@*W9`B?30&ppk}7sF66iB``!x*$?|v)Tz~Gv%
z4!Ta2gBUdDxNTig*T?SJ)z>>vd86D$s#C=Jg4pXqb`wpn*$?Ro`8B}gcqnks^0p>L
zqQwI>=BxtpgX!)vihH2RHMqRK$v(WDL~-ju#|nnFrn!A4?V(q4(C&dk`{<f}P(x}P
zF8C%D<OZ&IV#VGqH{5oTQD}@4p|(s1eIae+C7j{=_mR%|YP25=e|*Uuw_@9iOa0M<
zdR*G8bE?jCd+Yb{{2c6A@`{k^1?P>m)mGrGvMbHunJ%j}=5KyP<LGTe*;H`CyQHCx
zLa{GVO$Zyb`rGqqK@WTOXXeSDd+etwpc9-O(zbxog33@Va6gILU_@qE3irQgna`lM
zv_TlWqhl3H%2YgJFob)AVdLUn4w{hzxPI(ap$vISuh%&*9PD*-_cc_{=>ltd@y1O+
z1TBU)@Dw3C)RK<$RfA;nNg#;cl`1ngQUTW{HiDeqJF~d@Wl$b5z>a|gMTd=!-@^?T
zXTMuLb16kmwO>cPh5_wak;#{Gu#{s|=7Fx)lzS$kk+Y#~Mj|O@hSoDdr#qEHIX?=3
z^!zQKTDVDHp%QEA_?-b><%;g2Z>c(&`dGf~xk%8@SR18G<jO!W8_`!Vrju>c@NA_n
zh+%M@iK1ABW%~^K#aZfdWv{>it}{F}8Dk=2)$(lh5nyv8Yf_dEI|h#`7k_}`s`}<#
zuTA{`@x-6hjmu)u!rLJNUdh?CyBL!e*qJspG_73&W}-|GxR~P-cbehx=UV6+^BI>?
zvK^(j{96#u%m&4*JNnuf>voQh6*NH3AE@dxpSm~F;r}E($`T@UC06%<F6W>CcCnb5
z9Y}^7UhRDTd<1!j9EJDP7m}lhUYQ(}3tXL9I_oxEDNq45Gqsy0XA9p}r~dpX774Bc
z3G=TX?sIAWWvb>p2L8;v{A-hNa$@YHm={=Yb$}v{wV<Uz0T0;ZOIMY4OFDOjzCKnA
z64}4;J43d>6S!GeC<sR9)GA;=W4pW8hULOeNg17*NB9+-zA&&u8|YRno5~#AK=<rk
zk2j*C*|kdjHThReP404p2PA9B?s{46h~7q*%yn`Zcw%+%4Z28|-NHy7@o-t0#Z~Fk
zbeYD4;D+!T3WDb>5y0`<g<wt>NG~_n#lbv!1zPiXUufwxW;PFk$#U>JEL#GB+3Psq
zD-2qB9(e-vX|MpQLrcXqBt^+|FG@Z)ibWL6gl~i7&?<c7EAv=C%N*G!#0}Vw<s7OM
z#<<W<XS0w2vP^Q6LAzDg6qr$0m`j4E+#|>(_aqc)p=#=Nffs+i%d{1cR|h%-_DX0=
z>Z4m+758YV%+uR*;1?t`6Gt$H{J%U?T_R0-lsHyhw^QLhA5IK<FlHS`EIq%CwcuwG
z{2&MBua>K{kFa_keqF}vYZCq|vt!{iuH-?Ua#bJ>D|s2msq5Cg)lm)NZ)G%Nhw8Ga
znbvh7!+yTC&xmu(vlpU8HH9{GiRZXyft)WvNIv!T4~=Js$hvfjkiXB3OFzuf5oROX
z@VZ7URgirG;^o8HvXZ@oZAZwfsVADQs~>e#1p~oI=4!xzmE^YH4*SN;Ex|PP9BA{c
zh%?Nvup;lrX*0u-BG^vB%Chj6j;3RA@YSJ=v=ek-<j)ca#=O_+!1N~G2#nWsf}N~S
zD*2g+->U`R^tuG|@XDWYobnee#O7VmLFN^M=%2N>Py#2O(icj;85{Gc@<)X9Y-*Gt
z*Bex#1Rb)Vq>h?sJSZ|B0pH77TbS=zC|mc)@okiCB_87y&c3KK1-dEtdtax|nSTd5
zw36H#;wK?tRGxGs(B2R7&?VE1YV$5zf%C{r)nUqSIz7`5q<HcLq(qA_6UCGV58YYk
zm>Sr<VB}nDc)i1GjxL1GuGJw1<16A7;Uxn#>KAu<lk{UyVv0t#m}X<5ywk+{9`sfd
zk#JNH2eY6Maq}#)HLe1LqY+9Ci*ceGtNjn62fijLR&;z}Ftt;;p>RqfKl`~+w)P?Q
z{1kO$Fy^swDGYWq>73(zoFo*FM@<&3K<Yco)zGD`WTy&^F7gf#t5yyC%3+F*AoO!H
z)VTAuO@$f>+-}*JB9mG))r>rxD_;V}0XqQkdcSUUo+=@^mJ%`To&a5Uv8skW4WLsT
zrCr_dGbhvwVtd}|trXi}hK#y!PJz&a(#4?B&PPBbbRN8Cg|SU_<JJfNetH~T1kgoB
z@)EE(#{*OPsUI$d1_!>cbipprr_74>YK}d*a$IMmT%lafxYWYC%BiC6fXk+Uo#aA<
zfERZhzgT-L^#an!sRhpRH+|#!mA?d}i1vGDrPXSYwabDWZBe7w_^&WWHq}0JMVsr^
zVbO^!P`NiWea;FY42o6Y8`#s`7DuD(^tTXz!fy$L(vzNGv|iWWD_*6o=-KpuHL<N?
zK1#34vPtJW*#W1Qvf7?fvBsYdQgm_7z5`$;7S^88@P>I6c7s>~2O%ON&AgM}hdQIW
zvlDuuIam_Zsb9KhF5S}gL;gX>6mY07Bd;0wY{7p6AB(fJ3qmAkD*Rxn+}%LPH(&OT
zkk|_4VZhlCsZ4L2*ipC&CqEWrqzAiwJ1d|El?ibdGvYs-n=#x}z|8Fsc!bh(4%DP4
zL@x(sh;e}p5w+LEeF!&VSVDU9@w#3q87iw)QXq9rUD5HmS|%pn`?DTQ#;#aAr8x%s
zP_}Gzt2qX<lmWlNZ)Rku-onV=ExPfB)!rAarHniG_Z>d?%K^?gzX?|1erD>-2c@0*
zh`#-Lm*&EZC7CbyPT!AGS38&K)uXF+k#=&JdSJjoroVIwEZk1^hU)n+2Lb)*V!x#W
zT?f>UjSI<IOuP9k{`h+D`d#(Sz|%W=i$h&`O@tNfUUh|L%MTj0F*lYvNM8lka?M}B
zaTs{-W`3g70RYE))-+@6+FsIpSwNU&fxOUtd6T{Em1ut!MLo<OXd6q@k-iQ>oTqV4
zcx|z>Uk%392$4yxzLNf!Gn=P|pr$_D{@lw(I~nK*;>H^D;SJEk=0<Y0n^4mib=gY(
z6`kZ4gojRlKq)x~`kb;Ty2pnuj~Cttw56tcJ^|l5fvPpuvD}hrT<m5aF{aL3ISw6=
zp7qjU?LyyC?O(pDpG#fQiS3(l!P^ZZ)otU1z@V%MudKGR?6JRisQ{{_)tjA9y{8TY
zp7Wjq%?={66YZ_u0`1KkC^Yu7`sF<H9o(f1F7XYGP+%M*i=;I_6zanVc5iUn2@D8p
zK#oMyT#EQRiV#z~b$iKX@?-8ZKw(wFMN8Az=2F~q*FMFT84mpE&P~UEG3Qk_R>NS&
zp}Xr6>_ex3y=E;}U>*|8KH5s3Ih35P8JTH)XWTg7bWHEgXs#N+pwg*JhMjxmbOfDY
zg#t}wu1Dl6-0Jo=VXi`m)nQU^HPG@V>;iMhGOG5vO$^(MS>`HXQt>4~{~fPIyZYu<
z72VCumD;l+r3@y4HZNDXP|5emD+m$b1)PB_#1Wls%Bg_Re9!9nlxsz5k*#Q@zAOph
z!#nlnj**Rnq7SM1zfwI-euT|l2Zxc4%8?l{nN&ipH*+PkBTa2vIMZ`4CMjn0(_H^z
zzyd}+SujHj`i_5Qx%8;3VGtyNJS@$Ln6;KRnm#AI5+@s&jk#}fDls;D2{@N|Gpcjw
zfeFKOmyv4KA9nNyZxZ`5ni;XuZ$*>ix@bW2UyqKWJtP_ek79<pr7)w~nA^YLn3d)A
zTuD=1TA@Lu?^zYG&EF@PlFRL1)HWtEh!}zsHd^cab$-i7P>So&ub<z!D1K9rX9mjz
zs-+z0UoKJ$^v{XcDIMG)_IZg``kjBL=U7Pn4g_g$9>{d<dL^RrjV&nc?YnJ@kd$P+
zmjA&!)1p!WeluA@wCeI4VtD)OW!=)Y@beI^yxQ}pIcO(Zxa+K+f3kzRCKfPjfCP|@
zo-fNW>I@M1N4$6l)C6#rUnp7Yo#b1AO6hmEWO6-YKj44f<<Ixjz=yz94@y?fYycpv
zgKD_iF2J92hj6baTZh(=S0C3C8kMM6L0ox#NKHm%1nutu=Fn`AC9q<Q^r2SO-zA3d
zr-9bkxLun)j}K4PgNL-;JtEF(UM@R4K}1GITC@F<XcUzCAZ*R4jvY+T0BhtnTC|ue
z9xKA#k}!Z|ol$()WIcc5-EHUoypBkzI4Jh8ObkM8PK8|MgR8@uS`@q4m1IyRZ-_d=
zd#4J~a|Fh6Rc83hnL=73DQY+zDZ6}6i4nBR3~%dq{qOLy)+H_}XNhD_)w}>8g=ROn
zF6+kw5r;27W58ibmy&25O(PkVcB3PHVM@OZ?A6#T3<BZx1J&vh`O05Ug?R$kro3TJ
z&<tdUIR|`y=i=`9=hakhHB)`qs0g{{rCvo0q@8get+lTT*U(vVjlB0zY?J`PROZDm
z-xSA$Y$1Pqd?86RJLBj@$(YK%xtF4?ndV<WF7P~e*LjkxNRb}EKlMJrVakF#X6C_a
zQ^?QT{dw-fw@4-~&^@Ma<kJHl1rU0`9L)jkCnRf2$Q7$>(qmzW{5)8lST6uYIn@-2
z%78Fr5fz=f?_eNv3@0>Vk_q*04@x95HZsoKBx~f}=EGQ7!g49DAee@|PsXfh0so+^
zz8VLd^t7a2og-(`YA|=O=A}`X<qsh1JH@N(y5cK5O}|Ic9h6-5kC|?IwkevB#sT|Y
zeYZmCVv{$?AU89}+45_KFz%KIHyvCl=Yh=svv7(GPQIKucfy-&Vig!mJA8ET+2M1!
zZnF64W5Uls=EJFnO02Sd!(Q#naUwML!?um=3Iv7gK9*aWOi(XUL&9!@n&taUAB4Ky
z5Ewtj)vuNRGz@^O3g#4Yt35!&&jdZXqEYtat$W0(o0*8G>RR1x8Pq;Sx;Xm%0BxEF
z1!8HOiRrA~(9z{`=yE^<-}!#FkKiPB5%1O+txq{{B~ZBMH^gqQmJVPJBBDYx=qGby
z^thgi)(bq|Iq>`siP@g2;xhax{R=|Qs2wu;X_wuNB5a^t2PE%&VM;p#!~47Y`1+LL
zs;g)RC@d?y_tNUnQDG-ay1JRtV?XW_09e)e)IKZv$)E0IZUeR&6=DB8>Q+|Rd1y#7
zcaIy)18tP&d;|UH4ie@}7w|3yIAcHP>+U~g)az&PGlgBB^g$ma%nKlkL?=AI3dWI8
zmmxNQlUv#A3L6S(;ZfzymDZ&Klqhit9WEMZsBIPT8L|<AgINw#L8opkQ~}cxn-W6!
zLZK>{Mw(#Epz*Ed+!a{K&OZ82QSXUwjX&s<Np2-|)UP1>x>$vWIOXQfg!u^eQ#K?Q
zcH?r55DPC(et5_%L&Wyif&RA{7slBu)R+_$22McPN{ckanLN+#c(!t~Kkx}&-JnNi
z<+GPy*WnyB??SXK;gkY1i~5B%`a0ofL!5zn2V)~o@|Dr~qu5vws<Vf};AdNZd_CjA
zH$nuigh4t$B2Qi)DFgkgSt$o-Vu4Y;BcFqw@G7m2zgi)utiE!+LG80Qv{@c1Uz#n(
z!tbbW4+NHhVSc5XBUMw$o>5&s;S5Ay%3(&ZZ1<G$CSMo7yRzP#Y{aOV!mHoTO4F?u
z_fy?7#AtP)$ej4xT0_DcCs+^wex^Gz&fEuME*n$e8gfNSCjdMR$hk2&VN8jtU@*WY
z&5;A*0bRM{2FZq7g^X9FgooE15_mInbAsA;eB{7fHk^q%3}V!)_>{@MRnK@F>KyCF
zmRsWnFQHnG$Un^8HBY)j(m#m0Wk|ktB=2SL)Q5m}<Dcb6uebPy3v>guk)zlNf#k-v
zw7ru6?LM<@$8PtGS@gG3hpuj_{R&ASTlqkWy{g8&;Fs_^63f1WJs7#iPp3_TU;L5H
z>#Ysexj3~)<j<%WZyh^WMQ<<b>H?Q81x^$xWHj!6mgTx`TB-Zt(g0SI>y1=PDA(tx
zaS#?IFB|XKn8RJY@d#z9TZfK<N)ynI2^<;=lvq(yLMJ8hneJqZ+>m~<rkjxVcq#~r
z=}OIj&^)u-#)p&?H3)N*psOSkj$A#Epnm)PpQ{g0veFh=n5gwS9`p63ul`31H4l-a
z+mcGxUY>g5vxD8VdrwoALB?kP(O>N<Z{6qs{;<E=H{m*CGE%^3_tH_1;beSN@%ibv
zSb_ZE$dvOSY(E=>*s>on&ZcXG?qD+=wgGfcf%4Kqhiou?uzfuTM*$?r`b%3c6^6}q
z!W=$Z#b*yK!;D|vsAtMt12cGjr1jH?iZVY)V|urG_3E!}C+QD3y<oHUS7WPxn{>Ih
zKYAx)E_-^<w&NLFVK0ncpgZ*hv$0ncB&Y^u={!Bt$X^I1YmQveQ(RVJ2_husC1+3i
z6Yf$g_xhxWZO?{t4_ta%uOif&3lD$w^c70ekUL2#G9v+1ZwfUhV)yotWmEcW@;=|;
zf7Wx+@F$vAFSMm<<Cng9aGqyZrQgfZ%=q2XJE12TY8M-lwu%!=ZQT<miN*UQck{Q$
z#oEx~@U}5EiOvGp7E@vp@21y1BO1np2)OkY3!saf!&uINHD)!gtAWMgk<=}>bzE91
z+Kf?lxvg$p<VrsA@PmU}@7Hgb(&5AMcc*TX@0MZD7U^=20Jqxelp#a|QL8ScCl1d<
z8MHX|i)6U^n22RLwI!0N(EEE2a0$$Ly#cvTlLk-j7ERA+3J#B{A9lc-fyN;7oRG<}
z2CHH!^kiBpT=7RS@!O!RBIr7}lV$H4w>R;CGegu6+2N>Y$;&XX1Ii`wLR81R^$3BH
zel7c#(HT%oE6dEd>gyxgwF3Ew<?31ZsCkJ{D)IE`OQ;zhDI)Guz>~B|gu0Rg$*di7
zgV4vXx{PE;J0=W7;f+0P3N97trtpj466-;8TxwARBL^_C!zo)+Sb?3<a)V+bFB9`Y
zIhR=uQ>9f_AOpEVyS*+VkO37Q{%zCI-l=bsw5w?0y1+hJ(}LO^&lqB>t>?l#{hzl1
zbh}%m&q-ylM9OKZH39CH1D)Bgrz8Fhb%q}Iy1=+G%}G_}ZDQV)!{j$IrOVHX%}TFm
z%H+6TdXo@xGz{+q8!OC^)Q=G8b25iLl%U0Zv$Z!xyTEG%;!$@jNQSwYdvDpid#0#M
zcmb;nvBA8D5K90mynj`v$|t?3ee9j2)nLS<Nd6M8Z6AsWqps#KbPq}33#z*hs)t{s
z<?zDk<rIMAYMG+_1m1&T^85UWI+2WT(wPWiG8GB6l-bbii@c}x?_^a6M4q$Kj2yxb
z!QE5p0(XsI02WY(JQEisr)sHtZSWcCgZ4z8lnwXGF&oUJp;#dW_GLZqz8T3_U#yZ^
zi|MJ-B$?2KhtVc(o4PwJ^}xnnwRcwbn~NURvoTE!_bp0<%JX%Qzb&W3lZYj6EalnC
z7mBbJ(%6Z`x|VLhjaihs-|{L2fBaydlQ1LdP7?-u$!mC7B;!F>ftnt8-nMl5#P{92
z`uCykf)aObfvQr6^o`i-T;xaOY#n&TfiN}L$9=_sxM(%zky_|(_|}`_?w?q%2pyG5
z>uz}8?F1_j=#%n|KJYN7WDk^xmec2^!G40K`&l3H*MpA+u`7n^vSm_jy_3;Di(VbJ
zwIiV-jAIK!*wzIJ2?*PVhak*k2QuRBxT?E!)s#YUAfY%Nd!e@j-41CcVr^K{F(1Nt
z?Cexv4aIzcN&-$fgyp+;)cXQf*^XkfLc521%#>8J4Q-M{Q2G1+hJQ3w0`_;3X8P;k
zflk^_iXnutZDAHxq38#*Cp!0DKH3h1ALAR_KLz|1DvNR7dNXC}_>hff?aoZuf*_VM
z>1&wlddHmX&O0Ofvyc5oulx&UeFJE;7hWY7jsNRXuiu_qz_)Eo=5Nfq`%`Y;>Ha^|
zxSaoQIth2MX6lBR{QY+M?-w+>lXq{w=-B?+$^VPagzMyGYwDlAzm4htt%Zpy0QlcO
z-~OLB|G%$@zf9}@&r5GYxt?Udbff(8+)#O2T_{f*P=cjQz8><iQg|zE;#vq|*1$G3
zdu}TF>+UdEirrzQ$^op?k1sDK!REAR5&*`@Bw!6sk}+3GS{xr)Y7FP^Mf+eR4L)WL
z6gg&a=(+lnOKSVK`u&<X3mmZaiMNf>#%)Hpd*r0~7!dRQw5qS$;?xd>YZXd&Dn8sV
zxN98z_sNrUBgQ}FcUD1A90Xu_7|RN!i8uWqh4wD6fdjR$omQuiykSVy_tz5PoJDFf
z*|YsDu!G8<Om+|9r0x!IoU^o2gk5*$i%Fm%dXf7Gm<33S*CPbfoP%8w<n0qUM6v5C
z;0yUKMxP&Yulk;<UNZoYO;j+AvmXd(yY<Hi^i%vfm@fzfkukp#<pZ>=cJ0aK!y`uu
z0ht)%_=1rQn2kxW901XX!O#YPPnGadK+iB5_S3v=bp$6bq50~SLzZWpK>y(-fT<?}
zEs@B9dIzGW6S2o;;H*-}f4uO<%FFdUCEy9YtoQ4XeexK8MX<bWbNmiI3Mnl&khy0P
z>_6^r_s!8K-s&j<&id@Xv@D;bA9DmYZ3Fgkg-8gctpME0ya`hdff??1Z7_pCl}m%?
z-8t@Jiax)|Al6jwm0!kpF?nUnYA>x>OPjxD0zWS4=RSHWgYI?)R)t8}ZVqh6uO8D+
z;(#>x*>*~u-=X&8+G658s%3^>E9he>XgeZ)`#%Wke(vc8rOVa8SwGI^^iP>{O`njC
zc??t!CCZ(Vw=+$+-^x`je-!IOp^VAA|Duen>q_l_HdHMfbxZ}U7B%XLJWd4smk|~?
zo!1-cxIm{Ppy)n(U~C$av@^gtOnMsN(w+IK9B}lk0%LVwpv(HAouowG0K;665D&ik
zgFh-28F>7Nk&;M()EFda@$uRV=fSP$|9G4R13}^AFw8b`RY0^Ofugb6hvbw3&vd3&
z86fhmWC4yn!IdmZ&pFwA8GQDvTZUn-;O&1(%%Nt-G}KT~(rtmOWc!A4Cju&QJW8dV
zf8vVWrHEl8jM>*Y%$0t?VPy9&0Rejwn5IuZeB7RVQK!(Z?bW4T*UC@9KyC1hX#2%Y
zd`X1r=EVl@0aYxUvB`&1>f;yZM7Lgl`N0*J1pL`Q<MY~A_>=$p{P_1le{|bcqyFq*
zI&gRg5I&}Cj2iIgMf3^u&UmlAlttO}+S?CT`en2wV#bTb0Qw~lwA!C8F10GSxF>e;
zq2zJ?bY51BapO1$>%{??jiSr13CVlKw5=*hu1Nl82-krHldw^|$i2Yt*`;59taVq&
z5Xr$(&qHGi^JH*51)z3%=vk3#H4q+^*9qWGrg*){Gn%oW1~O)D*4aiR>}lA^I%NQA
zKS?>Bn(g5vMY;|e-VS+!X0ySXl?frB#<@tpNy@mvKT@K}r)qtgmQ6JyI{2RF&67zW
zjNf)4YyURY{7XG_94OwD|AY)sqsHl33<W5+B#7mYycr1x41XRFDnx9#3FTgWwp$St
zmM%}35Vvv?Ex^Pdx4H!vu(9Ym3WS260_#OD`F5Ujd{ioCS3cwFr`m~f><J({RJgg2
z)b3v`wT}6Tx(c*IZlyDFqkJ5oMH7m20&vBrz(^?v&lb?2I=<3JzvQP|ur!?tR5j}j
zW7~kstzZdW=^7Z_C*XuWY$Es`JL7BD!B%z(%Su-8f9y&I?4nhbe{SL+@N~&nMiB1>
zkS+XYvb--sN5XmD%a?&w_s&y-|3P4nEo|*fmt&GDM?;pX;Q3X7VtIEUey<83O7g~s
zcyfQM%htCb<_?0YH4gK#dXk!c4=f+;iq+*?wusx_yryB4^syou=(7@m;_Sxb%R@lr
zl^?0bGu~KZUy50<)QSDVkxtyT@>MLU@o>9L@>~2G=WJC19{#&@VTbw@^W0bS3!B$8
z3a~V=MJ55ovQTlzMTJJ8&o;xqfx4W(h8qBgD5c-L#CdV*v<cQ(%Not&QGQDsnT^~5
z6oV58v4wbI>=hw({X1*uS|#vDv!>8}%KKm7_F0F}W?87)yaK1JiPb<Bh%9-t+>JKT
zGi*lZ^SQzBMs)*d6S*Fc-5B%Tf8i}0+^6RTN3>i(_#N9@ut;rlW9hYBVc-^NeQk{7
zP8U$_DF&<X6O2M_nuodLDt|=?(`xJ{*EYfw&gvIVer4Z*y-^qxxJEIZz%7Y513%OY
zhcrJgT_AXpH&18H7H*^62Y#Vn#4Ojt^$jDV)p*w<Atb{KvmBKPIn5-?tn1RRrUuFO
zFgyL9Zq&X_d$FQYFGmNTz4$!@qhdzqRenv2Ai&dmi?TAX*CP(dIMw6so^O~P_|Ba8
z7FOd8;JB}J8S_9<20fsgH&Z1ZNa(^(zaJRqy?axs`gMkApGoy&Zsye(R3TzFBgzzn
zXnc{OYCK0hRihOd(tMf#0d2z(bY|<OB>rej8HKf9$S5;u3ra6dIp)0#GALU)VF5u5
zM})f)(v<5l2xZm*KTp+s=3~2&YL@p%krf4bp?}#D(I^r*yV?VGnmHN6FUFUt_>nS?
z(DixbNQroW`v*WJ^#BV`Bh&d$)h`QEsl<bpQ-EQCyAyW*E^-Fr_IF3idJ+F`drYBX
zY#@{7<J!r4xnj)*BYGh#++Fgqlwo!e2HQ&;gDD75)HW6*H2D<()t+~+beGTo!U7lw
zCV?_zkvPRrMM%g3tTd+9SR?X^R51``l?_x{V~WM>^3;ccS%h>Z`&Ml8B;Xd$0);6(
zJ8pR;JyNKodQ?v6h`uQrH4H)(NCizThgk~~U;sGFp>I<x$E+5Au-a~ju{yL<)g%Zp
zr^<rP=L4FmE}h{G4uR6Ho>|Lj(~1>AyP+}<rBhxlUw*6&;k%js!+ui(cLjm$t=U0^
zR@AfMDY!fRmS4I*aAj{eavJOa$+lcyAT#;qw$p$sx4<AuY6ZlKD*-)facmc(>oWCK
zuS_`Vqov`KJh5#?b+klk_Z6sB_8eh-4y5zdh`~(B>y@*gZ?kT>SdN3wD!QLf6KM5k
zPZYHSUMz_dE^u%Ba2}27Z(_1b`Gfrjzd`IK@B}?ClP$${-TRsCw8{ZSRm6C8fZ`1k
zy`s^`91X=(vfTsLUpD?&+laMocv3$I<``d_>6_wkBEJ&lSNi?05lZnU&#8%OC&6<E
z8vwWB6>NThbm-aubR>RWEICg<y~o)^=G&ivJ`QFx-L|tMoFyClF9(vz!#eIj&@-^5
zPv^qe(@RQeCf4~dcUF1!eA%(<Z>lBeDaM~4N}m6YKC1q856=`(BA|SZO!<z#UCp@?
z7NLn831VVc>|Z9e|1kpXIsruRQTwr!yF$+;-$4$UfNVQU;tP2u=!J^tgVrRUGN&`5
ztIUg;gA3OQ861)gfXYisy9pbxGXl9gwwXh<+(}pBtt-}kWTu&nXKSx_>)wf<t=Hv#
z1m4=ERRbpIRLz+T6Z%k^{yyYBT?0)iS;&5ZffHSWj=Q@v04)ELyJTuz!xJ#Ct=sr7
zS#xrvGT1kvKh}U2D>Ju}7b|fg|FU=eQ+}3#83?!ZB*om3D3;+SIek)AtN6ToW1MlH
zAhTN6dAbViK%j6Tjftf=%_i-sdpcumUb#w#aC$UKh>)cL2&n#}5Nit>&h26qjKZtw
zU&uStjZjFVb|T1Wh*O;=3)Bq@K~y$t;p!vXhe=8pml)I{@BzyMTOc9LWl#?BDUIf6
zMc-Qt2Ek^XJ$_LCM)&Q|tKZ7cR|TwoBH#w?F*zkd->7=25{Q&DZo`+BzMtHGwcfVW
zc?})H;;=<=gd&a<IuUd{>IbxrX?W*H$vsxTPp`iD_C$~=vr(*uH2yt>>C0@0s5cPl
z05VyJVdQ3D#my9Zp}x7n;-2Xn0+vFcinD|d2mJv=h$3<mI&7{c8XR0PAaQ`bf^tO4
zgJYot`i}B9w)Q6@=&!0zE;l?)#Kv(*>jtw(^Fq7Gs*KC2ezXRU#-G2c-JA|XmeMi&
zZZLRpvJ@N<iR!*od0eDXTqUqAk+9<5Hzfn~!WFPS46}`tBRKYQ@%L>IDDayS_TEVN
z9@_f$WVDc-g+2O#B?K>!GYgBrRxN%L4l<>Fn}Gz8FndD#GHTMo6N(xWf9q;)oTTD|
z4TOqQTy=cfpj#9h9oY+e<{Fz`XMoWm0Z8EcgKm?VTBWUU0G2-9e>NY{k|)0kl#RT*
zh!Y<p?y5SY^iqd4S@TNH{hc!V7NI)#Gx-Pw?#7e=*W>30pOwz(7)NzrBvf&Df)!W%
zAPO4EvHt@p8fFGQuwN){>3$Cw&d85u_WD>DE$vE+wJ9~5dKmE4_&{kZavyF5=yPdk
zwnyN&(^?`N+xL=B-jXO%7oN<`H2!dLNm>QRHW1==!bbsE?0+i&=atq1S6sk@VQ4zW
zL?nsf5Y;EpOu6v{c%h!P9wQaDE4Q3;>TN<F6?LgH;!ZSUg7C17f<7R8_F>(uaI!it
zbD(jmPmpSYKzwv^EG~v47x7#C2<(Diz@-oJWYHj=#A{|Ed<VXxyp^8u5>+j@K;=mV
z@?-xg3g{XYC&l`1IwW|Ev*8URhZL$mr>aASCyS4;Ew}pPWcMzoWYO~&#(|>fL}Ly2
zf{M2hf^V_&NaG(h8?050`5VuOl};n)Tfr6P%FJ3hxnoCBprwyLl-f*@yUWZo&e0{;
zChz_o&51DuqcPjFnqXTC4uAuXRxAZGh09&Z{yjCDTUPrjZ10vXp8$Hfn{yv(BY}WO
zF6>rL@}pZ?>e-%C?S<kmq$C7~a^+3xl1bTH50T&CR)MXOwBs~v-oh#u1&q(ho^Mt&
zK$uBM0N44pDtyo}di9;G<`U%&9Z#I>pWgElRY1)>IIYKpky<heJd!_WRQs62n(}CI
zizNzL#G!ZdMfDW8=J?1QywgYl$4t+X8Ax3~mRJ+_vzw4RfVr2VdJy|U-K?~{!re+j
z@NyNX$SHBNsv<^jVHomyzqP)xo!#X!M(HroAzO1y9E?-5#>J>BKHQE@_$mt>{!kJ~
z@!@k9e1^~V%*qb*sQc8Oz?%uqiM8j%SMNOnkD$#%wPaKYjW7Try1>!OZq?=Kw79#e
zJX4t_w0TgHSSfoL&#+W_>gLAY;2z7EWdc@bVBs$Hb>yr2h{u1NKN$KNtQDW(7kw8l
ze~B;+%aHXV+Dn;!M~xdPIxQ@Hv^GKlL8O(JXowE6m~qRvC;BGJ)Yx#O#DAwnX10^L
z4<9A`g%*uDk6b|4NazqblCdzanU5a$_sbct=eBnG^&-lVn?X7se_u6Y^Z~>c+(WDH
zu05ran|8Z&pZemp)fn?}OF}xTOW^V~ILu#A-;ssVgak7g@sMv;wwf4%v?OTKTQU#*
zfhN@mPUoez1Ael<w&YIMt)M1FP@Dno9gosE_!?M;iMLTYP{8X%DYYJwS4$<k*C-NY
zo{KA=JiHm~2n*o|Kt|q+S-54IXDV81=w}{4kH0LMa~QWkRw=LIUDS&Y(C`MPxKYbe
zY{h|m*F8I2UGV{YY7=O%ptu%wHH<6|t4`>00k7gs{s=<|i#-GlNfj8G>_e$x^wTRX
z?-6qq`idtKw?3rDCYc#(<wigzhvp_#-AA7YYcD}0F#x2fr-n@X)3NlR%UXD>U^jhs
zprHtGV5uiB6nH#vh{YyNMt!d$!ol;rtle}E`Zlj3D?S5$y7K!iLP=f8!|(g%hf-Z`
zkiAJRC1@_h$u#UXi~hsO>K7`5Sol$Mq$#0*@~k#&mHiaCL!cR@auAZ6`tBLxWBK!w
z4eG>H(;w?Q_-KY^G8@W|mOwHce^9A3>~*NmxiY{1fG$T(g*c)p8_0({X{$C=Pw5+P
zUA8%FVX{`R^^ocj?bs@yIw}r!>AvdwhH;j#F(}4eBAe{VB1(-KaA(6|G>h9ZUeKwG
z8E~Qc6gEyk>2IaB(urVmWcCJNOk*Em#R&P%(^^MT(NB6mU59NaFFN=a4Bj0e0m^+=
zRhuR)+*+}ItV*+KW@F%3m~Y~RfEA)r0dy3-V8x1&(k5)+?|G$2o$B*at<^2fsxY4i
z(yIxa)tCdQCwKK~o91~jo9op(bqneL9CE|)?gDbdn`Fe{p_*5F8XFd~N;<I29fACr
zr65Mqi5a6t*UK+3f~HaLi6g<=kONeG%lFru0#>tU3(c0USF{WGQhDM>?d7`tB_dVa
zkLK~lYxN9WAV!7-%-;)5e+<Tsoz5b=e|L}WI)2%j*)e16i{c5f&CEl|03Tb)qY{wM
zZh&^yQ?Gh%i3yP-Hs)#q&3^Z=C>C}n%*ZS*k%~6Lq2dWHGyVlJ0b3GKJs}z`gT*zB
z7PaNh&8+FE9_%^Z%`(a@Og*%zX-)<wnTuwWHtOSU<8PWt>Z;>~%(ePe4Vy&XUZcf0
zvw-=kRp*-Oyte(xD`X#DRw;M@ECZRig)eTALa8kV63BHz0c_68G8bc2Q@3fL!OVC4
zvp4G-z}oCX_1hF|n+2-+vw7mnOF-KB{FpCmh!kIi66WSEfW6M(_8RO54=9KCr|(j@
zqo)R4&`1+{LSn4<g(x{`<|@&O=~9fUXz#9&4f{pGU(-}xg^dg9PBq7pc9gC!rQT-)
z3@+OT@yArp>MK$2sYFH(xy<7&N3y?4{@e&K$OfI}W$O2nCs$iUEM8ReSdu=C`<!o*
z{u{mzc3I9_ofOtn<vbvt!K0i9(xAwob4K#(pwY}UV{-_PfH!$THd4M_mq1iPX^+>-
z_0^G+suQ;?d2&MxE%)S#nVU#nbQ|7?p`Qk6k=ZsTP0dy3@x?*4PuSkeAT34*h`So>
z7e}Payk#UxTPkdiRoSgBhPf?$eEDWu-bK$hqU-}|dUhk5>r<&g+|Fy;rb4Ls#xm={
z-l!`Go!A0co8TOEP}2DHj5wmsRd{*tN$wJWZZ6_Uxwb-3Y(a<tQJ}i~mW4?jE&D5_
z*mFvk9l9bKxO|p`(JDfu0y84}PXx~!!hgN5x$_}_uN%PLk;jX2kAl99Qlwdl^FU!G
z_BggMu$p3ldbx*n;oZRdA(uw+jG)|xjz(@F3+oDlrddXDa<$<xMUw%nBZVFM?6+b5
z@-f(-BezqZ-$?!XV9$;mA2K4Y>bmOVSaOBB%{GBZe*U9IGE-8v9L>M%VYO%}eu7h9
z{-NA=$<B@C$PoSqP5^xs+gmZ?k1@f0SiQD#b_EAuz>v4yM~tuILLMk`Uy;q+W2GNk
z#?kBC$XU^sL1ugHehA*l`Faq;KOKFG7W{y%edvh3VtyiO7nn^`?mI%dAbYdBA<Zig
zgoK=aC`z|Qz3(k`xTmrK1Rnh+ECrB(7+^W`I2ZY_Sc~-&A6_H5QN^5l7ub(_v;=&G
zMa0$u8#xmF;Y8{v|3QAW{^rdiPjOfIj~EiguvrjccJek=u_9UyL(5Sj2P*ZRbk6K}
z%MhRIOb=zXB%Pl*LcJjjRpW03lm@9zz~_c0!bS170?(^v;85KVsnFgnqQE#9#i(p^
z>RD})%=wdSu-77v8LUAJ)WpBsi4C>+omPtS2Kuc+_Z{?J1X&l$7KI2atqOX=(0PiD
z1*~UzRK|x?fjV>}^03HfMW}hkc>LIP7|E6YoJU{&fcTPjg8Tq4Ty7-?UH_;jyG?v4
z7rsL^^A;3~>JtIsGhJ7|dzqKJmK$5Wn@UYJ`jmI{PX$)9Q-ZLYvvny@v<X$Hg6p3D
zKu^z*pfblQHlL`WfZFUeEo$(1T*vAyH{{6P46ZxpgL3c&uy<F{6f->0u-OEKw~R^*
zMBQfyB8V?+0xb^1QlyL(FaPtl@D~(%w<2Qdlb`1=#dJ#Z0##~lRH0N9(p#aC8rgf(
z!jX9$`j$wT57@ok06=P21Ah*54HaLzS;`N-?Ut)`b9EaaHlTqQXiim&Dv{Cb1vyd2
z98q@0x%uvQbqGJl1XE^)t@~dM1U|M&YUwnmYtW=1`g-qbBe)atA&@Vw4Sv%YzzyYE
zajY{*q2siR^dkb|OZrtLDLm4#QfdKm!DQc}EZhoG5#P4yJXqAl99Hf*b*isn6<8{)
z<FLT*7pP^i!&neuOs@l_2M;)#m&;Edkaph&5Xhe*Ej2WGyqd#bDN7FZ@h8WGeW0U~
z!8X!IN1TPUISxZMw+VWSPU+K4c0jY*A;F<jr#)SOQq8rq8il{pBHd}=Nj~0xJ{ZYZ
z3GAkpSU>SeqR)7%7qyT2lk-7h@2Aq<iq)Aws3smCHo{#43#SX^IU+eaG69E1l<n$b
zIm>7i6Miv|wKlHj>ZNT3@W%&?RWa*c+b1E-p6z)KoAu{El7<^!9THX>RI`xs)ycOg
zm;ZW+V<011`lP6<ZQ#4NL!SJ=&B<}+&V>j0c3Sxw3hf5!K$utxc9q3YwT(8!GAihO
z=9NE}<32lb^p|fRT{+QsBx<~60-FG!O25FiY8Nn+J*46A6sdV}50kKb-Sqse0Yo6C
zoMbsX%2-tjFK07^E0+SQ0{czph8ipGZnzV~UccZXU(|0#XA-=fh*%oSa<Riq044U>
z=F?VU{yD_m^vh+yG9+mXVmVy_b1<KIuw&=%_tC!VN8y{qz}=_HWp@cgJuH!Y1tF5n
zP25#ck7s*w+<F&4Quf3gpBJxtW`r*HV{G0CNlS+`*L^(imtuF&^on~JSWylz1lB`&
z-bSkw=TyK`U{7znI_St$i!9+s?KBcAMaf6?g^*q;>8-6dZ7d#N{duUGtfdPirK=zw
zR4!k=TUg(eVz#DCUMsps*Utxdz2yDpI67JxQTxO`1AD?W7?h6n3M_%Vn<@4Mmi}Ih
z6ErpyBYw4Ni${)njc{kssp-Ip*ChrW>mx|9M};>YTUI|V?+RToDi;23&YOpOfSBn7
zHsg{j=gN*j=@kc#c#kh14#I5Dv0YjFNQ0kluOg|l($3n{Z#Vx#*nfApv(TTMv`j2@
zyG#a_fB5l|OwA8tn;KsDDsYZJUK`sUKrW-(uRtT`{o_A~zIxv)&^vhsz~+TaK&JJf
z+Yy#|%2r$jZ~z!|23#O3FM){V8&$?bm6g9QZ0@IdCqN{s#jnk?Vl6lP4@T)g1*jq!
zAWRNO!e5ah8zak-Rx+-=*f)H&SyvH+kDq~Ad!fBfC!xkcS>?mt&1v9`aIvleXmZ28
zqK8w9#cm_*!zfwwWSjXlKII3Fd9r^Pb;Yar$jTKATKC$!7uBA5PvWzRW2g~=a`S{E
zW~Z+j1rmT~W?*{E3-yFGR}uEdRd~hzv+ODNBUZ-VpzW{Tdl3}2XO|xiEB1Gf;|O?D
zKayUZGl^+G<VAdfcOEEl33%V}7OxAYph)sBPW-C$SF*>nKhdKz>eZ92$isghG%j!K
z1c4GA<<@#XE?a{Nw-T{?bY2oL`d#Rk@a77BaP{aN>j38?16@dg?IkxhFHY?I3)9PS
z6l$%>{t<=g`QG*L`ca>`p%pG`vvAZK$KM|*|3d4JxPowo2ATGiAI6vYje2ATo%~0I
zelscl7qt}JAQMA%cZ;Ek@5OEPpC05_->~*^n`}*3#3#)PZM~6I%Vsg#at$)H0j1Rj
z!a$>%A6V!7E@rp@DynS)z}T?kzh1P5)Mc>}5C8l9GJn1Cv`o41*R=W#JA!}5lR3}A
zqfahZaxynahis64ed&Lpz-)l@WB*F8=ji|VqL1!%1B>FKw`RZCU%%_WnRD>{x00T!
z(vMvD`$zMCCYdiu;Avc$^2Z9#|G>Y2A7h^}U_ET~RC%KQ&%gLPHL?iMOkp?sr>y@u
z^CS2vhz!yB=jH$N>Hklc&p#LcKllDWkG_AN{Qo}g{{7X_e-6I?zvuqwCYPxUo1c2L
SDr*b)b@RIJHS87ZkpBgPU^g%T

literal 0
HcmV?d00001

diff --git a/docs/codeql/images/codeql-for-visual-studio-code/quick-query-tab-js.png b/docs/codeql/images/codeql-for-visual-studio-code/quick-query-tab-js.png
new file mode 100644
index 0000000000000000000000000000000000000000..4e066bfbf466eda121d67369216f7dee478390da
GIT binary patch
literal 83981
zcmeFYWmr|+7B&nB0@5I{=?-Z&(kU&ew3IYRcY}0ycZZ5dhm?dMxhd%oHr)-I{1#7m
z&U?=HoL}$HmuqveSnRduoMVhR=D5dw6Rx5pgYks;2^<_8hMcVAYdAP0S~xiPS(L}X
z9Z;hTG928KI!g%&6*&nBN)<;tGfQhzI5^qx<Wyv}#2MW82lu7C2(&@ebf@&P4DXXh
z9x=8?yp%-<!Zo5Sdz<<lUl)y<T1(@tx@3nsQ?-U<6(zzGtq~+`wF#FhxMwLBk3xU#
z3m&wdtczaEALI^Zr+Y!NvtaOfBTYsQ&sea;G8k2HSD?dD5iy1<IS9BTaFTB^QFQe~
z(#W1Zg~Luyzh^TRhReu0NK?GJx>&mZ#CV7V5`xR441&TyE!;uMG|=bDEPaS@>fxI%
zspb(3Fyc;U)C9^-pTsP_A(})|(eD<gNs3xw$eqvNe)Z{A(Bi;VlNXqq9pU1LnkWac
zN_yv`7_O2v78Mtt;7G3^&~!^j9Txd%+_?GT-mio8*AoX6la5aHOArs32C+*WHScnJ
zkJ{;2)dldn;6SUi;dUro;5cw|YQjFd@vEE8Zy<u>(%n)%xor}Wt`_vzG|;+}@U5wp
zD&gZn`+$*5nv=vn)J#M15Y0_=`7sHTDqLFfUC{bVGw4gzPSYz|c$sxkK_(W*keVPI
zG;=;0x(UC@9*L4vSqT#unxx2njYF%cm-4`+ZTpKDYa6rIX<w`l=4Wn@sL#tGQH<KQ
z-u|Ui<%*4i`dM3Sk#tHJ2{UM~eN3*R%2j4&6;@viS70P$8*)vtTZH&C93sH~=t5ln
z_GFr-3jy&_9FrEOhm60>SNCGcw6vr?6B>2;w~mrRCrt{>Xw1xT^j5A{FI&*kKT3r;
z_-draOki7~e@G;&`FcqWM|=#Y;=%E0d=3llIpO;&vmCXA=btlK7~YHDp_aYJRP(1F
zL6ZK4-ZzBF2hU4uEQ*cNDaNgZ;7*BJ1dpnPso{S{iS_jT-djROBxErpK7^RS#60*c
zq||Tf_IS?kZ4a?e1E~&iquz6Jz>8yJ7Km}n;*SNKQmOuUVkFKMNB9&jSZq{<Gzle~
zlBxE|EDF9@unLni_QwF<;9;@Uyd4z=XA0u?A^8m>3`9tYh63gAB;QWn5)6jiE_1kZ
zW}&bL)-3C~GwULxcJ==9yu|g!+Yh;3PCaCNk|)df_$7&Hh*7?fihmiA8p6wfH-Y^!
z_=Wwio|n<9F>hmjq&RzWh7&C{KB7<ynnm4<#FRN185pq|(HSY;q}lXzM!UlFgcA<9
zi^zXF!C68igN}?BEZ5D_yJ{H08Oq_3#++t5h;4=*`JJmWM9Zt3orgFxYN*4uW4~+C
zh}}rADscK0DQ0N|_&Yxo!9iD-o(-!3*$v$dekz!x)8|{_;Tw167G9CZ?45Ss2%)hn
z5NPuu<PZ<hBS54h9$WSoo(66`&NEcSpt&HbPQ+LK7P8LtAvlTQJK=QQ#4Gql6h~y?
zl4Df-aRG8K#sprYZXs?FTfRSyFPG(^@`^L=dwr~NY<Mhn>~k#mB-lvIp|D$pi%Ew`
zJ!v4RHwnv;o8O5)hSb3Jvu?U>t8VJN)ieK(%BHHRDm5RzPpD4JO=un?dOY&L@~F5W
zhH=5b$F0YOPq>lfgT;cmgIS-*;8!pUX?8OaGkP)|<2&IqKV@ge98=-e%Rr8nnUnog
zq?eB|TIDPu5SpXFo<~vIFfNnyG}$_dI!S{unJHU!+dPlxF*+tqa#gfL!f4lJQF;EL
z1_7g;M#ZcB*W{Y%g)1f0Dt($C)VDNXMg3}LuN7Y{<j>|^$zpsqD<CMZ*R^S%#jn$J
z+H}fVKU`mh@bho@3zXXykQd|>>gO+(h<wcduv|zrIbG<W4Naz(7*_;q*T|l<tXC2!
z4oJzDsTaA3?;xp$_nDP&$)~Xn;@G&@7}$I`7vFQ;LnV{Qw$H{8s1t~F4*$xsfVe=t
zV77oG%-V|N`RVlI8TlsOsrHrJRr8t7SuX}U1~mo`h?_`=SB-O($c#jT<Q()WN;f(M
zluWYlyob0ZN;T>N<d*i0zMfu=-ju#U(NI-THGfNFe7GsC3DZf+X<*|#BYtSwOxx_I
z*`syz6SxzMb&T~d8(Tw>=?%vEJ1t)b>Ips&Bokn<;<Mhe@M`gBx7Be~t!O7}FVvN2
zdFgzqv#s?tHhxD_Ib-JpNil2w=9*|zvqvcCB^a(3y-?Yj<CAr(f2~iDjo&@n`E~uh
zgT0&9j{W3vVPUp$2~@7PJ!>%QbykdkaIPJn0Y|&zU0zKLcnX&1)Q&bzH@s$^>Z@s^
zSz*<*gU74K+crnlU~X;f%5_b2UDq7k+}%3tGv768T-Ph5oKzZX-e%sMTA<me`C-b~
zj_g44;N1ZZg-$MMZe$ygf!`8YTPrCBW~}OW&{55W&fe6D@;TNS`<Wl^TU<(1i#KrW
zhdPx`;!7`XgA0N&{3+w`8o`IJ;tWTs^OgdtI>b9nJCr3@Bs79+L&jdDhLB^Bp*dmA
z5u9_(GwKpAl8Q%%MVCbo#hym7MD50A5Y`E7o7KLl<@n0^m=F)giP6kCeyTt(GQ`Nn
z_{7MIfP_uI>hcP=j_!l}Fl#Z}8k;bFXn16lAn`>y$q&|zm>#E<i=Nm+A@^nvc9`uA
z^<CvRZ52lMlwVmYX@^3i{0`<T_6b(69mbgRLo3xT>1TLhV#n?;-}Wyj*?oxrP-l5r
z+gJ;xmU<OYMyCh%k@75^R?A}8H&}19o~p(PZ(mh;oK(eE$e9?!Eo1YVW(#Y~pCz@t
zx*ThOCMEYxe&vhW0-NH#{vqaEQ!n%TguvnDHSRBC`gOiPzr8!(4z$X9eq@y~wOui!
zCs;ddz7T)bea5t7XHz+?(ztxv^CMcZiMVOU5!vq$mM@^prkpU<+-EuNPcbU`#Ls%k
zy43@+{sne(LxMzr^c^X;;jn)GvhTPwA-By&aeB6G$ad~-Z+fp_Pgqdbjg(1^agdF4
zzUi&G4^9nZ`{r#$adQRX+*68a#d+3+1p{1_u|^p?$hmN?eB#UIf%$=V7atE6THL%T
z{0ydi8*ZN?b7MXwy*#Zs-0(v7!JJGbNg~vI%Ut~|M?+ez{;u<?csp)3KS06&GZOQH
z0+oO4wW)!+i`wmG{kz6DZ-l*B&b4|SAkgUNX3vqWKy^qA-%z*03EO*aXPw6GO-`65
zKV*zwm0nDaZXfUDUnQT>V8~(IMvq2ko8Js`^YTCcd24nzw_G!8J}}IbJ?EO^E^=|x
zfHp%Y%^tzt_BF}fveLuyq-)?+>OnnXL#@G4yW`%+i=P9ZcPG)Nvc6=u?z`U(VoXMd
zWV-V1%vsNE+s-V0v}&;W(r)9|T-B9d_`%6{1I9L0A@3%1pxZjo<W=Kk=w`0$4ryJS
zUcB?V@q!$bF8ZBN?sRl_x%i~D-N+orMo@ebWxHRvyqNWEzH@q%^T<Z|MXnI(Dn{E4
z4Kx-a(WK0z9GPn={K?by>}I#}!oD|BiakU>!a%8||5|k!()uM@Klg56?@N7rS$sZk
z0`JnItw-tA{-Iaq#ZaMmVQlYM4}H&xXqhkHar{};nd)k(Io^OMR3z1#^KR_)=e^ZZ
zL#^FXw=SyNM|?4=M@q7AzxE8_7)Rko1mGyyGWI`|B4*rSrcoc}x_>>$!4-si<_V87
z08jag0M6@Wd<wylax@ZUSj1*FoV5)r3HbIv?TZN0ac>-Zf`HpV<@>g!=ac?^Kb$G<
z^%n25I*K$&4k0iDH!qZqlFS)fppLaR)siz)RD^p5T%*7t!V|+G0ax(Aw+KAR?`vsz
zMz}|R+(&?e3$=tp{OdhRz|V)TIN<x?nLmFb<RSe14kX&VM}J?#&py00Ekq*-_<?FK
ztL+2_M?m-R4KMea_7DzE3{Fl`T+JPRHyb(a>G#QyNLsms1O-HVN%27x#)ydb@ObN_
z9LC?WIP}mpyUX8R4lQSVN1r0)c-s?JMkL<HA9i@5<Mrvo)?RvcZ8Nxe$s=cBOGRDp
z*7ZW+Omjo+=d||;s|HazO4$2<e5t|tXW-kTlf6Kc6#K^)3p{GVSDgRxhG$Xl5&ND<
ze0~)E&m+mkO$bvWQ2*0Q#SoEJR)gprne0DKLo)BY#p6U${O>p9W#DO5n>ajY$Qvhw
z$6=&JaM_t;F4`_*`#p#UJtbD3&?9w+-*^7|q7PLzPGMNu>whfoSV1hnB**_F9}YJB
zKfL@`f$7tm7YhIP0Ke}5vk~Wlh^c4&qc_6D91(D76Kh7v|6v$lcz+?hILdVMyk|;(
z+u^?*N68O(tZ&95_J53&1FU-xtb)(*&pwIE0^GW4T`TiHMuGtAUI&#$;Qf<j;BjP?
z0P{KW%+maik<5X0pP;LK{~rNF%K(^<pJWf`pGW!u2G;HI_~Xj|aAv}T`Ld$V|Hr0S
zO$XNf|H9_~FL=aqP$!0+JpMiS9H~dDP36ZM9iZg{X*@O=>0ooENf@&rw9>F^P(#PY
zw4!-m0Bkmxmi4J-SYRhjRay9F%E^cXRysuFnq`AaU2F}9h}$A==4~LxU=#>E_*2tB
z&jWunUg~#XQz9cg7jWKeqz=7FPN?&}y)sKy*XX-4EmX=DIF|}dO*S1!QSawB@fx95
z%$P3!ep8UV*TkIr#{$G)I1gC@hM!~DXP)g-KT`!!0<FJEzd3(ZIJjAwtKF0zmhu>#
z=&fzj8i5X!PCg|qhD>l>_Zpb&K$c@aQ+*Z~A~Y^^)Q!iV`T^lt?6>Z4JjI2tE;fRV
zR#O!opJWdfTZcsNZ;TgxulJ(*ixhoV!WlANbvX43XR?3NY0z(rc+LMi2_VVlSqRZ?
zEi9Smwkn2Vk|_*j(8aI&-QPB(bD2hX?0jw*0xbD@#b&giX~sBKSaGU?galE}Jn0Cw
zVURXjC^MI1*0A7{VD}@A%J%t<Zku;gx}aMH>;%$2m}%E$Nw1tkx*y4=>%NRsV%QZj
zI)u720Zou+Q=DGcs9$i^8UJEnP;<5Ysaf&d>FRWAeJ!<@R`@~!OSs#*c2wH+9{8NN
zI8Eli=BrYMn8KoGM8K+><Z_mBtEZbCt(|L;0cv(TATPN&@Vh5rv&z3j;kH|xkBFbR
zxjtxz%%NJ>&zP+b3m$OS+Qo`oS)A-QAC#!`*t`q+k?lI$=e$2ZL+Uo~V7aDB{jV&?
z_(U96eE(M<)-#tn3&c9h@gB++m+gtZd9Q=kdMbRy#y<K?M2sS1#c1N^1<mDrO=~GS
zX+ykAgY&-EWM-W~sHm3PKR?-J0P$Bj^trr#_Faiyv#Z(8=jQYes`uQyi|)qdQ|rW5
z<v0;#Y<2><Sxa$LrE|vJ#ig(Mn=W=|X!y<*AHN!JsGEE<H<=9`_$z_rX`#%M-jp0^
zlI=BZ<bVOMgLSN{f}55@NR9*E59?YlcLrDOCAE-B2CJd?-`!q^_Iez&UUaVM61H7!
zGoJufNF#HbAH7++zs==8{y{SYm?*b;dbZ9gbI!JTC?Y<Rke%mZ$<MF<be8E~`BB6_
zfRGkM(;FU-Vtdej@1GBU4m_CYGNm_#PTCl&?X_2jQ9!-SOd}I>3W3zx%=M7^dCS@D
zMc^|J_EPv+i`>|^P|YLZI1R8ipcCI_>U11-<0*4!>N*s&3g*Y%f1dZbSTNff!yWx1
z6-gkjd?>BKQm*+W$8zCoa?@_L{E!qO#`BX6NbG>EFn{~q)y}k!Lq4=L+w~ozG#B|~
zqr*Y^5wuswFuAH2n;M61+5WhX0g0WBw<qOu^zTsrF7bAAB;Vr`OF{gOmLmR8e8Z!U
zd5(0I3$Am)Yq4a4Ji5a!hFfFBlg;t2r+}rb_nS7zow{*k5N+16j3d|EzMf6$C@!`6
z3>8R4mTQ`7kG`xzvMl^NEs539sT>BZa`uvv>65m=`Q04#+TS)Gw1GACJ(Bs?(~Qf@
z8jpJPtSwFhkkC500ke2FdiRpKJzk#44c#&DJ_=rr?N~s@5a_WLT@Hc{jpP%CTHXYs
z;<YIdk!%1-sID2+MjYD|Jv&iJU{u#>$X-;Z@n&3EbQT&+@|wlE4YsafL5pg%YMQE-
z^XnFNJityuTo9HQ<OuG03Po`c;rc7Q8O;!)Gr4)r0#Sn1c)ZScgO*m+ES(l)xVx`*
zzSs#$-ttISteIuz=38x6(jf%I41Z89rDyFYtQ5K0EG*hOZVDXMM`RXw1xl<eDA)M>
zrbH%|+-$O3`*Cc$f=%n$WR1ka4e&|$JV(kU7n40CcGk*~Bir5$u+2+gVR+>uVGQf7
z;;W;}p%k_S7Z_9LC7HHdMIAfmWrZ=%#xuFbt@2NQJ54=TtnY0Ul4lN(i7K>ReyZE-
z<@lV>Aaag<;Q~vKadcf>91!kz3XXXoQ7*!aOwt&&E>{zk2d%!e+VWEEn-Z@?ZLD4_
zDObZRwN`}FKb`G0*RTeV?<{wH!GJ*6Q=P~~yxoaDDzeup{8d#%WPfw$C9~Uax^GMJ
zTL@Tw-9K)D#nHwMJ>}HkHY^YG3#!9S|291dq}ZC<6JcUd^Nh_yNE&~VMX8g=!x+fn
zwoF*Kn6>(n+%Hc89hIS|+oKYoKQg)o(h0i9p@x&O^)=}FbPKQIYm8chzZ30t_fI5v
zP92&-QXbLU(?ky-cx{CJE|-x{fG3FQX@vG_$2*~XucD3h+?RuwT|0xJyYo&E#q^Ns
zE!}nZT2vr-qy|=D8@b8?As5VFT8su(GsZkHB+|h7BVb69LfGkH7uFp22O;^bsC9CG
zs*Pb!?UcP%six054fWse&!!Aa$>=}bO73QPANQqDL35YfmV82v=(4G<91RZY=WHK4
zkhAw!zi8Ie_lfvdNv)ihht#*f;1%QoY#tcpZj_D_Z0(+lMmnm}aFk6Ik~7yRbplK@
zbie@(C1)5&!=@q)pUWYF`;9aT)eEkzoom(vn;z>@$k&^Nv56t?Yy9@-Jq+1>ug~|4
z45Vcleiw1FvEP6odB<?}3;c}Z=z6f51DVubOpB->58SDj&8eV}b+*$`eKK(&B4KZG
zV-dxOy|l@))~KL@M~0Uv1Z=`)d<IZk4{uLFH&K00u5fz30XEH)u9ISOuF{<Ktf+}}
zlILz!ul3w_La7htU-VncM?yEKrG>o@q_&q?wB0KQ<OM`AHm**`l{3M^d|ljDlPvyd
z3fLkziFzCLf|$8BbM<wfFo?N12zBkne`H5Xmb^uYBHCE)S*|5%@dNUllzS|P7e86w
z2bNSXt1b*)^f?caF16kPGl~M*nrd(k(=NIDFL;U8rur#8H$4uyRq}cp&uPO@I^9_7
zm|~&d`{8G*n0Tml!@Hkj`k)>YXY#l{Hhkglql-pUkqTJ0+EfzUlsG&fEG|_nx$SPw
z6c%lx-YQ+I&vizh<hs(2p-~(lO&R(D2X+$QFi%~P`rAvWa>!$04`N<hYZT+eKg-?K
zP&jfs8FCNFL$X$(!*fqcY}J)s1nC>T-Aai)aSHce9j_CMnr1of4)a6F%_QC&t#{VQ
zr^vqTuA9o(d9+NEocxnbHktRQNKdi!s$(bda<eW&x1g^TP+wVJ>xjA^{;Es^PCy#n
z^Y7pmB4||KRTj+BJOB7|!=j^HdFZk{d+XCD2E%x9klXV)NDNGdq!1{mG<2I+6XZKv
zl-vt#e$9f=T>>>rt*m~by5GSzLOr;&`8M+c1C*8rx>)QxC2%?IfOC&0l+-Z{Us!MM
z-TGiUs*M1{>1fPLp2u$0+@!r8I%AK!BJmG?u<3o(ipM3F{QRr9X-eNK*u|t7FT+rb
z1U*)c_wh=u-<{<+H6w+mMIU&mE_V3c5Z~hUe)AW_fuo~y1=FTQ9beigcD7Ohv-)dn
zx+9@A{y8Uz@Mp&G!<b(pc8e{)n)f+Qwn}r&bXt!84NNduh~qk7$Uo<K{n2WgmMHMa
zH8hs#LqhO1pHlNT!45Ls`S|tDBqmksJD`H>Ugtaf_6Wnzp@&bbP<p}EjY?L4Ca8?%
zWW2oX>K!ia07A*_Lx9A=`vV5!J$)m3`77|z=yJjId|3Q&bM~6kFh4I3nQ5(+=1TT=
z`Bucfv9!Yirxoq3*0ts}AVH&lmwn+5qJV&=o_yhy<Ymwr&KBhDV2-IG<3#+pHD20W
zj+)yycKKp0jnlYOD2N;iABLk8rLv07`INmENEK6)s1QX4*|8i-UE=HWIlDcE#FX8y
zI~A^=s;!oj;hN>2t`Z^lZ-0e;!Xn`rocGwsHe_=5qke<avC^%qiG@p5AaEeH5lv)v
zxAdZ#+dV>n6PF4ve>Yb2uCj?<A?@v3X%vBtr6#A1AS0jU)E&u72Q_QjK#GXnm^H#~
zzKDI1#_f-vaQ7dHX6p=}Exwf5b?xo%Wq|ww>~5R;9XKv}xz>GUiWGU!UyH<i;`)uo
zJ|g=EV9vNk3wc)5aHjfgjnP?}8eFx5YC#kXB!#aci~Aw+8uPgW@^`a!n&f^*D^k`k
zE$?7IEA();leq$2|H_48@OWY^D-GOpq71&Ko)KY63O@pt`!*uuD_8{Bvl+<dys09u
z1eUQO{d_0mH^8}!DtFlPJ*_ScYAoz^UW>O~slZspE?tcw5hg)OBLoBTG5ZYB%|%x)
z&K5R%Hc=nv;ad}he(SyRn&BtC7LqMz-(@xF4F{dp2OU1SX2~^FcVP-PN->j%FfRs(
zRuoZGC~j7QdxV^gisnKHbDNdiCF+3+c8}{$QnUf6xjUbu;~}9XZ3#J~3ytu0mg<EG
zULZm}N~(1aSo`-UJ|qew?imSmnEp;W)GC9BPi7?&$n81}bvIo~^7QUZs3t~_Cv}}L
zn!}~7dDdej4ji&LIWCbYyonl^4d({aYdT%byl+m&Czid@D-H%*zcsr2b#|;u|2pc;
zMUkjSwNW$+vb?66>l=F&LQ$Q~qUW;cYewn3H*H>8jx#UvE(vsd3I=V60$8U@C<-HO
zkX|XvB8#{1K&k;K#X@u5_w~ef4-BD}D16+AQc|NA>`0^h4yqv+Jdr3|;JE<t`VRxq
zc;K2T9{4zT(Hq6a9Z7l)9Vo<~yDhkArZLzq$IFmcC1zB{+B-zWXuOz71W9Z+ZsIJR
zj1!WerpJH{YE94;&24w(V-y){D27QDy9B6d^XG`D7Kl9T+HYN(vvw)+_uVsaZTIGY
z>YucNYtcwMWv4YbZjb(*0=;XhdZ@yMlfpjpi+ansuW>dZ94bFtOSqHu|L$N=zI-@C
zL1434Y>O$lNR77gGvJpZ^!)Ra6Y5``Aql}+u&u%Y1xe_!awY*q0sc^;^@5+cmfJ!#
zlANTxd5ziUr{D#izbtE_{9fBVG1%a`c*Q?ONuVch(6vS6-u=z6DEx(2gi5fv0hclQ
z3v=V%7?()1(rk^0vbIvAG)k?*R)X8~+H~(8)a16bt<GkqK#o-f>qJE!)Wqg893EYt
zv!BJ?vh`R*9N%i+{fzitw4MrW5eGSOs?YUd1P7W^K=lQT3!b7c26gnNi!#OH`86rU
z;O9oEYNx=mhbjuM8<u=)7Rx>yQ{Pd^UUh9zCVX{ZMU}r0=1oja2CN0QKRiQNok+$$
zwO4DE4xi)I84c<?e1Vb_)f?XEb-5f$a<4yhme$YyHzHAKMR{6F+1Drmpr0n2_nddi
zA3;c4#dZr{)j3Lr2s;$!>}Eaz&p`uk=rC@Ec;>i^OR4lRhKZaQRd=So*rk0BMhPb2
z(tYbl)~zN)$Ft-O7Hn)o15ry_EcqbM;vV(n=kMzC9g4lhcKo|v`4sFwXWRO7el1!m
zZL5hzx0Yj^g{Sr8t4<?_i!TG)(cEq<{5FJWFEZNK^oG05V$16i=0WoOok<P2Hqr|1
za;^A{YbS{%_M-*#MF0{M<MS3mow=$Mv=`lggRxwgHoLMyD5zC!y}M;I?blv_Lo=s<
zYN1P&V1OUnM8@zNw>!4-9B%8<Mbnv717FKTY=Q$xb;SDWC{A`ubDZ-bibP6G3XyrU
zLXox&<B!#jtqtB)nIqT7+}*N5VyFiUvp*<yQb0q?y$W-KZ9c2<G9`3BQp|nS>wg0n
z2V6!A@dWr9%iYmK{{2Sdy>DAi8!4EjJzj4^$vo$n57#s4jA)rr(kkGGqY_f}T${-J
z`sh#ZI8UJYp(&>o<G(JDbuSX=^k{D)Mi`>>P1-L+ElapuDc_ATM_<54w*rOO-1;Se
zzjrAQx%ZX%O)Cv=m@cZ1&*u)3UVU_p{Ij$aTgDT^W|4o&5?f<2lIPEwQZK<J5$3e$
z5Vf_b1C)k)&k)i@d1~b)yn3RgWKqg<dkCND^*)1PhjK6!%p`N)y^=}205B|X^KNyd
zVIy2;GCy)>dtuEBC{C||fHd-l8npn*#UQ1|Q-&9o)0O!)5EbcaS3D@&*O^Modp;+y
zYmF~ZJP^}I%1wDM^O70H4m;34={(#l3d~AxuIeTC8XN&-#jJVS!7f7CwMw0K6~^o#
z^Tf_5rw2<*Pg-S29V9!gXHj}3LeQ(A&12`LeAGQ}Toym2lgeBEZX$i;_0I_QzT)=G
z@jjN*ks_|y$a0FYLAi=P-mBj+4d%xkjoi6#r7;sZ{^4isdz|GoJQMOb+lmP61fA4z
z1Dj{Nm=Qe=oH7)cERb@lfyM|T_KMJvf}_0AV{))az-Hz6yi8UA+~xpMa$G+AFu$Ik
zPu~CnSmvt=TMJr$jekb0(`(RQDPH9VqOR5#k^_#4iXcJ3e0JidWl4sX&6Oxj>8Z!*
z+?KCj;4(OJ!AIpTd9WlvqB+y!IJNSPlav(v24(%|w_bImWh8k4fOqcD;ut*F%)To%
zz+#o1kDm1zKt{Gz6AUd`oLc~&>T4*Rp0|ZoGDy8YNFiUX`9<H>=}m5>Balz(r9^L4
z9EHG^kwywnR;SoA*uUoNw63+tS?<t7@rBJwcIJ)enZx3pQS94s6Ud(zI4B99shvEa
z+<lnWqgQEtsV4tAu;Nht6KpRO9M$Y+rwsgP()6kWsaA=<d`nao>5FjW-X%)>5nURX
z+VLa4@a4}KavdQ8&$HRdVMLFKS2DBQ-0Pd!7kdEY27l;TYr4Bi1`Axlv`QR!-c9Uv
zh@G}ex&`l?a-9&GN98&n_XT$8DY*+>%sZ7M!y6+XZL}8!g$E)D5i`;Z^UPV-h%vT4
zw@qE(aX(}-BvKoboTd6Ji{VTDN*Y&s-s*J_cRpHyPM-(kljf6aet%CVX=1!?GD~2d
z<52?QG?ILQBSYa+I|H;xx@-<wPLvu45!x4sMlpiquc`V`Vm7kfauy(>OND^9S_nA(
zCT%CvWxG**ojnEYgwG98A~p3~lJ$CYARc2d1e{JBX^S&xtf=id(B;{2=nG;CS~N4R
zEj&CfVwL9O>W#+q=qjJ{oo-}@6Y!5QzNVV4V0$Qdw-#HQb)Mgu@cAO5>qiES$h5Mg
zXZ421rs_J%@zIyzy})@o4s!E4UhS**`7SKZP>Yuxib0aXp@2!Y6iV({X5%zQe_~Fs
zLF?Gmfc;~^q40$(3S%#l(5ohjGz%0Sci|FZl0;Ybn#@>I{xK!SZWgE{jZ|(p>8Ik|
z-)>b;6YD@rs4NwqD^<>Y%aW<5(CT?+O*8AkPT4t%A{A8xk8eJR0t0#?>8%%w%;<LK
z-(}5IythA;2I&8al{a-`CoFbFB(aDZ%`;oy)im&VZW;UB^in_D!SuTgRLX2~Byw+B
zSnsQIJ-aNMGgC&JboAJ81+zv{3z5|LJH5XS?I-DC3+me$R~Xx+dQxVOhC_vKPscUl
zidclc9a4I)r<?C?eDi-K;XgpOQ=F>r7<qmI^m@3n1zf5JYMF^_k*Ff<w*oN*7*Atp
z{n>|MHHz2d9z`@PM58$3=>9Q|sIBznqz)6gwB|s!%A{(2TU@4uLSr!KrMoJ102dE+
z?=Vj%LPx|o$ffXeup61-NLZo*_d_SUaeJC4gB^~#<*T6!w(<Q*?mdy2U5U;2A}04O
zeq$ZAGE;Z57hjLICCX_BiP&FuE1CtnZYYP=kzC+HG<aVXh$c1(Dpe~7X&O8=Npa*g
zZWwsvg=iI3X&+>>1UT)+D(fZfX>95iSN^86H#mmBvw%H~fjM%=aZHXun<|l$Eqzrw
zz=Z3~EZg75G&Y?|p+soRk*&*U5>lm7V1r_&O8{Zu^UvR8zMKK*Cc*P@k9vBJr{^)q
z4TlrQ4!%8~Jhc?No~pavW^VGKi>qNiTiYJsl>3gYY1L@XDyGbHR7yhPAnHX~&Gw(v
zor)0964ut`NH!&~;srYiBp0y8ec{juVqHQT6BR)~CyTnFD&dDnr9QTkpnoK1RuPym
zJmGquITBn8puNwAjw0w)BNV<NHeu<$o8Y;E^G-B&Er+nZ2`q;sS3Gi;yCBBhi`HkB
zqK$n=)2ZQ9hphm{s@KC$g?Ok`9{??GIc(5OPt?%$ZVgssF}m~wMd4=x{7Y=LEp&YV
zcfVY7A^GKVwN;w=&?{GL^}47xCa(_2OSAp)yc3+b%r^&gl;x!+zU3bAbME8u9>ouI
znb%(sTqK>Ce3#%Ms~Qot{W@@H*hpJpNiS{ApLk6vdkrlxdo8Uy`_*OVyUire-(73}
zXD{+<b@bqKiK10s6j+9FZlMWJSPyg`3ed7-Iz(NvJmyR|DeTRFU)Z|cuv_Uq_?-8W
z20!)@A9e=oU!4|zBZhBw;1_Sc`oVB%mZgcd0W6zJS$;?&pN;)2TXwz2^;8=g9*S(F
zmee61pPrtMLma6T66i)8@}2;nW+vu>Y6WCN)V|QgWy-}voAYiMyGK`8^sdqQ6q!7w
z;?5oY%0myd<xSnPj3JBid|;R_78Q>^tp*}8XA?md8Q1p;8|}8mBu&KUD~Q`dC5<-*
z^%W<Ig?o~;hblP&qv4KHR1t@06d5O2@5CIZ6oZ(z1)|8i@H7Wmzs><@XsvatRJeI~
z$i6mc(E;Pr^!45jb-x(h`6lvr4F`~Hv@|Me<OzLBFXnz9#f~&8vg8R(*>ZP|G>AAK
z2d2Zqbe(VbtHMVt5$jAQOB6{+coZy-*xPRsShRcQP?eWFcRqhc3E~L3)MT9etiwC!
zzl|tqcI;|w4i@j<`O=<K`>`_kxkt8rCbz>NW@lGAjD+fG?2I=EkMcErZY4b_SqJy9
zY+ys4sEC=aK>eDd9UXJcN1N186ZPf-0gAsIDod;K)L52YL)+?i0;E>CL%c~Z;?JPC
z(w%IK42y$3rCyl9eJ!6POZ8^L3zA!2!UAbl7QN*zRqce1d-$xYsnCKACsCrOfzu;Z
zEy_fcJYdTcb=}d<f#u(f@>CEYD!=<8sr&s7rYBUt%xu=*nxZD)zs^Sx4I^Plba+;1
zI1{YvVm4qFHS!2cXyl>iT>lXr&v~mjHASb+#V(oT4L-}?yI&;_;9?0jgJ0GC2HZ~~
z-)DB4-QB=EG9^nZhdKP}4A*x<Fi2(*P<7Y|XlQ+>D-D;4vL;9z9Pe*0*r!xSTGcDu
z)f<18sPMRPl-lnJrPOi%W?dPD5Ta(L%e8A9v$cv2hXtC6pTC><(a2$KR?9}PGhJ1f
zZAom1OO?>)5F@b72sZACauh~d&{>Pn4F0R$e2?;!5?=A0>c4%ge*}G=oXxY0#u$K(
zj*ECtUneIebNx37bBQ{^a;G{1`X7|-Q?v(zIu@%b|83B}=lh$oFGF}x82Cq)ss6t8
zpBMf{RFvY?S`|s#|Hj4qD;WMrfa>o7a`>4&j?0t(_`|<`RbhE>#6a?E;ol+u+arIk
z=?OMqSR}RrrQdRf-)!gK7ZJh0NJdSsKbHROj(@d+|GJ|F5Af!nzDZ3m{iAKfsvbsS
z(R_LK^uJ8<*ZTdRi2)2feq)#b(mz^{kpLJea_!}ZoPVwJKeQYwNGP&#<p_kYO8?^z
z|Mu(m7r;nWx=cS+|3>70ulBcvKEeU6RR2Z2{q*;(|GWTbIoUXt6y{>jf9sC_pGFeH
zrvzO2L{~C9;Q#!?zuEBrTF|I8Yd!n;pL0>eLXb~ksUT<gSo4?V{olP5BTx8w+PPEv
z&w;`9U_|t7fs%imwwmgL)3<`BEPrpP|Mb3?>4Vcj6D|t>=+Lr~hwU(q_GO&lALF9`
z!G>IAJ8A#yb45T#QeHx+U&{J-8u~YH|M^(5IN)<rl_}1DUUbGono(qLQPTOZu*h>q
zo%pE!$({L22C!T;FNC^J!tn6_xpRRf_)}Ak)LN=K0d0s(pvRo%0PRT!&U#+U&({|R
zc9)p|OXP9bfjqQ3Q<GTo6Z63^Wfp)Xng7f>|21t8t`<PE4go3#1!zyS%`iT*MiEOs
zpg1T|%;Y(@1E3x^p`LR*Y_DPI_4=sNAD_qghfX2wN~gTwT><pBSJa68>EsDCXRF4A
z?e}KsZp#KzSmk-;C$|83#Pgc_yX(xgfz(U@bW9AUgBf<Jb$c*)=SQqtj(S|r`WSM#
z?{7|G=hSU;0fE!=2dRK?tfQbT625MYnWED-c;qyI6ina9@fyAXXeWH<)m^L_fFILg
zF9AxR%<7=P-Pi<urJP*Xz1iYaK6-peC(!66swu7HJ=<THqwH=0Ca|9Ew%FHH?ah0-
zHQt+Y0(9{*nN&+wbxWR<ks`nvQ}AI?Q)REZZgvdrxkzkk<6!{dIK<j8Z&ad`{f1ts
z4SZC#J6aez6w0V=twFwY4{N;p-t+1V-~R=T%2+jf?VArGNaF7)T3yAvk}19doU^)Y
z_A_W2zN3*q*dKu|)`N(xa&^9E1yJ|Q<9Xtby3kNVII7)`j2^oA89)bShRs~p9R$J@
z*rdEBk*$89D&_$~+;o-Ei+5ugv2P>SZ;?f}v2s@dR6?0#cd_8c3t#}QPvzAS%Wn7*
zH(7v8;z3_A2y{hswpO%4N=*}ip5nRL$q;YDK#Q({V;|kjQ&mHcw~#t5ppx8ey$0wf
z&1V<utZ&jXZCmMfPI5*4+GhNIwP|mBiHbtOY~HKS6h0;Q+BIwk6R>E-sj5$Eo0DB<
zOH%pW!AcSPvMe-g*LA;`N{K=z2ss^lqCo4_18g<fid)#LBCY#hcLssZv)##wFR#b(
zs&h4gLdNms9pvna5S>(A5-}o8OdKsC)As8Je%NZF(a{PSr`@8^$phG8$o1~O0iLbe
zx`}4hsej=0gBNOnp8T8my$}*x?gw%^cQDIi9aK-1TUiyAY}i%70r00zFFuYd39@eD
zA6WAdoG-ZH4FQ1ZT`KgB%yl~73|J1@`1qky&j6vQ$f?2!F4$!|*H&{3vQt4~2%Pdy
zQ)JozWXWgg>H2F@)a1uji9{&ogUDn#5`7VWyhM=~kaft|lP@Jdg93CuV;!q)7q9{C
z_S>%agY;&|!TH#q|J)L4Ob8^_mHzzOWrYg!?{85OQIY`Q9=$bFV}3Yy9tXQQft+~W
zwee=QXH5mJHdO+OpWqyw(Sl{5?f};Sk^UzBVm;Fi(|4*=DiQzGvq~2kIsWSI50S+K
z<86++6PA!{${bL?S`a+r#-XXU;Vc4sIwzb6anjUYQ_d^Mb!geG0=5C44d>XaJk<#A
zAa9y?1euf{%xCoEd?LhtQmc#vm;n1rf|C_fP#^BpnsUYG4o0}1VO1dqN~i_qK$oQ1
z?&~9AXQ>tkhy&_y$G(#ZejN&ru@z*O*Rfk*eR?|G*72AO!$pZF?GSh@-G1I8JqmxU
z&Btq85Jk9Yt0Z$Ml)`rtQ**n<X=B(d`uU{nbQ|EG;-|Da4YsCTa0R`^*pgk(r*vr!
zr5mS(0Qrb`*~AH|Y44hx>|r~8{~>Ft@zt7z_8&PjZyWm?+WxmkSm=Hd9ylF36zo_6
zn<%1CUc7^+cbLMbDs%9uvGxiwN22$zSd5vHN2lQoIrf=o=ZPw2ov*Vy!ed?wfOmd=
zGWS?!4H>=TKN$oE)^{te14gpfesYI*Fbq`QnJKI~v%@n1U+h)H1t2of#HKN#ckawN
zPVAz<`;%Y0<mCE$9q2LjR+I-0XFMNRWPXs#zyMlZp<*#U*@axdb{V(qhk4e4ElW1X
z9-oozCQi#n<WR)Xb^A2Yr#5O85aN?Jaf66I=rf(4cZC|@aaTfKW&pJL=a+js6PAyz
zxe^cbQ^{O6$=YOL$O~3qgol96!-n0<ue(#>gly*S{8^scOdV*`hPJ97An=bKC(ZW6
z5<#;#2Hs>Xw{D?Dk^-z#aY!8hM*a(7Op(jCCxBjHgHE!TD+c7YKTH3|A*Movc=_3A
zSNft^Mhl#8wlCHH6PNvtN+KlfL0+cl%%POVk*_9@Dl!fM#BOh>n8v-6<H_w_8${81
z28D%eYGu0jppy$t-<6y+`wnvUPRIP{FLUDQl{ArJWaE*jB;t20!lyghUK4tdRu~CJ
z7kqvIww9NP;bI;*BVc`f6U`Kz@}+xbh?qQZhB_ejKc)5Hr1a+9mLk&B`e@@Ws3KkK
zko8R2dCBko+JHG|nMqc8BZS2DiGieSWJCAe^?^B%mX0hm1Z&dR>zfd{e^`=U>EpLt
z0tDtZTllRIaH4d&2w{@@UdG#J2Z!S^(3b<9u3^+2+hVVaeM__ipo<wc6w*KkdkhF<
zJfBy_d%Eq-KHqZLn)je_`w;{YzL@WdB685{<k4`?cVc%b$Ln$FKq4e2<Qcxy2C#Xx
zX7-wnU2AkvaTNA@8S-#H!$YsrV~@et$s>>ds7d?_XvIni+Z~9g%>Gbk{Rk_?gBo)3
ziISP4q=k~Xrjf0-Q!8gJSqPn9Uf*6UeU>qjBF{DM7zA~)l6$nYNJXcs16^Z%X36T<
z^NAS2eG7fyxV9K;DW@UE>+7uZ$1v71GeQ@v0rKpup$AtsUyv*5-iv*_7BP?$HyKpF
z;3Va6)xZ}<XJ;((I(E*kec?ftRs!@$&#yR=l%$9u>L=?%s^pF{q633bTj19veZ5L8
zS+Fjv#P$~)`<gx1tG=e4MY@aH$37yp>02s!fgu-hjT?eXz0Pau>rT7dar+Dxd=OzA
zOZ)y)L52lrck!nm=JRfE!avDZ+sv%XYv`LED`_y)gN0Bp;9qbqL4!?_VGF5y2L(`>
zAcV8h@fzw}RyS`S4MhagCkgH=qbI(Aera}QtGZ*P;b6GFYLIf<Z87~e?=X?!p7e>m
zl32_3M`p!l*S*enXM1z(8gbp=(U}A~`SOu<$zDL6Mu(EXodJ_K<33kKtsS(O0V){|
zK}#GgPU5FQOr_w*Ma=J|dja`j0Q>utNvm#~(s&9@EFp1A6~Swu@4JT{Ti)Dpx*&4V
zhZb(9EPUq7C|!Mf)JwrjCg{rXpvdU+J{p7cI%<3CUU`#`Cx7@8jQOw7i!qed00Oq9
zUmwy2-Qm0O9@J>H)CldZC_($C*(&>rJTu*96avl`<%})>Q$ifV-vOK;E%xg>HVq4t
zF%3UlxBV}Q?OMXf9J+B_2Q4>-`g|qTwg;#EgXBxClKgv1No<2tEzML|2V^1c8AJ$A
z5Gn-k8(WrquRnXNC2Mw8(Kjr5?jVZe`ll|rBQ`~{xA9e=G?P_f-=#ht#eY@!xylWj
zSb=y+7D5!^0QKSO;WZ3$4jY3Pw*Mt2;q}Bg>u|X%bZ*4SEbTiZv;&!<cHpjE&voWI
z<{Gpia9SCp+iS8ySOejLg$tH2ClbCn9-Ybf#NQEcXhUxyMhd8i2pw5@_HI}aMsN1L
z4&>7BQgi({84wFBJwRmVwf8qWUEn}uD2ZK*AzS;6qt_<DPz}al>}+>bDhSa4o4nO$
zeZloU(F+kuz5#QRPUq7a5h3HTPMah3b!^|So6^_F!{U967B(H^Vg8I%m0%c?=zvtA
zt()J>I0_Wj+jyYX;nT%00u+e;C*P3H=ZP@;qZ1(xPtN#z!0sb?;si(q0CVoJ4i56u
zCa;($@lNd;xEERXigF`DeA%*D)p&5yC}2|axh2;@Af97`Bf*kPPefCx1g3Xo?QtTa
z&`ZVRdAb>NVW-KXB!fN^z^VHLLfJDyW9oB%0gyDVmzPvqLhM<*?ZTr=4m$P`es?};
zJ2kqXC7=BXu3J4xntb7)R-g_&Z-|hC&0p|j4D&8|tFl3=Kh=nQ!t&2B&EDP|h0H$Q
z2c%+Ft*8AjDHfJWAxauiS-f_>9C+(#oBLT)>|ZS`I?+ckNO&q+Ge-k>fttb|Z!szt
zAbc8?4g}c=U|fh=_q~THI<|@yVY_uxFO|C#Vz%0g;vqibG6T~<HQA+j!*NAk$X%Pw
zM@;{OpnzTR5%Rw3w$w@la|OERd2EB<gSs$R_|sZHpP2@}I{lxy><N_^a@n=;I?@Wz
zjbb}#Je>e5k@nbqx%WEgcf7VP_#uio$aiwmQ_O!hp(@{c^BNQO2C)W|3#5P7mG_O+
zg>z*WK$%M(5$}Eq2nM{LzTjquS_l^U1isfui3Wk`Pj8HM<qU$HHnv5ez$eZF0+$En
zAA8m-&IE4vH)M`Ks3sqcLb|G%(UyZj!?yxWwQSM3i+j+-)QYm{wR32PXFpSE(8}kz
zVFvbgAU`Yba`MLl!p1(Om(YzqR}dDj5Z%`0{z7xZ(VX>6iZ%-jdkZMXN!lj9dY%m0
zFL)~(+`ma2uKRSmF}4=#D}D0S1(<QEO|%#;!wBVjN>aeeeap978__yuKWGi2Bx#2<
zqPj`K!&|*M6O20%mZKfsF7P)gYce$KivXcKzUP#C*LLg~lTI}5kyC#{`truOW_M8?
zJ29d4;L?N0Hz54YywA!xl_Z7l<udBhcZZFgu?=WVOOC_-D*+`Adj6pv-8S2Wuit%_
zignEDTYS#@a!f@P1qLdHy;Hdi0swtStXIH+!+xMbo81YFMRU@PVk39xpuo?@BGqAu
zpEH50>ew?y{^ivDwq%~GHiJACDOH<!7AGxsK}=oWtN!sSK)Kt2$*l~%T)J=T!G4xx
z2bJ+1E22Pvw6htGa<h43^#W*cMjt=*SF)!5bAWmK<Y4&I`xRAI3<x|)*SF;a9AhXa
zCkd<b-{+9=#@^oXDI0dC1p@`kKpO|P{&<rU;g0rJ0ucAeW`GtOkaMr<qC9t$R>p4a
z8%!AL=AM2J-<*0}PAcl_{malXV8BembH5Sl%B<#le@pv-i)Qu9)$|G3z{_kw!@V<r
zcKdCY;&dv+xQ9%B?$4%4MCAMXfQ&x$5p?7gdh3qF+;qu-@fbjsO@i6ONo19-q$Kp!
zJ$%V|T=6rdTp)Qq6sWzGwefu$lm+){D}_1-4x?73gvgx8lZ&LX6sI;TonIj5+oZ25
zx}vu{ixEDbR(bj>c&#v2q<Z7UT<AH`Mr7#I7mBsU3640}974qHfC`$#cCW>AH-`3}
zh#2J+TH)tT;rE1eD;(^qC<$R%?)mzF$TXjjsQ{0hpUCDVeOCT(Q1KCNxF(8A&&fJq
ztC}sx+YLmt&IU{H>m>jO@=qBJ42rt+KLx*?T6kR|f6*qdEjy@`V`Jv-)^pqQydWCg
zxFxAc^w}8pO(S7b8<BqBM7WCNwxo}H%m={(bQIVJYXBTJEH)K&fMdOcvM~c1xtiEP
z2S0yCU!cwox#J&`b=}5H8F*-Ui1vE3+qW7<y1kpQ!oaeb%I{FYFvV#2RwvHg(dZYB
z4iz}Q?Wq~MPQABPBOfd<UB3oxT<-wfan+K%x2Wk(m7>V;iH|oRY<^>B?8o<c)1&({
zA+=o_bm5x!0xml}tF#%}g7A<fKE#VAy|hJe$y;Q=+fQxM&7i(LGUickP`k1BMIPEw
zc1TRX+O>9l@U}r6jY<h6DvoVE4vjQo!79iyGU4=U40}U{jB|_-<wOw%z*|LZTAh09
zc>6Hnb0X}D@#$6MY<6a1w2Ec<*q0)Ra-R3MsgE|oVF1dXqmX<SK*%5(WBU9Kbu_Hz
zfxNYBd?MWB`z1uMG#sxT%lAgUCppUMuw&&rp#jTJC&|K~_Wgwh9)>LYmTYX~FVP=V
z6Jsv|-@h!=$nv>4VmL>O_JIkR%~#bb{)tN(Q5r+o>xNC{8GMzGVmkVF=oSdbZzRe(
z1yLnrzXD2n>om?C?&;nbAhFYU_;(k+=gd=eSzWP|lgSy#WeFOk4})!V*3C$HvFb@2
zx&+X+pP1IkjWH1($V@%XUw|sl2k?avQnSYt<!9SZ=^b@lj-bBedq>}+HAS@73|K?Z
z1RgI0wroo7kZ}FzfYME|EcRiY!t+YaXMnn(hP`Uvvx_*Nib9$MMOh9}cQ#KKOFwB~
z&H`C81cs;1Isedm$JTgs^q$aM$e4NTFv^8oD~Q5ziBAH(G!Vd>F9mi0S$F#DxbBk(
z9=?!i<uDJnizoVu!}4ivOp?y~Ht6iU`|5~v7cDbn9#@)+5KalMMnf*_+roe%yc9k%
zGYz%@VE^OMFQ-d|Ifl3ui#mtS>Eq<WJbQ3@HxawA$B0t87SPgjkYPXk_UfkI7-qT&
z2pFOmD^ER%Z$RtaAkFdI{&47(<<ho;g9r*i>N??^vBSDPxn<E@|09&_5BC6^qv&2S
z-{vhkP@(Ii!H)2JTv!kBv(*<eLt*&-Crc0iy%OM%jM-qc`cw11S@*l_HY5$Rt*Iw?
zZnAjb<$>H&p9?xAtPJquh!S2dP2(G?C4J8iMZMQR@qraP;OnO#FX|&OAh<gsXt8-C
zXe|lzxH{V*saV06Q+~XTr3FDtSb}o{0jgVZK@DWlJO^nA?qVr-_2yn*sCp0Q$t%0$
zKZ*J{KZIfCkOVN!4_zW+*d`H+vQsBR@3&8^!-<IwtT>&QPRrpAF4RG3=g88t3g2aq
zo9fYQG8O23saWRI*%6y<X1u98joi7fjEa~e38jQya<-pL?rkKV{BWkXsc1rDkkAS+
zo$#)|!{)0{l=b9Qs?SX&<m~BNWheCSV+Y&v6PppG(o@V~S31H5>M{4p3y1arX`zt7
zVff|;S&6)!vT*?XsBVuqa~wuFi7pGL4<6>YP!lgo00g(o@I{0u!7V_NB^_dl3m>LM
zdG#dx<V@UKyCtPLr<pZ!IKXpPGz!}=4L@}*X}l2eMfT<#Bfz~eE}t<u;9*mg^46FD
z>*s8|4r@U*bz8c3fB$uuKKBt+9Y{(wS^YG%LOE;wSNj8NZlmVCm$eQMe9L1P%XROB
z;~8~aN@$S;m*rRy<;|}*PCze;{w!(tr<INqP*TtO7am0o7CG$3ByN>Djl03_uB<Y2
zYK1G<)Y7AaoH59~s~42ZLcrbidahd(=<e51b4fopT<6YS{*alj0~5M-d?hhi+Kaq?
z5XbMCZO6*20sq&9>#5C^kMT(RI?yR`*iNBlfB5IERx{MT!XaNqSp=4}jK$s$G;fe<
zbm|+(k$e}J+<wH32V&PGTs3hmFc|0pMZ*Uj#mgwCct|fN9%cdl-_Y=v8^`fVVg<jU
z|Ebd9OJ2K@t(y^1A=pY(ANaM$+c;zhGeiHVxaX43#dm!5bsh%yW5Mij<lF<fjM!9{
z*~i0$k)|8bxWe!kE1QuJU*eXIF%WqV1lsa>`f;F1ud4^jD>vz~)*S`uG82TS70B#g
zP+qsa-8x={;!%MPWP=!}-BtjA=s?;YHQ9kEYpVDTS{lnn!+juXzqGl|HN~&#wg8>=
zuYl_|F<^0>8-OMX@cV}e&@~T#0TjahT~M1HL?J{gA&>(~7_q+X-DUmgZ8`MAdJEFR
z1;vuNcWyUmNwkkTVP&ke=5s-gagcORyA<g~S3T;KD<BM|Q4u^a9cESc6nJ~+{#kZl
z3OrmSg7O0WNUTvr!uyiECOr$U9dEUFoC2PZ0WYLi_8|}4-$MBM`*s0^rCj}ht@4Go
z8Ln^vd?ILx4t+|@tAwll+M6x?j_qnA<s&%68RnUCYy7Us6X%C)93n<ESh5dbg+C=R
zhR+GJt=-tKfYLuAQ|G1?wp!ga5(Aw<#{j~ZzF5+;C~)VX6Amqopx&d-<lJ2??pas?
zB`s|_OceW64BL_0an;6<?@g%^9kjUdCTeRLE!0}s)my&|n<?@6)ls?gVset)<`2VA
zvTaOLseXI9>TiToK<^ne^XB{=TQ5tqbMc?8eMV;lXAAy98n$eE;jwG>j6VHEy{0B#
z0i5_H<@UDpl%0Mm11?V5Y%Uz}tj4J-V;R8|Qvuiwv^QEVTM6V#-0qad6C-Mtk~_>g
zUN83JXii{vfWBy&u*w4OIJMuKGsWr$nrHw{kBUeX#Se<9U>=N`gkBH55&`LtK5Z)g
zBi~rQHO)Wz5TlNAed85)Zp|f6M^8JDxOeWnqox5<ilQaEu&ur(RJLHKrDGm%l{mC+
zq$+;xlRFy!?dTX(zvsjR*+~1r%1cFf@JuOeO>Yp?Wsqcgqr?X#d!EjT7<Mlh&!X2>
zzX22s*;h;VcMW7OqK_zGF$1&_-?9l|KVngoH_*t$(zU3L&)e@+!^cds&A&pp$lmBK
zsYxTF2Nc~4sh_&#LV|aO4W6C&5#BnRx*V_XXrIS^SlgDOG#1Adq7#1Bg(oTJEA;R`
zP9fO89$d<u8-~+&qyL25m+-4p_6>VLb<6-EPV|*Ea^89G7sef}U32RJwEz=ckgr7O
zV-%=pQ^%s)tYvQ_OV!-lu3rb-)m0Lh{CuQ`>8XM7G%~?33tDg+?V8{hgyZo@;wdyz
zGZy1~t{83U<k~-}oIG6A%Vmh~QweQ#M`MlzHj0%uAE8Y#LcYi+rtT=qKV^E2OG4iI
zH=y;P@sj&(5#`7ZACLNz;!AnkX}Xb$;P6`v@IjRP4C)8&s#KGQsy=8=(3}F&UvBpe
z9MFsAcxR%iM!iGa-fjlFmZK040BBc#HcEpKKKuXpIt!?(wzl6N5fMaM=}wUb=}tjP
z=|)=V?hx3NG)R|(BHg_K>1IoJcX!vFoO3+ydB5-8I|gG9bZ_=tYp%8CoX_+8|G&9U
zuh(1m8I$7fiCCa78W(fE^mpVQReIPf>89^aFqY@NV`aU(@Mlj%ImA#7I=xmiuGF1i
zdJUUcP9de07ck6^JzLz=hDm2Av-QsH$u$!d8y{@2OsYNF4%KyFTw{wZXo64uZzg*@
z$4n?BdEUjosF7*w6j|95>=_9BX}*=bss25>+kv<>26pD6POhWX;BIx4wqovyGgKh2
z>=`>`^wquwqw`I~awJ87^KTYFggcUsoovR7E@x_I2?@74yFC4kX+*u_-Q(?v%;Auc
zrH&%P&iMBFJLba{YzrC3tx5;<(Ry`fbl1)v+YMB#*VrHmPc3dEDeBy@_BANm4HsQG
z&AwcAzh)Bhj8Dc5qO0875fT-|XOu_;C&0%C&lb!p9A(YPIf0Tk=fTOMH{Au&yj0HO
zhj3qlaiyq0jb@?C?5`U2*Lg&AYH37rrsa^j*5DMumX}O<jD$GyhzLsAvh!{n`_0%U
z5EBW%7lYjLS=D?tQ@EcI^t^cn$r20xcoWaa#BsH&i3um2O}+E1(n#NVd;u@0MqW@5
z1GPWz(YsJ2G2GL(itu@YwT*-~&ukW|Zf)GrMEGV(gTCzd^cW_P`At{bg*?aRq?A=(
z8E|wkAXw~@I44fkv|J?Nt7;D=FyWo;c}X|nsr!R;x{@3$U%uq2T9qEXG^_KnI!}2#
z;BIqf^(wT^DszgBh<8-{!8=r#XeGkXR$*Pg+;tGHk18gHv^(cT`_mbtzQLVAMd~?a
zcg}B^EE8!V0d#p0X$Cy+<JUji&0n+y54c3KBB}7SU;V&h!I+8)vcHW_-uRMak$C9Y
zo)Q?pakJasv0}GUy|dxD8tpW_hj?N=SF<r1G)KVs3?G(eC-a80Q95q7jL@Ue@nT7U
z?x>E5q%qiL?O7EA3CvcjW>SS8(U3vX$HbP|nm%JW!6a4B?U&kVJ;7n<{<y(ob*5fJ
z!NP0jEAp>`O~?*<5-h;{Ss6-jro(JGRIj(U4jg3BF{DAb>z-n?aZKJIl@i<rzcuNA
zMVD0?$+T!WQ~AWTuAL^!h7P1&eYLZ^ebMpwt?pjO9Z=oegot7}xx=f9^ssm)r^Hb#
zaan>)gCp<V`}_RN#8y{0PU=g~3tf*Bhj@<KpW)5mK6*A|KISrEXiG_-)=~aw^Kawz
zJFKsn7NF>*vc5zWgZBe(sT;4+4dj)JJ-o#YDd3+Jah&P5NXOn~tWe953hF>?7Q%Nq
z2Z%EB<vr)L9}^oii~Bu3q<BWke0UYQzZ^_b=-v!DfYSh0f*t3v>vmR&@#m^qkpmE1
zXR+D|A8s6-{RF;tJaQTg4BW;mV2VRDK{eKVB@=7*$q8}Cm&><;zzsGRUJN43t7}vR
zL0K0DEQ`hVLDAuEiHPH^c7Cw{1}}R`-Xd~iA4W47;YLEQ37nVJ#xm0_$kq<byC^)}
zHBKPiH0^S=G$eku<j~62T#sjRJ6>pWl{vMpw5HQR5Q}P?I#RtgQ19k6#JE3CaRc<P
zcns~(<3VYTmm%s434M5?5m^Rgm*z3u$@&lHd?7AJd}MFhJ)FMbN0;KJ8W{g<pF%qg
zyenLSr|;Jze?(pvyr;s+2M_Zsb!TkO%RjW8(2ayu-^s;FrIhupg+<a?2|gKcDz#ZT
z+Msqls`{p}dNtQa-NzpxbG}9tzlYY2)kY^^x^nPmB+%f6lL@^(ap&vtbkQi(fj3=s
zt-YQH!NW)4^Hc7XmlCzE)K}!+obEsbi_&4aAnq^GP=@KW7!y5Hz4MA$D-eF_L+=&Y
zJfpUH+JJglbf_D<<90kG!*Pb)CPdnchM45~UD~?K(Ayf2bZ=P(IdzZf-sX6ggQY@u
z5E|<7bZ^f!rfIMFQSta<qmbe|L)FeZI<Q7vFd%;7*peh?9pM#a?j%DodA~EqRQsR?
z8xZsQh0rJa_MQ-uHftal_7e??pyt`i7fe-xrSfaDEYL(g@ift|rfBmK9DdR)n*6i*
z>zSA>>H8QeXIp_nHk<=*q{pl*5PThk<dgLQieqd&0<7|CX3I$lAOe?r@q+y4FYk?{
zq>zZYeTK^M<~gId$Ebwyzo_@IesMH8Zv+#xBM5H-onko_s}`sddyXc@Vwg=waD>2!
zIJMA-@&fB+5Nv=PJD`JiBP)6v-WzE3)we5-rvec>C*qluz?i`vj@4L7%Nxx%ohOd~
zQ?2zH3#sOaUR3=4Z6}cI4`Ro0y>El$g%<{?;#k#zq<q;aadBzwvNFq7bY>Ic_6O5M
zcD*d$q9`J48jlFM(DFZ!<5<ER+I+E>CiG-(lx9N*Y%{jXBU1)gL=zgC$aeAUK7L-{
zUd6Ls5~xHL)9t`5vTHO5va?O$bMCyNm)uIFDpZ|z!WLn<=oxylg2x22%i7j*x$1vq
zLxirC4dfGs_W01HIx?Yk``{!&@4d&fF&DC7S03}9R!;6yX}XM!!FbxANNuQLw%?8D
zJVt0Dq5}+FmTUx>yTW|qJ4M5snn9BN*)3^g>O|oUN&da9S|uc9;@3%jbRgc3dsAc9
z#tcqu+9xJ1lWni1&_RBtZJK9^uDq~^jjx?94xbkWj>|WgoAf8+K{P!KI<jp}=3oE9
zd52-5-NK;ptB0wP@Ob(ZiSul8qz8z>j~qQ(1Gi)Vi@{f7_?_NOGo%TwW9gf}ROocc
z&CLe=Ygh?+Sb|*r7m2^J63mG6$`Bm?JwM5Knp7r;{((r#o|gR|j+L)luCJ|WAupjX
zW<AcdxAeM#&5|Y6u^;Jl#((lg7oEfleB^w`MogNXhDg^hiXJXZqmcFT?A}rhs^JwP
zWN@n(uL&au@}~l;Aq+g}s}Z88CGXIz;K?Qt35pFIM}G`Z@AIpSqZ#1bK4ofNLp=Jf
z1O4?4GZazSaS>?;8J>9(C6FTU5n{C*t|a?UukzH5{G}P6$4|%LSpt_1UmrhRYmt8G
zL%%vl1GEd8>j~`6`|o*;IWArV@a+<(&qSMZeNs9(@_VvNz_-zDI`{o0Q=A7ooP7Bu
z${>#M=A%WuhL9jP^v#9t`p;{$u%~AvSco-lj1vdANyO<%*CuHml_x5#Lr7LHTM^)E
zWl)$#?)|s3IL<05fQ502PmzB_cx7?L6`s3(;EXy|X<>HWU`sq3I6t9f)o!_Vj#zD<
znCvv`QfbMThUjGPTz$o@fi@bv!o6A-wD+vP%>lK|g=^^D65pot+5xXZyi%roT9i}L
zLsYJxs6l?wkLCiVH5+{25awxBDKE3_wo~`2Y&%|@>-3J=F7%cCEV&?>uWIvHBY#Q$
z4D;YqhxvC2rJtbOX;rqs(!<|&#=bYj*K^DK@wPsCo9n_o_I_%enrk!EQm_CKk({#s
zsj@uWBL+!KTS6Si<o<82Hz%A=y*9=HX@fXq>BzY|>oHOJpeP070>}*ERB<~_0oOc6
zoyYn9LdjImWFW7z`iY&<FK6kP*f^Zq561(dBaG`MS$Yyn(<hX5rPnYeqsxuO*fM@&
zE%o2k<ZF1KfUxA{h9`d@QT}O<7LQ+4$M%{`bK29B1TQZ#P9enR!Nn1ZFk}uYvklIr
zDm8>LE2>!T);&`Wk$405gpk|T@WtxERq)p{kh05;o^iw+^cT`v_(nY7k5j6&NJhQ{
z$__fY?(j+wE}csZB=n1OyLOiW;m@k-!{}$g|06*6L*a2@TAjbA1~g4FPF|E*r1+=k
z7aWaNLfyBv9g9#<V)Cdm1)h$phwr=vMP@I8@hzUO`QgpPnG+#6&n{H>W^V#W$d?$d
znEY#*D)}^yzGT<K`SLQ1(<G+MmOs#padf0{p~!wt9X}Oui`KbBx7+J*m^2~OUNZKB
zcJkc9bc|lp9Fr9x4xc;d$3Abh>JFpBmQrIr@Qhm3pQudLe3}>W0QqD!yQ`h54l3E2
z&^`EWd{)E20s<nqo2xVVPG7FJderD2&wK1bth;LtxAhS3?D56>_C96UwQ!2qWB6P&
zEb)*#*V#~M^YBEuuc1`&kHJ2BwqM*fufKHz$}hG{Igw=1&i43LI?bLKPEnHT1(a$_
zd!=)KlQb;3o1GkBo?E-}0+fr=vp<L;uEj&$=ti#c(*$&3wnm<3Mpt#~c9KrqGbY?K
zhhGXW(L15Y8JER5qbA+R`21fW&j-}x&w6-qKE&AcYHj90{}R8gh<=JwfWW~&^&;#v
ze7*FIdBPA65zjuiCW28FVG(nQ>oPskk|Yh$s{h)kY6n!NN|+o50w0V9&A!i<;9GP*
z>N$v$@{L~uR$g3Y(qqKK9?8n5*?>7P_@sEiF0{uNcR7Ro`ery-if7+6B$Z$Qr<Zga
zYM*gM8xY|L8L!?#u+t#~Nr}xYtR?Xpv8~n7rNITNmibGYwea<(lLjDU(ZV>5-iZUr
zy!zO8O_4`S$u&3!YCXf9Fl6R4;qQyW-#gyW@N3~dWS?m?gh}vpe3ovhXbPqdWAm|?
z-X1O_Ow9q}g$Y+Bi9KF;QD{ht_*osO4GkVhbutq@Ef>yQ<x94zUhvPFdpvLz@!|#K
zsS`bU`l5(rX2)mEH9WEEaJSg;*Yz3n+T4EEgmpZ%@`d$m{&2y(G|*ox)wXEjp(f8@
zt{pQw+4STa*Ln=o0s=Q%YfM)k6&UQGpWWLR9y0N?tbh7Uz)D%zkj1-|U$(tRd66LW
z0;eaIv!hj%h^g&Ez+?J}fVBp;JJ-vx4qeBOT^;oco@vvL-9PD~QPY1oW$A`B%FKe~
zd(6p9hl}A+-MXOfE$hm+Qv1{urHhIpSIi#+>7pIOHq9f^!TlP4ixhL8-^==NwlByz
z7Hc5cl>Sx7OvZtx{cdP_K{kIZwZ3rDhd3x;r>a3dt+wow8@h||#lILMv12A#F;PT-
zW0)0zgxU2or|UQ~qmQog4ed`??^I4H5c@FO^9=?T2Zn9MvKka)p|Nl#z{9<nZY4B|
ziQMtz+u09Xq>6U)yP_a!(Tt7rfJlnz-}!N+T)$D|c(5y<idTr%!bJMQHl-Sd9#F#6
za8ADAyuxR<<AX@d_mHiovU2{}UG?d%X9}UrG~RO=1w)22ZN3g>QNsCT?HM2rH*TqQ
z;kY{~@}equO(xjki-7W^<D`XGAmNNy=ZkyXx681#)cFf4LR^z4Yi|d5aih9J+1{*u
z5;PZ8`0%Lqp-tr0uE;oGl%xzUCHFJ5Yqkfv)~#m*AD&*t(ODJJlAXBE9r8y6oyTk*
z?$0z^{Q*OQ*(#aK#8mN}DWCqCuHImk0)urG-?uzs_%~PQs^LeY>i;NxpCLWaQ92LC
z_rWlLVVt%Fqv$0=e^IkR^Ur&-58z_*Jump=sEx=nSg=i|=^H_`5ck{zH!1AbYmsrq
z(9rncI6`u%@8rhRYY8tI7MZ;g@KbHO;3H*v6fT|Nrqd9IuZ;}&>?~Qom><&gv{amR
zq{zk=vR1BL&M5zYu`DJMj6Qhxa-=LyE*nmt3QkFxgJ%d=@d)Uy%G0L;wQ`=y3#Q^U
z*OPc0zl+{k*0Sm7jNu#`_Dk=GN!#JzVYr}smAAduVD5!8v=HA_mMrJ;M$zM5@hdQ<
zVe;~C39WM29|lZ|D8AyN6}i)0s|yfk@7Cz<(1}=B+z_9Vyf_fiDLsS>ISCl!)z88j
z)&cSYQ|r|WZt;ey4fiFq@C79a;GRZEd0B88B=jBrnBL@#%tj`V`$`0T_-(2Z`}zTK
zo<TV>{ipatYH@KS13R)b+Nh6l_hQU1$PbJa9YrV~zvn_SZjUvRBh}UGPasj}7W+A#
zFmOV@CD(Z`P1jndE&6YfvQR%fdKVr^WZYEs0)nl8&~y4v)~fB8Aq0aN5%O_zl++{o
zl8>o9^cNEjUx|#)h%s7fbsh5QI525K+3FsCzNjn8NL%UceCfb~{ws^4%{oTu^`8l0
zK=(6&^W)2r<xZ>p3|N2vR{#EZ564b-?#%Q5qw28(@?I&vu6s)De;@C^wBSmwfa?6Y
ztX9WA43vL2a{s%x={*LJz2Th4;lB>x-=F*c3X1=l5Juub*O|H>IBfp)@Bho|+W~k}
z)#C>aeE(|4yO|ouG<=&2zncD=*!OlAewj>tI8Hw1e{{=#j>>zH9Grc1VVo)5-}l%5
zZc<zpoZ35G0p)*;^8ZVg4+_cc5%h&y-zNWg5(9<&u+*xp_54T_AOG82@T2zrpd5+{
z`hPQi{-=On2>wYJ=mwuU%G`+m_a)JWdood2JEmgtmn`p3g|-XT+p^P_-(}Mb%oBzL
z?uyizjTCfxRP`n>)Q<M+Wm1eo`=IiTENpZ5Y1(AnF{*G3XWIsw`Lo0H=cljP+@@(<
z7&QI<27?GGlfEtYSq7CcBWjuR!4Q%n303843<uP|JLqj7{N`wZ*}ZtO4DiMhfd)1n
z2>ue08LPjd=V_2R<SJLCf1I(9cgz1~mn{`>{A0{wvU@mR5k{}c)p1?_zOpL&8Yk&&
zW^_2e?sLvau{V6zVMod+hQ>}=S<cAUhMYOaK3g10)sH2KIqF4)>KslD>KrCI8Ylmt
z(SDf2iPK72R*a~u0(l<WP&SMi#FjaLSzvBtH+=AqqCOYhTOt%cfg+5n`FMSx1t{j}
z_{u>2EucpO{Xv@07?wnWM&2-|o##1#g8uTmWn>5zs=-{hpSe(pNItu$S`E;virFer
z`tAH#4i*|fih?3e+Yg1FUMF$t&P=->^{p-jGjZHqz%noNGi?94rnxNMfS89slp3cV
z-f0>_b~=2gUi+)}dX=coY8J3wzYny3reWS`<CGSu6uc{3L@T6d$Be(2y!tM8WNds3
z2`ag&c=vls<@L_Mq6Dd2gnLLGjaC(i^QHm)r#FO<`=wr;%0G>Ykt)Ig9X?81=f%-l
z5>2XeGokg*2NJW9?euqUK?&#Q#WImEJ-D&r5BKd>+~J?6(R$DAx$z9qzxfR{82K#p
z4k;=-)%EknOr28>@+*%^`+GHL%%sjN!RBy|fgINYd|5kwK_9SkSv6eA)emkkgVew+
zP|a1Y7B$|!0=_R99`(N?N+I}{AwL(}g75tWeH7t*`m^pwvTj=NU7MySnw6ZgqvOTH
z8?eOlRCT_kGli+Gst;y~PP4Pu^&bk=S<Q0QGdqM7GmT}B#%P!bsGC1ljQlZ_u_b5R
z2E>QM2e1S@-56%aM+E~0x{7s{582k%n0&4kWqSH9lfG|R=*2Q=ny$*-HeX*HARBK$
z@fcllU_2;E39(6MoS~z$zw!sO#NW238Q<>B!C&aS>cOTW(G5Rf8GE|<S@vr2x#pR~
zPHp0<wqvmoLyF)~@Aawn(b#LI_~&%71Wu`ia5Cq<BUTgr`9oLMRTG~5w+9AndvQgW
zl`Ex#&O<1&z9^G%FZCB%yNq|Ub>k*?IhgwmhlrCB+mkE|>(6lQY&X7qG+sb!jGrKJ
zx5U2VX`@0B)Z88E2$Qc_&z|c|Mr%Z@x<al<dd1pzbyk|R3co_12t91*T#fgfI2koH
z(%3G^%&C%)Zn25&(|v!ND$vvGd1uFFa*bo$R_b-V{4JKiYNGAcWOZiFoTY_g-9fJL
zMtOqqZQNYahQTaHPaHi%OsWlu=F{;e%e0eK=d$A>yzdJVTS><CmCPu-m7G1su!?-+
z5Rb8ZwFbUkU9%Ac;}fE~fGx`h*hdY4Uav{zgJ)c)ve<O*e!A8aR(f!{S=^y+ax?80
zCf^=THI+p<hn<Y7x4hZ`EJjEU1~mG;xs}Jy!Uacc#3f^WqTj~9XZYS37?e)qdXL!v
zlS$39#a|mk#!~UXXF1hvSI_lyTW{+Xkkxy0x#*kUl(R(s6n;!(h;ElH7eksLDe<=}
z(NAa|Bvy)v!u;OGiTn^93a#X1sGQDJQug8Y>?K)BeNj=b9#GJ$F-4?h>XzxilZ2gg
z${sppNw{k^{5|->qzjJCZLr%>D=8)H34E`{_l++F`Ri*C0oF**(A2BMqCH+3bi76s
zfDn`QHLxnaqxvpU5F<N{;Qe*d+;`WwK<9Ci6-h&9?~RL(bn3o(k@{Bgtn}*j$5F0%
zOgHzqAD+P+-=(f(`(B2sa5gqL7Co0*>W{t|*m1xwh*cFXy<nV5YEQCS&c*g5m!QU?
zOgJ~poMJ>7s(l16D8>uP7bM2DxOF{MuIlk*)kAf`*lXZA&WCtdK6+O$GRr%qEGWi3
zWl(FIzz<#dL^P9olizbEglj%&cl5qAUcPU6Yfox?PbJ;~dgIcOgs@e(#4!PLHLI%h
z*~Wj2#;i+h*KlFdlmWTPE7$5PpRH<~IXx>^|K7&!oBs=k`pIF@<TnFSVh$EXVi$pF
znHn?VO4aIJ>{Ty*+8k2#D&?bnH59m}FI)5Zo=NPoOANK~*mb8ISTF+1*gnm9#{`Ka
z`zJ?!1ipSedF-?mDXwoKj%h#sEzf_8m~US2{7tC-<^a^iPV|RkvNlkrt^!d_$dvN#
zluEwZyWNf-rjI`W1mklG?joy(oJ#|Fiz;oVp>)yL_YloQt44;KMWvBKtA>7)DT^xh
zdk@7uZnAewm*(uabL>DV?9a&*P=t{mE?D)OQf0{XDQ~J<H7)00oz0I_zwbUnV8Ij(
zX=SsWEz(VD_dX*VHSKwT<dZdndu>)N@wl$qd38@kOiWG7p#bG6oY7jQMEt?sY=?hD
z-Ept&%*I!*nh~Mm>wfyg+u)DCOtpuKPh6Xxjyv>81n3$FH0*w5HEGh}-M1D~d#Xj&
zxA;@~Xzx*(OueyLB2OL%a`T1Rq(Sf967Lqv25R*r0>5nW(35;S&&ytm%Cv_0#A1q`
z=TLN2dQI$A%Ti_1!wmH7V*CnKjw_tI+w2qn)}aU+)Fkr}c61vv1fR*&(IxB2U@Hg}
z3pTkvRccshttC2LVL|1M3dhZ%xb#!F<TCScsas`UC&aeS=Xdm+!JgM`^yi+XITfa&
zL+|T35XeS`Lj>3GE6fs5tnf`~T+{Qtuo+p88WRoc3AP@I==z>aO&*<Wy{`RXGaKkW
z{aE@onRq$PMCIem^zg^Yao3y6jk{EC8gCSx1S4%M!A2~Kg(~|^`=Jj*a!n;k`0#@#
zOoDyxyvyCp7tK<FG|qXoTUIc({o7-USrg^P`kl0**uN(5&jCNXW2GL9B}kbAim7U@
zKS-d()tt><y|F0zfdaI^TIhxK{vStjV}OG#;N@nqxJR-@<pf7Q(3gfH$K@@;v6X{b
zU<H3ggNIWrX~L?waY*IvjI>DVJhd>Zto55e7f>r=@B7d8l4#Q!jiqS_U4z+3q^=~f
zc5%(co8%s&vB{3j4X$1trji*qk<2BbK4fCfbDHh{9Mbh9`DDgzweB?&vQtsnQlxQ#
z1zI`r7x&xC%WlW_SK4x@L$btd-7+`x3DzDvJ810JWat$;PSAwo;l>sZ8|1)9NU)c~
z+=TJQ^oCy4_bm!&jJ+h5&rX1zmBZ|iW9-gFqlX!_K&1jM3fr2EUc1>I-fgmj$G!#~
zZtY1m%**HP8eUNdn_`;t#5KQxqX?!*K;5*9pKzyH1+2dvhcY|dgXZZ&%UQ2F_<>N7
z&BB4^CnoeT{4*qybR##JCm$v~qKgTkq!@Z0q7nH-&UbAS8n3sBfYLVP_IQsMt2y-`
z)!gke5-Gz{i#sq<`Yu_op>eq#-WUR<P`H%%aE5kQ%RXIx;Bm(R@iNhG40ET17CyE6
zwUEnJ5I{2<7g!7#HE`y;UG~#+@_1j(Kj$}hXYPsbsY)H7r1AFx{>LjgDs5<t<9R8X
zJD}$!F;vli{CSxJVq^<{G?HDb-2IityW6R0+n$1ZCI-8wVd638OnH_~kkbZGJjNIo
zF3MECZ-Ohk_A)?bP%AFxlFz_2?HjkagP&y^Z}z)bas;l&1VuSKb4M^Ryy2oFQn+7G
z<<dOhdsgD-RY=%k*+dfkrt;<_`li*6CE;d&`vj@Z)9uC+B)HpSH7UblRLQaNkItI8
zk@P7)dbu45AHfF2=@Umdw~Yi9Z!=SD&+x!I8z%DjBwKw6rTK6ZQk{E6Rd+PPYIe$3
zCb!MMmcnfCJv8r^u*W?lj?vE-$y4JY;k-$w%><SMp2lu6tVM&RE^64s-tSs^>~7-@
z*wi@pRBc0%*up<YemOeJuQ48^;*5DR7DoJVz-G~JEJoj0bm?f@<=lyx;~Ntzo4`sD
z1qo_it6J)Bvg(gF_n0)>pPy#>-n}ML|IDeE973S3qr$cxsRgo%GA;fn7HS8;0AVYj
z6iqGbgFYO#3eZ@bUf1sifArM+qI@);FjlCo$xE;f)^pe)BV6ns<f%><sk`tkcc*LY
ztZz|zv(r3{(RDn`02%4yTtj`1W>w+IWsle^4U?3ph$65Mrz}vc%>N;u#9^@=vgJI&
z!e+|TenL$$TUdO#5~m9%yq#uW`d!8sn0}Te?|qpGMGXq$HgD8s<#tEjWlB7n=7FC+
zq|va`9VyU+F}oH16*GOkMgohG!>ZvRZz>%lDhtf2J`#$-qUXe)dwhay+znV0Y8u@?
zcG%`CHriC@_2=gKEtHh`1eq+FpPrE*5GPDc9Z+EiC$R7(^xZB{5PVND_hPXs0zt+{
z?2tw^r-E4HnAN;TsWA@Q8^czOj?NnFz9kKDZaa;52D2<?Bz27^U(GQ??6^#>yKT6V
zEb9FF0={B%(xUQ~aj!1UeTOU=7J41LKf3aee}q-;9yh;%t1_<nUP}V!WuF+!0FoXw
z%ZRZbMXbZfZZ#%>kpyYg^VldyKOWuWVv#CVcjmnU$?sK>5*6GdI>}12vHlQTmW*d+
zt>mqp+;*#9CgZmJ0ZFVk*?us{ctlxM7BHd@fzX=vd2HyuQwLGiR5`FL71o@L#^~Xj
z8!pBIOm~a@#$elh@I#N)WHed+@s#h}-tnMKv=6u<Kd2_KyMr3hG~<;z#d>4|fHUX6
z?e+(YsaE&9n{FHZTBo^5Lf|j?1|MhCgewY6zsRj6?~qnXO7|Kb_5sAq&M7cE;!!87
zgQSwLqZUftPDZeQBG9KdF|yq*shgx2jcS-N)a~BdpaQ69{XOrwV7>c-$bFy8(&@ZQ
z?Q5XFnmu2ejJls60`jmKAb6`N9am9gu^wHpk3D6g%8d#$V8t5%wIuvhrl}mk*(B$A
zi8i%U6a8Rp239QUFP85Chr~gq?!&<1r>X9^l+8||wLkF>ZE`<xC{xY@zOMIL*cq_a
z?(DKn$V^JF-7rCTKI9E+d}}yyH*Cf;3HD8>Uo!977HsJ|QPrKIkJlJ%K;m>oM!usz
zm_6oD4iaw<G%uM#b-Zr<LZifsm~nWSY0_}ut?u^AQ)QjPd<rQlFusC-y<D8^woSdV
z<9aJWbsG?kBFD7LzNw#GW0@a#!ICYEp_i!_M>!=WZ01+ZxkuX}d8#~9*mqhDa`2u+
zxS6c|`#R#ksCu=2$MwoVLQPMiLJ08Kp`(m7l<y$H-@6=did#_G>vj`yFPFMS#3*{B
zOUOMU(P2C$6~66JR?e!x&%==Z$J(Cgw%J6f(c96ArVA}o&&!;w0XI<8iJ!8p8yQAL
zAfl0}SIm|}YMuev6A_j}P>`2Jr{J70#IggJB5Fjl-S{tn(Kv<2M{sjlmgdn9oMc>@
zOjWyHtc9R7c7Rub&7c9lxY-C7$=*P=GFXS#rS1jRTr<XQatWoj2^fAwwVS!)ED{)m
z7{0Vuph#RwUfk2M1|EIm$w$pj!_@)=R?}4DUNw51pR_`*j88^X%f=2`&^l<IJ(4yK
zUu)2C81XljLRW!Q_iPu+!BdM?S<d*l={@wVz5uXT$}bBlxMn55`E3lCs;dA3Z=JMr
z@@5TJ&;R{{z4v01*bF|xQxE+CoAOTwg3D4UXOwFN2MC#2MSE8hdsBGFWD;20+`+=(
z8xI;G7F2?JuAp-A<-VK+5u~aJarbV@Tp2)}Nv4At;DlZD-%4~Lqh{QK(Bp&i?(Nmw
z9ll5%fWQ&#qwtZzU0tkotpb|?A~eFQY-?Ay(ennb-5aO#C6zwcn)o@#DS(@5gsa7=
zr2UmbSrH>$-=;H4<x)4*EpBpoD{)qUNZoCtlC7thR48{7qt|{%A4Ib2I{{4@K|TCd
zYM5c1%jee+o{*`zTcRk%?z`2rObg-1iV9^%GPZZr*HNO>X*jlGyGtVJ%_S(XqDjiZ
zxTaom8P^}%k?uymmG|1{vz}mBwv}nFZzOh4_{e+ycF4NrL=+<?NJnF@Dwqs%F{Vkv
zS~e?7SXJt%xTmvk{N2%^dzmdkGF}RA<GYc_S1tn)k`O7s-*B_HF^Ks}nNQa93#;|x
zpD$%7^W0q{`%HZ95a(QjhB24-FxEj<pa74lA}M^nKI7(AcCnhInT{5T&eXUuq=;<w
z3{v&=2qBr@t@2)-2KR2W?rVOZ3}7Cca|iOjenht6%%cyChRA%Rd#p66YJ(3$oL26E
z*y5y6OsDbmDp|1e8vq!O8{LxSrg)sHr{i{QkMwSa2;CP8;)(fPA>?bI<ZKBdgj?pK
z#!r%;*ROynPxD=f)8kem_}aXphL_JM@CXh7?zd88K!U)+uuTs7>_Xbex^-XZdb<qP
zoHbEQ&URf`vpScKD}{Rw$~n(vd=8bZ`}z9-`>t%Z5Yf<CM8~?xZ-GUgd*xYAC`!oQ
z`DR|xB#%X@lqyI{^>b*Y6rTa_GJE{O&39(q@5nn-RmhvFbDx76NQ1^h{@4wkgkW)6
zPLDtFaV|d$h(R2uGRN5cE+ch(E%ak+vVx8lt9h7>+n@jKJ{lQ1##mJ>!<Kq_qS+0w
z4##5R-aABn*Vi<Iu}|QH%fQ3l4zORT9D=v!iq!;7b}`Ct@JF&1uHVpCFWj1BE!2qF
zA3p*@wy|PbjtRq|uiO1ir9EbFdyAplb6`F<Ey||L^SE+s@+dxB$#UG`X}b8be-GWH
zlH_@Nd7sJjhNJj2j%!k}Rd6k*%bHC&2uUbTnV2Y<`Fy4xpk8)o5^Qq4i)|pNO3#GX
z!{ulaX=z?#5`^1T{dq3gwub2SfM85*fhNQ!t8s=w-s{4GPLh?tX~=?uvuqZhM24>{
zXQtk;yIf(VgksEq^`bwk$FhV?gLD1YXnunMnwxnmcXRjDQ-NNP<|q>))ZTEZJ0FYL
zp)_voZ@ad&qoqlKI&$pAL)f?C?0?)wXIA4YmUH~hX@0|e;UtX7Bm}7hSZDeIEPjA8
z?(@8QL`H^DcRGpTU3?&8Xy&Pckv{G03&5o8@_Yw|YRu_FzK_%HH*O%PL-F2AFp&tj
zie?}s1aVIQqF$i$c$QRjFEHRGy6x6XJz)vaUMJ9hF&mP?Yh~D0o*Bl|eZQZ;Do_of
z`XvF<yDTD=!0q``ON4d%7!>&2TgVS8-A+cv;N*LQEj%HakBOa`lg+7QaOu%gL)NdZ
z_JTs~MJ6!lSenNIo^rRO5^O=l0GWNrdu;`=Y&DTeA7g5%H)RVzhcLs^81lRyo*}gi
zAuR}=3=cKi9yGYErw8=zRE3u|Q)Mt1AV!6ikf&5pui3TZnW%*eY=*=G_o@M$Kj)<T
zjPFD$U_PMIg|ww8a!jGmgMrVaO|o^OE1E{rsu@@rdi-0)a+P_1=*shYlAo*)PlE;Z
z&PhvB#Keq83-2hBom?^O823xS`cCV8<}u-H?(XN|G}yXCW~!3PAnJ5$Y>e-8d}(1}
zs>%u{Fw$d($H4gZbgIa>JtV>3?&B=fkG})B{%H0U>iYzc_1fPz1^JX2_dRV_PKg@6
z8iXyyN^jOQ-@_dqG^TCebloVI88fupTy~H&J{~*NOu7aupo*)SSj3;m*u7P$U$!ZW
z{$4OLBMn<%&lUa{gBs?yJa2;kAjft5s2!nTG?YIbfnh3ODz5*6POJY+By`>h`YU82
z73r$YxSl8^98YEwv*L1R^t0s~HIvw_=Rj$@B+0Q?S8(BW*;_1Qycnh-5Vp~6=o9y7
z?#A%W6N%b&Vt+Lq;X#bGrSVst<0BHr9Q9WhRn|4{;==rY?dca^T8z>w%eKyGG{x_Z
z50Wa?)3?|u|DNpIM80Zi%0LcK0o}F~ge@cw$+o?}XrbdFW`^Ql0DoK9`YN=50=gg9
zOYCu6@;0J%t2Z9dciVMjj04|;M?Uie(h`gr+1l4GL)^|NCTXCXCcyhh<k_NZ5NY81
zpbx7_M>1m9$8D0p+KUbohVo<NqVv+oyx=b+OZ@=+lB^t4`B`U4Mtoct8kvq@Oh#zl
zxSKf4yi)5pg88}0C!c$WM47AC9B|N@gJ=v3x3r)&`dETsw1+1;fpp)ZL_8>)dJ1Sd
zQs0Ic618OhiD(I2!e#T#t`#)TczTPG5lZvYE70inM2u?&;JPh70%S@$iUrNgaE>Az
znS*T0?T>}@Kn5LX=QY?wz>#~%Afn4gm{J_Ff+adkO-ZQ7%0t!*#&hDVA9_QJ{6RwN
zA;(lOuTUYwJtH8f+;a3wgXjRp$l8J{HL~*tFh~aIVK=wm@3!KGb_$%|&nP$G=fjU$
zkR1TvKmF`uygKq<6Y`_iUmfd}`*O{kSdYBuHr{9WILq?r*&Ou7kUv|Pxn}upICN6=
zO6E)1H1ba2eRX5{J0;vF_3E1v`Xh(MJNi_saNVkpTkg*js%)==v=<>A2wPPZ%{sXc
z$)EJ!EYl5TX{rtt8`Q-t%n5(TD+;5FVJGRJS6;v40QDCdI?2hAuNGTVg2>o-Ksz~A
zIzXKwGsCWd%g2?elBdUfyWZRe*%fnA?sm=W<9O0MC@r#}{V36*OdL12VgD*^W>q20
zGPz4xqwpAxF-DT$?`pu;pNL<QNL_%-E*^ja1o>vtMVU&M7HgP?tplp8!Gg%yj4HUO
z{xtDotkEB&_frY>5n9a9!g-oK2skY<iBZw=WkO2`c<tBG1G#0JS@FzZcw|*z;(FiZ
z90h2fh0j%iJ<A}Pm2vLJyQ(_#(=wfUSG`VK`)xi!GQE7nDBPuo?MP8e9pPtXke=Zg
zyoG5Si4P1SRLus-7G<(9>oO*CKZ3ie2qZer8dNB5Fmu1a#WGe)npH39ZpZ-<l44jQ
zL0rTRSSYd=`B1XC%z=&D21F-My1c6>Q*$Aibw>t|drznBn0Qgi4a5}?+Ur~51INd7
zi=O3{ar-k+o(Fsgty+Ky7MY)i5nbtmFD4}LMr#Qk!l9V(M@Q9F>rYg!RV67}HgD^^
zGuh+&nfarE!xIh(GOLM*uCZS4^!6?7=g;-;Uq8ZlOY4(C+UE1sM;qfh?**beHhS?V
z`-oYjdg}7GA}D0;XZ1ZPy}SM2X&}q|u(Ao>Dwvi3sck<$7v0bizt0+jn1i#34@q-#
zW@cu|b9|(TKaeOB{<wYEdAmm9sq4M4y@E=_qjt1##zQ%s`3=R}6fOJ<O4?bJbT&DB
zhJGJShdT1k-5Nn&Nb>@f;y0PP4kc$R$DEU1_=#5~Me}@8UNNC{qeGkKhi1(qO<s+5
z1aTTTI20{ZuW$9E%HAW<&TI;E*RG<)<V;<`8izHQXpcx`rVP#e&((_6`MK*AT=;U|
zu0h#f=0R9s)TXrtW!PY20Q#dmHX6M(r(LY<BQ(WY<F+w3DaYr9ga=1j++~iz*r+$d
zUW;q**3_^~M}Af4Qc+LVQ)tJKKNh$U?nZN$&{c8qirDtpGaDn!MbL?n?8Q2kRGqlq
z-r9&2pW5yl<AjpYg>TdF26(>UD#L2F*|#gaBMkU}e{e*oEBeSp8{ruPCHH5XSWKt6
zjOg1eRY&WzB>ji?U3cGmLZq_rUB7<4P04Suvp@{fuAR1Yv6+|}Q28!{=N1F;^HX1=
zt7Xq>5(irmop6VYKZL{%7xV6I=SD9$8}G>VPNSQW7QXs8*t#iTI{aZL$XNLY9P}(?
z;t{2yNdu?Vtodi3wI##-7xt{lNl2oVmWbgEPcyzU36}zfyDKhqmsH0^LqWYM?^%%V
zd-UumeQJ9`gYAr(BJP(;FZS|i+fLAl$mEuE;FMoHhZi^s*SYdO<aOLux@OArLVUbV
z$qZDANjg)>L_x@qEnao~vGMYc(XO1i>$KM9a3IO{isE=;gJf!@r^BYi#I0&iZ$n{?
zKRrDA(?^oHw-@^hTt&EUy3QgZ5fD8u^d}!Eh2SV72;sm+Ohb)xu3>F+7(l&Do9B9Q
zxMI1+qluD`^)_qQLZQ|Jt)q^1>h@z($M^>Smf_YNLPC$yg+HSDUYnFp$n*r9t%jWr
zSEa6;rPCeT>VDKmh0?AR%!s;Aq+5=e-fYlz@icDg*SA+Qi8SoUS9iA>rUKs}@<!+q
z2P}^EedZH4Zilcej-#w)f@Ymx6i(~3B08?k4!aqbZg}uK<1t6wElPfl9VU{HhX(`6
zW`PYIcWOX9_GYv<mG>=aDt?Jl5kY(lW^Bni2E-uGZNGddk7Kip%BG#FKQW*AoO=e1
zJO@epj4(QC>l68-Z|x>6MA<^*Uu%aJQ~7rdM9*%+JnU5I=_(q%bnC0)P8wus5S#XW
zj*S8uuarezH|8fv^N)+~vp6mmeY2fEBI%=Ql==iO34Tah&?T{iF+~<XJ$R_h8i6(q
zh0faqmR;;N-aX*_qm$S|{-v)(at)XD{MTne*p|Vqb`Q`3(?xZidbm&)o&tOR!o2t6
zCRSRG55Gv8CcZefXzhEpbi`Sk>{*>9it(SKr>(E=pRt(nV0oG;Q>Om`V++jPf8wp?
zf5VH12{~tVPW(B)vcWCDoo_98{xb>2IK3f`d9Ei<xg-r~dxpsJ+Rbpe3*K19m905{
zLC;`LTBK|q+|t5vOeFda1=>^33q$R2`S+-D%(iFiUxUy*3yaK~7V5h|^ck)7EhKiT
zrLZS9^a>5$a9A$4tzAcI6Fsl7=tQQIhX>(t+;`HC7zW;;7joeF?w+2q3s8AATqd$n
zj9eK>U+X@{phgk>P?U#G^Guy=u(C0qvX#+xOaDN1QUBJqV!E|+s7|G)lGdtvwD_jg
zCCW_DSxID%Ah)G*zz~OpqKYw+Xy|p`WVOeHf1bzGtybyI&@4^E;e_av(Ge$;bV3qw
zoV$_Ixdm&6>0*-LH;dO^7t(M_2%GvTQ>O3Gh+UYSrHF5KtZH00O20rGqYLdYFSJlL
zpLTyU%j)dwJEm%PHLl^f*-wdLhvm=GbNhbQB+t=?_j?~uMn>`dR!_IT0D5*4r0~N?
zlr|Ik)WP5M#7ROrL<x4*TU&q`9ASZ0hi~R4h}j8m<-fR>8N}g*;{>}6xI6RWc{<xD
zB*4kS>fXI)Yv_Mg!g+eIuP}3P`B)>cSMi(A^Hqzz7S_MVBg0p4L3f(Qm`-7KYY3>2
z7Z>SICPJ`sBdqm@e?+RZFM;CtI)ov0sPTBPhbJe%!~+=C0J1I?7fGHex#a^a3k73$
z%8G`@^<!YDL`ds}7hsirqt}6sGtj&3&o{kUxACjxk_{==H|(e+U=<L&+P2dmWk1;(
zZA)nk$p6*Q8xuJ`@}!B2w$g5mvB&K>l2S4s;Q|X>(?r+&jR_QQp~<*vxwKhOpHxHi
zg}9ov!uC&Z-%<6zde{1Ss%0vp!sTP}N>eu#Q_2XCko}P?=%ur>0)1skxc1yEjiiG}
zD55u#B6~hW5}GMV_)rt<_fVfl>4f6ELT*peC|9CVqTg1Ihys&AjDCcS9hK&JDOKdR
z%-+6FXd__ast!o2gmJ8EUosAcbB?FNmyFe<;3%y{v2a1?i&B3#Jb8V<-iR!4&i1kd
zyTRRm-k>TlrV&xVk+;$^b$+Rb)Z8**S~tLSNvm@_UfR|e=IWu6Rm8%@X*-2hw82Js
z6kAB{E#BSfXW+K7y}(QbZ9B*Rz6B$hq3a2l!?sF;;Af(mkGjeI&^4`WdH5FD(p16u
zk9Ly)YS@>+k9P2Qd3Mj}=+~UK9gtnZnCQoQ-R8?^edP5SYRvSR&PlKA-zO-zHkROI
zt}Lb_)>P|KwJ3UZ$aTsw>QJ2vEw}JLe%8wrhnm-Dx5GV;YaDjLxGPA%wd=u>o-;F<
z8J;F{h+Bm;+_s|lu5@FA>{8%pB$pfqjbs2uQ<BgCvzTJwoeMl_Jx)#=yC22x2l4^L
ztOU{^0_~bZK`IW^w{UZ>V@ds7DR;&z%;K&=@=K#wEM;cac}X?_fcNTO%J#&(R31JO
zUB>6O{gN~vfIzt{`MJVuY;-e>S%Wg;p!{$}lrJye4DstdI=F!&NIs$qSISby^TLQ~
zJ*@PS9D+}r`~eviwQ`dm`DAmXDi?U&Ok%JU0R^}INt0Dx-RbrP6j<$g=<MCbi#aQ*
zGKSpIQ$iO~ijxv>9HfjK=6^mA)+g8(Sv99A;tn(g#;WMqDfyS&7-CSsC{xpChE$#R
zvsdh~S9IIxovN+?SYH`yanc0=hf=@+ud{M8myO7c?|$-ff6D6s4DtsUx37tHXi{OX
zYRulF?LTQ&PhW-p>W-nKMO&4-l##H@dN3;;*t1Glfxhw}Y5It?&x2-#05;WCjAj6c
z11#d6(SI%yrhmd0YVpv}aNH$j@qS`<F`kpSksAC-P;57=5mTToYA)T0o=8;TsVOp}
zP{B`SrW3};aGup_ow}HyoTR`iUK<)JfK5wtYa<v&I)l9?^85OP!6zFaDA+s%>E~Eg
zosA;Vw4EXRJt@QXiYZW*0)R-$TQBV$1I5gzdN51$I$-)?bW`>*a>KPO)T*h!1c^)y
zw^J8(tvu(AZ=Na=n<Sv{0uX9hY=W71Ix(rK(F+S0u9VOg*Rx#@i`Z(WKwFE+^3mt$
z+MHG@k9}#HZm+CjVuJ9^LI^ljtXB;V7Te0lIbDxmq_9kneE~Z`mL~FHMP@-pVi|1C
zytlVgO}zAriW+z%H7ZQMm1QOE*Nx<jsa<UhEaAO|$q|zMQKaS$j!`bp%k<g25h8EV
zt?(aA@^!**?Jy~1Nuom#*W?nnCnb%S@lIot*#USl<#Zb2^lir4bH(efpgdRRyT$fR
zH@j6dn0K6!25W2|y#WNkk)k`*VHT7#^(Dp3KlIAqru*n9R+vwSjCltXm5Cp%^lY(*
zJ^#B$tuxU-Rgtj1UQ#@+R8iP%+Z`Q^e3T^d=hN`#Gr<Yx{R)Tj!2;OyaWo@~23;Q3
zGEsIHaW+e^G{MkUv`~QLTQvcYq~)CNyP~MFKxX^!paW}Kq#vs+!Rt2YXg6QCF_jPS
zB6-YMFe8MR-EUnSiYw8~rmG|SeL{^XZ_aPd)N8X-klRJg*-k<5NvGHOymAog!sY_N
z636^P(0f?P@Cmv!eInpxYOYr&P&8Qe-fZUi7L<{YNs{#vEu3@RVUgp*lREEnCv?3C
z%kNH=vQcOTTYlY@iP1nTm)r;4b~mWOqZ$SBJVNbZ9=dK}`ttj$Y;eyp%i}2p(Z7-v
zJMPVDhl@(`z?bjNkkn)6ZWlovaJXhvO1Hv@`7=7mGr6K}s{5OchxA5gYG;V{polr`
z6RMr0D8jgv<`cFz7I%@!?A>urLCJvesg#<nT(E&2h9a+k+kaOsxCU5cTdvbRfJ&2b
zs-&e$5!nw+iuq#taafL~Zt065Jz%r7R?KD_dU!F|^@Vl^!cVu+p<cWsXH{!Tk*I#R
z!{m_PW0Z9YqLOD`k<!(=!wr(>rcPIC$4S~8VxvG+%D{uMjS_2hOwtE`{&-VjN)AO>
zT<I9YQVZJBK?#3K$0EjNm9n|6D4;K%MKs`6<m)H&iOc{uj;_E!idumZw-$9*u3*eA
zTV|60)SZ(K0pi7YlMKSZ5GLrp&n|-Z9&pB2_=A;>W-OC#Ix8aQfXD<uqdrRCDF$GB
zQ!*zo9=X=zv**$^waxUP+@SmLx*S%$pq?n61C=Vel3k;%YjHLtNIMdiz-TJu^hjg?
zwF#~3-FwOI#gAP^elDb6$PX|elEn|@4aM6!EZ6!|#;(f7$X<E%#<O5PQ+gA=Gk(DF
zJk~v_KA2HH@zunk+=;1-aU0<ARs`lzTBn2xFq+TE_XQgAmuzzL-042RWFSj&DbYv2
zy;fTMCLM-X99`Dl?05GDR9R1;DZEbaeB4b^dZ|f&#$^3bRc9=l>_l65cfN$SlA|VR
z^Hf3K5Q$-Xk+_)C0R6FzrHLtiKdUd|=5l>V@#)8*?=B3F$tG90H?yNZG$EgYitXVO
zr!)M{Cx3PSG1b>w)a6pME}KE8lc$Y|YZF0;0Rk27DTLR}4()dSjSnn;k-w+<B+|#e
z2A3E4=<n;+xeTAI9R8|y11LLl%}1@A`%uI48a%Ex@<(+-H{N=quab%CMF05lqG*J}
zVloSJ|7qo>?0Av#LguHd)`Y-zy8(OOIP6y5s|!ctejMHHf;Nd`zqNUQi|b>)xdHTE
zwKYwDfB!c(z;Pk6c-?TYM8idm-9#M0@6sC&lBO+f&tr%N)MR9?1AJSek1y8To?xQh
zgLGc1!*DibdQ^e^*LD5q;X=jQ$4~;!%G~6rg|95!`Mp`_q6hBDe2Wny?pLSG8zXsf
zs+Eq24V}9v@={;;QD$>8UpF!wtzHP2&)Lc77m<;Q!Z*545b~iN^iwh30-oQ?l2E7i
z*H_c%1fhO@JIvx$d&~LWzqUy{<MpW+KgC<Nc1p)Fc7txtn4_rj8-5g~CX_*WY?B}z
z0)NMDrlKij-3y}r+#Kt34p{50=VTpFCJ0qpv|Om#z);oeT3XP0?rzUgme_7U#prmV
zVs(sQH8U<N<z>&GlRpb$KJJ7#P22>_%!ObHTRUUX9Ao7P!8fcQqz6v~2uKKCJQhgF
zC^OP+)V5h!Mz1bj`+7pZ)T5G`T*K}EXE5^#o|Wf8V|R?`(ye%!T%8BlQS!?lxHO0S
zhn<-(AIMGPIc$`pbQsMK1hC=Qa1gf=Lw;PcCL7!vqSjXdaXAltHJq@H+`U36C#pMo
z=TjW>Di^6=Os69eCT2z}r5DvNu@8Dfh<sfM_+*8MM*hO*zS#-UvdQNaryP*tsmzYD
zTI8rBQYqwZfZ{sfVSC3p?wJKqe*gY!gVi<;*<`j{N@?GAU0@jv;63L-QG>g?qO;-k
zb=+YyXEL)49+$@h<VUmhZp&+F*=`P>OlY9)^sNoQSpc>a6!JWuyL28#y#r$%=`fki
z(}qa;PR7Nysz=EL>KS5EL4j}an3bEq4ZlL1WolUOcI5`!WX2?a$eSfO4LX~m&50bk
ztfp~R)t6ByZRhE0<H78dfnU5;Bx9R-zDHF9zkfv;`gcd($A+Ka2R{qd`k7Bzy$8F>
z@O;5pXhf{(d!bKx8W=KyNFpCHW3R}YH#LyikzZ=^U?So`ib)jL-qe`SAALAaRi5Ei
zsI`gh=vWehLk?kz=bw1mZwDbWpJek6w%k9D#8g55sik8_98GPFgr?w}KUuGWg&Xz5
zI51iAGkgo14XbnS?nK#G4(-ThR2f2QS$2S>J_r1s9AfQ;QP%`bJLRgjOp)6>&)+lY
zUn|JJ*O4QLS~$X(5g5D3R$>sFxexyNec^nE#c#ew&P`r|y_O4Xjp^pEC6j}Km~EWn
z76{)Wns@GoM9kW*bU%S&>7l#HkP`>m?2kgeWlMg;f%Xf!o_Pw_&oNSuzfoXI(p}rJ
zbNM~W|25YCewAc{+i>;ITGI|85u7dC^sg>d&ikH(i&O+%c3z!92RhMcF0VmnbdfJ&
z-**z(&2slo-%5u-oM`(O#j0QB3;SMb{1n4Oawv^TIC@3)tN9@p_pHBq5YArAe_fZq
zu8t(>7J9WMaTF)3K7?*5gwGk3Q3tBF3e&Zwn3Kym4YMPAj7Cfjc+g)~`;u~w9{Jjz
znkRE3$ajJ1um|j`Nh=9<qm!}?;i@t0!c<J5YRHzoQl}{pe$i;6pGp6K6vYw~uf6eN
zm7ohyeluW?WqmEI-`t;fCnmgeyJf6%FI4J3-B4`_Uns4RwB=Z(761ESe@6as>l^g1
z<;-6fYeRUx*55q41H~5QKY#!CtogeqNxefvKlvE8yI@Zv{T*ull>qzqtD!60GfK7_
zidB@TKi9qge(&$!h1$u4gjtvPkar=!kLs_?$G=`#`5!!qO1Q;1Lijr?@~`)Pcl8qb
zSJDKV)JIMtzZYi_50K#D;U&WexmoA?tEv9$OsZLs&gbH%Rtx|0g`^gULhkwRGX0eb
zG?Wil`{*W0Yi{p2I5<=?GBOOo;>~vcr+2w}a@l{KiV!yGylRc@`Ut&s8dUsu8{W={
zTDA5psiXNL$G~YM=?(X2v3{etm>I-Ho=}f*$=}EL*Yhwh^NBdBUrSB;_kTyUA&I?y
z-2>>3E9(Q9wqV~)BqXFr5NDXZOixd@-Jchp00bTE?A9rof364k#XAcNbb`Gxq3}On
z6of>`V=p;cs7(jzTTXS-fnW*0Fj(tgrmdSTNAx7h65{;NhyOg7Ac~(^96?L1I{!Sk
z>X4scKW}KOq}>+4Tt82yLXv)wKNYgT`QMlQ6EC<(yL`^#zuOjq3nI5Zc^SSS_w0ou
z`M;0z0UEe1_&@DO{pX6iV|-H0>Z<j)KDW`GQIr4AcibNaIvV)ugP(d>|7md?sT>H9
zYLEF022J0C4AH;u2vQyJ^-FCn62C9U159g-A3F85UtYWu(Iw<{>|NuIUjEl{{@I4$
zeH%x5bpL5Xav($e8`xMk5k3m!0Xj&s{<*dO9>!!qJJCpCE&sG$is0>jao7b`fwZ2U
zo<3q6pi&rxjKgRcnzW|<-}epv{r!sYmYeE#dqS(E5p=4IVB2~(N)Rhv`rm?Rirf9%
zdbOH+_R;T8{rMPa(ZJn~ebi=jOF_IJ$id#k`6`Vs0pX)UtHzdU#z_Hqe1IC&?WDHM
z1Qz@7F>2NoF=pNTPL)&SXu%ZX?E@a*(r-mI5d5=)yk&$)UxyK1!sy&vz)n%*07u*n
z@6@jOUk|+ZmNd9W$Kt$di)Je=2y8qipFjl)11hY%jw<-eBcU!wI^hhIrhULr(FJ_R
zlub?F0GJx6CEQ;9)kwbZ&$&5WH;F_+I@JOVDxkjW#^;39QU3eB@P0)tgx2*6p?9Mm
zX}CaBRdtcD5QOQjPLkP)rA9q3(@X094{L87metmE4=bY5Eulzvr*wCRNQZ<V-Cfe4
zbayDyNOwthcQ;7ibP0Zoa~?gO=kfjh^?7-DZEtVfd#}CrT62y$#+cfmdxJ;R>CR+b
zVL_#s)Eg-9?~x#)sE8W|EwL1x9c0Ds=1#5<0Wegw0k)AEKTs=lTOX-4xY%z?52*cm
zRDU1%dXwmQ+mWMSU}R2mJM5~~7Mbf5gF#gMBx<i!;d*XCFMxJ^4K&`bx*SZOmp*^;
z<PH9S4I1p%)^h7rGM6#hDmxUoND1h!eQ?q((RAPoub3lG*suV4@j`pzDdj13o4SAR
zd@5AkP+aW&uW5=#0@ghN;oa~=Xp~1O%to?2>l1}Ii$eS7i$<`#<<aP0`L^}-^&h5+
zfhb?@(l`09Sw0fT53=gQgyXetVt{6p+3%@+<>(q79!?#vC;NRY@1q3<+<PeTm>or$
zO1XgILJUUmJ-t@#+EB0KD}Z`^HW{a~xjMn|+MEZ0mAhkQ1%FPydPSaQy^}yoivtWd
zJ(~WMC9qx}Cl@cQ5(7zIV!W<}druraJ-9Wn-&B&gXw4b<!98gk9F#lTohAmslTFg-
z7Fa4Ul~2LbDkyCTN4sr*|0D|R+IbDhu^^k6$?ms$Ge_RiAr(VKii(O_>iOfAgcJu3
z1|}Rp0Nuc#YHcV(Nc%isGw6J)EeO5Ta*?;lAsa3@SGB~uhis>a2b*5I{@WO>nmr0J
zARN40f1{-E!g3+9fP+2oZgfX{`1O8#mkDdI`uEP&6%0)wK9fqtB!3PNBbAR&U?M$l
zPUGCp=g%t_h#=_~pb>}N^HK)D^64<;zEyaja118eA*D3YDoZJc&}$}tYY4^l_hWkK
z$6H)#;C9zRBZf$q(`^%lp%Z}(v%pAIW?pLm(*r6_?n9!!hpn~ba;edPF3R;@^P3ON
zJTTYu#h{SC7Z*#Id6{HM7DS(c`n(z2-`<KWZa%VSk@pNVU5EnqwCW3SZ(E;&_cH>R
zy!Z6P{7{>>wlL@ntx}t$c*n<E46>e{vD{I+OF$D+Y_YQl3J#9eZqOdGciQN1%@PYU
zYNw2T#{J{G$@0{e!}Y9y`&b&82a^wye0{n@%`SyL_!axC&Un=DPKQvx5Q9p*FhazU
zx_3Nyj-e^!#=5Gnr+4B$kk-Wip)J1Y?eIrK6Iwfqg?cs7Fpt^1GOQuTukUUZ?@Cz}
zxV*S@fRGXcv|NG#Rr+DbJSW8(X_=au)m8#8EDRI_Ga2-Cz@~IU{*I6BuR_q@%jREy
z8jBIQMi7ZCNY`yyCMN*(EvhqEVoAX|q@5(1)eq`tu&|VyWR(Kpb%3g6=LsVOrjHGJ
z+t51~7%>0^PHv*O$nv_JyfvOE$UPFbh4s#QzFLe`E-+-n`N?D~M?n$n;!@E}`peD%
z$5&Reiwh0cB;4F{EL)dLGO#|5&+EsB7O^KpM28*rX1Z6}rPjVXpAXG|)ZBELih*GW
zp`>wn8Mee`wsP;Po;JT(`5iV)D#`_b3d}1=0-A8X1D;b)ilf8$aU!SNs&?_9VSl1=
zEE$)H&!f|dYNG>F`h%&G(Voor&V&Sl(W$JxPinP_UkmKr|G)^j@(KKAyfg`b0WCzv
zlcpal(8FNn=WHtX@6_lvkxF7Xx~Xv5eIroCa#t^ZyH6&nhsrHf;J7^|L8^Fuj5a>3
z{ZSaU;Q+j7HRf37Y!18EF0xgR?7hxmGTx(bFQa}q1>GO_r)h^L+2aroSQcV{(MerM
ztE(eufg=two6oQEW7UiO9#e7$6GlF3<#GTGRkn1ZAm8kn>aQUkeqZ4%_4R|aT2D6F
zU=2v2RKBzse4brz_}Bh*4^~qQ>LgqVLa1oBJ2mWr0Cu@(&~e8kBHMiSg(862XxmuK
zrsQ2yp7VLkZJWZuIQt9SYjg4)5>zstDbL01Au!|xEhvrv?=q3lMSHB3;G!>)RRaLL
z*}~DUNwdnMsa^@5)}qX945S!^2xWkkLa#%R#>c7JY+8}lj@5KR)7x9pIHC+J5mZqp
z`WE{ABI4qKX9T`Ol@{|ZPqsB>@mve)kX{9dkH2*Ofb{IeoZY0h7ZAsfxC)Y%D$;9K
zi@OpLxt1PY0H%|GB!=sBFBiIZA}UjrC34w@4D1i2=QF*)QTofK_c>l^I@kjQ*BcUa
z$Uo(3)|4*LU&U`i9dwdP#ZufN7L@eH6@_!y-VPn(a({b%Yi6$e#N*~vg=c^isWKdZ
zsND+%y?e8ZX5%txw`H&HOuJny2(O-QQnZv|4%W-2%z!2%kM}}?HfOR2KlEIm5t}Ac
zzLq&ngW<$|p3tnX_oWNawer)RUvUGHRqYPID%OA89$?WTRGH5z1KM=qjwyHz9x7im
zLJ0*lTD*xA2|NQk@tduYH;Q26YraN4kRaCEkx+zua=S!1MOs61k_7o2s`^6iOL8`A
zZleKyTJMz$-_KHU+sLtxe8BsVp3^cfMb*qB7}t*+cnv^%<v0)ZKDJW{wbuU${r-;a
z`L{vznHw*N;EhFOwovbUbUbK{_ZlY7W7$u8W)^M_>={FX$UUi*`khEPoF|C+PYJu>
zF~3uTF2EB+Ju+++Q4&#PYRlCq5R`p*!aW~k-m#2%?BLy2K%9w_j%U#RAO|6%1`UJG
zsD!!NGOkXwG6rFm0SmA>7K>zHqxH5k*jet}rx?bv6o@k(3(X@CF1uf!jjo_Pwelwv
z?f|kJr2{s0_Nl@jAL!32>rsAO=!d!i_Y!5Umhv>0Z3)u6ib=t5fN-2E*fHPgv$rYs
zMYUw^X%gBkAnN3>4gwG2J%_YvBbWj}Ku+5CX`Dh&WrbECHpxK6QQ9NQWz7}3ul-3}
z@7@7VpuO|)M#TcYT>#rh)aT2vPf@Lf2ffRPl7KU6FG>WeMOe5EcFWafUjj8)`!X;Q
z2n~oe7q<|^oO&B?ujF}<_$CU}KBXnVW{Ab#QWu>}9z2;j<P|`8WQ5JF&-mz3^MpZY
zdmRgCc0dYTY|`}Qm<{`e4hR>T%9&t-!PVt&`0K!f#vtPdwpI)SBD95rW#Ez2a5~zQ
zamJmN^S0d6j>ZNJqKHXRer!}$aN2L@n5s~G2g(b34aG^Tq;RaenD~Ew=SmXLDYL!G
zZYUx1al{>fYU>2Pgmo8N*|}LcQNF5Jl~CNci!P?Vg&nVa153@+k}v$_we;CP!I|=c
zx?n7}@eCy7_+E%WJ<CLK1~mruBxpiZ)+Rn0YMFc=*4p~!3UTIoWWlfpMQ1tJkPXIw
ztnHbE`z|Jk&gh5lPQ?pcpob;z`L;2o8VW1Lk$;jx5lUM-3g~*&`~(vdbAwEDTk=%@
zXw9<XoPr&f+v%%P_Qfoo1=1jIUGp<kC~Pwj`6#0cwub;rD1=lrk(1<MX@JmVA-rz?
zY$KR6MUsI59UJ}EqoBT!f=XZ=!r-odc5c!WjZe!sQogE&h;x)!BOPVw8!3d)V7K)V
zY4z~~C*hVT`#UUsqCk88)bz1CF_C5`3ik5kb|xH(rmi@WpD$l==9i4ehmZdi#Q)5H
z6H(FwG9M`W(h*}|;2E(C(R<!juh9aAydyTD&G!q~-s9o22W<qaI4X4xv_%GV-;j%H
zsb1y1l@l*W;`8JM?!iH<PX@GDls}0gzEsNSq(f%NUs1oG>MU-8o<;~87L~$|nk(4o
zQ=apv8F{$@G9vtz6~Rd3X_3(2p<x>6dc2^0tFFpbKSw}yS=x4FIhK>b>SyGQn=kML
za6<L3-{eK3=7mDu&e7K!X3K`47g}!+A?Pg}G}R5Hv{l^HJfT#aiqMT9vJQG{GM-o1
zt{%+l&#|}iDL3rBjq}CI%$8<51X6wc^zaK#YstM1H&SA6dAQ{nZqHG^ipB_CH*kxg
zqs<y<2lxv@u2UBv$^C3P$u(XV|57rRCbukFAIjGhi+V$^`i)ewcv3PeE?e7QAjiMb
zle^>>13mC%jUxAW2+w^%#p`oV5%Ok;G(%K87vPDd4_W}`SosVJk!cl(G^vogjVe%#
z>$i9JWZy)=;(SaUb&i$QPu>nbk2gxXaT6FdtRJunu_Zu-d!DweO<=M@BZS?O7?SQc
z<RB-7<e41swvVKMankq(Q5VIur4>cugY?vkwnn%oRNvOm_hvUSZ9-5i^}FCw!(Zjd
z^JdV6?oDav^#{5+#S!RTGx>T6QOKIMdVED*sPXdRh(W=7>)d>G*$$g4&W(X?s|MS0
zpVREwrg2N(bOgmUnkstTqmA^4KOrcYydZ0RPbn-&a>lUW{uM!ioRd>MfNQnB$#-B#
z>OG7B-s)Y}2fBcDX>MD>2*LdDr+`uDkjNA^G>V@el~KuDMn->X9t%M@eF2C;*2u4o
z*plzRMS%6$jn%wW?Tn`%d^MVixd?N>MmPv6H)Dhyg&LiHrawSOdW+tfv^aVX?0f!i
z!-9i*Y4%<ykk!9i3XxuM5QUxJ_@Y%;p<;b`M5wIdM9?am8hpYTO2A>NieC0V%gWtC
z6K(<`bgF33mcEHpw8iz{Q&>lxGoE1Z_1SFqp&&96-D=tVes`7arfmMAmgD@J7(h~R
zwD(v-U<<3&u&5D9by~5`52GZwM1WQdi~;*{ab#BfS@}hWb9BejVGuJ_l-`*wJ*tIi
z)!I=fZz8KLX^>ZT?n{a?_mnX@;u-|BwXa-gu&!1c8QotH1#mVAX7&IPfwKl-+XYBw
zr5MW2Wr~<en^$RMogNYkgwco1f(<r%IySujdP2jpVuR21g=ET&lTtYMw-&$Sk!tI?
z;fKoPukPvK+P*6`Peu)Dz@k-`c2xU|pfG@)n#?*!w*2q3{^yF22cUsmhC~v4hz)QO
zi;jtJM*)2^Vkob^)2WvSBGKBzIlk!DWN>PIq;l~BS_HiXfpGo$z!Q>K=W$a_LUGms
zd=@lPooUs}?WBD5uA1vgK_*_&i8GL(S!I!8EIGl}M(Ff@g+>CMDK$E%?=nI>aJ8GF
z<~zvC3nQUw9K7VUV7z6|KuTmhY<{rd&Sa`Qmk@f^$YE0*xjMCj_EJ=pf%}?ZYJD(m
z5pJ>)zS=MqWZ^l!)L$5mK}zHd8=Ix$;z3+i%`sbQJW6I^q@C!_U(9llmn+qOP`$?U
zSD78%z_UsN=>5iBcikO!K&})0)>+nObKp~JCE*vr%qADsi5+*j{ikQ{#nOM+iAcgZ
zp;wUJNTpm_T&NLLPa`fwILL{*CN%_G9ZYIJ(<>TT2eEv<?+feY9<t>?9+oE(dfbSc
zbGijlh1v~0dHWN47F7oLS@#LQ!Qfj=mwv|Vm3EhGv<@XefO>VlzhETpJ?;y;TEVsj
z+7uenK4gT~_GNH-(qSaAj1NG7pd=9MDrq}ZImv{CUjX~Xw@CKe)kcMlZX9$4xTy}^
zj7}9#pE0C2J<&UeE}Tyl&H<U3-3STugq!2;l)|x(*glxV#(AT=uC4y;gOhiK*9K}j
zWT7$w=thtX#P_mX(y11Qr=EYmgxA(H0Fmt{Y~vTD0Cdo5tBKl32K0Yqmp3?a-A@f^
z|3fPHFK{&z>As6NRVYd~$_u!|H-Is51U%=yK^Cu0pLN|OE(w+BK3ps;N`6dX(coQD
zLBiuEDO9ge%&70DjW7Y^#MpO_io}!AVM>rv?E!`q&UYJ63?VQB!8_V8=MIB<wmmUX
zC`?N#SXc`-{a=?m9ipj~zs)!r%Fmf(fmK=>X9w*MvyCG)A0Mz5Jd}OTwLk_?p_sTu
zCV`_^P?3adQ*bhDshncMoh|eG0bYFVoh;uUZ9$7Unf!EY-JN)@(kOU*p0`kY-9ddD
zh)-FHC+>QJz7o|v-{+ZNMXRib2-3%lyVQI&MbR_TL%?YTzg{VyDMBe=_?Nt1F@~vF
ztamOu6ZeI1TFj}c6))-RQNmh4%FTwpu0Mgd)S44hf42YRdx@j3IUqgGdLyhrz87dW
zB$k5=ruq2g%i7LQVqxOq;?C<^@fv*e2A>07<txiH86EaF>9xbfgfx~6e79&D0|=oj
zqD1#o?WmG}BRv1Xng~ShRyMc02yNxD?~CN_sn)jpIzsUGQBDtW+Q@)^lgx|d?z3B9
zVLG&&bH)i1?zp(eDTdaqAnlDYO5SMS8FJ14Ax#y2WditUXYv`+G)A1PgD|y1<#SHG
z(I6fUmqWpwW376$uUO)tWSN}X_828;Wk^{bFu*a0iKExijgcWF{f<SWn$E+&EEBjH
z0MT~iHV2AX<qpfyM`3cdk4QRJaK+s~(!!R&^yd9m?9w?XKx}O=*1jDkO4GL@`5Mot
zuk`3hQ9and_(NE>Od^ZgS4JMQsp92rp3A8oUnIGgbybvY3cH`>3FFB1O%7l)&Ix<a
z72D)MIVYRfyoh!=yRm2+#mv=z&otx;zB>w7&}1>CtOiT*#Yk^OE=_*S{%n9aSmPw~
z$G4pc3SnCLJAitKg#7C_zCEb|3kwdnQ?bajL3Jh7mnVRqP$<F<qnQfAK(eAH-mx-u
zz-%K!Czma+CzE*$69kaZ2|;5`tzb&^#d!2?E&}Xn#7W3kT!z=_XPM<y)904-v)4-q
zygH9`9}{IqJtjOu^eVPo^sv~pN@ON#?x3u*lf0Bm;e2H{ki1n%c7}|^9%cn%7bvg6
zZhvG?sqn6@fg$Y|Acl~ht#|e`Ih@oSOuqEY`gR)P{0Q-BCJ$-KhOaoM%gL;^cA>2M
zUQ}mC#~a)#BYZY@J-yw%{Xr}v7bF}eVXH@<vX?o8d|xbIrS9cgH#i<>-+bxx8xjh%
z3;NLX{pf>>5nV?e!h(dpt}d7K@E+G^(`uOx_<x}8f8ru93{*(ICdZgozvQqT+wE(o
zXDi&z)GB(=E05Zq>VT-4<e-U9luan`4%o88F``+Kt^*b1JgcdBi-a=w{#WVz_d&87
znaqw#i6V!FmcDyTFoqdqh*J6#504PiA&uPXUdufz?D|<mRMdsmbWlF@_!hVtt&ewV
zM_}BZS!W^0O(=f$W;q7pvJdpb<0ov3Q$~$$mv(3bfi+vYP8N_nTIGVAWNv3kzVnNP
zs*@@7fh(4bO($g3NF-N)N}LqIN8<xEt{drHzm-o>e0%eCV#x#3ZK#i&{39aB3oD{3
z<hgxD^h2CtjnH8YRG}`IKm4Jb^^R~BFWP!z1(@Y=n?yMTL6mKgwDrUUFG^fpNF8vm
znu(ECP<gkEs|S5c9cNoB_PU+i_Lx6^N8JdOQ$!R@k4jG*bB-LrA4JrJTo_>ZVCBE`
zhm1|(x2eE1F%a9i48SAL@VK72C}(fmyA(v^J=-w&-{grTyc<S7yw3oc<<mS8S}3+g
zsX;E~5!VOQZ}Zm=?I(=W?I&SIv;P?88OVT2L)nI{TveUuhBbEmNb<m>bXAB|#*XA2
zbnoJhEAmcyCjc40@yqq{%3t9W2Gqtm1Ift8&pcjkZ%o9kOb=ECh^lBKi1UrIZyqsS
zz!m1jMwN=dZEFo^W08>$Y7MOqDT-t&_`TNBZrBVr<J$Fr4ry@jUuZ2o9b%lX;@{`r
zQY?B;hab#M`@>>BzxVrZbt7X5Pzr?mmdar(>aahTYXmssws3|$^+KQrB`G_;Es$m>
zoRgJ(O<9J4N_I||^9+_tIxFK0V^t^Z<k*P4M**L{N(=C%xp&Z#adfm5CgX}m%vf<>
zzw#d*3zgCiZ=w;a%^a=wKJ4CoYb-?I7<8nVuJ@p*TYvm=0Y@#oPp#P303Ief{y2O6
zsOF{iwOrwQ*Q5#17U4e6{DzPitw8CU7#kZgpS)ULx!3RF2&M%q92+K5=~a-V!V&0_
zb@t8Gg~GVpnBIFEnD9^x2>o1wQ0VW9LMuT{sCb^T(`BppF%{|nW#BWNw<2qp)$zQM
zfk=GWTWsR15#k8_3x7_zSAX3bL%msH0ccNlP~|{9(FMpU1_Q|)+U}|mHc;7)MKKSK
z$u-bpjAyl?sm!#D#sv2^d82kYY`V9!^55*73o&iKsG<Moh3-ND`-fp*=U16uJG=o2
zR7pt*8Xg{90Mhf3plT2|(E|R~h;|et-uLxgtz){>&uAs<%(f2OSsaNrQBOvrcHAej
zf6@LV;8i!&Z;9wvM45NqYlt@&)xS#SUSnj%VA;Rpa88zkLQSONXUT4Wgk{X;DHlo#
zjC??&{#O}=Ko`tTbi+2hUvpk9kY8Flc(BfIat%}$NC^n|;V|t;F%PFX&{@~0)I}v(
z>%?rHP}1Hy!%6n}Q3Ub2D-l)E#dhuWuH|tq4#z#ok(Yy0wxDtL$;)BJwC$;Zq}V8i
zaNtzVO@?DkTuYR2?vd)$Bt~W%kb-`75(9WMWStW~C^y4)C9L+jNvS25^Jq!rawQ|n
z<SA?1&N7ofOi?cPW=YwN!J4{#(Ob`a8}eeJ;&7$!6}PZme9btKjmf!5(9Ga*hq<`w
zuaZ>P%H6;pV!f;SRgVmJf`XY8jigs~Yk9L`)OW$tYwsi)6fs}V_Eb~mJ%zx2+lF7M
z{uM=$1B_k9d1F?)xGOPq)5@vExVOPnIqKp2gfr_P%EwgqOJ+V<!lU&~(dr~@E9Py@
z+bpG7t_`iE?aC-m(<e1WAIxbS^yeu(3@o`6GTAxQ9bHf)+C`h!lqX%F+zUtK7HcHZ
zKD~bl_cFX(=uN`U!V*F6T>*Gq=RVZ0T|gYci`)4~d}pHYVYm5f5Mzk<6+f#D!(90i
z6rrMDL~+pZ+~#cQ#o=I#+!3^&Ny)&$Q{=&Ch2yLG^PyMqAB@(OrX*`zPTylvJg~tE
z7tE0PJd*MNw_SR$2F-R4KVD_~<h$bc(z;uh4`mdCyIS<OUYD8jF^08`eKK-gpGP~_
zE;>BxvkK0>z3tZd68ojIA$7V+fev?(z6LHXwq9~bxFzu&w_ky^5wc}mmpPp^T8v*l
z%Vf9X9X~evyrAqV!^&ins%j@%Q?tQk+`779qU1v%(}dWxwVv`nh&2D7%Be%2rLba_
zrsd$U=xDsWye4EsL_|Ox-&!wvJiHsuFTbLEA4WU8gKJ2s#g&2I8QMjCc!o_wkEE@}
ze6fj4MPEyI-ebB{sy~}gae3@XOu!q{^%8bcg^aOOQzvbeZzG*(#OFVF6p-i>OzdIh
zbvI76lM948mLEFn^$M~L_CfW`4hKdID|EgYRdJtdDI>IrJ(!a6vlLUeC4!#C^Phh^
zBu%R>Sd5r-6+2E}0e{n!MtwUeyaYcSSGd)rRjuryUaO#^W5e#SG%K>Rmi;EFex?eK
zlMFc|Eo(<#iHZC#wbtKjLgwT9lb(m!osyb9Kj*?bXbS=;6e6&p(+UU(Sm>>R=JIcV
zO&;3w=k5>YWsWMJsupLmLUuFul&3N1aQO&~xa;o^D}T8et%V=3oa23yLn`_aZ6V-#
z!y{|<@RQR`s4_>5-!8|o`0{q)iPi2Xo#@9Su-e)foYKrA$%zs3Zo{1tuf-b4C{*4+
zYLl>o9wkTAT%RMyh^;B+FP>5fcWOo)O9r-e?muxRJ<EF)R+`;DX|d5d_jiT(ui~XR
zGAJrYBlrAs8%zGg?}k)KO1u~nKy|!3jy?@(63}R>xq(cY2{-`OSS`08I_gMFLoW5N
z3z-S5U#vDdr}b`Wna)FtW?wEv!1%Bke6D+xo>_E?tbsatDX9`-DrHD1m-~LA3-|KF
zb{TacYf&K});5ik>r5xwxSXr+%p`LJF&wm!G?qLn{T;0cr@5>6`-S-YTK`I+yudav
zUMu72>FMrou-+5%a8qIdXpos~H>C4<m@$`(Rr9)2I59X?B3|cSrBh?z==O_E_9-k+
z@YVY9`gmcUM+d?S<&^R4YN)t;=WmINep+h$Oh_@occR?YLoclB7O~E0B|O1@@z?4K
z4vfXYhWoT-eeBnV2?6&?O@15?@+lUmGE%A*r+<CP<hVa)0}#(X+bBFoG~4Cig6BV~
zm3FV*BiZ_Q64Qt^engwwK!r82PTRd&caJf?)-g5UU#M=QhuM;)=(`;0Zk?D~!weQ9
z>qwhx)EvN{#X3;RK5ugto8ckXrxR}H3Jv*ndT@|?#|PTBTBG^(Az+Sxy|0`gXck}*
zIiQsU-^)eklZ4gMQ%@hIZ!RyopJ~2&KVJ9h{lwe+2Dq}zP5Fe<>wE*Y52w@N_pAl{
zoS)UD`!+xL;igYFy8Empo6(?=xAIobHesnsR>`Mev?qVm*Mgiq@cFOD0S**}-$|G&
z`iA-ZqV|+N^-AW@T5hPe^tCp6Qs=^|{1M44V!kOfD&|vN50D)j5euf;KA|?%t+v^!
zf6@^`Ge^lv((LsRlWN^I&lZ)duyT&HM`OJWQ;)8eo7gtLZ*gKeD(Ly{Ff#YQ>Y9gO
z^~K@Cul%(x88AXQG!Gw7Jb;4A)DsC*ruz^W$k0x6{@ng`nf)LnwLA$G2Ar7OSxTjZ
zttRHCl$2&cL@Z@UUvnjE$4s(HV(ei(lfJ&D+MpE6E)itz<c+MU=$_*|Jd;(NnOnfB
ze6Ua*eVxr=fklsTuk?OC{m!qO7AMF@@6yf`k6<g~gkIqL&yH_k|5rKB9{TEb`S4;b
zN=_08@xY{|_O>Mk3edayt74^@+SXLbC+J6ywi^``6iPv5Q@X!!hWJw^aQ-8`GBZdP
z%S6LJjw>QwpW!QPtrqd)I!NGY4rxtre-=|b`D*e>p?%a-*Dl)VXM%6K%m*db>mKJ8
z%;&cUhFU~v)^!!u(;q+b+Ya9bo5|Wrx0S--@(O;unBJ#|bxl8we4eH6oq{pXcKQ}X
zOc!a4&b~zTZpv<{5yWHWsOnJJyQ>Luo<$3N$f~BbH#~5m96zCR=X*%aI)ayKglsW>
z+@fFl`m?{{aV|2+#&;YJNA^DRf*J~p8R-DG>&F}8%R5+dxY1L+STf8%C3b&Nhs>bA
zQ>h@m^8E1WR{(DC1}ctDfxY=SfZ%fMr5x!6Ra-{~sJ*{jKiL|EJ!^>I8gttgVngnv
zmb}-8mkvE`s#b1o8G!j?%}JIda$!k70S&Q;!fU|xdsfkP7m$?|TBL&Y(^kqS&eQJ1
zWsa$)iT^u`^6DXDWRaPSZLXhylk5x+C{r}*2^#?@^J`hDTQ*kT=i7;M)8qHP5Ep~-
z0}J=Qhui|qz1^W-5@_o@e{|&r+5dXoNWw{BhlH4<cpVm4{`0)6(bEGAaKqBm2~v2t
zG+vxD7>uqiHTxWa-rn%sB+PZ|T`Iyy(Rl_zUel$IRrN@Gd7Yl(X+jE#{h6;{bZyO>
zKGY7GwyhSHt~!jP@9r*sLUq4ihidLBauqkH-etWMSA$LNC^nbwehvIvWbx6<Z?!dO
z?pN_OV>e4r)Y9Fw=8;n)T>4FUh8*nnaQ9-25o?v-ZLW6j^+vN95bwDMnOsjDi=B&K
zl;ZSAji~wh$C2-|6<dX`b?J<)^O$TPEoK~?&X6|!^M2n&H~|K+o)2MuGQNbr5pLaJ
zt_`N?K)RDu{FbN=8oRp0Ih>C&kyg+4Q))~Jq&KMWh&bS*hjd4<LJ#7=2`Q1=+Wf9s
zdl|#v>IPnssD@WOQ!7F3NQuP^uPQ#<N9cMfPL~2Vc|DF(fnM^q@?A2gH14LdHm9xh
zfZsu6Tc}Li$?k7tFtyZs54&l8z@hwv=;g!LxPIR^?(l67Xf#>#cn{ZZ8)_i(SM&Dq
zS-&{c2U}S1j?E83LP7u;6Xz=BmTG%mous|FcGzs4iK=Y|=!p~{k(H}-gJzYa?3Oz&
zQ!nLsatEN{!$I5ZF2J+-(uqkz%b^qZY~|xWGvW7>hyP7eqhs~A-x^Va!=$0WqSLIV
z^Cn^Pb2zxonJqM%uVo#F?tY9{tz$$f5<iQj<F;HW>!Mw5xu{LAQfd&iLnNNXx_M&I
zUGdL@_&NM{pAdWofpS*#5+WzwrtWlmS8p7>l(4WbFxDj>--lU9E7tE^K}wRV=(Y?G
z8u2+s^!A?p6=eSkRR1~vxrhO#J1Q_$G@8Ez0FJ?0m%@a-3C4RYdb<1fsnD}aK@~Z(
zBbsdu*SP=E-?v5PZ$Z_s%;@g}17oP^(vx|k<)k9OX|g{Dw5*Dr+*fbM^FFhVgE1?#
zQKrsh-7M&cI{(GF{C&u*R>3UGY-R3?rA>;a(^7Z$HUOBT&B-@~0Bz%!F+8pgcO-zd
z{v<Jw?veuLljMmYL=wD7Kz1-)=UBv>G%~sL?p?K5ljjc)o%w<*kU>c#Fg2H&&pH6B
zwBT0<`SO5%Iq!Q+41|W?rf31*=WgAlRLTiI`^XJwJNixKIlv04N-0-S<m0DL<ID@s
z>8Y=;oY;zuApC(`Q(84P?F;RN$ruBGXh>BfPudJ<d9!43bXqn^AO2jtB?-rYY0Fhi
zShi4fLPmL@<FZAXt5WoZAD8J-GwjE^=1;4nvbT`d^IA(c-NBbx-_x_zLA?OjSl1b<
zR~<k-gcDEWrI!TB`P{Z#8ZYf#FVF#$y@}U#{73PCxdb%0SzD0hRwjpCb`HC5;kl8A
zt9+4w52ijz;RYNpCRq1Dh4=J|Q!bU8$)M{s?N_f5Mu=*O-e*wU7cd%nae8JM=uiwG
zJEv0tn*`8?bjx{9-zsz+7-XyiTMqQ-5LWXU;gYRS^yG54%D`PqKe6CIxlmnVFm-Te
z2S^Adfx`xVe!up+sq2*w4Gq}*s%>R}A64#H)dRzKFj-VIR=9I(!EZHRZd_J>o_d`c
z)lwtq2Y1v%O}_&zc6N^By%xrIyXMq1(V_b9dHFLN_j(q5PpHxy*{m%P6_8wb*cj3J
zQC62w??^a#4UOi$s_uK<DH@Mw{fc-Ywa=J0c<6zDE1?n+_K;4IWl|57VDRotMSdK1
z5E2N=ne^H;dS;o5#_>(tjSRyeC^r|Yu$)qrxy-9p^FZP?Z?V0*=m(F5>BQHvq+nci
z$1MeX;D$Ew6R&S7Wri|5mO$QGpgUdK9+Z*l%9yfyI$g%KNX(Ro{Ol|XoP>iQ9nhZz
z`AnI!Z(J`Rx{^6(9&7{z6M3&*0v}6@1G=E~xk_`5o8To<6D(pz9Bke*RmZK_Nz#s5
z+VEibIekDqTnD1Fmn-IS&2>ITeiac*F!;9n+3qe*W-m;}<WD{M@2K~wZbz^+z&8jQ
zujaR4{`VmirvlXoZQ_Y0PftMX$}U<;sJyEeRGQ^t!X~kreran^R4?#mA8WYQmsrQO
z^n{VS06engncCh=(U9$tESYDtsRCxMJB7<5`IGP#y7gck7}Fym3z%F1Gi*FHZcF|c
z%o9@qCI$w1XNOQ_Z7+8cz}@aYj>Y6SsM*A$z17{lI7E*oU$w@t59DmbclkyrrGx+v
zA9ZKfDx1np*`LTdZjQo1XrP+{TEoK&(U=Z@ta+tfqUZO@f9e!yP+-oWea_dKe$Xi`
z&m@i4_kWg%>QLwQdkbsX*6b6Y3S^b?r3Ml_i1k`nG#4r@EtUE9NwDnRe9*n1BK1*N
z%F(*S@nB(l9%fj7FolaA6kV#m&Q<{S&-N{scq(_zY25?lNo2n7;^$J_n~!M;j|TaE
zM5lSC(%s(P0?IaZ%|YX}od&?tPMLkG%xr+0m_=D?Rl);7;x-Ydb4+?|L6z%kBgbP|
zTE)yjG!cATbXD681SLU3RN4W0HE&0{om5m4)uW_;GQ@wDbArRWB84*Kk*^U6Ld!ya
z5mGD!V&&f8e2htp*6f3NLy$KQ{Lv+&ZIECmd?F7Y>;O9;`A~dESRX(Nj{&xtc~*O2
z71(}|tvfN{qUQnJj}9~*7w%6gf>RLSdRrn`$YwT0;Q1X`2H3Tfp?_4Yb1*+m1tp}M
zGUTwg*289Ck$z5vaRY*fMHFFOm=q6S1Y?iG2lNu@4R`@a?ppBWpy(#=ojG0rPgcfq
zR$<uxG`~cns;=T&09>G{C`mgjI~ddRBQRl&J5cT|KTkwMMLKqQDm(<T5H;O3RmX{f
z>Gz9uS03TMk5YX%G-V(@Y!nEBtb$klIEhZ8z>+TpFn#0?YJhgl<cCgI`v)x6RbO^u
zJG>QYGtjw?$$EvYHW(jB@SAe%Kd#+gYkf2TC9`PNhA9&{$qZn?5sQt3j{fOjZ>mIJ
zQW!A;jr4tfrF!V7K(X7&u-F~qvfdT(sZ=FJ2JYZ)AEH=h;Rh7I-18deW5Z64JMsDN
z+tAPB)VpUx1or#lYU!jG{b<C6lCQ8?O-@+v56Ka1XI9Fja!;cX_s>Dz0<wROeTV*f
zPezu+(dM9~-{cpyvI+15NO=ry7aB)E_w<b_P*ws}fsm|asZa$FIXSGB-Zge02UZO7
zEsoZn(eQus7Lab^!7fV+yS&;Fnx7eZjQ0_M@EO4EmevJ^8}p?`I4;u~t5h({b<2%(
z8n2Ku$wGcUXuO~g8;SU|&F`BK1B+fJ&WB8)(QLWN<-VNOsrBB~dO;b!Y|Cp`Xlu08
zPbkbG%ec}yM!Jc-L6;VzSrz-3&s;?S^NBj<q$`FS&`w1-=e~owx@~fnRNR2No$x9s
zN3EZQ3W&RJBxJ{^CTQ^#AxX+-5p2Ok#Qbs0wC~1@gw<rM_$!TC=@`{4ytsq6FTL>_
z0EpNoKTZ7rQS>z;Yv~A?_G9vuBPL<vWhT;fbKf<G`1({446wRwrc~LJnG~zl+8Ngq
z5&Gr<R`^zKczTBggu$<Q6a~*k_EDH*oyzBzX=@V#kP}iXqVhSI$m)YTRG41hlkGhQ
z<!)Dvctkac0N65R%L!l^(OseFt$?=~y`89ym3EEIXN_-mHU~JziOlST{7)H2`l>*E
zmsE0M0(kNbxM9(5b9SN=?vo8i7z>e|d)_7#37wT0oljniJ^!~1?AL3IM#L|mi0b{A
z06}+@%s^cwa}?RB2M}imHce2zppco$$-XQz)QmTep~~=<b9=-{OX-hdMRF)G#UkAO
z{t5LqGFlqHlXvyQqL$;$!8)1Qk0S6pF6%u%3Ya4633hQesG};zIYQtXh2?1ig4ZB$
z?G1_N_fKIKU-&aWM=ynY(nCJhUidt<%Chm&9|<dfjjCl{i}0X9Y0A+T1T*v^YL(Ql
z@(c>GFe_WZ0|73T$7m$YgpL+*#ctn*1Y8~S>j5{AR{SH>!Q+AP%wL(<zoI*SLFnXB
zRB{%osEVZG6<;P|qs&>+BUF79#bx8o69IhR`>y^^lS&#J30VM7Tk1}}E>tc9!*<oW
z^99JSnRHv6Qa(@f2JpaNdj4pKjl{OxfE?FZYja(5Ew@dMdEM^;g{3`qG@66CnwP2W
zXB_sS>ooKSG9=3av3r2fZIZ##+>Oggusa`L<ap1!D!ZmM`Fd*`0)ZJcbVo#;=YF|*
zvpw~H%u15i#Qew-4<Eov15mO+Bn=SmzWI{85DlVgsq62yn$Q>YFM;5ltdklGle%(6
zmJnPsA#BR61UHSnfT@5CwLZqP6)zaM!!@Bl`!|Z_FqVcQKfm&?C_hB;z3`K_)kpbK
z?CIo8Hm)(+=XHR~0ks>a%;D*wVuPLElCgv~jr&yTmArg7>D6;?>`hdsrLO|isK}+s
zLUz*T58}Y~qU{;JR|jaAHo&fTheT2}AA}q>n<-jv0KrY_XawRRtoRI@n@^?`?^^gx
z5A-a({WRXp{?2pJGsk)?1|7X@i#6n*vC_ZQ2*s$?)|%sHNwRw@Su)nJ9O0}}-2~XY
zKfc?J00~P>b>^4xcBeqX^6BnfBNWbxq*}v%&4lFsic0|Y#mCe?(rxbmq28PK>J;U4
zBRTJ`h0pfE!;nbhbuWCiOW5DlW7bj%s1?Sij1Qx*A8+asxmHBI0>QJhA#V`}@i6@E
z$rd|uBOtc2BSrz57W>33HDUUdi>ypyb(_}7Vx@T!tJ%&3t@5-1auwA``nzLRkR?%o
zwrx6%H)oy`aNSzZyfaHc0WtC8DI&7Gt7?_;S6)3mP4Choqc`X8=NeqAaC$8NeD8sA
zK#AdJbh^!MT?F<k+Cdhs8sO0r2guG+cYJK8!xiPILlU3!=Yk15dl><ECj~b3qHpQy
zS@s^4yam(^<yWez@vk~Kg2|+qeX{^tQ`J1{URbq6RHH)6gaL2@Ak5-ywhZ(}C-*4i
zqi>v=&F34?6OL!^+kZG+Zu~O8NQ;3rMx(MV$h9>9d32L3@r9cZgBzedj{xiCX0>Rt
zXpfx<cCTWO8<#V}S_ITF3A5wv94gUZr{4Uh+9klfscai4!i{27inR4(Tu+=j6oz&I
zMr4RE0IZd>$N4f^9w5(ITJH~KG^jY%F(hgZN^_G(nLYYwp07+xTO<ncSc?!-a<H6K
zi%5OOkTJL38^GQ;yEjwO@M0|wY+B#c6LkK#jFX`7-QQ$iz34Qkod6nq&U{9}bX0Fn
zn>84<dZ!@Cxl(!Og;z=|s<zZMu-u(MM`^_P4#g+jB-r)G4dc<ciVi%J5^?wAHu2SU
zBSeS-|I}GL<AL!(H6U$B0U1H2R-J=#H3Udn)`6zCF68#GGc7v(q*xnZD=G$ngh>T|
z#uW2*BN=J45$F(Thmp;LSV^e8u!zr~2W94FlR0dmB@_runx!z7YZ>ZZPXbyi3-&2U
zfIH)o2-mRBp_iXz%-&Ia`_lMyNQKmj9=5+QSBDpj)n(ThCTa3w2)Z7OBCjHF!`9n~
zrsUgZ(1j`K3N=4ltxRuynA%xwy=u_xec6L<Q|D2M!r$*?@Te+)^%Ia=8Kwk1cfF(D
zJiRU&c!5M%4oLn~B(;s&u-ci&oAg$y<28VeIX+Thsxp7khAx+5q$PfPbFOm-jBFhC
zG0SN@FzQb<kBL%`2ZRs6D}Tv3>i|60?Zq$Fdl_RlX}Jk+ZW@G^OZW^d#bWox@ZE)h
zLn!ienNbl2m6H5SrFk|QZH=$9YoM#*dB^P^AD&v+I~@>;sFW?3b1gDP1}xPBdWB_K
z81K`fcB#?FsSzkdgi9PaZJ$9Bwv`3M@_FH#!^%~lO^+~qC<@2np}jKx#B;#V7=SiM
zY*cnS>L!n&*x1uDI(R&61so5~sGegY5+Y4x%i(jloWyHzF-elI?Kz(9s^PF(g_GiX
z9JX)HL?N9Ha*wu}^V;hAiaTvyG6jYK?v%1Cr-{86!}eOCF(-dL3tkpTJMFk$+5)Pt
zT@{FY1wLZi?q}ebHZJeIw<QWW&(0O|guuhuAThJuG+r7;CaH#8rShar;-yh=S^HP3
z*Vw#axn>D0yQ7{Mx#~Sd(MCK(*FAOMvR?5mP%RN8rxd*D#FvxbG|(=uU3%V}5Nqwf
zNT<0e`VpxQG<&3`u94B?iv=6G1q(nO+izx?hR+6WegVmU?|^fv(AcHsuG%Q>fE~U=
z`sM5K-o@dnItB<$KAZc(w8SwYwFGm>jo7`*UNbFfu%LSdQ(AXsde!=%*z?DIr~_^}
zq0(?h{RKx1;$f_nXZ2Wn8KZ_szL!L5@3XOk&Hyz;hONjwLl;zum;g})%6fPdg$hZw
z3(345dzt60;KVAI9LlkP8Ox@`%w|XZY*hfILUA0Z^zcF;$$*-rqKLyF{OruM&(|f%
z^f&}z3iO4_;`cpf*)@VJ5o+s^T<L~@AlX<>;<#^jl`z>mX5Mz9oV*PO)+<XkW#i&|
z`19xHluw9Du$+!Oz{93uzJiX)d>eWuEy9!uVhYiDow>Sni}C(DA2I0O^=+O&#ZzlN
z13SC&Ba-=SbSe%;>m=X*1O51G=Y59oQuu;yKu1_G0c_Y}hkYj%p8A^Od9Rc%ikb*^
zIXE_Nn@5=dE6!Du2m@2_tsY{x*wTF%WIm_y6hO8v5n9~~D5F93Mmi9ki;EHuDq}_M
zL9{)>uu~^s2xaO-`soG0ATKB=cv3%A#8EbsThxH0?E$D`<Ak$7*lCS{x_6V(Q;ju;
z-c}BlpUXb0eGbe)AZsb5(yYmWE950bNl9sYJ!l<N<Dc{Fsk$0`8#_Hq#fFGr^1FMU
zq^bBSgp;oImEOz@5pI+(&fW(<=NibLS6bqMK|-21FfeJ*FtoU%1ZsMMT3Y?>;5)A0
z6LA8s0zm+>DLaoCyQR@LjL89xSf+|Vb!F7sgbt0R6J8kZ)3KM6p@`K~0Cz--B7re_
zEm&YSgF!g$frg6ug~!BQy43{Gt)*qbe?#W^wVvl+n_d?`bo?0E1D@b#&eR*Y!cKmQ
z!F{T7XhA-AJ#{N6`L^b2K5){PmK`+)$KrBm!ul3#_|_1sA^#r{?MULi!EkBQ7PZ$N
zzKmED^8AZi`|}Hg&1&}q{2N7*w}O~ogq)*Co=mliCnH}17hd?XH%8w&yZZkSJo0A|
z0(q(QF-6g02*C-~CPPd3>wwrp7*Lqf=?F_pFEd+3=mSepo-kWL1<V#Ttb9iu{Qh6M
z!e0^ge+~$kQI>Eb6P78D@P2;c2OW%M50|}c^{?RoLoXf<AR~0)Hl#nUk$-=fD*^`7
zBw~&G|M4AIG*H_oAaeNE)BJakB~A<KlP^DzY!d$a^WT32T+YL8Xw;IQhL!&cuK%Ot
zF+l~VQYYa+{*5T|6WjjJ_xZg+f<+ei@7mjc4U^&raH=t)Zs-5{{P(~9l)?VYb^kB`
z;p*U2S(p<4@N)k5%i#oosRK)-_xQg@|DRj;8Uxu8Q-!z<-v8q}(6I91(kQ50e;AdY
z1CWUcPL(SXdHnzQ4#{18);n<Ozm)0!0?jJ`8%&xuGCAN+c+B75BoMe`*8Kl5bs%!Z
zkGaD6ACb!c)Q0Z^Eh8=9gLI{Htylj3M1DU;0JrK7-DJrQ1>|cqz?Wk9S{uM}h*h2z
zzf2^4zo~c7r9}7r&5YW!QziCm0Bik9_KS7{6@ZBPNgUf}|9Kd{&rh$uJJ^52qcP!X
z-`m^!<mNe-1I^1ta?8IcRli@(-^Wbo;Hna~j14nfDM50u)|c>d@el~xONUa9mH#P#
z{(fCc9b{jbNuH<b0M6@YkkhC`Kmd~j%mf!Q;tuk_2NL4q9NjV0agyaW@<c>L(7Nr$
zx|H+O!VLhWkpytWDK9b}HwB>5%8n?Tj^z+KAFag#QCvG$C5W;TTLGCBpp6seA)w|V
z_4aMf#kEmfe^QlGMV-Ae;Qf~u=K;yIVa%Ri@YgKR-2n|3w?L=|uu0!6rfT3Uq>@TT
z58Z%7=i7uoJohIcEa(NbkG9--(|iABTK&2u0w1s#7`rk6okO^awzCLe&6(#v5fFz=
zm8`A-tAaQno~+0@8xlgUJ8c#LDyucn9zDwYA$)B`ds|x<$RO{m?rihrx<w?<;qDgz
z5hYY}p9P96pbSugJTMisKbTk`IiDMqskPt9+7S)LCPe1FNLR{{7x@1DyWKnpFX(_#
zfXxmYfR*la_7VW(fc{8~VA=<?!;RmMq`aJFL0p!r@Tt~<dG9r^L6@nvD?<vX>|}q4
zHwDE1EOk#E<QFLLeBU7t8g7B-WZ^*x5H6shprr2r%_lX8MJGOfY*<WSRv5{BDb_oS
zp3-b}@~x@@<+cqyObUPpv>k7otd_m&&lj*$lVGv`h&+2e3k7SCX&Ayn@F&rb5$%vv
zxe`!vxI^A0<GJ^z4YVe~f3EFzD8jbf#d39hEp^9~!gB@8*a;=_Yp&0(wDRfiY9}Ks
zh~lRa+S);>oVs~O%bw4DjvLP!zr*F^TShypt@)42bD#7LN*BG5Bny*l;W|}g(0?fI
z-3JF4HvrhiU}=A&1+|${xuRaf0Z^W#y-h&E@j_g9=#<QvkRk)dj+7!NTBQnrFg+TU
zh;bm8mjGkbFk>AC<dLx%LW|*`=cQ`}`DY^FYXCL)3Z?}-`si=pdR^v$(s1h>G)uVx
zdVb?epr>ufx&wg63e<!I1$(3b0R(zbZ}Q80Ppf^Iu!xBBsnH*0C--3A@h7)L`#JO9
zbG_ahj>UG~pW{%gwu-n5U-Lkrs9o4;etFg4u2k9dgE|&FD0omRmSz~r5Tvk~K-WTr
zF|G4KDvW1Bi%jlz!Z=ZQ{IgvV%&-TT95jqapl)%cjS4rHqafs71X1^m+w6)UHu(C^
zEA-m?wbOdf6Tn)mIFlC^=4@%;L2My}E(Dlz&+X0i`bLr^CWBW7f=}mSFb=apZ)_oe
zj%n|}aF$+>2uXtReFNUm+O$irhKGQ(0F<_^(iM17k(=@AX2IA&L!c$xWOwe%?25@x
z6~m?v10x`*H$dJ01_1twAU(Zv$~bWca$`w|*W+*C1%7jR^n~-|8aUmfS$S1aa?1hA
z=c4V5u+FNM%hgtPbiC@<r%}vC>6jD%%_3P|4v1mUY>{FRH46OloYStjBSSt<Dg2fo
z`L+|^bF3vx<FWRicZzp+Xq`X~Xi&Aj_t>)D<3_ubyS~zLk&fADKq)okfXk(9nbzfO
z+NjXVAlc|*SZr0H5OKK;VBBH#haK{?Eb}fqg-1<4+~byTf(+|79VO3QKp!K@`&3P-
zXTUvy%B(JJT{qA*h1cER?Wns`9pV!Y!#KVbESk)G2@C?!F;WO#Gy>n(365m;C}swR
z?DfmX0!VusZX!<Ko9p%gSUllcpjB5HM_|myXVd<E9rI&w%cEz4PPZ+7@P!Q=PY7Ow
zVlyg!eeN&s4AVwmKh(P&I<yOxMfE)j&#Nu+D=lx7RJ1xUzO;;Jo0;A`sir^=Ch1F)
z$*s}LDXWtq=u9eFIcZ)}qH@BK3yf*5lBEK3P&k2^A}?slV!5^^vAAi-DLe3I!Jo7o
zfkswStMJ@wKzJ?G*73NEAr)1R$zw3+LXoO2oBU+PO-|T2-7Y?g>^<7_qqdDQkoD{s
zO(w0)BOA=jK~{fee8TtBi02Fz$vZT{W3Bqb-Ag?0!&iLGfN&b9Rj+{FY6{~atVJ-k
zF%@Hn>eh%r)?4?<B78@Wwe4}!f~(+`4UmArzK@tX0iqqC5uJl>(>a!g(10J9SvEI`
zq`}dhE+<`owmcyo{ea7Mqa2NcF9uYADGt9|f=5tvYJ1441Bz^~qS6+~2ilWgm?r{n
zT~*K^;PLw2WfC6PH5_Vg&bZuUnqB@BwRq9oSqE(|ul5P+!w5Jq8NBe{OwESz9nwYT
z-Nh(1+wd+P19mO$uyTzcz1}(keQs&`li1kiahu3x5=p34ZnI|<OI4&_L-RU$yTExF
z9)ho#l)$b~4lvu5{<yW>>&)%f2EL%2*PrRqc%N^wRyiI3OAZ)ol=Wg>-c)~tZw!I9
zFwfXx6{h$NWP&+Tegy8WUJ#I6w*`rJ8e3)Zr*b>v&Z21;8=Zm@t_D#K&JWNbILAPU
zJ};A-LptWRqY-5SQKQDjkC#nRNAnsL$Tz^!e&-n?ks;`}D?{_g0)O~B;1na_*PMJA
z0MWg3Ku<{HDFj!k{KOYq$6pw~Lr_RaMgc5;rpu33LW<;q(5#JAvJ8q)&V$4Kph+4L
z^wO8#l@X;NeALz39U)!hX1v`VpK6oVKW)AY65ob8#<*pIdzMYYJ%Km{H$1%1?PAt1
zVW^LvBwu5urs7~<f84P;Vk>R1CNW4w%aSPR8_$I^0Ov>8>J*B*@16D1bK(#A$30jB
z+B?sL!Rxi|C{6_!v_XF1W)2rwe}>76KH{tC!hG0P`+OxVUESHw;t?&W;}(-3J}dw7
z(zIy8mrb>KU#3>CU9xK4$o_=|16nmhiycUO2UCp(Q=imfhlWDjSTIqo+c4%Ek?}*}
z*Tqz;>6b^$QRx3SfC8VC-bHrX3IOAlB86Bv2NSwNfF!G4`<`zeCIw1d$dsLGl|=(3
zm1QS;Nk?A2a*kS=|0};@Wqkmlqr0J*QchC~EBIcw^cGv`E)r32Q_5g-Miv;5m`)XY
zRiwmF&p+%g80dhC3WORcqEXDuSvTKi$y6=*s6Bqh;8`!m-tl#GSFLXKxa}0T)AWxs
zyFdV_Hnuq|r%=eL?reTZJEnEKbXynfxCc=(`pJavl>EGHg_=d$?mIwaERxUYB`A6J
zJ{K9Ew?L&UfjPS;Q*+3=0;qk}&TCC4={k8Q^GA~Loj3Y$=;bB~2FNG}4GtC>YPs4r
z!FOB`{n)I4G^JtNaX**~f0U&Ca2EqtQ(c7+H_bbf{JHiYr=fhf(!o~{xhN+14}Pn<
zzlk0SjBoer%knYkwWTc@FUfFtT%rfp=&&*H@N`3fc%_PN*7J_iap&2Pzx25plviDC
zBYP<4LDVr@aC!&0qT$Jq?l<W)HEt*dRXi&^I;DGU3F-0Sfc>nNAfuRuc#)tFZBetX
z%qU2|;e{P!AcaEBLrb+?AX&RANiqg1HiL#S5VCCGVkR@0#^XAWpYqep_P?^Gui@sW
zNCYpB?`plsyx7@;;l7(opdUvO-^LR!rw5kw*|sEn0H61&4k+FS$m-V6KB*LD@8N3a
zXOR!F+oN-6jv!9UFQZ6uj=D-2X#f(3mw>L6U*@-}Z8ZpwNfQpjIVlju*ppeIe{ly0
z5GePnDOSZB-T)n+UjJV7Iu~_W$ybundqoQ%evkkG(n;NPp$6NHc1u2^tHY!vJR@UV
z`y$_0Q&HazVn%eP0Y1prn<L=Eu;bVuo$&gOrg+QhD_}bL<?v}Q+@Ge=eYEs|wF<|3
zdaJ;Mx7|ZD)tM)JZWS1Gjeq=*Tjojp{j}k{Llw`6)kG-{wC3sp<hTkWlF0S1%0=3=
zQRJSc_=yEJl4o#)CLmN%j^`+Sy9gS@Fu7eY)U1ZiR&@Ewcs)2vivYfHq7x3l^i>zc
z_ys*30|X`OAY1AN`{b){b<`y?Kn-$N{(Wf9<-l$<d<%ez_GH?pxSFDPp5LuOU*Wiz
zcR${_cxrAISj?0wD1Z4*U!tM=w?EhKsS-H$q7ep5eq}%i!^CFV0p(}Om=VI6`}c24
z-Cg7D_gBCJG}_tI)@<@<03L?|cOEDzN6(!0X|-yVKogUf=K_?~lHJ;O1RkKIBLfB*
zPiz;`rs22+7}=mz2hCQ2-Akec8u}{SYz38>pYPRl=gjp?R`GkX0_-PucHXBbfxtWE
z_30svCh`kLM#hO3D|OjzXRQWju2p0zep6HVXT2CP5!f(k07{Vr22l^ystAjT)nq^c
z!F}Kc>;hX3^?W}T7ZSc|uvU1w#Sp!u=vPQoN(ABp!EThpqrq^(9+b~sJ@Uq)a79Ec
zUEB?ZZvsaQa^B+Q3V$-7da~8zxl`_NEq$J9yU#PZw{UQLnS91;T4d~b&Y3-Uld`Ec
zc>giR;kI8(9k55)eiN#*?=0hiTSbdSaPK}0|2-&_clV%w9(FB4!+}?Y_IfPDJ^J$*
zsgi^FH1K`w19DXSV_DF<$Gi+ps$gqqxg*|QDaULMFc3}zRp6&@NMppwQmZklqS&!Y
zUBAr4m4LgQU{+l4%U3B1MI&03CKdYtJaNoA!aO@dIe?0l`R!18&fzh25(Nq@1_ezM
z;C)oyH8(W^qDI_tN$p0s-UZNVV{`hM9{#ItYI&Wb@*9xJ?VUX?*_MBFA7;%1ip#-l
z@FvQ@|Mwes$Dc~@E+F$98(gvHXvr$A13eFH0FTQ_d5ZxA7F5KB-$zhslvAu`vK;Y8
zcN%cg)NNA93HfbqIKcax0#XC@h8?)5cm^iQ=yTK6j%*x1<1`l&Vrq7vif*rrtaj?5
z%)VH@?u|R>FL<7>@g^~he5Er_4(Hbp{xh1FN%y=n&%dwZPz;L%aYn0M++GJ@2fYUw
zp3mlbb<?JRQ~4>>sA9zHOTebNG0ivBNi=m3Gyz-2;{3@L^Y`N=36D4E2I1doDp7}c
z!|b=mPSGYYn85qq(4SgpWmUDAdv%w$Col)Bu>{$C#{0uHB%n_X_Lk4F9h*2e`J)Yh
z-lDy;QU@^9lC=zD#9=i1@GO!rqjiq>$6zAf<ny0>t}(=-*z3<VA_^M-6iZr*s>=u&
zP3#0s`J75_QqpRvKzjM~^wW3**4aJSBR=&(iScHFdtUW&uP47WxGrzp)U6{C{ywj~
zJfrTpii-|e&Q+ISwYa>Go60KSI2jUZFdLgK%w7W(-+oX`F^HBYt(t0NnJi#>iD|Ug
z4`ztlaSwHo;f$7tUKC|8G!+K5av!e!n1aJK)E@D6>09!lXeyL<{CI?4@gkkq1Z<xD
zJ`1KE!w`t?KR^zm6#RRBkI38;`2W~@&#0)jtZmeQ0aVZeL`BI#f+8R}DJWU8fJDiX
zMPh+~BFI6>L2@BMa?Yth5G8|%P*6n4P!vd3py1Bx{@%WQ?0)~>G4A*8j3ZFB_g;Ig
zIiL9izA^tr`oFFArzB*xl%fCri~sM#BmUq2{#*a{Ge1cg<ae(Nzx;n+pnv<v|N962
zakKybaTAwy>OIyP4(gtJ65S^I!H(3q?>-GNT(=LLhD7w`4W2gr&V=K|614UFT-y0<
z?<AeQ*dd(@1(t2`L_<HA;5s>^ICTAnO|^>{=a>ncPfKX$=YaTT?%l!?^W4Npm%e>M
z;08mn<N2Wq+^V-(S{LGPOL}OYbdqsV0&-mKEL0@6sGPfaTjOpTI`qB^)GIY7b^c7P
z69>vs<dn9)GsF&BDmB)iqd+Fpd)xZi>xiG_MOerIwqCuv<J86&SS(q(c6TmdD<VXA
zf$VP|LtN(JJh1vb!@PG^#)c1m_J6gg?2RBdqs-PRLZRQgGD1};XQvYVg>4d<tWPnb
z#6t+<&<!sd8j4O+3KO1s+7C=i=V6Ojy`uGnE75<PLoe<aF{)iJ8kN^x0mqgJUW<-s
zUO3wMdL?$AYuB!iKvmE#ez?Cex7n{M1ke~CSX|ZlhD41%cn^akH$TtUe1n0XKT44z
zo`4|`$D`7W0`I9H_JpE_UCyR=zw3xsY2WzjK9JO+y1L?1<{cSECH}sBz7$tJa`&58
zHPILmxm<E#_#ke=dq*OjrgHVXS~lV6sjH9K;h7`6%)OVzdU=GpHe-z|J^F>es8|qo
zU29Af_gbzBI*dN%)XFXn9C>XQ?+mb(^4p8u_Qv3&z&lcD-}%mGk>t<YS}F@WmF<4%
zhl=gk?*}m_$f#~Xd`0OoYo=>792zZ3beersH}n9_D*KYJA1k>g;|#^t>)6ftQ)OV?
zcQ11uqdsH<EW9ot0Gon|lUJj78D-Eb*kj9Erya{Yw`@iv%LJQnQ;%{qST*ZCc*~y6
za!!lWy>eyhr4_K5q3KQ%>6bbbQq?e|pStO@eqactlSL!cl;xv}K9A^wJ|^B?q%5-;
zu)$FmWXS89l4L6X?%Jc<YXaW<fZb5Igx}1|Q*;Z2k7_L{@6{L&>Xeoh)Xx0<GVkn?
z{-jB0)iv#iQVlIF&w7yPAR9b{yYajEOs{_G(<Z+YmcYf~O=*L4>&Kl$PiN;t0>v*^
zl+UiU^UtPJ@j!nY?)>&V&v-?J>Yc}!D<&Qi5=N<q(@RBtVN&Y!sg+s-yv&k`x$4w|
zDyZkc*n3ICNtd8H^qFeHW!dAc^-yuDI@>cVtfqSN6u^bukgGZOCOs6Q6*3n4v#Qun
zU#vR&@UCARc6+g3sPLyJK#BTAZ1Xt_qVLq!u(m~sVA4{{bSV7zj;|(+yGIUPF%|q(
z<Jdk3{8l)q&aHOE34)_vZyZ2vyLcwmP^kkC{S2=pAxD(N1ZFT06%)yC&7&Mt+T)@M
z-N9|ZlOG#w7doW1?pI18X4hfav+2cn9z6!D&T#Tt)}O~zxDN64Qx%N!NK;ECG@~jg
zUA9Mf>c#WFp@bq_$u6D^y4!SMSO+Z#GHnWP;ulfJRzzo!QwRzG01JKQ;1)W?+6~UX
zJbvmDQcgC(KO44ziM+;<`d?FTBVwaGi$tJz?3y^kGo-6br6*$AVg`PiC|(J+0iU+;
zCKQ9$)8d>5+Ki4sh^(G)!3|0*k873KkK}cMXD{vG7qq%D#=yCPJrlpVJ-gpRJ(6x#
z<n)<cBmW_5&?jQ@4EuRUK`05yY*)vt-4GFme2J4Aop_wgPG8Z4cV^nW2(7iJgPuEZ
z<oVH{xUEn6zPDd1iFm11XaJB=e7D_z735tT%M}*X2ZTZDwPya%1z9660EE}-6ETUv
zWA37PQ-R`XtPdeL?5=kfbw#qK;*T59iz@z<+8KRUxd51d#dyGqCzDxqt>{vn%%j=P
zXbxL)vHWcClg=6jx0K)e8@=5?g1?l%lwy1Cs+XOBCff5HE+B7}1Ifr^+%QVBVK@u>
zX(Fh?Jf$w}n;CihIMH8jO<5-!^Vw&6S;P{I8r%-$X^aZc&&PI9KDya30l@62S~mNW
z&P8jg2nyKJSvBfY(G?X?Z%#MC;AHgawihnRSugH5g?JlJ-Av?LJjF$+!}`x7iqnRT
zU_kT7R@sI;b~;j|cl3<~RJlJt%M*?s4qIuW!)I>H1@re5qwEo!<%h$pu?D6_-dhjF
zlt_;tekWbZ`MMY;g)%?!3XD^RmEJoiQ19zi)P8)eZ8bw0H*BBcre|gx98EI=86-<V
zOiB;H?8@$<0jW_!I!QCIyYIQOugaolI5I^bDd*ewBHuLYvD%7cGjPZ)h(nB;m05H;
zKj+mjorIhn>zR_=J$p!S$pL8h+WaoAXs0DIB}80<`9WIZz5B?woHL#P0BDOpe8w1q
zs~rMoPZ3TM15|D({@aI6rn;VzodhdRoD5|>P`vZMraL43Ia4Er2f%sjy7gc8hG9q$
z*OM$34{xs4fJW(lwIt#MYuF@ImiHfGuyr73PzL<6xo{C}G?1qw1RkvwdsjQ6sy)`2
z3)DOyMZJZJWwz$(6{{+0+;?j}vuXt}#%`vR;t>K_SR+@dNe`AxT8i#EM{hKT=Dw|H
zpSwDwouKLE$<J}ce$0j^IC#6Le*Fy(C#OlA*|WtDvDg9<1DScoLS(gQErnGK=QXoV
z0qr_B3{u*`$-VtuUPz@Lk-S5YU>eB6bw0ePI&2bnZSIZm|0!1grx|<kvGLyf$;R6b
z4RqV@^c^bGk{G(;H!2p#>cZHu-gdC$?CCt8#IcL6Q2$C0k{YpcUHe>M|Er9w+$ux-
z>?|+KDg%KR6f6{bu0;*C1-_^bg)&P<3Z4q|&iMFXx*AhEv=a6}M4+q7O6LotxpCz%
zY!5syi7Ck#Wgt-x!r6Bi53qf6N@#tHADep1@Lw00(R;`iGrrC@Z)9GNIug^ZydIf;
z4iR#D`Y=5d!4JN=j;#q&zAqneyUZs`aPvQWCp5H$sd{TeGb*+ImPazI7NvP2r;q|q
z&9SD)=2!y8XnLx{z%5UVHS!#GSsfqS`55&A--6Lv;gTv0(-J;0(pJ_R6tTP9mAn_S
zgG?|ZdWq^kK=mP(lNSTY9)aegxl;KlhV^^<OnWutVtb*MFWEq+lP6)CA-ziz2T?Yy
zdqxTNAWpL0iw;byym49&j$d!yb?7&@u-!tt^{Yb{5(34UAh)LZG3BAbUILLD=7xI>
z!=wZ#$9`e>L`4?fzskRqgS5_v-A8v-qoOa2IU$OY4{X9LEW6@<_|83)+j^LZ=H&hJ
z4gKW~HQ8^TpRrF_qW-$&vhX$g^7SO$@%ycG`eUyz)so#ks>)=Nq43q9(k^~0U(2Jc
zKF(ms%zUhCyzZ&RfY`w=&++kS`rQZL0op|G@2siFhIsNVMN0Ei3l@ZHky7@|^s%I>
zW$x*q<td|NLsYiJQxq*1W;bDC^O;Jd+!0LkRrULtEjG@DIyIAe?SyGvT5N=qAdFH~
zyeVZJtc=pPceFH8VKsmhsQ=3#^z4N+k$V9XZ1GX>Iz|4V%qx_xVI69p_SpYrMNo6F
zmtt^~3EE>-^soQ*-6-WK@`|TV7z*QJ*sJOEZlXZ)_{~ReC3kuvugRo*Vh%lxH{s%a
zHq}C5r-RtvysS1<Eg8E$h>{Sy9lHG}Mkw8`J7KjOU~tpkF)5)jmvm|_*0|imwtI@c
z`)hT5yDolNwy|yM`?8_W#q(7OYMMD37F-E}oAt8PmW2(hk{x+i`%mxbh4`==f)Q&u
z$NvO1hGn3l@)BkneOv$Dp!A|eJ~^3KlS-1%<6>naxt;_;`z4i6p*>LwC~1LuZ_KDs
z5ZY@3hqQ_z&!c^wj%=I$hSXaO+cASlo_5VP*4F-dh4g#SxLtHtt$FN=V4Sib3|>Mg
zUprNC=8ZL+XQ$n$-3l{k5N0mEM0BL|auHcwp^)+O3;O1or3|D9vSIP5znIgo9N)Fr
z!Ybr1u;xBXAS*4E^z*CWdz<3iBcfjBVv<*@R_AujIJ|x-mrG)`Lo<Ep)R`|KwDSRd
zz7}uSr*}`6%Fpfto%8JobQizJD@j5mR2!S!>~R~}uGiO8Qahm5B&TFi70qeDD@l>d
z%e%Z=zSKm|y-9fA8?&eK?U$-JZ-*<Meyb)5kKL-;`K0hfj8wmPo<2sz(JbJp7=@aS
z9BG}#1?B-Gg#sq2#NEQ>(VDWYNb%i;^n8ZJFH@)gyvsFFNBqpmrD!Z9-72A?bWd1R
zmwtIq+zMOA%by2BGah-xd*MSd5$%*6q><PW^}YMK6!G`&1Uz2)K)6hOaQ(;KJ>4&*
z!6bq2PfuYLpE^}O=`(e|;tKCXje2#7GD@$6L;)G}rECi)q<dF`5w+eCjd`!!95g*G
zZ85zS(X+0F37n(a6h<$XcJd`>p85R{yw<~lIKG_}>yv!Zvp%x>bSL>*>v0NhQ_806
zRQe_xp2mfv<MgzCY480NNk1dvUX8y7K(ACYA~22e{3~ZAm*DW9ml2C$;-&uGJ%ucS
zT-wiVfoW&XG9{PLaK;?5V-`~2uST{PYSkIbelhLZu#ws4-3XakGFr@dB({<A)gP$9
z%TZNWh=C~)^>30mGDOv*<WpnIbfsSwDriLyW#XWN3Cwelsd?oW>1)y(bdViJb>Y;x
zD|YwWp$HxVlzez%N5ky;ZDO#kQRVU}Gq%{EWvQB-I?CLY(l~al;UcQK)%Wg`AXi<)
z^ejdZ@5f~W)wRLEB?XTGR|{G<09`e>JZpAJLTv~4&ub^849X3KWc`v&p~Xink)ZF@
zs!PXzZFo;MQfT!lllmsUxx%U|?(*ORPBZbn<uX~X9!~T6$4!L#^YiI=C8Hq(4ZBLx
zrR`6z_Dt?!G)i=tESU(fN|+r4SZg8~E_dZ#tK$0)jB(PK{RKn(By)HhO=onF;N?Uy
zca*WjLh2mN7m)~^A3y;wh|LHU8vQD%(mnK9ku2&Bhe@arA99l8tnTF^*5~pJXu@{S
z9Ms=RA8^IQ`f*d7o)*i8Po&}LbOq+(zT4V1^1F|_;tZlQ>3UwV>io4F&yFK2%ERcW
z3STepCk=?Rvs)avp|!!dar<r4VBZ=16|Q|j*@5D;{Zh$h2hq<$iWwO{ZR7ptVfZ&J
z04GXHrdH0kOlU0CB|2%5pI(QIZ)uE&9j_>0$YJ5<!)IN0{PO+--|PA`(13E_472I4
zlndPJOG~giny4nnv~-3?d=<%FSS3T)!l-clC2GPa>?7Jc?fvC;W@&3@H210hvQikF
zXwaj+Jl6548*_aPuS&S99gXvG5f&Xj%k_}$MuNurx%P^e#n;TfOO*Jr=GizDAjdV5
zPtufB3FG2%%Z-M)1Y3gFSIKZPiSAr$RcWi%YdW3Dve&qD3hg>K4NL=Uai%bgNW<pb
zLA_iN0dx~1riK|kh#-@RIUSuno4HluvBu<!C9~?a?(D=d=W$n5<xw*06dG8AzuVA1
zns2Bh_!Vu^3Fg!B^(+=-a@s>~z;Awv2QJ2If%c9|OY+0Dz+~~>yG+k(>VIxnyT->O
zTy0T#%e-XU#MSki)2L&kv{&g%xgD7Brb?Lj{+`7wy!}rsppY5XOgpm^>18Um9I0Q-
z_%~cP!?-&((Ucci=e8hhA=d}U>k^FXC!Mj@S-<yKb0hgCI#|x1y(;_>C3oNqD2vDC
z=P4yT7NZXa;P7nj^cTa50|@DpU5Qg-GPq^H&-Z;~Kxyu}<9&7#I(LKaI8yDKb;}x3
zqXQDLx@NZ>$45JBX%Y5*7#PNy4d>WxEv*ui5S$f(8OtCP-s+?jaoT7*hhtvg#iq)5
z89zTaE(bIa!d74H*8L_Wh2;6Htq7_(;TXeAE5p!Pv_9JN`b(|+IUtOb(8a9l+70Gg
zGZ=Wu>TYR$QLFq7yNpNCoQdf~imyY}RK|v|i*&<Dm#LiQFBQFZ8Oh$;k21l`diw*t
zYH5Fu*y?EZ3KTmwqr$X;{`JD?oX8U&6a%&!f?Y%S{wzh>9vv&04tI7VukpMcaF6q>
zHq)dG#W?|0DG99ST)U>KDd-aD;y3r@LZ6S0c&+(xZE{#EA0808vQkvGrTK-1mdnY4
z+}J2MtvYUvWGGN_p%k895?p5Fx9Ffszx5QU4`%b&GgW7U!r|<e(-O|Yu}4fpXYH^T
zsVf9Lgbf(-W1p(CVyc&N^XgfyraD0=-HgSt@j4v~Chyj~jj6Xh!{}uf!l1s`6$`|{
za#@bxTB~)IK&676%LBiKY<1P8+nI}x6rLwZde_DSKj54IjZp07EG+u%mO);hk@q{X
z8?qZbmd_#+2Lr{asCRD`83v7k&VxUSU6mJHCyP@Lpl_^9={7i9F{e?nUoNR(L1jln
zRl6ng34(yS-`!{&q8GVYUmP>m$g3;0ZeSGiFjq^!6*pKB3rVbR$C?>+d181sA3Y7q
z+l&WJJ&nZbJibz&HB4jB@zK*W0gyO{9hrLHFy^RXt7w!+HWrJioYSdtxb75N9}XiJ
z%MmM#R1B96?-fm3z0^6-<lWjmDxE2CjcWGc#ZCV~$r7?CcPXX?QJ8Z4z1KS=KT6WB
zT&?sg@_dd|<t*dyhfci7jm=YzrKxY%!@=OYxMpvquHfsV4~o>PcG-x*qVasaijMlN
z!4aRDX0+Glf;F9wM|H9)m|B8z(tf$KXeRlIZ_Cl+Cr`eOl#GqF2&0q8A7Y5$UvC&l
z{c>5%&ET7NtL-h5W)f!APw#H@mKd=7RUM3N5;Xe~9Fiz6m*($32IM*YHEn70uPy|@
zeNJ!ubn#lx83&u#3;C!;q=O!P0x`n43xZ4}Ue*SmQ>RfvGeI|K)x7;RxE?jU2M>VH
zETYZT+s${^I%?;*Y+L{CF3#~MNx5&mtI=1%SoSo^L({FS836>#EGx$z{M$0`FI7%6
zc{TS56GgIgwA^eCcSN5(d#X9O40WvqYLw<f+xgjNReoOz5Ey)C(PZ+%xa6<NSC7@-
z^?sH&8DZ?>XX!dAMu6T({EO6yx65ICSYMqT4G5*{Z}9d~Z6kaVKllZL1&{xzCPkDO
zHZf0oLTgk**eE`Ft>W#`HY}DW9{Bx`*crvq5H?hQxw<o!CU<~dY6dAx9>zhYp!;hf
zJxsaC$o(>b_uB0MMcXbQ1)X?{ulb@b`~;|I_2DxE>X;~wIB1(<i!<ML7t)IOl13o-
zK-#oS%4{6yO8ZD?c?u=8f-)U|0Ev1e>}Z6a_{Uy&bPf&z6`YENmkdUUX&e%nel!C{
z?P4yDcQsEs#fwXf9iW<Umy_o!w-__Qld&8XS@O$aw7QS-Q(zp3t8b-`bZqMR=+VbF
z%NIBE_Xh7EC<@kW0vp(qE`iS(r{e?Fj$#@Kp?Ul4`76I`oI^A(%ZxW;eZPC(+?sw%
zA|CW6VHJA92Q!stclR4X6XZ6bFfd|U7qV^gFy&^sKE|}*GumF-%3<GQ%Y9|P)6+(b
zybw(yi<Fl0DRecQc(~4|bBw|2GHa`o>womWcRWd{vh^zT?5J;`r{{9VsSonc+YH0f
za-c)b^u=vNVZygPqhfmifQh<TWa_p=ZR1-BZ~#^c8w>nWnG4ec=ib>)+{Pbu2dvxU
z*bi*nlu5CVb`Le8Ft*u`HFU;5=B8l>wDp6YN;aeNt67s*Pg2m$@Yheh;li^9aXv)n
zkFMKMr?}$M?i&R0tZzpte7$u0Nw@^XL0M5DMS)I0PV9B3jB^z4UaV{{o*g%KOPU|p
ziXfv!ZUOW=Bsf5qU(!;|XQ4Q<dZ9oe$a1k*>&sX7H`{un^}nsSxY<N`V$nw9?Zft<
zp^lAD4;96dl`_kPmXFz@*3ZW-<j_Aw@FJaUigW`!vvAJgZQ{?Ilixp0Oq_2Y{TE0;
ztTJDEryOA%8RyqZJ8gwE<3=e6hg+GsC2rq_^2*`cScm3yZNK0QF~#>Uo4XA8P$aol
zN-<DKUqWjLAPr9JG`t;9y=4Gm40L?ME7zTYt<<et^r<bys#&-gZlR!$0C5y|&xl-7
z3jY4t6*t9htl-w=u?0(Ef&=P_HyDf2b(hl-PNz0*K0!4}@bl;53Kt*kLq^ET4Y@z|
zu=BrYNN2q6Y7F}Uti2@V=aCxjb3$dE>Lq9if9>#tlfs}WD}4?0J&))m8CCe0&aVe+
zN#`D`!~*AnKetEV&%gKLP6KQB>Q4CCHxY20@_L&54!i^1&vLiTYFnG#4|vnaD48G8
z|F$yBc$RgF{&_Kmn?<&Ray3L~T=@en_U}6^5oBE#fBAfsu?EC{iB69cE=Uqwo}qjv
zky|H;0x@C=nbewG+D=ZfD*gwIDfhG46c?Iy|7tE(y_iue8Cf$7kwjPU{W%iaq~}y#
z8+>t{@Wk2IQP`QACI{;~QU4tXKSJ`1|7aw3W-jZ~|2$EVdoMBsMMx4%{`Q2AMy<+J
zK05v<2>d^j);m2HAo*QnFqq`eGvlAX@$xyb_n6>0dgMQ^_aC3bFb@;cxvRFaet&c=
z|L5=BX&~0^tFcFp{QYbF>uH2LlbmO94i#X&`*%jc{|rPKCMe+>?kF8O^1oa|n+Ord
zY)y#x-#%a!@b0-i)+0y$^_l;3_5b|JGgsksOfu`1|KC1f2fpD30deHNUm-k-P-tO$
zN-SCaw-4}wZ}{7X^vHj|!Xw8-<lrXH>+&Q1K1ur5BUzVtDg7Juk?sh_c%lbngF{`3
zV2qd~!Y^06Pir>U7Bc(lZXtSG&-vrgQ@?PtU^T-JexX8Ag!1<KgWbdRqemSs{JDOJ
zcPj&CM$ag!%6ddQQLv$Lwvx2_nst4DM_S-V((&$wEqE$8yoKqI1*Q|sAgsux_MdLR
zF3Kc-(!`1UU*GQE?mH7K2H7J&>{l4Rf*QGO!Y821@5Dwoq<O`Nu~k@IgzWP5`6$it
z@`D#i|7}6N^iDeBHzRp)WMgR)_dUnV5f9Y+c2__1vD(xc{5X1q+o1YZk>s(JKjuRJ
zd@>mUM-=S8`NgPg@Erw|a1V&L>+AN<9RJ&MWw=4|GhF%1;CC?zz~{Pv)^AIM`5-+^
ztd8A;2@P=^En4}y|28wLx*1{VlMGCxM4<8~TobEI{JlZ*YqmrMNZk$~LpO)eKbr$U
zsdXQwb=)pejNyz2ub((5*b;zJ%bKgAO$JFE)~iH|cA-3QfQ?IB*{hxo<p))V01S3-
zt$TL0DMnv6i5kxC0qp{RZUTGJwP$UNM(bJ9!w37NwC@n))I3I`KqVHetIKTk_WziZ
zg|Y!DfUQ(kijOFgK3<^T|L==5Tne5D+s`B%Myk&Rj~#epjmU@8d9%-XQK}A4MBP{H
zygcUO*DR-6g4EH;ZdmI%B49kLDzQ}#Vd|=BOWE&1n31WOHPQtI{$)1;K-)q)6NfK;
z!-DwKF-FU(3%uH%x$N}NXZN?Sr~ZVvp<6I^me#EqKYQux1k7B9uQP&IgyDlmpPgZU
z?%K@Kyh5A2{$fx3i2E(V-VXm2)wHxS=$I3lUY$yW!=*Z{*bL&OlmYjS|3ogvoo~?m
z1LPRZh|>ziSB0P6(M7{-0bBpebb*e=eB2c?W`Y?h|1ISV`R$&^tbY_gBUOj~R7eU!
zS9EK<(*31%44i62z~<60LW1~sEPws{VF|##$?VF5blI$0&5hsl#=qt-Cli?>(A=pp
z_vr#$SL7AsXw;jnP*|%CRk1U;XkQL03EhCU6p#GNK@i64{NS|GO}#N-HD8M>-0<HL
z9Y09l8x~pI$hE3{+;nW?*R*OJWG=DmbO}_cN>8u@JV-0>U~QkUBh>}ElrFDTbmC$d
zjrz5j$9F*^SWi!DgI$#+X}?O+tM<o|MKIiHb7KpKQQ)szyw8YA_F%0tzY{WPfj!Ab
z(l*|o=-e6M5p=MyYFKS(P&dukjbLDpxH%MtGak38y~rWERO_EkoYEQi{GKhW^>y*4
z=GOiCCiIHbyA!x`m-&XG!4p(DSc?|PMyz%lhAuA4nZ9WGCeN$kN-nXf<~(9wrMG$y
z^Ce_{T#im);=MvJ0N!W3Be*>tH0Sv1@V>cC+5&siO~qg>iS7y@#eK236K1DhG`?0T
z->l3eZIE$E#H6{!8~$C;iF9yku|@u9cx(pWx1HtTPYWXEff8Haqbva<R)+f;wNeP~
z=W{;-0~0A#ge8~DnAQw%`re_J*5dj$+Em?unV_2qKX=Z{C!SXrzAxTNE+u7BDP;si
zM!J1Fg>@^X%B)&efgeOM%a;-*|80Nz$A2<d0jwT>)G^@Jgp-{61pl+P@V#zOK=3_@
zz<z+PWaRa_Ab6?2A-XDw%tmYG|CRPtlazC3)VYdXZ+qiZxG;OfSL9eb^Uvup_D5kK
ziIcD-7%*$cSq}i^83xM#7~R^B1+`oW&^QG0*<4<c<>v=q(>xJ$vnNEHrbu{5o(1JR
zD$Cru6)n%|wDg5mEDokn-(Br-a6|fOZn2JgZx3tHA_{6?^3-djDTs$@$K|m-m^;|+
zZsTqDp2{IjLoV?)za#8#Tx|3uRYovdtS=>rx+ZK@a_bc4Q&Y0O4+^;i)UV;4U`_e@
zdTqnH60=q;Qo+u?FD=0O+ss+9qQkw$PH`0dh-Z^8r<O3bVXV~R?S$1&&z}ap_6uLp
zrg(ivw1tu9;_TxX1MfmBuWkX1E}fX$@~vL+jo{xf80B7t2h=qB^wXC1_W|ed`PDBW
ziKQ-5h^F#E7Ee~QTwl<v{FWwiwYs7?QsQAePK$Im@-X45yY>>*T5LjrG>XRao$FS$
z+#faAdH;%hGeF*3g>uZ4(L;4woM#C9?nlz#p~j24+KkY%mrJtzd}BS|Q`NdPMZO)=
zhji-_NI$6gk9M~v5YFQyt5oh@3C~gM69`hH<0sE<ZYvugvfKvW3OSB1BPre10wTc@
z49OU=>NOrnp__VtPq0H@gK@O<Esul!PFsJ?b}*cybfOh(eJ(vo!<n#4ZxaS|szNyA
zm(oZYL6c|2sU?3)%lGEY!wp@Sz|fl-7U&6xz1z!z-7;S-XJ?)4Dzsd6<^eLu>m6s*
zjUvFOVZ;9uW94d_+9EK5`7M9Bz(CO6cU|lG&!*Ids<aiuX$2Mz&CFnn?=TAHx7N6>
z1xQBk`uy7Vh~wTY*8LeIGNLfHN12Os<HbL*42nkWWKh0<-F4}W8Qnu2=ckN6h!aI5
zSU#Bzb{7PIG^YY*yn!1hgch?%0*G-7Y;`IwOYB<f&qpfVEMe?hTe&~=kkeGR{=jb*
z{3*6Rw}Exj5D0|6H0FCtZrMPjOW*vRV=x*{v6tNcDbuLpmL$At<gL@f&#RVQH)zML
z6cF)cz>3c(rR0l3rLyTE_~-3g@-+NPlZZWS0J@+(5ex;}t_dTv((J*vKI77jHv27p
z)8;?x@jWuA!Y--iy5aQ%sUD8&AuhoL+!noKs?}YYR=3)~uBfGEnt(ArOsQEeRl*A^
zew`#yU^R7eTScSCa(t5nY%8hHvQl+yDAUELC~tBh*|Dv>7gFU>-Vyj17dgLV|2p|1
zL3k2A5LI`J_uEC!!(cjzFP@x=49|=LSM)69kgkd>;oUGO<&ix(0$QgD$~IYS8j#xe
zn$3RFl{;ExSf@033_{x5;Wxku7E|O<PkbmO%5{RDZx7FR!O2Mf=mw_I-BuaLtS##l
z^cld8ioJ-AJfUwhvm>RmBAIEib_%^pL9bX$ZH@aU$5HF11D<{J58P&BbUgIWm6rrL
z&x|ERD1<wkR_{Vv(&R?Tru?(=mT<4<rXkS48W@nD&I#!{nzBB*a{Gx|agYRXR@Alq
zeHKzp4n%FocA5GCh)NVzl)CbyaJ?b=x(Befux^Nj+eJiD!`|rfc6~DKBPYG9j&%i5
zQYvY|-x-Foc17lsocHnPH@S&(ey%TdJ=B>uisY@*WdjB){bzoBqIdhuK@SQFb2^Vn
zpE?WwmcvO3w!(fTP`%%F^r<9}f7=+)`xeF!u~)|?s)L-Xv~^FOEwCzDwPJ1ihVJAN
zL@kODzR)_B_Zn}gC4xr?azZBE%;%6*EVQ}1;zU3*=Ci@ZH}@1tdN>8&Bxv7X<!2OZ
zrK8>Txw!v{JpRZLaczZrceQ8;*VlpXs>d^veUj>r;<3$)Wc#2Zq1AzVV1(mgZuH_n
zUMx?j{B`g;cg-DR{jOr_hj45ug;m*117Of^h}{~pff9KqPskqoU5WxF9HHj>0)qU;
z&a@j*)!Utj2Ac%7eD3i?nAx_}XUyD2u)Nw6Q#5x$y(A9zsZ~q`+)NenCD_ac+$|uv
z)laO#OewCtZL_tpES_I#=UzJ3vOdyX0{lRXs&{oPvE_@FAg)tSE4Ix_zeg7D&mK_S
z$~P7z&J6S&2CqlWw)tOIb?u$?hrx!gTY){<{PR81x9j2|x5xDJ_oBYC@eIFLxD>mS
z(@dbA!VT6B=1|5xG?tDs($k5L=i{*T?mXCO6ynP-q`$aX^BY%`?1MJ_99nFKyVQC6
z)E0eG=LI=`to%LnVkRwN?G-*uI4usZv*DZ)FzK4i{z-nzFh!ASR&s<h);bshaj{}t
zlM-2^mC7j+t+FRVoy_(1MLzqoC`zuiOjlO;k6&PxmO7R_*|4{}Yg&Rcaz0<Rw@PnX
z^<KB(c?~+c&ERk&MJZU^=~bp{n%xpiW}~RB#&*n#LnE)9XzX`=aBTguRnkgOw%mQz
z4n?=5ljl^{>qi`S9(A74o;a?@zCP{^T!=0>eDJCYX&(^&HLFsF=V=Ic(tKbA-i=z=
zDV^Y8|D!_M=7k>X0)?{gy^{}2O==&|$*d`R$tWI)DxQqQEEr6Mmf03YoR26OC^QsP
z4A**lPg>%koY(0ue1x@Y)>k^?rIYv*Q&!}d0#*br<jo?*MWX^Ej4nTdkm&u+b#5<k
z#FXHv4`)vl7PS7>(%_PUke`XUVq5g}jhFueQtLHoXI5_EA9Alwe&+E-?6n1LKPFCK
z3xuzi<bgH?)jC0i3%baIt8;jeG;@PZGyAYDB5dTI8e)=VQla>r&I}|Hnc`fQFXiq5
zlWoLR(r3S{A={G6{HH2RBlq(<GLj<}hjB56Y<CrKcYgeWo&2_#`wF$_*d+uRE4EWf
z8x_<OX)%Lcyna`Ghq0&|wy(r9H>*E-B|BoqKExihTCqDmV0~8$spxhaZuml>VS;yN
zuV4LM`P?h1NMe;v!wf6|GYK8)?Hd=0L382upk3xG@`I(I4q@`gb};y8mW^fJ9iM{5
zp0)`7L>5HPqr+2)3_L;YyLOFG4i0MS9m^c7sGJSAny$bY*}~k}Dlvnv2O^#=F$E}R
zAR#OpB_PCO&MHn#-={I0ITJZ``^nckT(WNx#Y<=HZ#ZIAP%nzyK%vWTSnE=O%4ph~
zy!!XP^^Oq}air6)brGlUuy~0-pC>BQx{mv(Dv#CLy_1ABuD*L17#yt{{Z(jK8+t|P
z$=V!yiL9RrHzWIy<a)hYDtfq^-=^pwCRir5`K}k_R@-G)kz5F9s`F<2tkwJifhYR3
zYJYr+XE6{hYK1|3^^|fL8726{#?afOSidsRx_e9s1{>Wl!?HcWVlmJFbK_+t(++41
zyFtxOSCQNV*Y*UHh4KPWoZx?*n9Vtr#OJK!p`OM<`i@9Dc{4JncZw{c+qw=6$!F{L
zO+#)p8JW!A<Ot4-qLy7M^V$*HrzfQ<%oiB1#6KL=)W8Wx&|eufDD{jM&JD-EpZ~D3
z19y018@1n0BQMYc=+qO55E;|QpZx>hv1f=su4u)z1kwLWu?~>2y<x4Y=PkPxAGYPq
z9N{(95*}FO-v?BzA$#g*UV|T-)7z&bbAr=*1C+;?RkC&De*qqC+aq4~Xh@p|mQmGs
zrKhBxnBoj;zhu^K{&mXwhO#Z@AQaahWfwyc;!b$*nmH`XWkQKZ3PDC^T!6@k2;%G8
zyL~corO~(g^n4-pjRfSE$H=~xvdM8zz!>@^|3WZqo~r)G=+<b%_k+RZisbGTsfmr#
zSC+>uJJnO?$@F75Hp&q3EVk=kp2M8Uj-T`jnU~aj(nUdBHQB7wcAp&mZzIJll;;~M
zf4&D+<`j~`->)+U*H^KSZ{bH;-(Vxsv}C<!-q|YheNX)qGAQ<7-2P_0QCb<_2OKLS
zG#WD80*=V!_L-7P$X-3#o^+Mx1|B8$;muMiN#rZ%5~PJV1R^j`Wlb|g2izzk&T65k
zWjoyH7fZMc5iq_~?`gwfwL8A}x-COGvtpNXCP94G`s!`(i!6GzHSL;$>ir2&ku8Mp
zzakfH%U|C%a>?v{mchVr6cZFthzf<HCUd8zemI+geJYbLv_+2hAJYd4ZZg`~TO2RN
z`66QYqC00EEw#w&PZH91K?jl^fmsE}0{2Gb59(K26kt`%ba^DNp`(6u^ck4d4(bB|
zn$yj<@^R)9fjv-6?GLgly{<Rk_mf};-ohL1H=aC2bfgjvs_4f7ug}ReCwBNfYGBQ_
z?&T%$-f)ulm7l*Dbt;mCl9c>rm-s-<iTmW3!1^@kvh?<}fBeWf9a+e8jrF?x@>iuF
z1!T@K?am#fWb7#2iFb=B!3gX^L&Zd9vom;iUEtDM_zeMWain9bcJ#u18(NkYXcr!=
z&N`5>ceefVO#+et%=I)W!gv^2_72sl%jYX^fv3O;FFG83MQ<)cjfK(ze|GO36<>0u
z`%St#zkvMng|l*xZb_Om*c2IKb53l-rSWP7*hFL3X4GlRq4Ut?t<(5mmQPc9uQ5Lk
z<wz{JEgij$*{~BJ3N|IrqgOItl0)?=#lA-Hvx@cftA=gY)2@~i%AfQ#FMOy-UA0A?
zKP8b%-ElMOX+obB1V2Bkq&xhx{>URCn;W22+G?QM<#6^Yuknfg{s}o-Q~LRBY_%rO
z*)@;D(d4#Q>WrR2LobdJ(sMbeZpF3y07fI*dnaFUT$pu0OlzswYW=6qr-Wc{FwiLT
zofPf6=j#y|Y46{w=DR7iJ>-iYHQ1i`c_r1I3>R`6NneBJ`V5ld+K7kw=X1NzwZ0bY
zZs6hN=qOd!HwVbj?UK0tpP#Pi2yl0ypUs9BbN8__Gj<@CI9N1EBa+m(O|*lAm>%>N
zfrp!5S$Rvt`*z$C;2st2s(!PgI!qyOOq6+jzi*^8?}bd^aNc}z^tj#i(lh7Y70+?U
zP0BwSVm8jr;$vs4b<4RL6Eq$lIlIjDj#@Sp=}@iX9XeKfZl#w)-IoYfjJjhg+*pz_
z`FsgK`M`5-RnG5=c31zrEGlcAGnidiRB}aZ4DH@JsePeGpFhTFCfRcjZy3C7;5r_^
zq&lIbXq2A6)-x*XN&ma%t5-?ij#Bss+s;2AP2$lIXns;vGhPLd^BYp}ev#xvR-h6~
zNmC_RfQn<8*BKa)fA?%c|C&<T4l^h4dV-7qi{9b8)ZECjW=+I})@M{DdJ{fms;6sq
zTW2NDRmC33VIl9CL8g0uq0+cnq7<K;r5tZc3{wZ&DVSL+@m)YLZUq)fUw8f%oqt!_
zTK=h6YtQ{4DXQjNyC1Oz&q~gTV3Oc-uL=l|A`xPnwIJiS<0GqZ-C6sl#52-DwR9LN
zRts7zD{KoBunQ}iOX{PO+&>hG^!tQfF=i{dW8|9<yQ`iEV~i17#7RjgDZL6M*bLvz
zw%t<FXY7$eC{Yy_hWl<6g<ByX5It-i`(PHyV^AODU3B(4miFuL*Hj8Up8ktB67*Ha
zfK`rFVow?U+Nm)%jIuokf)Rm2g-SZ;5V*Z2paK`P9bBfi8Dl^^C=bghjj2;}FpSD7
z@?YT4l-%IECG{gWYxX*uj`7&ww)fy8D^HxS!>ALH0-OZi2-?e+1?@a^B?unptvxM0
zKYV%?sV+LVx~t`P#p<rA1->`8H>Ks{1!h@nu@C!TYlkU*_b>PFM!_rm*=UZKHA7S#
zAJViIPh(mUrmQu$^khu5pDwgitF@2fR+xlf^L8qdvoBn-3c&yn<MX=14=o)JjXY|6
z%+-f#w=aJF1L&F2fs!y@97$@7?NwrWckod=GVF0=BINgsEN3stGJZ#-_^~-Qn10^2
zM3Ngh&#$j@8rGKYa9RMVc=`<?z2)rz;S-u+_I^4GIG2f!zHw9JOs$N-vz|VC>DJd(
zt}GR8Ahk$j)Vkqq?q3VgK2_#ehio%bl(x%I$jH~P3cc}eKG6ul67yMmd)#X^9(E=0
zm+-u~p7f3DTl5e2ZyBolrmSzC02YHAVC^jcpnW*j7${tkSmEB>$3ykapQCt5!+Fq~
zkv044o%Utq*RY9T*U>{0oA)qp$(?5N<baXaUB}$%up+A@296)!;z{%icw&`5#aOkj
z0U@HYIjz*J^^8#Ld7d+&JZl<$8K@Kzw0xK_(w**ETdG@_!n^`)QW2KT1~D=aIMl9R
zNtEAe-Y7-iWAYZfo$}bDtkNo6L5*5zzAu*#?-YNtlQUgw?t|+T2|)`hSJ@|-x4YlY
zQhB26FWBDuDh+T_zh1o{qx^A21OpiP@BxrIE>;Lxz@l2N@Hkv>&Oobd9oPIi8b*;&
z=e5!vn%=NA96hu<pi{Q2he`NOaSgNuHQm_-yhK`l`YJg-k5ko)aD*D?oOdX*c{~ag
zwc$t66Yu=ToCO(hr>XuK^RO#@og0C2AcjN&S=Y{DH|o@C#3M*3k#HClmeT4Kcy~J8
zmWYmUk#$xs(Ri{Gx$zJ|f+6axbnSXs4MqV>ZV<kh&u~FL-T=nyw3SPRw$G6S0M5I~
zkc9@V@-MG@-0(ojql1^)${c3eTJ0@oA2*7|4za7=4G{f8_7dnwfdx7-lw{w()P1-`
z%WoO{K>I@eG^f0|2f)+az-0gsI=9|?k6f^`lJctIiLtk+GQOXRYELhol|zYaIO|+>
z>-y_eq=7K+JwIKw@<F<o!UA!FWRBYgrlHC|7Mn;IvAAzzW!qV2-n=aIcDoAh6Xtah
zcbIx7-`~mITL2-qQ*%_El)$ge{`Sgb|NCQk&5tc?((T%ypk6~Yol|GrxOvu??)}X!
zj9}MHiX1(m$aoqoLP|-4M&oK394+iA-mh5z)xAuPQ1-ZK+?#}2V^y5hwYO^YS(!0U
zovMaK^s>01{cgJ>)5~GrpJ$@PFT@JkAM}#h>ll;>QT+zjRWe+Az*SpES#K-Reu^Vd
zLc2JA3ccLzy0!GMvXE~Ky6jJm>?QT!<ae;=!49C40QQV-=2PU@CnvA%H-_a;A||+p
zoi;zctdFV41n$X?opegpj>yH08;ly;pJ|M-tCA9d#D)_shCi`NAGEkLhQas<&g2CB
zF+yzX{HG{cdak{*DskK^>NJz8VvyeY`CzJg#AQR@dakvX2Y)^EC<axi>6JQA9vfX8
zkr7`_s6ffr4ARshtW#D*5m`y+Q@?JQ-@A>ZY(K7mN?VKTkkK;Ati2i06X0y=X1pG(
zImIZ!kGv`BbZclOh@GyA&SkOV$<0*NWB2pzx)9={<IkEzavBB|&6y$|C+DMVjmT(e
zeB+1Y#V?u_2(ddX*0kyC$XV$ax_%H@t=|~cA8`Qt^_`LHNG(W>-p7d|CtvOnSmduL
z9V6IRxsv6<47&2juU_8+N;gO}`mue}#n@YM$QxLK1kd$1&-d3_@s(#dU3RkFMBR6?
zpBmsVT(`xni1zaTw5zjpsOR-GRvU=8qf=>jnVDitUflp=(azVAtxB2$j-k<bon!GE
z`&vz9y`fc%hoTsXc1<2Wuy^vyT;;`ACB$3bSda?@Pa*$@1E{(twAq%-i?}yg{_}A6
z9;r(_t9$9;9J5oso#E0egH!7r*h-(j-cNDM!B{=^y`pP!Tw%#T&la=eaOgG1EnjX$
zi>vm8$rhD0wG>afTI2YZHc%A}I}^Yi<63WjU7*w{LiPLK3r6OquDF6K*8OXiv=;qR
zVxZs7L@k{Bqc!{j6TPlDRSg|hKaNkOB)kNZgf|M$ze##*%yld227ed6qE8n=bhkOT
z6ZJDZQQ0@6^Q}sed5iqmtNMcPY|NPmMk+o|hoCnROZrR+ScUzN&&tw)BlPM_&Z5eG
z3f#OJW(rS(1$bgUXa;{DN{A)7i`=yl4`M?+VyRp(uvott^`4T7c|dzS2S{ZN)cDQu
zphC~r#CVUb)7r?dugSgJJU41fSiZo1du5hmQ9OP?Wy8fZLsAD|a^tv5IiiSHEA<;H
zQo$o*=^d=nwF2|oQd+d`g~%^uV|6m9!IevSMy0_9#w(YW`GsTKtR>dl(tW0A#*CR5
z*Gj%Toem1}=;+jJew1-3#}hlPu1_uOv+gl4gh+d3G+n6b9xSAT9~mh!_MM<K#3>v@
zHPHBtJgQ#%o>F&;Ak6Qx?_qp;KwL{TW!?zAvYwKK&EO05cg4r%N>+?VTNtHK7BJf1
zxIo1$@VX(LWy&V+sDzMr>w=L>VXr0t&{4bOnkkq5KEHnH9dd*&at}*s)*zyIhcPu-
zbj-3fI-4<-wK1VIva?RfFEn!aiE8gX<*5kqHkOaq<K-;bUP7DYKkFfFFYDc=sq3|-
zApdURHmJI#S|rlluIOw;d#uzi^W~-_V<Ii0JBHS6Vq$asm)}2)RWxodkHCP96upTy
zlGG64jk?_Z&{jtO#FLc!5_#szwz{S!Ozk-um*q^0zI?TkNwc@i?2X)xAZ+yF1)a3i
zbbIpcMGL1H<H>V3N&hz7ZUM~U@>?>C^FuOseiUK*)dr!9wBAu1<>x*{Jc>kAV0_;i
z!O!sTm%o1F<=4!Izqhw*oKBl7KL(YPAc-+!`yzQnj|ZDUz~9HT|0E<JU%~A{PK!LF
z`6syblKa9($f5f6<m}(R4$EC2dMJEM<NWuJ`}f)>TmTB6N7Hh)f1H#5g3K65;RpWj
zU%2ys@54Wr(Ems7LqKG<(!<j&|M1o<1FIpJSRb|&Oy4x{^%m32Rx{yu92e(@JV>3S
zK{E&-RmKg{jPSB4$2}&>m3;xY6YGuUF&^LF>}T89#T{;RGOOxUinm_%b~#bzG<|Xd
zW)QMQbKYbmkSSpb25~6s&gn3zaljxy=2eY=clVRJK|cHFbJSA>A;E*1f@hWf&x`nP
zuir~?aD;f)JB@}<3%*A|G&$LheoYRj*KN=g@Ih1u1!ZY7=WLk}QGrctldigtI%S%-
zN6x)CPJXM-eN~Xi_mDcM9#l>eZhC(3n}#<h$#w8iWxdOyh6tNH^c0_on)+)ypr1SK
z6$*SClnC_k-B26Hr!pWxPE1Q$gu?`qC=|p(N3drP7I9g{dt=2WuZT0*dQ7ZkYv?r-
z%sMU+s3D0&5y(|nEu{01N#NyzbWn?oP`(mMgyBbgUwUhc`3EZ+1WO1KzDE}jLL-<@
zPygfMLzRQ?{`;Qt&mC&-77XbmD2hNrcwi>Jl%2ls?5+VK=KkD)6WXU22Mg+cgZy~(
z!*h3TNU8+)@E0QMZOorm45z*^23|D{m8eYc9w-p|9DGH9Gry-{S9U6=MSd8_E_gsi
z$+UyNCxUqOE9G!ACS)8_WIO>`DcytV>oGb;CHQrm6pg{thKTGuS425f8<*Dxl<If4
z(LBnx$OmV|1&+ZOE3``XZQO9#{6|3n|MEW>X)o<q!1IIm@c|@<d_fb%fVigFT!p7z
zzkd7}tm}-K%}V#LYNgvN;*ss(()iH}z^#z;+;e*{mRX(-*BOE6<{ym{u|%imWmRAB
zzdAtvY$>>WZPuPcut%?|p^d14LwCEkR@xWw0qG=wM^^Exaq;7q@qDxV8*pEC8He<Y
z!H04iqtkFaCX@CZds)3Gj9V9Ohuo?9*XH~`B(aw*KvTHfWP=;DpMwfL=(<2Ak&5HB
z;~+c!67j%uv$~(yu&8gXdp14PF`V@xQ`7=*VSF6*hW3-gUKf92Jg%s5{EccWy>ag{
zFb5hYskEKwJvEDr48`<=f<ZeTobVf*@w)&%zNBqb{P=D^3`dyhN{Jp2U?jd2P=0tx
zo2RI;Z^IEd1HOq^U;c0UTGEH!J7ZP=-I`&#K^+`vRc}k6o&OI%0$4msM=07!Xqtg#
zE8*BE=56voL2WAD|9Sup_57Jky2J*#=)!xChy8kmNFviJ=~)NIT%1{GN%P~<;~izW
z;IQ!gg2v9Y-S=$v^cHzTqJ2QG{<F}6%%7w0FU?|Q=~&k}4RpLj*ldQKe1k$~n@eVo
zUfF!!m5oO1!^_;S?eDS$&uT^`Jv5NcGdsty?%k|mrm}q8+uZ2mClF&eNXOgJdN7Bq
z&arlsFA$jz(E)1%Uwn`;6i{wh%2LOP2Fa1v=VCsxIrrBNUI{sSyf@oIdzB}>;XgSC
zU@0?4tUr??jAiIvBG_0vtflS-$$}r*Mo}Js0flfwMb(c5)t@FxB)AQ0zZVsKorjg5
z2q9UWO6Q$Jz>)yvxuj6X4#7rM_Ffe{gVne~G$PZ$3-4Mu)Kj1oJ5rEMMP-xZJ^>`F
zC#{>b9_)v|ds$_TtV@B2KZHJDVX4^$mP*mNf*Tq$NA%?mx%Df%q{772*~|l`I;aw8
zds(m@i5hgzdR(OVt$gS(GAc<?Xeo?4ryM>eCqtqX^fxSHpUZkBtyIMDw?|ay(j)wm
zE*Us?3#gmsN1`Dr;2-q%gSahR%0fYj!?riKstoH{jf>9l{wAbpFq+E~;Piq%gg6OV
zG1mST2N>d8Z0IDB@&--i+xQnxz|QAgh~%jbwZanCo1HVHSoGdC6T*GZ{@qtz>{sT&
zhO=vhwFU-IlOKwmf%_Z_B8u$*l>$5@mBoRCt##|pgV}@TlXK_(OZhV_4V9QeaFcQe
zD7wy3vcxQWMt-~RmZ$t3P`5CerLle*Wflj;@L*Pl4*u>S7c%5SS*v;1?1tHEx{&uP
z)&;HypI+lItCE_18^OW1Nk!H_;xI)iFi+MQvS7XFG?*%LDp6zvO+g2Oro}KW#x<bD
zks59HR)nRIlm#nG8-v30d0+oP%&#m0J1d_Au;>bhq%xoR`b<-)5RFwDWBk9FKafsb
zxxc?v|4JJG+_<w^a=kNvfmhL0Qb^qH5+rKdCSsf0m_K(<8W_eQpNa>i^ng@&QAL91
zQ^MT#h?tzjnTO%?bM{qZHk2Ya3@*_X7P?-K!kDy%R<+nkxvv<&!+(N%1=N{@HUS)G
zS5l3;N+I{U2gVScHdr;Zv~kPhCxhx!yaT9cs0O(Q_Rio~LL6Jv+usA3(ZqKl+`VAs
z?!*OXoZgC*BJA6vD((d_<K5dpqGAb|31)1nsH<Dk_lu8P2p1V2vN$GvtMmZB1=yw<
zcqhE8_;kCaVn2>TWQu047RRdC;$xmOyDDNr-JOJmNlskd(t78}&}tTJeQmaySkGdc
zF~_0e@%sIBF712dgToEpb=KqcH9NznS=;r{o-uu*hfviUR9*d>K@=Ry3}F|B@}y@=
zXq7PdHm+~OAVi*4k$72@#Usm^8WdSCZvgp{kz1jfzj6<BW1kGyY~W?vp8+wulxEPo
z6rb)i{bdfsuv>f1d*ro#{5`@F%Hh%H8866ggZ*!<4eF^&BG2FxsV+$Jc~p`LzL<0Q
zWj%thU52}({e%KlP;tMqCvJK$t!Wv>ms#~zn*Npb;rG->II>Mt#MkcW8%}BeUZ+R^
zr@L05h<rbLKm76G%BaQSyIYxPYIyQC(dUMOY{1@+7eGD@UD=K0YAGR~v{oXkN;@X|
z`VY28T<U55hxvX?O7~T7H%y1F90*vfqCmpLzP)dLMaaSY6PR9i<gF#x77F%?^N)L0
zDpKjBlvJJz*U952bwSk4zQlC}jCP(G2=enB2OY;Ic-r?#^n!y$_fGl1l~rtoe%CDm
zY$!wIsggvZIvDoZW2(sn8V2j6Yh0x$#Gf|e4`DnVJRF;7Tc2LtuKycGpBt!F1I<+F
z6P<F-UkT%IN{{<Q6ZYp|BlfYf7LK?y3~DyjWwG1&?gWO^@J*<a^nN^I`oQn40%zFl
zI2P)+`^yxhxrd|9y}$Qg#Q-zbq$=_j+vZrREexe9i(to?fEwbu?wIGR6z~<$e(XX+
zF8uy4>i4XFb-dEyvDyvgG8Emsma|$8F+{aWs8c^LY>Vq=IgELZdtaT8Sxr_2vT=wJ
zk?%w}SQnf8j{|D`EYvbAbRX*JlP8(`)YJaThx`vgW&L@?`pk(%@p2YE^xle>(e=eU
zTsPbHR)OQW#pfzz`dM-SL%)DH`^qmvJkF0Tg7HaK5(2^ZaJ!v71*?QmN{(Z1$^qA#
zgR25zL6lOrV3GetZO`IwLm`i3zn?&oLF}$2L|$RQyk?FxlKq#o4P-}mJrEi*cc@>J
zO*GM`Gh9XQ_(acZ6^BjMkhE5fdyepE>=AZ&?CuLw+i;Usl`hvxjXXjeR-?~TBd$^f
zAn;T0=B?+QL>qio?lodt+wGG(#9^X#;-w4sHW%#!r176}zB-2RG^wQyBPLiXYi>O$
zkfG5l3}w+(8gkiBqDd_*(7iyGg+XSiR6R;nn+M*}?djGqOpZXelF85&Rp*D1C`Osr
z)tx4CK{<fLGv#-o7bkpQY#Dt|8c@|#wHs7QVGeNXO%Uj;KRociwf4OtL|m~NBA;$n
z78G)H*2Refbz~dG9DrS}ZEQoDWA=b1wre^A5<i>OtfxN+c#2bqLl-F;BahU1r~TL0
zG<t`FBL1P{4<pf|X$Aj9YOC44p|tzXsx6~?#{&~>VXBFyCqG!LXKdsrGTl96I&2^M
zP1ej;-rhxp|Ge4n3B;z0K$IN@kz>AGwd6*^C!am)^#(^3f%Sx#$*a}~<^dH{gkJhO
zRcQHF@8wDiSTa~+$|N06oOxZ}j434aCH6<QS=I;s(X0bY{Z5nj^8*n+0@M9B9=`c0
zwrJX99n+^g@<En8DBlC5aj=VpXos27RQmFzUR-<phQ?bebt-L+J&-XjtB-4tCA-dv
zk42wtAx&>W0@-em$K9Svw!r&%@@KNefePR$F=bv_#I~1dT>ijnAWBJt6z7a@hsj~c
zb|cs&Rn%SG$lkuo`|TmwJ2>b@sP&z`q1!tMHIfJsPO3-8!a#C78+3aOCttoe(U>xi
zfB5O0LQ=$hei_hPhc$zq!LJ%(t|UTTx~Kh|+Kqef*R;ZRw(sb8w5SwFwq1&)lSlLz
z;_k6mS1kfWZf8hHKW`I1sIC@V9xyHiHdJfPF788B)SOrGZ$5?A3gIKJ^s<O5&KNcN
z$mmj+6li>S1KE!u^G8K{)+1?*Ww&Af-Zjn0%c`j(7$jF^*1fy7Gr!xhl3r;VUX@4m
zaX{Z7LzPNhB{p$xQV&Q&OBG|b**-i=apuK@k*#B6UKG&Zh6xx>A`h>=7lBo&_x(Nx
z#FEOXx$ims%k!$^#f)5&UPv5Tx_m47!@-P1&MG-lMseY+L#tYu<rDAK#TF^><hiMO
z&v$TR@cB3->B_ko>mHg;-kY`^Tg;YtP+^=i$6-5OfB!w(fALH@4Yl|h3-z~s*sxy5
zi1G;PRJ-9tHzr@njOp`aXfOsc60>rD^cO12k%}T7gbGjnRqRdDxNGx{`smCsn~5|k
z27wxlgV&WWe}_oRJm%NJQALv~o{+>bQd|aw;P6kYo$+g9lJ=g)VBvr>oGq+Lr@TA1
zr`rn0)MYfwosKfa@$|c^;-uNJhHg0z)DX%Yh~-Y?_K8lH!l%YocP|Lmt@Lgsx0S%~
zl3>&H)uZugZ#&RLaIADTI2x|Am>>*i^v89O6kZ8x<_jA2Z1*!6tz`Ha)~sETlBsO6
z3wc+?&spX=M%2<uDdVXRI5kUCi8O+j8m1}y5?t|fQ~v4_{Or{$&_wcLg0a;Svea(Z
zIuUDhG1rG7Ob-|14n{KghU{H&VHHuE25{fsl5X?*%{Ut|-Hp1|F-iBR0lCquZSYXa
zlv#Gz)i=V-0<%Zd-4(jwcf~U0(p#k1IdS~doA<tZcO>5Wg^c)_r6b<I^A;uZwY;!G
zCr4T8UE8!)=Ks^)x%e}^|8e}(QJv96JCuGM%3+%8G~Ku9gou_Ua-ZC0a_dBs*})I_
zp&S|^g$^ppow*wwsSvr<G}p?VX}PY<oZowo-#L%p@6_Y>AGAMU`|k7oem|Gj`}KOh
z*{DQUbW*cjSN<^szt{^n^K}BBylFL|IFwMHdOC#@A1uS%UXh-~83n=*4e>=#9xvV~
zJ`KO*>^Oo#9G0Z<25Lyw69x1CNI1w`eH2SYVo{HBLg?SOTsy_Uo1`+&x9^Xjfc5KT
zU2?#^4;Bc^-aUm*kN;(PUCedIyaVXX6V9unS}f~vxHr&~;8tyca|(V5xj$lI3YBm$
zLk|!2Rj;FpaaT4|?)y7E{yi9I8Q{u~wN4@nw&(H#C_eQ>0wY3}>N?B$wb32%Tr!`w
zZNYStq{;hg-1>wji(Jb#*`28EU5sP{<F)Q^P?@38&w8{qxts}0)f*TkSZ5j17-Y|v
zdpWkgDxnsPvu>`)-$yP^;2C5xMS}ElUtLKNE}^3re5mO^DcJTPGv3z}7M>rf3(rOR
z_ZKPlKkp)65{wK^--HX|>EPOBeKFl}vbHWv70bD#jkiiTR=NIpn$-(kC%w_EhBVn;
zUSp%9=*=gvoQ7Wz`O$UMh`rI>s}Y1fNcl2yL@nu>%;86NR>$+KbDpo0Z1iXKq+&~(
zXd_dF*2N7&+w^`s-=Q?{>g^Xm5TTaX2;6Quc=%YtPkTs)5r+3mA{~ngoBR-)O>~vo
zTgBzhb<L;aH@H03K6`GSxqGs4PesUGiH-D*!wKk74J9+P%<uw${B5%$*u^5xj&$C$
z8mbHO<~Y(cNZHn5t|j5CI|bwT*Ox97OJFW<sa9C9Oe|jz33A!4gzmf#ys0Ngo_1uc
zcoZ9`kuAzEAmWifpnN=c{S+PXuy8Sxrlx4olepX1sZ?v9^^TY{;}t2}T3XhArQZqi
z=^o4WllPQWMQrKI1Ch0B299icf#J^g{~WTTjT@0X&Dd=QLF>c=h#N~A66MesXF6_r
z5w<#9T8^fyGxtu2A%911;4CLaf-HI@y~2Akb<mPK6cSmU6GdxFtkPz{3=y8`2O9=y
zWqG;J38Zu1!N^5zP`!8>L5<%_N6AAuk~3d?GnsoRz4G*Z;`zS(EAkc3?nr|3#pAKn
z=o<7^!=UDVhtMM}!)8vUCiZWU{Y^D!v~r%!eE3kg%QL&IC2nb&+uL2^^4VIc0=L@t
z@ahNaxDlJAv?jQ6g~30LPS({o9X_Gq8^*+!V@v)J@k9L2wZ%+H6sqD_Iut@2)ijku
zi*Ux>hVFR$Hnfw;v>sH21JCX2NtGP~*8=5A&wN4<K&@c;xv}vncjePOd*o#JK%W;*
zt<`RAmO)p*+8gVI;D2v}wkrfD%^L(;q568AL)qAj)XI8`vC-ZYpkqvXPjFJy+j;0t
z8$0zVW;(mkExHh($>j|r;(~w!<X&2<n?F?7QEw2NQ<h5mi=48!fWQ?Dl(d2V*FiS<
zWX+lw47wPeHo@rN0t0c%^mA{O7#a)a!%bU!!O0t(Gy`6x*Tg4GNXfR%)K>uUsp$D!
zW<t?#M?j_uW#5;!rlcmRvTPIrB%?XH@h`f)p>6U~wU9dd?l@O%tTK4OETdjOQrCS5
zdJ8}8r&G6FR-HmSacr<}YYR^0xm5EpzO4zQLG{XCK2gwBr(M%5hSY1S<{e{*?lL?`
z7YS5|@!K<W=vWg#8RnOn7ucf_XSDO|jrEjIBx#X*-TEx;=ya2hekvE6+aA;3RC{u1
zyv||Mqs(rA_PSIMqIv{Su6=i|%YU6s84PA#tJ%;xa08Xv9aip(lNf|1g?-7r&@S|e
zRM63$_f<L62bvNK!$uFwFWZF<7z!U5>c%ZEPWNf^EreFMpzKEMcuJmUZ~8Z1Ot-bi
z9WTUO7_2V*fqnZo?Evt*_e%FRAz*9KCn=#8xALvspy`Y5*)XXW6{nP@oBW9WfLB|O
zA5h_91te{*5xBO3*1RP56vNdy81_+lxwPqPVaZrRveEr3W+@U|DBiJ@xkk^SI(CR^
z)?LludlIHyK_N`@Lz8zCRx-hc_AxOY&pen#9CWN0@VB$@q}QcgG(>ZwIL{g)t~E@#
zV~*LlU#Jh~eFD|hD{h%8#_y3Q>FyzCZ1O~EWM9ST+g9h~*^zhgd<6!t-oGv8AB$IJ
z_N0V>{ybq-4>T1~d+52!aRY=mYkz2IYwZ~_yEPWxj@GB`6V*a5chXbqJ9}on?PW7A
z3qkkl(BZ@(=j<<~cNK)7n9#$5ZCsX`T~?FMGjm8P@$OrVK`No-JldP{Zq*sZ9{O=)
zs{-$&Lp?TM7@#oz`*N!OUozpJ+VrEk<Dj;A1vs?W=KgFoQ=w9LSBzI|!kub%P~N6m
zd`;?k;=x{Vj?OSKJ3&tz$s48Wr0;ccvrZ%Fri?^0vp@EXDrOT~j+swX#{br&ZaSDG
zreBx@W))dQT=BqEeoxv+@1NWvvRI;7+!kwuku%VRNS*{3qDn*V&!~qiXa%|JNWs<K
zdTpG>p7)qTBm#~LqOucY?gyaFJz58tmo;t+UZclwL4oe=%@Ffqa1#Yr+r^a4T~}wu
zX5kQJn_-r*g7rT5n?}ov5&7*^1!2)Ndjh?F6F^xc2TZiG2twAXvICq`2kd>Dp9D`V
zgJqsvdL<5u#)}eDJH1X6$7jVTh*-%vqhzIaXL_#(hDgsc*++94o!cC{&~!53QPfqq
zGf{8j19J(EY1tXNca~Rg0$-DIw!()zjLlY`XVnrY&wem(4zy5X1qt4Vcwu)YJ`cAY
zEWy$n3<I6}q>NX@B?UfXT24vPqB(7>HO0kF>}*g`G|9}ZJX^M53^ZBFU`R;VV!x(C
zZRO$VJRLRzLGkNZe)PGnzMC%&Vc(}dWDArHT851jE@;~Bt0;67AfseTAhFoV$TYrr
zU2eo{ZlwABONCMS>?N&)QmOIHxg%`Q*spK5B)pXRR?}rXLpNMhy*&Js;G!QqAT)^U
zO*U10YWn)d#|Ks#-M<(?Hx=dAZprtAtNnP?gqls1m_g(Bgd1pI=8;H;2$G><8}eN&
zuHb&q@y(e<{nYdwyKKA?k|lZ!@`#Oq$T$G@@q(cPzU0ZU+KZ8!cDjkJPveSC<iZo?
zQDC2YtaR=Bz@q^lq#1YKJ?sft^^5K?Ep+exWm&LG8vNDqFvrMbk9j})5LwYPtPUB-
z14*J3YWgHf@rX_yE;<$|X4G(H_(q{p?22`*K&#*rhUUGnw;Lh^m(Tt(+krXp)*yXI
zmOwi3E5I_%`LA3_nBHrbDrEJCDX$03_jZRHSR&H%!F%<v#=Fl_OpP&2H2-_t8w$2U
z-8FjU0=)iqZ2r+z^Zn7k&iVKTtrIfGd%@#4eAO>OWoA>oWt6i<93El)g2i{$=zdLL
z{0qO`rA_~BE;3SgMH?^0FCa7cxGY}flzG_rM5haHFno4wcbwMDUR6wIz_uTB9MYP`
znaiS?fs+{De(O|-?7ShVR${WwO{AUJcxf9q8`i6wyXvrJy6ipfv54U}Wa#g@+IOlW
z+^gkAv)LjP29)ZFdI9)C{b-Vsk*<$GeQ_u6a3>yOufdGu%J!8zA+@Y`J8ojHt9QoN
zYPrl>n$PTiczwPGwv1|7RkcxR>)OdFu}n`?faWXVwSzspfF++`Bu{LQobHqh-cmEO
z4FMsgy};Y>mboPY`17(t0<ttsuFB<^|2(X@T-xw5X)%Yt6Xkj4UD|cyD2+E1+aag%
zofwzP*x~c!<{I0z*`>hL9Yr0r^@J|pRh6DkUX6aar&9@C3x1zIVe*?g`j#pm&Ybg&
zY^aH$yyWr?<RV04tn&&jKa(>Xna~C6T#Ur}2w%7C=9&ip_cs*&G4r~(Te75Oy*#O@
z`9*OzJp?>MWf`nn{7na0aq1(KaS__pPT@Sn`AWDYN~Jl}aqAt6_t+cuZ%Jtw=`N1E
zvvgH#$1|H#qHC*72WYfA;iA1(_rMILZmtDsA@4fa$`fmtat|7{kEn&y@x=$aW3dl*
z7hdpIot<yDD_KcpmFa`9%ZmbKCVg>%CdlCb8iOsSVozyNng5jV-uRgn#Z($zXhcg)
zar@SQm070$F5=Ad0LX6f{N||*(oOji&WQLbTEQo82LJ=iMElkMZ}sP+;5+FO5x<x^
zVsG-3&Arilbb^)YXKwpHXaDO#VD~PKLlH)|t~Gg`C4D9Z+2Z)W-}M(o;hVKwqkn4j
zai7Jf!!8lE2q}aJNFR4+k27oD9oT&x_Z<+}x}gOsM+TC?Xg}N+zxOE)aQtKS)EDx9
zE<Ksw6-BzrASM4cn}zP%y4w|Z%5ier-$&%X3QCj;m?_$>Apfs7;S~I(ZiytH&&A%q
z7Q9e*FfVix(f=QwZvbbzub1$36yV|S`Z@|<N8!(~#@A;-yfS<ph5wAgn?Ke#dN`&t
T<WvX0fsgTVQ-cCM$FP3`_2F({

literal 0
HcmV?d00001

diff --git a/docs/codeql/images/codeql-for-visual-studio-code/quick-query-tab-python.png b/docs/codeql/images/codeql-for-visual-studio-code/quick-query-tab-python.png
new file mode 100644
index 0000000000000000000000000000000000000000..195d401d6a71435ba93363405b590cf0d7f69768
GIT binary patch
literal 86673
zcmeEu1zS{I+cqEwNK3bLmmpozDIii(0#edFv>*&MfOMBAAX3tev@mqT(A`6KeA`F8
z-}iXF<NgP)$BeU_y=LvbueH_{=Xq|!)L+PBJtBLAfPjFds37wa0Redi0Riy<?IG}u
zV-Qjk0>YyzYiVh9MQQ0L>dp=p*0$yd2nt~dNvN;lrXRnD-{%V;(Ff5ooG>ady^kMy
zz}ytBq<|Fk*z`%ko1{)c0}NVPUF|noGOb!H<=QgepCCQb9YWE2HRkpmfi>~`LCE61
z2)yZdUE+Kep4FF;;ysv=eu<bpRA=hM%8nzM%B=Z#d1U|+9%ZteiS&2~LFNrMnt>5G
znUa720XHS(p3_VWAvGPIta^2IzHtAI`2dAf6e0Ub(8?ugBVUjj-O4jH_8w#et*}kE
zB+GE7OR_ds^w=kDzH#Y-{d92@5}j5j@v6F^sBNqWi#-M<^mqv6RG%y@4j<!5yj2V0
zknzbuGg+mq{ru(2F`nEq5?zNJ<lwWv_Kk<%<NI}9qxCqbYW(4eQ64g!r4KjXS?4aR
z`>=(9LrWOH9f5R}KFk5_Dep(#hNReiE;EgrwjZQKNBO(?f{NSZ;_Z!?(aEIiE@HRl
zHk!l_`y2y@(&&!kdeGBMo`ZEZF_lN8-+q5gPqj<Bu4J*Iq}gVEMUN=IE+N9g?hLL7
z!o#o>q+=NKpXid#OHz=2dx;?<zF*<gWbUm7y|8bQin6t{c$r*k3!k07L7_b>8iX+G
z+4}_KPZp`x_8FybaYit_z>1y5c<KB03R0v#J)^QJHBf>Tn_=>FlFJGlz;u9w__G~(
z>Bplfx^^Vw2On8<c|7F<<m*9SWRjEPd*0G%F}`t@5k0O`VZ&f!LtwOVzfx+%NGX&J
zb@J0riW<YU!TcIWSy6vMi$HdSpzg{2Z4`!s@QnEVl||;O*k{FQ>`d>U-=P=0$9@&S
zID{hi1GA?eTM$uz-b?})txb|o7YXzP{WBuEF1B{S=@T4+_j_-MnNd(BQ3R2qKE!1s
zrlTbN&~n6geQ$q&d-8$i;4$Pq4>#g-T<lMhd<ujkfhRPYKOdPs=ln=afDkM>tWFV+
z7WRat^3e<$p=7W+iz{wnpkMHSWK#ByI+H6k*?VwK%@7j_N}P#s5hD4I<2OWo;M*l`
z5KlT9*N2KF0}z`5Qc`>OqSwV^AN+mr^-|IS^P_A9=7&n;=3vttQT2cVl2=Gdfv-RG
z$`j`HYCJ1oe8sknT}XZU=oBwfc63Okl5_@rF9KWscnCUVGo(NCWs`2x%N64a+Y3P~
z@Gd;(%@|J}i99AMez0N(d-tkII8O+-TQXa+eIKp`W<=-HGO(_95f?vM8l=C~zIDHS
z!j#KY<okyy4GQf1aNbU#6(lDE14d4q8dMKV55&n}@;2WeaR;wKY>fiq54qYLeh{xj
zFAuIX91I@dBYOslx5nTqEaGcFuEt|UR}F#%(X=6J1XwA!GJ^5q!gj(KI>?p@O{otl
z!(>Kiggyo;N{tA=MBhT*BC~#f5>uqWPvia3tmoyC_L0ev?2+%0$fICWNvGTn^`|WQ
zEL!o<`0jWdXFeepp(qMt`(lF>gC>KdSsT`XLN#;EB=w4~onx9~urZw@WX}hlIG!ap
zWS37bd5@Zoav$-bC<jXh^96G}k|!)-6V>TpA!GJpIU;l+WFz2W!yZxRGfYK|l!qyN
z`)rtlHT>OGS~w(Ag)5snzh+cEo*=<Co;F^aIe{fZbK5eT<RK<DUBdTBr`X~4i_b+l
zecD9K4%#Ie`!A_<QgWB`Xw`dkzG`i0Uw-a=b^20OV=iYV`$_?;*y0mWQMG|x%M4+a
zj?1P?`uf58>Y$L&Mu2dU{U@qVnYl(e^LgThIbWA@X(py}o%B``7^O#5dG#t3jvLp@
zh*Y7n$^}}V-Jb8DXomGz<ULhR=IFz-bF(wH`+D|#&wUS_QaZyi153C{INCL=o_!8^
zj&{ys4o{4u3B~K%N#QBgCjN=umEu*yss3p<7A6)g7C$K;iKxIUo>dYHa&7W6QVobf
zWFlz-`P{QEvI>YM<ebza`3GY)qavd@V~whbrif<FmiXvEU2+|^i>wQD<196%f67A7
zV%*}vI_5FLG1fZPdg;bie?&@+nbA&TDN!}iSE2+W91cQ`TXq3me!b?Zr{9<L67=S(
z@^roRORMZF{mjhX(Una*xC|y*H2iRnv#Z!67V#DdGmM-oYs&OZzcsoxBFZ4_m}#qD
zfA8ezp}XTav6P#eVV1X|*xi!em;N$6N?0t*LC~1H#rZC~B8qqNGTWsEW0YZF%`(YP
z$4;ljrfvscz)+wWMpI*HYv%s+n&i5wA-JKVX~1{3eb}t3TUISTKiaa{vLWe{POZ+@
zNizpZxD5Oq9FJN*iy|wcnZ($CfwH-Y0t-7@vy=3&;#_}ka#`&R=alQz|M8p0PtdJi
zBXAw)m$^J&kh%^26pR({<RgA9?}5fglcDnLg~0Ev&s)t~)uh>_wSz0cBT`9VDlAG2
z7aSPT8TTx+0ogpo^T^Q1f^d@P69_wGH#(KLN_g9%@^vM5J<mg8d^{Is3)h&*Plgd-
zQ#-R`Q*R=2PNVM^SC6Y0zA6uJeBoT<6eA1?i-3rbou`oh<k*Pna#=p_iarnpHF$De
z+TYOLmHp6DX9guMrmH6(hz<)mSuQ)q+PricVao|Adv(D$EpRD$1X6m_yA<#6HRfxT
z^+jcEB`>Y4MtA{(A+N8jSN_zibf$gd^;+A>a=fsXRrQDQ-vx7d;-dKE?OxJt;fw^Z
zCl!?!;XvsUvtH+vNmYKb`_j|f&z5EGZFwL2VPI*EuXMzy%5VI~yR+>NHrdY(ZBi$<
zOZp8(DhDj*Vop0wS#})k%BIw7mu|a$Myl44)$KT=`X5~82&-|b#ZET#SdRu!4@*4q
zw_UJp@*G?*y}Y?0M<GJ#M9Hc-sGhy(Im(aCYPM6InrZI0hu!T>?S0x46EX0hV0p#d
z$4N0;_r}r}uY$Q{^S0zmLkTgAfO<-GmSb+t__6v(t-QnFnOK%`oKgdH7W(eI5I)!F
z;Y00jJn2_+`wW#2n}Fitq~c)18`T$kB8fbnSmzB}Icui2+^g!lwyQ7OA7^p`rH!#8
zu+OQ{g+^YQ8*90}y4|dPSNr<4m=F7zZnx9mO5`((XQ(!$RVYk9(6_>fTe@y%Tt@ES
z9<xk*O&z_;Kc5)hKHAB-N;sv%QpCEA9FEMeycysV5PCL#YjFo#s+h5a4zOgv+%rMq
z=QlMN)5LOI;atu2@gVCmPwV4$s74aJ8o8#@_^`!!ukd^vTD&`fF_~VP(X<b`?ZcXg
z1gE(R?7(bc+xFA*g*G)dr7d>;4d2^ya=*IxZCr9rmMD9O!VQ|Bb>0=;CLWe*puwj3
zsrfta8}C7Q{=EP3lbzO%b~oST<{SB==y2+95}fyQ7w0p64R<aNG9TEfNo9#rtYS6a
z(5*xdO4q5es6}L1i+%I5KfT#4J9q4kkmUj!g&V(U?7h}p8f+?!G|IYz?v+-@6vX5R
z#0o6T+k56;?H_ojo%iQH&yDUL>0<0UmMHKOJc>E}eyX{eZ;20;SP@V1;kg?*8Nat#
zsHt>V=rBO{C?u4mdGJC3VR6p{fq58VNEqP>XX^gfeB{(S>}1-5EKof>^RWm5s}~{~
z6!FO-5rVf;Od`>tS|rMo(D2O+1Y0`}a^73`t5R{6qwbGfvBDnEviHpk&n5!=f4WlN
z8_wUSw|>?kKN!3;_V7k)%}blM2l7~3b6rIXRaFF5ppAxrj7Wxn0<;i;w>TpCKW#Zg
zW`qa-`5p-YA;cO1`A?r0z~`?&AA$F;-~9eW%0~Lz19>L<!QVFG!LP1nb*%ls2fCwz
zo(lp35yP)HqT)+>;GiUeqRjJGAjI7a)MSFr39z#BV|7FgdQuJUPuXbU;qSM|)cZ&~
zi;`XHN&H*}CPTgYFH<X$U5M~_g%my(9GvU#SiiIIwy?CYoIc6en9jf^tY6sA{Cc-N
z_VtU``F_*S9vMmGe|z=HX1}O&W~)F8egAJSCUu8_bfGY2i@xNPT0?T#zk|J_4)8o)
zpJ<MoAdPsB_DT;4i=4l(ygTm!J|Z42B3{89^6Id5Lut!^(Z8HMTLGEAk`VoKINpDL
z0Q}~^UceCamE-$6r4_{g-?86anI9vf+sPt*HT}2ydnW*NsJgz|+5P9b|Ep`bjHHx)
zjAS9nf1mx&#RSZ#0v-06?}WYotp_dM$02R{kF0Y4cBAh2K!^V`1+a3m|IZYE7YSgB
z0-XjmV@ob1+9&^csn4NRT90-;bC_>jY|rGgj!hHy^=iFj6InS}YM+xMw_7c#U4C?a
zb3B-I?Ko580FM${CovvqI-lPWzdadsPWp<(8vWxVjr1&;P0>=GO3E^4^Tl$n2<|xh
zpHo!DOGXmRkO|oDlJQxoJJQwr-Ci{#s?pt)w%iqJ*T_W>aoikgZxDyRLoq;Q`_GTc
zI?#7(?(giOe)@z4@P2{0)lAUtVc@ZjMHi*}RO?;?y!j5dr0MK+&DHid;JVxwd_4p}
z2XBlAyx~nuImNRwY&GxW)WoNs*-j1Be28GFJl%s$-rk-s?Dq>S^z9&9$5H!TEbZrQ
z)};wJ7#Vpc=>D-#Azc6&UF9%&1C&#wVO(3kfBdWFQ(E`dKotAgTBrR;fq7SlmRt9U
zozZ$Xw)0Z|z0C<dOS_OE3pvs(-?KXJ<uE3n!EC!4wIjeY^=YpR24fJ{lk!^BqT@5x
zPa6Br0X9=RY(5F*9T1#*W;es<>(VRS?KB{?k!M?xFyG|efcW65VJ%UAfd6u^CyuFM
zBhy=ar4C*(IB#EEHF0#E<#&}5-}w5E`wA#jdNY6HX+N+lghD-Uj8Uk=^tzQP)vOD+
zP{9|M%Mn~%(ANci$giv3t;zC7-CV<4xMt9cTJEm)C-fcMDjjfyH=hVNul`K$%~Os1
zQ4QR2U5Q~sy)=#(U%rnL{huiuPmzqooxx2#o3R;uIT=8Gj!h{ni2Q}qu)bCV-Z(0N
zJAz-*uwOrnb5CRc^-H4C!kTOimcZ^l|I`~_kK_KDTCU~`S_aizxky83B8O)6bZ<G7
zb4S>1d)4b~cd08nYq6yHYFmb@flynQh6t6zfio+8q0FTFQaE;GbZU9l`*eoB@R}?{
zm-uyqJKLpMzF*3p$nlC8X;QAm`et0td;4p?K{S<^!TJ8&oR*HE76G#BOVbL=!56mq
z1YaH#mdl`FQV4RFY-D)Mhb2K94#sti>uTn`pmud@iTe`wm(e1N?;p$pODnBv%IkEy
zj@-VsHNw_qW5CS=SY8t+Gc13s@hn)fig+gUxd|<~)Ckaj!%Fw&?iy~tmZ0PQ;o;u0
z_G@c~5M40&Eiehm&U?b{yNh6Kjx9s|N~@Ub&D`kOYq<ZSTqN0AXC0QnEcd%U`^Dh0
zb{vU5L&w(O=G}OyJH5KwGuYhCC4;H<&O~u;W<ymY+C+f{-DLIN(SGCcfSYBeXJXnj
z8||0waL@D8Nn@scWwJJ}-S6EUwB&~t^M2Qq=dGyJpw^F59B8(oc8-EaKj}U_yc`cR
zx5@n*b0tq{9D&74xc3H6x~QEy?c8^m_0@Air8gD*{1H(9rC{RawIj~HEQtm0+~KHs
zubtvKN{`v4vuLnm%l+MTn5>Jjq5th^i9fJWfnYt4QBpL_5Qbv?_XMw`k;aXzL@pLT
znC^n?B1w4}jqdjw;IqNRMyuH37jL){i<{g9BxH^UCGH`kn3TeNM$N#&&o%j!)wz@9
ze^<8>o&7@^OtD)-?LMXM0bFXgbz3m7lAbc0bwIgVc0E>1qle@n;dD`gvxd$+Uree&
zm)+Fe7gx(zdPKm|d%%?)gB-I5*h}qj!h64Ng93}aLkt}MxZOO%ZK9{{hF!}h>F+vX
z4Or($ZRm=T_vF7`iI#Zj7gzCx11{b;sblD-wJ=Ov&C{!IpL2<x^IV>uYR7dkl3GIC
zOe2T;cqxS1LPe*K($$o<V@OD$uav>uZD+zQ&9*!&jo&V{U7F2U-#kIf=Vzp`|E*hC
z=XdD&{A=&Ms#|NGjyQf>o=EJyc5IP83@gyU9BCxMG~iwgu6*08n$}ZoD69`+MGt;F
zfS&lVtveO6|49Z4Y>^mR`&h4;9~Jp0Xlc9mr#?Hb%knwuA&B8%k0q_Na(wdu6+6^p
zso$chHuPoAPa>vpBJsNmv-4iI(ks<a?Mv*cj?ukqxcv1EU-E%FTj?phrHU(%s!N%x
ziCw&<%wXVhM42lx1TylC`FCc88?gOiaY#C(USz+SZO1s8*;ZPXY!7j{<}qr7ZV_g_
z^q47#GIO;f>h^LY>(+QPK+g6R%n#TRj8wGJLL91B2SdZT^4GqljYmpf8!LIJK#PbA
zRG-?hO6eE{p5V;O61DU9O_dtAfX0Q<>>h0VWJVMr3i>V;xl~eidDu-oM;9%+9DN)@
z?dM1*2XRy}bpsZA*J-k@jG<+^lU!qlNra+%FH8PgRq1Kh)R)wDZTGiu|ID6IHHi!!
zxqaZiR-vn@BP<xw$;KXYZu^Jb%8Vnm@aAiuRNKt=uI0`^40Ew;VrM&<|1?`|2fJEk
zdXcWH{S0N#GN>~~o@$HqvGE1q<D5Gjc%}PRo9FEt_9#B_8abF_@l-Wl5&X^-15%~3
zUt`#jJ2Wc#P#S?~Tn>zurPBTHTISZ0jQ2w<U*{P$@mI;7k7=rPLlrU5JT21f>jksy
z*mjN+_3gvrY^(LMKy@EcydGKqFasi#MpsV3ZWfQ3#q7>ZolAa)9RJqaKXLmBQXQVI
zL({1bH%NRm7~d}|Mg4t>Xg_X4ABnrATx~c#Irkf<{5P8%K_BIOv@uI>hc=Nv8!_@L
zL<=cr?$s>JN7x4qqebdEkSy`GP1B=45BOQV9L{!i>ncYya!12!3jKg1z6s;Znd){r
z+Zyf0&;_NMP{?oEbvY%QljT`?DiY@{8Blxg@_5`Fb~l(O>M;gmsNkO9Di)7UY%f)q
zbw~MCDaJAG1Mx1pt|BG|nWT-h%TqU9q=n|fqZNg?<NPP!^C*HzQmA)1nshV0ZTg>0
zLSUXW?ITt34j87eVR>rGs*J3oU0~-@bvwD(mDVnYTRDICzpQ4dSOHJw`c$#j{N29P
zNaJ3cn@7-^!_Q%!7F0GVL!%W*^9`0wekZjF&s+n*c!89M6Gx|3E6D{PSo*C`s%$1X
z54or1FBQQJ&6IR;?7DQq6s&3S(ROBCH=9-kvH3uu5w*nk^gnwpU>Wy^^w#?aXVJ~M
z#B%dO=Q6a<or_eBw$JB0sExP8&LPat>Y^yI4#m!=EsZ5AvEk&RPH(>=bGGb0^)Nq?
z%IfcZNBkC=W=HL0jOU=jZAwBjiLMd8FcbGexaWR?+HFk3iKi4uXc{TPr9c@Bq;aAt
z!PZiUzY>lz`gywDY0Iog6w2e-WtW;c_hX(aE3;o&TZG(3y3337No0nZhZ6%&Rv#LH
zCMJHk>{O1vh&W!YC<BrQxr~gBZoS1Id2-tE0TKA_*}S&{*Sa3;9Z;&V*a_p8S;?D+
zJEgH;ohExw*l{;vA6ft*CyjVvv6cBj<F@;Zb^Zm(v^^3lrqzd~B@3P|MwR5nQQG+Z
z3bh{I{wlSswK%~#AohP#Q@#alm{%Ol>o5HbR_E*2w#>Q4g&h#A3c;MZDJf0K1D{GA
z^`-FU!s~tKn6i9cS{?Q>{mm~@C98;La3jlXzsr{!W)NvWh;4VLoTg(tuM6@u$I@(1
zyF{D~NCfQD2NyocMs!ek?|u(i;pz#ka2iz=xHd$yv%oZGhPLrRIckc6s>|P7xBOZd
ztIyv6){1O`oX^;lZkk{9b<Bp^u1EGA^)O|{CPzILc4IxvTQb*@(zjLtiKQ^V@^a|3
zH+krUKTV>faKpk|LTDr&s+efe1tDcIQt5cnj%&oImT9Y}DbD)^9i?_7%U^t;9allL
znj8F#_I)zV(NY4x^QwZs3TP%}NX|RZByFl@!EZ+b-MwY68g^wa6R)WzHjZ<ALVk3E
z`oVE(_g9KtTr*FW6j(!Lib;p9GFGwj1aCRpGcDy@H~lgzSjGBamp2A002|S2cj~)1
zG4IcINKRS0|73}wW;hm#Y6*V(lTlf|r$N%R#U*7=mgA>=9fxI!zs#bV2<vmgn-U^I
zZQKY~;w%qpSE7ywmpL1Dmq}e(=)^4^b-#poX@URlAGcror{I~<rZsy9`~A)3v2(BZ
zeHN)~n1n{?ux@+#+Qu5q*5FZWi&0bO>0pLPh^iikXp7gW5;*;Be|E;-Vj>v*N$-LF
z>&>h%;mb@~(?<a}JffviG5x)tGzUbpridQ#QIw*ag4!7LlGl@r{S*}g&*{6^qsF37
zx5uGs9Y3B*lS#)!+L0jPf5K^}H}*XpkBuC@cO+q3#{ZNaW;+(pP0F+Is0v?AlqV_x
z%uE_?tIgQXlCPF!|4lq9t=RT^CsFmL>~|1@F4{_Ua618Mo0Xgj5B{_*xsi^0#(~k!
zP|k-v=Otu3fmuiC-e(YeS&Vq=%s3TcLb7&2y8@1L<in$KJx@4C@BYY_h|)lJo{Way
z9sqFg0lhTp#bPs?IUO7e;P>khLr0cmy(vcX;cO*~0>grA9Ys`L*RhcI<?yB?QB|*G
zzwI&WLss55zDJ5@CbG!p{1xE3;vLQZR2tbn$W&gNOQ20=>D{NK?Xm!<mNKFtC+Nzj
zSwGWw8>H}Kx_m(!g|7B8FKre-S}fD!4)B(u1Jb+2D*W%pm@Vfmb0#$hGsVmXi&YM%
z50swLeC$c?+oYgZ5SM%7%WDz9hY?~m!+))k3NktF7pR#V-rbfqg|i{kH`b28F#C-B
zV0JZ~p0PyxE%$!Zm|4D<`kkASZx!qq=_*4!uR}7uazeX?`spz`1x?3N^lXK;EfmZJ
zi=K*M?S$H3(sYu%4v#rsPjfhfrrhzY5)Dd%eZlT~Rg+!cI(XTjz1|KqLo>+6DKfL=
zQ8Wv;V?Dl|LmD&H{I2miV`RdqT&iDw!z%@f$c0ry{N}x{BnU>yh%SwiSv2$BQudN2
z%0HL{bG;?o#>-PPwm^CSm9Tz!q#ko3nljN2hWD~1aa7WDrSN=dQu%F95OQ(?_bB&J
z8IdU1Sy3KRBeh}@d}>{HfxLT8fcQ|YNJS39#cT0Q0QT-%=kl9PJ&Ws0%%;A!6xo!@
zAIP=ppDRrAR?P+9idXN~?{xL_L$k1mjeVS0Vj}lMcFR8K`(3W-^;ww+tvAW5RM^@v
zVe|wr5jm~(p_N6qrY+Sf61`Y|^NDe?NB2;XqPCoUSEdSkcERtu-y6pQ8c`5DL<ByS
zys4;l!i>fe+k2XzHSdjKGC3ebV8uJGGrw19lY*Dz-DX;jw~o9N3GxU{yxyzH!hnw-
zO?<uiySWU}UfJYC)>6$iI4qJAbxi)`Z-3lWXb0n@?u1;3rh1-W`TNfM-+y5CS8R8?
zJ)MMZlge>b>d^p%C&|!4dABs-GL|PNH_HQB8Zj8TZCNu;udOsONnzPe$p@b>klGMJ
zC74gF3%N8Q>^Cqc>Bi{TemdCz3)D5f%!KX=RUG#(kESJ!?M_c0r&+Z*xR97}r9bB-
z7;gK3J{n|duo*+RZs@i3#n)X*MOXg`I~S}RUFq}l)pAl*uEql?u9+|0t!7ez<&9r#
z6WxW0i$#&Y*;>$QdG*b`&@eE7yl6WyI~4ik&%YY?LP5lzd|sKX+GW;!8t@cbaonPl
z9a2HL<&b3O$_f&{Ug|i@U#Ai$@5c8kG-vzPc&^R7{1myC7ApoTS`19eD@+ez=)o*K
zFk9DPR1gGeJLkt_Y)2ri>OVe@-5P29wH4hEYb1%^5RTXhF14da7i6Secx!LYG@?0k
zZ>KaV)VAnJpI&<`X*Cc#Z$Q27Sr=LUeL+=&;tWkWd~e$&n@s9epqLL#&>qT_8c*q`
zv8d_6!q}v^Xq!6uOzi=rAZrb%5RY3wSXWZ{o@hi}a89840~K*EtM>IDbTGRYUviUG
zdABe$&T8ay7*}GoG^6yJrw)v!dBGEPE|x9tcw<7Yb@Rl`zBiME6L(o+p$P79)8l+X
zwOIaW+_Oa8ZRP2If9p}x&kqv>bMV^6y1XHIcg3Cp;yz4@7(TR2RNZX5h9cK-zxNx>
zQ}y)*KYd!27HVTr@nPhSr-D>PujP0^gfb3u^<7SOO2ix4d@g*IH=xDgL#RsL6p#h#
zzU%UCp<6Qcgcl#&p#@I`74}wzd9Pn7Y*Gn2W)pLtFZkcbPs`%TgkX`cuP}|AF|a@S
zj@b_@Gf4Oc<b8#Y<W|_@#7M;`v92-~HLM_Vxf<vDfXUX@zFLo(OE3m(R8!{hIA;Iu
z`X0);ASnhMrobY!IpB%Y0=(R87*i&0!^#RnVnmhwTrW_v6KTxJck_7ulvkfKojM+D
zS(Fv&opEg6w+FH)S3Y*3e6~_{Yh>QIL@bsZfm&K}qfSAl1e!njhE~dZEUrqBsbY6;
znKFLah}fR0O6v|w&!%7nzk;BdptWkF+46ht7SH6ELDSkVNva{#87?L&)s7bZX`hna
z;ze9H)g@HoZu<PlA8BuyCsqx7d{+Tr4&y}1zHLxQ4_RN)ZJQTk4krOpiq<$gWPBoD
zjT)9d%2d?X=4`8fWhwZXP)&H|6G@z6P<K)$mv2+!d7|h2@I-$HThoBgWL<Zy4(>E=
zeVs8WS(-g0Q*b@mY}RE^Y@>Dq4(WKoxcBkz4z;6EAHjMZId}%384(t+*Zn*v_*^AG
zvD6l!%BLH8X>!QAN!WbYm8O)zB4&HSeZDmc8-%zm2B2Q>@x9zs#o7ZZ6Q}8ABLmO1
zWzv#1ANJAB+O52_T!gNc&+zccEy7hG%~Eq-jgjwcP*E3Ii;we-=K3ylfkD3Dv}_eX
zW!0-t4ge4mj}c1MX4Yyb-NuFw9U+jgO6fm{S|V;hZnRj}>0X2EK$Rhhs=<Lq;FFIo
zi1+j|qNa?BGek`3j)4s~M^Mdh!OiRsvu7{|Y6tI~;+kc1qKmz*13Akn3&B^9Y4(7k
z>Gb-N*b8CU37kYqG+^2*jJT=#^Aqo2<F~00nq))QVOhTv+{f#e1dpiEXi20+sl7I7
ze!+qZh&?h0n278hR`N>;^7;^yn6We}uMc_(?MvTs%FNsF-9n_F@9DbFx#`p#c9Fvh
zF_<*a<k=U^yVU1hO9dI-xHb0DT?WF;_EUa@s3$5LzyK7kr>3-)Y17~tkK4t;63deC
zCi1*xmak7*9KW96C@YgjrZ>jY<hClYm6_z4!4H>@*8%9PZ$2cwuAXwK^iJ73?IL$L
z!Pns4Va=5v$qI9(N-PH$jbDt2WCFeVUNC>bi2BZCsWAbYDfuJ-{VWJp&RcXakm-cl
z@?pk8NXz|zvdfC>I%C-+G3RF&<Ylz@mDQNdxyIMs2`kPjx*18j4`5o}ux7xrq~0Vf
zbSG`ftZdfgSSJ+&!m#eH&57b~4i_-o@RJi|4y_qar{Pbr5B<Gf7yrEqEykg;=hBn4
ziYw_jG1GVvCedPN$;30v7}1oX%~bw3PWM7qL)p5u-|I7d&-C<9vdp?5PKNcahtNtk
zwCndj+RFOH&S!bgEa;vy3)9#q2UESWH3QL_l1bsT;jcYKj$bMc^;=qfWSQZXNQh63
zO6iK`Xra;(a8ABV^}V~GK|LB2L^5MZL2k#<m_rg3w%LV@vIncFdFM;cK~RlLz|n|G
zyW)R;ZQN~}SXqo#9j%i<3L8ODX!GH&B;aC~5d@1YpMtHr*;CvpH$$sxok6rS$oflt
zCE99vYRH}HyQUM`X{}>NKd5Mk%s{Mxc2;Y3HElNOsyB~zpdKkS-(5E!Gm*5i69n=m
zbh-&Ghtf4l%3}&K%6}Y63`?y3ZKg4LBxTt+MEZImhECyc+e|N{OQb{2G(LF9av2Om
z1p&+$l4+p0Aw9?{R@(7Qnm*S<!1g`k+Sf-gToMuY-OXRPERH4M^@r=CJ%C!S8onmO
zE_&Qou{?iL=-4Ox@OSmOE&XP`u}*9KP0IMFMPc7swiO0}jUZ*9>Sh(uM0A;CH>rQ9
z%(}IO^#L|rs1IXBlz=e0$Sp4(f;Cse?$hqiFGy&0NgjT%3w2$>RjK|0;~f-Tk;SQY
z@d@>-Ogni0=)qQn#7SW8?VC8(?_AW<wO&BR=-a@`lI7X>9iHaUtcW)_)rFbZuv?B1
z@dZ<kLPAcT!?0G0`Ey)_VT1dZqnU>wYL8i`eZWf}q+Olu?U;ps4^&Uw8B#;mV$|S<
zd2VDVN4|eAaR}$$$4}#KKRVFcZ0Zy<&kO<at<weupRU(qQnyt*svh$Q2c!@n<vfFk
zB&(4sT9fnJ##idW{?KRHBj{saPw1GJ5r;NStr)Q|88NcuW9%+Tj7%|c7+#=djX!_8
za<gedkIUUubrVT;+C==w+GkiA6BQiV`*)0b{KXp50OrXS(=b~{Gr?J)Buk(rIUtAf
z(ELcbF#A3#H353D#FNO$zo^xvlF;`t?2Fo`_X2oe?s(4f@01QaGBh*XCJiCxz4T{f
znX(pW;_m6xzOQEVsiOr&{6rhu8nxv(v(S`44m|O3=DY(d5nRoVOc}1Rc1n;_S#@8T
zGHxzXpp4uFW0F4JP&I91ei%d}iZJS_N!3QxZmIe<x6DzHgVwNwXrNGuoR6jN=d(!z
z{47+XkBZuxP3E-JlMSClX9SHJ@s0_ne|F#Y2N7&d2KfH1QVPP5-^I)8t2RmsGyR1N
zA0ZdU%Ij+_w(>l2<bL~c$}CjC)hZ>l4fjRRCzXjDX;cZH7@DX)TqAa~WLqHGHq{0!
zekjn=Dw2<;YBn1R;<4bbnyN&e@IM{b;iY1=HBmLfr{`sSG1bbgWg#WI*xvqKx2r=h
zzK5xZlqdo>`R(V{1~!O9Qhbyhu&16T=#5rGbBpr~H8P@qdAKnOq-V5p`u%kj!uWqK
z5r7w^o}}x=nPG>#NhF-abSh3pO5-uJqBgqK8XjpXZd1hWJ&M0tjZ^D&Qvz+KBpKB`
zQiAq5sv-030;pUsbNP4b=n{jb`d$|Yjilct!7t|T2u;E2o9J1g-k)G3ll>5{OpjgY
zOL<T=nd=NnR(NL)9kv00P6lEaB9W$u#gq8_!WLj}K4AGo2C)g9&$_S`xzFhng0)fp
zdd6XN1uHh;mxRoJvI$ysa`dTH)C!A!)|pj|X9;w?VKbO;%&cP0uA$kb_K<F#eL;Jf
zn${1fI-4w;^M&e-tOkFsCtL~Oc{Q90x&N`ljMDpLD=2$~O7O$ar7X57b93MiPunfs
zz5@Y%Zm=<I5&Wa;^CMI$P<Gl=bEV+S!2RM!o!{F2=8^@-e56wUYruk(Utjb$mI$-q
z6_osHyEQor+y6RU!6owc*p22GY52d<@RFUsIOIc!)`veS^M4cek{nN-<P;Mbyv_LZ
zZ$18Rh<~j6f9Cw3^#j<VK<7}a;CF!gUrGyRs$U8ZqEhaJzvQDV{gdcw+O}63{~+K0
z)u>8(A5=Z#z2~<6UkCpACon`#aVWP|{J*WzJqDn|nUQx!-M{s~`?cw5RR|gWZu;N!
z`9FWFdjlQ5HBA~>a{gNn8KlQE;b@w&e{%PK*2Uk(m=Vz79lUBX<&UTNd*C0l5ySv@
z`Y)zXCqx@7)~{iu07pGXen%PLRkaUsYx~Cp|I<)^fL>`kJpyn5ekJ-f_WMA?-DBR<
zva5muDCbrjPBw?_J3{gHqb2TsCToiTanqUUNe+jHw$fh$^nb>Bf}|DuLy4_;6^ui@
zpDN(6AMG&wNmehq0^s<8ObGkVp&d)W6<{m#06b%%e0}%@0Hc+ovyV4<pLgUtbU{+g
zH?$x9<NRJf|4*KCC%QAvwk2`1Q`*9Mqnl*tuJ<d8uW?+GI{)zir*>;JKdE5=h>D}d
zO=mOB>GD*b9lyB!HO`76Br<;6O(J&P#lhU7N-bai3}LrffOOnXH1_lSMZ44itV&KH
zb-BLVxK`6-4*(=C^?K2iY{o5JZjF7_Y#l#fhmi8-E#4#~e0NxA#tvAT^H^{LcoywC
zoDXm?a9fwo^FGI_0zhi_AMHbkBu~j&tWQ_c>vt^YaQ}N4z|y}4<U=j)lZGA{<Pv^9
zDF+t=9S`i|RQV4tabbmNS{>*9JSF~aD+MbYQ~|L>)`z{CidCTq#_JiM9+Da_x~%u<
z(OMdjx^c$fYcl+{wI{wL$>u^!3(P7v(jbmel>*BSLVQ=}vQe)le%S%!*)D!U@HXhr
zUx@$Jf@CZJH{0(6Z#Fvl=>{Pj{FzL@D{BGov)yvuwUj^_S(rmh(++@e+6-j}tauPg
zj{(6J?7b2xF#9uxj?M6-=eW}62#`w5+Lg6F^h-(Vav2cH|7e=1OEu-fF;iu;0iWxp
z@-BK=SMzRe#?a-~4JGToNUvgc@p%JLddt(NN3>0I?y$?k`_oeYOE^U0{-(kpWTe^G
z`#wX42A@#{2rHba32AkWlg^3~D->L`uy_{DSs+c^5Ycd^`RVJ`NvKoHR@ykSv2nYf
zpXJxfV3VMziMMdS)^w-!Fbezg%U@WSUDN4=3o!dKw1Qq0mILWqKusin{*x}cJ`A6U
zF%Lta+In;bAk|U)G=bpU2yz|Q(rEzLW>J;(7lKQm1xeLu-LBq)CE{9uZWdw~|K3eS
zeroFOHWuuAKF90<@J?52pZ%}*8=_&h75&R6d{%v+uZzkFnKEP>E8S{khNKbzC*@po
zGNRnQ76YI6hC`DxDQk&w$lcTR?W)EN0Jvr4p>Wd@Fk|jDv(Cz{R0|2LD}eHXrHaG4
z9gt4!01(kxykYP}%F9sg-x=yVf`Dfey6u#p#Q;v0A>KgpHdtPo{WhRTAiS-f+Y!Is
zt@xDbzv)ZBNn906OU(b~$NQ;K#wII4&WgUL_T7{oC(CP9lSbsXC2C4)+FvHWLEX4R
zDd7Hh$J8EECLx|`k0<b8tWY9ZyB?tm47i}-%Z!rFRn58m6w}Ox-a-(P@)c<}8`&?R
zf-})H1Sx}K)ohc+)X)uo=7b%VFlMO*py0vP=84v%5i*LBTUD}Qa_LvQ6@zmONd~cQ
zRvl3y`|&T0R=Of7oAkG&VBu`l%8E&^Jg)fhM{Py85XHRDLW5bWOTTw*N0|)}1UUm!
zt@2f%Nu_JqV}Ew~G}2(Pv~K<NIiRS}cl#pV;J&x5t!ok-zXw=UOFO674z|`L;_TH#
z5J>Wiu#{=)wrl`oEfQqqhptM~ik>eY-&9DE<|O0~lu>Z}snRHrKpcC(>>fHWW7#%-
z+e*k^2{Ylou~=69u>cr!MI<qthrN&a?!4vxR9b#(%KKs|#Lgw*_N@X#`%2%U4C<2%
z*GRHwM~w&jtycHxj&0}~`paYj?z_6smunJ-T{f`lVw=&tNVsd!5h?}clZ-ZjIoCLH
zVb=oU;JPGg|C>W4A=k{T=OS<e7B?O3FTlDuK35`8>IP&~-X)Fmwh3-jg*Drcbz=tw
z7v^+1+hyZI_0W(TGrpy1b;IwsyL7wLr~}?{RIa%c?vyk{H2^E_6L=+zwBmI0yT(^v
z!}_8n@~uwoo|>so4mW|g+V!I^MCyU{#Wox7BqYjcMBlfWAikcQn@b$wYp3~j5KvL&
zjPW<8htd5g;#CCK7&0eo{9=75r9Jv`->*#Bls3%*T>C2moy*<=-mTdx)!!)lJKV*Z
z@F}aahVBC;aN`t4ASHv*WIGtkh2wSQLE5I^HJ~_B`ciRn>GvW-cpQWNa{U|R1au!v
zOFn-G%FgdDZ;x9l$c;K`*}5sA_Bm*6{!sihs_vsO9uA)5x3oiAKfncfeaGTb8CU^0
zx+4304ZG-H`WBCy9+~V<Xq%*^%;gc#;*y2?h(Sr^XOWV1!Te;6m~<-VSG~jpO{4KK
z^PAB8bO5;@#t;R$5A#;7ry4Fl<X;<V5Ca|9?*pP3RxS35;vm{shU^^0T&7)={O2vR
z&QQI__nrXN*|l?myWp{Kdnk+nh?SJ|768?Y=7gO&a9IO-RxrRUzWj|VKLy_YY;7h^
zjifji-YJSZtash3Pt-~|s#}S=cLu;}*<OBakjD2U!U@tB&R1KOg5=FgKB+($o5koo
zI-OjQ9C-<5JGwn*5(sLiN;aL)+kR5{{I`K$KhEY2SrCNeaOxQQx_ttHEgv0Pplz#!
z;I_>+U+?dHkml;a-w+_fVY~AKFkkrdYWkgg&g2vth2`g+%8K<oqqBg%X$yt_Y&dhq
z8OkvSIMLY5O6Hx=9Ej-R%nvY$(<R9gm$s3oIW-mi!u#XO6)R%rti>vMl@<etci0O>
zu;SejluI_^YnRik&vF0$kTi~)@72lSWXMM<<q=Q`09hnd^|svIK~+;k8EjHbcRSb;
zBpP=wzCG%?RT353*I}Gt9u!gjJ{ZE!D<wpU(-=Z8w$NEJ+WW0<V=9VfQf=P}prvtJ
zSr*{w20MyMHS}4BL!@+Dx=-!c_>A+8SmQkM%uGd09@paFN?uZxDru)I_y*r`l1Yg6
z3i$~iC$3hQpXyW%I%C*@UJPq`0i5sEwAUk{*1Ox9vq;H6_`H|RQfrX^)z*ft?o*T9
zPZ6B1KpGH^^UePrF-(d)^R314djBy}Y?w8ml2O2$vBEq`>apsuz^6)C!Y~<xREC<8
zNW^0%^)Ym%u5EOm0GUga{VsoV(n9qpNL3hH^xTR$)%S8O$*+rTf&;B$uR@J%CP(aQ
z)9m}tuCov-ub;)uSMN#y1%$XBb8qmaE@wpa7cPqo?L6_{Wm=&CqVRd&e)F|`h@~Fm
zO6SADVu0M6ZJ{`ZMI4xO<zTWH0vZ+HGXSY$)36l+s0)fEqA~!ec$SG?=>eY?&m@Hj
zVK=Txt)Q6Q-=3fI81`RB-G+Xk;Qd}lQl0Wm;~|w7(OE!}j72;fR6(s#7}Es7WMn{s
z1^$bUHUd}^!9;za&esg$4^sA9!Al(goZx5L8+RG*i!5@__Iz@?$c$W?@XzRxCmqbn
z;ra5IhG5>|VfpUu?B^dS_E;c-jY&pcU#XFx5N{H52nkOcSIB+!v;{f!OL|+>?^#c4
zqf%rjEmr8Pn#Zlpk3PwX3*$j;&S(d?Um|%Qk6ich4#w9^r61Qsbu7Z*jdV6w#(sC5
zltf_xgyya?qjwmkID?o}mH?EWDsq2w>^lzNtzV;?th%3rNHSyKE%);h$JJstt5mJE
z-JW-S%=q1iGx_ZyI5qu;Oy@f<MD|vLH$Y~U?**Zbqdq7ay`S)@S28{*iU@W~L6QwX
z7vKS;S%LHwAj%WFg=g&#Mwamrg`|2FZo5F3HUKTF=%Wr5VU$?*w`lj}qL1qYE;vJU
zE`0mWN#NXQ4j?fz#f1&UZuOtl;eK6P6s>)Dv<qgHKH4vuFFAa38a=7=q%qAHExfa8
zoG&|4z(aT>Cgh-pJW@~MPj4k07bO>B@USD-JeL|T_Z06b&rvKdiRVMsd=uGL8U|l*
zEG)?KJ)V&!sd(1@u_t}kn_P7RK;XW9w49Er6ZV;4fj<{N?1*b#a^K7e0hJc|KzAk`
z*tp93(}mblNp~-ODw0y}0Q)MX;8j?UGByjaimhDjlu|pi0dX!`B5HDr<4danyR<H5
z%W7%E{#88nREGQOUD8Cgj3p@Q<!%I16U44&j(@&`*l%-5{=tY$i=am3$GfN8RzsX$
z$bJ$VIGT*%i;UeHf|g`W&H@wJat8vjU#0v`UJ}s|h0k`+lfj38*45CW>7?j!2>MEm
zz)e$4xowtO{27i3XHQ$BqBWo*PJYSd7BAgAF}xe~3m(G}%y{K~#UFJIC>0`P`9;g@
zYiXu!M8&wA-t}88Ji$yb2QoLG-LJB<)#?W2E>(k{ff0Sd*4ldJg!i-woaHeO2a|z#
z3iE~pd+Jt~;}RqvJ`-hBwy|zIsg71NVjPjBfJJvN{gM?$#8zjh8Ev~yn<sS$3q=D0
z!ZtMv+;tXL(r9{7*ya#`GnZn(Y=aZ^43B8Uc_PZ1il&{8`yA(_2Kx?P#|_MkFS%G>
zj!KLk&(!;Zx2*M#m$T?a4@{$<cmYI7*STe~fOX0cN6t_1g-*dw@HrZOTM#X|TN~2z
zFu@4-7iZSpZ+FhDVeM)#%dDm5aIdHo^?p$l5tOLMCUfkthDTf%Df1p}qL?3;ezeRn
zRpSICkcLlNCb~9Pmy%==o<dxrM`+&j2pQ2>TzZ{s#$5O&*`x#?VNY9nCARa`vBP+d
z4V6TX)Zdy>pCd1<%%WcUED#;*l@!6n2U<QZbRNtMajrBg-_Ms6Sf-ejaB7z}qAEqB
zOJhY#`03J@Q7lJDPxp0J&pKmJXD7=o+}|!RMA2Y$^7}Q)Mc>gJjcpSV_eWc7#&i*!
z-{__`os2;Df$4VRZ;V65eSUDcVO&PPb~S4n!LfY9ch_%M<-!+(NYtefhR?{p+j#t<
znFf*uC|KqinbH}&&*#o(S9{{@p53h)kQ}`MJFCH|E5J{45Ubm<VM#|p*NY!;Xrte^
zv!_wNc7$>Wcq8ur(k*TcZMprNP_|ETYOq9eh!wj%;ho>h@a-(({mN<g=V1^d<Tm0`
zABzrp_5hTt?&H*yan=!RK<_NU9xNPcuCzf(CD@q$)J#~4981e+QB7p8vM8ht&R-GF
z+lOM7jFD;E_-5U79Z~+ZOt(Q~l%RJ&{=UzVMd1gd18Hm_dcWx}G<Sgb^U5V>Pud%D
z+?k7lNZZsN>FmkVbs%}Y{jKz-OzpVsK;-ESoea7umYjaDH$tgE2?`fFnq8;|2+IiI
ztDL;SXEam<Bz8)Stc%H{RP9i_rV9$*%*XJ?<0v(qdH?_T%ozv;9AN)+=1rk}5`MFS
zHSN_fbJe6B-=wOKK^da3K9Eh<ZP&9;k(g$UN_7&6pK0DYaXI_)G%5%&f@PdkC~yXO
zx(7raAi43w{I2(!1Q@IjJ}*-Z%3i!+jk}Hog}d7}stwt9VL;#{`yP#ztZl4ULhIfE
zJ6QUS=%Y=LgMw!{nKUcrSl8<_PaeLRZGo&V2_M~dRrFu$T-d+D>l=ZxpYaZyPXamH
zZcEaIAM03qqR;Ba^+mkqi^KUG6Wy$nV};kH;f<G3HRlfdh{9WfY7MAX#0Ts#U~jrO
z%ZdyKo-Ffb3D%v4(xC;}l^;y)jy%oYL%|m>q~%+~Z`rS<z74kk0srA4keftzRIj)Y
z!8X6-2J}P|(&{t&5T*f1n{OIzWtH`)@RxA^TbmG2h8%&!E771EwAUZ7Q5s34$eXH6
zawkPMepT=HvV#GOZrw?KdXcXUI^%W$Y!$l6uQsS(AO#Zwcmv;)T<wvxxUr7`o%cXd
z@KQ-aqWZ?J(P_}i>ng{O7R772J9>~p?SaWh8al-@z@uEFCj9r>D|+6ov4O7>yr6lk
zTTqasMi++gK>!^r=?oO1mrGGaqqx3+#JW*{oJ;Nm0pIMIJ}N_|ldHPkor?5VpTHo0
zfcY@w^Ky9>q=G+lk-_y%HCDL}^i7XE$X$)(fO;6Cl*cGkL0V*~8W!6g255ho{B#XC
z-CmQK_Lx?}f0dQVC@P!Gs|<w0k=G9#up1aDqNl%=Hj_Ez&s_m~>MDu1VZLk~rJh8N
z9Bq(4NO30H0LKV{ZN>^!2ONx_j(fJ6>AfF@^C8L92<`B#K`fXl*RzisGyJ*>GlqES
zrmS5_ILG^RJ3-5;T@%bN2oCL6pFEmn1LY*^Fu`Ajw$H*yj1*_Tp)s5_UQ)_l=?o9@
zNVnV7ikrIE4_O4F=eMiGnd`Oq-7eFMR-mz4fZBs;kZrGHFW4t|qc){Cu)&ftAcO|u
zBQcz#n0w%Hf#X09xT`BCcRIh$x9~<gUG9wophWFjSSdO-j2@B|M8j08QfU#}<vOb{
z_?<Ae(NqFB`IEJ}a^FtB#NyfQBfWfG)Npkd!0lgW!pgxh_RW_T8ndytjX&KFJMVRJ
zXvsIaledO;<wvXCcB-dfSSS<C>6?e#bU&;%Pc2}_xAe{OR)gaDBhr_ElDg}(TmnK$
zoHuCh8NqQSC$V@>EP&l6`rzS7w9cWav}aeFWH;YUJNS!v?M5b^AG@dorlOo0!h9ef
zmHI}6NrHwYPn5p-Z*Y$w>%AwBy0ds&G*$==HKh@uHRGlRs*!?XrbkDl^y1PWSdoDe
zUz*g~|IO!qowsyZRfbluRbCT>cFlgNfYEBgqp;f0r2ry85J$u%2|_S6$^X2!5qJF4
z!$PB^4$I~_cYt|)ux-0K#RMaLQ)dp=@loJ&3gNq6y7VA(Mvi<O4<#i{h#ea5+9lfw
z$u3oHKNT<(73C=8hi)wRAlyj>;P>Re7UB(fcGYDaxI^E9L{bHVYPvg#jScp_86c-V
zfPD9JqqHLhsFp#@EG3F3Yme}jg3gpq&QuYO52`Z>Z8HxWbbUPKP2KV!=jS>`*c~2}
zXS5;mi{9fb<!#c^pDtg+8%bZ<EZl>3^_Y}?27nxWx)0bbj~Bm%TGo{}U-uq2kd)Ki
znT@!}rkaXFO)|#K>zJwR+{<(2qoZcCxm=hsK~i#q)xZNx4G*vdf1pxy#&KlHWsS$d
z^XoA5n*mU0`V*X{f+o)PtyPbPJmuE;%2RuAXk|bDgIvk5XjopLxB#q3O-UT=pPF(l
zutStSea7HR<-P0V$J-r^Itu`5_}-m7cu0uq?b#)tG04M;V0AOmAIID47_kCCK<KCR
z2Q^`la6d`i`&I!*#E#Bz4#5)PB-?)J?4zCMdn5?}R7};WM=7g?`Ve7F*5UB~z|E3X
z^tkTn!`Xx5yTK_ZjH|1u0t*0BOD|d)3(4M@_Uh~TkPit{b-kH$n>19EO{nV+67|bJ
zKCFEtb{~HDSPAw+)KQlo9&mzRM*K<r71rotQ=D>gICr#XcNx~hl<jI!ew8FQ@Xc!`
z79@&*<2tIwc$&%}sq{6jE+!<Fd0RAANTq_85WAe138`If7;kSXCXGr~GvvK6XsBc>
z4QjAquvgDi^`IC*W<(viYLD=+hbQHrmB+k(fUD)kd1Cu8iqGT`4bdR4aQ!G&>1S@g
zw^x1>hwM+`oY!|N*ARFd{mM1dC|d02lR8`dmxDY=WQPoRzU@o7nB-L;&pNcyb-Ug=
zb7i$|B&u-bk?>OpFDbGVs&qdoze+*CP&-eS%d$t{4akB{Wm&Y9`_`bC^$5G=K1?&U
z2T(8GsWjZ28DyC=8u#*h^DZ!8lIM$Q0v>=S$;Y2qT76oWR6(c6QmCk+o}F0BYUQ)F
z>yzpX*O9O<9sINYPIhakh-%fg;Z8h=dFSAum5Cad{b2{fSWl8bcgkB#502;|aHypO
zMB6W~-U@Pru$Y?J)5axEU<MYS1+8E?sem~Rm6q{z{kr->0!d)J<AV`M%ldg;?3s@1
zSn?^gW$*^LxOM{Z!g4|-3e``2ho)zCHq+nMzE<pxBuM=(`U~;1bGsnec?Mvt7;&F~
z-jkQ_))LQ0J9zvg+E@B(4A??^QjCsVSmKhr@r$(qT!4#WEtacDf@R%?(>%z!?S<Nm
zpovN<cLv93wPZFLOn8^=t(6(`z!2jqS6VPF-Q-7Ny&zo3N7{~!<>(!$G_c<5xW?7;
z@fbVf3#0)Iz6#pJ4XU5oI$Bf2^W>G5yn5A1t16z4<}!D9611AbY(KBe_q*ON*S$k}
znfG*$GSISJ3ikF|T>43Vvne(;R^6*rmp%pZw4cEqg!m+$#JpxCetKQ-AX0ci3Pc@w
z2`-c8+BsviYnkq`eSh6@AF-Tgyub48kTNNHvL=K0GIS7JtCEjINq(uTwMyxCZ;7uD
z6&?g;RQO$O^E4z1C8+wq^YsWYqr@d5{?qI?hM1!X<DPndC)Lnur9+wEKv}bc-;V%{
zDKypabfqV;xVtd<0M}niD<y3P{LxWm3Cl>kN%Re$HU^dfSriV}H_kJB5ze%s#8+|`
z4+e194z<`74z%^{QsNn$$ZgTcR95g{z|(}wk~w@{4vmL-g4B@`%QYI!r$}*GMx~#P
z8U)QqF#sP<8uEGWH%OnL@Pq<P>Xnh?ra-g;aqYy7EFZU|e076O1U=aNff0dS<r7Kl
z)QHb*M1MHc+j&62!zR~lbp`d?%&<B==z)sZksfzooD<elOk@<>Zm-vlh+P-~&kThK
z5N6&~k}HNdMT*FBF(LQ)13KGTK*OQANz--NM(ikx7|K%hS*AK{7<y{d0Q?UW%FP%U
z#2kGB$_c6tgFL9ZMV2WZX#0fVsC@EI3KxA};Ffcl?WUA!FDcFKFtQj%w8vcfhBW2{
zK<CS(ycN@OTasn(cdAS4eYD4T2dY2-#*lj;EpiFJk_zI-Cnp_`Fa4>lbr~|~e1%pb
z6)gm-P}ztGTUJ~<_BBcrOo%U?g0)%J0fmM^bUvd5)SRaPHz!ibvzDulUdxuw2qDvU
zt0~T$@@?}q9!Px!c(|{_AABis@x}>3g{*i<wTsx@i|(s@bms8E$mt60<}f?7itj~w
zby*K1dA=?BO28C0Mq#fP$wudy<@Ksh8)_Pt0sgcjI+l07_5Wk<Exf8+yEa}$L^>s;
zySux)1W_8KLFsM~q*F<0X_f9;fOL0vcXz|NdAEDN`}@9e#`y=%7;MJcfNMSLUU$rA
z&g=Tk-#I8+BuFZFNh~A3;4BgAN@UP4Z};nzX>8}FD|H0hLc;?*UBx*g(pk65?I&{o
z+J48#e%lBHh#qCgXk+NAH^16&fh*JZIn~ApisuxW#OMo^j$)Cg*U=+Mag88flbM#3
zM%4YrBguOWk9m&6DE--ULPsuOc}PQw&mV|U2$fw*_0M0ecaY6NP*Fo+`CnhcnG-c}
zb+Iwc^fVwnL)?KAXgHLoZ7ma^XG${`O;XpUGB_glZ>P@VpDx7WLmVIrKwJ7?h#|T7
z;RLARZjjeXySvMUJf50PE=0YY;?6mC(>LKQDy<B>kfaXD-H@yG9vPYROllBVm<;3m
z_}R{d5T4_ku5BBpS2MTn@e!%MAKZdMI*Z{4jj}jRx9-)tkb@kHW&9h=I%4|2SpaND
z#ihTF?d3b5FtTir`5RqQ5+;bEb5{)@k%`=aK`}BO@P_kiZ>-Wk&|bgdvZY_Rnd|R3
z*5IiWm>4iPR=g%y;@;)snlJ<m5mDBo+k_T{!Yc-yLNG;cD%M_K=l32o7~C>arl<^8
z8u0hXtf`(^Vp5jdE(=LKeStRfpK{Dfliehqjs<rhK5MIcpYiq3q7==`s^;LQ+*l^+
zAd6742QqQN%Net;E=<n$>pzHy;*rMRaVs%$U4VL9lR-#9S%0lAu@TvOW&t;gmuHF|
zU!vMofwPphu@i+0O6%G+P>8bC8sP$CgXE`|pLjsE!R_WZHC)?a;6mN1Izbu#{NiA}
zi0XZ}3zpv+5W7s+PM<z+*ah{&`O`kHlz3{&vELyYxlBqAe`Py<aXjVy@@RQ}POsbW
z?Q1j+tI6#?Sev@{ZHPxf={PPV8lO|*0}r1!Ls>-=6%}RatDh&CImVoI9n?9>quJBk
z`6u2&o{%LU-GqNfZy43OLR4!tHw3P^^CP3Ha0-}#=h)g`)QBDVCoRs!`~9)iC<&Ow
zAT6H>R-Dt)rSx;(U)u;2KCQnhM~Oll$C{y?jntE361-`SXk=E9U|{3@ZSam{{3U6*
ze@DB3xD>f}F)I_QNjp8AiJH1%HGab<`@V07KG=2Bdb4;APwWrAT^J9$1|FpiU#w6x
zvo+Tz80qh}X5DSgY|^jmcDR3yc%M3!wbPW}ltLOwH!K7^rCV*)K=e2sxm*LRbho>4
z<iciR%&)yGWsUnweGWtdl8*UFDk(gjjYF?g2~rJBpxgKm&V#1MNuFTYLwEXi9xT_5
z1^hhOHSIPfv+JfU;=hSsWg~2eUbFA@UoYeB?%~7dz~YTmzw(%d7Fnva=<#@%*-e~%
zmH=%z?{jretV^WZyQPXYU}x-gfqCQ1lA>0v8)nKwUsOv!@pJRpTHxw8!-(*Juc_MU
zq)91KIZUu_hM-~^!_5hW<bYdbLSYpiN+nagcWaZF$2nt`6(FX}prettRTg9tLU+=P
zFp&GQ?PYU97@^xeck1cM`io0o_6RGRj#;i;y4r|d!Sy&D>WFKN=doFQ(x@oL?<tAq
zHTj`>P!D;h!+yxkbESD0OFHeeBl3$z$xgZ5*<TfOB~Lj1^GU;_rW2^JViQR+fm2=~
z;PPDg0+S_^=Fb#1F`TEyL`QkwTE@Ri9_nnQ0V^hWD4If!k4pb)z}+vQ)Q`WvgO|qj
zC#903V89a*vWYN_wgTrgOX%~erL6LBMZv38b!sv7?}m)*Nv$CZhx>DNfk0vllDBWB
zq4lArDRG$CWR}=bHT$_&5Q#c(fVdT|EYAEDTC=D*>H{Z@1uQ{8&^Kr_B3=hG?FBR`
z{3WV5UXYSNFEXB#6vts`eLQp=tJh^R6iJLXq66K}zHVN1pB+T?F!khK=70FWX8@}O
z>ZaB|%Y!8K<<n20IenkKRy*m28=3UOTB<CKvxG(-m;==qZCajYlncHAkxO}hILk?<
z3Cu{TFw?+qV^ff!X4a^<4`fM0OTr21O(a{d%Gk%2c-CJPSAR?)Wf{R)p}=?gW}`Un
z>LX>}>05qIZ(ASLP<9TSau9*|aKpm1cWbW(&Rh@_)O6?5qot#Y`yKbk3$%0tJNO#>
zNx!qv&<OG@pg`zOl9Eqvg#9tk=+(xZ-@AHYpVU54UiL^`^XMt;-l7}LEXa60+rZ5>
z_F1~UPtN)nWCSd3CFI;p9uOOY8ZVc7<l8P2QuC=|#An3W?B?wUg2J};L=Z6!7ZXb!
zDkfy<)^<&$DLX6$+VoLooBc!cgIZrVi03G#;3C~zws&|JuPpWmynKO1P#_Yei#ifx
zUGLcFVxK1H`6x}?n*b3u{6v-Y!Vg;;Jr57tW;35_vwXH!0b>OF1I9de`0?T?HTdzv
zf89pDMS^ni88jz!3ul={eEmGYZ%}E&nNh%oX=Wr4&%cEeRd4f*kjF0TB51{*UdDqi
z6p9HKdf(&+#vY=s@6kBrJeJrXDq?RY0t%D+Rln*!5LvAB^X||yeIn`I1EIESpJ)ho
z*C7oC@uQFMAp2gE{cQ}k(<F<QPVEpStN`L9iXmPA98<s%^K8t@vIIpEPP39U#&fgx
z#Jhu5i`i-MdVVsxS;ZDU>7Ks)4@=>nI-n+?zkYVRGAw_#(b9u0N`^I01(Fw9yE68p
z%2HR~%2zY-k0%90>!?PGS1kf@!KSsac=cBGhEvORZK~?+D$i)O4BUfu_lK9k25qdA
z9>Sjj=q_keefimDz2*7!FSK*6gYLpU$=yF%E#2dn5_~TZn1*0qU*YQdcMy3)8kr9L
zc&;}y?>Hox*Ljd<&SeOhx6Y36opvXOjy#PCYl7<hwXF@vRD_zzQ=aCgy8RO3OnnVa
z<L6PAHWK;yZ2K7hWUkd2e#0PzP=@fQgYdT(FAw<jUp#G^yg8$Dt(pQ=22V4><QJEM
ztMl*#Oi}8w&NDzT!f+1q4TWnf?j=feDAuXZx7VFNEnwaBOVEowX%Qnp>F_{e+6S7!
z8w(e1yVpmaeK(u~b~uGJ5NFmgm0r^t*2Ww7JDuKEiWzY8vu0uZw#pOOSqwJ~hYvfn
z8Jj_>XZ^CLjnLyTom#P7Od}eo8I}ppvit(^?aYSPTP=Yg$9vf+2a2)PMvh_UGG7~)
zVrqDpdLyzOQ2;(AgOCyzpPjd0W1t&es4VtXj+`cAd4E=E`JY1YHAXc+6nHAx>Uyz2
z>cj>rPua4L2m>OD?`{Rr5yImc!m71y{o6wY8(ps^frMsHV8Fr*yQSw6A>43TLJ)g}
z8^qM@>RHPd*y-DkOb&{=gWC)wAG6;*v<A>jxKrXRt!1DDTJiP@_A{(Jr1$tZ)TJ%$
z)rLd|k*@GofEl<Gc6LqwVz_uc#eq1oTp(Htl;yBY%Pyx!83EF0@D!@pKsr))F#XHW
zL~I{LH}1-ClfipSQmYNJK73)U8Td5yjf=*jhRZ?y1r~X&5v|a|UNn`0T?fAF+x{sW
zFLin`*p8LafGZaKiGWp20vD&{wnU?#Y8S(0%-~Px?f8@e7cp=gGFQ=+LxmJ^#Do#r
zbcGn+TLIL`r}<gAhIgRoa*@F!3e{oXNfKBMN;o_;AI2>`sFcQw^;>RBNE}cAje-It
z1L1;Kez>5PzXR4cnQnkE;JbpUbge%DUC?<t%Ue{R=mWk&GSR{|%Q6RtFMf(}mGzJ`
zpwQU3LCDNB12QdFPbv~#l0gIc`!_#g<GI9&k62r)tzZw+mx7Ib^{NGCSQ}3~9;_?I
zRPPDD8-_PJtju?x3*zN4jsKk{3&6M2=|9uxuYhcSVf2=%=1q=`C~1Z}To#E$Z^1M3
zTffeJoBAv-jJL-g()|~oMTrI4Wor5PH|!JUe$AX|m#MCoMk&}1yrC9m!LdGOqRHhp
zL2-L47$RNt+Le}%LMU$ynTtac0&91J^rfbknjrj;#})qtEU?IYyQuCqe#S<c0V9A6
zvFYD-YOm1!xl@1sY{@GkbaCG$Jv$9={<!ytnJ(tm4NYKr1#Fni1kySLRmbC~?G@Eq
z*^MYKi^|j(<RTbfR;m;srW5T0zWwT!ki#?!0Ccs#tB}VY<`(Kta7RPQ^a#I&OxhBy
z-n>b+)~U$~L|}ojzw0@*Sbd}R2DcDN7eyu+jWpT>oYgKlkARtjr}173Bz{YnALAMp
z#`i{skGcjW{OqT{Z<!GOd_+UEAACN&`Jzk*`L3lCrY(cp9jB`{%sW8r>o8o_Di}eR
zk{zoOn`X!-d9ym5gce1;m3)ZXzSu1gW5u88B8ulc^I9X!13qwKMo_S22b(eQLn(vG
z0@xmwo-y&dZmP?`>wIy5WbqxfV%!~&UnRI?@T*c=Z?|UR6qP!V5XJ4bj7-x*QkTx)
z;u#pOs=0PAx++y*bR8TVvfRu3*Zg``8P?0RH5NRRrAQh>m)LL^RdhLf)-?L#8f*8o
zXx~6EI>`FJDPO<Hu1!gfQ2QfG7XQu-z229kmF!FV{iQfNzrvwK%c0_;|Fe=#NCB#R
zP+2T_=_CmYB&_r>S)W>y1+j=}*?Y-Wv_@aP$ROsu^efm%7iVU_So;9D4v9#%7W3Zd
zpwx2!R3S0PL=0^E3>$fQS}mi&CdqfSSwg%D`%LEPTn}yL;GK))Qd4se#s&O^6k~uh
z8B+<Mm!vI)>M~x%=2$?@rt!0B69xE?#n`4)51<N^JZiZN`Snt36o-Nk_-l@9DjOE*
zAF9ut8t-2!T*fg%8+B<e)wx9I1F*%0MF*$HrHv3I#`I+2;oiA@<wy6x5h(U9S8KSi
znI2a*?}Q(eS}YvRV(>R2%C*Y;#(#b-nQluTL6qUl?ZHo0PFwqIC~U_{>_fr_o}@tL
z6wX$*Hk@pS^#oI_y^A6Uq$US(Z|x@Tz{f*8#UeiN0L$x{i=s>1h(x)CE1lhYWA6*h
z>$-1r(O|pQ?#bKUlD$D!J0lxE`mY{TSojkRH`qf^MJ=cT(gyWRxnD7TOh7EcxexgO
z!7<`(Fc^=1tq~;FS}T`$b_mjuCk8MjX*j-ZO4Al49o;Kqtv%ii%i4k)2@DJwRNhy(
zsR{|YrzZ?@ThVYf-lULYwV<P34b(f)W7F=I3X~OI6Ir!aGd(wR@7|>uij(2#ModQS
zP4!67OZkbZ|Ll^aLSxzaW|>Hm6~r}#I6$9@9grdj0#(<(k0}M(=U}^;7!7ENd#5IN
zvlX^d^h@K<TSVvp(UW#}9`XnB@^^uGS%!b`7*EltgPxT19qRrb4h(zwRu5^QH54tC
z2@B)rU;?{2H)TpHa6dgqCyv9??GCb_d?|3!%Z90L*hiaqV96VM+0w$6#FE8|ACbUN
za2_n&0R8c#j6R)Vp-y7!AJEz_q^A(AxYaMMAD>b7_^>9o2c#Oy<mfymXp~5xzv&D^
zbJFUm^RfANA5$siFU4I=<l~br-pZF$oN2@j=1~0&n)~YpPyD+qhVU)LJr0wlOiOCs
zX_MM;6U%Odx{i$44&BxlyI*nrXq1NfW<1gU%=#h{xMHT3P)|Z<RKK2$otL)pHS&Gu
z^}b-(GUX8}#Z1zSCV5N$KK5^UFo&=3yHvz<$tUA7|LA+cgHc#0$B(TVo8*74;D24v
zqp2b4QE9x2@O}HAcm2Qq_9F}c&~dErZqxs-U;OjGv<W~+EZgwp*Z(Ug&jb}{G}#I>
z`~S*O{{NTp|2Z0?d8^m&>i?x57e*pc%GG@~k-pG$Z$asKo^fM8yNPRO!W$k!Jm_$y
zSUAR+#8YMS_2w+@#cZ?d30($m?B5b=xft*PQG{syZN&x?gB<FSD+G*@sgK&y+YdnT
zG4i-VIJRD%@W$67CDm36IGwt#4}2p}XZSu*ymnlucqh4EG&M5kEA#++KKi{aJI*d#
z^`n;E9hD-D3b%Qwn`xE&0g~r+30W#Nn<o-!w#r{zu^&y35X8mMJe5E6AK(_jfkMJ%
zx0$PRcAl$sw0GR5k7ymLwp|JNsg$ki4z+{t6rDHoy(H<rMQT6Eec;FWMzjMIk|x7S
zt+s9A!r9FpN}bF=!`B%3f6QExkLHq0rXoefe@>lA=(tC*H}Dm{^eLEhd^>S`pDHw?
zaJSCjeaYs1lT(`-5TW(=UkgLSQv%h#o<sM)jW~-HCb|~h_gA?<S>UWwq+6d1naWVo
zLRha+MnNhHuk!Ez#|tD3%@5WIrVH6<(fb9Uh}5_8$DFPOERz`!vO8m{YxU8%C0WAM
z0@&H3ptu?+o+0bW-}=S>a|PceQPqp}d;l)5)*Ud#X2DssI{=qnP^mdmnOD7@GQs3{
zJtA4ZvaWblKYHF?z*noP!{v;y-fMG`6YflB!P?1yiPV^Kd1M~}_cCt5?8SszO2KSK
z<AdFbkW071)%IBotLmhYnp%-Q2G`xjK<4d=cGB64+PFLiXM~5u1C!g+nxw-aHmmzy
z8XDK;*lUG&TT4!y%{bi;3KQQYc7BAxS&bhoh+o}r+$XZJ$tRY|-_~Ge8n#h--bV?Y
zXY&=TXgba`$8&g(zvVic`D(QsI8ZGSip9(Kn$9nnw7A`px8~gQqO9-!B$9=wCZW+I
zwzOa{HZCdu0M}8yiQyZ2p90?1S1qd@1)Y<#3A?jIE=O-KzIFxAyJuYP4qcw+j_muR
z{S})vh3`|2hi9ysVpehN`f3Z;6CLS-rMQoR<L8=dPP9*uYHKO;98X<$s??`L92hut
z2gWSt>2*!@yF<z5e1DFpRQl6}^A)YeZB_V~SN7vtDYLUQ=UaQ(tPpu{)?(iyM`zP>
z>DG9@+$g9sFO_|vR%J`ZbunQpxDXS+U_0b5Ez={Lc}`aySD$giG0kyQg00gM8#hqb
z|Hl90-^M0rFyEguhtvb@(L;z^HP=xaGM<w*c`bqNF6~DnR{#&o70bdG(iPPThy3QH
z`Hy{S9hy=xdGr2e;X(DJjCy{lDnz^llXE`%t&g&{2iN&tpq%A<lZtTdy1sMT3eT-`
z9i5%C>$-J<iHHk^x%8wP_xZH_$RVQk8D0xVJ@Vc$M}`i|)i!#JVrk)POt-!5hK8M0
zY5p6|enSL?%-RVYj|i<_`^%Iz(VWV{_Z*x~d)K>b4fO}|Tq_$)^se2ena0!Y9Rk+Z
z&{fU*8<*D%$}8gp+M)eBH83Ff@$y_#WV)wFp}HBVnt1Ovl>ukja{#FjE55!Nm@4e+
zzte81EZ9TUSy7~`QGLc`-*~q{!gW={wX)}kJL+udOt3kz!!*-;=eBZp)L@goqI^?*
zt&CqO;eEG9$$y)?FlG|SV0gqJKVwnwj=(#;@BV%xOjN5!`kT4)V4=R<ghSuE+0rD-
z)dn6DmsN%uVq+pY%NN!w)BBYQ-A+v760Xy`)v<V<{T$ibT5fZUM>Y2X_Nw!aId5|?
z|F}b>iHo`2teX`rX^DI!;OfoR=t|Z%tY(~CnM!SQ7Ccl=4C??si^%z~=|vp?6OP`7
zYPGWM&ec_IRE}$!W0t)AW8G1L^+{;-TFZ&NYJFJ4i$`K&KTaYkUFr%jO`JN$+t&-F
zNmEc$?;|PgOS!H~y6m$5TCB=y_sLQR1;U@WRHiTMW^%V%y3uI(HT=|N@Q&yHMOwtE
z`JQud-a@&tY(rLTENLV=|M=mzL_WuSp}^;5IagW0VLc2<<v8a%SPF>8^Iq5Sw=tX9
zWqXMpy-jDNHJ76R={&#K<+0kvBdUIt=0QNzA`3Fnhl*@B_M@-&i?%4{J$fvr=Qwjc
zmf-?A1MZIIO@|yc)k|*`9rhL;W*_>lkKG%?y-(T|LaJuGDvepiIlGgOwz&2qorTT}
z2tWKR8*@sE?+(b-r7xA3@Ht639}g@k4)|StEkPC2jcwIg)z4fM_a~en#_(yIb4_?-
z=H3LI>T&$jY;qIc3aDM3$s}jBY<MbYR&tWgBVJzsopD6G`EoNL#q9wV+Scm=?}vi9
zs)e|H*P`GJoq2mwm|<XY$F~P0+|4!-%KzA+ls-V`cwxZFfO%isyH7>#E=EDHh+T!h
zwl06)<~U_uZC<k-AlMb}jA-v2aW`MUx#>`)J<+FK=44K8d^VHgc@c55?{l(zw^zmg
zyJDw4@WN%~WJ2vA<ic@&z0>6?cf;ClWkCx+)gZg?!uGbN6RBwBQ@Yh@<^y)Fg640!
zaQ(dZbB<9-LWXw9S!=)WBzh=XFkivrBEOj19PPNx&n)x084q_mT(C_I(boI6&eb6?
zuV=r0^$~SKRp7#`5wh&XSEHP(jjI+Js5LWJ<>-jZX~V#&Iiv7EJXTiJ*H{@cqUf@E
z<>GpbV9j%13{w#AXg+6C_&)V^cgMAlHza<xszYaSU4eQ@!@DM~a3_4IBD_#0&nu}m
zII?lI=j<WFl5YPl@(EtBMW$liY~TG-e3Z@*^Xj_+p>YnK%(A>j3%L%ZX(3V;=C0#k
zY(Jm;QM;k~Ktmmy$$fg0uh42!0~j`Q8m1`)mliytI@a}3m&7j50KsONa38-+Ezbyg
zP`A1`i|ca0%q5VX3+j<^=`A&nJh?m7wo(bGHMN<Mg55v`>QqAz^yaVIlbEC@q<Ea}
z&EKl?g*qY_r#O$K9uoEwu&BbYyj+gEZN~1-x98@`BEl_et&>WN#G&o2ns&EnNb!Qb
z+&%qn-0$(zylOaZvR37^(^Kqjj=*oW?s4u!x|t_hA#ye=lkTZO5}dzM&c-fmJt`@c
zEy`*Y@H(W}w!Div2(8n9tYe5btM(|2pM;)JDV*63E{92Ie!HE;E9sQ{+8WGul&>3V
zLQ_GEvs@Cmq+`0J{{Ce}fmh8rAy$3G)kIvS`Zik{ublDt-+seRVPL$4VV>e-8=3r=
zSFjE|IRX>K`rE~R7FVTv=D@_ZI#>Qx3)IlcDCoKc`G1b<)+H68MAl_zw5v3XSD34%
zrKx}18qbo!=(tDXocvvq99dz#Fi({RT)FJc8Cg=?0^aHQ)vDT6gaU5WCVg-4EVdl|
zcC-(GF``C+bE?%5m|eySw76z<4p~WO0OxHp6_}8mfr00xwxVTEr{^QuOky_GxoYk_
zEh9zn;$2HXxOPvRG0H1i&1_of#~|b*i;o1tL&U(mcwy91EJfo(B|}&fmT3^yA@vPi
zq7n%^CCRs=o_H^nyY{{nowFo{9f8bA=5YOFxbu#SgPVd@>mJJeubYuX86+Xzafp}-
z)W5ndu2=RV<p_GpzlK(Ee5~?-q><#5HPE8*BspnJjaine`<a*Ma~*6+8npflDc&NA
z-PcPIvi(&A&r~;vD}jOYO~G?bM=MO|C`9W}s;k~7UWc+Lw_o1atnN=}oP{wsIOIU8
zF%C4Np3bdkf$``cK(b-uQJ4OvMGURns%FjP{j!#IxWnUL$ZiF_1&9y`pwelDxP1P?
z{9%}!%j5F-{RnFc08dx}+0kj<qpJ@TIOr_mAH<pK&c?MKtyg!~pcb&w@Ze>e9~REF
zzjY2cHE%?l0fuu85K{M~Pitth`Bee+;|m_U*_Q=DkR9j{e+~>2cJ%!zuIn26zyWi3
z6I|p3puV+Ed(&5rHyt(Fwr#QdpPnJxnCF+&Vh;i$uJsIocjd=1S}ewqK;`uwT1Ixw
z#p(bgJgh#WX_DF9LvAC=Njb)vQKsD8Fx4N?GW4i##aM<RdyMt$Jn!9jrp7mV6IL27
zGgkeHwRrdBD40$AXM?o1zr>Bc)cm7l-G&xTw_Ng#N)LxMHmU40NS$)J>18k5yiIsO
zTnn3)aKvLjPyHzWR*#b_af`ic{f>oXe%7TXc6rkBs9jJ0+z;KlPERFP%jozCq;41~
zlD#Z|uF|&Elr8CS65*&7rU2&L7K6~U>EL7i9TtU52IuzbhFn0fW~zZ_|AT3#nL1%v
zqFZR8u^Ez@8Aee*-owCIL{$v^Er(}Z-a=_j-b{X$PIBc;(YlK18?S#hBywP9jru`u
zF$1)jKs%L#EK+RbBFi!xrf!jb=}#4-QSbIsS1Cvze9AiX^cuW^XpYn6A24Da6ZilM
zV=huCj(xola!l*of;3V0NaO{y+`$)vD9?YAhy}Eg&VcNF6lrMz2-x>Ql}`pOEMKwv
z(WnQx&~UlkHBFmJ4<y`<>=|!)y=(&1>i!V}4(8zAg&g;u4;?8QPc&}c#LW0E#Tn~D
z5v#eoTYML?nGvcDd_NW{x4~ZmI=dXXSHjp-#1+s}yzgBLRaU#=th9;vp&oVU&cG~`
zeb8^7a$^GU!DmNPkKnBsNb#fU`POrc{v&yRXikk(`7Hov8`?%Ax@<abl?I5Fy93p}
zN_R1)!S4#onQ;YRl6sUbS5Cbz(%ueY6GzC)FAc#a0=C?>w$7~)(`qnT$AHPz{8c?_
zyoSlE0mQFy=B$S8h`@i!4ZLFqb-)Z8*mh$IM+sng6+#Q)oYT}Hj+30YCUw-c57vht
zULfP+%!L+^r8~TR+wSg#ml^<q*}#<=_oFs!0x|iUivyw~%e4#OvUt5;HX!KySbLH6
zd<KIUgi~dUgd5|MYp07y)}{;W)fWJ|o0T>3N3-@ERr=TfMZ78tw{L~Pb0Ndb_c<FS
zC$Y|5yWC8U8P>>Z@iX~1da6ZXaA>T-j&Y5&9*mkw=q4n0>R5g6QLTSXKr|q|&AkJS
z_AZr6ed8a6t(nTlKFkhsgql3Gns}TSXyH^y(KcgA5H!|k)~|=Qu|;roVM(UgO}=r&
zuId;WSyM4})BOimLkSi7E=HcFd@d9X%mD@YWw4`y-cd}ao;OzefzqT6#9m9W9Ikdw
zBEi0g`=$E1z?2v04sv&-C2Ms*^3QZY!OepQRs<+UKeezSCGpsstd=+>@!cM_-15%b
z1QPO&hT^$=wJec%-$>B3_A9UOxaU@ko_8w?14M#T{8AD4TmD7!^;~CSqzaH30OXnl
zCLV$fBy7}&`}-T~3!oBqEeYgg$#}lu1;)OO6tARX-epCB=@T;@IVqv8@vSjiK%#+5
znCJCYuI;d>`qx)p@!H4Uz*A&13YJKV=iQmw5YL63fO{MwiNs}-{od)wK+q09s9gzg
zaiR)6lAO*v%E8fJ?R8ff0o_MAbRV%lX&7k>>L?1yObh<~DSQ$g6O*Av>4WX`S+I5K
z>OIBnVC!{HM?ew3FGkm|^keWHt+xFsa0aWilV65RGY3q)9)$O6DuKqLi=xSh1qw-$
zx}VlGBXL+VVr(kG#N=zuAJnX}S_S`M#8y<g11iz%H<nO=XQ;=x?9{JFMREI!S~KwW
ziO7&d$qh8A%PTDFd|#J<tCTQy4v%9f3WbPF9DApE90xb1s;X}Er;sv@wK3@dAY^2J
zuHOdmuu-M=32*%eoA?XIN51UyxOw>{pXdCk%>9oI$rky(Z=J+l+b?D|6t4tmWFVG9
z&9f5e+#~3^KcYz>GWFTmp>Izp<!Kz>s_5cuP4A8lye1#4UJ0?<a-7I2SsGFB*ll~W
zMQ13s*)~p`7&~erj})1$8ya=<J;Sf5nDLK=G)Pz)1Psz-Ev(BSa4!MO&KGz@rIuq5
zm-x4Tkj*_hbgM|T1@12~j_&0VU`b(3gA8E#gH$Frhcf4Y%luW_ZtWZb;#La*+7)VH
zt&>g<ioO6yrOp9K%RZ>rXQ_Xw20n^60iqz=z)qNW4R~|a=7lw!g7lC~U9YRyPWyd}
zG$Iio%9d;uxnA)bf)Zl@mIa54n}eU>uLDL&oAnVh2{?CMysh%t*iV4jH578f2s&-W
z1`%7lX62jsFp`r!`kp#Z<g-(7VAnE-V=qfb``R*tBPf8?g7Q=sf*mNUN8#vXky)j<
zg4^fE;^@Wi<!@*-Y3}=1K}%zT3++R@@mvcYq1YZ#{Xf50!pZ>y-61Jn#>#7<yVd$e
zRn4C%L~&YNAp|3NYDJwZJ9OTV+0Vf0e?Eb7z+_T~gk&v=kt`XZP2az!@?wo-J+YJ1
zd|dtll<8bk!Fd|6Gg*>}-2j8QdGJ`btiFDnu%uevjf(QMASxYGNMIeaWh~IFINzx5
zVXPC^_2;@YCF#du_%;bp`fq_Bw>oUzPM=VVk*8n6YPmHSt&!;NuIuhyuA)xI9pJDZ
z3{}u4tes`Y>z?1##K9(kfUC#7K^e={_%8+DyJ+DS<ER<TaLs~M6c=T7+Xy&=benOb
zt5}TJKV*{nkIt_~sM>qlbctbRqnP<?P?Lrwen_TFw~Y<pX<hSE3Eus}o|Yap$^Bt(
zdxp;F-FG|EckSkoT-EFUBeN*OV!j&vY3wncvo4J>D|BAjeJR5&shISi7bh(yhoet;
ze@)>kiK&F`3+0`#>+^yz%%2nDmrSQ+MpmgoDK-mQ34~o}gHlDjcT!3ee=Cd_vBCRB
zFD(fugbeZEL4VXhoR^8NQ6$^`q)FK#h%F-s2mIoM;t-|=Y633Afpmwj;jH8D8;!7N
z<BqDugypM19|AIT=!cb_*9#rIshXU-4x>K~RH9yXcP~#VPihSH7LkZm#=6|=>;+<%
zDx!M$RqoHp@$XDJ-RwC7*!&I-VNfLhanOumq`)mNTeeA^kVgjpJqz@!0g-!DpXQxl
z;%eYnz8(hm;0i*maSkgTk)hDdm;^T?NRg}-`?EY&&3<rRJPW*?M%t(ksMuGnsOGN{
zLl)x%zy5wi!DXv==eErtE%k(*K5{r08mCM=GrEvumw!)s3BH1Q4DtMv>~!1nfS-0D
za)iy}?E7cr;|slq`)3B}NVZ8r{U}9EVAR^@eQiw`{-`8)pw4hP?E6%=mrd?ehi#jm
zF0YyRPR;%_Tro7cr1oyLc)SaZfWyLq5tHBHwAfB`raqc9Q5|Mh)z+5g!M;!B>zP<6
zHlDGIi*Y~aRJN!nxe!c<(x2*czdV!hW^y=bXSmm?6o<7hYkcV9&?t!3%5ip{+0B8x
z9oE3MmR471K8tiQ&pgL;PA&UfZC6mWqqRM$X;JRP@7j`_<`o(#gYegc1akrqjOaeG
z&hxowEIn;2Zdvb>bL*vsk4*3gPvA*FDl_iEvQ20$Wi{M<PmNB}idOW<$vesr0nQ4K
zH_N(n4kLYWectFvz01+r9XaqAtjWmfNMx7ZQG@3|e&eUHY#cEcrk^d-jw%Gr4P8M#
z<1nIow6267%ynP(1%)mt=BaKgr(7w3flMA@<Fe%>qS1vdMQxebHcmF2Pw%{ZX9gG-
zkUH>iIPY{vNMhd71&ft_yg!nF8E~IdJd#-qN|a&R>&1Fmc6W-f5sLjsmw@!2q<xv-
z9FYHKC@-23n64XL#L9)|VAXJRodL{_6I%DO*>1YL4axpo-{mV7Z7EtP<DFo$3VI37
z0LLW@zvKOFNHCj<9n3Z8W1<udHwdHWQuAto4rjr0$(maqVYBt?J47Fji-zBxUMF9z
z=80Aa3^b}f7lzSYuf_5KuwZ+H$6&>Rfp^v0QB|#*FFUjGRYV&r6=R_$R66dRV@HRb
z3%W#Kql(n&>~kaRkrJz%kN{43`fO@M;r4RMY<+mR(Yx(eq}^lI>gJ@5XzmoHF{r;T
zV#nsRp?|ql!Tsb})n-v6Mqbk4rCi~OjM$rVg%JL^Zq`=5fRC(lo25w?4s3$=ydgJO
zZH`H7Mfv%zdud!=Q9?yI<_=CEN53<TGS_nFwDZ~PIFK^W!G<7^05zWLe7|GG_|GH`
z`W*$}OAJ!oU?<Fvv>$Kqym7%XiO^u9ocWMT;JJ8V(wAr~AN}D46m*6NF#E2MW9zyo
z?;0E79aXX-_@m93q#=s2YXQWvCCeHHN-;SZBSHIaHY}(&me55Hj@P@(MAGQK31Z!f
zW1@pRu{?h#9`Df`P#k4?xY%TDqT{;OZ=6HJ{?q`M$s$=UQxd7(#+b=|iQZztTZnhL
zkvI{O(O`JF2{cS=dF7K9`OFsFU3LX4Ack}R+LQn$gGZ2gGmRMCE8hfmec_G%&>Fw8
zg@BI3^O>#=@k9rG#$L7Y<H?fHdYtBRmqL<qeS9K=wEv*J;7NWL-wxVOcMF@%0E52e
z*wLJf_GseA9_#A*9mt+?a4x91pmwB9oe~K-F3j5hD!^L9u(iB1+;`|z(#-X0sqW>8
z_Ocymkh=?i#dl0HQMsX5=oO6>p&`x1yEgRZ3e-?mDLoDyv=v#fy<D$^3TK+We#d_0
zOXO{WA#|UHcjB<b^1dMXO`7tC`i2Vfk#Az!OJdEAZ(kjDgWkTbVm>&%5OVIl)S&w4
zu2<G^yM3R?LMI<(>$)6WR9#tzbQ+E7Ab7MG<6y`L>FT>&-HEaEFT8c@d1e(Zr+9uw
zKT#B~WtFEu%GB1Far0gLG-vjwwa4N*MX!mbS;{}q^cqm1i+e`FUkTjX`7y7!(fker
zM6{a?;Yk>Y_|8UE2uc=2GwC6*mp$at{##;9T$T2SQ?2FRlGpwctv#HG%=2G5pi)JH
z{N;aqf^9vb(wIC+Ygh>2UyhAWZA4W~M)7ue@9+E8tzKql2^u<~RpOXsH1<v<S5b~O
zM|%cmzbjPJh29wRvIWKP_OK5e)on5p8o5T3)VBS@0~8Cq?O|6#^;hdj%KX&|0xA%m
zqxBV(uaP8$ONRr<1k)WIO^BIS)6M=}^}97O(LV+8c;#Nv6^ts1YB4g$g05D?Uxi)0
zxG)g%bMQ`rx!P?MER<iCl^N+PcTvq)1PpyId4sj`a{;opEs>#d5;4TwBy9Ab;?vB{
zKyXjx^W_RpyRinVvnJD<rA!Ny6NNjIteg9<p&13Ckv+%9HPp8{@DXhC(Uz{DNK#X@
z&)rn9aQvjo;idv&s#AHoHrIhV*u@0F4Az~g&faDqv@Ov)X6M=tqmym3k}I;l4t(D(
zCS`wQQg*vS<TgH_9m1tkpPgi!a>iDB7{{<&=Q73Fej)s&|Ge+cIR9q-n|Iy20fA`_
zGlGhiOwRWp4ZGD5;nGZU9b5W6-(!dVT^#41DzGpVC`!R84Rh@Q-a|=efGM(VKcG~j
z#RFbI;i<)|3A7=3BeI5ZhN{`^$EGYXOX&cR<3_F*(+V#`8?+P-I*-V7Gn)Ly=RIX+
zx}A!6Eu@3L5Te1#rqP8MPT?*U4yueA%jZLx-Zn1R`lp9fu31AZ1I$U}Em}R0fkSTi
z0wq=U-fwzPProb$UrmB8O;{bce8-)cvT$#&V%|w>nj9dSZW%56Jhn8NDl?VpV4VRN
zlF3jO`ZNvcVE6IwB4SdAocqd@_`gBZk!a?hbmhnp>Q|z@eo&)hwT|XYh08L5i{qth
ztotCqIdo*%@_993D}$W!ao*!Y9`D-7@{`h|NFnwZy5|v(P@H2@;f`nC6?5&47u73F
zM0gkbnGuZ-rU(4LGk=XU-abc%t$zXgRP=!3G(s;Oa5u1bU7n+fJbf-M0*&DNyoAh6
z;;pzB0xb1#-6^_TAhak7!<XOQ<Amp32?=anSyXK1La$kGb{iJhXz3db7>4q^F>lr7
zdIMa2iC#bVovXBlp@~;+)v3cGqS`pOd|NWf-zTD7xwn9##xe~bmq*e>(cP2%?auCg
zQ&HsDFRQz4<;Hl8`oacXrq6aSRG|D_%2b6wW@@JQwMs<aH>&45sw%-~{nqm&YOm8y
zKGyki5a`S6-8q>|@fNNB5NS_qBJOo1>u>ATq`o|Qi|om(aJceQo5$--<(aFF9d>U~
z6elz$13h-wrCmG<9tk_WZ=$1@=0$m78!z0KCy!r~Xx|4-q}s9zKvL@0^X0xI>j+!)
z(m@~LeHt19J}2hDmJ}2?L~Xfj*`-2-bvD0x?DzOTQXPML7&(dC`2lu{GH7^U7~xMx
zMZZ6YjfG`WS*ME2@zH|Qa<aH7-(6*@{6pp@-`Unl{^{1pM4!LIYUcz<+RV8zXp+NA
z<*D&?_>Alr=*nsk@H$A>oPEM(4W8EE5ux86-J*1?Bnr>MLd_*5t4biHf~J5~PtZW0
z^DOEC9U(rNWR01c4Y$HBTVNod+J0ixg%DqzU@PrsN^3t26;y|-ZWtNe_hI`Tg<f*$
zz~At3?3Zjjqt3ftwmr@80}64KJ;CRpZKLg4BNvKYRP$9jO*{@$Rn}>R$I;NzpP;3Q
zUtmZF)e%!wG0F}h5m%@16>HpOnHeDCd(2&0+wHdR(eS!9)s9j8Fk<1@=si9QRt=)j
zq&R`0N^Uf3{Va$0Im(sKo(i4#>Eo9T)t8?7U<MhqPkP1-sJ5UhlcKpwsbe0WUW3Qg
zTzi%IgrbH)jpM8t4!6yxg!ISGHD3VQ{)hax%>c~gylkzvF=Whw`L5SzI~$estvTm=
zGe4bzg0-r0=$+aVIUW)dcuG3_;8vcqjERcM(x92|PO{K`{x#Fig^Q{pk3I3^{DXdl
zrPi_lXe70TrG;YZxfUCrZ8=j(Yo71arc=jx^e}zCe^*{Wp$o<+29u2b6%cSEd)_)+
z`MtyGZVQc{73YMNa3W2bSEniw*5*pFd?~{$KM{)eOr@+tfy?o2oKtZ?8CGkcRv9Hr
zU2Z==d}y;D-uTl3t(H0V-@JX7$S-<6J!R?yt#!yR=Hfl*`E$Fv_=OMYRP%q#P*>My
zd<x8+^z=vM!p8bDWQSZ(K^-vIy>BFQhPx%TxpXqTlMC{0$^SE+U`P*rpZIe!5${cv
zNrn3=F@sJT#`W)V<UedpSLAuz9*O7X8|u<i0hHKp{PAjAGFOn6eTyXpT^NXZzFYRd
zaic>A8X>*Y5E+WlJMz9|kwbF5n6q71>J1Fa>H#hV6Ij9s7d3GA7z3D`d3?e#pbgi9
zIX?=U#1{Zk<E<&)=7_p(oi2i~j)oP$q(9%U1cV|VesGdP*}^u%&=>B8^!EqQM;CUz
z9B%%&-uuAT_Okj5Xe0N+?qW_L8_Y&KV3g{)JUXC}6H0~~SJQM6(eqBhhiazvYtaR{
zPFI_7f9BD=2{JBi%4fz+zWz=VvW_!HD;=ZSM(Pq#uu{o2PuBLQ$~JUl3K1q0#U$U1
z8>8|ntLCf!6f9_bQzn%yi+ofF`ql(w>nYgtRQop{qdY%4%Rg|vagr*1I=cq?6mhmr
zpmHF?;eh56Bx1J?IAb|gW5mnH0w9f*^E>qN6Y7aW0MI|xViB|;FJM-i)WLr)T)C2m
zA{T!AY7qZEYv?SqCsQO>BXz(YO^p9w*`OWFvnDsOs`I#n9#>Hd+@RwqLTlsgaj2b0
z>w5@E@!9^|%m-D6Q<ky)(QmEK9!)2BQS^FX<Jr&m%2y%2uBKG~<Z=!O=0EjO3m?0a
z*>{6hcgAbo?<6JL)@7f#U9FKEPn#Fz-QV3@Aox|2h=ujaw|hBmkE#l-ui{}=LwNya
zeqo=kzzT#+DuPw~2X^13i5n?&c`$~MYTWxmI5c7-k{^QbzE^c|qovKfs80eBT{Yk=
z^j@R_-q>5AaZg6=>L2~4mY+ipfoO%Cy*wYCq0XVE&n6Pm$16UTD}U8qPU)~CZ`{)O
zP#9|?mdu`Ujq7VBHNt>BfI74Y4^PrnNG$TAv@VYJxd`2F=}9!xBs6vocY0ljG$?+i
zkME5a)RC||tH_}G`r<bg*rqz}pcgznx&=*QaN~^I5F^q9I#o5{;;KKdFyfFv4I$Vb
z4VMw860{2NnX6P!D5eR{S@OZ=Bg-{DS<!J;76J*xs-&5M8F9|PHgzM$rz-=(5q4xh
zMc4OJ_nbfHQFovDy*wV0p$)51d!539PD9VOT-W!`{0RHcIq>Dv1@!Ji<^G*VBMzKe
zw|+~2oP|aHjAxa_6sffK_fRLH(ScM!sW2CXHvEw|6F2<)kHoSXD^gn=Y2FQK=tIm{
zak_v2JT@}AktGw|ducnCrxxEHj<HfmA~-HZq)?6|9mz)g{iNFVfTtiZ5W0tGczK1u
z+r}QxA@gaR_kiGx6b!P*Q1NM!5xMK-Y|yKVDE>PKYs@sd*Qw$nl0`%L8f-ch3K^gJ
zM~jC;MORyHO3L&^<0ilvCA-kz8SD5x_48}kgia^;9?nr6gnYP;2v0dcZo<!+a*U`N
zK$Rrf2g_=${Uxjg^3X0wk#eAuYAf2&1ew+D&eq7Or3k8&z0ekKeDF$??f%q8JpJ)2
z1LJ<_?fFbmrB73?LK3BPu@6gx?@dtmWS!NVCY!5oCdzK~L#U4z)%ZbfYUE?{#_sdI
zAgSof{V#3owA(*!54;zq8b(0>#2Hlg3vLaE<p}z}md;e@?_XSXd0EhPCXm>A<TwSz
zvXj^gqZWaIo^exMg`r?%&-={8jc<Iuq*@`Hw#<J%BXV?DX6+I52g<}rtJYaN>{$9a
zFD?J)SO$qC=P$((tGiukgD}qe`K<HyW9igz3uB0;k^S*>rb>+wdosnWd?WY#*f~jW
zsOWQieW8$+NHpP`G^?fihHWZ7%Td5XGpNH%#dbwEz8Tj?rFXyZl0*`D^8)%p$`v$A
zoHK~}iQH3EUJQ?nta{Pzx<u=?-utSjJ2kKKn`XM`^A_3stYkq?N#ZvYXY&F@tMem`
z-rf|c`wNY)z3yEDW}c`oH-#LJ{v4?!{W;_JmOaY^1y)I#`_pUkgh2xvyBRV@t*v2W
za$er)J_YWYnyxdkPS5+Rjj>{lGLu&_45VXMHi{mNdr|t61;KnxxXAW;uR27b$QOyf
zP{&2X{ym5P6VZJ6L<QwQa3<a^#>eVnHC^5%R%8ztoQ~{x5k!$JJB64=fvvAiFslu7
zOkt#9@jY+Ol`~*k;i}DRHNP}{MD#@t;gET{oSpvL6Qk)Qn(l+X|D`oDUGA!r?S5bz
z5j|poYCu2P8_@g*xr<%tP;nQY9{*x*#(E;w%JS#bvxBLzjNznbO}Hqc#wM|&$r$#K
zD@K!Xf@+lid6D2!h5Jc_(;1%4W0tB5-X4lcE}k{7Zv%`!*G_|~hzDnD^5;6*d>^m_
zGEm@?%ur|}fYXw=m{QCqC>?`a*vQwBK-MIL>0=B1{aDe0y(B5j3k-aU>;&Di%gfo+
z|7^d1ZNmS2{~hqeuzX5b#$2V|%`rusQ(ZZ`J&LwqqqFxa=pcuofw+?7#0(U@kho^H
zb2?$ng<ESs&rr&WiyKn(rbmb)-oJH#@WMudbgg2n<2RwBWgVG+p8KB%#8jx?CA455
z6x9l(Fqri9af~{&2w3#JpL9wmqJru;9X6Rkb~(KK<JfS}0_LyMVA32E`k6}W1rpF7
zGM<>nhf%ulyF`_7Pu!MC<7KkoooVdu6UMeeIF?%|VHj=nS88BEnRms~#ZMevurA_g
zNBy6-`a2Si8Qgz2dg!M7`5lDf(}Qg@m@xl2x&D0r!v3^2g0e5L{(t=R-+!@)`4rw#
zSAUuKPf+q#H23fC(uq&}E3>YO<Nwb^{5>ELQsMMII(dBY|M}wodKnpv?}KsdMCVa|
zP2d0f{gWCrb-Am5@aI3LDtPMOslrN1UjPfKqanKB-`DRYK|EMw)zkCeClkhn6Mmbg
zk{dCaub~2uMNeI0$8+Df2720&b8@Q2F=$Z+A`{52FeWSh>k7YMz(I?Pi)&Z$UDnu_
zIQ3bO{S$bJLD|~I-yM#ht2Kbmp4rl0NzYTbGy#s227JuYc8Glco)jLDPZ*{>4pNRK
z|GCHn;l=J)x>Dx@T^_I7>ejY485fu8w|S}xd)i=H@_1Yp?@m|HVJJ2;{P*pCf-Xe>
zAH~#~!Xf@YPsHQ<`zx80(cSe~sbL3l?un>FXh=vDsJ;I@he5(sGP5UbeevH9?$8rT
zK49_Y;2YOJF{HE<lw2G==-_sG{PpWsUv*3BuA2C5p8p1!k8vge)XQm)4V`1ke_nSg
z==a%9rM^ws5S;7F|GogR&nYEX&-KA}0{{H5k>Uv*XNv!6YcPgaj}JE0--Af})SCiK
zi}wrs2MT|W`j>rZP<1dX+`?_?+tu^`*M$0Q3a4atGNslN`t|S0VMOTz$hvY{!`WkT
zEG#U9E7iv93Dy4`=8wC}Iy#tEHIN#-zc-#wDCpE0rCFdCpyV847wSEz;u1k9ivB$@
zzu<#W?m{yV`upEJfg>0Bu9Pln2c#y_z;QtQv>8<SR)@3YWP0`f{c@j*z{{=YS;t+F
z{{1F9ZJ@4>*P=m7BQ3j){(|#FA@2r!0XO!Ri#3>k1`|A(iWb&8=f`>-`wkl1Ig*38
zoUO8v@ja+xk&}}fT`PxRGcf{dPUN)n`R<h6=3u(K(B~?=c`tY84-<v;i%hBjf_&tJ
z+ws@nTt4yPcRl{`pu2=&3{JjM(*Z)DlPmhydL#d$2~}<;$G}6BGLbIkZhPy1di(x5
zpE`xlxz;w|{7tc5Q$Dw^ntOm>Ow<b^52fbjZkZz8NLcMa^}lB1?Pp;<z3-()BM$|)
zpq~-gsu=EVUFZM35&b56s#)$T-V%{dI#{ePR>846D=sN%GRBf6>JK0AX<Tma0dQ!0
z+Qacu`VH_SDN^9d%_mfUy~``i7X^D^YJZ+R&*LnTCW5N5TZ;m+g`Qg?de9>_3as0l
zfo1J~&ktg$#~mc|eVR3)AUpe89ePSiN;xL=5(9~!D!G-sEg*cJ^W#jm23;HjcFg$J
zcyaOYlCn4Ywvt*%!2!FzjSG0gWlCl}Th=ifR8JQu27%OwMm7Ii?IH+jpdSQ&Xjc51
z@jns@+mzi7@JAvS;dZM0n+5RCz%Gt}UFzy|r_VM1GoQ&k#C5ERjI69tVuZ-M7yY(4
zE9J?3soUN(hfj7Vc-D~yVztMO)CZ9i6&>B6Q2V>^QvlVDzS`9kNgkq8E3D=`N%;2~
zkOFH!t}WCbRViB*vx%s1X&MI`J3iwbJT@aehxzyy(7YLrKD$u2etXOVRtfwhrYD}M
zt3Ra<`XP5V$@e6VPObkEj^liWsw0x<!X$Czn`|tt%>C_^@l2(q?m?)#YN56U6cm&Z
zh$ihoY?I5eM+oZFmYhZECC&L-bRU-9|9VUFQ@zC3Hm<DH{laRebgD4Iz1g$EVyYCK
zfPmoz3ZcBRUC8(E#6Q)FQt|nm<RkETmYswkuRYQfQ~7CtxWZ<q%KUdS?K@h$sWYh9
zwyCwA_`QJaUr3}gAfsWR?*H~HfU;+QL{fZQLq5I4i+kSQY%BD$pZ_%w#O@$t6X$#3
z6PE0G&A)^7ok(;BXq6ZiJh{d`aNH6dpa{CWuOOjYo37ZI1zFS`)E$udvyAk`W3?fz
zqwvGfVMf6ce(XO^{G?2$D}}ELbh=go3-3oOqX0~TI7y}cK$bWctP#lN)uIa)W5J&b
zcwUzS(D}G3qzT7}!E-sd<8jw_VMoxWYrJ<0aX}wsMh#OgMlqOImy^BH+5l3M`r!(5
z>=8|5&&ie98hcjPV<RBo3FpDLovH;lQXZ1eZ;w8++ONxBZRKwLx(8weTwil99>?vN
z)4iMIk1c!?<H+^yLS#;i*^5_=51x7RJy$0iYg@VQc{P{*7yNp^5q#AhU0&2KLbNI^
zVu5C8Vy}+X?G#V;wyn<dd`i&QG$_Q)%fkawyW#sBA@(x(4D9qj<5i*Nfilc^ce1LN
z)BL$1_{hk?XHdo2GnA>!>UHbl3KR*kNeum<4>bx;xJ*||wp_f?i3tqGYdE$Dil^wE
z9#EGDFbMzM9siR->$Gfbahoe7V~nsuR%HYg&f-VMeiYSfLi4g;WGCuCo<PA5$%qbu
zPTvCBL1jZ?7l)nkF_}$~7t<s`>>o$f+pgYxW@v1WAfRK=s$`}Q!WWI-Z{|;a?uq(w
z*Wfo8dr6Qn_z=S2#z>!yih^KUe10HAtgNhDD_8JhhwG)fSW_+RiepnlXYqK6p_E3g
zLxMJBb9Y%SSJ9H96Z*xA9h!A2`eWi|%Y_E9wlWqzddwj0MYyGpU_&)|{qb_A3x)si
z6JU0sR1{jZQ0@ELS6WQHDH)wwCMCtC8|vmA*IcMDuS(EB-Vw$5JjrVw*WzDpHk8qA
zfM&0k{oJ;<;?sL^alelNomD0Z8H1qJV`lh;YR_K%5+qwLaMDZdk)77mfHP9-NJsS*
zDQS_wppnf~5pQ|t30Dcu9T;TQ4c$_s;1OHf#-o)56?0xk9F$AKCS!O}LVBE%2QUEI
zfv$I9)l!#=D|Mg)y>hPW<@_9wdkp6&;C+~>3`Zx`KY9_W6x3L|$T$9TL}5EkMqO_j
z)8j&40B#9&JiXSXE|75GHToeH6dc^qy@Sqt?7!C3C+Ig4pRg=-^;+IH)H!S!L})`?
zO7b-;G=s4Tc+0_UEFPUtI_OW_ExQR$@^y6`pB)N#KZf2wI-*uzECx;Lr?8}RpnEjK
zdygak)QoWnK6t+{aOctklzoV{#J#9+)6(I%V`B}dQS1FFru|~ZgWp9mHbkL)sVfcI
z>?jsNj|Ev#u^!r^eShq0yaWy+$HY9M=9ZS&Hf-oDBs@-B#(2!NAt`s7c#R+?PsE)D
z5cq5@b%*SLm7{7ZN>=Is@}J@w5hO`jm4j{|xrbD;A;D$N3oD`deWt`Px5i5Ia>2vi
z^lHG{O3l1!8eU@wT(*V!45q3KA~<z&`a@Z+>wjxnf)f+w0oH!MJ2ua#KUrvuHxQ++
zPCqe_gBEDLk`gyi>ot2&gl^6DRL?*WC&7}<<kn*R=4{6lQe|@%#%)~e*UD!-_`Shl
z-=nNFwZ$DM&RttHkHzd$3-t!jDP*au)Qx1rBVT_3TZB|SU)bZl<>(+_vULM+Xp!vU
zF6g;hZoQybF;SqU1{bL6ypBeu%fYtO^v(gqI;9?0@IQ6xDi?21%()o)e@P4<=Do?b
zS>gNgT5rmvg4Hk795lO45nq6~evYkv!L<(-cOH=i5)27Rwlc@8RS%A+UHPw__oxNn
zHp`kHhWe{!Rjv_=Kw#Rx<B>m)^&TTMS>UcGeUaa;1e8xyLJ!GiCC{q*Hd1%;@(l+U
zaum!d^uF(Ff{>GfOcG+k*}`GB)GWbjF{wm>JnNt$mB4BovV{e!4{sHS8U#dt&(;h=
zx;oo0LHePmHJFG-`T4j|TPU`gs@`Vc=1_G>%X5rEzsH<nxu)1IU9$IVweuJ^tV!{G
zg3tqzyd$lR0>D5%l|2=HVc;jie*?N@kGi%rHz&6Pk)hDY$K3&;jZQ#qHa~9xT^Xp-
zm|HXYWf$E+>JxF|ohg@uxku%@Jk><|k>&@G{bQN90^HH${a`*ZZV2cBF^Ut`mT*`|
za{8eJCZ&_w6!W21!jiW5SnSYTT}#A|R=xQ9)m@W~dgKQdq&WAXp^j17ptkW}@8sSE
za>G}>uddAaUGLJLTyqRKr_>~fPz<vHdj?rewMS!WQa@ZTK`Tbyv;J~ArvHbuw*bm=
z?Y@T<0cj8kr6fdY1q1}7LrReDl<rRH7F0k|N(t%i?gkMNkZzC`5kwI9@8_IXkLUOL
z&U`c9jH8dt{pcOneeJ#1UTf{CKwWpUh$EfX*Jf{qB+Z2*NsIRj`QqiUug%xpG3>?@
zp>#6z???a!I`KYV`?p)^7y)II)^*BuZ339UKvbPwExz4O&Xl##QDHvP8?sS365`>i
zQlrqej=lGi)5;tzwTTz(G5k?G%i3sN#!HuTZ)JMiW$ym17C<B(fBmW!q8z#zA#o4i
zhvTw=)qEF2=^DBKw4n-f=f14?XCj4_bIn|_GP6^n!pT>Qq+@6?dPv;v(~>fHZ%<dz
zaM<%uw4Pa;vUd%JvbE7(8XV4&;}YYXelFLp=5JbQw|K*d*<@?jDdb5pQz;Rez{Cha
z4`qIbt%%C=D~|}rzs46ezO=mYOi&nUEUiN*csW7jQ%n4ZFTt+JRF{l^+$Kw%Xnx1b
z6EOjF0+$Tu8h=LO@DDR5k3ibkie`7LR-9glZT&3O`Rfp1$KG_mnT(KWU5_0vrb4Fq
z#^$vC&H5=`hhqZQ&Mi1sD-E?a_NhRp60f2+4~|<1#vKJ_M!;QQ|54E6)=WZbU9Bmj
zWmzoLVm<%m`Tm46lWq07%EeUj@Tbq5t3@n?hRF<-D6gkc=Ahw=y~=RJ<p^#1y*~TT
z=jK4D_q2Rm_t1!?sxw-I(O7dah-I;kQW;gPCuwDq?wV=j*5LSbzh+KYA1hjoMLxHv
zkD?5O0Hc~9PfTK#>jQ~gTyer$?Anm5rsoA=X0#b}Sys#Y(h^2dU005%Zz)W==hkb>
zhplXIDS)Z^YHKbIOA1{Gc~(KY*6N0X`38f9cP8m}MX{8h+Cq+NUlaIRuizJk687Vy
zf7$K2rg?2R6DLl++H9e**#5^_mMAL`>%c=wg_GT2nnKc)f}H}<(1l7Y>1YWVy@y3Q
zp0vUSg)C~r47qCuAJu}zZlr82#EOa0c8avQJRq*Vxv@YWih?YNR(f=@vAeb(8lHE}
z^Ujbnw_4Twaq!OT5l<%w{_oSf$U9wFi(qVtxRF%{k}WB-a&L?6WTogXD~HENijb%O
zz5RGSpp;MEwZQ7pr6{!XM{UUP%c{F^L&B@_3hOwI2U(@to^cs&q5G&pk&bp-+SXOt
zVlzfMizaPtlb`@KBjQ_ct)FQpRvy@Gm38jC_neSI8w@E!jqA_A*hVVBDQSH;r;`&%
zQvI<u_QU7<^{m>CX%|kChEnnBi*GWuMr;b#Jr{1z)v76-IBoX5AX}Jf%Q1qYuJD2p
za78KW5G#SVD^^1bgpJa8CVYg|>B8p*KKbqWT+65T_unHyvMDyJxPli!hexe1_V|ag
z$R{j??eq}U;Iv0&ueT-des#vpZ}~r1%wJW63Y6OUckX?l@}i=wuk38S9YUyDs3mV5
z7m^jD6`mU%LV9$iYIa5&_<lks+5A+l&Dewn#O<iOyVwaV^7*lnxl|Xt&4?c~1m^YS
zSO>=k@%kiJP<F<$NZiq9&RKr$>9}iXmVL~=aM`+ZV!srcBfTRf+I6B;Ly$nXnQ3ku
ze`&|P+>CdUB};2O;i%Dl@fzh4by;qVy#3fznMqM8Qh^fv6d6XCd^Ei2H8o;c#<&jp
zDt~$nC?R%)6}5mi)Z~d}aplqHw&zJq9h7XI$6H*Ig#<(@Gmn}^zL<a8o?fYj(Hq10
zXRtQK9~bH-F}(sw0}&z-?Psm^%Rs?9rEHC%SDe7AEJB?5?u?^vAcaA5W`^2gZ_C!8
zhC<)9RnzhJky__seVtiiMm^uxJ<C9r$UkSndEH%5h80?M!t@K_>V2<8f|V7J%J(6`
zPQ)`LPgHj@>=Mi8RkNcm@rMc35fKqsy!fSw2%5mk(du9qNy*4F%qUr{T1WYp9MX=j
zIWJx%{2W-vF?IivKeov&_0njPQtN5=jfXKp92~I0w*Fy*ZMyl_eel7-!Obh@nk9RL
z`gKfkvce)Sk3s+v^4D5Zn^P=K_~&G1%6sO;F<#5mDF{=>^Xz+6RgiMYVx`z@O_dtu
znMnc@fHdpe5p*5q-S^!^)zPS)O+s$vsG7@9<=$M1TQX6;VJ=1Ves?@Vq9sP&{5w?F
z8Z-$3iv+e;1Kt^_LWfI;_Quw%x1jNWRCt0hdE(9IG&z111BpCSm-RzYsB&%RTi;A(
zE60D>5EZv(N80C|(kA6FU%Ju0W|#0iR3?wdSu2caAlaaI%|S3^cvg8jHYGJw@>(IH
z7tPQeWWoI4<sH_>uI-Xbaw+%BLhOjId!HipdJ?2jwXZ_5QR6wQSQorcmjB`>g7bH$
z=C9uaD+#<VQeGE&_#S1{Ql*c5diw~yY8V=iJupLL`vWjit!OR@r%h(yDA_ngirAkY
z^Si4MZ=pI`c%n+-bx1Wb0&PI?<{vTQ;ng&<BJ&t|kNl`ol-&v1*ZjIs=QCA{bgUEZ
zx0tsE>`K}CZP1kFqzPvDju2zyH%Bqh&tD@YwLtAHQpkLwPv{iZpUgXG=2pGpyfdR+
zK}fIgLDIC&onxqhFjhW?zF0WmT@ah=XUgG`F%}QzD7jA`Eul_h?v@B^#~TGyh}dn;
z_gHzjKY=~D)LNq}Q`Hl&Ui&d^oW5SbJ9PD|Tz|NR*W3%pgT-LQZz7s$I%Hrz9!7kt
zCe(6%e!h}Ak-uwYKvU^GUc1xq_H;1rHRrzCm$7_bb^b=>ys0AuyuG|@S$3p;;%0(K
zIskvHpfH38*y{RcBU-`Vx2kkwNDUS{F9B}Fr?et}D>ia{B#)FO#-=w-ENtoXJk9$`
zE6ujd;u!iy=*oR8U-2U(ZKn%)SR6pYW?1~=`zo1lhiVuRGnQR;qWx;wBp1(7Jih2l
z4vROVL3pK(Yi#PJh9&y)%3@nNVw@pCdn?>wa?Td+!>ATCn<%o{wNp3r^_Q{o@(KN3
zodFg>5aLywAu?{<b7(q{QfoXwQdRK2)%(j*5w_5v{^$XCQ)5gy5;Lh~GwnpIaZppY
zPTBNE(;Jh=03SMG5bf*Pl!IrCDLUh=5Z4(3G$W||#A7E)kxFn;99r5dnwN<eNSL}Q
z>4c-Ts%;}nEiZ7PIbXVj!ziw%x<GMN+g9~+*Z4gD5!9aOY`LupMb29q?_rXsVsmeH
z8JU2WOluqC)mXFdBgewAI?*t*C1*!n;TVRu^x{pt%#o?4qQa>fB4kvleIVIKVI5ZD
z`>)aovHdmMAP~xhkuz{yU%$1F7lF5zUv&V1g}9Yy;spbqJf(Gum_nVTMi;omNz`<x
zPg3TaSx_U7jQQ^G$7dWQ-=6oRUDv-A!kNr7o#FLW>oK)@Gx*!7CB9dh1y)A*H31z|
z9J1_oPUN^MW15k$RBne(yvQ4$?k|sKT?6DMGjGL2<M5VN^}`yg8MjsPbs1as_U9G}
zye@?a=as*;2+MV;wbk8E;`jj_y&X2Ii938u<AcyikXAoj^M$QwNV!U``o?oouD9LY
z8Y-drcuc#C8gFF2i#M~f_jX67hwt=s85^sqp)TAf4)MAxU1ER(FKUWTs_l6kE~YV2
zqzoA0(kT~ADt+-v>R1e8Hpk+pr?UIL8KeNuim#})M_}HLvTa8{Rd-}I8*g)B=Kt@V
z;P95O)~Scnj!mP}2Io~y%jyEcVZi4N0rFfi;91NXw@pXD=CmwA)ppFhF5A(ny5#c{
zOc0CWdS2X2RIzqHhg=FID@<fMZG8L%r;#7+FVT*0sM<9?V};eU_y^PVaapA9{}`=x
z!ZOfuW58pgoEcYtJU@lksN<^d^WwPRSqmy>@qz=h+432bvsYPS*^>|2Ddv1!bs?>h
zr_>sckx!q&yWU*PRzA8<R>wKbWiz8I_2I)HyUA&4VXdb@GE6j5SFao|K;N|ilw~R(
zZ>v*-xXGEB^+Fy8X&%MpYc^XhUQHnhT$UeibA5Z%-{BEd{lvjYX}rn1>8S8#?H6G^
zhY(|UFnPPlHAzdOhqCLX4y!EMPDe5u6tZEve_VUWR|*~8GW25;tiE+yC0Vsu(jyOY
z)yAv*9OoQ@mm+0qnqB{G=I#i#?;5C<RGr#yi}Yt#SN8>J&gf*xq@|29C}e~{2SOQO
zI$AuGsLLw(8_mnOCBt((#Ds**#VLK^ejYqbk)rCCU^Y;%m8M0fO8YPgu<IwUScpg+
zYOb#FFyZ#aVk`H%Y<{FlX&2?w@m@#@#2{4Yp`lbT7H{$JCp64apk4mD#=hQgbKkQs
zoSiB*#o4#x+rzF1kCXke4+6w@+b-bVi(gOwx-+Xwiw*Z9^<zhgKO@J?JfOG(4T=p3
z!J!Ey!NCRNGDzbu&z&ZA2qV4pu?Xk9E@nXWv!H>p2JiKTDMk}Yh#3sDdqeQno&tx9
zm)xYcrfcsqGIpNPv(?CLzG6K;I=|F@rfL)WaT!3B%_-0&$)Xs|mT_G)e`J&k&Xr!q
zP^^`e>RfDSAtx3X&um_Q$MVSBJqb6B8u<YM^IT0KW>^=rPU|?cHXMvMBMUFC82on<
zJ01kxG0Q!MAA6K&N=1F8Mtx2(sb1o*bemSg)%;pk3g%h*|C9)FKZWll9dth4tnY4r
zg2YH&cj(0LtgX{^;V*2TqFR(@Z*wU9K3}*YI|7R{6hJ~__Q~Mx#(EpIi;NLdM5Dho
z)kcss(J1q*AUS#WV)qJfd4ak-Lo{8kEVoCSEVpONrL#)+as2n?_VMPrbvq%J0_$WL
zZ4*t_XY!%<@Y6eqdaf}|la4&xZ_9eyo7R1j`&ReY^&J4vJ?<bGr}D$s12Q=C0s!sa
z^u27X>;?h}^6o09&CI5S>R#S)Ga(7<a>Oz_htbj3)Tge&s^J+Jtg@jr3S~sAh{!J}
ze%W+1KVb?4rualeH(FX+qzv0q4pUJMQ^h4({lkZuu8L54uSqFnNCiwTjD;W8jH{dW
zX_l8SVPM1_hM6p{2Zr~NdC7&<2E9`e-5qyds-`cm$dQ*ny)3U-L5zlDe|bWK^n}m)
zD{*gJ7r{j96XIA8jSupB&r+UczFRpMcy!@EQ084k2<@lQPW>EgRcD#DRx634YdKZ@
z&HfPE^)cQd2#-eO%+1K|x!$f&<bICW|JjlSvt*OQk;O))4g!@)^Cv<6F9}dwLHL#V
z6!|GDd{PCOxy_k<ds88U%FkcO-LLj!M@I5^#2uZTDA}*}+%)-?AJd)FR{Blfjpt{>
z%vTA~$uM_JlK2_j=ZcUcic!_;X=rF->O4veIx=A5t6%sc-V`3mYm>ngguc;REL#6t
z<Ky)ZGIh2AttPF>i`P|O(IESdcVqm6)EZub)|NVQ%H*%k=#mT)OowWG!o2S8UL7tj
zD%uU6r%J^66LjS@3JZTNtiO}ALr(Z=<B69W@2~T8yy1h)pVA9GxTo<iRB7qxB&4G0
z=FQ><D^?lRb$To7HNV8r-SkCyBK0Fvt;YVKI_ZfPLzZ)X#D@5fJ93#4%i;><8tn8}
zG}=P+V^vv1w_=AolZJU!-Css^9-N~ec~wS`tEP$(ox?Cz*xB=)W|G!;QP+O=W2501
z%fmNM2#UrvFro_>+`?jF@>b>g0zXaTR~Q6oh4Pub9aPOti_RaOc|5A(@?E%9tfuZI
zAGOIrVa!MW@Kp<;R)+uFlO;7Mx9m6b7F&KbY)eUfwQB4o^<FK)P>S7@j?7Kx?ee57
z%iyjIr59(_w=StjOI;Bj?kNZ}8VhH&KEX@Lon_YwwH%d2Q>S`rtt>qGb}jt{!CL-a
zea=PFR<(lrGx*nU6vqlLTS$)+x%9mDZj7ao_AYl$*!R)$Rmjm4aN;Z*$`&+aBGb_w
znB_jf7SYmrQyWHtPTD(ecz-}KJ3!Op;p+t`3m>Zgr+Mm2CgUTliR0yV?<a*dLhyj<
z;TxH&Zs1zk&y>OIyxGkk-1q7Q0h8_+!FZvr^zHm1=brCvleD*Wsp#=Ev_l`B4>~ke
zUEe=d+fToB`o)dA%%LK(hC>M5M(BH(M9DgH#yYvbl^9Rmev}0!77HEr(POIfHRRqu
z#PX{gj=7}tY^mr~(lgC(c@Hn*yKsujTAp@U)o45qk7*^`$Z?+9pYk2BUuzfYQLRrR
zxD&v0od=EKVSkd#=_efSifO9a*Cnn`RT#`fgr`ur>umhFabno(&Yaw3`!1BuP7qq;
zZQ)5Ta^O1EIgN||dJo{L6WMY3e|3N(fE5t&Rd4fS2@+#vL<Al>4i4vPM`vd*NbxNB
zkIgefsDjpz@;IypGAH%62o2S2Yht7Jc@wBfMYFaPgZuU^a4?&Fv}!W96|a$4Co5xx
zRXYa-j^8QL;?e$Q>sdI}&_rKKo+P0DjODn84BxQ2j??{=bh#EIuj0id5wH4tLe~7@
z@@{9^1B44g(~Cs9_Btu;BNFS3tbUGp40ET8R!3iCXgh^MroIo8u2g?5#Cpl2iewX#
z7+0vp5qIXi>;B#DyYW7m$s?=pTT$3w7N0O%pG4j_SZaCxChy?TVyu5(?N?kYzNvTC
zbY-in^mo{P4)r{m6;urhKtQ?~$;`kY1q9ifc$1GCmgu8C`MI5j)S=8~UJhPL3fm`&
zSK9m$E$n}2%KPT&Z86R}ts0xnQ*z1zUV(SE4Mr6;dy=bs2#Tgv9&~XRP?M4r>D;C1
z8hxv9QY<r^_R{>eSK#cI@WS4M9bG5<@pryg96insn~U`{t)KPf_Qo6{*O;PN9+qg7
z&}!9LSEg@kM6Hi)=v)0{vr_tIpubCFHsjxfCelyzQ4`5_h}ZS=t5Q=&z*Y(96+~-5
z<Ep6wPC<137ja`1v+$XdEQx#OpT@~iL<z^xd|<{q-fXTPT-r?8mu*d$Ce#-SLfWXv
zb-@vTz?Y{R%aDQ@lb7%@u2;jiRJlLF4I@seWWJxzW|KI+sF?fB!@yd5=N<Pw^)5&M
zx*RU_%l)DGe{XQ``yn~(abDkg-SmH+pYK=7bFZ-tUb5Jdlf$fM@V(NdtZz74&tubT
zJ~zGfBDG6(FgogK9b;VoW7^h?l?ym=64j~{x?Ekh$3I$nP%h&|n;NNINNZj$buHk`
z-CiTcN6Dz5tjlJR5RaHjX%XxDG`}9+9rVQh`_iSdWWt~S?|J-U8bA%6VNCu5tWX9b
zv*<Q5J?adPgf@)i?m`DjtW~B|OjLY)JV9Z!L(omFCox;P{EV-wzAA6W7C#i}QOwQ=
zsPI-3)|_SZ@bVn&zE|5_uk^5`J>a}8^Mkk3Y};Su9jwh6C;V{s<aX5Pi67xyulX?U
z844A+bd~F3<A11nh@c-q0QW|6NdMYD(Ig|H85)V1R+{(k6+=~cRQ?Y2j_M;hsiiX=
z&M9LD$(G`m3b{iC3Z=3aW7H^B^(bf@K2g$0wki;MU@zY4AZrh1h{I~xcqgE{(S>y!
z@G1+F&9~F?hqS<r;~ac4O3W<%z$|Tv7s>7Ce`OtB(mp+SKMqFr7JmKcs?aMzU!;}N
zQJD<m^yeytx=lAqf-8GwW^Z(_m+&opp%11dnG)HH$<>?Tq1sMclYNq(Va6<x;)Ac1
zpWl_qBD%wQ{3Wi?aI~SIUDsKybeW6o^~;j!`s7VEoO}NvJHSJD90y$MS<kBat3Pjm
zAS#~V`wMa?)S3<M`~BO{p^A6%&TFTbFxR;{YCW13SoAoPL8`@`BVSt<w)&nh1y!st
z9)e)g)sT~w@{rwgjI|cKs!9%PH>Ocyol~Anr<7bIcM%eQ&o*%Sh?j8h-A>MRE&ig~
zFB%I?ZX|uqKi7tDk~F1@sp+Q;XHbSZ{LpVNd~WsYZk&oyQc=w`v24y)B6ug@g{=Vb
z`6lqSq4!_d4Sy<q@#nOf=msB8QO%OqC$Lj~EmnAIje~)qK%D(}&_W?io;Z}fon_c>
z0B;0C)tr)$S0HmrvctA+ipwKyIB<~sqa~UOpOR*eJJ(f*=XYzOg?%uawwe^S3gezK
zy|EArGm{OQa_zQJ>m$S}DAeK&Q?_A=le-@}pT*$Yg0eIbBi%{Ywl#eB!a^Ql-l&Wb
z53_pHi=@dWp+cRz=_<Z>Y8g_GawZnV(0AV7f5w!sQa)01LYiqA#yjHqM8ztX>C4+|
z&y+S=TMJA_ZYX@~`9^!Xz+GeOm^G|*@-W|BdfA=iiq^xLAsv1<wL<NN{JQUwzv2fC
zG7>d4b+~|Mb)3WMmCcc449)+%U(EvO?H%%X&56P94)(`-x(GzX->d4li5=|B?!3^A
zhe^MA9?G7dta@}SU%GW6i+t=QC&(AQHSKD+_Po;WV+7NA0b|y9+AFOuHhwVc?#J!j
zcaCq<VyxL)i3=h2F0N3RJQ$$#&CZfe?&_3$jp4MPj$g00W?Uia&$ymDGz~B(l619{
zHW*~DD^8CYbf60Der)o-`*aAmcq;FB>EhAQ+TLO9c<Hz2xXBZTzxXB*?C5tVcUSv)
zKY#eO1g=NWBQGp2F3+|2M@7tqU>aAgA-Lmn&A$AMrRqCmbuI;zD=%53irJ!2UkNtz
z)PLgDjKn_qG<mci_D1<?6!zVLCK8kD@@mFvbytbZB?&g0=F_`qM~iO{Z@+fGyU?lL
zH%fnteuIY(M_mEJ1k+TS>X~`6!6?-$tJC_T_GCWmO7&HpdyRvVAJ{KWXA3g5ds6*a
ztF|wEboi4ue?4Lk5ertEL}q?+1lf|HYch2y?v}1jYinzUQjUT>5M>Z@6hXr}NA&F{
zjoRg6iH$~&w;xB{x~}zwh`wNo<5u!rI^yToZX?s~Xg$-9QE9e4>sO_gDNN#}>c+=#
zc^}Rsgc6o_Xe)&BL~<&D&PgXm|3laV2b5*y?c5MdViy*1NINgtth$%n3;q=bmh=!w
z;pe`^q5mX>lx1i@3}SlE{pgzN>#c<j(Y(qey9+75ah=$L1i$1Yu^H<YuA}%`PuJ$0
zDS9o4hWE$sh7q&B_m%*5-yMrlrCb%KcHIQlMU(N8HvVoKDVHMMrbg&{zYmdntc?;I
z#385>4Opr$(glA*@Z%{p=y(DwEW_)oOf`61zeUZTTfupO>%g`nZTbrH3M9dTDF#zY
z1<gvk)-h72fx?cO;Of-`YvD=IdEbm-P*xD01aAFyxtuY-<Mx!gmFgRrHKt1wY%d**
zOP6&1Sw6oO*W4h2%(OQtx3G<ZN#uw>4#Xmcp`js$QyKhWg%5$%oOFQe(7#-j_GkAm
zy9HF(e}dJ|rz%0oi>PLjXJv^}3gpwpSGIwx5{W>;`LpiRUcWBt=jZo90oX^<&uJZ&
zNUjcW-xr>L{VN&&=O3gDMo{@gbhX5<)qzlVg$O*jI5yUl5yXd@4^Idg2Wp#?*<O}4
z?Jjx#{q@oy9}D|{d~Ot%f9{-bK7jGeggcbbQ&A|?;$FO|bg(^*U_;4uFytgg@w!;&
zs1&>;U{VtV?3c#mZPKngm0Bd#Cod2JY|b|6c6jaG;ijY8&9nPFCnVR_e*pEo)b}s?
zrJlz)+%DTm<J&p!UkP0p2^2+3<g%$GkL9w_$$9wNkAP7{MsMHw^oQG|-PNIxrrRH~
z<wXj$Y7FWZ8zf6hx1aBzzQv-jtw5;@2teMz%W{{xdl4D=iX?q5#@kBIW9QJYFb9n=
z+&?@eK_qo)O8Eyp6Anuu(^U4@e-oML@c0~kBalkA3aVzDFHeJ~Q!Ytj^zm}J*=$}W
zr{zaVo2HXzI-_f4Kw^5|bhf9Er^1|d0Q|9DKpeBf6J*I_FJ34A1VW;<+?={+6nqSe
zU2+j1CHZvY`=@l=Ov9e26?O)M-sgKbuk}>5JRdRLLqTXq<Oa|d524&sDbQfPd{b5_
z6vwe{|FQu=FMxB?os{$~KIbods2$}Fxm*Q&RX6YfMRC&BC^xk(UMr$#`o5x>z;5zv
zn@s>#1S3$p@={=4g!Fe<xBdJUDAX%^gWnt;oom6`S^1EoI67}kZe4r<wVo22l*gNk
z^1AhSsq&2H*!O<=c_`tG+}1LQl?|{qzTpT@BKR5}x_f&6BzwPJclcmP;;WTV`2yGS
zj{8?rv#ILH7tqZRGW0_k2658Wlc&knxq+AR@Rsj1f0;AG%FpP0>M{1fuuTcg7IIXD
zW6fB$JiKvGwanir)fWV$Eu7*cNS|Ew9oh4SD2Ai(;!nqii=hk_+1A5*pQnH=Fj6#`
zp9-W0Vzs>2%}8%GFbEm019a+idHgo2feNtCM`|IlW6N6ZjiLKelOl#&TDkhx%KN^d
zD>?TUC$30r3&ATeYJ6y2dxN7O6%3f}Agg`bL7nji@~{!CtkL-e=2h@T$#y}`<3G`U
zkLf#~{`??{SjRRbyq2#bwfa$&_4LxX$(cn+lqd2mc|GIi)6KHOA-ny2kLK1wXcu=L
z9%lkVwG?`jA}-OoR#H!>=T9KjsVIUn)VKvq17I+VagfA{O2@IhAY_bX+|4uUQwcIv
zRtde0#|I6o4}HoFq^LqD0-&y|E!n|9&@zGLq7y2N7dhkl=r7XS3toKy;-b5QwDpWC
z4SN(8`x&GAEPw?N^Nxs&%u;RPDMx<wQ6JDh!<}XxE=<FmgaT3K{*zDXp+U>z=t?np
zO#HAWg%p`4YaFs3!z6k8qpxOW<E4S?{;n5&QICJXUKno>3u$Y@KF~lCoI>t`$ggrv
zhOXFIv)r^~p0jpDtt#e@&5TT_AKs!KAA+jyVC}91orv^UU#A5aM`F18mb|l(8HKFn
zn()-;`8F)px9WGGy_LEPehdx(ztiol4ic-~<TQOaTYWa5@Ji5Yf7(}U0cf<@oo<8Q
z&nxO3!}z78)l?G+pwJ>XuiFjZbVkNN-LwBzZ#sU$e$uKcVMnv*{CVuOtNE-V!cuuF
z&COG?qXD#1(YM<h?<WVe0lNp=w=e)dIgYu_<*oOl&t|cIcZYOoY<CyLbnEbUM1JNy
zf=Fw^P&pG{(QiPJ<|IIa@x^RPX=!O6_C^aPqYuxAv4{JsfiC4i&_{!vm)SQm7l;qY
z@41E~-JQp)r>3C+f|W6eb^0~NNEGWNm)U8>H?mIEuMNUx8d6nwTReBCUAhujQsK!(
z0Xrz2>9bzw#S&-*;H>upLni#AL07cto98ti-&opcImHEX<<LCoZ08@t+$Ux7CL(C~
z<bMzkcU4AzuAHmH8NgYlsqFaXK@!4w%oxBe7kXAqY`mxChruScDLhWOj}OMPp0EZm
ztL<fqX|>iCqAbi{-om;)tzNPNtZZzro$O;uxARO*j#E6J{r4#_kkzV*Hm*3i-Uo(s
z3~U2}$u(fw+xcA}4!E(5ojrCzn72g5q5;S4S?bZv<MBFy`OW5=ml?lJui{NY$IK+8
zSbE?zS_v{onMh`Sew}IN8#g-fF1BSluHmH@rEJ;bEl{{E&6843I&p)e&L)?^S<6JR
zaNw69$}87_%qqV+RqK?uMPm7jbpNyZg*dK@kVb@6jb}&(aGM`}U3=4Q%t;c%`lxdT
zuM!E_K+HYPrty0x!T8sSVnI??gMh0dAjn*=l?KYMW$kzP*JlXE`_GHRThF!hLheS+
zjSzbJOBbo4UN_g~KK}j%sNz)n;ktNKsh*Y3fmiJ7<Bt@H<?^nB#Csb!Nq6`4v6zk!
ztSm5P)BHf77N1%54#I;ikY!d|J&pShJBlgm?sITherzU~pr*#x4x|b&i+nIBR{8`y
zV(6-*%JqRK7pn5uJ!v{?-vfCFJJt(t%~2?cTdri~>lGXR$ts(yAnm$XO0ZkYjAUwy
zbTsIRqV3%R%R!qm?Ki+7mXZ-!1=qH%ujKxMhd}4LO08wR=s9hPmPs&SNmUy8-;K5`
zNXPaToJMmLyU2ifY+q(wKq<kGk7B5#-uO6h>wWPZf90!8YjcgcVan(HNN;Lgc)_6Y
zL&`k70ykE=cw2a?7zkq0Mk~mPz>T{}?<M5Z6L%|B10xhWABD)5t{BT-EJoWGC20iX
zt+kB#B;}GD{`TBLZXoB>F?>;VQmu)UR*Il%Su0J{z&;d=_B@!&g)-U_nlYyu4;LI_
zUK1ukyLoG=HDQAHkv91vPU}me@vrWX5U{pa9`z2WRjmz1(URMJnKRG3Z1{=au<~Rz
z6{XkduFJNdlUI4k@1f~GpM7p2!0C?3zz!meDXxl*H^js5t<abfL8Uoo$A`vdJ63js
zBU_VeXu3%J>AGKP28L)_G(mM5_4f-?TvV0HISOJYlzRNggdv>8NDfcu--E4yL*hu@
zSiIBqi$2GUPqO+`R_3sBUGcvale3k#KEZVvnY~!v_Ed?uT}HZ4sZfi)hD!FNIQlU(
zYN96@@-NOiZ`d|$SyZQr_f6I8y^nSRHB;`27qsNqHb#4WFI=1o;I!>dou!J0`AHvn
zrt)_tDx}e^Oq;)5u-o{juKp*(YmP(zn5Fx5nKWy`dZK}~MkX>xji>DmrD+2T9-97D
zqi_DKw)Y*K+&(z)c?t_|3}+R|B(RCqJTX^Q2oH`?0@9<=Li=;2QK=1*(foXi(d!si
z@kL{3Xx-ep(i<+V&x))sT=*cD%wyFNY3T_qi!c4`XB-Rd1NLQ=B41Dq$;sJQ9?+h<
zQ5QdOu6lNTVU713)mX*d(ni$mmF#TOG3$LSJGCZ7s{&Krh(B<ZuFugRn+~mXgo(}_
zFLZ=4vZl)<yl04LARbN%Y9;|KY^;Voii7^va!>AqFxpWs<lXz6QUvWTB3K1qS@0<J
z<pZy&-KC=Rh7)@__uc6OyB0-cpi_IuSbsr<7_lgMb^SV$5bA2MvW`^2##fTV{uej9
zk4#4~iJh+#-X^tVz}fA7(`Jf+jm^=K-xhqCxf;U1<qccGQPmK$HSOl*x}7(<*9--$
zX6kExtO``+Es=f%+NczQ8(;|1Z0X(6VigfKWCFGIwd=T}fxU6KW&F9dBORl|E?35F
zcN+wEuP@}tp8gWH{I-Q%ql$2l2`<GujAah>or)A2DilQXI2b=eXi~#{zF`kgO{869
ziFNKES?nv+t*WqG>$c2E-8Yetpl4q@KSk>F9Rws!%IJD4BB;u?a)#{W&{h1pbLLkQ
zHd2AF&QRg;sZhIafVDR5G6UrdS*hDZ3{ds2#5xW#yp_Q7u|Kd(>rj@EFsn0DfUIxQ
z*@7lONNy*`%^}z{bQks?t}HR2vuyAr=8i|4Cu}d$1Y&dj*Y}j)4<^qNcr%=B(5!0j
zn7tQO9gtJoRG*f1y7>0ewH-Vuz6QoT!bzx|_m#YUHBA0_H+=>XYM+igunv$fUmxFN
z8IJ1afhVS#sa@xc;AEqtqqEkPFXQHC&MB;E0AcI=*o{e(YP8new;Ggw;bh$JEhivN
zQNN$Wo?L;CB;}8a-OmsE&TurnE~(!D7u(~*+tW##H`@ylf>eP)f!RT;dj`oZ+JqhE
z6{Bflm=5{MXdj+V!q@{9$N`n?dK|CuQw219>Fq->JB0GNw%(IoO`v<sVLjE&BQ`>{
zJsv7yec@@)Q2MN`MG)a5FgY4H*x%ra--nDUVIRVICE<Fl<67Dk|2;6P)_*2fh*0P!
zB-u39lug>^&BbX*^VHu=&Nyda2no6j<DJi-<_~^qne|M~vhd<NmdqH2z)7zv=sws!
z>UH7<lKN8~fq&lcUqxZF3;M@n_M>f2MW?b)pB^#v(P**GV<0H=MxcNdZ$9e?%2Xm0
z`D$i_+7X;NSnsyi?@4*Px#IF33{gvZ{C!!~FFY9y2RHJ8rcuJ>drEWsJl0cny)Vr=
zp2R5BIWw<;E#6wCEAWuNe_y>STjmYcgCcZp5?g$x@1&us#-L&Rgh3<Jg0idvOs}e!
z21G~o%xLzwdF)B(vCh?#N!$*|Enlfdn{#ok{pnPwawRVZhfz;J(HM%Gg*0}53f+%d
zOG4ns=L_mE(cqG(cRGIWM3v1=+hkFpO}6Aa=lw{xbs_KbC8ZIqH5>MNxcvn0N+h#V
zYL}Tv;>G&sU<A|M8i<M2S3$l$E&OqKFOq&_T_^Mi@=}!8(7TghWAU^mOzA)w?J>9q
zmd(E$SKC6)Yl13#V$*!~>rRtJCg{v__kb_QHRHspUTzu*!efnHS8&4Y4=pnu;M|}u
zfS&e)6!&$>7|(LIJ)&L?AYr-=E8xdk`1)?M)ZD#RI!<k|M)Uk06Jq$o=46#F6wwUe
zKynA)@h-ASUY?cIVCU{13eJcZXvkM~6ACBE52tF>>WrJLMc%o!w|!C4BmWAtXL@<r
z=f1S0$ed`3&M0Y;(5+M&1L8RLSYOFXu^fLwM!=mAm&08GOw3~(ihH6)op)}|X5WKx
zO+g<Qt+9>BFS0_<)o%30atgXHdZzc;sXefz6b0BUZ<r*5jhWk3wk0D)ykoG5jb6Sy
zk?K`jHSB&QglSp)=8F<#E;c#Ohr7de4rs^%yns-hOG~Om1F~$XVm~~GM%6aRdXdpl
z9kp2bRJ~hyF4=u7uSl`(a{Y{nUE$&~ve*bxo)>6g2mGEX%0%wjlXgL-Y6Th`jvh>S
z<S<4$pv%jKXKn>u9(TK8)c(toq<V#UjFh$S!E=EW)ArYOmN+dg$gGR_n5Rw)A$>ud
zw~v7fG?0N7x~K-)(QY&3g$4Yx@j)|_RkwdZ8~`xAbGn0)L1ml|3EhJ`KAG=fen#}i
z3io~UEW&y5P&Yg>$9hh_bFo%!!A-f>uvH~Y1{9wMcYt+}Kgy_5A&SsS*He!{6~i{Q
z5UFC$vRd19jydZP%Hu+6(xc1xg=_lOtHNDiItgWFBQ4&57N(X;3;H-)#mLqChVl(d
zh27d>3eh{{MFX{*qthUkpmN@a9?xx5A~(f1GIrA9=Yl@9xj7B7WF4t{Q`39`P96(h
zoEGL=cBqe_9$hT%0-v&crpd3oWp9Hi(Nt8V?@y<anOu)L1aVX44(_<YP@GC6wu$fZ
zGFT&o%amMxx<up<O-mJJipVHBPw<;CJC&1rqiChEsH`)0`Fw7t(v@o0*mo5F;C+Q}
z_mS03Bj8W)$6sML_6adMmvB3m2(=%CYEAiWYxVv-^|GM(peuB?O)?L(nAJL!fh4Tn
z-9n3tlv;%%w4q;u62_z^q+RbiG?^p$OeFtqb!#gL_P5f@vv_qlESYr9Fj<8ZWJA(`
z-Dwc7j<B|Dc4|!O#VD5<KUn6ewVCDDwCm@YDSTEpCyN&fBBDjs#k>uz`b8+_uUNmJ
z#U>tPM`9h3U2;rb9bj+og-U{c{_^hOdkgLB3TPM@(ed$@gEm(AtI{bu$+R97X-h}!
zF5ax(-#~qg3jpW`7q*5*O?N9q<T2y}A*Im??;QH?dugcvbY#ZQ$iKIvgRGA7K_aKJ
zi|=H1@|D%g!~?!@u3vg?+Em}tjROr%s4R=`6$iX|jdC9gQy<a$_vtaa$y~)KKwL;k
z4#~9i#SksO-}3C{RfKqauxVk_PKewDOXV@acxe~!P?lh8C_;tliWLDEC+Y6T+N-1X
zs@LTx?k}K+``0l?-7EelJpRV<biL7h#VTdI_+~O%b8;ylPUaP$#?-z%Y(~oRLJBD)
zA^3{(ga%3vc|JAiLJ=73skUyu&Oz=s`|sVyO9TK1uf5!|?KE2<(Ij?)>&ALLUdXVM
z&>`4aM&x4QHGrCupyNMdup3bP60+%nnG*8brTvUSrLo`xV8rab{ZsMH?dMbJK5!{`
znd;xKW*Fkt3~P4K`~|xHpAWN$3a)DArp<5l_P<U%LJV+Jqf4&V(*G3X|2kk!69Kf2
z9xqw_{(OJ`Tp9voASR?itACx_&uf7rABQ2@Q|_tt*gxA-zukYtLlGoGNG8SRYMB4W
z0X{Zxz>4P1i>hA@=ihQX#5H$Q11?^QcCYFmJoTSOF5-aC%y7Wt4bLx}|GK<ifHFXp
zqQF}q@?EX`Uk5ab0Z?JnAU6~Ahi8VkBa~qXES~!FRP6sapt%ZB9Tt4+nf&8ggdhGl
z3+DeEc}Rrdy6p42k^Y}Y{qwKBOz_N^|Nkxuq%u=oSQA%eU%Bos*bnl3%l0%LOkoBm
zg5J-3HRu2IoP5p@IcL+(%&N^yjl<2gcdr|2SE1bSJZ-F}{L>c%NAX{6n2vr~-M%XE
z3Jh(`_W`MrHZ(Lu-EPnP^I{SV5GHLx;g_Za8TDUKhsjR&Kcf5JZ<XOS#DW;Co0EJW
zDG1qoPa;>51}mGr2Tx&t=I_h*pU=%H2>T5O$x;sQ(;o^z2c%uHoNd$w<zD=f>)2Zm
zh9hu9L^*!x)mbs@RG3qw>}eVM`FME@O4*dO(y>ab_rM+jY!W!c?iYZg0|8xx?r70$
z#L^V>pc!!LoVTJt0LQ%*iNNx88fuYIS7HGssoCen=KNdCT=2J;dEEB_v`A^0m}F`y
zQ-DhAelLqBe-8}O3OcnLACKqY;=10aqM`zTpQvQRC9xUx=hOdv(fc|g8VV>9ebMyH
zw;H}iMT5fHj7aNp*Yi}$=X?k80LE&EisAAfMhsuM2Xav@3eT_d^cv;ain<`oWzucb
zg3;58SqJ6!5ZCCe<NCS@gfv8GeswN8u`V-is&7*TY__86cDCsezD!o25{w1MbwLKz
zLZ<WQ&*xelepWStJYIHD{HePLn1svbDCflr%80a3fD=XZt;R!PN-1b!>VlN0;K)%R
z9+#AJY75K#A);U)w6K~em*mPD%-6ecY11EfM)i0wRX}&T1i&zS0)mVQ5Na|izImM9
z&bCqQuxgMAYLPci6sZ35A4_cLeZN8a`2rM>iQz-uYwu|h=3(K${QZqI@axTw2!$Qa
z4V`q<1n3L$DyD^sAUvl{zu!c~%6e0)u74HGD!RelcISG?r?<_`f?#Tp+}yg}@U3%W
zMalcke!kcf0@m%LH!rHwaW4#kD%CtFV(*z<>ZvS|d37)gFvL~TBE2fTG`fW7><RaZ
z5q@lU+OsY2FI}3yA(M8kbp%rC<(kzaNiD4;CpYCW3xE=(LN(k4o%Q^8keHCSp2R!=
zV2u`ht|p5alykdDZNj6V-68Sf#)GLNyDoTjdP6Q1^&o5njuhWVFsicnW>N*bWi#sS
zj$xFzcIDhpF96k%#=VsR#aaK5kWTx9P4(~lW3yAS%<^dg9||<@1It`;zBLee$6zp}
zAxLaNCG_c2C(^+`t*!1gWc--OB(E1(_XGlxt7b?no>&sIXhnb%T{p;8GeB`Eb=^OP
zz-v<qQWPwbuTk`+R2NoYy++?216d}(-kJ0GSF=T5+`qO(JNtOAV46**B6C0Ame6xG
zx#~gW*5U5rdZDeP<wSXCEn|MaUd&$=*ylN_%2hwS*oX*9c#)Kej6R14PUcwnQlh?I
z0U)>+Ml5H7sVUM8y6p63;SC@=M_Nr%XL_Bu+k-PYLo8G&(a@m-lu!D@-4jd`OmItj
z4kh7-0drZ6nMdv=L)4^NdN7ZH654CZD&{LfHcFJGEfc%nX3rvEVxJ_?DZsUTTjd*_
zW@Y}|MIsMqOT~idik|pGFopZWW|UFiVgfR*ZN4$12Cq(+wVbS!JEEo3D@h2&>t~e;
zbLG${JmzRAnbQFev4Y}V_XfBU_a4$~aw?rP7kmR>!H0gy!{_*a-^u>-SrF$htq$==
zu&Ws6!5meDu?}~b?P0Pt6}!pXJ4{0}WflCbUqJa7zD5-4st;3CB5N3@NLB~W?(2A1
z1>irlZrE4(K6}<E&54>&<0DO5VA8PnmKR$;vshyvoN9uOKb;$<#&St!T_jGpv-XJA
zQ0Th9gema_Y`ZBPHzU(h0}Rn}-wV2T7N@9Iv~6v5h7~Y{FCRJmU{f<~ApxCmih@Z#
z^o$eV89yC_87fjQ9y;s$Uuby%5u{^fe3JohNc_2%Vlz1kOC276sz+fFHyKMBZ24Tr
z@@GpgB-iVZeYu#I;qJ1Eakf(-d(@9f#k6AE6~ya@s<k+O2UD7>)S4zEE?XLYPeiT|
z5@s%R3y}r*fVsf8UQp~ZXUTaylQyZlOZtb{K}mYKJLc(NtkttoXm0K?fe<{CzBJ*f
zxDnjXH<U(J_q8=^g_KI4Sh|x1M2m%yrD2MqS=?je>zo`cPa(AStEGHH(oSK~LViQW
zww*+Tm#KdfBmZP>B3=uD>(ZC5m4HZLL|MoHnYnaLyniTDtLC9LhXAOg!Urpzw|L6<
z>WaDT7GN!q;&^U;v;z=3&L=x(7JVj=2&A6*7o6;InB&(QqaU|!T}CH*2z!@Bh)ZfW
zl>1onu3$sCth(Ods!;^fM8s8ncy2DdeUQqpjWBNlZCrzX^0&H|z@o9PIXO6U)$rT;
zLk<%`1GI*Lu(6<c!`f!T_l1<hG)x6r9oW^k&AG&R$0QqwkY9k8Z{B@19YEs5MqmL^
znT_PeP#7O`8}$+({2|t*`_xN(hzj*;RvB#920&bpFG>*N7eZ{TI+|~n)Kxe*QK{dC
zx{;on%9m)mT<(2#zRC+t1~0K#z)K60tu;;1(eF5yWjqkOUBu>z_G1piM;*9YBB01J
zs>9Ms#3Z28n_RU@j~Q{9eZbMd$9IPCfs0bQXLH@5J3aBk&9^Au6r#bnE~naZeZI2@
z3}FypZU!XP3i)cR7Q`EWy6nZjE?YJGk$KD0OMWl2{AA(_GvO?aFC(MMp`2fELPX+1
z*r#Y|B?O~Ce^sn?G_b5LPa;f<Au`3Qo>BDe&g7;fO4RnfvhpA_Y_I?F9#A7z2G~}v
zwBHnAJ4c`@#8_8cB0Zz0(+nVA2VakWCU1vjzQc<=)$F-$&aj>O$_R&KhxHF;V>f7D
zt%+CHP7t;)hzNC#+;d9`<f+^J$GqvEtkyS47}370&jIyF-nl&qwR3jo>~c3TrnaIO
zSajlLMJjk-DW>lhJFMc+%coUalnw8JfN)^-D^FgH9!{QG!5Or<w;bKQO%{=95-u`V
z>%gfkc0>CwOnIq8P%U>2pWIUhZ1tW~JaD8B^2og@^wtdj+CSOQuLPd*A|3)ul%8nt
zcz)?{T7TZ(@(CDA6-_c#_Y=}b#V5<-!aI~+NHS^`N*yrnnyye~O<sn+?Ns~Y>#$?X
z^D0_qlfaJ`t3=cS32$wyPx&t=ItPo{o^C3=yc2r+d6|1f*}Ih;OPSj`N_f`_MMI<B
zIK7&V2K={{Lv#A+E}tK7g++-m>w{kV_f8b4e|op;F2CByCblshej{3vFPCcaAhL(Y
z34Cm=76V&46zVX70t3~v?v8+7(2{?$gPEQ8MNY<YzS<Ft^Dqwv0FNYrHf&;BrAUWw
zuh8RQvxNMG@>3puXw$AvG2xyhKaiT~0WZrD+mKwqshkoqHU=OUtgG0WNxtGOdsESt
z9Q2~H956*wIFXV354xcxL&!zzT|F#De^?mm+{+TDJ{?2E{AaxG5|Em%ftBu6Ugz+x
zjC1h>goIXax1eF0tLZ%gI~5>zSugdJD?xB%;qqkNjL*Vw$=RU^P}18d9Md7kxK}>=
zc|}8gow%Q0IA>X$CR}p)+)2U%safnpGnW-j>l)>9pHL^tQYy)dqIbveNj+vHM&~31
zhoHwYW=$h6tdpZ&7Hclxed?zvK>DYrfAjB~i<`ix>t>W)e|CyYn2sH*14C6)kA{Y+
zq?&oUSY#)`lJy2&!JN(nFbI|nYQdcZHoJgw>*>xzGovR6LX5IH?S3u&iOhyNgjR%g
z@xyUNJK`xf$T%P^P%#6Ees6g0v^efHerhn%lUTdNZuuCpm4S+_(v%~1(#zp-glhV4
zLF!uTvQyZYh)6kSrPW?9zuh_<69*YHIu@3_<|UR|iBG;*^?=%^LPP!WzV<C$ei;OA
ze0sGt0}70q0i&Oqir<4QJfd>by)RorqNLpR(Q1z#uH~R%oPiXLj#a2iU0^;4=9(<Z
zV7}&YGMC<&X)prGS8o)yB+<jsLTyGw{^DewyKctKh#U(tuK4Z3ZU%QqIC`_?X_f`f
zYP3Ud-X*v@_hUTgj@876dvC$LqrbLdp~x~HtG>VnY7C-VI+oRQJowa0y)hd>-Ok$Y
zsx0C>Rfb?t$^*yE#^T~HUtso657_gXq78o|oxOIStc_Wdvu}OGqMi@qKh9deUr&VK
zGfKg*N`m?u)x&(pme=SZU9l&`251NF{7bt5n9`#2JkJWqG5klSY4?syZ&hWW7nf@^
zKCY2@`8BlbJN=eKpE@M(jBP>KaWHH^$nhR?g8<XFV$J}uvCTYm^s%qEL!Y};<G#d>
zm9k&VcPMzoEFG`BH4_p931GG}S}JfU*t)7!O8p){HQ^SXvAwi)m&v%HuBKYP#(ArD
zpY?&$_2_0faKXy7UuN)Q%D{UTx%3LKV~Vj;I6WnSMgg}yRMJH<>o>%=bZ)b)ZL{T1
zogUncBmdJbulScA-pA8|A5+}lEPc86qs;iY7QCn?>3U&bTmr&jrL=6ykC@)~XqVDl
zc1$e0UR@fOY-?-7Cax7EY{EuIyBB(cf_V2`<cx{fR2c$qmgZFR2WEBi1HC=lXc;SD
zp+*5SNqnmYAZutahfkiK_I6?i5M$fo0<$-Tq{d`WhuiH-#w3%PQ7hjaXv7z{I~Kc;
z8s5=kRuhL#qbMaq89XG=wSYsP!%B;r`M=7xZc)S<L~>5K=avBw9)k)YatW1)j*4HR
zlR3gdwL7TNYBEaJ_*@vPTD6g=<W5;D8<w@-c!S!s_*mh|*g-X%50N<A(_$6N;Wq`%
z+U3f5qf!#Q;12Z?WhftP(B6>l7HWqkh;PM;t!T?Flux@>{-am;1<DA@BAivixGqYw
zgrK8+ekKzJmmMp}#0#~peoSmv@nP<(eCJ|<fNFu$_~nk=tL)crCUfwi12d&x3wTb;
z#?u<Rs+=mQGo$)$L3g37=emtgf!zB-jz6a~w3S)8i=bTt9%;1GM*N3n%|f#K|Ajrx
zO(NR|2L&}+yL43Fy?@TJj^Eo-B+akZX@jIB_X&N;gSxgDCiPYViU<ik=tCO9E2;j3
z4$h)Mkm`VZ2A%2i8@aRb#nRL6PMUB-o;fyfoki=xi@$(mPmjsfRlX7Q?y;zPtv(i5
zMfvPphFv(EW9_(V8T()1h0+Q6N;-4k6b!O^RQ<l<4nB2&)NA3u@Xe&S7^BI9E#4*Y
z;KD~<7-XS^|GJ<*Vg$cr2gGGe0w;I)#+QGDJ}A9if8}Als~x>=V}0`pk=>D_iu|oN
z_F#zW^Bhkvob#GnWIgI{*oa^df=T$=wdU@Bet3wAfO~c++%SJzD!$>g5sZ)GR@eXV
zBK%#}&Rs*Gc3mDT%>TNeUojozVex?4VWIXf|E~jn_ycNp<~mqU``h{bS|bS54i&+k
zZ1JhN_dgEs@kS&L*LD)B{zNW8Tu(QG&B}J=cHD2qi@#kbpmw-$z>h_~z1aVCsaFwd
zBh(8kU;fttr$T_*dDol#%l_}T8zDjI58CKHy=JXHda}Zi%>oG2?)kTV%|CQn|GFcF
zx8W&W#ftCyZ_V)EoATjBIN)?Q#ZCHOm-kz`hlTK_^gr+5_CF3de}=HE5SU@N`9&H3
zg<$;sA)*BV<=)m~k^8UL>Hqtp5Zr$E?%mkdK}cAg!PsV;m5`9o`zjmVn#E@n_J^M@
z!S-fYYg>JCu>A$tFw)yoHAX-RSSvMl*3E#*#2%)cA~3Sh@bLcat_nU~sQeJ_2Jd0A
zD#A<@yedLxaWxg_ZN3KX-0!s+xOzQ;9qsz{_SJCzFVX*cf)RlT$^yy{3cgbsgv~o(
zGCkl>@5)N^9e}UQC75><U0iG*WV#nZz@S9;U6TKH8W46sHt*s4DoRlrh<P8#ZJ&by
z4@T3qwQn~(=Z_=3?o{Ld*IE^nMW|WAxSUUpoNkF{T1ucYC6r#Ub<9P-13pm$9p8{t
z+<tgvkYwu0G67Ih8dATSQb()Ga?1E|@|F-pFN9NjB*HFB{k#Y7^Tq$0Ls7D$BO9+6
zb2}A5FxT#lWo86Bwb-4;#Fs2%A)%p>z%`TtV9*ep4)MYEk!8a^GW@1qwPxOf&p7gj
zCl9Y2_DLf_>l6Gx@Hlv=sf9=L)fbm#&L~D}_6F8xTVA~b+gSAygG}!W^IQMtWiF+K
zWv5dg3y#3O;AiE*%4Q^TdiW@IE|_)|&!^7@VFKw(LsOL}=OtkO_P7t{CZEGfxm~!_
zI^EEa{P?^C_W~C1k6%DEoSAcG(te9@fUN;~)CUb+PY!hiG79H=>HjR*GYB8d7wbLR
zZA2bd`}mw2ue3@O{J8rD8dju|7h5yI$^$|D3VqUB-SlBG99*K<qQuBz0X}qhxaWX1
zwYol9zz9iVBoJ6%ZuKZrx+`ZtY?-@s3tCAJ_g*AE+PXLhV1RTeeuvR)<4GFxhx|uc
z8-Sy7CW5`b{%Bcg)WpukYX58b9O>!lgvS8^0a!IpnjQ<(`*L}o3Y0=sYSi(>kc4UG
zk{a+TcXvwKz!nUJ+nLETpb~g#S6khRc?9(+&m2BYC(hCR`|5l%&_3G`Ne<NvU5uRD
zLkuo?l|ffar)79u@~wUkw`A0HO71Y<YXk&BxACu|WiK)HAfrh=dlDZS#V!$%<e#=g
zDKFSMTNN}mIXqm(%g$TJRQD~JeR6t4d1OR)te@NSTZ8K5&W&_nJ>;-H5^k6TxGD#w
zc)HF7hW(-P9&mabFlnEHS4W<H8$a8|V`xY*z!2Sa0NOiqV|L<~OZ`7*!;DDfOqm3Q
zCtr#3v_P0OWpRa3n3UIPJsVQ(l~Ej|X*m38gz}i{lq{+%3~92-v0v_`&+lglN;1Oh
zN5!Q`1O7L42gM|q(dP1dx|0g4k__MxQht49mCEngfbj%upvH9Q7SwN$FQWXIv{}so
z-lAk=4Wvsxy<l0neKw-1nFkoLCRpQi*0V6^G<k`@fK=rI^|DS&lUaK3xn*hPgZ)Es
zN5FjV!XQSNJLMQzyEy9<xQcju0P1Q(X<Tii^`prjpJV#KP496*uR9SEWQP@GcK>DO
zoOTV?Isd)O7Oh_ZH>|0^drhr#@0)#<6fVxD(?X|HDB0*~rZ$KWuuAe@B;rx8&IS4^
z^Fncv2ZF>R5GdTt`pOUw92cd}#$}|)v4Hqq+26?ntA<IrW2bP|=M;Rs{TxPCSU1pi
zN!V8$MjAYD@8fcngIPuh%w?|N9FcrG-vCoV+ms;do!-VK1SP?1=&G)cisQT+gDJ$8
zA)-}J>s|UX)ocR!3NiVeFX6{fx;K7bAr1QMCInM5#tIt9BzQy8OVRxHzl(kQ?tA=c
zwkZ{Z^&a_F&}xv|7}&Lsl$ppKn>9UqwDIFJib5=ty3+o-+(zzj*5K{c$nroJ6DXyW
z0ZS*S&j%W_p=)}I3cUE7C=dHrf#k5(LBMHq`e18z2jfvJe{o=hHZ+~J%YksRg?(ey
zvnJ?62T>Ebnh}@coBs9PF2!uv&-1|XEBh%aS8mhU>7>TUR2Nxysz55k!&k2kUbgQL
z)QjVi^B6w)pulZ0n!mo5m3LM6kPqBcn3M}Nl=<$L<n926_X8wtj$WMTd!mIh->3cc
zbc*%Pr|;~U!^r{(^rkW-RQooVt&W!#u;qUM$;6)fqz>Vzv;XmtWPj;uiiZm3E+mU=
z!bje$eKr5p$2>*k7`O#=xtOe3AohRL9Yj0~)WIvSBjc1nSW<oyU#B@z_fySkiXs%D
zBQ$Mc%<YVq#_?Kfz$E5``UenGNic6IjS2%z3EL^eL@h;ge%c(!?J|+rIu@y3M>)Ht
z-hyDRB2$EcMs@K~z-JD_?uXB}=bi@P-t)NK3Do!;@YTt=@!;hrR^$G7`7q>BGG~B_
z0mKZ^0$QcY=iBWkD!EGXgtv6GbYV~dXAqjLe2f1(YrGfD#50~~Ct7vR1w<$%bSS-c
z6q~$`pFUlBf-xwp?=jab<S{1iO!nzV^Esf36`^2lw)um(sE;CqRf4Di5lbxep4Z?>
z{R+{iQNrvtSp4yskl@~3SP^sb<PJM98dC`h6?@*`M~^WG=w98BOUd60Y1w0c@UmRv
zT;9Xi_37_W<rK%9wk<AUBp*3oUloN)8B4yXMk@aHYl1af>3|Fof-VD`Je2~rLH&zO
zVp|gx906xb*2{Qr-@O6b>2;Vj%G$xkbcaSp$8{cs{5=zPM>_Fh1Wz??3CJAQ?X~ip
zHdL{F*`6l7UpDoR*a3D?Jom?USzl>mS}q?PE<TsORQ0d852?x=mv6OKm7c%E&Cfu@
zH7`LYo~X2{Tc56bP9@H)3~!b)Vr)oz`NR2K(8H{_rg&C{;<SmLw=Zp>!J?q}ywWVa
zf)H7cdVXJyUGbvil@r+d(k(Oz^Cc{BZ`c1o6x^PlTY`B^NK_R5AA4^Z73JQ>jVd8S
z4~>$8fdK+aONUs1C@DyaASpexz|gHCASIxJbV>~fLyAZ!C0&vtLnGyT%~S7w+~-;A
ztaZMgZ|t>Z<8aSC_y4+nsTzyhySW4?Vs9|l)*bL6_HNF7-cyTY+YXdqM{nv<3+$N!
zFC_AFjv?S9Gye+^@!azMeL%Y_YzXD!wJDmLg9@*g#(kgE0TNKN>Cd=QJ8=K9qB(j6
z9-Tv(DI&7NAh(n5RMC=uwN6|$$lYE)G5WR2$zu6iB`kR&7M%k*KxMpbWyI*wF%ef4
z4vNbXO+K(CR_CMph9CV_Jnc5USEdTApPo(t?*)vd5CUHW29ugVyHD<j+k)uSQLOvj
zl|4^t$f?clA&#X^Z?5TsR%@I6i?&)7_T&BDxJ;_auiDl?xtt@YR=!zQ+??F=S$bj3
zjyJX*sVpuJt%}C_x&7SFQfz~m_;d&|v`MA3=7qED-h;-<$N5l1^vGVW%x^wgC{)gE
zf5)L52$l6K(URHGmuCDk|6C#EUXjfAFrTfuW<w@V5)?m8ck(LQfZQY!f9zx0hbJ^H
zPbsubD5l~^xqCs#f7=s>>Yz8|rS~x}WE(5SsAd=fI}<Ttf3xGve5p!w>TGdE3W!h8
z$qFH?I5D~t!7O${=vQ(_0wxbNy6lYa6q}MZ-aYM|V0iB4i~Yr&wJ7Xk240^xMlI$p
zic2D?XdYo%HrzMP7o?K1H{v{S>}#O$kzSiK5ekE#ig$3jE_i@oT1<ghEYWuVTWI8Z
zBbSVt3*8+G6a{An7~RAaZ_pj1UJ(rGU-(jmE$HSPKZ*`I?qd}cZ|%@nY7_pAzmE9n
z4A;1)kZ+;iib;-U0edX+8>F}9)%eE*t{lPXtkz=Opi!n^i8~sF?K0+7+kaPgxXV^6
z;0u+}F8nxogwpRVQgOI_as*|S+n%}B*)%{nkAt1}6c-ZG#rsW-B^p1`P8Q6wWt_ko
zPogLSEV;DRt{W9}N&flWfywLT=cDNSYfpXiCLS^I<tZ|)@LM0pDm4KrbEd{le^tuQ
zLPh>$VeAag(r8Wmr0TPt{DRFR(@%nv(Jd2ign|05z5(BN=WDzQLSXw?60vwzE{iqr
z)F)*cc!E63-raeg9?q-bp}1k0r*9M=)E@+5Fs!*(INh#92dE|`H=pFY<i}!*i2|2U
zdnSj%m@!_kB%GKt?&Ldep7qA_O{Q=9BwZHK5qEHNk24@%>}_{{M)S=eF$2=*-F|<l
z)nc8*eptwW??E0P(YLfK+xmr{U4M?4V^nl5NtM#iS4FOzoJA>}!`xzq^fOgUV1dhi
zQf7#eT!K%)glTGZ@5xHs{+Y>LBQGJtYSD_Fv4)>xwPyQ@^-TQ*l$`tWiRfUS=bBPm
zuW6V)$dw)_dh!LC{<fQ{fR=)&p<I5?Et`9m&#WE(rif`EtZ0KuCkMH-{TYEYto#vF
z(@ZJYbWUjIDrHv~GrtvuEm|TdgyBVllQKqhMom#hbmM41W#DZ=ubAIdCc5bKtEu9=
zluOD(yN&|3s8b=!qc!TT((fVW`VPVq(@@%S-7-KYO$-p52<9QA)iD7{w0i?L0>MT8
zZM|RR!3#1;S-~^8!Nzb~HgdehaAufZyQZeH+A~DHW)s@{{ugSSBVySs`gA`fg8LNX
zWQ};|)6<$t6=C<06WmV}#LGQ`;b6N-OUh}^6QS2SyCh=ZpL)|vElD)RFrPV`i(SS`
z3Eq;9eDZrXA4+3neo8@Ppc2w&@iPs_8oy@m80UZ^{fb5uUTelq(MRgUpSzUO85qN2
zuZumYn<V84>Q*zN78u_Nk*GZ~&E9k=<eIqe=Ay{E0>vBo3Zd>(4K#+@%Tt3B4T@!h
zQ2EuBBjxUx<o^9JHO4ZIU%y{h+PQK%gJkRQ;7Z-fT^GH+zO43#r|0VO#|*&CBWkU(
zsRqx}>9S5<`*q???z2-;+D43!*6@VcX=d<|=TwuCU32jxpUP466SAE#ZrXH&R-JP|
zAi}_X8!2;7A=sYB<}U8)K;igAzbf}Yf{b^yf|?4Z0HUP35ak^OviO&QmhUZlc*NxI
zllUf6HYGPn80}Vh@4XnX(q$)ANOFnOD2#Let1#^!m;#R+z!4-9dPxdc$4hw~bJ5F#
z#b5L6HqTz7to>0>`2*(7p<L?W0YmGhH*cMUm>CdFMcqU)g6LZ)cDf5srUE%}Mp<ec
z;QuN-_N82(fO4~@T77puzIMl5fAg~anAF27_U^qg>J*em#1lgz5wZ;SqP>k_*`~V7
zy+)pca7hA@#{{GYhwVQ=z}ahc$$dY!jJvF_6tyZc1~18u*h$tC^VRza-ex6%d9rIk
z0=+)_;k;r{#Ch-_aY{FOZgeD;w)~<Bn!m3}X{(!jB*@DgFH?Gtd*BJn5{BH!%3csL
zkI+z$C7O=NWHEgrE)J#NjY&Vs>Uw>DkM=91A?*5>RA%ccR#*!{`<zX5ANc(zBjw+K
zMeOx@xA=E$?9C@fD$qvUh4Ihy)=ec+D&kE<uC0pV!pr+8Ki;eG*v#tFx37JKu(Iti
zCI8yA=!vY(7$US{)K)KCC@j0Qa@4&aNyMU|*eOs9-nX`bR#7;<s;Rn~&)G2Yeu}%W
z)I&pxpLsfmUbvGj#?pD+M-<a2KZ5Ve__{v`^OS@QrtfNb^UN<gjTdbxXL%rqyR~<|
zhbtF+o;eU_e}OOPiC5$pm7%R5Mw!P;*v(F7aQ^UsY~-cV%!zqKZu~{vB01mI)`;Vo
ziYgj3@*G6TtcwlFYwR~t+6G&~S$;PxW~bI>-CAg`+Ub&wmsT&q{HY7`zec!SOm6Vl
zW2`5Y`|Skk21g7Te-<MiBHw{$^QXoK$d3rB-+D>NdQFU`iYub$rV^-wO{I5lOBP0r
z&$>O2a}JG3adNi%I|31LM|pE#S$c`e{KC?7+IlcSdPZ~cS81SIBEle$lEv{>$9UNS
z<-@@gDV8kj-W;t@x`ExNuj+O|L6S<T;x{he{YR<(M}paHi(te`_+Iy;O+2G<zsO?;
z*3o`Oru=P<3cLGGKEjXIA~v5J?ZFpphqUFUx!y1OtQ0IiCF5g$si|JC--ic7#59}_
zp{(>Xy=e7VKJ0e&i#6~&L}kiHl=6VEey1$9ie&IR!NRD4oXl;TwyXe!R5l!ei?oO5
zkhgLHPgijR36z#&%4G`!LpRR22!E>M236maJBuU!yoz3@C)ii!t*!gNrt2YE11d!v
zXArO#GnDf(N#$~vyirZ+x4!`o_sfn+)L)61nb}wcUwya-kO>`+>(#>k;O<*OXl#f{
zb1j^aRvHL_K7s%V&cHhel|VNGP}xKj3B*@|rbQ&W=+Z)K{4xkWT#S(EK{OmWAVbP+
z?2ma~3k&eoHP-<bAnq;lB3NHicE;D$_9aStMs+d;t`nS`xb`sE$9l-8Vaj~XB3mzk
z@CM^@eL?1=p1dY(TPgQo5ukA=71QIJfZq}nBL30Fdb6Ky1-1S_{0d?;{Ng$>r#Ye_
zF#fdC2&AjMgSYVxD6OTKX}EYVb8Gxjvj(r2lV(+3MdU5#5nUwN04+?;&G^HfDevi)
zNM|2mYwtZ7?8Ms4$6P3FDNsLH?>fzK!!DntO$2{GhEyG&0s(37C-Xh-x`ivN6j7Y-
zIMH4U4)2q_)n%P?K@y|_S1`!NPt4O73`fc*D6v=VM=H~Y$(GcAj<_=xgi1ul3;^JE
z9<e0Y@hEpN;!^J1`87cv1Dz&^<g7oZ#3vsJ5cSOtZ7zQr5>c!YE^~R*?MhW&eR%Q*
zlqTMi?b3sgU8s2|dlC;t4b!J3qxC<Civx(byV{!8;fP5A6TG7L{;H*PDtN8_F~~*h
zeH@fOEQVoTFMNM2SjPac$<3R>O;`53GZhUi)@IK6Y%k|GfV+W7su4h@%&G}xBW>35
z_ld%fN(M+-@g>v^kXIIQ?>VOap-A#?i2WRqT01qzv<O7m$9vKv2lK+Rf`fp=<ibqL
zinBh$ah~$U&Y*4k^LKU<i$CTXuSBV?pOj**OKx@B-v8wkB)GB`Vf%GfM3J@HqGP?X
zT0*K-sn>ClHk?xqPI@+*y{+-h{$1V}Yq_&8#s&G#JQ?x9^97>Mm@MmJj^t8>o5aQe
z#c=iaPq|(QIH*2sbGLD@hcwpr%*tr42&Bv+{knmFX8G6CH<{TYy7a?0WZ7cI>9?O=
zyzkKmHXFrP*tac_d$@c~+CO2*dL5#I3UMRr(p0jeXdB?Q^*!a~UKgLh6w%85FlQdE
zne#DJ8yrseB51)>hAdTzi3K_cv5(*;@(zqw%0)e37=R+5=jFO9(~^jrOCwd`bSHiV
zx4QdMz&FK~&lz7}XxlC0gRnu%uXLwpuHrt7=IeXjuXsjFGn1OU2vdjZ!T!3yL)LfY
z(vHKE`>;jlH*@Yy0N1U(JZUN&x^-<g%Cq!@wq{_%W%ac=y{_PLuF+Ytgsu4=MbGyV
zt8g~vq1I@$KzKvG^d2Y80(X9;pjV!t%c8JZLm0zV+kq8Kh>h>Q!$`u{Pq-hXU8>kd
zyutGLl}GGtA`_#b`#x*6O|nefx8(U6(eM~wD&`TY`wjW>nVm~P9_g+|s4mp*bL8D*
zr<dXBwg#S#-u9dJ<A>^={S;)6XeX&sbGKGRI;Sfr3>$RC75MU$nO@WUeVdJxO9nB6
zM2;-tAfpPwO~sI&TtvWB)MbA4y5P203_080kQ9a~2GjiFZy&6_OdI?AEQC*dh~R|n
zC|D_xw{cM3kY`5sMygaI$}7d0u^DIibKo52?Nk6>3A>>ZXx@<^Z{Ge~&$D8(+SQ(E
zi8YAoxXmT6)#mt(b0MVeky<w<LlH7rYVKjrkW3RPq>bUbK!<MDZFXhCJZVICG3ny{
zdmL{OCc0}AdMg5~dqOTgB)DUS34ot`QH`DMzW#t<F+b#JNXD=-9%qJ!MUub4L(u#6
z`X?4nKkf6HR6Sv{H~#x&4pi+}r#nFAS+!>b17|IA9Uo0@L^bBt)*KS^wQZMk=Tg+X
zLF@TzSLYlYZT@R_!3&ZLI`@+8UK6|+#4a;NCD4RdqI{3C=#JvJvj3Agl|wDG@8D-!
z@G*p2oHDytHs|y6S?XyTJ0w>4nBv(Nj*G1)L_yOq-=5W99lf|;@1<-f;Keg+y10*z
zXKNw|HWnY^Hyr7|JzncQw{m^&p!RLWuAc$%hjXn_9NYbG2G-h;gIL23aX*K9PG17G
zbUG*X3~Jkb1<7gc{y^1<fH2@^x6_pt0_EpJetVSOL(-p3XNh387Fn?vmE6{1k1eZH
z4v!a?y`?Zh9{%LhGiu7jrk*}9#3Hp_QvXxc_8<BOO+qfHqAyPS`FzPT1bIv<hD(#I
zegBkY&s_EGM{X7@lTE4*ruRdn*Lh;DK#=vjo{rNc4Ni-DE53-=Z14XriVtZatl*uE
z62Sc$`q6(Z)5+64u4bDWRX_sGF*$&{nw^Q*c1cFaDn?<!66h{0&x7uyrR9r$05C;k
zTGD8dNq_>U)QsSRkPO)wTtRqTe5}PP^ctJ!%;^0$B7T%Ugowz13Pr)aPXDiu6ras7
zVTy>}WtiFd>$S`9Kcc9T>3^wE{(mr3$Z4SB!dIgc#Qu{n`R|$WU%wg21gC~Fskz}_
zE0_L@&1(Txl6jg-$Uf%JG2vg2K<@KE=Y><W{}=K4U&LkvK{wqZYdXgL=Z5nyiG`dd
zppMK;&)up2ycGZXNc~vVVX%wvZNkd`uUBLPpT~dx?D~oS`WpP@&lO4qhL-hrh<m{Q
zdW8m1oBEo!XGQ*exc~ctm`cGyCUi)*e(bLw!(U$wA4%Z*>{lJu|N6`RdL91pa}ydE
zSkwKJv(*2K{8S=^e?&t*ao|6<^B+Hitios3yra^=_P==G5DNH5GXB5b7*i_E%BDCG
zVC(azTGd|xX7CQ;0+6RGHUtZfpB7`Ly!a(Y>q6XF4IZaDLRy~r=a*V3vc77cleX_a
zN1|B=BA&8MEC2QC{QHi1NpLny2fWkB3@S(zG7CD(FvQs+;@#9>Wr75SW@!$D2oyMM
z|GY14bV4}0@Xp&??+zi&<DV~UtjFE`fA|FdeXol@95V);jV2bo+6PQTFT_Bw=GzhC
zm1fZy?Rz~~ZZ|I;eES7~TzI(V`W{xjmig@!p>C`DF;Naug0uh&?t>w)@9F6ek~*g6
z{=8$G=!rUdm~V1A->Ufxzw;doKkwktqEe%O0oXgvuh7xl2SZ=R=#Dt|8?Z6Fno|eJ
zDdeR8KOR8P3z!L>G4_Vk!Q?-`PMqFE8<w6MX{Z(MmvnL$MF(MJ%KX+Q&Q6a{lY^2#
zO+O;iUO4D_n?j%MuRQs$wn)N-<tDg(wnC(ToVxxrn-F3K7<Vp^fQ!jMSSd_3g@SK7
z<VGw{pd={C05N(l@VP^hoc>hzqzNR%XaZ*{`YFW~e<zh&-m4rqy-g6p!sR&ISP5L#
z8~Fb-;pljX**KWi;N>A*_?k7a4FH6e3*eV&Rg-l<ZR9mh0oIu}@rL;YaI$Iw{!b+L
zww5V#7ZoLdagd6Gd?Zkr+;IWoJ58cBl8xYIxDO}o^%O9)9zgOB#jm-2p~tsC$2e4X
zuq`-8>NsNFnS32su-lXFzf9>;#wYKe?EV${D;Y-Ez?Ef!iV%28T#aVgmFN-wQ2NuN
z3gy$vHN_5cf8HU;QFuyG;uy}|uYSHbQdP<v%H0G}TCGSSnq1yAzAS+KvkM86PC0-S
z(Yabsj#s<cpH#gMUdKC-9<rSsKooKk+Oc#XW!mKmZG+ihQFJfl`i!=JKa!yg7(=9&
z=C{|^>`_nn4Y9hPlO;aovy%~%(FiIuI9j8=!z`W)Z+AiIP@K%+jdJ*lL6_Wt_qJC=
zjOBb4xj*Jf%u}?a0f3N$QVe39>NtMRahQ;eS#Ecb;{n|mqwT1oTd7jbwv*%ts7Il8
z&Lvy5*s>XrmV4z1==n&enDv${*dC=7cWzE-`+!|l#H!bF6J&ceai5MdXP{S`XBUfG
zIiK;=)_VOaIU(&)#_TtuCMBK?1%G;2sP1u+%}W6sJQvp8vmwew_8(F#_!0!wSGrz`
z++823^{jAM32;d~h#vV3A;JZ7{s&S~4TM~$9ODLmyDSG;*ayGnW>%-5A0M$>sT;ly
z&js9am1!zSiBzb$WJVN)J)z*Z*QrZ7%aaxIHLW0>;9N!qzLD1R9W2LZt!n`a$Ob)N
zE^jItr#mXPVL=|QV(bO{gu5WmcI1b3PssPNJD9$Qqa6<gCqnZw(P4+WwPHsfthw_m
z)J>v72wSIFujL(mZkNix`_|CT<e0i1nd)u)Z51eAyDk=M3yvK?<X=s-P;VYtouxMA
zk7ntTFz1va<f<;6ac)ypwDjNE=)AHlEfoP4hqqm!Pfpqv1wJ9fez~lSc`I5b*h-sw
z6x4^4XRu-2lW(;|dBEJMfj?2o*3R7`7gFQC{&x7$jBWtJl8NWF0xXJJds{2nu&^e$
zcg}d+X{~D(&pQ^I?=aoc&*Q{JMEx@#!o?OL#_^$qE4P=z5tmB{ZSUO;4Op7BA#G_h
z`%Z?^_4~(ARxo98&MlL=#@d4O9ay?*+!?H=%6)s6dh@1`$siW}OPWrXN4h*$T<(rm
z*Urs<N5qOW;W1@wEm~!kbc&eeLXWK<3$8=wp9750>0tQEuYBy2K!r1w2Ge=*z9d_h
zRg47fjHzFT{p2}s-HI)z!%p>uT!{UEXY>2n(r1n~45x3rE<!5$5&h}|cF0uv`+yHr
z(`vyqMSaGTn)d5`3f$xOHhNk(40(BWq_V<<#(B<!1U6v0FZ(>3I+5{RyBxy(qn7~J
zz5|&vx8n<;fDZoS29SfA_8K8`fpa8^<G}d!@Ab<X@ATe{+bnHbIac=p0RJ}x(FUsR
zMh#>+Wb-Ifu-Q7E_#pCeQ<fS!D09*(Ml*XnxCq-->Q|&6(08v^m{N<Nw)Cz=r#R)F
zqw1d{=r!&V!Vq&rFRzSH#CD(%$ua~oNB2#tuzGXNmWbmnPUzr#gQ^?Au*eAz-3Bw;
z!4wVZXCtkwU{mGcthv%YeJnMn0enPXISpVFdF^w&<)$@IpnXQZRfd?)EwrxqFA?$P
z2#pU1@0%6pV|KI2<be={$_-(KGuv#TJ(Q241rZ)-d1!@pT?A=g+?i@0;K^?Z5oPp(
zEOq14CBxq40E*mjIER%zTN)^HfOo5={g!&gO)c{H^gWTaspgvxe;c3VVZ-9#^5oV|
zmpu5Gr%aBpH752eQVfm?nn0^pD2Jql*jS2z?nt_TPp>2!Zna#1Y37A~ulTBR1iojN
zC|U9$(A`^)XxiTg%pE&=E43$D_At9P#iozP3*kV<1y|yJjhfSw5KU+%T}FkvAF*$O
ztejT<GJ=^bXooJN(Dz`Mn%}tIx&XaudaUuKB$e=~Q^8x$OJ($zo(KulJ1q6*@79=j
zscv|c_BY5B5Tjfh`~zDI_C6<Y0be?2u6XN4W^UcVmVVHY-S^-4x}k`TjOzrJ;T@dl
z*7nK~w)IbrR>S#3&Ezj+=R220MUxt{qgKy-tU-}({AkD0Th*jRC;an(Hu7kk92I94
zvTp*VQ{{L%^Y`uO&+HP8XT93v3yl%Df@G`8F1UxR{5U8>#K~<z)A`k(sU=`V3&ahd
z%?4OkrMq6at>z_T-p3ny^z78O&*a$ctHxg}UcGLQ>6+CB*-p>&6~FOr0%EjT{OsJ_
zhX)OdwSfIPtV=c<#2wy@JD=~=s>e3HH(X*)xtz~t7*bQtvHj=#$gK-A9qBdtTtnBD
z!&IL~EjRh3>|z4WmHdDKBWQb|=4~*Al-_KYkuf^l`?Yjp3=8#`E#h<_XptH2zLrya
zzdg2OM`H^rEh~tm56ZgDa{rhB6FOP^xM3wUJTCUJDG$k!DEac}ny>>sBCIG~d?~#T
zd5m)P=rI8ZfqR>n1q~Ii2(uok5LOokf+1v6&|+O|#V0Fd^bd1!+GrkDlJ3bym4q?#
zN;d=h-t1V(aaK$+JP}UtJiYLMC3L*mXLo_Ol-+%_C7R0~P13A^H^nq$wl7kXO)4ps
z!clllEK0w(ne~+LCeYj(@bLwhjT$qWMw!yI5mC2sfdqb>%_PyRY~q>lqdOe!=hB<n
znzhpv+`S)#NFXAE+~}!nS%3$WIoM#}ACar%koEBoZsl3zVTW^bd$fuE`7rgSpiGAt
zE4p#rs{Q%L-4n>u`ONeChttur&SI6EgJwSBpVQ=Kc_pt}ieZIJ5avO1nS+G5KtXH{
z_ZNkbfS7Wqijm;x7S$JxFABE^NRC8~!_4-^DW^fdL_T15G2Uo)sSZ>cuSp-H3(`5)
zr0!8y%@`v?i}4L`&y~3y_gNAgSREa!bjU0qo*c8=kx?WGK%@6}g!qYoUelb*x*0p=
zz;S{KrNyUHkQ~%DyITiZBpuH>l-uhWB9fCu{)65NPc1sH?$3_ada4AY%sMJXNv<~1
zY7#;Xf<?ns(hQ#I|G5N(*bq6K+#?by_QiB;&i9NmeuH>1ws$;itT=|&!!IH6U)<O0
zF4M)I)fgF3nQ|`%>i$zfRba?b6xFd<QceZ6AgM>l)40nsDfF?bpnWpJoTcNMVV7z*
zMk4Zfl9JOb^Xw3QWM>Rb9WP?}vG|GWWDp8dbFM^h7{!~w+H^!{Nt#<Ab(8>(Ay*9t
zxT?h75!12@@!E4q1g}Q2A3t9L_NtS2ltm5PKvDCy?aXw2?bc5YNwKwAY9_^-aUKde
zkBYA;iJnsmNu7yROmz8qox=vzkNy;3kzZjuEPD6BGsg&Z=I2l5iB{G5bl3HFOYMnM
z(tw{3s_~ycgUe;)A)AJzz4SSCC1ueC1~1-Q39qF2pknA1VZ3K<e_SW$=l}4qk(#Yv
z){<UDFHL{~RTny618D4h+Kf3k@cRNO3;LW;L6fXph;%jA#op_igr441ubbt(^OX+M
z5#zM+ui{UKTZ<Sz3dZY%nC{$9x@4a75-N9?IW0cFeB*QY%i=!u<Tj*3KRsioA7KF~
z&tg`ZPd{g_Wps=ltJMBP+_gW!3cu_#NZA~Loopik#ULt4-Z)H<{1FC$#I|ZNw5>a(
zP(Vx%Fbun2@c8<hynNRE-SI>4m0P&9$3^$yu>kllyMLwTx!{Q+Zp#}{DTF>lwbElv
z@)S66tl!^ori!>M_BvQud0-p%K5><XAu8Wj9KPv7p0v@hX$*?I+O`zFTLc*mS1X6(
zC7;uw;t>_4;VEBe^iQn?r_(6drcfEm;vY0FCJ7?K)T+jkhpxW1fhT*^XIQYZ0yPoO
zbQkV+oPU5~NnlXK@Psk(-|N7;t{LnfHF;Gx*qL(CugQ=l^{HvwIH|*N=7?YX2SXKf
ziD^jgRqy8gmhGia0=)C=R&W*!q`#;O>EBw#xKIhL!Kdh&>;Eel8xD@;p6|K|N2iWs
zaRv7qw}q-EziAI5P_FJ->GTSECfh6H>%XoPvJD>A>-So*egeLUN$TD+UfR!e2z9Nz
z2Nc8DZ{H;>Y=eD?Cft}ft=gF89?TE?TnO@{pJd1JIh9Mqn*Ar@`=6V-+ylaD%6otB
zCYNE($>CGUoePqPN!%yCrb~KyjC=Sy42o-;cq$Vcgi1NvE=|{M6>QfJmwZkcN16fp
zfL3+%bmKvNW7|0c)!kyd@5*fEu*7}kT5{i$!JHDpXm=({+^yaCa<dx24tz+CY^6G8
zydfNk%64UFpvgF^Ad*7m{{lTciAC>;_fcyfPi=rzwAPi(;VcCG-b2RSK#Vge8WzJF
zc%nADv<+R;x8*+%MN4Dp=KLi-<PSVO2<hws$4qve_uhPr9U>PY;u^^I!FEPS%65iU
zpT0~>1(hssQ<^k`z|==7(>L9u_J0VyJ!ND`B3{DkoblUdu+z!ArQ0jcRI#0pHm5(u
z-#1BvebM7{wSv_BTI0Znyox&#i<5h%9J#%5g6<M6{kyc}W$Ayi5ptRg2=DdK#S5)5
zOD4_gxsT~N>?jpTWK5A)l4W@OCrA2ne_pV^G2Avd<Sr3OZ7zt=E?HU9oobD?(2m<u
z8<0DF%B3P$nJ0^B?Ms8=r|LWB6L6QwD1}1?k_-_3$>?|P3^cC`T=sUC3YU^K`%C7F
z>^J3{O?k~(FKp#gYA9{(ob>cjarT+|byCV1q`-DK+Dc;+2E-@Oz&h?l9c%BnKKQiG
zZp_&`7>PUo-keg3AC(#$6pb^}l)5#EV#^+_T{^duF2Fn4dA=+~W*Mt6|M8h`l43E%
zhdUusj>3O?0NW7&!g>Zm8dWjQLN<_O8KL?E1R;*?0S}iYO>iXricVaUk0*~~BeBP&
zYLzq_7t;l?gSY_lDcbjiwf+72>%n)Tn65Sh*l!*}qc|gYRv$fk{VcoVGnCQu564!j
zV5(FSYjnE0W1AvbzIi_Htj%DNpP|MbEVcRMk>p{l#E-|<`8x3%U;84Y^xkZg25d8E
z_m+iu%(q&VJjRq$?X_()r>5t3kY-hvbU*1^T5bycu(5yDJMSum5P!AqgRT|h4)vmB
zA+xuK+>GU*HuDHH$}^<=lz2JIV>YpcuJd#Jsq5KuIS0Q&j6;~rnkP^pj}7uT?`6ka
z@G1j3br&io=%S7@9TT`Av>(LNG-9VKC(p+xud(>}Z_<w*za!E^`(6|X4kg122<s`j
zpuSy0pKq6??kc=}OpYCtJif*oXn_}9eUWv`@M%x5OW$4c(pyhYT`ya&4B!pJyu49q
zji$n;s1)$lRAF5W-t-H~c}g2aqbR%}#BAv1#}kJ7@9xY`k-<J8T0?1#A{h}|`xePA
z(Qc4@q^rXBx6eb*r6|l#56{DX1FL@5t%J4i_b-GDeFAr=MJH|I<?K?3t1ZpRE3sl$
z3g9?ytu$8=(%Y|3F}tty0X++}qc)(tmm4rG0sqbdU_MN+Gd#~~z~wulXBnts>Q7S8
zecj|V%L}Y~$*yH8nMo#;`#n7$TUT!Q>7zb1aofwj(>FXQuSagkul)_aMIHeR&`06f
zh<@95(qg4N=n{U*68C%=lDk|Zm42Q6?ETFzUSr`)I#J~FE4HBHp3r~~?%3vtQ&-~m
z;fmmk29GD|kKU(29i7Zq+Zyvkucqb5PCc5|6u8uW>Z3IFU9!>*^t2ZoSROXht-g~k
z2(=58xIJa1+jxFMDQ6Mw1q9Lf^K;K!euHb-k1>}ZS<bal>%IOXC1HPafV{LoWJJ`>
zF5Z};i=B?{bJz<G^2~rIL4m@jBxG9FTiEP%t*Tv5&oN?8n6FY;zhN=5v6J4Yj(*(S
z`%clRC!ME>75y*_b+mS{KR-QOA7XL)HRb`xDUk4eDeQjr<<*a(8SDC~#F%?ob0F8W
z>Hp#DacE4_m#5bl5U52(8x+sY%y{-*SxBpk)j)ymi*GE}4J%(@j*3`!(Co|6Vr;s>
zs?FeXiOzHK_`<1MlI7%uRO1|ZCn!n_`Y$X`km}a!3Ng7ZzueyUzmxX&Vd^3Q6Q8(l
ztlS9%e$NkB1h=lzyuIBeq7#yI!G;p$gTF^;hxREh)G16Q=$BIjM}KffaLnita1|@a
zl#U&d{a`h^s|DItWT`ZU%-Ru8093HAs@DqSn;LG!Te8v9XFN*>bEW~WW$-If6U6oI
z%rAuT$)JIO=lkBuwy+^^gE5i_abTLYz|Gk+rmZ$<!*knYzt+P$d*$Q#gpS1Nd!ckV
zIgk)U;#(^=4on>|fEls=I0nUYXTBWR4<f61cne5rFJnrnS-XwGPa~Bas5DB!$b5pK
zDHzu5d2hb?C+h@l!hF7fZwwoaNh!|*&39|h9~#?U=px+~0^*;4R>1%hJOqZ+oV;HZ
zdCNcckk_w9utHm+hjJGe!i>vTYKV$f8I78aV4eK}(B}q9Jd#uT24x0*4D<L~xwX!8
z<(t{yI$%uBsb)T4>-iPgOw<Hoi~>P2A+aW+lr%ti`qs&u=KFMvv;?qt|H;oU4V`e8
z8x5F}WPSa9T(#8C)wY$cK%JPXPEeUzKri*Hx=bl$i}SHa0)0KkuibH4!Ayg6k0SMs
zm~h_Zs6!bN>sY_W;QQlD`=Sc3o>xUQvvE^R*H91FNo#Jz3H@D())RNcsZ1IFQLft$
zuk}jqD8C0atDxN6Fg?l=a8C*%c0RCnNTwxiKE>CSc%IPfGW!isnPjM>5*7rH-_(~d
zOT@=2J@e(Imd0v>neXCpFVEdQGul7K$>{-m&)WRu5=sJi8seL&2`gH8Je7h}3Qmgd
zJ-J_x9jL4?lcbqeSAzccYTY{piqtF89vi*p*ObywipTh=<ep?}zI%E&xaT+54|apk
zQ{bbv65v8G?|>cno^J;Qtt(8PEKcSc);k3vHhp6)3#^=Kuz_lPPO6dmN?7nA)7>iU
zEr=t!iP%z6QbS|j70>j=kP$yFOjc_N(g?EP{azha=gqBPSTv;pRCKtJ0ZQ!~g2cse
zx~n439v&5<;HptgyriY)WcRI0rNu#MZX4c8#7JP_Lc08fpU!D4xBh$Qz$YN6D@GFG
zKCRvl7T^6*s=CqId1NzLyP$l4a)s5<At4LG1_rpSy)g!z2||sGj`?$-P%nfH%ZwSM
z(8D7YE9~NryLarW>#UKp_y*~Fzdst=Pk&m4G`rVTiXj~@MUqfN6_;LCF<ZrKL2M3%
z*j#$=_rJwMWe^|rDEsw`F<HAm;P&YYI=Iqzpa*$ah=1`C8tPRpxub<9M<8v{tUvCt
zXz4@)jkfa-$e68uJn4V%d`sIM5Y<~ft@n=dj1ff4yy~eX%uC(|zF-;+>h4pf)a<92
zGBM|O8rptisOvIuaM|^Tc&pMp(ie(3-$}Z73@9GK>B@jHD3FO>xmzjG;ijD^cuEM!
za)sobqeP@n`xLL0oM?v?%3?-i_-6y-w*Q<I$lyglD_N?Sc*(ru0G5cCd;KXz;$Zsk
zq8N)647pqz*(}mjG)S~|ln2v0MuvTg_iFw*>O{u9DO6bP;;DYU@=b3m^Y&%arfX(V
z$z|}C%T{_agSTv+)#b$@4au2-*e_;g8&S|n!#d3s3`;Ee32fqW80Pm|Sh)*$R#MU4
z867^+ew|%owR^1NOI1<pG?a!D?5U3ge*oqSwE_9U2`3qQ%`2k;=gL{B+Z)S`KarY}
zcZ0&==Gyz~T>bpB$9-~(V*C^Oaz7u|K9j7oL6P7n8B^UZI_1Ccnr?A9NFg|c1V)Q!
z{^V7Z*oYh=;%G<5JGrQq+nKtwCNe%}bM^Rfv(QV8bKBLM9W#CU;TTE)Hokj|^^`d-
zZ`z7>apg`kZ6;{t)0c5d>Q*Mr7x^%KG9_Io9sLlxehS4w9wkO2YR>D(XWUoa%_ySl
zB932PT*seLz<C-`g(Hm{D5Nf<UrGq=O@%v12J1a2#8Y%(iAdMjQlG7stI#RQ`%<Sm
zfN1KgiM#F_=Bi`fLIzhL&*1$1>au%Sza3L13GaoImzI<s_%wc{#nCB=*<bi@Oj4H4
zH3^DM%zVal+Wc7f9)j1b+pHynNOpgM!YJ5+Z}viJ<X5TkwcuAEkRxM~^&zUISO9T*
zURLeTfXlN)x`A%gg(+wWKco%10%b5XyghjHF0%@q-)(u}u#0V<{)<_xKM9Jr;gdVv
z;xqGb*D=9{ygXJrtcx~%ym6deh2D%DP_4re5TvNHxsRrHt4^ext2%P95a41)@c0z3
zB(6vO6^q*Et!KAAylh5EFG#Md6FK@m^7^o<;7I5Tk|J?pM`_dYJFE(~&Xp*CQfZd|
zW9FC2fMZiSgEp!$3e3qb_^oLkEDyQN%D7$QmZYx_O9hPkt74;721J&IMK#VO{7DQ>
z#DdRlIo8{m9qr8h7}oE=WcxN+vPu7|L>lr(DD${~ClyMZFuz5>SSjs{S1I|*<p12J
zkJ2M99-XzMyr{nQZ<VCbQ+T#Fx3#t>{WZ@RamlYz{%7>)AAiIDy|!|Bgt`@N8P_r4
zKX284lh#E*u2YI?Z2jGC{ZG~zd4a&b$3>@zss3%i``0UMfT#6WeSYx2-bT|60$cpu
zY)<umIblhXfN(ZuF!%kF@cK9NUHlYYp!;jk{p<gF#lLje-~Lkf^?$Deti}KTrT7nv
z|NrVzG|{>S|A;0@Mx449BL^U!4h*JU3uXFxNuv2$`#a>lAV%zi`jnAQ<$ig<=`^36
z>00~=@}F#i7<c^+to%9<<f%2+m3DW1*4yI6up2>KS7OnX-kB<$S@-*pZ0`{#nH;yn
zRMR3j(I(#mkpKETBvNRs)Inces7FEI@L2>C_H$&>>|Nx=PZ$6Esy!jeI0xT;8JPrt
zjo;!g(O!WSU;iJ3F^Ir&z-?7UE^HTP`b|Dr+@Tj}Ax#jwY6In~0~G5WfL(M33XODp
ze|z8IzgKpfAm)p`5qUzy*&UdYj9ZqUQm#bj+$#^O`w1BD_bqm|zi{}1f$!lhUqFOq
zsn=jcJK|y8eQ66xbSthOz@n;=B=-BEmuN1W)>SFt`DCONjJLaF_VVCyl1rdLnPz(+
zq=+hZ-Cxpq{?$uyho>hmNL`8Ve%lKw>t0~8GDy-Zs_6Q?!k+rA^8EdVrws%XK36fz
zdCj)GL<szFGIE9CBOfBhvyJe8ljjg@npvi!qM$^w>VD;S9v~>YZJM4_P=9{j_t0zi
zE_Ua<h|fN{LNa>ssFHk$O%YHY3%1v;(eRf{P5{Arx#{G#d%!e^?{X`~JnnkddqX5y
z^?jRzuSF)rq{Z~>O;)SZtvVCowCK&{;VxA~dH;7GV-f&G%{qFT01UHzz{aZZ{;$uf
zf5<;npGXW5B_Mw9uSY-af+~aZ)<|b!)WUSMinTraxo}l|#EmrH!^CqX4dK)#3E+Ub
z3)6)T+*E=N^^}C^XLdCcd$-v1w9^ioXr9=1{*_A>MS*VYgCQayKDL5ZUiOx1TcF5#
z!v*Rr!)%Z_ZYyK?uqxyOqh=c9Z|Vb1t)^t7Vj9g;qk>ZElY#MYt6Zxls`-;?^&6Cb
z!fERxGq*HgpAAFSr%WyIMQcH3KO?q^`<OHE8y+xVNi8;S_=6HFA@x4;CiE)U&hTAX
zavko=mCXkhB2zgI2-j?gI!jat({EOpf29;U<xz(00+s5t&>FZ}vLPF<GLE1kD2FlF
zk1Wq&`l=PkB(7R6kK1jU?jB9`g^}{}u#(S}8aFPIA3#pN>qxx3;Jyw^ax<&_we^<2
zyB|;C+ZbM{=*MtQ!qP{zlDB=U0r7FY_BaVMhFa#=1Bt+7O>l9oYKz?YBoqY(a;-Wq
z_qfXzYW(P5p7LnibAJ66#(~GOrZ8&bk>4H@!aIW8hDGmFoA_(TDh~}+AO+~a#`vi2
zp5V`}0qg6!XQj6CQmstNTX9Gz&4^<jcx~7m#$-NVmIU?<0#p0>%H1>Z6Ehm;C@8qk
z0DiA9$G0)(-qs!CN$sSD%>rqLd8ahKG~C8AI2qK)TO!|HTnG-N#ff!TcW8KuTj}zj
z^zb#={Ot7iFN07LfH3|$UXu-^4b-L#YcBFs5+Dn4Cw=a+@I?>S!;a}@E<+<A_U{71
zAh>jr1dNWti{M?o%*>2#=8I1e_>la{Db+-z>jl4&s4_xAU^&+EgI2E28{KGv`1nzA
z(|NfNv3_tLZ;E_A*3t>7k69DSBy2$ccfKL@QyTK!F%jUHiWhg_xliT`!M>J1huw-U
zol+n&LC|eHM4p^HI2L_IXrv3CmbD(jex)C_dA-R>lrKv1Z5<hg2KDj#x6))331W?k
zfZ(+ImP7$i<kzhDpo!-w1mWpSw|JWvmO3xoX<=W=h)$7eEb1oFb_tZnW4bLwLJ|`)
ziwK@I!e*Y@VoIE^|6!4i*&8%1BJOL9t$`Qb-b&2-HsSe%N#DUX<gFn3r_1ut=X}|k
z?M!zEGqQnS;IeTkc+Vzgr>kDIY^J90{L?euigObtc1G3C*Qq(BnsQr>xwq$BO*sGS
zJpHE*%!6?BOOfVXxH<bNen8c-k?82uuLmFav}b?xEh(OyDGNSFB3BmBJ$q`X;n}q&
zUd)(D;LTNf#c}-X4FCY^ItVRW7s1CY%Vdf!`9@7dD)n}Ed*z?B{t5DhW?1~Pbm-&E
zmbM0q&1PLtG2W08-T!q~X6?B=g5ndmvCDjS1LOMZi%R@6ZUN{^fKi?kt?(O3`zHP*
zg@UO)DWChut~D~|vA{(1oNYNc+^<}c<B)ommFjWBQwg35H^g9o&HBcI(_79+aml0q
zX;sUqBwY;gG;IZwOxo9gd+3?gdqpI*JXGPUB5<U{BHDA1Zx%&mXi5mcG24Uaq<P7m
z0OSw&US8Nsj-y}`#YA0i|1rEhzOo?np@Dfk7&c%w1ydcDpCb|#5B<i{^m${^N1}9<
zUIUwRuRd7p)X$?I=%9zh8GDJ@(r?bB+WFC@ecSg>IvZghL1nRl{GQKY+&u8*%_r7@
zkJ;hsX)^gfzYpA8Hs*z_MVz>Bk032U6ZE|i<F8-0<P=qG4hmkR`}*dRPwq=G`?tPn
zJ_nmRnW|Tp9YWlFXFDEkLcph`L+?F;0UXS-_gdT<%PZTteA#sp=76}5cmDLZ$Yoe;
z(ig9n9siOkjYJoR+KwOA{5XNrqP_b-k;jXV=132>+fRd`BytmHG<hKFK(QHbpfWS$
zE<D1-%e>noto{Us>08>&=2QRkTB*=*j`yc_IQrgw{o%WZ2%cqCI-*~*0Q<Z($^aqz
zTQIG@dwNFIG`Y(pB0T{0)Z6NP=}$RE49h5N+M74)(&-WfYT=dz33c3;KGe{I&yofQ
zYoEHTz)NOQH=@56@2ywP=uhhyfB%EeeG?ZYx^R#O<jext^d4s|_*1=LWoavvH?>;}
z^+G-d4_Ef4h0KLqG}1IA9a@}3x=cjA!u)WYr^TI6M8n}jUQBIhS%_ULc`51ga!Uy_
z7%r27i=PZUdu)=N=c3e^=2IIih5<aTlkVH|J&o*S7$Nsmb!n|{8xc+HD<Fb5t9%S`
zC!43c=ira*13)f)PMpHQyTc9he98yHwi15+hM3RCKW?@x+EUu#FM<NGZdJ-P8(4lz
z8CK$-+t7+9yjHs@mP9sv*wM*jLdK(C<7!JyccDsu1vx}_BAh7}m95~#(762?s4&Ou
ziiNMd{X`OrU4T%`*ylf&@s{NHQt*7Kf_M&|w)wJ<wR;;dn{w@eu^Q0%f5jyxUweMG
zm{}XO(J)QVCA8mS-Z8%$*<^n&iXG+Hjvu`BW;@>n{2?YIDkhmy&Qd_y-Ps`|A^-MC
z<aiwXrw%aVD2!(EUI@H41B%%6gyEJ63?Ds{8H2%cq=h1@*?wp!8d#5vc`v{F=J?pX
z!n&b$-6~+jP19uzrBE2XKv8ru*sQy>FBpxT?oPM)wZ^o|s3b@Cj{7xqL4IRD*-{KH
z(anXdG)o~OA}+_ghNLDt<W-L?ukj6RX{r&JW>96)CKMQ$K{f2Lt3e(R+P@i=iLXxt
zI4(FVyqtDP22%!~#791bJq$U6r2~0jB{Ru&-J+lBZr~LEC=%4Ilsh<S%>s2+L3(|Q
zafpZLEy0iyaQ`Rj(T*t~4ghVbV6Kmuqd{d?%3uUBAqtxQA*Uu25`yWc!lJmF6p9#p
zrZxkef@y1T9>wDjLc{;W#21uKRxle3_60eh*ck^Jb&D$-yVDiFmkl%XOwOf6J6w1c
zaFqC%mHp+2;|H3Tl{CHZ(h4C9aNqQTjb>Cy{*m>#Ld<gS!u?U^xuQk>1km)0dw01W
zy`;Ns!KG3Z1xVzhFdL};=-+<EEw8{IqS%W&5Vji`#3K(3jp)1dl-|Q+bv|S~fdzQI
zfsB(<-GD!vhd8C<Y9mB+3PysseY)_5S8^c9Iji=_q&Xrz7i=aJAD|oBBtZZki2Xcl
z?NMB^1=8r%lvY-FrrPh1Y2L;=Vq&bsK$k<NF501ib{+cc!nM8mYq~Xh;a9|p{z&CT
zfw5=2zeQWh#>XOB|2)a@-H0Y{OPwfr7PVyY;#K;4>YkaQEQulmCz`m6!F%_TC+WEf
zB`sTsRZ((Kd{_dS>09$rj9Y`x-m+M2pc|#aPE*rm^6N9o_|hn|FRwp7tSXZi=UsCQ
zl?Y^>8Ua}YyRzsbGIjC1B64{(Duapipi?`5YTj-W7$D>jEmtag=C+-Q%QJ_eInI>7
z`lGzkPxW2Ad3ek<1WOSRZoj@X<q->+);~E6a#NGPf2`+dYLqDiDRkE$lL+d9R(Abz
zt8y6<BaAE#5?J3>?3}C`FET29NNrPg<TR?YznLYkiWr1hxl2>D3KAv>D%!ECEGK-S
zIQ#*Ia_md6gyVyF(+d8d)Dno=<4wXL6<}p>$R&F3zBZ!)BjIJKt+$qj_-cwz5b|Lf
zW^;$uEZ!@0>OSwBzk}}=ouUc^d9WMLkET%B$lD77<=lrbr!0B7Aio$_IR;*Q$TRLF
z7_3Vpa1&9ATm<~dL@GCl^Vgv>Zwpsh;^jGO{vk+V(f0j4Q9EBE{#NH=6y5o-alQ>Q
zd$E1jdQWPiR1rSxZPdWNPj_fl6=W@<Xw=29OAm8S-}LEoXZif>1&0CGI*tAem6D8H
z1cNq!-8WT#{;3YHZ{(GW7L`pqs&K)gBjIQN4Q$kF{LII@Rv@Nzw8XfgHa?msi3SEa
z+&KOod7k^&YjBJ6s}I<Ju<a43z$@V>#iS;=v)e>gc_O=&*<}x$MGj1<dXyc#8;F&u
zas|TPTz_^i*rdJK<}@vR6sXeP)|$*D+bEAbGs{|je(o-#46=WMoY-DASBwb*QWvA{
z(B=G(`}y9Xyf1)SL|kDk4GV9mmR%T*w}k<=!>S*7zZBn~2AE+4>4keQn-OG;8q9%6
z8W8W?B`sz+w#v+vAd;-fqI<~gMe}RX7{M}DZe1};97{iDg1o6LrOe7n6|R{q?Wsm-
zk1TG&=NYqxBYe;gc}|_VmC)_b`6_Y-ueg)-?AO#XSuqTo<9&vjT{6Q;a~w_E^5Q1p
zt5K{%IE4A~qoDUgg%vKj*2?;xzhH|kw+!*AKNjKd;=5%{x+D(9AUBuopByT*!Xfu~
zUQAsv-(+v}#_fID_4a!e7%kSgLYW%SCs-Iui45{3s#in?jev<4_i<wMj1$to<Qaf_
zgB$OiC8JB=@U0H4%cOE5H<iWOt+ERVfIcts?%$YV^gKc7g-0mOl!yh&`NiY{*jgEg
z42!45%HpTyKXZ4>>&pGcANmi_IcCc{KS5>D;TmDqcpHss=e|XwK(%%oe2Qw6wqTGH
zX%2;-7piwoqM`=vhsw^0nw-EsNT%Y{t~;SXx$4)jN16T*0%U|)9P25iv=^V_m90Oh
zr9TjlW<m2(_8&-WF6ZA`>zVv^5-Y^FE^5zRq96zY!Gyk~?(@&v+`rvp;cA0;e#Q%Y
zH~h@>yohmzK~xKy?&t=S&iY1b1qKDX$z`n~<D=f3PMWM{7enQD6fag5QBBcEH8nBZ
zT{I2UG@>48%_%cQB0=S0hWJq6PVE3)qjfp9!>)IlZ9QirYIKs5pL;$vvk7qV?UxCt
zitaXIRYG?N)%Y=Chx3B8yw<;eDh&Te7|PSoqMI1quxk(V?MG!@7GH06j|6WY$B8IA
zi>ONt`XvMvxuYpfznfsnrX(7snjBn{TR=3hC-rm}m{-xpuc$*k>5w;nca-4;3DWQ<
zlGt;3Fq5QOAbKcHsl=BH?8z9uF19=>wQ%DFUwWXZj^pDujSaWCrv19lWQ5IFG=@t^
zr8aTD4+%W|V$%G?oPZ(rR9`?zpzaY`cCX#7<y;*NrB?hc2l}D?+WE#x*;R2|tpvG*
zBdxgo=0(iIH7L4e4VTL6^UvvZ8j_s9@KA(zm6W%5_Z&tP@d#-fYeC7wx@cBsoT@O<
z=+2kthnFVTXbOum<$2LoT;U!dL5z~PBo&UY#gTp7Bx6l~UrCF$|0oq#Oj;62v(3_9
zdAft?199C@PiE`J6sqk5SuCYt8eXj#_^00+Qc9K;&kptqE!3{|u8VeYYbuCW_-rTd
zx}2|ZYGpdV;;hzwYD6c>+?wewz_kkLs`Y<z`1o!BH`mwc<Th{$q=&57YXp;qbl)Ae
z3(_8*k2=BM_LJE^aHd<K0W##BSvjQMb6<QVkT5faW9GC%j4R@t^jMFMard*#Fz_B;
z8V0TB6;Ag&=PbINlVi8$6|l=#7Z4;0iadJy$@=4B=xlzS!1q{h-z_0I5;_zKr>My{
z$SKcS?+?^!^`OZ$4>MuXwLg<_q4VS^O&ef<-)<i#Vd<b8gfuu+Ay%`imHZ0P#R?Zw
zxnLan?h!7lt0ZRwh(t>U2PiEp^)X2b;sHBzs=5u$u-Ie($Y6%JTF@sP`=O&c!<?Hq
zENqYRfx(yA55MiKR|FF+?r@GVo1Ry|HXyn<dCn^}@2oOdHt?IbYc7I%iKZ|~uxr}w
zSoq@*l+g$rz<uD_h!}st26jG2$MX}mVT|eSy!j~;ZnuA=`2sxmH;>~#E^fHLN)ZU8
zo%(uU>|BgvTaFL3h@Gh*kW|Bu(9)BE$6Zc{+GKa37-=s&#vx6~qt9U;@~9`F&)7mY
za$3ABcrU1PuAvUvnNcApuTl*J^QtA^CdBEex!a(`!+tSnpS4YXPq?VofNf;Q6uFmL
zYfyNm$VC?q<)V{eu`Akw(Q{sb4ZlktFn7F3Eu<vjie5=2b5~JN1y7X}<~@N>=~L-p
zHgrdpHF3Xe6K^uR(@APQT)XEvOT^9Pg-@sXu+{Gdy7!K|h@_}&<>mwB2N65`VDbs4
zIk#QGg@^}es*kG-RN>Kd{`%^3!i}X$XD=%q$ngtff7L0ZD(|g>_Nk0UjJnLXtkFK~
zSt#$hPSmZJ|AzPfGYs_v%31Q6I3L%bVh`5Bdn~+(cRrhTAiB4)kZ<IrVdv|BaSKDg
z1);f|Sowfo7Hu9_7@50Xn^)gD)P2@eLGa^m%}9Y+wqHbhCn-l(^`(@VG}BKRsd?_5
z20Tx+7GDZg>RpKL5m66}`!Sw3)2Q}fJk1*c{uQBc+&x4?-pm{g#L?i#9*x)4s#v4X
zYrUJgaVPp$F~rzbNVfHnI(_fFk+BVdW;qo*rJ(4LF2qa4{HC3KPOHZJ=85I@+NV^B
zp^0;wV1!waxa_mfQqARi$Y)U5mUjrbO)tlZ;XtKfR*(xR(?uI%?g(IQAB-EJ2WXeD
zUScup9SeIHDNj(P^rfA;ZqUVQdPVAUQ>oT&>lE>a1LkVhaCA$%yKe<PEMT;9wJ^Bt
z7>Y__l*ej^<9b~C_Xg`_O2e0e9iH}_xc=RdKjTCFvU%j9-=F1<)Y?b7276t_^FT4U
z3B{O_?x`a@2xgKPyd0WVm0(ZN#NU#?rVTJ~M;`|v3`E=F*P3}yoA#I#ZS<KuzDFXM
zA|7`cY{CSGn8(K1z-D@+PjI*J%)Rqk?cY&>EQ4}uZ_`yl@vvbIL|b}c@XVer{zxvd
z0-t4XcKUH#SXdh^GgWxlUTG9V7Y$&?BBZos#={U&*H`aHyph~c8rV8r?NX3z2k_M;
z?IbEDEpQ&$1Yz36UkDhblL})P8<ATPTBn;QK0ip)=_ft@niCrb@pRdw27EW3B<m*l
zBEJ)&y`VKg?=l9S1KwXc=9WR+O*OeG!Z8%`dKbcw%unt7R&HQmOpR?5AzP6T@uMH3
zuve=gi|b-3(~9`9S9-s*P;o|=u}jcPc6G1VX-@5P4j`E~w4XNLNXB;teD6rS=~<6z
zf-n|O4?2?PjnhnHk%H)pL(&$T<g$k_^t9}Zw!h=Xn`p$q4Y$w_8)I*{&Q4F<Ku(*`
z0JK4t8#gE{KML)8Zrz)0Hxh2`qTfOL_xKoIf(vl|5qAX>i748#Uhy4>n|IA>r7*OZ
z&ii#g5}gnNBS?uRV6D&9cu?A(DT|NeKb_Z`|I|UyvfKD1)(Jxw_2POovG={bxLxRm
z>q`%I{ISIBo`zgJ>(8Mi?UhV54gH;Y{>bBe;Xn4CIVfZ+J#`-h2hkhx>|xkmazQVC
z7Nf0TeBPik=5SEJA72j-<Zt0FUp$wRAKy!K0IhlsXptZ4?_qJ|X!WQQA~yi)(TgVb
z7m{&R%wB{<`Q>IA4%*|FG{<=>r`Dkf@c1%*RXD<;{)t~IFA-lTJeVI_Ue(<ZIT=4B
zmIEv6O91ftBAYMd)VPodQ7hyQLTn&aF<8P_Rr(6Y>(O<an>+}xy*)qw_UuDuk|JXD
zQDmbN^}svGK3jda`-){|x28~8#{NQ-Og8J!V^b&$7P9Ejy|oV0)dVC)MS}8AI%UFy
z-grJcdgHV+gFw082_<24<~5^!pNU7pk0-bbGrpFXr<=S&#5u0L@)tZAgtb!(vfiGb
zToZOWL57>>_TbZ-syjb9T9dxb(QoB9&!8{{4nJo*0eiD2WHgSI4Y^%OdW8%5Q3viM
zKECNyIX?zmrZmA><8-YbYw<9>m^k)k$5__$;0ooELm*2=G`y65<Bvgs^y>k;JWg2{
z!8fwE;aqxYjzrhGhstXnzv7zQNoFaEE(&mvd$k1naADW}n6z19pCHwR5>r1K^hb%+
zt9NJC6z7+~5<O9jyMUEx&fB{al<!@j+ePZ(JJxa{!a`s=0C@n?dMjGtZO_U=#d2QN
zm#<GXG1?+|B(3{xzBW?x<cHW0yoIs{8=0wMUwmKb?~fVB(((;XTte6Y-EU#Pu<D`T
z(3`eoV%WgOj7u4;^>m9=zO0tB@YMpHa^X(=-^E#0pc9Bm>lS1E)K_RwWhF6XCrDnu
zM3rg_^wif$FC+`nhZO(<<K`~sg)fA#4h^)!)oXf!)MIC1G0|!(geSZ$zp$yxEqfwm
z!9tG2?E!$WIKBk0)@|L>FC@|uTp>%(#B<+>;jS~3?ybwQ5iDfVHfmcAbf`xbupO5u
zi3!gKTMI?_!}@8e+#*SLk41TsU+S78MoK}+fLD(01DrYO3dwPl6vp99_iICACS4iT
zNYM*CWe4EVq4QBg2tk5FK;0C$G|MgCj*$6?;qE1hCY!7|laR}0zxjg=#;AfVdC&{}
zf`pwsf=x_&E>Ur;bimN_b1@AiaQFMX6Q|04jZ^9?5wfjg<>S2nx;r)r6H#$QK2m?a
z&9Ff7f7-k5M=IO69|<9jt*nFWo$NhA3CZqchmuibXUhmlMdp#CGQ$a(2N_ZJ%HFbd
z?Cp53)AQ8Z^XT~t-q%kz_i>+V-`Dm1en!C;j>=~972MbV`i7t3X|NBTl7ZsLpEge;
z2!8*u0D=?s@95NDV_(5P=ZQ1ZQ~y-F0=oK%x=>djOZatnAh8#er<V2J{+0s>q2Hng
z#y|cBa-=y<$2j@{O&kDd5ThA?_;+GkfdmTvAUw{pM)UjhVod=QcQ!_0!Jp~uU+??B
zFCg?-;?^1Mgzf*NxX)wZd{UOCKUv(rKOcJy6~nU6>ERd9$Nk6u`X6W)Hk1FLzVcTh
z_+J+a_E`40n2hx(+kc@2UQ>plmx;1;ZCBhLfBRJnWF%M-{p#OK&n*AmYft@;0G@b8
zUgX2SxZl71ik0$~d0OyawZaYzAjIrvWB*_301CKFpk+Lv7Jsy#`%%LkK)X*mYUw|w
z%k`@bWkB<<E7aot8xZ}gpew0Z-SY(GssCu06Q?~OVMwK+2tkZCU<VIRg&6-=Un}6o
zC_+_<93cHt4?JLJ&h?l9T`%?vrAY1n{Pufn5J3Qi^BK9q#84lVRFfq!_>x^K*+?^9
z$Ut_h-)c`c{ZseC!7j1g5$0s4?-B#_?_#PL;)3(RlRV|A(qDD`F<1s6VfU4WfSiLK
zFsL0lVVJF_I8x@Kc8J;6DgjgC=fK!e#hM!?8%6v!fuL@bVa(4RkBa+D^{IK|woBiD
zpn=?VRu~{<>xEM^3A&rL!etEsWT0;fZmFRNGEw><2So*+2s{;WvK$+S$;Lmku<)Vz
zWxgIjr4ePOD$rvCH-H2U6E{Oz#_sK-p9i=#xcwSmzh895D@2kHju+#nwSHEO+UtP~
zx=Exwj<eR5GyZzBX#%YD1|Y2;9XA#ESdnEz{L<rTfG&XH5Ie;3zBB|W=ia)JqB|~n
zBty&RSXd-m7J+hcqEZq)<NsFrSM8rFw6H+fg2g;YKrgkgW<5MuwY8h?`u1d&siBt7
z7zi1q`l*r~_L;rR0e)@-%VMLRvuCh^u576zip3tQU9UFx3#761d8S${qdrYpjcM!N
za2|6)d-t*u+59V0)F6>3C3v^wVRok4LoX7U9s>b_-a>>ZL_!7&%5Ni7!ezo*<ApU^
z6GZyb4|D|lg`Nwh@)C@s`oRgaI}8fUeWN%4$X58u?dEvlpen)OR8{eamf5q6->EG+
z0M0@O9Gf#bXc(CY8;_4pNERNGXWBcfM)$~vHVraR0E$rY0gz0lZ+u}Uc;n0QLKaFs
z-JPvT{2VgjAZwKQf}7b;?Foaf{81&8W0(RR@Y^8yIiGPkAmZb3ov$o_C$Zl8jHayW
z+K>~BdhPwCICgc28MVO8Yu{SVB2camQCi@9Rm>I7qU>dsq*7}7%4+jlEu;YG47>s-
z$9Y<UB7osn5!^X}E^8{fV0|TFgzaJHXI$$IA$Ugj4ztYwc!%eqE+fbB{<PX#N(ZQY
zO~<M@X8RqDGPR?DfRaJFnjaP_F?nAAaSBABuC>c_H#JFqV|wfL?TbF3O+D`gVFwuj
z9P$j{m=1swm8zIRj~UNtVr8x=&eTYKT7h8ZuAPH*O}%0}?Sy4y&?DTHfR91w*;LvE
zph4xDI}UaNwuOvtkTwaMmfI#FD?Ju<s%0sSL~v0%JzcPU6KcLMFYb7dW7C$L4m{he
z<6!Ps%*EgbAN_47ek@1*Vg=HwS`Wl)k#Hgx=1DE|sBBBY#O^w+CttjO$0fQ?K+F}V
z1oP1PmcvE?Jj0db*s<q_`C}LykI6W#_0DP#z?)`A%blC&^0-8G1T?5$160a#{~3dZ
zrQtHv-rk~9Z=&d8s}ukT2-Dn|vkDPN<OG=TcUPWsM6pn9>anT$W<zg3vNnim%Q6Kz
zU#xI>tIZ6vn<cjGc|1VmnMt|k@VsWC3h^D6S>JpxOr{Jt0j{U~ovwf^p&Q6Ih!|~(
z!pFE$gVln0Z(RBSPB`9S_H+s$HMb!FsP*q@hHhQM2t5-cTlD<0=`#RWnA)hF$s;{r
zvF!>+0U~uaVAp2@q~Y95<CDX*M;+M6O9g;@<bXYRwj2htpW5@S8O|yyBQe29_|f@O
zq$G$tE)c;J!YRsXommj9kyJp>ou_d(a&cT5EJms(=$@=@yZtRj3tuyU#LPpfu@C~{
zokEI~t14EsL9qWm*b0n9AH?jJdT+xM<$U6RnPp^~Z9Io24|X5sy0s)}^@Q*G5yo3L
z@!uh)9}`WHeMOzf0dyz)3kVSqgeeAvWVI%hc)U<60&p9OBv$(RN~fxX3^9j2O_tBT
zu{_#XIS#vtT#LFrM<rPI+xA32h#mzwAgm5=Hc%D4wPC3GMl0n?Lo~CQsKZ|JIpN7E
zq0rrCL1JnpOAz_ay+o=v`eE7qRKRJsy^XV|P4`@*(-ca~xf(A?y@<&w0L6Fi5GX<{
z@?*vaS>J=jzYn5kkPXl<=V~u=@YhbaEfcZ$%p~ADD$!Tg$nCtUnD=y>?~=Eh`qa7r
z<T<nTvN-iVKWivfClLN#+;_v%qa)#@N5T5e6t^A_aA?I8C@pBqx0V>{W^&dtIfsSs
zHmeWHM$U5gZMhPE)DPyn*C0}O4o~Evkb8k0Kgnn+MH^7vwq~TQ1<B&Twg&tO(y@SK
zNo75-Ds<eWha)#|blL?NKuSal=>BVEFFL?w%BbY358kV{vz0vm^s%sAOss0QY~-=a
zHzHxBSmmB>Z9^RZov<dnUDC3?Blm@F+%<fks!qlqirE?hs=^t%B*MZEOf?vf(de<e
zDFhx<dB@j$GeLlsa20)6>g|Cjp}*Vp8VOR<0gdy3q<7beI+{|EEAwU<VxT#{T0j?A
zXLU3JTEBzGcFR}Rq+l-A*?xe6+w=@0E)@@>B&-Gk6(Iuhz6WH=Ek-ueG4$C(HlHWg
z$}b2`76bvuHCY=kjx-`AZ5^9pg->?qlT*bnC(c0x?#XYT$$uM8nZadz^Tgx?n4LW}
z0X}-!dfdgOVFhh|m|ZopcYx`9W4Z<huW=MbkO}g-^DclNZLop>u{D1h#);VAVO!w1
z(L1~BcaPN6pQ0)P?;wKa&@TTi073iK@&UsHcNckx>g@xtno7={a8tP@?J|=a$O!|X
zaw?g+@rIpxO7<Qzzm$u$ced}6iOJ9s>VO#JDr69P{bLa1gWr)Ns$m-nL>_L)1Z^|S
z%mN>r%`yPGS$wxihF1(qwCD-W#GZ9YBC%y&jzRdYk-aY4Wu6SI7eP7_%<6f!9n5sg
zS<52Lcc*&9983*>PH$(j#@9uQJcQf~ZM{TpPefU`cPK>0b>Zq=*YAHok}6yyl+jCj
zXWQ<W4OlUIs!+Ms6luYhB%W)~>KN_Z2sK8Jc+DglPr)__VZHMVNsNh0gperb{v4Yj
zTqMJV(0hL>nv&=I`3jo1P=m0YX}z(&_X>>*8b?5mBWGpR1|Y%oK!0{-usq0x%~G7d
zB=qsL$M*p=W$mb;nWk{%N#6MnD=ID&gIJM`y^VmTIHSHKaWnzr+e|VBOjrk=#l5~f
zS(_+@vtS<FA(g60iRJCPjn=pW=h5e3t1OA70i=+3S&zh$v51tIzI=p|2cL>)@ZjTE
zZb}}bFCvec9+TBy4THZFG!soNDJpbaC9!G8e1dFa#3INCjf?H9eMoR1qp?CB3~@aA
z*U`#+^ddHaL&;f&`5(4=g619z57oWsgw#&#tfsLtNK~$Vx;xlR9?1Qt7ba^^jWQ*G
zdiiOHIu3VKW&kw}o-l{%!x`BPmz8l}8=nE=3b&Mrvs>W|s$blOJ}hTnrtC9{(XiiH
zQIu-$1sS_uCJ_jEtw<Pwq)P~$sWNxbEJS9^dAi9)j5w}?CK8z#L}W!Ubt#ie<t!l+
z<ReH=IDROY@l{r5CYeN(JYt3h8#f3QrV~i7Mh#m*2AI5;giS8kw%sfdGV%6dsFNne
z?>sf}#PXv#m43VKCx#}PT=Gf#Vt}j80<43(+83ukX#l-?UxE1M$$0`Cl8I8wM?_^x
zLgZ`2(VrBSmIl@xS?Tv``c-Z#OJou{7&RE!e~Qc>Q4xC~XjEY2U7>idHLg{}47!kO
ziu#()IAi$c$~RYxREzdvvI70FC>7W<s=TOCCLaVq%r`s+d}v`e!aG2>^$GxbwoNh6
z$YTYeV7nlw)Z3B9HvENkY8)J*r7Dq^pR1O8dmO$HG}H0}etde49|PInx<7R#0WeS@
zidMsJ$)?<IF~!U=$h`}10jfWXhClIcz!_p_uq|Y|hS+BF8Bu=9p^Wpu1l!h_pZl%8
z`@}4|GGib+|J{I-H4?GsS$<}?J?J^7w&VwihdW^jf@g4PYZX6IMo>bl0bQ2LBAu`-
z_z+XUd$9-EeUAvZZq6H>w4_xLB)_J^ZQBN!%I{J-8?4A#ac|-o(#wH^QFY+~(?p9~
zoeOQ9&t<NX7srW6V7pGv4iQH%;&n0M8XsYTHX~5QvNGw(m0zJt3c2sknLZ;Rp+mH#
zR-5xbDLQ<kVMu4igm~TrqbyLi4<u-lMprs|p*};e0asQZ@t89agwWX@VBhfiMn_3N
zWbaGGp3K!EyD^L=e`Qz`ei|O!uBr3e^g!qZ?w4X!H+d_i_-|Yk38rzM=p9s5BGU<p
z<zJ>DOb^|ZS+?5V>`&_8Ahvy#nrm!g>eoL8xYe3G6X{&fW!ybNR`5uA4vgn@X)Y?L
zBgH9&P3!f%Wf$G`+B$<Y)&KBfhZy52nFO;g5}EE@T5}0=2*Tg&&T+a@jJOmrN6mu_
z<RZzrUbWtq<UBaM^?hV)rC!pUNv(nO*%$3(34Jpn&-yPf{jP^rv1`MxzEljmf$~Zr
zjaK2Z{up@bfu!>@u+vw|KWEpfjo(ScWEo?DiR|rLWXpI-7t9m9Vtgtp1D^dFvt2#=
z`thjJs{k${z>rH&t*_dd<gKGzysV#VM4n=m3!Fd~4!8G9qZIc*YA<ZbYqNeWw6o3^
zKGV8`3=*>DEcA;097vr>(Eed>6Mef~@icR6tTY$}@1PWFj}(g<zPurH*tGFr5_)Vq
zN{BqB_oY5=0rB8sa&S&JIt@H@6hp*c+!fX0cIq#v0@({2scDE(@(2Jpy+*FhdU@Y}
z!DLqTu)%2AIeeir{bfwX@>9=cu$iAf1W>&MYk*wo-p$NqrPsPbDqM(2m0q3lre)1F
zc_eOd*JKH{p7U8Umz8H!nZoN1^}w}!;EH~I#DO>lAAh1A#_APJS-ti}WAC|?D^JOm
zgnu7{vpqN<e>QUHrN#|Ae*lsS8<`P-_5(L}(c_YIrt#bhp^aQpvf7b-w9Uzq=~l&H
zyV2sjPm~7yWcp?ya&~9vM@sJ(4sg782axvQD!dtDrRWqA-ssw=e$mG=H(=0rKJs6O
z*;73s6<h)O0vjuFcbxd*PQ<i+KPBq3$G17+F0VR480)n?vSl~jl(vu_jlaNPuoV&U
zG}zf=swNjVpf^Z8^&+OmitEmG!|xZk*R8#0wQf6J;8Qg(`LQDyRdI`;7k^?rJ$)w_
zxG%5Ih%OqrlQK%#Gbzy(5_>{cAaTY3{BtU;OF$j5iXz~xu2pvIFVG3`*h>8_;xcnJ
z8yNlA9Q7;u)f!MN!Fcg%=PYEk7fTOELi@RPdvhHC*zgtE$F3@gN4Y$YS9FXsPbht}
zV9SRYahRr9^sa6ui&ozlDKC~uw0LyAOwefp$rNRD{3NM>tD`WUM(j|kmJ8`GL7#{o
zY6v`O04sk`256?lcXeJYrAn;6WEnl*H4zPYTp-03Oc<>EHOCMJuy!C&U)!*^nY4i^
zccpJdQgdHd7rnbx*~T4muL~F$8KVx?B4#}O-0Fu29NycsB7m`amNNHqc8%<c)3<V+
zeaQ0*<`gotoE8smLORS>Sd|?m=~QBmO5EjH-1OZUYMi?04DY{bzF@~jRV;cDG91o(
z3WiWWckvam2CwpbHsO^(L=T}2c}G_uP|!8+h)NV@QMQb=G#Jd>Es1HXzuiN{`7}VG
zX6`U$-lxoEG-<l^@}&1wIoi=-_fgbrm5aRl=uGpjh}7Qx#fxGFJ~u12`g+r&F=fCg
z?fC<lqe7Qi6<d~IA@8-%nwyXY>72XyjF(*j3JqDbXWf&OEYl?^Uah4IPe{mu`(e;2
zWn+#gSIryo2+2{?!wqo6b&&hMq!Ed~DI*;v;6XVtcaqFL(;)A_IGYh?!Dstjj%B}#
zJvfwW?r)_!RY{H-pEvK#HhZf)OEjRBA{E;feiRN=Yq-zMJDBB9`xK>}&Ydc8*<UVs
zGX@Jz5g*-Iw;L(<?y{cRra@hDz$1h}75q=&;QqKUH^RdgQ-hI0SO#Ma1@grly!hl_
zd?|D(KYTNb)Hs{~JH7>|t>ywZHR=uP#R$VH&8tiEEoWW92Hs1wE6eLtLkyLiiUe)`
z7ER8*8QHDDMsHMf12b!ISdASp_i!aEFna@nRTVknW5cGgMa8>tLOoW($mI}vgSUO1
z>1GB=;_^vy-rFPF*>6L2T1I+X#$rjo`aNMjGIMPeH56}Xlbh-E+MBo4t)U699(KWd
zv1;c;J{TEwn10w<iB9k9hB-xLyb{nFEU@rlWbiTd0a~~q$zDCzvp<*ald|2KM3Js2
z+y1tdeLtRF5O=~GZ8D@U8*<laXiK$kcJ(7rcGE@I&X{*MzvC|1?zAeHH*xDTaqq!d
zVAMYl+`8e9FhM^=TM5*MGGk1L%z;gYNr|nSx?9C4kloiUrggi`ybk}_ntwGbiIO>&
zSCOc=oLp5Q6HVzGZnv%O?(W`CQQAH04_ZlSml$?pM(Y<sqh;PBNui_<0*hvH(hW6R
zPSVKcvd-B#fd%uO+`)>xi84#Ntr6Z8auQM4&5VITbbInV+~0TcYxP%_(OVg6hPr}V
zZych^1uKQ(aG!0h^khp7<q>9@dM`({6|`nj!bmoU3ujS961GpC+nzXq-*#C=QLlE1
zb9G?YO-*8_MFf^@s(fhq>=0yToKOWHDNS;k00KGT$ZXACIuRYFFk2I#oJE&rwNV@4
zaO>9jWwxse#m?4QI`iuX-z#RAEY~oFXkE5N`B^V`t0eor2S+GrtBKHgrFIW|!RiCM
z_M_AtILf=dt&t{Vccse>HhETMZh+}Kefy+RiP4(}_Dj9x@61{gtOR}OySq8F0p{9u
z1Xgi|cJFY3^0zVSe<FY)fE@@MeAg0M;N^#XSlO++a;_t%4JhMuRo-qzc6Q3^qr5mo
z8~v6Jfq&hC&}@c2iA8ea-ow!v#7G`p;8_%kbvn%S4y{!L3mmy;NkVQ<L)erL>-t)%
z%BK!lM_kg*BeY%P&!b0eA`DGQ8tg-ZcFQ~^IR>IxGCFyk05pPM<!P$!jjGAV)~@$N
zhfWF_bUyrER-Lkaon1A^3qD(s0HTn6)hY6CyAh3jK;}fZy)nL70Irk&N~GF`MA&C8
zji9@cyc~6esb1GD|3aSE08~KbDP`vcwrEf@mU(r)gMP^Bp-n<aJhg<IJ<+MZCn$DE
z&63k4rll{tISy@kol}*P+6!IC$`B*dZ=zX_T;UGs<G%$gN^*EiX<Z`Vwg5>XG0Uzo
zc#bw%u=H*fU*7&_&i$mxz%AsBI~#%JR73nFEp5CsecwxbeiWVEhP<HR>7Z{(1sbC%
zCF&Ih{E|kivK!o6T3Q6~x(pwkf>WXTC#~83chSI>sg6(Rg(A!!wf056`{3%-lyt~|
z_E5;xR|z%piPne%471h-O~nyr?CtK?M170x<^7_&qT`tSxvPJzJ3kkod%LGe96D&C
zCmU$Z$`9aS(pAs^kPj5-jrQzMjO7)a3w(L`n~~_of>+b+!b{P0;o&2io&TC|kU3@Z
z%%Bf)gJ>#T7d%VqmYlpBI*f8M?&SWGocxouAp4eMgmjtjdb4@0dA<sLab^&pK+N<>
z7Nb1ZEd$8te`{*&qF5jlkam;A!lGo{{;$H0Une#qnYd0|A@}o>HI@*gayrLa+27aF
zzw1O-<p0W{L%U}CpJN#NuY5!}ibDvGNXNi`t{C7c<{h|!9~9+r#<YJn&9C+@;KIXm
zh?o>EKmE_P10M)bBqkihKg4?||FdMj9$bTf7>SLUJltRITW4I8Ja!*^FaeOE&W5ob
zzZF1%qX-L6l=|np;zz+QfIIjI^<#xpc%`DyVSso``iG}oRp^Kd0OpFnYV`AhiyTrE
zo0+A2{Ao~1NRc)4@gE9s1vCb`-NGLlz6sp<|LXi7>78)`2HU4+sh0+pPk^7xm$X#!
Il*|MF2b7u_8~^|S

literal 0
HcmV?d00001

diff --git a/docs/codeql/images/codeql-for-visual-studio-code/quick-query-tab-ruby.png b/docs/codeql/images/codeql-for-visual-studio-code/quick-query-tab-ruby.png
new file mode 100644
index 0000000000000000000000000000000000000000..25819aec141a9ca94a6c37e11650441d39edaf85
GIT binary patch
literal 81069
zcmeFYWmH_*)&&X#0tBaUmmt9%f;%C&yIXK~3+_&WyN2NI?ry=|CAj-Lx#`>8<KFM~
zct76Hmr<2E<J6}1uC>=*GUu!iS!pqZH#l#=z`zj1KM2c%fkBypfq|F8yaw*Ty6|;@
zfxW3Q6%vva7ZM_pwX-%hwJ-t$`w;Ra0a`I`9`*CdO94B?TYnO=OY#pCpX0}0QMQDB
z`~cyPs!vp?o6v)<2}eSrs;sLd+@bWYQdziy2;z<EIFy>=v||Mr)z_O>L2JicCoLB{
zd^bxc8N+Ew?qg}Gci@@h4f?iJG)Vl(lnSUDo1@{Ok$M~H5UAr|!n%ksn%aSh_-JTg
z$Vo{rbOt<N$*CuaQup^at1sUvPoc26!7_>bH}9~US^Q;4H(6z91|Y$dLiQXJOhPH{
za5^1eV~ILF<5D?BNaOJMdOlsoOQ{A!cT$0^4QQ6WMFFcM$Tl%PLq*{;l<}t(_Q-<K
z+rqEU&C9z$5#4|w?G_C`&GlA(boN4h*<se+i5rrNKfBb<hdg;Vj9g%+@|@9k)<#CF
z#0lyG!`^xuVhzK@9L?O65PM8-AotkWj*W3%@UwtJ`~a7?s~J8j5qrm;=gG)i0rT~+
zjqi90=|$WCY>J*hpvoS+#H5g61?pRZpV&JejW<6kbQ;~i1sB`l<9bJ97g*(w0%yWO
zN;d61(<_vp@IlD%4o;Z&xXQN0$X#aW)~Zb~(!$bMKC#T=WNH2pisZU@ESyr!%EPB%
zwpgluSUYu}E{seXA$A^4-qY|tyjXUAL2^rQv=kvWO^<1o{!^e2#VG`Me;4F>`<pq^
zE(pk1(eG3lUB!IF8eQ^)6BFYH3`v#9b?t<?FB&AN;i##>$jzPZKQ_Z96^R7fdMPJF
zP9vMce~ZJfYP=-@!#M|&b!GTIwTJ}9iuw88I9)N8wIqdx;<LarY~g1_MIZ8UDA9KK
zfe}OwaQ3$be8@1J{4A;vE<~`o;IOKQ%05>_NNAsrbTKKRp!uOVAR_(ZGQm@!655q)
zKn|a+PLVJDh)+?&KQl6b3m_wA^Rs+FpY**XR_K4DFF+TKi3S$HKOu`34--Q4uKLXa
z3_5>+>^leKB44k7QT~L?Ls<$3LY&WmS#{$SSWt0#oW<a{?H9Tj!+}rh3@(hRF!X*^
z>zXdqnh*(HeQR#Fs2-r>z=!pOQ_44)A1Ggc#5D@k&*GN#Da2BQ_~@(dHz<alGbqPe
zNUlhIfLKI$_2vpCLS$-OvKo5<_9zTd>|%Uq+<aVPJa3P5&&>hu9?=bq$M-ojOLv+v
zA4?1#8WbSjP1Cof7s?pK;Fw6AXf=#%3?J6RR3516UQEx1lM+7CVbyWmHKR|j&sE_!
zCx?ev5X#*1eiOo0Q<IzysSes1-Why00Jqb#J?>Q9g}RxY_ceW|bvx!})W+Cm)9KhL
z2-4M;w<8Am!x~5#wHAd6R?2_TpSTlJ&gaty2l7CaxRApTvTmFWbbZ1z{1D+u;`h<M
z;)0W$^051m`#7ebFJp>7uo1gQ8w|*wE1&C~i=2C&bG-@B=eN!2mSuXU@lGjzD84Tq
z$&Tf{{rgBf9jg+}B+VAhge7w-pCTC}g#_8EZ#~lr(~Hw8=a8<iT#;N$A93!O?wHS8
z&U4<dKuHAf2e1Utz7az&rRG-YeuqQp_U;_r9-SJEo*HpdmPIQWIznvm!}naREQE;)
z2O-X&bV>S5!h*Ufv3RsE7V#wU%9LN;r70YkWMaLBM<o4H5n&rU(RG_!oHeYBL20dA
zDt9bTppulckxwE!pz=*=U->R~Q1MD$N^Uu8A@lwNLWyxUMscmCW!nOJjf(xAed^BX
z&equb_q#rv#a7t_+37jjSu6RxMOok0bBJf=a%|N$zmN+}NinNceYj}eDaVi+5|JoW
z%5@Ytgi;6@FwSR^NTeM`v2?W5vHW%|aO89Zi!YRBlZL=q!x`le(nzxmxlFQbyo|y_
z+XChG{j%taU=MVub}xS4bft0ChX9X2g20B&g2m0Q$hd`NjH`@$jV%|h8SxeS3+^&&
zFHTjsLii1~b7DJrEx9<k5qX`Io&uLb);{mlXhUKHqP>Xy(C&3|%*dRvn(+_gS3B?*
zU>68G2s>rF`y*jVbq3mp&1D$17~e3yU?9<=(>~F#tFo!J)-Y9UsC`jeuE|$**C?y8
zs`fH4Fe5FWx3(YqYTVTB6lYm=gvsU36`~cfT;7uInfj#tppB7+-o4P-xbxZ8##!~y
zW@bGnC(R&#Q@pP&bvRW%HIkDj!<s{fq0R0&vnrB#_Ab-D4Q`5TblW7sOT|*9)V$#k
z#ID8Ox=37SVqxIK^nmqH(-hFu-7@OA)HPvH(<dSmUl3)|YSNUDtx~V@ZPvgV|3vu2
z>;#2SBLgoZtQAYgdlkR61rGr+N}&h)tm;PNXm&&98tIDu${SS|l?e8eIvD+_M!CJf
zs^C*Vb^wA8Q8cKY`BW}iZ@e;d)wiNUpu?y`Mu<j8IiNalQZONq00AG)9%&Kdnqi4j
z6K4faAR;)TFcd55GMpy-XH+s~4d;PzwR$x}BjamK5Q;seu|v#kwpLi6zNNv1zB>jk
zop#0TJ!%cvH;GZ&Ji2W<9`vA)uy8J%n<U(R+TF-r`;D94s8ep2CRh49t4EUO@^&>@
zN|&!|sj`Wu+!OC@O*U*|&E;(;sk4I06>rJs+3)zzT|Vj#uE$${i}_Y#dRtvz%}gR9
z7g|WB#q25KRxqcSN^z{SQ*SX_i4xMbCHp$Qf+L49E|NveQl4}lY0`%#p}4XbX^8Y|
zhI&@HV0E@--oW4pb%v3<$xE!?==wHG*`#)j*N=9y>jOXYOx82=<k^GL5iPFjQIqAE
ztM03Jht`(mbF%g8PrdySQVlo_hj!53r*~PLGITPrvrPl0Q$B<fd~duhRxMgw$9Br@
z9v^X`Fra#%GU`rimu?5n3t}@`Ev4obT1TuFpO5B_vX6MUG@bF@DN+v8;Vm`jns}mA
zQMT<pmF6{-VlJW)&PgrNE-&k#%1+jcS&v=wWJtt)Y#Le`GP@}{S#EarAoSLm^{RVf
zg=RrS!@Iq#I^A`L_C%aXz>UXL(WS1WN>>(DtbOjh&pU`-$nq7^K@3B@A%uNDDQ~2s
z<f!<xS8G<UuFm5@bFJEEJGL3YYRn34j$H#q(GI&Gg4x#lv|vB^VtDax=3DaAeZkGl
z#KHMt*8P_&QUq~?r-+G&G?T|s7WVh7Kc0-A7uTy6Oom3^r7b$8yYSvT*1^qViqePD
zw>HMRn3lVmUUUt~C7jek)>Z4Awb>mN-TW9T`8fkOn_8CEa_sUnj4%@snBv5KxM;C>
zU^Tx|WL{@p)@JG5RMC}{^UdCC_l|D1RKl72M6+e6!M(~|&)G!AWvpdoZspni(S7Ws
zV8#1_=&+-^%h5Bj^-=6RDwOa$AKlCH?ahK$)3g1n^jDTLf*IU+TL`U>q?=J=LJczS
zWWq8`dA_?@T|NFRzp?2H6QK{(4%Lxv9(+((A8RR#(9U=sIx4G;DU8Wtk7Zw7v2rcA
zKR$I&xf#h3$cgHk>?QBL;4AdvIFGrixKh|EFaZtmZSp2~Fg{OS{&+E8t*f?P?bd{K
zE<)!gekJ_@Z0$%7jB)~OoD+<QF8TOd0c7$sVj{_DhD+l~Iw}_!l^ZzB5IE5q2AKQD
zn6DUTG7(Tj!J&I;U>26NxXe!{ie<d-&ikV2V>z9N%0IWRvd;K;_d5{2Xsx`YcI2wy
zo{rt=IJ?7i<fqJA0d=f}k*c_{loS{ha18?n3628>1zdpxPhN1`Kd(i>DZyU->plb+
zSdb|g<R4?Cf!AOEqJihHzxn+NkqPnd5m08Cul{`vUixcjaBajs@B(Y|LCqcv41?^~
z6I@*W?I{=-KbW|%fT9cd&ot;nw4Ry3Fgz&5*lbABHzc94kisJEc(RI+q{bqQ?&woJ
zHa&QZkBJP>;VKMSB#Bp4<dAZ50|Itv&tB#wE6MZe^GWmb3{9)9>C4CarA4J)P44;k
z-xUg|91mwK{bE8s!vz2DM?8+tV4jm9zAB_J|Nnlpqejbq#})YB1Nb37CVlo_kZ%R!
zZ2qU|6tx=cjNk*vB);}~%s`_cga7N{6Dpy5b)bZPv*ox$LIhzH$sd8kI;5GVNc`^+
z;3)kV;I7lgVY!1SzyId{{ND#2_Cw(aa%$y2eQEw$7+?^F_!m+LV6y-9zy`i@3NeQf
z=>MGP_e~!Q6krf-ES1<lS%&E?Q5Kt!%^>;zoC{dPJP9yJ<E>KUKUvT41HYhU;99)Y
zKTTID0t~ACP=xoF?fx+H-@ZwIG_YIn9q&^9ak?;IkVTB*`~PL5U-zSl!C`B#eHGaL
zaXJiO&^*aEyMJ;rA|VJ=GiJyFi+`Ms78q0|BES6)J{`;-2>Eu}7)E;jAE(p!HR%6$
zsQ(uZm1$P{M*eSJAe#z_!)|49@Z)>J8S&0YiU|h2cB<|3<S2*7txeU#aZ`$hb<2-%
zT=vrbAM<uYv?I~PLKg33xX=9WR$rb~wwRRo_ffF8UCQUZ9*#zQq2Pui*jH5D&?jO<
z{uYFo$Yo3Y7u0Lal7NX!9#NG`)L9=O`X!bc9S@lT)p4*7XUnXSQikX=^E#yZ(EjD!
z{rC`l_}<O)O|!h%D!0!uq$5KH+JhY4rpDZRnSR5W0)7_g$Bl<{Rm)C`=nb4=_>S@W
zt8HzxyKyqSF|rzl*?Ai6J(xNcX48dwiyiZ5X71NNO`o41teN#X{i~&;+3v7SQuRb%
zk1Ydhni~Ax{g<!G%E4|m%Z9P{uLltt*DgD0C^Xn<zYVG}pG{V)GEPF`P1GfqN{+u=
zU^AN@$MZNP&ev*6gBL7e9=yFjv>qO!Z?oV5EjiV_T^-L7TJE!H@OpBqG8{l<HW}5t
zcz!rZ(eZv_UBYa$yW4(Yay*z0S;f0Za?^DD@q=-3DadNMF^SjHEk%lbdD^ma=<Z@S
zrNW?(jQhstRTL}NaedD6%Yu1X-`0<R2VKhVkjiChmdd57Nw!xrB_k!$bKx>9J>h9w
z&WH-FS2G&xjmmaW{9S<vB_AY43Z&DLYd~{G30lK`NW7mut)@FniW_fqhrIhDm4f5r
zl;L^JXt_|$Sdi{!_VF(M!(Rc4iqj_*!wiKA8lEG+oi*2XuG!Vzk7&Np(fp#HG-~d(
zu}5c`^UC{A9O?R0N=0aGL!q@zM>8Eiflb<ZejsFsqmYRdSEw?kodPy5(ek*9JjFs^
zz1G5%)A8Vw@mRXSas6iG2l~|!wnZAW1g#atuc?3mcjpa+^9m|P8=Q|8$T+UkURTW4
z8IRPKJMP{x{Sm18(IK3n+Dspngx#-xs7Uoi;!6b~;twCyt)`<xI@lRdD;Eb_6c}z3
zQRNE5Tplg5bB~G<dZLwLI&L?ev@#QV-Db_ZpR|m;JgvSYfuuP)JRZ;b#KTI|Yl<3f
zR@_TIG@1RNx|lPFB9kgh`^!y;AnqXTlncpTCxA>*Ncf&_K|)=ZV|*_x8kRL*_GeFQ
zs(LUqu)384eU_b9J?~8Li)%hjETuZBYo9y^BH#{V>Uik!K3y_jOv&)6**e!PJHcrO
zI@Jgs0FG%@+H~xu;Ur1?;(^6#7Oz%CE(32lT`0HqzB~tA&U~iWG?~p(zqDb;%)SS`
zYq-*AD7#W)Z1tq=h1X6;5hl=n3?DVLx_dE&WuNq7-Xue<BWcbNraHLBhU2i9*$=ak
zi)3g<^xuKrXNj1>Vy?Vc34?LOk%I#FDX!*KQKmlGc#c?9`6K(P2eT&q!C*40c`-Z9
z(Vpkc@+|k`Y1hsz5#&HYh8K<+%gqm-n<WFcn`6KWHBDP=;Bc2Q)S}r!|EyN{p~#}E
z1dj$NGSIY{nnep_G6=lVnT$dkp6_vofx8wxGigp{=0fl^I<4H2_6w#30f$K3r@F{H
zYlo*7zzPg*4df#_{A6kuW%!<0m@VeM=;3%9oo`ti=v%j3jB+`#3w0xhhD<o_B$*_p
zSmCUjz|DH!88z}~*Aov60@gHxQjH~=)V3d~VO;4n=!;}!8Al0%4dI7xaynYb)AWiJ
zGEev;g~n6)xLqA4sdof_HN2kH@$Pvfr;yN?_6$#-H%_s%5UW`2r8H|u+M$3%!=DdN
z%zEW={c|2R>^z_a*nMujMvLQ25FT;VsF8m9*LbCG@;wgwlRY%*)%|P4$)%PpS2Jve
z)4)z?>)U!vwbVH+m{Pc_`%`8jq)2rUZ(L5v)IrdsH$_2`{)pr{<^XxG+E|`6Uq}n#
zG*<(Gw_C8qx=Kyv3)x>a$hHr^w(Kk(S6oTm%HVW~#_Y`f7ZvRg6w@aKz1Idf#j2~V
zo}F4QQ=Igu!csc92p}kG9k07Q*PG=tCs4LYV;00|bsDE*@`#KduJvNJ`pL?}0?DZj
z7URaw>Eol_`&|@LQGa5jQ?uwliZT9D5XaT@)Nof6Px57%0kTseN5nPQ*<r}5k2G$9
zex#vH+^I1%-J>tS5&W5P0xn_UQukE5XcbmWk_Drge0%zODqpJVVFmCc2v<`B?u%jO
zS{~sbTJ0!FL{WlfTrGHSK7%stmd>bBzj@0wJnX!!1K;xGZz!eUY;BL{VXo@|m=-+V
z&vz!wZkM0B-j?sCyIZ;7QLxz+1HqSjX|()-vS}+;A~rwEf^+#jfo12*^G(~=0rRq!
zuQrjN>sGxMzYehGDG&xSv;jG8M1p=>O890gPG*5+fIDVCcbCA2cz1NSlV-|2%r1q^
z(kv{4%h^gVXy6kcY4a%OA<a<q9Xf&MrJT^Cx=HZ*(kwKd&F8Esh_b~_!MF9z>VNtD
zXP7Nezj#)y{Vv@)cJrO_#sGbAnB!5+3tQciT^IuW8k6HuV~_@GS?j%eJwc5x@=uE>
zp7V<a%K%zJmo*;-@hF1jt}999Q^hqX<cG%#delI9-IrK038AtmAd8B&=Eg|>S&c^H
z_*@??E)K-2_QF{|@-h?8%8B8lV+5)mgzIgN!qlM|dERe1Q$4JN!c=q@^kK1X;imQD
zC4_Wr7#zp#w!cEE&ZgDN^dOy~6}>Hh1(EwV!DRV=Xu8`;S+sO8Hko`TX4YS>8sjxz
zq-#}`<Y{s~v4WE2)?z$ZcW;tMG6@NsZ)(oHn6fD~=nZGw&G2rWciD_EsBec9z=~OR
zyl>hpx0uKdcv5Y0vb-qsexlwQ6%}RDgDJz>UEg?IKv-!zEN!A|7E1><mPmL8$J)B%
zNA{8i*UxgHxzP)34DOE;wL~-N_M`6w7VngXj?elC*{4&?-49FZUdLS!SS;rIy+#Oa
zAQ0gyvJ3kw^7N2I$7LZUvzS_xp)%^E^;u*O1)2ynJNsO4X7;s}XF0PJqj-d{r<97(
zI&NTnS1GHtwM$_&$54~frljN>#Io8s=znW;Og4;kh5RMTa;o4(-(`YWrp4_FzDvO9
zcRH9S{v5OgOMyq|Ay$Ue{E84sIDb!dGguH<P&KsY<Jklhd4WR>aqC^XkKfO6o935O
z$oL-A`t6;R5lbJU_~AF^m~V$tEC_8+P+n5k`WakGLD}SOHJDlsF;69Y4?nBA^jClk
zWwVTle&!azL@w^QQ*Z{ggv5K>PF6wi&ARzaloEz>Ozx`~fopEWyN|dzwwt}m4$TKe
z-#eS7qjN3S7O?%pJK^SPSWod<epU{3a_<-8*$*=cnB3LqVQ{R=h4s76=>;VjMDfgo
zc9dGy*sOOZvZaCeO~uGU&oU?x`fOJksyj~IdQ)mG7i*Q91E6zKPY-x5$A!8$E0<wU
z88Q(9gG$0GI88?JQZTYS*V>y+lFg%bi>-%2Hr*&<b5eMOCu@ev)9yor@3+H_2O^X9
zdArrQzqpPfzTZOjQ<VsU#7B`xphIXqe4PXw2db%!FEW2CKDd2S(accrD-0`UW3}e*
z1;V*3c81jkVgnvHq=(v5dhpqoVm1bg)v7F>@2?KUb~x_$auB@bL{lqbNKfjTkj>H<
z(aIPurYsuw$x+SVUgbai+Pdi1KBQ6HBzW5ly6vC&!y8DL*hxxo5jyUH(h)T&l1aUG
z_+m%sXSA#aGDtf?T9Kx{&ZTb2whuq+!;q}YhBfD=`npjt*1rD|&<J<C$f0s!2-T<X
zdAAPXR7uA7V%qdY;9~CR!SE5}V0E3NjHeQ#ZlZJ9ZU}2oaC@f7O1S%$znY8Ud;XLl
ziBa?N{IKXKTrWZ2G9CD?9Cz{&`W4^LuG96d5uj4T`s!Q9pie-Wo=W-iK!Bv%X!q!#
zS*2_ErTFbfKa&ce1aUz@HW^JdwU<igo^KDAMNIVuLYIE%6_jl$sOxr9M3w1Q=zh84
z(KmSN;Mfn>s-Ad<_jIb^Dtkran*&6>fsw%gv&)L>?!3v_X%|vmc*81687KfW)N890
z_*ZkO2nq2X`@Wsk>&&6QTl1OKT)80Lb0oQW6WN;@lv5E!HZ(S5GMzCb@m!>I5!Gh)
z<0Bgx>&s)2@(3<d5{sYHAF+`ioBVTOpS5Yew=|mM4I0X3A`D#D#T2HgmYTx>=a@w8
z9R%T(qc2r@z1&Vg5~G2rBx-YA#TROoh0Us!8gmt{80<s%fg2I^T0NNf;6V5bLOw5#
zmEN^B!a(pdRJqxZYP?rbD*7wNW|-P8dRVV8<Q9R?PV#@H+U!#C@M&|d5y}0iCPAYn
z+w8VO<7{*0UJnV&_ar>ANIKVX@$}wd7WQNwXo#A$dNXv7fWsHj5U7`}8^Dyd%NAFA
zFNy_$N#*PA>(Vh$TzG?FRA;rkK;Y}dI12vnqV!j%?z2P|9Y;{(@`0gvIDp{;X4_B(
zC7OVTYl?Mi(z5U-FUY>HW07buF?t<nS|S$Et1Q<$Mb=G>iJlL>Z*}P>O?P9{fBpS|
zK0i@hjvIEn#-ZU+WDNbePK5~HeiXy@+Vd0Mr#ioeg8;WV(S9%tU;Cp|`pESHl#wVq
z#Mhrl9`*||!Y{n8TIjeO5768q$wOtrRB}PFNyF3FX+x4s0gQ}as(>PNxun-03x@r<
z3YFD%KHdEon;e(h#b)m*1S|y8)FUNJtI266D~RCDg>VV?)wF^W)4OXFC-9tC$<fFm
z;p2){)iEdUeukC%69hBq43mkLF=J{Z7=TdQk>HRs0>^@@{Q28qB0k6504-46VaPKI
z6U3NdC&sPQtd?^CVaTp}BKp;e;F>dNi~InRvKVpycsFrL#h*9R@=%Zv`HgTE(q!JZ
z%fISxWC<dQfCVTxj0IVUQav2^j{)B5<+=isvXEY|%|s3B&LM$R_xqc(Nnpd<8SM0K
zg$5q!!WmDP1tqmqnuQ|6j<uiUTKf-cP2c^il!|^2ZX6(k*4s{x9@V2biL%Ky<&yb)
zR-Nt%aeRXYjwCZKEE=w0V%>U|ufh88Gmf6_A-zP;SGVWJt_SW1cAVFH@L5b(twhL4
z##BE1Mc3W5t}Uy06kMz3vt9@i+C?PJJ))^xagZ`7Sts&>fIQ#4vNjIxT>u58tz#Oa
z0Qzg|PI2KRKI~*rPlI$My2QpBhOrk#vpv}DW)xrXja_APa5hYhmnv1a0VaFGDPn7Z
zb#`T_oAm_a+UPvyEeOA?aM5&j1?a=C(`^_{VW$FYB${=EPc|dDMsIJ-<f6Vk{$)Ga
z7?`bGSqaT5M0}?j1ci+-vXpg<vdDa?6iCLZRz@p`NTAH7>Cd>?s2ZX>igU}~fZ7aC
zG~QRw;BD!mu`1N6Cmum3XB9H+tuh9-uOcqFKFb-thHE3(t5&$V&c(-uUf-pd;m%L;
zj}UH`)ZPNL2n6T)Y5DGS)XJqF*u$hwnpsqeKcugQSUs{mFa{>s3?|WcHd@j=v9u;0
zy8GX|vM+ohO-Vx*FQr{eNU&Ijjm;H!TcS)$&pmlHt79#)ddtx+xu=v^w?kdltdAtV
zTTPAB!JPCyhS_V>=W9nZ7*^WwnPUZ)uQ#0`c-q|Yqn68?$?`NeOygCrhY~447g!25
zQf>_6?&-WVkz2^;L=UI#U=%jot1}*>xGzdTt~!Av@)xniA)zJc@*mK3NG6m3im<V|
zM?~IRU9OHfSc=r>SXr&qD<uH+`*%Se9R_J9UucvKfz!cKD8qAw#--O2O9s`2x@K89
ztIc!d==$=6)OqMveyA;(xPF^#URrau+zI(o%m6xT_i<gpYKFN3X>}Jw+z&H|1|sXb
z;NPy0$n7i42hN3=z^zcR_=-i~7*$CnG4)8dc1Vo9-%Yg)w%*m=AeX#l_>%oa^beB{
zvVi+fc6Lv0aQH0Lm@n#^a=m4O{J1M6KCHS5U@=B~BzX4~yIMF4%ycvFga!bke?H_)
z9SHgq_}+HH>%%&sql4?q<AqEWU@YuTD~6vL_Vw2b=6)e(bW!hMkv=}lGjc|zk%2y*
z@jCjJ@_{P>J%ojOAQNg$O7LMQN9e?}t!UH8Jdj`Y6LYDRE}+g7A!SluCuSmay~67A
z5sko^9~<L+D9(!GMyEb#*<K}Vjm{XXm=f>ev6mT_o2;|eq5e$h{dndi$f5Gu_Z|RK
zEFV8DwEAC>e66~0a@w!{jTHUHL_bIqQBZ(#7;ih_=;xSoV!Y3KFc)7}zEn=;h&fZM
z#s+J9uW~`e+<YrYue}?v2i{ea!MN#cm+S<V%>pC|0ghC7`X7qLayfy<CoMN`B0Z(C
z;-WnyKgJ;7vL8!P-^<TfH90c8dW~n`!nmGl)kJ$j7Mc{k9Q~nLF0^VrJ;Gid`wu6O
z{R&&ZenyvWrl<vry9POa8^bFd-gU?{xaZ<%8Erb1-}BaXgC1mkcb67KeWwY(m>Avx
z%^AMGbY(Dky+1`E$;K2sFVRqt=9G-U+#U)3>h+wHNFwD3x}Yz|BG7^^nfZ`4r!vkb
zG0%Ff+mmF?V#ZQPr|wna@F`o~94~hreJgGsOwx&5#Av$|Vp<!J&_FX_Vr%m{yW8Ny
zyjrna>8o}GorUrlH)b^S)vF+z?o+ONkyQ&dGrF1gM-v<WoT~_Qe~#g&F`48_`YZJZ
z^B+K-FEPr?=orgK6253NES}W{jzhV`q&v<eDHrE<NDMP$mcf<9KOEz#Wv*PFZmv(Z
zxU+LHpM_AQ>rRdL_oQ^yIj^|Rz72bDT(rDnhJUzIEtuf6+j{DNBx2rh4#+tBxJEx1
zJmxf`W)jqtO5{F3hN%$+(vLgaZEFq)@k8g<r6e76nm0<|=WnGjOIUWgp5OKF0(zB6
z#6Q3cN@9rJRIcvJpA9O5Vokh>w})Xc0`ImVp2dT2>-z}Y=W2VPFg10p8n(YCl1Ovz
zzqMcUfeu{c1pp13G<2^fM$s;0r*^`FC}j8jyo80P#|s|heV3jg^b}6VBCSSm$+azi
zSx&z+=YqwkHMcGV_PHn*XP{uw;SiGTf{{C2vL8!&etOVA(juSKhjAwt<$6=5yPyw$
zxLbdgl|umEsdBrH>7h3bn}D~7WVCi*2NcJNqiI}CQN0=d!-R|h3DjAX8!dK8Xd@w&
zDq4<8SoU+U-7qEJy02b<plA6IdQF~oAstT0>)|3<{|*o0H6q@p#nkEn<X%te!4{D|
zA1<rr_7lP!%0m}Adp?E^T#M6KDGc`nrxP`kH1z70lPXXH5AbaRC(O^rgyjx$oBs-3
zvgxo}#j-;pSy`(<BSfS;<CSkbl6<}0>DojjJ;@=Ko2Q3uG%WiFblHhrh+Hi2ptZ2-
z;k}2AF#6ZpuXND*kF^`${Dff}|FA8x3Dh*KzkmxtB<R7@md`nZp$olmE9H7B3v;?a
z4^crMX$7O}asTnl8%`<fx#*ittPJIhKVaib8c?BJOW-%9CgnjTL#KO-xkN^TVp$0_
z7kH-F?Yso-$|0|(`+&|2t{GhG=5^&GyZg)ie1Il%N^^qJ3q#(6;j$TK?DJo#etRk+
z(amVm3Qe(yr5%M8CL3%c-r&zb#QiF}g75u&xn7qhqaM%R+Evgla}54UU2s>o_V!#-
zWWPXvj;HAIC-e0PaSm`{4f5Ls0RQf~?}p2PnWW=JC%FPDCd+h}4cNt6{Yt84&a{b@
zP|R{z1(8pX&HN~~*ridkwAm-bL3pU?eE4^CrF7}zR=x{BEFD4D*+Ugrz?Aq^ty4^$
zGj|dY6OuMV__kS#G}Jwsr%G~PMI{__664#z=%zzLs<e?3%c*H5FpqIhy=m?qH?m`d
ztqJ*L+Vt1S>_#m_lPp5tw8BO|WMz|>f9MY5zu3`uO)r_Eu@0gS0$^*h%eN7nueiBR
zABjq-NvK!Ip5Y`F(<{pnd>Tc<F!J@f0&6)hc193JJ!=~dil|Exp!6@$Rp8-TTn7cy
zlzwB)08Uu$c2&frFy9-2t06O@NG+^Eq|w!Z^5{{f)`ke9;Lv;?)W65ArG?Y1kmUa^
zrXf;;GfAV?0-O97ihvN8tsh+Ig+)<Ie11<1Ifr3g*7n?pJ~Ai$gdAbYzV5RxBi!S)
z3YT#0ml7ZExsTPk>kkXEXriLZxTrT;MdEuzCT*=e0)QmuAVM#W?@;if(}X!C81x<_
zEK}kuK<@|Py8PND0|+rY+X*_gDQ*DdZ%}luceyw5E{Kjl+60x!BnaP0)dxlOl;WAb
z*K>nB)!tRr*v;Bj=KYuncaZ{$+|y=$BO+mEq^;BxAQVefM95l+YD$&HmNPY<F2t@;
zTl|ZO%G5+I)Fc@773Io;`jp8uk3oQ7A<=g#Pu2`>JE^+k`(fyAeZ5^6$0h9aW=ck(
zWL$DHEz8}8sN3hyswfStZ3HI#+q02GZUAmqgO2Cb53G)mRn-Ik&xhSYm|Qa^5xe9B
z-_P{XwM$4v!x`W(>8b}dDTupLP=r*&F-_+q>!{9TO}lQ72xi{J%~iRuaSAawTs>}t
z`Q`+i_B&qnbxn^Q4t_8SAqu&n%z{yM?sb&}`a?~J2@xv=!(s*UJVD{Bi&(wq$2;TG
zwGO=%N^+My5}FMkys?yX<UrV$HDUEP7hM8G=lNzZJ)@ueL<0sI0lc;Aq8*NFkg26E
z^~3NL9bJ_AK^VJ3BMI$YeOuBv?K5Y&%%89nP#7UgWoo)ii)JL({t1ntec@L-FQh$a
zFr?;#z!q8wX$id*3n~Py!w7sHPwY=-x3&seWfu1C4aW|N&1*?xKmzh~<p!27arP&*
zib#B}g-9ccVr`&_)3fj*&&L7Uzs{mgjF~M*U#HG)6fT&mav(yf`d}d)T4005NI0wf
zS@rOdV{^h;ToUfjoO32CN+@rXvzdk#om{8C)=?K-{K-e3!frW)tG@_W)BU@qBZ43k
z_<UR0dPfZTCJZQUQlxxle)whWhf`67VVoT8%b+SJ7VN0#cq-*8bPCP6!eV~QtRMEL
z=KtIS;Di(YB(x7_lu|#wS5w|#^u_+2)81kO2-OD9Cq?%^(Rg|C@jQuy^49^dHF}+I
znm0C1QK8v+n+4Q*nQYehas6)ha-!IpjvK$1P_5UNw%#A;f3H0*(HHve`xoh!DG9LN
z8szk0RDS}+(bSMjTY5uZX@?fJj2i5Y_h+gAt|?zSjgt*`ozSiahL+Le_LQNQ{>pfx
z9!O!Bhwt`QsFa(jH2;EO2JwK^8Xd<L3jUci8iYS5mIFc9wnBO@UV=OJhht6z8xvh>
z$KFIv92u>`18`osgj`@DH6Yc=$+*tCLBDvy(3<qdx={48H<*8N**;8S{Ba>)8YHsc
z{2OPUC(az`9vrQal>$zkBr<M&KEq#ZF@FP@Y{OD|lJvh%(_bg^Z``AuKR|usHOLm_
z{}nF(`i$Q&A^#m2QC97vwnp0DtDQd~#6Jc_A_EcuQp}G({$6(e2O&?{22jyoSIxgO
z|AX3~9|d5(?Y9KKCI4x}|GwBx0M>o(Zs}<J-|zi-=e;1H5Qx;IR8shBi~iFJnUB9b
z!K<uf^dIa*B=$>55d)WJ_U8fpPa}PXiPr(vJ#<p@BkAuB{2$}CU;qz!Z<nPg^>2Uv
zbA$i9@Hv+N)_vDf%gOu?gYbv}A%z%Se9`az{LlXC?-#OOfJ}t8ZC2Uj@8Ra}BY^8@
zQeabd`UB)y|2iLk^N`;L8>9!;y?wKAF#Mke{M*p~FP*6{ne<BWKUYM>;q&9WijoZk
zr{}*d<8v;_Pf)XccW|)uPb>2U+$FVMvMBc-+}xEMaC2@Qt+am-i||YTa&u6E_?Lfj
z^RZuUzWe>V{Xe-m>@PRpVEPvOr@#L9#r7|;(Yc4Cqt$=E_vfAW0)V?nYmzI;|AU)z
zg8(;AFDo7WZ%s|6AWETp-p2q=owVX#=830(P#T&V*wg$!44RpZ@@YKN=RH71OD@)0
zj^v8R4FfG~EV2N=q9J$##1%8Zin4h>U8!_dFA)DLLC9AAG6#({{(n!+4_PUy8%A5p
z&=rKles%Dp%E)T2oY-{!N0AcqND6zMchgaAO2bAd^)S%s#;`>Ffse++`+UUbbO^q~
z(5W;u9l%o)`!hLFUI28zw$jd_YK@t8+XWz@2yH1%v8W9BC4W$B^J;MgDA3`Jp0F^F
zVSJ~#j-S<2(zU5TgWK`=bh9c#S5*%2OA|3us%1WwQ(kT4>AgMpWdvY~i~x>AU)%Fa
z>EdFHFX4(R#j<w3*R7@H@q8$sK_IVQCUCdFXy_|8VW5c~P;F!H(wBtuxL>otC<05b
zxC1cbFinJ3T(_$OqoE`QJ>Mh%8;%)L1kV#9!kw*r3-oqhsFJ*29#)O}@SRy!y<b`y
zevxlK=d0iX`kcuL>a`jjD(;ZY?MFg4ANX)*`DQtaS^*z03gcf%k(w`xGgIh=9mo2F
z&9Y|-R;<}jDQu>J(?=5nniBZEkCWt|%cq;1t^cK40U!@t?P&(c9HsBdzxaf~aD1+r
z(gH0PV(iHGJ6I36A1Z-uo#X}>jDRgl5BA-4|Akp?_mN`NitJNK(|p|zKYgGHKB?DP
zSr)03S>0;&AO|GSsOj_GuDxQm-RPFbM3~~HP4O7xxncR0i?zfY>H)fi>0N&Jd3(C~
zM6nvP`$;4=bG~8&yTx?>lIz$qcE$@p)Jwj2i5aH0u`rQz<Jq)>Uynl*dXztns<wK#
z#uQa<f7MtxdHW`b*(B0`fn<Vad03?7E7?=Hf{ySns58;Lw4v9jGfy!3;c`a9niUWY
zq>PL`ECYpf^2ZsbxO|S*moT@dA$U9`VMt*j6IcM{TWs}ow+9+(QNg|x<Ne9Jodg{(
zM*8N{>?DBHH01O)*zAoMcAV8RVgCVe$DvUGJsJd5>(-BkJHBwEb@UvJxNvt29=DD=
zz&l~$jsOh(S{uz0zOOT1@@_yAC|R9&4puV-UP(m}@N{0X1gD+J4@NPi!#6LDr1SJ0
zeXMT=L@2|exRz*N#ab!SU6}OToEW%`_r@=Vf!e_QVEP-Vb!|O@*?Ps}0$?E_cNz2e
zu>o$2-^Wr8m-l|pfEjSuM6DzO=6qz&-wBse1+sS4%iVq>gd({xL>}1!#p-6x0BH))
z=&aQp!CnBJvdPt>=ZTm%&v)nnJ3Y_)OIV(#jj+JYUR-O7UyKvA*DCOxJ5KJKZw-y^
z?MpSGp=0i!S6`ko-alPVl~CYjpqNVxu|Zl6e4%DKaiRYv{a|rEP~%RXvRhgin!zv5
zw;4Xz-g>(c7B8YM<}=E9j=~9E!9MG+&NFoU(G190vgyAt)~2&w1i=`_1N}8tK^d%#
z9Y9ZDVAZ&vpDXkLEMq+J-0Vk@(VkWmrWyNcvzlaMp+TRuy?*iHsDxpGG`>()+|i<S
zTUyp=h;KarJ?}8~MbO8o3Io~{CLTXxO`z3DxC0~u%j<7w7OPDS*cL6S5|04FP)0th
z)^v*8i9_nq_8lan<HZO&T(e3k3xG!|GHjjJBv$5}cfY;eePwj39B**H{YmRzp*8an
zx!wF6s4o${g<J&;9H6xY95k82<5ne`lWuW2Y%-4$hkMJ7#m)dqp*9O?56kQMZg+Wy
zsp;)ou&$=Gju1pcPS;=Z6xVgF;ECskHD5U2+U_*to#7-pi6os3gr#azg{gX5gGE!V
z9cny9<O1IqQnBPIX|53`DjWK?%SnkmdB^k&uONJ7sy@0BKRQ4*u|h2X!*KzqL=v;z
zroPU&?$rbMk2vq9hqJ*qf39GX9l=|M1(I1B%(fT%h>8Ph!1U+8AXq8rsZp*vW>V25
zv}PC0L<Wt%$R^CW*~Y8uYcl%976<pEAIu&dmq>1VSwV>ab2_~mZ?jwmqR$>Z4aH{K
zN?q%5h+b6GbsZOgMxX1A;<AlTykZ_ay}p7{iEJ|-!RZ=T*qspOc@2-H%lq;eRt$ed
z6=5Kn)>QkuJc>tvcvMEgoq0M&A^1$3att-~BUX-3C<u}D>TtF$WzQvz+ttp;fzGpW
zC;$#q-G_GBBQJ*F#6Tz4s2YV-cf;UrL)`It-ehsr!E08A_s(!pKm*5dbSp7<3}&yv
z80P)WvU3Ky`5DA6x3=r{7fr5+)RL2jlQ!$yxDb9@lyPQlO~Z?!ksl{7kIduAzw#d1
z+vp0}AvjRi+GdM190AE4MzaAW>2n^jYw28zb<5RPbeJ=mJQI%~eDxsuPr2Pq`Q9(2
zBLL%%nZkJ6ZIRFlvyXb3EtoTZ)43jCGbP3DDE{-ja)=IrZ!_y0kWU0;sNDgMq0f5)
z=&BeqmV*FXtAJ)25zD4{B+!}e?lltcyjw?kj9Z=gEZw@J>6EdUbARGCfRR`Lc-%~)
zrN^4cY|GE{r1j{R``PW@039OU)%BoVcfE2iAkM~Ce`bu|`Bspvllw@pW<gNJPgea~
z$xK86JC5CNjn^wX0x0B2<vn_sBVF7jLj{9KI*$Rh+0QL1GS`hq(arUN)eP@vQyx``
z^IJSP<5A@5v$d@}ww1*FhZr$}3JBVVPcla>H!C}UWGg}@`O8@Fez?cRLVF-q!#>t}
zO6`IfHSP-4GHlAHz6rW5-VXD`#NKaMH>ha~@D~{XOF5%IC?5sv!D_18!MA+(o8#+y
z<k+IO5xYeIz#@*+aD3uu-0=t{K4oY?p?&tazCEO)#&E2%0c+pJB&Q{}qE_k2Tb;E3
zDQh$ICc1E!Yq8H^`^%2~&x7cLSohT3bd+$Lk2hQtKQ@K)s0U1zoOeQsB(g1&b|e(F
zP0ytjDQZDGK@VWyX(wluhIx0(3HvA6n|;9;2Qnr$;=CHix9Xw%uD_fhY?nM82M}0g
zrqQy3I9l9K%ymc-n>RY3nKQySfe-~3AWl)dV$*e%4`h738bH|vdN;i>a9{zHFv_1D
z^eup5NZ(&woBUS7uo;pJRGOrRtv82lilW4bqYi%~L)Ke7Bx7JPnJeCbX<%?@v{id?
z4pKtm4sxBaxdv203)n$-Kgk(wAC_V<Sy#0^Y$YitE1w#6)0r17>q<-knTXU*Sfdy3
z4BY1Cq{&5MsU+?1+TAV%EUjyl!2KtqpNToiW)Ifb1oJ3IS19%4HAyNbieEGg*GY5L
z2rnRK`%rQ050Yl^hwG$kxs<0ytXe72V8<Q%;&|XwS8CmyNdQm_Z22u0&qjP3OpfGi
z@ARPMSqIyN<^pI14Ru9NI>Rr!4||ZmBG)e8iETdta+47t6yx_+9!-B!2$u~z9kJ#X
z+y<0Z*h>D(k-=|XzWYsZoQY~|mg@%dn0k=%FskQlz%mDcb=mGy<{Px?w0Q+yqxEt_
z0zghVF<#;sUQYN#j@Y8(3jhipnF#6M9T8nCyq;x@q3pNVljPiv+#lQ$$?$Lx#Qc#O
zErbP0-YdZ3`gAoLrfxBKhYOVkn?vBrVS10<Ho{N<t#4<G9SL9k@_5+A?ALb)s6|Xl
zTdvjJ_g<b(yxFd+zeBH&xQGJXzFCHA-Lj5dl<v|dxA!O|s1LMI02HUrDP3eYhXB26
z#zof|(eY-3cO7*Sefk|71#-AEB6-Uu9y6nUEK_H@GuwLWI$nmy`9S-(4V~*HnD09~
z>uVfFSMPh{JOBs@14^GG?W5cdv%j|<!Nd}-M?%-o3-6A5xHFc&hNzaV-0H5JW51z>
zE#Ia?sorP|`7&ptM`^0VMbl-{`Hp8IqS8+Qyo+>waWdKr7uh2XFBjtW!y@*0^YDDK
zSXXugb0Nfa+HAA(c-{RHx#%1BcyZE|%{!ELw!AA%ySysGg1R6y*GK4W;r%@k{)eY^
z&OQKkBlVoqG;x~0gFp}9-<FiQ1ZJo}cu|ny>2Y(+*N`sLeo&2Z+MhJ)7#`l79MS%C
zPhE;-tV6EZ$?0gexMFiNPwPBygjr|Sq66s9hEADRaGGt5hLH20L_2{<0h;3Hx*Ycy
zn|6rYZ)=Vnd$Q?Cr~uR)K`EaYZV7suKXXiQNTL;Yw@F?fI=lE_76U>j-c!i;BhOmi
zPY7Pu;WHAOiP%btNx$pZkN#lzUB@?xnBM`FVC(qi#=HRD$M99{mz$L@+t>5LwlBy|
zIm2VPUyK2=21*!wkXR>2G-6l;Q_GOTB7};|3-^i_0Nw>-Fp$Op;Q~PoYDNOb(<s)m
zU%6^x1TH(>B^sGk3B7cqz2i_}<q~h*<&*`WO1u`~*3KnENOuKTlHx1XtBdmELBVLw
zokRougRRL%7B9EDC^Gt-Gm^~3sJ;t;bp(YjSaC@R`*b1kai1rq_9dC5n^L^GxG-#t
z6nmRq!vT5ubAIa9vQ~0v_=`tyLW}ziqRzEei>q<HRjWz8cZvA!!jEVB{qsKh&5On{
ztNnrk%Lp4ZGEHK5;=&Ba8MXDN{oM$4ipxa$NfH7Rs>zL(UjNY64?~Q4K1AZFrq0q<
z`v+URO?ivQ^vl4PxIv$_ANKDaRcOfD{j^D#;&@Z)+y8aXvu{iY3zNLx?j~e0h~FC!
z@AP<JilvoFWJDO*@@y{UI8f?I(xrtoc;It6g+I1R)C^0yKKumn40$Ch&S<6G(HZe#
z06CfP26A<C33}gS)%Ze<uH=MwlrL^o<Yi%;ZnM>%gw{yE=Za?cOX&-VtSyY<$fe?b
zg;C+--7XRWWTS!w<7IKKK5!-z($@SE0$(0?$-APPEN~+-OsBjMxkVNOMW*)7dGs}a
zZo_?D(-$bT`yK(AL~j7a8XTU0>ry?tRxAna4Iunx;G>VSniKi1OTsW5MT$utuKFGj
z$Q^~Dbxki+o0{|3YE=SyqVC}gzEw~7gj6`8>(mMR;F}JhA3E~awcy*!d<EyS;RVzc
zK4O#mbSd~aH|?)(G{Bt?rcHOgm$g>5qz^PZXc`Abp!kvu0{E&UmqnQ8Jh$<5MfLCY
zmZ%Qqmj2j9Ip56xhb_p6@!T(|By8#zmBv*ZYk)kIHmbu7hQhv3XKfvzuI+&QnXc()
zWv<e?^8>(*Aq*KLlBZY0pnXfcXeXo1b}SMVD+PVVB1x8B5$<b;+l^O{hV4Ps-U2Er
zdw05O&readtuE8Vx;@Tw@^qbV0-=8bVrr8v3=VpRCejW*K?~w*y=tX;=+j0KmR&MX
z7KQ*$+4e7S(<P^9c$Xhsj?{p#&UDgxTC?V+h;Z83G@uKMvS`eHwiiUyL;l1pzY3`9
zF>2-nFUHbYhw!Rjz{RKX+*ZkG-|AD0T@wdwMOkfnZQ@Lb1~O_NEfJEL!elLlY3jh!
zI~{aKYaa-Ex<r2CI)Qhvd0X`giF@45KJK-Q^zoS@r*!t<R_ojJ>hHKGpz4$}!ELU<
z2YmX8jq(kz$UAL-I>fNvaiJIEzSj~%B9?grr_os>AlX^(jV<2qxb+ZWl5#`;vRufK
z*prZSWRiMP7DnGX=S6?^6#p%V@2-FB=8P;sQ@>^Esoddg7v-vf=6r{1rN!GGX?$SF
zwbA{v6ZjaaX+1k?M6u0o%7{tQNz~;1@zAC7gsrYP7Hs$lfdg^t)VN%^1>aDu>=Vf6
zjVO^p7KSvpKOjt%0A!XKm8xM0VDywMPROR7>nw{u3ncFtMGGyL>g9%s0r^AbDRYDk
z4yQ-RRInXA<Yl{&P+^Zox3{TXdJ~9TvK#@5%6FDNBCu0C6zc%ZXtS>^!DbGV=f#UY
zkqgj_C*!b$o^Q;Evij?t0Y4<E<Ch_gV14FvJ~osF<lS5-*xI~RCKQnrf#t)|eU!iW
z#Uo6fhf3GsLIcy^;1$0WiVZ#FG-q19-DCQOQ~-K{iyj=(Gx6H`NFZ_fGLTW7>UlF<
zV_bpGr-YrBe#Rve*??CKnmxV2!KU#sBoJZ|66Hm6?v>Mow!{zQ&NSJf6AwMhSjE8}
zjhPyOPdB$9W8&nEnn5^L(@zxKm$D8VG@L=$Gii}15`;OP>_AHz4J8Sa5YX@QY3Rv^
zJ*kO&x^MpWY_sdAS_AkIh1!GNNhy0Vif*M|wa;m>$Xq_c;1xeVrBx2TCeDrw@`t%n
zAW3l-zs`Q+3z0reX6ho(6~z;HX1B_b6ZbhXVM=DqUVjfbwendQGCT`wSZPH5W|V_1
zzL=>O4!c^Rqfp0|@MRy4mHgRmn&<J=?p2n?7_+1_>#;e7HUiWs>TNj*Jx&F(OaMHw
zi~(Vc1|p5Q+4c#U!^&Nprs^u36ld~%Ffjw_O7Ak<emeABzc*kgjgAawPR;@t=$N7}
zA}e&oP`jsq=>u0cJ$9N1vf^z-vC=C;yxiw9j!YU@+8&smwEX?7$G9&fhwZnojULpT
zwt>bMJ%oQdJDo;wb%cFYpGWKsoFAai=JBn!>{E-m?!|pkC?=uZ6&c1_)yx^PG+$&}
zUHnQwbh9ZM^_>~wa>`vxk+e0*+PXPrm-y_sX|rpyay2UHut3Jhv#iDKHA4G~e}n{|
z%r6~Ml*`2AMZg^>;B;fJEwLUxijQ}p7b05^#pqIaqeOBuZl%LQ)fA5z_e%K>WyU<k
zT5}=gd;Ilrgx$A<`1w7i(#ShlE&`&i&#3H}KGA&a!|X-U@I3`jJ~3=sF<(7Oj|3OV
z(_rgh%GQQ4`<H7azXnfX5tO%nI2_!7!a*_|KACoUP_rWd)Kb-L-^LwF8*smdti2v`
zxtPDt%GFGXzNABJ%Sgaf+&Dc~L0cc8XEx*Us<%>1wy+SIqaM`BceJ^|vUJkPb=+Q`
zYlkV1W$||p=ln&_Lm^7_!Hsd;fL3Zl;H}Lm=r$~!HY3<E?zGQ#8|wiE&R~VO5SpM?
zZcH_sGry{(KEr@h0J*B7@CLTof{_#b&0%w9+(66C85cm&*G8`qRuqF;7VBBaDrml$
zG;@sQ(VUaN^?!KoGnjMiyu%9)8ghmovtvTq*l_tOaoAKw*%rpjwV@-%qmnzYQ}vTj
z;gAFnjiC+X%=iF5JyB-}-!--eWcY6{i;q@XQr@rogDl#;xJ{>AO>O$bo%aKq>OJgt
zcaRctgIWQxkyQddjw_IJ=EvY&?E+yMR=qs^_&4brq_An-FZT%IqE4Ykmrluen+Bwo
zS_`*<M!<w!!JFIWX4SiGoH`+-JCVOV1I@?bS>koZazmqNI2YnB4y*r30H!v}<GSM_
z@PiWF+HK{TS3PB1+lcsX+6;=!WnQI{bz5*xfLOtf(BP|_kW{7ZaH8Ly-@g!YereQG
zE^Sw0$seg}f^HO$`N{0d4$sKy+<ZCV;$g9_Kck^#cqo)7Z6ASrA&RcF$3_8p!Ic)-
zS8(E*ih$x*>vI8Sxa>;blkwR->srK>4`Idco4?xm1;+_@Z3odrg%*Jz4+p7Xz@ed7
zyV1tGQfT@s7{}J=!*fG}koHJ+T3<ZUmhA2T3%ox198-ofO})5~J3y_7vi5MpMdD?j
zmGNH1c{yjnrxZ-sNk`auG0Z?bE!9Re4OMFwKz%6o*Uv_sI>`lj)5|zMcH?Ttcs>5S
zee&q7ns7~MJmG5{yX6gGYV}5q&<*>TF<2Yx7Kx%8QYKa4L-_o;9GXtshN`pW!fAIY
zHm|_o4bpyWwFS?nWPYHmXdzmsHZoP;O}X@L>TMbkAE^*>t!*puuw;=khU>%XOSh?v
z;V%>^Tg%D4XpAW?fys>}=1fa)4z$1ww4A&4;y2C{e07Ftin&8Ge>#q#NFfwfgmU*n
z7+queXVsxo^g!eB%=S1owJ0UF^}d_lds}xz4kB-T+Q@+@zN>JiPF6ILLNeZTbJd1(
z5Pnz!b}K)&`j`GkLTR^RtVW;)xC!jy)TkQ`>)Sd9G52FC&ZqC)Hh&^nA$P;>1kJi`
z%99I~zed2>Lp17HJQZ4cqq7G<in>cPoqQPEi2(_vXus(Nqckvl&(Xb1NuxRH{U^**
z;p{-_x<Uzx(({M?S@vZ+t@m3JZ&CB)$v2`wJaqt-iA&A?#pC%bM}MV2J}{&Agry*2
zvv2ESs=;vq14h$JBgiuee&nWyXTkrGj9Djl2ZzL;C|A$Fn}qkBw<hKSi*?(RQ*MG)
zrNP_9T{sRHhT)Go@$N+P6@#6;FDscmDgCh_G$H4PjXXa%(Un_4rs91qDSOX7_A9W_
zA%hMl$lSPeEE<(3%$%wm+H75fx0<0B?~QXaQea}7(J5pv=yt*xm;$idK%*{VQilGM
zXWkU3c|$YT7JQq{3NO2SFBMrZA@oDenw&Y(ORh0dj}Fq~??n1kIe+i&K=*y;DDw}K
zq)6UUYo;87H(4{@=^yW##&$a$cj=Sv+QPgVJ2~5`u4o?mrW;`t-$JN?%zVDizG5d4
zEzXl;bU7VxqC`xu9&j73f+aW`Kl!mCF@fNdEB%aVsMog*mz<C$`Re82%=Qfz#zRP2
ziezB~RhKo`Bm-${YKox&kT@d;Q5z80BpW-1pq+kJyz1nCXl4O=tbPVUdZg~MJdfP~
zK`*!EoaWb^;Q__*y^L_*Vx4~f+#{X@oG<({-$7nE)&E1>TSry3w%x;updcXK-6|m6
z9TL(lE!`!Zo9+}Pq#LEXyQHPNOS-$ho8$33G2Y+v?>ELCjIC_;TI=p>UUSZ?2D>P;
z*Z)`Cj#Hse^g@d{4xxdQ*Dy&!A<60@fgg!5P+|oy)vVLt5o{moM(q>qhPR;}22_R~
zL!X@+)b0^+sZQZ1xOBK8H-Rwjsg<+{>X0QlK_`nPPW>$7(&$5Utp!p*l6lzc$1wQZ
zQGx0dpPc@90en-HC*7UpPsFhv9n#Sp)>LiMaj#YFF?Tt~S7<Tk>8%&CE<(N{pGO|M
zF?!>{mojG?S8ydvkWp-LS0+5Y>=F*=-hBOZUyECB0PO!pDx01k(J*V=Yf5PfjS|fs
zpx38M$1f@tPUB%Kr1K3G4Qfd(RM+<TdJoCOm<nu5jp7HmCcdF6@h)um1trK`mNxW5
zVwf&9B`bK>E>)$!cnt^f%fad^<z|uIu+Q2l<iD4wC+9X<X&?)hKg_L%^*wnCG;tko
zZkbcuV~F^ZV+rpif{AV}L>#)plf2;&9N<ElGt!IGP;{27zr4}p>@q)GNvk2Sl!xNI
zw%MD#)0Y_Ny4P8JHWO5iU~<r)=kz$3$U*!oAR@ov76zfVuOMxk$Q-#I4LDN1qAauk
zIW^sSV`m1MU@-}bcPnvA-DYopqtSgRAF4TooKao}Zg;{L@vX4Y9a_HUN@kMO7f5J6
z_g#9++Jn80Pxmuwz`5}4TF|tJ7!@?umYAqbb}N0`obwXkBiE;`+MNwc>!@@3i-N!-
zPW|c<2W6!`6&WwSI_N;W&>ec=<=~>eZWLbU9#K~We29@gC7IdH(Xc8Nb8Lv2I8AHr
zPiem|qBCP1(jCW9I>k;`HE<ILCkf0ZpX|k6=I0AvyFU)l*`|0kET5C^;zh+-)LMCc
z?!WL2HHB{LE=*=+Z{}imvoqTvqw{6J28n{tCXnfwQfY{gw}ynFSh}%YvRckoXGTX|
zn!JkMf8ChyDX4BoroHWpN(|W2v*SKQ+AdypY>zn;FkOCl-Fcmh=7>Uq78L8zx1iY5
z&nyLS6lo2qa}URjm7|)EvuBF2Q>z50T!K8aj+Wo;fe(!z`s$_a3-xd7j+^rCF)Is2
zns>PdCLZSoD~=3XiRqOFE2`nIRc3@!Ns)il%EFgx`*_X;R$ysZH}2XP%$@spvrZ~V
z<Cr%%ps{cok6tY2@|9rP>-bCXdC<;KN?pASgg+OXOqeg2A;f{J2+S<B5vXzFXuQ9B
zmfs1aUR>&4@nJXo_B++CKe?_{C2`M}!nrJ~@|bUsjaLR|tU{5S#usD~^Kw_ngwfI;
zXACXZ>jt6Cd{dyROM(>dE!>N_@?6Swm37nI15g=hq_gNi?-F3m?N*g3&TvNZoHPkt
z<uF?*e{bq&sZTz(c*7_^T3d4m=m@KSGS@4Q^9P7tdk2LG=UpIHrt8wm+6d&aJ=%CA
zQPD`QPWv9)5SV-vP5Xs<(Q(m--Uyc{vdCJOw<3|pZ%I^m+jb9eXH4@7c0$i@I#GQN
zYPSm|%t%SOjpuew6X9E*MLTc^-55Y4cJANNR?VUg=nqz2EUjxisSh$H62{5bG?#(!
zdDCeL?;LZ5-!gYp4E!R;%0nxmLrWVk!aGMM3%|(lnR8BK*cZ@YkhuMLW3S!3^p!ye
zx0U}b{T?DdY_((Jx#Otw^&#EL`ASwNQ)>f`fyd6T+}pz$Yt}`rE?3;H$H`;4+e0<B
zMk9;|7v#6_boI#Eq0ZpAxbw1=D#dLW0Y46l6d^6<MeK!99{)Ny-UT7K2Gk&$uEnUM
zN@-kG%>h2-sGDk>3;oP4xcUV}aWx7=9C=F9t*Vxun)^EFs0PK$?~BUkTZ+rj>wW#r
zQH~L}J?yt@yAf)qNf8>C!0RgEu2O&7?ViYaHHsDP{819ATqhU(0#Q4)A^O{TjIJ_`
zuM6%|cbcIaYmkA?vYpr*dz4%;=+{^i-NVQr*)mIv(Av@QdbswA>dLDHZxw_caC$<A
z-d(*BW!zOaH{zYM4!ByDxhOME-G@T2s_pz}k$6rb<H&=Sw;C=DcOts(uDd#ap2D{X
z1@dj7LFSnkEgMcN=`SC2EQMu^mKt^%IdqK|jFO`9?$>7}ATkU|8H(~JLDbf&zFAq}
z*sYgtZCzFtBRUl&>r}0b*z6hm%{Cx*gbT%CqRi)pdfuAPq;+&7M+b74y4arrm=DWR
zuMf9s9d@^Z;bKG054lv^2*j0dBHzL?%C(|JhtVHB(<!1Si95DQnhj)>Joyw(^5O8)
zYCe#;r8%O^#9{aP38h-t0WNxgAayG`L0w~w_=iix{hw(*O}&NZ+Y@xzQj1in7T$-9
z_!uvqr|li}(p8}?0jB^Zk8#ohGToY=vhDW~&t2aJFp;uHA0z@TF*p{2c#Ml-n`J@+
z&6)O=m9*7`avh%C>G{Y04B-~Z9%(A1^DX$6<1bqaQdP5w(ud+B!w&7pBF_+U6^Uun
zGl&!zc)joh{Bs(PpP!6W!!6xd_!ZQlcyc>}k@V4P6*gdYpZnQ>9vyEKyn2g$#|rMs
zl+Hl7{(SM_T00~=Y$x;ub<YXn3%S8KiD>vihC$B|>KR7lHUd47R~H19iP76Py25^g
z-sO9$%Pw!-jYv|Xo7fBTxmP-z!#`^(&NoKODRv=Dd;=6=lccBn7jHhlNQ#m>E<3nw
zu48QKmTN-7FRo5r184?y&%Ul27O`03Kv|;Y)H^z;wIu!$r%_Bc=JU3MU+jVTZkJ2_
zM+^6jD0i~ajiM2I41BB6RFH&RY_5^Q<96a9kLy!J-ycJ8BXx8i`5tTE3{2k7yTZ6`
zP0ENp-rD6>azpYw-DayMC5^p-rPZjW$F98a34^R{39K|@#iA5w`mi>p0`%yqP^pVw
z!h;+ZuqRlqFJsg#SpYEt0XLS){}dkWDK&mXEDvS0ZP(d(PAMTIoWiD0aVv}Y@AIe6
zBQ0a6-3zTegxF4nV3M%<Ux!>+e1|YID*?S%Z7)y`4r=4sZPHJFtoiZ2tEUZxqWdoC
z)+Vb7{X`gDBm~*&Gs!5d^gsqWk^<E{IraGf*FH0_dMJZ>-TI)AB?>)rW>$@fa}S(B
zxVMKIFX<vQ6YZ|Y^5x_|@FFPl>%y~uT4)QprFYPQUhJS(Y^9K;)3S>WGC^2#Oh?^?
z_Z65%3=|1`2|FWAFV0%>&W%UmGL#LSP(cGtm@&K;&~Mp^wB}L1Gu-oD0-cheOe07a
z&UCI)5v@gb&5@P6qWX=ADf59Pt+C~}wD`=T^eDKrNPe;AeV)UXw^Bd9Vt))+>j<!|
z*R(nm;*I>TBZ6jTd18M#^|=c?dvr-x`-^mYF4zcv-Z79KHg*$NtN%e++(38G&b5(f
zyTg**=Cv_tH6!Z0*g+JrQ4F}u{`=Hyq@Dv_l7(!xLe_4+7M#%!2_SX0WEp5FPVd=U
zd~GD&jUL-RN3?}ki6Ps}AxD8ZPkNm{91W~E(lf-%6=^x|vpyJ#AkqdL!z~2NsyD7k
zqvxetKBU|_c>BxIn%7ob85F3WTP4GU_wPSyqTS=dD#3XC1%=V+eU4cu=>rv~-#>um
z9DQM;-s+g<dg<w{E7g!q=_O6<x}$b>Q%F!X`AqUwSz<oIE}B=c7*MjQ`R|D$F37Aw
z0cl0@5*>yskT!U;>kLvzx%4qy67tBw$#ATV0+QYgum!mIu?w<DfwNkZBK}I~%6uwM
z!>093oWHF^bkg&DrS&1S#LcfSXCHi`64NB9oSpK<lxIXw<V%*t??G21^8uJiILH&W
zqlFGpG#Xjl;2a%o1n_>mzH}$Yq@ml!wh_HNMobG_sJGhzL#8ab$kLdxE#vYyjFSX9
zOLz3R@p=#bt+WROg_BA$F7lnjjPpA@s3EwLCk!E2WBTc@m$v~F2LCytIFvsK+uO<e
zqC16YAS7I`9(e_E2+a#8EuPc*c9!L2WSKTL9C>#`sysZ>Khj5(f$l0$qw(kZk<I)A
ztLWM|PBr=ZNr@kypy&aXRk>2)gyl`6aEgv+4yBfs6DuE}li~z91og-`Uf(z$_eGWs
zNORz|ZIl_<WiB4>`F}%`ZuR?Y-PK%%Pj~e)1MQKOb$uzy;tdCu*dWiEZ)5I_+>G%A
zsss*_Ss}(mP?J-J0?C$YkWANx>t0QlLoKneT#AA;N5?GW{#H&r+H!@<tJMDmf$6r0
zs5nT0>KzeJ+Z45t&wpIw5RqNia6Y5w6#gX{!q%i0E={z6y%o+sa858075)gTYCJ2$
zr{B@kW+tSTW)lFqbfMv$ApMtfn&fL7)EvR!tedT@IPZ&Wqa#>tX}5UcPnC=I`F6K^
z{4#0d8Ug~NlJiFdWj7so=gOt$s(kL1U=6(a3(?((+;aIo`0@MNt0Y)Obf`^7DJ679
z&OtG#`s(3~{sV3;UHMzN5E`0}uq>NC^t^2S--Ccc%rn*=8r_$GZ@@hL^+9Q(@h4Jf
zLQcH7pJFOc)A4L{Z%H~Wi6o%KjqYk^901v1CU))uh0@Ki9I52PVd_agU6(c$B54lM
z*;1;{i|0H)ZWvJu+BUDYi>g}fZfZo<1jubOTyJhiL%O35yu<j|M7HTO8jiPu7i2hm
z{rOYFYc1(F{H_2YN0Obyggf@4wq{Un^WeL#e01)yD8jM}AArFMVe9m-$5gZ}iVW(J
zdoOJUW<#9Vv&~jTu@`y8R20R}-+#*tfM<wNxRp3D&-|F5%dCM{UziSn7h5X|#^i5+
zn$_#F*ty^c`^_nfD`a6G<clP_KBb-8)&G1N#<qb1x!$d!y5S9MLc(DQXkH2L_)(La
zHhI_;eAUM!79cWO*3P?yF*y810i4EFM5|V(xyUlLMmZQvANx?B%hn%;GNQKGI9|UB
ziHh}b!mf(Qg52KN^GTK3hpT)VWCw%>DiQ))xirW0Es0uiF8g^W{V64ACRi8bI^#l(
zoAX#2$zWr4^fCjO?p>}Xy0jfly1N>dJW^&IdYVIG!%Lm4)SB=iN%d2153pRs@sCx<
zA;{BP`yL6yZ`{4zM`kIoio#G|ypyZqY)&O&(9I(ih3Pqs{;)?Mqt!DPye`8=);Y9m
zE5mH#3dT}y7unbiS`<kfdKop4gx!|$3Vx8sU*4$gfRp0x6`|GV?Jnkik<0kcUe;lb
zI3(EYMsc!q+*;U#TiiH@Cl8J|(S+XCFP!KZNvU`(^@l@Sq`9BZk@Lbz$f1#9D2rrY
zANIBTgvVO#VeCaHBJ7(ABSWjT+iJfQqi7mNm-f7lHuB#V!bbB|E<`)WN#{5NI5Bx5
zl9y4T0sS((%&=Wy0WEtsUtvR?HUyDUG92sECw<y8P3|swA?Bq-%{hN0BFi?i1M@oo
zMoGVqD80c)BIITd#p^K+7M@Rbnmf{r+2Kld_1=ipIc1M$7mZF9FlNK*ijzj;yAc;O
zHn4k^PCYT_=k0X478@Ndn>rHVw1=HRUR1ptoPT?V@r7;T^G|fQg(IHG@RxBrM+bAQ
zR*weZ20zxrCeT>f>{0LTH%daV6bwFr<=fQx9TgOY7k>)_1IALmefaO01%7hKcw({N
zEhCbIO~xRktolVP{jC2*#aMrI(VKm!8=vbj#VyTgK=KB4o6U6mGJw$KN3c$NqdqJ{
z8u6zNE!toeie<UlWlPSDcpBPt4#*~M@|Pgrbh}>pD`TkH6xj0{16^)gOVsa@M^rs+
z73V8zRPR)9XF{&#l$2BSghjCkVM^XimBqd@f+u~`s^QGai4!#CdNL$BgA5x8=|&io
zO~z`ad@x?291%y!2$xfw*HFM3Ao+eHSv3?7NGWB*cMod|14j5Jckj2)In1Q8a)2UU
z@KQx>;}0JjBk)m)=3#Q{asan7F~X~q*C5F<UlSKO<z^yNgZl0z;9;e~AxnIgLk%pK
zHg*Hd1#0GKJL%+o3r>p5wl?l~6rc^Kiliwx3*xVZKB38xklcJr90Lf!?+LHS|41)n
zU%)PEs(cdK>V3?}g+Gdz^ag1o!xqp0f6zib(E4E1Or_t)JUH)ENvDU7vZ^mZ_59e(
z#pMv;AN&}uNv~AZ2fY2%*WU!a{^vV?6T}}q=0pl?3Jx$(oO~hoTFg^trTul-b3_Gt
z`>83x4curPR9wIAv$%si_OPEwmQb`<Rh8@!Dnq@P`zL#z8h3ltn?@WwrSE8=3{pHP
z(WtK{#9033Onb?b$;MEjQM0_{EdDDn{WmQE`V+674%zJB|3R+?4=3gWnt}Plt8f4P
z=l@Q(M}G!5>m3402LFS!AIOgj$jRA{CB**+`CT}b9ds`3i|?=hhme3DdYBk6@)6&^
zd;O<x{)=e;*FQTR$l5ltO7Z{9h5zGC<Wq3xCe8Bl|EyF0$D5Zg0D(Nj=X=lpYAP>g
zaOYA_Vm|%PHn0Jtc6EG3rT-xU@r2EMxO3d%&x-$VmN`Fk@I%Ker+#PrU(HF32&FUv
z%&h<8$z?tH*S?QQ9cxj|>>f9I^wOlT6!7C(yo5l1C4j_zoBlvnwi>eEpN_;w2cgPk
zLj9Lq0`-Bn@9VW~{m=K+$fN=`bvB4(4FO@Qf~w4JQ~nt2yc>5x22M|vOh*}{xCnJ^
zi&Pn91Pi)KM0_Z-KURD-oD1$S+&yZl=c#F`HA%5-sZnD3Vm1!={@1YzM*noC?9+$A
z@B~Xh={MQ-VXh%UfjlA`prq4-xQyis^@eEVcfhQ+O!PEWU51`c;vH7}rqxSxcL{&o
zh87!pacIx~Z#@cxgJ9%17Jf1PXXwZVL$gllqm2}4H(`5KqUR}OzqmdBieb2fL^RDw
zd%F_AsKlo9N6P-27xU2%G`&WR{P&zclY;*nYO~q6^UxdZ#@PqcwrsPBLXr9M&V22<
z>6??;1NjDC&gwrO{%a1daz0EMYnVKkl3I{zwkw-5l<Loj;5E#ajF(3ceFb^DSEa2z
zQtu4U<hX~=WY{OMwhwJD^1I<Vq(1CUR~Q~HcdUayVQjiROW?usoenm&|7vNmRWY5_
zyh(SpNmgdsk^)mXVLIB%Y+jb5TK6$XwZXV@Dqn(6;T0?q!+CFsKirS6J06iHqn1Qv
zOMnu1W>oYQW}$&dq0>+^oL<Rnlr;o$P5Fbbmw7&`$fVf*S((QiZrSRDRbL{V7Moej
zo51cBNUpMx-iXsgqhSWE1O3=G+w-0{y_nlep~(Fv!?~U;kKs7`<$X)SQ4C<}J5#xb
zS7C01TRGPoQ(-tISa#4AWVp9clz@mgj^~(Mh)k*0X3An|Qn}-tIAb0Qk-BfCNjlW*
zt4#OET`)0H$TMInb7;{vY?+CctO(nVf2!%og2-8gq}#2`Ms3u`Xq!xAq&)c53`wa>
z6-|iHe2;oR4srXga(hoZX;(eI)}oSSdm^9ZSPO5T73;mSRdvaf{{EY6t?O~awkt%#
zsq>LO?<&f#EXSCgnOT;5PNNYnA~;?7Gpuw^PiA8m7`9ak!rx{89lbnshHT-(81?UU
z{z3BW86m5tdACqNGFD)v5qg_kk9JfSzHO+$YBG;HkQvq0a*{oa#UJiawi^R1AXRI(
zmm(H3kg7xc-E#c$04huAyMAAv_#oC~<6&i8f+5dS^vTAd7z@davj(XKOfJ7`R@3?M
zn+BJfOS9>XrONf|L~PhPB}pIEI(3FoxKwiDTSLtV`UO508{)=0>~$MzL~lK-h5OeE
z-`;tQR5`3D8?NkfB^b^<iz7;@Z>71kD3u^A%dfE+DW1>68e~Wyu>Zo-D501qXRFYp
z<f`DFA=SUX&#T+9l6$NVxj8e%v-o76R@t4_Ah~Oy7H2OJs~%;yO+8?zRMD$OTSbqz
zKh)ype&T#~EK;{)%*wUSU)N}T(`C4uPQkFrhS)wKb+%_-MS*IHVxqp_?3eVu&p>3+
z!tH=}ePikTtHHwEDr-W|SYCX#=t)INo`w9vjmLt*5-%jHW9o@iMXHAH3ddl?siVnn
ziuhl0s2*Cc8&&$A-B&R;K^Bw6X{$(IS47RH%Y!gXIKqfLUf!4Nx}5y7lm@Kj5ui}P
zZ~91~ehbuws+NGCtJh8VUi7zc=q3M$&HaV=j*+HP$Yy6&2Yk%U0J6zpW(U)_YV_QT
zk9iEeoCy|Y$R;YZHzR$wrsl+b>tPzY>IrC8aP6(Q44Y=m#=2@m$NRFG6g-6Wy+-%u
zBT*h*E0&C7Tg-voSf@H6&19GnQ_c3Q?01r`FU(?TOU0>`dd!sR5;!_sCYKF*iA)%L
zjjH---ASe?dzSg?jjC!-nAMjTsFlBBC_oVFO^lu<PCWB=OwBeL0v<=tl6KA3Y3SkS
zZ+{SmEK@6eGq0>UqEX1Q+&wVvg<Os0t0!)>gnqy`V5yqz3ohTe-i|J^NXi)go3`@T
zBJ`OJ>e3QsZMW~;p&OuXj}h;*7-ow{QyQN9qIy?CS!4T)=j<1z@>xa%rQi0NjlqMU
z5|GnMbH?k=8`ryt;9c%McOAdk;y`&)YP-Q5L0Ij6e|!FxR{rw$rWDNoVF}3#8RtgF
z7vq<;K)I3rC<!H>b)_l?#NUMHL$yh9za?vT6%rCluaPv%%-MD9RJjzALe<onoa%1n
zTLoT5h2$E_*`~F5syM^B@Jhle8VJ$7adpv{hmqfQQ#hW9A><R0mPrWDGu%7L#iz6B
zgC>U4A@^`2A_a>W5|e)WgbhFPRT=pthd(6D`J8eK#K=DNVE37$BhdS<SY!}$dzf*#
zIRy!D4t9lELccy9VqhSF|33QN1ec)PaU7{>HE+NFWLwmKjdgRP%iQ7QaSSbC9fbSB
zyxQt+5-xjF?mD4|<$J<a-M&611arGTl&Y|dgD%uI@87KV_-m+$Bc^q$+uMuluJ>H~
zfbqa<UW;J2nX18%Fn_kAs)cpe$;>#OoKFmo`+;ScMN%xCc9eoWU4KuZT1C$dfs?up
zwX%N1j7=9JBY>JJITk$^4dj383}s27kxfc4Y_kKp)Ol^y<|}KOCJpM1%;V_aUtWHh
zxrtbhIE+w@&|qcVD~9wna-)pJRZwGg1(uUvt=tZ+@3T-_TuC_s;sf2$likm98{jvY
z*Jjg3016{Lj%n?DOXNXFHZ1Sgq*BOOmU3$~Zgza_F4OrrsJYhT6t~VInh<vCl6Ajn
zKOniY@uispbh@+8o88^lhZZWgywrRd<Ns2&r6!_9idx`e#l<IA&AXT>096SWH{^6H
zUB*<l$-}+u_G~5|n3s<9C2}x@O=qT{%M8TOs!vXR1CU1qG3L(B2WGA0bJ6cv6+lnI
zem@OJf_Fy9neKU-b(JP#-@kkVhAF40QlgSGz#qXv4jz+6?0t@;s$2?i&q@Gpz>_XI
zZ`3RMiX2+)3)wCY!u`hpoDP+Cu<yI6Fy|%a3NrceKxsDZcAiu(sIb=A0Q^9Hc+ONl
zuG$H@oK;~l9c4zuMdw{*8LNGr^w(a_uM34YzHuMJ8O2P;-ONV<b%!E-i(T$v;#6J;
zPf30pCSD)YcQM`>T%eq%Rh_3cCzUTsg@=jaPuzO<^~z+ir7j0C%#*#|!(#btPMZ&6
zIsRr4-X2*_F@A>mxWsLLX*qv(`ZDBsd*zx_Z)1Yt)^4pHeUNHc{q})OU9>F1j$Uao
zXF(OClIaAadE3_h__)h-DKBK_8O`6w%3m9l&cnHMNq!&bBi8$v2I+x0MVNS)?Dg4<
z6&9?OC-D`aUCxvPAA=!4i{xRrjHBNMax1on<CW5PMYwYkVW1BjL?H4=(yS#=(c<Xa
z0fP3k6@Y$P0<na0Rqq>WnB-@G)8L5_Ib{ua=<(kaa{NsmICSBlKcNIi!NS`I<cm;4
z^pLo(y>{&=w~|dBw>w=+Z2@?cSJNP+<sIeqWvB9i>kM=}Ms?C|Qx6aYv)Oo`L6yY7
z8c>)qQ6*Y?V`OkNJ$@1%Cf*hRjBC|wVoxvVA8nSVBN&aE{rZ`vY;HgEo|Ik&7!u9e
zjRZpJGF@{}MmJYjE%0({S1Lg2-9<wK2SmRrS^%Y?A@FQfkSeshM}Cjv^jInxpNm`G
z`tS2yh$r1BryP3PSp3YoZe#7PWsTt`R26QSM%hV<EVO{SpX`&sX33K^^Re_POBTbL
zt0Io24YdSIl+Hp#HWzB@^;PF<mxP`@)1Q_>DcJeduj|f=-Y?A(81>)yS&q>!VH1`P
ztcN;}Jg;!GoUE#gKVD97P|0|5-XnoJ3c0IBIvzjO{@2<6^@EbxPve(>&(p8B=Me;g
z8>Nfix~)xghpv`iCC3c_OFJyxDSx&-;C)N*Jo*iRgz!(`i}B20&b+X8%k;RH&YA8B
z5a`uCKqitv@Y!!!w`)k1dIZzo;`1zkbQkFGFvy1Y>W>E=h};a`8C;ZWr@w~U7U8xh
zQf_x_9k#yZOuN(!-hHZ01DcG6)8W&qviV%O41T*iM`F&6F6$7Pwv9r~I^P7ot6wYD
zJZQ>qm~<}@*=9eOj^}T(`bqe{7yek-2FUIxWWmwD0DG8$R=pBoqz<ESP@1a(@l4wc
zaB~@}I5H^C`?C`)b^SIUY`?M*;`S;gw9Xp8t5=1q5+L9SpWFdGprB160@#HR_WX7c
z)AzxcB~tLe=BJqereR-!faxnxPtI9XPEdc*^TqMTsP9H8!ecQt?%3%FiH!ql&$)Wg
z3~&vphr0eaq<j<l-Jd87$MaR!A8cYmu;|W0ss>Rd4;a_o9=JWt2{k6jl)6IJ_X}nt
zz|@qj8Ve6b@LEOyCuP#Y&H-3g4*75FfkZl^uh_4-I>+X!w7Gkr&iD$1kdy~%_hjo%
z57+=U8|zr!Gc8^(8!cafX5ixIzAa$E_v`Ou@gWLqdo|R0P$kS644xp}Y;_WzH(XC5
z0|WNv_p#|87SAb<gI^@Hk!ufp$7D=<Pg*juMkgV$k*0=fuh#T>8s52Wx<2ylXp8jA
zb+`(Nrg+^3<HKx=$(#fXQ|gKDI$L|i6$MA1iXaF=RG-^9eqsL;y^+dd!mj4o7^JZp
z<iCJ51PG+|`@9D;&*ze`f;_H!CJuA<D%75&$;%j=5RZ=npS%y=yj|?LyV|CE2=bok
z&V5eJ*OUZSPZk`oz+1`5`!tkdZa7QgNyJn@AMpJf5Zw-Q1*1pR27zw8;cUyKifr;P
zN^BA&Fbueg>bxAj1EPor+izv|-Ej+~5nwnWd&6^gvC;=38_e}n732t<qkG_j`MxC5
z@wG6WZ!fTTAVD_?YPf27hL-PH3D_KJDA+~Hcb{<Z8Mu}2&ztW3#F=#78eYuVjX(sW
zVyvG7^@0HM*<#&dV%=BZGNHC_>?_1=bbngZ+otzm;~Im97f5ss5>}I(yY;qQBY6{z
ztUFJZ$Od>E18czdx4CT=mYa?-=4#VYmtF~4Y>yXMba~R9G0`+>HMl6h?0E8(k49#4
zP%k8v!%R6p2N}u`m^q7?+*l)R;<pjLya?bAuHIE&>0~MJ9IPPZaj|>6WDiWW7z5K9
zSxnI-KMd#E$c{^|XT^5LZH^rCL?e3xuB>HrwEuB$*-fm|@PP(tC%Enis5+9#wLi=I
zvQDaa@91kYp1bJvIRK@nwl8JU1mePDTHGV=p|mSZD;C|3oF3GjsHOxj|57ZahNAHM
zhLwJ2Ic^$Jp-VQ3&VSxY&aOvV{4#IdLc3ydFqeF(5^?+3ugh8wM{^3<&MsTO@jc<)
z+4@Gle2(&60JNFX)>zoAUdI&VEI&EPQR>DQem>C{muR|IaVFF2+nBCx+0X#j&*l>G
z^>F82neX=hio0`>0rW#z(-&wfz32kyz5U07O~~1l&@I3b+~5r8W$O@^j)9rdi*qV9
z0a+oZw~B9xg=gErgf`UjxWqU<Xv@gwe`~I|fE;w_VFA>7)QrIJD98}xj@Chf{y9tm
z3Yld%P7mb4uR9F`NOj3<H<BFv-YzFyf^L19T&FU918WL+xtxisuO+ebkzX&C_TCxX
z-7uZ4`9&fJR%7cB`@i5>NXAQnqop_Oi)&Um$1J;CcP7Q1$>>YkPJbJs8=mqi&*Sz5
zQXBVT1&98R8l4&^GhUGP0iN=rY64XT#D-`YpY7Vy?dKa32QN2Lta$jpF_E56maIVe
zJ5IVixZw9VH9z;4+xXng>f7Due*Jz>R(KnD@Q=BqSeCqH!c$Iv_vO35ZSC|${%EXg
zF%V&#T`jp^^-vde;$vEwQoWZ>jHBDjwnccJ$<!QF4jfciKyE5%tp*&O5-@3xbP3Nl
zM`pOMcWjpq)hkSK0?QkAjdYLh4!iaZTfF`JZA~VNqj<U=WHJY)jT5}^I-MUng0ey|
zX%UuL2jBfF*xs<&c0Qf`us)E4cW~V?pE9croK6{Li<pe=a5Q>}EWlyaqib(NjWm=_
zyRpw@zBIc2Z(Gn(@zl=Fq21uGh*iZH^T?9io6t(yP6c!Nc|Xv;&s8f`yZ0~GEV)#w
zyoPC7F&G*z>O1!@sI+k}bI{odjNOt-hq1iZFl7#wR<I4pcJB6e2!r6qI_{aR6v*~&
zbOt;nSe{wa3;`i$g2BRu)SHdr2W9ggqzC}tQ|1gYC`YjJHx#8t$<D0krib#(+16<>
zlZ8PDHrBu<VB8k9NWGm*_>ED!$lDM4+JOHB4MmWyoGcq084~v^;aLAI`q^8x*ryB_
zG79xRC~zoVR5EX{*)Rq>oT6eF9j3AxsC!&)Ncp>Fz&=I@+jDQ!8?n%3#QpX#vfbm#
z<iV3IzVzdv+bg5VVro6?Qrf}eix*tn$%B%leg{)&LdiySGa_Lw?C2(!p-Yc%fjwXx
zSmLHVEEhaBGS35~K6mm78ZXxL5s{`tcu+n^urI@^PlFWe2Urw=+Nm-l7^vfQ|Jy@<
zQR+%yW(#UK;MXPZG5lDqCMG14E^9}=hAZ&=fX9b20qg>>GjsJvmMuc8w?a>z5!gk}
zEdcXDCQA)1NzSSi3KE3IyDKw@LeI97J>+ULN5`d=E)i5;I3wJdtCM*-I?T~Zv=K0I
z^kDC8wMJj2{QFqcgYWg7W&3NbdO2(F-H&aj3~#3?&KCQz)_9#HI7l-QgBhNAS%Qvt
z>8Vzr?`xK=IG6rok<fh2684L^9xF#bKXjY5eWl)=Lo?<J(Q+DH=c$24mp$)dG0HQw
z!{g8c+p%VaO63s4r43<fRzR$?@PTVRn)&FoJU-7kc=+Ko@iIzvf>z5^S@L#lbiOic
zs#-mOzTdm*m@}>oQSBdJ3S_V64{kKLSh)KF_1uTe`jc+JBfD+ZX(!99-5*rxuy_)c
z=kcDhggc4BZVt;7<ztY_gT>zap>HZhTCA^Z_(a3&7YxcIbU}s5{KFECTVI4{qPZP`
ze7F>&4|*k!80(~3E;1Uy&kVu@kFf+;d(I{^%&MobCR)Sp^E2Ceq)eaE=_ZLxfpe9~
z#c_dD0_&2fZWiM#-@L}GLgjwBLS6pziZY`?R>wJe#~YH}4eclUYTOBM+lvDc1oT|1
zkwO-UO1eYxPdgig`jmFA_m5$2B*S&!;qFM*SCX#4@uEg*9VDwtAxr)r{Pf7&be(Rm
zfV1l_Voy36EZVCODF%Nm*KAVS5~r1YGVY2^^JZI24_}q{Wt4p3I(;pte~Fc!lknqt
z9=sg5&}zBZJBGBu)d^9h<~zaeSnt@cCtMFQ=G}j_Kvthgwo`XX#o6b@2ka%=<ub$G
zhH$no-j&nRIkOgx1op{cD(V%=JY^$`T&-zmka|8&O6^MCd^Pr7#iEHHqsBkmnYTSc
z<FD870OIT21exO0s$I*!qJ^}N8j2Eph;chiB9RmryTXgN2uQ&?dX+z0@P=bdvSyXC
z%w?QgAxl}RYz`62U)7N33lSCH?8RVDV(dI?!5dusGH0zt6Y75%zX19I=ywto_h>2B
z5*sa`AL^wK<tI^nKIaaE^^-x-TjOEj8(;DtLDL9>>LZ+f-Gxne{y%$%EZS#A;_32h
zEG#bp!M8@~p_Gf?_T6*BTsaX9E%UirdvT#h#4*6Go6GLUadNW+njGEyuz?>IV|1iW
zpu=Vyd<%c_gHhF2`@8}*jIWd<(19iO2exlm%*KmbbI_jLs1}0@VjgJYwc{2VQZ2ZE
z@*uk;n&xV}$Y-QI@;sejS;d>ho0%aE=ROjnu1CZ5M22EATy>qR)+;ytGH9?h>Nbd5
zm9my8K4h<}U0>W=sc5m@=SKIM4=K3}wgUT9h$iMi?9WdL4NJWeF>7r=Jh}&HihCJL
zb<x!aYhzz`98ygx?x&)1Ch8|Xw561FG~Eo|99(4W=_$tqmenCRw?AOjiiOH#G`4H?
zIEF)?Cl})4(NdVCxCl(Yj}=;(vY1*rG_7_(U5?Yl8?C#YslAtGRWYnThGg${dlBPf
zdow@=);%t@nQklk^yce62A7uWJZ(%e-Kv}$U&N_v(`@VWw}&LWyO#_Ec9^5(AH%l%
z2wT@1Y~zw1^~pq7Ur%IC4%jpmccgge#f9d7{5jvEEO|eduU^_Glm73A3HrYd6QfR{
z0J5UzT8feIPYq-vTqY+>fUVh_1jh)|K=*AtgC*K-ZBl^|nSIx((j-oDG`)MAZ+loM
zg>^bROa9EDl7X-}z*oMXDrVlvt-BI->^lmb9X<~qOo5{w2;i&da~EK`tCmZ-g{wym
z8d)V%d~%KTMgv_*GO7}#&=bqO>5U)8#qr>X#f29rfZ#7aQ_&0W%AYuK0dxo059a)o
zl5xoGZF6mm9SQhWx_8Jya6^m0&0yZGx0tZZu>bjl0w84H?JGuOiUF3<o0BIvm6Pf5
zzSB^v4`u?yN>Fbv=Oj<DYa-tyIpz7{HM3S*OKY`}Bd{QsS+w1kIT9`^VW{J2!SS5T
zlh|dR&u95yP(Rngdr9z_R4Fpun>cVXa`_eo0|oEhP{^<=5`~>09JC-DEpjX00=}V9
z3eY-rS0!((_9gS~&(9tuRZIk93jCTM`=lIHI2EkofNDZVFim>B9`O+`#HnJ2caPK{
z1?O8EQL2yTEaF_9$P1dpR8yWJ*RHz-iAwic+SRP(p6**z`fJ)()60CHDvV)vr?#`q
zmK76tzV5&8bFu3&e|4<I*Dd=4MP4GL+>~4QNA_Vac@0rvM1GN$QEj<NET%)5Qqdy$
zmev%(%YaVzb^An<>T>5Qj4RLia{uQ|;-1iAf4$_%9zU-bnmsj2aUVxDS;7fqFWMM*
z+cD`Ku)?;`7iRc$gEFvKB=fD?5M9&FJ77|@i$4DW-~;a-<*jo6bnu%v-kwmo*PAi~
zX{)HcxrLvtCEw;7d0sc>G(l_>cF#1w$&YT|d3kwR?hYy8b32JGnjrWDL{UY&cfwv`
zk&}69CAV_>JVLatBNpQhi5azAfWLG5)TSgg6-_yRESbl(1}@Pio|@O4S}`{j)w-g@
zpVVdoIO(hb7QHFmM5c7oOFGlM=-2t0b;|G+n<GZZ?WrA1!M>Ws1?p9sR>xG0X3ZgZ
zB=nJy@C=5)3p207+385IxIc<4#|_}CE;!_fO#atSblSK5F|>KA)0;Ex0wQZ2A#NB`
za4+aU8!Zbz;?r1)o~Ctb8}ydZ*g3gMfhMYhvATJCP@?|h%)mQ>&1bRBXpf)Z=#h;P
z8CmPvQ4|3uW<eE0phVsN%o3-FMNI1&x!zv-N1oMO4GxT#V!W71nq01m;}JGU0qAqs
z6P3lOj~a|7t}?4%;B#^ejI{dLTP>7)DzWwe#jZ1-yIU(4?s4e`Z40Cfp0jTZ3|MiD
zk*x}hn<Bl6n1zK?AT7v&)|Gy;r=>4fVxtqaC3+uXRykj=h6NY-=<io1FBH0IM$HC@
z2!{)h?*XE*Pwt!kI4E*i7XVUawJY{^<d1ACP$_OS^YYDL+pHQ`__Y&!6+qFb@$Qa!
zmu*@cK9Bk_tP-82!;p5px54NoTbl4=c@xFoE3FnRzvwAU*4PHbF`fQ8%m&7sBec-1
zzlK1uS7n*wu{<maZa{|b{uUCC^~J^j106k6TLPx&!7q@CP9iW2iEmbLf7kU3`itfD
z`36^-D12{n=%218a!arGet=<F2xD}8Rbl##{3W3-3E7KfP$-~dkgn_n#IxP%;H7`;
zr){3FecZ`s+%+g6lkH@06tc_9%_g+E+*r~C4m1Sq*oy93^*9?34R?(qEO5?eqHzW-
z$_Y3=wku$bNBz}6<V;XiZACqoo{*JtGuX=5h~427c0@^vB&$SjvWxZ!OYJ5StO<^L
zG5iq?)z@FX*g1dPvc#IOENfqi>nut7dnSRgB2W5w;j>e2COaCmOq~F<8*nn(QDTVM
zEh;nWS=|_K0_lKhw9$ek%MQ=Sx2I<3)i+>c(H}_U=;8Vq6$+(QU6@>%Bg2I%(UMT?
zxIb?>BAEY>e<=*WCO|IkDv+_m0M#EbeQ7*(!d@v*!t3^|_r|J(q@q!V#>!{m>sIAB
zn@$v3DAiGVzJtx<aZMj!Fzhp~nrxli25ROg(CZR_MM@j7POF~I&0cHoI+sCZ4WjFE
zEEeu>DNf5aX7@pIo+__*rYp8BNojpWWJn8CC&;~oG}L`rJxPKRx2bCnRWsg(tWS?%
z%~v}Jxy^#}n3@vD$JL((PRt99+ey%k$YHxN;?6TC`wKF_x84E>1mpA`&vbPv`hQ4d
z%F!b_YlNM7^aRPOBm^wnx<svve?}=kDhfaM^og^r_<VSO*6QL!fs%LAecS6Yekk%k
zuWwP0{HBffuF`}8?5KUS0oBfIe+UZZNaFfzcWp!_hs(e{+z>Z!6LPPv^96XjzA36d
z3MTf#K;;t<a|gk4zQcrI5@$sgP%qZvcE@<!&qeV#F1L#-tAqx?n(P2MwybwN*}Rd@
z(^G?sgQY73WcvlD6-0ZUKGdO@H=3q!F@|oE3vt&;j{a&T1|*{-8tuS0WDNjoXn`Tf
zor{N?-I5MF)GCG5&dZd(W9e`C)OGO%i6s+Qm6Bb)M}K~!sRp>~9P!+jWV<GzJT2EF
zu#RG(2A}c-;sOq4!N}%$kw!pF1C%;zd(`(P1|7i=ZUX9gd!s>4?)Nu0H_+na_%;si
z&`>5h(lR1kbb@Ham0BPmtB?&J07!}>9$E^^yU*5vO}jHy3ducd1so{jkCMCS+p#Ja
zHoywK?UD$V0Iad(qfIk%dRL(J{Oq)6y)I*3WYA9G0XXXgM6k$2IJ(xA=HUl;2bB&i
zXl+=7&jmxOpZ6BtI!pcOiAZ`Vzx(4%#kj*lbdOCq>Y&Lf?faMnk~Fx4xQu`H7BS*@
zv=6_0j4c-d0-33u7GV9vs}e-w(hWX7gTGvIdW_#71JQ(KR3?Hgh{NO|J3_>`wUjS?
zE~fKT=;jbxH-L?rF(QZCMRC4%lYl{aQ65Y?iO|#DT)F+NGvL_w+;<kBuA8T?mGe`5
zUm6vO*|q2G*lu`abhV!%opHIGU{mNe8gw|a*z$WO@!l%zI&XcIMG$=XNxmf#p?7S#
z_xUkDKOwhMAf|E43vN(IBa`pUzEG<n``oBVC@=&}SMfAKn2KL>g_`Q8E)aEBEX`yl
zqr$cRopJ2J;QoXvV;l8$QMj%Cf@0Kaf7lS&r^uu{IH<FJzP`DWCCI|=imi3lUI#m-
zhpKvOJ&-lPx*a)o`1MonR(42$3RK1!h{AtrW<H0z78bhAcYmYcT)D1@5C1BPwF$G{
z=4qGePa){^SIbaT*(Awy?K(2^d$53}*#cFy*4({hvXilA&vkpbUDPz&DpHN85A)Yd
zYHpxNy<>}PBi-Mv)u26ui);UAx~`svwKiMI^3iZ<xLrGd>C>NmA(EewY*F=8+%Q1w
z`z|SZGjPtPprPrr2m<gcJSqf72+-#ze?(>2^(n1vnszqlA*E;Ycx1<y$)wDy`M%Y5
z`kKsX--9r+07w<Z%Nroaq-;7G7|a!Nk(%PhIHxB_weuKG4hV{VnDA=MK14WyumLKC
z>N#~72izXV{e+Akn$>$ooc!N?I?D>qx~{Chb73O@_2iNZl|fD`uSWruk-0PAOFTL$
z!(IdxQV;BxMcw;5{>`bfoMx^mOXSu71e|mpGdTyAlN9<Tch$;1*H35@3?&Wz#o<KH
zKyupI5f)l4;MWxp4CnglvZW_IC(SQuZhn&e>x3YM1$lXK#%g0b(=ZN!j}beHmHWp3
z1^}{zXxqSRLpw6{g**N_tk<JEFlb9YMa)@@3YNcey=FaczjK?uz5|wur63=ogkir=
zs#Li*k|Wa%tPmm7Z8P&kYiqst@_d;1ACF$<s1#6BXhnlIZ@#4}*3l468r^PgJ>S1K
ztoDIMfxS9%ow~Clx`q42`-#-T+xR2>KP%!p(!~s|l5lzE(e5|e4p<Zl!(J<{m`<Lg
z+0?pLg3xVw^YaKcjDS-6WUe06qr`ar;cHi+6Jk9WB0a|pKcwhS*onQq0K8*@FaekZ
zDzz#VW4eVMV5EFI{LU^2)l3}da<nKsldr06wyy{~4}vq%FVeyOtM7{+aDQ6LJj>!+
zao9YN+uO3$Yl5}^uzWS0eg0lDnlkK#R1}*PVU6`tI{#|uUZZPbyMzHCPgh)cocuz$
zJnZtbY*>UtpxgWT6Q1y`L)GKM+`vIxWcsLL_yw_HLl4P76X*7<{*)$9=x5LB{AvPC
z%q4d(NK%0ZK<y0hxm1#`Zg7E2QYBl-bgy#v2QjtaVd*W#OOQQAwMGuSD)AHkeSH1*
zpPxQG5+Z8<Wa;Eoy)#?Gq}-rhZftqV<;vRrx(-u1nfuknEVU5(W2Z^V7y;t#sj>jf
z4q{7^S<k#@)b+|Fu&q1djmUJE{s&LQcrl_We8+&R&Yp{EXL+zK7kBv5lKJ^Zhdq=g
z>UIhdMo#R#AS$1LQ{Z#Q!$P5^={DZ%?r{1myx)Hj5h3kbOV#Zxh@r$8bAJq{`o*8_
z{AbdEH~d?q{AsKx`;Ne;QHeAIcnPGNkLLq#(z2dc1)dk>fi)r4@CPC{i$3QS2TsfF
zaJQyzfT9FFpHCn7f$}k~@H?mT*1asJ9IX052ypVsLXGE$`#=p_Bmi27`2T)&=1R32
zrG8v{CrwJLYrwf|K)FncG^rS9WyUQ{GQR#JN(hwr%xo3@Tp_IHL`F7F*ZQIv<ebv{
zG(SiEpkav*nt)$&0rz`&BrPRX@1*>HUq_4<`j=cnpd)V4E!k5lZYh8R(NZhlL<g4f
z#VL^N?fgt@%aqFy8BP^&$7m{#)bIbQL>1|6v<om?rPAy*?^UhN$i%+DN?<t1F!pWP
zwZ)srzLeg#-CF8p?CVG5EhJX+^{)WngQ=~(@V<*k+S|hV-T&iGkRMZ`Ng(sSp#0q)
zUZ15ryW8c@Zr3*deb|8ag!oVh?gxvr@O!@hI?VmoXT*rVpr*<uytCqt_-7mZb1eDi
zd_sP(h@2{W{r~4Tfvp)#_2?5&a>N`p{O?EqXFzz>K@Wd|{<jgy-v>?Hqn!U<t|yj`
zPPJ4YMO(XTe=aI23KbKR67)e-YHDg6l`hhMH}L^~a}FpY;ka`eOBXOjr~1!@#5$l`
z+pIE|N4SU{yx*dM6)cxZtp?1~r#-<K)EcJF;(rbie_D?LEmhQ_FLcu9Uu{nV#b!1C
z8912rg2ju1n_J`N_BKm0p0T#Ue5&*#m<}A)i=JaCF#mm5frucQElF$V{ijF1B{z3R
zQyGAnRSLQHpu$A9080$5)K})AQ$TghlHC>##QNvMzu%OQH0$gB_m==-<gBpT6NCNv
z2JiP3#c{1<aSS*AJoKL##|19$fJ^hR*8hI-L&43~tf1fVd6n6)|M}0qe`QJnmVk;`
zljP_>4^G?-+Z-}JF>%P32V53o^|!5c|MLmGK1+BCTJ$tjapU~?vSuFApP*>38N~#4
zrScQ_|9Td3<cAg+YSuyf^Z7?`?ZT;oe$PMgK|JPY$;sQz@Mq%Ib-4cZ`-fZS-=YLJ
zXTJbRPX6cS9z!3kc9VhH@54;Q@sq%EG2U~E{qvt+{{|F@S<t{F`MS?LDE+6Kk*%OW
zsfsVa7)Qg+%?%o^9h9S{nJChZICsMr`}3jSV<EB@PBvF+?mQ)j>d%M`eC7rEy&Jf?
zQJ4&84rKu8z7>c4mLj*|GV*`6&BM+hCV@=;=z-N53+fN&4im(49GlgEb1%=cXlj)=
z&H$f3tpyH&0njiobH_aG4lSaDn=ip&z_=kgekk_mfPMWtB+PsSwK<YAaqsSDH3@3u
zuKqkm8lL{+1&}86YEhpX>OWho`IekNV)|PA{;^t}YFYO31v8ox+#HhG)X`F%tMO|v
zwQ7je1INBz9<6-=ohuPV>X!u^Grd)`O@8;;Hy?gr_EkYuaJk<Dg7V(IxjKceCFlQI
z+`Pysz-7ogdb?KyQy;<@uH~EExjMEtLTD9MCAuA-AI&HYUIJLV8<bN>TvwUNpkVZ(
zl){yWXEdl#nFgyYs<VT%=tH{)2{lhls3f}`iElrv1u3;2aC}2G`Zyr?U!Ah`&?%=8
z%|1_3Wzz&*m`F%S&g~UCLa<`Ng#N{Y&+9fRmD_O#s6jb`M9f2JNUg1{d)pq-*UJZD
zg$g-^ydoep@fEcA*pxBL2bZY<1sKPXi5#|DPe8_3>0sd*2uU2c=sm3UUqZ9d<o}sV
zfA?;n7YO;VAC+9rBlEL+A>c6n>NwkTKj3){xpyyF6p~<n97q6`D=3)?kmsdv6CC(!
zD2WRbYd5-$_W`6R2GkXqtaYFz9=HO{s+sq%DCW-sqy--EG`O?jv7r1n`7G%B4TPfg
zfPjEH$KY&AQ0PRy(T$_VZnLym;ds12edr|I)Z0@PI6K$atkgn3B}8`GYVRywX!V27
zlOd^?N8xZiGdK6=IDI9T?t5{0*$pr(-G(;<U;v089v*@dL--HSc1i0ec0<KFLU}IW
z)TKP7B?fz6?|l3Y?D3;oZ@NKLvpd3TZIFnzg!LSg=4DGu%g39GLv{*BATv%<EYwg1
zpaB_`OtKvp(H>QD&hf@zFA%NHPV*>zko+c3q2zE}KD}}ZBL3vsj=UG7y8uVYt{;9U
z&flEu)ZZfTFygG~VB61{Ap0F!)ldI(DD(G_fys|~UJh)(hcmhoEa3`?NAH0B@)6{o
zZO{bMX;w1ns-*B5c%mxZ)D~E-974{B&mP<Xv|wg{5tte%Sen7_#N=;tzz?dH(80h-
za;pL(a{Xq{$MOv>EVMCSd8@1z#&v1OL#508ny&x~V!DK2+fuv-I4Aly7jT3fd?$eU
z6kdPS)BB0X)j>ne|K}sH>7!Ud(QtY*AZ!z_r_3$)EbyKIf5IrhB~hKPHEzQNWWN}&
z)^vA<CFJh~O3Z+;Z5tQnpzB$s@et|dQUFXXx9z$l#pJcPv2iXiGL)EDO2)Iw17Si)
zP9*H&<-)y3#(pnI)2^OQ)NPhr_*~C6LHGpnwPv5_P44f_J!S+|KC6rjb|%kHBA!)O
zSv5`xStH6#heiYj{@l<gStg=Q*1O|&K8pKR@dzIonHY_--fC<L{uh_=PySbG<+%-N
zAXh>Qil)bae3oiJP%|Nyqesg(8I3oE+D&ij92jt9G~!C=K%~$><q4c)elJG<z<81T
z@+e{%%ifJ<DcszNMVnL3cAH1(H^2ZU3hehYdG<K*DIk+geRtQ9BrFE|<pI8PCyulK
z^>beQrSOw2l3b-CEuk)su_Ox!fYgbBXR!id=!>*bW*z)9Z&q0MWZlIuB0eobm)v@a
z@%WO1QDJV`_QyOfCvl0q?$gYhmy7Q3K5UfrctZ==<8S@9!JO~i8Z%p+X4y~~1tr;2
zVH!ZN@RekojoX`Kd2gmlyX&|N*BmA=a}jRo7<d>Kt1Y)JAUqgMuK^+R$njTBw-uU6
zquZ-f7K!MBI$*%8c2a&`5sQS+ZftPYS&yttGES$p1M3w@Ci-HRA&lVw)vtQXbWx?u
zP)ZXq%4sC~Wt!7$b;(vE&#J>h@xsmJv9p^pSQjbYW4Yt9nlF+M>!QpG<vSiO!%)nh
zJ6@MO-n~5Dn7G!eF#R&(VAI$g%{Oez$&w4tE$Xy}B}mVmTXF}cvSwY!6|N1@q2!7x
zhx5_r5q54zfG5X*`gY>r1Y9187@_BsxzhDS&#9BpquTF|4Gzg##@~o&eg-*tDan$i
z(k$-ohSF<Pc=2pEaMVsC`OAOqlb+Cfc#mC1MSKXCr2qn#PY5uh&xm-eriXc8^N`OF
zL8O%h>@o@0SIJzC16yX#VF@1j&<7tnVG!slfD~-GCv4O?n31s$F8ByT$LWMmNz4zI
z`Sbx0_D<t<x^T9LJXj?f-uV6itE=jYEH=A!YFr623d#3E^(tlf2Mv5AI0cv<R%tgi
z4p(eTNbB|cH8nMzvHLv&JLU@v#?<Qi6L}SaqsPmdNNbwh08AOtbd7p}!zjED_l3)0
zN7hI)i$?`mrkFbiHXaWkQ(!i(t@p#H4Z+r5pFdMOru2p6DbubEi4qOjw#=ZZ*4*DZ
zW*wdNXGeQ}d8Ht-kLBLy?p3t|c31TKuj7;8hJJjafNVKSCt4$seXvl*@Brl)cm_zm
zvVPugyq=%W@1<4eH6NqZxX4ffdt+6t)g9;}wWXjiSJ0UlCR3$f&gMJZ0rC}bG@fi2
z#srfe56tih#+N`wP+_p&0@P5*Ic*S10kN%=Bai*o=NnLaTaDgoJU^b<Vp@1Y<-4Ld
z{NR~2K3JlQ8577xTeimX40fmO<pBuPa*Sl9PPVr#j(U(I3<o(y&_{I|pKeG*Nlydk
z3u!)F{U4EXA#Jcir4GAlw=KgTBI&d}(3K_wp|%17KWMT-4l+c)yjB{`inxnv8|^Xx
zS%-!HKCAtG2%3a`IVvKAPKr~n{7~5^ng|klge^Sj1$Il*eeQDLQYZ`m;bq;l*OO=Z
zt3TwFS+sWV0fW>4Q1;a{Oo!5Iz^>QjQb17DxKiN^8wv~wl>)??7r||IAFV;UPc~DG
z<zCDO)O=hU*2*;wFjmg+C-Z%z<p<eFN{gAG(S_*VM^j3T-V#^0ULOFyS3sJy|Ig=O
zicX~C;3AV@EN_FWWuL2OilOA(0Y+YBy)y9i3~~ebsxntALH*Sh^*eL(Z!pU$TF!6%
zT&+F&=Lu6B+Wb$)Cw&k0hqFRh1_ASN*G@VSr_~l5%<YLzI+Cr6NYL?0kivfavcQTc
z5a&T(GzeW~I5_hSjHi&m+`bfWbSlDSz)WsyX)!vX34A*P;zv#Y>hNL=*#1XCPNCrR
z)&p$lD<YqJ5$VuzcLe%5o(7_jowDCd)!OGZ8d0Ldv})Ghp7Gymq!A3F34gTqZ;8g$
z`+!_3MQO_|;qweh8Ok-#vMt%;YLn^~fB914wa>wHr3GF;;yq?KA<y@e4br#Bjy1*M
zvEb5AFeX^}JKP&Hg}j=#F;@WUUf_GYkXWf)VX9=m3;U|XuwQKsbAlz2a`iVV_fJ6Z
z=M6cjSFYm>n$7TMMvVGbC}!wHbz)`%=eOs4ap}?n`kIr^4+7oy8%ip1MNyWAYwhLI
z$+eu>{IQ+hm%09b?EPg_)N9*64hw>m!q6y6mvl&XC?VaAv~=fybc3`YF-R!g-3<Z)
z(nyEWol5@C+4pt1<F~K3&#Pyxz4n^z+Q`gz&Nz-w9p~JPv6EHH#D_1UM8`SR3*W6K
zdg`)hmbKwn$nm#e8xv%0gW|8cwxoG5fn27ua>N#bDVK*trBa!So{`Bi(#t%WB4pqr
zI3Uv$9H?Jn)@2&9UMNl{k@52=<R>cmBLX6#4XV*CnN#z<IlHP_Hl8#dY?A`qD;uoY
zI|_=8?NIy<GVAVee05wgW+E_Fy@q-;g^$X(G6X+Q{egdW<6!D}u@1F_nlV_twG!GY
z=7CzelygCBmrk5MH*W8wtbo5BXpU`}<G&M=KP1Bm30eHQ%-VK`r0T#+ziPwWY7ia&
z@vZAuZk}oEp-$8lby_uF$OCa@Au8>FZkGpwp+5iY&HvMUprL-v=E79OM!Zw1+9{6B
z##d<?A(QfBJGEz3c6}(lR=`w`UxbPSmH@=qt}nBKZVoyaHA>RX(z+YIRhT9MZMC)v
zc}Zb8sB2TQJcAaO*<P#7F}20x_H|`(PzfKKtPh72d_@bYnnoqZEA8tnBqT?F6`F3<
zq^j4O>iuY69tsU>Tqa+_M=Kvp?SAJ2jAcbnb#ddh9uypags&ME+>enlSg0Jn#~lL~
zA*5MdUR};XqTjEs-6VB&bZ7T<_U7sZ*uSLn(<5m9=vS)>jVkY9&DBfbJT)}LjJDT>
zhR=FlII9Y13Rv|(^gEMlsq7&!<Qu7%b{DjhZua(NAi&!>daS*XV3-sp4*eMfAgq2c
z{=Ed&eP8*52m<xoz3oF(Xbg90z%oowX~o5B@}Q1f{ZBafzpL|)77!6lBHs%wjqW36
zZ{hr1l$PRnta_TW@WJ;AFoET2P+T<@aWz@m*7hedJdK{&)BeDzpM2)3U`i$BFS>Jr
z$1*iWq~Ovs`?Y$Iq;<UNA<J`J${|KEbP01Fj4u5ynILijU+fDAMaRTSC+VSj)O!iT
zHNN~-@?;}9_Z$kXG&G+(*i}GL?D@;M_bqP_vq&D2F^DCNeCm14tW^;>RkQJ^tadsD
zTlkPsbne^?HTMpJVE%(k1Yvh4^DoJw*CH_^M=58AVK~XL2TT+z?{NCZHV;rjr!Y9m
zEtJk^1bST`eEA<}nO_&Y`+bxJQHWLSa}UU3=qgF&w%aO02&H|b5;;^CYHY>;=FBJo
zUA{H*DK`>Fppvg9dU=1mJMqJZ`Ij?-l<73m{usDMZL+(M*xSd&BfB5A4cUgWS>6wu
z*&#5v(d<p;Rxlrf;Vq)Z8;YS+*)7Vq7A)pSt4;@i-1vD5t;_499;~}<kloBo!nB^;
z?-*B*uLWuhxh6(z>E{4Ko55%Xw@@L2z@#A|b6`WzDL_{zyBPnh6#w>3Qeb~jBz^!V
zQ{f!{F0aiDtvsv%^0f7rne8)<P`sxr2ac!XeS5z=4wgg<2XGYx3=@G<#0@{=gq9ZT
z3+Q?V23T%;w~W!HE|8arC~W-@e-)dkeG+`yg1tXUBoK&wmz&uvx-epDau<BMY02x0
zx8HRSWY6$$+FIm|l48d(!upovA|xzA^JgkPQtluGx^`(*>nMIjOCQH@0l7MkxH!As
z`)a?w_r-fE98gFaJ+mX30j=`O3MREYMN!Zg8xQ*YkVy__f~v<<?OvQ(Dd)<oqCx=k
z@5|B=M0SN>^wntJ<LLW@UXAU%**^WDUZ(|){{MO&0Hh;+AQ7*Nre6-qxmp~f_v8Qt
z;Cf!V2>y!6($`RQ;#YC64G)IW-?E}YwB_jTpvoSvd2e&MMLkmL%iW1;bVJdErGbLY
zQAWh{qMaB%{9;BN+rb+2HMS`$rw>N%!@5J&ti)KlOet_P2*N(=KI~4qT^rO<W#{T;
zKIrEUR8~0az(}tq@;KRG(`w?OH!EtkyEu89V{+Coop9(WC?HC1Vm9z@5FPr8ux3yI
z%$-mQD|x*92uv>8qxqil=KKf>m=Fe6+h$Lfbfc{lZ!(Ki4|O>`qc@V&a*dQAT%=yN
z*>l3;0#w8K>(hc<C!p|6OopmmU9oQ;pg__OSG&{sV{M0_UQ_lnsBo>rzx+dnjjEUz
zMJ<6E3!#c?Po3QRWx1u-ip^#C^T3eZa=cMq4xd3?F{~>~|B^clwo}?p$(vM2{+6c4
zvw}&7YXC5+AHa}ZPi5*fZ5BxWPOu^-4GsN@2Td@!{8I^SR5vhxUQNGekw*?gUFDPP
zq(8O({QkoAgL%wYEd5+o_skdO4$Gtj1ZLDJ0Gv)Z>bGVB9k5dhNhUR)>rUQwh57I@
z)%ZdKK0XWq_WqE~T~s_T=)t3BU(wb4%1}#!zuVAo+0@#Wz7!GhB`Z&v2dWWT5G#;Y
zqFwbmmQnkpvYB^efZuH|hBm|5-BtK}&I!?Oz0zE~$c4=7Eiw0GgM7Hy+sC}8RZ}H;
zZnzfL*VlsKRc551WS^8ihfGZd((*d21Y+tLT`cjFTTQPUzK1_VWefyi;ns0SRoK{F
zzeC&}-U&=^^W-tkzdd7|7XZq8c11?AGVwZ88L*k}fPDFR>kE+kFXsV#&r|??9f^Ev
zNv~5=gpS54e{+3q0Df7{Gut`MW}L+~oPG5YT?>!+jtBxH8VOl<BTNzjsT)v;wXIfx
zQc*^ChioA(1sNq{#9teX**uwpi~{)%WubbpDoOgslav=ZK^slh?<?IOR<G72F71X^
zx8(!-7yX>L;Sc-<`Iu*gUcZhIM~GleWnhD9$4?a#pKe_M9eI(b3P3ABpUogTy{vvY
z`jQ2$L$*lsF#7Du=Ie)+@gl7;MoOo(FXjDo02}IRc#%~EFI`87^*=%UjEy1Ma0C|2
zy}}FaW{pI~)e!%T9$E=j(fDOR-Zl7gEQhu21D13uKXpbtTA1gNR3;umznSKT)q>z)
z1MrzY;yS419mK#LO*kU)mMrGOFl?V&oPLf;g~d|PrEPsA@!TN4PJ3Rv2daz&MIFf?
zVX4xllqZH*;3V7Uq9V7dlj}kMCwlmQxRcbKKk(8^a9ty1L6D@nymrkNa$EWDb<k~P
zbA;MMBoD(|Jq8ySgz4y{S|@Ev16Zw^9>ym0Q+;Ch&eCz~Pl&Fji>zJ>x;W@$I_Zt<
z=8m%&Og?<yOfUKa4*h@w&J@5PDfn?5%d3`zEc&XjYL%ibur76efEGy86#i^|ZhlFI
zJOQfw-c#5?ihxi_4Tu5&sAqx-r$C@wq}Cj?>wWh+D5B%RmgYZ=+A{)2<xJ=Fi5BQ;
zpEh_?R`mdnSdL<*zjjW@QdD%|;Cl{@wnP2tjS=H<r=$Ec&mJt41KFNlA_?OiYIAu|
z{^cta*#(vzXuv8dghm0Ld}`t9W=VSLEg8aoaCq3Pvwjtn;{uSsIBpiBjf*@g*JXd7
zh>~|PoVx2PoPURp{(JRM1^SvNQj&9g`cRI505zE|TPA6y1F{w-FfOTD9^8}`iMv4n
z<F|6a>BuOA69k}O*DEvyQIG6alZ*oclg_?v7XUX#MUpkHwUbQFI*sCueTF8MGH?GN
zdLCG~tcG=<sou9|70p;iUY;DN`Vb#Mk2Ir2i2UX0_CB6aN7n~rVt4FDZLwdsz#2m@
z(MFNWS$>a)Y+;i&Lsny<%1JM2V#>IuiB^it-2635swiwrb{5QYtERIp$;Qy|^$7lh
zUKSigJ9O^|JfCm+Ab85Tz0A*kRO1qMxnzlrt>jW`$G>RMb)SUGI$7uE{V#r(_Z>(s
zW$1zWAn(m&wwRL02ba(iFkvLZ)67<)@fl3o*v}6|c4U)3(~3u~2jhP(L()_9y7&~g
zUyeKayYg)*eU5ZZD%hoX9dr_;p_&Ut0E#^tk&JidK<Wn(h{{RWo%n1Vot<`hQ~g*2
zQN$w{azqILIeQA^P-()X^pHd&oV61%x7(#em#(+ng^RfgC>Tv{`$5ZTm<m!O`jMHL
znYIHIw!7SmJQB)XxKDuIONSKtT=(Z}?|XKE3}6AxdB4BdYJiqJl$Eo&ei7wO(S>Y;
zBL2OFF!=Hw%ML&<KLhmc)H{05qmd9Q#%PG!fiRpImI>woW}mcT>@5FU=kJ9wfHrhO
z`W$przzOxUBb)G?_1TGkwQCdMG5djj(Xy$9dVJemxjVP%&nXea+c;k^#f6V5WBEnr
zzG!|Jq;kGJD}4GGMoax)et^smD&m`oWrX&SP0wv_?%}`!tZ|vs0oQ!Y3F}-N)yQ>N
z<eX%|YDpAL=|Kk6f@d9oh1q(eBxiS|zZz8p9!b`rdaYPOqy*6h9nxu;uN}bRLCiqu
zUOH_8Whd1)ObH9r6;{eSjm${V+h7AXsMBtpHfvHUaewLim+KOo{dnL2dAj9FlhH{w
z5?>Bv%PADCDi8gDv@Kt=|6#ET<s5R<zumOpN8wt`{KFFAJLbS$TeN`OL?qa~?|rA{
zGt=DNKlq43vYcLU0?*+z&Id5rqrulsC^tf2kLYOMKoUzY6caO2(68t@gG?;Vo}sJQ
zd2uX<&Q0jG#M3JC)uZl@ntP8goPDgZ5->EL9NrEPd||47NicG%^ENHPJ2y?7_uFhO
zi6AvpA$X(Z+cmpP@753JUlJSCzufkf^wvoKvQqtW;0Q6=^vZ4769IR{;U=h?2u@MV
zRjz>ZM$FsRMiANY-6vVq3o-CWM0Ot3&OH$w{>Z`w?!(+_$`z2@E~~?o$N>2BBMU<V
z3Mw$D?K}2U<(yEHFUd*~Rhl@$K;|z=RjvzQcAR~RQ~CX*)<6>$wXp{xIsK#uWEj;C
z9lsMUIzOadnW3(CInA2A!7W_b^h``pOx05$v_C4M9_OOh&?PC>(w{OPN*<ESv&oww
zZJdR1s(8N4V~S%)70@fqB5~UiBMO@7YEViG`SUBug7b2Zcn)nkZncQnj7+>ja>E_s
zX}lBYhu)83!Syz1LWk9>z0tjHbiHtdwoQ=s030ucNExPclR+9xO;%v$x0(fjB_kjA
z-9A{l_Y|9+`N;x}D8u70DK@<kGri~eKf+j@M&*@$M1d^83t7j_uLR%t?KDT3d%pcC
zpYlbD;{+?B@8Zni_%~K`9(M;v=pHh1A6QT>b?*R=A_EwNkKj0%=_JVX2D}#)7%1M9
zG%JH|HIFLzlvZP~c1XMK5cpyzvBi1|O#J@*q~HqxMtSfXey%xe|M?r<wt+*JF|>Hk
z64gTy0Id%Jc4+Ib!4#yeA=C5^&NDO&&@;)Xe^o)^ApqSVLZ#^d0lw4ayPTIv@{a36
zHU%nIZl466e|&YFOQo{c5y$0(8CFL^!_AVO__eu^+WD5RK6|CtvvP;J@a0=}7pj+;
zj`YD+_v$?_KIkeMGb5Fpb5Z%73dPl0zU<R(iZfwW)TXct8c2-4q%!Gstan|LigYq(
zR+Mo}w4-~E@$TJyUX1=?2Ey-_2co>qwwZJH`R$^H6Kd<e=TDC}aOt<cKl;Vr!Kuka
zL5O7+TekYe{FQhI#h({hjwMjcs+{hwFaQ2NZ~}ZwOG|U)wtr@*VPh|J_jPG*i@wi(
zRe3A5pdH;{m-|^fP6sV<{jPeyU(o9O47u(*Z_hdci`^)Q*s+>jcF;^4vT-)P$L^|;
z%1~b5L`Xvui`0&3E!eM8?VbuUUvJF@`X&}<Q;RC1?X;hcWY#XEs^z0Y@+*I7jI7=z
zY|8E0<ZR##k#SeAlQxHH=*eer*6MgS6xGv>H^dtK1!&6Ahrjv#=Jmcm-@KoQA0l!N
zP-F1DVEQ!M>f=N4<>Hk>?8n#CFLRo4J#;)eNn#ji&!lH$wWyskE3~^#lvb)~3+HxK
zKv+a5vBr0!r5E*1>oo+nW4}z3(oDCdH+xY$@H_+u303rFBDHcXqf5JJqgH*+C?<D*
zWb;$m^c2Na>U!%LRCN#Fym=}yw0n^;>x|{{o(xFhCr^2{e;7A@zo=i0d#YjBmldc_
zh5j;$H<xp-KmQu1VVHa-i(RAs9^dA--Gf5M&Cjldr09fLwyq8GpF!8+CV*Kx<+)>2
z7<r<6#>2+&`(uI?jgt;mq=aNY+V4M9W=9|;C54Z#ZHwRnv|t<<>bG5IXlQr@syywf
zr`0ifVfj5voK{WJa!;D%#-3s+YYeFTFnpO4^t#?|!M+}M^FZY6P>wQDKlM`wPJ%K?
zy<9@b_LXK3mAzi)X@f~`%R4FP)xMUa<sg=Nk~6)o_^FVS%LcOhAZ)R6v@f2!@#rll
z#qMC4Qw7w_AeR*d;`6d<JHLZ0P}_+j!A~$vbeBA$Dj9>E{~+YN=uMa&5szJdPBX(>
zgI14$l$+GV+3%OtjVCU3D0cgH>NZLHQ@gHKi%@n6KA#GaDM^VJ+Q;SpB{SjMIK~-C
zpplPi-ZSlwcI5x=DR7pcR^Qy*C>Lq6(Z-$u!e|uC)%DX%9cA)9%Yz_l$TvVC2Ev3?
zNqS9^?K$oPQ_miCh0F{4<WP@h;VcyNzI#(Ldq`^#<*Lrx67=jL`^ysas8jo$G3L>%
zqsfT~N3#K=dCXx=%Kk0%)81AWH<bkM#kcl279+kyO(8xR1p=?9w6FIxmd(0s>OUcA
zd+q2~)l%+jp3*gHJMWqaeUbaCbV<q+@gz^qvq$&$aYcrV-Nvxi8%;VzQVqz|SRgFf
zE<*u*L;_&y2f#o`s%OvoJK2$+%=7g}9gD_Qo5*=bO_%n*^CnNiv~j}GFCMBv6wow0
zfH7TnktLi|-xxEj@L4S%DcKw{nlfwlKYA~uL-K@pO8a=v(}Kga^1_5kT^gL*W_qc~
zHK<9D)Ij4&5rY4FnE&}V841AZd+t68`3*FHtp~9r?|CG?5rA;_o)m!mkveukU7O=`
zd-I9+`J0USI;o@ajXZI5lYTvke&K!hkEF{8L$-QZ9RyzMcw%=TRU7$Dv4*G*W41G2
zH0<nR;n+}*vlG(U$oZM*vlYK*lSC*KKHErT4rpm{xXDo){<{u=3Ll*3($C)={|5DP
z&=I+9=VA_5dj|kFN2O5$Lc(X@T(gvvRJh>n?zUlt-CC-0o{Pd0<~t-6WhYw4Qn8;{
zWHN(?KW7>U#T_HuYTq9<4U?%0`ijaHgn`;>-~Whs(f@F%`zOZb)IfEN@rb<3rc?rV
z@%$K<SbEZnzv&00<v^ROjJtOA`+mvy7XjV)Guxfe5bYMPUwBO8E5Qrs{4CI0eu*IO
zgG9#X{Vx}`Y^W5v&1NtrxNSV2UjGzHG_kIJD;RMzCH{8x<*W;J^1W-jntIs^JJgOI
zc%2jTWMI%Va*<Co`3R<t;_QC6m&gCf-@hwEq-0q}!z-SYKQF*%et;{{p@LwNS5E^h
z1c#tX67!btIhVY<tZg8lfFU*?naY9@LGbMIRFOUE`y;&StyLY7BR0*RG~{M^2hN`#
zCe}b@qW0E?d?mOuezNqA(L7%VSC?y%mGHse*;^53IISZYV)OesP}wKli3|4N2(1E)
zb4>~yIZ9N~A!np(<702K*)<Csll6#r3Ctrqa`L96i^<OiQ~R?C*C5`45qSqIQIU1|
zmp@7;l$JKP2L*~By3RSgd$!3T?Z+4G`8eF+^|@KCo$iR-L+e8@1lCmW&zlXd?OD2N
zg{g33{3-77MH0aIobWW>3uwUEZ2;3dU7r2(@-hNkcyNUtKua>WL7qTvuRah%bcYDi
z{W_t0dfjmumo59m1*nJ7mAG`mEaP$=F;K+uxt1&s3~6B~gmP6S49?ezjvDrX;jD=e
z`<KGJnp^j;skO-ouUSaz8G;MHA|)DRe3}}H5zJUJMly1rC($|k2qU4enSgP0?`cK6
z`Sx-mA^i3|RdvXfNsXa5>5X>*enWffZmM$Kh?CLE;mRDZ%v4;8oe!-?fq-?C1JfL;
zU~yrLY_a|7dN&F8R5eTK?|T3&2W4)*<avB$ZqmPgbVfwbKF1Rpc#Qy=$ehv&6;8xQ
z=VQ5j+Be7pQoq)FH?kL6JoH9$RF+8+UR&;bPa#!R>UOXG7WFmWab@v#46WB|%ru5w
z;Xyom__tjh?zx`XU=K!;Tj;y*#gp35J~MS_{?{Mgg^RHIyFZS~^)4>HtSwS2d^C%z
z)}&@yQQy3IPhhZYVRatJnTb~<t-1_9O`ZG9m9xBA^z^E_eUM1K7hX5L-gSC>duf$_
zvZdPlbB#q>>6FdYb(_@j=efmN+~3H={IolQmMXvQwypkFqIJoVQBa7zB^71{{pw1V
z=OYII;5}r0<@;FBb6mwKya0p0={dw{GMPYNKfDSeLf+%~k|4Oo_nVyswraG-YFf`C
zx`y=U$vn+kOa;}-;BD^7#hbnX99N@K{Drm?(K+2l<S!mNZ?D+qw@^wo8>KKrx!hM-
z&dAjtitU%MKxKY@tW;0;-l?vXWK^2odc~m2TW^p-*ilZ)Ha(g6{I9)*s{9|)LirNR
zBo_WSnjA-F0ipjcUtbCc$(w-3x~O<e+N$ArPboZ(*AhQ}mI4-(P?4PGH`fg>hZEd3
z*Vosb^Fp7!r&1B}`H`PuK#{1id+OBtW9FN&OiZNx*7`1m+&$qw-Mk|BDQv4Rl-q;y
z)bA{(b}vjhgZU-%6LoUEwKSYJhgA#v#SEF{Da871T4e@__nEF7Lv;ncrHuHw)G-8>
z(uH7r-4-F&7iVq_Ykw)gVnjMnSx-beemXq+?>iTvr-b0)QT_ZX5%YC`>NFe+%e|Xo
zvIyUfODMj};eOx*I7_=760)H=M`uCiMQDYPQfZ#hKaVP~c$)xhy^Z|kx@Zp!6F3{^
zbz_zwV0Kopc3?SM+uvt#*&2U0`f*_62Lbby(%C+iY{JJv)qDyd@*wOwOyza@boN3f
zA#9bW4@`uluo(Lk57&G(xEx*zTRZ5E7DJUCU3DVy|2&@lT2Y7~Vlje?1#77ooD2cq
zfmXOx%tJVE1~^ru0W_NS8MxiKM*?ToVNi9M1iH+i8J1RO6C+pc9TL4N>u<`Xsvksd
zE-A)oIM<<pu>-%a%YVF}LIl4g><$~XTr6OHL6rgkJDkUli&pokCwZ}_un2H);xtug
z8a?)q*G*7@i2u=y{6{+Grz#8X9Qu}Du(tqsbSVV-=y`VAIrnWoHgxz-citS`%s<=t
z7Eh!?Gr${{;#3jXA@_Ty{Ov7?(8HM^{6#MXNs!Xeq}B|8xWY8eAfT+$QUO@w0)1|c
zn6i_+jev*#A8Xj}QoL<=c>jj+iyA2^V$&^Fm(3E*?|VoY0zRKZ-TRi77Uep7!_%i!
zAy}lbK-kn{=-kl&;^JQPCp@JD)y+FVNcRDmn6V&vlV)rcJtLzmoP;)B^dwGW)*GjE
zxccc}H(zuCTy!!cS<g)tTdo~{9hnv`=wyP~^9^WWU2qRkxemauax}}0;yBFZ{ib%o
zJtJ`TGF;}0^sVEM{yrdwn-COw%*1ec;m%cNejt*ETGr@&S<@V$!pofI?d7GaTs!LD
z3=|a#9i5%&Yb$?U;r~VX;Ezk>h!*m(pZd0v>Khta93~N~2p}nFAcK*jp#hqgH<zS!
zVKs|y_!Z8hn7!Jrel2e01J@uk7-g9GesYr^dbTrKYe(t<jOA%tEP4%89A;iL0F!qv
zs5Kz7&;W{-V#T|k-~*c3J&y2z9499~PC@8B4WMeuOO%rNTnb#GIQFK?#SP4d(zF2N
zTM#5&#&(Z{n9CYo8g5G%ep<MBz=rF3bLCMhB(*gGnjgVZ@B1s?_W+(HbY-9Q!5Sdc
z4dHSI-n?#m+!ZE$IAbQ>plH(cJaJbs@Hw531=6q^^XhLHkoL=y&E1|m{tSC^KttBt
zsP=*=1lZN3t1X9y?*)R`qPr$566=D!K~5kG=?9pKJsS37XZT6r3|zyq>QNl^w?h4|
zTP&ss^(Rf?{6g*^An$>VCT|aDmlz;Vmqo!xmMmxv9@~p7Gb3bA=bL73I`vCh%aO*N
zm(ac+<O^4qHMiK%7ox_V0gI6nuEj_uzysJ_ccA_J+z}I`R?p4Nq7Ue9PR2Hsvn0^G
z-&_)%SOBQrwstDju|&5XX`zDEeQAaXFb?d79Z1}<1m0x9>Oc-N44@l*tK?F<1S#t?
zbIt{(>Fu$cL$994ypErN!LuQ(DjBiksLsK7e#mn2A%|HN&cS@fgSlHk3HK$l8Ov&1
zKhYT)OyL|mN7e6M(_+W<TYkynlKAHOF-3KL^gj2{bf!3p2M~@V<jsp8>@4XU?gCnQ
zBRY)1+TbopOSRRM@^wZ$Ksx#uN}Cv&w5uTQ_G7<y(?4FUyznKdW;=KU(2Adzgj3B+
zeRZCvkF;uSiwP9Ar|dpR4Et+$1-zaFVkfpQ1hr<Ujz4ulcG_OUc8*au`Y2G3Fwu(z
zdhIu}jaHho<W4PvsH>dk+C}$RrhrtuP_T52oLIZYIzMOz)Y0?`OKANORizRyUKDsN
zjIHbgh4RPeN|D#!<2U<{PalW#jo)nni`Y7>7?_`reytn8(a{{>(rI|G!h$4JbPV8o
z!%$N|A(r)nm0H#hL4X^1+F`E_YOc>06X|zEeN$@v#*1|%Bl;mu%gubw8?08=MtJCW
zbRTm4+)jXBjKR<Ea-!iB`Efg`*xtc%XF~EeW5e0rypAC8jpq)q=Y9wB9RhbrjbiQR
z>8*(-Lp!+{PuwLG()r}hBLvsinfzSAd3dxMjX@2hf?%+_G0;evJL|ydBEbMR7q4QF
zTsL{m1?+P{8|ZcifDqc=s<Ig4@!$Y*3Z1ZSmM}f{p&0UP9CxQ}Ql`nGc8(-ZV+irP
zKa}x)2``oaukmzON<iT;>Ipz@F`K{rRR>2_@`uvt{zCRaPLSw<7tkL$UYuBX1GB4S
zg!zH{bK(DU2Zy=942q`$Rt{0NF&{nC97=aW{RHUHM4&Xy=^*hcc+M9{?!J{T&u#~!
zj6{65F}dr~jHBP0!Q&8zUvb9}2TqEe-3g{;?WzHS#Z5sJlnkYEwc*zz6V}H|?RV*O
z#6#=H7a`$>sG_WZ(rkzn28NaFW)sP`k28a|l|RbRXHHs9BD=#n%KqS&*l(P-PI3su
zm4Y{3cNyyj9D{D^djyNnR3v$1M=B5b3e}nmXJ{u-Ox1R<y_)ZixK+Fo8ebPZVsVG1
z)HN@m>>Cmxc?I^cvUxg0zhl&*2gA}Ppd}imu$kK=$JL$(gFG}tsG<l;k6gch#(ob3
zHq5KTfEde~M2k1ia0#sj=eRn>jb))Aa}bcvX;aupNCXP$NJ)j_BwbVc+;|lfSM+X@
zeRthFTG5L=dkZi^^|uAny$7z$>P2}t31iZo!BHndcM%Z<hT8w3FaM3JBbWmWDcyrd
z56BS58uZIv`B9H*Cl;{2xe9FT$cq-)k+DwYcPjzXpZaA4e#h@p48hhwV=fnOGVo3=
zA|P+N!6g;^#1mD+FUjZMD~HWC=tCVGu#?CuI+o_Os$MIhp`(vZ{k)5PImivwoGL*^
z^<@n$;t61bUd>}uzTm6Q#1aS>zHu+8vYpq)@(Zyt!l(xBWuPajWJxn$?#M_$*&b^s
z0I3u26m=@iRP!)U^Izm}8prO~EO!L)G2Yo?b-lizV=)>V9;?0P^?!|_U>w@i12Lb{
zDbgFG<yr*R<&k*`O1pt6gJIRawa3!4Aba9tCl^@XldI1_DBf2iMxZFZ9oT#r&<0$A
zrBAWBqZ$l~6TZr4PEtzz57mq>2DsswMRt+^p;^T|RitH=xQk5nUM#CPrve;j9%+wY
zB?p#4v@9JgM3oq!sN%jrqR&AIdok6!aBo=JJ&D403x%|)RE**=L77&gt4-C)Q=}$f
zf!NHCA^Ku_AQjxsflrbSyH8T*%A%{_y`qCcKAn0H0eSEuue%<MFXV2Hy#DqXxJM+1
z>YXI1%?owwWr~8dLz|{?-Th`Y47{HL@_IB4+-@6q{$wrYJxw${EP+~-qba{Y$xz%i
zL(eB0oX-J-5IieLl&XQ!tmZR7(4P?6Bo@*l6;D&VAiVYZe-()%!2Ln|fYd#*1M;RV
zkR<dIG>f~v@(AcC_1A+wgiH<YO1IOig?s8X>(*EJD>&baWn&IjM3;gA*B!*_Wg`7Y
zVJSXjQOqpTCPh8tX-@0uui9p-J#y*~+2pZX5blj!zDeeGAcDfV(6g#;t-)ho&p=Vu
z;N)^PEpXo&ZLN%BD(t!~KKa<m+y;GUNclLE(zD<It-Zo|lO12*Fl;QjP8YbaXSPU)
z+}r49F?!!Val*B1Zyz2eugehd=vbJiC*`ph!Klt_JNBz<e)gBX<j<XfL*}=E_VdMJ
zT7%Bu_OG)*X)Hc$DsT3Ceh*>qVL}@LQ=57Q-?)vNy~TZZN3wGP#2^{M$C?TGN~)g%
zim9Z{F<~X?k7>wDk2tf$kgaF%sK<?(-goxW{t|e5X5N8opn}3o7ZR*5!Zzs&1UZ{P
z4}nkXR-RhR5|;sn9%<ma8mA@NGfv_z?uH&<_cRIK{Yl<7anR`-8eJmf%{N`GWw6?d
z?4%G?Th;rvi0ZFz{4cM|fLLx)Y*}Aqg%0)Y0R^KXS*twKj|GN{NABXD>|JqDeXIlv
zpB9=dqo&R5ByoxWv#^nmy-2_&fjdj~sxupxv`kd25Y#FK-&OEWIrYEoPnDL2XY==K
z&$uUu;YobHXAC(h^KnP+ooJl;;<pa~$8Rjfj=))-qpKbi;xF!X^7TUjIzGKgSSGE!
zgh$Lh<n%I}52rwuA5ji75A|WHyIQ;*9LoTn4=F%#{GlZ7+h(;2!=e5T#N+YLBi_6{
zrZ{-_oSltGAV@Cm*`)-S6jg4pRUs%5SZmG$6g>nSb`)i^UH|ly{O%Lv$$r(bE`$(Q
zL)}y<s7%VwO(4pPUdIoBzc@sONNsS-NB|w1qAmWLahj(kw+m>cxS!|lgKJP*y7R!Z
z1*rVEQ?m#ZizBG$m(sv(uey-F`q6Ij%_RNV*E?_Cyis=#xQl|R?Je6*MJ3)e?~k0l
zvYX=SmBgSS?{U<U&r8`(urvCRE_xV#v+_*|0~M=tv14O!+0L%eMDaGHne8<&)lN<~
zL(er$C8ZFz*`?7#7aM_x)8lg2?`V+wwt6yje+FV11y1P!yka}|`?H;t$@g|BDLTlj
zpp6=?EZSYHpZ;kh_;2mr1@DudMb=n{;Ry1(c#a;KRAD{jbqsuFF)Hzh(~=4l2bC$2
z>*P(GV5-LipWB;->i$(ueFwJ(ly|UgK+uQ!ZCjg2VI)s!s0~KI9Sxv<EgZyK66G}?
zvZnqym<U2?-)|AMlD`{DIjz0{3t+Zb*r=Ie4)Mz#r%tK9U}34A6jvhjOd<?s+!HzJ
zpe0A#LY@N`lf%g~vdLmJ>2f!_1bgl57cQ3&z2MM2=|Jc0Jo=uu-owR@^v6M+Qn6KQ
zGi#ezYyHhKu@RnV@f8RY`3H&8;CU8>KC(feBb{8C15*0hJ=b<3L;MxvIt7|O!mb^7
z3#VVUbPWtDGCh%RHLFUFQ)5u6Wqv}vYCzfR>h}2wD7?SVv$y`E&iwtKS(Hn^ny)rq
z<Yd(>Epb#htiE_6bEouYG%>e2P}*eUm=!00*te%6WqygO=&)d*hOOKX`5^WhG4gUF
zTbkWzZOZXvLn&PsjiUGvz51T}Q?jdeP}Em*{{TwVk77X~IRM?5v^oc*4G@9rZaf3o
z*ex1jvlyPces>q&f$-rzkkp~-Us`y<2<o@;F2$<u$rvhh{nBY%0dEH`swy#d`cUr!
z`W~x&*2WkuAQZ-jj)UP0BnI-q8s`o)sH3QUtTr>MTIEJTGGf)@81Q^G?4}DW@g4Pe
z=llLlLm9l48B3gAp-so@KDn!VVjtcB5q<GB57Wjn;<+(sR*!~-84}ia-gw)Q-%mZ>
zS!`W=DsV>(83_pqRUo^(7Q~bkmfzA3Syi9g!<9#`5hQi>-Jg^KwNQwfpoYyt({mE&
z4%_@sFa@y?nyvyDIRR6-|JotAaJB9dvfOmi_g1rln#N<dTBCc4I|{u}Q6WUV&V`}l
zXgqiw#G~wyQ<t^Y*vxJ@=ruIa0qIOG=uT7}*S?U0#zO;b@3FAvwD|Kb7rPyWzX8*~
z@38zR-{^1^kKQ*M14*4bNsJ7LQZs?>9~SN}gpGaj&U&slh61aCye7ByWDm9Fby^#T
zJ2sT9WXl@7&%WJf>Jq!^?$u#bECOxVtMU*b)_CArVp!=T9;;d<HrfJ0oE<g3raMS7
znqVvc*!c#@Jp-wVG%xnQ0?)_irFL;f(NmC4@D-Mn2d-~h`Q!H(lwUhi$5KTTfKe`Q
zW=yLP1Ibunq50EY3BA==0U(XZO>PF?M`2^SkhgX>8S^WTgp~3%;)Rh=ajT{vIl(~7
z0|wR4PIdRj?9O(0<tc==prDV1qGs=eaY(GQoA!VBRw!CU!e*2+bvFHsOcp`HFfg}l
z7HEk~L50P~`*;hCQ)me9gm!NEn<KF~W#7MLTajW9=3|AUNQtV91*9**)9Z^8ad#hY
zz5ZU~wwLrbpbG4eI9!Baq0sJmf1(<fZ7%K+G*}#H8ODsB3fS!iv)&;>Y47hU<lH?d
zdLrZ%Sg%@o#BcFK-N!u=^D&Rq(%`10)F?QFBuSoYp9ImN*=ayg5jjxwlO*HlHDU>N
zffy*o*7i~iq;FoqJyt9bJ-r9ygl+kMNaMk+MROwVd?>?4Dxry6Iw{1xHs30&81_*x
zT|)cBPx1iN!*g*Se!Mef2F5fd{`FjoKxJz(p67<Vl2d3X4CG1h78=V6Ts#uc$%X~v
zDsjbo42`**TZU{7FDPnA-)Jr!-ptoIh}Tl9=5z}!{Sq|px&L0syFmuCRszaSi8c?&
zsfk}%Fk}~1T96)^h~qd_xPC`?M<T2W7@JjLy}d|I?nW!m(Eg?f{C%*17mR@Zs#fgM
zZL>NE-4B=02XY-K9=_n9zr&A#B$d*UT>L<+Pz7Bj_ceIv26SU3(Gj()oRiAizn4xx
zY&pmSXwRoHqiRTve!QbslL=vHs}~5X4V{mOL1k5deS{HwPG*B6{M#Po2DrErDhALe
zO=3VpQYuagwog}fo#p<1{{3P7G&G7;khY`xI;arVP(QIuLdc*l+kBQG8AMk{2U!&i
z`)+&JSP7xL(fS*^HjkvhN>>VD*k=%1%s@`QuDan*Y0EDfsTb%P8rcN*y*XHM<GW)5
z;5I9xugkOM%N)E@th)t~0npoh1h>E9A#fg(4~S3Yo}B+`Nq21Xy-^0`aI;Vci93$d
z{_L9auMS{-+L}Kgb~6FCNu#(*ax`LzInPtbOq-;CfPxj)j_TWpURpm@xM#Yc`BdN^
z2JALL8esH3Cvvyc8S2ssB4m3$gR;FxX*dhgtMj>jP=ej3dia{3&Tc+6PN<pEf!H;|
z9$PBz#b0U4|5OrxlvPsNh>=RERbDEmJE$lzKzlW~bYOU{v8}?HhO%@J`Y@8HrAG&|
zZ)AspX=NCgo2L8~iT`JTnFF`^=KM%4Fz;nJ2|Y#^H{zHHkX!--7{N^6G2}yUY-4T^
zTT0(P{gi3Q^JUA~Qo27s#b3(1Ki`?(cLiTI%lKQt?`Z#7VZdijRC-CJ<BR+MqMolo
z6ha%yZ`SqSM8SI;pvO7?b<f`8f0W06yp0cv1Lpts)4x~w|NpP~-;d}2r_V;pL2MU}
zuYvw_E&Wer-T%9o{7l5jo}*PmUW3#f3NUmck;_J#HZ`>^>NnZ^H}L$AGBd{((E=3t
zCnZlr-G9nmnpQkD?@y3!xwLHo=IBiYfbLRLQAxP&V@h$EFTMB=SGOceX@BY36;MOH
z_ZMN-|E(NlDnC5R@uB3yeAPU~_Dvd2y9Hee3JMbt?k9iR^n2NdJ^_oge6>se_dWlg
z7cq*67Px%v0jw<`#Avigi=(y}Ub@3Vt3b3t9I*b#fB+e|g>FU?sLwv?)b8OteE1Z^
z9n=Q~2W#6f3h+GWE;9IU761}JxEO#JDhYu2pF!SNuca}F-@xq>Cpe6S7ihrhU+e()
ziU9vJu&iI#GHO+H6`23;{ndmmb;f47%sC4pu%g$A`CZejXA({pszO6RPLGPkd_&@x
z5E#Rgk2Hs_T<=ItJ>9Z5-V=cm(gxCqO7}^-CZ@FkwQ(AKw{9P}e`<n7)Ar};EAgHx
zYl4~96hO6IJ)`;iA^kru?2zKBC2e2=9;z#4(Sk4=U^+hnVla2>Mz=(_qK|uXVe~qQ
zjB{>?$mrh*-FrI#*qFL>eZWOaWEh_D!ToRrSXW)@Jx>c5b!r5<Gm=pLwfhWx;%Bm}
z#1AS@fD&iVO1EBEegaQ?s`y4<<4ZD|I3nWNXV6$8L$d_kk${WW#Kv;Ip&H0ekg3W*
zX$}MN4SjR<P9Um^u|>r}7oGaxtN4$Ps`;bzpIp1~JjF;N{#lN|mkyZ_Qe3g*F8_WL
zWwqsmBmXf-w4}hLm3J;|CB-)%4*on{ZoJ<+s>|^X38Z}#Ks#1F&i8yZ--fr$?zgfK
zc>Pb*g9@U9*r%NLyy8=m!A<n+!`N{&2aEWAkk^(#t1Ass#EL;(YyceIFuIq^6HqG3
z&cd%KSR@J4!O|jEV>r|@q0!ONpkj~&Ms)nbYv3dmr5>iIL4AV#_%S1`d|K$~v?dco
zJQpOV7Z8;^ch2(zvlSXnnKjEk02)*RC|X&7^WD|zTy=SSyKp$LoM#NEJ$`^chc)m`
z7_yXscmU`ReLy%hXMkKy$D{Akxrb==q5Hh$8Nln@x7;bIida=yzJLfL^toM$14a9f
zL#UWj_--Y^_VcXGP;&t%GvRMFHjT5#!RB><KJ)i61{-%Q>{r(NeoKGJW?&qK!+ub<
z3}6$tH2xo}I}X>+gmzpk;nzlX^c<0Ra)1<cbCkNaCQ$wRV5-JFOfQ`<7cgS{3rei@
z*0{ym=x!t2kC3UVp(kwG-wW@ra)rRG3)Qe(*i^^+W(4zOcGGa2fV;aB>h<#JGctK^
zw7{4d!->p0%RfO7R|XtDa4O&?3_{0`dvkr!kbc+b3DOFda2g#D!LZGrx&d+!bn7h*
z0{>xsa$R-F-m6EG*ll?Ry0?+Mg7?2hs30bEQ5zLBSo!$4u3&SkhlYd2Isn2Os;5&x
zw1yyw4_S@vbeYm8g^WEVsi4pEAT%Ify*P!SXiy{#jilnB<c#K(cwX@92LU`AmY`{k
z>m`AX&#=stXSCj2=yVI8?XmHLU;-wo;NW1HVc1aE-U?Kn70%A9mhO4U@1P7XU+()X
zsa16gdVzH9IapF?C@KI4i@m@+=@Lne^QP$WLJftf)}#JH5}yS3?P7#?8kZ3)uH}J;
zxv(v&S119Jym8fuj9Q}&!kr<}F`&fVbOojRnU1F&#40K%BxC?g=-5B>5GS=8X5Zt4
z6?z=EaH<@p{@XqR#XU0oi=<#KE)*>SI6=Z=9{aZHr|nY^#NH@khJzQ*oT#zzhJGQr
z#HOwW<Lw#y44Jjq(uoN?ifkPYXyYK?I&S@Oe$|{+O0YmF1*rL*H^@x;6JkfQd!<ZF
zawZ~qf!50$EnYo<UWBYOISf}gLCE`p4=uH&MJX$P`{9?zXBW>bvN}j|<%mz+)rz&%
zpa&^zXLjzP{^i(myEe&<q5&8Fbuf@#P{qB;{_~RIaACrprtA@iStOZkFl}d34`7$=
z!Y>*D$${8DGEtTRt}}+^@<6M2m)-4c$m8W7R<(g?xc;<FhI$V!{ml2i_mSog<9!2$
zViiLB{juEW-gV^jTzINy#3`8T#UE9<s50f0{Ps-f6XxRC<wCIzH`Da&tXw@fc1Me6
zw@J=}&6htWHOPR4^?fxu{dUm2FYdW83v5MYb<ql7krS0Zl54{mcJIQExrffKj)&2P
zfI`Z#59Fksc@C%Z*QW8}GJ?4)0WBq3mBG4=u5xd#95QDg9iW3$ta=g1?U~L#v|X?O
zjBf(YNv&H&f6~{kJJXqhJA*ku9x%cPf>_Cgugcm~`Mrg&>@j{==xHu}yaAGC-s(gD
zfBUkR+5xqjBlr_Ku_6oJ^}OrF5Wl$TU`imZzhkPVTI6Hi4jc>exFYRpZHQ4O;L#BG
z72Qq6%Az8cPi-kj#Y{l_Nlg*Jpd;WAMJ$MnvOL@ZqbeM5ESE?4-49;9oc3ppasWn{
zuTVdYrxF#wePJ2hgN*UmA5)?f^mlDIV#|JE4vlX6@4!`SQI0A0Ou(5u84y7{%)Mc1
z2KN5EafLP-&=wO9HP^klZ!<ctUVZSo`9<is+<}}A&fFuOy&|L{#y==<lnT8%cy<8w
zC=dq7EmZ@y+cjUiI(%zZ23jpP7wDEpJ8T|m%<8^qlvWNXa(aag<~3#L>`DuejY>O#
zhyID6rWmuFvFkhy0DDy+C@lr#MZORWuu62ljxib+@kk;V7e;T>X|S3~Dw_YvfItje
z>QQk4u~A!#eUH%4cxgeEp=!Lny^dTCBM%43wB-+Oxeg-jzEwO2Z$Do%0<+rBWl7HV
z>>eAQQLeavEhF6YY8xODM*1)^S0Hfgd@<t{HMRg80k?l4h3<Zb+hSC+(jCkJKH&op
zOZZeQ**F26qGGhocwQ_X%bwj}Jf)<(-ix1M0AyrP`dKq!#<H}?Ff)N`R_aO*EN_+c
z_ob8ynZ<)6w?e`ME*9Xm&jmJW+GD3MOk#g~YFBY6xGy;?0f#!Bs`;;y3n?0;y;Q|Z
z;76eXN`(b)H|HWnFhR-b=wwWx@ihI}Cgm?M#bbU8Hycs^Q)nt$z%)`U9$LpMNHduB
z5bJfZ>0GPP?-KI*28@OowFIq^L1NnmD!x5{$9@5PE`cy3+Oxa4VefA2XdtC8VacJ<
z9H5s}Myuc%oQLips?}2$gba0|Rx1b`2EJVmyVqs3J5}0>|Kd)$D<SihwAq)Rsu2c|
zB(f#ZNO|i{hBJV@IHwY1ao;a3j(&7n0tmKn{M!wlYRG`Y9-Q%08XCFJqP&WYafoAx
zAS<9VmkO|1^rq5fLo|ea;A+G}-E|dD(<hQJY&>_UwVh`|Z~)keJW2Y}T$Kf`$7&S!
zj!JjI;|!+`@roA@dMka+A;L1rJVlUZa$EV7XG#%QJPb|rgU92|P`7Q5_UkmRU0kaS
zh}?)B_|`6pe)=u7-d+pSVydqr;n^#cn@>%*K=z`NE<k<|(!y#FNKhekVd+E?Ru%CD
zyQ=~xS7UpPHp5G7X#yPs9o_Ll3Bi1(!6l;UbW*3`i4oK*NL#RdUKnCQzSbE}Andp#
zT#M65CL^8`)Vm9UgQ%XJG+|=L^1G3E?-A;66!}!uc^rSTUTD$^+m3Sf23P`9`Rq=%
z^2hLo2UDo#|8AR>dV{nVp$L*ephur6qhD)>U_Mbt9P!Df*2u@vH*_O(X4?ZeSEQ@8
z*rVl4OY57feGp?XE;<L;?>Yi2IX&x^-7K=MR~pB79C+Sj@*QM6;6X_z?fQ_-T?2as
z$TRU^(5IW()&Crdg+9_}8)_3l)Ue;gA)%p>ugp6VGy^7qdf-`<fB1$K$bi}nS&9@*
z0HG8lYoixE4C_5)M-RcTTRz<fJUlwm8%+RKn_gc$_@sp~g^G`Wao-v9eJpor=Ov-8
zu0f;Zt<SAqzM$3e$RomtVP30=0t+UD<@wMm^^f$Cq{5;h5Jgc&5LGaPj_1prOX*s!
zm&3UW*>oUSZGS-SF;z1EiC3wG+_^ElDw${{hb^=Q)%X?RDE9hv7a!O4K~$hg&x=SR
zi||SAKxcQ;&cerszRP}Ax94Uqk>Us>m7$mSW4X#7I05B}hI;bdxo83=?F~g#kZ!IB
zTgEDM|Ln8nGb|Msa(kanf9~*ZfHw<j#vKf-*5%mRW|o0}HavfTDp)jrQ08&CMYMI&
z+CGwqO}7=1G@WpIJfAdmZ<1Rg?R<gQN{{wALTMZE@tR?Hpwhv{37)}3q|5aS0oA5^
zSOKVlPHP$!U|!(0%q2L~8J9<eFtf6>?v@G?j|?xM{CFNQ*Bo&e&UODX(08*BaETw+
z15u1Ypq7A(w4$E#VZgHVeYS^IJ_qfWjzD|(q#toO(BsFvi$mk9Bz`w$QCTgG0Q0Q!
z{=`Bav}z!WV3m`XUbs@#M0fwxA%GTX2669J%ahySZ4Nqb;|K-XvVa2%qq>F`8oPZ!
z0dO&mXJHD<Qq?F%tk1+R^9DlRu0MiR10&8yZD>-<zElH>g06x($Sf&*bZ8*>{&2ke
z_#`IWCX$pD#|Q=Uu`Et30aUx?isfYvC$!6_W_j^0>^bfm1RG**TgARz5{+f@QQjco
zHePIT!h5kPf7dwwx3d&Ln^Vao(6@zk;iHy6;TOu%XA)X{fo*e8QAOMp3byXI!nmBs
zsUbu6ACHZax%qvBRD01*C-=0m_D2EK-v<WueMnvUH6=@}-hqP1C?OX}*;Y8$v$N0)
zqzIf7Y;VN7+ONtshJ0O?M^Kj;OW53u=K{Cx#7?KmrSVA9c8W17?+}Wy3AwvGDSf|s
z>T)15N@Gl8jZlI;{EWs)?k0$*k~NLEG?ADC7FHKrwlxUaZpCd+t5aRl45t)x(qS@K
z>hvRl(5U5VPdfq#<Q3=gqPY=qm!{o4g{41ORgSjQN6SKw$%Q@9n<SH%^*)JdGL{F=
zW|*o{l-SA!m!YBITSk)z;*7B$+Md%C1qY^0I5@ylIE+x+c|ZsQf#vQp)<HJ%bX(SC
zJHtZicaeXCko=%xZRfBeM>p(H94XZwTluJdn1>R2yC7#f9xN<gH3JYF*B$;O&V<BP
zKBD`ggEv9MI{5nL(g^?MvCZxe3!fjv{um&Zft*#pHhKSSH&3Jckk3tq9kmQpg9*I!
z9yt2DwNQ*s{t946WcR+HjRWz3+taT1Aa|R+S?|~YJh-Tw4i1l61<D?*HE-gOi=A`(
z>_DHnuzB~cr>#|cUwRm8_f`v*4=?lic$H$22+++pwvvO!%=I{pS@DA}ff2lX4U73%
zYltLWw7CmQEkl2eh0%z!xU02FK_NhkQOVa;=?mT7MTz7ve{4vwBxohf(KKjyc7U?h
zi%iw{GV-|RnCJ1ouQU<F^YLr~XiySeoTFSi--HZ$pr`w&Xu?B2XCh`b#JmQX@h5o$
zXTo>yHGLHLp4D_`*CtFa_(K{zMe7hH_G_wSfwV2&)M;!v$>Ud=C<{HH1}?|(5j>KT
zJheP=L_<T1eZrsBWTn?Eo~=XZPtj#VMO}%JUSdpk@4d#4=I#~Qj0M06x)jZC4_7nQ
zOhJm5M8mMo5EbBkd%;%-rk$w!#o6}M)KLy5I-eo61IXJ=BG@%*BoK&<N@D90YuueK
z?`$|ZXR%Gx!<g3aVk}t~cym?PV)x2Fxw5@|Pk$YDR_+a*8(to4#3koGxL===k<qC#
zTP?&ql}vbOaM;cV;FUy4Qf~=b$xZ=knS_|$+t%jeJ4soeXY6CUkYq6Zzdy!DLPHM^
z|E8w#MeD#oiS>go9o>k?SG}Na)U`x44L$t3g>j<(h;c{=q9Tx($5dC>6N=u@(PpQ0
z{a3FRjs=_=8<aJg^*98)yf4NLm@CNzyW~$@_MMwn-=2M|A1BWvK5~q5Gqib>clqe$
z35)86`>d>KyJJvmo_=#M>5WLM5;K9r0XM}0XJ5!2B(ggQs3La|A-?~4N#=s~7-#BB
zzDnz{#B@kj7ib1gOV_|C(MqvMT-JaM&r{DYUZ56gFS?teUq(i`unO!-B*)q~!g@Q?
z$@n;5RKE<t2Ml@=-7}c5{Z<jQD++Tvf+Qp|=}g+jnJ7@)R9QIHtfyaaD|9u?v&51y
zj`2{V_Ohd8<3yRjr!y8>&n07z)tK~sT~mFtd?NuSc~Vw7Ix`!}_`kWmxt3cWI=}En
z?tJnkH3{48*-1l_0n<Pr2_ny!_WhJ5{qztURuapyx1%eGDlbi7PHQFt39m=8OuxL8
zsk@q8ycu@haZifkD3m!GbzMk#Ke(Ep!p>z1)S&y<Hvu54VJ3-QZL~Cl7%j?eXS)2;
z%OsRRt5Q>IR-&d>TP74^wDq3q_)X*eg&10I0lRhg#p*~aX)mnqcY~iXJ_3ocA?|EV
z5XN^<^&N}(1|H$vd;llI!a0|nDr)rS8=ilA-lyPsXR2!g;@1xO;dx4h_>U%=2oQc!
zv7^MF4VvLuLl2Y-lgXm{rCr-4jgvfwU3wZFX030&Eq*Nm;;gkq4gDHox_X|v5``xk
zMVfmV_mDYgm8I=>CyNUWda0`rVmqFvIrKb)Nje6X3D_-oX>_0L&h`?T=zVHZ+izqM
zhopnnmw~;#CKu)zp0SUEg9dJw9r;S{BG9mzl9QzK&Ern!FLZ?u(>oy+jE?0Fe{Bb4
z)NWLVxkO5bS<~5!)MfqEQR~lcoVqlN)dDG}@>ks-oz~@JyW!(#s}QwRMQI-P4RcVw
z*#mEO8JcpBWukID+f^1mA~b@f$#TL{NA9?89rn8BkxHSu`3xUUQ~(z0+L!mM1}k7@
z>FF4=0~j&cgMY1;{^jkIu2Z$o;;`U(T3*5Nx_Ob-xvy9v0i))tZL_oac-of6{qhzA
zCBm2N;)Z-;?`R_%w@X%T4j%0ZOdifTWq*73RAmN_g=7X*p~E_-9-4iC!t7dYbkVRc
zZQ?yd{*TQ7_63gs>f@8ID58u2Iw&{V<ruz?W(Lg~duX_x@#f<F$O~DN+3!jW`^q-f
zi7W;}$KT@>G^61oHK1a8OvD9bR;BeDN>&`KVFeXJ-kv%Lp76O2BH&yr=G|{PwtnAL
z`2pn+MCW_~N==JiifH-j>x*r>9U5yOD`g$JRFA?xAA2w0GR#+4{UHAX>w}eRFcyr+
z!%D`)27s=lXRo@$4F&<5tE+<RIq#La{==)tX0h>nb-{g+Equ3NI(c_S&$M@y`?HxC
zaV|ccVjDD(ztsYS%b9+7kOL(7eV<h{^s|guFv2U*(LO+kW~8J$PGiUent8pgxK-lZ
z84<uLh^c)Yy2@RHb?rdX2BJsHVYzSGZ@LbaS%|_maqd#P6Vj_rFSyxQ)5O+*N-S2c
zLO{V4hVDYfRu3M8tAHmf(B~oTi}q^Tk*LW=5DZ2gKYJ&+1*|R0(eQy5>dAzyKmw`7
z2JHwubOn0q^@8H#tQ!C{>^8eb1(1_f9m31@rZT*Y*~=Uhgz_$(DX!R6Ac-3^P0}+f
z1e0KjVH-MKUSPbb8R&Oh<!bDFLKX)>=dqQ0d%b_Y^9hRnBQt999u|qo>}Iu(M~cCl
zUq3$S*2i0W&l?2Y<52|14Nj|-9z49TmUzKJaI4+7=}jfO&0OwR%nOojemIcB!h9a2
zUm4?e>9!aI^(t(Asv@>6dT2F}@YI+EyAZ~-g!TU%rgsoS9{7pVkB5(f08+~!uCNc~
zvZZYdvK^Tfy`=j#!I<6)J?@F-S%IqFX?+oL`gS<FIMpDBT+2cAdedpvruLhH$t4J=
zv`bD(6R<?NPxK0a?1soS011BNO<@CIzcs)%A5~H>S>V=!Af=v)NzK`6t99=ydald^
z3;<NvyMJ;!I~sVnPy)0#$17bzkJKg0p&SuD#Ok~&5@Ka*n*#dOk@uSY^jyMhff~Go
zzq%KolBpoZ&l6Ga;lLr76n!pHa@@JKVFHT97f$ig5@YvFE4m}Zi8;Q-w~>0-$T&A{
zeoD2r1tUxZMeAHY1hXCebT)!&il)V<eR296V{UzA)@?QM6MsQ0<AcQ$na@}$lYS)j
z&bt>edMxE@nHOM00XL;&3xTyIvLxCf&Y>yJ#VJ}!GR^S^F>gAqvM#G)+OTd7U5EN>
zq)WHc6XGRVE3H(tEyDn$H)x6AIEcEg<KqjL1a1R=t$LVxawJHr8cd*9>o3V~+-n#J
zpJ&GF*qis6(X2RRZn9g{=N|&k&tq}bQfcCo?0f4IMcUCW5&cClJ-F<-Cj+^@*Yf9@
zH1WUOiT`;S(}0AjwGlvu<KYF!42ERWF&vTo=5wJ+5G;^a5s;WUwM!k@bMz%%Gt0ql
zu8wWZ9{g|H>nH{<CxK&m){Pa+qqvW2q^7lyaa2Uix)he2Npj+O0mK$w%OkD6Nin|J
zgS`!IKK~zkUl~=^y8gRG3@}g{DUlSAl#rAV5J{0P=`P6y0#Yg{EnR{LNOy;Tl(cj=
zNav#CK5PHa`Jc15?lJC%`|*BrIDob0obP<!=lRvc-NyUW{(d7FKiOs-y{HS}QZ#l4
z8Q2nXH_)=J5Q71PtaX9G%UgXi214f)J(CNbtGv5?MR_g2H0MC_z5jhAg^c6)fxCQ6
z+2SE6)C%H@B*mjSA1TxbF)JWacw#v3QD(kswQcGYAhsBHKRb^T>-F7^l=ZYpFy2;?
zzdy0-s$1i!=xk(2Txz+?PIr8`h<*ak0MCaT<P7h<`1CmXRm`55y%;UEi67*rd+~Eu
zgRE?8=lbhdIgd!=?Hngz#|^FZancz7!*0igF-P%7$Q-tYLB*(fQWIyE4d}t6K`8tP
zf9QzaYMk$r^reV<>iCNBBScn}o3Bf1N9bKNk*lJ^bFJ>ITemvezC9-4vcNn$=~}M`
zeY?3+q|+)g&Kh3VPNtTd|EXI3{jfahBOj8j7tOQynDwNzzcJ_Gns`}2OJnF{H*Q_;
z&)SeG!tt=mGK=Lhb`vhP5O3$g>$}zIT1^oTkASE;N|IG_&4`<RZpycn7Frtiw&h(3
zq>*xd@DOFjPz%=8sC3)mDdBs}p;UE9iu-Y<s70pQn~4?Q45878ZKa1y9XP^6`zY!=
zJ-)o{PKXF?jP5y)HM-u^TLqPw>bMBPWeM*HL<j&i_p2!d>zZV4>W4*yB24)J#bNOi
zssJb~lW8uZ0tvBrZX-%$!@eDlHlvCRaU(eTMXsFPc}z2V7t*shWOuG-&8h4$DGjIv
z-cn8!ZgQDXTl6jQ?Yyhx{-7n)D68`2oI%Xb{V`;~gL&ii_;5DA7Dm~z%uHzKw7B2R
z7e|vNm6m>2E&4=))^cO8j6Kg?J!CP4^M8xLe=m5U+n>GFu06?Psjx$QtsZBTRlkZ>
z_V_tudhXhvfYE5kf8a%d)uHFt+S|8T_hE?8Zl&Y4D)TmEY|cH`2scY+J?A}qzxqIm
z^e>N!I}QCh;{9;*Q1wRL70&ClcPyxgI&38$qD53n8f=v|+_vVv3B_vpnDM4Jj?501
z$CcMe?%4S{mEWAtZ)t*F2xq<C4|G4KbWWaqc>4|dEe@VOg3>|{{EHs-z7HWok>6_L
z&e5C7PSgRR)wYQDrU#dh;WwLg)D4NpiJYOEPtiS+F^u&XETU;*SagJcoOInld*k^P
z$grx&@9HaJo;An$qn2b&bd9wfzxhhsEa*>}#8y3`XsU$&eJ8J;)9s}Z@&EfR&X>Jy
zwHwog_Ltl9?^67Ke)mP_AHo)vKa!dMQl|fV!T(vjKfduWO&aZ%^xtdw|NPJ_4Lpd^
z<j2~7f5iVOctUQ!l8ZsVAN}9Wz<>S#>VKQ1(JmLkkzW1JpF<_|2PCi<-}m^nvG~{D
z3W`C$VQLG(B|?Aw<NtNh5}t6y*j>hGf9*{E>*sHCVchPWhY3EO|NJ@VaK%&~yV3vg
z);_evewfxS9ldkmpFal!uK4l8PZ+;hEdO&SJw~bEw#D3Eyz<YVgAG?4`brGvpC4e^
zW4LXAm=pZ-=TKd~-Ai-MpXQ$*;Q!S^X-*I&j(&LiGX`+9y&Cp?iVp9gj{Sm4j+YFK
zsQsshk{Hfm{p}|ALM&&B{j!pS7NijIPtP}b|9&L|@S%ANaBr=d40opK)V~g|g@FGy
zu%rBlzx2oNf8%KaJo2RpO0h_3G=tXgqI><>nlbI+&wkS|p_akdM2c5(F2<#{edk3#
zLg|+Byw<aL4|X^5j~QL}{^2IRi1>rmw4io-P%n@J5)kr*Cn1-+9W<Kx-NTWv&qsmE
zB2q8lLF34zsgG)vb5Zy5!KJzvJW9TCP)X+B)v7EdU4WlyLk*e8O6>ol&_v=mnrArQ
zw$5$=W)JDsDX8+;zyoxxLJSBpDdbY0^y%?ITcBWvKRs5)N?f6FcU>n)E<zHn(>(Q%
z2Ifi{@{Y}oUkje@Q*u}47FK$J+rVHMPzcIQDcW*zI2Z0iW*uwZ_fNNi&i!_o28F=t
z!YRE6f!b`E<#w#JaduBtEUMH5oi=XRw%#j=yv32Op0`=PoQ;+7DYQq{%G9#@z|a<k
z0KN`e9j_XZiskOUO1#^ddmI}(YnO?AalNXfAUKHdJ{ZaH@3G19BMV^%eUjUJjLcDv
z20_k`dF1NIfQHLzQ3`NTG!VPWxgIP|#sR(i^^AcEM{?T+yoeZxcO>%7W7C`g7LOI8
zz>@HaP`<OJ-Y*ud8fB4tKQ|?M2{k?|$UJDE=>tPbfkrVu873#TJS0RCxty@-H4Z+2
z>1*F{p=FtOg=BU^s6Lg<ul0`<niQ15vGH>Kxgvi3x%2V4SeGrUkodM84;J>{E5b^1
z*xu<m@7u~iNcg*jz}*HflA%rg?8z`VE|)J5s}_m+VyD2wEW_2|3CefJ+ZV6hibM?$
z#xTtWiSIG0hrPeGL2}<Xw^imavL`Rzx(;Jp<H*O?%aR3KGea?B9>YTxvAsw#PmzJ(
zUIrI59_bijgD{gek@e}-evS@-BSzV_Q8VDAajDHSH0l<hziNj$#Ckxj5v`1;XeKNV
z<dh_(WdvcG7vj$*lC*l7gJ0GHMql74W=V$81BE|656(Oe(9Q(V50HRxb`S;yv_e#P
zr~KSdOLGiYPH<|0_ZAcvF`5;pg##%4_zI74@6TriAW+zzdPDxmUL7J<6iO^f74mec
z6-uosKDp#MZFa_s?*yVokjf)l{%Z^VuYa=8i0F8U;hw|rlI3IlN?-!Cl4)ZAsS%XU
zx~Rd9kCYH5OE|4C?ar9&W$ruXA007Vol=o3wU`yq-?M<+d0T6-)9O)4j8%2Zdy)gS
zOiS$Vt&1vnOOszx<98knLp3y5wiI^QBV%U1kluA|3v&%T8(_T6W^JOTu<wlLH$+W$
z|D+g9ipxpygDOq(r_0$1RvQRqbcZ2=^_yr)p%hsXm<p>QT0I`cu9^&F#~GmFDr0D*
zqa$r*8i$<M0vjEGjU4HLY?gBK5gOV(){;T)U?mC?xBV%X?Iv>KtcXm(t`iL3!mZ-d
z{h709aE?a8tcj?M?8A&Wad45n7uX^Mx2kOWY>R^VWgl4C9dF-NhR%KAv!49eY>6W<
zpjJK;Fv1^<M6Z#q^%Pg1f)$)@*q0s_|6Ge+QbO6lw;P22*%LCpAa@=Pta}RJ2Cve_
zwT!R-aKH##7@B>A9kkjpt&(fKV%=?m(i(yY=e@85Hu!WdHSD-Ot8pAhq@JnOOn*K-
zSwGtVhv-(*`-6nVzKm47Nr(zJ({exYXVl9*Bo(E4!P5_1*C@_B=7`onmimH^U}@)`
zM4!fl%epJO-Op{M%VEv*!4H(Ksx;)Sj-O01HgNmq?oFJ%B41Eubq^FM|G0jaKJn=s
zlUoL#=$t>IiPUkBwLeE&P%`aWV`?0mLB1@V;-K+EOj}lm6%}{$JZx+oP~;eW(@Y7%
z!R}bEuK1*_Npan<BX%)@f!};kt|ENr)oogbK1Jn&J6Y2#@2b|!K1<^9+Z4ZDz;J!h
zwg!CYtZ(7MU_Mw)2D#gSNY1yhqh@;Y2S{uk=KGYjIfyyG1-23w*s}em4tw?Wrp)d2
zn*uc?((4}-ZXK>_zuctOPDZj<i2@t&Qiwe=r*OM4jE)G`M3W!G1}1c4uTtq=n8_>W
z@g=k6QL36>lVUZX#=j_SOUOorYo>UxW$kaU#o3>6pgQ!;H}qw2e;+BAW#yAw7L4<v
zY7t*JJ7jpiWIj1;Qjl$bE6eM8cvVnPaqt+xMODATTRT=YS(}g4xG;RD*W!O_aR>K@
zwek*GST3MDDu>5?s>3(-VjD`4Cg$ICj3nZBF5HvTd5-{L&8n;Kz{Dd0%~`y;yqRaC
zV}K7tfs!hwWZb!R`}*l1XKM^sLfLG{lNoy<f!}R;66$CNJr462QW~tPaf^zlD#dzD
z*BK_o{PdhJOaLUj+~+<JfnEZ-lOY9!TSq*9Q;JpTlyeURZYtlKxB2$=rr}cWy1A-M
zWBT>jjk}#w5+1#ps1{hsJ2WlR=}X>9#k%l}uOfaM3P<%y<*c&NdmS+csSiotspTXy
zdyz=rLfFPu*Nr}1tC{?+;N$;oL6lMH<q$kpH7he8PL&c%*EUPs=$X=)fOo3l#)d(C
z#8#Dy@9MKpU`~!PBwEi}ymt7|nlJAEWa_3qh&=ObOjcV?1tC=KJ~&v|@#vqi!2Dkf
z{NUHWtq3<RPs+!%uvxP{Lf)!IA95-NST-#QT>1M5?6m19PL&r*AiIjV5B|t}&v4N!
zr-Y}U*>q>-^)s>g<G!Z)Crn3)K5Y`pGuDgx)+=hh(6P_g=QdGY<!d)HApcUyB8B=L
zuBd{KbY^?!F$Owzg~KDO5PZ50&Y0&TnLlU~G{%*>qaDf0gDv`VCT>I-Tu_PlB6lrM
zD(|hq1x#EPaZ)^{oyK%ovfn;ES~RC#!xtr7=7Z0<jDNh=#*V;EWe;Dp-)v*N<M&WS
zagWDECB-q{dJ0V;Q>D9kC3kzSRe67*j6<oWzMk>sjzBz{f$8ASo;Yd3_lz>J&uaj#
zDCGcelCCEf#xwc&{0^m@({}3m00w14?{9KWK2DyNDwHz6E7TrFL#NR`E5@u=I5@(6
zcUC8DY$a7X247J<=VbyMi}D938Bl_9p6=_nb4F{j;1h4^{INXM0pg1f-L&$pEh^Ob
z%S8ypXZ(A&v`NAjvaT$AY|nbya*NAy7RzX<*E*4NY-s;EwgjDkWu9(>>-wyUG{EX)
zVWd|h677@yC+=ifPrYA%Y#2Why!tyh9VTQweARU+YIIJufbCm<#oA#E^V5qle5d<*
ztTUhKMPIq}fy?tnEsf41)E<3;fp{f-%x!mqL-W#?0hbtNz-3hFiiMC{)*Nt4@w;b3
zSreeTAZJj%UkGE4{kC4pIC2h^(L&yHQ6Kg9fedA?^e>f7SMcab!fK4=#f~*gh*b4I
zznGKBSH(2*kRyKl#`ZUL|BpDRcWD?VE7nsGyc1UW9Jpt8%|W&E%<g4v9~f2ZP#g&n
z%SZQ7>7riazVtq~5tp^HrW7xCNMO)WE8^)fY{@`2kuO|)R}j{*sIt%=v#y;3HB9yG
zWj2m82sa&wiw1eu(V|FP*Whf!-FMWtQ`uuy#)&s=r?@+KbFysEN)Ll2GNjk2rp1OK
z0KBrjV|Q=`7=2NE7h-?B`*0}d9{|?tPfvUPcb!c#?>S*|{d_do1@r*28syt<yFvU(
zDLw_fyhSIahS){3q=XDItKk3l7nSu9Hy*Eyx)#i$Q|GjOv|bYfALN`cU;Psa0vs1%
z<z3FM7kXW+sd^`qURZ6aMn#+;hbXq~j;%SECuTS52uy)99MySLL(nl^O*FvD7nt28
zdcYWl%sGQn>cAvI!iY0KC`laQ;SOGed8mJi&9=WY<P<JH)yh5C@^NEwSU>HV?bN=V
z{=_G;>$Q`b2#QHKSju2^$O55ihlX|Sg<alcG5EN*rcW;Z_EmI5y^48gRCNNUPF6VY
zYZs%96+T0A@ZC?IiP@>wY*to~ziUq}Qz5l@5$Zt1{?wZ++APkyq0$KgW2o9E*W~G9
z?0ZGDF%c|#WIYEw>K`x`yklqWq_k}3$CJ$c6d_-)#so=+VUyH@`Y1kxAG8WT!lZ+Q
zk`}=U6$7dmX9_A|V!yfe7{?lkiq13$Prz?jS^5+xz{ccY1MNiny^>Mga=>d`a&7!e
z+=Mqx7TTgLQe^z`d-NPY67`$+T7nX;i^jSD$+JIk>JS0xyzj5s%K-*e@Vr)7FnhUA
zx#ZnQE1=2GPd5V>+JJ$;En1A^;|CS6@$2iP_$96mS6;C7Lv<Prpe5_xxJ!=Brsx=Q
z?m=cXwbU6rW2O<Zy_J>?^zka*okJHDpA%ZuzAMGo`u+PNT==yOAju+6kt!Bcul!2(
zF^+VDATAgomo>DNER5&5(lNF^`UIkUn4O|O6>{qLq)G(iNW&zGHb~`oPsV2)n%l}$
z!Du;wLJ;o_9NtygFwW7Uld3DWP;amE5kzPeYd2UtIrrNuH$p?8>hhE|Fg#bOyOg6n
z9qoYzU~mzFbw-cD|Hmqi8uuk;^ORcG{-?E38_##XDQ_Gp5Z6~Jf88G0FB<;J5dRau
zB$WF?8NX6{Dm0S)p-SUva4NmSHlDdU_tB65dKeT-=F&b?un-BkEaIAinnR)<61QhS
zbIb|;-2x8q6b@yomoTM=Ro3B+KL>47Jgw7P*JsqsBCaj$M^OA1B|gyYqrgJDA>oP!
zt(3%x5S#Gdb{6qJ&heSDm-&j5+J9Ia++-roQ1FBjee6B@$VdB?!EV38?=iew+wEUx
z^XRcg&g;MzMx-op>^&=aKIjFZGz}z{<@vrCl<%YvPfE-YujNa<U~5pJfH67Oio-+)
zKqq;i!veEtQl(r*^7O<<-w;P}Cg1q&{y+ini<D(K-(zYq6ECV&yE9<M2z|3)9M?vr
zZr~Q5jO;GgU`WsrOg9U8Y;~#lr}Zr}%MfE2EI%>kje&Dw#}b@v?s*kknt|labTb^A
zUq@INYs!ERtqQ_)F;}@jprGmsJX(8OWNpfG-xr^Mdw4ecJ*)=prT~6sp{<ee`NZd1
zJgG(9$^eU3sl+|XR9V(qVA86L#LNFCMr;En?>}3rH@JOM_xnfDJ`dKE({BAi#<4VE
zQz0$RX``br|1s#&R%Rc_jy^Vr(&iv@uW^hl@TcwfIS;2_zj*F4$pQNAO3T|K*V)c+
zqJM*b|H9a~?a<%K$J{;wYn*eAC)YM7E`u3(P-cA#cr%Swj}NZ2!T2?k!eGVpLHPJs
zw&fpl=ZKFSVTYXu7~Nn<lP9kQTMP})5C5Ji%tf`r6%e-ZgVs6pAwxRAbK=+lF_JxY
z3@!UBg7-xVu%)o|>v~@QQyG!y0;ct5AAC}OSv|KcF3(EGM6t>L<$wPRbNd7Bt|a`W
zM^;zs{}FZj@dl2y!%;Is%->=aa3hlGU|rx=v0nX0yi9@|zTcv4PSoAsy|AdpG$;um
z4~3mZ7RG=2uD4yG$xrF5GEDg=xa^@HfPd26#Pzwq*$@Bhem!;oV~P>ji;nu+bNo+l
z{Qqyr-yXpK%?<h23mLoC5m(`vY7&Q%C82^H4_dXE*dgM^6#9?|20o^;S>2v$SC>#=
z)eAtup|Qx`$6NL@>0KM>v@HN_cn*|t#8SQggKBV~M8{Z`x4;aFK|qok%_pkkkT*l0
z?Xm}YBZE&=d(hC{T=D?xBRSc5gAadO5!Y@1EU(WqSFAjRj)z?V236Wlxb7J~W#3E!
zqkJTYE;>FiIEK(3jv2%2`oU?YzI48UKwDp}#L|GOnKav><AKEr$^F2YK*8}`ffwsC
zWEjhod&XTjzgfSF67ULzR#d}DCnXum!1ISD4c84dgP4b~!&(q$T|rzZ5Xkpu$s)#O
zP-=75*S7D|mL9J>-k~Wc^uvA7J?b>$pQ2fjv7&z2xA@bqJKm%<Wzd;5@kTAlI%ts0
z!3nPieV4(w(@eWY*$ybx+W~|z>EPRz0xFWQ002{s#R!?}eCL>@-d4R`OMH*iVcnn=
zLIY}t6R^j^A_$w(uZD6GT|LFI2q3nB(~IwfLupc@paM(fx?za*_xD_!@y~sK6);j0
z;DZjNOsSN2V2{_`sl85)hN&u_`&@{35<Yl@a(QN>%>4_?55d#H$!niNNWViM%TpbR
zHw}dSnFsA)qtg*AnRsE)27`0CEJosuj+_tXl-mHWeeqeF=U0MZ)*JR7nV+PS#eUiu
z`=t<)zzWh^4(y9Kc~Be;j}&Gk-PI_~1*E%7wP@+9ukbCsEVZJ__I{;EDEw*I_-X>Q
z&R`5-_5nOd6u30KU=$W)><rbU3!g&_pwdITszn&#?~Fi^B%P=Gs2x^^|8~%|eqX7Q
z{{?mhKKSYnyeWN`P}u+h2^K@^aOA&|qSovezq8Q@xQuGKT@*5Dz|c-b7rpw#A#;zn
zxXyg6yzh8deeH5l6N&Bny~#Oa-dD#52SzM;yh8W>_J-Zy?n2)uH>L5WW~<t$vsTxG
zxuo+43+$C<6VA)h3?Dl{Ccm>hAZW;JRdW*F4ugr;+rc?JH-JJC+H9Ig%>b{l;&G@P
z>2$=X8h2UFDv5^4O5FxSGvLgEpWmw~)gjz5J+0bv-~>}QmKm+b9&n?3!c5+cI7*ST
zkDCG<qaf`+8q9Y4{B(vH=mV!Gmm;AOKR5{Xoo;v+111J%VH4I?xjAgizGCH^rfG;&
z(sIc{dfLWkWou(_!-u#SLQV%$s~~)4)3Yy68+P5{i$qnduNlkmuHHW@PcH?3K0D+$
zv0ILE*J$cbe^8LgQ;nX1*W3KiTAjRHc^FqV&w*Nrw<mVK?Vy|QWT(ewsG{7LtjEHY
z>bn70uYHw1YrXmk0aYa2lo)?srZ>3RfI%{Rq3uO{I@_7RoSA}CzBPBH6Dy<ej4EGd
zypkfAaj?b=9-*eJc@>wGgss6AS_SMrQeZl0n+e?G1eo9c(fmIA6Md#yY`id-#$yed
zj@_kocDVBn`ZmQK9P<<+7mxBdz5E+QbLb!$%{Iksz><~UyzkVP_M($8(xx`WA@nu^
zOAy%`I`46*+`C;G4~p1}wo^U?uZwJGmzL*athPiOHMK@3&dSVP>{jeGH+^yQ6dxxY
zOq}kz$6Hr-9PiJJ=I*Y2D+(=L<GgugyylrUd9?WYcwmfQe5!r&VztQ_a&2tHZhf3T
zpId!lv0MP#!|ump+9*zoj$%a^?sLtZw5)iGDF+7I-c>7n8yv9!un3>kexD%-;HqC`
zBVU5Tb+ElTMdqZVErA@fe(JDG9!r?1asw>}33?fIt7ppb%^Vt<q{xx(a(jl(qw>rL
zQ{Huk3muw<P-q##d~OtYeN743qjsLd^cfebx6~Rrj0+h!lodRg6`ZvWgYmXTD4cv<
z=)2Z-zq(aaL5HcuK$=@8K;Jqr6!!T{PdUp4KfE=!y`8V0!NsOEQ4`ZCaMX6+%%L0x
z1O=Q}$VX!M&~=N1L4Ig?>(E5jcBhpY(BCS8>(B+}V!eP8a?&UHASXfgSGLtU7ghtA
z`E-<qtnPD24s{Jys%sp~o2gVj;);X-E>&3x3~s+1r@1iYXn@~_#;M**9NXQ=629>g
z*+<Bb91At^c%y-l3I#NA%y|@;Y}+L5`cB0^-?OV7-pQ&oM7>uoy4`3BHEymI3>DrF
z{pITxU!9W`wWqaGah+97V}<E)-{1gi)&OOa!+T(Jiti|}yk5UR5WD`a5c_eeOq}WL
zROUgk`B2?`<F2n-3n0nd6HP{nk+lWWus(e`r<vJx0meU+B;|A3D^!1Ps8&erkWa*&
z9a<R#PbN$LvX?{r%3;?Z>tzdM46p9q!_u|Tr<J*OtCwpy^RccyG&HDbglz?#r<#2s
z`F0xQzMdhM5G^5}lhVyrHQi6_Qy{HM$AD)b71{t4_F81~Y!0E7sba(Mk<)6NF-49+
zcCX8RSM{bsoZ-SP%NwA6-4LBJYnK-%oy#{b{ln*3w+Noa>s^SSJT#E}S&}C5W_R4{
zld#SKwpL#X0CG^~P9PhUEP8)NqL@iesyAjo$LYGbHAvg*RbkULug<myO_Vd5BdfCh
zcApr<6D_By3xXH34((jazE9ufg~m(+U;OVo=Buw16hV7I8e#7msjLSy-3xR-W5O&x
z6X)HPIo~MlC<vX6fw4U<y5_Gp5aWo2Lst!(hB?mnuh?)ymB_wqv4nC(iTXi0N@I>o
zk2KfeqCU1!0_oP}XCva|t0w$%)MV|k4|;ZfZoc&=sz7WTG7DI~?AAlU^e9>kf}8xa
z&c<EVV|40I7qP^(e1t+(W>*dt-Z*a~`t{h_{j$IvlzcGhbvCH$%k4NmRIBLEBRLD>
z(*vveSB7j?URz@E_x7<V7$C65-Ht5eS3NgPQl+9u6y0*!LNv+!9x=$v(yZ43tTN%O
z1lgFKz$(;8feij-pftvj%m*1mt;JG-kSSbqN?DLPEmdsSV@<eBq!K}fnSXIK-y-sM
zeH7VbGxQa=@SVSfJ^A{fW!oNnf1Gh+W@+7@Becr3lNF8MKbVJuan~&(1t=zmA%VH>
z^bK;Mip@r1*I<X96o0LXA+d?QI9`#Npi8Tu%fmOHPQ~K_v$CMY<qxU_ZY)42Znd&K
zA#qvBQ%deDwaWs6Ma4?Ls9S{6zXhWb5H$|)J@3?Pr++&9uE3~q^_RZVnhs-9-i2-v
z=2Ch_OHF_O>T#Y@(jV{9oWBx`Cp${d&bWcgNgXd1?L7|ok(#WA4@S^HjEgIGzNON_
zT9JDn@7#yiS}P;W$23a?V4*)nRH9UjqIipVMn2?S8DrSyu`TCi(9)%JFrG30_?G<W
z-F$qiMvGL{boKspYvgp`^mO&{))S>Rn~K&;IUq_U+B8A(>?Y>x4~TyfOFa~EgB{}2
z^d&R)5&%IuHEi2CinXA$t5hCI-M7dOm1sf+lM3W5(NlSPOCi!~c88bUB+z{}gB;Vz
zoIlXr+&X;b;(BQ|YU!ZGS!?$iUuVCGTgl<|QtAAiD#!3Kv!5<1$r5y8#iGOAp9D)Z
zA7Acsd^kn0Q}w~|Y-cfXnJ%E9Qrn<4;>;xiW9E-PSau(a3O&;W{kEgU@X0~VSw)Xu
zDRxMo`|L#rfc7}m5@aqrtYSa#n*af7-C^(fOt87Au$FyUFvzsNwxphvS-CNn$kZc}
z(57oj`@(hUuZ<<DkbdC>MVF;qn~%UO#{y@I8bmfR_lr8LR*HKaY(2Gg=vOr=(;w_c
zRJRmlh7$~QH|VYoZOeDY<k+c<P5OFsA%607^7#S+)0?YkSvH4H9P%&`9i-6YT!sd@
zg1+p)_+T0ym}rU!=g)lf{MZcVt?hAnFop#uRj}lChDu&i@PbCNbQHGw%U&7_Y}1`3
z+u%Eo?!*i!7l+-&YLc+Io4$4KdvnX-Wy}NE;W%JMuv;(P*zyE@nsQDxb1$gEknvoW
z+i8cj?;+pOX^O78Ko#B=PsWhP;J{liZHLWn)o0Im5%C&7*GzpvJWIqk+Ig<Va?Dvr
zc-178qu6yZ(HC9GXsAkTLny$Fe5dNgoyzR9PWS7Mnn&WU>-rERyjw@?U6()j{>1&m
zLS+vgW-a1s1<x=YD^al0YEjhlSx1E$)Uj2pRfM7nFpJjINPeZWzMxu%M{AO>oKAuv
zuc22K%F|bOY<i+}>kSP+Yq0I3=F5P6j-4IR@gPwtPY*9p$+ej(U`f%?757Xr=jM|j
z`PfmF@TeO&xNkJnG2}buJK`2X<ePl1xU)H1Xw!67s|aUR`ppbM7O`rgQjTQnJ7ujD
zHVnytK$kf_E%Hljf<wqe)(iX}Kw=s($1;|&oen9^pChO3b8#Ao?87aW>)Uy`0-%U3
z9DDVI;u@}-@B(ezhs_%_bm5X;!(K5>@&AldD|=zUi;F1a(c$1O7R|Yd?Ja`E>_@<?
zvsSULb#&XXJE_4C2F{9Maov%wxxmK1^VZ(N;#=wl#wH-0*jMat3~3GcAveSiFl#;z
z7WrYl|5dW`6a}vPjZz>IA1D}mib_xW3v}pW(9wqu(%*bK2T=_+eHIelAG_uWR%9hs
z-r_1B?U6rk7-q;Wt$UWG))1JHVfGVm2E`nMBA#bHMJxEkX#J(Oa39d*lfiQ5)$ck?
z2wD9An3QH*lW9Q8!PS_s7Kv-+nih|45(Y_TLaF`uOd8J{9y*dOm%cpk%U!WkBiF%^
z-4dN3Zh#3`Mt8=HDRbmTb$kSkjq9=KR$g6kVSyovxt1YijX*0~;`XQ|5^T-4FZf_`
z54p`2F?ZWTy{v<!KYE@rj9M@6+nDI#P?4F@sOhkVobW1Z6A5w2^$UONY;XVJ@eBoF
z)bmnovWJ@(?W_!93ASxzT;jiV(#DN}NQ7XAKIgtArzX<XncnwtS?#4EtQOBw0;R}e
zoa3rtQj*e*aBD~&jzdAp(NY6C7H-Fz;++b`U)mKkIxbw%b!kw_Q0lV+h9q;^#PocY
z%KSIeDuLBX6U7`*9k?OCC=@XFk}V+<YoADjMdW7cHC5<2iwxHhy3dl5E_3V>D%R)!
zFmUyj=4rvPc%I5~kqu)D(w>XVteXN>Qy@7b#e67Vp1;-Qq-3JsY3_678yaM$Tt<79
zzTW^OvDLgTdOUw?E6E+o<t(mrvafXCB&X_b8Ie^4M}3<EdbDTTP}3p@xsXtiDYt??
zl6#KiYbfaAHMdG<gwX(&um2VM`66@MW}y99LW>Yt!uIJ?jUE;J_g8LZ@UdAzaa8?^
zMu+C-1)|K6l=h+d?26NQjQo<LA*Qxh4uTO2qqW5#D{sKD(_#VD={vzo4N-jzqYpS5
z`0SNZWi%t+^C&^5Grw5<4b$ag9kfuQMGCL^9*?<>=2FzhJTm}I(vRBej(awY@=rb^
zSs_5ieGv1CP423M7Wo5%FN57O$(s54zC>)ZMBC68M9T^sd^2WeZO8~P+DZ>wEOPS^
zOnXX=yZij~_=1k~ix=1IA*7aP8|*p5>-*5cS&5L-X=CYAP4X!4t7dX{W_NgS&$mWQ
zkl6RivsMUfev@lkgkGGmAXe&^66zuSO@Pa`EKB{Zcgpj;gCsy$ZAMv;&*$iwA=&{8
zNvtmiZ0NLI<2oJOGgk%4GU!cc9iqHLK}$YtH=FQ=%(-hs-YxmW_|m?<#r}r7GjBnS
zIRNdmZ}_ZTAIDy;-X$SotL<y;kRQ*Ixt*nu>d@w&HC$Bj-Q8kzEJ9^~8{86=nv){B
zO1Z~*P0j~Xl;QV|8kj>~We^sD7@gqgz?W*2`>BpAI{$lKJLC0tKWY&uM(6af6s#%e
z@AAWBQjx*;SZwHl>ltVEom<r`Ff^VKsCjyu6>|KRJs7YC3OWTCZtOnS{TRMkho^sb
z3q>je!i*GH@bUdPQnH?#l(j8qkHu{#L`%<b>^ZF>K3ujCuUBrjs4M84_94ch`w@Yd
zy)p=NXR^0PtSE9O(j>LSzC2AFEYJJi{4e<Rzs^t+DYU$a5y41GZmFEl%I}aoW#77?
z5RHz|avpMi@x4Idjs^6w1^fjNb%w~(OejQ4<6K_qNi8`5i%6w%tb0MlXNJO8?1<3^
zJpl`V*%T)wiAL3WU5bJZw4W~4v(gq|j2G)gb3xn{fM28yBxwrzf}VQV{3zt@!8aV)
zNK`X3kX`hp`x@8iq=g%9c?W<*RdI{#x>Gbi94mR?4+Z##ec3{F=7j|(&=Re@eqt2c
z{lk(BPKJj1H#HyirFyDD=y)Nao!#x&i8x<qbktBCf)RE_e<~jr3t0&*RQ)6{43_we
zqzF{<2?~lRAwz=<yFoBPml#fe^X1fUgu4jpD4xC!iK|8PAw{rRwy<FqUlI7D>wF|o
zL($iWPjj){nE;_9Cg)TUWV^=<(U}=hD4r$>R_t?;MD%59+iR`_qpv*<Wl)}}_>$x6
zBUzlQtqFp&W#m^ML9C?|^D_xO;!Y(qNv&#34+>^?{~RH&uGhX>Y7;;dS-*WC1BUIs
zpV4YPm_u?IO7}ipVrR=*oUF&3yTHGI_eO1sX0#qJOz+oCRs^MaeY}K?PTeKx9VDLR
z@CYl~`_)P{8e`xvOk0X1<9Aj$R|-m?_{$0$gIUtceWyUBHFqixdINzKWfV`O+XPdF
ziJ({<7!1^Ic|vz;`lpv+NT!tmMmT3Hc?a(kKd`b-Tdq7@dTYK%no|p255w6g=h_Pk
z>P*;vJHCaWxaL^9Xozh_<ph=gu-`DYu~*6#oL}^9l!Fb&&#GENQ_(YwqGUe9ZVVR4
ziK`^sT{vs4gK}89Uu2X030c_~#jNxZN(+mH0{ObZ5@ppDAgJnh$;H`fgFDL0r(=^-
z(y=`}zolWHWSj{uzDRF1MBjJAj^lAMFZYnL*JSrgCs-^RKMyu;nMdp|)#V%G<UonP
zAMu06=j?ExV%Jd|>k&$@CFpj6Ik5~S>Z{EpNo|mr!V=cCmdL&CaM(bQ;PT!b%W&w8
zqThN}*#|oLA25Y{9H+D-61pcMrNCb`v|nqfZah7IeI73`$gD*V6kaZB%#6M-g+hZ4
z!E11+>azDbqQbM;;rrQUQ(3(DN>HS36nX@_7eDOQPjiEtZ`}7G>EeLs9lW+;6HW0P
zMNlxDHw4KeN>~@k?-EcVKj`XEve&%%<YU;^o-YbUvMkX={TBLTxpgPBmNI!u)w{!H
z&>EdBzY)4z3~8Dbd&8$@^Dxc?(@^|#g9S>vR?no8wmW?PvF#PLzVyV>lC7&saVsk6
zSy-&#(u+Z6`ZqX&PHtSpleP_9QNeL0Vtvx7$eSDoRP15_FWW~pEXoFWc6g^mhv7AL
zHglFrsamRju>Ndppm{ycEVhkfRx^9Qan0q+o2S^E)WxQioq~eBqOZBS_s+l{RA^(N
z$XvfW#ND~n<0B!bnpqUtP4nT!K%lbwK(=6(QO(Tc@Dr!7g_pB?YIBEKKh!aXo!V6m
zV?xS!ep82D3V9eW=6}oQ%UfrAqANG$2+#T436hTI8{#`!nGm^f(|yh$MI~fw30T5}
z{Ci7}>=qK}PxYYq&Wg;lo)SKi%+Zc~ENnxBr<X66IKw|>XCNid5jsCa|J3+`>yC4k
z=qE27l$aG#cZ$Y~$}N*iG_0?lzqqqUq~$n<ESAt!fQ*DJ+QR)zHN1P4Pd<b=rb!9Q
zf-}^DXMe$3lUywab5AZw)aEF<ij1+8`)lpNoY<j+CV5M4Fo6@WvK9&rP65<UQ9i)a
z0Ap!MDZU%wZ5%r>Nh;Z3+br=kOPWCq_0FQV+8r&<$gx~#nBX76>_d$Q9y5z|{`62c
zm&}}6ck5J<(bPwZTW-Qjv@!U*y{D%GePC$b->OmWQH&dhw?lc;t~tlveXYY6`tgqJ
z;3#K<)G<gh^T)FIT6Ha?KCA{{8-KLEW{FdXp1vR%)|cVVen@4u)pez@|9zh<%StVT
z6zeMH5p$P$)|<E*SJ4-L5x6uQ(2ES#w8U<L9l{`{rRRRQL`I!r#<Z1l*qB*kMgr=Z
zU}(q>C(Xuo!5e56qwf$GZW*!ASQ*-DMy)l>xAT3p<KzB2xAirV@|7I%n<|GKW&q2z
zZ>@*v)}Z-P`aOhc0LKR)>+F_gNR&>n1btY)I3b?Q^v%nNAEuOF`HEp^&+@b)HTf@H
z`yU?nX&$~G=H?Ql`_YjgIPuf#GnNNn{Ua^(oLRcP7qh_Wp>yZnGNr^DJ1UQv0N##P
zOb}s?9s?vIsx(FN>mNLKnUK$PhS3w40b+};&+W$5r-w1zMa?qyXz(?;P=^nfhNNAk
zv#T1bCk)~y?Gq)wn<tQzOA=1hk{!4r<p5J9#B5&S)ki6>6o@cwmy^5g2m7;=mL;mr
zXVLlmA|Xp=I>(9gWXz?$`Ck>|o7g{Md`Y*|zy4Lv?s1>u;ZLvoW!+LZzx&pxvtL3J
z=*=%KR)j>qp@;rFT!LtT-t3tbW0(G=4Exs?1CKV)n`>1%`oEk;{{p)I6lzI_61U&~
zwUPXv-|^_BhTfoj?{)Csmh6A%O%q`_*rYA*_jvzuL;h98JdJ=(YiXQV45;t_Ds2Ai
zpUD`&2mSvW@*f`k|IrQEN^Ri_jh_cB)o^Qp`8l8z2GFp6uoE0IaiYtPirbXu67W#B
zENejN*|eDnH0^@#Drd(Yoa`0NSM7}lPOuO>x!%BGYqM|nTl>q85O}iqB`2}A9eEs*
z5lr@7-oqj`?TjpPv441gq9VH3qO*Ww57b`+ttc{7hHq1}0Aee=XnM)~%xGS{q5u8T
zj6w+r(XT)HBL2~3&yq&F`WV!}L-T@X2P~g24kkUi;?8%e^=P=}wy*c)(U;rODK8H~
z+sWO{S-|l9QrIF5H|8NA!BSoqueAYB+zzKDQ3ZC{Z$67k>J?!T#-}7*`WtE5HPv50
zk_EPBRr;&6=2rpqE?EF!GCTM#^i+swzX*K<M$+NrKFk>8xM)Whm;}1-6v?o3K&5%!
zY%&t^{PM2ewnr&SdG<VmN#@aU-zn_^{7OF0uCsrGWq#DQlNC6Q`y<5`>`-W6O8nYp
z-r)WUFF6*=<ml2V%8vp77z^ZgvjIs|;E#xwm;m~=@C(3O|Dh~R74Nhk^MG75H-`(t
zGwa(xr`s7A7L=v{LM?XpQ?zXWw;I#2!%}S&vo(fhTSA*qsh%#>CxK}^4_fF{^ONJw
zfHQ9glK{?q3St2KE7ko~#@%-)nTOgk!35!e!`c@Gqm>L5u^t0WdhjRL1v3qdK&=<c
zvH%92XrK~@KHODkgvnIHD0P(BrelHLw9}|fQ*;!2O{bkET_a?M8MMI!F#k2>JK;UZ
zxIT^$%>=bhsN*>f$5H$L%4ivT#*@z)Wx5Omj826Frc~PB{r%7Vx(x-0!dCg9Gy`;H
zY<m;#HF!kSvnY)YPAz^E%E$t;U~?C;2U{HM;EGPmK!qHjnsUQ!l+Jq_lB$@~1K6mt
z?U(EV!Mx+7QifiD(&}Yu*9b69#7XRw?~Qk8@pWu5wUSYPgzTz?c~G`twhlaoBCb+7
zDno^04Y+TvDi=XZuDYjD-^z$BOXXW~ol#a^*TbD%^y2(*udK-v5L)`9Vi9TAPUiFL
z0${=eYsr{H29RJlbz9V3RZz6&`j1e}LfOrg8UL-mWa4_e5ZZb@*4|}?n)&FAb{|N$
z!f3isw*_UW37FJ%Q8~=HFCCNoN3$!|)NI>Wn@Sm7z;XMDh)w@3-pzW<-30IwjdnsL
zs$W6}qdW|*VTW;BlzA{=&%I{Bf_pb!x(3-F6TSec;+184C5T}6(c_x4Q<n<-JFWIi
z)qpm#0h5Wz(Ekzye1@=n;DxWtd|QR<<$#o<s}(tF3%2ve#_>RG(RCwp+^c?QAm+k~
z-+{j-+AOE4pI|EN0OjR{);s2T)p*rWB#Lj7;YU6T6?AXx4Cd7C*$0SY{xz;c+u9-O
zdg=}bibw=qX)Vha=W|aB3Ix2a6)B;7rEXSK{XC&^M;*Lpeh2E4OV+<RZf;j$=+jXy
zwo{B02+n;_s1qHAHdj4Zi4=5@Qy%!8#P=c-n6+2rYPXDC!1ht+&Bi5%5r)kSj`nyu
ztR|E+BmBX+uA**vv{Bfu%poCm0YlO1(z}<P4-oQ_g<)JejJA5pRkZPh&u5EnnS2k8
zq@{2K4n(KHkCox(13LXOObF~`gY>wPp+b{T@`XOl&OTp0Qxc(236~**hzkYBh3Eq9
ztMM*8QDA%7KaiB*j(A1ZO69b>)Yl3U!VFYL;Fta*cj_*utnfT^fHxG$qHf;(;kG+u
z4E%~_6HP{0hGiwsG@JEgPdvfuW;(uMbf*XwKiFzE5+k+xu@@Pf;|GINY@qBJz}a+(
zfy}@+c$a+ouaok8(;zUtk?9EZRAXg;_tqt{(uoS?lVkfyrtr2y2R=>mT0MPLhk?}P
z49KTR0pjhn%JzT<QZu@YDGOj)QzXz^oGKr(cED$#4<5HA)~IDfX(y+1t{jY3we6J`
zA9{0VSYMWGwd1^o+03w6&Zb-FmUGgc9lPV&XxcK~-4{tH3xfG+$wUALDDhcQszz~x
zCAUR^mfk&>k_Xkf_*DoEyz0V?tVmp6-<o4+E47(PLU$d=1{663pen5x$#E-bilZ)*
z&FO^IlYpJH>m4&-SSd79!@4OM&S<beFMABmu*eCwcPG!AHA5+X-Il|kGNQ3@EbKY(
z!g9#-e2*SX8}G!HZKR7mb|ekwm_^T)%n6`pAPl{-LZb$cs<1B5dsLikamu%>>V#8<
z&;Cvp#E~7EzDM5X2US5<<elyrAaz+8l)SxhYc@~4MG1WGVYAg7S*m@In_tR^M^{C(
z2auga?R`IcX{DDq+)t_KnTsCJyT0-~-gS39+c#?hA~&_$Led^MtZ*|FOZ>DUiyf<Q
z-1gqMlxdV*$wCgZCPv=y0vOQGcXqtZX$1jrZfCkPqH2h9Ft%gdc_H5JsVal%<1{>C
zj5bJW-9=xnD$df9cf6A|47*E)g9f<%LQEi31eL^0x{cE7-tARNv(8^N0=mF0;q>Dj
z>~bq?xiS7j$gImMF%T^xNsuJz6(9dH(<GZqLM4py+BqAWkv0>T14>)3)m{TmCBDtf
zq^i^YtdYz=XmZ9bUR!dx+F7J?6(zpnxA)rP<bIxY#U>Ue44haxY2#Fkd)j~Kx2KwQ
zKU_2#S3BxZC#U9<-=L9w&uEz80I@r?A02mMs4J?$zV>ZKv&(LExX<~CnK^8wc_)?=
z@te1WW;)gm?Yu&1i>q<ie0{fq`W+uGmjl~aEEQjl-7?o5`@UsHGbxkLu9N%I=K=TE
zO-}Gqz88Srd5?_FTlc$ZJoK3*SjL6tv>6kNABUzWZS*?rRKeWGcz3c}pQ;x=n?K#7
z50`U+{U{3jDc<QW?oU2&4<CKlsS|w0%3QVcqSsNlCK2V*($@adr6mirW#xK3ua4Hb
zT1NI6biN~lWwnimry#1jwrk;$DO`v?@*CGlGBy;x=Hvc{$YmGZP7x)$;LCRc1sgu{
z$rZy=?>yQOm=KYPw@Y}r^<^RJ@B=dWnT85tfF9R##gBn$?-5f&vMV^?PP=xZkKPmY
z@XIz_GLNsEo!!K5r5fbhco<PSZk_Efs*hYim-W|!*<x;KXscJr@B7#UIZ=laEW#c=
zPaqq8zhx9CV<ovT7F3!D!gC3y*s9^)wdik6&3s|4pX6!Ioh+taIvmf6uE^$c+PF<@
zr6@cJ`ukncX1Qhzi`dx}&`xb_;|(}KPD{MFE*T}WX%rui*LW%Rc<j&e=e1}9(rurX
zOs_H(*1;GUGlBg{LDuDYv6TL_{#PTDQk%9YIE6X$>$VaL-&*O6IUO1SrbwPKkT8bK
z_gLi;`DaP*DvSV|$pzWS1xov&8-g$QugH`2q-R*8ja3Me&=lVl{P9e7rpGzdw}ekn
z{Jm43mPnFASBT~WH1h>xKb>`RkT=avs0sx7@`OX1i8WH>NVX~+b`#EC{$w3Br`meb
z9Cm{Tph@M}-n^FwU0&zLh#NA)ozy=|8W1ZejSr&`mxFb8!93S9F!$}A^W!s8l(otB
zN>M3i<Ja$M)B$iVZ#?TTt4D3X(FN2j#Q|i;qS4iz*z(i@Fd6ilUo&i~1)GQ~1Om0M
zi-T^gXTm5Xhfi#A>thv7&g1kB#qWF=#dJTvp(f@OZOZJo8jt6%upqqVuR0L^aP=S&
zd?mw!T_hc!27kAuO<La$+OsCqPk%3;^U`s-zmLGg1?jx<%C9iGgzp^Xqf5TGAcUkk
z@Uu?+MK?8Kt_P^h4yHwNYR|_KVULqT-{>+b#H#qJsYXp(@_=J4%zD;aidL(P4N>@=
zisiy1HRaR%l8Q=n;i&DW_6Dk?a~Bw8wT2*U!!?+5P=-}L?y=Mh{8+DPH1XkFowFU$
zN#50__V&KuOCJkV#$RVk%@E(G6G?W38E@CqBr=u*NFMwkFd5^%KM>E)-Y*6=U|naR
z#>-8W%t0{I+RHG{6p+2;Y1Y}-Ew8Ix3HXdNXc0FasYT>$mR%d78h*^@5U##Ff+Roy
zv9<<2fOW~FESxpX6kWLq#KPGSGE^bBA9=T$xpKo3x$&nT)3%e}%10>-w9u`AXM83<
zzMV*KMNXb5rhHT1>v|43QpNG2+rBuo(e}%3B@5UJ_Su2nJ1Vf{Np6E=%Q^m=wyNw7
z*enq><P<{t$)VqUIOO*)`lcUh62mweBFK`)%LaMfy=^FlN6InDZCj`#UKiQY-s*gN
zld=t^wB(=f)1n~P-(m?@zW-}4%uRyftwD^{6ihzL3i)E+8)xluIG;SU*K)pOO1E{(
zf6uSbJJ(?~J3k`)O_b;r)v^~vNzJN8aR%FW&bT+9*?v*XNbz?h%A`E^D5soO7kgMY
zN>}PTF*6<dGRI3=%$9<6Faihm_3o91?U^_*(g`mPZyq|jD(z@hIC7f&&}Y`Kx8DUa
zsC;}G^1YQe@z@^byc74E%Z>{ezWgMG2NUmR>#RMU>@a{Y{rFFU0`QhOl}2J`A;0mi
z;Wo4~Y7|;^4nz5QK5`Ah{ta?DKX@~MK3}jPszOB95mM<E82X?WH<xeqI;8A>cIKvN
z^+&EA`t!}}yGnlT-&0&xpU8o?thO;IjzuTw8eUMdNMQ4(z5^5Mk@nf4vI<_7U_)Fr
z!1fl^oSdQi^f|rv)OTDNXA%AVo5Ih%EA<o~ClcyI!zR7YYeg)299-hubw3;gs<#lm
z1oR(nQmV#pUAXd^vonT=W44UgJoSylp=Q{dOx?LgHYD+)NydY+OU&52zKX=}NDzPT
z6@!*g2Kq{o;3N;xsPh(U_8Te#-3-mxB2>lUKou#;t7+wT6e8r6QU-GIWGH_0Ix3~`
zbR2QyTXxlVg)ORe%-Tfu?cXOya5p-S4I^>*coM}BAag58c#hCl6HaFLx#+ar&eaZ5
zIje$id9YRNenKoEZ4j&s-onWbYL%19g|B^M!$|5FQJ(7<VNn_z{ocb5gDTBN*Ql7n
z>E!D$m$E~&1RYaK(^aFi^a2fh-30ry+i&Q5orqS)=j4xSOw^i{*~ttTot>U<(+foA
zQ#__>V|XS;ry(ZJ9I$Q5?6w3A##?Kl9!=f~af}>nGs^Y`iT?B07HspC`qXb>_|K?w
z*Ts7BXIZzl$RZpqGf(dv1==$OJHoI~`A5WDuj}xkot!En$CSU3UJhdHG|umG`?!5Q
zd(_-Y%0oT~n+2YW<i=mF{dVc=A7dR_lbleH*n;@2-n&GE8~5x7cK(hHO&()^lW!XR
zNG0N3hTGRbp~R;I?>IQ;TBw}L3)>|oWg$G_SS{N%(=087^O4`nENxbPya;8oBzi}h
zl&!117mYd~Z1HiIy;lCFH?1<46Ut6)A=Lq9>trvouDroAK7Yl<NioYy&c~OWT^H<J
zmrfZfYoQ0krXlfr$9b{W%NN`@KCa@S2KY}1?Oj&~ZysL1i|$om(lfi5^@f>f3TrlR
zjc;@=F(Gqx2<IMQMvh9Im0X%;)nQ3wghttxvY_Dp<W~dw0H)tuIW~xuV*D$H%WRFd
zLAOF|VV$hJ?6Ui^_nY5&;+3tmPnhVkCxu!I9p7hH2|H&^mPCiZemZE1EjBB3cT=v3
zcg>hQ=YXQ+44~rUWw7Or;AC9{UuSTTQLamvdY&pCGkXQi`WSFQ{hU3nO8ak7Ef}u0
zl0yqMfy;^8Vw0jhvDFvITxiqY8<;nQp9?3TEex)5+^Viz&JNH?%00x09&x%CnOaCJ
ztM9g<VKJt5dA_1>B#q&xJ%kZqR#YpdLN!=$FTA1}>)YnTob^$a1l@y1Vyodm;k$sA
z^lCUSQqL!c%H&G`X0Cs_718>FBxZk5kDYIUQkAzBvD|-ENP+A-CarwF{$0UiA%JJi
z6?_cjxIMgdwx%6YCggl1eD7O4oM&Vg8t$9A{0of8{S<|>Ovd$QtotqB)#*nho0jav
zSo&ROp42)}9KaUSjhYrWG}v-@N08d*%ebTmYsO8PN$M+%oQ`=xR<q@8n~1GZdeMDy
zNQ$oCAlaw#qDWcoz#!!^wKJ3aA{gm&wL)q)ZroEhG$-p%lh>=MXye50sl@Aa?D|-H
zI<Hk;1O5M62^NjUPhY1!!O|~ExtjXr(DDbX?p8wd$myZAnb-wTh9H;UXpQX2D%_cZ
z+$ZEJ*$Z^qu$X0qlco4TQr>>M#jTGeHsi~upI>+_W6*k&k?hB<$u?7#KlJFzI132N
zn3=w4cAnMeQd+s-N-d0RDWku1OjxPJXr+4XqefX!8Yy#f-8ph9g8#s?|K7+*?f^`J
z;pvzsj@SB3H>ThU6Zgd4v>hN?2A5M&nU1Zyfm<)kN4Z5Nx3B0@9qz8;gsGR?-L(a+
z+Tj7ak)io<5fpMU%oLJSM7l#FSdY1HnFx0DFe_D^4_@H(4dF6k3|1e11qd7#Z}C+9
z8Ij}VJO_t}y*Qlih7usG<yWb11QKqhubu^qJMYg`IV11qRBq*uq0{4s;xU9D*?Udh
zNq>fcv9@*9?oOdLYmjx0$CFomVs@6ccl{U6PS?-SI7A*3*eYoCS#Fm+{|t@`PN!R3
zSp%z(75KIx!w-9VmS|0inEOGDfa~ig(bq|bn_kKRxlgdays*`JHa#Fn=o_1D<w#Do
z(^THslHF;RT{fIeo|OoN0WIdE4IMvWvDw~23ZUlgKb52Uqy&Ppp+vU`@K&vcEwBQ0
z&W2rK0P4fSre?u49S^<&J&ciHB+i2YN2B#|Ig$lPLLqZ1E#4A_u>ElUv3zQ`mj=oS
zzxJP#5_bSq|2Bs5{I`R3{b$Ka?;;uVMFSWL_!Don%dE-yk)~ECKri`qT>$$S$Ge|C
zsF(_x5Te0oh#~=Wr)(wvNmYBEY2=7yMc-9ImakUKQ}m@}9RO#=m(;t^t!0XS1?*#}
z7&Xc_1_RZiI(SiHBw^zh`F7P70!?bdCDg+~{Q|Q89A)pDTI@)cqJM?rCR(?_Pt~eZ
zB}b3fLt(}pn9`M4PtOtF_2X6<@wy+-E^mUUy0xR^bxGNvKiBwV-tzh?k9OCtpvey^
z_oec1J`E&~LxMn6)*y|L<^py@C+|9+y7F`%XuB<XhHpsEp>!A{dUxD$iIsK8V{i1Q
z_eF&Z<z`hdM>l;GI=@=~hi}hT&`Fcvsio(pxYz2P9_%3)uQELPqP5-OL_)=NK8nK4
z>3kJg4#$j?*&+=1DNLQduiyNfA+6O#qs|d{?aFQ9dxA)4-X=;@F3m;uAhX(wW8p;Y
z%NEMIW&{r&w7et8PaJkATSG>6`S<M<W|Iet@g`Y3N8mryWD{@N?l3bOC>Ax+R9<dI
zsG)#VM(y}b>sn1?NK@ogt#SKF@tTu*B$tAc#3LhBPfW#=Z}%ujJ;v^y8t!5C&k}jG
z67|;MV<{~Bow4xt*r?5}uZA0!eqnp8y>V`fS%h$@cz*QmL5;)iE|g6W;2clG!3L3#
z0p&Smkd<=~cXB%2MYxMO^IU8V(}IzFW8M;XHaG?}a8%8?7?*lzN6nO`f!`a;B&4nV
z1oM`QE%aRwm-k?{PI~A0xIEZ@WckR<*J{q(mOrQ7xR6(e3t}?#B?%aU9ZyTxUjibr
zf!%3~e$FkDmHw=X_8u{r&yr#Jbs^}PU_%_1)fe0%A!VO;ciT;q|CAY#h|cV4S+UA_
zw8^j{`|^0xeO1he=i2Lp%da)xn&T{MkcEQ`C!lP17(yK(0k$376)W%7Kn3#rg4&n}
zqIcYJqDp5>!kY1EvV@A(tZ%=k0QR?86QZ5sXPQ|akk2lLK-&ZH0gmIPXdn?(@UeR#
z8Ulou(a+nuo43x}#P=Zi!I=bc)uax_*q7(}?lG?rTV3^GdF<e7O3CUY-tDM4eTb*5
zVJR4V^_dj_`oTj(0ujpD{U*>wt<Vm72w$uON%E=JtLH;tBb5eG)k!9JaP}9QzX2#+
zwQl&cf<{M~yq$GFh(2HX&H}mXPVgKPMFpJZ<09Vbm4=D_9U4auYz>Wwwuk!W{`o|D
zUsO=$ErSsMKC24iZLGtp7Ij;Q%8-v?ZF%?902QUFJx~>}YP2E?fOGB65;9V?#8Oi~
z7#Z%eKSfq;OqhB5<~~Xx4k0I)h9ia9f{=$OOXvC(Gqx79qn<sIfFVwzs%@$H$oglO
z&bh#<_Zbp=#{gZm0e?e4eLKCMy^{}yKvv;=3tN!B+Xj()cqkw|mnYj3oylUCih|Af
zJNV4J2*e!>aTVGh?IFItqHP<os#)dYT`lZ6-htRyl+BjtO`yQxU^A~ejZIE!$%D9p
zA~TWAAUrgRd@RJHrBj}f3NDgY89DYyxJn`drmuYi^4mn*)<Gp=N*4<()K)9(mks&N
zG_`9bF|lsr1NQ!iWn`v!KyaeUB`_gCis~tI0Z&V|mA}Yz<@9yl9NW1^9jrr07`nr}
z?!r$$Uk*;<H}@3YFOTMGyKCw|8$cXbCQRflwLO@tQ-y$}pK0forSa9lDPiUnb|%ZL
zWlE=Bo*t_(&O5gFJL&$%<7GU)B-B)`S2W{mC|dQffOaXG@C8UgHktT0lH~w8G(;uo
z&-!Qa(lJSnQvykbFE7)4QVH6s4CAH=<o698;=rg?On;V_6oP(zl_}xv;xGuoHY(Wy
z_v%P83+ptJS;8a)FQo_Q_9^Yuu{G}uSBaL2N|Oa+Q&Jl?>d^;I1Hm%#0>N%tpC&35
z<786LHO7u8Z`9odO>hCLhCTCI=_l7aV>F85@wL!fZSa+Bs|SktejnmM%tPkHShZ3$
zOssJiDabtRE-G47@WpP(+Na%Qq6;zVJAL?nHvM@@?di)AhZeg;bFSQ|bMx!U4T8V{
z;m_Be+bxzju=6PJ>;b>BGq<L^w*SxB8b2|8-?i26eAkpp&6zI8QS$E2N#F?x2X4z0
z_KIi!*qTsyXNyI)ZbxX?^^V(~bC_BMCYG-~RD0yN-0@7WZ;nb66j#VE;VzOyo7>F<
z?F07Bx4C>yl96-%tqHznz&juFA8-3-`Fg@N0gna;orPwNX?4JR_|AQMbZcJL`KPk)
zk`#Z7dN?Ss0SCn-0#2Z9ATD6w5Lo<;!C~oX<@pZ4O$mQJ&jB}eyW8;yX?i-$o~?PU
z6nL7_?T?x+OiH<4_q5nBW-K#7dz^do?SlR1IZRgb{c{XBs`=rvio%307T`|lbl^(b
z^!9DQtr?)LMN1zUNMdfyR9Fj|Qvdok{nJSy;3XVO1J6VsJwEkAtK)+NfeUP{UG=jw
zda}%yt=}h=Y`*65v%*^|_%IjrIVgMudc^GOJ5FV&50`+>eOz{CZGr-<wFaIWhaOC1
zzl<HD!3%5ODLe%^=#Oqv1By<hnfL<}{TLR0^Vom*4De6@m^Q>jGsq&3N?_Aav%XtG
z0b`^bs<2>*u)_-5OYaRnWAP3|P0&2xRPd?$N^F>AA=Flxm%uJ`{}<~sf3VDSg4Hxm
zQ3tk*K5g${L|<?M_mI04Fl{LR<ukTNOKxz#5fvm4{xj;l*jBisOFV)B2s~Z=T-G@y
GGywp|9LL1~

literal 0
HcmV?d00001


From 0d7b27d4e49d2664663a6c93aee4c46b2b6968a0 Mon Sep 17 00:00:00 2001
From: Felicity Chapman <felicitymay@github.com>
Date: Tue, 29 Nov 2022 15:52:29 +0000
Subject: [PATCH 0796/1420] A few fixes

---
 .../codeql-language-guides/basic-query-for-go-code.rst      | 2 +-
 .../codeql-language-guides/basic-query-for-java-code.rst    | 2 +-
 .../basic-query-for-javascript-code.rst                     | 2 +-
 .../codeql-language-guides/basic-query-for-python-code.rst  | 4 +++-
 .../codeql-language-guides/basic-query-for-ruby-code.rst    | 6 ++++--
 .../reusables/vs-code-basic-instructions/find-database.rst  | 6 +-----
 6 files changed, 11 insertions(+), 11 deletions(-)

diff --git a/docs/codeql/codeql-language-guides/basic-query-for-go-code.rst b/docs/codeql/codeql-language-guides/basic-query-for-go-code.rst
index b15e2224065..0e23dc16922 100644
--- a/docs/codeql/codeql-language-guides/basic-query-for-go-code.rst
+++ b/docs/codeql/codeql-language-guides/basic-query-for-go-code.rst
@@ -47,7 +47,7 @@ Running a quick query
 .. image:: ../images/codeql-for-visual-studio-code/basic-go-query-results-1.png
    :align: center
 
-If any matching code is found, click a link in the ``w`` column to view it in the code viewer.
+If any matching code is found, click a link in the ``w`` column to open the file and highlight the matching location.
 
 .. image:: ../images/codeql-for-visual-studio-code/basic-go-query-results-2.png
    :align: center
diff --git a/docs/codeql/codeql-language-guides/basic-query-for-java-code.rst b/docs/codeql/codeql-language-guides/basic-query-for-java-code.rst
index 017067e0094..d84439704bc 100644
--- a/docs/codeql/codeql-language-guides/basic-query-for-java-code.rst
+++ b/docs/codeql/codeql-language-guides/basic-query-for-java-code.rst
@@ -57,7 +57,7 @@ Running a quick query
 
 If any matching code is found, click a link in the ``ma`` column to view the ``.equals`` expression in the code viewer.
 
-basic-java-query-results-2.png
+.. image:: ../images/codeql-for-visual-studio-code/basic-java-query-results-2.png
    :align: center
 
 .. include:: ../reusables/vs-code-basic-instructions/note-store-quick-query.rst
diff --git a/docs/codeql/codeql-language-guides/basic-query-for-javascript-code.rst b/docs/codeql/codeql-language-guides/basic-query-for-javascript-code.rst
index 230d8016510..90cb3f77cfd 100644
--- a/docs/codeql/codeql-language-guides/basic-query-for-javascript-code.rst
+++ b/docs/codeql/codeql-language-guides/basic-query-for-javascript-code.rst
@@ -35,7 +35,7 @@ Running a quick query
 .. image:: ../images/codeql-for-visual-studio-code/basic-js-query-results-1.png
    :align: center
 
-If any matching code is found, click one of the links in the ``e`` column to view the expression in the code viewer.
+If any matching code is found, click one of the links in the ``e`` column to open the file and highlight the matching expression.
 
 .. image:: ../images/codeql-for-visual-studio-code/basic-js-query-results-2.png
    :align: center
diff --git a/docs/codeql/codeql-language-guides/basic-query-for-python-code.rst b/docs/codeql/codeql-language-guides/basic-query-for-python-code.rst
index 4c727082ec5..a6df8b453d9 100644
--- a/docs/codeql/codeql-language-guides/basic-query-for-python-code.rst
+++ b/docs/codeql/codeql-language-guides/basic-query-for-python-code.rst
@@ -16,6 +16,8 @@ The query we're going to run performs a basic search of the code for ``if`` stat
 
    if error: pass
 
+.. include:: ../reusables/vs-code-basic-instructions/find-database.rst
+
 Running a quick query
 ---------------------
 
@@ -35,7 +37,7 @@ Running a quick query
 .. image:: ../images/codeql-for-visual-studio-code/basic-python-query-results-1.png
    :align: center
 
-If any matching code is found, click a link in the ``ifstmt`` column to view the ``if`` statement in the code viewer.
+If any matching code is found, click a link in the ``ifstmt`` column to open the file and highlight the matching ``if`` statement.
 
 .. image:: ../images/codeql-for-visual-studio-code/basic-python-query-results-2.png
    :align: center
diff --git a/docs/codeql/codeql-language-guides/basic-query-for-ruby-code.rst b/docs/codeql/codeql-language-guides/basic-query-for-ruby-code.rst
index 14c65b445a0..a74fe802ef2 100644
--- a/docs/codeql/codeql-language-guides/basic-query-for-ruby-code.rst
+++ b/docs/codeql/codeql-language-guides/basic-query-for-ruby-code.rst
@@ -17,12 +17,14 @@ The query we're going to run performs a basic search of the code for ``if`` expr
    if error
      # Handle the error
 
+.. include:: ../reusables/vs-code-basic-instructions/find-database.rst
+
 Running a quick query
 ---------------------
 
 .. include:: ../reusables/vs-code-basic-instructions/run-quick-query-1.rst
 
-#. In the quick query tab, delete the content and paste in the following query`.
+#. In the quick query tab, delete the content and paste in the following query.
 
    .. code-block:: ql
 
@@ -38,7 +40,7 @@ Running a quick query
 .. image:: ../images/codeql-for-visual-studio-code/basic-ruby-query-results-1.png
    :align: center
 
-If any matching code is found, click a link in the ``ifexpr`` column to view the ``if`` statement in the code viewer.
+If any matching code is found, click a link in the ``ifexpr`` column to open the file and highlight the matching ``if`` statement.
 
 .. image:: ../images/codeql-for-visual-studio-code/basic-ruby-query-results-2.png
    :align: center
diff --git a/docs/codeql/reusables/vs-code-basic-instructions/find-database.rst b/docs/codeql/reusables/vs-code-basic-instructions/find-database.rst
index f68b666e28b..a0129d96677 100644
--- a/docs/codeql/reusables/vs-code-basic-instructions/find-database.rst
+++ b/docs/codeql/reusables/vs-code-basic-instructions/find-database.rst
@@ -11,11 +11,7 @@ Before you start writing queries for |language-text| code, you need a CodeQL dat
 
 #. Optionally, if the repository has more than one CodeQL database available, select |language-code| to download the database created from the |language-text| code. 
 
-Information about the download progress for the database is shown in the bottom right corner of Visual Studio Code. When the download is complete, the database is shown with a check mark in the **Databases** section of the CodeQL extension.
-
-.. image:: ../images/codeql-for-visual-studio-code/database-selected.png
-       :align: center
-       :width: 500
+Information about the download progress for the database is shown in the bottom right corner of Visual Studio Code. When the download is complete, the database is shown with a check mark in the **Databases** section of the CodeQL extension (see screenshot below).
 
 .. |codeql-ext-icon| image:: ../images/codeql-for-visual-studio-code/codeql-extension-icon.png
   :width: 20

From 20b9c60d5864f61f810d13598640421b69de7917 Mon Sep 17 00:00:00 2001
From: Owen Mansel-Chan <owen-mc@github.com>
Date: Tue, 22 Nov 2022 07:36:07 +0000
Subject: [PATCH 0797/1420] Remove DataFlowImplConsistency.qll from makefile

---
 go/Makefile | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/go/Makefile b/go/Makefile
index 7e691d48803..47f4cc0f801 100644
--- a/go/Makefile
+++ b/go/Makefile
@@ -135,7 +135,7 @@ build/testdb/go.dbscheme: ql/lib/upgrades/initial/go.dbscheme
 
 .PHONY: sync-dataflow-libraries
 sync-dataflow-libraries:
-	for f in DataFlowImpl.qll DataFlowImpl2.qll DataFlowImplCommon.qll DataFlowImplConsistency.qll tainttracking1/TaintTrackingImpl.qll tainttracking2/TaintTrackingImpl.qll FlowSummaryImpl.qll AccessPathSyntax.qll;\
+	for f in DataFlowImpl.qll DataFlowImpl2.qll DataFlowImplCommon.qll tainttracking1/TaintTrackingImpl.qll tainttracking2/TaintTrackingImpl.qll FlowSummaryImpl.qll AccessPathSyntax.qll;\
 	do\
 		curl -s -o ./ql/lib/semmle/go/dataflow/internal/$$f https://raw.githubusercontent.com/github/codeql/$(DATAFLOW_BRANCH)/java/ql/lib/semmle/code/java/dataflow/internal/$$f;\
 	done

From ae408290dd36c98e4b3aa80894834668405f2454 Mon Sep 17 00:00:00 2001
From: Owen Mansel-Chan <owen-mc@github.com>
Date: Thu, 17 Nov 2022 16:48:26 +0000
Subject: [PATCH 0798/1420] Update shared library files for go to PR #9823

Merge commit: aa36556
---
 .../go/dataflow/internal/DataFlowImpl.qll     | 2507 +++++------------
 .../go/dataflow/internal/DataFlowImpl2.qll    | 2507 +++++------------
 2 files changed, 1536 insertions(+), 3478 deletions(-)

diff --git a/go/ql/lib/semmle/go/dataflow/internal/DataFlowImpl.qll b/go/ql/lib/semmle/go/dataflow/internal/DataFlowImpl.qll
index a076f7a2e45..340bfe280b7 100644
--- a/go/ql/lib/semmle/go/dataflow/internal/DataFlowImpl.qll
+++ b/go/ql/lib/semmle/go/dataflow/internal/DataFlowImpl.qll
@@ -597,7 +597,7 @@ private predicate hasSinkCallCtx(Configuration config) {
   )
 }
 
-private module Stage1 {
+private module Stage1 implements StageSig {
   class ApApprox = Unit;
 
   class Ap = Unit;
@@ -944,12 +944,9 @@ private module Stage1 {
   predicate revFlow(NodeEx node, Configuration config) { revFlow(node, _, config) }
 
   bindingset[node, state, config]
-  predicate revFlow(
-    NodeEx node, FlowState state, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
-  ) {
-    revFlow(node, toReturn, pragma[only_bind_into](config)) and
+  predicate revFlow(NodeEx node, FlowState state, Ap ap, Configuration config) {
+    revFlow(node, _, pragma[only_bind_into](config)) and
     exists(state) and
-    exists(returnAp) and
     exists(ap)
   }
 
@@ -1142,66 +1139,754 @@ private predicate flowIntoCallNodeCand1(
   )
 }
 
-private module Stage2 {
-  module PrevStage = Stage1;
+private signature module StageSig {
+  class Ap;
 
+  predicate revFlow(NodeEx node, Configuration config);
+
+  bindingset[node, state, config]
+  predicate revFlow(NodeEx node, FlowState state, Ap ap, Configuration config);
+
+  predicate callMayFlowThroughRev(DataFlowCall call, Configuration config);
+
+  predicate parameterMayFlowThrough(ParamNodeEx p, DataFlowCallable c, Ap ap, Configuration config);
+
+  predicate storeStepCand(
+    NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, DataFlowType contentType,
+    Configuration config
+  );
+
+  predicate readStepCand(NodeEx n1, Content c, NodeEx n2, Configuration config);
+}
+
+private module MkStage<StageSig PrevStage> {
   class ApApprox = PrevStage::Ap;
 
-  class Ap = boolean;
+  signature module StageParam {
+    class Ap;
 
-  class ApNil extends Ap {
-    ApNil() { this = false }
+    class ApNil extends Ap;
+
+    bindingset[result, ap]
+    ApApprox getApprox(Ap ap);
+
+    ApNil getApNil(NodeEx node);
+
+    bindingset[tc, tail]
+    Ap apCons(TypedContent tc, Ap tail);
+
+    Content getHeadContent(Ap ap);
+
+    class ApOption;
+
+    ApOption apNone();
+
+    ApOption apSome(Ap ap);
+
+    class Cc;
+
+    class CcCall extends Cc;
+
+    // TODO: member predicate on CcCall
+    predicate matchesCall(CcCall cc, DataFlowCall call);
+
+    class CcNoCall extends Cc;
+
+    Cc ccNone();
+
+    CcCall ccSomeCall();
+
+    class LocalCc;
+
+    bindingset[call, c, outercc]
+    CcCall getCallContextCall(DataFlowCall call, DataFlowCallable c, Cc outercc);
+
+    bindingset[call, c, innercc]
+    CcNoCall getCallContextReturn(DataFlowCallable c, DataFlowCall call, Cc innercc);
+
+    bindingset[node, cc]
+    LocalCc getLocalCc(NodeEx node, Cc cc);
+
+    bindingset[node1, state1, config]
+    bindingset[node2, state2, config]
+    predicate localStep(
+      NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
+      ApNil ap, Configuration config, LocalCc lcc
+    );
+
+    predicate flowOutOfCall(
+      DataFlowCall call, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow, Configuration config
+    );
+
+    predicate flowIntoCall(
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
+    );
+
+    bindingset[node, state, ap, config]
+    predicate filter(NodeEx node, FlowState state, Ap ap, Configuration config);
+
+    bindingset[ap, contentType]
+    predicate typecheckStore(Ap ap, DataFlowType contentType);
   }
 
-  bindingset[result, ap]
-  private ApApprox getApprox(Ap ap) { any() }
+  module Stage<StageParam Param> implements StageSig {
+    import Param
 
-  private ApNil getApNil(NodeEx node) { PrevStage::revFlow(node, _) and exists(result) }
+    /* Begin: Stage logic. */
+    bindingset[result, apa]
+    private ApApprox unbindApa(ApApprox apa) {
+      pragma[only_bind_out](apa) = pragma[only_bind_out](result)
+    }
 
-  bindingset[tc, tail]
-  private Ap apCons(TypedContent tc, Ap tail) { result = true and exists(tc) and exists(tail) }
+    pragma[nomagic]
+    private predicate flowThroughOutOfCall(
+      DataFlowCall call, CcCall ccc, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow,
+      Configuration config
+    ) {
+      flowOutOfCall(call, ret, out, allowsFieldFlow, pragma[only_bind_into](config)) and
+      PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
+      PrevStage::parameterMayFlowThrough(_, ret.getEnclosingCallable(), _,
+        pragma[only_bind_into](config)) and
+      matchesCall(ccc, call)
+    }
 
-  pragma[inline]
-  private Content getHeadContent(Ap ap) { exists(result) and ap = true }
+    /**
+     * Holds if `node` is reachable with access path `ap` from a source in the
+     * configuration `config`.
+     *
+     * The call context `cc` records whether the node is reached through an
+     * argument in a call, and if so, `argAp` records the access path of that
+     * argument.
+     */
+    pragma[nomagic]
+    predicate fwdFlow(
+      NodeEx node, FlowState state, Cc cc, ApOption argAp, Ap ap, Configuration config
+    ) {
+      fwdFlow0(node, state, cc, argAp, ap, config) and
+      PrevStage::revFlow(node, state, unbindApa(getApprox(ap)), config) and
+      filter(node, state, ap, config)
+    }
 
-  class ApOption = BooleanOption;
+    pragma[nomagic]
+    private predicate fwdFlow0(
+      NodeEx node, FlowState state, Cc cc, ApOption argAp, Ap ap, Configuration config
+    ) {
+      sourceNode(node, state, config) and
+      (if hasSourceCallCtx(config) then cc = ccSomeCall() else cc = ccNone()) and
+      argAp = apNone() and
+      ap = getApNil(node)
+      or
+      exists(NodeEx mid, FlowState state0, Ap ap0, LocalCc localCc |
+        fwdFlow(mid, state0, cc, argAp, ap0, config) and
+        localCc = getLocalCc(mid, cc)
+      |
+        localStep(mid, state0, node, state, true, _, config, localCc) and
+        ap = ap0
+        or
+        localStep(mid, state0, node, state, false, ap, config, localCc) and
+        ap0 instanceof ApNil
+      )
+      or
+      exists(NodeEx mid |
+        fwdFlow(mid, pragma[only_bind_into](state), _, _, ap, pragma[only_bind_into](config)) and
+        jumpStep(mid, node, config) and
+        cc = ccNone() and
+        argAp = apNone()
+      )
+      or
+      exists(NodeEx mid, ApNil nil |
+        fwdFlow(mid, state, _, _, nil, pragma[only_bind_into](config)) and
+        additionalJumpStep(mid, node, config) and
+        cc = ccNone() and
+        argAp = apNone() and
+        ap = getApNil(node)
+      )
+      or
+      exists(NodeEx mid, FlowState state0, ApNil nil |
+        fwdFlow(mid, state0, _, _, nil, pragma[only_bind_into](config)) and
+        additionalJumpStateStep(mid, state0, node, state, config) and
+        cc = ccNone() and
+        argAp = apNone() and
+        ap = getApNil(node)
+      )
+      or
+      // store
+      exists(TypedContent tc, Ap ap0 |
+        fwdFlowStore(_, ap0, tc, node, state, cc, argAp, config) and
+        ap = apCons(tc, ap0)
+      )
+      or
+      // read
+      exists(Ap ap0, Content c |
+        fwdFlowRead(ap0, c, _, node, state, cc, argAp, config) and
+        fwdFlowConsCand(ap0, c, ap, config)
+      )
+      or
+      // flow into a callable
+      exists(ApApprox apa |
+        fwdFlowIn(_, node, state, _, cc, _, ap, config) and
+        apa = getApprox(ap) and
+        if PrevStage::parameterMayFlowThrough(node, _, apa, config)
+        then argAp = apSome(ap)
+        else argAp = apNone()
+      )
+      or
+      // flow out of a callable
+      fwdFlowOutNotFromArg(node, state, cc, argAp, ap, config)
+      or
+      exists(DataFlowCall call, Ap argAp0 |
+        fwdFlowOutFromArg(call, node, state, argAp0, ap, config) and
+        fwdFlowIsEntered(call, cc, argAp, argAp0, config)
+      )
+    }
 
-  ApOption apNone() { result = TBooleanNone() }
+    pragma[nomagic]
+    private predicate fwdFlowStore(
+      NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc, ApOption argAp,
+      Configuration config
+    ) {
+      exists(DataFlowType contentType |
+        fwdFlow(node1, state, cc, argAp, ap1, config) and
+        PrevStage::storeStepCand(node1, unbindApa(getApprox(ap1)), tc, node2, contentType, config) and
+        typecheckStore(ap1, contentType)
+      )
+    }
 
-  ApOption apSome(Ap ap) { result = TBooleanSome(ap) }
+    /**
+     * Holds if forward flow with access path `tail` reaches a store of `c`
+     * resulting in access path `cons`.
+     */
+    pragma[nomagic]
+    private predicate fwdFlowConsCand(Ap cons, Content c, Ap tail, Configuration config) {
+      exists(TypedContent tc |
+        fwdFlowStore(_, tail, tc, _, _, _, _, config) and
+        tc.getContent() = c and
+        cons = apCons(tc, tail)
+      )
+    }
 
+    pragma[nomagic]
+    private predicate fwdFlowRead(
+      Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc, ApOption argAp,
+      Configuration config
+    ) {
+      fwdFlow(node1, state, cc, argAp, ap, config) and
+      PrevStage::readStepCand(node1, c, node2, config) and
+      getHeadContent(ap) = c
+    }
+
+    pragma[nomagic]
+    private predicate fwdFlowIn(
+      DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, Cc innercc, ApOption argAp,
+      Ap ap, Configuration config
+    ) {
+      exists(ArgNodeEx arg, boolean allowsFieldFlow |
+        fwdFlow(arg, state, outercc, argAp, ap, config) and
+        flowIntoCall(call, arg, p, allowsFieldFlow, config) and
+        innercc = getCallContextCall(call, p.getEnclosingCallable(), outercc) and
+        if allowsFieldFlow = false then ap instanceof ApNil else any()
+      )
+    }
+
+    pragma[nomagic]
+    private predicate fwdFlowOutNotFromArg(
+      NodeEx out, FlowState state, Cc ccOut, ApOption argAp, Ap ap, Configuration config
+    ) {
+      exists(
+        DataFlowCall call, RetNodeEx ret, boolean allowsFieldFlow, CcNoCall innercc,
+        DataFlowCallable inner
+      |
+        fwdFlow(ret, state, innercc, argAp, ap, config) and
+        flowOutOfCall(call, ret, out, allowsFieldFlow, config) and
+        inner = ret.getEnclosingCallable() and
+        ccOut = getCallContextReturn(inner, call, innercc) and
+        if allowsFieldFlow = false then ap instanceof ApNil else any()
+      )
+    }
+
+    pragma[nomagic]
+    private predicate fwdFlowOutFromArg(
+      DataFlowCall call, NodeEx out, FlowState state, Ap argAp, Ap ap, Configuration config
+    ) {
+      exists(RetNodeEx ret, boolean allowsFieldFlow, CcCall ccc |
+        fwdFlow(ret, state, ccc, apSome(argAp), ap, config) and
+        flowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, config) and
+        if allowsFieldFlow = false then ap instanceof ApNil else any()
+      )
+    }
+
+    /**
+     * Holds if an argument to `call` is reached in the flow covered by `fwdFlow`
+     * and data might flow through the target callable and back out at `call`.
+     */
+    pragma[nomagic]
+    private predicate fwdFlowIsEntered(
+      DataFlowCall call, Cc cc, ApOption argAp, Ap ap, Configuration config
+    ) {
+      exists(ParamNodeEx p |
+        fwdFlowIn(call, p, _, cc, _, argAp, ap, config) and
+        PrevStage::parameterMayFlowThrough(p, _, unbindApa(getApprox(ap)), config)
+      )
+    }
+
+    pragma[nomagic]
+    private predicate storeStepFwd(
+      NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, Ap ap2, Configuration config
+    ) {
+      fwdFlowStore(node1, ap1, tc, node2, _, _, _, config) and
+      ap2 = apCons(tc, ap1) and
+      fwdFlowRead(ap2, tc.getContent(), _, _, _, _, _, config)
+    }
+
+    private predicate readStepFwd(
+      NodeEx n1, Ap ap1, Content c, NodeEx n2, Ap ap2, Configuration config
+    ) {
+      fwdFlowRead(ap1, c, n1, n2, _, _, _, config) and
+      fwdFlowConsCand(ap1, c, ap2, config)
+    }
+
+    pragma[nomagic]
+    private predicate callMayFlowThroughFwd(DataFlowCall call, Configuration config) {
+      exists(Ap argAp0, NodeEx out, FlowState state, Cc cc, ApOption argAp, Ap ap |
+        fwdFlow(out, state, pragma[only_bind_into](cc), pragma[only_bind_into](argAp), ap,
+          pragma[only_bind_into](config)) and
+        fwdFlowOutFromArg(call, out, state, argAp0, ap, config) and
+        fwdFlowIsEntered(pragma[only_bind_into](call), pragma[only_bind_into](cc),
+          pragma[only_bind_into](argAp), pragma[only_bind_into](argAp0),
+          pragma[only_bind_into](config))
+      )
+    }
+
+    pragma[nomagic]
+    private predicate flowThroughIntoCall(
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
+    ) {
+      flowIntoCall(call, arg, p, allowsFieldFlow, config) and
+      fwdFlow(arg, _, _, _, _, pragma[only_bind_into](config)) and
+      PrevStage::parameterMayFlowThrough(p, _, _, pragma[only_bind_into](config)) and
+      callMayFlowThroughFwd(call, pragma[only_bind_into](config))
+    }
+
+    pragma[nomagic]
+    private predicate returnNodeMayFlowThrough(
+      RetNodeEx ret, FlowState state, Ap ap, Configuration config
+    ) {
+      fwdFlow(ret, state, any(CcCall ccc), apSome(_), ap, config)
+    }
+
+    /**
+     * Holds if `node` with access path `ap` is part of a path from a source to a
+     * sink in the configuration `config`.
+     *
+     * The Boolean `toReturn` records whether the node must be returned from the
+     * enclosing callable in order to reach a sink, and if so, `returnAp` records
+     * the access path of the returned value.
+     */
+    pragma[nomagic]
+    predicate revFlow(
+      NodeEx node, FlowState state, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
+    ) {
+      revFlow0(node, state, toReturn, returnAp, ap, config) and
+      fwdFlow(node, state, _, _, ap, config)
+    }
+
+    pragma[nomagic]
+    private predicate revFlow0(
+      NodeEx node, FlowState state, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
+    ) {
+      fwdFlow(node, state, _, _, ap, config) and
+      sinkNode(node, state, config) and
+      (if hasSinkCallCtx(config) then toReturn = true else toReturn = false) and
+      returnAp = apNone() and
+      ap instanceof ApNil
+      or
+      exists(NodeEx mid, FlowState state0 |
+        localStep(node, state, mid, state0, true, _, config, _) and
+        revFlow(mid, state0, toReturn, returnAp, ap, config)
+      )
+      or
+      exists(NodeEx mid, FlowState state0, ApNil nil |
+        fwdFlow(node, pragma[only_bind_into](state), _, _, ap, pragma[only_bind_into](config)) and
+        localStep(node, pragma[only_bind_into](state), mid, state0, false, _, config, _) and
+        revFlow(mid, state0, toReturn, returnAp, nil, pragma[only_bind_into](config)) and
+        ap instanceof ApNil
+      )
+      or
+      exists(NodeEx mid |
+        jumpStep(node, mid, config) and
+        revFlow(mid, state, _, _, ap, config) and
+        toReturn = false and
+        returnAp = apNone()
+      )
+      or
+      exists(NodeEx mid, ApNil nil |
+        fwdFlow(node, _, _, _, ap, pragma[only_bind_into](config)) and
+        additionalJumpStep(node, mid, config) and
+        revFlow(pragma[only_bind_into](mid), state, _, _, nil, pragma[only_bind_into](config)) and
+        toReturn = false and
+        returnAp = apNone() and
+        ap instanceof ApNil
+      )
+      or
+      exists(NodeEx mid, FlowState state0, ApNil nil |
+        fwdFlow(node, _, _, _, ap, pragma[only_bind_into](config)) and
+        additionalJumpStateStep(node, state, mid, state0, config) and
+        revFlow(pragma[only_bind_into](mid), pragma[only_bind_into](state0), _, _, nil,
+          pragma[only_bind_into](config)) and
+        toReturn = false and
+        returnAp = apNone() and
+        ap instanceof ApNil
+      )
+      or
+      // store
+      exists(Ap ap0, Content c |
+        revFlowStore(ap0, c, ap, node, state, _, _, toReturn, returnAp, config) and
+        revFlowConsCand(ap0, c, ap, config)
+      )
+      or
+      // read
+      exists(NodeEx mid, Ap ap0 |
+        revFlow(mid, state, toReturn, returnAp, ap0, config) and
+        readStepFwd(node, ap, _, mid, ap0, config)
+      )
+      or
+      // flow into a callable
+      revFlowInNotToReturn(node, state, returnAp, ap, config) and
+      toReturn = false
+      or
+      exists(DataFlowCall call, Ap returnAp0 |
+        revFlowInToReturn(call, node, state, returnAp0, ap, config) and
+        revFlowIsReturned(call, toReturn, returnAp, returnAp0, config)
+      )
+      or
+      // flow out of a callable
+      revFlowOut(_, node, state, _, _, ap, config) and
+      toReturn = true and
+      if returnNodeMayFlowThrough(node, state, ap, config)
+      then returnAp = apSome(ap)
+      else returnAp = apNone()
+    }
+
+    pragma[nomagic]
+    private predicate revFlowStore(
+      Ap ap0, Content c, Ap ap, NodeEx node, FlowState state, TypedContent tc, NodeEx mid,
+      boolean toReturn, ApOption returnAp, Configuration config
+    ) {
+      revFlow(mid, state, toReturn, returnAp, ap0, config) and
+      storeStepFwd(node, ap, tc, mid, ap0, config) and
+      tc.getContent() = c
+    }
+
+    /**
+     * Holds if reverse flow with access path `tail` reaches a read of `c`
+     * resulting in access path `cons`.
+     */
+    pragma[nomagic]
+    private predicate revFlowConsCand(Ap cons, Content c, Ap tail, Configuration config) {
+      exists(NodeEx mid, Ap tail0 |
+        revFlow(mid, _, _, _, tail, config) and
+        tail = pragma[only_bind_into](tail0) and
+        readStepFwd(_, cons, c, mid, tail0, config)
+      )
+    }
+
+    pragma[nomagic]
+    private predicate revFlowOut(
+      DataFlowCall call, RetNodeEx ret, FlowState state, boolean toReturn, ApOption returnAp, Ap ap,
+      Configuration config
+    ) {
+      exists(NodeEx out, boolean allowsFieldFlow |
+        revFlow(out, state, toReturn, returnAp, ap, config) and
+        flowOutOfCall(call, ret, out, allowsFieldFlow, config) and
+        if allowsFieldFlow = false then ap instanceof ApNil else any()
+      )
+    }
+
+    pragma[nomagic]
+    private predicate revFlowInNotToReturn(
+      ArgNodeEx arg, FlowState state, ApOption returnAp, Ap ap, Configuration config
+    ) {
+      exists(ParamNodeEx p, boolean allowsFieldFlow |
+        revFlow(p, state, false, returnAp, ap, config) and
+        flowIntoCall(_, arg, p, allowsFieldFlow, config) and
+        if allowsFieldFlow = false then ap instanceof ApNil else any()
+      )
+    }
+
+    pragma[nomagic]
+    private predicate revFlowInToReturn(
+      DataFlowCall call, ArgNodeEx arg, FlowState state, Ap returnAp, Ap ap, Configuration config
+    ) {
+      exists(ParamNodeEx p, boolean allowsFieldFlow |
+        revFlow(p, state, true, apSome(returnAp), ap, config) and
+        flowThroughIntoCall(call, arg, p, allowsFieldFlow, config) and
+        if allowsFieldFlow = false then ap instanceof ApNil else any()
+      )
+    }
+
+    /**
+     * Holds if an output from `call` is reached in the flow covered by `revFlow`
+     * and data might flow through the target callable resulting in reverse flow
+     * reaching an argument of `call`.
+     */
+    pragma[nomagic]
+    private predicate revFlowIsReturned(
+      DataFlowCall call, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
+    ) {
+      exists(RetNodeEx ret, FlowState state, CcCall ccc |
+        revFlowOut(call, ret, state, toReturn, returnAp, ap, config) and
+        fwdFlow(ret, state, ccc, apSome(_), ap, config) and
+        matchesCall(ccc, call)
+      )
+    }
+
+    pragma[nomagic]
+    predicate storeStepCand(
+      NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, DataFlowType contentType,
+      Configuration config
+    ) {
+      exists(Ap ap2, Content c |
+        PrevStage::storeStepCand(node1, _, tc, node2, contentType, config) and
+        revFlowStore(ap2, c, ap1, node1, _, tc, node2, _, _, config) and
+        revFlowConsCand(ap2, c, ap1, config)
+      )
+    }
+
+    predicate readStepCand(NodeEx node1, Content c, NodeEx node2, Configuration config) {
+      exists(Ap ap1, Ap ap2 |
+        revFlow(node2, _, _, _, pragma[only_bind_into](ap2), pragma[only_bind_into](config)) and
+        readStepFwd(node1, ap1, c, node2, ap2, config) and
+        revFlowStore(ap1, c, pragma[only_bind_into](ap2), _, _, _, _, _, _,
+          pragma[only_bind_into](config))
+      )
+    }
+
+    predicate revFlow(NodeEx node, FlowState state, Configuration config) {
+      revFlow(node, state, _, _, _, config)
+    }
+
+    predicate revFlow(NodeEx node, FlowState state, Ap ap, Configuration config) {
+      revFlow(node, state, _, _, ap, config)
+    }
+
+    pragma[nomagic]
+    predicate revFlow(NodeEx node, Configuration config) { revFlow(node, _, _, _, _, config) }
+
+    // use an alias as a workaround for bad functionality-induced joins
+    pragma[nomagic]
+    predicate revFlowAlias(NodeEx node, Configuration config) { revFlow(node, _, _, _, _, config) }
+
+    // use an alias as a workaround for bad functionality-induced joins
+    pragma[nomagic]
+    predicate revFlowAlias(NodeEx node, FlowState state, Ap ap, Configuration config) {
+      revFlow(node, state, ap, config)
+    }
+
+    private predicate fwdConsCand(TypedContent tc, Ap ap, Configuration config) {
+      storeStepFwd(_, ap, tc, _, _, config)
+    }
+
+    private predicate revConsCand(TypedContent tc, Ap ap, Configuration config) {
+      storeStepCand(_, ap, tc, _, _, config)
+    }
+
+    private predicate validAp(Ap ap, Configuration config) {
+      revFlow(_, _, _, _, ap, config) and ap instanceof ApNil
+      or
+      exists(TypedContent head, Ap tail |
+        consCand(head, tail, config) and
+        ap = apCons(head, tail)
+      )
+    }
+
+    predicate consCand(TypedContent tc, Ap ap, Configuration config) {
+      revConsCand(tc, ap, config) and
+      validAp(ap, config)
+    }
+
+    pragma[noinline]
+    private predicate parameterFlow(
+      ParamNodeEx p, Ap ap, Ap ap0, DataFlowCallable c, Configuration config
+    ) {
+      revFlow(p, _, true, apSome(ap0), ap, config) and
+      c = p.getEnclosingCallable()
+    }
+
+    predicate parameterMayFlowThrough(ParamNodeEx p, DataFlowCallable c, Ap ap, Configuration config) {
+      exists(RetNodeEx ret, FlowState state, Ap ap0, ReturnKindExt kind, ParameterPosition pos |
+        parameterFlow(p, ap, ap0, c, config) and
+        c = ret.getEnclosingCallable() and
+        revFlow(pragma[only_bind_into](ret), pragma[only_bind_into](state), true, apSome(_),
+          pragma[only_bind_into](ap0), pragma[only_bind_into](config)) and
+        fwdFlow(ret, state, any(CcCall ccc), apSome(ap), ap0, config) and
+        kind = ret.getKind() and
+        p.getPosition() = pos and
+        // we don't expect a parameter to return stored in itself, unless explicitly allowed
+        (
+          not kind.(ParamUpdateReturnKind).getPosition() = pos
+          or
+          p.allowParameterReturnInSelf()
+        )
+      )
+    }
+
+    pragma[nomagic]
+    predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
+      exists(
+        Ap returnAp0, ArgNodeEx arg, FlowState state, boolean toReturn, ApOption returnAp, Ap ap
+      |
+        revFlow(arg, state, toReturn, returnAp, ap, config) and
+        revFlowInToReturn(call, arg, state, returnAp0, ap, config) and
+        revFlowIsReturned(call, toReturn, returnAp, returnAp0, config)
+      )
+    }
+
+    predicate stats(
+      boolean fwd, int nodes, int fields, int conscand, int states, int tuples, Configuration config
+    ) {
+      fwd = true and
+      nodes = count(NodeEx node | fwdFlow(node, _, _, _, _, config)) and
+      fields = count(TypedContent f0 | fwdConsCand(f0, _, config)) and
+      conscand = count(TypedContent f0, Ap ap | fwdConsCand(f0, ap, config)) and
+      states = count(FlowState state | fwdFlow(_, state, _, _, _, config)) and
+      tuples =
+        count(NodeEx n, FlowState state, Cc cc, ApOption argAp, Ap ap |
+          fwdFlow(n, state, cc, argAp, ap, config)
+        )
+      or
+      fwd = false and
+      nodes = count(NodeEx node | revFlow(node, _, _, _, _, config)) and
+      fields = count(TypedContent f0 | consCand(f0, _, config)) and
+      conscand = count(TypedContent f0, Ap ap | consCand(f0, ap, config)) and
+      states = count(FlowState state | revFlow(_, state, _, _, _, config)) and
+      tuples =
+        count(NodeEx n, FlowState state, boolean b, ApOption retAp, Ap ap |
+          revFlow(n, state, b, retAp, ap, config)
+        )
+    }
+    /* End: Stage logic. */
+  }
+}
+
+private module BooleanCallContext {
+  class Cc extends boolean {
+    Cc() { this in [true, false] }
+  }
+
+  class CcCall extends Cc {
+    CcCall() { this = true }
+  }
+
+  /** Holds if the call context may be `call`. */
+  predicate matchesCall(CcCall cc, DataFlowCall call) { any() }
+
+  class CcNoCall extends Cc {
+    CcNoCall() { this = false }
+  }
+
+  Cc ccNone() { result = false }
+
+  CcCall ccSomeCall() { result = true }
+
+  class LocalCc = Unit;
+
+  bindingset[node, cc]
+  LocalCc getLocalCc(NodeEx node, Cc cc) { any() }
+
+  bindingset[call, c, outercc]
+  CcCall getCallContextCall(DataFlowCall call, DataFlowCallable c, Cc outercc) { any() }
+
+  bindingset[call, c, innercc]
+  CcNoCall getCallContextReturn(DataFlowCallable c, DataFlowCall call, Cc innercc) { any() }
+}
+
+private module Level1CallContext {
   class Cc = CallContext;
 
   class CcCall = CallContextCall;
 
+  pragma[inline]
+  predicate matchesCall(CcCall cc, DataFlowCall call) { cc.matchesCall(call) }
+
   class CcNoCall = CallContextNoCall;
 
   Cc ccNone() { result instanceof CallContextAny }
 
   CcCall ccSomeCall() { result instanceof CallContextSomeCall }
 
-  private class LocalCc = Unit;
+  module NoLocalCallContext {
+    class LocalCc = Unit;
 
-  bindingset[call, c, outercc]
-  private CcCall getCallContextCall(DataFlowCall call, DataFlowCallable c, Cc outercc) {
-    checkCallContextCall(outercc, call, c) and
-    if recordDataFlowCallSiteDispatch(call, c)
-    then result = TSpecificCall(call)
-    else result = TSomeCall()
+    bindingset[node, cc]
+    LocalCc getLocalCc(NodeEx node, Cc cc) { any() }
+
+    bindingset[call, c, outercc]
+    CcCall getCallContextCall(DataFlowCall call, DataFlowCallable c, Cc outercc) {
+      checkCallContextCall(outercc, call, c) and
+      if recordDataFlowCallSiteDispatch(call, c)
+      then result = TSpecificCall(call)
+      else result = TSomeCall()
+    }
+  }
+
+  module LocalCallContext {
+    class LocalCc = LocalCallContext;
+
+    bindingset[node, cc]
+    LocalCc getLocalCc(NodeEx node, Cc cc) {
+      result =
+        getLocalCallContext(pragma[only_bind_into](pragma[only_bind_out](cc)),
+          node.getEnclosingCallable())
+    }
+
+    bindingset[call, c, outercc]
+    CcCall getCallContextCall(DataFlowCall call, DataFlowCallable c, Cc outercc) {
+      checkCallContextCall(outercc, call, c) and
+      if recordDataFlowCallSite(call, c) then result = TSpecificCall(call) else result = TSomeCall()
+    }
   }
 
   bindingset[call, c, innercc]
-  private CcNoCall getCallContextReturn(DataFlowCallable c, DataFlowCall call, Cc innercc) {
+  CcNoCall getCallContextReturn(DataFlowCallable c, DataFlowCall call, Cc innercc) {
     checkCallContextReturn(innercc, c, call) and
     if reducedViableImplInReturn(c, call) then result = TReturn(c, call) else result = ccNone()
   }
+}
 
-  bindingset[node, cc]
-  private LocalCc getLocalCc(NodeEx node, Cc cc) { any() }
+private module Stage2Param implements MkStage<Stage1>::StageParam {
+  private module PrevStage = Stage1;
+
+  class Ap extends boolean {
+    Ap() { this in [true, false] }
+  }
+
+  class ApNil extends Ap {
+    ApNil() { this = false }
+  }
+
+  bindingset[result, ap]
+  PrevStage::Ap getApprox(Ap ap) { any() }
+
+  ApNil getApNil(NodeEx node) { Stage1::revFlow(node, _) and exists(result) }
+
+  bindingset[tc, tail]
+  Ap apCons(TypedContent tc, Ap tail) { result = true and exists(tc) and exists(tail) }
+
+  pragma[inline]
+  Content getHeadContent(Ap ap) { exists(result) and ap = true }
+
+  class ApOption = BooleanOption;
+
+  ApOption apNone() { result = TBooleanNone() }
+
+  ApOption apSome(Ap ap) { result = TBooleanSome(ap) }
+
+  import Level1CallContext
+  import NoLocalCallContext
 
   bindingset[node1, state1, config]
   bindingset[node2, state2, config]
-  private predicate localStep(
+  predicate localStep(
     NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
     ApNil ap, Configuration config, LocalCc lcc
   ) {
@@ -1221,9 +1906,9 @@ private module Stage2 {
     exists(lcc)
   }
 
-  private predicate flowOutOfCall = flowOutOfCallNodeCand1/5;
+  predicate flowOutOfCall = flowOutOfCallNodeCand1/5;
 
-  private predicate flowIntoCall = flowIntoCallNodeCand1/5;
+  predicate flowIntoCall = flowIntoCallNodeCand1/5;
 
   pragma[nomagic]
   private predicate expectsContentCand(NodeEx node, Configuration config) {
@@ -1235,7 +1920,7 @@ private module Stage2 {
   }
 
   bindingset[node, state, ap, config]
-  private predicate filter(NodeEx node, FlowState state, Ap ap, Configuration config) {
+  predicate filter(NodeEx node, FlowState state, Ap ap, Configuration config) {
     PrevStage::revFlowState(state, pragma[only_bind_into](config)) and
     exists(ap) and
     not stateBarrier(node, state, config) and
@@ -1248,542 +1933,11 @@ private module Stage2 {
   }
 
   bindingset[ap, contentType]
-  private predicate typecheckStore(Ap ap, DataFlowType contentType) { any() }
+  predicate typecheckStore(Ap ap, DataFlowType contentType) { any() }
+}
 
-  /* Begin: Stage 2 logic. */
-  bindingset[node, state, config]
-  private predicate flowCand(NodeEx node, FlowState state, ApApprox apa, Configuration config) {
-    PrevStage::revFlow(node, state, _, _, apa, config)
-  }
-
-  bindingset[result, apa]
-  private ApApprox unbindApa(ApApprox apa) {
-    pragma[only_bind_out](apa) = pragma[only_bind_out](result)
-  }
-
-  pragma[nomagic]
-  private predicate flowThroughOutOfCall(
-    DataFlowCall call, CcCall ccc, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow,
-    Configuration config
-  ) {
-    flowOutOfCall(call, ret, out, allowsFieldFlow, pragma[only_bind_into](config)) and
-    PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
-    PrevStage::parameterMayFlowThrough(_, ret.getEnclosingCallable(), _,
-      pragma[only_bind_into](config)) and
-    ccc.matchesCall(call)
-  }
-
-  /**
-   * Holds if `node` is reachable with access path `ap` from a source in the
-   * configuration `config`.
-   *
-   * The call context `cc` records whether the node is reached through an
-   * argument in a call, and if so, `argAp` records the access path of that
-   * argument.
-   */
-  pragma[nomagic]
-  predicate fwdFlow(NodeEx node, FlowState state, Cc cc, ApOption argAp, Ap ap, Configuration config) {
-    fwdFlow0(node, state, cc, argAp, ap, config) and
-    flowCand(node, state, unbindApa(getApprox(ap)), config) and
-    filter(node, state, ap, config)
-  }
-
-  pragma[nomagic]
-  private predicate fwdFlow0(
-    NodeEx node, FlowState state, Cc cc, ApOption argAp, Ap ap, Configuration config
-  ) {
-    sourceNode(node, state, config) and
-    (if hasSourceCallCtx(config) then cc = ccSomeCall() else cc = ccNone()) and
-    argAp = apNone() and
-    ap = getApNil(node)
-    or
-    exists(NodeEx mid, FlowState state0, Ap ap0, LocalCc localCc |
-      fwdFlow(mid, state0, cc, argAp, ap0, config) and
-      localCc = getLocalCc(mid, cc)
-    |
-      localStep(mid, state0, node, state, true, _, config, localCc) and
-      ap = ap0
-      or
-      localStep(mid, state0, node, state, false, ap, config, localCc) and
-      ap0 instanceof ApNil
-    )
-    or
-    exists(NodeEx mid |
-      fwdFlow(mid, pragma[only_bind_into](state), _, _, ap, pragma[only_bind_into](config)) and
-      jumpStep(mid, node, config) and
-      cc = ccNone() and
-      argAp = apNone()
-    )
-    or
-    exists(NodeEx mid, ApNil nil |
-      fwdFlow(mid, state, _, _, nil, pragma[only_bind_into](config)) and
-      additionalJumpStep(mid, node, config) and
-      cc = ccNone() and
-      argAp = apNone() and
-      ap = getApNil(node)
-    )
-    or
-    exists(NodeEx mid, FlowState state0, ApNil nil |
-      fwdFlow(mid, state0, _, _, nil, pragma[only_bind_into](config)) and
-      additionalJumpStateStep(mid, state0, node, state, config) and
-      cc = ccNone() and
-      argAp = apNone() and
-      ap = getApNil(node)
-    )
-    or
-    // store
-    exists(TypedContent tc, Ap ap0 |
-      fwdFlowStore(_, ap0, tc, node, state, cc, argAp, config) and
-      ap = apCons(tc, ap0)
-    )
-    or
-    // read
-    exists(Ap ap0, Content c |
-      fwdFlowRead(ap0, c, _, node, state, cc, argAp, config) and
-      fwdFlowConsCand(ap0, c, ap, config)
-    )
-    or
-    // flow into a callable
-    exists(ApApprox apa |
-      fwdFlowIn(_, node, state, _, cc, _, ap, config) and
-      apa = getApprox(ap) and
-      if PrevStage::parameterMayFlowThrough(node, _, apa, config)
-      then argAp = apSome(ap)
-      else argAp = apNone()
-    )
-    or
-    // flow out of a callable
-    fwdFlowOutNotFromArg(node, state, cc, argAp, ap, config)
-    or
-    exists(DataFlowCall call, Ap argAp0 |
-      fwdFlowOutFromArg(call, node, state, argAp0, ap, config) and
-      fwdFlowIsEntered(call, cc, argAp, argAp0, config)
-    )
-  }
-
-  pragma[nomagic]
-  private predicate fwdFlowStore(
-    NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc, ApOption argAp,
-    Configuration config
-  ) {
-    exists(DataFlowType contentType |
-      fwdFlow(node1, state, cc, argAp, ap1, config) and
-      PrevStage::storeStepCand(node1, unbindApa(getApprox(ap1)), tc, node2, contentType, config) and
-      typecheckStore(ap1, contentType)
-    )
-  }
-
-  /**
-   * Holds if forward flow with access path `tail` reaches a store of `c`
-   * resulting in access path `cons`.
-   */
-  pragma[nomagic]
-  private predicate fwdFlowConsCand(Ap cons, Content c, Ap tail, Configuration config) {
-    exists(TypedContent tc |
-      fwdFlowStore(_, tail, tc, _, _, _, _, config) and
-      tc.getContent() = c and
-      cons = apCons(tc, tail)
-    )
-  }
-
-  pragma[nomagic]
-  private predicate fwdFlowRead(
-    Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc, ApOption argAp,
-    Configuration config
-  ) {
-    fwdFlow(node1, state, cc, argAp, ap, config) and
-    PrevStage::readStepCand(node1, c, node2, config) and
-    getHeadContent(ap) = c
-  }
-
-  pragma[nomagic]
-  private predicate fwdFlowIn(
-    DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, Cc innercc, ApOption argAp,
-    Ap ap, Configuration config
-  ) {
-    exists(ArgNodeEx arg, boolean allowsFieldFlow |
-      fwdFlow(arg, state, outercc, argAp, ap, config) and
-      flowIntoCall(call, arg, p, allowsFieldFlow, config) and
-      innercc = getCallContextCall(call, p.getEnclosingCallable(), outercc) and
-      if allowsFieldFlow = false then ap instanceof ApNil else any()
-    )
-  }
-
-  pragma[nomagic]
-  private predicate fwdFlowOutNotFromArg(
-    NodeEx out, FlowState state, Cc ccOut, ApOption argAp, Ap ap, Configuration config
-  ) {
-    exists(
-      DataFlowCall call, RetNodeEx ret, boolean allowsFieldFlow, CcNoCall innercc,
-      DataFlowCallable inner
-    |
-      fwdFlow(ret, state, innercc, argAp, ap, config) and
-      flowOutOfCall(call, ret, out, allowsFieldFlow, config) and
-      inner = ret.getEnclosingCallable() and
-      ccOut = getCallContextReturn(inner, call, innercc) and
-      if allowsFieldFlow = false then ap instanceof ApNil else any()
-    )
-  }
-
-  pragma[nomagic]
-  private predicate fwdFlowOutFromArg(
-    DataFlowCall call, NodeEx out, FlowState state, Ap argAp, Ap ap, Configuration config
-  ) {
-    exists(RetNodeEx ret, boolean allowsFieldFlow, CcCall ccc |
-      fwdFlow(ret, state, ccc, apSome(argAp), ap, config) and
-      flowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, config) and
-      if allowsFieldFlow = false then ap instanceof ApNil else any()
-    )
-  }
-
-  /**
-   * Holds if an argument to `call` is reached in the flow covered by `fwdFlow`
-   * and data might flow through the target callable and back out at `call`.
-   */
-  pragma[nomagic]
-  private predicate fwdFlowIsEntered(
-    DataFlowCall call, Cc cc, ApOption argAp, Ap ap, Configuration config
-  ) {
-    exists(ParamNodeEx p |
-      fwdFlowIn(call, p, _, cc, _, argAp, ap, config) and
-      PrevStage::parameterMayFlowThrough(p, _, unbindApa(getApprox(ap)), config)
-    )
-  }
-
-  pragma[nomagic]
-  private predicate storeStepFwd(
-    NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, Ap ap2, Configuration config
-  ) {
-    fwdFlowStore(node1, ap1, tc, node2, _, _, _, config) and
-    ap2 = apCons(tc, ap1) and
-    fwdFlowRead(ap2, tc.getContent(), _, _, _, _, _, config)
-  }
-
-  private predicate readStepFwd(
-    NodeEx n1, Ap ap1, Content c, NodeEx n2, Ap ap2, Configuration config
-  ) {
-    fwdFlowRead(ap1, c, n1, n2, _, _, _, config) and
-    fwdFlowConsCand(ap1, c, ap2, config)
-  }
-
-  pragma[nomagic]
-  private predicate callMayFlowThroughFwd(DataFlowCall call, Configuration config) {
-    exists(Ap argAp0, NodeEx out, FlowState state, Cc cc, ApOption argAp, Ap ap |
-      fwdFlow(out, state, pragma[only_bind_into](cc), pragma[only_bind_into](argAp), ap,
-        pragma[only_bind_into](config)) and
-      fwdFlowOutFromArg(call, out, state, argAp0, ap, config) and
-      fwdFlowIsEntered(pragma[only_bind_into](call), pragma[only_bind_into](cc),
-        pragma[only_bind_into](argAp), pragma[only_bind_into](argAp0),
-        pragma[only_bind_into](config))
-    )
-  }
-
-  pragma[nomagic]
-  private predicate flowThroughIntoCall(
-    DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
-  ) {
-    flowIntoCall(call, arg, p, allowsFieldFlow, config) and
-    fwdFlow(arg, _, _, _, _, pragma[only_bind_into](config)) and
-    PrevStage::parameterMayFlowThrough(p, _, _, pragma[only_bind_into](config)) and
-    callMayFlowThroughFwd(call, pragma[only_bind_into](config))
-  }
-
-  pragma[nomagic]
-  private predicate returnNodeMayFlowThrough(
-    RetNodeEx ret, FlowState state, Ap ap, Configuration config
-  ) {
-    fwdFlow(ret, state, any(CcCall ccc), apSome(_), ap, config)
-  }
-
-  /**
-   * Holds if `node` with access path `ap` is part of a path from a source to a
-   * sink in the configuration `config`.
-   *
-   * The Boolean `toReturn` records whether the node must be returned from the
-   * enclosing callable in order to reach a sink, and if so, `returnAp` records
-   * the access path of the returned value.
-   */
-  pragma[nomagic]
-  predicate revFlow(
-    NodeEx node, FlowState state, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
-  ) {
-    revFlow0(node, state, toReturn, returnAp, ap, config) and
-    fwdFlow(node, state, _, _, ap, config)
-  }
-
-  pragma[nomagic]
-  private predicate revFlow0(
-    NodeEx node, FlowState state, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
-  ) {
-    fwdFlow(node, state, _, _, ap, config) and
-    sinkNode(node, state, config) and
-    (if hasSinkCallCtx(config) then toReturn = true else toReturn = false) and
-    returnAp = apNone() and
-    ap instanceof ApNil
-    or
-    exists(NodeEx mid, FlowState state0 |
-      localStep(node, state, mid, state0, true, _, config, _) and
-      revFlow(mid, state0, toReturn, returnAp, ap, config)
-    )
-    or
-    exists(NodeEx mid, FlowState state0, ApNil nil |
-      fwdFlow(node, pragma[only_bind_into](state), _, _, ap, pragma[only_bind_into](config)) and
-      localStep(node, pragma[only_bind_into](state), mid, state0, false, _, config, _) and
-      revFlow(mid, state0, toReturn, returnAp, nil, pragma[only_bind_into](config)) and
-      ap instanceof ApNil
-    )
-    or
-    exists(NodeEx mid |
-      jumpStep(node, mid, config) and
-      revFlow(mid, state, _, _, ap, config) and
-      toReturn = false and
-      returnAp = apNone()
-    )
-    or
-    exists(NodeEx mid, ApNil nil |
-      fwdFlow(node, _, _, _, ap, pragma[only_bind_into](config)) and
-      additionalJumpStep(node, mid, config) and
-      revFlow(pragma[only_bind_into](mid), state, _, _, nil, pragma[only_bind_into](config)) and
-      toReturn = false and
-      returnAp = apNone() and
-      ap instanceof ApNil
-    )
-    or
-    exists(NodeEx mid, FlowState state0, ApNil nil |
-      fwdFlow(node, _, _, _, ap, pragma[only_bind_into](config)) and
-      additionalJumpStateStep(node, state, mid, state0, config) and
-      revFlow(pragma[only_bind_into](mid), pragma[only_bind_into](state0), _, _, nil,
-        pragma[only_bind_into](config)) and
-      toReturn = false and
-      returnAp = apNone() and
-      ap instanceof ApNil
-    )
-    or
-    // store
-    exists(Ap ap0, Content c |
-      revFlowStore(ap0, c, ap, node, state, _, _, toReturn, returnAp, config) and
-      revFlowConsCand(ap0, c, ap, config)
-    )
-    or
-    // read
-    exists(NodeEx mid, Ap ap0 |
-      revFlow(mid, state, toReturn, returnAp, ap0, config) and
-      readStepFwd(node, ap, _, mid, ap0, config)
-    )
-    or
-    // flow into a callable
-    revFlowInNotToReturn(node, state, returnAp, ap, config) and
-    toReturn = false
-    or
-    exists(DataFlowCall call, Ap returnAp0 |
-      revFlowInToReturn(call, node, state, returnAp0, ap, config) and
-      revFlowIsReturned(call, toReturn, returnAp, returnAp0, config)
-    )
-    or
-    // flow out of a callable
-    revFlowOut(_, node, state, _, _, ap, config) and
-    toReturn = true and
-    if returnNodeMayFlowThrough(node, state, ap, config)
-    then returnAp = apSome(ap)
-    else returnAp = apNone()
-  }
-
-  pragma[nomagic]
-  private predicate revFlowStore(
-    Ap ap0, Content c, Ap ap, NodeEx node, FlowState state, TypedContent tc, NodeEx mid,
-    boolean toReturn, ApOption returnAp, Configuration config
-  ) {
-    revFlow(mid, state, toReturn, returnAp, ap0, config) and
-    storeStepFwd(node, ap, tc, mid, ap0, config) and
-    tc.getContent() = c
-  }
-
-  /**
-   * Holds if reverse flow with access path `tail` reaches a read of `c`
-   * resulting in access path `cons`.
-   */
-  pragma[nomagic]
-  private predicate revFlowConsCand(Ap cons, Content c, Ap tail, Configuration config) {
-    exists(NodeEx mid, Ap tail0 |
-      revFlow(mid, _, _, _, tail, config) and
-      tail = pragma[only_bind_into](tail0) and
-      readStepFwd(_, cons, c, mid, tail0, config)
-    )
-  }
-
-  pragma[nomagic]
-  private predicate revFlowOut(
-    DataFlowCall call, RetNodeEx ret, FlowState state, boolean toReturn, ApOption returnAp, Ap ap,
-    Configuration config
-  ) {
-    exists(NodeEx out, boolean allowsFieldFlow |
-      revFlow(out, state, toReturn, returnAp, ap, config) and
-      flowOutOfCall(call, ret, out, allowsFieldFlow, config) and
-      if allowsFieldFlow = false then ap instanceof ApNil else any()
-    )
-  }
-
-  pragma[nomagic]
-  private predicate revFlowInNotToReturn(
-    ArgNodeEx arg, FlowState state, ApOption returnAp, Ap ap, Configuration config
-  ) {
-    exists(ParamNodeEx p, boolean allowsFieldFlow |
-      revFlow(p, state, false, returnAp, ap, config) and
-      flowIntoCall(_, arg, p, allowsFieldFlow, config) and
-      if allowsFieldFlow = false then ap instanceof ApNil else any()
-    )
-  }
-
-  pragma[nomagic]
-  private predicate revFlowInToReturn(
-    DataFlowCall call, ArgNodeEx arg, FlowState state, Ap returnAp, Ap ap, Configuration config
-  ) {
-    exists(ParamNodeEx p, boolean allowsFieldFlow |
-      revFlow(p, state, true, apSome(returnAp), ap, config) and
-      flowThroughIntoCall(call, arg, p, allowsFieldFlow, config) and
-      if allowsFieldFlow = false then ap instanceof ApNil else any()
-    )
-  }
-
-  /**
-   * Holds if an output from `call` is reached in the flow covered by `revFlow`
-   * and data might flow through the target callable resulting in reverse flow
-   * reaching an argument of `call`.
-   */
-  pragma[nomagic]
-  private predicate revFlowIsReturned(
-    DataFlowCall call, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
-  ) {
-    exists(RetNodeEx ret, FlowState state, CcCall ccc |
-      revFlowOut(call, ret, state, toReturn, returnAp, ap, config) and
-      fwdFlow(ret, state, ccc, apSome(_), ap, config) and
-      ccc.matchesCall(call)
-    )
-  }
-
-  pragma[nomagic]
-  predicate storeStepCand(
-    NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, DataFlowType contentType,
-    Configuration config
-  ) {
-    exists(Ap ap2, Content c |
-      PrevStage::storeStepCand(node1, _, tc, node2, contentType, config) and
-      revFlowStore(ap2, c, ap1, node1, _, tc, node2, _, _, config) and
-      revFlowConsCand(ap2, c, ap1, config)
-    )
-  }
-
-  predicate readStepCand(NodeEx node1, Content c, NodeEx node2, Configuration config) {
-    exists(Ap ap1, Ap ap2 |
-      revFlow(node2, _, _, _, pragma[only_bind_into](ap2), pragma[only_bind_into](config)) and
-      readStepFwd(node1, ap1, c, node2, ap2, config) and
-      revFlowStore(ap1, c, pragma[only_bind_into](ap2), _, _, _, _, _, _,
-        pragma[only_bind_into](config))
-    )
-  }
-
-  predicate revFlow(NodeEx node, FlowState state, Configuration config) {
-    revFlow(node, state, _, _, _, config)
-  }
-
-  pragma[nomagic]
-  predicate revFlow(NodeEx node, Configuration config) { revFlow(node, _, _, _, _, config) }
-
-  // use an alias as a workaround for bad functionality-induced joins
-  pragma[nomagic]
-  predicate revFlowAlias(NodeEx node, Configuration config) { revFlow(node, _, _, _, _, config) }
-
-  // use an alias as a workaround for bad functionality-induced joins
-  pragma[nomagic]
-  predicate revFlowAlias(
-    NodeEx node, FlowState state, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
-  ) {
-    revFlow(node, state, toReturn, returnAp, ap, config)
-  }
-
-  private predicate fwdConsCand(TypedContent tc, Ap ap, Configuration config) {
-    storeStepFwd(_, ap, tc, _, _, config)
-  }
-
-  private predicate revConsCand(TypedContent tc, Ap ap, Configuration config) {
-    storeStepCand(_, ap, tc, _, _, config)
-  }
-
-  private predicate validAp(Ap ap, Configuration config) {
-    revFlow(_, _, _, _, ap, config) and ap instanceof ApNil
-    or
-    exists(TypedContent head, Ap tail |
-      consCand(head, tail, config) and
-      ap = apCons(head, tail)
-    )
-  }
-
-  predicate consCand(TypedContent tc, Ap ap, Configuration config) {
-    revConsCand(tc, ap, config) and
-    validAp(ap, config)
-  }
-
-  pragma[noinline]
-  private predicate parameterFlow(
-    ParamNodeEx p, Ap ap, Ap ap0, DataFlowCallable c, Configuration config
-  ) {
-    revFlow(p, _, true, apSome(ap0), ap, config) and
-    c = p.getEnclosingCallable()
-  }
-
-  predicate parameterMayFlowThrough(ParamNodeEx p, DataFlowCallable c, Ap ap, Configuration config) {
-    exists(RetNodeEx ret, FlowState state, Ap ap0, ReturnKindExt kind, ParameterPosition pos |
-      parameterFlow(p, ap, ap0, c, config) and
-      c = ret.getEnclosingCallable() and
-      revFlow(pragma[only_bind_into](ret), pragma[only_bind_into](state), true, apSome(_),
-        pragma[only_bind_into](ap0), pragma[only_bind_into](config)) and
-      fwdFlow(ret, state, any(CcCall ccc), apSome(ap), ap0, config) and
-      kind = ret.getKind() and
-      p.getPosition() = pos and
-      // we don't expect a parameter to return stored in itself, unless explicitly allowed
-      (
-        not kind.(ParamUpdateReturnKind).getPosition() = pos
-        or
-        p.allowParameterReturnInSelf()
-      )
-    )
-  }
-
-  pragma[nomagic]
-  predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
-    exists(
-      Ap returnAp0, ArgNodeEx arg, FlowState state, boolean toReturn, ApOption returnAp, Ap ap
-    |
-      revFlow(arg, state, toReturn, returnAp, ap, config) and
-      revFlowInToReturn(call, arg, state, returnAp0, ap, config) and
-      revFlowIsReturned(call, toReturn, returnAp, returnAp0, config)
-    )
-  }
-
-  predicate stats(
-    boolean fwd, int nodes, int fields, int conscand, int states, int tuples, Configuration config
-  ) {
-    fwd = true and
-    nodes = count(NodeEx node | fwdFlow(node, _, _, _, _, config)) and
-    fields = count(TypedContent f0 | fwdConsCand(f0, _, config)) and
-    conscand = count(TypedContent f0, Ap ap | fwdConsCand(f0, ap, config)) and
-    states = count(FlowState state | fwdFlow(_, state, _, _, _, config)) and
-    tuples =
-      count(NodeEx n, FlowState state, Cc cc, ApOption argAp, Ap ap |
-        fwdFlow(n, state, cc, argAp, ap, config)
-      )
-    or
-    fwd = false and
-    nodes = count(NodeEx node | revFlow(node, _, _, _, _, config)) and
-    fields = count(TypedContent f0 | consCand(f0, _, config)) and
-    conscand = count(TypedContent f0, Ap ap | consCand(f0, ap, config)) and
-    states = count(FlowState state | revFlow(_, state, _, _, _, config)) and
-    tuples =
-      count(NodeEx n, FlowState state, boolean b, ApOption retAp, Ap ap |
-        revFlow(n, state, b, retAp, ap, config)
-      )
-  }
-  /* End: Stage 2 logic. */
+private module Stage2 implements StageSig {
+  import MkStage<Stage1>::Stage<Stage2Param>
 }
 
 pragma[nomagic]
@@ -1883,14 +2037,13 @@ private module LocalFlowBigStep {
   ) {
     additionalLocalFlowStepNodeCand1(node1, node2, config) and
     state1 = state2 and
-    Stage2::revFlow(node1, pragma[only_bind_into](state1), _, _, false,
-      pragma[only_bind_into](config)) and
-    Stage2::revFlowAlias(node2, pragma[only_bind_into](state2), _, _, false,
+    Stage2::revFlow(node1, pragma[only_bind_into](state1), false, pragma[only_bind_into](config)) and
+    Stage2::revFlowAlias(node2, pragma[only_bind_into](state2), false,
       pragma[only_bind_into](config))
     or
     additionalLocalStateStep(node1, state1, node2, state2, config) and
-    Stage2::revFlow(node1, state1, _, _, false, pragma[only_bind_into](config)) and
-    Stage2::revFlowAlias(node2, state2, _, _, false, pragma[only_bind_into](config))
+    Stage2::revFlow(node1, state1, false, pragma[only_bind_into](config)) and
+    Stage2::revFlowAlias(node2, state2, false, pragma[only_bind_into](config))
   }
 
   /**
@@ -1967,26 +2120,24 @@ private module LocalFlowBigStep {
 
 private import LocalFlowBigStep
 
-private module Stage3 {
-  module PrevStage = Stage2;
-
-  class ApApprox = PrevStage::Ap;
+private module Stage3Param implements MkStage<Stage2>::StageParam {
+  private module PrevStage = Stage2;
 
   class Ap = AccessPathFront;
 
   class ApNil = AccessPathFrontNil;
 
-  private ApApprox getApprox(Ap ap) { result = ap.toBoolNonEmpty() }
+  PrevStage::Ap getApprox(Ap ap) { result = ap.toBoolNonEmpty() }
 
-  private ApNil getApNil(NodeEx node) {
+  ApNil getApNil(NodeEx node) {
     PrevStage::revFlow(node, _) and result = TFrontNil(node.getDataFlowType())
   }
 
   bindingset[tc, tail]
-  private Ap apCons(TypedContent tc, Ap tail) { result.getHead() = tc and exists(tail) }
+  Ap apCons(TypedContent tc, Ap tail) { result.getHead() = tc and exists(tail) }
 
   pragma[noinline]
-  private Content getHeadContent(Ap ap) { result = ap.getHead().getContent() }
+  Content getHeadContent(Ap ap) { result = ap.getHead().getContent() }
 
   class ApOption = AccessPathFrontOption;
 
@@ -1994,44 +2145,18 @@ private module Stage3 {
 
   ApOption apSome(Ap ap) { result = TAccessPathFrontSome(ap) }
 
-  class Cc = boolean;
+  import BooleanCallContext
 
-  class CcCall extends Cc {
-    CcCall() { this = true }
-
-    /** Holds if this call context may be `call`. */
-    predicate matchesCall(DataFlowCall call) { any() }
-  }
-
-  class CcNoCall extends Cc {
-    CcNoCall() { this = false }
-  }
-
-  Cc ccNone() { result = false }
-
-  CcCall ccSomeCall() { result = true }
-
-  private class LocalCc = Unit;
-
-  bindingset[call, c, outercc]
-  private CcCall getCallContextCall(DataFlowCall call, DataFlowCallable c, Cc outercc) { any() }
-
-  bindingset[call, c, innercc]
-  private CcNoCall getCallContextReturn(DataFlowCallable c, DataFlowCall call, Cc innercc) { any() }
-
-  bindingset[node, cc]
-  private LocalCc getLocalCc(NodeEx node, Cc cc) { any() }
-
-  private predicate localStep(
+  predicate localStep(
     NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
     ApNil ap, Configuration config, LocalCc lcc
   ) {
     localFlowBigStep(node1, state1, node2, state2, preservesValue, ap, config, _) and exists(lcc)
   }
 
-  private predicate flowOutOfCall = flowOutOfCallNodeCand2/5;
+  predicate flowOutOfCall = flowOutOfCallNodeCand2/5;
 
-  private predicate flowIntoCall = flowIntoCallNodeCand2/5;
+  predicate flowIntoCall = flowIntoCallNodeCand2/5;
 
   pragma[nomagic]
   private predicate clearSet(NodeEx node, ContentSet c, Configuration config) {
@@ -2067,7 +2192,7 @@ private module Stage3 {
   private predicate castingNodeEx(NodeEx node) { node.asNode() instanceof CastingNode }
 
   bindingset[node, state, ap, config]
-  private predicate filter(NodeEx node, FlowState state, Ap ap, Configuration config) {
+  predicate filter(NodeEx node, FlowState state, Ap ap, Configuration config) {
     exists(state) and
     exists(config) and
     not clear(node, ap, config) and
@@ -2080,546 +2205,15 @@ private module Stage3 {
   }
 
   bindingset[ap, contentType]
-  private predicate typecheckStore(Ap ap, DataFlowType contentType) {
+  predicate typecheckStore(Ap ap, DataFlowType contentType) {
     // We need to typecheck stores here, since reverse flow through a getter
     // might have a different type here compared to inside the getter.
     compatibleTypes(ap.getType(), contentType)
   }
+}
 
-  /* Begin: Stage 3 logic. */
-  bindingset[node, state, config]
-  private predicate flowCand(NodeEx node, FlowState state, ApApprox apa, Configuration config) {
-    PrevStage::revFlow(node, state, _, _, apa, config)
-  }
-
-  bindingset[result, apa]
-  private ApApprox unbindApa(ApApprox apa) {
-    pragma[only_bind_out](apa) = pragma[only_bind_out](result)
-  }
-
-  pragma[nomagic]
-  private predicate flowThroughOutOfCall(
-    DataFlowCall call, CcCall ccc, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow,
-    Configuration config
-  ) {
-    flowOutOfCall(call, ret, out, allowsFieldFlow, pragma[only_bind_into](config)) and
-    PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
-    PrevStage::parameterMayFlowThrough(_, ret.getEnclosingCallable(), _,
-      pragma[only_bind_into](config)) and
-    ccc.matchesCall(call)
-  }
-
-  /**
-   * Holds if `node` is reachable with access path `ap` from a source in the
-   * configuration `config`.
-   *
-   * The call context `cc` records whether the node is reached through an
-   * argument in a call, and if so, `argAp` records the access path of that
-   * argument.
-   */
-  pragma[nomagic]
-  predicate fwdFlow(NodeEx node, FlowState state, Cc cc, ApOption argAp, Ap ap, Configuration config) {
-    fwdFlow0(node, state, cc, argAp, ap, config) and
-    flowCand(node, state, unbindApa(getApprox(ap)), config) and
-    filter(node, state, ap, config)
-  }
-
-  pragma[nomagic]
-  private predicate fwdFlow0(
-    NodeEx node, FlowState state, Cc cc, ApOption argAp, Ap ap, Configuration config
-  ) {
-    sourceNode(node, state, config) and
-    (if hasSourceCallCtx(config) then cc = ccSomeCall() else cc = ccNone()) and
-    argAp = apNone() and
-    ap = getApNil(node)
-    or
-    exists(NodeEx mid, FlowState state0, Ap ap0, LocalCc localCc |
-      fwdFlow(mid, state0, cc, argAp, ap0, config) and
-      localCc = getLocalCc(mid, cc)
-    |
-      localStep(mid, state0, node, state, true, _, config, localCc) and
-      ap = ap0
-      or
-      localStep(mid, state0, node, state, false, ap, config, localCc) and
-      ap0 instanceof ApNil
-    )
-    or
-    exists(NodeEx mid |
-      fwdFlow(mid, pragma[only_bind_into](state), _, _, ap, pragma[only_bind_into](config)) and
-      jumpStep(mid, node, config) and
-      cc = ccNone() and
-      argAp = apNone()
-    )
-    or
-    exists(NodeEx mid, ApNil nil |
-      fwdFlow(mid, state, _, _, nil, pragma[only_bind_into](config)) and
-      additionalJumpStep(mid, node, config) and
-      cc = ccNone() and
-      argAp = apNone() and
-      ap = getApNil(node)
-    )
-    or
-    exists(NodeEx mid, FlowState state0, ApNil nil |
-      fwdFlow(mid, state0, _, _, nil, pragma[only_bind_into](config)) and
-      additionalJumpStateStep(mid, state0, node, state, config) and
-      cc = ccNone() and
-      argAp = apNone() and
-      ap = getApNil(node)
-    )
-    or
-    // store
-    exists(TypedContent tc, Ap ap0 |
-      fwdFlowStore(_, ap0, tc, node, state, cc, argAp, config) and
-      ap = apCons(tc, ap0)
-    )
-    or
-    // read
-    exists(Ap ap0, Content c |
-      fwdFlowRead(ap0, c, _, node, state, cc, argAp, config) and
-      fwdFlowConsCand(ap0, c, ap, config)
-    )
-    or
-    // flow into a callable
-    exists(ApApprox apa |
-      fwdFlowIn(_, node, state, _, cc, _, ap, config) and
-      apa = getApprox(ap) and
-      if PrevStage::parameterMayFlowThrough(node, _, apa, config)
-      then argAp = apSome(ap)
-      else argAp = apNone()
-    )
-    or
-    // flow out of a callable
-    fwdFlowOutNotFromArg(node, state, cc, argAp, ap, config)
-    or
-    exists(DataFlowCall call, Ap argAp0 |
-      fwdFlowOutFromArg(call, node, state, argAp0, ap, config) and
-      fwdFlowIsEntered(call, cc, argAp, argAp0, config)
-    )
-  }
-
-  pragma[nomagic]
-  private predicate fwdFlowStore(
-    NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc, ApOption argAp,
-    Configuration config
-  ) {
-    exists(DataFlowType contentType |
-      fwdFlow(node1, state, cc, argAp, ap1, config) and
-      PrevStage::storeStepCand(node1, unbindApa(getApprox(ap1)), tc, node2, contentType, config) and
-      typecheckStore(ap1, contentType)
-    )
-  }
-
-  /**
-   * Holds if forward flow with access path `tail` reaches a store of `c`
-   * resulting in access path `cons`.
-   */
-  pragma[nomagic]
-  private predicate fwdFlowConsCand(Ap cons, Content c, Ap tail, Configuration config) {
-    exists(TypedContent tc |
-      fwdFlowStore(_, tail, tc, _, _, _, _, config) and
-      tc.getContent() = c and
-      cons = apCons(tc, tail)
-    )
-  }
-
-  pragma[nomagic]
-  private predicate fwdFlowRead(
-    Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc, ApOption argAp,
-    Configuration config
-  ) {
-    fwdFlow(node1, state, cc, argAp, ap, config) and
-    PrevStage::readStepCand(node1, c, node2, config) and
-    getHeadContent(ap) = c
-  }
-
-  pragma[nomagic]
-  private predicate fwdFlowIn(
-    DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, Cc innercc, ApOption argAp,
-    Ap ap, Configuration config
-  ) {
-    exists(ArgNodeEx arg, boolean allowsFieldFlow |
-      fwdFlow(arg, state, outercc, argAp, ap, config) and
-      flowIntoCall(call, arg, p, allowsFieldFlow, config) and
-      innercc = getCallContextCall(call, p.getEnclosingCallable(), outercc) and
-      if allowsFieldFlow = false then ap instanceof ApNil else any()
-    )
-  }
-
-  pragma[nomagic]
-  private predicate fwdFlowOutNotFromArg(
-    NodeEx out, FlowState state, Cc ccOut, ApOption argAp, Ap ap, Configuration config
-  ) {
-    exists(
-      DataFlowCall call, RetNodeEx ret, boolean allowsFieldFlow, CcNoCall innercc,
-      DataFlowCallable inner
-    |
-      fwdFlow(ret, state, innercc, argAp, ap, config) and
-      flowOutOfCall(call, ret, out, allowsFieldFlow, config) and
-      inner = ret.getEnclosingCallable() and
-      ccOut = getCallContextReturn(inner, call, innercc) and
-      if allowsFieldFlow = false then ap instanceof ApNil else any()
-    )
-  }
-
-  pragma[nomagic]
-  private predicate fwdFlowOutFromArg(
-    DataFlowCall call, NodeEx out, FlowState state, Ap argAp, Ap ap, Configuration config
-  ) {
-    exists(RetNodeEx ret, boolean allowsFieldFlow, CcCall ccc |
-      fwdFlow(ret, state, ccc, apSome(argAp), ap, config) and
-      flowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, config) and
-      if allowsFieldFlow = false then ap instanceof ApNil else any()
-    )
-  }
-
-  /**
-   * Holds if an argument to `call` is reached in the flow covered by `fwdFlow`
-   * and data might flow through the target callable and back out at `call`.
-   */
-  pragma[nomagic]
-  private predicate fwdFlowIsEntered(
-    DataFlowCall call, Cc cc, ApOption argAp, Ap ap, Configuration config
-  ) {
-    exists(ParamNodeEx p |
-      fwdFlowIn(call, p, _, cc, _, argAp, ap, config) and
-      PrevStage::parameterMayFlowThrough(p, _, unbindApa(getApprox(ap)), config)
-    )
-  }
-
-  pragma[nomagic]
-  private predicate storeStepFwd(
-    NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, Ap ap2, Configuration config
-  ) {
-    fwdFlowStore(node1, ap1, tc, node2, _, _, _, config) and
-    ap2 = apCons(tc, ap1) and
-    fwdFlowRead(ap2, tc.getContent(), _, _, _, _, _, config)
-  }
-
-  private predicate readStepFwd(
-    NodeEx n1, Ap ap1, Content c, NodeEx n2, Ap ap2, Configuration config
-  ) {
-    fwdFlowRead(ap1, c, n1, n2, _, _, _, config) and
-    fwdFlowConsCand(ap1, c, ap2, config)
-  }
-
-  pragma[nomagic]
-  private predicate callMayFlowThroughFwd(DataFlowCall call, Configuration config) {
-    exists(Ap argAp0, NodeEx out, FlowState state, Cc cc, ApOption argAp, Ap ap |
-      fwdFlow(out, state, pragma[only_bind_into](cc), pragma[only_bind_into](argAp), ap,
-        pragma[only_bind_into](config)) and
-      fwdFlowOutFromArg(call, out, state, argAp0, ap, config) and
-      fwdFlowIsEntered(pragma[only_bind_into](call), pragma[only_bind_into](cc),
-        pragma[only_bind_into](argAp), pragma[only_bind_into](argAp0),
-        pragma[only_bind_into](config))
-    )
-  }
-
-  pragma[nomagic]
-  private predicate flowThroughIntoCall(
-    DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
-  ) {
-    flowIntoCall(call, arg, p, allowsFieldFlow, config) and
-    fwdFlow(arg, _, _, _, _, pragma[only_bind_into](config)) and
-    PrevStage::parameterMayFlowThrough(p, _, _, pragma[only_bind_into](config)) and
-    callMayFlowThroughFwd(call, pragma[only_bind_into](config))
-  }
-
-  pragma[nomagic]
-  private predicate returnNodeMayFlowThrough(
-    RetNodeEx ret, FlowState state, Ap ap, Configuration config
-  ) {
-    fwdFlow(ret, state, any(CcCall ccc), apSome(_), ap, config)
-  }
-
-  /**
-   * Holds if `node` with access path `ap` is part of a path from a source to a
-   * sink in the configuration `config`.
-   *
-   * The Boolean `toReturn` records whether the node must be returned from the
-   * enclosing callable in order to reach a sink, and if so, `returnAp` records
-   * the access path of the returned value.
-   */
-  pragma[nomagic]
-  predicate revFlow(
-    NodeEx node, FlowState state, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
-  ) {
-    revFlow0(node, state, toReturn, returnAp, ap, config) and
-    fwdFlow(node, state, _, _, ap, config)
-  }
-
-  pragma[nomagic]
-  private predicate revFlow0(
-    NodeEx node, FlowState state, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
-  ) {
-    fwdFlow(node, state, _, _, ap, config) and
-    sinkNode(node, state, config) and
-    (if hasSinkCallCtx(config) then toReturn = true else toReturn = false) and
-    returnAp = apNone() and
-    ap instanceof ApNil
-    or
-    exists(NodeEx mid, FlowState state0 |
-      localStep(node, state, mid, state0, true, _, config, _) and
-      revFlow(mid, state0, toReturn, returnAp, ap, config)
-    )
-    or
-    exists(NodeEx mid, FlowState state0, ApNil nil |
-      fwdFlow(node, pragma[only_bind_into](state), _, _, ap, pragma[only_bind_into](config)) and
-      localStep(node, pragma[only_bind_into](state), mid, state0, false, _, config, _) and
-      revFlow(mid, state0, toReturn, returnAp, nil, pragma[only_bind_into](config)) and
-      ap instanceof ApNil
-    )
-    or
-    exists(NodeEx mid |
-      jumpStep(node, mid, config) and
-      revFlow(mid, state, _, _, ap, config) and
-      toReturn = false and
-      returnAp = apNone()
-    )
-    or
-    exists(NodeEx mid, ApNil nil |
-      fwdFlow(node, _, _, _, ap, pragma[only_bind_into](config)) and
-      additionalJumpStep(node, mid, config) and
-      revFlow(pragma[only_bind_into](mid), state, _, _, nil, pragma[only_bind_into](config)) and
-      toReturn = false and
-      returnAp = apNone() and
-      ap instanceof ApNil
-    )
-    or
-    exists(NodeEx mid, FlowState state0, ApNil nil |
-      fwdFlow(node, _, _, _, ap, pragma[only_bind_into](config)) and
-      additionalJumpStateStep(node, state, mid, state0, config) and
-      revFlow(pragma[only_bind_into](mid), pragma[only_bind_into](state0), _, _, nil,
-        pragma[only_bind_into](config)) and
-      toReturn = false and
-      returnAp = apNone() and
-      ap instanceof ApNil
-    )
-    or
-    // store
-    exists(Ap ap0, Content c |
-      revFlowStore(ap0, c, ap, node, state, _, _, toReturn, returnAp, config) and
-      revFlowConsCand(ap0, c, ap, config)
-    )
-    or
-    // read
-    exists(NodeEx mid, Ap ap0 |
-      revFlow(mid, state, toReturn, returnAp, ap0, config) and
-      readStepFwd(node, ap, _, mid, ap0, config)
-    )
-    or
-    // flow into a callable
-    revFlowInNotToReturn(node, state, returnAp, ap, config) and
-    toReturn = false
-    or
-    exists(DataFlowCall call, Ap returnAp0 |
-      revFlowInToReturn(call, node, state, returnAp0, ap, config) and
-      revFlowIsReturned(call, toReturn, returnAp, returnAp0, config)
-    )
-    or
-    // flow out of a callable
-    revFlowOut(_, node, state, _, _, ap, config) and
-    toReturn = true and
-    if returnNodeMayFlowThrough(node, state, ap, config)
-    then returnAp = apSome(ap)
-    else returnAp = apNone()
-  }
-
-  pragma[nomagic]
-  private predicate revFlowStore(
-    Ap ap0, Content c, Ap ap, NodeEx node, FlowState state, TypedContent tc, NodeEx mid,
-    boolean toReturn, ApOption returnAp, Configuration config
-  ) {
-    revFlow(mid, state, toReturn, returnAp, ap0, config) and
-    storeStepFwd(node, ap, tc, mid, ap0, config) and
-    tc.getContent() = c
-  }
-
-  /**
-   * Holds if reverse flow with access path `tail` reaches a read of `c`
-   * resulting in access path `cons`.
-   */
-  pragma[nomagic]
-  private predicate revFlowConsCand(Ap cons, Content c, Ap tail, Configuration config) {
-    exists(NodeEx mid, Ap tail0 |
-      revFlow(mid, _, _, _, tail, config) and
-      tail = pragma[only_bind_into](tail0) and
-      readStepFwd(_, cons, c, mid, tail0, config)
-    )
-  }
-
-  pragma[nomagic]
-  private predicate revFlowOut(
-    DataFlowCall call, RetNodeEx ret, FlowState state, boolean toReturn, ApOption returnAp, Ap ap,
-    Configuration config
-  ) {
-    exists(NodeEx out, boolean allowsFieldFlow |
-      revFlow(out, state, toReturn, returnAp, ap, config) and
-      flowOutOfCall(call, ret, out, allowsFieldFlow, config) and
-      if allowsFieldFlow = false then ap instanceof ApNil else any()
-    )
-  }
-
-  pragma[nomagic]
-  private predicate revFlowInNotToReturn(
-    ArgNodeEx arg, FlowState state, ApOption returnAp, Ap ap, Configuration config
-  ) {
-    exists(ParamNodeEx p, boolean allowsFieldFlow |
-      revFlow(p, state, false, returnAp, ap, config) and
-      flowIntoCall(_, arg, p, allowsFieldFlow, config) and
-      if allowsFieldFlow = false then ap instanceof ApNil else any()
-    )
-  }
-
-  pragma[nomagic]
-  private predicate revFlowInToReturn(
-    DataFlowCall call, ArgNodeEx arg, FlowState state, Ap returnAp, Ap ap, Configuration config
-  ) {
-    exists(ParamNodeEx p, boolean allowsFieldFlow |
-      revFlow(p, state, true, apSome(returnAp), ap, config) and
-      flowThroughIntoCall(call, arg, p, allowsFieldFlow, config) and
-      if allowsFieldFlow = false then ap instanceof ApNil else any()
-    )
-  }
-
-  /**
-   * Holds if an output from `call` is reached in the flow covered by `revFlow`
-   * and data might flow through the target callable resulting in reverse flow
-   * reaching an argument of `call`.
-   */
-  pragma[nomagic]
-  private predicate revFlowIsReturned(
-    DataFlowCall call, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
-  ) {
-    exists(RetNodeEx ret, FlowState state, CcCall ccc |
-      revFlowOut(call, ret, state, toReturn, returnAp, ap, config) and
-      fwdFlow(ret, state, ccc, apSome(_), ap, config) and
-      ccc.matchesCall(call)
-    )
-  }
-
-  pragma[nomagic]
-  predicate storeStepCand(
-    NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, DataFlowType contentType,
-    Configuration config
-  ) {
-    exists(Ap ap2, Content c |
-      PrevStage::storeStepCand(node1, _, tc, node2, contentType, config) and
-      revFlowStore(ap2, c, ap1, node1, _, tc, node2, _, _, config) and
-      revFlowConsCand(ap2, c, ap1, config)
-    )
-  }
-
-  predicate readStepCand(NodeEx node1, Content c, NodeEx node2, Configuration config) {
-    exists(Ap ap1, Ap ap2 |
-      revFlow(node2, _, _, _, pragma[only_bind_into](ap2), pragma[only_bind_into](config)) and
-      readStepFwd(node1, ap1, c, node2, ap2, config) and
-      revFlowStore(ap1, c, pragma[only_bind_into](ap2), _, _, _, _, _, _,
-        pragma[only_bind_into](config))
-    )
-  }
-
-  predicate revFlow(NodeEx node, FlowState state, Configuration config) {
-    revFlow(node, state, _, _, _, config)
-  }
-
-  pragma[nomagic]
-  predicate revFlow(NodeEx node, Configuration config) { revFlow(node, _, _, _, _, config) }
-
-  // use an alias as a workaround for bad functionality-induced joins
-  pragma[nomagic]
-  predicate revFlowAlias(NodeEx node, Configuration config) { revFlow(node, _, _, _, _, config) }
-
-  // use an alias as a workaround for bad functionality-induced joins
-  pragma[nomagic]
-  predicate revFlowAlias(
-    NodeEx node, FlowState state, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
-  ) {
-    revFlow(node, state, toReturn, returnAp, ap, config)
-  }
-
-  private predicate fwdConsCand(TypedContent tc, Ap ap, Configuration config) {
-    storeStepFwd(_, ap, tc, _, _, config)
-  }
-
-  private predicate revConsCand(TypedContent tc, Ap ap, Configuration config) {
-    storeStepCand(_, ap, tc, _, _, config)
-  }
-
-  private predicate validAp(Ap ap, Configuration config) {
-    revFlow(_, _, _, _, ap, config) and ap instanceof ApNil
-    or
-    exists(TypedContent head, Ap tail |
-      consCand(head, tail, config) and
-      ap = apCons(head, tail)
-    )
-  }
-
-  predicate consCand(TypedContent tc, Ap ap, Configuration config) {
-    revConsCand(tc, ap, config) and
-    validAp(ap, config)
-  }
-
-  pragma[noinline]
-  private predicate parameterFlow(
-    ParamNodeEx p, Ap ap, Ap ap0, DataFlowCallable c, Configuration config
-  ) {
-    revFlow(p, _, true, apSome(ap0), ap, config) and
-    c = p.getEnclosingCallable()
-  }
-
-  predicate parameterMayFlowThrough(ParamNodeEx p, DataFlowCallable c, Ap ap, Configuration config) {
-    exists(RetNodeEx ret, FlowState state, Ap ap0, ReturnKindExt kind, ParameterPosition pos |
-      parameterFlow(p, ap, ap0, c, config) and
-      c = ret.getEnclosingCallable() and
-      revFlow(pragma[only_bind_into](ret), pragma[only_bind_into](state), true, apSome(_),
-        pragma[only_bind_into](ap0), pragma[only_bind_into](config)) and
-      fwdFlow(ret, state, any(CcCall ccc), apSome(ap), ap0, config) and
-      kind = ret.getKind() and
-      p.getPosition() = pos and
-      // we don't expect a parameter to return stored in itself, unless explicitly allowed
-      (
-        not kind.(ParamUpdateReturnKind).getPosition() = pos
-        or
-        p.allowParameterReturnInSelf()
-      )
-    )
-  }
-
-  pragma[nomagic]
-  predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
-    exists(
-      Ap returnAp0, ArgNodeEx arg, FlowState state, boolean toReturn, ApOption returnAp, Ap ap
-    |
-      revFlow(arg, state, toReturn, returnAp, ap, config) and
-      revFlowInToReturn(call, arg, state, returnAp0, ap, config) and
-      revFlowIsReturned(call, toReturn, returnAp, returnAp0, config)
-    )
-  }
-
-  predicate stats(
-    boolean fwd, int nodes, int fields, int conscand, int states, int tuples, Configuration config
-  ) {
-    fwd = true and
-    nodes = count(NodeEx node | fwdFlow(node, _, _, _, _, config)) and
-    fields = count(TypedContent f0 | fwdConsCand(f0, _, config)) and
-    conscand = count(TypedContent f0, Ap ap | fwdConsCand(f0, ap, config)) and
-    states = count(FlowState state | fwdFlow(_, state, _, _, _, config)) and
-    tuples =
-      count(NodeEx n, FlowState state, Cc cc, ApOption argAp, Ap ap |
-        fwdFlow(n, state, cc, argAp, ap, config)
-      )
-    or
-    fwd = false and
-    nodes = count(NodeEx node | revFlow(node, _, _, _, _, config)) and
-    fields = count(TypedContent f0 | consCand(f0, _, config)) and
-    conscand = count(TypedContent f0, Ap ap | consCand(f0, ap, config)) and
-    states = count(FlowState state | revFlow(_, state, _, _, _, config)) and
-    tuples =
-      count(NodeEx n, FlowState state, boolean b, ApOption retAp, Ap ap |
-        revFlow(n, state, b, retAp, ap, config)
-      )
-  }
-  /* End: Stage 3 logic. */
+private module Stage3 implements StageSig {
+  import MkStage<Stage2>::Stage<Stage3Param>
 }
 
 /**
@@ -2644,7 +2238,7 @@ private predicate expensiveLen2unfolding(TypedContent tc, Configuration config)
     tails = strictcount(AccessPathFront apf | Stage3::consCand(tc, apf, config)) and
     nodes =
       strictcount(NodeEx n, FlowState state |
-        Stage3::revFlow(n, state, _, _, any(AccessPathFrontHead apf | apf.getHead() = tc), config)
+        Stage3::revFlow(n, state, any(AccessPathFrontHead apf | apf.getHead() = tc), config)
         or
         flowCandSummaryCtx(n, state, any(AccessPathFrontHead apf | apf.getHead() = tc), config)
       ) and
@@ -2828,26 +2422,24 @@ private class AccessPathApproxOption extends TAccessPathApproxOption {
   }
 }
 
-private module Stage4 {
-  module PrevStage = Stage3;
-
-  class ApApprox = PrevStage::Ap;
+private module Stage4Param implements MkStage<Stage3>::StageParam {
+  private module PrevStage = Stage3;
 
   class Ap = AccessPathApprox;
 
   class ApNil = AccessPathApproxNil;
 
-  private ApApprox getApprox(Ap ap) { result = ap.getFront() }
+  PrevStage::Ap getApprox(Ap ap) { result = ap.getFront() }
 
-  private ApNil getApNil(NodeEx node) {
+  ApNil getApNil(NodeEx node) {
     PrevStage::revFlow(node, _) and result = TNil(node.getDataFlowType())
   }
 
   bindingset[tc, tail]
-  private Ap apCons(TypedContent tc, Ap tail) { result = push(tc, tail) }
+  Ap apCons(TypedContent tc, Ap tail) { result = push(tc, tail) }
 
   pragma[noinline]
-  private Content getHeadContent(Ap ap) { result = ap.getHead().getContent() }
+  Content getHeadContent(Ap ap) { result = ap.getHead().getContent() }
 
   class ApOption = AccessPathApproxOption;
 
@@ -2855,38 +2447,10 @@ private module Stage4 {
 
   ApOption apSome(Ap ap) { result = TAccessPathApproxSome(ap) }
 
-  class Cc = CallContext;
+  import Level1CallContext
+  import LocalCallContext
 
-  class CcCall = CallContextCall;
-
-  class CcNoCall = CallContextNoCall;
-
-  Cc ccNone() { result instanceof CallContextAny }
-
-  CcCall ccSomeCall() { result instanceof CallContextSomeCall }
-
-  private class LocalCc = LocalCallContext;
-
-  bindingset[call, c, outercc]
-  private CcCall getCallContextCall(DataFlowCall call, DataFlowCallable c, Cc outercc) {
-    checkCallContextCall(outercc, call, c) and
-    if recordDataFlowCallSite(call, c) then result = TSpecificCall(call) else result = TSomeCall()
-  }
-
-  bindingset[call, c, innercc]
-  private CcNoCall getCallContextReturn(DataFlowCallable c, DataFlowCall call, Cc innercc) {
-    checkCallContextReturn(innercc, c, call) and
-    if reducedViableImplInReturn(c, call) then result = TReturn(c, call) else result = ccNone()
-  }
-
-  bindingset[node, cc]
-  private LocalCc getLocalCc(NodeEx node, Cc cc) {
-    result =
-      getLocalCallContext(pragma[only_bind_into](pragma[only_bind_out](cc)),
-        node.getEnclosingCallable())
-  }
-
-  private predicate localStep(
+  predicate localStep(
     NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
     ApNil ap, Configuration config, LocalCc lcc
   ) {
@@ -2894,575 +2458,40 @@ private module Stage4 {
   }
 
   pragma[nomagic]
-  private predicate flowOutOfCall(
+  predicate flowOutOfCall(
     DataFlowCall call, RetNodeEx node1, NodeEx node2, boolean allowsFieldFlow, Configuration config
   ) {
     exists(FlowState state |
       flowOutOfCallNodeCand2(call, node1, node2, allowsFieldFlow, config) and
-      PrevStage::revFlow(node2, pragma[only_bind_into](state), _, _, _,
-        pragma[only_bind_into](config)) and
-      PrevStage::revFlowAlias(node1, pragma[only_bind_into](state), _, _, _,
+      PrevStage::revFlow(node2, pragma[only_bind_into](state), _, pragma[only_bind_into](config)) and
+      PrevStage::revFlowAlias(node1, pragma[only_bind_into](state), _,
         pragma[only_bind_into](config))
     )
   }
 
   pragma[nomagic]
-  private predicate flowIntoCall(
+  predicate flowIntoCall(
     DataFlowCall call, ArgNodeEx node1, ParamNodeEx node2, boolean allowsFieldFlow,
     Configuration config
   ) {
     exists(FlowState state |
       flowIntoCallNodeCand2(call, node1, node2, allowsFieldFlow, config) and
-      PrevStage::revFlow(node2, pragma[only_bind_into](state), _, _, _,
-        pragma[only_bind_into](config)) and
-      PrevStage::revFlowAlias(node1, pragma[only_bind_into](state), _, _, _,
+      PrevStage::revFlow(node2, pragma[only_bind_into](state), _, pragma[only_bind_into](config)) and
+      PrevStage::revFlowAlias(node1, pragma[only_bind_into](state), _,
         pragma[only_bind_into](config))
     )
   }
 
   bindingset[node, state, ap, config]
-  private predicate filter(NodeEx node, FlowState state, Ap ap, Configuration config) { any() }
+  predicate filter(NodeEx node, FlowState state, Ap ap, Configuration config) { any() }
 
   // Type checking is not necessary here as it has already been done in stage 3.
   bindingset[ap, contentType]
-  private predicate typecheckStore(Ap ap, DataFlowType contentType) { any() }
-
-  /* Begin: Stage 4 logic. */
-  bindingset[node, state, config]
-  private predicate flowCand(NodeEx node, FlowState state, ApApprox apa, Configuration config) {
-    PrevStage::revFlow(node, state, _, _, apa, config)
-  }
-
-  bindingset[result, apa]
-  private ApApprox unbindApa(ApApprox apa) {
-    pragma[only_bind_out](apa) = pragma[only_bind_out](result)
-  }
-
-  pragma[nomagic]
-  private predicate flowThroughOutOfCall(
-    DataFlowCall call, CcCall ccc, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow,
-    Configuration config
-  ) {
-    flowOutOfCall(call, ret, out, allowsFieldFlow, pragma[only_bind_into](config)) and
-    PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
-    PrevStage::parameterMayFlowThrough(_, ret.getEnclosingCallable(), _,
-      pragma[only_bind_into](config)) and
-    ccc.matchesCall(call)
-  }
-
-  /**
-   * Holds if `node` is reachable with access path `ap` from a source in the
-   * configuration `config`.
-   *
-   * The call context `cc` records whether the node is reached through an
-   * argument in a call, and if so, `argAp` records the access path of that
-   * argument.
-   */
-  pragma[nomagic]
-  predicate fwdFlow(NodeEx node, FlowState state, Cc cc, ApOption argAp, Ap ap, Configuration config) {
-    fwdFlow0(node, state, cc, argAp, ap, config) and
-    flowCand(node, state, unbindApa(getApprox(ap)), config) and
-    filter(node, state, ap, config)
-  }
-
-  pragma[nomagic]
-  private predicate fwdFlow0(
-    NodeEx node, FlowState state, Cc cc, ApOption argAp, Ap ap, Configuration config
-  ) {
-    sourceNode(node, state, config) and
-    (if hasSourceCallCtx(config) then cc = ccSomeCall() else cc = ccNone()) and
-    argAp = apNone() and
-    ap = getApNil(node)
-    or
-    exists(NodeEx mid, FlowState state0, Ap ap0, LocalCc localCc |
-      fwdFlow(mid, state0, cc, argAp, ap0, config) and
-      localCc = getLocalCc(mid, cc)
-    |
-      localStep(mid, state0, node, state, true, _, config, localCc) and
-      ap = ap0
-      or
-      localStep(mid, state0, node, state, false, ap, config, localCc) and
-      ap0 instanceof ApNil
-    )
-    or
-    exists(NodeEx mid |
-      fwdFlow(mid, pragma[only_bind_into](state), _, _, ap, pragma[only_bind_into](config)) and
-      jumpStep(mid, node, config) and
-      cc = ccNone() and
-      argAp = apNone()
-    )
-    or
-    exists(NodeEx mid, ApNil nil |
-      fwdFlow(mid, state, _, _, nil, pragma[only_bind_into](config)) and
-      additionalJumpStep(mid, node, config) and
-      cc = ccNone() and
-      argAp = apNone() and
-      ap = getApNil(node)
-    )
-    or
-    exists(NodeEx mid, FlowState state0, ApNil nil |
-      fwdFlow(mid, state0, _, _, nil, pragma[only_bind_into](config)) and
-      additionalJumpStateStep(mid, state0, node, state, config) and
-      cc = ccNone() and
-      argAp = apNone() and
-      ap = getApNil(node)
-    )
-    or
-    // store
-    exists(TypedContent tc, Ap ap0 |
-      fwdFlowStore(_, ap0, tc, node, state, cc, argAp, config) and
-      ap = apCons(tc, ap0)
-    )
-    or
-    // read
-    exists(Ap ap0, Content c |
-      fwdFlowRead(ap0, c, _, node, state, cc, argAp, config) and
-      fwdFlowConsCand(ap0, c, ap, config)
-    )
-    or
-    // flow into a callable
-    exists(ApApprox apa |
-      fwdFlowIn(_, node, state, _, cc, _, ap, config) and
-      apa = getApprox(ap) and
-      if PrevStage::parameterMayFlowThrough(node, _, apa, config)
-      then argAp = apSome(ap)
-      else argAp = apNone()
-    )
-    or
-    // flow out of a callable
-    fwdFlowOutNotFromArg(node, state, cc, argAp, ap, config)
-    or
-    exists(DataFlowCall call, Ap argAp0 |
-      fwdFlowOutFromArg(call, node, state, argAp0, ap, config) and
-      fwdFlowIsEntered(call, cc, argAp, argAp0, config)
-    )
-  }
-
-  pragma[nomagic]
-  private predicate fwdFlowStore(
-    NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc, ApOption argAp,
-    Configuration config
-  ) {
-    exists(DataFlowType contentType |
-      fwdFlow(node1, state, cc, argAp, ap1, config) and
-      PrevStage::storeStepCand(node1, unbindApa(getApprox(ap1)), tc, node2, contentType, config) and
-      typecheckStore(ap1, contentType)
-    )
-  }
-
-  /**
-   * Holds if forward flow with access path `tail` reaches a store of `c`
-   * resulting in access path `cons`.
-   */
-  pragma[nomagic]
-  private predicate fwdFlowConsCand(Ap cons, Content c, Ap tail, Configuration config) {
-    exists(TypedContent tc |
-      fwdFlowStore(_, tail, tc, _, _, _, _, config) and
-      tc.getContent() = c and
-      cons = apCons(tc, tail)
-    )
-  }
-
-  pragma[nomagic]
-  private predicate fwdFlowRead(
-    Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc, ApOption argAp,
-    Configuration config
-  ) {
-    fwdFlow(node1, state, cc, argAp, ap, config) and
-    PrevStage::readStepCand(node1, c, node2, config) and
-    getHeadContent(ap) = c
-  }
-
-  pragma[nomagic]
-  private predicate fwdFlowIn(
-    DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, Cc innercc, ApOption argAp,
-    Ap ap, Configuration config
-  ) {
-    exists(ArgNodeEx arg, boolean allowsFieldFlow |
-      fwdFlow(arg, state, outercc, argAp, ap, config) and
-      flowIntoCall(call, arg, p, allowsFieldFlow, config) and
-      innercc = getCallContextCall(call, p.getEnclosingCallable(), outercc) and
-      if allowsFieldFlow = false then ap instanceof ApNil else any()
-    )
-  }
-
-  pragma[nomagic]
-  private predicate fwdFlowOutNotFromArg(
-    NodeEx out, FlowState state, Cc ccOut, ApOption argAp, Ap ap, Configuration config
-  ) {
-    exists(
-      DataFlowCall call, RetNodeEx ret, boolean allowsFieldFlow, CcNoCall innercc,
-      DataFlowCallable inner
-    |
-      fwdFlow(ret, state, innercc, argAp, ap, config) and
-      flowOutOfCall(call, ret, out, allowsFieldFlow, config) and
-      inner = ret.getEnclosingCallable() and
-      ccOut = getCallContextReturn(inner, call, innercc) and
-      if allowsFieldFlow = false then ap instanceof ApNil else any()
-    )
-  }
-
-  pragma[nomagic]
-  private predicate fwdFlowOutFromArg(
-    DataFlowCall call, NodeEx out, FlowState state, Ap argAp, Ap ap, Configuration config
-  ) {
-    exists(RetNodeEx ret, boolean allowsFieldFlow, CcCall ccc |
-      fwdFlow(ret, state, ccc, apSome(argAp), ap, config) and
-      flowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, config) and
-      if allowsFieldFlow = false then ap instanceof ApNil else any()
-    )
-  }
-
-  /**
-   * Holds if an argument to `call` is reached in the flow covered by `fwdFlow`
-   * and data might flow through the target callable and back out at `call`.
-   */
-  pragma[nomagic]
-  private predicate fwdFlowIsEntered(
-    DataFlowCall call, Cc cc, ApOption argAp, Ap ap, Configuration config
-  ) {
-    exists(ParamNodeEx p |
-      fwdFlowIn(call, p, _, cc, _, argAp, ap, config) and
-      PrevStage::parameterMayFlowThrough(p, _, unbindApa(getApprox(ap)), config)
-    )
-  }
-
-  pragma[nomagic]
-  private predicate storeStepFwd(
-    NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, Ap ap2, Configuration config
-  ) {
-    fwdFlowStore(node1, ap1, tc, node2, _, _, _, config) and
-    ap2 = apCons(tc, ap1) and
-    fwdFlowRead(ap2, tc.getContent(), _, _, _, _, _, config)
-  }
-
-  private predicate readStepFwd(
-    NodeEx n1, Ap ap1, Content c, NodeEx n2, Ap ap2, Configuration config
-  ) {
-    fwdFlowRead(ap1, c, n1, n2, _, _, _, config) and
-    fwdFlowConsCand(ap1, c, ap2, config)
-  }
-
-  pragma[nomagic]
-  private predicate callMayFlowThroughFwd(DataFlowCall call, Configuration config) {
-    exists(Ap argAp0, NodeEx out, FlowState state, Cc cc, ApOption argAp, Ap ap |
-      fwdFlow(out, state, pragma[only_bind_into](cc), pragma[only_bind_into](argAp), ap,
-        pragma[only_bind_into](config)) and
-      fwdFlowOutFromArg(call, out, state, argAp0, ap, config) and
-      fwdFlowIsEntered(pragma[only_bind_into](call), pragma[only_bind_into](cc),
-        pragma[only_bind_into](argAp), pragma[only_bind_into](argAp0),
-        pragma[only_bind_into](config))
-    )
-  }
-
-  pragma[nomagic]
-  private predicate flowThroughIntoCall(
-    DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
-  ) {
-    flowIntoCall(call, arg, p, allowsFieldFlow, config) and
-    fwdFlow(arg, _, _, _, _, pragma[only_bind_into](config)) and
-    PrevStage::parameterMayFlowThrough(p, _, _, pragma[only_bind_into](config)) and
-    callMayFlowThroughFwd(call, pragma[only_bind_into](config))
-  }
-
-  pragma[nomagic]
-  private predicate returnNodeMayFlowThrough(
-    RetNodeEx ret, FlowState state, Ap ap, Configuration config
-  ) {
-    fwdFlow(ret, state, any(CcCall ccc), apSome(_), ap, config)
-  }
-
-  /**
-   * Holds if `node` with access path `ap` is part of a path from a source to a
-   * sink in the configuration `config`.
-   *
-   * The Boolean `toReturn` records whether the node must be returned from the
-   * enclosing callable in order to reach a sink, and if so, `returnAp` records
-   * the access path of the returned value.
-   */
-  pragma[nomagic]
-  predicate revFlow(
-    NodeEx node, FlowState state, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
-  ) {
-    revFlow0(node, state, toReturn, returnAp, ap, config) and
-    fwdFlow(node, state, _, _, ap, config)
-  }
-
-  pragma[nomagic]
-  private predicate revFlow0(
-    NodeEx node, FlowState state, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
-  ) {
-    fwdFlow(node, state, _, _, ap, config) and
-    sinkNode(node, state, config) and
-    (if hasSinkCallCtx(config) then toReturn = true else toReturn = false) and
-    returnAp = apNone() and
-    ap instanceof ApNil
-    or
-    exists(NodeEx mid, FlowState state0 |
-      localStep(node, state, mid, state0, true, _, config, _) and
-      revFlow(mid, state0, toReturn, returnAp, ap, config)
-    )
-    or
-    exists(NodeEx mid, FlowState state0, ApNil nil |
-      fwdFlow(node, pragma[only_bind_into](state), _, _, ap, pragma[only_bind_into](config)) and
-      localStep(node, pragma[only_bind_into](state), mid, state0, false, _, config, _) and
-      revFlow(mid, state0, toReturn, returnAp, nil, pragma[only_bind_into](config)) and
-      ap instanceof ApNil
-    )
-    or
-    exists(NodeEx mid |
-      jumpStep(node, mid, config) and
-      revFlow(mid, state, _, _, ap, config) and
-      toReturn = false and
-      returnAp = apNone()
-    )
-    or
-    exists(NodeEx mid, ApNil nil |
-      fwdFlow(node, _, _, _, ap, pragma[only_bind_into](config)) and
-      additionalJumpStep(node, mid, config) and
-      revFlow(pragma[only_bind_into](mid), state, _, _, nil, pragma[only_bind_into](config)) and
-      toReturn = false and
-      returnAp = apNone() and
-      ap instanceof ApNil
-    )
-    or
-    exists(NodeEx mid, FlowState state0, ApNil nil |
-      fwdFlow(node, _, _, _, ap, pragma[only_bind_into](config)) and
-      additionalJumpStateStep(node, state, mid, state0, config) and
-      revFlow(pragma[only_bind_into](mid), pragma[only_bind_into](state0), _, _, nil,
-        pragma[only_bind_into](config)) and
-      toReturn = false and
-      returnAp = apNone() and
-      ap instanceof ApNil
-    )
-    or
-    // store
-    exists(Ap ap0, Content c |
-      revFlowStore(ap0, c, ap, node, state, _, _, toReturn, returnAp, config) and
-      revFlowConsCand(ap0, c, ap, config)
-    )
-    or
-    // read
-    exists(NodeEx mid, Ap ap0 |
-      revFlow(mid, state, toReturn, returnAp, ap0, config) and
-      readStepFwd(node, ap, _, mid, ap0, config)
-    )
-    or
-    // flow into a callable
-    revFlowInNotToReturn(node, state, returnAp, ap, config) and
-    toReturn = false
-    or
-    exists(DataFlowCall call, Ap returnAp0 |
-      revFlowInToReturn(call, node, state, returnAp0, ap, config) and
-      revFlowIsReturned(call, toReturn, returnAp, returnAp0, config)
-    )
-    or
-    // flow out of a callable
-    revFlowOut(_, node, state, _, _, ap, config) and
-    toReturn = true and
-    if returnNodeMayFlowThrough(node, state, ap, config)
-    then returnAp = apSome(ap)
-    else returnAp = apNone()
-  }
-
-  pragma[nomagic]
-  private predicate revFlowStore(
-    Ap ap0, Content c, Ap ap, NodeEx node, FlowState state, TypedContent tc, NodeEx mid,
-    boolean toReturn, ApOption returnAp, Configuration config
-  ) {
-    revFlow(mid, state, toReturn, returnAp, ap0, config) and
-    storeStepFwd(node, ap, tc, mid, ap0, config) and
-    tc.getContent() = c
-  }
-
-  /**
-   * Holds if reverse flow with access path `tail` reaches a read of `c`
-   * resulting in access path `cons`.
-   */
-  pragma[nomagic]
-  private predicate revFlowConsCand(Ap cons, Content c, Ap tail, Configuration config) {
-    exists(NodeEx mid, Ap tail0 |
-      revFlow(mid, _, _, _, tail, config) and
-      tail = pragma[only_bind_into](tail0) and
-      readStepFwd(_, cons, c, mid, tail0, config)
-    )
-  }
-
-  pragma[nomagic]
-  private predicate revFlowOut(
-    DataFlowCall call, RetNodeEx ret, FlowState state, boolean toReturn, ApOption returnAp, Ap ap,
-    Configuration config
-  ) {
-    exists(NodeEx out, boolean allowsFieldFlow |
-      revFlow(out, state, toReturn, returnAp, ap, config) and
-      flowOutOfCall(call, ret, out, allowsFieldFlow, config) and
-      if allowsFieldFlow = false then ap instanceof ApNil else any()
-    )
-  }
-
-  pragma[nomagic]
-  private predicate revFlowInNotToReturn(
-    ArgNodeEx arg, FlowState state, ApOption returnAp, Ap ap, Configuration config
-  ) {
-    exists(ParamNodeEx p, boolean allowsFieldFlow |
-      revFlow(p, state, false, returnAp, ap, config) and
-      flowIntoCall(_, arg, p, allowsFieldFlow, config) and
-      if allowsFieldFlow = false then ap instanceof ApNil else any()
-    )
-  }
-
-  pragma[nomagic]
-  private predicate revFlowInToReturn(
-    DataFlowCall call, ArgNodeEx arg, FlowState state, Ap returnAp, Ap ap, Configuration config
-  ) {
-    exists(ParamNodeEx p, boolean allowsFieldFlow |
-      revFlow(p, state, true, apSome(returnAp), ap, config) and
-      flowThroughIntoCall(call, arg, p, allowsFieldFlow, config) and
-      if allowsFieldFlow = false then ap instanceof ApNil else any()
-    )
-  }
-
-  /**
-   * Holds if an output from `call` is reached in the flow covered by `revFlow`
-   * and data might flow through the target callable resulting in reverse flow
-   * reaching an argument of `call`.
-   */
-  pragma[nomagic]
-  private predicate revFlowIsReturned(
-    DataFlowCall call, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
-  ) {
-    exists(RetNodeEx ret, FlowState state, CcCall ccc |
-      revFlowOut(call, ret, state, toReturn, returnAp, ap, config) and
-      fwdFlow(ret, state, ccc, apSome(_), ap, config) and
-      ccc.matchesCall(call)
-    )
-  }
-
-  pragma[nomagic]
-  predicate storeStepCand(
-    NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, DataFlowType contentType,
-    Configuration config
-  ) {
-    exists(Ap ap2, Content c |
-      PrevStage::storeStepCand(node1, _, tc, node2, contentType, config) and
-      revFlowStore(ap2, c, ap1, node1, _, tc, node2, _, _, config) and
-      revFlowConsCand(ap2, c, ap1, config)
-    )
-  }
-
-  predicate readStepCand(NodeEx node1, Content c, NodeEx node2, Configuration config) {
-    exists(Ap ap1, Ap ap2 |
-      revFlow(node2, _, _, _, pragma[only_bind_into](ap2), pragma[only_bind_into](config)) and
-      readStepFwd(node1, ap1, c, node2, ap2, config) and
-      revFlowStore(ap1, c, pragma[only_bind_into](ap2), _, _, _, _, _, _,
-        pragma[only_bind_into](config))
-    )
-  }
-
-  predicate revFlow(NodeEx node, FlowState state, Configuration config) {
-    revFlow(node, state, _, _, _, config)
-  }
-
-  pragma[nomagic]
-  predicate revFlow(NodeEx node, Configuration config) { revFlow(node, _, _, _, _, config) }
-
-  // use an alias as a workaround for bad functionality-induced joins
-  pragma[nomagic]
-  predicate revFlowAlias(NodeEx node, Configuration config) { revFlow(node, _, _, _, _, config) }
-
-  // use an alias as a workaround for bad functionality-induced joins
-  pragma[nomagic]
-  predicate revFlowAlias(
-    NodeEx node, FlowState state, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
-  ) {
-    revFlow(node, state, toReturn, returnAp, ap, config)
-  }
-
-  private predicate fwdConsCand(TypedContent tc, Ap ap, Configuration config) {
-    storeStepFwd(_, ap, tc, _, _, config)
-  }
-
-  private predicate revConsCand(TypedContent tc, Ap ap, Configuration config) {
-    storeStepCand(_, ap, tc, _, _, config)
-  }
-
-  private predicate validAp(Ap ap, Configuration config) {
-    revFlow(_, _, _, _, ap, config) and ap instanceof ApNil
-    or
-    exists(TypedContent head, Ap tail |
-      consCand(head, tail, config) and
-      ap = apCons(head, tail)
-    )
-  }
-
-  predicate consCand(TypedContent tc, Ap ap, Configuration config) {
-    revConsCand(tc, ap, config) and
-    validAp(ap, config)
-  }
-
-  pragma[noinline]
-  private predicate parameterFlow(
-    ParamNodeEx p, Ap ap, Ap ap0, DataFlowCallable c, Configuration config
-  ) {
-    revFlow(p, _, true, apSome(ap0), ap, config) and
-    c = p.getEnclosingCallable()
-  }
-
-  predicate parameterMayFlowThrough(ParamNodeEx p, DataFlowCallable c, Ap ap, Configuration config) {
-    exists(RetNodeEx ret, FlowState state, Ap ap0, ReturnKindExt kind, ParameterPosition pos |
-      parameterFlow(p, ap, ap0, c, config) and
-      c = ret.getEnclosingCallable() and
-      revFlow(pragma[only_bind_into](ret), pragma[only_bind_into](state), true, apSome(_),
-        pragma[only_bind_into](ap0), pragma[only_bind_into](config)) and
-      fwdFlow(ret, state, any(CcCall ccc), apSome(ap), ap0, config) and
-      kind = ret.getKind() and
-      p.getPosition() = pos and
-      // we don't expect a parameter to return stored in itself, unless explicitly allowed
-      (
-        not kind.(ParamUpdateReturnKind).getPosition() = pos
-        or
-        p.allowParameterReturnInSelf()
-      )
-    )
-  }
-
-  pragma[nomagic]
-  predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
-    exists(
-      Ap returnAp0, ArgNodeEx arg, FlowState state, boolean toReturn, ApOption returnAp, Ap ap
-    |
-      revFlow(arg, state, toReturn, returnAp, ap, config) and
-      revFlowInToReturn(call, arg, state, returnAp0, ap, config) and
-      revFlowIsReturned(call, toReturn, returnAp, returnAp0, config)
-    )
-  }
-
-  predicate stats(
-    boolean fwd, int nodes, int fields, int conscand, int states, int tuples, Configuration config
-  ) {
-    fwd = true and
-    nodes = count(NodeEx node | fwdFlow(node, _, _, _, _, config)) and
-    fields = count(TypedContent f0 | fwdConsCand(f0, _, config)) and
-    conscand = count(TypedContent f0, Ap ap | fwdConsCand(f0, ap, config)) and
-    states = count(FlowState state | fwdFlow(_, state, _, _, _, config)) and
-    tuples =
-      count(NodeEx n, FlowState state, Cc cc, ApOption argAp, Ap ap |
-        fwdFlow(n, state, cc, argAp, ap, config)
-      )
-    or
-    fwd = false and
-    nodes = count(NodeEx node | revFlow(node, _, _, _, _, config)) and
-    fields = count(TypedContent f0 | consCand(f0, _, config)) and
-    conscand = count(TypedContent f0, Ap ap | consCand(f0, ap, config)) and
-    states = count(FlowState state | revFlow(_, state, _, _, _, config)) and
-    tuples =
-      count(NodeEx n, FlowState state, boolean b, ApOption retAp, Ap ap |
-        revFlow(n, state, b, retAp, ap, config)
-      )
-  }
-  /* End: Stage 4 logic. */
+  predicate typecheckStore(Ap ap, DataFlowType contentType) { any() }
 }
 
+private module Stage4 = MkStage<Stage3>::Stage<Stage4Param>;
+
 bindingset[conf, result]
 private Configuration unbindConf(Configuration conf) {
   exists(Configuration c | result = pragma[only_bind_into](c) and conf = pragma[only_bind_into](c))
@@ -3495,7 +2524,7 @@ private newtype TSummaryCtx =
   TSummaryCtxSome(ParamNodeEx p, FlowState state, AccessPath ap) {
     exists(Configuration config |
       Stage4::parameterMayFlowThrough(p, _, ap.getApprox(), config) and
-      Stage4::revFlow(p, state, _, _, _, config)
+      Stage4::revFlow(p, state, _, config)
     )
   }
 
@@ -3553,7 +2582,7 @@ private int count1to2unfold(AccessPathApproxCons1 apa, Configuration config) {
 private int countNodesUsingAccessPath(AccessPathApprox apa, Configuration config) {
   result =
     strictcount(NodeEx n, FlowState state |
-      Stage4::revFlow(n, state, _, _, apa, config) or nodeMayUseSummary(n, state, apa, config)
+      Stage4::revFlow(n, state, apa, config) or nodeMayUseSummary(n, state, apa, config)
     )
 }
 
@@ -3667,7 +2696,7 @@ private newtype TPathNode =
     exists(PathNodeMid mid |
       pathStep(mid, node, state, cc, sc, ap) and
       pragma[only_bind_into](config) = mid.getConfiguration() and
-      Stage4::revFlow(node, state, _, _, ap.getApprox(), pragma[only_bind_into](config))
+      Stage4::revFlow(node, state, ap.getApprox(), pragma[only_bind_into](config))
     )
   } or
   TPathNodeSink(NodeEx node, FlowState state, Configuration config) {
@@ -4207,7 +3236,7 @@ private NodeEx getAnOutNodeFlow(
   ReturnKindExt kind, DataFlowCall call, AccessPathApprox apa, Configuration config
 ) {
   result.asNode() = kind.getAnOutNode(call) and
-  Stage4::revFlow(result, _, _, _, apa, config)
+  Stage4::revFlow(result, _, apa, config)
 }
 
 /**
@@ -4243,7 +3272,7 @@ private predicate parameterCand(
   DataFlowCallable callable, ParameterPosition pos, AccessPathApprox apa, Configuration config
 ) {
   exists(ParamNodeEx p |
-    Stage4::revFlow(p, _, _, _, apa, config) and
+    Stage4::revFlow(p, _, apa, config) and
     p.isParameterOf(callable, pos)
   )
 }
diff --git a/go/ql/lib/semmle/go/dataflow/internal/DataFlowImpl2.qll b/go/ql/lib/semmle/go/dataflow/internal/DataFlowImpl2.qll
index a076f7a2e45..340bfe280b7 100644
--- a/go/ql/lib/semmle/go/dataflow/internal/DataFlowImpl2.qll
+++ b/go/ql/lib/semmle/go/dataflow/internal/DataFlowImpl2.qll
@@ -597,7 +597,7 @@ private predicate hasSinkCallCtx(Configuration config) {
   )
 }
 
-private module Stage1 {
+private module Stage1 implements StageSig {
   class ApApprox = Unit;
 
   class Ap = Unit;
@@ -944,12 +944,9 @@ private module Stage1 {
   predicate revFlow(NodeEx node, Configuration config) { revFlow(node, _, config) }
 
   bindingset[node, state, config]
-  predicate revFlow(
-    NodeEx node, FlowState state, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
-  ) {
-    revFlow(node, toReturn, pragma[only_bind_into](config)) and
+  predicate revFlow(NodeEx node, FlowState state, Ap ap, Configuration config) {
+    revFlow(node, _, pragma[only_bind_into](config)) and
     exists(state) and
-    exists(returnAp) and
     exists(ap)
   }
 
@@ -1142,66 +1139,754 @@ private predicate flowIntoCallNodeCand1(
   )
 }
 
-private module Stage2 {
-  module PrevStage = Stage1;
+private signature module StageSig {
+  class Ap;
 
+  predicate revFlow(NodeEx node, Configuration config);
+
+  bindingset[node, state, config]
+  predicate revFlow(NodeEx node, FlowState state, Ap ap, Configuration config);
+
+  predicate callMayFlowThroughRev(DataFlowCall call, Configuration config);
+
+  predicate parameterMayFlowThrough(ParamNodeEx p, DataFlowCallable c, Ap ap, Configuration config);
+
+  predicate storeStepCand(
+    NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, DataFlowType contentType,
+    Configuration config
+  );
+
+  predicate readStepCand(NodeEx n1, Content c, NodeEx n2, Configuration config);
+}
+
+private module MkStage<StageSig PrevStage> {
   class ApApprox = PrevStage::Ap;
 
-  class Ap = boolean;
+  signature module StageParam {
+    class Ap;
 
-  class ApNil extends Ap {
-    ApNil() { this = false }
+    class ApNil extends Ap;
+
+    bindingset[result, ap]
+    ApApprox getApprox(Ap ap);
+
+    ApNil getApNil(NodeEx node);
+
+    bindingset[tc, tail]
+    Ap apCons(TypedContent tc, Ap tail);
+
+    Content getHeadContent(Ap ap);
+
+    class ApOption;
+
+    ApOption apNone();
+
+    ApOption apSome(Ap ap);
+
+    class Cc;
+
+    class CcCall extends Cc;
+
+    // TODO: member predicate on CcCall
+    predicate matchesCall(CcCall cc, DataFlowCall call);
+
+    class CcNoCall extends Cc;
+
+    Cc ccNone();
+
+    CcCall ccSomeCall();
+
+    class LocalCc;
+
+    bindingset[call, c, outercc]
+    CcCall getCallContextCall(DataFlowCall call, DataFlowCallable c, Cc outercc);
+
+    bindingset[call, c, innercc]
+    CcNoCall getCallContextReturn(DataFlowCallable c, DataFlowCall call, Cc innercc);
+
+    bindingset[node, cc]
+    LocalCc getLocalCc(NodeEx node, Cc cc);
+
+    bindingset[node1, state1, config]
+    bindingset[node2, state2, config]
+    predicate localStep(
+      NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
+      ApNil ap, Configuration config, LocalCc lcc
+    );
+
+    predicate flowOutOfCall(
+      DataFlowCall call, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow, Configuration config
+    );
+
+    predicate flowIntoCall(
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
+    );
+
+    bindingset[node, state, ap, config]
+    predicate filter(NodeEx node, FlowState state, Ap ap, Configuration config);
+
+    bindingset[ap, contentType]
+    predicate typecheckStore(Ap ap, DataFlowType contentType);
   }
 
-  bindingset[result, ap]
-  private ApApprox getApprox(Ap ap) { any() }
+  module Stage<StageParam Param> implements StageSig {
+    import Param
 
-  private ApNil getApNil(NodeEx node) { PrevStage::revFlow(node, _) and exists(result) }
+    /* Begin: Stage logic. */
+    bindingset[result, apa]
+    private ApApprox unbindApa(ApApprox apa) {
+      pragma[only_bind_out](apa) = pragma[only_bind_out](result)
+    }
 
-  bindingset[tc, tail]
-  private Ap apCons(TypedContent tc, Ap tail) { result = true and exists(tc) and exists(tail) }
+    pragma[nomagic]
+    private predicate flowThroughOutOfCall(
+      DataFlowCall call, CcCall ccc, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow,
+      Configuration config
+    ) {
+      flowOutOfCall(call, ret, out, allowsFieldFlow, pragma[only_bind_into](config)) and
+      PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
+      PrevStage::parameterMayFlowThrough(_, ret.getEnclosingCallable(), _,
+        pragma[only_bind_into](config)) and
+      matchesCall(ccc, call)
+    }
 
-  pragma[inline]
-  private Content getHeadContent(Ap ap) { exists(result) and ap = true }
+    /**
+     * Holds if `node` is reachable with access path `ap` from a source in the
+     * configuration `config`.
+     *
+     * The call context `cc` records whether the node is reached through an
+     * argument in a call, and if so, `argAp` records the access path of that
+     * argument.
+     */
+    pragma[nomagic]
+    predicate fwdFlow(
+      NodeEx node, FlowState state, Cc cc, ApOption argAp, Ap ap, Configuration config
+    ) {
+      fwdFlow0(node, state, cc, argAp, ap, config) and
+      PrevStage::revFlow(node, state, unbindApa(getApprox(ap)), config) and
+      filter(node, state, ap, config)
+    }
 
-  class ApOption = BooleanOption;
+    pragma[nomagic]
+    private predicate fwdFlow0(
+      NodeEx node, FlowState state, Cc cc, ApOption argAp, Ap ap, Configuration config
+    ) {
+      sourceNode(node, state, config) and
+      (if hasSourceCallCtx(config) then cc = ccSomeCall() else cc = ccNone()) and
+      argAp = apNone() and
+      ap = getApNil(node)
+      or
+      exists(NodeEx mid, FlowState state0, Ap ap0, LocalCc localCc |
+        fwdFlow(mid, state0, cc, argAp, ap0, config) and
+        localCc = getLocalCc(mid, cc)
+      |
+        localStep(mid, state0, node, state, true, _, config, localCc) and
+        ap = ap0
+        or
+        localStep(mid, state0, node, state, false, ap, config, localCc) and
+        ap0 instanceof ApNil
+      )
+      or
+      exists(NodeEx mid |
+        fwdFlow(mid, pragma[only_bind_into](state), _, _, ap, pragma[only_bind_into](config)) and
+        jumpStep(mid, node, config) and
+        cc = ccNone() and
+        argAp = apNone()
+      )
+      or
+      exists(NodeEx mid, ApNil nil |
+        fwdFlow(mid, state, _, _, nil, pragma[only_bind_into](config)) and
+        additionalJumpStep(mid, node, config) and
+        cc = ccNone() and
+        argAp = apNone() and
+        ap = getApNil(node)
+      )
+      or
+      exists(NodeEx mid, FlowState state0, ApNil nil |
+        fwdFlow(mid, state0, _, _, nil, pragma[only_bind_into](config)) and
+        additionalJumpStateStep(mid, state0, node, state, config) and
+        cc = ccNone() and
+        argAp = apNone() and
+        ap = getApNil(node)
+      )
+      or
+      // store
+      exists(TypedContent tc, Ap ap0 |
+        fwdFlowStore(_, ap0, tc, node, state, cc, argAp, config) and
+        ap = apCons(tc, ap0)
+      )
+      or
+      // read
+      exists(Ap ap0, Content c |
+        fwdFlowRead(ap0, c, _, node, state, cc, argAp, config) and
+        fwdFlowConsCand(ap0, c, ap, config)
+      )
+      or
+      // flow into a callable
+      exists(ApApprox apa |
+        fwdFlowIn(_, node, state, _, cc, _, ap, config) and
+        apa = getApprox(ap) and
+        if PrevStage::parameterMayFlowThrough(node, _, apa, config)
+        then argAp = apSome(ap)
+        else argAp = apNone()
+      )
+      or
+      // flow out of a callable
+      fwdFlowOutNotFromArg(node, state, cc, argAp, ap, config)
+      or
+      exists(DataFlowCall call, Ap argAp0 |
+        fwdFlowOutFromArg(call, node, state, argAp0, ap, config) and
+        fwdFlowIsEntered(call, cc, argAp, argAp0, config)
+      )
+    }
 
-  ApOption apNone() { result = TBooleanNone() }
+    pragma[nomagic]
+    private predicate fwdFlowStore(
+      NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc, ApOption argAp,
+      Configuration config
+    ) {
+      exists(DataFlowType contentType |
+        fwdFlow(node1, state, cc, argAp, ap1, config) and
+        PrevStage::storeStepCand(node1, unbindApa(getApprox(ap1)), tc, node2, contentType, config) and
+        typecheckStore(ap1, contentType)
+      )
+    }
 
-  ApOption apSome(Ap ap) { result = TBooleanSome(ap) }
+    /**
+     * Holds if forward flow with access path `tail` reaches a store of `c`
+     * resulting in access path `cons`.
+     */
+    pragma[nomagic]
+    private predicate fwdFlowConsCand(Ap cons, Content c, Ap tail, Configuration config) {
+      exists(TypedContent tc |
+        fwdFlowStore(_, tail, tc, _, _, _, _, config) and
+        tc.getContent() = c and
+        cons = apCons(tc, tail)
+      )
+    }
 
+    pragma[nomagic]
+    private predicate fwdFlowRead(
+      Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc, ApOption argAp,
+      Configuration config
+    ) {
+      fwdFlow(node1, state, cc, argAp, ap, config) and
+      PrevStage::readStepCand(node1, c, node2, config) and
+      getHeadContent(ap) = c
+    }
+
+    pragma[nomagic]
+    private predicate fwdFlowIn(
+      DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, Cc innercc, ApOption argAp,
+      Ap ap, Configuration config
+    ) {
+      exists(ArgNodeEx arg, boolean allowsFieldFlow |
+        fwdFlow(arg, state, outercc, argAp, ap, config) and
+        flowIntoCall(call, arg, p, allowsFieldFlow, config) and
+        innercc = getCallContextCall(call, p.getEnclosingCallable(), outercc) and
+        if allowsFieldFlow = false then ap instanceof ApNil else any()
+      )
+    }
+
+    pragma[nomagic]
+    private predicate fwdFlowOutNotFromArg(
+      NodeEx out, FlowState state, Cc ccOut, ApOption argAp, Ap ap, Configuration config
+    ) {
+      exists(
+        DataFlowCall call, RetNodeEx ret, boolean allowsFieldFlow, CcNoCall innercc,
+        DataFlowCallable inner
+      |
+        fwdFlow(ret, state, innercc, argAp, ap, config) and
+        flowOutOfCall(call, ret, out, allowsFieldFlow, config) and
+        inner = ret.getEnclosingCallable() and
+        ccOut = getCallContextReturn(inner, call, innercc) and
+        if allowsFieldFlow = false then ap instanceof ApNil else any()
+      )
+    }
+
+    pragma[nomagic]
+    private predicate fwdFlowOutFromArg(
+      DataFlowCall call, NodeEx out, FlowState state, Ap argAp, Ap ap, Configuration config
+    ) {
+      exists(RetNodeEx ret, boolean allowsFieldFlow, CcCall ccc |
+        fwdFlow(ret, state, ccc, apSome(argAp), ap, config) and
+        flowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, config) and
+        if allowsFieldFlow = false then ap instanceof ApNil else any()
+      )
+    }
+
+    /**
+     * Holds if an argument to `call` is reached in the flow covered by `fwdFlow`
+     * and data might flow through the target callable and back out at `call`.
+     */
+    pragma[nomagic]
+    private predicate fwdFlowIsEntered(
+      DataFlowCall call, Cc cc, ApOption argAp, Ap ap, Configuration config
+    ) {
+      exists(ParamNodeEx p |
+        fwdFlowIn(call, p, _, cc, _, argAp, ap, config) and
+        PrevStage::parameterMayFlowThrough(p, _, unbindApa(getApprox(ap)), config)
+      )
+    }
+
+    pragma[nomagic]
+    private predicate storeStepFwd(
+      NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, Ap ap2, Configuration config
+    ) {
+      fwdFlowStore(node1, ap1, tc, node2, _, _, _, config) and
+      ap2 = apCons(tc, ap1) and
+      fwdFlowRead(ap2, tc.getContent(), _, _, _, _, _, config)
+    }
+
+    private predicate readStepFwd(
+      NodeEx n1, Ap ap1, Content c, NodeEx n2, Ap ap2, Configuration config
+    ) {
+      fwdFlowRead(ap1, c, n1, n2, _, _, _, config) and
+      fwdFlowConsCand(ap1, c, ap2, config)
+    }
+
+    pragma[nomagic]
+    private predicate callMayFlowThroughFwd(DataFlowCall call, Configuration config) {
+      exists(Ap argAp0, NodeEx out, FlowState state, Cc cc, ApOption argAp, Ap ap |
+        fwdFlow(out, state, pragma[only_bind_into](cc), pragma[only_bind_into](argAp), ap,
+          pragma[only_bind_into](config)) and
+        fwdFlowOutFromArg(call, out, state, argAp0, ap, config) and
+        fwdFlowIsEntered(pragma[only_bind_into](call), pragma[only_bind_into](cc),
+          pragma[only_bind_into](argAp), pragma[only_bind_into](argAp0),
+          pragma[only_bind_into](config))
+      )
+    }
+
+    pragma[nomagic]
+    private predicate flowThroughIntoCall(
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
+    ) {
+      flowIntoCall(call, arg, p, allowsFieldFlow, config) and
+      fwdFlow(arg, _, _, _, _, pragma[only_bind_into](config)) and
+      PrevStage::parameterMayFlowThrough(p, _, _, pragma[only_bind_into](config)) and
+      callMayFlowThroughFwd(call, pragma[only_bind_into](config))
+    }
+
+    pragma[nomagic]
+    private predicate returnNodeMayFlowThrough(
+      RetNodeEx ret, FlowState state, Ap ap, Configuration config
+    ) {
+      fwdFlow(ret, state, any(CcCall ccc), apSome(_), ap, config)
+    }
+
+    /**
+     * Holds if `node` with access path `ap` is part of a path from a source to a
+     * sink in the configuration `config`.
+     *
+     * The Boolean `toReturn` records whether the node must be returned from the
+     * enclosing callable in order to reach a sink, and if so, `returnAp` records
+     * the access path of the returned value.
+     */
+    pragma[nomagic]
+    predicate revFlow(
+      NodeEx node, FlowState state, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
+    ) {
+      revFlow0(node, state, toReturn, returnAp, ap, config) and
+      fwdFlow(node, state, _, _, ap, config)
+    }
+
+    pragma[nomagic]
+    private predicate revFlow0(
+      NodeEx node, FlowState state, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
+    ) {
+      fwdFlow(node, state, _, _, ap, config) and
+      sinkNode(node, state, config) and
+      (if hasSinkCallCtx(config) then toReturn = true else toReturn = false) and
+      returnAp = apNone() and
+      ap instanceof ApNil
+      or
+      exists(NodeEx mid, FlowState state0 |
+        localStep(node, state, mid, state0, true, _, config, _) and
+        revFlow(mid, state0, toReturn, returnAp, ap, config)
+      )
+      or
+      exists(NodeEx mid, FlowState state0, ApNil nil |
+        fwdFlow(node, pragma[only_bind_into](state), _, _, ap, pragma[only_bind_into](config)) and
+        localStep(node, pragma[only_bind_into](state), mid, state0, false, _, config, _) and
+        revFlow(mid, state0, toReturn, returnAp, nil, pragma[only_bind_into](config)) and
+        ap instanceof ApNil
+      )
+      or
+      exists(NodeEx mid |
+        jumpStep(node, mid, config) and
+        revFlow(mid, state, _, _, ap, config) and
+        toReturn = false and
+        returnAp = apNone()
+      )
+      or
+      exists(NodeEx mid, ApNil nil |
+        fwdFlow(node, _, _, _, ap, pragma[only_bind_into](config)) and
+        additionalJumpStep(node, mid, config) and
+        revFlow(pragma[only_bind_into](mid), state, _, _, nil, pragma[only_bind_into](config)) and
+        toReturn = false and
+        returnAp = apNone() and
+        ap instanceof ApNil
+      )
+      or
+      exists(NodeEx mid, FlowState state0, ApNil nil |
+        fwdFlow(node, _, _, _, ap, pragma[only_bind_into](config)) and
+        additionalJumpStateStep(node, state, mid, state0, config) and
+        revFlow(pragma[only_bind_into](mid), pragma[only_bind_into](state0), _, _, nil,
+          pragma[only_bind_into](config)) and
+        toReturn = false and
+        returnAp = apNone() and
+        ap instanceof ApNil
+      )
+      or
+      // store
+      exists(Ap ap0, Content c |
+        revFlowStore(ap0, c, ap, node, state, _, _, toReturn, returnAp, config) and
+        revFlowConsCand(ap0, c, ap, config)
+      )
+      or
+      // read
+      exists(NodeEx mid, Ap ap0 |
+        revFlow(mid, state, toReturn, returnAp, ap0, config) and
+        readStepFwd(node, ap, _, mid, ap0, config)
+      )
+      or
+      // flow into a callable
+      revFlowInNotToReturn(node, state, returnAp, ap, config) and
+      toReturn = false
+      or
+      exists(DataFlowCall call, Ap returnAp0 |
+        revFlowInToReturn(call, node, state, returnAp0, ap, config) and
+        revFlowIsReturned(call, toReturn, returnAp, returnAp0, config)
+      )
+      or
+      // flow out of a callable
+      revFlowOut(_, node, state, _, _, ap, config) and
+      toReturn = true and
+      if returnNodeMayFlowThrough(node, state, ap, config)
+      then returnAp = apSome(ap)
+      else returnAp = apNone()
+    }
+
+    pragma[nomagic]
+    private predicate revFlowStore(
+      Ap ap0, Content c, Ap ap, NodeEx node, FlowState state, TypedContent tc, NodeEx mid,
+      boolean toReturn, ApOption returnAp, Configuration config
+    ) {
+      revFlow(mid, state, toReturn, returnAp, ap0, config) and
+      storeStepFwd(node, ap, tc, mid, ap0, config) and
+      tc.getContent() = c
+    }
+
+    /**
+     * Holds if reverse flow with access path `tail` reaches a read of `c`
+     * resulting in access path `cons`.
+     */
+    pragma[nomagic]
+    private predicate revFlowConsCand(Ap cons, Content c, Ap tail, Configuration config) {
+      exists(NodeEx mid, Ap tail0 |
+        revFlow(mid, _, _, _, tail, config) and
+        tail = pragma[only_bind_into](tail0) and
+        readStepFwd(_, cons, c, mid, tail0, config)
+      )
+    }
+
+    pragma[nomagic]
+    private predicate revFlowOut(
+      DataFlowCall call, RetNodeEx ret, FlowState state, boolean toReturn, ApOption returnAp, Ap ap,
+      Configuration config
+    ) {
+      exists(NodeEx out, boolean allowsFieldFlow |
+        revFlow(out, state, toReturn, returnAp, ap, config) and
+        flowOutOfCall(call, ret, out, allowsFieldFlow, config) and
+        if allowsFieldFlow = false then ap instanceof ApNil else any()
+      )
+    }
+
+    pragma[nomagic]
+    private predicate revFlowInNotToReturn(
+      ArgNodeEx arg, FlowState state, ApOption returnAp, Ap ap, Configuration config
+    ) {
+      exists(ParamNodeEx p, boolean allowsFieldFlow |
+        revFlow(p, state, false, returnAp, ap, config) and
+        flowIntoCall(_, arg, p, allowsFieldFlow, config) and
+        if allowsFieldFlow = false then ap instanceof ApNil else any()
+      )
+    }
+
+    pragma[nomagic]
+    private predicate revFlowInToReturn(
+      DataFlowCall call, ArgNodeEx arg, FlowState state, Ap returnAp, Ap ap, Configuration config
+    ) {
+      exists(ParamNodeEx p, boolean allowsFieldFlow |
+        revFlow(p, state, true, apSome(returnAp), ap, config) and
+        flowThroughIntoCall(call, arg, p, allowsFieldFlow, config) and
+        if allowsFieldFlow = false then ap instanceof ApNil else any()
+      )
+    }
+
+    /**
+     * Holds if an output from `call` is reached in the flow covered by `revFlow`
+     * and data might flow through the target callable resulting in reverse flow
+     * reaching an argument of `call`.
+     */
+    pragma[nomagic]
+    private predicate revFlowIsReturned(
+      DataFlowCall call, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
+    ) {
+      exists(RetNodeEx ret, FlowState state, CcCall ccc |
+        revFlowOut(call, ret, state, toReturn, returnAp, ap, config) and
+        fwdFlow(ret, state, ccc, apSome(_), ap, config) and
+        matchesCall(ccc, call)
+      )
+    }
+
+    pragma[nomagic]
+    predicate storeStepCand(
+      NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, DataFlowType contentType,
+      Configuration config
+    ) {
+      exists(Ap ap2, Content c |
+        PrevStage::storeStepCand(node1, _, tc, node2, contentType, config) and
+        revFlowStore(ap2, c, ap1, node1, _, tc, node2, _, _, config) and
+        revFlowConsCand(ap2, c, ap1, config)
+      )
+    }
+
+    predicate readStepCand(NodeEx node1, Content c, NodeEx node2, Configuration config) {
+      exists(Ap ap1, Ap ap2 |
+        revFlow(node2, _, _, _, pragma[only_bind_into](ap2), pragma[only_bind_into](config)) and
+        readStepFwd(node1, ap1, c, node2, ap2, config) and
+        revFlowStore(ap1, c, pragma[only_bind_into](ap2), _, _, _, _, _, _,
+          pragma[only_bind_into](config))
+      )
+    }
+
+    predicate revFlow(NodeEx node, FlowState state, Configuration config) {
+      revFlow(node, state, _, _, _, config)
+    }
+
+    predicate revFlow(NodeEx node, FlowState state, Ap ap, Configuration config) {
+      revFlow(node, state, _, _, ap, config)
+    }
+
+    pragma[nomagic]
+    predicate revFlow(NodeEx node, Configuration config) { revFlow(node, _, _, _, _, config) }
+
+    // use an alias as a workaround for bad functionality-induced joins
+    pragma[nomagic]
+    predicate revFlowAlias(NodeEx node, Configuration config) { revFlow(node, _, _, _, _, config) }
+
+    // use an alias as a workaround for bad functionality-induced joins
+    pragma[nomagic]
+    predicate revFlowAlias(NodeEx node, FlowState state, Ap ap, Configuration config) {
+      revFlow(node, state, ap, config)
+    }
+
+    private predicate fwdConsCand(TypedContent tc, Ap ap, Configuration config) {
+      storeStepFwd(_, ap, tc, _, _, config)
+    }
+
+    private predicate revConsCand(TypedContent tc, Ap ap, Configuration config) {
+      storeStepCand(_, ap, tc, _, _, config)
+    }
+
+    private predicate validAp(Ap ap, Configuration config) {
+      revFlow(_, _, _, _, ap, config) and ap instanceof ApNil
+      or
+      exists(TypedContent head, Ap tail |
+        consCand(head, tail, config) and
+        ap = apCons(head, tail)
+      )
+    }
+
+    predicate consCand(TypedContent tc, Ap ap, Configuration config) {
+      revConsCand(tc, ap, config) and
+      validAp(ap, config)
+    }
+
+    pragma[noinline]
+    private predicate parameterFlow(
+      ParamNodeEx p, Ap ap, Ap ap0, DataFlowCallable c, Configuration config
+    ) {
+      revFlow(p, _, true, apSome(ap0), ap, config) and
+      c = p.getEnclosingCallable()
+    }
+
+    predicate parameterMayFlowThrough(ParamNodeEx p, DataFlowCallable c, Ap ap, Configuration config) {
+      exists(RetNodeEx ret, FlowState state, Ap ap0, ReturnKindExt kind, ParameterPosition pos |
+        parameterFlow(p, ap, ap0, c, config) and
+        c = ret.getEnclosingCallable() and
+        revFlow(pragma[only_bind_into](ret), pragma[only_bind_into](state), true, apSome(_),
+          pragma[only_bind_into](ap0), pragma[only_bind_into](config)) and
+        fwdFlow(ret, state, any(CcCall ccc), apSome(ap), ap0, config) and
+        kind = ret.getKind() and
+        p.getPosition() = pos and
+        // we don't expect a parameter to return stored in itself, unless explicitly allowed
+        (
+          not kind.(ParamUpdateReturnKind).getPosition() = pos
+          or
+          p.allowParameterReturnInSelf()
+        )
+      )
+    }
+
+    pragma[nomagic]
+    predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
+      exists(
+        Ap returnAp0, ArgNodeEx arg, FlowState state, boolean toReturn, ApOption returnAp, Ap ap
+      |
+        revFlow(arg, state, toReturn, returnAp, ap, config) and
+        revFlowInToReturn(call, arg, state, returnAp0, ap, config) and
+        revFlowIsReturned(call, toReturn, returnAp, returnAp0, config)
+      )
+    }
+
+    predicate stats(
+      boolean fwd, int nodes, int fields, int conscand, int states, int tuples, Configuration config
+    ) {
+      fwd = true and
+      nodes = count(NodeEx node | fwdFlow(node, _, _, _, _, config)) and
+      fields = count(TypedContent f0 | fwdConsCand(f0, _, config)) and
+      conscand = count(TypedContent f0, Ap ap | fwdConsCand(f0, ap, config)) and
+      states = count(FlowState state | fwdFlow(_, state, _, _, _, config)) and
+      tuples =
+        count(NodeEx n, FlowState state, Cc cc, ApOption argAp, Ap ap |
+          fwdFlow(n, state, cc, argAp, ap, config)
+        )
+      or
+      fwd = false and
+      nodes = count(NodeEx node | revFlow(node, _, _, _, _, config)) and
+      fields = count(TypedContent f0 | consCand(f0, _, config)) and
+      conscand = count(TypedContent f0, Ap ap | consCand(f0, ap, config)) and
+      states = count(FlowState state | revFlow(_, state, _, _, _, config)) and
+      tuples =
+        count(NodeEx n, FlowState state, boolean b, ApOption retAp, Ap ap |
+          revFlow(n, state, b, retAp, ap, config)
+        )
+    }
+    /* End: Stage logic. */
+  }
+}
+
+private module BooleanCallContext {
+  class Cc extends boolean {
+    Cc() { this in [true, false] }
+  }
+
+  class CcCall extends Cc {
+    CcCall() { this = true }
+  }
+
+  /** Holds if the call context may be `call`. */
+  predicate matchesCall(CcCall cc, DataFlowCall call) { any() }
+
+  class CcNoCall extends Cc {
+    CcNoCall() { this = false }
+  }
+
+  Cc ccNone() { result = false }
+
+  CcCall ccSomeCall() { result = true }
+
+  class LocalCc = Unit;
+
+  bindingset[node, cc]
+  LocalCc getLocalCc(NodeEx node, Cc cc) { any() }
+
+  bindingset[call, c, outercc]
+  CcCall getCallContextCall(DataFlowCall call, DataFlowCallable c, Cc outercc) { any() }
+
+  bindingset[call, c, innercc]
+  CcNoCall getCallContextReturn(DataFlowCallable c, DataFlowCall call, Cc innercc) { any() }
+}
+
+private module Level1CallContext {
   class Cc = CallContext;
 
   class CcCall = CallContextCall;
 
+  pragma[inline]
+  predicate matchesCall(CcCall cc, DataFlowCall call) { cc.matchesCall(call) }
+
   class CcNoCall = CallContextNoCall;
 
   Cc ccNone() { result instanceof CallContextAny }
 
   CcCall ccSomeCall() { result instanceof CallContextSomeCall }
 
-  private class LocalCc = Unit;
+  module NoLocalCallContext {
+    class LocalCc = Unit;
 
-  bindingset[call, c, outercc]
-  private CcCall getCallContextCall(DataFlowCall call, DataFlowCallable c, Cc outercc) {
-    checkCallContextCall(outercc, call, c) and
-    if recordDataFlowCallSiteDispatch(call, c)
-    then result = TSpecificCall(call)
-    else result = TSomeCall()
+    bindingset[node, cc]
+    LocalCc getLocalCc(NodeEx node, Cc cc) { any() }
+
+    bindingset[call, c, outercc]
+    CcCall getCallContextCall(DataFlowCall call, DataFlowCallable c, Cc outercc) {
+      checkCallContextCall(outercc, call, c) and
+      if recordDataFlowCallSiteDispatch(call, c)
+      then result = TSpecificCall(call)
+      else result = TSomeCall()
+    }
+  }
+
+  module LocalCallContext {
+    class LocalCc = LocalCallContext;
+
+    bindingset[node, cc]
+    LocalCc getLocalCc(NodeEx node, Cc cc) {
+      result =
+        getLocalCallContext(pragma[only_bind_into](pragma[only_bind_out](cc)),
+          node.getEnclosingCallable())
+    }
+
+    bindingset[call, c, outercc]
+    CcCall getCallContextCall(DataFlowCall call, DataFlowCallable c, Cc outercc) {
+      checkCallContextCall(outercc, call, c) and
+      if recordDataFlowCallSite(call, c) then result = TSpecificCall(call) else result = TSomeCall()
+    }
   }
 
   bindingset[call, c, innercc]
-  private CcNoCall getCallContextReturn(DataFlowCallable c, DataFlowCall call, Cc innercc) {
+  CcNoCall getCallContextReturn(DataFlowCallable c, DataFlowCall call, Cc innercc) {
     checkCallContextReturn(innercc, c, call) and
     if reducedViableImplInReturn(c, call) then result = TReturn(c, call) else result = ccNone()
   }
+}
 
-  bindingset[node, cc]
-  private LocalCc getLocalCc(NodeEx node, Cc cc) { any() }
+private module Stage2Param implements MkStage<Stage1>::StageParam {
+  private module PrevStage = Stage1;
+
+  class Ap extends boolean {
+    Ap() { this in [true, false] }
+  }
+
+  class ApNil extends Ap {
+    ApNil() { this = false }
+  }
+
+  bindingset[result, ap]
+  PrevStage::Ap getApprox(Ap ap) { any() }
+
+  ApNil getApNil(NodeEx node) { Stage1::revFlow(node, _) and exists(result) }
+
+  bindingset[tc, tail]
+  Ap apCons(TypedContent tc, Ap tail) { result = true and exists(tc) and exists(tail) }
+
+  pragma[inline]
+  Content getHeadContent(Ap ap) { exists(result) and ap = true }
+
+  class ApOption = BooleanOption;
+
+  ApOption apNone() { result = TBooleanNone() }
+
+  ApOption apSome(Ap ap) { result = TBooleanSome(ap) }
+
+  import Level1CallContext
+  import NoLocalCallContext
 
   bindingset[node1, state1, config]
   bindingset[node2, state2, config]
-  private predicate localStep(
+  predicate localStep(
     NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
     ApNil ap, Configuration config, LocalCc lcc
   ) {
@@ -1221,9 +1906,9 @@ private module Stage2 {
     exists(lcc)
   }
 
-  private predicate flowOutOfCall = flowOutOfCallNodeCand1/5;
+  predicate flowOutOfCall = flowOutOfCallNodeCand1/5;
 
-  private predicate flowIntoCall = flowIntoCallNodeCand1/5;
+  predicate flowIntoCall = flowIntoCallNodeCand1/5;
 
   pragma[nomagic]
   private predicate expectsContentCand(NodeEx node, Configuration config) {
@@ -1235,7 +1920,7 @@ private module Stage2 {
   }
 
   bindingset[node, state, ap, config]
-  private predicate filter(NodeEx node, FlowState state, Ap ap, Configuration config) {
+  predicate filter(NodeEx node, FlowState state, Ap ap, Configuration config) {
     PrevStage::revFlowState(state, pragma[only_bind_into](config)) and
     exists(ap) and
     not stateBarrier(node, state, config) and
@@ -1248,542 +1933,11 @@ private module Stage2 {
   }
 
   bindingset[ap, contentType]
-  private predicate typecheckStore(Ap ap, DataFlowType contentType) { any() }
+  predicate typecheckStore(Ap ap, DataFlowType contentType) { any() }
+}
 
-  /* Begin: Stage 2 logic. */
-  bindingset[node, state, config]
-  private predicate flowCand(NodeEx node, FlowState state, ApApprox apa, Configuration config) {
-    PrevStage::revFlow(node, state, _, _, apa, config)
-  }
-
-  bindingset[result, apa]
-  private ApApprox unbindApa(ApApprox apa) {
-    pragma[only_bind_out](apa) = pragma[only_bind_out](result)
-  }
-
-  pragma[nomagic]
-  private predicate flowThroughOutOfCall(
-    DataFlowCall call, CcCall ccc, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow,
-    Configuration config
-  ) {
-    flowOutOfCall(call, ret, out, allowsFieldFlow, pragma[only_bind_into](config)) and
-    PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
-    PrevStage::parameterMayFlowThrough(_, ret.getEnclosingCallable(), _,
-      pragma[only_bind_into](config)) and
-    ccc.matchesCall(call)
-  }
-
-  /**
-   * Holds if `node` is reachable with access path `ap` from a source in the
-   * configuration `config`.
-   *
-   * The call context `cc` records whether the node is reached through an
-   * argument in a call, and if so, `argAp` records the access path of that
-   * argument.
-   */
-  pragma[nomagic]
-  predicate fwdFlow(NodeEx node, FlowState state, Cc cc, ApOption argAp, Ap ap, Configuration config) {
-    fwdFlow0(node, state, cc, argAp, ap, config) and
-    flowCand(node, state, unbindApa(getApprox(ap)), config) and
-    filter(node, state, ap, config)
-  }
-
-  pragma[nomagic]
-  private predicate fwdFlow0(
-    NodeEx node, FlowState state, Cc cc, ApOption argAp, Ap ap, Configuration config
-  ) {
-    sourceNode(node, state, config) and
-    (if hasSourceCallCtx(config) then cc = ccSomeCall() else cc = ccNone()) and
-    argAp = apNone() and
-    ap = getApNil(node)
-    or
-    exists(NodeEx mid, FlowState state0, Ap ap0, LocalCc localCc |
-      fwdFlow(mid, state0, cc, argAp, ap0, config) and
-      localCc = getLocalCc(mid, cc)
-    |
-      localStep(mid, state0, node, state, true, _, config, localCc) and
-      ap = ap0
-      or
-      localStep(mid, state0, node, state, false, ap, config, localCc) and
-      ap0 instanceof ApNil
-    )
-    or
-    exists(NodeEx mid |
-      fwdFlow(mid, pragma[only_bind_into](state), _, _, ap, pragma[only_bind_into](config)) and
-      jumpStep(mid, node, config) and
-      cc = ccNone() and
-      argAp = apNone()
-    )
-    or
-    exists(NodeEx mid, ApNil nil |
-      fwdFlow(mid, state, _, _, nil, pragma[only_bind_into](config)) and
-      additionalJumpStep(mid, node, config) and
-      cc = ccNone() and
-      argAp = apNone() and
-      ap = getApNil(node)
-    )
-    or
-    exists(NodeEx mid, FlowState state0, ApNil nil |
-      fwdFlow(mid, state0, _, _, nil, pragma[only_bind_into](config)) and
-      additionalJumpStateStep(mid, state0, node, state, config) and
-      cc = ccNone() and
-      argAp = apNone() and
-      ap = getApNil(node)
-    )
-    or
-    // store
-    exists(TypedContent tc, Ap ap0 |
-      fwdFlowStore(_, ap0, tc, node, state, cc, argAp, config) and
-      ap = apCons(tc, ap0)
-    )
-    or
-    // read
-    exists(Ap ap0, Content c |
-      fwdFlowRead(ap0, c, _, node, state, cc, argAp, config) and
-      fwdFlowConsCand(ap0, c, ap, config)
-    )
-    or
-    // flow into a callable
-    exists(ApApprox apa |
-      fwdFlowIn(_, node, state, _, cc, _, ap, config) and
-      apa = getApprox(ap) and
-      if PrevStage::parameterMayFlowThrough(node, _, apa, config)
-      then argAp = apSome(ap)
-      else argAp = apNone()
-    )
-    or
-    // flow out of a callable
-    fwdFlowOutNotFromArg(node, state, cc, argAp, ap, config)
-    or
-    exists(DataFlowCall call, Ap argAp0 |
-      fwdFlowOutFromArg(call, node, state, argAp0, ap, config) and
-      fwdFlowIsEntered(call, cc, argAp, argAp0, config)
-    )
-  }
-
-  pragma[nomagic]
-  private predicate fwdFlowStore(
-    NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc, ApOption argAp,
-    Configuration config
-  ) {
-    exists(DataFlowType contentType |
-      fwdFlow(node1, state, cc, argAp, ap1, config) and
-      PrevStage::storeStepCand(node1, unbindApa(getApprox(ap1)), tc, node2, contentType, config) and
-      typecheckStore(ap1, contentType)
-    )
-  }
-
-  /**
-   * Holds if forward flow with access path `tail` reaches a store of `c`
-   * resulting in access path `cons`.
-   */
-  pragma[nomagic]
-  private predicate fwdFlowConsCand(Ap cons, Content c, Ap tail, Configuration config) {
-    exists(TypedContent tc |
-      fwdFlowStore(_, tail, tc, _, _, _, _, config) and
-      tc.getContent() = c and
-      cons = apCons(tc, tail)
-    )
-  }
-
-  pragma[nomagic]
-  private predicate fwdFlowRead(
-    Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc, ApOption argAp,
-    Configuration config
-  ) {
-    fwdFlow(node1, state, cc, argAp, ap, config) and
-    PrevStage::readStepCand(node1, c, node2, config) and
-    getHeadContent(ap) = c
-  }
-
-  pragma[nomagic]
-  private predicate fwdFlowIn(
-    DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, Cc innercc, ApOption argAp,
-    Ap ap, Configuration config
-  ) {
-    exists(ArgNodeEx arg, boolean allowsFieldFlow |
-      fwdFlow(arg, state, outercc, argAp, ap, config) and
-      flowIntoCall(call, arg, p, allowsFieldFlow, config) and
-      innercc = getCallContextCall(call, p.getEnclosingCallable(), outercc) and
-      if allowsFieldFlow = false then ap instanceof ApNil else any()
-    )
-  }
-
-  pragma[nomagic]
-  private predicate fwdFlowOutNotFromArg(
-    NodeEx out, FlowState state, Cc ccOut, ApOption argAp, Ap ap, Configuration config
-  ) {
-    exists(
-      DataFlowCall call, RetNodeEx ret, boolean allowsFieldFlow, CcNoCall innercc,
-      DataFlowCallable inner
-    |
-      fwdFlow(ret, state, innercc, argAp, ap, config) and
-      flowOutOfCall(call, ret, out, allowsFieldFlow, config) and
-      inner = ret.getEnclosingCallable() and
-      ccOut = getCallContextReturn(inner, call, innercc) and
-      if allowsFieldFlow = false then ap instanceof ApNil else any()
-    )
-  }
-
-  pragma[nomagic]
-  private predicate fwdFlowOutFromArg(
-    DataFlowCall call, NodeEx out, FlowState state, Ap argAp, Ap ap, Configuration config
-  ) {
-    exists(RetNodeEx ret, boolean allowsFieldFlow, CcCall ccc |
-      fwdFlow(ret, state, ccc, apSome(argAp), ap, config) and
-      flowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, config) and
-      if allowsFieldFlow = false then ap instanceof ApNil else any()
-    )
-  }
-
-  /**
-   * Holds if an argument to `call` is reached in the flow covered by `fwdFlow`
-   * and data might flow through the target callable and back out at `call`.
-   */
-  pragma[nomagic]
-  private predicate fwdFlowIsEntered(
-    DataFlowCall call, Cc cc, ApOption argAp, Ap ap, Configuration config
-  ) {
-    exists(ParamNodeEx p |
-      fwdFlowIn(call, p, _, cc, _, argAp, ap, config) and
-      PrevStage::parameterMayFlowThrough(p, _, unbindApa(getApprox(ap)), config)
-    )
-  }
-
-  pragma[nomagic]
-  private predicate storeStepFwd(
-    NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, Ap ap2, Configuration config
-  ) {
-    fwdFlowStore(node1, ap1, tc, node2, _, _, _, config) and
-    ap2 = apCons(tc, ap1) and
-    fwdFlowRead(ap2, tc.getContent(), _, _, _, _, _, config)
-  }
-
-  private predicate readStepFwd(
-    NodeEx n1, Ap ap1, Content c, NodeEx n2, Ap ap2, Configuration config
-  ) {
-    fwdFlowRead(ap1, c, n1, n2, _, _, _, config) and
-    fwdFlowConsCand(ap1, c, ap2, config)
-  }
-
-  pragma[nomagic]
-  private predicate callMayFlowThroughFwd(DataFlowCall call, Configuration config) {
-    exists(Ap argAp0, NodeEx out, FlowState state, Cc cc, ApOption argAp, Ap ap |
-      fwdFlow(out, state, pragma[only_bind_into](cc), pragma[only_bind_into](argAp), ap,
-        pragma[only_bind_into](config)) and
-      fwdFlowOutFromArg(call, out, state, argAp0, ap, config) and
-      fwdFlowIsEntered(pragma[only_bind_into](call), pragma[only_bind_into](cc),
-        pragma[only_bind_into](argAp), pragma[only_bind_into](argAp0),
-        pragma[only_bind_into](config))
-    )
-  }
-
-  pragma[nomagic]
-  private predicate flowThroughIntoCall(
-    DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
-  ) {
-    flowIntoCall(call, arg, p, allowsFieldFlow, config) and
-    fwdFlow(arg, _, _, _, _, pragma[only_bind_into](config)) and
-    PrevStage::parameterMayFlowThrough(p, _, _, pragma[only_bind_into](config)) and
-    callMayFlowThroughFwd(call, pragma[only_bind_into](config))
-  }
-
-  pragma[nomagic]
-  private predicate returnNodeMayFlowThrough(
-    RetNodeEx ret, FlowState state, Ap ap, Configuration config
-  ) {
-    fwdFlow(ret, state, any(CcCall ccc), apSome(_), ap, config)
-  }
-
-  /**
-   * Holds if `node` with access path `ap` is part of a path from a source to a
-   * sink in the configuration `config`.
-   *
-   * The Boolean `toReturn` records whether the node must be returned from the
-   * enclosing callable in order to reach a sink, and if so, `returnAp` records
-   * the access path of the returned value.
-   */
-  pragma[nomagic]
-  predicate revFlow(
-    NodeEx node, FlowState state, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
-  ) {
-    revFlow0(node, state, toReturn, returnAp, ap, config) and
-    fwdFlow(node, state, _, _, ap, config)
-  }
-
-  pragma[nomagic]
-  private predicate revFlow0(
-    NodeEx node, FlowState state, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
-  ) {
-    fwdFlow(node, state, _, _, ap, config) and
-    sinkNode(node, state, config) and
-    (if hasSinkCallCtx(config) then toReturn = true else toReturn = false) and
-    returnAp = apNone() and
-    ap instanceof ApNil
-    or
-    exists(NodeEx mid, FlowState state0 |
-      localStep(node, state, mid, state0, true, _, config, _) and
-      revFlow(mid, state0, toReturn, returnAp, ap, config)
-    )
-    or
-    exists(NodeEx mid, FlowState state0, ApNil nil |
-      fwdFlow(node, pragma[only_bind_into](state), _, _, ap, pragma[only_bind_into](config)) and
-      localStep(node, pragma[only_bind_into](state), mid, state0, false, _, config, _) and
-      revFlow(mid, state0, toReturn, returnAp, nil, pragma[only_bind_into](config)) and
-      ap instanceof ApNil
-    )
-    or
-    exists(NodeEx mid |
-      jumpStep(node, mid, config) and
-      revFlow(mid, state, _, _, ap, config) and
-      toReturn = false and
-      returnAp = apNone()
-    )
-    or
-    exists(NodeEx mid, ApNil nil |
-      fwdFlow(node, _, _, _, ap, pragma[only_bind_into](config)) and
-      additionalJumpStep(node, mid, config) and
-      revFlow(pragma[only_bind_into](mid), state, _, _, nil, pragma[only_bind_into](config)) and
-      toReturn = false and
-      returnAp = apNone() and
-      ap instanceof ApNil
-    )
-    or
-    exists(NodeEx mid, FlowState state0, ApNil nil |
-      fwdFlow(node, _, _, _, ap, pragma[only_bind_into](config)) and
-      additionalJumpStateStep(node, state, mid, state0, config) and
-      revFlow(pragma[only_bind_into](mid), pragma[only_bind_into](state0), _, _, nil,
-        pragma[only_bind_into](config)) and
-      toReturn = false and
-      returnAp = apNone() and
-      ap instanceof ApNil
-    )
-    or
-    // store
-    exists(Ap ap0, Content c |
-      revFlowStore(ap0, c, ap, node, state, _, _, toReturn, returnAp, config) and
-      revFlowConsCand(ap0, c, ap, config)
-    )
-    or
-    // read
-    exists(NodeEx mid, Ap ap0 |
-      revFlow(mid, state, toReturn, returnAp, ap0, config) and
-      readStepFwd(node, ap, _, mid, ap0, config)
-    )
-    or
-    // flow into a callable
-    revFlowInNotToReturn(node, state, returnAp, ap, config) and
-    toReturn = false
-    or
-    exists(DataFlowCall call, Ap returnAp0 |
-      revFlowInToReturn(call, node, state, returnAp0, ap, config) and
-      revFlowIsReturned(call, toReturn, returnAp, returnAp0, config)
-    )
-    or
-    // flow out of a callable
-    revFlowOut(_, node, state, _, _, ap, config) and
-    toReturn = true and
-    if returnNodeMayFlowThrough(node, state, ap, config)
-    then returnAp = apSome(ap)
-    else returnAp = apNone()
-  }
-
-  pragma[nomagic]
-  private predicate revFlowStore(
-    Ap ap0, Content c, Ap ap, NodeEx node, FlowState state, TypedContent tc, NodeEx mid,
-    boolean toReturn, ApOption returnAp, Configuration config
-  ) {
-    revFlow(mid, state, toReturn, returnAp, ap0, config) and
-    storeStepFwd(node, ap, tc, mid, ap0, config) and
-    tc.getContent() = c
-  }
-
-  /**
-   * Holds if reverse flow with access path `tail` reaches a read of `c`
-   * resulting in access path `cons`.
-   */
-  pragma[nomagic]
-  private predicate revFlowConsCand(Ap cons, Content c, Ap tail, Configuration config) {
-    exists(NodeEx mid, Ap tail0 |
-      revFlow(mid, _, _, _, tail, config) and
-      tail = pragma[only_bind_into](tail0) and
-      readStepFwd(_, cons, c, mid, tail0, config)
-    )
-  }
-
-  pragma[nomagic]
-  private predicate revFlowOut(
-    DataFlowCall call, RetNodeEx ret, FlowState state, boolean toReturn, ApOption returnAp, Ap ap,
-    Configuration config
-  ) {
-    exists(NodeEx out, boolean allowsFieldFlow |
-      revFlow(out, state, toReturn, returnAp, ap, config) and
-      flowOutOfCall(call, ret, out, allowsFieldFlow, config) and
-      if allowsFieldFlow = false then ap instanceof ApNil else any()
-    )
-  }
-
-  pragma[nomagic]
-  private predicate revFlowInNotToReturn(
-    ArgNodeEx arg, FlowState state, ApOption returnAp, Ap ap, Configuration config
-  ) {
-    exists(ParamNodeEx p, boolean allowsFieldFlow |
-      revFlow(p, state, false, returnAp, ap, config) and
-      flowIntoCall(_, arg, p, allowsFieldFlow, config) and
-      if allowsFieldFlow = false then ap instanceof ApNil else any()
-    )
-  }
-
-  pragma[nomagic]
-  private predicate revFlowInToReturn(
-    DataFlowCall call, ArgNodeEx arg, FlowState state, Ap returnAp, Ap ap, Configuration config
-  ) {
-    exists(ParamNodeEx p, boolean allowsFieldFlow |
-      revFlow(p, state, true, apSome(returnAp), ap, config) and
-      flowThroughIntoCall(call, arg, p, allowsFieldFlow, config) and
-      if allowsFieldFlow = false then ap instanceof ApNil else any()
-    )
-  }
-
-  /**
-   * Holds if an output from `call` is reached in the flow covered by `revFlow`
-   * and data might flow through the target callable resulting in reverse flow
-   * reaching an argument of `call`.
-   */
-  pragma[nomagic]
-  private predicate revFlowIsReturned(
-    DataFlowCall call, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
-  ) {
-    exists(RetNodeEx ret, FlowState state, CcCall ccc |
-      revFlowOut(call, ret, state, toReturn, returnAp, ap, config) and
-      fwdFlow(ret, state, ccc, apSome(_), ap, config) and
-      ccc.matchesCall(call)
-    )
-  }
-
-  pragma[nomagic]
-  predicate storeStepCand(
-    NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, DataFlowType contentType,
-    Configuration config
-  ) {
-    exists(Ap ap2, Content c |
-      PrevStage::storeStepCand(node1, _, tc, node2, contentType, config) and
-      revFlowStore(ap2, c, ap1, node1, _, tc, node2, _, _, config) and
-      revFlowConsCand(ap2, c, ap1, config)
-    )
-  }
-
-  predicate readStepCand(NodeEx node1, Content c, NodeEx node2, Configuration config) {
-    exists(Ap ap1, Ap ap2 |
-      revFlow(node2, _, _, _, pragma[only_bind_into](ap2), pragma[only_bind_into](config)) and
-      readStepFwd(node1, ap1, c, node2, ap2, config) and
-      revFlowStore(ap1, c, pragma[only_bind_into](ap2), _, _, _, _, _, _,
-        pragma[only_bind_into](config))
-    )
-  }
-
-  predicate revFlow(NodeEx node, FlowState state, Configuration config) {
-    revFlow(node, state, _, _, _, config)
-  }
-
-  pragma[nomagic]
-  predicate revFlow(NodeEx node, Configuration config) { revFlow(node, _, _, _, _, config) }
-
-  // use an alias as a workaround for bad functionality-induced joins
-  pragma[nomagic]
-  predicate revFlowAlias(NodeEx node, Configuration config) { revFlow(node, _, _, _, _, config) }
-
-  // use an alias as a workaround for bad functionality-induced joins
-  pragma[nomagic]
-  predicate revFlowAlias(
-    NodeEx node, FlowState state, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
-  ) {
-    revFlow(node, state, toReturn, returnAp, ap, config)
-  }
-
-  private predicate fwdConsCand(TypedContent tc, Ap ap, Configuration config) {
-    storeStepFwd(_, ap, tc, _, _, config)
-  }
-
-  private predicate revConsCand(TypedContent tc, Ap ap, Configuration config) {
-    storeStepCand(_, ap, tc, _, _, config)
-  }
-
-  private predicate validAp(Ap ap, Configuration config) {
-    revFlow(_, _, _, _, ap, config) and ap instanceof ApNil
-    or
-    exists(TypedContent head, Ap tail |
-      consCand(head, tail, config) and
-      ap = apCons(head, tail)
-    )
-  }
-
-  predicate consCand(TypedContent tc, Ap ap, Configuration config) {
-    revConsCand(tc, ap, config) and
-    validAp(ap, config)
-  }
-
-  pragma[noinline]
-  private predicate parameterFlow(
-    ParamNodeEx p, Ap ap, Ap ap0, DataFlowCallable c, Configuration config
-  ) {
-    revFlow(p, _, true, apSome(ap0), ap, config) and
-    c = p.getEnclosingCallable()
-  }
-
-  predicate parameterMayFlowThrough(ParamNodeEx p, DataFlowCallable c, Ap ap, Configuration config) {
-    exists(RetNodeEx ret, FlowState state, Ap ap0, ReturnKindExt kind, ParameterPosition pos |
-      parameterFlow(p, ap, ap0, c, config) and
-      c = ret.getEnclosingCallable() and
-      revFlow(pragma[only_bind_into](ret), pragma[only_bind_into](state), true, apSome(_),
-        pragma[only_bind_into](ap0), pragma[only_bind_into](config)) and
-      fwdFlow(ret, state, any(CcCall ccc), apSome(ap), ap0, config) and
-      kind = ret.getKind() and
-      p.getPosition() = pos and
-      // we don't expect a parameter to return stored in itself, unless explicitly allowed
-      (
-        not kind.(ParamUpdateReturnKind).getPosition() = pos
-        or
-        p.allowParameterReturnInSelf()
-      )
-    )
-  }
-
-  pragma[nomagic]
-  predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
-    exists(
-      Ap returnAp0, ArgNodeEx arg, FlowState state, boolean toReturn, ApOption returnAp, Ap ap
-    |
-      revFlow(arg, state, toReturn, returnAp, ap, config) and
-      revFlowInToReturn(call, arg, state, returnAp0, ap, config) and
-      revFlowIsReturned(call, toReturn, returnAp, returnAp0, config)
-    )
-  }
-
-  predicate stats(
-    boolean fwd, int nodes, int fields, int conscand, int states, int tuples, Configuration config
-  ) {
-    fwd = true and
-    nodes = count(NodeEx node | fwdFlow(node, _, _, _, _, config)) and
-    fields = count(TypedContent f0 | fwdConsCand(f0, _, config)) and
-    conscand = count(TypedContent f0, Ap ap | fwdConsCand(f0, ap, config)) and
-    states = count(FlowState state | fwdFlow(_, state, _, _, _, config)) and
-    tuples =
-      count(NodeEx n, FlowState state, Cc cc, ApOption argAp, Ap ap |
-        fwdFlow(n, state, cc, argAp, ap, config)
-      )
-    or
-    fwd = false and
-    nodes = count(NodeEx node | revFlow(node, _, _, _, _, config)) and
-    fields = count(TypedContent f0 | consCand(f0, _, config)) and
-    conscand = count(TypedContent f0, Ap ap | consCand(f0, ap, config)) and
-    states = count(FlowState state | revFlow(_, state, _, _, _, config)) and
-    tuples =
-      count(NodeEx n, FlowState state, boolean b, ApOption retAp, Ap ap |
-        revFlow(n, state, b, retAp, ap, config)
-      )
-  }
-  /* End: Stage 2 logic. */
+private module Stage2 implements StageSig {
+  import MkStage<Stage1>::Stage<Stage2Param>
 }
 
 pragma[nomagic]
@@ -1883,14 +2037,13 @@ private module LocalFlowBigStep {
   ) {
     additionalLocalFlowStepNodeCand1(node1, node2, config) and
     state1 = state2 and
-    Stage2::revFlow(node1, pragma[only_bind_into](state1), _, _, false,
-      pragma[only_bind_into](config)) and
-    Stage2::revFlowAlias(node2, pragma[only_bind_into](state2), _, _, false,
+    Stage2::revFlow(node1, pragma[only_bind_into](state1), false, pragma[only_bind_into](config)) and
+    Stage2::revFlowAlias(node2, pragma[only_bind_into](state2), false,
       pragma[only_bind_into](config))
     or
     additionalLocalStateStep(node1, state1, node2, state2, config) and
-    Stage2::revFlow(node1, state1, _, _, false, pragma[only_bind_into](config)) and
-    Stage2::revFlowAlias(node2, state2, _, _, false, pragma[only_bind_into](config))
+    Stage2::revFlow(node1, state1, false, pragma[only_bind_into](config)) and
+    Stage2::revFlowAlias(node2, state2, false, pragma[only_bind_into](config))
   }
 
   /**
@@ -1967,26 +2120,24 @@ private module LocalFlowBigStep {
 
 private import LocalFlowBigStep
 
-private module Stage3 {
-  module PrevStage = Stage2;
-
-  class ApApprox = PrevStage::Ap;
+private module Stage3Param implements MkStage<Stage2>::StageParam {
+  private module PrevStage = Stage2;
 
   class Ap = AccessPathFront;
 
   class ApNil = AccessPathFrontNil;
 
-  private ApApprox getApprox(Ap ap) { result = ap.toBoolNonEmpty() }
+  PrevStage::Ap getApprox(Ap ap) { result = ap.toBoolNonEmpty() }
 
-  private ApNil getApNil(NodeEx node) {
+  ApNil getApNil(NodeEx node) {
     PrevStage::revFlow(node, _) and result = TFrontNil(node.getDataFlowType())
   }
 
   bindingset[tc, tail]
-  private Ap apCons(TypedContent tc, Ap tail) { result.getHead() = tc and exists(tail) }
+  Ap apCons(TypedContent tc, Ap tail) { result.getHead() = tc and exists(tail) }
 
   pragma[noinline]
-  private Content getHeadContent(Ap ap) { result = ap.getHead().getContent() }
+  Content getHeadContent(Ap ap) { result = ap.getHead().getContent() }
 
   class ApOption = AccessPathFrontOption;
 
@@ -1994,44 +2145,18 @@ private module Stage3 {
 
   ApOption apSome(Ap ap) { result = TAccessPathFrontSome(ap) }
 
-  class Cc = boolean;
+  import BooleanCallContext
 
-  class CcCall extends Cc {
-    CcCall() { this = true }
-
-    /** Holds if this call context may be `call`. */
-    predicate matchesCall(DataFlowCall call) { any() }
-  }
-
-  class CcNoCall extends Cc {
-    CcNoCall() { this = false }
-  }
-
-  Cc ccNone() { result = false }
-
-  CcCall ccSomeCall() { result = true }
-
-  private class LocalCc = Unit;
-
-  bindingset[call, c, outercc]
-  private CcCall getCallContextCall(DataFlowCall call, DataFlowCallable c, Cc outercc) { any() }
-
-  bindingset[call, c, innercc]
-  private CcNoCall getCallContextReturn(DataFlowCallable c, DataFlowCall call, Cc innercc) { any() }
-
-  bindingset[node, cc]
-  private LocalCc getLocalCc(NodeEx node, Cc cc) { any() }
-
-  private predicate localStep(
+  predicate localStep(
     NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
     ApNil ap, Configuration config, LocalCc lcc
   ) {
     localFlowBigStep(node1, state1, node2, state2, preservesValue, ap, config, _) and exists(lcc)
   }
 
-  private predicate flowOutOfCall = flowOutOfCallNodeCand2/5;
+  predicate flowOutOfCall = flowOutOfCallNodeCand2/5;
 
-  private predicate flowIntoCall = flowIntoCallNodeCand2/5;
+  predicate flowIntoCall = flowIntoCallNodeCand2/5;
 
   pragma[nomagic]
   private predicate clearSet(NodeEx node, ContentSet c, Configuration config) {
@@ -2067,7 +2192,7 @@ private module Stage3 {
   private predicate castingNodeEx(NodeEx node) { node.asNode() instanceof CastingNode }
 
   bindingset[node, state, ap, config]
-  private predicate filter(NodeEx node, FlowState state, Ap ap, Configuration config) {
+  predicate filter(NodeEx node, FlowState state, Ap ap, Configuration config) {
     exists(state) and
     exists(config) and
     not clear(node, ap, config) and
@@ -2080,546 +2205,15 @@ private module Stage3 {
   }
 
   bindingset[ap, contentType]
-  private predicate typecheckStore(Ap ap, DataFlowType contentType) {
+  predicate typecheckStore(Ap ap, DataFlowType contentType) {
     // We need to typecheck stores here, since reverse flow through a getter
     // might have a different type here compared to inside the getter.
     compatibleTypes(ap.getType(), contentType)
   }
+}
 
-  /* Begin: Stage 3 logic. */
-  bindingset[node, state, config]
-  private predicate flowCand(NodeEx node, FlowState state, ApApprox apa, Configuration config) {
-    PrevStage::revFlow(node, state, _, _, apa, config)
-  }
-
-  bindingset[result, apa]
-  private ApApprox unbindApa(ApApprox apa) {
-    pragma[only_bind_out](apa) = pragma[only_bind_out](result)
-  }
-
-  pragma[nomagic]
-  private predicate flowThroughOutOfCall(
-    DataFlowCall call, CcCall ccc, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow,
-    Configuration config
-  ) {
-    flowOutOfCall(call, ret, out, allowsFieldFlow, pragma[only_bind_into](config)) and
-    PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
-    PrevStage::parameterMayFlowThrough(_, ret.getEnclosingCallable(), _,
-      pragma[only_bind_into](config)) and
-    ccc.matchesCall(call)
-  }
-
-  /**
-   * Holds if `node` is reachable with access path `ap` from a source in the
-   * configuration `config`.
-   *
-   * The call context `cc` records whether the node is reached through an
-   * argument in a call, and if so, `argAp` records the access path of that
-   * argument.
-   */
-  pragma[nomagic]
-  predicate fwdFlow(NodeEx node, FlowState state, Cc cc, ApOption argAp, Ap ap, Configuration config) {
-    fwdFlow0(node, state, cc, argAp, ap, config) and
-    flowCand(node, state, unbindApa(getApprox(ap)), config) and
-    filter(node, state, ap, config)
-  }
-
-  pragma[nomagic]
-  private predicate fwdFlow0(
-    NodeEx node, FlowState state, Cc cc, ApOption argAp, Ap ap, Configuration config
-  ) {
-    sourceNode(node, state, config) and
-    (if hasSourceCallCtx(config) then cc = ccSomeCall() else cc = ccNone()) and
-    argAp = apNone() and
-    ap = getApNil(node)
-    or
-    exists(NodeEx mid, FlowState state0, Ap ap0, LocalCc localCc |
-      fwdFlow(mid, state0, cc, argAp, ap0, config) and
-      localCc = getLocalCc(mid, cc)
-    |
-      localStep(mid, state0, node, state, true, _, config, localCc) and
-      ap = ap0
-      or
-      localStep(mid, state0, node, state, false, ap, config, localCc) and
-      ap0 instanceof ApNil
-    )
-    or
-    exists(NodeEx mid |
-      fwdFlow(mid, pragma[only_bind_into](state), _, _, ap, pragma[only_bind_into](config)) and
-      jumpStep(mid, node, config) and
-      cc = ccNone() and
-      argAp = apNone()
-    )
-    or
-    exists(NodeEx mid, ApNil nil |
-      fwdFlow(mid, state, _, _, nil, pragma[only_bind_into](config)) and
-      additionalJumpStep(mid, node, config) and
-      cc = ccNone() and
-      argAp = apNone() and
-      ap = getApNil(node)
-    )
-    or
-    exists(NodeEx mid, FlowState state0, ApNil nil |
-      fwdFlow(mid, state0, _, _, nil, pragma[only_bind_into](config)) and
-      additionalJumpStateStep(mid, state0, node, state, config) and
-      cc = ccNone() and
-      argAp = apNone() and
-      ap = getApNil(node)
-    )
-    or
-    // store
-    exists(TypedContent tc, Ap ap0 |
-      fwdFlowStore(_, ap0, tc, node, state, cc, argAp, config) and
-      ap = apCons(tc, ap0)
-    )
-    or
-    // read
-    exists(Ap ap0, Content c |
-      fwdFlowRead(ap0, c, _, node, state, cc, argAp, config) and
-      fwdFlowConsCand(ap0, c, ap, config)
-    )
-    or
-    // flow into a callable
-    exists(ApApprox apa |
-      fwdFlowIn(_, node, state, _, cc, _, ap, config) and
-      apa = getApprox(ap) and
-      if PrevStage::parameterMayFlowThrough(node, _, apa, config)
-      then argAp = apSome(ap)
-      else argAp = apNone()
-    )
-    or
-    // flow out of a callable
-    fwdFlowOutNotFromArg(node, state, cc, argAp, ap, config)
-    or
-    exists(DataFlowCall call, Ap argAp0 |
-      fwdFlowOutFromArg(call, node, state, argAp0, ap, config) and
-      fwdFlowIsEntered(call, cc, argAp, argAp0, config)
-    )
-  }
-
-  pragma[nomagic]
-  private predicate fwdFlowStore(
-    NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc, ApOption argAp,
-    Configuration config
-  ) {
-    exists(DataFlowType contentType |
-      fwdFlow(node1, state, cc, argAp, ap1, config) and
-      PrevStage::storeStepCand(node1, unbindApa(getApprox(ap1)), tc, node2, contentType, config) and
-      typecheckStore(ap1, contentType)
-    )
-  }
-
-  /**
-   * Holds if forward flow with access path `tail` reaches a store of `c`
-   * resulting in access path `cons`.
-   */
-  pragma[nomagic]
-  private predicate fwdFlowConsCand(Ap cons, Content c, Ap tail, Configuration config) {
-    exists(TypedContent tc |
-      fwdFlowStore(_, tail, tc, _, _, _, _, config) and
-      tc.getContent() = c and
-      cons = apCons(tc, tail)
-    )
-  }
-
-  pragma[nomagic]
-  private predicate fwdFlowRead(
-    Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc, ApOption argAp,
-    Configuration config
-  ) {
-    fwdFlow(node1, state, cc, argAp, ap, config) and
-    PrevStage::readStepCand(node1, c, node2, config) and
-    getHeadContent(ap) = c
-  }
-
-  pragma[nomagic]
-  private predicate fwdFlowIn(
-    DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, Cc innercc, ApOption argAp,
-    Ap ap, Configuration config
-  ) {
-    exists(ArgNodeEx arg, boolean allowsFieldFlow |
-      fwdFlow(arg, state, outercc, argAp, ap, config) and
-      flowIntoCall(call, arg, p, allowsFieldFlow, config) and
-      innercc = getCallContextCall(call, p.getEnclosingCallable(), outercc) and
-      if allowsFieldFlow = false then ap instanceof ApNil else any()
-    )
-  }
-
-  pragma[nomagic]
-  private predicate fwdFlowOutNotFromArg(
-    NodeEx out, FlowState state, Cc ccOut, ApOption argAp, Ap ap, Configuration config
-  ) {
-    exists(
-      DataFlowCall call, RetNodeEx ret, boolean allowsFieldFlow, CcNoCall innercc,
-      DataFlowCallable inner
-    |
-      fwdFlow(ret, state, innercc, argAp, ap, config) and
-      flowOutOfCall(call, ret, out, allowsFieldFlow, config) and
-      inner = ret.getEnclosingCallable() and
-      ccOut = getCallContextReturn(inner, call, innercc) and
-      if allowsFieldFlow = false then ap instanceof ApNil else any()
-    )
-  }
-
-  pragma[nomagic]
-  private predicate fwdFlowOutFromArg(
-    DataFlowCall call, NodeEx out, FlowState state, Ap argAp, Ap ap, Configuration config
-  ) {
-    exists(RetNodeEx ret, boolean allowsFieldFlow, CcCall ccc |
-      fwdFlow(ret, state, ccc, apSome(argAp), ap, config) and
-      flowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, config) and
-      if allowsFieldFlow = false then ap instanceof ApNil else any()
-    )
-  }
-
-  /**
-   * Holds if an argument to `call` is reached in the flow covered by `fwdFlow`
-   * and data might flow through the target callable and back out at `call`.
-   */
-  pragma[nomagic]
-  private predicate fwdFlowIsEntered(
-    DataFlowCall call, Cc cc, ApOption argAp, Ap ap, Configuration config
-  ) {
-    exists(ParamNodeEx p |
-      fwdFlowIn(call, p, _, cc, _, argAp, ap, config) and
-      PrevStage::parameterMayFlowThrough(p, _, unbindApa(getApprox(ap)), config)
-    )
-  }
-
-  pragma[nomagic]
-  private predicate storeStepFwd(
-    NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, Ap ap2, Configuration config
-  ) {
-    fwdFlowStore(node1, ap1, tc, node2, _, _, _, config) and
-    ap2 = apCons(tc, ap1) and
-    fwdFlowRead(ap2, tc.getContent(), _, _, _, _, _, config)
-  }
-
-  private predicate readStepFwd(
-    NodeEx n1, Ap ap1, Content c, NodeEx n2, Ap ap2, Configuration config
-  ) {
-    fwdFlowRead(ap1, c, n1, n2, _, _, _, config) and
-    fwdFlowConsCand(ap1, c, ap2, config)
-  }
-
-  pragma[nomagic]
-  private predicate callMayFlowThroughFwd(DataFlowCall call, Configuration config) {
-    exists(Ap argAp0, NodeEx out, FlowState state, Cc cc, ApOption argAp, Ap ap |
-      fwdFlow(out, state, pragma[only_bind_into](cc), pragma[only_bind_into](argAp), ap,
-        pragma[only_bind_into](config)) and
-      fwdFlowOutFromArg(call, out, state, argAp0, ap, config) and
-      fwdFlowIsEntered(pragma[only_bind_into](call), pragma[only_bind_into](cc),
-        pragma[only_bind_into](argAp), pragma[only_bind_into](argAp0),
-        pragma[only_bind_into](config))
-    )
-  }
-
-  pragma[nomagic]
-  private predicate flowThroughIntoCall(
-    DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
-  ) {
-    flowIntoCall(call, arg, p, allowsFieldFlow, config) and
-    fwdFlow(arg, _, _, _, _, pragma[only_bind_into](config)) and
-    PrevStage::parameterMayFlowThrough(p, _, _, pragma[only_bind_into](config)) and
-    callMayFlowThroughFwd(call, pragma[only_bind_into](config))
-  }
-
-  pragma[nomagic]
-  private predicate returnNodeMayFlowThrough(
-    RetNodeEx ret, FlowState state, Ap ap, Configuration config
-  ) {
-    fwdFlow(ret, state, any(CcCall ccc), apSome(_), ap, config)
-  }
-
-  /**
-   * Holds if `node` with access path `ap` is part of a path from a source to a
-   * sink in the configuration `config`.
-   *
-   * The Boolean `toReturn` records whether the node must be returned from the
-   * enclosing callable in order to reach a sink, and if so, `returnAp` records
-   * the access path of the returned value.
-   */
-  pragma[nomagic]
-  predicate revFlow(
-    NodeEx node, FlowState state, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
-  ) {
-    revFlow0(node, state, toReturn, returnAp, ap, config) and
-    fwdFlow(node, state, _, _, ap, config)
-  }
-
-  pragma[nomagic]
-  private predicate revFlow0(
-    NodeEx node, FlowState state, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
-  ) {
-    fwdFlow(node, state, _, _, ap, config) and
-    sinkNode(node, state, config) and
-    (if hasSinkCallCtx(config) then toReturn = true else toReturn = false) and
-    returnAp = apNone() and
-    ap instanceof ApNil
-    or
-    exists(NodeEx mid, FlowState state0 |
-      localStep(node, state, mid, state0, true, _, config, _) and
-      revFlow(mid, state0, toReturn, returnAp, ap, config)
-    )
-    or
-    exists(NodeEx mid, FlowState state0, ApNil nil |
-      fwdFlow(node, pragma[only_bind_into](state), _, _, ap, pragma[only_bind_into](config)) and
-      localStep(node, pragma[only_bind_into](state), mid, state0, false, _, config, _) and
-      revFlow(mid, state0, toReturn, returnAp, nil, pragma[only_bind_into](config)) and
-      ap instanceof ApNil
-    )
-    or
-    exists(NodeEx mid |
-      jumpStep(node, mid, config) and
-      revFlow(mid, state, _, _, ap, config) and
-      toReturn = false and
-      returnAp = apNone()
-    )
-    or
-    exists(NodeEx mid, ApNil nil |
-      fwdFlow(node, _, _, _, ap, pragma[only_bind_into](config)) and
-      additionalJumpStep(node, mid, config) and
-      revFlow(pragma[only_bind_into](mid), state, _, _, nil, pragma[only_bind_into](config)) and
-      toReturn = false and
-      returnAp = apNone() and
-      ap instanceof ApNil
-    )
-    or
-    exists(NodeEx mid, FlowState state0, ApNil nil |
-      fwdFlow(node, _, _, _, ap, pragma[only_bind_into](config)) and
-      additionalJumpStateStep(node, state, mid, state0, config) and
-      revFlow(pragma[only_bind_into](mid), pragma[only_bind_into](state0), _, _, nil,
-        pragma[only_bind_into](config)) and
-      toReturn = false and
-      returnAp = apNone() and
-      ap instanceof ApNil
-    )
-    or
-    // store
-    exists(Ap ap0, Content c |
-      revFlowStore(ap0, c, ap, node, state, _, _, toReturn, returnAp, config) and
-      revFlowConsCand(ap0, c, ap, config)
-    )
-    or
-    // read
-    exists(NodeEx mid, Ap ap0 |
-      revFlow(mid, state, toReturn, returnAp, ap0, config) and
-      readStepFwd(node, ap, _, mid, ap0, config)
-    )
-    or
-    // flow into a callable
-    revFlowInNotToReturn(node, state, returnAp, ap, config) and
-    toReturn = false
-    or
-    exists(DataFlowCall call, Ap returnAp0 |
-      revFlowInToReturn(call, node, state, returnAp0, ap, config) and
-      revFlowIsReturned(call, toReturn, returnAp, returnAp0, config)
-    )
-    or
-    // flow out of a callable
-    revFlowOut(_, node, state, _, _, ap, config) and
-    toReturn = true and
-    if returnNodeMayFlowThrough(node, state, ap, config)
-    then returnAp = apSome(ap)
-    else returnAp = apNone()
-  }
-
-  pragma[nomagic]
-  private predicate revFlowStore(
-    Ap ap0, Content c, Ap ap, NodeEx node, FlowState state, TypedContent tc, NodeEx mid,
-    boolean toReturn, ApOption returnAp, Configuration config
-  ) {
-    revFlow(mid, state, toReturn, returnAp, ap0, config) and
-    storeStepFwd(node, ap, tc, mid, ap0, config) and
-    tc.getContent() = c
-  }
-
-  /**
-   * Holds if reverse flow with access path `tail` reaches a read of `c`
-   * resulting in access path `cons`.
-   */
-  pragma[nomagic]
-  private predicate revFlowConsCand(Ap cons, Content c, Ap tail, Configuration config) {
-    exists(NodeEx mid, Ap tail0 |
-      revFlow(mid, _, _, _, tail, config) and
-      tail = pragma[only_bind_into](tail0) and
-      readStepFwd(_, cons, c, mid, tail0, config)
-    )
-  }
-
-  pragma[nomagic]
-  private predicate revFlowOut(
-    DataFlowCall call, RetNodeEx ret, FlowState state, boolean toReturn, ApOption returnAp, Ap ap,
-    Configuration config
-  ) {
-    exists(NodeEx out, boolean allowsFieldFlow |
-      revFlow(out, state, toReturn, returnAp, ap, config) and
-      flowOutOfCall(call, ret, out, allowsFieldFlow, config) and
-      if allowsFieldFlow = false then ap instanceof ApNil else any()
-    )
-  }
-
-  pragma[nomagic]
-  private predicate revFlowInNotToReturn(
-    ArgNodeEx arg, FlowState state, ApOption returnAp, Ap ap, Configuration config
-  ) {
-    exists(ParamNodeEx p, boolean allowsFieldFlow |
-      revFlow(p, state, false, returnAp, ap, config) and
-      flowIntoCall(_, arg, p, allowsFieldFlow, config) and
-      if allowsFieldFlow = false then ap instanceof ApNil else any()
-    )
-  }
-
-  pragma[nomagic]
-  private predicate revFlowInToReturn(
-    DataFlowCall call, ArgNodeEx arg, FlowState state, Ap returnAp, Ap ap, Configuration config
-  ) {
-    exists(ParamNodeEx p, boolean allowsFieldFlow |
-      revFlow(p, state, true, apSome(returnAp), ap, config) and
-      flowThroughIntoCall(call, arg, p, allowsFieldFlow, config) and
-      if allowsFieldFlow = false then ap instanceof ApNil else any()
-    )
-  }
-
-  /**
-   * Holds if an output from `call` is reached in the flow covered by `revFlow`
-   * and data might flow through the target callable resulting in reverse flow
-   * reaching an argument of `call`.
-   */
-  pragma[nomagic]
-  private predicate revFlowIsReturned(
-    DataFlowCall call, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
-  ) {
-    exists(RetNodeEx ret, FlowState state, CcCall ccc |
-      revFlowOut(call, ret, state, toReturn, returnAp, ap, config) and
-      fwdFlow(ret, state, ccc, apSome(_), ap, config) and
-      ccc.matchesCall(call)
-    )
-  }
-
-  pragma[nomagic]
-  predicate storeStepCand(
-    NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, DataFlowType contentType,
-    Configuration config
-  ) {
-    exists(Ap ap2, Content c |
-      PrevStage::storeStepCand(node1, _, tc, node2, contentType, config) and
-      revFlowStore(ap2, c, ap1, node1, _, tc, node2, _, _, config) and
-      revFlowConsCand(ap2, c, ap1, config)
-    )
-  }
-
-  predicate readStepCand(NodeEx node1, Content c, NodeEx node2, Configuration config) {
-    exists(Ap ap1, Ap ap2 |
-      revFlow(node2, _, _, _, pragma[only_bind_into](ap2), pragma[only_bind_into](config)) and
-      readStepFwd(node1, ap1, c, node2, ap2, config) and
-      revFlowStore(ap1, c, pragma[only_bind_into](ap2), _, _, _, _, _, _,
-        pragma[only_bind_into](config))
-    )
-  }
-
-  predicate revFlow(NodeEx node, FlowState state, Configuration config) {
-    revFlow(node, state, _, _, _, config)
-  }
-
-  pragma[nomagic]
-  predicate revFlow(NodeEx node, Configuration config) { revFlow(node, _, _, _, _, config) }
-
-  // use an alias as a workaround for bad functionality-induced joins
-  pragma[nomagic]
-  predicate revFlowAlias(NodeEx node, Configuration config) { revFlow(node, _, _, _, _, config) }
-
-  // use an alias as a workaround for bad functionality-induced joins
-  pragma[nomagic]
-  predicate revFlowAlias(
-    NodeEx node, FlowState state, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
-  ) {
-    revFlow(node, state, toReturn, returnAp, ap, config)
-  }
-
-  private predicate fwdConsCand(TypedContent tc, Ap ap, Configuration config) {
-    storeStepFwd(_, ap, tc, _, _, config)
-  }
-
-  private predicate revConsCand(TypedContent tc, Ap ap, Configuration config) {
-    storeStepCand(_, ap, tc, _, _, config)
-  }
-
-  private predicate validAp(Ap ap, Configuration config) {
-    revFlow(_, _, _, _, ap, config) and ap instanceof ApNil
-    or
-    exists(TypedContent head, Ap tail |
-      consCand(head, tail, config) and
-      ap = apCons(head, tail)
-    )
-  }
-
-  predicate consCand(TypedContent tc, Ap ap, Configuration config) {
-    revConsCand(tc, ap, config) and
-    validAp(ap, config)
-  }
-
-  pragma[noinline]
-  private predicate parameterFlow(
-    ParamNodeEx p, Ap ap, Ap ap0, DataFlowCallable c, Configuration config
-  ) {
-    revFlow(p, _, true, apSome(ap0), ap, config) and
-    c = p.getEnclosingCallable()
-  }
-
-  predicate parameterMayFlowThrough(ParamNodeEx p, DataFlowCallable c, Ap ap, Configuration config) {
-    exists(RetNodeEx ret, FlowState state, Ap ap0, ReturnKindExt kind, ParameterPosition pos |
-      parameterFlow(p, ap, ap0, c, config) and
-      c = ret.getEnclosingCallable() and
-      revFlow(pragma[only_bind_into](ret), pragma[only_bind_into](state), true, apSome(_),
-        pragma[only_bind_into](ap0), pragma[only_bind_into](config)) and
-      fwdFlow(ret, state, any(CcCall ccc), apSome(ap), ap0, config) and
-      kind = ret.getKind() and
-      p.getPosition() = pos and
-      // we don't expect a parameter to return stored in itself, unless explicitly allowed
-      (
-        not kind.(ParamUpdateReturnKind).getPosition() = pos
-        or
-        p.allowParameterReturnInSelf()
-      )
-    )
-  }
-
-  pragma[nomagic]
-  predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
-    exists(
-      Ap returnAp0, ArgNodeEx arg, FlowState state, boolean toReturn, ApOption returnAp, Ap ap
-    |
-      revFlow(arg, state, toReturn, returnAp, ap, config) and
-      revFlowInToReturn(call, arg, state, returnAp0, ap, config) and
-      revFlowIsReturned(call, toReturn, returnAp, returnAp0, config)
-    )
-  }
-
-  predicate stats(
-    boolean fwd, int nodes, int fields, int conscand, int states, int tuples, Configuration config
-  ) {
-    fwd = true and
-    nodes = count(NodeEx node | fwdFlow(node, _, _, _, _, config)) and
-    fields = count(TypedContent f0 | fwdConsCand(f0, _, config)) and
-    conscand = count(TypedContent f0, Ap ap | fwdConsCand(f0, ap, config)) and
-    states = count(FlowState state | fwdFlow(_, state, _, _, _, config)) and
-    tuples =
-      count(NodeEx n, FlowState state, Cc cc, ApOption argAp, Ap ap |
-        fwdFlow(n, state, cc, argAp, ap, config)
-      )
-    or
-    fwd = false and
-    nodes = count(NodeEx node | revFlow(node, _, _, _, _, config)) and
-    fields = count(TypedContent f0 | consCand(f0, _, config)) and
-    conscand = count(TypedContent f0, Ap ap | consCand(f0, ap, config)) and
-    states = count(FlowState state | revFlow(_, state, _, _, _, config)) and
-    tuples =
-      count(NodeEx n, FlowState state, boolean b, ApOption retAp, Ap ap |
-        revFlow(n, state, b, retAp, ap, config)
-      )
-  }
-  /* End: Stage 3 logic. */
+private module Stage3 implements StageSig {
+  import MkStage<Stage2>::Stage<Stage3Param>
 }
 
 /**
@@ -2644,7 +2238,7 @@ private predicate expensiveLen2unfolding(TypedContent tc, Configuration config)
     tails = strictcount(AccessPathFront apf | Stage3::consCand(tc, apf, config)) and
     nodes =
       strictcount(NodeEx n, FlowState state |
-        Stage3::revFlow(n, state, _, _, any(AccessPathFrontHead apf | apf.getHead() = tc), config)
+        Stage3::revFlow(n, state, any(AccessPathFrontHead apf | apf.getHead() = tc), config)
         or
         flowCandSummaryCtx(n, state, any(AccessPathFrontHead apf | apf.getHead() = tc), config)
       ) and
@@ -2828,26 +2422,24 @@ private class AccessPathApproxOption extends TAccessPathApproxOption {
   }
 }
 
-private module Stage4 {
-  module PrevStage = Stage3;
-
-  class ApApprox = PrevStage::Ap;
+private module Stage4Param implements MkStage<Stage3>::StageParam {
+  private module PrevStage = Stage3;
 
   class Ap = AccessPathApprox;
 
   class ApNil = AccessPathApproxNil;
 
-  private ApApprox getApprox(Ap ap) { result = ap.getFront() }
+  PrevStage::Ap getApprox(Ap ap) { result = ap.getFront() }
 
-  private ApNil getApNil(NodeEx node) {
+  ApNil getApNil(NodeEx node) {
     PrevStage::revFlow(node, _) and result = TNil(node.getDataFlowType())
   }
 
   bindingset[tc, tail]
-  private Ap apCons(TypedContent tc, Ap tail) { result = push(tc, tail) }
+  Ap apCons(TypedContent tc, Ap tail) { result = push(tc, tail) }
 
   pragma[noinline]
-  private Content getHeadContent(Ap ap) { result = ap.getHead().getContent() }
+  Content getHeadContent(Ap ap) { result = ap.getHead().getContent() }
 
   class ApOption = AccessPathApproxOption;
 
@@ -2855,38 +2447,10 @@ private module Stage4 {
 
   ApOption apSome(Ap ap) { result = TAccessPathApproxSome(ap) }
 
-  class Cc = CallContext;
+  import Level1CallContext
+  import LocalCallContext
 
-  class CcCall = CallContextCall;
-
-  class CcNoCall = CallContextNoCall;
-
-  Cc ccNone() { result instanceof CallContextAny }
-
-  CcCall ccSomeCall() { result instanceof CallContextSomeCall }
-
-  private class LocalCc = LocalCallContext;
-
-  bindingset[call, c, outercc]
-  private CcCall getCallContextCall(DataFlowCall call, DataFlowCallable c, Cc outercc) {
-    checkCallContextCall(outercc, call, c) and
-    if recordDataFlowCallSite(call, c) then result = TSpecificCall(call) else result = TSomeCall()
-  }
-
-  bindingset[call, c, innercc]
-  private CcNoCall getCallContextReturn(DataFlowCallable c, DataFlowCall call, Cc innercc) {
-    checkCallContextReturn(innercc, c, call) and
-    if reducedViableImplInReturn(c, call) then result = TReturn(c, call) else result = ccNone()
-  }
-
-  bindingset[node, cc]
-  private LocalCc getLocalCc(NodeEx node, Cc cc) {
-    result =
-      getLocalCallContext(pragma[only_bind_into](pragma[only_bind_out](cc)),
-        node.getEnclosingCallable())
-  }
-
-  private predicate localStep(
+  predicate localStep(
     NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
     ApNil ap, Configuration config, LocalCc lcc
   ) {
@@ -2894,575 +2458,40 @@ private module Stage4 {
   }
 
   pragma[nomagic]
-  private predicate flowOutOfCall(
+  predicate flowOutOfCall(
     DataFlowCall call, RetNodeEx node1, NodeEx node2, boolean allowsFieldFlow, Configuration config
   ) {
     exists(FlowState state |
       flowOutOfCallNodeCand2(call, node1, node2, allowsFieldFlow, config) and
-      PrevStage::revFlow(node2, pragma[only_bind_into](state), _, _, _,
-        pragma[only_bind_into](config)) and
-      PrevStage::revFlowAlias(node1, pragma[only_bind_into](state), _, _, _,
+      PrevStage::revFlow(node2, pragma[only_bind_into](state), _, pragma[only_bind_into](config)) and
+      PrevStage::revFlowAlias(node1, pragma[only_bind_into](state), _,
         pragma[only_bind_into](config))
     )
   }
 
   pragma[nomagic]
-  private predicate flowIntoCall(
+  predicate flowIntoCall(
     DataFlowCall call, ArgNodeEx node1, ParamNodeEx node2, boolean allowsFieldFlow,
     Configuration config
   ) {
     exists(FlowState state |
       flowIntoCallNodeCand2(call, node1, node2, allowsFieldFlow, config) and
-      PrevStage::revFlow(node2, pragma[only_bind_into](state), _, _, _,
-        pragma[only_bind_into](config)) and
-      PrevStage::revFlowAlias(node1, pragma[only_bind_into](state), _, _, _,
+      PrevStage::revFlow(node2, pragma[only_bind_into](state), _, pragma[only_bind_into](config)) and
+      PrevStage::revFlowAlias(node1, pragma[only_bind_into](state), _,
         pragma[only_bind_into](config))
     )
   }
 
   bindingset[node, state, ap, config]
-  private predicate filter(NodeEx node, FlowState state, Ap ap, Configuration config) { any() }
+  predicate filter(NodeEx node, FlowState state, Ap ap, Configuration config) { any() }
 
   // Type checking is not necessary here as it has already been done in stage 3.
   bindingset[ap, contentType]
-  private predicate typecheckStore(Ap ap, DataFlowType contentType) { any() }
-
-  /* Begin: Stage 4 logic. */
-  bindingset[node, state, config]
-  private predicate flowCand(NodeEx node, FlowState state, ApApprox apa, Configuration config) {
-    PrevStage::revFlow(node, state, _, _, apa, config)
-  }
-
-  bindingset[result, apa]
-  private ApApprox unbindApa(ApApprox apa) {
-    pragma[only_bind_out](apa) = pragma[only_bind_out](result)
-  }
-
-  pragma[nomagic]
-  private predicate flowThroughOutOfCall(
-    DataFlowCall call, CcCall ccc, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow,
-    Configuration config
-  ) {
-    flowOutOfCall(call, ret, out, allowsFieldFlow, pragma[only_bind_into](config)) and
-    PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
-    PrevStage::parameterMayFlowThrough(_, ret.getEnclosingCallable(), _,
-      pragma[only_bind_into](config)) and
-    ccc.matchesCall(call)
-  }
-
-  /**
-   * Holds if `node` is reachable with access path `ap` from a source in the
-   * configuration `config`.
-   *
-   * The call context `cc` records whether the node is reached through an
-   * argument in a call, and if so, `argAp` records the access path of that
-   * argument.
-   */
-  pragma[nomagic]
-  predicate fwdFlow(NodeEx node, FlowState state, Cc cc, ApOption argAp, Ap ap, Configuration config) {
-    fwdFlow0(node, state, cc, argAp, ap, config) and
-    flowCand(node, state, unbindApa(getApprox(ap)), config) and
-    filter(node, state, ap, config)
-  }
-
-  pragma[nomagic]
-  private predicate fwdFlow0(
-    NodeEx node, FlowState state, Cc cc, ApOption argAp, Ap ap, Configuration config
-  ) {
-    sourceNode(node, state, config) and
-    (if hasSourceCallCtx(config) then cc = ccSomeCall() else cc = ccNone()) and
-    argAp = apNone() and
-    ap = getApNil(node)
-    or
-    exists(NodeEx mid, FlowState state0, Ap ap0, LocalCc localCc |
-      fwdFlow(mid, state0, cc, argAp, ap0, config) and
-      localCc = getLocalCc(mid, cc)
-    |
-      localStep(mid, state0, node, state, true, _, config, localCc) and
-      ap = ap0
-      or
-      localStep(mid, state0, node, state, false, ap, config, localCc) and
-      ap0 instanceof ApNil
-    )
-    or
-    exists(NodeEx mid |
-      fwdFlow(mid, pragma[only_bind_into](state), _, _, ap, pragma[only_bind_into](config)) and
-      jumpStep(mid, node, config) and
-      cc = ccNone() and
-      argAp = apNone()
-    )
-    or
-    exists(NodeEx mid, ApNil nil |
-      fwdFlow(mid, state, _, _, nil, pragma[only_bind_into](config)) and
-      additionalJumpStep(mid, node, config) and
-      cc = ccNone() and
-      argAp = apNone() and
-      ap = getApNil(node)
-    )
-    or
-    exists(NodeEx mid, FlowState state0, ApNil nil |
-      fwdFlow(mid, state0, _, _, nil, pragma[only_bind_into](config)) and
-      additionalJumpStateStep(mid, state0, node, state, config) and
-      cc = ccNone() and
-      argAp = apNone() and
-      ap = getApNil(node)
-    )
-    or
-    // store
-    exists(TypedContent tc, Ap ap0 |
-      fwdFlowStore(_, ap0, tc, node, state, cc, argAp, config) and
-      ap = apCons(tc, ap0)
-    )
-    or
-    // read
-    exists(Ap ap0, Content c |
-      fwdFlowRead(ap0, c, _, node, state, cc, argAp, config) and
-      fwdFlowConsCand(ap0, c, ap, config)
-    )
-    or
-    // flow into a callable
-    exists(ApApprox apa |
-      fwdFlowIn(_, node, state, _, cc, _, ap, config) and
-      apa = getApprox(ap) and
-      if PrevStage::parameterMayFlowThrough(node, _, apa, config)
-      then argAp = apSome(ap)
-      else argAp = apNone()
-    )
-    or
-    // flow out of a callable
-    fwdFlowOutNotFromArg(node, state, cc, argAp, ap, config)
-    or
-    exists(DataFlowCall call, Ap argAp0 |
-      fwdFlowOutFromArg(call, node, state, argAp0, ap, config) and
-      fwdFlowIsEntered(call, cc, argAp, argAp0, config)
-    )
-  }
-
-  pragma[nomagic]
-  private predicate fwdFlowStore(
-    NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc, ApOption argAp,
-    Configuration config
-  ) {
-    exists(DataFlowType contentType |
-      fwdFlow(node1, state, cc, argAp, ap1, config) and
-      PrevStage::storeStepCand(node1, unbindApa(getApprox(ap1)), tc, node2, contentType, config) and
-      typecheckStore(ap1, contentType)
-    )
-  }
-
-  /**
-   * Holds if forward flow with access path `tail` reaches a store of `c`
-   * resulting in access path `cons`.
-   */
-  pragma[nomagic]
-  private predicate fwdFlowConsCand(Ap cons, Content c, Ap tail, Configuration config) {
-    exists(TypedContent tc |
-      fwdFlowStore(_, tail, tc, _, _, _, _, config) and
-      tc.getContent() = c and
-      cons = apCons(tc, tail)
-    )
-  }
-
-  pragma[nomagic]
-  private predicate fwdFlowRead(
-    Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc, ApOption argAp,
-    Configuration config
-  ) {
-    fwdFlow(node1, state, cc, argAp, ap, config) and
-    PrevStage::readStepCand(node1, c, node2, config) and
-    getHeadContent(ap) = c
-  }
-
-  pragma[nomagic]
-  private predicate fwdFlowIn(
-    DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, Cc innercc, ApOption argAp,
-    Ap ap, Configuration config
-  ) {
-    exists(ArgNodeEx arg, boolean allowsFieldFlow |
-      fwdFlow(arg, state, outercc, argAp, ap, config) and
-      flowIntoCall(call, arg, p, allowsFieldFlow, config) and
-      innercc = getCallContextCall(call, p.getEnclosingCallable(), outercc) and
-      if allowsFieldFlow = false then ap instanceof ApNil else any()
-    )
-  }
-
-  pragma[nomagic]
-  private predicate fwdFlowOutNotFromArg(
-    NodeEx out, FlowState state, Cc ccOut, ApOption argAp, Ap ap, Configuration config
-  ) {
-    exists(
-      DataFlowCall call, RetNodeEx ret, boolean allowsFieldFlow, CcNoCall innercc,
-      DataFlowCallable inner
-    |
-      fwdFlow(ret, state, innercc, argAp, ap, config) and
-      flowOutOfCall(call, ret, out, allowsFieldFlow, config) and
-      inner = ret.getEnclosingCallable() and
-      ccOut = getCallContextReturn(inner, call, innercc) and
-      if allowsFieldFlow = false then ap instanceof ApNil else any()
-    )
-  }
-
-  pragma[nomagic]
-  private predicate fwdFlowOutFromArg(
-    DataFlowCall call, NodeEx out, FlowState state, Ap argAp, Ap ap, Configuration config
-  ) {
-    exists(RetNodeEx ret, boolean allowsFieldFlow, CcCall ccc |
-      fwdFlow(ret, state, ccc, apSome(argAp), ap, config) and
-      flowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, config) and
-      if allowsFieldFlow = false then ap instanceof ApNil else any()
-    )
-  }
-
-  /**
-   * Holds if an argument to `call` is reached in the flow covered by `fwdFlow`
-   * and data might flow through the target callable and back out at `call`.
-   */
-  pragma[nomagic]
-  private predicate fwdFlowIsEntered(
-    DataFlowCall call, Cc cc, ApOption argAp, Ap ap, Configuration config
-  ) {
-    exists(ParamNodeEx p |
-      fwdFlowIn(call, p, _, cc, _, argAp, ap, config) and
-      PrevStage::parameterMayFlowThrough(p, _, unbindApa(getApprox(ap)), config)
-    )
-  }
-
-  pragma[nomagic]
-  private predicate storeStepFwd(
-    NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, Ap ap2, Configuration config
-  ) {
-    fwdFlowStore(node1, ap1, tc, node2, _, _, _, config) and
-    ap2 = apCons(tc, ap1) and
-    fwdFlowRead(ap2, tc.getContent(), _, _, _, _, _, config)
-  }
-
-  private predicate readStepFwd(
-    NodeEx n1, Ap ap1, Content c, NodeEx n2, Ap ap2, Configuration config
-  ) {
-    fwdFlowRead(ap1, c, n1, n2, _, _, _, config) and
-    fwdFlowConsCand(ap1, c, ap2, config)
-  }
-
-  pragma[nomagic]
-  private predicate callMayFlowThroughFwd(DataFlowCall call, Configuration config) {
-    exists(Ap argAp0, NodeEx out, FlowState state, Cc cc, ApOption argAp, Ap ap |
-      fwdFlow(out, state, pragma[only_bind_into](cc), pragma[only_bind_into](argAp), ap,
-        pragma[only_bind_into](config)) and
-      fwdFlowOutFromArg(call, out, state, argAp0, ap, config) and
-      fwdFlowIsEntered(pragma[only_bind_into](call), pragma[only_bind_into](cc),
-        pragma[only_bind_into](argAp), pragma[only_bind_into](argAp0),
-        pragma[only_bind_into](config))
-    )
-  }
-
-  pragma[nomagic]
-  private predicate flowThroughIntoCall(
-    DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
-  ) {
-    flowIntoCall(call, arg, p, allowsFieldFlow, config) and
-    fwdFlow(arg, _, _, _, _, pragma[only_bind_into](config)) and
-    PrevStage::parameterMayFlowThrough(p, _, _, pragma[only_bind_into](config)) and
-    callMayFlowThroughFwd(call, pragma[only_bind_into](config))
-  }
-
-  pragma[nomagic]
-  private predicate returnNodeMayFlowThrough(
-    RetNodeEx ret, FlowState state, Ap ap, Configuration config
-  ) {
-    fwdFlow(ret, state, any(CcCall ccc), apSome(_), ap, config)
-  }
-
-  /**
-   * Holds if `node` with access path `ap` is part of a path from a source to a
-   * sink in the configuration `config`.
-   *
-   * The Boolean `toReturn` records whether the node must be returned from the
-   * enclosing callable in order to reach a sink, and if so, `returnAp` records
-   * the access path of the returned value.
-   */
-  pragma[nomagic]
-  predicate revFlow(
-    NodeEx node, FlowState state, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
-  ) {
-    revFlow0(node, state, toReturn, returnAp, ap, config) and
-    fwdFlow(node, state, _, _, ap, config)
-  }
-
-  pragma[nomagic]
-  private predicate revFlow0(
-    NodeEx node, FlowState state, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
-  ) {
-    fwdFlow(node, state, _, _, ap, config) and
-    sinkNode(node, state, config) and
-    (if hasSinkCallCtx(config) then toReturn = true else toReturn = false) and
-    returnAp = apNone() and
-    ap instanceof ApNil
-    or
-    exists(NodeEx mid, FlowState state0 |
-      localStep(node, state, mid, state0, true, _, config, _) and
-      revFlow(mid, state0, toReturn, returnAp, ap, config)
-    )
-    or
-    exists(NodeEx mid, FlowState state0, ApNil nil |
-      fwdFlow(node, pragma[only_bind_into](state), _, _, ap, pragma[only_bind_into](config)) and
-      localStep(node, pragma[only_bind_into](state), mid, state0, false, _, config, _) and
-      revFlow(mid, state0, toReturn, returnAp, nil, pragma[only_bind_into](config)) and
-      ap instanceof ApNil
-    )
-    or
-    exists(NodeEx mid |
-      jumpStep(node, mid, config) and
-      revFlow(mid, state, _, _, ap, config) and
-      toReturn = false and
-      returnAp = apNone()
-    )
-    or
-    exists(NodeEx mid, ApNil nil |
-      fwdFlow(node, _, _, _, ap, pragma[only_bind_into](config)) and
-      additionalJumpStep(node, mid, config) and
-      revFlow(pragma[only_bind_into](mid), state, _, _, nil, pragma[only_bind_into](config)) and
-      toReturn = false and
-      returnAp = apNone() and
-      ap instanceof ApNil
-    )
-    or
-    exists(NodeEx mid, FlowState state0, ApNil nil |
-      fwdFlow(node, _, _, _, ap, pragma[only_bind_into](config)) and
-      additionalJumpStateStep(node, state, mid, state0, config) and
-      revFlow(pragma[only_bind_into](mid), pragma[only_bind_into](state0), _, _, nil,
-        pragma[only_bind_into](config)) and
-      toReturn = false and
-      returnAp = apNone() and
-      ap instanceof ApNil
-    )
-    or
-    // store
-    exists(Ap ap0, Content c |
-      revFlowStore(ap0, c, ap, node, state, _, _, toReturn, returnAp, config) and
-      revFlowConsCand(ap0, c, ap, config)
-    )
-    or
-    // read
-    exists(NodeEx mid, Ap ap0 |
-      revFlow(mid, state, toReturn, returnAp, ap0, config) and
-      readStepFwd(node, ap, _, mid, ap0, config)
-    )
-    or
-    // flow into a callable
-    revFlowInNotToReturn(node, state, returnAp, ap, config) and
-    toReturn = false
-    or
-    exists(DataFlowCall call, Ap returnAp0 |
-      revFlowInToReturn(call, node, state, returnAp0, ap, config) and
-      revFlowIsReturned(call, toReturn, returnAp, returnAp0, config)
-    )
-    or
-    // flow out of a callable
-    revFlowOut(_, node, state, _, _, ap, config) and
-    toReturn = true and
-    if returnNodeMayFlowThrough(node, state, ap, config)
-    then returnAp = apSome(ap)
-    else returnAp = apNone()
-  }
-
-  pragma[nomagic]
-  private predicate revFlowStore(
-    Ap ap0, Content c, Ap ap, NodeEx node, FlowState state, TypedContent tc, NodeEx mid,
-    boolean toReturn, ApOption returnAp, Configuration config
-  ) {
-    revFlow(mid, state, toReturn, returnAp, ap0, config) and
-    storeStepFwd(node, ap, tc, mid, ap0, config) and
-    tc.getContent() = c
-  }
-
-  /**
-   * Holds if reverse flow with access path `tail` reaches a read of `c`
-   * resulting in access path `cons`.
-   */
-  pragma[nomagic]
-  private predicate revFlowConsCand(Ap cons, Content c, Ap tail, Configuration config) {
-    exists(NodeEx mid, Ap tail0 |
-      revFlow(mid, _, _, _, tail, config) and
-      tail = pragma[only_bind_into](tail0) and
-      readStepFwd(_, cons, c, mid, tail0, config)
-    )
-  }
-
-  pragma[nomagic]
-  private predicate revFlowOut(
-    DataFlowCall call, RetNodeEx ret, FlowState state, boolean toReturn, ApOption returnAp, Ap ap,
-    Configuration config
-  ) {
-    exists(NodeEx out, boolean allowsFieldFlow |
-      revFlow(out, state, toReturn, returnAp, ap, config) and
-      flowOutOfCall(call, ret, out, allowsFieldFlow, config) and
-      if allowsFieldFlow = false then ap instanceof ApNil else any()
-    )
-  }
-
-  pragma[nomagic]
-  private predicate revFlowInNotToReturn(
-    ArgNodeEx arg, FlowState state, ApOption returnAp, Ap ap, Configuration config
-  ) {
-    exists(ParamNodeEx p, boolean allowsFieldFlow |
-      revFlow(p, state, false, returnAp, ap, config) and
-      flowIntoCall(_, arg, p, allowsFieldFlow, config) and
-      if allowsFieldFlow = false then ap instanceof ApNil else any()
-    )
-  }
-
-  pragma[nomagic]
-  private predicate revFlowInToReturn(
-    DataFlowCall call, ArgNodeEx arg, FlowState state, Ap returnAp, Ap ap, Configuration config
-  ) {
-    exists(ParamNodeEx p, boolean allowsFieldFlow |
-      revFlow(p, state, true, apSome(returnAp), ap, config) and
-      flowThroughIntoCall(call, arg, p, allowsFieldFlow, config) and
-      if allowsFieldFlow = false then ap instanceof ApNil else any()
-    )
-  }
-
-  /**
-   * Holds if an output from `call` is reached in the flow covered by `revFlow`
-   * and data might flow through the target callable resulting in reverse flow
-   * reaching an argument of `call`.
-   */
-  pragma[nomagic]
-  private predicate revFlowIsReturned(
-    DataFlowCall call, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
-  ) {
-    exists(RetNodeEx ret, FlowState state, CcCall ccc |
-      revFlowOut(call, ret, state, toReturn, returnAp, ap, config) and
-      fwdFlow(ret, state, ccc, apSome(_), ap, config) and
-      ccc.matchesCall(call)
-    )
-  }
-
-  pragma[nomagic]
-  predicate storeStepCand(
-    NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, DataFlowType contentType,
-    Configuration config
-  ) {
-    exists(Ap ap2, Content c |
-      PrevStage::storeStepCand(node1, _, tc, node2, contentType, config) and
-      revFlowStore(ap2, c, ap1, node1, _, tc, node2, _, _, config) and
-      revFlowConsCand(ap2, c, ap1, config)
-    )
-  }
-
-  predicate readStepCand(NodeEx node1, Content c, NodeEx node2, Configuration config) {
-    exists(Ap ap1, Ap ap2 |
-      revFlow(node2, _, _, _, pragma[only_bind_into](ap2), pragma[only_bind_into](config)) and
-      readStepFwd(node1, ap1, c, node2, ap2, config) and
-      revFlowStore(ap1, c, pragma[only_bind_into](ap2), _, _, _, _, _, _,
-        pragma[only_bind_into](config))
-    )
-  }
-
-  predicate revFlow(NodeEx node, FlowState state, Configuration config) {
-    revFlow(node, state, _, _, _, config)
-  }
-
-  pragma[nomagic]
-  predicate revFlow(NodeEx node, Configuration config) { revFlow(node, _, _, _, _, config) }
-
-  // use an alias as a workaround for bad functionality-induced joins
-  pragma[nomagic]
-  predicate revFlowAlias(NodeEx node, Configuration config) { revFlow(node, _, _, _, _, config) }
-
-  // use an alias as a workaround for bad functionality-induced joins
-  pragma[nomagic]
-  predicate revFlowAlias(
-    NodeEx node, FlowState state, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
-  ) {
-    revFlow(node, state, toReturn, returnAp, ap, config)
-  }
-
-  private predicate fwdConsCand(TypedContent tc, Ap ap, Configuration config) {
-    storeStepFwd(_, ap, tc, _, _, config)
-  }
-
-  private predicate revConsCand(TypedContent tc, Ap ap, Configuration config) {
-    storeStepCand(_, ap, tc, _, _, config)
-  }
-
-  private predicate validAp(Ap ap, Configuration config) {
-    revFlow(_, _, _, _, ap, config) and ap instanceof ApNil
-    or
-    exists(TypedContent head, Ap tail |
-      consCand(head, tail, config) and
-      ap = apCons(head, tail)
-    )
-  }
-
-  predicate consCand(TypedContent tc, Ap ap, Configuration config) {
-    revConsCand(tc, ap, config) and
-    validAp(ap, config)
-  }
-
-  pragma[noinline]
-  private predicate parameterFlow(
-    ParamNodeEx p, Ap ap, Ap ap0, DataFlowCallable c, Configuration config
-  ) {
-    revFlow(p, _, true, apSome(ap0), ap, config) and
-    c = p.getEnclosingCallable()
-  }
-
-  predicate parameterMayFlowThrough(ParamNodeEx p, DataFlowCallable c, Ap ap, Configuration config) {
-    exists(RetNodeEx ret, FlowState state, Ap ap0, ReturnKindExt kind, ParameterPosition pos |
-      parameterFlow(p, ap, ap0, c, config) and
-      c = ret.getEnclosingCallable() and
-      revFlow(pragma[only_bind_into](ret), pragma[only_bind_into](state), true, apSome(_),
-        pragma[only_bind_into](ap0), pragma[only_bind_into](config)) and
-      fwdFlow(ret, state, any(CcCall ccc), apSome(ap), ap0, config) and
-      kind = ret.getKind() and
-      p.getPosition() = pos and
-      // we don't expect a parameter to return stored in itself, unless explicitly allowed
-      (
-        not kind.(ParamUpdateReturnKind).getPosition() = pos
-        or
-        p.allowParameterReturnInSelf()
-      )
-    )
-  }
-
-  pragma[nomagic]
-  predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
-    exists(
-      Ap returnAp0, ArgNodeEx arg, FlowState state, boolean toReturn, ApOption returnAp, Ap ap
-    |
-      revFlow(arg, state, toReturn, returnAp, ap, config) and
-      revFlowInToReturn(call, arg, state, returnAp0, ap, config) and
-      revFlowIsReturned(call, toReturn, returnAp, returnAp0, config)
-    )
-  }
-
-  predicate stats(
-    boolean fwd, int nodes, int fields, int conscand, int states, int tuples, Configuration config
-  ) {
-    fwd = true and
-    nodes = count(NodeEx node | fwdFlow(node, _, _, _, _, config)) and
-    fields = count(TypedContent f0 | fwdConsCand(f0, _, config)) and
-    conscand = count(TypedContent f0, Ap ap | fwdConsCand(f0, ap, config)) and
-    states = count(FlowState state | fwdFlow(_, state, _, _, _, config)) and
-    tuples =
-      count(NodeEx n, FlowState state, Cc cc, ApOption argAp, Ap ap |
-        fwdFlow(n, state, cc, argAp, ap, config)
-      )
-    or
-    fwd = false and
-    nodes = count(NodeEx node | revFlow(node, _, _, _, _, config)) and
-    fields = count(TypedContent f0 | consCand(f0, _, config)) and
-    conscand = count(TypedContent f0, Ap ap | consCand(f0, ap, config)) and
-    states = count(FlowState state | revFlow(_, state, _, _, _, config)) and
-    tuples =
-      count(NodeEx n, FlowState state, boolean b, ApOption retAp, Ap ap |
-        revFlow(n, state, b, retAp, ap, config)
-      )
-  }
-  /* End: Stage 4 logic. */
+  predicate typecheckStore(Ap ap, DataFlowType contentType) { any() }
 }
 
+private module Stage4 = MkStage<Stage3>::Stage<Stage4Param>;
+
 bindingset[conf, result]
 private Configuration unbindConf(Configuration conf) {
   exists(Configuration c | result = pragma[only_bind_into](c) and conf = pragma[only_bind_into](c))
@@ -3495,7 +2524,7 @@ private newtype TSummaryCtx =
   TSummaryCtxSome(ParamNodeEx p, FlowState state, AccessPath ap) {
     exists(Configuration config |
       Stage4::parameterMayFlowThrough(p, _, ap.getApprox(), config) and
-      Stage4::revFlow(p, state, _, _, _, config)
+      Stage4::revFlow(p, state, _, config)
     )
   }
 
@@ -3553,7 +2582,7 @@ private int count1to2unfold(AccessPathApproxCons1 apa, Configuration config) {
 private int countNodesUsingAccessPath(AccessPathApprox apa, Configuration config) {
   result =
     strictcount(NodeEx n, FlowState state |
-      Stage4::revFlow(n, state, _, _, apa, config) or nodeMayUseSummary(n, state, apa, config)
+      Stage4::revFlow(n, state, apa, config) or nodeMayUseSummary(n, state, apa, config)
     )
 }
 
@@ -3667,7 +2696,7 @@ private newtype TPathNode =
     exists(PathNodeMid mid |
       pathStep(mid, node, state, cc, sc, ap) and
       pragma[only_bind_into](config) = mid.getConfiguration() and
-      Stage4::revFlow(node, state, _, _, ap.getApprox(), pragma[only_bind_into](config))
+      Stage4::revFlow(node, state, ap.getApprox(), pragma[only_bind_into](config))
     )
   } or
   TPathNodeSink(NodeEx node, FlowState state, Configuration config) {
@@ -4207,7 +3236,7 @@ private NodeEx getAnOutNodeFlow(
   ReturnKindExt kind, DataFlowCall call, AccessPathApprox apa, Configuration config
 ) {
   result.asNode() = kind.getAnOutNode(call) and
-  Stage4::revFlow(result, _, _, _, apa, config)
+  Stage4::revFlow(result, _, apa, config)
 }
 
 /**
@@ -4243,7 +3272,7 @@ private predicate parameterCand(
   DataFlowCallable callable, ParameterPosition pos, AccessPathApprox apa, Configuration config
 ) {
   exists(ParamNodeEx p |
-    Stage4::revFlow(p, _, _, _, apa, config) and
+    Stage4::revFlow(p, _, apa, config) and
     p.isParameterOf(callable, pos)
   )
 }

From f05da69392a226139a3982b642a17138341717a9 Mon Sep 17 00:00:00 2001
From: Owen Mansel-Chan <owen-mc@github.com>
Date: Thu, 17 Nov 2022 16:50:58 +0000
Subject: [PATCH 0799/1420] Update shared library files for go to PR #10007

Merge commit: a3fb54c
---
 go/ql/lib/semmle/go/dataflow/internal/DataFlowImpl.qll  | 2 +-
 go/ql/lib/semmle/go/dataflow/internal/DataFlowImpl2.qll | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/go/ql/lib/semmle/go/dataflow/internal/DataFlowImpl.qll b/go/ql/lib/semmle/go/dataflow/internal/DataFlowImpl.qll
index 340bfe280b7..468f8640a78 100644
--- a/go/ql/lib/semmle/go/dataflow/internal/DataFlowImpl.qll
+++ b/go/ql/lib/semmle/go/dataflow/internal/DataFlowImpl.qll
@@ -3061,7 +3061,7 @@ private class PathNodeMid extends PathNodeImpl, TPathNodeMid {
       else cc instanceof CallContextAny
     ) and
     sc instanceof SummaryCtxNone and
-    ap instanceof AccessPathNil
+    ap = TAccessPathNil(node.getDataFlowType())
   }
 
   predicate isAtSink() {
diff --git a/go/ql/lib/semmle/go/dataflow/internal/DataFlowImpl2.qll b/go/ql/lib/semmle/go/dataflow/internal/DataFlowImpl2.qll
index 340bfe280b7..468f8640a78 100644
--- a/go/ql/lib/semmle/go/dataflow/internal/DataFlowImpl2.qll
+++ b/go/ql/lib/semmle/go/dataflow/internal/DataFlowImpl2.qll
@@ -3061,7 +3061,7 @@ private class PathNodeMid extends PathNodeImpl, TPathNodeMid {
       else cc instanceof CallContextAny
     ) and
     sc instanceof SummaryCtxNone and
-    ap instanceof AccessPathNil
+    ap = TAccessPathNil(node.getDataFlowType())
   }
 
   predicate isAtSink() {

From c2b64d454517736f086ad89a2e1b2f8af5413d66 Mon Sep 17 00:00:00 2001
From: Owen Mansel-Chan <owen-mc@github.com>
Date: Mon, 21 Nov 2022 06:55:43 +0000
Subject: [PATCH 0800/1420] Update shared library files for go to PR #9867

Merge commit: c514c88
---
 .../go/dataflow/internal/FlowSummaryImpl.qll  | 47 +++++++++++++++++--
 .../internal/FlowSummaryImplSpecific.qll      |  7 +++
 2 files changed, 49 insertions(+), 5 deletions(-)

diff --git a/go/ql/lib/semmle/go/dataflow/internal/FlowSummaryImpl.qll b/go/ql/lib/semmle/go/dataflow/internal/FlowSummaryImpl.qll
index 7abae2b105b..e00fc952e1c 100644
--- a/go/ql/lib/semmle/go/dataflow/internal/FlowSummaryImpl.qll
+++ b/go/ql/lib/semmle/go/dataflow/internal/FlowSummaryImpl.qll
@@ -240,6 +240,16 @@ module Public {
      */
     predicate isAutoGenerated() { none() }
   }
+
+  /** A callable with a flow summary stating there is no flow via the callable. */
+  class NegativeSummarizedCallable extends SummarizedCallableBase {
+    NegativeSummarizedCallable() { negativeSummaryElement(this, _) }
+
+    /**
+     *  Holds if the negative summary is auto generated.
+     */
+    predicate isAutoGenerated() { negativeSummaryElement(this, true) }
+  }
 }
 
 /**
@@ -1094,7 +1104,7 @@ module Private {
 
   /** Provides a query predicate for outputting a set of relevant flow summaries. */
   module TestOutput {
-    /** A flow summary to include in the `summary/3` query predicate. */
+    /** A flow summary to include in the `summary/1` query predicate. */
     abstract class RelevantSummarizedCallable instanceof SummarizedCallable {
       /** Gets the string representation of this callable used by `summary/1`. */
       abstract string getCallableCsv();
@@ -1109,6 +1119,14 @@ module Private {
       string toString() { result = super.toString() }
     }
 
+    /** A flow summary to include in the `negativeSummary/1` query predicate. */
+    abstract class RelevantNegativeSummarizedCallable instanceof NegativeSummarizedCallable {
+      /** Gets the string representation of this callable used by `summary/1`. */
+      abstract string getCallableCsv();
+
+      string toString() { result = super.toString() }
+    }
+
     /** Render the kind in the format used in flow summaries. */
     private string renderKind(boolean preservesValue) {
       preservesValue = true and result = "value"
@@ -1116,8 +1134,12 @@ module Private {
       preservesValue = false and result = "taint"
     }
 
-    private string renderProvenance(RelevantSummarizedCallable c) {
-      if c.(SummarizedCallable).isAutoGenerated() then result = "generated" else result = "manual"
+    private string renderProvenance(SummarizedCallable c) {
+      if c.isAutoGenerated() then result = "generated" else result = "manual"
+    }
+
+    private string renderProvenanceNegative(NegativeSummarizedCallable c) {
+      if c.isAutoGenerated() then result = "generated" else result = "manual"
     }
 
     /**
@@ -1132,8 +1154,23 @@ module Private {
       |
         c.relevantSummary(input, output, preservesValue) and
         csv =
-          c.getCallableCsv() + getComponentStackCsv(input) + ";" + getComponentStackCsv(output) +
-            ";" + renderKind(preservesValue) + ";" + renderProvenance(c)
+          c.getCallableCsv() // Callable information
+            + getComponentStackCsv(input) + ";" // input
+            + getComponentStackCsv(output) + ";" // output
+            + renderKind(preservesValue) + ";" // kind
+            + renderProvenance(c) // provenance
+      )
+    }
+
+    /**
+     * Holds if a negative flow summary `csv` exists (semi-colon separated format). Used for testing purposes.
+     * The syntax is: "namespace;type;name;signature;provenance"",
+     */
+    query predicate negativeSummary(string csv) {
+      exists(RelevantNegativeSummarizedCallable c |
+        csv =
+          c.getCallableCsv() // Callable information
+            + renderProvenanceNegative(c) // provenance
       )
     }
   }
diff --git a/go/ql/lib/semmle/go/dataflow/internal/FlowSummaryImplSpecific.qll b/go/ql/lib/semmle/go/dataflow/internal/FlowSummaryImplSpecific.qll
index 2af6cde0d63..95029942380 100644
--- a/go/ql/lib/semmle/go/dataflow/internal/FlowSummaryImplSpecific.qll
+++ b/go/ql/lib/semmle/go/dataflow/internal/FlowSummaryImplSpecific.qll
@@ -72,6 +72,13 @@ predicate summaryElement(
   )
 }
 
+/**
+ * Holds if a negative flow summary exists for `c`, which means that there is no
+ * flow through `c`. The flag `generated` states whether the summary is autogenerated.
+ * Note. Negative flow summaries has not been implemented for Go.
+ */
+predicate negativeSummaryElement(SummarizedCallable c, boolean generated) { none() }
+
 /** Gets the summary component for specification component `c`, if any. */
 bindingset[c]
 SummaryComponent interpretComponentSpecific(string c) {

From 569da2da6017f3c1512893c4dea65c22ab792ea2 Mon Sep 17 00:00:00 2001
From: Owen Mansel-Chan <owen-mc@github.com>
Date: Fri, 25 Nov 2022 17:30:54 +0000
Subject: [PATCH 0801/1420] Update shared library files for go to PR #10127

Merge commit: e265b07
---
 .../go/dataflow/internal/FlowSummaryImpl.qll  | 29 +------------------
 1 file changed, 1 insertion(+), 28 deletions(-)

diff --git a/go/ql/lib/semmle/go/dataflow/internal/FlowSummaryImpl.qll b/go/ql/lib/semmle/go/dataflow/internal/FlowSummaryImpl.qll
index e00fc952e1c..d857cdaa359 100644
--- a/go/ql/lib/semmle/go/dataflow/internal/FlowSummaryImpl.qll
+++ b/go/ql/lib/semmle/go/dataflow/internal/FlowSummaryImpl.qll
@@ -226,15 +226,6 @@ module Public {
       none()
     }
 
-    /**
-     * Holds if values stored inside `content` are cleared on objects passed as
-     * arguments at position `pos` to this callable.
-     *
-     * TODO: Remove once all languages support `WithoutContent` tokens.
-     */
-    pragma[nomagic]
-    predicate clearsContent(ParameterPosition pos, ContentSet content) { none() }
-
     /**
      * Holds if the summary is auto generated.
      */
@@ -328,23 +319,6 @@ module Private {
           SummaryComponentStack::singleton(TArgumentSummaryComponent(_))) and
       preservesValue = preservesValue1.booleanAnd(preservesValue2)
     )
-    or
-    exists(ParameterPosition ppos, ContentSet cs |
-      c.clearsContent(ppos, cs) and
-      input = SummaryComponentStack::push(SummaryComponent::withoutContent(cs), output) and
-      output = SummaryComponentStack::argument(ppos) and
-      preservesValue = true
-    )
-  }
-
-  private class MkClearStack extends RequiredSummaryComponentStack {
-    override predicate required(SummaryComponent head, SummaryComponentStack tail) {
-      exists(SummarizedCallable sc, ParameterPosition ppos, ContentSet cs |
-        sc.clearsContent(ppos, cs) and
-        head = SummaryComponent::withoutContent(cs) and
-        tail = SummaryComponentStack::argument(ppos)
-      )
-    }
   }
 
   /**
@@ -945,8 +919,7 @@ module Private {
         AccessPath inSpec, AccessPath outSpec, string kind
       ) {
         summaryElement(this, inSpec, outSpec, kind, true) and
-        not summaryElement(this, _, _, _, false) and
-        not this.clearsContent(_, _)
+        not summaryElement(this, _, _, _, false)
       }
 
       private predicate relevantSummaryElement(AccessPath inSpec, AccessPath outSpec, string kind) {

From 628230f14c15d6cee2ce231b5f696769d4ddf0ed Mon Sep 17 00:00:00 2001
From: Owen Mansel-Chan <owen-mc@github.com>
Date: Thu, 17 Nov 2022 16:56:18 +0000
Subject: [PATCH 0802/1420] Update shared library files for go to PR #10360

Merge commit: 569fad6
---
 .../change-notes/2022-12-16-implicit-read-flowstates.md    | 4 ++++
 .../dataflow/internal/tainttracking1/TaintTrackingImpl.qll | 7 ++++++-
 .../dataflow/internal/tainttracking2/TaintTrackingImpl.qll | 7 ++++++-
 3 files changed, 16 insertions(+), 2 deletions(-)
 create mode 100644 go/ql/lib/change-notes/2022-12-16-implicit-read-flowstates.md

diff --git a/go/ql/lib/change-notes/2022-12-16-implicit-read-flowstates.md b/go/ql/lib/change-notes/2022-12-16-implicit-read-flowstates.md
new file mode 100644
index 00000000000..49b42f82eb1
--- /dev/null
+++ b/go/ql/lib/change-notes/2022-12-16-implicit-read-flowstates.md
@@ -0,0 +1,4 @@
+---
+category: fix
+---
+* Fixed an issue in the taint tracking analysis where implicit reads were not allowed by default in sinks or additional taint steps that used flow states.
diff --git a/go/ql/lib/semmle/go/dataflow/internal/tainttracking1/TaintTrackingImpl.qll b/go/ql/lib/semmle/go/dataflow/internal/tainttracking1/TaintTrackingImpl.qll
index e6ce1ada8d4..bf937b6de31 100644
--- a/go/ql/lib/semmle/go/dataflow/internal/tainttracking1/TaintTrackingImpl.qll
+++ b/go/ql/lib/semmle/go/dataflow/internal/tainttracking1/TaintTrackingImpl.qll
@@ -172,7 +172,12 @@ abstract class Configuration extends DataFlow::Configuration {
   }
 
   override predicate allowImplicitRead(DataFlow::Node node, DataFlow::ContentSet c) {
-    (this.isSink(node) or this.isAdditionalTaintStep(node, _)) and
+    (
+      this.isSink(node) or
+      this.isSink(node, _) or
+      this.isAdditionalTaintStep(node, _) or
+      this.isAdditionalTaintStep(node, _, _, _)
+    ) and
     defaultImplicitTaintRead(node, c)
   }
 
diff --git a/go/ql/lib/semmle/go/dataflow/internal/tainttracking2/TaintTrackingImpl.qll b/go/ql/lib/semmle/go/dataflow/internal/tainttracking2/TaintTrackingImpl.qll
index e6ce1ada8d4..bf937b6de31 100644
--- a/go/ql/lib/semmle/go/dataflow/internal/tainttracking2/TaintTrackingImpl.qll
+++ b/go/ql/lib/semmle/go/dataflow/internal/tainttracking2/TaintTrackingImpl.qll
@@ -172,7 +172,12 @@ abstract class Configuration extends DataFlow::Configuration {
   }
 
   override predicate allowImplicitRead(DataFlow::Node node, DataFlow::ContentSet c) {
-    (this.isSink(node) or this.isAdditionalTaintStep(node, _)) and
+    (
+      this.isSink(node) or
+      this.isSink(node, _) or
+      this.isAdditionalTaintStep(node, _) or
+      this.isAdditionalTaintStep(node, _, _, _)
+    ) and
     defaultImplicitTaintRead(node, c)
   }
 

From 6ccfb4b4ba9d8fdc355fc0ba5e24914089668507 Mon Sep 17 00:00:00 2001
From: Owen Mansel-Chan <owen-mc@github.com>
Date: Tue, 22 Nov 2022 07:40:28 +0000
Subject: [PATCH 0803/1420] Update shared library files for go to PR #10505

Merge commit: 8b424d1
---
 go/ql/lib/semmle/go/dataflow/internal/DataFlowImplCommon.qll | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/go/ql/lib/semmle/go/dataflow/internal/DataFlowImplCommon.qll b/go/ql/lib/semmle/go/dataflow/internal/DataFlowImplCommon.qll
index 95b34f15dad..ae9c6f3f12e 100644
--- a/go/ql/lib/semmle/go/dataflow/internal/DataFlowImplCommon.qll
+++ b/go/ql/lib/semmle/go/dataflow/internal/DataFlowImplCommon.qll
@@ -709,7 +709,8 @@ private module Cached {
      */
     pragma[nomagic]
     private DataFlowCallable viableImplInCallContextExt(DataFlowCall call, DataFlowCall ctx) {
-      result = viableImplInCallContext(call, ctx)
+      result = viableImplInCallContext(call, ctx) and
+      result = viableCallable(call)
       or
       result = viableCallableLambda(call, TDataFlowCallSome(ctx))
       or

From c9aef4ac9f9cab602cbc618e612627bf8631b168 Mon Sep 17 00:00:00 2001
From: Owen Mansel-Chan <owen-mc@github.com>
Date: Tue, 22 Nov 2022 07:41:12 +0000
Subject: [PATCH 0804/1420] Update shared library files for go to PR #10575

Merge commit: 9f1bbf2
---
 go/ql/lib/semmle/go/dataflow/internal/DataFlowImpl.qll | 10 +++-------
 .../lib/semmle/go/dataflow/internal/DataFlowImpl2.qll  | 10 +++-------
 2 files changed, 6 insertions(+), 14 deletions(-)

diff --git a/go/ql/lib/semmle/go/dataflow/internal/DataFlowImpl.qll b/go/ql/lib/semmle/go/dataflow/internal/DataFlowImpl.qll
index 468f8640a78..2638347463b 100644
--- a/go/ql/lib/semmle/go/dataflow/internal/DataFlowImpl.qll
+++ b/go/ql/lib/semmle/go/dataflow/internal/DataFlowImpl.qll
@@ -598,13 +598,9 @@ private predicate hasSinkCallCtx(Configuration config) {
 }
 
 private module Stage1 implements StageSig {
-  class ApApprox = Unit;
-
   class Ap = Unit;
 
-  class ApOption = Unit;
-
-  class Cc = boolean;
+  private class Cc = boolean;
 
   /* Begin: Stage 1 logic. */
   /**
@@ -613,7 +609,7 @@ private module Stage1 implements StageSig {
    * The Boolean `cc` records whether the node is reached through an
    * argument in a call.
    */
-  predicate fwdFlow(NodeEx node, Cc cc, Configuration config) {
+  private predicate fwdFlow(NodeEx node, Cc cc, Configuration config) {
     sourceNode(node, _, config) and
     if hasSourceCallCtx(config) then cc = true else cc = false
     or
@@ -753,7 +749,7 @@ private module Stage1 implements StageSig {
    * the enclosing callable in order to reach a sink.
    */
   pragma[nomagic]
-  predicate revFlow(NodeEx node, boolean toReturn, Configuration config) {
+  private predicate revFlow(NodeEx node, boolean toReturn, Configuration config) {
     revFlow0(node, toReturn, config) and
     fwdFlow(node, config)
   }
diff --git a/go/ql/lib/semmle/go/dataflow/internal/DataFlowImpl2.qll b/go/ql/lib/semmle/go/dataflow/internal/DataFlowImpl2.qll
index 468f8640a78..2638347463b 100644
--- a/go/ql/lib/semmle/go/dataflow/internal/DataFlowImpl2.qll
+++ b/go/ql/lib/semmle/go/dataflow/internal/DataFlowImpl2.qll
@@ -598,13 +598,9 @@ private predicate hasSinkCallCtx(Configuration config) {
 }
 
 private module Stage1 implements StageSig {
-  class ApApprox = Unit;
-
   class Ap = Unit;
 
-  class ApOption = Unit;
-
-  class Cc = boolean;
+  private class Cc = boolean;
 
   /* Begin: Stage 1 logic. */
   /**
@@ -613,7 +609,7 @@ private module Stage1 implements StageSig {
    * The Boolean `cc` records whether the node is reached through an
    * argument in a call.
    */
-  predicate fwdFlow(NodeEx node, Cc cc, Configuration config) {
+  private predicate fwdFlow(NodeEx node, Cc cc, Configuration config) {
     sourceNode(node, _, config) and
     if hasSourceCallCtx(config) then cc = true else cc = false
     or
@@ -753,7 +749,7 @@ private module Stage1 implements StageSig {
    * the enclosing callable in order to reach a sink.
    */
   pragma[nomagic]
-  predicate revFlow(NodeEx node, boolean toReturn, Configuration config) {
+  private predicate revFlow(NodeEx node, boolean toReturn, Configuration config) {
     revFlow0(node, toReturn, config) and
     fwdFlow(node, config)
   }

From d63f161f06feb0d6db997ff653403e89d17783c7 Mon Sep 17 00:00:00 2001
From: Owen Mansel-Chan <owen-mc@github.com>
Date: Tue, 22 Nov 2022 07:42:23 +0000
Subject: [PATCH 0805/1420] Update shared library files for go to PR #10577

Merge commit: df2b586
---
 go/ql/lib/semmle/go/dataflow/internal/DataFlowImpl.qll  | 5 ++++-
 go/ql/lib/semmle/go/dataflow/internal/DataFlowImpl2.qll | 5 ++++-
 2 files changed, 8 insertions(+), 2 deletions(-)

diff --git a/go/ql/lib/semmle/go/dataflow/internal/DataFlowImpl.qll b/go/ql/lib/semmle/go/dataflow/internal/DataFlowImpl.qll
index 2638347463b..67e93ea7f6f 100644
--- a/go/ql/lib/semmle/go/dataflow/internal/DataFlowImpl.qll
+++ b/go/ql/lib/semmle/go/dataflow/internal/DataFlowImpl.qll
@@ -558,13 +558,16 @@ private predicate expectsContentEx(NodeEx n, Content c) {
 pragma[nomagic]
 private predicate notExpectsContent(NodeEx n) { not expectsContentCached(n.asNode(), _) }
 
+pragma[nomagic]
+private predicate hasReadStep(Content c, Configuration config) { read(_, c, _, config) }
+
 pragma[nomagic]
 private predicate store(
   NodeEx node1, TypedContent tc, NodeEx node2, DataFlowType contentType, Configuration config
 ) {
   store(pragma[only_bind_into](node1.asNode()), tc, pragma[only_bind_into](node2.asNode()),
     contentType) and
-  read(_, tc.getContent(), _, config) and
+  hasReadStep(tc.getContent(), config) and
   stepFilter(node1, node2, config)
 }
 
diff --git a/go/ql/lib/semmle/go/dataflow/internal/DataFlowImpl2.qll b/go/ql/lib/semmle/go/dataflow/internal/DataFlowImpl2.qll
index 2638347463b..67e93ea7f6f 100644
--- a/go/ql/lib/semmle/go/dataflow/internal/DataFlowImpl2.qll
+++ b/go/ql/lib/semmle/go/dataflow/internal/DataFlowImpl2.qll
@@ -558,13 +558,16 @@ private predicate expectsContentEx(NodeEx n, Content c) {
 pragma[nomagic]
 private predicate notExpectsContent(NodeEx n) { not expectsContentCached(n.asNode(), _) }
 
+pragma[nomagic]
+private predicate hasReadStep(Content c, Configuration config) { read(_, c, _, config) }
+
 pragma[nomagic]
 private predicate store(
   NodeEx node1, TypedContent tc, NodeEx node2, DataFlowType contentType, Configuration config
 ) {
   store(pragma[only_bind_into](node1.asNode()), tc, pragma[only_bind_into](node2.asNode()),
     contentType) and
-  read(_, tc.getContent(), _, config) and
+  hasReadStep(tc.getContent(), config) and
   stepFilter(node1, node2, config)
 }
 

From 8957437a4cc4eab2093c094705c6a2200e2a4dec Mon Sep 17 00:00:00 2001
From: Owen Mansel-Chan <owen-mc@github.com>
Date: Tue, 22 Nov 2022 07:43:53 +0000
Subject: [PATCH 0806/1420] Update shared library files for go to PR #10691

Merge commit: 0e6735b
---
 .../go/dataflow/internal/FlowSummaryImpl.qll  | 29 +++++++++++++++----
 1 file changed, 23 insertions(+), 6 deletions(-)

diff --git a/go/ql/lib/semmle/go/dataflow/internal/FlowSummaryImpl.qll b/go/ql/lib/semmle/go/dataflow/internal/FlowSummaryImpl.qll
index d857cdaa359..a13c7cd1224 100644
--- a/go/ql/lib/semmle/go/dataflow/internal/FlowSummaryImpl.qll
+++ b/go/ql/lib/semmle/go/dataflow/internal/FlowSummaryImpl.qll
@@ -750,6 +750,27 @@ module Private {
       )
     }
 
+    /**
+     * Holds if `p` can reach `n` in a summarized callable, using only value-preserving
+     * local steps. `clearsOrExpects` records whether any node on the path from `p` to
+     * `n` either clears or expects contents.
+     */
+    private predicate paramReachesLocal(ParamNode p, Node n, boolean clearsOrExpects) {
+      viableParam(_, _, _, p) and
+      n = p and
+      clearsOrExpects = false
+      or
+      exists(Node mid, boolean clearsOrExpectsMid |
+        paramReachesLocal(p, mid, clearsOrExpectsMid) and
+        summaryLocalStep(mid, n, true) and
+        if
+          summaryClearsContent(n, _) or
+          summaryExpectsContent(n, _)
+        then clearsOrExpects = true
+        else clearsOrExpects = clearsOrExpectsMid
+      )
+    }
+
     /**
      * Holds if use-use flow starting from `arg` should be prohibited.
      *
@@ -759,15 +780,11 @@ module Private {
      */
     pragma[nomagic]
     predicate prohibitsUseUseFlow(ArgNode arg, SummarizedCallable sc) {
-      exists(ParamNode p, Node mid, ParameterPosition ppos, Node ret |
+      exists(ParamNode p, ParameterPosition ppos, Node ret |
+        paramReachesLocal(p, ret, true) and
         p = summaryArgParam0(_, arg, sc) and
         p.isParameterOf(_, pragma[only_bind_into](ppos)) and
-        summaryLocalStep(p, mid, true) and
-        summaryLocalStep(mid, ret, true) and
         isParameterPostUpdate(ret, _, pragma[only_bind_into](ppos))
-      |
-        summaryClearsContent(mid, _) or
-        summaryExpectsContent(mid, _)
       )
     }
 

From c19ab7bc85f9c8de243bb29dbb897e08dd3f4e28 Mon Sep 17 00:00:00 2001
From: Owen Mansel-Chan <owen-mc@github.com>
Date: Tue, 22 Nov 2022 07:45:25 +0000
Subject: [PATCH 0807/1420] Update shared library files for go to PR #10744

Merge commit: 60fe370
---
 go/ql/lib/semmle/go/dataflow/internal/DataFlowImpl.qll  | 4 +++-
 go/ql/lib/semmle/go/dataflow/internal/DataFlowImpl2.qll | 4 +++-
 2 files changed, 6 insertions(+), 2 deletions(-)

diff --git a/go/ql/lib/semmle/go/dataflow/internal/DataFlowImpl.qll b/go/ql/lib/semmle/go/dataflow/internal/DataFlowImpl.qll
index 67e93ea7f6f..c8d9d66e1b9 100644
--- a/go/ql/lib/semmle/go/dataflow/internal/DataFlowImpl.qll
+++ b/go/ql/lib/semmle/go/dataflow/internal/DataFlowImpl.qll
@@ -163,7 +163,9 @@ abstract class Configuration extends string {
   /**
    * Holds if data may flow from some source to `sink` for this configuration.
    */
-  predicate hasFlowTo(Node sink) { this.hasFlow(_, sink) }
+  predicate hasFlowTo(Node sink) {
+    sink = any(PathNodeSink n | this = n.getConfiguration()).getNodeEx().asNode()
+  }
 
   /**
    * Holds if data may flow from some source to `sink` for this configuration.
diff --git a/go/ql/lib/semmle/go/dataflow/internal/DataFlowImpl2.qll b/go/ql/lib/semmle/go/dataflow/internal/DataFlowImpl2.qll
index 67e93ea7f6f..c8d9d66e1b9 100644
--- a/go/ql/lib/semmle/go/dataflow/internal/DataFlowImpl2.qll
+++ b/go/ql/lib/semmle/go/dataflow/internal/DataFlowImpl2.qll
@@ -163,7 +163,9 @@ abstract class Configuration extends string {
   /**
    * Holds if data may flow from some source to `sink` for this configuration.
    */
-  predicate hasFlowTo(Node sink) { this.hasFlow(_, sink) }
+  predicate hasFlowTo(Node sink) {
+    sink = any(PathNodeSink n | this = n.getConfiguration()).getNodeEx().asNode()
+  }
 
   /**
    * Holds if data may flow from some source to `sink` for this configuration.

From 5c7f7328ff0ee205e59268201ac24bf807e20b1a Mon Sep 17 00:00:00 2001
From: Owen Mansel-Chan <owen-mc@github.com>
Date: Wed, 23 Nov 2022 11:41:54 +0000
Subject: [PATCH 0808/1420] Update shared library files for go to PR #10754

Merge commit: d6df69d
---
 .../lib/semmle/go/dataflow/internal/DataFlowImpl.qll  | 11 ++++++++---
 .../lib/semmle/go/dataflow/internal/DataFlowImpl2.qll | 11 ++++++++---
 2 files changed, 16 insertions(+), 6 deletions(-)

diff --git a/go/ql/lib/semmle/go/dataflow/internal/DataFlowImpl.qll b/go/ql/lib/semmle/go/dataflow/internal/DataFlowImpl.qll
index c8d9d66e1b9..9053019a6d0 100644
--- a/go/ql/lib/semmle/go/dataflow/internal/DataFlowImpl.qll
+++ b/go/ql/lib/semmle/go/dataflow/internal/DataFlowImpl.qll
@@ -2927,12 +2927,17 @@ abstract private class PathNodeImpl extends PathNode {
     result = this.getASuccessorImpl()
   }
 
-  final PathNodeImpl getANonHiddenSuccessor() {
-    result = this.getASuccessorImpl().getASuccessorIfHidden*() and
-    not this.isHidden() and
+  pragma[nomagic]
+  private PathNodeImpl getANonHiddenSuccessor0() {
+    result = this.getASuccessorIfHidden*() and
     not result.isHidden()
   }
 
+  final PathNodeImpl getANonHiddenSuccessor() {
+    result = this.getASuccessorImpl().getANonHiddenSuccessor0() and
+    not this.isHidden()
+  }
+
   abstract NodeEx getNodeEx();
 
   predicate isHidden() {
diff --git a/go/ql/lib/semmle/go/dataflow/internal/DataFlowImpl2.qll b/go/ql/lib/semmle/go/dataflow/internal/DataFlowImpl2.qll
index c8d9d66e1b9..9053019a6d0 100644
--- a/go/ql/lib/semmle/go/dataflow/internal/DataFlowImpl2.qll
+++ b/go/ql/lib/semmle/go/dataflow/internal/DataFlowImpl2.qll
@@ -2927,12 +2927,17 @@ abstract private class PathNodeImpl extends PathNode {
     result = this.getASuccessorImpl()
   }
 
-  final PathNodeImpl getANonHiddenSuccessor() {
-    result = this.getASuccessorImpl().getASuccessorIfHidden*() and
-    not this.isHidden() and
+  pragma[nomagic]
+  private PathNodeImpl getANonHiddenSuccessor0() {
+    result = this.getASuccessorIfHidden*() and
     not result.isHidden()
   }
 
+  final PathNodeImpl getANonHiddenSuccessor() {
+    result = this.getASuccessorImpl().getANonHiddenSuccessor0() and
+    not this.isHidden()
+  }
+
   abstract NodeEx getNodeEx();
 
   predicate isHidden() {

From 3006551eb12ffc1156bacafac31319d1f55d19d4 Mon Sep 17 00:00:00 2001
From: Owen Mansel-Chan <owen-mc@github.com>
Date: Wed, 23 Nov 2022 11:45:05 +0000
Subject: [PATCH 0809/1420] Update shared library files for go to PR #10806

Merge commit: d79a7e8
---
 .../go/dataflow/internal/DataFlowImpl.qll     | 26 ++++++++++---------
 .../go/dataflow/internal/DataFlowImpl2.qll    | 26 ++++++++++---------
 2 files changed, 28 insertions(+), 24 deletions(-)

diff --git a/go/ql/lib/semmle/go/dataflow/internal/DataFlowImpl.qll b/go/ql/lib/semmle/go/dataflow/internal/DataFlowImpl.qll
index 9053019a6d0..b5631b26b0b 100644
--- a/go/ql/lib/semmle/go/dataflow/internal/DataFlowImpl.qll
+++ b/go/ql/lib/semmle/go/dataflow/internal/DataFlowImpl.qll
@@ -838,13 +838,13 @@ private module Stage1 implements StageSig {
    * by `revFlow`.
    */
   pragma[nomagic]
-  predicate revFlowIsReadAndStored(Content c, Configuration conf) {
+  additional predicate revFlowIsReadAndStored(Content c, Configuration conf) {
     revFlowConsCand(c, conf) and
     revFlowStore(c, _, _, conf)
   }
 
   pragma[nomagic]
-  predicate viableReturnPosOutNodeCandFwd1(
+  additional predicate viableReturnPosOutNodeCandFwd1(
     DataFlowCall call, ReturnPosition pos, NodeEx out, Configuration config
   ) {
     fwdFlowReturnPosition(pos, _, config) and
@@ -860,7 +860,7 @@ private module Stage1 implements StageSig {
   }
 
   pragma[nomagic]
-  predicate viableParamArgNodeCandFwd1(
+  additional predicate viableParamArgNodeCandFwd1(
     DataFlowCall call, ParamNodeEx p, ArgNodeEx arg, Configuration config
   ) {
     viableParamArgEx(call, p, arg) and
@@ -907,7 +907,7 @@ private module Stage1 implements StageSig {
     )
   }
 
-  predicate revFlowState(FlowState state, Configuration config) {
+  additional predicate revFlowState(FlowState state, Configuration config) {
     exists(NodeEx node |
       sinkNode(node, state, config) and
       revFlow(node, _, pragma[only_bind_into](config)) and
@@ -999,7 +999,7 @@ private module Stage1 implements StageSig {
     )
   }
 
-  predicate stats(
+  additional predicate stats(
     boolean fwd, int nodes, int fields, int conscand, int states, int tuples, Configuration config
   ) {
     fwd = true and
@@ -1260,7 +1260,7 @@ private module MkStage<StageSig PrevStage> {
      * argument.
      */
     pragma[nomagic]
-    predicate fwdFlow(
+    additional predicate fwdFlow(
       NodeEx node, FlowState state, Cc cc, ApOption argAp, Ap ap, Configuration config
     ) {
       fwdFlow0(node, state, cc, argAp, ap, config) and
@@ -1484,7 +1484,7 @@ private module MkStage<StageSig PrevStage> {
      * the access path of the returned value.
      */
     pragma[nomagic]
-    predicate revFlow(
+    additional predicate revFlow(
       NodeEx node, FlowState state, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
     ) {
       revFlow0(node, state, toReturn, returnAp, ap, config) and
@@ -1662,7 +1662,7 @@ private module MkStage<StageSig PrevStage> {
       )
     }
 
-    predicate revFlow(NodeEx node, FlowState state, Configuration config) {
+    additional predicate revFlow(NodeEx node, FlowState state, Configuration config) {
       revFlow(node, state, _, _, _, config)
     }
 
@@ -1675,11 +1675,13 @@ private module MkStage<StageSig PrevStage> {
 
     // use an alias as a workaround for bad functionality-induced joins
     pragma[nomagic]
-    predicate revFlowAlias(NodeEx node, Configuration config) { revFlow(node, _, _, _, _, config) }
+    additional predicate revFlowAlias(NodeEx node, Configuration config) {
+      revFlow(node, _, _, _, _, config)
+    }
 
     // use an alias as a workaround for bad functionality-induced joins
     pragma[nomagic]
-    predicate revFlowAlias(NodeEx node, FlowState state, Ap ap, Configuration config) {
+    additional predicate revFlowAlias(NodeEx node, FlowState state, Ap ap, Configuration config) {
       revFlow(node, state, ap, config)
     }
 
@@ -1700,7 +1702,7 @@ private module MkStage<StageSig PrevStage> {
       )
     }
 
-    predicate consCand(TypedContent tc, Ap ap, Configuration config) {
+    additional predicate consCand(TypedContent tc, Ap ap, Configuration config) {
       revConsCand(tc, ap, config) and
       validAp(ap, config)
     }
@@ -1742,7 +1744,7 @@ private module MkStage<StageSig PrevStage> {
       )
     }
 
-    predicate stats(
+    additional predicate stats(
       boolean fwd, int nodes, int fields, int conscand, int states, int tuples, Configuration config
     ) {
       fwd = true and
diff --git a/go/ql/lib/semmle/go/dataflow/internal/DataFlowImpl2.qll b/go/ql/lib/semmle/go/dataflow/internal/DataFlowImpl2.qll
index 9053019a6d0..b5631b26b0b 100644
--- a/go/ql/lib/semmle/go/dataflow/internal/DataFlowImpl2.qll
+++ b/go/ql/lib/semmle/go/dataflow/internal/DataFlowImpl2.qll
@@ -838,13 +838,13 @@ private module Stage1 implements StageSig {
    * by `revFlow`.
    */
   pragma[nomagic]
-  predicate revFlowIsReadAndStored(Content c, Configuration conf) {
+  additional predicate revFlowIsReadAndStored(Content c, Configuration conf) {
     revFlowConsCand(c, conf) and
     revFlowStore(c, _, _, conf)
   }
 
   pragma[nomagic]
-  predicate viableReturnPosOutNodeCandFwd1(
+  additional predicate viableReturnPosOutNodeCandFwd1(
     DataFlowCall call, ReturnPosition pos, NodeEx out, Configuration config
   ) {
     fwdFlowReturnPosition(pos, _, config) and
@@ -860,7 +860,7 @@ private module Stage1 implements StageSig {
   }
 
   pragma[nomagic]
-  predicate viableParamArgNodeCandFwd1(
+  additional predicate viableParamArgNodeCandFwd1(
     DataFlowCall call, ParamNodeEx p, ArgNodeEx arg, Configuration config
   ) {
     viableParamArgEx(call, p, arg) and
@@ -907,7 +907,7 @@ private module Stage1 implements StageSig {
     )
   }
 
-  predicate revFlowState(FlowState state, Configuration config) {
+  additional predicate revFlowState(FlowState state, Configuration config) {
     exists(NodeEx node |
       sinkNode(node, state, config) and
       revFlow(node, _, pragma[only_bind_into](config)) and
@@ -999,7 +999,7 @@ private module Stage1 implements StageSig {
     )
   }
 
-  predicate stats(
+  additional predicate stats(
     boolean fwd, int nodes, int fields, int conscand, int states, int tuples, Configuration config
   ) {
     fwd = true and
@@ -1260,7 +1260,7 @@ private module MkStage<StageSig PrevStage> {
      * argument.
      */
     pragma[nomagic]
-    predicate fwdFlow(
+    additional predicate fwdFlow(
       NodeEx node, FlowState state, Cc cc, ApOption argAp, Ap ap, Configuration config
     ) {
       fwdFlow0(node, state, cc, argAp, ap, config) and
@@ -1484,7 +1484,7 @@ private module MkStage<StageSig PrevStage> {
      * the access path of the returned value.
      */
     pragma[nomagic]
-    predicate revFlow(
+    additional predicate revFlow(
       NodeEx node, FlowState state, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
     ) {
       revFlow0(node, state, toReturn, returnAp, ap, config) and
@@ -1662,7 +1662,7 @@ private module MkStage<StageSig PrevStage> {
       )
     }
 
-    predicate revFlow(NodeEx node, FlowState state, Configuration config) {
+    additional predicate revFlow(NodeEx node, FlowState state, Configuration config) {
       revFlow(node, state, _, _, _, config)
     }
 
@@ -1675,11 +1675,13 @@ private module MkStage<StageSig PrevStage> {
 
     // use an alias as a workaround for bad functionality-induced joins
     pragma[nomagic]
-    predicate revFlowAlias(NodeEx node, Configuration config) { revFlow(node, _, _, _, _, config) }
+    additional predicate revFlowAlias(NodeEx node, Configuration config) {
+      revFlow(node, _, _, _, _, config)
+    }
 
     // use an alias as a workaround for bad functionality-induced joins
     pragma[nomagic]
-    predicate revFlowAlias(NodeEx node, FlowState state, Ap ap, Configuration config) {
+    additional predicate revFlowAlias(NodeEx node, FlowState state, Ap ap, Configuration config) {
       revFlow(node, state, ap, config)
     }
 
@@ -1700,7 +1702,7 @@ private module MkStage<StageSig PrevStage> {
       )
     }
 
-    predicate consCand(TypedContent tc, Ap ap, Configuration config) {
+    additional predicate consCand(TypedContent tc, Ap ap, Configuration config) {
       revConsCand(tc, ap, config) and
       validAp(ap, config)
     }
@@ -1742,7 +1744,7 @@ private module MkStage<StageSig PrevStage> {
       )
     }
 
-    predicate stats(
+    additional predicate stats(
       boolean fwd, int nodes, int fields, int conscand, int states, int tuples, Configuration config
     ) {
       fwd = true and

From 40eb4225242d4f08808a5b7aaab3c68d04b12e95 Mon Sep 17 00:00:00 2001
From: Owen Mansel-Chan <owen-mc@github.com>
Date: Wed, 23 Nov 2022 11:52:11 +0000
Subject: [PATCH 0810/1420] Update shared library files for go to PR #10814

Merge commit: 6ef5fac
---
 .../go/dataflow/internal/DataFlowPrivate.qll  |  2 +
 .../go/dataflow/internal/FlowSummaryImpl.qll  | 55 ++++++++++++++++++-
 .../internal/FlowSummaryImplSpecific.qll      |  3 +
 3 files changed, 58 insertions(+), 2 deletions(-)

diff --git a/go/ql/lib/semmle/go/dataflow/internal/DataFlowPrivate.qll b/go/ql/lib/semmle/go/dataflow/internal/DataFlowPrivate.qll
index dfc01b6c574..e8bb843a8d4 100644
--- a/go/ql/lib/semmle/go/dataflow/internal/DataFlowPrivate.qll
+++ b/go/ql/lib/semmle/go/dataflow/internal/DataFlowPrivate.qll
@@ -126,6 +126,8 @@ predicate jumpStep(Node n1, Node n2) {
     n1.(DataFlow::PostUpdateNode).getPreUpdateNode() = sendRead and
     n2 = recvRead
   )
+  or
+  FlowSummaryImpl::Private::Steps::summaryJumpStep(n1, n2)
 }
 
 /**
diff --git a/go/ql/lib/semmle/go/dataflow/internal/FlowSummaryImpl.qll b/go/ql/lib/semmle/go/dataflow/internal/FlowSummaryImpl.qll
index a13c7cd1224..275569b4c02 100644
--- a/go/ql/lib/semmle/go/dataflow/internal/FlowSummaryImpl.qll
+++ b/go/ql/lib/semmle/go/dataflow/internal/FlowSummaryImpl.qll
@@ -61,6 +61,20 @@ module Public {
 
     /** Gets a summary component for a return of kind `rk`. */
     SummaryComponent return(ReturnKind rk) { result = TReturnSummaryComponent(rk) }
+
+    /** Gets a summary component for synthetic global `sg`. */
+    SummaryComponent syntheticGlobal(SyntheticGlobal sg) {
+      result = TSyntheticGlobalSummaryComponent(sg)
+    }
+
+    /**
+     * A synthetic global. This represents some form of global state, which
+     * summaries can read and write individually.
+     */
+    abstract class SyntheticGlobal extends string {
+      bindingset[this]
+      SyntheticGlobal() { any() }
+    }
   }
 
   /**
@@ -256,6 +270,7 @@ module Private {
     TParameterSummaryComponent(ArgumentPosition pos) or
     TArgumentSummaryComponent(ParameterPosition pos) or
     TReturnSummaryComponent(ReturnKind rk) or
+    TSyntheticGlobalSummaryComponent(SummaryComponent::SyntheticGlobal sg) or
     TWithoutContentSummaryComponent(ContentSet c) or
     TWithContentSummaryComponent(ContentSet c)
 
@@ -563,6 +578,11 @@ module Private {
             getCallbackReturnType(getNodeType(summaryNodeInputState(pragma[only_bind_out](c),
                   s.tail())), rk)
         )
+        or
+        exists(SummaryComponent::SyntheticGlobal sg |
+          head = TSyntheticGlobalSummaryComponent(sg) and
+          result = getSyntheticGlobalType(sg)
+        )
       )
       or
       n = summaryNodeOutputState(c, s) and
@@ -582,6 +602,11 @@ module Private {
             getCallbackParameterType(getNodeType(summaryNodeInputState(pragma[only_bind_out](c),
                   s.tail())), pos)
         )
+        or
+        exists(SummaryComponent::SyntheticGlobal sg |
+          head = TSyntheticGlobalSummaryComponent(sg) and
+          result = getSyntheticGlobalType(sg)
+        )
       )
     )
   }
@@ -692,6 +717,18 @@ module Private {
       )
     }
 
+    /**
+     * Holds if there is a jump step from `pred` to `succ`, which is synthesized
+     * from a flow summary.
+     */
+    predicate summaryJumpStep(Node pred, Node succ) {
+      exists(SummaryComponentStack s |
+        s = SummaryComponentStack::singleton(SummaryComponent::syntheticGlobal(_)) and
+        pred = summaryNodeOutputState(_, s) and
+        succ = summaryNodeInputState(_, s)
+      )
+    }
+
     /**
      * Holds if values stored inside content `c` are cleared at `n`. `n` is a
      * synthesized summary node, so in order for values to be cleared at calls
@@ -871,18 +908,28 @@ module Private {
       AccessPathRange() { relevantSpec(this) }
     }
 
-    /** Holds if specification component `c` parses as parameter `n`. */
+    /** Holds if specification component `token` parses as parameter `pos`. */
     predicate parseParam(AccessPathToken token, ArgumentPosition pos) {
       token.getName() = "Parameter" and
       pos = parseParamBody(token.getAnArgument())
     }
 
-    /** Holds if specification component `c` parses as argument `n`. */
+    /** Holds if specification component `token` parses as argument `pos`. */
     predicate parseArg(AccessPathToken token, ParameterPosition pos) {
       token.getName() = "Argument" and
       pos = parseArgBody(token.getAnArgument())
     }
 
+    /** Holds if specification component `token` parses as synthetic global `sg`. */
+    predicate parseSynthGlobal(AccessPathToken token, string sg) {
+      token.getName() = "SyntheticGlobal" and
+      sg = token.getAnArgument()
+    }
+
+    private class SyntheticGlobalFromAccessPath extends SummaryComponent::SyntheticGlobal {
+      SyntheticGlobalFromAccessPath() { parseSynthGlobal(_, this) }
+    }
+
     private SummaryComponent interpretComponent(AccessPathToken token) {
       exists(ParameterPosition pos |
         parseArg(token, pos) and result = SummaryComponent::argument(pos)
@@ -894,6 +941,10 @@ module Private {
       or
       token = "ReturnValue" and result = SummaryComponent::return(getReturnValueKind())
       or
+      exists(string sg |
+        parseSynthGlobal(token, sg) and result = SummaryComponent::syntheticGlobal(sg)
+      )
+      or
       result = interpretComponentSpecific(token)
     }
 
diff --git a/go/ql/lib/semmle/go/dataflow/internal/FlowSummaryImplSpecific.qll b/go/ql/lib/semmle/go/dataflow/internal/FlowSummaryImplSpecific.qll
index 95029942380..5087403f3b4 100644
--- a/go/ql/lib/semmle/go/dataflow/internal/FlowSummaryImplSpecific.qll
+++ b/go/ql/lib/semmle/go/dataflow/internal/FlowSummaryImplSpecific.qll
@@ -56,6 +56,9 @@ DataFlowType getCallbackParameterType(DataFlowType t, int i) { none() }
  */
 DataFlowType getCallbackReturnType(DataFlowType t, ReturnKind rk) { none() }
 
+/** Gets the type of synthetic global `sg`. */
+DataFlowType getSyntheticGlobalType(SummaryComponent::SyntheticGlobal sg) { none() }
+
 /**
  * Holds if an external flow summary exists for `c` with input specification
  * `input`, output specification `output`, kind `kind`, and a flag `generated`

From 804d131d3be23f80e373bc1120ccb54844de723b Mon Sep 17 00:00:00 2001
From: Owen Mansel-Chan <owen-mc@github.com>
Date: Wed, 23 Nov 2022 11:53:35 +0000
Subject: [PATCH 0811/1420] Update shared library files for go to PR #11060

Merge commit: 587e673
---
 .../go/dataflow/internal/DataFlowImpl.qll     | 144 ++++++++++--------
 .../go/dataflow/internal/DataFlowImpl2.qll    | 144 ++++++++++--------
 2 files changed, 158 insertions(+), 130 deletions(-)

diff --git a/go/ql/lib/semmle/go/dataflow/internal/DataFlowImpl.qll b/go/ql/lib/semmle/go/dataflow/internal/DataFlowImpl.qll
index b5631b26b0b..8cd1071d084 100644
--- a/go/ql/lib/semmle/go/dataflow/internal/DataFlowImpl.qll
+++ b/go/ql/lib/semmle/go/dataflow/internal/DataFlowImpl.qll
@@ -2874,54 +2874,16 @@ private class AccessPathCons1 extends AccessPath, TAccessPathCons1 {
   }
 }
 
-/**
- * A `Node` augmented with a call context (except for sinks), an access path, and a configuration.
- * Only those `PathNode`s that are reachable from a source are generated.
- */
-class PathNode extends TPathNode {
-  /** Gets a textual representation of this element. */
-  string toString() { none() }
-
-  /**
-   * Gets a textual representation of this element, including a textual
-   * representation of the call context.
-   */
-  string toStringWithContext() { none() }
-
-  /**
-   * Holds if this element is at the specified location.
-   * The location spans column `startcolumn` of line `startline` to
-   * column `endcolumn` of line `endline` in file `filepath`.
-   * For more information, see
-   * [Locations](https://codeql.github.com/docs/writing-codeql-queries/providing-locations-in-codeql-queries/).
-   */
-  predicate hasLocationInfo(
-    string filepath, int startline, int startcolumn, int endline, int endcolumn
-  ) {
-    none()
-  }
-
-  /** Gets the underlying `Node`. */
-  final Node getNode() { this.(PathNodeImpl).getNodeEx().projectToNode() = result }
-
+abstract private class PathNodeImpl extends TPathNode {
   /** Gets the `FlowState` of this node. */
-  FlowState getState() { none() }
+  abstract FlowState getState();
 
   /** Gets the associated configuration. */
-  Configuration getConfiguration() { none() }
-
-  /** Gets a successor of this node, if any. */
-  final PathNode getASuccessor() {
-    result = this.(PathNodeImpl).getANonHiddenSuccessor() and
-    reach(this) and
-    reach(result)
-  }
+  abstract Configuration getConfiguration();
 
   /** Holds if this node is a source. */
-  predicate isSource() { none() }
-}
+  abstract predicate isSource();
 
-abstract private class PathNodeImpl extends PathNode {
   abstract PathNodeImpl getASuccessorImpl();
 
   private PathNodeImpl getASuccessorIfHidden() {
@@ -2967,13 +2929,23 @@ abstract private class PathNodeImpl extends PathNode {
     result = " <" + this.(PathNodeMid).getCallContext().toString() + ">"
   }
 
-  override string toString() { result = this.getNodeEx().toString() + this.ppAp() }
+  /** Gets a textual representation of this element. */
+  string toString() { result = this.getNodeEx().toString() + this.ppAp() }
 
-  override string toStringWithContext() {
-    result = this.getNodeEx().toString() + this.ppAp() + this.ppCtx()
-  }
+  /**
+   * Gets a textual representation of this element, including a textual
+   * representation of the call context.
+   */
+  string toStringWithContext() { result = this.getNodeEx().toString() + this.ppAp() + this.ppCtx() }
 
-  override predicate hasLocationInfo(
+  /**
+   * Holds if this element is at the specified location.
+   * The location spans column `startcolumn` of line `startline` to
+   * column `endcolumn` of line `endline` in file `filepath`.
+   * For more information, see
+   * [Locations](https://codeql.github.com/docs/writing-codeql-queries/providing-locations-in-codeql-queries/).
+   */
+  predicate hasLocationInfo(
     string filepath, int startline, int startcolumn, int endline, int endcolumn
   ) {
     this.getNodeEx().hasLocationInfo(filepath, startline, startcolumn, endline, endcolumn)
@@ -2986,14 +2958,59 @@ private predicate directReach(PathNodeImpl n) {
 }
 
 /** Holds if `n` can reach a sink or is used in a subpath that can reach a sink. */
-private predicate reach(PathNode n) { directReach(n) or Subpaths::retReach(n) }
+private predicate reach(PathNodeImpl n) { directReach(n) or Subpaths::retReach(n) }
 
 /** Holds if `n1.getASuccessor() = n2` and `n2` can reach a sink. */
-private predicate pathSucc(PathNodeImpl n1, PathNode n2) {
+private predicate pathSucc(PathNodeImpl n1, PathNodeImpl n2) {
   n1.getANonHiddenSuccessor() = n2 and directReach(n2)
 }
 
-private predicate pathSuccPlus(PathNode n1, PathNode n2) = fastTC(pathSucc/2)(n1, n2)
+private predicate pathSuccPlus(PathNodeImpl n1, PathNodeImpl n2) = fastTC(pathSucc/2)(n1, n2)
+
+/**
+ * A `Node` augmented with a call context (except for sinks), an access path, and a configuration.
+ * Only those `PathNode`s that are reachable from a source, and which can reach a sink, are generated.
+ */
+class PathNode instanceof PathNodeImpl {
+  PathNode() { reach(this) }
+
+  /** Gets a textual representation of this element. */
+  final string toString() { result = super.toString() }
+
+  /**
+   * Gets a textual representation of this element, including a textual
+   * representation of the call context.
+   */
+  final string toStringWithContext() { result = super.toStringWithContext() }
+
+  /**
+   * Holds if this element is at the specified location.
+   * The location spans column `startcolumn` of line `startline` to
+   * column `endcolumn` of line `endline` in file `filepath`.
+   * For more information, see
+   * [Locations](https://codeql.github.com/docs/writing-codeql-queries/providing-locations-in-codeql-queries/).
+   */
+  final predicate hasLocationInfo(
+    string filepath, int startline, int startcolumn, int endline, int endcolumn
+  ) {
+    super.hasLocationInfo(filepath, startline, startcolumn, endline, endcolumn)
+  }
+
+  /** Gets the underlying `Node`. */
+  final Node getNode() { super.getNodeEx().projectToNode() = result }
+
+  /** Gets the `FlowState` of this node. */
+  final FlowState getState() { result = super.getState() }
+
+  /** Gets the associated configuration. */
+  final Configuration getConfiguration() { result = super.getConfiguration() }
+
+  /** Gets a successor of this node, if any. */
+  final PathNode getASuccessor() { result = super.getANonHiddenSuccessor() }
+
+  /** Holds if this node is a source. */
+  final predicate isSource() { super.isSource() }
+}
 
 /**
  * Provides the query predicates needed to include a graph in a path-problem query.
@@ -3004,7 +3021,7 @@ module PathGraph {
 
   /** Holds if `n` is a node in the graph of data flow path explanations. */
   query predicate nodes(PathNode n, string key, string val) {
-    reach(n) and key = "semmle.label" and val = n.toString()
+    key = "semmle.label" and val = n.toString()
   }
 
   /**
@@ -3013,11 +3030,7 @@ module PathGraph {
    * `ret -> out` is summarized as the edge `arg -> out`.
    */
   query predicate subpaths(PathNode arg, PathNode par, PathNode ret, PathNode out) {
-    Subpaths::subpaths(arg, par, ret, out) and
-    reach(arg) and
-    reach(par) and
-    reach(ret) and
-    reach(out)
+    Subpaths::subpaths(arg, par, ret, out)
   }
 }
 
@@ -3399,7 +3412,7 @@ private module Subpaths {
    */
   pragma[nomagic]
   private predicate subpaths02(
-    PathNode arg, ParamNodeEx par, SummaryCtxSome sc, CallContext innercc, ReturnKindExt kind,
+    PathNodeImpl arg, ParamNodeEx par, SummaryCtxSome sc, CallContext innercc, ReturnKindExt kind,
     NodeEx out, FlowState sout, AccessPath apout
   ) {
     subpaths01(arg, par, sc, innercc, kind, out, sout, apout) and
@@ -3407,14 +3420,14 @@ private module Subpaths {
   }
 
   pragma[nomagic]
-  private Configuration getPathNodeConf(PathNode n) { result = n.getConfiguration() }
+  private Configuration getPathNodeConf(PathNodeImpl n) { result = n.getConfiguration() }
 
   /**
    * Holds if `(arg, par, ret, out)` forms a subpath-tuple.
    */
   pragma[nomagic]
   private predicate subpaths03(
-    PathNode arg, ParamNodeEx par, PathNodeMid ret, NodeEx out, FlowState sout, AccessPath apout
+    PathNodeImpl arg, ParamNodeEx par, PathNodeMid ret, NodeEx out, FlowState sout, AccessPath apout
   ) {
     exists(SummaryCtxSome sc, CallContext innercc, ReturnKindExt kind, RetNodeEx retnode |
       subpaths02(arg, par, sc, innercc, kind, out, sout, apout) and
@@ -3444,7 +3457,7 @@ private module Subpaths {
    * a subpath between `par` and `ret` with the connecting edges `arg -> par` and
    * `ret -> out` is summarized as the edge `arg -> out`.
    */
-  predicate subpaths(PathNodeImpl arg, PathNodeImpl par, PathNodeImpl ret, PathNode out) {
+  predicate subpaths(PathNodeImpl arg, PathNodeImpl par, PathNodeImpl ret, PathNodeImpl out) {
     exists(ParamNodeEx p, NodeEx o, FlowState sout, AccessPath apout, PathNodeMid out0 |
       pragma[only_bind_into](arg).getANonHiddenSuccessor() = pragma[only_bind_into](out0) and
       subpaths03(pragma[only_bind_into](arg), p, localStepToHidden*(ret), o, sout, apout) and
@@ -3460,7 +3473,7 @@ private module Subpaths {
    * Holds if `n` can reach a return node in a summarized subpath that can reach a sink.
    */
   predicate retReach(PathNodeImpl n) {
-    exists(PathNode out | subpaths(_, _, n, out) | directReach(out) or retReach(out))
+    exists(PathNodeImpl out | subpaths(_, _, n, out) | directReach(out) or retReach(out))
     or
     exists(PathNodeImpl mid |
       retReach(mid) and
@@ -3477,11 +3490,12 @@ private module Subpaths {
  * sinks.
  */
 private predicate flowsTo(
-  PathNode flowsource, PathNodeSink flowsink, Node source, Node sink, Configuration configuration
+  PathNodeImpl flowsource, PathNodeSink flowsink, Node source, Node sink,
+  Configuration configuration
 ) {
   flowsource.isSource() and
   flowsource.getConfiguration() = configuration and
-  flowsource.(PathNodeImpl).getNodeEx().asNode() = source and
+  flowsource.getNodeEx().asNode() = source and
   (flowsource = flowsink or pathSuccPlus(flowsource, flowsink)) and
   flowsink.getNodeEx().asNode() = sink
 }
@@ -3504,14 +3518,14 @@ private predicate finalStats(
   fields = count(TypedContent f0 | exists(PathNodeMid pn | pn.getAp().getHead() = f0)) and
   conscand = count(AccessPath ap | exists(PathNodeMid pn | pn.getAp() = ap)) and
   states = count(FlowState state | exists(PathNodeMid pn | pn.getState() = state)) and
-  tuples = count(PathNode pn)
+  tuples = count(PathNodeImpl pn)
   or
   fwd = false and
   nodes = count(NodeEx n0 | exists(PathNodeImpl pn | pn.getNodeEx() = n0 and reach(pn))) and
   fields = count(TypedContent f0 | exists(PathNodeMid pn | pn.getAp().getHead() = f0 and reach(pn))) and
   conscand = count(AccessPath ap | exists(PathNodeMid pn | pn.getAp() = ap and reach(pn))) and
   states = count(FlowState state | exists(PathNodeMid pn | pn.getState() = state and reach(pn))) and
-  tuples = count(PathNode pn | reach(pn))
+  tuples = count(PathNode pn)
 }
 
 /**
diff --git a/go/ql/lib/semmle/go/dataflow/internal/DataFlowImpl2.qll b/go/ql/lib/semmle/go/dataflow/internal/DataFlowImpl2.qll
index b5631b26b0b..8cd1071d084 100644
--- a/go/ql/lib/semmle/go/dataflow/internal/DataFlowImpl2.qll
+++ b/go/ql/lib/semmle/go/dataflow/internal/DataFlowImpl2.qll
@@ -2874,54 +2874,16 @@ private class AccessPathCons1 extends AccessPath, TAccessPathCons1 {
   }
 }
 
-/**
- * A `Node` augmented with a call context (except for sinks), an access path, and a configuration.
- * Only those `PathNode`s that are reachable from a source are generated.
- */
-class PathNode extends TPathNode {
-  /** Gets a textual representation of this element. */
-  string toString() { none() }
-
-  /**
-   * Gets a textual representation of this element, including a textual
-   * representation of the call context.
-   */
-  string toStringWithContext() { none() }
-
-  /**
-   * Holds if this element is at the specified location.
-   * The location spans column `startcolumn` of line `startline` to
-   * column `endcolumn` of line `endline` in file `filepath`.
-   * For more information, see
-   * [Locations](https://codeql.github.com/docs/writing-codeql-queries/providing-locations-in-codeql-queries/).
-   */
-  predicate hasLocationInfo(
-    string filepath, int startline, int startcolumn, int endline, int endcolumn
-  ) {
-    none()
-  }
-
-  /** Gets the underlying `Node`. */
-  final Node getNode() { this.(PathNodeImpl).getNodeEx().projectToNode() = result }
-
+abstract private class PathNodeImpl extends TPathNode {
   /** Gets the `FlowState` of this node. */
-  FlowState getState() { none() }
+  abstract FlowState getState();
 
   /** Gets the associated configuration. */
-  Configuration getConfiguration() { none() }
-
-  /** Gets a successor of this node, if any. */
-  final PathNode getASuccessor() {
-    result = this.(PathNodeImpl).getANonHiddenSuccessor() and
-    reach(this) and
-    reach(result)
-  }
+  abstract Configuration getConfiguration();
 
   /** Holds if this node is a source. */
-  predicate isSource() { none() }
-}
+  abstract predicate isSource();
 
-abstract private class PathNodeImpl extends PathNode {
   abstract PathNodeImpl getASuccessorImpl();
 
   private PathNodeImpl getASuccessorIfHidden() {
@@ -2967,13 +2929,23 @@ abstract private class PathNodeImpl extends PathNode {
     result = " <" + this.(PathNodeMid).getCallContext().toString() + ">"
   }
 
-  override string toString() { result = this.getNodeEx().toString() + this.ppAp() }
+  /** Gets a textual representation of this element. */
+  string toString() { result = this.getNodeEx().toString() + this.ppAp() }
 
-  override string toStringWithContext() {
-    result = this.getNodeEx().toString() + this.ppAp() + this.ppCtx()
-  }
+  /**
+   * Gets a textual representation of this element, including a textual
+   * representation of the call context.
+   */
+  string toStringWithContext() { result = this.getNodeEx().toString() + this.ppAp() + this.ppCtx() }
 
-  override predicate hasLocationInfo(
+  /**
+   * Holds if this element is at the specified location.
+   * The location spans column `startcolumn` of line `startline` to
+   * column `endcolumn` of line `endline` in file `filepath`.
+   * For more information, see
+   * [Locations](https://codeql.github.com/docs/writing-codeql-queries/providing-locations-in-codeql-queries/).
+   */
+  predicate hasLocationInfo(
     string filepath, int startline, int startcolumn, int endline, int endcolumn
   ) {
     this.getNodeEx().hasLocationInfo(filepath, startline, startcolumn, endline, endcolumn)
@@ -2986,14 +2958,59 @@ private predicate directReach(PathNodeImpl n) {
 }
 
 /** Holds if `n` can reach a sink or is used in a subpath that can reach a sink. */
-private predicate reach(PathNode n) { directReach(n) or Subpaths::retReach(n) }
+private predicate reach(PathNodeImpl n) { directReach(n) or Subpaths::retReach(n) }
 
 /** Holds if `n1.getASuccessor() = n2` and `n2` can reach a sink. */
-private predicate pathSucc(PathNodeImpl n1, PathNode n2) {
+private predicate pathSucc(PathNodeImpl n1, PathNodeImpl n2) {
   n1.getANonHiddenSuccessor() = n2 and directReach(n2)
 }
 
-private predicate pathSuccPlus(PathNode n1, PathNode n2) = fastTC(pathSucc/2)(n1, n2)
+private predicate pathSuccPlus(PathNodeImpl n1, PathNodeImpl n2) = fastTC(pathSucc/2)(n1, n2)
+
+/**
+ * A `Node` augmented with a call context (except for sinks), an access path, and a configuration.
+ * Only those `PathNode`s that are reachable from a source, and which can reach a sink, are generated.
+ */
+class PathNode instanceof PathNodeImpl {
+  PathNode() { reach(this) }
+
+  /** Gets a textual representation of this element. */
+  final string toString() { result = super.toString() }
+
+  /**
+   * Gets a textual representation of this element, including a textual
+   * representation of the call context.
+   */
+  final string toStringWithContext() { result = super.toStringWithContext() }
+
+  /**
+   * Holds if this element is at the specified location.
+   * The location spans column `startcolumn` of line `startline` to
+   * column `endcolumn` of line `endline` in file `filepath`.
+   * For more information, see
+   * [Locations](https://codeql.github.com/docs/writing-codeql-queries/providing-locations-in-codeql-queries/).
+   */
+  final predicate hasLocationInfo(
+    string filepath, int startline, int startcolumn, int endline, int endcolumn
+  ) {
+    super.hasLocationInfo(filepath, startline, startcolumn, endline, endcolumn)
+  }
+
+  /** Gets the underlying `Node`. */
+  final Node getNode() { super.getNodeEx().projectToNode() = result }
+
+  /** Gets the `FlowState` of this node. */
+  final FlowState getState() { result = super.getState() }
+
+  /** Gets the associated configuration. */
+  final Configuration getConfiguration() { result = super.getConfiguration() }
+
+  /** Gets a successor of this node, if any. */
+  final PathNode getASuccessor() { result = super.getANonHiddenSuccessor() }
+
+  /** Holds if this node is a source. */
+  final predicate isSource() { super.isSource() }
+}
 
 /**
  * Provides the query predicates needed to include a graph in a path-problem query.
@@ -3004,7 +3021,7 @@ module PathGraph {
 
   /** Holds if `n` is a node in the graph of data flow path explanations. */
   query predicate nodes(PathNode n, string key, string val) {
-    reach(n) and key = "semmle.label" and val = n.toString()
+    key = "semmle.label" and val = n.toString()
   }
 
   /**
@@ -3013,11 +3030,7 @@ module PathGraph {
    * `ret -> out` is summarized as the edge `arg -> out`.
    */
   query predicate subpaths(PathNode arg, PathNode par, PathNode ret, PathNode out) {
-    Subpaths::subpaths(arg, par, ret, out) and
-    reach(arg) and
-    reach(par) and
-    reach(ret) and
-    reach(out)
+    Subpaths::subpaths(arg, par, ret, out)
   }
 }
 
@@ -3399,7 +3412,7 @@ private module Subpaths {
    */
   pragma[nomagic]
   private predicate subpaths02(
-    PathNode arg, ParamNodeEx par, SummaryCtxSome sc, CallContext innercc, ReturnKindExt kind,
+    PathNodeImpl arg, ParamNodeEx par, SummaryCtxSome sc, CallContext innercc, ReturnKindExt kind,
     NodeEx out, FlowState sout, AccessPath apout
   ) {
     subpaths01(arg, par, sc, innercc, kind, out, sout, apout) and
@@ -3407,14 +3420,14 @@ private module Subpaths {
   }
 
   pragma[nomagic]
-  private Configuration getPathNodeConf(PathNode n) { result = n.getConfiguration() }
+  private Configuration getPathNodeConf(PathNodeImpl n) { result = n.getConfiguration() }
 
   /**
    * Holds if `(arg, par, ret, out)` forms a subpath-tuple.
    */
   pragma[nomagic]
   private predicate subpaths03(
-    PathNode arg, ParamNodeEx par, PathNodeMid ret, NodeEx out, FlowState sout, AccessPath apout
+    PathNodeImpl arg, ParamNodeEx par, PathNodeMid ret, NodeEx out, FlowState sout, AccessPath apout
   ) {
     exists(SummaryCtxSome sc, CallContext innercc, ReturnKindExt kind, RetNodeEx retnode |
       subpaths02(arg, par, sc, innercc, kind, out, sout, apout) and
@@ -3444,7 +3457,7 @@ private module Subpaths {
    * a subpath between `par` and `ret` with the connecting edges `arg -> par` and
    * `ret -> out` is summarized as the edge `arg -> out`.
    */
-  predicate subpaths(PathNodeImpl arg, PathNodeImpl par, PathNodeImpl ret, PathNode out) {
+  predicate subpaths(PathNodeImpl arg, PathNodeImpl par, PathNodeImpl ret, PathNodeImpl out) {
     exists(ParamNodeEx p, NodeEx o, FlowState sout, AccessPath apout, PathNodeMid out0 |
       pragma[only_bind_into](arg).getANonHiddenSuccessor() = pragma[only_bind_into](out0) and
       subpaths03(pragma[only_bind_into](arg), p, localStepToHidden*(ret), o, sout, apout) and
@@ -3460,7 +3473,7 @@ private module Subpaths {
    * Holds if `n` can reach a return node in a summarized subpath that can reach a sink.
    */
   predicate retReach(PathNodeImpl n) {
-    exists(PathNode out | subpaths(_, _, n, out) | directReach(out) or retReach(out))
+    exists(PathNodeImpl out | subpaths(_, _, n, out) | directReach(out) or retReach(out))
     or
     exists(PathNodeImpl mid |
       retReach(mid) and
@@ -3477,11 +3490,12 @@ private module Subpaths {
  * sinks.
  */
 private predicate flowsTo(
-  PathNode flowsource, PathNodeSink flowsink, Node source, Node sink, Configuration configuration
+  PathNodeImpl flowsource, PathNodeSink flowsink, Node source, Node sink,
+  Configuration configuration
 ) {
   flowsource.isSource() and
   flowsource.getConfiguration() = configuration and
-  flowsource.(PathNodeImpl).getNodeEx().asNode() = source and
+  flowsource.getNodeEx().asNode() = source and
   (flowsource = flowsink or pathSuccPlus(flowsource, flowsink)) and
   flowsink.getNodeEx().asNode() = sink
 }
@@ -3504,14 +3518,14 @@ private predicate finalStats(
   fields = count(TypedContent f0 | exists(PathNodeMid pn | pn.getAp().getHead() = f0)) and
   conscand = count(AccessPath ap | exists(PathNodeMid pn | pn.getAp() = ap)) and
   states = count(FlowState state | exists(PathNodeMid pn | pn.getState() = state)) and
-  tuples = count(PathNode pn)
+  tuples = count(PathNodeImpl pn)
   or
   fwd = false and
   nodes = count(NodeEx n0 | exists(PathNodeImpl pn | pn.getNodeEx() = n0 and reach(pn))) and
   fields = count(TypedContent f0 | exists(PathNodeMid pn | pn.getAp().getHead() = f0 and reach(pn))) and
   conscand = count(AccessPath ap | exists(PathNodeMid pn | pn.getAp() = ap and reach(pn))) and
   states = count(FlowState state | exists(PathNodeMid pn | pn.getState() = state and reach(pn))) and
-  tuples = count(PathNode pn | reach(pn))
+  tuples = count(PathNode pn)
 }
 
 /**

From 309ab772da28fda18632eeb0d2a0f18cabe4a17e Mon Sep 17 00:00:00 2001
From: Owen Mansel-Chan <owen-mc@github.com>
Date: Wed, 23 Nov 2022 11:55:26 +0000
Subject: [PATCH 0812/1420] Update shared library files for go to PR #10886

Merge commit: 99ca28e
---
 go/ql/lib/semmle/go/dataflow/internal/DataFlowImpl.qll  | 6 ++++++
 go/ql/lib/semmle/go/dataflow/internal/DataFlowImpl2.qll | 6 ++++++
 2 files changed, 12 insertions(+)

diff --git a/go/ql/lib/semmle/go/dataflow/internal/DataFlowImpl.qll b/go/ql/lib/semmle/go/dataflow/internal/DataFlowImpl.qll
index 8cd1071d084..2dde1c2819d 100644
--- a/go/ql/lib/semmle/go/dataflow/internal/DataFlowImpl.qll
+++ b/go/ql/lib/semmle/go/dataflow/internal/DataFlowImpl.qll
@@ -2629,6 +2629,7 @@ private predicate evalUnfold(AccessPathApprox apa, boolean unfold, Configuration
 /**
  * Gets the number of `AccessPath`s that correspond to `apa`.
  */
+pragma[assume_small_delta]
 private int countAps(AccessPathApprox apa, Configuration config) {
   evalUnfold(apa, false, config) and
   result = 1 and
@@ -2647,6 +2648,7 @@ private int countAps(AccessPathApprox apa, Configuration config) {
  * that it is expanded to a precise head-tail representation.
  */
 language[monotonicAggregates]
+pragma[assume_small_delta]
 private int countPotentialAps(AccessPathApprox apa, Configuration config) {
   apa instanceof AccessPathApproxNil and result = 1
   or
@@ -2681,6 +2683,7 @@ private newtype TAccessPath =
   }
 
 private newtype TPathNode =
+  pragma[assume_small_delta]
   TPathNodeMid(
     NodeEx node, FlowState state, CallContext cc, SummaryCtx sc, AccessPath ap, Configuration config
   ) {
@@ -2778,6 +2781,7 @@ private class AccessPathCons extends AccessPath, TAccessPathCons {
 
   override AccessPathFrontHead getFront() { result = TFrontHead(head) }
 
+  pragma[assume_small_delta]
   override AccessPathApproxCons getApprox() {
     result = TConsNil(head, tail.(AccessPathNil).getType())
     or
@@ -2786,6 +2790,7 @@ private class AccessPathCons extends AccessPath, TAccessPathCons {
     result = TCons1(head, this.length())
   }
 
+  pragma[assume_small_delta]
   override int length() { result = 1 + tail.length() }
 
   private string toStringImpl(boolean needsSuffix) {
@@ -3155,6 +3160,7 @@ private predicate pathNode(
  * Holds if data may flow from `mid` to `node`. The last step in or out of
  * a callable is recorded by `cc`.
  */
+pragma[assume_small_delta]
 pragma[nomagic]
 private predicate pathStep(
   PathNodeMid mid, NodeEx node, FlowState state, CallContext cc, SummaryCtx sc, AccessPath ap
diff --git a/go/ql/lib/semmle/go/dataflow/internal/DataFlowImpl2.qll b/go/ql/lib/semmle/go/dataflow/internal/DataFlowImpl2.qll
index 8cd1071d084..2dde1c2819d 100644
--- a/go/ql/lib/semmle/go/dataflow/internal/DataFlowImpl2.qll
+++ b/go/ql/lib/semmle/go/dataflow/internal/DataFlowImpl2.qll
@@ -2629,6 +2629,7 @@ private predicate evalUnfold(AccessPathApprox apa, boolean unfold, Configuration
 /**
  * Gets the number of `AccessPath`s that correspond to `apa`.
  */
+pragma[assume_small_delta]
 private int countAps(AccessPathApprox apa, Configuration config) {
   evalUnfold(apa, false, config) and
   result = 1 and
@@ -2647,6 +2648,7 @@ private int countAps(AccessPathApprox apa, Configuration config) {
  * that it is expanded to a precise head-tail representation.
  */
 language[monotonicAggregates]
+pragma[assume_small_delta]
 private int countPotentialAps(AccessPathApprox apa, Configuration config) {
   apa instanceof AccessPathApproxNil and result = 1
   or
@@ -2681,6 +2683,7 @@ private newtype TAccessPath =
   }
 
 private newtype TPathNode =
+  pragma[assume_small_delta]
   TPathNodeMid(
     NodeEx node, FlowState state, CallContext cc, SummaryCtx sc, AccessPath ap, Configuration config
   ) {
@@ -2778,6 +2781,7 @@ private class AccessPathCons extends AccessPath, TAccessPathCons {
 
   override AccessPathFrontHead getFront() { result = TFrontHead(head) }
 
+  pragma[assume_small_delta]
   override AccessPathApproxCons getApprox() {
     result = TConsNil(head, tail.(AccessPathNil).getType())
     or
@@ -2786,6 +2790,7 @@ private class AccessPathCons extends AccessPath, TAccessPathCons {
     result = TCons1(head, this.length())
   }
 
+  pragma[assume_small_delta]
   override int length() { result = 1 + tail.length() }
 
   private string toStringImpl(boolean needsSuffix) {
@@ -3155,6 +3160,7 @@ private predicate pathNode(
  * Holds if data may flow from `mid` to `node`. The last step in or out of
  * a callable is recorded by `cc`.
  */
+pragma[assume_small_delta]
 pragma[nomagic]
 private predicate pathStep(
   PathNodeMid mid, NodeEx node, FlowState state, CallContext cc, SummaryCtx sc, AccessPath ap

From b63d0892ab7b6ea87e5b4bc2b70a9783dd8fc45f Mon Sep 17 00:00:00 2001
From: Owen Mansel-Chan <owen-mc@github.com>
Date: Wed, 23 Nov 2022 11:58:16 +0000
Subject: [PATCH 0813/1420] Update shared library files for go to PR #10777

Merge commit: 9c6875e
---
 go/ql/lib/semmle/go/dataflow/internal/AccessPathSyntax.qll | 2 +-
 go/ql/lib/semmle/go/dataflow/internal/FlowSummaryImpl.qll  | 6 +++---
 2 files changed, 4 insertions(+), 4 deletions(-)

diff --git a/go/ql/lib/semmle/go/dataflow/internal/AccessPathSyntax.qll b/go/ql/lib/semmle/go/dataflow/internal/AccessPathSyntax.qll
index 076e12f2671..0c3dc8427b2 100644
--- a/go/ql/lib/semmle/go/dataflow/internal/AccessPathSyntax.qll
+++ b/go/ql/lib/semmle/go/dataflow/internal/AccessPathSyntax.qll
@@ -1,5 +1,5 @@
 /**
- * Module for parsing access paths from CSV models, both the identifying access path used
+ * Module for parsing access paths from MaD models, both the identifying access path used
  * by dynamic languages, and the input/output specifications for summary steps.
  *
  * This file is used by the shared data flow library and by the JavaScript libraries
diff --git a/go/ql/lib/semmle/go/dataflow/internal/FlowSummaryImpl.qll b/go/ql/lib/semmle/go/dataflow/internal/FlowSummaryImpl.qll
index 275569b4c02..4d41254e5e9 100644
--- a/go/ql/lib/semmle/go/dataflow/internal/FlowSummaryImpl.qll
+++ b/go/ql/lib/semmle/go/dataflow/internal/FlowSummaryImpl.qll
@@ -892,7 +892,7 @@ module Private {
   }
 
   /**
-   * Provides a means of translating externally (e.g., CSV) defined flow
+   * Provides a means of translating externally (e.g., MaD) defined flow
    * summaries into a `SummarizedCallable`s.
    */
   module External {
@@ -1121,7 +1121,7 @@ module Private {
     }
 
     /**
-     * Holds if `node` is specified as a source with the given kind in a CSV flow
+     * Holds if `node` is specified as a source with the given kind in a MaD flow
      * model.
      */
     predicate isSourceNode(InterpretNode node, string kind) {
@@ -1132,7 +1132,7 @@ module Private {
     }
 
     /**
-     * Holds if `node` is specified as a sink with the given kind in a CSV flow
+     * Holds if `node` is specified as a sink with the given kind in a MaD flow
      * model.
      */
     predicate isSinkNode(InterpretNode node, string kind) {

From d9f8420c8660527eb77a096ffb7f594f5e8c6be3 Mon Sep 17 00:00:00 2001
From: Owen Mansel-Chan <owen-mc@github.com>
Date: Wed, 23 Nov 2022 12:07:39 +0000
Subject: [PATCH 0814/1420] Update shared library files for go to PR #11183

Merge commit: 94bca43
---
 .../go/dataflow/internal/DataFlowImpl.qll     | 114 +++++++++++++++++-
 .../go/dataflow/internal/DataFlowImpl2.qll    | 114 +++++++++++++++++-
 2 files changed, 222 insertions(+), 6 deletions(-)

diff --git a/go/ql/lib/semmle/go/dataflow/internal/DataFlowImpl.qll b/go/ql/lib/semmle/go/dataflow/internal/DataFlowImpl.qll
index 2dde1c2819d..3c41b1876dc 100644
--- a/go/ql/lib/semmle/go/dataflow/internal/DataFlowImpl.qll
+++ b/go/ql/lib/semmle/go/dataflow/internal/DataFlowImpl.qll
@@ -147,6 +147,12 @@ abstract class Configuration extends string {
    */
   FlowFeature getAFeature() { none() }
 
+  /** Holds if sources should be grouped in the result of `hasFlowPath`. */
+  predicate sourceGrouping(Node source, string sourceGroup) { none() }
+
+  /** Holds if sinks should be grouped in the result of `hasFlowPath`. */
+  predicate sinkGrouping(Node sink, string sinkGroup) { none() }
+
   /**
    * Holds if data may flow from `source` to `sink` for this configuration.
    */
@@ -158,7 +164,7 @@ abstract class Configuration extends string {
    * The corresponding paths are generated from the end-points and the graph
    * included in the module `PathGraph`.
    */
-  predicate hasFlowPath(PathNode source, PathNode sink) { flowsTo(source, sink, _, _, this) }
+  predicate hasFlowPath(PathNode source, PathNode sink) { hasFlowPath(source, sink, this) }
 
   /**
    * Holds if data may flow from some source to `sink` for this configuration.
@@ -2712,6 +2718,18 @@ private newtype TPathNode =
       state = sink.getState() and
       config = sink.getConfiguration()
     )
+  } or
+  TPathNodeSourceGroup(string sourceGroup, Configuration config) {
+    exists(PathNodeImpl source |
+      sourceGroup = source.getSourceGroup() and
+      config = source.getConfiguration()
+    )
+  } or
+  TPathNodeSinkGroup(string sinkGroup, Configuration config) {
+    exists(PathNodeSink sink |
+      sinkGroup = sink.getSinkGroup() and
+      config = sink.getConfiguration()
+    )
   }
 
 /**
@@ -2920,6 +2938,22 @@ abstract private class PathNodeImpl extends TPathNode {
     )
   }
 
+  string getSourceGroup() {
+    this.isSource() and
+    this.getConfiguration().sourceGrouping(this.getNodeEx().asNode(), result)
+  }
+
+  predicate isFlowSource() {
+    this.isSource() and not exists(this.getSourceGroup())
+    or
+    this instanceof PathNodeSourceGroup
+  }
+
+  predicate isFlowSink() {
+    this = any(PathNodeSink sink | not exists(sink.getSinkGroup())) or
+    this instanceof PathNodeSinkGroup
+  }
+
   private string ppAp() {
     this instanceof PathNodeSink and result = ""
     or
@@ -2959,7 +2993,9 @@ abstract private class PathNodeImpl extends TPathNode {
 
 /** Holds if `n` can reach a sink. */
 private predicate directReach(PathNodeImpl n) {
-  n instanceof PathNodeSink or directReach(n.getANonHiddenSuccessor())
+  n instanceof PathNodeSink or
+  n instanceof PathNodeSinkGroup or
+  directReach(n.getANonHiddenSuccessor())
 }
 
 /** Holds if `n` can reach a sink or is used in a subpath that can reach a sink. */
@@ -3015,6 +3051,12 @@ class PathNode instanceof PathNodeImpl {
 
   /** Holds if this node is a source. */
   final predicate isSource() { super.isSource() }
+
+  /** Holds if this node is a grouping of source nodes. */
+  final predicate isSourceGroup(string group) { this = TPathNodeSourceGroup(group, _) }
+
+  /** Holds if this node is a grouping of sink nodes. */
+  final predicate isSinkGroup(string group) { this = TPathNodeSinkGroup(group, _) }
 }
 
 /**
@@ -3136,9 +3178,66 @@ private class PathNodeSink extends PathNodeImpl, TPathNodeSink {
 
   override Configuration getConfiguration() { result = config }
 
-  override PathNodeImpl getASuccessorImpl() { none() }
+  override PathNodeImpl getASuccessorImpl() {
+    result = TPathNodeSinkGroup(this.getSinkGroup(), config)
+  }
 
   override predicate isSource() { sourceNode(node, state, config) }
+
+  string getSinkGroup() { config.sinkGrouping(node.asNode(), result) }
+}
+
+private class PathNodeSourceGroup extends PathNodeImpl, TPathNodeSourceGroup {
+  string sourceGroup;
+  Configuration config;
+
+  PathNodeSourceGroup() { this = TPathNodeSourceGroup(sourceGroup, config) }
+
+  override NodeEx getNodeEx() { none() }
+
+  override FlowState getState() { none() }
+
+  override Configuration getConfiguration() { result = config }
+
+  override PathNodeImpl getASuccessorImpl() {
+    result.getSourceGroup() = sourceGroup and
+    result.getConfiguration() = config
+  }
+
+  override predicate isSource() { none() }
+
+  override string toString() { result = sourceGroup }
+
+  override predicate hasLocationInfo(
+    string filepath, int startline, int startcolumn, int endline, int endcolumn
+  ) {
+    filepath = "" and startline = 0 and startcolumn = 0 and endline = 0 and endcolumn = 0
+  }
+}
+
+private class PathNodeSinkGroup extends PathNodeImpl, TPathNodeSinkGroup {
+  string sinkGroup;
+  Configuration config;
+
+  PathNodeSinkGroup() { this = TPathNodeSinkGroup(sinkGroup, config) }
+
+  override NodeEx getNodeEx() { none() }
+
+  override FlowState getState() { none() }
+
+  override Configuration getConfiguration() { result = config }
+
+  override PathNodeImpl getASuccessorImpl() { none() }
+
+  override predicate isSource() { none() }
+
+  override string toString() { result = sinkGroup }
+
+  override predicate hasLocationInfo(
+    string filepath, int startline, int startcolumn, int endline, int endcolumn
+  ) {
+    filepath = "" and startline = 0 and startcolumn = 0 and endline = 0 and endcolumn = 0
+  }
 }
 
 private predicate pathNode(
@@ -3495,6 +3594,15 @@ private module Subpaths {
  * Will only have results if `configuration` has non-empty sources and
  * sinks.
  */
+private predicate hasFlowPath(
+  PathNodeImpl flowsource, PathNodeImpl flowsink, Configuration configuration
+) {
+  flowsource.isFlowSource() and
+  flowsource.getConfiguration() = configuration and
+  (flowsource = flowsink or pathSuccPlus(flowsource, flowsink)) and
+  flowsink.isFlowSink()
+}
+
 private predicate flowsTo(
   PathNodeImpl flowsource, PathNodeSink flowsink, Node source, Node sink,
   Configuration configuration
diff --git a/go/ql/lib/semmle/go/dataflow/internal/DataFlowImpl2.qll b/go/ql/lib/semmle/go/dataflow/internal/DataFlowImpl2.qll
index 2dde1c2819d..3c41b1876dc 100644
--- a/go/ql/lib/semmle/go/dataflow/internal/DataFlowImpl2.qll
+++ b/go/ql/lib/semmle/go/dataflow/internal/DataFlowImpl2.qll
@@ -147,6 +147,12 @@ abstract class Configuration extends string {
    */
   FlowFeature getAFeature() { none() }
 
+  /** Holds if sources should be grouped in the result of `hasFlowPath`. */
+  predicate sourceGrouping(Node source, string sourceGroup) { none() }
+
+  /** Holds if sinks should be grouped in the result of `hasFlowPath`. */
+  predicate sinkGrouping(Node sink, string sinkGroup) { none() }
+
   /**
    * Holds if data may flow from `source` to `sink` for this configuration.
    */
@@ -158,7 +164,7 @@ abstract class Configuration extends string {
    * The corresponding paths are generated from the end-points and the graph
    * included in the module `PathGraph`.
    */
-  predicate hasFlowPath(PathNode source, PathNode sink) { flowsTo(source, sink, _, _, this) }
+  predicate hasFlowPath(PathNode source, PathNode sink) { hasFlowPath(source, sink, this) }
 
   /**
    * Holds if data may flow from some source to `sink` for this configuration.
@@ -2712,6 +2718,18 @@ private newtype TPathNode =
       state = sink.getState() and
       config = sink.getConfiguration()
     )
+  } or
+  TPathNodeSourceGroup(string sourceGroup, Configuration config) {
+    exists(PathNodeImpl source |
+      sourceGroup = source.getSourceGroup() and
+      config = source.getConfiguration()
+    )
+  } or
+  TPathNodeSinkGroup(string sinkGroup, Configuration config) {
+    exists(PathNodeSink sink |
+      sinkGroup = sink.getSinkGroup() and
+      config = sink.getConfiguration()
+    )
   }
 
 /**
@@ -2920,6 +2938,22 @@ abstract private class PathNodeImpl extends TPathNode {
     )
   }
 
+  string getSourceGroup() {
+    this.isSource() and
+    this.getConfiguration().sourceGrouping(this.getNodeEx().asNode(), result)
+  }
+
+  predicate isFlowSource() {
+    this.isSource() and not exists(this.getSourceGroup())
+    or
+    this instanceof PathNodeSourceGroup
+  }
+
+  predicate isFlowSink() {
+    this = any(PathNodeSink sink | not exists(sink.getSinkGroup())) or
+    this instanceof PathNodeSinkGroup
+  }
+
   private string ppAp() {
     this instanceof PathNodeSink and result = ""
     or
@@ -2959,7 +2993,9 @@ abstract private class PathNodeImpl extends TPathNode {
 
 /** Holds if `n` can reach a sink. */
 private predicate directReach(PathNodeImpl n) {
-  n instanceof PathNodeSink or directReach(n.getANonHiddenSuccessor())
+  n instanceof PathNodeSink or
+  n instanceof PathNodeSinkGroup or
+  directReach(n.getANonHiddenSuccessor())
 }
 
 /** Holds if `n` can reach a sink or is used in a subpath that can reach a sink. */
@@ -3015,6 +3051,12 @@ class PathNode instanceof PathNodeImpl {
 
   /** Holds if this node is a source. */
   final predicate isSource() { super.isSource() }
+
+  /** Holds if this node is a grouping of source nodes. */
+  final predicate isSourceGroup(string group) { this = TPathNodeSourceGroup(group, _) }
+
+  /** Holds if this node is a grouping of sink nodes. */
+  final predicate isSinkGroup(string group) { this = TPathNodeSinkGroup(group, _) }
 }
 
 /**
@@ -3136,9 +3178,66 @@ private class PathNodeSink extends PathNodeImpl, TPathNodeSink {
 
   override Configuration getConfiguration() { result = config }
 
-  override PathNodeImpl getASuccessorImpl() { none() }
+  override PathNodeImpl getASuccessorImpl() {
+    result = TPathNodeSinkGroup(this.getSinkGroup(), config)
+  }
 
   override predicate isSource() { sourceNode(node, state, config) }
+
+  string getSinkGroup() { config.sinkGrouping(node.asNode(), result) }
+}
+
+private class PathNodeSourceGroup extends PathNodeImpl, TPathNodeSourceGroup {
+  string sourceGroup;
+  Configuration config;
+
+  PathNodeSourceGroup() { this = TPathNodeSourceGroup(sourceGroup, config) }
+
+  override NodeEx getNodeEx() { none() }
+
+  override FlowState getState() { none() }
+
+  override Configuration getConfiguration() { result = config }
+
+  override PathNodeImpl getASuccessorImpl() {
+    result.getSourceGroup() = sourceGroup and
+    result.getConfiguration() = config
+  }
+
+  override predicate isSource() { none() }
+
+  override string toString() { result = sourceGroup }
+
+  override predicate hasLocationInfo(
+    string filepath, int startline, int startcolumn, int endline, int endcolumn
+  ) {
+    filepath = "" and startline = 0 and startcolumn = 0 and endline = 0 and endcolumn = 0
+  }
+}
+
+private class PathNodeSinkGroup extends PathNodeImpl, TPathNodeSinkGroup {
+  string sinkGroup;
+  Configuration config;
+
+  PathNodeSinkGroup() { this = TPathNodeSinkGroup(sinkGroup, config) }
+
+  override NodeEx getNodeEx() { none() }
+
+  override FlowState getState() { none() }
+
+  override Configuration getConfiguration() { result = config }
+
+  override PathNodeImpl getASuccessorImpl() { none() }
+
+  override predicate isSource() { none() }
+
+  override string toString() { result = sinkGroup }
+
+  override predicate hasLocationInfo(
+    string filepath, int startline, int startcolumn, int endline, int endcolumn
+  ) {
+    filepath = "" and startline = 0 and startcolumn = 0 and endline = 0 and endcolumn = 0
+  }
 }
 
 private predicate pathNode(
@@ -3495,6 +3594,15 @@ private module Subpaths {
  * Will only have results if `configuration` has non-empty sources and
  * sinks.
  */
+private predicate hasFlowPath(
+  PathNodeImpl flowsource, PathNodeImpl flowsink, Configuration configuration
+) {
+  flowsource.isFlowSource() and
+  flowsource.getConfiguration() = configuration and
+  (flowsource = flowsink or pathSuccPlus(flowsource, flowsink)) and
+  flowsink.isFlowSink()
+}
+
 private predicate flowsTo(
   PathNodeImpl flowsource, PathNodeSink flowsink, Node source, Node sink,
   Configuration configuration

From 818f02826c7f3408e5bfea2e39c3dba6fd844935 Mon Sep 17 00:00:00 2001
From: Owen Mansel-Chan <owen-mc@github.com>
Date: Tue, 29 Nov 2022 14:17:27 +0000
Subject: [PATCH 0815/1420] Update shared library files for go to f3dca95

---
 .../go/dataflow/internal/DataFlowImpl.qll     | 500 ++++++++++--------
 .../go/dataflow/internal/DataFlowImpl2.qll    | 500 ++++++++++--------
 .../dataflow/internal/DataFlowImplCommon.qll  |  49 ++
 3 files changed, 617 insertions(+), 432 deletions(-)

diff --git a/go/ql/lib/semmle/go/dataflow/internal/DataFlowImpl.qll b/go/ql/lib/semmle/go/dataflow/internal/DataFlowImpl.qll
index 3c41b1876dc..e4cfd5986be 100644
--- a/go/ql/lib/semmle/go/dataflow/internal/DataFlowImpl.qll
+++ b/go/ql/lib/semmle/go/dataflow/internal/DataFlowImpl.qll
@@ -319,8 +319,6 @@ private class ParamNodeEx extends NodeEx {
   }
 
   ParameterPosition getPosition() { this.isParameterOf(_, result) }
-
-  predicate allowParameterReturnInSelf() { allowParameterReturnInSelfCached(this.asNode()) }
 }
 
 private class RetNodeEx extends NodeEx {
@@ -608,6 +606,38 @@ private predicate hasSinkCallCtx(Configuration config) {
   )
 }
 
+/**
+ * Holds if flow from `p` to a return node of kind `kind` is allowed.
+ *
+ * We don't expect a parameter to return stored in itself, unless
+ * explicitly allowed
+ */
+bindingset[p, kind]
+private predicate parameterFlowThroughAllowed(ParamNodeEx p, ReturnKindExt kind) {
+  exists(ParameterPosition pos | p.isParameterOf(_, pos) |
+    not kind.(ParamUpdateReturnKind).getPosition() = pos
+    or
+    allowParameterReturnInSelfCached(p.asNode())
+  )
+}
+
+/**
+ * Holds if flow from a parameter at position `pos` inside `c` to a return node of
+ * kind `kind` is allowed.
+ *
+ * We don't expect a parameter to return stored in itself, unless
+ * explicitly allowed
+ */
+bindingset[c, pos, kind]
+private predicate parameterFlowThroughAllowed(
+  DataFlowCallable c, ParameterPosition pos, ReturnKindExt kind
+) {
+  exists(ParamNodeEx p |
+    p.isParameterOf(c, pos) and
+    parameterFlowThroughAllowed(p, kind)
+  )
+}
+
 private module Stage1 implements StageSig {
   class Ap = Unit;
 
@@ -981,21 +1011,22 @@ private module Stage1 implements StageSig {
    * candidate for the origin of a summary.
    */
   pragma[nomagic]
-  predicate parameterMayFlowThrough(ParamNodeEx p, DataFlowCallable c, Ap ap, Configuration config) {
-    exists(ReturnKindExt kind |
+  predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
+    exists(DataFlowCallable c, ReturnKindExt kind |
       throughFlowNodeCand(p, config) and
       returnFlowCallableNodeCand(c, kind, config) and
       p.getEnclosingCallable() = c and
       exists(ap) and
-      // we don't expect a parameter to return stored in itself, unless explicitly allowed
-      (
-        not kind.(ParamUpdateReturnKind).getPosition() = p.getPosition()
-        or
-        p.allowParameterReturnInSelf()
-      )
+      parameterFlowThroughAllowed(p, kind)
     )
   }
 
+  pragma[nomagic]
+  predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config) {
+    throughFlowNodeCand(ret, config) and
+    kind = ret.getKind()
+  }
+
   pragma[nomagic]
   predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
     exists(ArgNodeEx arg, boolean toReturn |
@@ -1052,12 +1083,16 @@ private predicate viableReturnPosOutNodeCand1(
  */
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand1(
-  DataFlowCall call, RetNodeEx ret, NodeEx out, Configuration config
+  DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, Configuration config
 ) {
-  viableReturnPosOutNodeCand1(call, ret.getReturnPosition(), out, config) and
-  Stage1::revFlow(ret, config) and
-  not outBarrier(ret, config) and
-  not inBarrier(out, config)
+  exists(ReturnPosition pos |
+    viableReturnPosOutNodeCand1(call, pos, out, config) and
+    pos = ret.getReturnPosition() and
+    kind = pos.getKind() and
+    Stage1::revFlow(ret, config) and
+    not outBarrier(ret, config) and
+    not inBarrier(out, config)
+  )
 }
 
 pragma[nomagic]
@@ -1087,10 +1122,11 @@ private predicate flowIntoCallNodeCand1(
  * edge in the graph of paths between sources and sinks that ignores call
  * contexts.
  */
+pragma[nomagic]
 private int branch(NodeEx n1, Configuration conf) {
   result =
     strictcount(NodeEx n |
-      flowOutOfCallNodeCand1(_, n1, n, conf) or flowIntoCallNodeCand1(_, n1, n, conf)
+      flowOutOfCallNodeCand1(_, n1, _, n, conf) or flowIntoCallNodeCand1(_, n1, n, conf)
     )
 }
 
@@ -1099,10 +1135,11 @@ private int branch(NodeEx n1, Configuration conf) {
  * edge in the graph of paths between sources and sinks that ignores call
  * contexts.
  */
+pragma[nomagic]
 private int join(NodeEx n2, Configuration conf) {
   result =
     strictcount(NodeEx n |
-      flowOutOfCallNodeCand1(_, n, n2, conf) or flowIntoCallNodeCand1(_, n, n2, conf)
+      flowOutOfCallNodeCand1(_, n, _, n2, conf) or flowIntoCallNodeCand1(_, n, n2, conf)
     )
 }
 
@@ -1115,12 +1152,13 @@ private int join(NodeEx n2, Configuration conf) {
  */
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand1(
-  DataFlowCall call, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow, Configuration config
+  DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
+  Configuration config
 ) {
-  flowOutOfCallNodeCand1(call, ret, out, config) and
+  flowOutOfCallNodeCand1(call, ret, kind, out, pragma[only_bind_into](config)) and
   exists(int b, int j |
-    b = branch(ret, config) and
-    j = join(out, config) and
+    b = branch(ret, pragma[only_bind_into](config)) and
+    j = join(out, pragma[only_bind_into](config)) and
     if b.minimum(j) <= config.fieldFlowBranchLimit()
     then allowsFieldFlow = true
     else allowsFieldFlow = false
@@ -1136,10 +1174,10 @@ pragma[nomagic]
 private predicate flowIntoCallNodeCand1(
   DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
 ) {
-  flowIntoCallNodeCand1(call, arg, p, config) and
+  flowIntoCallNodeCand1(call, arg, p, pragma[only_bind_into](config)) and
   exists(int b, int j |
-    b = branch(arg, config) and
-    j = join(p, config) and
+    b = branch(arg, pragma[only_bind_into](config)) and
+    j = join(p, pragma[only_bind_into](config)) and
     if b.minimum(j) <= config.fieldFlowBranchLimit()
     then allowsFieldFlow = true
     else allowsFieldFlow = false
@@ -1156,7 +1194,9 @@ private signature module StageSig {
 
   predicate callMayFlowThroughRev(DataFlowCall call, Configuration config);
 
-  predicate parameterMayFlowThrough(ParamNodeEx p, DataFlowCallable c, Ap ap, Configuration config);
+  predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config);
+
+  predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config);
 
   predicate storeStepCand(
     NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, DataFlowType contentType,
@@ -1222,7 +1262,8 @@ private module MkStage<StageSig PrevStage> {
     );
 
     predicate flowOutOfCall(
-      DataFlowCall call, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow, Configuration config
+      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
+      Configuration config
     );
 
     predicate flowIntoCall(
@@ -1247,14 +1288,14 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate flowThroughOutOfCall(
-      DataFlowCall call, CcCall ccc, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow,
-      Configuration config
+      DataFlowCall call, DataFlowCallable c, CcCall ccc, RetNodeEx ret, ReturnKindExt kind,
+      NodeEx out, boolean allowsFieldFlow, Configuration config
     ) {
-      flowOutOfCall(call, ret, out, allowsFieldFlow, pragma[only_bind_into](config)) and
+      flowOutOfCall(call, ret, kind, out, allowsFieldFlow, pragma[only_bind_into](config)) and
       PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
-      PrevStage::parameterMayFlowThrough(_, ret.getEnclosingCallable(), _,
-        pragma[only_bind_into](config)) and
-      matchesCall(ccc, call)
+      PrevStage::returnMayFlowThrough(ret, kind, pragma[only_bind_into](config)) and
+      matchesCall(ccc, call) and
+      c = ret.getEnclosingCallable()
     }
 
     /**
@@ -1262,29 +1303,32 @@ private module MkStage<StageSig PrevStage> {
      * configuration `config`.
      *
      * The call context `cc` records whether the node is reached through an
-     * argument in a call, and if so, `argAp` records the access path of that
-     * argument.
+     * argument in a call, and if so, `summaryCtx` and `argAp` record the
+     * corresponding parameter position and access path of that argument, respectively.
      */
     pragma[nomagic]
     additional predicate fwdFlow(
-      NodeEx node, FlowState state, Cc cc, ApOption argAp, Ap ap, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      Ap ap, Configuration config
     ) {
-      fwdFlow0(node, state, cc, argAp, ap, config) and
+      fwdFlow0(node, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::revFlow(node, state, unbindApa(getApprox(ap)), config) and
       filter(node, state, ap, config)
     }
 
     pragma[nomagic]
     private predicate fwdFlow0(
-      NodeEx node, FlowState state, Cc cc, ApOption argAp, Ap ap, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      Ap ap, Configuration config
     ) {
       sourceNode(node, state, config) and
       (if hasSourceCallCtx(config) then cc = ccSomeCall() else cc = ccNone()) and
       argAp = apNone() and
+      summaryCtx = TParameterPositionNone() and
       ap = getApNil(node)
       or
       exists(NodeEx mid, FlowState state0, Ap ap0, LocalCc localCc |
-        fwdFlow(mid, state0, cc, argAp, ap0, config) and
+        fwdFlow(mid, state0, cc, summaryCtx, argAp, ap0, config) and
         localCc = getLocalCc(mid, cc)
       |
         localStep(mid, state0, node, state, true, _, config, localCc) and
@@ -1295,65 +1339,82 @@ private module MkStage<StageSig PrevStage> {
       )
       or
       exists(NodeEx mid |
-        fwdFlow(mid, pragma[only_bind_into](state), _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, pragma[only_bind_into](config)) and
         jumpStep(mid, node, config) and
         cc = ccNone() and
+        summaryCtx = TParameterPositionNone() and
         argAp = apNone()
       )
       or
       exists(NodeEx mid, ApNil nil |
-        fwdFlow(mid, state, _, _, nil, pragma[only_bind_into](config)) and
+        fwdFlow(mid, state, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStep(mid, node, config) and
         cc = ccNone() and
+        summaryCtx = TParameterPositionNone() and
         argAp = apNone() and
         ap = getApNil(node)
       )
       or
       exists(NodeEx mid, FlowState state0, ApNil nil |
-        fwdFlow(mid, state0, _, _, nil, pragma[only_bind_into](config)) and
+        fwdFlow(mid, state0, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStateStep(mid, state0, node, state, config) and
         cc = ccNone() and
+        summaryCtx = TParameterPositionNone() and
         argAp = apNone() and
         ap = getApNil(node)
       )
       or
       // store
       exists(TypedContent tc, Ap ap0 |
-        fwdFlowStore(_, ap0, tc, node, state, cc, argAp, config) and
+        fwdFlowStore(_, ap0, tc, node, state, cc, summaryCtx, argAp, config) and
         ap = apCons(tc, ap0)
       )
       or
       // read
       exists(Ap ap0, Content c |
-        fwdFlowRead(ap0, c, _, node, state, cc, argAp, config) and
+        fwdFlowRead(ap0, c, _, node, state, cc, summaryCtx, argAp, config) and
         fwdFlowConsCand(ap0, c, ap, config)
       )
       or
       // flow into a callable
       exists(ApApprox apa |
-        fwdFlowIn(_, node, state, _, cc, _, ap, config) and
+        fwdFlowIn(_, node, state, _, cc, _, _, ap, config) and
         apa = getApprox(ap) and
-        if PrevStage::parameterMayFlowThrough(node, _, apa, config)
-        then argAp = apSome(ap)
-        else argAp = apNone()
+        if PrevStage::parameterMayFlowThrough(node, apa, config)
+        then (
+          summaryCtx = TParameterPositionSome(node.(ParamNodeEx).getPosition()) and
+          argAp = apSome(ap)
+        ) else (
+          summaryCtx = TParameterPositionNone() and argAp = apNone()
+        )
       )
       or
       // flow out of a callable
-      fwdFlowOutNotFromArg(node, state, cc, argAp, ap, config)
+      exists(
+        DataFlowCall call, RetNodeEx ret, boolean allowsFieldFlow, CcNoCall innercc,
+        DataFlowCallable inner
+      |
+        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, config) and
+        flowOutOfCall(call, ret, _, node, allowsFieldFlow, config) and
+        inner = ret.getEnclosingCallable() and
+        cc = getCallContextReturn(inner, call, innercc) and
+        if allowsFieldFlow = false then ap instanceof ApNil else any()
+      )
       or
-      exists(DataFlowCall call, Ap argAp0 |
-        fwdFlowOutFromArg(call, node, state, argAp0, ap, config) and
-        fwdFlowIsEntered(call, cc, argAp, argAp0, config)
+      // flow through a callable
+      exists(DataFlowCall call, ParameterPosition summaryCtx0, Ap argAp0 |
+        fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, config) and
+        fwdFlowIsEntered(call, cc, summaryCtx, argAp, summaryCtx0, argAp0, config)
       )
     }
 
     pragma[nomagic]
     private predicate fwdFlowStore(
-      NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc, ApOption argAp,
-      Configuration config
+      NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc,
+      ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
     ) {
       exists(DataFlowType contentType |
-        fwdFlow(node1, state, cc, argAp, ap1, config) and
+        fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, config) and
         PrevStage::storeStepCand(node1, unbindApa(getApprox(ap1)), tc, node2, contentType, config) and
         typecheckStore(ap1, contentType)
       )
@@ -1366,7 +1427,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowConsCand(Ap cons, Content c, Ap tail, Configuration config) {
       exists(TypedContent tc |
-        fwdFlowStore(_, tail, tc, _, _, _, _, config) and
+        fwdFlowStore(_, tail, tc, _, _, _, _, _, config) and
         tc.getContent() = c and
         cons = apCons(tc, tail)
       )
@@ -1374,21 +1435,21 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowRead(
-      Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc, ApOption argAp,
-      Configuration config
+      Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc,
+      ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
     ) {
-      fwdFlow(node1, state, cc, argAp, ap, config) and
+      fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, c, node2, config) and
       getHeadContent(ap) = c
     }
 
     pragma[nomagic]
     private predicate fwdFlowIn(
-      DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, Cc innercc, ApOption argAp,
-      Ap ap, Configuration config
+      DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, Cc innercc,
+      ParameterPositionOption summaryCtx, ApOption argAp, Ap ap, Configuration config
     ) {
       exists(ArgNodeEx arg, boolean allowsFieldFlow |
-        fwdFlow(arg, state, outercc, argAp, ap, config) and
+        fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, config) and
         flowIntoCall(call, arg, p, allowsFieldFlow, config) and
         innercc = getCallContextCall(call, p.getEnclosingCallable(), outercc) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
@@ -1396,29 +1457,19 @@ private module MkStage<StageSig PrevStage> {
     }
 
     pragma[nomagic]
-    private predicate fwdFlowOutNotFromArg(
-      NodeEx out, FlowState state, Cc ccOut, ApOption argAp, Ap ap, Configuration config
+    private predicate fwdFlowOutFromArg(
+      DataFlowCall call, NodeEx out, FlowState state, ParameterPosition summaryCtx, Ap argAp, Ap ap,
+      Configuration config
     ) {
       exists(
-        DataFlowCall call, RetNodeEx ret, boolean allowsFieldFlow, CcNoCall innercc,
-        DataFlowCallable inner
+        DataFlowCallable c, RetNodeEx ret, ReturnKindExt kind, boolean allowsFieldFlow, CcCall ccc
       |
-        fwdFlow(ret, state, innercc, argAp, ap, config) and
-        flowOutOfCall(call, ret, out, allowsFieldFlow, config) and
-        inner = ret.getEnclosingCallable() and
-        ccOut = getCallContextReturn(inner, call, innercc) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
-      )
-    }
-
-    pragma[nomagic]
-    private predicate fwdFlowOutFromArg(
-      DataFlowCall call, NodeEx out, FlowState state, Ap argAp, Ap ap, Configuration config
-    ) {
-      exists(RetNodeEx ret, boolean allowsFieldFlow, CcCall ccc |
-        fwdFlow(ret, state, ccc, apSome(argAp), ap, config) and
-        flowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, config) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
+        fwdFlow(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc),
+          TParameterPositionSome(pragma[only_bind_into](summaryCtx)), apSome(argAp), ap, config) and
+        flowThroughOutOfCall(call, pragma[only_bind_into](c), ccc, ret, kind, out, allowsFieldFlow,
+          config) and
+        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
+        parameterFlowThroughAllowed(c, pragma[only_bind_into](summaryCtx), kind)
       )
     }
 
@@ -1428,11 +1479,13 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate fwdFlowIsEntered(
-      DataFlowCall call, Cc cc, ApOption argAp, Ap ap, Configuration config
+      DataFlowCall call, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      ParameterPosition pos, Ap ap, Configuration config
     ) {
-      exists(ParamNodeEx p |
-        fwdFlowIn(call, p, _, cc, _, argAp, ap, config) and
-        PrevStage::parameterMayFlowThrough(p, _, unbindApa(getApprox(ap)), config)
+      exists(ParamNodeEx param |
+        fwdFlowIn(call, param, _, cc, _, summaryCtx, argAp, ap, config) and
+        PrevStage::parameterMayFlowThrough(param, unbindApa(getApprox(ap)), config) and
+        pos = param.getPosition()
       )
     }
 
@@ -1440,27 +1493,40 @@ private module MkStage<StageSig PrevStage> {
     private predicate storeStepFwd(
       NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, Ap ap2, Configuration config
     ) {
-      fwdFlowStore(node1, ap1, tc, node2, _, _, _, config) and
+      fwdFlowStore(node1, ap1, tc, node2, _, _, _, _, config) and
       ap2 = apCons(tc, ap1) and
-      fwdFlowRead(ap2, tc.getContent(), _, _, _, _, _, config)
+      fwdFlowRead(ap2, tc.getContent(), _, _, _, _, _, _, config)
     }
 
     private predicate readStepFwd(
       NodeEx n1, Ap ap1, Content c, NodeEx n2, Ap ap2, Configuration config
     ) {
-      fwdFlowRead(ap1, c, n1, n2, _, _, _, config) and
+      fwdFlowRead(ap1, c, n1, n2, _, _, _, _, config) and
       fwdFlowConsCand(ap1, c, ap2, config)
     }
 
     pragma[nomagic]
-    private predicate callMayFlowThroughFwd(DataFlowCall call, Configuration config) {
-      exists(Ap argAp0, NodeEx out, FlowState state, Cc cc, ApOption argAp, Ap ap |
-        fwdFlow(out, state, pragma[only_bind_into](cc), pragma[only_bind_into](argAp), ap,
+    private predicate returnFlowsThrough0(
+      RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, DataFlowCallable c,
+      ParameterPosition ppos, Ap argAp, Ap ap, Configuration config
+    ) {
+      exists(boolean allowsFieldFlow |
+        fwdFlow(ret, state, ccc, TParameterPositionSome(ppos), apSome(argAp), ap, config) and
+        flowThroughOutOfCall(_, c, _, pragma[only_bind_into](ret), kind, _, allowsFieldFlow,
           pragma[only_bind_into](config)) and
-        fwdFlowOutFromArg(call, out, state, argAp0, ap, config) and
-        fwdFlowIsEntered(pragma[only_bind_into](call), pragma[only_bind_into](cc),
-          pragma[only_bind_into](argAp), pragma[only_bind_into](argAp0),
-          pragma[only_bind_into](config))
+        if allowsFieldFlow = false then ap instanceof ApNil else any()
+      )
+    }
+
+    pragma[nomagic]
+    private predicate returnFlowsThrough(
+      RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, ParamNodeEx p, Ap argAp,
+      Ap ap, Configuration config
+    ) {
+      exists(DataFlowCallable c, ParameterPosition ppos |
+        returnFlowsThrough0(ret, kind, state, ccc, c, ppos, argAp, ap, config) and
+        p.isParameterOf(c, ppos) and
+        parameterFlowThroughAllowed(p, kind)
       )
     }
 
@@ -1468,118 +1534,130 @@ private module MkStage<StageSig PrevStage> {
     private predicate flowThroughIntoCall(
       DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
     ) {
-      flowIntoCall(call, arg, p, allowsFieldFlow, config) and
-      fwdFlow(arg, _, _, _, _, pragma[only_bind_into](config)) and
-      PrevStage::parameterMayFlowThrough(p, _, _, pragma[only_bind_into](config)) and
-      callMayFlowThroughFwd(call, pragma[only_bind_into](config))
-    }
-
-    pragma[nomagic]
-    private predicate returnNodeMayFlowThrough(
-      RetNodeEx ret, FlowState state, Ap ap, Configuration config
-    ) {
-      fwdFlow(ret, state, any(CcCall ccc), apSome(_), ap, config)
+      exists(Ap argAp |
+        flowIntoCall(call, pragma[only_bind_into](arg), pragma[only_bind_into](p), allowsFieldFlow,
+          pragma[only_bind_into](config)) and
+        fwdFlow(arg, _, _, _, _, pragma[only_bind_into](argAp), pragma[only_bind_into](config)) and
+        returnFlowsThrough(_, _, _, _, p, pragma[only_bind_into](argAp), _,
+          pragma[only_bind_into](config))
+      )
     }
 
     /**
      * Holds if `node` with access path `ap` is part of a path from a source to a
      * sink in the configuration `config`.
      *
-     * The Boolean `toReturn` records whether the node must be returned from the
-     * enclosing callable in order to reach a sink, and if so, `returnAp` records
-     * the access path of the returned value.
+     * The parameter `returnCtx` records whether (and how) the node must be returned
+     * from the enclosing callable in order to reach a sink, and if so, `returnAp`
+     * records the access path of the returned value.
      */
     pragma[nomagic]
     additional predicate revFlow(
-      NodeEx node, FlowState state, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
+      NodeEx node, FlowState state, ReturnCtx returnCtx, ApOption returnAp, Ap ap,
+      Configuration config
     ) {
-      revFlow0(node, state, toReturn, returnAp, ap, config) and
-      fwdFlow(node, state, _, _, ap, config)
+      revFlow0(node, state, returnCtx, returnAp, ap, config) and
+      fwdFlow(node, state, _, _, _, ap, config)
     }
 
     pragma[nomagic]
     private predicate revFlow0(
-      NodeEx node, FlowState state, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
+      NodeEx node, FlowState state, ReturnCtx returnCtx, ApOption returnAp, Ap ap,
+      Configuration config
     ) {
-      fwdFlow(node, state, _, _, ap, config) and
+      fwdFlow(node, state, _, _, _, ap, config) and
       sinkNode(node, state, config) and
-      (if hasSinkCallCtx(config) then toReturn = true else toReturn = false) and
+      (
+        if hasSinkCallCtx(config)
+        then returnCtx = TReturnCtxNoFlowThrough()
+        else returnCtx = TReturnCtxNone()
+      ) and
       returnAp = apNone() and
       ap instanceof ApNil
       or
       exists(NodeEx mid, FlowState state0 |
         localStep(node, state, mid, state0, true, _, config, _) and
-        revFlow(mid, state0, toReturn, returnAp, ap, config)
+        revFlow(mid, state0, returnCtx, returnAp, ap, config)
       )
       or
       exists(NodeEx mid, FlowState state0, ApNil nil |
-        fwdFlow(node, pragma[only_bind_into](state), _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(node, pragma[only_bind_into](state), _, _, _, ap, pragma[only_bind_into](config)) and
         localStep(node, pragma[only_bind_into](state), mid, state0, false, _, config, _) and
-        revFlow(mid, state0, toReturn, returnAp, nil, pragma[only_bind_into](config)) and
+        revFlow(mid, state0, returnCtx, returnAp, nil, pragma[only_bind_into](config)) and
         ap instanceof ApNil
       )
       or
       exists(NodeEx mid |
         jumpStep(node, mid, config) and
         revFlow(mid, state, _, _, ap, config) and
-        toReturn = false and
+        returnCtx = TReturnCtxNone() and
         returnAp = apNone()
       )
       or
       exists(NodeEx mid, ApNil nil |
-        fwdFlow(node, _, _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(node, _, _, _, _, ap, pragma[only_bind_into](config)) and
         additionalJumpStep(node, mid, config) and
         revFlow(pragma[only_bind_into](mid), state, _, _, nil, pragma[only_bind_into](config)) and
-        toReturn = false and
+        returnCtx = TReturnCtxNone() and
         returnAp = apNone() and
         ap instanceof ApNil
       )
       or
       exists(NodeEx mid, FlowState state0, ApNil nil |
-        fwdFlow(node, _, _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(node, _, _, _, _, ap, pragma[only_bind_into](config)) and
         additionalJumpStateStep(node, state, mid, state0, config) and
         revFlow(pragma[only_bind_into](mid), pragma[only_bind_into](state0), _, _, nil,
           pragma[only_bind_into](config)) and
-        toReturn = false and
+        returnCtx = TReturnCtxNone() and
         returnAp = apNone() and
         ap instanceof ApNil
       )
       or
       // store
       exists(Ap ap0, Content c |
-        revFlowStore(ap0, c, ap, node, state, _, _, toReturn, returnAp, config) and
+        revFlowStore(ap0, c, ap, node, state, _, _, returnCtx, returnAp, config) and
         revFlowConsCand(ap0, c, ap, config)
       )
       or
       // read
       exists(NodeEx mid, Ap ap0 |
-        revFlow(mid, state, toReturn, returnAp, ap0, config) and
+        revFlow(mid, state, returnCtx, returnAp, ap0, config) and
         readStepFwd(node, ap, _, mid, ap0, config)
       )
       or
       // flow into a callable
-      revFlowInNotToReturn(node, state, returnAp, ap, config) and
-      toReturn = false
+      exists(ParamNodeEx p, boolean allowsFieldFlow |
+        revFlow(p, state, TReturnCtxNone(), returnAp, ap, config) and
+        flowIntoCall(_, node, p, allowsFieldFlow, config) and
+        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
+        returnCtx = TReturnCtxNone()
+      )
       or
-      exists(DataFlowCall call, Ap returnAp0 |
-        revFlowInToReturn(call, node, state, returnAp0, ap, config) and
-        revFlowIsReturned(call, toReturn, returnAp, returnAp0, config)
+      // flow through a callable
+      exists(DataFlowCall call, ReturnKindExt returnKind0, Ap returnAp0 |
+        revFlowInToReturn(call, node, state, returnKind0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
       )
       or
       // flow out of a callable
-      revFlowOut(_, node, state, _, _, ap, config) and
-      toReturn = true and
-      if returnNodeMayFlowThrough(node, state, ap, config)
-      then returnAp = apSome(ap)
-      else returnAp = apNone()
+      exists(ReturnKindExt kind |
+        revFlowOut(_, node, kind, state, _, _, ap, config) and
+        if returnFlowsThrough(node, kind, state, _, _, _, ap, config)
+        then (
+          returnCtx = TReturnCtxMaybeFlowThrough(kind) and
+          returnAp = apSome(ap)
+        ) else (
+          returnCtx = TReturnCtxNoFlowThrough() and returnAp = apNone()
+        )
+      )
     }
 
     pragma[nomagic]
     private predicate revFlowStore(
       Ap ap0, Content c, Ap ap, NodeEx node, FlowState state, TypedContent tc, NodeEx mid,
-      boolean toReturn, ApOption returnAp, Configuration config
+      ReturnCtx returnCtx, ApOption returnAp, Configuration config
     ) {
-      revFlow(mid, state, toReturn, returnAp, ap0, config) and
+      revFlow(mid, state, returnCtx, returnAp, ap0, config) and
       storeStepFwd(node, ap, tc, mid, ap0, config) and
       tc.getContent() = c
     }
@@ -1599,35 +1677,27 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate revFlowOut(
-      DataFlowCall call, RetNodeEx ret, FlowState state, boolean toReturn, ApOption returnAp, Ap ap,
-      Configuration config
+      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, FlowState state, ReturnCtx returnCtx,
+      ApOption returnAp, Ap ap, Configuration config
     ) {
       exists(NodeEx out, boolean allowsFieldFlow |
-        revFlow(out, state, toReturn, returnAp, ap, config) and
-        flowOutOfCall(call, ret, out, allowsFieldFlow, config) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
-      )
-    }
-
-    pragma[nomagic]
-    private predicate revFlowInNotToReturn(
-      ArgNodeEx arg, FlowState state, ApOption returnAp, Ap ap, Configuration config
-    ) {
-      exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(p, state, false, returnAp, ap, config) and
-        flowIntoCall(_, arg, p, allowsFieldFlow, config) and
+        revFlow(out, state, returnCtx, returnAp, ap, config) and
+        flowOutOfCall(call, ret, kind, out, allowsFieldFlow, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
     pragma[nomagic]
     private predicate revFlowInToReturn(
-      DataFlowCall call, ArgNodeEx arg, FlowState state, Ap returnAp, Ap ap, Configuration config
+      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap,
+      Configuration config
     ) {
       exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(p, state, true, apSome(returnAp), ap, config) and
+        revFlow(pragma[only_bind_into](p), state,
+          TReturnCtxMaybeFlowThrough(pragma[only_bind_into](kind)), apSome(returnAp), ap, config) and
         flowThroughIntoCall(call, arg, p, allowsFieldFlow, config) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
+        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
+        parameterFlowThroughAllowed(p, kind)
       )
     }
 
@@ -1638,11 +1708,12 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate revFlowIsReturned(
-      DataFlowCall call, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
+      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnKindExt kind, Ap ap,
+      Configuration config
     ) {
       exists(RetNodeEx ret, FlowState state, CcCall ccc |
-        revFlowOut(call, ret, state, toReturn, returnAp, ap, config) and
-        fwdFlow(ret, state, ccc, apSome(_), ap, config) and
+        revFlowOut(call, ret, kind, state, returnCtx, returnAp, ap, config) and
+        returnFlowsThrough(ret, kind, state, ccc, _, _, ap, config) and
         matchesCall(ccc, call)
       )
     }
@@ -1713,40 +1784,39 @@ private module MkStage<StageSig PrevStage> {
       validAp(ap, config)
     }
 
-    pragma[noinline]
-    private predicate parameterFlow(
-      ParamNodeEx p, Ap ap, Ap ap0, DataFlowCallable c, Configuration config
+    pragma[nomagic]
+    private predicate parameterFlowsThroughRev(
+      ParamNodeEx p, Ap ap, ReturnKindExt kind, Configuration config
     ) {
-      revFlow(p, _, true, apSome(ap0), ap, config) and
-      c = p.getEnclosingCallable()
+      revFlow(p, _, TReturnCtxMaybeFlowThrough(kind), apSome(_), ap, config) and
+      parameterFlowThroughAllowed(p, kind)
     }
 
-    predicate parameterMayFlowThrough(ParamNodeEx p, DataFlowCallable c, Ap ap, Configuration config) {
-      exists(RetNodeEx ret, FlowState state, Ap ap0, ReturnKindExt kind, ParameterPosition pos |
-        parameterFlow(p, ap, ap0, c, config) and
-        c = ret.getEnclosingCallable() and
-        revFlow(pragma[only_bind_into](ret), pragma[only_bind_into](state), true, apSome(_),
-          pragma[only_bind_into](ap0), pragma[only_bind_into](config)) and
-        fwdFlow(ret, state, any(CcCall ccc), apSome(ap), ap0, config) and
-        kind = ret.getKind() and
-        p.getPosition() = pos and
-        // we don't expect a parameter to return stored in itself, unless explicitly allowed
-        (
-          not kind.(ParamUpdateReturnKind).getPosition() = pos
-          or
-          p.allowParameterReturnInSelf()
-        )
+    pragma[nomagic]
+    predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
+      exists(RetNodeEx ret, ReturnKindExt kind |
+        returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
+        parameterFlowsThroughRev(p, ap, kind, config)
+      )
+    }
+
+    pragma[nomagic]
+    predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config) {
+      exists(ParamNodeEx p, Ap ap |
+        returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
+        parameterFlowsThroughRev(p, ap, kind, config)
       )
     }
 
     pragma[nomagic]
     predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
       exists(
-        Ap returnAp0, ArgNodeEx arg, FlowState state, boolean toReturn, ApOption returnAp, Ap ap
+        ReturnKindExt returnKind0, Ap returnAp0, ArgNodeEx arg, FlowState state,
+        ReturnCtx returnCtx, ApOption returnAp, Ap ap
       |
-        revFlow(arg, state, toReturn, returnAp, ap, config) and
-        revFlowInToReturn(call, arg, state, returnAp0, ap, config) and
-        revFlowIsReturned(call, toReturn, returnAp, returnAp0, config)
+        revFlow(arg, state, returnCtx, returnAp, ap, config) and
+        revFlowInToReturn(call, arg, state, returnKind0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
       )
     }
 
@@ -1754,14 +1824,13 @@ private module MkStage<StageSig PrevStage> {
       boolean fwd, int nodes, int fields, int conscand, int states, int tuples, Configuration config
     ) {
       fwd = true and
-      nodes = count(NodeEx node | fwdFlow(node, _, _, _, _, config)) and
+      nodes = count(NodeEx node | fwdFlow(node, _, _, _, _, _, config)) and
       fields = count(TypedContent f0 | fwdConsCand(f0, _, config)) and
       conscand = count(TypedContent f0, Ap ap | fwdConsCand(f0, ap, config)) and
-      states = count(FlowState state | fwdFlow(_, state, _, _, _, config)) and
+      states = count(FlowState state | fwdFlow(_, state, _, _, _, _, config)) and
       tuples =
-        count(NodeEx n, FlowState state, Cc cc, ApOption argAp, Ap ap |
-          fwdFlow(n, state, cc, argAp, ap, config)
-        )
+        count(NodeEx n, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+          Ap ap | fwdFlow(n, state, cc, summaryCtx, argAp, ap, config))
       or
       fwd = false and
       nodes = count(NodeEx node | revFlow(node, _, _, _, _, config)) and
@@ -1769,8 +1838,8 @@ private module MkStage<StageSig PrevStage> {
       conscand = count(TypedContent f0, Ap ap | consCand(f0, ap, config)) and
       states = count(FlowState state | revFlow(_, state, _, _, _, config)) and
       tuples =
-        count(NodeEx n, FlowState state, boolean b, ApOption retAp, Ap ap |
-          revFlow(n, state, b, retAp, ap, config)
+        count(NodeEx n, FlowState state, ReturnCtx returnCtx, ApOption retAp, Ap ap |
+          revFlow(n, state, returnCtx, retAp, ap, config)
         )
     }
     /* End: Stage logic. */
@@ -1915,7 +1984,7 @@ private module Stage2Param implements MkStage<Stage1>::StageParam {
     exists(lcc)
   }
 
-  predicate flowOutOfCall = flowOutOfCallNodeCand1/5;
+  predicate flowOutOfCall = flowOutOfCallNodeCand1/6;
 
   predicate flowIntoCall = flowIntoCallNodeCand1/5;
 
@@ -1951,9 +2020,10 @@ private module Stage2 implements StageSig {
 
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand2(
-  DataFlowCall call, RetNodeEx node1, NodeEx node2, boolean allowsFieldFlow, Configuration config
+  DataFlowCall call, RetNodeEx node1, ReturnKindExt kind, NodeEx node2, boolean allowsFieldFlow,
+  Configuration config
 ) {
-  flowOutOfCallNodeCand1(call, node1, node2, allowsFieldFlow, config) and
+  flowOutOfCallNodeCand1(call, node1, kind, node2, allowsFieldFlow, config) and
   Stage2::revFlow(node2, pragma[only_bind_into](config)) and
   Stage2::revFlowAlias(node1, pragma[only_bind_into](config))
 }
@@ -2021,8 +2091,8 @@ private module LocalFlowBigStep {
     exists(NodeEx next | Stage2::revFlow(next, state, config) |
       jumpStep(node, next, config) or
       additionalJumpStep(node, next, config) or
-      flowIntoCallNodeCand1(_, node, next, config) or
-      flowOutOfCallNodeCand1(_, node, next, config) or
+      flowIntoCallNodeCand2(_, node, next, _, config) or
+      flowOutOfCallNodeCand2(_, node, _, next, _, config) or
       Stage2::storeStepCand(node, _, _, next, _, config) or
       Stage2::readStepCand(node, _, next, config)
     )
@@ -2163,7 +2233,7 @@ private module Stage3Param implements MkStage<Stage2>::StageParam {
     localFlowBigStep(node1, state1, node2, state2, preservesValue, ap, config, _) and exists(lcc)
   }
 
-  predicate flowOutOfCall = flowOutOfCallNodeCand2/5;
+  predicate flowOutOfCall = flowOutOfCallNodeCand2/6;
 
   predicate flowIntoCall = flowIntoCallNodeCand2/5;
 
@@ -2233,8 +2303,9 @@ private predicate flowCandSummaryCtx(
   NodeEx node, FlowState state, AccessPathFront argApf, Configuration config
 ) {
   exists(AccessPathFront apf |
-    Stage3::revFlow(node, state, true, _, apf, config) and
-    Stage3::fwdFlow(node, state, any(Stage3::CcCall ccc), TAccessPathFrontSome(argApf), apf, config)
+    Stage3::revFlow(node, state, TReturnCtxMaybeFlowThrough(_), _, apf, config) and
+    Stage3::fwdFlow(node, state, any(Stage3::CcCall ccc), _, TAccessPathFrontSome(argApf), apf,
+      config)
   )
 }
 
@@ -2468,10 +2539,11 @@ private module Stage4Param implements MkStage<Stage3>::StageParam {
 
   pragma[nomagic]
   predicate flowOutOfCall(
-    DataFlowCall call, RetNodeEx node1, NodeEx node2, boolean allowsFieldFlow, Configuration config
+    DataFlowCall call, RetNodeEx node1, ReturnKindExt kind, NodeEx node2, boolean allowsFieldFlow,
+    Configuration config
   ) {
     exists(FlowState state |
-      flowOutOfCallNodeCand2(call, node1, node2, allowsFieldFlow, config) and
+      flowOutOfCallNodeCand2(call, node1, kind, node2, allowsFieldFlow, config) and
       PrevStage::revFlow(node2, pragma[only_bind_into](state), _, pragma[only_bind_into](config)) and
       PrevStage::revFlowAlias(node1, pragma[only_bind_into](state), _,
         pragma[only_bind_into](config))
@@ -2508,13 +2580,14 @@ private Configuration unbindConf(Configuration conf) {
 
 pragma[nomagic]
 private predicate nodeMayUseSummary0(
-  NodeEx n, DataFlowCallable c, FlowState state, AccessPathApprox apa, Configuration config
+  NodeEx n, DataFlowCallable c, ParameterPosition pos, FlowState state, AccessPathApprox apa,
+  Configuration config
 ) {
   exists(AccessPathApprox apa0 |
-    Stage4::parameterMayFlowThrough(_, c, _, _) and
-    Stage4::revFlow(n, state, true, _, apa0, config) and
-    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TAccessPathApproxSome(apa), apa0, config) and
-    n.getEnclosingCallable() = c
+    c = n.getEnclosingCallable() and
+    Stage4::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
+    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TParameterPositionSome(pos),
+      TAccessPathApproxSome(apa), apa0, config)
   )
 }
 
@@ -2522,9 +2595,10 @@ pragma[nomagic]
 private predicate nodeMayUseSummary(
   NodeEx n, FlowState state, AccessPathApprox apa, Configuration config
 ) {
-  exists(DataFlowCallable c |
-    Stage4::parameterMayFlowThrough(_, c, apa, config) and
-    nodeMayUseSummary0(n, c, state, apa, config)
+  exists(DataFlowCallable c, ParameterPosition pos, ParamNodeEx p |
+    Stage4::parameterMayFlowThrough(p, apa, config) and
+    nodeMayUseSummary0(n, c, pos, state, apa, config) and
+    p.isParameterOf(c, pos)
   )
 }
 
@@ -2532,7 +2606,7 @@ private newtype TSummaryCtx =
   TSummaryCtxNone() or
   TSummaryCtxSome(ParamNodeEx p, FlowState state, AccessPath ap) {
     exists(Configuration config |
-      Stage4::parameterMayFlowThrough(p, _, ap.getApprox(), config) and
+      Stage4::parameterMayFlowThrough(p, ap.getApprox(), config) and
       Stage4::revFlow(p, state, _, config)
     )
   }
@@ -3453,17 +3527,11 @@ private predicate paramFlowsThrough(
   ReturnKindExt kind, FlowState state, CallContextCall cc, SummaryCtxSome sc, AccessPath ap,
   AccessPathApprox apa, Configuration config
 ) {
-  exists(PathNodeMid mid, RetNodeEx ret, ParameterPosition pos |
+  exists(PathNodeMid mid, RetNodeEx ret |
     pathNode(mid, ret, state, cc, sc, ap, config, _) and
     kind = ret.getKind() and
     apa = ap.getApprox() and
-    pos = sc.getParameterPos() and
-    // we don't expect a parameter to return stored in itself, unless explicitly allowed
-    (
-      not kind.(ParamUpdateReturnKind).getPosition() = pos
-      or
-      sc.getParamNode().allowParameterReturnInSelf()
-    )
+    parameterFlowThroughAllowed(sc.getParamNode(), kind)
   )
 }
 
diff --git a/go/ql/lib/semmle/go/dataflow/internal/DataFlowImpl2.qll b/go/ql/lib/semmle/go/dataflow/internal/DataFlowImpl2.qll
index 3c41b1876dc..e4cfd5986be 100644
--- a/go/ql/lib/semmle/go/dataflow/internal/DataFlowImpl2.qll
+++ b/go/ql/lib/semmle/go/dataflow/internal/DataFlowImpl2.qll
@@ -319,8 +319,6 @@ private class ParamNodeEx extends NodeEx {
   }
 
   ParameterPosition getPosition() { this.isParameterOf(_, result) }
-
-  predicate allowParameterReturnInSelf() { allowParameterReturnInSelfCached(this.asNode()) }
 }
 
 private class RetNodeEx extends NodeEx {
@@ -608,6 +606,38 @@ private predicate hasSinkCallCtx(Configuration config) {
   )
 }
 
+/**
+ * Holds if flow from `p` to a return node of kind `kind` is allowed.
+ *
+ * We don't expect a parameter to return stored in itself, unless
+ * explicitly allowed
+ */
+bindingset[p, kind]
+private predicate parameterFlowThroughAllowed(ParamNodeEx p, ReturnKindExt kind) {
+  exists(ParameterPosition pos | p.isParameterOf(_, pos) |
+    not kind.(ParamUpdateReturnKind).getPosition() = pos
+    or
+    allowParameterReturnInSelfCached(p.asNode())
+  )
+}
+
+/**
+ * Holds if flow from a parameter at position `pos` inside `c` to a return node of
+ * kind `kind` is allowed.
+ *
+ * We don't expect a parameter to return stored in itself, unless
+ * explicitly allowed
+ */
+bindingset[c, pos, kind]
+private predicate parameterFlowThroughAllowed(
+  DataFlowCallable c, ParameterPosition pos, ReturnKindExt kind
+) {
+  exists(ParamNodeEx p |
+    p.isParameterOf(c, pos) and
+    parameterFlowThroughAllowed(p, kind)
+  )
+}
+
 private module Stage1 implements StageSig {
   class Ap = Unit;
 
@@ -981,21 +1011,22 @@ private module Stage1 implements StageSig {
    * candidate for the origin of a summary.
    */
   pragma[nomagic]
-  predicate parameterMayFlowThrough(ParamNodeEx p, DataFlowCallable c, Ap ap, Configuration config) {
-    exists(ReturnKindExt kind |
+  predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
+    exists(DataFlowCallable c, ReturnKindExt kind |
       throughFlowNodeCand(p, config) and
       returnFlowCallableNodeCand(c, kind, config) and
       p.getEnclosingCallable() = c and
       exists(ap) and
-      // we don't expect a parameter to return stored in itself, unless explicitly allowed
-      (
-        not kind.(ParamUpdateReturnKind).getPosition() = p.getPosition()
-        or
-        p.allowParameterReturnInSelf()
-      )
+      parameterFlowThroughAllowed(p, kind)
     )
   }
 
+  pragma[nomagic]
+  predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config) {
+    throughFlowNodeCand(ret, config) and
+    kind = ret.getKind()
+  }
+
   pragma[nomagic]
   predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
     exists(ArgNodeEx arg, boolean toReturn |
@@ -1052,12 +1083,16 @@ private predicate viableReturnPosOutNodeCand1(
  */
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand1(
-  DataFlowCall call, RetNodeEx ret, NodeEx out, Configuration config
+  DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, Configuration config
 ) {
-  viableReturnPosOutNodeCand1(call, ret.getReturnPosition(), out, config) and
-  Stage1::revFlow(ret, config) and
-  not outBarrier(ret, config) and
-  not inBarrier(out, config)
+  exists(ReturnPosition pos |
+    viableReturnPosOutNodeCand1(call, pos, out, config) and
+    pos = ret.getReturnPosition() and
+    kind = pos.getKind() and
+    Stage1::revFlow(ret, config) and
+    not outBarrier(ret, config) and
+    not inBarrier(out, config)
+  )
 }
 
 pragma[nomagic]
@@ -1087,10 +1122,11 @@ private predicate flowIntoCallNodeCand1(
  * edge in the graph of paths between sources and sinks that ignores call
  * contexts.
  */
+pragma[nomagic]
 private int branch(NodeEx n1, Configuration conf) {
   result =
     strictcount(NodeEx n |
-      flowOutOfCallNodeCand1(_, n1, n, conf) or flowIntoCallNodeCand1(_, n1, n, conf)
+      flowOutOfCallNodeCand1(_, n1, _, n, conf) or flowIntoCallNodeCand1(_, n1, n, conf)
     )
 }
 
@@ -1099,10 +1135,11 @@ private int branch(NodeEx n1, Configuration conf) {
  * edge in the graph of paths between sources and sinks that ignores call
  * contexts.
  */
+pragma[nomagic]
 private int join(NodeEx n2, Configuration conf) {
   result =
     strictcount(NodeEx n |
-      flowOutOfCallNodeCand1(_, n, n2, conf) or flowIntoCallNodeCand1(_, n, n2, conf)
+      flowOutOfCallNodeCand1(_, n, _, n2, conf) or flowIntoCallNodeCand1(_, n, n2, conf)
     )
 }
 
@@ -1115,12 +1152,13 @@ private int join(NodeEx n2, Configuration conf) {
  */
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand1(
-  DataFlowCall call, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow, Configuration config
+  DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
+  Configuration config
 ) {
-  flowOutOfCallNodeCand1(call, ret, out, config) and
+  flowOutOfCallNodeCand1(call, ret, kind, out, pragma[only_bind_into](config)) and
   exists(int b, int j |
-    b = branch(ret, config) and
-    j = join(out, config) and
+    b = branch(ret, pragma[only_bind_into](config)) and
+    j = join(out, pragma[only_bind_into](config)) and
     if b.minimum(j) <= config.fieldFlowBranchLimit()
     then allowsFieldFlow = true
     else allowsFieldFlow = false
@@ -1136,10 +1174,10 @@ pragma[nomagic]
 private predicate flowIntoCallNodeCand1(
   DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
 ) {
-  flowIntoCallNodeCand1(call, arg, p, config) and
+  flowIntoCallNodeCand1(call, arg, p, pragma[only_bind_into](config)) and
   exists(int b, int j |
-    b = branch(arg, config) and
-    j = join(p, config) and
+    b = branch(arg, pragma[only_bind_into](config)) and
+    j = join(p, pragma[only_bind_into](config)) and
     if b.minimum(j) <= config.fieldFlowBranchLimit()
     then allowsFieldFlow = true
     else allowsFieldFlow = false
@@ -1156,7 +1194,9 @@ private signature module StageSig {
 
   predicate callMayFlowThroughRev(DataFlowCall call, Configuration config);
 
-  predicate parameterMayFlowThrough(ParamNodeEx p, DataFlowCallable c, Ap ap, Configuration config);
+  predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config);
+
+  predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config);
 
   predicate storeStepCand(
     NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, DataFlowType contentType,
@@ -1222,7 +1262,8 @@ private module MkStage<StageSig PrevStage> {
     );
 
     predicate flowOutOfCall(
-      DataFlowCall call, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow, Configuration config
+      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
+      Configuration config
     );
 
     predicate flowIntoCall(
@@ -1247,14 +1288,14 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate flowThroughOutOfCall(
-      DataFlowCall call, CcCall ccc, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow,
-      Configuration config
+      DataFlowCall call, DataFlowCallable c, CcCall ccc, RetNodeEx ret, ReturnKindExt kind,
+      NodeEx out, boolean allowsFieldFlow, Configuration config
     ) {
-      flowOutOfCall(call, ret, out, allowsFieldFlow, pragma[only_bind_into](config)) and
+      flowOutOfCall(call, ret, kind, out, allowsFieldFlow, pragma[only_bind_into](config)) and
       PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
-      PrevStage::parameterMayFlowThrough(_, ret.getEnclosingCallable(), _,
-        pragma[only_bind_into](config)) and
-      matchesCall(ccc, call)
+      PrevStage::returnMayFlowThrough(ret, kind, pragma[only_bind_into](config)) and
+      matchesCall(ccc, call) and
+      c = ret.getEnclosingCallable()
     }
 
     /**
@@ -1262,29 +1303,32 @@ private module MkStage<StageSig PrevStage> {
      * configuration `config`.
      *
      * The call context `cc` records whether the node is reached through an
-     * argument in a call, and if so, `argAp` records the access path of that
-     * argument.
+     * argument in a call, and if so, `summaryCtx` and `argAp` record the
+     * corresponding parameter position and access path of that argument, respectively.
      */
     pragma[nomagic]
     additional predicate fwdFlow(
-      NodeEx node, FlowState state, Cc cc, ApOption argAp, Ap ap, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      Ap ap, Configuration config
     ) {
-      fwdFlow0(node, state, cc, argAp, ap, config) and
+      fwdFlow0(node, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::revFlow(node, state, unbindApa(getApprox(ap)), config) and
       filter(node, state, ap, config)
     }
 
     pragma[nomagic]
     private predicate fwdFlow0(
-      NodeEx node, FlowState state, Cc cc, ApOption argAp, Ap ap, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      Ap ap, Configuration config
     ) {
       sourceNode(node, state, config) and
       (if hasSourceCallCtx(config) then cc = ccSomeCall() else cc = ccNone()) and
       argAp = apNone() and
+      summaryCtx = TParameterPositionNone() and
       ap = getApNil(node)
       or
       exists(NodeEx mid, FlowState state0, Ap ap0, LocalCc localCc |
-        fwdFlow(mid, state0, cc, argAp, ap0, config) and
+        fwdFlow(mid, state0, cc, summaryCtx, argAp, ap0, config) and
         localCc = getLocalCc(mid, cc)
       |
         localStep(mid, state0, node, state, true, _, config, localCc) and
@@ -1295,65 +1339,82 @@ private module MkStage<StageSig PrevStage> {
       )
       or
       exists(NodeEx mid |
-        fwdFlow(mid, pragma[only_bind_into](state), _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, pragma[only_bind_into](config)) and
         jumpStep(mid, node, config) and
         cc = ccNone() and
+        summaryCtx = TParameterPositionNone() and
         argAp = apNone()
       )
       or
       exists(NodeEx mid, ApNil nil |
-        fwdFlow(mid, state, _, _, nil, pragma[only_bind_into](config)) and
+        fwdFlow(mid, state, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStep(mid, node, config) and
         cc = ccNone() and
+        summaryCtx = TParameterPositionNone() and
         argAp = apNone() and
         ap = getApNil(node)
       )
       or
       exists(NodeEx mid, FlowState state0, ApNil nil |
-        fwdFlow(mid, state0, _, _, nil, pragma[only_bind_into](config)) and
+        fwdFlow(mid, state0, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStateStep(mid, state0, node, state, config) and
         cc = ccNone() and
+        summaryCtx = TParameterPositionNone() and
         argAp = apNone() and
         ap = getApNil(node)
       )
       or
       // store
       exists(TypedContent tc, Ap ap0 |
-        fwdFlowStore(_, ap0, tc, node, state, cc, argAp, config) and
+        fwdFlowStore(_, ap0, tc, node, state, cc, summaryCtx, argAp, config) and
         ap = apCons(tc, ap0)
       )
       or
       // read
       exists(Ap ap0, Content c |
-        fwdFlowRead(ap0, c, _, node, state, cc, argAp, config) and
+        fwdFlowRead(ap0, c, _, node, state, cc, summaryCtx, argAp, config) and
         fwdFlowConsCand(ap0, c, ap, config)
       )
       or
       // flow into a callable
       exists(ApApprox apa |
-        fwdFlowIn(_, node, state, _, cc, _, ap, config) and
+        fwdFlowIn(_, node, state, _, cc, _, _, ap, config) and
         apa = getApprox(ap) and
-        if PrevStage::parameterMayFlowThrough(node, _, apa, config)
-        then argAp = apSome(ap)
-        else argAp = apNone()
+        if PrevStage::parameterMayFlowThrough(node, apa, config)
+        then (
+          summaryCtx = TParameterPositionSome(node.(ParamNodeEx).getPosition()) and
+          argAp = apSome(ap)
+        ) else (
+          summaryCtx = TParameterPositionNone() and argAp = apNone()
+        )
       )
       or
       // flow out of a callable
-      fwdFlowOutNotFromArg(node, state, cc, argAp, ap, config)
+      exists(
+        DataFlowCall call, RetNodeEx ret, boolean allowsFieldFlow, CcNoCall innercc,
+        DataFlowCallable inner
+      |
+        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, config) and
+        flowOutOfCall(call, ret, _, node, allowsFieldFlow, config) and
+        inner = ret.getEnclosingCallable() and
+        cc = getCallContextReturn(inner, call, innercc) and
+        if allowsFieldFlow = false then ap instanceof ApNil else any()
+      )
       or
-      exists(DataFlowCall call, Ap argAp0 |
-        fwdFlowOutFromArg(call, node, state, argAp0, ap, config) and
-        fwdFlowIsEntered(call, cc, argAp, argAp0, config)
+      // flow through a callable
+      exists(DataFlowCall call, ParameterPosition summaryCtx0, Ap argAp0 |
+        fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, config) and
+        fwdFlowIsEntered(call, cc, summaryCtx, argAp, summaryCtx0, argAp0, config)
       )
     }
 
     pragma[nomagic]
     private predicate fwdFlowStore(
-      NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc, ApOption argAp,
-      Configuration config
+      NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc,
+      ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
     ) {
       exists(DataFlowType contentType |
-        fwdFlow(node1, state, cc, argAp, ap1, config) and
+        fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, config) and
         PrevStage::storeStepCand(node1, unbindApa(getApprox(ap1)), tc, node2, contentType, config) and
         typecheckStore(ap1, contentType)
       )
@@ -1366,7 +1427,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowConsCand(Ap cons, Content c, Ap tail, Configuration config) {
       exists(TypedContent tc |
-        fwdFlowStore(_, tail, tc, _, _, _, _, config) and
+        fwdFlowStore(_, tail, tc, _, _, _, _, _, config) and
         tc.getContent() = c and
         cons = apCons(tc, tail)
       )
@@ -1374,21 +1435,21 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowRead(
-      Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc, ApOption argAp,
-      Configuration config
+      Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc,
+      ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
     ) {
-      fwdFlow(node1, state, cc, argAp, ap, config) and
+      fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, c, node2, config) and
       getHeadContent(ap) = c
     }
 
     pragma[nomagic]
     private predicate fwdFlowIn(
-      DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, Cc innercc, ApOption argAp,
-      Ap ap, Configuration config
+      DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, Cc innercc,
+      ParameterPositionOption summaryCtx, ApOption argAp, Ap ap, Configuration config
     ) {
       exists(ArgNodeEx arg, boolean allowsFieldFlow |
-        fwdFlow(arg, state, outercc, argAp, ap, config) and
+        fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, config) and
         flowIntoCall(call, arg, p, allowsFieldFlow, config) and
         innercc = getCallContextCall(call, p.getEnclosingCallable(), outercc) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
@@ -1396,29 +1457,19 @@ private module MkStage<StageSig PrevStage> {
     }
 
     pragma[nomagic]
-    private predicate fwdFlowOutNotFromArg(
-      NodeEx out, FlowState state, Cc ccOut, ApOption argAp, Ap ap, Configuration config
+    private predicate fwdFlowOutFromArg(
+      DataFlowCall call, NodeEx out, FlowState state, ParameterPosition summaryCtx, Ap argAp, Ap ap,
+      Configuration config
     ) {
       exists(
-        DataFlowCall call, RetNodeEx ret, boolean allowsFieldFlow, CcNoCall innercc,
-        DataFlowCallable inner
+        DataFlowCallable c, RetNodeEx ret, ReturnKindExt kind, boolean allowsFieldFlow, CcCall ccc
       |
-        fwdFlow(ret, state, innercc, argAp, ap, config) and
-        flowOutOfCall(call, ret, out, allowsFieldFlow, config) and
-        inner = ret.getEnclosingCallable() and
-        ccOut = getCallContextReturn(inner, call, innercc) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
-      )
-    }
-
-    pragma[nomagic]
-    private predicate fwdFlowOutFromArg(
-      DataFlowCall call, NodeEx out, FlowState state, Ap argAp, Ap ap, Configuration config
-    ) {
-      exists(RetNodeEx ret, boolean allowsFieldFlow, CcCall ccc |
-        fwdFlow(ret, state, ccc, apSome(argAp), ap, config) and
-        flowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, config) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
+        fwdFlow(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc),
+          TParameterPositionSome(pragma[only_bind_into](summaryCtx)), apSome(argAp), ap, config) and
+        flowThroughOutOfCall(call, pragma[only_bind_into](c), ccc, ret, kind, out, allowsFieldFlow,
+          config) and
+        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
+        parameterFlowThroughAllowed(c, pragma[only_bind_into](summaryCtx), kind)
       )
     }
 
@@ -1428,11 +1479,13 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate fwdFlowIsEntered(
-      DataFlowCall call, Cc cc, ApOption argAp, Ap ap, Configuration config
+      DataFlowCall call, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      ParameterPosition pos, Ap ap, Configuration config
     ) {
-      exists(ParamNodeEx p |
-        fwdFlowIn(call, p, _, cc, _, argAp, ap, config) and
-        PrevStage::parameterMayFlowThrough(p, _, unbindApa(getApprox(ap)), config)
+      exists(ParamNodeEx param |
+        fwdFlowIn(call, param, _, cc, _, summaryCtx, argAp, ap, config) and
+        PrevStage::parameterMayFlowThrough(param, unbindApa(getApprox(ap)), config) and
+        pos = param.getPosition()
       )
     }
 
@@ -1440,27 +1493,40 @@ private module MkStage<StageSig PrevStage> {
     private predicate storeStepFwd(
       NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, Ap ap2, Configuration config
     ) {
-      fwdFlowStore(node1, ap1, tc, node2, _, _, _, config) and
+      fwdFlowStore(node1, ap1, tc, node2, _, _, _, _, config) and
       ap2 = apCons(tc, ap1) and
-      fwdFlowRead(ap2, tc.getContent(), _, _, _, _, _, config)
+      fwdFlowRead(ap2, tc.getContent(), _, _, _, _, _, _, config)
     }
 
     private predicate readStepFwd(
       NodeEx n1, Ap ap1, Content c, NodeEx n2, Ap ap2, Configuration config
     ) {
-      fwdFlowRead(ap1, c, n1, n2, _, _, _, config) and
+      fwdFlowRead(ap1, c, n1, n2, _, _, _, _, config) and
       fwdFlowConsCand(ap1, c, ap2, config)
     }
 
     pragma[nomagic]
-    private predicate callMayFlowThroughFwd(DataFlowCall call, Configuration config) {
-      exists(Ap argAp0, NodeEx out, FlowState state, Cc cc, ApOption argAp, Ap ap |
-        fwdFlow(out, state, pragma[only_bind_into](cc), pragma[only_bind_into](argAp), ap,
+    private predicate returnFlowsThrough0(
+      RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, DataFlowCallable c,
+      ParameterPosition ppos, Ap argAp, Ap ap, Configuration config
+    ) {
+      exists(boolean allowsFieldFlow |
+        fwdFlow(ret, state, ccc, TParameterPositionSome(ppos), apSome(argAp), ap, config) and
+        flowThroughOutOfCall(_, c, _, pragma[only_bind_into](ret), kind, _, allowsFieldFlow,
           pragma[only_bind_into](config)) and
-        fwdFlowOutFromArg(call, out, state, argAp0, ap, config) and
-        fwdFlowIsEntered(pragma[only_bind_into](call), pragma[only_bind_into](cc),
-          pragma[only_bind_into](argAp), pragma[only_bind_into](argAp0),
-          pragma[only_bind_into](config))
+        if allowsFieldFlow = false then ap instanceof ApNil else any()
+      )
+    }
+
+    pragma[nomagic]
+    private predicate returnFlowsThrough(
+      RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, ParamNodeEx p, Ap argAp,
+      Ap ap, Configuration config
+    ) {
+      exists(DataFlowCallable c, ParameterPosition ppos |
+        returnFlowsThrough0(ret, kind, state, ccc, c, ppos, argAp, ap, config) and
+        p.isParameterOf(c, ppos) and
+        parameterFlowThroughAllowed(p, kind)
       )
     }
 
@@ -1468,118 +1534,130 @@ private module MkStage<StageSig PrevStage> {
     private predicate flowThroughIntoCall(
       DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
     ) {
-      flowIntoCall(call, arg, p, allowsFieldFlow, config) and
-      fwdFlow(arg, _, _, _, _, pragma[only_bind_into](config)) and
-      PrevStage::parameterMayFlowThrough(p, _, _, pragma[only_bind_into](config)) and
-      callMayFlowThroughFwd(call, pragma[only_bind_into](config))
-    }
-
-    pragma[nomagic]
-    private predicate returnNodeMayFlowThrough(
-      RetNodeEx ret, FlowState state, Ap ap, Configuration config
-    ) {
-      fwdFlow(ret, state, any(CcCall ccc), apSome(_), ap, config)
+      exists(Ap argAp |
+        flowIntoCall(call, pragma[only_bind_into](arg), pragma[only_bind_into](p), allowsFieldFlow,
+          pragma[only_bind_into](config)) and
+        fwdFlow(arg, _, _, _, _, pragma[only_bind_into](argAp), pragma[only_bind_into](config)) and
+        returnFlowsThrough(_, _, _, _, p, pragma[only_bind_into](argAp), _,
+          pragma[only_bind_into](config))
+      )
     }
 
     /**
      * Holds if `node` with access path `ap` is part of a path from a source to a
      * sink in the configuration `config`.
      *
-     * The Boolean `toReturn` records whether the node must be returned from the
-     * enclosing callable in order to reach a sink, and if so, `returnAp` records
-     * the access path of the returned value.
+     * The parameter `returnCtx` records whether (and how) the node must be returned
+     * from the enclosing callable in order to reach a sink, and if so, `returnAp`
+     * records the access path of the returned value.
      */
     pragma[nomagic]
     additional predicate revFlow(
-      NodeEx node, FlowState state, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
+      NodeEx node, FlowState state, ReturnCtx returnCtx, ApOption returnAp, Ap ap,
+      Configuration config
     ) {
-      revFlow0(node, state, toReturn, returnAp, ap, config) and
-      fwdFlow(node, state, _, _, ap, config)
+      revFlow0(node, state, returnCtx, returnAp, ap, config) and
+      fwdFlow(node, state, _, _, _, ap, config)
     }
 
     pragma[nomagic]
     private predicate revFlow0(
-      NodeEx node, FlowState state, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
+      NodeEx node, FlowState state, ReturnCtx returnCtx, ApOption returnAp, Ap ap,
+      Configuration config
     ) {
-      fwdFlow(node, state, _, _, ap, config) and
+      fwdFlow(node, state, _, _, _, ap, config) and
       sinkNode(node, state, config) and
-      (if hasSinkCallCtx(config) then toReturn = true else toReturn = false) and
+      (
+        if hasSinkCallCtx(config)
+        then returnCtx = TReturnCtxNoFlowThrough()
+        else returnCtx = TReturnCtxNone()
+      ) and
       returnAp = apNone() and
       ap instanceof ApNil
       or
       exists(NodeEx mid, FlowState state0 |
         localStep(node, state, mid, state0, true, _, config, _) and
-        revFlow(mid, state0, toReturn, returnAp, ap, config)
+        revFlow(mid, state0, returnCtx, returnAp, ap, config)
       )
       or
       exists(NodeEx mid, FlowState state0, ApNil nil |
-        fwdFlow(node, pragma[only_bind_into](state), _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(node, pragma[only_bind_into](state), _, _, _, ap, pragma[only_bind_into](config)) and
         localStep(node, pragma[only_bind_into](state), mid, state0, false, _, config, _) and
-        revFlow(mid, state0, toReturn, returnAp, nil, pragma[only_bind_into](config)) and
+        revFlow(mid, state0, returnCtx, returnAp, nil, pragma[only_bind_into](config)) and
         ap instanceof ApNil
       )
       or
       exists(NodeEx mid |
         jumpStep(node, mid, config) and
         revFlow(mid, state, _, _, ap, config) and
-        toReturn = false and
+        returnCtx = TReturnCtxNone() and
         returnAp = apNone()
       )
       or
       exists(NodeEx mid, ApNil nil |
-        fwdFlow(node, _, _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(node, _, _, _, _, ap, pragma[only_bind_into](config)) and
         additionalJumpStep(node, mid, config) and
         revFlow(pragma[only_bind_into](mid), state, _, _, nil, pragma[only_bind_into](config)) and
-        toReturn = false and
+        returnCtx = TReturnCtxNone() and
         returnAp = apNone() and
         ap instanceof ApNil
       )
       or
       exists(NodeEx mid, FlowState state0, ApNil nil |
-        fwdFlow(node, _, _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(node, _, _, _, _, ap, pragma[only_bind_into](config)) and
         additionalJumpStateStep(node, state, mid, state0, config) and
         revFlow(pragma[only_bind_into](mid), pragma[only_bind_into](state0), _, _, nil,
           pragma[only_bind_into](config)) and
-        toReturn = false and
+        returnCtx = TReturnCtxNone() and
         returnAp = apNone() and
         ap instanceof ApNil
       )
       or
       // store
       exists(Ap ap0, Content c |
-        revFlowStore(ap0, c, ap, node, state, _, _, toReturn, returnAp, config) and
+        revFlowStore(ap0, c, ap, node, state, _, _, returnCtx, returnAp, config) and
         revFlowConsCand(ap0, c, ap, config)
       )
       or
       // read
       exists(NodeEx mid, Ap ap0 |
-        revFlow(mid, state, toReturn, returnAp, ap0, config) and
+        revFlow(mid, state, returnCtx, returnAp, ap0, config) and
         readStepFwd(node, ap, _, mid, ap0, config)
       )
       or
       // flow into a callable
-      revFlowInNotToReturn(node, state, returnAp, ap, config) and
-      toReturn = false
+      exists(ParamNodeEx p, boolean allowsFieldFlow |
+        revFlow(p, state, TReturnCtxNone(), returnAp, ap, config) and
+        flowIntoCall(_, node, p, allowsFieldFlow, config) and
+        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
+        returnCtx = TReturnCtxNone()
+      )
       or
-      exists(DataFlowCall call, Ap returnAp0 |
-        revFlowInToReturn(call, node, state, returnAp0, ap, config) and
-        revFlowIsReturned(call, toReturn, returnAp, returnAp0, config)
+      // flow through a callable
+      exists(DataFlowCall call, ReturnKindExt returnKind0, Ap returnAp0 |
+        revFlowInToReturn(call, node, state, returnKind0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
       )
       or
       // flow out of a callable
-      revFlowOut(_, node, state, _, _, ap, config) and
-      toReturn = true and
-      if returnNodeMayFlowThrough(node, state, ap, config)
-      then returnAp = apSome(ap)
-      else returnAp = apNone()
+      exists(ReturnKindExt kind |
+        revFlowOut(_, node, kind, state, _, _, ap, config) and
+        if returnFlowsThrough(node, kind, state, _, _, _, ap, config)
+        then (
+          returnCtx = TReturnCtxMaybeFlowThrough(kind) and
+          returnAp = apSome(ap)
+        ) else (
+          returnCtx = TReturnCtxNoFlowThrough() and returnAp = apNone()
+        )
+      )
     }
 
     pragma[nomagic]
     private predicate revFlowStore(
       Ap ap0, Content c, Ap ap, NodeEx node, FlowState state, TypedContent tc, NodeEx mid,
-      boolean toReturn, ApOption returnAp, Configuration config
+      ReturnCtx returnCtx, ApOption returnAp, Configuration config
     ) {
-      revFlow(mid, state, toReturn, returnAp, ap0, config) and
+      revFlow(mid, state, returnCtx, returnAp, ap0, config) and
       storeStepFwd(node, ap, tc, mid, ap0, config) and
       tc.getContent() = c
     }
@@ -1599,35 +1677,27 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate revFlowOut(
-      DataFlowCall call, RetNodeEx ret, FlowState state, boolean toReturn, ApOption returnAp, Ap ap,
-      Configuration config
+      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, FlowState state, ReturnCtx returnCtx,
+      ApOption returnAp, Ap ap, Configuration config
     ) {
       exists(NodeEx out, boolean allowsFieldFlow |
-        revFlow(out, state, toReturn, returnAp, ap, config) and
-        flowOutOfCall(call, ret, out, allowsFieldFlow, config) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
-      )
-    }
-
-    pragma[nomagic]
-    private predicate revFlowInNotToReturn(
-      ArgNodeEx arg, FlowState state, ApOption returnAp, Ap ap, Configuration config
-    ) {
-      exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(p, state, false, returnAp, ap, config) and
-        flowIntoCall(_, arg, p, allowsFieldFlow, config) and
+        revFlow(out, state, returnCtx, returnAp, ap, config) and
+        flowOutOfCall(call, ret, kind, out, allowsFieldFlow, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
     pragma[nomagic]
     private predicate revFlowInToReturn(
-      DataFlowCall call, ArgNodeEx arg, FlowState state, Ap returnAp, Ap ap, Configuration config
+      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap,
+      Configuration config
     ) {
       exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(p, state, true, apSome(returnAp), ap, config) and
+        revFlow(pragma[only_bind_into](p), state,
+          TReturnCtxMaybeFlowThrough(pragma[only_bind_into](kind)), apSome(returnAp), ap, config) and
         flowThroughIntoCall(call, arg, p, allowsFieldFlow, config) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
+        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
+        parameterFlowThroughAllowed(p, kind)
       )
     }
 
@@ -1638,11 +1708,12 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate revFlowIsReturned(
-      DataFlowCall call, boolean toReturn, ApOption returnAp, Ap ap, Configuration config
+      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnKindExt kind, Ap ap,
+      Configuration config
     ) {
       exists(RetNodeEx ret, FlowState state, CcCall ccc |
-        revFlowOut(call, ret, state, toReturn, returnAp, ap, config) and
-        fwdFlow(ret, state, ccc, apSome(_), ap, config) and
+        revFlowOut(call, ret, kind, state, returnCtx, returnAp, ap, config) and
+        returnFlowsThrough(ret, kind, state, ccc, _, _, ap, config) and
         matchesCall(ccc, call)
       )
     }
@@ -1713,40 +1784,39 @@ private module MkStage<StageSig PrevStage> {
       validAp(ap, config)
     }
 
-    pragma[noinline]
-    private predicate parameterFlow(
-      ParamNodeEx p, Ap ap, Ap ap0, DataFlowCallable c, Configuration config
+    pragma[nomagic]
+    private predicate parameterFlowsThroughRev(
+      ParamNodeEx p, Ap ap, ReturnKindExt kind, Configuration config
     ) {
-      revFlow(p, _, true, apSome(ap0), ap, config) and
-      c = p.getEnclosingCallable()
+      revFlow(p, _, TReturnCtxMaybeFlowThrough(kind), apSome(_), ap, config) and
+      parameterFlowThroughAllowed(p, kind)
     }
 
-    predicate parameterMayFlowThrough(ParamNodeEx p, DataFlowCallable c, Ap ap, Configuration config) {
-      exists(RetNodeEx ret, FlowState state, Ap ap0, ReturnKindExt kind, ParameterPosition pos |
-        parameterFlow(p, ap, ap0, c, config) and
-        c = ret.getEnclosingCallable() and
-        revFlow(pragma[only_bind_into](ret), pragma[only_bind_into](state), true, apSome(_),
-          pragma[only_bind_into](ap0), pragma[only_bind_into](config)) and
-        fwdFlow(ret, state, any(CcCall ccc), apSome(ap), ap0, config) and
-        kind = ret.getKind() and
-        p.getPosition() = pos and
-        // we don't expect a parameter to return stored in itself, unless explicitly allowed
-        (
-          not kind.(ParamUpdateReturnKind).getPosition() = pos
-          or
-          p.allowParameterReturnInSelf()
-        )
+    pragma[nomagic]
+    predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
+      exists(RetNodeEx ret, ReturnKindExt kind |
+        returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
+        parameterFlowsThroughRev(p, ap, kind, config)
+      )
+    }
+
+    pragma[nomagic]
+    predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config) {
+      exists(ParamNodeEx p, Ap ap |
+        returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
+        parameterFlowsThroughRev(p, ap, kind, config)
       )
     }
 
     pragma[nomagic]
     predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
       exists(
-        Ap returnAp0, ArgNodeEx arg, FlowState state, boolean toReturn, ApOption returnAp, Ap ap
+        ReturnKindExt returnKind0, Ap returnAp0, ArgNodeEx arg, FlowState state,
+        ReturnCtx returnCtx, ApOption returnAp, Ap ap
       |
-        revFlow(arg, state, toReturn, returnAp, ap, config) and
-        revFlowInToReturn(call, arg, state, returnAp0, ap, config) and
-        revFlowIsReturned(call, toReturn, returnAp, returnAp0, config)
+        revFlow(arg, state, returnCtx, returnAp, ap, config) and
+        revFlowInToReturn(call, arg, state, returnKind0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
       )
     }
 
@@ -1754,14 +1824,13 @@ private module MkStage<StageSig PrevStage> {
       boolean fwd, int nodes, int fields, int conscand, int states, int tuples, Configuration config
     ) {
       fwd = true and
-      nodes = count(NodeEx node | fwdFlow(node, _, _, _, _, config)) and
+      nodes = count(NodeEx node | fwdFlow(node, _, _, _, _, _, config)) and
       fields = count(TypedContent f0 | fwdConsCand(f0, _, config)) and
       conscand = count(TypedContent f0, Ap ap | fwdConsCand(f0, ap, config)) and
-      states = count(FlowState state | fwdFlow(_, state, _, _, _, config)) and
+      states = count(FlowState state | fwdFlow(_, state, _, _, _, _, config)) and
       tuples =
-        count(NodeEx n, FlowState state, Cc cc, ApOption argAp, Ap ap |
-          fwdFlow(n, state, cc, argAp, ap, config)
-        )
+        count(NodeEx n, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+          Ap ap | fwdFlow(n, state, cc, summaryCtx, argAp, ap, config))
       or
       fwd = false and
       nodes = count(NodeEx node | revFlow(node, _, _, _, _, config)) and
@@ -1769,8 +1838,8 @@ private module MkStage<StageSig PrevStage> {
       conscand = count(TypedContent f0, Ap ap | consCand(f0, ap, config)) and
       states = count(FlowState state | revFlow(_, state, _, _, _, config)) and
       tuples =
-        count(NodeEx n, FlowState state, boolean b, ApOption retAp, Ap ap |
-          revFlow(n, state, b, retAp, ap, config)
+        count(NodeEx n, FlowState state, ReturnCtx returnCtx, ApOption retAp, Ap ap |
+          revFlow(n, state, returnCtx, retAp, ap, config)
         )
     }
     /* End: Stage logic. */
@@ -1915,7 +1984,7 @@ private module Stage2Param implements MkStage<Stage1>::StageParam {
     exists(lcc)
   }
 
-  predicate flowOutOfCall = flowOutOfCallNodeCand1/5;
+  predicate flowOutOfCall = flowOutOfCallNodeCand1/6;
 
   predicate flowIntoCall = flowIntoCallNodeCand1/5;
 
@@ -1951,9 +2020,10 @@ private module Stage2 implements StageSig {
 
 pragma[nomagic]
 private predicate flowOutOfCallNodeCand2(
-  DataFlowCall call, RetNodeEx node1, NodeEx node2, boolean allowsFieldFlow, Configuration config
+  DataFlowCall call, RetNodeEx node1, ReturnKindExt kind, NodeEx node2, boolean allowsFieldFlow,
+  Configuration config
 ) {
-  flowOutOfCallNodeCand1(call, node1, node2, allowsFieldFlow, config) and
+  flowOutOfCallNodeCand1(call, node1, kind, node2, allowsFieldFlow, config) and
   Stage2::revFlow(node2, pragma[only_bind_into](config)) and
   Stage2::revFlowAlias(node1, pragma[only_bind_into](config))
 }
@@ -2021,8 +2091,8 @@ private module LocalFlowBigStep {
     exists(NodeEx next | Stage2::revFlow(next, state, config) |
       jumpStep(node, next, config) or
       additionalJumpStep(node, next, config) or
-      flowIntoCallNodeCand1(_, node, next, config) or
-      flowOutOfCallNodeCand1(_, node, next, config) or
+      flowIntoCallNodeCand2(_, node, next, _, config) or
+      flowOutOfCallNodeCand2(_, node, _, next, _, config) or
       Stage2::storeStepCand(node, _, _, next, _, config) or
       Stage2::readStepCand(node, _, next, config)
     )
@@ -2163,7 +2233,7 @@ private module Stage3Param implements MkStage<Stage2>::StageParam {
     localFlowBigStep(node1, state1, node2, state2, preservesValue, ap, config, _) and exists(lcc)
   }
 
-  predicate flowOutOfCall = flowOutOfCallNodeCand2/5;
+  predicate flowOutOfCall = flowOutOfCallNodeCand2/6;
 
   predicate flowIntoCall = flowIntoCallNodeCand2/5;
 
@@ -2233,8 +2303,9 @@ private predicate flowCandSummaryCtx(
   NodeEx node, FlowState state, AccessPathFront argApf, Configuration config
 ) {
   exists(AccessPathFront apf |
-    Stage3::revFlow(node, state, true, _, apf, config) and
-    Stage3::fwdFlow(node, state, any(Stage3::CcCall ccc), TAccessPathFrontSome(argApf), apf, config)
+    Stage3::revFlow(node, state, TReturnCtxMaybeFlowThrough(_), _, apf, config) and
+    Stage3::fwdFlow(node, state, any(Stage3::CcCall ccc), _, TAccessPathFrontSome(argApf), apf,
+      config)
   )
 }
 
@@ -2468,10 +2539,11 @@ private module Stage4Param implements MkStage<Stage3>::StageParam {
 
   pragma[nomagic]
   predicate flowOutOfCall(
-    DataFlowCall call, RetNodeEx node1, NodeEx node2, boolean allowsFieldFlow, Configuration config
+    DataFlowCall call, RetNodeEx node1, ReturnKindExt kind, NodeEx node2, boolean allowsFieldFlow,
+    Configuration config
   ) {
     exists(FlowState state |
-      flowOutOfCallNodeCand2(call, node1, node2, allowsFieldFlow, config) and
+      flowOutOfCallNodeCand2(call, node1, kind, node2, allowsFieldFlow, config) and
       PrevStage::revFlow(node2, pragma[only_bind_into](state), _, pragma[only_bind_into](config)) and
       PrevStage::revFlowAlias(node1, pragma[only_bind_into](state), _,
         pragma[only_bind_into](config))
@@ -2508,13 +2580,14 @@ private Configuration unbindConf(Configuration conf) {
 
 pragma[nomagic]
 private predicate nodeMayUseSummary0(
-  NodeEx n, DataFlowCallable c, FlowState state, AccessPathApprox apa, Configuration config
+  NodeEx n, DataFlowCallable c, ParameterPosition pos, FlowState state, AccessPathApprox apa,
+  Configuration config
 ) {
   exists(AccessPathApprox apa0 |
-    Stage4::parameterMayFlowThrough(_, c, _, _) and
-    Stage4::revFlow(n, state, true, _, apa0, config) and
-    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TAccessPathApproxSome(apa), apa0, config) and
-    n.getEnclosingCallable() = c
+    c = n.getEnclosingCallable() and
+    Stage4::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
+    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TParameterPositionSome(pos),
+      TAccessPathApproxSome(apa), apa0, config)
   )
 }
 
@@ -2522,9 +2595,10 @@ pragma[nomagic]
 private predicate nodeMayUseSummary(
   NodeEx n, FlowState state, AccessPathApprox apa, Configuration config
 ) {
-  exists(DataFlowCallable c |
-    Stage4::parameterMayFlowThrough(_, c, apa, config) and
-    nodeMayUseSummary0(n, c, state, apa, config)
+  exists(DataFlowCallable c, ParameterPosition pos, ParamNodeEx p |
+    Stage4::parameterMayFlowThrough(p, apa, config) and
+    nodeMayUseSummary0(n, c, pos, state, apa, config) and
+    p.isParameterOf(c, pos)
   )
 }
 
@@ -2532,7 +2606,7 @@ private newtype TSummaryCtx =
   TSummaryCtxNone() or
   TSummaryCtxSome(ParamNodeEx p, FlowState state, AccessPath ap) {
     exists(Configuration config |
-      Stage4::parameterMayFlowThrough(p, _, ap.getApprox(), config) and
+      Stage4::parameterMayFlowThrough(p, ap.getApprox(), config) and
       Stage4::revFlow(p, state, _, config)
     )
   }
@@ -3453,17 +3527,11 @@ private predicate paramFlowsThrough(
   ReturnKindExt kind, FlowState state, CallContextCall cc, SummaryCtxSome sc, AccessPath ap,
   AccessPathApprox apa, Configuration config
 ) {
-  exists(PathNodeMid mid, RetNodeEx ret, ParameterPosition pos |
+  exists(PathNodeMid mid, RetNodeEx ret |
     pathNode(mid, ret, state, cc, sc, ap, config, _) and
     kind = ret.getKind() and
     apa = ap.getApprox() and
-    pos = sc.getParameterPos() and
-    // we don't expect a parameter to return stored in itself, unless explicitly allowed
-    (
-      not kind.(ParamUpdateReturnKind).getPosition() = pos
-      or
-      sc.getParamNode().allowParameterReturnInSelf()
-    )
+    parameterFlowThroughAllowed(sc.getParamNode(), kind)
   )
 }
 
diff --git a/go/ql/lib/semmle/go/dataflow/internal/DataFlowImplCommon.qll b/go/ql/lib/semmle/go/dataflow/internal/DataFlowImplCommon.qll
index ae9c6f3f12e..f981834a6d4 100644
--- a/go/ql/lib/semmle/go/dataflow/internal/DataFlowImplCommon.qll
+++ b/go/ql/lib/semmle/go/dataflow/internal/DataFlowImplCommon.qll
@@ -915,6 +915,17 @@ private module Cached {
     TDataFlowCallNone() or
     TDataFlowCallSome(DataFlowCall call)
 
+  cached
+  newtype TParameterPositionOption =
+    TParameterPositionNone() or
+    TParameterPositionSome(ParameterPosition pos)
+
+  cached
+  newtype TReturnCtx =
+    TReturnCtxNone() or
+    TReturnCtxNoFlowThrough() or
+    TReturnCtxMaybeFlowThrough(ReturnKindExt kind)
+
   cached
   newtype TTypedContent = MkTypedContent(Content c, DataFlowType t) { store(_, c, _, _, t) }
 
@@ -1304,6 +1315,44 @@ class DataFlowCallOption extends TDataFlowCallOption {
   }
 }
 
+/** An optional `ParameterPosition`. */
+class ParameterPositionOption extends TParameterPositionOption {
+  string toString() {
+    this = TParameterPositionNone() and
+    result = "(none)"
+    or
+    exists(ParameterPosition pos |
+      this = TParameterPositionSome(pos) and
+      result = pos.toString()
+    )
+  }
+}
+
+/**
+ * A return context used to calculate flow summaries in reverse flow.
+ *
+ * The possible values are:
+ *
+ * - `TReturnCtxNone()`: no return flow.
+ * - `TReturnCtxNoFlowThrough()`: return flow, but flow through is not possible.
+ * - `TReturnCtxMaybeFlowThrough(ReturnKindExt kind)`: return flow, of kind `kind`, and
+ *    flow through may be possible.
+ */
+class ReturnCtx extends TReturnCtx {
+  string toString() {
+    this = TReturnCtxNone() and
+    result = "(none)"
+    or
+    this = TReturnCtxNoFlowThrough() and
+    result = "(no flow through)"
+    or
+    exists(ReturnKindExt kind |
+      this = TReturnCtxMaybeFlowThrough(kind) and
+      result = kind.toString()
+    )
+  }
+}
+
 /** A `Content` tagged with the type of a containing object. */
 class TypedContent extends MkTypedContent {
   private Content c;

From 1731d391198223416688ed523773b43f20eacaa7 Mon Sep 17 00:00:00 2001
From: Owen Mansel-Chan <owen-mc@github.com>
Date: Tue, 29 Nov 2022 14:24:20 +0000
Subject: [PATCH 0816/1420] Remove sync-dataflow-libraries from go makefile

---
 go/Makefile | 7 -------
 1 file changed, 7 deletions(-)

diff --git a/go/Makefile b/go/Makefile
index 47f4cc0f801..900508ee6cb 100644
--- a/go/Makefile
+++ b/go/Makefile
@@ -132,10 +132,3 @@ build/testdb/go.dbscheme: ql/lib/upgrades/initial/go.dbscheme
 	rm -rf build/testdb
 	echo >build/empty.trap
 	codeql dataset import -S ql/lib/upgrades/initial/go.dbscheme build/testdb build/empty.trap
-
-.PHONY: sync-dataflow-libraries
-sync-dataflow-libraries:
-	for f in DataFlowImpl.qll DataFlowImpl2.qll DataFlowImplCommon.qll tainttracking1/TaintTrackingImpl.qll tainttracking2/TaintTrackingImpl.qll FlowSummaryImpl.qll AccessPathSyntax.qll;\
-	do\
-		curl -s -o ./ql/lib/semmle/go/dataflow/internal/$$f https://raw.githubusercontent.com/github/codeql/$(DATAFLOW_BRANCH)/java/ql/lib/semmle/code/java/dataflow/internal/$$f;\
-	done

From 5c5ec8f66a2c4bd8a8410007301e2c25730abc8d Mon Sep 17 00:00:00 2001
From: Owen Mansel-Chan <owen-mc@github.com>
Date: Tue, 29 Nov 2022 15:38:41 +0000
Subject: [PATCH 0817/1420] Add go files to identical-files.json

---
 config/identical-files.json | 7 +++++++
 1 file changed, 7 insertions(+)

diff --git a/config/identical-files.json b/config/identical-files.json
index 20d7dbc3606..bdce064e269 100644
--- a/config/identical-files.json
+++ b/config/identical-files.json
@@ -27,6 +27,8 @@
     "csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImpl4.qll",
     "csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImpl5.qll",
     "csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImplForContentDataFlow.qll",
+    "go/ql/lib/semmle/go/dataflow/internal/DataFlowImpl.qll",
+    "go/ql/lib/semmle/go/dataflow/internal/DataFlowImpl2.qll",
     "python/ql/lib/semmle/python/dataflow/new/internal/DataFlowImpl.qll",
     "python/ql/lib/semmle/python/dataflow/new/internal/DataFlowImpl2.qll",
     "python/ql/lib/semmle/python/dataflow/new/internal/DataFlowImpl3.qll",
@@ -44,6 +46,7 @@
     "cpp/ql/lib/semmle/code/cpp/ir/dataflow/internal/DataFlowImplCommon.qll",
     "cpp/ql/lib/experimental/semmle/code/cpp/ir/dataflow/internal/DataFlowImplCommon.qll",
     "csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImplCommon.qll",
+    "go/ql/lib/semmle/go/dataflow/internal/DataFlowImplCommon.qll",
     "python/ql/lib/semmle/python/dataflow/new/internal/DataFlowImplCommon.qll",
     "ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImplCommon.qll",
     "swift/ql/lib/codeql/swift/dataflow/internal/DataFlowImplCommon.qll"
@@ -62,6 +65,8 @@
     "csharp/ql/lib/semmle/code/csharp/dataflow/internal/tainttracking3/TaintTrackingImpl.qll",
     "csharp/ql/lib/semmle/code/csharp/dataflow/internal/tainttracking4/TaintTrackingImpl.qll",
     "csharp/ql/lib/semmle/code/csharp/dataflow/internal/tainttracking5/TaintTrackingImpl.qll",
+    "go/ql/lib/semmle/go/dataflow/internal/tainttracking1/TaintTrackingImpl.qll",
+    "go/ql/lib/semmle/go/dataflow/internal/tainttracking2/TaintTrackingImpl.qll",
     "java/ql/lib/semmle/code/java/dataflow/internal/tainttracking1/TaintTrackingImpl.qll",
     "java/ql/lib/semmle/code/java/dataflow/internal/tainttracking2/TaintTrackingImpl.qll",
     "java/ql/lib/semmle/code/java/dataflow/internal/tainttracking3/TaintTrackingImpl.qll",
@@ -85,6 +90,7 @@
   "DataFlow Java/C#/Ruby/Python/Swift Flow Summaries": [
     "java/ql/lib/semmle/code/java/dataflow/internal/FlowSummaryImpl.qll",
     "csharp/ql/lib/semmle/code/csharp/dataflow/internal/FlowSummaryImpl.qll",
+    "go/ql/lib/semmle/go/dataflow/internal/FlowSummaryImpl.qll",
     "ruby/ql/lib/codeql/ruby/dataflow/internal/FlowSummaryImpl.qll",
     "python/ql/lib/semmle/python/dataflow/new/internal/FlowSummaryImpl.qll",
     "swift/ql/lib/codeql/swift/dataflow/internal/FlowSummaryImpl.qll"
@@ -505,6 +511,7 @@
   ],
   "AccessPathSyntax": [
     "csharp/ql/lib/semmle/code/csharp/dataflow/internal/AccessPathSyntax.qll",
+    "go/ql/lib/semmle/go/dataflow/internal/AccessPathSyntax.qll",
     "java/ql/lib/semmle/code/java/dataflow/internal/AccessPathSyntax.qll",
     "javascript/ql/lib/semmle/javascript/frameworks/data/internal/AccessPathSyntax.qll",
     "ruby/ql/lib/codeql/ruby/dataflow/internal/AccessPathSyntax.qll",

From 083a3bae6ec59a3276215a9e05ceca22966ba145 Mon Sep 17 00:00:00 2001
From: Owen Mansel-Chan <owen-mc@github.com>
Date: Tue, 29 Nov 2022 15:42:40 +0000
Subject: [PATCH 0818/1420] Correct headings in identical-files.json

---
 config/identical-files.json | 10 +++++-----
 1 file changed, 5 insertions(+), 5 deletions(-)

diff --git a/config/identical-files.json b/config/identical-files.json
index bdce064e269..0a5d037e226 100644
--- a/config/identical-files.json
+++ b/config/identical-files.json
@@ -1,5 +1,5 @@
 {
-  "DataFlow Java/C++/C#/Python": [
+  "DataFlow Java/C++/C#/Go/Python/Ruby/Swift": [
     "java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl.qll",
     "java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl2.qll",
     "java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl3.qll",
@@ -40,7 +40,7 @@
     "ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImplForPathname.qll",
     "swift/ql/lib/codeql/swift/dataflow/internal/DataFlowImpl.qll"
   ],
-  "DataFlow Java/C++/C#/Python Common": [
+  "DataFlow Java/C++/C#/Go/Python/Ruby/Swift Common": [
     "java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImplCommon.qll",
     "cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImplCommon.qll",
     "cpp/ql/lib/semmle/code/cpp/ir/dataflow/internal/DataFlowImplCommon.qll",
@@ -51,7 +51,7 @@
     "ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImplCommon.qll",
     "swift/ql/lib/codeql/swift/dataflow/internal/DataFlowImplCommon.qll"
   ],
-  "TaintTracking::Configuration Java/C++/C#/Python": [
+  "TaintTracking::Configuration Java/C++/C#/Go/Python/Ruby/Swift": [
     "cpp/ql/lib/semmle/code/cpp/dataflow/internal/tainttracking1/TaintTrackingImpl.qll",
     "cpp/ql/lib/semmle/code/cpp/dataflow/internal/tainttracking2/TaintTrackingImpl.qll",
     "cpp/ql/lib/semmle/code/cpp/ir/dataflow/internal/tainttracking1/TaintTrackingImpl.qll",
@@ -77,7 +77,7 @@
     "ruby/ql/lib/codeql/ruby/dataflow/internal/tainttracking1/TaintTrackingImpl.qll",
     "swift/ql/lib/codeql/swift/dataflow/internal/tainttracking1/TaintTrackingImpl.qll"
   ],
-  "DataFlow Java/C++/C#/Python Consistency checks": [
+  "DataFlow Java/C++/C#/Python/Ruby/Swift Consistency checks": [
     "java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImplConsistency.qll",
     "cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImplConsistency.qll",
     "cpp/ql/lib/semmle/code/cpp/ir/dataflow/internal/DataFlowImplConsistency.qll",
@@ -87,7 +87,7 @@
     "ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImplConsistency.qll",
     "swift/ql/lib/codeql/swift/dataflow/internal/DataFlowImplConsistency.qll"
   ],
-  "DataFlow Java/C#/Ruby/Python/Swift Flow Summaries": [
+  "DataFlow Java/C#/Go/Ruby/Python/Swift Flow Summaries": [
     "java/ql/lib/semmle/code/java/dataflow/internal/FlowSummaryImpl.qll",
     "csharp/ql/lib/semmle/code/csharp/dataflow/internal/FlowSummaryImpl.qll",
     "go/ql/lib/semmle/go/dataflow/internal/FlowSummaryImpl.qll",

From 47702b9e142eeacb33be49ace3e2bf4199eedb01 Mon Sep 17 00:00:00 2001
From: Paolo Tranquilli <redsun82@github.com>
Date: Tue, 29 Nov 2022 18:16:33 +0100
Subject: [PATCH 0819/1420] Swift: tentative fix for the bazel cache

---
 swift/actions/build-and-test/action.yml | 13 +++++++------
 1 file changed, 7 insertions(+), 6 deletions(-)

diff --git a/swift/actions/build-and-test/action.yml b/swift/actions/build-and-test/action.yml
index 52a6415fedf..14f8107dc0f 100644
--- a/swift/actions/build-and-test/action.yml
+++ b/swift/actions/build-and-test/action.yml
@@ -10,18 +10,19 @@ runs:
     - name: Mount bazel cache
       uses: ./.github/actions/incremental-cache
       with:
-        path: "~/.cache/bazel-repository-cache"
+        path: bazel-repository-cache
         key: bazel-cache-${{ runner.os }}-${{ runner.arch }}
     - name: Mount bazel disk cache
       uses: ./.github/actions/incremental-cache
       with:
-        path: "~/.cache/bazel-disk-cache"
+        path: bazel-disk-cache
         key: bazel-disk-cache-${{ runner.os }}-${{ runner.arch }}
     - name: Configure bazel cache
       shell: bash
       run: |
-        echo build --repository_cache=~/.cache/bazel-repository-cache --disk_cache=~/.cache/bazel-disk-cache > ~/.bazelrc
-        echo test --test_output=errors >> ~/.bazelrc
+        mkdir bazel-repository-cache bazel-disk-cache
+        echo build --repository_cache=bazel-repository-cache --disk_cache=bazel-disk-cache > local.bazelrc
+        echo test --test_output=errors >> local.bazelrc
     - name: Print unextracted entities
       shell: bash
       run: |
@@ -50,5 +51,5 @@ runs:
       if: ${{ github.event_name != 'pull_request' }}
       shell: bash
       run: |
-        find "~/.cache/bazel-repository-cache" "~/.cache/bazel-disk-cache" -atime +0 -type f -delete || : # ignore errors if the cache is empty
-        du -sh "~/.cache/bazel-repository-cache" "~/.cache/bazel-disk-cache" || : # ignore errors if the cache is empty
+        find bazel-repository-cache bazel-disk-cache -atime +0 -type f -delete
+        du -sh bazel-repository-cache bazel-disk-cache

From b471926030927aac8b1ae24bb69860d6ef16cd14 Mon Sep 17 00:00:00 2001
From: Chris Smowton <smowton@github.com>
Date: Tue, 29 Nov 2022 17:17:39 +0000
Subject: [PATCH 0820/1420] Autoformat

---
 go/extractor/util/util.go | 1 -
 1 file changed, 1 deletion(-)

diff --git a/go/extractor/util/util.go b/go/extractor/util/util.go
index b50651dbe98..c4bdf3d1c61 100644
--- a/go/extractor/util/util.go
+++ b/go/extractor/util/util.go
@@ -118,7 +118,6 @@ func GetPkgsInfo(patterns []string, includingDeps bool, flags ...string) (map[st
 	return pkgInfoMapping, nil
 }
 
-
 // GetPkgInfo fills the package info structure for the specified package path.
 // It passes the `go list` the flags specified by `flags`.
 func GetPkgInfo(pkgpath string, flags ...string) PkgInfo {

From 91edeacb9fa7bb8a92b0f869d68a0870e91064f0 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Nora=20Dimitrijevi=C4=87?= <d10c@users.noreply.github.com>
Date: Tue, 29 Nov 2022 19:39:48 +0100
Subject: [PATCH 0821/1420] Swift: update .expected test files

---
 .../extractor-tests/declarations/all.expected | 26 ++---
 .../ConcreteVarDecl_getAccessorDecl.expected  | 18 ++--
 .../test/library-tests/ast/PrintAst.expected  | 58 +++++------
 .../controlflow/graph/Cfg.expected            | 98 +++++++++----------
 4 files changed, 100 insertions(+), 100 deletions(-)

diff --git a/swift/ql/test/extractor-tests/declarations/all.expected b/swift/ql/test/extractor-tests/declarations/all.expected
index 332c4b08737..7f4f3af4bdf 100644
--- a/swift/ql/test/extractor-tests/declarations/all.expected
+++ b/swift/ql/test/extractor-tests/declarations/all.expected
@@ -5,7 +5,7 @@
 | declarations.swift:1:8:1:8 | self |
 | declarations.swift:1:8:1:8 | x |
 | declarations.swift:2:3:2:11 | var ... = ... |
-| declarations.swift:2:7:2:7 | (unnamed function decl) |
+| declarations.swift:2:7:2:7 | _modify |
 | declarations.swift:2:7:2:7 | get |
 | declarations.swift:2:7:2:7 | self |
 | declarations.swift:2:7:2:7 | self |
@@ -14,7 +14,7 @@
 | declarations.swift:2:7:2:7 | value |
 | declarations.swift:2:7:2:7 | x |
 | declarations.swift:3:3:6:3 | var ... = ... |
-| declarations.swift:3:7:3:7 | (unnamed function decl) |
+| declarations.swift:3:7:3:7 | _modify |
 | declarations.swift:3:7:3:7 | next |
 | declarations.swift:3:7:3:7 | self |
 | declarations.swift:4:5:4:5 | self |
@@ -28,7 +28,7 @@
 | declarations.swift:9:7:9:7 | self |
 | declarations.swift:9:7:9:7 | self |
 | declarations.swift:9:13:9:30 | var ... = ... |
-| declarations.swift:9:17:9:17 | (unnamed function decl) |
+| declarations.swift:9:17:9:17 | _modify |
 | declarations.swift:9:17:9:17 | get |
 | declarations.swift:9:17:9:17 | self |
 | declarations.swift:9:17:9:17 | self |
@@ -58,7 +58,7 @@
 | declarations.swift:19:29:19:29 | _ |
 | declarations.swift:22:1:26:1 | MyProtocol |
 | declarations.swift:23:5:23:39 | var ... = ... |
-| declarations.swift:23:9:23:9 | (unnamed function decl) |
+| declarations.swift:23:9:23:9 | _modify |
 | declarations.swift:23:9:23:9 | mustBeSettable |
 | declarations.swift:23:9:23:9 | self |
 | declarations.swift:23:31:23:31 | get |
@@ -86,7 +86,7 @@
 | declarations.swift:38:1:38:33 | { ... } |
 | declarations.swift:40:1:53:1 | Baz |
 | declarations.swift:41:3:41:14 | var ... = ... |
-| declarations.swift:41:7:41:7 | (unnamed function decl) |
+| declarations.swift:41:7:41:7 | _modify |
 | declarations.swift:41:7:41:7 | field |
 | declarations.swift:41:7:41:7 | get |
 | declarations.swift:41:7:41:7 | self |
@@ -127,7 +127,7 @@
 | declarations.swift:81:8:81:8 | normalField |
 | declarations.swift:81:8:81:8 | self |
 | declarations.swift:82:3:87:3 | var ... = ... |
-| declarations.swift:82:7:82:7 | (unnamed function decl) |
+| declarations.swift:82:7:82:7 | _modify |
 | declarations.swift:82:7:82:7 | self |
 | declarations.swift:82:7:82:7 | settableField |
 | declarations.swift:83:5:83:5 | newValue |
@@ -144,7 +144,7 @@
 | declarations.swift:97:5:97:5 | self |
 | declarations.swift:97:5:99:5 | get |
 | declarations.swift:102:3:102:21 | var ... = ... |
-| declarations.swift:102:7:102:7 | (unnamed function decl) |
+| declarations.swift:102:7:102:7 | _modify |
 | declarations.swift:102:7:102:7 | get |
 | declarations.swift:102:7:102:7 | normalField |
 | declarations.swift:102:7:102:7 | self |
@@ -152,7 +152,7 @@
 | declarations.swift:102:7:102:7 | self |
 | declarations.swift:102:7:102:7 | set |
 | declarations.swift:102:7:102:7 | value |
-| declarations.swift:104:3:104:3 | (unnamed function decl) |
+| declarations.swift:104:3:104:3 | _modify |
 | declarations.swift:104:3:104:3 | self |
 | declarations.swift:104:3:109:3 | subscript ... |
 | declarations.swift:104:13:104:13 | x |
@@ -171,7 +171,7 @@
 | declarations.swift:111:37:111:37 | self |
 | declarations.swift:111:37:113:3 | get |
 | declarations.swift:115:3:117:3 | var ... = ... |
-| declarations.swift:115:7:115:7 | (unnamed function decl) |
+| declarations.swift:115:7:115:7 | _modify |
 | declarations.swift:115:7:115:7 | get |
 | declarations.swift:115:7:115:7 | hasWillSet1 |
 | declarations.swift:115:7:115:7 | self |
@@ -183,7 +183,7 @@
 | declarations.swift:116:5:116:25 | willSet |
 | declarations.swift:116:13:116:13 | newValue |
 | declarations.swift:119:3:121:3 | var ... = ... |
-| declarations.swift:119:7:119:7 | (unnamed function decl) |
+| declarations.swift:119:7:119:7 | _modify |
 | declarations.swift:119:7:119:7 | get |
 | declarations.swift:119:7:119:7 | hasWillSet2 |
 | declarations.swift:119:7:119:7 | self |
@@ -195,7 +195,7 @@
 | declarations.swift:120:5:120:5 | self |
 | declarations.swift:120:5:120:15 | willSet |
 | declarations.swift:123:3:125:3 | var ... = ... |
-| declarations.swift:123:7:123:7 | (unnamed function decl) |
+| declarations.swift:123:7:123:7 | _modify |
 | declarations.swift:123:7:123:7 | get |
 | declarations.swift:123:7:123:7 | hasDidSet1 |
 | declarations.swift:123:7:123:7 | self |
@@ -207,7 +207,7 @@
 | declarations.swift:124:5:124:24 | didSet |
 | declarations.swift:124:12:124:12 | oldValue |
 | declarations.swift:127:3:129:3 | var ... = ... |
-| declarations.swift:127:7:127:7 | (unnamed function decl) |
+| declarations.swift:127:7:127:7 | _modify |
 | declarations.swift:127:7:127:7 | get |
 | declarations.swift:127:7:127:7 | hasDidSet2 |
 | declarations.swift:127:7:127:7 | self |
@@ -218,7 +218,7 @@
 | declarations.swift:128:5:128:5 | self |
 | declarations.swift:128:5:128:14 | didSet |
 | declarations.swift:131:3:135:3 | var ... = ... |
-| declarations.swift:131:7:131:7 | (unnamed function decl) |
+| declarations.swift:131:7:131:7 | _modify |
 | declarations.swift:131:7:131:7 | get |
 | declarations.swift:131:7:131:7 | hasBoth |
 | declarations.swift:131:7:131:7 | self |
diff --git a/swift/ql/test/extractor-tests/generated/decl/ConcreteVarDecl/ConcreteVarDecl_getAccessorDecl.expected b/swift/ql/test/extractor-tests/generated/decl/ConcreteVarDecl/ConcreteVarDecl_getAccessorDecl.expected
index 08aff3c9809..956ca097bd1 100644
--- a/swift/ql/test/extractor-tests/generated/decl/ConcreteVarDecl/ConcreteVarDecl_getAccessorDecl.expected
+++ b/swift/ql/test/extractor-tests/generated/decl/ConcreteVarDecl/ConcreteVarDecl_getAccessorDecl.expected
@@ -1,31 +1,31 @@
 | var_decls.swift:10:12:10:12 | numbers | 0 | var_decls.swift:10:12:10:12 | get |
 | var_decls.swift:15:7:15:7 | wrappedValue | 0 | var_decls.swift:15:7:15:7 | get |
 | var_decls.swift:15:7:15:7 | wrappedValue | 1 | var_decls.swift:15:7:15:7 | set |
-| var_decls.swift:15:7:15:7 | wrappedValue | 2 | var_decls.swift:15:7:15:7 | (unnamed function decl) |
+| var_decls.swift:15:7:15:7 | wrappedValue | 2 | var_decls.swift:15:7:15:7 | _modify |
 | var_decls.swift:20:7:20:7 | wrappedValue | 0 | var_decls.swift:20:7:20:7 | get |
 | var_decls.swift:20:7:20:7 | wrappedValue | 1 | var_decls.swift:20:7:20:7 | set |
-| var_decls.swift:20:7:20:7 | wrappedValue | 2 | var_decls.swift:20:7:20:7 | (unnamed function decl) |
+| var_decls.swift:20:7:20:7 | wrappedValue | 2 | var_decls.swift:20:7:20:7 | _modify |
 | var_decls.swift:24:15:24:15 | _wrapped | 0 | var_decls.swift:24:15:24:15 | get |
 | var_decls.swift:24:15:24:15 | _wrapped | 1 | var_decls.swift:24:15:24:15 | set |
-| var_decls.swift:24:15:24:15 | _wrapped | 2 | var_decls.swift:24:15:24:15 | (unnamed function decl) |
+| var_decls.swift:24:15:24:15 | _wrapped | 2 | var_decls.swift:24:15:24:15 | _modify |
 | var_decls.swift:24:15:24:15 | wrapped | 0 | var_decls.swift:24:15:24:15 | get |
 | var_decls.swift:24:15:24:15 | wrapped | 1 | var_decls.swift:24:15:24:15 | set |
-| var_decls.swift:24:15:24:15 | wrapped | 2 | var_decls.swift:24:15:24:15 | (unnamed function decl) |
+| var_decls.swift:24:15:24:15 | wrapped | 2 | var_decls.swift:24:15:24:15 | _modify |
 | var_decls.swift:28:7:28:7 | wrappedValue | 0 | var_decls.swift:28:7:28:7 | get |
 | var_decls.swift:28:7:28:7 | wrappedValue | 1 | var_decls.swift:28:7:28:7 | set |
-| var_decls.swift:28:7:28:7 | wrappedValue | 2 | var_decls.swift:28:7:28:7 | (unnamed function decl) |
+| var_decls.swift:28:7:28:7 | wrappedValue | 2 | var_decls.swift:28:7:28:7 | _modify |
 | var_decls.swift:34:7:34:7 | wrappedValue | 0 | var_decls.swift:34:7:34:7 | get |
 | var_decls.swift:34:7:34:7 | wrappedValue | 1 | var_decls.swift:34:7:34:7 | set |
-| var_decls.swift:34:7:34:7 | wrappedValue | 2 | var_decls.swift:34:7:34:7 | (unnamed function decl) |
+| var_decls.swift:34:7:34:7 | wrappedValue | 2 | var_decls.swift:34:7:34:7 | _modify |
 | var_decls.swift:35:7:35:7 | projectedValue | 0 | var_decls.swift:35:7:35:7 | get |
 | var_decls.swift:35:7:35:7 | projectedValue | 1 | var_decls.swift:35:7:35:7 | set |
-| var_decls.swift:35:7:35:7 | projectedValue | 2 | var_decls.swift:35:7:35:7 | (unnamed function decl) |
+| var_decls.swift:35:7:35:7 | projectedValue | 2 | var_decls.swift:35:7:35:7 | _modify |
 | var_decls.swift:39:7:39:7 | wrappedValue | 0 | var_decls.swift:39:7:39:7 | get |
 | var_decls.swift:39:7:39:7 | wrappedValue | 1 | var_decls.swift:39:7:39:7 | set |
-| var_decls.swift:39:7:39:7 | wrappedValue | 2 | var_decls.swift:39:7:39:7 | (unnamed function decl) |
+| var_decls.swift:39:7:39:7 | wrappedValue | 2 | var_decls.swift:39:7:39:7 | _modify |
 | var_decls.swift:40:7:40:7 | projectedValue | 0 | var_decls.swift:40:7:40:7 | get |
 | var_decls.swift:40:7:40:7 | projectedValue | 1 | var_decls.swift:40:7:40:7 | set |
-| var_decls.swift:40:7:40:7 | projectedValue | 2 | var_decls.swift:40:7:40:7 | (unnamed function decl) |
+| var_decls.swift:40:7:40:7 | projectedValue | 2 | var_decls.swift:40:7:40:7 | _modify |
 | var_decls.swift:54:10:54:10 | w1 | 0 | var_decls.swift:54:10:54:10 | get |
 | var_decls.swift:54:10:54:10 | w1 | 1 | var_decls.swift:54:10:54:10 | set |
 | var_decls.swift:55:24:55:24 | w2 | 0 | var_decls.swift:55:24:55:24 | get |
diff --git a/swift/ql/test/library-tests/ast/PrintAst.expected b/swift/ql/test/library-tests/ast/PrintAst.expected
index 2397614f5fe..2ec81962d30 100644
--- a/swift/ql/test/library-tests/ast/PrintAst.expected
+++ b/swift/ql/test/library-tests/ast/PrintAst.expected
@@ -2453,7 +2453,7 @@ cfg.swift:
 #-----|           getDest(): [MemberRefExpr] .field
 #-----|             getBase(): [DeclRefExpr] self
 #-----|           getSource(): [DeclRefExpr] value
-#  394|     getAccessorDecl(2): [AccessorDecl] (unnamed function decl)
+#  394|     getAccessorDecl(2): [AccessorDecl] _modify
 #  394|         InterfaceType = (Structors) -> () -> ()
 #  394|       getSelfParam(): [ParamDecl] self
 #  394|           Type = Structors
@@ -2525,7 +2525,7 @@ cfg.swift:
 #-----|               getDest(): [MemberRefExpr] .x
 #-----|                 getBase(): [DeclRefExpr] self
 #-----|               getSource(): [DeclRefExpr] value
-#  410|         getAccessorDecl(2): [AccessorDecl] (unnamed function decl)
+#  410|         getAccessorDecl(2): [AccessorDecl] _modify
 #  410|             InterfaceType = (MyLocalClass) -> () -> ()
 #  410|           getSelfParam(): [ParamDecl] self
 #  410|               Type = MyLocalClass
@@ -2575,7 +2575,7 @@ cfg.swift:
 #-----|               getDest(): [MemberRefExpr] .x
 #-----|                 getBase(): [DeclRefExpr] self
 #-----|               getSource(): [DeclRefExpr] value
-#  417|         getAccessorDecl(2): [AccessorDecl] (unnamed function decl)
+#  417|         getAccessorDecl(2): [AccessorDecl] _modify
 #  417|             InterfaceType = (inout MyLocalStruct) -> () -> ()
 #  417|           getSelfParam(): [ParamDecl] self
 #  417|               Type = MyLocalStruct
@@ -2754,7 +2754,7 @@ cfg.swift:
 #-----|           getDest(): [MemberRefExpr] .x
 #-----|             getBase(): [DeclRefExpr] self
 #-----|           getSource(): [DeclRefExpr] value
-#  446|     getAccessorDecl(2): [AccessorDecl] (unnamed function decl)
+#  446|     getAccessorDecl(2): [AccessorDecl] _modify
 #  446|         InterfaceType = (inout B) -> () -> ()
 #  446|       getSelfParam(): [ParamDecl] self
 #  446|           Type = B
@@ -2795,7 +2795,7 @@ cfg.swift:
 #-----|           getDest(): [MemberRefExpr] .b
 #-----|             getBase(): [DeclRefExpr] self
 #-----|           getSource(): [DeclRefExpr] value
-#  450|     getAccessorDecl(2): [AccessorDecl] (unnamed function decl)
+#  450|     getAccessorDecl(2): [AccessorDecl] _modify
 #  450|         InterfaceType = (inout A) -> () -> ()
 #  450|       getSelfParam(): [ParamDecl] self
 #  450|           Type = A
@@ -2829,7 +2829,7 @@ cfg.swift:
 #-----|           getDest(): [MemberRefExpr] .bs
 #-----|             getBase(): [DeclRefExpr] self
 #-----|           getSource(): [DeclRefExpr] value
-#  451|     getAccessorDecl(2): [AccessorDecl] (unnamed function decl)
+#  451|     getAccessorDecl(2): [AccessorDecl] _modify
 #  451|         InterfaceType = (inout A) -> () -> ()
 #  451|       getSelfParam(): [ParamDecl] self
 #  451|           Type = A
@@ -2864,7 +2864,7 @@ cfg.swift:
 #-----|           getDest(): [MemberRefExpr] .mayB
 #-----|             getBase(): [DeclRefExpr] self
 #-----|           getSource(): [DeclRefExpr] value
-#  452|     getAccessorDecl(2): [AccessorDecl] (unnamed function decl)
+#  452|     getAccessorDecl(2): [AccessorDecl] _modify
 #  452|         InterfaceType = (inout A) -> () -> ()
 #  452|       getSelfParam(): [ParamDecl] self
 #  452|           Type = A
@@ -2983,7 +2983,7 @@ declarations.swift:
 #-----|           getDest(): [MemberRefExpr] .x
 #-----|             getBase(): [DeclRefExpr] self
 #-----|           getSource(): [DeclRefExpr] value
-#    2|     getAccessorDecl(2): [AccessorDecl] (unnamed function decl)
+#    2|     getAccessorDecl(2): [AccessorDecl] _modify
 #    2|         InterfaceType = (inout Foo) -> () -> ()
 #    2|       getSelfParam(): [ParamDecl] self
 #    2|           Type = Foo
@@ -3031,7 +3031,7 @@ declarations.swift:
 #    5|               getExpr(): [DeclRefExpr] newValue
 #    5|             getArgument(1): [Argument] : 1
 #    5|               getExpr(): [IntegerLiteralExpr] 1
-#    3|     getAccessorDecl(2): [AccessorDecl] (unnamed function decl)
+#    3|     getAccessorDecl(2): [AccessorDecl] _modify
 #    3|         InterfaceType = (inout Foo) -> () -> ()
 #    3|       getSelfParam(): [ParamDecl] self
 #    3|           Type = Foo
@@ -3079,7 +3079,7 @@ declarations.swift:
 #-----|           getDest(): [MemberRefExpr] .x
 #-----|             getBase(): [DeclRefExpr] self
 #-----|           getSource(): [DeclRefExpr] value
-#    9|     getAccessorDecl(2): [AccessorDecl] (unnamed function decl)
+#    9|     getAccessorDecl(2): [AccessorDecl] _modify
 #    9|         InterfaceType = (Bar) -> () -> ()
 #    9|       getSelfParam(): [ParamDecl] self
 #    9|           Type = Bar
@@ -3306,7 +3306,7 @@ declarations.swift:
 #   23|           Type = Self
 #   23|       getParam(0): [ParamDecl] newValue
 #   23|           Type = Int
-#   23|     getAccessorDecl(2): [AccessorDecl] (unnamed function decl)
+#   23|     getAccessorDecl(2): [AccessorDecl] _modify
 #   23|         InterfaceType = <Self where Self : MyProtocol> (inout Self) -> () -> ()
 #   23|       getSelfParam(): [ParamDecl] self
 #   23|           Type = Self
@@ -3393,7 +3393,7 @@ declarations.swift:
 #-----|           getDest(): [MemberRefExpr] .field
 #-----|             getBase(): [DeclRefExpr] self
 #-----|           getSource(): [DeclRefExpr] value
-#   41|     getAccessorDecl(2): [AccessorDecl] (unnamed function decl)
+#   41|     getAccessorDecl(2): [AccessorDecl] _modify
 #   41|         InterfaceType = (Baz) -> () -> ()
 #   41|       getSelfParam(): [ParamDecl] self
 #   41|           Type = Baz
@@ -3503,7 +3503,7 @@ declarations.swift:
 #   84|       getBody(): [BraceStmt] { ... }
 #   85|         getElement(0): [ReturnStmt] return ...
 #   85|           getResult(): [IntegerLiteralExpr] 0
-#   82|     getAccessorDecl(2): [AccessorDecl] (unnamed function decl)
+#   82|     getAccessorDecl(2): [AccessorDecl] _modify
 #   82|         InterfaceType = (inout HasPropertyAndObserver) -> () -> ()
 #   82|       getSelfParam(): [ParamDecl] self
 #   82|           Type = HasPropertyAndObserver
@@ -3563,7 +3563,7 @@ declarations.swift:
 #-----|           getDest(): [MemberRefExpr] .normalField
 #-----|             getBase(): [DeclRefExpr] self
 #-----|           getSource(): [DeclRefExpr] value
-#  102|     getAccessorDecl(2): [AccessorDecl] (unnamed function decl)
+#  102|     getAccessorDecl(2): [AccessorDecl] _modify
 #  102|         InterfaceType = (inout HasPropertyAndObserver) -> () -> ()
 #  102|       getSelfParam(): [ParamDecl] self
 #  102|           Type = HasPropertyAndObserver
@@ -3591,7 +3591,7 @@ declarations.swift:
 #  104|       getParam(1): [ParamDecl] x
 #  104|           Type = Int
 #  108|       getBody(): [BraceStmt] { ... }
-#  104|     getAccessorDecl(2): [AccessorDecl] (unnamed function decl)
+#  104|     getAccessorDecl(2): [AccessorDecl] _modify
 #  104|         InterfaceType = (inout HasPropertyAndObserver) -> (Int) -> ()
 #  104|       getSelfParam(): [ParamDecl] self
 #  104|           Type = HasPropertyAndObserver
@@ -3660,7 +3660,7 @@ declarations.swift:
 #-----|           getDest(): [MemberRefExpr] .hasWillSet1
 #-----|             getBase(): [DeclRefExpr] self
 #-----|           getSource(): [DeclRefExpr] value
-#  115|     getAccessorDecl(3): [AccessorDecl] (unnamed function decl)
+#  115|     getAccessorDecl(3): [AccessorDecl] _modify
 #  115|         InterfaceType = (inout HasPropertyAndObserver) -> () -> ()
 #  115|       getSelfParam(): [ParamDecl] self
 #  115|           Type = HasPropertyAndObserver
@@ -3707,7 +3707,7 @@ declarations.swift:
 #-----|           getDest(): [MemberRefExpr] .hasWillSet2
 #-----|             getBase(): [DeclRefExpr] self
 #-----|           getSource(): [DeclRefExpr] value
-#  119|     getAccessorDecl(3): [AccessorDecl] (unnamed function decl)
+#  119|     getAccessorDecl(3): [AccessorDecl] _modify
 #  119|         InterfaceType = (inout HasPropertyAndObserver) -> () -> ()
 #  119|       getSelfParam(): [ParamDecl] self
 #  119|           Type = HasPropertyAndObserver
@@ -3761,7 +3761,7 @@ declarations.swift:
 #-----|               getSubExpr(): [DeclRefExpr] self
 #-----|           getArgument(0): [Argument] : tmp
 #-----|             getExpr(): [DeclRefExpr] tmp
-#  123|     getAccessorDecl(3): [AccessorDecl] (unnamed function decl)
+#  123|     getAccessorDecl(3): [AccessorDecl] _modify
 #  123|         InterfaceType = (inout HasPropertyAndObserver) -> () -> ()
 #  123|       getSelfParam(): [ParamDecl] self
 #  123|           Type = HasPropertyAndObserver
@@ -3804,7 +3804,7 @@ declarations.swift:
 #-----|           getFunction(): [MethodRefExpr] .didSet
 #-----|             getBase(): [InOutExpr] &...
 #-----|               getSubExpr(): [DeclRefExpr] self
-#  127|     getAccessorDecl(3): [AccessorDecl] (unnamed function decl)
+#  127|     getAccessorDecl(3): [AccessorDecl] _modify
 #  127|         InterfaceType = (inout HasPropertyAndObserver) -> () -> ()
 #  127|       getSelfParam(): [ParamDecl] self
 #  127|           Type = HasPropertyAndObserver
@@ -3864,7 +3864,7 @@ declarations.swift:
 #-----|           getFunction(): [MethodRefExpr] .didSet
 #-----|             getBase(): [InOutExpr] &...
 #-----|               getSubExpr(): [DeclRefExpr] self
-#  131|     getAccessorDecl(4): [AccessorDecl] (unnamed function decl)
+#  131|     getAccessorDecl(4): [AccessorDecl] _modify
 #  131|         InterfaceType = (inout HasPropertyAndObserver) -> () -> ()
 #  131|       getSelfParam(): [ParamDecl] self
 #  131|           Type = HasPropertyAndObserver
@@ -4632,7 +4632,7 @@ expressions.swift:
 #   98|       getBody(): [BraceStmt] { ... }
 #   99|         getElement(0): [ReturnStmt] return ...
 #   99|           getResult(): [IntegerLiteralExpr] 0
-#   96|     getAccessorDecl(2): [AccessorDecl] (unnamed function decl)
+#   96|     getAccessorDecl(2): [AccessorDecl] _modify
 #   96|         InterfaceType = (inout HasProperty) -> () -> ()
 #   96|       getSelfParam(): [ParamDecl] self
 #   96|           Type = HasProperty
@@ -4692,7 +4692,7 @@ expressions.swift:
 #-----|           getDest(): [MemberRefExpr] .normalField
 #-----|             getBase(): [DeclRefExpr] self
 #-----|           getSource(): [DeclRefExpr] value
-#  116|     getAccessorDecl(2): [AccessorDecl] (unnamed function decl)
+#  116|     getAccessorDecl(2): [AccessorDecl] _modify
 #  116|         InterfaceType = (inout HasProperty) -> () -> ()
 #  116|       getSelfParam(): [ParamDecl] self
 #  116|           Type = HasProperty
@@ -4720,7 +4720,7 @@ expressions.swift:
 #  118|       getParam(1): [ParamDecl] x
 #  118|           Type = Int
 #  122|       getBody(): [BraceStmt] { ... }
-#  118|     getAccessorDecl(2): [AccessorDecl] (unnamed function decl)
+#  118|     getAccessorDecl(2): [AccessorDecl] _modify
 #  118|         InterfaceType = (inout HasProperty) -> (Int) -> ()
 #  118|       getSelfParam(): [ParamDecl] self
 #  118|           Type = HasProperty
@@ -4845,7 +4845,7 @@ expressions.swift:
 #-----|           getDest(): [MemberRefExpr] .x
 #-----|             getBase(): [DeclRefExpr] self
 #-----|           getSource(): [DeclRefExpr] value
-#  142|     getAccessorDecl(2): [AccessorDecl] (unnamed function decl)
+#  142|     getAccessorDecl(2): [AccessorDecl] _modify
 #  142|         InterfaceType = (inout B) -> () -> ()
 #  142|       getSelfParam(): [ParamDecl] self
 #  142|           Type = B
@@ -4886,7 +4886,7 @@ expressions.swift:
 #-----|           getDest(): [MemberRefExpr] .b
 #-----|             getBase(): [DeclRefExpr] self
 #-----|           getSource(): [DeclRefExpr] value
-#  146|     getAccessorDecl(2): [AccessorDecl] (unnamed function decl)
+#  146|     getAccessorDecl(2): [AccessorDecl] _modify
 #  146|         InterfaceType = (inout A) -> () -> ()
 #  146|       getSelfParam(): [ParamDecl] self
 #  146|           Type = A
@@ -4920,7 +4920,7 @@ expressions.swift:
 #-----|           getDest(): [MemberRefExpr] .bs
 #-----|             getBase(): [DeclRefExpr] self
 #-----|           getSource(): [DeclRefExpr] value
-#  147|     getAccessorDecl(2): [AccessorDecl] (unnamed function decl)
+#  147|     getAccessorDecl(2): [AccessorDecl] _modify
 #  147|         InterfaceType = (inout A) -> () -> ()
 #  147|       getSelfParam(): [ParamDecl] self
 #  147|           Type = A
@@ -4955,7 +4955,7 @@ expressions.swift:
 #-----|           getDest(): [MemberRefExpr] .mayB
 #-----|             getBase(): [DeclRefExpr] self
 #-----|           getSource(): [DeclRefExpr] value
-#  148|     getAccessorDecl(2): [AccessorDecl] (unnamed function decl)
+#  148|     getAccessorDecl(2): [AccessorDecl] _modify
 #  148|         InterfaceType = (inout A) -> () -> ()
 #  148|       getSelfParam(): [ParamDecl] self
 #  148|           Type = A
@@ -5695,7 +5695,7 @@ statements.swift:
 #-----|           getDest(): [MemberRefExpr] .x
 #-----|             getBase(): [DeclRefExpr] self
 #-----|           getSource(): [DeclRefExpr] value
-#   75|     getAccessorDecl(2): [AccessorDecl] (unnamed function decl)
+#   75|     getAccessorDecl(2): [AccessorDecl] _modify
 #   75|         InterfaceType = (inout HasModifyAccessorDecl) -> () -> ()
 #   75|       getSelfParam(): [ParamDecl] self
 #   75|           Type = HasModifyAccessorDecl
@@ -5710,7 +5710,7 @@ statements.swift:
 #   76|       getTypeRepr(): [TypeRepr] Int
 #   76|   getMember(3): [ConcreteVarDecl] hasModify
 #   76|       Type = Int
-#   77|     getAccessorDecl(0): [AccessorDecl] (unnamed function decl)
+#   77|     getAccessorDecl(0): [AccessorDecl] _modify
 #   77|         InterfaceType = (inout HasModifyAccessorDecl) -> () -> ()
 #   77|       getSelfParam(): [ParamDecl] self
 #   77|           Type = HasModifyAccessorDecl
diff --git a/swift/ql/test/library-tests/controlflow/graph/Cfg.expected b/swift/ql/test/library-tests/controlflow/graph/Cfg.expected
index 8146cf4fa3a..9eebf08a5c6 100644
--- a/swift/ql/test/library-tests/controlflow/graph/Cfg.expected
+++ b/swift/ql/test/library-tests/controlflow/graph/Cfg.expected
@@ -5148,11 +5148,11 @@ cfg.swift:
 #  390| 0
 #-----|  -> return ...
 
-#  394| (unnamed function decl)
+#  394| _modify
 #-----|  -> self
 
-#  394| enter (unnamed function decl)
-#-----|  -> (unnamed function decl)
+#  394| enter _modify
+#-----|  -> _modify
 
 #  394| enter get
 #-----|  -> get
@@ -5160,10 +5160,10 @@ cfg.swift:
 #  394| enter set
 #-----|  -> set
 
-#  394| exit (unnamed function decl)
+#  394| exit _modify
 
-#  394| exit (unnamed function decl) (normal)
-#-----|  -> exit (unnamed function decl)
+#  394| exit _modify (normal)
+#-----|  -> exit _modify
 
 #  394| exit get
 
@@ -5191,7 +5191,7 @@ cfg.swift:
 #  394| value
 
 #  394| yield ...
-#-----|  -> exit (unnamed function decl) (normal)
+#-----|  -> exit _modify (normal)
 
 #  395| self
 #-----|  -> self
@@ -5320,11 +5320,11 @@ cfg.swift:
 #  409| { ... }
 #-----|  -> exit deinit() (normal)
 
-#  410| (unnamed function decl)
+#  410| _modify
 #-----|  -> self
 
-#  410| enter (unnamed function decl)
-#-----|  -> (unnamed function decl)
+#  410| enter _modify
+#-----|  -> _modify
 
 #  410| enter get
 #-----|  -> get
@@ -5332,10 +5332,10 @@ cfg.swift:
 #  410| enter set
 #-----|  -> set
 
-#  410| exit (unnamed function decl)
+#  410| exit _modify
 
-#  410| exit (unnamed function decl) (normal)
-#-----|  -> exit (unnamed function decl)
+#  410| exit _modify (normal)
+#-----|  -> exit _modify
 
 #  410| exit get
 
@@ -5363,7 +5363,7 @@ cfg.swift:
 #  410| value
 
 #  410| yield ...
-#-----|  -> exit (unnamed function decl) (normal)
+#-----|  -> exit _modify (normal)
 
 #  411| self
 #-----|  -> self
@@ -5397,11 +5397,11 @@ cfg.swift:
 #  416| MyLocalStruct
 #-----|  -> MyLocalEnum
 
-#  417| (unnamed function decl)
+#  417| _modify
 #-----|  -> self
 
-#  417| enter (unnamed function decl)
-#-----|  -> (unnamed function decl)
+#  417| enter _modify
+#-----|  -> _modify
 
 #  417| enter get
 #-----|  -> get
@@ -5409,10 +5409,10 @@ cfg.swift:
 #  417| enter set
 #-----|  -> set
 
-#  417| exit (unnamed function decl)
+#  417| exit _modify
 
-#  417| exit (unnamed function decl) (normal)
-#-----|  -> exit (unnamed function decl)
+#  417| exit _modify (normal)
+#-----|  -> exit _modify
 
 #  417| exit get
 
@@ -5440,7 +5440,7 @@ cfg.swift:
 #  417| value
 
 #  417| yield ...
-#-----|  -> exit (unnamed function decl) (normal)
+#-----|  -> exit _modify (normal)
 
 #  418| self
 #-----|  -> self
@@ -5492,11 +5492,11 @@ cfg.swift:
 #  442| 0
 #-----|  -> return ...
 
-#  446| (unnamed function decl)
+#  446| _modify
 #-----|  -> self
 
-#  446| enter (unnamed function decl)
-#-----|  -> (unnamed function decl)
+#  446| enter _modify
+#-----|  -> _modify
 
 #  446| enter get
 #-----|  -> get
@@ -5504,10 +5504,10 @@ cfg.swift:
 #  446| enter set
 #-----|  -> set
 
-#  446| exit (unnamed function decl)
+#  446| exit _modify
 
-#  446| exit (unnamed function decl) (normal)
-#-----|  -> exit (unnamed function decl)
+#  446| exit _modify (normal)
+#-----|  -> exit _modify
 
 #  446| exit get
 
@@ -5535,13 +5535,13 @@ cfg.swift:
 #  446| value
 
 #  446| yield ...
-#-----|  -> exit (unnamed function decl) (normal)
+#-----|  -> exit _modify (normal)
 
-#  450| (unnamed function decl)
+#  450| _modify
 #-----|  -> self
 
-#  450| enter (unnamed function decl)
-#-----|  -> (unnamed function decl)
+#  450| enter _modify
+#-----|  -> _modify
 
 #  450| enter get
 #-----|  -> get
@@ -5549,10 +5549,10 @@ cfg.swift:
 #  450| enter set
 #-----|  -> set
 
-#  450| exit (unnamed function decl)
+#  450| exit _modify
 
-#  450| exit (unnamed function decl) (normal)
-#-----|  -> exit (unnamed function decl)
+#  450| exit _modify (normal)
+#-----|  -> exit _modify
 
 #  450| exit get
 
@@ -5580,13 +5580,13 @@ cfg.swift:
 #  450| value
 
 #  450| yield ...
-#-----|  -> exit (unnamed function decl) (normal)
+#-----|  -> exit _modify (normal)
 
-#  451| (unnamed function decl)
+#  451| _modify
 #-----|  -> self
 
-#  451| enter (unnamed function decl)
-#-----|  -> (unnamed function decl)
+#  451| enter _modify
+#-----|  -> _modify
 
 #  451| enter get
 #-----|  -> get
@@ -5594,10 +5594,10 @@ cfg.swift:
 #  451| enter set
 #-----|  -> set
 
-#  451| exit (unnamed function decl)
+#  451| exit _modify
 
-#  451| exit (unnamed function decl) (normal)
-#-----|  -> exit (unnamed function decl)
+#  451| exit _modify (normal)
+#-----|  -> exit _modify
 
 #  451| exit get
 
@@ -5625,13 +5625,13 @@ cfg.swift:
 #  451| value
 
 #  451| yield ...
-#-----|  -> exit (unnamed function decl) (normal)
+#-----|  -> exit _modify (normal)
 
-#  452| (unnamed function decl)
+#  452| _modify
 #-----|  -> self
 
-#  452| enter (unnamed function decl)
-#-----|  -> (unnamed function decl)
+#  452| enter _modify
+#-----|  -> _modify
 
 #  452| enter get
 #-----|  -> get
@@ -5639,10 +5639,10 @@ cfg.swift:
 #  452| enter set
 #-----|  -> set
 
-#  452| exit (unnamed function decl)
+#  452| exit _modify
 
-#  452| exit (unnamed function decl) (normal)
-#-----|  -> exit (unnamed function decl)
+#  452| exit _modify (normal)
+#-----|  -> exit _modify
 
 #  452| exit get
 
@@ -5670,7 +5670,7 @@ cfg.swift:
 #  452| value
 
 #  452| yield ...
-#-----|  -> exit (unnamed function decl) (normal)
+#-----|  -> exit _modify (normal)
 
 #  455| enter test(a:)
 #-----|  -> test(a:)

From d0cf709d2e6e4b0623cc9bab5048d30224972c9a Mon Sep 17 00:00:00 2001
From: Erik Krogh Kristensen <erik-krogh@github.com>
Date: Tue, 29 Nov 2022 21:30:50 +0100
Subject: [PATCH 0822/1420] use proper path construction

Co-authored-by: Asger F <asgerf@github.com>
---
 javascript/extractor/src/com/semmle/js/extractor/AutoBuild.java | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/javascript/extractor/src/com/semmle/js/extractor/AutoBuild.java b/javascript/extractor/src/com/semmle/js/extractor/AutoBuild.java
index 266685e0abf..883b6efb859 100644
--- a/javascript/extractor/src/com/semmle/js/extractor/AutoBuild.java
+++ b/javascript/extractor/src/com/semmle/js/extractor/AutoBuild.java
@@ -461,7 +461,7 @@ public class AutoBuild {
         warn("No JavaScript or TypeScript code found.");
       }
       // ensuring that the finalize steps detects that no code was seen. 
-      Path srcFolder = Paths.get(EnvironmentVariables.getWipDatabase() + "/src");
+      Path srcFolder = Paths.get(EnvironmentVariables.getWipDatabase(), "src");
       // check that the srcFolder is empty
       if (Files.list(srcFolder).count() == 0) {
         // Non-recursive delete because "src/" should be empty.

From de5ffd5cfa55456fc1fcc589f409aa27ab5f8aa5 Mon Sep 17 00:00:00 2001
From: erik-krogh <erik-krogh@github.com>
Date: Tue, 29 Nov 2022 21:31:29 +0100
Subject: [PATCH 0823/1420] bump extractor version

---
 javascript/extractor/src/com/semmle/js/extractor/Main.java | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/javascript/extractor/src/com/semmle/js/extractor/Main.java b/javascript/extractor/src/com/semmle/js/extractor/Main.java
index b7ab9b7e62b..69503631c04 100644
--- a/javascript/extractor/src/com/semmle/js/extractor/Main.java
+++ b/javascript/extractor/src/com/semmle/js/extractor/Main.java
@@ -41,7 +41,7 @@ public class Main {
    * A version identifier that should be updated every time the extractor changes in such a way that
    * it may produce different tuples for the same file under the same {@link ExtractorConfig}.
    */
-  public static final String EXTRACTOR_VERSION = "2022-11-16";
+  public static final String EXTRACTOR_VERSION = "2022-11-29";
 
   public static final Pattern NEWLINE = Pattern.compile("\n");
 

From 5402f047bfe4e249b7bd2159363f2077575b1a61 Mon Sep 17 00:00:00 2001
From: tiferet <tiferet@github.com>
Date: Thu, 17 Nov 2022 11:59:36 -0800
Subject: [PATCH 0824/1420] Delete `CoreKnowledge`.

All remaining functionality in `CoreKnowledge` is only being used in `EndpointCharacteristics`, so it can be moved there as a small set of helper predicates.
---
 .../EndpointCharacteristics.qll               | 48 +------------------
 1 file changed, 1 insertion(+), 47 deletions(-)

diff --git a/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/EndpointCharacteristics.qll b/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/EndpointCharacteristics.qll
index 74a5ca6256d..263685889c1 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/EndpointCharacteristics.qll
+++ b/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/EndpointCharacteristics.qll
@@ -9,6 +9,7 @@ private import semmle.javascript.security.dataflow.NosqlInjectionCustomizations
 private import semmle.javascript.security.dataflow.TaintedPathCustomizations
 private import semmle.javascript.heuristics.SyntacticHeuristics as SyntacticHeuristics
 private import semmle.javascript.filters.ClassifyFiles as ClassifyFiles
+private import StandardEndpointFilters as StandardEndpointFilters
 private import semmle.javascript.security.dataflow.XxeCustomizations
 private import semmle.javascript.security.dataflow.RemotePropertyInjectionCustomizations
 private import semmle.javascript.security.dataflow.TypeConfusionThroughParameterTamperingCustomizations
@@ -154,53 +155,6 @@ private predicate isKnownStepSrc(DataFlow::Node n) {
   DataFlow::SharedFlowStep::step(n, _, _, _)
 }
 
-/**
- * Holds if the data flow node is a (possibly indirect) argument of a likely external library call.
- *
- * This includes direct arguments of likely external library calls as well as nested object
- * literals within those calls.
- */
-private predicate flowsToArgumentOfLikelyExternalLibraryCall(DataFlow::Node n) {
-  n = getACallWithoutCallee().getAnArgument()
-  or
-  exists(DataFlow::SourceNode src | flowsToArgumentOfLikelyExternalLibraryCall(src) |
-    n = src.getAPropertyWrite().getRhs()
-  )
-  or
-  exists(DataFlow::ArrayCreationNode arr | flowsToArgumentOfLikelyExternalLibraryCall(arr) |
-    n = arr.getAnElement()
-  )
-}
-
-/**
- * Get calls for which we do not have the callee (i.e. the definition of the called function). This
- * acts as a heuristic for identifying calls to external library functions.
- */
-private DataFlow::CallNode getACallWithoutCallee() {
-  forall(Function callee | callee = result.getACallee() | callee.getTopLevel().isExterns()) and
-  not exists(DataFlow::ParameterNode param, DataFlow::FunctionNode callback |
-    param.flowsTo(result.getCalleeNode()) and
-    callback = getACallback(param, DataFlow::TypeBackTracker::end())
-  )
-}
-
-/**
- * Gets a node that flows to callback-parameter `p`.
- */
-private DataFlow::SourceNode getACallback(DataFlow::ParameterNode p, DataFlow::TypeBackTracker t) {
-  t.start() and
-  result = p and
-  any(DataFlow::FunctionNode f).getLastParameter() = p and
-  exists(p.getACall())
-  or
-  exists(DataFlow::TypeBackTracker t2 | result = getACallback(p, t2).backtrack(t2, t))
-}
-
-/**
- * Get calls which are likely to be to external non-built-in libraries.
- */
-DataFlow::CallNode getALikelyExternalLibraryCall() { result = getACallWithoutCallee() }
-
 /*
  * Characteristics that are indicative of a sink.
  * NOTE: Initially each sink type has only one characteristic, which is that it's a sink of this type in the standard

From 05a943c9b533afbe4cf71a6e09527daf17c340f7 Mon Sep 17 00:00:00 2001
From: tiferet <tiferet@github.com>
Date: Thu, 17 Nov 2022 12:12:03 -0800
Subject: [PATCH 0825/1420] Delete `StandardEndpointFilters`.

All remaining functionality in `StandardEndpointFilters` is only being used in `EndpointCharacteristics`, so it can be moved there as a small set of helper predicates.
---
 .../EndpointCharacteristics.qll               | 48 ++++++++++++++++++-
 1 file changed, 47 insertions(+), 1 deletion(-)

diff --git a/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/EndpointCharacteristics.qll b/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/EndpointCharacteristics.qll
index 263685889c1..74a5ca6256d 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/EndpointCharacteristics.qll
+++ b/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/EndpointCharacteristics.qll
@@ -9,7 +9,6 @@ private import semmle.javascript.security.dataflow.NosqlInjectionCustomizations
 private import semmle.javascript.security.dataflow.TaintedPathCustomizations
 private import semmle.javascript.heuristics.SyntacticHeuristics as SyntacticHeuristics
 private import semmle.javascript.filters.ClassifyFiles as ClassifyFiles
-private import StandardEndpointFilters as StandardEndpointFilters
 private import semmle.javascript.security.dataflow.XxeCustomizations
 private import semmle.javascript.security.dataflow.RemotePropertyInjectionCustomizations
 private import semmle.javascript.security.dataflow.TypeConfusionThroughParameterTamperingCustomizations
@@ -155,6 +154,53 @@ private predicate isKnownStepSrc(DataFlow::Node n) {
   DataFlow::SharedFlowStep::step(n, _, _, _)
 }
 
+/**
+ * Holds if the data flow node is a (possibly indirect) argument of a likely external library call.
+ *
+ * This includes direct arguments of likely external library calls as well as nested object
+ * literals within those calls.
+ */
+private predicate flowsToArgumentOfLikelyExternalLibraryCall(DataFlow::Node n) {
+  n = getACallWithoutCallee().getAnArgument()
+  or
+  exists(DataFlow::SourceNode src | flowsToArgumentOfLikelyExternalLibraryCall(src) |
+    n = src.getAPropertyWrite().getRhs()
+  )
+  or
+  exists(DataFlow::ArrayCreationNode arr | flowsToArgumentOfLikelyExternalLibraryCall(arr) |
+    n = arr.getAnElement()
+  )
+}
+
+/**
+ * Get calls for which we do not have the callee (i.e. the definition of the called function). This
+ * acts as a heuristic for identifying calls to external library functions.
+ */
+private DataFlow::CallNode getACallWithoutCallee() {
+  forall(Function callee | callee = result.getACallee() | callee.getTopLevel().isExterns()) and
+  not exists(DataFlow::ParameterNode param, DataFlow::FunctionNode callback |
+    param.flowsTo(result.getCalleeNode()) and
+    callback = getACallback(param, DataFlow::TypeBackTracker::end())
+  )
+}
+
+/**
+ * Gets a node that flows to callback-parameter `p`.
+ */
+private DataFlow::SourceNode getACallback(DataFlow::ParameterNode p, DataFlow::TypeBackTracker t) {
+  t.start() and
+  result = p and
+  any(DataFlow::FunctionNode f).getLastParameter() = p and
+  exists(p.getACall())
+  or
+  exists(DataFlow::TypeBackTracker t2 | result = getACallback(p, t2).backtrack(t2, t))
+}
+
+/**
+ * Get calls which are likely to be to external non-built-in libraries.
+ */
+DataFlow::CallNode getALikelyExternalLibraryCall() { result = getACallWithoutCallee() }
+
 /*
  * Characteristics that are indicative of a sink.
  * NOTE: Initially each sink type has only one characteristic, which is that it's a sink of this type in the standard

From 50291c7b7c1a759654d281665206710f51f1d747 Mon Sep 17 00:00:00 2001
From: tiferet <tiferet@github.com>
Date: Thu, 17 Nov 2022 17:00:33 -0800
Subject: [PATCH 0826/1420] `AtmConfig` inherits from
 `TaintTracking::Configuration`.

That way the specific configs which inherit from `AtmConfig` also inherit from `TaintTracking::Configuration`.

This removes the need for two separate config classes for each query.
---
 .../adaptivethreatmodeling/ATMConfig.qll      |  2 +-
 .../NosqlInjectionATM.qll                     | 96 +++++++++----------
 .../SqlInjectionATM.qll                       | 24 ++---
 .../adaptivethreatmodeling/TaintedPathATM.qll | 26 ++---
 .../adaptivethreatmodeling/XssATM.qll         | 25 ++---
 .../modelbuilding/DebugResultInclusion.ql     |  8 +-
 .../extraction/ExtractEndpointMapping.ql      |  8 +-
 .../endpoint_large_scale/EndpointFeatures.ql  |  8 +-
 .../FilteredTruePositives.ql                  |  8 +-
 ...ql_endpoint_filter_ignores_modeled_apis.ql |  2 +-
 10 files changed, 90 insertions(+), 117 deletions(-)

diff --git a/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/ATMConfig.qll b/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/ATMConfig.qll
index ed9ca5ce1c1..4106269d759 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/ATMConfig.qll
+++ b/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/ATMConfig.qll
@@ -29,7 +29,7 @@ import EndpointCharacteristics as EndpointCharacteristics
  * `isAdditionalFlowStep` with a more generalised definition of additional edges. See
  * `NosqlInjectionATM.qll` for an example of doing this.
  */
-abstract class AtmConfig extends string {
+abstract class AtmConfig extends JS::TaintTracking::Configuration {
   bindingset[this]
   AtmConfig() { any() }
 
diff --git a/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/NosqlInjectionATM.qll b/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/NosqlInjectionATM.qll
index f03631bfdcf..5de89d30c5e 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/NosqlInjectionATM.qll
+++ b/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/NosqlInjectionATM.qll
@@ -1,6 +1,7 @@
 /**
  * For internal use only.
  *
+ * A taint-tracking configuration for reasoning about NoSQL injection vulnerabilities.
  * Defines shared code used by the NoSQL injection boosted query.
  */
 
@@ -9,61 +10,20 @@ private import semmle.javascript.heuristics.SyntacticHeuristics
 private import semmle.javascript.security.dataflow.NosqlInjectionCustomizations
 import AdaptiveThreatModeling
 
-class NosqlInjectionAtmConfig extends AtmConfig {
-  NosqlInjectionAtmConfig() { this = "NosqlInjectionATMConfig" }
+class Configuration extends AtmConfig {
+  Configuration() { this = "NosqlInjectionATMConfig" }
 
   override predicate isKnownSource(DataFlow::Node source) {
     source instanceof NosqlInjection::Source or TaintedObject::isSource(source, _)
   }
 
   override EndpointType getASinkEndpointType() { result instanceof NosqlInjectionSinkType }
-}
 
-/** DEPRECATED: Alias for NosqlInjectionAtmConfig */
-deprecated class NosqlInjectionATMConfig = NosqlInjectionAtmConfig;
-
-/** Holds if src -> trg is an additional flow step in the non-boosted NoSql injection security query. */
-predicate isBaseAdditionalFlowStep(
-  DataFlow::Node src, DataFlow::Node trg, DataFlow::FlowLabel inlbl, DataFlow::FlowLabel outlbl
-) {
-  TaintedObject::step(src, trg, inlbl, outlbl)
-  or
-  // additional flow step to track taint through NoSQL query objects
-  inlbl = TaintedObject::label() and
-  outlbl = TaintedObject::label() and
-  exists(NoSql::Query query, DataFlow::SourceNode queryObj |
-    queryObj.flowsTo(query) and
-    queryObj.flowsTo(trg) and
-    src = queryObj.getAPropertyWrite().getRhs()
-  )
-}
-
-/**
- * Gets a value that is (transitively) written to `query`, where `query` is a NoSQL sink.
- *
- * This predicate allows us to propagate data flow through property writes and array constructors
- * within a query object, enabling the security query to pick up NoSQL injection vulnerabilities
- * involving more complex queries.
- */
-DataFlow::Node getASubexpressionWithinQuery(DataFlow::Node query) {
-  any(NosqlInjectionAtmConfig cfg).isEffectiveSink(query) and
-  exists(DataFlow::SourceNode receiver |
-    receiver = [getASubexpressionWithinQuery(query), query].getALocalSource()
-  |
-    result =
-      [receiver.getAPropertyWrite().getRhs(), receiver.(DataFlow::ArrayCreationNode).getAnElement()]
-  )
-}
-
-/**
- * A taint-tracking configuration for reasoning about NoSQL injection vulnerabilities.
- *
- * This is largely a copy of the taint tracking configuration for the standard NoSQL injection
- * query, except additional ATM sinks have been added and the additional flow step has been
- * generalised to cover the sinks predicted by ATM.
- */
-class Configuration extends TaintTracking::Configuration {
-  Configuration() { this = "NosqlInjectionATM" }
+  /*
+   * This is largely a copy of the taint tracking configuration for the standard NoSQL injection
+   * query, except additional ATM sinks have been added and the additional flow step has been
+   * generalised to cover the sinks predicted by ATM.
+   */
 
   override predicate isSource(DataFlow::Node source) { source instanceof NosqlInjection::Source }
 
@@ -75,7 +35,7 @@ class Configuration extends TaintTracking::Configuration {
     sink.(NosqlInjection::Sink).getAFlowLabel() = label
     or
     // Allow effective sinks to have any taint label
-    any(NosqlInjectionAtmConfig cfg).isEffectiveSink(sink)
+    isEffectiveSink(sink)
   }
 
   override predicate isSanitizer(DataFlow::Node node) {
@@ -94,7 +54,43 @@ class Configuration extends TaintTracking::Configuration {
     isBaseAdditionalFlowStep(src, trg, inlbl, outlbl)
     or
     // relaxed version of previous step to track taint through unmodeled NoSQL query objects
-    any(NosqlInjectionAtmConfig cfg).isEffectiveSink(trg) and
+    isEffectiveSink(trg) and
     src = getASubexpressionWithinQuery(trg)
   }
+
+  /** Holds if src -> trg is an additional flow step in the non-boosted NoSql injection security query. */
+  private predicate isBaseAdditionalFlowStep(
+    DataFlow::Node src, DataFlow::Node trg, DataFlow::FlowLabel inlbl, DataFlow::FlowLabel outlbl
+  ) {
+    TaintedObject::step(src, trg, inlbl, outlbl)
+    or
+    // additional flow step to track taint through NoSQL query objects
+    inlbl = TaintedObject::label() and
+    outlbl = TaintedObject::label() and
+    exists(NoSql::Query query, DataFlow::SourceNode queryObj |
+      queryObj.flowsTo(query) and
+      queryObj.flowsTo(trg) and
+      src = queryObj.getAPropertyWrite().getRhs()
+    )
+  }
+
+  /**
+   * Gets a value that is (transitively) written to `query`, where `query` is a NoSQL sink.
+   *
+   * This predicate allows us to propagate data flow through property writes and array constructors
+   * within a query object, enabling the security query to pick up NoSQL injection vulnerabilities
+   * involving more complex queries.
+   */
+  private DataFlow::Node getASubexpressionWithinQuery(DataFlow::Node query) {
+    isEffectiveSink(query) and
+    exists(DataFlow::SourceNode receiver |
+      receiver = [getASubexpressionWithinQuery(query), query].getALocalSource()
+    |
+      result =
+        [
+          receiver.getAPropertyWrite().getRhs(),
+          receiver.(DataFlow::ArrayCreationNode).getAnElement()
+        ]
+    )
+  }
 }
diff --git a/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/SqlInjectionATM.qll b/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/SqlInjectionATM.qll
index 14821404e6d..d51e99060bd 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/SqlInjectionATM.qll
+++ b/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/SqlInjectionATM.qll
@@ -1,6 +1,7 @@
 /**
  * For internal use only.
  *
+ * A taint-tracking configuration for reasoning about SQL injection vulnerabilities.
  * Defines shared code used by the SQL injection boosted query.
  */
 
@@ -8,30 +9,21 @@ import semmle.javascript.heuristics.SyntacticHeuristics
 import semmle.javascript.security.dataflow.SqlInjectionCustomizations
 import AdaptiveThreatModeling
 
-class SqlInjectionAtmConfig extends AtmConfig {
-  SqlInjectionAtmConfig() { this = "SqlInjectionATMConfig" }
+class Configuration extends AtmConfig {
+  Configuration() { this = "SqlInjectionATMConfig" }
 
   override predicate isKnownSource(DataFlow::Node source) { source instanceof SqlInjection::Source }
 
   override EndpointType getASinkEndpointType() { result instanceof SqlInjectionSinkType }
-}
-
-/** DEPRECATED: Alias for SqlInjectionAtmConfig */
-deprecated class SqlInjectionATMConfig = SqlInjectionAtmConfig;
-
-/**
- * A taint-tracking configuration for reasoning about SQL injection vulnerabilities.
- *
- * This is largely a copy of the taint tracking configuration for the standard SQL injection
- * query, except additional sinks have been added using the sink endpoint filter.
- */
-class Configuration extends TaintTracking::Configuration {
-  Configuration() { this = "SqlInjectionATM" }
 
+  /**
+   * This is largely a copy of the taint tracking configuration for the standard SQL injection
+   * query, except additional sinks have been added using the sink endpoint filter.
+   */
   override predicate isSource(DataFlow::Node source) { source instanceof SqlInjection::Source }
 
   override predicate isSink(DataFlow::Node sink) {
-    sink instanceof SqlInjection::Sink or any(SqlInjectionAtmConfig cfg).isEffectiveSink(sink)
+    sink instanceof SqlInjection::Sink or isEffectiveSink(sink)
   }
 
   override predicate isSanitizer(DataFlow::Node node) {
diff --git a/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/TaintedPathATM.qll b/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/TaintedPathATM.qll
index 302907820da..646748b29bc 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/TaintedPathATM.qll
+++ b/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/TaintedPathATM.qll
@@ -1,6 +1,7 @@
 /**
  * For internal use only.
  *
+ * A taint-tracking configuration for reasoning about path injection vulnerabilities.
  * Defines shared code used by the path injection boosted query.
  */
 
@@ -8,33 +9,24 @@ import semmle.javascript.heuristics.SyntacticHeuristics
 import semmle.javascript.security.dataflow.TaintedPathCustomizations
 import AdaptiveThreatModeling
 
-class TaintedPathAtmConfig extends AtmConfig {
-  TaintedPathAtmConfig() { this = "TaintedPathATMConfig" }
+class Configuration extends AtmConfig {
+  Configuration() { this = "TaintedPathATMConfig" }
 
   override predicate isKnownSource(DataFlow::Node source) { source instanceof TaintedPath::Source }
 
   override EndpointType getASinkEndpointType() { result instanceof TaintedPathSinkType }
-}
-
-/** DEPRECATED: Alias for TaintedPathAtmConfig */
-deprecated class TaintedPathATMConfig = TaintedPathAtmConfig;
-
-/**
- * A taint-tracking configuration for reasoning about path injection vulnerabilities.
- *
- * This is largely a copy of the taint tracking configuration for the standard path injection
- * query, except additional ATM sinks have been added to the `isSink` predicate.
- */
-class Configuration extends TaintTracking::Configuration {
-  Configuration() { this = "TaintedPathATM" }
 
+  /**
+   * This is largely a copy of the taint tracking configuration for the standard path injection
+   * query, except additional ATM sinks have been added to the `isSink` predicate.
+   */
   override predicate isSource(DataFlow::Node source) { source instanceof TaintedPath::Source }
 
   override predicate isSink(DataFlow::Node sink, DataFlow::FlowLabel label) {
     label = sink.(TaintedPath::Sink).getAFlowLabel()
     or
     // Allow effective sinks to have any taint label
-    any(TaintedPathAtmConfig cfg).isEffectiveSink(sink)
+    isEffectiveSink(sink)
   }
 
   override predicate isSanitizer(DataFlow::Node node) { node instanceof TaintedPath::Sanitizer }
@@ -60,7 +52,7 @@ class Configuration extends TaintTracking::Configuration {
  * of barrier guards, we port the barrier guards for the boosted query from the standard library to
  * sanitizer guards here.
  */
-class BarrierGuardNodeAsSanitizerGuardNode extends TaintTracking::LabeledSanitizerGuardNode {
+private class BarrierGuardNodeAsSanitizerGuardNode extends TaintTracking::LabeledSanitizerGuardNode {
   BarrierGuardNodeAsSanitizerGuardNode() { this instanceof TaintedPath::BarrierGuardNode }
 
   override predicate sanitizes(boolean outcome, Expr e) {
diff --git a/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/XssATM.qll b/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/XssATM.qll
index 2cc848a7ea9..5869be2c325 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/XssATM.qll
+++ b/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/XssATM.qll
@@ -8,31 +8,24 @@ private import semmle.javascript.heuristics.SyntacticHeuristics
 private import semmle.javascript.security.dataflow.DomBasedXssCustomizations
 import AdaptiveThreatModeling
 
-class DomBasedXssAtmConfig extends AtmConfig {
-  DomBasedXssAtmConfig() { this = "DomBasedXssATMConfig" }
+class Configuration extends AtmConfig {
+  Configuration() { this = "DomBasedXssATMConfig" }
 
   override predicate isKnownSource(DataFlow::Node source) { source instanceof DomBasedXss::Source }
 
   override EndpointType getASinkEndpointType() { result instanceof XssSinkType }
-}
-
-/** DEPRECATED: Alias for DomBasedXssAtmConfig */
-deprecated class DomBasedXssATMConfig = DomBasedXssAtmConfig;
-
-/**
- * A taint-tracking configuration for reasoning about XSS vulnerabilities.
- *
- * This is largely a copy of the taint tracking configuration for the standard XSSThroughDom query,
- * except additional ATM sinks have been added to the `isSink` predicate.
- */
-class Configuration extends TaintTracking::Configuration {
-  Configuration() { this = "DomBasedXssATMConfiguration" }
 
+  /**
+   * A taint-tracking configuration for reasoning about XSS vulnerabilities.
+   *
+   * This is largely a copy of the taint tracking configuration for the standard XSSThroughDom query,
+   * except additional ATM sinks have been added to the `isSink` predicate.
+   */
   override predicate isSource(DataFlow::Node source) { source instanceof DomBasedXss::Source }
 
   override predicate isSink(DataFlow::Node sink) {
     sink instanceof DomBasedXss::Sink or
-    any(DomBasedXssAtmConfig cfg).isEffectiveSink(sink)
+    isEffectiveSink(sink)
   }
 
   override predicate isSanitizer(DataFlow::Node node) {
diff --git a/javascript/ql/experimental/adaptivethreatmodeling/modelbuilding/DebugResultInclusion.ql b/javascript/ql/experimental/adaptivethreatmodeling/modelbuilding/DebugResultInclusion.ql
index 444f682304d..1b5c235107e 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/modelbuilding/DebugResultInclusion.ql
+++ b/javascript/ql/experimental/adaptivethreatmodeling/modelbuilding/DebugResultInclusion.ql
@@ -19,16 +19,16 @@ private import experimental.adaptivethreatmodeling.XssATM as XssAtm
 
 string getAReasonSinkExcluded(DataFlow::Node sinkCandidate, Query query) {
   query instanceof NosqlInjectionQuery and
-  result = any(NosqlInjectionAtm::NosqlInjectionAtmConfig cfg).getAReasonSinkExcluded(sinkCandidate)
+  result = any(NosqlInjectionAtm::Configuration cfg).getAReasonSinkExcluded(sinkCandidate)
   or
   query instanceof SqlInjectionQuery and
-  result = any(SqlInjectionAtm::SqlInjectionAtmConfig cfg).getAReasonSinkExcluded(sinkCandidate)
+  result = any(SqlInjectionAtm::Configuration cfg).getAReasonSinkExcluded(sinkCandidate)
   or
   query instanceof TaintedPathQuery and
-  result = any(TaintedPathAtm::TaintedPathAtmConfig cfg).getAReasonSinkExcluded(sinkCandidate)
+  result = any(TaintedPathAtm::Configuration cfg).getAReasonSinkExcluded(sinkCandidate)
   or
   query instanceof XssQuery and
-  result = any(XssAtm::DomBasedXssAtmConfig cfg).getAReasonSinkExcluded(sinkCandidate)
+  result = any(XssAtm::Configuration cfg).getAReasonSinkExcluded(sinkCandidate)
 }
 
 pragma[inline]
diff --git a/javascript/ql/experimental/adaptivethreatmodeling/modelbuilding/extraction/ExtractEndpointMapping.ql b/javascript/ql/experimental/adaptivethreatmodeling/modelbuilding/extraction/ExtractEndpointMapping.ql
index 697928d74b0..98668ba01fd 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/modelbuilding/extraction/ExtractEndpointMapping.ql
+++ b/javascript/ql/experimental/adaptivethreatmodeling/modelbuilding/extraction/ExtractEndpointMapping.ql
@@ -14,15 +14,15 @@ from string queryName, AtmConfig c, EndpointType e
 where
   (
     queryName = "SqlInjection" and
-    c instanceof SqlInjectionAtm::SqlInjectionAtmConfig
+    c instanceof SqlInjectionAtm::Configuration
     or
     queryName = "NosqlInjection" and
-    c instanceof NosqlInjectionAtm::NosqlInjectionAtmConfig
+    c instanceof NosqlInjectionAtm::Configuration
     or
     queryName = "TaintedPath" and
-    c instanceof TaintedPathAtm::TaintedPathAtmConfig
+    c instanceof TaintedPathAtm::Configuration
     or
-    queryName = "Xss" and c instanceof XssAtm::DomBasedXssAtmConfig
+    queryName = "Xss" and c instanceof XssAtm::Configuration
   ) and
   e = c.getASinkEndpointType()
 select queryName, e.getEncoding() as label
diff --git a/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/EndpointFeatures.ql b/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/EndpointFeatures.ql
index 9439fda8ab2..04724557843 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/EndpointFeatures.ql
+++ b/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/EndpointFeatures.ql
@@ -17,10 +17,10 @@ private import experimental.adaptivethreatmodeling.EndpointCharacteristics as En
 
 query predicate tokenFeatures(DataFlow::Node endpoint, string featureName, string featureValue) {
   (
-    not exists(any(NosqlInjectionAtm::NosqlInjectionAtmConfig cfg).getAReasonSinkExcluded(endpoint)) or
-    not exists(any(SqlInjectionAtm::SqlInjectionAtmConfig cfg).getAReasonSinkExcluded(endpoint)) or
-    not exists(any(TaintedPathAtm::TaintedPathAtmConfig cfg).getAReasonSinkExcluded(endpoint)) or
-    not exists(any(XssAtm::DomBasedXssAtmConfig cfg).getAReasonSinkExcluded(endpoint)) or
+    not exists(any(NosqlInjectionAtm::Configuration cfg).getAReasonSinkExcluded(endpoint)) or
+    not exists(any(SqlInjectionAtm::Configuration cfg).getAReasonSinkExcluded(endpoint)) or
+    not exists(any(TaintedPathAtm::Configuration cfg).getAReasonSinkExcluded(endpoint)) or
+    not exists(any(XssAtm::Configuration cfg).getAReasonSinkExcluded(endpoint)) or
     any(EndpointCharacteristics::IsArgumentToModeledFunctionCharacteristic characteristic)
         .getEndpoints(endpoint)
   ) and
diff --git a/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/FilteredTruePositives.ql b/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/FilteredTruePositives.ql
index d8de88e3454..deae494c226 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/FilteredTruePositives.ql
+++ b/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/FilteredTruePositives.ql
@@ -23,24 +23,24 @@ import experimental.adaptivethreatmodeling.XssATM as XssAtm
 
 query predicate nosqlFilteredTruePositives(DataFlow::Node endpoint, string reason) {
   endpoint instanceof NosqlInjection::Sink and
-  reason = any(NosqlInjectionAtm::NosqlInjectionAtmConfig cfg).getAReasonSinkExcluded(endpoint) and
+  reason = any(NosqlInjectionAtm::Configuration cfg).getAReasonSinkExcluded(endpoint) and
   not reason = ["argument to modeled function", "modeled sink", "modeled database access"]
 }
 
 query predicate sqlFilteredTruePositives(DataFlow::Node endpoint, string reason) {
   endpoint instanceof SqlInjection::Sink and
-  reason = any(SqlInjectionAtm::SqlInjectionAtmConfig cfg).getAReasonSinkExcluded(endpoint) and
+  reason = any(SqlInjectionAtm::Configuration cfg).getAReasonSinkExcluded(endpoint) and
   reason != "argument to modeled function"
 }
 
 query predicate taintedPathFilteredTruePositives(DataFlow::Node endpoint, string reason) {
   endpoint instanceof TaintedPath::Sink and
-  reason = any(TaintedPathAtm::TaintedPathAtmConfig cfg).getAReasonSinkExcluded(endpoint) and
+  reason = any(TaintedPathAtm::Configuration cfg).getAReasonSinkExcluded(endpoint) and
   reason != "argument to modeled function"
 }
 
 query predicate xssFilteredTruePositives(DataFlow::Node endpoint, string reason) {
   endpoint instanceof DomBasedXss::Sink and
-  reason = any(XssAtm::DomBasedXssAtmConfig cfg).getAReasonSinkExcluded(endpoint) and
+  reason = any(XssAtm::Configuration cfg).getAReasonSinkExcluded(endpoint) and
   reason != "argument to modeled function"
 }
diff --git a/javascript/ql/experimental/adaptivethreatmodeling/test/modeled_apis/nosql_endpoint_filter_ignores_modeled_apis.ql b/javascript/ql/experimental/adaptivethreatmodeling/test/modeled_apis/nosql_endpoint_filter_ignores_modeled_apis.ql
index a1d06d2881d..b77685e966c 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/test/modeled_apis/nosql_endpoint_filter_ignores_modeled_apis.ql
+++ b/javascript/ql/experimental/adaptivethreatmodeling/test/modeled_apis/nosql_endpoint_filter_ignores_modeled_apis.ql
@@ -2,5 +2,5 @@ import javascript
 import experimental.adaptivethreatmodeling.NosqlInjectionATM as NosqlInjectionAtm
 
 query predicate effectiveSinks(DataFlow::Node node) {
-  not exists(any(NosqlInjectionAtm::NosqlInjectionAtmConfig cfg).getAReasonSinkExcluded(node))
+  not exists(any(NosqlInjectionAtm::Configuration cfg).getAReasonSinkExcluded(node))
 }

From cd24ec88d6e57b00e0ba1e5e9110fbd451274ae1 Mon Sep 17 00:00:00 2001
From: tiferet <tiferet@github.com>
Date: Thu, 17 Nov 2022 17:16:37 -0800
Subject: [PATCH 0827/1420] Move the definition of `isSource` to the base
 class:

A long as we're not boosting sources, `isSource` is identical to `isKnownSource`.
---
 .../lib/experimental/adaptivethreatmodeling/ATMConfig.qll   | 6 ++++++
 .../adaptivethreatmodeling/NosqlInjectionATM.qll            | 2 --
 .../experimental/adaptivethreatmodeling/SqlInjectionATM.qll | 3 +--
 .../experimental/adaptivethreatmodeling/TaintedPathATM.qll  | 3 +--
 .../lib/experimental/adaptivethreatmodeling/XssATM.qll      | 6 ++----
 5 files changed, 10 insertions(+), 10 deletions(-)

diff --git a/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/ATMConfig.qll b/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/ATMConfig.qll
index 4106269d759..17ec9cf55cd 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/ATMConfig.qll
+++ b/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/ATMConfig.qll
@@ -33,6 +33,12 @@ abstract class AtmConfig extends JS::TaintTracking::Configuration {
   bindingset[this]
   AtmConfig() { any() }
 
+  /**
+   * Holds if `source` is a relevant taint source. When sources are not boosted, `isSource` is equivalent to
+   * `isKnownSource` (i.e there are no "effective" sources to be classified by an ML model).
+   */
+  override predicate isSource(JS::DataFlow::Node source) { this.isKnownSource(source) }
+
   /**
    * EXPERIMENTAL. This API may change in the future.
    *
diff --git a/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/NosqlInjectionATM.qll b/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/NosqlInjectionATM.qll
index 5de89d30c5e..6724b5794b8 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/NosqlInjectionATM.qll
+++ b/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/NosqlInjectionATM.qll
@@ -25,8 +25,6 @@ class Configuration extends AtmConfig {
    * generalised to cover the sinks predicted by ATM.
    */
 
-  override predicate isSource(DataFlow::Node source) { source instanceof NosqlInjection::Source }
-
   override predicate isSource(DataFlow::Node source, DataFlow::FlowLabel label) {
     TaintedObject::isSource(source, label)
   }
diff --git a/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/SqlInjectionATM.qll b/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/SqlInjectionATM.qll
index d51e99060bd..cfca6bdebce 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/SqlInjectionATM.qll
+++ b/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/SqlInjectionATM.qll
@@ -16,11 +16,10 @@ class Configuration extends AtmConfig {
 
   override EndpointType getASinkEndpointType() { result instanceof SqlInjectionSinkType }
 
-  /**
+  /*
    * This is largely a copy of the taint tracking configuration for the standard SQL injection
    * query, except additional sinks have been added using the sink endpoint filter.
    */
-  override predicate isSource(DataFlow::Node source) { source instanceof SqlInjection::Source }
 
   override predicate isSink(DataFlow::Node sink) {
     sink instanceof SqlInjection::Sink or isEffectiveSink(sink)
diff --git a/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/TaintedPathATM.qll b/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/TaintedPathATM.qll
index 646748b29bc..a48eadc2532 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/TaintedPathATM.qll
+++ b/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/TaintedPathATM.qll
@@ -16,11 +16,10 @@ class Configuration extends AtmConfig {
 
   override EndpointType getASinkEndpointType() { result instanceof TaintedPathSinkType }
 
-  /**
+  /*
    * This is largely a copy of the taint tracking configuration for the standard path injection
    * query, except additional ATM sinks have been added to the `isSink` predicate.
    */
-  override predicate isSource(DataFlow::Node source) { source instanceof TaintedPath::Source }
 
   override predicate isSink(DataFlow::Node sink, DataFlow::FlowLabel label) {
     label = sink.(TaintedPath::Sink).getAFlowLabel()
diff --git a/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/XssATM.qll b/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/XssATM.qll
index 5869be2c325..cd3240e8cfc 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/XssATM.qll
+++ b/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/XssATM.qll
@@ -1,6 +1,7 @@
 /**
  * For internal use only.
  *
+ * A taint-tracking configuration for reasoning about XSS vulnerabilities.
  * Defines shared code used by the XSS boosted query.
  */
 
@@ -15,13 +16,10 @@ class Configuration extends AtmConfig {
 
   override EndpointType getASinkEndpointType() { result instanceof XssSinkType }
 
-  /**
-   * A taint-tracking configuration for reasoning about XSS vulnerabilities.
-   *
+  /*
    * This is largely a copy of the taint tracking configuration for the standard XSSThroughDom query,
    * except additional ATM sinks have been added to the `isSink` predicate.
    */
-  override predicate isSource(DataFlow::Node source) { source instanceof DomBasedXss::Source }
 
   override predicate isSink(DataFlow::Node sink) {
     sink instanceof DomBasedXss::Sink or

From a710b723d12f98aa6ef4de7cf9edf48d1239ae9a Mon Sep 17 00:00:00 2001
From: tiferet <tiferet@github.com>
Date: Thu, 17 Nov 2022 17:57:57 -0800
Subject: [PATCH 0828/1420] Move the definition of `isSink` to the base class:

Holds if `sink` is a known taint sink or an "effective" sink.
---
 .../lib/experimental/adaptivethreatmodeling/ATMConfig.qll  | 7 +++++++
 .../adaptivethreatmodeling/SqlInjectionATM.qll             | 4 ----
 .../lib/experimental/adaptivethreatmodeling/XssATM.qll     | 5 -----
 3 files changed, 7 insertions(+), 9 deletions(-)

diff --git a/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/ATMConfig.qll b/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/ATMConfig.qll
index 17ec9cf55cd..a2a62911517 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/ATMConfig.qll
+++ b/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/ATMConfig.qll
@@ -39,6 +39,13 @@ abstract class AtmConfig extends JS::TaintTracking::Configuration {
    */
   override predicate isSource(JS::DataFlow::Node source) { this.isKnownSource(source) }
 
+  /**
+   * Holds if `sink` is a known taint sink or an "effective" sink (a candidate to be classified by an ML model).
+   */
+  override predicate isSink(JS::DataFlow::Node sink) {
+    this.isKnownSink(sink) or this.isEffectiveSink(sink)
+  }
+
   /**
    * EXPERIMENTAL. This API may change in the future.
    *
diff --git a/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/SqlInjectionATM.qll b/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/SqlInjectionATM.qll
index cfca6bdebce..3dd9b595327 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/SqlInjectionATM.qll
+++ b/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/SqlInjectionATM.qll
@@ -21,10 +21,6 @@ class Configuration extends AtmConfig {
    * query, except additional sinks have been added using the sink endpoint filter.
    */
 
-  override predicate isSink(DataFlow::Node sink) {
-    sink instanceof SqlInjection::Sink or isEffectiveSink(sink)
-  }
-
   override predicate isSanitizer(DataFlow::Node node) {
     super.isSanitizer(node) or
     node instanceof SqlInjection::Sanitizer
diff --git a/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/XssATM.qll b/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/XssATM.qll
index cd3240e8cfc..43d8375b8a5 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/XssATM.qll
+++ b/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/XssATM.qll
@@ -21,11 +21,6 @@ class Configuration extends AtmConfig {
    * except additional ATM sinks have been added to the `isSink` predicate.
    */
 
-  override predicate isSink(DataFlow::Node sink) {
-    sink instanceof DomBasedXss::Sink or
-    isEffectiveSink(sink)
-  }
-
   override predicate isSanitizer(DataFlow::Node node) {
     super.isSanitizer(node) or
     node instanceof DomBasedXss::Sanitizer

From 75cd7a9ebce3692248fd486811ba188c13c840f4 Mon Sep 17 00:00:00 2001
From: tiferet <tiferet@github.com>
Date: Fri, 18 Nov 2022 11:47:58 -0800
Subject: [PATCH 0829/1420] Remove code duplication in query .ql files:

Define the query for finding ATM alerts in the base class `AtmConfig`, and call it from each query's .ql file.
---
 .../adaptivethreatmodeling/ATMConfig.qll             | 12 ++++++++++++
 .../adaptivethreatmodeling/src/NosqlInjectionATM.ql  |  7 ++-----
 .../adaptivethreatmodeling/src/SqlInjectionATM.ql    |  7 ++-----
 .../adaptivethreatmodeling/src/TaintedPathATM.ql     |  7 ++-----
 .../adaptivethreatmodeling/src/XssATM.ql             |  7 ++-----
 5 files changed, 20 insertions(+), 20 deletions(-)

diff --git a/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/ATMConfig.qll b/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/ATMConfig.qll
index a2a62911517..d28cef259c3 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/ATMConfig.qll
+++ b/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/ATMConfig.qll
@@ -7,6 +7,7 @@
 private import javascript as JS
 import EndpointTypes
 import EndpointCharacteristics as EndpointCharacteristics
+import AdaptiveThreatModeling::ATM::ResultsInfo as AtmResultsInfo
 
 /**
  * EXPERIMENTAL. This API may change in the future.
@@ -140,6 +141,17 @@ abstract class AtmConfig extends JS::TaintTracking::Configuration {
    * A cut-off value of 1 produces all alerts including those that are likely false-positives.
    */
   float getScoreCutoff() { result = 0.0 }
+
+  /**
+   * Holds if there's an ATM alert (a flow path from `source` to `sink` with ML-determined likelihood `score`) according
+   * to this ML-boosted configuration, whereas the unboosted base query is unlikely to report an alert for this source
+   * and sink.
+   */
+  predicate getAlerts(JS::DataFlow::PathNode source, JS::DataFlow::PathNode sink, float score) {
+    this.hasFlowPath(source, sink) and
+    not AtmResultsInfo::isFlowLikelyInBaseQuery(source.getNode(), sink.getNode()) and
+    score = AtmResultsInfo::getScoreForFlow(source.getNode(), sink.getNode())
+  }
 }
 
 /** DEPRECATED: Alias for AtmConfig */
diff --git a/javascript/ql/experimental/adaptivethreatmodeling/src/NosqlInjectionATM.ql b/javascript/ql/experimental/adaptivethreatmodeling/src/NosqlInjectionATM.ql
index e35653fb96a..8ec315c3d9c 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/src/NosqlInjectionATM.ql
+++ b/javascript/ql/experimental/adaptivethreatmodeling/src/NosqlInjectionATM.ql
@@ -17,11 +17,8 @@ import ATM::ResultsInfo
 import DataFlow::PathGraph
 import experimental.adaptivethreatmodeling.NosqlInjectionATM
 
-from DataFlow::Configuration cfg, DataFlow::PathNode source, DataFlow::PathNode sink, float score
-where
-  cfg.hasFlowPath(source, sink) and
-  not isFlowLikelyInBaseQuery(source.getNode(), sink.getNode()) and
-  score = getScoreForFlow(source.getNode(), sink.getNode())
+from AtmConfig cfg, DataFlow::PathNode source, DataFlow::PathNode sink, float score
+where cfg.getAlerts(source, sink, score)
 select sink.getNode(), source, sink,
   "(Experimental) This may be a database query that depends on $@. Identified using machine learning.",
   source.getNode(), "a user-provided value", score
diff --git a/javascript/ql/experimental/adaptivethreatmodeling/src/SqlInjectionATM.ql b/javascript/ql/experimental/adaptivethreatmodeling/src/SqlInjectionATM.ql
index b58dd9f4609..16921565707 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/src/SqlInjectionATM.ql
+++ b/javascript/ql/experimental/adaptivethreatmodeling/src/SqlInjectionATM.ql
@@ -17,11 +17,8 @@ import experimental.adaptivethreatmodeling.SqlInjectionATM
 import ATM::ResultsInfo
 import DataFlow::PathGraph
 
-from DataFlow::Configuration cfg, DataFlow::PathNode source, DataFlow::PathNode sink, float score
-where
-  cfg.hasFlowPath(source, sink) and
-  not isFlowLikelyInBaseQuery(source.getNode(), sink.getNode()) and
-  score = getScoreForFlow(source.getNode(), sink.getNode())
+from AtmConfig cfg, DataFlow::PathNode source, DataFlow::PathNode sink, float score
+where cfg.getAlerts(source, sink, score)
 select sink.getNode(), source, sink,
   "(Experimental) This may be a database query that depends on $@. Identified using machine learning.",
   source.getNode(), "a user-provided value", score
diff --git a/javascript/ql/experimental/adaptivethreatmodeling/src/TaintedPathATM.ql b/javascript/ql/experimental/adaptivethreatmodeling/src/TaintedPathATM.ql
index 7e637687d75..e4e4db0bf32 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/src/TaintedPathATM.ql
+++ b/javascript/ql/experimental/adaptivethreatmodeling/src/TaintedPathATM.ql
@@ -21,11 +21,8 @@ import ATM::ResultsInfo
 import DataFlow::PathGraph
 import experimental.adaptivethreatmodeling.TaintedPathATM
 
-from DataFlow::Configuration cfg, DataFlow::PathNode source, DataFlow::PathNode sink, float score
-where
-  cfg.hasFlowPath(source, sink) and
-  not isFlowLikelyInBaseQuery(source.getNode(), sink.getNode()) and
-  score = getScoreForFlow(source.getNode(), sink.getNode())
+from AtmConfig cfg, DataFlow::PathNode source, DataFlow::PathNode sink, float score
+where cfg.getAlerts(source, sink, score)
 select sink.getNode(), source, sink,
   "(Experimental) This may be a path that depends on $@. Identified using machine learning.",
   source.getNode(), "a user-provided value", score
diff --git a/javascript/ql/experimental/adaptivethreatmodeling/src/XssATM.ql b/javascript/ql/experimental/adaptivethreatmodeling/src/XssATM.ql
index d0e98c1cd54..deac86922ab 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/src/XssATM.ql
+++ b/javascript/ql/experimental/adaptivethreatmodeling/src/XssATM.ql
@@ -18,11 +18,8 @@ import ATM::ResultsInfo
 import DataFlow::PathGraph
 import experimental.adaptivethreatmodeling.XssATM
 
-from DataFlow::Configuration cfg, DataFlow::PathNode source, DataFlow::PathNode sink, float score
-where
-  cfg.hasFlowPath(source, sink) and
-  not isFlowLikelyInBaseQuery(source.getNode(), sink.getNode()) and
-  score = getScoreForFlow(source.getNode(), sink.getNode())
+from AtmConfig cfg, DataFlow::PathNode source, DataFlow::PathNode sink, float score
+where cfg.getAlerts(source, sink, score)
 select sink.getNode(), source, sink,
   "(Experimental) This may be a cross-site scripting vulnerability due to $@. Identified using machine learning.",
   source.getNode(), "a user-provided value", score

From 6f807e9d43b94c5b0cd183766ca8b6e98d949371 Mon Sep 17 00:00:00 2001
From: tiferet <tiferet@github.com>
Date: Tue, 29 Nov 2022 13:02:06 -0800
Subject: [PATCH 0830/1420] Doc suggestion from code review

---
 .../lib/experimental/adaptivethreatmodeling/ATMConfig.qll     | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/ATMConfig.qll b/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/ATMConfig.qll
index d28cef259c3..9f8c066f424 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/ATMConfig.qll
+++ b/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/ATMConfig.qll
@@ -144,8 +144,8 @@ abstract class AtmConfig extends JS::TaintTracking::Configuration {
 
   /**
    * Holds if there's an ATM alert (a flow path from `source` to `sink` with ML-determined likelihood `score`) according
-   * to this ML-boosted configuration, whereas the unboosted base query is unlikely to report an alert for this source
-   * and sink.
+   * to this ML-boosted configuration, whereas the unboosted base query does not contain this source and sink
+   * combination.
    */
   predicate getAlerts(JS::DataFlow::PathNode source, JS::DataFlow::PathNode sink, float score) {
     this.hasFlowPath(source, sink) and

From 84ce23249f8806f53967b6dbc0cb6353ed7822ac Mon Sep 17 00:00:00 2001
From: erik-krogh <erik-krogh@github.com>
Date: Tue, 29 Nov 2022 22:20:45 +0100
Subject: [PATCH 0831/1420] use the query compilation cache in the ATM qltest

---
 .github/workflows/js-ml-tests.yml | 14 ++++++++++++++
 1 file changed, 14 insertions(+)

diff --git a/.github/workflows/js-ml-tests.yml b/.github/workflows/js-ml-tests.yml
index d3b5d49f2ba..f05bfccab1f 100644
--- a/.github/workflows/js-ml-tests.yml
+++ b/.github/workflows/js-ml-tests.yml
@@ -36,6 +36,12 @@ jobs:
           for pack in modelbuilding src; do
             codeql pack install --mode verify -- "${pack}"
           done
+      
+      - name: Cache compilation cache
+        id: query-cache
+        uses: ./.github/actions/cache-query-compilation
+        with: 
+          key: js-ml-compilation
 
       - name: Check QL compilation
         run: |
@@ -44,6 +50,7 @@ jobs:
             --ram 5120 \
             --additional-packs "${{ github.workspace }}" \
             --threads=0 \
+            --compilation-cache "${{ steps.query-cache.outputs.cache-dir }}" \
             -- \
             lib modelbuilding src
 
@@ -58,11 +65,18 @@ jobs:
       - name: Install pack dependencies
         run: codeql pack install -- test
 
+      - name: Cache compilation cache
+        id: query-cache
+        uses: ./.github/actions/cache-query-compilation
+        with: 
+          key: js-ml-tests
+
       - name: Run QL tests
         run: |
           codeql test run \
             --threads=0 \
             --ram 5120 \
             --additional-packs "${{ github.workspace }}" \
+            --compilation-cache "${{ steps.query-cache.outputs.cache-dir }}" \
             -- \
             test

From 0eae638a93daa8fabb69be7a1272e7e18ad2f09d Mon Sep 17 00:00:00 2001
From: erik-krogh <erik-krogh@github.com>
Date: Tue, 29 Nov 2022 22:29:45 +0100
Subject: [PATCH 0832/1420] combine into one job, and run on an XL runner

---
 .github/workflows/js-ml-tests.yml | 33 ++++++++-----------------------
 1 file changed, 8 insertions(+), 25 deletions(-)

diff --git a/.github/workflows/js-ml-tests.yml b/.github/workflows/js-ml-tests.yml
index f05bfccab1f..031b17c83ba 100644
--- a/.github/workflows/js-ml-tests.yml
+++ b/.github/workflows/js-ml-tests.yml
@@ -23,9 +23,9 @@ defaults:
     working-directory: javascript/ql/experimental/adaptivethreatmodeling
 
 jobs:
-  qlcompile:
-    name: Check QL compilation
-    runs-on: ubuntu-latest
+  qltest:
+    name: Test QL
+    runs-on: ubuntu-latest-xl
     steps:
       - uses: actions/checkout@v3
 
@@ -33,7 +33,7 @@ jobs:
 
       - name: Install pack dependencies
         run: |
-          for pack in modelbuilding src; do
+          for pack in modelbuilding src test; do
             codeql pack install --mode verify -- "${pack}"
           done
       
@@ -41,42 +41,25 @@ jobs:
         id: query-cache
         uses: ./.github/actions/cache-query-compilation
         with: 
-          key: js-ml-compilation
+          key: js-ml-test
 
       - name: Check QL compilation
         run: |
           codeql query compile \
             --check-only \
-            --ram 5120 \
+            --ram 52000 \
             --additional-packs "${{ github.workspace }}" \
             --threads=0 \
             --compilation-cache "${{ steps.query-cache.outputs.cache-dir }}" \
             -- \
             lib modelbuilding src
 
-  qltest:
-    name: Run QL tests
-    runs-on: ubuntu-latest
-    steps:
-      - uses: actions/checkout@v3
-
-      - uses: ./.github/actions/fetch-codeql
-
-      - name: Install pack dependencies
-        run: codeql pack install -- test
-
-      - name: Cache compilation cache
-        id: query-cache
-        uses: ./.github/actions/cache-query-compilation
-        with: 
-          key: js-ml-tests
-
       - name: Run QL tests
         run: |
           codeql test run \
             --threads=0 \
-            --ram 5120 \
+            --ram 52000 \
             --additional-packs "${{ github.workspace }}" \
             --compilation-cache "${{ steps.query-cache.outputs.cache-dir }}" \
             -- \
-            test
+            test
\ No newline at end of file

From eac5aa26eef6eaec8f706245ce08607430922153 Mon Sep 17 00:00:00 2001
From: Harry Maclean <hmac@github.com>
Date: Wed, 23 Nov 2022 12:57:06 +1300
Subject: [PATCH 0833/1420] Ruby: Model remote input for ActionMailbox

---
 ruby/ql/lib/codeql/ruby/Frameworks.qll        |  1 +
 .../codeql/ruby/frameworks/ActionMailbox.qll  | 66 +++++++++++++++++++
 .../action_mailbox/ActionMailbox.expected     | 13 ++++
 .../action_mailbox/ActionMailbox.ql           |  8 +++
 .../action_mailbox/action_mailbox.rb          | 22 +++++++
 5 files changed, 110 insertions(+)
 create mode 100644 ruby/ql/lib/codeql/ruby/frameworks/ActionMailbox.qll
 create mode 100644 ruby/ql/test/library-tests/frameworks/action_mailbox/ActionMailbox.expected
 create mode 100644 ruby/ql/test/library-tests/frameworks/action_mailbox/ActionMailbox.ql
 create mode 100644 ruby/ql/test/library-tests/frameworks/action_mailbox/action_mailbox.rb

diff --git a/ruby/ql/lib/codeql/ruby/Frameworks.qll b/ruby/ql/lib/codeql/ruby/Frameworks.qll
index 9896cf23c39..bfd0eabc907 100644
--- a/ruby/ql/lib/codeql/ruby/Frameworks.qll
+++ b/ruby/ql/lib/codeql/ruby/Frameworks.qll
@@ -7,6 +7,7 @@ private import codeql.ruby.frameworks.ActionCable
 private import codeql.ruby.frameworks.ActionController
 private import codeql.ruby.frameworks.ActiveJob
 private import codeql.ruby.frameworks.ActionMailer
+private import codeql.ruby.frameworks.ActionMailbox
 private import codeql.ruby.frameworks.ActiveRecord
 private import codeql.ruby.frameworks.ActiveResource
 private import codeql.ruby.frameworks.ActiveStorage
diff --git a/ruby/ql/lib/codeql/ruby/frameworks/ActionMailbox.qll b/ruby/ql/lib/codeql/ruby/frameworks/ActionMailbox.qll
new file mode 100644
index 00000000000..2a01651170a
--- /dev/null
+++ b/ruby/ql/lib/codeql/ruby/frameworks/ActionMailbox.qll
@@ -0,0 +1,66 @@
+/**
+ * Models the `ActionMailbox` library, which is part of Rails.
+ * Version: 7.0.4.
+ */
+
+private import codeql.ruby.AST
+private import codeql.ruby.Concepts
+private import codeql.ruby.DataFlow
+private import codeql.ruby.dataflow.RemoteFlowSources
+
+/**
+ * Models the `ActionMailbox` library, which is part of Rails.
+ * Version: 7.0.4.
+ */
+module ActionMailbox {
+  private DataFlow::ClassNode controller() {
+    result = DataFlow::getConstant("ActionMailbox").getConstant("Base").getADescendentModule()
+  }
+
+  /**
+   * A method in a mailbox which receives incoming mail.
+   */
+  class Process extends DataFlow::MethodNode {
+    Process() { this = controller().getAnInstanceMethod() and this.getMethodName() = "process" }
+  }
+
+  /**
+   * A call to `ActionMailbox::Base#mail`, which is equivalent to calling `inbound_mail.mail`.
+   * The returned object contains data from the incoming mail.
+   */
+  class MailCall extends DataFlow::CallNode, Mail::Message::Range {
+    MailCall() { this = controller().getAnInstanceSelf().getAMethodCall("mail") }
+  }
+
+  /**
+   * Models classes from the `mail` library.
+   * Version: 2.7.1.
+   */
+  module Mail {
+    /**
+     * An instance of `Mail::Message`.
+     */
+    class Message extends DataFlow::Node instanceof Message::Range { }
+
+    module Message {
+      abstract class Range extends DataFlow::Node { }
+    }
+
+    /**
+     * A method call on a `Mail::Message` object which may return data from a remote source.
+     */
+    class RemoteContent extends DataFlow::CallNode, RemoteFlowSource::Range {
+      RemoteContent() {
+        this.getReceiver() instanceof Message and
+        this.getMethodName() =
+          [
+            "body", "to", "from", "raw_source", "subject", "from_address", "recipients_addresses",
+            "cc_addresses", "bcc_addresses", "in_reply_to", "references", "reply_to",
+            "raw_envelope", "to_s", "encoded", "header", "bcc", "cc", "text_part", "html_part"
+          ]
+      }
+
+      override string getSourceType() { result = "ActionMailbox" }
+    }
+  }
+}
diff --git a/ruby/ql/test/library-tests/frameworks/action_mailbox/ActionMailbox.expected b/ruby/ql/test/library-tests/frameworks/action_mailbox/ActionMailbox.expected
new file mode 100644
index 00000000000..c6705e068e9
--- /dev/null
+++ b/ruby/ql/test/library-tests/frameworks/action_mailbox/ActionMailbox.expected
@@ -0,0 +1,13 @@
+processMethods
+| action_mailbox.rb:2:3:5:5 | process |
+| action_mailbox.rb:13:5:15:7 | process |
+messageInstances
+| action_mailbox.rb:3:5:3:8 | call to mail |
+| action_mailbox.rb:4:5:4:8 | call to mail |
+| action_mailbox.rb:8:5:8:8 | call to mail |
+| action_mailbox.rb:14:9:14:12 | call to mail |
+remoteContent
+| action_mailbox.rb:3:5:3:13 | call to body |
+| action_mailbox.rb:4:5:4:11 | call to to |
+| action_mailbox.rb:8:5:8:18 | call to text_part |
+| action_mailbox.rb:14:9:14:23 | call to raw_source |
diff --git a/ruby/ql/test/library-tests/frameworks/action_mailbox/ActionMailbox.ql b/ruby/ql/test/library-tests/frameworks/action_mailbox/ActionMailbox.ql
new file mode 100644
index 00000000000..2477678b78f
--- /dev/null
+++ b/ruby/ql/test/library-tests/frameworks/action_mailbox/ActionMailbox.ql
@@ -0,0 +1,8 @@
+private import codeql.ruby.frameworks.ActionMailbox
+private import codeql.ruby.DataFlow
+
+query predicate processMethods(ActionMailbox::Process p) { any() }
+
+query predicate messageInstances(ActionMailbox::Mail::Message c) { any() }
+
+query predicate remoteContent(ActionMailbox::Mail::RemoteContent r) { any() }
diff --git a/ruby/ql/test/library-tests/frameworks/action_mailbox/action_mailbox.rb b/ruby/ql/test/library-tests/frameworks/action_mailbox/action_mailbox.rb
new file mode 100644
index 00000000000..d9371e89973
--- /dev/null
+++ b/ruby/ql/test/library-tests/frameworks/action_mailbox/action_mailbox.rb
@@ -0,0 +1,22 @@
+class A < ActionMailbox::Base
+  def process
+    mail.body
+    mail.to
+  end
+
+  def other_method
+    mail.text_part
+  end
+end
+
+class B < A
+    def process
+        mail.raw_source
+    end
+end
+
+class C # not a mailbox class
+    def process
+        mail.subject
+    end
+end
\ No newline at end of file

From 71f2d8f6d81cf386d196abe16e8bf6513af7221c Mon Sep 17 00:00:00 2001
From: Harry Maclean <hmac@github.com>
Date: Fri, 25 Nov 2022 17:15:50 +1300
Subject: [PATCH 0834/1420] Ruby: Model ActionMailbox#inbound_mail

---
 .../lib/codeql/ruby/frameworks/ActionMailbox.qll   | 14 +++++++++++---
 .../action_mailbox/ActionMailbox.expected          | 14 ++++++++------
 .../frameworks/action_mailbox/action_mailbox.rb    |  2 ++
 3 files changed, 21 insertions(+), 9 deletions(-)

diff --git a/ruby/ql/lib/codeql/ruby/frameworks/ActionMailbox.qll b/ruby/ql/lib/codeql/ruby/frameworks/ActionMailbox.qll
index 2a01651170a..8fb0def0a33 100644
--- a/ruby/ql/lib/codeql/ruby/frameworks/ActionMailbox.qll
+++ b/ruby/ql/lib/codeql/ruby/frameworks/ActionMailbox.qll
@@ -25,11 +25,19 @@ module ActionMailbox {
   }
 
   /**
-   * A call to `ActionMailbox::Base#mail`, which is equivalent to calling `inbound_mail.mail`.
-   * The returned object contains data from the incoming mail.
+   * A call to `mail` on the return value of
+   * `ActionMailbox::Base#inbound_email`, or a direct call to
+   * `ActionMailbox::Base#mail`, which is equivalent. The returned object
+   * contains data from the incoming email.
    */
   class MailCall extends DataFlow::CallNode, Mail::Message::Range {
-    MailCall() { this = controller().getAnInstanceSelf().getAMethodCall("mail") }
+    MailCall() {
+      this =
+        [
+          controller().getAnInstanceSelf().getAMethodCall("inbound_email").getAMethodCall("mail"),
+          controller().getAnInstanceSelf().getAMethodCall("mail")
+        ]
+    }
   }
 
   /**
diff --git a/ruby/ql/test/library-tests/frameworks/action_mailbox/ActionMailbox.expected b/ruby/ql/test/library-tests/frameworks/action_mailbox/ActionMailbox.expected
index c6705e068e9..6cce834e488 100644
--- a/ruby/ql/test/library-tests/frameworks/action_mailbox/ActionMailbox.expected
+++ b/ruby/ql/test/library-tests/frameworks/action_mailbox/ActionMailbox.expected
@@ -1,13 +1,15 @@
 processMethods
-| action_mailbox.rb:2:3:5:5 | process |
-| action_mailbox.rb:13:5:15:7 | process |
+| action_mailbox.rb:2:3:7:5 | process |
+| action_mailbox.rb:15:5:17:7 | process |
 messageInstances
 | action_mailbox.rb:3:5:3:8 | call to mail |
 | action_mailbox.rb:4:5:4:8 | call to mail |
-| action_mailbox.rb:8:5:8:8 | call to mail |
-| action_mailbox.rb:14:9:14:12 | call to mail |
+| action_mailbox.rb:6:5:6:10 | call to mail |
+| action_mailbox.rb:10:5:10:8 | call to mail |
+| action_mailbox.rb:16:9:16:12 | call to mail |
 remoteContent
 | action_mailbox.rb:3:5:3:13 | call to body |
 | action_mailbox.rb:4:5:4:11 | call to to |
-| action_mailbox.rb:8:5:8:18 | call to text_part |
-| action_mailbox.rb:14:9:14:23 | call to raw_source |
+| action_mailbox.rb:6:5:6:13 | call to to |
+| action_mailbox.rb:10:5:10:18 | call to text_part |
+| action_mailbox.rb:16:9:16:23 | call to raw_source |
diff --git a/ruby/ql/test/library-tests/frameworks/action_mailbox/action_mailbox.rb b/ruby/ql/test/library-tests/frameworks/action_mailbox/action_mailbox.rb
index d9371e89973..04b007c4be7 100644
--- a/ruby/ql/test/library-tests/frameworks/action_mailbox/action_mailbox.rb
+++ b/ruby/ql/test/library-tests/frameworks/action_mailbox/action_mailbox.rb
@@ -2,6 +2,8 @@ class A < ActionMailbox::Base
   def process
     mail.body
     mail.to
+    m = inbound_email
+    m.mail.to
   end
 
   def other_method

From b66ea6ed7218fc97a8f43865acf092beb29e9976 Mon Sep 17 00:00:00 2001
From: Harry Maclean <hmac@github.com>
Date: Fri, 25 Nov 2022 17:21:51 +1300
Subject: [PATCH 0835/1420] Ruby: Simplify ActionMailbox modeling

---
 .../codeql/ruby/frameworks/ActionMailbox.qll  | 43 +++++++------------
 .../action_mailbox/ActionMailbox.expected     |  2 +-
 .../action_mailbox/ActionMailbox.ql           |  5 ++-
 3 files changed, 19 insertions(+), 31 deletions(-)

diff --git a/ruby/ql/lib/codeql/ruby/frameworks/ActionMailbox.qll b/ruby/ql/lib/codeql/ruby/frameworks/ActionMailbox.qll
index 8fb0def0a33..5416fca62a4 100644
--- a/ruby/ql/lib/codeql/ruby/frameworks/ActionMailbox.qll
+++ b/ruby/ql/lib/codeql/ruby/frameworks/ActionMailbox.qll
@@ -30,8 +30,8 @@ module ActionMailbox {
    * `ActionMailbox::Base#mail`, which is equivalent. The returned object
    * contains data from the incoming email.
    */
-  class MailCall extends DataFlow::CallNode, Mail::Message::Range {
-    MailCall() {
+  class Mail extends DataFlow::CallNode {
+    Mail() {
       this =
         [
           controller().getAnInstanceSelf().getAMethodCall("inbound_email").getAMethodCall("mail"),
@@ -41,34 +41,21 @@ module ActionMailbox {
   }
 
   /**
-   * Models classes from the `mail` library.
-   * Version: 2.7.1.
+   * A method call on a `Mail::Message` object which may return data from a remote source.
    */
-  module Mail {
-    /**
-     * An instance of `Mail::Message`.
-     */
-    class Message extends DataFlow::Node instanceof Message::Range { }
-
-    module Message {
-      abstract class Range extends DataFlow::Node { }
+  private class RemoteContent extends DataFlow::CallNode, RemoteFlowSource::Range {
+    RemoteContent() {
+      this =
+        any(Mail m)
+            .(DataFlow::LocalSourceNode)
+            .getAMethodCall([
+                "body", "to", "from", "raw_source", "subject", "from_address",
+                "recipients_addresses", "cc_addresses", "bcc_addresses", "in_reply_to",
+                "references", "reply_to", "raw_envelope", "to_s", "encoded", "header", "bcc", "cc",
+                "text_part", "html_part"
+              ])
     }
 
-    /**
-     * A method call on a `Mail::Message` object which may return data from a remote source.
-     */
-    class RemoteContent extends DataFlow::CallNode, RemoteFlowSource::Range {
-      RemoteContent() {
-        this.getReceiver() instanceof Message and
-        this.getMethodName() =
-          [
-            "body", "to", "from", "raw_source", "subject", "from_address", "recipients_addresses",
-            "cc_addresses", "bcc_addresses", "in_reply_to", "references", "reply_to",
-            "raw_envelope", "to_s", "encoded", "header", "bcc", "cc", "text_part", "html_part"
-          ]
-      }
-
-      override string getSourceType() { result = "ActionMailbox" }
-    }
+    override string getSourceType() { result = "ActionMailbox" }
   }
 }
diff --git a/ruby/ql/test/library-tests/frameworks/action_mailbox/ActionMailbox.expected b/ruby/ql/test/library-tests/frameworks/action_mailbox/ActionMailbox.expected
index 6cce834e488..f0325269fb0 100644
--- a/ruby/ql/test/library-tests/frameworks/action_mailbox/ActionMailbox.expected
+++ b/ruby/ql/test/library-tests/frameworks/action_mailbox/ActionMailbox.expected
@@ -7,7 +7,7 @@ messageInstances
 | action_mailbox.rb:6:5:6:10 | call to mail |
 | action_mailbox.rb:10:5:10:8 | call to mail |
 | action_mailbox.rb:16:9:16:12 | call to mail |
-remoteContent
+remoteFlowSources
 | action_mailbox.rb:3:5:3:13 | call to body |
 | action_mailbox.rb:4:5:4:11 | call to to |
 | action_mailbox.rb:6:5:6:13 | call to to |
diff --git a/ruby/ql/test/library-tests/frameworks/action_mailbox/ActionMailbox.ql b/ruby/ql/test/library-tests/frameworks/action_mailbox/ActionMailbox.ql
index 2477678b78f..e0a529dc6c6 100644
--- a/ruby/ql/test/library-tests/frameworks/action_mailbox/ActionMailbox.ql
+++ b/ruby/ql/test/library-tests/frameworks/action_mailbox/ActionMailbox.ql
@@ -1,8 +1,9 @@
 private import codeql.ruby.frameworks.ActionMailbox
 private import codeql.ruby.DataFlow
+private import codeql.ruby.dataflow.RemoteFlowSources
 
 query predicate processMethods(ActionMailbox::Process p) { any() }
 
-query predicate messageInstances(ActionMailbox::Mail::Message c) { any() }
+query predicate messageInstances(ActionMailbox::Mail c) { any() }
 
-query predicate remoteContent(ActionMailbox::Mail::RemoteContent r) { any() }
+query predicate remoteFlowSources(RemoteFlowSource r) { any() }

From aed4325ee3a2e408c340e6fa71674ac5b81b7ec8 Mon Sep 17 00:00:00 2001
From: Harry Maclean <hmac@github.com>
Date: Wed, 30 Nov 2022 11:50:35 +1300
Subject: [PATCH 0836/1420] Ruby: Remove unused class

---
 ruby/ql/lib/codeql/ruby/frameworks/ActionMailbox.qll       | 7 -------
 .../frameworks/action_mailbox/ActionMailbox.expected       | 3 ---
 .../frameworks/action_mailbox/ActionMailbox.ql             | 2 --
 3 files changed, 12 deletions(-)

diff --git a/ruby/ql/lib/codeql/ruby/frameworks/ActionMailbox.qll b/ruby/ql/lib/codeql/ruby/frameworks/ActionMailbox.qll
index 5416fca62a4..13607f67926 100644
--- a/ruby/ql/lib/codeql/ruby/frameworks/ActionMailbox.qll
+++ b/ruby/ql/lib/codeql/ruby/frameworks/ActionMailbox.qll
@@ -17,13 +17,6 @@ module ActionMailbox {
     result = DataFlow::getConstant("ActionMailbox").getConstant("Base").getADescendentModule()
   }
 
-  /**
-   * A method in a mailbox which receives incoming mail.
-   */
-  class Process extends DataFlow::MethodNode {
-    Process() { this = controller().getAnInstanceMethod() and this.getMethodName() = "process" }
-  }
-
   /**
    * A call to `mail` on the return value of
    * `ActionMailbox::Base#inbound_email`, or a direct call to
diff --git a/ruby/ql/test/library-tests/frameworks/action_mailbox/ActionMailbox.expected b/ruby/ql/test/library-tests/frameworks/action_mailbox/ActionMailbox.expected
index f0325269fb0..b7324362d14 100644
--- a/ruby/ql/test/library-tests/frameworks/action_mailbox/ActionMailbox.expected
+++ b/ruby/ql/test/library-tests/frameworks/action_mailbox/ActionMailbox.expected
@@ -1,6 +1,3 @@
-processMethods
-| action_mailbox.rb:2:3:7:5 | process |
-| action_mailbox.rb:15:5:17:7 | process |
 messageInstances
 | action_mailbox.rb:3:5:3:8 | call to mail |
 | action_mailbox.rb:4:5:4:8 | call to mail |
diff --git a/ruby/ql/test/library-tests/frameworks/action_mailbox/ActionMailbox.ql b/ruby/ql/test/library-tests/frameworks/action_mailbox/ActionMailbox.ql
index e0a529dc6c6..cd083bf6a06 100644
--- a/ruby/ql/test/library-tests/frameworks/action_mailbox/ActionMailbox.ql
+++ b/ruby/ql/test/library-tests/frameworks/action_mailbox/ActionMailbox.ql
@@ -2,8 +2,6 @@ private import codeql.ruby.frameworks.ActionMailbox
 private import codeql.ruby.DataFlow
 private import codeql.ruby.dataflow.RemoteFlowSources
 
-query predicate processMethods(ActionMailbox::Process p) { any() }
-
 query predicate messageInstances(ActionMailbox::Mail c) { any() }
 
 query predicate remoteFlowSources(RemoteFlowSource r) { any() }

From e3def7c22f504282ab0fc0ff0b72eb48903687f9 Mon Sep 17 00:00:00 2001
From: Harry Maclean <hmac@github.com>
Date: Wed, 30 Nov 2022 11:50:47 +1300
Subject: [PATCH 0837/1420] Ruby: Add change note

---
 ruby/ql/lib/change-notes/2022-11-30-actionmailbox.md | 4 ++++
 1 file changed, 4 insertions(+)
 create mode 100644 ruby/ql/lib/change-notes/2022-11-30-actionmailbox.md

diff --git a/ruby/ql/lib/change-notes/2022-11-30-actionmailbox.md b/ruby/ql/lib/change-notes/2022-11-30-actionmailbox.md
new file mode 100644
index 00000000000..81c737c6b57
--- /dev/null
+++ b/ruby/ql/lib/change-notes/2022-11-30-actionmailbox.md
@@ -0,0 +1,4 @@
+---
+ category: minorAnalysis
+---
+ * Calls to `mail` and `inbound_mail` in `ActionMailbox` controllers are now considered sources of remote input.
\ No newline at end of file

From c5184d37e7c8b3cfafaf5dcafab850589315bfac Mon Sep 17 00:00:00 2001
From: tiferet <tiferet@github.com>
Date: Tue, 29 Nov 2022 15:46:05 -0800
Subject: [PATCH 0838/1420] Suggestion from code review:

Name the query configuration e.g. `NosqlInjectionATMConfig` rather than `Configuration`.
---
 .../adaptivethreatmodeling/NosqlInjectionATM.qll         | 4 ++--
 .../adaptivethreatmodeling/SqlInjectionATM.qll           | 4 ++--
 .../adaptivethreatmodeling/TaintedPathATM.qll            | 4 ++--
 .../lib/experimental/adaptivethreatmodeling/XssATM.qll   | 4 ++--
 .../modelbuilding/DebugResultInclusion.ql                | 8 ++++----
 .../extraction/ExtractEndpointDataTraining.qll           | 9 +++++----
 .../modelbuilding/extraction/ExtractEndpointMapping.ql   | 8 ++++----
 .../test/endpoint_large_scale/EndpointFeatures.ql        | 8 ++++----
 .../test/endpoint_large_scale/FilteredTruePositives.ql   | 8 ++++----
 .../nosql_endpoint_filter_ignores_modeled_apis.ql        | 2 +-
 10 files changed, 30 insertions(+), 29 deletions(-)

diff --git a/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/NosqlInjectionATM.qll b/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/NosqlInjectionATM.qll
index 6724b5794b8..e6d602280a4 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/NosqlInjectionATM.qll
+++ b/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/NosqlInjectionATM.qll
@@ -10,8 +10,8 @@ private import semmle.javascript.heuristics.SyntacticHeuristics
 private import semmle.javascript.security.dataflow.NosqlInjectionCustomizations
 import AdaptiveThreatModeling
 
-class Configuration extends AtmConfig {
-  Configuration() { this = "NosqlInjectionATMConfig" }
+class NosqlInjectionAtmConfig extends AtmConfig {
+  NosqlInjectionAtmConfig() { this = "NosqlInjectionAtmConfig" }
 
   override predicate isKnownSource(DataFlow::Node source) {
     source instanceof NosqlInjection::Source or TaintedObject::isSource(source, _)
diff --git a/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/SqlInjectionATM.qll b/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/SqlInjectionATM.qll
index 3dd9b595327..917e79f401e 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/SqlInjectionATM.qll
+++ b/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/SqlInjectionATM.qll
@@ -9,8 +9,8 @@ import semmle.javascript.heuristics.SyntacticHeuristics
 import semmle.javascript.security.dataflow.SqlInjectionCustomizations
 import AdaptiveThreatModeling
 
-class Configuration extends AtmConfig {
-  Configuration() { this = "SqlInjectionATMConfig" }
+class SqlInjectionAtmConfig extends AtmConfig {
+  SqlInjectionAtmConfig() { this = "SqlInjectionAtmConfig" }
 
   override predicate isKnownSource(DataFlow::Node source) { source instanceof SqlInjection::Source }
 
diff --git a/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/TaintedPathATM.qll b/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/TaintedPathATM.qll
index a48eadc2532..55b295c72ba 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/TaintedPathATM.qll
+++ b/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/TaintedPathATM.qll
@@ -9,8 +9,8 @@ import semmle.javascript.heuristics.SyntacticHeuristics
 import semmle.javascript.security.dataflow.TaintedPathCustomizations
 import AdaptiveThreatModeling
 
-class Configuration extends AtmConfig {
-  Configuration() { this = "TaintedPathATMConfig" }
+class TaintedPathAtmConfig extends AtmConfig {
+  TaintedPathAtmConfig() { this = "TaintedPathAtmConfig" }
 
   override predicate isKnownSource(DataFlow::Node source) { source instanceof TaintedPath::Source }
 
diff --git a/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/XssATM.qll b/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/XssATM.qll
index 43d8375b8a5..d28b669bf49 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/XssATM.qll
+++ b/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/XssATM.qll
@@ -9,8 +9,8 @@ private import semmle.javascript.heuristics.SyntacticHeuristics
 private import semmle.javascript.security.dataflow.DomBasedXssCustomizations
 import AdaptiveThreatModeling
 
-class Configuration extends AtmConfig {
-  Configuration() { this = "DomBasedXssATMConfig" }
+class DomBasedXssAtmConfig extends AtmConfig {
+  DomBasedXssAtmConfig() { this = "DomBasedXssAtmConfig" }
 
   override predicate isKnownSource(DataFlow::Node source) { source instanceof DomBasedXss::Source }
 
diff --git a/javascript/ql/experimental/adaptivethreatmodeling/modelbuilding/DebugResultInclusion.ql b/javascript/ql/experimental/adaptivethreatmodeling/modelbuilding/DebugResultInclusion.ql
index 1b5c235107e..444f682304d 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/modelbuilding/DebugResultInclusion.ql
+++ b/javascript/ql/experimental/adaptivethreatmodeling/modelbuilding/DebugResultInclusion.ql
@@ -19,16 +19,16 @@ private import experimental.adaptivethreatmodeling.XssATM as XssAtm
 
 string getAReasonSinkExcluded(DataFlow::Node sinkCandidate, Query query) {
   query instanceof NosqlInjectionQuery and
-  result = any(NosqlInjectionAtm::Configuration cfg).getAReasonSinkExcluded(sinkCandidate)
+  result = any(NosqlInjectionAtm::NosqlInjectionAtmConfig cfg).getAReasonSinkExcluded(sinkCandidate)
   or
   query instanceof SqlInjectionQuery and
-  result = any(SqlInjectionAtm::Configuration cfg).getAReasonSinkExcluded(sinkCandidate)
+  result = any(SqlInjectionAtm::SqlInjectionAtmConfig cfg).getAReasonSinkExcluded(sinkCandidate)
   or
   query instanceof TaintedPathQuery and
-  result = any(TaintedPathAtm::Configuration cfg).getAReasonSinkExcluded(sinkCandidate)
+  result = any(TaintedPathAtm::TaintedPathAtmConfig cfg).getAReasonSinkExcluded(sinkCandidate)
   or
   query instanceof XssQuery and
-  result = any(XssAtm::Configuration cfg).getAReasonSinkExcluded(sinkCandidate)
+  result = any(XssAtm::DomBasedXssAtmConfig cfg).getAReasonSinkExcluded(sinkCandidate)
 }
 
 pragma[inline]
diff --git a/javascript/ql/experimental/adaptivethreatmodeling/modelbuilding/extraction/ExtractEndpointDataTraining.qll b/javascript/ql/experimental/adaptivethreatmodeling/modelbuilding/extraction/ExtractEndpointDataTraining.qll
index 73628c744cf..325809e085f 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/modelbuilding/extraction/ExtractEndpointDataTraining.qll
+++ b/javascript/ql/experimental/adaptivethreatmodeling/modelbuilding/extraction/ExtractEndpointDataTraining.qll
@@ -206,13 +206,14 @@ query predicate reformattedTrainingEndpoints(
  * TODO: Delete this once we are no longer surfacing `hasFlowFromSource`.
  */
 DataFlow::Configuration getDataFlowCfg(Query query) {
-  query instanceof NosqlInjectionQuery and result instanceof NosqlInjectionAtm::Configuration
+  query instanceof NosqlInjectionQuery and
+  result instanceof NosqlInjectionAtm::NosqlInjectionAtmConfig
   or
-  query instanceof SqlInjectionQuery and result instanceof SqlInjectionAtm::Configuration
+  query instanceof SqlInjectionQuery and result instanceof SqlInjectionAtm::SqlInjectionAtmConfig
   or
-  query instanceof TaintedPathQuery and result instanceof TaintedPathAtm::Configuration
+  query instanceof TaintedPathQuery and result instanceof TaintedPathAtm::TaintedPathAtmConfig
   or
-  query instanceof XssQuery and result instanceof XssAtm::Configuration
+  query instanceof XssQuery and result instanceof XssAtm::DomBasedXssAtmConfig
 }
 
 // TODO: Delete this once we are no longer surfacing `hasFlowFromSource`.
diff --git a/javascript/ql/experimental/adaptivethreatmodeling/modelbuilding/extraction/ExtractEndpointMapping.ql b/javascript/ql/experimental/adaptivethreatmodeling/modelbuilding/extraction/ExtractEndpointMapping.ql
index 98668ba01fd..697928d74b0 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/modelbuilding/extraction/ExtractEndpointMapping.ql
+++ b/javascript/ql/experimental/adaptivethreatmodeling/modelbuilding/extraction/ExtractEndpointMapping.ql
@@ -14,15 +14,15 @@ from string queryName, AtmConfig c, EndpointType e
 where
   (
     queryName = "SqlInjection" and
-    c instanceof SqlInjectionAtm::Configuration
+    c instanceof SqlInjectionAtm::SqlInjectionAtmConfig
     or
     queryName = "NosqlInjection" and
-    c instanceof NosqlInjectionAtm::Configuration
+    c instanceof NosqlInjectionAtm::NosqlInjectionAtmConfig
     or
     queryName = "TaintedPath" and
-    c instanceof TaintedPathAtm::Configuration
+    c instanceof TaintedPathAtm::TaintedPathAtmConfig
     or
-    queryName = "Xss" and c instanceof XssAtm::Configuration
+    queryName = "Xss" and c instanceof XssAtm::DomBasedXssAtmConfig
   ) and
   e = c.getASinkEndpointType()
 select queryName, e.getEncoding() as label
diff --git a/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/EndpointFeatures.ql b/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/EndpointFeatures.ql
index 04724557843..9439fda8ab2 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/EndpointFeatures.ql
+++ b/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/EndpointFeatures.ql
@@ -17,10 +17,10 @@ private import experimental.adaptivethreatmodeling.EndpointCharacteristics as En
 
 query predicate tokenFeatures(DataFlow::Node endpoint, string featureName, string featureValue) {
   (
-    not exists(any(NosqlInjectionAtm::Configuration cfg).getAReasonSinkExcluded(endpoint)) or
-    not exists(any(SqlInjectionAtm::Configuration cfg).getAReasonSinkExcluded(endpoint)) or
-    not exists(any(TaintedPathAtm::Configuration cfg).getAReasonSinkExcluded(endpoint)) or
-    not exists(any(XssAtm::Configuration cfg).getAReasonSinkExcluded(endpoint)) or
+    not exists(any(NosqlInjectionAtm::NosqlInjectionAtmConfig cfg).getAReasonSinkExcluded(endpoint)) or
+    not exists(any(SqlInjectionAtm::SqlInjectionAtmConfig cfg).getAReasonSinkExcluded(endpoint)) or
+    not exists(any(TaintedPathAtm::TaintedPathAtmConfig cfg).getAReasonSinkExcluded(endpoint)) or
+    not exists(any(XssAtm::DomBasedXssAtmConfig cfg).getAReasonSinkExcluded(endpoint)) or
     any(EndpointCharacteristics::IsArgumentToModeledFunctionCharacteristic characteristic)
         .getEndpoints(endpoint)
   ) and
diff --git a/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/FilteredTruePositives.ql b/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/FilteredTruePositives.ql
index deae494c226..d8de88e3454 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/FilteredTruePositives.ql
+++ b/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/FilteredTruePositives.ql
@@ -23,24 +23,24 @@ import experimental.adaptivethreatmodeling.XssATM as XssAtm
 
 query predicate nosqlFilteredTruePositives(DataFlow::Node endpoint, string reason) {
   endpoint instanceof NosqlInjection::Sink and
-  reason = any(NosqlInjectionAtm::Configuration cfg).getAReasonSinkExcluded(endpoint) and
+  reason = any(NosqlInjectionAtm::NosqlInjectionAtmConfig cfg).getAReasonSinkExcluded(endpoint) and
   not reason = ["argument to modeled function", "modeled sink", "modeled database access"]
 }
 
 query predicate sqlFilteredTruePositives(DataFlow::Node endpoint, string reason) {
   endpoint instanceof SqlInjection::Sink and
-  reason = any(SqlInjectionAtm::Configuration cfg).getAReasonSinkExcluded(endpoint) and
+  reason = any(SqlInjectionAtm::SqlInjectionAtmConfig cfg).getAReasonSinkExcluded(endpoint) and
   reason != "argument to modeled function"
 }
 
 query predicate taintedPathFilteredTruePositives(DataFlow::Node endpoint, string reason) {
   endpoint instanceof TaintedPath::Sink and
-  reason = any(TaintedPathAtm::Configuration cfg).getAReasonSinkExcluded(endpoint) and
+  reason = any(TaintedPathAtm::TaintedPathAtmConfig cfg).getAReasonSinkExcluded(endpoint) and
   reason != "argument to modeled function"
 }
 
 query predicate xssFilteredTruePositives(DataFlow::Node endpoint, string reason) {
   endpoint instanceof DomBasedXss::Sink and
-  reason = any(XssAtm::Configuration cfg).getAReasonSinkExcluded(endpoint) and
+  reason = any(XssAtm::DomBasedXssAtmConfig cfg).getAReasonSinkExcluded(endpoint) and
   reason != "argument to modeled function"
 }
diff --git a/javascript/ql/experimental/adaptivethreatmodeling/test/modeled_apis/nosql_endpoint_filter_ignores_modeled_apis.ql b/javascript/ql/experimental/adaptivethreatmodeling/test/modeled_apis/nosql_endpoint_filter_ignores_modeled_apis.ql
index b77685e966c..a1d06d2881d 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/test/modeled_apis/nosql_endpoint_filter_ignores_modeled_apis.ql
+++ b/javascript/ql/experimental/adaptivethreatmodeling/test/modeled_apis/nosql_endpoint_filter_ignores_modeled_apis.ql
@@ -2,5 +2,5 @@ import javascript
 import experimental.adaptivethreatmodeling.NosqlInjectionATM as NosqlInjectionAtm
 
 query predicate effectiveSinks(DataFlow::Node node) {
-  not exists(any(NosqlInjectionAtm::Configuration cfg).getAReasonSinkExcluded(node))
+  not exists(any(NosqlInjectionAtm::NosqlInjectionAtmConfig cfg).getAReasonSinkExcluded(node))
 }

From 346dd864b5bb09bb3ae71581dbdf0ea4f1fe6b61 Mon Sep 17 00:00:00 2001
From: porcupineyhairs <61983466+porcupineyhairs@users.noreply.github.com>
Date: Wed, 30 Nov 2022 05:21:11 +0530
Subject: [PATCH 0839/1420] Update
 python/ql/lib/change-notes/2022-11-17-py-pam-improve.md

fix typo

Co-authored-by: intrigus-lgtm <60750685+intrigus-lgtm@users.noreply.github.com>
---
 python/ql/lib/change-notes/2022-11-17-py-pam-improve.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/python/ql/lib/change-notes/2022-11-17-py-pam-improve.md b/python/ql/lib/change-notes/2022-11-17-py-pam-improve.md
index ec7f49bd11d..78a267d3caa 100644
--- a/python/ql/lib/change-notes/2022-11-17-py-pam-improve.md
+++ b/python/ql/lib/change-notes/2022-11-17-py-pam-improve.md
@@ -1,4 +1,4 @@
 ---
  category: majorAnalysis
 ---
-* The _PAM authorization bypass due to incorrect usage_ (`py/pam-auth-bypass`) query has been converted to a tain-tracking query, resulting in significantly fewer false positives.
+* The _PAM authorization bypass due to incorrect usage_ (`py/pam-auth-bypass`) query has been converted to a taint-tracking query, resulting in significantly fewer false positives.

From 0a98559fcb26c45a677db06d73cc56d8752f7e2f Mon Sep 17 00:00:00 2001
From: Harry Maclean <hmac@github.com>
Date: Mon, 7 Nov 2022 12:29:14 +1300
Subject: [PATCH 0840/1420] Ruby: Add flow summaries for ActiveSupport::JSON

---
 .../codeql/ruby/frameworks/ActiveSupport.qll  | 13 ++++++++++++
 .../ActiveSupportDataFlow.expected            | 20 +++++++++++++++++++
 .../active_support/active_support.rb          | 20 +++++++++++++++++++
 3 files changed, 53 insertions(+)

diff --git a/ruby/ql/lib/codeql/ruby/frameworks/ActiveSupport.qll b/ruby/ql/lib/codeql/ruby/frameworks/ActiveSupport.qll
index 3e90875206c..79be1a72617 100644
--- a/ruby/ql/lib/codeql/ruby/frameworks/ActiveSupport.qll
+++ b/ruby/ql/lib/codeql/ruby/frameworks/ActiveSupport.qll
@@ -374,4 +374,17 @@ module ActiveSupport {
         ]
     }
   }
+
+  /** `ActiveSupport::JSON` */
+  module Json {
+    private class JsonSummary extends ModelInput::SummaryModelCsv {
+      override predicate row(string row) {
+        row =
+          [
+            "activesupport;;Member[ActiveSupport].Member[JSON].Method[encode,dump];Argument[0];ReturnValue;taint",
+            "activesupport;;Member[ActiveSupport].Member[JSON].Method[decode,load];Argument[0];ReturnValue;taint",
+          ]
+      }
+    }
+  }
 }
diff --git a/ruby/ql/test/library-tests/frameworks/active_support/ActiveSupportDataFlow.expected b/ruby/ql/test/library-tests/frameworks/active_support/ActiveSupportDataFlow.expected
index 2ea08b4c384..8a44022f72f 100644
--- a/ruby/ql/test/library-tests/frameworks/active_support/ActiveSupportDataFlow.expected
+++ b/ruby/ql/test/library-tests/frameworks/active_support/ActiveSupportDataFlow.expected
@@ -189,6 +189,14 @@ edges
 | active_support.rb:303:7:303:16 | call to source :  | active_support.rb:304:19:304:19 | a :  |
 | active_support.rb:304:7:304:19 | call to json_escape :  | active_support.rb:305:8:305:8 | b |
 | active_support.rb:304:19:304:19 | a :  | active_support.rb:304:7:304:19 | call to json_escape :  |
+| active_support.rb:309:9:309:18 | call to source :  | active_support.rb:310:37:310:37 | x :  |
+| active_support.rb:310:37:310:37 | x :  | active_support.rb:310:10:310:38 | call to encode |
+| active_support.rb:314:9:314:18 | call to source :  | active_support.rb:315:37:315:37 | x :  |
+| active_support.rb:315:37:315:37 | x :  | active_support.rb:315:10:315:38 | call to decode |
+| active_support.rb:319:9:319:18 | call to source :  | active_support.rb:320:35:320:35 | x :  |
+| active_support.rb:320:35:320:35 | x :  | active_support.rb:320:10:320:36 | call to dump |
+| active_support.rb:324:9:324:18 | call to source :  | active_support.rb:325:35:325:35 | x :  |
+| active_support.rb:325:35:325:35 | x :  | active_support.rb:325:10:325:36 | call to load |
 | hash_extensions.rb:2:14:2:24 | call to source :  | hash_extensions.rb:3:9:3:9 | h [element :a] :  |
 | hash_extensions.rb:2:14:2:24 | call to source :  | hash_extensions.rb:3:9:3:9 | h [element :a] :  |
 | hash_extensions.rb:3:9:3:9 | h [element :a] :  | hash_extensions.rb:3:9:3:24 | call to stringify_keys [element] :  |
@@ -539,6 +547,18 @@ nodes
 | active_support.rb:304:7:304:19 | call to json_escape :  | semmle.label | call to json_escape :  |
 | active_support.rb:304:19:304:19 | a :  | semmle.label | a :  |
 | active_support.rb:305:8:305:8 | b | semmle.label | b |
+| active_support.rb:309:9:309:18 | call to source :  | semmle.label | call to source :  |
+| active_support.rb:310:10:310:38 | call to encode | semmle.label | call to encode |
+| active_support.rb:310:37:310:37 | x :  | semmle.label | x :  |
+| active_support.rb:314:9:314:18 | call to source :  | semmle.label | call to source :  |
+| active_support.rb:315:10:315:38 | call to decode | semmle.label | call to decode |
+| active_support.rb:315:37:315:37 | x :  | semmle.label | x :  |
+| active_support.rb:319:9:319:18 | call to source :  | semmle.label | call to source :  |
+| active_support.rb:320:10:320:36 | call to dump | semmle.label | call to dump |
+| active_support.rb:320:35:320:35 | x :  | semmle.label | x :  |
+| active_support.rb:324:9:324:18 | call to source :  | semmle.label | call to source :  |
+| active_support.rb:325:10:325:36 | call to load | semmle.label | call to load |
+| active_support.rb:325:35:325:35 | x :  | semmle.label | x :  |
 | hash_extensions.rb:2:14:2:24 | call to source :  | semmle.label | call to source :  |
 | hash_extensions.rb:2:14:2:24 | call to source :  | semmle.label | call to source :  |
 | hash_extensions.rb:3:9:3:9 | h [element :a] :  | semmle.label | h [element :a] :  |
diff --git a/ruby/ql/test/library-tests/frameworks/active_support/active_support.rb b/ruby/ql/test/library-tests/frameworks/active_support/active_support.rb
index c2dfb8b421d..a71af8bc5e6 100644
--- a/ruby/ql/test/library-tests/frameworks/active_support/active_support.rb
+++ b/ruby/ql/test/library-tests/frameworks/active_support/active_support.rb
@@ -304,3 +304,23 @@ def m_json_escape
   b = json_escape a
   sink b # $hasTaintFlow=a
 end
+
+def m_json_encode
+    x = source "a"
+    sink ActiveSupport::JSON.encode(x) # $hasTaintFlow=a
+end
+
+def m_json_decode
+    x = source "a"
+    sink ActiveSupport::JSON.decode(x) # $hasTaintFlow=a
+end
+
+def m_json_dump
+    x = source "a"
+    sink ActiveSupport::JSON.dump(x) # $hasTaintFlow=a
+end
+
+def m_json_load
+    x = source "a"
+    sink ActiveSupport::JSON.load(x) # $hasTaintFlow=a
+end

From 5259d4af63105f0f0b03a895596d086cd8132636 Mon Sep 17 00:00:00 2001
From: Harry Maclean <hmac@github.com>
Date: Mon, 7 Nov 2022 12:46:03 +1300
Subject: [PATCH 0841/1420] Ruby: Model various JSON methods

---
 ruby/ql/lib/codeql/ruby/Frameworks.qll        |  1 +
 ruby/ql/lib/codeql/ruby/frameworks/Json.qll   | 22 +++++++++++++
 .../frameworks/json/JsonDataFlow.expected     | 32 +++++++++++++++++++
 .../frameworks/json/JsonDataFlow.ql           | 12 +++++++
 .../library-tests/frameworks/json/json.rb     | 10 ++++++
 5 files changed, 77 insertions(+)
 create mode 100644 ruby/ql/lib/codeql/ruby/frameworks/Json.qll
 create mode 100644 ruby/ql/test/library-tests/frameworks/json/JsonDataFlow.expected
 create mode 100644 ruby/ql/test/library-tests/frameworks/json/JsonDataFlow.ql
 create mode 100644 ruby/ql/test/library-tests/frameworks/json/json.rb

diff --git a/ruby/ql/lib/codeql/ruby/Frameworks.qll b/ruby/ql/lib/codeql/ruby/Frameworks.qll
index 9896cf23c39..e608967f591 100644
--- a/ruby/ql/lib/codeql/ruby/Frameworks.qll
+++ b/ruby/ql/lib/codeql/ruby/Frameworks.qll
@@ -24,3 +24,4 @@ private import codeql.ruby.frameworks.XmlParsing
 private import codeql.ruby.frameworks.ActionDispatch
 private import codeql.ruby.frameworks.PosixSpawn
 private import codeql.ruby.frameworks.StringFormatters
+private import codeql.ruby.frameworks.Json
diff --git a/ruby/ql/lib/codeql/ruby/frameworks/Json.qll b/ruby/ql/lib/codeql/ruby/frameworks/Json.qll
new file mode 100644
index 00000000000..f82782199f2
--- /dev/null
+++ b/ruby/ql/lib/codeql/ruby/frameworks/Json.qll
@@ -0,0 +1,22 @@
+/** Provides modelling for the `json` gem. */
+
+private import codeql.ruby.frameworks.data.ModelsAsData
+
+/** Provides modelling for the `json` gem. */
+module Json {
+  /**
+   * Flow summaries for common `JSON` methods.
+   * Not all of these methods are strictly defined in the `json` gem.
+   * The `JSON` namespace is heavily overloaded by other JSON parsing gems such as `oj`, `json_pure`, `multi_json` etc.
+   * This summary covers common methods we've seen called on `JSON` in the wild.
+   */
+  private class JsonSummary extends ModelInput::SummaryModelCsv {
+    override predicate row(string row) {
+      row =
+        [
+          "json;;Member[JSON].Method[parse,parse!,load,restore];Argument[0];ReturnValue;taint",
+          "json;;Member[JSON].Method[generate,fast_generate,dump,unparse,fast_unparse];Argument[0];ReturnValue;taint",
+        ]
+    }
+  }
+}
diff --git a/ruby/ql/test/library-tests/frameworks/json/JsonDataFlow.expected b/ruby/ql/test/library-tests/frameworks/json/JsonDataFlow.expected
new file mode 100644
index 00000000000..689a8d22702
--- /dev/null
+++ b/ruby/ql/test/library-tests/frameworks/json/JsonDataFlow.expected
@@ -0,0 +1,32 @@
+failures
+edges
+| json.rb:1:17:1:26 | call to source :  | json.rb:1:6:1:27 | call to parse |
+| json.rb:2:18:2:27 | call to source :  | json.rb:2:6:2:28 | call to parse! |
+| json.rb:3:16:3:25 | call to source :  | json.rb:3:6:3:26 | call to load |
+| json.rb:4:19:4:28 | call to source :  | json.rb:4:6:4:29 | call to restore |
+| json.rb:6:20:6:29 | call to source :  | json.rb:6:6:6:30 | call to generate |
+| json.rb:7:25:7:34 | call to source :  | json.rb:7:6:7:35 | call to fast_generate |
+| json.rb:8:16:8:25 | call to source :  | json.rb:8:6:8:26 | call to dump |
+| json.rb:9:19:9:28 | call to source :  | json.rb:9:6:9:29 | call to unparse |
+| json.rb:10:24:10:33 | call to source :  | json.rb:10:6:10:34 | call to fast_unparse |
+nodes
+| json.rb:1:6:1:27 | call to parse | semmle.label | call to parse |
+| json.rb:1:17:1:26 | call to source :  | semmle.label | call to source :  |
+| json.rb:2:6:2:28 | call to parse! | semmle.label | call to parse! |
+| json.rb:2:18:2:27 | call to source :  | semmle.label | call to source :  |
+| json.rb:3:6:3:26 | call to load | semmle.label | call to load |
+| json.rb:3:16:3:25 | call to source :  | semmle.label | call to source :  |
+| json.rb:4:6:4:29 | call to restore | semmle.label | call to restore |
+| json.rb:4:19:4:28 | call to source :  | semmle.label | call to source :  |
+| json.rb:6:6:6:30 | call to generate | semmle.label | call to generate |
+| json.rb:6:20:6:29 | call to source :  | semmle.label | call to source :  |
+| json.rb:7:6:7:35 | call to fast_generate | semmle.label | call to fast_generate |
+| json.rb:7:25:7:34 | call to source :  | semmle.label | call to source :  |
+| json.rb:8:6:8:26 | call to dump | semmle.label | call to dump |
+| json.rb:8:16:8:25 | call to source :  | semmle.label | call to source :  |
+| json.rb:9:6:9:29 | call to unparse | semmle.label | call to unparse |
+| json.rb:9:19:9:28 | call to source :  | semmle.label | call to source :  |
+| json.rb:10:6:10:34 | call to fast_unparse | semmle.label | call to fast_unparse |
+| json.rb:10:24:10:33 | call to source :  | semmle.label | call to source :  |
+subpaths
+#select
diff --git a/ruby/ql/test/library-tests/frameworks/json/JsonDataFlow.ql b/ruby/ql/test/library-tests/frameworks/json/JsonDataFlow.ql
new file mode 100644
index 00000000000..8a14d5f686e
--- /dev/null
+++ b/ruby/ql/test/library-tests/frameworks/json/JsonDataFlow.ql
@@ -0,0 +1,12 @@
+/**
+ * @kind path-problem
+ */
+
+import codeql.ruby.AST
+import TestUtilities.InlineFlowTest
+import codeql.ruby.Frameworks
+import PathGraph
+
+from DataFlow::PathNode source, DataFlow::PathNode sink, DefaultValueFlowConf conf
+where conf.hasFlowPath(source, sink)
+select sink, source, sink, "$@", source, source.toString()
diff --git a/ruby/ql/test/library-tests/frameworks/json/json.rb b/ruby/ql/test/library-tests/frameworks/json/json.rb
new file mode 100644
index 00000000000..ee549a76447
--- /dev/null
+++ b/ruby/ql/test/library-tests/frameworks/json/json.rb
@@ -0,0 +1,10 @@
+sink JSON.parse(source "a") # $hasTaintFlow=a
+sink JSON.parse!(source "a") # $hasTaintFlow=a
+sink JSON.load(source "a") # $hasTaintFlow=a
+sink JSON.restore(source "a") # $hasTaintFlow=a
+
+sink JSON.generate(source "a") # $hasTaintFlow=a
+sink JSON.fast_generate(source "a") # $hasTaintFlow=a
+sink JSON.dump(source "a") # $hasTaintFlow=a
+sink JSON.unparse(source "a") # $hasTaintFlow=a
+sink JSON.fast_unparse(source "a") # $hasTaintFlow=a

From eff763d127dc76a7a7a76c0ace9b12e58ca7e2d0 Mon Sep 17 00:00:00 2001
From: Harry Maclean <hmac@github.com>
Date: Mon, 7 Nov 2022 12:52:20 +1300
Subject: [PATCH 0842/1420] Ruby: Model to_json ActiveSupport extension

---
 ruby/ql/lib/codeql/ruby/frameworks/ActiveSupport.qll  | 11 +++++++++++
 .../active_support/ActiveSupportDataFlow.expected     | 11 +++++++++++
 .../frameworks/active_support/active_support.rb       |  7 +++++++
 3 files changed, 29 insertions(+)

diff --git a/ruby/ql/lib/codeql/ruby/frameworks/ActiveSupport.qll b/ruby/ql/lib/codeql/ruby/frameworks/ActiveSupport.qll
index 79be1a72617..a50d8888975 100644
--- a/ruby/ql/lib/codeql/ruby/frameworks/ActiveSupport.qll
+++ b/ruby/ql/lib/codeql/ruby/frameworks/ActiveSupport.qll
@@ -104,6 +104,17 @@ module ActiveSupport {
 
         override predicate runsArbitraryCode() { none() }
       }
+
+      /** Flow summary for `Object#to_json`, which serializes the receiver as a JSON string. */
+      private class ToJsonSummary extends SimpleSummarizedCallable {
+        ToJsonSummary() { this = "to_json" }
+
+        override predicate propagatesFlowExt(string input, string output, boolean preservesValue) {
+          input = ["Argument[self]", "Argument[self].Element[any]"] and
+          output = "ReturnValue" and
+          preservesValue = false
+        }
+      }
     }
 
     /**
diff --git a/ruby/ql/test/library-tests/frameworks/active_support/ActiveSupportDataFlow.expected b/ruby/ql/test/library-tests/frameworks/active_support/ActiveSupportDataFlow.expected
index 8a44022f72f..5641c2185db 100644
--- a/ruby/ql/test/library-tests/frameworks/active_support/ActiveSupportDataFlow.expected
+++ b/ruby/ql/test/library-tests/frameworks/active_support/ActiveSupportDataFlow.expected
@@ -197,6 +197,11 @@ edges
 | active_support.rb:320:35:320:35 | x :  | active_support.rb:320:10:320:36 | call to dump |
 | active_support.rb:324:9:324:18 | call to source :  | active_support.rb:325:35:325:35 | x :  |
 | active_support.rb:325:35:325:35 | x :  | active_support.rb:325:10:325:36 | call to load |
+| active_support.rb:329:9:329:18 | call to source :  | active_support.rb:330:10:330:10 | x :  |
+| active_support.rb:329:9:329:18 | call to source :  | active_support.rb:331:10:331:10 | x :  |
+| active_support.rb:330:10:330:10 | x :  | active_support.rb:332:10:332:10 | y [element 0] :  |
+| active_support.rb:331:10:331:10 | x :  | active_support.rb:331:10:331:18 | call to to_json |
+| active_support.rb:332:10:332:10 | y [element 0] :  | active_support.rb:332:10:332:18 | call to to_json |
 | hash_extensions.rb:2:14:2:24 | call to source :  | hash_extensions.rb:3:9:3:9 | h [element :a] :  |
 | hash_extensions.rb:2:14:2:24 | call to source :  | hash_extensions.rb:3:9:3:9 | h [element :a] :  |
 | hash_extensions.rb:3:9:3:9 | h [element :a] :  | hash_extensions.rb:3:9:3:24 | call to stringify_keys [element] :  |
@@ -559,6 +564,12 @@ nodes
 | active_support.rb:324:9:324:18 | call to source :  | semmle.label | call to source :  |
 | active_support.rb:325:10:325:36 | call to load | semmle.label | call to load |
 | active_support.rb:325:35:325:35 | x :  | semmle.label | x :  |
+| active_support.rb:329:9:329:18 | call to source :  | semmle.label | call to source :  |
+| active_support.rb:330:10:330:10 | x :  | semmle.label | x :  |
+| active_support.rb:331:10:331:10 | x :  | semmle.label | x :  |
+| active_support.rb:331:10:331:18 | call to to_json | semmle.label | call to to_json |
+| active_support.rb:332:10:332:10 | y [element 0] :  | semmle.label | y [element 0] :  |
+| active_support.rb:332:10:332:18 | call to to_json | semmle.label | call to to_json |
 | hash_extensions.rb:2:14:2:24 | call to source :  | semmle.label | call to source :  |
 | hash_extensions.rb:2:14:2:24 | call to source :  | semmle.label | call to source :  |
 | hash_extensions.rb:3:9:3:9 | h [element :a] :  | semmle.label | h [element :a] :  |
diff --git a/ruby/ql/test/library-tests/frameworks/active_support/active_support.rb b/ruby/ql/test/library-tests/frameworks/active_support/active_support.rb
index a71af8bc5e6..661f2ecd0cf 100644
--- a/ruby/ql/test/library-tests/frameworks/active_support/active_support.rb
+++ b/ruby/ql/test/library-tests/frameworks/active_support/active_support.rb
@@ -324,3 +324,10 @@ def m_json_load
     x = source "a"
     sink ActiveSupport::JSON.load(x) # $hasTaintFlow=a
 end
+
+def m_to_json
+    x = source "a"
+    y = [x]
+    sink x.to_json # $hasTaintFlow=a
+    sink y.to_json # $hasTaintFlow=a
+end

From 1bd2dd0a6e5f2942a6b408c1b553ff1c9f93a9a4 Mon Sep 17 00:00:00 2001
From: Harry Maclean <hmac@github.com>
Date: Mon, 7 Nov 2022 14:53:34 +1300
Subject: [PATCH 0843/1420] Ruby: update test fixture

---
 ruby/ql/test/library-tests/dataflow/local/TaintStep.expected | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/ruby/ql/test/library-tests/dataflow/local/TaintStep.expected b/ruby/ql/test/library-tests/dataflow/local/TaintStep.expected
index f1b8eb2da26..fe75f1b0313 100644
--- a/ruby/ql/test/library-tests/dataflow/local/TaintStep.expected
+++ b/ruby/ql/test/library-tests/dataflow/local/TaintStep.expected
@@ -21,6 +21,10 @@
 | file://:0:0:0:0 | parameter position 0 of activesupport;;Member[ActionView].Member[SafeBuffer].Instance.Method[safe_concat] | file://:0:0:0:0 | [summary] to write: argument self in activesupport;;Member[ActionView].Member[SafeBuffer].Instance.Method[safe_concat] |
 | file://:0:0:0:0 | parameter position 0 of activesupport;;Member[ActionView].Member[SafeBuffer].Instance.Method[safe_concat] | file://:0:0:0:0 | [summary] to write: return (return) in activesupport;;Member[ActionView].Member[SafeBuffer].Instance.Method[safe_concat] |
 | file://:0:0:0:0 | parameter position 0 of activesupport;;Member[ActionView].Member[SafeBuffer].Method[new] | file://:0:0:0:0 | [summary] to write: return (return) in activesupport;;Member[ActionView].Member[SafeBuffer].Method[new] |
+| file://:0:0:0:0 | parameter position 0 of activesupport;;Member[ActiveSupport].Member[JSON].Method[decode,load] | file://:0:0:0:0 | [summary] to write: return (return) in activesupport;;Member[ActiveSupport].Member[JSON].Method[decode,load] |
+| file://:0:0:0:0 | parameter position 0 of activesupport;;Member[ActiveSupport].Member[JSON].Method[encode,dump] | file://:0:0:0:0 | [summary] to write: return (return) in activesupport;;Member[ActiveSupport].Member[JSON].Method[encode,dump] |
+| file://:0:0:0:0 | parameter position 0 of json;;Member[JSON].Method[generate,fast_generate,dump,unparse,fast_unparse] | file://:0:0:0:0 | [summary] to write: return (return) in json;;Member[JSON].Method[generate,fast_generate,dump,unparse,fast_unparse] |
+| file://:0:0:0:0 | parameter position 0 of json;;Member[JSON].Method[parse,parse!,load,restore] | file://:0:0:0:0 | [summary] to write: return (return) in json;;Member[JSON].Method[parse,parse!,load,restore] |
 | file://:0:0:0:0 | parameter position 0.. of File.join | file://:0:0:0:0 | [summary] to write: return (return) in File.join |
 | file://:0:0:0:0 | parameter self of & | file://:0:0:0:0 | [summary] read: argument self.any element in & |
 | file://:0:0:0:0 | parameter self of * | file://:0:0:0:0 | [summary] read: argument self.any element in * |

From 35a62018e43eee4594380c950d7265ccbc5086b2 Mon Sep 17 00:00:00 2001
From: Harry Maclean <hmac@github.com>
Date: Mon, 7 Nov 2022 14:53:57 +1300
Subject: [PATCH 0844/1420] Ruby: US spelling

---
 ruby/ql/lib/codeql/ruby/frameworks/Json.qll | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/ruby/ql/lib/codeql/ruby/frameworks/Json.qll b/ruby/ql/lib/codeql/ruby/frameworks/Json.qll
index f82782199f2..3024fea57a1 100644
--- a/ruby/ql/lib/codeql/ruby/frameworks/Json.qll
+++ b/ruby/ql/lib/codeql/ruby/frameworks/Json.qll
@@ -1,8 +1,8 @@
-/** Provides modelling for the `json` gem. */
+/** Provides modeling for the `json` gem. */
 
 private import codeql.ruby.frameworks.data.ModelsAsData
 
-/** Provides modelling for the `json` gem. */
+/** Provides modeling for the `json` gem. */
 module Json {
   /**
    * Flow summaries for common `JSON` methods.

From 13f4a0e284ef0085f033242d9c9be1c44291a4ed Mon Sep 17 00:00:00 2001
From: "github-actions[bot]"
 <41898282+github-actions[bot]@users.noreply.github.com>
Date: Wed, 30 Nov 2022 00:18:26 +0000
Subject: [PATCH 0845/1420] Add changed framework coverage reports

---
 .../library-coverage/coverage.csv             | 262 +++++++++---------
 .../library-coverage/coverage.rst             |   8 +-
 2 files changed, 136 insertions(+), 134 deletions(-)

diff --git a/java/documentation/library-coverage/coverage.csv b/java/documentation/library-coverage/coverage.csv
index 75e3309bb4c..496d7f2f9e3 100644
--- a/java/documentation/library-coverage/coverage.csv
+++ b/java/documentation/library-coverage/coverage.csv
@@ -1,130 +1,132 @@
-package,sink,source,summary,sink:bean-validation,sink:create-file,sink:groovy,sink:header-splitting,sink:information-leak,sink:intent-start,sink:jdbc-url,sink:jexl,sink:jndi-injection,sink:ldap,sink:logging,sink:mvel,sink:ognl-injection,sink:open-url,sink:pending-intent-sent,sink:regex-use,sink:regex-use[-1],sink:regex-use[0],sink:regex-use[],sink:regex-use[f-1],sink:regex-use[f1],sink:regex-use[f],sink:set-hostname-verifier,sink:sql,sink:ssti,sink:url-open-stream,sink:url-redirect,sink:write-file,sink:xpath,sink:xslt,sink:xss,source:android-external-storage-dir,source:android-widget,source:contentprovider,source:remote,summary:taint,summary:value
-android.app,24,,103,,,,,,7,,,,,,,,,17,,,,,,,,,,,,,,,,,,,,,18,85
-android.content,24,31,154,,,,,,16,,,,,,,,,,,,,,,,,,8,,,,,,,,4,,27,,63,91
-android.database,59,,39,,,,,,,,,,,,,,,,,,,,,,,,59,,,,,,,,,,,,39,
-android.net,,,60,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,45,15
-android.os,,2,122,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,2,,,,41,81
-android.util,6,16,,,,,,,,,,,,6,,,,,,,,,,,,,,,,,,,,,,,,16,,
-android.webkit,3,2,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,3,,,,2,,
-android.widget,,1,1,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,1,,,1,
-androidx.core.app,6,,95,,,,,,,,,,,,,,,6,,,,,,,,,,,,,,,,,,,,,12,83
-androidx.slice,2,5,88,,,,,,,,,,,,,,,2,,,,,,,,,,,,,,,,,,,5,,27,61
-cn.hutool.core.codec,,,1,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,1,
-com.esotericsoftware.kryo.io,,,1,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,1,
-com.esotericsoftware.kryo5.io,,,1,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,1,
-com.fasterxml.jackson.core,,,1,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,1,
-com.fasterxml.jackson.databind,,,6,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,6,
-com.google.common.base,4,,85,,,,,,,,,,,,,,,,,,3,1,,,,,,,,,,,,,,,,,62,23
-com.google.common.cache,,,17,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,17
-com.google.common.collect,,,553,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,2,551
-com.google.common.flogger,29,,,,,,,,,,,,,29,,,,,,,,,,,,,,,,,,,,,,,,,,
-com.google.common.io,6,,73,,,,,,,,,,,,,,,,,,,,,,,,,,6,,,,,,,,,,72,1
-com.hubspot.jinjava,2,,,,,,,,,,,,,,,,,,,,,,,,,,,2,,,,,,,,,,,,
-com.mitchellbosecke.pebble,2,,,,,,,,,,,,,,,,,,,,,,,,,,,2,,,,,,,,,,,,
-com.opensymphony.xwork2.ognl,3,,,,,,,,,,,,,,,3,,,,,,,,,,,,,,,,,,,,,,,,
-com.rabbitmq.client,,21,7,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,21,7,
-com.unboundid.ldap.sdk,17,,,,,,,,,,,,17,,,,,,,,,,,,,,,,,,,,,,,,,,,
-com.zaxxer.hikari,2,,,,,,,,,2,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,
-flexjson,,,1,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,1
-freemarker.cache,1,,,,,,,,,,,,,,,,,,,,,,,,,,,1,,,,,,,,,,,,
-freemarker.template,7,,,,,,,,,,,,,,,,,,,,,,,,,,,7,,,,,,,,,,,,
-groovy.lang,26,,,,,26,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,
-groovy.util,5,,,,,5,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,
-jakarta.faces.context,2,7,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,2,,,,7,,
-jakarta.json,,,123,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,100,23
-jakarta.ws.rs.client,1,,,,,,,,,,,,,,,,1,,,,,,,,,,,,,,,,,,,,,,,
-jakarta.ws.rs.container,,9,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,9,,
-jakarta.ws.rs.core,2,,149,,,,,,,,,,,,,,,,,,,,,,,,,,,2,,,,,,,,,94,55
-java.beans,,,1,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,1,
-java.io,37,,40,,15,,,,,,,,,,,,,,,,,,,,,,,,,,22,,,,,,,,40,
-java.lang,13,,66,,,,,,,,,,,8,,,,,,4,,,1,,,,,,,,,,,,,,,,54,12
-java.net,10,3,7,,,,,,,,,,,,,,10,,,,,,,,,,,,,,,,,,,,,3,7,
-java.nio,15,,16,,13,,,,,,,,,,,,,,,,,,,,,,,,,,2,,,,,,,,16,
-java.sql,11,,,,,,,,,4,,,,,,,,,,,,,,,,,7,,,,,,,,,,,,,
-java.util,44,,461,,,,,,,,,,,34,,,,,,,5,2,,1,2,,,,,,,,,,,,,,36,425
-javax.faces.context,2,7,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,2,,,,7,,
-javax.jms,,9,57,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,9,57,
-javax.json,,,123,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,100,23
-javax.management.remote,2,,,,,,,,,,,2,,,,,,,,,,,,,,,,,,,,,,,,,,,,
-javax.naming,7,,,,,,,,,,,6,1,,,,,,,,,,,,,,,,,,,,,,,,,,,
-javax.net.ssl,2,,,,,,,,,,,,,,,,,,,,,,,,,2,,,,,,,,,,,,,,
-javax.script,1,,,,,,,,,,,,,,1,,,,,,,,,,,,,,,,,,,,,,,,,
-javax.servlet,4,21,2,,,,3,1,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,21,2,
-javax.validation,1,1,,1,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,1,,
-javax.ws.rs.client,1,,,,,,,,,,,,,,,,1,,,,,,,,,,,,,,,,,,,,,,,
-javax.ws.rs.container,,9,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,9,,
-javax.ws.rs.core,3,,149,,,,1,,,,,,,,,,,,,,,,,,,,,,,2,,,,,,,,,94,55
-javax.xml.transform,1,,6,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,1,,,,,,6,
-javax.xml.xpath,3,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,3,,,,,,,,
-jodd.json,,,10,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,10
-kotlin,12,,1835,,10,,,,,,,,,,,,2,,,,,,,,,,,,,,,,,,,,,,1828,7
-net.sf.saxon.s9api,5,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,5,,,,,,,
-ognl,6,,,,,,,,,,,,,,,6,,,,,,,,,,,,,,,,,,,,,,,,
-okhttp3,2,,47,,,,,,,,,,,,,,2,,,,,,,,,,,,,,,,,,,,,,22,25
-org.apache.commons.codec,,,6,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,6,
-org.apache.commons.collections,,,800,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,17,783
-org.apache.commons.collections4,,,800,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,17,783
-org.apache.commons.io,106,,556,,91,,,,,,,,,,,,15,,,,,,,,,,,,,,,,,,,,,,542,14
-org.apache.commons.jexl2,15,,,,,,,,,,15,,,,,,,,,,,,,,,,,,,,,,,,,,,,,
-org.apache.commons.jexl3,15,,,,,,,,,,15,,,,,,,,,,,,,,,,,,,,,,,,,,,,,
-org.apache.commons.lang3,6,,424,,,,,,,,,,,,,,,,6,,,,,,,,,,,,,,,,,,,,293,131
-org.apache.commons.logging,6,,,,,,,,,,,,,6,,,,,,,,,,,,,,,,,,,,,,,,,,
-org.apache.commons.ognl,6,,,,,,,,,,,,,,,6,,,,,,,,,,,,,,,,,,,,,,,,
-org.apache.commons.text,,,272,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,220,52
-org.apache.directory.ldap.client.api,1,,,,,,,,,,,,1,,,,,,,,,,,,,,,,,,,,,,,,,,,
-org.apache.hc.core5.function,,,1,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,1,
-org.apache.hc.core5.http,1,2,39,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,1,,,,2,39,
-org.apache.hc.core5.net,,,2,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,2,
-org.apache.hc.core5.util,,,24,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,18,6
-org.apache.http,27,3,70,,,,,,,,,,,,,,25,,,,,,,,,,,,,,,,,2,,,,3,62,8
-org.apache.ibatis.jdbc,6,,57,,,,,,,,,,,,,,,,,,,,,,,,6,,,,,,,,,,,,57,
-org.apache.log4j,11,,,,,,,,,,,,,11,,,,,,,,,,,,,,,,,,,,,,,,,,
-org.apache.logging.log4j,359,,8,,,,,,,,,,,359,,,,,,,,,,,,,,,,,,,,,,,,,4,4
-org.apache.shiro.codec,,,1,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,1,
-org.apache.shiro.jndi,1,,,,,,,,,,,1,,,,,,,,,,,,,,,,,,,,,,,,,,,,
-org.apache.velocity.app,4,,,,,,,,,,,,,,,,,,,,,,,,,,,4,,,,,,,,,,,,
-org.apache.velocity.runtime,4,,,,,,,,,,,,,,,,,,,,,,,,,,,4,,,,,,,,,,,,
-org.codehaus.groovy.control,1,,,,,1,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,
-org.dom4j,20,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,20,,,,,,,,
-org.hibernate,7,,,,,,,,,,,,,,,,,,,,,,,,,,7,,,,,,,,,,,,,
-org.jboss.logging,324,,,,,,,,,,,,,324,,,,,,,,,,,,,,,,,,,,,,,,,,
-org.jdbi.v3.core,6,,,,,,,,,6,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,
-org.jooq,1,,,,,,,,,,,,,,,,,,,,,,,,,,1,,,,,,,,,,,,,
-org.json,,,236,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,198,38
-org.mvel2,16,,,,,,,,,,,,,,16,,,,,,,,,,,,,,,,,,,,,,,,,
-org.scijava.log,13,,,,,,,,,,,,,13,,,,,,,,,,,,,,,,,,,,,,,,,,
-org.slf4j,55,,6,,,,,,,,,,,55,,,,,,,,,,,,,,,,,,,,,,,,,2,4
-org.springframework.beans,,,30,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,30
-org.springframework.boot.jdbc,1,,,,,,,,,1,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,
-org.springframework.cache,,,13,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,13
-org.springframework.context,,,3,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,3,
-org.springframework.data.repository,,,1,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,1
-org.springframework.http,14,,70,,,,,,,,,,,,,,14,,,,,,,,,,,,,,,,,,,,,,60,10
-org.springframework.jdbc.core,10,,,,,,,,,,,,,,,,,,,,,,,,,,10,,,,,,,,,,,,,
-org.springframework.jdbc.datasource,4,,,,,,,,,4,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,
-org.springframework.jdbc.object,9,,,,,,,,,,,,,,,,,,,,,,,,,,9,,,,,,,,,,,,,
-org.springframework.jndi,1,,,,,,,,,,,1,,,,,,,,,,,,,,,,,,,,,,,,,,,,
-org.springframework.ldap,47,,,,,,,,,,,33,14,,,,,,,,,,,,,,,,,,,,,,,,,,,
-org.springframework.security.web.savedrequest,,6,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,6,,
-org.springframework.ui,,,32,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,32
-org.springframework.util,,,139,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,87,52
-org.springframework.validation,,,13,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,13,
-org.springframework.web.client,13,3,,,,,,,,,,,,,,,13,,,,,,,,,,,,,,,,,,,,,3,,
-org.springframework.web.context.request,,8,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,8,,
-org.springframework.web.multipart,,12,13,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,12,13,
-org.springframework.web.reactive.function.client,2,,,,,,,,,,,,,,,,2,,,,,,,,,,,,,,,,,,,,,,,
-org.springframework.web.util,,,163,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,138,25
-org.thymeleaf,2,,2,,,,,,,,,,,,,,,,,,,,,,,,,2,,,,,,,,,,,2,
-org.xml.sax,,,1,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,1,
-org.xmlpull.v1,,3,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,3,,
-play.mvc,,4,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,4,,
-ratpack.core.form,,,3,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,3,
-ratpack.core.handling,,6,4,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,6,4,
-ratpack.core.http,,10,10,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,10,10,
-ratpack.exec,,,48,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,48
-ratpack.form,,,3,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,3,
-ratpack.func,,,35,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,35
-ratpack.handling,,6,4,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,6,4,
-ratpack.http,,10,10,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,10,10,
-ratpack.util,,,35,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,35
-retrofit2,1,,,,,,,,,,,,,,,,1,,,,,,,,,,,,,,,,,,,,,,,
+package,sink,source,summary,sink:bean-validation,sink:create-file,sink:fragment-injection,sink:groovy,sink:header-splitting,sink:information-leak,sink:intent-start,sink:jdbc-url,sink:jexl,sink:jndi-injection,sink:ldap,sink:logging,sink:mvel,sink:ognl-injection,sink:open-url,sink:pending-intent-sent,sink:regex-use,sink:regex-use[-1],sink:regex-use[0],sink:regex-use[],sink:regex-use[f-1],sink:regex-use[f1],sink:regex-use[f],sink:set-hostname-verifier,sink:sql,sink:ssti,sink:url-open-stream,sink:url-redirect,sink:write-file,sink:xpath,sink:xslt,sink:xss,source:android-external-storage-dir,source:android-widget,source:contentprovider,source:remote,summary:taint,summary:value
+android.app,35,,103,,,11,,,,7,,,,,,,,,17,,,,,,,,,,,,,,,,,,,,,18,85
+android.content,24,31,154,,,,,,,16,,,,,,,,,,,,,,,,,,8,,,,,,,,4,,27,,63,91
+android.database,59,,39,,,,,,,,,,,,,,,,,,,,,,,,,59,,,,,,,,,,,,39,
+android.net,,,60,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,45,15
+android.os,,2,122,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,2,,,,41,81
+android.support.v4.app,11,,,,,11,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,
+android.util,6,16,,,,,,,,,,,,,6,,,,,,,,,,,,,,,,,,,,,,,,16,,
+android.webkit,3,2,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,3,,,,2,,
+android.widget,,1,1,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,1,,,1,
+androidx.core.app,6,,95,,,,,,,,,,,,,,,,6,,,,,,,,,,,,,,,,,,,,,12,83
+androidx.fragment.app,11,,,,,11,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,
+androidx.slice,2,5,88,,,,,,,,,,,,,,,,2,,,,,,,,,,,,,,,,,,,5,,27,61
+cn.hutool.core.codec,,,1,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,1,
+com.esotericsoftware.kryo.io,,,1,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,1,
+com.esotericsoftware.kryo5.io,,,1,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,1,
+com.fasterxml.jackson.core,,,1,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,1,
+com.fasterxml.jackson.databind,,,6,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,6,
+com.google.common.base,4,,85,,,,,,,,,,,,,,,,,,,3,1,,,,,,,,,,,,,,,,,62,23
+com.google.common.cache,,,17,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,17
+com.google.common.collect,,,553,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,2,551
+com.google.common.flogger,29,,,,,,,,,,,,,,29,,,,,,,,,,,,,,,,,,,,,,,,,,
+com.google.common.io,6,,73,,,,,,,,,,,,,,,,,,,,,,,,,,,6,,,,,,,,,,72,1
+com.hubspot.jinjava,2,,,,,,,,,,,,,,,,,,,,,,,,,,,,2,,,,,,,,,,,,
+com.mitchellbosecke.pebble,2,,,,,,,,,,,,,,,,,,,,,,,,,,,,2,,,,,,,,,,,,
+com.opensymphony.xwork2.ognl,3,,,,,,,,,,,,,,,,3,,,,,,,,,,,,,,,,,,,,,,,,
+com.rabbitmq.client,,21,7,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,21,7,
+com.unboundid.ldap.sdk,17,,,,,,,,,,,,,17,,,,,,,,,,,,,,,,,,,,,,,,,,,
+com.zaxxer.hikari,2,,,,,,,,,,2,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,
+flexjson,,,1,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,1
+freemarker.cache,1,,,,,,,,,,,,,,,,,,,,,,,,,,,,1,,,,,,,,,,,,
+freemarker.template,7,,,,,,,,,,,,,,,,,,,,,,,,,,,,7,,,,,,,,,,,,
+groovy.lang,26,,,,,,26,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,
+groovy.util,5,,,,,,5,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,
+jakarta.faces.context,2,7,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,2,,,,7,,
+jakarta.json,,,123,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,100,23
+jakarta.ws.rs.client,1,,,,,,,,,,,,,,,,,1,,,,,,,,,,,,,,,,,,,,,,,
+jakarta.ws.rs.container,,9,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,9,,
+jakarta.ws.rs.core,2,,149,,,,,,,,,,,,,,,,,,,,,,,,,,,,2,,,,,,,,,94,55
+java.beans,,,1,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,1,
+java.io,37,,40,,15,,,,,,,,,,,,,,,,,,,,,,,,,,,22,,,,,,,,40,
+java.lang,13,,66,,,,,,,,,,,,8,,,,,,4,,,1,,,,,,,,,,,,,,,,54,12
+java.net,10,3,7,,,,,,,,,,,,,,,10,,,,,,,,,,,,,,,,,,,,,3,7,
+java.nio,15,,16,,13,,,,,,,,,,,,,,,,,,,,,,,,,,,2,,,,,,,,16,
+java.sql,11,,,,,,,,,,4,,,,,,,,,,,,,,,,,7,,,,,,,,,,,,,
+java.util,44,,461,,,,,,,,,,,,34,,,,,,,5,2,,1,2,,,,,,,,,,,,,,36,425
+javax.faces.context,2,7,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,2,,,,7,,
+javax.jms,,9,57,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,9,57,
+javax.json,,,123,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,100,23
+javax.management.remote,2,,,,,,,,,,,,2,,,,,,,,,,,,,,,,,,,,,,,,,,,,
+javax.naming,7,,,,,,,,,,,,6,1,,,,,,,,,,,,,,,,,,,,,,,,,,,
+javax.net.ssl,2,,,,,,,,,,,,,,,,,,,,,,,,,,2,,,,,,,,,,,,,,
+javax.script,1,,,,,,,,,,,,,,,1,,,,,,,,,,,,,,,,,,,,,,,,,
+javax.servlet,4,21,2,,,,,3,1,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,21,2,
+javax.validation,1,1,,1,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,1,,
+javax.ws.rs.client,1,,,,,,,,,,,,,,,,,1,,,,,,,,,,,,,,,,,,,,,,,
+javax.ws.rs.container,,9,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,9,,
+javax.ws.rs.core,3,,149,,,,,1,,,,,,,,,,,,,,,,,,,,,,,2,,,,,,,,,94,55
+javax.xml.transform,1,,6,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,1,,,,,,6,
+javax.xml.xpath,3,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,3,,,,,,,,
+jodd.json,,,10,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,10
+kotlin,12,,1835,,10,,,,,,,,,,,,,2,,,,,,,,,,,,,,,,,,,,,,1828,7
+net.sf.saxon.s9api,5,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,5,,,,,,,
+ognl,6,,,,,,,,,,,,,,,,6,,,,,,,,,,,,,,,,,,,,,,,,
+okhttp3,2,,47,,,,,,,,,,,,,,,2,,,,,,,,,,,,,,,,,,,,,,22,25
+org.apache.commons.codec,,,6,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,6,
+org.apache.commons.collections,,,800,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,17,783
+org.apache.commons.collections4,,,800,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,17,783
+org.apache.commons.io,106,,560,,91,,,,,,,,,,,,,15,,,,,,,,,,,,,,,,,,,,,,546,14
+org.apache.commons.jexl2,15,,,,,,,,,,,15,,,,,,,,,,,,,,,,,,,,,,,,,,,,,
+org.apache.commons.jexl3,15,,,,,,,,,,,15,,,,,,,,,,,,,,,,,,,,,,,,,,,,,
+org.apache.commons.lang3,6,,424,,,,,,,,,,,,,,,,,6,,,,,,,,,,,,,,,,,,,,293,131
+org.apache.commons.logging,6,,,,,,,,,,,,,,6,,,,,,,,,,,,,,,,,,,,,,,,,,
+org.apache.commons.ognl,6,,,,,,,,,,,,,,,,6,,,,,,,,,,,,,,,,,,,,,,,,
+org.apache.commons.text,,,272,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,220,52
+org.apache.directory.ldap.client.api,1,,,,,,,,,,,,,1,,,,,,,,,,,,,,,,,,,,,,,,,,,
+org.apache.hc.core5.function,,,1,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,1,
+org.apache.hc.core5.http,1,2,39,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,1,,,,2,39,
+org.apache.hc.core5.net,,,2,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,2,
+org.apache.hc.core5.util,,,24,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,18,6
+org.apache.http,27,3,70,,,,,,,,,,,,,,,25,,,,,,,,,,,,,,,,,2,,,,3,62,8
+org.apache.ibatis.jdbc,6,,57,,,,,,,,,,,,,,,,,,,,,,,,,6,,,,,,,,,,,,57,
+org.apache.log4j,11,,,,,,,,,,,,,,11,,,,,,,,,,,,,,,,,,,,,,,,,,
+org.apache.logging.log4j,359,,8,,,,,,,,,,,,359,,,,,,,,,,,,,,,,,,,,,,,,,4,4
+org.apache.shiro.codec,,,1,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,1,
+org.apache.shiro.jndi,1,,,,,,,,,,,,1,,,,,,,,,,,,,,,,,,,,,,,,,,,,
+org.apache.velocity.app,4,,,,,,,,,,,,,,,,,,,,,,,,,,,,4,,,,,,,,,,,,
+org.apache.velocity.runtime,4,,,,,,,,,,,,,,,,,,,,,,,,,,,,4,,,,,,,,,,,,
+org.codehaus.groovy.control,1,,,,,,1,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,
+org.dom4j,20,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,20,,,,,,,,
+org.hibernate,7,,,,,,,,,,,,,,,,,,,,,,,,,,,7,,,,,,,,,,,,,
+org.jboss.logging,324,,,,,,,,,,,,,,324,,,,,,,,,,,,,,,,,,,,,,,,,,
+org.jdbi.v3.core,6,,,,,,,,,,6,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,
+org.jooq,1,,,,,,,,,,,,,,,,,,,,,,,,,,,1,,,,,,,,,,,,,
+org.json,,,236,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,198,38
+org.mvel2,16,,,,,,,,,,,,,,,16,,,,,,,,,,,,,,,,,,,,,,,,,
+org.scijava.log,13,,,,,,,,,,,,,,13,,,,,,,,,,,,,,,,,,,,,,,,,,
+org.slf4j,55,,6,,,,,,,,,,,,55,,,,,,,,,,,,,,,,,,,,,,,,,2,4
+org.springframework.beans,,,30,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,30
+org.springframework.boot.jdbc,1,,,,,,,,,,1,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,
+org.springframework.cache,,,13,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,13
+org.springframework.context,,,3,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,3,
+org.springframework.data.repository,,,1,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,1
+org.springframework.http,14,,70,,,,,,,,,,,,,,,14,,,,,,,,,,,,,,,,,,,,,,60,10
+org.springframework.jdbc.core,10,,,,,,,,,,,,,,,,,,,,,,,,,,,10,,,,,,,,,,,,,
+org.springframework.jdbc.datasource,4,,,,,,,,,,4,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,
+org.springframework.jdbc.object,9,,,,,,,,,,,,,,,,,,,,,,,,,,,9,,,,,,,,,,,,,
+org.springframework.jndi,1,,,,,,,,,,,,1,,,,,,,,,,,,,,,,,,,,,,,,,,,,
+org.springframework.ldap,47,,,,,,,,,,,,33,14,,,,,,,,,,,,,,,,,,,,,,,,,,,
+org.springframework.security.web.savedrequest,,6,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,6,,
+org.springframework.ui,,,32,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,32
+org.springframework.util,,,139,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,87,52
+org.springframework.validation,,,13,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,13,
+org.springframework.web.client,13,3,,,,,,,,,,,,,,,,13,,,,,,,,,,,,,,,,,,,,,3,,
+org.springframework.web.context.request,,8,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,8,,
+org.springframework.web.multipart,,12,13,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,12,13,
+org.springframework.web.reactive.function.client,2,,,,,,,,,,,,,,,,,2,,,,,,,,,,,,,,,,,,,,,,,
+org.springframework.web.util,,,163,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,138,25
+org.thymeleaf,2,,2,,,,,,,,,,,,,,,,,,,,,,,,,,2,,,,,,,,,,,2,
+org.xml.sax,,,1,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,1,
+org.xmlpull.v1,,3,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,3,,
+play.mvc,,4,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,4,,
+ratpack.core.form,,,3,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,3,
+ratpack.core.handling,,6,4,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,6,4,
+ratpack.core.http,,10,10,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,10,10,
+ratpack.exec,,,48,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,48
+ratpack.form,,,3,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,3,
+ratpack.func,,,35,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,35
+ratpack.handling,,6,4,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,6,4,
+ratpack.http,,10,10,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,10,10,
+ratpack.util,,,35,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,35
+retrofit2,1,,,,,,,,,,,,,,,,,1,,,,,,,,,,,,,,,,,,,,,,,
diff --git a/java/documentation/library-coverage/coverage.rst b/java/documentation/library-coverage/coverage.rst
index 703932814c1..c5258aa5d3e 100644
--- a/java/documentation/library-coverage/coverage.rst
+++ b/java/documentation/library-coverage/coverage.rst
@@ -7,10 +7,10 @@ Java framework & library support
    :widths: auto
 
    Framework / library,Package,Flow sources,Taint & value steps,Sinks (total),`CWE‑022` :sub:`Path injection`,`CWE‑036` :sub:`Path traversal`,`CWE‑079` :sub:`Cross-site scripting`,`CWE‑089` :sub:`SQL injection`,`CWE‑090` :sub:`LDAP injection`,`CWE‑094` :sub:`Code injection`,`CWE‑319` :sub:`Cleartext transmission`
-   Android,``android.*``,52,479,116,,,3,67,,,
-   Android extensions,``androidx.*``,5,183,8,,,,,,,
+   Android,``android.*``,52,479,138,,,3,67,,,
+   Android extensions,``androidx.*``,5,183,19,,,,,,,
    `Apache Commons Collections <https://commons.apache.org/proper/commons-collections/>`_,"``org.apache.commons.collections``, ``org.apache.commons.collections4``",,1600,,,,,,,,
-   `Apache Commons IO <https://commons.apache.org/proper/commons-io/>`_,``org.apache.commons.io``,,556,106,91,,,,,,15
+   `Apache Commons IO <https://commons.apache.org/proper/commons-io/>`_,``org.apache.commons.io``,,560,106,91,,,,,,15
    `Apache Commons Lang <https://commons.apache.org/proper/commons-lang/>`_,``org.apache.commons.lang3``,,424,6,,,,,,,
    `Apache Commons Text <https://commons.apache.org/proper/commons-text/>`_,``org.apache.commons.text``,,272,,,,,,,,
    `Apache HttpComponents <https://hc.apache.org/>`_,"``org.apache.hc.core5.*``, ``org.apache.http``",5,136,28,,,3,,,,25
@@ -23,5 +23,5 @@ Java framework & library support
    Kotlin Standard Library,``kotlin*``,,1835,12,10,,,,,,2
    `Spring <https://spring.io/>`_,``org.springframework.*``,29,477,101,,,,19,14,,29
    Others,"``cn.hutool.core.codec``, ``com.esotericsoftware.kryo.io``, ``com.esotericsoftware.kryo5.io``, ``com.fasterxml.jackson.core``, ``com.fasterxml.jackson.databind``, ``com.hubspot.jinjava``, ``com.mitchellbosecke.pebble``, ``com.opensymphony.xwork2.ognl``, ``com.rabbitmq.client``, ``com.unboundid.ldap.sdk``, ``com.zaxxer.hikari``, ``flexjson``, ``freemarker.cache``, ``freemarker.template``, ``groovy.lang``, ``groovy.util``, ``jodd.json``, ``net.sf.saxon.s9api``, ``ognl``, ``okhttp3``, ``org.apache.commons.codec``, ``org.apache.commons.jexl2``, ``org.apache.commons.jexl3``, ``org.apache.commons.logging``, ``org.apache.commons.ognl``, ``org.apache.directory.ldap.client.api``, ``org.apache.ibatis.jdbc``, ``org.apache.log4j``, ``org.apache.shiro.codec``, ``org.apache.shiro.jndi``, ``org.apache.velocity.app``, ``org.apache.velocity.runtime``, ``org.codehaus.groovy.control``, ``org.dom4j``, ``org.hibernate``, ``org.jdbi.v3.core``, ``org.jooq``, ``org.mvel2``, ``org.scijava.log``, ``org.slf4j``, ``org.thymeleaf``, ``org.xml.sax``, ``org.xmlpull.v1``, ``play.mvc``, ``ratpack.core.form``, ``ratpack.core.handling``, ``ratpack.core.http``, ``ratpack.exec``, ``ratpack.form``, ``ratpack.func``, ``ratpack.handling``, ``ratpack.http``, ``ratpack.util``, ``retrofit2``",60,300,269,,,,14,18,,3
-   Totals,,217,8434,1530,129,6,10,107,33,1,86
+   Totals,,217,8438,1563,129,6,10,107,33,1,86
 

From d20d1e5e75c804ac6d9f70b333290d9686f97e0e Mon Sep 17 00:00:00 2001
From: Harry Maclean <hmac@github.com>
Date: Thu, 24 Nov 2022 19:15:08 +1300
Subject: [PATCH 0846/1420] Ruby: Add change note

---
 ruby/ql/lib/change-notes/2022-11-24-json-taint-flow.md | 4 ++++
 1 file changed, 4 insertions(+)
 create mode 100644 ruby/ql/lib/change-notes/2022-11-24-json-taint-flow.md

diff --git a/ruby/ql/lib/change-notes/2022-11-24-json-taint-flow.md b/ruby/ql/lib/change-notes/2022-11-24-json-taint-flow.md
new file mode 100644
index 00000000000..c816037ccb9
--- /dev/null
+++ b/ruby/ql/lib/change-notes/2022-11-24-json-taint-flow.md
@@ -0,0 +1,4 @@
+---
+ category: minorAnalysis
+---
+ * Taint flow is now tracked through many common JSON parsing and generation methods.
\ No newline at end of file

From 67257671ea83291756754b8b746b7496041dfe9d Mon Sep 17 00:00:00 2001
From: Harry Maclean <hmac@github.com>
Date: Fri, 25 Nov 2022 08:54:10 +1300
Subject: [PATCH 0847/1420] Ruby: Remove redundant dataflow test

---
 .../test/library-tests/frameworks/json/JsonDataFlow.expected | 1 -
 ruby/ql/test/library-tests/frameworks/json/JsonDataFlow.ql   | 5 -----
 2 files changed, 6 deletions(-)

diff --git a/ruby/ql/test/library-tests/frameworks/json/JsonDataFlow.expected b/ruby/ql/test/library-tests/frameworks/json/JsonDataFlow.expected
index 689a8d22702..79325635fb0 100644
--- a/ruby/ql/test/library-tests/frameworks/json/JsonDataFlow.expected
+++ b/ruby/ql/test/library-tests/frameworks/json/JsonDataFlow.expected
@@ -29,4 +29,3 @@ nodes
 | json.rb:10:6:10:34 | call to fast_unparse | semmle.label | call to fast_unparse |
 | json.rb:10:24:10:33 | call to source :  | semmle.label | call to source :  |
 subpaths
-#select
diff --git a/ruby/ql/test/library-tests/frameworks/json/JsonDataFlow.ql b/ruby/ql/test/library-tests/frameworks/json/JsonDataFlow.ql
index 8a14d5f686e..11a25d33e71 100644
--- a/ruby/ql/test/library-tests/frameworks/json/JsonDataFlow.ql
+++ b/ruby/ql/test/library-tests/frameworks/json/JsonDataFlow.ql
@@ -2,11 +2,6 @@
  * @kind path-problem
  */
 
-import codeql.ruby.AST
 import TestUtilities.InlineFlowTest
 import codeql.ruby.Frameworks
 import PathGraph
-
-from DataFlow::PathNode source, DataFlow::PathNode sink, DefaultValueFlowConf conf
-where conf.hasFlowPath(source, sink)
-select sink, source, sink, "$@", source, source.toString()

From 14a19d23a6323ef5db7a290898187a013e6b7efd Mon Sep 17 00:00:00 2001
From: Harry Maclean <hmac@github.com>
Date: Fri, 25 Nov 2022 08:54:46 +1300
Subject: [PATCH 0848/1420] Ruby: Fix typo in documentation

This import isn't needed.
---
 ruby/ql/test/TestUtilities/InlineFlowTest.qll | 1 -
 1 file changed, 1 deletion(-)

diff --git a/ruby/ql/test/TestUtilities/InlineFlowTest.qll b/ruby/ql/test/TestUtilities/InlineFlowTest.qll
index 462ae240865..dbac70ede0a 100644
--- a/ruby/ql/test/TestUtilities/InlineFlowTest.qll
+++ b/ruby/ql/test/TestUtilities/InlineFlowTest.qll
@@ -3,7 +3,6 @@
  *
  * Example for a test.ql:
  * ```ql
- *  *import codeql.ruby.AST
  * import TestUtilities.InlineFlowTest
  * import PathGraph
  *

From dab797008733cfc59c32e6260a66e687519dd52d Mon Sep 17 00:00:00 2001
From: Harry Maclean <hmac@github.com>
Date: Fri, 25 Nov 2022 09:02:44 +1300
Subject: [PATCH 0849/1420] Ruby: Model JSON.pretty_generate

---
 ruby/ql/lib/codeql/ruby/frameworks/Json.qll   |  2 +-
 .../frameworks/json/JsonDataFlow.expected     | 21 +++++++++++--------
 .../library-tests/frameworks/json/json.rb     |  1 +
 3 files changed, 14 insertions(+), 10 deletions(-)

diff --git a/ruby/ql/lib/codeql/ruby/frameworks/Json.qll b/ruby/ql/lib/codeql/ruby/frameworks/Json.qll
index 3024fea57a1..dacb9bf48b7 100644
--- a/ruby/ql/lib/codeql/ruby/frameworks/Json.qll
+++ b/ruby/ql/lib/codeql/ruby/frameworks/Json.qll
@@ -15,7 +15,7 @@ module Json {
       row =
         [
           "json;;Member[JSON].Method[parse,parse!,load,restore];Argument[0];ReturnValue;taint",
-          "json;;Member[JSON].Method[generate,fast_generate,dump,unparse,fast_unparse];Argument[0];ReturnValue;taint",
+          "json;;Member[JSON].Method[generate,fast_generate,pretty_generate,dump,unparse,fast_unparse];Argument[0];ReturnValue;taint",
         ]
     }
   }
diff --git a/ruby/ql/test/library-tests/frameworks/json/JsonDataFlow.expected b/ruby/ql/test/library-tests/frameworks/json/JsonDataFlow.expected
index 79325635fb0..d7173f8b110 100644
--- a/ruby/ql/test/library-tests/frameworks/json/JsonDataFlow.expected
+++ b/ruby/ql/test/library-tests/frameworks/json/JsonDataFlow.expected
@@ -6,9 +6,10 @@ edges
 | json.rb:4:19:4:28 | call to source :  | json.rb:4:6:4:29 | call to restore |
 | json.rb:6:20:6:29 | call to source :  | json.rb:6:6:6:30 | call to generate |
 | json.rb:7:25:7:34 | call to source :  | json.rb:7:6:7:35 | call to fast_generate |
-| json.rb:8:16:8:25 | call to source :  | json.rb:8:6:8:26 | call to dump |
-| json.rb:9:19:9:28 | call to source :  | json.rb:9:6:9:29 | call to unparse |
-| json.rb:10:24:10:33 | call to source :  | json.rb:10:6:10:34 | call to fast_unparse |
+| json.rb:8:27:8:36 | call to source :  | json.rb:8:6:8:37 | call to pretty_generate |
+| json.rb:9:16:9:25 | call to source :  | json.rb:9:6:9:26 | call to dump |
+| json.rb:10:19:10:28 | call to source :  | json.rb:10:6:10:29 | call to unparse |
+| json.rb:11:24:11:33 | call to source :  | json.rb:11:6:11:34 | call to fast_unparse |
 nodes
 | json.rb:1:6:1:27 | call to parse | semmle.label | call to parse |
 | json.rb:1:17:1:26 | call to source :  | semmle.label | call to source :  |
@@ -22,10 +23,12 @@ nodes
 | json.rb:6:20:6:29 | call to source :  | semmle.label | call to source :  |
 | json.rb:7:6:7:35 | call to fast_generate | semmle.label | call to fast_generate |
 | json.rb:7:25:7:34 | call to source :  | semmle.label | call to source :  |
-| json.rb:8:6:8:26 | call to dump | semmle.label | call to dump |
-| json.rb:8:16:8:25 | call to source :  | semmle.label | call to source :  |
-| json.rb:9:6:9:29 | call to unparse | semmle.label | call to unparse |
-| json.rb:9:19:9:28 | call to source :  | semmle.label | call to source :  |
-| json.rb:10:6:10:34 | call to fast_unparse | semmle.label | call to fast_unparse |
-| json.rb:10:24:10:33 | call to source :  | semmle.label | call to source :  |
+| json.rb:8:6:8:37 | call to pretty_generate | semmle.label | call to pretty_generate |
+| json.rb:8:27:8:36 | call to source :  | semmle.label | call to source :  |
+| json.rb:9:6:9:26 | call to dump | semmle.label | call to dump |
+| json.rb:9:16:9:25 | call to source :  | semmle.label | call to source :  |
+| json.rb:10:6:10:29 | call to unparse | semmle.label | call to unparse |
+| json.rb:10:19:10:28 | call to source :  | semmle.label | call to source :  |
+| json.rb:11:6:11:34 | call to fast_unparse | semmle.label | call to fast_unparse |
+| json.rb:11:24:11:33 | call to source :  | semmle.label | call to source :  |
 subpaths
diff --git a/ruby/ql/test/library-tests/frameworks/json/json.rb b/ruby/ql/test/library-tests/frameworks/json/json.rb
index ee549a76447..a48fe9bf5e0 100644
--- a/ruby/ql/test/library-tests/frameworks/json/json.rb
+++ b/ruby/ql/test/library-tests/frameworks/json/json.rb
@@ -5,6 +5,7 @@ sink JSON.restore(source "a") # $hasTaintFlow=a
 
 sink JSON.generate(source "a") # $hasTaintFlow=a
 sink JSON.fast_generate(source "a") # $hasTaintFlow=a
+sink JSON.pretty_generate(source "a") # $hasTaintFlow=a
 sink JSON.dump(source "a") # $hasTaintFlow=a
 sink JSON.unparse(source "a") # $hasTaintFlow=a
 sink JSON.fast_unparse(source "a") # $hasTaintFlow=a

From b885249d9d36b867bffabc280d104209fa471899 Mon Sep 17 00:00:00 2001
From: tiferet <tiferet@github.com>
Date: Tue, 29 Nov 2022 16:26:29 -0800
Subject: [PATCH 0850/1420] Add a boosted version of XssThroughDOM

---
 .../XssThroughDomATM.qll                      | 88 +++++++++++++++++++
 .../extraction/ExtractEndpointMapping.ql      |  3 +
 .../src/XssThroughDomATM.ql                   | 25 ++++++
 3 files changed, 116 insertions(+)
 create mode 100644 javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/XssThroughDomATM.qll
 create mode 100644 javascript/ql/experimental/adaptivethreatmodeling/src/XssThroughDomATM.ql

diff --git a/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/XssThroughDomATM.qll b/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/XssThroughDomATM.qll
new file mode 100644
index 00000000000..87d69a37165
--- /dev/null
+++ b/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/XssThroughDomATM.qll
@@ -0,0 +1,88 @@
+/**
+ * For internal use only.
+ *
+ * A taint-tracking configuration for reasoning about XSS through the DOM.
+ * Defines shared code used by the XSS Through DOM boosted query.
+ */
+
+private import semmle.javascript.heuristics.SyntacticHeuristics
+private import semmle.javascript.security.dataflow.DomBasedXssCustomizations
+private import semmle.javascript.dataflow.InferredTypes
+private import semmle.javascript.security.dataflow.XssThroughDomCustomizations::XssThroughDom as XssThroughDom
+private import semmle.javascript.security.dataflow.UnsafeJQueryPluginCustomizations::UnsafeJQueryPlugin as UnsafeJQuery
+import AdaptiveThreatModeling
+
+class XssThroughDomAtmConfig extends AtmConfig {
+  XssThroughDomAtmConfig() { this = "XssThroughDomAtmConfig" }
+
+  override predicate isKnownSource(DataFlow::Node source) {
+    source instanceof XssThroughDom::Source
+  }
+
+  override EndpointType getASinkEndpointType() { result instanceof XssSinkType }
+
+  override predicate isSanitizer(DataFlow::Node node) {
+    super.isSanitizer(node) or
+    node instanceof DomBasedXss::Sanitizer
+  }
+
+  override predicate isSanitizerGuard(TaintTracking::SanitizerGuardNode guard) {
+    guard instanceof TypeTestGuard or
+    guard instanceof UnsafeJQuery::PropertyPresenceSanitizer or
+    guard instanceof UnsafeJQuery::NumberGuard or
+    guard instanceof PrefixStringSanitizer or
+    guard instanceof QuoteGuard or
+    guard instanceof ContainsHtmlGuard
+  }
+
+  override predicate isSanitizerEdge(DataFlow::Node pred, DataFlow::Node succ) {
+    DomBasedXss::isOptionallySanitizedEdge(pred, succ)
+  }
+}
+
+/**
+ * A test of form `typeof x === "something"`, preventing `x` from being a string in some cases.
+ *
+ * This sanitizer helps prune infeasible paths in type-overloaded functions.
+ */
+class TypeTestGuard extends TaintTracking::SanitizerGuardNode, DataFlow::ValueNode {
+  override EqualityTest astNode;
+  Expr operand;
+  boolean polarity;
+
+  TypeTestGuard() {
+    exists(TypeofTag tag | TaintTracking::isTypeofGuard(astNode, operand, tag) |
+      // typeof x === "string" sanitizes `x` when it evaluates to false
+      tag = "string" and
+      polarity = astNode.getPolarity().booleanNot()
+      or
+      // typeof x === "object" sanitizes `x` when it evaluates to true
+      tag != "string" and
+      polarity = astNode.getPolarity()
+    )
+  }
+
+  override predicate sanitizes(boolean outcome, Expr e) {
+    polarity = outcome and
+    e = operand
+  }
+}
+
+private import semmle.javascript.security.dataflow.Xss::Shared as Shared
+
+private class PrefixStringSanitizer extends TaintTracking::SanitizerGuardNode,
+  DomBasedXss::PrefixStringSanitizer {
+  PrefixStringSanitizer() { this = this }
+}
+
+private class PrefixString extends DataFlow::FlowLabel, DomBasedXss::PrefixString {
+  PrefixString() { this = this }
+}
+
+private class QuoteGuard extends TaintTracking::SanitizerGuardNode, Shared::QuoteGuard {
+  QuoteGuard() { this = this }
+}
+
+private class ContainsHtmlGuard extends TaintTracking::SanitizerGuardNode, Shared::ContainsHtmlGuard {
+  ContainsHtmlGuard() { this = this }
+}
diff --git a/javascript/ql/experimental/adaptivethreatmodeling/modelbuilding/extraction/ExtractEndpointMapping.ql b/javascript/ql/experimental/adaptivethreatmodeling/modelbuilding/extraction/ExtractEndpointMapping.ql
index 697928d74b0..57c536eac12 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/modelbuilding/extraction/ExtractEndpointMapping.ql
+++ b/javascript/ql/experimental/adaptivethreatmodeling/modelbuilding/extraction/ExtractEndpointMapping.ql
@@ -8,6 +8,7 @@ import experimental.adaptivethreatmodeling.SqlInjectionATM as SqlInjectionAtm
 import experimental.adaptivethreatmodeling.NosqlInjectionATM as NosqlInjectionAtm
 import experimental.adaptivethreatmodeling.TaintedPathATM as TaintedPathAtm
 import experimental.adaptivethreatmodeling.XssATM as XssAtm
+import experimental.adaptivethreatmodeling.XssThroughDomATM as XssThroughDomAtm
 import experimental.adaptivethreatmodeling.AdaptiveThreatModeling
 
 from string queryName, AtmConfig c, EndpointType e
@@ -23,6 +24,8 @@ where
     c instanceof TaintedPathAtm::TaintedPathAtmConfig
     or
     queryName = "Xss" and c instanceof XssAtm::DomBasedXssAtmConfig
+    or
+    queryName = "XssThroughDom" and c instanceof XssThroughDomAtm::XssThroughDomAtmConfig
   ) and
   e = c.getASinkEndpointType()
 select queryName, e.getEncoding() as label
diff --git a/javascript/ql/experimental/adaptivethreatmodeling/src/XssThroughDomATM.ql b/javascript/ql/experimental/adaptivethreatmodeling/src/XssThroughDomATM.ql
new file mode 100644
index 00000000000..60df6941400
--- /dev/null
+++ b/javascript/ql/experimental/adaptivethreatmodeling/src/XssThroughDomATM.ql
@@ -0,0 +1,25 @@
+/**
+ * For internal use only.
+ *
+ * @name DOM text reinterpreted as HTML (experimental)
+ * @description Reinterpreting text from the DOM as HTML can lead
+ *              to a cross-site scripting vulnerability.
+ * @kind path-problem
+ * @scored
+ * @problem.severity error
+ * @security-severity 6.1
+ * @id js/ml-powered/xss-through-dom
+ * @tags experimental security
+ *       external/cwe/cwe-079 external/cwe/cwe-116
+ */
+
+import javascript
+import ATM::ResultsInfo
+import DataFlow::PathGraph
+import experimental.adaptivethreatmodeling.XssThroughDomATM
+
+from AtmConfig cfg, DataFlow::PathNode source, DataFlow::PathNode sink, float score
+where cfg.getAlerts(source, sink, score)
+select sink.getNode(), source, sink,
+  "(Experimental) $@ may be reinterpreted as HTML without escaping meta-characters. Identified using machine learning.",
+  source.getNode(), "DOM text", score

From 045e6ef148f23466aeaba6c013d7c07b9b9612e1 Mon Sep 17 00:00:00 2001
From: erik-krogh <erik-krogh@github.com>
Date: Wed, 30 Nov 2022 09:59:20 +0100
Subject: [PATCH 0851/1420] remove unused environment variable

---
 .github/workflows/compile-queries.yml | 2 --
 1 file changed, 2 deletions(-)

diff --git a/.github/workflows/compile-queries.yml b/.github/workflows/compile-queries.yml
index ee6d48c45ea..96d8e4cc30b 100644
--- a/.github/workflows/compile-queries.yml
+++ b/.github/workflows/compile-queries.yml
@@ -35,5 +35,3 @@ jobs:
         if : ${{ github.event_name != 'pull_request' }}
         shell: bash
         run: codeql query compile -j0 */ql/{src,examples} --keep-going --warnings=error --compilation-cache "${{ steps.query-cache.outputs.cache-dir }}"
-        env: 
-          COMBINED_CACHE_DIR: ${{ github.workspace }}/compilation-dir
\ No newline at end of file

From 71f5c8aa8805a7a8fe86a670b34189342c20dc33 Mon Sep 17 00:00:00 2001
From: Anders Schack-Mulligen <aschackmull@github.com>
Date: Wed, 30 Nov 2022 10:43:33 +0100
Subject: [PATCH 0852/1420] Shared: Add Util qlpack.

---
 .../2022-11-30-initial-version.md             |  4 ++
 shared/util/codeql/util/Boolean.qll           | 10 +++++
 shared/util/codeql/util/Option.qll            | 41 +++++++++++++++++++
 shared/util/codeql/util/Unit.qll              | 10 +++++
 shared/util/qlpack.yml                        |  5 +++
 5 files changed, 70 insertions(+)
 create mode 100644 shared/util/change-notes/2022-11-30-initial-version.md
 create mode 100644 shared/util/codeql/util/Boolean.qll
 create mode 100644 shared/util/codeql/util/Option.qll
 create mode 100644 shared/util/codeql/util/Unit.qll
 create mode 100644 shared/util/qlpack.yml

diff --git a/shared/util/change-notes/2022-11-30-initial-version.md b/shared/util/change-notes/2022-11-30-initial-version.md
new file mode 100644
index 00000000000..81893f23dfc
--- /dev/null
+++ b/shared/util/change-notes/2022-11-30-initial-version.md
@@ -0,0 +1,4 @@
+---
+category: minorAnalysis
+---
+* Initial release. Includes common utility classes and modules: Unit, Boolean, and Option.
diff --git a/shared/util/codeql/util/Boolean.qll b/shared/util/codeql/util/Boolean.qll
new file mode 100644
index 00000000000..84a91f763e4
--- /dev/null
+++ b/shared/util/codeql/util/Boolean.qll
@@ -0,0 +1,10 @@
+/** Provides the `Boolean` class. */
+
+/**
+ * A utility class that is equivalent to `boolean`.
+ *
+ * As opposed to `boolean`, this type does not require explicit binding.
+ */
+class Boolean extends boolean {
+  Boolean() { this = [true, false] }
+}
diff --git a/shared/util/codeql/util/Option.qll b/shared/util/codeql/util/Option.qll
new file mode 100644
index 00000000000..0114fe0a59b
--- /dev/null
+++ b/shared/util/codeql/util/Option.qll
@@ -0,0 +1,41 @@
+/** Provides a module for constructing optional versions of types. */
+
+/** A type with `toString`. */
+signature class TypeWithToString {
+  string toString();
+}
+
+/**
+ * Constructs an `Option` type that is a disjoint union of the given type and an
+ * additional singleton element.
+ */
+module Option<TypeWithToString T> {
+  private newtype TOption =
+    TNone() or
+    TSome(T c)
+
+  /**
+   * An option type. This is either a singleton `None` or a `Some` wrapping the
+   * given type.
+   */
+  class Option extends TOption {
+    /** Gets a textual representation of this element. */
+    string toString() {
+      this = TNone() and result = "(none)"
+      or
+      exists(T c | this = TSome(c) and result = c.toString())
+    }
+
+    /** Gets the wrapped element, if any. */
+    T asSome() { this = TSome(result) }
+  }
+
+  /** The singleton `None` element. */
+  class None extends Option, TNone { }
+
+  /** A wrapper for the given type. */
+  class Some extends Option, TSome { }
+
+  /** Gets the given element wrapped as an `Option`. */
+  Some some(T c) { result = TSome(c) }
+}
diff --git a/shared/util/codeql/util/Unit.qll b/shared/util/codeql/util/Unit.qll
new file mode 100644
index 00000000000..e9611ed3df4
--- /dev/null
+++ b/shared/util/codeql/util/Unit.qll
@@ -0,0 +1,10 @@
+/** Provides the `Unit` class. */
+
+/** The unit type. */
+private newtype TUnit = TMkUnit()
+
+/** The trivial type with a single element. */
+class Unit extends TUnit {
+  /** Gets a textual representation of this element. */
+  string toString() { result = "unit" }
+}
diff --git a/shared/util/qlpack.yml b/shared/util/qlpack.yml
new file mode 100644
index 00000000000..faee72042d6
--- /dev/null
+++ b/shared/util/qlpack.yml
@@ -0,0 +1,5 @@
+name: codeql/util
+version: 0.0.1-dev
+groups: shared
+library: true
+dependencies:

From d165c4963d4a074611fe498a7fe6fdb688e36e95 Mon Sep 17 00:00:00 2001
From: Paolo Tranquilli <redsun82@github.com>
Date: Wed, 30 Nov 2022 09:48:28 +0100
Subject: [PATCH 0853/1420] CI: add workaround for nested composite actions
 issue

Because of https://github.com/actions/runner/issues/2009 the deeply
nested action cache was failing to save the cache in the post run phase.

For the moment we just avoid the nesting with a copy-pasted action
snippet.
---
 .../cache-query-compilation/action.yml        | 30 ++++++++++--
 .github/actions/incremental-cache/action.yml  | 44 -----------------
 swift/actions/build-and-test/action.yml       | 49 ++++++++++++++-----
 3 files changed, 63 insertions(+), 60 deletions(-)
 delete mode 100644 .github/actions/incremental-cache/action.yml

diff --git a/.github/actions/cache-query-compilation/action.yml b/.github/actions/cache-query-compilation/action.yml
index b93e4f6c790..9ca35e01218 100644
--- a/.github/actions/cache-query-compilation/action.yml
+++ b/.github/actions/cache-query-compilation/action.yml
@@ -14,11 +14,35 @@ outputs:
 runs:
   using: composite
   steps:
-    - name: Cache the query compilation caches
-      uses: ./.github/actions/incremental-cache
+    # calculate the merge-base with main, in a way that works both on PRs and pushes to main.
+    - name: Calculate merge-base
+      shell: bash
+      if: ${{ github.event_name == 'pull_request' }}
+      env:
+        BASE_BRANCH: ${{ github.base_ref }}
+      run: |
+        MERGE_BASE=$(git cat-file commit $GITHUB_SHA | grep '^parent ' | head -1 | cut -f 2 -d " ")
+        echo "merge_base=$MERGE_BASE" >> $GITHUB_ENV
+    - name: Restore read-only cache (PR)
+      if: ${{ github.event_name == 'pull_request' }}
+      uses: erik-krogh/actions-cache@a88d0603fe5fb5606db9f002dfcadeb32b5f84c6
       with:
         path: '**/.cache'
-        key: codeql-compile-${{ inputs.key }}
+        read-only: true
+        key: ${{ inputs.key }}-pr-${{ github.sha }}
+        restore-keys: |
+          ${{ inputs.key }}-${{ github.base_ref }}-${{ env.merge_base }}
+          ${{ inputs.key }}-${{ github.base_ref }}-
+          ${{ inputs.key }}-main-
+    - name: Fill cache (push)
+      if: ${{ github.event_name != 'pull_request' }}
+      uses: erik-krogh/actions-cache@a88d0603fe5fb5606db9f002dfcadeb32b5f84c6
+      with:
+        path: '**/.cache'
+        key: ${{ inputs.key }}-${{ github.ref_name }}-${{ github.sha }} # just fill on main
+        restore-keys: | # restore the latest cache if the exact cache is unavailable, to speed up compilation.
+          ${{ inputs.key }}-${{ github.ref_name }}-
+          ${{ inputs.key }}-main-
     - name: Fill compilation cache directory
       id: fill-compilation-dir
       shell: bash
diff --git a/.github/actions/incremental-cache/action.yml b/.github/actions/incremental-cache/action.yml
deleted file mode 100644
index 2ea62719886..00000000000
--- a/.github/actions/incremental-cache/action.yml
+++ /dev/null
@@ -1,44 +0,0 @@
-name: Setup an incremental cache
-description: Special cache wrapper to be run on pull requests and pushes, that will try to restore
-  a cache as close as possible to the merge base
-
-inputs:
-  path:
-    description: 'The path to cache'
-    required: true
-  key:
-    description: 'The cache key to use - should be unique to the workflow'
-    required: true
-
-runs:
-  using: composite
-  steps:
-    # calculate the merge-base with main, in a way that works both on PRs and pushes to main.
-    - name: Calculate merge-base
-      shell: bash
-      if: ${{ github.event_name == 'pull_request' }}
-      env:
-        BASE_BRANCH: ${{ github.base_ref }}
-      run: |
-        MERGE_BASE=$(git cat-file commit $GITHUB_SHA | grep '^parent ' | head -1 | cut -f 2 -d " ")
-        echo "merge_base=$MERGE_BASE" >> $GITHUB_ENV
-    - name: Restore read-only cache (PR)
-      if: ${{ github.event_name == 'pull_request' }}
-      uses: erik-krogh/actions-cache@a88d0603fe5fb5606db9f002dfcadeb32b5f84c6
-      with:
-        path: ${{ inputs.path }}
-        read-only: true
-        key: ${{ inputs.key }}-pr-${{ github.sha }}
-        restore-keys: |
-          ${{ inputs.key }}-${{ github.base_ref }}-${{ env.merge_base }}
-          ${{ inputs.key }}-${{ github.base_ref }}-
-          ${{ inputs.key }}-main-
-    - name: Fill cache (push)
-      if: ${{ github.event_name != 'pull_request' }}
-      uses: erik-krogh/actions-cache@a88d0603fe5fb5606db9f002dfcadeb32b5f84c6
-      with:
-        path: ${{ inputs.path }}
-        key: ${{ inputs.key }}-${{ github.ref_name }}-${{ github.sha }} # just fill on main
-        restore-keys: | # restore the latest cache if the exact cache is unavailable, to speed up compilation.
-          ${{ inputs.key }}-${{ github.ref_name }}-
-          ${{ inputs.key }}-main-
diff --git a/swift/actions/build-and-test/action.yml b/swift/actions/build-and-test/action.yml
index 14f8107dc0f..386bd4d5a19 100644
--- a/swift/actions/build-and-test/action.yml
+++ b/swift/actions/build-and-test/action.yml
@@ -7,21 +7,43 @@ runs:
     - uses: actions/setup-python@v4
       with:
         python-version-file: 'swift/.python-version'
-    - name: Mount bazel cache
-      uses: ./.github/actions/incremental-cache
+    # FIXME: this is copy-pasted from .github/actions/cache-query-compilation, but we cannot factor it out to a common
+    # composite action because of https://github.com/actions/runner/issues/2009 (cache fails to save in the post action
+    # phase because its inputs were lost in the meantime)
+    # calculate the merge-base with main, in a way that works both on PRs and pushes to main.
+    - name: Calculate merge-base
+      shell: bash
+      if: ${{ github.event_name == 'pull_request' }}
+      env:
+        BASE_BRANCH: ${{ github.base_ref }}
+      run: |
+        MERGE_BASE=$(git cat-file commit $GITHUB_SHA | grep '^parent ' | head -1 | cut -f 2 -d " ")
+        echo "merge_base=$MERGE_BASE" >> $GITHUB_ENV
+    - name: Restore read-only cache (PR)
+      if: ${{ github.event_name == 'pull_request' }}
+      uses: erik-krogh/actions-cache@a88d0603fe5fb5606db9f002dfcadeb32b5f84c6
       with:
-        path: bazel-repository-cache
-        key: bazel-cache-${{ runner.os }}-${{ runner.arch }}
-    - name: Mount bazel disk cache
-      uses: ./.github/actions/incremental-cache
+        path: 'bazel-cache'
+        read-only: true
+        key: bazel-pr-${{ github.sha }}
+        restore-keys: |
+          bazel-${{ github.base_ref }}-${{ env.merge_base }}
+          bazel-${{ github.base_ref }}-
+          bazel-main-
+    - name: Fill cache (push)
+      if: ${{ github.event_name != 'pull_request' }}
+      uses: erik-krogh/actions-cache@a88d0603fe5fb5606db9f002dfcadeb32b5f84c6
       with:
-        path: bazel-disk-cache
-        key: bazel-disk-cache-${{ runner.os }}-${{ runner.arch }}
-    - name: Configure bazel cache
+        path: 'bazel-cache'
+        key: bazel-${{ github.ref_name }}-${{ github.sha }} # just fill on main
+        restore-keys: | # restore the latest cache if the exact cache is unavailable, to speed up compilation.
+          bazel-${{ github.ref_name }}-
+          bazel-main-
+    - name: Configure bazel
       shell: bash
       run: |
-        mkdir bazel-repository-cache bazel-disk-cache
-        echo build --repository_cache=bazel-repository-cache --disk_cache=bazel-disk-cache > local.bazelrc
+        mkdir -p bazel-cache/{repository,disk}
+        echo build --repository_cache=bazel-cache/repository --disk_cache=bazel-cache/disk > local.bazelrc
         echo test --test_output=errors >> local.bazelrc
     - name: Print unextracted entities
       shell: bash
@@ -51,5 +73,6 @@ runs:
       if: ${{ github.event_name != 'pull_request' }}
       shell: bash
       run: |
-        find bazel-repository-cache bazel-disk-cache -atime +0 -type f -delete
-        du -sh bazel-repository-cache bazel-disk-cache
+        du -sh bazel-cache/*
+        find bazel-cache -atime +0 -type f -delete
+        du -sh bazel-cache/*

From e12e86b52006354d1725a75cc5493a87b29d7545 Mon Sep 17 00:00:00 2001
From: Paolo Tranquilli <redsun82@github.com>
Date: Wed, 30 Nov 2022 10:45:22 +0100
Subject: [PATCH 0854/1420] Restore previous cache key

Co-authored-by: Erik Krogh Kristensen <erik-krogh@github.com>
---
 .github/actions/cache-query-compilation/action.yml | 14 +++++++-------
 1 file changed, 7 insertions(+), 7 deletions(-)

diff --git a/.github/actions/cache-query-compilation/action.yml b/.github/actions/cache-query-compilation/action.yml
index 9ca35e01218..95f25cbfc68 100644
--- a/.github/actions/cache-query-compilation/action.yml
+++ b/.github/actions/cache-query-compilation/action.yml
@@ -29,20 +29,20 @@ runs:
       with:
         path: '**/.cache'
         read-only: true
-        key: ${{ inputs.key }}-pr-${{ github.sha }}
+        key: codeql-compile-${{ inputs.key }}-pr-${{ github.sha }}
         restore-keys: |
-          ${{ inputs.key }}-${{ github.base_ref }}-${{ env.merge_base }}
-          ${{ inputs.key }}-${{ github.base_ref }}-
-          ${{ inputs.key }}-main-
+          codeql-compile-${{ inputs.key }}-${{ github.base_ref }}-${{ env.merge_base }}
+          codeql-compile-${{ inputs.key }}-${{ github.base_ref }}-
+          codeql-compile-${{ inputs.key }}-main-
     - name: Fill cache (push)
       if: ${{ github.event_name != 'pull_request' }}
       uses: erik-krogh/actions-cache@a88d0603fe5fb5606db9f002dfcadeb32b5f84c6
       with:
         path: '**/.cache'
-        key: ${{ inputs.key }}-${{ github.ref_name }}-${{ github.sha }} # just fill on main
+        key: codeql-compile-${{ inputs.key }}-${{ github.ref_name }}-${{ github.sha }} # just fill on main
         restore-keys: | # restore the latest cache if the exact cache is unavailable, to speed up compilation.
-          ${{ inputs.key }}-${{ github.ref_name }}-
-          ${{ inputs.key }}-main-
+          codeql-compile-${{ inputs.key }}-${{ github.ref_name }}-
+          codeql-compile-${{ inputs.key }}-main-
     - name: Fill compilation cache directory
       id: fill-compilation-dir
       shell: bash

From ba5656512564fd37586be350fd008ae1fd8c483d Mon Sep 17 00:00:00 2001
From: Anders Schack-Mulligen <aschackmull@users.noreply.github.com>
Date: Wed, 30 Nov 2022 10:55:07 +0100
Subject: [PATCH 0855/1420] Update shared/util/codeql/util/Option.qll

Co-authored-by: Erik Krogh Kristensen <erik-krogh@github.com>
---
 shared/util/codeql/util/Option.qll | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/shared/util/codeql/util/Option.qll b/shared/util/codeql/util/Option.qll
index 0114fe0a59b..f47d975d268 100644
--- a/shared/util/codeql/util/Option.qll
+++ b/shared/util/codeql/util/Option.qll
@@ -28,6 +28,9 @@ module Option<TypeWithToString T> {
 
     /** Gets the wrapped element, if any. */
     T asSome() { this = TSome(result) }
+    
+    /** Holds if this option is the singleton `None`. */
+    predicate isNone() { this = TNone() }
   }
 
   /** The singleton `None` element. */

From bfbe5bdfb83b0b4da950600b21371104a458b2a1 Mon Sep 17 00:00:00 2001
From: Tom Hvitved <hvitved@github.com>
Date: Wed, 30 Nov 2022 11:01:32 +0100
Subject: [PATCH 0856/1420] Ruby: Add data flow test that illustrates spurious
 flow

---
 .../call-sensitivity.expected                 | 263 ++++++++++--------
 .../call-sensitivity/call_sensitivity.rb      |  10 +-
 2 files changed, 150 insertions(+), 123 deletions(-)

diff --git a/ruby/ql/test/library-tests/dataflow/call-sensitivity/call-sensitivity.expected b/ruby/ql/test/library-tests/dataflow/call-sensitivity/call-sensitivity.expected
index cf039c11fe0..c3fd0fb8654 100644
--- a/ruby/ql/test/library-tests/dataflow/call-sensitivity/call-sensitivity.expected
+++ b/ruby/ql/test/library-tests/dataflow/call-sensitivity/call-sensitivity.expected
@@ -64,46 +64,54 @@ edges
 | call_sensitivity.rb:67:24:67:24 | x :  | call_sensitivity.rb:62:18:62:18 | y :  |
 | call_sensitivity.rb:70:30:70:30 | x :  | call_sensitivity.rb:71:10:71:10 | x |
 | call_sensitivity.rb:70:30:70:30 | x :  | call_sensitivity.rb:71:10:71:10 | x |
-| call_sensitivity.rb:74:30:74:30 | x :  | call_sensitivity.rb:75:23:75:23 | x :  |
-| call_sensitivity.rb:74:30:74:30 | x :  | call_sensitivity.rb:75:23:75:23 | x :  |
-| call_sensitivity.rb:74:30:74:30 | x :  | call_sensitivity.rb:75:23:75:23 | x :  |
-| call_sensitivity.rb:74:30:74:30 | x :  | call_sensitivity.rb:75:23:75:23 | x :  |
-| call_sensitivity.rb:75:23:75:23 | x :  | call_sensitivity.rb:70:30:70:30 | x :  |
-| call_sensitivity.rb:75:23:75:23 | x :  | call_sensitivity.rb:70:30:70:30 | x :  |
-| call_sensitivity.rb:75:23:75:23 | x :  | call_sensitivity.rb:70:30:70:30 | x :  |
-| call_sensitivity.rb:75:23:75:23 | x :  | call_sensitivity.rb:70:30:70:30 | x :  |
-| call_sensitivity.rb:78:35:78:35 | x :  | call_sensitivity.rb:79:28:79:28 | x :  |
-| call_sensitivity.rb:78:35:78:35 | x :  | call_sensitivity.rb:79:28:79:28 | x :  |
-| call_sensitivity.rb:79:28:79:28 | x :  | call_sensitivity.rb:74:30:74:30 | x :  |
-| call_sensitivity.rb:79:28:79:28 | x :  | call_sensitivity.rb:74:30:74:30 | x :  |
-| call_sensitivity.rb:82:33:82:33 | y :  | call_sensitivity.rb:83:25:83:25 | y :  |
-| call_sensitivity.rb:82:33:82:33 | y :  | call_sensitivity.rb:83:25:83:25 | y :  |
-| call_sensitivity.rb:82:33:82:33 | y :  | call_sensitivity.rb:83:25:83:25 | y :  |
-| call_sensitivity.rb:82:33:82:33 | y :  | call_sensitivity.rb:83:25:83:25 | y :  |
-| call_sensitivity.rb:83:25:83:25 | y :  | call_sensitivity.rb:70:30:70:30 | x :  |
-| call_sensitivity.rb:83:25:83:25 | y :  | call_sensitivity.rb:70:30:70:30 | x :  |
-| call_sensitivity.rb:83:25:83:25 | y :  | call_sensitivity.rb:70:30:70:30 | x :  |
-| call_sensitivity.rb:83:25:83:25 | y :  | call_sensitivity.rb:70:30:70:30 | x :  |
-| call_sensitivity.rb:86:35:86:35 | x :  | call_sensitivity.rb:87:34:87:34 | x :  |
-| call_sensitivity.rb:86:35:86:35 | x :  | call_sensitivity.rb:87:34:87:34 | x :  |
-| call_sensitivity.rb:87:34:87:34 | x :  | call_sensitivity.rb:82:33:82:33 | y :  |
-| call_sensitivity.rb:87:34:87:34 | x :  | call_sensitivity.rb:82:33:82:33 | y :  |
-| call_sensitivity.rb:92:11:92:18 | call to taint :  | call_sensitivity.rb:54:15:54:15 | x :  |
-| call_sensitivity.rb:92:11:92:18 | call to taint :  | call_sensitivity.rb:54:15:54:15 | x :  |
-| call_sensitivity.rb:93:16:93:23 | call to taint :  | call_sensitivity.rb:58:20:58:20 | x :  |
-| call_sensitivity.rb:93:16:93:23 | call to taint :  | call_sensitivity.rb:58:20:58:20 | x :  |
-| call_sensitivity.rb:94:14:94:22 | call to taint :  | call_sensitivity.rb:62:18:62:18 | y :  |
-| call_sensitivity.rb:94:14:94:22 | call to taint :  | call_sensitivity.rb:62:18:62:18 | y :  |
-| call_sensitivity.rb:95:16:95:24 | call to taint :  | call_sensitivity.rb:66:20:66:20 | x :  |
-| call_sensitivity.rb:95:16:95:24 | call to taint :  | call_sensitivity.rb:66:20:66:20 | x :  |
-| call_sensitivity.rb:97:21:97:28 | call to taint :  | call_sensitivity.rb:74:30:74:30 | x :  |
-| call_sensitivity.rb:97:21:97:28 | call to taint :  | call_sensitivity.rb:74:30:74:30 | x :  |
-| call_sensitivity.rb:98:26:98:33 | call to taint :  | call_sensitivity.rb:78:35:78:35 | x :  |
-| call_sensitivity.rb:98:26:98:33 | call to taint :  | call_sensitivity.rb:78:35:78:35 | x :  |
-| call_sensitivity.rb:99:24:99:32 | call to taint :  | call_sensitivity.rb:82:33:82:33 | y :  |
-| call_sensitivity.rb:99:24:99:32 | call to taint :  | call_sensitivity.rb:82:33:82:33 | y :  |
-| call_sensitivity.rb:100:26:100:33 | call to taint :  | call_sensitivity.rb:86:35:86:35 | x :  |
-| call_sensitivity.rb:100:26:100:33 | call to taint :  | call_sensitivity.rb:86:35:86:35 | x :  |
+| call_sensitivity.rb:74:18:74:18 | y :  | call_sensitivity.rb:76:17:76:17 | y :  |
+| call_sensitivity.rb:74:18:74:18 | y :  | call_sensitivity.rb:76:17:76:17 | y :  |
+| call_sensitivity.rb:76:17:76:17 | y :  | call_sensitivity.rb:50:15:50:15 | x :  |
+| call_sensitivity.rb:76:17:76:17 | y :  | call_sensitivity.rb:50:15:50:15 | x :  |
+| call_sensitivity.rb:80:30:80:30 | x :  | call_sensitivity.rb:81:23:81:23 | x :  |
+| call_sensitivity.rb:80:30:80:30 | x :  | call_sensitivity.rb:81:23:81:23 | x :  |
+| call_sensitivity.rb:80:30:80:30 | x :  | call_sensitivity.rb:81:23:81:23 | x :  |
+| call_sensitivity.rb:80:30:80:30 | x :  | call_sensitivity.rb:81:23:81:23 | x :  |
+| call_sensitivity.rb:81:23:81:23 | x :  | call_sensitivity.rb:70:30:70:30 | x :  |
+| call_sensitivity.rb:81:23:81:23 | x :  | call_sensitivity.rb:70:30:70:30 | x :  |
+| call_sensitivity.rb:81:23:81:23 | x :  | call_sensitivity.rb:70:30:70:30 | x :  |
+| call_sensitivity.rb:81:23:81:23 | x :  | call_sensitivity.rb:70:30:70:30 | x :  |
+| call_sensitivity.rb:84:35:84:35 | x :  | call_sensitivity.rb:85:28:85:28 | x :  |
+| call_sensitivity.rb:84:35:84:35 | x :  | call_sensitivity.rb:85:28:85:28 | x :  |
+| call_sensitivity.rb:85:28:85:28 | x :  | call_sensitivity.rb:80:30:80:30 | x :  |
+| call_sensitivity.rb:85:28:85:28 | x :  | call_sensitivity.rb:80:30:80:30 | x :  |
+| call_sensitivity.rb:88:33:88:33 | y :  | call_sensitivity.rb:89:25:89:25 | y :  |
+| call_sensitivity.rb:88:33:88:33 | y :  | call_sensitivity.rb:89:25:89:25 | y :  |
+| call_sensitivity.rb:88:33:88:33 | y :  | call_sensitivity.rb:89:25:89:25 | y :  |
+| call_sensitivity.rb:88:33:88:33 | y :  | call_sensitivity.rb:89:25:89:25 | y :  |
+| call_sensitivity.rb:89:25:89:25 | y :  | call_sensitivity.rb:70:30:70:30 | x :  |
+| call_sensitivity.rb:89:25:89:25 | y :  | call_sensitivity.rb:70:30:70:30 | x :  |
+| call_sensitivity.rb:89:25:89:25 | y :  | call_sensitivity.rb:70:30:70:30 | x :  |
+| call_sensitivity.rb:89:25:89:25 | y :  | call_sensitivity.rb:70:30:70:30 | x :  |
+| call_sensitivity.rb:92:35:92:35 | x :  | call_sensitivity.rb:93:34:93:34 | x :  |
+| call_sensitivity.rb:92:35:92:35 | x :  | call_sensitivity.rb:93:34:93:34 | x :  |
+| call_sensitivity.rb:93:34:93:34 | x :  | call_sensitivity.rb:88:33:88:33 | y :  |
+| call_sensitivity.rb:93:34:93:34 | x :  | call_sensitivity.rb:88:33:88:33 | y :  |
+| call_sensitivity.rb:98:11:98:18 | call to taint :  | call_sensitivity.rb:54:15:54:15 | x :  |
+| call_sensitivity.rb:98:11:98:18 | call to taint :  | call_sensitivity.rb:54:15:54:15 | x :  |
+| call_sensitivity.rb:99:16:99:23 | call to taint :  | call_sensitivity.rb:58:20:58:20 | x :  |
+| call_sensitivity.rb:99:16:99:23 | call to taint :  | call_sensitivity.rb:58:20:58:20 | x :  |
+| call_sensitivity.rb:100:14:100:22 | call to taint :  | call_sensitivity.rb:62:18:62:18 | y :  |
+| call_sensitivity.rb:100:14:100:22 | call to taint :  | call_sensitivity.rb:62:18:62:18 | y :  |
+| call_sensitivity.rb:101:16:101:24 | call to taint :  | call_sensitivity.rb:66:20:66:20 | x :  |
+| call_sensitivity.rb:101:16:101:24 | call to taint :  | call_sensitivity.rb:66:20:66:20 | x :  |
+| call_sensitivity.rb:102:14:102:22 | call to taint :  | call_sensitivity.rb:74:18:74:18 | y :  |
+| call_sensitivity.rb:102:14:102:22 | call to taint :  | call_sensitivity.rb:74:18:74:18 | y :  |
+| call_sensitivity.rb:104:21:104:28 | call to taint :  | call_sensitivity.rb:80:30:80:30 | x :  |
+| call_sensitivity.rb:104:21:104:28 | call to taint :  | call_sensitivity.rb:80:30:80:30 | x :  |
+| call_sensitivity.rb:105:26:105:33 | call to taint :  | call_sensitivity.rb:84:35:84:35 | x :  |
+| call_sensitivity.rb:105:26:105:33 | call to taint :  | call_sensitivity.rb:84:35:84:35 | x :  |
+| call_sensitivity.rb:106:24:106:32 | call to taint :  | call_sensitivity.rb:88:33:88:33 | y :  |
+| call_sensitivity.rb:106:24:106:32 | call to taint :  | call_sensitivity.rb:88:33:88:33 | y :  |
+| call_sensitivity.rb:107:26:107:33 | call to taint :  | call_sensitivity.rb:92:35:92:35 | x :  |
+| call_sensitivity.rb:107:26:107:33 | call to taint :  | call_sensitivity.rb:92:35:92:35 | x :  |
+| call_sensitivity.rb:140:14:140:22 | call to taint :  | call_sensitivity.rb:74:18:74:18 | y :  |
+| call_sensitivity.rb:140:14:140:22 | call to taint :  | call_sensitivity.rb:74:18:74:18 | y :  |
 nodes
 | call_sensitivity.rb:9:6:9:14 | ( ... ) | semmle.label | ( ... ) |
 | call_sensitivity.rb:9:6:9:14 | ( ... ) | semmle.label | ( ... ) |
@@ -183,46 +191,54 @@ nodes
 | call_sensitivity.rb:70:30:70:30 | x :  | semmle.label | x :  |
 | call_sensitivity.rb:71:10:71:10 | x | semmle.label | x |
 | call_sensitivity.rb:71:10:71:10 | x | semmle.label | x |
-| call_sensitivity.rb:74:30:74:30 | x :  | semmle.label | x :  |
-| call_sensitivity.rb:74:30:74:30 | x :  | semmle.label | x :  |
-| call_sensitivity.rb:74:30:74:30 | x :  | semmle.label | x :  |
-| call_sensitivity.rb:74:30:74:30 | x :  | semmle.label | x :  |
-| call_sensitivity.rb:75:23:75:23 | x :  | semmle.label | x :  |
-| call_sensitivity.rb:75:23:75:23 | x :  | semmle.label | x :  |
-| call_sensitivity.rb:75:23:75:23 | x :  | semmle.label | x :  |
-| call_sensitivity.rb:75:23:75:23 | x :  | semmle.label | x :  |
-| call_sensitivity.rb:78:35:78:35 | x :  | semmle.label | x :  |
-| call_sensitivity.rb:78:35:78:35 | x :  | semmle.label | x :  |
-| call_sensitivity.rb:79:28:79:28 | x :  | semmle.label | x :  |
-| call_sensitivity.rb:79:28:79:28 | x :  | semmle.label | x :  |
-| call_sensitivity.rb:82:33:82:33 | y :  | semmle.label | y :  |
-| call_sensitivity.rb:82:33:82:33 | y :  | semmle.label | y :  |
-| call_sensitivity.rb:82:33:82:33 | y :  | semmle.label | y :  |
-| call_sensitivity.rb:82:33:82:33 | y :  | semmle.label | y :  |
-| call_sensitivity.rb:83:25:83:25 | y :  | semmle.label | y :  |
-| call_sensitivity.rb:83:25:83:25 | y :  | semmle.label | y :  |
-| call_sensitivity.rb:83:25:83:25 | y :  | semmle.label | y :  |
-| call_sensitivity.rb:83:25:83:25 | y :  | semmle.label | y :  |
-| call_sensitivity.rb:86:35:86:35 | x :  | semmle.label | x :  |
-| call_sensitivity.rb:86:35:86:35 | x :  | semmle.label | x :  |
-| call_sensitivity.rb:87:34:87:34 | x :  | semmle.label | x :  |
-| call_sensitivity.rb:87:34:87:34 | x :  | semmle.label | x :  |
-| call_sensitivity.rb:92:11:92:18 | call to taint :  | semmle.label | call to taint :  |
-| call_sensitivity.rb:92:11:92:18 | call to taint :  | semmle.label | call to taint :  |
-| call_sensitivity.rb:93:16:93:23 | call to taint :  | semmle.label | call to taint :  |
-| call_sensitivity.rb:93:16:93:23 | call to taint :  | semmle.label | call to taint :  |
-| call_sensitivity.rb:94:14:94:22 | call to taint :  | semmle.label | call to taint :  |
-| call_sensitivity.rb:94:14:94:22 | call to taint :  | semmle.label | call to taint :  |
-| call_sensitivity.rb:95:16:95:24 | call to taint :  | semmle.label | call to taint :  |
-| call_sensitivity.rb:95:16:95:24 | call to taint :  | semmle.label | call to taint :  |
-| call_sensitivity.rb:97:21:97:28 | call to taint :  | semmle.label | call to taint :  |
-| call_sensitivity.rb:97:21:97:28 | call to taint :  | semmle.label | call to taint :  |
-| call_sensitivity.rb:98:26:98:33 | call to taint :  | semmle.label | call to taint :  |
-| call_sensitivity.rb:98:26:98:33 | call to taint :  | semmle.label | call to taint :  |
-| call_sensitivity.rb:99:24:99:32 | call to taint :  | semmle.label | call to taint :  |
-| call_sensitivity.rb:99:24:99:32 | call to taint :  | semmle.label | call to taint :  |
-| call_sensitivity.rb:100:26:100:33 | call to taint :  | semmle.label | call to taint :  |
-| call_sensitivity.rb:100:26:100:33 | call to taint :  | semmle.label | call to taint :  |
+| call_sensitivity.rb:74:18:74:18 | y :  | semmle.label | y :  |
+| call_sensitivity.rb:74:18:74:18 | y :  | semmle.label | y :  |
+| call_sensitivity.rb:76:17:76:17 | y :  | semmle.label | y :  |
+| call_sensitivity.rb:76:17:76:17 | y :  | semmle.label | y :  |
+| call_sensitivity.rb:80:30:80:30 | x :  | semmle.label | x :  |
+| call_sensitivity.rb:80:30:80:30 | x :  | semmle.label | x :  |
+| call_sensitivity.rb:80:30:80:30 | x :  | semmle.label | x :  |
+| call_sensitivity.rb:80:30:80:30 | x :  | semmle.label | x :  |
+| call_sensitivity.rb:81:23:81:23 | x :  | semmle.label | x :  |
+| call_sensitivity.rb:81:23:81:23 | x :  | semmle.label | x :  |
+| call_sensitivity.rb:81:23:81:23 | x :  | semmle.label | x :  |
+| call_sensitivity.rb:81:23:81:23 | x :  | semmle.label | x :  |
+| call_sensitivity.rb:84:35:84:35 | x :  | semmle.label | x :  |
+| call_sensitivity.rb:84:35:84:35 | x :  | semmle.label | x :  |
+| call_sensitivity.rb:85:28:85:28 | x :  | semmle.label | x :  |
+| call_sensitivity.rb:85:28:85:28 | x :  | semmle.label | x :  |
+| call_sensitivity.rb:88:33:88:33 | y :  | semmle.label | y :  |
+| call_sensitivity.rb:88:33:88:33 | y :  | semmle.label | y :  |
+| call_sensitivity.rb:88:33:88:33 | y :  | semmle.label | y :  |
+| call_sensitivity.rb:88:33:88:33 | y :  | semmle.label | y :  |
+| call_sensitivity.rb:89:25:89:25 | y :  | semmle.label | y :  |
+| call_sensitivity.rb:89:25:89:25 | y :  | semmle.label | y :  |
+| call_sensitivity.rb:89:25:89:25 | y :  | semmle.label | y :  |
+| call_sensitivity.rb:89:25:89:25 | y :  | semmle.label | y :  |
+| call_sensitivity.rb:92:35:92:35 | x :  | semmle.label | x :  |
+| call_sensitivity.rb:92:35:92:35 | x :  | semmle.label | x :  |
+| call_sensitivity.rb:93:34:93:34 | x :  | semmle.label | x :  |
+| call_sensitivity.rb:93:34:93:34 | x :  | semmle.label | x :  |
+| call_sensitivity.rb:98:11:98:18 | call to taint :  | semmle.label | call to taint :  |
+| call_sensitivity.rb:98:11:98:18 | call to taint :  | semmle.label | call to taint :  |
+| call_sensitivity.rb:99:16:99:23 | call to taint :  | semmle.label | call to taint :  |
+| call_sensitivity.rb:99:16:99:23 | call to taint :  | semmle.label | call to taint :  |
+| call_sensitivity.rb:100:14:100:22 | call to taint :  | semmle.label | call to taint :  |
+| call_sensitivity.rb:100:14:100:22 | call to taint :  | semmle.label | call to taint :  |
+| call_sensitivity.rb:101:16:101:24 | call to taint :  | semmle.label | call to taint :  |
+| call_sensitivity.rb:101:16:101:24 | call to taint :  | semmle.label | call to taint :  |
+| call_sensitivity.rb:102:14:102:22 | call to taint :  | semmle.label | call to taint :  |
+| call_sensitivity.rb:102:14:102:22 | call to taint :  | semmle.label | call to taint :  |
+| call_sensitivity.rb:104:21:104:28 | call to taint :  | semmle.label | call to taint :  |
+| call_sensitivity.rb:104:21:104:28 | call to taint :  | semmle.label | call to taint :  |
+| call_sensitivity.rb:105:26:105:33 | call to taint :  | semmle.label | call to taint :  |
+| call_sensitivity.rb:105:26:105:33 | call to taint :  | semmle.label | call to taint :  |
+| call_sensitivity.rb:106:24:106:32 | call to taint :  | semmle.label | call to taint :  |
+| call_sensitivity.rb:106:24:106:32 | call to taint :  | semmle.label | call to taint :  |
+| call_sensitivity.rb:107:26:107:33 | call to taint :  | semmle.label | call to taint :  |
+| call_sensitivity.rb:107:26:107:33 | call to taint :  | semmle.label | call to taint :  |
+| call_sensitivity.rb:140:14:140:22 | call to taint :  | semmle.label | call to taint :  |
+| call_sensitivity.rb:140:14:140:22 | call to taint :  | semmle.label | call to taint :  |
 subpaths
 #select
 | call_sensitivity.rb:9:6:9:14 | ( ... ) | call_sensitivity.rb:9:7:9:13 | call to taint :  | call_sensitivity.rb:9:6:9:14 | ( ... ) | $@ | call_sensitivity.rb:9:7:9:13 | call to taint :  | call to taint :  |
@@ -230,56 +246,59 @@ subpaths
 | call_sensitivity.rb:31:27:31:27 | x | call_sensitivity.rb:32:25:32:32 | call to taint :  | call_sensitivity.rb:31:27:31:27 | x | $@ | call_sensitivity.rb:32:25:32:32 | call to taint :  | call to taint :  |
 | call_sensitivity.rb:40:31:40:31 | x | call_sensitivity.rb:41:25:41:32 | call to taint :  | call_sensitivity.rb:40:31:40:31 | x | $@ | call_sensitivity.rb:41:25:41:32 | call to taint :  | call to taint :  |
 | call_sensitivity.rb:43:32:43:32 | x | call_sensitivity.rb:44:26:44:33 | call to taint :  | call_sensitivity.rb:43:32:43:32 | x | $@ | call_sensitivity.rb:44:26:44:33 | call to taint :  | call to taint :  |
-| call_sensitivity.rb:51:10:51:10 | x | call_sensitivity.rb:92:11:92:18 | call to taint :  | call_sensitivity.rb:51:10:51:10 | x | $@ | call_sensitivity.rb:92:11:92:18 | call to taint :  | call to taint :  |
-| call_sensitivity.rb:51:10:51:10 | x | call_sensitivity.rb:93:16:93:23 | call to taint :  | call_sensitivity.rb:51:10:51:10 | x | $@ | call_sensitivity.rb:93:16:93:23 | call to taint :  | call to taint :  |
-| call_sensitivity.rb:51:10:51:10 | x | call_sensitivity.rb:94:14:94:22 | call to taint :  | call_sensitivity.rb:51:10:51:10 | x | $@ | call_sensitivity.rb:94:14:94:22 | call to taint :  | call to taint :  |
-| call_sensitivity.rb:51:10:51:10 | x | call_sensitivity.rb:95:16:95:24 | call to taint :  | call_sensitivity.rb:51:10:51:10 | x | $@ | call_sensitivity.rb:95:16:95:24 | call to taint :  | call to taint :  |
-| call_sensitivity.rb:71:10:71:10 | x | call_sensitivity.rb:97:21:97:28 | call to taint :  | call_sensitivity.rb:71:10:71:10 | x | $@ | call_sensitivity.rb:97:21:97:28 | call to taint :  | call to taint :  |
-| call_sensitivity.rb:71:10:71:10 | x | call_sensitivity.rb:98:26:98:33 | call to taint :  | call_sensitivity.rb:71:10:71:10 | x | $@ | call_sensitivity.rb:98:26:98:33 | call to taint :  | call to taint :  |
-| call_sensitivity.rb:71:10:71:10 | x | call_sensitivity.rb:99:24:99:32 | call to taint :  | call_sensitivity.rb:71:10:71:10 | x | $@ | call_sensitivity.rb:99:24:99:32 | call to taint :  | call to taint :  |
-| call_sensitivity.rb:71:10:71:10 | x | call_sensitivity.rb:100:26:100:33 | call to taint :  | call_sensitivity.rb:71:10:71:10 | x | $@ | call_sensitivity.rb:100:26:100:33 | call to taint :  | call to taint :  |
+| call_sensitivity.rb:51:10:51:10 | x | call_sensitivity.rb:98:11:98:18 | call to taint :  | call_sensitivity.rb:51:10:51:10 | x | $@ | call_sensitivity.rb:98:11:98:18 | call to taint :  | call to taint :  |
+| call_sensitivity.rb:51:10:51:10 | x | call_sensitivity.rb:99:16:99:23 | call to taint :  | call_sensitivity.rb:51:10:51:10 | x | $@ | call_sensitivity.rb:99:16:99:23 | call to taint :  | call to taint :  |
+| call_sensitivity.rb:51:10:51:10 | x | call_sensitivity.rb:100:14:100:22 | call to taint :  | call_sensitivity.rb:51:10:51:10 | x | $@ | call_sensitivity.rb:100:14:100:22 | call to taint :  | call to taint :  |
+| call_sensitivity.rb:51:10:51:10 | x | call_sensitivity.rb:101:16:101:24 | call to taint :  | call_sensitivity.rb:51:10:51:10 | x | $@ | call_sensitivity.rb:101:16:101:24 | call to taint :  | call to taint :  |
+| call_sensitivity.rb:51:10:51:10 | x | call_sensitivity.rb:102:14:102:22 | call to taint :  | call_sensitivity.rb:51:10:51:10 | x | $@ | call_sensitivity.rb:102:14:102:22 | call to taint :  | call to taint :  |
+| call_sensitivity.rb:51:10:51:10 | x | call_sensitivity.rb:140:14:140:22 | call to taint :  | call_sensitivity.rb:51:10:51:10 | x | $@ | call_sensitivity.rb:140:14:140:22 | call to taint :  | call to taint :  |
+| call_sensitivity.rb:71:10:71:10 | x | call_sensitivity.rb:104:21:104:28 | call to taint :  | call_sensitivity.rb:71:10:71:10 | x | $@ | call_sensitivity.rb:104:21:104:28 | call to taint :  | call to taint :  |
+| call_sensitivity.rb:71:10:71:10 | x | call_sensitivity.rb:105:26:105:33 | call to taint :  | call_sensitivity.rb:71:10:71:10 | x | $@ | call_sensitivity.rb:105:26:105:33 | call to taint :  | call to taint :  |
+| call_sensitivity.rb:71:10:71:10 | x | call_sensitivity.rb:106:24:106:32 | call to taint :  | call_sensitivity.rb:71:10:71:10 | x | $@ | call_sensitivity.rb:106:24:106:32 | call to taint :  | call to taint :  |
+| call_sensitivity.rb:71:10:71:10 | x | call_sensitivity.rb:107:26:107:33 | call to taint :  | call_sensitivity.rb:71:10:71:10 | x | $@ | call_sensitivity.rb:107:26:107:33 | call to taint :  | call to taint :  |
 mayBenefitFromCallContext
 | call_sensitivity.rb:51:5:51:10 | call to sink | call_sensitivity.rb:50:3:52:5 | method1 |
 | call_sensitivity.rb:55:5:55:13 | call to method1 | call_sensitivity.rb:54:3:56:5 | method2 |
 | call_sensitivity.rb:59:5:59:18 | call to method2 | call_sensitivity.rb:58:3:60:5 | call_method2 |
 | call_sensitivity.rb:63:5:63:16 | call to method1 | call_sensitivity.rb:62:3:64:5 | method3 |
 | call_sensitivity.rb:67:5:67:25 | call to method3 | call_sensitivity.rb:66:3:68:5 | call_method3 |
-| call_sensitivity.rb:75:5:75:23 | call to singleton_method1 | call_sensitivity.rb:74:3:76:5 | singleton_method2 |
-| call_sensitivity.rb:79:5:79:28 | call to singleton_method2 | call_sensitivity.rb:78:3:80:5 | call_singleton_method2 |
-| call_sensitivity.rb:83:5:83:26 | call to singleton_method1 | call_sensitivity.rb:82:3:84:5 | singleton_method3 |
-| call_sensitivity.rb:87:5:87:35 | call to singleton_method3 | call_sensitivity.rb:86:3:88:5 | call_singleton_method3 |
-| call_sensitivity.rb:112:5:112:18 | call to method2 | call_sensitivity.rb:111:3:113:5 | call_method2 |
-| call_sensitivity.rb:116:5:116:25 | call to method3 | call_sensitivity.rb:115:3:117:5 | call_method3 |
-| call_sensitivity.rb:120:5:120:28 | call to singleton_method2 | call_sensitivity.rb:119:3:121:5 | call_singleton_method2 |
-| call_sensitivity.rb:124:5:124:35 | call to singleton_method3 | call_sensitivity.rb:123:3:125:5 | call_singleton_method3 |
+| call_sensitivity.rb:81:5:81:23 | call to singleton_method1 | call_sensitivity.rb:80:3:82:5 | singleton_method2 |
+| call_sensitivity.rb:85:5:85:28 | call to singleton_method2 | call_sensitivity.rb:84:3:86:5 | call_singleton_method2 |
+| call_sensitivity.rb:89:5:89:26 | call to singleton_method1 | call_sensitivity.rb:88:3:90:5 | singleton_method3 |
+| call_sensitivity.rb:93:5:93:35 | call to singleton_method3 | call_sensitivity.rb:92:3:94:5 | call_singleton_method3 |
+| call_sensitivity.rb:119:5:119:18 | call to method2 | call_sensitivity.rb:118:3:120:5 | call_method2 |
+| call_sensitivity.rb:123:5:123:25 | call to method3 | call_sensitivity.rb:122:3:124:5 | call_method3 |
+| call_sensitivity.rb:127:5:127:28 | call to singleton_method2 | call_sensitivity.rb:126:3:128:5 | call_singleton_method2 |
+| call_sensitivity.rb:131:5:131:35 | call to singleton_method3 | call_sensitivity.rb:130:3:132:5 | call_singleton_method3 |
 viableImplInCallContext
 | call_sensitivity.rb:51:5:51:10 | call to sink | call_sensitivity.rb:55:5:55:13 | call to method1 | call_sensitivity.rb:5:1:7:3 | sink |
 | call_sensitivity.rb:51:5:51:10 | call to sink | call_sensitivity.rb:63:5:63:16 | call to method1 | call_sensitivity.rb:5:1:7:3 | sink |
+| call_sensitivity.rb:51:5:51:10 | call to sink | call_sensitivity.rb:76:7:76:18 | call to method1 | call_sensitivity.rb:5:1:7:3 | sink |
 | call_sensitivity.rb:55:5:55:13 | call to method1 | call_sensitivity.rb:59:5:59:18 | call to method2 | call_sensitivity.rb:50:3:52:5 | method1 |
-| call_sensitivity.rb:55:5:55:13 | call to method1 | call_sensitivity.rb:59:5:59:18 | call to method2 | call_sensitivity.rb:103:3:105:5 | method1 |
-| call_sensitivity.rb:55:5:55:13 | call to method1 | call_sensitivity.rb:92:1:92:19 | call to method2 | call_sensitivity.rb:50:3:52:5 | method1 |
-| call_sensitivity.rb:55:5:55:13 | call to method1 | call_sensitivity.rb:112:5:112:18 | call to method2 | call_sensitivity.rb:103:3:105:5 | method1 |
-| call_sensitivity.rb:55:5:55:13 | call to method1 | call_sensitivity.rb:129:1:129:19 | call to method2 | call_sensitivity.rb:103:3:105:5 | method1 |
-| call_sensitivity.rb:59:5:59:18 | call to method2 | call_sensitivity.rb:93:1:93:24 | call to call_method2 | call_sensitivity.rb:54:3:56:5 | method2 |
+| call_sensitivity.rb:55:5:55:13 | call to method1 | call_sensitivity.rb:59:5:59:18 | call to method2 | call_sensitivity.rb:110:3:112:5 | method1 |
+| call_sensitivity.rb:55:5:55:13 | call to method1 | call_sensitivity.rb:98:1:98:19 | call to method2 | call_sensitivity.rb:50:3:52:5 | method1 |
+| call_sensitivity.rb:55:5:55:13 | call to method1 | call_sensitivity.rb:119:5:119:18 | call to method2 | call_sensitivity.rb:110:3:112:5 | method1 |
+| call_sensitivity.rb:55:5:55:13 | call to method1 | call_sensitivity.rb:136:1:136:19 | call to method2 | call_sensitivity.rb:110:3:112:5 | method1 |
+| call_sensitivity.rb:59:5:59:18 | call to method2 | call_sensitivity.rb:99:1:99:24 | call to call_method2 | call_sensitivity.rb:54:3:56:5 | method2 |
 | call_sensitivity.rb:63:5:63:16 | call to method1 | call_sensitivity.rb:67:5:67:25 | call to method3 | call_sensitivity.rb:50:3:52:5 | method1 |
-| call_sensitivity.rb:63:5:63:16 | call to method1 | call_sensitivity.rb:67:5:67:25 | call to method3 | call_sensitivity.rb:103:3:105:5 | method1 |
-| call_sensitivity.rb:63:5:63:16 | call to method1 | call_sensitivity.rb:94:1:94:23 | call to method3 | call_sensitivity.rb:50:3:52:5 | method1 |
-| call_sensitivity.rb:63:5:63:16 | call to method1 | call_sensitivity.rb:116:5:116:25 | call to method3 | call_sensitivity.rb:103:3:105:5 | method1 |
-| call_sensitivity.rb:63:5:63:16 | call to method1 | call_sensitivity.rb:131:1:131:23 | call to method3 | call_sensitivity.rb:103:3:105:5 | method1 |
-| call_sensitivity.rb:67:5:67:25 | call to method3 | call_sensitivity.rb:95:1:95:25 | call to call_method3 | call_sensitivity.rb:62:3:64:5 | method3 |
-| call_sensitivity.rb:75:5:75:23 | call to singleton_method1 | call_sensitivity.rb:79:5:79:28 | call to singleton_method2 | call_sensitivity.rb:70:3:72:5 | singleton_method1 |
-| call_sensitivity.rb:75:5:75:23 | call to singleton_method1 | call_sensitivity.rb:79:5:79:28 | call to singleton_method2 | call_sensitivity.rb:107:3:109:5 | singleton_method1 |
-| call_sensitivity.rb:75:5:75:23 | call to singleton_method1 | call_sensitivity.rb:97:1:97:29 | call to singleton_method2 | call_sensitivity.rb:70:3:72:5 | singleton_method1 |
-| call_sensitivity.rb:75:5:75:23 | call to singleton_method1 | call_sensitivity.rb:120:5:120:28 | call to singleton_method2 | call_sensitivity.rb:107:3:109:5 | singleton_method1 |
-| call_sensitivity.rb:75:5:75:23 | call to singleton_method1 | call_sensitivity.rb:134:1:134:29 | call to singleton_method2 | call_sensitivity.rb:107:3:109:5 | singleton_method1 |
-| call_sensitivity.rb:79:5:79:28 | call to singleton_method2 | call_sensitivity.rb:98:1:98:34 | call to call_singleton_method2 | call_sensitivity.rb:74:3:76:5 | singleton_method2 |
-| call_sensitivity.rb:83:5:83:26 | call to singleton_method1 | call_sensitivity.rb:87:5:87:35 | call to singleton_method3 | call_sensitivity.rb:70:3:72:5 | singleton_method1 |
-| call_sensitivity.rb:83:5:83:26 | call to singleton_method1 | call_sensitivity.rb:87:5:87:35 | call to singleton_method3 | call_sensitivity.rb:107:3:109:5 | singleton_method1 |
-| call_sensitivity.rb:83:5:83:26 | call to singleton_method1 | call_sensitivity.rb:99:1:99:33 | call to singleton_method3 | call_sensitivity.rb:70:3:72:5 | singleton_method1 |
-| call_sensitivity.rb:83:5:83:26 | call to singleton_method1 | call_sensitivity.rb:124:5:124:35 | call to singleton_method3 | call_sensitivity.rb:107:3:109:5 | singleton_method1 |
-| call_sensitivity.rb:83:5:83:26 | call to singleton_method1 | call_sensitivity.rb:136:1:136:33 | call to singleton_method3 | call_sensitivity.rb:107:3:109:5 | singleton_method1 |
-| call_sensitivity.rb:87:5:87:35 | call to singleton_method3 | call_sensitivity.rb:100:1:100:34 | call to call_singleton_method3 | call_sensitivity.rb:82:3:84:5 | singleton_method3 |
-| call_sensitivity.rb:112:5:112:18 | call to method2 | call_sensitivity.rb:130:1:130:24 | call to call_method2 | call_sensitivity.rb:54:3:56:5 | method2 |
-| call_sensitivity.rb:116:5:116:25 | call to method3 | call_sensitivity.rb:132:1:132:25 | call to call_method3 | call_sensitivity.rb:62:3:64:5 | method3 |
-| call_sensitivity.rb:120:5:120:28 | call to singleton_method2 | call_sensitivity.rb:135:1:135:34 | call to call_singleton_method2 | call_sensitivity.rb:74:3:76:5 | singleton_method2 |
-| call_sensitivity.rb:124:5:124:35 | call to singleton_method3 | call_sensitivity.rb:137:1:137:34 | call to call_singleton_method3 | call_sensitivity.rb:82:3:84:5 | singleton_method3 |
+| call_sensitivity.rb:63:5:63:16 | call to method1 | call_sensitivity.rb:67:5:67:25 | call to method3 | call_sensitivity.rb:110:3:112:5 | method1 |
+| call_sensitivity.rb:63:5:63:16 | call to method1 | call_sensitivity.rb:100:1:100:23 | call to method3 | call_sensitivity.rb:50:3:52:5 | method1 |
+| call_sensitivity.rb:63:5:63:16 | call to method1 | call_sensitivity.rb:123:5:123:25 | call to method3 | call_sensitivity.rb:110:3:112:5 | method1 |
+| call_sensitivity.rb:63:5:63:16 | call to method1 | call_sensitivity.rb:138:1:138:23 | call to method3 | call_sensitivity.rb:110:3:112:5 | method1 |
+| call_sensitivity.rb:67:5:67:25 | call to method3 | call_sensitivity.rb:101:1:101:25 | call to call_method3 | call_sensitivity.rb:62:3:64:5 | method3 |
+| call_sensitivity.rb:81:5:81:23 | call to singleton_method1 | call_sensitivity.rb:85:5:85:28 | call to singleton_method2 | call_sensitivity.rb:70:3:72:5 | singleton_method1 |
+| call_sensitivity.rb:81:5:81:23 | call to singleton_method1 | call_sensitivity.rb:85:5:85:28 | call to singleton_method2 | call_sensitivity.rb:114:3:116:5 | singleton_method1 |
+| call_sensitivity.rb:81:5:81:23 | call to singleton_method1 | call_sensitivity.rb:104:1:104:29 | call to singleton_method2 | call_sensitivity.rb:70:3:72:5 | singleton_method1 |
+| call_sensitivity.rb:81:5:81:23 | call to singleton_method1 | call_sensitivity.rb:127:5:127:28 | call to singleton_method2 | call_sensitivity.rb:114:3:116:5 | singleton_method1 |
+| call_sensitivity.rb:81:5:81:23 | call to singleton_method1 | call_sensitivity.rb:142:1:142:29 | call to singleton_method2 | call_sensitivity.rb:114:3:116:5 | singleton_method1 |
+| call_sensitivity.rb:85:5:85:28 | call to singleton_method2 | call_sensitivity.rb:105:1:105:34 | call to call_singleton_method2 | call_sensitivity.rb:80:3:82:5 | singleton_method2 |
+| call_sensitivity.rb:89:5:89:26 | call to singleton_method1 | call_sensitivity.rb:93:5:93:35 | call to singleton_method3 | call_sensitivity.rb:70:3:72:5 | singleton_method1 |
+| call_sensitivity.rb:89:5:89:26 | call to singleton_method1 | call_sensitivity.rb:93:5:93:35 | call to singleton_method3 | call_sensitivity.rb:114:3:116:5 | singleton_method1 |
+| call_sensitivity.rb:89:5:89:26 | call to singleton_method1 | call_sensitivity.rb:106:1:106:33 | call to singleton_method3 | call_sensitivity.rb:70:3:72:5 | singleton_method1 |
+| call_sensitivity.rb:89:5:89:26 | call to singleton_method1 | call_sensitivity.rb:131:5:131:35 | call to singleton_method3 | call_sensitivity.rb:114:3:116:5 | singleton_method1 |
+| call_sensitivity.rb:89:5:89:26 | call to singleton_method1 | call_sensitivity.rb:144:1:144:33 | call to singleton_method3 | call_sensitivity.rb:114:3:116:5 | singleton_method1 |
+| call_sensitivity.rb:93:5:93:35 | call to singleton_method3 | call_sensitivity.rb:107:1:107:34 | call to call_singleton_method3 | call_sensitivity.rb:88:3:90:5 | singleton_method3 |
+| call_sensitivity.rb:119:5:119:18 | call to method2 | call_sensitivity.rb:137:1:137:24 | call to call_method2 | call_sensitivity.rb:54:3:56:5 | method2 |
+| call_sensitivity.rb:123:5:123:25 | call to method3 | call_sensitivity.rb:139:1:139:25 | call to call_method3 | call_sensitivity.rb:62:3:64:5 | method3 |
+| call_sensitivity.rb:127:5:127:28 | call to singleton_method2 | call_sensitivity.rb:143:1:143:34 | call to call_singleton_method2 | call_sensitivity.rb:80:3:82:5 | singleton_method2 |
+| call_sensitivity.rb:131:5:131:35 | call to singleton_method3 | call_sensitivity.rb:145:1:145:34 | call to call_singleton_method3 | call_sensitivity.rb:88:3:90:5 | singleton_method3 |
diff --git a/ruby/ql/test/library-tests/dataflow/call-sensitivity/call_sensitivity.rb b/ruby/ql/test/library-tests/dataflow/call-sensitivity/call_sensitivity.rb
index 304fb7b79b3..20107e09dc3 100644
--- a/ruby/ql/test/library-tests/dataflow/call-sensitivity/call_sensitivity.rb
+++ b/ruby/ql/test/library-tests/dataflow/call-sensitivity/call_sensitivity.rb
@@ -48,7 +48,7 @@ apply_lambda(MY_LAMBDA2, taint(9))
 
 class A
   def method1 x
-    sink x # $ hasValueFlow=10 $ hasValueFlow=11 $ hasValueFlow=12 $ hasValueFlow=13
+    sink x # $ hasValueFlow=10 $ hasValueFlow=11 $ hasValueFlow=12 $ hasValueFlow=13 $ hasValueFlow=26 $ SPURIOUS: hasValueFlow=27
   end
 
   def method2 x
@@ -71,6 +71,12 @@ class A
     sink x # $ hasValueFlow=14 $ hasValueFlow=15 # $ hasValueFlow=16 $ hasValueFlow=17
   end
 
+  def method4(x, y)
+    [0, 1, 3].each do
+      x.method1(y)
+    end
+  end
+
   def self.singleton_method2 x
     singleton_method1 x
   end
@@ -93,6 +99,7 @@ a.method2(taint 10)
 a.call_method2(taint 11)
 a.method3(a, taint(12))
 a.call_method3(taint(13))
+a.method4(a, taint(26))
 
 A.singleton_method2(taint 14)
 A.call_singleton_method2(taint 15)
@@ -130,6 +137,7 @@ b.method2(taint 18)
 b.call_method2(taint 19)
 b.method3(b, taint(20))
 b.call_method3(taint(21))
+b.method4(b, taint(27))
 
 B.singleton_method2(taint 22)
 B.call_singleton_method2(taint 23)

From 0963b6f221cb50704c132963722831f5f5aaffa1 Mon Sep 17 00:00:00 2001
From: Anders Schack-Mulligen <aschackmull@github.com>
Date: Fri, 4 Nov 2022 12:37:35 +0100
Subject: [PATCH 0857/1420] Java: Replace ad-hoc scc reduction with union-find.

---
 .../semmle/code/java/dataflow/TypeFlow.qll    | 176 ++++++------------
 1 file changed, 58 insertions(+), 118 deletions(-)

diff --git a/java/ql/lib/semmle/code/java/dataflow/TypeFlow.qll b/java/ql/lib/semmle/code/java/dataflow/TypeFlow.qll
index 4bc17e8c4b4..1c76f554020 100644
--- a/java/ql/lib/semmle/code/java/dataflow/TypeFlow.qll
+++ b/java/ql/lib/semmle/code/java/dataflow/TypeFlow.qll
@@ -53,16 +53,6 @@ private class TypeFlowNode extends TTypeFlowNode {
   }
 }
 
-private int getNodeKind(TypeFlowNode n) {
-  result = 1 and n instanceof TField
-  or
-  result = 2 and n instanceof TSsa
-  or
-  result = 3 and n instanceof TExpr
-  or
-  result = 4 and n instanceof TMethod
-}
-
 /** Gets `t` if it is a `RefType` or the boxed type if `t` is a primitive type. */
 private RefType boxIfNeeded(Type t) {
   t.(PrimitiveType).getBoxedType() = result or
@@ -158,107 +148,45 @@ private predicate joinStep(TypeFlowNode n1, TypeFlowNode n2) {
 
 private predicate anyStep(TypeFlowNode n1, TypeFlowNode n2) { joinStep(n1, n2) or step(n1, n2) }
 
-private import SccReduction
+private predicate sccEdge(TypeFlowNode n1, TypeFlowNode n2) { anyStep(n1, n2) and anyStep+(n2, n1) }
 
-/**
- * SCC reduction.
- *
- * This ought to be as easy as `equivalenceRelation(sccEdge/2)(n, scc)`, but
- * this HOP is not currently supported for newtypes.
- *
- * A straightforward implementation would be:
- * ```ql
- * predicate sccRepr(TypeFlowNode n, TypeFlowNode scc) {
- *  scc =
- *    max(TypeFlowNode n2 |
- *      sccEdge+(n, n2)
- *    |
- *      n2
- *      order by
- *        n2.getLocation().getStartLine(), n2.getLocation().getStartColumn(), getNodeKind(n2)
- *    )
- * }
- *
- * ```
- * but this is quadratic in the size of the SCCs.
- *
- * Instead we find local maxima by following SCC edges and determine the SCC
- * representatives from those.
- * (This is still worst-case quadratic in the size of the SCCs, but generally
- * performs better.)
- */
-private module SccReduction {
-  private predicate sccEdge(TypeFlowNode n1, TypeFlowNode n2) {
-    anyStep(n1, n2) and anyStep+(n2, n1)
-  }
+private module Scc = QlBuiltins::EquivalenceRelation<TypeFlowNode, sccEdge/2>;
 
-  private predicate sccEdgeWithMax(TypeFlowNode n1, TypeFlowNode n2, TypeFlowNode m) {
-    sccEdge(n1, n2) and
-    m =
-      max(TypeFlowNode n |
-        n = [n1, n2]
-      |
-        n order by n.getLocation().getStartLine(), n.getLocation().getStartColumn(), getNodeKind(n)
-      )
-  }
+private class TypeFlowScc = Scc::EquivalenceClass;
 
-  private predicate hasLargerNeighbor(TypeFlowNode n) {
-    exists(TypeFlowNode n2 |
-      sccEdgeWithMax(n, n2, n2) and
-      not sccEdgeWithMax(n, n2, n)
-      or
-      sccEdgeWithMax(n2, n, n2) and
-      not sccEdgeWithMax(n2, n, n)
-    )
-  }
+/** Holds if `n` is part of an SCC of size 2 or more represented by `scc`. */
+private predicate sccRepr(TypeFlowNode n, TypeFlowScc scc) { scc = Scc::getEquivalenceClass(n) }
 
-  private predicate localMax(TypeFlowNode m) {
-    sccEdgeWithMax(_, _, m) and
-    not hasLargerNeighbor(m)
-  }
-
-  private predicate sccReprFromLocalMax(TypeFlowNode scc) {
-    exists(TypeFlowNode m |
-      localMax(m) and
-      scc =
-        max(TypeFlowNode n2 |
-          sccEdge+(m, n2) and localMax(n2)
-        |
-          n2
-          order by
-            n2.getLocation().getStartLine(), n2.getLocation().getStartColumn(), getNodeKind(n2)
-        )
-    )
-  }
-
-  /** Holds if `n` is part of an SCC of size 2 or more represented by `scc`. */
-  predicate sccRepr(TypeFlowNode n, TypeFlowNode scc) {
-    sccEdge+(n, scc) and sccReprFromLocalMax(scc)
-  }
-
-  predicate sccJoinStep(TypeFlowNode n, TypeFlowNode scc) {
-    exists(TypeFlowNode mid |
-      joinStep(n, mid) and
-      sccRepr(mid, scc) and
-      not sccRepr(n, scc)
-    )
-  }
+private predicate sccJoinStep(TypeFlowNode n, TypeFlowScc scc) {
+  exists(TypeFlowNode mid |
+    joinStep(n, mid) and
+    sccRepr(mid, scc) and
+    not sccRepr(n, scc)
+  )
 }
 
-private signature predicate edgeSig(TypeFlowNode n1, TypeFlowNode n2);
+private signature class NodeSig;
 
-private signature module RankedEdge {
-  predicate edgeRank(int r, TypeFlowNode n1, TypeFlowNode n2);
+private signature module Edge {
+  class Node;
 
-  int lastRank(TypeFlowNode n);
+  predicate edge(TypeFlowNode n1, Node n2);
 }
 
-private module RankEdge<edgeSig/2 edge> implements RankedEdge {
+private signature module RankedEdge<NodeSig Node> {
+  predicate edgeRank(int r, TypeFlowNode n1, Node n2);
+
+  int lastRank(Node n);
+}
+
+private module RankEdge<Edge E> implements RankedEdge<E::Node> {
+  private import E
+
   /**
    * Holds if `r` is a ranking of the incoming edges `(n1,n2)` to `n2`. The used
    * ordering is not necessarily total, so the ranking may have gaps.
    */
-  private predicate edgeRank1(int r, TypeFlowNode n1, TypeFlowNode n2) {
+  private predicate edgeRank1(int r, TypeFlowNode n1, Node n2) {
     n1 =
       rank[r](TypeFlowNode n |
         edge(n, n2)
@@ -271,19 +199,19 @@ private module RankEdge<edgeSig/2 edge> implements RankedEdge {
    * Holds if `r2` is a ranking of the ranks from `edgeRank1`. This removes the
    * gaps from the ranking.
    */
-  private predicate edgeRank2(int r2, int r1, TypeFlowNode n) {
+  private predicate edgeRank2(int r2, int r1, Node n) {
     r1 = rank[r2](int r | edgeRank1(r, _, n) | r)
   }
 
   /** Holds if `r` is a ranking of the incoming edges `(n1,n2)` to `n2`. */
-  predicate edgeRank(int r, TypeFlowNode n1, TypeFlowNode n2) {
+  predicate edgeRank(int r, TypeFlowNode n1, Node n2) {
     exists(int r1 |
       edgeRank1(r1, n1, n2) and
       edgeRank2(r, r1, n2)
     )
   }
 
-  int lastRank(TypeFlowNode n) { result = max(int r | edgeRank(r, _, n)) }
+  int lastRank(Node n) { result = max(int r | edgeRank(r, _, n)) }
 }
 
 private signature module TypePropagation {
@@ -296,16 +224,16 @@ private signature module TypePropagation {
 }
 
 /** Implements recursion through `forall` by way of edge ranking. */
-private module ForAll<RankedEdge Edge, TypePropagation T> {
+private module ForAll<NodeSig Node, RankedEdge<Node> E, TypePropagation T> {
   /**
    * Holds if `t` is a bound that holds on one of the incoming edges to `n` and
    * thus is a candidate bound for `n`.
    */
   pragma[nomagic]
-  private predicate candJoinType(TypeFlowNode n, T::Typ t) {
+  private predicate candJoinType(Node n, T::Typ t) {
     exists(TypeFlowNode mid |
       T::candType(mid, t) and
-      Edge::edgeRank(_, mid, n)
+      E::edgeRank(_, mid, n)
     )
   }
 
@@ -314,13 +242,13 @@ private module ForAll<RankedEdge Edge, TypePropagation T> {
    * through the edges into `n` ranked from `1` to `r`.
    */
   pragma[assume_small_delta]
-  private predicate flowJoin(int r, TypeFlowNode n, T::Typ t) {
+  private predicate flowJoin(int r, Node n, T::Typ t) {
     (
       r = 1 and candJoinType(n, t)
       or
-      flowJoin(r - 1, n, t) and Edge::edgeRank(r, _, n)
+      flowJoin(r - 1, n, t) and E::edgeRank(r, _, n)
     ) and
-    forall(TypeFlowNode mid | Edge::edgeRank(r, mid, n) | T::supportsType(mid, t))
+    forall(TypeFlowNode mid | E::edgeRank(r, mid, n) | T::supportsType(mid, t))
   }
 
   /**
@@ -328,12 +256,24 @@ private module ForAll<RankedEdge Edge, TypePropagation T> {
    * coming through all the incoming edges, and therefore is a valid bound for
    * `n`.
    */
-  predicate flowJoin(TypeFlowNode n, T::Typ t) { flowJoin(Edge::lastRank(n), n, t) }
+  predicate flowJoin(Node n, T::Typ t) { flowJoin(E::lastRank(n), n, t) }
 }
 
-module RankedJoinStep = RankEdge<joinStep/2>;
+private module JoinStep implements Edge {
+  class Node = TypeFlowNode;
 
-module RankedSccJoinStep = RankEdge<sccJoinStep/2>;
+  predicate edge = joinStep/2;
+}
+
+private module SccJoinStep implements Edge {
+  class Node = TypeFlowScc;
+
+  predicate edge = sccJoinStep/2;
+}
+
+private module RankedJoinStep = RankEdge<JoinStep>;
+
+private module RankedSccJoinStep = RankEdge<SccJoinStep>;
 
 private predicate exactTypeBase(TypeFlowNode n, RefType t) {
   exists(ClassInstanceExpr e |
@@ -363,13 +303,13 @@ private predicate exactType(TypeFlowNode n, RefType t) {
   or
   // The following is an optimized version of
   // `forex(TypeFlowNode mid | joinStep(mid, n) | exactType(mid, t))`
-  ForAll<RankedJoinStep, ExactTypePropagation>::flowJoin(n, t)
+  ForAll<TypeFlowNode, RankedJoinStep, ExactTypePropagation>::flowJoin(n, t)
   or
-  exists(TypeFlowNode scc |
+  exists(TypeFlowScc scc |
     sccRepr(n, scc) and
     // Optimized version of
     // `forex(TypeFlowNode mid | sccJoinStep(mid, scc) | exactType(mid, t))`
-    ForAll<RankedSccJoinStep, ExactTypePropagation>::flowJoin(scc, t)
+    ForAll<TypeFlowScc, RankedSccJoinStep, ExactTypePropagation>::flowJoin(scc, t)
   )
 }
 
@@ -563,11 +503,11 @@ private predicate typeFlow(TypeFlowNode n, RefType t) {
   or
   exists(TypeFlowNode mid | typeFlow(mid, t) and step(mid, n))
   or
-  ForAll<RankedJoinStep, TypeFlowPropagation>::flowJoin(n, t)
+  ForAll<TypeFlowNode, RankedJoinStep, TypeFlowPropagation>::flowJoin(n, t)
   or
-  exists(TypeFlowNode scc |
+  exists(TypeFlowScc scc |
     sccRepr(n, scc) and
-    ForAll<RankedSccJoinStep, TypeFlowPropagation>::flowJoin(scc, t)
+    ForAll<TypeFlowScc, RankedSccJoinStep, TypeFlowPropagation>::flowJoin(scc, t)
   )
 }
 
@@ -703,13 +643,13 @@ private predicate hasUnionTypeFlow(TypeFlowNode n) {
   (
     // Optimized version of
     // `forex(TypeFlowNode mid | joinStep(mid, n) | unionTypeFlowBaseCand(mid, _, _) or hasUnionTypeFlow(mid))`
-    ForAll<RankedJoinStep, HasUnionTypePropagation>::flowJoin(n, _)
+    ForAll<TypeFlowNode, RankedJoinStep, HasUnionTypePropagation>::flowJoin(n, _)
     or
-    exists(TypeFlowNode scc |
+    exists(TypeFlowScc scc |
       sccRepr(n, scc) and
       // Optimized version of
       // `forex(TypeFlowNode mid | sccJoinStep(mid, scc) | unionTypeFlowBaseCand(mid, _, _) or hasUnionTypeFlow(mid))`
-      ForAll<RankedSccJoinStep, HasUnionTypePropagation>::flowJoin(scc, _)
+      ForAll<TypeFlowScc, RankedSccJoinStep, HasUnionTypePropagation>::flowJoin(scc, _)
     )
     or
     exists(TypeFlowNode mid | step(mid, n) and hasUnionTypeFlow(mid))

From 56f5214782cf6e2f12be951d913087cef6417992 Mon Sep 17 00:00:00 2001
From: Tony Torralba <atorralba@users.noreply.github.com>
Date: Wed, 30 Nov 2022 11:10:30 +0100
Subject: [PATCH 0858/1420] Remove invalid MaD row

---
 swift/ql/lib/codeql/swift/security/PathInjection.qll | 1 -
 1 file changed, 1 deletion(-)

diff --git a/swift/ql/lib/codeql/swift/security/PathInjection.qll b/swift/ql/lib/codeql/swift/security/PathInjection.qll
index 834a4254141..3ed59f55dac 100644
--- a/swift/ql/lib/codeql/swift/security/PathInjection.qll
+++ b/swift/ql/lib/codeql/swift/security/PathInjection.qll
@@ -79,7 +79,6 @@ private class PathInjectionSinks extends SinkModelCsv {
         ";FileManager;true;trashItem(at:resultingItemURL:);;;Argument[0];path-injection",
         ";FileManager;true;replaceItem(at:withItemAt:backupItemName:options:resultingItemURL:);;;Argument[0..1];path-injection",
         ";FileManager;true;replaceItemAt(_:withItemAt:backupItemName:options:);;;Argument[0..1];path-injection",
-        ";FileManager;true;replaceItemAt(_:withItemAt:backupItemName:options:resultingItemURL:);;;Argument[0..1];path-injection",
         ";FileManager;true;copyItem(at:to:);;;Argument[0..1];path-injection",
         ";FileManager;true;copyItem(atPath:toPath:);;;Argument[0..1];path-injection",
         ";FileManager;true;moveItem(at:to:);;;Argument[0..1];path-injection",

From 758cb8b412c00b173e13890af178ab5974a0fc38 Mon Sep 17 00:00:00 2001
From: Anders Schack-Mulligen <aschackmull@github.com>
Date: Wed, 30 Nov 2022 11:14:43 +0100
Subject: [PATCH 0859/1420] Shared: Fix trailing and non-ascii whitespace.

---
 shared/util/codeql/util/Option.qll | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/shared/util/codeql/util/Option.qll b/shared/util/codeql/util/Option.qll
index f47d975d268..9382dc9555c 100644
--- a/shared/util/codeql/util/Option.qll
+++ b/shared/util/codeql/util/Option.qll
@@ -28,9 +28,9 @@ module Option<TypeWithToString T> {
 
     /** Gets the wrapped element, if any. */
     T asSome() { this = TSome(result) }
-    
+
     /** Holds if this option is the singleton `None`. */
-    predicate isNone() { this = TNone() }
+    predicate isNone() { this = TNone() }
   }
 
   /** The singleton `None` element. */

From ce8a20cfd17eed1ce77c7d30d52dd20beef05a39 Mon Sep 17 00:00:00 2001
From: Owen Mansel-Chan <owen-mc@github.com>
Date: Wed, 30 Nov 2022 10:51:59 +0000
Subject: [PATCH 0860/1420] Fix variable name (`source` should be `sink`)

---
 java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl.qll | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl.qll b/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl.qll
index e4cfd5986be..ccde916a3c2 100644
--- a/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl.qll
+++ b/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl.qll
@@ -70,7 +70,7 @@ abstract class Configuration extends string {
   /**
    * Holds if `sink` is a relevant data flow sink accepting `state`.
    */
-  predicate isSink(Node source, FlowState state) { none() }
+  predicate isSink(Node sink, FlowState state) { none() }
 
   /**
    * Holds if data flow through `node` is prohibited. This completely removes

From 207ba86d51ca21cc685b6f40cbeafd803be15d4d Mon Sep 17 00:00:00 2001
From: Arthur Baars <aibaars@github.com>
Date: Thu, 17 Nov 2022 15:41:56 +0100
Subject: [PATCH 0861/1420] Ruby: add flow summary for Enumerable#pick

---
 .../codeql/ruby/frameworks/ActiveSupport.qll  | 60 ++++++++++++++-
 .../ActiveSupportDataFlow.expected            | 74 +++++++++++++++++++
 .../active_support/hash_extensions.rb         | 12 +++
 3 files changed, 145 insertions(+), 1 deletion(-)

diff --git a/ruby/ql/lib/codeql/ruby/frameworks/ActiveSupport.qll b/ruby/ql/lib/codeql/ruby/frameworks/ActiveSupport.qll
index 48bd1193aaa..0d5cc410835 100644
--- a/ruby/ql/lib/codeql/ruby/frameworks/ActiveSupport.qll
+++ b/ruby/ql/lib/codeql/ruby/frameworks/ActiveSupport.qll
@@ -308,7 +308,65 @@ module ActiveSupport {
           preservesValue = true
         }
       }
-      // TODO: pick, pluck (they require Hash dataflow)
+
+      private string getKeyArgument(MethodCall mc, int i) {
+        mc.getMethodName() = ["pick", "pluck"] and
+        result = DataFlow::Content::getKnownElementIndex(mc.getArgument(i)).serialize()
+      }
+
+      private class PickSingleSummary extends SummarizedCallable {
+        private MethodCall mc;
+        private string key;
+
+        PickSingleSummary() {
+          key = getKeyArgument(mc, 0) and
+          this = "Enumerable.pick(" + key + ")" and
+          mc.getMethodName() = "pick" and
+          mc.getNumberOfArguments() = 1
+        }
+
+        override MethodCall getACall() { result = mc }
+
+        override predicate propagatesFlowExt(string input, string output, boolean preservesValue) {
+          input = "Argument[self].Element[0].Element[" + key + "!]" and
+          output = "ReturnValue" and
+          preservesValue = true
+        }
+      }
+
+      private class PickMultipleSummary extends SummarizedCallable {
+        private MethodCall mc;
+
+        PickMultipleSummary() {
+          mc.getMethodName() = "pick" and
+          mc.getNumberOfArguments() > 1 and
+          exists(int maxKey |
+            maxKey = max(int j | exists(getKeyArgument(mc, j))) and
+            this =
+              "Enumerable.pick(" +
+                concat(int i, string key |
+                  key = getKeyArgument(mc, i)
+                  or
+                  key = "_" and
+                  not exists(getKeyArgument(mc, i)) and
+                  i in [0 .. maxKey]
+                |
+                  key, "," order by i
+                ) + ")"
+          )
+        }
+
+        override MethodCall getACall() { result = mc }
+
+        override predicate propagatesFlowExt(string input, string output, boolean preservesValue) {
+          exists(string s, int i |
+            s = getKeyArgument(mc, i) and
+            input = "Argument[self].Element[0].Element[" + s + "!]" and
+            output = "ReturnValue.Element[" + i + "!]"
+          ) and
+          preservesValue = true
+        }
+      }
     }
   }
 
diff --git a/ruby/ql/test/library-tests/frameworks/active_support/ActiveSupportDataFlow.expected b/ruby/ql/test/library-tests/frameworks/active_support/ActiveSupportDataFlow.expected
index c2d169d1bb9..5237512e7b8 100644
--- a/ruby/ql/test/library-tests/frameworks/active_support/ActiveSupportDataFlow.expected
+++ b/ruby/ql/test/library-tests/frameworks/active_support/ActiveSupportDataFlow.expected
@@ -320,6 +320,38 @@ edges
 | hash_extensions.rb:91:10:91:10 | j [element] :  | hash_extensions.rb:91:10:91:16 | ...[...] |
 | hash_extensions.rb:92:10:92:10 | j [element] :  | hash_extensions.rb:92:10:92:16 | ...[...] |
 | hash_extensions.rb:92:10:92:10 | j [element] :  | hash_extensions.rb:92:10:92:16 | ...[...] |
+| hash_extensions.rb:98:21:98:31 | call to source :  | hash_extensions.rb:99:10:99:15 | values [element 0, element :id] :  |
+| hash_extensions.rb:98:21:98:31 | call to source :  | hash_extensions.rb:99:10:99:15 | values [element 0, element :id] :  |
+| hash_extensions.rb:98:21:98:31 | call to source :  | hash_extensions.rb:101:10:101:15 | values [element 0, element :id] :  |
+| hash_extensions.rb:98:21:98:31 | call to source :  | hash_extensions.rb:101:10:101:15 | values [element 0, element :id] :  |
+| hash_extensions.rb:98:21:98:31 | call to source :  | hash_extensions.rb:104:10:104:15 | values [element 0, element :id] :  |
+| hash_extensions.rb:98:21:98:31 | call to source :  | hash_extensions.rb:104:10:104:15 | values [element 0, element :id] :  |
+| hash_extensions.rb:98:40:98:54 | call to source :  | hash_extensions.rb:100:10:100:15 | values [element 0, element :name] :  |
+| hash_extensions.rb:98:40:98:54 | call to source :  | hash_extensions.rb:100:10:100:15 | values [element 0, element :name] :  |
+| hash_extensions.rb:98:40:98:54 | call to source :  | hash_extensions.rb:102:10:102:15 | values [element 0, element :name] :  |
+| hash_extensions.rb:98:40:98:54 | call to source :  | hash_extensions.rb:102:10:102:15 | values [element 0, element :name] :  |
+| hash_extensions.rb:98:40:98:54 | call to source :  | hash_extensions.rb:103:10:103:15 | values [element 0, element :name] :  |
+| hash_extensions.rb:98:40:98:54 | call to source :  | hash_extensions.rb:103:10:103:15 | values [element 0, element :name] :  |
+| hash_extensions.rb:99:10:99:15 | values [element 0, element :id] :  | hash_extensions.rb:99:10:99:25 | call to pick |
+| hash_extensions.rb:99:10:99:15 | values [element 0, element :id] :  | hash_extensions.rb:99:10:99:25 | call to pick |
+| hash_extensions.rb:100:10:100:15 | values [element 0, element :name] :  | hash_extensions.rb:100:10:100:27 | call to pick |
+| hash_extensions.rb:100:10:100:15 | values [element 0, element :name] :  | hash_extensions.rb:100:10:100:27 | call to pick |
+| hash_extensions.rb:101:10:101:15 | values [element 0, element :id] :  | hash_extensions.rb:101:10:101:32 | call to pick [element 0] :  |
+| hash_extensions.rb:101:10:101:15 | values [element 0, element :id] :  | hash_extensions.rb:101:10:101:32 | call to pick [element 0] :  |
+| hash_extensions.rb:101:10:101:32 | call to pick [element 0] :  | hash_extensions.rb:101:10:101:35 | ...[...] |
+| hash_extensions.rb:101:10:101:32 | call to pick [element 0] :  | hash_extensions.rb:101:10:101:35 | ...[...] |
+| hash_extensions.rb:102:10:102:15 | values [element 0, element :name] :  | hash_extensions.rb:102:10:102:32 | call to pick [element 1] :  |
+| hash_extensions.rb:102:10:102:15 | values [element 0, element :name] :  | hash_extensions.rb:102:10:102:32 | call to pick [element 1] :  |
+| hash_extensions.rb:102:10:102:32 | call to pick [element 1] :  | hash_extensions.rb:102:10:102:35 | ...[...] |
+| hash_extensions.rb:102:10:102:32 | call to pick [element 1] :  | hash_extensions.rb:102:10:102:35 | ...[...] |
+| hash_extensions.rb:103:10:103:15 | values [element 0, element :name] :  | hash_extensions.rb:103:10:103:32 | call to pick [element 0] :  |
+| hash_extensions.rb:103:10:103:15 | values [element 0, element :name] :  | hash_extensions.rb:103:10:103:32 | call to pick [element 0] :  |
+| hash_extensions.rb:103:10:103:32 | call to pick [element 0] :  | hash_extensions.rb:103:10:103:35 | ...[...] |
+| hash_extensions.rb:103:10:103:32 | call to pick [element 0] :  | hash_extensions.rb:103:10:103:35 | ...[...] |
+| hash_extensions.rb:104:10:104:15 | values [element 0, element :id] :  | hash_extensions.rb:104:10:104:32 | call to pick [element 1] :  |
+| hash_extensions.rb:104:10:104:15 | values [element 0, element :id] :  | hash_extensions.rb:104:10:104:32 | call to pick [element 1] :  |
+| hash_extensions.rb:104:10:104:32 | call to pick [element 1] :  | hash_extensions.rb:104:10:104:35 | ...[...] |
+| hash_extensions.rb:104:10:104:32 | call to pick [element 1] :  | hash_extensions.rb:104:10:104:35 | ...[...] |
 nodes
 | active_support.rb:10:9:10:18 | call to source :  | semmle.label | call to source :  |
 | active_support.rb:11:10:11:10 | x :  | semmle.label | x :  |
@@ -722,6 +754,42 @@ nodes
 | hash_extensions.rb:92:10:92:10 | j [element] :  | semmle.label | j [element] :  |
 | hash_extensions.rb:92:10:92:16 | ...[...] | semmle.label | ...[...] |
 | hash_extensions.rb:92:10:92:16 | ...[...] | semmle.label | ...[...] |
+| hash_extensions.rb:98:21:98:31 | call to source :  | semmle.label | call to source :  |
+| hash_extensions.rb:98:21:98:31 | call to source :  | semmle.label | call to source :  |
+| hash_extensions.rb:98:40:98:54 | call to source :  | semmle.label | call to source :  |
+| hash_extensions.rb:98:40:98:54 | call to source :  | semmle.label | call to source :  |
+| hash_extensions.rb:99:10:99:15 | values [element 0, element :id] :  | semmle.label | values [element 0, element :id] :  |
+| hash_extensions.rb:99:10:99:15 | values [element 0, element :id] :  | semmle.label | values [element 0, element :id] :  |
+| hash_extensions.rb:99:10:99:25 | call to pick | semmle.label | call to pick |
+| hash_extensions.rb:99:10:99:25 | call to pick | semmle.label | call to pick |
+| hash_extensions.rb:100:10:100:15 | values [element 0, element :name] :  | semmle.label | values [element 0, element :name] :  |
+| hash_extensions.rb:100:10:100:15 | values [element 0, element :name] :  | semmle.label | values [element 0, element :name] :  |
+| hash_extensions.rb:100:10:100:27 | call to pick | semmle.label | call to pick |
+| hash_extensions.rb:100:10:100:27 | call to pick | semmle.label | call to pick |
+| hash_extensions.rb:101:10:101:15 | values [element 0, element :id] :  | semmle.label | values [element 0, element :id] :  |
+| hash_extensions.rb:101:10:101:15 | values [element 0, element :id] :  | semmle.label | values [element 0, element :id] :  |
+| hash_extensions.rb:101:10:101:32 | call to pick [element 0] :  | semmle.label | call to pick [element 0] :  |
+| hash_extensions.rb:101:10:101:32 | call to pick [element 0] :  | semmle.label | call to pick [element 0] :  |
+| hash_extensions.rb:101:10:101:35 | ...[...] | semmle.label | ...[...] |
+| hash_extensions.rb:101:10:101:35 | ...[...] | semmle.label | ...[...] |
+| hash_extensions.rb:102:10:102:15 | values [element 0, element :name] :  | semmle.label | values [element 0, element :name] :  |
+| hash_extensions.rb:102:10:102:15 | values [element 0, element :name] :  | semmle.label | values [element 0, element :name] :  |
+| hash_extensions.rb:102:10:102:32 | call to pick [element 1] :  | semmle.label | call to pick [element 1] :  |
+| hash_extensions.rb:102:10:102:32 | call to pick [element 1] :  | semmle.label | call to pick [element 1] :  |
+| hash_extensions.rb:102:10:102:35 | ...[...] | semmle.label | ...[...] |
+| hash_extensions.rb:102:10:102:35 | ...[...] | semmle.label | ...[...] |
+| hash_extensions.rb:103:10:103:15 | values [element 0, element :name] :  | semmle.label | values [element 0, element :name] :  |
+| hash_extensions.rb:103:10:103:15 | values [element 0, element :name] :  | semmle.label | values [element 0, element :name] :  |
+| hash_extensions.rb:103:10:103:32 | call to pick [element 0] :  | semmle.label | call to pick [element 0] :  |
+| hash_extensions.rb:103:10:103:32 | call to pick [element 0] :  | semmle.label | call to pick [element 0] :  |
+| hash_extensions.rb:103:10:103:35 | ...[...] | semmle.label | ...[...] |
+| hash_extensions.rb:103:10:103:35 | ...[...] | semmle.label | ...[...] |
+| hash_extensions.rb:104:10:104:15 | values [element 0, element :id] :  | semmle.label | values [element 0, element :id] :  |
+| hash_extensions.rb:104:10:104:15 | values [element 0, element :id] :  | semmle.label | values [element 0, element :id] :  |
+| hash_extensions.rb:104:10:104:32 | call to pick [element 1] :  | semmle.label | call to pick [element 1] :  |
+| hash_extensions.rb:104:10:104:32 | call to pick [element 1] :  | semmle.label | call to pick [element 1] :  |
+| hash_extensions.rb:104:10:104:35 | ...[...] | semmle.label | ...[...] |
+| hash_extensions.rb:104:10:104:35 | ...[...] | semmle.label | ...[...] |
 subpaths
 #select
 | active_support.rb:182:10:182:13 | ...[...] | active_support.rb:180:10:180:17 | call to source :  | active_support.rb:182:10:182:13 | ...[...] | $@ | active_support.rb:180:10:180:17 | call to source :  | call to source :  |
@@ -766,3 +834,9 @@ subpaths
 | hash_extensions.rb:87:10:87:16 | ...[...] | hash_extensions.rb:83:9:83:19 | call to source :  | hash_extensions.rb:87:10:87:16 | ...[...] | $@ | hash_extensions.rb:83:9:83:19 | call to source :  | call to source :  |
 | hash_extensions.rb:91:10:91:16 | ...[...] | hash_extensions.rb:89:27:89:37 | call to source :  | hash_extensions.rb:91:10:91:16 | ...[...] | $@ | hash_extensions.rb:89:27:89:37 | call to source :  | call to source :  |
 | hash_extensions.rb:92:10:92:16 | ...[...] | hash_extensions.rb:89:27:89:37 | call to source :  | hash_extensions.rb:92:10:92:16 | ...[...] | $@ | hash_extensions.rb:89:27:89:37 | call to source :  | call to source :  |
+| hash_extensions.rb:99:10:99:25 | call to pick | hash_extensions.rb:98:21:98:31 | call to source :  | hash_extensions.rb:99:10:99:25 | call to pick | $@ | hash_extensions.rb:98:21:98:31 | call to source :  | call to source :  |
+| hash_extensions.rb:100:10:100:27 | call to pick | hash_extensions.rb:98:40:98:54 | call to source :  | hash_extensions.rb:100:10:100:27 | call to pick | $@ | hash_extensions.rb:98:40:98:54 | call to source :  | call to source :  |
+| hash_extensions.rb:101:10:101:35 | ...[...] | hash_extensions.rb:98:21:98:31 | call to source :  | hash_extensions.rb:101:10:101:35 | ...[...] | $@ | hash_extensions.rb:98:21:98:31 | call to source :  | call to source :  |
+| hash_extensions.rb:102:10:102:35 | ...[...] | hash_extensions.rb:98:40:98:54 | call to source :  | hash_extensions.rb:102:10:102:35 | ...[...] | $@ | hash_extensions.rb:98:40:98:54 | call to source :  | call to source :  |
+| hash_extensions.rb:103:10:103:35 | ...[...] | hash_extensions.rb:98:40:98:54 | call to source :  | hash_extensions.rb:103:10:103:35 | ...[...] | $@ | hash_extensions.rb:98:40:98:54 | call to source :  | call to source :  |
+| hash_extensions.rb:104:10:104:35 | ...[...] | hash_extensions.rb:98:21:98:31 | call to source :  | hash_extensions.rb:104:10:104:35 | ...[...] | $@ | hash_extensions.rb:98:21:98:31 | call to source :  | call to source :  |
diff --git a/ruby/ql/test/library-tests/frameworks/active_support/hash_extensions.rb b/ruby/ql/test/library-tests/frameworks/active_support/hash_extensions.rb
index 4675e6ea72e..d31f5f0b271 100644
--- a/ruby/ql/test/library-tests/frameworks/active_support/hash_extensions.rb
+++ b/ruby/ql/test/library-tests/frameworks/active_support/hash_extensions.rb
@@ -93,3 +93,15 @@ def m_index_with
 end
 
 m_index_with()
+
+def m_pick
+    values = [{ id: source("1"), name: source("David") }, { id: source("2"), name: source("Rafael") }]
+    sink(values.pick(:id)) # $ hasValueFlow=1
+    sink(values.pick(:name)) # $ hasValueFlow=David
+    sink(values.pick(:id, :name)[0]) # $ hasValueFlow=1
+    sink(values.pick(:id, :name)[1]) # $ hasValueFlow=David
+    sink(values.pick(:name, :id)[0]) # $ hasValueFlow=David
+    sink(values.pick(:name, :id)[1]) # $ hasValueFlow=1
+end
+
+m_pick()

From 5517cfa6c0313ee121efef03aa43a674f10bd309 Mon Sep 17 00:00:00 2001
From: Arthur Baars <aibaars@github.com>
Date: Thu, 17 Nov 2022 15:49:43 +0100
Subject: [PATCH 0862/1420] Ruby: add flow summary for Enumerable#pluck

---
 .../codeql/ruby/frameworks/ActiveSupport.qll  |  54 ++++++++
 .../ActiveSupportDataFlow.expected            | 124 ++++++++++++++++++
 .../active_support/hash_extensions.rb         |  11 ++
 3 files changed, 189 insertions(+)

diff --git a/ruby/ql/lib/codeql/ruby/frameworks/ActiveSupport.qll b/ruby/ql/lib/codeql/ruby/frameworks/ActiveSupport.qll
index 0d5cc410835..727a233b438 100644
--- a/ruby/ql/lib/codeql/ruby/frameworks/ActiveSupport.qll
+++ b/ruby/ql/lib/codeql/ruby/frameworks/ActiveSupport.qll
@@ -367,6 +367,60 @@ module ActiveSupport {
           preservesValue = true
         }
       }
+
+      private class PluckSingleSummary extends SummarizedCallable {
+        private MethodCall mc;
+        private string key;
+
+        PluckSingleSummary() {
+          key = getKeyArgument(mc, 0) and
+          this = "Enumerable.pluck(" + key + ")" and
+          mc.getMethodName() = "pluck" and
+          mc.getNumberOfArguments() = 1
+        }
+
+        override MethodCall getACall() { result = mc }
+
+        override predicate propagatesFlowExt(string input, string output, boolean preservesValue) {
+          input = "Argument[self].Element[any].Element[" + key + "!]" and
+          output = "ReturnValue.Element[any]" and
+          preservesValue = true
+        }
+      }
+
+      private class PluckMultipleSummary extends SummarizedCallable {
+        private MethodCall mc;
+
+        PluckMultipleSummary() {
+          mc.getMethodName() = "pluck" and
+          mc.getNumberOfArguments() > 1 and
+          exists(int maxKey |
+            maxKey = max(int j | exists(getKeyArgument(mc, j))) and
+            this =
+              "Enumerable.pluck(" +
+                concat(int i, string key |
+                  key = getKeyArgument(mc, i)
+                  or
+                  key = "_" and
+                  not exists(getKeyArgument(mc, i)) and
+                  i in [0 .. maxKey]
+                |
+                  key, "," order by i
+                ) + ")"
+          )
+        }
+
+        override MethodCall getACall() { result = mc }
+
+        override predicate propagatesFlowExt(string input, string output, boolean preservesValue) {
+          exists(string s, int i |
+            s = getKeyArgument(mc, i) and
+            input = "Argument[self].Element[any].Element[" + s + "!]" and
+            output = "ReturnValue.Element[?].Element[" + i + "!]"
+          ) and
+          preservesValue = true
+        }
+      }
     }
   }
 
diff --git a/ruby/ql/test/library-tests/frameworks/active_support/ActiveSupportDataFlow.expected b/ruby/ql/test/library-tests/frameworks/active_support/ActiveSupportDataFlow.expected
index 5237512e7b8..f5c4e418b08 100644
--- a/ruby/ql/test/library-tests/frameworks/active_support/ActiveSupportDataFlow.expected
+++ b/ruby/ql/test/library-tests/frameworks/active_support/ActiveSupportDataFlow.expected
@@ -352,6 +352,64 @@ edges
 | hash_extensions.rb:104:10:104:15 | values [element 0, element :id] :  | hash_extensions.rb:104:10:104:32 | call to pick [element 1] :  |
 | hash_extensions.rb:104:10:104:32 | call to pick [element 1] :  | hash_extensions.rb:104:10:104:35 | ...[...] |
 | hash_extensions.rb:104:10:104:32 | call to pick [element 1] :  | hash_extensions.rb:104:10:104:35 | ...[...] |
+| hash_extensions.rb:110:21:110:31 | call to source :  | hash_extensions.rb:112:10:112:15 | values [element 0, element :id] :  |
+| hash_extensions.rb:110:21:110:31 | call to source :  | hash_extensions.rb:112:10:112:15 | values [element 0, element :id] :  |
+| hash_extensions.rb:110:21:110:31 | call to source :  | hash_extensions.rb:115:10:115:15 | values [element 0, element :id] :  |
+| hash_extensions.rb:110:21:110:31 | call to source :  | hash_extensions.rb:115:10:115:15 | values [element 0, element :id] :  |
+| hash_extensions.rb:110:40:110:54 | call to source :  | hash_extensions.rb:111:10:111:15 | values [element 0, element :name] :  |
+| hash_extensions.rb:110:40:110:54 | call to source :  | hash_extensions.rb:111:10:111:15 | values [element 0, element :name] :  |
+| hash_extensions.rb:110:40:110:54 | call to source :  | hash_extensions.rb:113:10:113:15 | values [element 0, element :name] :  |
+| hash_extensions.rb:110:40:110:54 | call to source :  | hash_extensions.rb:113:10:113:15 | values [element 0, element :name] :  |
+| hash_extensions.rb:110:40:110:54 | call to source :  | hash_extensions.rb:114:10:114:15 | values [element 0, element :name] :  |
+| hash_extensions.rb:110:40:110:54 | call to source :  | hash_extensions.rb:114:10:114:15 | values [element 0, element :name] :  |
+| hash_extensions.rb:110:65:110:75 | call to source :  | hash_extensions.rb:112:10:112:15 | values [element 1, element :id] :  |
+| hash_extensions.rb:110:65:110:75 | call to source :  | hash_extensions.rb:112:10:112:15 | values [element 1, element :id] :  |
+| hash_extensions.rb:110:65:110:75 | call to source :  | hash_extensions.rb:115:10:115:15 | values [element 1, element :id] :  |
+| hash_extensions.rb:110:65:110:75 | call to source :  | hash_extensions.rb:115:10:115:15 | values [element 1, element :id] :  |
+| hash_extensions.rb:110:84:110:99 | call to source :  | hash_extensions.rb:111:10:111:15 | values [element 1, element :name] :  |
+| hash_extensions.rb:110:84:110:99 | call to source :  | hash_extensions.rb:111:10:111:15 | values [element 1, element :name] :  |
+| hash_extensions.rb:110:84:110:99 | call to source :  | hash_extensions.rb:113:10:113:15 | values [element 1, element :name] :  |
+| hash_extensions.rb:110:84:110:99 | call to source :  | hash_extensions.rb:113:10:113:15 | values [element 1, element :name] :  |
+| hash_extensions.rb:110:84:110:99 | call to source :  | hash_extensions.rb:114:10:114:15 | values [element 1, element :name] :  |
+| hash_extensions.rb:110:84:110:99 | call to source :  | hash_extensions.rb:114:10:114:15 | values [element 1, element :name] :  |
+| hash_extensions.rb:111:10:111:15 | values [element 0, element :name] :  | hash_extensions.rb:111:10:111:28 | call to pluck [element] :  |
+| hash_extensions.rb:111:10:111:15 | values [element 0, element :name] :  | hash_extensions.rb:111:10:111:28 | call to pluck [element] :  |
+| hash_extensions.rb:111:10:111:15 | values [element 1, element :name] :  | hash_extensions.rb:111:10:111:28 | call to pluck [element] :  |
+| hash_extensions.rb:111:10:111:15 | values [element 1, element :name] :  | hash_extensions.rb:111:10:111:28 | call to pluck [element] :  |
+| hash_extensions.rb:111:10:111:28 | call to pluck [element] :  | hash_extensions.rb:111:10:111:31 | ...[...] |
+| hash_extensions.rb:111:10:111:28 | call to pluck [element] :  | hash_extensions.rb:111:10:111:31 | ...[...] |
+| hash_extensions.rb:112:10:112:15 | values [element 0, element :id] :  | hash_extensions.rb:112:10:112:33 | call to pluck [element, element 0] :  |
+| hash_extensions.rb:112:10:112:15 | values [element 0, element :id] :  | hash_extensions.rb:112:10:112:33 | call to pluck [element, element 0] :  |
+| hash_extensions.rb:112:10:112:15 | values [element 1, element :id] :  | hash_extensions.rb:112:10:112:33 | call to pluck [element, element 0] :  |
+| hash_extensions.rb:112:10:112:15 | values [element 1, element :id] :  | hash_extensions.rb:112:10:112:33 | call to pluck [element, element 0] :  |
+| hash_extensions.rb:112:10:112:33 | call to pluck [element, element 0] :  | hash_extensions.rb:112:10:112:36 | ...[...] [element 0] :  |
+| hash_extensions.rb:112:10:112:33 | call to pluck [element, element 0] :  | hash_extensions.rb:112:10:112:36 | ...[...] [element 0] :  |
+| hash_extensions.rb:112:10:112:36 | ...[...] [element 0] :  | hash_extensions.rb:112:10:112:39 | ...[...] |
+| hash_extensions.rb:112:10:112:36 | ...[...] [element 0] :  | hash_extensions.rb:112:10:112:39 | ...[...] |
+| hash_extensions.rb:113:10:113:15 | values [element 0, element :name] :  | hash_extensions.rb:113:10:113:33 | call to pluck [element, element 1] :  |
+| hash_extensions.rb:113:10:113:15 | values [element 0, element :name] :  | hash_extensions.rb:113:10:113:33 | call to pluck [element, element 1] :  |
+| hash_extensions.rb:113:10:113:15 | values [element 1, element :name] :  | hash_extensions.rb:113:10:113:33 | call to pluck [element, element 1] :  |
+| hash_extensions.rb:113:10:113:15 | values [element 1, element :name] :  | hash_extensions.rb:113:10:113:33 | call to pluck [element, element 1] :  |
+| hash_extensions.rb:113:10:113:33 | call to pluck [element, element 1] :  | hash_extensions.rb:113:10:113:36 | ...[...] [element 1] :  |
+| hash_extensions.rb:113:10:113:33 | call to pluck [element, element 1] :  | hash_extensions.rb:113:10:113:36 | ...[...] [element 1] :  |
+| hash_extensions.rb:113:10:113:36 | ...[...] [element 1] :  | hash_extensions.rb:113:10:113:39 | ...[...] |
+| hash_extensions.rb:113:10:113:36 | ...[...] [element 1] :  | hash_extensions.rb:113:10:113:39 | ...[...] |
+| hash_extensions.rb:114:10:114:15 | values [element 0, element :name] :  | hash_extensions.rb:114:10:114:33 | call to pluck [element, element 0] :  |
+| hash_extensions.rb:114:10:114:15 | values [element 0, element :name] :  | hash_extensions.rb:114:10:114:33 | call to pluck [element, element 0] :  |
+| hash_extensions.rb:114:10:114:15 | values [element 1, element :name] :  | hash_extensions.rb:114:10:114:33 | call to pluck [element, element 0] :  |
+| hash_extensions.rb:114:10:114:15 | values [element 1, element :name] :  | hash_extensions.rb:114:10:114:33 | call to pluck [element, element 0] :  |
+| hash_extensions.rb:114:10:114:33 | call to pluck [element, element 0] :  | hash_extensions.rb:114:10:114:36 | ...[...] [element 0] :  |
+| hash_extensions.rb:114:10:114:33 | call to pluck [element, element 0] :  | hash_extensions.rb:114:10:114:36 | ...[...] [element 0] :  |
+| hash_extensions.rb:114:10:114:36 | ...[...] [element 0] :  | hash_extensions.rb:114:10:114:39 | ...[...] |
+| hash_extensions.rb:114:10:114:36 | ...[...] [element 0] :  | hash_extensions.rb:114:10:114:39 | ...[...] |
+| hash_extensions.rb:115:10:115:15 | values [element 0, element :id] :  | hash_extensions.rb:115:10:115:33 | call to pluck [element, element 1] :  |
+| hash_extensions.rb:115:10:115:15 | values [element 0, element :id] :  | hash_extensions.rb:115:10:115:33 | call to pluck [element, element 1] :  |
+| hash_extensions.rb:115:10:115:15 | values [element 1, element :id] :  | hash_extensions.rb:115:10:115:33 | call to pluck [element, element 1] :  |
+| hash_extensions.rb:115:10:115:15 | values [element 1, element :id] :  | hash_extensions.rb:115:10:115:33 | call to pluck [element, element 1] :  |
+| hash_extensions.rb:115:10:115:33 | call to pluck [element, element 1] :  | hash_extensions.rb:115:10:115:36 | ...[...] [element 1] :  |
+| hash_extensions.rb:115:10:115:33 | call to pluck [element, element 1] :  | hash_extensions.rb:115:10:115:36 | ...[...] [element 1] :  |
+| hash_extensions.rb:115:10:115:36 | ...[...] [element 1] :  | hash_extensions.rb:115:10:115:39 | ...[...] |
+| hash_extensions.rb:115:10:115:36 | ...[...] [element 1] :  | hash_extensions.rb:115:10:115:39 | ...[...] |
 nodes
 | active_support.rb:10:9:10:18 | call to source :  | semmle.label | call to source :  |
 | active_support.rb:11:10:11:10 | x :  | semmle.label | x :  |
@@ -790,6 +848,62 @@ nodes
 | hash_extensions.rb:104:10:104:32 | call to pick [element 1] :  | semmle.label | call to pick [element 1] :  |
 | hash_extensions.rb:104:10:104:35 | ...[...] | semmle.label | ...[...] |
 | hash_extensions.rb:104:10:104:35 | ...[...] | semmle.label | ...[...] |
+| hash_extensions.rb:110:21:110:31 | call to source :  | semmle.label | call to source :  |
+| hash_extensions.rb:110:21:110:31 | call to source :  | semmle.label | call to source :  |
+| hash_extensions.rb:110:40:110:54 | call to source :  | semmle.label | call to source :  |
+| hash_extensions.rb:110:40:110:54 | call to source :  | semmle.label | call to source :  |
+| hash_extensions.rb:110:65:110:75 | call to source :  | semmle.label | call to source :  |
+| hash_extensions.rb:110:65:110:75 | call to source :  | semmle.label | call to source :  |
+| hash_extensions.rb:110:84:110:99 | call to source :  | semmle.label | call to source :  |
+| hash_extensions.rb:110:84:110:99 | call to source :  | semmle.label | call to source :  |
+| hash_extensions.rb:111:10:111:15 | values [element 0, element :name] :  | semmle.label | values [element 0, element :name] :  |
+| hash_extensions.rb:111:10:111:15 | values [element 0, element :name] :  | semmle.label | values [element 0, element :name] :  |
+| hash_extensions.rb:111:10:111:15 | values [element 1, element :name] :  | semmle.label | values [element 1, element :name] :  |
+| hash_extensions.rb:111:10:111:15 | values [element 1, element :name] :  | semmle.label | values [element 1, element :name] :  |
+| hash_extensions.rb:111:10:111:28 | call to pluck [element] :  | semmle.label | call to pluck [element] :  |
+| hash_extensions.rb:111:10:111:28 | call to pluck [element] :  | semmle.label | call to pluck [element] :  |
+| hash_extensions.rb:111:10:111:31 | ...[...] | semmle.label | ...[...] |
+| hash_extensions.rb:111:10:111:31 | ...[...] | semmle.label | ...[...] |
+| hash_extensions.rb:112:10:112:15 | values [element 0, element :id] :  | semmle.label | values [element 0, element :id] :  |
+| hash_extensions.rb:112:10:112:15 | values [element 0, element :id] :  | semmle.label | values [element 0, element :id] :  |
+| hash_extensions.rb:112:10:112:15 | values [element 1, element :id] :  | semmle.label | values [element 1, element :id] :  |
+| hash_extensions.rb:112:10:112:15 | values [element 1, element :id] :  | semmle.label | values [element 1, element :id] :  |
+| hash_extensions.rb:112:10:112:33 | call to pluck [element, element 0] :  | semmle.label | call to pluck [element, element 0] :  |
+| hash_extensions.rb:112:10:112:33 | call to pluck [element, element 0] :  | semmle.label | call to pluck [element, element 0] :  |
+| hash_extensions.rb:112:10:112:36 | ...[...] [element 0] :  | semmle.label | ...[...] [element 0] :  |
+| hash_extensions.rb:112:10:112:36 | ...[...] [element 0] :  | semmle.label | ...[...] [element 0] :  |
+| hash_extensions.rb:112:10:112:39 | ...[...] | semmle.label | ...[...] |
+| hash_extensions.rb:112:10:112:39 | ...[...] | semmle.label | ...[...] |
+| hash_extensions.rb:113:10:113:15 | values [element 0, element :name] :  | semmle.label | values [element 0, element :name] :  |
+| hash_extensions.rb:113:10:113:15 | values [element 0, element :name] :  | semmle.label | values [element 0, element :name] :  |
+| hash_extensions.rb:113:10:113:15 | values [element 1, element :name] :  | semmle.label | values [element 1, element :name] :  |
+| hash_extensions.rb:113:10:113:15 | values [element 1, element :name] :  | semmle.label | values [element 1, element :name] :  |
+| hash_extensions.rb:113:10:113:33 | call to pluck [element, element 1] :  | semmle.label | call to pluck [element, element 1] :  |
+| hash_extensions.rb:113:10:113:33 | call to pluck [element, element 1] :  | semmle.label | call to pluck [element, element 1] :  |
+| hash_extensions.rb:113:10:113:36 | ...[...] [element 1] :  | semmle.label | ...[...] [element 1] :  |
+| hash_extensions.rb:113:10:113:36 | ...[...] [element 1] :  | semmle.label | ...[...] [element 1] :  |
+| hash_extensions.rb:113:10:113:39 | ...[...] | semmle.label | ...[...] |
+| hash_extensions.rb:113:10:113:39 | ...[...] | semmle.label | ...[...] |
+| hash_extensions.rb:114:10:114:15 | values [element 0, element :name] :  | semmle.label | values [element 0, element :name] :  |
+| hash_extensions.rb:114:10:114:15 | values [element 0, element :name] :  | semmle.label | values [element 0, element :name] :  |
+| hash_extensions.rb:114:10:114:15 | values [element 1, element :name] :  | semmle.label | values [element 1, element :name] :  |
+| hash_extensions.rb:114:10:114:15 | values [element 1, element :name] :  | semmle.label | values [element 1, element :name] :  |
+| hash_extensions.rb:114:10:114:33 | call to pluck [element, element 0] :  | semmle.label | call to pluck [element, element 0] :  |
+| hash_extensions.rb:114:10:114:33 | call to pluck [element, element 0] :  | semmle.label | call to pluck [element, element 0] :  |
+| hash_extensions.rb:114:10:114:36 | ...[...] [element 0] :  | semmle.label | ...[...] [element 0] :  |
+| hash_extensions.rb:114:10:114:36 | ...[...] [element 0] :  | semmle.label | ...[...] [element 0] :  |
+| hash_extensions.rb:114:10:114:39 | ...[...] | semmle.label | ...[...] |
+| hash_extensions.rb:114:10:114:39 | ...[...] | semmle.label | ...[...] |
+| hash_extensions.rb:115:10:115:15 | values [element 0, element :id] :  | semmle.label | values [element 0, element :id] :  |
+| hash_extensions.rb:115:10:115:15 | values [element 0, element :id] :  | semmle.label | values [element 0, element :id] :  |
+| hash_extensions.rb:115:10:115:15 | values [element 1, element :id] :  | semmle.label | values [element 1, element :id] :  |
+| hash_extensions.rb:115:10:115:15 | values [element 1, element :id] :  | semmle.label | values [element 1, element :id] :  |
+| hash_extensions.rb:115:10:115:33 | call to pluck [element, element 1] :  | semmle.label | call to pluck [element, element 1] :  |
+| hash_extensions.rb:115:10:115:33 | call to pluck [element, element 1] :  | semmle.label | call to pluck [element, element 1] :  |
+| hash_extensions.rb:115:10:115:36 | ...[...] [element 1] :  | semmle.label | ...[...] [element 1] :  |
+| hash_extensions.rb:115:10:115:36 | ...[...] [element 1] :  | semmle.label | ...[...] [element 1] :  |
+| hash_extensions.rb:115:10:115:39 | ...[...] | semmle.label | ...[...] |
+| hash_extensions.rb:115:10:115:39 | ...[...] | semmle.label | ...[...] |
 subpaths
 #select
 | active_support.rb:182:10:182:13 | ...[...] | active_support.rb:180:10:180:17 | call to source :  | active_support.rb:182:10:182:13 | ...[...] | $@ | active_support.rb:180:10:180:17 | call to source :  | call to source :  |
@@ -840,3 +954,13 @@ subpaths
 | hash_extensions.rb:102:10:102:35 | ...[...] | hash_extensions.rb:98:40:98:54 | call to source :  | hash_extensions.rb:102:10:102:35 | ...[...] | $@ | hash_extensions.rb:98:40:98:54 | call to source :  | call to source :  |
 | hash_extensions.rb:103:10:103:35 | ...[...] | hash_extensions.rb:98:40:98:54 | call to source :  | hash_extensions.rb:103:10:103:35 | ...[...] | $@ | hash_extensions.rb:98:40:98:54 | call to source :  | call to source :  |
 | hash_extensions.rb:104:10:104:35 | ...[...] | hash_extensions.rb:98:21:98:31 | call to source :  | hash_extensions.rb:104:10:104:35 | ...[...] | $@ | hash_extensions.rb:98:21:98:31 | call to source :  | call to source :  |
+| hash_extensions.rb:111:10:111:31 | ...[...] | hash_extensions.rb:110:40:110:54 | call to source :  | hash_extensions.rb:111:10:111:31 | ...[...] | $@ | hash_extensions.rb:110:40:110:54 | call to source :  | call to source :  |
+| hash_extensions.rb:111:10:111:31 | ...[...] | hash_extensions.rb:110:84:110:99 | call to source :  | hash_extensions.rb:111:10:111:31 | ...[...] | $@ | hash_extensions.rb:110:84:110:99 | call to source :  | call to source :  |
+| hash_extensions.rb:112:10:112:39 | ...[...] | hash_extensions.rb:110:21:110:31 | call to source :  | hash_extensions.rb:112:10:112:39 | ...[...] | $@ | hash_extensions.rb:110:21:110:31 | call to source :  | call to source :  |
+| hash_extensions.rb:112:10:112:39 | ...[...] | hash_extensions.rb:110:65:110:75 | call to source :  | hash_extensions.rb:112:10:112:39 | ...[...] | $@ | hash_extensions.rb:110:65:110:75 | call to source :  | call to source :  |
+| hash_extensions.rb:113:10:113:39 | ...[...] | hash_extensions.rb:110:40:110:54 | call to source :  | hash_extensions.rb:113:10:113:39 | ...[...] | $@ | hash_extensions.rb:110:40:110:54 | call to source :  | call to source :  |
+| hash_extensions.rb:113:10:113:39 | ...[...] | hash_extensions.rb:110:84:110:99 | call to source :  | hash_extensions.rb:113:10:113:39 | ...[...] | $@ | hash_extensions.rb:110:84:110:99 | call to source :  | call to source :  |
+| hash_extensions.rb:114:10:114:39 | ...[...] | hash_extensions.rb:110:40:110:54 | call to source :  | hash_extensions.rb:114:10:114:39 | ...[...] | $@ | hash_extensions.rb:110:40:110:54 | call to source :  | call to source :  |
+| hash_extensions.rb:114:10:114:39 | ...[...] | hash_extensions.rb:110:84:110:99 | call to source :  | hash_extensions.rb:114:10:114:39 | ...[...] | $@ | hash_extensions.rb:110:84:110:99 | call to source :  | call to source :  |
+| hash_extensions.rb:115:10:115:39 | ...[...] | hash_extensions.rb:110:21:110:31 | call to source :  | hash_extensions.rb:115:10:115:39 | ...[...] | $@ | hash_extensions.rb:110:21:110:31 | call to source :  | call to source :  |
+| hash_extensions.rb:115:10:115:39 | ...[...] | hash_extensions.rb:110:65:110:75 | call to source :  | hash_extensions.rb:115:10:115:39 | ...[...] | $@ | hash_extensions.rb:110:65:110:75 | call to source :  | call to source :  |
diff --git a/ruby/ql/test/library-tests/frameworks/active_support/hash_extensions.rb b/ruby/ql/test/library-tests/frameworks/active_support/hash_extensions.rb
index d31f5f0b271..d3980c4a1d1 100644
--- a/ruby/ql/test/library-tests/frameworks/active_support/hash_extensions.rb
+++ b/ruby/ql/test/library-tests/frameworks/active_support/hash_extensions.rb
@@ -105,3 +105,14 @@ def m_pick
 end
 
 m_pick()
+
+def m_pluck(i)
+    values = [{ id: source("1"), name: source("David") }, { id: source("2"), name: source("Rafael") }]
+    sink(values.pluck(:name)[i]) # $ hasValueFlow=David $ hasValueFlow=Rafael
+    sink(values.pluck(:id, :name)[i][0]) # $ hasValueFlow=1 $ hasValueFlow=2
+    sink(values.pluck(:id, :name)[i][1]) # $ hasValueFlow=David $ hasValueFlow=Rafael
+    sink(values.pluck(:name, :id)[i][0]) # $ hasValueFlow=David $ hasValueFlow=Rafael
+    sink(values.pluck(:name, :id)[i][1]) # $ hasValueFlow=1 $ hasValueFlow=2
+end
+
+m_pluck(0)

From 0f2cb440b0d5b3e2af4db53e7e52fbab3b6640f0 Mon Sep 17 00:00:00 2001
From: Arthur Baars <aibaars@github.com>
Date: Wed, 16 Nov 2022 13:43:26 +0100
Subject: [PATCH 0863/1420] Ruby: add flow summary for Enumerable#sole

---
 .../codeql/ruby/frameworks/ActiveSupport.qll  | 10 ++++++++
 .../ActiveSupportDataFlow.expected            | 23 +++++++++++++++++++
 .../active_support/hash_extensions.rb         | 11 +++++++++
 3 files changed, 44 insertions(+)

diff --git a/ruby/ql/lib/codeql/ruby/frameworks/ActiveSupport.qll b/ruby/ql/lib/codeql/ruby/frameworks/ActiveSupport.qll
index 727a233b438..04eeefc18b0 100644
--- a/ruby/ql/lib/codeql/ruby/frameworks/ActiveSupport.qll
+++ b/ruby/ql/lib/codeql/ruby/frameworks/ActiveSupport.qll
@@ -421,6 +421,16 @@ module ActiveSupport {
           preservesValue = true
         }
       }
+
+      private class SoleSummary extends SimpleSummarizedCallable {
+        SoleSummary() { this = "sole" }
+
+        override predicate propagatesFlowExt(string input, string output, boolean preservesValue) {
+          input = "Argument[self].Element[0]" and
+          output = "ReturnValue" and
+          preservesValue = true
+        }
+      }
     }
   }
 
diff --git a/ruby/ql/test/library-tests/frameworks/active_support/ActiveSupportDataFlow.expected b/ruby/ql/test/library-tests/frameworks/active_support/ActiveSupportDataFlow.expected
index f5c4e418b08..1d90832cee5 100644
--- a/ruby/ql/test/library-tests/frameworks/active_support/ActiveSupportDataFlow.expected
+++ b/ruby/ql/test/library-tests/frameworks/active_support/ActiveSupportDataFlow.expected
@@ -1,4 +1,5 @@
 failures
+| hash_extensions.rb:126:10:126:19 | call to sole | Unexpected result: hasValueFlow=b |
 edges
 | active_support.rb:10:9:10:18 | call to source :  | active_support.rb:11:10:11:10 | x :  |
 | active_support.rb:11:10:11:10 | x :  | active_support.rb:11:10:11:19 | call to at |
@@ -410,6 +411,14 @@ edges
 | hash_extensions.rb:115:10:115:33 | call to pluck [element, element 1] :  | hash_extensions.rb:115:10:115:36 | ...[...] [element 1] :  |
 | hash_extensions.rb:115:10:115:36 | ...[...] [element 1] :  | hash_extensions.rb:115:10:115:39 | ...[...] |
 | hash_extensions.rb:115:10:115:36 | ...[...] [element 1] :  | hash_extensions.rb:115:10:115:39 | ...[...] |
+| hash_extensions.rb:122:15:122:25 | call to source :  | hash_extensions.rb:125:10:125:15 | single [element 0] :  |
+| hash_extensions.rb:122:15:122:25 | call to source :  | hash_extensions.rb:125:10:125:15 | single [element 0] :  |
+| hash_extensions.rb:123:14:123:24 | call to source :  | hash_extensions.rb:126:10:126:14 | multi [element 0] :  |
+| hash_extensions.rb:123:14:123:24 | call to source :  | hash_extensions.rb:126:10:126:14 | multi [element 0] :  |
+| hash_extensions.rb:125:10:125:15 | single [element 0] :  | hash_extensions.rb:125:10:125:20 | call to sole |
+| hash_extensions.rb:125:10:125:15 | single [element 0] :  | hash_extensions.rb:125:10:125:20 | call to sole |
+| hash_extensions.rb:126:10:126:14 | multi [element 0] :  | hash_extensions.rb:126:10:126:19 | call to sole |
+| hash_extensions.rb:126:10:126:14 | multi [element 0] :  | hash_extensions.rb:126:10:126:19 | call to sole |
 nodes
 | active_support.rb:10:9:10:18 | call to source :  | semmle.label | call to source :  |
 | active_support.rb:11:10:11:10 | x :  | semmle.label | x :  |
@@ -904,6 +913,18 @@ nodes
 | hash_extensions.rb:115:10:115:36 | ...[...] [element 1] :  | semmle.label | ...[...] [element 1] :  |
 | hash_extensions.rb:115:10:115:39 | ...[...] | semmle.label | ...[...] |
 | hash_extensions.rb:115:10:115:39 | ...[...] | semmle.label | ...[...] |
+| hash_extensions.rb:122:15:122:25 | call to source :  | semmle.label | call to source :  |
+| hash_extensions.rb:122:15:122:25 | call to source :  | semmle.label | call to source :  |
+| hash_extensions.rb:123:14:123:24 | call to source :  | semmle.label | call to source :  |
+| hash_extensions.rb:123:14:123:24 | call to source :  | semmle.label | call to source :  |
+| hash_extensions.rb:125:10:125:15 | single [element 0] :  | semmle.label | single [element 0] :  |
+| hash_extensions.rb:125:10:125:15 | single [element 0] :  | semmle.label | single [element 0] :  |
+| hash_extensions.rb:125:10:125:20 | call to sole | semmle.label | call to sole |
+| hash_extensions.rb:125:10:125:20 | call to sole | semmle.label | call to sole |
+| hash_extensions.rb:126:10:126:14 | multi [element 0] :  | semmle.label | multi [element 0] :  |
+| hash_extensions.rb:126:10:126:14 | multi [element 0] :  | semmle.label | multi [element 0] :  |
+| hash_extensions.rb:126:10:126:19 | call to sole | semmle.label | call to sole |
+| hash_extensions.rb:126:10:126:19 | call to sole | semmle.label | call to sole |
 subpaths
 #select
 | active_support.rb:182:10:182:13 | ...[...] | active_support.rb:180:10:180:17 | call to source :  | active_support.rb:182:10:182:13 | ...[...] | $@ | active_support.rb:180:10:180:17 | call to source :  | call to source :  |
@@ -964,3 +985,5 @@ subpaths
 | hash_extensions.rb:114:10:114:39 | ...[...] | hash_extensions.rb:110:84:110:99 | call to source :  | hash_extensions.rb:114:10:114:39 | ...[...] | $@ | hash_extensions.rb:110:84:110:99 | call to source :  | call to source :  |
 | hash_extensions.rb:115:10:115:39 | ...[...] | hash_extensions.rb:110:21:110:31 | call to source :  | hash_extensions.rb:115:10:115:39 | ...[...] | $@ | hash_extensions.rb:110:21:110:31 | call to source :  | call to source :  |
 | hash_extensions.rb:115:10:115:39 | ...[...] | hash_extensions.rb:110:65:110:75 | call to source :  | hash_extensions.rb:115:10:115:39 | ...[...] | $@ | hash_extensions.rb:110:65:110:75 | call to source :  | call to source :  |
+| hash_extensions.rb:125:10:125:20 | call to sole | hash_extensions.rb:122:15:122:25 | call to source :  | hash_extensions.rb:125:10:125:20 | call to sole | $@ | hash_extensions.rb:122:15:122:25 | call to source :  | call to source :  |
+| hash_extensions.rb:126:10:126:19 | call to sole | hash_extensions.rb:123:14:123:24 | call to source :  | hash_extensions.rb:126:10:126:19 | call to sole | $@ | hash_extensions.rb:123:14:123:24 | call to source :  | call to source :  |
diff --git a/ruby/ql/test/library-tests/frameworks/active_support/hash_extensions.rb b/ruby/ql/test/library-tests/frameworks/active_support/hash_extensions.rb
index d3980c4a1d1..63d4e7a588d 100644
--- a/ruby/ql/test/library-tests/frameworks/active_support/hash_extensions.rb
+++ b/ruby/ql/test/library-tests/frameworks/active_support/hash_extensions.rb
@@ -116,3 +116,14 @@ def m_pluck(i)
 end
 
 m_pluck(0)
+
+def m_sole
+    empty = []
+    single = [source("a")]
+    multi = [source("b"), source("c")]
+    sink(empty.sole)
+    sink(single.sole) # $ hasValueFlow=a
+    sink(multi.sole) # TODO: model that 'sole' does not return if the receiver has multiple elements
+end
+
+m_sole()

From cbf4197575a7d045b87912ca59bcbb830702488a Mon Sep 17 00:00:00 2001
From: Arthur Baars <aibaars@github.com>
Date: Mon, 28 Nov 2022 13:54:32 +0100
Subject: [PATCH 0864/1420] Ruby: add change note

---
 .../lib/change-notes/2022-11-28-activesupport-enumerable.md   | 4 ++++
 1 file changed, 4 insertions(+)
 create mode 100644 ruby/ql/lib/change-notes/2022-11-28-activesupport-enumerable.md

diff --git a/ruby/ql/lib/change-notes/2022-11-28-activesupport-enumerable.md b/ruby/ql/lib/change-notes/2022-11-28-activesupport-enumerable.md
new file mode 100644
index 00000000000..81e11cc2eef
--- /dev/null
+++ b/ruby/ql/lib/change-notes/2022-11-28-activesupport-enumerable.md
@@ -0,0 +1,4 @@
+---
+category: minorAnalysis
+---
+* Data flow through the `ActiveSupport` extensions `Enumerable#index_with`, `Enumerable#pick`, `Enumerable#pluck` and `Enumerable#sole`  are now modeled.

From 55c4643b203062cb13138ea003d45407f46e50f2 Mon Sep 17 00:00:00 2001
From: Owen Mansel-Chan <owen-mc@github.com>
Date: Wed, 30 Nov 2022 11:00:07 +0000
Subject: [PATCH 0865/1420] Dataflow: Sync.

---
 .../semmle/code/cpp/ir/dataflow/internal/DataFlowImpl.qll       | 2 +-
 .../semmle/code/cpp/ir/dataflow/internal/DataFlowImpl2.qll      | 2 +-
 .../semmle/code/cpp/ir/dataflow/internal/DataFlowImpl3.qll      | 2 +-
 .../semmle/code/cpp/ir/dataflow/internal/DataFlowImpl4.qll      | 2 +-
 cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImpl.qll   | 2 +-
 cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImpl2.qll  | 2 +-
 cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImpl3.qll  | 2 +-
 cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImpl4.qll  | 2 +-
 .../lib/semmle/code/cpp/dataflow/internal/DataFlowImplLocal.qll | 2 +-
 .../lib/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl.qll   | 2 +-
 .../lib/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl2.qll  | 2 +-
 .../lib/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl3.qll  | 2 +-
 .../lib/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl4.qll  | 2 +-
 .../lib/semmle/code/csharp/dataflow/internal/DataFlowImpl.qll   | 2 +-
 .../lib/semmle/code/csharp/dataflow/internal/DataFlowImpl2.qll  | 2 +-
 .../lib/semmle/code/csharp/dataflow/internal/DataFlowImpl3.qll  | 2 +-
 .../lib/semmle/code/csharp/dataflow/internal/DataFlowImpl4.qll  | 2 +-
 .../lib/semmle/code/csharp/dataflow/internal/DataFlowImpl5.qll  | 2 +-
 .../csharp/dataflow/internal/DataFlowImplForContentDataFlow.qll | 2 +-
 go/ql/lib/semmle/go/dataflow/internal/DataFlowImpl.qll          | 2 +-
 go/ql/lib/semmle/go/dataflow/internal/DataFlowImpl2.qll         | 2 +-
 .../ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl2.qll | 2 +-
 .../ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl3.qll | 2 +-
 .../ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl4.qll | 2 +-
 .../ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl5.qll | 2 +-
 .../ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl6.qll | 2 +-
 .../java/dataflow/internal/DataFlowImplForOnActivityResult.qll  | 2 +-
 .../java/dataflow/internal/DataFlowImplForSerializability.qll   | 2 +-
 .../ql/lib/semmle/python/dataflow/new/internal/DataFlowImpl.qll | 2 +-
 .../lib/semmle/python/dataflow/new/internal/DataFlowImpl2.qll   | 2 +-
 .../lib/semmle/python/dataflow/new/internal/DataFlowImpl3.qll   | 2 +-
 .../lib/semmle/python/dataflow/new/internal/DataFlowImpl4.qll   | 2 +-
 ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImpl.qll      | 2 +-
 ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImpl2.qll     | 2 +-
 .../dataflow/internal/DataFlowImplForHttpClientLibraries.qll    | 2 +-
 .../codeql/ruby/dataflow/internal/DataFlowImplForPathname.qll   | 2 +-
 .../lib/codeql/ruby/dataflow/internal/DataFlowImplForRegExp.qll | 2 +-
 swift/ql/lib/codeql/swift/dataflow/internal/DataFlowImpl.qll    | 2 +-
 38 files changed, 38 insertions(+), 38 deletions(-)

diff --git a/cpp/ql/lib/experimental/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl.qll b/cpp/ql/lib/experimental/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl.qll
index e4cfd5986be..ccde916a3c2 100644
--- a/cpp/ql/lib/experimental/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl.qll
+++ b/cpp/ql/lib/experimental/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl.qll
@@ -70,7 +70,7 @@ abstract class Configuration extends string {
   /**
    * Holds if `sink` is a relevant data flow sink accepting `state`.
    */
-  predicate isSink(Node source, FlowState state) { none() }
+  predicate isSink(Node sink, FlowState state) { none() }
 
   /**
    * Holds if data flow through `node` is prohibited. This completely removes
diff --git a/cpp/ql/lib/experimental/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl2.qll b/cpp/ql/lib/experimental/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl2.qll
index e4cfd5986be..ccde916a3c2 100644
--- a/cpp/ql/lib/experimental/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl2.qll
+++ b/cpp/ql/lib/experimental/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl2.qll
@@ -70,7 +70,7 @@ abstract class Configuration extends string {
   /**
    * Holds if `sink` is a relevant data flow sink accepting `state`.
    */
-  predicate isSink(Node source, FlowState state) { none() }
+  predicate isSink(Node sink, FlowState state) { none() }
 
   /**
    * Holds if data flow through `node` is prohibited. This completely removes
diff --git a/cpp/ql/lib/experimental/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl3.qll b/cpp/ql/lib/experimental/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl3.qll
index e4cfd5986be..ccde916a3c2 100644
--- a/cpp/ql/lib/experimental/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl3.qll
+++ b/cpp/ql/lib/experimental/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl3.qll
@@ -70,7 +70,7 @@ abstract class Configuration extends string {
   /**
    * Holds if `sink` is a relevant data flow sink accepting `state`.
    */
-  predicate isSink(Node source, FlowState state) { none() }
+  predicate isSink(Node sink, FlowState state) { none() }
 
   /**
    * Holds if data flow through `node` is prohibited. This completely removes
diff --git a/cpp/ql/lib/experimental/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl4.qll b/cpp/ql/lib/experimental/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl4.qll
index e4cfd5986be..ccde916a3c2 100644
--- a/cpp/ql/lib/experimental/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl4.qll
+++ b/cpp/ql/lib/experimental/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl4.qll
@@ -70,7 +70,7 @@ abstract class Configuration extends string {
   /**
    * Holds if `sink` is a relevant data flow sink accepting `state`.
    */
-  predicate isSink(Node source, FlowState state) { none() }
+  predicate isSink(Node sink, FlowState state) { none() }
 
   /**
    * Holds if data flow through `node` is prohibited. This completely removes
diff --git a/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImpl.qll b/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImpl.qll
index e4cfd5986be..ccde916a3c2 100644
--- a/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImpl.qll
+++ b/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImpl.qll
@@ -70,7 +70,7 @@ abstract class Configuration extends string {
   /**
    * Holds if `sink` is a relevant data flow sink accepting `state`.
    */
-  predicate isSink(Node source, FlowState state) { none() }
+  predicate isSink(Node sink, FlowState state) { none() }
 
   /**
    * Holds if data flow through `node` is prohibited. This completely removes
diff --git a/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImpl2.qll b/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImpl2.qll
index e4cfd5986be..ccde916a3c2 100644
--- a/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImpl2.qll
+++ b/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImpl2.qll
@@ -70,7 +70,7 @@ abstract class Configuration extends string {
   /**
    * Holds if `sink` is a relevant data flow sink accepting `state`.
    */
-  predicate isSink(Node source, FlowState state) { none() }
+  predicate isSink(Node sink, FlowState state) { none() }
 
   /**
    * Holds if data flow through `node` is prohibited. This completely removes
diff --git a/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImpl3.qll b/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImpl3.qll
index e4cfd5986be..ccde916a3c2 100644
--- a/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImpl3.qll
+++ b/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImpl3.qll
@@ -70,7 +70,7 @@ abstract class Configuration extends string {
   /**
    * Holds if `sink` is a relevant data flow sink accepting `state`.
    */
-  predicate isSink(Node source, FlowState state) { none() }
+  predicate isSink(Node sink, FlowState state) { none() }
 
   /**
    * Holds if data flow through `node` is prohibited. This completely removes
diff --git a/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImpl4.qll b/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImpl4.qll
index e4cfd5986be..ccde916a3c2 100644
--- a/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImpl4.qll
+++ b/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImpl4.qll
@@ -70,7 +70,7 @@ abstract class Configuration extends string {
   /**
    * Holds if `sink` is a relevant data flow sink accepting `state`.
    */
-  predicate isSink(Node source, FlowState state) { none() }
+  predicate isSink(Node sink, FlowState state) { none() }
 
   /**
    * Holds if data flow through `node` is prohibited. This completely removes
diff --git a/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImplLocal.qll b/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImplLocal.qll
index e4cfd5986be..ccde916a3c2 100644
--- a/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImplLocal.qll
+++ b/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImplLocal.qll
@@ -70,7 +70,7 @@ abstract class Configuration extends string {
   /**
    * Holds if `sink` is a relevant data flow sink accepting `state`.
    */
-  predicate isSink(Node source, FlowState state) { none() }
+  predicate isSink(Node sink, FlowState state) { none() }
 
   /**
    * Holds if data flow through `node` is prohibited. This completely removes
diff --git a/cpp/ql/lib/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl.qll b/cpp/ql/lib/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl.qll
index e4cfd5986be..ccde916a3c2 100644
--- a/cpp/ql/lib/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl.qll
+++ b/cpp/ql/lib/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl.qll
@@ -70,7 +70,7 @@ abstract class Configuration extends string {
   /**
    * Holds if `sink` is a relevant data flow sink accepting `state`.
    */
-  predicate isSink(Node source, FlowState state) { none() }
+  predicate isSink(Node sink, FlowState state) { none() }
 
   /**
    * Holds if data flow through `node` is prohibited. This completely removes
diff --git a/cpp/ql/lib/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl2.qll b/cpp/ql/lib/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl2.qll
index e4cfd5986be..ccde916a3c2 100644
--- a/cpp/ql/lib/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl2.qll
+++ b/cpp/ql/lib/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl2.qll
@@ -70,7 +70,7 @@ abstract class Configuration extends string {
   /**
    * Holds if `sink` is a relevant data flow sink accepting `state`.
    */
-  predicate isSink(Node source, FlowState state) { none() }
+  predicate isSink(Node sink, FlowState state) { none() }
 
   /**
    * Holds if data flow through `node` is prohibited. This completely removes
diff --git a/cpp/ql/lib/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl3.qll b/cpp/ql/lib/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl3.qll
index e4cfd5986be..ccde916a3c2 100644
--- a/cpp/ql/lib/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl3.qll
+++ b/cpp/ql/lib/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl3.qll
@@ -70,7 +70,7 @@ abstract class Configuration extends string {
   /**
    * Holds if `sink` is a relevant data flow sink accepting `state`.
    */
-  predicate isSink(Node source, FlowState state) { none() }
+  predicate isSink(Node sink, FlowState state) { none() }
 
   /**
    * Holds if data flow through `node` is prohibited. This completely removes
diff --git a/cpp/ql/lib/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl4.qll b/cpp/ql/lib/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl4.qll
index e4cfd5986be..ccde916a3c2 100644
--- a/cpp/ql/lib/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl4.qll
+++ b/cpp/ql/lib/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl4.qll
@@ -70,7 +70,7 @@ abstract class Configuration extends string {
   /**
    * Holds if `sink` is a relevant data flow sink accepting `state`.
    */
-  predicate isSink(Node source, FlowState state) { none() }
+  predicate isSink(Node sink, FlowState state) { none() }
 
   /**
    * Holds if data flow through `node` is prohibited. This completely removes
diff --git a/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImpl.qll b/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImpl.qll
index e4cfd5986be..ccde916a3c2 100644
--- a/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImpl.qll
+++ b/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImpl.qll
@@ -70,7 +70,7 @@ abstract class Configuration extends string {
   /**
    * Holds if `sink` is a relevant data flow sink accepting `state`.
    */
-  predicate isSink(Node source, FlowState state) { none() }
+  predicate isSink(Node sink, FlowState state) { none() }
 
   /**
    * Holds if data flow through `node` is prohibited. This completely removes
diff --git a/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImpl2.qll b/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImpl2.qll
index e4cfd5986be..ccde916a3c2 100644
--- a/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImpl2.qll
+++ b/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImpl2.qll
@@ -70,7 +70,7 @@ abstract class Configuration extends string {
   /**
    * Holds if `sink` is a relevant data flow sink accepting `state`.
    */
-  predicate isSink(Node source, FlowState state) { none() }
+  predicate isSink(Node sink, FlowState state) { none() }
 
   /**
    * Holds if data flow through `node` is prohibited. This completely removes
diff --git a/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImpl3.qll b/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImpl3.qll
index e4cfd5986be..ccde916a3c2 100644
--- a/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImpl3.qll
+++ b/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImpl3.qll
@@ -70,7 +70,7 @@ abstract class Configuration extends string {
   /**
    * Holds if `sink` is a relevant data flow sink accepting `state`.
    */
-  predicate isSink(Node source, FlowState state) { none() }
+  predicate isSink(Node sink, FlowState state) { none() }
 
   /**
    * Holds if data flow through `node` is prohibited. This completely removes
diff --git a/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImpl4.qll b/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImpl4.qll
index e4cfd5986be..ccde916a3c2 100644
--- a/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImpl4.qll
+++ b/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImpl4.qll
@@ -70,7 +70,7 @@ abstract class Configuration extends string {
   /**
    * Holds if `sink` is a relevant data flow sink accepting `state`.
    */
-  predicate isSink(Node source, FlowState state) { none() }
+  predicate isSink(Node sink, FlowState state) { none() }
 
   /**
    * Holds if data flow through `node` is prohibited. This completely removes
diff --git a/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImpl5.qll b/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImpl5.qll
index e4cfd5986be..ccde916a3c2 100644
--- a/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImpl5.qll
+++ b/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImpl5.qll
@@ -70,7 +70,7 @@ abstract class Configuration extends string {
   /**
    * Holds if `sink` is a relevant data flow sink accepting `state`.
    */
-  predicate isSink(Node source, FlowState state) { none() }
+  predicate isSink(Node sink, FlowState state) { none() }
 
   /**
    * Holds if data flow through `node` is prohibited. This completely removes
diff --git a/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImplForContentDataFlow.qll b/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImplForContentDataFlow.qll
index e4cfd5986be..ccde916a3c2 100644
--- a/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImplForContentDataFlow.qll
+++ b/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImplForContentDataFlow.qll
@@ -70,7 +70,7 @@ abstract class Configuration extends string {
   /**
    * Holds if `sink` is a relevant data flow sink accepting `state`.
    */
-  predicate isSink(Node source, FlowState state) { none() }
+  predicate isSink(Node sink, FlowState state) { none() }
 
   /**
    * Holds if data flow through `node` is prohibited. This completely removes
diff --git a/go/ql/lib/semmle/go/dataflow/internal/DataFlowImpl.qll b/go/ql/lib/semmle/go/dataflow/internal/DataFlowImpl.qll
index e4cfd5986be..ccde916a3c2 100644
--- a/go/ql/lib/semmle/go/dataflow/internal/DataFlowImpl.qll
+++ b/go/ql/lib/semmle/go/dataflow/internal/DataFlowImpl.qll
@@ -70,7 +70,7 @@ abstract class Configuration extends string {
   /**
    * Holds if `sink` is a relevant data flow sink accepting `state`.
    */
-  predicate isSink(Node source, FlowState state) { none() }
+  predicate isSink(Node sink, FlowState state) { none() }
 
   /**
    * Holds if data flow through `node` is prohibited. This completely removes
diff --git a/go/ql/lib/semmle/go/dataflow/internal/DataFlowImpl2.qll b/go/ql/lib/semmle/go/dataflow/internal/DataFlowImpl2.qll
index e4cfd5986be..ccde916a3c2 100644
--- a/go/ql/lib/semmle/go/dataflow/internal/DataFlowImpl2.qll
+++ b/go/ql/lib/semmle/go/dataflow/internal/DataFlowImpl2.qll
@@ -70,7 +70,7 @@ abstract class Configuration extends string {
   /**
    * Holds if `sink` is a relevant data flow sink accepting `state`.
    */
-  predicate isSink(Node source, FlowState state) { none() }
+  predicate isSink(Node sink, FlowState state) { none() }
 
   /**
    * Holds if data flow through `node` is prohibited. This completely removes
diff --git a/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl2.qll b/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl2.qll
index e4cfd5986be..ccde916a3c2 100644
--- a/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl2.qll
+++ b/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl2.qll
@@ -70,7 +70,7 @@ abstract class Configuration extends string {
   /**
    * Holds if `sink` is a relevant data flow sink accepting `state`.
    */
-  predicate isSink(Node source, FlowState state) { none() }
+  predicate isSink(Node sink, FlowState state) { none() }
 
   /**
    * Holds if data flow through `node` is prohibited. This completely removes
diff --git a/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl3.qll b/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl3.qll
index e4cfd5986be..ccde916a3c2 100644
--- a/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl3.qll
+++ b/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl3.qll
@@ -70,7 +70,7 @@ abstract class Configuration extends string {
   /**
    * Holds if `sink` is a relevant data flow sink accepting `state`.
    */
-  predicate isSink(Node source, FlowState state) { none() }
+  predicate isSink(Node sink, FlowState state) { none() }
 
   /**
    * Holds if data flow through `node` is prohibited. This completely removes
diff --git a/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl4.qll b/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl4.qll
index e4cfd5986be..ccde916a3c2 100644
--- a/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl4.qll
+++ b/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl4.qll
@@ -70,7 +70,7 @@ abstract class Configuration extends string {
   /**
    * Holds if `sink` is a relevant data flow sink accepting `state`.
    */
-  predicate isSink(Node source, FlowState state) { none() }
+  predicate isSink(Node sink, FlowState state) { none() }
 
   /**
    * Holds if data flow through `node` is prohibited. This completely removes
diff --git a/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl5.qll b/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl5.qll
index e4cfd5986be..ccde916a3c2 100644
--- a/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl5.qll
+++ b/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl5.qll
@@ -70,7 +70,7 @@ abstract class Configuration extends string {
   /**
    * Holds if `sink` is a relevant data flow sink accepting `state`.
    */
-  predicate isSink(Node source, FlowState state) { none() }
+  predicate isSink(Node sink, FlowState state) { none() }
 
   /**
    * Holds if data flow through `node` is prohibited. This completely removes
diff --git a/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl6.qll b/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl6.qll
index e4cfd5986be..ccde916a3c2 100644
--- a/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl6.qll
+++ b/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl6.qll
@@ -70,7 +70,7 @@ abstract class Configuration extends string {
   /**
    * Holds if `sink` is a relevant data flow sink accepting `state`.
    */
-  predicate isSink(Node source, FlowState state) { none() }
+  predicate isSink(Node sink, FlowState state) { none() }
 
   /**
    * Holds if data flow through `node` is prohibited. This completely removes
diff --git a/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImplForOnActivityResult.qll b/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImplForOnActivityResult.qll
index e4cfd5986be..ccde916a3c2 100644
--- a/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImplForOnActivityResult.qll
+++ b/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImplForOnActivityResult.qll
@@ -70,7 +70,7 @@ abstract class Configuration extends string {
   /**
    * Holds if `sink` is a relevant data flow sink accepting `state`.
    */
-  predicate isSink(Node source, FlowState state) { none() }
+  predicate isSink(Node sink, FlowState state) { none() }
 
   /**
    * Holds if data flow through `node` is prohibited. This completely removes
diff --git a/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImplForSerializability.qll b/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImplForSerializability.qll
index e4cfd5986be..ccde916a3c2 100644
--- a/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImplForSerializability.qll
+++ b/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImplForSerializability.qll
@@ -70,7 +70,7 @@ abstract class Configuration extends string {
   /**
    * Holds if `sink` is a relevant data flow sink accepting `state`.
    */
-  predicate isSink(Node source, FlowState state) { none() }
+  predicate isSink(Node sink, FlowState state) { none() }
 
   /**
    * Holds if data flow through `node` is prohibited. This completely removes
diff --git a/python/ql/lib/semmle/python/dataflow/new/internal/DataFlowImpl.qll b/python/ql/lib/semmle/python/dataflow/new/internal/DataFlowImpl.qll
index e4cfd5986be..ccde916a3c2 100644
--- a/python/ql/lib/semmle/python/dataflow/new/internal/DataFlowImpl.qll
+++ b/python/ql/lib/semmle/python/dataflow/new/internal/DataFlowImpl.qll
@@ -70,7 +70,7 @@ abstract class Configuration extends string {
   /**
    * Holds if `sink` is a relevant data flow sink accepting `state`.
    */
-  predicate isSink(Node source, FlowState state) { none() }
+  predicate isSink(Node sink, FlowState state) { none() }
 
   /**
    * Holds if data flow through `node` is prohibited. This completely removes
diff --git a/python/ql/lib/semmle/python/dataflow/new/internal/DataFlowImpl2.qll b/python/ql/lib/semmle/python/dataflow/new/internal/DataFlowImpl2.qll
index e4cfd5986be..ccde916a3c2 100644
--- a/python/ql/lib/semmle/python/dataflow/new/internal/DataFlowImpl2.qll
+++ b/python/ql/lib/semmle/python/dataflow/new/internal/DataFlowImpl2.qll
@@ -70,7 +70,7 @@ abstract class Configuration extends string {
   /**
    * Holds if `sink` is a relevant data flow sink accepting `state`.
    */
-  predicate isSink(Node source, FlowState state) { none() }
+  predicate isSink(Node sink, FlowState state) { none() }
 
   /**
    * Holds if data flow through `node` is prohibited. This completely removes
diff --git a/python/ql/lib/semmle/python/dataflow/new/internal/DataFlowImpl3.qll b/python/ql/lib/semmle/python/dataflow/new/internal/DataFlowImpl3.qll
index e4cfd5986be..ccde916a3c2 100644
--- a/python/ql/lib/semmle/python/dataflow/new/internal/DataFlowImpl3.qll
+++ b/python/ql/lib/semmle/python/dataflow/new/internal/DataFlowImpl3.qll
@@ -70,7 +70,7 @@ abstract class Configuration extends string {
   /**
    * Holds if `sink` is a relevant data flow sink accepting `state`.
    */
-  predicate isSink(Node source, FlowState state) { none() }
+  predicate isSink(Node sink, FlowState state) { none() }
 
   /**
    * Holds if data flow through `node` is prohibited. This completely removes
diff --git a/python/ql/lib/semmle/python/dataflow/new/internal/DataFlowImpl4.qll b/python/ql/lib/semmle/python/dataflow/new/internal/DataFlowImpl4.qll
index e4cfd5986be..ccde916a3c2 100644
--- a/python/ql/lib/semmle/python/dataflow/new/internal/DataFlowImpl4.qll
+++ b/python/ql/lib/semmle/python/dataflow/new/internal/DataFlowImpl4.qll
@@ -70,7 +70,7 @@ abstract class Configuration extends string {
   /**
    * Holds if `sink` is a relevant data flow sink accepting `state`.
    */
-  predicate isSink(Node source, FlowState state) { none() }
+  predicate isSink(Node sink, FlowState state) { none() }
 
   /**
    * Holds if data flow through `node` is prohibited. This completely removes
diff --git a/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImpl.qll b/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImpl.qll
index e4cfd5986be..ccde916a3c2 100644
--- a/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImpl.qll
+++ b/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImpl.qll
@@ -70,7 +70,7 @@ abstract class Configuration extends string {
   /**
    * Holds if `sink` is a relevant data flow sink accepting `state`.
    */
-  predicate isSink(Node source, FlowState state) { none() }
+  predicate isSink(Node sink, FlowState state) { none() }
 
   /**
    * Holds if data flow through `node` is prohibited. This completely removes
diff --git a/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImpl2.qll b/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImpl2.qll
index e4cfd5986be..ccde916a3c2 100644
--- a/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImpl2.qll
+++ b/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImpl2.qll
@@ -70,7 +70,7 @@ abstract class Configuration extends string {
   /**
    * Holds if `sink` is a relevant data flow sink accepting `state`.
    */
-  predicate isSink(Node source, FlowState state) { none() }
+  predicate isSink(Node sink, FlowState state) { none() }
 
   /**
    * Holds if data flow through `node` is prohibited. This completely removes
diff --git a/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImplForHttpClientLibraries.qll b/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImplForHttpClientLibraries.qll
index e4cfd5986be..ccde916a3c2 100644
--- a/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImplForHttpClientLibraries.qll
+++ b/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImplForHttpClientLibraries.qll
@@ -70,7 +70,7 @@ abstract class Configuration extends string {
   /**
    * Holds if `sink` is a relevant data flow sink accepting `state`.
    */
-  predicate isSink(Node source, FlowState state) { none() }
+  predicate isSink(Node sink, FlowState state) { none() }
 
   /**
    * Holds if data flow through `node` is prohibited. This completely removes
diff --git a/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImplForPathname.qll b/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImplForPathname.qll
index e4cfd5986be..ccde916a3c2 100644
--- a/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImplForPathname.qll
+++ b/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImplForPathname.qll
@@ -70,7 +70,7 @@ abstract class Configuration extends string {
   /**
    * Holds if `sink` is a relevant data flow sink accepting `state`.
    */
-  predicate isSink(Node source, FlowState state) { none() }
+  predicate isSink(Node sink, FlowState state) { none() }
 
   /**
    * Holds if data flow through `node` is prohibited. This completely removes
diff --git a/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImplForRegExp.qll b/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImplForRegExp.qll
index e4cfd5986be..ccde916a3c2 100644
--- a/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImplForRegExp.qll
+++ b/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImplForRegExp.qll
@@ -70,7 +70,7 @@ abstract class Configuration extends string {
   /**
    * Holds if `sink` is a relevant data flow sink accepting `state`.
    */
-  predicate isSink(Node source, FlowState state) { none() }
+  predicate isSink(Node sink, FlowState state) { none() }
 
   /**
    * Holds if data flow through `node` is prohibited. This completely removes
diff --git a/swift/ql/lib/codeql/swift/dataflow/internal/DataFlowImpl.qll b/swift/ql/lib/codeql/swift/dataflow/internal/DataFlowImpl.qll
index e4cfd5986be..ccde916a3c2 100644
--- a/swift/ql/lib/codeql/swift/dataflow/internal/DataFlowImpl.qll
+++ b/swift/ql/lib/codeql/swift/dataflow/internal/DataFlowImpl.qll
@@ -70,7 +70,7 @@ abstract class Configuration extends string {
   /**
    * Holds if `sink` is a relevant data flow sink accepting `state`.
    */
-  predicate isSink(Node source, FlowState state) { none() }
+  predicate isSink(Node sink, FlowState state) { none() }
 
   /**
    * Holds if data flow through `node` is prohibited. This completely removes

From 6103c577b60d4953ebb6617fde917230d3183e19 Mon Sep 17 00:00:00 2001
From: Arthur Baars <aibaars@github.com>
Date: Wed, 30 Nov 2022 12:02:42 +0100
Subject: [PATCH 0866/1420] Address comments

---
 ruby/ql/lib/codeql/ruby/frameworks/ActiveSupport.qll | 12 ++++++------
 1 file changed, 6 insertions(+), 6 deletions(-)

diff --git a/ruby/ql/lib/codeql/ruby/frameworks/ActiveSupport.qll b/ruby/ql/lib/codeql/ruby/frameworks/ActiveSupport.qll
index 04eeefc18b0..d4490dde6da 100644
--- a/ruby/ql/lib/codeql/ruby/frameworks/ActiveSupport.qll
+++ b/ruby/ql/lib/codeql/ruby/frameworks/ActiveSupport.qll
@@ -328,7 +328,7 @@ module ActiveSupport {
         override MethodCall getACall() { result = mc }
 
         override predicate propagatesFlowExt(string input, string output, boolean preservesValue) {
-          input = "Argument[self].Element[0].Element[" + key + "!]" and
+          input = "Argument[self].Element[0].Element[" + key + "]" and
           output = "ReturnValue" and
           preservesValue = true
         }
@@ -361,8 +361,8 @@ module ActiveSupport {
         override predicate propagatesFlowExt(string input, string output, boolean preservesValue) {
           exists(string s, int i |
             s = getKeyArgument(mc, i) and
-            input = "Argument[self].Element[0].Element[" + s + "!]" and
-            output = "ReturnValue.Element[" + i + "!]"
+            input = "Argument[self].Element[0].Element[" + s + "]" and
+            output = "ReturnValue.Element[" + i + "]"
           ) and
           preservesValue = true
         }
@@ -382,7 +382,7 @@ module ActiveSupport {
         override MethodCall getACall() { result = mc }
 
         override predicate propagatesFlowExt(string input, string output, boolean preservesValue) {
-          input = "Argument[self].Element[any].Element[" + key + "!]" and
+          input = "Argument[self].Element[any].Element[" + key + "]" and
           output = "ReturnValue.Element[any]" and
           preservesValue = true
         }
@@ -415,8 +415,8 @@ module ActiveSupport {
         override predicate propagatesFlowExt(string input, string output, boolean preservesValue) {
           exists(string s, int i |
             s = getKeyArgument(mc, i) and
-            input = "Argument[self].Element[any].Element[" + s + "!]" and
-            output = "ReturnValue.Element[?].Element[" + i + "!]"
+            input = "Argument[self].Element[any].Element[" + s + "]" and
+            output = "ReturnValue.Element[?].Element[" + i + "]"
           ) and
           preservesValue = true
         }

From 635c202ced3e9295eccdcb0af4d305f646e31b8c Mon Sep 17 00:00:00 2001
From: Owen Mansel-Chan <owen-mc@github.com>
Date: Wed, 30 Nov 2022 10:53:54 +0000
Subject: [PATCH 0867/1420] Use `ArgumentPosition` instead of `int`

This matches what all of the other languages do.
---
 .../code/java/dataflow/internal/FlowSummaryImplSpecific.qll     | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/java/ql/lib/semmle/code/java/dataflow/internal/FlowSummaryImplSpecific.qll b/java/ql/lib/semmle/code/java/dataflow/internal/FlowSummaryImplSpecific.qll
index b005bab3257..007105d3e95 100644
--- a/java/ql/lib/semmle/code/java/dataflow/internal/FlowSummaryImplSpecific.qll
+++ b/java/ql/lib/semmle/code/java/dataflow/internal/FlowSummaryImplSpecific.qll
@@ -17,7 +17,7 @@ class SummarizedCallableBase = FlowSummary::SummarizedCallableBase;
 DataFlowCallable inject(SummarizedCallable c) { result.asSummarizedCallable() = c }
 
 /** Gets the parameter position of the instance parameter. */
-int instanceParameterPosition() { result = -1 }
+ArgumentPosition instanceParameterPosition() { result = -1 }
 
 /** Gets the synthesized summary data-flow node for the given values. */
 Node summaryNode(SummarizedCallable c, SummaryNodeState state) { result = getSummaryNode(c, state) }

From 75940dc8b1730572ca6b10286eb38c90bd31f422 Mon Sep 17 00:00:00 2001
From: Owen Mansel-Chan <owen-mc@github.com>
Date: Wed, 30 Nov 2022 10:55:08 +0000
Subject: [PATCH 0868/1420] Remove @codeql-go from code owners for dataflow

---
 CODEOWNERS | 7 -------
 1 file changed, 7 deletions(-)

diff --git a/CODEOWNERS b/CODEOWNERS
index 55ee2f974f7..42fb364418f 100644
--- a/CODEOWNERS
+++ b/CODEOWNERS
@@ -12,13 +12,6 @@
 # ML-powered queries
 /javascript/ql/experimental/adaptivethreatmodeling/ @github/codeql-ml-powered-queries-reviewers
 
-# Notify members of codeql-go about PRs to the shared data-flow library files
-/java/ql/src/semmle/code/java/dataflow/internal/DataFlowImpl.qll @github/codeql-java @github/codeql-go
-/java/ql/src/semmle/code/java/dataflow/internal/DataFlowImpl2.qll @github/codeql-java @github/codeql-go
-/java/ql/src/semmle/code/java/dataflow/internal/DataFlowImplCommon.qll @github/codeql-java @github/codeql-go
-/java/ql/src/semmle/code/java/dataflow/internal/tainttracking1/TaintTrackingImpl.qll @github/codeql-java @github/codeql-go
-/java/ql/src/semmle/code/java/dataflow/internal/tainttracking2/TaintTrackingImpl.qll @github/codeql-java @github/codeql-go
-
 # CodeQL tools and associated docs
 /docs/codeql/codeql-cli/ @github/codeql-cli-reviewers
 /docs/codeql/codeql-for-visual-studio-code/ @github/codeql-vscode-reviewers

From 90d471b486db1103b72e88881da4bfe5ef4cd5c6 Mon Sep 17 00:00:00 2001
From: Alex Denisov <alexdenisov@github.com>
Date: Wed, 16 Nov 2022 14:31:14 +0100
Subject: [PATCH 0869/1420] Swift: upgrade to Swift 5.7.1

---
 misc/bazel/workspace.bzl                               | 10 +++++-----
 .../ModuleDecl/ModuleDecl_getImportedModule.expected   | 10 ++++++----
 2 files changed, 11 insertions(+), 9 deletions(-)

diff --git a/misc/bazel/workspace.bzl b/misc/bazel/workspace.bzl
index 4248a09d47a..df5995b499b 100644
--- a/misc/bazel/workspace.bzl
+++ b/misc/bazel/workspace.bzl
@@ -1,15 +1,15 @@
 load("@bazel_tools//tools/build_defs/repo:http.bzl", "http_archive")
 load("@bazel_tools//tools/build_defs/repo:utils.bzl", "maybe")
 
-_swift_prebuilt_version = "swift-5.7-RELEASE.43809.66"
+_swift_prebuilt_version = "swift-5.7.1-RELEASE.44356.85"
 _swift_sha_map = {
-    "linux": "8c6480ed4b38bf46d2e55a97f08c38ae183bfeb68649f98193b7540b04428741",
-    "macos-x86_64": "ab103774b384a7f3f01c0d876699cae6afafe6cf2ee458b77b9aac6e08e4ca4d",
+    "Linux-X64": "c9f17e13cac89f097aaaa65b1bc32aac566c8e4f3b68fc18e970cc3ee31f4913",
+    "macOS-X64": "638ac0552e9e1ccee9e276525d1ea9454256feec20bc778efa8856fd6e506987",
 }
 
 _swift_arch_map = {
-    "linux": "linux",
-    "macos-x86_64": "darwin_x86_64",
+    "Linux-X64": "linux",
+    "macOS-X64": "darwin_x86_64",
 }
 
 def codeql_workspace(repository_name = "codeql"):
diff --git a/swift/ql/test/extractor-tests/generated/decl/ModuleDecl/ModuleDecl_getImportedModule.expected b/swift/ql/test/extractor-tests/generated/decl/ModuleDecl/ModuleDecl_getImportedModule.expected
index 7e29a9ce479..ca1793b95ef 100644
--- a/swift/ql/test/extractor-tests/generated/decl/ModuleDecl/ModuleDecl_getImportedModule.expected
+++ b/swift/ql/test/extractor-tests/generated/decl/ModuleDecl/ModuleDecl_getImportedModule.expected
@@ -1,7 +1,9 @@
 | file://:0:0:0:0 | Foo | 0 | file://:0:0:0:0 | Swift |
-| file://:0:0:0:0 | Foo | 1 | file://:0:0:0:0 | _Concurrency |
-| file://:0:0:0:0 | Foo | 2 | file://:0:0:0:0 | SwiftOnoneSupport |
+| file://:0:0:0:0 | Foo | 1 | file://:0:0:0:0 | _StringProcessing |
+| file://:0:0:0:0 | Foo | 2 | file://:0:0:0:0 | _Concurrency |
+| file://:0:0:0:0 | Foo | 3 | file://:0:0:0:0 | SwiftOnoneSupport |
 | file://:0:0:0:0 | __ObjC | 0 | file://:0:0:0:0 | Swift |
 | file://:0:0:0:0 | default_module_name | 0 | file://:0:0:0:0 | Swift |
-| file://:0:0:0:0 | default_module_name | 1 | file://:0:0:0:0 | _Concurrency |
-| file://:0:0:0:0 | default_module_name | 2 | file://:0:0:0:0 | SwiftOnoneSupport |
+| file://:0:0:0:0 | default_module_name | 1 | file://:0:0:0:0 | _StringProcessing |
+| file://:0:0:0:0 | default_module_name | 2 | file://:0:0:0:0 | _Concurrency |
+| file://:0:0:0:0 | default_module_name | 3 | file://:0:0:0:0 | SwiftOnoneSupport |

From f618d53302b9b36d3f2ed3a825d2354f54de5d5e Mon Sep 17 00:00:00 2001
From: Alex Denisov <alexdenisov@github.com>
Date: Wed, 23 Nov 2022 12:33:41 +0100
Subject: [PATCH 0870/1420] Swift: add new implicit conversion

---
 swift/extractor/infra/SwiftTagTraits.h        |  2 ++
 swift/ql/.generated.list                      | 13 +++++----
 swift/ql/lib/codeql/swift/elements.qll        |  1 +
 .../elements/expr/AbiSafeConversionExpr.qll   |  4 +++
 .../expr/AbiSafeConversionExprConstructor.qll |  4 +++
 .../codeql/swift/generated/ParentChild.qll    | 19 +++++++++++++
 swift/ql/lib/codeql/swift/generated/Raw.qll   |  4 +++
 swift/ql/lib/codeql/swift/generated/Synth.qll | 27 ++++++++++++++-----
 .../swift/generated/SynthConstructors.qll     |  1 +
 .../generated/expr/AbiSafeConversionExpr.qll  | 10 +++++++
 swift/ql/lib/swift.dbscheme                   |  7 ++++-
 .../ImplicitConversionExpr.expected           |  2 ++
 .../ImplicitConversionExpr_getType.expected   |  2 ++
 .../implicit_conversions.swift                |  9 +++++++
 swift/schema.py                               |  3 +++
 15 files changed, 96 insertions(+), 12 deletions(-)
 create mode 100644 swift/ql/lib/codeql/swift/elements/expr/AbiSafeConversionExpr.qll
 create mode 100644 swift/ql/lib/codeql/swift/elements/expr/AbiSafeConversionExprConstructor.qll
 create mode 100644 swift/ql/lib/codeql/swift/generated/expr/AbiSafeConversionExpr.qll

diff --git a/swift/extractor/infra/SwiftTagTraits.h b/swift/extractor/infra/SwiftTagTraits.h
index 78b7bcc530e..5c3c2305460 100644
--- a/swift/extractor/infra/SwiftTagTraits.h
+++ b/swift/extractor/infra/SwiftTagTraits.h
@@ -36,6 +36,8 @@ using SILTokenTypeTag = void;
 // This is created during type checking and is only used for constraint checking
 using TypeVariableTypeTag = void;
 
+using ABISafeConversionExprTag = AbiSafeConversionExprTag;
+
 #define MAP_TYPE_TO_TAG(TYPE, TAG)    \
   template <>                         \
   struct detail::ToTagFunctor<TYPE> { \
diff --git a/swift/ql/.generated.list b/swift/ql/.generated.list
index 098740a9329..597e435a0f7 100644
--- a/swift/ql/.generated.list
+++ b/swift/ql/.generated.list
@@ -58,6 +58,8 @@ ql/lib/codeql/swift/elements/decl/TopLevelCodeDeclConstructor.qll 6920a4e7aec45a
 ql/lib/codeql/swift/elements/decl/TypeAliasDecl.qll ecb457a9a81c6b13a1068f471c0b87e59227838f54c5d4effe7d4c2f6e7f5800 630dc9cbf20603855c599a9f86037ba0d889ad3d2c2b6f9ac17508d398bff9e3
 ql/lib/codeql/swift/elements/decl/TypeAliasDeclConstructor.qll ba70bb69b3a14283def254cc1859c29963838f624b3f1062a200a8df38f1edd5 96ac51d1b3156d4139e583f7f803e9eb95fe25cc61c12986e1b2972a781f9c8b
 ql/lib/codeql/swift/elements/decl/ValueDecl.qll b344768498e0d1794d92bc5b7c0417e75079aa8a82e27d7b3449f1e52f78d1e9 e3056cf6a883da2737cb220a89499a9e3977eb1c56b9e1d2f41a56b71a0c29f9
+ql/lib/codeql/swift/elements/expr/AbiSafeConversionExpr.qll 599bdb52d99a1e2800563209cecc01a5b5eb80cb4aff36b2d037b67c34ebb948 a87738539276438cef63145461adf25309d1938cfac367f53f53d33db9b12844
+ql/lib/codeql/swift/elements/expr/AbiSafeConversionExprConstructor.qll 7d70e7c47a9919efcb1ebcbf70e69cab1be30dd006297b75f6d72b25ae75502a e7a741c42401963f0c1da414b3ae779adeba091e9b8f56c9abf2a686e3a04d52
 ql/lib/codeql/swift/elements/expr/AbstractClosureExpr.qll 125f8bd8f21c95c439616744539577afcfa9fd63c65683132a2c971abcec3523 400790fe643585ad39f40c433eff8934bbe542d140b81341bca3b6dfc5b22861
 ql/lib/codeql/swift/elements/expr/AnyHashableErasureExpr.qll 20dd848a35a47af94d0fb8cf1a33a2bd6582c751440708c365cf338e522f6de5 bf80cab3e9ff5366a6223153409f4852acdb9e4a5d464fb73b2a8cffc664ca29
 ql/lib/codeql/swift/elements/expr/AnyHashableErasureExprConstructor.qll 12816f18d079477176519a20b0f1262fc84da98f60bce3d3dd6476098c6542e7 4cc5c8492a97f4639e7d857f2fca9065293dfa953d6af451206ce911cda9f323
@@ -366,7 +368,7 @@ ql/lib/codeql/swift/elements/type/VariadicSequenceType.qll 5bca77dd661d3b2653d31
 ql/lib/codeql/swift/elements/type/VariadicSequenceTypeConstructor.qll 0d1d2328a3b5e503a883e7e6d7efd0ca5e7f2633abead9e4c94a9f98ed3cb223 69bff81c1b9413949eacb9298d2efb718ea808e68364569a1090c9878c4af856
 ql/lib/codeql/swift/elements/type/WeakStorageType.qll 87a28616eea3600fb0156fffcd65eeddc1ea74ce9c0ba5886c6365b9359e00ce 9c968414d7cc8d672f3754bced5d4f83f43a6d7872d0d263d79ff60483e1f996
 ql/lib/codeql/swift/elements/type/WeakStorageTypeConstructor.qll d88b031ef44d6de14b3ddcff2eb47b53dbd11550c37250ff2edb42e5d21ec3e9 26d855c33492cf7a118e439f7baeed0e5425cfaf058b1dcc007eca7ed765c897
-ql/lib/codeql/swift/elements.qll af0ce7fc361a5cffdbdfbe1c7ff2a5addf6b8a79e3fc062f266776bc97886c33 af0ce7fc361a5cffdbdfbe1c7ff2a5addf6b8a79e3fc062f266776bc97886c33
+ql/lib/codeql/swift/elements.qll 954945d6d4939b28e024b85f77c58ab5b4fab2c931aa5650e22d8ded97a7eda9 954945d6d4939b28e024b85f77c58ab5b4fab2c931aa5650e22d8ded97a7eda9
 ql/lib/codeql/swift/generated/AstNode.qll 02ca56d82801f942ae6265c6079d92ccafdf6b532f6bcebd98a04029ddf696e4 6216fda240e45bd4302fa0cf0f08f5f945418b144659264cdda84622b0420aa2
 ql/lib/codeql/swift/generated/Callable.qll f4050fac68d745fe0fc4d7bd6cff7c326d6c19a5820a780e1d7e589328b1e550 b6540534acc0b583481a18918264b95a129f13ad26256abe667bf4f72c4432d2
 ql/lib/codeql/swift/generated/Comment.qll f58b49f6e68c21f87c51e2ff84c8a64b09286d733e86f70d67d3a98fe6260bd6 975bbb599a2a7adc35179f6ae06d9cbc56ea8a03b972ef2ee87604834bc6deb1
@@ -378,11 +380,11 @@ ql/lib/codeql/swift/generated/ErrorElement.qll 4b032abe8ffb71376a29c63e470a52943
 ql/lib/codeql/swift/generated/File.qll 61454459f5f1ae378bd4970ad1da4f39f3e696bac8a5eebdd162f131995c5316 3e6805f8858cd55dd0e0d0e5aeab923d6a55292dbf98b0029db1ae0208efe684
 ql/lib/codeql/swift/generated/Locatable.qll bdc98b9fb7788f44a4bf7e487ee5bd329473409950a8e9f116d61995615ad849 0b36b4fe45e2aa195e4bb70c50ea95f32f141b8e01e5f23466c6427dd9ab88fb
 ql/lib/codeql/swift/generated/Location.qll 851766e474cdfdfa67da42e0031fc42dd60196ff5edd39d82f08d3e32deb84c1 b29b2c37672f5acff15f1d3c5727d902f193e51122327b31bd27ec5f877bca3b
-ql/lib/codeql/swift/generated/ParentChild.qll d9c1edbbb28e685d31153c3a17419e80fd106cb580ef8440e25a8709e7f4c021 e0e59a05018e4b59ebda3a9fdc3435b1c82207b915630d55edbe6d3f92488356
+ql/lib/codeql/swift/generated/ParentChild.qll 0667eb3c260b97beefd4934c80f7ffd2350488807effb3fd79bf187d179cd9bb dc0d237357baa46fae3e453d0446646c6a444155f08a9811aa29167c8cd34c73
 ql/lib/codeql/swift/generated/PureSynthConstructors.qll 1cd47d61fec37e019ce2e476603eb2273775bea81062d6bf3d6bbc49796f7b77 1cd47d61fec37e019ce2e476603eb2273775bea81062d6bf3d6bbc49796f7b77
-ql/lib/codeql/swift/generated/Raw.qll 74159a7425c2da672d72e71655d27af3479b0acc23d871eafcee7d044d013550 0a6e8a85fbfd7262c983b6a6fedabbe9f11648edbcc52cba5828b97fe18fbd02
-ql/lib/codeql/swift/generated/Synth.qll 90df85be365c89c3c2e22041ee7dc9dd2ad9194b66f82e8f9d8fefb8afd900ec 1632984f7a55f6bc55adb9f647baf634b002c299655cbf641dfb110525291689
-ql/lib/codeql/swift/generated/SynthConstructors.qll 5c91f09bd82728651ed61f498704e0f62847788fa986dec5e674d81f294076c7 5c91f09bd82728651ed61f498704e0f62847788fa986dec5e674d81f294076c7
+ql/lib/codeql/swift/generated/Raw.qll 6b8e3e3d86254d5689b17a08c41d23cda0d913b5d3b22b18b55aa00363ace6df 3736f05fc2c2eb6a9d9dd0d244061abe72161714cd435233106804472213e2b1
+ql/lib/codeql/swift/generated/Synth.qll cc7285c43e6c9f47ab67047916d232ad2078443b342ba1bb036c147127c40167 522a3ba4fc7f9fbb0b7d12fc5177fa0a0d2f8239bd6b4c36fc7d7a918fcdcccf
+ql/lib/codeql/swift/generated/SynthConstructors.qll 0ff9cfcd64e7701003091f366ec903ec1bf82ec8385ee683b6e7b4e189033b11 0ff9cfcd64e7701003091f366ec903ec1bf82ec8385ee683b6e7b4e189033b11
 ql/lib/codeql/swift/generated/UnknownFile.qll 0fcf9beb8de79440bcdfff4bb6ab3dd139bd273e6c32754e05e6a632651e85f6 0fcf9beb8de79440bcdfff4bb6ab3dd139bd273e6c32754e05e6a632651e85f6
 ql/lib/codeql/swift/generated/UnknownLocation.qll e50efefa02a0ec1ff635a00951b5924602fc8cab57e5756e4a039382c69d3882 e50efefa02a0ec1ff635a00951b5924602fc8cab57e5756e4a039382c69d3882
 ql/lib/codeql/swift/generated/UnspecifiedElement.qll dbc6ca4018012977b26ca184a88044c55b0661e3998cd14d46295b62a8d69625 184c9a0ce18c2ac881943b0fb400613d1401ed1d5564f90716b6c310ba5afe71
@@ -428,6 +430,7 @@ ql/lib/codeql/swift/generated/decl/TypeAliasDecl.qll 15cb5bdbe9d722c403874f744bf
 ql/lib/codeql/swift/generated/decl/TypeDecl.qll 3fb055ab433ec40186f822c5711e3d47f9084fb12a1faee550e1e3e2507cfb45 1f46f7ae90c414c5d00bc2e33c86aa80f5ffddfd6be1853d8d6d4222b8e3f584
 ql/lib/codeql/swift/generated/decl/ValueDecl.qll 7b4e4c9334be676f242857c77099306d8a0a4357b253f8bc68f71328cedf1f58 f18938c47f670f2e0c27ffd7e31e55f291f88fb50d8e576fcea116d5f9e5c66d
 ql/lib/codeql/swift/generated/decl/VarDecl.qll 2fca00ba8b535d7cefc2fa863246a0821437ca29b885c4c30362e8a63f284479 5ba623001e071c16267e94d050bfd973addf2436152c7726945b5d87aa521af8
+ql/lib/codeql/swift/generated/expr/AbiSafeConversionExpr.qll f4c913df3f1c139a0533f9a3a2f2e07aee96ab723c957fc7153d68564e4fdd6d f4c913df3f1c139a0533f9a3a2f2e07aee96ab723c957fc7153d68564e4fdd6d
 ql/lib/codeql/swift/generated/expr/AbstractClosureExpr.qll f0060c2972d2e1f9818d8deea3ceebbbe0b19d2ce11adc9b670beb672c4564d3 5f2500c5f3728f81599bd4e1fb9c97ac5a44a6dce8c1ab84a850c62aae3741ff
 ql/lib/codeql/swift/generated/expr/AnyHashableErasureExpr.qll f450ac8e316def1cd64dcb61411bae191144079df7f313a5973e59dc89fe367f f450ac8e316def1cd64dcb61411bae191144079df7f313a5973e59dc89fe367f
 ql/lib/codeql/swift/generated/expr/AnyTryExpr.qll f2929f39407e1717b91fc41f593bd52f1ae14c619d61598bd0668a478a04a91e 62693c2c18678af1ff9ce5393f0dd87c5381e567b340f1a8a9ecf91a92e2e666
diff --git a/swift/ql/lib/codeql/swift/elements.qll b/swift/ql/lib/codeql/swift/elements.qll
index ed474615518..672c5fc73cf 100644
--- a/swift/ql/lib/codeql/swift/elements.qll
+++ b/swift/ql/lib/codeql/swift/elements.qll
@@ -55,6 +55,7 @@ import codeql.swift.elements.decl.TypeAliasDecl
 import codeql.swift.elements.decl.TypeDecl
 import codeql.swift.elements.decl.ValueDecl
 import codeql.swift.elements.decl.VarDecl
+import codeql.swift.elements.expr.AbiSafeConversionExpr
 import codeql.swift.elements.expr.AbstractClosureExpr
 import codeql.swift.elements.expr.AnyHashableErasureExpr
 import codeql.swift.elements.expr.AnyTryExpr
diff --git a/swift/ql/lib/codeql/swift/elements/expr/AbiSafeConversionExpr.qll b/swift/ql/lib/codeql/swift/elements/expr/AbiSafeConversionExpr.qll
new file mode 100644
index 00000000000..1a86e009f7a
--- /dev/null
+++ b/swift/ql/lib/codeql/swift/elements/expr/AbiSafeConversionExpr.qll
@@ -0,0 +1,4 @@
+// generated by codegen/codegen.py, remove this comment if you wish to edit this file
+private import codeql.swift.generated.expr.AbiSafeConversionExpr
+
+class AbiSafeConversionExpr extends Generated::AbiSafeConversionExpr { }
diff --git a/swift/ql/lib/codeql/swift/elements/expr/AbiSafeConversionExprConstructor.qll b/swift/ql/lib/codeql/swift/elements/expr/AbiSafeConversionExprConstructor.qll
new file mode 100644
index 00000000000..0ffc0618124
--- /dev/null
+++ b/swift/ql/lib/codeql/swift/elements/expr/AbiSafeConversionExprConstructor.qll
@@ -0,0 +1,4 @@
+// generated by codegen/codegen.py, remove this comment if you wish to edit this file
+private import codeql.swift.generated.Raw
+
+predicate constructAbiSafeConversionExpr(Raw::AbiSafeConversionExpr id) { any() }
diff --git a/swift/ql/lib/codeql/swift/generated/ParentChild.qll b/swift/ql/lib/codeql/swift/generated/ParentChild.qll
index fe182ec2360..a44d0f746dd 100644
--- a/swift/ql/lib/codeql/swift/generated/ParentChild.qll
+++ b/swift/ql/lib/codeql/swift/generated/ParentChild.qll
@@ -1872,6 +1872,23 @@ private module Impl {
     )
   }
 
+  private Element getImmediateChildOfAbiSafeConversionExpr(
+    AbiSafeConversionExpr e, int index, string partialPredicateCall
+  ) {
+    exists(int b, int bImplicitConversionExpr, int n |
+      b = 0 and
+      bImplicitConversionExpr =
+        b + 1 +
+          max(int i | i = -1 or exists(getImmediateChildOfImplicitConversionExpr(e, i, _)) | i) and
+      n = bImplicitConversionExpr and
+      (
+        none()
+        or
+        result = getImmediateChildOfImplicitConversionExpr(e, index - b, partialPredicateCall)
+      )
+    )
+  }
+
   private Element getImmediateChildOfAnyHashableErasureExpr(
     AnyHashableErasureExpr e, int index, string partialPredicateCall
   ) {
@@ -4885,6 +4902,8 @@ private module Impl {
     or
     result = getImmediateChildOfVarargExpansionExpr(e, index, partialAccessor)
     or
+    result = getImmediateChildOfAbiSafeConversionExpr(e, index, partialAccessor)
+    or
     result = getImmediateChildOfAnyHashableErasureExpr(e, index, partialAccessor)
     or
     result = getImmediateChildOfArchetypeToSuperExpr(e, index, partialAccessor)
diff --git a/swift/ql/lib/codeql/swift/generated/Raw.qll b/swift/ql/lib/codeql/swift/generated/Raw.qll
index a15be0be546..66083c2bfd6 100644
--- a/swift/ql/lib/codeql/swift/generated/Raw.qll
+++ b/swift/ql/lib/codeql/swift/generated/Raw.qll
@@ -677,6 +677,10 @@ module Raw {
     Expr getSubExpr() { vararg_expansion_exprs(this, result) }
   }
 
+  class AbiSafeConversionExpr extends @abi_safe_conversion_expr, ImplicitConversionExpr {
+    override string toString() { result = "AbiSafeConversionExpr" }
+  }
+
   class AnyHashableErasureExpr extends @any_hashable_erasure_expr, ImplicitConversionExpr {
     override string toString() { result = "AnyHashableErasureExpr" }
   }
diff --git a/swift/ql/lib/codeql/swift/generated/Synth.qll b/swift/ql/lib/codeql/swift/generated/Synth.qll
index b292cc8dbd4..4671a86634c 100644
--- a/swift/ql/lib/codeql/swift/generated/Synth.qll
+++ b/swift/ql/lib/codeql/swift/generated/Synth.qll
@@ -41,6 +41,7 @@ module Synth {
     TSubscriptDecl(Raw::SubscriptDecl id) { constructSubscriptDecl(id) } or
     TTopLevelCodeDecl(Raw::TopLevelCodeDecl id) { constructTopLevelCodeDecl(id) } or
     TTypeAliasDecl(Raw::TypeAliasDecl id) { constructTypeAliasDecl(id) } or
+    TAbiSafeConversionExpr(Raw::AbiSafeConversionExpr id) { constructAbiSafeConversionExpr(id) } or
     TAnyHashableErasureExpr(Raw::AnyHashableErasureExpr id) { constructAnyHashableErasureExpr(id) } or
     TAppliedPropertyWrapperExpr(Raw::AppliedPropertyWrapperExpr id) {
       constructAppliedPropertyWrapperExpr(id)
@@ -386,12 +387,12 @@ module Synth {
     TAwaitExpr or TDotSelfExpr or TParenExpr or TUnresolvedMemberChainResultExpr;
 
   class TImplicitConversionExpr =
-    TAnyHashableErasureExpr or TArchetypeToSuperExpr or TArrayToPointerExpr or
-        TBridgeFromObjCExpr or TBridgeToObjCExpr or TClassMetatypeToObjectExpr or
-        TCollectionUpcastConversionExpr or TConditionalBridgeFromObjCExpr or
-        TCovariantFunctionConversionExpr or TCovariantReturnConversionExpr or TDerivedToBaseExpr or
-        TDestructureTupleExpr or TDifferentiableFunctionExpr or
-        TDifferentiableFunctionExtractOriginalExpr or TErasureExpr or
+    TAbiSafeConversionExpr or TAnyHashableErasureExpr or TArchetypeToSuperExpr or
+        TArrayToPointerExpr or TBridgeFromObjCExpr or TBridgeToObjCExpr or
+        TClassMetatypeToObjectExpr or TCollectionUpcastConversionExpr or
+        TConditionalBridgeFromObjCExpr or TCovariantFunctionConversionExpr or
+        TCovariantReturnConversionExpr or TDerivedToBaseExpr or TDestructureTupleExpr or
+        TDifferentiableFunctionExpr or TDifferentiableFunctionExtractOriginalExpr or TErasureExpr or
         TExistentialMetatypeToObjectExpr or TForeignObjectConversionExpr or
         TFunctionConversionExpr or TInOutToPointerExpr or TInjectIntoOptionalExpr or
         TLinearFunctionExpr or TLinearFunctionExtractOriginalExpr or
@@ -592,6 +593,11 @@ module Synth {
   cached
   TTypeAliasDecl convertTypeAliasDeclFromRaw(Raw::Element e) { result = TTypeAliasDecl(e) }
 
+  cached
+  TAbiSafeConversionExpr convertAbiSafeConversionExprFromRaw(Raw::Element e) {
+    result = TAbiSafeConversionExpr(e)
+  }
+
   cached
   TAnyHashableErasureExpr convertAnyHashableErasureExprFromRaw(Raw::Element e) {
     result = TAnyHashableErasureExpr(e)
@@ -1751,6 +1757,8 @@ module Synth {
 
   cached
   TImplicitConversionExpr convertImplicitConversionExprFromRaw(Raw::Element e) {
+    result = convertAbiSafeConversionExprFromRaw(e)
+    or
     result = convertAnyHashableErasureExprFromRaw(e)
     or
     result = convertArchetypeToSuperExprFromRaw(e)
@@ -2225,6 +2233,11 @@ module Synth {
   cached
   Raw::Element convertTypeAliasDeclToRaw(TTypeAliasDecl e) { e = TTypeAliasDecl(result) }
 
+  cached
+  Raw::Element convertAbiSafeConversionExprToRaw(TAbiSafeConversionExpr e) {
+    e = TAbiSafeConversionExpr(result)
+  }
+
   cached
   Raw::Element convertAnyHashableErasureExprToRaw(TAnyHashableErasureExpr e) {
     e = TAnyHashableErasureExpr(result)
@@ -3382,6 +3395,8 @@ module Synth {
 
   cached
   Raw::Element convertImplicitConversionExprToRaw(TImplicitConversionExpr e) {
+    result = convertAbiSafeConversionExprToRaw(e)
+    or
     result = convertAnyHashableErasureExprToRaw(e)
     or
     result = convertArchetypeToSuperExprToRaw(e)
diff --git a/swift/ql/lib/codeql/swift/generated/SynthConstructors.qll b/swift/ql/lib/codeql/swift/generated/SynthConstructors.qll
index 2009999e1d8..4623b04b784 100644
--- a/swift/ql/lib/codeql/swift/generated/SynthConstructors.qll
+++ b/swift/ql/lib/codeql/swift/generated/SynthConstructors.qll
@@ -33,6 +33,7 @@ import codeql.swift.elements.decl.StructDeclConstructor
 import codeql.swift.elements.decl.SubscriptDeclConstructor
 import codeql.swift.elements.decl.TopLevelCodeDeclConstructor
 import codeql.swift.elements.decl.TypeAliasDeclConstructor
+import codeql.swift.elements.expr.AbiSafeConversionExprConstructor
 import codeql.swift.elements.expr.AnyHashableErasureExprConstructor
 import codeql.swift.elements.expr.AppliedPropertyWrapperExprConstructor
 import codeql.swift.elements.expr.ArchetypeToSuperExprConstructor
diff --git a/swift/ql/lib/codeql/swift/generated/expr/AbiSafeConversionExpr.qll b/swift/ql/lib/codeql/swift/generated/expr/AbiSafeConversionExpr.qll
new file mode 100644
index 00000000000..3908c403ba5
--- /dev/null
+++ b/swift/ql/lib/codeql/swift/generated/expr/AbiSafeConversionExpr.qll
@@ -0,0 +1,10 @@
+// generated by codegen/codegen.py
+private import codeql.swift.generated.Synth
+private import codeql.swift.generated.Raw
+import codeql.swift.elements.expr.ImplicitConversionExpr
+
+module Generated {
+  class AbiSafeConversionExpr extends Synth::TAbiSafeConversionExpr, ImplicitConversionExpr {
+    override string getAPrimaryQlClass() { result = "AbiSafeConversionExpr" }
+  }
+}
diff --git a/swift/ql/lib/swift.dbscheme b/swift/ql/lib/swift.dbscheme
index 1a6e9325bd6..62fc609c1ab 100644
--- a/swift/ql/lib/swift.dbscheme
+++ b/swift/ql/lib/swift.dbscheme
@@ -870,7 +870,8 @@ if_exprs(  //dir=expr
 );
 
 @implicit_conversion_expr =
-  @any_hashable_erasure_expr
+  @abi_safe_conversion_expr
+| @any_hashable_erasure_expr
 | @archetype_to_super_expr
 | @array_to_pointer_expr
 | @bridge_from_obj_c_expr
@@ -1129,6 +1130,10 @@ vararg_expansion_exprs(  //dir=expr
   int sub_expr: @expr_or_none ref
 );
 
+abi_safe_conversion_exprs(  //dir=expr
+  unique int id: @abi_safe_conversion_expr
+);
+
 any_hashable_erasure_exprs(  //dir=expr
   unique int id: @any_hashable_erasure_expr
 );
diff --git a/swift/ql/test/extractor-tests/generated/expr/ImplicitConversionExpr/ImplicitConversionExpr.expected b/swift/ql/test/extractor-tests/generated/expr/ImplicitConversionExpr/ImplicitConversionExpr.expected
index 2fb20ad740c..fcc62b36775 100644
--- a/swift/ql/test/extractor-tests/generated/expr/ImplicitConversionExpr/ImplicitConversionExpr.expected
+++ b/swift/ql/test/extractor-tests/generated/expr/ImplicitConversionExpr/ImplicitConversionExpr.expected
@@ -1,3 +1,5 @@
 | implicit_conversions.swift:2:3:2:3 | (UnsafePointer<CChar>) ... | StringToPointerExpr | getSubExpr: | implicit_conversions.swift:2:3:2:3 | Hello |
 | implicit_conversions.swift:4:16:4:16 | (Int?) ... | InjectIntoOptionalExpr | getSubExpr: | implicit_conversions.swift:4:16:4:16 | 42 |
 | implicit_conversions.swift:5:25:5:25 | (Equatable) ... | ErasureExpr | getSubExpr: | implicit_conversions.swift:5:25:5:25 | 42 |
+| implicit_conversions.swift:12:3:12:5 | (@lvalue (() -> Void)?) ... | AbiSafeConversionExpr | getSubExpr: | implicit_conversions.swift:12:3:12:5 | .b |
+| implicit_conversions.swift:12:9:12:10 | ((() -> Void)?) ... | InjectIntoOptionalExpr | getSubExpr: | implicit_conversions.swift:12:9:12:10 | { ... } |
diff --git a/swift/ql/test/extractor-tests/generated/expr/ImplicitConversionExpr/ImplicitConversionExpr_getType.expected b/swift/ql/test/extractor-tests/generated/expr/ImplicitConversionExpr/ImplicitConversionExpr_getType.expected
index 470228364ae..d8dfc2cd957 100644
--- a/swift/ql/test/extractor-tests/generated/expr/ImplicitConversionExpr/ImplicitConversionExpr_getType.expected
+++ b/swift/ql/test/extractor-tests/generated/expr/ImplicitConversionExpr/ImplicitConversionExpr_getType.expected
@@ -1,3 +1,5 @@
 | implicit_conversions.swift:2:3:2:3 | (UnsafePointer<CChar>) ... | UnsafePointer<CChar> |
 | implicit_conversions.swift:4:16:4:16 | (Int?) ... | Int? |
 | implicit_conversions.swift:5:25:5:25 | (Equatable) ... | Equatable |
+| implicit_conversions.swift:12:3:12:5 | (@lvalue (() -> Void)?) ... | @lvalue (() -> Void)? |
+| implicit_conversions.swift:12:9:12:10 | ((() -> Void)?) ... | (() -> Void)? |
diff --git a/swift/ql/test/extractor-tests/generated/expr/ImplicitConversionExpr/implicit_conversions.swift b/swift/ql/test/extractor-tests/generated/expr/ImplicitConversionExpr/implicit_conversions.swift
index 62a5197d420..6bd2b4b3fb1 100644
--- a/swift/ql/test/extractor-tests/generated/expr/ImplicitConversionExpr/implicit_conversions.swift
+++ b/swift/ql/test/extractor-tests/generated/expr/ImplicitConversionExpr/implicit_conversions.swift
@@ -3,3 +3,12 @@ f("Hello")  // StringToPointerExpr
 
 let a : Int? = 42  // InjectIntoOptionalExpr
 let b : any Equatable = 42  // ErasureExpr
+
+@preconcurrency class A {
+  @preconcurrency var b: (@Sendable () -> Void)?
+}
+
+func g(_ a: A) {
+  a.b = {}
+}
+
diff --git a/swift/schema.py b/swift/schema.py
index 3162c1277e0..7654f9e2ec8 100644
--- a/swift/schema.py
+++ b/swift/schema.py
@@ -1040,3 +1040,6 @@ class ParameterizedProtocolType(Type):
     """
     base: ProtocolType
     args: list[Type]
+
+class AbiSafeConversionExpr(ImplicitConversionExpr):
+    pass

From 67fb56deb8879a353aa25efa6a0a6f1323cbf735 Mon Sep 17 00:00:00 2001
From: Alex Denisov <alexdenisov@github.com>
Date: Thu, 24 Nov 2022 15:36:35 +0100
Subject: [PATCH 0871/1420] Swift: workaround an internal crash coming from
 Swift 5.7.1

---
 swift/extractor/infra/SwiftDispatcher.h | 11 +++++++++++
 1 file changed, 11 insertions(+)

diff --git a/swift/extractor/infra/SwiftDispatcher.h b/swift/extractor/infra/SwiftDispatcher.h
index 991511e300c..0175bba1e6b 100644
--- a/swift/extractor/infra/SwiftDispatcher.h
+++ b/swift/extractor/infra/SwiftDispatcher.h
@@ -215,6 +215,17 @@ class SwiftDispatcher {
   // Emits a Location TRAP entry and attaches it to a `Locatable` trap label
   template <typename Locatable>
   void attachLocation(Locatable* locatable, TrapLabel<LocatableTag> locatableLabel) {
+    // Swift 5.7.1 causing a crash when the Swift compiler uses .back() of and empty
+    // getPatternList() when getting the source location.
+    // So far this only observed with the entities coming from precompiled modules, so they
+    // should not have locations anyway.
+    if constexpr (std::is_base_of<swift::Decl, Locatable>::value) {
+      if (auto* decl = llvm::dyn_cast<swift::PatternBindingDecl>(locatable)) {
+        if (decl->getPatternList().empty()) {
+          return;
+        }
+      }
+    }
     attachLocation(locatable->getStartLoc(), locatable->getEndLoc(), locatableLabel);
   }
 

From ad663533c7ed9b1b6fe4c976e6ba9a824125dad5 Mon Sep 17 00:00:00 2001
From: Alex Denisov <alexdenisov@github.com>
Date: Wed, 30 Nov 2022 08:27:36 +0100
Subject: [PATCH 0872/1420] Swift: bump setup Swift action

---
 swift/actions/run-integration-tests/action.yml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/swift/actions/run-integration-tests/action.yml b/swift/actions/run-integration-tests/action.yml
index 6894ef461bc..27ea6cde433 100644
--- a/swift/actions/run-integration-tests/action.yml
+++ b/swift/actions/run-integration-tests/action.yml
@@ -13,7 +13,7 @@ runs:
     - uses: actions/setup-python@v4
       with:
         python-version-file: 'swift/.python-version'
-    - uses: swift-actions/setup-swift@5cdaa9161ad1f55ae39a5ea1784ef96de72f95d9
+    - uses: swift-actions/setup-swift@194625b58a582570f61cc707c3b558086c26b723
       with:
         swift-version: "${{steps.get_swift_version.outputs.version}}"
     - uses: ./.github/actions/fetch-codeql

From fe0ae6bf0b0f7bc71ddea0c0d22335bb4fd94309 Mon Sep 17 00:00:00 2001
From: Alex Denisov <alexdenisov@github.com>
Date: Thu, 24 Nov 2022 10:31:04 +0100
Subject: [PATCH 0873/1420] Swift: add 5.7.1 migration scripts

---
 .../implicit_conversion_exprs.ql              |    8 +
 .../old.dbscheme                              | 2518 +++++++++++++++++
 .../swift.dbscheme                            | 2513 ++++++++++++++++
 .../unspecified_elements.ql                   |   13 +
 .../upgrade.properties                        |    5 +
 .../old.dbscheme                              | 2513 ++++++++++++++++
 .../swift.dbscheme                            | 2518 +++++++++++++++++
 .../upgrade.properties                        |    2 +
 8 files changed, 10090 insertions(+)
 create mode 100644 swift/downgrades/62fc609c1ab6ae748ff51362ffa5c368ba834ddf/implicit_conversion_exprs.ql
 create mode 100644 swift/downgrades/62fc609c1ab6ae748ff51362ffa5c368ba834ddf/old.dbscheme
 create mode 100644 swift/downgrades/62fc609c1ab6ae748ff51362ffa5c368ba834ddf/swift.dbscheme
 create mode 100644 swift/downgrades/62fc609c1ab6ae748ff51362ffa5c368ba834ddf/unspecified_elements.ql
 create mode 100644 swift/downgrades/62fc609c1ab6ae748ff51362ffa5c368ba834ddf/upgrade.properties
 create mode 100644 swift/ql/lib/upgrades/1a6e9325bd60462e669e524438174deef4476df0/old.dbscheme
 create mode 100644 swift/ql/lib/upgrades/1a6e9325bd60462e669e524438174deef4476df0/swift.dbscheme
 create mode 100644 swift/ql/lib/upgrades/1a6e9325bd60462e669e524438174deef4476df0/upgrade.properties

diff --git a/swift/downgrades/62fc609c1ab6ae748ff51362ffa5c368ba834ddf/implicit_conversion_exprs.ql b/swift/downgrades/62fc609c1ab6ae748ff51362ffa5c368ba834ddf/implicit_conversion_exprs.ql
new file mode 100644
index 00000000000..67418103c99
--- /dev/null
+++ b/swift/downgrades/62fc609c1ab6ae748ff51362ffa5c368ba834ddf/implicit_conversion_exprs.ql
@@ -0,0 +1,8 @@
+// Removes AbiSafeConversionExprs from ImplicitConversionExprs
+class Element extends @element {
+  string toString() { none() }
+}
+
+from Element e, Element child
+where implicit_conversion_exprs(e, child) and not abi_safe_conversion_exprs(e)
+select e, child
diff --git a/swift/downgrades/62fc609c1ab6ae748ff51362ffa5c368ba834ddf/old.dbscheme b/swift/downgrades/62fc609c1ab6ae748ff51362ffa5c368ba834ddf/old.dbscheme
new file mode 100644
index 00000000000..62fc609c1ab
--- /dev/null
+++ b/swift/downgrades/62fc609c1ab6ae748ff51362ffa5c368ba834ddf/old.dbscheme
@@ -0,0 +1,2518 @@
+// generated by codegen/codegen.py
+
+// from prefix.dbscheme
+/**
+ * The source location of the snapshot.
+ */
+sourceLocationPrefix(
+  string prefix: string ref
+);
+
+
+// from schema.py
+
+@element =
+  @callable
+| @file
+| @generic_context
+| @iterable_decl_context
+| @locatable
+| @location
+| @type
+;
+
+#keyset[id]
+element_is_unknown(
+  int id: @element ref
+);
+
+@callable =
+  @abstract_closure_expr
+| @abstract_function_decl
+;
+
+#keyset[id]
+callable_self_params(
+  int id: @callable ref,
+  int self_param: @param_decl_or_none ref
+);
+
+#keyset[id, index]
+callable_params(
+  int id: @callable ref,
+  int index: int ref,
+  int param: @param_decl_or_none ref
+);
+
+#keyset[id]
+callable_bodies(
+  int id: @callable ref,
+  int body: @brace_stmt_or_none ref
+);
+
+@file =
+  @db_file
+;
+
+#keyset[id]
+files(
+  int id: @file ref,
+  string name: string ref
+);
+
+@locatable =
+  @argument
+| @ast_node
+| @comment
+| @diagnostics
+| @error_element
+;
+
+#keyset[id]
+locatable_locations(
+  int id: @locatable ref,
+  int location: @location_or_none ref
+);
+
+@location =
+  @db_location
+;
+
+#keyset[id]
+locations(
+  int id: @location ref,
+  int file: @file_or_none ref,
+  int start_line: int ref,
+  int start_column: int ref,
+  int end_line: int ref,
+  int end_column: int ref
+);
+
+@ast_node =
+  @case_label_item
+| @condition_element
+| @decl
+| @expr
+| @pattern
+| @stmt
+| @stmt_condition
+| @type_repr
+;
+
+comments(
+  unique int id: @comment,
+  string text: string ref
+);
+
+db_files(
+  unique int id: @db_file
+);
+
+db_locations(
+  unique int id: @db_location
+);
+
+diagnostics(
+  unique int id: @diagnostics,
+  string text: string ref,
+  int kind: int ref
+);
+
+@error_element =
+  @error_expr
+| @error_type
+| @overloaded_decl_ref_expr
+| @unresolved_decl_ref_expr
+| @unresolved_dot_expr
+| @unresolved_member_chain_result_expr
+| @unresolved_member_expr
+| @unresolved_pattern_expr
+| @unresolved_specialize_expr
+| @unresolved_type
+| @unresolved_type_conversion_expr
+| @unspecified_element
+;
+
+unspecified_elements(
+  unique int id: @unspecified_element,
+  string property: string ref,
+  string error: string ref
+);
+
+#keyset[id]
+unspecified_element_parents(
+  int id: @unspecified_element ref,
+  int parent: @element ref
+);
+
+#keyset[id]
+unspecified_element_indices(
+  int id: @unspecified_element ref,
+  int index: int ref
+);
+
+@decl =
+  @enum_case_decl
+| @extension_decl
+| @if_config_decl
+| @import_decl
+| @missing_member_decl
+| @operator_decl
+| @pattern_binding_decl
+| @pound_diagnostic_decl
+| @precedence_group_decl
+| @top_level_code_decl
+| @value_decl
+;
+
+#keyset[id]
+decls(  //dir=decl
+  int id: @decl ref,
+  int module: @module_decl_or_none ref
+);
+
+@generic_context =
+  @abstract_function_decl
+| @extension_decl
+| @generic_type_decl
+| @subscript_decl
+;
+
+#keyset[id, index]
+generic_context_generic_type_params(  //dir=decl
+  int id: @generic_context ref,
+  int index: int ref,
+  int generic_type_param: @generic_type_param_decl_or_none ref
+);
+
+@iterable_decl_context =
+  @extension_decl
+| @nominal_type_decl
+;
+
+#keyset[id, index]
+iterable_decl_context_members(  //dir=decl
+  int id: @iterable_decl_context ref,
+  int index: int ref,
+  int member: @decl_or_none ref
+);
+
+enum_case_decls(  //dir=decl
+  unique int id: @enum_case_decl
+);
+
+#keyset[id, index]
+enum_case_decl_elements(  //dir=decl
+  int id: @enum_case_decl ref,
+  int index: int ref,
+  int element: @enum_element_decl_or_none ref
+);
+
+extension_decls(  //dir=decl
+  unique int id: @extension_decl,
+  int extended_type_decl: @nominal_type_decl_or_none ref
+);
+
+if_config_decls(  //dir=decl
+  unique int id: @if_config_decl
+);
+
+#keyset[id, index]
+if_config_decl_active_elements(  //dir=decl
+  int id: @if_config_decl ref,
+  int index: int ref,
+  int active_element: @ast_node_or_none ref
+);
+
+import_decls(  //dir=decl
+  unique int id: @import_decl
+);
+
+#keyset[id]
+import_decl_is_exported(  //dir=decl
+  int id: @import_decl ref
+);
+
+#keyset[id]
+import_decl_imported_modules(  //dir=decl
+  int id: @import_decl ref,
+  int imported_module: @module_decl_or_none ref
+);
+
+#keyset[id, index]
+import_decl_declarations(  //dir=decl
+  int id: @import_decl ref,
+  int index: int ref,
+  int declaration: @value_decl_or_none ref
+);
+
+missing_member_decls(  //dir=decl
+  unique int id: @missing_member_decl,
+  string name: string ref
+);
+
+@operator_decl =
+  @infix_operator_decl
+| @postfix_operator_decl
+| @prefix_operator_decl
+;
+
+#keyset[id]
+operator_decls(  //dir=decl
+  int id: @operator_decl ref,
+  string name: string ref
+);
+
+pattern_binding_decls(  //dir=decl
+  unique int id: @pattern_binding_decl
+);
+
+#keyset[id, index]
+pattern_binding_decl_inits(  //dir=decl
+  int id: @pattern_binding_decl ref,
+  int index: int ref,
+  int init: @expr_or_none ref
+);
+
+#keyset[id, index]
+pattern_binding_decl_patterns(  //dir=decl
+  int id: @pattern_binding_decl ref,
+  int index: int ref,
+  int pattern: @pattern_or_none ref
+);
+
+pound_diagnostic_decls(  //dir=decl
+  unique int id: @pound_diagnostic_decl,
+  int kind: int ref,
+  int message: @string_literal_expr_or_none ref
+);
+
+precedence_group_decls(  //dir=decl
+  unique int id: @precedence_group_decl
+);
+
+top_level_code_decls(  //dir=decl
+  unique int id: @top_level_code_decl,
+  int body: @brace_stmt_or_none ref
+);
+
+@value_decl =
+  @abstract_function_decl
+| @abstract_storage_decl
+| @enum_element_decl
+| @type_decl
+;
+
+#keyset[id]
+value_decls(  //dir=decl
+  int id: @value_decl ref,
+  int interface_type: @type_or_none ref
+);
+
+@abstract_function_decl =
+  @constructor_decl
+| @destructor_decl
+| @func_decl
+;
+
+#keyset[id]
+abstract_function_decls(  //dir=decl
+  int id: @abstract_function_decl ref,
+  string name: string ref
+);
+
+@abstract_storage_decl =
+  @subscript_decl
+| @var_decl
+;
+
+#keyset[id, index]
+abstract_storage_decl_accessor_decls(  //dir=decl
+  int id: @abstract_storage_decl ref,
+  int index: int ref,
+  int accessor_decl: @accessor_decl_or_none ref
+);
+
+enum_element_decls(  //dir=decl
+  unique int id: @enum_element_decl,
+  string name: string ref
+);
+
+#keyset[id, index]
+enum_element_decl_params(  //dir=decl
+  int id: @enum_element_decl ref,
+  int index: int ref,
+  int param: @param_decl_or_none ref
+);
+
+infix_operator_decls(  //dir=decl
+  unique int id: @infix_operator_decl
+);
+
+#keyset[id]
+infix_operator_decl_precedence_groups(  //dir=decl
+  int id: @infix_operator_decl ref,
+  int precedence_group: @precedence_group_decl_or_none ref
+);
+
+postfix_operator_decls(  //dir=decl
+  unique int id: @postfix_operator_decl
+);
+
+prefix_operator_decls(  //dir=decl
+  unique int id: @prefix_operator_decl
+);
+
+@type_decl =
+  @abstract_type_param_decl
+| @generic_type_decl
+| @module_decl
+;
+
+#keyset[id]
+type_decls(  //dir=decl
+  int id: @type_decl ref,
+  string name: string ref
+);
+
+#keyset[id, index]
+type_decl_base_types(  //dir=decl
+  int id: @type_decl ref,
+  int index: int ref,
+  int base_type: @type_or_none ref
+);
+
+@abstract_type_param_decl =
+  @associated_type_decl
+| @generic_type_param_decl
+;
+
+constructor_decls(  //dir=decl
+  unique int id: @constructor_decl
+);
+
+destructor_decls(  //dir=decl
+  unique int id: @destructor_decl
+);
+
+@func_decl =
+  @accessor_decl
+| @concrete_func_decl
+;
+
+@generic_type_decl =
+  @nominal_type_decl
+| @opaque_type_decl
+| @type_alias_decl
+;
+
+module_decls(  //dir=decl
+  unique int id: @module_decl
+);
+
+#keyset[id]
+module_decl_is_builtin_module(  //dir=decl
+  int id: @module_decl ref
+);
+
+#keyset[id]
+module_decl_is_system_module(  //dir=decl
+  int id: @module_decl ref
+);
+
+#keyset[id, index]
+module_decl_imported_modules(  //dir=decl
+  int id: @module_decl ref,
+  int index: int ref,
+  int imported_module: @module_decl_or_none ref
+);
+
+#keyset[id, index]
+module_decl_exported_modules(  //dir=decl
+  int id: @module_decl ref,
+  int index: int ref,
+  int exported_module: @module_decl_or_none ref
+);
+
+subscript_decls(  //dir=decl
+  unique int id: @subscript_decl,
+  int element_type: @type_or_none ref
+);
+
+#keyset[id, index]
+subscript_decl_params(  //dir=decl
+  int id: @subscript_decl ref,
+  int index: int ref,
+  int param: @param_decl_or_none ref
+);
+
+@var_decl =
+  @concrete_var_decl
+| @param_decl
+;
+
+#keyset[id]
+var_decls(  //dir=decl
+  int id: @var_decl ref,
+  string name: string ref,
+  int type_: @type_or_none ref
+);
+
+#keyset[id]
+var_decl_attached_property_wrapper_types(  //dir=decl
+  int id: @var_decl ref,
+  int attached_property_wrapper_type: @type_or_none ref
+);
+
+#keyset[id]
+var_decl_parent_patterns(  //dir=decl
+  int id: @var_decl ref,
+  int parent_pattern: @pattern_or_none ref
+);
+
+#keyset[id]
+var_decl_parent_initializers(  //dir=decl
+  int id: @var_decl ref,
+  int parent_initializer: @expr_or_none ref
+);
+
+#keyset[id]
+var_decl_property_wrapper_backing_var_bindings(  //dir=decl
+  int id: @var_decl ref,
+  int property_wrapper_backing_var_binding: @pattern_binding_decl_or_none ref
+);
+
+#keyset[id]
+var_decl_property_wrapper_backing_vars(  //dir=decl
+  int id: @var_decl ref,
+  int property_wrapper_backing_var: @var_decl_or_none ref
+);
+
+#keyset[id]
+var_decl_property_wrapper_projection_var_bindings(  //dir=decl
+  int id: @var_decl ref,
+  int property_wrapper_projection_var_binding: @pattern_binding_decl_or_none ref
+);
+
+#keyset[id]
+var_decl_property_wrapper_projection_vars(  //dir=decl
+  int id: @var_decl ref,
+  int property_wrapper_projection_var: @var_decl_or_none ref
+);
+
+accessor_decls(  //dir=decl
+  unique int id: @accessor_decl
+);
+
+#keyset[id]
+accessor_decl_is_getter(  //dir=decl
+  int id: @accessor_decl ref
+);
+
+#keyset[id]
+accessor_decl_is_setter(  //dir=decl
+  int id: @accessor_decl ref
+);
+
+#keyset[id]
+accessor_decl_is_will_set(  //dir=decl
+  int id: @accessor_decl ref
+);
+
+#keyset[id]
+accessor_decl_is_did_set(  //dir=decl
+  int id: @accessor_decl ref
+);
+
+#keyset[id]
+accessor_decl_is_read(  //dir=decl
+  int id: @accessor_decl ref
+);
+
+#keyset[id]
+accessor_decl_is_modify(  //dir=decl
+  int id: @accessor_decl ref
+);
+
+#keyset[id]
+accessor_decl_is_unsafe_address(  //dir=decl
+  int id: @accessor_decl ref
+);
+
+#keyset[id]
+accessor_decl_is_unsafe_mutable_address(  //dir=decl
+  int id: @accessor_decl ref
+);
+
+associated_type_decls(  //dir=decl
+  unique int id: @associated_type_decl
+);
+
+concrete_func_decls(  //dir=decl
+  unique int id: @concrete_func_decl
+);
+
+concrete_var_decls(  //dir=decl
+  unique int id: @concrete_var_decl,
+  int introducer_int: int ref
+);
+
+generic_type_param_decls(  //dir=decl
+  unique int id: @generic_type_param_decl
+);
+
+@nominal_type_decl =
+  @class_decl
+| @enum_decl
+| @protocol_decl
+| @struct_decl
+;
+
+#keyset[id]
+nominal_type_decls(  //dir=decl
+  int id: @nominal_type_decl ref,
+  int type_: @type_or_none ref
+);
+
+opaque_type_decls(  //dir=decl
+  unique int id: @opaque_type_decl,
+  int naming_declaration: @value_decl_or_none ref
+);
+
+#keyset[id, index]
+opaque_type_decl_opaque_generic_params(  //dir=decl
+  int id: @opaque_type_decl ref,
+  int index: int ref,
+  int opaque_generic_param: @generic_type_param_type_or_none ref
+);
+
+param_decls(  //dir=decl
+  unique int id: @param_decl
+);
+
+#keyset[id]
+param_decl_is_inout(  //dir=decl
+  int id: @param_decl ref
+);
+
+#keyset[id]
+param_decl_property_wrapper_local_wrapped_var_bindings(  //dir=decl
+  int id: @param_decl ref,
+  int property_wrapper_local_wrapped_var_binding: @pattern_binding_decl_or_none ref
+);
+
+#keyset[id]
+param_decl_property_wrapper_local_wrapped_vars(  //dir=decl
+  int id: @param_decl ref,
+  int property_wrapper_local_wrapped_var: @var_decl_or_none ref
+);
+
+type_alias_decls(  //dir=decl
+  unique int id: @type_alias_decl
+);
+
+class_decls(  //dir=decl
+  unique int id: @class_decl
+);
+
+enum_decls(  //dir=decl
+  unique int id: @enum_decl
+);
+
+protocol_decls(  //dir=decl
+  unique int id: @protocol_decl
+);
+
+struct_decls(  //dir=decl
+  unique int id: @struct_decl
+);
+
+arguments(  //dir=expr
+  unique int id: @argument,
+  string label: string ref,
+  int expr: @expr_or_none ref
+);
+
+@expr =
+  @abstract_closure_expr
+| @any_try_expr
+| @applied_property_wrapper_expr
+| @apply_expr
+| @assign_expr
+| @bind_optional_expr
+| @capture_list_expr
+| @collection_expr
+| @decl_ref_expr
+| @default_argument_expr
+| @discard_assignment_expr
+| @dot_syntax_base_ignored_expr
+| @dynamic_type_expr
+| @enum_is_case_expr
+| @error_expr
+| @explicit_cast_expr
+| @force_value_expr
+| @identity_expr
+| @if_expr
+| @implicit_conversion_expr
+| @in_out_expr
+| @key_path_application_expr
+| @key_path_dot_expr
+| @key_path_expr
+| @lazy_initializer_expr
+| @literal_expr
+| @lookup_expr
+| @make_temporarily_escapable_expr
+| @obj_c_selector_expr
+| @one_way_expr
+| @opaque_value_expr
+| @open_existential_expr
+| @optional_evaluation_expr
+| @other_constructor_decl_ref_expr
+| @overloaded_decl_ref_expr
+| @property_wrapper_value_placeholder_expr
+| @rebind_self_in_constructor_expr
+| @sequence_expr
+| @super_ref_expr
+| @tap_expr
+| @tuple_element_expr
+| @tuple_expr
+| @type_expr
+| @unresolved_decl_ref_expr
+| @unresolved_dot_expr
+| @unresolved_member_expr
+| @unresolved_pattern_expr
+| @unresolved_specialize_expr
+| @vararg_expansion_expr
+;
+
+#keyset[id]
+expr_types(  //dir=expr
+  int id: @expr ref,
+  int type_: @type_or_none ref
+);
+
+@abstract_closure_expr =
+  @auto_closure_expr
+| @closure_expr
+;
+
+@any_try_expr =
+  @force_try_expr
+| @optional_try_expr
+| @try_expr
+;
+
+#keyset[id]
+any_try_exprs(  //dir=expr
+  int id: @any_try_expr ref,
+  int sub_expr: @expr_or_none ref
+);
+
+applied_property_wrapper_exprs(  //dir=expr
+  unique int id: @applied_property_wrapper_expr,
+  int kind: int ref,
+  int value: @expr_or_none ref,
+  int param: @param_decl_or_none ref
+);
+
+@apply_expr =
+  @binary_expr
+| @call_expr
+| @postfix_unary_expr
+| @prefix_unary_expr
+| @self_apply_expr
+;
+
+#keyset[id]
+apply_exprs(  //dir=expr
+  int id: @apply_expr ref,
+  int function: @expr_or_none ref
+);
+
+#keyset[id, index]
+apply_expr_arguments(  //dir=expr
+  int id: @apply_expr ref,
+  int index: int ref,
+  int argument: @argument_or_none ref
+);
+
+assign_exprs(  //dir=expr
+  unique int id: @assign_expr,
+  int dest: @expr_or_none ref,
+  int source: @expr_or_none ref
+);
+
+bind_optional_exprs(  //dir=expr
+  unique int id: @bind_optional_expr,
+  int sub_expr: @expr_or_none ref
+);
+
+capture_list_exprs(  //dir=expr
+  unique int id: @capture_list_expr,
+  int closure_body: @closure_expr_or_none ref
+);
+
+#keyset[id, index]
+capture_list_expr_binding_decls(  //dir=expr
+  int id: @capture_list_expr ref,
+  int index: int ref,
+  int binding_decl: @pattern_binding_decl_or_none ref
+);
+
+@collection_expr =
+  @array_expr
+| @dictionary_expr
+;
+
+decl_ref_exprs(  //dir=expr
+  unique int id: @decl_ref_expr,
+  int decl: @decl_or_none ref
+);
+
+#keyset[id, index]
+decl_ref_expr_replacement_types(  //dir=expr
+  int id: @decl_ref_expr ref,
+  int index: int ref,
+  int replacement_type: @type_or_none ref
+);
+
+#keyset[id]
+decl_ref_expr_has_direct_to_storage_semantics(  //dir=expr
+  int id: @decl_ref_expr ref
+);
+
+#keyset[id]
+decl_ref_expr_has_direct_to_implementation_semantics(  //dir=expr
+  int id: @decl_ref_expr ref
+);
+
+#keyset[id]
+decl_ref_expr_has_ordinary_semantics(  //dir=expr
+  int id: @decl_ref_expr ref
+);
+
+#keyset[id]
+decl_ref_expr_has_distributed_thunk_semantics(  //dir=expr
+  int id: @decl_ref_expr ref
+);
+
+default_argument_exprs(  //dir=expr
+  unique int id: @default_argument_expr,
+  int param_decl: @param_decl_or_none ref,
+  int param_index: int ref
+);
+
+#keyset[id]
+default_argument_expr_caller_side_defaults(  //dir=expr
+  int id: @default_argument_expr ref,
+  int caller_side_default: @expr_or_none ref
+);
+
+discard_assignment_exprs(  //dir=expr
+  unique int id: @discard_assignment_expr
+);
+
+dot_syntax_base_ignored_exprs(  //dir=expr
+  unique int id: @dot_syntax_base_ignored_expr,
+  int qualifier: @expr_or_none ref,
+  int sub_expr: @expr_or_none ref
+);
+
+dynamic_type_exprs(  //dir=expr
+  unique int id: @dynamic_type_expr,
+  int base: @expr_or_none ref
+);
+
+enum_is_case_exprs(  //dir=expr
+  unique int id: @enum_is_case_expr,
+  int sub_expr: @expr_or_none ref,
+  int element: @enum_element_decl_or_none ref
+);
+
+error_exprs(  //dir=expr
+  unique int id: @error_expr
+);
+
+@explicit_cast_expr =
+  @checked_cast_expr
+| @coerce_expr
+;
+
+#keyset[id]
+explicit_cast_exprs(  //dir=expr
+  int id: @explicit_cast_expr ref,
+  int sub_expr: @expr_or_none ref
+);
+
+force_value_exprs(  //dir=expr
+  unique int id: @force_value_expr,
+  int sub_expr: @expr_or_none ref
+);
+
+@identity_expr =
+  @await_expr
+| @dot_self_expr
+| @paren_expr
+| @unresolved_member_chain_result_expr
+;
+
+#keyset[id]
+identity_exprs(  //dir=expr
+  int id: @identity_expr ref,
+  int sub_expr: @expr_or_none ref
+);
+
+if_exprs(  //dir=expr
+  unique int id: @if_expr,
+  int condition: @expr_or_none ref,
+  int then_expr: @expr_or_none ref,
+  int else_expr: @expr_or_none ref
+);
+
+@implicit_conversion_expr =
+  @abi_safe_conversion_expr
+| @any_hashable_erasure_expr
+| @archetype_to_super_expr
+| @array_to_pointer_expr
+| @bridge_from_obj_c_expr
+| @bridge_to_obj_c_expr
+| @class_metatype_to_object_expr
+| @collection_upcast_conversion_expr
+| @conditional_bridge_from_obj_c_expr
+| @covariant_function_conversion_expr
+| @covariant_return_conversion_expr
+| @derived_to_base_expr
+| @destructure_tuple_expr
+| @differentiable_function_expr
+| @differentiable_function_extract_original_expr
+| @erasure_expr
+| @existential_metatype_to_object_expr
+| @foreign_object_conversion_expr
+| @function_conversion_expr
+| @in_out_to_pointer_expr
+| @inject_into_optional_expr
+| @linear_function_expr
+| @linear_function_extract_original_expr
+| @linear_to_differentiable_function_expr
+| @load_expr
+| @metatype_conversion_expr
+| @pointer_to_pointer_expr
+| @protocol_metatype_to_object_expr
+| @string_to_pointer_expr
+| @underlying_to_opaque_expr
+| @unevaluated_instance_expr
+| @unresolved_type_conversion_expr
+;
+
+#keyset[id]
+implicit_conversion_exprs(  //dir=expr
+  int id: @implicit_conversion_expr ref,
+  int sub_expr: @expr_or_none ref
+);
+
+in_out_exprs(  //dir=expr
+  unique int id: @in_out_expr,
+  int sub_expr: @expr_or_none ref
+);
+
+key_path_application_exprs(  //dir=expr
+  unique int id: @key_path_application_expr,
+  int base: @expr_or_none ref,
+  int key_path: @expr_or_none ref
+);
+
+key_path_dot_exprs(  //dir=expr
+  unique int id: @key_path_dot_expr
+);
+
+key_path_exprs(  //dir=expr
+  unique int id: @key_path_expr
+);
+
+#keyset[id]
+key_path_expr_roots(  //dir=expr
+  int id: @key_path_expr ref,
+  int root: @type_repr_or_none ref
+);
+
+#keyset[id]
+key_path_expr_parsed_paths(  //dir=expr
+  int id: @key_path_expr ref,
+  int parsed_path: @expr_or_none ref
+);
+
+lazy_initializer_exprs(  //dir=expr
+  unique int id: @lazy_initializer_expr,
+  int sub_expr: @expr_or_none ref
+);
+
+@literal_expr =
+  @builtin_literal_expr
+| @interpolated_string_literal_expr
+| @nil_literal_expr
+| @object_literal_expr
+| @regex_literal_expr
+;
+
+@lookup_expr =
+  @dynamic_lookup_expr
+| @member_ref_expr
+| @subscript_expr
+;
+
+#keyset[id]
+lookup_exprs(  //dir=expr
+  int id: @lookup_expr ref,
+  int base: @expr_or_none ref
+);
+
+#keyset[id]
+lookup_expr_members(  //dir=expr
+  int id: @lookup_expr ref,
+  int member: @decl_or_none ref
+);
+
+make_temporarily_escapable_exprs(  //dir=expr
+  unique int id: @make_temporarily_escapable_expr,
+  int escaping_closure: @opaque_value_expr_or_none ref,
+  int nonescaping_closure: @expr_or_none ref,
+  int sub_expr: @expr_or_none ref
+);
+
+obj_c_selector_exprs(  //dir=expr
+  unique int id: @obj_c_selector_expr,
+  int sub_expr: @expr_or_none ref,
+  int method: @abstract_function_decl_or_none ref
+);
+
+one_way_exprs(  //dir=expr
+  unique int id: @one_way_expr,
+  int sub_expr: @expr_or_none ref
+);
+
+opaque_value_exprs(  //dir=expr
+  unique int id: @opaque_value_expr
+);
+
+open_existential_exprs(  //dir=expr
+  unique int id: @open_existential_expr,
+  int sub_expr: @expr_or_none ref,
+  int existential: @expr_or_none ref,
+  int opaque_expr: @opaque_value_expr_or_none ref
+);
+
+optional_evaluation_exprs(  //dir=expr
+  unique int id: @optional_evaluation_expr,
+  int sub_expr: @expr_or_none ref
+);
+
+other_constructor_decl_ref_exprs(  //dir=expr
+  unique int id: @other_constructor_decl_ref_expr,
+  int constructor_decl: @constructor_decl_or_none ref
+);
+
+overloaded_decl_ref_exprs(  //dir=expr
+  unique int id: @overloaded_decl_ref_expr
+);
+
+#keyset[id, index]
+overloaded_decl_ref_expr_possible_declarations(  //dir=expr
+  int id: @overloaded_decl_ref_expr ref,
+  int index: int ref,
+  int possible_declaration: @value_decl_or_none ref
+);
+
+property_wrapper_value_placeholder_exprs(  //dir=expr
+  unique int id: @property_wrapper_value_placeholder_expr,
+  int placeholder: @opaque_value_expr_or_none ref
+);
+
+#keyset[id]
+property_wrapper_value_placeholder_expr_wrapped_values(  //dir=expr
+  int id: @property_wrapper_value_placeholder_expr ref,
+  int wrapped_value: @expr_or_none ref
+);
+
+rebind_self_in_constructor_exprs(  //dir=expr
+  unique int id: @rebind_self_in_constructor_expr,
+  int sub_expr: @expr_or_none ref,
+  int self: @var_decl_or_none ref
+);
+
+sequence_exprs(  //dir=expr
+  unique int id: @sequence_expr
+);
+
+#keyset[id, index]
+sequence_expr_elements(  //dir=expr
+  int id: @sequence_expr ref,
+  int index: int ref,
+  int element: @expr_or_none ref
+);
+
+super_ref_exprs(  //dir=expr
+  unique int id: @super_ref_expr,
+  int self: @var_decl_or_none ref
+);
+
+tap_exprs(  //dir=expr
+  unique int id: @tap_expr,
+  int body: @brace_stmt_or_none ref,
+  int var: @var_decl_or_none ref
+);
+
+#keyset[id]
+tap_expr_sub_exprs(  //dir=expr
+  int id: @tap_expr ref,
+  int sub_expr: @expr_or_none ref
+);
+
+tuple_element_exprs(  //dir=expr
+  unique int id: @tuple_element_expr,
+  int sub_expr: @expr_or_none ref,
+  int index: int ref
+);
+
+tuple_exprs(  //dir=expr
+  unique int id: @tuple_expr
+);
+
+#keyset[id, index]
+tuple_expr_elements(  //dir=expr
+  int id: @tuple_expr ref,
+  int index: int ref,
+  int element: @expr_or_none ref
+);
+
+type_exprs(  //dir=expr
+  unique int id: @type_expr
+);
+
+#keyset[id]
+type_expr_type_reprs(  //dir=expr
+  int id: @type_expr ref,
+  int type_repr: @type_repr_or_none ref
+);
+
+unresolved_decl_ref_exprs(  //dir=expr
+  unique int id: @unresolved_decl_ref_expr
+);
+
+#keyset[id]
+unresolved_decl_ref_expr_names(  //dir=expr
+  int id: @unresolved_decl_ref_expr ref,
+  string name: string ref
+);
+
+unresolved_dot_exprs(  //dir=expr
+  unique int id: @unresolved_dot_expr,
+  int base: @expr_or_none ref,
+  string name: string ref
+);
+
+unresolved_member_exprs(  //dir=expr
+  unique int id: @unresolved_member_expr,
+  string name: string ref
+);
+
+unresolved_pattern_exprs(  //dir=expr
+  unique int id: @unresolved_pattern_expr,
+  int sub_pattern: @pattern_or_none ref
+);
+
+unresolved_specialize_exprs(  //dir=expr
+  unique int id: @unresolved_specialize_expr,
+  int sub_expr: @expr_or_none ref
+);
+
+vararg_expansion_exprs(  //dir=expr
+  unique int id: @vararg_expansion_expr,
+  int sub_expr: @expr_or_none ref
+);
+
+abi_safe_conversion_exprs(  //dir=expr
+  unique int id: @abi_safe_conversion_expr
+);
+
+any_hashable_erasure_exprs(  //dir=expr
+  unique int id: @any_hashable_erasure_expr
+);
+
+archetype_to_super_exprs(  //dir=expr
+  unique int id: @archetype_to_super_expr
+);
+
+array_exprs(  //dir=expr
+  unique int id: @array_expr
+);
+
+#keyset[id, index]
+array_expr_elements(  //dir=expr
+  int id: @array_expr ref,
+  int index: int ref,
+  int element: @expr_or_none ref
+);
+
+array_to_pointer_exprs(  //dir=expr
+  unique int id: @array_to_pointer_expr
+);
+
+auto_closure_exprs(  //dir=expr
+  unique int id: @auto_closure_expr
+);
+
+await_exprs(  //dir=expr
+  unique int id: @await_expr
+);
+
+binary_exprs(  //dir=expr
+  unique int id: @binary_expr
+);
+
+bridge_from_obj_c_exprs(  //dir=expr
+  unique int id: @bridge_from_obj_c_expr
+);
+
+bridge_to_obj_c_exprs(  //dir=expr
+  unique int id: @bridge_to_obj_c_expr
+);
+
+@builtin_literal_expr =
+  @boolean_literal_expr
+| @magic_identifier_literal_expr
+| @number_literal_expr
+| @string_literal_expr
+;
+
+call_exprs(  //dir=expr
+  unique int id: @call_expr
+);
+
+@checked_cast_expr =
+  @conditional_checked_cast_expr
+| @forced_checked_cast_expr
+| @is_expr
+;
+
+class_metatype_to_object_exprs(  //dir=expr
+  unique int id: @class_metatype_to_object_expr
+);
+
+closure_exprs(  //dir=expr
+  unique int id: @closure_expr
+);
+
+coerce_exprs(  //dir=expr
+  unique int id: @coerce_expr
+);
+
+collection_upcast_conversion_exprs(  //dir=expr
+  unique int id: @collection_upcast_conversion_expr
+);
+
+conditional_bridge_from_obj_c_exprs(  //dir=expr
+  unique int id: @conditional_bridge_from_obj_c_expr
+);
+
+covariant_function_conversion_exprs(  //dir=expr
+  unique int id: @covariant_function_conversion_expr
+);
+
+covariant_return_conversion_exprs(  //dir=expr
+  unique int id: @covariant_return_conversion_expr
+);
+
+derived_to_base_exprs(  //dir=expr
+  unique int id: @derived_to_base_expr
+);
+
+destructure_tuple_exprs(  //dir=expr
+  unique int id: @destructure_tuple_expr
+);
+
+dictionary_exprs(  //dir=expr
+  unique int id: @dictionary_expr
+);
+
+#keyset[id, index]
+dictionary_expr_elements(  //dir=expr
+  int id: @dictionary_expr ref,
+  int index: int ref,
+  int element: @expr_or_none ref
+);
+
+differentiable_function_exprs(  //dir=expr
+  unique int id: @differentiable_function_expr
+);
+
+differentiable_function_extract_original_exprs(  //dir=expr
+  unique int id: @differentiable_function_extract_original_expr
+);
+
+dot_self_exprs(  //dir=expr
+  unique int id: @dot_self_expr
+);
+
+@dynamic_lookup_expr =
+  @dynamic_member_ref_expr
+| @dynamic_subscript_expr
+;
+
+erasure_exprs(  //dir=expr
+  unique int id: @erasure_expr
+);
+
+existential_metatype_to_object_exprs(  //dir=expr
+  unique int id: @existential_metatype_to_object_expr
+);
+
+force_try_exprs(  //dir=expr
+  unique int id: @force_try_expr
+);
+
+foreign_object_conversion_exprs(  //dir=expr
+  unique int id: @foreign_object_conversion_expr
+);
+
+function_conversion_exprs(  //dir=expr
+  unique int id: @function_conversion_expr
+);
+
+in_out_to_pointer_exprs(  //dir=expr
+  unique int id: @in_out_to_pointer_expr
+);
+
+inject_into_optional_exprs(  //dir=expr
+  unique int id: @inject_into_optional_expr
+);
+
+interpolated_string_literal_exprs(  //dir=expr
+  unique int id: @interpolated_string_literal_expr
+);
+
+#keyset[id]
+interpolated_string_literal_expr_interpolation_exprs(  //dir=expr
+  int id: @interpolated_string_literal_expr ref,
+  int interpolation_expr: @opaque_value_expr_or_none ref
+);
+
+#keyset[id]
+interpolated_string_literal_expr_interpolation_count_exprs(  //dir=expr
+  int id: @interpolated_string_literal_expr ref,
+  int interpolation_count_expr: @expr_or_none ref
+);
+
+#keyset[id]
+interpolated_string_literal_expr_literal_capacity_exprs(  //dir=expr
+  int id: @interpolated_string_literal_expr ref,
+  int literal_capacity_expr: @expr_or_none ref
+);
+
+#keyset[id]
+interpolated_string_literal_expr_appending_exprs(  //dir=expr
+  int id: @interpolated_string_literal_expr ref,
+  int appending_expr: @tap_expr_or_none ref
+);
+
+linear_function_exprs(  //dir=expr
+  unique int id: @linear_function_expr
+);
+
+linear_function_extract_original_exprs(  //dir=expr
+  unique int id: @linear_function_extract_original_expr
+);
+
+linear_to_differentiable_function_exprs(  //dir=expr
+  unique int id: @linear_to_differentiable_function_expr
+);
+
+load_exprs(  //dir=expr
+  unique int id: @load_expr
+);
+
+member_ref_exprs(  //dir=expr
+  unique int id: @member_ref_expr
+);
+
+#keyset[id]
+member_ref_expr_has_direct_to_storage_semantics(  //dir=expr
+  int id: @member_ref_expr ref
+);
+
+#keyset[id]
+member_ref_expr_has_direct_to_implementation_semantics(  //dir=expr
+  int id: @member_ref_expr ref
+);
+
+#keyset[id]
+member_ref_expr_has_ordinary_semantics(  //dir=expr
+  int id: @member_ref_expr ref
+);
+
+#keyset[id]
+member_ref_expr_has_distributed_thunk_semantics(  //dir=expr
+  int id: @member_ref_expr ref
+);
+
+metatype_conversion_exprs(  //dir=expr
+  unique int id: @metatype_conversion_expr
+);
+
+nil_literal_exprs(  //dir=expr
+  unique int id: @nil_literal_expr
+);
+
+object_literal_exprs(  //dir=expr
+  unique int id: @object_literal_expr,
+  int kind: int ref
+);
+
+#keyset[id, index]
+object_literal_expr_arguments(  //dir=expr
+  int id: @object_literal_expr ref,
+  int index: int ref,
+  int argument: @argument_or_none ref
+);
+
+optional_try_exprs(  //dir=expr
+  unique int id: @optional_try_expr
+);
+
+paren_exprs(  //dir=expr
+  unique int id: @paren_expr
+);
+
+pointer_to_pointer_exprs(  //dir=expr
+  unique int id: @pointer_to_pointer_expr
+);
+
+postfix_unary_exprs(  //dir=expr
+  unique int id: @postfix_unary_expr
+);
+
+prefix_unary_exprs(  //dir=expr
+  unique int id: @prefix_unary_expr
+);
+
+protocol_metatype_to_object_exprs(  //dir=expr
+  unique int id: @protocol_metatype_to_object_expr
+);
+
+regex_literal_exprs(  //dir=expr
+  unique int id: @regex_literal_expr
+);
+
+@self_apply_expr =
+  @constructor_ref_call_expr
+| @dot_syntax_call_expr
+;
+
+#keyset[id]
+self_apply_exprs(  //dir=expr
+  int id: @self_apply_expr ref,
+  int base: @expr_or_none ref
+);
+
+string_to_pointer_exprs(  //dir=expr
+  unique int id: @string_to_pointer_expr
+);
+
+subscript_exprs(  //dir=expr
+  unique int id: @subscript_expr
+);
+
+#keyset[id, index]
+subscript_expr_arguments(  //dir=expr
+  int id: @subscript_expr ref,
+  int index: int ref,
+  int argument: @argument_or_none ref
+);
+
+#keyset[id]
+subscript_expr_has_direct_to_storage_semantics(  //dir=expr
+  int id: @subscript_expr ref
+);
+
+#keyset[id]
+subscript_expr_has_direct_to_implementation_semantics(  //dir=expr
+  int id: @subscript_expr ref
+);
+
+#keyset[id]
+subscript_expr_has_ordinary_semantics(  //dir=expr
+  int id: @subscript_expr ref
+);
+
+#keyset[id]
+subscript_expr_has_distributed_thunk_semantics(  //dir=expr
+  int id: @subscript_expr ref
+);
+
+try_exprs(  //dir=expr
+  unique int id: @try_expr
+);
+
+underlying_to_opaque_exprs(  //dir=expr
+  unique int id: @underlying_to_opaque_expr
+);
+
+unevaluated_instance_exprs(  //dir=expr
+  unique int id: @unevaluated_instance_expr
+);
+
+unresolved_member_chain_result_exprs(  //dir=expr
+  unique int id: @unresolved_member_chain_result_expr
+);
+
+unresolved_type_conversion_exprs(  //dir=expr
+  unique int id: @unresolved_type_conversion_expr
+);
+
+boolean_literal_exprs(  //dir=expr
+  unique int id: @boolean_literal_expr,
+  boolean value: boolean ref
+);
+
+conditional_checked_cast_exprs(  //dir=expr
+  unique int id: @conditional_checked_cast_expr
+);
+
+constructor_ref_call_exprs(  //dir=expr
+  unique int id: @constructor_ref_call_expr
+);
+
+dot_syntax_call_exprs(  //dir=expr
+  unique int id: @dot_syntax_call_expr
+);
+
+dynamic_member_ref_exprs(  //dir=expr
+  unique int id: @dynamic_member_ref_expr
+);
+
+dynamic_subscript_exprs(  //dir=expr
+  unique int id: @dynamic_subscript_expr
+);
+
+forced_checked_cast_exprs(  //dir=expr
+  unique int id: @forced_checked_cast_expr
+);
+
+is_exprs(  //dir=expr
+  unique int id: @is_expr
+);
+
+magic_identifier_literal_exprs(  //dir=expr
+  unique int id: @magic_identifier_literal_expr,
+  string kind: string ref
+);
+
+@number_literal_expr =
+  @float_literal_expr
+| @integer_literal_expr
+;
+
+string_literal_exprs(  //dir=expr
+  unique int id: @string_literal_expr,
+  string value: string ref
+);
+
+float_literal_exprs(  //dir=expr
+  unique int id: @float_literal_expr,
+  string string_value: string ref
+);
+
+integer_literal_exprs(  //dir=expr
+  unique int id: @integer_literal_expr,
+  string string_value: string ref
+);
+
+@pattern =
+  @any_pattern
+| @binding_pattern
+| @bool_pattern
+| @enum_element_pattern
+| @expr_pattern
+| @is_pattern
+| @named_pattern
+| @optional_some_pattern
+| @paren_pattern
+| @tuple_pattern
+| @typed_pattern
+;
+
+any_patterns(  //dir=pattern
+  unique int id: @any_pattern
+);
+
+binding_patterns(  //dir=pattern
+  unique int id: @binding_pattern,
+  int sub_pattern: @pattern_or_none ref
+);
+
+bool_patterns(  //dir=pattern
+  unique int id: @bool_pattern,
+  boolean value: boolean ref
+);
+
+enum_element_patterns(  //dir=pattern
+  unique int id: @enum_element_pattern,
+  int element: @enum_element_decl_or_none ref
+);
+
+#keyset[id]
+enum_element_pattern_sub_patterns(  //dir=pattern
+  int id: @enum_element_pattern ref,
+  int sub_pattern: @pattern_or_none ref
+);
+
+expr_patterns(  //dir=pattern
+  unique int id: @expr_pattern,
+  int sub_expr: @expr_or_none ref
+);
+
+is_patterns(  //dir=pattern
+  unique int id: @is_pattern
+);
+
+#keyset[id]
+is_pattern_cast_type_reprs(  //dir=pattern
+  int id: @is_pattern ref,
+  int cast_type_repr: @type_repr_or_none ref
+);
+
+#keyset[id]
+is_pattern_sub_patterns(  //dir=pattern
+  int id: @is_pattern ref,
+  int sub_pattern: @pattern_or_none ref
+);
+
+named_patterns(  //dir=pattern
+  unique int id: @named_pattern,
+  string name: string ref
+);
+
+optional_some_patterns(  //dir=pattern
+  unique int id: @optional_some_pattern,
+  int sub_pattern: @pattern_or_none ref
+);
+
+paren_patterns(  //dir=pattern
+  unique int id: @paren_pattern,
+  int sub_pattern: @pattern_or_none ref
+);
+
+tuple_patterns(  //dir=pattern
+  unique int id: @tuple_pattern
+);
+
+#keyset[id, index]
+tuple_pattern_elements(  //dir=pattern
+  int id: @tuple_pattern ref,
+  int index: int ref,
+  int element: @pattern_or_none ref
+);
+
+typed_patterns(  //dir=pattern
+  unique int id: @typed_pattern,
+  int sub_pattern: @pattern_or_none ref
+);
+
+#keyset[id]
+typed_pattern_type_reprs(  //dir=pattern
+  int id: @typed_pattern ref,
+  int type_repr: @type_repr_or_none ref
+);
+
+case_label_items(  //dir=stmt
+  unique int id: @case_label_item,
+  int pattern: @pattern_or_none ref
+);
+
+#keyset[id]
+case_label_item_guards(  //dir=stmt
+  int id: @case_label_item ref,
+  int guard: @expr_or_none ref
+);
+
+condition_elements(  //dir=stmt
+  unique int id: @condition_element
+);
+
+#keyset[id]
+condition_element_booleans(  //dir=stmt
+  int id: @condition_element ref,
+  int boolean_: @expr_or_none ref
+);
+
+#keyset[id]
+condition_element_patterns(  //dir=stmt
+  int id: @condition_element ref,
+  int pattern: @pattern_or_none ref
+);
+
+#keyset[id]
+condition_element_initializers(  //dir=stmt
+  int id: @condition_element ref,
+  int initializer: @expr_or_none ref
+);
+
+@stmt =
+  @brace_stmt
+| @break_stmt
+| @case_stmt
+| @continue_stmt
+| @defer_stmt
+| @fail_stmt
+| @fallthrough_stmt
+| @labeled_stmt
+| @pound_assert_stmt
+| @return_stmt
+| @throw_stmt
+| @yield_stmt
+;
+
+stmt_conditions(  //dir=stmt
+  unique int id: @stmt_condition
+);
+
+#keyset[id, index]
+stmt_condition_elements(  //dir=stmt
+  int id: @stmt_condition ref,
+  int index: int ref,
+  int element: @condition_element_or_none ref
+);
+
+brace_stmts(  //dir=stmt
+  unique int id: @brace_stmt
+);
+
+#keyset[id, index]
+brace_stmt_elements(  //dir=stmt
+  int id: @brace_stmt ref,
+  int index: int ref,
+  int element: @ast_node_or_none ref
+);
+
+break_stmts(  //dir=stmt
+  unique int id: @break_stmt
+);
+
+#keyset[id]
+break_stmt_target_names(  //dir=stmt
+  int id: @break_stmt ref,
+  string target_name: string ref
+);
+
+#keyset[id]
+break_stmt_targets(  //dir=stmt
+  int id: @break_stmt ref,
+  int target: @stmt_or_none ref
+);
+
+case_stmts(  //dir=stmt
+  unique int id: @case_stmt,
+  int body: @stmt_or_none ref
+);
+
+#keyset[id, index]
+case_stmt_labels(  //dir=stmt
+  int id: @case_stmt ref,
+  int index: int ref,
+  int label: @case_label_item_or_none ref
+);
+
+#keyset[id, index]
+case_stmt_variables(  //dir=stmt
+  int id: @case_stmt ref,
+  int index: int ref,
+  int variable: @var_decl_or_none ref
+);
+
+continue_stmts(  //dir=stmt
+  unique int id: @continue_stmt
+);
+
+#keyset[id]
+continue_stmt_target_names(  //dir=stmt
+  int id: @continue_stmt ref,
+  string target_name: string ref
+);
+
+#keyset[id]
+continue_stmt_targets(  //dir=stmt
+  int id: @continue_stmt ref,
+  int target: @stmt_or_none ref
+);
+
+defer_stmts(  //dir=stmt
+  unique int id: @defer_stmt,
+  int body: @brace_stmt_or_none ref
+);
+
+fail_stmts(  //dir=stmt
+  unique int id: @fail_stmt
+);
+
+fallthrough_stmts(  //dir=stmt
+  unique int id: @fallthrough_stmt,
+  int fallthrough_source: @case_stmt_or_none ref,
+  int fallthrough_dest: @case_stmt_or_none ref
+);
+
+@labeled_stmt =
+  @do_catch_stmt
+| @do_stmt
+| @for_each_stmt
+| @labeled_conditional_stmt
+| @repeat_while_stmt
+| @switch_stmt
+;
+
+#keyset[id]
+labeled_stmt_labels(  //dir=stmt
+  int id: @labeled_stmt ref,
+  string label: string ref
+);
+
+pound_assert_stmts(  //dir=stmt
+  unique int id: @pound_assert_stmt,
+  int condition: @expr_or_none ref,
+  string message: string ref
+);
+
+return_stmts(  //dir=stmt
+  unique int id: @return_stmt
+);
+
+#keyset[id]
+return_stmt_results(  //dir=stmt
+  int id: @return_stmt ref,
+  int result: @expr_or_none ref
+);
+
+throw_stmts(  //dir=stmt
+  unique int id: @throw_stmt,
+  int sub_expr: @expr_or_none ref
+);
+
+yield_stmts(  //dir=stmt
+  unique int id: @yield_stmt
+);
+
+#keyset[id, index]
+yield_stmt_results(  //dir=stmt
+  int id: @yield_stmt ref,
+  int index: int ref,
+  int result: @expr_or_none ref
+);
+
+do_catch_stmts(  //dir=stmt
+  unique int id: @do_catch_stmt,
+  int body: @stmt_or_none ref
+);
+
+#keyset[id, index]
+do_catch_stmt_catches(  //dir=stmt
+  int id: @do_catch_stmt ref,
+  int index: int ref,
+  int catch: @case_stmt_or_none ref
+);
+
+do_stmts(  //dir=stmt
+  unique int id: @do_stmt,
+  int body: @brace_stmt_or_none ref
+);
+
+for_each_stmts(  //dir=stmt
+  unique int id: @for_each_stmt,
+  int pattern: @pattern_or_none ref,
+  int sequence: @expr_or_none ref,
+  int body: @brace_stmt_or_none ref
+);
+
+#keyset[id]
+for_each_stmt_wheres(  //dir=stmt
+  int id: @for_each_stmt ref,
+  int where: @expr_or_none ref
+);
+
+@labeled_conditional_stmt =
+  @guard_stmt
+| @if_stmt
+| @while_stmt
+;
+
+#keyset[id]
+labeled_conditional_stmts(  //dir=stmt
+  int id: @labeled_conditional_stmt ref,
+  int condition: @stmt_condition_or_none ref
+);
+
+repeat_while_stmts(  //dir=stmt
+  unique int id: @repeat_while_stmt,
+  int condition: @expr_or_none ref,
+  int body: @stmt_or_none ref
+);
+
+switch_stmts(  //dir=stmt
+  unique int id: @switch_stmt,
+  int expr: @expr_or_none ref
+);
+
+#keyset[id, index]
+switch_stmt_cases(  //dir=stmt
+  int id: @switch_stmt ref,
+  int index: int ref,
+  int case_: @case_stmt_or_none ref
+);
+
+guard_stmts(  //dir=stmt
+  unique int id: @guard_stmt,
+  int body: @brace_stmt_or_none ref
+);
+
+if_stmts(  //dir=stmt
+  unique int id: @if_stmt,
+  int then: @stmt_or_none ref
+);
+
+#keyset[id]
+if_stmt_elses(  //dir=stmt
+  int id: @if_stmt ref,
+  int else: @stmt_or_none ref
+);
+
+while_stmts(  //dir=stmt
+  unique int id: @while_stmt,
+  int body: @stmt_or_none ref
+);
+
+@type =
+  @any_function_type
+| @any_generic_type
+| @any_metatype_type
+| @builtin_type
+| @dependent_member_type
+| @dynamic_self_type
+| @error_type
+| @existential_type
+| @in_out_type
+| @l_value_type
+| @module_type
+| @parameterized_protocol_type
+| @protocol_composition_type
+| @reference_storage_type
+| @substitutable_type
+| @sugar_type
+| @tuple_type
+| @unresolved_type
+;
+
+#keyset[id]
+types(  //dir=type
+  int id: @type ref,
+  string name: string ref,
+  int canonical_type: @type_or_none ref
+);
+
+type_reprs(  //dir=type
+  unique int id: @type_repr,
+  int type_: @type_or_none ref
+);
+
+@any_function_type =
+  @function_type
+| @generic_function_type
+;
+
+#keyset[id]
+any_function_types(  //dir=type
+  int id: @any_function_type ref,
+  int result: @type_or_none ref
+);
+
+#keyset[id, index]
+any_function_type_param_types(  //dir=type
+  int id: @any_function_type ref,
+  int index: int ref,
+  int param_type: @type_or_none ref
+);
+
+#keyset[id, index]
+any_function_type_param_labels(  //dir=type
+  int id: @any_function_type ref,
+  int index: int ref,
+  string param_label: string ref
+);
+
+#keyset[id]
+any_function_type_is_throwing(  //dir=type
+  int id: @any_function_type ref
+);
+
+#keyset[id]
+any_function_type_is_async(  //dir=type
+  int id: @any_function_type ref
+);
+
+@any_generic_type =
+  @nominal_or_bound_generic_nominal_type
+| @unbound_generic_type
+;
+
+#keyset[id]
+any_generic_types(  //dir=type
+  int id: @any_generic_type ref,
+  int declaration: @decl_or_none ref
+);
+
+#keyset[id]
+any_generic_type_parents(  //dir=type
+  int id: @any_generic_type ref,
+  int parent: @type_or_none ref
+);
+
+@any_metatype_type =
+  @existential_metatype_type
+| @metatype_type
+;
+
+@builtin_type =
+  @any_builtin_integer_type
+| @builtin_bridge_object_type
+| @builtin_default_actor_storage_type
+| @builtin_executor_type
+| @builtin_float_type
+| @builtin_job_type
+| @builtin_native_object_type
+| @builtin_raw_pointer_type
+| @builtin_raw_unsafe_continuation_type
+| @builtin_unsafe_value_buffer_type
+| @builtin_vector_type
+;
+
+dependent_member_types(  //dir=type
+  unique int id: @dependent_member_type,
+  int base_type: @type_or_none ref,
+  int associated_type_decl: @associated_type_decl_or_none ref
+);
+
+dynamic_self_types(  //dir=type
+  unique int id: @dynamic_self_type,
+  int static_self_type: @type_or_none ref
+);
+
+error_types(  //dir=type
+  unique int id: @error_type
+);
+
+existential_types(  //dir=type
+  unique int id: @existential_type,
+  int constraint: @type_or_none ref
+);
+
+in_out_types(  //dir=type
+  unique int id: @in_out_type,
+  int object_type: @type_or_none ref
+);
+
+l_value_types(  //dir=type
+  unique int id: @l_value_type,
+  int object_type: @type_or_none ref
+);
+
+module_types(  //dir=type
+  unique int id: @module_type,
+  int module: @module_decl_or_none ref
+);
+
+parameterized_protocol_types(  //dir=type
+  unique int id: @parameterized_protocol_type,
+  int base: @protocol_type_or_none ref
+);
+
+#keyset[id, index]
+parameterized_protocol_type_args(  //dir=type
+  int id: @parameterized_protocol_type ref,
+  int index: int ref,
+  int arg: @type_or_none ref
+);
+
+protocol_composition_types(  //dir=type
+  unique int id: @protocol_composition_type
+);
+
+#keyset[id, index]
+protocol_composition_type_members(  //dir=type
+  int id: @protocol_composition_type ref,
+  int index: int ref,
+  int member: @type_or_none ref
+);
+
+@reference_storage_type =
+  @unmanaged_storage_type
+| @unowned_storage_type
+| @weak_storage_type
+;
+
+#keyset[id]
+reference_storage_types(  //dir=type
+  int id: @reference_storage_type ref,
+  int referent_type: @type_or_none ref
+);
+
+@substitutable_type =
+  @archetype_type
+| @generic_type_param_type
+;
+
+@sugar_type =
+  @paren_type
+| @syntax_sugar_type
+| @type_alias_type
+;
+
+tuple_types(  //dir=type
+  unique int id: @tuple_type
+);
+
+#keyset[id, index]
+tuple_type_types(  //dir=type
+  int id: @tuple_type ref,
+  int index: int ref,
+  int type_: @type_or_none ref
+);
+
+#keyset[id, index]
+tuple_type_names(  //dir=type
+  int id: @tuple_type ref,
+  int index: int ref,
+  string name: string ref
+);
+
+unresolved_types(  //dir=type
+  unique int id: @unresolved_type
+);
+
+@any_builtin_integer_type =
+  @builtin_integer_literal_type
+| @builtin_integer_type
+;
+
+@archetype_type =
+  @opaque_type_archetype_type
+| @opened_archetype_type
+| @primary_archetype_type
+;
+
+#keyset[id]
+archetype_types(  //dir=type
+  int id: @archetype_type ref,
+  int interface_type: @type_or_none ref
+);
+
+#keyset[id]
+archetype_type_superclasses(  //dir=type
+  int id: @archetype_type ref,
+  int superclass: @type_or_none ref
+);
+
+#keyset[id, index]
+archetype_type_protocols(  //dir=type
+  int id: @archetype_type ref,
+  int index: int ref,
+  int protocol: @protocol_decl_or_none ref
+);
+
+builtin_bridge_object_types(  //dir=type
+  unique int id: @builtin_bridge_object_type
+);
+
+builtin_default_actor_storage_types(  //dir=type
+  unique int id: @builtin_default_actor_storage_type
+);
+
+builtin_executor_types(  //dir=type
+  unique int id: @builtin_executor_type
+);
+
+builtin_float_types(  //dir=type
+  unique int id: @builtin_float_type
+);
+
+builtin_job_types(  //dir=type
+  unique int id: @builtin_job_type
+);
+
+builtin_native_object_types(  //dir=type
+  unique int id: @builtin_native_object_type
+);
+
+builtin_raw_pointer_types(  //dir=type
+  unique int id: @builtin_raw_pointer_type
+);
+
+builtin_raw_unsafe_continuation_types(  //dir=type
+  unique int id: @builtin_raw_unsafe_continuation_type
+);
+
+builtin_unsafe_value_buffer_types(  //dir=type
+  unique int id: @builtin_unsafe_value_buffer_type
+);
+
+builtin_vector_types(  //dir=type
+  unique int id: @builtin_vector_type
+);
+
+existential_metatype_types(  //dir=type
+  unique int id: @existential_metatype_type
+);
+
+function_types(  //dir=type
+  unique int id: @function_type
+);
+
+generic_function_types(  //dir=type
+  unique int id: @generic_function_type
+);
+
+#keyset[id, index]
+generic_function_type_generic_params(  //dir=type
+  int id: @generic_function_type ref,
+  int index: int ref,
+  int generic_param: @generic_type_param_type_or_none ref
+);
+
+generic_type_param_types(  //dir=type
+  unique int id: @generic_type_param_type
+);
+
+metatype_types(  //dir=type
+  unique int id: @metatype_type
+);
+
+@nominal_or_bound_generic_nominal_type =
+  @bound_generic_type
+| @nominal_type
+;
+
+paren_types(  //dir=type
+  unique int id: @paren_type,
+  int type_: @type_or_none ref
+);
+
+@syntax_sugar_type =
+  @dictionary_type
+| @unary_syntax_sugar_type
+;
+
+type_alias_types(  //dir=type
+  unique int id: @type_alias_type,
+  int decl: @type_alias_decl_or_none ref
+);
+
+unbound_generic_types(  //dir=type
+  unique int id: @unbound_generic_type
+);
+
+unmanaged_storage_types(  //dir=type
+  unique int id: @unmanaged_storage_type
+);
+
+unowned_storage_types(  //dir=type
+  unique int id: @unowned_storage_type
+);
+
+weak_storage_types(  //dir=type
+  unique int id: @weak_storage_type
+);
+
+@bound_generic_type =
+  @bound_generic_class_type
+| @bound_generic_enum_type
+| @bound_generic_struct_type
+;
+
+#keyset[id, index]
+bound_generic_type_arg_types(  //dir=type
+  int id: @bound_generic_type ref,
+  int index: int ref,
+  int arg_type: @type_or_none ref
+);
+
+builtin_integer_literal_types(  //dir=type
+  unique int id: @builtin_integer_literal_type
+);
+
+builtin_integer_types(  //dir=type
+  unique int id: @builtin_integer_type
+);
+
+#keyset[id]
+builtin_integer_type_widths(  //dir=type
+  int id: @builtin_integer_type ref,
+  int width: int ref
+);
+
+dictionary_types(  //dir=type
+  unique int id: @dictionary_type,
+  int key_type: @type_or_none ref,
+  int value_type: @type_or_none ref
+);
+
+@nominal_type =
+  @class_type
+| @enum_type
+| @protocol_type
+| @struct_type
+;
+
+opaque_type_archetype_types(  //dir=type
+  unique int id: @opaque_type_archetype_type,
+  int declaration: @opaque_type_decl_or_none ref
+);
+
+opened_archetype_types(  //dir=type
+  unique int id: @opened_archetype_type
+);
+
+primary_archetype_types(  //dir=type
+  unique int id: @primary_archetype_type
+);
+
+@unary_syntax_sugar_type =
+  @array_slice_type
+| @optional_type
+| @variadic_sequence_type
+;
+
+#keyset[id]
+unary_syntax_sugar_types(  //dir=type
+  int id: @unary_syntax_sugar_type ref,
+  int base_type: @type_or_none ref
+);
+
+array_slice_types(  //dir=type
+  unique int id: @array_slice_type
+);
+
+bound_generic_class_types(  //dir=type
+  unique int id: @bound_generic_class_type
+);
+
+bound_generic_enum_types(  //dir=type
+  unique int id: @bound_generic_enum_type
+);
+
+bound_generic_struct_types(  //dir=type
+  unique int id: @bound_generic_struct_type
+);
+
+class_types(  //dir=type
+  unique int id: @class_type
+);
+
+enum_types(  //dir=type
+  unique int id: @enum_type
+);
+
+optional_types(  //dir=type
+  unique int id: @optional_type
+);
+
+protocol_types(  //dir=type
+  unique int id: @protocol_type
+);
+
+struct_types(  //dir=type
+  unique int id: @struct_type
+);
+
+variadic_sequence_types(  //dir=type
+  unique int id: @variadic_sequence_type
+);
+
+@abstract_function_decl_or_none =
+  @abstract_function_decl
+| @unspecified_element
+;
+
+@accessor_decl_or_none =
+  @accessor_decl
+| @unspecified_element
+;
+
+@argument_or_none =
+  @argument
+| @unspecified_element
+;
+
+@associated_type_decl_or_none =
+  @associated_type_decl
+| @unspecified_element
+;
+
+@ast_node_or_none =
+  @ast_node
+| @unspecified_element
+;
+
+@brace_stmt_or_none =
+  @brace_stmt
+| @unspecified_element
+;
+
+@case_label_item_or_none =
+  @case_label_item
+| @unspecified_element
+;
+
+@case_stmt_or_none =
+  @case_stmt
+| @unspecified_element
+;
+
+@closure_expr_or_none =
+  @closure_expr
+| @unspecified_element
+;
+
+@condition_element_or_none =
+  @condition_element
+| @unspecified_element
+;
+
+@constructor_decl_or_none =
+  @constructor_decl
+| @unspecified_element
+;
+
+@decl_or_none =
+  @decl
+| @unspecified_element
+;
+
+@enum_element_decl_or_none =
+  @enum_element_decl
+| @unspecified_element
+;
+
+@expr_or_none =
+  @expr
+| @unspecified_element
+;
+
+@file_or_none =
+  @file
+| @unspecified_element
+;
+
+@generic_type_param_decl_or_none =
+  @generic_type_param_decl
+| @unspecified_element
+;
+
+@generic_type_param_type_or_none =
+  @generic_type_param_type
+| @unspecified_element
+;
+
+@location_or_none =
+  @location
+| @unspecified_element
+;
+
+@module_decl_or_none =
+  @module_decl
+| @unspecified_element
+;
+
+@nominal_type_decl_or_none =
+  @nominal_type_decl
+| @unspecified_element
+;
+
+@opaque_type_decl_or_none =
+  @opaque_type_decl
+| @unspecified_element
+;
+
+@opaque_value_expr_or_none =
+  @opaque_value_expr
+| @unspecified_element
+;
+
+@param_decl_or_none =
+  @param_decl
+| @unspecified_element
+;
+
+@pattern_or_none =
+  @pattern
+| @unspecified_element
+;
+
+@pattern_binding_decl_or_none =
+  @pattern_binding_decl
+| @unspecified_element
+;
+
+@precedence_group_decl_or_none =
+  @precedence_group_decl
+| @unspecified_element
+;
+
+@protocol_decl_or_none =
+  @protocol_decl
+| @unspecified_element
+;
+
+@protocol_type_or_none =
+  @protocol_type
+| @unspecified_element
+;
+
+@stmt_or_none =
+  @stmt
+| @unspecified_element
+;
+
+@stmt_condition_or_none =
+  @stmt_condition
+| @unspecified_element
+;
+
+@string_literal_expr_or_none =
+  @string_literal_expr
+| @unspecified_element
+;
+
+@tap_expr_or_none =
+  @tap_expr
+| @unspecified_element
+;
+
+@type_or_none =
+  @type
+| @unspecified_element
+;
+
+@type_alias_decl_or_none =
+  @type_alias_decl
+| @unspecified_element
+;
+
+@type_repr_or_none =
+  @type_repr
+| @unspecified_element
+;
+
+@value_decl_or_none =
+  @unspecified_element
+| @value_decl
+;
+
+@var_decl_or_none =
+  @unspecified_element
+| @var_decl
+;
diff --git a/swift/downgrades/62fc609c1ab6ae748ff51362ffa5c368ba834ddf/swift.dbscheme b/swift/downgrades/62fc609c1ab6ae748ff51362ffa5c368ba834ddf/swift.dbscheme
new file mode 100644
index 00000000000..1a6e9325bd6
--- /dev/null
+++ b/swift/downgrades/62fc609c1ab6ae748ff51362ffa5c368ba834ddf/swift.dbscheme
@@ -0,0 +1,2513 @@
+// generated by codegen/codegen.py
+
+// from prefix.dbscheme
+/**
+ * The source location of the snapshot.
+ */
+sourceLocationPrefix(
+  string prefix: string ref
+);
+
+
+// from schema.py
+
+@element =
+  @callable
+| @file
+| @generic_context
+| @iterable_decl_context
+| @locatable
+| @location
+| @type
+;
+
+#keyset[id]
+element_is_unknown(
+  int id: @element ref
+);
+
+@callable =
+  @abstract_closure_expr
+| @abstract_function_decl
+;
+
+#keyset[id]
+callable_self_params(
+  int id: @callable ref,
+  int self_param: @param_decl_or_none ref
+);
+
+#keyset[id, index]
+callable_params(
+  int id: @callable ref,
+  int index: int ref,
+  int param: @param_decl_or_none ref
+);
+
+#keyset[id]
+callable_bodies(
+  int id: @callable ref,
+  int body: @brace_stmt_or_none ref
+);
+
+@file =
+  @db_file
+;
+
+#keyset[id]
+files(
+  int id: @file ref,
+  string name: string ref
+);
+
+@locatable =
+  @argument
+| @ast_node
+| @comment
+| @diagnostics
+| @error_element
+;
+
+#keyset[id]
+locatable_locations(
+  int id: @locatable ref,
+  int location: @location_or_none ref
+);
+
+@location =
+  @db_location
+;
+
+#keyset[id]
+locations(
+  int id: @location ref,
+  int file: @file_or_none ref,
+  int start_line: int ref,
+  int start_column: int ref,
+  int end_line: int ref,
+  int end_column: int ref
+);
+
+@ast_node =
+  @case_label_item
+| @condition_element
+| @decl
+| @expr
+| @pattern
+| @stmt
+| @stmt_condition
+| @type_repr
+;
+
+comments(
+  unique int id: @comment,
+  string text: string ref
+);
+
+db_files(
+  unique int id: @db_file
+);
+
+db_locations(
+  unique int id: @db_location
+);
+
+diagnostics(
+  unique int id: @diagnostics,
+  string text: string ref,
+  int kind: int ref
+);
+
+@error_element =
+  @error_expr
+| @error_type
+| @overloaded_decl_ref_expr
+| @unresolved_decl_ref_expr
+| @unresolved_dot_expr
+| @unresolved_member_chain_result_expr
+| @unresolved_member_expr
+| @unresolved_pattern_expr
+| @unresolved_specialize_expr
+| @unresolved_type
+| @unresolved_type_conversion_expr
+| @unspecified_element
+;
+
+unspecified_elements(
+  unique int id: @unspecified_element,
+  string property: string ref,
+  string error: string ref
+);
+
+#keyset[id]
+unspecified_element_parents(
+  int id: @unspecified_element ref,
+  int parent: @element ref
+);
+
+#keyset[id]
+unspecified_element_indices(
+  int id: @unspecified_element ref,
+  int index: int ref
+);
+
+@decl =
+  @enum_case_decl
+| @extension_decl
+| @if_config_decl
+| @import_decl
+| @missing_member_decl
+| @operator_decl
+| @pattern_binding_decl
+| @pound_diagnostic_decl
+| @precedence_group_decl
+| @top_level_code_decl
+| @value_decl
+;
+
+#keyset[id]
+decls(  //dir=decl
+  int id: @decl ref,
+  int module: @module_decl_or_none ref
+);
+
+@generic_context =
+  @abstract_function_decl
+| @extension_decl
+| @generic_type_decl
+| @subscript_decl
+;
+
+#keyset[id, index]
+generic_context_generic_type_params(  //dir=decl
+  int id: @generic_context ref,
+  int index: int ref,
+  int generic_type_param: @generic_type_param_decl_or_none ref
+);
+
+@iterable_decl_context =
+  @extension_decl
+| @nominal_type_decl
+;
+
+#keyset[id, index]
+iterable_decl_context_members(  //dir=decl
+  int id: @iterable_decl_context ref,
+  int index: int ref,
+  int member: @decl_or_none ref
+);
+
+enum_case_decls(  //dir=decl
+  unique int id: @enum_case_decl
+);
+
+#keyset[id, index]
+enum_case_decl_elements(  //dir=decl
+  int id: @enum_case_decl ref,
+  int index: int ref,
+  int element: @enum_element_decl_or_none ref
+);
+
+extension_decls(  //dir=decl
+  unique int id: @extension_decl,
+  int extended_type_decl: @nominal_type_decl_or_none ref
+);
+
+if_config_decls(  //dir=decl
+  unique int id: @if_config_decl
+);
+
+#keyset[id, index]
+if_config_decl_active_elements(  //dir=decl
+  int id: @if_config_decl ref,
+  int index: int ref,
+  int active_element: @ast_node_or_none ref
+);
+
+import_decls(  //dir=decl
+  unique int id: @import_decl
+);
+
+#keyset[id]
+import_decl_is_exported(  //dir=decl
+  int id: @import_decl ref
+);
+
+#keyset[id]
+import_decl_imported_modules(  //dir=decl
+  int id: @import_decl ref,
+  int imported_module: @module_decl_or_none ref
+);
+
+#keyset[id, index]
+import_decl_declarations(  //dir=decl
+  int id: @import_decl ref,
+  int index: int ref,
+  int declaration: @value_decl_or_none ref
+);
+
+missing_member_decls(  //dir=decl
+  unique int id: @missing_member_decl,
+  string name: string ref
+);
+
+@operator_decl =
+  @infix_operator_decl
+| @postfix_operator_decl
+| @prefix_operator_decl
+;
+
+#keyset[id]
+operator_decls(  //dir=decl
+  int id: @operator_decl ref,
+  string name: string ref
+);
+
+pattern_binding_decls(  //dir=decl
+  unique int id: @pattern_binding_decl
+);
+
+#keyset[id, index]
+pattern_binding_decl_inits(  //dir=decl
+  int id: @pattern_binding_decl ref,
+  int index: int ref,
+  int init: @expr_or_none ref
+);
+
+#keyset[id, index]
+pattern_binding_decl_patterns(  //dir=decl
+  int id: @pattern_binding_decl ref,
+  int index: int ref,
+  int pattern: @pattern_or_none ref
+);
+
+pound_diagnostic_decls(  //dir=decl
+  unique int id: @pound_diagnostic_decl,
+  int kind: int ref,
+  int message: @string_literal_expr_or_none ref
+);
+
+precedence_group_decls(  //dir=decl
+  unique int id: @precedence_group_decl
+);
+
+top_level_code_decls(  //dir=decl
+  unique int id: @top_level_code_decl,
+  int body: @brace_stmt_or_none ref
+);
+
+@value_decl =
+  @abstract_function_decl
+| @abstract_storage_decl
+| @enum_element_decl
+| @type_decl
+;
+
+#keyset[id]
+value_decls(  //dir=decl
+  int id: @value_decl ref,
+  int interface_type: @type_or_none ref
+);
+
+@abstract_function_decl =
+  @constructor_decl
+| @destructor_decl
+| @func_decl
+;
+
+#keyset[id]
+abstract_function_decls(  //dir=decl
+  int id: @abstract_function_decl ref,
+  string name: string ref
+);
+
+@abstract_storage_decl =
+  @subscript_decl
+| @var_decl
+;
+
+#keyset[id, index]
+abstract_storage_decl_accessor_decls(  //dir=decl
+  int id: @abstract_storage_decl ref,
+  int index: int ref,
+  int accessor_decl: @accessor_decl_or_none ref
+);
+
+enum_element_decls(  //dir=decl
+  unique int id: @enum_element_decl,
+  string name: string ref
+);
+
+#keyset[id, index]
+enum_element_decl_params(  //dir=decl
+  int id: @enum_element_decl ref,
+  int index: int ref,
+  int param: @param_decl_or_none ref
+);
+
+infix_operator_decls(  //dir=decl
+  unique int id: @infix_operator_decl
+);
+
+#keyset[id]
+infix_operator_decl_precedence_groups(  //dir=decl
+  int id: @infix_operator_decl ref,
+  int precedence_group: @precedence_group_decl_or_none ref
+);
+
+postfix_operator_decls(  //dir=decl
+  unique int id: @postfix_operator_decl
+);
+
+prefix_operator_decls(  //dir=decl
+  unique int id: @prefix_operator_decl
+);
+
+@type_decl =
+  @abstract_type_param_decl
+| @generic_type_decl
+| @module_decl
+;
+
+#keyset[id]
+type_decls(  //dir=decl
+  int id: @type_decl ref,
+  string name: string ref
+);
+
+#keyset[id, index]
+type_decl_base_types(  //dir=decl
+  int id: @type_decl ref,
+  int index: int ref,
+  int base_type: @type_or_none ref
+);
+
+@abstract_type_param_decl =
+  @associated_type_decl
+| @generic_type_param_decl
+;
+
+constructor_decls(  //dir=decl
+  unique int id: @constructor_decl
+);
+
+destructor_decls(  //dir=decl
+  unique int id: @destructor_decl
+);
+
+@func_decl =
+  @accessor_decl
+| @concrete_func_decl
+;
+
+@generic_type_decl =
+  @nominal_type_decl
+| @opaque_type_decl
+| @type_alias_decl
+;
+
+module_decls(  //dir=decl
+  unique int id: @module_decl
+);
+
+#keyset[id]
+module_decl_is_builtin_module(  //dir=decl
+  int id: @module_decl ref
+);
+
+#keyset[id]
+module_decl_is_system_module(  //dir=decl
+  int id: @module_decl ref
+);
+
+#keyset[id, index]
+module_decl_imported_modules(  //dir=decl
+  int id: @module_decl ref,
+  int index: int ref,
+  int imported_module: @module_decl_or_none ref
+);
+
+#keyset[id, index]
+module_decl_exported_modules(  //dir=decl
+  int id: @module_decl ref,
+  int index: int ref,
+  int exported_module: @module_decl_or_none ref
+);
+
+subscript_decls(  //dir=decl
+  unique int id: @subscript_decl,
+  int element_type: @type_or_none ref
+);
+
+#keyset[id, index]
+subscript_decl_params(  //dir=decl
+  int id: @subscript_decl ref,
+  int index: int ref,
+  int param: @param_decl_or_none ref
+);
+
+@var_decl =
+  @concrete_var_decl
+| @param_decl
+;
+
+#keyset[id]
+var_decls(  //dir=decl
+  int id: @var_decl ref,
+  string name: string ref,
+  int type_: @type_or_none ref
+);
+
+#keyset[id]
+var_decl_attached_property_wrapper_types(  //dir=decl
+  int id: @var_decl ref,
+  int attached_property_wrapper_type: @type_or_none ref
+);
+
+#keyset[id]
+var_decl_parent_patterns(  //dir=decl
+  int id: @var_decl ref,
+  int parent_pattern: @pattern_or_none ref
+);
+
+#keyset[id]
+var_decl_parent_initializers(  //dir=decl
+  int id: @var_decl ref,
+  int parent_initializer: @expr_or_none ref
+);
+
+#keyset[id]
+var_decl_property_wrapper_backing_var_bindings(  //dir=decl
+  int id: @var_decl ref,
+  int property_wrapper_backing_var_binding: @pattern_binding_decl_or_none ref
+);
+
+#keyset[id]
+var_decl_property_wrapper_backing_vars(  //dir=decl
+  int id: @var_decl ref,
+  int property_wrapper_backing_var: @var_decl_or_none ref
+);
+
+#keyset[id]
+var_decl_property_wrapper_projection_var_bindings(  //dir=decl
+  int id: @var_decl ref,
+  int property_wrapper_projection_var_binding: @pattern_binding_decl_or_none ref
+);
+
+#keyset[id]
+var_decl_property_wrapper_projection_vars(  //dir=decl
+  int id: @var_decl ref,
+  int property_wrapper_projection_var: @var_decl_or_none ref
+);
+
+accessor_decls(  //dir=decl
+  unique int id: @accessor_decl
+);
+
+#keyset[id]
+accessor_decl_is_getter(  //dir=decl
+  int id: @accessor_decl ref
+);
+
+#keyset[id]
+accessor_decl_is_setter(  //dir=decl
+  int id: @accessor_decl ref
+);
+
+#keyset[id]
+accessor_decl_is_will_set(  //dir=decl
+  int id: @accessor_decl ref
+);
+
+#keyset[id]
+accessor_decl_is_did_set(  //dir=decl
+  int id: @accessor_decl ref
+);
+
+#keyset[id]
+accessor_decl_is_read(  //dir=decl
+  int id: @accessor_decl ref
+);
+
+#keyset[id]
+accessor_decl_is_modify(  //dir=decl
+  int id: @accessor_decl ref
+);
+
+#keyset[id]
+accessor_decl_is_unsafe_address(  //dir=decl
+  int id: @accessor_decl ref
+);
+
+#keyset[id]
+accessor_decl_is_unsafe_mutable_address(  //dir=decl
+  int id: @accessor_decl ref
+);
+
+associated_type_decls(  //dir=decl
+  unique int id: @associated_type_decl
+);
+
+concrete_func_decls(  //dir=decl
+  unique int id: @concrete_func_decl
+);
+
+concrete_var_decls(  //dir=decl
+  unique int id: @concrete_var_decl,
+  int introducer_int: int ref
+);
+
+generic_type_param_decls(  //dir=decl
+  unique int id: @generic_type_param_decl
+);
+
+@nominal_type_decl =
+  @class_decl
+| @enum_decl
+| @protocol_decl
+| @struct_decl
+;
+
+#keyset[id]
+nominal_type_decls(  //dir=decl
+  int id: @nominal_type_decl ref,
+  int type_: @type_or_none ref
+);
+
+opaque_type_decls(  //dir=decl
+  unique int id: @opaque_type_decl,
+  int naming_declaration: @value_decl_or_none ref
+);
+
+#keyset[id, index]
+opaque_type_decl_opaque_generic_params(  //dir=decl
+  int id: @opaque_type_decl ref,
+  int index: int ref,
+  int opaque_generic_param: @generic_type_param_type_or_none ref
+);
+
+param_decls(  //dir=decl
+  unique int id: @param_decl
+);
+
+#keyset[id]
+param_decl_is_inout(  //dir=decl
+  int id: @param_decl ref
+);
+
+#keyset[id]
+param_decl_property_wrapper_local_wrapped_var_bindings(  //dir=decl
+  int id: @param_decl ref,
+  int property_wrapper_local_wrapped_var_binding: @pattern_binding_decl_or_none ref
+);
+
+#keyset[id]
+param_decl_property_wrapper_local_wrapped_vars(  //dir=decl
+  int id: @param_decl ref,
+  int property_wrapper_local_wrapped_var: @var_decl_or_none ref
+);
+
+type_alias_decls(  //dir=decl
+  unique int id: @type_alias_decl
+);
+
+class_decls(  //dir=decl
+  unique int id: @class_decl
+);
+
+enum_decls(  //dir=decl
+  unique int id: @enum_decl
+);
+
+protocol_decls(  //dir=decl
+  unique int id: @protocol_decl
+);
+
+struct_decls(  //dir=decl
+  unique int id: @struct_decl
+);
+
+arguments(  //dir=expr
+  unique int id: @argument,
+  string label: string ref,
+  int expr: @expr_or_none ref
+);
+
+@expr =
+  @abstract_closure_expr
+| @any_try_expr
+| @applied_property_wrapper_expr
+| @apply_expr
+| @assign_expr
+| @bind_optional_expr
+| @capture_list_expr
+| @collection_expr
+| @decl_ref_expr
+| @default_argument_expr
+| @discard_assignment_expr
+| @dot_syntax_base_ignored_expr
+| @dynamic_type_expr
+| @enum_is_case_expr
+| @error_expr
+| @explicit_cast_expr
+| @force_value_expr
+| @identity_expr
+| @if_expr
+| @implicit_conversion_expr
+| @in_out_expr
+| @key_path_application_expr
+| @key_path_dot_expr
+| @key_path_expr
+| @lazy_initializer_expr
+| @literal_expr
+| @lookup_expr
+| @make_temporarily_escapable_expr
+| @obj_c_selector_expr
+| @one_way_expr
+| @opaque_value_expr
+| @open_existential_expr
+| @optional_evaluation_expr
+| @other_constructor_decl_ref_expr
+| @overloaded_decl_ref_expr
+| @property_wrapper_value_placeholder_expr
+| @rebind_self_in_constructor_expr
+| @sequence_expr
+| @super_ref_expr
+| @tap_expr
+| @tuple_element_expr
+| @tuple_expr
+| @type_expr
+| @unresolved_decl_ref_expr
+| @unresolved_dot_expr
+| @unresolved_member_expr
+| @unresolved_pattern_expr
+| @unresolved_specialize_expr
+| @vararg_expansion_expr
+;
+
+#keyset[id]
+expr_types(  //dir=expr
+  int id: @expr ref,
+  int type_: @type_or_none ref
+);
+
+@abstract_closure_expr =
+  @auto_closure_expr
+| @closure_expr
+;
+
+@any_try_expr =
+  @force_try_expr
+| @optional_try_expr
+| @try_expr
+;
+
+#keyset[id]
+any_try_exprs(  //dir=expr
+  int id: @any_try_expr ref,
+  int sub_expr: @expr_or_none ref
+);
+
+applied_property_wrapper_exprs(  //dir=expr
+  unique int id: @applied_property_wrapper_expr,
+  int kind: int ref,
+  int value: @expr_or_none ref,
+  int param: @param_decl_or_none ref
+);
+
+@apply_expr =
+  @binary_expr
+| @call_expr
+| @postfix_unary_expr
+| @prefix_unary_expr
+| @self_apply_expr
+;
+
+#keyset[id]
+apply_exprs(  //dir=expr
+  int id: @apply_expr ref,
+  int function: @expr_or_none ref
+);
+
+#keyset[id, index]
+apply_expr_arguments(  //dir=expr
+  int id: @apply_expr ref,
+  int index: int ref,
+  int argument: @argument_or_none ref
+);
+
+assign_exprs(  //dir=expr
+  unique int id: @assign_expr,
+  int dest: @expr_or_none ref,
+  int source: @expr_or_none ref
+);
+
+bind_optional_exprs(  //dir=expr
+  unique int id: @bind_optional_expr,
+  int sub_expr: @expr_or_none ref
+);
+
+capture_list_exprs(  //dir=expr
+  unique int id: @capture_list_expr,
+  int closure_body: @closure_expr_or_none ref
+);
+
+#keyset[id, index]
+capture_list_expr_binding_decls(  //dir=expr
+  int id: @capture_list_expr ref,
+  int index: int ref,
+  int binding_decl: @pattern_binding_decl_or_none ref
+);
+
+@collection_expr =
+  @array_expr
+| @dictionary_expr
+;
+
+decl_ref_exprs(  //dir=expr
+  unique int id: @decl_ref_expr,
+  int decl: @decl_or_none ref
+);
+
+#keyset[id, index]
+decl_ref_expr_replacement_types(  //dir=expr
+  int id: @decl_ref_expr ref,
+  int index: int ref,
+  int replacement_type: @type_or_none ref
+);
+
+#keyset[id]
+decl_ref_expr_has_direct_to_storage_semantics(  //dir=expr
+  int id: @decl_ref_expr ref
+);
+
+#keyset[id]
+decl_ref_expr_has_direct_to_implementation_semantics(  //dir=expr
+  int id: @decl_ref_expr ref
+);
+
+#keyset[id]
+decl_ref_expr_has_ordinary_semantics(  //dir=expr
+  int id: @decl_ref_expr ref
+);
+
+#keyset[id]
+decl_ref_expr_has_distributed_thunk_semantics(  //dir=expr
+  int id: @decl_ref_expr ref
+);
+
+default_argument_exprs(  //dir=expr
+  unique int id: @default_argument_expr,
+  int param_decl: @param_decl_or_none ref,
+  int param_index: int ref
+);
+
+#keyset[id]
+default_argument_expr_caller_side_defaults(  //dir=expr
+  int id: @default_argument_expr ref,
+  int caller_side_default: @expr_or_none ref
+);
+
+discard_assignment_exprs(  //dir=expr
+  unique int id: @discard_assignment_expr
+);
+
+dot_syntax_base_ignored_exprs(  //dir=expr
+  unique int id: @dot_syntax_base_ignored_expr,
+  int qualifier: @expr_or_none ref,
+  int sub_expr: @expr_or_none ref
+);
+
+dynamic_type_exprs(  //dir=expr
+  unique int id: @dynamic_type_expr,
+  int base: @expr_or_none ref
+);
+
+enum_is_case_exprs(  //dir=expr
+  unique int id: @enum_is_case_expr,
+  int sub_expr: @expr_or_none ref,
+  int element: @enum_element_decl_or_none ref
+);
+
+error_exprs(  //dir=expr
+  unique int id: @error_expr
+);
+
+@explicit_cast_expr =
+  @checked_cast_expr
+| @coerce_expr
+;
+
+#keyset[id]
+explicit_cast_exprs(  //dir=expr
+  int id: @explicit_cast_expr ref,
+  int sub_expr: @expr_or_none ref
+);
+
+force_value_exprs(  //dir=expr
+  unique int id: @force_value_expr,
+  int sub_expr: @expr_or_none ref
+);
+
+@identity_expr =
+  @await_expr
+| @dot_self_expr
+| @paren_expr
+| @unresolved_member_chain_result_expr
+;
+
+#keyset[id]
+identity_exprs(  //dir=expr
+  int id: @identity_expr ref,
+  int sub_expr: @expr_or_none ref
+);
+
+if_exprs(  //dir=expr
+  unique int id: @if_expr,
+  int condition: @expr_or_none ref,
+  int then_expr: @expr_or_none ref,
+  int else_expr: @expr_or_none ref
+);
+
+@implicit_conversion_expr =
+  @any_hashable_erasure_expr
+| @archetype_to_super_expr
+| @array_to_pointer_expr
+| @bridge_from_obj_c_expr
+| @bridge_to_obj_c_expr
+| @class_metatype_to_object_expr
+| @collection_upcast_conversion_expr
+| @conditional_bridge_from_obj_c_expr
+| @covariant_function_conversion_expr
+| @covariant_return_conversion_expr
+| @derived_to_base_expr
+| @destructure_tuple_expr
+| @differentiable_function_expr
+| @differentiable_function_extract_original_expr
+| @erasure_expr
+| @existential_metatype_to_object_expr
+| @foreign_object_conversion_expr
+| @function_conversion_expr
+| @in_out_to_pointer_expr
+| @inject_into_optional_expr
+| @linear_function_expr
+| @linear_function_extract_original_expr
+| @linear_to_differentiable_function_expr
+| @load_expr
+| @metatype_conversion_expr
+| @pointer_to_pointer_expr
+| @protocol_metatype_to_object_expr
+| @string_to_pointer_expr
+| @underlying_to_opaque_expr
+| @unevaluated_instance_expr
+| @unresolved_type_conversion_expr
+;
+
+#keyset[id]
+implicit_conversion_exprs(  //dir=expr
+  int id: @implicit_conversion_expr ref,
+  int sub_expr: @expr_or_none ref
+);
+
+in_out_exprs(  //dir=expr
+  unique int id: @in_out_expr,
+  int sub_expr: @expr_or_none ref
+);
+
+key_path_application_exprs(  //dir=expr
+  unique int id: @key_path_application_expr,
+  int base: @expr_or_none ref,
+  int key_path: @expr_or_none ref
+);
+
+key_path_dot_exprs(  //dir=expr
+  unique int id: @key_path_dot_expr
+);
+
+key_path_exprs(  //dir=expr
+  unique int id: @key_path_expr
+);
+
+#keyset[id]
+key_path_expr_roots(  //dir=expr
+  int id: @key_path_expr ref,
+  int root: @type_repr_or_none ref
+);
+
+#keyset[id]
+key_path_expr_parsed_paths(  //dir=expr
+  int id: @key_path_expr ref,
+  int parsed_path: @expr_or_none ref
+);
+
+lazy_initializer_exprs(  //dir=expr
+  unique int id: @lazy_initializer_expr,
+  int sub_expr: @expr_or_none ref
+);
+
+@literal_expr =
+  @builtin_literal_expr
+| @interpolated_string_literal_expr
+| @nil_literal_expr
+| @object_literal_expr
+| @regex_literal_expr
+;
+
+@lookup_expr =
+  @dynamic_lookup_expr
+| @member_ref_expr
+| @subscript_expr
+;
+
+#keyset[id]
+lookup_exprs(  //dir=expr
+  int id: @lookup_expr ref,
+  int base: @expr_or_none ref
+);
+
+#keyset[id]
+lookup_expr_members(  //dir=expr
+  int id: @lookup_expr ref,
+  int member: @decl_or_none ref
+);
+
+make_temporarily_escapable_exprs(  //dir=expr
+  unique int id: @make_temporarily_escapable_expr,
+  int escaping_closure: @opaque_value_expr_or_none ref,
+  int nonescaping_closure: @expr_or_none ref,
+  int sub_expr: @expr_or_none ref
+);
+
+obj_c_selector_exprs(  //dir=expr
+  unique int id: @obj_c_selector_expr,
+  int sub_expr: @expr_or_none ref,
+  int method: @abstract_function_decl_or_none ref
+);
+
+one_way_exprs(  //dir=expr
+  unique int id: @one_way_expr,
+  int sub_expr: @expr_or_none ref
+);
+
+opaque_value_exprs(  //dir=expr
+  unique int id: @opaque_value_expr
+);
+
+open_existential_exprs(  //dir=expr
+  unique int id: @open_existential_expr,
+  int sub_expr: @expr_or_none ref,
+  int existential: @expr_or_none ref,
+  int opaque_expr: @opaque_value_expr_or_none ref
+);
+
+optional_evaluation_exprs(  //dir=expr
+  unique int id: @optional_evaluation_expr,
+  int sub_expr: @expr_or_none ref
+);
+
+other_constructor_decl_ref_exprs(  //dir=expr
+  unique int id: @other_constructor_decl_ref_expr,
+  int constructor_decl: @constructor_decl_or_none ref
+);
+
+overloaded_decl_ref_exprs(  //dir=expr
+  unique int id: @overloaded_decl_ref_expr
+);
+
+#keyset[id, index]
+overloaded_decl_ref_expr_possible_declarations(  //dir=expr
+  int id: @overloaded_decl_ref_expr ref,
+  int index: int ref,
+  int possible_declaration: @value_decl_or_none ref
+);
+
+property_wrapper_value_placeholder_exprs(  //dir=expr
+  unique int id: @property_wrapper_value_placeholder_expr,
+  int placeholder: @opaque_value_expr_or_none ref
+);
+
+#keyset[id]
+property_wrapper_value_placeholder_expr_wrapped_values(  //dir=expr
+  int id: @property_wrapper_value_placeholder_expr ref,
+  int wrapped_value: @expr_or_none ref
+);
+
+rebind_self_in_constructor_exprs(  //dir=expr
+  unique int id: @rebind_self_in_constructor_expr,
+  int sub_expr: @expr_or_none ref,
+  int self: @var_decl_or_none ref
+);
+
+sequence_exprs(  //dir=expr
+  unique int id: @sequence_expr
+);
+
+#keyset[id, index]
+sequence_expr_elements(  //dir=expr
+  int id: @sequence_expr ref,
+  int index: int ref,
+  int element: @expr_or_none ref
+);
+
+super_ref_exprs(  //dir=expr
+  unique int id: @super_ref_expr,
+  int self: @var_decl_or_none ref
+);
+
+tap_exprs(  //dir=expr
+  unique int id: @tap_expr,
+  int body: @brace_stmt_or_none ref,
+  int var: @var_decl_or_none ref
+);
+
+#keyset[id]
+tap_expr_sub_exprs(  //dir=expr
+  int id: @tap_expr ref,
+  int sub_expr: @expr_or_none ref
+);
+
+tuple_element_exprs(  //dir=expr
+  unique int id: @tuple_element_expr,
+  int sub_expr: @expr_or_none ref,
+  int index: int ref
+);
+
+tuple_exprs(  //dir=expr
+  unique int id: @tuple_expr
+);
+
+#keyset[id, index]
+tuple_expr_elements(  //dir=expr
+  int id: @tuple_expr ref,
+  int index: int ref,
+  int element: @expr_or_none ref
+);
+
+type_exprs(  //dir=expr
+  unique int id: @type_expr
+);
+
+#keyset[id]
+type_expr_type_reprs(  //dir=expr
+  int id: @type_expr ref,
+  int type_repr: @type_repr_or_none ref
+);
+
+unresolved_decl_ref_exprs(  //dir=expr
+  unique int id: @unresolved_decl_ref_expr
+);
+
+#keyset[id]
+unresolved_decl_ref_expr_names(  //dir=expr
+  int id: @unresolved_decl_ref_expr ref,
+  string name: string ref
+);
+
+unresolved_dot_exprs(  //dir=expr
+  unique int id: @unresolved_dot_expr,
+  int base: @expr_or_none ref,
+  string name: string ref
+);
+
+unresolved_member_exprs(  //dir=expr
+  unique int id: @unresolved_member_expr,
+  string name: string ref
+);
+
+unresolved_pattern_exprs(  //dir=expr
+  unique int id: @unresolved_pattern_expr,
+  int sub_pattern: @pattern_or_none ref
+);
+
+unresolved_specialize_exprs(  //dir=expr
+  unique int id: @unresolved_specialize_expr,
+  int sub_expr: @expr_or_none ref
+);
+
+vararg_expansion_exprs(  //dir=expr
+  unique int id: @vararg_expansion_expr,
+  int sub_expr: @expr_or_none ref
+);
+
+any_hashable_erasure_exprs(  //dir=expr
+  unique int id: @any_hashable_erasure_expr
+);
+
+archetype_to_super_exprs(  //dir=expr
+  unique int id: @archetype_to_super_expr
+);
+
+array_exprs(  //dir=expr
+  unique int id: @array_expr
+);
+
+#keyset[id, index]
+array_expr_elements(  //dir=expr
+  int id: @array_expr ref,
+  int index: int ref,
+  int element: @expr_or_none ref
+);
+
+array_to_pointer_exprs(  //dir=expr
+  unique int id: @array_to_pointer_expr
+);
+
+auto_closure_exprs(  //dir=expr
+  unique int id: @auto_closure_expr
+);
+
+await_exprs(  //dir=expr
+  unique int id: @await_expr
+);
+
+binary_exprs(  //dir=expr
+  unique int id: @binary_expr
+);
+
+bridge_from_obj_c_exprs(  //dir=expr
+  unique int id: @bridge_from_obj_c_expr
+);
+
+bridge_to_obj_c_exprs(  //dir=expr
+  unique int id: @bridge_to_obj_c_expr
+);
+
+@builtin_literal_expr =
+  @boolean_literal_expr
+| @magic_identifier_literal_expr
+| @number_literal_expr
+| @string_literal_expr
+;
+
+call_exprs(  //dir=expr
+  unique int id: @call_expr
+);
+
+@checked_cast_expr =
+  @conditional_checked_cast_expr
+| @forced_checked_cast_expr
+| @is_expr
+;
+
+class_metatype_to_object_exprs(  //dir=expr
+  unique int id: @class_metatype_to_object_expr
+);
+
+closure_exprs(  //dir=expr
+  unique int id: @closure_expr
+);
+
+coerce_exprs(  //dir=expr
+  unique int id: @coerce_expr
+);
+
+collection_upcast_conversion_exprs(  //dir=expr
+  unique int id: @collection_upcast_conversion_expr
+);
+
+conditional_bridge_from_obj_c_exprs(  //dir=expr
+  unique int id: @conditional_bridge_from_obj_c_expr
+);
+
+covariant_function_conversion_exprs(  //dir=expr
+  unique int id: @covariant_function_conversion_expr
+);
+
+covariant_return_conversion_exprs(  //dir=expr
+  unique int id: @covariant_return_conversion_expr
+);
+
+derived_to_base_exprs(  //dir=expr
+  unique int id: @derived_to_base_expr
+);
+
+destructure_tuple_exprs(  //dir=expr
+  unique int id: @destructure_tuple_expr
+);
+
+dictionary_exprs(  //dir=expr
+  unique int id: @dictionary_expr
+);
+
+#keyset[id, index]
+dictionary_expr_elements(  //dir=expr
+  int id: @dictionary_expr ref,
+  int index: int ref,
+  int element: @expr_or_none ref
+);
+
+differentiable_function_exprs(  //dir=expr
+  unique int id: @differentiable_function_expr
+);
+
+differentiable_function_extract_original_exprs(  //dir=expr
+  unique int id: @differentiable_function_extract_original_expr
+);
+
+dot_self_exprs(  //dir=expr
+  unique int id: @dot_self_expr
+);
+
+@dynamic_lookup_expr =
+  @dynamic_member_ref_expr
+| @dynamic_subscript_expr
+;
+
+erasure_exprs(  //dir=expr
+  unique int id: @erasure_expr
+);
+
+existential_metatype_to_object_exprs(  //dir=expr
+  unique int id: @existential_metatype_to_object_expr
+);
+
+force_try_exprs(  //dir=expr
+  unique int id: @force_try_expr
+);
+
+foreign_object_conversion_exprs(  //dir=expr
+  unique int id: @foreign_object_conversion_expr
+);
+
+function_conversion_exprs(  //dir=expr
+  unique int id: @function_conversion_expr
+);
+
+in_out_to_pointer_exprs(  //dir=expr
+  unique int id: @in_out_to_pointer_expr
+);
+
+inject_into_optional_exprs(  //dir=expr
+  unique int id: @inject_into_optional_expr
+);
+
+interpolated_string_literal_exprs(  //dir=expr
+  unique int id: @interpolated_string_literal_expr
+);
+
+#keyset[id]
+interpolated_string_literal_expr_interpolation_exprs(  //dir=expr
+  int id: @interpolated_string_literal_expr ref,
+  int interpolation_expr: @opaque_value_expr_or_none ref
+);
+
+#keyset[id]
+interpolated_string_literal_expr_interpolation_count_exprs(  //dir=expr
+  int id: @interpolated_string_literal_expr ref,
+  int interpolation_count_expr: @expr_or_none ref
+);
+
+#keyset[id]
+interpolated_string_literal_expr_literal_capacity_exprs(  //dir=expr
+  int id: @interpolated_string_literal_expr ref,
+  int literal_capacity_expr: @expr_or_none ref
+);
+
+#keyset[id]
+interpolated_string_literal_expr_appending_exprs(  //dir=expr
+  int id: @interpolated_string_literal_expr ref,
+  int appending_expr: @tap_expr_or_none ref
+);
+
+linear_function_exprs(  //dir=expr
+  unique int id: @linear_function_expr
+);
+
+linear_function_extract_original_exprs(  //dir=expr
+  unique int id: @linear_function_extract_original_expr
+);
+
+linear_to_differentiable_function_exprs(  //dir=expr
+  unique int id: @linear_to_differentiable_function_expr
+);
+
+load_exprs(  //dir=expr
+  unique int id: @load_expr
+);
+
+member_ref_exprs(  //dir=expr
+  unique int id: @member_ref_expr
+);
+
+#keyset[id]
+member_ref_expr_has_direct_to_storage_semantics(  //dir=expr
+  int id: @member_ref_expr ref
+);
+
+#keyset[id]
+member_ref_expr_has_direct_to_implementation_semantics(  //dir=expr
+  int id: @member_ref_expr ref
+);
+
+#keyset[id]
+member_ref_expr_has_ordinary_semantics(  //dir=expr
+  int id: @member_ref_expr ref
+);
+
+#keyset[id]
+member_ref_expr_has_distributed_thunk_semantics(  //dir=expr
+  int id: @member_ref_expr ref
+);
+
+metatype_conversion_exprs(  //dir=expr
+  unique int id: @metatype_conversion_expr
+);
+
+nil_literal_exprs(  //dir=expr
+  unique int id: @nil_literal_expr
+);
+
+object_literal_exprs(  //dir=expr
+  unique int id: @object_literal_expr,
+  int kind: int ref
+);
+
+#keyset[id, index]
+object_literal_expr_arguments(  //dir=expr
+  int id: @object_literal_expr ref,
+  int index: int ref,
+  int argument: @argument_or_none ref
+);
+
+optional_try_exprs(  //dir=expr
+  unique int id: @optional_try_expr
+);
+
+paren_exprs(  //dir=expr
+  unique int id: @paren_expr
+);
+
+pointer_to_pointer_exprs(  //dir=expr
+  unique int id: @pointer_to_pointer_expr
+);
+
+postfix_unary_exprs(  //dir=expr
+  unique int id: @postfix_unary_expr
+);
+
+prefix_unary_exprs(  //dir=expr
+  unique int id: @prefix_unary_expr
+);
+
+protocol_metatype_to_object_exprs(  //dir=expr
+  unique int id: @protocol_metatype_to_object_expr
+);
+
+regex_literal_exprs(  //dir=expr
+  unique int id: @regex_literal_expr
+);
+
+@self_apply_expr =
+  @constructor_ref_call_expr
+| @dot_syntax_call_expr
+;
+
+#keyset[id]
+self_apply_exprs(  //dir=expr
+  int id: @self_apply_expr ref,
+  int base: @expr_or_none ref
+);
+
+string_to_pointer_exprs(  //dir=expr
+  unique int id: @string_to_pointer_expr
+);
+
+subscript_exprs(  //dir=expr
+  unique int id: @subscript_expr
+);
+
+#keyset[id, index]
+subscript_expr_arguments(  //dir=expr
+  int id: @subscript_expr ref,
+  int index: int ref,
+  int argument: @argument_or_none ref
+);
+
+#keyset[id]
+subscript_expr_has_direct_to_storage_semantics(  //dir=expr
+  int id: @subscript_expr ref
+);
+
+#keyset[id]
+subscript_expr_has_direct_to_implementation_semantics(  //dir=expr
+  int id: @subscript_expr ref
+);
+
+#keyset[id]
+subscript_expr_has_ordinary_semantics(  //dir=expr
+  int id: @subscript_expr ref
+);
+
+#keyset[id]
+subscript_expr_has_distributed_thunk_semantics(  //dir=expr
+  int id: @subscript_expr ref
+);
+
+try_exprs(  //dir=expr
+  unique int id: @try_expr
+);
+
+underlying_to_opaque_exprs(  //dir=expr
+  unique int id: @underlying_to_opaque_expr
+);
+
+unevaluated_instance_exprs(  //dir=expr
+  unique int id: @unevaluated_instance_expr
+);
+
+unresolved_member_chain_result_exprs(  //dir=expr
+  unique int id: @unresolved_member_chain_result_expr
+);
+
+unresolved_type_conversion_exprs(  //dir=expr
+  unique int id: @unresolved_type_conversion_expr
+);
+
+boolean_literal_exprs(  //dir=expr
+  unique int id: @boolean_literal_expr,
+  boolean value: boolean ref
+);
+
+conditional_checked_cast_exprs(  //dir=expr
+  unique int id: @conditional_checked_cast_expr
+);
+
+constructor_ref_call_exprs(  //dir=expr
+  unique int id: @constructor_ref_call_expr
+);
+
+dot_syntax_call_exprs(  //dir=expr
+  unique int id: @dot_syntax_call_expr
+);
+
+dynamic_member_ref_exprs(  //dir=expr
+  unique int id: @dynamic_member_ref_expr
+);
+
+dynamic_subscript_exprs(  //dir=expr
+  unique int id: @dynamic_subscript_expr
+);
+
+forced_checked_cast_exprs(  //dir=expr
+  unique int id: @forced_checked_cast_expr
+);
+
+is_exprs(  //dir=expr
+  unique int id: @is_expr
+);
+
+magic_identifier_literal_exprs(  //dir=expr
+  unique int id: @magic_identifier_literal_expr,
+  string kind: string ref
+);
+
+@number_literal_expr =
+  @float_literal_expr
+| @integer_literal_expr
+;
+
+string_literal_exprs(  //dir=expr
+  unique int id: @string_literal_expr,
+  string value: string ref
+);
+
+float_literal_exprs(  //dir=expr
+  unique int id: @float_literal_expr,
+  string string_value: string ref
+);
+
+integer_literal_exprs(  //dir=expr
+  unique int id: @integer_literal_expr,
+  string string_value: string ref
+);
+
+@pattern =
+  @any_pattern
+| @binding_pattern
+| @bool_pattern
+| @enum_element_pattern
+| @expr_pattern
+| @is_pattern
+| @named_pattern
+| @optional_some_pattern
+| @paren_pattern
+| @tuple_pattern
+| @typed_pattern
+;
+
+any_patterns(  //dir=pattern
+  unique int id: @any_pattern
+);
+
+binding_patterns(  //dir=pattern
+  unique int id: @binding_pattern,
+  int sub_pattern: @pattern_or_none ref
+);
+
+bool_patterns(  //dir=pattern
+  unique int id: @bool_pattern,
+  boolean value: boolean ref
+);
+
+enum_element_patterns(  //dir=pattern
+  unique int id: @enum_element_pattern,
+  int element: @enum_element_decl_or_none ref
+);
+
+#keyset[id]
+enum_element_pattern_sub_patterns(  //dir=pattern
+  int id: @enum_element_pattern ref,
+  int sub_pattern: @pattern_or_none ref
+);
+
+expr_patterns(  //dir=pattern
+  unique int id: @expr_pattern,
+  int sub_expr: @expr_or_none ref
+);
+
+is_patterns(  //dir=pattern
+  unique int id: @is_pattern
+);
+
+#keyset[id]
+is_pattern_cast_type_reprs(  //dir=pattern
+  int id: @is_pattern ref,
+  int cast_type_repr: @type_repr_or_none ref
+);
+
+#keyset[id]
+is_pattern_sub_patterns(  //dir=pattern
+  int id: @is_pattern ref,
+  int sub_pattern: @pattern_or_none ref
+);
+
+named_patterns(  //dir=pattern
+  unique int id: @named_pattern,
+  string name: string ref
+);
+
+optional_some_patterns(  //dir=pattern
+  unique int id: @optional_some_pattern,
+  int sub_pattern: @pattern_or_none ref
+);
+
+paren_patterns(  //dir=pattern
+  unique int id: @paren_pattern,
+  int sub_pattern: @pattern_or_none ref
+);
+
+tuple_patterns(  //dir=pattern
+  unique int id: @tuple_pattern
+);
+
+#keyset[id, index]
+tuple_pattern_elements(  //dir=pattern
+  int id: @tuple_pattern ref,
+  int index: int ref,
+  int element: @pattern_or_none ref
+);
+
+typed_patterns(  //dir=pattern
+  unique int id: @typed_pattern,
+  int sub_pattern: @pattern_or_none ref
+);
+
+#keyset[id]
+typed_pattern_type_reprs(  //dir=pattern
+  int id: @typed_pattern ref,
+  int type_repr: @type_repr_or_none ref
+);
+
+case_label_items(  //dir=stmt
+  unique int id: @case_label_item,
+  int pattern: @pattern_or_none ref
+);
+
+#keyset[id]
+case_label_item_guards(  //dir=stmt
+  int id: @case_label_item ref,
+  int guard: @expr_or_none ref
+);
+
+condition_elements(  //dir=stmt
+  unique int id: @condition_element
+);
+
+#keyset[id]
+condition_element_booleans(  //dir=stmt
+  int id: @condition_element ref,
+  int boolean_: @expr_or_none ref
+);
+
+#keyset[id]
+condition_element_patterns(  //dir=stmt
+  int id: @condition_element ref,
+  int pattern: @pattern_or_none ref
+);
+
+#keyset[id]
+condition_element_initializers(  //dir=stmt
+  int id: @condition_element ref,
+  int initializer: @expr_or_none ref
+);
+
+@stmt =
+  @brace_stmt
+| @break_stmt
+| @case_stmt
+| @continue_stmt
+| @defer_stmt
+| @fail_stmt
+| @fallthrough_stmt
+| @labeled_stmt
+| @pound_assert_stmt
+| @return_stmt
+| @throw_stmt
+| @yield_stmt
+;
+
+stmt_conditions(  //dir=stmt
+  unique int id: @stmt_condition
+);
+
+#keyset[id, index]
+stmt_condition_elements(  //dir=stmt
+  int id: @stmt_condition ref,
+  int index: int ref,
+  int element: @condition_element_or_none ref
+);
+
+brace_stmts(  //dir=stmt
+  unique int id: @brace_stmt
+);
+
+#keyset[id, index]
+brace_stmt_elements(  //dir=stmt
+  int id: @brace_stmt ref,
+  int index: int ref,
+  int element: @ast_node_or_none ref
+);
+
+break_stmts(  //dir=stmt
+  unique int id: @break_stmt
+);
+
+#keyset[id]
+break_stmt_target_names(  //dir=stmt
+  int id: @break_stmt ref,
+  string target_name: string ref
+);
+
+#keyset[id]
+break_stmt_targets(  //dir=stmt
+  int id: @break_stmt ref,
+  int target: @stmt_or_none ref
+);
+
+case_stmts(  //dir=stmt
+  unique int id: @case_stmt,
+  int body: @stmt_or_none ref
+);
+
+#keyset[id, index]
+case_stmt_labels(  //dir=stmt
+  int id: @case_stmt ref,
+  int index: int ref,
+  int label: @case_label_item_or_none ref
+);
+
+#keyset[id, index]
+case_stmt_variables(  //dir=stmt
+  int id: @case_stmt ref,
+  int index: int ref,
+  int variable: @var_decl_or_none ref
+);
+
+continue_stmts(  //dir=stmt
+  unique int id: @continue_stmt
+);
+
+#keyset[id]
+continue_stmt_target_names(  //dir=stmt
+  int id: @continue_stmt ref,
+  string target_name: string ref
+);
+
+#keyset[id]
+continue_stmt_targets(  //dir=stmt
+  int id: @continue_stmt ref,
+  int target: @stmt_or_none ref
+);
+
+defer_stmts(  //dir=stmt
+  unique int id: @defer_stmt,
+  int body: @brace_stmt_or_none ref
+);
+
+fail_stmts(  //dir=stmt
+  unique int id: @fail_stmt
+);
+
+fallthrough_stmts(  //dir=stmt
+  unique int id: @fallthrough_stmt,
+  int fallthrough_source: @case_stmt_or_none ref,
+  int fallthrough_dest: @case_stmt_or_none ref
+);
+
+@labeled_stmt =
+  @do_catch_stmt
+| @do_stmt
+| @for_each_stmt
+| @labeled_conditional_stmt
+| @repeat_while_stmt
+| @switch_stmt
+;
+
+#keyset[id]
+labeled_stmt_labels(  //dir=stmt
+  int id: @labeled_stmt ref,
+  string label: string ref
+);
+
+pound_assert_stmts(  //dir=stmt
+  unique int id: @pound_assert_stmt,
+  int condition: @expr_or_none ref,
+  string message: string ref
+);
+
+return_stmts(  //dir=stmt
+  unique int id: @return_stmt
+);
+
+#keyset[id]
+return_stmt_results(  //dir=stmt
+  int id: @return_stmt ref,
+  int result: @expr_or_none ref
+);
+
+throw_stmts(  //dir=stmt
+  unique int id: @throw_stmt,
+  int sub_expr: @expr_or_none ref
+);
+
+yield_stmts(  //dir=stmt
+  unique int id: @yield_stmt
+);
+
+#keyset[id, index]
+yield_stmt_results(  //dir=stmt
+  int id: @yield_stmt ref,
+  int index: int ref,
+  int result: @expr_or_none ref
+);
+
+do_catch_stmts(  //dir=stmt
+  unique int id: @do_catch_stmt,
+  int body: @stmt_or_none ref
+);
+
+#keyset[id, index]
+do_catch_stmt_catches(  //dir=stmt
+  int id: @do_catch_stmt ref,
+  int index: int ref,
+  int catch: @case_stmt_or_none ref
+);
+
+do_stmts(  //dir=stmt
+  unique int id: @do_stmt,
+  int body: @brace_stmt_or_none ref
+);
+
+for_each_stmts(  //dir=stmt
+  unique int id: @for_each_stmt,
+  int pattern: @pattern_or_none ref,
+  int sequence: @expr_or_none ref,
+  int body: @brace_stmt_or_none ref
+);
+
+#keyset[id]
+for_each_stmt_wheres(  //dir=stmt
+  int id: @for_each_stmt ref,
+  int where: @expr_or_none ref
+);
+
+@labeled_conditional_stmt =
+  @guard_stmt
+| @if_stmt
+| @while_stmt
+;
+
+#keyset[id]
+labeled_conditional_stmts(  //dir=stmt
+  int id: @labeled_conditional_stmt ref,
+  int condition: @stmt_condition_or_none ref
+);
+
+repeat_while_stmts(  //dir=stmt
+  unique int id: @repeat_while_stmt,
+  int condition: @expr_or_none ref,
+  int body: @stmt_or_none ref
+);
+
+switch_stmts(  //dir=stmt
+  unique int id: @switch_stmt,
+  int expr: @expr_or_none ref
+);
+
+#keyset[id, index]
+switch_stmt_cases(  //dir=stmt
+  int id: @switch_stmt ref,
+  int index: int ref,
+  int case_: @case_stmt_or_none ref
+);
+
+guard_stmts(  //dir=stmt
+  unique int id: @guard_stmt,
+  int body: @brace_stmt_or_none ref
+);
+
+if_stmts(  //dir=stmt
+  unique int id: @if_stmt,
+  int then: @stmt_or_none ref
+);
+
+#keyset[id]
+if_stmt_elses(  //dir=stmt
+  int id: @if_stmt ref,
+  int else: @stmt_or_none ref
+);
+
+while_stmts(  //dir=stmt
+  unique int id: @while_stmt,
+  int body: @stmt_or_none ref
+);
+
+@type =
+  @any_function_type
+| @any_generic_type
+| @any_metatype_type
+| @builtin_type
+| @dependent_member_type
+| @dynamic_self_type
+| @error_type
+| @existential_type
+| @in_out_type
+| @l_value_type
+| @module_type
+| @parameterized_protocol_type
+| @protocol_composition_type
+| @reference_storage_type
+| @substitutable_type
+| @sugar_type
+| @tuple_type
+| @unresolved_type
+;
+
+#keyset[id]
+types(  //dir=type
+  int id: @type ref,
+  string name: string ref,
+  int canonical_type: @type_or_none ref
+);
+
+type_reprs(  //dir=type
+  unique int id: @type_repr,
+  int type_: @type_or_none ref
+);
+
+@any_function_type =
+  @function_type
+| @generic_function_type
+;
+
+#keyset[id]
+any_function_types(  //dir=type
+  int id: @any_function_type ref,
+  int result: @type_or_none ref
+);
+
+#keyset[id, index]
+any_function_type_param_types(  //dir=type
+  int id: @any_function_type ref,
+  int index: int ref,
+  int param_type: @type_or_none ref
+);
+
+#keyset[id, index]
+any_function_type_param_labels(  //dir=type
+  int id: @any_function_type ref,
+  int index: int ref,
+  string param_label: string ref
+);
+
+#keyset[id]
+any_function_type_is_throwing(  //dir=type
+  int id: @any_function_type ref
+);
+
+#keyset[id]
+any_function_type_is_async(  //dir=type
+  int id: @any_function_type ref
+);
+
+@any_generic_type =
+  @nominal_or_bound_generic_nominal_type
+| @unbound_generic_type
+;
+
+#keyset[id]
+any_generic_types(  //dir=type
+  int id: @any_generic_type ref,
+  int declaration: @decl_or_none ref
+);
+
+#keyset[id]
+any_generic_type_parents(  //dir=type
+  int id: @any_generic_type ref,
+  int parent: @type_or_none ref
+);
+
+@any_metatype_type =
+  @existential_metatype_type
+| @metatype_type
+;
+
+@builtin_type =
+  @any_builtin_integer_type
+| @builtin_bridge_object_type
+| @builtin_default_actor_storage_type
+| @builtin_executor_type
+| @builtin_float_type
+| @builtin_job_type
+| @builtin_native_object_type
+| @builtin_raw_pointer_type
+| @builtin_raw_unsafe_continuation_type
+| @builtin_unsafe_value_buffer_type
+| @builtin_vector_type
+;
+
+dependent_member_types(  //dir=type
+  unique int id: @dependent_member_type,
+  int base_type: @type_or_none ref,
+  int associated_type_decl: @associated_type_decl_or_none ref
+);
+
+dynamic_self_types(  //dir=type
+  unique int id: @dynamic_self_type,
+  int static_self_type: @type_or_none ref
+);
+
+error_types(  //dir=type
+  unique int id: @error_type
+);
+
+existential_types(  //dir=type
+  unique int id: @existential_type,
+  int constraint: @type_or_none ref
+);
+
+in_out_types(  //dir=type
+  unique int id: @in_out_type,
+  int object_type: @type_or_none ref
+);
+
+l_value_types(  //dir=type
+  unique int id: @l_value_type,
+  int object_type: @type_or_none ref
+);
+
+module_types(  //dir=type
+  unique int id: @module_type,
+  int module: @module_decl_or_none ref
+);
+
+parameterized_protocol_types(  //dir=type
+  unique int id: @parameterized_protocol_type,
+  int base: @protocol_type_or_none ref
+);
+
+#keyset[id, index]
+parameterized_protocol_type_args(  //dir=type
+  int id: @parameterized_protocol_type ref,
+  int index: int ref,
+  int arg: @type_or_none ref
+);
+
+protocol_composition_types(  //dir=type
+  unique int id: @protocol_composition_type
+);
+
+#keyset[id, index]
+protocol_composition_type_members(  //dir=type
+  int id: @protocol_composition_type ref,
+  int index: int ref,
+  int member: @type_or_none ref
+);
+
+@reference_storage_type =
+  @unmanaged_storage_type
+| @unowned_storage_type
+| @weak_storage_type
+;
+
+#keyset[id]
+reference_storage_types(  //dir=type
+  int id: @reference_storage_type ref,
+  int referent_type: @type_or_none ref
+);
+
+@substitutable_type =
+  @archetype_type
+| @generic_type_param_type
+;
+
+@sugar_type =
+  @paren_type
+| @syntax_sugar_type
+| @type_alias_type
+;
+
+tuple_types(  //dir=type
+  unique int id: @tuple_type
+);
+
+#keyset[id, index]
+tuple_type_types(  //dir=type
+  int id: @tuple_type ref,
+  int index: int ref,
+  int type_: @type_or_none ref
+);
+
+#keyset[id, index]
+tuple_type_names(  //dir=type
+  int id: @tuple_type ref,
+  int index: int ref,
+  string name: string ref
+);
+
+unresolved_types(  //dir=type
+  unique int id: @unresolved_type
+);
+
+@any_builtin_integer_type =
+  @builtin_integer_literal_type
+| @builtin_integer_type
+;
+
+@archetype_type =
+  @opaque_type_archetype_type
+| @opened_archetype_type
+| @primary_archetype_type
+;
+
+#keyset[id]
+archetype_types(  //dir=type
+  int id: @archetype_type ref,
+  int interface_type: @type_or_none ref
+);
+
+#keyset[id]
+archetype_type_superclasses(  //dir=type
+  int id: @archetype_type ref,
+  int superclass: @type_or_none ref
+);
+
+#keyset[id, index]
+archetype_type_protocols(  //dir=type
+  int id: @archetype_type ref,
+  int index: int ref,
+  int protocol: @protocol_decl_or_none ref
+);
+
+builtin_bridge_object_types(  //dir=type
+  unique int id: @builtin_bridge_object_type
+);
+
+builtin_default_actor_storage_types(  //dir=type
+  unique int id: @builtin_default_actor_storage_type
+);
+
+builtin_executor_types(  //dir=type
+  unique int id: @builtin_executor_type
+);
+
+builtin_float_types(  //dir=type
+  unique int id: @builtin_float_type
+);
+
+builtin_job_types(  //dir=type
+  unique int id: @builtin_job_type
+);
+
+builtin_native_object_types(  //dir=type
+  unique int id: @builtin_native_object_type
+);
+
+builtin_raw_pointer_types(  //dir=type
+  unique int id: @builtin_raw_pointer_type
+);
+
+builtin_raw_unsafe_continuation_types(  //dir=type
+  unique int id: @builtin_raw_unsafe_continuation_type
+);
+
+builtin_unsafe_value_buffer_types(  //dir=type
+  unique int id: @builtin_unsafe_value_buffer_type
+);
+
+builtin_vector_types(  //dir=type
+  unique int id: @builtin_vector_type
+);
+
+existential_metatype_types(  //dir=type
+  unique int id: @existential_metatype_type
+);
+
+function_types(  //dir=type
+  unique int id: @function_type
+);
+
+generic_function_types(  //dir=type
+  unique int id: @generic_function_type
+);
+
+#keyset[id, index]
+generic_function_type_generic_params(  //dir=type
+  int id: @generic_function_type ref,
+  int index: int ref,
+  int generic_param: @generic_type_param_type_or_none ref
+);
+
+generic_type_param_types(  //dir=type
+  unique int id: @generic_type_param_type
+);
+
+metatype_types(  //dir=type
+  unique int id: @metatype_type
+);
+
+@nominal_or_bound_generic_nominal_type =
+  @bound_generic_type
+| @nominal_type
+;
+
+paren_types(  //dir=type
+  unique int id: @paren_type,
+  int type_: @type_or_none ref
+);
+
+@syntax_sugar_type =
+  @dictionary_type
+| @unary_syntax_sugar_type
+;
+
+type_alias_types(  //dir=type
+  unique int id: @type_alias_type,
+  int decl: @type_alias_decl_or_none ref
+);
+
+unbound_generic_types(  //dir=type
+  unique int id: @unbound_generic_type
+);
+
+unmanaged_storage_types(  //dir=type
+  unique int id: @unmanaged_storage_type
+);
+
+unowned_storage_types(  //dir=type
+  unique int id: @unowned_storage_type
+);
+
+weak_storage_types(  //dir=type
+  unique int id: @weak_storage_type
+);
+
+@bound_generic_type =
+  @bound_generic_class_type
+| @bound_generic_enum_type
+| @bound_generic_struct_type
+;
+
+#keyset[id, index]
+bound_generic_type_arg_types(  //dir=type
+  int id: @bound_generic_type ref,
+  int index: int ref,
+  int arg_type: @type_or_none ref
+);
+
+builtin_integer_literal_types(  //dir=type
+  unique int id: @builtin_integer_literal_type
+);
+
+builtin_integer_types(  //dir=type
+  unique int id: @builtin_integer_type
+);
+
+#keyset[id]
+builtin_integer_type_widths(  //dir=type
+  int id: @builtin_integer_type ref,
+  int width: int ref
+);
+
+dictionary_types(  //dir=type
+  unique int id: @dictionary_type,
+  int key_type: @type_or_none ref,
+  int value_type: @type_or_none ref
+);
+
+@nominal_type =
+  @class_type
+| @enum_type
+| @protocol_type
+| @struct_type
+;
+
+opaque_type_archetype_types(  //dir=type
+  unique int id: @opaque_type_archetype_type,
+  int declaration: @opaque_type_decl_or_none ref
+);
+
+opened_archetype_types(  //dir=type
+  unique int id: @opened_archetype_type
+);
+
+primary_archetype_types(  //dir=type
+  unique int id: @primary_archetype_type
+);
+
+@unary_syntax_sugar_type =
+  @array_slice_type
+| @optional_type
+| @variadic_sequence_type
+;
+
+#keyset[id]
+unary_syntax_sugar_types(  //dir=type
+  int id: @unary_syntax_sugar_type ref,
+  int base_type: @type_or_none ref
+);
+
+array_slice_types(  //dir=type
+  unique int id: @array_slice_type
+);
+
+bound_generic_class_types(  //dir=type
+  unique int id: @bound_generic_class_type
+);
+
+bound_generic_enum_types(  //dir=type
+  unique int id: @bound_generic_enum_type
+);
+
+bound_generic_struct_types(  //dir=type
+  unique int id: @bound_generic_struct_type
+);
+
+class_types(  //dir=type
+  unique int id: @class_type
+);
+
+enum_types(  //dir=type
+  unique int id: @enum_type
+);
+
+optional_types(  //dir=type
+  unique int id: @optional_type
+);
+
+protocol_types(  //dir=type
+  unique int id: @protocol_type
+);
+
+struct_types(  //dir=type
+  unique int id: @struct_type
+);
+
+variadic_sequence_types(  //dir=type
+  unique int id: @variadic_sequence_type
+);
+
+@abstract_function_decl_or_none =
+  @abstract_function_decl
+| @unspecified_element
+;
+
+@accessor_decl_or_none =
+  @accessor_decl
+| @unspecified_element
+;
+
+@argument_or_none =
+  @argument
+| @unspecified_element
+;
+
+@associated_type_decl_or_none =
+  @associated_type_decl
+| @unspecified_element
+;
+
+@ast_node_or_none =
+  @ast_node
+| @unspecified_element
+;
+
+@brace_stmt_or_none =
+  @brace_stmt
+| @unspecified_element
+;
+
+@case_label_item_or_none =
+  @case_label_item
+| @unspecified_element
+;
+
+@case_stmt_or_none =
+  @case_stmt
+| @unspecified_element
+;
+
+@closure_expr_or_none =
+  @closure_expr
+| @unspecified_element
+;
+
+@condition_element_or_none =
+  @condition_element
+| @unspecified_element
+;
+
+@constructor_decl_or_none =
+  @constructor_decl
+| @unspecified_element
+;
+
+@decl_or_none =
+  @decl
+| @unspecified_element
+;
+
+@enum_element_decl_or_none =
+  @enum_element_decl
+| @unspecified_element
+;
+
+@expr_or_none =
+  @expr
+| @unspecified_element
+;
+
+@file_or_none =
+  @file
+| @unspecified_element
+;
+
+@generic_type_param_decl_or_none =
+  @generic_type_param_decl
+| @unspecified_element
+;
+
+@generic_type_param_type_or_none =
+  @generic_type_param_type
+| @unspecified_element
+;
+
+@location_or_none =
+  @location
+| @unspecified_element
+;
+
+@module_decl_or_none =
+  @module_decl
+| @unspecified_element
+;
+
+@nominal_type_decl_or_none =
+  @nominal_type_decl
+| @unspecified_element
+;
+
+@opaque_type_decl_or_none =
+  @opaque_type_decl
+| @unspecified_element
+;
+
+@opaque_value_expr_or_none =
+  @opaque_value_expr
+| @unspecified_element
+;
+
+@param_decl_or_none =
+  @param_decl
+| @unspecified_element
+;
+
+@pattern_or_none =
+  @pattern
+| @unspecified_element
+;
+
+@pattern_binding_decl_or_none =
+  @pattern_binding_decl
+| @unspecified_element
+;
+
+@precedence_group_decl_or_none =
+  @precedence_group_decl
+| @unspecified_element
+;
+
+@protocol_decl_or_none =
+  @protocol_decl
+| @unspecified_element
+;
+
+@protocol_type_or_none =
+  @protocol_type
+| @unspecified_element
+;
+
+@stmt_or_none =
+  @stmt
+| @unspecified_element
+;
+
+@stmt_condition_or_none =
+  @stmt_condition
+| @unspecified_element
+;
+
+@string_literal_expr_or_none =
+  @string_literal_expr
+| @unspecified_element
+;
+
+@tap_expr_or_none =
+  @tap_expr
+| @unspecified_element
+;
+
+@type_or_none =
+  @type
+| @unspecified_element
+;
+
+@type_alias_decl_or_none =
+  @type_alias_decl
+| @unspecified_element
+;
+
+@type_repr_or_none =
+  @type_repr
+| @unspecified_element
+;
+
+@value_decl_or_none =
+  @unspecified_element
+| @value_decl
+;
+
+@var_decl_or_none =
+  @unspecified_element
+| @var_decl
+;
diff --git a/swift/downgrades/62fc609c1ab6ae748ff51362ffa5c368ba834ddf/unspecified_elements.ql b/swift/downgrades/62fc609c1ab6ae748ff51362ffa5c368ba834ddf/unspecified_elements.ql
new file mode 100644
index 00000000000..0be4d91ad6f
--- /dev/null
+++ b/swift/downgrades/62fc609c1ab6ae748ff51362ffa5c368ba834ddf/unspecified_elements.ql
@@ -0,0 +1,13 @@
+// Moves AbiSafeConversionExprs into UnspecifiedElements
+class Element extends @element {
+  string toString() { none() }
+}
+
+from Element e, string property, string error
+where
+  abi_safe_conversion_exprs(e) and
+  property = "" and
+  error = "Removed ABISafeConversionExpr during the database downgrade"
+  or
+  unspecified_elements(e, property, error)
+select e, property, error
diff --git a/swift/downgrades/62fc609c1ab6ae748ff51362ffa5c368ba834ddf/upgrade.properties b/swift/downgrades/62fc609c1ab6ae748ff51362ffa5c368ba834ddf/upgrade.properties
new file mode 100644
index 00000000000..70c85c2ad6c
--- /dev/null
+++ b/swift/downgrades/62fc609c1ab6ae748ff51362ffa5c368ba834ddf/upgrade.properties
@@ -0,0 +1,5 @@
+description: Remove new implicit conversion
+compatibility: partial
+unspecified_elements.rel: run unspecified_elements.ql
+implicit_conversion_exprs.rel: run implicit_conversion_exprs.ql
+abi_safe_conversion_exprs.rel: delete
diff --git a/swift/ql/lib/upgrades/1a6e9325bd60462e669e524438174deef4476df0/old.dbscheme b/swift/ql/lib/upgrades/1a6e9325bd60462e669e524438174deef4476df0/old.dbscheme
new file mode 100644
index 00000000000..1a6e9325bd6
--- /dev/null
+++ b/swift/ql/lib/upgrades/1a6e9325bd60462e669e524438174deef4476df0/old.dbscheme
@@ -0,0 +1,2513 @@
+// generated by codegen/codegen.py
+
+// from prefix.dbscheme
+/**
+ * The source location of the snapshot.
+ */
+sourceLocationPrefix(
+  string prefix: string ref
+);
+
+
+// from schema.py
+
+@element =
+  @callable
+| @file
+| @generic_context
+| @iterable_decl_context
+| @locatable
+| @location
+| @type
+;
+
+#keyset[id]
+element_is_unknown(
+  int id: @element ref
+);
+
+@callable =
+  @abstract_closure_expr
+| @abstract_function_decl
+;
+
+#keyset[id]
+callable_self_params(
+  int id: @callable ref,
+  int self_param: @param_decl_or_none ref
+);
+
+#keyset[id, index]
+callable_params(
+  int id: @callable ref,
+  int index: int ref,
+  int param: @param_decl_or_none ref
+);
+
+#keyset[id]
+callable_bodies(
+  int id: @callable ref,
+  int body: @brace_stmt_or_none ref
+);
+
+@file =
+  @db_file
+;
+
+#keyset[id]
+files(
+  int id: @file ref,
+  string name: string ref
+);
+
+@locatable =
+  @argument
+| @ast_node
+| @comment
+| @diagnostics
+| @error_element
+;
+
+#keyset[id]
+locatable_locations(
+  int id: @locatable ref,
+  int location: @location_or_none ref
+);
+
+@location =
+  @db_location
+;
+
+#keyset[id]
+locations(
+  int id: @location ref,
+  int file: @file_or_none ref,
+  int start_line: int ref,
+  int start_column: int ref,
+  int end_line: int ref,
+  int end_column: int ref
+);
+
+@ast_node =
+  @case_label_item
+| @condition_element
+| @decl
+| @expr
+| @pattern
+| @stmt
+| @stmt_condition
+| @type_repr
+;
+
+comments(
+  unique int id: @comment,
+  string text: string ref
+);
+
+db_files(
+  unique int id: @db_file
+);
+
+db_locations(
+  unique int id: @db_location
+);
+
+diagnostics(
+  unique int id: @diagnostics,
+  string text: string ref,
+  int kind: int ref
+);
+
+@error_element =
+  @error_expr
+| @error_type
+| @overloaded_decl_ref_expr
+| @unresolved_decl_ref_expr
+| @unresolved_dot_expr
+| @unresolved_member_chain_result_expr
+| @unresolved_member_expr
+| @unresolved_pattern_expr
+| @unresolved_specialize_expr
+| @unresolved_type
+| @unresolved_type_conversion_expr
+| @unspecified_element
+;
+
+unspecified_elements(
+  unique int id: @unspecified_element,
+  string property: string ref,
+  string error: string ref
+);
+
+#keyset[id]
+unspecified_element_parents(
+  int id: @unspecified_element ref,
+  int parent: @element ref
+);
+
+#keyset[id]
+unspecified_element_indices(
+  int id: @unspecified_element ref,
+  int index: int ref
+);
+
+@decl =
+  @enum_case_decl
+| @extension_decl
+| @if_config_decl
+| @import_decl
+| @missing_member_decl
+| @operator_decl
+| @pattern_binding_decl
+| @pound_diagnostic_decl
+| @precedence_group_decl
+| @top_level_code_decl
+| @value_decl
+;
+
+#keyset[id]
+decls(  //dir=decl
+  int id: @decl ref,
+  int module: @module_decl_or_none ref
+);
+
+@generic_context =
+  @abstract_function_decl
+| @extension_decl
+| @generic_type_decl
+| @subscript_decl
+;
+
+#keyset[id, index]
+generic_context_generic_type_params(  //dir=decl
+  int id: @generic_context ref,
+  int index: int ref,
+  int generic_type_param: @generic_type_param_decl_or_none ref
+);
+
+@iterable_decl_context =
+  @extension_decl
+| @nominal_type_decl
+;
+
+#keyset[id, index]
+iterable_decl_context_members(  //dir=decl
+  int id: @iterable_decl_context ref,
+  int index: int ref,
+  int member: @decl_or_none ref
+);
+
+enum_case_decls(  //dir=decl
+  unique int id: @enum_case_decl
+);
+
+#keyset[id, index]
+enum_case_decl_elements(  //dir=decl
+  int id: @enum_case_decl ref,
+  int index: int ref,
+  int element: @enum_element_decl_or_none ref
+);
+
+extension_decls(  //dir=decl
+  unique int id: @extension_decl,
+  int extended_type_decl: @nominal_type_decl_or_none ref
+);
+
+if_config_decls(  //dir=decl
+  unique int id: @if_config_decl
+);
+
+#keyset[id, index]
+if_config_decl_active_elements(  //dir=decl
+  int id: @if_config_decl ref,
+  int index: int ref,
+  int active_element: @ast_node_or_none ref
+);
+
+import_decls(  //dir=decl
+  unique int id: @import_decl
+);
+
+#keyset[id]
+import_decl_is_exported(  //dir=decl
+  int id: @import_decl ref
+);
+
+#keyset[id]
+import_decl_imported_modules(  //dir=decl
+  int id: @import_decl ref,
+  int imported_module: @module_decl_or_none ref
+);
+
+#keyset[id, index]
+import_decl_declarations(  //dir=decl
+  int id: @import_decl ref,
+  int index: int ref,
+  int declaration: @value_decl_or_none ref
+);
+
+missing_member_decls(  //dir=decl
+  unique int id: @missing_member_decl,
+  string name: string ref
+);
+
+@operator_decl =
+  @infix_operator_decl
+| @postfix_operator_decl
+| @prefix_operator_decl
+;
+
+#keyset[id]
+operator_decls(  //dir=decl
+  int id: @operator_decl ref,
+  string name: string ref
+);
+
+pattern_binding_decls(  //dir=decl
+  unique int id: @pattern_binding_decl
+);
+
+#keyset[id, index]
+pattern_binding_decl_inits(  //dir=decl
+  int id: @pattern_binding_decl ref,
+  int index: int ref,
+  int init: @expr_or_none ref
+);
+
+#keyset[id, index]
+pattern_binding_decl_patterns(  //dir=decl
+  int id: @pattern_binding_decl ref,
+  int index: int ref,
+  int pattern: @pattern_or_none ref
+);
+
+pound_diagnostic_decls(  //dir=decl
+  unique int id: @pound_diagnostic_decl,
+  int kind: int ref,
+  int message: @string_literal_expr_or_none ref
+);
+
+precedence_group_decls(  //dir=decl
+  unique int id: @precedence_group_decl
+);
+
+top_level_code_decls(  //dir=decl
+  unique int id: @top_level_code_decl,
+  int body: @brace_stmt_or_none ref
+);
+
+@value_decl =
+  @abstract_function_decl
+| @abstract_storage_decl
+| @enum_element_decl
+| @type_decl
+;
+
+#keyset[id]
+value_decls(  //dir=decl
+  int id: @value_decl ref,
+  int interface_type: @type_or_none ref
+);
+
+@abstract_function_decl =
+  @constructor_decl
+| @destructor_decl
+| @func_decl
+;
+
+#keyset[id]
+abstract_function_decls(  //dir=decl
+  int id: @abstract_function_decl ref,
+  string name: string ref
+);
+
+@abstract_storage_decl =
+  @subscript_decl
+| @var_decl
+;
+
+#keyset[id, index]
+abstract_storage_decl_accessor_decls(  //dir=decl
+  int id: @abstract_storage_decl ref,
+  int index: int ref,
+  int accessor_decl: @accessor_decl_or_none ref
+);
+
+enum_element_decls(  //dir=decl
+  unique int id: @enum_element_decl,
+  string name: string ref
+);
+
+#keyset[id, index]
+enum_element_decl_params(  //dir=decl
+  int id: @enum_element_decl ref,
+  int index: int ref,
+  int param: @param_decl_or_none ref
+);
+
+infix_operator_decls(  //dir=decl
+  unique int id: @infix_operator_decl
+);
+
+#keyset[id]
+infix_operator_decl_precedence_groups(  //dir=decl
+  int id: @infix_operator_decl ref,
+  int precedence_group: @precedence_group_decl_or_none ref
+);
+
+postfix_operator_decls(  //dir=decl
+  unique int id: @postfix_operator_decl
+);
+
+prefix_operator_decls(  //dir=decl
+  unique int id: @prefix_operator_decl
+);
+
+@type_decl =
+  @abstract_type_param_decl
+| @generic_type_decl
+| @module_decl
+;
+
+#keyset[id]
+type_decls(  //dir=decl
+  int id: @type_decl ref,
+  string name: string ref
+);
+
+#keyset[id, index]
+type_decl_base_types(  //dir=decl
+  int id: @type_decl ref,
+  int index: int ref,
+  int base_type: @type_or_none ref
+);
+
+@abstract_type_param_decl =
+  @associated_type_decl
+| @generic_type_param_decl
+;
+
+constructor_decls(  //dir=decl
+  unique int id: @constructor_decl
+);
+
+destructor_decls(  //dir=decl
+  unique int id: @destructor_decl
+);
+
+@func_decl =
+  @accessor_decl
+| @concrete_func_decl
+;
+
+@generic_type_decl =
+  @nominal_type_decl
+| @opaque_type_decl
+| @type_alias_decl
+;
+
+module_decls(  //dir=decl
+  unique int id: @module_decl
+);
+
+#keyset[id]
+module_decl_is_builtin_module(  //dir=decl
+  int id: @module_decl ref
+);
+
+#keyset[id]
+module_decl_is_system_module(  //dir=decl
+  int id: @module_decl ref
+);
+
+#keyset[id, index]
+module_decl_imported_modules(  //dir=decl
+  int id: @module_decl ref,
+  int index: int ref,
+  int imported_module: @module_decl_or_none ref
+);
+
+#keyset[id, index]
+module_decl_exported_modules(  //dir=decl
+  int id: @module_decl ref,
+  int index: int ref,
+  int exported_module: @module_decl_or_none ref
+);
+
+subscript_decls(  //dir=decl
+  unique int id: @subscript_decl,
+  int element_type: @type_or_none ref
+);
+
+#keyset[id, index]
+subscript_decl_params(  //dir=decl
+  int id: @subscript_decl ref,
+  int index: int ref,
+  int param: @param_decl_or_none ref
+);
+
+@var_decl =
+  @concrete_var_decl
+| @param_decl
+;
+
+#keyset[id]
+var_decls(  //dir=decl
+  int id: @var_decl ref,
+  string name: string ref,
+  int type_: @type_or_none ref
+);
+
+#keyset[id]
+var_decl_attached_property_wrapper_types(  //dir=decl
+  int id: @var_decl ref,
+  int attached_property_wrapper_type: @type_or_none ref
+);
+
+#keyset[id]
+var_decl_parent_patterns(  //dir=decl
+  int id: @var_decl ref,
+  int parent_pattern: @pattern_or_none ref
+);
+
+#keyset[id]
+var_decl_parent_initializers(  //dir=decl
+  int id: @var_decl ref,
+  int parent_initializer: @expr_or_none ref
+);
+
+#keyset[id]
+var_decl_property_wrapper_backing_var_bindings(  //dir=decl
+  int id: @var_decl ref,
+  int property_wrapper_backing_var_binding: @pattern_binding_decl_or_none ref
+);
+
+#keyset[id]
+var_decl_property_wrapper_backing_vars(  //dir=decl
+  int id: @var_decl ref,
+  int property_wrapper_backing_var: @var_decl_or_none ref
+);
+
+#keyset[id]
+var_decl_property_wrapper_projection_var_bindings(  //dir=decl
+  int id: @var_decl ref,
+  int property_wrapper_projection_var_binding: @pattern_binding_decl_or_none ref
+);
+
+#keyset[id]
+var_decl_property_wrapper_projection_vars(  //dir=decl
+  int id: @var_decl ref,
+  int property_wrapper_projection_var: @var_decl_or_none ref
+);
+
+accessor_decls(  //dir=decl
+  unique int id: @accessor_decl
+);
+
+#keyset[id]
+accessor_decl_is_getter(  //dir=decl
+  int id: @accessor_decl ref
+);
+
+#keyset[id]
+accessor_decl_is_setter(  //dir=decl
+  int id: @accessor_decl ref
+);
+
+#keyset[id]
+accessor_decl_is_will_set(  //dir=decl
+  int id: @accessor_decl ref
+);
+
+#keyset[id]
+accessor_decl_is_did_set(  //dir=decl
+  int id: @accessor_decl ref
+);
+
+#keyset[id]
+accessor_decl_is_read(  //dir=decl
+  int id: @accessor_decl ref
+);
+
+#keyset[id]
+accessor_decl_is_modify(  //dir=decl
+  int id: @accessor_decl ref
+);
+
+#keyset[id]
+accessor_decl_is_unsafe_address(  //dir=decl
+  int id: @accessor_decl ref
+);
+
+#keyset[id]
+accessor_decl_is_unsafe_mutable_address(  //dir=decl
+  int id: @accessor_decl ref
+);
+
+associated_type_decls(  //dir=decl
+  unique int id: @associated_type_decl
+);
+
+concrete_func_decls(  //dir=decl
+  unique int id: @concrete_func_decl
+);
+
+concrete_var_decls(  //dir=decl
+  unique int id: @concrete_var_decl,
+  int introducer_int: int ref
+);
+
+generic_type_param_decls(  //dir=decl
+  unique int id: @generic_type_param_decl
+);
+
+@nominal_type_decl =
+  @class_decl
+| @enum_decl
+| @protocol_decl
+| @struct_decl
+;
+
+#keyset[id]
+nominal_type_decls(  //dir=decl
+  int id: @nominal_type_decl ref,
+  int type_: @type_or_none ref
+);
+
+opaque_type_decls(  //dir=decl
+  unique int id: @opaque_type_decl,
+  int naming_declaration: @value_decl_or_none ref
+);
+
+#keyset[id, index]
+opaque_type_decl_opaque_generic_params(  //dir=decl
+  int id: @opaque_type_decl ref,
+  int index: int ref,
+  int opaque_generic_param: @generic_type_param_type_or_none ref
+);
+
+param_decls(  //dir=decl
+  unique int id: @param_decl
+);
+
+#keyset[id]
+param_decl_is_inout(  //dir=decl
+  int id: @param_decl ref
+);
+
+#keyset[id]
+param_decl_property_wrapper_local_wrapped_var_bindings(  //dir=decl
+  int id: @param_decl ref,
+  int property_wrapper_local_wrapped_var_binding: @pattern_binding_decl_or_none ref
+);
+
+#keyset[id]
+param_decl_property_wrapper_local_wrapped_vars(  //dir=decl
+  int id: @param_decl ref,
+  int property_wrapper_local_wrapped_var: @var_decl_or_none ref
+);
+
+type_alias_decls(  //dir=decl
+  unique int id: @type_alias_decl
+);
+
+class_decls(  //dir=decl
+  unique int id: @class_decl
+);
+
+enum_decls(  //dir=decl
+  unique int id: @enum_decl
+);
+
+protocol_decls(  //dir=decl
+  unique int id: @protocol_decl
+);
+
+struct_decls(  //dir=decl
+  unique int id: @struct_decl
+);
+
+arguments(  //dir=expr
+  unique int id: @argument,
+  string label: string ref,
+  int expr: @expr_or_none ref
+);
+
+@expr =
+  @abstract_closure_expr
+| @any_try_expr
+| @applied_property_wrapper_expr
+| @apply_expr
+| @assign_expr
+| @bind_optional_expr
+| @capture_list_expr
+| @collection_expr
+| @decl_ref_expr
+| @default_argument_expr
+| @discard_assignment_expr
+| @dot_syntax_base_ignored_expr
+| @dynamic_type_expr
+| @enum_is_case_expr
+| @error_expr
+| @explicit_cast_expr
+| @force_value_expr
+| @identity_expr
+| @if_expr
+| @implicit_conversion_expr
+| @in_out_expr
+| @key_path_application_expr
+| @key_path_dot_expr
+| @key_path_expr
+| @lazy_initializer_expr
+| @literal_expr
+| @lookup_expr
+| @make_temporarily_escapable_expr
+| @obj_c_selector_expr
+| @one_way_expr
+| @opaque_value_expr
+| @open_existential_expr
+| @optional_evaluation_expr
+| @other_constructor_decl_ref_expr
+| @overloaded_decl_ref_expr
+| @property_wrapper_value_placeholder_expr
+| @rebind_self_in_constructor_expr
+| @sequence_expr
+| @super_ref_expr
+| @tap_expr
+| @tuple_element_expr
+| @tuple_expr
+| @type_expr
+| @unresolved_decl_ref_expr
+| @unresolved_dot_expr
+| @unresolved_member_expr
+| @unresolved_pattern_expr
+| @unresolved_specialize_expr
+| @vararg_expansion_expr
+;
+
+#keyset[id]
+expr_types(  //dir=expr
+  int id: @expr ref,
+  int type_: @type_or_none ref
+);
+
+@abstract_closure_expr =
+  @auto_closure_expr
+| @closure_expr
+;
+
+@any_try_expr =
+  @force_try_expr
+| @optional_try_expr
+| @try_expr
+;
+
+#keyset[id]
+any_try_exprs(  //dir=expr
+  int id: @any_try_expr ref,
+  int sub_expr: @expr_or_none ref
+);
+
+applied_property_wrapper_exprs(  //dir=expr
+  unique int id: @applied_property_wrapper_expr,
+  int kind: int ref,
+  int value: @expr_or_none ref,
+  int param: @param_decl_or_none ref
+);
+
+@apply_expr =
+  @binary_expr
+| @call_expr
+| @postfix_unary_expr
+| @prefix_unary_expr
+| @self_apply_expr
+;
+
+#keyset[id]
+apply_exprs(  //dir=expr
+  int id: @apply_expr ref,
+  int function: @expr_or_none ref
+);
+
+#keyset[id, index]
+apply_expr_arguments(  //dir=expr
+  int id: @apply_expr ref,
+  int index: int ref,
+  int argument: @argument_or_none ref
+);
+
+assign_exprs(  //dir=expr
+  unique int id: @assign_expr,
+  int dest: @expr_or_none ref,
+  int source: @expr_or_none ref
+);
+
+bind_optional_exprs(  //dir=expr
+  unique int id: @bind_optional_expr,
+  int sub_expr: @expr_or_none ref
+);
+
+capture_list_exprs(  //dir=expr
+  unique int id: @capture_list_expr,
+  int closure_body: @closure_expr_or_none ref
+);
+
+#keyset[id, index]
+capture_list_expr_binding_decls(  //dir=expr
+  int id: @capture_list_expr ref,
+  int index: int ref,
+  int binding_decl: @pattern_binding_decl_or_none ref
+);
+
+@collection_expr =
+  @array_expr
+| @dictionary_expr
+;
+
+decl_ref_exprs(  //dir=expr
+  unique int id: @decl_ref_expr,
+  int decl: @decl_or_none ref
+);
+
+#keyset[id, index]
+decl_ref_expr_replacement_types(  //dir=expr
+  int id: @decl_ref_expr ref,
+  int index: int ref,
+  int replacement_type: @type_or_none ref
+);
+
+#keyset[id]
+decl_ref_expr_has_direct_to_storage_semantics(  //dir=expr
+  int id: @decl_ref_expr ref
+);
+
+#keyset[id]
+decl_ref_expr_has_direct_to_implementation_semantics(  //dir=expr
+  int id: @decl_ref_expr ref
+);
+
+#keyset[id]
+decl_ref_expr_has_ordinary_semantics(  //dir=expr
+  int id: @decl_ref_expr ref
+);
+
+#keyset[id]
+decl_ref_expr_has_distributed_thunk_semantics(  //dir=expr
+  int id: @decl_ref_expr ref
+);
+
+default_argument_exprs(  //dir=expr
+  unique int id: @default_argument_expr,
+  int param_decl: @param_decl_or_none ref,
+  int param_index: int ref
+);
+
+#keyset[id]
+default_argument_expr_caller_side_defaults(  //dir=expr
+  int id: @default_argument_expr ref,
+  int caller_side_default: @expr_or_none ref
+);
+
+discard_assignment_exprs(  //dir=expr
+  unique int id: @discard_assignment_expr
+);
+
+dot_syntax_base_ignored_exprs(  //dir=expr
+  unique int id: @dot_syntax_base_ignored_expr,
+  int qualifier: @expr_or_none ref,
+  int sub_expr: @expr_or_none ref
+);
+
+dynamic_type_exprs(  //dir=expr
+  unique int id: @dynamic_type_expr,
+  int base: @expr_or_none ref
+);
+
+enum_is_case_exprs(  //dir=expr
+  unique int id: @enum_is_case_expr,
+  int sub_expr: @expr_or_none ref,
+  int element: @enum_element_decl_or_none ref
+);
+
+error_exprs(  //dir=expr
+  unique int id: @error_expr
+);
+
+@explicit_cast_expr =
+  @checked_cast_expr
+| @coerce_expr
+;
+
+#keyset[id]
+explicit_cast_exprs(  //dir=expr
+  int id: @explicit_cast_expr ref,
+  int sub_expr: @expr_or_none ref
+);
+
+force_value_exprs(  //dir=expr
+  unique int id: @force_value_expr,
+  int sub_expr: @expr_or_none ref
+);
+
+@identity_expr =
+  @await_expr
+| @dot_self_expr
+| @paren_expr
+| @unresolved_member_chain_result_expr
+;
+
+#keyset[id]
+identity_exprs(  //dir=expr
+  int id: @identity_expr ref,
+  int sub_expr: @expr_or_none ref
+);
+
+if_exprs(  //dir=expr
+  unique int id: @if_expr,
+  int condition: @expr_or_none ref,
+  int then_expr: @expr_or_none ref,
+  int else_expr: @expr_or_none ref
+);
+
+@implicit_conversion_expr =
+  @any_hashable_erasure_expr
+| @archetype_to_super_expr
+| @array_to_pointer_expr
+| @bridge_from_obj_c_expr
+| @bridge_to_obj_c_expr
+| @class_metatype_to_object_expr
+| @collection_upcast_conversion_expr
+| @conditional_bridge_from_obj_c_expr
+| @covariant_function_conversion_expr
+| @covariant_return_conversion_expr
+| @derived_to_base_expr
+| @destructure_tuple_expr
+| @differentiable_function_expr
+| @differentiable_function_extract_original_expr
+| @erasure_expr
+| @existential_metatype_to_object_expr
+| @foreign_object_conversion_expr
+| @function_conversion_expr
+| @in_out_to_pointer_expr
+| @inject_into_optional_expr
+| @linear_function_expr
+| @linear_function_extract_original_expr
+| @linear_to_differentiable_function_expr
+| @load_expr
+| @metatype_conversion_expr
+| @pointer_to_pointer_expr
+| @protocol_metatype_to_object_expr
+| @string_to_pointer_expr
+| @underlying_to_opaque_expr
+| @unevaluated_instance_expr
+| @unresolved_type_conversion_expr
+;
+
+#keyset[id]
+implicit_conversion_exprs(  //dir=expr
+  int id: @implicit_conversion_expr ref,
+  int sub_expr: @expr_or_none ref
+);
+
+in_out_exprs(  //dir=expr
+  unique int id: @in_out_expr,
+  int sub_expr: @expr_or_none ref
+);
+
+key_path_application_exprs(  //dir=expr
+  unique int id: @key_path_application_expr,
+  int base: @expr_or_none ref,
+  int key_path: @expr_or_none ref
+);
+
+key_path_dot_exprs(  //dir=expr
+  unique int id: @key_path_dot_expr
+);
+
+key_path_exprs(  //dir=expr
+  unique int id: @key_path_expr
+);
+
+#keyset[id]
+key_path_expr_roots(  //dir=expr
+  int id: @key_path_expr ref,
+  int root: @type_repr_or_none ref
+);
+
+#keyset[id]
+key_path_expr_parsed_paths(  //dir=expr
+  int id: @key_path_expr ref,
+  int parsed_path: @expr_or_none ref
+);
+
+lazy_initializer_exprs(  //dir=expr
+  unique int id: @lazy_initializer_expr,
+  int sub_expr: @expr_or_none ref
+);
+
+@literal_expr =
+  @builtin_literal_expr
+| @interpolated_string_literal_expr
+| @nil_literal_expr
+| @object_literal_expr
+| @regex_literal_expr
+;
+
+@lookup_expr =
+  @dynamic_lookup_expr
+| @member_ref_expr
+| @subscript_expr
+;
+
+#keyset[id]
+lookup_exprs(  //dir=expr
+  int id: @lookup_expr ref,
+  int base: @expr_or_none ref
+);
+
+#keyset[id]
+lookup_expr_members(  //dir=expr
+  int id: @lookup_expr ref,
+  int member: @decl_or_none ref
+);
+
+make_temporarily_escapable_exprs(  //dir=expr
+  unique int id: @make_temporarily_escapable_expr,
+  int escaping_closure: @opaque_value_expr_or_none ref,
+  int nonescaping_closure: @expr_or_none ref,
+  int sub_expr: @expr_or_none ref
+);
+
+obj_c_selector_exprs(  //dir=expr
+  unique int id: @obj_c_selector_expr,
+  int sub_expr: @expr_or_none ref,
+  int method: @abstract_function_decl_or_none ref
+);
+
+one_way_exprs(  //dir=expr
+  unique int id: @one_way_expr,
+  int sub_expr: @expr_or_none ref
+);
+
+opaque_value_exprs(  //dir=expr
+  unique int id: @opaque_value_expr
+);
+
+open_existential_exprs(  //dir=expr
+  unique int id: @open_existential_expr,
+  int sub_expr: @expr_or_none ref,
+  int existential: @expr_or_none ref,
+  int opaque_expr: @opaque_value_expr_or_none ref
+);
+
+optional_evaluation_exprs(  //dir=expr
+  unique int id: @optional_evaluation_expr,
+  int sub_expr: @expr_or_none ref
+);
+
+other_constructor_decl_ref_exprs(  //dir=expr
+  unique int id: @other_constructor_decl_ref_expr,
+  int constructor_decl: @constructor_decl_or_none ref
+);
+
+overloaded_decl_ref_exprs(  //dir=expr
+  unique int id: @overloaded_decl_ref_expr
+);
+
+#keyset[id, index]
+overloaded_decl_ref_expr_possible_declarations(  //dir=expr
+  int id: @overloaded_decl_ref_expr ref,
+  int index: int ref,
+  int possible_declaration: @value_decl_or_none ref
+);
+
+property_wrapper_value_placeholder_exprs(  //dir=expr
+  unique int id: @property_wrapper_value_placeholder_expr,
+  int placeholder: @opaque_value_expr_or_none ref
+);
+
+#keyset[id]
+property_wrapper_value_placeholder_expr_wrapped_values(  //dir=expr
+  int id: @property_wrapper_value_placeholder_expr ref,
+  int wrapped_value: @expr_or_none ref
+);
+
+rebind_self_in_constructor_exprs(  //dir=expr
+  unique int id: @rebind_self_in_constructor_expr,
+  int sub_expr: @expr_or_none ref,
+  int self: @var_decl_or_none ref
+);
+
+sequence_exprs(  //dir=expr
+  unique int id: @sequence_expr
+);
+
+#keyset[id, index]
+sequence_expr_elements(  //dir=expr
+  int id: @sequence_expr ref,
+  int index: int ref,
+  int element: @expr_or_none ref
+);
+
+super_ref_exprs(  //dir=expr
+  unique int id: @super_ref_expr,
+  int self: @var_decl_or_none ref
+);
+
+tap_exprs(  //dir=expr
+  unique int id: @tap_expr,
+  int body: @brace_stmt_or_none ref,
+  int var: @var_decl_or_none ref
+);
+
+#keyset[id]
+tap_expr_sub_exprs(  //dir=expr
+  int id: @tap_expr ref,
+  int sub_expr: @expr_or_none ref
+);
+
+tuple_element_exprs(  //dir=expr
+  unique int id: @tuple_element_expr,
+  int sub_expr: @expr_or_none ref,
+  int index: int ref
+);
+
+tuple_exprs(  //dir=expr
+  unique int id: @tuple_expr
+);
+
+#keyset[id, index]
+tuple_expr_elements(  //dir=expr
+  int id: @tuple_expr ref,
+  int index: int ref,
+  int element: @expr_or_none ref
+);
+
+type_exprs(  //dir=expr
+  unique int id: @type_expr
+);
+
+#keyset[id]
+type_expr_type_reprs(  //dir=expr
+  int id: @type_expr ref,
+  int type_repr: @type_repr_or_none ref
+);
+
+unresolved_decl_ref_exprs(  //dir=expr
+  unique int id: @unresolved_decl_ref_expr
+);
+
+#keyset[id]
+unresolved_decl_ref_expr_names(  //dir=expr
+  int id: @unresolved_decl_ref_expr ref,
+  string name: string ref
+);
+
+unresolved_dot_exprs(  //dir=expr
+  unique int id: @unresolved_dot_expr,
+  int base: @expr_or_none ref,
+  string name: string ref
+);
+
+unresolved_member_exprs(  //dir=expr
+  unique int id: @unresolved_member_expr,
+  string name: string ref
+);
+
+unresolved_pattern_exprs(  //dir=expr
+  unique int id: @unresolved_pattern_expr,
+  int sub_pattern: @pattern_or_none ref
+);
+
+unresolved_specialize_exprs(  //dir=expr
+  unique int id: @unresolved_specialize_expr,
+  int sub_expr: @expr_or_none ref
+);
+
+vararg_expansion_exprs(  //dir=expr
+  unique int id: @vararg_expansion_expr,
+  int sub_expr: @expr_or_none ref
+);
+
+any_hashable_erasure_exprs(  //dir=expr
+  unique int id: @any_hashable_erasure_expr
+);
+
+archetype_to_super_exprs(  //dir=expr
+  unique int id: @archetype_to_super_expr
+);
+
+array_exprs(  //dir=expr
+  unique int id: @array_expr
+);
+
+#keyset[id, index]
+array_expr_elements(  //dir=expr
+  int id: @array_expr ref,
+  int index: int ref,
+  int element: @expr_or_none ref
+);
+
+array_to_pointer_exprs(  //dir=expr
+  unique int id: @array_to_pointer_expr
+);
+
+auto_closure_exprs(  //dir=expr
+  unique int id: @auto_closure_expr
+);
+
+await_exprs(  //dir=expr
+  unique int id: @await_expr
+);
+
+binary_exprs(  //dir=expr
+  unique int id: @binary_expr
+);
+
+bridge_from_obj_c_exprs(  //dir=expr
+  unique int id: @bridge_from_obj_c_expr
+);
+
+bridge_to_obj_c_exprs(  //dir=expr
+  unique int id: @bridge_to_obj_c_expr
+);
+
+@builtin_literal_expr =
+  @boolean_literal_expr
+| @magic_identifier_literal_expr
+| @number_literal_expr
+| @string_literal_expr
+;
+
+call_exprs(  //dir=expr
+  unique int id: @call_expr
+);
+
+@checked_cast_expr =
+  @conditional_checked_cast_expr
+| @forced_checked_cast_expr
+| @is_expr
+;
+
+class_metatype_to_object_exprs(  //dir=expr
+  unique int id: @class_metatype_to_object_expr
+);
+
+closure_exprs(  //dir=expr
+  unique int id: @closure_expr
+);
+
+coerce_exprs(  //dir=expr
+  unique int id: @coerce_expr
+);
+
+collection_upcast_conversion_exprs(  //dir=expr
+  unique int id: @collection_upcast_conversion_expr
+);
+
+conditional_bridge_from_obj_c_exprs(  //dir=expr
+  unique int id: @conditional_bridge_from_obj_c_expr
+);
+
+covariant_function_conversion_exprs(  //dir=expr
+  unique int id: @covariant_function_conversion_expr
+);
+
+covariant_return_conversion_exprs(  //dir=expr
+  unique int id: @covariant_return_conversion_expr
+);
+
+derived_to_base_exprs(  //dir=expr
+  unique int id: @derived_to_base_expr
+);
+
+destructure_tuple_exprs(  //dir=expr
+  unique int id: @destructure_tuple_expr
+);
+
+dictionary_exprs(  //dir=expr
+  unique int id: @dictionary_expr
+);
+
+#keyset[id, index]
+dictionary_expr_elements(  //dir=expr
+  int id: @dictionary_expr ref,
+  int index: int ref,
+  int element: @expr_or_none ref
+);
+
+differentiable_function_exprs(  //dir=expr
+  unique int id: @differentiable_function_expr
+);
+
+differentiable_function_extract_original_exprs(  //dir=expr
+  unique int id: @differentiable_function_extract_original_expr
+);
+
+dot_self_exprs(  //dir=expr
+  unique int id: @dot_self_expr
+);
+
+@dynamic_lookup_expr =
+  @dynamic_member_ref_expr
+| @dynamic_subscript_expr
+;
+
+erasure_exprs(  //dir=expr
+  unique int id: @erasure_expr
+);
+
+existential_metatype_to_object_exprs(  //dir=expr
+  unique int id: @existential_metatype_to_object_expr
+);
+
+force_try_exprs(  //dir=expr
+  unique int id: @force_try_expr
+);
+
+foreign_object_conversion_exprs(  //dir=expr
+  unique int id: @foreign_object_conversion_expr
+);
+
+function_conversion_exprs(  //dir=expr
+  unique int id: @function_conversion_expr
+);
+
+in_out_to_pointer_exprs(  //dir=expr
+  unique int id: @in_out_to_pointer_expr
+);
+
+inject_into_optional_exprs(  //dir=expr
+  unique int id: @inject_into_optional_expr
+);
+
+interpolated_string_literal_exprs(  //dir=expr
+  unique int id: @interpolated_string_literal_expr
+);
+
+#keyset[id]
+interpolated_string_literal_expr_interpolation_exprs(  //dir=expr
+  int id: @interpolated_string_literal_expr ref,
+  int interpolation_expr: @opaque_value_expr_or_none ref
+);
+
+#keyset[id]
+interpolated_string_literal_expr_interpolation_count_exprs(  //dir=expr
+  int id: @interpolated_string_literal_expr ref,
+  int interpolation_count_expr: @expr_or_none ref
+);
+
+#keyset[id]
+interpolated_string_literal_expr_literal_capacity_exprs(  //dir=expr
+  int id: @interpolated_string_literal_expr ref,
+  int literal_capacity_expr: @expr_or_none ref
+);
+
+#keyset[id]
+interpolated_string_literal_expr_appending_exprs(  //dir=expr
+  int id: @interpolated_string_literal_expr ref,
+  int appending_expr: @tap_expr_or_none ref
+);
+
+linear_function_exprs(  //dir=expr
+  unique int id: @linear_function_expr
+);
+
+linear_function_extract_original_exprs(  //dir=expr
+  unique int id: @linear_function_extract_original_expr
+);
+
+linear_to_differentiable_function_exprs(  //dir=expr
+  unique int id: @linear_to_differentiable_function_expr
+);
+
+load_exprs(  //dir=expr
+  unique int id: @load_expr
+);
+
+member_ref_exprs(  //dir=expr
+  unique int id: @member_ref_expr
+);
+
+#keyset[id]
+member_ref_expr_has_direct_to_storage_semantics(  //dir=expr
+  int id: @member_ref_expr ref
+);
+
+#keyset[id]
+member_ref_expr_has_direct_to_implementation_semantics(  //dir=expr
+  int id: @member_ref_expr ref
+);
+
+#keyset[id]
+member_ref_expr_has_ordinary_semantics(  //dir=expr
+  int id: @member_ref_expr ref
+);
+
+#keyset[id]
+member_ref_expr_has_distributed_thunk_semantics(  //dir=expr
+  int id: @member_ref_expr ref
+);
+
+metatype_conversion_exprs(  //dir=expr
+  unique int id: @metatype_conversion_expr
+);
+
+nil_literal_exprs(  //dir=expr
+  unique int id: @nil_literal_expr
+);
+
+object_literal_exprs(  //dir=expr
+  unique int id: @object_literal_expr,
+  int kind: int ref
+);
+
+#keyset[id, index]
+object_literal_expr_arguments(  //dir=expr
+  int id: @object_literal_expr ref,
+  int index: int ref,
+  int argument: @argument_or_none ref
+);
+
+optional_try_exprs(  //dir=expr
+  unique int id: @optional_try_expr
+);
+
+paren_exprs(  //dir=expr
+  unique int id: @paren_expr
+);
+
+pointer_to_pointer_exprs(  //dir=expr
+  unique int id: @pointer_to_pointer_expr
+);
+
+postfix_unary_exprs(  //dir=expr
+  unique int id: @postfix_unary_expr
+);
+
+prefix_unary_exprs(  //dir=expr
+  unique int id: @prefix_unary_expr
+);
+
+protocol_metatype_to_object_exprs(  //dir=expr
+  unique int id: @protocol_metatype_to_object_expr
+);
+
+regex_literal_exprs(  //dir=expr
+  unique int id: @regex_literal_expr
+);
+
+@self_apply_expr =
+  @constructor_ref_call_expr
+| @dot_syntax_call_expr
+;
+
+#keyset[id]
+self_apply_exprs(  //dir=expr
+  int id: @self_apply_expr ref,
+  int base: @expr_or_none ref
+);
+
+string_to_pointer_exprs(  //dir=expr
+  unique int id: @string_to_pointer_expr
+);
+
+subscript_exprs(  //dir=expr
+  unique int id: @subscript_expr
+);
+
+#keyset[id, index]
+subscript_expr_arguments(  //dir=expr
+  int id: @subscript_expr ref,
+  int index: int ref,
+  int argument: @argument_or_none ref
+);
+
+#keyset[id]
+subscript_expr_has_direct_to_storage_semantics(  //dir=expr
+  int id: @subscript_expr ref
+);
+
+#keyset[id]
+subscript_expr_has_direct_to_implementation_semantics(  //dir=expr
+  int id: @subscript_expr ref
+);
+
+#keyset[id]
+subscript_expr_has_ordinary_semantics(  //dir=expr
+  int id: @subscript_expr ref
+);
+
+#keyset[id]
+subscript_expr_has_distributed_thunk_semantics(  //dir=expr
+  int id: @subscript_expr ref
+);
+
+try_exprs(  //dir=expr
+  unique int id: @try_expr
+);
+
+underlying_to_opaque_exprs(  //dir=expr
+  unique int id: @underlying_to_opaque_expr
+);
+
+unevaluated_instance_exprs(  //dir=expr
+  unique int id: @unevaluated_instance_expr
+);
+
+unresolved_member_chain_result_exprs(  //dir=expr
+  unique int id: @unresolved_member_chain_result_expr
+);
+
+unresolved_type_conversion_exprs(  //dir=expr
+  unique int id: @unresolved_type_conversion_expr
+);
+
+boolean_literal_exprs(  //dir=expr
+  unique int id: @boolean_literal_expr,
+  boolean value: boolean ref
+);
+
+conditional_checked_cast_exprs(  //dir=expr
+  unique int id: @conditional_checked_cast_expr
+);
+
+constructor_ref_call_exprs(  //dir=expr
+  unique int id: @constructor_ref_call_expr
+);
+
+dot_syntax_call_exprs(  //dir=expr
+  unique int id: @dot_syntax_call_expr
+);
+
+dynamic_member_ref_exprs(  //dir=expr
+  unique int id: @dynamic_member_ref_expr
+);
+
+dynamic_subscript_exprs(  //dir=expr
+  unique int id: @dynamic_subscript_expr
+);
+
+forced_checked_cast_exprs(  //dir=expr
+  unique int id: @forced_checked_cast_expr
+);
+
+is_exprs(  //dir=expr
+  unique int id: @is_expr
+);
+
+magic_identifier_literal_exprs(  //dir=expr
+  unique int id: @magic_identifier_literal_expr,
+  string kind: string ref
+);
+
+@number_literal_expr =
+  @float_literal_expr
+| @integer_literal_expr
+;
+
+string_literal_exprs(  //dir=expr
+  unique int id: @string_literal_expr,
+  string value: string ref
+);
+
+float_literal_exprs(  //dir=expr
+  unique int id: @float_literal_expr,
+  string string_value: string ref
+);
+
+integer_literal_exprs(  //dir=expr
+  unique int id: @integer_literal_expr,
+  string string_value: string ref
+);
+
+@pattern =
+  @any_pattern
+| @binding_pattern
+| @bool_pattern
+| @enum_element_pattern
+| @expr_pattern
+| @is_pattern
+| @named_pattern
+| @optional_some_pattern
+| @paren_pattern
+| @tuple_pattern
+| @typed_pattern
+;
+
+any_patterns(  //dir=pattern
+  unique int id: @any_pattern
+);
+
+binding_patterns(  //dir=pattern
+  unique int id: @binding_pattern,
+  int sub_pattern: @pattern_or_none ref
+);
+
+bool_patterns(  //dir=pattern
+  unique int id: @bool_pattern,
+  boolean value: boolean ref
+);
+
+enum_element_patterns(  //dir=pattern
+  unique int id: @enum_element_pattern,
+  int element: @enum_element_decl_or_none ref
+);
+
+#keyset[id]
+enum_element_pattern_sub_patterns(  //dir=pattern
+  int id: @enum_element_pattern ref,
+  int sub_pattern: @pattern_or_none ref
+);
+
+expr_patterns(  //dir=pattern
+  unique int id: @expr_pattern,
+  int sub_expr: @expr_or_none ref
+);
+
+is_patterns(  //dir=pattern
+  unique int id: @is_pattern
+);
+
+#keyset[id]
+is_pattern_cast_type_reprs(  //dir=pattern
+  int id: @is_pattern ref,
+  int cast_type_repr: @type_repr_or_none ref
+);
+
+#keyset[id]
+is_pattern_sub_patterns(  //dir=pattern
+  int id: @is_pattern ref,
+  int sub_pattern: @pattern_or_none ref
+);
+
+named_patterns(  //dir=pattern
+  unique int id: @named_pattern,
+  string name: string ref
+);
+
+optional_some_patterns(  //dir=pattern
+  unique int id: @optional_some_pattern,
+  int sub_pattern: @pattern_or_none ref
+);
+
+paren_patterns(  //dir=pattern
+  unique int id: @paren_pattern,
+  int sub_pattern: @pattern_or_none ref
+);
+
+tuple_patterns(  //dir=pattern
+  unique int id: @tuple_pattern
+);
+
+#keyset[id, index]
+tuple_pattern_elements(  //dir=pattern
+  int id: @tuple_pattern ref,
+  int index: int ref,
+  int element: @pattern_or_none ref
+);
+
+typed_patterns(  //dir=pattern
+  unique int id: @typed_pattern,
+  int sub_pattern: @pattern_or_none ref
+);
+
+#keyset[id]
+typed_pattern_type_reprs(  //dir=pattern
+  int id: @typed_pattern ref,
+  int type_repr: @type_repr_or_none ref
+);
+
+case_label_items(  //dir=stmt
+  unique int id: @case_label_item,
+  int pattern: @pattern_or_none ref
+);
+
+#keyset[id]
+case_label_item_guards(  //dir=stmt
+  int id: @case_label_item ref,
+  int guard: @expr_or_none ref
+);
+
+condition_elements(  //dir=stmt
+  unique int id: @condition_element
+);
+
+#keyset[id]
+condition_element_booleans(  //dir=stmt
+  int id: @condition_element ref,
+  int boolean_: @expr_or_none ref
+);
+
+#keyset[id]
+condition_element_patterns(  //dir=stmt
+  int id: @condition_element ref,
+  int pattern: @pattern_or_none ref
+);
+
+#keyset[id]
+condition_element_initializers(  //dir=stmt
+  int id: @condition_element ref,
+  int initializer: @expr_or_none ref
+);
+
+@stmt =
+  @brace_stmt
+| @break_stmt
+| @case_stmt
+| @continue_stmt
+| @defer_stmt
+| @fail_stmt
+| @fallthrough_stmt
+| @labeled_stmt
+| @pound_assert_stmt
+| @return_stmt
+| @throw_stmt
+| @yield_stmt
+;
+
+stmt_conditions(  //dir=stmt
+  unique int id: @stmt_condition
+);
+
+#keyset[id, index]
+stmt_condition_elements(  //dir=stmt
+  int id: @stmt_condition ref,
+  int index: int ref,
+  int element: @condition_element_or_none ref
+);
+
+brace_stmts(  //dir=stmt
+  unique int id: @brace_stmt
+);
+
+#keyset[id, index]
+brace_stmt_elements(  //dir=stmt
+  int id: @brace_stmt ref,
+  int index: int ref,
+  int element: @ast_node_or_none ref
+);
+
+break_stmts(  //dir=stmt
+  unique int id: @break_stmt
+);
+
+#keyset[id]
+break_stmt_target_names(  //dir=stmt
+  int id: @break_stmt ref,
+  string target_name: string ref
+);
+
+#keyset[id]
+break_stmt_targets(  //dir=stmt
+  int id: @break_stmt ref,
+  int target: @stmt_or_none ref
+);
+
+case_stmts(  //dir=stmt
+  unique int id: @case_stmt,
+  int body: @stmt_or_none ref
+);
+
+#keyset[id, index]
+case_stmt_labels(  //dir=stmt
+  int id: @case_stmt ref,
+  int index: int ref,
+  int label: @case_label_item_or_none ref
+);
+
+#keyset[id, index]
+case_stmt_variables(  //dir=stmt
+  int id: @case_stmt ref,
+  int index: int ref,
+  int variable: @var_decl_or_none ref
+);
+
+continue_stmts(  //dir=stmt
+  unique int id: @continue_stmt
+);
+
+#keyset[id]
+continue_stmt_target_names(  //dir=stmt
+  int id: @continue_stmt ref,
+  string target_name: string ref
+);
+
+#keyset[id]
+continue_stmt_targets(  //dir=stmt
+  int id: @continue_stmt ref,
+  int target: @stmt_or_none ref
+);
+
+defer_stmts(  //dir=stmt
+  unique int id: @defer_stmt,
+  int body: @brace_stmt_or_none ref
+);
+
+fail_stmts(  //dir=stmt
+  unique int id: @fail_stmt
+);
+
+fallthrough_stmts(  //dir=stmt
+  unique int id: @fallthrough_stmt,
+  int fallthrough_source: @case_stmt_or_none ref,
+  int fallthrough_dest: @case_stmt_or_none ref
+);
+
+@labeled_stmt =
+  @do_catch_stmt
+| @do_stmt
+| @for_each_stmt
+| @labeled_conditional_stmt
+| @repeat_while_stmt
+| @switch_stmt
+;
+
+#keyset[id]
+labeled_stmt_labels(  //dir=stmt
+  int id: @labeled_stmt ref,
+  string label: string ref
+);
+
+pound_assert_stmts(  //dir=stmt
+  unique int id: @pound_assert_stmt,
+  int condition: @expr_or_none ref,
+  string message: string ref
+);
+
+return_stmts(  //dir=stmt
+  unique int id: @return_stmt
+);
+
+#keyset[id]
+return_stmt_results(  //dir=stmt
+  int id: @return_stmt ref,
+  int result: @expr_or_none ref
+);
+
+throw_stmts(  //dir=stmt
+  unique int id: @throw_stmt,
+  int sub_expr: @expr_or_none ref
+);
+
+yield_stmts(  //dir=stmt
+  unique int id: @yield_stmt
+);
+
+#keyset[id, index]
+yield_stmt_results(  //dir=stmt
+  int id: @yield_stmt ref,
+  int index: int ref,
+  int result: @expr_or_none ref
+);
+
+do_catch_stmts(  //dir=stmt
+  unique int id: @do_catch_stmt,
+  int body: @stmt_or_none ref
+);
+
+#keyset[id, index]
+do_catch_stmt_catches(  //dir=stmt
+  int id: @do_catch_stmt ref,
+  int index: int ref,
+  int catch: @case_stmt_or_none ref
+);
+
+do_stmts(  //dir=stmt
+  unique int id: @do_stmt,
+  int body: @brace_stmt_or_none ref
+);
+
+for_each_stmts(  //dir=stmt
+  unique int id: @for_each_stmt,
+  int pattern: @pattern_or_none ref,
+  int sequence: @expr_or_none ref,
+  int body: @brace_stmt_or_none ref
+);
+
+#keyset[id]
+for_each_stmt_wheres(  //dir=stmt
+  int id: @for_each_stmt ref,
+  int where: @expr_or_none ref
+);
+
+@labeled_conditional_stmt =
+  @guard_stmt
+| @if_stmt
+| @while_stmt
+;
+
+#keyset[id]
+labeled_conditional_stmts(  //dir=stmt
+  int id: @labeled_conditional_stmt ref,
+  int condition: @stmt_condition_or_none ref
+);
+
+repeat_while_stmts(  //dir=stmt
+  unique int id: @repeat_while_stmt,
+  int condition: @expr_or_none ref,
+  int body: @stmt_or_none ref
+);
+
+switch_stmts(  //dir=stmt
+  unique int id: @switch_stmt,
+  int expr: @expr_or_none ref
+);
+
+#keyset[id, index]
+switch_stmt_cases(  //dir=stmt
+  int id: @switch_stmt ref,
+  int index: int ref,
+  int case_: @case_stmt_or_none ref
+);
+
+guard_stmts(  //dir=stmt
+  unique int id: @guard_stmt,
+  int body: @brace_stmt_or_none ref
+);
+
+if_stmts(  //dir=stmt
+  unique int id: @if_stmt,
+  int then: @stmt_or_none ref
+);
+
+#keyset[id]
+if_stmt_elses(  //dir=stmt
+  int id: @if_stmt ref,
+  int else: @stmt_or_none ref
+);
+
+while_stmts(  //dir=stmt
+  unique int id: @while_stmt,
+  int body: @stmt_or_none ref
+);
+
+@type =
+  @any_function_type
+| @any_generic_type
+| @any_metatype_type
+| @builtin_type
+| @dependent_member_type
+| @dynamic_self_type
+| @error_type
+| @existential_type
+| @in_out_type
+| @l_value_type
+| @module_type
+| @parameterized_protocol_type
+| @protocol_composition_type
+| @reference_storage_type
+| @substitutable_type
+| @sugar_type
+| @tuple_type
+| @unresolved_type
+;
+
+#keyset[id]
+types(  //dir=type
+  int id: @type ref,
+  string name: string ref,
+  int canonical_type: @type_or_none ref
+);
+
+type_reprs(  //dir=type
+  unique int id: @type_repr,
+  int type_: @type_or_none ref
+);
+
+@any_function_type =
+  @function_type
+| @generic_function_type
+;
+
+#keyset[id]
+any_function_types(  //dir=type
+  int id: @any_function_type ref,
+  int result: @type_or_none ref
+);
+
+#keyset[id, index]
+any_function_type_param_types(  //dir=type
+  int id: @any_function_type ref,
+  int index: int ref,
+  int param_type: @type_or_none ref
+);
+
+#keyset[id, index]
+any_function_type_param_labels(  //dir=type
+  int id: @any_function_type ref,
+  int index: int ref,
+  string param_label: string ref
+);
+
+#keyset[id]
+any_function_type_is_throwing(  //dir=type
+  int id: @any_function_type ref
+);
+
+#keyset[id]
+any_function_type_is_async(  //dir=type
+  int id: @any_function_type ref
+);
+
+@any_generic_type =
+  @nominal_or_bound_generic_nominal_type
+| @unbound_generic_type
+;
+
+#keyset[id]
+any_generic_types(  //dir=type
+  int id: @any_generic_type ref,
+  int declaration: @decl_or_none ref
+);
+
+#keyset[id]
+any_generic_type_parents(  //dir=type
+  int id: @any_generic_type ref,
+  int parent: @type_or_none ref
+);
+
+@any_metatype_type =
+  @existential_metatype_type
+| @metatype_type
+;
+
+@builtin_type =
+  @any_builtin_integer_type
+| @builtin_bridge_object_type
+| @builtin_default_actor_storage_type
+| @builtin_executor_type
+| @builtin_float_type
+| @builtin_job_type
+| @builtin_native_object_type
+| @builtin_raw_pointer_type
+| @builtin_raw_unsafe_continuation_type
+| @builtin_unsafe_value_buffer_type
+| @builtin_vector_type
+;
+
+dependent_member_types(  //dir=type
+  unique int id: @dependent_member_type,
+  int base_type: @type_or_none ref,
+  int associated_type_decl: @associated_type_decl_or_none ref
+);
+
+dynamic_self_types(  //dir=type
+  unique int id: @dynamic_self_type,
+  int static_self_type: @type_or_none ref
+);
+
+error_types(  //dir=type
+  unique int id: @error_type
+);
+
+existential_types(  //dir=type
+  unique int id: @existential_type,
+  int constraint: @type_or_none ref
+);
+
+in_out_types(  //dir=type
+  unique int id: @in_out_type,
+  int object_type: @type_or_none ref
+);
+
+l_value_types(  //dir=type
+  unique int id: @l_value_type,
+  int object_type: @type_or_none ref
+);
+
+module_types(  //dir=type
+  unique int id: @module_type,
+  int module: @module_decl_or_none ref
+);
+
+parameterized_protocol_types(  //dir=type
+  unique int id: @parameterized_protocol_type,
+  int base: @protocol_type_or_none ref
+);
+
+#keyset[id, index]
+parameterized_protocol_type_args(  //dir=type
+  int id: @parameterized_protocol_type ref,
+  int index: int ref,
+  int arg: @type_or_none ref
+);
+
+protocol_composition_types(  //dir=type
+  unique int id: @protocol_composition_type
+);
+
+#keyset[id, index]
+protocol_composition_type_members(  //dir=type
+  int id: @protocol_composition_type ref,
+  int index: int ref,
+  int member: @type_or_none ref
+);
+
+@reference_storage_type =
+  @unmanaged_storage_type
+| @unowned_storage_type
+| @weak_storage_type
+;
+
+#keyset[id]
+reference_storage_types(  //dir=type
+  int id: @reference_storage_type ref,
+  int referent_type: @type_or_none ref
+);
+
+@substitutable_type =
+  @archetype_type
+| @generic_type_param_type
+;
+
+@sugar_type =
+  @paren_type
+| @syntax_sugar_type
+| @type_alias_type
+;
+
+tuple_types(  //dir=type
+  unique int id: @tuple_type
+);
+
+#keyset[id, index]
+tuple_type_types(  //dir=type
+  int id: @tuple_type ref,
+  int index: int ref,
+  int type_: @type_or_none ref
+);
+
+#keyset[id, index]
+tuple_type_names(  //dir=type
+  int id: @tuple_type ref,
+  int index: int ref,
+  string name: string ref
+);
+
+unresolved_types(  //dir=type
+  unique int id: @unresolved_type
+);
+
+@any_builtin_integer_type =
+  @builtin_integer_literal_type
+| @builtin_integer_type
+;
+
+@archetype_type =
+  @opaque_type_archetype_type
+| @opened_archetype_type
+| @primary_archetype_type
+;
+
+#keyset[id]
+archetype_types(  //dir=type
+  int id: @archetype_type ref,
+  int interface_type: @type_or_none ref
+);
+
+#keyset[id]
+archetype_type_superclasses(  //dir=type
+  int id: @archetype_type ref,
+  int superclass: @type_or_none ref
+);
+
+#keyset[id, index]
+archetype_type_protocols(  //dir=type
+  int id: @archetype_type ref,
+  int index: int ref,
+  int protocol: @protocol_decl_or_none ref
+);
+
+builtin_bridge_object_types(  //dir=type
+  unique int id: @builtin_bridge_object_type
+);
+
+builtin_default_actor_storage_types(  //dir=type
+  unique int id: @builtin_default_actor_storage_type
+);
+
+builtin_executor_types(  //dir=type
+  unique int id: @builtin_executor_type
+);
+
+builtin_float_types(  //dir=type
+  unique int id: @builtin_float_type
+);
+
+builtin_job_types(  //dir=type
+  unique int id: @builtin_job_type
+);
+
+builtin_native_object_types(  //dir=type
+  unique int id: @builtin_native_object_type
+);
+
+builtin_raw_pointer_types(  //dir=type
+  unique int id: @builtin_raw_pointer_type
+);
+
+builtin_raw_unsafe_continuation_types(  //dir=type
+  unique int id: @builtin_raw_unsafe_continuation_type
+);
+
+builtin_unsafe_value_buffer_types(  //dir=type
+  unique int id: @builtin_unsafe_value_buffer_type
+);
+
+builtin_vector_types(  //dir=type
+  unique int id: @builtin_vector_type
+);
+
+existential_metatype_types(  //dir=type
+  unique int id: @existential_metatype_type
+);
+
+function_types(  //dir=type
+  unique int id: @function_type
+);
+
+generic_function_types(  //dir=type
+  unique int id: @generic_function_type
+);
+
+#keyset[id, index]
+generic_function_type_generic_params(  //dir=type
+  int id: @generic_function_type ref,
+  int index: int ref,
+  int generic_param: @generic_type_param_type_or_none ref
+);
+
+generic_type_param_types(  //dir=type
+  unique int id: @generic_type_param_type
+);
+
+metatype_types(  //dir=type
+  unique int id: @metatype_type
+);
+
+@nominal_or_bound_generic_nominal_type =
+  @bound_generic_type
+| @nominal_type
+;
+
+paren_types(  //dir=type
+  unique int id: @paren_type,
+  int type_: @type_or_none ref
+);
+
+@syntax_sugar_type =
+  @dictionary_type
+| @unary_syntax_sugar_type
+;
+
+type_alias_types(  //dir=type
+  unique int id: @type_alias_type,
+  int decl: @type_alias_decl_or_none ref
+);
+
+unbound_generic_types(  //dir=type
+  unique int id: @unbound_generic_type
+);
+
+unmanaged_storage_types(  //dir=type
+  unique int id: @unmanaged_storage_type
+);
+
+unowned_storage_types(  //dir=type
+  unique int id: @unowned_storage_type
+);
+
+weak_storage_types(  //dir=type
+  unique int id: @weak_storage_type
+);
+
+@bound_generic_type =
+  @bound_generic_class_type
+| @bound_generic_enum_type
+| @bound_generic_struct_type
+;
+
+#keyset[id, index]
+bound_generic_type_arg_types(  //dir=type
+  int id: @bound_generic_type ref,
+  int index: int ref,
+  int arg_type: @type_or_none ref
+);
+
+builtin_integer_literal_types(  //dir=type
+  unique int id: @builtin_integer_literal_type
+);
+
+builtin_integer_types(  //dir=type
+  unique int id: @builtin_integer_type
+);
+
+#keyset[id]
+builtin_integer_type_widths(  //dir=type
+  int id: @builtin_integer_type ref,
+  int width: int ref
+);
+
+dictionary_types(  //dir=type
+  unique int id: @dictionary_type,
+  int key_type: @type_or_none ref,
+  int value_type: @type_or_none ref
+);
+
+@nominal_type =
+  @class_type
+| @enum_type
+| @protocol_type
+| @struct_type
+;
+
+opaque_type_archetype_types(  //dir=type
+  unique int id: @opaque_type_archetype_type,
+  int declaration: @opaque_type_decl_or_none ref
+);
+
+opened_archetype_types(  //dir=type
+  unique int id: @opened_archetype_type
+);
+
+primary_archetype_types(  //dir=type
+  unique int id: @primary_archetype_type
+);
+
+@unary_syntax_sugar_type =
+  @array_slice_type
+| @optional_type
+| @variadic_sequence_type
+;
+
+#keyset[id]
+unary_syntax_sugar_types(  //dir=type
+  int id: @unary_syntax_sugar_type ref,
+  int base_type: @type_or_none ref
+);
+
+array_slice_types(  //dir=type
+  unique int id: @array_slice_type
+);
+
+bound_generic_class_types(  //dir=type
+  unique int id: @bound_generic_class_type
+);
+
+bound_generic_enum_types(  //dir=type
+  unique int id: @bound_generic_enum_type
+);
+
+bound_generic_struct_types(  //dir=type
+  unique int id: @bound_generic_struct_type
+);
+
+class_types(  //dir=type
+  unique int id: @class_type
+);
+
+enum_types(  //dir=type
+  unique int id: @enum_type
+);
+
+optional_types(  //dir=type
+  unique int id: @optional_type
+);
+
+protocol_types(  //dir=type
+  unique int id: @protocol_type
+);
+
+struct_types(  //dir=type
+  unique int id: @struct_type
+);
+
+variadic_sequence_types(  //dir=type
+  unique int id: @variadic_sequence_type
+);
+
+@abstract_function_decl_or_none =
+  @abstract_function_decl
+| @unspecified_element
+;
+
+@accessor_decl_or_none =
+  @accessor_decl
+| @unspecified_element
+;
+
+@argument_or_none =
+  @argument
+| @unspecified_element
+;
+
+@associated_type_decl_or_none =
+  @associated_type_decl
+| @unspecified_element
+;
+
+@ast_node_or_none =
+  @ast_node
+| @unspecified_element
+;
+
+@brace_stmt_or_none =
+  @brace_stmt
+| @unspecified_element
+;
+
+@case_label_item_or_none =
+  @case_label_item
+| @unspecified_element
+;
+
+@case_stmt_or_none =
+  @case_stmt
+| @unspecified_element
+;
+
+@closure_expr_or_none =
+  @closure_expr
+| @unspecified_element
+;
+
+@condition_element_or_none =
+  @condition_element
+| @unspecified_element
+;
+
+@constructor_decl_or_none =
+  @constructor_decl
+| @unspecified_element
+;
+
+@decl_or_none =
+  @decl
+| @unspecified_element
+;
+
+@enum_element_decl_or_none =
+  @enum_element_decl
+| @unspecified_element
+;
+
+@expr_or_none =
+  @expr
+| @unspecified_element
+;
+
+@file_or_none =
+  @file
+| @unspecified_element
+;
+
+@generic_type_param_decl_or_none =
+  @generic_type_param_decl
+| @unspecified_element
+;
+
+@generic_type_param_type_or_none =
+  @generic_type_param_type
+| @unspecified_element
+;
+
+@location_or_none =
+  @location
+| @unspecified_element
+;
+
+@module_decl_or_none =
+  @module_decl
+| @unspecified_element
+;
+
+@nominal_type_decl_or_none =
+  @nominal_type_decl
+| @unspecified_element
+;
+
+@opaque_type_decl_or_none =
+  @opaque_type_decl
+| @unspecified_element
+;
+
+@opaque_value_expr_or_none =
+  @opaque_value_expr
+| @unspecified_element
+;
+
+@param_decl_or_none =
+  @param_decl
+| @unspecified_element
+;
+
+@pattern_or_none =
+  @pattern
+| @unspecified_element
+;
+
+@pattern_binding_decl_or_none =
+  @pattern_binding_decl
+| @unspecified_element
+;
+
+@precedence_group_decl_or_none =
+  @precedence_group_decl
+| @unspecified_element
+;
+
+@protocol_decl_or_none =
+  @protocol_decl
+| @unspecified_element
+;
+
+@protocol_type_or_none =
+  @protocol_type
+| @unspecified_element
+;
+
+@stmt_or_none =
+  @stmt
+| @unspecified_element
+;
+
+@stmt_condition_or_none =
+  @stmt_condition
+| @unspecified_element
+;
+
+@string_literal_expr_or_none =
+  @string_literal_expr
+| @unspecified_element
+;
+
+@tap_expr_or_none =
+  @tap_expr
+| @unspecified_element
+;
+
+@type_or_none =
+  @type
+| @unspecified_element
+;
+
+@type_alias_decl_or_none =
+  @type_alias_decl
+| @unspecified_element
+;
+
+@type_repr_or_none =
+  @type_repr
+| @unspecified_element
+;
+
+@value_decl_or_none =
+  @unspecified_element
+| @value_decl
+;
+
+@var_decl_or_none =
+  @unspecified_element
+| @var_decl
+;
diff --git a/swift/ql/lib/upgrades/1a6e9325bd60462e669e524438174deef4476df0/swift.dbscheme b/swift/ql/lib/upgrades/1a6e9325bd60462e669e524438174deef4476df0/swift.dbscheme
new file mode 100644
index 00000000000..62fc609c1ab
--- /dev/null
+++ b/swift/ql/lib/upgrades/1a6e9325bd60462e669e524438174deef4476df0/swift.dbscheme
@@ -0,0 +1,2518 @@
+// generated by codegen/codegen.py
+
+// from prefix.dbscheme
+/**
+ * The source location of the snapshot.
+ */
+sourceLocationPrefix(
+  string prefix: string ref
+);
+
+
+// from schema.py
+
+@element =
+  @callable
+| @file
+| @generic_context
+| @iterable_decl_context
+| @locatable
+| @location
+| @type
+;
+
+#keyset[id]
+element_is_unknown(
+  int id: @element ref
+);
+
+@callable =
+  @abstract_closure_expr
+| @abstract_function_decl
+;
+
+#keyset[id]
+callable_self_params(
+  int id: @callable ref,
+  int self_param: @param_decl_or_none ref
+);
+
+#keyset[id, index]
+callable_params(
+  int id: @callable ref,
+  int index: int ref,
+  int param: @param_decl_or_none ref
+);
+
+#keyset[id]
+callable_bodies(
+  int id: @callable ref,
+  int body: @brace_stmt_or_none ref
+);
+
+@file =
+  @db_file
+;
+
+#keyset[id]
+files(
+  int id: @file ref,
+  string name: string ref
+);
+
+@locatable =
+  @argument
+| @ast_node
+| @comment
+| @diagnostics
+| @error_element
+;
+
+#keyset[id]
+locatable_locations(
+  int id: @locatable ref,
+  int location: @location_or_none ref
+);
+
+@location =
+  @db_location
+;
+
+#keyset[id]
+locations(
+  int id: @location ref,
+  int file: @file_or_none ref,
+  int start_line: int ref,
+  int start_column: int ref,
+  int end_line: int ref,
+  int end_column: int ref
+);
+
+@ast_node =
+  @case_label_item
+| @condition_element
+| @decl
+| @expr
+| @pattern
+| @stmt
+| @stmt_condition
+| @type_repr
+;
+
+comments(
+  unique int id: @comment,
+  string text: string ref
+);
+
+db_files(
+  unique int id: @db_file
+);
+
+db_locations(
+  unique int id: @db_location
+);
+
+diagnostics(
+  unique int id: @diagnostics,
+  string text: string ref,
+  int kind: int ref
+);
+
+@error_element =
+  @error_expr
+| @error_type
+| @overloaded_decl_ref_expr
+| @unresolved_decl_ref_expr
+| @unresolved_dot_expr
+| @unresolved_member_chain_result_expr
+| @unresolved_member_expr
+| @unresolved_pattern_expr
+| @unresolved_specialize_expr
+| @unresolved_type
+| @unresolved_type_conversion_expr
+| @unspecified_element
+;
+
+unspecified_elements(
+  unique int id: @unspecified_element,
+  string property: string ref,
+  string error: string ref
+);
+
+#keyset[id]
+unspecified_element_parents(
+  int id: @unspecified_element ref,
+  int parent: @element ref
+);
+
+#keyset[id]
+unspecified_element_indices(
+  int id: @unspecified_element ref,
+  int index: int ref
+);
+
+@decl =
+  @enum_case_decl
+| @extension_decl
+| @if_config_decl
+| @import_decl
+| @missing_member_decl
+| @operator_decl
+| @pattern_binding_decl
+| @pound_diagnostic_decl
+| @precedence_group_decl
+| @top_level_code_decl
+| @value_decl
+;
+
+#keyset[id]
+decls(  //dir=decl
+  int id: @decl ref,
+  int module: @module_decl_or_none ref
+);
+
+@generic_context =
+  @abstract_function_decl
+| @extension_decl
+| @generic_type_decl
+| @subscript_decl
+;
+
+#keyset[id, index]
+generic_context_generic_type_params(  //dir=decl
+  int id: @generic_context ref,
+  int index: int ref,
+  int generic_type_param: @generic_type_param_decl_or_none ref
+);
+
+@iterable_decl_context =
+  @extension_decl
+| @nominal_type_decl
+;
+
+#keyset[id, index]
+iterable_decl_context_members(  //dir=decl
+  int id: @iterable_decl_context ref,
+  int index: int ref,
+  int member: @decl_or_none ref
+);
+
+enum_case_decls(  //dir=decl
+  unique int id: @enum_case_decl
+);
+
+#keyset[id, index]
+enum_case_decl_elements(  //dir=decl
+  int id: @enum_case_decl ref,
+  int index: int ref,
+  int element: @enum_element_decl_or_none ref
+);
+
+extension_decls(  //dir=decl
+  unique int id: @extension_decl,
+  int extended_type_decl: @nominal_type_decl_or_none ref
+);
+
+if_config_decls(  //dir=decl
+  unique int id: @if_config_decl
+);
+
+#keyset[id, index]
+if_config_decl_active_elements(  //dir=decl
+  int id: @if_config_decl ref,
+  int index: int ref,
+  int active_element: @ast_node_or_none ref
+);
+
+import_decls(  //dir=decl
+  unique int id: @import_decl
+);
+
+#keyset[id]
+import_decl_is_exported(  //dir=decl
+  int id: @import_decl ref
+);
+
+#keyset[id]
+import_decl_imported_modules(  //dir=decl
+  int id: @import_decl ref,
+  int imported_module: @module_decl_or_none ref
+);
+
+#keyset[id, index]
+import_decl_declarations(  //dir=decl
+  int id: @import_decl ref,
+  int index: int ref,
+  int declaration: @value_decl_or_none ref
+);
+
+missing_member_decls(  //dir=decl
+  unique int id: @missing_member_decl,
+  string name: string ref
+);
+
+@operator_decl =
+  @infix_operator_decl
+| @postfix_operator_decl
+| @prefix_operator_decl
+;
+
+#keyset[id]
+operator_decls(  //dir=decl
+  int id: @operator_decl ref,
+  string name: string ref
+);
+
+pattern_binding_decls(  //dir=decl
+  unique int id: @pattern_binding_decl
+);
+
+#keyset[id, index]
+pattern_binding_decl_inits(  //dir=decl
+  int id: @pattern_binding_decl ref,
+  int index: int ref,
+  int init: @expr_or_none ref
+);
+
+#keyset[id, index]
+pattern_binding_decl_patterns(  //dir=decl
+  int id: @pattern_binding_decl ref,
+  int index: int ref,
+  int pattern: @pattern_or_none ref
+);
+
+pound_diagnostic_decls(  //dir=decl
+  unique int id: @pound_diagnostic_decl,
+  int kind: int ref,
+  int message: @string_literal_expr_or_none ref
+);
+
+precedence_group_decls(  //dir=decl
+  unique int id: @precedence_group_decl
+);
+
+top_level_code_decls(  //dir=decl
+  unique int id: @top_level_code_decl,
+  int body: @brace_stmt_or_none ref
+);
+
+@value_decl =
+  @abstract_function_decl
+| @abstract_storage_decl
+| @enum_element_decl
+| @type_decl
+;
+
+#keyset[id]
+value_decls(  //dir=decl
+  int id: @value_decl ref,
+  int interface_type: @type_or_none ref
+);
+
+@abstract_function_decl =
+  @constructor_decl
+| @destructor_decl
+| @func_decl
+;
+
+#keyset[id]
+abstract_function_decls(  //dir=decl
+  int id: @abstract_function_decl ref,
+  string name: string ref
+);
+
+@abstract_storage_decl =
+  @subscript_decl
+| @var_decl
+;
+
+#keyset[id, index]
+abstract_storage_decl_accessor_decls(  //dir=decl
+  int id: @abstract_storage_decl ref,
+  int index: int ref,
+  int accessor_decl: @accessor_decl_or_none ref
+);
+
+enum_element_decls(  //dir=decl
+  unique int id: @enum_element_decl,
+  string name: string ref
+);
+
+#keyset[id, index]
+enum_element_decl_params(  //dir=decl
+  int id: @enum_element_decl ref,
+  int index: int ref,
+  int param: @param_decl_or_none ref
+);
+
+infix_operator_decls(  //dir=decl
+  unique int id: @infix_operator_decl
+);
+
+#keyset[id]
+infix_operator_decl_precedence_groups(  //dir=decl
+  int id: @infix_operator_decl ref,
+  int precedence_group: @precedence_group_decl_or_none ref
+);
+
+postfix_operator_decls(  //dir=decl
+  unique int id: @postfix_operator_decl
+);
+
+prefix_operator_decls(  //dir=decl
+  unique int id: @prefix_operator_decl
+);
+
+@type_decl =
+  @abstract_type_param_decl
+| @generic_type_decl
+| @module_decl
+;
+
+#keyset[id]
+type_decls(  //dir=decl
+  int id: @type_decl ref,
+  string name: string ref
+);
+
+#keyset[id, index]
+type_decl_base_types(  //dir=decl
+  int id: @type_decl ref,
+  int index: int ref,
+  int base_type: @type_or_none ref
+);
+
+@abstract_type_param_decl =
+  @associated_type_decl
+| @generic_type_param_decl
+;
+
+constructor_decls(  //dir=decl
+  unique int id: @constructor_decl
+);
+
+destructor_decls(  //dir=decl
+  unique int id: @destructor_decl
+);
+
+@func_decl =
+  @accessor_decl
+| @concrete_func_decl
+;
+
+@generic_type_decl =
+  @nominal_type_decl
+| @opaque_type_decl
+| @type_alias_decl
+;
+
+module_decls(  //dir=decl
+  unique int id: @module_decl
+);
+
+#keyset[id]
+module_decl_is_builtin_module(  //dir=decl
+  int id: @module_decl ref
+);
+
+#keyset[id]
+module_decl_is_system_module(  //dir=decl
+  int id: @module_decl ref
+);
+
+#keyset[id, index]
+module_decl_imported_modules(  //dir=decl
+  int id: @module_decl ref,
+  int index: int ref,
+  int imported_module: @module_decl_or_none ref
+);
+
+#keyset[id, index]
+module_decl_exported_modules(  //dir=decl
+  int id: @module_decl ref,
+  int index: int ref,
+  int exported_module: @module_decl_or_none ref
+);
+
+subscript_decls(  //dir=decl
+  unique int id: @subscript_decl,
+  int element_type: @type_or_none ref
+);
+
+#keyset[id, index]
+subscript_decl_params(  //dir=decl
+  int id: @subscript_decl ref,
+  int index: int ref,
+  int param: @param_decl_or_none ref
+);
+
+@var_decl =
+  @concrete_var_decl
+| @param_decl
+;
+
+#keyset[id]
+var_decls(  //dir=decl
+  int id: @var_decl ref,
+  string name: string ref,
+  int type_: @type_or_none ref
+);
+
+#keyset[id]
+var_decl_attached_property_wrapper_types(  //dir=decl
+  int id: @var_decl ref,
+  int attached_property_wrapper_type: @type_or_none ref
+);
+
+#keyset[id]
+var_decl_parent_patterns(  //dir=decl
+  int id: @var_decl ref,
+  int parent_pattern: @pattern_or_none ref
+);
+
+#keyset[id]
+var_decl_parent_initializers(  //dir=decl
+  int id: @var_decl ref,
+  int parent_initializer: @expr_or_none ref
+);
+
+#keyset[id]
+var_decl_property_wrapper_backing_var_bindings(  //dir=decl
+  int id: @var_decl ref,
+  int property_wrapper_backing_var_binding: @pattern_binding_decl_or_none ref
+);
+
+#keyset[id]
+var_decl_property_wrapper_backing_vars(  //dir=decl
+  int id: @var_decl ref,
+  int property_wrapper_backing_var: @var_decl_or_none ref
+);
+
+#keyset[id]
+var_decl_property_wrapper_projection_var_bindings(  //dir=decl
+  int id: @var_decl ref,
+  int property_wrapper_projection_var_binding: @pattern_binding_decl_or_none ref
+);
+
+#keyset[id]
+var_decl_property_wrapper_projection_vars(  //dir=decl
+  int id: @var_decl ref,
+  int property_wrapper_projection_var: @var_decl_or_none ref
+);
+
+accessor_decls(  //dir=decl
+  unique int id: @accessor_decl
+);
+
+#keyset[id]
+accessor_decl_is_getter(  //dir=decl
+  int id: @accessor_decl ref
+);
+
+#keyset[id]
+accessor_decl_is_setter(  //dir=decl
+  int id: @accessor_decl ref
+);
+
+#keyset[id]
+accessor_decl_is_will_set(  //dir=decl
+  int id: @accessor_decl ref
+);
+
+#keyset[id]
+accessor_decl_is_did_set(  //dir=decl
+  int id: @accessor_decl ref
+);
+
+#keyset[id]
+accessor_decl_is_read(  //dir=decl
+  int id: @accessor_decl ref
+);
+
+#keyset[id]
+accessor_decl_is_modify(  //dir=decl
+  int id: @accessor_decl ref
+);
+
+#keyset[id]
+accessor_decl_is_unsafe_address(  //dir=decl
+  int id: @accessor_decl ref
+);
+
+#keyset[id]
+accessor_decl_is_unsafe_mutable_address(  //dir=decl
+  int id: @accessor_decl ref
+);
+
+associated_type_decls(  //dir=decl
+  unique int id: @associated_type_decl
+);
+
+concrete_func_decls(  //dir=decl
+  unique int id: @concrete_func_decl
+);
+
+concrete_var_decls(  //dir=decl
+  unique int id: @concrete_var_decl,
+  int introducer_int: int ref
+);
+
+generic_type_param_decls(  //dir=decl
+  unique int id: @generic_type_param_decl
+);
+
+@nominal_type_decl =
+  @class_decl
+| @enum_decl
+| @protocol_decl
+| @struct_decl
+;
+
+#keyset[id]
+nominal_type_decls(  //dir=decl
+  int id: @nominal_type_decl ref,
+  int type_: @type_or_none ref
+);
+
+opaque_type_decls(  //dir=decl
+  unique int id: @opaque_type_decl,
+  int naming_declaration: @value_decl_or_none ref
+);
+
+#keyset[id, index]
+opaque_type_decl_opaque_generic_params(  //dir=decl
+  int id: @opaque_type_decl ref,
+  int index: int ref,
+  int opaque_generic_param: @generic_type_param_type_or_none ref
+);
+
+param_decls(  //dir=decl
+  unique int id: @param_decl
+);
+
+#keyset[id]
+param_decl_is_inout(  //dir=decl
+  int id: @param_decl ref
+);
+
+#keyset[id]
+param_decl_property_wrapper_local_wrapped_var_bindings(  //dir=decl
+  int id: @param_decl ref,
+  int property_wrapper_local_wrapped_var_binding: @pattern_binding_decl_or_none ref
+);
+
+#keyset[id]
+param_decl_property_wrapper_local_wrapped_vars(  //dir=decl
+  int id: @param_decl ref,
+  int property_wrapper_local_wrapped_var: @var_decl_or_none ref
+);
+
+type_alias_decls(  //dir=decl
+  unique int id: @type_alias_decl
+);
+
+class_decls(  //dir=decl
+  unique int id: @class_decl
+);
+
+enum_decls(  //dir=decl
+  unique int id: @enum_decl
+);
+
+protocol_decls(  //dir=decl
+  unique int id: @protocol_decl
+);
+
+struct_decls(  //dir=decl
+  unique int id: @struct_decl
+);
+
+arguments(  //dir=expr
+  unique int id: @argument,
+  string label: string ref,
+  int expr: @expr_or_none ref
+);
+
+@expr =
+  @abstract_closure_expr
+| @any_try_expr
+| @applied_property_wrapper_expr
+| @apply_expr
+| @assign_expr
+| @bind_optional_expr
+| @capture_list_expr
+| @collection_expr
+| @decl_ref_expr
+| @default_argument_expr
+| @discard_assignment_expr
+| @dot_syntax_base_ignored_expr
+| @dynamic_type_expr
+| @enum_is_case_expr
+| @error_expr
+| @explicit_cast_expr
+| @force_value_expr
+| @identity_expr
+| @if_expr
+| @implicit_conversion_expr
+| @in_out_expr
+| @key_path_application_expr
+| @key_path_dot_expr
+| @key_path_expr
+| @lazy_initializer_expr
+| @literal_expr
+| @lookup_expr
+| @make_temporarily_escapable_expr
+| @obj_c_selector_expr
+| @one_way_expr
+| @opaque_value_expr
+| @open_existential_expr
+| @optional_evaluation_expr
+| @other_constructor_decl_ref_expr
+| @overloaded_decl_ref_expr
+| @property_wrapper_value_placeholder_expr
+| @rebind_self_in_constructor_expr
+| @sequence_expr
+| @super_ref_expr
+| @tap_expr
+| @tuple_element_expr
+| @tuple_expr
+| @type_expr
+| @unresolved_decl_ref_expr
+| @unresolved_dot_expr
+| @unresolved_member_expr
+| @unresolved_pattern_expr
+| @unresolved_specialize_expr
+| @vararg_expansion_expr
+;
+
+#keyset[id]
+expr_types(  //dir=expr
+  int id: @expr ref,
+  int type_: @type_or_none ref
+);
+
+@abstract_closure_expr =
+  @auto_closure_expr
+| @closure_expr
+;
+
+@any_try_expr =
+  @force_try_expr
+| @optional_try_expr
+| @try_expr
+;
+
+#keyset[id]
+any_try_exprs(  //dir=expr
+  int id: @any_try_expr ref,
+  int sub_expr: @expr_or_none ref
+);
+
+applied_property_wrapper_exprs(  //dir=expr
+  unique int id: @applied_property_wrapper_expr,
+  int kind: int ref,
+  int value: @expr_or_none ref,
+  int param: @param_decl_or_none ref
+);
+
+@apply_expr =
+  @binary_expr
+| @call_expr
+| @postfix_unary_expr
+| @prefix_unary_expr
+| @self_apply_expr
+;
+
+#keyset[id]
+apply_exprs(  //dir=expr
+  int id: @apply_expr ref,
+  int function: @expr_or_none ref
+);
+
+#keyset[id, index]
+apply_expr_arguments(  //dir=expr
+  int id: @apply_expr ref,
+  int index: int ref,
+  int argument: @argument_or_none ref
+);
+
+assign_exprs(  //dir=expr
+  unique int id: @assign_expr,
+  int dest: @expr_or_none ref,
+  int source: @expr_or_none ref
+);
+
+bind_optional_exprs(  //dir=expr
+  unique int id: @bind_optional_expr,
+  int sub_expr: @expr_or_none ref
+);
+
+capture_list_exprs(  //dir=expr
+  unique int id: @capture_list_expr,
+  int closure_body: @closure_expr_or_none ref
+);
+
+#keyset[id, index]
+capture_list_expr_binding_decls(  //dir=expr
+  int id: @capture_list_expr ref,
+  int index: int ref,
+  int binding_decl: @pattern_binding_decl_or_none ref
+);
+
+@collection_expr =
+  @array_expr
+| @dictionary_expr
+;
+
+decl_ref_exprs(  //dir=expr
+  unique int id: @decl_ref_expr,
+  int decl: @decl_or_none ref
+);
+
+#keyset[id, index]
+decl_ref_expr_replacement_types(  //dir=expr
+  int id: @decl_ref_expr ref,
+  int index: int ref,
+  int replacement_type: @type_or_none ref
+);
+
+#keyset[id]
+decl_ref_expr_has_direct_to_storage_semantics(  //dir=expr
+  int id: @decl_ref_expr ref
+);
+
+#keyset[id]
+decl_ref_expr_has_direct_to_implementation_semantics(  //dir=expr
+  int id: @decl_ref_expr ref
+);
+
+#keyset[id]
+decl_ref_expr_has_ordinary_semantics(  //dir=expr
+  int id: @decl_ref_expr ref
+);
+
+#keyset[id]
+decl_ref_expr_has_distributed_thunk_semantics(  //dir=expr
+  int id: @decl_ref_expr ref
+);
+
+default_argument_exprs(  //dir=expr
+  unique int id: @default_argument_expr,
+  int param_decl: @param_decl_or_none ref,
+  int param_index: int ref
+);
+
+#keyset[id]
+default_argument_expr_caller_side_defaults(  //dir=expr
+  int id: @default_argument_expr ref,
+  int caller_side_default: @expr_or_none ref
+);
+
+discard_assignment_exprs(  //dir=expr
+  unique int id: @discard_assignment_expr
+);
+
+dot_syntax_base_ignored_exprs(  //dir=expr
+  unique int id: @dot_syntax_base_ignored_expr,
+  int qualifier: @expr_or_none ref,
+  int sub_expr: @expr_or_none ref
+);
+
+dynamic_type_exprs(  //dir=expr
+  unique int id: @dynamic_type_expr,
+  int base: @expr_or_none ref
+);
+
+enum_is_case_exprs(  //dir=expr
+  unique int id: @enum_is_case_expr,
+  int sub_expr: @expr_or_none ref,
+  int element: @enum_element_decl_or_none ref
+);
+
+error_exprs(  //dir=expr
+  unique int id: @error_expr
+);
+
+@explicit_cast_expr =
+  @checked_cast_expr
+| @coerce_expr
+;
+
+#keyset[id]
+explicit_cast_exprs(  //dir=expr
+  int id: @explicit_cast_expr ref,
+  int sub_expr: @expr_or_none ref
+);
+
+force_value_exprs(  //dir=expr
+  unique int id: @force_value_expr,
+  int sub_expr: @expr_or_none ref
+);
+
+@identity_expr =
+  @await_expr
+| @dot_self_expr
+| @paren_expr
+| @unresolved_member_chain_result_expr
+;
+
+#keyset[id]
+identity_exprs(  //dir=expr
+  int id: @identity_expr ref,
+  int sub_expr: @expr_or_none ref
+);
+
+if_exprs(  //dir=expr
+  unique int id: @if_expr,
+  int condition: @expr_or_none ref,
+  int then_expr: @expr_or_none ref,
+  int else_expr: @expr_or_none ref
+);
+
+@implicit_conversion_expr =
+  @abi_safe_conversion_expr
+| @any_hashable_erasure_expr
+| @archetype_to_super_expr
+| @array_to_pointer_expr
+| @bridge_from_obj_c_expr
+| @bridge_to_obj_c_expr
+| @class_metatype_to_object_expr
+| @collection_upcast_conversion_expr
+| @conditional_bridge_from_obj_c_expr
+| @covariant_function_conversion_expr
+| @covariant_return_conversion_expr
+| @derived_to_base_expr
+| @destructure_tuple_expr
+| @differentiable_function_expr
+| @differentiable_function_extract_original_expr
+| @erasure_expr
+| @existential_metatype_to_object_expr
+| @foreign_object_conversion_expr
+| @function_conversion_expr
+| @in_out_to_pointer_expr
+| @inject_into_optional_expr
+| @linear_function_expr
+| @linear_function_extract_original_expr
+| @linear_to_differentiable_function_expr
+| @load_expr
+| @metatype_conversion_expr
+| @pointer_to_pointer_expr
+| @protocol_metatype_to_object_expr
+| @string_to_pointer_expr
+| @underlying_to_opaque_expr
+| @unevaluated_instance_expr
+| @unresolved_type_conversion_expr
+;
+
+#keyset[id]
+implicit_conversion_exprs(  //dir=expr
+  int id: @implicit_conversion_expr ref,
+  int sub_expr: @expr_or_none ref
+);
+
+in_out_exprs(  //dir=expr
+  unique int id: @in_out_expr,
+  int sub_expr: @expr_or_none ref
+);
+
+key_path_application_exprs(  //dir=expr
+  unique int id: @key_path_application_expr,
+  int base: @expr_or_none ref,
+  int key_path: @expr_or_none ref
+);
+
+key_path_dot_exprs(  //dir=expr
+  unique int id: @key_path_dot_expr
+);
+
+key_path_exprs(  //dir=expr
+  unique int id: @key_path_expr
+);
+
+#keyset[id]
+key_path_expr_roots(  //dir=expr
+  int id: @key_path_expr ref,
+  int root: @type_repr_or_none ref
+);
+
+#keyset[id]
+key_path_expr_parsed_paths(  //dir=expr
+  int id: @key_path_expr ref,
+  int parsed_path: @expr_or_none ref
+);
+
+lazy_initializer_exprs(  //dir=expr
+  unique int id: @lazy_initializer_expr,
+  int sub_expr: @expr_or_none ref
+);
+
+@literal_expr =
+  @builtin_literal_expr
+| @interpolated_string_literal_expr
+| @nil_literal_expr
+| @object_literal_expr
+| @regex_literal_expr
+;
+
+@lookup_expr =
+  @dynamic_lookup_expr
+| @member_ref_expr
+| @subscript_expr
+;
+
+#keyset[id]
+lookup_exprs(  //dir=expr
+  int id: @lookup_expr ref,
+  int base: @expr_or_none ref
+);
+
+#keyset[id]
+lookup_expr_members(  //dir=expr
+  int id: @lookup_expr ref,
+  int member: @decl_or_none ref
+);
+
+make_temporarily_escapable_exprs(  //dir=expr
+  unique int id: @make_temporarily_escapable_expr,
+  int escaping_closure: @opaque_value_expr_or_none ref,
+  int nonescaping_closure: @expr_or_none ref,
+  int sub_expr: @expr_or_none ref
+);
+
+obj_c_selector_exprs(  //dir=expr
+  unique int id: @obj_c_selector_expr,
+  int sub_expr: @expr_or_none ref,
+  int method: @abstract_function_decl_or_none ref
+);
+
+one_way_exprs(  //dir=expr
+  unique int id: @one_way_expr,
+  int sub_expr: @expr_or_none ref
+);
+
+opaque_value_exprs(  //dir=expr
+  unique int id: @opaque_value_expr
+);
+
+open_existential_exprs(  //dir=expr
+  unique int id: @open_existential_expr,
+  int sub_expr: @expr_or_none ref,
+  int existential: @expr_or_none ref,
+  int opaque_expr: @opaque_value_expr_or_none ref
+);
+
+optional_evaluation_exprs(  //dir=expr
+  unique int id: @optional_evaluation_expr,
+  int sub_expr: @expr_or_none ref
+);
+
+other_constructor_decl_ref_exprs(  //dir=expr
+  unique int id: @other_constructor_decl_ref_expr,
+  int constructor_decl: @constructor_decl_or_none ref
+);
+
+overloaded_decl_ref_exprs(  //dir=expr
+  unique int id: @overloaded_decl_ref_expr
+);
+
+#keyset[id, index]
+overloaded_decl_ref_expr_possible_declarations(  //dir=expr
+  int id: @overloaded_decl_ref_expr ref,
+  int index: int ref,
+  int possible_declaration: @value_decl_or_none ref
+);
+
+property_wrapper_value_placeholder_exprs(  //dir=expr
+  unique int id: @property_wrapper_value_placeholder_expr,
+  int placeholder: @opaque_value_expr_or_none ref
+);
+
+#keyset[id]
+property_wrapper_value_placeholder_expr_wrapped_values(  //dir=expr
+  int id: @property_wrapper_value_placeholder_expr ref,
+  int wrapped_value: @expr_or_none ref
+);
+
+rebind_self_in_constructor_exprs(  //dir=expr
+  unique int id: @rebind_self_in_constructor_expr,
+  int sub_expr: @expr_or_none ref,
+  int self: @var_decl_or_none ref
+);
+
+sequence_exprs(  //dir=expr
+  unique int id: @sequence_expr
+);
+
+#keyset[id, index]
+sequence_expr_elements(  //dir=expr
+  int id: @sequence_expr ref,
+  int index: int ref,
+  int element: @expr_or_none ref
+);
+
+super_ref_exprs(  //dir=expr
+  unique int id: @super_ref_expr,
+  int self: @var_decl_or_none ref
+);
+
+tap_exprs(  //dir=expr
+  unique int id: @tap_expr,
+  int body: @brace_stmt_or_none ref,
+  int var: @var_decl_or_none ref
+);
+
+#keyset[id]
+tap_expr_sub_exprs(  //dir=expr
+  int id: @tap_expr ref,
+  int sub_expr: @expr_or_none ref
+);
+
+tuple_element_exprs(  //dir=expr
+  unique int id: @tuple_element_expr,
+  int sub_expr: @expr_or_none ref,
+  int index: int ref
+);
+
+tuple_exprs(  //dir=expr
+  unique int id: @tuple_expr
+);
+
+#keyset[id, index]
+tuple_expr_elements(  //dir=expr
+  int id: @tuple_expr ref,
+  int index: int ref,
+  int element: @expr_or_none ref
+);
+
+type_exprs(  //dir=expr
+  unique int id: @type_expr
+);
+
+#keyset[id]
+type_expr_type_reprs(  //dir=expr
+  int id: @type_expr ref,
+  int type_repr: @type_repr_or_none ref
+);
+
+unresolved_decl_ref_exprs(  //dir=expr
+  unique int id: @unresolved_decl_ref_expr
+);
+
+#keyset[id]
+unresolved_decl_ref_expr_names(  //dir=expr
+  int id: @unresolved_decl_ref_expr ref,
+  string name: string ref
+);
+
+unresolved_dot_exprs(  //dir=expr
+  unique int id: @unresolved_dot_expr,
+  int base: @expr_or_none ref,
+  string name: string ref
+);
+
+unresolved_member_exprs(  //dir=expr
+  unique int id: @unresolved_member_expr,
+  string name: string ref
+);
+
+unresolved_pattern_exprs(  //dir=expr
+  unique int id: @unresolved_pattern_expr,
+  int sub_pattern: @pattern_or_none ref
+);
+
+unresolved_specialize_exprs(  //dir=expr
+  unique int id: @unresolved_specialize_expr,
+  int sub_expr: @expr_or_none ref
+);
+
+vararg_expansion_exprs(  //dir=expr
+  unique int id: @vararg_expansion_expr,
+  int sub_expr: @expr_or_none ref
+);
+
+abi_safe_conversion_exprs(  //dir=expr
+  unique int id: @abi_safe_conversion_expr
+);
+
+any_hashable_erasure_exprs(  //dir=expr
+  unique int id: @any_hashable_erasure_expr
+);
+
+archetype_to_super_exprs(  //dir=expr
+  unique int id: @archetype_to_super_expr
+);
+
+array_exprs(  //dir=expr
+  unique int id: @array_expr
+);
+
+#keyset[id, index]
+array_expr_elements(  //dir=expr
+  int id: @array_expr ref,
+  int index: int ref,
+  int element: @expr_or_none ref
+);
+
+array_to_pointer_exprs(  //dir=expr
+  unique int id: @array_to_pointer_expr
+);
+
+auto_closure_exprs(  //dir=expr
+  unique int id: @auto_closure_expr
+);
+
+await_exprs(  //dir=expr
+  unique int id: @await_expr
+);
+
+binary_exprs(  //dir=expr
+  unique int id: @binary_expr
+);
+
+bridge_from_obj_c_exprs(  //dir=expr
+  unique int id: @bridge_from_obj_c_expr
+);
+
+bridge_to_obj_c_exprs(  //dir=expr
+  unique int id: @bridge_to_obj_c_expr
+);
+
+@builtin_literal_expr =
+  @boolean_literal_expr
+| @magic_identifier_literal_expr
+| @number_literal_expr
+| @string_literal_expr
+;
+
+call_exprs(  //dir=expr
+  unique int id: @call_expr
+);
+
+@checked_cast_expr =
+  @conditional_checked_cast_expr
+| @forced_checked_cast_expr
+| @is_expr
+;
+
+class_metatype_to_object_exprs(  //dir=expr
+  unique int id: @class_metatype_to_object_expr
+);
+
+closure_exprs(  //dir=expr
+  unique int id: @closure_expr
+);
+
+coerce_exprs(  //dir=expr
+  unique int id: @coerce_expr
+);
+
+collection_upcast_conversion_exprs(  //dir=expr
+  unique int id: @collection_upcast_conversion_expr
+);
+
+conditional_bridge_from_obj_c_exprs(  //dir=expr
+  unique int id: @conditional_bridge_from_obj_c_expr
+);
+
+covariant_function_conversion_exprs(  //dir=expr
+  unique int id: @covariant_function_conversion_expr
+);
+
+covariant_return_conversion_exprs(  //dir=expr
+  unique int id: @covariant_return_conversion_expr
+);
+
+derived_to_base_exprs(  //dir=expr
+  unique int id: @derived_to_base_expr
+);
+
+destructure_tuple_exprs(  //dir=expr
+  unique int id: @destructure_tuple_expr
+);
+
+dictionary_exprs(  //dir=expr
+  unique int id: @dictionary_expr
+);
+
+#keyset[id, index]
+dictionary_expr_elements(  //dir=expr
+  int id: @dictionary_expr ref,
+  int index: int ref,
+  int element: @expr_or_none ref
+);
+
+differentiable_function_exprs(  //dir=expr
+  unique int id: @differentiable_function_expr
+);
+
+differentiable_function_extract_original_exprs(  //dir=expr
+  unique int id: @differentiable_function_extract_original_expr
+);
+
+dot_self_exprs(  //dir=expr
+  unique int id: @dot_self_expr
+);
+
+@dynamic_lookup_expr =
+  @dynamic_member_ref_expr
+| @dynamic_subscript_expr
+;
+
+erasure_exprs(  //dir=expr
+  unique int id: @erasure_expr
+);
+
+existential_metatype_to_object_exprs(  //dir=expr
+  unique int id: @existential_metatype_to_object_expr
+);
+
+force_try_exprs(  //dir=expr
+  unique int id: @force_try_expr
+);
+
+foreign_object_conversion_exprs(  //dir=expr
+  unique int id: @foreign_object_conversion_expr
+);
+
+function_conversion_exprs(  //dir=expr
+  unique int id: @function_conversion_expr
+);
+
+in_out_to_pointer_exprs(  //dir=expr
+  unique int id: @in_out_to_pointer_expr
+);
+
+inject_into_optional_exprs(  //dir=expr
+  unique int id: @inject_into_optional_expr
+);
+
+interpolated_string_literal_exprs(  //dir=expr
+  unique int id: @interpolated_string_literal_expr
+);
+
+#keyset[id]
+interpolated_string_literal_expr_interpolation_exprs(  //dir=expr
+  int id: @interpolated_string_literal_expr ref,
+  int interpolation_expr: @opaque_value_expr_or_none ref
+);
+
+#keyset[id]
+interpolated_string_literal_expr_interpolation_count_exprs(  //dir=expr
+  int id: @interpolated_string_literal_expr ref,
+  int interpolation_count_expr: @expr_or_none ref
+);
+
+#keyset[id]
+interpolated_string_literal_expr_literal_capacity_exprs(  //dir=expr
+  int id: @interpolated_string_literal_expr ref,
+  int literal_capacity_expr: @expr_or_none ref
+);
+
+#keyset[id]
+interpolated_string_literal_expr_appending_exprs(  //dir=expr
+  int id: @interpolated_string_literal_expr ref,
+  int appending_expr: @tap_expr_or_none ref
+);
+
+linear_function_exprs(  //dir=expr
+  unique int id: @linear_function_expr
+);
+
+linear_function_extract_original_exprs(  //dir=expr
+  unique int id: @linear_function_extract_original_expr
+);
+
+linear_to_differentiable_function_exprs(  //dir=expr
+  unique int id: @linear_to_differentiable_function_expr
+);
+
+load_exprs(  //dir=expr
+  unique int id: @load_expr
+);
+
+member_ref_exprs(  //dir=expr
+  unique int id: @member_ref_expr
+);
+
+#keyset[id]
+member_ref_expr_has_direct_to_storage_semantics(  //dir=expr
+  int id: @member_ref_expr ref
+);
+
+#keyset[id]
+member_ref_expr_has_direct_to_implementation_semantics(  //dir=expr
+  int id: @member_ref_expr ref
+);
+
+#keyset[id]
+member_ref_expr_has_ordinary_semantics(  //dir=expr
+  int id: @member_ref_expr ref
+);
+
+#keyset[id]
+member_ref_expr_has_distributed_thunk_semantics(  //dir=expr
+  int id: @member_ref_expr ref
+);
+
+metatype_conversion_exprs(  //dir=expr
+  unique int id: @metatype_conversion_expr
+);
+
+nil_literal_exprs(  //dir=expr
+  unique int id: @nil_literal_expr
+);
+
+object_literal_exprs(  //dir=expr
+  unique int id: @object_literal_expr,
+  int kind: int ref
+);
+
+#keyset[id, index]
+object_literal_expr_arguments(  //dir=expr
+  int id: @object_literal_expr ref,
+  int index: int ref,
+  int argument: @argument_or_none ref
+);
+
+optional_try_exprs(  //dir=expr
+  unique int id: @optional_try_expr
+);
+
+paren_exprs(  //dir=expr
+  unique int id: @paren_expr
+);
+
+pointer_to_pointer_exprs(  //dir=expr
+  unique int id: @pointer_to_pointer_expr
+);
+
+postfix_unary_exprs(  //dir=expr
+  unique int id: @postfix_unary_expr
+);
+
+prefix_unary_exprs(  //dir=expr
+  unique int id: @prefix_unary_expr
+);
+
+protocol_metatype_to_object_exprs(  //dir=expr
+  unique int id: @protocol_metatype_to_object_expr
+);
+
+regex_literal_exprs(  //dir=expr
+  unique int id: @regex_literal_expr
+);
+
+@self_apply_expr =
+  @constructor_ref_call_expr
+| @dot_syntax_call_expr
+;
+
+#keyset[id]
+self_apply_exprs(  //dir=expr
+  int id: @self_apply_expr ref,
+  int base: @expr_or_none ref
+);
+
+string_to_pointer_exprs(  //dir=expr
+  unique int id: @string_to_pointer_expr
+);
+
+subscript_exprs(  //dir=expr
+  unique int id: @subscript_expr
+);
+
+#keyset[id, index]
+subscript_expr_arguments(  //dir=expr
+  int id: @subscript_expr ref,
+  int index: int ref,
+  int argument: @argument_or_none ref
+);
+
+#keyset[id]
+subscript_expr_has_direct_to_storage_semantics(  //dir=expr
+  int id: @subscript_expr ref
+);
+
+#keyset[id]
+subscript_expr_has_direct_to_implementation_semantics(  //dir=expr
+  int id: @subscript_expr ref
+);
+
+#keyset[id]
+subscript_expr_has_ordinary_semantics(  //dir=expr
+  int id: @subscript_expr ref
+);
+
+#keyset[id]
+subscript_expr_has_distributed_thunk_semantics(  //dir=expr
+  int id: @subscript_expr ref
+);
+
+try_exprs(  //dir=expr
+  unique int id: @try_expr
+);
+
+underlying_to_opaque_exprs(  //dir=expr
+  unique int id: @underlying_to_opaque_expr
+);
+
+unevaluated_instance_exprs(  //dir=expr
+  unique int id: @unevaluated_instance_expr
+);
+
+unresolved_member_chain_result_exprs(  //dir=expr
+  unique int id: @unresolved_member_chain_result_expr
+);
+
+unresolved_type_conversion_exprs(  //dir=expr
+  unique int id: @unresolved_type_conversion_expr
+);
+
+boolean_literal_exprs(  //dir=expr
+  unique int id: @boolean_literal_expr,
+  boolean value: boolean ref
+);
+
+conditional_checked_cast_exprs(  //dir=expr
+  unique int id: @conditional_checked_cast_expr
+);
+
+constructor_ref_call_exprs(  //dir=expr
+  unique int id: @constructor_ref_call_expr
+);
+
+dot_syntax_call_exprs(  //dir=expr
+  unique int id: @dot_syntax_call_expr
+);
+
+dynamic_member_ref_exprs(  //dir=expr
+  unique int id: @dynamic_member_ref_expr
+);
+
+dynamic_subscript_exprs(  //dir=expr
+  unique int id: @dynamic_subscript_expr
+);
+
+forced_checked_cast_exprs(  //dir=expr
+  unique int id: @forced_checked_cast_expr
+);
+
+is_exprs(  //dir=expr
+  unique int id: @is_expr
+);
+
+magic_identifier_literal_exprs(  //dir=expr
+  unique int id: @magic_identifier_literal_expr,
+  string kind: string ref
+);
+
+@number_literal_expr =
+  @float_literal_expr
+| @integer_literal_expr
+;
+
+string_literal_exprs(  //dir=expr
+  unique int id: @string_literal_expr,
+  string value: string ref
+);
+
+float_literal_exprs(  //dir=expr
+  unique int id: @float_literal_expr,
+  string string_value: string ref
+);
+
+integer_literal_exprs(  //dir=expr
+  unique int id: @integer_literal_expr,
+  string string_value: string ref
+);
+
+@pattern =
+  @any_pattern
+| @binding_pattern
+| @bool_pattern
+| @enum_element_pattern
+| @expr_pattern
+| @is_pattern
+| @named_pattern
+| @optional_some_pattern
+| @paren_pattern
+| @tuple_pattern
+| @typed_pattern
+;
+
+any_patterns(  //dir=pattern
+  unique int id: @any_pattern
+);
+
+binding_patterns(  //dir=pattern
+  unique int id: @binding_pattern,
+  int sub_pattern: @pattern_or_none ref
+);
+
+bool_patterns(  //dir=pattern
+  unique int id: @bool_pattern,
+  boolean value: boolean ref
+);
+
+enum_element_patterns(  //dir=pattern
+  unique int id: @enum_element_pattern,
+  int element: @enum_element_decl_or_none ref
+);
+
+#keyset[id]
+enum_element_pattern_sub_patterns(  //dir=pattern
+  int id: @enum_element_pattern ref,
+  int sub_pattern: @pattern_or_none ref
+);
+
+expr_patterns(  //dir=pattern
+  unique int id: @expr_pattern,
+  int sub_expr: @expr_or_none ref
+);
+
+is_patterns(  //dir=pattern
+  unique int id: @is_pattern
+);
+
+#keyset[id]
+is_pattern_cast_type_reprs(  //dir=pattern
+  int id: @is_pattern ref,
+  int cast_type_repr: @type_repr_or_none ref
+);
+
+#keyset[id]
+is_pattern_sub_patterns(  //dir=pattern
+  int id: @is_pattern ref,
+  int sub_pattern: @pattern_or_none ref
+);
+
+named_patterns(  //dir=pattern
+  unique int id: @named_pattern,
+  string name: string ref
+);
+
+optional_some_patterns(  //dir=pattern
+  unique int id: @optional_some_pattern,
+  int sub_pattern: @pattern_or_none ref
+);
+
+paren_patterns(  //dir=pattern
+  unique int id: @paren_pattern,
+  int sub_pattern: @pattern_or_none ref
+);
+
+tuple_patterns(  //dir=pattern
+  unique int id: @tuple_pattern
+);
+
+#keyset[id, index]
+tuple_pattern_elements(  //dir=pattern
+  int id: @tuple_pattern ref,
+  int index: int ref,
+  int element: @pattern_or_none ref
+);
+
+typed_patterns(  //dir=pattern
+  unique int id: @typed_pattern,
+  int sub_pattern: @pattern_or_none ref
+);
+
+#keyset[id]
+typed_pattern_type_reprs(  //dir=pattern
+  int id: @typed_pattern ref,
+  int type_repr: @type_repr_or_none ref
+);
+
+case_label_items(  //dir=stmt
+  unique int id: @case_label_item,
+  int pattern: @pattern_or_none ref
+);
+
+#keyset[id]
+case_label_item_guards(  //dir=stmt
+  int id: @case_label_item ref,
+  int guard: @expr_or_none ref
+);
+
+condition_elements(  //dir=stmt
+  unique int id: @condition_element
+);
+
+#keyset[id]
+condition_element_booleans(  //dir=stmt
+  int id: @condition_element ref,
+  int boolean_: @expr_or_none ref
+);
+
+#keyset[id]
+condition_element_patterns(  //dir=stmt
+  int id: @condition_element ref,
+  int pattern: @pattern_or_none ref
+);
+
+#keyset[id]
+condition_element_initializers(  //dir=stmt
+  int id: @condition_element ref,
+  int initializer: @expr_or_none ref
+);
+
+@stmt =
+  @brace_stmt
+| @break_stmt
+| @case_stmt
+| @continue_stmt
+| @defer_stmt
+| @fail_stmt
+| @fallthrough_stmt
+| @labeled_stmt
+| @pound_assert_stmt
+| @return_stmt
+| @throw_stmt
+| @yield_stmt
+;
+
+stmt_conditions(  //dir=stmt
+  unique int id: @stmt_condition
+);
+
+#keyset[id, index]
+stmt_condition_elements(  //dir=stmt
+  int id: @stmt_condition ref,
+  int index: int ref,
+  int element: @condition_element_or_none ref
+);
+
+brace_stmts(  //dir=stmt
+  unique int id: @brace_stmt
+);
+
+#keyset[id, index]
+brace_stmt_elements(  //dir=stmt
+  int id: @brace_stmt ref,
+  int index: int ref,
+  int element: @ast_node_or_none ref
+);
+
+break_stmts(  //dir=stmt
+  unique int id: @break_stmt
+);
+
+#keyset[id]
+break_stmt_target_names(  //dir=stmt
+  int id: @break_stmt ref,
+  string target_name: string ref
+);
+
+#keyset[id]
+break_stmt_targets(  //dir=stmt
+  int id: @break_stmt ref,
+  int target: @stmt_or_none ref
+);
+
+case_stmts(  //dir=stmt
+  unique int id: @case_stmt,
+  int body: @stmt_or_none ref
+);
+
+#keyset[id, index]
+case_stmt_labels(  //dir=stmt
+  int id: @case_stmt ref,
+  int index: int ref,
+  int label: @case_label_item_or_none ref
+);
+
+#keyset[id, index]
+case_stmt_variables(  //dir=stmt
+  int id: @case_stmt ref,
+  int index: int ref,
+  int variable: @var_decl_or_none ref
+);
+
+continue_stmts(  //dir=stmt
+  unique int id: @continue_stmt
+);
+
+#keyset[id]
+continue_stmt_target_names(  //dir=stmt
+  int id: @continue_stmt ref,
+  string target_name: string ref
+);
+
+#keyset[id]
+continue_stmt_targets(  //dir=stmt
+  int id: @continue_stmt ref,
+  int target: @stmt_or_none ref
+);
+
+defer_stmts(  //dir=stmt
+  unique int id: @defer_stmt,
+  int body: @brace_stmt_or_none ref
+);
+
+fail_stmts(  //dir=stmt
+  unique int id: @fail_stmt
+);
+
+fallthrough_stmts(  //dir=stmt
+  unique int id: @fallthrough_stmt,
+  int fallthrough_source: @case_stmt_or_none ref,
+  int fallthrough_dest: @case_stmt_or_none ref
+);
+
+@labeled_stmt =
+  @do_catch_stmt
+| @do_stmt
+| @for_each_stmt
+| @labeled_conditional_stmt
+| @repeat_while_stmt
+| @switch_stmt
+;
+
+#keyset[id]
+labeled_stmt_labels(  //dir=stmt
+  int id: @labeled_stmt ref,
+  string label: string ref
+);
+
+pound_assert_stmts(  //dir=stmt
+  unique int id: @pound_assert_stmt,
+  int condition: @expr_or_none ref,
+  string message: string ref
+);
+
+return_stmts(  //dir=stmt
+  unique int id: @return_stmt
+);
+
+#keyset[id]
+return_stmt_results(  //dir=stmt
+  int id: @return_stmt ref,
+  int result: @expr_or_none ref
+);
+
+throw_stmts(  //dir=stmt
+  unique int id: @throw_stmt,
+  int sub_expr: @expr_or_none ref
+);
+
+yield_stmts(  //dir=stmt
+  unique int id: @yield_stmt
+);
+
+#keyset[id, index]
+yield_stmt_results(  //dir=stmt
+  int id: @yield_stmt ref,
+  int index: int ref,
+  int result: @expr_or_none ref
+);
+
+do_catch_stmts(  //dir=stmt
+  unique int id: @do_catch_stmt,
+  int body: @stmt_or_none ref
+);
+
+#keyset[id, index]
+do_catch_stmt_catches(  //dir=stmt
+  int id: @do_catch_stmt ref,
+  int index: int ref,
+  int catch: @case_stmt_or_none ref
+);
+
+do_stmts(  //dir=stmt
+  unique int id: @do_stmt,
+  int body: @brace_stmt_or_none ref
+);
+
+for_each_stmts(  //dir=stmt
+  unique int id: @for_each_stmt,
+  int pattern: @pattern_or_none ref,
+  int sequence: @expr_or_none ref,
+  int body: @brace_stmt_or_none ref
+);
+
+#keyset[id]
+for_each_stmt_wheres(  //dir=stmt
+  int id: @for_each_stmt ref,
+  int where: @expr_or_none ref
+);
+
+@labeled_conditional_stmt =
+  @guard_stmt
+| @if_stmt
+| @while_stmt
+;
+
+#keyset[id]
+labeled_conditional_stmts(  //dir=stmt
+  int id: @labeled_conditional_stmt ref,
+  int condition: @stmt_condition_or_none ref
+);
+
+repeat_while_stmts(  //dir=stmt
+  unique int id: @repeat_while_stmt,
+  int condition: @expr_or_none ref,
+  int body: @stmt_or_none ref
+);
+
+switch_stmts(  //dir=stmt
+  unique int id: @switch_stmt,
+  int expr: @expr_or_none ref
+);
+
+#keyset[id, index]
+switch_stmt_cases(  //dir=stmt
+  int id: @switch_stmt ref,
+  int index: int ref,
+  int case_: @case_stmt_or_none ref
+);
+
+guard_stmts(  //dir=stmt
+  unique int id: @guard_stmt,
+  int body: @brace_stmt_or_none ref
+);
+
+if_stmts(  //dir=stmt
+  unique int id: @if_stmt,
+  int then: @stmt_or_none ref
+);
+
+#keyset[id]
+if_stmt_elses(  //dir=stmt
+  int id: @if_stmt ref,
+  int else: @stmt_or_none ref
+);
+
+while_stmts(  //dir=stmt
+  unique int id: @while_stmt,
+  int body: @stmt_or_none ref
+);
+
+@type =
+  @any_function_type
+| @any_generic_type
+| @any_metatype_type
+| @builtin_type
+| @dependent_member_type
+| @dynamic_self_type
+| @error_type
+| @existential_type
+| @in_out_type
+| @l_value_type
+| @module_type
+| @parameterized_protocol_type
+| @protocol_composition_type
+| @reference_storage_type
+| @substitutable_type
+| @sugar_type
+| @tuple_type
+| @unresolved_type
+;
+
+#keyset[id]
+types(  //dir=type
+  int id: @type ref,
+  string name: string ref,
+  int canonical_type: @type_or_none ref
+);
+
+type_reprs(  //dir=type
+  unique int id: @type_repr,
+  int type_: @type_or_none ref
+);
+
+@any_function_type =
+  @function_type
+| @generic_function_type
+;
+
+#keyset[id]
+any_function_types(  //dir=type
+  int id: @any_function_type ref,
+  int result: @type_or_none ref
+);
+
+#keyset[id, index]
+any_function_type_param_types(  //dir=type
+  int id: @any_function_type ref,
+  int index: int ref,
+  int param_type: @type_or_none ref
+);
+
+#keyset[id, index]
+any_function_type_param_labels(  //dir=type
+  int id: @any_function_type ref,
+  int index: int ref,
+  string param_label: string ref
+);
+
+#keyset[id]
+any_function_type_is_throwing(  //dir=type
+  int id: @any_function_type ref
+);
+
+#keyset[id]
+any_function_type_is_async(  //dir=type
+  int id: @any_function_type ref
+);
+
+@any_generic_type =
+  @nominal_or_bound_generic_nominal_type
+| @unbound_generic_type
+;
+
+#keyset[id]
+any_generic_types(  //dir=type
+  int id: @any_generic_type ref,
+  int declaration: @decl_or_none ref
+);
+
+#keyset[id]
+any_generic_type_parents(  //dir=type
+  int id: @any_generic_type ref,
+  int parent: @type_or_none ref
+);
+
+@any_metatype_type =
+  @existential_metatype_type
+| @metatype_type
+;
+
+@builtin_type =
+  @any_builtin_integer_type
+| @builtin_bridge_object_type
+| @builtin_default_actor_storage_type
+| @builtin_executor_type
+| @builtin_float_type
+| @builtin_job_type
+| @builtin_native_object_type
+| @builtin_raw_pointer_type
+| @builtin_raw_unsafe_continuation_type
+| @builtin_unsafe_value_buffer_type
+| @builtin_vector_type
+;
+
+dependent_member_types(  //dir=type
+  unique int id: @dependent_member_type,
+  int base_type: @type_or_none ref,
+  int associated_type_decl: @associated_type_decl_or_none ref
+);
+
+dynamic_self_types(  //dir=type
+  unique int id: @dynamic_self_type,
+  int static_self_type: @type_or_none ref
+);
+
+error_types(  //dir=type
+  unique int id: @error_type
+);
+
+existential_types(  //dir=type
+  unique int id: @existential_type,
+  int constraint: @type_or_none ref
+);
+
+in_out_types(  //dir=type
+  unique int id: @in_out_type,
+  int object_type: @type_or_none ref
+);
+
+l_value_types(  //dir=type
+  unique int id: @l_value_type,
+  int object_type: @type_or_none ref
+);
+
+module_types(  //dir=type
+  unique int id: @module_type,
+  int module: @module_decl_or_none ref
+);
+
+parameterized_protocol_types(  //dir=type
+  unique int id: @parameterized_protocol_type,
+  int base: @protocol_type_or_none ref
+);
+
+#keyset[id, index]
+parameterized_protocol_type_args(  //dir=type
+  int id: @parameterized_protocol_type ref,
+  int index: int ref,
+  int arg: @type_or_none ref
+);
+
+protocol_composition_types(  //dir=type
+  unique int id: @protocol_composition_type
+);
+
+#keyset[id, index]
+protocol_composition_type_members(  //dir=type
+  int id: @protocol_composition_type ref,
+  int index: int ref,
+  int member: @type_or_none ref
+);
+
+@reference_storage_type =
+  @unmanaged_storage_type
+| @unowned_storage_type
+| @weak_storage_type
+;
+
+#keyset[id]
+reference_storage_types(  //dir=type
+  int id: @reference_storage_type ref,
+  int referent_type: @type_or_none ref
+);
+
+@substitutable_type =
+  @archetype_type
+| @generic_type_param_type
+;
+
+@sugar_type =
+  @paren_type
+| @syntax_sugar_type
+| @type_alias_type
+;
+
+tuple_types(  //dir=type
+  unique int id: @tuple_type
+);
+
+#keyset[id, index]
+tuple_type_types(  //dir=type
+  int id: @tuple_type ref,
+  int index: int ref,
+  int type_: @type_or_none ref
+);
+
+#keyset[id, index]
+tuple_type_names(  //dir=type
+  int id: @tuple_type ref,
+  int index: int ref,
+  string name: string ref
+);
+
+unresolved_types(  //dir=type
+  unique int id: @unresolved_type
+);
+
+@any_builtin_integer_type =
+  @builtin_integer_literal_type
+| @builtin_integer_type
+;
+
+@archetype_type =
+  @opaque_type_archetype_type
+| @opened_archetype_type
+| @primary_archetype_type
+;
+
+#keyset[id]
+archetype_types(  //dir=type
+  int id: @archetype_type ref,
+  int interface_type: @type_or_none ref
+);
+
+#keyset[id]
+archetype_type_superclasses(  //dir=type
+  int id: @archetype_type ref,
+  int superclass: @type_or_none ref
+);
+
+#keyset[id, index]
+archetype_type_protocols(  //dir=type
+  int id: @archetype_type ref,
+  int index: int ref,
+  int protocol: @protocol_decl_or_none ref
+);
+
+builtin_bridge_object_types(  //dir=type
+  unique int id: @builtin_bridge_object_type
+);
+
+builtin_default_actor_storage_types(  //dir=type
+  unique int id: @builtin_default_actor_storage_type
+);
+
+builtin_executor_types(  //dir=type
+  unique int id: @builtin_executor_type
+);
+
+builtin_float_types(  //dir=type
+  unique int id: @builtin_float_type
+);
+
+builtin_job_types(  //dir=type
+  unique int id: @builtin_job_type
+);
+
+builtin_native_object_types(  //dir=type
+  unique int id: @builtin_native_object_type
+);
+
+builtin_raw_pointer_types(  //dir=type
+  unique int id: @builtin_raw_pointer_type
+);
+
+builtin_raw_unsafe_continuation_types(  //dir=type
+  unique int id: @builtin_raw_unsafe_continuation_type
+);
+
+builtin_unsafe_value_buffer_types(  //dir=type
+  unique int id: @builtin_unsafe_value_buffer_type
+);
+
+builtin_vector_types(  //dir=type
+  unique int id: @builtin_vector_type
+);
+
+existential_metatype_types(  //dir=type
+  unique int id: @existential_metatype_type
+);
+
+function_types(  //dir=type
+  unique int id: @function_type
+);
+
+generic_function_types(  //dir=type
+  unique int id: @generic_function_type
+);
+
+#keyset[id, index]
+generic_function_type_generic_params(  //dir=type
+  int id: @generic_function_type ref,
+  int index: int ref,
+  int generic_param: @generic_type_param_type_or_none ref
+);
+
+generic_type_param_types(  //dir=type
+  unique int id: @generic_type_param_type
+);
+
+metatype_types(  //dir=type
+  unique int id: @metatype_type
+);
+
+@nominal_or_bound_generic_nominal_type =
+  @bound_generic_type
+| @nominal_type
+;
+
+paren_types(  //dir=type
+  unique int id: @paren_type,
+  int type_: @type_or_none ref
+);
+
+@syntax_sugar_type =
+  @dictionary_type
+| @unary_syntax_sugar_type
+;
+
+type_alias_types(  //dir=type
+  unique int id: @type_alias_type,
+  int decl: @type_alias_decl_or_none ref
+);
+
+unbound_generic_types(  //dir=type
+  unique int id: @unbound_generic_type
+);
+
+unmanaged_storage_types(  //dir=type
+  unique int id: @unmanaged_storage_type
+);
+
+unowned_storage_types(  //dir=type
+  unique int id: @unowned_storage_type
+);
+
+weak_storage_types(  //dir=type
+  unique int id: @weak_storage_type
+);
+
+@bound_generic_type =
+  @bound_generic_class_type
+| @bound_generic_enum_type
+| @bound_generic_struct_type
+;
+
+#keyset[id, index]
+bound_generic_type_arg_types(  //dir=type
+  int id: @bound_generic_type ref,
+  int index: int ref,
+  int arg_type: @type_or_none ref
+);
+
+builtin_integer_literal_types(  //dir=type
+  unique int id: @builtin_integer_literal_type
+);
+
+builtin_integer_types(  //dir=type
+  unique int id: @builtin_integer_type
+);
+
+#keyset[id]
+builtin_integer_type_widths(  //dir=type
+  int id: @builtin_integer_type ref,
+  int width: int ref
+);
+
+dictionary_types(  //dir=type
+  unique int id: @dictionary_type,
+  int key_type: @type_or_none ref,
+  int value_type: @type_or_none ref
+);
+
+@nominal_type =
+  @class_type
+| @enum_type
+| @protocol_type
+| @struct_type
+;
+
+opaque_type_archetype_types(  //dir=type
+  unique int id: @opaque_type_archetype_type,
+  int declaration: @opaque_type_decl_or_none ref
+);
+
+opened_archetype_types(  //dir=type
+  unique int id: @opened_archetype_type
+);
+
+primary_archetype_types(  //dir=type
+  unique int id: @primary_archetype_type
+);
+
+@unary_syntax_sugar_type =
+  @array_slice_type
+| @optional_type
+| @variadic_sequence_type
+;
+
+#keyset[id]
+unary_syntax_sugar_types(  //dir=type
+  int id: @unary_syntax_sugar_type ref,
+  int base_type: @type_or_none ref
+);
+
+array_slice_types(  //dir=type
+  unique int id: @array_slice_type
+);
+
+bound_generic_class_types(  //dir=type
+  unique int id: @bound_generic_class_type
+);
+
+bound_generic_enum_types(  //dir=type
+  unique int id: @bound_generic_enum_type
+);
+
+bound_generic_struct_types(  //dir=type
+  unique int id: @bound_generic_struct_type
+);
+
+class_types(  //dir=type
+  unique int id: @class_type
+);
+
+enum_types(  //dir=type
+  unique int id: @enum_type
+);
+
+optional_types(  //dir=type
+  unique int id: @optional_type
+);
+
+protocol_types(  //dir=type
+  unique int id: @protocol_type
+);
+
+struct_types(  //dir=type
+  unique int id: @struct_type
+);
+
+variadic_sequence_types(  //dir=type
+  unique int id: @variadic_sequence_type
+);
+
+@abstract_function_decl_or_none =
+  @abstract_function_decl
+| @unspecified_element
+;
+
+@accessor_decl_or_none =
+  @accessor_decl
+| @unspecified_element
+;
+
+@argument_or_none =
+  @argument
+| @unspecified_element
+;
+
+@associated_type_decl_or_none =
+  @associated_type_decl
+| @unspecified_element
+;
+
+@ast_node_or_none =
+  @ast_node
+| @unspecified_element
+;
+
+@brace_stmt_or_none =
+  @brace_stmt
+| @unspecified_element
+;
+
+@case_label_item_or_none =
+  @case_label_item
+| @unspecified_element
+;
+
+@case_stmt_or_none =
+  @case_stmt
+| @unspecified_element
+;
+
+@closure_expr_or_none =
+  @closure_expr
+| @unspecified_element
+;
+
+@condition_element_or_none =
+  @condition_element
+| @unspecified_element
+;
+
+@constructor_decl_or_none =
+  @constructor_decl
+| @unspecified_element
+;
+
+@decl_or_none =
+  @decl
+| @unspecified_element
+;
+
+@enum_element_decl_or_none =
+  @enum_element_decl
+| @unspecified_element
+;
+
+@expr_or_none =
+  @expr
+| @unspecified_element
+;
+
+@file_or_none =
+  @file
+| @unspecified_element
+;
+
+@generic_type_param_decl_or_none =
+  @generic_type_param_decl
+| @unspecified_element
+;
+
+@generic_type_param_type_or_none =
+  @generic_type_param_type
+| @unspecified_element
+;
+
+@location_or_none =
+  @location
+| @unspecified_element
+;
+
+@module_decl_or_none =
+  @module_decl
+| @unspecified_element
+;
+
+@nominal_type_decl_or_none =
+  @nominal_type_decl
+| @unspecified_element
+;
+
+@opaque_type_decl_or_none =
+  @opaque_type_decl
+| @unspecified_element
+;
+
+@opaque_value_expr_or_none =
+  @opaque_value_expr
+| @unspecified_element
+;
+
+@param_decl_or_none =
+  @param_decl
+| @unspecified_element
+;
+
+@pattern_or_none =
+  @pattern
+| @unspecified_element
+;
+
+@pattern_binding_decl_or_none =
+  @pattern_binding_decl
+| @unspecified_element
+;
+
+@precedence_group_decl_or_none =
+  @precedence_group_decl
+| @unspecified_element
+;
+
+@protocol_decl_or_none =
+  @protocol_decl
+| @unspecified_element
+;
+
+@protocol_type_or_none =
+  @protocol_type
+| @unspecified_element
+;
+
+@stmt_or_none =
+  @stmt
+| @unspecified_element
+;
+
+@stmt_condition_or_none =
+  @stmt_condition
+| @unspecified_element
+;
+
+@string_literal_expr_or_none =
+  @string_literal_expr
+| @unspecified_element
+;
+
+@tap_expr_or_none =
+  @tap_expr
+| @unspecified_element
+;
+
+@type_or_none =
+  @type
+| @unspecified_element
+;
+
+@type_alias_decl_or_none =
+  @type_alias_decl
+| @unspecified_element
+;
+
+@type_repr_or_none =
+  @type_repr
+| @unspecified_element
+;
+
+@value_decl_or_none =
+  @unspecified_element
+| @value_decl
+;
+
+@var_decl_or_none =
+  @unspecified_element
+| @var_decl
+;
diff --git a/swift/ql/lib/upgrades/1a6e9325bd60462e669e524438174deef4476df0/upgrade.properties b/swift/ql/lib/upgrades/1a6e9325bd60462e669e524438174deef4476df0/upgrade.properties
new file mode 100644
index 00000000000..e5bd2c32e33
--- /dev/null
+++ b/swift/ql/lib/upgrades/1a6e9325bd60462e669e524438174deef4476df0/upgrade.properties
@@ -0,0 +1,2 @@
+description: Added new implicit conversion
+compatibility: full

From 4e7e70f9815deaf0c0bb6d6117bd5249a18f85f1 Mon Sep 17 00:00:00 2001
From: intrigus-lgtm <60750685+intrigus-lgtm@users.noreply.github.com>
Date: Wed, 30 Nov 2022 13:12:06 +0100
Subject: [PATCH 0874/1420] Docs: Add missing `language[monotonicAggregates]`
 annotation

This adds the `language[monotonicAggregates]` annotation so that the example compiles.
---
 docs/codeql/ql-language-reference/expressions.rst | 1 +
 1 file changed, 1 insertion(+)

diff --git a/docs/codeql/ql-language-reference/expressions.rst b/docs/codeql/ql-language-reference/expressions.rst
index fdb0d6cd35a..29771fde93d 100644
--- a/docs/codeql/ql-language-reference/expressions.rst
+++ b/docs/codeql/ql-language-reference/expressions.rst
@@ -602,6 +602,7 @@ the distance of a node in a graph from the leaves as follows:
 
 .. code-block:: ql
 
+   language[monotonicAggregates]
    int depth(Node n) {
      if not exists(n.getAChild())
      then result = 0

From e222807693581d1047ab8ce06b9032c716aeafdb Mon Sep 17 00:00:00 2001
From: Tony Torralba <atorralba@users.noreply.github.com>
Date: Wed, 30 Nov 2022 13:25:17 +0100
Subject: [PATCH 0875/1420] Remove dubious sinks

---
 .../codeql/swift/security/PathInjection.qll   |  12 --
 .../Security/CWE-022/testPathInjection.swift  | 136 +++++++-----------
 2 files changed, 55 insertions(+), 93 deletions(-)

diff --git a/swift/ql/lib/codeql/swift/security/PathInjection.qll b/swift/ql/lib/codeql/swift/security/PathInjection.qll
index 3ed59f55dac..1e0d106b4e1 100644
--- a/swift/ql/lib/codeql/swift/security/PathInjection.qll
+++ b/swift/ql/lib/codeql/swift/security/PathInjection.qll
@@ -90,25 +90,13 @@ private class PathInjectionSinks extends SinkModelCsv {
         ";FileManager;true;destinationOfSymbolicLink(atPath:);;;Argument[0];path-injection",
         ";FileManager;true;fileExists(atPath:);;;Argument[0];path-injection",
         ";FileManager;true;fileExists(atPath:isDirectory:);;;Argument[0];path-injection",
-        ";FileManager;true;isReadableFile(atPath:);;;Argument[0];path-injection",
-        ";FileManager;true;isWritableFile(atPath:);;;Argument[0];path-injection",
-        ";FileManager;true;isDeletableFile(atPath:);;;Argument[0];path-injection",
-        ";FileManager;true;componentsToDisplay(forPath:);;;Argument[0];path-injection",
-        ";FileManager;true;displayName(atPath:);;;Argument[0];path-injection",
-        ";FileManager;true;attributesOfItem(atPath:);;;Argument[0];path-injection",
-        ";FileManager;true;attributesOfFileSystem(forPath:);;;Argument[0];path-injection",
         ";FileManager;true;setAttributes(_:ofItemAtPath:);;;Argument[1];path-injection",
         ";FileManager;true;contents(atPath:);;;Argument[0];path-injection",
         ";FileManager;true;contentsEqual(atPath:andPath:);;;Argument[0..1];path-injection",
-        ";FileManager;true;getRelationship(_:ofDirectoryAt:toItemAt:);;;Argument[1..2];path-injection",
-        ";FileManager;true;getRelationship(_:of:in:toItemAt:);;;Argument[3];path-injection",
         ";FileManager;true;changeCurrentDirectoryPath(_:);;;Argument[0];path-injection",
         ";FileManager;true;unmountVolume(at:options:completionHandler:);;;Argument[0];path-injection",
-        ";FileManager;true;NSHFSTypeOfFile(_:);;;Argument[0];path-injection",
         // Deprecated FileManager methods:
         ";FileManager;true;changeFileAttributes(_:atPath:);;;Argument[1];path-injection",
-        ";FileManager;true;fileAttributes(atPath:traverseLink:);;;Argument[0];path-injection",
-        ";FileManager;true;fileSystemAttributes(atPath:);;;Argument[0];path-injection",
         ";FileManager;true;directoryContents(atPath:);;;Argument[0];path-injection",
         ";FileManager;true;createDirectory(atPath:attributes:);;;Argument[0];path-injection",
         ";FileManager;true;createSymbolicLink(atPath:pathContent:);;;Argument[0..1];path-injection",
diff --git a/swift/ql/test/query-tests/Security/CWE-022/testPathInjection.swift b/swift/ql/test/query-tests/Security/CWE-022/testPathInjection.swift
index 10cf6e73e92..8e97433811a 100644
--- a/swift/ql/test/query-tests/Security/CWE-022/testPathInjection.swift
+++ b/swift/ql/test/query-tests/Security/CWE-022/testPathInjection.swift
@@ -77,26 +77,13 @@ class FileManager {
     func destinationOfSymbolicLink(atPath: String) -> String { return "" }
     func fileExists(atPath: String) -> Bool { return false }
     func fileExists(atPath: String, isDirectory: UnsafeMutablePointer<ObjCBool>?) -> Bool { return false }
-    func isReadableFile(atPath: String) -> Bool { return false }
-    func isWritableFile(atPath: String) -> Bool { return false }
-    func isExecutableFile(atPath: String) -> Bool { return false }
-    func isDeletableFile(atPath: String) -> Bool { return false }
-    func componentsToDisplay(forPath: String) -> [String]? { return nil }
-    func displayName(atPath: String) -> String { return "" }
-    func attributesOfItem(atPath: String) -> [FileAttributeKey : Any] { return [:] }
-    func attributesOfFileSystem(forPath: String) -> [FileAttributeKey : Any] { return [:] }
     func setAttributes(_: [FileAttributeKey : Any], ofItemAtPath: String) {}
     func contents(atPath: String) -> Data? { return nil }
     func contentsEqual(atPath: String, andPath: String) -> Bool { return false }
-    func getRelationship(_: UnsafeMutablePointer<FileManager.URLRelationship>, ofDirectoryAt: URL, toItemAt: URL) {}
-    func getRelationship(_: UnsafeMutablePointer<FileManager.URLRelationship>, of: FileManager.SearchPathDirectory, in: FileManager.SearchPathDomainMask, toItemAt: URL) {}
     func changeCurrentDirectoryPath(_: String) -> Bool { return false }
     func unmountVolume(at: URL, options: FileManager.UnmountOptions, completionHandler: (Error?) -> Void) {}
-    func NSHFSTypeOfFile(_: String!) -> String! { return "" }
     // Deprecated methods
     func changeFileAttributes(_: [AnyHashable : Any], atPath: String) -> Bool { return false }
-    func fileAttributes(atPath: String, traverseLink: Bool) -> [AnyHashable : Any]? { return nil }
-    func fileSystemAttributes(atPath: String) -> [AnyHashable : Any]? { return nil }
     func directoryContents(atPath: String) -> [Any]? { return nil }
     func createDirectory(atPath: String, attributes: [AnyHashable : Any]) -> Bool { return false }
     func createSymbolicLink(atPath: String, pathContent: String) -> Bool { return false }
@@ -113,78 +100,65 @@ func test() {
     let safeUrl =  URL(string: "")!
     let safeNsUrl = NSURL(string: "")!
 
-    Data("").write(to: remoteUrl, options: []) // $ hasPathInjection=110
+    Data("").write(to: remoteUrl, options: []) // $ hasPathInjection=97
 
     let nsData = NSData()
-    let _ = nsData.write(to: remoteUrl, atomically: false) // $ hasPathInjection=110
-    nsData.write(to: remoteUrl, options: []) // $ hasPathInjection=110
-    let _ = nsData.write(toFile: remoteString, atomically: false) // $ hasPathInjection=110
-    nsData.write(toFile: remoteString, options: []) // $ hasPathInjection=110
+    let _ = nsData.write(to: remoteUrl, atomically: false) // $ hasPathInjection=97
+    nsData.write(to: remoteUrl, options: []) // $ hasPathInjection=97
+    let _ = nsData.write(toFile: remoteString, atomically: false) // $ hasPathInjection=97
+    nsData.write(toFile: remoteString, options: []) // $ hasPathInjection=97
 
     let fm = FileManager()
-    let _ = fm.contentsOfDirectory(at: remoteUrl, includingPropertiesForKeys: [], options: []) // $ hasPathInjection=110
-    let _ = fm.contentsOfDirectory(atPath: remoteString) // $ hasPathInjection=110
-    let _ = fm.enumerator(at: remoteUrl, includingPropertiesForKeys: [], options: [], errorHandler: nil) // $ hasPathInjection=110
-    let _ = fm.enumerator(atPath: remoteString) // $ hasPathInjection=110
-    let _ = fm.subpathsOfDirectory(atPath: remoteString) // $ hasPathInjection=110
-    let _ = fm.subpaths(atPath: remoteString) // $ hasPathInjection=110
-    fm.createDirectory(at: remoteUrl, withIntermediateDirectories: false, attributes: [:]) // $ hasPathInjection=110
-    let _ = fm.createDirectory(atPath: remoteString, attributes: [:]) // $ hasPathInjection=110
-    let _ = fm.createFile(atPath: remoteString, contents: nil, attributes: [:]) // $ hasPathInjection=110
-    fm.removeItem(at: remoteUrl) // $ hasPathInjection=110
-    fm.removeItem(atPath: remoteString) // $ hasPathInjection=110
-    fm.trashItem(at: remoteUrl, resultingItemURL: AutoreleasingUnsafeMutablePointer<NSURL?>()) // $ hasPathInjection=110
-    let _ = fm.replaceItemAt(remoteUrl, withItemAt: safeUrl, backupItemName: nil, options: []) // $ hasPathInjection=110
-    let _ = fm.replaceItemAt(safeUrl, withItemAt: remoteUrl, backupItemName: nil, options: []) // $ hasPathInjection=110
-    fm.replaceItem(at: remoteUrl, withItemAt: safeUrl, backupItemName: nil, options: [], resultingItemURL: AutoreleasingUnsafeMutablePointer<NSURL?>()) // $ hasPathInjection=110
-    fm.replaceItem(at: safeUrl, withItemAt: remoteUrl, backupItemName: nil, options: [], resultingItemURL: AutoreleasingUnsafeMutablePointer<NSURL?>()) // $ hasPathInjection=110
-    fm.copyItem(at: remoteUrl, to: safeUrl) // $ hasPathInjection=110
-    fm.copyItem(at: safeUrl, to: remoteUrl) // $ hasPathInjection=110
-    fm.copyItem(atPath: remoteString, toPath: "") // $ hasPathInjection=110
-    fm.copyItem(atPath: "", toPath: remoteString) // $ hasPathInjection=110
-    fm.moveItem(at: remoteUrl, to: safeUrl) // $ hasPathInjection=110
-    fm.moveItem(at: safeUrl, to: remoteUrl) // $ hasPathInjection=110
-    fm.moveItem(atPath: remoteString, toPath: "") // $ hasPathInjection=110
-    fm.moveItem(atPath: "", toPath: remoteString) // $ hasPathInjection=110
-    fm.createSymbolicLink(at: remoteUrl, withDestinationURL: safeUrl) // $ hasPathInjection=110
-    fm.createSymbolicLink(at: safeUrl, withDestinationURL: remoteUrl) // $ hasPathInjection=110
-    fm.createSymbolicLink(atPath: remoteString, withDestinationPath: "") // $ hasPathInjection=110
-    fm.createSymbolicLink(atPath: "", withDestinationPath: remoteString) // $ hasPathInjection=110
-    fm.linkItem(at: remoteUrl, to: safeUrl) // $ hasPathInjection=110
-    fm.linkItem(at: safeUrl, to: remoteUrl) // $ hasPathInjection=110
-    fm.linkItem(atPath: remoteString, toPath: "") // $ hasPathInjection=110
-    fm.linkItem(atPath: "", toPath: remoteString) // $ hasPathInjection=110
-    let _ = fm.destinationOfSymbolicLink(atPath: remoteString) // $ hasPathInjection=110
-    let _ = fm.fileExists(atPath: remoteString) // $ hasPathInjection=110
-    let _ = fm.fileExists(atPath: remoteString, isDirectory: UnsafeMutablePointer<ObjCBool>.init(bitPattern: 0)) // $ hasPathInjection=110
-    let _ = fm.isReadableFile(atPath: remoteString) // $ hasPathInjection=110
-    let _ = fm.isWritableFile(atPath: remoteString) // $ hasPathInjection=110
-    let _ = fm.isDeletableFile(atPath: remoteString) // $ hasPathInjection=110
-    let _ = fm.componentsToDisplay(forPath: remoteString) // $ hasPathInjection=110
-    let _ = fm.displayName(atPath: remoteString) // $ hasPathInjection=110
-    let _ = fm.attributesOfItem(atPath: remoteString) // $ hasPathInjection=110
-    let _ = fm.attributesOfFileSystem(forPath: remoteString) // $ hasPathInjection=110
-    fm.setAttributes([:], ofItemAtPath: remoteString) // $ hasPathInjection=110
-    let _ = fm.contents(atPath: remoteString) // $ hasPathInjection=110
-    let _ = fm.contentsEqual(atPath: remoteString, andPath: "") // $ hasPathInjection=110
-    let _ = fm.contentsEqual(atPath: "", andPath: remoteString) // $ hasPathInjection=110
-    fm.getRelationship(UnsafeMutablePointer<FileManager.URLRelationship>.allocate(capacity: 0), ofDirectoryAt: remoteUrl, toItemAt: safeUrl) // $ hasPathInjection=110
-    fm.getRelationship(UnsafeMutablePointer<FileManager.URLRelationship>.allocate(capacity: 0), ofDirectoryAt: safeUrl, toItemAt: remoteUrl) // $ hasPathInjection=110
-    fm.getRelationship(UnsafeMutablePointer<FileManager.URLRelationship>.allocate(capacity: 0), of: FileManager.SearchPathDirectory.none, in: FileManager.SearchPathDomainMask(), toItemAt: remoteUrl) // $ hasPathInjection=110
-    let _ = fm.changeCurrentDirectoryPath(remoteString) // $ hasPathInjection=110
-    let _ = fm.unmountVolume(at: remoteUrl, options: [], completionHandler: { _ in }) // $ hasPathInjection=110
-    let _ = fm.NSHFSTypeOfFile(remoteString) // $ hasPathInjection=110
+    let _ = fm.contentsOfDirectory(at: remoteUrl, includingPropertiesForKeys: [], options: []) // $ hasPathInjection=97
+    let _ = fm.contentsOfDirectory(atPath: remoteString) // $ hasPathInjection=97
+    let _ = fm.enumerator(at: remoteUrl, includingPropertiesForKeys: [], options: [], errorHandler: nil) // $ hasPathInjection=97
+    let _ = fm.enumerator(atPath: remoteString) // $ hasPathInjection=97
+    let _ = fm.subpathsOfDirectory(atPath: remoteString) // $ hasPathInjection=97
+    let _ = fm.subpaths(atPath: remoteString) // $ hasPathInjection=97
+    fm.createDirectory(at: remoteUrl, withIntermediateDirectories: false, attributes: [:]) // $ hasPathInjection=97
+    let _ = fm.createDirectory(atPath: remoteString, attributes: [:]) // $ hasPathInjection=97
+    let _ = fm.createFile(atPath: remoteString, contents: nil, attributes: [:]) // $ hasPathInjection=97
+    fm.removeItem(at: remoteUrl) // $ hasPathInjection=97
+    fm.removeItem(atPath: remoteString) // $ hasPathInjection=97
+    fm.trashItem(at: remoteUrl, resultingItemURL: AutoreleasingUnsafeMutablePointer<NSURL?>()) // $ hasPathInjection=97
+    let _ = fm.replaceItemAt(remoteUrl, withItemAt: safeUrl, backupItemName: nil, options: []) // $ hasPathInjection=97
+    let _ = fm.replaceItemAt(safeUrl, withItemAt: remoteUrl, backupItemName: nil, options: []) // $ hasPathInjection=97
+    fm.replaceItem(at: remoteUrl, withItemAt: safeUrl, backupItemName: nil, options: [], resultingItemURL: AutoreleasingUnsafeMutablePointer<NSURL?>()) // $ hasPathInjection=97
+    fm.replaceItem(at: safeUrl, withItemAt: remoteUrl, backupItemName: nil, options: [], resultingItemURL: AutoreleasingUnsafeMutablePointer<NSURL?>()) // $ hasPathInjection=97
+    fm.copyItem(at: remoteUrl, to: safeUrl) // $ hasPathInjection=97
+    fm.copyItem(at: safeUrl, to: remoteUrl) // $ hasPathInjection=97
+    fm.copyItem(atPath: remoteString, toPath: "") // $ hasPathInjection=97
+    fm.copyItem(atPath: "", toPath: remoteString) // $ hasPathInjection=97
+    fm.moveItem(at: remoteUrl, to: safeUrl) // $ hasPathInjection=97
+    fm.moveItem(at: safeUrl, to: remoteUrl) // $ hasPathInjection=97
+    fm.moveItem(atPath: remoteString, toPath: "") // $ hasPathInjection=97
+    fm.moveItem(atPath: "", toPath: remoteString) // $ hasPathInjection=97
+    fm.createSymbolicLink(at: remoteUrl, withDestinationURL: safeUrl) // $ hasPathInjection=97
+    fm.createSymbolicLink(at: safeUrl, withDestinationURL: remoteUrl) // $ hasPathInjection=97
+    fm.createSymbolicLink(atPath: remoteString, withDestinationPath: "") // $ hasPathInjection=97
+    fm.createSymbolicLink(atPath: "", withDestinationPath: remoteString) // $ hasPathInjection=97
+    fm.linkItem(at: remoteUrl, to: safeUrl) // $ hasPathInjection=97
+    fm.linkItem(at: safeUrl, to: remoteUrl) // $ hasPathInjection=97
+    fm.linkItem(atPath: remoteString, toPath: "") // $ hasPathInjection=97
+    fm.linkItem(atPath: "", toPath: remoteString) // $ hasPathInjection=97
+    let _ = fm.destinationOfSymbolicLink(atPath: remoteString) // $ hasPathInjection=97
+    let _ = fm.fileExists(atPath: remoteString) // $ hasPathInjection=97
+    let _ = fm.fileExists(atPath: remoteString, isDirectory: UnsafeMutablePointer<ObjCBool>.init(bitPattern: 0)) // $ hasPathInjection=97
+    fm.setAttributes([:], ofItemAtPath: remoteString) // $ hasPathInjection=97
+    let _ = fm.contents(atPath: remoteString) // $ hasPathInjection=97
+    let _ = fm.contentsEqual(atPath: remoteString, andPath: "") // $ hasPathInjection=97
+    let _ = fm.contentsEqual(atPath: "", andPath: remoteString) // $ hasPathInjection=97
+    let _ = fm.changeCurrentDirectoryPath(remoteString) // $ hasPathInjection=97
+    let _ = fm.unmountVolume(at: remoteUrl, options: [], completionHandler: { _ in }) // $ hasPathInjection=97
     // Deprecated methods
-    let _ = fm.changeFileAttributes([:], atPath: remoteString) // $ hasPathInjection=110
-    let _ = fm.fileAttributes(atPath: remoteString, traverseLink: false) // $ hasPathInjection=110
-    let _ = fm.fileSystemAttributes(atPath: remoteString) // $ hasPathInjection=110
-    let _ = fm.directoryContents(atPath: remoteString) // $ hasPathInjection=110
-    let _ = fm.createDirectory(atPath: remoteString, attributes: [:]) // $ hasPathInjection=110
-    let _ = fm.createSymbolicLink(atPath: remoteString, pathContent: "") // $ hasPathInjection=110
-    let _ = fm.createSymbolicLink(atPath: "", pathContent: remoteString) // $ hasPathInjection=110
-    let _ = fm.pathContentOfSymbolicLink(atPath: remoteString) // $ hasPathInjection=110
-    let _ = fm.replaceItemAtURL(originalItemURL: remoteNsUrl, withItemAtURL: safeNsUrl, backupItemName: nil, options: []) // $ hasPathInjection=110
-    let _ = fm.replaceItemAtURL(originalItemURL: safeNsUrl, withItemAtURL: remoteNsUrl, backupItemName: nil, options: []) // $ hasPathInjection=110
+    let _ = fm.changeFileAttributes([:], atPath: remoteString) // $ hasPathInjection=97
+    let _ = fm.directoryContents(atPath: remoteString) // $ hasPathInjection=97
+    let _ = fm.createDirectory(atPath: remoteString, attributes: [:]) // $ hasPathInjection=97
+    let _ = fm.createSymbolicLink(atPath: remoteString, pathContent: "") // $ hasPathInjection=97
+    let _ = fm.createSymbolicLink(atPath: "", pathContent: remoteString) // $ hasPathInjection=97
+    let _ = fm.pathContentOfSymbolicLink(atPath: remoteString) // $ hasPathInjection=97
+    let _ = fm.replaceItemAtURL(originalItemURL: remoteNsUrl, withItemAtURL: safeNsUrl, backupItemName: nil, options: []) // $ hasPathInjection=97
+    let _ = fm.replaceItemAtURL(originalItemURL: safeNsUrl, withItemAtURL: remoteNsUrl, backupItemName: nil, options: []) // $ hasPathInjection=97
 }
 
 func testSanitizers() {
@@ -196,5 +170,5 @@ func testSanitizers() {
     if (filePath.lexicallyNormalized().starts(with: FilePath(stringLiteral: "/safe"))) {
         fm.contents(atPath: remoteString) // Safe
     }
-    fm.contents(atPath: remoteString) // $ hasPathInjection=191
+    fm.contents(atPath: remoteString) // $ hasPathInjection=165
 }

From 9eafee365ff4ca9659008f63f6954d6822feca50 Mon Sep 17 00:00:00 2001
From: Felicity Chapman <felicitymay@github.com>
Date: Wed, 30 Nov 2022 12:30:28 +0000
Subject: [PATCH 0876/1420] Some updates missed in earlier PRs

---
 .../codeql-library-for-typescript.rst         |   8 +-
 .../navigating-the-call-graph.rst             |  12 +-
 ...-labels-for-precise-data-flow-analysis.rst |  13 +-
 .../using-type-tracking-for-api-modeling.rst  | 112 ++++++++++++++++--
 .../working-with-source-locations.rst         |   6 +-
 5 files changed, 120 insertions(+), 31 deletions(-)

diff --git a/docs/codeql/codeql-language-guides/codeql-library-for-typescript.rst b/docs/codeql/codeql-language-guides/codeql-library-for-typescript.rst
index e729011a3e9..b1709bb05c5 100644
--- a/docs/codeql/codeql-language-guides/codeql-library-for-typescript.rst
+++ b/docs/codeql/codeql-language-guides/codeql-library-for-typescript.rst
@@ -123,8 +123,6 @@ Select expressions that cast a value to a type parameter:
    where assertion.getTypeAnnotation() = param.getLocalTypeName().getAnAccess()
    select assertion, "Cast to type parameter."
 
-➤ `See this in the query console on LGTM.com <https://lgtm.com/query/1505979606441/>`__.
-
 Classes and interfaces
 ~~~~~~~~~~~~~~~~~~~~~~
 
@@ -179,7 +177,7 @@ Ambient nodes are mostly ignored by control flow and data flow analysis. The out
 Static type information
 -----------------------
 
-Static type information and global name binding is available for projects with "full" TypeScript extraction enabled. This option is enabled by default for projects on LGTM.com and when you create databases with the :ref:`CodeQL CLI <codeql-cli>`.
+Static type information and global name binding is available for projects with "full" TypeScript extraction enabled. This option is enabled by default when you create databases with the :ref:`CodeQL CLI <codeql-cli>`.
 
 Basic usage
 ~~~~~~~~~~~
@@ -403,8 +401,6 @@ It is best to use `TypeName <https://codeql.github.com/codeql-standard-libraries
      and not access.hasTypeArguments()
    select access, "Type arguments are omitted"
 
-➤ `See this in the query console on LGTM.com <https://lgtm.com/query/1505985316500/>`__.
-
 Find imported names that are used as both a type and a value:
 
 .. code-block:: ql
@@ -416,8 +412,6 @@ Find imported names that are used as both a type and a value:
      and exists (VarAccess access | access.getVariable().getADeclaration() = spec.getLocal())
    select spec, "Used as both variable and type"
 
-➤ `See this in the query console on LGTM.com <https://lgtm.com/query/1505975787348/>`__.
-
 Namespace names
 ~~~~~~~~~~~~~~~
 
diff --git a/docs/codeql/codeql-language-guides/navigating-the-call-graph.rst b/docs/codeql/codeql-language-guides/navigating-the-call-graph.rst
index 8b73b49153b..6db902ea4b8 100644
--- a/docs/codeql/codeql-language-guides/navigating-the-call-graph.rst
+++ b/docs/codeql/codeql-language-guides/navigating-the-call-graph.rst
@@ -80,7 +80,7 @@ We can use the ``Callable`` class to write a query that finds methods that are n
    where not exists(Callable caller | caller.polyCalls(callee))
    select callee
 
-➤ `See this in the query console on LGTM.com <https://lgtm.com/query/8376915232270534450/>`__. This simple query typically returns a large number of results.
+This simple query typically returns a large number of results.
 
 .. pull-quote::
 
@@ -99,7 +99,7 @@ Running this query on a typical Java project results in lots of hits in the Java
        callee.getCompilationUnit().fromSource()
    select callee, "Not called."
 
-➤ `See this in the query console on LGTM.com <https://lgtm.com/query/8711624074465690976/>`__. This change reduces the number of results returned for most projects.
+This change reduces the number of results returned for most codebases.
 
 We might also notice several unused methods with the somewhat strange name ``<clinit>``: these are class initializers; while they are not explicitly called anywhere in the code, they are called implicitly whenever the surrounding class is loaded. Hence it makes sense to exclude them from our query. While we are at it, we can also exclude finalizers, which are similarly invoked implicitly:
 
@@ -113,7 +113,7 @@ We might also notice several unused methods with the somewhat strange name ``<cl
        not callee.hasName("<clinit>") and not callee.hasName("finalize")
    select callee, "Not called."
 
-➤ `See this in the query console on LGTM.com <https://lgtm.com/query/925473733866047471/>`__. This also reduces the number of results returned by most projects.
+This also reduces the number of results returned by most codebases.
 
 We may also want to exclude public methods from our query, since they may be external API entry points:
 
@@ -128,7 +128,7 @@ We may also want to exclude public methods from our query, since they may be ext
        not callee.isPublic()
    select callee, "Not called."
 
-➤ `See this in the query console on LGTM.com <https://lgtm.com/query/6284320987237954610/>`__. This should have a more noticeable effect on the number of results returned.
+This should have a more noticeable effect on the number of results returned.
 
 A further special case is non-public default constructors: in the singleton pattern, for example, a class is provided with private empty default constructor to prevent it from being instantiated. Since the very purpose of such constructors is their not being called, they should not be flagged up:
 
@@ -144,7 +144,7 @@ A further special case is non-public default constructors: in the singleton patt
        not callee.(Constructor).getNumberOfParameters() = 0
    select callee, "Not called."
 
-➤ `See this in the query console on LGTM.com <https://lgtm.com/query/2625028545869146918/>`__. This change has a large effect on the results for some projects but little effect on the results for others. Use of this pattern varies widely between different projects.
+This change has a large effect on the results for some projects but little effect on the results for others. Use of this pattern varies widely between different projects.
 
 Finally, on many Java projects there are methods that are invoked indirectly by reflection. So, while there are no calls invoking these methods, they are, in fact, used. It is in general very hard to identify such methods. A very common special case, however, is JUnit test methods, which are reflectively invoked by a test runner. The CodeQL library for Java has support for recognizing test classes of JUnit and other testing frameworks, which we can employ to filter out methods defined in such classes:
 
@@ -161,7 +161,7 @@ Finally, on many Java projects there are methods that are invoked indirectly by
        not callee.getDeclaringType() instanceof TestClass
    select callee, "Not called."
 
-➤ `See this in the query console on LGTM.com <https://lgtm.com/query/2055862421970264112/>`__. This should give a further reduction in the number of results returned.
+This should give a further reduction in the number of results returned.
 
 Further reading
 ---------------
diff --git a/docs/codeql/codeql-language-guides/using-flow-labels-for-precise-data-flow-analysis.rst b/docs/codeql/codeql-language-guides/using-flow-labels-for-precise-data-flow-analysis.rst
index c2f93525341..8088d3970be 100644
--- a/docs/codeql/codeql-language-guides/using-flow-labels-for-precise-data-flow-analysis.rst
+++ b/docs/codeql/codeql-language-guides/using-flow-labels-for-precise-data-flow-analysis.rst
@@ -338,10 +338,9 @@ step by step in the UI:
   where cfg.hasFlowPath(source, sink)
   select sink, source, sink, "Property access on JSON value originating $@.", source, "here"
 
-`Here <https://lgtm.com/query/5347702611074820306>`_ is a run of this query on the `plexus-interop
-<https://lgtm.com/projects/g/finos-plexus/plexus-interop/>`_ project on LGTM.com. Many of the 19
-results are false positives since we currently do not model many ways in which a value can be
-checked for nullness. In particular, after a property reference ``x.p`` we implicitly know that
+We ran this query on the https://github.com/finos/plexus-interop repository. Many of the
+results were false positives since the query does not currently model many ways in which we can check
+a value for nullness. In particular, after a property reference ``x.p`` we implicitly know that
 ``x`` cannot be null anymore, since otherwise the reference would have thrown an exception.
 Modeling this would allow us to get rid of most of the false positives, but is beyond the scope of
 this tutorial.
@@ -391,10 +390,10 @@ Some of our standard security queries use flow labels. You can look at their imp
 to get a feeling for how to use flow labels in practice.
 
 In particular, both of the examples mentioned in the section on limitations of basic data flow above
-are from standard security queries that use flow labels. The `Prototype pollution
-<https://lgtm.com/rules/1508857356317>`_ query uses two flow labels to distinguish completely
+are from standard security queries that use flow labels. The `Prototype-pollutiing merge call
+<https://codeql.github.com/codeql-query-help/javascript/js-prototype-pollution/>`_ query uses two flow labels to distinguish completely
 tainted objects from partially tainted objects. The `Uncontrolled data used in path expression
-<https://lgtm.com/rules/1971530250>`_ query uses four flow labels to track whether a user-controlled
+<https://codeql.github.com/codeql-query-help/javascript/js-path-injection/>`_ query uses four flow labels to track whether a user-controlled
 string may be an absolute path and whether it may contain ``..`` components.
 
 Further reading
diff --git a/docs/codeql/codeql-language-guides/using-type-tracking-for-api-modeling.rst b/docs/codeql/codeql-language-guides/using-type-tracking-for-api-modeling.rst
index e1690397e63..6d14e9413af 100644
--- a/docs/codeql/codeql-language-guides/using-type-tracking-for-api-modeling.rst
+++ b/docs/codeql/codeql-language-guides/using-type-tracking-for-api-modeling.rst
@@ -228,15 +228,23 @@ Here's see an example of what this can handle now:
 
 Tracking in the whole model
 ---------------------------
-We applied this pattern to ``firebaseDatabase()`` in the previous section, and it
-can just as easily apply to the other predicates.
-For reference, here's our simple Firebase model with type tracking on every predicate:
+We applied this pattern to ``firebaseDatabase()`` in the previous section, and we can
+apply the model just as easily to other  predicates.
+This example query uses the model to find `set` calls.
+It's been modified slightly to handle a bit more of the API, which is beyond the scope of this tutorial.
 
 .. code-block:: ql
 
+  import javascript
+  import DataFlow
+
   SourceNode firebase(TypeTracker t) {
     t.start() and
-    result = globalVarRef("firebase")
+    (
+      result = globalVarRef("firebase")
+      or
+      result = moduleImport("firebase/app")
+    )
     or
     exists(TypeTracker t2 |
       result = firebase(t2).track(t2, t)
@@ -277,8 +285,7 @@ For reference, here's our simple Firebase model with type tracking on every pred
     result = firebaseRef().getAMethodCall("set")
   }
 
-`Here <https://lgtm.com/query/1053770500827789481>`__ is a run of an example query using the model to find `set` calls on one of the Firebase sample projects.
-It's been modified slightly to handle a bit more of the API, which is beyond the scope of this tutorial.
+  select firebaseSetterCall()
 
 Tracking associated data
 ------------------------
@@ -392,7 +399,98 @@ Based on that we can track the ``snapshot`` value and find the ``val()`` call it
 
 With this addition, ``firebaseDatabaseRead("forecast")`` finds the call to ``snapshot.val()`` that contains the value of the forecast.
 
-`Here <https://lgtm.com/query/8761360814276109092>`__ is a run of an example query using the model to find `val` calls.
+.. code-block:: ql
+
+  import javascript
+  import DataFlow
+
+  SourceNode firebase(TypeTracker t) {
+    t.start() and
+    (
+      result = globalVarRef("firebase")
+      or
+      result = moduleImport("firebase/app")
+    )
+    or
+    exists(TypeTracker t2 |
+      result = firebase(t2).track(t2, t)
+    )
+  }
+
+  SourceNode firebase() {
+    result = firebase(TypeTracker::end())
+  }
+
+  SourceNode firebaseDatabase(TypeTracker t) {
+    t.start() and
+    result = firebase().getAMethodCall("database")
+    or
+    exists(TypeTracker t2 |
+      result = firebaseDatabase(t2).track(t2, t)
+    )
+  }
+
+  SourceNode firebaseDatabase() {
+    result = firebaseDatabase(TypeTracker::end())
+  }
+
+  SourceNode firebaseRef(Node name, TypeTracker t) {
+    t.start() and
+    exists(CallNode call |
+      call = firebaseDatabase().getAMethodCall("ref") and
+      name = call.getArgument(0) and
+      result = call
+    )
+    or
+    exists(TypeTracker t2 |
+      result = firebaseRef(name, t2).track(t2, t)
+    )
+  }
+
+  SourceNode firebaseRef(Node name) {
+    result = firebaseRef(name, TypeTracker::end())
+  }
+
+  MethodCallNode firebaseSetterCall(Node name) {
+    result = firebaseRef(name).getAMethodCall("set")
+  }
+
+  SourceNode firebaseSnapshotCallback(Node refName, TypeBackTracker t) {
+    t.start() and
+    (
+      result = firebaseRef(refName).getAMethodCall("once").getArgument(1).getALocalSource()
+      or
+      result = firebaseRef(refName).getAMethodCall("once").getAMethodCall("then").getArgument(0).getALocalSource()
+    )
+    or
+    exists(TypeBackTracker t2 |
+      result = firebaseSnapshotCallback(refName, t2).backtrack(t2, t)
+    )
+  }
+
+  FunctionNode firebaseSnapshotCallback(Node refName) {
+    result = firebaseSnapshotCallback(refName, TypeBackTracker::end())
+  }
+
+  SourceNode firebaseSnapshot(Node refName, TypeTracker t) {
+    t.start() and
+    result = firebaseSnapshotCallback(refName).getParameter(0)
+    or
+    exists(TypeTracker t2 |
+      result = firebaseSnapshot(refName, t2).track(t2, t)
+    )
+  }
+
+  SourceNode firebaseSnapshot(Node refName) {
+    result = firebaseSnapshot(refName, TypeTracker::end())
+  }
+
+  MethodCallNode firebaseDatabaseRead(Node refName) {
+    result = firebaseSnapshot(refName).getAMethodCall("val")
+  }
+
+  from Node name
+  select name, firebaseDatabaseRead(name)
 
 Summary
 -------
diff --git a/docs/codeql/codeql-language-guides/working-with-source-locations.rst b/docs/codeql/codeql-language-guides/working-with-source-locations.rst
index 9b55b95df52..90cc5f17849 100644
--- a/docs/codeql/codeql-language-guides/working-with-source-locations.rst
+++ b/docs/codeql/codeql-language-guides/working-with-source-locations.rst
@@ -112,7 +112,7 @@ Here's a first version of our query:
        wsinner > wsouter
    select outer, "Whitespace around nested operators contradicts precedence."
 
-➤ `See this in the query console on LGTM.com <https://lgtm.com/query/8141155897270480914/>`__. This query is likely to find results on most projects.
+This query is likely to find results on most codebases.
 
 The first conjunct of the ``where`` clause restricts ``inner`` to be an operand of ``outer``, the second conjunct binds ``wsinner`` and ``wsouter``, while the last conjunct selects the suspicious cases.
 
@@ -143,7 +143,7 @@ Note that our predicate ``operatorWS`` computes the **total** amount of white sp
        wsinner > wsouter
    select outer, "Whitespace around nested operators contradicts precedence."
 
-➤ `See this in the query console on LGTM.com <https://lgtm.com/query/3151720037708691205/>`__. Any results will be refined by our changes to the query.
+Any results will be refined by our changes to the query.
 
 Another source of false positives are associative operators: in an expression of the form ``x + y+z``, the first plus is syntactically nested inside the second, since + in Java associates to the left; hence the expression is flagged as suspicious. But since + is associative to begin with, it does not matter which way around the operators are nested, so this is a false positive. To exclude these cases, let us define a new class identifying binary expressions with an associative operator:
 
@@ -175,8 +175,6 @@ Now we can extend our query to discard results where the outer and the inner exp
        wsinner > wsouter
    select outer, "Whitespace around nested operators contradicts precedence."
 
-➤ `See this in the query console on LGTM.com <https://lgtm.com/query/5714614966569401039/>`__.
-
 Notice that we again use ``getOp``, this time to determine whether two binary expressions have the same operator. Running our improved query now finds the Java standard library bug described in the Overview. It also flags up the following suspicious code in `Hadoop HBase <https://hbase.apache.org/>`__:
 
 .. code-block:: java

From e0bd210797ff6aef37a5f2fc56233acaf126c506 Mon Sep 17 00:00:00 2001
From: Tom Hvitved <hvitved@github.com>
Date: Mon, 28 Nov 2022 20:02:22 +0100
Subject: [PATCH 0877/1420] Ruby: At most one hash-splat `ParameterNode` per
 callable

---
 .../dataflow/internal/DataFlowPrivate.qll     | 33 ++++++++++++++++---
 .../dataflow/internal/FlowSummaryImpl.qll     |  3 +-
 2 files changed, 30 insertions(+), 6 deletions(-)

diff --git a/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowPrivate.qll b/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowPrivate.qll
index 8353fad1e50..75412e8ac63 100644
--- a/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowPrivate.qll
+++ b/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowPrivate.qll
@@ -183,6 +183,18 @@ module LocalFlow {
   }
 
   predicate localFlowStepCommon(Node nodeFrom, Node nodeTo) {
+    exists(DataFlowCallable c | nodeFrom = TSynthHashSplatParameterNode(c) |
+      exists(HashSplatParameter p |
+        p.getCallable() = c.asCallable() and
+        nodeTo = TNormalParameterNode(p)
+      )
+      or
+      exists(ParameterPosition pos |
+        nodeTo = TSummaryParameterNode(c.asLibraryCallable(), pos) and
+        pos.isHashSplat()
+      )
+    )
+    or
     localSsaFlowStep(nodeFrom, nodeTo)
     or
     nodeFrom.asExpr() = nodeTo.asExpr().(CfgNodes::ExprNodes::BlockArgumentCfgNode).getValue()
@@ -620,7 +632,9 @@ private module ParameterNodes {
           )
         or
         parameter = callable.getAParameter().(HashSplatParameter) and
-        pos.isHashSplat()
+        pos.isHashSplat() and
+        // avoid overlap with `SynthHashSplatParameterNode`
+        not callable.getAParameter() instanceof KeywordParameter
         or
         parameter = callable.getParameter(0).(SplatParameter) and
         pos.isSplatAll()
@@ -772,7 +786,16 @@ private module ParameterNodes {
     override Parameter getParameter() { none() }
 
     override predicate isParameterOf(DataFlowCallable c, ParameterPosition pos) {
-      sc = c.asLibraryCallable() and pos = pos_
+      sc = c.asLibraryCallable() and
+      pos = pos_ and
+      // avoid overlap with `SynthHashSplatParameterNode`
+      not (
+        pos.isHashSplat() and
+        exists(ParameterPosition keywordPos |
+          FlowSummaryImpl::Private::summaryParameterNodeRange(sc, keywordPos) and
+          keywordPos.isKeyword(_)
+        )
+      )
     }
 
     override CfgScope getCfgScope() { none() }
@@ -1174,11 +1197,11 @@ predicate clearsContent(Node n, ContentSet c) {
   // Filter out keyword arguments that are part of the method signature from
   // the hash-splat parameter
   exists(
-    DataFlowCallable callable, ParameterPosition hashSplatPos, ParameterNodeImpl keywordParam,
+    DataFlowCallable callable, HashSplatParameter hashSplatParam, ParameterNodeImpl keywordParam,
     ParameterPosition keywordPos, string name
   |
-    n.(ParameterNodes::NormalParameterNode).isParameterOf(callable, hashSplatPos) and
-    hashSplatPos.isHashSplat() and
+    n = TNormalParameterNode(hashSplatParam) and
+    callable.asCallable() = hashSplatParam.getCallable() and
     keywordParam.isParameterOf(callable, keywordPos) and
     keywordPos.isKeyword(name) and
     c = getKeywordContent(name)
diff --git a/ruby/ql/lib/codeql/ruby/dataflow/internal/FlowSummaryImpl.qll b/ruby/ql/lib/codeql/ruby/dataflow/internal/FlowSummaryImpl.qll
index 4d41254e5e9..6d61d1b4799 100644
--- a/ruby/ql/lib/codeql/ruby/dataflow/internal/FlowSummaryImpl.qll
+++ b/ruby/ql/lib/codeql/ruby/dataflow/internal/FlowSummaryImpl.qll
@@ -520,7 +520,8 @@ module Private {
   predicate summaryParameterNodeRange(SummarizedCallable c, ParameterPosition pos) {
     parameterReadState(c, _, pos)
     or
-    isParameterPostUpdate(_, c, pos)
+    // Same as `isParameterPostUpdate(_, c, pos)`, but can be used in a negative context
+    any(SummaryNodeState state).isOutputState(c, SummaryComponentStack::argument(pos))
   }
 
   private predicate callbackOutput(

From b33f5925bb3842fc89b177b07474a84b26c36015 Mon Sep 17 00:00:00 2001
From: Tom Hvitved <hvitved@github.com>
Date: Tue, 29 Nov 2022 10:00:15 +0100
Subject: [PATCH 0878/1420] Data flow: Sync files

---
 .../semmle/code/csharp/dataflow/internal/FlowSummaryImpl.qll   | 3 ++-
 go/ql/lib/semmle/go/dataflow/internal/FlowSummaryImpl.qll      | 3 ++-
 .../lib/semmle/code/java/dataflow/internal/FlowSummaryImpl.qll | 3 ++-
 .../semmle/python/dataflow/new/internal/FlowSummaryImpl.qll    | 3 ++-
 .../ql/lib/codeql/swift/dataflow/internal/FlowSummaryImpl.qll  | 3 ++-
 5 files changed, 10 insertions(+), 5 deletions(-)

diff --git a/csharp/ql/lib/semmle/code/csharp/dataflow/internal/FlowSummaryImpl.qll b/csharp/ql/lib/semmle/code/csharp/dataflow/internal/FlowSummaryImpl.qll
index 4d41254e5e9..6d61d1b4799 100644
--- a/csharp/ql/lib/semmle/code/csharp/dataflow/internal/FlowSummaryImpl.qll
+++ b/csharp/ql/lib/semmle/code/csharp/dataflow/internal/FlowSummaryImpl.qll
@@ -520,7 +520,8 @@ module Private {
   predicate summaryParameterNodeRange(SummarizedCallable c, ParameterPosition pos) {
     parameterReadState(c, _, pos)
     or
-    isParameterPostUpdate(_, c, pos)
+    // Same as `isParameterPostUpdate(_, c, pos)`, but can be used in a negative context
+    any(SummaryNodeState state).isOutputState(c, SummaryComponentStack::argument(pos))
   }
 
   private predicate callbackOutput(
diff --git a/go/ql/lib/semmle/go/dataflow/internal/FlowSummaryImpl.qll b/go/ql/lib/semmle/go/dataflow/internal/FlowSummaryImpl.qll
index 4d41254e5e9..6d61d1b4799 100644
--- a/go/ql/lib/semmle/go/dataflow/internal/FlowSummaryImpl.qll
+++ b/go/ql/lib/semmle/go/dataflow/internal/FlowSummaryImpl.qll
@@ -520,7 +520,8 @@ module Private {
   predicate summaryParameterNodeRange(SummarizedCallable c, ParameterPosition pos) {
     parameterReadState(c, _, pos)
     or
-    isParameterPostUpdate(_, c, pos)
+    // Same as `isParameterPostUpdate(_, c, pos)`, but can be used in a negative context
+    any(SummaryNodeState state).isOutputState(c, SummaryComponentStack::argument(pos))
   }
 
   private predicate callbackOutput(
diff --git a/java/ql/lib/semmle/code/java/dataflow/internal/FlowSummaryImpl.qll b/java/ql/lib/semmle/code/java/dataflow/internal/FlowSummaryImpl.qll
index 4d41254e5e9..6d61d1b4799 100644
--- a/java/ql/lib/semmle/code/java/dataflow/internal/FlowSummaryImpl.qll
+++ b/java/ql/lib/semmle/code/java/dataflow/internal/FlowSummaryImpl.qll
@@ -520,7 +520,8 @@ module Private {
   predicate summaryParameterNodeRange(SummarizedCallable c, ParameterPosition pos) {
     parameterReadState(c, _, pos)
     or
-    isParameterPostUpdate(_, c, pos)
+    // Same as `isParameterPostUpdate(_, c, pos)`, but can be used in a negative context
+    any(SummaryNodeState state).isOutputState(c, SummaryComponentStack::argument(pos))
   }
 
   private predicate callbackOutput(
diff --git a/python/ql/lib/semmle/python/dataflow/new/internal/FlowSummaryImpl.qll b/python/ql/lib/semmle/python/dataflow/new/internal/FlowSummaryImpl.qll
index 4d41254e5e9..6d61d1b4799 100644
--- a/python/ql/lib/semmle/python/dataflow/new/internal/FlowSummaryImpl.qll
+++ b/python/ql/lib/semmle/python/dataflow/new/internal/FlowSummaryImpl.qll
@@ -520,7 +520,8 @@ module Private {
   predicate summaryParameterNodeRange(SummarizedCallable c, ParameterPosition pos) {
     parameterReadState(c, _, pos)
     or
-    isParameterPostUpdate(_, c, pos)
+    // Same as `isParameterPostUpdate(_, c, pos)`, but can be used in a negative context
+    any(SummaryNodeState state).isOutputState(c, SummaryComponentStack::argument(pos))
   }
 
   private predicate callbackOutput(
diff --git a/swift/ql/lib/codeql/swift/dataflow/internal/FlowSummaryImpl.qll b/swift/ql/lib/codeql/swift/dataflow/internal/FlowSummaryImpl.qll
index 4d41254e5e9..6d61d1b4799 100644
--- a/swift/ql/lib/codeql/swift/dataflow/internal/FlowSummaryImpl.qll
+++ b/swift/ql/lib/codeql/swift/dataflow/internal/FlowSummaryImpl.qll
@@ -520,7 +520,8 @@ module Private {
   predicate summaryParameterNodeRange(SummarizedCallable c, ParameterPosition pos) {
     parameterReadState(c, _, pos)
     or
-    isParameterPostUpdate(_, c, pos)
+    // Same as `isParameterPostUpdate(_, c, pos)`, but can be used in a negative context
+    any(SummaryNodeState state).isOutputState(c, SummaryComponentStack::argument(pos))
   }
 
   private predicate callbackOutput(

From 76db5f22b3705daa81317eded08d0d624381ced5 Mon Sep 17 00:00:00 2001
From: Paolo Tranquilli <redsun82@github.com>
Date: Wed, 30 Nov 2022 13:39:56 +0100
Subject: [PATCH 0879/1420] Swift: make `codegen` resilient to formatting
 errors

More in general, the managed renderer flow does things more sensibly
in case an exception is thrown:
* it will not remove any file
* it will drop already written files from the registry, so that codegen
  won't be skipped for those files during the next run
---
 swift/codegen/lib/render.py       | 18 +++++++++-----
 swift/codegen/test/test_render.py | 39 +++++++++++++++++++++++++++++++
 2 files changed, 51 insertions(+), 6 deletions(-)

diff --git a/swift/codegen/lib/render.py b/swift/codegen/lib/render.py
index 9564f5eb4ab..cc26880fbac 100644
--- a/swift/codegen/lib/render.py
+++ b/swift/codegen/lib/render.py
@@ -103,12 +103,18 @@ class RenderManager(Renderer):
         return self
 
     def __exit__(self, exc_type, exc_val, exc_tb):
-        for f in self._existing - self._skipped - self.written:
-            self._hashes.pop(self._get_path(f), None)
-            f.unlink(missing_ok=True)
-            log.info(f"removed {f.name}")
-        for f in self.written:
-            self._hashes[self._get_path(f)].post = self._hash_file(f)
+        if exc_val is None:
+            for f in self._existing - self._skipped - self.written:
+                self._hashes.pop(self._get_path(f), None)
+                f.unlink(missing_ok=True)
+                log.info(f"removed {f.name}")
+            for f in self.written:
+                self._hashes[self._get_path(f)].post = self._hash_file(f)
+        else:
+            # if an error was encountered, drop already written files from the registry
+            # so that they get the chance to be regenerated again during the next run
+            for f in self.written:
+                self._hashes.pop(self._get_path(f), None)
         self._dump_registry()
 
     def _do_write(self, mnemonic: str, contents: str, output: pathlib.Path):
diff --git a/swift/codegen/test/test_render.py b/swift/codegen/test/test_render.py
index 64cc745046f..8c48902eea7 100644
--- a/swift/codegen/test/test_render.py
+++ b/swift/codegen/test/test_render.py
@@ -192,6 +192,45 @@ def test_managed_render_with_modified_stub_file_not_marked_as_generated(pystache
     assert_file(registry, "")
 
 
+class MyError(Exception):
+    pass
+
+
+def test_managed_render_exception_drops_written_from_registry(pystache_renderer, sut):
+    data = mock.Mock(spec=("template",))
+    text = "some text"
+    pystache_renderer.render_name.side_effect = (text,)
+    output = paths.swift_dir / "some/output.txt"
+    registry = paths.swift_dir / "a/registry.list"
+    write(output, text)
+    write(registry, "a a a\n"
+                    f"some/output.txt whatever {hash(text)}\n"
+                    "b b b")
+
+    with pytest.raises(MyError):
+        with sut.manage(generated=(), stubs=(), registry=registry) as renderer:
+            renderer.render(data, output)
+            raise MyError
+
+    assert_file(registry, "a a a\nb b b\n")
+
+
+def test_managed_render_exception_does_not_erase(pystache_renderer, sut):
+    output = paths.swift_dir / "some/output.txt"
+    stub = paths.swift_dir / "some/stub.txt"
+    registry = paths.swift_dir / "a/registry.list"
+    write(output)
+    write(stub, "// generated bla bla")
+    write(registry)
+
+    with pytest.raises(MyError):
+        with sut.manage(generated=(output,), stubs=(stub,), registry=registry) as renderer:
+            raise MyError
+
+    assert output.is_file()
+    assert stub.is_file()
+
+
 def test_render_with_extensions(pystache_renderer, sut):
     data = mock.Mock(spec=("template", "extensions"))
     data.template = "test_template"

From d6aad13a9866c7fa2e2a58296d28780142d4a113 Mon Sep 17 00:00:00 2001
From: Paolo Tranquilli <redsun82@github.com>
Date: Wed, 30 Nov 2022 13:47:12 +0100
Subject: [PATCH 0880/1420] Swift: make `codegen` run when no registry is there

---
 swift/codegen/lib/render.py                     | 12 ++++++++----
 swift/codegen/test/test_render.py               | 17 +++++++++++++++++
 swift/ql/.generated.list                        |  2 +-
 .../swift/generated/UnspecifiedElement.qll      |  3 +++
 swift/schema.py                                 |  1 +
 5 files changed, 30 insertions(+), 5 deletions(-)

diff --git a/swift/codegen/lib/render.py b/swift/codegen/lib/render.py
index cc26880fbac..8294ecfda2b 100644
--- a/swift/codegen/lib/render.py
+++ b/swift/codegen/lib/render.py
@@ -171,12 +171,16 @@ class RenderManager(Renderer):
         return h.hexdigest()
 
     def _load_registry(self):
-        with open(self._registry_path) as reg:
-            for line in reg:
-                filename, prehash, posthash = line.split()
-                self._hashes[pathlib.Path(filename)] = self.Hashes(prehash, posthash)
+        try:
+            with open(self._registry_path) as reg:
+                for line in reg:
+                    filename, prehash, posthash = line.split()
+                    self._hashes[pathlib.Path(filename)] = self.Hashes(prehash, posthash)
+        except FileNotFoundError:
+            pass
 
     def _dump_registry(self):
+        self._registry_path.parent.mkdir(parents=True, exist_ok=True)
         with open(self._registry_path, 'w') as out:
             for f, hashes in sorted(self._hashes.items()):
                 print(f, hashes.pre, hashes.post, file=out)
diff --git a/swift/codegen/test/test_render.py b/swift/codegen/test/test_render.py
index 8c48902eea7..cb249046b7b 100644
--- a/swift/codegen/test/test_render.py
+++ b/swift/codegen/test/test_render.py
@@ -75,6 +75,23 @@ def test_managed_render(pystache_renderer, sut):
         mock.call.render_name(data.template, data, generator=paths.exe_file.relative_to(paths.swift_dir)),
     ]
 
+def test_managed_render_with_no_registry(pystache_renderer, sut):
+    data = mock.Mock(spec=("template",))
+    text = "some text"
+    pystache_renderer.render_name.side_effect = (text,)
+    output = paths.swift_dir / "some/output.txt"
+    registry = paths.swift_dir / "a/registry.list"
+
+    with sut.manage(generated=(), stubs=(), registry=registry) as renderer:
+        renderer.render(data, output)
+        assert renderer.written == {output}
+        assert_file(output, text)
+
+    assert_file(registry, f"some/output.txt {hash(text)} {hash(text)}\n")
+    assert pystache_renderer.mock_calls == [
+        mock.call.render_name(data.template, data, generator=paths.exe_file.relative_to(paths.swift_dir)),
+    ]
+
 
 def test_managed_render_with_post_processing(pystache_renderer, sut):
     data = mock.Mock(spec=("template",))
diff --git a/swift/ql/.generated.list b/swift/ql/.generated.list
index 098740a9329..5822256c11f 100644
--- a/swift/ql/.generated.list
+++ b/swift/ql/.generated.list
@@ -385,7 +385,7 @@ ql/lib/codeql/swift/generated/Synth.qll 90df85be365c89c3c2e22041ee7dc9dd2ad9194b
 ql/lib/codeql/swift/generated/SynthConstructors.qll 5c91f09bd82728651ed61f498704e0f62847788fa986dec5e674d81f294076c7 5c91f09bd82728651ed61f498704e0f62847788fa986dec5e674d81f294076c7
 ql/lib/codeql/swift/generated/UnknownFile.qll 0fcf9beb8de79440bcdfff4bb6ab3dd139bd273e6c32754e05e6a632651e85f6 0fcf9beb8de79440bcdfff4bb6ab3dd139bd273e6c32754e05e6a632651e85f6
 ql/lib/codeql/swift/generated/UnknownLocation.qll e50efefa02a0ec1ff635a00951b5924602fc8cab57e5756e4a039382c69d3882 e50efefa02a0ec1ff635a00951b5924602fc8cab57e5756e4a039382c69d3882
-ql/lib/codeql/swift/generated/UnspecifiedElement.qll dbc6ca4018012977b26ca184a88044c55b0661e3998cd14d46295b62a8d69625 184c9a0ce18c2ac881943b0fb400613d1401ed1d5564f90716b6c310ba5afe71
+ql/lib/codeql/swift/generated/UnspecifiedElement.qll a3a73f53c492adc6655fb88b40b1bd9b2c9d365fc5c019b3233c01d6110fb3f2 ba77cd5272cffd1d3aad8bea69786b97aec0c93a4b59a070d621fe2d21c2e90c
 ql/lib/codeql/swift/generated/decl/AbstractFunctionDecl.qll 8255b24dddda83e8a7dee9d69a4cf9883b5a7ae43676d7242b5aab5169f68982 407c7d63681fb03ad6cb4ea3c2b04be7ccb5ddbe655a8aec4219eb3799bc36e8
 ql/lib/codeql/swift/generated/decl/AbstractStorageDecl.qll 66147ad36cefce974b4ae0f3e84569bd6742ea2f3e842c3c04e6e5cbd17e7928 ce7c2347e2dfe0b141db103ccb8e56a61d286476c201aebe6a275edd7fca2c0f
 ql/lib/codeql/swift/generated/decl/AbstractTypeParamDecl.qll 1e268b00d0f2dbbd85aa70ac206c5e4a4612f06ba0091e5253483635f486ccf9 5479e13e99f68f1f347283535f8098964f7fd4a34326ff36ad5711b2de1ab0d0
diff --git a/swift/ql/lib/codeql/swift/generated/UnspecifiedElement.qll b/swift/ql/lib/codeql/swift/generated/UnspecifiedElement.qll
index c37d4d35515..2658e63164a 100644
--- a/swift/ql/lib/codeql/swift/generated/UnspecifiedElement.qll
+++ b/swift/ql/lib/codeql/swift/generated/UnspecifiedElement.qll
@@ -5,6 +5,9 @@ import codeql.swift.elements.Element
 import codeql.swift.elements.ErrorElement
 
 module Generated {
+  /**
+   * bla
+   */
   class UnspecifiedElement extends Synth::TUnspecifiedElement, ErrorElement {
     override string getAPrimaryQlClass() { result = "UnspecifiedElement" }
 
diff --git a/swift/schema.py b/swift/schema.py
index 3162c1277e0..3148a43f67b 100644
--- a/swift/schema.py
+++ b/swift/schema.py
@@ -40,6 +40,7 @@ class ErrorElement(Locatable):
 
 @use_for_null
 class UnspecifiedElement(ErrorElement):
+    """bla"""
     parent: optional[Element]
     property: string
     index: optional[int]

From e321657f59875c24659ae31d08f5d21332a63f84 Mon Sep 17 00:00:00 2001
From: Alex Ford <alexrford@github.com>
Date: Fri, 25 Nov 2022 17:15:16 +0000
Subject: [PATCH 0881/1420] Ruby: model rails/globalid

---
 .../lib/codeql/ruby/frameworks/GlobalId.qll   | 111 ++++++++++++++++++
 .../frameworks/globalid/GlobalId.expected     |  24 ++++
 .../frameworks/globalid/GlobalId.ql           |  21 ++++
 .../frameworks/globalid/globalid.rb           |  44 +++++++
 4 files changed, 200 insertions(+)
 create mode 100644 ruby/ql/lib/codeql/ruby/frameworks/GlobalId.qll
 create mode 100644 ruby/ql/test/library-tests/frameworks/globalid/GlobalId.expected
 create mode 100644 ruby/ql/test/library-tests/frameworks/globalid/GlobalId.ql
 create mode 100644 ruby/ql/test/library-tests/frameworks/globalid/globalid.rb

diff --git a/ruby/ql/lib/codeql/ruby/frameworks/GlobalId.qll b/ruby/ql/lib/codeql/ruby/frameworks/GlobalId.qll
new file mode 100644
index 00000000000..4cd53d72890
--- /dev/null
+++ b/ruby/ql/lib/codeql/ruby/frameworks/GlobalId.qll
@@ -0,0 +1,111 @@
+/**
+ * Provides modeling for `GlobalID`, a library for identifying model instances by URI.
+ * Version: 1.0.0
+ * https://github.com/rails/globalid
+ */
+
+private import codeql.ruby.ApiGraphs
+private import codeql.ruby.Concepts
+private import codeql.ruby.DataFlow
+private import codeql.ruby.frameworks.ActiveRecord
+
+/**
+ * Provides modeling for `GlobalID`, a library for identifying model instances by URI.
+ * Version: 1.0.0
+ * https://github.com/rails/globalid
+ */
+module GlobalId {
+  /** A call to `GlobalID::parse` */
+  class ParseCall extends DataFlow::CallNode {
+    ParseCall() { this = API::getTopLevelMember("GlobalID").getAMethodCall("parse") }
+  }
+
+  /** A call to `GlobalID::find` */
+  class FindCall extends DataFlow::CallNode, OrmInstantiation::Range {
+    FindCall() { this = API::getTopLevelMember("GlobalID").getAMethodCall("find") }
+
+    override predicate methodCallMayAccessField(string methodName) { none() }
+  }
+
+  /** `GlobalID::Locator` */
+  module Locator {
+    /** A call to `GlobalID::Locator.locate` */
+    class LocateCall extends DataFlow::CallNode, OrmInstantiation::Range {
+      LocateCall() {
+        this = API::getTopLevelMember("GlobalID").getMember("Locator").getAMethodCall("locate")
+      }
+
+      override predicate methodCallMayAccessField(string methodName) { none() }
+    }
+
+    /** A call to `GlobalID::Locator.locate_signed` */
+    class LocateSignedCall extends DataFlow::CallNode, OrmInstantiation::Range {
+      LocateSignedCall() {
+        this =
+          API::getTopLevelMember("GlobalID").getMember("Locator").getAMethodCall("locate_signed")
+      }
+
+      override predicate methodCallMayAccessField(string methodName) { none() }
+    }
+
+    /** A call to `GlobalID::Locator.locate_many` */
+    class LocateManyCall extends DataFlow::CallNode, OrmInstantiation::Range {
+      LocateManyCall() {
+        this = API::getTopLevelMember("GlobalID").getMember("Locator").getAMethodCall("locate_many")
+      }
+
+      override predicate methodCallMayAccessField(string methodName) { none() }
+    }
+
+    /** A call to `GlobalID::Locator.locate_many_signed` */
+    class LocateManySignedCall extends DataFlow::CallNode, OrmInstantiation::Range {
+      LocateManySignedCall() {
+        this =
+          API::getTopLevelMember("GlobalID")
+              .getMember("Locator")
+              .getAMethodCall("locate_many_signed")
+      }
+
+      override predicate methodCallMayAccessField(string methodName) { none() }
+    }
+  }
+
+  // TODO: methods in this module are available to any class that includes it, not just ActiveRecord models
+  /** `GlobalID::Identification` */
+  module Identification {
+    /** A call to `GlobalID::Identification.to_global_id` */
+    class ToGlobalIdCall extends ActiveRecordInstanceMethodCall {
+      ToGlobalIdCall() { this.getMethodName() = ["to_global_id", "to_gid"] }
+    }
+
+    /** A call to `GlobalID::Identification.to_gid_param` */
+    class ToGidParamCall extends ActiveRecordInstanceMethodCall {
+      ToGidParamCall() { this.getMethodName() = "to_gid_param" }
+    }
+
+    /** A call to `GlobalID::Identification.to_signed_global_id` */
+    class ToSignedGlobalIdCall extends ActiveRecordInstanceMethodCall {
+      ToSignedGlobalIdCall() { this.getMethodName() = ["to_signed_global_id", "to_sgid"] }
+    }
+
+    /** A call to `GlobalID::Identification.to_sgid_param` */
+    class ToSgidParamCall extends ActiveRecordInstanceMethodCall {
+      ToSgidParamCall() { this.getMethodName() = "to_sgid_param" }
+    }
+  }
+}
+
+/** Provides modeling for `SignedGlobalID`, a module of the `rails/globalid` library. */
+module SignedGlobalId {
+  /** A call to `SignedGlobalID::parse` */
+  class ParseCall extends DataFlow::CallNode {
+    ParseCall() { this = API::getTopLevelMember("SignedGlobalID").getAMethodCall("parse") }
+  }
+
+  /** A call to `SignedGlobalID::find` */
+  class FindCall extends DataFlow::CallNode, OrmInstantiation::Range {
+    FindCall() { this = API::getTopLevelMember("SignedGlobalID").getAMethodCall("find") }
+
+    override predicate methodCallMayAccessField(string methodName) { none() }
+  }
+}
diff --git a/ruby/ql/test/library-tests/frameworks/globalid/GlobalId.expected b/ruby/ql/test/library-tests/frameworks/globalid/GlobalId.expected
new file mode 100644
index 00000000000..58edfb965d8
--- /dev/null
+++ b/ruby/ql/test/library-tests/frameworks/globalid/GlobalId.expected
@@ -0,0 +1,24 @@
+locateCalls
+| globalid.rb:6:3:6:30 | call to locate |
+| globalid.rb:11:3:11:30 | call to locate |
+locateSignedCalls
+| globalid.rb:16:3:16:38 | call to locate_signed |
+| globalid.rb:21:3:21:38 | call to locate_signed |
+toGlobalIdCalls
+| globalid.rb:5:9:5:33 | call to to_global_id |
+| globalid.rb:10:9:10:27 | call to to_gid |
+toGidParamCalls
+| globalid.rb:35:10:35:34 | call to to_gid_param |
+toSignedGlobalIdCalls
+| globalid.rb:15:10:15:41 | call to to_signed_global_id |
+| globalid.rb:20:10:20:29 | call to to_sgid |
+toSgidParamCalls
+| globalid.rb:41:11:41:36 | call to to_sgid_param |
+globalIdParseCalls
+| globalid.rb:36:9:36:27 | call to parse |
+globalIdFindCalls
+| globalid.rb:37:3:37:19 | call to find |
+signedGlobalIdParseCalls
+| globalid.rb:42:10:42:35 | call to parse |
+signedGlobalIdFindCalls
+| globalid.rb:43:3:43:26 | call to find |
diff --git a/ruby/ql/test/library-tests/frameworks/globalid/GlobalId.ql b/ruby/ql/test/library-tests/frameworks/globalid/GlobalId.ql
new file mode 100644
index 00000000000..d48465b0e52
--- /dev/null
+++ b/ruby/ql/test/library-tests/frameworks/globalid/GlobalId.ql
@@ -0,0 +1,21 @@
+import codeql.ruby.frameworks.GlobalId
+
+query predicate locateCalls(GlobalId::Locator::LocateCall c) { any() }
+
+query predicate locateSignedCalls(GlobalId::Locator::LocateSignedCall c) { any() }
+
+query predicate toGlobalIdCalls(GlobalId::Identification::ToGlobalIdCall c) { any() }
+
+query predicate toGidParamCalls(GlobalId::Identification::ToGidParamCall c) { any() }
+
+query predicate toSignedGlobalIdCalls(GlobalId::Identification::ToSignedGlobalIdCall c) { any() }
+
+query predicate toSgidParamCalls(GlobalId::Identification::ToSgidParamCall c) { any() }
+
+query predicate globalIdParseCalls(GlobalId::ParseCall c) { any() }
+
+query predicate globalIdFindCalls(GlobalId::FindCall c) { any() }
+
+query predicate signedGlobalIdParseCalls(SignedGlobalId::ParseCall c) { any() }
+
+query predicate signedGlobalIdFindCalls(SignedGlobalId::FindCall c) { any() }
diff --git a/ruby/ql/test/library-tests/frameworks/globalid/globalid.rb b/ruby/ql/test/library-tests/frameworks/globalid/globalid.rb
new file mode 100644
index 00000000000..04f60c9a774
--- /dev/null
+++ b/ruby/ql/test/library-tests/frameworks/globalid/globalid.rb
@@ -0,0 +1,44 @@
+class User < ActiveRecord::Base
+end
+
+def m1
+  gid = User.find(1).to_global_id
+  GlobalID::Locator.locate gid
+end
+
+def m2
+  gid = User.find(1).to_gid
+  GlobalID::Locator.locate gid
+end
+
+def m3
+  sgid = User.find(1).to_signed_global_id
+  GlobalID::Locator.locate_signed sgid
+end
+
+def m4
+  sgid = User.find(1).to_sgid
+  GlobalID::Locator.locate_signed sgid
+end
+
+def m5
+  gids = User.all.map(&:to_gid)
+  GlobalID::Locator.locate_many gids
+end
+
+def m6
+  sgids = User.all.map(&:to_sgid)
+  GlobalID::Locator.locate_many_signed sgids
+end
+
+def m7
+  gidp = User.find(1).to_gid_param
+  gid = GlobalID.parse gidp
+  GlobalID.find gid
+end
+
+def m8
+  sgidp = User.find(1).to_sgid_param
+  sgid = SignedGlobalID.parse sgidp
+  SignedGlobalID.find sgid
+end

From 7de5113e67077f29cabf57b3f9fc2cbb40c3a86c Mon Sep 17 00:00:00 2001
From: Alex Ford <alexrford@github.com>
Date: Wed, 30 Nov 2022 13:01:27 +0000
Subject: [PATCH 0882/1420] Ruby: rails/globalid changenote

---
 ruby/ql/lib/change-notes/2022-11-30-rails-globalid.md | 4 ++++
 1 file changed, 4 insertions(+)
 create mode 100644 ruby/ql/lib/change-notes/2022-11-30-rails-globalid.md

diff --git a/ruby/ql/lib/change-notes/2022-11-30-rails-globalid.md b/ruby/ql/lib/change-notes/2022-11-30-rails-globalid.md
new file mode 100644
index 00000000000..c3db54fcb9e
--- /dev/null
+++ b/ruby/ql/lib/change-notes/2022-11-30-rails-globalid.md
@@ -0,0 +1,4 @@
+---
+ category: minorAnalysis
+---
+ * Calls to `GlobalID::Locator.locate` and its variants are now recognized as instances of `OrmInstantiation`.

From bb3aa9e9082273cf747ec8d9e203d72167cc43f4 Mon Sep 17 00:00:00 2001
From: Paolo Tranquilli <redsun82@github.com>
Date: Wed, 30 Nov 2022 14:11:24 +0100
Subject: [PATCH 0883/1420] Swift: add `--force` to `codegen`

---
 swift/codegen/codegen.py                      |  2 +
 swift/codegen/generators/qlgen.py             |  3 +-
 swift/codegen/lib/render.py                   | 23 +++++--
 swift/codegen/test/test_qlgen.py              |  7 +-
 swift/codegen/test/test_render.py             | 66 +++++++++++++++++++
 swift/ql/.generated.list                      |  2 +-
 .../swift/generated/UnspecifiedElement.qll    |  3 -
 swift/schema.py                               |  1 -
 8 files changed, 92 insertions(+), 15 deletions(-)

diff --git a/swift/codegen/codegen.py b/swift/codegen/codegen.py
index b2da3678b1c..58160e9b998 100755
--- a/swift/codegen/codegen.py
+++ b/swift/codegen/codegen.py
@@ -42,6 +42,8 @@ def _parse_args() -> argparse.Namespace:
                    help="output directory for generated C++ files, required if trap or cpp is provided to --generate")
     p.add_argument("--generated-registry", type=_abspath, default=paths.swift_dir / "ql/.generated.list",
                    help="registry file containing information about checked-in generated code")
+    p.add_argument("--force", "-f", action="store_true",
+                   help="generate all files without skipping unchanged files and overwriting modified ones")
     return p.parse_args()
 
 
diff --git a/swift/codegen/generators/qlgen.py b/swift/codegen/generators/qlgen.py
index c1650974796..b6b50498028 100755
--- a/swift/codegen/generators/qlgen.py
+++ b/swift/codegen/generators/qlgen.py
@@ -302,7 +302,8 @@ def generate(opts, renderer):
 
     imports = {}
 
-    with renderer.manage(generated=generated, stubs=stubs, registry=opts.generated_registry) as renderer:
+    with renderer.manage(generated=generated, stubs=stubs, registry=opts.generated_registry,
+                         force=opts.force) as renderer:
 
         db_classes = [cls for cls in classes.values() if not cls.ipa]
         renderer.render(ql.DbClasses(db_classes), out / "Raw.qll")
diff --git a/swift/codegen/lib/render.py b/swift/codegen/lib/render.py
index 8294ecfda2b..65014a42fa2 100644
--- a/swift/codegen/lib/render.py
+++ b/swift/codegen/lib/render.py
@@ -59,8 +59,8 @@ class Renderer:
         log.debug(f"{mnemonic}: generated {output.name}")
 
     def manage(self, generated: typing.Iterable[pathlib.Path], stubs: typing.Iterable[pathlib.Path],
-               registry: pathlib.Path) -> "RenderManager":
-        return RenderManager(self._swift_dir, generated, stubs, registry)
+               registry: pathlib.Path, force: bool = False) -> "RenderManager":
+        return RenderManager(self._swift_dir, generated, stubs, registry, force)
 
 
 class RenderManager(Renderer):
@@ -87,9 +87,10 @@ class RenderManager(Renderer):
 
     def __init__(self, swift_dir: pathlib.Path, generated: typing.Iterable[pathlib.Path],
                  stubs: typing.Iterable[pathlib.Path],
-                 registry: pathlib.Path):
+                 registry: pathlib.Path, force: bool = False):
         super().__init__(swift_dir)
         self._registry_path = registry
+        self._force = force
         self._hashes = {}
         self.written = set()
         self._existing = set()
@@ -132,10 +133,13 @@ class RenderManager(Renderer):
         for f in generated:
             self._existing.add(f)
             rel_path = self._get_path(f)
-            if rel_path not in self._hashes:
+            if self._force:
+                pass
+            elif rel_path not in self._hashes:
                 log.warning(f"{rel_path} marked as generated but absent from the registry")
             elif self._hashes[rel_path].post != self._hash_file(f):
-                raise Error(f"{rel_path} is generated but was modified, please revert the file")
+                raise Error(f"{rel_path} is generated but was modified, please revert the file "
+                            "or pass --force to overwrite")
 
     def _process_stubs(self, stubs: typing.Iterable[pathlib.Path]):
         for f in stubs:
@@ -144,10 +148,13 @@ class RenderManager(Renderer):
                 self._hashes.pop(rel_path, None)
                 continue
             self._existing.add(f)
-            if rel_path not in self._hashes:
+            if self._force:
+                pass
+            elif rel_path not in self._hashes:
                 log.warning(f"{rel_path} marked as stub but absent from the registry")
             elif self._hashes[rel_path].post != self._hash_file(f):
-                raise Error(f"{rel_path} is a stub marked as generated, but it was modified")
+                raise Error(f"{rel_path} is a stub marked as generated, but it was modified, "
+                            "please remove the `// generated` header, revert the file or pass --force to overwrite it")
 
     @staticmethod
     def is_customized_stub(file: pathlib.Path) -> bool:
@@ -171,6 +178,8 @@ class RenderManager(Renderer):
         return h.hexdigest()
 
     def _load_registry(self):
+        if self._force:
+            return
         try:
             with open(self._registry_path) as reg:
                 for line in reg:
diff --git a/swift/codegen/test/test_qlgen.py b/swift/codegen/test/test_qlgen.py
index 0db445f07b9..3b2598ed8fd 100644
--- a/swift/codegen/test/test_qlgen.py
+++ b/swift/codegen/test/test_qlgen.py
@@ -48,6 +48,7 @@ def qlgen_opts(opts):
     opts.generated_registry = generated_registry_path()
     opts.ql_format = True
     opts.swift_dir = paths.swift_dir
+    opts.force = False
     return opts
 
 
@@ -430,7 +431,9 @@ def test_format_error(opts, generate, render_manager, run_mock):
         generate([schema.Class('A')])
 
 
-def test_manage_parameters(opts, generate, renderer):
+@pytest.mark.parametrize("force", [False, True])
+def test_manage_parameters(opts, generate, renderer, force):
+    opts.force = force
     ql_a = opts.ql_output / "A.qll"
     ql_b = opts.ql_output / "B.qll"
     stub_a = opts.ql_stub_output / "A.qll"
@@ -448,7 +451,7 @@ def test_manage_parameters(opts, generate, renderer):
     generate([schema.Class('A')])
     assert renderer.mock_calls == [
         mock.call.manage(generated={ql_a, ql_b, test_a, test_b, import_file()}, stubs={stub_a, stub_b},
-                         registry=opts.generated_registry)
+                         registry=opts.generated_registry, force=force)
     ]
 
 
diff --git a/swift/codegen/test/test_render.py b/swift/codegen/test/test_render.py
index cb249046b7b..950ca385e2f 100644
--- a/swift/codegen/test/test_render.py
+++ b/swift/codegen/test/test_render.py
@@ -75,6 +75,7 @@ def test_managed_render(pystache_renderer, sut):
         mock.call.render_name(data.template, data, generator=paths.exe_file.relative_to(paths.swift_dir)),
     ]
 
+
 def test_managed_render_with_no_registry(pystache_renderer, sut):
     data = mock.Mock(spec=("template",))
     text = "some text"
@@ -266,5 +267,70 @@ def test_render_with_extensions(pystache_renderer, sut):
         assert_file(expected_output, expected_contents)
 
 
+def test_managed_render_with_force_not_skipping_generated_file(pystache_renderer, sut):
+    data = mock.Mock(spec=("template",))
+    output = paths.swift_dir / "some/output.txt"
+    some_output = "some output"
+    registry = paths.swift_dir / "a/registry.list"
+    write(output, some_output)
+    write(registry, f"some/output.txt {hash(some_output)} {hash(some_output)}\n")
+
+    pystache_renderer.render_name.side_effect = (some_output,)
+
+    with sut.manage(generated=(output,), stubs=(), registry=registry, force=True) as renderer:
+        renderer.render(data, output)
+        assert renderer.written == {output}
+        assert_file(output, some_output)
+
+    assert_file(registry, f"some/output.txt {hash(some_output)} {hash(some_output)}\n")
+    assert pystache_renderer.mock_calls == [
+        mock.call.render_name(data.template, data, generator=paths.exe_file.relative_to(paths.swift_dir)),
+    ]
+
+
+def test_managed_render_with_force_not_skipping_stub_file(pystache_renderer, sut):
+    data = mock.Mock(spec=("template",))
+    stub = paths.swift_dir / "some/stub.txt"
+    some_output = "// generated some output"
+    some_processed_output = "// generated some processed output"
+    registry = paths.swift_dir / "a/registry.list"
+    write(stub, some_processed_output)
+    write(registry, f"some/stub.txt {hash(some_output)} {hash(some_processed_output)}\n")
+
+    pystache_renderer.render_name.side_effect = (some_output,)
+
+    with sut.manage(generated=(), stubs=(stub,), registry=registry, force=True) as renderer:
+        renderer.render(data, stub)
+        assert renderer.written == {stub}
+        assert_file(stub, some_output)
+
+    assert_file(registry, f"some/stub.txt {hash(some_output)} {hash(some_output)}\n")
+    assert pystache_renderer.mock_calls == [
+        mock.call.render_name(data.template, data, generator=paths.exe_file.relative_to(paths.swift_dir)),
+    ]
+
+
+def test_managed_render_with_force_ignores_modified_generated_file(sut):
+    output = paths.swift_dir / "some/output.txt"
+    some_processed_output = "// some processed output"
+    registry = paths.swift_dir / "a/registry.list"
+    write(output, "// something else")
+    write(registry, f"some/output.txt whatever {hash(some_processed_output)}\n")
+
+    with sut.manage(generated=(output,), stubs=(), registry=registry, force=True):
+        pass
+
+
+def test_managed_render_with_force_ignores_modified_stub_file_still_marked_as_generated(sut):
+    stub = paths.swift_dir / "some/stub.txt"
+    some_processed_output = "// generated some processed output"
+    registry = paths.swift_dir / "a/registry.list"
+    write(stub, "// generated something else")
+    write(registry, f"some/stub.txt whatever {hash(some_processed_output)}\n")
+
+    with sut.manage(generated=(), stubs=(stub,), registry=registry, force=True):
+        pass
+
+
 if __name__ == '__main__':
     sys.exit(pytest.main([__file__] + sys.argv[1:]))
diff --git a/swift/ql/.generated.list b/swift/ql/.generated.list
index 5822256c11f..098740a9329 100644
--- a/swift/ql/.generated.list
+++ b/swift/ql/.generated.list
@@ -385,7 +385,7 @@ ql/lib/codeql/swift/generated/Synth.qll 90df85be365c89c3c2e22041ee7dc9dd2ad9194b
 ql/lib/codeql/swift/generated/SynthConstructors.qll 5c91f09bd82728651ed61f498704e0f62847788fa986dec5e674d81f294076c7 5c91f09bd82728651ed61f498704e0f62847788fa986dec5e674d81f294076c7
 ql/lib/codeql/swift/generated/UnknownFile.qll 0fcf9beb8de79440bcdfff4bb6ab3dd139bd273e6c32754e05e6a632651e85f6 0fcf9beb8de79440bcdfff4bb6ab3dd139bd273e6c32754e05e6a632651e85f6
 ql/lib/codeql/swift/generated/UnknownLocation.qll e50efefa02a0ec1ff635a00951b5924602fc8cab57e5756e4a039382c69d3882 e50efefa02a0ec1ff635a00951b5924602fc8cab57e5756e4a039382c69d3882
-ql/lib/codeql/swift/generated/UnspecifiedElement.qll a3a73f53c492adc6655fb88b40b1bd9b2c9d365fc5c019b3233c01d6110fb3f2 ba77cd5272cffd1d3aad8bea69786b97aec0c93a4b59a070d621fe2d21c2e90c
+ql/lib/codeql/swift/generated/UnspecifiedElement.qll dbc6ca4018012977b26ca184a88044c55b0661e3998cd14d46295b62a8d69625 184c9a0ce18c2ac881943b0fb400613d1401ed1d5564f90716b6c310ba5afe71
 ql/lib/codeql/swift/generated/decl/AbstractFunctionDecl.qll 8255b24dddda83e8a7dee9d69a4cf9883b5a7ae43676d7242b5aab5169f68982 407c7d63681fb03ad6cb4ea3c2b04be7ccb5ddbe655a8aec4219eb3799bc36e8
 ql/lib/codeql/swift/generated/decl/AbstractStorageDecl.qll 66147ad36cefce974b4ae0f3e84569bd6742ea2f3e842c3c04e6e5cbd17e7928 ce7c2347e2dfe0b141db103ccb8e56a61d286476c201aebe6a275edd7fca2c0f
 ql/lib/codeql/swift/generated/decl/AbstractTypeParamDecl.qll 1e268b00d0f2dbbd85aa70ac206c5e4a4612f06ba0091e5253483635f486ccf9 5479e13e99f68f1f347283535f8098964f7fd4a34326ff36ad5711b2de1ab0d0
diff --git a/swift/ql/lib/codeql/swift/generated/UnspecifiedElement.qll b/swift/ql/lib/codeql/swift/generated/UnspecifiedElement.qll
index 2658e63164a..c37d4d35515 100644
--- a/swift/ql/lib/codeql/swift/generated/UnspecifiedElement.qll
+++ b/swift/ql/lib/codeql/swift/generated/UnspecifiedElement.qll
@@ -5,9 +5,6 @@ import codeql.swift.elements.Element
 import codeql.swift.elements.ErrorElement
 
 module Generated {
-  /**
-   * bla
-   */
   class UnspecifiedElement extends Synth::TUnspecifiedElement, ErrorElement {
     override string getAPrimaryQlClass() { result = "UnspecifiedElement" }
 
diff --git a/swift/schema.py b/swift/schema.py
index 3148a43f67b..3162c1277e0 100644
--- a/swift/schema.py
+++ b/swift/schema.py
@@ -40,7 +40,6 @@ class ErrorElement(Locatable):
 
 @use_for_null
 class UnspecifiedElement(ErrorElement):
-    """bla"""
     parent: optional[Element]
     property: string
     index: optional[int]

From f6bc88471a968fe9c09a4f06dc785045fe24d771 Mon Sep 17 00:00:00 2001
From: Karim Ali <karim.ali@ualberta.ca>
Date: Wed, 30 Nov 2022 16:34:24 +0200
Subject: [PATCH 0884/1420] update the expected output for CWE-079

Now that we have support for taint through fields of String, we can now detect certain flows that we previously marked as [NOT DETECTED]. This commit updates the expected output of CWE-079 (and the in-code annotation of the accompanying test case) to reflect that update.
---
 .../CWE-079/UnsafeWebViewFetch.expected       | 25 +++++++++++++++++++
 .../Security/CWE-079/UnsafeWebViewFetch.swift |  4 +--
 2 files changed, 27 insertions(+), 2 deletions(-)

diff --git a/swift/ql/test/query-tests/Security/CWE-079/UnsafeWebViewFetch.expected b/swift/ql/test/query-tests/Security/CWE-079/UnsafeWebViewFetch.expected
index 66ef1d4cb4e..8f7d3cd0a9f 100644
--- a/swift/ql/test/query-tests/Security/CWE-079/UnsafeWebViewFetch.expected
+++ b/swift/ql/test/query-tests/Security/CWE-079/UnsafeWebViewFetch.expected
@@ -1,6 +1,7 @@
 edges
 | UnsafeWebViewFetch.swift:10:2:10:25 | [summary param] 0 in init(string:) :  | file://:0:0:0:0 | [summary] to write: return (return) in init(string:) :  |
 | UnsafeWebViewFetch.swift:11:2:11:43 | [summary param] 1 in init(string:relativeTo:) :  | file://:0:0:0:0 | [summary] to write: return (return) in init(string:relativeTo:) :  |
+| UnsafeWebViewFetch.swift:43:5:43:29 | [summary param] 0 in init(_:) :  | file://:0:0:0:0 | [summary] to write: return (return) in init(_:) :  |
 | UnsafeWebViewFetch.swift:94:10:94:37 | try ... :  | UnsafeWebViewFetch.swift:117:21:117:35 | call to getRemoteData() :  |
 | UnsafeWebViewFetch.swift:94:10:94:37 | try ... :  | UnsafeWebViewFetch.swift:120:25:120:39 | call to getRemoteData() |
 | UnsafeWebViewFetch.swift:94:10:94:37 | try ... :  | UnsafeWebViewFetch.swift:164:21:164:35 | call to getRemoteData() :  |
@@ -18,6 +19,7 @@ edges
 | UnsafeWebViewFetch.swift:117:21:117:35 | call to getRemoteData() :  | UnsafeWebViewFetch.swift:137:25:137:25 | remoteString |
 | UnsafeWebViewFetch.swift:117:21:117:35 | call to getRemoteData() :  | UnsafeWebViewFetch.swift:139:25:139:25 | remoteString |
 | UnsafeWebViewFetch.swift:117:21:117:35 | call to getRemoteData() :  | UnsafeWebViewFetch.swift:141:25:141:25 | remoteString |
+| UnsafeWebViewFetch.swift:117:21:117:35 | call to getRemoteData() :  | UnsafeWebViewFetch.swift:150:24:150:37 | .utf8 :  |
 | UnsafeWebViewFetch.swift:131:18:131:42 | call to init(string:) :  | UnsafeWebViewFetch.swift:132:52:132:52 | remoteURL :  |
 | UnsafeWebViewFetch.swift:131:18:131:42 | call to init(string:) :  | UnsafeWebViewFetch.swift:138:47:138:56 | ...! |
 | UnsafeWebViewFetch.swift:131:18:131:42 | call to init(string:) :  | UnsafeWebViewFetch.swift:139:48:139:57 | ...! |
@@ -29,6 +31,10 @@ edges
 | UnsafeWebViewFetch.swift:132:19:132:61 | call to init(string:relativeTo:) :  | UnsafeWebViewFetch.swift:141:48:141:58 | ...! |
 | UnsafeWebViewFetch.swift:132:52:132:52 | remoteURL :  | UnsafeWebViewFetch.swift:11:2:11:43 | [summary param] 1 in init(string:relativeTo:) :  |
 | UnsafeWebViewFetch.swift:132:52:132:52 | remoteURL :  | UnsafeWebViewFetch.swift:132:19:132:61 | call to init(string:relativeTo:) :  |
+| UnsafeWebViewFetch.swift:150:19:150:41 | call to init(_:) :  | UnsafeWebViewFetch.swift:152:15:152:15 | remoteData |
+| UnsafeWebViewFetch.swift:150:19:150:41 | call to init(_:) :  | UnsafeWebViewFetch.swift:154:15:154:15 | remoteData |
+| UnsafeWebViewFetch.swift:150:24:150:37 | .utf8 :  | UnsafeWebViewFetch.swift:43:5:43:29 | [summary param] 0 in init(_:) :  |
+| UnsafeWebViewFetch.swift:150:24:150:37 | .utf8 :  | UnsafeWebViewFetch.swift:150:19:150:41 | call to init(_:) :  |
 | UnsafeWebViewFetch.swift:164:21:164:35 | call to getRemoteData() :  | UnsafeWebViewFetch.swift:168:25:168:25 | remoteString |
 | UnsafeWebViewFetch.swift:164:21:164:35 | call to getRemoteData() :  | UnsafeWebViewFetch.swift:171:25:171:51 | ... .+(_:_:) ... |
 | UnsafeWebViewFetch.swift:164:21:164:35 | call to getRemoteData() :  | UnsafeWebViewFetch.swift:174:25:174:25 | "..." |
@@ -37,6 +43,7 @@ edges
 | UnsafeWebViewFetch.swift:164:21:164:35 | call to getRemoteData() :  | UnsafeWebViewFetch.swift:184:25:184:25 | remoteString |
 | UnsafeWebViewFetch.swift:164:21:164:35 | call to getRemoteData() :  | UnsafeWebViewFetch.swift:186:25:186:25 | remoteString |
 | UnsafeWebViewFetch.swift:164:21:164:35 | call to getRemoteData() :  | UnsafeWebViewFetch.swift:188:25:188:25 | remoteString |
+| UnsafeWebViewFetch.swift:164:21:164:35 | call to getRemoteData() :  | UnsafeWebViewFetch.swift:197:24:197:37 | .utf8 :  |
 | UnsafeWebViewFetch.swift:178:18:178:42 | call to init(string:) :  | UnsafeWebViewFetch.swift:179:52:179:52 | remoteURL :  |
 | UnsafeWebViewFetch.swift:178:18:178:42 | call to init(string:) :  | UnsafeWebViewFetch.swift:185:47:185:56 | ...! |
 | UnsafeWebViewFetch.swift:178:18:178:42 | call to init(string:) :  | UnsafeWebViewFetch.swift:186:48:186:57 | ...! |
@@ -48,11 +55,16 @@ edges
 | UnsafeWebViewFetch.swift:179:19:179:61 | call to init(string:relativeTo:) :  | UnsafeWebViewFetch.swift:188:48:188:58 | ...! |
 | UnsafeWebViewFetch.swift:179:52:179:52 | remoteURL :  | UnsafeWebViewFetch.swift:11:2:11:43 | [summary param] 1 in init(string:relativeTo:) :  |
 | UnsafeWebViewFetch.swift:179:52:179:52 | remoteURL :  | UnsafeWebViewFetch.swift:179:19:179:61 | call to init(string:relativeTo:) :  |
+| UnsafeWebViewFetch.swift:197:19:197:41 | call to init(_:) :  | UnsafeWebViewFetch.swift:199:15:199:15 | remoteData |
+| UnsafeWebViewFetch.swift:197:19:197:41 | call to init(_:) :  | UnsafeWebViewFetch.swift:201:15:201:15 | remoteData |
+| UnsafeWebViewFetch.swift:197:24:197:37 | .utf8 :  | UnsafeWebViewFetch.swift:43:5:43:29 | [summary param] 0 in init(_:) :  |
+| UnsafeWebViewFetch.swift:197:24:197:37 | .utf8 :  | UnsafeWebViewFetch.swift:197:19:197:41 | call to init(_:) :  |
 | UnsafeWebViewFetch.swift:206:17:206:31 | call to getRemoteData() :  | UnsafeWebViewFetch.swift:210:25:210:25 | htmlData |
 | UnsafeWebViewFetch.swift:206:17:206:31 | call to getRemoteData() :  | UnsafeWebViewFetch.swift:211:25:211:25 | htmlData |
 nodes
 | UnsafeWebViewFetch.swift:10:2:10:25 | [summary param] 0 in init(string:) :  | semmle.label | [summary param] 0 in init(string:) :  |
 | UnsafeWebViewFetch.swift:11:2:11:43 | [summary param] 1 in init(string:relativeTo:) :  | semmle.label | [summary param] 1 in init(string:relativeTo:) :  |
+| UnsafeWebViewFetch.swift:43:5:43:29 | [summary param] 0 in init(_:) :  | semmle.label | [summary param] 0 in init(_:) :  |
 | UnsafeWebViewFetch.swift:94:10:94:37 | try ... :  | semmle.label | try ... :  |
 | UnsafeWebViewFetch.swift:94:14:94:37 | call to init(contentsOf:) :  | semmle.label | call to init(contentsOf:) :  |
 | UnsafeWebViewFetch.swift:103:25:103:84 | try! ... | semmle.label | try! ... |
@@ -78,7 +90,11 @@ nodes
 | UnsafeWebViewFetch.swift:140:47:140:57 | ...! | semmle.label | ...! |
 | UnsafeWebViewFetch.swift:141:25:141:25 | remoteString | semmle.label | remoteString |
 | UnsafeWebViewFetch.swift:141:48:141:58 | ...! | semmle.label | ...! |
+| UnsafeWebViewFetch.swift:150:19:150:41 | call to init(_:) :  | semmle.label | call to init(_:) :  |
+| UnsafeWebViewFetch.swift:150:24:150:37 | .utf8 :  | semmle.label | .utf8 :  |
+| UnsafeWebViewFetch.swift:152:15:152:15 | remoteData | semmle.label | remoteData |
 | UnsafeWebViewFetch.swift:153:85:153:94 | ...! | semmle.label | ...! |
+| UnsafeWebViewFetch.swift:154:15:154:15 | remoteData | semmle.label | remoteData |
 | UnsafeWebViewFetch.swift:154:86:154:95 | ...! | semmle.label | ...! |
 | UnsafeWebViewFetch.swift:164:21:164:35 | call to getRemoteData() :  | semmle.label | call to getRemoteData() :  |
 | UnsafeWebViewFetch.swift:167:25:167:39 | call to getRemoteData() | semmle.label | call to getRemoteData() |
@@ -97,18 +113,25 @@ nodes
 | UnsafeWebViewFetch.swift:187:47:187:57 | ...! | semmle.label | ...! |
 | UnsafeWebViewFetch.swift:188:25:188:25 | remoteString | semmle.label | remoteString |
 | UnsafeWebViewFetch.swift:188:48:188:58 | ...! | semmle.label | ...! |
+| UnsafeWebViewFetch.swift:197:19:197:41 | call to init(_:) :  | semmle.label | call to init(_:) :  |
+| UnsafeWebViewFetch.swift:197:24:197:37 | .utf8 :  | semmle.label | .utf8 :  |
+| UnsafeWebViewFetch.swift:199:15:199:15 | remoteData | semmle.label | remoteData |
 | UnsafeWebViewFetch.swift:200:90:200:99 | ...! | semmle.label | ...! |
+| UnsafeWebViewFetch.swift:201:15:201:15 | remoteData | semmle.label | remoteData |
 | UnsafeWebViewFetch.swift:201:91:201:100 | ...! | semmle.label | ...! |
 | UnsafeWebViewFetch.swift:206:17:206:31 | call to getRemoteData() :  | semmle.label | call to getRemoteData() :  |
 | UnsafeWebViewFetch.swift:210:25:210:25 | htmlData | semmle.label | htmlData |
 | UnsafeWebViewFetch.swift:211:25:211:25 | htmlData | semmle.label | htmlData |
+| file://:0:0:0:0 | [summary] to write: return (return) in init(_:) :  | semmle.label | [summary] to write: return (return) in init(_:) :  |
 | file://:0:0:0:0 | [summary] to write: return (return) in init(string:) :  | semmle.label | [summary] to write: return (return) in init(string:) :  |
 | file://:0:0:0:0 | [summary] to write: return (return) in init(string:relativeTo:) :  | semmle.label | [summary] to write: return (return) in init(string:relativeTo:) :  |
 subpaths
 | UnsafeWebViewFetch.swift:131:30:131:30 | remoteString :  | UnsafeWebViewFetch.swift:10:2:10:25 | [summary param] 0 in init(string:) :  | file://:0:0:0:0 | [summary] to write: return (return) in init(string:) :  | UnsafeWebViewFetch.swift:131:18:131:42 | call to init(string:) :  |
 | UnsafeWebViewFetch.swift:132:52:132:52 | remoteURL :  | UnsafeWebViewFetch.swift:11:2:11:43 | [summary param] 1 in init(string:relativeTo:) :  | file://:0:0:0:0 | [summary] to write: return (return) in init(string:relativeTo:) :  | UnsafeWebViewFetch.swift:132:19:132:61 | call to init(string:relativeTo:) :  |
+| UnsafeWebViewFetch.swift:150:24:150:37 | .utf8 :  | UnsafeWebViewFetch.swift:43:5:43:29 | [summary param] 0 in init(_:) :  | file://:0:0:0:0 | [summary] to write: return (return) in init(_:) :  | UnsafeWebViewFetch.swift:150:19:150:41 | call to init(_:) :  |
 | UnsafeWebViewFetch.swift:178:30:178:30 | remoteString :  | UnsafeWebViewFetch.swift:10:2:10:25 | [summary param] 0 in init(string:) :  | file://:0:0:0:0 | [summary] to write: return (return) in init(string:) :  | UnsafeWebViewFetch.swift:178:18:178:42 | call to init(string:) :  |
 | UnsafeWebViewFetch.swift:179:52:179:52 | remoteURL :  | UnsafeWebViewFetch.swift:11:2:11:43 | [summary param] 1 in init(string:relativeTo:) :  | file://:0:0:0:0 | [summary] to write: return (return) in init(string:relativeTo:) :  | UnsafeWebViewFetch.swift:179:19:179:61 | call to init(string:relativeTo:) :  |
+| UnsafeWebViewFetch.swift:197:24:197:37 | .utf8 :  | UnsafeWebViewFetch.swift:43:5:43:29 | [summary param] 0 in init(_:) :  | file://:0:0:0:0 | [summary] to write: return (return) in init(_:) :  | UnsafeWebViewFetch.swift:197:19:197:41 | call to init(_:) :  |
 #select
 | UnsafeWebViewFetch.swift:103:25:103:84 | try! ... | UnsafeWebViewFetch.swift:103:30:103:84 | call to init(contentsOf:) :  | UnsafeWebViewFetch.swift:103:25:103:84 | try! ... | Tainted data is used in a WebView fetch without restricting the base URL. |
 | UnsafeWebViewFetch.swift:106:25:106:25 | data | UnsafeWebViewFetch.swift:105:18:105:72 | call to init(contentsOf:) :  | UnsafeWebViewFetch.swift:106:25:106:25 | data | Tainted data is used in a WebView fetch without restricting the base URL. |
@@ -119,10 +142,12 @@ subpaths
 | UnsafeWebViewFetch.swift:127:25:127:25 | "..." | UnsafeWebViewFetch.swift:94:14:94:37 | call to init(contentsOf:) :  | UnsafeWebViewFetch.swift:127:25:127:25 | "..." | Tainted data is used in a WebView fetch without restricting the base URL. |
 | UnsafeWebViewFetch.swift:139:25:139:25 | remoteString | UnsafeWebViewFetch.swift:94:14:94:37 | call to init(contentsOf:) :  | UnsafeWebViewFetch.swift:139:25:139:25 | remoteString | Tainted data is used in a WebView fetch with a tainted base URL. |
 | UnsafeWebViewFetch.swift:141:25:141:25 | remoteString | UnsafeWebViewFetch.swift:94:14:94:37 | call to init(contentsOf:) :  | UnsafeWebViewFetch.swift:141:25:141:25 | remoteString | Tainted data is used in a WebView fetch with a tainted base URL. |
+| UnsafeWebViewFetch.swift:154:15:154:15 | remoteData | UnsafeWebViewFetch.swift:94:14:94:37 | call to init(contentsOf:) :  | UnsafeWebViewFetch.swift:154:15:154:15 | remoteData | Tainted data is used in a WebView fetch with a tainted base URL. |
 | UnsafeWebViewFetch.swift:167:25:167:39 | call to getRemoteData() | UnsafeWebViewFetch.swift:94:14:94:37 | call to init(contentsOf:) :  | UnsafeWebViewFetch.swift:167:25:167:39 | call to getRemoteData() | Tainted data is used in a WebView fetch without restricting the base URL. |
 | UnsafeWebViewFetch.swift:168:25:168:25 | remoteString | UnsafeWebViewFetch.swift:94:14:94:37 | call to init(contentsOf:) :  | UnsafeWebViewFetch.swift:168:25:168:25 | remoteString | Tainted data is used in a WebView fetch without restricting the base URL. |
 | UnsafeWebViewFetch.swift:171:25:171:51 | ... .+(_:_:) ... | UnsafeWebViewFetch.swift:94:14:94:37 | call to init(contentsOf:) :  | UnsafeWebViewFetch.swift:171:25:171:51 | ... .+(_:_:) ... | Tainted data is used in a WebView fetch without restricting the base URL. |
 | UnsafeWebViewFetch.swift:174:25:174:25 | "..." | UnsafeWebViewFetch.swift:94:14:94:37 | call to init(contentsOf:) :  | UnsafeWebViewFetch.swift:174:25:174:25 | "..." | Tainted data is used in a WebView fetch without restricting the base URL. |
 | UnsafeWebViewFetch.swift:186:25:186:25 | remoteString | UnsafeWebViewFetch.swift:94:14:94:37 | call to init(contentsOf:) :  | UnsafeWebViewFetch.swift:186:25:186:25 | remoteString | Tainted data is used in a WebView fetch with a tainted base URL. |
 | UnsafeWebViewFetch.swift:188:25:188:25 | remoteString | UnsafeWebViewFetch.swift:94:14:94:37 | call to init(contentsOf:) :  | UnsafeWebViewFetch.swift:188:25:188:25 | remoteString | Tainted data is used in a WebView fetch with a tainted base URL. |
+| UnsafeWebViewFetch.swift:201:15:201:15 | remoteData | UnsafeWebViewFetch.swift:94:14:94:37 | call to init(contentsOf:) :  | UnsafeWebViewFetch.swift:201:15:201:15 | remoteData | Tainted data is used in a WebView fetch with a tainted base URL. |
 | UnsafeWebViewFetch.swift:210:25:210:25 | htmlData | UnsafeWebViewFetch.swift:94:14:94:37 | call to init(contentsOf:) :  | UnsafeWebViewFetch.swift:210:25:210:25 | htmlData | Tainted data is used in a WebView fetch without restricting the base URL. |
diff --git a/swift/ql/test/query-tests/Security/CWE-079/UnsafeWebViewFetch.swift b/swift/ql/test/query-tests/Security/CWE-079/UnsafeWebViewFetch.swift
index 2555e23758d..1b687ade014 100644
--- a/swift/ql/test/query-tests/Security/CWE-079/UnsafeWebViewFetch.swift
+++ b/swift/ql/test/query-tests/Security/CWE-079/UnsafeWebViewFetch.swift
@@ -151,7 +151,7 @@ func testUIWebView() {
 	webview.load(localData, mimeType: "text/html", textEncodingName: "utf-8", baseURL: localSafeURL!) // GOOD: the data is local
 	webview.load(remoteData, mimeType: "text/html", textEncodingName: "utf-8", baseURL: localSafeURL!) // GOOD: a safe baseURL is specified
 	webview.load(localData, mimeType: "text/html", textEncodingName: "utf-8", baseURL: remoteURL!) // GOOD: the HTML data is local
-	webview.load(remoteData, mimeType: "text/html", textEncodingName: "utf-8", baseURL: remoteURL!) // BAD [NOT DETECTED]
+	webview.load(remoteData, mimeType: "text/html", textEncodingName: "utf-8", baseURL: remoteURL!) // BAD
 }
 
 func testWKWebView() {
@@ -198,7 +198,7 @@ func testWKWebView() {
 	webview.load(localData, mimeType: "text/html", characterEncodingName: "utf-8", baseURL: localSafeURL!) // GOOD: the data is local
 	webview.load(remoteData, mimeType: "text/html", characterEncodingName: "utf-8", baseURL: localSafeURL!) // GOOD: a safe baseURL is specified
 	webview.load(localData, mimeType: "text/html", characterEncodingName: "utf-8", baseURL: remoteURL!) // GOOD: the HTML data is local
-	webview.load(remoteData, mimeType: "text/html", characterEncodingName: "utf-8", baseURL: remoteURL!) // BAD [NOT DETECTED]
+	webview.load(remoteData, mimeType: "text/html", characterEncodingName: "utf-8", baseURL: remoteURL!) // BAD
 }
 
 func testQHelpExamples() {

From 0bfe502bb04ff075935e35752c684429183a5028 Mon Sep 17 00:00:00 2001
From: Alex Denisov <alexdenisov@github.com>
Date: Wed, 30 Nov 2022 15:12:55 +0100
Subject: [PATCH 0885/1420] Swift: remove patches from the extractor

Moved elsewhere https://github.com/dsp-testing/codeql-swift-artifacts/pull/3
---
 misc/bazel/workspace.bzl                              | 10 +++-------
 swift/extractor/infra/SwiftDispatcher.h               | 11 -----------
 .../patches/remove_getFallthrougDest_assert.patch     | 11 -----------
 3 files changed, 3 insertions(+), 29 deletions(-)
 delete mode 100644 swift/third_party/swift-llvm-support/patches/remove_getFallthrougDest_assert.patch

diff --git a/misc/bazel/workspace.bzl b/misc/bazel/workspace.bzl
index df5995b499b..d0aee216668 100644
--- a/misc/bazel/workspace.bzl
+++ b/misc/bazel/workspace.bzl
@@ -1,10 +1,10 @@
 load("@bazel_tools//tools/build_defs/repo:http.bzl", "http_archive")
 load("@bazel_tools//tools/build_defs/repo:utils.bzl", "maybe")
 
-_swift_prebuilt_version = "swift-5.7.1-RELEASE.44356.85"
+_swift_prebuilt_version = "swift-5.7.1-RELEASE.44428.89"
 _swift_sha_map = {
-    "Linux-X64": "c9f17e13cac89f097aaaa65b1bc32aac566c8e4f3b68fc18e970cc3ee31f4913",
-    "macOS-X64": "638ac0552e9e1ccee9e276525d1ea9454256feec20bc778efa8856fd6e506987",
+    "Linux-X64": "1fa0b62b3a87c6528bd21b3f3fa1b32ad00e2b6ff04c20652c93c7d00c4cf517",
+    "macOS-X64": "6e1239335874cbde635ae9ca9eeb215efee4988888a75f4eda1abbcf97e4d038",
 }
 
 _swift_arch_map = {
@@ -22,10 +22,6 @@ def codeql_workspace(repository_name = "codeql"):
                 _swift_prebuilt_version,
                 repo_arch,
             ),
-            patches = [
-                "@%s//swift/third_party/swift-llvm-support:patches/remove_getFallthrougDest_assert.patch" % repository_name,
-            ],
-            patch_args = ["-p1"],
             build_file = "@%s//swift/third_party/swift-llvm-support:BUILD.swift-prebuilt.bazel" % repository_name,
             sha256 = sha256,
         )
diff --git a/swift/extractor/infra/SwiftDispatcher.h b/swift/extractor/infra/SwiftDispatcher.h
index 0175bba1e6b..991511e300c 100644
--- a/swift/extractor/infra/SwiftDispatcher.h
+++ b/swift/extractor/infra/SwiftDispatcher.h
@@ -215,17 +215,6 @@ class SwiftDispatcher {
   // Emits a Location TRAP entry and attaches it to a `Locatable` trap label
   template <typename Locatable>
   void attachLocation(Locatable* locatable, TrapLabel<LocatableTag> locatableLabel) {
-    // Swift 5.7.1 causing a crash when the Swift compiler uses .back() of and empty
-    // getPatternList() when getting the source location.
-    // So far this only observed with the entities coming from precompiled modules, so they
-    // should not have locations anyway.
-    if constexpr (std::is_base_of<swift::Decl, Locatable>::value) {
-      if (auto* decl = llvm::dyn_cast<swift::PatternBindingDecl>(locatable)) {
-        if (decl->getPatternList().empty()) {
-          return;
-        }
-      }
-    }
     attachLocation(locatable->getStartLoc(), locatable->getEndLoc(), locatableLabel);
   }
 
diff --git a/swift/third_party/swift-llvm-support/patches/remove_getFallthrougDest_assert.patch b/swift/third_party/swift-llvm-support/patches/remove_getFallthrougDest_assert.patch
deleted file mode 100644
index c16942a807c..00000000000
--- a/swift/third_party/swift-llvm-support/patches/remove_getFallthrougDest_assert.patch
+++ /dev/null
@@ -1,11 +0,0 @@
-diff -ru a/include/swift/AST/Stmt.h b/include/swift/AST/Stmt.h
---- a/include/swift/AST/Stmt.h	2022-09-21 12:56:54.000000000 +0200
-+++ b/include/swift/AST/Stmt.h	2022-11-04 14:39:18.407971007 +0100
-@@ -920,7 +920,6 @@
-   /// Get the CaseStmt block to which the fallthrough transfers control.
-   /// Set during Sema.
-   CaseStmt *getFallthroughDest() const {
--    assert(FallthroughDest && "fallthrough dest is not set until Sema");
-     return FallthroughDest;
-   }
-   void setFallthroughDest(CaseStmt *C) {

From cddc9db690cc7fe416af351825ad005c89de1e41 Mon Sep 17 00:00:00 2001
From: erik-krogh <erik-krogh@github.com>
Date: Wed, 30 Nov 2022 15:46:46 +0100
Subject: [PATCH 0886/1420] change back to the old order of extracting externs
 before Xml

---
 javascript/extractor/src/com/semmle/js/extractor/AutoBuild.java | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/javascript/extractor/src/com/semmle/js/extractor/AutoBuild.java b/javascript/extractor/src/com/semmle/js/extractor/AutoBuild.java
index 883b6efb859..445f1116ec7 100644
--- a/javascript/extractor/src/com/semmle/js/extractor/AutoBuild.java
+++ b/javascript/extractor/src/com/semmle/js/extractor/AutoBuild.java
@@ -447,10 +447,10 @@ public class AutoBuild {
     startThreadPool();
     try {
       extractSource();
-      extractXml();
       if (hasSeenCode()) { // don't bother with the externs if no code was seen
         extractExterns();
       }
+      extractXml();
     } finally {
       shutdownThreadPool();
     }

From d958a62bf20d6c2ab203fe186944066ad51f49f2 Mon Sep 17 00:00:00 2001
From: Tony Torralba <atorralba@users.noreply.github.com>
Date: Wed, 30 Nov 2022 16:19:55 +0100
Subject: [PATCH 0887/1420] Fix expectations in data.swift

---
 .../ql/test/library-tests/dataflow/taint/TaintInline.expected | 2 --
 swift/ql/test/library-tests/dataflow/taint/data.swift         | 4 ++--
 2 files changed, 2 insertions(+), 4 deletions(-)

diff --git a/swift/ql/test/library-tests/dataflow/taint/TaintInline.expected b/swift/ql/test/library-tests/dataflow/taint/TaintInline.expected
index 3e49fbfe3af..e69de29bb2d 100644
--- a/swift/ql/test/library-tests/dataflow/taint/TaintInline.expected
+++ b/swift/ql/test/library-tests/dataflow/taint/TaintInline.expected
@@ -1,2 +0,0 @@
-| data.swift:85:12:85:12 | dataTainted | Fixed missing result:tainted=81 |
-| data.swift:86:12:86:12 | dataTainted2 | Fixed missing result:tainted=81 |
\ No newline at end of file
diff --git a/swift/ql/test/library-tests/dataflow/taint/data.swift b/swift/ql/test/library-tests/dataflow/taint/data.swift
index 2fdc4e1c949..d4a5178a9bd 100644
--- a/swift/ql/test/library-tests/dataflow/taint/data.swift
+++ b/swift/ql/test/library-tests/dataflow/taint/data.swift
@@ -82,8 +82,8 @@ func taintThroughData() {
 	let dataTainted2 = Data(dataTainted)
 
 	sink(arg: dataClean)
-	sink(arg: dataTainted) // $ MISSING: tainted=81
-	sink(arg: dataTainted2) // $ MISSING: tainted=81
+	sink(arg: dataTainted) // $ tainted=81
+	sink(arg: dataTainted2) // $ tainted=81
 
 	// ";Data;true;init(base64Encoded:options:);;;Argument[0];ReturnValue;taint",
 	let dataTainted3 = Data(base64Encoded: source() as! Data, options: [])

From 3e1d49ad8008006cc0bc4ee74d89813dd16fff24 Mon Sep 17 00:00:00 2001
From: Felicity Chapman <felicitymay@github.com>
Date: Wed, 30 Nov 2022 15:38:58 +0000
Subject: [PATCH 0888/1420] First draft update tutorials

---
 .../reusables/setup-to-run-tutorials.rst      |   1 +
 .../catch-the-fire-starter.rst                |  66 +++++-
 .../cross-the-river.rst                       |  33 ++-
 .../crown-the-rightful-heir.rst               |  48 +++-
 .../writing-codeql-queries/find-the-thief.rst |  64 +++++-
 .../river-answer-1-path.ql                    | 115 ++++++++++
 .../river-answer-2-abstract-class.ql          | 205 ++++++++++++++++++
 .../river-answer-3-datatypes.ql               | 172 +++++++++++++++
 8 files changed, 679 insertions(+), 25 deletions(-)
 create mode 100644 docs/codeql/reusables/setup-to-run-tutorials.rst
 create mode 100644 docs/codeql/writing-codeql-queries/river-answer-1-path.ql
 create mode 100644 docs/codeql/writing-codeql-queries/river-answer-2-abstract-class.ql
 create mode 100644 docs/codeql/writing-codeql-queries/river-answer-3-datatypes.ql

diff --git a/docs/codeql/reusables/setup-to-run-tutorials.rst b/docs/codeql/reusables/setup-to-run-tutorials.rst
new file mode 100644
index 00000000000..de761968d8a
--- /dev/null
+++ b/docs/codeql/reusables/setup-to-run-tutorials.rst
@@ -0,0 +1 @@
+For information about installing the CodeQL extension for Visual Studio code, see ":ref:`Setting up CodeQL in Visual Studio Code <setting-up-codeql-in-visual-studio-code>`."
diff --git a/docs/codeql/writing-codeql-queries/catch-the-fire-starter.rst b/docs/codeql/writing-codeql-queries/catch-the-fire-starter.rst
index 60840e8bc9f..4cd9bb2ede8 100644
--- a/docs/codeql/writing-codeql-queries/catch-the-fire-starter.rst
+++ b/docs/codeql/writing-codeql-queries/catch-the-fire-starter.rst
@@ -105,7 +105,7 @@ Now try applying ``isAllowedIn(string region)`` to a person ``p``. If ``p`` is n
 
 You know that the fire starters live in the south *and* that they must have been able to travel to the north. Write a query to find the possible suspects. You could also extend the ``select`` clause to list the age of the suspects. That way you can clearly see that all the children have been excluded from the list.
 
-➤ `See the answer in the query console on LGTM.com <https://lgtm.com/query/2551838470440192723/>`__
+➤ `Check your answer <#exercise-1>`__
 
 You can now continue to gather more clues and find out which of your suspects started the fire...
 
@@ -142,7 +142,7 @@ The predicate ``isBald`` is defined to take a ``Person``, so it can also take a
 
 You can now write a query to select the bald southerners who are allowed into the north.
 
-➤ `See the answer in the query console on LGTM.com <https://lgtm.com/query/2572701606358725253/>`__
+➤ `Check your answer <#exercise-2>`__
 
 You have found the two fire starters! They are arrested and the villagers are once again impressed with your work.
 
@@ -150,3 +150,65 @@ Further reading
 ---------------
 
 .. include:: ../reusables/codeql-ref-tools-further-reading.rst
+
+--------------
+
+Answers
+-------
+
+In these answers, we use ``/*`` and ``*/`` to label the different parts of the query. Any text surrounded by ``/*`` and ``*/`` is not evaluated as part of the QL code, but is treated as a *comment*.
+
+Exercise 1
+~~~~~~~~~~
+
+.. code-block:: ql
+
+   import tutorial
+
+   predicate isSouthern(Person p) { p.getLocation() = "south" }
+
+   class Southerner extends Person {
+   /* the characteristic predicate */
+   Southerner() { isSouthern(this) }
+   }
+
+   class Child extends Person {
+   /* the characteristic predicate */
+   Child() { this.getAge() < 10 }
+
+   /* a member predicate */
+   override predicate isAllowedIn(string region) { region = this.getLocation() }
+   }
+
+   from Southerner s
+   where s.isAllowedIn("north")
+   select s, s.getAge()
+
+Exercise 2
+~~~~~~~~~~
+
+.. code-block:: ql
+
+   import tutorial
+
+   predicate isSouthern(Person p) { p.getLocation() = "south" }
+
+   class Southerner extends Person {
+   /* the characteristic predicate */
+   Southerner() { isSouthern(this) }
+   }
+
+   class Child extends Person {
+   /* the characteristic predicate */
+   Child() { this.getAge() < 10 }
+
+   /* a member predicate */
+   override predicate isAllowedIn(string region) { region = this.getLocation() }
+   }
+
+   predicate isBald(Person p) { not exists(string c | p.getHairColor() = c) }
+
+   from Southerner s
+   where s.isAllowedIn("north") and isBald(s)
+   select s
+
diff --git a/docs/codeql/writing-codeql-queries/cross-the-river.rst b/docs/codeql/writing-codeql-queries/cross-the-river.rst
index c94806f90e9..f688afe30e1 100644
--- a/docs/codeql/writing-codeql-queries/cross-the-river.rst
+++ b/docs/codeql/writing-codeql-queries/cross-the-river.rst
@@ -260,21 +260,34 @@ Alternative solutions
 
 Here are some more example queries that solve the river crossing puzzle:
 
-  #. This query uses a modified ``path`` variable to describe the resulting path in
-     more detail.
+.. container:: toggle
 
-     ➤ `See solution in the query console on LGTM.com <https://lgtm.com/query/659603593702729237/>`__
+   .. container:: name
 
-  #. This query models the man and the cargo items in a different way, using an 
-     :ref:`abstract <abstract>`
-     class and predicate. It also displays the resulting path in a more visual way.
+      *Show/hide eaxmple query - modified path*
 
-     ➤ `See solution in the query console on LGTM.com <https://lgtm.com/query/1025323464423811143/>`__
+   .. literalinclude:: river-answer-1-path.ql
+      :language: ql
 
-  #. This query introduces :ref:`algebraic datatypes <algebraic-datatypes>`
-     to model the situation, instead of defining everything as a subclass of ``string``.
 
-     ➤ `See solution in the query console on LGTM.com <https://lgtm.com/query/7260748307619718263/>`__
+.. container:: toggle
+
+   .. container:: name
+
+      *Show/hide eaxmple query - abstract class*
+
+   .. literalinclude:: river-answer-2-abstract-class.ql
+      :language: ql
+
+
+.. container:: toggle
+
+   .. container:: name
+
+      *Show/hide eaxmple query - datatypes*
+
+   .. literalinclude:: river-answer-3-datatypes.ql
+      :language: ql
 
 Further reading
 ---------------
diff --git a/docs/codeql/writing-codeql-queries/crown-the-rightful-heir.rst b/docs/codeql/writing-codeql-queries/crown-the-rightful-heir.rst
index a9a8ace0775..b0512fde26b 100644
--- a/docs/codeql/writing-codeql-queries/crown-the-rightful-heir.rst
+++ b/docs/codeql/writing-codeql-queries/crown-the-rightful-heir.rst
@@ -129,7 +129,7 @@ Here is one way to define ``relativeOf()``:
 
 Don't forget to use the predicate ``isDeceased()`` to find relatives that are still alive.
 
-➤ `See the answer in the query console on LGTM.com <https://lgtm.com/query/6710025057257064639/>`__
+➤ `Check your answer <#exercise-1>`__
 
 Select the true heir
 --------------------
@@ -142,7 +142,7 @@ To decide who should inherit the king's fortune, the villagers carefully read th
 
 As your final challenge, define a predicate ``hasCriminalRecord`` so that ``hasCriminalRecord(p)`` holds if ``p`` is any of the criminals you unmasked earlier (in the ":doc:`Find the thief <find-the-thief>`" and ":doc:`Catch the fire starter <catch-the-fire-starter>`" tutorials).
 
-➤ `See the answer in the query console on LGTM.com <https://lgtm.com/query/1820692755164273290/>`__
+➤ `Check your answer <#exercise-2>`__
 
 Experimental explorations
 -------------------------
@@ -164,3 +164,47 @@ Further reading
 ---------------
 
 .. include:: ../reusables/codeql-ref-tools-further-reading.rst
+
+--------------
+
+Answers
+-------
+
+In these answers, we use ``/*`` and ``*/`` to label the different parts of the query. Any text surrounded by ``/*`` and ``*/`` is not evaluated as part of the QL code, but is treated as a *comment*.
+
+Exercise 1
+~~~~~~~~~~
+
+.. code-block:: ql
+
+   import tutorial
+
+   Person relativeOf(Person p) { parentOf*(result) = parentOf*(p) }
+
+   from Person p
+   where
+   not p.isDeceased() and
+   p = relativeOf("King Basil")
+   select p
+
+Exercise 2
+~~~~~~~~~~
+
+.. code-block:: ql
+
+   import tutorial
+
+   Person relativeOf(Person p) { parentOf*(result) = parentOf*(p) }
+
+   predicate hasCriminalRecord(Person p) {
+   p = "Hester" or
+   p = "Hugh" or
+   p = "Charlie"
+   }
+
+   from Person p
+   where
+   not p.isDeceased() and
+   p = relativeOf("King Basil") and
+   not hasCriminalRecord(p)
+   select p
diff --git a/docs/codeql/writing-codeql-queries/find-the-thief.rst b/docs/codeql/writing-codeql-queries/find-the-thief.rst
index ff9ee49f5dc..fd992741dbe 100644
--- a/docs/codeql/writing-codeql-queries/find-the-thief.rst
+++ b/docs/codeql/writing-codeql-queries/find-the-thief.rst
@@ -50,9 +50,7 @@ You start asking some creative questions and making notes of the answers so you
 
 There is too much information to search through by hand, so you decide to use your newly acquired QL skills to help you with your investigation...
 
-#. Open the `query console on LGTM.com <https://lgtm.com/query>`__ to get started.
-#. Select a language and a demo project. For this tutorial, any language and project will do.
-#. Delete the default code ``import <language> select "hello world"``.
+.. include:: ../reusables/setup-to-run-tutorials.rst
 
 QL libraries
 ------------
@@ -209,13 +207,7 @@ Hints
 
 Once you have finished, you will have a list of possible suspects. One of those people must be the thief!
 
-➤ `See the answer in the query console on LGTM.com <https://lgtm.com/query/1505743955992/>`__
-
-.. pull-quote::
-
-   Note
-
-   In the answer, we used ``/*`` and ``*/`` to label the different parts of the query. Any text surrounded by ``/*`` and ``*/`` is not evaluated as part of the QL code, but is just a *comment*.
+➤ `Check your answer <#exercise-1>`__
 
 You are getting closer to solving the mystery! Unfortunately, you still have quite a long list of suspects... To find out which of your suspects is the thief, you must gather more information and refine your query in the next step.
 
@@ -291,9 +283,59 @@ You can now translate the remaining questions into QL:
 
 Have you found the thief?
 
-➤ `See the answer in the query console on LGTM.com <https://lgtm.com/query/1505744186085/>`__
+➤ `Check your answer <#exercise-2>`__
 
 Further reading
 ---------------
 
 .. include:: ../reusables/codeql-ref-tools-further-reading.rst
+
+
+--------------
+
+Answers
+-------
+
+In these answers, we use ``/*`` and ``*/`` to label the different parts of the query. Any text surrounded by ``/*`` and ``*/`` is not evaluated as part of the QL code, but is treated as a *comment*.
+
+Exercise 1
+^^^^^^^^^^
+
+.. code-block:: ql
+
+   import tutorial
+
+   from Person t
+   where
+   /* 1 */ t.getHeight() > 150 and
+   /* 2 */ not t.getHairColor() = "blond" and
+   /* 3 */ exists (string c | t.getHairColor() = c) and
+   /* 4 */ not t.getAge() < 30 and
+   /* 5 */ t.getLocation() = "east" and
+   /* 6 */ (t.getHairColor() = "black" or t.getHairColor() = "brown") and
+   /* 7 */ not (t.getHeight() > 180 and t.getHeight() < 190) and
+   /* 8 */ exists(Person p | p.getAge() > t.getAge())
+   select t
+
+Exercise 2
+^^^^^^^^^^
+
+.. code-block:: ql
+
+   import tutorial
+
+   from Person t
+   where
+   /* 1 */ t.getHeight() > 150 and
+   /* 2 */ not t.getHairColor() = "blond" and
+   /* 3 */ exists (string c | t.getHairColor() = c) and
+   /* 4 */ not t.getAge() < 30 and
+   /* 5 */ t.getLocation() = "east" and
+   /* 6 */ (t.getHairColor() = "black" or t.getHairColor() = "brown") and
+   /* 7 */ not (t.getHeight() > 180 and t.getHeight() < 190) and
+   /* 8 */ exists(Person p | p.getAge() > t.getAge()) and
+   /* 9 */ not t = max(Person p | | p order by p.getHeight()) and
+   /* 10 */ t.getHeight() < avg(float i | exists(Person p | p.getHeight() = i) | i) and
+   /* 11 */ t = max(Person p | p.getLocation() = "east" | p order by p.getAge())
+   select "The thief is " + t + "!"
+   
\ No newline at end of file
diff --git a/docs/codeql/writing-codeql-queries/river-answer-1-path.ql b/docs/codeql/writing-codeql-queries/river-answer-1-path.ql
new file mode 100644
index 00000000000..a951f65ab04
--- /dev/null
+++ b/docs/codeql/writing-codeql-queries/river-answer-1-path.ql
@@ -0,0 +1,115 @@
+/**
+ * A solution to the river crossing puzzle using a modified `path` variable
+ * to describe the resulting path in detail.
+ */
+
+/** A possible cargo item. */
+class Cargo extends string {
+    Cargo() {
+      this = "Nothing" or
+      this = "Goat" or
+      this = "Cabbage" or
+      this = "Wolf"
+    }
+  }
+  
+  /** One of two shores. */
+  class Shore extends string {
+    Shore() {
+      this = "Left" or
+      this = "Right"
+    }
+  
+    /** Returns the other shore. */
+    Shore other() {
+      this = "Left" and result = "Right"
+      or
+      this = "Right" and result = "Left"
+    }
+  }
+  
+  /** Renders the state as a string. */
+  string renderState(Shore manShore, Shore goatShore, Shore cabbageShore, Shore wolfShore) {
+    result = manShore + "," + goatShore + "," + cabbageShore + "," + wolfShore
+  }
+  
+  /** A record of where everything is. */
+  class State extends string {
+    Shore manShore;
+    Shore goatShore;
+    Shore cabbageShore;
+    Shore wolfShore;
+  
+    State() { this = renderState(manShore, goatShore, cabbageShore, wolfShore) }
+  
+    /** Returns the state that is reached after ferrying a particular cargo item. */
+    State ferry(Cargo cargo) {
+      cargo = "Nothing" and
+      result = renderState(manShore.other(), goatShore, cabbageShore, wolfShore)
+      or
+      cargo = "Goat" and
+      result = renderState(manShore.other(), goatShore.other(), cabbageShore, wolfShore)
+      or
+      cargo = "Cabbage" and
+      result = renderState(manShore.other(), goatShore, cabbageShore.other(), wolfShore)
+      or
+      cargo = "Wolf" and
+      result = renderState(manShore.other(), goatShore, cabbageShore, wolfShore.other())
+    }
+  
+    /**
+     * Holds if the state is safe. This occurs when neither the goat nor the cabbage
+     * can get eaten.
+     */
+    predicate isSafe() {
+      // The goat can't eat the cabbage.
+      (goatShore != cabbageShore or goatShore = manShore) and
+      // The wolf can't eat the goat.
+      (wolfShore != goatShore or wolfShore = manShore)
+    }
+  
+    /** Returns the state that is reached after safely ferrying a cargo item. */
+    State safeFerry(Cargo cargo) { result = this.ferry(cargo) and result.isSafe() }
+  
+    string towards() {
+      manShore = "Left" and result = "to the left"
+      or
+      manShore = "Right" and result = "to the right"
+    }
+  
+    /**
+     * Returns all states that are reachable via safe ferrying.
+     * `path` keeps track of how it is achieved.
+     * `visitedStates` keeps track of previously visited states and is used to avoid loops.
+     */
+    State reachesVia(string path, string visitedStates) {
+      // Reachable in 1 step by ferrying a specific cargo
+      exists(Cargo cargo |
+        result = this.safeFerry(cargo) and
+        visitedStates = result and
+        path = "First " + cargo + " is ferried " + result.towards()
+      )
+      or
+      // Reachable by first following pathSoFar and then ferrying cargo
+      exists(string pathSoFar, string visitedStatesSoFar, Cargo cargo |
+        result = this.reachesVia(pathSoFar, visitedStatesSoFar).safeFerry(cargo) and
+        not exists(int i | i = visitedStatesSoFar.indexOf(result)) and // resulting state is not visited yet
+        visitedStates = visitedStatesSoFar + "_" + result and
+        path = pathSoFar + ",\nthen " + cargo + " is ferried " + result.towards()
+      )
+    }
+  }
+  
+  /** The initial state, where everything is on the left shore. */
+  class InitialState extends State {
+    InitialState() { this = renderState("Left", "Left", "Left", "Left") }
+  }
+  
+  /** The goal state, where everything is on the right shore. */
+  class GoalState extends State {
+    GoalState() { this = renderState("Right", "Right", "Right", "Right") }
+  }
+  
+  from string path
+  where any(InitialState i).reachesVia(path, _) = any(GoalState g)
+  select path + "."
diff --git a/docs/codeql/writing-codeql-queries/river-answer-2-abstract-class.ql b/docs/codeql/writing-codeql-queries/river-answer-2-abstract-class.ql
new file mode 100644
index 00000000000..78676101180
--- /dev/null
+++ b/docs/codeql/writing-codeql-queries/river-answer-2-abstract-class.ql
@@ -0,0 +1,205 @@
+/**
+ * A solution to the river crossing puzzle using abstract
+ * classes/predicates to model the situation and unicode
+ * symbols to display the answer.
+ */
+
+/** One of two shores. */
+class Shore extends string {
+    Shore() { this = "left" or this = "right" }
+  }
+  
+  /** Models the behavior of the man. */
+  class Man extends string {
+    Shore s;
+  
+    Man() { this = "man " + s }
+  
+    /** Holds if the man is on a particular shore. */
+    predicate isOn(Shore shore) { s = shore }
+  
+    /** Returns the other shore, after the man crosses the river. */
+    Man cross() { result != this }
+  
+    /** Returns a cargo and its position after being ferried. */
+    Cargo ferry(Cargo c) {
+      result = c.cross() and
+      c.isOn(s)
+    }
+  }
+  
+  /** One of three possible cargo items, with their position. */
+  abstract class Cargo extends string {
+    Shore s;
+  
+    bindingset[this]
+    Cargo() { any() }
+  
+    /** Holds if the cargo is on a particular shore. */
+    predicate isOn(Shore shore) { s = shore }
+  
+    /** Returns the other shore, after the cargo crosses the river. */
+    abstract Cargo cross();
+  }
+  
+  /** Models the position of the goat. */
+  class Goat extends Cargo {
+    Goat() { this = "goat " + s }
+  
+    override Goat cross() { result != this }
+  }
+  
+  /** Models the position of the wolf. */
+  class Wolf extends Cargo {
+    Wolf() { this = "wolf " + s }
+  
+    override Wolf cross() { result != this }
+  }
+  
+  /** Models the position of the cabbage. */
+  class Cabbage extends Cargo {
+    Cabbage() { this = "cabbage " + s }
+  
+    override Cabbage cross() { result != this }
+  }
+  
+  /** Returns a unicode representation of everything on the left shore. */
+  string onLeft(Man man, Goat goat, Cabbage cabbage, Wolf wolf) {
+    exists(string manOnLeft, string goatOnLeft, string cabbageOnLeft, string wolfOnLeft |
+      (
+        man.isOn("left") and manOnLeft = "🕴"
+        or
+        man.isOn("right") and manOnLeft = "____"
+      ) and
+      (
+        goat.isOn("left") and goatOnLeft = "🐐"
+        or
+        goat.isOn("right") and goatOnLeft = "___"
+      ) and
+      (
+        cabbage.isOn("left") and cabbageOnLeft = "🥬"
+        or
+        cabbage.isOn("right") and cabbageOnLeft = "___"
+      ) and
+      (
+        wolf.isOn("left") and wolfOnLeft = "🐺"
+        or
+        wolf.isOn("right") and wolfOnLeft = "___"
+      ) and
+      result = manOnLeft + "__" + goatOnLeft + "__" + cabbageOnLeft + "__" + wolfOnLeft
+    )
+  }
+  
+  /** Returns a unicode representation of everything on the right shore. */
+  string onRight(Man man, Goat goat, Cabbage cabbage, Wolf wolf) {
+    exists(string manOnLeft, string goatOnLeft, string cabbageOnLeft, string wolfOnLeft |
+      (
+        man.isOn("right") and manOnLeft = "🕴"
+        or
+        man.isOn("left") and manOnLeft = "_"
+      ) and
+      (
+        goat.isOn("right") and goatOnLeft = "🐐"
+        or
+        goat.isOn("left") and goatOnLeft = "__"
+      ) and
+      (
+        cabbage.isOn("right") and cabbageOnLeft = "🥬"
+        or
+        cabbage.isOn("left") and cabbageOnLeft = "__"
+      ) and
+      (
+        wolf.isOn("right") and wolfOnLeft = "🐺"
+        or
+        wolf.isOn("left") and wolfOnLeft = "__"
+      ) and
+      result = manOnLeft + "__" + goatOnLeft + "__" + cabbageOnLeft + "__" + wolfOnLeft
+    )
+  }
+  
+  /** Renders the state as a string, using unicode symbols. */
+  string render(Man man, Goat goat, Cabbage cabbage, Wolf wolf) {
+    result = onLeft(man, goat, cabbage, wolf) + "___🌊🌊🌊🌊🌊🌊🌊🌊🌊🌊___" +
+        onRight(man, goat, cabbage, wolf)
+  }
+  
+  /** A record of where everything is. */
+  class State extends string {
+    Man man;
+  
+    Goat goat;
+  
+    Cabbage cabbage;
+  
+    Wolf wolf;
+  
+    State() { this = render(man, goat, cabbage, wolf) }
+  
+    /**
+     * Returns the possible states that you can transition to
+     * by ferrying one or zero cargo items.
+     */
+    State transition() {
+      result = render(man.cross(), man.ferry(goat), cabbage, wolf) or
+      result = render(man.cross(), goat, man.ferry(cabbage), wolf) or
+      result = render(man.cross(), goat, cabbage, man.ferry(wolf)) or
+      result = render(man.cross(), goat, cabbage, wolf)
+    }
+  
+    /**
+     * Returns all states that are reachable via a transition
+     * and have not yet been visited.
+     * `path` keeps track of how it is achieved.
+     */
+    State reachesVia(string path) {
+      exists(string pathSoFar |
+        result = this.reachesVia(pathSoFar).transition() and
+        not exists(int i | i = pathSoFar.indexOf(result.toString())) and
+        path = pathSoFar + "\n↓\n" + result
+      )
+    }
+  }
+  
+  /** The initial state, where everything is on the left shore. */
+  class InitialState extends State {
+    InitialState() {
+      exists(Shore left | left = "left" |
+        man.isOn(left) and goat.isOn(left) and cabbage.isOn(left) and wolf.isOn(left)
+      )
+    }
+  
+    override State reachesVia(string path) {
+      path = this + "\n↓\n" + result and result = transition()
+      or
+      result = super.reachesVia(path)
+    }
+  }
+  
+  /** The goal state, where everything is on the right shore. */
+  class GoalState extends State {
+    GoalState() {
+      exists(Shore right | right = "right" |
+        man.isOn(right) and goat.isOn(right) and cabbage.isOn(right) and wolf.isOn(right)
+      )
+    }
+  
+    override State transition() { none() }
+  }
+  
+  /** An unsafe state, where something gets eaten. */
+  class IllegalState extends State {
+    IllegalState() {
+      exists(Shore s |
+        goat.isOn(s) and cabbage.isOn(s) and not man.isOn(s)
+        or
+        wolf.isOn(s) and goat.isOn(s) and not man.isOn(s)
+      )
+    }
+  
+    override State transition() { none() }
+  }
+  
+  from string path
+  where any(InitialState i).reachesVia(path) = any(GoalState g)
+  select path
+  
\ No newline at end of file
diff --git a/docs/codeql/writing-codeql-queries/river-answer-3-datatypes.ql b/docs/codeql/writing-codeql-queries/river-answer-3-datatypes.ql
new file mode 100644
index 00000000000..e17d46f1aba
--- /dev/null
+++ b/docs/codeql/writing-codeql-queries/river-answer-3-datatypes.ql
@@ -0,0 +1,172 @@
+/**
+ * "Typesafe" solution to the river crossing puzzle.
+ */
+
+/** Either the left shore or the right shore. */
+newtype TShore =
+  Left() or
+  Right()
+
+class Shore extends TShore {
+  Shore other() { result != this }
+
+  string toString() {
+    this = Left() and result = "left"
+    or
+    this = Right() and result = "right"
+  }
+}
+
+newtype TMan = TManOn(Shore s)
+
+/** Models the behavior of the man. */
+class Man extends TMan {
+  Shore s;
+
+  Man() { this = TManOn(s) }
+
+  /** Holds if the man is on a particular shore. */
+  predicate isOn(Shore shore) { s = shore }
+
+  /** Returns the other shore, after the man crosses the river. */
+  Man cross() { result.isOn(s.other()) }
+
+  /** Returns a cargo and its position after being ferried. */
+  Cargo ferry(Cargo c) {
+    result = c.cross() and
+    c.isOn(s)
+  }
+
+  string toString() { result = "man " + s }
+}
+
+newtype TCargo =
+  TGoat(Shore s) or
+  TCabbage(Shore s) or
+  TWolf(Shore s)
+
+/** One of three possible cargo items, with their position. */
+abstract class Cargo extends TCargo {
+  Shore s;
+
+  /** Holds if the cargo is on a particular shore. */
+  predicate isOn(Shore shore) { s = shore }
+
+  /** Returns the other shore, after the cargo crosses the river. */
+  abstract Cargo cross();
+
+  abstract string toString();
+}
+
+/** Models the position of the goat. */
+class Goat extends Cargo, TGoat {
+  Goat() { this = TGoat(s) }
+
+  override Cargo cross() { result = TGoat(s.other()) }
+
+  override string toString() { result = "goat " + s }
+}
+
+/** Models the position of the wolf. */
+class Wolf extends Cargo, TWolf {
+  Wolf() { this = TWolf(s) }
+
+  override Cargo cross() { result = TWolf(s.other()) }
+
+  override string toString() { result = "wolf " + s }
+}
+
+/** Models the position of the cabbage. */
+class Cabbage extends Cargo, TCabbage {
+  Cabbage() { this = TCabbage(s) }
+
+  override Cargo cross() { result = TCabbage(s.other()) }
+
+  override string toString() { result = "cabbage " + s }
+}
+
+newtype TState = Currently(Man man, Goat goat, Cabbage cabbage, Wolf wolf)
+
+/** A record of where everything is. */
+class State extends TState {
+  Man man;
+
+  Goat goat;
+
+  Cabbage cabbage;
+
+  Wolf wolf;
+
+  State() { this = Currently(man, goat, cabbage, wolf) }
+
+  /**
+   * Returns the possible states that you can transition to
+   * by ferrying one or zero cargo items.
+   */
+  State transition() {
+    result = Currently(man.cross(), man.ferry(goat), cabbage, wolf) or
+    result = Currently(man.cross(), goat, man.ferry(cabbage), wolf) or
+    result = Currently(man.cross(), goat, cabbage, man.ferry(wolf)) or
+    result = Currently(man.cross(), goat, cabbage, wolf)
+  }
+
+  /**
+   * Returns all states that are reachable via a transition
+   * and have not yet been visited.
+   * `path` keeps track of how it is achieved.
+   */
+  State reachesVia(string path) {
+    exists(string pathSoFar |
+      result = this.reachesVia(pathSoFar).transition() and
+      not exists(int i | i = pathSoFar.indexOf(result.toString())) and
+      path = pathSoFar + "\n" + result
+    )
+  }
+
+  string toString() { result = man + "/" + goat + "/" + cabbage + "/" + wolf }
+}
+
+/** The initial state, where everything is on the left shore. */
+class InitialState extends State {
+  InitialState() {
+    man.isOn(Left()) and goat.isOn(Left()) and cabbage.isOn(Left()) and wolf.isOn(Left())
+  }
+
+  override State reachesVia(string path) {
+    path = this + "\n" + result and result = transition()
+    or
+    result = super.reachesVia(path)
+  }
+
+  override string toString() { result = "Initial: " + super.toString() }
+}
+
+/** The goal state, where everything is on the right shore. */
+class GoalState extends State {
+  GoalState() {
+    man.isOn(Right()) and goat.isOn(Right()) and cabbage.isOn(Right()) and wolf.isOn(Right())
+  }
+
+  override State transition() { none() }
+
+  override string toString() { result = "Goal: " + super.toString() }
+}
+
+/** An unsafe state, where something gets eaten. */
+class IllegalState extends State {
+  IllegalState() {
+    exists(Shore s |
+      goat.isOn(s) and cabbage.isOn(s) and not man.isOn(s)
+      or
+      wolf.isOn(s) and goat.isOn(s) and not man.isOn(s)
+    )
+  }
+
+  override State transition() { none() }
+
+  override string toString() { result = "ILLEGAL: " + super.toString() }
+}
+
+from string path
+where any(InitialState i).reachesVia(path) = any(GoalState g)
+select path

From 710e012e092f2e2d2b73154efe821a098d20c5b3 Mon Sep 17 00:00:00 2001
From: Edward Minnix III <egregius313@github.com>
Date: Wed, 30 Nov 2022 10:41:45 -0500
Subject: [PATCH 0889/1420] Java: fix precision of Android WebView File access
 query

Co-authored-by: Tony Torralba <atorralba@users.noreply.github.com>
---
 .../Security/CWE/CWE-200/AndroidWebViewSettingsFileAccess.ql    | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/java/ql/src/Security/CWE/CWE-200/AndroidWebViewSettingsFileAccess.ql b/java/ql/src/Security/CWE/CWE-200/AndroidWebViewSettingsFileAccess.ql
index e06b8b7de99..a20ed5a5081 100644
--- a/java/ql/src/Security/CWE/CWE-200/AndroidWebViewSettingsFileAccess.ql
+++ b/java/ql/src/Security/CWE/CWE-200/AndroidWebViewSettingsFileAccess.ql
@@ -5,7 +5,7 @@
  * @id java/android-websettings-file-access
  * @problem.severity warning
  * @security-severity 6.5
- * @precision high
+ * @precision medium
  * @tags security
  *       external/cwe/cwe-200
  */

From c836c4feb7c732b7c8462a7b855c351df9a62581 Mon Sep 17 00:00:00 2001
From: Ed Minnix <egregius313@github.com>
Date: Wed, 30 Nov 2022 10:43:05 -0500
Subject: [PATCH 0890/1420] Java: Specify default value in WebView file access
 query

---
 .../CWE/CWE-200/AndroidWebViewSettingsFileAccess.qhelp        | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

diff --git a/java/ql/src/Security/CWE/CWE-200/AndroidWebViewSettingsFileAccess.qhelp b/java/ql/src/Security/CWE/CWE-200/AndroidWebViewSettingsFileAccess.qhelp
index 6333fe81a04..f80c9f9a05d 100644
--- a/java/ql/src/Security/CWE/CWE-200/AndroidWebViewSettingsFileAccess.qhelp
+++ b/java/ql/src/Security/CWE/CWE-200/AndroidWebViewSettingsFileAccess.qhelp
@@ -12,7 +12,9 @@
   </overview>
 
   <recommendation>
-    <p>When possible, you should disallow file access by setting the following settings to <code>false</code>:</p>
+    <p>When possible, you should not allow file access. The file access settings
+    are disabled by default. You can explicitly disbale them by setting the
+    following settings to <code>false</code>:</p>
 
     <ul>
       <li><code>setAllowFileAccess</code></li>

From 5ac1e012aee30a7550eeac3590644e16bbd622c9 Mon Sep 17 00:00:00 2001
From: Ed Minnix <egregius313@github.com>
Date: Wed, 30 Nov 2022 10:43:53 -0500
Subject: [PATCH 0891/1420] Java: Mention AssetLoader in WebView file access
 query documentation

---
 .../CWE/CWE-200/AndroidWebViewSettingsFileAccess.qhelp    | 8 ++++++++
 1 file changed, 8 insertions(+)

diff --git a/java/ql/src/Security/CWE/CWE-200/AndroidWebViewSettingsFileAccess.qhelp b/java/ql/src/Security/CWE/CWE-200/AndroidWebViewSettingsFileAccess.qhelp
index f80c9f9a05d..fa4b1e1696f 100644
--- a/java/ql/src/Security/CWE/CWE-200/AndroidWebViewSettingsFileAccess.qhelp
+++ b/java/ql/src/Security/CWE/CWE-200/AndroidWebViewSettingsFileAccess.qhelp
@@ -21,6 +21,11 @@
       <li><code>setAllowFileAccessFromFileURLs</code></li>
       <li><code>setAllowUniversalAccessFromFileURLs</code></li>
     </ul>
+
+    <p>If your application requires access to the file system, it is best to
+    avoid using <code>file://</code> urls, and instead use an alternative that
+    allows loading files via https, such
+    as <code>androidx.webkit.WebViewAssetLoader</code>.</p>
   </recommendation>
 
   <example>
@@ -45,6 +50,9 @@
     <li>
       Android documentation: <a href="https://developer.android.com/reference/android/webkit/WebSettings#setAllowUniversalAccessFromFileURLs(boolean)">WebSettings.setAllowUniversalAccessFromFileURLs</a>.
     </li>
+    <li>
+      Android documentation: <a href="https://developer.android.com/reference/androidx/webkit/WebViewAssetLoader">WebViewAssetLoader</a>.
+    </li>
   </references>
 
 </qhelp>

From b189e5b3658b927f481aa47cf85499685e341cae Mon Sep 17 00:00:00 2001
From: Edward Minnix III <egregius313@github.com>
Date: Wed, 30 Nov 2022 10:45:31 -0500
Subject: [PATCH 0892/1420] Java: fix precision in setJavascriptEnabled query

Co-authored-by: Tony Torralba <atorralba@users.noreply.github.com>
---
 .../CWE/CWE-079/AndroidWebViewSettingsEnabledJavaScript.ql      | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/java/ql/src/Security/CWE/CWE-079/AndroidWebViewSettingsEnabledJavaScript.ql b/java/ql/src/Security/CWE/CWE-079/AndroidWebViewSettingsEnabledJavaScript.ql
index 5ed884610b0..d0a92925934 100644
--- a/java/ql/src/Security/CWE/CWE-079/AndroidWebViewSettingsEnabledJavaScript.ql
+++ b/java/ql/src/Security/CWE/CWE-079/AndroidWebViewSettingsEnabledJavaScript.ql
@@ -5,7 +5,7 @@
  * @id java/android-websettings-javascript-enabled
  * @problem.severity warning
  * @security-severity 6.1
- * @precision high
+ * @precision medium
  * @tags security
  *       external/cwe/cwe-079
  */

From 86e2333e675de0ff3ea28151e648c2c404143b3f Mon Sep 17 00:00:00 2001
From: Felicity Chapman <felicitymay@github.com>
Date: Wed, 30 Nov 2022 15:53:19 +0000
Subject: [PATCH 0893/1420] Fix typo and try improving formatting

---
 docs/codeql/writing-codeql-queries/cross-the-river.rst | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/docs/codeql/writing-codeql-queries/cross-the-river.rst b/docs/codeql/writing-codeql-queries/cross-the-river.rst
index f688afe30e1..680529bc703 100644
--- a/docs/codeql/writing-codeql-queries/cross-the-river.rst
+++ b/docs/codeql/writing-codeql-queries/cross-the-river.rst
@@ -264,7 +264,7 @@ Here are some more example queries that solve the river crossing puzzle:
 
    .. container:: name
 
-      *Show/hide eaxmple query - modified path*
+      * Show/hide example query - modified path
 
    .. literalinclude:: river-answer-1-path.ql
       :language: ql
@@ -274,7 +274,7 @@ Here are some more example queries that solve the river crossing puzzle:
 
    .. container:: name
 
-      *Show/hide eaxmple query - abstract class*
+      * Show/hide example query - abstract class
 
    .. literalinclude:: river-answer-2-abstract-class.ql
       :language: ql
@@ -284,7 +284,7 @@ Here are some more example queries that solve the river crossing puzzle:
 
    .. container:: name
 
-      *Show/hide eaxmple query - datatypes*
+      * Show/hide example query - datatypes
 
    .. literalinclude:: river-answer-3-datatypes.ql
       :language: ql

From e31521bd14f3c41e938e3fba827ebfdfadd20228 Mon Sep 17 00:00:00 2001
From: Ed Minnix <egregius313@github.com>
Date: Wed, 30 Nov 2022 10:56:17 -0500
Subject: [PATCH 0894/1420] Java: mention the default negative value for
 setJavaScriptEnabled

---
 .../CWE/CWE-079/AndroidWebViewSettingsEnabledJavaScript.qhelp | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

diff --git a/java/ql/src/Security/CWE/CWE-079/AndroidWebViewSettingsEnabledJavaScript.qhelp b/java/ql/src/Security/CWE/CWE-079/AndroidWebViewSettingsEnabledJavaScript.qhelp
index 077e80700b9..4a049ae0b5d 100644
--- a/java/ql/src/Security/CWE/CWE-079/AndroidWebViewSettingsEnabledJavaScript.qhelp
+++ b/java/ql/src/Security/CWE/CWE-079/AndroidWebViewSettingsEnabledJavaScript.qhelp
@@ -22,7 +22,9 @@
   </overview>
 
   <recommendation>
-    <p>If Javascript does not need to be enabled, call <code>setJavaScriptEnabled(false)</code> on the settings of the WebView.</p>
+    <p>JavaScript execution is disabled by default. You can explicitly disable
+    it by calling <code>setJavaScriptEnabled(false)</code> on the settings of
+    the WebView.</p>
 
     <p>If JavaScript is necessary, only load content from trusted servers using encrypted channels, such as HTTPS with certificate verification.</p>
   </recommendation>

From 4e29ff1d6e52b2ea5047a75f2a8f804c05d31cd1 Mon Sep 17 00:00:00 2001
From: Paolo Tranquilli <redsun82@github.com>
Date: Wed, 30 Nov 2022 17:42:26 +0100
Subject: [PATCH 0895/1420] Swift: add `-merge-modules` to
 `frontend-invocations` test

Also, moved from Makefile to a bash source.
---
 swift/integration-tests/.gitignore             |  1 +
 .../posix-only/frontend-invocations/F1.swift   |  0
 .../posix-only/frontend-invocations/F2.swift   |  0
 .../frontend-invocations/Files.expected        |  2 ++
 .../posix-only/frontend-invocations/Makefile   | 15 ---------------
 .../posix-only/frontend-invocations/build.sh   | 18 ++++++++++++++++++
 .../posix-only/frontend-invocations/test.py    |  2 +-
 7 files changed, 22 insertions(+), 16 deletions(-)
 create mode 100644 swift/integration-tests/posix-only/frontend-invocations/F1.swift
 create mode 100644 swift/integration-tests/posix-only/frontend-invocations/F2.swift
 delete mode 100644 swift/integration-tests/posix-only/frontend-invocations/Makefile
 create mode 100755 swift/integration-tests/posix-only/frontend-invocations/build.sh

diff --git a/swift/integration-tests/.gitignore b/swift/integration-tests/.gitignore
index 9ea4244ad91..b613644a5ae 100644
--- a/swift/integration-tests/.gitignore
+++ b/swift/integration-tests/.gitignore
@@ -7,3 +7,4 @@ DerivedData/
 .swiftpm/xcode/package.xcworkspace/contents.xcworkspacedata
 *.actual
 db
+*.swiftmodule
diff --git a/swift/integration-tests/posix-only/frontend-invocations/F1.swift b/swift/integration-tests/posix-only/frontend-invocations/F1.swift
new file mode 100644
index 00000000000..e69de29bb2d
diff --git a/swift/integration-tests/posix-only/frontend-invocations/F2.swift b/swift/integration-tests/posix-only/frontend-invocations/F2.swift
new file mode 100644
index 00000000000..e69de29bb2d
diff --git a/swift/integration-tests/posix-only/frontend-invocations/Files.expected b/swift/integration-tests/posix-only/frontend-invocations/Files.expected
index 319c1010ab4..f13e45d89a5 100644
--- a/swift/integration-tests/posix-only/frontend-invocations/Files.expected
+++ b/swift/integration-tests/posix-only/frontend-invocations/Files.expected
@@ -3,4 +3,6 @@
 | C.swift:0:0:0:0 | C.swift |
 | D.swift:0:0:0:0 | D.swift |
 | E.swift:0:0:0:0 | E.swift |
+| F1.swift:0:0:0:0 | F1.swift |
+| F2.swift:0:0:0:0 | F2.swift |
 | file://:0:0:0:0 |  |
diff --git a/swift/integration-tests/posix-only/frontend-invocations/Makefile b/swift/integration-tests/posix-only/frontend-invocations/Makefile
deleted file mode 100644
index d3ddece6b9f..00000000000
--- a/swift/integration-tests/posix-only/frontend-invocations/Makefile
+++ /dev/null
@@ -1,15 +0,0 @@
-OS=$(shell uname)
-ifeq ($(OS),Darwin)
-SDK=-sdk $(shell xcrun -show-sdk-path)
-FRONTEND=$(shell xcrun -find swift-frontend)
-else
-SDK=""
-FRONTEND=swiftc
-endif
-
-all:
-	$(FRONTEND) -frontend -c A.swift $(SDK)
-	$(FRONTEND) -frontend -c B.swift -o B.o $(SDK)
-	$(FRONTEND) -frontend -c -primary-file C.swift $(SDK)
-	$(FRONTEND) -frontend -c -primary-file D.swift -o D.o $(SDK)
-	$(FRONTEND) -frontend -c -primary-file E.swift Esup.swift -o E.o $(SDK)
diff --git a/swift/integration-tests/posix-only/frontend-invocations/build.sh b/swift/integration-tests/posix-only/frontend-invocations/build.sh
new file mode 100755
index 00000000000..03f1148ca05
--- /dev/null
+++ b/swift/integration-tests/posix-only/frontend-invocations/build.sh
@@ -0,0 +1,18 @@
+#!/bin/bash
+
+if [[ "$(uname)" == Darwin ]]; then
+  SDK="-sdk $(xcrun -show-sdk-path)"
+  FRONTEND="$(xcrun -find swift-frontend)"
+else
+  SDK=""
+  FRONTEND="swift-frontend"
+fi
+
+$FRONTEND -frontend -c A.swift $SDK
+$FRONTEND -frontend -c B.swift -o B.o $SDK
+$FRONTEND -frontend -c -primary-file C.swift $SDK
+$FRONTEND -frontend -c -primary-file D.swift -o D.o $SDK
+$FRONTEND -frontend -c -primary-file E.swift Esup.swift -o E.o $SDK
+$FRONTEND -frontend -emit-module -primary-file F1.swift F2.swift -module-name F -o F1.swiftmodule $SDK
+$FRONTEND -frontend -emit-module F1.swift -primary-file F2.swift -module-name F -o F2.swiftmodule $SDK
+$FRONTEND -merge-modules F1.swiftmodule F2.swiftmodule -o F.swiftmodule $SDK
diff --git a/swift/integration-tests/posix-only/frontend-invocations/test.py b/swift/integration-tests/posix-only/frontend-invocations/test.py
index b415c024e56..4aec427a4b4 100644
--- a/swift/integration-tests/posix-only/frontend-invocations/test.py
+++ b/swift/integration-tests/posix-only/frontend-invocations/test.py
@@ -1,5 +1,5 @@
 from create_database_utils import *
 
 run_codeql_database_create([
-    'make',
+    './build.sh',
 ], lang='swift')

From cd8c40e063832adfc7b22eebf6a143c43321540f Mon Sep 17 00:00:00 2001
From: Ian Lynagh <igfoo@github.com>
Date: Fri, 25 Nov 2022 17:10:03 +0000
Subject: [PATCH 0896/1420] Kotlin: Enable java/non-serializable-field for
 Kotlin

It now ignores compiler-generated classes
---
 java/ql/src/Likely Bugs/Serialization/NonSerializableField.ql | 4 +++-
 .../change-notes/2022-11-25-NonSerializableField-kotlin.md    | 4 ++++
 2 files changed, 7 insertions(+), 1 deletion(-)
 create mode 100644 java/ql/src/change-notes/2022-11-25-NonSerializableField-kotlin.md

diff --git a/java/ql/src/Likely Bugs/Serialization/NonSerializableField.ql b/java/ql/src/Likely Bugs/Serialization/NonSerializableField.ql
index bf00248720c..a39e29f6576 100644
--- a/java/ql/src/Likely Bugs/Serialization/NonSerializableField.ql	
+++ b/java/ql/src/Likely Bugs/Serialization/NonSerializableField.ql	
@@ -55,6 +55,8 @@ string nonSerialReason(RefType t) {
 predicate exceptions(Class c, Field f) {
   f.getDeclaringType() = c and
   (
+    c.isCompilerGenerated()
+    or
     // `Serializable` objects with custom `readObject` or `writeObject` methods
     // may write out the "non-serializable" fields in a different way.
     c.declaresMethod("readObject")
@@ -90,7 +92,7 @@ predicate exceptions(Class c, Field f) {
 
 from Class c, Field f, string reason
 where
-  c.getFile().isJavaSourceFile() and
+  c.fromSource() and
   c.getAStrictAncestor() instanceof TypeSerializable and
   f.getDeclaringType() = c and
   not exceptions(c, f) and
diff --git a/java/ql/src/change-notes/2022-11-25-NonSerializableField-kotlin.md b/java/ql/src/change-notes/2022-11-25-NonSerializableField-kotlin.md
new file mode 100644
index 00000000000..25977b2e807
--- /dev/null
+++ b/java/ql/src/change-notes/2022-11-25-NonSerializableField-kotlin.md
@@ -0,0 +1,4 @@
+---
+category: minorAnalysis
+---
+* The query `java/non-serializable-field` is now enabled for Kotlin.

From 91421528df892f756ad14b04454e0b1faeb75e45 Mon Sep 17 00:00:00 2001
From: Harry Maclean <hmac@github.com>
Date: Thu, 1 Dec 2022 09:01:03 +1300
Subject: [PATCH 0897/1420] Ruby: Update test

---
 ruby/ql/test/library-tests/dataflow/local/TaintStep.expected | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/ruby/ql/test/library-tests/dataflow/local/TaintStep.expected b/ruby/ql/test/library-tests/dataflow/local/TaintStep.expected
index fe75f1b0313..a2f7ed05c86 100644
--- a/ruby/ql/test/library-tests/dataflow/local/TaintStep.expected
+++ b/ruby/ql/test/library-tests/dataflow/local/TaintStep.expected
@@ -23,7 +23,7 @@
 | file://:0:0:0:0 | parameter position 0 of activesupport;;Member[ActionView].Member[SafeBuffer].Method[new] | file://:0:0:0:0 | [summary] to write: return (return) in activesupport;;Member[ActionView].Member[SafeBuffer].Method[new] |
 | file://:0:0:0:0 | parameter position 0 of activesupport;;Member[ActiveSupport].Member[JSON].Method[decode,load] | file://:0:0:0:0 | [summary] to write: return (return) in activesupport;;Member[ActiveSupport].Member[JSON].Method[decode,load] |
 | file://:0:0:0:0 | parameter position 0 of activesupport;;Member[ActiveSupport].Member[JSON].Method[encode,dump] | file://:0:0:0:0 | [summary] to write: return (return) in activesupport;;Member[ActiveSupport].Member[JSON].Method[encode,dump] |
-| file://:0:0:0:0 | parameter position 0 of json;;Member[JSON].Method[generate,fast_generate,dump,unparse,fast_unparse] | file://:0:0:0:0 | [summary] to write: return (return) in json;;Member[JSON].Method[generate,fast_generate,dump,unparse,fast_unparse] |
+| file://:0:0:0:0 | parameter position 0 of json;;Member[JSON].Method[generate,fast_generate,pretty_generate,dump,unparse,fast_unparse] | file://:0:0:0:0 | [summary] to write: return (return) in json;;Member[JSON].Method[generate,fast_generate,pretty_generate,dump,unparse,fast_unparse] |
 | file://:0:0:0:0 | parameter position 0 of json;;Member[JSON].Method[parse,parse!,load,restore] | file://:0:0:0:0 | [summary] to write: return (return) in json;;Member[JSON].Method[parse,parse!,load,restore] |
 | file://:0:0:0:0 | parameter position 0.. of File.join | file://:0:0:0:0 | [summary] to write: return (return) in File.join |
 | file://:0:0:0:0 | parameter self of & | file://:0:0:0:0 | [summary] read: argument self.any element in & |

From 210d8529b6f022f2452c34f6768e80e28154a8d5 Mon Sep 17 00:00:00 2001
From: Jami Cogswell <jcogs33@Jamis-MacBook-Pro.local>
Date: Tue, 29 Nov 2022 19:09:29 -0500
Subject: [PATCH 0898/1420] add query for SupportedExternalApis

---
 .../ql/src/Telemetry/SupportedExternalApis.ql | 24 +++++++++++++++++++
 1 file changed, 24 insertions(+)
 create mode 100644 java/ql/src/Telemetry/SupportedExternalApis.ql

diff --git a/java/ql/src/Telemetry/SupportedExternalApis.ql b/java/ql/src/Telemetry/SupportedExternalApis.ql
new file mode 100644
index 00000000000..2e1baebd60f
--- /dev/null
+++ b/java/ql/src/Telemetry/SupportedExternalApis.ql
@@ -0,0 +1,24 @@
+/**
+ * @name Usage of supported APIs coming from external libraries
+ * @description A list of supported 3rd party APIs used in the codebase. Excludes test and generated code.
+ * @kind metric
+ * @tags summary telemetry
+ * @id java/telemetry/supported-external-api
+ */
+
+import java
+import semmle.code.java.dataflow.internal.FlowSummaryImpl as FlowSummaryImpl
+import semmle.code.java.dataflow.internal.NegativeSummary
+import ExternalApi
+
+private predicate relevant(ExternalApi api) {
+  not api.isUninteresting() and
+  (
+    api.isSupported() or
+    api = any(FlowSummaryImpl::Public::NegativeSummarizedCallable nsc).asCallable()
+  )
+}
+
+from string apiName, int usages
+where Results<relevant/1>::restrict(apiName, usages)
+select apiName, usages order by usages desc

From 7f45e320d88eb8f92307490dccd9310937881496 Mon Sep 17 00:00:00 2001
From: Jami Cogswell <jcogs33@Jamis-MacBook-Pro.local>
Date: Tue, 29 Nov 2022 20:16:29 -0500
Subject: [PATCH 0899/1420] add tests

---
 .../SupportedExternalApis.expected               |  3 +++
 .../SupportedExternalApis.java                   | 16 ++++++++++++++++
 .../SupportedExternalApis.qlref                  |  1 +
 3 files changed, 20 insertions(+)
 create mode 100644 java/ql/test/query-tests/Telemetry/SupportedExternalApis/SupportedExternalApis.expected
 create mode 100644 java/ql/test/query-tests/Telemetry/SupportedExternalApis/SupportedExternalApis.java
 create mode 100644 java/ql/test/query-tests/Telemetry/SupportedExternalApis/SupportedExternalApis.qlref

diff --git a/java/ql/test/query-tests/Telemetry/SupportedExternalApis/SupportedExternalApis.expected b/java/ql/test/query-tests/Telemetry/SupportedExternalApis/SupportedExternalApis.expected
new file mode 100644
index 00000000000..ce4b3dbe87a
--- /dev/null
+++ b/java/ql/test/query-tests/Telemetry/SupportedExternalApis/SupportedExternalApis.expected
@@ -0,0 +1,3 @@
+| java.lang.StringBuilder#append(String) | 1 |
+| java.lang.StringBuilder#toString() | 1 |
+| java.util.Map#put(Object,Object) | 1 |
diff --git a/java/ql/test/query-tests/Telemetry/SupportedExternalApis/SupportedExternalApis.java b/java/ql/test/query-tests/Telemetry/SupportedExternalApis/SupportedExternalApis.java
new file mode 100644
index 00000000000..34b56d5412e
--- /dev/null
+++ b/java/ql/test/query-tests/Telemetry/SupportedExternalApis/SupportedExternalApis.java
@@ -0,0 +1,16 @@
+import java.time.Duration;
+import java.util.HashMap;
+import java.util.Map;
+
+class SupportedExternalApis {
+	public static void main(String[] args) throws Exception {
+		StringBuilder builder = new StringBuilder();
+		builder.append("foo");  // supported
+		builder.toString();  // supported
+
+		Map<String, Object> map = new HashMap<>();
+		map.put("foo", new Object()); // supported
+
+		Duration d = java.time.Duration.ofMillis(1000); // not supported
+	}
+}
diff --git a/java/ql/test/query-tests/Telemetry/SupportedExternalApis/SupportedExternalApis.qlref b/java/ql/test/query-tests/Telemetry/SupportedExternalApis/SupportedExternalApis.qlref
new file mode 100644
index 00000000000..2e12499cf62
--- /dev/null
+++ b/java/ql/test/query-tests/Telemetry/SupportedExternalApis/SupportedExternalApis.qlref
@@ -0,0 +1 @@
+Telemetry/SupportedExternalApis.ql

From 22c4d975adc7e9da87fc1b762095a8fe6bcc7e43 Mon Sep 17 00:00:00 2001
From: Jami Cogswell <jcogs33@Jamis-MacBook-Pro.local>
Date: Wed, 30 Nov 2022 18:03:57 -0500
Subject: [PATCH 0900/1420] remove old import

---
 java/ql/src/Telemetry/SupportedExternalApis.ql | 1 -
 1 file changed, 1 deletion(-)

diff --git a/java/ql/src/Telemetry/SupportedExternalApis.ql b/java/ql/src/Telemetry/SupportedExternalApis.ql
index 2e1baebd60f..13c6473b580 100644
--- a/java/ql/src/Telemetry/SupportedExternalApis.ql
+++ b/java/ql/src/Telemetry/SupportedExternalApis.ql
@@ -8,7 +8,6 @@
 
 import java
 import semmle.code.java.dataflow.internal.FlowSummaryImpl as FlowSummaryImpl
-import semmle.code.java.dataflow.internal.NegativeSummary
 import ExternalApi
 
 private predicate relevant(ExternalApi api) {

From 94c5d53192139ba36c907519c6f6aed0c8511f53 Mon Sep 17 00:00:00 2001
From: Jami Cogswell <jcogs33@Jamis-MacBook-Pro.local>
Date: Wed, 30 Nov 2022 18:51:05 -0500
Subject: [PATCH 0901/1420] add a couple more tests

---
 .../SupportedExternalApis.expected            |  6 ++++++
 .../SupportedExternalApis.java                | 20 ++++++++++++++-----
 2 files changed, 21 insertions(+), 5 deletions(-)

diff --git a/java/ql/test/query-tests/Telemetry/SupportedExternalApis/SupportedExternalApis.expected b/java/ql/test/query-tests/Telemetry/SupportedExternalApis/SupportedExternalApis.expected
index ce4b3dbe87a..6abe5a43232 100644
--- a/java/ql/test/query-tests/Telemetry/SupportedExternalApis/SupportedExternalApis.expected
+++ b/java/ql/test/query-tests/Telemetry/SupportedExternalApis/SupportedExternalApis.expected
@@ -1,3 +1,9 @@
+| java.net.URL#URL(String) | 2 |
+| java.io.File#File(String) | 1 |
+| java.io.FileWriter#FileWriter(File) | 1 |
 | java.lang.StringBuilder#append(String) | 1 |
 | java.lang.StringBuilder#toString() | 1 |
+| java.net.URL#openConnection() | 1 |
+| java.net.URL#openStream() | 1 |
+| java.net.URLConnection#getInputStream() | 1 |
 | java.util.Map#put(Object,Object) | 1 |
diff --git a/java/ql/test/query-tests/Telemetry/SupportedExternalApis/SupportedExternalApis.java b/java/ql/test/query-tests/Telemetry/SupportedExternalApis/SupportedExternalApis.java
index 34b56d5412e..ec05018fd21 100644
--- a/java/ql/test/query-tests/Telemetry/SupportedExternalApis/SupportedExternalApis.java
+++ b/java/ql/test/query-tests/Telemetry/SupportedExternalApis/SupportedExternalApis.java
@@ -1,16 +1,26 @@
 import java.time.Duration;
 import java.util.HashMap;
 import java.util.Map;
+import java.io.InputStream;
+import java.net.URL;
+import java.io.File;
+import java.io.FileWriter;
 
 class SupportedExternalApis {
 	public static void main(String[] args) throws Exception {
-		StringBuilder builder = new StringBuilder();
-		builder.append("foo");  // supported
-		builder.toString();  // supported
+		StringBuilder builder = new StringBuilder(); // uninteresting (parameterless constructor)
+		builder.append("foo");  // supported summary
+		builder.toString();  // supported summary
 
-		Map<String, Object> map = new HashMap<>();
-		map.put("foo", new Object()); // supported
+		Map<String, Object> map = new HashMap<>(); // uninteresting (parameterless constructor)
+		map.put("foo", new Object()); // supported summary
 
 		Duration d = java.time.Duration.ofMillis(1000); // not supported
+
+		URL github = new URL("https://www.github.com/"); // supported summary
+		InputStream stream = github.openConnection().getInputStream(); // supported source (getInputStream), supported sink (openConnection)
+
+		new FileWriter(new File("foo")); // supported sink (FileWriter), supported summary (File)
+		new URL("http://foo").openStream(); // supported sink (openStream), supported summary (URL)
 	}
 }

From a0a742eb82ece5c66464558d2ab2ba2dee57ff52 Mon Sep 17 00:00:00 2001
From: tiferet <tiferet@github.com>
Date: Wed, 30 Nov 2022 17:01:56 -0800
Subject: [PATCH 0902/1420] Rename predicates to fit style guide:
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

- `getEndpoints` → `appliesToEndpoint`
- `getImplications` → `hasImplications`
- `getAlerts` → `hasAlert`
---
 .../adaptivethreatmodeling/ATMConfig.qll      |  12 +-
 .../EndpointCharacteristics.qll               | 128 +++++++++---------
 .../ExtractEndpointDataTraining.qll           |  24 ++--
 .../src/NosqlInjectionATM.ql                  |   2 +-
 .../src/SqlInjectionATM.ql                    |   2 +-
 .../src/TaintedPathATM.ql                     |   2 +-
 .../adaptivethreatmodeling/src/XssATM.ql      |   2 +-
 .../endpoint_large_scale/EndpointFeatures.ql  |   2 +-
 8 files changed, 87 insertions(+), 87 deletions(-)

diff --git a/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/ATMConfig.qll b/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/ATMConfig.qll
index 9f8c066f424..b4a92bf1010 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/ATMConfig.qll
+++ b/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/ATMConfig.qll
@@ -63,9 +63,9 @@ abstract class AtmConfig extends JS::TaintTracking::Configuration {
     // If the list of characteristics includes positive indicators with maximal confidence for this class, then it's a
     // known sink for the class.
     exists(EndpointCharacteristics::EndpointCharacteristic characteristic |
-      characteristic.getEndpoints(sink) and
+      characteristic.appliesToEndpoint(sink) and
       characteristic
-          .getImplications(this.getASinkEndpointType(), true, characteristic.maximalConfidence())
+          .hasImplications(this.getASinkEndpointType(), true, characteristic.maximalConfidence())
     )
   }
 
@@ -99,7 +99,7 @@ abstract class AtmConfig extends JS::TaintTracking::Configuration {
     // have given the endpoint filter characteristics medium confidence, and we exclude endpoints that have a
     // medium-confidence characteristic that indicates that they are not sinks, either in general or for this sink type.
     exists(EndpointCharacteristics::EndpointCharacteristic filter, float confidence |
-      filter.getEndpoints(candidateSink) and
+      filter.appliesToEndpoint(candidateSink) and
       confidence >= filter.mediumConfidence() and
       // TODO: Experiment with excluding all endpoints that have a medium- or high-confidence characteristic that
       // implies they're not sinks, rather than using only medium-confidence characteristics, by deleting the following
@@ -107,10 +107,10 @@ abstract class AtmConfig extends JS::TaintTracking::Configuration {
       confidence < filter.highConfidence() and
       (
         // Exclude endpoints that have a characteristic that implies they're not sinks for _any_ sink type.
-        filter.getImplications(any(NegativeType negative), true, confidence)
+        filter.hasImplications(any(NegativeType negative), true, confidence)
         or
         // Exclude endpoints that have a characteristic that implies they're not sinks for _this particular_ sink type.
-        filter.getImplications(this.getASinkEndpointType(), false, confidence)
+        filter.hasImplications(this.getASinkEndpointType(), false, confidence)
       ) and
       result = filter
     )
@@ -147,7 +147,7 @@ abstract class AtmConfig extends JS::TaintTracking::Configuration {
    * to this ML-boosted configuration, whereas the unboosted base query does not contain this source and sink
    * combination.
    */
-  predicate getAlerts(JS::DataFlow::PathNode source, JS::DataFlow::PathNode sink, float score) {
+  predicate hasAlert(JS::DataFlow::PathNode source, JS::DataFlow::PathNode sink, float score) {
     this.hasFlowPath(source, sink) and
     not AtmResultsInfo::isFlowLikelyInBaseQuery(source.getNode(), sink.getNode()) and
     score = AtmResultsInfo::getScoreForFlow(source.getNode(), sink.getNode())
diff --git a/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/EndpointCharacteristics.qll b/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/EndpointCharacteristics.qll
index 74a5ca6256d..e95b2785ceb 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/EndpointCharacteristics.qll
+++ b/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/EndpointCharacteristics.qll
@@ -65,7 +65,7 @@ abstract class EndpointCharacteristic extends string {
    * Holds for endpoints that have this characteristic. This predicate contains the logic that applies characteristics
    * to the appropriate set of dataflow nodes.
    */
-  abstract predicate getEndpoints(DataFlow::Node n);
+  abstract predicate appliesToEndpoint(DataFlow::Node n);
 
   /**
    * This predicate describes what the characteristic tells us about an endpoint.
@@ -81,7 +81,7 @@ abstract class EndpointCharacteristic extends string {
    * indicator of whether or not the endpoint belongs to the class. A confidence of 1 means that all endpoints with
    * this characteristic definitively do/don't belong to the class.
    */
-  abstract predicate getImplications(
+  abstract predicate hasImplications(
     EndpointType endpointClass, boolean isPositiveIndicator, float confidence
   );
 
@@ -213,9 +213,9 @@ DataFlow::CallNode getALikelyExternalLibraryCall() { result = getACallWithoutCal
 private class DomBasedXssSinkCharacteristic extends EndpointCharacteristic {
   DomBasedXssSinkCharacteristic() { this = "DomBasedXssSink" }
 
-  override predicate getEndpoints(DataFlow::Node n) { n instanceof DomBasedXss::Sink }
+  override predicate appliesToEndpoint(DataFlow::Node n) { n instanceof DomBasedXss::Sink }
 
-  override predicate getImplications(
+  override predicate hasImplications(
     EndpointType endpointClass, boolean isPositiveIndicator, float confidence
   ) {
     endpointClass instanceof XssSinkType and
@@ -231,9 +231,9 @@ private class DomBasedXssSinkCharacteristic extends EndpointCharacteristic {
 private class TaintedPathSinkCharacteristic extends EndpointCharacteristic {
   TaintedPathSinkCharacteristic() { this = "TaintedPathSink" }
 
-  override predicate getEndpoints(DataFlow::Node n) { n instanceof TaintedPath::Sink }
+  override predicate appliesToEndpoint(DataFlow::Node n) { n instanceof TaintedPath::Sink }
 
-  override predicate getImplications(
+  override predicate hasImplications(
     EndpointType endpointClass, boolean isPositiveIndicator, float confidence
   ) {
     endpointClass instanceof TaintedPathSinkType and
@@ -249,9 +249,9 @@ private class TaintedPathSinkCharacteristic extends EndpointCharacteristic {
 private class SqlInjectionSinkCharacteristic extends EndpointCharacteristic {
   SqlInjectionSinkCharacteristic() { this = "SqlInjectionSink" }
 
-  override predicate getEndpoints(DataFlow::Node n) { n instanceof SqlInjection::Sink }
+  override predicate appliesToEndpoint(DataFlow::Node n) { n instanceof SqlInjection::Sink }
 
-  override predicate getImplications(
+  override predicate hasImplications(
     EndpointType endpointClass, boolean isPositiveIndicator, float confidence
   ) {
     endpointClass instanceof SqlInjectionSinkType and
@@ -267,9 +267,9 @@ private class SqlInjectionSinkCharacteristic extends EndpointCharacteristic {
 private class NosqlInjectionSinkCharacteristic extends EndpointCharacteristic {
   NosqlInjectionSinkCharacteristic() { this = "NosqlInjectionSink" }
 
-  override predicate getEndpoints(DataFlow::Node n) { n instanceof NosqlInjection::Sink }
+  override predicate appliesToEndpoint(DataFlow::Node n) { n instanceof NosqlInjection::Sink }
 
-  override predicate getImplications(
+  override predicate hasImplications(
     EndpointType endpointClass, boolean isPositiveIndicator, float confidence
   ) {
     endpointClass instanceof NosqlInjectionSinkType and
@@ -307,7 +307,7 @@ abstract private class NotASinkCharacteristic extends EndpointCharacteristic {
   bindingset[this]
   NotASinkCharacteristic() { any() }
 
-  override predicate getImplications(
+  override predicate hasImplications(
     EndpointType endpointClass, boolean isPositiveIndicator, float confidence
   ) {
     endpointClass instanceof NegativeType and
@@ -326,7 +326,7 @@ abstract class LikelyNotASinkCharacteristic extends EndpointCharacteristic {
   bindingset[this]
   LikelyNotASinkCharacteristic() { any() }
 
-  override predicate getImplications(
+  override predicate hasImplications(
     EndpointType endpointClass, boolean isPositiveIndicator, float confidence
   ) {
     endpointClass instanceof NegativeType and
@@ -339,7 +339,7 @@ private class LodashUnderscoreCharacteristic extends NotASinkCharacteristic,
   OtherModeledArgumentCharacteristic {
   LodashUnderscoreCharacteristic() { this = "LodashUnderscoreArgument" }
 
-  override predicate getEndpoints(DataFlow::Node n) {
+  override predicate appliesToEndpoint(DataFlow::Node n) {
     any(LodashUnderscore::Member m).getACall().getAnArgument() = n
   }
 }
@@ -348,7 +348,7 @@ private class JQueryArgumentCharacteristic extends NotASinkCharacteristic,
   OtherModeledArgumentCharacteristic {
   JQueryArgumentCharacteristic() { this = "JQueryArgument" }
 
-  override predicate getEndpoints(DataFlow::Node n) {
+  override predicate appliesToEndpoint(DataFlow::Node n) {
     any(JQuery::MethodCall m).getAnArgument() = n
   }
 }
@@ -357,7 +357,7 @@ private class ClientRequestCharacteristic extends NotASinkCharacteristic,
   OtherModeledArgumentCharacteristic {
   ClientRequestCharacteristic() { this = "ClientRequest" }
 
-  override predicate getEndpoints(DataFlow::Node n) {
+  override predicate appliesToEndpoint(DataFlow::Node n) {
     exists(ClientRequest r |
       r.getAnArgument() = n or n = r.getUrl() or n = r.getHost() or n = r.getADataNode()
     )
@@ -368,7 +368,7 @@ private class PromiseDefinitionCharacteristic extends NotASinkCharacteristic,
   OtherModeledArgumentCharacteristic {
   PromiseDefinitionCharacteristic() { this = "PromiseDefinition" }
 
-  override predicate getEndpoints(DataFlow::Node n) {
+  override predicate appliesToEndpoint(DataFlow::Node n) {
     exists(PromiseDefinition p |
       n = [p.getResolveParameter(), p.getRejectParameter()].getACall().getAnArgument()
     )
@@ -379,14 +379,14 @@ private class CryptographicKeyCharacteristic extends NotASinkCharacteristic,
   OtherModeledArgumentCharacteristic {
   CryptographicKeyCharacteristic() { this = "CryptographicKey" }
 
-  override predicate getEndpoints(DataFlow::Node n) { n instanceof CryptographicKey }
+  override predicate appliesToEndpoint(DataFlow::Node n) { n instanceof CryptographicKey }
 }
 
 private class CryptographicOperationFlowCharacteristic extends NotASinkCharacteristic,
   OtherModeledArgumentCharacteristic {
   CryptographicOperationFlowCharacteristic() { this = "CryptographicOperationFlow" }
 
-  override predicate getEndpoints(DataFlow::Node n) {
+  override predicate appliesToEndpoint(DataFlow::Node n) {
     any(CryptographicOperation op).getInput() = n
   }
 }
@@ -395,7 +395,7 @@ private class LoggerMethodCharacteristic extends NotASinkCharacteristic,
   OtherModeledArgumentCharacteristic {
   LoggerMethodCharacteristic() { this = "LoggerMethod" }
 
-  override predicate getEndpoints(DataFlow::Node n) {
+  override predicate appliesToEndpoint(DataFlow::Node n) {
     exists(DataFlow::CallNode call | n = call.getAnArgument() |
       call.getCalleeName() = getAStandardLoggerMethodName()
     )
@@ -406,7 +406,7 @@ private class TimeoutCharacteristic extends NotASinkCharacteristic,
   OtherModeledArgumentCharacteristic {
   TimeoutCharacteristic() { this = "Timeout" }
 
-  override predicate getEndpoints(DataFlow::Node n) {
+  override predicate appliesToEndpoint(DataFlow::Node n) {
     exists(DataFlow::CallNode call | n = call.getAnArgument() |
       call.getCalleeName() = ["setTimeout", "clearTimeout"]
     )
@@ -417,7 +417,7 @@ private class ReceiverStorageCharacteristic extends NotASinkCharacteristic,
   OtherModeledArgumentCharacteristic {
   ReceiverStorageCharacteristic() { this = "ReceiverStorage" }
 
-  override predicate getEndpoints(DataFlow::Node n) {
+  override predicate appliesToEndpoint(DataFlow::Node n) {
     exists(DataFlow::CallNode call | n = call.getAnArgument() |
       call.getReceiver() = DataFlow::globalVarRef(["localStorage", "sessionStorage"])
     )
@@ -428,7 +428,7 @@ private class StringStartsWithCharacteristic extends NotASinkCharacteristic,
   OtherModeledArgumentCharacteristic {
   StringStartsWithCharacteristic() { this = "StringStartsWith" }
 
-  override predicate getEndpoints(DataFlow::Node n) {
+  override predicate appliesToEndpoint(DataFlow::Node n) {
     exists(DataFlow::CallNode call | n = call.getAnArgument() |
       call instanceof StringOps::StartsWith
     )
@@ -439,7 +439,7 @@ private class StringEndsWithCharacteristic extends NotASinkCharacteristic,
   OtherModeledArgumentCharacteristic {
   StringEndsWithCharacteristic() { this = "StringEndsWith" }
 
-  override predicate getEndpoints(DataFlow::Node n) {
+  override predicate appliesToEndpoint(DataFlow::Node n) {
     exists(DataFlow::CallNode call | n = call.getAnArgument() | call instanceof StringOps::EndsWith)
   }
 }
@@ -448,7 +448,7 @@ private class StringRegExpTestCharacteristic extends NotASinkCharacteristic,
   OtherModeledArgumentCharacteristic {
   StringRegExpTestCharacteristic() { this = "StringRegExpTest" }
 
-  override predicate getEndpoints(DataFlow::Node n) {
+  override predicate appliesToEndpoint(DataFlow::Node n) {
     exists(DataFlow::CallNode call | n = call.getAnArgument() |
       call instanceof StringOps::RegExpTest
     )
@@ -459,7 +459,7 @@ private class EventRegistrationCharacteristic extends NotASinkCharacteristic,
   OtherModeledArgumentCharacteristic {
   EventRegistrationCharacteristic() { this = "EventRegistration" }
 
-  override predicate getEndpoints(DataFlow::Node n) {
+  override predicate appliesToEndpoint(DataFlow::Node n) {
     exists(DataFlow::CallNode call | n = call.getAnArgument() | call instanceof EventRegistration)
   }
 }
@@ -468,7 +468,7 @@ private class EventDispatchCharacteristic extends NotASinkCharacteristic,
   OtherModeledArgumentCharacteristic {
   EventDispatchCharacteristic() { this = "EventDispatch" }
 
-  override predicate getEndpoints(DataFlow::Node n) {
+  override predicate appliesToEndpoint(DataFlow::Node n) {
     exists(DataFlow::CallNode call | n = call.getAnArgument() | call instanceof EventDispatch)
   }
 }
@@ -477,7 +477,7 @@ private class MembershipCandidateTestCharacteristic extends NotASinkCharacterist
   OtherModeledArgumentCharacteristic {
   MembershipCandidateTestCharacteristic() { this = "MembershipCandidateTest" }
 
-  override predicate getEndpoints(DataFlow::Node n) {
+  override predicate appliesToEndpoint(DataFlow::Node n) {
     exists(DataFlow::CallNode call | n = call.getAnArgument() |
       call = any(MembershipCandidate c).getTest()
     )
@@ -488,7 +488,7 @@ private class FileSystemAccessCharacteristic extends NotASinkCharacteristic,
   OtherModeledArgumentCharacteristic {
   FileSystemAccessCharacteristic() { this = "FileSystemAccess" }
 
-  override predicate getEndpoints(DataFlow::Node n) {
+  override predicate appliesToEndpoint(DataFlow::Node n) {
     exists(DataFlow::CallNode call | n = call.getAnArgument() | call instanceof FileSystemAccess)
   }
 }
@@ -497,7 +497,7 @@ private class DatabaseAccessCharacteristic extends NotASinkCharacteristic,
   OtherModeledArgumentCharacteristic {
   DatabaseAccessCharacteristic() { this = "DatabaseAccess" }
 
-  override predicate getEndpoints(DataFlow::Node n) {
+  override predicate appliesToEndpoint(DataFlow::Node n) {
     // TODO database accesses are less well defined than database query sinks, so this may cover unmodeled sinks on
     // existing database models
     exists(DataFlow::CallNode call | n = call.getAnArgument() |
@@ -512,7 +512,7 @@ private class DatabaseAccessCharacteristic extends NotASinkCharacteristic,
 private class DomCharacteristic extends NotASinkCharacteristic, OtherModeledArgumentCharacteristic {
   DomCharacteristic() { this = "DOM" }
 
-  override predicate getEndpoints(DataFlow::Node n) {
+  override predicate appliesToEndpoint(DataFlow::Node n) {
     exists(DataFlow::CallNode call | n = call.getAnArgument() | call = DOM::domValueRef())
   }
 }
@@ -521,7 +521,7 @@ private class NextFunctionCallCharacteristic extends NotASinkCharacteristic,
   OtherModeledArgumentCharacteristic {
   NextFunctionCallCharacteristic() { this = "NextFunctionCall" }
 
-  override predicate getEndpoints(DataFlow::Node n) {
+  override predicate appliesToEndpoint(DataFlow::Node n) {
     exists(DataFlow::CallNode call | n = call.getAnArgument() |
       call.getCalleeName() = "next" and
       exists(DataFlow::FunctionNode f | call = f.getLastParameter().getACall())
@@ -533,7 +533,7 @@ private class DojoRequireCharacteristic extends NotASinkCharacteristic,
   OtherModeledArgumentCharacteristic {
   DojoRequireCharacteristic() { this = "DojoRequire" }
 
-  override predicate getEndpoints(DataFlow::Node n) {
+  override predicate appliesToEndpoint(DataFlow::Node n) {
     exists(DataFlow::CallNode call | n = call.getAnArgument() |
       call = DataFlow::globalVarRef("dojo").getAPropertyRead("require").getACall()
     )
@@ -544,7 +544,7 @@ private class Base64ManipulationCharacteristic extends NotASinkCharacteristic,
   OtherModeledArgumentCharacteristic {
   Base64ManipulationCharacteristic() { this = "Base64Manipulation" }
 
-  override predicate getEndpoints(DataFlow::Node n) {
+  override predicate appliesToEndpoint(DataFlow::Node n) {
     exists(Base64::Decode d | n = d.getInput()) or
     exists(Base64::Encode d | n = d.getInput())
   }
@@ -554,7 +554,7 @@ private class ArgumentToArrayCharacteristic extends ArgumentToBuiltinFunctionCha
   LikelyNotASinkCharacteristic {
   ArgumentToArrayCharacteristic() { this = "ArgumentToArray" }
 
-  override predicate getEndpoints(DataFlow::Node n) {
+  override predicate appliesToEndpoint(DataFlow::Node n) {
     exists(DataFlow::SourceNode builtin, DataFlow::SourceNode receiver, DataFlow::InvokeNode invk |
       builtin instanceof DataFlow::ArrayCreationNode
     |
@@ -569,7 +569,7 @@ private class ArgumentToBuiltinGlobalVarRefCharacteristic extends ArgumentToBuil
   LikelyNotASinkCharacteristic {
   ArgumentToBuiltinGlobalVarRefCharacteristic() { this = "ArgumentToBuiltinGlobalVarRef" }
 
-  override predicate getEndpoints(DataFlow::Node n) {
+  override predicate appliesToEndpoint(DataFlow::Node n) {
     exists(DataFlow::SourceNode builtin, DataFlow::SourceNode receiver, DataFlow::InvokeNode invk |
       builtin =
         DataFlow::globalVarRef([
@@ -588,7 +588,7 @@ private class ConstantReceiverCharacteristic extends ArgumentToBuiltinFunctionCh
   NotASinkCharacteristic {
   ConstantReceiverCharacteristic() { this = "ConstantReceiver" }
 
-  override predicate getEndpoints(DataFlow::Node n) {
+  override predicate appliesToEndpoint(DataFlow::Node n) {
     exists(Expr primitive, MethodCallExpr c |
       primitive instanceof ConstantString or
       primitive instanceof NumberLiteral or
@@ -604,7 +604,7 @@ private class BuiltinCallNameCharacteristic extends ArgumentToBuiltinFunctionCha
   NotASinkCharacteristic {
   BuiltinCallNameCharacteristic() { this = "BuiltinCallName" }
 
-  override predicate getEndpoints(DataFlow::Node n) {
+  override predicate appliesToEndpoint(DataFlow::Node n) {
     exists(DataFlow::CallNode call |
       call.getAnArgument() = n and
       call.getCalleeName() =
@@ -633,7 +633,7 @@ abstract private class StandardEndpointFilterCharacteristic extends EndpointFilt
   bindingset[this]
   StandardEndpointFilterCharacteristic() { any() }
 
-  override predicate getImplications(
+  override predicate hasImplications(
     EndpointType endpointClass, boolean isPositiveIndicator, float confidence
   ) {
     endpointClass instanceof NegativeType and
@@ -645,7 +645,7 @@ abstract private class StandardEndpointFilterCharacteristic extends EndpointFilt
 class IsArgumentToModeledFunctionCharacteristic extends StandardEndpointFilterCharacteristic {
   IsArgumentToModeledFunctionCharacteristic() { this = "argument to modeled function" }
 
-  override predicate getEndpoints(DataFlow::Node n) {
+  override predicate appliesToEndpoint(DataFlow::Node n) {
     exists(DataFlow::InvokeNode invk, DataFlow::Node known |
       invk.getAnArgument() = n and
       invk.getAnArgument() = known and
@@ -655,7 +655,7 @@ class IsArgumentToModeledFunctionCharacteristic extends StandardEndpointFilterCh
         isKnownStepSrc(known)
         or
         exists(OtherModeledArgumentCharacteristic characteristic |
-          characteristic.getEndpoints(known)
+          characteristic.appliesToEndpoint(known)
         )
       )
     )
@@ -665,7 +665,7 @@ class IsArgumentToModeledFunctionCharacteristic extends StandardEndpointFilterCh
 private class IsArgumentToSinklessLibraryCharacteristic extends StandardEndpointFilterCharacteristic {
   IsArgumentToSinklessLibraryCharacteristic() { this = "argument to sinkless library" }
 
-  override predicate getEndpoints(DataFlow::Node n) {
+  override predicate appliesToEndpoint(DataFlow::Node n) {
     exists(DataFlow::InvokeNode invk, DataFlow::SourceNode commonSafeLibrary, string libraryName |
       libraryName = ["slugify", "striptags", "marked"]
     |
@@ -679,7 +679,7 @@ private class IsArgumentToSinklessLibraryCharacteristic extends StandardEndpoint
 private class IsSanitizerCharacteristic extends StandardEndpointFilterCharacteristic {
   IsSanitizerCharacteristic() { this = "sanitizer" }
 
-  override predicate getEndpoints(DataFlow::Node n) {
+  override predicate appliesToEndpoint(DataFlow::Node n) {
     exists(DataFlow::CallNode call | n = call.getAnArgument() |
       call.getCalleeName().regexpMatch("(?i).*(escape|valid(ate)?|sanitize|purify).*")
     )
@@ -689,7 +689,7 @@ private class IsSanitizerCharacteristic extends StandardEndpointFilterCharacteri
 private class IsPredicateCharacteristic extends StandardEndpointFilterCharacteristic {
   IsPredicateCharacteristic() { this = "predicate" }
 
-  override predicate getEndpoints(DataFlow::Node n) {
+  override predicate appliesToEndpoint(DataFlow::Node n) {
     exists(DataFlow::CallNode call | n = call.getAnArgument() |
       call.getCalleeName().regexpMatch("(equals|(|is|has|can)(_|[A-Z])).*")
     )
@@ -699,7 +699,7 @@ private class IsPredicateCharacteristic extends StandardEndpointFilterCharacteri
 private class IsHashCharacteristic extends StandardEndpointFilterCharacteristic {
   IsHashCharacteristic() { this = "hash" }
 
-  override predicate getEndpoints(DataFlow::Node n) {
+  override predicate appliesToEndpoint(DataFlow::Node n) {
     exists(DataFlow::CallNode call | n = call.getAnArgument() |
       call.getCalleeName().regexpMatch("(?i)^(sha\\d*|md5|hash)$")
     )
@@ -709,7 +709,7 @@ private class IsHashCharacteristic extends StandardEndpointFilterCharacteristic
 private class IsNumericCharacteristic extends StandardEndpointFilterCharacteristic {
   IsNumericCharacteristic() { this = "numeric" }
 
-  override predicate getEndpoints(DataFlow::Node n) {
+  override predicate appliesToEndpoint(DataFlow::Node n) {
     SyntacticHeuristics::isReadFrom(n, ".*index.*")
   }
 }
@@ -721,7 +721,7 @@ private class InIrrelevantFileCharacteristic extends StandardEndpointFilterChara
     this = "in " + category + " file" and category = ["externs", "generated", "library", "test"]
   }
 
-  override predicate getEndpoints(DataFlow::Node n) {
+  override predicate appliesToEndpoint(DataFlow::Node n) {
     // Ignore candidate sinks within externs, generated, library, and test code
     ClassifyFiles::classify(n.getFile(), category)
   }
@@ -732,7 +732,7 @@ abstract private class NosqlInjectionSinkEndpointFilterCharacteristic extends En
   bindingset[this]
   NosqlInjectionSinkEndpointFilterCharacteristic() { any() }
 
-  override predicate getImplications(
+  override predicate hasImplications(
     EndpointType endpointClass, boolean isPositiveIndicator, float confidence
   ) {
     endpointClass instanceof NosqlInjectionSinkType and
@@ -744,7 +744,7 @@ abstract private class NosqlInjectionSinkEndpointFilterCharacteristic extends En
 private class DatabaseAccessCallHeuristicCharacteristic extends NosqlInjectionSinkEndpointFilterCharacteristic {
   DatabaseAccessCallHeuristicCharacteristic() { this = "matches database access call heuristic" }
 
-  override predicate getEndpoints(DataFlow::Node n) {
+  override predicate appliesToEndpoint(DataFlow::Node n) {
     exists(DataFlow::MethodCallNode call | n = call.getAnArgument() |
       // additional databases accesses that aren't modeled yet
       call.getMethodName() = ["create", "createCollection", "createIndexes"]
@@ -764,7 +764,7 @@ private class ModeledSinkCharacteristic extends NosqlInjectionSinkEndpointFilter
     )
   }
 
-  override predicate getEndpoints(DataFlow::Node n) {
+  override predicate appliesToEndpoint(DataFlow::Node n) {
     exists(DataFlow::CallNode call | n = call.getAnArgument() |
       // Remove modeled sinks
       isArgumentToKnownLibrarySinkFunction(n)
@@ -775,7 +775,7 @@ private class ModeledSinkCharacteristic extends NosqlInjectionSinkEndpointFilter
 private class PredecessorInModeledFlowStepCharacteristic extends NosqlInjectionSinkEndpointFilterCharacteristic {
   PredecessorInModeledFlowStepCharacteristic() { this = "predecessor in a modeled flow step" }
 
-  override predicate getEndpoints(DataFlow::Node n) {
+  override predicate appliesToEndpoint(DataFlow::Node n) {
     exists(DataFlow::CallNode call | n = call.getAnArgument() |
       // Remove common kinds of unlikely sinks
       isKnownStepSrc(n)
@@ -786,7 +786,7 @@ private class PredecessorInModeledFlowStepCharacteristic extends NosqlInjectionS
 private class ModeledDatabaseAccessCharacteristic extends NosqlInjectionSinkEndpointFilterCharacteristic {
   ModeledDatabaseAccessCharacteristic() { this = "modeled database access" }
 
-  override predicate getEndpoints(DataFlow::Node n) {
+  override predicate appliesToEndpoint(DataFlow::Node n) {
     exists(DataFlow::CallNode call | n = call.getAnArgument() |
       // Remove modeled database calls. Arguments to modeled calls are very likely to be modeled
       // as sinks if they are true positives. Therefore arguments that are not modeled as sinks
@@ -799,7 +799,7 @@ private class ModeledDatabaseAccessCharacteristic extends NosqlInjectionSinkEndp
 private class ReceiverIsHttpRequestExpressionCharacteristic extends NosqlInjectionSinkEndpointFilterCharacteristic {
   ReceiverIsHttpRequestExpressionCharacteristic() { this = "receiver is a HTTP request expression" }
 
-  override predicate getEndpoints(DataFlow::Node n) {
+  override predicate appliesToEndpoint(DataFlow::Node n) {
     exists(DataFlow::CallNode call | n = call.getAnArgument() |
       // Remove calls to APIs that aren't relevant to NoSQL injection
       call.getReceiver() instanceof Http::RequestNode
@@ -812,7 +812,7 @@ private class ReceiverIsHttpResponseExpressionCharacteristic extends NosqlInject
     this = "receiver is a HTTP response expression"
   }
 
-  override predicate getEndpoints(DataFlow::Node n) {
+  override predicate appliesToEndpoint(DataFlow::Node n) {
     exists(DataFlow::CallNode call | n = call.getAnArgument() |
       // Remove calls to APIs that aren't relevant to NoSQL injection
       call.getReceiver() instanceof Http::ResponseNode
@@ -825,7 +825,7 @@ private class NotDirectArgumentToLikelyExternalLibraryCallOrHeuristicSinkNosqlCh
     this = "not a direct argument to a likely external library call or a heuristic sink (nosql)"
   }
 
-  override predicate getEndpoints(DataFlow::Node n) {
+  override predicate appliesToEndpoint(DataFlow::Node n) {
     // Require NoSQL injection sink candidates to be (a) direct arguments to external library calls
     // or (b) heuristic sinks for NoSQL injection.
     //
@@ -867,7 +867,7 @@ abstract private class SqlInjectionSinkEndpointFilterCharacteristic extends Endp
   bindingset[this]
   SqlInjectionSinkEndpointFilterCharacteristic() { any() }
 
-  override predicate getImplications(
+  override predicate hasImplications(
     EndpointType endpointClass, boolean isPositiveIndicator, float confidence
   ) {
     endpointClass instanceof SqlInjectionSinkType and
@@ -879,7 +879,7 @@ abstract private class SqlInjectionSinkEndpointFilterCharacteristic extends Endp
 private class PreparedSqlStatementCharacteristic extends SqlInjectionSinkEndpointFilterCharacteristic {
   PreparedSqlStatementCharacteristic() { this = "prepared SQL statement" }
 
-  override predicate getEndpoints(DataFlow::Node n) {
+  override predicate appliesToEndpoint(DataFlow::Node n) {
     exists(DataFlow::CallNode call | n = call.getAnArgument() |
       // prepared statements for SQL
       any(DataFlow::CallNode cn | cn.getCalleeName() = "prepare")
@@ -892,7 +892,7 @@ private class PreparedSqlStatementCharacteristic extends SqlInjectionSinkEndpoin
 private class ArrayCreationCharacteristic extends SqlInjectionSinkEndpointFilterCharacteristic {
   ArrayCreationCharacteristic() { this = "array creation" }
 
-  override predicate getEndpoints(DataFlow::Node n) {
+  override predicate appliesToEndpoint(DataFlow::Node n) {
     exists(DataFlow::CallNode call | n = call.getAnArgument() |
       n instanceof DataFlow::ArrayCreationNode
     )
@@ -902,7 +902,7 @@ private class ArrayCreationCharacteristic extends SqlInjectionSinkEndpointFilter
 private class HtmlOrRenderingCharacteristic extends SqlInjectionSinkEndpointFilterCharacteristic {
   HtmlOrRenderingCharacteristic() { this = "HTML / rendering" }
 
-  override predicate getEndpoints(DataFlow::Node n) {
+  override predicate appliesToEndpoint(DataFlow::Node n) {
     exists(DataFlow::CallNode call | n = call.getAnArgument() |
       // UI is unrelated to SQL
       call.getCalleeName().regexpMatch("(?i).*(render|html).*")
@@ -915,7 +915,7 @@ private class NotAnArgumentToLikelyExternalLibraryCallOrHeuristicSinkCharacteris
     this = "not an argument to a likely external library call or a heuristic sink"
   }
 
-  override predicate getEndpoints(DataFlow::Node n) {
+  override predicate appliesToEndpoint(DataFlow::Node n) {
     // Require SQL injection sink candidates to be (a) arguments to external library calls
     // (possibly indirectly), or (b) heuristic sinks.
     //
@@ -938,7 +938,7 @@ abstract private class TaintedPathSinkEndpointFilterCharacteristic extends Endpo
   bindingset[this]
   TaintedPathSinkEndpointFilterCharacteristic() { any() }
 
-  override predicate getImplications(
+  override predicate hasImplications(
     EndpointType endpointClass, boolean isPositiveIndicator, float confidence
   ) {
     endpointClass instanceof TaintedPathSinkType and
@@ -953,7 +953,7 @@ private class NotDirectArgumentToLikelyExternalLibraryCallOrHeuristicSinkTainted
       "not a direct argument to a likely external library call or a heuristic sink (tainted path)"
   }
 
-  override predicate getEndpoints(DataFlow::Node n) {
+  override predicate appliesToEndpoint(DataFlow::Node n) {
     // Require path injection sink candidates to be (a) arguments to external library calls
     // (possibly indirectly), or (b) heuristic sinks.
     //
@@ -990,7 +990,7 @@ abstract private class XssSinkEndpointFilterCharacteristic extends EndpointFilte
   bindingset[this]
   XssSinkEndpointFilterCharacteristic() { any() }
 
-  override predicate getImplications(
+  override predicate hasImplications(
     EndpointType endpointClass, boolean isPositiveIndicator, float confidence
   ) {
     endpointClass instanceof XssSinkType and
@@ -1004,7 +1004,7 @@ private class SetStateCallsInReactApplicationsCharacteristic extends XssSinkEndp
     this = "setState calls ought to be safe in react applications"
   }
 
-  override predicate getEndpoints(DataFlow::Node n) {
+  override predicate appliesToEndpoint(DataFlow::Node n) {
     exists(DataFlow::CallNode call | n = call.getAnArgument() | call.getCalleeName() = "setState")
   }
 }
@@ -1014,7 +1014,7 @@ private class NotDirectArgumentToLikelyExternalLibraryCallOrHeuristicSinkXssChar
     this = "not a direct argument to a likely external library call or a heuristic sink (xss)"
   }
 
-  override predicate getEndpoints(DataFlow::Node n) {
+  override predicate appliesToEndpoint(DataFlow::Node n) {
     // Require XSS sink candidates to be (a) arguments to external library calls (possibly
     // indirectly), or (b) heuristic sinks.
     //
diff --git a/javascript/ql/experimental/adaptivethreatmodeling/modelbuilding/extraction/ExtractEndpointDataTraining.qll b/javascript/ql/experimental/adaptivethreatmodeling/modelbuilding/extraction/ExtractEndpointDataTraining.qll
index 325809e085f..99cba794cfa 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/modelbuilding/extraction/ExtractEndpointDataTraining.qll
+++ b/javascript/ql/experimental/adaptivethreatmodeling/modelbuilding/extraction/ExtractEndpointDataTraining.qll
@@ -53,7 +53,7 @@ predicate tokenFeatures(DataFlow::Node endpoint, string featureName, string feat
 query predicate trainingEndpoints(
   DataFlow::Node endpoint, EndpointType endpointClass, EndpointCharacteristic characteristic
 ) {
-  characteristic.getEndpoints(endpoint) and
+  characteristic.appliesToEndpoint(endpoint) and
   // Only consider the source code for the project being analyzed.
   exists(endpoint.getFile().getRelativePath()) and
   // Only select endpoints that can be part of a tainted flow: Constant expressions always evaluate to a constant
@@ -69,7 +69,7 @@ query predicate trainingEndpoints(
   not (
     endpointClass instanceof NegativeType and
     exists(EndpointCharacteristic c |
-      c.getEndpoints(endpoint) and
+      c.appliesToEndpoint(endpoint) and
       c instanceof LikelyNotASinkCharacteristic
     )
   ) and
@@ -81,8 +81,8 @@ query predicate trainingEndpoints(
     // If the list of characteristics includes positive indicators with high confidence for this class, select this as a
     // training sample belonging to the class.
     exists(EndpointCharacteristic characteristic2, float confidence |
-      characteristic2.getEndpoints(endpoint) and
-      characteristic2.getImplications(endpointClass, true, confidence) and
+      characteristic2.appliesToEndpoint(endpoint) and
+      characteristic2.hasImplications(endpointClass, true, confidence) and
       confidence >= characteristic2.getHighConfidenceThreshold()
     ) and
     (
@@ -93,8 +93,8 @@ query predicate trainingEndpoints(
       not endpointClass instanceof NegativeType
       or
       not exists(EndpointCharacteristic characteristic3, float confidence3, EndpointType posClass |
-        characteristic3.getEndpoints(endpoint) and
-        characteristic3.getImplications(posClass, true, confidence3) and
+        characteristic3.appliesToEndpoint(endpoint) and
+        characteristic3.hasImplications(posClass, true, confidence3) and
         confidence3 >= characteristic3.getHighConfidenceThreshold() and
         not posClass instanceof NegativeType
       )
@@ -106,8 +106,8 @@ query predicate trainingEndpoints(
     endpointClass instanceof NegativeType and
     forall(EndpointType otherClass | not otherClass instanceof NegativeType |
       exists(EndpointCharacteristic characteristic2, float confidence |
-        characteristic2.getEndpoints(endpoint) and
-        characteristic2.getImplications(otherClass, false, confidence) and
+        characteristic2.appliesToEndpoint(endpoint) and
+        characteristic2.hasImplications(otherClass, false, confidence) and
         confidence >= characteristic2.getHighConfidenceThreshold()
       )
     )
@@ -180,15 +180,15 @@ query predicate reformattedTrainingEndpoints(
       // The reason, or reasons, why the endpoint was labeled NotASink for this query, only for negative examples.
       key = "notASinkReason" and
       exists(EndpointCharacteristic characteristic, EndpointType endpointClass |
-        characteristic.getEndpoints(endpoint) and
-        characteristic.getImplications(endpointClass, true, _) and
+        characteristic.appliesToEndpoint(endpoint) and
+        characteristic.hasImplications(endpointClass, true, _) and
         endpointClass instanceof NegativeType and
         value = characteristic
       ) and
       // Don't include a notASinkReason for endpoints that are also known sinks.
       not exists(EndpointCharacteristic characteristic3, float confidence3, EndpointType posClass |
-        characteristic3.getEndpoints(endpoint) and
-        characteristic3.getImplications(posClass, true, confidence3) and
+        characteristic3.appliesToEndpoint(endpoint) and
+        characteristic3.hasImplications(posClass, true, confidence3) and
         confidence3 >= characteristic3.getHighConfidenceThreshold() and
         not posClass instanceof NegativeType
       ) and
diff --git a/javascript/ql/experimental/adaptivethreatmodeling/src/NosqlInjectionATM.ql b/javascript/ql/experimental/adaptivethreatmodeling/src/NosqlInjectionATM.ql
index 8ec315c3d9c..47aca8843b4 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/src/NosqlInjectionATM.ql
+++ b/javascript/ql/experimental/adaptivethreatmodeling/src/NosqlInjectionATM.ql
@@ -18,7 +18,7 @@ import DataFlow::PathGraph
 import experimental.adaptivethreatmodeling.NosqlInjectionATM
 
 from AtmConfig cfg, DataFlow::PathNode source, DataFlow::PathNode sink, float score
-where cfg.getAlerts(source, sink, score)
+where cfg.hasAlert(source, sink, score)
 select sink.getNode(), source, sink,
   "(Experimental) This may be a database query that depends on $@. Identified using machine learning.",
   source.getNode(), "a user-provided value", score
diff --git a/javascript/ql/experimental/adaptivethreatmodeling/src/SqlInjectionATM.ql b/javascript/ql/experimental/adaptivethreatmodeling/src/SqlInjectionATM.ql
index 16921565707..c51367c6fcb 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/src/SqlInjectionATM.ql
+++ b/javascript/ql/experimental/adaptivethreatmodeling/src/SqlInjectionATM.ql
@@ -18,7 +18,7 @@ import ATM::ResultsInfo
 import DataFlow::PathGraph
 
 from AtmConfig cfg, DataFlow::PathNode source, DataFlow::PathNode sink, float score
-where cfg.getAlerts(source, sink, score)
+where cfg.hasAlert(source, sink, score)
 select sink.getNode(), source, sink,
   "(Experimental) This may be a database query that depends on $@. Identified using machine learning.",
   source.getNode(), "a user-provided value", score
diff --git a/javascript/ql/experimental/adaptivethreatmodeling/src/TaintedPathATM.ql b/javascript/ql/experimental/adaptivethreatmodeling/src/TaintedPathATM.ql
index e4e4db0bf32..cb9aca19192 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/src/TaintedPathATM.ql
+++ b/javascript/ql/experimental/adaptivethreatmodeling/src/TaintedPathATM.ql
@@ -22,7 +22,7 @@ import DataFlow::PathGraph
 import experimental.adaptivethreatmodeling.TaintedPathATM
 
 from AtmConfig cfg, DataFlow::PathNode source, DataFlow::PathNode sink, float score
-where cfg.getAlerts(source, sink, score)
+where cfg.hasAlert(source, sink, score)
 select sink.getNode(), source, sink,
   "(Experimental) This may be a path that depends on $@. Identified using machine learning.",
   source.getNode(), "a user-provided value", score
diff --git a/javascript/ql/experimental/adaptivethreatmodeling/src/XssATM.ql b/javascript/ql/experimental/adaptivethreatmodeling/src/XssATM.ql
index deac86922ab..01f0418888f 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/src/XssATM.ql
+++ b/javascript/ql/experimental/adaptivethreatmodeling/src/XssATM.ql
@@ -19,7 +19,7 @@ import DataFlow::PathGraph
 import experimental.adaptivethreatmodeling.XssATM
 
 from AtmConfig cfg, DataFlow::PathNode source, DataFlow::PathNode sink, float score
-where cfg.getAlerts(source, sink, score)
+where cfg.hasAlert(source, sink, score)
 select sink.getNode(), source, sink,
   "(Experimental) This may be a cross-site scripting vulnerability due to $@. Identified using machine learning.",
   source.getNode(), "a user-provided value", score
diff --git a/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/EndpointFeatures.ql b/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/EndpointFeatures.ql
index 9439fda8ab2..a68cebb41da 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/EndpointFeatures.ql
+++ b/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/EndpointFeatures.ql
@@ -22,7 +22,7 @@ query predicate tokenFeatures(DataFlow::Node endpoint, string featureName, strin
     not exists(any(TaintedPathAtm::TaintedPathAtmConfig cfg).getAReasonSinkExcluded(endpoint)) or
     not exists(any(XssAtm::DomBasedXssAtmConfig cfg).getAReasonSinkExcluded(endpoint)) or
     any(EndpointCharacteristics::IsArgumentToModeledFunctionCharacteristic characteristic)
-        .getEndpoints(endpoint)
+        .appliesToEndpoint(endpoint)
   ) and
   EndpointFeatures::tokenFeatures(endpoint, featureName, featureValue)
 }

From 4a6de3e444dc793a57e8c43a91c382edd7ab3cd5 Mon Sep 17 00:00:00 2001
From: tiferet <tiferet@github.com>
Date: Wed, 30 Nov 2022 17:25:19 -0800
Subject: [PATCH 0903/1420] Apply suggestion from code review

---
 .../lib/experimental/adaptivethreatmodeling/ATMConfig.qll     | 4 +++-
 .../adaptivethreatmodeling/src/NosqlInjectionATM.ql           | 2 +-
 .../adaptivethreatmodeling/src/SqlInjectionATM.ql             | 2 +-
 .../experimental/adaptivethreatmodeling/src/TaintedPathATM.ql | 2 +-
 .../ql/experimental/adaptivethreatmodeling/src/XssATM.ql      | 2 +-
 5 files changed, 7 insertions(+), 5 deletions(-)

diff --git a/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/ATMConfig.qll b/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/ATMConfig.qll
index b4a92bf1010..d6582eb969e 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/ATMConfig.qll
+++ b/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/ATMConfig.qll
@@ -147,7 +147,9 @@ abstract class AtmConfig extends JS::TaintTracking::Configuration {
    * to this ML-boosted configuration, whereas the unboosted base query does not contain this source and sink
    * combination.
    */
-  predicate hasAlert(JS::DataFlow::PathNode source, JS::DataFlow::PathNode sink, float score) {
+  predicate hasBoostedFlowPath(
+    JS::DataFlow::PathNode source, JS::DataFlow::PathNode sink, float score
+  ) {
     this.hasFlowPath(source, sink) and
     not AtmResultsInfo::isFlowLikelyInBaseQuery(source.getNode(), sink.getNode()) and
     score = AtmResultsInfo::getScoreForFlow(source.getNode(), sink.getNode())
diff --git a/javascript/ql/experimental/adaptivethreatmodeling/src/NosqlInjectionATM.ql b/javascript/ql/experimental/adaptivethreatmodeling/src/NosqlInjectionATM.ql
index 47aca8843b4..6d5428f7c91 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/src/NosqlInjectionATM.ql
+++ b/javascript/ql/experimental/adaptivethreatmodeling/src/NosqlInjectionATM.ql
@@ -18,7 +18,7 @@ import DataFlow::PathGraph
 import experimental.adaptivethreatmodeling.NosqlInjectionATM
 
 from AtmConfig cfg, DataFlow::PathNode source, DataFlow::PathNode sink, float score
-where cfg.hasAlert(source, sink, score)
+where cfg.hasBoostedFlowPath(source, sink, score)
 select sink.getNode(), source, sink,
   "(Experimental) This may be a database query that depends on $@. Identified using machine learning.",
   source.getNode(), "a user-provided value", score
diff --git a/javascript/ql/experimental/adaptivethreatmodeling/src/SqlInjectionATM.ql b/javascript/ql/experimental/adaptivethreatmodeling/src/SqlInjectionATM.ql
index c51367c6fcb..fdeb79de145 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/src/SqlInjectionATM.ql
+++ b/javascript/ql/experimental/adaptivethreatmodeling/src/SqlInjectionATM.ql
@@ -18,7 +18,7 @@ import ATM::ResultsInfo
 import DataFlow::PathGraph
 
 from AtmConfig cfg, DataFlow::PathNode source, DataFlow::PathNode sink, float score
-where cfg.hasAlert(source, sink, score)
+where cfg.hasBoostedFlowPath(source, sink, score)
 select sink.getNode(), source, sink,
   "(Experimental) This may be a database query that depends on $@. Identified using machine learning.",
   source.getNode(), "a user-provided value", score
diff --git a/javascript/ql/experimental/adaptivethreatmodeling/src/TaintedPathATM.ql b/javascript/ql/experimental/adaptivethreatmodeling/src/TaintedPathATM.ql
index cb9aca19192..b505a381971 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/src/TaintedPathATM.ql
+++ b/javascript/ql/experimental/adaptivethreatmodeling/src/TaintedPathATM.ql
@@ -22,7 +22,7 @@ import DataFlow::PathGraph
 import experimental.adaptivethreatmodeling.TaintedPathATM
 
 from AtmConfig cfg, DataFlow::PathNode source, DataFlow::PathNode sink, float score
-where cfg.hasAlert(source, sink, score)
+where cfg.hasBoostedFlowPath(source, sink, score)
 select sink.getNode(), source, sink,
   "(Experimental) This may be a path that depends on $@. Identified using machine learning.",
   source.getNode(), "a user-provided value", score
diff --git a/javascript/ql/experimental/adaptivethreatmodeling/src/XssATM.ql b/javascript/ql/experimental/adaptivethreatmodeling/src/XssATM.ql
index 01f0418888f..449f450f3ce 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/src/XssATM.ql
+++ b/javascript/ql/experimental/adaptivethreatmodeling/src/XssATM.ql
@@ -19,7 +19,7 @@ import DataFlow::PathGraph
 import experimental.adaptivethreatmodeling.XssATM
 
 from AtmConfig cfg, DataFlow::PathNode source, DataFlow::PathNode sink, float score
-where cfg.hasAlert(source, sink, score)
+where cfg.hasBoostedFlowPath(source, sink, score)
 select sink.getNode(), source, sink,
   "(Experimental) This may be a cross-site scripting vulnerability due to $@. Identified using machine learning.",
   source.getNode(), "a user-provided value", score

From 3dfe18b565fc10861b4702297ff2cfc78b959824 Mon Sep 17 00:00:00 2001
From: Jeroen Ketema <jketema@github.com>
Date: Wed, 30 Nov 2022 21:08:36 +0100
Subject: [PATCH 0904/1420] C++: Introduce the coarse upper bound check from
 default taint tracking

---
 .../src/Security/CWE/CWE-022/TaintedPath.ql   | 29 +++++++++++++++++++
 1 file changed, 29 insertions(+)

diff --git a/cpp/ql/src/Security/CWE/CWE-022/TaintedPath.ql b/cpp/ql/src/Security/CWE/CWE-022/TaintedPath.ql
index 4d383055c29..f15a9bb1ad2 100644
--- a/cpp/ql/src/Security/CWE/CWE-022/TaintedPath.ql
+++ b/cpp/ql/src/Security/CWE/CWE-022/TaintedPath.ql
@@ -65,6 +65,29 @@ Expr asSinkExpr(DataFlow::Node node) {
         .getUnconvertedResultExpression()
 }
 
+/**
+ * Holds for a variable that has any kind of upper-bound check anywhere in the program.
+ * This is biased towards being inclusive and being a coarse overapproximation because
+ * there are a lot of valid ways of doing an upper bounds checks if we don't consider
+ * where it occurs, for example:
+ * ```cpp
+ *   if (x < 10) { sink(x); }
+ *
+ *   if (10 > y) { sink(y); }
+ *
+ *   if (z > 10) { z = 10; }
+ *   sink(z);
+ * ```
+ */
+predicate hasUpperBoundsCheck(Variable var) {
+  exists(RelationalOperation oper, VariableAccess access |
+    oper.getAnOperand() = access and
+    access.getTarget() = var and
+    // Comparing to 0 is not an upper bound check
+    not oper.getAnOperand().getValue() = "0"
+  )
+}
+
 class TaintedPathConfiguration extends TaintTracking::Configuration {
   TaintedPathConfiguration() { this = "TaintedPathConfiguration" }
 
@@ -80,6 +103,12 @@ class TaintedPathConfiguration extends TaintTracking::Configuration {
 
   override predicate isSanitizer(DataFlow::Node node) {
     node.asExpr().(Call).getTarget().getUnspecifiedType() instanceof ArithmeticType
+    or
+    exists(LoadInstruction load, Variable checkedVar |
+      load = node.asInstruction() and
+      checkedVar = load.getSourceAddress().(VariableAddressInstruction).getAstVariable() and
+      hasUpperBoundsCheck(checkedVar)
+    )
   }
 
   predicate hasFilteredFlowPath(DataFlow::PathNode source, DataFlow::PathNode sink) {

From 38b8cf4fd47cadc14839e1c655f1096be4a51155 Mon Sep 17 00:00:00 2001
From: Felicity Chapman <felicitymay@github.com>
Date: Thu, 1 Dec 2022 08:44:40 +0000
Subject: [PATCH 0905/1420] Update
 docs/codeql/codeql-language-guides/basic-query-for-java-code.rst

Co-authored-by: Tony Torralba <atorralba@users.noreply.github.com>
---
 .../codeql/codeql-language-guides/basic-query-for-java-code.rst | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/docs/codeql/codeql-language-guides/basic-query-for-java-code.rst b/docs/codeql/codeql-language-guides/basic-query-for-java-code.rst
index d84439704bc..a7d783804b9 100644
--- a/docs/codeql/codeql-language-guides/basic-query-for-java-code.rst
+++ b/docs/codeql/codeql-language-guides/basic-query-for-java-code.rst
@@ -137,7 +137,7 @@ Further reading
 
 .. |language-code| replace:: ``java``
 
-.. |example-url| replace:: hhttps://github.com/apache/activemq
+.. |example-url| replace:: https://github.com/apache/activemq
 
 .. |image-quick-query| image:: ../images/codeql-for-visual-studio-code/quick-query-tab-java.png
 

From b1b3487028ff570d73853acbf8accf152f7140d3 Mon Sep 17 00:00:00 2001
From: Geoffrey White <40627776+geoffw0@users.noreply.github.com>
Date: Wed, 30 Nov 2022 14:44:38 +0000
Subject: [PATCH 0906/1420] Swift: Add a test for MaD data sources in generics.

---
 .../dataflow/flowsources/FlowSources.expected |  14 +++
 .../dataflow/flowsources/FlowSources.ql       |  37 ++++++
 .../dataflow/flowsources/generics.swift       | 118 ++++++++++++++++++
 3 files changed, 169 insertions(+)
 create mode 100644 swift/ql/test/library-tests/dataflow/flowsources/generics.swift

diff --git a/swift/ql/test/library-tests/dataflow/flowsources/FlowSources.expected b/swift/ql/test/library-tests/dataflow/flowsources/FlowSources.expected
index 078385e1e00..181fb36d1d2 100644
--- a/swift/ql/test/library-tests/dataflow/flowsources/FlowSources.expected
+++ b/swift/ql/test/library-tests/dataflow/flowsources/FlowSources.expected
@@ -5,6 +5,20 @@
 | customurlschemes.swift:48:9:48:28 | ...[...] | Remote URL in UIApplicationDelegate.application.launchOptions |
 | data.swift:18:20:18:20 | call to init(contentsOf:options:) | external |
 | data.swift:18:20:18:54 | call to init(contentsOf:options:) | external |
+| file://:0:0:0:0 | .source1 | external |
+| file://:0:0:0:0 | .source9 | external |
+| generics.swift:10:9:10:16 | .source1 | external |
+| generics.swift:11:9:11:16 | .source2 | external |
+| generics.swift:12:9:12:24 | call to source3() | external |
+| generics.swift:65:9:65:18 | .source9 | external |
+| generics.swift:66:9:66:18 | .source10 | external |
+| generics.swift:67:9:67:27 | call to source11() | external |
+| generics.swift:68:9:68:18 | .source12 | external |
+| generics.swift:69:9:69:27 | call to source13() | external |
+| generics.swift:88:9:88:15 | .source1 | external |
+| generics.swift:89:9:89:15 | .source2 | external |
+| generics.swift:112:9:112:15 | .source1 | external |
+| generics.swift:113:9:113:15 | .source2 | external |
 | nsdata.swift:18:17:18:17 | call to init(contentsOf:) | external |
 | nsdata.swift:18:17:18:40 | call to init(contentsOf:) | external |
 | nsdata.swift:19:17:19:17 | call to init(contentsOf:options:) | external |
diff --git a/swift/ql/test/library-tests/dataflow/flowsources/FlowSources.ql b/swift/ql/test/library-tests/dataflow/flowsources/FlowSources.ql
index 8b6b9bd8906..57a75258100 100644
--- a/swift/ql/test/library-tests/dataflow/flowsources/FlowSources.ql
+++ b/swift/ql/test/library-tests/dataflow/flowsources/FlowSources.ql
@@ -1,5 +1,42 @@
 import swift
 import codeql.swift.dataflow.FlowSources
+import codeql.swift.dataflow.ExternalFlow
+
+/**
+ * Custom flow sources for this test. These cases ensure that MaD source
+ * definitions are able to successfully match a range of class fields and
+ * member functions.
+ */
+class CustomTestSourcesCsv extends SourceModelCsv {
+  override predicate row(string row) {
+    row =
+      [
+        ";MySimpleClass;true;source1;;;;remote",
+        ";MySimpleClass;true;source2;;;;remote",
+        ";MySimpleClass;true;source3();;;ReturnValue;remote",
+        // ---
+        ";MyGeneric;true;source1;;;;remote",
+        ";MyGeneric;true;source2;;;;remote",
+        ";MyGeneric;true;source3();;;ReturnValue;remote",
+        ";MyDerived;true;source4;;;;remote",
+        ";MyDerived;true;source5;;;;remote",
+        ";MyDerived;true;source6();;;ReturnValue;remote",
+        ";MyDerived;true;source7;;;;remote",
+        ";MyDerived;true;source8();;;ReturnValue;remote",
+        ";MyDerived2;true;source9;;;;remote",
+        ";MyDerived2;true;source10;;;;remote",
+        ";MyDerived2;true;source11();;;ReturnValue;remote",
+        ";MyDerived2;true;source12;;;;remote",
+        ";MyDerived2;true;source13();;;ReturnValue;remote",
+        // ---
+        ";MyProtocol;true;source1;;;;remote",
+        ";MyProtocol;true;source2;;;;remote",
+        // ---
+        ";MyProtocol2;true;source1;;;;remote",
+        ";MyProtocol2;true;source2;;;;remote",
+      ]
+  }
+}
 
 from RemoteFlowSource source
 select source, concat(source.getSourceType(), ", ")
diff --git a/swift/ql/test/library-tests/dataflow/flowsources/generics.swift b/swift/ql/test/library-tests/dataflow/flowsources/generics.swift
new file mode 100644
index 00000000000..254e4e59844
--- /dev/null
+++ b/swift/ql/test/library-tests/dataflow/flowsources/generics.swift
@@ -0,0 +1,118 @@
+
+class MySimpleClass
+{
+    let source1: Int = 0
+    var source2: Int { get { return 0 } }
+    func source3() -> Int { return 0 }
+}
+
+func useMySimpleClass(simple: MySimpleClass) {
+    _ = simple.source1 // SOURCE
+    _ = simple.source2 // SOURCE
+    _ = simple.source3() // SOURCE
+}
+
+// ---
+
+class MyGeneric<T> {
+    let source1: Int = 0
+    var source2: T? { get { return nil } }
+    func source3() -> Int { return 0 }
+}
+
+class MyDerived<T> : MyGeneric<T> {
+    let source4: Int = 0
+    var source5: T? { get { return nil } }
+    func source6() -> Int { return 0 }
+}
+
+extension MyDerived
+{
+    var source7: Int { get { return 0 } }
+    func source8() -> Int { return 0 }
+}
+
+class MyDerived2 : MyGeneric<Int> {
+    let source9: Int = 0
+    var source10: Int { get { return 0 } }
+    func source11() -> Int { return 0 }
+}
+
+extension MyDerived2
+{
+    var source12: Int { get { return 0 } }
+    func source13() -> Int { return 0 }
+}
+
+func useDerived(generic: MyGeneric<Int>, generic2: MyGeneric<Any>, derived: MyDerived<Int>, derived2: MyDerived2) {
+    _ = generic.source1 // SOURCE [NOT DETECTED]
+    _ = generic.source2 // SOURCE [NOT DETECTED]
+    _ = generic.source3() // SOURCE [NOT DETECTED]
+    _ = generic2.source1 // SOURCE [NOT DETECTED]
+    _ = generic2.source2 // SOURCE [NOT DETECTED]
+    _ = generic2.source3() // SOURCE [NOT DETECTED]
+    _ = derived.source1 // SOURCE [NOT DETECTED]
+    _ = derived.source2 // SOURCE [NOT DETECTED]
+    _ = derived.source3() // SOURCE [NOT DETECTED]
+    _ = derived.source4 // SOURCE [NOT DETECTED]
+    _ = derived.source5 // SOURCE [NOT DETECTED]
+    _ = derived.source6() // SOURCE [NOT DETECTED]
+    _ = derived.source7 // SOURCE [NOT DETECTED]
+    _ = derived.source8() // SOURCE [NOT DETECTED]
+    _ = derived2.source1 // SOURCE [NOT DETECTED]
+    _ = derived2.source2 // SOURCE [NOT DETECTED]
+    _ = derived2.source3() // SOURCE [NOT DETECTED]
+    _ = derived2.source9 // SOURCE
+    _ = derived2.source10 // SOURCE
+    _ = derived2.source11() // SOURCE
+    _ = derived2.source12 // SOURCE
+    _ = derived2.source13() // SOURCE
+}
+
+// ---
+
+protocol MyProtocol {
+    var source1: Int { get }
+    var source2: Int { get }
+}
+
+class MyImpl<T> : MyProtocol {
+    var source1: Int { get { return 0 } }
+}
+
+extension MyImpl {
+    var source2: Int { get { return 0 } }
+}
+
+func useProtocol(proto: MyProtocol, impl: MyImpl<Int>, impl2: MyImpl<Any>) {
+    _ = proto.source1 // SOURCE
+    _ = proto.source2 // SOURCE
+    _ = impl.source1 // SOURCE [NOT DETECTED]
+    _ = impl.source2 // SOURCE [NOT DETECTED]
+    _ = impl2.source1 // SOURCE [NOT DETECTED]
+    _ = impl2.source2 // SOURCE [NOT DETECTED]
+}
+
+// ---
+
+protocol MyProtocol2 {
+    var source1: Int { get }
+    var source2: Int { get }
+}
+
+class MyImpl2<T> {
+    var source1: Int { get { return 0 } }
+}
+
+extension MyImpl2 : MyProtocol2 {
+    var source2: Int { get { return 0 } }
+}
+
+func useProtocol2(proto: MyProtocol2, impl: MyImpl2<Int>, impl2: MyImpl2<Any>) {
+    _ = proto.source1 // SOURCE
+    _ = proto.source2 // SOURCE
+    _ = impl.source1 // SOURCE [NOT DETECTED]
+    _ = impl.source2 // SOURCE [NOT DETECTED]
+    _ = impl2.source1 // SOURCE [NOT DETECTED]
+    _ = impl2.source2 // SOURCE [NOT DETECTED]
+}

From 8f24b0b8150dac4ccb2e2ba4d53c6be62a76e4e4 Mon Sep 17 00:00:00 2001
From: Geoffrey White <40627776+geoffw0@users.noreply.github.com>
Date: Wed, 30 Nov 2022 23:53:07 +0000
Subject: [PATCH 0907/1420] Swift: Add missing comment.

---
 swift/ql/lib/codeql/swift/dataflow/ExternalFlow.qll | 1 +
 1 file changed, 1 insertion(+)

diff --git a/swift/ql/lib/codeql/swift/dataflow/ExternalFlow.qll b/swift/ql/lib/codeql/swift/dataflow/ExternalFlow.qll
index 9e0433958ba..5986eb4a120 100644
--- a/swift/ql/lib/codeql/swift/dataflow/ExternalFlow.qll
+++ b/swift/ql/lib/codeql/swift/dataflow/ExternalFlow.qll
@@ -444,6 +444,7 @@ private Element interpretElement0(
       getDeclType(decl) = nomType
     )
     or
+    // Fields
     signature = "" and
     exists(NominalType nomType, IterableDeclContext decl, FieldDecl field |
       field.getName() = name and

From d71eeb4c95001328dcefc2e7ab50b6c736b57f12 Mon Sep 17 00:00:00 2001
From: Geoffrey White <40627776+geoffw0@users.noreply.github.com>
Date: Mon, 28 Nov 2022 19:26:40 +0000
Subject: [PATCH 0908/1420] Swift: First fix for MaD on generics.

---
 .../codeql/swift/dataflow/ExternalFlow.qll    |  8 +++---
 .../dataflow/flowsources/FlowSources.expected | 15 ++++++++++-
 .../dataflow/flowsources/generics.swift       | 26 +++++++++----------
 3 files changed, 31 insertions(+), 18 deletions(-)

diff --git a/swift/ql/lib/codeql/swift/dataflow/ExternalFlow.qll b/swift/ql/lib/codeql/swift/dataflow/ExternalFlow.qll
index 5986eb4a120..35a6a79d527 100644
--- a/swift/ql/lib/codeql/swift/dataflow/ExternalFlow.qll
+++ b/swift/ql/lib/codeql/swift/dataflow/ExternalFlow.qll
@@ -446,17 +446,17 @@ private Element interpretElement0(
     or
     // Fields
     signature = "" and
-    exists(NominalType nomType, IterableDeclContext decl, FieldDecl field |
+    exists(NominalTypeDecl nomTypeDecl, IterableDeclContext decl, FieldDecl field |
       field.getName() = name and
       field = decl.getAMember() and
-      nomType.getFullName() = type and
+      nomTypeDecl.getFullName() = type and
       result = field
     |
       subtypes = true and
-      getDeclType(decl) = nomType.getADerivedType*()
+      decl = nomTypeDecl.getADerivedTypeDecl*()
       or
       subtypes = false and
-      getDeclType(decl) = nomType
+      decl = nomTypeDecl
     )
   )
 }
diff --git a/swift/ql/test/library-tests/dataflow/flowsources/FlowSources.expected b/swift/ql/test/library-tests/dataflow/flowsources/FlowSources.expected
index 181fb36d1d2..9d08088ceb1 100644
--- a/swift/ql/test/library-tests/dataflow/flowsources/FlowSources.expected
+++ b/swift/ql/test/library-tests/dataflow/flowsources/FlowSources.expected
@@ -6,17 +6,30 @@
 | data.swift:18:20:18:20 | call to init(contentsOf:options:) | external |
 | data.swift:18:20:18:54 | call to init(contentsOf:options:) | external |
 | file://:0:0:0:0 | .source1 | external |
+| file://:0:0:0:0 | .source1 | external |
+| file://:0:0:0:0 | .source4 | external |
 | file://:0:0:0:0 | .source9 | external |
 | generics.swift:10:9:10:16 | .source1 | external |
 | generics.swift:11:9:11:16 | .source2 | external |
 | generics.swift:12:9:12:24 | call to source3() | external |
+| generics.swift:48:9:48:17 | .source1 | external |
+| generics.swift:49:9:49:17 | .source2 | external |
+| generics.swift:51:9:51:18 | .source1 | external |
+| generics.swift:52:9:52:18 | .source2 | external |
+| generics.swift:54:9:54:17 | .source1 | external |
+| generics.swift:55:9:55:17 | .source2 | external |
+| generics.swift:57:9:57:17 | .source4 | external |
+| generics.swift:58:9:58:17 | .source5 | external |
+| generics.swift:62:9:62:18 | .source1 | external |
+| generics.swift:63:9:63:18 | .source2 | external |
 | generics.swift:65:9:65:18 | .source9 | external |
 | generics.swift:66:9:66:18 | .source10 | external |
 | generics.swift:67:9:67:27 | call to source11() | external |
-| generics.swift:68:9:68:18 | .source12 | external |
 | generics.swift:69:9:69:27 | call to source13() | external |
 | generics.swift:88:9:88:15 | .source1 | external |
 | generics.swift:89:9:89:15 | .source2 | external |
+| generics.swift:90:9:90:14 | .source1 | external |
+| generics.swift:92:9:92:15 | .source1 | external |
 | generics.swift:112:9:112:15 | .source1 | external |
 | generics.swift:113:9:113:15 | .source2 | external |
 | nsdata.swift:18:17:18:17 | call to init(contentsOf:) | external |
diff --git a/swift/ql/test/library-tests/dataflow/flowsources/generics.swift b/swift/ql/test/library-tests/dataflow/flowsources/generics.swift
index 254e4e59844..71650241506 100644
--- a/swift/ql/test/library-tests/dataflow/flowsources/generics.swift
+++ b/swift/ql/test/library-tests/dataflow/flowsources/generics.swift
@@ -45,27 +45,27 @@ extension MyDerived2
 }
 
 func useDerived(generic: MyGeneric<Int>, generic2: MyGeneric<Any>, derived: MyDerived<Int>, derived2: MyDerived2) {
-    _ = generic.source1 // SOURCE [NOT DETECTED]
-    _ = generic.source2 // SOURCE [NOT DETECTED]
+    _ = generic.source1 // SOURCE
+    _ = generic.source2 // SOURCE
     _ = generic.source3() // SOURCE [NOT DETECTED]
-    _ = generic2.source1 // SOURCE [NOT DETECTED]
-    _ = generic2.source2 // SOURCE [NOT DETECTED]
+    _ = generic2.source1 // SOURCE
+    _ = generic2.source2 // SOURCE
     _ = generic2.source3() // SOURCE [NOT DETECTED]
-    _ = derived.source1 // SOURCE [NOT DETECTED]
-    _ = derived.source2 // SOURCE [NOT DETECTED]
+    _ = derived.source1 // SOURCE
+    _ = derived.source2 // SOURCE
     _ = derived.source3() // SOURCE [NOT DETECTED]
-    _ = derived.source4 // SOURCE [NOT DETECTED]
-    _ = derived.source5 // SOURCE [NOT DETECTED]
+    _ = derived.source4 // SOURCE
+    _ = derived.source5 // SOURCE
     _ = derived.source6() // SOURCE [NOT DETECTED]
     _ = derived.source7 // SOURCE [NOT DETECTED]
     _ = derived.source8() // SOURCE [NOT DETECTED]
-    _ = derived2.source1 // SOURCE [NOT DETECTED]
-    _ = derived2.source2 // SOURCE [NOT DETECTED]
+    _ = derived2.source1 // SOURCE
+    _ = derived2.source2 // SOURCE
     _ = derived2.source3() // SOURCE [NOT DETECTED]
     _ = derived2.source9 // SOURCE
     _ = derived2.source10 // SOURCE
     _ = derived2.source11() // SOURCE
-    _ = derived2.source12 // SOURCE
+    _ = derived2.source12 // SOURCE [NOT DETECTED]
     _ = derived2.source13() // SOURCE
 }
 
@@ -87,9 +87,9 @@ extension MyImpl {
 func useProtocol(proto: MyProtocol, impl: MyImpl<Int>, impl2: MyImpl<Any>) {
     _ = proto.source1 // SOURCE
     _ = proto.source2 // SOURCE
-    _ = impl.source1 // SOURCE [NOT DETECTED]
+    _ = impl.source1 // SOURCE
     _ = impl.source2 // SOURCE [NOT DETECTED]
-    _ = impl2.source1 // SOURCE [NOT DETECTED]
+    _ = impl2.source1 // SOURCE
     _ = impl2.source2 // SOURCE [NOT DETECTED]
 }
 

From 5a4d1882551f718e7eb3d047dc262dd89fd9936a Mon Sep 17 00:00:00 2001
From: Geoffrey White <40627776+geoffw0@users.noreply.github.com>
Date: Wed, 30 Nov 2022 17:25:50 +0000
Subject: [PATCH 0909/1420] Swift: Fix for extensions.

---
 swift/ql/lib/codeql/swift/dataflow/ExternalFlow.qll  | 12 ++++++++++--
 .../dataflow/flowsources/FlowSources.expected        |  4 ++++
 .../dataflow/flowsources/generics.swift              |  8 ++++----
 3 files changed, 18 insertions(+), 6 deletions(-)

diff --git a/swift/ql/lib/codeql/swift/dataflow/ExternalFlow.qll b/swift/ql/lib/codeql/swift/dataflow/ExternalFlow.qll
index 35a6a79d527..a4760b6b6a0 100644
--- a/swift/ql/lib/codeql/swift/dataflow/ExternalFlow.qll
+++ b/swift/ql/lib/codeql/swift/dataflow/ExternalFlow.qll
@@ -402,6 +402,14 @@ private NominalType getDeclType(IterableDeclContext decl) {
   result = decl.(ProtocolDecl).getType()
 }
 
+private NominalTypeDecl resolveExtensions(IterableDeclContext decl) {
+  // TODO: this should be a method on IterableDeclContext
+  result = decl.(NominalTypeDecl)
+  or
+  result = decl.(ExtensionDecl).getExtendedTypeDecl()
+  // TODO: or a protocol added by the extension
+}
+
 /**
  * Gets the element in module `namespace` that satisfies the following properties:
  * 1. If the element is a member of a class-like type, then the class-like type has name `type`
@@ -453,10 +461,10 @@ private Element interpretElement0(
       result = field
     |
       subtypes = true and
-      decl = nomTypeDecl.getADerivedTypeDecl*()
+      resolveExtensions(decl) = nomTypeDecl.getADerivedTypeDecl*()
       or
       subtypes = false and
-      decl = nomTypeDecl
+      resolveExtensions(decl) = nomTypeDecl
     )
   )
 }
diff --git a/swift/ql/test/library-tests/dataflow/flowsources/FlowSources.expected b/swift/ql/test/library-tests/dataflow/flowsources/FlowSources.expected
index 9d08088ceb1..f71957d36a7 100644
--- a/swift/ql/test/library-tests/dataflow/flowsources/FlowSources.expected
+++ b/swift/ql/test/library-tests/dataflow/flowsources/FlowSources.expected
@@ -20,16 +20,20 @@
 | generics.swift:55:9:55:17 | .source2 | external |
 | generics.swift:57:9:57:17 | .source4 | external |
 | generics.swift:58:9:58:17 | .source5 | external |
+| generics.swift:60:9:60:17 | .source7 | external |
 | generics.swift:62:9:62:18 | .source1 | external |
 | generics.swift:63:9:63:18 | .source2 | external |
 | generics.swift:65:9:65:18 | .source9 | external |
 | generics.swift:66:9:66:18 | .source10 | external |
 | generics.swift:67:9:67:27 | call to source11() | external |
+| generics.swift:68:9:68:18 | .source12 | external |
 | generics.swift:69:9:69:27 | call to source13() | external |
 | generics.swift:88:9:88:15 | .source1 | external |
 | generics.swift:89:9:89:15 | .source2 | external |
 | generics.swift:90:9:90:14 | .source1 | external |
+| generics.swift:91:9:91:14 | .source2 | external |
 | generics.swift:92:9:92:15 | .source1 | external |
+| generics.swift:93:9:93:15 | .source2 | external |
 | generics.swift:112:9:112:15 | .source1 | external |
 | generics.swift:113:9:113:15 | .source2 | external |
 | nsdata.swift:18:17:18:17 | call to init(contentsOf:) | external |
diff --git a/swift/ql/test/library-tests/dataflow/flowsources/generics.swift b/swift/ql/test/library-tests/dataflow/flowsources/generics.swift
index 71650241506..3c729e3beb6 100644
--- a/swift/ql/test/library-tests/dataflow/flowsources/generics.swift
+++ b/swift/ql/test/library-tests/dataflow/flowsources/generics.swift
@@ -57,7 +57,7 @@ func useDerived(generic: MyGeneric<Int>, generic2: MyGeneric<Any>, derived: MyDe
     _ = derived.source4 // SOURCE
     _ = derived.source5 // SOURCE
     _ = derived.source6() // SOURCE [NOT DETECTED]
-    _ = derived.source7 // SOURCE [NOT DETECTED]
+    _ = derived.source7 // SOURCE
     _ = derived.source8() // SOURCE [NOT DETECTED]
     _ = derived2.source1 // SOURCE
     _ = derived2.source2 // SOURCE
@@ -65,7 +65,7 @@ func useDerived(generic: MyGeneric<Int>, generic2: MyGeneric<Any>, derived: MyDe
     _ = derived2.source9 // SOURCE
     _ = derived2.source10 // SOURCE
     _ = derived2.source11() // SOURCE
-    _ = derived2.source12 // SOURCE [NOT DETECTED]
+    _ = derived2.source12 // SOURCE
     _ = derived2.source13() // SOURCE
 }
 
@@ -88,9 +88,9 @@ func useProtocol(proto: MyProtocol, impl: MyImpl<Int>, impl2: MyImpl<Any>) {
     _ = proto.source1 // SOURCE
     _ = proto.source2 // SOURCE
     _ = impl.source1 // SOURCE
-    _ = impl.source2 // SOURCE [NOT DETECTED]
+    _ = impl.source2 // SOURCE
     _ = impl2.source1 // SOURCE
-    _ = impl2.source2 // SOURCE [NOT DETECTED]
+    _ = impl2.source2 // SOURCE
 }
 
 // ---

From 0a0cfc34e7399465bd2c429295dc5652f8b0e125 Mon Sep 17 00:00:00 2001
From: Geoffrey White <40627776+geoffw0@users.noreply.github.com>
Date: Thu, 1 Dec 2022 00:01:42 +0000
Subject: [PATCH 0910/1420] Swift: Do the same for methods.

---
 swift/ql/lib/codeql/swift/dataflow/ExternalFlow.qll  |  8 ++++----
 .../dataflow/flowsources/FlowSources.expected        |  6 ++++++
 .../dataflow/flowsources/generics.swift              | 12 ++++++------
 3 files changed, 16 insertions(+), 10 deletions(-)

diff --git a/swift/ql/lib/codeql/swift/dataflow/ExternalFlow.qll b/swift/ql/lib/codeql/swift/dataflow/ExternalFlow.qll
index a4760b6b6a0..7aa88440f2b 100644
--- a/swift/ql/lib/codeql/swift/dataflow/ExternalFlow.qll
+++ b/swift/ql/lib/codeql/swift/dataflow/ExternalFlow.qll
@@ -438,18 +438,18 @@ private Element interpretElement0(
     )
     or
     // Member functions
-    exists(NominalType nomType, IterableDeclContext decl, MethodDecl method |
+    exists(NominalTypeDecl nomTypeDecl, IterableDeclContext decl, MethodDecl method |
       method.getName() = name and
       method = decl.getAMember() and
-      nomType.getFullName() = type and
+      nomTypeDecl.getFullName() = type and
       matchesSignature(method, signature) and
       result = method
     |
       subtypes = true and
-      getDeclType(decl) = nomType.getADerivedType*()
+      resolveExtensions(decl) = nomTypeDecl.getADerivedTypeDecl*()
       or
       subtypes = false and
-      getDeclType(decl) = nomType
+      resolveExtensions(decl) = nomTypeDecl
     )
     or
     // Fields
diff --git a/swift/ql/test/library-tests/dataflow/flowsources/FlowSources.expected b/swift/ql/test/library-tests/dataflow/flowsources/FlowSources.expected
index f71957d36a7..2c2a4df3898 100644
--- a/swift/ql/test/library-tests/dataflow/flowsources/FlowSources.expected
+++ b/swift/ql/test/library-tests/dataflow/flowsources/FlowSources.expected
@@ -14,15 +14,21 @@
 | generics.swift:12:9:12:24 | call to source3() | external |
 | generics.swift:48:9:48:17 | .source1 | external |
 | generics.swift:49:9:49:17 | .source2 | external |
+| generics.swift:50:9:50:25 | call to source3() | external |
 | generics.swift:51:9:51:18 | .source1 | external |
 | generics.swift:52:9:52:18 | .source2 | external |
+| generics.swift:53:9:53:26 | call to source3() | external |
 | generics.swift:54:9:54:17 | .source1 | external |
 | generics.swift:55:9:55:17 | .source2 | external |
+| generics.swift:56:9:56:25 | call to source3() | external |
 | generics.swift:57:9:57:17 | .source4 | external |
 | generics.swift:58:9:58:17 | .source5 | external |
+| generics.swift:59:9:59:25 | call to source6() | external |
 | generics.swift:60:9:60:17 | .source7 | external |
+| generics.swift:61:9:61:25 | call to source8() | external |
 | generics.swift:62:9:62:18 | .source1 | external |
 | generics.swift:63:9:63:18 | .source2 | external |
+| generics.swift:64:9:64:26 | call to source3() | external |
 | generics.swift:65:9:65:18 | .source9 | external |
 | generics.swift:66:9:66:18 | .source10 | external |
 | generics.swift:67:9:67:27 | call to source11() | external |
diff --git a/swift/ql/test/library-tests/dataflow/flowsources/generics.swift b/swift/ql/test/library-tests/dataflow/flowsources/generics.swift
index 3c729e3beb6..41561d9c4c4 100644
--- a/swift/ql/test/library-tests/dataflow/flowsources/generics.swift
+++ b/swift/ql/test/library-tests/dataflow/flowsources/generics.swift
@@ -47,21 +47,21 @@ extension MyDerived2
 func useDerived(generic: MyGeneric<Int>, generic2: MyGeneric<Any>, derived: MyDerived<Int>, derived2: MyDerived2) {
     _ = generic.source1 // SOURCE
     _ = generic.source2 // SOURCE
-    _ = generic.source3() // SOURCE [NOT DETECTED]
+    _ = generic.source3() // SOURCE
     _ = generic2.source1 // SOURCE
     _ = generic2.source2 // SOURCE
-    _ = generic2.source3() // SOURCE [NOT DETECTED]
+    _ = generic2.source3() // SOURCE
     _ = derived.source1 // SOURCE
     _ = derived.source2 // SOURCE
-    _ = derived.source3() // SOURCE [NOT DETECTED]
+    _ = derived.source3() // SOURCE
     _ = derived.source4 // SOURCE
     _ = derived.source5 // SOURCE
-    _ = derived.source6() // SOURCE [NOT DETECTED]
+    _ = derived.source6() // SOURCE
     _ = derived.source7 // SOURCE
-    _ = derived.source8() // SOURCE [NOT DETECTED]
+    _ = derived.source8() // SOURCE
     _ = derived2.source1 // SOURCE
     _ = derived2.source2 // SOURCE
-    _ = derived2.source3() // SOURCE [NOT DETECTED]
+    _ = derived2.source3() // SOURCE
     _ = derived2.source9 // SOURCE
     _ = derived2.source10 // SOURCE
     _ = derived2.source11() // SOURCE

From c71bd4cad9222e1e77ce013be6079f6277b71bb4 Mon Sep 17 00:00:00 2001
From: Geoffrey White <40627776+geoffw0@users.noreply.github.com>
Date: Thu, 1 Dec 2022 00:02:06 +0000
Subject: [PATCH 0911/1420] Swift: Remove unused predicate.

---
 swift/ql/lib/codeql/swift/dataflow/ExternalFlow.qll | 12 ------------
 1 file changed, 12 deletions(-)

diff --git a/swift/ql/lib/codeql/swift/dataflow/ExternalFlow.qll b/swift/ql/lib/codeql/swift/dataflow/ExternalFlow.qll
index 7aa88440f2b..2bda55b7956 100644
--- a/swift/ql/lib/codeql/swift/dataflow/ExternalFlow.qll
+++ b/swift/ql/lib/codeql/swift/dataflow/ExternalFlow.qll
@@ -390,18 +390,6 @@ predicate matchesSignature(AbstractFunctionDecl func, string signature) {
   paramsString(func) = signature
 }
 
-private NominalType getDeclType(IterableDeclContext decl) {
-  result = decl.(ClassDecl).getType()
-  or
-  result = decl.(StructDecl).getType()
-  or
-  result = getDeclType(decl.(ExtensionDecl).getExtendedTypeDecl())
-  or
-  result = decl.(EnumDecl).getType()
-  or
-  result = decl.(ProtocolDecl).getType()
-}
-
 private NominalTypeDecl resolveExtensions(IterableDeclContext decl) {
   // TODO: this should be a method on IterableDeclContext
   result = decl.(NominalTypeDecl)

From 1ea44374a4b107bd23c2b4a67570279cd4271621 Mon Sep 17 00:00:00 2001
From: Geoffrey White <40627776+geoffw0@users.noreply.github.com>
Date: Thu, 1 Dec 2022 08:46:55 +0000
Subject: [PATCH 0912/1420] Swift: Autoformat.

---
 .../dataflow/flowsources/FlowSources.ql       | 27 +++++++------------
 1 file changed, 9 insertions(+), 18 deletions(-)

diff --git a/swift/ql/test/library-tests/dataflow/flowsources/FlowSources.ql b/swift/ql/test/library-tests/dataflow/flowsources/FlowSources.ql
index 57a75258100..0ec49cab7fa 100644
--- a/swift/ql/test/library-tests/dataflow/flowsources/FlowSources.ql
+++ b/swift/ql/test/library-tests/dataflow/flowsources/FlowSources.ql
@@ -11,29 +11,20 @@ class CustomTestSourcesCsv extends SourceModelCsv {
   override predicate row(string row) {
     row =
       [
-        ";MySimpleClass;true;source1;;;;remote",
-        ";MySimpleClass;true;source2;;;;remote",
+        ";MySimpleClass;true;source1;;;;remote", ";MySimpleClass;true;source2;;;;remote",
         ";MySimpleClass;true;source3();;;ReturnValue;remote",
         // ---
-        ";MyGeneric;true;source1;;;;remote",
-        ";MyGeneric;true;source2;;;;remote",
-        ";MyGeneric;true;source3();;;ReturnValue;remote",
-        ";MyDerived;true;source4;;;;remote",
-        ";MyDerived;true;source5;;;;remote",
-        ";MyDerived;true;source6();;;ReturnValue;remote",
-        ";MyDerived;true;source7;;;;remote",
-        ";MyDerived;true;source8();;;ReturnValue;remote",
-        ";MyDerived2;true;source9;;;;remote",
-        ";MyDerived2;true;source10;;;;remote",
-        ";MyDerived2;true;source11();;;ReturnValue;remote",
-        ";MyDerived2;true;source12;;;;remote",
+        ";MyGeneric;true;source1;;;;remote", ";MyGeneric;true;source2;;;;remote",
+        ";MyGeneric;true;source3();;;ReturnValue;remote", ";MyDerived;true;source4;;;;remote",
+        ";MyDerived;true;source5;;;;remote", ";MyDerived;true;source6();;;ReturnValue;remote",
+        ";MyDerived;true;source7;;;;remote", ";MyDerived;true;source8();;;ReturnValue;remote",
+        ";MyDerived2;true;source9;;;;remote", ";MyDerived2;true;source10;;;;remote",
+        ";MyDerived2;true;source11();;;ReturnValue;remote", ";MyDerived2;true;source12;;;;remote",
         ";MyDerived2;true;source13();;;ReturnValue;remote",
         // ---
-        ";MyProtocol;true;source1;;;;remote",
-        ";MyProtocol;true;source2;;;;remote",
+        ";MyProtocol;true;source1;;;;remote", ";MyProtocol;true;source2;;;;remote",
         // ---
-        ";MyProtocol2;true;source1;;;;remote",
-        ";MyProtocol2;true;source2;;;;remote",
+        ";MyProtocol2;true;source1;;;;remote", ";MyProtocol2;true;source2;;;;remote",
       ]
   }
 }

From 8acc09b551f6d82219713d033eef2b750e0d03e7 Mon Sep 17 00:00:00 2001
From: Geoffrey White <40627776+geoffw0@users.noreply.github.com>
Date: Thu, 1 Dec 2022 09:07:17 +0000
Subject: [PATCH 0913/1420] Swift: Make ql-for-ql happy.

---
 .../test/library-tests/dataflow/flowsources/FlowSources.ql  | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/swift/ql/test/library-tests/dataflow/flowsources/FlowSources.ql b/swift/ql/test/library-tests/dataflow/flowsources/FlowSources.ql
index 0ec49cab7fa..7c819cd56ed 100644
--- a/swift/ql/test/library-tests/dataflow/flowsources/FlowSources.ql
+++ b/swift/ql/test/library-tests/dataflow/flowsources/FlowSources.ql
@@ -3,9 +3,9 @@ import codeql.swift.dataflow.FlowSources
 import codeql.swift.dataflow.ExternalFlow
 
 /**
- * Custom flow sources for this test. These cases ensure that MaD source
- * definitions are able to successfully match a range of class fields and
- * member functions.
+ * A models-as-data class expressing custom flow sources for this test. These
+ * cases ensure that MaD source definitions are able to successfully match a
+ * range of class fields and member functions.
  */
 class CustomTestSourcesCsv extends SourceModelCsv {
   override predicate row(string row) {

From cd0d09d806cb84b5c1a34ff992711818eede552d Mon Sep 17 00:00:00 2001
From: Michael Nebel <michaelnebel@github.com>
Date: Thu, 1 Dec 2022 13:06:18 +0100
Subject: [PATCH 0914/1420] Java: Refactor to avoid using SummaryModelCsv.

---
 .../src/utils/flowtestcasegenerator/FlowTestCase.qll   |  4 ++--
 .../flowtestcasegenerator/GenerateFlowTestCase.py      | 10 +++++-----
 .../flowtestcasegenerator/GenerateFlowTestCase.qll     |  6 +++---
 3 files changed, 10 insertions(+), 10 deletions(-)

diff --git a/java/ql/src/utils/flowtestcasegenerator/FlowTestCase.qll b/java/ql/src/utils/flowtestcasegenerator/FlowTestCase.qll
index de4bae52065..0339ca4f233 100644
--- a/java/ql/src/utils/flowtestcasegenerator/FlowTestCase.qll
+++ b/java/ql/src/utils/flowtestcasegenerator/FlowTestCase.qll
@@ -12,7 +12,7 @@ private import FlowTestCaseSupportMethods
 
 /**
  * A CSV row to generate tests for. Users should extend this to define which
- * tests to generate. Rows specified here should also satisfy `SummaryModelCsv.row`.
+ * tests to generate. There should already exist a summaries for the rows specified here.
  */
 class TargetSummaryModelCsv extends Unit {
   /**
@@ -44,7 +44,7 @@ predicate summaryModelRow(
 /**
  * Gets a CSV row for which a test has been requested, but where a summary has not already been defined.
  */
-query string missingSummaryModelCsv() {
+query string missingSummaryModel() {
   any(TargetSummaryModelCsv target).row(result) and
   not summaryModelRow(_, _, _, _, _, _, _, _, _, _, result)
 }
diff --git a/java/ql/src/utils/flowtestcasegenerator/GenerateFlowTestCase.py b/java/ql/src/utils/flowtestcasegenerator/GenerateFlowTestCase.py
index 65c485c19cc..c3a590b1ccc 100755
--- a/java/ql/src/utils/flowtestcasegenerator/GenerateFlowTestCase.py
+++ b/java/ql/src/utils/flowtestcasegenerator/GenerateFlowTestCase.py
@@ -173,9 +173,9 @@ def getTuples(queryName, jsonResult, fname):
 with open(generatedJson, "r") as f:
     generateOutput = json.load(f)
     expectedTables = ("getTestCase", "getASupportMethodModel",
-                      "missingSummaryModelCsv", "getAParseFailure", "noTestCaseGenerated")
+                      "missingSummaryModel", "getAParseFailure", "noTestCaseGenerated")
 
-    testCaseRows, supportModelRows, missingSummaryModelCsvRows, parseFailureRows, noTestCaseGeneratedRows = \
+    testCaseRows, supportModelRows, missingSummaryModelRows, parseFailureRows, noTestCaseGeneratedRows = \
         tuple([getTuples(k, generateOutput, generatedJson)
                for k in expectedTables])
 
@@ -192,9 +192,9 @@ with open(generatedJson, "r") as f:
         print("Expected exactly one column in noTestCaseGenerated relation (got: %s)" %
               json.dumps(noTestCaseGeneratedRows), file=sys.stderr)
 
-    if len(missingSummaryModelCsvRows) != 0:
-        print("Tests for some CSV rows were requested that were not in scope (SummaryModelCsv.row does not hold):\n" +
-              "\n".join(r[0] for r in missingSummaryModelCsvRows))
+    if len(missingSummaryModelRows) != 0:
+        print("Tests for some CSV rows were requested that were not in scope (a summary doesn't already exist):\n" +
+              "\n".join(r[0] for r in missingSummaryModelRows))
         sys.exit(1)
     if len(parseFailureRows) != 0:
         print("The following rows failed to generate any test case. Check package, class and method name spelling, and argument and result specifications:\n%s" %
diff --git a/java/ql/src/utils/flowtestcasegenerator/GenerateFlowTestCase.qll b/java/ql/src/utils/flowtestcasegenerator/GenerateFlowTestCase.qll
index 5d9aa884ecc..2025affabf0 100644
--- a/java/ql/src/utils/flowtestcasegenerator/GenerateFlowTestCase.qll
+++ b/java/ql/src/utils/flowtestcasegenerator/GenerateFlowTestCase.qll
@@ -13,13 +13,13 @@ private import FlowTestCaseSupportMethods
 private import FlowTestCaseUtils
 
 /**
- * Gets a CSV row for which a test has been requested, and `SummaryModelCsv.row` does hold, but
+ * Gets a CSV row for which a test has been requested, and where there exist a summary, but
  * nonetheless we can't generate a test case for it, indicating we cannot resolve either the callable
  * spec or an input or output spec.
  */
 query string getAParseFailure(string reason) {
   any(TargetSummaryModelCsv target).row(result) and
-  any(SummaryModelCsv model).row(result) and
+  summaryModelRow(_, _, _, _, _, _, _, _, _, _, result) and
   (
     not summaryModelRow(_, _, _, _, _, _, _, _, _, _, result) and
     reason = "row could not be parsed"
@@ -52,7 +52,7 @@ query string getAParseFailure(string reason) {
  */
 query string noTestCaseGenerated() {
   any(TargetSummaryModelCsv target).row(result) and
-  any(SummaryModelCsv model).row(result) and
+  summaryModelRow(_, _, _, _, _, _, _, _, _, _, result) and
   not exists(getAParseFailure(_)) and
   not exists(any(TestCase tc).getATestSnippetForRow(result))
 }

From d47b3265c42b27e79873fc3ce9d005135dedc786 Mon Sep 17 00:00:00 2001
From: Rasmus Wriedt Larsen <rasmuswl@github.com>
Date: Thu, 1 Dec 2022 14:56:10 +0100
Subject: [PATCH 0915/1420] Python: Fix `py/meta/points-to-call-graph`

---
 python/ql/src/meta/analysis-quality/CallGraph.ql | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/python/ql/src/meta/analysis-quality/CallGraph.ql b/python/ql/src/meta/analysis-quality/CallGraph.ql
index 49be0157b05..2872912bb51 100644
--- a/python/ql/src/meta/analysis-quality/CallGraph.ql
+++ b/python/ql/src/meta/analysis-quality/CallGraph.ql
@@ -16,5 +16,5 @@ from DataFlowCall c, DataFlowCallableValue f
 where
   c.getCallable() = f and
   not c.getLocation().getFile() instanceof IgnoredFile and
-  not f.getLocation().getFile() instanceof IgnoredFile
+  not f.getScope().getLocation().getFile() instanceof IgnoredFile
 select c, "Call to $@", f.getScope(), f.toString()

From eb9bee23a0c2b0f35eb8d066c0c344d0933e662d Mon Sep 17 00:00:00 2001
From: Asger F <asgerf@github.com>
Date: Wed, 30 Nov 2022 11:27:58 +0100
Subject: [PATCH 0916/1420] JS: Remove MkAsyncFunctionResult

---
 .../ql/lib/semmle/javascript/ApiGraphs.qll    | 28 ++++++++-----------
 1 file changed, 12 insertions(+), 16 deletions(-)

diff --git a/javascript/ql/lib/semmle/javascript/ApiGraphs.qll b/javascript/ql/lib/semmle/javascript/ApiGraphs.qll
index 72d5a50cebe..085a8ca9fba 100644
--- a/javascript/ql/lib/semmle/javascript/ApiGraphs.qll
+++ b/javascript/ql/lib/semmle/javascript/ApiGraphs.qll
@@ -460,7 +460,6 @@ module API {
       this = Impl::MkClassInstance(result) or
       this = Impl::MkUse(result) or
       this = Impl::MkDef(result) or
-      this = Impl::MkAsyncFuncResult(result) or
       this = Impl::MkSyntheticCallbackArg(_, _, result)
     }
 
@@ -671,9 +670,6 @@ module API {
           cls.getAnInstanceReference() = trackDefNode(_)
         )
       } or
-      MkAsyncFuncResult(DataFlow::FunctionNode f) {
-        f = trackDefNode(_) and f.getFunction().isAsync() and hasSemantics(f)
-      } or
       MkDef(DataFlow::Node nd) { rhs(_, _, nd) } or
       MkUse(DataFlow::Node nd) { use(_, _, nd) } or
       /** A use of a TypeScript type. */
@@ -688,8 +684,7 @@ module API {
 
     class TDef = MkModuleDef or TNonModuleDef;
 
-    class TNonModuleDef =
-      MkModuleExport or MkClassInstance or MkAsyncFuncResult or MkDef or MkSyntheticCallbackArg;
+    class TNonModuleDef = MkModuleExport or MkClassInstance or MkDef or MkSyntheticCallbackArg;
 
     class TUse = MkModuleUse or MkModuleImport or MkUse or MkTypeUse;
 
@@ -740,10 +735,11 @@ module API {
             rhs = m.getAnExportedValue(prop)
           )
           or
-          exists(DataFlow::FunctionNode fn | fn = pred |
-            not fn.getFunction().isAsync() and
-            lbl = Label::return() and
-            rhs = fn.getAReturn()
+          exists(DataFlow::FunctionNode fn |
+            fn = pred and
+            lbl = Label::return()
+          |
+            if fn.getFunction().isAsync() then rhs = fn.getReturnNode() else rhs = fn.getAReturn()
           )
           or
           lbl = Label::promised() and
@@ -774,13 +770,12 @@ module API {
         )
         or
         exists(DataFlow::FunctionNode f |
-          base = MkAsyncFuncResult(f) and
+          f.getFunction().isAsync() and
+          base = MkDef(f.getReturnNode())
+        |
           lbl = Label::promised() and
           rhs = f.getAReturn()
-        )
-        or
-        exists(DataFlow::FunctionNode f |
-          base = MkAsyncFuncResult(f) and
+          or
           lbl = Label::promisedError() and
           rhs = f.getExceptionalReturn()
         )
@@ -1272,10 +1267,11 @@ module API {
       )
       or
       exists(DataFlow::Node nd, DataFlow::FunctionNode f |
+        f.getFunction().isAsync() and
         pred = MkDef(nd) and
         f = trackDefNode(nd) and
         lbl = Label::return() and
-        succ = MkAsyncFuncResult(f)
+        succ = MkDef(f.getReturnNode())
       )
       or
       exists(int bound, DataFlow::InvokeNode call |

From d64fd62194f7e3d90f7f47d7df045ef58f05954e Mon Sep 17 00:00:00 2001
From: Geoffrey White <40627776+geoffw0@users.noreply.github.com>
Date: Thu, 1 Dec 2022 14:18:24 +0000
Subject: [PATCH 0917/1420] Swift: resolve TODOs.

---
 .../lib/codeql/swift/dataflow/ExternalFlow.qll   | 16 ++++------------
 .../swift/elements/decl/IterableDeclContext.qll  | 15 +++++++++++++--
 2 files changed, 17 insertions(+), 14 deletions(-)

diff --git a/swift/ql/lib/codeql/swift/dataflow/ExternalFlow.qll b/swift/ql/lib/codeql/swift/dataflow/ExternalFlow.qll
index 2bda55b7956..10851669a26 100644
--- a/swift/ql/lib/codeql/swift/dataflow/ExternalFlow.qll
+++ b/swift/ql/lib/codeql/swift/dataflow/ExternalFlow.qll
@@ -390,14 +390,6 @@ predicate matchesSignature(AbstractFunctionDecl func, string signature) {
   paramsString(func) = signature
 }
 
-private NominalTypeDecl resolveExtensions(IterableDeclContext decl) {
-  // TODO: this should be a method on IterableDeclContext
-  result = decl.(NominalTypeDecl)
-  or
-  result = decl.(ExtensionDecl).getExtendedTypeDecl()
-  // TODO: or a protocol added by the extension
-}
-
 /**
  * Gets the element in module `namespace` that satisfies the following properties:
  * 1. If the element is a member of a class-like type, then the class-like type has name `type`
@@ -434,10 +426,10 @@ private Element interpretElement0(
       result = method
     |
       subtypes = true and
-      resolveExtensions(decl) = nomTypeDecl.getADerivedTypeDecl*()
+      decl.resolveExtensions() = nomTypeDecl.getADerivedTypeDecl*()
       or
       subtypes = false and
-      resolveExtensions(decl) = nomTypeDecl
+      decl.resolveExtensions() = nomTypeDecl
     )
     or
     // Fields
@@ -449,10 +441,10 @@ private Element interpretElement0(
       result = field
     |
       subtypes = true and
-      resolveExtensions(decl) = nomTypeDecl.getADerivedTypeDecl*()
+      decl.resolveExtensions() = nomTypeDecl.getADerivedTypeDecl*()
       or
       subtypes = false and
-      resolveExtensions(decl) = nomTypeDecl
+      decl.resolveExtensions() = nomTypeDecl
     )
   )
 }
diff --git a/swift/ql/lib/codeql/swift/elements/decl/IterableDeclContext.qll b/swift/ql/lib/codeql/swift/elements/decl/IterableDeclContext.qll
index 6848baecd51..3df9cea578e 100644
--- a/swift/ql/lib/codeql/swift/elements/decl/IterableDeclContext.qll
+++ b/swift/ql/lib/codeql/swift/elements/decl/IterableDeclContext.qll
@@ -1,4 +1,15 @@
-// generated by codegen/codegen.py, remove this comment if you wish to edit this file
 private import codeql.swift.generated.decl.IterableDeclContext
+private import codeql.swift.elements.decl.NominalTypeDecl
+private import codeql.swift.elements.decl.ExtensionDecl
 
-class IterableDeclContext extends Generated::IterableDeclContext { }
+class IterableDeclContext extends Generated::IterableDeclContext {
+  /**
+   * Gets the `NominalTypeDecl` corresponding to this `IterableDeclContext`
+   * resolving an extension to the extended type declaration.
+   */
+  NominalTypeDecl resolveExtensions() {
+    result = this.(NominalTypeDecl)
+    or
+    result = this.(ExtensionDecl).getExtendedTypeDecl()
+  }
+}

From b7d0d28ef9fd69f69e2578df04bf57b5ecc98af4 Mon Sep 17 00:00:00 2001
From: Geoffrey White <40627776+geoffw0@users.noreply.github.com>
Date: Thu, 1 Dec 2022 14:21:11 +0000
Subject: [PATCH 0918/1420] Swift: QLDoc.

---
 .../ql/lib/codeql/swift/elements/decl/IterableDeclContext.qll | 3 +++
 swift/ql/lib/codeql/swift/elements/decl/NominalTypeDecl.qll   | 4 +++-
 2 files changed, 6 insertions(+), 1 deletion(-)

diff --git a/swift/ql/lib/codeql/swift/elements/decl/IterableDeclContext.qll b/swift/ql/lib/codeql/swift/elements/decl/IterableDeclContext.qll
index 3df9cea578e..2c5cc7b6377 100644
--- a/swift/ql/lib/codeql/swift/elements/decl/IterableDeclContext.qll
+++ b/swift/ql/lib/codeql/swift/elements/decl/IterableDeclContext.qll
@@ -2,6 +2,9 @@ private import codeql.swift.generated.decl.IterableDeclContext
 private import codeql.swift.elements.decl.NominalTypeDecl
 private import codeql.swift.elements.decl.ExtensionDecl
 
+/**
+ * A nominal type (class, struct, enum or protocol) or extension.
+ */
 class IterableDeclContext extends Generated::IterableDeclContext {
   /**
    * Gets the `NominalTypeDecl` corresponding to this `IterableDeclContext`
diff --git a/swift/ql/lib/codeql/swift/elements/decl/NominalTypeDecl.qll b/swift/ql/lib/codeql/swift/elements/decl/NominalTypeDecl.qll
index c05cac56367..4b337322818 100644
--- a/swift/ql/lib/codeql/swift/elements/decl/NominalTypeDecl.qll
+++ b/swift/ql/lib/codeql/swift/elements/decl/NominalTypeDecl.qll
@@ -1,4 +1,6 @@
-// generated by codegen/codegen.py, remove this comment if you wish to edit this file
 private import codeql.swift.generated.decl.NominalTypeDecl
 
+/**
+ * A class, struct, enum or protocol.
+ */
 class NominalTypeDecl extends Generated::NominalTypeDecl { }

From c6c4975aa66e543fda37f9cf91d45cc7a806e95b Mon Sep 17 00:00:00 2001
From: Geoffrey White <40627776+geoffw0@users.noreply.github.com>
Date: Thu, 1 Dec 2022 14:19:35 +0000
Subject: [PATCH 0919/1420] Swift: codegen.

---
 swift/ql/.generated.list | 2 --
 1 file changed, 2 deletions(-)

diff --git a/swift/ql/.generated.list b/swift/ql/.generated.list
index a62640aace8..87517e1e96e 100644
--- a/swift/ql/.generated.list
+++ b/swift/ql/.generated.list
@@ -36,11 +36,9 @@ ql/lib/codeql/swift/elements/decl/IfConfigDeclConstructor.qll ebd945f0a081421bd7
 ql/lib/codeql/swift/elements/decl/ImportDeclConstructor.qll f2f09df91784d7a6d348d67eaf3429780ac820d2d3a08f66e1922ea1d4c8c60d 4496865a26be2857a335cbc00b112beb78a319ff891d0c5d2ad41a4d299f0457
 ql/lib/codeql/swift/elements/decl/InfixOperatorDecl.qll ca3af3b403b9d456029cb4f4b94b610a93d2d70ea71a3d6c4532088ebc83bd0b 5dec87f0c43948f38e942b204583043eb4f7386caa80cec8bf2857a2fd933ed4
 ql/lib/codeql/swift/elements/decl/InfixOperatorDeclConstructor.qll ca6c5c477e35e2d6c45f8e7a08577c43e151d3e16085f1eae5c0a69081714b04 73543543dff1f9847f3299091979fdf3d105a84e2bcdb890ce5d72ea18bba6c8
-ql/lib/codeql/swift/elements/decl/IterableDeclContext.qll 7b27fe02dca453d5bdb5f10be07978d98308e466bad5585b3040ed9c1a817737 fed59974e47c3011d4bddefb959f5cacaa3b770ad5a6db15558334ef02ad04e9
 ql/lib/codeql/swift/elements/decl/MissingMemberDeclConstructor.qll 82738836fa49447262e184d781df955429c5e3697d39bf3689397d828f04ce65 8ef82ed7c4f641dc8b4d71cd83944582da539c34fb3d946c2377883abada8578
 ql/lib/codeql/swift/elements/decl/ModuleDecl.qll 0d39d88c926d5633f467ab7a1db0101e8d61250ee5e4847de862232f997de783 410311bf3ae1efac53d8fd6515c2fe69d9ab79902c1048780e87d478cd200e26
 ql/lib/codeql/swift/elements/decl/ModuleDeclConstructor.qll 9b18b6d3517fd0c524ac051fd5dea288e8f923ada00fe4cc809cbebce036f890 0efc90492417089b0982a9a6d60310faba7a1fce5c1749396e3a29b3aac75dc5
-ql/lib/codeql/swift/elements/decl/NominalTypeDecl.qll 0b101f879e48e000074971d6412183f6be98fe99512037967ee650ffd82ec7a3 9faf5bd4e51b47a75edb67e9115281ca5b20ab6c0d8f6882f043734495bb399f
 ql/lib/codeql/swift/elements/decl/OpaqueTypeDecl.qll 7c4a5fda798c9b44e481905f28e6c105ab3f8ab5567c2c336b24d27102fd7d66 e84e0dd1a3175ad29123def00e71efbd6f4526a12601fc027b0892930602046b
 ql/lib/codeql/swift/elements/decl/OpaqueTypeDeclConstructor.qll f707aab3627801e94c63aedcded21eab14d3617c35da5cf317692eeb39c84710 20888ae6e386ae31e3cb9ff78155cb408e781ef1e7b6d687c2705843bcac0340
 ql/lib/codeql/swift/elements/decl/ParamDeclConstructor.qll cfa0ba73a9727b8222efbf65845d6df0d01800646feaf7b407b8ffe21a6691d8 916ff2d3e96546eac6828e1b151d4b045ce5f7bcd5d7dbb074f82ecf126b0e09

From 6289ae329bf6765844ecc1b30e48a303ce682470 Mon Sep 17 00:00:00 2001
From: erik-krogh <erik-krogh@github.com>
Date: Thu, 1 Dec 2022 15:27:41 +0100
Subject: [PATCH 0920/1420] fix a race-condition

---
 .../extractor/src/com/semmle/js/extractor/AutoBuild.java   | 7 ++++---
 1 file changed, 4 insertions(+), 3 deletions(-)

diff --git a/javascript/extractor/src/com/semmle/js/extractor/AutoBuild.java b/javascript/extractor/src/com/semmle/js/extractor/AutoBuild.java
index 445f1116ec7..bf5b4e8cb03 100644
--- a/javascript/extractor/src/com/semmle/js/extractor/AutoBuild.java
+++ b/javascript/extractor/src/com/semmle/js/extractor/AutoBuild.java
@@ -446,7 +446,8 @@ public class AutoBuild {
   public int run() throws IOException {
     startThreadPool();
     try {
-      extractSource();
+      CompletableFuture<?> sourceFuture = extractSource();
+      sourceFuture.join(); // wait for source extraction to complete
       if (hasSeenCode()) { // don't bother with the externs if no code was seen
         extractExterns();
       }
@@ -589,7 +590,7 @@ public class AutoBuild {
   }
 
   /** Extract all supported candidate files that pass the filters. */
-  private void extractSource() throws IOException {
+  private CompletableFuture<?> extractSource() throws IOException {
     // default extractor
     FileExtractor defaultExtractor =
         new FileExtractor(mkExtractorConfig(), outputConfig, trapCache);
@@ -636,7 +637,7 @@ public class AutoBuild {
     boolean hasTypeScriptFiles = extractedFiles.size() > 0;
 
     // extract remaining files
-    extractFiles(
+    return extractFiles(
         filesToExtract, extractedFiles, extractors,
         f -> !(hasTypeScriptFiles && isFileDerivedFromTypeScriptFile(f, extractedFiles)));
   }

From b4382855faff82ba087dce0335199033c63f8db8 Mon Sep 17 00:00:00 2001
From: Gustav Munkby <grddev@gmail.com>
Date: Thu, 1 Dec 2022 15:43:51 +0100
Subject: [PATCH 0921/1420] Fallback to package dir for discovering go.mod

This reverts to the old behavior of reusing the package directory when looking for go.mod. It seems unlikely that this is the right thing to do since we failed to find the module directory, but this behavior should be consistent with what we had before.
---
 go/extractor/extractor.go | 8 ++++++--
 1 file changed, 6 insertions(+), 2 deletions(-)

diff --git a/go/extractor/extractor.go b/go/extractor/extractor.go
index 4d479f6384b..4b087d82947 100644
--- a/go/extractor/extractor.go
+++ b/go/extractor/extractor.go
@@ -186,8 +186,12 @@ func ExtractWithFlags(buildFlags []string, patterns []string) error {
 
 			extraction.extractPackage(pkg)
 
-			if pkgInfo.ModDir != "" {
-				modPath := filepath.Join(pkgInfo.ModDir, "go.mod")
+			modDir := pkgInfo.ModDir
+			if modDir == "" {
+				modDir = pkgInfo.PkgDir
+			}
+			if modDir != "" {
+				modPath := filepath.Join(modDir, "go.mod")
 				if util.FileExists(modPath) {
 					log.Printf("Extracting %s", modPath)
 					start := time.Now()

From 68504c097cd2e133ba155c34d1169b93b1ef9e4e Mon Sep 17 00:00:00 2001
From: Paolo Tranquilli <redsun82@github.com>
Date: Thu, 1 Dec 2022 17:07:54 +0100
Subject: [PATCH 0922/1420] Swift: remove obsolete file

---
 swift/ql/lib/codeql/swift/elements/expr/ArrowExpr.qll | 5 -----
 1 file changed, 5 deletions(-)
 delete mode 100644 swift/ql/lib/codeql/swift/elements/expr/ArrowExpr.qll

diff --git a/swift/ql/lib/codeql/swift/elements/expr/ArrowExpr.qll b/swift/ql/lib/codeql/swift/elements/expr/ArrowExpr.qll
deleted file mode 100644
index 220aaa883c2..00000000000
--- a/swift/ql/lib/codeql/swift/elements/expr/ArrowExpr.qll
+++ /dev/null
@@ -1,5 +0,0 @@
-private import codeql.swift.generated.expr.ArrowExpr
-
-class ArrowExpr extends Generated::ArrowExpr {
-  override string toString() { result = "... -> ..." }
-}

From a6b8ef310a010b2db0c7ef00f812a700c047d642 Mon Sep 17 00:00:00 2001
From: Geoffrey White <40627776+geoffw0@users.noreply.github.com>
Date: Thu, 1 Dec 2022 16:20:28 +0000
Subject: [PATCH 0923/1420] Swift: Rename predicate.

---
 swift/ql/lib/codeql/swift/dataflow/ExternalFlow.qll       | 8 ++++----
 .../codeql/swift/elements/decl/IterableDeclContext.qll    | 2 +-
 2 files changed, 5 insertions(+), 5 deletions(-)

diff --git a/swift/ql/lib/codeql/swift/dataflow/ExternalFlow.qll b/swift/ql/lib/codeql/swift/dataflow/ExternalFlow.qll
index 10851669a26..6013af34fd8 100644
--- a/swift/ql/lib/codeql/swift/dataflow/ExternalFlow.qll
+++ b/swift/ql/lib/codeql/swift/dataflow/ExternalFlow.qll
@@ -426,10 +426,10 @@ private Element interpretElement0(
       result = method
     |
       subtypes = true and
-      decl.resolveExtensions() = nomTypeDecl.getADerivedTypeDecl*()
+      decl.getNominalTypeDecl() = nomTypeDecl.getADerivedTypeDecl*()
       or
       subtypes = false and
-      decl.resolveExtensions() = nomTypeDecl
+      decl.getNominalTypeDecl() = nomTypeDecl
     )
     or
     // Fields
@@ -441,10 +441,10 @@ private Element interpretElement0(
       result = field
     |
       subtypes = true and
-      decl.resolveExtensions() = nomTypeDecl.getADerivedTypeDecl*()
+      decl.getNominalTypeDecl() = nomTypeDecl.getADerivedTypeDecl*()
       or
       subtypes = false and
-      decl.resolveExtensions() = nomTypeDecl
+      decl.getNominalTypeDecl() = nomTypeDecl
     )
   )
 }
diff --git a/swift/ql/lib/codeql/swift/elements/decl/IterableDeclContext.qll b/swift/ql/lib/codeql/swift/elements/decl/IterableDeclContext.qll
index 2c5cc7b6377..1ee72e668f2 100644
--- a/swift/ql/lib/codeql/swift/elements/decl/IterableDeclContext.qll
+++ b/swift/ql/lib/codeql/swift/elements/decl/IterableDeclContext.qll
@@ -10,7 +10,7 @@ class IterableDeclContext extends Generated::IterableDeclContext {
    * Gets the `NominalTypeDecl` corresponding to this `IterableDeclContext`
    * resolving an extension to the extended type declaration.
    */
-  NominalTypeDecl resolveExtensions() {
+  NominalTypeDecl getNominalTypeDecl() {
     result = this.(NominalTypeDecl)
     or
     result = this.(ExtensionDecl).getExtendedTypeDecl()

From cd6d00e760e4a2ee5dd7e2707e1225fd4ec65fea Mon Sep 17 00:00:00 2001
From: Paolo Tranquilli <redsun82@github.com>
Date: Thu, 1 Dec 2022 15:28:59 +0100
Subject: [PATCH 0924/1420] Swift: add xcode integration test

---
 swift/integration-tests/.gitignore            |   1 -
 .../osx-only/hello-xcode/Files.expected       |   2 +
 .../osx-only/hello-xcode/Files.ql             |   4 +
 .../project.pbxproj                           | 310 ++++++++++++++++++
 .../AppDelegate.swift                         |   4 +
 .../osx-only/hello-xcode/test.py              |   9 +
 6 files changed, 329 insertions(+), 1 deletion(-)
 create mode 100644 swift/integration-tests/osx-only/hello-xcode/Files.expected
 create mode 100644 swift/integration-tests/osx-only/hello-xcode/Files.ql
 create mode 100644 swift/integration-tests/osx-only/hello-xcode/codeql-swift-autobuild-test.xcodeproj/project.pbxproj
 create mode 100644 swift/integration-tests/osx-only/hello-xcode/codeql-swift-autobuild-test/AppDelegate.swift
 create mode 100644 swift/integration-tests/osx-only/hello-xcode/test.py

diff --git a/swift/integration-tests/.gitignore b/swift/integration-tests/.gitignore
index b613644a5ae..56a73ade7d3 100644
--- a/swift/integration-tests/.gitignore
+++ b/swift/integration-tests/.gitignore
@@ -1,7 +1,6 @@
 .DS_Store
 .build
 Packages
-*.xcodeproj
 xcuserdata/
 DerivedData/
 .swiftpm/xcode/package.xcworkspace/contents.xcworkspacedata
diff --git a/swift/integration-tests/osx-only/hello-xcode/Files.expected b/swift/integration-tests/osx-only/hello-xcode/Files.expected
new file mode 100644
index 00000000000..217aa9e933b
--- /dev/null
+++ b/swift/integration-tests/osx-only/hello-xcode/Files.expected
@@ -0,0 +1,2 @@
+| codeql-swift-autobuild-test/AppDelegate.swift:0:0:0:0 | codeql-swift-autobuild-test/AppDelegate.swift |
+| file://:0:0:0:0 |  |
diff --git a/swift/integration-tests/osx-only/hello-xcode/Files.ql b/swift/integration-tests/osx-only/hello-xcode/Files.ql
new file mode 100644
index 00000000000..9782ea4ce0b
--- /dev/null
+++ b/swift/integration-tests/osx-only/hello-xcode/Files.ql
@@ -0,0 +1,4 @@
+import swift
+
+from File f
+select f
diff --git a/swift/integration-tests/osx-only/hello-xcode/codeql-swift-autobuild-test.xcodeproj/project.pbxproj b/swift/integration-tests/osx-only/hello-xcode/codeql-swift-autobuild-test.xcodeproj/project.pbxproj
new file mode 100644
index 00000000000..efc35405363
--- /dev/null
+++ b/swift/integration-tests/osx-only/hello-xcode/codeql-swift-autobuild-test.xcodeproj/project.pbxproj
@@ -0,0 +1,310 @@
+// !$*UTF8*$!
+{
+	archiveVersion = 1;
+	classes = {
+	};
+	objectVersion = 56;
+	objects = {
+
+/* Begin PBXBuildFile section */
+		46D4896F291B98000029E1E2 /* AppDelegate.swift in Sources */ = {isa = PBXBuildFile; fileRef = 46D4896E291B98000029E1E2 /* AppDelegate.swift */; };
+/* End PBXBuildFile section */
+
+/* Begin PBXFileReference section */
+		46D4896B291B98000029E1E2 /* codeql-swift-autobuild-test.app */ = {isa = PBXFileReference; explicitFileType = wrapper.application; includeInIndex = 0; path = "codeql-swift-autobuild-test.app"; sourceTree = BUILT_PRODUCTS_DIR; };
+		46D4896E291B98000029E1E2 /* AppDelegate.swift */ = {isa = PBXFileReference; lastKnownFileType = sourcecode.swift; path = AppDelegate.swift; sourceTree = "<group>"; };
+/* End PBXFileReference section */
+
+/* Begin PBXFrameworksBuildPhase section */
+		46D48968291B98000029E1E2 /* Frameworks */ = {
+			isa = PBXFrameworksBuildPhase;
+			buildActionMask = 2147483647;
+			files = (
+			);
+			runOnlyForDeploymentPostprocessing = 0;
+		};
+/* End PBXFrameworksBuildPhase section */
+
+/* Begin PBXGroup section */
+		46D48962291B98000029E1E2 = {
+			isa = PBXGroup;
+			children = (
+				46D4896D291B98000029E1E2 /* codeql-swift-autobuild-test */,
+				46D4896C291B98000029E1E2 /* Products */,
+			);
+			sourceTree = "<group>";
+		};
+		46D4896C291B98000029E1E2 /* Products */ = {
+			isa = PBXGroup;
+			children = (
+				46D4896B291B98000029E1E2 /* codeql-swift-autobuild-test.app */,
+			);
+			name = Products;
+			sourceTree = "<group>";
+		};
+		46D4896D291B98000029E1E2 /* codeql-swift-autobuild-test */ = {
+			isa = PBXGroup;
+			children = (
+				46D4896E291B98000029E1E2 /* AppDelegate.swift */,
+			);
+			path = "codeql-swift-autobuild-test";
+			sourceTree = "<group>";
+		};
+/* End PBXGroup section */
+
+/* Begin PBXNativeTarget section */
+		46D4896A291B98000029E1E2 /* codeql-swift-autobuild-test */ = {
+			isa = PBXNativeTarget;
+			buildConfigurationList = 46D4897A291B98020029E1E2 /* Build configuration list for PBXNativeTarget "codeql-swift-autobuild-test" */;
+			buildPhases = (
+				46D48967291B98000029E1E2 /* Sources */,
+				46D48968291B98000029E1E2 /* Frameworks */,
+				46D48969291B98000029E1E2 /* Resources */,
+			);
+			buildRules = (
+			);
+			dependencies = (
+			);
+			name = "codeql-swift-autobuild-test";
+			productName = "codeql-swift-autobuild-test";
+			productReference = 46D4896B291B98000029E1E2 /* codeql-swift-autobuild-test.app */;
+			productType = "com.apple.product-type.application";
+		};
+/* End PBXNativeTarget section */
+
+/* Begin PBXProject section */
+		46D48963291B98000029E1E2 /* Project object */ = {
+			isa = PBXProject;
+			attributes = {
+				BuildIndependentTargetsInParallel = 1;
+				LastSwiftUpdateCheck = 1400;
+				LastUpgradeCheck = 1400;
+				TargetAttributes = {
+					46D4896A291B98000029E1E2 = {
+						CreatedOnToolsVersion = 14.0;
+					};
+				};
+			};
+			buildConfigurationList = 46D48966291B98000029E1E2 /* Build configuration list for PBXProject "codeql-swift-autobuild-test" */;
+			compatibilityVersion = "Xcode 14.0";
+			developmentRegion = en;
+			hasScannedForEncodings = 0;
+			knownRegions = (
+				en,
+			);
+			mainGroup = 46D48962291B98000029E1E2;
+			productRefGroup = 46D4896C291B98000029E1E2 /* Products */;
+			projectDirPath = "";
+			projectRoot = "";
+			targets = (
+				46D4896A291B98000029E1E2 /* codeql-swift-autobuild-test */,
+			);
+		};
+/* End PBXProject section */
+
+/* Begin PBXResourcesBuildPhase section */
+		46D48969291B98000029E1E2 /* Resources */ = {
+			isa = PBXResourcesBuildPhase;
+			buildActionMask = 2147483647;
+			files = (
+			);
+			runOnlyForDeploymentPostprocessing = 0;
+		};
+/* End PBXResourcesBuildPhase section */
+
+/* Begin PBXSourcesBuildPhase section */
+		46D48967291B98000029E1E2 /* Sources */ = {
+			isa = PBXSourcesBuildPhase;
+			buildActionMask = 2147483647;
+			files = (
+				46D4896F291B98000029E1E2 /* AppDelegate.swift in Sources */,
+			);
+			runOnlyForDeploymentPostprocessing = 0;
+		};
+/* End PBXSourcesBuildPhase section */
+
+/* Begin XCBuildConfiguration section */
+		46D48978291B98020029E1E2 /* Debug */ = {
+			isa = XCBuildConfiguration;
+			buildSettings = {
+				ALWAYS_SEARCH_USER_PATHS = NO;
+				CLANG_ANALYZER_NONNULL = YES;
+				CLANG_ANALYZER_NUMBER_OBJECT_CONVERSION = YES_AGGRESSIVE;
+				CLANG_CXX_LANGUAGE_STANDARD = "gnu++20";
+				CLANG_ENABLE_MODULES = YES;
+				CLANG_ENABLE_OBJC_ARC = YES;
+				CLANG_ENABLE_OBJC_WEAK = YES;
+				CLANG_WARN_BLOCK_CAPTURE_AUTORELEASING = YES;
+				CLANG_WARN_BOOL_CONVERSION = YES;
+				CLANG_WARN_COMMA = YES;
+				CLANG_WARN_CONSTANT_CONVERSION = YES;
+				CLANG_WARN_DEPRECATED_OBJC_IMPLEMENTATIONS = YES;
+				CLANG_WARN_DIRECT_OBJC_ISA_USAGE = YES_ERROR;
+				CLANG_WARN_DOCUMENTATION_COMMENTS = YES;
+				CLANG_WARN_EMPTY_BODY = YES;
+				CLANG_WARN_ENUM_CONVERSION = YES;
+				CLANG_WARN_INFINITE_RECURSION = YES;
+				CLANG_WARN_INT_CONVERSION = YES;
+				CLANG_WARN_NON_LITERAL_NULL_CONVERSION = YES;
+				CLANG_WARN_OBJC_IMPLICIT_RETAIN_SELF = YES;
+				CLANG_WARN_OBJC_LITERAL_CONVERSION = YES;
+				CLANG_WARN_OBJC_ROOT_CLASS = YES_ERROR;
+				CLANG_WARN_QUOTED_INCLUDE_IN_FRAMEWORK_HEADER = YES;
+				CLANG_WARN_RANGE_LOOP_ANALYSIS = YES;
+				CLANG_WARN_STRICT_PROTOTYPES = YES;
+				CLANG_WARN_SUSPICIOUS_MOVE = YES;
+				CLANG_WARN_UNGUARDED_AVAILABILITY = YES_AGGRESSIVE;
+				CLANG_WARN_UNREACHABLE_CODE = YES;
+				CLANG_WARN__DUPLICATE_METHOD_MATCH = YES;
+				COPY_PHASE_STRIP = NO;
+				DEBUG_INFORMATION_FORMAT = dwarf;
+				ENABLE_STRICT_OBJC_MSGSEND = YES;
+				ENABLE_TESTABILITY = YES;
+				GCC_C_LANGUAGE_STANDARD = gnu11;
+				GCC_DYNAMIC_NO_PIC = NO;
+				GCC_NO_COMMON_BLOCKS = YES;
+				GCC_OPTIMIZATION_LEVEL = 0;
+				GCC_PREPROCESSOR_DEFINITIONS = (
+					"DEBUG=1",
+					"$(inherited)",
+				);
+				GCC_WARN_64_TO_32_BIT_CONVERSION = YES;
+				GCC_WARN_ABOUT_RETURN_TYPE = YES_ERROR;
+				GCC_WARN_UNDECLARED_SELECTOR = YES;
+				GCC_WARN_UNINITIALIZED_AUTOS = YES_AGGRESSIVE;
+				GCC_WARN_UNUSED_FUNCTION = YES;
+				GCC_WARN_UNUSED_VARIABLE = YES;
+				MACOSX_DEPLOYMENT_TARGET = 11.0;
+				MTL_ENABLE_DEBUG_INFO = INCLUDE_SOURCE;
+				MTL_FAST_MATH = YES;
+				ONLY_ACTIVE_ARCH = YES;
+				SDKROOT = macosx;
+				SWIFT_ACTIVE_COMPILATION_CONDITIONS = DEBUG;
+				SWIFT_OPTIMIZATION_LEVEL = "-Onone";
+			};
+			name = Debug;
+		};
+		46D48979291B98020029E1E2 /* Release */ = {
+			isa = XCBuildConfiguration;
+			buildSettings = {
+				ALWAYS_SEARCH_USER_PATHS = NO;
+				CLANG_ANALYZER_NONNULL = YES;
+				CLANG_ANALYZER_NUMBER_OBJECT_CONVERSION = YES_AGGRESSIVE;
+				CLANG_CXX_LANGUAGE_STANDARD = "gnu++20";
+				CLANG_ENABLE_MODULES = YES;
+				CLANG_ENABLE_OBJC_ARC = YES;
+				CLANG_ENABLE_OBJC_WEAK = YES;
+				CLANG_WARN_BLOCK_CAPTURE_AUTORELEASING = YES;
+				CLANG_WARN_BOOL_CONVERSION = YES;
+				CLANG_WARN_COMMA = YES;
+				CLANG_WARN_CONSTANT_CONVERSION = YES;
+				CLANG_WARN_DEPRECATED_OBJC_IMPLEMENTATIONS = YES;
+				CLANG_WARN_DIRECT_OBJC_ISA_USAGE = YES_ERROR;
+				CLANG_WARN_DOCUMENTATION_COMMENTS = YES;
+				CLANG_WARN_EMPTY_BODY = YES;
+				CLANG_WARN_ENUM_CONVERSION = YES;
+				CLANG_WARN_INFINITE_RECURSION = YES;
+				CLANG_WARN_INT_CONVERSION = YES;
+				CLANG_WARN_NON_LITERAL_NULL_CONVERSION = YES;
+				CLANG_WARN_OBJC_IMPLICIT_RETAIN_SELF = YES;
+				CLANG_WARN_OBJC_LITERAL_CONVERSION = YES;
+				CLANG_WARN_OBJC_ROOT_CLASS = YES_ERROR;
+				CLANG_WARN_QUOTED_INCLUDE_IN_FRAMEWORK_HEADER = YES;
+				CLANG_WARN_RANGE_LOOP_ANALYSIS = YES;
+				CLANG_WARN_STRICT_PROTOTYPES = YES;
+				CLANG_WARN_SUSPICIOUS_MOVE = YES;
+				CLANG_WARN_UNGUARDED_AVAILABILITY = YES_AGGRESSIVE;
+				CLANG_WARN_UNREACHABLE_CODE = YES;
+				CLANG_WARN__DUPLICATE_METHOD_MATCH = YES;
+				COPY_PHASE_STRIP = NO;
+				DEBUG_INFORMATION_FORMAT = "dwarf-with-dsym";
+				ENABLE_NS_ASSERTIONS = NO;
+				ENABLE_STRICT_OBJC_MSGSEND = YES;
+				GCC_C_LANGUAGE_STANDARD = gnu11;
+				GCC_NO_COMMON_BLOCKS = YES;
+				GCC_WARN_64_TO_32_BIT_CONVERSION = YES;
+				GCC_WARN_ABOUT_RETURN_TYPE = YES_ERROR;
+				GCC_WARN_UNDECLARED_SELECTOR = YES;
+				GCC_WARN_UNINITIALIZED_AUTOS = YES_AGGRESSIVE;
+				GCC_WARN_UNUSED_FUNCTION = YES;
+				GCC_WARN_UNUSED_VARIABLE = YES;
+				MACOSX_DEPLOYMENT_TARGET = 11.0;
+				MTL_ENABLE_DEBUG_INFO = NO;
+				MTL_FAST_MATH = YES;
+				SDKROOT = macosx;
+				SWIFT_COMPILATION_MODE = wholemodule;
+				SWIFT_OPTIMIZATION_LEVEL = "-O";
+			};
+			name = Release;
+		};
+		46D4897B291B98020029E1E2 /* Debug */ = {
+			isa = XCBuildConfiguration;
+			buildSettings = {
+				ASSETCATALOG_COMPILER_GLOBAL_ACCENT_COLOR_NAME = AccentColor;
+				CODE_SIGN_STYLE = Automatic;
+				COMBINE_HIDPI_IMAGES = YES;
+				CURRENT_PROJECT_VERSION = 1;
+				GENERATE_INFOPLIST_FILE = YES;
+				INFOPLIST_KEY_NSHumanReadableCopyright = "";
+				INFOPLIST_KEY_NSMainStoryboardFile = Main;
+				INFOPLIST_KEY_NSPrincipalClass = NSApplication;
+				LD_RUNPATH_SEARCH_PATHS = (
+					"$(inherited)",
+					"@executable_path/../Frameworks",
+				);
+				MARKETING_VERSION = 1.0;
+				PRODUCT_BUNDLE_IDENTIFIER = "com.github.codeql-swift-autobuild-test";
+				PRODUCT_NAME = "$(TARGET_NAME)";
+				SWIFT_EMIT_LOC_STRINGS = YES;
+				SWIFT_VERSION = 5.0;
+			};
+			name = Debug;
+		};
+		46D4897C291B98020029E1E2 /* Release */ = {
+			isa = XCBuildConfiguration;
+			buildSettings = {
+				ASSETCATALOG_COMPILER_GLOBAL_ACCENT_COLOR_NAME = AccentColor;
+				CODE_SIGN_STYLE = Automatic;
+				COMBINE_HIDPI_IMAGES = YES;
+				CURRENT_PROJECT_VERSION = 1;
+				GENERATE_INFOPLIST_FILE = YES;
+				INFOPLIST_KEY_NSHumanReadableCopyright = "";
+				INFOPLIST_KEY_NSMainStoryboardFile = Main;
+				INFOPLIST_KEY_NSPrincipalClass = NSApplication;
+				LD_RUNPATH_SEARCH_PATHS = (
+					"$(inherited)",
+					"@executable_path/../Frameworks",
+				);
+				MARKETING_VERSION = 1.0;
+				PRODUCT_BUNDLE_IDENTIFIER = "com.github.codeql-swift-autobuild-test";
+				PRODUCT_NAME = "$(TARGET_NAME)";
+				SWIFT_EMIT_LOC_STRINGS = YES;
+				SWIFT_VERSION = 5.0;
+			};
+			name = Release;
+		};
+/* End XCBuildConfiguration section */
+
+/* Begin XCConfigurationList section */
+		46D48966291B98000029E1E2 /* Build configuration list for PBXProject "codeql-swift-autobuild-test" */ = {
+			isa = XCConfigurationList;
+			buildConfigurations = (
+				46D48978291B98020029E1E2 /* Debug */,
+				46D48979291B98020029E1E2 /* Release */,
+			);
+			defaultConfigurationIsVisible = 0;
+			defaultConfigurationName = Release;
+		};
+		46D4897A291B98020029E1E2 /* Build configuration list for PBXNativeTarget "codeql-swift-autobuild-test" */ = {
+			isa = XCConfigurationList;
+			buildConfigurations = (
+				46D4897B291B98020029E1E2 /* Debug */,
+				46D4897C291B98020029E1E2 /* Release */,
+			);
+			defaultConfigurationIsVisible = 0;
+			defaultConfigurationName = Release;
+		};
+/* End XCConfigurationList section */
+	};
+	rootObject = 46D48963291B98000029E1E2 /* Project object */;
+}
diff --git a/swift/integration-tests/osx-only/hello-xcode/codeql-swift-autobuild-test/AppDelegate.swift b/swift/integration-tests/osx-only/hello-xcode/codeql-swift-autobuild-test/AppDelegate.swift
new file mode 100644
index 00000000000..b098bd9fcf5
--- /dev/null
+++ b/swift/integration-tests/osx-only/hello-xcode/codeql-swift-autobuild-test/AppDelegate.swift
@@ -0,0 +1,4 @@
+import Cocoa
+
+@main
+class AppDelegate: NSObject, NSApplicationDelegate {}
diff --git a/swift/integration-tests/osx-only/hello-xcode/test.py b/swift/integration-tests/osx-only/hello-xcode/test.py
new file mode 100644
index 00000000000..6c5630bfb6a
--- /dev/null
+++ b/swift/integration-tests/osx-only/hello-xcode/test.py
@@ -0,0 +1,9 @@
+from create_database_utils import *
+
+run_codeql_database_create([
+    'xcodebuild clean',
+    'xcodebuild build '
+    '-project codeql-swift-autobuild-test.xcodeproj '
+    '-target codeql-swift-autobuild-test '
+    'CODE_SIGNING_REQUIRED=NO CODE_SIGNING_ALLOWED=NO',
+], lang='swift', keep_trap=True)

From c374a5301ed62cca169fa065cbd8c0caca7968ae Mon Sep 17 00:00:00 2001
From: Paolo Tranquilli <redsun82@github.com>
Date: Thu, 1 Dec 2022 16:28:43 +0100
Subject: [PATCH 0925/1420] Swift: upload test DBs as artifacts for integration
 tests

---
 swift/actions/run-integration-tests/action.yml | 9 +++++++++
 1 file changed, 9 insertions(+)

diff --git a/swift/actions/run-integration-tests/action.yml b/swift/actions/run-integration-tests/action.yml
index 27ea6cde433..68189f5484f 100644
--- a/swift/actions/run-integration-tests/action.yml
+++ b/swift/actions/run-integration-tests/action.yml
@@ -25,3 +25,12 @@ runs:
       shell: bash
       run: |
         python swift/integration-tests/runner.py --compilation-cache "${{ steps.query-cache.outputs.cache-dir }}"
+      env:
+        SEMMLE_DEBUG_TRACER: 10000
+    - name: Upload test logs
+      uses: actions/upload-artifact@v3
+      with:
+        name: swift-integration-tests-logs-${{ runner.os }}
+        path: |
+          swift/integration-tests/**/db/log
+        retention-days: 1

From f388703a3d5a007ba5aa0381108f2c6779e689be Mon Sep 17 00:00:00 2001
From: Jean Helie <jhelie@github.com>
Date: Thu, 1 Dec 2022 17:45:07 +0100
Subject: [PATCH 0926/1420] ATM: update further files following the addition of
 XssThroughDom query

---
 .../modelbuilding/DebugResultInclusion.ql                  | 4 ++++
 .../modelbuilding/extraction/Queries.qll                   | 7 ++++++-
 .../test/endpoint_large_scale/EndpointFeatures.ql          | 2 ++
 .../test/endpoint_large_scale/FilteredTruePositives.ql     | 7 +++++++
 4 files changed, 19 insertions(+), 1 deletion(-)

diff --git a/javascript/ql/experimental/adaptivethreatmodeling/modelbuilding/DebugResultInclusion.ql b/javascript/ql/experimental/adaptivethreatmodeling/modelbuilding/DebugResultInclusion.ql
index 444f682304d..ac2f2f1d817 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/modelbuilding/DebugResultInclusion.ql
+++ b/javascript/ql/experimental/adaptivethreatmodeling/modelbuilding/DebugResultInclusion.ql
@@ -16,6 +16,7 @@ private import experimental.adaptivethreatmodeling.NosqlInjectionATM as NosqlInj
 private import experimental.adaptivethreatmodeling.SqlInjectionATM as SqlInjectionAtm
 private import experimental.adaptivethreatmodeling.TaintedPathATM as TaintedPathAtm
 private import experimental.adaptivethreatmodeling.XssATM as XssAtm
+private import experimental.adaptivethreatmodeling.XssThroughDomATM as XssThroughDomAtm
 
 string getAReasonSinkExcluded(DataFlow::Node sinkCandidate, Query query) {
   query instanceof NosqlInjectionQuery and
@@ -29,6 +30,9 @@ string getAReasonSinkExcluded(DataFlow::Node sinkCandidate, Query query) {
   or
   query instanceof XssQuery and
   result = any(XssAtm::DomBasedXssAtmConfig cfg).getAReasonSinkExcluded(sinkCandidate)
+  or
+  query instanceof XssThroughDomQuery and
+  result = any(XssThroughDomAtm::XssThroughDomAtmConfig cfg).getAReasonSinkExcluded(sinkCandidate)
 }
 
 pragma[inline]
diff --git a/javascript/ql/experimental/adaptivethreatmodeling/modelbuilding/extraction/Queries.qll b/javascript/ql/experimental/adaptivethreatmodeling/modelbuilding/extraction/Queries.qll
index 51dd3ffec84..a75e01b99cd 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/modelbuilding/extraction/Queries.qll
+++ b/javascript/ql/experimental/adaptivethreatmodeling/modelbuilding/extraction/Queries.qll
@@ -8,7 +8,8 @@ newtype TQuery =
   TNosqlInjectionQuery() or
   TSqlInjectionQuery() or
   TTaintedPathQuery() or
-  TXssQuery()
+  TXssQuery() or
+  TXssThroughDomQuery()
 
 abstract class Query extends TQuery {
   abstract string getName();
@@ -31,3 +32,7 @@ class TaintedPathQuery extends Query, TTaintedPathQuery {
 class XssQuery extends Query, TXssQuery {
   override string getName() { result = "Xss" }
 }
+
+class XssThroughDomQuery extends Query, TXssThroughDomQuery {
+  override string getName() { result = "XssThroughDom" }
+}
diff --git a/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/EndpointFeatures.ql b/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/EndpointFeatures.ql
index 9439fda8ab2..5c19ec53dcd 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/EndpointFeatures.ql
+++ b/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/EndpointFeatures.ql
@@ -11,6 +11,7 @@ import experimental.adaptivethreatmodeling.NosqlInjectionATM as NosqlInjectionAt
 import experimental.adaptivethreatmodeling.SqlInjectionATM as SqlInjectionAtm
 import experimental.adaptivethreatmodeling.TaintedPathATM as TaintedPathAtm
 import experimental.adaptivethreatmodeling.XssATM as XssAtm
+import experimental.adaptivethreatmodeling.XssThroughDomATM as XssThroughDomAtm
 import experimental.adaptivethreatmodeling.EndpointFeatures as EndpointFeatures
 import extraction.NoFeaturizationRestrictionsConfig
 private import experimental.adaptivethreatmodeling.EndpointCharacteristics as EndpointCharacteristics
@@ -21,6 +22,7 @@ query predicate tokenFeatures(DataFlow::Node endpoint, string featureName, strin
     not exists(any(SqlInjectionAtm::SqlInjectionAtmConfig cfg).getAReasonSinkExcluded(endpoint)) or
     not exists(any(TaintedPathAtm::TaintedPathAtmConfig cfg).getAReasonSinkExcluded(endpoint)) or
     not exists(any(XssAtm::DomBasedXssAtmConfig cfg).getAReasonSinkExcluded(endpoint)) or
+    not exists(any(XssThroughDomAtm::XssThroughDomAtmConfig cfg).getAReasonSinkExcluded(endpoint)) or
     any(EndpointCharacteristics::IsArgumentToModeledFunctionCharacteristic characteristic)
         .getEndpoints(endpoint)
   ) and
diff --git a/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/FilteredTruePositives.ql b/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/FilteredTruePositives.ql
index d8de88e3454..0e382df6ba9 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/FilteredTruePositives.ql
+++ b/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/FilteredTruePositives.ql
@@ -20,6 +20,7 @@ import experimental.adaptivethreatmodeling.NosqlInjectionATM as NosqlInjectionAt
 import experimental.adaptivethreatmodeling.SqlInjectionATM as SqlInjectionAtm
 import experimental.adaptivethreatmodeling.TaintedPathATM as TaintedPathAtm
 import experimental.adaptivethreatmodeling.XssATM as XssAtm
+import experimental.adaptivethreatmodeling.XssThroughDomATM as XssThroughDomAtm
 
 query predicate nosqlFilteredTruePositives(DataFlow::Node endpoint, string reason) {
   endpoint instanceof NosqlInjection::Sink and
@@ -44,3 +45,9 @@ query predicate xssFilteredTruePositives(DataFlow::Node endpoint, string reason)
   reason = any(XssAtm::DomBasedXssAtmConfig cfg).getAReasonSinkExcluded(endpoint) and
   reason != "argument to modeled function"
 }
+
+query predicate xssThroughDomFilteredTruePositives(DataFlow::Node endpoint, string reason) {
+  endpoint instanceof DomBasedXss::Sink and
+  reason = any(XssThroughDomAtm::XssThroughDomAtmConfig cfg).getAReasonSinkExcluded(endpoint) and
+  reason != "argument to modeled function"
+}

From 50a3c0d725084011bcc334ae0addcb2def9d8a04 Mon Sep 17 00:00:00 2001
From: Jean Helie <jhelie@github.com>
Date: Thu, 1 Dec 2022 17:53:09 +0100
Subject: [PATCH 0927/1420] ATM: update expected ML test values

---
 .../ExtractEndpointDataTraining.expected      | 741 ++++++++++++++++++
 .../FilteredTruePositives.expected            |   8 +
 .../ExtractEndpointDataTraining.expected      |  16 +
 3 files changed, 765 insertions(+)

diff --git a/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/ExtractEndpointDataTraining.expected b/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/ExtractEndpointDataTraining.expected
index 822e8c7f34a..378827bd6d4 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/ExtractEndpointDataTraining.expected
+++ b/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/ExtractEndpointDataTraining.expected
@@ -103,6 +103,11 @@ endpoints
 | autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:11:45:17:1 | {\\n    t ... tring\\n} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
 | autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:11:45:17:1 | {\\n    t ... tring\\n} | Xss | notASinkReason | DatabaseAccess | string |
 | autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:11:45:17:1 | {\\n    t ... tring\\n} | Xss | sinkLabel | NotASink | string |
+| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:11:45:17:1 | {\\n    t ... tring\\n} | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:11:45:17:1 | {\\n    t ... tring\\n} | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:11:45:17:1 | {\\n    t ... tring\\n} | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:11:45:17:1 | {\\n    t ... tring\\n} | XssThroughDom | notASinkReason | DatabaseAccess | string |
+| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:11:45:17:1 | {\\n    t ... tring\\n} | XssThroughDom | sinkLabel | NotASink | string |
 | autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:24:24:24:30 | [query] | NosqlInjection | hasFlowFromSource | true | boolean |
 | autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:24:24:24:30 | [query] | NosqlInjection | isConstantExpression | false | boolean |
 | autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:24:24:24:30 | [query] | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
@@ -179,6 +184,11 @@ endpoints
 | autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:63:33:63:33 | X | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
 | autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:63:33:63:33 | X | Xss | notASinkReason | DatabaseAccess | string |
 | autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:63:33:63:33 | X | Xss | sinkLabel | NotASink | string |
+| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:63:33:63:33 | X | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:63:33:63:33 | X | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:63:33:63:33 | X | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:63:33:63:33 | X | XssThroughDom | notASinkReason | DatabaseAccess | string |
+| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:63:33:63:33 | X | XssThroughDom | sinkLabel | NotASink | string |
 | autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:65:29:65:29 | X | NosqlInjection | hasFlowFromSource | false | boolean |
 | autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:65:29:65:29 | X | NosqlInjection | isConstantExpression | false | boolean |
 | autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:65:29:65:29 | X | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
@@ -207,6 +217,11 @@ endpoints
 | autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:65:39:65:50 | function(){} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
 | autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:65:39:65:50 | function(){} | Xss | notASinkReason | DatabaseAccess | string |
 | autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:65:39:65:50 | function(){} | Xss | sinkLabel | NotASink | string |
+| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:65:39:65:50 | function(){} | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:65:39:65:50 | function(){} | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:65:39:65:50 | function(){} | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:65:39:65:50 | function(){} | XssThroughDom | notASinkReason | DatabaseAccess | string |
+| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:65:39:65:50 | function(){} | XssThroughDom | sinkLabel | NotASink | string |
 | autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:67:27:67:31 | query | NosqlInjection | hasFlowFromSource | true | boolean |
 | autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:67:27:67:31 | query | NosqlInjection | isConstantExpression | false | boolean |
 | autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:67:27:67:31 | query | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
@@ -235,6 +250,11 @@ endpoints
 | autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:68:15:68:26 | function(){} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
 | autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:68:15:68:26 | function(){} | Xss | notASinkReason | DatabaseAccess | string |
 | autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:68:15:68:26 | function(){} | Xss | sinkLabel | NotASink | string |
+| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:68:15:68:26 | function(){} | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:68:15:68:26 | function(){} | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:68:15:68:26 | function(){} | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:68:15:68:26 | function(){} | XssThroughDom | notASinkReason | DatabaseAccess | string |
+| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:68:15:68:26 | function(){} | XssThroughDom | sinkLabel | NotASink | string |
 | autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:71:20:71:24 | query | NosqlInjection | hasFlowFromSource | true | boolean |
 | autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:71:20:71:24 | query | NosqlInjection | isConstantExpression | false | boolean |
 | autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:71:20:71:24 | query | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
@@ -291,6 +311,11 @@ endpoints
 | autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:85:22:85:51 | (err, r ... (query) | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
 | autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:85:22:85:51 | (err, r ... (query) | Xss | notASinkReason | DatabaseAccess | string |
 | autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:85:22:85:51 | (err, r ... (query) | Xss | sinkLabel | NotASink | string |
+| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:85:22:85:51 | (err, r ... (query) | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:85:22:85:51 | (err, r ... (query) | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:85:22:85:51 | (err, r ... (query) | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:85:22:85:51 | (err, r ... (query) | XssThroughDom | notASinkReason | DatabaseAccess | string |
+| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:85:22:85:51 | (err, r ... (query) | XssThroughDom | sinkLabel | NotASink | string |
 | autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:85:46:85:50 | query | NosqlInjection | hasFlowFromSource | true | boolean |
 | autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:85:46:85:50 | query | NosqlInjection | isConstantExpression | false | boolean |
 | autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:85:46:85:50 | query | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
@@ -319,6 +344,11 @@ endpoints
 | autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:86:22:86:51 | (err, r ... (query) | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
 | autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:86:22:86:51 | (err, r ... (query) | Xss | notASinkReason | DatabaseAccess | string |
 | autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:86:22:86:51 | (err, r ... (query) | Xss | sinkLabel | NotASink | string |
+| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:86:22:86:51 | (err, r ... (query) | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:86:22:86:51 | (err, r ... (query) | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:86:22:86:51 | (err, r ... (query) | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:86:22:86:51 | (err, r ... (query) | XssThroughDom | notASinkReason | DatabaseAccess | string |
+| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:86:22:86:51 | (err, r ... (query) | XssThroughDom | sinkLabel | NotASink | string |
 | autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:87:19:87:19 | X | NosqlInjection | hasFlowFromSource | false | boolean |
 | autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:87:19:87:19 | X | NosqlInjection | isConstantExpression | false | boolean |
 | autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:87:19:87:19 | X | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
@@ -343,6 +373,11 @@ endpoints
 | autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:87:27:87:56 | (err, r ... (query) | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
 | autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:87:27:87:56 | (err, r ... (query) | Xss | notASinkReason | DatabaseAccess | string |
 | autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:87:27:87:56 | (err, r ... (query) | Xss | sinkLabel | NotASink | string |
+| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:87:27:87:56 | (err, r ... (query) | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:87:27:87:56 | (err, r ... (query) | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:87:27:87:56 | (err, r ... (query) | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:87:27:87:56 | (err, r ... (query) | XssThroughDom | notASinkReason | DatabaseAccess | string |
+| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:87:27:87:56 | (err, r ... (query) | XssThroughDom | sinkLabel | NotASink | string |
 | autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:87:51:87:55 | query | NosqlInjection | hasFlowFromSource | true | boolean |
 | autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:87:51:87:55 | query | NosqlInjection | isConstantExpression | false | boolean |
 | autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:87:51:87:55 | query | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
@@ -371,6 +406,11 @@ endpoints
 | autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:88:27:88:56 | (err, r ... (query) | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
 | autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:88:27:88:56 | (err, r ... (query) | Xss | notASinkReason | DatabaseAccess | string |
 | autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:88:27:88:56 | (err, r ... (query) | Xss | sinkLabel | NotASink | string |
+| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:88:27:88:56 | (err, r ... (query) | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:88:27:88:56 | (err, r ... (query) | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:88:27:88:56 | (err, r ... (query) | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:88:27:88:56 | (err, r ... (query) | XssThroughDom | notASinkReason | DatabaseAccess | string |
+| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:88:27:88:56 | (err, r ... (query) | XssThroughDom | sinkLabel | NotASink | string |
 | autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:89:19:89:19 | X | NosqlInjection | hasFlowFromSource | false | boolean |
 | autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:89:19:89:19 | X | NosqlInjection | isConstantExpression | false | boolean |
 | autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:89:19:89:19 | X | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
@@ -395,6 +435,11 @@ endpoints
 | autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:89:27:89:51 | (res) = ... (query) | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
 | autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:89:27:89:51 | (res) = ... (query) | Xss | notASinkReason | DatabaseAccess | string |
 | autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:89:27:89:51 | (res) = ... (query) | Xss | sinkLabel | NotASink | string |
+| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:89:27:89:51 | (res) = ... (query) | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:89:27:89:51 | (res) = ... (query) | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:89:27:89:51 | (res) = ... (query) | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:89:27:89:51 | (res) = ... (query) | XssThroughDom | notASinkReason | DatabaseAccess | string |
+| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:89:27:89:51 | (res) = ... (query) | XssThroughDom | sinkLabel | NotASink | string |
 | autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:89:46:89:50 | query | NosqlInjection | hasFlowFromSource | true | boolean |
 | autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:89:46:89:50 | query | NosqlInjection | isConstantExpression | false | boolean |
 | autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:89:46:89:50 | query | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
@@ -423,6 +468,11 @@ endpoints
 | autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:90:27:90:27 | Y | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
 | autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:90:27:90:27 | Y | Xss | notASinkReason | DatabaseAccess | string |
 | autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:90:27:90:27 | Y | Xss | sinkLabel | NotASink | string |
+| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:90:27:90:27 | Y | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:90:27:90:27 | Y | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:90:27:90:27 | Y | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:90:27:90:27 | Y | XssThroughDom | notASinkReason | DatabaseAccess | string |
+| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:90:27:90:27 | Y | XssThroughDom | sinkLabel | NotASink | string |
 | autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:90:30:90:54 | (err) = ... (query) | NosqlInjection | hasFlowFromSource | false | boolean |
 | autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:90:30:90:54 | (err) = ... (query) | NosqlInjection | isConstantExpression | false | boolean |
 | autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:90:30:90:54 | (err) = ... (query) | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
@@ -443,6 +493,11 @@ endpoints
 | autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:90:30:90:54 | (err) = ... (query) | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
 | autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:90:30:90:54 | (err) = ... (query) | Xss | notASinkReason | DatabaseAccess | string |
 | autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:90:30:90:54 | (err) = ... (query) | Xss | sinkLabel | NotASink | string |
+| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:90:30:90:54 | (err) = ... (query) | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:90:30:90:54 | (err) = ... (query) | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:90:30:90:54 | (err) = ... (query) | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:90:30:90:54 | (err) = ... (query) | XssThroughDom | notASinkReason | DatabaseAccess | string |
+| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:90:30:90:54 | (err) = ... (query) | XssThroughDom | sinkLabel | NotASink | string |
 | autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:92:16:92:16 | X | NosqlInjection | hasFlowFromSource | false | boolean |
 | autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:92:16:92:16 | X | NosqlInjection | isConstantExpression | false | boolean |
 | autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:92:16:92:16 | X | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
@@ -467,6 +522,11 @@ endpoints
 | autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:92:19:92:51 | (err, r ... (query) | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
 | autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:92:19:92:51 | (err, r ... (query) | Xss | notASinkReason | DatabaseAccess | string |
 | autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:92:19:92:51 | (err, r ... (query) | Xss | sinkLabel | NotASink | string |
+| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:92:19:92:51 | (err, r ... (query) | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:92:19:92:51 | (err, r ... (query) | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:92:19:92:51 | (err, r ... (query) | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:92:19:92:51 | (err, r ... (query) | XssThroughDom | notASinkReason | DatabaseAccess | string |
+| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:92:19:92:51 | (err, r ... (query) | XssThroughDom | sinkLabel | NotASink | string |
 | autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:92:46:92:50 | query | NosqlInjection | hasFlowFromSource | true | boolean |
 | autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:92:46:92:50 | query | NosqlInjection | isConstantExpression | false | boolean |
 | autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:92:46:92:50 | query | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
@@ -495,6 +555,11 @@ endpoints
 | autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:93:19:93:48 | (err, r ... (query) | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
 | autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:93:19:93:48 | (err, r ... (query) | Xss | notASinkReason | DatabaseAccess | string |
 | autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:93:19:93:48 | (err, r ... (query) | Xss | sinkLabel | NotASink | string |
+| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:93:19:93:48 | (err, r ... (query) | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:93:19:93:48 | (err, r ... (query) | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:93:19:93:48 | (err, r ... (query) | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:93:19:93:48 | (err, r ... (query) | XssThroughDom | notASinkReason | DatabaseAccess | string |
+| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:93:19:93:48 | (err, r ... (query) | XssThroughDom | sinkLabel | NotASink | string |
 | autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:94:16:94:16 | X | NosqlInjection | hasFlowFromSource | false | boolean |
 | autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:94:16:94:16 | X | NosqlInjection | isConstantExpression | false | boolean |
 | autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:94:16:94:16 | X | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
@@ -519,6 +584,11 @@ endpoints
 | autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:94:24:94:56 | (err, r ... (query) | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
 | autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:94:24:94:56 | (err, r ... (query) | Xss | notASinkReason | DatabaseAccess | string |
 | autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:94:24:94:56 | (err, r ... (query) | Xss | sinkLabel | NotASink | string |
+| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:94:24:94:56 | (err, r ... (query) | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:94:24:94:56 | (err, r ... (query) | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:94:24:94:56 | (err, r ... (query) | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:94:24:94:56 | (err, r ... (query) | XssThroughDom | notASinkReason | DatabaseAccess | string |
+| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:94:24:94:56 | (err, r ... (query) | XssThroughDom | sinkLabel | NotASink | string |
 | autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:94:51:94:55 | query | NosqlInjection | hasFlowFromSource | true | boolean |
 | autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:94:51:94:55 | query | NosqlInjection | isConstantExpression | false | boolean |
 | autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:94:51:94:55 | query | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
@@ -547,6 +617,11 @@ endpoints
 | autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:95:24:95:53 | (err, r ... (query) | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
 | autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:95:24:95:53 | (err, r ... (query) | Xss | notASinkReason | DatabaseAccess | string |
 | autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:95:24:95:53 | (err, r ... (query) | Xss | sinkLabel | NotASink | string |
+| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:95:24:95:53 | (err, r ... (query) | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:95:24:95:53 | (err, r ... (query) | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:95:24:95:53 | (err, r ... (query) | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:95:24:95:53 | (err, r ... (query) | XssThroughDom | notASinkReason | DatabaseAccess | string |
+| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:95:24:95:53 | (err, r ... (query) | XssThroughDom | sinkLabel | NotASink | string |
 | autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:96:16:96:16 | X | NosqlInjection | hasFlowFromSource | false | boolean |
 | autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:96:16:96:16 | X | NosqlInjection | isConstantExpression | false | boolean |
 | autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:96:16:96:16 | X | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
@@ -571,6 +646,11 @@ endpoints
 | autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:96:24:96:51 | (res) = ... (query) | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
 | autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:96:24:96:51 | (res) = ... (query) | Xss | notASinkReason | DatabaseAccess | string |
 | autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:96:24:96:51 | (res) = ... (query) | Xss | sinkLabel | NotASink | string |
+| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:96:24:96:51 | (res) = ... (query) | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:96:24:96:51 | (res) = ... (query) | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:96:24:96:51 | (res) = ... (query) | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:96:24:96:51 | (res) = ... (query) | XssThroughDom | notASinkReason | DatabaseAccess | string |
+| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:96:24:96:51 | (res) = ... (query) | XssThroughDom | sinkLabel | NotASink | string |
 | autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:96:46:96:50 | query | NosqlInjection | hasFlowFromSource | true | boolean |
 | autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:96:46:96:50 | query | NosqlInjection | isConstantExpression | false | boolean |
 | autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:96:46:96:50 | query | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
@@ -599,6 +679,11 @@ endpoints
 | autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:97:24:97:24 | Y | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
 | autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:97:24:97:24 | Y | Xss | notASinkReason | DatabaseAccess | string |
 | autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:97:24:97:24 | Y | Xss | sinkLabel | NotASink | string |
+| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:97:24:97:24 | Y | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:97:24:97:24 | Y | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:97:24:97:24 | Y | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:97:24:97:24 | Y | XssThroughDom | notASinkReason | DatabaseAccess | string |
+| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:97:24:97:24 | Y | XssThroughDom | sinkLabel | NotASink | string |
 | autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:97:27:97:51 | (err) = ... (query) | NosqlInjection | hasFlowFromSource | false | boolean |
 | autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:97:27:97:51 | (err) = ... (query) | NosqlInjection | isConstantExpression | false | boolean |
 | autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:97:27:97:51 | (err) = ... (query) | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
@@ -619,6 +704,11 @@ endpoints
 | autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:97:27:97:51 | (err) = ... (query) | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
 | autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:97:27:97:51 | (err) = ... (query) | Xss | notASinkReason | DatabaseAccess | string |
 | autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:97:27:97:51 | (err) = ... (query) | Xss | sinkLabel | NotASink | string |
+| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:97:27:97:51 | (err) = ... (query) | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:97:27:97:51 | (err) = ... (query) | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:97:27:97:51 | (err) = ... (query) | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:97:27:97:51 | (err) = ... (query) | XssThroughDom | notASinkReason | DatabaseAccess | string |
+| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:97:27:97:51 | (err) = ... (query) | XssThroughDom | sinkLabel | NotASink | string |
 | autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:99:17:99:17 | X | NosqlInjection | hasFlowFromSource | false | boolean |
 | autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:99:17:99:17 | X | NosqlInjection | isConstantExpression | false | boolean |
 | autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:99:17:99:17 | X | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
@@ -643,6 +733,11 @@ endpoints
 | autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:99:20:99:49 | (err, r ... (query) | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
 | autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:99:20:99:49 | (err, r ... (query) | Xss | notASinkReason | DatabaseAccess | string |
 | autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:99:20:99:49 | (err, r ... (query) | Xss | sinkLabel | NotASink | string |
+| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:99:20:99:49 | (err, r ... (query) | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:99:20:99:49 | (err, r ... (query) | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:99:20:99:49 | (err, r ... (query) | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:99:20:99:49 | (err, r ... (query) | XssThroughDom | notASinkReason | DatabaseAccess | string |
+| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:99:20:99:49 | (err, r ... (query) | XssThroughDom | sinkLabel | NotASink | string |
 | autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:111:14:111:18 | query | NosqlInjection | hasFlowFromSource | true | boolean |
 | autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:111:14:111:18 | query | NosqlInjection | isConstantExpression | false | boolean |
 | autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:111:14:111:18 | query | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
@@ -675,6 +770,11 @@ endpoints
 | autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:113:38:113:52 | function () { } | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
 | autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:113:38:113:52 | function () { } | Xss | notASinkReason | DatabaseAccess | string |
 | autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:113:38:113:52 | function () { } | Xss | sinkLabel | NotASink | string |
+| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:113:38:113:52 | function () { } | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:113:38:113:52 | function () { } | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:113:38:113:52 | function () { } | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:113:38:113:52 | function () { } | XssThroughDom | notASinkReason | DatabaseAccess | string |
+| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:113:38:113:52 | function () { } | XssThroughDom | sinkLabel | NotASink | string |
 | autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:116:22:116:25 | cond | NosqlInjection | hasFlowFromSource | true | boolean |
 | autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:116:22:116:25 | cond | NosqlInjection | isConstantExpression | false | boolean |
 | autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:116:22:116:25 | cond | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
@@ -795,6 +895,11 @@ endpoints
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:4:18:4:52 | process ... TRING'] | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:4:18:4:52 | process ... TRING'] | Xss | notASinkReason | DatabaseAccess | string |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:4:18:4:52 | process ... TRING'] | Xss | sinkLabel | NotASink | string |
+| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:4:18:4:52 | process ... TRING'] | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:4:18:4:52 | process ... TRING'] | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:4:18:4:52 | process ... TRING'] | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:4:18:4:52 | process ... TRING'] | XssThroughDom | notASinkReason | DatabaseAccess | string |
+| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:4:18:4:52 | process ... TRING'] | XssThroughDom | sinkLabel | NotASink | string |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:9:10:9:14 | query | SqlInjection | hasFlowFromSource | true | boolean |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:9:10:9:14 | query | SqlInjection | isConstantExpression | false | boolean |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:9:10:9:14 | query | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
@@ -955,6 +1060,11 @@ endpoints
 | autogenerated/NosqlAndSqlInjection/untyped/redis.js:26:14:26:16 | key | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
 | autogenerated/NosqlAndSqlInjection/untyped/redis.js:26:14:26:16 | key | Xss | notASinkReason | DatabaseAccess | string |
 | autogenerated/NosqlAndSqlInjection/untyped/redis.js:26:14:26:16 | key | Xss | sinkLabel | NotASink | string |
+| autogenerated/NosqlAndSqlInjection/untyped/redis.js:26:14:26:16 | key | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/redis.js:26:14:26:16 | key | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/redis.js:26:14:26:16 | key | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/redis.js:26:14:26:16 | key | XssThroughDom | notASinkReason | DatabaseAccess | string |
+| autogenerated/NosqlAndSqlInjection/untyped/redis.js:26:14:26:16 | key | XssThroughDom | sinkLabel | NotASink | string |
 | autogenerated/NosqlAndSqlInjection/untyped/redis.js:27:15:27:41 | functio ... es) { } | NosqlInjection | hasFlowFromSource | false | boolean |
 | autogenerated/NosqlAndSqlInjection/untyped/redis.js:27:15:27:41 | functio ... es) { } | NosqlInjection | isConstantExpression | false | boolean |
 | autogenerated/NosqlAndSqlInjection/untyped/redis.js:27:15:27:41 | functio ... es) { } | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
@@ -975,6 +1085,11 @@ endpoints
 | autogenerated/NosqlAndSqlInjection/untyped/redis.js:27:15:27:41 | functio ... es) { } | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
 | autogenerated/NosqlAndSqlInjection/untyped/redis.js:27:15:27:41 | functio ... es) { } | Xss | notASinkReason | DatabaseAccess | string |
 | autogenerated/NosqlAndSqlInjection/untyped/redis.js:27:15:27:41 | functio ... es) { } | Xss | sinkLabel | NotASink | string |
+| autogenerated/NosqlAndSqlInjection/untyped/redis.js:27:15:27:41 | functio ... es) { } | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/redis.js:27:15:27:41 | functio ... es) { } | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/redis.js:27:15:27:41 | functio ... es) { } | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/redis.js:27:15:27:41 | functio ... es) { } | XssThroughDom | notASinkReason | DatabaseAccess | string |
+| autogenerated/NosqlAndSqlInjection/untyped/redis.js:27:15:27:41 | functio ... es) { } | XssThroughDom | sinkLabel | NotASink | string |
 | autogenerated/NosqlAndSqlInjection/untyped/redis.js:29:22:31:5 | (err, n ... K\\n    } | NosqlInjection | hasFlowFromSource | false | boolean |
 | autogenerated/NosqlAndSqlInjection/untyped/redis.js:29:22:31:5 | (err, n ... K\\n    } | NosqlInjection | isConstantExpression | false | boolean |
 | autogenerated/NosqlAndSqlInjection/untyped/redis.js:29:22:31:5 | (err, n ... K\\n    } | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
@@ -995,6 +1110,11 @@ endpoints
 | autogenerated/NosqlAndSqlInjection/untyped/redis.js:29:22:31:5 | (err, n ... K\\n    } | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
 | autogenerated/NosqlAndSqlInjection/untyped/redis.js:29:22:31:5 | (err, n ... K\\n    } | Xss | notASinkReason | DatabaseAccess | string |
 | autogenerated/NosqlAndSqlInjection/untyped/redis.js:29:22:31:5 | (err, n ... K\\n    } | Xss | sinkLabel | NotASink | string |
+| autogenerated/NosqlAndSqlInjection/untyped/redis.js:29:22:31:5 | (err, n ... K\\n    } | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/redis.js:29:22:31:5 | (err, n ... K\\n    } | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/redis.js:29:22:31:5 | (err, n ... K\\n    } | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/redis.js:29:22:31:5 | (err, n ... K\\n    } | XssThroughDom | notASinkReason | DatabaseAccess | string |
+| autogenerated/NosqlAndSqlInjection/untyped/redis.js:29:22:31:5 | (err, n ... K\\n    } | XssThroughDom | sinkLabel | NotASink | string |
 | autogenerated/NosqlAndSqlInjection/untyped/redis.js:30:23:30:25 | key | NosqlInjection | hasFlowFromSource | true | boolean |
 | autogenerated/NosqlAndSqlInjection/untyped/redis.js:30:23:30:25 | key | NosqlInjection | isConstantExpression | false | boolean |
 | autogenerated/NosqlAndSqlInjection/untyped/redis.js:30:23:30:25 | key | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
@@ -1035,6 +1155,11 @@ endpoints
 | autogenerated/NosqlAndSqlInjection/untyped/redis.js:49:35:49:37 | key | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
 | autogenerated/NosqlAndSqlInjection/untyped/redis.js:49:35:49:37 | key | Xss | notASinkReason | DatabaseAccess | string |
 | autogenerated/NosqlAndSqlInjection/untyped/redis.js:49:35:49:37 | key | Xss | sinkLabel | NotASink | string |
+| autogenerated/NosqlAndSqlInjection/untyped/redis.js:49:35:49:37 | key | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/redis.js:49:35:49:37 | key | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/redis.js:49:35:49:37 | key | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/redis.js:49:35:49:37 | key | XssThroughDom | notASinkReason | DatabaseAccess | string |
+| autogenerated/NosqlAndSqlInjection/untyped/redis.js:49:35:49:37 | key | XssThroughDom | sinkLabel | NotASink | string |
 | autogenerated/NosqlAndSqlInjection/untyped/socketio.js:10:24:12:3 | (handle ... `);\\n  } | NosqlInjection | hasFlowFromSource | false | boolean |
 | autogenerated/NosqlAndSqlInjection/untyped/socketio.js:10:24:12:3 | (handle ... `);\\n  } | NosqlInjection | isConstantExpression | false | boolean |
 | autogenerated/NosqlAndSqlInjection/untyped/socketio.js:10:24:12:3 | (handle ... `);\\n  } | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
@@ -1055,6 +1180,11 @@ endpoints
 | autogenerated/NosqlAndSqlInjection/untyped/socketio.js:10:24:12:3 | (handle ... `);\\n  } | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
 | autogenerated/NosqlAndSqlInjection/untyped/socketio.js:10:24:12:3 | (handle ... `);\\n  } | Xss | notASinkReason | EventRegistration | string |
 | autogenerated/NosqlAndSqlInjection/untyped/socketio.js:10:24:12:3 | (handle ... `);\\n  } | Xss | sinkLabel | NotASink | string |
+| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:10:24:12:3 | (handle ... `);\\n  } | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:10:24:12:3 | (handle ... `);\\n  } | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:10:24:12:3 | (handle ... `);\\n  } | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:10:24:12:3 | (handle ... `);\\n  } | XssThroughDom | notASinkReason | EventRegistration | string |
+| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:10:24:12:3 | (handle ... `);\\n  } | XssThroughDom | sinkLabel | NotASink | string |
 | autogenerated/NosqlAndSqlInjection/untyped/socketio.js:11:12:11:53 | `INSERT ... andle}` | SqlInjection | hasFlowFromSource | true | boolean |
 | autogenerated/NosqlAndSqlInjection/untyped/socketio.js:11:12:11:53 | `INSERT ... andle}` | SqlInjection | isConstantExpression | false | boolean |
 | autogenerated/NosqlAndSqlInjection/untyped/socketio.js:11:12:11:53 | `INSERT ... andle}` | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
@@ -1091,6 +1221,11 @@ endpoints
 | autogenerated/NosqlAndSqlInjection/untyped/tst3.js:9:22:9:23 | [] | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
 | autogenerated/NosqlAndSqlInjection/untyped/tst3.js:9:22:9:23 | [] | Xss | notASinkReason | DatabaseAccess | string |
 | autogenerated/NosqlAndSqlInjection/untyped/tst3.js:9:22:9:23 | [] | Xss | sinkLabel | NotASink | string |
+| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:9:22:9:23 | [] | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:9:22:9:23 | [] | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:9:22:9:23 | [] | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:9:22:9:23 | [] | XssThroughDom | notASinkReason | DatabaseAccess | string |
+| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:9:22:9:23 | [] | XssThroughDom | sinkLabel | NotASink | string |
 | autogenerated/NosqlAndSqlInjection/untyped/tst3.js:9:26:11:3 | functio ... lts\\n  } | NosqlInjection | hasFlowFromSource | false | boolean |
 | autogenerated/NosqlAndSqlInjection/untyped/tst3.js:9:26:11:3 | functio ... lts\\n  } | NosqlInjection | isConstantExpression | false | boolean |
 | autogenerated/NosqlAndSqlInjection/untyped/tst3.js:9:26:11:3 | functio ... lts\\n  } | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
@@ -1111,6 +1246,11 @@ endpoints
 | autogenerated/NosqlAndSqlInjection/untyped/tst3.js:9:26:11:3 | functio ... lts\\n  } | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
 | autogenerated/NosqlAndSqlInjection/untyped/tst3.js:9:26:11:3 | functio ... lts\\n  } | Xss | notASinkReason | DatabaseAccess | string |
 | autogenerated/NosqlAndSqlInjection/untyped/tst3.js:9:26:11:3 | functio ... lts\\n  } | Xss | sinkLabel | NotASink | string |
+| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:9:26:11:3 | functio ... lts\\n  } | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:9:26:11:3 | functio ... lts\\n  } | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:9:26:11:3 | functio ... lts\\n  } | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:9:26:11:3 | functio ... lts\\n  } | XssThroughDom | notASinkReason | DatabaseAccess | string |
+| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:9:26:11:3 | functio ... lts\\n  } | XssThroughDom | sinkLabel | NotASink | string |
 | autogenerated/NosqlAndSqlInjection/untyped/tst3.js:16:14:16:19 | query2 | SqlInjection | hasFlowFromSource | false | boolean |
 | autogenerated/NosqlAndSqlInjection/untyped/tst3.js:16:14:16:19 | query2 | SqlInjection | isConstantExpression | false | boolean |
 | autogenerated/NosqlAndSqlInjection/untyped/tst3.js:16:14:16:19 | query2 | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
@@ -1135,6 +1275,11 @@ endpoints
 | autogenerated/NosqlAndSqlInjection/untyped/tst3.js:16:22:16:42 | [req.pa ... tegory] | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
 | autogenerated/NosqlAndSqlInjection/untyped/tst3.js:16:22:16:42 | [req.pa ... tegory] | Xss | notASinkReason | DatabaseAccess | string |
 | autogenerated/NosqlAndSqlInjection/untyped/tst3.js:16:22:16:42 | [req.pa ... tegory] | Xss | sinkLabel | NotASink | string |
+| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:16:22:16:42 | [req.pa ... tegory] | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:16:22:16:42 | [req.pa ... tegory] | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:16:22:16:42 | [req.pa ... tegory] | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:16:22:16:42 | [req.pa ... tegory] | XssThroughDom | notASinkReason | DatabaseAccess | string |
+| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:16:22:16:42 | [req.pa ... tegory] | XssThroughDom | sinkLabel | NotASink | string |
 | autogenerated/NosqlAndSqlInjection/untyped/tst3.js:16:45:18:3 | functio ... lts\\n  } | NosqlInjection | hasFlowFromSource | false | boolean |
 | autogenerated/NosqlAndSqlInjection/untyped/tst3.js:16:45:18:3 | functio ... lts\\n  } | NosqlInjection | isConstantExpression | false | boolean |
 | autogenerated/NosqlAndSqlInjection/untyped/tst3.js:16:45:18:3 | functio ... lts\\n  } | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
@@ -1155,6 +1300,11 @@ endpoints
 | autogenerated/NosqlAndSqlInjection/untyped/tst3.js:16:45:18:3 | functio ... lts\\n  } | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
 | autogenerated/NosqlAndSqlInjection/untyped/tst3.js:16:45:18:3 | functio ... lts\\n  } | Xss | notASinkReason | DatabaseAccess | string |
 | autogenerated/NosqlAndSqlInjection/untyped/tst3.js:16:45:18:3 | functio ... lts\\n  } | Xss | sinkLabel | NotASink | string |
+| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:16:45:18:3 | functio ... lts\\n  } | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:16:45:18:3 | functio ... lts\\n  } | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:16:45:18:3 | functio ... lts\\n  } | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:16:45:18:3 | functio ... lts\\n  } | XssThroughDom | notASinkReason | DatabaseAccess | string |
+| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:16:45:18:3 | functio ... lts\\n  } | XssThroughDom | sinkLabel | NotASink | string |
 | autogenerated/NosqlAndSqlInjection/untyped/tst4.js:8:10:8:66 | 'SELECT ... d + '"' | SqlInjection | hasFlowFromSource | true | boolean |
 | autogenerated/NosqlAndSqlInjection/untyped/tst4.js:8:10:8:66 | 'SELECT ... d + '"' | SqlInjection | isConstantExpression | false | boolean |
 | autogenerated/NosqlAndSqlInjection/untyped/tst4.js:8:10:8:66 | 'SELECT ... d + '"' | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
@@ -1203,6 +1353,11 @@ endpoints
 | autogenerated/TaintedPath/TaintedPath.js:23:21:23:24 | path | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
 | autogenerated/TaintedPath/TaintedPath.js:23:21:23:24 | path | Xss | notASinkReason | FileSystemAccess | string |
 | autogenerated/TaintedPath/TaintedPath.js:23:21:23:24 | path | Xss | sinkLabel | NotASink | string |
+| autogenerated/TaintedPath/TaintedPath.js:23:21:23:24 | path | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/TaintedPath/TaintedPath.js:23:21:23:24 | path | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/TaintedPath/TaintedPath.js:23:21:23:24 | path | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/TaintedPath/TaintedPath.js:23:21:23:24 | path | XssThroughDom | notASinkReason | FileSystemAccess | string |
+| autogenerated/TaintedPath/TaintedPath.js:23:21:23:24 | path | XssThroughDom | sinkLabel | NotASink | string |
 | autogenerated/TaintedPath/TaintedPath.js:24:33:24:36 | path | TaintedPath | hasFlowFromSource | true | boolean |
 | autogenerated/TaintedPath/TaintedPath.js:24:33:24:36 | path | TaintedPath | isConstantExpression | false | boolean |
 | autogenerated/TaintedPath/TaintedPath.js:24:33:24:36 | path | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
@@ -1311,6 +1466,11 @@ endpoints
 | autogenerated/TaintedPath/TaintedPath.js:102:44:102:47 | path | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
 | autogenerated/TaintedPath/TaintedPath.js:102:44:102:47 | path | Xss | notASinkReason | FileSystemAccess | string |
 | autogenerated/TaintedPath/TaintedPath.js:102:44:102:47 | path | Xss | sinkLabel | NotASink | string |
+| autogenerated/TaintedPath/TaintedPath.js:102:44:102:47 | path | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/TaintedPath/TaintedPath.js:102:44:102:47 | path | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/TaintedPath/TaintedPath.js:102:44:102:47 | path | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/TaintedPath/TaintedPath.js:102:44:102:47 | path | XssThroughDom | notASinkReason | FileSystemAccess | string |
+| autogenerated/TaintedPath/TaintedPath.js:102:44:102:47 | path | XssThroughDom | sinkLabel | NotASink | string |
 | autogenerated/TaintedPath/TaintedPath.js:103:14:103:17 | path | NosqlInjection | hasFlowFromSource | true | boolean |
 | autogenerated/TaintedPath/TaintedPath.js:103:14:103:17 | path | NosqlInjection | isConstantExpression | false | boolean |
 | autogenerated/TaintedPath/TaintedPath.js:103:14:103:17 | path | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
@@ -1331,6 +1491,11 @@ endpoints
 | autogenerated/TaintedPath/TaintedPath.js:103:14:103:17 | path | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
 | autogenerated/TaintedPath/TaintedPath.js:103:14:103:17 | path | Xss | notASinkReason | FileSystemAccess | string |
 | autogenerated/TaintedPath/TaintedPath.js:103:14:103:17 | path | Xss | sinkLabel | NotASink | string |
+| autogenerated/TaintedPath/TaintedPath.js:103:14:103:17 | path | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/TaintedPath/TaintedPath.js:103:14:103:17 | path | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/TaintedPath/TaintedPath.js:103:14:103:17 | path | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/TaintedPath/TaintedPath.js:103:14:103:17 | path | XssThroughDom | notASinkReason | FileSystemAccess | string |
+| autogenerated/TaintedPath/TaintedPath.js:103:14:103:17 | path | XssThroughDom | sinkLabel | NotASink | string |
 | autogenerated/TaintedPath/TaintedPath.js:104:18:106:18 | functio ...       } | NosqlInjection | hasFlowFromSource | false | boolean |
 | autogenerated/TaintedPath/TaintedPath.js:104:18:106:18 | functio ...       } | NosqlInjection | isConstantExpression | false | boolean |
 | autogenerated/TaintedPath/TaintedPath.js:104:18:106:18 | functio ...       } | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
@@ -1351,6 +1516,11 @@ endpoints
 | autogenerated/TaintedPath/TaintedPath.js:104:18:106:18 | functio ...       } | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
 | autogenerated/TaintedPath/TaintedPath.js:104:18:106:18 | functio ...       } | Xss | notASinkReason | FileSystemAccess | string |
 | autogenerated/TaintedPath/TaintedPath.js:104:18:106:18 | functio ...       } | Xss | sinkLabel | NotASink | string |
+| autogenerated/TaintedPath/TaintedPath.js:104:18:106:18 | functio ...       } | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/TaintedPath/TaintedPath.js:104:18:106:18 | functio ...       } | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/TaintedPath/TaintedPath.js:104:18:106:18 | functio ...       } | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/TaintedPath/TaintedPath.js:104:18:106:18 | functio ...       } | XssThroughDom | notASinkReason | FileSystemAccess | string |
+| autogenerated/TaintedPath/TaintedPath.js:104:18:106:18 | functio ...       } | XssThroughDom | sinkLabel | NotASink | string |
 | autogenerated/TaintedPath/TaintedPath.js:105:45:105:52 | realpath | TaintedPath | hasFlowFromSource | true | boolean |
 | autogenerated/TaintedPath/TaintedPath.js:105:45:105:52 | realpath | TaintedPath | isConstantExpression | false | boolean |
 | autogenerated/TaintedPath/TaintedPath.js:105:45:105:52 | realpath | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
@@ -1559,6 +1729,11 @@ endpoints
 | autogenerated/TaintedPath/normalizedPaths.js:49:24:49:44 | ".." +  ... ule.sep | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
 | autogenerated/TaintedPath/normalizedPaths.js:49:24:49:44 | ".." +  ... ule.sep | Xss | notASinkReason | StringStartsWith | string |
 | autogenerated/TaintedPath/normalizedPaths.js:49:24:49:44 | ".." +  ... ule.sep | Xss | sinkLabel | NotASink | string |
+| autogenerated/TaintedPath/normalizedPaths.js:49:24:49:44 | ".." +  ... ule.sep | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/TaintedPath/normalizedPaths.js:49:24:49:44 | ".." +  ... ule.sep | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/TaintedPath/normalizedPaths.js:49:24:49:44 | ".." +  ... ule.sep | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/TaintedPath/normalizedPaths.js:49:24:49:44 | ".." +  ... ule.sep | XssThroughDom | notASinkReason | StringStartsWith | string |
+| autogenerated/TaintedPath/normalizedPaths.js:49:24:49:44 | ".." +  ... ule.sep | XssThroughDom | sinkLabel | NotASink | string |
 | autogenerated/TaintedPath/normalizedPaths.js:50:21:50:24 | path | TaintedPath | hasFlowFromSource | true | boolean |
 | autogenerated/TaintedPath/normalizedPaths.js:50:21:50:24 | path | TaintedPath | isConstantExpression | false | boolean |
 | autogenerated/TaintedPath/normalizedPaths.js:50:21:50:24 | path | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
@@ -1635,6 +1810,11 @@ endpoints
 | autogenerated/TaintedPath/normalizedPaths.js:117:30:117:43 | req.query.path | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
 | autogenerated/TaintedPath/normalizedPaths.js:117:30:117:43 | req.query.path | Xss | notASinkReason | FileSystemAccess | string |
 | autogenerated/TaintedPath/normalizedPaths.js:117:30:117:43 | req.query.path | Xss | sinkLabel | NotASink | string |
+| autogenerated/TaintedPath/normalizedPaths.js:117:30:117:43 | req.query.path | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/TaintedPath/normalizedPaths.js:117:30:117:43 | req.query.path | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/TaintedPath/normalizedPaths.js:117:30:117:43 | req.query.path | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/TaintedPath/normalizedPaths.js:117:30:117:43 | req.query.path | XssThroughDom | notASinkReason | FileSystemAccess | string |
+| autogenerated/TaintedPath/normalizedPaths.js:117:30:117:43 | req.query.path | XssThroughDom | sinkLabel | NotASink | string |
 | autogenerated/TaintedPath/normalizedPaths.js:119:19:119:22 | path | TaintedPath | hasFlowFromSource | true | boolean |
 | autogenerated/TaintedPath/normalizedPaths.js:119:19:119:22 | path | TaintedPath | isConstantExpression | false | boolean |
 | autogenerated/TaintedPath/normalizedPaths.js:119:19:119:22 | path | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
@@ -1779,6 +1959,11 @@ endpoints
 | autogenerated/TaintedPath/normalizedPaths.js:242:25:242:39 | self.dir.length | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
 | autogenerated/TaintedPath/normalizedPaths.js:242:25:242:39 | self.dir.length | Xss | notASinkReason | BuiltinCallName | string |
 | autogenerated/TaintedPath/normalizedPaths.js:242:25:242:39 | self.dir.length | Xss | sinkLabel | NotASink | string |
+| autogenerated/TaintedPath/normalizedPaths.js:242:25:242:39 | self.dir.length | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/TaintedPath/normalizedPaths.js:242:25:242:39 | self.dir.length | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/TaintedPath/normalizedPaths.js:242:25:242:39 | self.dir.length | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/TaintedPath/normalizedPaths.js:242:25:242:39 | self.dir.length | XssThroughDom | notASinkReason | BuiltinCallName | string |
+| autogenerated/TaintedPath/normalizedPaths.js:242:25:242:39 | self.dir.length | XssThroughDom | sinkLabel | NotASink | string |
 | autogenerated/TaintedPath/normalizedPaths.js:243:21:243:24 | path | TaintedPath | hasFlowFromSource | false | boolean |
 | autogenerated/TaintedPath/normalizedPaths.js:243:21:243:24 | path | TaintedPath | isConstantExpression | false | boolean |
 | autogenerated/TaintedPath/normalizedPaths.js:243:21:243:24 | path | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
@@ -1807,6 +1992,11 @@ endpoints
 | autogenerated/TaintedPath/normalizedPaths.js:247:21:247:35 | self.dir.length | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
 | autogenerated/TaintedPath/normalizedPaths.js:247:21:247:35 | self.dir.length | Xss | notASinkReason | BuiltinCallName | string |
 | autogenerated/TaintedPath/normalizedPaths.js:247:21:247:35 | self.dir.length | Xss | sinkLabel | NotASink | string |
+| autogenerated/TaintedPath/normalizedPaths.js:247:21:247:35 | self.dir.length | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/TaintedPath/normalizedPaths.js:247:21:247:35 | self.dir.length | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/TaintedPath/normalizedPaths.js:247:21:247:35 | self.dir.length | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/TaintedPath/normalizedPaths.js:247:21:247:35 | self.dir.length | XssThroughDom | notASinkReason | BuiltinCallName | string |
+| autogenerated/TaintedPath/normalizedPaths.js:247:21:247:35 | self.dir.length | XssThroughDom | sinkLabel | NotASink | string |
 | autogenerated/TaintedPath/normalizedPaths.js:248:21:248:24 | path | TaintedPath | hasFlowFromSource | false | boolean |
 | autogenerated/TaintedPath/normalizedPaths.js:248:21:248:24 | path | TaintedPath | isConstantExpression | false | boolean |
 | autogenerated/TaintedPath/normalizedPaths.js:248:21:248:24 | path | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
@@ -1839,6 +2029,11 @@ endpoints
 | autogenerated/TaintedPath/normalizedPaths.js:261:26:261:46 | ".." +  ... ule.sep | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
 | autogenerated/TaintedPath/normalizedPaths.js:261:26:261:46 | ".." +  ... ule.sep | Xss | notASinkReason | StringStartsWith | string |
 | autogenerated/TaintedPath/normalizedPaths.js:261:26:261:46 | ".." +  ... ule.sep | Xss | sinkLabel | NotASink | string |
+| autogenerated/TaintedPath/normalizedPaths.js:261:26:261:46 | ".." +  ... ule.sep | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/TaintedPath/normalizedPaths.js:261:26:261:46 | ".." +  ... ule.sep | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/TaintedPath/normalizedPaths.js:261:26:261:46 | ".." +  ... ule.sep | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/TaintedPath/normalizedPaths.js:261:26:261:46 | ".." +  ... ule.sep | XssThroughDom | notASinkReason | StringStartsWith | string |
+| autogenerated/TaintedPath/normalizedPaths.js:261:26:261:46 | ".." +  ... ule.sep | XssThroughDom | sinkLabel | NotASink | string |
 | autogenerated/TaintedPath/normalizedPaths.js:262:21:262:24 | path | TaintedPath | hasFlowFromSource | true | boolean |
 | autogenerated/TaintedPath/normalizedPaths.js:262:21:262:24 | path | TaintedPath | isConstantExpression | false | boolean |
 | autogenerated/TaintedPath/normalizedPaths.js:262:21:262:24 | path | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
@@ -1867,6 +2062,11 @@ endpoints
 | autogenerated/TaintedPath/normalizedPaths.js:269:28:269:48 | '..' +  ... ule.sep | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
 | autogenerated/TaintedPath/normalizedPaths.js:269:28:269:48 | '..' +  ... ule.sep | Xss | notASinkReason | BuiltinCallName | string |
 | autogenerated/TaintedPath/normalizedPaths.js:269:28:269:48 | '..' +  ... ule.sep | Xss | sinkLabel | NotASink | string |
+| autogenerated/TaintedPath/normalizedPaths.js:269:28:269:48 | '..' +  ... ule.sep | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/TaintedPath/normalizedPaths.js:269:28:269:48 | '..' +  ... ule.sep | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/TaintedPath/normalizedPaths.js:269:28:269:48 | '..' +  ... ule.sep | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/TaintedPath/normalizedPaths.js:269:28:269:48 | '..' +  ... ule.sep | XssThroughDom | notASinkReason | BuiltinCallName | string |
+| autogenerated/TaintedPath/normalizedPaths.js:269:28:269:48 | '..' +  ... ule.sep | XssThroughDom | sinkLabel | NotASink | string |
 | autogenerated/TaintedPath/normalizedPaths.js:270:21:270:27 | newpath | TaintedPath | hasFlowFromSource | true | boolean |
 | autogenerated/TaintedPath/normalizedPaths.js:270:21:270:27 | newpath | TaintedPath | isConstantExpression | false | boolean |
 | autogenerated/TaintedPath/normalizedPaths.js:270:21:270:27 | newpath | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
@@ -1959,6 +2159,11 @@ endpoints
 | autogenerated/TaintedPath/normalizedPaths.js:345:18:345:21 | root | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
 | autogenerated/TaintedPath/normalizedPaths.js:345:18:345:21 | root | Xss | notASinkReason | BuiltinCallName | string |
 | autogenerated/TaintedPath/normalizedPaths.js:345:18:345:21 | root | Xss | sinkLabel | NotASink | string |
+| autogenerated/TaintedPath/normalizedPaths.js:345:18:345:21 | root | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/TaintedPath/normalizedPaths.js:345:18:345:21 | root | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/TaintedPath/normalizedPaths.js:345:18:345:21 | root | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/TaintedPath/normalizedPaths.js:345:18:345:21 | root | XssThroughDom | notASinkReason | BuiltinCallName | string |
+| autogenerated/TaintedPath/normalizedPaths.js:345:18:345:21 | root | XssThroughDom | sinkLabel | NotASink | string |
 | autogenerated/TaintedPath/normalizedPaths.js:346:19:346:22 | path | TaintedPath | hasFlowFromSource | true | boolean |
 | autogenerated/TaintedPath/normalizedPaths.js:346:19:346:22 | path | TaintedPath | isConstantExpression | false | boolean |
 | autogenerated/TaintedPath/normalizedPaths.js:346:19:346:22 | path | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
@@ -1991,6 +2196,11 @@ endpoints
 | autogenerated/TaintedPath/normalizedPaths.js:361:18:361:28 | requestPath | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
 | autogenerated/TaintedPath/normalizedPaths.js:361:18:361:28 | requestPath | Xss | notASinkReason | StringStartsWith | string |
 | autogenerated/TaintedPath/normalizedPaths.js:361:18:361:28 | requestPath | Xss | sinkLabel | NotASink | string |
+| autogenerated/TaintedPath/normalizedPaths.js:361:18:361:28 | requestPath | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/TaintedPath/normalizedPaths.js:361:18:361:28 | requestPath | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/TaintedPath/normalizedPaths.js:361:18:361:28 | requestPath | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/TaintedPath/normalizedPaths.js:361:18:361:28 | requestPath | XssThroughDom | notASinkReason | StringStartsWith | string |
+| autogenerated/TaintedPath/normalizedPaths.js:361:18:361:28 | requestPath | XssThroughDom | sinkLabel | NotASink | string |
 | autogenerated/TaintedPath/normalizedPaths.js:361:31:361:38 | rootPath | NosqlInjection | hasFlowFromSource | false | boolean |
 | autogenerated/TaintedPath/normalizedPaths.js:361:31:361:38 | rootPath | NosqlInjection | isConstantExpression | false | boolean |
 | autogenerated/TaintedPath/normalizedPaths.js:361:31:361:38 | rootPath | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
@@ -2011,6 +2221,11 @@ endpoints
 | autogenerated/TaintedPath/normalizedPaths.js:361:31:361:38 | rootPath | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
 | autogenerated/TaintedPath/normalizedPaths.js:361:31:361:38 | rootPath | Xss | notASinkReason | StringStartsWith | string |
 | autogenerated/TaintedPath/normalizedPaths.js:361:31:361:38 | rootPath | Xss | sinkLabel | NotASink | string |
+| autogenerated/TaintedPath/normalizedPaths.js:361:31:361:38 | rootPath | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/TaintedPath/normalizedPaths.js:361:31:361:38 | rootPath | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/TaintedPath/normalizedPaths.js:361:31:361:38 | rootPath | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/TaintedPath/normalizedPaths.js:361:31:361:38 | rootPath | XssThroughDom | notASinkReason | StringStartsWith | string |
+| autogenerated/TaintedPath/normalizedPaths.js:361:31:361:38 | rootPath | XssThroughDom | sinkLabel | NotASink | string |
 | autogenerated/TaintedPath/normalizedPaths.js:363:21:363:31 | requestPath | TaintedPath | hasFlowFromSource | true | boolean |
 | autogenerated/TaintedPath/normalizedPaths.js:363:21:363:31 | requestPath | TaintedPath | isConstantExpression | false | boolean |
 | autogenerated/TaintedPath/normalizedPaths.js:363:21:363:31 | requestPath | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
@@ -2043,6 +2258,11 @@ endpoints
 | autogenerated/TaintedPath/normalizedPaths.js:371:32:371:39 | rootPath | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
 | autogenerated/TaintedPath/normalizedPaths.js:371:32:371:39 | rootPath | Xss | notASinkReason | BuiltinCallName | string |
 | autogenerated/TaintedPath/normalizedPaths.js:371:32:371:39 | rootPath | Xss | sinkLabel | NotASink | string |
+| autogenerated/TaintedPath/normalizedPaths.js:371:32:371:39 | rootPath | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/TaintedPath/normalizedPaths.js:371:32:371:39 | rootPath | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/TaintedPath/normalizedPaths.js:371:32:371:39 | rootPath | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/TaintedPath/normalizedPaths.js:371:32:371:39 | rootPath | XssThroughDom | notASinkReason | BuiltinCallName | string |
+| autogenerated/TaintedPath/normalizedPaths.js:371:32:371:39 | rootPath | XssThroughDom | sinkLabel | NotASink | string |
 | autogenerated/TaintedPath/other-fs-libraries.js:11:19:11:22 | path | TaintedPath | hasFlowFromSource | true | boolean |
 | autogenerated/TaintedPath/other-fs-libraries.js:11:19:11:22 | path | TaintedPath | isConstantExpression | false | boolean |
 | autogenerated/TaintedPath/other-fs-libraries.js:11:19:11:22 | path | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
@@ -2179,6 +2399,11 @@ endpoints
 | autogenerated/TaintedPath/tainted-sendFile.js:13:16:13:33 | req.param("gimme") | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
 | autogenerated/TaintedPath/tainted-sendFile.js:13:16:13:33 | req.param("gimme") | Xss | notASinkReason | FileSystemAccess | string |
 | autogenerated/TaintedPath/tainted-sendFile.js:13:16:13:33 | req.param("gimme") | Xss | sinkLabel | NotASink | string |
+| autogenerated/TaintedPath/tainted-sendFile.js:13:16:13:33 | req.param("gimme") | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/TaintedPath/tainted-sendFile.js:13:16:13:33 | req.param("gimme") | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/TaintedPath/tainted-sendFile.js:13:16:13:33 | req.param("gimme") | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/TaintedPath/tainted-sendFile.js:13:16:13:33 | req.param("gimme") | XssThroughDom | notASinkReason | FileSystemAccess | string |
+| autogenerated/TaintedPath/tainted-sendFile.js:13:16:13:33 | req.param("gimme") | XssThroughDom | sinkLabel | NotASink | string |
 | autogenerated/TaintedPath/tainted-sendFile.js:13:36:13:58 | { root: ... cwd() } | NosqlInjection | hasFlowFromSource | false | boolean |
 | autogenerated/TaintedPath/tainted-sendFile.js:13:36:13:58 | { root: ... cwd() } | NosqlInjection | isConstantExpression | false | boolean |
 | autogenerated/TaintedPath/tainted-sendFile.js:13:36:13:58 | { root: ... cwd() } | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
@@ -2199,6 +2424,11 @@ endpoints
 | autogenerated/TaintedPath/tainted-sendFile.js:13:36:13:58 | { root: ... cwd() } | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
 | autogenerated/TaintedPath/tainted-sendFile.js:13:36:13:58 | { root: ... cwd() } | Xss | notASinkReason | FileSystemAccess | string |
 | autogenerated/TaintedPath/tainted-sendFile.js:13:36:13:58 | { root: ... cwd() } | Xss | sinkLabel | NotASink | string |
+| autogenerated/TaintedPath/tainted-sendFile.js:13:36:13:58 | { root: ... cwd() } | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/TaintedPath/tainted-sendFile.js:13:36:13:58 | { root: ... cwd() } | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/TaintedPath/tainted-sendFile.js:13:36:13:58 | { root: ... cwd() } | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/TaintedPath/tainted-sendFile.js:13:36:13:58 | { root: ... cwd() } | XssThroughDom | notASinkReason | FileSystemAccess | string |
+| autogenerated/TaintedPath/tainted-sendFile.js:13:36:13:58 | { root: ... cwd() } | XssThroughDom | sinkLabel | NotASink | string |
 | autogenerated/TaintedPath/tainted-sendFile.js:13:44:13:56 | process.cwd() | TaintedPath | hasFlowFromSource | false | boolean |
 | autogenerated/TaintedPath/tainted-sendFile.js:13:44:13:56 | process.cwd() | TaintedPath | isConstantExpression | false | boolean |
 | autogenerated/TaintedPath/tainted-sendFile.js:13:44:13:56 | process.cwd() | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
@@ -2223,6 +2453,11 @@ endpoints
 | autogenerated/TaintedPath/tainted-sendFile.js:15:16:15:33 | req.param("gimme") | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
 | autogenerated/TaintedPath/tainted-sendFile.js:15:16:15:33 | req.param("gimme") | Xss | notASinkReason | FileSystemAccess | string |
 | autogenerated/TaintedPath/tainted-sendFile.js:15:16:15:33 | req.param("gimme") | Xss | sinkLabel | NotASink | string |
+| autogenerated/TaintedPath/tainted-sendFile.js:15:16:15:33 | req.param("gimme") | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/TaintedPath/tainted-sendFile.js:15:16:15:33 | req.param("gimme") | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/TaintedPath/tainted-sendFile.js:15:16:15:33 | req.param("gimme") | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/TaintedPath/tainted-sendFile.js:15:16:15:33 | req.param("gimme") | XssThroughDom | notASinkReason | FileSystemAccess | string |
+| autogenerated/TaintedPath/tainted-sendFile.js:15:16:15:33 | req.param("gimme") | XssThroughDom | sinkLabel | NotASink | string |
 | autogenerated/TaintedPath/tainted-sendFile.js:15:36:15:58 | { root: ... cwd() } | NosqlInjection | hasFlowFromSource | false | boolean |
 | autogenerated/TaintedPath/tainted-sendFile.js:15:36:15:58 | { root: ... cwd() } | NosqlInjection | isConstantExpression | false | boolean |
 | autogenerated/TaintedPath/tainted-sendFile.js:15:36:15:58 | { root: ... cwd() } | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
@@ -2243,6 +2478,11 @@ endpoints
 | autogenerated/TaintedPath/tainted-sendFile.js:15:36:15:58 | { root: ... cwd() } | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
 | autogenerated/TaintedPath/tainted-sendFile.js:15:36:15:58 | { root: ... cwd() } | Xss | notASinkReason | FileSystemAccess | string |
 | autogenerated/TaintedPath/tainted-sendFile.js:15:36:15:58 | { root: ... cwd() } | Xss | sinkLabel | NotASink | string |
+| autogenerated/TaintedPath/tainted-sendFile.js:15:36:15:58 | { root: ... cwd() } | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/TaintedPath/tainted-sendFile.js:15:36:15:58 | { root: ... cwd() } | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/TaintedPath/tainted-sendFile.js:15:36:15:58 | { root: ... cwd() } | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/TaintedPath/tainted-sendFile.js:15:36:15:58 | { root: ... cwd() } | XssThroughDom | notASinkReason | FileSystemAccess | string |
+| autogenerated/TaintedPath/tainted-sendFile.js:15:36:15:58 | { root: ... cwd() } | XssThroughDom | sinkLabel | NotASink | string |
 | autogenerated/TaintedPath/tainted-sendFile.js:15:44:15:56 | process.cwd() | TaintedPath | hasFlowFromSource | false | boolean |
 | autogenerated/TaintedPath/tainted-sendFile.js:15:44:15:56 | process.cwd() | TaintedPath | isConstantExpression | false | boolean |
 | autogenerated/TaintedPath/tainted-sendFile.js:15:44:15:56 | process.cwd() | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
@@ -2267,6 +2507,11 @@ endpoints
 | autogenerated/TaintedPath/tainted-sendFile.js:18:16:18:32 | req.param("file") | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
 | autogenerated/TaintedPath/tainted-sendFile.js:18:16:18:32 | req.param("file") | Xss | notASinkReason | FileSystemAccess | string |
 | autogenerated/TaintedPath/tainted-sendFile.js:18:16:18:32 | req.param("file") | Xss | sinkLabel | NotASink | string |
+| autogenerated/TaintedPath/tainted-sendFile.js:18:16:18:32 | req.param("file") | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/TaintedPath/tainted-sendFile.js:18:16:18:32 | req.param("file") | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/TaintedPath/tainted-sendFile.js:18:16:18:32 | req.param("file") | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/TaintedPath/tainted-sendFile.js:18:16:18:32 | req.param("file") | XssThroughDom | notASinkReason | FileSystemAccess | string |
+| autogenerated/TaintedPath/tainted-sendFile.js:18:16:18:32 | req.param("file") | XssThroughDom | sinkLabel | NotASink | string |
 | autogenerated/TaintedPath/tainted-sendFile.js:18:35:18:60 | { root: ... dir") } | NosqlInjection | hasFlowFromSource | false | boolean |
 | autogenerated/TaintedPath/tainted-sendFile.js:18:35:18:60 | { root: ... dir") } | NosqlInjection | isConstantExpression | false | boolean |
 | autogenerated/TaintedPath/tainted-sendFile.js:18:35:18:60 | { root: ... dir") } | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
@@ -2287,6 +2532,11 @@ endpoints
 | autogenerated/TaintedPath/tainted-sendFile.js:18:35:18:60 | { root: ... dir") } | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
 | autogenerated/TaintedPath/tainted-sendFile.js:18:35:18:60 | { root: ... dir") } | Xss | notASinkReason | FileSystemAccess | string |
 | autogenerated/TaintedPath/tainted-sendFile.js:18:35:18:60 | { root: ... dir") } | Xss | sinkLabel | NotASink | string |
+| autogenerated/TaintedPath/tainted-sendFile.js:18:35:18:60 | { root: ... dir") } | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/TaintedPath/tainted-sendFile.js:18:35:18:60 | { root: ... dir") } | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/TaintedPath/tainted-sendFile.js:18:35:18:60 | { root: ... dir") } | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/TaintedPath/tainted-sendFile.js:18:35:18:60 | { root: ... dir") } | XssThroughDom | notASinkReason | FileSystemAccess | string |
+| autogenerated/TaintedPath/tainted-sendFile.js:18:35:18:60 | { root: ... dir") } | XssThroughDom | sinkLabel | NotASink | string |
 | autogenerated/TaintedPath/tainted-sendFile.js:18:43:18:58 | req.param("dir") | TaintedPath | hasFlowFromSource | true | boolean |
 | autogenerated/TaintedPath/tainted-sendFile.js:18:43:18:58 | req.param("dir") | TaintedPath | isConstantExpression | false | boolean |
 | autogenerated/TaintedPath/tainted-sendFile.js:18:43:18:58 | req.param("dir") | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
@@ -2335,6 +2585,11 @@ endpoints
 | autogenerated/TaintedPath/tainted-string-steps.js:7:33:7:33 | i | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
 | autogenerated/TaintedPath/tainted-string-steps.js:7:33:7:33 | i | Xss | notASinkReason | BuiltinCallName | string |
 | autogenerated/TaintedPath/tainted-string-steps.js:7:33:7:33 | i | Xss | sinkLabel | NotASink | string |
+| autogenerated/TaintedPath/tainted-string-steps.js:7:33:7:33 | i | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/TaintedPath/tainted-string-steps.js:7:33:7:33 | i | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/TaintedPath/tainted-string-steps.js:7:33:7:33 | i | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/TaintedPath/tainted-string-steps.js:7:33:7:33 | i | XssThroughDom | notASinkReason | BuiltinCallName | string |
+| autogenerated/TaintedPath/tainted-string-steps.js:7:33:7:33 | i | XssThroughDom | sinkLabel | NotASink | string |
 | autogenerated/TaintedPath/tainted-string-steps.js:7:36:7:36 | j | NosqlInjection | hasFlowFromSource | false | boolean |
 | autogenerated/TaintedPath/tainted-string-steps.js:7:36:7:36 | j | NosqlInjection | isConstantExpression | false | boolean |
 | autogenerated/TaintedPath/tainted-string-steps.js:7:36:7:36 | j | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
@@ -2355,6 +2610,11 @@ endpoints
 | autogenerated/TaintedPath/tainted-string-steps.js:7:36:7:36 | j | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
 | autogenerated/TaintedPath/tainted-string-steps.js:7:36:7:36 | j | Xss | notASinkReason | BuiltinCallName | string |
 | autogenerated/TaintedPath/tainted-string-steps.js:7:36:7:36 | j | Xss | sinkLabel | NotASink | string |
+| autogenerated/TaintedPath/tainted-string-steps.js:7:36:7:36 | j | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/TaintedPath/tainted-string-steps.js:7:36:7:36 | j | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/TaintedPath/tainted-string-steps.js:7:36:7:36 | j | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/TaintedPath/tainted-string-steps.js:7:36:7:36 | j | XssThroughDom | notASinkReason | BuiltinCallName | string |
+| autogenerated/TaintedPath/tainted-string-steps.js:7:36:7:36 | j | XssThroughDom | sinkLabel | NotASink | string |
 | autogenerated/TaintedPath/tainted-string-steps.js:8:18:8:34 | path.substring(4) | TaintedPath | hasFlowFromSource | true | boolean |
 | autogenerated/TaintedPath/tainted-string-steps.js:8:18:8:34 | path.substring(4) | TaintedPath | isConstantExpression | false | boolean |
 | autogenerated/TaintedPath/tainted-string-steps.js:8:18:8:34 | path.substring(4) | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
@@ -2383,6 +2643,11 @@ endpoints
 | autogenerated/TaintedPath/tainted-string-steps.js:9:36:9:36 | i | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
 | autogenerated/TaintedPath/tainted-string-steps.js:9:36:9:36 | i | Xss | notASinkReason | BuiltinCallName | string |
 | autogenerated/TaintedPath/tainted-string-steps.js:9:36:9:36 | i | Xss | sinkLabel | NotASink | string |
+| autogenerated/TaintedPath/tainted-string-steps.js:9:36:9:36 | i | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/TaintedPath/tainted-string-steps.js:9:36:9:36 | i | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/TaintedPath/tainted-string-steps.js:9:36:9:36 | i | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/TaintedPath/tainted-string-steps.js:9:36:9:36 | i | XssThroughDom | notASinkReason | BuiltinCallName | string |
+| autogenerated/TaintedPath/tainted-string-steps.js:9:36:9:36 | i | XssThroughDom | sinkLabel | NotASink | string |
 | autogenerated/TaintedPath/tainted-string-steps.js:10:18:10:31 | path.substr(4) | TaintedPath | hasFlowFromSource | true | boolean |
 | autogenerated/TaintedPath/tainted-string-steps.js:10:18:10:31 | path.substr(4) | TaintedPath | isConstantExpression | false | boolean |
 | autogenerated/TaintedPath/tainted-string-steps.js:10:18:10:31 | path.substr(4) | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
@@ -2679,6 +2944,11 @@ endpoints
 | autogenerated/Xss/DomBasedXss/jquery.js:5:13:5:19 | tainted | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
 | autogenerated/Xss/DomBasedXss/jquery.js:5:13:5:19 | tainted | Xss | notASinkReason | JQueryArgument | string |
 | autogenerated/Xss/DomBasedXss/jquery.js:5:13:5:19 | tainted | Xss | sinkLabel | NotASink | string |
+| autogenerated/Xss/DomBasedXss/jquery.js:5:13:5:19 | tainted | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/DomBasedXss/jquery.js:5:13:5:19 | tainted | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/jquery.js:5:13:5:19 | tainted | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/jquery.js:5:13:5:19 | tainted | XssThroughDom | notASinkReason | JQueryArgument | string |
+| autogenerated/Xss/DomBasedXss/jquery.js:5:13:5:19 | tainted | XssThroughDom | sinkLabel | NotASink | string |
 | autogenerated/Xss/DomBasedXss/jquery.js:6:5:6:17 | "." + tainted | NosqlInjection | hasFlowFromSource | true | boolean |
 | autogenerated/Xss/DomBasedXss/jquery.js:6:5:6:17 | "." + tainted | NosqlInjection | isConstantExpression | false | boolean |
 | autogenerated/Xss/DomBasedXss/jquery.js:6:5:6:17 | "." + tainted | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
@@ -2699,6 +2969,11 @@ endpoints
 | autogenerated/Xss/DomBasedXss/jquery.js:6:5:6:17 | "." + tainted | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
 | autogenerated/Xss/DomBasedXss/jquery.js:6:5:6:17 | "." + tainted | Xss | notASinkReason | JQueryArgument | string |
 | autogenerated/Xss/DomBasedXss/jquery.js:6:5:6:17 | "." + tainted | Xss | sinkLabel | NotASink | string |
+| autogenerated/Xss/DomBasedXss/jquery.js:6:5:6:17 | "." + tainted | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/DomBasedXss/jquery.js:6:5:6:17 | "." + tainted | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/jquery.js:6:5:6:17 | "." + tainted | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/jquery.js:6:5:6:17 | "." + tainted | XssThroughDom | notASinkReason | JQueryArgument | string |
+| autogenerated/Xss/DomBasedXss/jquery.js:6:5:6:17 | "." + tainted | XssThroughDom | sinkLabel | NotASink | string |
 | autogenerated/Xss/DomBasedXss/jquery.js:7:5:7:34 | "<div i ... + "\\">" | Xss | hasFlowFromSource | true | boolean |
 | autogenerated/Xss/DomBasedXss/jquery.js:7:5:7:34 | "<div i ... + "\\">" | Xss | isConstantExpression | false | boolean |
 | autogenerated/Xss/DomBasedXss/jquery.js:7:5:7:34 | "<div i ... + "\\">" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
@@ -2755,6 +3030,12 @@ endpoints
 | autogenerated/Xss/DomBasedXss/jwt.js:4:8:4:17 | loginUrl() | Xss | notASinkReason | ClientRequest | string |
 | autogenerated/Xss/DomBasedXss/jwt.js:4:8:4:17 | loginUrl() | Xss | notASinkReason | JQueryArgument | string |
 | autogenerated/Xss/DomBasedXss/jwt.js:4:8:4:17 | loginUrl() | Xss | sinkLabel | NotASink | string |
+| autogenerated/Xss/DomBasedXss/jwt.js:4:8:4:17 | loginUrl() | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/DomBasedXss/jwt.js:4:8:4:17 | loginUrl() | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/jwt.js:4:8:4:17 | loginUrl() | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/jwt.js:4:8:4:17 | loginUrl() | XssThroughDom | notASinkReason | ClientRequest | string |
+| autogenerated/Xss/DomBasedXss/jwt.js:4:8:4:17 | loginUrl() | XssThroughDom | notASinkReason | JQueryArgument | string |
+| autogenerated/Xss/DomBasedXss/jwt.js:4:8:4:17 | loginUrl() | XssThroughDom | sinkLabel | NotASink | string |
 | autogenerated/Xss/DomBasedXss/jwt.js:4:20:4:32 | {data: "foo"} | NosqlInjection | hasFlowFromSource | false | boolean |
 | autogenerated/Xss/DomBasedXss/jwt.js:4:20:4:32 | {data: "foo"} | NosqlInjection | isConstantExpression | false | boolean |
 | autogenerated/Xss/DomBasedXss/jwt.js:4:20:4:32 | {data: "foo"} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
@@ -2779,6 +3060,12 @@ endpoints
 | autogenerated/Xss/DomBasedXss/jwt.js:4:20:4:32 | {data: "foo"} | Xss | notASinkReason | ClientRequest | string |
 | autogenerated/Xss/DomBasedXss/jwt.js:4:20:4:32 | {data: "foo"} | Xss | notASinkReason | JQueryArgument | string |
 | autogenerated/Xss/DomBasedXss/jwt.js:4:20:4:32 | {data: "foo"} | Xss | sinkLabel | NotASink | string |
+| autogenerated/Xss/DomBasedXss/jwt.js:4:20:4:32 | {data: "foo"} | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/DomBasedXss/jwt.js:4:20:4:32 | {data: "foo"} | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/jwt.js:4:20:4:32 | {data: "foo"} | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/jwt.js:4:20:4:32 | {data: "foo"} | XssThroughDom | notASinkReason | ClientRequest | string |
+| autogenerated/Xss/DomBasedXss/jwt.js:4:20:4:32 | {data: "foo"} | XssThroughDom | notASinkReason | JQueryArgument | string |
+| autogenerated/Xss/DomBasedXss/jwt.js:4:20:4:32 | {data: "foo"} | XssThroughDom | sinkLabel | NotASink | string |
 | autogenerated/Xss/DomBasedXss/jwt.js:4:35:7:1 | (data,  ... ENCY]\\n} | NosqlInjection | hasFlowFromSource | false | boolean |
 | autogenerated/Xss/DomBasedXss/jwt.js:4:35:7:1 | (data,  ... ENCY]\\n} | NosqlInjection | isConstantExpression | false | boolean |
 | autogenerated/Xss/DomBasedXss/jwt.js:4:35:7:1 | (data,  ... ENCY]\\n} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
@@ -2803,6 +3090,12 @@ endpoints
 | autogenerated/Xss/DomBasedXss/jwt.js:4:35:7:1 | (data,  ... ENCY]\\n} | Xss | notASinkReason | ClientRequest | string |
 | autogenerated/Xss/DomBasedXss/jwt.js:4:35:7:1 | (data,  ... ENCY]\\n} | Xss | notASinkReason | JQueryArgument | string |
 | autogenerated/Xss/DomBasedXss/jwt.js:4:35:7:1 | (data,  ... ENCY]\\n} | Xss | sinkLabel | NotASink | string |
+| autogenerated/Xss/DomBasedXss/jwt.js:4:35:7:1 | (data,  ... ENCY]\\n} | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/DomBasedXss/jwt.js:4:35:7:1 | (data,  ... ENCY]\\n} | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/jwt.js:4:35:7:1 | (data,  ... ENCY]\\n} | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/jwt.js:4:35:7:1 | (data,  ... ENCY]\\n} | XssThroughDom | notASinkReason | ClientRequest | string |
+| autogenerated/Xss/DomBasedXss/jwt.js:4:35:7:1 | (data,  ... ENCY]\\n} | XssThroughDom | notASinkReason | JQueryArgument | string |
+| autogenerated/Xss/DomBasedXss/jwt.js:4:35:7:1 | (data,  ... ENCY]\\n} | XssThroughDom | sinkLabel | NotASink | string |
 | autogenerated/Xss/DomBasedXss/jwt.js:6:14:6:20 | decoded | Xss | hasFlowFromSource | false | boolean |
 | autogenerated/Xss/DomBasedXss/jwt.js:6:14:6:20 | decoded | Xss | isConstantExpression | false | boolean |
 | autogenerated/Xss/DomBasedXss/jwt.js:6:14:6:20 | decoded | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
@@ -2859,6 +3152,11 @@ endpoints
 | autogenerated/Xss/DomBasedXss/optionalSanitizer.js:34:28:34:35 | tainted2 | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
 | autogenerated/Xss/DomBasedXss/optionalSanitizer.js:34:28:34:35 | tainted2 | Xss | notASinkReason | DOM | string |
 | autogenerated/Xss/DomBasedXss/optionalSanitizer.js:34:28:34:35 | tainted2 | Xss | sinkLabel | NotASink | string |
+| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:34:28:34:35 | tainted2 | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:34:28:34:35 | tainted2 | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:34:28:34:35 | tainted2 | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:34:28:34:35 | tainted2 | XssThroughDom | notASinkReason | DOM | string |
+| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:34:28:34:35 | tainted2 | XssThroughDom | sinkLabel | NotASink | string |
 | autogenerated/Xss/DomBasedXss/optionalSanitizer.js:36:18:36:25 | tainted2 | Xss | hasFlowFromSource | true | boolean |
 | autogenerated/Xss/DomBasedXss/optionalSanitizer.js:36:18:36:25 | tainted2 | Xss | isConstantExpression | false | boolean |
 | autogenerated/Xss/DomBasedXss/optionalSanitizer.js:36:18:36:25 | tainted2 | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
@@ -2887,6 +3185,11 @@ endpoints
 | autogenerated/Xss/DomBasedXss/optionalSanitizer.js:41:28:41:35 | tainted3 | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
 | autogenerated/Xss/DomBasedXss/optionalSanitizer.js:41:28:41:35 | tainted3 | Xss | notASinkReason | DOM | string |
 | autogenerated/Xss/DomBasedXss/optionalSanitizer.js:41:28:41:35 | tainted3 | Xss | sinkLabel | NotASink | string |
+| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:41:28:41:35 | tainted3 | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:41:28:41:35 | tainted3 | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:41:28:41:35 | tainted3 | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:41:28:41:35 | tainted3 | XssThroughDom | notASinkReason | DOM | string |
+| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:41:28:41:35 | tainted3 | XssThroughDom | sinkLabel | NotASink | string |
 | autogenerated/Xss/DomBasedXss/optionalSanitizer.js:43:18:43:25 | tainted3 | Xss | hasFlowFromSource | true | boolean |
 | autogenerated/Xss/DomBasedXss/optionalSanitizer.js:43:18:43:25 | tainted3 | Xss | isConstantExpression | false | boolean |
 | autogenerated/Xss/DomBasedXss/optionalSanitizer.js:43:18:43:25 | tainted3 | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
@@ -2915,6 +3218,11 @@ endpoints
 | autogenerated/Xss/DomBasedXss/optionalSanitizer.js:45:41:45:46 | target | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
 | autogenerated/Xss/DomBasedXss/optionalSanitizer.js:45:41:45:46 | target | Xss | notASinkReason | DOM | string |
 | autogenerated/Xss/DomBasedXss/optionalSanitizer.js:45:41:45:46 | target | Xss | sinkLabel | NotASink | string |
+| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:45:41:45:46 | target | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:45:41:45:46 | target | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:45:41:45:46 | target | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:45:41:45:46 | target | XssThroughDom | notASinkReason | DOM | string |
+| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:45:41:45:46 | target | XssThroughDom | sinkLabel | NotASink | string |
 | autogenerated/Xss/DomBasedXss/react-native.js:8:18:8:24 | tainted | Xss | hasFlowFromSource | true | boolean |
 | autogenerated/Xss/DomBasedXss/react-native.js:8:18:8:24 | tainted | Xss | isConstantExpression | false | boolean |
 | autogenerated/Xss/DomBasedXss/react-native.js:8:18:8:24 | tainted | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
@@ -2979,6 +3287,11 @@ endpoints
 | autogenerated/Xss/DomBasedXss/sanitiser.js:22:18:22:24 | tainted | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
 | autogenerated/Xss/DomBasedXss/sanitiser.js:22:18:22:24 | tainted | Xss | notASinkReason | StringRegExpTest | string |
 | autogenerated/Xss/DomBasedXss/sanitiser.js:22:18:22:24 | tainted | Xss | sinkLabel | NotASink | string |
+| autogenerated/Xss/DomBasedXss/sanitiser.js:22:18:22:24 | tainted | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/DomBasedXss/sanitiser.js:22:18:22:24 | tainted | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/sanitiser.js:22:18:22:24 | tainted | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/sanitiser.js:22:18:22:24 | tainted | XssThroughDom | notASinkReason | StringRegExpTest | string |
+| autogenerated/Xss/DomBasedXss/sanitiser.js:22:18:22:24 | tainted | XssThroughDom | sinkLabel | NotASink | string |
 | autogenerated/Xss/DomBasedXss/sanitiser.js:23:21:23:44 | '<b>' + ...  '</b>' | Xss | hasFlowFromSource | true | boolean |
 | autogenerated/Xss/DomBasedXss/sanitiser.js:23:21:23:44 | '<b>' + ...  '</b>' | Xss | isConstantExpression | false | boolean |
 | autogenerated/Xss/DomBasedXss/sanitiser.js:23:21:23:44 | '<b>' + ...  '</b>' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
@@ -3007,6 +3320,11 @@ endpoints
 | autogenerated/Xss/DomBasedXss/sanitiser.js:27:19:27:25 | tainted | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
 | autogenerated/Xss/DomBasedXss/sanitiser.js:27:19:27:25 | tainted | Xss | notASinkReason | StringRegExpTest | string |
 | autogenerated/Xss/DomBasedXss/sanitiser.js:27:19:27:25 | tainted | Xss | sinkLabel | NotASink | string |
+| autogenerated/Xss/DomBasedXss/sanitiser.js:27:19:27:25 | tainted | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/DomBasedXss/sanitiser.js:27:19:27:25 | tainted | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/sanitiser.js:27:19:27:25 | tainted | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/sanitiser.js:27:19:27:25 | tainted | XssThroughDom | notASinkReason | StringRegExpTest | string |
+| autogenerated/Xss/DomBasedXss/sanitiser.js:27:19:27:25 | tainted | XssThroughDom | sinkLabel | NotASink | string |
 | autogenerated/Xss/DomBasedXss/sanitiser.js:28:21:28:44 | '<b>' + ...  '</b>' | Xss | hasFlowFromSource | false | boolean |
 | autogenerated/Xss/DomBasedXss/sanitiser.js:28:21:28:44 | '<b>' + ...  '</b>' | Xss | isConstantExpression | false | boolean |
 | autogenerated/Xss/DomBasedXss/sanitiser.js:28:21:28:44 | '<b>' + ...  '</b>' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
@@ -3035,6 +3353,11 @@ endpoints
 | autogenerated/Xss/DomBasedXss/sanitiser.js:32:18:32:24 | tainted | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
 | autogenerated/Xss/DomBasedXss/sanitiser.js:32:18:32:24 | tainted | Xss | notASinkReason | StringRegExpTest | string |
 | autogenerated/Xss/DomBasedXss/sanitiser.js:32:18:32:24 | tainted | Xss | sinkLabel | NotASink | string |
+| autogenerated/Xss/DomBasedXss/sanitiser.js:32:18:32:24 | tainted | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/DomBasedXss/sanitiser.js:32:18:32:24 | tainted | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/sanitiser.js:32:18:32:24 | tainted | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/sanitiser.js:32:18:32:24 | tainted | XssThroughDom | notASinkReason | StringRegExpTest | string |
+| autogenerated/Xss/DomBasedXss/sanitiser.js:32:18:32:24 | tainted | XssThroughDom | sinkLabel | NotASink | string |
 | autogenerated/Xss/DomBasedXss/sanitiser.js:33:21:33:44 | '<b>' + ...  '</b>' | Xss | hasFlowFromSource | true | boolean |
 | autogenerated/Xss/DomBasedXss/sanitiser.js:33:21:33:44 | '<b>' + ...  '</b>' | Xss | isConstantExpression | false | boolean |
 | autogenerated/Xss/DomBasedXss/sanitiser.js:33:21:33:44 | '<b>' + ...  '</b>' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
@@ -3083,6 +3406,11 @@ endpoints
 | autogenerated/Xss/DomBasedXss/stored-xss.js:2:39:2:62 | documen ... .search | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
 | autogenerated/Xss/DomBasedXss/stored-xss.js:2:39:2:62 | documen ... .search | Xss | notASinkReason | ReceiverStorage | string |
 | autogenerated/Xss/DomBasedXss/stored-xss.js:2:39:2:62 | documen ... .search | Xss | sinkLabel | NotASink | string |
+| autogenerated/Xss/DomBasedXss/stored-xss.js:2:39:2:62 | documen ... .search | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/DomBasedXss/stored-xss.js:2:39:2:62 | documen ... .search | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/stored-xss.js:2:39:2:62 | documen ... .search | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/stored-xss.js:2:39:2:62 | documen ... .search | XssThroughDom | notASinkReason | ReceiverStorage | string |
+| autogenerated/Xss/DomBasedXss/stored-xss.js:2:39:2:62 | documen ... .search | XssThroughDom | sinkLabel | NotASink | string |
 | autogenerated/Xss/DomBasedXss/stored-xss.js:3:35:3:58 | documen ... .search | NosqlInjection | hasFlowFromSource | true | boolean |
 | autogenerated/Xss/DomBasedXss/stored-xss.js:3:35:3:58 | documen ... .search | NosqlInjection | isConstantExpression | false | boolean |
 | autogenerated/Xss/DomBasedXss/stored-xss.js:3:35:3:58 | documen ... .search | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
@@ -3103,6 +3431,11 @@ endpoints
 | autogenerated/Xss/DomBasedXss/stored-xss.js:3:35:3:58 | documen ... .search | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
 | autogenerated/Xss/DomBasedXss/stored-xss.js:3:35:3:58 | documen ... .search | Xss | notASinkReason | ReceiverStorage | string |
 | autogenerated/Xss/DomBasedXss/stored-xss.js:3:35:3:58 | documen ... .search | Xss | sinkLabel | NotASink | string |
+| autogenerated/Xss/DomBasedXss/stored-xss.js:3:35:3:58 | documen ... .search | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/DomBasedXss/stored-xss.js:3:35:3:58 | documen ... .search | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/stored-xss.js:3:35:3:58 | documen ... .search | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/stored-xss.js:3:35:3:58 | documen ... .search | XssThroughDom | notASinkReason | ReceiverStorage | string |
+| autogenerated/Xss/DomBasedXss/stored-xss.js:3:35:3:58 | documen ... .search | XssThroughDom | sinkLabel | NotASink | string |
 | autogenerated/Xss/DomBasedXss/stored-xss.js:5:20:5:52 | session ... ssion') | Xss | hasFlowFromSource | true | boolean |
 | autogenerated/Xss/DomBasedXss/stored-xss.js:5:20:5:52 | session ... ssion') | Xss | isConstantExpression | false | boolean |
 | autogenerated/Xss/DomBasedXss/stored-xss.js:5:20:5:52 | session ... ssion') | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
@@ -3235,6 +3568,11 @@ endpoints
 | autogenerated/Xss/DomBasedXss/tst.js:8:70:8:113 | documen ... lt=")+8 | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
 | autogenerated/Xss/DomBasedXss/tst.js:8:70:8:113 | documen ... lt=")+8 | Xss | notASinkReason | BuiltinCallName | string |
 | autogenerated/Xss/DomBasedXss/tst.js:8:70:8:113 | documen ... lt=")+8 | Xss | sinkLabel | NotASink | string |
+| autogenerated/Xss/DomBasedXss/tst.js:8:70:8:113 | documen ... lt=")+8 | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:8:70:8:113 | documen ... lt=")+8 | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:8:70:8:113 | documen ... lt=")+8 | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:8:70:8:113 | documen ... lt=")+8 | XssThroughDom | notASinkReason | BuiltinCallName | string |
+| autogenerated/Xss/DomBasedXss/tst.js:8:70:8:113 | documen ... lt=")+8 | XssThroughDom | sinkLabel | NotASink | string |
 | autogenerated/Xss/DomBasedXss/tst.js:12:5:12:42 | '<div s ...  'px">' | Xss | hasFlowFromSource | true | boolean |
 | autogenerated/Xss/DomBasedXss/tst.js:12:5:12:42 | '<div s ...  'px">' | Xss | isConstantExpression | false | boolean |
 | autogenerated/Xss/DomBasedXss/tst.js:12:5:12:42 | '<div s ...  'px">' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
@@ -3287,6 +3625,11 @@ endpoints
 | autogenerated/Xss/DomBasedXss/tst.js:40:20:40:43 | documen ... .search | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
 | autogenerated/Xss/DomBasedXss/tst.js:40:20:40:43 | documen ... .search | Xss | notASinkReason | DOM | string |
 | autogenerated/Xss/DomBasedXss/tst.js:40:20:40:43 | documen ... .search | Xss | sinkLabel | NotASink | string |
+| autogenerated/Xss/DomBasedXss/tst.js:40:20:40:43 | documen ... .search | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:40:20:40:43 | documen ... .search | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:40:20:40:43 | documen ... .search | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:40:20:40:43 | documen ... .search | XssThroughDom | notASinkReason | DOM | string |
+| autogenerated/Xss/DomBasedXss/tst.js:40:20:40:43 | documen ... .search | XssThroughDom | sinkLabel | NotASink | string |
 | autogenerated/Xss/DomBasedXss/tst.js:46:16:46:45 | wrap(do ... search) | Xss | hasFlowFromSource | true | boolean |
 | autogenerated/Xss/DomBasedXss/tst.js:46:16:46:45 | wrap(do ... search) | Xss | isConstantExpression | false | boolean |
 | autogenerated/Xss/DomBasedXss/tst.js:46:16:46:45 | wrap(do ... search) | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
@@ -3375,6 +3718,12 @@ endpoints
 | autogenerated/Xss/DomBasedXss/tst.js:112:20:112:20 | v | Xss | notASinkReason | MembershipCandidateTest | string |
 | autogenerated/Xss/DomBasedXss/tst.js:112:20:112:20 | v | Xss | notASinkReason | StringRegExpTest | string |
 | autogenerated/Xss/DomBasedXss/tst.js:112:20:112:20 | v | Xss | sinkLabel | NotASink | string |
+| autogenerated/Xss/DomBasedXss/tst.js:112:20:112:20 | v | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:112:20:112:20 | v | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:112:20:112:20 | v | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:112:20:112:20 | v | XssThroughDom | notASinkReason | MembershipCandidateTest | string |
+| autogenerated/Xss/DomBasedXss/tst.js:112:20:112:20 | v | XssThroughDom | notASinkReason | StringRegExpTest | string |
+| autogenerated/Xss/DomBasedXss/tst.js:112:20:112:20 | v | XssThroughDom | sinkLabel | NotASink | string |
 | autogenerated/Xss/DomBasedXss/tst.js:114:20:114:20 | v | Xss | hasFlowFromSource | false | boolean |
 | autogenerated/Xss/DomBasedXss/tst.js:114:20:114:20 | v | Xss | isConstantExpression | false | boolean |
 | autogenerated/Xss/DomBasedXss/tst.js:114:20:114:20 | v | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
@@ -3407,6 +3756,12 @@ endpoints
 | autogenerated/Xss/DomBasedXss/tst.js:122:15:122:21 | /^\\d+$/ | Xss | notASinkReason | MembershipCandidateTest | string |
 | autogenerated/Xss/DomBasedXss/tst.js:122:15:122:21 | /^\\d+$/ | Xss | notASinkReason | StringRegExpTest | string |
 | autogenerated/Xss/DomBasedXss/tst.js:122:15:122:21 | /^\\d+$/ | Xss | sinkLabel | NotASink | string |
+| autogenerated/Xss/DomBasedXss/tst.js:122:15:122:21 | /^\\d+$/ | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:122:15:122:21 | /^\\d+$/ | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:122:15:122:21 | /^\\d+$/ | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:122:15:122:21 | /^\\d+$/ | XssThroughDom | notASinkReason | MembershipCandidateTest | string |
+| autogenerated/Xss/DomBasedXss/tst.js:122:15:122:21 | /^\\d+$/ | XssThroughDom | notASinkReason | StringRegExpTest | string |
+| autogenerated/Xss/DomBasedXss/tst.js:122:15:122:21 | /^\\d+$/ | XssThroughDom | sinkLabel | NotASink | string |
 | autogenerated/Xss/DomBasedXss/tst.js:124:22:124:22 | v | Xss | hasFlowFromSource | false | boolean |
 | autogenerated/Xss/DomBasedXss/tst.js:124:22:124:22 | v | Xss | isConstantExpression | false | boolean |
 | autogenerated/Xss/DomBasedXss/tst.js:124:22:124:22 | v | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
@@ -3435,6 +3790,11 @@ endpoints
 | autogenerated/Xss/DomBasedXss/tst.js:132:20:132:20 | v | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
 | autogenerated/Xss/DomBasedXss/tst.js:132:20:132:20 | v | Xss | notASinkReason | StringRegExpTest | string |
 | autogenerated/Xss/DomBasedXss/tst.js:132:20:132:20 | v | Xss | sinkLabel | NotASink | string |
+| autogenerated/Xss/DomBasedXss/tst.js:132:20:132:20 | v | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:132:20:132:20 | v | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:132:20:132:20 | v | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:132:20:132:20 | v | XssThroughDom | notASinkReason | StringRegExpTest | string |
+| autogenerated/Xss/DomBasedXss/tst.js:132:20:132:20 | v | XssThroughDom | sinkLabel | NotASink | string |
 | autogenerated/Xss/DomBasedXss/tst.js:136:18:136:18 | v | Xss | hasFlowFromSource | true | boolean |
 | autogenerated/Xss/DomBasedXss/tst.js:136:18:136:18 | v | Xss | isConstantExpression | false | boolean |
 | autogenerated/Xss/DomBasedXss/tst.js:136:18:136:18 | v | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
@@ -3463,6 +3823,12 @@ endpoints
 | autogenerated/Xss/DomBasedXss/tst.js:138:22:138:22 | v | Xss | notASinkReason | MembershipCandidateTest | string |
 | autogenerated/Xss/DomBasedXss/tst.js:138:22:138:22 | v | Xss | notASinkReason | StringRegExpTest | string |
 | autogenerated/Xss/DomBasedXss/tst.js:138:22:138:22 | v | Xss | sinkLabel | NotASink | string |
+| autogenerated/Xss/DomBasedXss/tst.js:138:22:138:22 | v | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:138:22:138:22 | v | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:138:22:138:22 | v | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:138:22:138:22 | v | XssThroughDom | notASinkReason | MembershipCandidateTest | string |
+| autogenerated/Xss/DomBasedXss/tst.js:138:22:138:22 | v | XssThroughDom | notASinkReason | StringRegExpTest | string |
+| autogenerated/Xss/DomBasedXss/tst.js:138:22:138:22 | v | XssThroughDom | sinkLabel | NotASink | string |
 | autogenerated/Xss/DomBasedXss/tst.js:142:18:142:18 | v | Xss | hasFlowFromSource | false | boolean |
 | autogenerated/Xss/DomBasedXss/tst.js:142:18:142:18 | v | Xss | isConstantExpression | false | boolean |
 | autogenerated/Xss/DomBasedXss/tst.js:142:18:142:18 | v | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
@@ -3675,6 +4041,11 @@ endpoints
 | autogenerated/Xss/DomBasedXss/tst.js:359:13:364:3 | functio ... OK.\\n\\t\\t} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
 | autogenerated/Xss/DomBasedXss/tst.js:359:13:364:3 | functio ... OK.\\n\\t\\t} | Xss | notASinkReason | JQueryArgument | string |
 | autogenerated/Xss/DomBasedXss/tst.js:359:13:364:3 | functio ... OK.\\n\\t\\t} | Xss | sinkLabel | NotASink | string |
+| autogenerated/Xss/DomBasedXss/tst.js:359:13:364:3 | functio ... OK.\\n\\t\\t} | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:359:13:364:3 | functio ... OK.\\n\\t\\t} | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:359:13:364:3 | functio ... OK.\\n\\t\\t} | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:359:13:364:3 | functio ... OK.\\n\\t\\t} | XssThroughDom | notASinkReason | JQueryArgument | string |
+| autogenerated/Xss/DomBasedXss/tst.js:359:13:364:3 | functio ... OK.\\n\\t\\t} | XssThroughDom | sinkLabel | NotASink | string |
 | autogenerated/Xss/DomBasedXss/tst.js:360:21:360:26 | target | Xss | hasFlowFromSource | true | boolean |
 | autogenerated/Xss/DomBasedXss/tst.js:360:21:360:26 | target | Xss | isConstantExpression | false | boolean |
 | autogenerated/Xss/DomBasedXss/tst.js:360:21:360:26 | target | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
@@ -3771,6 +4142,11 @@ endpoints
 | autogenerated/Xss/DomBasedXss/typeahead.js:2:38:4:3 | {\\n    p ... Url\\n  } | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
 | autogenerated/Xss/DomBasedXss/typeahead.js:2:38:4:3 | {\\n    p ... Url\\n  } | Xss | notASinkReason | ClientRequest | string |
 | autogenerated/Xss/DomBasedXss/typeahead.js:2:38:4:3 | {\\n    p ... Url\\n  } | Xss | sinkLabel | NotASink | string |
+| autogenerated/Xss/DomBasedXss/typeahead.js:2:38:4:3 | {\\n    p ... Url\\n  } | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/DomBasedXss/typeahead.js:2:38:4:3 | {\\n    p ... Url\\n  } | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/typeahead.js:2:38:4:3 | {\\n    p ... Url\\n  } | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/typeahead.js:2:38:4:3 | {\\n    p ... Url\\n  } | XssThroughDom | notASinkReason | ClientRequest | string |
+| autogenerated/Xss/DomBasedXss/typeahead.js:2:38:4:3 | {\\n    p ... Url\\n  } | XssThroughDom | sinkLabel | NotASink | string |
 | autogenerated/Xss/DomBasedXss/typeahead.js:3:15:3:23 | remoteUrl | NosqlInjection | hasFlowFromSource | false | boolean |
 | autogenerated/Xss/DomBasedXss/typeahead.js:3:15:3:23 | remoteUrl | NosqlInjection | isConstantExpression | false | boolean |
 | autogenerated/Xss/DomBasedXss/typeahead.js:3:15:3:23 | remoteUrl | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
@@ -3791,6 +4167,11 @@ endpoints
 | autogenerated/Xss/DomBasedXss/typeahead.js:3:15:3:23 | remoteUrl | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
 | autogenerated/Xss/DomBasedXss/typeahead.js:3:15:3:23 | remoteUrl | Xss | notASinkReason | ClientRequest | string |
 | autogenerated/Xss/DomBasedXss/typeahead.js:3:15:3:23 | remoteUrl | Xss | sinkLabel | NotASink | string |
+| autogenerated/Xss/DomBasedXss/typeahead.js:3:15:3:23 | remoteUrl | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/DomBasedXss/typeahead.js:3:15:3:23 | remoteUrl | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/typeahead.js:3:15:3:23 | remoteUrl | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/typeahead.js:3:15:3:23 | remoteUrl | XssThroughDom | notASinkReason | ClientRequest | string |
+| autogenerated/Xss/DomBasedXss/typeahead.js:3:15:3:23 | remoteUrl | XssThroughDom | sinkLabel | NotASink | string |
 | autogenerated/Xss/DomBasedXss/typeahead.js:6:29:6:30 | {} | NosqlInjection | hasFlowFromSource | false | boolean |
 | autogenerated/Xss/DomBasedXss/typeahead.js:6:29:6:30 | {} | NosqlInjection | isConstantExpression | false | boolean |
 | autogenerated/Xss/DomBasedXss/typeahead.js:6:29:6:30 | {} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
@@ -3811,6 +4192,11 @@ endpoints
 | autogenerated/Xss/DomBasedXss/typeahead.js:6:29:6:30 | {} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
 | autogenerated/Xss/DomBasedXss/typeahead.js:6:29:6:30 | {} | Xss | notASinkReason | JQueryArgument | string |
 | autogenerated/Xss/DomBasedXss/typeahead.js:6:29:6:30 | {} | Xss | sinkLabel | NotASink | string |
+| autogenerated/Xss/DomBasedXss/typeahead.js:6:29:6:30 | {} | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/DomBasedXss/typeahead.js:6:29:6:30 | {} | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/typeahead.js:6:29:6:30 | {} | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/typeahead.js:6:29:6:30 | {} | XssThroughDom | notASinkReason | JQueryArgument | string |
+| autogenerated/Xss/DomBasedXss/typeahead.js:6:29:6:30 | {} | XssThroughDom | sinkLabel | NotASink | string |
 | autogenerated/Xss/DomBasedXss/typeahead.js:6:33:13:3 | {\\n    s ...   }\\n  } | NosqlInjection | hasFlowFromSource | false | boolean |
 | autogenerated/Xss/DomBasedXss/typeahead.js:6:33:13:3 | {\\n    s ...   }\\n  } | NosqlInjection | isConstantExpression | false | boolean |
 | autogenerated/Xss/DomBasedXss/typeahead.js:6:33:13:3 | {\\n    s ...   }\\n  } | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
@@ -3831,6 +4217,11 @@ endpoints
 | autogenerated/Xss/DomBasedXss/typeahead.js:6:33:13:3 | {\\n    s ...   }\\n  } | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
 | autogenerated/Xss/DomBasedXss/typeahead.js:6:33:13:3 | {\\n    s ...   }\\n  } | Xss | notASinkReason | JQueryArgument | string |
 | autogenerated/Xss/DomBasedXss/typeahead.js:6:33:13:3 | {\\n    s ...   }\\n  } | Xss | sinkLabel | NotASink | string |
+| autogenerated/Xss/DomBasedXss/typeahead.js:6:33:13:3 | {\\n    s ...   }\\n  } | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/DomBasedXss/typeahead.js:6:33:13:3 | {\\n    s ...   }\\n  } | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/typeahead.js:6:33:13:3 | {\\n    s ...   }\\n  } | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/typeahead.js:6:33:13:3 | {\\n    s ...   }\\n  } | XssThroughDom | notASinkReason | JQueryArgument | string |
+| autogenerated/Xss/DomBasedXss/typeahead.js:6:33:13:3 | {\\n    s ...   }\\n  } | XssThroughDom | sinkLabel | NotASink | string |
 | autogenerated/Xss/DomBasedXss/typeahead.js:10:16:10:18 | loc | Xss | hasFlowFromSource | false | boolean |
 | autogenerated/Xss/DomBasedXss/typeahead.js:10:16:10:18 | loc | Xss | isConstantExpression | false | boolean |
 | autogenerated/Xss/DomBasedXss/typeahead.js:10:16:10:18 | loc | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
@@ -3855,6 +4246,11 @@ endpoints
 | autogenerated/Xss/DomBasedXss/typeahead.js:16:29:16:30 | {} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
 | autogenerated/Xss/DomBasedXss/typeahead.js:16:29:16:30 | {} | Xss | notASinkReason | JQueryArgument | string |
 | autogenerated/Xss/DomBasedXss/typeahead.js:16:29:16:30 | {} | Xss | sinkLabel | NotASink | string |
+| autogenerated/Xss/DomBasedXss/typeahead.js:16:29:16:30 | {} | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/DomBasedXss/typeahead.js:16:29:16:30 | {} | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/typeahead.js:16:29:16:30 | {} | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/typeahead.js:16:29:16:30 | {} | XssThroughDom | notASinkReason | JQueryArgument | string |
+| autogenerated/Xss/DomBasedXss/typeahead.js:16:29:16:30 | {} | XssThroughDom | sinkLabel | NotASink | string |
 | autogenerated/Xss/DomBasedXss/typeahead.js:17:5:28:5 | {\\n      ... }\\n    } | NosqlInjection | hasFlowFromSource | false | boolean |
 | autogenerated/Xss/DomBasedXss/typeahead.js:17:5:28:5 | {\\n      ... }\\n    } | NosqlInjection | isConstantExpression | false | boolean |
 | autogenerated/Xss/DomBasedXss/typeahead.js:17:5:28:5 | {\\n      ... }\\n    } | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
@@ -3875,6 +4271,11 @@ endpoints
 | autogenerated/Xss/DomBasedXss/typeahead.js:17:5:28:5 | {\\n      ... }\\n    } | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
 | autogenerated/Xss/DomBasedXss/typeahead.js:17:5:28:5 | {\\n      ... }\\n    } | Xss | notASinkReason | JQueryArgument | string |
 | autogenerated/Xss/DomBasedXss/typeahead.js:17:5:28:5 | {\\n      ... }\\n    } | Xss | sinkLabel | NotASink | string |
+| autogenerated/Xss/DomBasedXss/typeahead.js:17:5:28:5 | {\\n      ... }\\n    } | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/DomBasedXss/typeahead.js:17:5:28:5 | {\\n      ... }\\n    } | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/typeahead.js:17:5:28:5 | {\\n      ... }\\n    } | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/typeahead.js:17:5:28:5 | {\\n      ... }\\n    } | XssThroughDom | notASinkReason | JQueryArgument | string |
+| autogenerated/Xss/DomBasedXss/typeahead.js:17:5:28:5 | {\\n      ... }\\n    } | XssThroughDom | sinkLabel | NotASink | string |
 | autogenerated/Xss/DomBasedXss/typeahead.js:25:18:25:20 | val | Xss | hasFlowFromSource | true | boolean |
 | autogenerated/Xss/DomBasedXss/typeahead.js:25:18:25:20 | val | Xss | isConstantExpression | false | boolean |
 | autogenerated/Xss/DomBasedXss/typeahead.js:25:18:25:20 | val | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
@@ -3911,6 +4312,11 @@ endpoints
 | autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:6:19:6:25 | tainted | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
 | autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:6:19:6:25 | tainted | Xss | notASinkReason | ConstantReceiver | string |
 | autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:6:19:6:25 | tainted | Xss | sinkLabel | NotASink | string |
+| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:6:19:6:25 | tainted | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:6:19:6:25 | tainted | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:6:19:6:25 | tainted | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:6:19:6:25 | tainted | XssThroughDom | notASinkReason | ConstantReceiver | string |
+| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:6:19:6:25 | tainted | XssThroughDom | sinkLabel | NotASink | string |
 | autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:7:4:7:38 | ["<div> ... .join() | Xss | hasFlowFromSource | true | boolean |
 | autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:7:4:7:38 | ["<div> ... .join() | Xss | isConstantExpression | false | boolean |
 | autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:7:4:7:38 | ["<div> ... .join() | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
@@ -3947,6 +4353,11 @@ endpoints
 | autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:11:24:11:30 | tainted | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
 | autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:11:24:11:30 | tainted | Xss | notASinkReason | ConstantReceiver | string |
 | autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:11:24:11:30 | tainted | Xss | sinkLabel | NotASink | string |
+| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:11:24:11:30 | tainted | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:11:24:11:30 | tainted | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:11:24:11:30 | tainted | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:11:24:11:30 | tainted | XssThroughDom | notASinkReason | ConstantReceiver | string |
+| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:11:24:11:30 | tainted | XssThroughDom | sinkLabel | NotASink | string |
 | autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:12:4:12:41 | ["<div  ... .join() | Xss | hasFlowFromSource | true | boolean |
 | autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:12:4:12:41 | ["<div  ... .join() | Xss | isConstantExpression | false | boolean |
 | autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:12:4:12:41 | ["<div  ... .join() | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
@@ -3971,6 +4382,11 @@ endpoints
 | autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:18:32:18:58 | attrs.d ...  'left' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
 | autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:18:32:18:58 | attrs.d ...  'left' | Xss | notASinkReason | ConstantReceiver | string |
 | autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:18:32:18:58 | attrs.d ...  'left' | Xss | sinkLabel | NotASink | string |
+| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:18:32:18:58 | attrs.d ...  'left' | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:18:32:18:58 | attrs.d ...  'left' | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:18:32:18:58 | attrs.d ...  'left' | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:18:32:18:58 | attrs.d ...  'left' | XssThroughDom | notASinkReason | ConstantReceiver | string |
+| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:18:32:18:58 | attrs.d ...  'left' | XssThroughDom | sinkLabel | NotASink | string |
 | autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:18:80:18:86 | content | NosqlInjection | hasFlowFromSource | false | boolean |
 | autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:18:80:18:86 | content | NosqlInjection | isConstantExpression | false | boolean |
 | autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:18:80:18:86 | content | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
@@ -3991,6 +4407,11 @@ endpoints
 | autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:18:80:18:86 | content | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
 | autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:18:80:18:86 | content | Xss | notASinkReason | ConstantReceiver | string |
 | autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:18:80:18:86 | content | Xss | sinkLabel | NotASink | string |
+| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:18:80:18:86 | content | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:18:80:18:86 | content | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:18:80:18:86 | content | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:18:80:18:86 | content | XssThroughDom | notASinkReason | ConstantReceiver | string |
+| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:18:80:18:86 | content | XssThroughDom | sinkLabel | NotASink | string |
 | autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:20:4:20:47 | indirec ... .attrs) | Xss | hasFlowFromSource | true | boolean |
 | autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:20:4:20:47 | indirec ... .attrs) | Xss | isConstantExpression | false | boolean |
 | autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:20:4:20:47 | indirec ... .attrs) | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
@@ -4031,6 +4452,11 @@ endpoints
 | autogenerated/Xss/DomBasedXss/xmlRequest.js:1:19:16:1 | functio ...     }\\n} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
 | autogenerated/Xss/DomBasedXss/xmlRequest.js:1:19:16:1 | functio ...     }\\n} | Xss | notASinkReason | JQueryArgument | string |
 | autogenerated/Xss/DomBasedXss/xmlRequest.js:1:19:16:1 | functio ...     }\\n} | Xss | sinkLabel | NotASink | string |
+| autogenerated/Xss/DomBasedXss/xmlRequest.js:1:19:16:1 | functio ...     }\\n} | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/DomBasedXss/xmlRequest.js:1:19:16:1 | functio ...     }\\n} | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/xmlRequest.js:1:19:16:1 | functio ...     }\\n} | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/xmlRequest.js:1:19:16:1 | functio ...     }\\n} | XssThroughDom | notASinkReason | JQueryArgument | string |
+| autogenerated/Xss/DomBasedXss/xmlRequest.js:1:19:16:1 | functio ...     }\\n} | XssThroughDom | sinkLabel | NotASink | string |
 | autogenerated/Xss/DomBasedXss/xmlRequest.js:4:21:4:23 | url | NosqlInjection | hasFlowFromSource | false | boolean |
 | autogenerated/Xss/DomBasedXss/xmlRequest.js:4:21:4:23 | url | NosqlInjection | isConstantExpression | false | boolean |
 | autogenerated/Xss/DomBasedXss/xmlRequest.js:4:21:4:23 | url | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
@@ -4051,6 +4477,11 @@ endpoints
 | autogenerated/Xss/DomBasedXss/xmlRequest.js:4:21:4:23 | url | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
 | autogenerated/Xss/DomBasedXss/xmlRequest.js:4:21:4:23 | url | Xss | notASinkReason | ClientRequest | string |
 | autogenerated/Xss/DomBasedXss/xmlRequest.js:4:21:4:23 | url | Xss | sinkLabel | NotASink | string |
+| autogenerated/Xss/DomBasedXss/xmlRequest.js:4:21:4:23 | url | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/DomBasedXss/xmlRequest.js:4:21:4:23 | url | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/xmlRequest.js:4:21:4:23 | url | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/xmlRequest.js:4:21:4:23 | url | XssThroughDom | notASinkReason | ClientRequest | string |
+| autogenerated/Xss/DomBasedXss/xmlRequest.js:4:21:4:23 | url | XssThroughDom | sinkLabel | NotASink | string |
 | autogenerated/Xss/DomBasedXss/xmlRequest.js:9:28:9:39 | json.message | Xss | hasFlowFromSource | false | boolean |
 | autogenerated/Xss/DomBasedXss/xmlRequest.js:9:28:9:39 | json.message | Xss | isConstantExpression | false | boolean |
 | autogenerated/Xss/DomBasedXss/xmlRequest.js:9:28:9:39 | json.message | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
@@ -4075,6 +4506,11 @@ endpoints
 | autogenerated/Xss/DomBasedXss/xmlRequest.js:14:21:14:25 | error | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
 | autogenerated/Xss/DomBasedXss/xmlRequest.js:14:21:14:25 | error | Xss | notASinkReason | LoggerMethod | string |
 | autogenerated/Xss/DomBasedXss/xmlRequest.js:14:21:14:25 | error | Xss | sinkLabel | NotASink | string |
+| autogenerated/Xss/DomBasedXss/xmlRequest.js:14:21:14:25 | error | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/DomBasedXss/xmlRequest.js:14:21:14:25 | error | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/xmlRequest.js:14:21:14:25 | error | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/xmlRequest.js:14:21:14:25 | error | XssThroughDom | notASinkReason | LoggerMethod | string |
+| autogenerated/Xss/DomBasedXss/xmlRequest.js:14:21:14:25 | error | XssThroughDom | sinkLabel | NotASink | string |
 | autogenerated/Xss/ExceptionXss/exception-xss.js:11:18:11:18 | e | Xss | hasFlowFromSource | false | boolean |
 | autogenerated/Xss/ExceptionXss/exception-xss.js:11:18:11:18 | e | Xss | isConstantExpression | false | boolean |
 | autogenerated/Xss/ExceptionXss/exception-xss.js:11:18:11:18 | e | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
@@ -4155,6 +4591,11 @@ endpoints
 | autogenerated/Xss/ExceptionXss/exception-xss.js:125:45:125:68 | documen ... .search | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
 | autogenerated/Xss/ExceptionXss/exception-xss.js:125:45:125:68 | documen ... .search | Xss | notASinkReason | ReceiverStorage | string |
 | autogenerated/Xss/ExceptionXss/exception-xss.js:125:45:125:68 | documen ... .search | Xss | sinkLabel | NotASink | string |
+| autogenerated/Xss/ExceptionXss/exception-xss.js:125:45:125:68 | documen ... .search | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/ExceptionXss/exception-xss.js:125:45:125:68 | documen ... .search | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/Xss/ExceptionXss/exception-xss.js:125:45:125:68 | documen ... .search | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/ExceptionXss/exception-xss.js:125:45:125:68 | documen ... .search | XssThroughDom | notASinkReason | ReceiverStorage | string |
+| autogenerated/Xss/ExceptionXss/exception-xss.js:125:45:125:68 | documen ... .search | XssThroughDom | sinkLabel | NotASink | string |
 | autogenerated/Xss/ExceptionXss/exception-xss.js:130:18:130:18 | e | Xss | hasFlowFromSource | false | boolean |
 | autogenerated/Xss/ExceptionXss/exception-xss.js:130:18:130:18 | e | Xss | isConstantExpression | false | boolean |
 | autogenerated/Xss/ExceptionXss/exception-xss.js:130:18:130:18 | e | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
@@ -4215,6 +4656,11 @@ endpoints
 | autogenerated/Xss/ExceptionXss/exception-xss.js:204:10:204:12 | foo | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
 | autogenerated/Xss/ExceptionXss/exception-xss.js:204:10:204:12 | foo | Xss | notASinkReason | LodashUnderscoreArgument | string |
 | autogenerated/Xss/ExceptionXss/exception-xss.js:204:10:204:12 | foo | Xss | sinkLabel | NotASink | string |
+| autogenerated/Xss/ExceptionXss/exception-xss.js:204:10:204:12 | foo | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/ExceptionXss/exception-xss.js:204:10:204:12 | foo | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/Xss/ExceptionXss/exception-xss.js:204:10:204:12 | foo | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/ExceptionXss/exception-xss.js:204:10:204:12 | foo | XssThroughDom | notASinkReason | LodashUnderscoreArgument | string |
+| autogenerated/Xss/ExceptionXss/exception-xss.js:204:10:204:12 | foo | XssThroughDom | sinkLabel | NotASink | string |
 | autogenerated/Xss/ExceptionXss/exception-xss.js:204:15:204:17 | foo | NosqlInjection | hasFlowFromSource | true | boolean |
 | autogenerated/Xss/ExceptionXss/exception-xss.js:204:15:204:17 | foo | NosqlInjection | isConstantExpression | false | boolean |
 | autogenerated/Xss/ExceptionXss/exception-xss.js:204:15:204:17 | foo | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
@@ -4235,6 +4681,11 @@ endpoints
 | autogenerated/Xss/ExceptionXss/exception-xss.js:204:15:204:17 | foo | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
 | autogenerated/Xss/ExceptionXss/exception-xss.js:204:15:204:17 | foo | Xss | notASinkReason | LodashUnderscoreArgument | string |
 | autogenerated/Xss/ExceptionXss/exception-xss.js:204:15:204:17 | foo | Xss | sinkLabel | NotASink | string |
+| autogenerated/Xss/ExceptionXss/exception-xss.js:204:15:204:17 | foo | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/ExceptionXss/exception-xss.js:204:15:204:17 | foo | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/Xss/ExceptionXss/exception-xss.js:204:15:204:17 | foo | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/ExceptionXss/exception-xss.js:204:15:204:17 | foo | XssThroughDom | notASinkReason | LodashUnderscoreArgument | string |
+| autogenerated/Xss/ExceptionXss/exception-xss.js:204:15:204:17 | foo | XssThroughDom | sinkLabel | NotASink | string |
 | autogenerated/Xss/ExceptionXss/exception-xss.js:206:9:206:11 | foo | NosqlInjection | hasFlowFromSource | true | boolean |
 | autogenerated/Xss/ExceptionXss/exception-xss.js:206:9:206:11 | foo | NosqlInjection | isConstantExpression | false | boolean |
 | autogenerated/Xss/ExceptionXss/exception-xss.js:206:9:206:11 | foo | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
@@ -4255,6 +4706,11 @@ endpoints
 | autogenerated/Xss/ExceptionXss/exception-xss.js:206:9:206:11 | foo | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
 | autogenerated/Xss/ExceptionXss/exception-xss.js:206:9:206:11 | foo | Xss | notASinkReason | JQueryArgument | string |
 | autogenerated/Xss/ExceptionXss/exception-xss.js:206:9:206:11 | foo | Xss | sinkLabel | NotASink | string |
+| autogenerated/Xss/ExceptionXss/exception-xss.js:206:9:206:11 | foo | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/ExceptionXss/exception-xss.js:206:9:206:11 | foo | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/Xss/ExceptionXss/exception-xss.js:206:9:206:11 | foo | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/ExceptionXss/exception-xss.js:206:9:206:11 | foo | XssThroughDom | notASinkReason | JQueryArgument | string |
+| autogenerated/Xss/ExceptionXss/exception-xss.js:206:9:206:11 | foo | XssThroughDom | sinkLabel | NotASink | string |
 | autogenerated/Xss/ExceptionXss/exception-xss.js:208:14:208:16 | foo | NosqlInjection | hasFlowFromSource | true | boolean |
 | autogenerated/Xss/ExceptionXss/exception-xss.js:208:14:208:16 | foo | NosqlInjection | isConstantExpression | false | boolean |
 | autogenerated/Xss/ExceptionXss/exception-xss.js:208:14:208:16 | foo | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
@@ -4275,6 +4731,11 @@ endpoints
 | autogenerated/Xss/ExceptionXss/exception-xss.js:208:14:208:16 | foo | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
 | autogenerated/Xss/ExceptionXss/exception-xss.js:208:14:208:16 | foo | Xss | notASinkReason | StringRegExpTest | string |
 | autogenerated/Xss/ExceptionXss/exception-xss.js:208:14:208:16 | foo | Xss | sinkLabel | NotASink | string |
+| autogenerated/Xss/ExceptionXss/exception-xss.js:208:14:208:16 | foo | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/ExceptionXss/exception-xss.js:208:14:208:16 | foo | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/Xss/ExceptionXss/exception-xss.js:208:14:208:16 | foo | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/ExceptionXss/exception-xss.js:208:14:208:16 | foo | XssThroughDom | notASinkReason | StringRegExpTest | string |
+| autogenerated/Xss/ExceptionXss/exception-xss.js:208:14:208:16 | foo | XssThroughDom | sinkLabel | NotASink | string |
 | autogenerated/Xss/ExceptionXss/exception-xss.js:209:15:209:17 | foo | NosqlInjection | hasFlowFromSource | true | boolean |
 | autogenerated/Xss/ExceptionXss/exception-xss.js:209:15:209:17 | foo | NosqlInjection | isConstantExpression | false | boolean |
 | autogenerated/Xss/ExceptionXss/exception-xss.js:209:15:209:17 | foo | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
@@ -4295,6 +4756,11 @@ endpoints
 | autogenerated/Xss/ExceptionXss/exception-xss.js:209:15:209:17 | foo | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
 | autogenerated/Xss/ExceptionXss/exception-xss.js:209:15:209:17 | foo | Xss | notASinkReason | LoggerMethod | string |
 | autogenerated/Xss/ExceptionXss/exception-xss.js:209:15:209:17 | foo | Xss | sinkLabel | NotASink | string |
+| autogenerated/Xss/ExceptionXss/exception-xss.js:209:15:209:17 | foo | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/ExceptionXss/exception-xss.js:209:15:209:17 | foo | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/Xss/ExceptionXss/exception-xss.js:209:15:209:17 | foo | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/ExceptionXss/exception-xss.js:209:15:209:17 | foo | XssThroughDom | notASinkReason | LoggerMethod | string |
+| autogenerated/Xss/ExceptionXss/exception-xss.js:209:15:209:17 | foo | XssThroughDom | sinkLabel | NotASink | string |
 | autogenerated/Xss/ExceptionXss/exception-xss.js:210:12:210:14 | foo | NosqlInjection | hasFlowFromSource | true | boolean |
 | autogenerated/Xss/ExceptionXss/exception-xss.js:210:12:210:14 | foo | NosqlInjection | isConstantExpression | false | boolean |
 | autogenerated/Xss/ExceptionXss/exception-xss.js:210:12:210:14 | foo | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
@@ -4315,6 +4781,11 @@ endpoints
 | autogenerated/Xss/ExceptionXss/exception-xss.js:210:12:210:14 | foo | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
 | autogenerated/Xss/ExceptionXss/exception-xss.js:210:12:210:14 | foo | Xss | notASinkReason | LoggerMethod | string |
 | autogenerated/Xss/ExceptionXss/exception-xss.js:210:12:210:14 | foo | Xss | sinkLabel | NotASink | string |
+| autogenerated/Xss/ExceptionXss/exception-xss.js:210:12:210:14 | foo | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/ExceptionXss/exception-xss.js:210:12:210:14 | foo | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/Xss/ExceptionXss/exception-xss.js:210:12:210:14 | foo | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/ExceptionXss/exception-xss.js:210:12:210:14 | foo | XssThroughDom | notASinkReason | LoggerMethod | string |
+| autogenerated/Xss/ExceptionXss/exception-xss.js:210:12:210:14 | foo | XssThroughDom | sinkLabel | NotASink | string |
 | autogenerated/Xss/ExceptionXss/exception-xss.js:211:24:211:26 | foo | NosqlInjection | hasFlowFromSource | true | boolean |
 | autogenerated/Xss/ExceptionXss/exception-xss.js:211:24:211:26 | foo | NosqlInjection | isConstantExpression | false | boolean |
 | autogenerated/Xss/ExceptionXss/exception-xss.js:211:24:211:26 | foo | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
@@ -4335,6 +4806,11 @@ endpoints
 | autogenerated/Xss/ExceptionXss/exception-xss.js:211:24:211:26 | foo | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
 | autogenerated/Xss/ExceptionXss/exception-xss.js:211:24:211:26 | foo | Xss | notASinkReason | ReceiverStorage | string |
 | autogenerated/Xss/ExceptionXss/exception-xss.js:211:24:211:26 | foo | Xss | sinkLabel | NotASink | string |
+| autogenerated/Xss/ExceptionXss/exception-xss.js:211:24:211:26 | foo | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/ExceptionXss/exception-xss.js:211:24:211:26 | foo | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/Xss/ExceptionXss/exception-xss.js:211:24:211:26 | foo | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/ExceptionXss/exception-xss.js:211:24:211:26 | foo | XssThroughDom | notASinkReason | ReceiverStorage | string |
+| autogenerated/Xss/ExceptionXss/exception-xss.js:211:24:211:26 | foo | XssThroughDom | sinkLabel | NotASink | string |
 | autogenerated/Xss/ExceptionXss/exception-xss.js:213:18:213:18 | e | Xss | hasFlowFromSource | false | boolean |
 | autogenerated/Xss/ExceptionXss/exception-xss.js:213:18:213:18 | e | Xss | isConstantExpression | false | boolean |
 | autogenerated/Xss/ExceptionXss/exception-xss.js:213:18:213:18 | e | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
@@ -4359,6 +4835,11 @@ endpoints
 | autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:33:29:33:37 | lastIndex | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
 | autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:33:29:33:37 | lastIndex | Xss | notASinkReason | BuiltinCallName | string |
 | autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:33:29:33:37 | lastIndex | Xss | sinkLabel | NotASink | string |
+| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:33:29:33:37 | lastIndex | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:33:29:33:37 | lastIndex | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:33:29:33:37 | lastIndex | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:33:29:33:37 | lastIndex | XssThroughDom | notASinkReason | BuiltinCallName | string |
+| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:33:29:33:37 | lastIndex | XssThroughDom | sinkLabel | NotASink | string |
 | autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:33:40:33:44 | index | NosqlInjection | hasFlowFromSource | false | boolean |
 | autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:33:40:33:44 | index | NosqlInjection | isConstantExpression | false | boolean |
 | autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:33:40:33:44 | index | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
@@ -4379,6 +4860,11 @@ endpoints
 | autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:33:40:33:44 | index | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
 | autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:33:40:33:44 | index | Xss | notASinkReason | BuiltinCallName | string |
 | autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:33:40:33:44 | index | Xss | sinkLabel | NotASink | string |
+| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:33:40:33:44 | index | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:33:40:33:44 | index | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:33:40:33:44 | index | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:33:40:33:44 | index | XssThroughDom | notASinkReason | BuiltinCallName | string |
+| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:33:40:33:44 | index | XssThroughDom | sinkLabel | NotASink | string |
 | autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:41:28:41:36 | lastIndex | NosqlInjection | hasFlowFromSource | false | boolean |
 | autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:41:28:41:36 | lastIndex | NosqlInjection | isConstantExpression | false | boolean |
 | autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:41:28:41:36 | lastIndex | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
@@ -4399,6 +4885,11 @@ endpoints
 | autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:41:28:41:36 | lastIndex | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
 | autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:41:28:41:36 | lastIndex | Xss | notASinkReason | BuiltinCallName | string |
 | autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:41:28:41:36 | lastIndex | Xss | sinkLabel | NotASink | string |
+| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:41:28:41:36 | lastIndex | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:41:28:41:36 | lastIndex | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:41:28:41:36 | lastIndex | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:41:28:41:36 | lastIndex | XssThroughDom | notASinkReason | BuiltinCallName | string |
+| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:41:28:41:36 | lastIndex | XssThroughDom | sinkLabel | NotASink | string |
 | autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:41:39:41:43 | index | NosqlInjection | hasFlowFromSource | false | boolean |
 | autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:41:39:41:43 | index | NosqlInjection | isConstantExpression | false | boolean |
 | autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:41:39:41:43 | index | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
@@ -4419,6 +4910,11 @@ endpoints
 | autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:41:39:41:43 | index | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
 | autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:41:39:41:43 | index | Xss | notASinkReason | BuiltinCallName | string |
 | autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:41:39:41:43 | index | Xss | sinkLabel | NotASink | string |
+| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:41:39:41:43 | index | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:41:39:41:43 | index | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:41:39:41:43 | index | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:41:39:41:43 | index | XssThroughDom | notASinkReason | BuiltinCallName | string |
+| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:41:39:41:43 | index | XssThroughDom | sinkLabel | NotASink | string |
 | autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:77:35:77:35 | i | NosqlInjection | hasFlowFromSource | false | boolean |
 | autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:77:35:77:35 | i | NosqlInjection | isConstantExpression | false | boolean |
 | autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:77:35:77:35 | i | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
@@ -4439,6 +4935,11 @@ endpoints
 | autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:77:35:77:35 | i | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
 | autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:77:35:77:35 | i | Xss | notASinkReason | BuiltinCallName | string |
 | autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:77:35:77:35 | i | Xss | sinkLabel | NotASink | string |
+| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:77:35:77:35 | i | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:77:35:77:35 | i | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:77:35:77:35 | i | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:77:35:77:35 | i | XssThroughDom | notASinkReason | BuiltinCallName | string |
+| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:77:35:77:35 | i | XssThroughDom | sinkLabel | NotASink | string |
 | autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:105:34:105:34 | j | NosqlInjection | hasFlowFromSource | false | boolean |
 | autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:105:34:105:34 | j | NosqlInjection | isConstantExpression | false | boolean |
 | autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:105:34:105:34 | j | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
@@ -4459,6 +4960,11 @@ endpoints
 | autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:105:34:105:34 | j | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
 | autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:105:34:105:34 | j | Xss | notASinkReason | BuiltinCallName | string |
 | autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:105:34:105:34 | j | Xss | sinkLabel | NotASink | string |
+| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:105:34:105:34 | j | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:105:34:105:34 | j | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:105:34:105:34 | j | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:105:34:105:34 | j | XssThroughDom | notASinkReason | BuiltinCallName | string |
+| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:105:34:105:34 | j | XssThroughDom | sinkLabel | NotASink | string |
 | autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:105:37:105:37 | i | NosqlInjection | hasFlowFromSource | false | boolean |
 | autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:105:37:105:37 | i | NosqlInjection | isConstantExpression | false | boolean |
 | autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:105:37:105:37 | i | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
@@ -4479,6 +4985,11 @@ endpoints
 | autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:105:37:105:37 | i | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
 | autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:105:37:105:37 | i | Xss | notASinkReason | BuiltinCallName | string |
 | autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:105:37:105:37 | i | Xss | sinkLabel | NotASink | string |
+| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:105:37:105:37 | i | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:105:37:105:37 | i | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:105:37:105:37 | i | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:105:37:105:37 | i | XssThroughDom | notASinkReason | BuiltinCallName | string |
+| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:105:37:105:37 | i | XssThroughDom | sinkLabel | NotASink | string |
 | autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:19:16:19:36 | invalid ... emplate | TaintedPath | hasFlowFromSource | false | boolean |
 | autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:19:16:19:36 | invalid ... emplate | TaintedPath | isConstantExpression | false | boolean |
 | autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:19:16:19:36 | invalid ... emplate | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
@@ -4503,6 +5014,11 @@ endpoints
 | autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:55:23:55:25 | url | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
 | autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:55:23:55:25 | url | Xss | notASinkReason | StringRegExpTest | string |
 | autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:55:23:55:25 | url | Xss | sinkLabel | NotASink | string |
+| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:55:23:55:25 | url | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:55:23:55:25 | url | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:55:23:55:25 | url | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:55:23:55:25 | url | XssThroughDom | notASinkReason | StringRegExpTest | string |
+| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:55:23:55:25 | url | XssThroughDom | sinkLabel | NotASink | string |
 | autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:61:23:61:25 | str | NosqlInjection | hasFlowFromSource | true | boolean |
 | autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:61:23:61:25 | str | NosqlInjection | isConstantExpression | false | boolean |
 | autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:61:23:61:25 | str | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
@@ -4523,6 +5039,11 @@ endpoints
 | autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:61:23:61:25 | str | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
 | autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:61:23:61:25 | str | Xss | notASinkReason | StringRegExpTest | string |
 | autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:61:23:61:25 | str | Xss | sinkLabel | NotASink | string |
+| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:61:23:61:25 | str | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:61:23:61:25 | str | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:61:23:61:25 | str | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:61:23:61:25 | str | XssThroughDom | notASinkReason | StringRegExpTest | string |
+| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:61:23:61:25 | str | XssThroughDom | sinkLabel | NotASink | string |
 | autogenerated/Xss/ReflectedXss/formatting.js:5:43:5:46 | evil | NosqlInjection | hasFlowFromSource | true | boolean |
 | autogenerated/Xss/ReflectedXss/formatting.js:5:43:5:46 | evil | NosqlInjection | isConstantExpression | false | boolean |
 | autogenerated/Xss/ReflectedXss/formatting.js:5:43:5:46 | evil | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
@@ -4543,6 +5064,11 @@ endpoints
 | autogenerated/Xss/ReflectedXss/formatting.js:5:43:5:46 | evil | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
 | autogenerated/Xss/ReflectedXss/formatting.js:5:43:5:46 | evil | Xss | notASinkReason | LoggerMethod | string |
 | autogenerated/Xss/ReflectedXss/formatting.js:5:43:5:46 | evil | Xss | sinkLabel | NotASink | string |
+| autogenerated/Xss/ReflectedXss/formatting.js:5:43:5:46 | evil | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/ReflectedXss/formatting.js:5:43:5:46 | evil | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/Xss/ReflectedXss/formatting.js:5:43:5:46 | evil | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/ReflectedXss/formatting.js:5:43:5:46 | evil | XssThroughDom | notASinkReason | LoggerMethod | string |
+| autogenerated/Xss/ReflectedXss/formatting.js:5:43:5:46 | evil | XssThroughDom | sinkLabel | NotASink | string |
 | autogenerated/Xss/ReflectedXss/partial.js:22:37:22:48 | sendResponse | NosqlInjection | hasFlowFromSource | false | boolean |
 | autogenerated/Xss/ReflectedXss/partial.js:22:37:22:48 | sendResponse | NosqlInjection | isConstantExpression | false | boolean |
 | autogenerated/Xss/ReflectedXss/partial.js:22:37:22:48 | sendResponse | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
@@ -4563,6 +5089,11 @@ endpoints
 | autogenerated/Xss/ReflectedXss/partial.js:22:37:22:48 | sendResponse | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
 | autogenerated/Xss/ReflectedXss/partial.js:22:37:22:48 | sendResponse | Xss | notASinkReason | LodashUnderscoreArgument | string |
 | autogenerated/Xss/ReflectedXss/partial.js:22:37:22:48 | sendResponse | Xss | sinkLabel | NotASink | string |
+| autogenerated/Xss/ReflectedXss/partial.js:22:37:22:48 | sendResponse | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/ReflectedXss/partial.js:22:37:22:48 | sendResponse | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/Xss/ReflectedXss/partial.js:22:37:22:48 | sendResponse | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/ReflectedXss/partial.js:22:37:22:48 | sendResponse | XssThroughDom | notASinkReason | LodashUnderscoreArgument | string |
+| autogenerated/Xss/ReflectedXss/partial.js:22:37:22:48 | sendResponse | XssThroughDom | sinkLabel | NotASink | string |
 | autogenerated/Xss/ReflectedXss/partial.js:22:51:22:57 | req.url | NosqlInjection | hasFlowFromSource | true | boolean |
 | autogenerated/Xss/ReflectedXss/partial.js:22:51:22:57 | req.url | NosqlInjection | isConstantExpression | false | boolean |
 | autogenerated/Xss/ReflectedXss/partial.js:22:51:22:57 | req.url | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
@@ -4583,6 +5114,11 @@ endpoints
 | autogenerated/Xss/ReflectedXss/partial.js:22:51:22:57 | req.url | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
 | autogenerated/Xss/ReflectedXss/partial.js:22:51:22:57 | req.url | Xss | notASinkReason | LodashUnderscoreArgument | string |
 | autogenerated/Xss/ReflectedXss/partial.js:22:51:22:57 | req.url | Xss | sinkLabel | NotASink | string |
+| autogenerated/Xss/ReflectedXss/partial.js:22:51:22:57 | req.url | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/ReflectedXss/partial.js:22:51:22:57 | req.url | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/Xss/ReflectedXss/partial.js:22:51:22:57 | req.url | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/ReflectedXss/partial.js:22:51:22:57 | req.url | XssThroughDom | notASinkReason | LodashUnderscoreArgument | string |
+| autogenerated/Xss/ReflectedXss/partial.js:22:51:22:57 | req.url | XssThroughDom | sinkLabel | NotASink | string |
 | autogenerated/Xss/ReflectedXss/partial.js:31:33:31:44 | sendResponse | NosqlInjection | hasFlowFromSource | false | boolean |
 | autogenerated/Xss/ReflectedXss/partial.js:31:33:31:44 | sendResponse | NosqlInjection | isConstantExpression | false | boolean |
 | autogenerated/Xss/ReflectedXss/partial.js:31:33:31:44 | sendResponse | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
@@ -4603,6 +5139,11 @@ endpoints
 | autogenerated/Xss/ReflectedXss/partial.js:31:33:31:44 | sendResponse | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
 | autogenerated/Xss/ReflectedXss/partial.js:31:33:31:44 | sendResponse | Xss | notASinkReason | LodashUnderscoreArgument | string |
 | autogenerated/Xss/ReflectedXss/partial.js:31:33:31:44 | sendResponse | Xss | sinkLabel | NotASink | string |
+| autogenerated/Xss/ReflectedXss/partial.js:31:33:31:44 | sendResponse | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/ReflectedXss/partial.js:31:33:31:44 | sendResponse | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/Xss/ReflectedXss/partial.js:31:33:31:44 | sendResponse | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/ReflectedXss/partial.js:31:33:31:44 | sendResponse | XssThroughDom | notASinkReason | LodashUnderscoreArgument | string |
+| autogenerated/Xss/ReflectedXss/partial.js:31:33:31:44 | sendResponse | XssThroughDom | sinkLabel | NotASink | string |
 | autogenerated/Xss/ReflectedXss/partial.js:31:47:31:53 | req.url | NosqlInjection | hasFlowFromSource | true | boolean |
 | autogenerated/Xss/ReflectedXss/partial.js:31:47:31:53 | req.url | NosqlInjection | isConstantExpression | false | boolean |
 | autogenerated/Xss/ReflectedXss/partial.js:31:47:31:53 | req.url | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
@@ -4623,6 +5164,11 @@ endpoints
 | autogenerated/Xss/ReflectedXss/partial.js:31:47:31:53 | req.url | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
 | autogenerated/Xss/ReflectedXss/partial.js:31:47:31:53 | req.url | Xss | notASinkReason | LodashUnderscoreArgument | string |
 | autogenerated/Xss/ReflectedXss/partial.js:31:47:31:53 | req.url | Xss | sinkLabel | NotASink | string |
+| autogenerated/Xss/ReflectedXss/partial.js:31:47:31:53 | req.url | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/ReflectedXss/partial.js:31:47:31:53 | req.url | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/Xss/ReflectedXss/partial.js:31:47:31:53 | req.url | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/ReflectedXss/partial.js:31:47:31:53 | req.url | XssThroughDom | notASinkReason | LodashUnderscoreArgument | string |
+| autogenerated/Xss/ReflectedXss/partial.js:31:47:31:53 | req.url | XssThroughDom | sinkLabel | NotASink | string |
 | autogenerated/Xss/ReflectedXss/promises.js:5:44:5:57 | req.query.data | NosqlInjection | hasFlowFromSource | true | boolean |
 | autogenerated/Xss/ReflectedXss/promises.js:5:44:5:57 | req.query.data | NosqlInjection | isConstantExpression | false | boolean |
 | autogenerated/Xss/ReflectedXss/promises.js:5:44:5:57 | req.query.data | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
@@ -4643,6 +5189,11 @@ endpoints
 | autogenerated/Xss/ReflectedXss/promises.js:5:44:5:57 | req.query.data | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
 | autogenerated/Xss/ReflectedXss/promises.js:5:44:5:57 | req.query.data | Xss | notASinkReason | PromiseDefinition | string |
 | autogenerated/Xss/ReflectedXss/promises.js:5:44:5:57 | req.query.data | Xss | sinkLabel | NotASink | string |
+| autogenerated/Xss/ReflectedXss/promises.js:5:44:5:57 | req.query.data | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/ReflectedXss/promises.js:5:44:5:57 | req.query.data | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/Xss/ReflectedXss/promises.js:5:44:5:57 | req.query.data | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/ReflectedXss/promises.js:5:44:5:57 | req.query.data | XssThroughDom | notASinkReason | PromiseDefinition | string |
+| autogenerated/Xss/ReflectedXss/promises.js:5:44:5:57 | req.query.data | XssThroughDom | sinkLabel | NotASink | string |
 | autogenerated/Xss/ReflectedXss/promises.js:8:44:8:57 | req.query.data | NosqlInjection | hasFlowFromSource | true | boolean |
 | autogenerated/Xss/ReflectedXss/promises.js:8:44:8:57 | req.query.data | NosqlInjection | isConstantExpression | false | boolean |
 | autogenerated/Xss/ReflectedXss/promises.js:8:44:8:57 | req.query.data | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
@@ -4663,6 +5214,11 @@ endpoints
 | autogenerated/Xss/ReflectedXss/promises.js:8:44:8:57 | req.query.data | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
 | autogenerated/Xss/ReflectedXss/promises.js:8:44:8:57 | req.query.data | Xss | notASinkReason | PromiseDefinition | string |
 | autogenerated/Xss/ReflectedXss/promises.js:8:44:8:57 | req.query.data | Xss | sinkLabel | NotASink | string |
+| autogenerated/Xss/ReflectedXss/promises.js:8:44:8:57 | req.query.data | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/ReflectedXss/promises.js:8:44:8:57 | req.query.data | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/Xss/ReflectedXss/promises.js:8:44:8:57 | req.query.data | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/ReflectedXss/promises.js:8:44:8:57 | req.query.data | XssThroughDom | notASinkReason | PromiseDefinition | string |
+| autogenerated/Xss/ReflectedXss/promises.js:8:44:8:57 | req.query.data | XssThroughDom | sinkLabel | NotASink | string |
 | autogenerated/Xss/StoredXss/xss-through-filenames.js:7:26:9:5 | functio ... K\\n    } | NosqlInjection | hasFlowFromSource | false | boolean |
 | autogenerated/Xss/StoredXss/xss-through-filenames.js:7:26:9:5 | functio ... K\\n    } | NosqlInjection | isConstantExpression | false | boolean |
 | autogenerated/Xss/StoredXss/xss-through-filenames.js:7:26:9:5 | functio ... K\\n    } | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
@@ -4683,6 +5239,11 @@ endpoints
 | autogenerated/Xss/StoredXss/xss-through-filenames.js:7:26:9:5 | functio ... K\\n    } | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
 | autogenerated/Xss/StoredXss/xss-through-filenames.js:7:26:9:5 | functio ... K\\n    } | Xss | notASinkReason | FileSystemAccess | string |
 | autogenerated/Xss/StoredXss/xss-through-filenames.js:7:26:9:5 | functio ... K\\n    } | Xss | sinkLabel | NotASink | string |
+| autogenerated/Xss/StoredXss/xss-through-filenames.js:7:26:9:5 | functio ... K\\n    } | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/StoredXss/xss-through-filenames.js:7:26:9:5 | functio ... K\\n    } | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/Xss/StoredXss/xss-through-filenames.js:7:26:9:5 | functio ... K\\n    } | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/StoredXss/xss-through-filenames.js:7:26:9:5 | functio ... K\\n    } | XssThroughDom | notASinkReason | FileSystemAccess | string |
+| autogenerated/Xss/StoredXss/xss-through-filenames.js:7:26:9:5 | functio ... K\\n    } | XssThroughDom | sinkLabel | NotASink | string |
 | autogenerated/Xss/StoredXss/xss-through-filenames.js:19:21:19:24 | sort | NosqlInjection | hasFlowFromSource | false | boolean |
 | autogenerated/Xss/StoredXss/xss-through-filenames.js:19:21:19:24 | sort | NosqlInjection | isConstantExpression | false | boolean |
 | autogenerated/Xss/StoredXss/xss-through-filenames.js:19:21:19:24 | sort | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
@@ -4703,6 +5264,11 @@ endpoints
 | autogenerated/Xss/StoredXss/xss-through-filenames.js:19:21:19:24 | sort | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
 | autogenerated/Xss/StoredXss/xss-through-filenames.js:19:21:19:24 | sort | Xss | notASinkReason | BuiltinCallName | string |
 | autogenerated/Xss/StoredXss/xss-through-filenames.js:19:21:19:24 | sort | Xss | sinkLabel | NotASink | string |
+| autogenerated/Xss/StoredXss/xss-through-filenames.js:19:21:19:24 | sort | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/StoredXss/xss-through-filenames.js:19:21:19:24 | sort | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/Xss/StoredXss/xss-through-filenames.js:19:21:19:24 | sort | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/StoredXss/xss-through-filenames.js:19:21:19:24 | sort | XssThroughDom | notASinkReason | BuiltinCallName | string |
+| autogenerated/Xss/StoredXss/xss-through-filenames.js:19:21:19:24 | sort | XssThroughDom | sinkLabel | NotASink | string |
 | autogenerated/Xss/StoredXss/xss-through-filenames.js:19:35:21:9 | functio ...       } | NosqlInjection | hasFlowFromSource | false | boolean |
 | autogenerated/Xss/StoredXss/xss-through-filenames.js:19:35:21:9 | functio ...       } | NosqlInjection | isConstantExpression | false | boolean |
 | autogenerated/Xss/StoredXss/xss-through-filenames.js:19:35:21:9 | functio ...       } | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
@@ -4723,6 +5289,11 @@ endpoints
 | autogenerated/Xss/StoredXss/xss-through-filenames.js:19:35:21:9 | functio ...       } | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
 | autogenerated/Xss/StoredXss/xss-through-filenames.js:19:35:21:9 | functio ...       } | Xss | notASinkReason | BuiltinCallName | string |
 | autogenerated/Xss/StoredXss/xss-through-filenames.js:19:35:21:9 | functio ...       } | Xss | sinkLabel | NotASink | string |
+| autogenerated/Xss/StoredXss/xss-through-filenames.js:19:35:21:9 | functio ...       } | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/StoredXss/xss-through-filenames.js:19:35:21:9 | functio ...       } | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/Xss/StoredXss/xss-through-filenames.js:19:35:21:9 | functio ...       } | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/StoredXss/xss-through-filenames.js:19:35:21:9 | functio ...       } | XssThroughDom | notASinkReason | BuiltinCallName | string |
+| autogenerated/Xss/StoredXss/xss-through-filenames.js:19:35:21:9 | functio ...       } | XssThroughDom | sinkLabel | NotASink | string |
 | autogenerated/Xss/StoredXss/xss-through-filenames.js:25:26:39:5 | functio ... \\n\\n    } | NosqlInjection | hasFlowFromSource | false | boolean |
 | autogenerated/Xss/StoredXss/xss-through-filenames.js:25:26:39:5 | functio ... \\n\\n    } | NosqlInjection | isConstantExpression | false | boolean |
 | autogenerated/Xss/StoredXss/xss-through-filenames.js:25:26:39:5 | functio ... \\n\\n    } | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
@@ -4743,6 +5314,11 @@ endpoints
 | autogenerated/Xss/StoredXss/xss-through-filenames.js:25:26:39:5 | functio ... \\n\\n    } | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
 | autogenerated/Xss/StoredXss/xss-through-filenames.js:25:26:39:5 | functio ... \\n\\n    } | Xss | notASinkReason | FileSystemAccess | string |
 | autogenerated/Xss/StoredXss/xss-through-filenames.js:25:26:39:5 | functio ... \\n\\n    } | Xss | sinkLabel | NotASink | string |
+| autogenerated/Xss/StoredXss/xss-through-filenames.js:25:26:39:5 | functio ... \\n\\n    } | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/StoredXss/xss-through-filenames.js:25:26:39:5 | functio ... \\n\\n    } | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/Xss/StoredXss/xss-through-filenames.js:25:26:39:5 | functio ... \\n\\n    } | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/StoredXss/xss-through-filenames.js:25:26:39:5 | functio ... \\n\\n    } | XssThroughDom | notASinkReason | FileSystemAccess | string |
+| autogenerated/Xss/StoredXss/xss-through-filenames.js:25:26:39:5 | functio ... \\n\\n    } | XssThroughDom | sinkLabel | NotASink | string |
 | autogenerated/Xss/StoredXss/xss-through-filenames.js:30:24:32:9 | functio ...       } | NosqlInjection | hasFlowFromSource | false | boolean |
 | autogenerated/Xss/StoredXss/xss-through-filenames.js:30:24:32:9 | functio ...       } | NosqlInjection | isConstantExpression | false | boolean |
 | autogenerated/Xss/StoredXss/xss-through-filenames.js:30:24:32:9 | functio ...       } | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
@@ -4763,6 +5339,11 @@ endpoints
 | autogenerated/Xss/StoredXss/xss-through-filenames.js:30:24:32:9 | functio ...       } | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
 | autogenerated/Xss/StoredXss/xss-through-filenames.js:30:24:32:9 | functio ...       } | Xss | notASinkReason | BuiltinCallName | string |
 | autogenerated/Xss/StoredXss/xss-through-filenames.js:30:24:32:9 | functio ...       } | Xss | sinkLabel | NotASink | string |
+| autogenerated/Xss/StoredXss/xss-through-filenames.js:30:24:32:9 | functio ...       } | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/StoredXss/xss-through-filenames.js:30:24:32:9 | functio ...       } | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/Xss/StoredXss/xss-through-filenames.js:30:24:32:9 | functio ...       } | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/StoredXss/xss-through-filenames.js:30:24:32:9 | functio ...       } | XssThroughDom | notASinkReason | BuiltinCallName | string |
+| autogenerated/Xss/StoredXss/xss-through-filenames.js:30:24:32:9 | functio ...       } | XssThroughDom | sinkLabel | NotASink | string |
 | autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:3:10:3:32 | ['jquer ... ry-ui'] | TaintedPath | hasFlowFromSource | false | boolean |
 | autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:3:10:3:32 | ['jquer ... ry-ui'] | TaintedPath | isConstantExpression | false | boolean |
 | autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:3:10:3:32 | ['jquer ... ry-ui'] | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
@@ -4831,6 +5412,11 @@ endpoints
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:60:31:60:38 | defaults | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:60:31:60:38 | defaults | Xss | notASinkReason | JQueryArgument | string |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:60:31:60:38 | defaults | Xss | sinkLabel | NotASink | string |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:60:31:60:38 | defaults | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:60:31:60:38 | defaults | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:60:31:60:38 | defaults | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:60:31:60:38 | defaults | XssThroughDom | notASinkReason | JQueryArgument | string |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:60:31:60:38 | defaults | XssThroughDom | sinkLabel | NotASink | string |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:60:41:60:47 | options | NosqlInjection | hasFlowFromSource | false | boolean |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:60:41:60:47 | options | NosqlInjection | isConstantExpression | false | boolean |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:60:41:60:47 | options | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
@@ -4851,6 +5437,11 @@ endpoints
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:60:41:60:47 | options | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:60:41:60:47 | options | Xss | notASinkReason | JQueryArgument | string |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:60:41:60:47 | options | Xss | sinkLabel | NotASink | string |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:60:41:60:47 | options | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:60:41:60:47 | options | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:60:41:60:47 | options | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:60:41:60:47 | options | XssThroughDom | notASinkReason | JQueryArgument | string |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:60:41:60:47 | options | XssThroughDom | sinkLabel | NotASink | string |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:61:22:63:5 | functio ... K\\n    } | NosqlInjection | hasFlowFromSource | false | boolean |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:61:22:63:5 | functio ... K\\n    } | NosqlInjection | isConstantExpression | false | boolean |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:61:22:63:5 | functio ... K\\n    } | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
@@ -4871,6 +5462,11 @@ endpoints
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:61:22:63:5 | functio ... K\\n    } | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:61:22:63:5 | functio ... K\\n    } | Xss | notASinkReason | JQueryArgument | string |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:61:22:63:5 | functio ... K\\n    } | Xss | sinkLabel | NotASink | string |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:61:22:63:5 | functio ... K\\n    } | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:61:22:63:5 | functio ... K\\n    } | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:61:22:63:5 | functio ... K\\n    } | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:61:22:63:5 | functio ... K\\n    } | XssThroughDom | notASinkReason | JQueryArgument | string |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:61:22:63:5 | functio ... K\\n    } | XssThroughDom | sinkLabel | NotASink | string |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:62:11:62:40 | "<b>" + ...  "</b>" | Xss | hasFlowFromSource | false | boolean |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:62:11:62:40 | "<b>" + ...  "</b>" | Xss | isConstantExpression | false | boolean |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:62:11:62:40 | "<b>" + ...  "</b>" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
@@ -4939,6 +5535,11 @@ endpoints
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:18:6:18:11 | target | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:18:6:18:11 | target | Xss | notASinkReason | JQueryArgument | string |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:18:6:18:11 | target | Xss | sinkLabel | NotASink | string |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:18:6:18:11 | target | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:18:6:18:11 | target | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:18:6:18:11 | target | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:18:6:18:11 | target | XssThroughDom | notASinkReason | JQueryArgument | string |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:18:6:18:11 | target | XssThroughDom | sinkLabel | NotASink | string |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:22:6:22:11 | target | Xss | hasFlowFromSource | false | boolean |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:22:6:22:11 | target | Xss | isConstantExpression | false | boolean |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:22:6:22:11 | target | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
@@ -5019,6 +5620,11 @@ endpoints
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:67:33:67:34 | {} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:67:33:67:34 | {} | Xss | notASinkReason | JQueryArgument | string |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:67:33:67:34 | {} | Xss | sinkLabel | NotASink | string |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:67:33:67:34 | {} | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:67:33:67:34 | {} | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:67:33:67:34 | {} | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:67:33:67:34 | {} | XssThroughDom | notASinkReason | JQueryArgument | string |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:67:33:67:34 | {} | XssThroughDom | sinkLabel | NotASink | string |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:67:37:67:43 | options | NosqlInjection | hasFlowFromSource | false | boolean |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:67:37:67:43 | options | NosqlInjection | isConstantExpression | false | boolean |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:67:37:67:43 | options | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
@@ -5039,6 +5645,11 @@ endpoints
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:67:37:67:43 | options | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:67:37:67:43 | options | Xss | notASinkReason | JQueryArgument | string |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:67:37:67:43 | options | Xss | sinkLabel | NotASink | string |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:67:37:67:43 | options | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:67:37:67:43 | options | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:67:37:67:43 | options | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:67:37:67:43 | options | XssThroughDom | notASinkReason | JQueryArgument | string |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:67:37:67:43 | options | XssThroughDom | sinkLabel | NotASink | string |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:68:45:68:63 | this.options.parent | Xss | hasFlowFromSource | false | boolean |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:68:45:68:63 | this.options.parent | Xss | isConstantExpression | false | boolean |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:68:45:68:63 | this.options.parent | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
@@ -5079,6 +5690,11 @@ endpoints
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:81:5:81:24 | "#" + options.target | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:81:5:81:24 | "#" + options.target | Xss | notASinkReason | JQueryArgument | string |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:81:5:81:24 | "#" + options.target | Xss | sinkLabel | NotASink | string |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:81:5:81:24 | "#" + options.target | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:81:5:81:24 | "#" + options.target | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:81:5:81:24 | "#" + options.target | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:81:5:81:24 | "#" + options.target | XssThroughDom | notASinkReason | JQueryArgument | string |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:81:5:81:24 | "#" + options.target | XssThroughDom | sinkLabel | NotASink | string |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:86:22:86:23 | {} | NosqlInjection | hasFlowFromSource | false | boolean |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:86:22:86:23 | {} | NosqlInjection | isConstantExpression | false | boolean |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:86:22:86:23 | {} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
@@ -5099,6 +5715,11 @@ endpoints
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:86:22:86:23 | {} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:86:22:86:23 | {} | Xss | notASinkReason | JQueryArgument | string |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:86:22:86:23 | {} | Xss | sinkLabel | NotASink | string |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:86:22:86:23 | {} | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:86:22:86:23 | {} | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:86:22:86:23 | {} | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:86:22:86:23 | {} | XssThroughDom | notASinkReason | JQueryArgument | string |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:86:22:86:23 | {} | XssThroughDom | sinkLabel | NotASink | string |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:86:26:86:26 | o | NosqlInjection | hasFlowFromSource | false | boolean |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:86:26:86:26 | o | NosqlInjection | isConstantExpression | false | boolean |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:86:26:86:26 | o | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
@@ -5119,6 +5740,11 @@ endpoints
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:86:26:86:26 | o | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:86:26:86:26 | o | Xss | notASinkReason | JQueryArgument | string |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:86:26:86:26 | o | Xss | sinkLabel | NotASink | string |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:86:26:86:26 | o | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:86:26:86:26 | o | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:86:26:86:26 | o | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:86:26:86:26 | o | XssThroughDom | notASinkReason | JQueryArgument | string |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:86:26:86:26 | o | XssThroughDom | sinkLabel | NotASink | string |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:89:16:89:16 | t | NosqlInjection | hasFlowFromSource | false | boolean |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:89:16:89:16 | t | NosqlInjection | isConstantExpression | false | boolean |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:89:16:89:16 | t | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
@@ -5139,6 +5765,11 @@ endpoints
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:89:16:89:16 | t | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:89:16:89:16 | t | Xss | notASinkReason | LoggerMethod | string |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:89:16:89:16 | t | Xss | sinkLabel | NotASink | string |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:89:16:89:16 | t | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:89:16:89:16 | t | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:89:16:89:16 | t | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:89:16:89:16 | t | XssThroughDom | notASinkReason | LoggerMethod | string |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:89:16:89:16 | t | XssThroughDom | sinkLabel | NotASink | string |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:90:6:90:6 | t | Xss | hasFlowFromSource | false | boolean |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:90:6:90:6 | t | Xss | isConstantExpression | false | boolean |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:90:6:90:6 | t | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
@@ -5163,6 +5794,11 @@ endpoints
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:97:16:97:21 | target | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:97:16:97:21 | target | Xss | notASinkReason | MembershipCandidateTest | string |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:97:16:97:21 | target | Xss | sinkLabel | NotASink | string |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:97:16:97:21 | target | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:97:16:97:21 | target | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:97:16:97:21 | target | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:97:16:97:21 | target | XssThroughDom | notASinkReason | MembershipCandidateTest | string |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:97:16:97:21 | target | XssThroughDom | sinkLabel | NotASink | string |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:98:6:98:11 | target | Xss | hasFlowFromSource | false | boolean |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:98:6:98:11 | target | Xss | isConstantExpression | false | boolean |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:98:6:98:11 | target | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
@@ -5187,6 +5823,11 @@ endpoints
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:102:22:105:3 | {\\n\\t\\t\\tme ... in'\\n\\t\\t} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:102:22:105:3 | {\\n\\t\\t\\tme ... in'\\n\\t\\t} | Xss | notASinkReason | JQueryArgument | string |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:102:22:105:3 | {\\n\\t\\t\\tme ... in'\\n\\t\\t} | Xss | sinkLabel | NotASink | string |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:102:22:105:3 | {\\n\\t\\t\\tme ... in'\\n\\t\\t} | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:102:22:105:3 | {\\n\\t\\t\\tme ... in'\\n\\t\\t} | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:102:22:105:3 | {\\n\\t\\t\\tme ... in'\\n\\t\\t} | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:102:22:105:3 | {\\n\\t\\t\\tme ... in'\\n\\t\\t} | XssThroughDom | notASinkReason | JQueryArgument | string |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:102:22:105:3 | {\\n\\t\\t\\tme ... in'\\n\\t\\t} | XssThroughDom | sinkLabel | NotASink | string |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:105:6:105:12 | options | NosqlInjection | hasFlowFromSource | false | boolean |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:105:6:105:12 | options | NosqlInjection | isConstantExpression | false | boolean |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:105:6:105:12 | options | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
@@ -5207,6 +5848,11 @@ endpoints
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:105:6:105:12 | options | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:105:6:105:12 | options | Xss | notASinkReason | JQueryArgument | string |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:105:6:105:12 | options | Xss | sinkLabel | NotASink | string |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:105:6:105:12 | options | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:105:6:105:12 | options | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:105:6:105:12 | options | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:105:6:105:12 | options | XssThroughDom | notASinkReason | JQueryArgument | string |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:105:6:105:12 | options | XssThroughDom | sinkLabel | NotASink | string |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:106:5:106:16 | options.menu | Xss | hasFlowFromSource | false | boolean |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:106:5:106:16 | options.menu | Xss | isConstantExpression | false | boolean |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:106:5:106:16 | options.menu | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
@@ -5235,6 +5881,11 @@ endpoints
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:22:115:23 | {} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:22:115:23 | {} | Xss | notASinkReason | JQueryArgument | string |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:22:115:23 | {} | Xss | sinkLabel | NotASink | string |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:22:115:23 | {} | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:22:115:23 | {} | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:22:115:23 | {} | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:22:115:23 | {} | XssThroughDom | notASinkReason | JQueryArgument | string |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:22:115:23 | {} | XssThroughDom | sinkLabel | NotASink | string |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:26:115:48 | $.fn.my ... efaults | NosqlInjection | hasFlowFromSource | false | boolean |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:26:115:48 | $.fn.my ... efaults | NosqlInjection | isConstantExpression | false | boolean |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:26:115:48 | $.fn.my ... efaults | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
@@ -5255,6 +5906,11 @@ endpoints
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:26:115:48 | $.fn.my ... efaults | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:26:115:48 | $.fn.my ... efaults | Xss | notASinkReason | JQueryArgument | string |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:26:115:48 | $.fn.my ... efaults | Xss | sinkLabel | NotASink | string |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:26:115:48 | $.fn.my ... efaults | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:26:115:48 | $.fn.my ... efaults | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:26:115:48 | $.fn.my ... efaults | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:26:115:48 | $.fn.my ... efaults | XssThroughDom | notASinkReason | JQueryArgument | string |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:26:115:48 | $.fn.my ... efaults | XssThroughDom | sinkLabel | NotASink | string |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:51:115:57 | options | NosqlInjection | hasFlowFromSource | false | boolean |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:51:115:57 | options | NosqlInjection | isConstantExpression | false | boolean |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:51:115:57 | options | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
@@ -5275,6 +5931,11 @@ endpoints
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:51:115:57 | options | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:51:115:57 | options | Xss | notASinkReason | JQueryArgument | string |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:51:115:57 | options | Xss | sinkLabel | NotASink | string |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:51:115:57 | options | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:51:115:57 | options | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:51:115:57 | options | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:51:115:57 | options | XssThroughDom | notASinkReason | JQueryArgument | string |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:51:115:57 | options | XssThroughDom | sinkLabel | NotASink | string |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:116:5:116:16 | options.menu | Xss | hasFlowFromSource | false | boolean |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:116:5:116:16 | options.menu | Xss | isConstantExpression | false | boolean |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:116:5:116:16 | options.menu | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
@@ -5307,6 +5968,11 @@ endpoints
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:125:11:125:14 | $.fn | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:125:11:125:14 | $.fn | Xss | notASinkReason | JQueryArgument | string |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:125:11:125:14 | $.fn | Xss | sinkLabel | NotASink | string |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:125:11:125:14 | $.fn | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:125:11:125:14 | $.fn | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:125:11:125:14 | $.fn | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:125:11:125:14 | $.fn | XssThroughDom | notASinkReason | JQueryArgument | string |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:125:11:125:14 | $.fn | XssThroughDom | sinkLabel | NotASink | string |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:125:17:129:2 | {\\n\\t\\tmy_ ... \\n\\t\\t}\\n\\t} | NosqlInjection | hasFlowFromSource | false | boolean |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:125:17:129:2 | {\\n\\t\\tmy_ ... \\n\\t\\t}\\n\\t} | NosqlInjection | isConstantExpression | false | boolean |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:125:17:129:2 | {\\n\\t\\tmy_ ... \\n\\t\\t}\\n\\t} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
@@ -5327,6 +5993,11 @@ endpoints
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:125:17:129:2 | {\\n\\t\\tmy_ ... \\n\\t\\t}\\n\\t} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:125:17:129:2 | {\\n\\t\\tmy_ ... \\n\\t\\t}\\n\\t} | Xss | notASinkReason | JQueryArgument | string |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:125:17:129:2 | {\\n\\t\\tmy_ ... \\n\\t\\t}\\n\\t} | Xss | sinkLabel | NotASink | string |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:125:17:129:2 | {\\n\\t\\tmy_ ... \\n\\t\\t}\\n\\t} | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:125:17:129:2 | {\\n\\t\\tmy_ ... \\n\\t\\t}\\n\\t} | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:125:17:129:2 | {\\n\\t\\tmy_ ... \\n\\t\\t}\\n\\t} | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:125:17:129:2 | {\\n\\t\\tmy_ ... \\n\\t\\t}\\n\\t} | XssThroughDom | notASinkReason | JQueryArgument | string |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:125:17:129:2 | {\\n\\t\\tmy_ ... \\n\\t\\t}\\n\\t} | XssThroughDom | sinkLabel | NotASink | string |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:127:6:127:19 | options.target | Xss | hasFlowFromSource | false | boolean |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:127:6:127:19 | options.target | Xss | isConstantExpression | false | boolean |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:127:6:127:19 | options.target | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
@@ -5383,6 +6054,11 @@ endpoints
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:155:59:155:64 | target | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:155:59:155:64 | target | Xss | notASinkReason | JQueryArgument | string |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:155:59:155:64 | target | Xss | sinkLabel | NotASink | string |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:155:59:155:64 | target | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:155:59:155:64 | target | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:155:59:155:64 | target | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:155:59:155:64 | target | XssThroughDom | notASinkReason | JQueryArgument | string |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:155:59:155:64 | target | XssThroughDom | sinkLabel | NotASink | string |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:156:41:156:54 | options.target | Xss | hasFlowFromSource | false | boolean |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:156:41:156:54 | options.target | Xss | isConstantExpression | false | boolean |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:156:41:156:54 | options.target | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
@@ -5411,6 +6087,11 @@ endpoints
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:156:75:156:88 | options.target | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:156:75:156:88 | options.target | Xss | notASinkReason | JQueryArgument | string |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:156:75:156:88 | options.target | Xss | sinkLabel | NotASink | string |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:156:75:156:88 | options.target | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:156:75:156:88 | options.target | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:156:75:156:88 | options.target | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:156:75:156:88 | options.target | XssThroughDom | notASinkReason | JQueryArgument | string |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:156:75:156:88 | options.target | XssThroughDom | sinkLabel | NotASink | string |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:157:44:157:59 | options.target.a | Xss | hasFlowFromSource | false | boolean |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:157:44:157:59 | options.target.a | Xss | isConstantExpression | false | boolean |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:157:44:157:59 | options.target.a | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
@@ -5439,6 +6120,11 @@ endpoints
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:157:80:157:95 | options.target.a | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:157:80:157:95 | options.target.a | Xss | notASinkReason | JQueryArgument | string |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:157:80:157:95 | options.target.a | Xss | sinkLabel | NotASink | string |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:157:80:157:95 | options.target.a | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:157:80:157:95 | options.target.a | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:157:80:157:95 | options.target.a | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:157:80:157:95 | options.target.a | XssThroughDom | notASinkReason | JQueryArgument | string |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:157:80:157:95 | options.target.a | XssThroughDom | sinkLabel | NotASink | string |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:161:5:161:30 | anyPref ... .target | Xss | hasFlowFromSource | false | boolean |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:161:5:161:30 | anyPref ... .target | Xss | isConstantExpression | false | boolean |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:161:5:161:30 | anyPref ... .target | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
@@ -5483,6 +6169,11 @@ endpoints
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:182:20:182:33 | options.target | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:182:20:182:33 | options.target | Xss | notASinkReason | JQueryArgument | string |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:182:20:182:33 | options.target | Xss | sinkLabel | NotASink | string |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:182:20:182:33 | options.target | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:182:20:182:33 | options.target | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:182:20:182:33 | options.target | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:182:20:182:33 | options.target | XssThroughDom | notASinkReason | JQueryArgument | string |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:182:20:182:33 | options.target | XssThroughDom | sinkLabel | NotASink | string |
 | autogenerated/Xss/XssThroughDom/forms.js:9:31:9:40 | values.foo | Xss | hasFlowFromSource | false | boolean |
 | autogenerated/Xss/XssThroughDom/forms.js:9:31:9:40 | values.foo | Xss | isConstantExpression | false | boolean |
 | autogenerated/Xss/XssThroughDom/forms.js:9:31:9:40 | values.foo | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
@@ -5567,6 +6258,11 @@ endpoints
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:40:7:53 | {"foo": "bar"} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:40:7:53 | {"foo": "bar"} | Xss | notASinkReason | JQueryArgument | string |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:40:7:53 | {"foo": "bar"} | Xss | sinkLabel | NotASink | string |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:40:7:53 | {"foo": "bar"} | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:40:7:53 | {"foo": "bar"} | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:40:7:53 | {"foo": "bar"} | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:40:7:53 | {"foo": "bar"} | XssThroughDom | notASinkReason | JQueryArgument | string |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:40:7:53 | {"foo": "bar"} | XssThroughDom | sinkLabel | NotASink | string |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:8:16:8:53 | $(".som ... arget") | Xss | hasFlowFromSource | false | boolean |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:8:16:8:53 | $(".som ... arget") | Xss | isConstantExpression | false | boolean |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:8:16:8:53 | $(".som ... arget") | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
@@ -5615,6 +6311,11 @@ endpoints
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:40:16:40:16 | x | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:40:16:40:16 | x | Xss | notASinkReason | JQueryArgument | string |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:40:16:40:16 | x | Xss | sinkLabel | NotASink | string |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:40:16:40:16 | x | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:40:16:40:16 | x | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:40:16:40:16 | x | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:40:16:40:16 | x | XssThroughDom | notASinkReason | JQueryArgument | string |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:40:16:40:16 | x | XssThroughDom | sinkLabel | NotASink | string |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:47:3:47:40 | $("<p>" ... .text() | Xss | hasFlowFromSource | false | boolean |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:47:3:47:40 | $("<p>" ... .text() | Xss | isConstantExpression | false | boolean |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:47:3:47:40 | $("<p>" ... .text() | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
@@ -5707,6 +6408,11 @@ endpoints
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:89:23:91:2 | functio ... / OK\\n\\t} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:89:23:91:2 | functio ... / OK\\n\\t} | Xss | notASinkReason | JQueryArgument | string |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:89:23:91:2 | functio ... / OK\\n\\t} | Xss | sinkLabel | NotASink | string |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:89:23:91:2 | functio ... / OK\\n\\t} | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:89:23:91:2 | functio ... / OK\\n\\t} | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:89:23:91:2 | functio ... / OK\\n\\t} | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:89:23:91:2 | functio ... / OK\\n\\t} | XssThroughDom | notASinkReason | JQueryArgument | string |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:89:23:91:2 | functio ... / OK\\n\\t} | XssThroughDom | sinkLabel | NotASink | string |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:22:90:124 | "<a hre ... on</a>" | Xss | hasFlowFromSource | false | boolean |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:22:90:124 | "<a hre ... on</a>" | Xss | isConstantExpression | false | boolean |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:22:90:124 | "<a hre ... on</a>" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
@@ -5735,6 +6441,11 @@ endpoints
 | index.js:21:9:21:9 | x | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
 | index.js:21:9:21:9 | x | Xss | notASinkReason | LodashUnderscoreArgument | string |
 | index.js:21:9:21:9 | x | Xss | sinkLabel | NotASink | string |
+| index.js:21:9:21:9 | x | XssThroughDom | hasFlowFromSource | false | boolean |
+| index.js:21:9:21:9 | x | XssThroughDom | isConstantExpression | false | boolean |
+| index.js:21:9:21:9 | x | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| index.js:21:9:21:9 | x | XssThroughDom | notASinkReason | LodashUnderscoreArgument | string |
+| index.js:21:9:21:9 | x | XssThroughDom | sinkLabel | NotASink | string |
 | index.js:29:13:29:31 | { 'isAdmin': true } | NosqlInjection | hasFlowFromSource | false | boolean |
 | index.js:29:13:29:31 | { 'isAdmin': true } | NosqlInjection | isConstantExpression | false | boolean |
 | index.js:29:13:29:31 | { 'isAdmin': true } | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
@@ -5759,6 +6470,11 @@ endpoints
 | index.js:30:11:38:5 | functio ... }\\n    } | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
 | index.js:30:11:38:5 | functio ... }\\n    } | Xss | notASinkReason | DatabaseAccess | string |
 | index.js:30:11:38:5 | functio ... }\\n    } | Xss | sinkLabel | NotASink | string |
+| index.js:30:11:38:5 | functio ... }\\n    } | XssThroughDom | hasFlowFromSource | false | boolean |
+| index.js:30:11:38:5 | functio ... }\\n    } | XssThroughDom | isConstantExpression | false | boolean |
+| index.js:30:11:38:5 | functio ... }\\n    } | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| index.js:30:11:38:5 | functio ... }\\n    } | XssThroughDom | notASinkReason | DatabaseAccess | string |
+| index.js:30:11:38:5 | functio ... }\\n    } | XssThroughDom | sinkLabel | NotASink | string |
 | index.js:36:21:36:33 | adminUsers[i] | NosqlInjection | hasFlowFromSource | false | boolean |
 | index.js:36:21:36:33 | adminUsers[i] | NosqlInjection | isConstantExpression | false | boolean |
 | index.js:36:21:36:33 | adminUsers[i] | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
@@ -5779,6 +6495,11 @@ endpoints
 | index.js:36:21:36:33 | adminUsers[i] | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
 | index.js:36:21:36:33 | adminUsers[i] | Xss | notASinkReason | LoggerMethod | string |
 | index.js:36:21:36:33 | adminUsers[i] | Xss | sinkLabel | NotASink | string |
+| index.js:36:21:36:33 | adminUsers[i] | XssThroughDom | hasFlowFromSource | false | boolean |
+| index.js:36:21:36:33 | adminUsers[i] | XssThroughDom | isConstantExpression | false | boolean |
+| index.js:36:21:36:33 | adminUsers[i] | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| index.js:36:21:36:33 | adminUsers[i] | XssThroughDom | notASinkReason | LoggerMethod | string |
+| index.js:36:21:36:33 | adminUsers[i] | XssThroughDom | sinkLabel | NotASink | string |
 | index.js:46:35:46:69 | c > 100 ... ENERAL' | NosqlInjection | hasFlowFromSource | false | boolean |
 | index.js:46:35:46:69 | c > 100 ... ENERAL' | NosqlInjection | isConstantExpression | false | boolean |
 | index.js:46:35:46:69 | c > 100 ... ENERAL' | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
@@ -5799,6 +6520,11 @@ endpoints
 | index.js:46:35:46:69 | c > 100 ... ENERAL' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
 | index.js:46:35:46:69 | c > 100 ... ENERAL' | Xss | notASinkReason | LoggerMethod | string |
 | index.js:46:35:46:69 | c > 100 ... ENERAL' | Xss | sinkLabel | NotASink | string |
+| index.js:46:35:46:69 | c > 100 ... ENERAL' | XssThroughDom | hasFlowFromSource | false | boolean |
+| index.js:46:35:46:69 | c > 100 ... ENERAL' | XssThroughDom | isConstantExpression | false | boolean |
+| index.js:46:35:46:69 | c > 100 ... ENERAL' | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| index.js:46:35:46:69 | c > 100 ... ENERAL' | XssThroughDom | notASinkReason | LoggerMethod | string |
+| index.js:46:35:46:69 | c > 100 ... ENERAL' | XssThroughDom | sinkLabel | NotASink | string |
 | index.js:46:72:46:72 | x | NosqlInjection | hasFlowFromSource | false | boolean |
 | index.js:46:72:46:72 | x | NosqlInjection | isConstantExpression | false | boolean |
 | index.js:46:72:46:72 | x | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
@@ -5819,6 +6545,11 @@ endpoints
 | index.js:46:72:46:72 | x | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
 | index.js:46:72:46:72 | x | Xss | notASinkReason | LoggerMethod | string |
 | index.js:46:72:46:72 | x | Xss | sinkLabel | NotASink | string |
+| index.js:46:72:46:72 | x | XssThroughDom | hasFlowFromSource | false | boolean |
+| index.js:46:72:46:72 | x | XssThroughDom | isConstantExpression | false | boolean |
+| index.js:46:72:46:72 | x | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| index.js:46:72:46:72 | x | XssThroughDom | notASinkReason | LoggerMethod | string |
+| index.js:46:72:46:72 | x | XssThroughDom | sinkLabel | NotASink | string |
 | index.js:46:75:46:75 | o | NosqlInjection | hasFlowFromSource | false | boolean |
 | index.js:46:75:46:75 | o | NosqlInjection | isConstantExpression | false | boolean |
 | index.js:46:75:46:75 | o | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
@@ -5839,6 +6570,11 @@ endpoints
 | index.js:46:75:46:75 | o | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
 | index.js:46:75:46:75 | o | Xss | notASinkReason | LoggerMethod | string |
 | index.js:46:75:46:75 | o | Xss | sinkLabel | NotASink | string |
+| index.js:46:75:46:75 | o | XssThroughDom | hasFlowFromSource | false | boolean |
+| index.js:46:75:46:75 | o | XssThroughDom | isConstantExpression | false | boolean |
+| index.js:46:75:46:75 | o | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| index.js:46:75:46:75 | o | XssThroughDom | notASinkReason | LoggerMethod | string |
+| index.js:46:75:46:75 | o | XssThroughDom | sinkLabel | NotASink | string |
 | index.js:50:15:50:19 | ready | NosqlInjection | hasFlowFromSource | false | boolean |
 | index.js:50:15:50:19 | ready | NosqlInjection | isConstantExpression | false | boolean |
 | index.js:50:15:50:19 | ready | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
@@ -5859,6 +6595,11 @@ endpoints
 | index.js:50:15:50:19 | ready | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
 | index.js:50:15:50:19 | ready | Xss | notASinkReason | Timeout | string |
 | index.js:50:15:50:19 | ready | Xss | sinkLabel | NotASink | string |
+| index.js:50:15:50:19 | ready | XssThroughDom | hasFlowFromSource | false | boolean |
+| index.js:50:15:50:19 | ready | XssThroughDom | isConstantExpression | false | boolean |
+| index.js:50:15:50:19 | ready | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| index.js:50:15:50:19 | ready | XssThroughDom | notASinkReason | Timeout | string |
+| index.js:50:15:50:19 | ready | XssThroughDom | sinkLabel | NotASink | string |
 tokenFeatures
 | autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:27:22:27:26 | query | CalleeFlexibleAccessPath | doc.find |
 | autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:27:22:27:26 | query | InputAccessPathFromCallee |  |
diff --git a/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/FilteredTruePositives.expected b/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/FilteredTruePositives.expected
index cb29a7ee955..f2e04cfa063 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/FilteredTruePositives.expected
+++ b/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/FilteredTruePositives.expected
@@ -14,3 +14,11 @@ xssFilteredTruePositives
 | autogenerated/Xss/DomBasedXss/tst.js:316:35:316:42 | location | not a direct argument to a likely external library call or a heuristic sink (xss) |
 | autogenerated/Xss/DomBasedXss/typeahead.js:10:16:10:18 | loc | not a direct argument to a likely external library call or a heuristic sink (xss) |
 | autogenerated/Xss/DomBasedXss/typeahead.js:25:18:25:20 | val | not a direct argument to a likely external library call or a heuristic sink (xss) |
+xssThroughDomFilteredTruePositives
+| autogenerated/Xss/DomBasedXss/d3.js:12:20:12:29 | getTaint() | not a direct argument to a likely external library call or a heuristic sink (xss) |
+| autogenerated/Xss/DomBasedXss/d3.js:14:20:14:29 | getTaint() | not a direct argument to a likely external library call or a heuristic sink (xss) |
+| autogenerated/Xss/DomBasedXss/express.js:7:15:7:33 | req.param("wobble") | not a direct argument to a likely external library call or a heuristic sink (xss) |
+| autogenerated/Xss/DomBasedXss/jwt-server.js:11:19:11:29 | decoded.foo | not a direct argument to a likely external library call or a heuristic sink (xss) |
+| autogenerated/Xss/DomBasedXss/tst.js:316:35:316:42 | location | not a direct argument to a likely external library call or a heuristic sink (xss) |
+| autogenerated/Xss/DomBasedXss/typeahead.js:10:16:10:18 | loc | not a direct argument to a likely external library call or a heuristic sink (xss) |
+| autogenerated/Xss/DomBasedXss/typeahead.js:25:18:25:20 | val | not a direct argument to a likely external library call or a heuristic sink (xss) |
diff --git a/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_unit_tests/ExtractEndpointDataTraining.expected b/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_unit_tests/ExtractEndpointDataTraining.expected
index bbdd33e8965..55423976708 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_unit_tests/ExtractEndpointDataTraining.expected
+++ b/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_unit_tests/ExtractEndpointDataTraining.expected
@@ -23,6 +23,11 @@ endpoints
 | index.js:15:17:15:32 | req.body.isAdmin | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
 | index.js:15:17:15:32 | req.body.isAdmin | Xss | notASinkReason | LoggerMethod | string |
 | index.js:15:17:15:32 | req.body.isAdmin | Xss | sinkLabel | NotASink | string |
+| index.js:15:17:15:32 | req.body.isAdmin | XssThroughDom | hasFlowFromSource | false | boolean |
+| index.js:15:17:15:32 | req.body.isAdmin | XssThroughDom | isConstantExpression | false | boolean |
+| index.js:15:17:15:32 | req.body.isAdmin | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| index.js:15:17:15:32 | req.body.isAdmin | XssThroughDom | notASinkReason | LoggerMethod | string |
+| index.js:15:17:15:32 | req.body.isAdmin | XssThroughDom | sinkLabel | NotASink | string |
 | index.js:20:13:20:31 | { 'isAdmin': true } | NosqlInjection | hasFlowFromSource | false | boolean |
 | index.js:20:13:20:31 | { 'isAdmin': true } | NosqlInjection | isConstantExpression | false | boolean |
 | index.js:20:13:20:31 | { 'isAdmin': true } | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
@@ -55,6 +60,12 @@ endpoints
 | index.js:83:10:85:3 | {\\n    " ... ar,\\n  } | Xss | notASinkReason | ClientRequest | string |
 | index.js:83:10:85:3 | {\\n    " ... ar,\\n  } | Xss | notASinkReason | JQueryArgument | string |
 | index.js:83:10:85:3 | {\\n    " ... ar,\\n  } | Xss | sinkLabel | NotASink | string |
+| index.js:83:10:85:3 | {\\n    " ... ar,\\n  } | XssThroughDom | hasFlowFromSource | false | boolean |
+| index.js:83:10:85:3 | {\\n    " ... ar,\\n  } | XssThroughDom | isConstantExpression | false | boolean |
+| index.js:83:10:85:3 | {\\n    " ... ar,\\n  } | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| index.js:83:10:85:3 | {\\n    " ... ar,\\n  } | XssThroughDom | notASinkReason | ClientRequest | string |
+| index.js:83:10:85:3 | {\\n    " ... ar,\\n  } | XssThroughDom | notASinkReason | JQueryArgument | string |
+| index.js:83:10:85:3 | {\\n    " ... ar,\\n  } | XssThroughDom | sinkLabel | NotASink | string |
 | index.js:84:12:84:18 | foo.bar | NosqlInjection | hasFlowFromSource | false | boolean |
 | index.js:84:12:84:18 | foo.bar | NosqlInjection | isConstantExpression | false | boolean |
 | index.js:84:12:84:18 | foo.bar | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
@@ -75,6 +86,11 @@ endpoints
 | index.js:84:12:84:18 | foo.bar | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
 | index.js:84:12:84:18 | foo.bar | Xss | notASinkReason | ClientRequest | string |
 | index.js:84:12:84:18 | foo.bar | Xss | sinkLabel | NotASink | string |
+| index.js:84:12:84:18 | foo.bar | XssThroughDom | hasFlowFromSource | false | boolean |
+| index.js:84:12:84:18 | foo.bar | XssThroughDom | isConstantExpression | false | boolean |
+| index.js:84:12:84:18 | foo.bar | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| index.js:84:12:84:18 | foo.bar | XssThroughDom | notASinkReason | ClientRequest | string |
+| index.js:84:12:84:18 | foo.bar | XssThroughDom | sinkLabel | NotASink | string |
 tokenFeatures
 | index.js:9:15:9:45 | { 'isAd ... Admin } | CalleeFlexibleAccessPath | User.find |
 | index.js:9:15:9:45 | { 'isAd ... Admin } | InputAccessPathFromCallee |  |

From 0fa05d47e32f1c0297d54ecdf8331394ddb1454f Mon Sep 17 00:00:00 2001
From: Jami Cogswell <jcogs33@Jamis-MacBook-Pro.local>
Date: Wed, 9 Nov 2022 09:28:30 -0500
Subject: [PATCH 0928/1420] add shared key sizes

---
 config/identical-files.json                       |  4 ++++
 .../code/java/security/InsufficientKeySize.qll    |  7 ++++---
 .../java/security/internal/EncryptionKeySizes.qll | 15 +++++++++++++++
 python/ql/lib/semmle/python/Concepts.qll          |  7 ++++---
 .../security/internal/EncryptionKeySizes.qll      | 15 +++++++++++++++
 5 files changed, 42 insertions(+), 6 deletions(-)
 create mode 100644 java/ql/lib/semmle/code/java/security/internal/EncryptionKeySizes.qll
 create mode 100644 python/ql/lib/semmle/python/security/internal/EncryptionKeySizes.qll

diff --git a/config/identical-files.json b/config/identical-files.json
index 0a5d037e226..26d1598ec53 100644
--- a/config/identical-files.json
+++ b/config/identical-files.json
@@ -580,5 +580,9 @@
   "IncompleteMultiCharacterSanitization JS/Ruby": [
     "javascript/ql/lib/semmle/javascript/security/IncompleteMultiCharacterSanitizationQuery.qll",
     "ruby/ql/lib/codeql/ruby/security/IncompleteMultiCharacterSanitizationQuery.qll"
+  ],
+  "EncryptionKeySizes Python/Java": [
+    "python/ql/lib/semmle/python/security/internal/EncryptionKeySizes.qll",
+    "java/ql/lib/semmle/code/java/security/internal/EncryptionKeySizes.qll"
   ]
 }
diff --git a/java/ql/lib/semmle/code/java/security/InsufficientKeySize.qll b/java/ql/lib/semmle/code/java/security/InsufficientKeySize.qll
index e09bffca8e1..eff82641a95 100644
--- a/java/ql/lib/semmle/code/java/security/InsufficientKeySize.qll
+++ b/java/ql/lib/semmle/code/java/security/InsufficientKeySize.qll
@@ -2,6 +2,7 @@
 
 private import semmle.code.java.security.Encryption
 private import semmle.code.java.dataflow.DataFlow
+private import semmle.code.java.security.EncryptionKeySizes
 
 /** A source for an insufficient key size. */
 abstract class InsufficientKeySizeSource extends DataFlow::Node {
@@ -42,7 +43,7 @@ private module Asymmetric {
     }
 
     /** Returns the minimum recommended key size for RSA, DSA, and DH algorithms. */
-    private int getMinKeySize() { result = 2048 }
+    private int getMinKeySize() { result = minSecureKeySizeAsymmetricNonEc() }
 
     /** An instance of an RSA, DSA, or DH algorithm specification. */
     private class Spec extends ClassInstanceExpr {
@@ -87,7 +88,7 @@ private module Asymmetric {
     }
 
     /** Returns the minimum recommended key size for elliptic curve (EC) algorithms. */
-    private int getMinKeySize() { result = 256 }
+    private int getMinKeySize() { result = minSecureKeySizeAsymmetricEc() }
 
     /** Returns the key size from an EC algorithm's curve name string */
     bindingset[algorithm]
@@ -168,7 +169,7 @@ private module Symmetric {
   }
 
   /** Returns the minimum recommended key size for AES algorithms. */
-  private int getMinKeySize() { result = 128 }
+  private int getMinKeySize() { result = minSecureKeySizeSymmetric() }
 
   /** A call to the `init` method declared in `javax.crypto.KeyGenerator`. */
   private class KeyGenInit extends MethodAccess {
diff --git a/java/ql/lib/semmle/code/java/security/internal/EncryptionKeySizes.qll b/java/ql/lib/semmle/code/java/security/internal/EncryptionKeySizes.qll
new file mode 100644
index 00000000000..d3675f07523
--- /dev/null
+++ b/java/ql/lib/semmle/code/java/security/internal/EncryptionKeySizes.qll
@@ -0,0 +1,15 @@
+/**
+ * INTERNAL: Do not use.
+ *
+ * Provides predicates for recommended encryption key sizes.
+ * Such that we can share this logic across our CodeQL analysis of different languages.
+ */
+
+/** Returns the minimum recommended key size for asymmetric algorithms (RSA, DSA, and DH). */
+int minSecureKeySizeAsymmetricNonEc() { result = 2048 }
+
+/** Returns the minimum recommended key size for elliptic curve (EC) algorithms. */
+int minSecureKeySizeAsymmetricEc() { result = 256 }
+
+/** Returns the minimum recommended key size for symmetric algorithmms (AES). */
+int minSecureKeySizeSymmetric() { result = 128 }
diff --git a/python/ql/lib/semmle/python/Concepts.qll b/python/ql/lib/semmle/python/Concepts.qll
index 861e4e7ca81..6864b63d3dd 100644
--- a/python/ql/lib/semmle/python/Concepts.qll
+++ b/python/ql/lib/semmle/python/Concepts.qll
@@ -9,6 +9,7 @@ private import semmle.python.dataflow.new.DataFlow
 private import semmle.python.dataflow.new.RemoteFlowSources
 private import semmle.python.dataflow.new.TaintTracking
 private import semmle.python.Frameworks
+private import semmle.python.security.internal.EncryptionKeySizes
 
 /**
  * A data-flow node that executes an operating system command,
@@ -1141,21 +1142,21 @@ module Cryptography {
       abstract class RsaRange extends Range {
         final override string getName() { result = "RSA" }
 
-        final override int minimumSecureKeySize() { result = 2048 }
+        final override int minimumSecureKeySize() { result = minSecureKeySizeAsymmetricNonEc() }
       }
 
       /** A data-flow node that generates a new DSA key-pair. */
       abstract class DsaRange extends Range {
         final override string getName() { result = "DSA" }
 
-        final override int minimumSecureKeySize() { result = 2048 }
+        final override int minimumSecureKeySize() { result = minSecureKeySizeAsymmetricNonEc() }
       }
 
       /** A data-flow node that generates a new ECC key-pair. */
       abstract class EccRange extends Range {
         final override string getName() { result = "ECC" }
 
-        final override int minimumSecureKeySize() { result = 224 }
+        final override int minimumSecureKeySize() { result = minSecureKeySizeAsymmetricEc() }
       }
     }
   }
diff --git a/python/ql/lib/semmle/python/security/internal/EncryptionKeySizes.qll b/python/ql/lib/semmle/python/security/internal/EncryptionKeySizes.qll
new file mode 100644
index 00000000000..d3675f07523
--- /dev/null
+++ b/python/ql/lib/semmle/python/security/internal/EncryptionKeySizes.qll
@@ -0,0 +1,15 @@
+/**
+ * INTERNAL: Do not use.
+ *
+ * Provides predicates for recommended encryption key sizes.
+ * Such that we can share this logic across our CodeQL analysis of different languages.
+ */
+
+/** Returns the minimum recommended key size for asymmetric algorithms (RSA, DSA, and DH). */
+int minSecureKeySizeAsymmetricNonEc() { result = 2048 }
+
+/** Returns the minimum recommended key size for elliptic curve (EC) algorithms. */
+int minSecureKeySizeAsymmetricEc() { result = 256 }
+
+/** Returns the minimum recommended key size for symmetric algorithmms (AES). */
+int minSecureKeySizeSymmetric() { result = 128 }

From 4d99cd1b7a6263d31043fe59763aebbd151e54dd Mon Sep 17 00:00:00 2001
From: Jami Cogswell <jcogs33@Jamis-MacBook-Pro.local>
Date: Wed, 9 Nov 2022 18:14:46 -0500
Subject: [PATCH 0929/1420] update EC key size in help file

---
 python/ql/src/Security/CWE-326/WeakCryptoKey.qhelp | 5 ++---
 1 file changed, 2 insertions(+), 3 deletions(-)

diff --git a/python/ql/src/Security/CWE-326/WeakCryptoKey.qhelp b/python/ql/src/Security/CWE-326/WeakCryptoKey.qhelp
index 8c6b578d12d..2bc138f86bb 100644
--- a/python/ql/src/Security/CWE-326/WeakCryptoKey.qhelp
+++ b/python/ql/src/Security/CWE-326/WeakCryptoKey.qhelp
@@ -11,13 +11,13 @@ As computational power increases, the ability to break ciphers grows and keys ne
 <p>
 The three main asymmetric key algorithms currently in use are Rivest–Shamir–Adleman (RSA) cryptography, Digital Signature Algorithm (DSA), and Elliptic-curve cryptography (ECC).
 With current technology, key sizes of 2048 bits for RSA and DSA,
-or 224 bits for ECC, are regarded as unbreakable.
+or 256 bits for ECC, are regarded as unbreakable.
 </p>
 </overview>
 
 <recommendation>
 <p>
-Increase the key size to the recommended amount or larger. For RSA or DSA this is at least 2048 bits, for ECC this is at least 224 bits.
+Increase the key size to the recommended amount or larger. For RSA or DSA this is at least 2048 bits, for ECC this is at least 256 bits.
 </p>
 </recommendation>
 
@@ -45,4 +45,3 @@ Recommendation for Transitioning the Use of Cryptographic Algorithms and Key Len
 </li>
 </references>
 </qhelp>
-

From c4dac31895082e9a7484f09f41863fbe6e7f7710 Mon Sep 17 00:00:00 2001
From: Jami Cogswell <jcogs33@Jamis-MacBook-Pro.local>
Date: Wed, 9 Nov 2022 18:51:35 -0500
Subject: [PATCH 0930/1420] fix typo in import statement

---
 java/ql/lib/semmle/code/java/security/InsufficientKeySize.qll | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/java/ql/lib/semmle/code/java/security/InsufficientKeySize.qll b/java/ql/lib/semmle/code/java/security/InsufficientKeySize.qll
index eff82641a95..139faa6a01e 100644
--- a/java/ql/lib/semmle/code/java/security/InsufficientKeySize.qll
+++ b/java/ql/lib/semmle/code/java/security/InsufficientKeySize.qll
@@ -2,7 +2,7 @@
 
 private import semmle.code.java.security.Encryption
 private import semmle.code.java.dataflow.DataFlow
-private import semmle.code.java.security.EncryptionKeySizes
+private import semmle.code.java.security.internal.EncryptionKeySizes
 
 /** A source for an insufficient key size. */
 abstract class InsufficientKeySizeSource extends DataFlow::Node {

From 25f0a13e156ebe132518c7ecedd12b815a5caeb9 Mon Sep 17 00:00:00 2001
From: Jami Cogswell <jcogs33@Jamis-MacBook-Pro.local>
Date: Wed, 9 Nov 2022 18:51:56 -0500
Subject: [PATCH 0931/1420] update python test cases

---
 .../Security/CWE-326-WeakCryptoKey/WeakCryptoKey.expected     | 4 ++--
 .../query-tests/Security/CWE-326-WeakCryptoKey/weak_crypto.py | 4 ++--
 2 files changed, 4 insertions(+), 4 deletions(-)

diff --git a/python/ql/test/query-tests/Security/CWE-326-WeakCryptoKey/WeakCryptoKey.expected b/python/ql/test/query-tests/Security/CWE-326-WeakCryptoKey/WeakCryptoKey.expected
index dc50ddd7873..ea1f924045b 100644
--- a/python/ql/test/query-tests/Security/CWE-326-WeakCryptoKey/WeakCryptoKey.expected
+++ b/python/ql/test/query-tests/Security/CWE-326-WeakCryptoKey/WeakCryptoKey.expected
@@ -1,8 +1,8 @@
 | weak_crypto.py:68:1:68:21 | ControlFlowNode for dsa_gen_key() | Creation of an DSA key uses $@ bits, which is below 2048 and considered breakable. | weak_crypto.py:16:12:16:15 | ControlFlowNode for IntegerLiteral | 1024 |
-| weak_crypto.py:69:1:69:19 | ControlFlowNode for ec_gen_key() | Creation of an ECC key uses $@ bits, which is below 224 and considered breakable. | weak_crypto.py:22:11:22:22 | ControlFlowNode for Attribute | 163 |
+| weak_crypto.py:69:1:69:19 | ControlFlowNode for ec_gen_key() | Creation of an ECC key uses $@ bits, which is below 256 and considered breakable. | weak_crypto.py:22:11:22:22 | ControlFlowNode for Attribute | 224 |
 | weak_crypto.py:70:1:70:28 | ControlFlowNode for rsa_gen_key() | Creation of an RSA key uses $@ bits, which is below 2048 and considered breakable. | weak_crypto.py:12:12:12:15 | ControlFlowNode for IntegerLiteral | 1024 |
 | weak_crypto.py:72:1:72:30 | ControlFlowNode for dsa_gen_key() | Creation of an DSA key uses $@ bits, which is below 2048 and considered breakable. | weak_crypto.py:16:12:16:15 | ControlFlowNode for IntegerLiteral | 1024 |
-| weak_crypto.py:73:1:73:25 | ControlFlowNode for ec_gen_key() | Creation of an ECC key uses $@ bits, which is below 224 and considered breakable. | weak_crypto.py:22:11:22:22 | ControlFlowNode for Attribute | 163 |
+| weak_crypto.py:73:1:73:25 | ControlFlowNode for ec_gen_key() | Creation of an ECC key uses $@ bits, which is below 256 and considered breakable. | weak_crypto.py:22:11:22:22 | ControlFlowNode for Attribute | 224 |
 | weak_crypto.py:74:1:74:37 | ControlFlowNode for rsa_gen_key() | Creation of an RSA key uses $@ bits, which is below 2048 and considered breakable. | weak_crypto.py:12:12:12:15 | ControlFlowNode for IntegerLiteral | 1024 |
 | weak_crypto.py:76:1:76:22 | ControlFlowNode for Attribute() | Creation of an DSA key uses $@ bits, which is below 2048 and considered breakable. | weak_crypto.py:16:12:16:15 | ControlFlowNode for IntegerLiteral | 1024 |
 | weak_crypto.py:77:1:77:22 | ControlFlowNode for Attribute() | Creation of an RSA key uses $@ bits, which is below 2048 and considered breakable. | weak_crypto.py:12:12:12:15 | ControlFlowNode for IntegerLiteral | 1024 |
diff --git a/python/ql/test/query-tests/Security/CWE-326-WeakCryptoKey/weak_crypto.py b/python/ql/test/query-tests/Security/CWE-326-WeakCryptoKey/weak_crypto.py
index de533254cfe..5ec929c7d09 100644
--- a/python/ql/test/query-tests/Security/CWE-326-WeakCryptoKey/weak_crypto.py
+++ b/python/ql/test/query-tests/Security/CWE-326-WeakCryptoKey/weak_crypto.py
@@ -19,8 +19,8 @@ DSA_STRONG = 3076
 
 BIG = 10000
 
-EC_WEAK = ec.SECT163K1()  # has key size of 163
-EC_OK = ec.SECP224R1()
+EC_WEAK = ec.SECP224R1()
+EC_OK = ec.SECP256R1()
 EC_STRONG = ec.SECP384R1()
 EC_BIG = ec.SECT571R1()
 

From 1f4bd009934d67ec3ed89e9b9cbc22e968b97cb1 Mon Sep 17 00:00:00 2001
From: Jami Cogswell <jcogs33@Jamis-MacBook-Pro.local>
Date: Wed, 16 Nov 2022 23:32:07 -0500
Subject: [PATCH 0932/1420] split rsa/dsa/dh

---
 .../java/security/InsufficientKeySize.qll     | 142 ++++++++++++++----
 .../security/internal/EncryptionKeySizes.qll  |  18 ++-
 python/ql/lib/semmle/python/Concepts.qll      |   6 +-
 .../security/internal/EncryptionKeySizes.qll  |  18 ++-
 4 files changed, 138 insertions(+), 46 deletions(-)

diff --git a/java/ql/lib/semmle/code/java/security/InsufficientKeySize.qll b/java/ql/lib/semmle/code/java/security/InsufficientKeySize.qll
index 139faa6a01e..1f293bb0590 100644
--- a/java/ql/lib/semmle/code/java/security/InsufficientKeySize.qll
+++ b/java/ql/lib/semmle/code/java/security/InsufficientKeySize.qll
@@ -20,41 +20,121 @@ abstract class InsufficientKeySizeSink extends DataFlow::Node {
 private module Asymmetric {
   /** Provides models for non-elliptic-curve asymmetric cryptography. */
   private module NonEllipticCurve {
-    /** A source for an insufficient key size used in RSA, DSA, and DH algorithms. */
-    private class Source extends InsufficientKeySizeSource {
-      Source() { this.asExpr().(IntegerLiteral).getIntValue() < getMinKeySize() }
+    private module Rsa {
+      /** A source for an insufficient key size used in an RSA algorithm. */
+      private class Source extends InsufficientKeySizeSource {
+        Source() { this.asExpr().(IntegerLiteral).getIntValue() < getMinKeySize() }
 
-      override predicate hasState(DataFlow::FlowState state) { state = getMinKeySize().toString() }
-    }
-
-    /** A sink for an insufficient key size used in RSA, DSA, and DH algorithms. */
-    private class Sink extends InsufficientKeySizeSink {
-      Sink() {
-        exists(KeyPairGenInit kpgInit, KeyPairGen kpg |
-          kpg.getAlgoName().matches(["RSA", "DSA", "DH"]) and
-          DataFlow::localExprFlow(kpg, kpgInit.getQualifier()) and
-          this.asExpr() = kpgInit.getKeySizeArg()
-        )
-        or
-        exists(Spec spec | this.asExpr() = spec.getKeySizeArg())
+        override predicate hasState(DataFlow::FlowState state) {
+          state = getMinKeySize().toString()
+        }
       }
 
-      override predicate hasState(DataFlow::FlowState state) { state = getMinKeySize().toString() }
-    }
+      /** A sink for an insufficient key size used in an RSA algorithm. */
+      private class Sink extends InsufficientKeySizeSink {
+        Sink() {
+          exists(KeyPairGenInit kpgInit, KeyPairGen kpg |
+            kpg.getAlgoName() = "RSA" and
+            DataFlow::localExprFlow(kpg, kpgInit.getQualifier()) and
+            this.asExpr() = kpgInit.getKeySizeArg()
+          )
+          or
+          exists(Spec spec | this.asExpr() = spec.getKeySizeArg())
+        }
 
-    /** Returns the minimum recommended key size for RSA, DSA, and DH algorithms. */
-    private int getMinKeySize() { result = minSecureKeySizeAsymmetricNonEc() }
-
-    /** An instance of an RSA, DSA, or DH algorithm specification. */
-    private class Spec extends ClassInstanceExpr {
-      Spec() {
-        this.getConstructedType() instanceof RsaKeyGenParameterSpec or
-        this.getConstructedType() instanceof DsaGenParameterSpec or
-        this.getConstructedType() instanceof DhGenParameterSpec
+        override predicate hasState(DataFlow::FlowState state) {
+          state = getMinKeySize().toString()
+        }
       }
 
-      /** Gets the `keysize` argument of this instance. */
-      Argument getKeySizeArg() { result = this.getArgument(0) }
+      /** Returns the minimum recommended key size for an RSA algorithm. */
+      private int getMinKeySize() { result = minSecureKeySizeRsa() }
+
+      /** An instance of an RSA algorithm specification. */
+      private class Spec extends ClassInstanceExpr {
+        Spec() { this.getConstructedType() instanceof RsaKeyGenParameterSpec }
+
+        /** Gets the `keysize` argument of this instance. */
+        Argument getKeySizeArg() { result = this.getArgument(0) }
+      }
+    }
+
+    private module Dsa {
+      /** A source for an insufficient key size used a DSA algorithm. */
+      private class Source extends InsufficientKeySizeSource {
+        Source() { this.asExpr().(IntegerLiteral).getIntValue() < getMinKeySize() }
+
+        override predicate hasState(DataFlow::FlowState state) {
+          state = getMinKeySize().toString()
+        }
+      }
+
+      /** A sink for an insufficient key size used in a DSA algorithm. */
+      private class Sink extends InsufficientKeySizeSink {
+        Sink() {
+          exists(KeyPairGenInit kpgInit, KeyPairGen kpg |
+            kpg.getAlgoName() = "DSA" and
+            DataFlow::localExprFlow(kpg, kpgInit.getQualifier()) and
+            this.asExpr() = kpgInit.getKeySizeArg()
+          )
+          or
+          exists(Spec spec | this.asExpr() = spec.getKeySizeArg())
+        }
+
+        override predicate hasState(DataFlow::FlowState state) {
+          state = getMinKeySize().toString()
+        }
+      }
+
+      /** Returns the minimum recommended key size for a DSA algorithm. */
+      private int getMinKeySize() { result = minSecureKeySizeDsa() }
+
+      /** An instance of a DSA algorithm specification. */
+      private class Spec extends ClassInstanceExpr {
+        Spec() { this.getConstructedType() instanceof DsaGenParameterSpec }
+
+        /** Gets the `keysize` argument of this instance. */
+        Argument getKeySizeArg() { result = this.getArgument(0) }
+      }
+    }
+
+    private module Dh {
+      /** A source for an insufficient key size used in a DH algorithm. */
+      private class Source extends InsufficientKeySizeSource {
+        Source() { this.asExpr().(IntegerLiteral).getIntValue() < getMinKeySize() }
+
+        override predicate hasState(DataFlow::FlowState state) {
+          state = getMinKeySize().toString()
+        }
+      }
+
+      /** A sink for an insufficient key size used in a DH algorithm. */
+      private class Sink extends InsufficientKeySizeSink {
+        Sink() {
+          exists(KeyPairGenInit kpgInit, KeyPairGen kpg |
+            kpg.getAlgoName() = "DH" and
+            DataFlow::localExprFlow(kpg, kpgInit.getQualifier()) and
+            this.asExpr() = kpgInit.getKeySizeArg()
+          )
+          or
+          exists(Spec spec | this.asExpr() = spec.getKeySizeArg())
+        }
+
+        override predicate hasState(DataFlow::FlowState state) {
+          state = getMinKeySize().toString()
+        }
+      }
+
+      /** Returns the minimum recommended key size for a DH algorithm. */
+      private int getMinKeySize() { result = minSecureKeySizeDh() }
+
+      /** An instance of an RSA, DSA, or DH algorithm specification. */
+      private class Spec extends ClassInstanceExpr {
+        Spec() { this.getConstructedType() instanceof DhGenParameterSpec }
+
+        /** Gets the `keysize` argument of this instance. */
+        Argument getKeySizeArg() { result = this.getArgument(0) }
+      }
     }
   }
 
@@ -88,7 +168,7 @@ private module Asymmetric {
     }
 
     /** Returns the minimum recommended key size for elliptic curve (EC) algorithms. */
-    private int getMinKeySize() { result = minSecureKeySizeAsymmetricEc() }
+    private int getMinKeySize() { result = minSecureKeySizeEcc() }
 
     /** Returns the key size from an EC algorithm's curve name string */
     bindingset[algorithm]
@@ -169,7 +249,7 @@ private module Symmetric {
   }
 
   /** Returns the minimum recommended key size for AES algorithms. */
-  private int getMinKeySize() { result = minSecureKeySizeSymmetric() }
+  private int getMinKeySize() { result = minSecureKeySizeAes() }
 
   /** A call to the `init` method declared in `javax.crypto.KeyGenerator`. */
   private class KeyGenInit extends MethodAccess {
diff --git a/java/ql/lib/semmle/code/java/security/internal/EncryptionKeySizes.qll b/java/ql/lib/semmle/code/java/security/internal/EncryptionKeySizes.qll
index d3675f07523..46df3a3ca7b 100644
--- a/java/ql/lib/semmle/code/java/security/internal/EncryptionKeySizes.qll
+++ b/java/ql/lib/semmle/code/java/security/internal/EncryptionKeySizes.qll
@@ -5,11 +5,17 @@
  * Such that we can share this logic across our CodeQL analysis of different languages.
  */
 
-/** Returns the minimum recommended key size for asymmetric algorithms (RSA, DSA, and DH). */
-int minSecureKeySizeAsymmetricNonEc() { result = 2048 }
+/** Returns the minimum recommended key size for RSA. */
+int minSecureKeySizeRsa() { result = 2048 }
 
-/** Returns the minimum recommended key size for elliptic curve (EC) algorithms. */
-int minSecureKeySizeAsymmetricEc() { result = 256 }
+/** Returns the minimum recommended key size for DSA. */
+int minSecureKeySizeDsa() { result = 2048 }
 
-/** Returns the minimum recommended key size for symmetric algorithmms (AES). */
-int minSecureKeySizeSymmetric() { result = 128 }
+/** Returns the minimum recommended key size for DH. */
+int minSecureKeySizeDh() { result = 2048 }
+
+/** Returns the minimum recommended key size for elliptic curve cryptography. */
+int minSecureKeySizeEcc() { result = 256 }
+
+/** Returns the minimum recommended key size for AES. */
+int minSecureKeySizeAes() { result = 128 }
diff --git a/python/ql/lib/semmle/python/Concepts.qll b/python/ql/lib/semmle/python/Concepts.qll
index 6864b63d3dd..b4d2a64cb45 100644
--- a/python/ql/lib/semmle/python/Concepts.qll
+++ b/python/ql/lib/semmle/python/Concepts.qll
@@ -1142,21 +1142,21 @@ module Cryptography {
       abstract class RsaRange extends Range {
         final override string getName() { result = "RSA" }
 
-        final override int minimumSecureKeySize() { result = minSecureKeySizeAsymmetricNonEc() }
+        final override int minimumSecureKeySize() { result = minSecureKeySizeRsa() }
       }
 
       /** A data-flow node that generates a new DSA key-pair. */
       abstract class DsaRange extends Range {
         final override string getName() { result = "DSA" }
 
-        final override int minimumSecureKeySize() { result = minSecureKeySizeAsymmetricNonEc() }
+        final override int minimumSecureKeySize() { result = minSecureKeySizeDsa() }
       }
 
       /** A data-flow node that generates a new ECC key-pair. */
       abstract class EccRange extends Range {
         final override string getName() { result = "ECC" }
 
-        final override int minimumSecureKeySize() { result = minSecureKeySizeAsymmetricEc() }
+        final override int minimumSecureKeySize() { result = minSecureKeySizeEcc() }
       }
     }
   }
diff --git a/python/ql/lib/semmle/python/security/internal/EncryptionKeySizes.qll b/python/ql/lib/semmle/python/security/internal/EncryptionKeySizes.qll
index d3675f07523..46df3a3ca7b 100644
--- a/python/ql/lib/semmle/python/security/internal/EncryptionKeySizes.qll
+++ b/python/ql/lib/semmle/python/security/internal/EncryptionKeySizes.qll
@@ -5,11 +5,17 @@
  * Such that we can share this logic across our CodeQL analysis of different languages.
  */
 
-/** Returns the minimum recommended key size for asymmetric algorithms (RSA, DSA, and DH). */
-int minSecureKeySizeAsymmetricNonEc() { result = 2048 }
+/** Returns the minimum recommended key size for RSA. */
+int minSecureKeySizeRsa() { result = 2048 }
 
-/** Returns the minimum recommended key size for elliptic curve (EC) algorithms. */
-int minSecureKeySizeAsymmetricEc() { result = 256 }
+/** Returns the minimum recommended key size for DSA. */
+int minSecureKeySizeDsa() { result = 2048 }
 
-/** Returns the minimum recommended key size for symmetric algorithmms (AES). */
-int minSecureKeySizeSymmetric() { result = 128 }
+/** Returns the minimum recommended key size for DH. */
+int minSecureKeySizeDh() { result = 2048 }
+
+/** Returns the minimum recommended key size for elliptic curve cryptography. */
+int minSecureKeySizeEcc() { result = 256 }
+
+/** Returns the minimum recommended key size for AES. */
+int minSecureKeySizeAes() { result = 128 }

From f7ae4e894f48c21516931b0773545a16cc351727 Mon Sep 17 00:00:00 2001
From: Jami Cogswell <jcogs33@Jamis-MacBook-Pro.local>
Date: Mon, 28 Nov 2022 10:47:32 -0500
Subject: [PATCH 0933/1420] apply rasmus' approach

---
 .../java/security/InsufficientKeySize.qll     | 148 ++++++------------
 1 file changed, 48 insertions(+), 100 deletions(-)

diff --git a/java/ql/lib/semmle/code/java/security/InsufficientKeySize.qll b/java/ql/lib/semmle/code/java/security/InsufficientKeySize.qll
index 1f293bb0590..3c811db1f34 100644
--- a/java/ql/lib/semmle/code/java/security/InsufficientKeySize.qll
+++ b/java/ql/lib/semmle/code/java/security/InsufficientKeySize.qll
@@ -20,121 +20,69 @@ abstract class InsufficientKeySizeSink extends DataFlow::Node {
 private module Asymmetric {
   /** Provides models for non-elliptic-curve asymmetric cryptography. */
   private module NonEllipticCurve {
-    private module Rsa {
-      /** A source for an insufficient key size used in an RSA algorithm. */
-      private class Source extends InsufficientKeySizeSource {
-        Source() { this.asExpr().(IntegerLiteral).getIntValue() < getMinKeySize() }
+    /** A source for an insufficient key size used in an RSA, DSA, and DH algorithms. */
+    private class Source extends InsufficientKeySizeSource {
+      string algoName;
 
-        override predicate hasState(DataFlow::FlowState state) {
-          state = getMinKeySize().toString()
-        }
-      }
+      Source() { this.asExpr().(IntegerLiteral).getIntValue() < getMinKeySize(algoName) }
 
-      /** A sink for an insufficient key size used in an RSA algorithm. */
-      private class Sink extends InsufficientKeySizeSink {
-        Sink() {
-          exists(KeyPairGenInit kpgInit, KeyPairGen kpg |
-            kpg.getAlgoName() = "RSA" and
-            DataFlow::localExprFlow(kpg, kpgInit.getQualifier()) and
-            this.asExpr() = kpgInit.getKeySizeArg()
-          )
-          or
-          exists(Spec spec | this.asExpr() = spec.getKeySizeArg())
-        }
-
-        override predicate hasState(DataFlow::FlowState state) {
-          state = getMinKeySize().toString()
-        }
-      }
-
-      /** Returns the minimum recommended key size for an RSA algorithm. */
-      private int getMinKeySize() { result = minSecureKeySizeRsa() }
-
-      /** An instance of an RSA algorithm specification. */
-      private class Spec extends ClassInstanceExpr {
-        Spec() { this.getConstructedType() instanceof RsaKeyGenParameterSpec }
-
-        /** Gets the `keysize` argument of this instance. */
-        Argument getKeySizeArg() { result = this.getArgument(0) }
+      override predicate hasState(DataFlow::FlowState state) {
+        state = getMinKeySize(algoName).toString()
       }
     }
 
-    private module Dsa {
-      /** A source for an insufficient key size used a DSA algorithm. */
-      private class Source extends InsufficientKeySizeSource {
-        Source() { this.asExpr().(IntegerLiteral).getIntValue() < getMinKeySize() }
+    /** A sink for an insufficient key size used in an RSA, DSA, and DH algorithms. */
+    private class Sink extends InsufficientKeySizeSink {
+      string algoName;
 
-        override predicate hasState(DataFlow::FlowState state) {
-          state = getMinKeySize().toString()
-        }
+      Sink() {
+        exists(KeyPairGenInit kpgInit, KeyPairGen kpg |
+          algoName in ["RSA", "DSA", "DH"] and
+          kpg.getAlgoName().matches(algoName) and
+          DataFlow::localExprFlow(kpg, kpgInit.getQualifier()) and
+          this.asExpr() = kpgInit.getKeySizeArg()
+        )
+        or
+        exists(Spec spec | this.asExpr() = spec.getKeySizeArg() and algoName = spec.getAlgoName())
       }
 
-      /** A sink for an insufficient key size used in a DSA algorithm. */
-      private class Sink extends InsufficientKeySizeSink {
-        Sink() {
-          exists(KeyPairGenInit kpgInit, KeyPairGen kpg |
-            kpg.getAlgoName() = "DSA" and
-            DataFlow::localExprFlow(kpg, kpgInit.getQualifier()) and
-            this.asExpr() = kpgInit.getKeySizeArg()
-          )
-          or
-          exists(Spec spec | this.asExpr() = spec.getKeySizeArg())
-        }
-
-        override predicate hasState(DataFlow::FlowState state) {
-          state = getMinKeySize().toString()
-        }
-      }
-
-      /** Returns the minimum recommended key size for a DSA algorithm. */
-      private int getMinKeySize() { result = minSecureKeySizeDsa() }
-
-      /** An instance of a DSA algorithm specification. */
-      private class Spec extends ClassInstanceExpr {
-        Spec() { this.getConstructedType() instanceof DsaGenParameterSpec }
-
-        /** Gets the `keysize` argument of this instance. */
-        Argument getKeySizeArg() { result = this.getArgument(0) }
+      override predicate hasState(DataFlow::FlowState state) {
+        state = getMinKeySize(algoName).toString()
       }
     }
 
-    private module Dh {
-      /** A source for an insufficient key size used in a DH algorithm. */
-      private class Source extends InsufficientKeySizeSource {
-        Source() { this.asExpr().(IntegerLiteral).getIntValue() < getMinKeySize() }
+    /** Returns the minimum recommended key size for RSA, DSA, and DH algorithms. */
+    private int getMinKeySize(string algoName) {
+      algoName = "RSA" and
+      result = minSecureKeySizeRsa()
+      or
+      algoName = "DSA" and
+      result = minSecureKeySizeDsa()
+      or
+      algoName = "DH" and
+      result = minSecureKeySizeDh()
+    }
 
-        override predicate hasState(DataFlow::FlowState state) {
-          state = getMinKeySize().toString()
-        }
+    /** An instance of an RSA, DSA, or DH algorithm specification. */
+    private class Spec extends ClassInstanceExpr {
+      string algoName;
+
+      Spec() {
+        this.getConstructedType() instanceof RsaKeyGenParameterSpec and
+        algoName = "RSA"
+        or
+        this.getConstructedType() instanceof DsaGenParameterSpec and
+        algoName = "DSA"
+        or
+        this.getConstructedType() instanceof DhGenParameterSpec and
+        algoName = "DH"
       }
 
-      /** A sink for an insufficient key size used in a DH algorithm. */
-      private class Sink extends InsufficientKeySizeSink {
-        Sink() {
-          exists(KeyPairGenInit kpgInit, KeyPairGen kpg |
-            kpg.getAlgoName() = "DH" and
-            DataFlow::localExprFlow(kpg, kpgInit.getQualifier()) and
-            this.asExpr() = kpgInit.getKeySizeArg()
-          )
-          or
-          exists(Spec spec | this.asExpr() = spec.getKeySizeArg())
-        }
+      /** Gets the `keysize` argument of this instance. */
+      Argument getKeySizeArg() { result = this.getArgument(0) }
 
-        override predicate hasState(DataFlow::FlowState state) {
-          state = getMinKeySize().toString()
-        }
-      }
-
-      /** Returns the minimum recommended key size for a DH algorithm. */
-      private int getMinKeySize() { result = minSecureKeySizeDh() }
-
-      /** An instance of an RSA, DSA, or DH algorithm specification. */
-      private class Spec extends ClassInstanceExpr {
-        Spec() { this.getConstructedType() instanceof DhGenParameterSpec }
-
-        /** Gets the `keysize` argument of this instance. */
-        Argument getKeySizeArg() { result = this.getArgument(0) }
-      }
+      /** Gets the algorithm name of this spec. */
+      string getAlgoName() { result = algoName }
     }
   }
 

From 548ff47f03e4441c3754d97531a1b642935fe129 Mon Sep 17 00:00:00 2001
From: Jami Cogswell <jcogs33@Jamis-MacBook-Pro.local>
Date: Mon, 28 Nov 2022 11:18:29 -0500
Subject: [PATCH 0934/1420] fix typo in QLDoc

---
 java/ql/lib/semmle/code/java/security/InsufficientKeySize.qll | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/java/ql/lib/semmle/code/java/security/InsufficientKeySize.qll b/java/ql/lib/semmle/code/java/security/InsufficientKeySize.qll
index 3c811db1f34..e559437307f 100644
--- a/java/ql/lib/semmle/code/java/security/InsufficientKeySize.qll
+++ b/java/ql/lib/semmle/code/java/security/InsufficientKeySize.qll
@@ -20,7 +20,7 @@ abstract class InsufficientKeySizeSink extends DataFlow::Node {
 private module Asymmetric {
   /** Provides models for non-elliptic-curve asymmetric cryptography. */
   private module NonEllipticCurve {
-    /** A source for an insufficient key size used in an RSA, DSA, and DH algorithms. */
+    /** A source for an insufficient key size used in RSA, DSA, and DH algorithms. */
     private class Source extends InsufficientKeySizeSource {
       string algoName;
 
@@ -31,7 +31,7 @@ private module Asymmetric {
       }
     }
 
-    /** A sink for an insufficient key size used in an RSA, DSA, and DH algorithms. */
+    /** A sink for an insufficient key size used in RSA, DSA, and DH algorithms. */
     private class Sink extends InsufficientKeySizeSink {
       string algoName;
 

From 315ceb57e9d983dcaf0fa95952d3a367b1dff2ed Mon Sep 17 00:00:00 2001
From: Rasmus Wriedt Larsen <rasmuswl@github.com>
Date: Tue, 29 Nov 2022 17:28:08 +0100
Subject: [PATCH 0935/1420] Python: Add change-note

---
 .../ql/src/change-notes/2022-11-29-ecc-min-secure-keysize.md  | 4 ++++
 1 file changed, 4 insertions(+)
 create mode 100644 python/ql/src/change-notes/2022-11-29-ecc-min-secure-keysize.md

diff --git a/python/ql/src/change-notes/2022-11-29-ecc-min-secure-keysize.md b/python/ql/src/change-notes/2022-11-29-ecc-min-secure-keysize.md
new file mode 100644
index 00000000000..2fc0532d547
--- /dev/null
+++ b/python/ql/src/change-notes/2022-11-29-ecc-min-secure-keysize.md
@@ -0,0 +1,4 @@
+---
+category: minorAnalysis
+---
+* Bumped the minimum keysize we consider secure for elliptic curve cryptography from 224 to 256 bits, following current best practices. This might effect results from the _Use of weak cryptographic key_ (`py/weak-crypto-key`) query.

From f54480b7c87304fc3af9f8b645aacc6ebb99e8a7 Mon Sep 17 00:00:00 2001
From: Jami <57204504+jcogs33@users.noreply.github.com>
Date: Wed, 30 Nov 2022 16:14:50 -0500
Subject: [PATCH 0936/1420] change matches to equality

Co-authored-by: Rasmus Wriedt Larsen <rasmuswriedtlarsen@gmail.com>
---
 java/ql/lib/semmle/code/java/security/InsufficientKeySize.qll | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/java/ql/lib/semmle/code/java/security/InsufficientKeySize.qll b/java/ql/lib/semmle/code/java/security/InsufficientKeySize.qll
index e559437307f..b156b594a70 100644
--- a/java/ql/lib/semmle/code/java/security/InsufficientKeySize.qll
+++ b/java/ql/lib/semmle/code/java/security/InsufficientKeySize.qll
@@ -38,7 +38,7 @@ private module Asymmetric {
       Sink() {
         exists(KeyPairGenInit kpgInit, KeyPairGen kpg |
           algoName in ["RSA", "DSA", "DH"] and
-          kpg.getAlgoName().matches(algoName) and
+          kpg.getAlgoName() = algoName and
           DataFlow::localExprFlow(kpg, kpgInit.getQualifier()) and
           this.asExpr() = kpgInit.getKeySizeArg()
         )

From 6bb54f07bf056689a4e473cc24cf68059a27027b Mon Sep 17 00:00:00 2001
From: Tony Torralba <atorralba@users.noreply.github.com>
Date: Thu, 1 Dec 2022 18:08:47 +0100
Subject: [PATCH 0937/1420] Apply suggestions from code review

Co-authored-by: Ben Ahmady <32935794+subatoi@users.noreply.github.com>
---
 .../queries/Security/CWE-022/PathInjection.qhelp   | 14 ++++++--------
 1 file changed, 6 insertions(+), 8 deletions(-)

diff --git a/swift/ql/src/queries/Security/CWE-022/PathInjection.qhelp b/swift/ql/src/queries/Security/CWE-022/PathInjection.qhelp
index c3dc388d64e..17a569c2129 100644
--- a/swift/ql/src/queries/Security/CWE-022/PathInjection.qhelp
+++ b/swift/ql/src/queries/Security/CWE-022/PathInjection.qhelp
@@ -4,12 +4,10 @@
 <qhelp>
 
 <overview>
-<p>Accessing paths controlled by users can allow an attacker to access unexpected resources. This 
-can result in sensitive information being revealed or deleted, or an attacker being able to influence
-behavior by modifying unexpected files.</p>
+<p>Accessing paths controlled by users can expose resources to attackers.</p>
 
 <p>Paths that are naively constructed from data controlled by a user may contain unexpected special characters,
-such as "..". Such a path may potentially point to any directory on the file system.</p>
+such as <code>..</code>. Such a path could point to any directory on the file system.</p>
 </overview>
 
 <recommendation>
@@ -17,11 +15,11 @@ such as "..". Such a path may potentially point to any directory on the file sys
 <p>Validate user input before using it to construct a file path. Ideally, follow these rules:</p>
 
 <ul>
-<li>Do not allow more than a single "." character.</li>
-<li>Do not allow directory separators such as "/" or "\" (depending on the file system).</li>
-<li>Do not rely on simply replacing problematic sequences such as "../". For example, after applying this filter to
+<li>Do not allow more than a single <code>.</code> character.</li>
+<li>Do not allow directory separators such as <code>/</code> or <code>\</code> (depending on the file system).</li>
+<li>Do not rely on simply replacing problematic sequences such as <code>../</code>. For example, after applying this filter to
 ".../...//" the resulting string would still be "../".</li>
-<li>Ideally use a whitelist of known good patterns.</li>
+<li>Use a whitelist of known good patterns.</li>
 </ul>
 
 </recommendation>

From 65021e6ed9bfc833daf443d4796790eb854d7b13 Mon Sep 17 00:00:00 2001
From: "Michael B. Gale" <mbg@github.com>
Date: Thu, 1 Dec 2022 17:16:33 +0000
Subject: [PATCH 0938/1420] Add go.work file

---
 go.work | 5 +++++
 1 file changed, 5 insertions(+)
 create mode 100644 go.work

diff --git a/go.work b/go.work
new file mode 100644
index 00000000000..3dd8ff5b5e0
--- /dev/null
+++ b/go.work
@@ -0,0 +1,5 @@
+go 1.18
+
+use (
+    ./go
+)

From ae0d82efd881d2a835eb094af79c5b43d62901dd Mon Sep 17 00:00:00 2001
From: Jean Helie <jhelie@github.com>
Date: Thu, 1 Dec 2022 18:22:33 +0100
Subject: [PATCH 0939/1420] ATM: update predicate name

---
 .../experimental/adaptivethreatmodeling/src/XssThroughDomATM.ql | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/javascript/ql/experimental/adaptivethreatmodeling/src/XssThroughDomATM.ql b/javascript/ql/experimental/adaptivethreatmodeling/src/XssThroughDomATM.ql
index 60df6941400..494b308893f 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/src/XssThroughDomATM.ql
+++ b/javascript/ql/experimental/adaptivethreatmodeling/src/XssThroughDomATM.ql
@@ -19,7 +19,7 @@ import DataFlow::PathGraph
 import experimental.adaptivethreatmodeling.XssThroughDomATM
 
 from AtmConfig cfg, DataFlow::PathNode source, DataFlow::PathNode sink, float score
-where cfg.getAlerts(source, sink, score)
+where cfg.hasBoostedFlowPath(source, sink, score)
 select sink.getNode(), source, sink,
   "(Experimental) $@ may be reinterpreted as HTML without escaping meta-characters. Identified using machine learning.",
   source.getNode(), "DOM text", score

From 6869ad48e4d78d439454b7d8cea73354ac6b31eb Mon Sep 17 00:00:00 2001
From: Felicity Chapman <felicitymay@github.com>
Date: Thu, 1 Dec 2022 17:40:24 +0000
Subject: [PATCH 0940/1420] Apply suggestions from code review

Co-authored-by: James Fletcher <42464962+jf205@users.noreply.github.com>
---
 docs/codeql/writing-codeql-queries/cross-the-river.rst | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/docs/codeql/writing-codeql-queries/cross-the-river.rst b/docs/codeql/writing-codeql-queries/cross-the-river.rst
index 680529bc703..dbee51b35dc 100644
--- a/docs/codeql/writing-codeql-queries/cross-the-river.rst
+++ b/docs/codeql/writing-codeql-queries/cross-the-river.rst
@@ -264,7 +264,7 @@ Here are some more example queries that solve the river crossing puzzle:
 
    .. container:: name
 
-      * Show/hide example query - modified path
+      *Show/hide example query - modified path*
 
    .. literalinclude:: river-answer-1-path.ql
       :language: ql
@@ -274,7 +274,7 @@ Here are some more example queries that solve the river crossing puzzle:
 
    .. container:: name
 
-      * Show/hide example query - abstract class
+      *Show/hide example query - abstract class*
 
    .. literalinclude:: river-answer-2-abstract-class.ql
       :language: ql
@@ -284,7 +284,7 @@ Here are some more example queries that solve the river crossing puzzle:
 
    .. container:: name
 
-      * Show/hide example query - datatypes
+      *Show/hide example query - datatypes*
 
    .. literalinclude:: river-answer-3-datatypes.ql
       :language: ql

From 98923cee94ebcfc0a9560456a3d2b829f8a7a6c7 Mon Sep 17 00:00:00 2001
From: Jean Helie <jhelie@github.com>
Date: Thu, 1 Dec 2022 18:47:36 +0100
Subject: [PATCH 0941/1420] ATM: update missing .qll

---
 .../modelbuilding/extraction/ExtractEndpointDataTraining.qll   | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/javascript/ql/experimental/adaptivethreatmodeling/modelbuilding/extraction/ExtractEndpointDataTraining.qll b/javascript/ql/experimental/adaptivethreatmodeling/modelbuilding/extraction/ExtractEndpointDataTraining.qll
index 99cba794cfa..763c74c7cf3 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/modelbuilding/extraction/ExtractEndpointDataTraining.qll
+++ b/javascript/ql/experimental/adaptivethreatmodeling/modelbuilding/extraction/ExtractEndpointDataTraining.qll
@@ -14,6 +14,7 @@ private import experimental.adaptivethreatmodeling.NosqlInjectionATM as NosqlInj
 private import experimental.adaptivethreatmodeling.SqlInjectionATM as SqlInjectionAtm
 private import experimental.adaptivethreatmodeling.TaintedPathATM as TaintedPathAtm
 private import experimental.adaptivethreatmodeling.XssATM as XssAtm
+private import experimental.adaptivethreatmodeling.XssThroughDomATM as XssThroughDomAtm
 
 /**
  * Gets the set of featureName-featureValue pairs for each endpoint in the training set.
@@ -214,6 +215,8 @@ DataFlow::Configuration getDataFlowCfg(Query query) {
   query instanceof TaintedPathQuery and result instanceof TaintedPathAtm::TaintedPathAtmConfig
   or
   query instanceof XssQuery and result instanceof XssAtm::DomBasedXssAtmConfig
+  or
+  query instanceof XssThroughDomQuery and result instanceof XssThroughDomAtm::XssThroughDomAtmConfig
 }
 
 // TODO: Delete this once we are no longer surfacing `hasFlowFromSource`.

From 352d1a7e8cb5c043e75fb0a87f79d124d22f9d45 Mon Sep 17 00:00:00 2001
From: Jean Helie <jhelie@github.com>
Date: Thu, 1 Dec 2022 19:01:30 +0100
Subject: [PATCH 0942/1420] ATM: update tests

---
 .../ExtractEndpointDataTraining.expected         | 16 ++++++++--------
 1 file changed, 8 insertions(+), 8 deletions(-)

diff --git a/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/ExtractEndpointDataTraining.expected b/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/ExtractEndpointDataTraining.expected
index 378827bd6d4..18822ab887b 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/ExtractEndpointDataTraining.expected
+++ b/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/ExtractEndpointDataTraining.expected
@@ -1028,34 +1028,34 @@ endpoints
 | autogenerated/NosqlAndSqlInjection/untyped/redis.js:15:20:15:35 | ["key", "value"] | NosqlInjection | isConstantExpression | false | boolean |
 | autogenerated/NosqlAndSqlInjection/untyped/redis.js:15:20:15:35 | ["key", "value"] | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
 | autogenerated/NosqlAndSqlInjection/untyped/redis.js:15:20:15:35 | ["key", "value"] | NosqlInjection | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:18:16:18:18 | key | NosqlInjection | hasFlowFromSource | true | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/redis.js:18:16:18:18 | key | NosqlInjection | hasFlowFromSource | false | boolean |
 | autogenerated/NosqlAndSqlInjection/untyped/redis.js:18:16:18:18 | key | NosqlInjection | isConstantExpression | false | boolean |
 | autogenerated/NosqlAndSqlInjection/untyped/redis.js:18:16:18:18 | key | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
 | autogenerated/NosqlAndSqlInjection/untyped/redis.js:18:16:18:18 | key | NosqlInjection | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:19:43:19:45 | key | NosqlInjection | hasFlowFromSource | true | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/redis.js:19:43:19:45 | key | NosqlInjection | hasFlowFromSource | false | boolean |
 | autogenerated/NosqlAndSqlInjection/untyped/redis.js:19:43:19:45 | key | NosqlInjection | isConstantExpression | false | boolean |
 | autogenerated/NosqlAndSqlInjection/untyped/redis.js:19:43:19:45 | key | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
 | autogenerated/NosqlAndSqlInjection/untyped/redis.js:19:43:19:45 | key | NosqlInjection | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:25:14:25:16 | key | NosqlInjection | hasFlowFromSource | true | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/redis.js:25:14:25:16 | key | NosqlInjection | hasFlowFromSource | false | boolean |
 | autogenerated/NosqlAndSqlInjection/untyped/redis.js:25:14:25:16 | key | NosqlInjection | isConstantExpression | false | boolean |
 | autogenerated/NosqlAndSqlInjection/untyped/redis.js:25:14:25:16 | key | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
 | autogenerated/NosqlAndSqlInjection/untyped/redis.js:25:14:25:16 | key | NosqlInjection | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:26:14:26:16 | key | NosqlInjection | hasFlowFromSource | true | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/redis.js:26:14:26:16 | key | NosqlInjection | hasFlowFromSource | false | boolean |
 | autogenerated/NosqlAndSqlInjection/untyped/redis.js:26:14:26:16 | key | NosqlInjection | isConstantExpression | false | boolean |
 | autogenerated/NosqlAndSqlInjection/untyped/redis.js:26:14:26:16 | key | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
 | autogenerated/NosqlAndSqlInjection/untyped/redis.js:26:14:26:16 | key | NosqlInjection | notASinkReason | DatabaseAccess | string |
 | autogenerated/NosqlAndSqlInjection/untyped/redis.js:26:14:26:16 | key | NosqlInjection | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:26:14:26:16 | key | SqlInjection | hasFlowFromSource | true | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/redis.js:26:14:26:16 | key | SqlInjection | hasFlowFromSource | false | boolean |
 | autogenerated/NosqlAndSqlInjection/untyped/redis.js:26:14:26:16 | key | SqlInjection | isConstantExpression | false | boolean |
 | autogenerated/NosqlAndSqlInjection/untyped/redis.js:26:14:26:16 | key | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
 | autogenerated/NosqlAndSqlInjection/untyped/redis.js:26:14:26:16 | key | SqlInjection | notASinkReason | DatabaseAccess | string |
 | autogenerated/NosqlAndSqlInjection/untyped/redis.js:26:14:26:16 | key | SqlInjection | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:26:14:26:16 | key | TaintedPath | hasFlowFromSource | true | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/redis.js:26:14:26:16 | key | TaintedPath | hasFlowFromSource | false | boolean |
 | autogenerated/NosqlAndSqlInjection/untyped/redis.js:26:14:26:16 | key | TaintedPath | isConstantExpression | false | boolean |
 | autogenerated/NosqlAndSqlInjection/untyped/redis.js:26:14:26:16 | key | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
 | autogenerated/NosqlAndSqlInjection/untyped/redis.js:26:14:26:16 | key | TaintedPath | notASinkReason | DatabaseAccess | string |
 | autogenerated/NosqlAndSqlInjection/untyped/redis.js:26:14:26:16 | key | TaintedPath | sinkLabel | NotASink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:26:14:26:16 | key | Xss | hasFlowFromSource | true | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/redis.js:26:14:26:16 | key | Xss | hasFlowFromSource | false | boolean |
 | autogenerated/NosqlAndSqlInjection/untyped/redis.js:26:14:26:16 | key | Xss | isConstantExpression | false | boolean |
 | autogenerated/NosqlAndSqlInjection/untyped/redis.js:26:14:26:16 | key | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
 | autogenerated/NosqlAndSqlInjection/untyped/redis.js:26:14:26:16 | key | Xss | notASinkReason | DatabaseAccess | string |
@@ -1119,7 +1119,7 @@ endpoints
 | autogenerated/NosqlAndSqlInjection/untyped/redis.js:30:23:30:25 | key | NosqlInjection | isConstantExpression | false | boolean |
 | autogenerated/NosqlAndSqlInjection/untyped/redis.js:30:23:30:25 | key | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
 | autogenerated/NosqlAndSqlInjection/untyped/redis.js:30:23:30:25 | key | NosqlInjection | sinkLabel | Sink | string |
-| autogenerated/NosqlAndSqlInjection/untyped/redis.js:32:28:32:30 | key | NosqlInjection | hasFlowFromSource | true | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/redis.js:32:28:32:30 | key | NosqlInjection | hasFlowFromSource | false | boolean |
 | autogenerated/NosqlAndSqlInjection/untyped/redis.js:32:28:32:30 | key | NosqlInjection | isConstantExpression | false | boolean |
 | autogenerated/NosqlAndSqlInjection/untyped/redis.js:32:28:32:30 | key | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
 | autogenerated/NosqlAndSqlInjection/untyped/redis.js:32:28:32:30 | key | NosqlInjection | sinkLabel | Sink | string |

From f1ebaf1ae10ba13b66491424085fca60063a7a4d Mon Sep 17 00:00:00 2001
From: Jami Cogswell <jcogs33@Jamis-MacBook-Pro.local>
Date: Thu, 1 Dec 2022 13:56:13 -0500
Subject: [PATCH 0943/1420] add csharp query

---
 .../ql/src/Telemetry/SupportedExternalApis.ql | 24 +++++++++++++++++++
 1 file changed, 24 insertions(+)
 create mode 100644 csharp/ql/src/Telemetry/SupportedExternalApis.ql

diff --git a/csharp/ql/src/Telemetry/SupportedExternalApis.ql b/csharp/ql/src/Telemetry/SupportedExternalApis.ql
new file mode 100644
index 00000000000..039f2a24677
--- /dev/null
+++ b/csharp/ql/src/Telemetry/SupportedExternalApis.ql
@@ -0,0 +1,24 @@
+/**
+ * @name Usage of supported APIs coming from external libraries
+ * @description A list of supported 3rd party APIs used in the codebase. Excludes APIs exposed by test libraries.
+ * @kind metric
+ * @tags summary telemetry
+ * @id csharp/telemetry/supported-external-api
+ */
+
+private import csharp
+private import semmle.code.csharp.dispatch.Dispatch
+private import semmle.code.csharp.dataflow.internal.FlowSummaryImpl as FlowSummaryImpl
+private import ExternalApi
+
+private predicate relevant(ExternalApi api) {
+  not api.isUninteresting() and
+  (
+    api.isSupported() or
+    api instanceof FlowSummaryImpl::Public::NegativeSummarizedCallable
+  )
+}
+
+from string info, int usages
+where Results<relevant/1>::restrict(info, usages)
+select info, usages order by usages desc

From 31ab22e3a0670e191cec9b2b7e081ef5f3752c3a Mon Sep 17 00:00:00 2001
From: "github-actions[bot]" <github-actions@github.com>
Date: Thu, 1 Dec 2022 20:05:14 +0000
Subject: [PATCH 0944/1420] Release preparation for version 2.11.5

---
 cpp/ql/lib/CHANGELOG.md                                       | 4 ++++
 cpp/ql/lib/change-notes/released/0.4.5.md                     | 3 +++
 cpp/ql/lib/codeql-pack.release.yml                            | 2 +-
 cpp/ql/lib/qlpack.yml                                         | 2 +-
 cpp/ql/src/CHANGELOG.md                                       | 4 ++++
 cpp/ql/src/change-notes/released/0.4.5.md                     | 3 +++
 cpp/ql/src/codeql-pack.release.yml                            | 2 +-
 cpp/ql/src/qlpack.yml                                         | 2 +-
 csharp/ql/campaigns/Solorigate/lib/CHANGELOG.md               | 4 ++++
 .../campaigns/Solorigate/lib/change-notes/released/1.3.5.md   | 3 +++
 csharp/ql/campaigns/Solorigate/lib/codeql-pack.release.yml    | 2 +-
 csharp/ql/campaigns/Solorigate/lib/qlpack.yml                 | 2 +-
 csharp/ql/campaigns/Solorigate/src/CHANGELOG.md               | 4 ++++
 .../campaigns/Solorigate/src/change-notes/released/1.3.5.md   | 3 +++
 csharp/ql/campaigns/Solorigate/src/codeql-pack.release.yml    | 2 +-
 csharp/ql/campaigns/Solorigate/src/qlpack.yml                 | 2 +-
 csharp/ql/lib/CHANGELOG.md                                    | 4 ++++
 csharp/ql/lib/change-notes/released/0.4.5.md                  | 3 +++
 csharp/ql/lib/codeql-pack.release.yml                         | 2 +-
 csharp/ql/lib/qlpack.yml                                      | 2 +-
 csharp/ql/src/CHANGELOG.md                                    | 4 ++++
 csharp/ql/src/change-notes/released/0.4.5.md                  | 3 +++
 csharp/ql/src/codeql-pack.release.yml                         | 2 +-
 csharp/ql/src/qlpack.yml                                      | 2 +-
 go/ql/lib/CHANGELOG.md                                        | 4 ++++
 go/ql/lib/change-notes/released/0.3.5.md                      | 3 +++
 go/ql/lib/codeql-pack.release.yml                             | 2 +-
 go/ql/lib/qlpack.yml                                          | 2 +-
 go/ql/src/CHANGELOG.md                                        | 4 ++++
 go/ql/src/change-notes/released/0.3.5.md                      | 3 +++
 go/ql/src/codeql-pack.release.yml                             | 2 +-
 go/ql/src/qlpack.yml                                          | 2 +-
 java/ql/lib/CHANGELOG.md                                      | 4 ++++
 java/ql/lib/change-notes/released/0.4.5.md                    | 3 +++
 java/ql/lib/codeql-pack.release.yml                           | 2 +-
 java/ql/lib/qlpack.yml                                        | 2 +-
 java/ql/src/CHANGELOG.md                                      | 4 ++++
 java/ql/src/change-notes/released/0.4.5.md                    | 3 +++
 java/ql/src/codeql-pack.release.yml                           | 2 +-
 java/ql/src/qlpack.yml                                        | 2 +-
 javascript/ql/lib/CHANGELOG.md                                | 4 ++++
 javascript/ql/lib/change-notes/released/0.3.5.md              | 3 +++
 javascript/ql/lib/codeql-pack.release.yml                     | 2 +-
 javascript/ql/lib/qlpack.yml                                  | 2 +-
 javascript/ql/src/CHANGELOG.md                                | 4 ++++
 javascript/ql/src/change-notes/released/0.4.5.md              | 3 +++
 javascript/ql/src/codeql-pack.release.yml                     | 2 +-
 javascript/ql/src/qlpack.yml                                  | 2 +-
 misc/suite-helpers/CHANGELOG.md                               | 4 ++++
 misc/suite-helpers/change-notes/released/0.3.5.md             | 3 +++
 misc/suite-helpers/codeql-pack.release.yml                    | 2 +-
 misc/suite-helpers/qlpack.yml                                 | 2 +-
 python/ql/lib/CHANGELOG.md                                    | 4 ++++
 python/ql/lib/change-notes/released/0.6.5.md                  | 3 +++
 python/ql/lib/codeql-pack.release.yml                         | 2 +-
 python/ql/lib/qlpack.yml                                      | 2 +-
 python/ql/src/CHANGELOG.md                                    | 4 ++++
 python/ql/src/change-notes/released/0.5.5.md                  | 3 +++
 python/ql/src/codeql-pack.release.yml                         | 2 +-
 python/ql/src/qlpack.yml                                      | 2 +-
 ruby/ql/lib/CHANGELOG.md                                      | 4 ++++
 ruby/ql/lib/change-notes/released/0.4.5.md                    | 3 +++
 ruby/ql/lib/codeql-pack.release.yml                           | 2 +-
 ruby/ql/lib/qlpack.yml                                        | 2 +-
 ruby/ql/src/CHANGELOG.md                                      | 4 ++++
 ruby/ql/src/change-notes/released/0.4.5.md                    | 3 +++
 ruby/ql/src/codeql-pack.release.yml                           | 2 +-
 ruby/ql/src/qlpack.yml                                        | 2 +-
 shared/regex/CHANGELOG.md                                     | 4 ++++
 shared/regex/change-notes/released/0.0.2.md                   | 3 +++
 shared/regex/codeql-pack.release.yml                          | 2 +-
 shared/regex/qlpack.yml                                       | 2 +-
 shared/ssa/CHANGELOG.md                                       | 4 ++++
 shared/ssa/change-notes/released/0.0.6.md                     | 3 +++
 shared/ssa/codeql-pack.release.yml                            | 2 +-
 shared/ssa/qlpack.yml                                         | 2 +-
 shared/typos/CHANGELOG.md                                     | 4 ++++
 shared/typos/change-notes/released/0.0.6.md                   | 3 +++
 shared/typos/codeql-pack.release.yml                          | 2 +-
 shared/typos/qlpack.yml                                       | 2 +-
 80 files changed, 180 insertions(+), 40 deletions(-)
 create mode 100644 cpp/ql/lib/change-notes/released/0.4.5.md
 create mode 100644 cpp/ql/src/change-notes/released/0.4.5.md
 create mode 100644 csharp/ql/campaigns/Solorigate/lib/change-notes/released/1.3.5.md
 create mode 100644 csharp/ql/campaigns/Solorigate/src/change-notes/released/1.3.5.md
 create mode 100644 csharp/ql/lib/change-notes/released/0.4.5.md
 create mode 100644 csharp/ql/src/change-notes/released/0.4.5.md
 create mode 100644 go/ql/lib/change-notes/released/0.3.5.md
 create mode 100644 go/ql/src/change-notes/released/0.3.5.md
 create mode 100644 java/ql/lib/change-notes/released/0.4.5.md
 create mode 100644 java/ql/src/change-notes/released/0.4.5.md
 create mode 100644 javascript/ql/lib/change-notes/released/0.3.5.md
 create mode 100644 javascript/ql/src/change-notes/released/0.4.5.md
 create mode 100644 misc/suite-helpers/change-notes/released/0.3.5.md
 create mode 100644 python/ql/lib/change-notes/released/0.6.5.md
 create mode 100644 python/ql/src/change-notes/released/0.5.5.md
 create mode 100644 ruby/ql/lib/change-notes/released/0.4.5.md
 create mode 100644 ruby/ql/src/change-notes/released/0.4.5.md
 create mode 100644 shared/regex/change-notes/released/0.0.2.md
 create mode 100644 shared/ssa/change-notes/released/0.0.6.md
 create mode 100644 shared/typos/change-notes/released/0.0.6.md

diff --git a/cpp/ql/lib/CHANGELOG.md b/cpp/ql/lib/CHANGELOG.md
index 30a996fdba6..132d1bf3537 100644
--- a/cpp/ql/lib/CHANGELOG.md
+++ b/cpp/ql/lib/CHANGELOG.md
@@ -1,3 +1,7 @@
+## 0.4.5
+
+No user-facing changes.
+
 ## 0.4.4
 
 No user-facing changes.
diff --git a/cpp/ql/lib/change-notes/released/0.4.5.md b/cpp/ql/lib/change-notes/released/0.4.5.md
new file mode 100644
index 00000000000..7ba9b2e8ade
--- /dev/null
+++ b/cpp/ql/lib/change-notes/released/0.4.5.md
@@ -0,0 +1,3 @@
+## 0.4.5
+
+No user-facing changes.
diff --git a/cpp/ql/lib/codeql-pack.release.yml b/cpp/ql/lib/codeql-pack.release.yml
index e9b57993a01..466cd01cf4e 100644
--- a/cpp/ql/lib/codeql-pack.release.yml
+++ b/cpp/ql/lib/codeql-pack.release.yml
@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 0.4.4
+lastReleaseVersion: 0.4.5
diff --git a/cpp/ql/lib/qlpack.yml b/cpp/ql/lib/qlpack.yml
index 4e0b86be561..94e33167971 100644
--- a/cpp/ql/lib/qlpack.yml
+++ b/cpp/ql/lib/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/cpp-all
-version: 0.4.5-dev
+version: 0.4.5
 groups: cpp
 dbscheme: semmlecode.cpp.dbscheme
 extractor: cpp
diff --git a/cpp/ql/src/CHANGELOG.md b/cpp/ql/src/CHANGELOG.md
index 5546105176e..c50e54bd80f 100644
--- a/cpp/ql/src/CHANGELOG.md
+++ b/cpp/ql/src/CHANGELOG.md
@@ -1,3 +1,7 @@
+## 0.4.5
+
+No user-facing changes.
+
 ## 0.4.4
 
 No user-facing changes.
diff --git a/cpp/ql/src/change-notes/released/0.4.5.md b/cpp/ql/src/change-notes/released/0.4.5.md
new file mode 100644
index 00000000000..7ba9b2e8ade
--- /dev/null
+++ b/cpp/ql/src/change-notes/released/0.4.5.md
@@ -0,0 +1,3 @@
+## 0.4.5
+
+No user-facing changes.
diff --git a/cpp/ql/src/codeql-pack.release.yml b/cpp/ql/src/codeql-pack.release.yml
index e9b57993a01..466cd01cf4e 100644
--- a/cpp/ql/src/codeql-pack.release.yml
+++ b/cpp/ql/src/codeql-pack.release.yml
@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 0.4.4
+lastReleaseVersion: 0.4.5
diff --git a/cpp/ql/src/qlpack.yml b/cpp/ql/src/qlpack.yml
index 75602332e29..9e95a399ad6 100644
--- a/cpp/ql/src/qlpack.yml
+++ b/cpp/ql/src/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/cpp-queries
-version: 0.4.5-dev
+version: 0.4.5
 groups: 
   - cpp
   - queries
diff --git a/csharp/ql/campaigns/Solorigate/lib/CHANGELOG.md b/csharp/ql/campaigns/Solorigate/lib/CHANGELOG.md
index 4aa822f9369..d34f03b0e37 100644
--- a/csharp/ql/campaigns/Solorigate/lib/CHANGELOG.md
+++ b/csharp/ql/campaigns/Solorigate/lib/CHANGELOG.md
@@ -1,3 +1,7 @@
+## 1.3.5
+
+No user-facing changes.
+
 ## 1.3.4
 
 No user-facing changes.
diff --git a/csharp/ql/campaigns/Solorigate/lib/change-notes/released/1.3.5.md b/csharp/ql/campaigns/Solorigate/lib/change-notes/released/1.3.5.md
new file mode 100644
index 00000000000..7f3c47d2ca5
--- /dev/null
+++ b/csharp/ql/campaigns/Solorigate/lib/change-notes/released/1.3.5.md
@@ -0,0 +1,3 @@
+## 1.3.5
+
+No user-facing changes.
diff --git a/csharp/ql/campaigns/Solorigate/lib/codeql-pack.release.yml b/csharp/ql/campaigns/Solorigate/lib/codeql-pack.release.yml
index 8263ddf2c8b..1e1845ea66d 100644
--- a/csharp/ql/campaigns/Solorigate/lib/codeql-pack.release.yml
+++ b/csharp/ql/campaigns/Solorigate/lib/codeql-pack.release.yml
@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 1.3.4
+lastReleaseVersion: 1.3.5
diff --git a/csharp/ql/campaigns/Solorigate/lib/qlpack.yml b/csharp/ql/campaigns/Solorigate/lib/qlpack.yml
index 3b918b3442d..7aacb4b0081 100644
--- a/csharp/ql/campaigns/Solorigate/lib/qlpack.yml
+++ b/csharp/ql/campaigns/Solorigate/lib/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/csharp-solorigate-all
-version: 1.3.5-dev
+version: 1.3.5
 groups:
     - csharp
     - solorigate
diff --git a/csharp/ql/campaigns/Solorigate/src/CHANGELOG.md b/csharp/ql/campaigns/Solorigate/src/CHANGELOG.md
index 4aa822f9369..d34f03b0e37 100644
--- a/csharp/ql/campaigns/Solorigate/src/CHANGELOG.md
+++ b/csharp/ql/campaigns/Solorigate/src/CHANGELOG.md
@@ -1,3 +1,7 @@
+## 1.3.5
+
+No user-facing changes.
+
 ## 1.3.4
 
 No user-facing changes.
diff --git a/csharp/ql/campaigns/Solorigate/src/change-notes/released/1.3.5.md b/csharp/ql/campaigns/Solorigate/src/change-notes/released/1.3.5.md
new file mode 100644
index 00000000000..7f3c47d2ca5
--- /dev/null
+++ b/csharp/ql/campaigns/Solorigate/src/change-notes/released/1.3.5.md
@@ -0,0 +1,3 @@
+## 1.3.5
+
+No user-facing changes.
diff --git a/csharp/ql/campaigns/Solorigate/src/codeql-pack.release.yml b/csharp/ql/campaigns/Solorigate/src/codeql-pack.release.yml
index 8263ddf2c8b..1e1845ea66d 100644
--- a/csharp/ql/campaigns/Solorigate/src/codeql-pack.release.yml
+++ b/csharp/ql/campaigns/Solorigate/src/codeql-pack.release.yml
@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 1.3.4
+lastReleaseVersion: 1.3.5
diff --git a/csharp/ql/campaigns/Solorigate/src/qlpack.yml b/csharp/ql/campaigns/Solorigate/src/qlpack.yml
index 18101db5518..0fc8cd692f6 100644
--- a/csharp/ql/campaigns/Solorigate/src/qlpack.yml
+++ b/csharp/ql/campaigns/Solorigate/src/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/csharp-solorigate-queries
-version: 1.3.5-dev
+version: 1.3.5
 groups:
     - csharp
     - solorigate
diff --git a/csharp/ql/lib/CHANGELOG.md b/csharp/ql/lib/CHANGELOG.md
index 265b1a3183d..438927d036b 100644
--- a/csharp/ql/lib/CHANGELOG.md
+++ b/csharp/ql/lib/CHANGELOG.md
@@ -1,3 +1,7 @@
+## 0.4.5
+
+No user-facing changes.
+
 ## 0.4.4
 
 ### Minor Analysis Improvements
diff --git a/csharp/ql/lib/change-notes/released/0.4.5.md b/csharp/ql/lib/change-notes/released/0.4.5.md
new file mode 100644
index 00000000000..7ba9b2e8ade
--- /dev/null
+++ b/csharp/ql/lib/change-notes/released/0.4.5.md
@@ -0,0 +1,3 @@
+## 0.4.5
+
+No user-facing changes.
diff --git a/csharp/ql/lib/codeql-pack.release.yml b/csharp/ql/lib/codeql-pack.release.yml
index e9b57993a01..466cd01cf4e 100644
--- a/csharp/ql/lib/codeql-pack.release.yml
+++ b/csharp/ql/lib/codeql-pack.release.yml
@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 0.4.4
+lastReleaseVersion: 0.4.5
diff --git a/csharp/ql/lib/qlpack.yml b/csharp/ql/lib/qlpack.yml
index 5103c8f0ab7..1b379be53cf 100644
--- a/csharp/ql/lib/qlpack.yml
+++ b/csharp/ql/lib/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/csharp-all
-version: 0.4.5-dev
+version: 0.4.5
 groups: csharp
 dbscheme: semmlecode.csharp.dbscheme
 extractor: csharp
diff --git a/csharp/ql/src/CHANGELOG.md b/csharp/ql/src/CHANGELOG.md
index 486c21a1125..57d44189f70 100644
--- a/csharp/ql/src/CHANGELOG.md
+++ b/csharp/ql/src/CHANGELOG.md
@@ -1,3 +1,7 @@
+## 0.4.5
+
+No user-facing changes.
+
 ## 0.4.4
 
 No user-facing changes.
diff --git a/csharp/ql/src/change-notes/released/0.4.5.md b/csharp/ql/src/change-notes/released/0.4.5.md
new file mode 100644
index 00000000000..7ba9b2e8ade
--- /dev/null
+++ b/csharp/ql/src/change-notes/released/0.4.5.md
@@ -0,0 +1,3 @@
+## 0.4.5
+
+No user-facing changes.
diff --git a/csharp/ql/src/codeql-pack.release.yml b/csharp/ql/src/codeql-pack.release.yml
index e9b57993a01..466cd01cf4e 100644
--- a/csharp/ql/src/codeql-pack.release.yml
+++ b/csharp/ql/src/codeql-pack.release.yml
@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 0.4.4
+lastReleaseVersion: 0.4.5
diff --git a/csharp/ql/src/qlpack.yml b/csharp/ql/src/qlpack.yml
index e455b240f04..a536596e2f3 100644
--- a/csharp/ql/src/qlpack.yml
+++ b/csharp/ql/src/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/csharp-queries
-version: 0.4.5-dev
+version: 0.4.5
 groups: 
   - csharp
   - queries
diff --git a/go/ql/lib/CHANGELOG.md b/go/ql/lib/CHANGELOG.md
index a5f5d96020a..a24d1c5919b 100644
--- a/go/ql/lib/CHANGELOG.md
+++ b/go/ql/lib/CHANGELOG.md
@@ -1,3 +1,7 @@
+## 0.3.5
+
+No user-facing changes.
+
 ## 0.3.4
 
 No user-facing changes.
diff --git a/go/ql/lib/change-notes/released/0.3.5.md b/go/ql/lib/change-notes/released/0.3.5.md
new file mode 100644
index 00000000000..7a86712e637
--- /dev/null
+++ b/go/ql/lib/change-notes/released/0.3.5.md
@@ -0,0 +1,3 @@
+## 0.3.5
+
+No user-facing changes.
diff --git a/go/ql/lib/codeql-pack.release.yml b/go/ql/lib/codeql-pack.release.yml
index 5ed15c24b9c..468917f2543 100644
--- a/go/ql/lib/codeql-pack.release.yml
+++ b/go/ql/lib/codeql-pack.release.yml
@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 0.3.4
+lastReleaseVersion: 0.3.5
diff --git a/go/ql/lib/qlpack.yml b/go/ql/lib/qlpack.yml
index 823bb20f97b..30fe0c11015 100644
--- a/go/ql/lib/qlpack.yml
+++ b/go/ql/lib/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/go-all
-version: 0.3.5-dev
+version: 0.3.5
 groups: go
 dbscheme: go.dbscheme
 extractor: go
diff --git a/go/ql/src/CHANGELOG.md b/go/ql/src/CHANGELOG.md
index f74e3c23d7c..0ab2f98312a 100644
--- a/go/ql/src/CHANGELOG.md
+++ b/go/ql/src/CHANGELOG.md
@@ -1,3 +1,7 @@
+## 0.3.5
+
+No user-facing changes.
+
 ## 0.3.4
 
 No user-facing changes.
diff --git a/go/ql/src/change-notes/released/0.3.5.md b/go/ql/src/change-notes/released/0.3.5.md
new file mode 100644
index 00000000000..7a86712e637
--- /dev/null
+++ b/go/ql/src/change-notes/released/0.3.5.md
@@ -0,0 +1,3 @@
+## 0.3.5
+
+No user-facing changes.
diff --git a/go/ql/src/codeql-pack.release.yml b/go/ql/src/codeql-pack.release.yml
index 5ed15c24b9c..468917f2543 100644
--- a/go/ql/src/codeql-pack.release.yml
+++ b/go/ql/src/codeql-pack.release.yml
@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 0.3.4
+lastReleaseVersion: 0.3.5
diff --git a/go/ql/src/qlpack.yml b/go/ql/src/qlpack.yml
index 258d6809c80..995462d15fd 100644
--- a/go/ql/src/qlpack.yml
+++ b/go/ql/src/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/go-queries
-version: 0.3.5-dev
+version: 0.3.5
 groups:
   - go
   - queries
diff --git a/java/ql/lib/CHANGELOG.md b/java/ql/lib/CHANGELOG.md
index 32632d9ea68..56dfcebfb1f 100644
--- a/java/ql/lib/CHANGELOG.md
+++ b/java/ql/lib/CHANGELOG.md
@@ -1,3 +1,7 @@
+## 0.4.5
+
+No user-facing changes.
+
 ## 0.4.4
 
 ### New Features
diff --git a/java/ql/lib/change-notes/released/0.4.5.md b/java/ql/lib/change-notes/released/0.4.5.md
new file mode 100644
index 00000000000..7ba9b2e8ade
--- /dev/null
+++ b/java/ql/lib/change-notes/released/0.4.5.md
@@ -0,0 +1,3 @@
+## 0.4.5
+
+No user-facing changes.
diff --git a/java/ql/lib/codeql-pack.release.yml b/java/ql/lib/codeql-pack.release.yml
index e9b57993a01..466cd01cf4e 100644
--- a/java/ql/lib/codeql-pack.release.yml
+++ b/java/ql/lib/codeql-pack.release.yml
@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 0.4.4
+lastReleaseVersion: 0.4.5
diff --git a/java/ql/lib/qlpack.yml b/java/ql/lib/qlpack.yml
index dfab979e9bd..47670ae0024 100644
--- a/java/ql/lib/qlpack.yml
+++ b/java/ql/lib/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/java-all
-version: 0.4.5-dev
+version: 0.4.5
 groups: java
 dbscheme: config/semmlecode.dbscheme
 extractor: java
diff --git a/java/ql/src/CHANGELOG.md b/java/ql/src/CHANGELOG.md
index 8bbe06cf3fe..5de970b8981 100644
--- a/java/ql/src/CHANGELOG.md
+++ b/java/ql/src/CHANGELOG.md
@@ -1,3 +1,7 @@
+## 0.4.5
+
+No user-facing changes.
+
 ## 0.4.4
 
 ### New Queries
diff --git a/java/ql/src/change-notes/released/0.4.5.md b/java/ql/src/change-notes/released/0.4.5.md
new file mode 100644
index 00000000000..7ba9b2e8ade
--- /dev/null
+++ b/java/ql/src/change-notes/released/0.4.5.md
@@ -0,0 +1,3 @@
+## 0.4.5
+
+No user-facing changes.
diff --git a/java/ql/src/codeql-pack.release.yml b/java/ql/src/codeql-pack.release.yml
index e9b57993a01..466cd01cf4e 100644
--- a/java/ql/src/codeql-pack.release.yml
+++ b/java/ql/src/codeql-pack.release.yml
@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 0.4.4
+lastReleaseVersion: 0.4.5
diff --git a/java/ql/src/qlpack.yml b/java/ql/src/qlpack.yml
index 50d76873114..4ca619f75d1 100644
--- a/java/ql/src/qlpack.yml
+++ b/java/ql/src/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/java-queries
-version: 0.4.5-dev
+version: 0.4.5
 groups: 
   - java
   - queries
diff --git a/javascript/ql/lib/CHANGELOG.md b/javascript/ql/lib/CHANGELOG.md
index 7bf9f7f1db0..7c3e43e8a0a 100644
--- a/javascript/ql/lib/CHANGELOG.md
+++ b/javascript/ql/lib/CHANGELOG.md
@@ -1,3 +1,7 @@
+## 0.3.5
+
+No user-facing changes.
+
 ## 0.3.4
 
 ### Major Analysis Improvements
diff --git a/javascript/ql/lib/change-notes/released/0.3.5.md b/javascript/ql/lib/change-notes/released/0.3.5.md
new file mode 100644
index 00000000000..7a86712e637
--- /dev/null
+++ b/javascript/ql/lib/change-notes/released/0.3.5.md
@@ -0,0 +1,3 @@
+## 0.3.5
+
+No user-facing changes.
diff --git a/javascript/ql/lib/codeql-pack.release.yml b/javascript/ql/lib/codeql-pack.release.yml
index 5ed15c24b9c..468917f2543 100644
--- a/javascript/ql/lib/codeql-pack.release.yml
+++ b/javascript/ql/lib/codeql-pack.release.yml
@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 0.3.4
+lastReleaseVersion: 0.3.5
diff --git a/javascript/ql/lib/qlpack.yml b/javascript/ql/lib/qlpack.yml
index fed1085652e..b24926f5b04 100644
--- a/javascript/ql/lib/qlpack.yml
+++ b/javascript/ql/lib/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/javascript-all
-version: 0.3.5-dev
+version: 0.3.5
 groups: javascript
 dbscheme: semmlecode.javascript.dbscheme
 extractor: javascript
diff --git a/javascript/ql/src/CHANGELOG.md b/javascript/ql/src/CHANGELOG.md
index fe221bce7d3..e15a58fe74d 100644
--- a/javascript/ql/src/CHANGELOG.md
+++ b/javascript/ql/src/CHANGELOG.md
@@ -1,3 +1,7 @@
+## 0.4.5
+
+No user-facing changes.
+
 ## 0.4.4
 
 ### Minor Analysis Improvements
diff --git a/javascript/ql/src/change-notes/released/0.4.5.md b/javascript/ql/src/change-notes/released/0.4.5.md
new file mode 100644
index 00000000000..7ba9b2e8ade
--- /dev/null
+++ b/javascript/ql/src/change-notes/released/0.4.5.md
@@ -0,0 +1,3 @@
+## 0.4.5
+
+No user-facing changes.
diff --git a/javascript/ql/src/codeql-pack.release.yml b/javascript/ql/src/codeql-pack.release.yml
index e9b57993a01..466cd01cf4e 100644
--- a/javascript/ql/src/codeql-pack.release.yml
+++ b/javascript/ql/src/codeql-pack.release.yml
@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 0.4.4
+lastReleaseVersion: 0.4.5
diff --git a/javascript/ql/src/qlpack.yml b/javascript/ql/src/qlpack.yml
index 48d1f2353cf..23845438f76 100644
--- a/javascript/ql/src/qlpack.yml
+++ b/javascript/ql/src/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/javascript-queries
-version: 0.4.5-dev
+version: 0.4.5
 groups: 
   - javascript
   - queries
diff --git a/misc/suite-helpers/CHANGELOG.md b/misc/suite-helpers/CHANGELOG.md
index 9ee41acc1ec..add84a5c77e 100644
--- a/misc/suite-helpers/CHANGELOG.md
+++ b/misc/suite-helpers/CHANGELOG.md
@@ -1,3 +1,7 @@
+## 0.3.5
+
+No user-facing changes.
+
 ## 0.3.4
 
 No user-facing changes.
diff --git a/misc/suite-helpers/change-notes/released/0.3.5.md b/misc/suite-helpers/change-notes/released/0.3.5.md
new file mode 100644
index 00000000000..7a86712e637
--- /dev/null
+++ b/misc/suite-helpers/change-notes/released/0.3.5.md
@@ -0,0 +1,3 @@
+## 0.3.5
+
+No user-facing changes.
diff --git a/misc/suite-helpers/codeql-pack.release.yml b/misc/suite-helpers/codeql-pack.release.yml
index 5ed15c24b9c..468917f2543 100644
--- a/misc/suite-helpers/codeql-pack.release.yml
+++ b/misc/suite-helpers/codeql-pack.release.yml
@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 0.3.4
+lastReleaseVersion: 0.3.5
diff --git a/misc/suite-helpers/qlpack.yml b/misc/suite-helpers/qlpack.yml
index 77c5496ea53..d14026692ee 100644
--- a/misc/suite-helpers/qlpack.yml
+++ b/misc/suite-helpers/qlpack.yml
@@ -1,3 +1,3 @@
 name: codeql/suite-helpers
-version: 0.3.5-dev
+version: 0.3.5
 groups: shared
diff --git a/python/ql/lib/CHANGELOG.md b/python/ql/lib/CHANGELOG.md
index fe35f8daf38..516f4e8307a 100644
--- a/python/ql/lib/CHANGELOG.md
+++ b/python/ql/lib/CHANGELOG.md
@@ -1,3 +1,7 @@
+## 0.6.5
+
+No user-facing changes.
+
 ## 0.6.4
 
 ### Minor Analysis Improvements
diff --git a/python/ql/lib/change-notes/released/0.6.5.md b/python/ql/lib/change-notes/released/0.6.5.md
new file mode 100644
index 00000000000..b2bc387588d
--- /dev/null
+++ b/python/ql/lib/change-notes/released/0.6.5.md
@@ -0,0 +1,3 @@
+## 0.6.5
+
+No user-facing changes.
diff --git a/python/ql/lib/codeql-pack.release.yml b/python/ql/lib/codeql-pack.release.yml
index ced8cf94614..86780fb6148 100644
--- a/python/ql/lib/codeql-pack.release.yml
+++ b/python/ql/lib/codeql-pack.release.yml
@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 0.6.4
+lastReleaseVersion: 0.6.5
diff --git a/python/ql/lib/qlpack.yml b/python/ql/lib/qlpack.yml
index 2cc69948b1d..b6d559c6662 100644
--- a/python/ql/lib/qlpack.yml
+++ b/python/ql/lib/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/python-all
-version: 0.6.5-dev
+version: 0.6.5
 groups: python
 dbscheme: semmlecode.python.dbscheme
 extractor: python
diff --git a/python/ql/src/CHANGELOG.md b/python/ql/src/CHANGELOG.md
index 8c5b1bbc2ed..1bd769949ae 100644
--- a/python/ql/src/CHANGELOG.md
+++ b/python/ql/src/CHANGELOG.md
@@ -1,3 +1,7 @@
+## 0.5.5
+
+No user-facing changes.
+
 ## 0.5.4
 
 No user-facing changes.
diff --git a/python/ql/src/change-notes/released/0.5.5.md b/python/ql/src/change-notes/released/0.5.5.md
new file mode 100644
index 00000000000..5f5ae32c059
--- /dev/null
+++ b/python/ql/src/change-notes/released/0.5.5.md
@@ -0,0 +1,3 @@
+## 0.5.5
+
+No user-facing changes.
diff --git a/python/ql/src/codeql-pack.release.yml b/python/ql/src/codeql-pack.release.yml
index cd3f72e2513..03e491f0899 100644
--- a/python/ql/src/codeql-pack.release.yml
+++ b/python/ql/src/codeql-pack.release.yml
@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 0.5.4
+lastReleaseVersion: 0.5.5
diff --git a/python/ql/src/qlpack.yml b/python/ql/src/qlpack.yml
index c907e7ee1d0..64f2923485f 100644
--- a/python/ql/src/qlpack.yml
+++ b/python/ql/src/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/python-queries
-version: 0.5.5-dev
+version: 0.5.5
 groups: 
   - python
   - queries
diff --git a/ruby/ql/lib/CHANGELOG.md b/ruby/ql/lib/CHANGELOG.md
index 7d0ff13d907..094859ea0dc 100644
--- a/ruby/ql/lib/CHANGELOG.md
+++ b/ruby/ql/lib/CHANGELOG.md
@@ -1,3 +1,7 @@
+## 0.4.5
+
+No user-facing changes.
+
 ## 0.4.4
 
 ### Minor Analysis Improvements
diff --git a/ruby/ql/lib/change-notes/released/0.4.5.md b/ruby/ql/lib/change-notes/released/0.4.5.md
new file mode 100644
index 00000000000..7ba9b2e8ade
--- /dev/null
+++ b/ruby/ql/lib/change-notes/released/0.4.5.md
@@ -0,0 +1,3 @@
+## 0.4.5
+
+No user-facing changes.
diff --git a/ruby/ql/lib/codeql-pack.release.yml b/ruby/ql/lib/codeql-pack.release.yml
index e9b57993a01..466cd01cf4e 100644
--- a/ruby/ql/lib/codeql-pack.release.yml
+++ b/ruby/ql/lib/codeql-pack.release.yml
@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 0.4.4
+lastReleaseVersion: 0.4.5
diff --git a/ruby/ql/lib/qlpack.yml b/ruby/ql/lib/qlpack.yml
index d36fc9c53ea..248e936a52b 100644
--- a/ruby/ql/lib/qlpack.yml
+++ b/ruby/ql/lib/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/ruby-all
-version: 0.4.5-dev
+version: 0.4.5
 groups: ruby
 extractor: ruby
 dbscheme: ruby.dbscheme
diff --git a/ruby/ql/src/CHANGELOG.md b/ruby/ql/src/CHANGELOG.md
index ea095374247..4cedef4f572 100644
--- a/ruby/ql/src/CHANGELOG.md
+++ b/ruby/ql/src/CHANGELOG.md
@@ -1,3 +1,7 @@
+## 0.4.5
+
+No user-facing changes.
+
 ## 0.4.4
 
 ### New Queries
diff --git a/ruby/ql/src/change-notes/released/0.4.5.md b/ruby/ql/src/change-notes/released/0.4.5.md
new file mode 100644
index 00000000000..7ba9b2e8ade
--- /dev/null
+++ b/ruby/ql/src/change-notes/released/0.4.5.md
@@ -0,0 +1,3 @@
+## 0.4.5
+
+No user-facing changes.
diff --git a/ruby/ql/src/codeql-pack.release.yml b/ruby/ql/src/codeql-pack.release.yml
index e9b57993a01..466cd01cf4e 100644
--- a/ruby/ql/src/codeql-pack.release.yml
+++ b/ruby/ql/src/codeql-pack.release.yml
@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 0.4.4
+lastReleaseVersion: 0.4.5
diff --git a/ruby/ql/src/qlpack.yml b/ruby/ql/src/qlpack.yml
index c31d52e4fe7..45845758329 100644
--- a/ruby/ql/src/qlpack.yml
+++ b/ruby/ql/src/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/ruby-queries
-version: 0.4.5-dev
+version: 0.4.5
 groups: 
   - ruby
   - queries
diff --git a/shared/regex/CHANGELOG.md b/shared/regex/CHANGELOG.md
index 68156d29a72..88dc3212e64 100644
--- a/shared/regex/CHANGELOG.md
+++ b/shared/regex/CHANGELOG.md
@@ -1,3 +1,7 @@
+## 0.0.2
+
+No user-facing changes.
+
 ## 0.0.1
 
 ### Minor Analysis Improvements
diff --git a/shared/regex/change-notes/released/0.0.2.md b/shared/regex/change-notes/released/0.0.2.md
new file mode 100644
index 00000000000..5ab250998ed
--- /dev/null
+++ b/shared/regex/change-notes/released/0.0.2.md
@@ -0,0 +1,3 @@
+## 0.0.2
+
+No user-facing changes.
diff --git a/shared/regex/codeql-pack.release.yml b/shared/regex/codeql-pack.release.yml
index c6933410b71..55dc06fbd76 100644
--- a/shared/regex/codeql-pack.release.yml
+++ b/shared/regex/codeql-pack.release.yml
@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 0.0.1
+lastReleaseVersion: 0.0.2
diff --git a/shared/regex/qlpack.yml b/shared/regex/qlpack.yml
index af31de79697..b3c5109ba04 100644
--- a/shared/regex/qlpack.yml
+++ b/shared/regex/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/regex
-version: 0.0.2-dev
+version: 0.0.2
 groups: shared
 library: true
 dependencies:
diff --git a/shared/ssa/CHANGELOG.md b/shared/ssa/CHANGELOG.md
index 76932ab7a0f..e76e9fa4268 100644
--- a/shared/ssa/CHANGELOG.md
+++ b/shared/ssa/CHANGELOG.md
@@ -1,3 +1,7 @@
+## 0.0.6
+
+No user-facing changes.
+
 ## 0.0.5
 
 No user-facing changes.
diff --git a/shared/ssa/change-notes/released/0.0.6.md b/shared/ssa/change-notes/released/0.0.6.md
new file mode 100644
index 00000000000..ccbce856079
--- /dev/null
+++ b/shared/ssa/change-notes/released/0.0.6.md
@@ -0,0 +1,3 @@
+## 0.0.6
+
+No user-facing changes.
diff --git a/shared/ssa/codeql-pack.release.yml b/shared/ssa/codeql-pack.release.yml
index bb45a1ab018..cf398ce02aa 100644
--- a/shared/ssa/codeql-pack.release.yml
+++ b/shared/ssa/codeql-pack.release.yml
@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 0.0.5
+lastReleaseVersion: 0.0.6
diff --git a/shared/ssa/qlpack.yml b/shared/ssa/qlpack.yml
index bf307418089..2d6b5feb739 100644
--- a/shared/ssa/qlpack.yml
+++ b/shared/ssa/qlpack.yml
@@ -1,4 +1,4 @@
 name: codeql/ssa
-version: 0.0.6-dev
+version: 0.0.6
 groups: shared
 library: true
diff --git a/shared/typos/CHANGELOG.md b/shared/typos/CHANGELOG.md
index 89e542713a7..1d2195d28a7 100644
--- a/shared/typos/CHANGELOG.md
+++ b/shared/typos/CHANGELOG.md
@@ -1,3 +1,7 @@
+## 0.0.6
+
+No user-facing changes.
+
 ## 0.0.5
 
 No user-facing changes.
diff --git a/shared/typos/change-notes/released/0.0.6.md b/shared/typos/change-notes/released/0.0.6.md
new file mode 100644
index 00000000000..ccbce856079
--- /dev/null
+++ b/shared/typos/change-notes/released/0.0.6.md
@@ -0,0 +1,3 @@
+## 0.0.6
+
+No user-facing changes.
diff --git a/shared/typos/codeql-pack.release.yml b/shared/typos/codeql-pack.release.yml
index bb45a1ab018..cf398ce02aa 100644
--- a/shared/typos/codeql-pack.release.yml
+++ b/shared/typos/codeql-pack.release.yml
@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 0.0.5
+lastReleaseVersion: 0.0.6
diff --git a/shared/typos/qlpack.yml b/shared/typos/qlpack.yml
index 4d0a7ddae81..a1a8dba9702 100644
--- a/shared/typos/qlpack.yml
+++ b/shared/typos/qlpack.yml
@@ -1,4 +1,4 @@
 name: codeql/typos
-version: 0.0.6-dev
+version: 0.0.6
 groups: shared
 library: true

From b789534b6c0b6c34c201128cb09fc451870ab945 Mon Sep 17 00:00:00 2001
From: Jami Cogswell <jcogs33@Jamis-MacBook-Pro.local>
Date: Thu, 1 Dec 2022 15:11:16 -0500
Subject: [PATCH 0945/1420] add csharp tests

---
 .../SupportedExternalApis.cs                  | 48 +++++++++++++++++++
 .../SupportedExternalApis.expected            | 11 +++++
 .../SupportedExternalApis.qlref               |  1 +
 .../Telemetry/SupportedExternalApis/options   |  2 +
 4 files changed, 62 insertions(+)
 create mode 100644 csharp/ql/test/query-tests/Telemetry/SupportedExternalApis/SupportedExternalApis.cs
 create mode 100644 csharp/ql/test/query-tests/Telemetry/SupportedExternalApis/SupportedExternalApis.expected
 create mode 100644 csharp/ql/test/query-tests/Telemetry/SupportedExternalApis/SupportedExternalApis.qlref
 create mode 100644 csharp/ql/test/query-tests/Telemetry/SupportedExternalApis/options

diff --git a/csharp/ql/test/query-tests/Telemetry/SupportedExternalApis/SupportedExternalApis.cs b/csharp/ql/test/query-tests/Telemetry/SupportedExternalApis/SupportedExternalApis.cs
new file mode 100644
index 00000000000..6231ff6f61c
--- /dev/null
+++ b/csharp/ql/test/query-tests/Telemetry/SupportedExternalApis/SupportedExternalApis.cs
@@ -0,0 +1,48 @@
+using System;
+using System.Collections.Generic;
+using System.Web;
+
+public class SupportedExternalApis
+{
+    public void M1()
+    {
+        var l = new List<object>(); // Uninteresting parameterless constructor
+        var o = new object(); // Uninteresting parameterless constructor
+        l.Add(o); // Has flow summary
+        l.Add(o); // Has flow summary
+    }
+
+    public void M2()
+    {
+        var d0 = new DateTime(); // Uninteresting parameterless constructor
+        var next0 = d0.AddYears(30); // Has no flow summary, supported as negative summary
+
+        var d1 = new DateTime(2000, 1, 1); // Interesting constructor, supported as negative summary
+        var next1 = next0.AddDays(3); // Has no flow summary, supported as negative summary
+        var next2 = next1.AddYears(5); // Has no flow summary, supported as negative summary
+    }
+
+    public void M3()
+    {
+        var guid1 = Guid.Parse("{12345678-1234-1234-1234-123456789012}"); // Has no flow summary, supported as negative summary
+    }
+
+     public void M4()
+    {
+        var o = new object(); // Uninteresting parameterless constructor
+        var response = new HttpResponse(); // Uninteresting parameterless constructor
+        response.AddHeader("header", "value"); // Unsupported
+        response.AppendHeader("header", "value"); // Unsupported
+        response.Write(o); // Known sink
+        response.WriteFile("filename"); // Known sink
+        response.Write(o); // Known sink
+    }
+
+     public void M5()
+    {
+        var l1 = Console.ReadLine(); // Known source
+        var l2 = Console.ReadLine(); // Known source
+        Console.SetError(Console.Out); // Has no flow summary, supported as negative summary
+        var x = Console.Read(); // Known source
+    }
+}
diff --git a/csharp/ql/test/query-tests/Telemetry/SupportedExternalApis/SupportedExternalApis.expected b/csharp/ql/test/query-tests/Telemetry/SupportedExternalApis/SupportedExternalApis.expected
new file mode 100644
index 00000000000..f8b6feafb92
--- /dev/null
+++ b/csharp/ql/test/query-tests/Telemetry/SupportedExternalApis/SupportedExternalApis.expected
@@ -0,0 +1,11 @@
+| System#Console.ReadLine() | 2 |
+| System#DateTime.AddYears(System.Int32) | 2 |
+| System.Collections.Generic#List<>.Add(T) | 2 |
+| System.Web#HttpResponse.Write(System.Object) | 2 |
+| System#Console.Read() | 1 |
+| System#Console.SetError(System.IO.TextWriter) | 1 |
+| System#Console.get_Out() | 1 |
+| System#DateTime.AddDays(System.Double) | 1 |
+| System#DateTime.DateTime(System.Int32,System.Int32,System.Int32) | 1 |
+| System#Guid.Parse(System.String) | 1 |
+| System.Web#HttpResponse.WriteFile(System.String) | 1 |
diff --git a/csharp/ql/test/query-tests/Telemetry/SupportedExternalApis/SupportedExternalApis.qlref b/csharp/ql/test/query-tests/Telemetry/SupportedExternalApis/SupportedExternalApis.qlref
new file mode 100644
index 00000000000..2e12499cf62
--- /dev/null
+++ b/csharp/ql/test/query-tests/Telemetry/SupportedExternalApis/SupportedExternalApis.qlref
@@ -0,0 +1 @@
+Telemetry/SupportedExternalApis.ql
diff --git a/csharp/ql/test/query-tests/Telemetry/SupportedExternalApis/options b/csharp/ql/test/query-tests/Telemetry/SupportedExternalApis/options
new file mode 100644
index 00000000000..9bbedebd7a2
--- /dev/null
+++ b/csharp/ql/test/query-tests/Telemetry/SupportedExternalApis/options
@@ -0,0 +1,2 @@
+semmle-extractor-options: /r:System.Collections.Specialized.dll
+semmle-extractor-options: ${testdir}/../../../resources/stubs/System.Web.cs

From aa633412f45fb0a6de162338f2e624ee145c64cd Mon Sep 17 00:00:00 2001
From: Jami Cogswell <jcogs33@Jamis-MacBook-Pro.local>
Date: Thu, 1 Dec 2022 15:25:45 -0500
Subject: [PATCH 0946/1420] add change notes

---
 .../change-notes/2022-12-01-supported-external-apis-query.md  | 4 ++++
 .../change-notes/2022-12-01-supported-external-apis-query.md  | 4 ++++
 2 files changed, 8 insertions(+)
 create mode 100644 csharp/ql/src/change-notes/2022-12-01-supported-external-apis-query.md
 create mode 100644 java/ql/src/change-notes/2022-12-01-supported-external-apis-query.md

diff --git a/csharp/ql/src/change-notes/2022-12-01-supported-external-apis-query.md b/csharp/ql/src/change-notes/2022-12-01-supported-external-apis-query.md
new file mode 100644
index 00000000000..34bf2ef8409
--- /dev/null
+++ b/csharp/ql/src/change-notes/2022-12-01-supported-external-apis-query.md
@@ -0,0 +1,4 @@
+---
+category: newQuery
+---
+* Added a new query, `csharp/telemetry/supported-external-api`, to detect supported 3rd party APIs used in a codebase.
diff --git a/java/ql/src/change-notes/2022-12-01-supported-external-apis-query.md b/java/ql/src/change-notes/2022-12-01-supported-external-apis-query.md
new file mode 100644
index 00000000000..83bfcf96e20
--- /dev/null
+++ b/java/ql/src/change-notes/2022-12-01-supported-external-apis-query.md
@@ -0,0 +1,4 @@
+---
+category: newQuery
+---
+* Added a new query, `java/telemetry/supported-external-api`, to detect supported 3rd party APIs used in a codebase.

From 0e3e849ead716ae734ed9defdce7b00cb73cfea8 Mon Sep 17 00:00:00 2001
From: Jami Cogswell <jcogs33@Jamis-MacBook-Pro.local>
Date: Thu, 1 Dec 2022 15:49:12 -0500
Subject: [PATCH 0947/1420] add negative summary test for java

---
 .../SupportedExternalApis/SupportedExternalApis.expected       | 3 ++-
 .../Telemetry/SupportedExternalApis/SupportedExternalApis.java | 3 +++
 2 files changed, 5 insertions(+), 1 deletion(-)

diff --git a/java/ql/test/query-tests/Telemetry/SupportedExternalApis/SupportedExternalApis.expected b/java/ql/test/query-tests/Telemetry/SupportedExternalApis/SupportedExternalApis.expected
index 6abe5a43232..8a20a6c6c7b 100644
--- a/java/ql/test/query-tests/Telemetry/SupportedExternalApis/SupportedExternalApis.expected
+++ b/java/ql/test/query-tests/Telemetry/SupportedExternalApis/SupportedExternalApis.expected
@@ -1,5 +1,5 @@
+| java.io.File#File(String) | 2 |
 | java.net.URL#URL(String) | 2 |
-| java.io.File#File(String) | 1 |
 | java.io.FileWriter#FileWriter(File) | 1 |
 | java.lang.StringBuilder#append(String) | 1 |
 | java.lang.StringBuilder#toString() | 1 |
@@ -7,3 +7,4 @@
 | java.net.URL#openStream() | 1 |
 | java.net.URLConnection#getInputStream() | 1 |
 | java.util.Map#put(Object,Object) | 1 |
+| org.apache.commons.io.FileUtils#deleteDirectory(File) | 1 |
diff --git a/java/ql/test/query-tests/Telemetry/SupportedExternalApis/SupportedExternalApis.java b/java/ql/test/query-tests/Telemetry/SupportedExternalApis/SupportedExternalApis.java
index ec05018fd21..7dd289acbaa 100644
--- a/java/ql/test/query-tests/Telemetry/SupportedExternalApis/SupportedExternalApis.java
+++ b/java/ql/test/query-tests/Telemetry/SupportedExternalApis/SupportedExternalApis.java
@@ -5,6 +5,7 @@ import java.io.InputStream;
 import java.net.URL;
 import java.io.File;
 import java.io.FileWriter;
+import org.apache.commons.io.FileUtils;
 
 class SupportedExternalApis {
 	public static void main(String[] args) throws Exception {
@@ -22,5 +23,7 @@ class SupportedExternalApis {
 
 		new FileWriter(new File("foo")); // supported sink (FileWriter), supported summary (File)
 		new URL("http://foo").openStream(); // supported sink (openStream), supported summary (URL)
+
+		FileUtils.deleteDirectory(new File("foo")); // supported negative summary (deleteDirectory), supported summary (File)
 	}
 }

From 1e010499661fc6966dc95a082ee876985d84f593 Mon Sep 17 00:00:00 2001
From: Chris Smowton <smowton@github.com>
Date: Thu, 1 Dec 2022 22:03:32 +0000
Subject: [PATCH 0948/1420] Revert testing with experimental `go list` usage

---
 .github/workflows/go-tests.yml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/go-tests.yml b/.github/workflows/go-tests.yml
index 208033f1dc1..685c28cf3e0 100644
--- a/.github/workflows/go-tests.yml
+++ b/.github/workflows/go-tests.yml
@@ -68,4 +68,4 @@ jobs:
       - name: Test
         run: |
           cd go
-          env CODEQL_EXTRACTOR_GO_FAST_PACKAGE_INFO=1 make test cache="${{ steps.query-cache.outputs.cache-dir }}"
+          make test cache="${{ steps.query-cache.outputs.cache-dir }}"

From c145678323ab8badf712c9fd974c7678b2a8c8df Mon Sep 17 00:00:00 2001
From: Michael Nebel <michaelnebel@github.com>
Date: Fri, 2 Dec 2022 09:46:39 +0100
Subject: [PATCH 0949/1420] Java: Address review comments.

---
 .../src/utils/flowtestcasegenerator/GenerateFlowTestCase.py   | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/java/ql/src/utils/flowtestcasegenerator/GenerateFlowTestCase.py b/java/ql/src/utils/flowtestcasegenerator/GenerateFlowTestCase.py
index c3a590b1ccc..64a86505db4 100755
--- a/java/ql/src/utils/flowtestcasegenerator/GenerateFlowTestCase.py
+++ b/java/ql/src/utils/flowtestcasegenerator/GenerateFlowTestCase.py
@@ -131,7 +131,7 @@ queryDir = os.path.join(workDir, "query")
 os.makedirs(queryDir)
 qlFile = os.path.join(queryDir, "gen.ql")
 with open(os.path.join(queryDir, "qlpack.yml"), "w") as f:
-    f.write(f"""name: test-generation-query
+    f.write("""name: test-generation-query
 version: 0.0.0
 dependencies:
   codeql/java-all: '*'
@@ -233,7 +233,7 @@ if len(supportModelRows) != 0:
         f.write(dataextensions)
     # Make a qlpack file such that the extension will be picked up
     with open(resultPack, "w") as f:
-        f.write(f"""name: example-test-pack
+        f.write("""name: example-test-pack
 version: 0.0.0
 extractor: java
 dependencies:

From 01307e1255cb81bd7a70654611250cfd37015650 Mon Sep 17 00:00:00 2001
From: Michael Nebel <michaelnebel@github.com>
Date: Fri, 2 Dec 2022 09:47:14 +0100
Subject: [PATCH 0950/1420] Update
 java/ql/src/utils/flowtestcasegenerator/FlowTestCase.qll

Co-authored-by: Tony Torralba <atorralba@users.noreply.github.com>
---
 java/ql/src/utils/flowtestcasegenerator/FlowTestCase.qll | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/java/ql/src/utils/flowtestcasegenerator/FlowTestCase.qll b/java/ql/src/utils/flowtestcasegenerator/FlowTestCase.qll
index 0339ca4f233..f90bbf2c908 100644
--- a/java/ql/src/utils/flowtestcasegenerator/FlowTestCase.qll
+++ b/java/ql/src/utils/flowtestcasegenerator/FlowTestCase.qll
@@ -12,7 +12,7 @@ private import FlowTestCaseSupportMethods
 
 /**
  * A CSV row to generate tests for. Users should extend this to define which
- * tests to generate. There should already exist a summaries for the rows specified here.
+ * tests to generate. There should already exist summaries for the rows specified here.
  */
 class TargetSummaryModelCsv extends Unit {
   /**

From 73b171eb2bb6482cb0964be67cd0806c821561d9 Mon Sep 17 00:00:00 2001
From: Michael Nebel <michaelnebel@github.com>
Date: Fri, 2 Dec 2022 09:47:28 +0100
Subject: [PATCH 0951/1420] Update
 java/ql/src/utils/flowtestcasegenerator/GenerateFlowTestCase.qll

Co-authored-by: Tony Torralba <atorralba@users.noreply.github.com>
---
 .../ql/src/utils/flowtestcasegenerator/GenerateFlowTestCase.qll | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/java/ql/src/utils/flowtestcasegenerator/GenerateFlowTestCase.qll b/java/ql/src/utils/flowtestcasegenerator/GenerateFlowTestCase.qll
index 2025affabf0..b06d9c60220 100644
--- a/java/ql/src/utils/flowtestcasegenerator/GenerateFlowTestCase.qll
+++ b/java/ql/src/utils/flowtestcasegenerator/GenerateFlowTestCase.qll
@@ -13,7 +13,7 @@ private import FlowTestCaseSupportMethods
 private import FlowTestCaseUtils
 
 /**
- * Gets a CSV row for which a test has been requested, and where there exist a summary, but
+ * Gets a CSV row for which a test has been requested, and where there exists a summary, but
  * nonetheless we can't generate a test case for it, indicating we cannot resolve either the callable
  * spec or an input or output spec.
  */

From e7a48b4c98ee8102415e44db2e8e6d7bd0335ed1 Mon Sep 17 00:00:00 2001
From: Alex Denisov <alexdenisov@github.com>
Date: Thu, 1 Dec 2022 13:49:09 +0100
Subject: [PATCH 0952/1420] Swift: add a test case for symlinks

---
 .../posix-only/symlinks/.gitignore            |  1 +
 .../posix-only/symlinks/Files.expected        |  4 ++++
 .../posix-only/symlinks/Files.ql              |  4 ++++
 .../posix-only/symlinks/main.swift            |  6 ++++++
 .../symlinks/preserve/Package.swift           | 18 +++++++++++++++++
 .../symlinks/preserve/Sources/.gitkeep        |  0
 .../posix-only/symlinks/resolve/Package.swift | 18 +++++++++++++++++
 .../symlinks/resolve/Sources/.gitkeep         |  0
 .../posix-only/symlinks/test.py               | 20 +++++++++++++++++++
 9 files changed, 71 insertions(+)
 create mode 100644 swift/integration-tests/posix-only/symlinks/.gitignore
 create mode 100644 swift/integration-tests/posix-only/symlinks/Files.expected
 create mode 100644 swift/integration-tests/posix-only/symlinks/Files.ql
 create mode 100644 swift/integration-tests/posix-only/symlinks/main.swift
 create mode 100644 swift/integration-tests/posix-only/symlinks/preserve/Package.swift
 create mode 100644 swift/integration-tests/posix-only/symlinks/preserve/Sources/.gitkeep
 create mode 100644 swift/integration-tests/posix-only/symlinks/resolve/Package.swift
 create mode 100644 swift/integration-tests/posix-only/symlinks/resolve/Sources/.gitkeep
 create mode 100644 swift/integration-tests/posix-only/symlinks/test.py

diff --git a/swift/integration-tests/posix-only/symlinks/.gitignore b/swift/integration-tests/posix-only/symlinks/.gitignore
new file mode 100644
index 00000000000..4c9788d145d
--- /dev/null
+++ b/swift/integration-tests/posix-only/symlinks/.gitignore
@@ -0,0 +1 @@
+*/Sources/A.swift
diff --git a/swift/integration-tests/posix-only/symlinks/Files.expected b/swift/integration-tests/posix-only/symlinks/Files.expected
new file mode 100644
index 00000000000..3229e6bd4d9
--- /dev/null
+++ b/swift/integration-tests/posix-only/symlinks/Files.expected
@@ -0,0 +1,4 @@
+| file://:0:0:0:0 |  |
+| main.swift:0:0:0:0 | main.swift |
+| preserve/Package.swift:0:0:0:0 | preserve/Package.swift |
+| resolve/Package.swift:0:0:0:0 | resolve/Package.swift |
diff --git a/swift/integration-tests/posix-only/symlinks/Files.ql b/swift/integration-tests/posix-only/symlinks/Files.ql
new file mode 100644
index 00000000000..9782ea4ce0b
--- /dev/null
+++ b/swift/integration-tests/posix-only/symlinks/Files.ql
@@ -0,0 +1,4 @@
+import swift
+
+from File f
+select f
diff --git a/swift/integration-tests/posix-only/symlinks/main.swift b/swift/integration-tests/posix-only/symlinks/main.swift
new file mode 100644
index 00000000000..b9bf0e5c2a4
--- /dev/null
+++ b/swift/integration-tests/posix-only/symlinks/main.swift
@@ -0,0 +1,6 @@
+public struct preserve {
+    public private(set) var text = "Hello, World!"
+
+    public init() {
+    }
+}
diff --git a/swift/integration-tests/posix-only/symlinks/preserve/Package.swift b/swift/integration-tests/posix-only/symlinks/preserve/Package.swift
new file mode 100644
index 00000000000..e6f1f09de17
--- /dev/null
+++ b/swift/integration-tests/posix-only/symlinks/preserve/Package.swift
@@ -0,0 +1,18 @@
+// swift-tools-version: 5.7
+// The swift-tools-version declares the minimum version of Swift required to build this package.
+
+import PackageDescription
+
+let package = Package(
+    name: "preserve",
+    products: [
+        .library(
+            name: "preserve",
+            targets: ["preserve"]),
+    ],
+    targets: [
+        .target(
+            name: "preserve",
+            path: "Sources"),
+    ]
+)
diff --git a/swift/integration-tests/posix-only/symlinks/preserve/Sources/.gitkeep b/swift/integration-tests/posix-only/symlinks/preserve/Sources/.gitkeep
new file mode 100644
index 00000000000..e69de29bb2d
diff --git a/swift/integration-tests/posix-only/symlinks/resolve/Package.swift b/swift/integration-tests/posix-only/symlinks/resolve/Package.swift
new file mode 100644
index 00000000000..a22a94a5c23
--- /dev/null
+++ b/swift/integration-tests/posix-only/symlinks/resolve/Package.swift
@@ -0,0 +1,18 @@
+// swift-tools-version: 5.7
+// The swift-tools-version declares the minimum version of Swift required to build this package.
+
+import PackageDescription
+
+let package = Package(
+    name: "resolve",
+    products: [
+        .library(
+            name: "resolve",
+            targets: ["resolve"]),
+    ],
+    targets: [
+        .target(
+            name: "resolve",
+            path: "Sources"),
+    ]
+)
diff --git a/swift/integration-tests/posix-only/symlinks/resolve/Sources/.gitkeep b/swift/integration-tests/posix-only/symlinks/resolve/Sources/.gitkeep
new file mode 100644
index 00000000000..e69de29bb2d
diff --git a/swift/integration-tests/posix-only/symlinks/test.py b/swift/integration-tests/posix-only/symlinks/test.py
new file mode 100644
index 00000000000..de96ae22957
--- /dev/null
+++ b/swift/integration-tests/posix-only/symlinks/test.py
@@ -0,0 +1,20 @@
+from create_database_utils import *
+import os
+
+symlinks = ['preserve/Sources/A.swift', 'resolve/Sources/A.swift']
+
+for s in symlinks:
+    try:
+        os.symlink(os.getcwd() + '/main.swift', s)
+    except:
+        pass
+
+run_codeql_database_create([
+    'swift package clean --package-path resolve',
+    'swift build --package-path resolve',
+    'swift package clean --package-path preserve',
+    'env CODEQL_PRESERVE_SYMLINKS=true swift build --package-path preserve'
+], lang='swift', keep_trap=True)
+
+for s in symlinks:
+    os.unlink(s)

From 7a3beac494f31223c274ee4bc0c242afc2636a1a Mon Sep 17 00:00:00 2001
From: Alex Denisov <alexdenisov@github.com>
Date: Thu, 1 Dec 2022 15:29:08 +0100
Subject: [PATCH 0953/1420] Swift: resolve symlinks conditionally

---
 swift/extractor/SwiftExtractor.cpp            | 11 ++----
 swift/extractor/infra/Path.cpp                | 38 +++++++++++++++++++
 swift/extractor/infra/Path.h                  |  7 ++++
 .../infra/SwiftLocationExtractor.cpp          | 18 ++-------
 .../posix-only/symlinks/Files.expected        |  1 +
 5 files changed, 53 insertions(+), 22 deletions(-)
 create mode 100644 swift/extractor/infra/Path.cpp
 create mode 100644 swift/extractor/infra/Path.h

diff --git a/swift/extractor/SwiftExtractor.cpp b/swift/extractor/SwiftExtractor.cpp
index 349943f2869..c9410d2f1f3 100644
--- a/swift/extractor/SwiftExtractor.cpp
+++ b/swift/extractor/SwiftExtractor.cpp
@@ -12,15 +12,12 @@
 #include "swift/extractor/translators/SwiftVisitor.h"
 #include "swift/extractor/TargetTrapFile.h"
 #include "swift/extractor/SwiftBuiltinSymbols.h"
+#include "swift/extractor/infra/Path.h"
 
 using namespace codeql;
 using namespace std::string_literals;
 namespace fs = std::filesystem;
 
-static fs::path toPath(llvm::StringRef s) {
-  return {static_cast<std::string_view>(s)};
-}
-
 static void ensureDirectory(const char* label, const fs::path& dir) {
   std::error_code ec;
   fs::create_directories(dir, ec);
@@ -34,7 +31,7 @@ static void archiveFile(const SwiftExtractorConfiguration& config, swift::Source
   ensureDirectory("TRAP", config.trapDir);
   ensureDirectory("source archive", config.sourceArchiveDir);
 
-  fs::path srcFilePath = fs::absolute(toPath(file.getFilename()));
+  fs::path srcFilePath = codeql::getCodeQLPath(file.getFilename());
   auto dstFilePath = config.sourceArchiveDir;
   dstFilePath += srcFilePath;
 
@@ -60,7 +57,7 @@ static fs::path getFilename(swift::ModuleDecl& module, swift::SourceFile* primar
     // Moreover, pcm files may come from caches located in different directories, but are
     // unambiguously identified by the base file name, so we can discard the absolute directory
     fs::path filename = "/pcms";
-    filename /= toPath(module.getModuleFilename()).filename();
+    filename /= getCodeQLPath(module.getModuleFilename()).filename();
     filename += "-";
     filename += module.getName().str();
     return filename;
@@ -69,7 +66,7 @@ static fs::path getFilename(swift::ModuleDecl& module, swift::SourceFile* primar
     // The Builtin module has an empty filename, let's fix that
     return "/__Builtin__";
   }
-  auto filename = toPath(module.getModuleFilename());
+  auto filename = getCodeQLPath(module.getModuleFilename());
   // there is a special case of a module without an actual filename reporting `<imports>`: in this
   // case we want to avoid the `<>` characters, in case a dirty DB is imported on Windows
   if (filename == "<imports>") {
diff --git a/swift/extractor/infra/Path.cpp b/swift/extractor/infra/Path.cpp
new file mode 100644
index 00000000000..6d54321fcac
--- /dev/null
+++ b/swift/extractor/infra/Path.cpp
@@ -0,0 +1,38 @@
+#include "swift/extractor/infra/Path.h"
+#include <iostream>
+#include <unistd.h>
+
+namespace codeql {
+
+static bool shouldCanonicalize() {
+  auto preserve = getenv("CODEQL_PRESERVE_SYMLINKS");
+  if (preserve && std::string(preserve) == "true") {
+    return false;
+  }
+  preserve = getenv("SEMMLE_PRESERVE_SYMLINKS");
+  if (preserve && std::string(preserve) == "true") {
+    return false;
+  }
+  return true;
+}
+
+std::filesystem::path getCodeQLPath(std::string_view path) {
+  // TODO: this needs more testing
+  // TODO: check canonicalization of names on a case insensitive filesystems
+  std::error_code ec;
+  std::filesystem::path ret = {};
+  static const auto canonicalize = shouldCanonicalize();
+  if (canonicalize) {
+    ret = std::filesystem::canonical(path, ec);
+  } else {
+    ret = std::filesystem::absolute(path, ec);
+  }
+  if (ec) {
+    std::cerr << "Cannot get " << (canonicalize ? "canonical" : "absolute")
+              << " path: " << std::quoted(path) << ": " << ec.message() << "\n";
+    return {};
+  }
+  return ret;
+}
+
+}  // namespace codeql
diff --git a/swift/extractor/infra/Path.h b/swift/extractor/infra/Path.h
new file mode 100644
index 00000000000..09ab7ed1773
--- /dev/null
+++ b/swift/extractor/infra/Path.h
@@ -0,0 +1,7 @@
+#pragma once
+
+#include <filesystem>
+
+namespace codeql {
+std::filesystem::path getCodeQLPath(std::string_view path);
+}
diff --git a/swift/extractor/infra/SwiftLocationExtractor.cpp b/swift/extractor/infra/SwiftLocationExtractor.cpp
index a1b138f1f95..a003519f4ce 100644
--- a/swift/extractor/infra/SwiftLocationExtractor.cpp
+++ b/swift/extractor/infra/SwiftLocationExtractor.cpp
@@ -5,22 +5,10 @@
 #include "swift/extractor/trap/generated/TrapEntries.h"
 #include "swift/extractor/trap/generated/TrapClasses.h"
 #include "swift/extractor/infra/SwiftLocationExtractor.h"
+#include "swift/extractor/infra/Path.h"
 
 using namespace codeql;
 
-static std::filesystem::path getFilePath(std::string_view path) {
-  // TODO: this needs more testing
-  // TODO: check canonicalization of names on a case insensitive filesystems
-  // TODO: make symlink resolution conditional on CODEQL_PRESERVE_SYMLINKS=true
-  std::error_code ec;
-  auto ret = std::filesystem::canonical(path, ec);
-  if (ec) {
-    std::cerr << "Cannot get real path: " << std::quoted(path) << ": " << ec.message() << "\n";
-    return {};
-  }
-  return ret;
-}
-
 void SwiftLocationExtractor::attachLocation(const swift::SourceManager& sourceManager,
                                             swift::SourceLoc start,
                                             swift::SourceLoc end,
@@ -29,7 +17,7 @@ void SwiftLocationExtractor::attachLocation(const swift::SourceManager& sourceMa
     // invalid locations seem to come from entities synthesized by the compiler
     return;
   }
-  auto file = getFilePath(sourceManager.getDisplayNameForLoc(start));
+  auto file = getCodeQLPath(sourceManager.getDisplayNameForLoc(start));
   DbLocation entry{{}};
   entry.file = fetchFileLabel(file);
   std::tie(entry.start_line, entry.start_column) = sourceManager.getLineAndColumnInBuffer(start);
@@ -42,7 +30,7 @@ void SwiftLocationExtractor::attachLocation(const swift::SourceManager& sourceMa
 }
 
 void SwiftLocationExtractor::emitFile(llvm::StringRef path) {
-  fetchFileLabel(getFilePath(path));
+  fetchFileLabel(getCodeQLPath(path));
 }
 
 TrapLabel<FileTag> SwiftLocationExtractor::fetchFileLabel(const std::filesystem::path& file) {
diff --git a/swift/integration-tests/posix-only/symlinks/Files.expected b/swift/integration-tests/posix-only/symlinks/Files.expected
index 3229e6bd4d9..1260184529b 100644
--- a/swift/integration-tests/posix-only/symlinks/Files.expected
+++ b/swift/integration-tests/posix-only/symlinks/Files.expected
@@ -1,4 +1,5 @@
 | file://:0:0:0:0 |  |
 | main.swift:0:0:0:0 | main.swift |
 | preserve/Package.swift:0:0:0:0 | preserve/Package.swift |
+| preserve/Sources/A.swift:0:0:0:0 | preserve/Sources/A.swift |
 | resolve/Package.swift:0:0:0:0 | resolve/Package.swift |

From d2bbb618855c834098625f4796710bd300482cb4 Mon Sep 17 00:00:00 2001
From: Asger F <asgerf@github.com>
Date: Fri, 2 Dec 2022 10:29:30 +0100
Subject: [PATCH 0954/1420] Ruby: update syntax for more models

---
 ruby/ql/lib/codeql/ruby/frameworks/ActiveSupport.qll | 4 ++--
 ruby/ql/lib/codeql/ruby/frameworks/Json.qll          | 4 ++--
 2 files changed, 4 insertions(+), 4 deletions(-)

diff --git a/ruby/ql/lib/codeql/ruby/frameworks/ActiveSupport.qll b/ruby/ql/lib/codeql/ruby/frameworks/ActiveSupport.qll
index d967bfd91ca..8682a256f9b 100644
--- a/ruby/ql/lib/codeql/ruby/frameworks/ActiveSupport.qll
+++ b/ruby/ql/lib/codeql/ruby/frameworks/ActiveSupport.qll
@@ -392,8 +392,8 @@ module ActiveSupport {
       override predicate row(string row) {
         row =
           [
-            "activesupport;;Member[ActiveSupport].Member[JSON].Method[encode,dump];Argument[0];ReturnValue;taint",
-            "activesupport;;Member[ActiveSupport].Member[JSON].Method[decode,load];Argument[0];ReturnValue;taint",
+            "ActiveSupport::JSON!;Method[encode,dump];Argument[0];ReturnValue;taint",
+            "ActiveSupport::JSON!;Method[decode,load];Argument[0];ReturnValue;taint",
           ]
       }
     }
diff --git a/ruby/ql/lib/codeql/ruby/frameworks/Json.qll b/ruby/ql/lib/codeql/ruby/frameworks/Json.qll
index dacb9bf48b7..353d28c34bb 100644
--- a/ruby/ql/lib/codeql/ruby/frameworks/Json.qll
+++ b/ruby/ql/lib/codeql/ruby/frameworks/Json.qll
@@ -14,8 +14,8 @@ module Json {
     override predicate row(string row) {
       row =
         [
-          "json;;Member[JSON].Method[parse,parse!,load,restore];Argument[0];ReturnValue;taint",
-          "json;;Member[JSON].Method[generate,fast_generate,pretty_generate,dump,unparse,fast_unparse];Argument[0];ReturnValue;taint",
+          "JSON!;Method[parse,parse!,load,restore];Argument[0];ReturnValue;taint",
+          "JSON!;Method[generate,fast_generate,pretty_generate,dump,unparse,fast_unparse];Argument[0];ReturnValue;taint",
         ]
     }
   }

From 26908ea281d5b5e6d679bd51be3022a46b2c19af Mon Sep 17 00:00:00 2001
From: Felicity Chapman <felicitymay@github.com>
Date: Fri, 2 Dec 2022 09:36:10 +0000
Subject: [PATCH 0955/1420] Update
 docs/codeql/codeql-language-guides/using-flow-labels-for-precise-data-flow-analysis.rst

Co-authored-by: Steve Guntrip <12534592+stevecat@users.noreply.github.com>
---
 .../using-flow-labels-for-precise-data-flow-analysis.rst        | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/docs/codeql/codeql-language-guides/using-flow-labels-for-precise-data-flow-analysis.rst b/docs/codeql/codeql-language-guides/using-flow-labels-for-precise-data-flow-analysis.rst
index 8088d3970be..597ce491463 100644
--- a/docs/codeql/codeql-language-guides/using-flow-labels-for-precise-data-flow-analysis.rst
+++ b/docs/codeql/codeql-language-guides/using-flow-labels-for-precise-data-flow-analysis.rst
@@ -390,7 +390,7 @@ Some of our standard security queries use flow labels. You can look at their imp
 to get a feeling for how to use flow labels in practice.
 
 In particular, both of the examples mentioned in the section on limitations of basic data flow above
-are from standard security queries that use flow labels. The `Prototype-pollutiing merge call
+are from standard security queries that use flow labels. The `Prototype-polluting merge call
 <https://codeql.github.com/codeql-query-help/javascript/js-prototype-pollution/>`_ query uses two flow labels to distinguish completely
 tainted objects from partially tainted objects. The `Uncontrolled data used in path expression
 <https://codeql.github.com/codeql-query-help/javascript/js-path-injection/>`_ query uses four flow labels to track whether a user-controlled

From 6e98c678699cfc71b52bec850eaf74cb7af2d7fe Mon Sep 17 00:00:00 2001
From: Chris Smowton <smowton@github.com>
Date: Fri, 2 Dec 2022 10:04:53 +0000
Subject: [PATCH 0956/1420] Java: fix syntax error in path-injection example
 fix

---
 java/ql/src/Security/CWE/CWE-022/TaintedPath.java | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/java/ql/src/Security/CWE/CWE-022/TaintedPath.java b/java/ql/src/Security/CWE/CWE-022/TaintedPath.java
index 9246a19dc8d..339640ccc32 100644
--- a/java/ql/src/Security/CWE/CWE-022/TaintedPath.java
+++ b/java/ql/src/Security/CWE/CWE-022/TaintedPath.java
@@ -16,9 +16,9 @@ public void sendUserFileFixed(Socket sock, String user) {
 	// ...
 	
 	// GOOD: remove all dots and directory delimiters from the filename before using
-	String filename = filenameReader.readLine().replaceAll("\.", "").replaceAll("/", "");
+	String filename = filenameReader.readLine().replaceAll("\\.", "").replaceAll("/", "");
 	BufferedReader fileReader = new BufferedReader(
 			new FileReader("/home/" + user + "/" + filename));
 
 	// ...
-}
\ No newline at end of file
+}

From a2459770759fc00d8a556f7ec0a83d7c58f3519c Mon Sep 17 00:00:00 2001
From: Mathias Vorreiter Pedersen <mathiasvp@github.com>
Date: Fri, 2 Dec 2022 08:20:31 +0000
Subject: [PATCH 0957/1420] C++: Change iterator models.

---
 .../cpp/models/implementations/Iterator.qll   | 33 ++++++++++++++++---
 .../models/implementations/StdContainer.qll   | 25 +++++++++++---
 .../cpp/models/implementations/StdString.qll  |  7 ++--
 .../code/cpp/models/interfaces/Iterator.qll   | 14 +++++++-
 4 files changed, 67 insertions(+), 12 deletions(-)

diff --git a/cpp/ql/lib/semmle/code/cpp/models/implementations/Iterator.qll b/cpp/ql/lib/semmle/code/cpp/models/implementations/Iterator.qll
index 2fa9803d053..599b2c47e22 100644
--- a/cpp/ql/lib/semmle/code/cpp/models/implementations/Iterator.qll
+++ b/cpp/ql/lib/semmle/code/cpp/models/implementations/Iterator.qll
@@ -31,7 +31,17 @@ private class IteratorTraits extends Class {
  * `std::iterator_traits` instantiation for it.
  */
 private class IteratorByTraits extends Iterator {
-  IteratorByTraits() { exists(IteratorTraits it | it.getIteratorType() = this) }
+  IteratorTraits trait;
+
+  IteratorByTraits() { trait.getIteratorType() = this }
+
+  override Type getValueType() {
+    exists(TypedefType t |
+      trait.getAMember() = t and
+      t.getName() = "value_type" and
+      result = t.getUnderlyingType()
+    )
+  }
 }
 
 /**
@@ -42,20 +52,27 @@ private class IteratorByTraits extends Iterator {
  */
 private class IteratorByPointer extends Iterator instanceof PointerType {
   IteratorByPointer() { not this instanceof IteratorByTraits }
+
+  override Type getValueType() { result = super.getBaseType() }
 }
 
 /**
  * A type which has the typedefs expected for an iterator.
  */
 private class IteratorByTypedefs extends Iterator, Class {
+  TypedefType valueType;
+
   IteratorByTypedefs() {
     this.getAMember().(TypedefType).hasName("difference_type") and
-    this.getAMember().(TypedefType).hasName("value_type") and
+    valueType = this.getAMember() and
+    valueType.hasName("value_type") and
     this.getAMember().(TypedefType).hasName("pointer") and
     this.getAMember().(TypedefType).hasName("reference") and
     this.getAMember().(TypedefType).hasName("iterator_category") and
     not this.hasQualifiedName(["std", "bsl"], "iterator_traits")
   }
+
+  override Type getValueType() { result = valueType.getUnderlyingType() }
 }
 
 /**
@@ -63,6 +80,8 @@ private class IteratorByTypedefs extends Iterator, Class {
  */
 private class StdIterator extends Iterator, Class {
   StdIterator() { this.hasQualifiedName(["std", "bsl"], "iterator") }
+
+  override Type getValueType() { result = this.getTemplateArgument(1).(Type).getUnderlyingType() }
 }
 
 /**
@@ -166,12 +185,15 @@ private class IteratorSubOperator extends Operator, TaintFunction {
 /**
  * A non-member `operator+=` or `operator-=` function for an iterator type.
  */
-private class IteratorAssignArithmeticOperator extends Operator, DataFlowFunction, TaintFunction {
+class IteratorAssignArithmeticOperator extends Operator {
   IteratorAssignArithmeticOperator() {
     this.hasName(["operator+=", "operator-="]) and
     exists(getIteratorArgumentInput(this, 0))
   }
+}
 
+private class IteratorAssignArithmeticOperatorModel extends IteratorAssignArithmeticOperator,
+  DataFlowFunction, TaintFunction {
   override predicate hasDataFlow(FunctionInput input, FunctionOutput output) {
     input.isParameter(0) and
     output.isReturnValue()
@@ -210,11 +232,14 @@ class IteratorPointerDereferenceMemberOperator extends MemberFunction, TaintFunc
 /**
  * An `operator++` or `operator--` member function for an iterator type.
  */
-private class IteratorCrementMemberOperator extends MemberFunction, DataFlowFunction, TaintFunction {
+class IteratorCrementMemberOperator extends MemberFunction {
   IteratorCrementMemberOperator() {
     this.getClassAndName(["operator++", "operator--"]) instanceof Iterator
   }
+}
 
+private class IteratorCrementMemberOperatorModel extends IteratorCrementMemberOperator,
+  DataFlowFunction, TaintFunction {
   override predicate hasDataFlow(FunctionInput input, FunctionOutput output) {
     input.isQualifierAddress() and
     output.isReturnValue()
diff --git a/cpp/ql/lib/semmle/code/cpp/models/implementations/StdContainer.qll b/cpp/ql/lib/semmle/code/cpp/models/implementations/StdContainer.qll
index 8c531891bcd..9d74f4ac051 100644
--- a/cpp/ql/lib/semmle/code/cpp/models/implementations/StdContainer.qll
+++ b/cpp/ql/lib/semmle/code/cpp/models/implementations/StdContainer.qll
@@ -5,38 +5,53 @@
 import semmle.code.cpp.models.interfaces.Taint
 import semmle.code.cpp.models.interfaces.Iterator
 
+/**
+ * A sequence container template class (for example, `std::vector`) from the
+ * standard library.
+ */
+abstract class StdSequenceContainer extends Class {
+  Type getElementType() { result = this.getTemplateArgument(0) }
+}
+
 /**
  * The `std::array` template class.
  */
-private class Array extends Class {
+private class Array extends StdSequenceContainer {
   Array() { this.hasQualifiedName(["std", "bsl"], "array") }
 }
 
+/**
+ * The `std::string` template class.
+ */
+private class String extends StdSequenceContainer {
+  String() { this.hasQualifiedName(["std", "bsl"], "basic_string") }
+}
+
 /**
  * The `std::deque` template class.
  */
-private class Deque extends Class {
+private class Deque extends StdSequenceContainer {
   Deque() { this.hasQualifiedName(["std", "bsl"], "deque") }
 }
 
 /**
  * The `std::forward_list` template class.
  */
-private class ForwardList extends Class {
+private class ForwardList extends StdSequenceContainer {
   ForwardList() { this.hasQualifiedName(["std", "bsl"], "forward_list") }
 }
 
 /**
  * The `std::list` template class.
  */
-private class List extends Class {
+private class List extends StdSequenceContainer {
   List() { this.hasQualifiedName(["std", "bsl"], "list") }
 }
 
 /**
  * The `std::vector` template class.
  */
-private class Vector extends Class {
+private class Vector extends StdSequenceContainer {
   Vector() { this.hasQualifiedName(["std", "bsl"], "vector") }
 }
 
diff --git a/cpp/ql/lib/semmle/code/cpp/models/implementations/StdString.qll b/cpp/ql/lib/semmle/code/cpp/models/implementations/StdString.qll
index 9ac92597b1a..ee3ae248994 100644
--- a/cpp/ql/lib/semmle/code/cpp/models/implementations/StdString.qll
+++ b/cpp/ql/lib/semmle/code/cpp/models/implementations/StdString.qll
@@ -18,9 +18,12 @@ private class StdBasicString extends ClassTemplateInstantiation {
 /**
  * The `std::basic_string::iterator` declaration.
  */
-private class StdBasicStringIterator extends Iterator, Type {
+private class StdBasicStringIterator extends Type instanceof Iterator {
   StdBasicStringIterator() {
-    this.getEnclosingElement() instanceof StdBasicString and this.hasName("iterator")
+    exists(Type unspecified |
+      unspecified.getEnclosingElement() = any(StdBasicString s).getTemplate() and
+      unspecified.getUnspecifiedType() = this
+    )
   }
 }
 
diff --git a/cpp/ql/lib/semmle/code/cpp/models/interfaces/Iterator.qll b/cpp/ql/lib/semmle/code/cpp/models/interfaces/Iterator.qll
index 9a260a33255..d5d2b6ffe81 100644
--- a/cpp/ql/lib/semmle/code/cpp/models/interfaces/Iterator.qll
+++ b/cpp/ql/lib/semmle/code/cpp/models/interfaces/Iterator.qll
@@ -29,5 +29,17 @@ abstract class GetIteratorFunction extends Function {
 
 /**
  * A type which can be used as an iterator.
+ *
+ * Note: Do _not_ `extend` when inheriting from this class in queries. Always use `instanceof`:
+ * ```
+ * class MyIterator instanceof Iterator { ... }
+ * ```
  */
-abstract class Iterator extends Type { }
+abstract class Iterator extends Type {
+  /**
+   * Gets the value type of this iterator, if any.
+   *
+   * For example, the value type of a `std::vector<int>::iterator` is `int`.
+   */
+  Type getValueType() { none() }
+}

From cef7224739d3402668d388704d6222a5acaf189c Mon Sep 17 00:00:00 2001
From: Mathias Vorreiter Pedersen <mathiasvp@github.com>
Date: Fri, 2 Dec 2022 10:12:25 +0000
Subject: [PATCH 0958/1420] C++: Make QL-for-QL happy.

---
 .../code/cpp/models/implementations/StdString.qll    | 12 ------------
 1 file changed, 12 deletions(-)

diff --git a/cpp/ql/lib/semmle/code/cpp/models/implementations/StdString.qll b/cpp/ql/lib/semmle/code/cpp/models/implementations/StdString.qll
index ee3ae248994..cf3ecb5e892 100644
--- a/cpp/ql/lib/semmle/code/cpp/models/implementations/StdString.qll
+++ b/cpp/ql/lib/semmle/code/cpp/models/implementations/StdString.qll
@@ -15,18 +15,6 @@ private class StdBasicString extends ClassTemplateInstantiation {
   StdBasicString() { this.hasQualifiedName(["std", "bsl"], "basic_string") }
 }
 
-/**
- * The `std::basic_string::iterator` declaration.
- */
-private class StdBasicStringIterator extends Type instanceof Iterator {
-  StdBasicStringIterator() {
-    exists(Type unspecified |
-      unspecified.getEnclosingElement() = any(StdBasicString s).getTemplate() and
-      unspecified.getUnspecifiedType() = this
-    )
-  }
-}
-
 /**
  * A `std::string` function for which taint should be propagated.
  */

From fb670325d8ef93fc03df06742800c14846298d0e Mon Sep 17 00:00:00 2001
From: Michael Nebel <michaelnebel@github.com>
Date: Wed, 30 Nov 2022 10:43:05 +0100
Subject: [PATCH 0959/1420] Java/C#: Add query for aiding the conversion of
 existing negative models.

---
 .../modelconverter/ExtractNegativeSummaries.ql     | 14 ++++++++++++++
 .../modelconverter/ExtractNegativeSummaries.ql     | 14 ++++++++++++++
 2 files changed, 28 insertions(+)
 create mode 100644 csharp/ql/src/utils/modelconverter/ExtractNegativeSummaries.ql
 create mode 100644 java/ql/src/utils/modelconverter/ExtractNegativeSummaries.ql

diff --git a/csharp/ql/src/utils/modelconverter/ExtractNegativeSummaries.ql b/csharp/ql/src/utils/modelconverter/ExtractNegativeSummaries.ql
new file mode 100644
index 00000000000..53681f5f684
--- /dev/null
+++ b/csharp/ql/src/utils/modelconverter/ExtractNegativeSummaries.ql
@@ -0,0 +1,14 @@
+/**
+ * @name Extract MaD negative summary model rows.
+ * @description This extracts the Models as data negative summary model rows.
+ * @id csharp/utils/modelconverter/generate-data-extensions-negative-summary
+ */
+
+import csharp
+import semmle.code.csharp.dataflow.ExternalFlow
+
+from string package, string type, string name, string signature, string provenance
+where
+  negativeSummaryModel(package, type, name, signature, provenance) and
+  provenance != "generated"
+select package, type, name, signature, provenance order by package, type, name, signature
diff --git a/java/ql/src/utils/modelconverter/ExtractNegativeSummaries.ql b/java/ql/src/utils/modelconverter/ExtractNegativeSummaries.ql
new file mode 100644
index 00000000000..e762b3ee6e5
--- /dev/null
+++ b/java/ql/src/utils/modelconverter/ExtractNegativeSummaries.ql
@@ -0,0 +1,14 @@
+/**
+ * @name Extract MaD negative summary model rows.
+ * @description This extracts the Models as data negative summary model rows.
+ * @id java/utils/modelconverter/generate-data-extensions-negative-summary
+ */
+
+import java
+import semmle.code.java.dataflow.ExternalFlow
+
+from string package, string type, string name, string signature, string provenance
+where
+  negativeSummaryModel(package, type, name, signature, provenance) and
+  provenance != "generated"
+select package, type, name, signature, provenance order by package, type, name, signature

From b2dd29ff0590a8d89206d07113195f09a2402c77 Mon Sep 17 00:00:00 2001
From: Michael Nebel <michaelnebel@github.com>
Date: Wed, 30 Nov 2022 10:43:50 +0100
Subject: [PATCH 0960/1420] Java/C#: Update conversion script to also produce
 negative models.

---
 misc/scripts/models-as-data/convert_extensions.py             | 3 ++-
 misc/scripts/models-as-data/generate_flow_model_extensions.py | 2 +-
 misc/scripts/models-as-data/helpers.py                        | 1 +
 3 files changed, 4 insertions(+), 2 deletions(-)

diff --git a/misc/scripts/models-as-data/convert_extensions.py b/misc/scripts/models-as-data/convert_extensions.py
index ff5d5ee6cd5..6a05ba62238 100644
--- a/misc/scripts/models-as-data/convert_extensions.py
+++ b/misc/scripts/models-as-data/convert_extensions.py
@@ -74,7 +74,8 @@ class Converter:
         summaries = self.getAddsTo("ExtractSummaries.ql", helpers.summaryModelPredicate)
         sources = self.getAddsTo("ExtractSources.ql", helpers.sourceModelPredicate)
         sinks = self.getAddsTo("ExtractSinks.ql", helpers.sinkModelPredicate)
-        return merge(sources, sinks, summaries)
+        negativeSummaries = self.getAddsTo("ExtractNegativeSummaries.ql", helpers.negativeSummaryModelPredicate)
+        return merge(sources, sinks, summaries, negativeSummaries)
 
 
     def save(self, extensions):
diff --git a/misc/scripts/models-as-data/generate_flow_model_extensions.py b/misc/scripts/models-as-data/generate_flow_model_extensions.py
index c06e4eaeb62..fd015ee419e 100644
--- a/misc/scripts/models-as-data/generate_flow_model_extensions.py
+++ b/misc/scripts/models-as-data/generate_flow_model_extensions.py
@@ -169,7 +169,7 @@ Requirements: `codeql` should both appear on your path.
             sourceAddsTo = ""
 
         if self.generateNegativeSummaries:
-            negativeSummaryAddsTo = self.getAddsTo("CaptureNegativeSummaryModels.ql", "extNegativeSummaryModel")
+            negativeSummaryAddsTo = self.getAddsTo("CaptureNegativeSummaryModels.ql", helpers.negativeSummaryModelPredicate)
         else:
             negativeSummaryAddsTo = ""
         
diff --git a/misc/scripts/models-as-data/helpers.py b/misc/scripts/models-as-data/helpers.py
index cc69cee53c0..94bf16527de 100644
--- a/misc/scripts/models-as-data/helpers.py
+++ b/misc/scripts/models-as-data/helpers.py
@@ -7,6 +7,7 @@ import subprocess
 summaryModelPredicate = "extSummaryModel"
 sinkModelPredicate = "extSinkModel"
 sourceModelPredicate = "extSourceModel"
+negativeSummaryModelPredicate = "extNegativeSummaryModel"
 addsToTemplate = """  - addsTo:
       pack: {0}
       extensible: {1}

From cd700dfe110ed691160cad5983e6387312e67e34 Mon Sep 17 00:00:00 2001
From: Paolo Tranquilli <redsun82@github.com>
Date: Fri, 2 Dec 2022 12:20:14 +0100
Subject: [PATCH 0961/1420] Swift: upload integration test logs also on failure

---
 swift/actions/run-integration-tests/action.yml | 1 +
 1 file changed, 1 insertion(+)

diff --git a/swift/actions/run-integration-tests/action.yml b/swift/actions/run-integration-tests/action.yml
index 68189f5484f..ab311fead5e 100644
--- a/swift/actions/run-integration-tests/action.yml
+++ b/swift/actions/run-integration-tests/action.yml
@@ -28,6 +28,7 @@ runs:
       env:
         SEMMLE_DEBUG_TRACER: 10000
     - name: Upload test logs
+      if: ${{ !cancelled() }}
       uses: actions/upload-artifact@v3
       with:
         name: swift-integration-tests-logs-${{ runner.os }}

From 5194108233b14b4a1a0586f0321596bcd106aed8 Mon Sep 17 00:00:00 2001
From: Michael Nebel <michaelnebel@github.com>
Date: Thu, 1 Dec 2022 10:54:42 +0100
Subject: [PATCH 0962/1420] Java/C#: Improve the newlines in the generated
 model files.

---
 .../models-as-data/generate_flow_model_extensions.py     | 9 +++------
 1 file changed, 3 insertions(+), 6 deletions(-)

diff --git a/misc/scripts/models-as-data/generate_flow_model_extensions.py b/misc/scripts/models-as-data/generate_flow_model_extensions.py
index fd015ee419e..eee328c6f15 100644
--- a/misc/scripts/models-as-data/generate_flow_model_extensions.py
+++ b/misc/scripts/models-as-data/generate_flow_model_extensions.py
@@ -180,8 +180,7 @@ extensions:
 {sinkAddsTo}
 {sourceAddsTo}
 {summaryAddsTo}
-{negativeSummaryAddsTo}
-        """
+{negativeSummaryAddsTo}"""
 
     def makeTypeBasedContent(self):
         if self.generateTypeBasedSummaries:
@@ -189,13 +188,11 @@ extensions:
         else:
             typeBasedSummaryAddsTo = ""
 
-        return f"""
-# THIS FILE IS AN AUTO-GENERATED MODELS AS DATA FILE. DO NOT EDIT.
+        return f"""# THIS FILE IS AN AUTO-GENERATED MODELS AS DATA FILE. DO NOT EDIT.
 # Definitions of type based summaries in the {self.friendlyname} framework.
 
 extensions:
-{typeBasedSummaryAddsTo}
-        """
+{typeBasedSummaryAddsTo}"""
 
     def save(self, content, target):
         with open(target, "w") as targetYml:

From d9e4aafe3a4029576d5016e358d3b754a047f816 Mon Sep 17 00:00:00 2001
From: Michael Nebel <michaelnebel@github.com>
Date: Wed, 30 Nov 2022 14:04:01 +0100
Subject: [PATCH 0963/1420] Kotlin: Add Kotlin standard library models as Data
 extensions.

---
 .../lib/ext/generated/kotlinstdlib.model.yml  | 6473 +++++++++++++++++
 1 file changed, 6473 insertions(+)
 create mode 100644 java/ql/lib/ext/generated/kotlinstdlib.model.yml

diff --git a/java/ql/lib/ext/generated/kotlinstdlib.model.yml b/java/ql/lib/ext/generated/kotlinstdlib.model.yml
new file mode 100644
index 00000000000..a561d5dd572
--- /dev/null
+++ b/java/ql/lib/ext/generated/kotlinstdlib.model.yml
@@ -0,0 +1,6473 @@
+# THIS FILE IS AN AUTO-GENERATED MODELS AS DATA FILE. DO NOT EDIT.
+# Definitions of models in the Kotlin StdLib @30ce58cea74 framework.
+
+extensions:
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSinkModel
+    data:
+      - ["kotlin.io", "FilesKt", false, "appendBytes", "(File,byte[])", "", "Argument[0]", "create-file", "generated"]
+      - ["kotlin.io", "FilesKt", false, "appendText", "(File,String,Charset)", "", "Argument[0]", "create-file", "generated"]
+      - ["kotlin.io", "FilesKt", false, "bufferedWriter", "(File,Charset,int)", "", "Argument[0]", "create-file", "generated"]
+      - ["kotlin.io", "FilesKt", false, "copyRecursively", "(File,File,boolean,Function2)", "", "Argument[1]", "create-file", "generated"]
+      - ["kotlin.io", "FilesKt", false, "copyTo", "(File,File,boolean,int)", "", "Argument[1]", "create-file", "generated"]
+      - ["kotlin.io", "FilesKt", false, "outputStream", "(File)", "", "Argument[0]", "create-file", "generated"]
+      - ["kotlin.io", "FilesKt", false, "printWriter", "(File,Charset)", "", "Argument[0]", "create-file", "generated"]
+      - ["kotlin.io", "FilesKt", false, "writeBytes", "(File,byte[])", "", "Argument[0]", "create-file", "generated"]
+      - ["kotlin.io", "FilesKt", false, "writeText", "(File,String,Charset)", "", "Argument[0]", "create-file", "generated"]
+      - ["kotlin.io", "FilesKt", false, "writer", "(File,Charset)", "", "Argument[0]", "create-file", "generated"]
+      - ["kotlin.io", "TextStreamsKt", false, "readBytes", "(URL)", "", "Argument[0]", "open-url", "generated"]
+      - ["kotlin.io", "TextStreamsKt", false, "readText", "(URL,Charset)", "", "Argument[0]", "open-url", "generated"]
+
+
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extSummaryModel
+    data:
+      - ["kotlin.collections", "AbstractCollection", true, "toString", "()", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArrayDeque", false, "ArrayDeque", "(Collection)", "", "Argument[0].Element", "Argument[-1]", "taint", "generated"]
+      - ["kotlin.collections", "ArrayDeque", false, "addFirst", "(Object)", "", "Argument[0]", "Argument[-1]", "taint", "generated"]
+      - ["kotlin.collections", "ArrayDeque", false, "addLast", "(Object)", "", "Argument[0]", "Argument[-1]", "taint", "generated"]
+      - ["kotlin.collections", "ArrayDeque", false, "first", "()", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArrayDeque", false, "firstOrNull", "()", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArrayDeque", false, "last", "()", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArrayDeque", false, "lastOrNull", "()", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArrayDeque", false, "removeFirst", "()", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArrayDeque", false, "removeFirstOrNull", "()", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArrayDeque", false, "removeLast", "()", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArrayDeque", false, "removeLastOrNull", "()", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "asList", "(Object[])", "", "Argument[0].ArrayElement", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "associateByTo", "(Object[],Map,Function1)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "associateByTo", "(Object[],Map,Function1,Function1)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "associateByTo", "(boolean[],Map,Function1)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "associateByTo", "(boolean[],Map,Function1,Function1)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "associateByTo", "(byte[],Map,Function1)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "associateByTo", "(byte[],Map,Function1,Function1)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "associateByTo", "(char[],Map,Function1)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "associateByTo", "(char[],Map,Function1,Function1)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "associateByTo", "(double[],Map,Function1)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "associateByTo", "(double[],Map,Function1,Function1)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "associateByTo", "(float[],Map,Function1)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "associateByTo", "(float[],Map,Function1,Function1)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "associateByTo", "(int[],Map,Function1)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "associateByTo", "(int[],Map,Function1,Function1)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "associateByTo", "(long[],Map,Function1)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "associateByTo", "(long[],Map,Function1,Function1)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "associateByTo", "(short[],Map,Function1)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "associateByTo", "(short[],Map,Function1,Function1)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "associateTo", "(Object[],Map,Function1)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "associateTo", "(boolean[],Map,Function1)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "associateTo", "(byte[],Map,Function1)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "associateTo", "(char[],Map,Function1)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "associateTo", "(double[],Map,Function1)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "associateTo", "(float[],Map,Function1)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "associateTo", "(int[],Map,Function1)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "associateTo", "(long[],Map,Function1)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "associateTo", "(short[],Map,Function1)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "associateWithTo", "(Object[],Map,Function1)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "associateWithTo", "(boolean[],Map,Function1)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "associateWithTo", "(byte[],Map,Function1)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "associateWithTo", "(char[],Map,Function1)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "associateWithTo", "(double[],Map,Function1)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "associateWithTo", "(float[],Map,Function1)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "associateWithTo", "(int[],Map,Function1)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "associateWithTo", "(long[],Map,Function1)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "associateWithTo", "(short[],Map,Function1)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "copyInto", "(Object[],Object[],int,int,int)", "", "Argument[0].ArrayElement", "Argument[1].ArrayElement", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "copyInto", "(Object[],Object[],int,int,int)", "", "Argument[0].ArrayElement", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "copyInto", "(Object[],Object[],int,int,int)", "", "Argument[1].ArrayElement", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "copyInto", "(byte[],byte[],int,int,int)", "", "Argument[0]", "Argument[1]", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "copyInto", "(byte[],byte[],int,int,int)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "copyInto", "(byte[],byte[],int,int,int)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "copyInto", "(char[],char[],int,int,int)", "", "Argument[0]", "Argument[1]", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "copyInto", "(char[],char[],int,int,int)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "copyInto", "(char[],char[],int,int,int)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "copyOf", "(Object[])", "", "Argument[0].ArrayElement", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "copyOf", "(Object[],int)", "", "Argument[0].ArrayElement", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "copyOf", "(byte[])", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "copyOf", "(byte[],int)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "copyOf", "(char[])", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "copyOf", "(char[],int)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "copyOfRangeInline", "(Object[],int,int)", "", "Argument[0].ArrayElement", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "copyOfRangeInline", "(byte[],int,int)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "copyOfRangeInline", "(char[],int,int)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "drop", "(Object[],int)", "", "Argument[0].ArrayElement", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "dropLast", "(Object[],int)", "", "Argument[0].ArrayElement", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "dropLastWhile", "(Object[],Function1)", "", "Argument[0].ArrayElement", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "fill", "(Object[],Object,int,int)", "", "Argument[1]", "Argument[0].ArrayElement", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "filterIndexedTo", "(Object[],Collection,Function2)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "filterIndexedTo", "(boolean[],Collection,Function2)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "filterIndexedTo", "(byte[],Collection,Function2)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "filterIndexedTo", "(char[],Collection,Function2)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "filterIndexedTo", "(double[],Collection,Function2)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "filterIndexedTo", "(float[],Collection,Function2)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "filterIndexedTo", "(int[],Collection,Function2)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "filterIndexedTo", "(long[],Collection,Function2)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "filterIndexedTo", "(short[],Collection,Function2)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "filterIsInstanceTo", "(Object[],Collection)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "filterIsInstanceTo", "(Object[],Collection,Class)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "filterNotNullTo", "(Object[],Collection)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "filterNotTo", "(Object[],Collection,Function1)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "filterNotTo", "(boolean[],Collection,Function1)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "filterNotTo", "(byte[],Collection,Function1)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "filterNotTo", "(char[],Collection,Function1)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "filterNotTo", "(double[],Collection,Function1)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "filterNotTo", "(float[],Collection,Function1)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "filterNotTo", "(int[],Collection,Function1)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "filterNotTo", "(long[],Collection,Function1)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "filterNotTo", "(short[],Collection,Function1)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "filterTo", "(Object[],Collection,Function1)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "filterTo", "(boolean[],Collection,Function1)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "filterTo", "(byte[],Collection,Function1)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "filterTo", "(char[],Collection,Function1)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "filterTo", "(double[],Collection,Function1)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "filterTo", "(float[],Collection,Function1)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "filterTo", "(int[],Collection,Function1)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "filterTo", "(long[],Collection,Function1)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "filterTo", "(short[],Collection,Function1)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "findLast", "(Object[],Function1)", "", "Argument[0].ArrayElement", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "first", "(Object[])", "", "Argument[0].ArrayElement", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "firstOrNull", "(Object[])", "", "Argument[0].ArrayElement", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "flatMapIndexedIterableTo", "(Object[],Collection,Function2)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "flatMapIndexedIterableTo", "(boolean[],Collection,Function2)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "flatMapIndexedIterableTo", "(byte[],Collection,Function2)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "flatMapIndexedIterableTo", "(char[],Collection,Function2)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "flatMapIndexedIterableTo", "(double[],Collection,Function2)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "flatMapIndexedIterableTo", "(float[],Collection,Function2)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "flatMapIndexedIterableTo", "(int[],Collection,Function2)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "flatMapIndexedIterableTo", "(long[],Collection,Function2)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "flatMapIndexedIterableTo", "(short[],Collection,Function2)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "flatMapIndexedSequenceTo", "(Object[],Collection,Function2)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "flatMapSequenceTo", "(Object[],Collection,Function1)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "flatMapTo", "(Object[],Collection,Function1)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "flatMapTo", "(boolean[],Collection,Function1)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "flatMapTo", "(byte[],Collection,Function1)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "flatMapTo", "(char[],Collection,Function1)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "flatMapTo", "(double[],Collection,Function1)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "flatMapTo", "(float[],Collection,Function1)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "flatMapTo", "(int[],Collection,Function1)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "flatMapTo", "(long[],Collection,Function1)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "flatMapTo", "(short[],Collection,Function1)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "fold", "(Object[],Object,Function2)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "fold", "(boolean[],Object,Function2)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "fold", "(byte[],Object,Function2)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "fold", "(char[],Object,Function2)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "fold", "(double[],Object,Function2)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "fold", "(float[],Object,Function2)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "fold", "(int[],Object,Function2)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "fold", "(long[],Object,Function2)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "fold", "(short[],Object,Function2)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "foldIndexed", "(Object[],Object,Function3)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "foldIndexed", "(boolean[],Object,Function3)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "foldIndexed", "(byte[],Object,Function3)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "foldIndexed", "(char[],Object,Function3)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "foldIndexed", "(double[],Object,Function3)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "foldIndexed", "(float[],Object,Function3)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "foldIndexed", "(int[],Object,Function3)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "foldIndexed", "(long[],Object,Function3)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "foldIndexed", "(short[],Object,Function3)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "foldRight", "(Object[],Object,Function2)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "foldRight", "(boolean[],Object,Function2)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "foldRight", "(byte[],Object,Function2)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "foldRight", "(char[],Object,Function2)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "foldRight", "(double[],Object,Function2)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "foldRight", "(float[],Object,Function2)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "foldRight", "(int[],Object,Function2)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "foldRight", "(long[],Object,Function2)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "foldRight", "(short[],Object,Function2)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "foldRightIndexed", "(Object[],Object,Function3)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "foldRightIndexed", "(boolean[],Object,Function3)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "foldRightIndexed", "(byte[],Object,Function3)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "foldRightIndexed", "(char[],Object,Function3)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "foldRightIndexed", "(double[],Object,Function3)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "foldRightIndexed", "(float[],Object,Function3)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "foldRightIndexed", "(int[],Object,Function3)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "foldRightIndexed", "(long[],Object,Function3)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "foldRightIndexed", "(short[],Object,Function3)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "groupByTo", "(Object[],Map,Function1)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "groupByTo", "(Object[],Map,Function1,Function1)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "groupByTo", "(boolean[],Map,Function1)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "groupByTo", "(boolean[],Map,Function1,Function1)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "groupByTo", "(byte[],Map,Function1)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "groupByTo", "(byte[],Map,Function1,Function1)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "groupByTo", "(char[],Map,Function1)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "groupByTo", "(char[],Map,Function1,Function1)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "groupByTo", "(double[],Map,Function1)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "groupByTo", "(double[],Map,Function1,Function1)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "groupByTo", "(float[],Map,Function1)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "groupByTo", "(float[],Map,Function1,Function1)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "groupByTo", "(int[],Map,Function1)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "groupByTo", "(int[],Map,Function1,Function1)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "groupByTo", "(long[],Map,Function1)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "groupByTo", "(long[],Map,Function1,Function1)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "groupByTo", "(short[],Map,Function1)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "groupByTo", "(short[],Map,Function1,Function1)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "ifEmpty", "(Object[],Function0)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "joinTo", "(Object[],Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "joinTo", "(Object[],Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1)", "", "Argument[2]", "Argument[1]", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "joinTo", "(Object[],Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1)", "", "Argument[2]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "joinTo", "(Object[],Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1)", "", "Argument[3]", "Argument[1]", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "joinTo", "(Object[],Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1)", "", "Argument[3]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "joinTo", "(Object[],Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1)", "", "Argument[4]", "Argument[1]", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "joinTo", "(Object[],Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1)", "", "Argument[4]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "joinTo", "(Object[],Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1)", "", "Argument[6]", "Argument[1]", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "joinTo", "(Object[],Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1)", "", "Argument[6]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "joinTo", "(boolean[],Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "joinTo", "(boolean[],Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1)", "", "Argument[2]", "Argument[1]", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "joinTo", "(boolean[],Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1)", "", "Argument[2]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "joinTo", "(boolean[],Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1)", "", "Argument[3]", "Argument[1]", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "joinTo", "(boolean[],Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1)", "", "Argument[3]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "joinTo", "(boolean[],Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1)", "", "Argument[4]", "Argument[1]", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "joinTo", "(boolean[],Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1)", "", "Argument[4]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "joinTo", "(boolean[],Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1)", "", "Argument[6]", "Argument[1]", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "joinTo", "(boolean[],Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1)", "", "Argument[6]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "joinTo", "(byte[],Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "joinTo", "(byte[],Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1)", "", "Argument[2]", "Argument[1]", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "joinTo", "(byte[],Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1)", "", "Argument[2]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "joinTo", "(byte[],Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1)", "", "Argument[3]", "Argument[1]", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "joinTo", "(byte[],Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1)", "", "Argument[3]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "joinTo", "(byte[],Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1)", "", "Argument[4]", "Argument[1]", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "joinTo", "(byte[],Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1)", "", "Argument[4]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "joinTo", "(byte[],Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1)", "", "Argument[6]", "Argument[1]", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "joinTo", "(byte[],Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1)", "", "Argument[6]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "joinTo", "(char[],Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "joinTo", "(char[],Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1)", "", "Argument[2]", "Argument[1]", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "joinTo", "(char[],Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1)", "", "Argument[2]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "joinTo", "(char[],Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1)", "", "Argument[3]", "Argument[1]", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "joinTo", "(char[],Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1)", "", "Argument[3]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "joinTo", "(char[],Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1)", "", "Argument[4]", "Argument[1]", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "joinTo", "(char[],Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1)", "", "Argument[4]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "joinTo", "(char[],Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1)", "", "Argument[6]", "Argument[1]", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "joinTo", "(char[],Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1)", "", "Argument[6]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "joinTo", "(double[],Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "joinTo", "(double[],Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1)", "", "Argument[2]", "Argument[1]", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "joinTo", "(double[],Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1)", "", "Argument[2]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "joinTo", "(double[],Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1)", "", "Argument[3]", "Argument[1]", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "joinTo", "(double[],Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1)", "", "Argument[3]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "joinTo", "(double[],Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1)", "", "Argument[4]", "Argument[1]", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "joinTo", "(double[],Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1)", "", "Argument[4]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "joinTo", "(double[],Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1)", "", "Argument[6]", "Argument[1]", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "joinTo", "(double[],Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1)", "", "Argument[6]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "joinTo", "(float[],Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "joinTo", "(float[],Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1)", "", "Argument[2]", "Argument[1]", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "joinTo", "(float[],Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1)", "", "Argument[2]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "joinTo", "(float[],Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1)", "", "Argument[3]", "Argument[1]", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "joinTo", "(float[],Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1)", "", "Argument[3]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "joinTo", "(float[],Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1)", "", "Argument[4]", "Argument[1]", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "joinTo", "(float[],Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1)", "", "Argument[4]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "joinTo", "(float[],Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1)", "", "Argument[6]", "Argument[1]", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "joinTo", "(float[],Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1)", "", "Argument[6]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "joinTo", "(int[],Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "joinTo", "(int[],Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1)", "", "Argument[2]", "Argument[1]", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "joinTo", "(int[],Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1)", "", "Argument[2]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "joinTo", "(int[],Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1)", "", "Argument[3]", "Argument[1]", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "joinTo", "(int[],Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1)", "", "Argument[3]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "joinTo", "(int[],Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1)", "", "Argument[4]", "Argument[1]", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "joinTo", "(int[],Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1)", "", "Argument[4]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "joinTo", "(int[],Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1)", "", "Argument[6]", "Argument[1]", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "joinTo", "(int[],Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1)", "", "Argument[6]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "joinTo", "(long[],Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "joinTo", "(long[],Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1)", "", "Argument[2]", "Argument[1]", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "joinTo", "(long[],Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1)", "", "Argument[2]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "joinTo", "(long[],Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1)", "", "Argument[3]", "Argument[1]", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "joinTo", "(long[],Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1)", "", "Argument[3]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "joinTo", "(long[],Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1)", "", "Argument[4]", "Argument[1]", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "joinTo", "(long[],Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1)", "", "Argument[4]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "joinTo", "(long[],Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1)", "", "Argument[6]", "Argument[1]", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "joinTo", "(long[],Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1)", "", "Argument[6]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "joinTo", "(short[],Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "joinTo", "(short[],Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1)", "", "Argument[2]", "Argument[1]", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "joinTo", "(short[],Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1)", "", "Argument[2]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "joinTo", "(short[],Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1)", "", "Argument[3]", "Argument[1]", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "joinTo", "(short[],Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1)", "", "Argument[3]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "joinTo", "(short[],Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1)", "", "Argument[4]", "Argument[1]", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "joinTo", "(short[],Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1)", "", "Argument[4]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "joinTo", "(short[],Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1)", "", "Argument[6]", "Argument[1]", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "joinTo", "(short[],Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1)", "", "Argument[6]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "joinToString", "(Object[],CharSequence,CharSequence,CharSequence,int,CharSequence,Function1)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "joinToString", "(Object[],CharSequence,CharSequence,CharSequence,int,CharSequence,Function1)", "", "Argument[2]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "joinToString", "(Object[],CharSequence,CharSequence,CharSequence,int,CharSequence,Function1)", "", "Argument[3]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "joinToString", "(Object[],CharSequence,CharSequence,CharSequence,int,CharSequence,Function1)", "", "Argument[5]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "joinToString", "(boolean[],CharSequence,CharSequence,CharSequence,int,CharSequence,Function1)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "joinToString", "(boolean[],CharSequence,CharSequence,CharSequence,int,CharSequence,Function1)", "", "Argument[2]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "joinToString", "(boolean[],CharSequence,CharSequence,CharSequence,int,CharSequence,Function1)", "", "Argument[3]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "joinToString", "(boolean[],CharSequence,CharSequence,CharSequence,int,CharSequence,Function1)", "", "Argument[5]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "joinToString", "(byte[],CharSequence,CharSequence,CharSequence,int,CharSequence,Function1)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "joinToString", "(byte[],CharSequence,CharSequence,CharSequence,int,CharSequence,Function1)", "", "Argument[2]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "joinToString", "(byte[],CharSequence,CharSequence,CharSequence,int,CharSequence,Function1)", "", "Argument[3]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "joinToString", "(byte[],CharSequence,CharSequence,CharSequence,int,CharSequence,Function1)", "", "Argument[5]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "joinToString", "(char[],CharSequence,CharSequence,CharSequence,int,CharSequence,Function1)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "joinToString", "(char[],CharSequence,CharSequence,CharSequence,int,CharSequence,Function1)", "", "Argument[2]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "joinToString", "(char[],CharSequence,CharSequence,CharSequence,int,CharSequence,Function1)", "", "Argument[3]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "joinToString", "(char[],CharSequence,CharSequence,CharSequence,int,CharSequence,Function1)", "", "Argument[5]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "joinToString", "(double[],CharSequence,CharSequence,CharSequence,int,CharSequence,Function1)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "joinToString", "(double[],CharSequence,CharSequence,CharSequence,int,CharSequence,Function1)", "", "Argument[2]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "joinToString", "(double[],CharSequence,CharSequence,CharSequence,int,CharSequence,Function1)", "", "Argument[3]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "joinToString", "(double[],CharSequence,CharSequence,CharSequence,int,CharSequence,Function1)", "", "Argument[5]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "joinToString", "(float[],CharSequence,CharSequence,CharSequence,int,CharSequence,Function1)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "joinToString", "(float[],CharSequence,CharSequence,CharSequence,int,CharSequence,Function1)", "", "Argument[2]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "joinToString", "(float[],CharSequence,CharSequence,CharSequence,int,CharSequence,Function1)", "", "Argument[3]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "joinToString", "(float[],CharSequence,CharSequence,CharSequence,int,CharSequence,Function1)", "", "Argument[5]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "joinToString", "(int[],CharSequence,CharSequence,CharSequence,int,CharSequence,Function1)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "joinToString", "(int[],CharSequence,CharSequence,CharSequence,int,CharSequence,Function1)", "", "Argument[2]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "joinToString", "(int[],CharSequence,CharSequence,CharSequence,int,CharSequence,Function1)", "", "Argument[3]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "joinToString", "(int[],CharSequence,CharSequence,CharSequence,int,CharSequence,Function1)", "", "Argument[5]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "joinToString", "(long[],CharSequence,CharSequence,CharSequence,int,CharSequence,Function1)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "joinToString", "(long[],CharSequence,CharSequence,CharSequence,int,CharSequence,Function1)", "", "Argument[2]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "joinToString", "(long[],CharSequence,CharSequence,CharSequence,int,CharSequence,Function1)", "", "Argument[3]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "joinToString", "(long[],CharSequence,CharSequence,CharSequence,int,CharSequence,Function1)", "", "Argument[5]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "joinToString", "(short[],CharSequence,CharSequence,CharSequence,int,CharSequence,Function1)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "joinToString", "(short[],CharSequence,CharSequence,CharSequence,int,CharSequence,Function1)", "", "Argument[2]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "joinToString", "(short[],CharSequence,CharSequence,CharSequence,int,CharSequence,Function1)", "", "Argument[3]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "joinToString", "(short[],CharSequence,CharSequence,CharSequence,int,CharSequence,Function1)", "", "Argument[5]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "last", "(Object[])", "", "Argument[0].ArrayElement", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "last", "(Object[],Function1)", "", "Argument[0].ArrayElement", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "lastOrNull", "(Object[])", "", "Argument[0].ArrayElement", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "lastOrNull", "(Object[],Function1)", "", "Argument[0].ArrayElement", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "mapIndexedNotNullTo", "(Object[],Collection,Function2)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "mapIndexedTo", "(Object[],Collection,Function2)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "mapIndexedTo", "(boolean[],Collection,Function2)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "mapIndexedTo", "(byte[],Collection,Function2)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "mapIndexedTo", "(char[],Collection,Function2)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "mapIndexedTo", "(double[],Collection,Function2)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "mapIndexedTo", "(float[],Collection,Function2)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "mapIndexedTo", "(int[],Collection,Function2)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "mapIndexedTo", "(long[],Collection,Function2)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "mapIndexedTo", "(short[],Collection,Function2)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "mapNotNullTo", "(Object[],Collection,Function1)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "mapTo", "(Object[],Collection,Function1)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "mapTo", "(boolean[],Collection,Function1)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "mapTo", "(byte[],Collection,Function1)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "mapTo", "(char[],Collection,Function1)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "mapTo", "(double[],Collection,Function1)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "mapTo", "(float[],Collection,Function1)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "mapTo", "(int[],Collection,Function1)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "mapTo", "(long[],Collection,Function1)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "mapTo", "(short[],Collection,Function1)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "max", "(Comparable[])", "", "Argument[0].ArrayElement", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "maxBy", "(Object[],Function1)", "", "Argument[0].ArrayElement", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "maxByOrNull", "(Object[],Function1)", "", "Argument[0].ArrayElement", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "maxByOrThrow", "(Object[],Function1)", "", "Argument[0].ArrayElement", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "maxOfWith", "(Object[],Comparator,Function1)", "", "Argument[0].ArrayElement", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "maxOfWithOrNull", "(Object[],Comparator,Function1)", "", "Argument[0].ArrayElement", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "maxOrNull", "(Comparable[])", "", "Argument[0].ArrayElement", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "maxOrThrow", "(Comparable[])", "", "Argument[0].ArrayElement", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "maxWith", "(Object[],Comparator)", "", "Argument[0].ArrayElement", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "maxWithOrNull", "(Object[],Comparator)", "", "Argument[0].ArrayElement", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "maxWithOrThrow", "(Object[],Comparator)", "", "Argument[0].ArrayElement", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "min", "(Comparable[])", "", "Argument[0].ArrayElement", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "minBy", "(Object[],Function1)", "", "Argument[0].ArrayElement", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "minByOrNull", "(Object[],Function1)", "", "Argument[0].ArrayElement", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "minByOrThrow", "(Object[],Function1)", "", "Argument[0].ArrayElement", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "minOfWith", "(Object[],Comparator,Function1)", "", "Argument[0].ArrayElement", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "minOfWithOrNull", "(Object[],Comparator,Function1)", "", "Argument[0].ArrayElement", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "minOrNull", "(Comparable[])", "", "Argument[0].ArrayElement", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "minOrThrow", "(Comparable[])", "", "Argument[0].ArrayElement", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "minWith", "(Object[],Comparator)", "", "Argument[0].ArrayElement", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "minWithOrNull", "(Object[],Comparator)", "", "Argument[0].ArrayElement", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "minWithOrThrow", "(Object[],Comparator)", "", "Argument[0].ArrayElement", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "onEach", "(Object[],Function1)", "", "Argument[0].ArrayElement", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "onEach", "(byte[],Function1)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "onEach", "(char[],Function1)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "onEachIndexed", "(Object[],Function2)", "", "Argument[0].ArrayElement", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "onEachIndexed", "(byte[],Function2)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "onEachIndexed", "(char[],Function2)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "orEmpty", "(Object[])", "", "Argument[0].ArrayElement", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "plus", "(Object[],Collection)", "", "Argument[0].ArrayElement", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "plus", "(Object[],Object)", "", "Argument[0].ArrayElement", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "plus", "(Object[],Object[])", "", "Argument[0].ArrayElement", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "plus", "(Object[],Object[])", "", "Argument[1].ArrayElement", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "plus", "(byte[],Collection)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "plus", "(byte[],byte)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "plus", "(byte[],byte[])", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "plus", "(byte[],byte[])", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "plus", "(char[],Collection)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "plus", "(char[],char)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "plus", "(char[],char[])", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "plus", "(char[],char[])", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "plusElement", "(Object[],Object)", "", "Argument[0].ArrayElement", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "reduce", "(Object[],Function2)", "", "Argument[0].ArrayElement", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "reduceIndexed", "(Object[],Function3)", "", "Argument[0].ArrayElement", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "reduceIndexedOrNull", "(Object[],Function3)", "", "Argument[0].ArrayElement", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "reduceOrNull", "(Object[],Function2)", "", "Argument[0].ArrayElement", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "requireNoNulls", "(Object[])", "", "Argument[0].ArrayElement", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "reversed", "(Object[])", "", "Argument[0].ArrayElement", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "reversedArray", "(Object[])", "", "Argument[0].ArrayElement", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "reversedArray", "(byte[])", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "reversedArray", "(char[])", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "runningFold", "(Object[],Object,Function2)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "runningFold", "(boolean[],Object,Function2)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "runningFold", "(byte[],Object,Function2)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "runningFold", "(char[],Object,Function2)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "runningFold", "(double[],Object,Function2)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "runningFold", "(float[],Object,Function2)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "runningFold", "(int[],Object,Function2)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "runningFold", "(long[],Object,Function2)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "runningFold", "(short[],Object,Function2)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "runningFoldIndexed", "(Object[],Object,Function3)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "runningFoldIndexed", "(boolean[],Object,Function3)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "runningFoldIndexed", "(byte[],Object,Function3)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "runningFoldIndexed", "(char[],Object,Function3)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "runningFoldIndexed", "(double[],Object,Function3)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "runningFoldIndexed", "(float[],Object,Function3)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "runningFoldIndexed", "(int[],Object,Function3)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "runningFoldIndexed", "(long[],Object,Function3)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "runningFoldIndexed", "(short[],Object,Function3)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "scan", "(Object[],Object,Function2)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "scan", "(boolean[],Object,Function2)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "scan", "(byte[],Object,Function2)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "scan", "(char[],Object,Function2)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "scan", "(double[],Object,Function2)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "scan", "(float[],Object,Function2)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "scan", "(int[],Object,Function2)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "scan", "(long[],Object,Function2)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "scan", "(short[],Object,Function2)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "scanIndexed", "(Object[],Object,Function3)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "scanIndexed", "(boolean[],Object,Function3)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "scanIndexed", "(byte[],Object,Function3)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "scanIndexed", "(char[],Object,Function3)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "scanIndexed", "(double[],Object,Function3)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "scanIndexed", "(float[],Object,Function3)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "scanIndexed", "(int[],Object,Function3)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "scanIndexed", "(long[],Object,Function3)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "scanIndexed", "(short[],Object,Function3)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "single", "(Object[])", "", "Argument[0].ArrayElement", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "singleOrNull", "(Object[])", "", "Argument[0].ArrayElement", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "slice", "(Object[],IntRange)", "", "Argument[0].ArrayElement", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "sliceArray", "(Object[],Collection)", "", "Argument[0].ArrayElement", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "sliceArray", "(Object[],IntRange)", "", "Argument[0].ArrayElement", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "sliceArray", "(byte[],IntRange)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "sliceArray", "(char[],IntRange)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "sorted", "(Comparable[])", "", "Argument[0].ArrayElement", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "sortedArray", "(Comparable[])", "", "Argument[0].ArrayElement", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "sortedArray", "(byte[])", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "sortedArray", "(char[])", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "sortedArrayDescending", "(Comparable[])", "", "Argument[0].ArrayElement", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "sortedArrayDescending", "(byte[])", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "sortedArrayDescending", "(char[])", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "sortedArrayWith", "(Object[],Comparator)", "", "Argument[0].ArrayElement", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "sortedBy", "(Object[],Function1)", "", "Argument[0].ArrayElement", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "sortedByDescending", "(Object[],Function1)", "", "Argument[0].ArrayElement", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "sortedDescending", "(Comparable[])", "", "Argument[0].ArrayElement", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "sortedWith", "(Object[],Comparator)", "", "Argument[0].ArrayElement", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "take", "(Object[],int)", "", "Argument[0].ArrayElement", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "takeLast", "(Object[],int)", "", "Argument[0].ArrayElement", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "takeLastWhile", "(Object[],Function1)", "", "Argument[0].ArrayElement", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "toCollection", "(Object[],Collection)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "toCollection", "(boolean[],Collection)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "toCollection", "(byte[],Collection)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "toCollection", "(char[],Collection)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "toCollection", "(double[],Collection)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "toCollection", "(float[],Collection)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "toCollection", "(int[],Collection)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "toCollection", "(long[],Collection)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "toCollection", "(short[],Collection)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "toList", "(Object[])", "", "Argument[0].ArrayElement", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "toMutableList", "(Object[])", "", "Argument[0].ArrayElement", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "toSet", "(Object[])", "", "Argument[0].ArrayElement", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "toString", "(byte[],Charset)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "toTypedArray", "(Collection)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "union", "(Object[],Iterable)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "union", "(byte[],Iterable)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "union", "(char[],Iterable)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "zip", "(Object[],Iterable)", "", "Argument[0].ArrayElement", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "zip", "(Object[],Iterable)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "zip", "(Object[],Iterable,Function2)", "", "Argument[0].ArrayElement", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "zip", "(Object[],Iterable,Function2)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "zip", "(Object[],Object[])", "", "Argument[0].ArrayElement", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "zip", "(Object[],Object[])", "", "Argument[1].ArrayElement", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "zip", "(Object[],Object[],Function2)", "", "Argument[0].ArrayElement", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "ArraysKt", false, "zip", "(Object[],Object[],Function2)", "", "Argument[1].ArrayElement", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "addAll", "(Collection,Iterable)", "", "Argument[1].Element", "Argument[0].Element", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "addAll", "(Collection,Object[])", "", "Argument[1].ArrayElement", "Argument[0].Element", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "addAll", "(Collection,Sequence)", "", "Argument[1]", "Argument[0].Element", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "arrayListOf", "(Object[])", "", "Argument[0].ArrayElement", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "asIterable", "(Iterable)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "asReversed", "(List)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "asReversedMutable", "(List)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "associate", "(Iterable,Function1)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "associateBy", "(Iterable,Function1)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "associateBy", "(Iterable,Function1,Function1)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "associateByTo", "(Iterable,Map,Function1)", "", "Argument[0].Element", "Argument[1].Element", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "associateByTo", "(Iterable,Map,Function1)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "associateByTo", "(Iterable,Map,Function1)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "associateByTo", "(Iterable,Map,Function1,Function1)", "", "Argument[0].Element", "Argument[1].Element", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "associateByTo", "(Iterable,Map,Function1,Function1)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "associateByTo", "(Iterable,Map,Function1,Function1)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "associateTo", "(Iterable,Map,Function1)", "", "Argument[0].Element", "Argument[1].Element", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "associateTo", "(Iterable,Map,Function1)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "associateTo", "(Iterable,Map,Function1)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "associateWith", "(Iterable,Function1)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "associateWithTo", "(Iterable,Map,Function1)", "", "Argument[0].Element", "Argument[1].Element", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "associateWithTo", "(Iterable,Map,Function1)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "associateWithTo", "(Iterable,Map,Function1)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "component1", "(List)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "component2", "(List)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "component3", "(List)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "component4", "(List)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "component5", "(List)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "distinct", "(Iterable)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "distinctBy", "(Iterable,Function1)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "drop", "(Iterable,int)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "dropLast", "(List,int)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "dropLastWhile", "(List,Function1)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "dropWhile", "(Iterable,Function1)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "elementAt", "(Iterable,int)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "elementAt", "(List,int)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "elementAtOrElse", "(Iterable,int,Function1)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "elementAtOrElse", "(List,int,Function1)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "elementAtOrNull", "(Iterable,int)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "elementAtOrNull", "(List,int)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "fill", "(List,Object)", "", "Argument[1]", "Argument[0].Element", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "filter", "(Iterable,Function1)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "filterIndexedTo", "(Iterable,Collection,Function2)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "filterIsInstance", "(Iterable)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "filterIsInstance", "(Iterable,Class)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "filterIsInstanceTo", "(Iterable,Collection)", "", "Argument[0].Element", "Argument[1].Element", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "filterIsInstanceTo", "(Iterable,Collection)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "filterIsInstanceTo", "(Iterable,Collection)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "filterIsInstanceTo", "(Iterable,Collection,Class)", "", "Argument[0].Element", "Argument[1].Element", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "filterIsInstanceTo", "(Iterable,Collection,Class)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "filterIsInstanceTo", "(Iterable,Collection,Class)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "filterNot", "(Iterable,Function1)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "filterNotNull", "(Iterable)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "filterNotNullTo", "(Iterable,Collection)", "", "Argument[0].Element", "Argument[1].Element", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "filterNotNullTo", "(Iterable,Collection)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "filterNotNullTo", "(Iterable,Collection)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "filterNotTo", "(Iterable,Collection,Function1)", "", "Argument[0].Element", "Argument[1].Element", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "filterNotTo", "(Iterable,Collection,Function1)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "filterNotTo", "(Iterable,Collection,Function1)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "filterTo", "(Iterable,Collection,Function1)", "", "Argument[0].Element", "Argument[1].Element", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "filterTo", "(Iterable,Collection,Function1)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "filterTo", "(Iterable,Collection,Function1)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "find", "(Iterable,Function1)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "findLast", "(Iterable,Function1)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "findLast", "(List,Function1)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "first", "(Iterable)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "first", "(Iterable,Function1)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "first", "(List)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "firstNotNullOf", "(Iterable,Function1)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "firstNotNullOfOrNull", "(Iterable,Function1)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "firstOrNull", "(Iterable)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "firstOrNull", "(Iterable,Function1)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "firstOrNull", "(List)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "flatMapIndexedIterableTo", "(Iterable,Collection,Function2)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "flatMapIndexedSequenceTo", "(Iterable,Collection,Function2)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "flatMapSequenceTo", "(Iterable,Collection,Function1)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "flatMapTo", "(Iterable,Collection,Function1)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "flatten", "(Iterable)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "fold", "(Iterable,Object,Function2)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "foldIndexed", "(Iterable,Object,Function3)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "foldRight", "(List,Object,Function2)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "foldRightIndexed", "(List,Object,Function3)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "getOrElse", "(List,int,Function1)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "getOrNull", "(List,int)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "groupByTo", "(Iterable,Map,Function1)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "groupByTo", "(Iterable,Map,Function1,Function1)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "ifEmpty", "(Collection,Function0)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "intersect", "(Iterable,Iterable)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "iterator", "(Iterator)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "joinTo", "(Iterable,Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1)", "", "Argument[0].Element", "Argument[1]", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "joinTo", "(Iterable,Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "joinTo", "(Iterable,Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "joinTo", "(Iterable,Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1)", "", "Argument[2]", "Argument[1]", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "joinTo", "(Iterable,Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1)", "", "Argument[2]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "joinTo", "(Iterable,Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1)", "", "Argument[3]", "Argument[1]", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "joinTo", "(Iterable,Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1)", "", "Argument[3]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "joinTo", "(Iterable,Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1)", "", "Argument[4]", "Argument[1]", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "joinTo", "(Iterable,Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1)", "", "Argument[4]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "joinTo", "(Iterable,Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1)", "", "Argument[6]", "Argument[1]", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "joinTo", "(Iterable,Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1)", "", "Argument[6]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "joinToString", "(Iterable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "joinToString", "(Iterable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "joinToString", "(Iterable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1)", "", "Argument[2]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "joinToString", "(Iterable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1)", "", "Argument[3]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "joinToString", "(Iterable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1)", "", "Argument[5]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "last", "(Iterable)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "last", "(Iterable,Function1)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "last", "(List)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "last", "(List,Function1)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "lastOrNull", "(Iterable)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "lastOrNull", "(Iterable,Function1)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "lastOrNull", "(List)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "lastOrNull", "(List,Function1)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "listOf", "(Object)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "listOf", "(Object[])", "", "Argument[0].ArrayElement", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "listOfNotNull", "(Object)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "map", "(Iterable,Function1)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "mapIndexedNotNullTo", "(Iterable,Collection,Function2)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "mapIndexedTo", "(Iterable,Collection,Function2)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "mapNotNullTo", "(Iterable,Collection,Function1)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "mapTo", "(Iterable,Collection,Function1)", "", "Argument[0].Element", "Argument[1].Element", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "mapTo", "(Iterable,Collection,Function1)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "mapTo", "(Iterable,Collection,Function1)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "max", "(Iterable)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "maxBy", "(Iterable,Function1)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "maxByOrNull", "(Iterable,Function1)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "maxByOrThrow", "(Iterable,Function1)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "maxOfWith", "(Iterable,Comparator,Function1)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "maxOfWithOrNull", "(Iterable,Comparator,Function1)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "maxOrNull", "(Iterable)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "maxOrThrow", "(Iterable)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "maxWith", "(Iterable,Comparator)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "maxWithOrNull", "(Iterable,Comparator)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "maxWithOrThrow", "(Iterable,Comparator)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "min", "(Iterable)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "minBy", "(Iterable,Function1)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "minByOrNull", "(Iterable,Function1)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "minByOrThrow", "(Iterable,Function1)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "minOfWith", "(Iterable,Comparator,Function1)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "minOfWithOrNull", "(Iterable,Comparator,Function1)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "minOrNull", "(Iterable)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "minOrThrow", "(Iterable)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "minWith", "(Iterable,Comparator)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "minWithOrNull", "(Iterable,Comparator)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "minWithOrThrow", "(Iterable,Comparator)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "minus", "(Iterable,Iterable)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "minus", "(Iterable,Object)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "minus", "(Iterable,Object[])", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "minus", "(Iterable,Sequence)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "minusElement", "(Iterable,Object)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "mutableListOf", "(Object[])", "", "Argument[0].ArrayElement", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "onEach", "(Iterable,Function1)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "onEachIndexed", "(Iterable,Function2)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "orEmpty", "(Collection)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "orEmpty", "(List)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "partition", "(Iterable,Function1)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "plus", "(Collection,Iterable)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "plus", "(Collection,Iterable)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "plus", "(Collection,Object)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "plus", "(Collection,Object)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "plus", "(Collection,Object[])", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "plus", "(Collection,Object[])", "", "Argument[1].ArrayElement", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "plus", "(Collection,Sequence)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "plus", "(Collection,Sequence)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "plus", "(Iterable,Iterable)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "plus", "(Iterable,Iterable)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "plus", "(Iterable,Object)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "plus", "(Iterable,Object)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "plus", "(Iterable,Object[])", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "plus", "(Iterable,Object[])", "", "Argument[1].ArrayElement", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "plus", "(Iterable,Sequence)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "plus", "(Iterable,Sequence)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "plusAssign", "(Collection,Iterable)", "", "Argument[1].Element", "Argument[0].Element", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "plusAssign", "(Collection,Object)", "", "Argument[1]", "Argument[0].Element", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "plusAssign", "(Collection,Object[])", "", "Argument[1].ArrayElement", "Argument[0].Element", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "plusAssign", "(Collection,Sequence)", "", "Argument[1]", "Argument[0].Element", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "plusElement", "(Collection,Object)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "plusElement", "(Collection,Object)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "plusElement", "(Iterable,Object)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "plusElement", "(Iterable,Object)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "random", "(Collection)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "random", "(Collection,Random)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "randomOrNull", "(Collection)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "randomOrNull", "(Collection,Random)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "reduce", "(Iterable,Function2)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "reduceIndexed", "(Iterable,Function3)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "reduceIndexedOrNull", "(Iterable,Function3)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "reduceOrNull", "(Iterable,Function2)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "reduceRight", "(List,Function2)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "reduceRightIndexed", "(List,Function3)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "reduceRightIndexedOrNull", "(List,Function3)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "reduceRightOrNull", "(List,Function2)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "remove", "(List,int)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "removeFirst", "(List)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "removeFirstOrNull", "(List)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "removeLast", "(List)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "removeLastOrNull", "(List)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "requireNoNulls", "(Iterable)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "requireNoNulls", "(List)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "reversed", "(Iterable)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "runningFold", "(Iterable,Object,Function2)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "runningFoldIndexed", "(Iterable,Object,Function3)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "scan", "(Iterable,Object,Function2)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "scanIndexed", "(Iterable,Object,Function3)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "shuffled", "(Iterable)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "shuffled", "(Iterable,Random)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "single", "(Iterable)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "single", "(Iterable,Function1)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "single", "(List)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "singleOrNull", "(Iterable)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "singleOrNull", "(Iterable,Function1)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "singleOrNull", "(List)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "slice", "(List,IntRange)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "slice", "(List,Iterable)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "sorted", "(Iterable)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "sortedBy", "(Iterable,Function1)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "sortedByDescending", "(Iterable,Function1)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "sortedDescending", "(Iterable)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "sortedWith", "(Iterable,Comparator)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "subtract", "(Iterable,Iterable)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "take", "(Iterable,int)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "takeLast", "(List,int)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "takeLastWhile", "(List,Function1)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "takeWhile", "(Iterable,Function1)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "toCollection", "(Iterable,Collection)", "", "Argument[0].Element", "Argument[1].Element", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "toCollection", "(Iterable,Collection)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "toCollection", "(Iterable,Collection)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "toHashSet", "(Iterable)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "toList", "(Enumeration)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "toList", "(Iterable)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "toMutableList", "(Collection)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "toMutableList", "(Iterable)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "toMutableSet", "(Iterable)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "toSet", "(Iterable)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "toSortedSet", "(Iterable)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "toSortedSet", "(Iterable,Comparator)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "union", "(Iterable,Iterable)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "union", "(Iterable,Iterable)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "unzip", "(Iterable)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "withIndex", "(Iterator)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "zip", "(Iterable,Iterable)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "zip", "(Iterable,Iterable)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "zip", "(Iterable,Iterable,Function2)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "zip", "(Iterable,Iterable,Function2)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "zip", "(Iterable,Object[])", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "zip", "(Iterable,Object[])", "", "Argument[1].ArrayElement", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "zip", "(Iterable,Object[],Function2)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "zip", "(Iterable,Object[],Function2)", "", "Argument[1].ArrayElement", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "zipWithNext", "(Iterable)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "CollectionsKt", false, "zipWithNext", "(Iterable,Function2)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "GroupingKt", false, "aggregateTo", "(Grouping,Map,Function4)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "GroupingKt", false, "eachCountTo", "(Grouping,Map)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "GroupingKt", false, "foldTo", "(Grouping,Map,Function2,Function3)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "GroupingKt", false, "foldTo", "(Grouping,Map,Object,Function2)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "GroupingKt", false, "reduceTo", "(Grouping,Map,Function3)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "IndexedValue", false, "IndexedValue", "(int,Object)", "", "Argument[1]", "Argument[-1]", "taint", "generated"]
+      - ["kotlin.collections", "IndexedValue", false, "component2", "()", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "IndexedValue", false, "copy", "(int,Object)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "IndexedValue", false, "getValue", "()", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "IndexedValue", false, "toString", "()", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "MapAccessorsKt", false, "getValue", "(Map,Object,KProperty)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "MapAccessorsKt", false, "getVar", "(Map,Object,KProperty)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "MapAccessorsKt", false, "setValue", "(Map,Object,KProperty,Object)", "", "Argument[2]", "Argument[0].Element", "taint", "generated"]
+      - ["kotlin.collections", "MapAccessorsKt", false, "setValue", "(Map,Object,KProperty,Object)", "", "Argument[3]", "Argument[0].Element", "taint", "generated"]
+      - ["kotlin.collections", "MapsKt", false, "asIterable", "(Map)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "MapsKt", false, "component1", "(Entry)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "MapsKt", false, "component2", "(Entry)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "MapsKt", false, "filter", "(Map,Function1)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "MapsKt", false, "filterKeys", "(Map,Function1)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "MapsKt", false, "filterNot", "(Map,Function1)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "MapsKt", false, "filterNotTo", "(Map,Map,Function1)", "", "Argument[0].Element", "Argument[1].Element", "taint", "generated"]
+      - ["kotlin.collections", "MapsKt", false, "filterNotTo", "(Map,Map,Function1)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "MapsKt", false, "filterNotTo", "(Map,Map,Function1)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "MapsKt", false, "filterTo", "(Map,Map,Function1)", "", "Argument[0].Element", "Argument[1].Element", "taint", "generated"]
+      - ["kotlin.collections", "MapsKt", false, "filterTo", "(Map,Map,Function1)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "MapsKt", false, "filterTo", "(Map,Map,Function1)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "MapsKt", false, "filterValues", "(Map,Function1)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "MapsKt", false, "firstNotNullOf", "(Map,Function1)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "MapsKt", false, "firstNotNullOfOrNull", "(Map,Function1)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "MapsKt", false, "flatMapSequenceTo", "(Map,Collection,Function1)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "MapsKt", false, "flatMapTo", "(Map,Collection,Function1)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "MapsKt", false, "get", "(Map,Object)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "MapsKt", false, "getOrElse", "(Map,Object,Function0)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "MapsKt", false, "getOrPut", "(ConcurrentMap,Object,Function0)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "MapsKt", false, "getOrPut", "(Map,Object,Function0)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "MapsKt", false, "getOrPut", "(Map,Object,Function0)", "", "Argument[1]", "Argument[0].Element", "taint", "generated"]
+      - ["kotlin.collections", "MapsKt", false, "getValue", "(Map,Object)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "MapsKt", false, "ifEmpty", "(Map,Function0)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "MapsKt", false, "iterator", "(Map)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "MapsKt", false, "map", "(Map,Function1)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "MapsKt", false, "mapKeys", "(Map,Function1)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "MapsKt", false, "mapKeysTo", "(Map,Map,Function1)", "", "Argument[0].Element", "Argument[1].Element", "taint", "generated"]
+      - ["kotlin.collections", "MapsKt", false, "mapKeysTo", "(Map,Map,Function1)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "MapsKt", false, "mapKeysTo", "(Map,Map,Function1)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "MapsKt", false, "mapNotNullTo", "(Map,Collection,Function1)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "MapsKt", false, "mapOf", "(Pair)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "MapsKt", false, "mapTo", "(Map,Collection,Function1)", "", "Argument[0].Element", "Argument[1].Element", "taint", "generated"]
+      - ["kotlin.collections", "MapsKt", false, "mapTo", "(Map,Collection,Function1)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "MapsKt", false, "mapTo", "(Map,Collection,Function1)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "MapsKt", false, "mapValues", "(Map,Function1)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "MapsKt", false, "mapValuesTo", "(Map,Map,Function1)", "", "Argument[0].Element", "Argument[1].Element", "taint", "generated"]
+      - ["kotlin.collections", "MapsKt", false, "mapValuesTo", "(Map,Map,Function1)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "MapsKt", false, "mapValuesTo", "(Map,Map,Function1)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "MapsKt", false, "maxBy", "(Map,Function1)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "MapsKt", false, "maxByOrNull", "(Map,Function1)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "MapsKt", false, "maxByOrThrow", "(Map,Function1)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "MapsKt", false, "maxOfWith", "(Map,Comparator,Function1)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "MapsKt", false, "maxOfWithOrNull", "(Map,Comparator,Function1)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "MapsKt", false, "maxWith", "(Map,Comparator)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "MapsKt", false, "maxWithOrNull", "(Map,Comparator)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "MapsKt", false, "maxWithOrThrow", "(Map,Comparator)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "MapsKt", false, "minBy", "(Map,Function1)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "MapsKt", false, "minByOrNull", "(Map,Function1)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "MapsKt", false, "minByOrThrow", "(Map,Function1)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "MapsKt", false, "minOfWith", "(Map,Comparator,Function1)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "MapsKt", false, "minOfWithOrNull", "(Map,Comparator,Function1)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "MapsKt", false, "minWith", "(Map,Comparator)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "MapsKt", false, "minWithOrNull", "(Map,Comparator)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "MapsKt", false, "minWithOrThrow", "(Map,Comparator)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "MapsKt", false, "minus", "(Map,Iterable)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "MapsKt", false, "minus", "(Map,Object)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "MapsKt", false, "minus", "(Map,Object[])", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "MapsKt", false, "minus", "(Map,Sequence)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "MapsKt", false, "mutableIterator", "(Map)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "MapsKt", false, "onEach", "(Map,Function1)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "MapsKt", false, "onEachIndexed", "(Map,Function2)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "MapsKt", false, "orEmpty", "(Map)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "MapsKt", false, "plus", "(Map,Iterable)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "MapsKt", false, "plus", "(Map,Iterable)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "MapsKt", false, "plus", "(Map,Map)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "MapsKt", false, "plus", "(Map,Pair)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "MapsKt", false, "plus", "(Map,Pair)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "MapsKt", false, "plus", "(Map,Pair[])", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "MapsKt", false, "plus", "(Map,Pair[])", "", "Argument[1].ArrayElement", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "MapsKt", false, "plus", "(Map,Sequence)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "MapsKt", false, "plusAssign", "(Map,Iterable)", "", "Argument[1].Element", "Argument[0].Element", "taint", "generated"]
+      - ["kotlin.collections", "MapsKt", false, "plusAssign", "(Map,Map)", "", "Argument[1].Element", "Argument[0].Element", "taint", "generated"]
+      - ["kotlin.collections", "MapsKt", false, "plusAssign", "(Map,Pair)", "", "Argument[1]", "Argument[0].Element", "taint", "generated"]
+      - ["kotlin.collections", "MapsKt", false, "plusAssign", "(Map,Sequence)", "", "Argument[1]", "Argument[0].Element", "taint", "generated"]
+      - ["kotlin.collections", "MapsKt", false, "putAll", "(Map,Iterable)", "", "Argument[1].Element", "Argument[0].Element", "taint", "generated"]
+      - ["kotlin.collections", "MapsKt", false, "putAll", "(Map,Sequence)", "", "Argument[1]", "Argument[0].Element", "taint", "generated"]
+      - ["kotlin.collections", "MapsKt", false, "remove", "(Map,Object)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "MapsKt", false, "set", "(Map,Object,Object)", "", "Argument[1]", "Argument[0].Element", "taint", "generated"]
+      - ["kotlin.collections", "MapsKt", false, "set", "(Map,Object,Object)", "", "Argument[2]", "Argument[0].Element", "taint", "generated"]
+      - ["kotlin.collections", "MapsKt", false, "toList", "(Map)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "MapsKt", false, "toMap", "(Iterable)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "MapsKt", false, "toMap", "(Iterable,Map)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "MapsKt", false, "toMap", "(Map)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "MapsKt", false, "toMap", "(Map,Map)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "MapsKt", false, "toMap", "(Pair[])", "", "Argument[0].ArrayElement", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "MapsKt", false, "toMap", "(Pair[],Map)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "MapsKt", false, "toMap", "(Sequence,Map)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "MapsKt", false, "toMutableMap", "(Map)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "MapsKt", false, "toPair", "(Entry)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "MapsKt", false, "toSortedMap", "(Map)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "MapsKt", false, "withDefault", "(Map,Function1)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "MapsKt", false, "withDefault", "(Map,Function1)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "MapsKt", false, "withDefaultMutable", "(Map,Function1)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "MapsKt", false, "withDefaultMutable", "(Map,Function1)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "SetsKt", false, "minus", "(Set,Iterable)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "SetsKt", false, "minus", "(Set,Object)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "SetsKt", false, "minus", "(Set,Object[])", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "SetsKt", false, "minus", "(Set,Sequence)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "SetsKt", false, "minusElement", "(Set,Object)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "SetsKt", false, "orEmpty", "(Set)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "SetsKt", false, "plus", "(Set,Iterable)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "SetsKt", false, "plus", "(Set,Iterable)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "SetsKt", false, "plus", "(Set,Object)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "SetsKt", false, "plus", "(Set,Object)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "SetsKt", false, "plus", "(Set,Object[])", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "SetsKt", false, "plus", "(Set,Object[])", "", "Argument[1].ArrayElement", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "SetsKt", false, "plus", "(Set,Sequence)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "SetsKt", false, "plus", "(Set,Sequence)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "SetsKt", false, "plusElement", "(Set,Object)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "SetsKt", false, "plusElement", "(Set,Object)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "SetsKt", false, "setOf", "(Object)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "SetsKt", false, "setOf", "(Object[])", "", "Argument[0].ArrayElement", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "SetsKt", false, "setOfNotNull", "(Object)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "UArraysKt", false, "asByteArray", "(UByteArray)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "UArraysKt", false, "asUByteArray", "(byte[])", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "UArraysKt", false, "associateWithTo", "(UByteArray,Map,Function1)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "UArraysKt", false, "associateWithTo", "(UIntArray,Map,Function1)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "UArraysKt", false, "associateWithTo", "(ULongArray,Map,Function1)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "UArraysKt", false, "associateWithTo", "(UShortArray,Map,Function1)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "UArraysKt", false, "contentToString", "(UByteArray)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "UArraysKt", false, "contentToString", "(UIntArray)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "UArraysKt", false, "contentToString", "(ULongArray)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "UArraysKt", false, "contentToString", "(UShortArray)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "UArraysKt", false, "copyInto", "(UByteArray,UByteArray,int,int,int)", "", "Argument[0].Element", "Argument[1].Element", "taint", "generated"]
+      - ["kotlin.collections", "UArraysKt", false, "copyInto", "(UByteArray,UByteArray,int,int,int)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "UArraysKt", false, "copyInto", "(UByteArray,UByteArray,int,int,int)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "UArraysKt", false, "copyInto", "(UIntArray,UIntArray,int,int,int)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "UArraysKt", false, "copyInto", "(ULongArray,ULongArray,int,int,int)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "UArraysKt", false, "copyInto", "(UShortArray,UShortArray,int,int,int)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "UArraysKt", false, "copyOf", "(UByteArray)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "UArraysKt", false, "copyOf", "(UByteArray,int)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "UArraysKt", false, "copyOfRange", "(UByteArray,int,int)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "UArraysKt", false, "drop", "(UByteArray,int)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "UArraysKt", false, "drop", "(UIntArray,int)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "UArraysKt", false, "drop", "(ULongArray,int)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "UArraysKt", false, "drop", "(UShortArray,int)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "UArraysKt", false, "dropLast", "(UByteArray,int)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "UArraysKt", false, "dropLast", "(UIntArray,int)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "UArraysKt", false, "dropLast", "(ULongArray,int)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "UArraysKt", false, "dropLast", "(UShortArray,int)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "UArraysKt", false, "dropLastWhile", "(UByteArray,Function1)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "UArraysKt", false, "dropLastWhile", "(UIntArray,Function1)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "UArraysKt", false, "dropLastWhile", "(ULongArray,Function1)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "UArraysKt", false, "dropLastWhile", "(UShortArray,Function1)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "UArraysKt", false, "filterIndexedTo", "(UByteArray,Collection,Function2)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "UArraysKt", false, "filterIndexedTo", "(UIntArray,Collection,Function2)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "UArraysKt", false, "filterIndexedTo", "(ULongArray,Collection,Function2)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "UArraysKt", false, "filterIndexedTo", "(UShortArray,Collection,Function2)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "UArraysKt", false, "filterNotTo", "(UByteArray,Collection,Function1)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "UArraysKt", false, "filterNotTo", "(UIntArray,Collection,Function1)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "UArraysKt", false, "filterNotTo", "(ULongArray,Collection,Function1)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "UArraysKt", false, "filterNotTo", "(UShortArray,Collection,Function1)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "UArraysKt", false, "filterTo", "(UByteArray,Collection,Function1)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "UArraysKt", false, "filterTo", "(UIntArray,Collection,Function1)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "UArraysKt", false, "filterTo", "(ULongArray,Collection,Function1)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "UArraysKt", false, "filterTo", "(UShortArray,Collection,Function1)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "UArraysKt", false, "flatMapIndexedTo", "(UByteArray,Collection,Function2)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "UArraysKt", false, "flatMapIndexedTo", "(UIntArray,Collection,Function2)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "UArraysKt", false, "flatMapIndexedTo", "(ULongArray,Collection,Function2)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "UArraysKt", false, "flatMapIndexedTo", "(UShortArray,Collection,Function2)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "UArraysKt", false, "flatMapTo", "(UByteArray,Collection,Function1)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "UArraysKt", false, "flatMapTo", "(UIntArray,Collection,Function1)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "UArraysKt", false, "flatMapTo", "(ULongArray,Collection,Function1)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "UArraysKt", false, "flatMapTo", "(UShortArray,Collection,Function1)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "UArraysKt", false, "fold", "(UByteArray,Object,Function2)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "UArraysKt", false, "fold", "(UIntArray,Object,Function2)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "UArraysKt", false, "fold", "(ULongArray,Object,Function2)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "UArraysKt", false, "fold", "(UShortArray,Object,Function2)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "UArraysKt", false, "foldIndexed", "(UByteArray,Object,Function3)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "UArraysKt", false, "foldIndexed", "(UIntArray,Object,Function3)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "UArraysKt", false, "foldIndexed", "(ULongArray,Object,Function3)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "UArraysKt", false, "foldIndexed", "(UShortArray,Object,Function3)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "UArraysKt", false, "foldRight", "(UByteArray,Object,Function2)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "UArraysKt", false, "foldRight", "(UIntArray,Object,Function2)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "UArraysKt", false, "foldRight", "(ULongArray,Object,Function2)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "UArraysKt", false, "foldRight", "(UShortArray,Object,Function2)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "UArraysKt", false, "foldRightIndexed", "(UByteArray,Object,Function3)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "UArraysKt", false, "foldRightIndexed", "(UIntArray,Object,Function3)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "UArraysKt", false, "foldRightIndexed", "(ULongArray,Object,Function3)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "UArraysKt", false, "foldRightIndexed", "(UShortArray,Object,Function3)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "UArraysKt", false, "groupByTo", "(UByteArray,Map,Function1)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "UArraysKt", false, "groupByTo", "(UByteArray,Map,Function1,Function1)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "UArraysKt", false, "groupByTo", "(UIntArray,Map,Function1)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "UArraysKt", false, "groupByTo", "(UIntArray,Map,Function1,Function1)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "UArraysKt", false, "groupByTo", "(ULongArray,Map,Function1)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "UArraysKt", false, "groupByTo", "(ULongArray,Map,Function1,Function1)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "UArraysKt", false, "groupByTo", "(UShortArray,Map,Function1)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "UArraysKt", false, "groupByTo", "(UShortArray,Map,Function1,Function1)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "UArraysKt", false, "mapIndexedTo", "(UByteArray,Collection,Function2)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "UArraysKt", false, "mapIndexedTo", "(UIntArray,Collection,Function2)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "UArraysKt", false, "mapIndexedTo", "(ULongArray,Collection,Function2)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "UArraysKt", false, "mapIndexedTo", "(UShortArray,Collection,Function2)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "UArraysKt", false, "mapTo", "(UByteArray,Collection,Function1)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "UArraysKt", false, "mapTo", "(UIntArray,Collection,Function1)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "UArraysKt", false, "mapTo", "(ULongArray,Collection,Function1)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "UArraysKt", false, "mapTo", "(UShortArray,Collection,Function1)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "UArraysKt", false, "onEach", "(UByteArray,Function1)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "UArraysKt", false, "onEach", "(UIntArray,Function1)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "UArraysKt", false, "onEach", "(ULongArray,Function1)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "UArraysKt", false, "onEach", "(UShortArray,Function1)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "UArraysKt", false, "onEachIndexed", "(UByteArray,Function2)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "UArraysKt", false, "onEachIndexed", "(UIntArray,Function2)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "UArraysKt", false, "onEachIndexed", "(ULongArray,Function2)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "UArraysKt", false, "onEachIndexed", "(UShortArray,Function2)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "UArraysKt", false, "plus", "(UByteArray,Collection)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "UArraysKt", false, "plus", "(UByteArray,UByteArray)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "UArraysKt", false, "plus", "(UByteArray,UByteArray)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "UArraysKt", false, "plus", "(UByteArray,byte)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "UArraysKt", false, "reversed", "(UByteArray)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "UArraysKt", false, "reversed", "(UIntArray)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "UArraysKt", false, "reversed", "(ULongArray)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "UArraysKt", false, "reversed", "(UShortArray)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "UArraysKt", false, "reversedArray", "(UByteArray)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "UArraysKt", false, "runningFold", "(UByteArray,Object,Function2)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "UArraysKt", false, "runningFold", "(UIntArray,Object,Function2)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "UArraysKt", false, "runningFold", "(ULongArray,Object,Function2)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "UArraysKt", false, "runningFold", "(UShortArray,Object,Function2)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "UArraysKt", false, "runningFoldIndexed", "(UByteArray,Object,Function3)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "UArraysKt", false, "runningFoldIndexed", "(UIntArray,Object,Function3)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "UArraysKt", false, "runningFoldIndexed", "(ULongArray,Object,Function3)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "UArraysKt", false, "runningFoldIndexed", "(UShortArray,Object,Function3)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "UArraysKt", false, "scan", "(UByteArray,Object,Function2)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "UArraysKt", false, "scan", "(UIntArray,Object,Function2)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "UArraysKt", false, "scan", "(ULongArray,Object,Function2)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "UArraysKt", false, "scan", "(UShortArray,Object,Function2)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "UArraysKt", false, "scanIndexed", "(UByteArray,Object,Function3)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "UArraysKt", false, "scanIndexed", "(UIntArray,Object,Function3)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "UArraysKt", false, "scanIndexed", "(ULongArray,Object,Function3)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "UArraysKt", false, "scanIndexed", "(UShortArray,Object,Function3)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "UArraysKt", false, "sliceArray", "(UByteArray,IntRange)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "UArraysKt", false, "sortedArray", "(UByteArray)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "UArraysKt", false, "sortedArray", "(UIntArray)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "UArraysKt", false, "sortedArray", "(ULongArray)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "UArraysKt", false, "sortedArray", "(UShortArray)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "UArraysKt", false, "sortedArrayDescending", "(UByteArray)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "UArraysKt", false, "sortedArrayDescending", "(UIntArray)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "UArraysKt", false, "sortedArrayDescending", "(ULongArray)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "UArraysKt", false, "sortedArrayDescending", "(UShortArray)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "UArraysKt", false, "sortedDescending", "(UByteArray)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "UArraysKt", false, "take", "(UByteArray,int)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "UArraysKt", false, "take", "(UIntArray,int)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "UArraysKt", false, "take", "(ULongArray,int)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "UArraysKt", false, "take", "(UShortArray,int)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "UArraysKt", false, "takeLast", "(UByteArray,int)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "UArraysKt", false, "takeLast", "(UIntArray,int)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "UArraysKt", false, "takeLast", "(ULongArray,int)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "UArraysKt", false, "takeLast", "(UShortArray,int)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "UArraysKt", false, "takeLastWhile", "(UByteArray,Function1)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "UArraysKt", false, "takeLastWhile", "(UIntArray,Function1)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "UArraysKt", false, "takeLastWhile", "(ULongArray,Function1)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "UArraysKt", false, "takeLastWhile", "(UShortArray,Function1)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "UArraysKt", false, "toByteArray", "(UByteArray)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.collections", "UArraysKt", false, "toUByteArray", "(byte[])", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.comparisons", "ComparisonsKt", false, "maxOf", "(Comparable,Comparable)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.comparisons", "ComparisonsKt", false, "maxOf", "(Comparable,Comparable)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.comparisons", "ComparisonsKt", false, "maxOf", "(Comparable,Comparable,Comparable)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.comparisons", "ComparisonsKt", false, "maxOf", "(Comparable,Comparable,Comparable)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.comparisons", "ComparisonsKt", false, "maxOf", "(Comparable,Comparable,Comparable)", "", "Argument[2]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.comparisons", "ComparisonsKt", false, "maxOf", "(Comparable,Comparable[])", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.comparisons", "ComparisonsKt", false, "maxOf", "(Object,Object,Comparator)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.comparisons", "ComparisonsKt", false, "maxOf", "(Object,Object,Comparator)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.comparisons", "ComparisonsKt", false, "maxOf", "(Object,Object,Object,Comparator)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.comparisons", "ComparisonsKt", false, "maxOf", "(Object,Object,Object,Comparator)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.comparisons", "ComparisonsKt", false, "maxOf", "(Object,Object,Object,Comparator)", "", "Argument[2]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.comparisons", "ComparisonsKt", false, "maxOf", "(Object,Object[],Comparator)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.comparisons", "ComparisonsKt", false, "minOf", "(Comparable,Comparable)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.comparisons", "ComparisonsKt", false, "minOf", "(Comparable,Comparable)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.comparisons", "ComparisonsKt", false, "minOf", "(Comparable,Comparable,Comparable)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.comparisons", "ComparisonsKt", false, "minOf", "(Comparable,Comparable,Comparable)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.comparisons", "ComparisonsKt", false, "minOf", "(Comparable,Comparable,Comparable)", "", "Argument[2]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.comparisons", "ComparisonsKt", false, "minOf", "(Comparable,Comparable[])", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.comparisons", "ComparisonsKt", false, "minOf", "(Object,Object,Comparator)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.comparisons", "ComparisonsKt", false, "minOf", "(Object,Object,Comparator)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.comparisons", "ComparisonsKt", false, "minOf", "(Object,Object,Object,Comparator)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.comparisons", "ComparisonsKt", false, "minOf", "(Object,Object,Object,Comparator)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.comparisons", "ComparisonsKt", false, "minOf", "(Object,Object,Object,Comparator)", "", "Argument[2]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.comparisons", "ComparisonsKt", false, "minOf", "(Object,Object[],Comparator)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.comparisons", "ComparisonsKt", false, "reversed", "(Comparator)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.coroutines", "AbstractCoroutineContextElement", true, "AbstractCoroutineContextElement", "(Key)", "", "Argument[0]", "Argument[-1]", "taint", "generated"]
+      - ["kotlin.coroutines", "AbstractCoroutineContextKey", true, "AbstractCoroutineContextKey", "(Key,Function1)", "", "Argument[0]", "Argument[-1]", "taint", "generated"]
+      - ["kotlin.coroutines", "AbstractCoroutineContextKey", true, "AbstractCoroutineContextKey", "(Key,Function1)", "", "Argument[1]", "Argument[-1]", "taint", "generated"]
+      - ["kotlin.coroutines", "CoroutineContext", true, "fold", "(Object,Function2)", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.coroutines", "CoroutineContext", true, "fold", "(Object,Function2)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.coroutines", "CoroutineContext", true, "get", "(Key)", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.coroutines", "CoroutineContext", true, "minusKey", "(Key)", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.coroutines", "CoroutineContext", true, "minusKey", "(Key)", "", "Argument[-1]", "ReturnValue", "value", "generated"]
+      - ["kotlin.coroutines", "CoroutineContext", true, "plus", "(CoroutineContext)", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.coroutines", "CoroutineContext", true, "plus", "(CoroutineContext)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.coroutines", "CoroutineContext$Element", true, "getKey", "()", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.coroutines", "CoroutineContextImplKt", false, "getPolymorphicElement", "(Element,Key)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.coroutines", "CoroutineContextImplKt", false, "minusPolymorphicKey", "(Element,Key)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.coroutines.intrinsics", "IntrinsicsKt", false, "intercepted", "(Continuation)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.coroutines.jvm.internal", "CoroutineStackFrame", true, "getCallerFrame", "()", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.io", "AccessDeniedException", false, "AccessDeniedException", "(File,File,String)", "", "Argument[0]", "Argument[-1]", "taint", "generated"]
+      - ["kotlin.io", "AccessDeniedException", false, "AccessDeniedException", "(File,File,String)", "", "Argument[1]", "Argument[-1]", "taint", "generated"]
+      - ["kotlin.io", "AccessDeniedException", false, "AccessDeniedException", "(File,File,String)", "", "Argument[2]", "Argument[-1]", "taint", "generated"]
+      - ["kotlin.io", "ByteStreamsKt", false, "buffered", "(InputStream,int)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.io", "ByteStreamsKt", false, "buffered", "(OutputStream,int)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.io", "ByteStreamsKt", false, "bufferedReader", "(InputStream,Charset)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.io", "ByteStreamsKt", false, "byteInputStream", "(String,Charset)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.io", "ByteStreamsKt", false, "copyTo", "(InputStream,OutputStream,int)", "", "Argument[0]", "Argument[1]", "taint", "generated"]
+      - ["kotlin.io", "ByteStreamsKt", false, "inputStream", "(byte[])", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.io", "ByteStreamsKt", false, "inputStream", "(byte[],int,int)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.io", "ByteStreamsKt", false, "readBytes", "(InputStream)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.io", "ByteStreamsKt", false, "readBytes", "(InputStream,int)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.io", "ByteStreamsKt", false, "reader", "(InputStream,Charset)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.io", "CloseableKt", false, "use", "(Closeable,Function1)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.io", "FileAlreadyExistsException", false, "FileAlreadyExistsException", "(File,File,String)", "", "Argument[0]", "Argument[-1]", "taint", "generated"]
+      - ["kotlin.io", "FileAlreadyExistsException", false, "FileAlreadyExistsException", "(File,File,String)", "", "Argument[1]", "Argument[-1]", "taint", "generated"]
+      - ["kotlin.io", "FileAlreadyExistsException", false, "FileAlreadyExistsException", "(File,File,String)", "", "Argument[2]", "Argument[-1]", "taint", "generated"]
+      - ["kotlin.io", "FileSystemException", true, "FileSystemException", "(File,File,String)", "", "Argument[0]", "Argument[-1]", "taint", "generated"]
+      - ["kotlin.io", "FileSystemException", true, "FileSystemException", "(File,File,String)", "", "Argument[1]", "Argument[-1]", "taint", "generated"]
+      - ["kotlin.io", "FileSystemException", true, "FileSystemException", "(File,File,String)", "", "Argument[2]", "Argument[-1]", "taint", "generated"]
+      - ["kotlin.io", "FileSystemException", true, "getFile", "()", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.io", "FileSystemException", true, "getOther", "()", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.io", "FileSystemException", true, "getReason", "()", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.io", "FileTreeWalk", false, "maxDepth", "(int)", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.io", "FileTreeWalk", false, "onEnter", "(Function1)", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.io", "FileTreeWalk", false, "onEnter", "(Function1)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.io", "FileTreeWalk", false, "onFail", "(Function2)", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.io", "FileTreeWalk", false, "onFail", "(Function2)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.io", "FileTreeWalk", false, "onLeave", "(Function1)", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.io", "FileTreeWalk", false, "onLeave", "(Function1)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.io", "FilesKt", false, "copyTo", "(File,File,boolean,int)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.io", "FilesKt", false, "relativeToOrSelf", "(File,File)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.io", "FilesKt", false, "resolve", "(File,File)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.io", "FilesKt", false, "resolve", "(File,String)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.io", "FilesKt", false, "resolveSibling", "(File,File)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.io", "FilesKt", false, "resolveSibling", "(File,String)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.io", "FilesKt", false, "walk", "(File,FileWalkDirection)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.io", "FilesKt", false, "walkBottomUp", "(File)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.io", "FilesKt", false, "walkTopDown", "(File)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.io", "NoSuchFileException", false, "NoSuchFileException", "(File,File,String)", "", "Argument[0]", "Argument[-1]", "taint", "generated"]
+      - ["kotlin.io", "NoSuchFileException", false, "NoSuchFileException", "(File,File,String)", "", "Argument[1]", "Argument[-1]", "taint", "generated"]
+      - ["kotlin.io", "NoSuchFileException", false, "NoSuchFileException", "(File,File,String)", "", "Argument[2]", "Argument[-1]", "taint", "generated"]
+      - ["kotlin.io", "TextStreamsKt", false, "buffered", "(Reader,int)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.io", "TextStreamsKt", false, "buffered", "(Writer,int)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.io", "TextStreamsKt", false, "copyTo", "(Reader,Writer,int)", "", "Argument[0]", "Argument[1]", "taint", "generated"]
+      - ["kotlin.io", "TextStreamsKt", false, "forEachLine", "(Reader,Function1)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.io", "TextStreamsKt", false, "lineSequence", "(BufferedReader)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.io", "TextStreamsKt", false, "readText", "(Reader)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.io", "TextStreamsKt", false, "reader", "(String)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.io", "TextStreamsKt", false, "useLines", "(Reader,Function1)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.jvm.internal", "AdaptedFunctionReference", true, "AdaptedFunctionReference", "(int,Class,String,String,int)", "", "Argument[2]", "Argument[-1]", "taint", "generated"]
+      - ["kotlin.jvm.internal", "AdaptedFunctionReference", true, "AdaptedFunctionReference", "(int,Class,String,String,int)", "", "Argument[3]", "Argument[-1]", "taint", "generated"]
+      - ["kotlin.jvm.internal", "AdaptedFunctionReference", true, "AdaptedFunctionReference", "(int,Object,Class,String,String,int)", "", "Argument[1]", "Argument[-1]", "taint", "generated"]
+      - ["kotlin.jvm.internal", "AdaptedFunctionReference", true, "AdaptedFunctionReference", "(int,Object,Class,String,String,int)", "", "Argument[3]", "Argument[-1]", "taint", "generated"]
+      - ["kotlin.jvm.internal", "AdaptedFunctionReference", true, "AdaptedFunctionReference", "(int,Object,Class,String,String,int)", "", "Argument[4]", "Argument[-1]", "taint", "generated"]
+      - ["kotlin.jvm.internal", "ArrayIteratorKt", false, "iterator", "(Object[])", "", "Argument[0].ArrayElement", "ReturnValue", "taint", "generated"]
+      - ["kotlin.jvm.internal", "ArrayIteratorsKt", false, "iterator", "(byte[])", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.jvm.internal", "ArrayIteratorsKt", false, "iterator", "(char[])", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.jvm.internal", "ByteSpreadBuilder", false, "toArray", "()", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.jvm.internal", "CallableReference", true, "compute", "()", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.jvm.internal", "CallableReference", true, "getBoundReceiver", "()", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.jvm.internal", "CallableReference", true, "getSignature", "()", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.jvm.internal", "CharSpreadBuilder", false, "toArray", "()", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.jvm.internal", "ClassReference$Companion", false, "getClassQualifiedName", "(Class)", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.jvm.internal", "ClassReference$Companion", false, "getClassSimpleName", "(Class)", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.jvm.internal", "CollectionToArray", false, "toArray", "(Collection)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.jvm.internal", "CollectionToArray", false, "toArray", "(Collection,Object[])", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.jvm.internal", "FunctionReference", true, "FunctionReference", "(int,Object)", "", "Argument[1]", "Argument[-1]", "taint", "generated"]
+      - ["kotlin.jvm.internal", "FunctionReference", true, "FunctionReference", "(int,Object,Class,String,String,int)", "", "Argument[1]", "Argument[-1]", "taint", "generated"]
+      - ["kotlin.jvm.internal", "FunctionReference", true, "FunctionReference", "(int,Object,Class,String,String,int)", "", "Argument[3]", "Argument[-1]", "taint", "generated"]
+      - ["kotlin.jvm.internal", "FunctionReference", true, "FunctionReference", "(int,Object,Class,String,String,int)", "", "Argument[4]", "Argument[-1]", "taint", "generated"]
+      - ["kotlin.jvm.internal", "FunctionReference", true, "toString", "()", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.jvm.internal", "FunctionReferenceImpl", true, "FunctionReferenceImpl", "(int,Class,String,String,int)", "", "Argument[2]", "Argument[-1]", "taint", "generated"]
+      - ["kotlin.jvm.internal", "FunctionReferenceImpl", true, "FunctionReferenceImpl", "(int,Class,String,String,int)", "", "Argument[3]", "Argument[-1]", "taint", "generated"]
+      - ["kotlin.jvm.internal", "FunctionReferenceImpl", true, "FunctionReferenceImpl", "(int,KDeclarationContainer,String,String)", "", "Argument[2]", "Argument[-1]", "taint", "generated"]
+      - ["kotlin.jvm.internal", "FunctionReferenceImpl", true, "FunctionReferenceImpl", "(int,KDeclarationContainer,String,String)", "", "Argument[3]", "Argument[-1]", "taint", "generated"]
+      - ["kotlin.jvm.internal", "FunctionReferenceImpl", true, "FunctionReferenceImpl", "(int,Object,Class,String,String,int)", "", "Argument[1]", "Argument[-1]", "taint", "generated"]
+      - ["kotlin.jvm.internal", "FunctionReferenceImpl", true, "FunctionReferenceImpl", "(int,Object,Class,String,String,int)", "", "Argument[3]", "Argument[-1]", "taint", "generated"]
+      - ["kotlin.jvm.internal", "FunctionReferenceImpl", true, "FunctionReferenceImpl", "(int,Object,Class,String,String,int)", "", "Argument[4]", "Argument[-1]", "taint", "generated"]
+      - ["kotlin.jvm.internal", "Intrinsics", true, "stringPlus", "(String,Object)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.jvm.internal", "Intrinsics", true, "stringPlus", "(String,Object)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.jvm.internal", "MutablePropertyReference", true, "MutablePropertyReference", "(Object)", "", "Argument[0]", "Argument[-1]", "taint", "generated"]
+      - ["kotlin.jvm.internal", "MutablePropertyReference", true, "MutablePropertyReference", "(Object,Class,String,String,int)", "", "Argument[0]", "Argument[-1]", "taint", "generated"]
+      - ["kotlin.jvm.internal", "MutablePropertyReference", true, "MutablePropertyReference", "(Object,Class,String,String,int)", "", "Argument[2]", "Argument[-1]", "taint", "generated"]
+      - ["kotlin.jvm.internal", "MutablePropertyReference", true, "MutablePropertyReference", "(Object,Class,String,String,int)", "", "Argument[3]", "Argument[-1]", "taint", "generated"]
+      - ["kotlin.jvm.internal", "MutablePropertyReference0", true, "MutablePropertyReference0", "(Object)", "", "Argument[0]", "Argument[-1]", "taint", "generated"]
+      - ["kotlin.jvm.internal", "MutablePropertyReference0", true, "MutablePropertyReference0", "(Object,Class,String,String,int)", "", "Argument[0]", "Argument[-1]", "taint", "generated"]
+      - ["kotlin.jvm.internal", "MutablePropertyReference0", true, "MutablePropertyReference0", "(Object,Class,String,String,int)", "", "Argument[2]", "Argument[-1]", "taint", "generated"]
+      - ["kotlin.jvm.internal", "MutablePropertyReference0", true, "MutablePropertyReference0", "(Object,Class,String,String,int)", "", "Argument[3]", "Argument[-1]", "taint", "generated"]
+      - ["kotlin.jvm.internal", "MutablePropertyReference0Impl", true, "MutablePropertyReference0Impl", "(Class,String,String,int)", "", "Argument[1]", "Argument[-1]", "taint", "generated"]
+      - ["kotlin.jvm.internal", "MutablePropertyReference0Impl", true, "MutablePropertyReference0Impl", "(Class,String,String,int)", "", "Argument[2]", "Argument[-1]", "taint", "generated"]
+      - ["kotlin.jvm.internal", "MutablePropertyReference0Impl", true, "MutablePropertyReference0Impl", "(KDeclarationContainer,String,String)", "", "Argument[1]", "Argument[-1]", "taint", "generated"]
+      - ["kotlin.jvm.internal", "MutablePropertyReference0Impl", true, "MutablePropertyReference0Impl", "(KDeclarationContainer,String,String)", "", "Argument[2]", "Argument[-1]", "taint", "generated"]
+      - ["kotlin.jvm.internal", "MutablePropertyReference0Impl", true, "MutablePropertyReference0Impl", "(Object,Class,String,String,int)", "", "Argument[0]", "Argument[-1]", "taint", "generated"]
+      - ["kotlin.jvm.internal", "MutablePropertyReference0Impl", true, "MutablePropertyReference0Impl", "(Object,Class,String,String,int)", "", "Argument[2]", "Argument[-1]", "taint", "generated"]
+      - ["kotlin.jvm.internal", "MutablePropertyReference0Impl", true, "MutablePropertyReference0Impl", "(Object,Class,String,String,int)", "", "Argument[3]", "Argument[-1]", "taint", "generated"]
+      - ["kotlin.jvm.internal", "MutablePropertyReference1", true, "MutablePropertyReference1", "(Object)", "", "Argument[0]", "Argument[-1]", "taint", "generated"]
+      - ["kotlin.jvm.internal", "MutablePropertyReference1", true, "MutablePropertyReference1", "(Object,Class,String,String,int)", "", "Argument[0]", "Argument[-1]", "taint", "generated"]
+      - ["kotlin.jvm.internal", "MutablePropertyReference1", true, "MutablePropertyReference1", "(Object,Class,String,String,int)", "", "Argument[2]", "Argument[-1]", "taint", "generated"]
+      - ["kotlin.jvm.internal", "MutablePropertyReference1", true, "MutablePropertyReference1", "(Object,Class,String,String,int)", "", "Argument[3]", "Argument[-1]", "taint", "generated"]
+      - ["kotlin.jvm.internal", "MutablePropertyReference1Impl", true, "MutablePropertyReference1Impl", "(Class,String,String,int)", "", "Argument[1]", "Argument[-1]", "taint", "generated"]
+      - ["kotlin.jvm.internal", "MutablePropertyReference1Impl", true, "MutablePropertyReference1Impl", "(Class,String,String,int)", "", "Argument[2]", "Argument[-1]", "taint", "generated"]
+      - ["kotlin.jvm.internal", "MutablePropertyReference1Impl", true, "MutablePropertyReference1Impl", "(KDeclarationContainer,String,String)", "", "Argument[1]", "Argument[-1]", "taint", "generated"]
+      - ["kotlin.jvm.internal", "MutablePropertyReference1Impl", true, "MutablePropertyReference1Impl", "(KDeclarationContainer,String,String)", "", "Argument[2]", "Argument[-1]", "taint", "generated"]
+      - ["kotlin.jvm.internal", "MutablePropertyReference1Impl", true, "MutablePropertyReference1Impl", "(Object,Class,String,String,int)", "", "Argument[0]", "Argument[-1]", "taint", "generated"]
+      - ["kotlin.jvm.internal", "MutablePropertyReference1Impl", true, "MutablePropertyReference1Impl", "(Object,Class,String,String,int)", "", "Argument[2]", "Argument[-1]", "taint", "generated"]
+      - ["kotlin.jvm.internal", "MutablePropertyReference1Impl", true, "MutablePropertyReference1Impl", "(Object,Class,String,String,int)", "", "Argument[3]", "Argument[-1]", "taint", "generated"]
+      - ["kotlin.jvm.internal", "MutablePropertyReference2", true, "MutablePropertyReference2", "(Class,String,String,int)", "", "Argument[1]", "Argument[-1]", "taint", "generated"]
+      - ["kotlin.jvm.internal", "MutablePropertyReference2", true, "MutablePropertyReference2", "(Class,String,String,int)", "", "Argument[2]", "Argument[-1]", "taint", "generated"]
+      - ["kotlin.jvm.internal", "MutablePropertyReference2Impl", true, "MutablePropertyReference2Impl", "(Class,String,String,int)", "", "Argument[1]", "Argument[-1]", "taint", "generated"]
+      - ["kotlin.jvm.internal", "MutablePropertyReference2Impl", true, "MutablePropertyReference2Impl", "(Class,String,String,int)", "", "Argument[2]", "Argument[-1]", "taint", "generated"]
+      - ["kotlin.jvm.internal", "MutablePropertyReference2Impl", true, "MutablePropertyReference2Impl", "(KDeclarationContainer,String,String)", "", "Argument[1]", "Argument[-1]", "taint", "generated"]
+      - ["kotlin.jvm.internal", "MutablePropertyReference2Impl", true, "MutablePropertyReference2Impl", "(KDeclarationContainer,String,String)", "", "Argument[2]", "Argument[-1]", "taint", "generated"]
+      - ["kotlin.jvm.internal", "PackageReference", false, "PackageReference", "(Class,String)", "", "Argument[1]", "Argument[-1]", "taint", "generated"]
+      - ["kotlin.jvm.internal", "PrimitiveSpreadBuilder", true, "addSpread", "(Object)", "", "Argument[0]", "Argument[-1]", "taint", "generated"]
+      - ["kotlin.jvm.internal", "PropertyReference", true, "PropertyReference", "(Object)", "", "Argument[0]", "Argument[-1]", "taint", "generated"]
+      - ["kotlin.jvm.internal", "PropertyReference", true, "PropertyReference", "(Object,Class,String,String,int)", "", "Argument[0]", "Argument[-1]", "taint", "generated"]
+      - ["kotlin.jvm.internal", "PropertyReference", true, "PropertyReference", "(Object,Class,String,String,int)", "", "Argument[2]", "Argument[-1]", "taint", "generated"]
+      - ["kotlin.jvm.internal", "PropertyReference", true, "PropertyReference", "(Object,Class,String,String,int)", "", "Argument[3]", "Argument[-1]", "taint", "generated"]
+      - ["kotlin.jvm.internal", "PropertyReference", true, "toString", "()", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.jvm.internal", "PropertyReference0", true, "PropertyReference0", "(Object)", "", "Argument[0]", "Argument[-1]", "taint", "generated"]
+      - ["kotlin.jvm.internal", "PropertyReference0", true, "PropertyReference0", "(Object,Class,String,String,int)", "", "Argument[0]", "Argument[-1]", "taint", "generated"]
+      - ["kotlin.jvm.internal", "PropertyReference0", true, "PropertyReference0", "(Object,Class,String,String,int)", "", "Argument[2]", "Argument[-1]", "taint", "generated"]
+      - ["kotlin.jvm.internal", "PropertyReference0", true, "PropertyReference0", "(Object,Class,String,String,int)", "", "Argument[3]", "Argument[-1]", "taint", "generated"]
+      - ["kotlin.jvm.internal", "PropertyReference0Impl", true, "PropertyReference0Impl", "(Class,String,String,int)", "", "Argument[1]", "Argument[-1]", "taint", "generated"]
+      - ["kotlin.jvm.internal", "PropertyReference0Impl", true, "PropertyReference0Impl", "(Class,String,String,int)", "", "Argument[2]", "Argument[-1]", "taint", "generated"]
+      - ["kotlin.jvm.internal", "PropertyReference0Impl", true, "PropertyReference0Impl", "(KDeclarationContainer,String,String)", "", "Argument[1]", "Argument[-1]", "taint", "generated"]
+      - ["kotlin.jvm.internal", "PropertyReference0Impl", true, "PropertyReference0Impl", "(KDeclarationContainer,String,String)", "", "Argument[2]", "Argument[-1]", "taint", "generated"]
+      - ["kotlin.jvm.internal", "PropertyReference0Impl", true, "PropertyReference0Impl", "(Object,Class,String,String,int)", "", "Argument[0]", "Argument[-1]", "taint", "generated"]
+      - ["kotlin.jvm.internal", "PropertyReference0Impl", true, "PropertyReference0Impl", "(Object,Class,String,String,int)", "", "Argument[2]", "Argument[-1]", "taint", "generated"]
+      - ["kotlin.jvm.internal", "PropertyReference0Impl", true, "PropertyReference0Impl", "(Object,Class,String,String,int)", "", "Argument[3]", "Argument[-1]", "taint", "generated"]
+      - ["kotlin.jvm.internal", "PropertyReference1", true, "PropertyReference1", "(Object)", "", "Argument[0]", "Argument[-1]", "taint", "generated"]
+      - ["kotlin.jvm.internal", "PropertyReference1", true, "PropertyReference1", "(Object,Class,String,String,int)", "", "Argument[0]", "Argument[-1]", "taint", "generated"]
+      - ["kotlin.jvm.internal", "PropertyReference1", true, "PropertyReference1", "(Object,Class,String,String,int)", "", "Argument[2]", "Argument[-1]", "taint", "generated"]
+      - ["kotlin.jvm.internal", "PropertyReference1", true, "PropertyReference1", "(Object,Class,String,String,int)", "", "Argument[3]", "Argument[-1]", "taint", "generated"]
+      - ["kotlin.jvm.internal", "PropertyReference1Impl", true, "PropertyReference1Impl", "(Class,String,String,int)", "", "Argument[1]", "Argument[-1]", "taint", "generated"]
+      - ["kotlin.jvm.internal", "PropertyReference1Impl", true, "PropertyReference1Impl", "(Class,String,String,int)", "", "Argument[2]", "Argument[-1]", "taint", "generated"]
+      - ["kotlin.jvm.internal", "PropertyReference1Impl", true, "PropertyReference1Impl", "(KDeclarationContainer,String,String)", "", "Argument[1]", "Argument[-1]", "taint", "generated"]
+      - ["kotlin.jvm.internal", "PropertyReference1Impl", true, "PropertyReference1Impl", "(KDeclarationContainer,String,String)", "", "Argument[2]", "Argument[-1]", "taint", "generated"]
+      - ["kotlin.jvm.internal", "PropertyReference1Impl", true, "PropertyReference1Impl", "(Object,Class,String,String,int)", "", "Argument[0]", "Argument[-1]", "taint", "generated"]
+      - ["kotlin.jvm.internal", "PropertyReference1Impl", true, "PropertyReference1Impl", "(Object,Class,String,String,int)", "", "Argument[2]", "Argument[-1]", "taint", "generated"]
+      - ["kotlin.jvm.internal", "PropertyReference1Impl", true, "PropertyReference1Impl", "(Object,Class,String,String,int)", "", "Argument[3]", "Argument[-1]", "taint", "generated"]
+      - ["kotlin.jvm.internal", "PropertyReference2", true, "PropertyReference2", "(Class,String,String,int)", "", "Argument[1]", "Argument[-1]", "taint", "generated"]
+      - ["kotlin.jvm.internal", "PropertyReference2", true, "PropertyReference2", "(Class,String,String,int)", "", "Argument[2]", "Argument[-1]", "taint", "generated"]
+      - ["kotlin.jvm.internal", "PropertyReference2Impl", true, "PropertyReference2Impl", "(Class,String,String,int)", "", "Argument[1]", "Argument[-1]", "taint", "generated"]
+      - ["kotlin.jvm.internal", "PropertyReference2Impl", true, "PropertyReference2Impl", "(Class,String,String,int)", "", "Argument[2]", "Argument[-1]", "taint", "generated"]
+      - ["kotlin.jvm.internal", "PropertyReference2Impl", true, "PropertyReference2Impl", "(KDeclarationContainer,String,String)", "", "Argument[1]", "Argument[-1]", "taint", "generated"]
+      - ["kotlin.jvm.internal", "PropertyReference2Impl", true, "PropertyReference2Impl", "(KDeclarationContainer,String,String)", "", "Argument[2]", "Argument[-1]", "taint", "generated"]
+      - ["kotlin.jvm.internal", "Reflection", true, "function", "(FunctionReference)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.jvm.internal", "Reflection", true, "getOrCreateKotlinPackage", "(Class,String)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.jvm.internal", "Reflection", true, "mutableCollectionType", "(KType)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.jvm.internal", "Reflection", true, "mutableProperty0", "(MutablePropertyReference0)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.jvm.internal", "Reflection", true, "mutableProperty1", "(MutablePropertyReference1)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.jvm.internal", "Reflection", true, "mutableProperty2", "(MutablePropertyReference2)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.jvm.internal", "Reflection", true, "nothingType", "(KType)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.jvm.internal", "Reflection", true, "nullableTypeOf", "(Class,KTypeProjection)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.jvm.internal", "Reflection", true, "nullableTypeOf", "(Class,KTypeProjection,KTypeProjection)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.jvm.internal", "Reflection", true, "nullableTypeOf", "(Class,KTypeProjection,KTypeProjection)", "", "Argument[2]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.jvm.internal", "Reflection", true, "nullableTypeOf", "(KClassifier)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.jvm.internal", "Reflection", true, "platformType", "(KType,KType)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.jvm.internal", "Reflection", true, "platformType", "(KType,KType)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.jvm.internal", "Reflection", true, "property0", "(PropertyReference0)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.jvm.internal", "Reflection", true, "property1", "(PropertyReference1)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.jvm.internal", "Reflection", true, "property2", "(PropertyReference2)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.jvm.internal", "Reflection", true, "setUpperBounds", "(KTypeParameter,KType)", "", "Argument[1]", "Argument[0]", "taint", "generated"]
+      - ["kotlin.jvm.internal", "Reflection", true, "typeOf", "(Class,KTypeProjection)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.jvm.internal", "Reflection", true, "typeOf", "(Class,KTypeProjection,KTypeProjection)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.jvm.internal", "Reflection", true, "typeOf", "(Class,KTypeProjection,KTypeProjection)", "", "Argument[2]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.jvm.internal", "Reflection", true, "typeOf", "(KClassifier)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.jvm.internal", "Reflection", true, "typeParameter", "(Object,String,KVariance,boolean)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.jvm.internal", "Reflection", true, "typeParameter", "(Object,String,KVariance,boolean)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.jvm.internal", "ReflectionFactory", true, "function", "(FunctionReference)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.jvm.internal", "ReflectionFactory", true, "getOrCreateKotlinPackage", "(Class,String)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.jvm.internal", "ReflectionFactory", true, "mutableCollectionType", "(KType)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.jvm.internal", "ReflectionFactory", true, "mutableProperty0", "(MutablePropertyReference0)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.jvm.internal", "ReflectionFactory", true, "mutableProperty1", "(MutablePropertyReference1)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.jvm.internal", "ReflectionFactory", true, "mutableProperty2", "(MutablePropertyReference2)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.jvm.internal", "ReflectionFactory", true, "nothingType", "(KType)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.jvm.internal", "ReflectionFactory", true, "platformType", "(KType,KType)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.jvm.internal", "ReflectionFactory", true, "platformType", "(KType,KType)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.jvm.internal", "ReflectionFactory", true, "property0", "(PropertyReference0)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.jvm.internal", "ReflectionFactory", true, "property1", "(PropertyReference1)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.jvm.internal", "ReflectionFactory", true, "property2", "(PropertyReference2)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.jvm.internal", "ReflectionFactory", true, "setUpperBounds", "(KTypeParameter,List)", "", "Argument[1].Element", "Argument[0]", "taint", "generated"]
+      - ["kotlin.jvm.internal", "ReflectionFactory", true, "typeOf", "(KClassifier,List,boolean)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.jvm.internal", "ReflectionFactory", true, "typeOf", "(KClassifier,List,boolean)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.jvm.internal", "ReflectionFactory", true, "typeParameter", "(Object,String,KVariance,boolean)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.jvm.internal", "ReflectionFactory", true, "typeParameter", "(Object,String,KVariance,boolean)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.jvm.internal", "SpreadBuilder", true, "add", "(Object)", "", "Argument[0]", "Argument[-1]", "taint", "generated"]
+      - ["kotlin.jvm.internal", "SpreadBuilder", true, "addSpread", "(Object)", "", "Argument[0]", "Argument[-1]", "taint", "generated"]
+      - ["kotlin.jvm.internal", "SpreadBuilder", true, "toArray", "(Object[])", "", "Argument[-1]", "Argument[0].ArrayElement", "taint", "generated"]
+      - ["kotlin.jvm.internal", "SpreadBuilder", true, "toArray", "(Object[])", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.jvm.internal", "TypeIntrinsics", true, "asMutableCollection", "(Object)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.jvm.internal", "TypeIntrinsics", true, "asMutableCollection", "(Object,String)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.jvm.internal", "TypeIntrinsics", true, "asMutableIterable", "(Object)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.jvm.internal", "TypeIntrinsics", true, "asMutableIterable", "(Object,String)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.jvm.internal", "TypeIntrinsics", true, "asMutableIterator", "(Object)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.jvm.internal", "TypeIntrinsics", true, "asMutableIterator", "(Object,String)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.jvm.internal", "TypeIntrinsics", true, "asMutableList", "(Object)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.jvm.internal", "TypeIntrinsics", true, "asMutableList", "(Object,String)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.jvm.internal", "TypeIntrinsics", true, "asMutableListIterator", "(Object)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.jvm.internal", "TypeIntrinsics", true, "asMutableListIterator", "(Object,String)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.jvm.internal", "TypeIntrinsics", true, "asMutableMap", "(Object)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.jvm.internal", "TypeIntrinsics", true, "asMutableMap", "(Object,String)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.jvm.internal", "TypeIntrinsics", true, "asMutableMapEntry", "(Object)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.jvm.internal", "TypeIntrinsics", true, "asMutableMapEntry", "(Object,String)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.jvm.internal", "TypeIntrinsics", true, "asMutableSet", "(Object)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.jvm.internal", "TypeIntrinsics", true, "asMutableSet", "(Object,String)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.jvm.internal", "TypeIntrinsics", true, "beforeCheckcastToFunctionOfArity", "(Object,int)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.jvm.internal", "TypeIntrinsics", true, "beforeCheckcastToFunctionOfArity", "(Object,int,String)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.jvm.internal", "TypeIntrinsics", true, "castToCollection", "(Object)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.jvm.internal", "TypeIntrinsics", true, "castToIterable", "(Object)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.jvm.internal", "TypeIntrinsics", true, "castToIterator", "(Object)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.jvm.internal", "TypeIntrinsics", true, "castToList", "(Object)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.jvm.internal", "TypeIntrinsics", true, "castToListIterator", "(Object)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.jvm.internal", "TypeIntrinsics", true, "castToMap", "(Object)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.jvm.internal", "TypeIntrinsics", true, "castToMapEntry", "(Object)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.jvm.internal", "TypeIntrinsics", true, "castToSet", "(Object)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.jvm.internal", "TypeParameterReference", false, "TypeParameterReference", "(Object,String,KVariance,boolean)", "", "Argument[0]", "Argument[-1]", "taint", "generated"]
+      - ["kotlin.jvm.internal", "TypeParameterReference", false, "TypeParameterReference", "(Object,String,KVariance,boolean)", "", "Argument[1]", "Argument[-1]", "taint", "generated"]
+      - ["kotlin.jvm.internal", "TypeParameterReference", false, "setUpperBounds", "(List)", "", "Argument[0].Element", "Argument[-1]", "taint", "generated"]
+      - ["kotlin.jvm.internal", "TypeReference", false, "TypeReference", "(KClassifier,List,KType,int)", "", "Argument[0]", "Argument[-1]", "taint", "generated"]
+      - ["kotlin.jvm.internal", "TypeReference", false, "TypeReference", "(KClassifier,List,KType,int)", "", "Argument[1].Element", "Argument[-1]", "taint", "generated"]
+      - ["kotlin.jvm.internal", "TypeReference", false, "TypeReference", "(KClassifier,List,KType,int)", "", "Argument[2]", "Argument[-1]", "taint", "generated"]
+      - ["kotlin.jvm.internal", "TypeReference", false, "TypeReference", "(KClassifier,List,boolean)", "", "Argument[0]", "Argument[-1]", "taint", "generated"]
+      - ["kotlin.jvm.internal", "TypeReference", false, "TypeReference", "(KClassifier,List,boolean)", "", "Argument[1].Element", "Argument[-1]", "taint", "generated"]
+      - ["kotlin.jvm.internal", "TypeReference", false, "toString", "()", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.properties", "ObservableProperty", true, "ObservableProperty", "(Object)", "", "Argument[0]", "Argument[-1]", "taint", "generated"]
+      - ["kotlin.random", "PlatformRandomKt", false, "asJavaRandom", "(Random)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.random", "PlatformRandomKt", false, "asKotlinRandom", "(Random)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.random", "Random", true, "nextBytes", "(byte[])", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.random", "Random", true, "nextBytes", "(byte[],int,int)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.random", "URandomKt", false, "nextUBytes", "(Random,UByteArray)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.random", "URandomKt", false, "nextUBytes", "(Random,UByteArray,int,int)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.ranges", "CharRange$Companion", false, "getEMPTY", "()", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.ranges", "IntRange$Companion", false, "getEMPTY", "()", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.ranges", "LongRange$Companion", false, "getEMPTY", "()", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.ranges", "RangesKt", false, "coerceAtLeast", "(Comparable,Comparable)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.ranges", "RangesKt", false, "coerceAtLeast", "(Comparable,Comparable)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.ranges", "RangesKt", false, "coerceAtMost", "(Comparable,Comparable)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.ranges", "RangesKt", false, "coerceAtMost", "(Comparable,Comparable)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.ranges", "RangesKt", false, "coerceIn", "(Comparable,ClosedFloatingPointRange)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.ranges", "RangesKt", false, "coerceIn", "(Comparable,ClosedRange)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.ranges", "RangesKt", false, "coerceIn", "(Comparable,Comparable,Comparable)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.ranges", "RangesKt", false, "coerceIn", "(Comparable,Comparable,Comparable)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.ranges", "RangesKt", false, "coerceIn", "(Comparable,Comparable,Comparable)", "", "Argument[2]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.ranges", "RangesKt", false, "rangeTo", "(Comparable,Comparable)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.ranges", "RangesKt", false, "rangeTo", "(Comparable,Comparable)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.ranges", "RangesKt", false, "rangeUntil", "(Comparable,Comparable)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.ranges", "RangesKt", false, "rangeUntil", "(Comparable,Comparable)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.ranges", "UIntRange$Companion", false, "getEMPTY", "()", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.ranges", "ULongRange$Companion", false, "getEMPTY", "()", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.reflect", "KClasses", false, "cast", "(KClass,Object)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.reflect", "KClasses", false, "safeCast", "(KClass,Object)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.reflect", "KType", true, "getArguments", "()", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.reflect", "KType", true, "getClassifier", "()", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.reflect", "KTypeParameter", true, "getName", "()", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.reflect", "KTypeParameter", true, "getUpperBounds", "()", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.reflect", "KTypeProjection", false, "KTypeProjection", "(KVariance,KType)", "", "Argument[1]", "Argument[-1]", "taint", "generated"]
+      - ["kotlin.reflect", "KTypeProjection", false, "component2", "()", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.reflect", "KTypeProjection", false, "contravariant", "(KType)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.reflect", "KTypeProjection", false, "copy", "(KVariance,KType)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.reflect", "KTypeProjection", false, "covariant", "(KType)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.reflect", "KTypeProjection", false, "getType", "()", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.reflect", "KTypeProjection", false, "invariant", "(KType)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.reflect", "KTypeProjection", false, "toString", "()", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.reflect", "KTypeProjection$Companion", false, "contravariant", "(KType)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.reflect", "KTypeProjection$Companion", false, "covariant", "(KType)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.reflect", "KTypeProjection$Companion", false, "invariant", "(KType)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.reflect", "TypesJVMKt", false, "getJavaType", "(KType)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.reflect", "WildcardTypeImpl$Companion", false, "getSTAR", "()", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.sequences", "SequenceScope", true, "yieldAll", "(Sequence)", "", "Argument[0]", "Argument[-1]", "taint", "generated"]
+      - ["kotlin.sequences", "SequencesKt", false, "asSequence", "(Sequence)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.sequences", "SequencesKt", false, "associateBy", "(Sequence,Function1)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.sequences", "SequencesKt", false, "associateByTo", "(Sequence,Map,Function1)", "", "Argument[0]", "Argument[1].Element", "taint", "generated"]
+      - ["kotlin.sequences", "SequencesKt", false, "associateByTo", "(Sequence,Map,Function1)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.sequences", "SequencesKt", false, "associateByTo", "(Sequence,Map,Function1)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.sequences", "SequencesKt", false, "associateByTo", "(Sequence,Map,Function1,Function1)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.sequences", "SequencesKt", false, "associateTo", "(Sequence,Map,Function1)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.sequences", "SequencesKt", false, "associateWith", "(Sequence,Function1)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.sequences", "SequencesKt", false, "associateWithTo", "(Sequence,Map,Function1)", "", "Argument[0]", "Argument[1].Element", "taint", "generated"]
+      - ["kotlin.sequences", "SequencesKt", false, "associateWithTo", "(Sequence,Map,Function1)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.sequences", "SequencesKt", false, "associateWithTo", "(Sequence,Map,Function1)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.sequences", "SequencesKt", false, "chunked", "(Sequence,int,Function1)", "", "Argument[2]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.sequences", "SequencesKt", false, "constrainOnce", "(Sequence)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.sequences", "SequencesKt", false, "distinct", "(Sequence)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.sequences", "SequencesKt", false, "distinctBy", "(Sequence,Function1)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.sequences", "SequencesKt", false, "distinctBy", "(Sequence,Function1)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.sequences", "SequencesKt", false, "drop", "(Sequence,int)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.sequences", "SequencesKt", false, "dropWhile", "(Sequence,Function1)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.sequences", "SequencesKt", false, "dropWhile", "(Sequence,Function1)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.sequences", "SequencesKt", false, "elementAt", "(Sequence,int)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.sequences", "SequencesKt", false, "elementAtOrElse", "(Sequence,int,Function1)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.sequences", "SequencesKt", false, "elementAtOrNull", "(Sequence,int)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.sequences", "SequencesKt", false, "filter", "(Sequence,Function1)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.sequences", "SequencesKt", false, "filter", "(Sequence,Function1)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.sequences", "SequencesKt", false, "filterIndexedTo", "(Sequence,Collection,Function2)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.sequences", "SequencesKt", false, "filterIsInstance", "(Sequence)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.sequences", "SequencesKt", false, "filterIsInstance", "(Sequence,Class)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.sequences", "SequencesKt", false, "filterIsInstanceTo", "(Sequence,Collection)", "", "Argument[0]", "Argument[1].Element", "taint", "generated"]
+      - ["kotlin.sequences", "SequencesKt", false, "filterIsInstanceTo", "(Sequence,Collection)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.sequences", "SequencesKt", false, "filterIsInstanceTo", "(Sequence,Collection)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.sequences", "SequencesKt", false, "filterIsInstanceTo", "(Sequence,Collection,Class)", "", "Argument[0]", "Argument[1].Element", "taint", "generated"]
+      - ["kotlin.sequences", "SequencesKt", false, "filterIsInstanceTo", "(Sequence,Collection,Class)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.sequences", "SequencesKt", false, "filterIsInstanceTo", "(Sequence,Collection,Class)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.sequences", "SequencesKt", false, "filterNot", "(Sequence,Function1)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.sequences", "SequencesKt", false, "filterNot", "(Sequence,Function1)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.sequences", "SequencesKt", false, "filterNotNull", "(Sequence)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.sequences", "SequencesKt", false, "filterNotNullTo", "(Sequence,Collection)", "", "Argument[0]", "Argument[1].Element", "taint", "generated"]
+      - ["kotlin.sequences", "SequencesKt", false, "filterNotNullTo", "(Sequence,Collection)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.sequences", "SequencesKt", false, "filterNotNullTo", "(Sequence,Collection)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.sequences", "SequencesKt", false, "filterNotTo", "(Sequence,Collection,Function1)", "", "Argument[0]", "Argument[1].Element", "taint", "generated"]
+      - ["kotlin.sequences", "SequencesKt", false, "filterNotTo", "(Sequence,Collection,Function1)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.sequences", "SequencesKt", false, "filterNotTo", "(Sequence,Collection,Function1)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.sequences", "SequencesKt", false, "filterTo", "(Sequence,Collection,Function1)", "", "Argument[0]", "Argument[1].Element", "taint", "generated"]
+      - ["kotlin.sequences", "SequencesKt", false, "filterTo", "(Sequence,Collection,Function1)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.sequences", "SequencesKt", false, "filterTo", "(Sequence,Collection,Function1)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.sequences", "SequencesKt", false, "find", "(Sequence,Function1)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.sequences", "SequencesKt", false, "findLast", "(Sequence,Function1)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.sequences", "SequencesKt", false, "first", "(Sequence)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.sequences", "SequencesKt", false, "first", "(Sequence,Function1)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.sequences", "SequencesKt", false, "firstNotNullOf", "(Sequence,Function1)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.sequences", "SequencesKt", false, "firstNotNullOfOrNull", "(Sequence,Function1)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.sequences", "SequencesKt", false, "firstOrNull", "(Sequence)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.sequences", "SequencesKt", false, "firstOrNull", "(Sequence,Function1)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.sequences", "SequencesKt", false, "flatMap", "(Sequence,Function1)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.sequences", "SequencesKt", false, "flatMap", "(Sequence,Function1)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.sequences", "SequencesKt", false, "flatMapIndexedIterableTo", "(Sequence,Collection,Function2)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.sequences", "SequencesKt", false, "flatMapIndexedSequenceTo", "(Sequence,Collection,Function2)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.sequences", "SequencesKt", false, "flatMapIterable", "(Sequence,Function1)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.sequences", "SequencesKt", false, "flatMapIterable", "(Sequence,Function1)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.sequences", "SequencesKt", false, "flatMapIterableTo", "(Sequence,Collection,Function1)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.sequences", "SequencesKt", false, "flatMapTo", "(Sequence,Collection,Function1)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.sequences", "SequencesKt", false, "flatten", "(Sequence)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.sequences", "SequencesKt", false, "flattenSequenceOfIterable", "(Sequence)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.sequences", "SequencesKt", false, "fold", "(Sequence,Object,Function2)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.sequences", "SequencesKt", false, "foldIndexed", "(Sequence,Object,Function3)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.sequences", "SequencesKt", false, "generateSequence", "(Function0)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.sequences", "SequencesKt", false, "generateSequence", "(Function0,Function1)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.sequences", "SequencesKt", false, "generateSequence", "(Function0,Function1)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.sequences", "SequencesKt", false, "generateSequence", "(Object,Function1)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.sequences", "SequencesKt", false, "groupByTo", "(Sequence,Map,Function1)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.sequences", "SequencesKt", false, "groupByTo", "(Sequence,Map,Function1,Function1)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.sequences", "SequencesKt", false, "joinTo", "(Sequence,Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1)", "", "Argument[0]", "Argument[1]", "taint", "generated"]
+      - ["kotlin.sequences", "SequencesKt", false, "joinTo", "(Sequence,Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.sequences", "SequencesKt", false, "joinTo", "(Sequence,Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.sequences", "SequencesKt", false, "joinTo", "(Sequence,Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1)", "", "Argument[2]", "Argument[1]", "taint", "generated"]
+      - ["kotlin.sequences", "SequencesKt", false, "joinTo", "(Sequence,Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1)", "", "Argument[2]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.sequences", "SequencesKt", false, "joinTo", "(Sequence,Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1)", "", "Argument[3]", "Argument[1]", "taint", "generated"]
+      - ["kotlin.sequences", "SequencesKt", false, "joinTo", "(Sequence,Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1)", "", "Argument[3]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.sequences", "SequencesKt", false, "joinTo", "(Sequence,Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1)", "", "Argument[4]", "Argument[1]", "taint", "generated"]
+      - ["kotlin.sequences", "SequencesKt", false, "joinTo", "(Sequence,Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1)", "", "Argument[4]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.sequences", "SequencesKt", false, "joinTo", "(Sequence,Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1)", "", "Argument[6]", "Argument[1]", "taint", "generated"]
+      - ["kotlin.sequences", "SequencesKt", false, "joinTo", "(Sequence,Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1)", "", "Argument[6]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.sequences", "SequencesKt", false, "joinToString", "(Sequence,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.sequences", "SequencesKt", false, "joinToString", "(Sequence,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.sequences", "SequencesKt", false, "joinToString", "(Sequence,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1)", "", "Argument[2]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.sequences", "SequencesKt", false, "joinToString", "(Sequence,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1)", "", "Argument[3]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.sequences", "SequencesKt", false, "joinToString", "(Sequence,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1)", "", "Argument[5]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.sequences", "SequencesKt", false, "last", "(Sequence)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.sequences", "SequencesKt", false, "last", "(Sequence,Function1)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.sequences", "SequencesKt", false, "lastOrNull", "(Sequence)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.sequences", "SequencesKt", false, "lastOrNull", "(Sequence,Function1)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.sequences", "SequencesKt", false, "map", "(Sequence,Function1)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.sequences", "SequencesKt", false, "map", "(Sequence,Function1)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.sequences", "SequencesKt", false, "mapIndexed", "(Sequence,Function2)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.sequences", "SequencesKt", false, "mapIndexed", "(Sequence,Function2)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.sequences", "SequencesKt", false, "mapIndexedNotNull", "(Sequence,Function2)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.sequences", "SequencesKt", false, "mapIndexedNotNull", "(Sequence,Function2)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.sequences", "SequencesKt", false, "mapIndexedNotNullTo", "(Sequence,Collection,Function2)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.sequences", "SequencesKt", false, "mapIndexedTo", "(Sequence,Collection,Function2)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.sequences", "SequencesKt", false, "mapNotNull", "(Sequence,Function1)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.sequences", "SequencesKt", false, "mapNotNull", "(Sequence,Function1)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.sequences", "SequencesKt", false, "mapNotNullTo", "(Sequence,Collection,Function1)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.sequences", "SequencesKt", false, "mapTo", "(Sequence,Collection,Function1)", "", "Argument[0]", "Argument[1].Element", "taint", "generated"]
+      - ["kotlin.sequences", "SequencesKt", false, "mapTo", "(Sequence,Collection,Function1)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.sequences", "SequencesKt", false, "mapTo", "(Sequence,Collection,Function1)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.sequences", "SequencesKt", false, "max", "(Sequence)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.sequences", "SequencesKt", false, "maxBy", "(Sequence,Function1)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.sequences", "SequencesKt", false, "maxByOrNull", "(Sequence,Function1)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.sequences", "SequencesKt", false, "maxByOrThrow", "(Sequence,Function1)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.sequences", "SequencesKt", false, "maxOfWith", "(Sequence,Comparator,Function1)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.sequences", "SequencesKt", false, "maxOfWithOrNull", "(Sequence,Comparator,Function1)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.sequences", "SequencesKt", false, "maxOrNull", "(Sequence)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.sequences", "SequencesKt", false, "maxOrThrow", "(Sequence)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.sequences", "SequencesKt", false, "maxWith", "(Sequence,Comparator)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.sequences", "SequencesKt", false, "maxWithOrNull", "(Sequence,Comparator)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.sequences", "SequencesKt", false, "maxWithOrThrow", "(Sequence,Comparator)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.sequences", "SequencesKt", false, "min", "(Sequence)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.sequences", "SequencesKt", false, "minBy", "(Sequence,Function1)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.sequences", "SequencesKt", false, "minByOrNull", "(Sequence,Function1)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.sequences", "SequencesKt", false, "minByOrThrow", "(Sequence,Function1)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.sequences", "SequencesKt", false, "minOfWith", "(Sequence,Comparator,Function1)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.sequences", "SequencesKt", false, "minOfWithOrNull", "(Sequence,Comparator,Function1)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.sequences", "SequencesKt", false, "minOrNull", "(Sequence)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.sequences", "SequencesKt", false, "minOrThrow", "(Sequence)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.sequences", "SequencesKt", false, "minWith", "(Sequence,Comparator)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.sequences", "SequencesKt", false, "minWithOrNull", "(Sequence,Comparator)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.sequences", "SequencesKt", false, "minWithOrThrow", "(Sequence,Comparator)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.sequences", "SequencesKt", false, "minus", "(Sequence,Object[])", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.sequences", "SequencesKt", false, "onEach", "(Sequence,Function1)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.sequences", "SequencesKt", false, "onEachIndexed", "(Sequence,Function2)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.sequences", "SequencesKt", false, "orEmpty", "(Sequence)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.sequences", "SequencesKt", false, "partition", "(Sequence,Function1)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.sequences", "SequencesKt", false, "reduce", "(Sequence,Function2)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.sequences", "SequencesKt", false, "reduceIndexed", "(Sequence,Function3)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.sequences", "SequencesKt", false, "reduceIndexedOrNull", "(Sequence,Function3)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.sequences", "SequencesKt", false, "reduceOrNull", "(Sequence,Function2)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.sequences", "SequencesKt", false, "requireNoNulls", "(Sequence)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.sequences", "SequencesKt", false, "single", "(Sequence)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.sequences", "SequencesKt", false, "single", "(Sequence,Function1)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.sequences", "SequencesKt", false, "singleOrNull", "(Sequence)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.sequences", "SequencesKt", false, "singleOrNull", "(Sequence,Function1)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.sequences", "SequencesKt", false, "take", "(Sequence,int)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.sequences", "SequencesKt", false, "takeWhile", "(Sequence,Function1)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.sequences", "SequencesKt", false, "takeWhile", "(Sequence,Function1)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.sequences", "SequencesKt", false, "toCollection", "(Sequence,Collection)", "", "Argument[0]", "Argument[1].Element", "taint", "generated"]
+      - ["kotlin.sequences", "SequencesKt", false, "toCollection", "(Sequence,Collection)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.sequences", "SequencesKt", false, "toCollection", "(Sequence,Collection)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.sequences", "SequencesKt", false, "toHashSet", "(Sequence)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.sequences", "SequencesKt", false, "toList", "(Sequence)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.sequences", "SequencesKt", false, "toMutableList", "(Sequence)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.sequences", "SequencesKt", false, "toMutableSet", "(Sequence)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.sequences", "SequencesKt", false, "toSet", "(Sequence)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.sequences", "SequencesKt", false, "toSortedSet", "(Sequence)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.sequences", "SequencesKt", false, "toSortedSet", "(Sequence,Comparator)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.sequences", "SequencesKt", false, "unzip", "(Sequence)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.sequences", "SequencesKt", false, "windowed", "(Sequence,int,int,boolean,Function1)", "", "Argument[4]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.sequences", "SequencesKt", false, "withIndex", "(Sequence)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.sequences", "SequencesKt", false, "zip", "(Sequence,Sequence)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.sequences", "SequencesKt", false, "zip", "(Sequence,Sequence)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.sequences", "SequencesKt", false, "zip", "(Sequence,Sequence,Function2)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.sequences", "SequencesKt", false, "zip", "(Sequence,Sequence,Function2)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.sequences", "SequencesKt", false, "zip", "(Sequence,Sequence,Function2)", "", "Argument[2]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "CharsKt", false, "plus", "(char,String)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "MatchGroup", false, "MatchGroup", "(String,IntRange)", "", "Argument[0]", "Argument[-1]", "taint", "generated"]
+      - ["kotlin.text", "MatchGroup", false, "MatchGroup", "(String,IntRange)", "", "Argument[1].Element", "Argument[-1]", "taint", "generated"]
+      - ["kotlin.text", "MatchGroup", false, "component1", "()", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "MatchGroup", false, "component2", "()", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "MatchGroup", false, "copy", "(String,IntRange)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "MatchGroup", false, "copy", "(String,IntRange)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "MatchGroup", false, "getRange", "()", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "MatchGroup", false, "getValue", "()", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "MatchGroup", false, "toString", "()", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "MatchResult", true, "getDestructured", "()", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "MatchResult", true, "getGroupValues", "()", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "MatchResult", true, "getGroups", "()", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "MatchResult", true, "next", "()", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "MatchResult$Destructured", false, "component1", "()", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "MatchResult$Destructured", false, "component10", "()", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "MatchResult$Destructured", false, "component2", "()", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "MatchResult$Destructured", false, "component3", "()", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "MatchResult$Destructured", false, "component4", "()", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "MatchResult$Destructured", false, "component5", "()", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "MatchResult$Destructured", false, "component6", "()", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "MatchResult$Destructured", false, "component7", "()", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "MatchResult$Destructured", false, "component8", "()", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "MatchResult$Destructured", false, "component9", "()", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "MatchResult$Destructured", false, "getMatch", "()", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "MatchResult$Destructured", false, "toList", "()", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "Regex", false, "find", "(CharSequence,int)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "Regex", false, "getOptions", "()", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "Regex", false, "matchEntire", "(CharSequence)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "Regex", false, "replace", "(CharSequence,Function1)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "Regex", false, "replace", "(CharSequence,String)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "Regex", false, "replace", "(CharSequence,String)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "Regex", false, "replaceFirst", "(CharSequence,String)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "Regex", false, "replaceFirst", "(CharSequence,String)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "Regex", false, "toPattern", "()", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "Regex$Companion", false, "escape", "(String)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "String", "(StringBuffer)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "String", "(StringBuilder)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "String", "(byte[])", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "String", "(byte[],Charset)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "String", "(byte[],int,int)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "String", "(byte[],int,int,Charset)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "String", "(char[])", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "String", "(char[],int,int)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "append", "(Appendable,CharSequence[])", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "append", "(StringBuilder,Object)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "append", "(StringBuilder,Object)", "", "Argument[1]", "Argument[0]", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "append", "(StringBuilder,Object)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "append", "(StringBuilder,Object[])", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "append", "(StringBuilder,String[])", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "appendLine", "(Appendable)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "appendLine", "(Appendable,CharSequence)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "appendLine", "(Appendable,CharSequence)", "", "Argument[1]", "Argument[0]", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "appendLine", "(Appendable,CharSequence)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "appendLine", "(Appendable,char)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "appendLine", "(StringBuilder)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "appendLine", "(StringBuilder,CharSequence)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "appendLine", "(StringBuilder,CharSequence)", "", "Argument[1]", "Argument[0]", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "appendLine", "(StringBuilder,CharSequence)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "appendLine", "(StringBuilder,Object)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "appendLine", "(StringBuilder,Object)", "", "Argument[1]", "Argument[0]", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "appendLine", "(StringBuilder,Object)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "appendLine", "(StringBuilder,String)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "appendLine", "(StringBuilder,String)", "", "Argument[1]", "Argument[0]", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "appendLine", "(StringBuilder,String)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "appendLine", "(StringBuilder,StringBuffer)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "appendLine", "(StringBuilder,StringBuffer)", "", "Argument[1]", "Argument[0]", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "appendLine", "(StringBuilder,StringBuffer)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "appendLine", "(StringBuilder,StringBuilder)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "appendLine", "(StringBuilder,StringBuilder)", "", "Argument[1]", "Argument[0]", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "appendLine", "(StringBuilder,StringBuilder)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "appendLine", "(StringBuilder,boolean)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "appendLine", "(StringBuilder,byte)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "appendLine", "(StringBuilder,char)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "appendLine", "(StringBuilder,char[])", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "appendLine", "(StringBuilder,char[])", "", "Argument[1]", "Argument[0]", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "appendLine", "(StringBuilder,char[])", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "appendLine", "(StringBuilder,double)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "appendLine", "(StringBuilder,float)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "appendLine", "(StringBuilder,int)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "appendLine", "(StringBuilder,long)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "appendLine", "(StringBuilder,short)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "appendRange", "(Appendable,CharSequence,int,int)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "appendRange", "(Appendable,CharSequence,int,int)", "", "Argument[1]", "Argument[0]", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "appendRange", "(Appendable,CharSequence,int,int)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "appendRange", "(StringBuilder,CharSequence,int,int)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "appendRange", "(StringBuilder,CharSequence,int,int)", "", "Argument[1]", "Argument[0]", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "appendRange", "(StringBuilder,CharSequence,int,int)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "appendRange", "(StringBuilder,char[],int,int)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "appendRange", "(StringBuilder,char[],int,int)", "", "Argument[1]", "Argument[0]", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "appendRange", "(StringBuilder,char[],int,int)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "appendln", "(Appendable)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "appendln", "(Appendable,CharSequence)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "appendln", "(Appendable,CharSequence)", "", "Argument[1]", "Argument[0]", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "appendln", "(Appendable,CharSequence)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "appendln", "(Appendable,char)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "appendln", "(StringBuilder)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "appendln", "(StringBuilder,CharSequence)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "appendln", "(StringBuilder,CharSequence)", "", "Argument[1]", "Argument[0]", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "appendln", "(StringBuilder,CharSequence)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "appendln", "(StringBuilder,Object)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "appendln", "(StringBuilder,Object)", "", "Argument[1]", "Argument[0]", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "appendln", "(StringBuilder,Object)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "appendln", "(StringBuilder,String)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "appendln", "(StringBuilder,String)", "", "Argument[1]", "Argument[0]", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "appendln", "(StringBuilder,String)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "appendln", "(StringBuilder,StringBuffer)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "appendln", "(StringBuilder,StringBuffer)", "", "Argument[1]", "Argument[0]", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "appendln", "(StringBuilder,StringBuffer)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "appendln", "(StringBuilder,StringBuilder)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "appendln", "(StringBuilder,StringBuilder)", "", "Argument[1]", "Argument[0]", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "appendln", "(StringBuilder,StringBuilder)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "appendln", "(StringBuilder,boolean)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "appendln", "(StringBuilder,byte)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "appendln", "(StringBuilder,char)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "appendln", "(StringBuilder,char[])", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "appendln", "(StringBuilder,char[])", "", "Argument[1]", "Argument[0]", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "appendln", "(StringBuilder,char[])", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "appendln", "(StringBuilder,double)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "appendln", "(StringBuilder,float)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "appendln", "(StringBuilder,int)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "appendln", "(StringBuilder,long)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "appendln", "(StringBuilder,short)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "associateByTo", "(CharSequence,Map,Function1)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "associateByTo", "(CharSequence,Map,Function1,Function1)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "associateTo", "(CharSequence,Map,Function1)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "associateWithTo", "(CharSequence,Map,Function1)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "capitalize", "(String)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "capitalize", "(String,Locale)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "clear", "(StringBuilder)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "concatToString", "(char[])", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "concatToString", "(char[],int,int)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "decapitalize", "(String)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "decapitalize", "(String,Locale)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "decodeToString", "(byte[])", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "decodeToString", "(byte[],int,int,boolean)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "drop", "(CharSequence,int)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "drop", "(String,int)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "dropLast", "(CharSequence,int)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "dropLast", "(String,int)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "dropLastWhile", "(CharSequence,Function1)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "dropLastWhile", "(String,Function1)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "dropWhile", "(CharSequence,Function1)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "dropWhile", "(String,Function1)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "encodeToByteArray", "(String)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "encodeToByteArray", "(String,int,int,boolean)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "filterIndexedTo", "(CharSequence,Appendable,Function2)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "filterNotTo", "(CharSequence,Appendable,Function1)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "filterTo", "(CharSequence,Appendable,Function1)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "findAnyOf", "(CharSequence,Collection,int,boolean)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "findLastAnyOf", "(CharSequence,Collection,int,boolean)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "flatMapIndexedIterableTo", "(CharSequence,Collection,Function2)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "flatMapTo", "(CharSequence,Collection,Function1)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "fold", "(CharSequence,Object,Function2)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "foldIndexed", "(CharSequence,Object,Function3)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "foldRight", "(CharSequence,Object,Function2)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "foldRightIndexed", "(CharSequence,Object,Function3)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "format", "(String,Locale,Object[])", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "format", "(String,Locale,Object[])", "", "Argument[2].ArrayElement", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "format", "(String,Object[])", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "format", "(String,Object[])", "", "Argument[1].ArrayElement", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "format", "(StringCompanionObject,Locale,String,Object[])", "", "Argument[2]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "format", "(StringCompanionObject,Locale,String,Object[])", "", "Argument[3].ArrayElement", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "format", "(StringCompanionObject,String,Object[])", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "format", "(StringCompanionObject,String,Object[])", "", "Argument[2].ArrayElement", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "formatNullable", "(String,Locale,Object[])", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "formatNullable", "(String,Locale,Object[])", "", "Argument[2].ArrayElement", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "formatNullable", "(StringCompanionObject,Locale,String,Object[])", "", "Argument[2]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "formatNullable", "(StringCompanionObject,Locale,String,Object[])", "", "Argument[3].ArrayElement", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "groupByTo", "(CharSequence,Map,Function1)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "groupByTo", "(CharSequence,Map,Function1,Function1)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "ifBlank", "(CharSequence,Function0)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "ifEmpty", "(CharSequence,Function0)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "insertRange", "(StringBuilder,int,CharSequence,int,int)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "insertRange", "(StringBuilder,int,CharSequence,int,int)", "", "Argument[2]", "Argument[0]", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "insertRange", "(StringBuilder,int,CharSequence,int,int)", "", "Argument[2]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "insertRange", "(StringBuilder,int,char[],int,int)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "insertRange", "(StringBuilder,int,char[],int,int)", "", "Argument[2]", "Argument[0]", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "insertRange", "(StringBuilder,int,char[],int,int)", "", "Argument[2]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "intern", "(String)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "lineSequence", "(CharSequence)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "lines", "(CharSequence)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "lowercase", "(String)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "lowercase", "(String,Locale)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "mapIndexedNotNullTo", "(CharSequence,Collection,Function2)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "mapIndexedTo", "(CharSequence,Collection,Function2)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "mapNotNullTo", "(CharSequence,Collection,Function1)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "mapTo", "(CharSequence,Collection,Function1)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "onEach", "(CharSequence,Function1)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "onEachIndexed", "(CharSequence,Function2)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "orEmpty", "(String)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "padEnd", "(CharSequence,int,char)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "padStart", "(CharSequence,int,char)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "prependIndent", "(String,String)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "removePrefix", "(CharSequence,CharSequence)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "removePrefix", "(String,CharSequence)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "removeRange", "(CharSequence,IntRange)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "removeRange", "(CharSequence,int,int)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "removeSuffix", "(CharSequence,CharSequence)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "removeSuffix", "(String,CharSequence)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "removeSurrounding", "(CharSequence,CharSequence)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "removeSurrounding", "(CharSequence,CharSequence,CharSequence)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "removeSurrounding", "(String,CharSequence)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "removeSurrounding", "(String,CharSequence,CharSequence)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "repeat", "(CharSequence,int)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "replace", "(CharSequence,Regex,Function1)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "replace", "(CharSequence,Regex,String)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "replace", "(CharSequence,Regex,String)", "", "Argument[2]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "replace", "(String,char,char,boolean)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "replaceAfter", "(String,String,String,String)", "", "Argument[3]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "replaceAfter", "(String,char,String,String)", "", "Argument[3]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "replaceAfterLast", "(String,String,String,String)", "", "Argument[3]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "replaceAfterLast", "(String,char,String,String)", "", "Argument[3]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "replaceBefore", "(String,String,String,String)", "", "Argument[3]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "replaceBefore", "(String,char,String,String)", "", "Argument[3]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "replaceBeforeLast", "(String,String,String,String)", "", "Argument[3]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "replaceBeforeLast", "(String,char,String,String)", "", "Argument[3]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "replaceFirst", "(CharSequence,Regex,String)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "replaceFirst", "(CharSequence,Regex,String)", "", "Argument[2]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "replaceFirst", "(String,String,String,boolean)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "replaceFirst", "(String,char,char,boolean)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "replaceFirstCharWithChar", "(String,Function1)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "replaceFirstCharWithCharSequence", "(String,Function1)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "replaceRange", "(CharSequence,IntRange,CharSequence)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "replaceRange", "(CharSequence,IntRange,CharSequence)", "", "Argument[2]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "replaceRange", "(CharSequence,int,int,CharSequence)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "replaceRange", "(CharSequence,int,int,CharSequence)", "", "Argument[3]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "reversed", "(CharSequence)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "runningFold", "(CharSequence,Object,Function2)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "runningFoldIndexed", "(CharSequence,Object,Function3)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "scan", "(CharSequence,Object,Function2)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "scanIndexed", "(CharSequence,Object,Function3)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "setRange", "(StringBuilder,int,int,String)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "setRange", "(StringBuilder,int,int,String)", "", "Argument[3]", "Argument[0]", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "setRange", "(StringBuilder,int,int,String)", "", "Argument[3]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "slice", "(CharSequence,IntRange)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "slice", "(String,IntRange)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "split", "(CharSequence,Pattern,int)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "splitToSequence", "(CharSequence,String[],boolean,int)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "splitToSequence", "(CharSequence,char[],boolean,int)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "subSequence", "(CharSequence,IntRange)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "subSequence", "(String,int,int)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "substring", "(String,IntRange)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "substring", "(String,int)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "substring", "(String,int,int)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "substringAfter", "(String,String,String)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "substringAfter", "(String,String,String)", "", "Argument[2]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "substringAfter", "(String,char,String)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "substringAfter", "(String,char,String)", "", "Argument[2]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "substringAfterLast", "(String,String,String)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "substringAfterLast", "(String,String,String)", "", "Argument[2]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "substringAfterLast", "(String,char,String)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "substringAfterLast", "(String,char,String)", "", "Argument[2]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "substringBefore", "(String,String,String)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "substringBefore", "(String,String,String)", "", "Argument[2]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "substringBefore", "(String,char,String)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "substringBefore", "(String,char,String)", "", "Argument[2]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "substringBeforeLast", "(String,String,String)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "substringBeforeLast", "(String,String,String)", "", "Argument[2]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "substringBeforeLast", "(String,char,String)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "substringBeforeLast", "(String,char,String)", "", "Argument[2]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "take", "(CharSequence,int)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "take", "(String,int)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "takeLast", "(CharSequence,int)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "takeLast", "(String,int)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "takeLastWhile", "(CharSequence,Function1)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "takeLastWhile", "(String,Function1)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "takeWhile", "(CharSequence,Function1)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "takeWhile", "(String,Function1)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "toByteArray", "(String,Charset)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "toCharArray", "(String)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "toCharArray", "(String,char[],int,int,int)", "", "Argument[0]", "Argument[1]", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "toCharArray", "(String,char[],int,int,int)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "toCharArray", "(String,char[],int,int,int)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "toCharArray", "(String,int,int)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "toCharArray", "(StringBuilder,char[],int,int,int)", "", "Argument[0]", "Argument[1]", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "toCollection", "(CharSequence,Collection)", "", "Argument[1].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "toLowerCase", "(String)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "toLowerCase", "(String,Locale)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "toRegex", "(Pattern)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "toUpperCase", "(String)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "toUpperCase", "(String,Locale)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "trim", "(CharSequence)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "trim", "(CharSequence,Function1)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "trim", "(CharSequence,char[])", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "trimEnd", "(CharSequence)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "trimEnd", "(CharSequence,Function1)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "trimEnd", "(CharSequence,char[])", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "trimStart", "(CharSequence)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "trimStart", "(CharSequence,Function1)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "trimStart", "(CharSequence,char[])", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "uppercase", "(String)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.text", "StringsKt", false, "uppercase", "(String,Locale)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.time", "Duration", false, "div", "(double)", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.time", "Duration", false, "div", "(int)", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.time", "Duration", false, "getAbsoluteValue", "()", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.time", "Duration", false, "minus", "(Duration)", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.time", "Duration", false, "plus", "(Duration)", "", "Argument[-1]", "ReturnValue", "value", "generated"]
+      - ["kotlin.time", "Duration", false, "times", "(double)", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.time", "Duration", false, "times", "(int)", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.time", "Duration$Companion", false, "getINFINITE", "()", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.time", "Duration$Companion", false, "getZERO", "()", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.time", "DurationKt", false, "times", "(double,Duration)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.time", "DurationKt", false, "times", "(int,Duration)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.time", "TimeMark", true, "minus", "(Duration)", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.time", "TimeMark", true, "plus", "(Duration)", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.time", "TimeMark", true, "plus", "(Duration)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.time", "TimeSource", true, "markNow", "()", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.time", "TimedValue", false, "TimedValue", "(Object,Duration)", "", "Argument[0]", "Argument[-1]", "taint", "generated"]
+      - ["kotlin.time", "TimedValue", false, "TimedValue", "(Object,Duration)", "", "Argument[1]", "Argument[-1]", "taint", "generated"]
+      - ["kotlin.time", "TimedValue", false, "component1", "()", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.time", "TimedValue", false, "component2", "()", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.time", "TimedValue", false, "copy", "(Object,Duration)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.time", "TimedValue", false, "copy", "(Object,Duration)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.time", "TimedValue", false, "getDuration", "()", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.time", "TimedValue", false, "getValue", "()", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin.time", "TimedValue", false, "toString", "()", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin", "DeepRecursiveFunction", false, "DeepRecursiveFunction", "(SuspendFunction2)", "", "Argument[0]", "Argument[-1]", "taint", "generated"]
+      - ["kotlin", "KotlinVersion$Companion", false, "getCURRENT", "()", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin", "LazyKt", false, "getValue", "(Lazy,Object,KProperty)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin", "LazyKt", false, "lazy", "(Function0)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin", "LazyKt", false, "lazy", "(LazyThreadSafetyMode,Function0)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin", "LazyKt", false, "lazy", "(Object,Function0)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin", "LazyKt", false, "lazy", "(Object,Function0)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin", "LazyKt", false, "lazyOf", "(Object)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin", "Pair", false, "Pair", "(Object,Object)", "", "Argument[0]", "Argument[-1]", "taint", "generated"]
+      - ["kotlin", "Pair", false, "Pair", "(Object,Object)", "", "Argument[1]", "Argument[-1]", "taint", "generated"]
+      - ["kotlin", "Pair", false, "component1", "()", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin", "Pair", false, "component2", "()", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin", "Pair", false, "copy", "(Object,Object)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin", "Pair", false, "copy", "(Object,Object)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin", "Pair", false, "getFirst", "()", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin", "Pair", false, "getSecond", "()", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin", "Pair", false, "toString", "()", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin", "PreconditionsKt", false, "checkNotNull", "(Object)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin", "PreconditionsKt", false, "checkNotNull", "(Object,Function0)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin", "PreconditionsKt", false, "requireNotNull", "(Object)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin", "PreconditionsKt", false, "requireNotNull", "(Object,Function0)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin", "Result", false, "exceptionOrNull", "()", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin", "Result", false, "getOrNull", "()", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin", "Result", false, "toString", "()", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin", "Result$Companion", false, "failure", "(Throwable)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin", "Result$Companion", false, "success", "(Object)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin", "ResultKt", false, "fold", "(Result,Function1,Function1)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin", "ResultKt", false, "getOrDefault", "(Result,Object)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin", "ResultKt", false, "getOrDefault", "(Result,Object)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin", "ResultKt", false, "getOrElse", "(Result,Function1)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin", "ResultKt", false, "getOrThrow", "(Result)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin", "ResultKt", false, "map", "(Result,Function1)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin", "ResultKt", false, "mapCatching", "(Result,Function1)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin", "ResultKt", false, "onFailure", "(Result,Function1)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin", "ResultKt", false, "onSuccess", "(Result,Function1)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin", "ResultKt", false, "recover", "(Result,Function1)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin", "ResultKt", false, "recoverCatching", "(Result,Function1)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin", "StandardKt", false, "also", "(Object,Function1)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin", "StandardKt", false, "apply", "(Object,Function1)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin", "StandardKt", false, "let", "(Object,Function1)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin", "StandardKt", false, "run", "(Object,Function1)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin", "StandardKt", false, "takeIf", "(Object,Function1)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin", "StandardKt", false, "takeUnless", "(Object,Function1)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin", "StandardKt", false, "with", "(Object,Function1)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin", "SuspendKt", false, "suspend", "(SuspendFunction0)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin", "Triple", false, "Triple", "(Object,Object,Object)", "", "Argument[0]", "Argument[-1]", "taint", "generated"]
+      - ["kotlin", "Triple", false, "Triple", "(Object,Object,Object)", "", "Argument[1]", "Argument[-1]", "taint", "generated"]
+      - ["kotlin", "Triple", false, "Triple", "(Object,Object,Object)", "", "Argument[2]", "Argument[-1]", "taint", "generated"]
+      - ["kotlin", "Triple", false, "component1", "()", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin", "Triple", false, "component2", "()", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin", "Triple", false, "component3", "()", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin", "Triple", false, "copy", "(Object,Object,Object)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin", "Triple", false, "copy", "(Object,Object,Object)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin", "Triple", false, "copy", "(Object,Object,Object)", "", "Argument[2]", "ReturnValue", "taint", "generated"]
+      - ["kotlin", "Triple", false, "getFirst", "()", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin", "Triple", false, "getSecond", "()", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin", "Triple", false, "getThird", "()", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin", "Triple", false, "toString", "()", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin", "TuplesKt", false, "to", "(Object,Object)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin", "TuplesKt", false, "to", "(Object,Object)", "", "Argument[1]", "ReturnValue", "taint", "generated"]
+      - ["kotlin", "TuplesKt", false, "toList", "(Pair)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin", "TuplesKt", false, "toList", "(Triple)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["kotlin", "UByte", false, "toUByte", "()", "", "Argument[-1]", "ReturnValue", "value", "generated"]
+      - ["kotlin", "UByteArrayKt", false, "ubyteArrayOf", "(UByteArray)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin", "UInt", false, "toUInt", "()", "", "Argument[-1]", "ReturnValue", "value", "generated"]
+      - ["kotlin", "UIntArrayKt", false, "uintArrayOf", "(UIntArray)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin", "ULong", false, "toULong", "()", "", "Argument[-1]", "ReturnValue", "value", "generated"]
+      - ["kotlin", "ULongArrayKt", false, "ulongArrayOf", "(ULongArray)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+      - ["kotlin", "UShort", false, "toUShort", "()", "", "Argument[-1]", "ReturnValue", "value", "generated"]
+      - ["kotlin", "UShortArrayKt", false, "ushortArrayOf", "(UShortArray)", "", "Argument[0].Element", "ReturnValue", "taint", "generated"]
+
+
+  - addsTo:
+      pack: codeql/java-all
+      extensible: extNegativeSummaryModel
+    data:
+      - ["kotlin.annotation", "AnnotationRetention", "valueOf", "(String)", "generated"]
+      - ["kotlin.annotation", "AnnotationRetention", "values", "()", "generated"]
+      - ["kotlin.annotation", "AnnotationTarget", "valueOf", "(String)", "generated"]
+      - ["kotlin.annotation", "AnnotationTarget", "values", "()", "generated"]
+      - ["kotlin.annotation", "MustBeDocumented", "MustBeDocumented", "()", "generated"]
+      - ["kotlin.annotation", "Repeatable", "Repeatable", "()", "generated"]
+      - ["kotlin.annotation", "Retention", "Retention", "(AnnotationRetention)", "generated"]
+      - ["kotlin.annotation", "Retention", "value", "()", "generated"]
+      - ["kotlin.annotation", "Target", "Target", "(AnnotationTarget[])", "generated"]
+      - ["kotlin.annotation", "Target", "allowedTargets", "()", "generated"]
+      - ["kotlin.collections", "AbstractIterator", "AbstractIterator", "()", "generated"]
+      - ["kotlin.collections", "AbstractList", "equals", "(Object)", "generated"]
+      - ["kotlin.collections", "AbstractList", "hashCode", "()", "generated"]
+      - ["kotlin.collections", "AbstractMap", "equals", "(Object)", "generated"]
+      - ["kotlin.collections", "AbstractMap", "hashCode", "()", "generated"]
+      - ["kotlin.collections", "AbstractMap", "toString", "()", "generated"]
+      - ["kotlin.collections", "AbstractSet", "equals", "(Object)", "generated"]
+      - ["kotlin.collections", "AbstractSet", "hashCode", "()", "generated"]
+      - ["kotlin.collections", "ArrayDeque", "ArrayDeque", "()", "generated"]
+      - ["kotlin.collections", "ArrayDeque", "ArrayDeque", "(int)", "generated"]
+      - ["kotlin.collections", "ArrayList", "ArrayList", "()", "generated"]
+      - ["kotlin.collections", "ArrayList", "ArrayList", "(Collection)", "generated"]
+      - ["kotlin.collections", "ArrayList", "ArrayList", "(int)", "generated"]
+      - ["kotlin.collections", "ArrayList", "ensureCapacity", "(int)", "generated"]
+      - ["kotlin.collections", "ArrayList", "trimToSize", "()", "generated"]
+      - ["kotlin.collections", "ArraysKt", "all", "(Object[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "all", "(boolean[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "all", "(byte[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "all", "(char[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "all", "(double[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "all", "(float[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "all", "(int[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "all", "(long[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "all", "(short[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "any", "(Object[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "any", "(Object[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "any", "(boolean[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "any", "(boolean[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "any", "(byte[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "any", "(byte[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "any", "(char[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "any", "(char[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "any", "(double[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "any", "(double[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "any", "(float[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "any", "(float[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "any", "(int[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "any", "(int[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "any", "(long[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "any", "(long[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "any", "(short[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "any", "(short[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "asIterable", "(Object[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "asIterable", "(boolean[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "asIterable", "(byte[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "asIterable", "(char[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "asIterable", "(double[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "asIterable", "(float[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "asIterable", "(int[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "asIterable", "(long[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "asIterable", "(short[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "asList", "(boolean[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "asList", "(byte[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "asList", "(char[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "asList", "(double[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "asList", "(float[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "asList", "(int[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "asList", "(long[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "asList", "(short[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "asSequence", "(Object[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "asSequence", "(boolean[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "asSequence", "(byte[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "asSequence", "(char[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "asSequence", "(double[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "asSequence", "(float[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "asSequence", "(int[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "asSequence", "(long[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "asSequence", "(short[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "associate", "(Object[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "associate", "(boolean[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "associate", "(byte[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "associate", "(char[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "associate", "(double[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "associate", "(float[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "associate", "(int[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "associate", "(long[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "associate", "(short[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "associateBy", "(Object[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "associateBy", "(Object[],Function1,Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "associateBy", "(boolean[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "associateBy", "(boolean[],Function1,Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "associateBy", "(byte[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "associateBy", "(byte[],Function1,Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "associateBy", "(char[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "associateBy", "(char[],Function1,Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "associateBy", "(double[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "associateBy", "(double[],Function1,Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "associateBy", "(float[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "associateBy", "(float[],Function1,Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "associateBy", "(int[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "associateBy", "(int[],Function1,Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "associateBy", "(long[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "associateBy", "(long[],Function1,Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "associateBy", "(short[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "associateBy", "(short[],Function1,Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "associateWith", "(Object[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "associateWith", "(boolean[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "associateWith", "(byte[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "associateWith", "(char[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "associateWith", "(double[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "associateWith", "(float[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "associateWith", "(int[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "associateWith", "(long[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "associateWith", "(short[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "average", "(byte[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "average", "(double[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "average", "(float[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "average", "(int[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "average", "(long[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "average", "(short[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "averageOfByte", "(Byte[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "averageOfDouble", "(Double[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "averageOfFloat", "(Float[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "averageOfInt", "(Integer[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "averageOfLong", "(Long[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "averageOfShort", "(Short[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "binarySearch", "(Object[],Object,Comparator,int,int)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "binarySearch", "(Object[],Object,int,int)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "binarySearch", "(byte[],byte,int,int)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "binarySearch", "(char[],char,int,int)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "binarySearch", "(double[],double,int,int)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "binarySearch", "(float[],float,int,int)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "binarySearch", "(int[],int,int,int)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "binarySearch", "(long[],long,int,int)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "binarySearch", "(short[],short,int,int)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "component1", "(Object[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "component1", "(boolean[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "component1", "(byte[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "component1", "(char[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "component1", "(double[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "component1", "(float[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "component1", "(int[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "component1", "(long[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "component1", "(short[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "component2", "(Object[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "component2", "(boolean[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "component2", "(byte[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "component2", "(char[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "component2", "(double[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "component2", "(float[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "component2", "(int[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "component2", "(long[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "component2", "(short[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "component3", "(Object[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "component3", "(boolean[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "component3", "(byte[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "component3", "(char[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "component3", "(double[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "component3", "(float[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "component3", "(int[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "component3", "(long[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "component3", "(short[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "component4", "(Object[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "component4", "(boolean[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "component4", "(byte[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "component4", "(char[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "component4", "(double[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "component4", "(float[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "component4", "(int[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "component4", "(long[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "component4", "(short[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "component5", "(Object[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "component5", "(boolean[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "component5", "(byte[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "component5", "(char[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "component5", "(double[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "component5", "(float[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "component5", "(int[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "component5", "(long[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "component5", "(short[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "contains", "(Object[],Object)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "contains", "(boolean[],boolean)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "contains", "(byte[],byte)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "contains", "(char[],char)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "contains", "(double[],double)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "contains", "(float[],float)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "contains", "(int[],int)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "contains", "(long[],long)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "contains", "(short[],short)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "contentDeepEqualsInline", "(Object[],Object[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "contentDeepEqualsNullable", "(Object[],Object[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "contentDeepHashCodeInline", "(Object[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "contentDeepHashCodeNullable", "(Object[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "contentDeepToStringInline", "(Object[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "contentDeepToStringNullable", "(Object[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "contentEquals", "(Object[],Object[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "contentEquals", "(boolean[],boolean[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "contentEquals", "(byte[],byte[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "contentEquals", "(char[],char[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "contentEquals", "(double[],double[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "contentEquals", "(float[],float[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "contentEquals", "(int[],int[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "contentEquals", "(long[],long[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "contentEquals", "(short[],short[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "contentEqualsNullable", "(Object[],Object[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "contentEqualsNullable", "(boolean[],boolean[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "contentEqualsNullable", "(byte[],byte[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "contentEqualsNullable", "(char[],char[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "contentEqualsNullable", "(double[],double[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "contentEqualsNullable", "(float[],float[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "contentEqualsNullable", "(int[],int[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "contentEqualsNullable", "(long[],long[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "contentEqualsNullable", "(short[],short[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "contentHashCode", "(Object[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "contentHashCode", "(boolean[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "contentHashCode", "(byte[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "contentHashCode", "(char[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "contentHashCode", "(double[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "contentHashCode", "(float[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "contentHashCode", "(int[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "contentHashCode", "(long[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "contentHashCode", "(short[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "contentHashCodeNullable", "(Object[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "contentHashCodeNullable", "(boolean[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "contentHashCodeNullable", "(byte[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "contentHashCodeNullable", "(char[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "contentHashCodeNullable", "(double[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "contentHashCodeNullable", "(float[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "contentHashCodeNullable", "(int[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "contentHashCodeNullable", "(long[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "contentHashCodeNullable", "(short[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "contentToString", "(Object[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "contentToString", "(boolean[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "contentToString", "(byte[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "contentToString", "(char[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "contentToString", "(double[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "contentToString", "(float[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "contentToString", "(int[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "contentToString", "(long[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "contentToString", "(short[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "contentToStringNullable", "(Object[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "contentToStringNullable", "(boolean[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "contentToStringNullable", "(byte[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "contentToStringNullable", "(char[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "contentToStringNullable", "(double[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "contentToStringNullable", "(float[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "contentToStringNullable", "(int[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "contentToStringNullable", "(long[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "contentToStringNullable", "(short[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "copyInto", "(boolean[],boolean[],int,int,int)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "copyInto", "(double[],double[],int,int,int)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "copyInto", "(float[],float[],int,int,int)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "copyInto", "(int[],int[],int,int,int)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "copyInto", "(long[],long[],int,int,int)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "copyInto", "(short[],short[],int,int,int)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "copyOf", "(boolean[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "copyOf", "(boolean[],int)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "copyOf", "(double[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "copyOf", "(double[],int)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "copyOf", "(float[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "copyOf", "(float[],int)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "copyOf", "(int[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "copyOf", "(int[],int)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "copyOf", "(long[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "copyOf", "(long[],int)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "copyOf", "(short[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "copyOf", "(short[],int)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "copyOfRangeInline", "(boolean[],int,int)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "copyOfRangeInline", "(double[],int,int)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "copyOfRangeInline", "(float[],int,int)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "copyOfRangeInline", "(int[],int,int)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "copyOfRangeInline", "(long[],int,int)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "copyOfRangeInline", "(short[],int,int)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "count", "(Object[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "count", "(Object[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "count", "(boolean[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "count", "(boolean[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "count", "(byte[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "count", "(byte[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "count", "(char[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "count", "(char[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "count", "(double[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "count", "(double[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "count", "(float[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "count", "(float[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "count", "(int[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "count", "(int[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "count", "(long[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "count", "(long[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "count", "(short[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "count", "(short[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "distinct", "(Object[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "distinct", "(boolean[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "distinct", "(byte[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "distinct", "(char[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "distinct", "(double[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "distinct", "(float[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "distinct", "(int[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "distinct", "(long[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "distinct", "(short[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "distinctBy", "(Object[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "distinctBy", "(boolean[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "distinctBy", "(byte[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "distinctBy", "(char[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "distinctBy", "(double[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "distinctBy", "(float[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "distinctBy", "(int[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "distinctBy", "(long[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "distinctBy", "(short[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "drop", "(boolean[],int)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "drop", "(byte[],int)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "drop", "(char[],int)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "drop", "(double[],int)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "drop", "(float[],int)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "drop", "(int[],int)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "drop", "(long[],int)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "drop", "(short[],int)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "dropLast", "(boolean[],int)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "dropLast", "(byte[],int)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "dropLast", "(char[],int)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "dropLast", "(double[],int)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "dropLast", "(float[],int)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "dropLast", "(int[],int)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "dropLast", "(long[],int)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "dropLast", "(short[],int)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "dropLastWhile", "(boolean[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "dropLastWhile", "(byte[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "dropLastWhile", "(char[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "dropLastWhile", "(double[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "dropLastWhile", "(float[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "dropLastWhile", "(int[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "dropLastWhile", "(long[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "dropLastWhile", "(short[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "dropWhile", "(Object[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "dropWhile", "(boolean[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "dropWhile", "(byte[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "dropWhile", "(char[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "dropWhile", "(double[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "dropWhile", "(float[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "dropWhile", "(int[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "dropWhile", "(long[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "dropWhile", "(short[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "elementAt", "(Object[],int)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "elementAt", "(boolean[],int)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "elementAt", "(byte[],int)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "elementAt", "(char[],int)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "elementAt", "(double[],int)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "elementAt", "(float[],int)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "elementAt", "(int[],int)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "elementAt", "(long[],int)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "elementAt", "(short[],int)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "elementAtOrElse", "(Object[],int,Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "elementAtOrElse", "(boolean[],int,Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "elementAtOrElse", "(byte[],int,Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "elementAtOrElse", "(char[],int,Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "elementAtOrElse", "(double[],int,Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "elementAtOrElse", "(float[],int,Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "elementAtOrElse", "(int[],int,Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "elementAtOrElse", "(long[],int,Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "elementAtOrElse", "(short[],int,Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "elementAtOrNull", "(Object[],int)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "elementAtOrNull", "(boolean[],int)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "elementAtOrNull", "(byte[],int)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "elementAtOrNull", "(char[],int)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "elementAtOrNull", "(double[],int)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "elementAtOrNull", "(float[],int)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "elementAtOrNull", "(int[],int)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "elementAtOrNull", "(long[],int)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "elementAtOrNull", "(short[],int)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "fill", "(boolean[],boolean,int,int)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "fill", "(byte[],byte,int,int)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "fill", "(char[],char,int,int)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "fill", "(double[],double,int,int)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "fill", "(float[],float,int,int)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "fill", "(int[],int,int,int)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "fill", "(long[],long,int,int)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "fill", "(short[],short,int,int)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "filter", "(Object[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "filter", "(boolean[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "filter", "(byte[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "filter", "(char[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "filter", "(double[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "filter", "(float[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "filter", "(int[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "filter", "(long[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "filter", "(short[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "filterIndexed", "(Object[],Function2)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "filterIndexed", "(boolean[],Function2)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "filterIndexed", "(byte[],Function2)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "filterIndexed", "(char[],Function2)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "filterIndexed", "(double[],Function2)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "filterIndexed", "(float[],Function2)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "filterIndexed", "(int[],Function2)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "filterIndexed", "(long[],Function2)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "filterIndexed", "(short[],Function2)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "filterIsInstance", "(Object[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "filterIsInstance", "(Object[],Class)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "filterNot", "(Object[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "filterNot", "(boolean[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "filterNot", "(byte[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "filterNot", "(char[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "filterNot", "(double[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "filterNot", "(float[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "filterNot", "(int[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "filterNot", "(long[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "filterNot", "(short[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "filterNotNull", "(Object[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "find", "(Object[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "find", "(boolean[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "find", "(byte[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "find", "(char[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "find", "(double[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "find", "(float[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "find", "(int[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "find", "(long[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "find", "(short[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "findLast", "(boolean[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "findLast", "(byte[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "findLast", "(char[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "findLast", "(double[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "findLast", "(float[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "findLast", "(int[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "findLast", "(long[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "findLast", "(short[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "first", "(Object[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "first", "(boolean[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "first", "(boolean[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "first", "(byte[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "first", "(byte[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "first", "(char[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "first", "(char[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "first", "(double[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "first", "(double[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "first", "(float[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "first", "(float[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "first", "(int[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "first", "(int[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "first", "(long[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "first", "(long[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "first", "(short[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "first", "(short[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "firstNotNullOf", "(Object[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "firstNotNullOfOrNull", "(Object[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "firstOrNull", "(Object[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "firstOrNull", "(boolean[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "firstOrNull", "(boolean[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "firstOrNull", "(byte[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "firstOrNull", "(byte[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "firstOrNull", "(char[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "firstOrNull", "(char[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "firstOrNull", "(double[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "firstOrNull", "(double[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "firstOrNull", "(float[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "firstOrNull", "(float[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "firstOrNull", "(int[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "firstOrNull", "(int[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "firstOrNull", "(long[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "firstOrNull", "(long[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "firstOrNull", "(short[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "firstOrNull", "(short[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "flatMap", "(Object[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "flatMap", "(boolean[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "flatMap", "(byte[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "flatMap", "(char[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "flatMap", "(double[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "flatMap", "(float[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "flatMap", "(int[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "flatMap", "(long[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "flatMap", "(short[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "flatMapIndexedIterable", "(Object[],Function2)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "flatMapIndexedIterable", "(boolean[],Function2)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "flatMapIndexedIterable", "(byte[],Function2)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "flatMapIndexedIterable", "(char[],Function2)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "flatMapIndexedIterable", "(double[],Function2)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "flatMapIndexedIterable", "(float[],Function2)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "flatMapIndexedIterable", "(int[],Function2)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "flatMapIndexedIterable", "(long[],Function2)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "flatMapIndexedIterable", "(short[],Function2)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "flatMapIndexedSequence", "(Object[],Function2)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "flatMapSequence", "(Object[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "flatten", "(Object[][])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "forEach", "(Object[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "forEach", "(boolean[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "forEach", "(byte[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "forEach", "(char[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "forEach", "(double[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "forEach", "(float[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "forEach", "(int[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "forEach", "(long[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "forEach", "(short[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "forEachIndexed", "(Object[],Function2)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "forEachIndexed", "(boolean[],Function2)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "forEachIndexed", "(byte[],Function2)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "forEachIndexed", "(char[],Function2)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "forEachIndexed", "(double[],Function2)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "forEachIndexed", "(float[],Function2)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "forEachIndexed", "(int[],Function2)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "forEachIndexed", "(long[],Function2)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "forEachIndexed", "(short[],Function2)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "getIndices", "(Object[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "getIndices", "(boolean[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "getIndices", "(byte[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "getIndices", "(char[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "getIndices", "(double[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "getIndices", "(float[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "getIndices", "(int[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "getIndices", "(long[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "getIndices", "(short[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "getLastIndex", "(Object[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "getLastIndex", "(boolean[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "getLastIndex", "(byte[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "getLastIndex", "(char[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "getLastIndex", "(double[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "getLastIndex", "(float[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "getLastIndex", "(int[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "getLastIndex", "(long[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "getLastIndex", "(short[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "getOrElse", "(Object[],int,Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "getOrElse", "(boolean[],int,Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "getOrElse", "(byte[],int,Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "getOrElse", "(char[],int,Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "getOrElse", "(double[],int,Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "getOrElse", "(float[],int,Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "getOrElse", "(int[],int,Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "getOrElse", "(long[],int,Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "getOrElse", "(short[],int,Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "getOrNull", "(Object[],int)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "getOrNull", "(boolean[],int)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "getOrNull", "(byte[],int)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "getOrNull", "(char[],int)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "getOrNull", "(double[],int)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "getOrNull", "(float[],int)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "getOrNull", "(int[],int)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "getOrNull", "(long[],int)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "getOrNull", "(short[],int)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "groupBy", "(Object[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "groupBy", "(Object[],Function1,Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "groupBy", "(boolean[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "groupBy", "(boolean[],Function1,Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "groupBy", "(byte[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "groupBy", "(byte[],Function1,Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "groupBy", "(char[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "groupBy", "(char[],Function1,Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "groupBy", "(double[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "groupBy", "(double[],Function1,Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "groupBy", "(float[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "groupBy", "(float[],Function1,Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "groupBy", "(int[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "groupBy", "(int[],Function1,Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "groupBy", "(long[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "groupBy", "(long[],Function1,Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "groupBy", "(short[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "groupBy", "(short[],Function1,Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "groupingBy", "(Object[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "indexOf", "(Object[],Object)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "indexOf", "(boolean[],boolean)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "indexOf", "(byte[],byte)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "indexOf", "(char[],char)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "indexOf", "(double[],double)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "indexOf", "(float[],float)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "indexOf", "(int[],int)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "indexOf", "(long[],long)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "indexOf", "(short[],short)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "indexOfFirst", "(Object[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "indexOfFirst", "(boolean[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "indexOfFirst", "(byte[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "indexOfFirst", "(char[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "indexOfFirst", "(double[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "indexOfFirst", "(float[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "indexOfFirst", "(int[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "indexOfFirst", "(long[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "indexOfFirst", "(short[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "indexOfLast", "(Object[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "indexOfLast", "(boolean[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "indexOfLast", "(byte[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "indexOfLast", "(char[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "indexOfLast", "(double[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "indexOfLast", "(float[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "indexOfLast", "(int[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "indexOfLast", "(long[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "indexOfLast", "(short[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "intersect", "(Object[],Iterable)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "intersect", "(boolean[],Iterable)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "intersect", "(byte[],Iterable)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "intersect", "(char[],Iterable)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "intersect", "(double[],Iterable)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "intersect", "(float[],Iterable)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "intersect", "(int[],Iterable)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "intersect", "(long[],Iterable)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "intersect", "(short[],Iterable)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "isEmpty", "(Object[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "isEmpty", "(boolean[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "isEmpty", "(byte[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "isEmpty", "(char[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "isEmpty", "(double[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "isEmpty", "(float[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "isEmpty", "(int[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "isEmpty", "(long[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "isEmpty", "(short[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "isNotEmpty", "(Object[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "isNotEmpty", "(boolean[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "isNotEmpty", "(byte[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "isNotEmpty", "(char[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "isNotEmpty", "(double[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "isNotEmpty", "(float[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "isNotEmpty", "(int[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "isNotEmpty", "(long[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "isNotEmpty", "(short[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "isNullOrEmpty", "(Object[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "last", "(boolean[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "last", "(boolean[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "last", "(byte[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "last", "(byte[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "last", "(char[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "last", "(char[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "last", "(double[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "last", "(double[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "last", "(float[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "last", "(float[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "last", "(int[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "last", "(int[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "last", "(long[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "last", "(long[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "last", "(short[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "last", "(short[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "lastIndexOf", "(Object[],Object)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "lastIndexOf", "(boolean[],boolean)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "lastIndexOf", "(byte[],byte)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "lastIndexOf", "(char[],char)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "lastIndexOf", "(double[],double)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "lastIndexOf", "(float[],float)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "lastIndexOf", "(int[],int)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "lastIndexOf", "(long[],long)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "lastIndexOf", "(short[],short)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "lastOrNull", "(boolean[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "lastOrNull", "(boolean[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "lastOrNull", "(byte[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "lastOrNull", "(byte[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "lastOrNull", "(char[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "lastOrNull", "(char[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "lastOrNull", "(double[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "lastOrNull", "(double[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "lastOrNull", "(float[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "lastOrNull", "(float[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "lastOrNull", "(int[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "lastOrNull", "(int[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "lastOrNull", "(long[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "lastOrNull", "(long[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "lastOrNull", "(short[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "lastOrNull", "(short[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "map", "(Object[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "map", "(boolean[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "map", "(byte[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "map", "(char[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "map", "(double[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "map", "(float[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "map", "(int[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "map", "(long[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "map", "(short[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "mapIndexed", "(Object[],Function2)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "mapIndexed", "(boolean[],Function2)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "mapIndexed", "(byte[],Function2)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "mapIndexed", "(char[],Function2)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "mapIndexed", "(double[],Function2)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "mapIndexed", "(float[],Function2)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "mapIndexed", "(int[],Function2)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "mapIndexed", "(long[],Function2)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "mapIndexed", "(short[],Function2)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "mapIndexedNotNull", "(Object[],Function2)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "mapNotNull", "(Object[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "max", "(Double[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "max", "(Float[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "max", "(byte[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "max", "(char[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "max", "(double[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "max", "(float[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "max", "(int[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "max", "(long[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "max", "(short[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "maxBy", "(boolean[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "maxBy", "(byte[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "maxBy", "(char[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "maxBy", "(double[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "maxBy", "(float[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "maxBy", "(int[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "maxBy", "(long[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "maxBy", "(short[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "maxByOrNull", "(boolean[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "maxByOrNull", "(byte[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "maxByOrNull", "(char[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "maxByOrNull", "(double[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "maxByOrNull", "(float[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "maxByOrNull", "(int[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "maxByOrNull", "(long[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "maxByOrNull", "(short[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "maxByOrThrow", "(boolean[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "maxByOrThrow", "(byte[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "maxByOrThrow", "(char[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "maxByOrThrow", "(double[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "maxByOrThrow", "(float[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "maxByOrThrow", "(int[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "maxByOrThrow", "(long[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "maxByOrThrow", "(short[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "maxOf", "(Object[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "maxOf", "(boolean[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "maxOf", "(byte[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "maxOf", "(char[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "maxOf", "(double[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "maxOf", "(float[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "maxOf", "(int[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "maxOf", "(long[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "maxOf", "(short[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "maxOfOrNull", "(Object[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "maxOfOrNull", "(boolean[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "maxOfOrNull", "(byte[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "maxOfOrNull", "(char[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "maxOfOrNull", "(double[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "maxOfOrNull", "(float[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "maxOfOrNull", "(int[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "maxOfOrNull", "(long[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "maxOfOrNull", "(short[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "maxOfWith", "(boolean[],Comparator,Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "maxOfWith", "(byte[],Comparator,Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "maxOfWith", "(char[],Comparator,Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "maxOfWith", "(double[],Comparator,Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "maxOfWith", "(float[],Comparator,Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "maxOfWith", "(int[],Comparator,Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "maxOfWith", "(long[],Comparator,Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "maxOfWith", "(short[],Comparator,Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "maxOfWithOrNull", "(boolean[],Comparator,Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "maxOfWithOrNull", "(byte[],Comparator,Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "maxOfWithOrNull", "(char[],Comparator,Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "maxOfWithOrNull", "(double[],Comparator,Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "maxOfWithOrNull", "(float[],Comparator,Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "maxOfWithOrNull", "(int[],Comparator,Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "maxOfWithOrNull", "(long[],Comparator,Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "maxOfWithOrNull", "(short[],Comparator,Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "maxOrNull", "(Double[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "maxOrNull", "(Float[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "maxOrNull", "(byte[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "maxOrNull", "(char[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "maxOrNull", "(double[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "maxOrNull", "(float[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "maxOrNull", "(int[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "maxOrNull", "(long[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "maxOrNull", "(short[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "maxOrThrow", "(Double[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "maxOrThrow", "(Float[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "maxOrThrow", "(byte[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "maxOrThrow", "(char[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "maxOrThrow", "(double[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "maxOrThrow", "(float[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "maxOrThrow", "(int[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "maxOrThrow", "(long[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "maxOrThrow", "(short[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "maxWith", "(boolean[],Comparator)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "maxWith", "(byte[],Comparator)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "maxWith", "(char[],Comparator)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "maxWith", "(double[],Comparator)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "maxWith", "(float[],Comparator)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "maxWith", "(int[],Comparator)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "maxWith", "(long[],Comparator)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "maxWith", "(short[],Comparator)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "maxWithOrNull", "(boolean[],Comparator)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "maxWithOrNull", "(byte[],Comparator)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "maxWithOrNull", "(char[],Comparator)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "maxWithOrNull", "(double[],Comparator)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "maxWithOrNull", "(float[],Comparator)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "maxWithOrNull", "(int[],Comparator)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "maxWithOrNull", "(long[],Comparator)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "maxWithOrNull", "(short[],Comparator)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "maxWithOrThrow", "(boolean[],Comparator)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "maxWithOrThrow", "(byte[],Comparator)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "maxWithOrThrow", "(char[],Comparator)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "maxWithOrThrow", "(double[],Comparator)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "maxWithOrThrow", "(float[],Comparator)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "maxWithOrThrow", "(int[],Comparator)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "maxWithOrThrow", "(long[],Comparator)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "maxWithOrThrow", "(short[],Comparator)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "min", "(Double[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "min", "(Float[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "min", "(byte[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "min", "(char[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "min", "(double[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "min", "(float[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "min", "(int[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "min", "(long[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "min", "(short[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "minBy", "(boolean[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "minBy", "(byte[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "minBy", "(char[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "minBy", "(double[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "minBy", "(float[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "minBy", "(int[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "minBy", "(long[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "minBy", "(short[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "minByOrNull", "(boolean[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "minByOrNull", "(byte[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "minByOrNull", "(char[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "minByOrNull", "(double[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "minByOrNull", "(float[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "minByOrNull", "(int[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "minByOrNull", "(long[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "minByOrNull", "(short[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "minByOrThrow", "(boolean[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "minByOrThrow", "(byte[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "minByOrThrow", "(char[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "minByOrThrow", "(double[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "minByOrThrow", "(float[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "minByOrThrow", "(int[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "minByOrThrow", "(long[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "minByOrThrow", "(short[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "minOf", "(Object[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "minOf", "(boolean[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "minOf", "(byte[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "minOf", "(char[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "minOf", "(double[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "minOf", "(float[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "minOf", "(int[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "minOf", "(long[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "minOf", "(short[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "minOfOrNull", "(Object[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "minOfOrNull", "(boolean[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "minOfOrNull", "(byte[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "minOfOrNull", "(char[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "minOfOrNull", "(double[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "minOfOrNull", "(float[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "minOfOrNull", "(int[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "minOfOrNull", "(long[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "minOfOrNull", "(short[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "minOfWith", "(boolean[],Comparator,Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "minOfWith", "(byte[],Comparator,Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "minOfWith", "(char[],Comparator,Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "minOfWith", "(double[],Comparator,Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "minOfWith", "(float[],Comparator,Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "minOfWith", "(int[],Comparator,Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "minOfWith", "(long[],Comparator,Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "minOfWith", "(short[],Comparator,Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "minOfWithOrNull", "(boolean[],Comparator,Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "minOfWithOrNull", "(byte[],Comparator,Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "minOfWithOrNull", "(char[],Comparator,Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "minOfWithOrNull", "(double[],Comparator,Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "minOfWithOrNull", "(float[],Comparator,Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "minOfWithOrNull", "(int[],Comparator,Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "minOfWithOrNull", "(long[],Comparator,Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "minOfWithOrNull", "(short[],Comparator,Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "minOrNull", "(Double[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "minOrNull", "(Float[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "minOrNull", "(byte[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "minOrNull", "(char[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "minOrNull", "(double[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "minOrNull", "(float[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "minOrNull", "(int[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "minOrNull", "(long[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "minOrNull", "(short[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "minOrThrow", "(Double[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "minOrThrow", "(Float[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "minOrThrow", "(byte[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "minOrThrow", "(char[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "minOrThrow", "(double[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "minOrThrow", "(float[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "minOrThrow", "(int[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "minOrThrow", "(long[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "minOrThrow", "(short[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "minWith", "(boolean[],Comparator)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "minWith", "(byte[],Comparator)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "minWith", "(char[],Comparator)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "minWith", "(double[],Comparator)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "minWith", "(float[],Comparator)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "minWith", "(int[],Comparator)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "minWith", "(long[],Comparator)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "minWith", "(short[],Comparator)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "minWithOrNull", "(boolean[],Comparator)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "minWithOrNull", "(byte[],Comparator)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "minWithOrNull", "(char[],Comparator)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "minWithOrNull", "(double[],Comparator)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "minWithOrNull", "(float[],Comparator)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "minWithOrNull", "(int[],Comparator)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "minWithOrNull", "(long[],Comparator)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "minWithOrNull", "(short[],Comparator)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "minWithOrThrow", "(boolean[],Comparator)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "minWithOrThrow", "(byte[],Comparator)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "minWithOrThrow", "(char[],Comparator)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "minWithOrThrow", "(double[],Comparator)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "minWithOrThrow", "(float[],Comparator)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "minWithOrThrow", "(int[],Comparator)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "minWithOrThrow", "(long[],Comparator)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "minWithOrThrow", "(short[],Comparator)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "none", "(Object[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "none", "(Object[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "none", "(boolean[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "none", "(boolean[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "none", "(byte[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "none", "(byte[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "none", "(char[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "none", "(char[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "none", "(double[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "none", "(double[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "none", "(float[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "none", "(float[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "none", "(int[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "none", "(int[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "none", "(long[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "none", "(long[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "none", "(short[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "none", "(short[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "onEach", "(boolean[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "onEach", "(double[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "onEach", "(float[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "onEach", "(int[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "onEach", "(long[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "onEach", "(short[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "onEachIndexed", "(boolean[],Function2)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "onEachIndexed", "(double[],Function2)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "onEachIndexed", "(float[],Function2)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "onEachIndexed", "(int[],Function2)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "onEachIndexed", "(long[],Function2)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "onEachIndexed", "(short[],Function2)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "partition", "(Object[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "partition", "(boolean[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "partition", "(byte[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "partition", "(char[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "partition", "(double[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "partition", "(float[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "partition", "(int[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "partition", "(long[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "partition", "(short[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "plus", "(boolean[],Collection)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "plus", "(boolean[],boolean)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "plus", "(boolean[],boolean[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "plus", "(double[],Collection)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "plus", "(double[],double)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "plus", "(double[],double[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "plus", "(float[],Collection)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "plus", "(float[],float)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "plus", "(float[],float[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "plus", "(int[],Collection)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "plus", "(int[],int)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "plus", "(int[],int[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "plus", "(long[],Collection)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "plus", "(long[],long)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "plus", "(long[],long[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "plus", "(short[],Collection)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "plus", "(short[],short)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "plus", "(short[],short[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "random", "(Object[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "random", "(Object[],Random)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "random", "(boolean[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "random", "(boolean[],Random)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "random", "(byte[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "random", "(byte[],Random)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "random", "(char[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "random", "(char[],Random)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "random", "(double[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "random", "(double[],Random)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "random", "(float[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "random", "(float[],Random)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "random", "(int[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "random", "(int[],Random)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "random", "(long[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "random", "(long[],Random)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "random", "(short[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "random", "(short[],Random)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "randomOrNull", "(Object[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "randomOrNull", "(Object[],Random)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "randomOrNull", "(boolean[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "randomOrNull", "(boolean[],Random)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "randomOrNull", "(byte[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "randomOrNull", "(byte[],Random)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "randomOrNull", "(char[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "randomOrNull", "(char[],Random)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "randomOrNull", "(double[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "randomOrNull", "(double[],Random)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "randomOrNull", "(float[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "randomOrNull", "(float[],Random)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "randomOrNull", "(int[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "randomOrNull", "(int[],Random)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "randomOrNull", "(long[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "randomOrNull", "(long[],Random)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "randomOrNull", "(short[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "randomOrNull", "(short[],Random)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "reduce", "(boolean[],Function2)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "reduce", "(byte[],Function2)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "reduce", "(char[],Function2)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "reduce", "(double[],Function2)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "reduce", "(float[],Function2)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "reduce", "(int[],Function2)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "reduce", "(long[],Function2)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "reduce", "(short[],Function2)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "reduceIndexed", "(boolean[],Function3)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "reduceIndexed", "(byte[],Function3)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "reduceIndexed", "(char[],Function3)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "reduceIndexed", "(double[],Function3)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "reduceIndexed", "(float[],Function3)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "reduceIndexed", "(int[],Function3)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "reduceIndexed", "(long[],Function3)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "reduceIndexed", "(short[],Function3)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "reduceIndexedOrNull", "(boolean[],Function3)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "reduceIndexedOrNull", "(byte[],Function3)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "reduceIndexedOrNull", "(char[],Function3)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "reduceIndexedOrNull", "(double[],Function3)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "reduceIndexedOrNull", "(float[],Function3)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "reduceIndexedOrNull", "(int[],Function3)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "reduceIndexedOrNull", "(long[],Function3)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "reduceIndexedOrNull", "(short[],Function3)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "reduceOrNull", "(boolean[],Function2)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "reduceOrNull", "(byte[],Function2)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "reduceOrNull", "(char[],Function2)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "reduceOrNull", "(double[],Function2)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "reduceOrNull", "(float[],Function2)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "reduceOrNull", "(int[],Function2)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "reduceOrNull", "(long[],Function2)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "reduceOrNull", "(short[],Function2)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "reduceRight", "(Object[],Function2)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "reduceRight", "(boolean[],Function2)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "reduceRight", "(byte[],Function2)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "reduceRight", "(char[],Function2)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "reduceRight", "(double[],Function2)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "reduceRight", "(float[],Function2)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "reduceRight", "(int[],Function2)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "reduceRight", "(long[],Function2)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "reduceRight", "(short[],Function2)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "reduceRightIndexed", "(Object[],Function3)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "reduceRightIndexed", "(boolean[],Function3)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "reduceRightIndexed", "(byte[],Function3)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "reduceRightIndexed", "(char[],Function3)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "reduceRightIndexed", "(double[],Function3)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "reduceRightIndexed", "(float[],Function3)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "reduceRightIndexed", "(int[],Function3)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "reduceRightIndexed", "(long[],Function3)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "reduceRightIndexed", "(short[],Function3)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "reduceRightIndexedOrNull", "(Object[],Function3)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "reduceRightIndexedOrNull", "(boolean[],Function3)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "reduceRightIndexedOrNull", "(byte[],Function3)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "reduceRightIndexedOrNull", "(char[],Function3)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "reduceRightIndexedOrNull", "(double[],Function3)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "reduceRightIndexedOrNull", "(float[],Function3)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "reduceRightIndexedOrNull", "(int[],Function3)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "reduceRightIndexedOrNull", "(long[],Function3)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "reduceRightIndexedOrNull", "(short[],Function3)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "reduceRightOrNull", "(Object[],Function2)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "reduceRightOrNull", "(boolean[],Function2)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "reduceRightOrNull", "(byte[],Function2)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "reduceRightOrNull", "(char[],Function2)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "reduceRightOrNull", "(double[],Function2)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "reduceRightOrNull", "(float[],Function2)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "reduceRightOrNull", "(int[],Function2)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "reduceRightOrNull", "(long[],Function2)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "reduceRightOrNull", "(short[],Function2)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "reverse", "(Object[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "reverse", "(Object[],int,int)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "reverse", "(boolean[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "reverse", "(boolean[],int,int)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "reverse", "(byte[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "reverse", "(byte[],int,int)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "reverse", "(char[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "reverse", "(char[],int,int)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "reverse", "(double[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "reverse", "(double[],int,int)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "reverse", "(float[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "reverse", "(float[],int,int)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "reverse", "(int[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "reverse", "(int[],int,int)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "reverse", "(long[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "reverse", "(long[],int,int)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "reverse", "(short[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "reverse", "(short[],int,int)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "reversed", "(boolean[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "reversed", "(byte[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "reversed", "(char[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "reversed", "(double[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "reversed", "(float[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "reversed", "(int[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "reversed", "(long[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "reversed", "(short[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "reversedArray", "(boolean[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "reversedArray", "(double[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "reversedArray", "(float[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "reversedArray", "(int[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "reversedArray", "(long[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "reversedArray", "(short[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "runningReduce", "(Object[],Function2)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "runningReduce", "(boolean[],Function2)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "runningReduce", "(byte[],Function2)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "runningReduce", "(char[],Function2)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "runningReduce", "(double[],Function2)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "runningReduce", "(float[],Function2)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "runningReduce", "(int[],Function2)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "runningReduce", "(long[],Function2)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "runningReduce", "(short[],Function2)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "runningReduceIndexed", "(Object[],Function3)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "runningReduceIndexed", "(boolean[],Function3)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "runningReduceIndexed", "(byte[],Function3)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "runningReduceIndexed", "(char[],Function3)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "runningReduceIndexed", "(double[],Function3)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "runningReduceIndexed", "(float[],Function3)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "runningReduceIndexed", "(int[],Function3)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "runningReduceIndexed", "(long[],Function3)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "runningReduceIndexed", "(short[],Function3)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "shuffle", "(Object[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "shuffle", "(Object[],Random)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "shuffle", "(boolean[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "shuffle", "(boolean[],Random)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "shuffle", "(byte[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "shuffle", "(byte[],Random)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "shuffle", "(char[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "shuffle", "(char[],Random)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "shuffle", "(double[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "shuffle", "(double[],Random)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "shuffle", "(float[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "shuffle", "(float[],Random)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "shuffle", "(int[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "shuffle", "(int[],Random)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "shuffle", "(long[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "shuffle", "(long[],Random)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "shuffle", "(short[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "shuffle", "(short[],Random)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "single", "(Object[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "single", "(boolean[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "single", "(boolean[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "single", "(byte[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "single", "(byte[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "single", "(char[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "single", "(char[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "single", "(double[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "single", "(double[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "single", "(float[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "single", "(float[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "single", "(int[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "single", "(int[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "single", "(long[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "single", "(long[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "single", "(short[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "single", "(short[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "singleOrNull", "(Object[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "singleOrNull", "(boolean[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "singleOrNull", "(boolean[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "singleOrNull", "(byte[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "singleOrNull", "(byte[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "singleOrNull", "(char[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "singleOrNull", "(char[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "singleOrNull", "(double[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "singleOrNull", "(double[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "singleOrNull", "(float[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "singleOrNull", "(float[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "singleOrNull", "(int[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "singleOrNull", "(int[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "singleOrNull", "(long[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "singleOrNull", "(long[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "singleOrNull", "(short[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "singleOrNull", "(short[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "slice", "(Object[],Iterable)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "slice", "(boolean[],IntRange)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "slice", "(boolean[],Iterable)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "slice", "(byte[],IntRange)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "slice", "(byte[],Iterable)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "slice", "(char[],IntRange)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "slice", "(char[],Iterable)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "slice", "(double[],IntRange)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "slice", "(double[],Iterable)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "slice", "(float[],IntRange)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "slice", "(float[],Iterable)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "slice", "(int[],IntRange)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "slice", "(int[],Iterable)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "slice", "(long[],IntRange)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "slice", "(long[],Iterable)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "slice", "(short[],IntRange)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "slice", "(short[],Iterable)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sliceArray", "(boolean[],Collection)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sliceArray", "(boolean[],IntRange)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sliceArray", "(byte[],Collection)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sliceArray", "(char[],Collection)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sliceArray", "(double[],Collection)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sliceArray", "(double[],IntRange)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sliceArray", "(float[],Collection)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sliceArray", "(float[],IntRange)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sliceArray", "(int[],Collection)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sliceArray", "(int[],IntRange)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sliceArray", "(long[],Collection)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sliceArray", "(long[],IntRange)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sliceArray", "(short[],Collection)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sliceArray", "(short[],IntRange)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sort", "(Comparable[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sort", "(Comparable[],int,int)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sort", "(Object[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sort", "(Object[],int,int)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sort", "(byte[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sort", "(byte[],int,int)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sort", "(char[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sort", "(char[],int,int)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sort", "(double[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sort", "(double[],int,int)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sort", "(float[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sort", "(float[],int,int)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sort", "(int[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sort", "(int[],int,int)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sort", "(long[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sort", "(long[],int,int)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sort", "(short[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sort", "(short[],int,int)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sortBy", "(Object[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sortByDescending", "(Object[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sortDescending", "(Comparable[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sortDescending", "(Comparable[],int,int)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sortDescending", "(byte[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sortDescending", "(byte[],int,int)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sortDescending", "(char[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sortDescending", "(char[],int,int)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sortDescending", "(double[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sortDescending", "(double[],int,int)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sortDescending", "(float[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sortDescending", "(float[],int,int)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sortDescending", "(int[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sortDescending", "(int[],int,int)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sortDescending", "(long[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sortDescending", "(long[],int,int)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sortDescending", "(short[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sortDescending", "(short[],int,int)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sortWith", "(Object[],Comparator)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sortWith", "(Object[],Comparator,int,int)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sorted", "(byte[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sorted", "(char[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sorted", "(double[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sorted", "(float[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sorted", "(int[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sorted", "(long[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sorted", "(short[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sortedArray", "(double[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sortedArray", "(float[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sortedArray", "(int[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sortedArray", "(long[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sortedArray", "(short[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sortedArrayDescending", "(double[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sortedArrayDescending", "(float[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sortedArrayDescending", "(int[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sortedArrayDescending", "(long[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sortedArrayDescending", "(short[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sortedBy", "(boolean[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sortedBy", "(byte[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sortedBy", "(char[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sortedBy", "(double[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sortedBy", "(float[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sortedBy", "(int[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sortedBy", "(long[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sortedBy", "(short[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sortedByDescending", "(boolean[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sortedByDescending", "(byte[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sortedByDescending", "(char[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sortedByDescending", "(double[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sortedByDescending", "(float[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sortedByDescending", "(int[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sortedByDescending", "(long[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sortedByDescending", "(short[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sortedDescending", "(byte[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sortedDescending", "(char[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sortedDescending", "(double[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sortedDescending", "(float[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sortedDescending", "(int[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sortedDescending", "(long[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sortedDescending", "(short[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sortedWith", "(boolean[],Comparator)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sortedWith", "(byte[],Comparator)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sortedWith", "(char[],Comparator)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sortedWith", "(double[],Comparator)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sortedWith", "(float[],Comparator)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sortedWith", "(int[],Comparator)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sortedWith", "(long[],Comparator)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sortedWith", "(short[],Comparator)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "subtract", "(Object[],Iterable)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "subtract", "(boolean[],Iterable)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "subtract", "(byte[],Iterable)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "subtract", "(char[],Iterable)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "subtract", "(double[],Iterable)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "subtract", "(float[],Iterable)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "subtract", "(int[],Iterable)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "subtract", "(long[],Iterable)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "subtract", "(short[],Iterable)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sum", "(byte[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sum", "(double[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sum", "(float[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sum", "(int[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sum", "(long[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sum", "(short[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sumBy", "(Object[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sumBy", "(boolean[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sumBy", "(byte[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sumBy", "(char[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sumBy", "(double[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sumBy", "(float[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sumBy", "(int[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sumBy", "(long[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sumBy", "(short[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sumByDouble", "(Object[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sumByDouble", "(boolean[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sumByDouble", "(byte[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sumByDouble", "(char[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sumByDouble", "(double[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sumByDouble", "(float[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sumByDouble", "(int[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sumByDouble", "(long[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sumByDouble", "(short[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sumOfBigDecimal", "(Object[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sumOfBigDecimal", "(boolean[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sumOfBigDecimal", "(byte[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sumOfBigDecimal", "(char[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sumOfBigDecimal", "(double[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sumOfBigDecimal", "(float[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sumOfBigDecimal", "(int[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sumOfBigDecimal", "(long[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sumOfBigDecimal", "(short[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sumOfBigInteger", "(Object[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sumOfBigInteger", "(boolean[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sumOfBigInteger", "(byte[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sumOfBigInteger", "(char[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sumOfBigInteger", "(double[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sumOfBigInteger", "(float[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sumOfBigInteger", "(int[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sumOfBigInteger", "(long[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sumOfBigInteger", "(short[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sumOfByte", "(Byte[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sumOfDouble", "(Double[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sumOfDouble", "(Object[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sumOfDouble", "(boolean[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sumOfDouble", "(byte[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sumOfDouble", "(char[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sumOfDouble", "(double[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sumOfDouble", "(float[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sumOfDouble", "(int[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sumOfDouble", "(long[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sumOfDouble", "(short[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sumOfFloat", "(Float[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sumOfInt", "(Integer[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sumOfInt", "(Object[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sumOfInt", "(boolean[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sumOfInt", "(byte[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sumOfInt", "(char[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sumOfInt", "(double[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sumOfInt", "(float[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sumOfInt", "(int[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sumOfInt", "(long[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sumOfInt", "(short[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sumOfLong", "(Long[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sumOfLong", "(Object[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sumOfLong", "(boolean[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sumOfLong", "(byte[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sumOfLong", "(char[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sumOfLong", "(double[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sumOfLong", "(float[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sumOfLong", "(int[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sumOfLong", "(long[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sumOfLong", "(short[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sumOfShort", "(Short[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sumOfUInt", "(Object[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sumOfUInt", "(boolean[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sumOfUInt", "(byte[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sumOfUInt", "(char[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sumOfUInt", "(double[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sumOfUInt", "(float[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sumOfUInt", "(int[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sumOfUInt", "(long[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sumOfUInt", "(short[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sumOfULong", "(Object[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sumOfULong", "(boolean[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sumOfULong", "(byte[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sumOfULong", "(char[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sumOfULong", "(double[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sumOfULong", "(float[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sumOfULong", "(int[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sumOfULong", "(long[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "sumOfULong", "(short[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "take", "(boolean[],int)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "take", "(byte[],int)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "take", "(char[],int)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "take", "(double[],int)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "take", "(float[],int)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "take", "(int[],int)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "take", "(long[],int)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "take", "(short[],int)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "takeLast", "(boolean[],int)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "takeLast", "(byte[],int)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "takeLast", "(char[],int)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "takeLast", "(double[],int)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "takeLast", "(float[],int)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "takeLast", "(int[],int)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "takeLast", "(long[],int)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "takeLast", "(short[],int)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "takeLastWhile", "(boolean[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "takeLastWhile", "(byte[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "takeLastWhile", "(char[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "takeLastWhile", "(double[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "takeLastWhile", "(float[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "takeLastWhile", "(int[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "takeLastWhile", "(long[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "takeLastWhile", "(short[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "takeWhile", "(Object[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "takeWhile", "(boolean[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "takeWhile", "(byte[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "takeWhile", "(char[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "takeWhile", "(double[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "takeWhile", "(float[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "takeWhile", "(int[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "takeWhile", "(long[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "takeWhile", "(short[],Function1)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "toBooleanArray", "(Boolean[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "toByteArray", "(Byte[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "toCharArray", "(Character[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "toDoubleArray", "(Double[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "toFloatArray", "(Float[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "toHashSet", "(Object[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "toHashSet", "(boolean[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "toHashSet", "(byte[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "toHashSet", "(char[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "toHashSet", "(double[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "toHashSet", "(float[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "toHashSet", "(int[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "toHashSet", "(long[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "toHashSet", "(short[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "toIntArray", "(Integer[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "toList", "(boolean[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "toList", "(byte[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "toList", "(char[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "toList", "(double[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "toList", "(float[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "toList", "(int[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "toList", "(long[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "toList", "(short[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "toLongArray", "(Long[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "toMutableList", "(boolean[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "toMutableList", "(byte[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "toMutableList", "(char[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "toMutableList", "(double[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "toMutableList", "(float[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "toMutableList", "(int[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "toMutableList", "(long[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "toMutableList", "(short[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "toMutableSet", "(Object[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "toMutableSet", "(boolean[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "toMutableSet", "(byte[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "toMutableSet", "(char[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "toMutableSet", "(double[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "toMutableSet", "(float[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "toMutableSet", "(int[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "toMutableSet", "(long[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "toMutableSet", "(short[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "toSet", "(boolean[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "toSet", "(byte[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "toSet", "(char[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "toSet", "(double[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "toSet", "(float[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "toSet", "(int[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "toSet", "(long[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "toSet", "(short[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "toShortArray", "(Short[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "toSortedSet", "(Comparable[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "toSortedSet", "(Object[],Comparator)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "toSortedSet", "(boolean[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "toSortedSet", "(byte[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "toSortedSet", "(char[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "toSortedSet", "(double[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "toSortedSet", "(float[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "toSortedSet", "(int[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "toSortedSet", "(long[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "toSortedSet", "(short[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "toTypedArray", "(boolean[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "toTypedArray", "(byte[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "toTypedArray", "(char[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "toTypedArray", "(double[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "toTypedArray", "(float[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "toTypedArray", "(int[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "toTypedArray", "(long[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "toTypedArray", "(short[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "union", "(boolean[],Iterable)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "union", "(double[],Iterable)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "union", "(float[],Iterable)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "union", "(int[],Iterable)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "union", "(long[],Iterable)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "union", "(short[],Iterable)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "unzip", "(Pair[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "withIndex", "(Object[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "withIndex", "(boolean[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "withIndex", "(byte[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "withIndex", "(char[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "withIndex", "(double[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "withIndex", "(float[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "withIndex", "(int[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "withIndex", "(long[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "withIndex", "(short[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "zip", "(boolean[],Iterable)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "zip", "(boolean[],Iterable,Function2)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "zip", "(boolean[],Object[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "zip", "(boolean[],Object[],Function2)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "zip", "(boolean[],boolean[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "zip", "(boolean[],boolean[],Function2)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "zip", "(byte[],Iterable)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "zip", "(byte[],Iterable,Function2)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "zip", "(byte[],Object[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "zip", "(byte[],Object[],Function2)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "zip", "(byte[],byte[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "zip", "(byte[],byte[],Function2)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "zip", "(char[],Iterable)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "zip", "(char[],Iterable,Function2)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "zip", "(char[],Object[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "zip", "(char[],Object[],Function2)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "zip", "(char[],char[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "zip", "(char[],char[],Function2)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "zip", "(double[],Iterable)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "zip", "(double[],Iterable,Function2)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "zip", "(double[],Object[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "zip", "(double[],Object[],Function2)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "zip", "(double[],double[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "zip", "(double[],double[],Function2)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "zip", "(float[],Iterable)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "zip", "(float[],Iterable,Function2)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "zip", "(float[],Object[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "zip", "(float[],Object[],Function2)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "zip", "(float[],float[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "zip", "(float[],float[],Function2)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "zip", "(int[],Iterable)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "zip", "(int[],Iterable,Function2)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "zip", "(int[],Object[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "zip", "(int[],Object[],Function2)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "zip", "(int[],int[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "zip", "(int[],int[],Function2)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "zip", "(long[],Iterable)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "zip", "(long[],Iterable,Function2)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "zip", "(long[],Object[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "zip", "(long[],Object[],Function2)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "zip", "(long[],long[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "zip", "(long[],long[],Function2)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "zip", "(short[],Iterable)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "zip", "(short[],Iterable,Function2)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "zip", "(short[],Object[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "zip", "(short[],Object[],Function2)", "generated"]
+      - ["kotlin.collections", "ArraysKt", "zip", "(short[],short[])", "generated"]
+      - ["kotlin.collections", "ArraysKt", "zip", "(short[],short[],Function2)", "generated"]
+      - ["kotlin.collections", "BooleanIterator", "BooleanIterator", "()", "generated"]
+      - ["kotlin.collections", "BooleanIterator", "nextBoolean", "()", "generated"]
+      - ["kotlin.collections", "ByteIterator", "ByteIterator", "()", "generated"]
+      - ["kotlin.collections", "ByteIterator", "nextByte", "()", "generated"]
+      - ["kotlin.collections", "CharIterator", "CharIterator", "()", "generated"]
+      - ["kotlin.collections", "CharIterator", "nextChar", "()", "generated"]
+      - ["kotlin.collections", "CollectionsHKt", "eachCount", "(Grouping)", "generated"]
+      - ["kotlin.collections", "CollectionsHKt", "fill", "(List,Object)", "generated"]
+      - ["kotlin.collections", "CollectionsHKt", "orEmpty", "(Object[])", "generated"]
+      - ["kotlin.collections", "CollectionsHKt", "shuffle", "(List)", "generated"]
+      - ["kotlin.collections", "CollectionsHKt", "shuffled", "(Iterable)", "generated"]
+      - ["kotlin.collections", "CollectionsHKt", "sort", "(List)", "generated"]
+      - ["kotlin.collections", "CollectionsHKt", "sortWith", "(List,Comparator)", "generated"]
+      - ["kotlin.collections", "CollectionsHKt", "toTypedArray", "(Collection)", "generated"]
+      - ["kotlin.collections", "CollectionsKt", "Iterable", "(Function0)", "generated"]
+      - ["kotlin.collections", "CollectionsKt", "List", "(int,Function1)", "generated"]
+      - ["kotlin.collections", "CollectionsKt", "MutableList", "(int,Function1)", "generated"]
+      - ["kotlin.collections", "CollectionsKt", "all", "(Iterable,Function1)", "generated"]
+      - ["kotlin.collections", "CollectionsKt", "any", "(Iterable)", "generated"]
+      - ["kotlin.collections", "CollectionsKt", "any", "(Iterable,Function1)", "generated"]
+      - ["kotlin.collections", "CollectionsKt", "arrayListOf", "()", "generated"]
+      - ["kotlin.collections", "CollectionsKt", "asSequence", "(Iterable)", "generated"]
+      - ["kotlin.collections", "CollectionsKt", "averageOfByte", "(Iterable)", "generated"]
+      - ["kotlin.collections", "CollectionsKt", "averageOfDouble", "(Iterable)", "generated"]
+      - ["kotlin.collections", "CollectionsKt", "averageOfFloat", "(Iterable)", "generated"]
+      - ["kotlin.collections", "CollectionsKt", "averageOfInt", "(Iterable)", "generated"]
+      - ["kotlin.collections", "CollectionsKt", "averageOfLong", "(Iterable)", "generated"]
+      - ["kotlin.collections", "CollectionsKt", "averageOfShort", "(Iterable)", "generated"]
+      - ["kotlin.collections", "CollectionsKt", "binarySearch", "(List,Comparable,int,int)", "generated"]
+      - ["kotlin.collections", "CollectionsKt", "binarySearch", "(List,Object,Comparator,int,int)", "generated"]
+      - ["kotlin.collections", "CollectionsKt", "binarySearch", "(List,int,int,Function1)", "generated"]
+      - ["kotlin.collections", "CollectionsKt", "binarySearchBy", "(List,Comparable,int,int,Function1)", "generated"]
+      - ["kotlin.collections", "CollectionsKt", "buildList", "(Function1)", "generated"]
+      - ["kotlin.collections", "CollectionsKt", "buildList", "(int,Function1)", "generated"]
+      - ["kotlin.collections", "CollectionsKt", "chunked", "(Iterable,int)", "generated"]
+      - ["kotlin.collections", "CollectionsKt", "chunked", "(Iterable,int,Function1)", "generated"]
+      - ["kotlin.collections", "CollectionsKt", "contains", "(Iterable,Object)", "generated"]
+      - ["kotlin.collections", "CollectionsKt", "containsAll", "(Collection,Collection)", "generated"]
+      - ["kotlin.collections", "CollectionsKt", "count", "(Collection)", "generated"]
+      - ["kotlin.collections", "CollectionsKt", "count", "(Iterable)", "generated"]
+      - ["kotlin.collections", "CollectionsKt", "count", "(Iterable,Function1)", "generated"]
+      - ["kotlin.collections", "CollectionsKt", "emptyList", "()", "generated"]
+      - ["kotlin.collections", "CollectionsKt", "filterIndexed", "(Iterable,Function2)", "generated"]
+      - ["kotlin.collections", "CollectionsKt", "flatMap", "(Iterable,Function1)", "generated"]
+      - ["kotlin.collections", "CollectionsKt", "flatMapIndexedIterable", "(Iterable,Function2)", "generated"]
+      - ["kotlin.collections", "CollectionsKt", "flatMapIndexedSequence", "(Iterable,Function2)", "generated"]
+      - ["kotlin.collections", "CollectionsKt", "flatMapSequence", "(Iterable,Function1)", "generated"]
+      - ["kotlin.collections", "CollectionsKt", "forEach", "(Iterable,Function1)", "generated"]
+      - ["kotlin.collections", "CollectionsKt", "forEach", "(Iterator,Function1)", "generated"]
+      - ["kotlin.collections", "CollectionsKt", "forEachIndexed", "(Iterable,Function2)", "generated"]
+      - ["kotlin.collections", "CollectionsKt", "getIndices", "(Collection)", "generated"]
+      - ["kotlin.collections", "CollectionsKt", "getLastIndex", "(List)", "generated"]
+      - ["kotlin.collections", "CollectionsKt", "groupBy", "(Iterable,Function1)", "generated"]
+      - ["kotlin.collections", "CollectionsKt", "groupBy", "(Iterable,Function1,Function1)", "generated"]
+      - ["kotlin.collections", "CollectionsKt", "groupingBy", "(Iterable,Function1)", "generated"]
+      - ["kotlin.collections", "CollectionsKt", "indexOf", "(Iterable,Object)", "generated"]
+      - ["kotlin.collections", "CollectionsKt", "indexOf", "(List,Object)", "generated"]
+      - ["kotlin.collections", "CollectionsKt", "indexOfFirst", "(Iterable,Function1)", "generated"]
+      - ["kotlin.collections", "CollectionsKt", "indexOfFirst", "(List,Function1)", "generated"]
+      - ["kotlin.collections", "CollectionsKt", "indexOfLast", "(Iterable,Function1)", "generated"]
+      - ["kotlin.collections", "CollectionsKt", "indexOfLast", "(List,Function1)", "generated"]
+      - ["kotlin.collections", "CollectionsKt", "isNotEmpty", "(Collection)", "generated"]
+      - ["kotlin.collections", "CollectionsKt", "isNullOrEmpty", "(Collection)", "generated"]
+      - ["kotlin.collections", "CollectionsKt", "iterator", "(Enumeration)", "generated"]
+      - ["kotlin.collections", "CollectionsKt", "lastIndexOf", "(Iterable,Object)", "generated"]
+      - ["kotlin.collections", "CollectionsKt", "lastIndexOf", "(List,Object)", "generated"]
+      - ["kotlin.collections", "CollectionsKt", "listOf", "()", "generated"]
+      - ["kotlin.collections", "CollectionsKt", "listOfNotNull", "(Object[])", "generated"]
+      - ["kotlin.collections", "CollectionsKt", "mapIndexed", "(Iterable,Function2)", "generated"]
+      - ["kotlin.collections", "CollectionsKt", "mapIndexedNotNull", "(Iterable,Function2)", "generated"]
+      - ["kotlin.collections", "CollectionsKt", "mapNotNull", "(Iterable,Function1)", "generated"]
+      - ["kotlin.collections", "CollectionsKt", "max", "(Iterable)", "generated"]
+      - ["kotlin.collections", "CollectionsKt", "maxOf", "(Iterable,Function1)", "generated"]
+      - ["kotlin.collections", "CollectionsKt", "maxOfOrNull", "(Iterable,Function1)", "generated"]
+      - ["kotlin.collections", "CollectionsKt", "maxOrNull", "(Iterable)", "generated"]
+      - ["kotlin.collections", "CollectionsKt", "maxOrThrow", "(Iterable)", "generated"]
+      - ["kotlin.collections", "CollectionsKt", "min", "(Iterable)", "generated"]
+      - ["kotlin.collections", "CollectionsKt", "minOf", "(Iterable,Function1)", "generated"]
+      - ["kotlin.collections", "CollectionsKt", "minOfOrNull", "(Iterable,Function1)", "generated"]
+      - ["kotlin.collections", "CollectionsKt", "minOrNull", "(Iterable)", "generated"]
+      - ["kotlin.collections", "CollectionsKt", "minOrThrow", "(Iterable)", "generated"]
+      - ["kotlin.collections", "CollectionsKt", "minusAssign", "(Collection,Iterable)", "generated"]
+      - ["kotlin.collections", "CollectionsKt", "minusAssign", "(Collection,Object)", "generated"]
+      - ["kotlin.collections", "CollectionsKt", "minusAssign", "(Collection,Object[])", "generated"]
+      - ["kotlin.collections", "CollectionsKt", "minusAssign", "(Collection,Sequence)", "generated"]
+      - ["kotlin.collections", "CollectionsKt", "mutableListOf", "()", "generated"]
+      - ["kotlin.collections", "CollectionsKt", "none", "(Iterable)", "generated"]
+      - ["kotlin.collections", "CollectionsKt", "none", "(Iterable,Function1)", "generated"]
+      - ["kotlin.collections", "CollectionsKt", "remove", "(Collection,Object)", "generated"]
+      - ["kotlin.collections", "CollectionsKt", "removeAll", "(Collection,Collection)", "generated"]
+      - ["kotlin.collections", "CollectionsKt", "removeAll", "(Collection,Iterable)", "generated"]
+      - ["kotlin.collections", "CollectionsKt", "removeAll", "(Collection,Object[])", "generated"]
+      - ["kotlin.collections", "CollectionsKt", "removeAll", "(Collection,Sequence)", "generated"]
+      - ["kotlin.collections", "CollectionsKt", "removeAll", "(Iterable,Function1)", "generated"]
+      - ["kotlin.collections", "CollectionsKt", "removeAll", "(List,Function1)", "generated"]
+      - ["kotlin.collections", "CollectionsKt", "retainAll", "(Collection,Collection)", "generated"]
+      - ["kotlin.collections", "CollectionsKt", "retainAll", "(Collection,Iterable)", "generated"]
+      - ["kotlin.collections", "CollectionsKt", "retainAll", "(Collection,Object[])", "generated"]
+      - ["kotlin.collections", "CollectionsKt", "retainAll", "(Collection,Sequence)", "generated"]
+      - ["kotlin.collections", "CollectionsKt", "retainAll", "(Iterable,Function1)", "generated"]
+      - ["kotlin.collections", "CollectionsKt", "retainAll", "(List,Function1)", "generated"]
+      - ["kotlin.collections", "CollectionsKt", "reverse", "(List)", "generated"]
+      - ["kotlin.collections", "CollectionsKt", "runningReduce", "(Iterable,Function2)", "generated"]
+      - ["kotlin.collections", "CollectionsKt", "runningReduceIndexed", "(Iterable,Function3)", "generated"]
+      - ["kotlin.collections", "CollectionsKt", "shuffle", "(List)", "generated"]
+      - ["kotlin.collections", "CollectionsKt", "shuffle", "(List,Random)", "generated"]
+      - ["kotlin.collections", "CollectionsKt", "sort", "(List)", "generated"]
+      - ["kotlin.collections", "CollectionsKt", "sort", "(List,Comparator)", "generated"]
+      - ["kotlin.collections", "CollectionsKt", "sort", "(List,Function2)", "generated"]
+      - ["kotlin.collections", "CollectionsKt", "sortBy", "(List,Function1)", "generated"]
+      - ["kotlin.collections", "CollectionsKt", "sortByDescending", "(List,Function1)", "generated"]
+      - ["kotlin.collections", "CollectionsKt", "sortDescending", "(List)", "generated"]
+      - ["kotlin.collections", "CollectionsKt", "sortWith", "(List,Comparator)", "generated"]
+      - ["kotlin.collections", "CollectionsKt", "sumBy", "(Iterable,Function1)", "generated"]
+      - ["kotlin.collections", "CollectionsKt", "sumByDouble", "(Iterable,Function1)", "generated"]
+      - ["kotlin.collections", "CollectionsKt", "sumOfBigDecimal", "(Iterable,Function1)", "generated"]
+      - ["kotlin.collections", "CollectionsKt", "sumOfBigInteger", "(Iterable,Function1)", "generated"]
+      - ["kotlin.collections", "CollectionsKt", "sumOfByte", "(Iterable)", "generated"]
+      - ["kotlin.collections", "CollectionsKt", "sumOfDouble", "(Iterable)", "generated"]
+      - ["kotlin.collections", "CollectionsKt", "sumOfDouble", "(Iterable,Function1)", "generated"]
+      - ["kotlin.collections", "CollectionsKt", "sumOfFloat", "(Iterable)", "generated"]
+      - ["kotlin.collections", "CollectionsKt", "sumOfInt", "(Iterable)", "generated"]
+      - ["kotlin.collections", "CollectionsKt", "sumOfInt", "(Iterable,Function1)", "generated"]
+      - ["kotlin.collections", "CollectionsKt", "sumOfLong", "(Iterable)", "generated"]
+      - ["kotlin.collections", "CollectionsKt", "sumOfLong", "(Iterable,Function1)", "generated"]
+      - ["kotlin.collections", "CollectionsKt", "sumOfShort", "(Iterable)", "generated"]
+      - ["kotlin.collections", "CollectionsKt", "sumOfUInt", "(Iterable,Function1)", "generated"]
+      - ["kotlin.collections", "CollectionsKt", "sumOfULong", "(Iterable,Function1)", "generated"]
+      - ["kotlin.collections", "CollectionsKt", "toBooleanArray", "(Collection)", "generated"]
+      - ["kotlin.collections", "CollectionsKt", "toByteArray", "(Collection)", "generated"]
+      - ["kotlin.collections", "CollectionsKt", "toCharArray", "(Collection)", "generated"]
+      - ["kotlin.collections", "CollectionsKt", "toDoubleArray", "(Collection)", "generated"]
+      - ["kotlin.collections", "CollectionsKt", "toFloatArray", "(Collection)", "generated"]
+      - ["kotlin.collections", "CollectionsKt", "toIntArray", "(Collection)", "generated"]
+      - ["kotlin.collections", "CollectionsKt", "toLongArray", "(Collection)", "generated"]
+      - ["kotlin.collections", "CollectionsKt", "toShortArray", "(Collection)", "generated"]
+      - ["kotlin.collections", "CollectionsKt", "windowed", "(Iterable,int,int,boolean)", "generated"]
+      - ["kotlin.collections", "CollectionsKt", "windowed", "(Iterable,int,int,boolean,Function1)", "generated"]
+      - ["kotlin.collections", "CollectionsKt", "withIndex", "(Iterable)", "generated"]
+      - ["kotlin.collections", "DoubleIterator", "DoubleIterator", "()", "generated"]
+      - ["kotlin.collections", "DoubleIterator", "nextDouble", "()", "generated"]
+      - ["kotlin.collections", "FloatIterator", "FloatIterator", "()", "generated"]
+      - ["kotlin.collections", "FloatIterator", "nextFloat", "()", "generated"]
+      - ["kotlin.collections", "Grouping", "keyOf", "(Object)", "generated"]
+      - ["kotlin.collections", "Grouping", "sourceIterator", "()", "generated"]
+      - ["kotlin.collections", "GroupingKt", "aggregate", "(Grouping,Function4)", "generated"]
+      - ["kotlin.collections", "GroupingKt", "eachCount", "(Grouping)", "generated"]
+      - ["kotlin.collections", "GroupingKt", "fold", "(Grouping,Function2,Function3)", "generated"]
+      - ["kotlin.collections", "GroupingKt", "fold", "(Grouping,Object,Function2)", "generated"]
+      - ["kotlin.collections", "GroupingKt", "reduce", "(Grouping,Function3)", "generated"]
+      - ["kotlin.collections", "HashMap", "HashMap", "()", "generated"]
+      - ["kotlin.collections", "HashMap", "HashMap", "(Map)", "generated"]
+      - ["kotlin.collections", "HashMap", "HashMap", "(int)", "generated"]
+      - ["kotlin.collections", "HashMap", "HashMap", "(int,float)", "generated"]
+      - ["kotlin.collections", "HashSet", "HashSet", "()", "generated"]
+      - ["kotlin.collections", "HashSet", "HashSet", "(Collection)", "generated"]
+      - ["kotlin.collections", "HashSet", "HashSet", "(int)", "generated"]
+      - ["kotlin.collections", "HashSet", "HashSet", "(int,float)", "generated"]
+      - ["kotlin.collections", "IndexedValue", "component1", "()", "generated"]
+      - ["kotlin.collections", "IndexedValue", "equals", "(Object)", "generated"]
+      - ["kotlin.collections", "IndexedValue", "getIndex", "()", "generated"]
+      - ["kotlin.collections", "IndexedValue", "hashCode", "()", "generated"]
+      - ["kotlin.collections", "IntIterator", "IntIterator", "()", "generated"]
+      - ["kotlin.collections", "IntIterator", "nextInt", "()", "generated"]
+      - ["kotlin.collections", "LinkedHashMap", "LinkedHashMap", "()", "generated"]
+      - ["kotlin.collections", "LinkedHashMap", "LinkedHashMap", "(Map)", "generated"]
+      - ["kotlin.collections", "LinkedHashMap", "LinkedHashMap", "(int)", "generated"]
+      - ["kotlin.collections", "LinkedHashMap", "LinkedHashMap", "(int,float)", "generated"]
+      - ["kotlin.collections", "LinkedHashSet", "LinkedHashSet", "()", "generated"]
+      - ["kotlin.collections", "LinkedHashSet", "LinkedHashSet", "(Collection)", "generated"]
+      - ["kotlin.collections", "LinkedHashSet", "LinkedHashSet", "(int)", "generated"]
+      - ["kotlin.collections", "LinkedHashSet", "LinkedHashSet", "(int,float)", "generated"]
+      - ["kotlin.collections", "LongIterator", "LongIterator", "()", "generated"]
+      - ["kotlin.collections", "LongIterator", "nextLong", "()", "generated"]
+      - ["kotlin.collections", "MapsKt", "all", "(Map,Function1)", "generated"]
+      - ["kotlin.collections", "MapsKt", "any", "(Map)", "generated"]
+      - ["kotlin.collections", "MapsKt", "any", "(Map,Function1)", "generated"]
+      - ["kotlin.collections", "MapsKt", "asSequence", "(Map)", "generated"]
+      - ["kotlin.collections", "MapsKt", "buildMap", "(Function1)", "generated"]
+      - ["kotlin.collections", "MapsKt", "buildMap", "(int,Function1)", "generated"]
+      - ["kotlin.collections", "MapsKt", "contains", "(Map,Object)", "generated"]
+      - ["kotlin.collections", "MapsKt", "containsKey", "(Map,Object)", "generated"]
+      - ["kotlin.collections", "MapsKt", "containsValue", "(Map,Object)", "generated"]
+      - ["kotlin.collections", "MapsKt", "count", "(Map)", "generated"]
+      - ["kotlin.collections", "MapsKt", "count", "(Map,Function1)", "generated"]
+      - ["kotlin.collections", "MapsKt", "emptyMap", "()", "generated"]
+      - ["kotlin.collections", "MapsKt", "flatMap", "(Map,Function1)", "generated"]
+      - ["kotlin.collections", "MapsKt", "flatMapSequence", "(Map,Function1)", "generated"]
+      - ["kotlin.collections", "MapsKt", "forEach", "(Map,Function1)", "generated"]
+      - ["kotlin.collections", "MapsKt", "hashMapOf", "()", "generated"]
+      - ["kotlin.collections", "MapsKt", "hashMapOf", "(Pair[])", "generated"]
+      - ["kotlin.collections", "MapsKt", "isNotEmpty", "(Map)", "generated"]
+      - ["kotlin.collections", "MapsKt", "isNullOrEmpty", "(Map)", "generated"]
+      - ["kotlin.collections", "MapsKt", "linkedMapOf", "()", "generated"]
+      - ["kotlin.collections", "MapsKt", "linkedMapOf", "(Pair[])", "generated"]
+      - ["kotlin.collections", "MapsKt", "mapNotNull", "(Map,Function1)", "generated"]
+      - ["kotlin.collections", "MapsKt", "mapOf", "()", "generated"]
+      - ["kotlin.collections", "MapsKt", "mapOf", "(Pair[])", "generated"]
+      - ["kotlin.collections", "MapsKt", "maxOf", "(Map,Function1)", "generated"]
+      - ["kotlin.collections", "MapsKt", "maxOfOrNull", "(Map,Function1)", "generated"]
+      - ["kotlin.collections", "MapsKt", "minOf", "(Map,Function1)", "generated"]
+      - ["kotlin.collections", "MapsKt", "minOfOrNull", "(Map,Function1)", "generated"]
+      - ["kotlin.collections", "MapsKt", "minusAssign", "(Map,Iterable)", "generated"]
+      - ["kotlin.collections", "MapsKt", "minusAssign", "(Map,Object)", "generated"]
+      - ["kotlin.collections", "MapsKt", "minusAssign", "(Map,Object[])", "generated"]
+      - ["kotlin.collections", "MapsKt", "minusAssign", "(Map,Sequence)", "generated"]
+      - ["kotlin.collections", "MapsKt", "mutableMapOf", "()", "generated"]
+      - ["kotlin.collections", "MapsKt", "mutableMapOf", "(Pair[])", "generated"]
+      - ["kotlin.collections", "MapsKt", "none", "(Map)", "generated"]
+      - ["kotlin.collections", "MapsKt", "none", "(Map,Function1)", "generated"]
+      - ["kotlin.collections", "MapsKt", "plusAssign", "(Map,Pair[])", "generated"]
+      - ["kotlin.collections", "MapsKt", "putAll", "(Map,Pair[])", "generated"]
+      - ["kotlin.collections", "MapsKt", "sortedMapOf", "(Comparator,Pair[])", "generated"]
+      - ["kotlin.collections", "MapsKt", "sortedMapOf", "(Pair[])", "generated"]
+      - ["kotlin.collections", "MapsKt", "toMap", "(Sequence)", "generated"]
+      - ["kotlin.collections", "MapsKt", "toProperties", "(Map)", "generated"]
+      - ["kotlin.collections", "MapsKt", "toSortedMap", "(Map,Comparator)", "generated"]
+      - ["kotlin.collections", "SetsKt", "buildSet", "(Function1)", "generated"]
+      - ["kotlin.collections", "SetsKt", "buildSet", "(int,Function1)", "generated"]
+      - ["kotlin.collections", "SetsKt", "emptySet", "()", "generated"]
+      - ["kotlin.collections", "SetsKt", "hashSetOf", "()", "generated"]
+      - ["kotlin.collections", "SetsKt", "hashSetOf", "(Object[])", "generated"]
+      - ["kotlin.collections", "SetsKt", "linkedSetOf", "()", "generated"]
+      - ["kotlin.collections", "SetsKt", "linkedSetOf", "(Object[])", "generated"]
+      - ["kotlin.collections", "SetsKt", "mutableSetOf", "()", "generated"]
+      - ["kotlin.collections", "SetsKt", "mutableSetOf", "(Object[])", "generated"]
+      - ["kotlin.collections", "SetsKt", "setOf", "()", "generated"]
+      - ["kotlin.collections", "SetsKt", "setOfNotNull", "(Object[])", "generated"]
+      - ["kotlin.collections", "SetsKt", "sortedSetOf", "(Comparator,Object[])", "generated"]
+      - ["kotlin.collections", "SetsKt", "sortedSetOf", "(Object[])", "generated"]
+      - ["kotlin.collections", "ShortIterator", "ShortIterator", "()", "generated"]
+      - ["kotlin.collections", "ShortIterator", "nextShort", "()", "generated"]
+      - ["kotlin.collections", "UArraysKt", "all", "(UByteArray,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "all", "(UIntArray,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "all", "(ULongArray,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "all", "(UShortArray,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "any", "(UByteArray)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "any", "(UByteArray,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "any", "(UIntArray)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "any", "(UIntArray,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "any", "(ULongArray)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "any", "(ULongArray,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "any", "(UShortArray)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "any", "(UShortArray,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "asIntArray", "(UIntArray)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "asList", "(UByteArray)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "asList", "(UIntArray)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "asList", "(ULongArray)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "asList", "(UShortArray)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "asLongArray", "(ULongArray)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "asShortArray", "(UShortArray)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "asUIntArray", "(int[])", "generated"]
+      - ["kotlin.collections", "UArraysKt", "asULongArray", "(long[])", "generated"]
+      - ["kotlin.collections", "UArraysKt", "asUShortArray", "(short[])", "generated"]
+      - ["kotlin.collections", "UArraysKt", "associateWith", "(UByteArray,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "associateWith", "(UIntArray,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "associateWith", "(ULongArray,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "associateWith", "(UShortArray,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "binarySearch", "(UByteArray,byte,int,int)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "binarySearch", "(UIntArray,int,int,int)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "binarySearch", "(ULongArray,long,int,int)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "binarySearch", "(UShortArray,short,int,int)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "component1", "(UByteArray)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "component1", "(UIntArray)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "component1", "(ULongArray)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "component1", "(UShortArray)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "component2", "(UByteArray)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "component2", "(UIntArray)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "component2", "(ULongArray)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "component2", "(UShortArray)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "component3", "(UByteArray)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "component3", "(UIntArray)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "component3", "(ULongArray)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "component3", "(UShortArray)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "component4", "(UByteArray)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "component4", "(UIntArray)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "component4", "(ULongArray)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "component4", "(UShortArray)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "component5", "(UByteArray)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "component5", "(UIntArray)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "component5", "(ULongArray)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "component5", "(UShortArray)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "contentEquals", "(UByteArray,UByteArray)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "contentEquals", "(UIntArray,UIntArray)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "contentEquals", "(ULongArray,ULongArray)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "contentEquals", "(UShortArray,UShortArray)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "contentHashCode", "(UByteArray)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "contentHashCode", "(UIntArray)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "contentHashCode", "(ULongArray)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "contentHashCode", "(UShortArray)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "copyOf", "(UIntArray)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "copyOf", "(UIntArray,int)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "copyOf", "(ULongArray)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "copyOf", "(ULongArray,int)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "copyOf", "(UShortArray)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "copyOf", "(UShortArray,int)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "copyOfRange", "(UIntArray,int,int)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "copyOfRange", "(ULongArray,int,int)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "copyOfRange", "(UShortArray,int,int)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "count", "(UByteArray,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "count", "(UIntArray,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "count", "(ULongArray,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "count", "(UShortArray,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "dropWhile", "(UByteArray,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "dropWhile", "(UIntArray,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "dropWhile", "(ULongArray,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "dropWhile", "(UShortArray,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "elementAt", "(UByteArray,int)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "elementAt", "(UIntArray,int)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "elementAt", "(ULongArray,int)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "elementAt", "(UShortArray,int)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "elementAtOrElse", "(UByteArray,int,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "elementAtOrElse", "(UIntArray,int,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "elementAtOrElse", "(ULongArray,int,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "elementAtOrElse", "(UShortArray,int,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "elementAtOrNull", "(UByteArray,int)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "elementAtOrNull", "(UIntArray,int)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "elementAtOrNull", "(ULongArray,int)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "elementAtOrNull", "(UShortArray,int)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "fill", "(UByteArray,byte,int,int)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "fill", "(UIntArray,int,int,int)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "fill", "(ULongArray,long,int,int)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "fill", "(UShortArray,short,int,int)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "filter", "(UByteArray,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "filter", "(UIntArray,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "filter", "(ULongArray,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "filter", "(UShortArray,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "filterIndexed", "(UByteArray,Function2)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "filterIndexed", "(UIntArray,Function2)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "filterIndexed", "(ULongArray,Function2)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "filterIndexed", "(UShortArray,Function2)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "filterNot", "(UByteArray,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "filterNot", "(UIntArray,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "filterNot", "(ULongArray,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "filterNot", "(UShortArray,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "find", "(UByteArray,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "find", "(UIntArray,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "find", "(ULongArray,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "find", "(UShortArray,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "findLast", "(UByteArray,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "findLast", "(UIntArray,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "findLast", "(ULongArray,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "findLast", "(UShortArray,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "first", "(UByteArray)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "first", "(UByteArray,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "first", "(UIntArray)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "first", "(UIntArray,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "first", "(ULongArray)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "first", "(ULongArray,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "first", "(UShortArray)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "first", "(UShortArray,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "firstOrNull", "(UByteArray)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "firstOrNull", "(UByteArray,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "firstOrNull", "(UIntArray)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "firstOrNull", "(UIntArray,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "firstOrNull", "(ULongArray)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "firstOrNull", "(ULongArray,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "firstOrNull", "(UShortArray)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "firstOrNull", "(UShortArray,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "flatMap", "(UByteArray,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "flatMap", "(UIntArray,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "flatMap", "(ULongArray,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "flatMap", "(UShortArray,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "flatMapIndexed", "(UByteArray,Function2)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "flatMapIndexed", "(UIntArray,Function2)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "flatMapIndexed", "(ULongArray,Function2)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "flatMapIndexed", "(UShortArray,Function2)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "forEach", "(UByteArray,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "forEach", "(UIntArray,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "forEach", "(ULongArray,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "forEach", "(UShortArray,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "forEachIndexed", "(UByteArray,Function2)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "forEachIndexed", "(UIntArray,Function2)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "forEachIndexed", "(ULongArray,Function2)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "forEachIndexed", "(UShortArray,Function2)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "getIndices", "(UByteArray)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "getIndices", "(UIntArray)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "getIndices", "(ULongArray)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "getIndices", "(UShortArray)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "getLastIndex", "(UByteArray)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "getLastIndex", "(UIntArray)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "getLastIndex", "(ULongArray)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "getLastIndex", "(UShortArray)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "getOrElse", "(UByteArray,int,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "getOrElse", "(UIntArray,int,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "getOrElse", "(ULongArray,int,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "getOrElse", "(UShortArray,int,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "getOrNull", "(UByteArray,int)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "getOrNull", "(UIntArray,int)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "getOrNull", "(ULongArray,int)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "getOrNull", "(UShortArray,int)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "groupBy", "(UByteArray,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "groupBy", "(UByteArray,Function1,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "groupBy", "(UIntArray,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "groupBy", "(UIntArray,Function1,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "groupBy", "(ULongArray,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "groupBy", "(ULongArray,Function1,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "groupBy", "(UShortArray,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "groupBy", "(UShortArray,Function1,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "indexOf", "(UByteArray,byte)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "indexOf", "(UIntArray,int)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "indexOf", "(ULongArray,long)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "indexOf", "(UShortArray,short)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "indexOfFirst", "(UByteArray,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "indexOfFirst", "(UIntArray,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "indexOfFirst", "(ULongArray,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "indexOfFirst", "(UShortArray,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "indexOfLast", "(UByteArray,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "indexOfLast", "(UIntArray,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "indexOfLast", "(ULongArray,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "indexOfLast", "(UShortArray,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "last", "(UByteArray)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "last", "(UByteArray,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "last", "(UIntArray)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "last", "(UIntArray,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "last", "(ULongArray)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "last", "(ULongArray,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "last", "(UShortArray)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "last", "(UShortArray,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "lastIndexOf", "(UByteArray,byte)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "lastIndexOf", "(UIntArray,int)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "lastIndexOf", "(ULongArray,long)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "lastIndexOf", "(UShortArray,short)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "lastOrNull", "(UByteArray)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "lastOrNull", "(UByteArray,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "lastOrNull", "(UIntArray)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "lastOrNull", "(UIntArray,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "lastOrNull", "(ULongArray)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "lastOrNull", "(ULongArray,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "lastOrNull", "(UShortArray)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "lastOrNull", "(UShortArray,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "map", "(UByteArray,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "map", "(UIntArray,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "map", "(ULongArray,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "map", "(UShortArray,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "mapIndexed", "(UByteArray,Function2)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "mapIndexed", "(UIntArray,Function2)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "mapIndexed", "(ULongArray,Function2)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "mapIndexed", "(UShortArray,Function2)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "max", "(UByteArray)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "max", "(UIntArray)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "max", "(ULongArray)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "max", "(UShortArray)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "maxBy", "(UByteArray,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "maxBy", "(UIntArray,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "maxBy", "(ULongArray,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "maxBy", "(UShortArray,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "maxByOrNull", "(UByteArray,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "maxByOrNull", "(UIntArray,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "maxByOrNull", "(ULongArray,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "maxByOrNull", "(UShortArray,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "maxByOrThrow-U", "(UByteArray,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "maxByOrThrow-U", "(UIntArray,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "maxByOrThrow-U", "(ULongArray,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "maxByOrThrow-U", "(UShortArray,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "maxOf", "(UByteArray,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "maxOf", "(UIntArray,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "maxOf", "(ULongArray,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "maxOf", "(UShortArray,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "maxOfOrNull", "(UByteArray,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "maxOfOrNull", "(UIntArray,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "maxOfOrNull", "(ULongArray,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "maxOfOrNull", "(UShortArray,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "maxOfWith", "(UByteArray,Comparator,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "maxOfWith", "(UIntArray,Comparator,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "maxOfWith", "(ULongArray,Comparator,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "maxOfWith", "(UShortArray,Comparator,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "maxOfWithOrNull", "(UByteArray,Comparator,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "maxOfWithOrNull", "(UIntArray,Comparator,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "maxOfWithOrNull", "(ULongArray,Comparator,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "maxOfWithOrNull", "(UShortArray,Comparator,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "maxOrNull", "(UByteArray)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "maxOrNull", "(UIntArray)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "maxOrNull", "(ULongArray)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "maxOrNull", "(UShortArray)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "maxOrThrow-U", "(UByteArray)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "maxOrThrow-U", "(UIntArray)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "maxOrThrow-U", "(ULongArray)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "maxOrThrow-U", "(UShortArray)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "maxWith", "(UByteArray,Comparator)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "maxWith", "(UIntArray,Comparator)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "maxWith", "(ULongArray,Comparator)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "maxWith", "(UShortArray,Comparator)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "maxWithOrNull", "(UByteArray,Comparator)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "maxWithOrNull", "(UIntArray,Comparator)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "maxWithOrNull", "(ULongArray,Comparator)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "maxWithOrNull", "(UShortArray,Comparator)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "maxWithOrThrow-U", "(UByteArray,Comparator)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "maxWithOrThrow-U", "(UIntArray,Comparator)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "maxWithOrThrow-U", "(ULongArray,Comparator)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "maxWithOrThrow-U", "(UShortArray,Comparator)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "min", "(UByteArray)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "min", "(UIntArray)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "min", "(ULongArray)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "min", "(UShortArray)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "minBy", "(UByteArray,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "minBy", "(UIntArray,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "minBy", "(ULongArray,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "minBy", "(UShortArray,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "minByOrNull", "(UByteArray,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "minByOrNull", "(UIntArray,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "minByOrNull", "(ULongArray,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "minByOrNull", "(UShortArray,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "minByOrThrow-U", "(UByteArray,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "minByOrThrow-U", "(UIntArray,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "minByOrThrow-U", "(ULongArray,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "minByOrThrow-U", "(UShortArray,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "minOf", "(UByteArray,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "minOf", "(UIntArray,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "minOf", "(ULongArray,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "minOf", "(UShortArray,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "minOfOrNull", "(UByteArray,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "minOfOrNull", "(UIntArray,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "minOfOrNull", "(ULongArray,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "minOfOrNull", "(UShortArray,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "minOfWith", "(UByteArray,Comparator,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "minOfWith", "(UIntArray,Comparator,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "minOfWith", "(ULongArray,Comparator,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "minOfWith", "(UShortArray,Comparator,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "minOfWithOrNull", "(UByteArray,Comparator,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "minOfWithOrNull", "(UIntArray,Comparator,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "minOfWithOrNull", "(ULongArray,Comparator,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "minOfWithOrNull", "(UShortArray,Comparator,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "minOrNull", "(UByteArray)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "minOrNull", "(UIntArray)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "minOrNull", "(ULongArray)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "minOrNull", "(UShortArray)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "minOrThrow-U", "(UByteArray)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "minOrThrow-U", "(UIntArray)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "minOrThrow-U", "(ULongArray)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "minOrThrow-U", "(UShortArray)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "minWith", "(UByteArray,Comparator)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "minWith", "(UIntArray,Comparator)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "minWith", "(ULongArray,Comparator)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "minWith", "(UShortArray,Comparator)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "minWithOrNull", "(UByteArray,Comparator)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "minWithOrNull", "(UIntArray,Comparator)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "minWithOrNull", "(ULongArray,Comparator)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "minWithOrNull", "(UShortArray,Comparator)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "minWithOrThrow-U", "(UByteArray,Comparator)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "minWithOrThrow-U", "(UIntArray,Comparator)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "minWithOrThrow-U", "(ULongArray,Comparator)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "minWithOrThrow-U", "(UShortArray,Comparator)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "none", "(UByteArray)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "none", "(UByteArray,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "none", "(UIntArray)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "none", "(UIntArray,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "none", "(ULongArray)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "none", "(ULongArray,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "none", "(UShortArray)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "none", "(UShortArray,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "plus", "(UIntArray,Collection)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "plus", "(UIntArray,UIntArray)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "plus", "(UIntArray,int)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "plus", "(ULongArray,Collection)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "plus", "(ULongArray,ULongArray)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "plus", "(ULongArray,long)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "plus", "(UShortArray,Collection)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "plus", "(UShortArray,UShortArray)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "plus", "(UShortArray,short)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "random", "(UByteArray)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "random", "(UByteArray,Random)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "random", "(UIntArray)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "random", "(UIntArray,Random)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "random", "(ULongArray)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "random", "(ULongArray,Random)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "random", "(UShortArray)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "random", "(UShortArray,Random)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "randomOrNull", "(UByteArray)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "randomOrNull", "(UByteArray,Random)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "randomOrNull", "(UIntArray)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "randomOrNull", "(UIntArray,Random)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "randomOrNull", "(ULongArray)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "randomOrNull", "(ULongArray,Random)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "randomOrNull", "(UShortArray)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "randomOrNull", "(UShortArray,Random)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "reduce", "(UByteArray,Function2)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "reduce", "(UIntArray,Function2)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "reduce", "(ULongArray,Function2)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "reduce", "(UShortArray,Function2)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "reduceIndexed", "(UByteArray,Function3)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "reduceIndexed", "(UIntArray,Function3)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "reduceIndexed", "(ULongArray,Function3)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "reduceIndexed", "(UShortArray,Function3)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "reduceIndexedOrNull", "(UByteArray,Function3)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "reduceIndexedOrNull", "(UIntArray,Function3)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "reduceIndexedOrNull", "(ULongArray,Function3)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "reduceIndexedOrNull", "(UShortArray,Function3)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "reduceOrNull", "(UByteArray,Function2)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "reduceOrNull", "(UIntArray,Function2)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "reduceOrNull", "(ULongArray,Function2)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "reduceOrNull", "(UShortArray,Function2)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "reduceRight", "(UByteArray,Function2)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "reduceRight", "(UIntArray,Function2)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "reduceRight", "(ULongArray,Function2)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "reduceRight", "(UShortArray,Function2)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "reduceRightIndexed", "(UByteArray,Function3)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "reduceRightIndexed", "(UIntArray,Function3)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "reduceRightIndexed", "(ULongArray,Function3)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "reduceRightIndexed", "(UShortArray,Function3)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "reduceRightIndexedOrNull", "(UByteArray,Function3)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "reduceRightIndexedOrNull", "(UIntArray,Function3)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "reduceRightIndexedOrNull", "(ULongArray,Function3)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "reduceRightIndexedOrNull", "(UShortArray,Function3)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "reduceRightOrNull", "(UByteArray,Function2)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "reduceRightOrNull", "(UIntArray,Function2)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "reduceRightOrNull", "(ULongArray,Function2)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "reduceRightOrNull", "(UShortArray,Function2)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "reverse", "(UByteArray)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "reverse", "(UByteArray,int,int)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "reverse", "(UIntArray)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "reverse", "(UIntArray,int,int)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "reverse", "(ULongArray)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "reverse", "(ULongArray,int,int)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "reverse", "(UShortArray)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "reverse", "(UShortArray,int,int)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "reversedArray", "(UIntArray)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "reversedArray", "(ULongArray)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "reversedArray", "(UShortArray)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "runningReduce", "(UByteArray,Function2)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "runningReduce", "(UIntArray,Function2)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "runningReduce", "(ULongArray,Function2)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "runningReduce", "(UShortArray,Function2)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "runningReduceIndexed", "(UByteArray,Function3)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "runningReduceIndexed", "(UIntArray,Function3)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "runningReduceIndexed", "(ULongArray,Function3)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "runningReduceIndexed", "(UShortArray,Function3)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "shuffle", "(UByteArray)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "shuffle", "(UByteArray,Random)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "shuffle", "(UIntArray)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "shuffle", "(UIntArray,Random)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "shuffle", "(ULongArray)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "shuffle", "(ULongArray,Random)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "shuffle", "(UShortArray)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "shuffle", "(UShortArray,Random)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "single", "(UByteArray)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "single", "(UByteArray,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "single", "(UIntArray)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "single", "(UIntArray,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "single", "(ULongArray)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "single", "(ULongArray,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "single", "(UShortArray)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "single", "(UShortArray,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "singleOrNull", "(UByteArray)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "singleOrNull", "(UByteArray,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "singleOrNull", "(UIntArray)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "singleOrNull", "(UIntArray,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "singleOrNull", "(ULongArray)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "singleOrNull", "(ULongArray,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "singleOrNull", "(UShortArray)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "singleOrNull", "(UShortArray,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "slice", "(UByteArray,IntRange)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "slice", "(UByteArray,Iterable)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "slice", "(UIntArray,IntRange)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "slice", "(UIntArray,Iterable)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "slice", "(ULongArray,IntRange)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "slice", "(ULongArray,Iterable)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "slice", "(UShortArray,IntRange)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "slice", "(UShortArray,Iterable)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "sliceArray", "(UByteArray,Collection)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "sliceArray", "(UIntArray,Collection)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "sliceArray", "(UIntArray,IntRange)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "sliceArray", "(ULongArray,Collection)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "sliceArray", "(ULongArray,IntRange)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "sliceArray", "(UShortArray,Collection)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "sliceArray", "(UShortArray,IntRange)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "sort", "(UByteArray)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "sort", "(UByteArray,int,int)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "sort", "(UIntArray)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "sort", "(UIntArray,int,int)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "sort", "(ULongArray)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "sort", "(ULongArray,int,int)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "sort", "(UShortArray)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "sort", "(UShortArray,int,int)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "sortDescending", "(UByteArray)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "sortDescending", "(UByteArray,int,int)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "sortDescending", "(UIntArray)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "sortDescending", "(UIntArray,int,int)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "sortDescending", "(ULongArray)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "sortDescending", "(ULongArray,int,int)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "sortDescending", "(UShortArray)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "sortDescending", "(UShortArray,int,int)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "sorted", "(UByteArray)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "sorted", "(UIntArray)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "sorted", "(ULongArray)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "sorted", "(UShortArray)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "sortedDescending", "(UIntArray)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "sortedDescending", "(ULongArray)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "sortedDescending", "(UShortArray)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "sum", "(UByteArray)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "sum", "(UIntArray)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "sum", "(ULongArray)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "sum", "(UShortArray)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "sumBy", "(UByteArray,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "sumBy", "(UIntArray,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "sumBy", "(ULongArray,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "sumBy", "(UShortArray,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "sumByDouble", "(UByteArray,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "sumByDouble", "(UIntArray,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "sumByDouble", "(ULongArray,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "sumByDouble", "(UShortArray,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "sumOfBigDecimal", "(UByteArray,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "sumOfBigDecimal", "(UIntArray,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "sumOfBigDecimal", "(ULongArray,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "sumOfBigDecimal", "(UShortArray,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "sumOfBigInteger", "(UByteArray,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "sumOfBigInteger", "(UIntArray,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "sumOfBigInteger", "(ULongArray,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "sumOfBigInteger", "(UShortArray,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "sumOfDouble", "(UByteArray,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "sumOfDouble", "(UIntArray,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "sumOfDouble", "(ULongArray,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "sumOfDouble", "(UShortArray,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "sumOfInt", "(UByteArray,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "sumOfInt", "(UIntArray,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "sumOfInt", "(ULongArray,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "sumOfInt", "(UShortArray,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "sumOfLong", "(UByteArray,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "sumOfLong", "(UIntArray,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "sumOfLong", "(ULongArray,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "sumOfLong", "(UShortArray,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "sumOfUByte", "(byte[])", "generated"]
+      - ["kotlin.collections", "UArraysKt", "sumOfUInt", "(UByteArray,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "sumOfUInt", "(UIntArray,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "sumOfUInt", "(ULongArray,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "sumOfUInt", "(UShortArray,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "sumOfUInt", "(int[])", "generated"]
+      - ["kotlin.collections", "UArraysKt", "sumOfULong", "(UByteArray,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "sumOfULong", "(UIntArray,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "sumOfULong", "(ULongArray,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "sumOfULong", "(UShortArray,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "sumOfULong", "(long[])", "generated"]
+      - ["kotlin.collections", "UArraysKt", "sumOfUShort", "(short[])", "generated"]
+      - ["kotlin.collections", "UArraysKt", "takeWhile", "(UByteArray,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "takeWhile", "(UIntArray,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "takeWhile", "(ULongArray,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "takeWhile", "(UShortArray,Function1)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "toIntArray", "(UIntArray)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "toLongArray", "(ULongArray)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "toShortArray", "(UShortArray)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "toTypedArray", "(UByteArray)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "toTypedArray", "(UIntArray)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "toTypedArray", "(ULongArray)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "toTypedArray", "(UShortArray)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "toUIntArray", "(int[])", "generated"]
+      - ["kotlin.collections", "UArraysKt", "toULongArray", "(long[])", "generated"]
+      - ["kotlin.collections", "UArraysKt", "toUShortArray", "(short[])", "generated"]
+      - ["kotlin.collections", "UArraysKt", "withIndex", "(UByteArray)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "withIndex", "(UIntArray)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "withIndex", "(ULongArray)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "withIndex", "(UShortArray)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "zip", "(UByteArray,Iterable)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "zip", "(UByteArray,Iterable,Function2)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "zip", "(UByteArray,Object[])", "generated"]
+      - ["kotlin.collections", "UArraysKt", "zip", "(UByteArray,Object[],Function2)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "zip", "(UByteArray,UByteArray)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "zip", "(UByteArray,UByteArray,Function2)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "zip", "(UIntArray,Iterable)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "zip", "(UIntArray,Iterable,Function2)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "zip", "(UIntArray,Object[])", "generated"]
+      - ["kotlin.collections", "UArraysKt", "zip", "(UIntArray,Object[],Function2)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "zip", "(UIntArray,UIntArray)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "zip", "(UIntArray,UIntArray,Function2)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "zip", "(ULongArray,Iterable)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "zip", "(ULongArray,Iterable,Function2)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "zip", "(ULongArray,Object[])", "generated"]
+      - ["kotlin.collections", "UArraysKt", "zip", "(ULongArray,Object[],Function2)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "zip", "(ULongArray,ULongArray)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "zip", "(ULongArray,ULongArray,Function2)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "zip", "(UShortArray,Iterable)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "zip", "(UShortArray,Iterable,Function2)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "zip", "(UShortArray,Object[])", "generated"]
+      - ["kotlin.collections", "UArraysKt", "zip", "(UShortArray,Object[],Function2)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "zip", "(UShortArray,UShortArray)", "generated"]
+      - ["kotlin.collections", "UArraysKt", "zip", "(UShortArray,UShortArray,Function2)", "generated"]
+      - ["kotlin.collections", "UCollectionsKt", "sumOfUByte", "(Iterable)", "generated"]
+      - ["kotlin.collections", "UCollectionsKt", "sumOfUInt", "(Iterable)", "generated"]
+      - ["kotlin.collections", "UCollectionsKt", "sumOfULong", "(Iterable)", "generated"]
+      - ["kotlin.collections", "UCollectionsKt", "sumOfUShort", "(Iterable)", "generated"]
+      - ["kotlin.collections", "UCollectionsKt", "toUByteArray", "(Collection)", "generated"]
+      - ["kotlin.collections", "UCollectionsKt", "toUIntArray", "(Collection)", "generated"]
+      - ["kotlin.collections", "UCollectionsKt", "toULongArray", "(Collection)", "generated"]
+      - ["kotlin.collections", "UCollectionsKt", "toUShortArray", "(Collection)", "generated"]
+      - ["kotlin.collections.builders", "SerializedCollection$Companion", "getTagList", "()", "generated"]
+      - ["kotlin.collections.builders", "SerializedCollection$Companion", "getTagSet", "()", "generated"]
+      - ["kotlin.comparisons", "ComparisonsKt", "compareBy", "()", "generated"]
+      - ["kotlin.comparisons", "ComparisonsKt", "compareBy", "(Comparator,Function1)", "generated"]
+      - ["kotlin.comparisons", "ComparisonsKt", "compareBy", "(Function1)", "generated"]
+      - ["kotlin.comparisons", "ComparisonsKt", "compareByDescending", "(Comparator,Function1)", "generated"]
+      - ["kotlin.comparisons", "ComparisonsKt", "compareByDescending", "(Function1)", "generated"]
+      - ["kotlin.comparisons", "ComparisonsKt", "compareValues", "(Comparable,Comparable)", "generated"]
+      - ["kotlin.comparisons", "ComparisonsKt", "compareValuesBy", "(Object,Object)", "generated"]
+      - ["kotlin.comparisons", "ComparisonsKt", "compareValuesBy", "(Object,Object,Comparator,Function1)", "generated"]
+      - ["kotlin.comparisons", "ComparisonsKt", "compareValuesBy", "(Object,Object,Function1)", "generated"]
+      - ["kotlin.comparisons", "ComparisonsKt", "maxOf", "(byte,byte)", "generated"]
+      - ["kotlin.comparisons", "ComparisonsKt", "maxOf", "(byte,byte,byte)", "generated"]
+      - ["kotlin.comparisons", "ComparisonsKt", "maxOf", "(byte,byte[])", "generated"]
+      - ["kotlin.comparisons", "ComparisonsKt", "maxOf", "(double,double)", "generated"]
+      - ["kotlin.comparisons", "ComparisonsKt", "maxOf", "(double,double,double)", "generated"]
+      - ["kotlin.comparisons", "ComparisonsKt", "maxOf", "(double,double[])", "generated"]
+      - ["kotlin.comparisons", "ComparisonsKt", "maxOf", "(float,float)", "generated"]
+      - ["kotlin.comparisons", "ComparisonsKt", "maxOf", "(float,float,float)", "generated"]
+      - ["kotlin.comparisons", "ComparisonsKt", "maxOf", "(float,float[])", "generated"]
+      - ["kotlin.comparisons", "ComparisonsKt", "maxOf", "(int,int)", "generated"]
+      - ["kotlin.comparisons", "ComparisonsKt", "maxOf", "(int,int,int)", "generated"]
+      - ["kotlin.comparisons", "ComparisonsKt", "maxOf", "(int,int[])", "generated"]
+      - ["kotlin.comparisons", "ComparisonsKt", "maxOf", "(long,long)", "generated"]
+      - ["kotlin.comparisons", "ComparisonsKt", "maxOf", "(long,long,long)", "generated"]
+      - ["kotlin.comparisons", "ComparisonsKt", "maxOf", "(long,long[])", "generated"]
+      - ["kotlin.comparisons", "ComparisonsKt", "maxOf", "(short,short)", "generated"]
+      - ["kotlin.comparisons", "ComparisonsKt", "maxOf", "(short,short,short)", "generated"]
+      - ["kotlin.comparisons", "ComparisonsKt", "maxOf", "(short,short[])", "generated"]
+      - ["kotlin.comparisons", "ComparisonsKt", "minOf", "(byte,byte)", "generated"]
+      - ["kotlin.comparisons", "ComparisonsKt", "minOf", "(byte,byte,byte)", "generated"]
+      - ["kotlin.comparisons", "ComparisonsKt", "minOf", "(byte,byte[])", "generated"]
+      - ["kotlin.comparisons", "ComparisonsKt", "minOf", "(double,double)", "generated"]
+      - ["kotlin.comparisons", "ComparisonsKt", "minOf", "(double,double,double)", "generated"]
+      - ["kotlin.comparisons", "ComparisonsKt", "minOf", "(double,double[])", "generated"]
+      - ["kotlin.comparisons", "ComparisonsKt", "minOf", "(float,float)", "generated"]
+      - ["kotlin.comparisons", "ComparisonsKt", "minOf", "(float,float,float)", "generated"]
+      - ["kotlin.comparisons", "ComparisonsKt", "minOf", "(float,float[])", "generated"]
+      - ["kotlin.comparisons", "ComparisonsKt", "minOf", "(int,int)", "generated"]
+      - ["kotlin.comparisons", "ComparisonsKt", "minOf", "(int,int,int)", "generated"]
+      - ["kotlin.comparisons", "ComparisonsKt", "minOf", "(int,int[])", "generated"]
+      - ["kotlin.comparisons", "ComparisonsKt", "minOf", "(long,long)", "generated"]
+      - ["kotlin.comparisons", "ComparisonsKt", "minOf", "(long,long,long)", "generated"]
+      - ["kotlin.comparisons", "ComparisonsKt", "minOf", "(long,long[])", "generated"]
+      - ["kotlin.comparisons", "ComparisonsKt", "minOf", "(short,short)", "generated"]
+      - ["kotlin.comparisons", "ComparisonsKt", "minOf", "(short,short,short)", "generated"]
+      - ["kotlin.comparisons", "ComparisonsKt", "minOf", "(short,short[])", "generated"]
+      - ["kotlin.comparisons", "ComparisonsKt", "naturalOrder", "()", "generated"]
+      - ["kotlin.comparisons", "ComparisonsKt", "nullsFirst", "()", "generated"]
+      - ["kotlin.comparisons", "ComparisonsKt", "nullsFirst", "(Comparator)", "generated"]
+      - ["kotlin.comparisons", "ComparisonsKt", "nullsLast", "()", "generated"]
+      - ["kotlin.comparisons", "ComparisonsKt", "nullsLast", "(Comparator)", "generated"]
+      - ["kotlin.comparisons", "ComparisonsKt", "reverseOrder", "()", "generated"]
+      - ["kotlin.comparisons", "ComparisonsKt", "then", "(Comparator,Comparator)", "generated"]
+      - ["kotlin.comparisons", "ComparisonsKt", "thenBy", "(Comparator,Comparator,Function1)", "generated"]
+      - ["kotlin.comparisons", "ComparisonsKt", "thenBy", "(Comparator,Function1)", "generated"]
+      - ["kotlin.comparisons", "ComparisonsKt", "thenByDescending", "(Comparator,Comparator,Function1)", "generated"]
+      - ["kotlin.comparisons", "ComparisonsKt", "thenByDescending", "(Comparator,Function1)", "generated"]
+      - ["kotlin.comparisons", "ComparisonsKt", "thenComparator", "(Comparator,Function2)", "generated"]
+      - ["kotlin.comparisons", "ComparisonsKt", "thenDescending", "(Comparator,Comparator)", "generated"]
+      - ["kotlin.comparisons", "UComparisonsKt", "maxOf", "(byte,UByteArray)", "generated"]
+      - ["kotlin.comparisons", "UComparisonsKt", "maxOf", "(byte,byte)", "generated"]
+      - ["kotlin.comparisons", "UComparisonsKt", "maxOf", "(byte,byte,byte)", "generated"]
+      - ["kotlin.comparisons", "UComparisonsKt", "maxOf", "(int,UIntArray)", "generated"]
+      - ["kotlin.comparisons", "UComparisonsKt", "maxOf", "(int,int)", "generated"]
+      - ["kotlin.comparisons", "UComparisonsKt", "maxOf", "(int,int,int)", "generated"]
+      - ["kotlin.comparisons", "UComparisonsKt", "maxOf", "(long,ULongArray)", "generated"]
+      - ["kotlin.comparisons", "UComparisonsKt", "maxOf", "(long,long)", "generated"]
+      - ["kotlin.comparisons", "UComparisonsKt", "maxOf", "(long,long,long)", "generated"]
+      - ["kotlin.comparisons", "UComparisonsKt", "maxOf", "(short,UShortArray)", "generated"]
+      - ["kotlin.comparisons", "UComparisonsKt", "maxOf", "(short,short)", "generated"]
+      - ["kotlin.comparisons", "UComparisonsKt", "maxOf", "(short,short,short)", "generated"]
+      - ["kotlin.comparisons", "UComparisonsKt", "minOf", "(byte,UByteArray)", "generated"]
+      - ["kotlin.comparisons", "UComparisonsKt", "minOf", "(byte,byte)", "generated"]
+      - ["kotlin.comparisons", "UComparisonsKt", "minOf", "(byte,byte,byte)", "generated"]
+      - ["kotlin.comparisons", "UComparisonsKt", "minOf", "(int,UIntArray)", "generated"]
+      - ["kotlin.comparisons", "UComparisonsKt", "minOf", "(int,int)", "generated"]
+      - ["kotlin.comparisons", "UComparisonsKt", "minOf", "(int,int,int)", "generated"]
+      - ["kotlin.comparisons", "UComparisonsKt", "minOf", "(long,ULongArray)", "generated"]
+      - ["kotlin.comparisons", "UComparisonsKt", "minOf", "(long,long)", "generated"]
+      - ["kotlin.comparisons", "UComparisonsKt", "minOf", "(long,long,long)", "generated"]
+      - ["kotlin.comparisons", "UComparisonsKt", "minOf", "(short,UShortArray)", "generated"]
+      - ["kotlin.comparisons", "UComparisonsKt", "minOf", "(short,short)", "generated"]
+      - ["kotlin.comparisons", "UComparisonsKt", "minOf", "(short,short,short)", "generated"]
+      - ["kotlin.concurrent", "LocksKt", "read", "(ReentrantReadWriteLock,Function0)", "generated"]
+      - ["kotlin.concurrent", "LocksKt", "withLock", "(Lock,Function0)", "generated"]
+      - ["kotlin.concurrent", "LocksKt", "write", "(ReentrantReadWriteLock,Function0)", "generated"]
+      - ["kotlin.concurrent", "ThreadsKt", "getOrSet", "(ThreadLocal,Function0)", "generated"]
+      - ["kotlin.concurrent", "ThreadsKt", "thread", "(boolean,boolean,ClassLoader,String,int,Function0)", "generated"]
+      - ["kotlin.concurrent", "TimersKt", "fixedRateTimer", "(String,boolean,Date,long,Function1)", "generated"]
+      - ["kotlin.concurrent", "TimersKt", "fixedRateTimer", "(String,boolean,long,long,Function1)", "generated"]
+      - ["kotlin.concurrent", "TimersKt", "schedule", "(Timer,Date,Function1)", "generated"]
+      - ["kotlin.concurrent", "TimersKt", "schedule", "(Timer,Date,long,Function1)", "generated"]
+      - ["kotlin.concurrent", "TimersKt", "schedule", "(Timer,long,Function1)", "generated"]
+      - ["kotlin.concurrent", "TimersKt", "schedule", "(Timer,long,long,Function1)", "generated"]
+      - ["kotlin.concurrent", "TimersKt", "scheduleAtFixedRate", "(Timer,Date,long,Function1)", "generated"]
+      - ["kotlin.concurrent", "TimersKt", "scheduleAtFixedRate", "(Timer,long,long,Function1)", "generated"]
+      - ["kotlin.concurrent", "TimersKt", "timer", "(String,boolean,Date,long,Function1)", "generated"]
+      - ["kotlin.concurrent", "TimersKt", "timer", "(String,boolean,long,long,Function1)", "generated"]
+      - ["kotlin.concurrent", "TimersKt", "timerTask", "(Function1)", "generated"]
+      - ["kotlin.contracts", "ContractBuilder", "callsInPlace", "(Function,InvocationKind)", "generated"]
+      - ["kotlin.contracts", "ContractBuilder", "returns", "()", "generated"]
+      - ["kotlin.contracts", "ContractBuilder", "returns", "(Object)", "generated"]
+      - ["kotlin.contracts", "ContractBuilder", "returnsNotNull", "()", "generated"]
+      - ["kotlin.contracts", "ContractBuilderKt", "contract", "(Function1)", "generated"]
+      - ["kotlin.contracts", "ExperimentalContracts", "ExperimentalContracts", "()", "generated"]
+      - ["kotlin.contracts", "InvocationKind", "valueOf", "(String)", "generated"]
+      - ["kotlin.contracts", "InvocationKind", "values", "()", "generated"]
+      - ["kotlin.contracts", "SimpleEffect", "implies", "(boolean)", "generated"]
+      - ["kotlin.coroutines", "Continuation", "getContext", "()", "generated"]
+      - ["kotlin.coroutines", "Continuation", "resumeWith", "(Result)", "generated"]
+      - ["kotlin.coroutines", "ContinuationInterceptor", "interceptContinuation", "(Continuation)", "generated"]
+      - ["kotlin.coroutines", "ContinuationInterceptor", "releaseInterceptedContinuation", "(Continuation)", "generated"]
+      - ["kotlin.coroutines", "ContinuationKt", "Continuation", "(CoroutineContext,Function1)", "generated"]
+      - ["kotlin.coroutines", "ContinuationKt", "createCoroutine", "(SuspendFunction0,Continuation)", "generated"]
+      - ["kotlin.coroutines", "ContinuationKt", "createCoroutine", "(SuspendFunction1,Object,Continuation)", "generated"]
+      - ["kotlin.coroutines", "ContinuationKt", "getCoroutineContext", "()", "generated"]
+      - ["kotlin.coroutines", "ContinuationKt", "resume", "(Continuation,Object)", "generated"]
+      - ["kotlin.coroutines", "ContinuationKt", "resumeWithException", "(Continuation,Throwable)", "generated"]
+      - ["kotlin.coroutines", "ContinuationKt", "startCoroutine", "(SuspendFunction0,Continuation)", "generated"]
+      - ["kotlin.coroutines", "ContinuationKt", "startCoroutine", "(SuspendFunction1,Object,Continuation)", "generated"]
+      - ["kotlin.coroutines", "ContinuationKt", "suspendCoroutine", "(Function1)", "generated"]
+      - ["kotlin.coroutines", "CoroutineContext", "fold", "(Object,Function2)", "generated"]
+      - ["kotlin.coroutines", "CoroutineContext", "get", "(Key)", "generated"]
+      - ["kotlin.coroutines", "CoroutineContext", "minusKey", "(Key)", "generated"]
+      - ["kotlin.coroutines", "CoroutineContext$Element", "getKey", "()", "generated"]
+      - ["kotlin.coroutines", "EmptyCoroutineContext", "hashCode", "()", "generated"]
+      - ["kotlin.coroutines", "EmptyCoroutineContext", "toString", "()", "generated"]
+      - ["kotlin.coroutines", "RestrictsSuspension", "RestrictsSuspension", "()", "generated"]
+      - ["kotlin.coroutines.cancellation", "CancellationException", "CancellationException", "()", "generated"]
+      - ["kotlin.coroutines.cancellation", "CancellationException", "CancellationException", "(String)", "generated"]
+      - ["kotlin.coroutines.cancellation", "CancellationExceptionHKt", "CancellationException", "(String,Throwable)", "generated"]
+      - ["kotlin.coroutines.cancellation", "CancellationExceptionHKt", "CancellationException", "(Throwable)", "generated"]
+      - ["kotlin.coroutines.cancellation", "CancellationExceptionKt", "CancellationException", "(String,Throwable)", "generated"]
+      - ["kotlin.coroutines.cancellation", "CancellationExceptionKt", "CancellationException", "(Throwable)", "generated"]
+      - ["kotlin.coroutines.intrinsics", "CoroutinesIntrinsicsHKt", "createCoroutineUnintercepted", "(SuspendFunction0,Continuation)", "generated"]
+      - ["kotlin.coroutines.intrinsics", "CoroutinesIntrinsicsHKt", "createCoroutineUnintercepted", "(SuspendFunction1,Object,Continuation)", "generated"]
+      - ["kotlin.coroutines.intrinsics", "CoroutinesIntrinsicsHKt", "intercepted", "(Continuation)", "generated"]
+      - ["kotlin.coroutines.intrinsics", "CoroutinesIntrinsicsHKt", "startCoroutineUninterceptedOrReturn", "(SuspendFunction0,Continuation)", "generated"]
+      - ["kotlin.coroutines.intrinsics", "CoroutinesIntrinsicsHKt", "startCoroutineUninterceptedOrReturn", "(SuspendFunction1,Object,Continuation)", "generated"]
+      - ["kotlin.coroutines.intrinsics", "IntrinsicsKt", "createCoroutineUnintercepted", "(SuspendFunction0,Continuation)", "generated"]
+      - ["kotlin.coroutines.intrinsics", "IntrinsicsKt", "createCoroutineUnintercepted", "(SuspendFunction1,Object,Continuation)", "generated"]
+      - ["kotlin.coroutines.intrinsics", "IntrinsicsKt", "getCOROUTINE_SUSPENDED", "()", "generated"]
+      - ["kotlin.coroutines.intrinsics", "IntrinsicsKt", "startCoroutineUninterceptedOrReturn", "(SuspendFunction0,Continuation)", "generated"]
+      - ["kotlin.coroutines.intrinsics", "IntrinsicsKt", "startCoroutineUninterceptedOrReturn", "(SuspendFunction1,Object,Continuation)", "generated"]
+      - ["kotlin.coroutines.intrinsics", "IntrinsicsKt", "suspendCoroutineUninterceptedOrReturn", "(Function1)", "generated"]
+      - ["kotlin.coroutines.jvm.internal", "CoroutineStackFrame", "getCallerFrame", "()", "generated"]
+      - ["kotlin.coroutines.jvm.internal", "CoroutineStackFrame", "getStackTraceElement", "()", "generated"]
+      - ["kotlin.experimental", "BitwiseOperationsKt", "and", "(byte,byte)", "generated"]
+      - ["kotlin.experimental", "BitwiseOperationsKt", "and", "(short,short)", "generated"]
+      - ["kotlin.experimental", "BitwiseOperationsKt", "inv", "(byte)", "generated"]
+      - ["kotlin.experimental", "BitwiseOperationsKt", "inv", "(short)", "generated"]
+      - ["kotlin.experimental", "BitwiseOperationsKt", "or", "(byte,byte)", "generated"]
+      - ["kotlin.experimental", "BitwiseOperationsKt", "or", "(short,short)", "generated"]
+      - ["kotlin.experimental", "BitwiseOperationsKt", "xor", "(byte,byte)", "generated"]
+      - ["kotlin.experimental", "BitwiseOperationsKt", "xor", "(short,short)", "generated"]
+      - ["kotlin.experimental", "ExperimentalTypeInference", "ExperimentalTypeInference", "()", "generated"]
+      - ["kotlin.io", "ByteStreamsKt", "bufferedWriter", "(OutputStream,Charset)", "generated"]
+      - ["kotlin.io", "ByteStreamsKt", "iterator", "(BufferedInputStream)", "generated"]
+      - ["kotlin.io", "ByteStreamsKt", "writer", "(OutputStream,Charset)", "generated"]
+      - ["kotlin.io", "ConsoleKt", "print", "(Object)", "generated"]
+      - ["kotlin.io", "ConsoleKt", "print", "(boolean)", "generated"]
+      - ["kotlin.io", "ConsoleKt", "print", "(byte)", "generated"]
+      - ["kotlin.io", "ConsoleKt", "print", "(char)", "generated"]
+      - ["kotlin.io", "ConsoleKt", "print", "(char[])", "generated"]
+      - ["kotlin.io", "ConsoleKt", "print", "(double)", "generated"]
+      - ["kotlin.io", "ConsoleKt", "print", "(float)", "generated"]
+      - ["kotlin.io", "ConsoleKt", "print", "(int)", "generated"]
+      - ["kotlin.io", "ConsoleKt", "print", "(long)", "generated"]
+      - ["kotlin.io", "ConsoleKt", "print", "(short)", "generated"]
+      - ["kotlin.io", "ConsoleKt", "println", "()", "generated"]
+      - ["kotlin.io", "ConsoleKt", "println", "(Object)", "generated"]
+      - ["kotlin.io", "ConsoleKt", "println", "(boolean)", "generated"]
+      - ["kotlin.io", "ConsoleKt", "println", "(byte)", "generated"]
+      - ["kotlin.io", "ConsoleKt", "println", "(char)", "generated"]
+      - ["kotlin.io", "ConsoleKt", "println", "(char[])", "generated"]
+      - ["kotlin.io", "ConsoleKt", "println", "(double)", "generated"]
+      - ["kotlin.io", "ConsoleKt", "println", "(float)", "generated"]
+      - ["kotlin.io", "ConsoleKt", "println", "(int)", "generated"]
+      - ["kotlin.io", "ConsoleKt", "println", "(long)", "generated"]
+      - ["kotlin.io", "ConsoleKt", "println", "(short)", "generated"]
+      - ["kotlin.io", "ConsoleKt", "readLine", "()", "generated"]
+      - ["kotlin.io", "ConsoleKt", "readln", "()", "generated"]
+      - ["kotlin.io", "ConsoleKt", "readlnOrNull", "()", "generated"]
+      - ["kotlin.io", "ConstantsKt", "getDEFAULT_BUFFER_SIZE", "()", "generated"]
+      - ["kotlin.io", "FileWalkDirection", "valueOf", "(String)", "generated"]
+      - ["kotlin.io", "FileWalkDirection", "values", "()", "generated"]
+      - ["kotlin.io", "FilesKt", "appendBytes", "(File,byte[])", "generated"]
+      - ["kotlin.io", "FilesKt", "appendText", "(File,String,Charset)", "generated"]
+      - ["kotlin.io", "FilesKt", "bufferedReader", "(File,Charset,int)", "generated"]
+      - ["kotlin.io", "FilesKt", "bufferedWriter", "(File,Charset,int)", "generated"]
+      - ["kotlin.io", "FilesKt", "copyRecursively", "(File,File,boolean,Function2)", "generated"]
+      - ["kotlin.io", "FilesKt", "createTempDir", "(String,String,File)", "generated"]
+      - ["kotlin.io", "FilesKt", "createTempFile", "(String,String,File)", "generated"]
+      - ["kotlin.io", "FilesKt", "deleteRecursively", "(File)", "generated"]
+      - ["kotlin.io", "FilesKt", "endsWith", "(File,File)", "generated"]
+      - ["kotlin.io", "FilesKt", "endsWith", "(File,String)", "generated"]
+      - ["kotlin.io", "FilesKt", "forEachBlock", "(File,Function2)", "generated"]
+      - ["kotlin.io", "FilesKt", "forEachBlock", "(File,int,Function2)", "generated"]
+      - ["kotlin.io", "FilesKt", "forEachLine", "(File,Charset,Function1)", "generated"]
+      - ["kotlin.io", "FilesKt", "getExtension", "(File)", "generated"]
+      - ["kotlin.io", "FilesKt", "getInvariantSeparatorsPath", "(File)", "generated"]
+      - ["kotlin.io", "FilesKt", "getNameWithoutExtension", "(File)", "generated"]
+      - ["kotlin.io", "FilesKt", "inputStream", "(File)", "generated"]
+      - ["kotlin.io", "FilesKt", "isRooted", "(File)", "generated"]
+      - ["kotlin.io", "FilesKt", "normalize", "(File)", "generated"]
+      - ["kotlin.io", "FilesKt", "outputStream", "(File)", "generated"]
+      - ["kotlin.io", "FilesKt", "printWriter", "(File,Charset)", "generated"]
+      - ["kotlin.io", "FilesKt", "readBytes", "(File)", "generated"]
+      - ["kotlin.io", "FilesKt", "readLines", "(File,Charset)", "generated"]
+      - ["kotlin.io", "FilesKt", "readText", "(File,Charset)", "generated"]
+      - ["kotlin.io", "FilesKt", "reader", "(File,Charset)", "generated"]
+      - ["kotlin.io", "FilesKt", "relativeTo", "(File,File)", "generated"]
+      - ["kotlin.io", "FilesKt", "relativeToOrNull", "(File,File)", "generated"]
+      - ["kotlin.io", "FilesKt", "startsWith", "(File,File)", "generated"]
+      - ["kotlin.io", "FilesKt", "startsWith", "(File,String)", "generated"]
+      - ["kotlin.io", "FilesKt", "toRelativeString", "(File,File)", "generated"]
+      - ["kotlin.io", "FilesKt", "useLines", "(File,Charset,Function1)", "generated"]
+      - ["kotlin.io", "FilesKt", "writeBytes", "(File,byte[])", "generated"]
+      - ["kotlin.io", "FilesKt", "writeText", "(File,String,Charset)", "generated"]
+      - ["kotlin.io", "FilesKt", "writer", "(File,Charset)", "generated"]
+      - ["kotlin.io", "IoHKt", "print", "(Object)", "generated"]
+      - ["kotlin.io", "IoHKt", "println", "()", "generated"]
+      - ["kotlin.io", "IoHKt", "println", "(Object)", "generated"]
+      - ["kotlin.io", "IoHKt", "readln", "()", "generated"]
+      - ["kotlin.io", "IoHKt", "readlnOrNull", "()", "generated"]
+      - ["kotlin.io", "OnErrorAction", "valueOf", "(String)", "generated"]
+      - ["kotlin.io", "OnErrorAction", "values", "()", "generated"]
+      - ["kotlin.io", "TextStreamsKt", "readBytes", "(URL)", "generated"]
+      - ["kotlin.io", "TextStreamsKt", "readLines", "(Reader)", "generated"]
+      - ["kotlin.io", "TextStreamsKt", "readText", "(URL,Charset)", "generated"]
+      - ["kotlin.js", "ExperimentalJsExport", "ExperimentalJsExport", "()", "generated"]
+      - ["kotlin.js", "JsExport", "JsExport", "()", "generated"]
+      - ["kotlin.js", "JsName", "JsName", "(String)", "generated"]
+      - ["kotlin.js", "JsName", "name", "()", "generated"]
+      - ["kotlin.jvm", "JvmClassMappingKt", "getAnnotationClass", "(Annotation)", "generated"]
+      - ["kotlin.jvm", "JvmClassMappingKt", "getDeclaringJavaClass", "(Enum)", "generated"]
+      - ["kotlin.jvm", "JvmClassMappingKt", "getJavaClass", "(KClass)", "generated"]
+      - ["kotlin.jvm", "JvmClassMappingKt", "getJavaClass", "(Object)", "generated"]
+      - ["kotlin.jvm", "JvmClassMappingKt", "getJavaObjectType", "(KClass)", "generated"]
+      - ["kotlin.jvm", "JvmClassMappingKt", "getJavaPrimitiveType", "(KClass)", "generated"]
+      - ["kotlin.jvm", "JvmClassMappingKt", "getKotlinClass", "(Class)", "generated"]
+      - ["kotlin.jvm", "JvmClassMappingKt", "getRuntimeClassOfKClassInstance", "(KClass)", "generated"]
+      - ["kotlin.jvm", "JvmClassMappingKt", "isArrayOf", "(Object[])", "generated"]
+      - ["kotlin.jvm", "JvmDefault", "JvmDefault", "()", "generated"]
+      - ["kotlin.jvm", "JvmDefaultWithCompatibility", "JvmDefaultWithCompatibility", "()", "generated"]
+      - ["kotlin.jvm", "JvmDefaultWithoutCompatibility", "JvmDefaultWithoutCompatibility", "()", "generated"]
+      - ["kotlin.jvm", "JvmField", "JvmField", "()", "generated"]
+      - ["kotlin.jvm", "JvmInline", "JvmInline", "()", "generated"]
+      - ["kotlin.jvm", "JvmMultifileClass", "JvmMultifileClass", "()", "generated"]
+      - ["kotlin.jvm", "JvmName", "JvmName", "(String)", "generated"]
+      - ["kotlin.jvm", "JvmName", "name", "()", "generated"]
+      - ["kotlin.jvm", "JvmOverloads", "JvmOverloads", "()", "generated"]
+      - ["kotlin.jvm", "JvmRecord", "JvmRecord", "()", "generated"]
+      - ["kotlin.jvm", "JvmStatic", "JvmStatic", "()", "generated"]
+      - ["kotlin.jvm", "JvmSuppressWildcards", "JvmSuppressWildcards", "(boolean)", "generated"]
+      - ["kotlin.jvm", "JvmSuppressWildcards", "suppress", "()", "generated"]
+      - ["kotlin.jvm", "JvmSynthetic", "JvmSynthetic", "()", "generated"]
+      - ["kotlin.jvm", "JvmWildcard", "JvmWildcard", "()", "generated"]
+      - ["kotlin.jvm", "KotlinReflectionNotSupportedError", "KotlinReflectionNotSupportedError", "()", "generated"]
+      - ["kotlin.jvm", "KotlinReflectionNotSupportedError", "KotlinReflectionNotSupportedError", "(String)", "generated"]
+      - ["kotlin.jvm", "KotlinReflectionNotSupportedError", "KotlinReflectionNotSupportedError", "(String,Throwable)", "generated"]
+      - ["kotlin.jvm", "KotlinReflectionNotSupportedError", "KotlinReflectionNotSupportedError", "(Throwable)", "generated"]
+      - ["kotlin.jvm", "PurelyImplements", "PurelyImplements", "(String)", "generated"]
+      - ["kotlin.jvm", "PurelyImplements", "value", "()", "generated"]
+      - ["kotlin.jvm", "Strictfp", "Strictfp", "()", "generated"]
+      - ["kotlin.jvm", "Synchronized", "Synchronized", "()", "generated"]
+      - ["kotlin.jvm", "Throws", "Throws", "(KClass[])", "generated"]
+      - ["kotlin.jvm", "Throws", "exceptionClasses", "()", "generated"]
+      - ["kotlin.jvm", "Transient", "Transient", "()", "generated"]
+      - ["kotlin.jvm", "Volatile", "Volatile", "()", "generated"]
+      - ["kotlin.jvm.functions", "Function0", "invoke", "()", "generated"]
+      - ["kotlin.jvm.functions", "Function1", "invoke", "(Object)", "generated"]
+      - ["kotlin.jvm.functions", "Function10", "invoke", "(Object,Object,Object,Object,Object,Object,Object,Object,Object,Object)", "generated"]
+      - ["kotlin.jvm.functions", "Function11", "invoke", "(Object,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object)", "generated"]
+      - ["kotlin.jvm.functions", "Function12", "invoke", "(Object,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object)", "generated"]
+      - ["kotlin.jvm.functions", "Function13", "invoke", "(Object,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object)", "generated"]
+      - ["kotlin.jvm.functions", "Function14", "invoke", "(Object,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object)", "generated"]
+      - ["kotlin.jvm.functions", "Function15", "invoke", "(Object,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object)", "generated"]
+      - ["kotlin.jvm.functions", "Function16", "invoke", "(Object,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object)", "generated"]
+      - ["kotlin.jvm.functions", "Function17", "invoke", "(Object,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object)", "generated"]
+      - ["kotlin.jvm.functions", "Function18", "invoke", "(Object,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object)", "generated"]
+      - ["kotlin.jvm.functions", "Function19", "invoke", "(Object,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object)", "generated"]
+      - ["kotlin.jvm.functions", "Function2", "invoke", "(Object,Object)", "generated"]
+      - ["kotlin.jvm.functions", "Function20", "invoke", "(Object,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object)", "generated"]
+      - ["kotlin.jvm.functions", "Function21", "invoke", "(Object,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object)", "generated"]
+      - ["kotlin.jvm.functions", "Function22", "invoke", "(Object,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object)", "generated"]
+      - ["kotlin.jvm.functions", "Function3", "invoke", "(Object,Object,Object)", "generated"]
+      - ["kotlin.jvm.functions", "Function4", "invoke", "(Object,Object,Object,Object)", "generated"]
+      - ["kotlin.jvm.functions", "Function5", "invoke", "(Object,Object,Object,Object,Object)", "generated"]
+      - ["kotlin.jvm.functions", "Function6", "invoke", "(Object,Object,Object,Object,Object,Object)", "generated"]
+      - ["kotlin.jvm.functions", "Function7", "invoke", "(Object,Object,Object,Object,Object,Object,Object)", "generated"]
+      - ["kotlin.jvm.functions", "Function8", "invoke", "(Object,Object,Object,Object,Object,Object,Object,Object)", "generated"]
+      - ["kotlin.jvm.functions", "Function9", "invoke", "(Object,Object,Object,Object,Object,Object,Object,Object,Object)", "generated"]
+      - ["kotlin.jvm.functions", "FunctionN", "invoke", "(Object[])", "generated"]
+      - ["kotlin.jvm.internal", "AdaptedFunctionReference", "equals", "(Object)", "generated"]
+      - ["kotlin.jvm.internal", "AdaptedFunctionReference", "getOwner", "()", "generated"]
+      - ["kotlin.jvm.internal", "AdaptedFunctionReference", "hashCode", "()", "generated"]
+      - ["kotlin.jvm.internal", "AdaptedFunctionReference", "toString", "()", "generated"]
+      - ["kotlin.jvm.internal", "ArrayIteratorsKt", "iterator", "(boolean[])", "generated"]
+      - ["kotlin.jvm.internal", "ArrayIteratorsKt", "iterator", "(double[])", "generated"]
+      - ["kotlin.jvm.internal", "ArrayIteratorsKt", "iterator", "(float[])", "generated"]
+      - ["kotlin.jvm.internal", "ArrayIteratorsKt", "iterator", "(int[])", "generated"]
+      - ["kotlin.jvm.internal", "ArrayIteratorsKt", "iterator", "(long[])", "generated"]
+      - ["kotlin.jvm.internal", "ArrayIteratorsKt", "iterator", "(short[])", "generated"]
+      - ["kotlin.jvm.internal", "BooleanSpreadBuilder", "BooleanSpreadBuilder", "(int)", "generated"]
+      - ["kotlin.jvm.internal", "BooleanSpreadBuilder", "add", "(boolean)", "generated"]
+      - ["kotlin.jvm.internal", "BooleanSpreadBuilder", "toArray", "()", "generated"]
+      - ["kotlin.jvm.internal", "ByteSpreadBuilder", "ByteSpreadBuilder", "(int)", "generated"]
+      - ["kotlin.jvm.internal", "ByteSpreadBuilder", "add", "(byte)", "generated"]
+      - ["kotlin.jvm.internal", "CallableReference", "CallableReference", "()", "generated"]
+      - ["kotlin.jvm.internal", "CallableReference", "getOwner", "()", "generated"]
+      - ["kotlin.jvm.internal", "CharSpreadBuilder", "CharSpreadBuilder", "(int)", "generated"]
+      - ["kotlin.jvm.internal", "CharSpreadBuilder", "add", "(char)", "generated"]
+      - ["kotlin.jvm.internal", "ClassBasedDeclarationContainer", "getJClass", "()", "generated"]
+      - ["kotlin.jvm.internal", "ClassReference", "ClassReference", "(Class)", "generated"]
+      - ["kotlin.jvm.internal", "ClassReference", "equals", "(Object)", "generated"]
+      - ["kotlin.jvm.internal", "ClassReference", "hashCode", "()", "generated"]
+      - ["kotlin.jvm.internal", "ClassReference", "toString", "()", "generated"]
+      - ["kotlin.jvm.internal", "ClassReference$Companion", "isInstance", "(Object,Class)", "generated"]
+      - ["kotlin.jvm.internal", "DoubleSpreadBuilder", "DoubleSpreadBuilder", "(int)", "generated"]
+      - ["kotlin.jvm.internal", "DoubleSpreadBuilder", "add", "(double)", "generated"]
+      - ["kotlin.jvm.internal", "DoubleSpreadBuilder", "toArray", "()", "generated"]
+      - ["kotlin.jvm.internal", "FloatSpreadBuilder", "FloatSpreadBuilder", "(int)", "generated"]
+      - ["kotlin.jvm.internal", "FloatSpreadBuilder", "add", "(float)", "generated"]
+      - ["kotlin.jvm.internal", "FloatSpreadBuilder", "toArray", "()", "generated"]
+      - ["kotlin.jvm.internal", "FunInterfaceConstructorReference", "FunInterfaceConstructorReference", "(Class)", "generated"]
+      - ["kotlin.jvm.internal", "FunInterfaceConstructorReference", "equals", "(Object)", "generated"]
+      - ["kotlin.jvm.internal", "FunInterfaceConstructorReference", "hashCode", "()", "generated"]
+      - ["kotlin.jvm.internal", "FunInterfaceConstructorReference", "toString", "()", "generated"]
+      - ["kotlin.jvm.internal", "FunctionAdapter", "getFunctionDelegate", "()", "generated"]
+      - ["kotlin.jvm.internal", "FunctionBase", "getArity", "()", "generated"]
+      - ["kotlin.jvm.internal", "FunctionImpl", "FunctionImpl", "()", "generated"]
+      - ["kotlin.jvm.internal", "FunctionImpl", "getArity", "()", "generated"]
+      - ["kotlin.jvm.internal", "FunctionImpl", "invokeVararg", "(Object[])", "generated"]
+      - ["kotlin.jvm.internal", "FunctionReference", "FunctionReference", "(int)", "generated"]
+      - ["kotlin.jvm.internal", "FunctionReference", "equals", "(Object)", "generated"]
+      - ["kotlin.jvm.internal", "FunctionReference", "hashCode", "()", "generated"]
+      - ["kotlin.jvm.internal", "InlineMarker", "InlineMarker", "()", "generated"]
+      - ["kotlin.jvm.internal", "InlineMarker", "afterInlineCall", "()", "generated"]
+      - ["kotlin.jvm.internal", "InlineMarker", "beforeInlineCall", "()", "generated"]
+      - ["kotlin.jvm.internal", "InlineMarker", "finallyEnd", "(int)", "generated"]
+      - ["kotlin.jvm.internal", "InlineMarker", "finallyStart", "(int)", "generated"]
+      - ["kotlin.jvm.internal", "InlineMarker", "mark", "(String)", "generated"]
+      - ["kotlin.jvm.internal", "InlineMarker", "mark", "(int)", "generated"]
+      - ["kotlin.jvm.internal", "IntSpreadBuilder", "IntSpreadBuilder", "(int)", "generated"]
+      - ["kotlin.jvm.internal", "IntSpreadBuilder", "add", "(int)", "generated"]
+      - ["kotlin.jvm.internal", "IntSpreadBuilder", "toArray", "()", "generated"]
+      - ["kotlin.jvm.internal", "Intrinsics", "areEqual", "(Double,Double)", "generated"]
+      - ["kotlin.jvm.internal", "Intrinsics", "areEqual", "(Double,double)", "generated"]
+      - ["kotlin.jvm.internal", "Intrinsics", "areEqual", "(Float,Float)", "generated"]
+      - ["kotlin.jvm.internal", "Intrinsics", "areEqual", "(Float,float)", "generated"]
+      - ["kotlin.jvm.internal", "Intrinsics", "areEqual", "(Object,Object)", "generated"]
+      - ["kotlin.jvm.internal", "Intrinsics", "areEqual", "(double,Double)", "generated"]
+      - ["kotlin.jvm.internal", "Intrinsics", "areEqual", "(float,Float)", "generated"]
+      - ["kotlin.jvm.internal", "Intrinsics", "checkExpressionValueIsNotNull", "(Object,String)", "generated"]
+      - ["kotlin.jvm.internal", "Intrinsics", "checkFieldIsNotNull", "(Object,String)", "generated"]
+      - ["kotlin.jvm.internal", "Intrinsics", "checkFieldIsNotNull", "(Object,String,String)", "generated"]
+      - ["kotlin.jvm.internal", "Intrinsics", "checkHasClass", "(String)", "generated"]
+      - ["kotlin.jvm.internal", "Intrinsics", "checkHasClass", "(String,String)", "generated"]
+      - ["kotlin.jvm.internal", "Intrinsics", "checkNotNull", "(Object)", "generated"]
+      - ["kotlin.jvm.internal", "Intrinsics", "checkNotNull", "(Object,String)", "generated"]
+      - ["kotlin.jvm.internal", "Intrinsics", "checkNotNullExpressionValue", "(Object,String)", "generated"]
+      - ["kotlin.jvm.internal", "Intrinsics", "checkNotNullParameter", "(Object,String)", "generated"]
+      - ["kotlin.jvm.internal", "Intrinsics", "checkParameterIsNotNull", "(Object,String)", "generated"]
+      - ["kotlin.jvm.internal", "Intrinsics", "checkReturnedValueIsNotNull", "(Object,String)", "generated"]
+      - ["kotlin.jvm.internal", "Intrinsics", "checkReturnedValueIsNotNull", "(Object,String,String)", "generated"]
+      - ["kotlin.jvm.internal", "Intrinsics", "compare", "(int,int)", "generated"]
+      - ["kotlin.jvm.internal", "Intrinsics", "compare", "(long,long)", "generated"]
+      - ["kotlin.jvm.internal", "Intrinsics", "needClassReification", "()", "generated"]
+      - ["kotlin.jvm.internal", "Intrinsics", "needClassReification", "(String)", "generated"]
+      - ["kotlin.jvm.internal", "Intrinsics", "reifiedOperationMarker", "(int,String)", "generated"]
+      - ["kotlin.jvm.internal", "Intrinsics", "reifiedOperationMarker", "(int,String,String)", "generated"]
+      - ["kotlin.jvm.internal", "Intrinsics", "throwAssert", "()", "generated"]
+      - ["kotlin.jvm.internal", "Intrinsics", "throwAssert", "(String)", "generated"]
+      - ["kotlin.jvm.internal", "Intrinsics", "throwIllegalArgument", "()", "generated"]
+      - ["kotlin.jvm.internal", "Intrinsics", "throwIllegalArgument", "(String)", "generated"]
+      - ["kotlin.jvm.internal", "Intrinsics", "throwIllegalState", "()", "generated"]
+      - ["kotlin.jvm.internal", "Intrinsics", "throwIllegalState", "(String)", "generated"]
+      - ["kotlin.jvm.internal", "Intrinsics", "throwJavaNpe", "()", "generated"]
+      - ["kotlin.jvm.internal", "Intrinsics", "throwJavaNpe", "(String)", "generated"]
+      - ["kotlin.jvm.internal", "Intrinsics", "throwNpe", "()", "generated"]
+      - ["kotlin.jvm.internal", "Intrinsics", "throwNpe", "(String)", "generated"]
+      - ["kotlin.jvm.internal", "Intrinsics", "throwUndefinedForReified", "()", "generated"]
+      - ["kotlin.jvm.internal", "Intrinsics", "throwUndefinedForReified", "(String)", "generated"]
+      - ["kotlin.jvm.internal", "Intrinsics", "throwUninitializedProperty", "(String)", "generated"]
+      - ["kotlin.jvm.internal", "Intrinsics", "throwUninitializedPropertyAccessException", "(String)", "generated"]
+      - ["kotlin.jvm.internal", "KTypeBase", "getJavaType", "()", "generated"]
+      - ["kotlin.jvm.internal", "Lambda", "Lambda", "(int)", "generated"]
+      - ["kotlin.jvm.internal", "Lambda", "toString", "()", "generated"]
+      - ["kotlin.jvm.internal", "LocalVariableReference", "LocalVariableReference", "()", "generated"]
+      - ["kotlin.jvm.internal", "LongSpreadBuilder", "LongSpreadBuilder", "(int)", "generated"]
+      - ["kotlin.jvm.internal", "LongSpreadBuilder", "add", "(long)", "generated"]
+      - ["kotlin.jvm.internal", "LongSpreadBuilder", "toArray", "()", "generated"]
+      - ["kotlin.jvm.internal", "MagicApiIntrinsics", "MagicApiIntrinsics", "()", "generated"]
+      - ["kotlin.jvm.internal", "MagicApiIntrinsics", "anyMagicApiCall", "(Object)", "generated"]
+      - ["kotlin.jvm.internal", "MagicApiIntrinsics", "anyMagicApiCall", "(int)", "generated"]
+      - ["kotlin.jvm.internal", "MagicApiIntrinsics", "anyMagicApiCall", "(int,Object,Object)", "generated"]
+      - ["kotlin.jvm.internal", "MagicApiIntrinsics", "anyMagicApiCall", "(int,Object,Object,Object,Object)", "generated"]
+      - ["kotlin.jvm.internal", "MagicApiIntrinsics", "anyMagicApiCall", "(int,long,Object)", "generated"]
+      - ["kotlin.jvm.internal", "MagicApiIntrinsics", "anyMagicApiCall", "(int,long,long,Object)", "generated"]
+      - ["kotlin.jvm.internal", "MagicApiIntrinsics", "intMagicApiCall", "(Object)", "generated"]
+      - ["kotlin.jvm.internal", "MagicApiIntrinsics", "intMagicApiCall", "(int)", "generated"]
+      - ["kotlin.jvm.internal", "MagicApiIntrinsics", "intMagicApiCall", "(int,Object,Object)", "generated"]
+      - ["kotlin.jvm.internal", "MagicApiIntrinsics", "intMagicApiCall", "(int,Object,Object,Object,Object)", "generated"]
+      - ["kotlin.jvm.internal", "MagicApiIntrinsics", "intMagicApiCall", "(int,long,Object)", "generated"]
+      - ["kotlin.jvm.internal", "MagicApiIntrinsics", "intMagicApiCall", "(int,long,long,Object)", "generated"]
+      - ["kotlin.jvm.internal", "MagicApiIntrinsics", "voidMagicApiCall", "(Object)", "generated"]
+      - ["kotlin.jvm.internal", "MagicApiIntrinsics", "voidMagicApiCall", "(int)", "generated"]
+      - ["kotlin.jvm.internal", "MutableLocalVariableReference", "MutableLocalVariableReference", "()", "generated"]
+      - ["kotlin.jvm.internal", "MutablePropertyReference", "MutablePropertyReference", "()", "generated"]
+      - ["kotlin.jvm.internal", "MutablePropertyReference0", "MutablePropertyReference0", "()", "generated"]
+      - ["kotlin.jvm.internal", "MutablePropertyReference1", "MutablePropertyReference1", "()", "generated"]
+      - ["kotlin.jvm.internal", "MutablePropertyReference2", "MutablePropertyReference2", "()", "generated"]
+      - ["kotlin.jvm.internal", "PackageReference", "equals", "(Object)", "generated"]
+      - ["kotlin.jvm.internal", "PackageReference", "hashCode", "()", "generated"]
+      - ["kotlin.jvm.internal", "PackageReference", "toString", "()", "generated"]
+      - ["kotlin.jvm.internal", "PrimitiveSpreadBuilder", "PrimitiveSpreadBuilder", "(int)", "generated"]
+      - ["kotlin.jvm.internal", "PropertyReference", "PropertyReference", "()", "generated"]
+      - ["kotlin.jvm.internal", "PropertyReference", "equals", "(Object)", "generated"]
+      - ["kotlin.jvm.internal", "PropertyReference", "hashCode", "()", "generated"]
+      - ["kotlin.jvm.internal", "PropertyReference0", "PropertyReference0", "()", "generated"]
+      - ["kotlin.jvm.internal", "PropertyReference1", "PropertyReference1", "()", "generated"]
+      - ["kotlin.jvm.internal", "PropertyReference2", "PropertyReference2", "()", "generated"]
+      - ["kotlin.jvm.internal", "Ref$BooleanRef", "BooleanRef", "()", "generated"]
+      - ["kotlin.jvm.internal", "Ref$BooleanRef", "toString", "()", "generated"]
+      - ["kotlin.jvm.internal", "Ref$ByteRef", "ByteRef", "()", "generated"]
+      - ["kotlin.jvm.internal", "Ref$ByteRef", "toString", "()", "generated"]
+      - ["kotlin.jvm.internal", "Ref$CharRef", "CharRef", "()", "generated"]
+      - ["kotlin.jvm.internal", "Ref$CharRef", "toString", "()", "generated"]
+      - ["kotlin.jvm.internal", "Ref$DoubleRef", "DoubleRef", "()", "generated"]
+      - ["kotlin.jvm.internal", "Ref$DoubleRef", "toString", "()", "generated"]
+      - ["kotlin.jvm.internal", "Ref$FloatRef", "FloatRef", "()", "generated"]
+      - ["kotlin.jvm.internal", "Ref$FloatRef", "toString", "()", "generated"]
+      - ["kotlin.jvm.internal", "Ref$IntRef", "IntRef", "()", "generated"]
+      - ["kotlin.jvm.internal", "Ref$IntRef", "toString", "()", "generated"]
+      - ["kotlin.jvm.internal", "Ref$LongRef", "LongRef", "()", "generated"]
+      - ["kotlin.jvm.internal", "Ref$LongRef", "toString", "()", "generated"]
+      - ["kotlin.jvm.internal", "Ref$ObjectRef", "ObjectRef", "()", "generated"]
+      - ["kotlin.jvm.internal", "Ref$ObjectRef", "toString", "()", "generated"]
+      - ["kotlin.jvm.internal", "Ref$ShortRef", "ShortRef", "()", "generated"]
+      - ["kotlin.jvm.internal", "Ref$ShortRef", "toString", "()", "generated"]
+      - ["kotlin.jvm.internal", "Reflection", "Reflection", "()", "generated"]
+      - ["kotlin.jvm.internal", "Reflection", "createKotlinClass", "(Class)", "generated"]
+      - ["kotlin.jvm.internal", "Reflection", "createKotlinClass", "(Class,String)", "generated"]
+      - ["kotlin.jvm.internal", "Reflection", "getOrCreateKotlinClass", "(Class)", "generated"]
+      - ["kotlin.jvm.internal", "Reflection", "getOrCreateKotlinClass", "(Class,String)", "generated"]
+      - ["kotlin.jvm.internal", "Reflection", "getOrCreateKotlinClasses", "(Class[])", "generated"]
+      - ["kotlin.jvm.internal", "Reflection", "getOrCreateKotlinPackage", "(Class)", "generated"]
+      - ["kotlin.jvm.internal", "Reflection", "nullableTypeOf", "(Class)", "generated"]
+      - ["kotlin.jvm.internal", "Reflection", "nullableTypeOf", "(Class,KTypeProjection[])", "generated"]
+      - ["kotlin.jvm.internal", "Reflection", "renderLambdaToString", "(FunctionBase)", "generated"]
+      - ["kotlin.jvm.internal", "Reflection", "renderLambdaToString", "(Lambda)", "generated"]
+      - ["kotlin.jvm.internal", "Reflection", "setUpperBounds", "(KTypeParameter,KType[])", "generated"]
+      - ["kotlin.jvm.internal", "Reflection", "typeOf", "(Class)", "generated"]
+      - ["kotlin.jvm.internal", "Reflection", "typeOf", "(Class,KTypeProjection[])", "generated"]
+      - ["kotlin.jvm.internal", "ReflectionFactory", "ReflectionFactory", "()", "generated"]
+      - ["kotlin.jvm.internal", "ReflectionFactory", "createKotlinClass", "(Class)", "generated"]
+      - ["kotlin.jvm.internal", "ReflectionFactory", "createKotlinClass", "(Class,String)", "generated"]
+      - ["kotlin.jvm.internal", "ReflectionFactory", "getOrCreateKotlinClass", "(Class)", "generated"]
+      - ["kotlin.jvm.internal", "ReflectionFactory", "getOrCreateKotlinClass", "(Class,String)", "generated"]
+      - ["kotlin.jvm.internal", "ReflectionFactory", "renderLambdaToString", "(FunctionBase)", "generated"]
+      - ["kotlin.jvm.internal", "ReflectionFactory", "renderLambdaToString", "(Lambda)", "generated"]
+      - ["kotlin.jvm.internal", "SerializedIr", "SerializedIr", "(String[])", "generated"]
+      - ["kotlin.jvm.internal", "SerializedIr", "b", "()", "generated"]
+      - ["kotlin.jvm.internal", "ShortSpreadBuilder", "ShortSpreadBuilder", "(int)", "generated"]
+      - ["kotlin.jvm.internal", "ShortSpreadBuilder", "add", "(short)", "generated"]
+      - ["kotlin.jvm.internal", "ShortSpreadBuilder", "toArray", "()", "generated"]
+      - ["kotlin.jvm.internal", "SpreadBuilder", "SpreadBuilder", "(int)", "generated"]
+      - ["kotlin.jvm.internal", "SpreadBuilder", "size", "()", "generated"]
+      - ["kotlin.jvm.internal", "TypeIntrinsics", "TypeIntrinsics", "()", "generated"]
+      - ["kotlin.jvm.internal", "TypeIntrinsics", "getFunctionArity", "(Object)", "generated"]
+      - ["kotlin.jvm.internal", "TypeIntrinsics", "isFunctionOfArity", "(Object,int)", "generated"]
+      - ["kotlin.jvm.internal", "TypeIntrinsics", "isMutableCollection", "(Object)", "generated"]
+      - ["kotlin.jvm.internal", "TypeIntrinsics", "isMutableIterable", "(Object)", "generated"]
+      - ["kotlin.jvm.internal", "TypeIntrinsics", "isMutableIterator", "(Object)", "generated"]
+      - ["kotlin.jvm.internal", "TypeIntrinsics", "isMutableList", "(Object)", "generated"]
+      - ["kotlin.jvm.internal", "TypeIntrinsics", "isMutableListIterator", "(Object)", "generated"]
+      - ["kotlin.jvm.internal", "TypeIntrinsics", "isMutableMap", "(Object)", "generated"]
+      - ["kotlin.jvm.internal", "TypeIntrinsics", "isMutableMapEntry", "(Object)", "generated"]
+      - ["kotlin.jvm.internal", "TypeIntrinsics", "isMutableSet", "(Object)", "generated"]
+      - ["kotlin.jvm.internal", "TypeIntrinsics", "throwCce", "(ClassCastException)", "generated"]
+      - ["kotlin.jvm.internal", "TypeIntrinsics", "throwCce", "(Object,String)", "generated"]
+      - ["kotlin.jvm.internal", "TypeIntrinsics", "throwCce", "(String)", "generated"]
+      - ["kotlin.jvm.internal", "TypeParameterReference", "equals", "(Object)", "generated"]
+      - ["kotlin.jvm.internal", "TypeParameterReference", "hashCode", "()", "generated"]
+      - ["kotlin.jvm.internal", "TypeParameterReference", "toString", "()", "generated"]
+      - ["kotlin.jvm.internal", "TypeParameterReference$Companion", "toString", "(KTypeParameter)", "generated"]
+      - ["kotlin.jvm.internal", "TypeReference", "equals", "(Object)", "generated"]
+      - ["kotlin.jvm.internal", "TypeReference", "hashCode", "()", "generated"]
+      - ["kotlin.math", "MathKt", "IEEErem", "(double,double)", "generated"]
+      - ["kotlin.math", "MathKt", "IEEErem", "(float,float)", "generated"]
+      - ["kotlin.math", "MathKt", "abs", "(double)", "generated"]
+      - ["kotlin.math", "MathKt", "abs", "(float)", "generated"]
+      - ["kotlin.math", "MathKt", "abs", "(int)", "generated"]
+      - ["kotlin.math", "MathKt", "abs", "(long)", "generated"]
+      - ["kotlin.math", "MathKt", "acos", "(double)", "generated"]
+      - ["kotlin.math", "MathKt", "acos", "(float)", "generated"]
+      - ["kotlin.math", "MathKt", "acosh", "(double)", "generated"]
+      - ["kotlin.math", "MathKt", "acosh", "(float)", "generated"]
+      - ["kotlin.math", "MathKt", "asin", "(double)", "generated"]
+      - ["kotlin.math", "MathKt", "asin", "(float)", "generated"]
+      - ["kotlin.math", "MathKt", "asinh", "(double)", "generated"]
+      - ["kotlin.math", "MathKt", "asinh", "(float)", "generated"]
+      - ["kotlin.math", "MathKt", "atan", "(double)", "generated"]
+      - ["kotlin.math", "MathKt", "atan", "(float)", "generated"]
+      - ["kotlin.math", "MathKt", "atan2", "(double,double)", "generated"]
+      - ["kotlin.math", "MathKt", "atan2", "(float,float)", "generated"]
+      - ["kotlin.math", "MathKt", "atanh", "(double)", "generated"]
+      - ["kotlin.math", "MathKt", "atanh", "(float)", "generated"]
+      - ["kotlin.math", "MathKt", "cbrt", "(double)", "generated"]
+      - ["kotlin.math", "MathKt", "cbrt", "(float)", "generated"]
+      - ["kotlin.math", "MathKt", "ceil", "(double)", "generated"]
+      - ["kotlin.math", "MathKt", "ceil", "(float)", "generated"]
+      - ["kotlin.math", "MathKt", "cos", "(double)", "generated"]
+      - ["kotlin.math", "MathKt", "cos", "(float)", "generated"]
+      - ["kotlin.math", "MathKt", "cosh", "(double)", "generated"]
+      - ["kotlin.math", "MathKt", "cosh", "(float)", "generated"]
+      - ["kotlin.math", "MathKt", "exp", "(double)", "generated"]
+      - ["kotlin.math", "MathKt", "exp", "(float)", "generated"]
+      - ["kotlin.math", "MathKt", "expm1", "(double)", "generated"]
+      - ["kotlin.math", "MathKt", "expm1", "(float)", "generated"]
+      - ["kotlin.math", "MathKt", "floor", "(double)", "generated"]
+      - ["kotlin.math", "MathKt", "floor", "(float)", "generated"]
+      - ["kotlin.math", "MathKt", "getAbsoluteValue", "(double)", "generated"]
+      - ["kotlin.math", "MathKt", "getAbsoluteValue", "(float)", "generated"]
+      - ["kotlin.math", "MathKt", "getAbsoluteValue", "(int)", "generated"]
+      - ["kotlin.math", "MathKt", "getAbsoluteValue", "(long)", "generated"]
+      - ["kotlin.math", "MathKt", "getE", "()", "generated"]
+      - ["kotlin.math", "MathKt", "getPI", "()", "generated"]
+      - ["kotlin.math", "MathKt", "getSign", "(double)", "generated"]
+      - ["kotlin.math", "MathKt", "getSign", "(float)", "generated"]
+      - ["kotlin.math", "MathKt", "getSign", "(int)", "generated"]
+      - ["kotlin.math", "MathKt", "getSign", "(long)", "generated"]
+      - ["kotlin.math", "MathKt", "getUlp", "(double)", "generated"]
+      - ["kotlin.math", "MathKt", "getUlp", "(float)", "generated"]
+      - ["kotlin.math", "MathKt", "hypot", "(double,double)", "generated"]
+      - ["kotlin.math", "MathKt", "hypot", "(float,float)", "generated"]
+      - ["kotlin.math", "MathKt", "ln", "(double)", "generated"]
+      - ["kotlin.math", "MathKt", "ln", "(float)", "generated"]
+      - ["kotlin.math", "MathKt", "ln1p", "(double)", "generated"]
+      - ["kotlin.math", "MathKt", "ln1p", "(float)", "generated"]
+      - ["kotlin.math", "MathKt", "log", "(double,double)", "generated"]
+      - ["kotlin.math", "MathKt", "log", "(float,float)", "generated"]
+      - ["kotlin.math", "MathKt", "log10", "(double)", "generated"]
+      - ["kotlin.math", "MathKt", "log10", "(float)", "generated"]
+      - ["kotlin.math", "MathKt", "log2", "(double)", "generated"]
+      - ["kotlin.math", "MathKt", "log2", "(float)", "generated"]
+      - ["kotlin.math", "MathKt", "max", "(double,double)", "generated"]
+      - ["kotlin.math", "MathKt", "max", "(float,float)", "generated"]
+      - ["kotlin.math", "MathKt", "max", "(int,int)", "generated"]
+      - ["kotlin.math", "MathKt", "max", "(long,long)", "generated"]
+      - ["kotlin.math", "MathKt", "min", "(double,double)", "generated"]
+      - ["kotlin.math", "MathKt", "min", "(float,float)", "generated"]
+      - ["kotlin.math", "MathKt", "min", "(int,int)", "generated"]
+      - ["kotlin.math", "MathKt", "min", "(long,long)", "generated"]
+      - ["kotlin.math", "MathKt", "nextDown", "(double)", "generated"]
+      - ["kotlin.math", "MathKt", "nextDown", "(float)", "generated"]
+      - ["kotlin.math", "MathKt", "nextTowards", "(double,double)", "generated"]
+      - ["kotlin.math", "MathKt", "nextTowards", "(float,float)", "generated"]
+      - ["kotlin.math", "MathKt", "nextUp", "(double)", "generated"]
+      - ["kotlin.math", "MathKt", "nextUp", "(float)", "generated"]
+      - ["kotlin.math", "MathKt", "pow", "(double,double)", "generated"]
+      - ["kotlin.math", "MathKt", "pow", "(double,int)", "generated"]
+      - ["kotlin.math", "MathKt", "pow", "(float,float)", "generated"]
+      - ["kotlin.math", "MathKt", "pow", "(float,int)", "generated"]
+      - ["kotlin.math", "MathKt", "round", "(double)", "generated"]
+      - ["kotlin.math", "MathKt", "round", "(float)", "generated"]
+      - ["kotlin.math", "MathKt", "roundToInt", "(double)", "generated"]
+      - ["kotlin.math", "MathKt", "roundToInt", "(float)", "generated"]
+      - ["kotlin.math", "MathKt", "roundToLong", "(double)", "generated"]
+      - ["kotlin.math", "MathKt", "roundToLong", "(float)", "generated"]
+      - ["kotlin.math", "MathKt", "sign", "(double)", "generated"]
+      - ["kotlin.math", "MathKt", "sign", "(float)", "generated"]
+      - ["kotlin.math", "MathKt", "sin", "(double)", "generated"]
+      - ["kotlin.math", "MathKt", "sin", "(float)", "generated"]
+      - ["kotlin.math", "MathKt", "sinh", "(double)", "generated"]
+      - ["kotlin.math", "MathKt", "sinh", "(float)", "generated"]
+      - ["kotlin.math", "MathKt", "sqrt", "(double)", "generated"]
+      - ["kotlin.math", "MathKt", "sqrt", "(float)", "generated"]
+      - ["kotlin.math", "MathKt", "tan", "(double)", "generated"]
+      - ["kotlin.math", "MathKt", "tan", "(float)", "generated"]
+      - ["kotlin.math", "MathKt", "tanh", "(double)", "generated"]
+      - ["kotlin.math", "MathKt", "tanh", "(float)", "generated"]
+      - ["kotlin.math", "MathKt", "truncate", "(double)", "generated"]
+      - ["kotlin.math", "MathKt", "truncate", "(float)", "generated"]
+      - ["kotlin.math", "MathKt", "withSign", "(double,double)", "generated"]
+      - ["kotlin.math", "MathKt", "withSign", "(double,int)", "generated"]
+      - ["kotlin.math", "MathKt", "withSign", "(float,float)", "generated"]
+      - ["kotlin.math", "MathKt", "withSign", "(float,int)", "generated"]
+      - ["kotlin.math", "UMathKt", "max", "(int,int)", "generated"]
+      - ["kotlin.math", "UMathKt", "max", "(long,long)", "generated"]
+      - ["kotlin.math", "UMathKt", "min", "(int,int)", "generated"]
+      - ["kotlin.math", "UMathKt", "min", "(long,long)", "generated"]
+      - ["kotlin.native", "CName", "CName", "(String,String)", "generated"]
+      - ["kotlin.native", "CName", "externName", "()", "generated"]
+      - ["kotlin.native", "CName", "shortName", "()", "generated"]
+      - ["kotlin.native.concurrent", "SharedImmutable", "SharedImmutable", "()", "generated"]
+      - ["kotlin.native.concurrent", "ThreadLocal", "ThreadLocal", "()", "generated"]
+      - ["kotlin.properties", "Delegates", "notNull", "()", "generated"]
+      - ["kotlin.properties", "Delegates", "observable", "(Object,Function3)", "generated"]
+      - ["kotlin.properties", "Delegates", "vetoable", "(Object,Function3)", "generated"]
+      - ["kotlin.properties", "PropertyDelegateProvider", "provideDelegate", "(Object,KProperty)", "generated"]
+      - ["kotlin.properties", "ReadOnlyProperty", "getValue", "(Object,KProperty)", "generated"]
+      - ["kotlin.properties", "ReadWriteProperty", "setValue", "(Object,KProperty,Object)", "generated"]
+      - ["kotlin.random", "Random", "Random", "()", "generated"]
+      - ["kotlin.random", "Random", "nextBits", "(int)", "generated"]
+      - ["kotlin.random", "Random", "nextBoolean", "()", "generated"]
+      - ["kotlin.random", "Random", "nextBytes", "(int)", "generated"]
+      - ["kotlin.random", "Random", "nextDouble", "()", "generated"]
+      - ["kotlin.random", "Random", "nextDouble", "(double)", "generated"]
+      - ["kotlin.random", "Random", "nextDouble", "(double,double)", "generated"]
+      - ["kotlin.random", "Random", "nextFloat", "()", "generated"]
+      - ["kotlin.random", "Random", "nextInt", "()", "generated"]
+      - ["kotlin.random", "Random", "nextInt", "(int)", "generated"]
+      - ["kotlin.random", "Random", "nextInt", "(int,int)", "generated"]
+      - ["kotlin.random", "Random", "nextLong", "()", "generated"]
+      - ["kotlin.random", "Random", "nextLong", "(long)", "generated"]
+      - ["kotlin.random", "Random", "nextLong", "(long,long)", "generated"]
+      - ["kotlin.random", "RandomKt", "Random", "(int)", "generated"]
+      - ["kotlin.random", "RandomKt", "Random", "(long)", "generated"]
+      - ["kotlin.random", "RandomKt", "nextInt", "(Random,IntRange)", "generated"]
+      - ["kotlin.random", "RandomKt", "nextLong", "(Random,LongRange)", "generated"]
+      - ["kotlin.random", "URandomKt", "nextUBytes", "(Random,int)", "generated"]
+      - ["kotlin.random", "URandomKt", "nextUInt", "(Random)", "generated"]
+      - ["kotlin.random", "URandomKt", "nextUInt", "(Random,UIntRange)", "generated"]
+      - ["kotlin.random", "URandomKt", "nextUInt", "(Random,int)", "generated"]
+      - ["kotlin.random", "URandomKt", "nextUInt", "(Random,int,int)", "generated"]
+      - ["kotlin.random", "URandomKt", "nextULong", "(Random)", "generated"]
+      - ["kotlin.random", "URandomKt", "nextULong", "(Random,ULongRange)", "generated"]
+      - ["kotlin.random", "URandomKt", "nextULong", "(Random,long)", "generated"]
+      - ["kotlin.random", "URandomKt", "nextULong", "(Random,long,long)", "generated"]
+      - ["kotlin.ranges", "CharProgression", "equals", "(Object)", "generated"]
+      - ["kotlin.ranges", "CharProgression", "getFirst", "()", "generated"]
+      - ["kotlin.ranges", "CharProgression", "getLast", "()", "generated"]
+      - ["kotlin.ranges", "CharProgression", "getStep", "()", "generated"]
+      - ["kotlin.ranges", "CharProgression", "hashCode", "()", "generated"]
+      - ["kotlin.ranges", "CharProgression", "isEmpty", "()", "generated"]
+      - ["kotlin.ranges", "CharProgression", "toString", "()", "generated"]
+      - ["kotlin.ranges", "CharProgression$Companion", "fromClosedRange", "(char,char,int)", "generated"]
+      - ["kotlin.ranges", "CharRange", "CharRange", "(char,char)", "generated"]
+      - ["kotlin.ranges", "CharRange", "contains", "(char)", "generated"]
+      - ["kotlin.ranges", "CharRange", "equals", "(Object)", "generated"]
+      - ["kotlin.ranges", "CharRange", "hashCode", "()", "generated"]
+      - ["kotlin.ranges", "CharRange", "toString", "()", "generated"]
+      - ["kotlin.ranges", "ClosedFloatingPointRange", "lessThanOrEquals", "(Comparable,Comparable)", "generated"]
+      - ["kotlin.ranges", "ClosedRange", "contains", "(Comparable)", "generated"]
+      - ["kotlin.ranges", "ClosedRange", "getEndInclusive", "()", "generated"]
+      - ["kotlin.ranges", "ClosedRange", "getStart", "()", "generated"]
+      - ["kotlin.ranges", "ClosedRange", "isEmpty", "()", "generated"]
+      - ["kotlin.ranges", "IntProgression", "equals", "(Object)", "generated"]
+      - ["kotlin.ranges", "IntProgression", "getFirst", "()", "generated"]
+      - ["kotlin.ranges", "IntProgression", "getLast", "()", "generated"]
+      - ["kotlin.ranges", "IntProgression", "getStep", "()", "generated"]
+      - ["kotlin.ranges", "IntProgression", "hashCode", "()", "generated"]
+      - ["kotlin.ranges", "IntProgression", "isEmpty", "()", "generated"]
+      - ["kotlin.ranges", "IntProgression", "toString", "()", "generated"]
+      - ["kotlin.ranges", "IntProgression$Companion", "fromClosedRange", "(int,int,int)", "generated"]
+      - ["kotlin.ranges", "IntRange", "IntRange", "(int,int)", "generated"]
+      - ["kotlin.ranges", "IntRange", "contains", "(int)", "generated"]
+      - ["kotlin.ranges", "IntRange", "equals", "(Object)", "generated"]
+      - ["kotlin.ranges", "IntRange", "hashCode", "()", "generated"]
+      - ["kotlin.ranges", "IntRange", "toString", "()", "generated"]
+      - ["kotlin.ranges", "LongProgression", "equals", "(Object)", "generated"]
+      - ["kotlin.ranges", "LongProgression", "getFirst", "()", "generated"]
+      - ["kotlin.ranges", "LongProgression", "getLast", "()", "generated"]
+      - ["kotlin.ranges", "LongProgression", "getStep", "()", "generated"]
+      - ["kotlin.ranges", "LongProgression", "hashCode", "()", "generated"]
+      - ["kotlin.ranges", "LongProgression", "isEmpty", "()", "generated"]
+      - ["kotlin.ranges", "LongProgression", "toString", "()", "generated"]
+      - ["kotlin.ranges", "LongProgression$Companion", "fromClosedRange", "(long,long,long)", "generated"]
+      - ["kotlin.ranges", "LongRange", "LongRange", "(long,long)", "generated"]
+      - ["kotlin.ranges", "LongRange", "contains", "(long)", "generated"]
+      - ["kotlin.ranges", "LongRange", "equals", "(Object)", "generated"]
+      - ["kotlin.ranges", "LongRange", "hashCode", "()", "generated"]
+      - ["kotlin.ranges", "LongRange", "toString", "()", "generated"]
+      - ["kotlin.ranges", "OpenEndRange", "contains", "(Comparable)", "generated"]
+      - ["kotlin.ranges", "OpenEndRange", "getEndExclusive", "()", "generated"]
+      - ["kotlin.ranges", "OpenEndRange", "getStart", "()", "generated"]
+      - ["kotlin.ranges", "OpenEndRange", "isEmpty", "()", "generated"]
+      - ["kotlin.ranges", "RangesKt", "byteRangeContains", "(ClosedRange,double)", "generated"]
+      - ["kotlin.ranges", "RangesKt", "byteRangeContains", "(ClosedRange,float)", "generated"]
+      - ["kotlin.ranges", "RangesKt", "byteRangeContains", "(ClosedRange,int)", "generated"]
+      - ["kotlin.ranges", "RangesKt", "byteRangeContains", "(ClosedRange,long)", "generated"]
+      - ["kotlin.ranges", "RangesKt", "byteRangeContains", "(ClosedRange,short)", "generated"]
+      - ["kotlin.ranges", "RangesKt", "byteRangeContains", "(OpenEndRange,int)", "generated"]
+      - ["kotlin.ranges", "RangesKt", "byteRangeContains", "(OpenEndRange,long)", "generated"]
+      - ["kotlin.ranges", "RangesKt", "byteRangeContains", "(OpenEndRange,short)", "generated"]
+      - ["kotlin.ranges", "RangesKt", "coerceAtLeast", "(byte,byte)", "generated"]
+      - ["kotlin.ranges", "RangesKt", "coerceAtLeast", "(double,double)", "generated"]
+      - ["kotlin.ranges", "RangesKt", "coerceAtLeast", "(float,float)", "generated"]
+      - ["kotlin.ranges", "RangesKt", "coerceAtLeast", "(int,int)", "generated"]
+      - ["kotlin.ranges", "RangesKt", "coerceAtLeast", "(long,long)", "generated"]
+      - ["kotlin.ranges", "RangesKt", "coerceAtLeast", "(short,short)", "generated"]
+      - ["kotlin.ranges", "RangesKt", "coerceAtMost", "(byte,byte)", "generated"]
+      - ["kotlin.ranges", "RangesKt", "coerceAtMost", "(double,double)", "generated"]
+      - ["kotlin.ranges", "RangesKt", "coerceAtMost", "(float,float)", "generated"]
+      - ["kotlin.ranges", "RangesKt", "coerceAtMost", "(int,int)", "generated"]
+      - ["kotlin.ranges", "RangesKt", "coerceAtMost", "(long,long)", "generated"]
+      - ["kotlin.ranges", "RangesKt", "coerceAtMost", "(short,short)", "generated"]
+      - ["kotlin.ranges", "RangesKt", "coerceIn", "(byte,byte,byte)", "generated"]
+      - ["kotlin.ranges", "RangesKt", "coerceIn", "(double,double,double)", "generated"]
+      - ["kotlin.ranges", "RangesKt", "coerceIn", "(float,float,float)", "generated"]
+      - ["kotlin.ranges", "RangesKt", "coerceIn", "(int,ClosedRange)", "generated"]
+      - ["kotlin.ranges", "RangesKt", "coerceIn", "(int,int,int)", "generated"]
+      - ["kotlin.ranges", "RangesKt", "coerceIn", "(long,ClosedRange)", "generated"]
+      - ["kotlin.ranges", "RangesKt", "coerceIn", "(long,long,long)", "generated"]
+      - ["kotlin.ranges", "RangesKt", "coerceIn", "(short,short,short)", "generated"]
+      - ["kotlin.ranges", "RangesKt", "contains", "(CharRange,Character)", "generated"]
+      - ["kotlin.ranges", "RangesKt", "contains", "(ClosedRange,Object)", "generated"]
+      - ["kotlin.ranges", "RangesKt", "contains", "(IntRange,Integer)", "generated"]
+      - ["kotlin.ranges", "RangesKt", "contains", "(IntRange,byte)", "generated"]
+      - ["kotlin.ranges", "RangesKt", "contains", "(IntRange,long)", "generated"]
+      - ["kotlin.ranges", "RangesKt", "contains", "(IntRange,short)", "generated"]
+      - ["kotlin.ranges", "RangesKt", "contains", "(LongRange,Long)", "generated"]
+      - ["kotlin.ranges", "RangesKt", "contains", "(LongRange,byte)", "generated"]
+      - ["kotlin.ranges", "RangesKt", "contains", "(LongRange,int)", "generated"]
+      - ["kotlin.ranges", "RangesKt", "contains", "(LongRange,short)", "generated"]
+      - ["kotlin.ranges", "RangesKt", "contains", "(OpenEndRange,Object)", "generated"]
+      - ["kotlin.ranges", "RangesKt", "doubleRangeContains", "(ClosedRange,byte)", "generated"]
+      - ["kotlin.ranges", "RangesKt", "doubleRangeContains", "(ClosedRange,float)", "generated"]
+      - ["kotlin.ranges", "RangesKt", "doubleRangeContains", "(ClosedRange,int)", "generated"]
+      - ["kotlin.ranges", "RangesKt", "doubleRangeContains", "(ClosedRange,long)", "generated"]
+      - ["kotlin.ranges", "RangesKt", "doubleRangeContains", "(ClosedRange,short)", "generated"]
+      - ["kotlin.ranges", "RangesKt", "doubleRangeContains", "(OpenEndRange,float)", "generated"]
+      - ["kotlin.ranges", "RangesKt", "downTo", "(byte,byte)", "generated"]
+      - ["kotlin.ranges", "RangesKt", "downTo", "(byte,int)", "generated"]
+      - ["kotlin.ranges", "RangesKt", "downTo", "(byte,long)", "generated"]
+      - ["kotlin.ranges", "RangesKt", "downTo", "(byte,short)", "generated"]
+      - ["kotlin.ranges", "RangesKt", "downTo", "(char,char)", "generated"]
+      - ["kotlin.ranges", "RangesKt", "downTo", "(int,byte)", "generated"]
+      - ["kotlin.ranges", "RangesKt", "downTo", "(int,int)", "generated"]
+      - ["kotlin.ranges", "RangesKt", "downTo", "(int,long)", "generated"]
+      - ["kotlin.ranges", "RangesKt", "downTo", "(int,short)", "generated"]
+      - ["kotlin.ranges", "RangesKt", "downTo", "(long,byte)", "generated"]
+      - ["kotlin.ranges", "RangesKt", "downTo", "(long,int)", "generated"]
+      - ["kotlin.ranges", "RangesKt", "downTo", "(long,long)", "generated"]
+      - ["kotlin.ranges", "RangesKt", "downTo", "(long,short)", "generated"]
+      - ["kotlin.ranges", "RangesKt", "downTo", "(short,byte)", "generated"]
+      - ["kotlin.ranges", "RangesKt", "downTo", "(short,int)", "generated"]
+      - ["kotlin.ranges", "RangesKt", "downTo", "(short,long)", "generated"]
+      - ["kotlin.ranges", "RangesKt", "downTo", "(short,short)", "generated"]
+      - ["kotlin.ranges", "RangesKt", "first", "(CharProgression)", "generated"]
+      - ["kotlin.ranges", "RangesKt", "first", "(IntProgression)", "generated"]
+      - ["kotlin.ranges", "RangesKt", "first", "(LongProgression)", "generated"]
+      - ["kotlin.ranges", "RangesKt", "firstOrNull", "(CharProgression)", "generated"]
+      - ["kotlin.ranges", "RangesKt", "firstOrNull", "(IntProgression)", "generated"]
+      - ["kotlin.ranges", "RangesKt", "firstOrNull", "(LongProgression)", "generated"]
+      - ["kotlin.ranges", "RangesKt", "floatRangeContains", "(ClosedRange,byte)", "generated"]
+      - ["kotlin.ranges", "RangesKt", "floatRangeContains", "(ClosedRange,double)", "generated"]
+      - ["kotlin.ranges", "RangesKt", "floatRangeContains", "(ClosedRange,int)", "generated"]
+      - ["kotlin.ranges", "RangesKt", "floatRangeContains", "(ClosedRange,long)", "generated"]
+      - ["kotlin.ranges", "RangesKt", "floatRangeContains", "(ClosedRange,short)", "generated"]
+      - ["kotlin.ranges", "RangesKt", "intRangeContains", "(ClosedRange,byte)", "generated"]
+      - ["kotlin.ranges", "RangesKt", "intRangeContains", "(ClosedRange,double)", "generated"]
+      - ["kotlin.ranges", "RangesKt", "intRangeContains", "(ClosedRange,float)", "generated"]
+      - ["kotlin.ranges", "RangesKt", "intRangeContains", "(ClosedRange,long)", "generated"]
+      - ["kotlin.ranges", "RangesKt", "intRangeContains", "(ClosedRange,short)", "generated"]
+      - ["kotlin.ranges", "RangesKt", "intRangeContains", "(OpenEndRange,byte)", "generated"]
+      - ["kotlin.ranges", "RangesKt", "intRangeContains", "(OpenEndRange,long)", "generated"]
+      - ["kotlin.ranges", "RangesKt", "intRangeContains", "(OpenEndRange,short)", "generated"]
+      - ["kotlin.ranges", "RangesKt", "last", "(CharProgression)", "generated"]
+      - ["kotlin.ranges", "RangesKt", "last", "(IntProgression)", "generated"]
+      - ["kotlin.ranges", "RangesKt", "last", "(LongProgression)", "generated"]
+      - ["kotlin.ranges", "RangesKt", "lastOrNull", "(CharProgression)", "generated"]
+      - ["kotlin.ranges", "RangesKt", "lastOrNull", "(IntProgression)", "generated"]
+      - ["kotlin.ranges", "RangesKt", "lastOrNull", "(LongProgression)", "generated"]
+      - ["kotlin.ranges", "RangesKt", "longRangeContains", "(ClosedRange,byte)", "generated"]
+      - ["kotlin.ranges", "RangesKt", "longRangeContains", "(ClosedRange,double)", "generated"]
+      - ["kotlin.ranges", "RangesKt", "longRangeContains", "(ClosedRange,float)", "generated"]
+      - ["kotlin.ranges", "RangesKt", "longRangeContains", "(ClosedRange,int)", "generated"]
+      - ["kotlin.ranges", "RangesKt", "longRangeContains", "(ClosedRange,short)", "generated"]
+      - ["kotlin.ranges", "RangesKt", "longRangeContains", "(OpenEndRange,byte)", "generated"]
+      - ["kotlin.ranges", "RangesKt", "longRangeContains", "(OpenEndRange,int)", "generated"]
+      - ["kotlin.ranges", "RangesKt", "longRangeContains", "(OpenEndRange,short)", "generated"]
+      - ["kotlin.ranges", "RangesKt", "random", "(CharRange)", "generated"]
+      - ["kotlin.ranges", "RangesKt", "random", "(CharRange,Random)", "generated"]
+      - ["kotlin.ranges", "RangesKt", "random", "(IntRange)", "generated"]
+      - ["kotlin.ranges", "RangesKt", "random", "(IntRange,Random)", "generated"]
+      - ["kotlin.ranges", "RangesKt", "random", "(LongRange)", "generated"]
+      - ["kotlin.ranges", "RangesKt", "random", "(LongRange,Random)", "generated"]
+      - ["kotlin.ranges", "RangesKt", "randomOrNull", "(CharRange)", "generated"]
+      - ["kotlin.ranges", "RangesKt", "randomOrNull", "(CharRange,Random)", "generated"]
+      - ["kotlin.ranges", "RangesKt", "randomOrNull", "(IntRange)", "generated"]
+      - ["kotlin.ranges", "RangesKt", "randomOrNull", "(IntRange,Random)", "generated"]
+      - ["kotlin.ranges", "RangesKt", "randomOrNull", "(LongRange)", "generated"]
+      - ["kotlin.ranges", "RangesKt", "randomOrNull", "(LongRange,Random)", "generated"]
+      - ["kotlin.ranges", "RangesKt", "rangeTo", "(double,double)", "generated"]
+      - ["kotlin.ranges", "RangesKt", "rangeTo", "(float,float)", "generated"]
+      - ["kotlin.ranges", "RangesKt", "rangeUntil", "(byte,byte)", "generated"]
+      - ["kotlin.ranges", "RangesKt", "rangeUntil", "(byte,int)", "generated"]
+      - ["kotlin.ranges", "RangesKt", "rangeUntil", "(byte,long)", "generated"]
+      - ["kotlin.ranges", "RangesKt", "rangeUntil", "(byte,short)", "generated"]
+      - ["kotlin.ranges", "RangesKt", "rangeUntil", "(char,char)", "generated"]
+      - ["kotlin.ranges", "RangesKt", "rangeUntil", "(double,double)", "generated"]
+      - ["kotlin.ranges", "RangesKt", "rangeUntil", "(float,float)", "generated"]
+      - ["kotlin.ranges", "RangesKt", "rangeUntil", "(int,byte)", "generated"]
+      - ["kotlin.ranges", "RangesKt", "rangeUntil", "(int,int)", "generated"]
+      - ["kotlin.ranges", "RangesKt", "rangeUntil", "(int,long)", "generated"]
+      - ["kotlin.ranges", "RangesKt", "rangeUntil", "(int,short)", "generated"]
+      - ["kotlin.ranges", "RangesKt", "rangeUntil", "(long,byte)", "generated"]
+      - ["kotlin.ranges", "RangesKt", "rangeUntil", "(long,int)", "generated"]
+      - ["kotlin.ranges", "RangesKt", "rangeUntil", "(long,long)", "generated"]
+      - ["kotlin.ranges", "RangesKt", "rangeUntil", "(long,short)", "generated"]
+      - ["kotlin.ranges", "RangesKt", "rangeUntil", "(short,byte)", "generated"]
+      - ["kotlin.ranges", "RangesKt", "rangeUntil", "(short,int)", "generated"]
+      - ["kotlin.ranges", "RangesKt", "rangeUntil", "(short,long)", "generated"]
+      - ["kotlin.ranges", "RangesKt", "rangeUntil", "(short,short)", "generated"]
+      - ["kotlin.ranges", "RangesKt", "reversed", "(CharProgression)", "generated"]
+      - ["kotlin.ranges", "RangesKt", "reversed", "(IntProgression)", "generated"]
+      - ["kotlin.ranges", "RangesKt", "reversed", "(LongProgression)", "generated"]
+      - ["kotlin.ranges", "RangesKt", "shortRangeContains", "(ClosedRange,byte)", "generated"]
+      - ["kotlin.ranges", "RangesKt", "shortRangeContains", "(ClosedRange,double)", "generated"]
+      - ["kotlin.ranges", "RangesKt", "shortRangeContains", "(ClosedRange,float)", "generated"]
+      - ["kotlin.ranges", "RangesKt", "shortRangeContains", "(ClosedRange,int)", "generated"]
+      - ["kotlin.ranges", "RangesKt", "shortRangeContains", "(ClosedRange,long)", "generated"]
+      - ["kotlin.ranges", "RangesKt", "shortRangeContains", "(OpenEndRange,byte)", "generated"]
+      - ["kotlin.ranges", "RangesKt", "shortRangeContains", "(OpenEndRange,int)", "generated"]
+      - ["kotlin.ranges", "RangesKt", "shortRangeContains", "(OpenEndRange,long)", "generated"]
+      - ["kotlin.ranges", "RangesKt", "step", "(CharProgression,int)", "generated"]
+      - ["kotlin.ranges", "RangesKt", "step", "(IntProgression,int)", "generated"]
+      - ["kotlin.ranges", "RangesKt", "step", "(LongProgression,long)", "generated"]
+      - ["kotlin.ranges", "RangesKt", "until", "(byte,byte)", "generated"]
+      - ["kotlin.ranges", "RangesKt", "until", "(byte,int)", "generated"]
+      - ["kotlin.ranges", "RangesKt", "until", "(byte,long)", "generated"]
+      - ["kotlin.ranges", "RangesKt", "until", "(byte,short)", "generated"]
+      - ["kotlin.ranges", "RangesKt", "until", "(char,char)", "generated"]
+      - ["kotlin.ranges", "RangesKt", "until", "(int,byte)", "generated"]
+      - ["kotlin.ranges", "RangesKt", "until", "(int,int)", "generated"]
+      - ["kotlin.ranges", "RangesKt", "until", "(int,long)", "generated"]
+      - ["kotlin.ranges", "RangesKt", "until", "(int,short)", "generated"]
+      - ["kotlin.ranges", "RangesKt", "until", "(long,byte)", "generated"]
+      - ["kotlin.ranges", "RangesKt", "until", "(long,int)", "generated"]
+      - ["kotlin.ranges", "RangesKt", "until", "(long,long)", "generated"]
+      - ["kotlin.ranges", "RangesKt", "until", "(long,short)", "generated"]
+      - ["kotlin.ranges", "RangesKt", "until", "(short,byte)", "generated"]
+      - ["kotlin.ranges", "RangesKt", "until", "(short,int)", "generated"]
+      - ["kotlin.ranges", "RangesKt", "until", "(short,long)", "generated"]
+      - ["kotlin.ranges", "RangesKt", "until", "(short,short)", "generated"]
+      - ["kotlin.ranges", "UIntProgression", "equals", "(Object)", "generated"]
+      - ["kotlin.ranges", "UIntProgression", "getFirst", "()", "generated"]
+      - ["kotlin.ranges", "UIntProgression", "getLast", "()", "generated"]
+      - ["kotlin.ranges", "UIntProgression", "getStep", "()", "generated"]
+      - ["kotlin.ranges", "UIntProgression", "hashCode", "()", "generated"]
+      - ["kotlin.ranges", "UIntProgression", "isEmpty", "()", "generated"]
+      - ["kotlin.ranges", "UIntProgression", "toString", "()", "generated"]
+      - ["kotlin.ranges", "UIntProgression$Companion", "fromClosedRange", "(int,int,int)", "generated"]
+      - ["kotlin.ranges", "UIntRange", "UIntRange", "(int,int)", "generated"]
+      - ["kotlin.ranges", "UIntRange", "contains", "(int)", "generated"]
+      - ["kotlin.ranges", "UIntRange", "equals", "(Object)", "generated"]
+      - ["kotlin.ranges", "UIntRange", "hashCode", "()", "generated"]
+      - ["kotlin.ranges", "UIntRange", "toString", "()", "generated"]
+      - ["kotlin.ranges", "ULongProgression", "equals", "(Object)", "generated"]
+      - ["kotlin.ranges", "ULongProgression", "getFirst", "()", "generated"]
+      - ["kotlin.ranges", "ULongProgression", "getLast", "()", "generated"]
+      - ["kotlin.ranges", "ULongProgression", "getStep", "()", "generated"]
+      - ["kotlin.ranges", "ULongProgression", "hashCode", "()", "generated"]
+      - ["kotlin.ranges", "ULongProgression", "isEmpty", "()", "generated"]
+      - ["kotlin.ranges", "ULongProgression", "toString", "()", "generated"]
+      - ["kotlin.ranges", "ULongProgression$Companion", "fromClosedRange", "(long,long,long)", "generated"]
+      - ["kotlin.ranges", "ULongRange", "ULongRange", "(long,long)", "generated"]
+      - ["kotlin.ranges", "ULongRange", "contains", "(long)", "generated"]
+      - ["kotlin.ranges", "ULongRange", "equals", "(Object)", "generated"]
+      - ["kotlin.ranges", "ULongRange", "hashCode", "()", "generated"]
+      - ["kotlin.ranges", "ULongRange", "toString", "()", "generated"]
+      - ["kotlin.ranges", "URangesKt", "coerceAtLeast", "(byte,byte)", "generated"]
+      - ["kotlin.ranges", "URangesKt", "coerceAtLeast", "(int,int)", "generated"]
+      - ["kotlin.ranges", "URangesKt", "coerceAtLeast", "(long,long)", "generated"]
+      - ["kotlin.ranges", "URangesKt", "coerceAtLeast", "(short,short)", "generated"]
+      - ["kotlin.ranges", "URangesKt", "coerceAtMost", "(byte,byte)", "generated"]
+      - ["kotlin.ranges", "URangesKt", "coerceAtMost", "(int,int)", "generated"]
+      - ["kotlin.ranges", "URangesKt", "coerceAtMost", "(long,long)", "generated"]
+      - ["kotlin.ranges", "URangesKt", "coerceAtMost", "(short,short)", "generated"]
+      - ["kotlin.ranges", "URangesKt", "coerceIn", "(byte,byte,byte)", "generated"]
+      - ["kotlin.ranges", "URangesKt", "coerceIn", "(int,ClosedRange)", "generated"]
+      - ["kotlin.ranges", "URangesKt", "coerceIn", "(int,int,int)", "generated"]
+      - ["kotlin.ranges", "URangesKt", "coerceIn", "(long,ClosedRange)", "generated"]
+      - ["kotlin.ranges", "URangesKt", "coerceIn", "(long,long,long)", "generated"]
+      - ["kotlin.ranges", "URangesKt", "coerceIn", "(short,short,short)", "generated"]
+      - ["kotlin.ranges", "URangesKt", "contains", "(UIntRange,UInt)", "generated"]
+      - ["kotlin.ranges", "URangesKt", "contains", "(UIntRange,byte)", "generated"]
+      - ["kotlin.ranges", "URangesKt", "contains", "(UIntRange,long)", "generated"]
+      - ["kotlin.ranges", "URangesKt", "contains", "(UIntRange,short)", "generated"]
+      - ["kotlin.ranges", "URangesKt", "contains", "(ULongRange,ULong)", "generated"]
+      - ["kotlin.ranges", "URangesKt", "contains", "(ULongRange,byte)", "generated"]
+      - ["kotlin.ranges", "URangesKt", "contains", "(ULongRange,int)", "generated"]
+      - ["kotlin.ranges", "URangesKt", "contains", "(ULongRange,short)", "generated"]
+      - ["kotlin.ranges", "URangesKt", "downTo", "(byte,byte)", "generated"]
+      - ["kotlin.ranges", "URangesKt", "downTo", "(int,int)", "generated"]
+      - ["kotlin.ranges", "URangesKt", "downTo", "(long,long)", "generated"]
+      - ["kotlin.ranges", "URangesKt", "downTo", "(short,short)", "generated"]
+      - ["kotlin.ranges", "URangesKt", "first", "(UIntProgression)", "generated"]
+      - ["kotlin.ranges", "URangesKt", "first", "(ULongProgression)", "generated"]
+      - ["kotlin.ranges", "URangesKt", "firstOrNull", "(UIntProgression)", "generated"]
+      - ["kotlin.ranges", "URangesKt", "firstOrNull", "(ULongProgression)", "generated"]
+      - ["kotlin.ranges", "URangesKt", "last", "(UIntProgression)", "generated"]
+      - ["kotlin.ranges", "URangesKt", "last", "(ULongProgression)", "generated"]
+      - ["kotlin.ranges", "URangesKt", "lastOrNull", "(UIntProgression)", "generated"]
+      - ["kotlin.ranges", "URangesKt", "lastOrNull", "(ULongProgression)", "generated"]
+      - ["kotlin.ranges", "URangesKt", "random", "(UIntRange)", "generated"]
+      - ["kotlin.ranges", "URangesKt", "random", "(UIntRange,Random)", "generated"]
+      - ["kotlin.ranges", "URangesKt", "random", "(ULongRange)", "generated"]
+      - ["kotlin.ranges", "URangesKt", "random", "(ULongRange,Random)", "generated"]
+      - ["kotlin.ranges", "URangesKt", "randomOrNull", "(UIntRange)", "generated"]
+      - ["kotlin.ranges", "URangesKt", "randomOrNull", "(UIntRange,Random)", "generated"]
+      - ["kotlin.ranges", "URangesKt", "randomOrNull", "(ULongRange)", "generated"]
+      - ["kotlin.ranges", "URangesKt", "randomOrNull", "(ULongRange,Random)", "generated"]
+      - ["kotlin.ranges", "URangesKt", "rangeUntil", "(byte,byte)", "generated"]
+      - ["kotlin.ranges", "URangesKt", "rangeUntil", "(int,int)", "generated"]
+      - ["kotlin.ranges", "URangesKt", "rangeUntil", "(long,long)", "generated"]
+      - ["kotlin.ranges", "URangesKt", "rangeUntil", "(short,short)", "generated"]
+      - ["kotlin.ranges", "URangesKt", "reversed", "(UIntProgression)", "generated"]
+      - ["kotlin.ranges", "URangesKt", "reversed", "(ULongProgression)", "generated"]
+      - ["kotlin.ranges", "URangesKt", "step", "(UIntProgression,int)", "generated"]
+      - ["kotlin.ranges", "URangesKt", "step", "(ULongProgression,long)", "generated"]
+      - ["kotlin.ranges", "URangesKt", "until", "(byte,byte)", "generated"]
+      - ["kotlin.ranges", "URangesKt", "until", "(int,int)", "generated"]
+      - ["kotlin.ranges", "URangesKt", "until", "(long,long)", "generated"]
+      - ["kotlin.ranges", "URangesKt", "until", "(short,short)", "generated"]
+      - ["kotlin.reflect", "KAnnotatedElement", "getAnnotations", "()", "generated"]
+      - ["kotlin.reflect", "KCallable", "call", "(Object[])", "generated"]
+      - ["kotlin.reflect", "KCallable", "callBy", "(Map)", "generated"]
+      - ["kotlin.reflect", "KCallable", "getName", "()", "generated"]
+      - ["kotlin.reflect", "KCallable", "getParameters", "()", "generated"]
+      - ["kotlin.reflect", "KCallable", "getReturnType", "()", "generated"]
+      - ["kotlin.reflect", "KCallable", "getTypeParameters", "()", "generated"]
+      - ["kotlin.reflect", "KCallable", "getVisibility", "()", "generated"]
+      - ["kotlin.reflect", "KCallable", "isAbstract", "()", "generated"]
+      - ["kotlin.reflect", "KCallable", "isFinal", "()", "generated"]
+      - ["kotlin.reflect", "KCallable", "isOpen", "()", "generated"]
+      - ["kotlin.reflect", "KCallable", "isSuspend", "()", "generated"]
+      - ["kotlin.reflect", "KClass", "equals", "(Object)", "generated"]
+      - ["kotlin.reflect", "KClass", "getConstructors", "()", "generated"]
+      - ["kotlin.reflect", "KClass", "getNestedClasses", "()", "generated"]
+      - ["kotlin.reflect", "KClass", "getObjectInstance", "()", "generated"]
+      - ["kotlin.reflect", "KClass", "getQualifiedName", "()", "generated"]
+      - ["kotlin.reflect", "KClass", "getSealedSubclasses", "()", "generated"]
+      - ["kotlin.reflect", "KClass", "getSimpleName", "()", "generated"]
+      - ["kotlin.reflect", "KClass", "getSupertypes", "()", "generated"]
+      - ["kotlin.reflect", "KClass", "getTypeParameters", "()", "generated"]
+      - ["kotlin.reflect", "KClass", "getVisibility", "()", "generated"]
+      - ["kotlin.reflect", "KClass", "hashCode", "()", "generated"]
+      - ["kotlin.reflect", "KClass", "isAbstract", "()", "generated"]
+      - ["kotlin.reflect", "KClass", "isCompanion", "()", "generated"]
+      - ["kotlin.reflect", "KClass", "isData", "()", "generated"]
+      - ["kotlin.reflect", "KClass", "isFinal", "()", "generated"]
+      - ["kotlin.reflect", "KClass", "isFun", "()", "generated"]
+      - ["kotlin.reflect", "KClass", "isInner", "()", "generated"]
+      - ["kotlin.reflect", "KClass", "isInstance", "(Object)", "generated"]
+      - ["kotlin.reflect", "KClass", "isOpen", "()", "generated"]
+      - ["kotlin.reflect", "KClass", "isSealed", "()", "generated"]
+      - ["kotlin.reflect", "KClass", "isValue", "()", "generated"]
+      - ["kotlin.reflect", "KDeclarationContainer", "getMembers", "()", "generated"]
+      - ["kotlin.reflect", "KFunction", "isExternal", "()", "generated"]
+      - ["kotlin.reflect", "KFunction", "isInfix", "()", "generated"]
+      - ["kotlin.reflect", "KFunction", "isInline", "()", "generated"]
+      - ["kotlin.reflect", "KFunction", "isOperator", "()", "generated"]
+      - ["kotlin.reflect", "KMutableProperty", "getSetter", "()", "generated"]
+      - ["kotlin.reflect", "KMutableProperty0", "set", "(Object)", "generated"]
+      - ["kotlin.reflect", "KMutableProperty1", "set", "(Object,Object)", "generated"]
+      - ["kotlin.reflect", "KMutableProperty2", "set", "(Object,Object,Object)", "generated"]
+      - ["kotlin.reflect", "KParameter", "getIndex", "()", "generated"]
+      - ["kotlin.reflect", "KParameter", "getKind", "()", "generated"]
+      - ["kotlin.reflect", "KParameter", "getName", "()", "generated"]
+      - ["kotlin.reflect", "KParameter", "getType", "()", "generated"]
+      - ["kotlin.reflect", "KParameter", "isOptional", "()", "generated"]
+      - ["kotlin.reflect", "KParameter", "isVararg", "()", "generated"]
+      - ["kotlin.reflect", "KParameter$Kind", "valueOf", "(String)", "generated"]
+      - ["kotlin.reflect", "KParameter$Kind", "values", "()", "generated"]
+      - ["kotlin.reflect", "KProperty", "getGetter", "()", "generated"]
+      - ["kotlin.reflect", "KProperty", "isConst", "()", "generated"]
+      - ["kotlin.reflect", "KProperty", "isLateinit", "()", "generated"]
+      - ["kotlin.reflect", "KProperty$Accessor", "getProperty", "()", "generated"]
+      - ["kotlin.reflect", "KProperty0", "get", "()", "generated"]
+      - ["kotlin.reflect", "KProperty0", "getDelegate", "()", "generated"]
+      - ["kotlin.reflect", "KProperty1", "get", "(Object)", "generated"]
+      - ["kotlin.reflect", "KProperty1", "getDelegate", "(Object)", "generated"]
+      - ["kotlin.reflect", "KProperty2", "get", "(Object,Object)", "generated"]
+      - ["kotlin.reflect", "KProperty2", "getDelegate", "(Object,Object)", "generated"]
+      - ["kotlin.reflect", "KType", "getArguments", "()", "generated"]
+      - ["kotlin.reflect", "KType", "getClassifier", "()", "generated"]
+      - ["kotlin.reflect", "KType", "isMarkedNullable", "()", "generated"]
+      - ["kotlin.reflect", "KTypeParameter", "getName", "()", "generated"]
+      - ["kotlin.reflect", "KTypeParameter", "getUpperBounds", "()", "generated"]
+      - ["kotlin.reflect", "KTypeParameter", "getVariance", "()", "generated"]
+      - ["kotlin.reflect", "KTypeParameter", "isReified", "()", "generated"]
+      - ["kotlin.reflect", "KTypeProjection", "component1", "()", "generated"]
+      - ["kotlin.reflect", "KTypeProjection", "equals", "(Object)", "generated"]
+      - ["kotlin.reflect", "KTypeProjection", "getVariance", "()", "generated"]
+      - ["kotlin.reflect", "KTypeProjection", "hashCode", "()", "generated"]
+      - ["kotlin.reflect", "KTypeProjection$Companion", "getSTAR", "()", "generated"]
+      - ["kotlin.reflect", "KVariance", "valueOf", "(String)", "generated"]
+      - ["kotlin.reflect", "KVariance", "values", "()", "generated"]
+      - ["kotlin.reflect", "KVisibility", "valueOf", "(String)", "generated"]
+      - ["kotlin.reflect", "KVisibility", "values", "()", "generated"]
+      - ["kotlin.reflect", "TypeOfKt", "typeOf", "()", "generated"]
+      - ["kotlin.sequences", "Sequence", "iterator", "()", "generated"]
+      - ["kotlin.sequences", "SequenceScope", "yield", "(Object)", "generated"]
+      - ["kotlin.sequences", "SequenceScope", "yieldAll", "(Iterable)", "generated"]
+      - ["kotlin.sequences", "SequenceScope", "yieldAll", "(Iterator)", "generated"]
+      - ["kotlin.sequences", "SequencesKt", "Sequence", "(Function0)", "generated"]
+      - ["kotlin.sequences", "SequencesKt", "all", "(Sequence,Function1)", "generated"]
+      - ["kotlin.sequences", "SequencesKt", "any", "(Sequence)", "generated"]
+      - ["kotlin.sequences", "SequencesKt", "any", "(Sequence,Function1)", "generated"]
+      - ["kotlin.sequences", "SequencesKt", "asIterable", "(Sequence)", "generated"]
+      - ["kotlin.sequences", "SequencesKt", "asSequence", "(Enumeration)", "generated"]
+      - ["kotlin.sequences", "SequencesKt", "asSequence", "(Iterator)", "generated"]
+      - ["kotlin.sequences", "SequencesKt", "associate", "(Sequence,Function1)", "generated"]
+      - ["kotlin.sequences", "SequencesKt", "associateBy", "(Sequence,Function1,Function1)", "generated"]
+      - ["kotlin.sequences", "SequencesKt", "averageOfByte", "(Sequence)", "generated"]
+      - ["kotlin.sequences", "SequencesKt", "averageOfDouble", "(Sequence)", "generated"]
+      - ["kotlin.sequences", "SequencesKt", "averageOfFloat", "(Sequence)", "generated"]
+      - ["kotlin.sequences", "SequencesKt", "averageOfInt", "(Sequence)", "generated"]
+      - ["kotlin.sequences", "SequencesKt", "averageOfLong", "(Sequence)", "generated"]
+      - ["kotlin.sequences", "SequencesKt", "averageOfShort", "(Sequence)", "generated"]
+      - ["kotlin.sequences", "SequencesKt", "chunked", "(Sequence,int)", "generated"]
+      - ["kotlin.sequences", "SequencesKt", "contains", "(Sequence,Object)", "generated"]
+      - ["kotlin.sequences", "SequencesKt", "count", "(Sequence)", "generated"]
+      - ["kotlin.sequences", "SequencesKt", "count", "(Sequence,Function1)", "generated"]
+      - ["kotlin.sequences", "SequencesKt", "emptySequence", "()", "generated"]
+      - ["kotlin.sequences", "SequencesKt", "filterIndexed", "(Sequence,Function2)", "generated"]
+      - ["kotlin.sequences", "SequencesKt", "flatMapIndexedIterable", "(Sequence,Function2)", "generated"]
+      - ["kotlin.sequences", "SequencesKt", "flatMapIndexedSequence", "(Sequence,Function2)", "generated"]
+      - ["kotlin.sequences", "SequencesKt", "forEach", "(Sequence,Function1)", "generated"]
+      - ["kotlin.sequences", "SequencesKt", "forEachIndexed", "(Sequence,Function2)", "generated"]
+      - ["kotlin.sequences", "SequencesKt", "groupBy", "(Sequence,Function1)", "generated"]
+      - ["kotlin.sequences", "SequencesKt", "groupBy", "(Sequence,Function1,Function1)", "generated"]
+      - ["kotlin.sequences", "SequencesKt", "groupingBy", "(Sequence,Function1)", "generated"]
+      - ["kotlin.sequences", "SequencesKt", "ifEmpty", "(Sequence,Function0)", "generated"]
+      - ["kotlin.sequences", "SequencesKt", "indexOf", "(Sequence,Object)", "generated"]
+      - ["kotlin.sequences", "SequencesKt", "indexOfFirst", "(Sequence,Function1)", "generated"]
+      - ["kotlin.sequences", "SequencesKt", "indexOfLast", "(Sequence,Function1)", "generated"]
+      - ["kotlin.sequences", "SequencesKt", "iterator", "(SuspendFunction1)", "generated"]
+      - ["kotlin.sequences", "SequencesKt", "lastIndexOf", "(Sequence,Object)", "generated"]
+      - ["kotlin.sequences", "SequencesKt", "max", "(Sequence)", "generated"]
+      - ["kotlin.sequences", "SequencesKt", "maxOf", "(Sequence,Function1)", "generated"]
+      - ["kotlin.sequences", "SequencesKt", "maxOfOrNull", "(Sequence,Function1)", "generated"]
+      - ["kotlin.sequences", "SequencesKt", "maxOrNull", "(Sequence)", "generated"]
+      - ["kotlin.sequences", "SequencesKt", "maxOrThrow", "(Sequence)", "generated"]
+      - ["kotlin.sequences", "SequencesKt", "min", "(Sequence)", "generated"]
+      - ["kotlin.sequences", "SequencesKt", "minOf", "(Sequence,Function1)", "generated"]
+      - ["kotlin.sequences", "SequencesKt", "minOfOrNull", "(Sequence,Function1)", "generated"]
+      - ["kotlin.sequences", "SequencesKt", "minOrNull", "(Sequence)", "generated"]
+      - ["kotlin.sequences", "SequencesKt", "minOrThrow", "(Sequence)", "generated"]
+      - ["kotlin.sequences", "SequencesKt", "minus", "(Sequence,Iterable)", "generated"]
+      - ["kotlin.sequences", "SequencesKt", "minus", "(Sequence,Object)", "generated"]
+      - ["kotlin.sequences", "SequencesKt", "minus", "(Sequence,Sequence)", "generated"]
+      - ["kotlin.sequences", "SequencesKt", "minusElement", "(Sequence,Object)", "generated"]
+      - ["kotlin.sequences", "SequencesKt", "none", "(Sequence)", "generated"]
+      - ["kotlin.sequences", "SequencesKt", "none", "(Sequence,Function1)", "generated"]
+      - ["kotlin.sequences", "SequencesKt", "plus", "(Sequence,Iterable)", "generated"]
+      - ["kotlin.sequences", "SequencesKt", "plus", "(Sequence,Object)", "generated"]
+      - ["kotlin.sequences", "SequencesKt", "plus", "(Sequence,Object[])", "generated"]
+      - ["kotlin.sequences", "SequencesKt", "plus", "(Sequence,Sequence)", "generated"]
+      - ["kotlin.sequences", "SequencesKt", "plusElement", "(Sequence,Object)", "generated"]
+      - ["kotlin.sequences", "SequencesKt", "runningFold", "(Sequence,Object,Function2)", "generated"]
+      - ["kotlin.sequences", "SequencesKt", "runningFoldIndexed", "(Sequence,Object,Function3)", "generated"]
+      - ["kotlin.sequences", "SequencesKt", "runningReduce", "(Sequence,Function2)", "generated"]
+      - ["kotlin.sequences", "SequencesKt", "runningReduceIndexed", "(Sequence,Function3)", "generated"]
+      - ["kotlin.sequences", "SequencesKt", "scan", "(Sequence,Object,Function2)", "generated"]
+      - ["kotlin.sequences", "SequencesKt", "scanIndexed", "(Sequence,Object,Function3)", "generated"]
+      - ["kotlin.sequences", "SequencesKt", "sequence", "(SuspendFunction1)", "generated"]
+      - ["kotlin.sequences", "SequencesKt", "sequenceOf", "(Object[])", "generated"]
+      - ["kotlin.sequences", "SequencesKt", "shuffled", "(Sequence)", "generated"]
+      - ["kotlin.sequences", "SequencesKt", "shuffled", "(Sequence,Random)", "generated"]
+      - ["kotlin.sequences", "SequencesKt", "sorted", "(Sequence)", "generated"]
+      - ["kotlin.sequences", "SequencesKt", "sortedBy", "(Sequence,Function1)", "generated"]
+      - ["kotlin.sequences", "SequencesKt", "sortedByDescending", "(Sequence,Function1)", "generated"]
+      - ["kotlin.sequences", "SequencesKt", "sortedDescending", "(Sequence)", "generated"]
+      - ["kotlin.sequences", "SequencesKt", "sortedWith", "(Sequence,Comparator)", "generated"]
+      - ["kotlin.sequences", "SequencesKt", "sumBy", "(Sequence,Function1)", "generated"]
+      - ["kotlin.sequences", "SequencesKt", "sumByDouble", "(Sequence,Function1)", "generated"]
+      - ["kotlin.sequences", "SequencesKt", "sumOfBigDecimal", "(Sequence,Function1)", "generated"]
+      - ["kotlin.sequences", "SequencesKt", "sumOfBigInteger", "(Sequence,Function1)", "generated"]
+      - ["kotlin.sequences", "SequencesKt", "sumOfByte", "(Sequence)", "generated"]
+      - ["kotlin.sequences", "SequencesKt", "sumOfDouble", "(Sequence)", "generated"]
+      - ["kotlin.sequences", "SequencesKt", "sumOfDouble", "(Sequence,Function1)", "generated"]
+      - ["kotlin.sequences", "SequencesKt", "sumOfFloat", "(Sequence)", "generated"]
+      - ["kotlin.sequences", "SequencesKt", "sumOfInt", "(Sequence)", "generated"]
+      - ["kotlin.sequences", "SequencesKt", "sumOfInt", "(Sequence,Function1)", "generated"]
+      - ["kotlin.sequences", "SequencesKt", "sumOfLong", "(Sequence)", "generated"]
+      - ["kotlin.sequences", "SequencesKt", "sumOfLong", "(Sequence,Function1)", "generated"]
+      - ["kotlin.sequences", "SequencesKt", "sumOfShort", "(Sequence)", "generated"]
+      - ["kotlin.sequences", "SequencesKt", "sumOfUInt", "(Sequence,Function1)", "generated"]
+      - ["kotlin.sequences", "SequencesKt", "sumOfULong", "(Sequence,Function1)", "generated"]
+      - ["kotlin.sequences", "SequencesKt", "windowed", "(Sequence,int,int,boolean)", "generated"]
+      - ["kotlin.sequences", "SequencesKt", "zipWithNext", "(Sequence)", "generated"]
+      - ["kotlin.sequences", "SequencesKt", "zipWithNext", "(Sequence,Function2)", "generated"]
+      - ["kotlin.sequences", "USequencesKt", "sumOfUByte", "(Sequence)", "generated"]
+      - ["kotlin.sequences", "USequencesKt", "sumOfUInt", "(Sequence)", "generated"]
+      - ["kotlin.sequences", "USequencesKt", "sumOfULong", "(Sequence)", "generated"]
+      - ["kotlin.sequences", "USequencesKt", "sumOfUShort", "(Sequence)", "generated"]
+      - ["kotlin.system", "ProcessKt", "exitProcess", "(int)", "generated"]
+      - ["kotlin.system", "TimingKt", "measureNanoTime", "(Function0)", "generated"]
+      - ["kotlin.system", "TimingKt", "measureTimeMillis", "(Function0)", "generated"]
+      - ["kotlin.text", "Appendable", "append", "(CharSequence)", "generated"]
+      - ["kotlin.text", "Appendable", "append", "(CharSequence,int,int)", "generated"]
+      - ["kotlin.text", "Appendable", "append", "(char)", "generated"]
+      - ["kotlin.text", "CharCategory", "contains", "(char)", "generated"]
+      - ["kotlin.text", "CharCategory", "getCode", "()", "generated"]
+      - ["kotlin.text", "CharCategory", "getValue", "()", "generated"]
+      - ["kotlin.text", "CharCategory", "valueOf", "(String)", "generated"]
+      - ["kotlin.text", "CharCategory", "values", "()", "generated"]
+      - ["kotlin.text", "CharCategory$Companion", "valueOf", "(int)", "generated"]
+      - ["kotlin.text", "CharDirectionality", "getValue", "()", "generated"]
+      - ["kotlin.text", "CharDirectionality", "valueOf", "(String)", "generated"]
+      - ["kotlin.text", "CharDirectionality", "values", "()", "generated"]
+      - ["kotlin.text", "CharDirectionality$Companion", "valueOf", "(int)", "generated"]
+      - ["kotlin.text", "CharacterCodingException", "CharacterCodingException", "()", "generated"]
+      - ["kotlin.text", "CharsKt", "digitToChar", "(int)", "generated"]
+      - ["kotlin.text", "CharsKt", "digitToChar", "(int,int)", "generated"]
+      - ["kotlin.text", "CharsKt", "digitToInt", "(char)", "generated"]
+      - ["kotlin.text", "CharsKt", "digitToInt", "(char,int)", "generated"]
+      - ["kotlin.text", "CharsKt", "digitToIntOrNull", "(char)", "generated"]
+      - ["kotlin.text", "CharsKt", "digitToIntOrNull", "(char,int)", "generated"]
+      - ["kotlin.text", "CharsKt", "equals", "(char,char,boolean)", "generated"]
+      - ["kotlin.text", "CharsKt", "getCategory", "(char)", "generated"]
+      - ["kotlin.text", "CharsKt", "getDirectionality", "(char)", "generated"]
+      - ["kotlin.text", "CharsKt", "isDefined", "(char)", "generated"]
+      - ["kotlin.text", "CharsKt", "isDigit", "(char)", "generated"]
+      - ["kotlin.text", "CharsKt", "isHighSurrogate", "(char)", "generated"]
+      - ["kotlin.text", "CharsKt", "isISOControl", "(char)", "generated"]
+      - ["kotlin.text", "CharsKt", "isIdentifierIgnorable", "(char)", "generated"]
+      - ["kotlin.text", "CharsKt", "isJavaIdentifierPart", "(char)", "generated"]
+      - ["kotlin.text", "CharsKt", "isJavaIdentifierStart", "(char)", "generated"]
+      - ["kotlin.text", "CharsKt", "isLetter", "(char)", "generated"]
+      - ["kotlin.text", "CharsKt", "isLetterOrDigit", "(char)", "generated"]
+      - ["kotlin.text", "CharsKt", "isLowSurrogate", "(char)", "generated"]
+      - ["kotlin.text", "CharsKt", "isLowerCase", "(char)", "generated"]
+      - ["kotlin.text", "CharsKt", "isSurrogate", "(char)", "generated"]
+      - ["kotlin.text", "CharsKt", "isTitleCase", "(char)", "generated"]
+      - ["kotlin.text", "CharsKt", "isUpperCase", "(char)", "generated"]
+      - ["kotlin.text", "CharsKt", "isWhitespace", "(char)", "generated"]
+      - ["kotlin.text", "CharsKt", "lowercase", "(char)", "generated"]
+      - ["kotlin.text", "CharsKt", "lowercase", "(char,Locale)", "generated"]
+      - ["kotlin.text", "CharsKt", "lowercaseChar", "(char)", "generated"]
+      - ["kotlin.text", "CharsKt", "titlecase", "(char)", "generated"]
+      - ["kotlin.text", "CharsKt", "titlecase", "(char,Locale)", "generated"]
+      - ["kotlin.text", "CharsKt", "titlecaseChar", "(char)", "generated"]
+      - ["kotlin.text", "CharsKt", "toLowerCase", "(char)", "generated"]
+      - ["kotlin.text", "CharsKt", "toTitleCase", "(char)", "generated"]
+      - ["kotlin.text", "CharsKt", "toUpperCase", "(char)", "generated"]
+      - ["kotlin.text", "CharsKt", "uppercase", "(char)", "generated"]
+      - ["kotlin.text", "CharsKt", "uppercase", "(char,Locale)", "generated"]
+      - ["kotlin.text", "CharsKt", "uppercaseChar", "(char)", "generated"]
+      - ["kotlin.text", "Charsets", "UTF32", "()", "generated"]
+      - ["kotlin.text", "Charsets", "UTF32_BE", "()", "generated"]
+      - ["kotlin.text", "Charsets", "UTF32_LE", "()", "generated"]
+      - ["kotlin.text", "Charsets", "getISO_8859_1", "()", "generated"]
+      - ["kotlin.text", "Charsets", "getUS_ASCII", "()", "generated"]
+      - ["kotlin.text", "Charsets", "getUTF_16", "()", "generated"]
+      - ["kotlin.text", "Charsets", "getUTF_16BE", "()", "generated"]
+      - ["kotlin.text", "Charsets", "getUTF_16LE", "()", "generated"]
+      - ["kotlin.text", "Charsets", "getUTF_8", "()", "generated"]
+      - ["kotlin.text", "CharsetsKt", "charset", "(String)", "generated"]
+      - ["kotlin.text", "FlagEnum", "getMask", "()", "generated"]
+      - ["kotlin.text", "FlagEnum", "getValue", "()", "generated"]
+      - ["kotlin.text", "MatchGroup", "equals", "(Object)", "generated"]
+      - ["kotlin.text", "MatchGroup", "hashCode", "()", "generated"]
+      - ["kotlin.text", "MatchGroupCollection", "get", "(int)", "generated"]
+      - ["kotlin.text", "MatchNamedGroupCollection", "get", "(String)", "generated"]
+      - ["kotlin.text", "MatchResult", "getGroupValues", "()", "generated"]
+      - ["kotlin.text", "MatchResult", "getGroups", "()", "generated"]
+      - ["kotlin.text", "MatchResult", "getRange", "()", "generated"]
+      - ["kotlin.text", "MatchResult", "getValue", "()", "generated"]
+      - ["kotlin.text", "MatchResult", "next", "()", "generated"]
+      - ["kotlin.text", "Regex", "Regex", "(String)", "generated"]
+      - ["kotlin.text", "Regex", "Regex", "(String,RegexOption)", "generated"]
+      - ["kotlin.text", "Regex", "Regex", "(String,Set)", "generated"]
+      - ["kotlin.text", "Regex", "containsMatchIn", "(CharSequence)", "generated"]
+      - ["kotlin.text", "Regex", "findAll", "(CharSequence,int)", "generated"]
+      - ["kotlin.text", "Regex", "getPattern", "()", "generated"]
+      - ["kotlin.text", "Regex", "matchAt", "(CharSequence,int)", "generated"]
+      - ["kotlin.text", "Regex", "matches", "(CharSequence)", "generated"]
+      - ["kotlin.text", "Regex", "matchesAt", "(CharSequence,int)", "generated"]
+      - ["kotlin.text", "Regex", "split", "(CharSequence,int)", "generated"]
+      - ["kotlin.text", "Regex", "splitToSequence", "(CharSequence,int)", "generated"]
+      - ["kotlin.text", "Regex", "toString", "()", "generated"]
+      - ["kotlin.text", "Regex$Companion", "escapeReplacement", "(String)", "generated"]
+      - ["kotlin.text", "Regex$Companion", "fromLiteral", "(String)", "generated"]
+      - ["kotlin.text", "RegexOption", "valueOf", "(String)", "generated"]
+      - ["kotlin.text", "RegexOption", "values", "()", "generated"]
+      - ["kotlin.text", "StringBuilder", "StringBuilder", "()", "generated"]
+      - ["kotlin.text", "StringBuilder", "StringBuilder", "(CharSequence)", "generated"]
+      - ["kotlin.text", "StringBuilder", "StringBuilder", "(String)", "generated"]
+      - ["kotlin.text", "StringBuilder", "StringBuilder", "(int)", "generated"]
+      - ["kotlin.text", "StringBuilder", "append", "(Object)", "generated"]
+      - ["kotlin.text", "StringBuilder", "append", "(String)", "generated"]
+      - ["kotlin.text", "StringBuilder", "append", "(boolean)", "generated"]
+      - ["kotlin.text", "StringBuilder", "append", "(char[])", "generated"]
+      - ["kotlin.text", "StringBuilder", "capacity", "()", "generated"]
+      - ["kotlin.text", "StringBuilder", "ensureCapacity", "(int)", "generated"]
+      - ["kotlin.text", "StringBuilder", "get", "(int)", "generated"]
+      - ["kotlin.text", "StringBuilder", "indexOf", "(String)", "generated"]
+      - ["kotlin.text", "StringBuilder", "indexOf", "(String,int)", "generated"]
+      - ["kotlin.text", "StringBuilder", "insert", "(int,CharSequence)", "generated"]
+      - ["kotlin.text", "StringBuilder", "insert", "(int,Object)", "generated"]
+      - ["kotlin.text", "StringBuilder", "insert", "(int,String)", "generated"]
+      - ["kotlin.text", "StringBuilder", "insert", "(int,boolean)", "generated"]
+      - ["kotlin.text", "StringBuilder", "insert", "(int,char)", "generated"]
+      - ["kotlin.text", "StringBuilder", "insert", "(int,char[])", "generated"]
+      - ["kotlin.text", "StringBuilder", "lastIndexOf", "(String)", "generated"]
+      - ["kotlin.text", "StringBuilder", "lastIndexOf", "(String,int)", "generated"]
+      - ["kotlin.text", "StringBuilder", "reverse", "()", "generated"]
+      - ["kotlin.text", "StringBuilder", "setLength", "(int)", "generated"]
+      - ["kotlin.text", "StringBuilder", "substring", "(int)", "generated"]
+      - ["kotlin.text", "StringBuilder", "substring", "(int,int)", "generated"]
+      - ["kotlin.text", "StringBuilder", "trimToSize", "()", "generated"]
+      - ["kotlin.text", "StringsKt", "String", "(int[],int,int)", "generated"]
+      - ["kotlin.text", "StringsKt", "all", "(CharSequence,Function1)", "generated"]
+      - ["kotlin.text", "StringsKt", "any", "(CharSequence)", "generated"]
+      - ["kotlin.text", "StringsKt", "any", "(CharSequence,Function1)", "generated"]
+      - ["kotlin.text", "StringsKt", "asIterable", "(CharSequence)", "generated"]
+      - ["kotlin.text", "StringsKt", "asSequence", "(CharSequence)", "generated"]
+      - ["kotlin.text", "StringsKt", "associate", "(CharSequence,Function1)", "generated"]
+      - ["kotlin.text", "StringsKt", "associateBy", "(CharSequence,Function1)", "generated"]
+      - ["kotlin.text", "StringsKt", "associateBy", "(CharSequence,Function1,Function1)", "generated"]
+      - ["kotlin.text", "StringsKt", "associateWith", "(CharSequence,Function1)", "generated"]
+      - ["kotlin.text", "StringsKt", "buildString", "(Function1)", "generated"]
+      - ["kotlin.text", "StringsKt", "buildString", "(int,Function1)", "generated"]
+      - ["kotlin.text", "StringsKt", "chunked", "(CharSequence,int)", "generated"]
+      - ["kotlin.text", "StringsKt", "chunked", "(CharSequence,int,Function1)", "generated"]
+      - ["kotlin.text", "StringsKt", "chunkedSequence", "(CharSequence,int)", "generated"]
+      - ["kotlin.text", "StringsKt", "chunkedSequence", "(CharSequence,int,Function1)", "generated"]
+      - ["kotlin.text", "StringsKt", "codePointAt", "(String,int)", "generated"]
+      - ["kotlin.text", "StringsKt", "codePointBefore", "(String,int)", "generated"]
+      - ["kotlin.text", "StringsKt", "codePointCount", "(String,int,int)", "generated"]
+      - ["kotlin.text", "StringsKt", "commonPrefixWith", "(CharSequence,CharSequence,boolean)", "generated"]
+      - ["kotlin.text", "StringsKt", "commonSuffixWith", "(CharSequence,CharSequence,boolean)", "generated"]
+      - ["kotlin.text", "StringsKt", "compareTo", "(String,String,boolean)", "generated"]
+      - ["kotlin.text", "StringsKt", "contains", "(CharSequence,CharSequence,boolean)", "generated"]
+      - ["kotlin.text", "StringsKt", "contains", "(CharSequence,Regex)", "generated"]
+      - ["kotlin.text", "StringsKt", "contains", "(CharSequence,char,boolean)", "generated"]
+      - ["kotlin.text", "StringsKt", "contentEquals", "(CharSequence,CharSequence)", "generated"]
+      - ["kotlin.text", "StringsKt", "contentEquals", "(CharSequence,CharSequence,boolean)", "generated"]
+      - ["kotlin.text", "StringsKt", "contentEquals", "(String,CharSequence)", "generated"]
+      - ["kotlin.text", "StringsKt", "contentEquals", "(String,StringBuffer)", "generated"]
+      - ["kotlin.text", "StringsKt", "count", "(CharSequence)", "generated"]
+      - ["kotlin.text", "StringsKt", "count", "(CharSequence,Function1)", "generated"]
+      - ["kotlin.text", "StringsKt", "deleteAt", "(StringBuilder,int)", "generated"]
+      - ["kotlin.text", "StringsKt", "deleteRange", "(StringBuilder,int,int)", "generated"]
+      - ["kotlin.text", "StringsKt", "elementAt", "(CharSequence,int)", "generated"]
+      - ["kotlin.text", "StringsKt", "elementAtOrElse", "(CharSequence,int,Function1)", "generated"]
+      - ["kotlin.text", "StringsKt", "elementAtOrNull", "(CharSequence,int)", "generated"]
+      - ["kotlin.text", "StringsKt", "endsWith", "(CharSequence,CharSequence,boolean)", "generated"]
+      - ["kotlin.text", "StringsKt", "endsWith", "(CharSequence,char,boolean)", "generated"]
+      - ["kotlin.text", "StringsKt", "endsWith", "(String,String,boolean)", "generated"]
+      - ["kotlin.text", "StringsKt", "equals", "(String,String,boolean)", "generated"]
+      - ["kotlin.text", "StringsKt", "filter", "(CharSequence,Function1)", "generated"]
+      - ["kotlin.text", "StringsKt", "filter", "(String,Function1)", "generated"]
+      - ["kotlin.text", "StringsKt", "filterIndexed", "(CharSequence,Function2)", "generated"]
+      - ["kotlin.text", "StringsKt", "filterIndexed", "(String,Function2)", "generated"]
+      - ["kotlin.text", "StringsKt", "filterNot", "(CharSequence,Function1)", "generated"]
+      - ["kotlin.text", "StringsKt", "filterNot", "(String,Function1)", "generated"]
+      - ["kotlin.text", "StringsKt", "find", "(CharSequence,Function1)", "generated"]
+      - ["kotlin.text", "StringsKt", "findLast", "(CharSequence,Function1)", "generated"]
+      - ["kotlin.text", "StringsKt", "first", "(CharSequence)", "generated"]
+      - ["kotlin.text", "StringsKt", "first", "(CharSequence,Function1)", "generated"]
+      - ["kotlin.text", "StringsKt", "firstNotNullOf", "(CharSequence,Function1)", "generated"]
+      - ["kotlin.text", "StringsKt", "firstNotNullOfOrNull", "(CharSequence,Function1)", "generated"]
+      - ["kotlin.text", "StringsKt", "firstOrNull", "(CharSequence)", "generated"]
+      - ["kotlin.text", "StringsKt", "firstOrNull", "(CharSequence,Function1)", "generated"]
+      - ["kotlin.text", "StringsKt", "flatMap", "(CharSequence,Function1)", "generated"]
+      - ["kotlin.text", "StringsKt", "flatMapIndexedIterable", "(CharSequence,Function2)", "generated"]
+      - ["kotlin.text", "StringsKt", "forEach", "(CharSequence,Function1)", "generated"]
+      - ["kotlin.text", "StringsKt", "forEachIndexed", "(CharSequence,Function2)", "generated"]
+      - ["kotlin.text", "StringsKt", "getCASE_INSENSITIVE_ORDER", "(StringCompanionObject)", "generated"]
+      - ["kotlin.text", "StringsKt", "getIndices", "(CharSequence)", "generated"]
+      - ["kotlin.text", "StringsKt", "getLastIndex", "(CharSequence)", "generated"]
+      - ["kotlin.text", "StringsKt", "getOrElse", "(CharSequence,int,Function1)", "generated"]
+      - ["kotlin.text", "StringsKt", "getOrNull", "(CharSequence,int)", "generated"]
+      - ["kotlin.text", "StringsKt", "groupBy", "(CharSequence,Function1)", "generated"]
+      - ["kotlin.text", "StringsKt", "groupBy", "(CharSequence,Function1,Function1)", "generated"]
+      - ["kotlin.text", "StringsKt", "groupingBy", "(CharSequence,Function1)", "generated"]
+      - ["kotlin.text", "StringsKt", "hasSurrogatePairAt", "(CharSequence,int)", "generated"]
+      - ["kotlin.text", "StringsKt", "indexOf", "(CharSequence,String,int,boolean)", "generated"]
+      - ["kotlin.text", "StringsKt", "indexOf", "(CharSequence,char,int,boolean)", "generated"]
+      - ["kotlin.text", "StringsKt", "indexOfAny", "(CharSequence,Collection,int,boolean)", "generated"]
+      - ["kotlin.text", "StringsKt", "indexOfAny", "(CharSequence,char[],int,boolean)", "generated"]
+      - ["kotlin.text", "StringsKt", "indexOfFirst", "(CharSequence,Function1)", "generated"]
+      - ["kotlin.text", "StringsKt", "indexOfLast", "(CharSequence,Function1)", "generated"]
+      - ["kotlin.text", "StringsKt", "isBlank", "(CharSequence)", "generated"]
+      - ["kotlin.text", "StringsKt", "isEmpty", "(CharSequence)", "generated"]
+      - ["kotlin.text", "StringsKt", "isNotBlank", "(CharSequence)", "generated"]
+      - ["kotlin.text", "StringsKt", "isNotEmpty", "(CharSequence)", "generated"]
+      - ["kotlin.text", "StringsKt", "isNullOrBlank", "(CharSequence)", "generated"]
+      - ["kotlin.text", "StringsKt", "isNullOrEmpty", "(CharSequence)", "generated"]
+      - ["kotlin.text", "StringsKt", "iterator", "(CharSequence)", "generated"]
+      - ["kotlin.text", "StringsKt", "last", "(CharSequence)", "generated"]
+      - ["kotlin.text", "StringsKt", "last", "(CharSequence,Function1)", "generated"]
+      - ["kotlin.text", "StringsKt", "lastIndexOf", "(CharSequence,String,int,boolean)", "generated"]
+      - ["kotlin.text", "StringsKt", "lastIndexOf", "(CharSequence,char,int,boolean)", "generated"]
+      - ["kotlin.text", "StringsKt", "lastIndexOfAny", "(CharSequence,Collection,int,boolean)", "generated"]
+      - ["kotlin.text", "StringsKt", "lastIndexOfAny", "(CharSequence,char[],int,boolean)", "generated"]
+      - ["kotlin.text", "StringsKt", "lastOrNull", "(CharSequence)", "generated"]
+      - ["kotlin.text", "StringsKt", "lastOrNull", "(CharSequence,Function1)", "generated"]
+      - ["kotlin.text", "StringsKt", "map", "(CharSequence,Function1)", "generated"]
+      - ["kotlin.text", "StringsKt", "mapIndexed", "(CharSequence,Function2)", "generated"]
+      - ["kotlin.text", "StringsKt", "mapIndexedNotNull", "(CharSequence,Function2)", "generated"]
+      - ["kotlin.text", "StringsKt", "mapNotNull", "(CharSequence,Function1)", "generated"]
+      - ["kotlin.text", "StringsKt", "matches", "(CharSequence,Regex)", "generated"]
+      - ["kotlin.text", "StringsKt", "max", "(CharSequence)", "generated"]
+      - ["kotlin.text", "StringsKt", "maxBy", "(CharSequence,Function1)", "generated"]
+      - ["kotlin.text", "StringsKt", "maxByOrNull", "(CharSequence,Function1)", "generated"]
+      - ["kotlin.text", "StringsKt", "maxByOrThrow", "(CharSequence,Function1)", "generated"]
+      - ["kotlin.text", "StringsKt", "maxOf", "(CharSequence,Function1)", "generated"]
+      - ["kotlin.text", "StringsKt", "maxOfOrNull", "(CharSequence,Function1)", "generated"]
+      - ["kotlin.text", "StringsKt", "maxOfWith", "(CharSequence,Comparator,Function1)", "generated"]
+      - ["kotlin.text", "StringsKt", "maxOfWithOrNull", "(CharSequence,Comparator,Function1)", "generated"]
+      - ["kotlin.text", "StringsKt", "maxOrNull", "(CharSequence)", "generated"]
+      - ["kotlin.text", "StringsKt", "maxOrThrow", "(CharSequence)", "generated"]
+      - ["kotlin.text", "StringsKt", "maxWith", "(CharSequence,Comparator)", "generated"]
+      - ["kotlin.text", "StringsKt", "maxWithOrNull", "(CharSequence,Comparator)", "generated"]
+      - ["kotlin.text", "StringsKt", "maxWithOrThrow", "(CharSequence,Comparator)", "generated"]
+      - ["kotlin.text", "StringsKt", "min", "(CharSequence)", "generated"]
+      - ["kotlin.text", "StringsKt", "minBy", "(CharSequence,Function1)", "generated"]
+      - ["kotlin.text", "StringsKt", "minByOrNull", "(CharSequence,Function1)", "generated"]
+      - ["kotlin.text", "StringsKt", "minByOrThrow", "(CharSequence,Function1)", "generated"]
+      - ["kotlin.text", "StringsKt", "minOf", "(CharSequence,Function1)", "generated"]
+      - ["kotlin.text", "StringsKt", "minOfOrNull", "(CharSequence,Function1)", "generated"]
+      - ["kotlin.text", "StringsKt", "minOfWith", "(CharSequence,Comparator,Function1)", "generated"]
+      - ["kotlin.text", "StringsKt", "minOfWithOrNull", "(CharSequence,Comparator,Function1)", "generated"]
+      - ["kotlin.text", "StringsKt", "minOrNull", "(CharSequence)", "generated"]
+      - ["kotlin.text", "StringsKt", "minOrThrow", "(CharSequence)", "generated"]
+      - ["kotlin.text", "StringsKt", "minWith", "(CharSequence,Comparator)", "generated"]
+      - ["kotlin.text", "StringsKt", "minWithOrNull", "(CharSequence,Comparator)", "generated"]
+      - ["kotlin.text", "StringsKt", "minWithOrThrow", "(CharSequence,Comparator)", "generated"]
+      - ["kotlin.text", "StringsKt", "none", "(CharSequence)", "generated"]
+      - ["kotlin.text", "StringsKt", "none", "(CharSequence,Function1)", "generated"]
+      - ["kotlin.text", "StringsKt", "offsetByCodePoints", "(String,int,int)", "generated"]
+      - ["kotlin.text", "StringsKt", "padEnd", "(String,int,char)", "generated"]
+      - ["kotlin.text", "StringsKt", "padStart", "(String,int,char)", "generated"]
+      - ["kotlin.text", "StringsKt", "partition", "(CharSequence,Function1)", "generated"]
+      - ["kotlin.text", "StringsKt", "partition", "(String,Function1)", "generated"]
+      - ["kotlin.text", "StringsKt", "random", "(CharSequence)", "generated"]
+      - ["kotlin.text", "StringsKt", "random", "(CharSequence,Random)", "generated"]
+      - ["kotlin.text", "StringsKt", "randomOrNull", "(CharSequence)", "generated"]
+      - ["kotlin.text", "StringsKt", "randomOrNull", "(CharSequence,Random)", "generated"]
+      - ["kotlin.text", "StringsKt", "reduce", "(CharSequence,Function2)", "generated"]
+      - ["kotlin.text", "StringsKt", "reduceIndexed", "(CharSequence,Function3)", "generated"]
+      - ["kotlin.text", "StringsKt", "reduceIndexedOrNull", "(CharSequence,Function3)", "generated"]
+      - ["kotlin.text", "StringsKt", "reduceOrNull", "(CharSequence,Function2)", "generated"]
+      - ["kotlin.text", "StringsKt", "reduceRight", "(CharSequence,Function2)", "generated"]
+      - ["kotlin.text", "StringsKt", "reduceRightIndexed", "(CharSequence,Function3)", "generated"]
+      - ["kotlin.text", "StringsKt", "reduceRightIndexedOrNull", "(CharSequence,Function3)", "generated"]
+      - ["kotlin.text", "StringsKt", "reduceRightOrNull", "(CharSequence,Function2)", "generated"]
+      - ["kotlin.text", "StringsKt", "regionMatches", "(CharSequence,int,CharSequence,int,int,boolean)", "generated"]
+      - ["kotlin.text", "StringsKt", "regionMatches", "(String,int,String,int,int,boolean)", "generated"]
+      - ["kotlin.text", "StringsKt", "removeRange", "(String,IntRange)", "generated"]
+      - ["kotlin.text", "StringsKt", "removeRange", "(String,int,int)", "generated"]
+      - ["kotlin.text", "StringsKt", "replace", "(String,String,String,boolean)", "generated"]
+      - ["kotlin.text", "StringsKt", "replaceIndent", "(String,String)", "generated"]
+      - ["kotlin.text", "StringsKt", "replaceIndentByMargin", "(String,String,String)", "generated"]
+      - ["kotlin.text", "StringsKt", "replaceRange", "(String,IntRange,CharSequence)", "generated"]
+      - ["kotlin.text", "StringsKt", "replaceRange", "(String,int,int,CharSequence)", "generated"]
+      - ["kotlin.text", "StringsKt", "reversed", "(String)", "generated"]
+      - ["kotlin.text", "StringsKt", "runningReduce", "(CharSequence,Function2)", "generated"]
+      - ["kotlin.text", "StringsKt", "runningReduceIndexed", "(CharSequence,Function3)", "generated"]
+      - ["kotlin.text", "StringsKt", "set", "(StringBuilder,int,char)", "generated"]
+      - ["kotlin.text", "StringsKt", "single", "(CharSequence)", "generated"]
+      - ["kotlin.text", "StringsKt", "single", "(CharSequence,Function1)", "generated"]
+      - ["kotlin.text", "StringsKt", "singleOrNull", "(CharSequence)", "generated"]
+      - ["kotlin.text", "StringsKt", "singleOrNull", "(CharSequence,Function1)", "generated"]
+      - ["kotlin.text", "StringsKt", "slice", "(CharSequence,Iterable)", "generated"]
+      - ["kotlin.text", "StringsKt", "slice", "(String,Iterable)", "generated"]
+      - ["kotlin.text", "StringsKt", "split", "(CharSequence,Regex,int)", "generated"]
+      - ["kotlin.text", "StringsKt", "split", "(CharSequence,String[],boolean,int)", "generated"]
+      - ["kotlin.text", "StringsKt", "split", "(CharSequence,char[],boolean,int)", "generated"]
+      - ["kotlin.text", "StringsKt", "splitToSequence", "(CharSequence,Regex,int)", "generated"]
+      - ["kotlin.text", "StringsKt", "startsWith", "(CharSequence,CharSequence,boolean)", "generated"]
+      - ["kotlin.text", "StringsKt", "startsWith", "(CharSequence,CharSequence,int,boolean)", "generated"]
+      - ["kotlin.text", "StringsKt", "startsWith", "(CharSequence,char,boolean)", "generated"]
+      - ["kotlin.text", "StringsKt", "startsWith", "(String,String,boolean)", "generated"]
+      - ["kotlin.text", "StringsKt", "startsWith", "(String,String,int,boolean)", "generated"]
+      - ["kotlin.text", "StringsKt", "substring", "(CharSequence,IntRange)", "generated"]
+      - ["kotlin.text", "StringsKt", "substring", "(CharSequence,int,int)", "generated"]
+      - ["kotlin.text", "StringsKt", "sumBy", "(CharSequence,Function1)", "generated"]
+      - ["kotlin.text", "StringsKt", "sumByDouble", "(CharSequence,Function1)", "generated"]
+      - ["kotlin.text", "StringsKt", "sumOfBigDecimal", "(CharSequence,Function1)", "generated"]
+      - ["kotlin.text", "StringsKt", "sumOfBigInteger", "(CharSequence,Function1)", "generated"]
+      - ["kotlin.text", "StringsKt", "sumOfDouble", "(CharSequence,Function1)", "generated"]
+      - ["kotlin.text", "StringsKt", "sumOfInt", "(CharSequence,Function1)", "generated"]
+      - ["kotlin.text", "StringsKt", "sumOfLong", "(CharSequence,Function1)", "generated"]
+      - ["kotlin.text", "StringsKt", "sumOfUInt", "(CharSequence,Function1)", "generated"]
+      - ["kotlin.text", "StringsKt", "sumOfULong", "(CharSequence,Function1)", "generated"]
+      - ["kotlin.text", "StringsKt", "toBigDecimal", "(String)", "generated"]
+      - ["kotlin.text", "StringsKt", "toBigDecimal", "(String,MathContext)", "generated"]
+      - ["kotlin.text", "StringsKt", "toBigDecimalOrNull", "(String)", "generated"]
+      - ["kotlin.text", "StringsKt", "toBigDecimalOrNull", "(String,MathContext)", "generated"]
+      - ["kotlin.text", "StringsKt", "toBigInteger", "(String)", "generated"]
+      - ["kotlin.text", "StringsKt", "toBigInteger", "(String,int)", "generated"]
+      - ["kotlin.text", "StringsKt", "toBigIntegerOrNull", "(String)", "generated"]
+      - ["kotlin.text", "StringsKt", "toBigIntegerOrNull", "(String,int)", "generated"]
+      - ["kotlin.text", "StringsKt", "toBoolean", "(String)", "generated"]
+      - ["kotlin.text", "StringsKt", "toBooleanNullable", "(String)", "generated"]
+      - ["kotlin.text", "StringsKt", "toBooleanStrict", "(String)", "generated"]
+      - ["kotlin.text", "StringsKt", "toBooleanStrictOrNull", "(String)", "generated"]
+      - ["kotlin.text", "StringsKt", "toByte", "(String)", "generated"]
+      - ["kotlin.text", "StringsKt", "toByte", "(String,int)", "generated"]
+      - ["kotlin.text", "StringsKt", "toByteOrNull", "(String)", "generated"]
+      - ["kotlin.text", "StringsKt", "toByteOrNull", "(String,int)", "generated"]
+      - ["kotlin.text", "StringsKt", "toDouble", "(String)", "generated"]
+      - ["kotlin.text", "StringsKt", "toDoubleOrNull", "(String)", "generated"]
+      - ["kotlin.text", "StringsKt", "toFloat", "(String)", "generated"]
+      - ["kotlin.text", "StringsKt", "toFloatOrNull", "(String)", "generated"]
+      - ["kotlin.text", "StringsKt", "toHashSet", "(CharSequence)", "generated"]
+      - ["kotlin.text", "StringsKt", "toInt", "(String)", "generated"]
+      - ["kotlin.text", "StringsKt", "toInt", "(String,int)", "generated"]
+      - ["kotlin.text", "StringsKt", "toIntOrNull", "(String)", "generated"]
+      - ["kotlin.text", "StringsKt", "toIntOrNull", "(String,int)", "generated"]
+      - ["kotlin.text", "StringsKt", "toList", "(CharSequence)", "generated"]
+      - ["kotlin.text", "StringsKt", "toLong", "(String)", "generated"]
+      - ["kotlin.text", "StringsKt", "toLong", "(String,int)", "generated"]
+      - ["kotlin.text", "StringsKt", "toLongOrNull", "(String)", "generated"]
+      - ["kotlin.text", "StringsKt", "toLongOrNull", "(String,int)", "generated"]
+      - ["kotlin.text", "StringsKt", "toMutableList", "(CharSequence)", "generated"]
+      - ["kotlin.text", "StringsKt", "toPattern", "(String,int)", "generated"]
+      - ["kotlin.text", "StringsKt", "toRegex", "(String)", "generated"]
+      - ["kotlin.text", "StringsKt", "toRegex", "(String,RegexOption)", "generated"]
+      - ["kotlin.text", "StringsKt", "toRegex", "(String,Set)", "generated"]
+      - ["kotlin.text", "StringsKt", "toSet", "(CharSequence)", "generated"]
+      - ["kotlin.text", "StringsKt", "toShort", "(String)", "generated"]
+      - ["kotlin.text", "StringsKt", "toShort", "(String,int)", "generated"]
+      - ["kotlin.text", "StringsKt", "toShortOrNull", "(String)", "generated"]
+      - ["kotlin.text", "StringsKt", "toShortOrNull", "(String,int)", "generated"]
+      - ["kotlin.text", "StringsKt", "toSortedSet", "(CharSequence)", "generated"]
+      - ["kotlin.text", "StringsKt", "toString", "(byte,int)", "generated"]
+      - ["kotlin.text", "StringsKt", "toString", "(int,int)", "generated"]
+      - ["kotlin.text", "StringsKt", "toString", "(long,int)", "generated"]
+      - ["kotlin.text", "StringsKt", "toString", "(short,int)", "generated"]
+      - ["kotlin.text", "StringsKt", "trim", "(String)", "generated"]
+      - ["kotlin.text", "StringsKt", "trim", "(String,Function1)", "generated"]
+      - ["kotlin.text", "StringsKt", "trim", "(String,char[])", "generated"]
+      - ["kotlin.text", "StringsKt", "trimEnd", "(String)", "generated"]
+      - ["kotlin.text", "StringsKt", "trimEnd", "(String,Function1)", "generated"]
+      - ["kotlin.text", "StringsKt", "trimEnd", "(String,char[])", "generated"]
+      - ["kotlin.text", "StringsKt", "trimIndent", "(String)", "generated"]
+      - ["kotlin.text", "StringsKt", "trimMargin", "(String,String)", "generated"]
+      - ["kotlin.text", "StringsKt", "trimStart", "(String)", "generated"]
+      - ["kotlin.text", "StringsKt", "trimStart", "(String,Function1)", "generated"]
+      - ["kotlin.text", "StringsKt", "trimStart", "(String,char[])", "generated"]
+      - ["kotlin.text", "StringsKt", "windowed", "(CharSequence,int,int,boolean)", "generated"]
+      - ["kotlin.text", "StringsKt", "windowed", "(CharSequence,int,int,boolean,Function1)", "generated"]
+      - ["kotlin.text", "StringsKt", "windowedSequence", "(CharSequence,int,int,boolean)", "generated"]
+      - ["kotlin.text", "StringsKt", "windowedSequence", "(CharSequence,int,int,boolean,Function1)", "generated"]
+      - ["kotlin.text", "StringsKt", "withIndex", "(CharSequence)", "generated"]
+      - ["kotlin.text", "StringsKt", "zip", "(CharSequence,CharSequence)", "generated"]
+      - ["kotlin.text", "StringsKt", "zip", "(CharSequence,CharSequence,Function2)", "generated"]
+      - ["kotlin.text", "StringsKt", "zipWithNext", "(CharSequence)", "generated"]
+      - ["kotlin.text", "StringsKt", "zipWithNext", "(CharSequence,Function2)", "generated"]
+      - ["kotlin.text", "TextHKt", "String", "(char[])", "generated"]
+      - ["kotlin.text", "TextHKt", "String", "(char[],int,int)", "generated"]
+      - ["kotlin.text", "TextHKt", "compareTo", "(String,String,boolean)", "generated"]
+      - ["kotlin.text", "TextHKt", "concatToString", "(char[])", "generated"]
+      - ["kotlin.text", "TextHKt", "concatToString", "(char[],int,int)", "generated"]
+      - ["kotlin.text", "TextHKt", "decodeToString", "(byte[])", "generated"]
+      - ["kotlin.text", "TextHKt", "decodeToString", "(byte[],int,int,boolean)", "generated"]
+      - ["kotlin.text", "TextHKt", "encodeToByteArray", "(String)", "generated"]
+      - ["kotlin.text", "TextHKt", "encodeToByteArray", "(String,int,int,boolean)", "generated"]
+      - ["kotlin.text", "TextHKt", "endsWith", "(String,String,boolean)", "generated"]
+      - ["kotlin.text", "TextHKt", "equals", "(String,String,boolean)", "generated"]
+      - ["kotlin.text", "TextHKt", "getCASE_INSENSITIVE_ORDER", "(StringCompanionObject)", "generated"]
+      - ["kotlin.text", "TextHKt", "isBlank", "(CharSequence)", "generated"]
+      - ["kotlin.text", "TextHKt", "isHighSurrogate", "(char)", "generated"]
+      - ["kotlin.text", "TextHKt", "isLowSurrogate", "(char)", "generated"]
+      - ["kotlin.text", "TextHKt", "regionMatches", "(CharSequence,int,CharSequence,int,int,boolean)", "generated"]
+      - ["kotlin.text", "TextHKt", "repeat", "(CharSequence,int)", "generated"]
+      - ["kotlin.text", "TextHKt", "replace", "(String,String,String,boolean)", "generated"]
+      - ["kotlin.text", "TextHKt", "replace", "(String,char,char,boolean)", "generated"]
+      - ["kotlin.text", "TextHKt", "replaceFirst", "(String,String,String,boolean)", "generated"]
+      - ["kotlin.text", "TextHKt", "replaceFirst", "(String,char,char,boolean)", "generated"]
+      - ["kotlin.text", "TextHKt", "startsWith", "(String,String,boolean)", "generated"]
+      - ["kotlin.text", "TextHKt", "startsWith", "(String,String,int,boolean)", "generated"]
+      - ["kotlin.text", "TextHKt", "substring", "(String,int)", "generated"]
+      - ["kotlin.text", "TextHKt", "substring", "(String,int,int)", "generated"]
+      - ["kotlin.text", "TextHKt", "toBoolean", "(String)", "generated"]
+      - ["kotlin.text", "TextHKt", "toByte", "(String)", "generated"]
+      - ["kotlin.text", "TextHKt", "toByte", "(String,int)", "generated"]
+      - ["kotlin.text", "TextHKt", "toCharArray", "(String)", "generated"]
+      - ["kotlin.text", "TextHKt", "toCharArray", "(String,int,int)", "generated"]
+      - ["kotlin.text", "TextHKt", "toDouble", "(String)", "generated"]
+      - ["kotlin.text", "TextHKt", "toDoubleOrNull", "(String)", "generated"]
+      - ["kotlin.text", "TextHKt", "toFloat", "(String)", "generated"]
+      - ["kotlin.text", "TextHKt", "toFloatOrNull", "(String)", "generated"]
+      - ["kotlin.text", "TextHKt", "toInt", "(String)", "generated"]
+      - ["kotlin.text", "TextHKt", "toInt", "(String,int)", "generated"]
+      - ["kotlin.text", "TextHKt", "toLong", "(String)", "generated"]
+      - ["kotlin.text", "TextHKt", "toLong", "(String,int)", "generated"]
+      - ["kotlin.text", "TextHKt", "toShort", "(String)", "generated"]
+      - ["kotlin.text", "TextHKt", "toShort", "(String,int)", "generated"]
+      - ["kotlin.text", "TextHKt", "toString", "(byte,int)", "generated"]
+      - ["kotlin.text", "TextHKt", "toString", "(int,int)", "generated"]
+      - ["kotlin.text", "TextHKt", "toString", "(long,int)", "generated"]
+      - ["kotlin.text", "TextHKt", "toString", "(short,int)", "generated"]
+      - ["kotlin.text", "Typography", "getAlmostEqual", "()", "generated"]
+      - ["kotlin.text", "Typography", "getAmp", "()", "generated"]
+      - ["kotlin.text", "Typography", "getBullet", "()", "generated"]
+      - ["kotlin.text", "Typography", "getCent", "()", "generated"]
+      - ["kotlin.text", "Typography", "getCopyright", "()", "generated"]
+      - ["kotlin.text", "Typography", "getDagger", "()", "generated"]
+      - ["kotlin.text", "Typography", "getDegree", "()", "generated"]
+      - ["kotlin.text", "Typography", "getDollar", "()", "generated"]
+      - ["kotlin.text", "Typography", "getDoubleDagger", "()", "generated"]
+      - ["kotlin.text", "Typography", "getDoublePrime", "()", "generated"]
+      - ["kotlin.text", "Typography", "getEllipsis", "()", "generated"]
+      - ["kotlin.text", "Typography", "getEuro", "()", "generated"]
+      - ["kotlin.text", "Typography", "getGreater", "()", "generated"]
+      - ["kotlin.text", "Typography", "getGreaterOrEqual", "()", "generated"]
+      - ["kotlin.text", "Typography", "getHalf", "()", "generated"]
+      - ["kotlin.text", "Typography", "getLeftDoubleQuote", "()", "generated"]
+      - ["kotlin.text", "Typography", "getLeftGuillemet", "()", "generated"]
+      - ["kotlin.text", "Typography", "getLeftGuillemete", "()", "generated"]
+      - ["kotlin.text", "Typography", "getLeftSingleQuote", "()", "generated"]
+      - ["kotlin.text", "Typography", "getLess", "()", "generated"]
+      - ["kotlin.text", "Typography", "getLessOrEqual", "()", "generated"]
+      - ["kotlin.text", "Typography", "getLowDoubleQuote", "()", "generated"]
+      - ["kotlin.text", "Typography", "getLowSingleQuote", "()", "generated"]
+      - ["kotlin.text", "Typography", "getMdash", "()", "generated"]
+      - ["kotlin.text", "Typography", "getMiddleDot", "()", "generated"]
+      - ["kotlin.text", "Typography", "getNbsp", "()", "generated"]
+      - ["kotlin.text", "Typography", "getNdash", "()", "generated"]
+      - ["kotlin.text", "Typography", "getNotEqual", "()", "generated"]
+      - ["kotlin.text", "Typography", "getParagraph", "()", "generated"]
+      - ["kotlin.text", "Typography", "getPlusMinus", "()", "generated"]
+      - ["kotlin.text", "Typography", "getPound", "()", "generated"]
+      - ["kotlin.text", "Typography", "getPrime", "()", "generated"]
+      - ["kotlin.text", "Typography", "getQuote", "()", "generated"]
+      - ["kotlin.text", "Typography", "getRegistered", "()", "generated"]
+      - ["kotlin.text", "Typography", "getRightDoubleQuote", "()", "generated"]
+      - ["kotlin.text", "Typography", "getRightGuillemet", "()", "generated"]
+      - ["kotlin.text", "Typography", "getRightGuillemete", "()", "generated"]
+      - ["kotlin.text", "Typography", "getRightSingleQuote", "()", "generated"]
+      - ["kotlin.text", "Typography", "getSection", "()", "generated"]
+      - ["kotlin.text", "Typography", "getTimes", "()", "generated"]
+      - ["kotlin.text", "Typography", "getTm", "()", "generated"]
+      - ["kotlin.text", "UStringsKt", "toString", "(byte,int)", "generated"]
+      - ["kotlin.text", "UStringsKt", "toString", "(int,int)", "generated"]
+      - ["kotlin.text", "UStringsKt", "toString", "(long,int)", "generated"]
+      - ["kotlin.text", "UStringsKt", "toString", "(short,int)", "generated"]
+      - ["kotlin.text", "UStringsKt", "toUByte", "(String)", "generated"]
+      - ["kotlin.text", "UStringsKt", "toUByte", "(String,int)", "generated"]
+      - ["kotlin.text", "UStringsKt", "toUByteOrNull", "(String)", "generated"]
+      - ["kotlin.text", "UStringsKt", "toUByteOrNull", "(String,int)", "generated"]
+      - ["kotlin.text", "UStringsKt", "toUInt", "(String)", "generated"]
+      - ["kotlin.text", "UStringsKt", "toUInt", "(String,int)", "generated"]
+      - ["kotlin.text", "UStringsKt", "toUIntOrNull", "(String)", "generated"]
+      - ["kotlin.text", "UStringsKt", "toUIntOrNull", "(String,int)", "generated"]
+      - ["kotlin.text", "UStringsKt", "toULong", "(String)", "generated"]
+      - ["kotlin.text", "UStringsKt", "toULong", "(String,int)", "generated"]
+      - ["kotlin.text", "UStringsKt", "toULongOrNull", "(String)", "generated"]
+      - ["kotlin.text", "UStringsKt", "toULongOrNull", "(String,int)", "generated"]
+      - ["kotlin.text", "UStringsKt", "toUShort", "(String)", "generated"]
+      - ["kotlin.text", "UStringsKt", "toUShort", "(String,int)", "generated"]
+      - ["kotlin.text", "UStringsKt", "toUShortOrNull", "(String)", "generated"]
+      - ["kotlin.text", "UStringsKt", "toUShortOrNull", "(String,int)", "generated"]
+      - ["kotlin.time", "AbstractDoubleTimeSource", "AbstractDoubleTimeSource", "(DurationUnit)", "generated"]
+      - ["kotlin.time", "AbstractLongTimeSource", "AbstractLongTimeSource", "(DurationUnit)", "generated"]
+      - ["kotlin.time", "Duration", "div", "(Duration)", "generated"]
+      - ["kotlin.time", "Duration", "equals", "(Object)", "generated"]
+      - ["kotlin.time", "Duration", "getInDays", "()", "generated"]
+      - ["kotlin.time", "Duration", "getInHours", "()", "generated"]
+      - ["kotlin.time", "Duration", "getInMicroseconds", "()", "generated"]
+      - ["kotlin.time", "Duration", "getInMilliseconds", "()", "generated"]
+      - ["kotlin.time", "Duration", "getInMinutes", "()", "generated"]
+      - ["kotlin.time", "Duration", "getInNanoseconds", "()", "generated"]
+      - ["kotlin.time", "Duration", "getInSeconds", "()", "generated"]
+      - ["kotlin.time", "Duration", "getInWholeDays", "()", "generated"]
+      - ["kotlin.time", "Duration", "getInWholeHours", "()", "generated"]
+      - ["kotlin.time", "Duration", "getInWholeMicroseconds", "()", "generated"]
+      - ["kotlin.time", "Duration", "getInWholeMilliseconds", "()", "generated"]
+      - ["kotlin.time", "Duration", "getInWholeMinutes", "()", "generated"]
+      - ["kotlin.time", "Duration", "getInWholeNanoseconds", "()", "generated"]
+      - ["kotlin.time", "Duration", "getInWholeSeconds", "()", "generated"]
+      - ["kotlin.time", "Duration", "hashCode", "()", "generated"]
+      - ["kotlin.time", "Duration", "isFinite", "()", "generated"]
+      - ["kotlin.time", "Duration", "isInfinite", "()", "generated"]
+      - ["kotlin.time", "Duration", "isNegative", "()", "generated"]
+      - ["kotlin.time", "Duration", "isPositive", "()", "generated"]
+      - ["kotlin.time", "Duration", "toComponents", "(Function2)", "generated"]
+      - ["kotlin.time", "Duration", "toComponents", "(Function3)", "generated"]
+      - ["kotlin.time", "Duration", "toComponents", "(Function4)", "generated"]
+      - ["kotlin.time", "Duration", "toComponents", "(Function5)", "generated"]
+      - ["kotlin.time", "Duration", "toDouble", "(DurationUnit)", "generated"]
+      - ["kotlin.time", "Duration", "toInt", "(DurationUnit)", "generated"]
+      - ["kotlin.time", "Duration", "toIsoString", "()", "generated"]
+      - ["kotlin.time", "Duration", "toLong", "(DurationUnit)", "generated"]
+      - ["kotlin.time", "Duration", "toLongMilliseconds", "()", "generated"]
+      - ["kotlin.time", "Duration", "toLongNanoseconds", "()", "generated"]
+      - ["kotlin.time", "Duration", "toString", "()", "generated"]
+      - ["kotlin.time", "Duration", "toString", "(DurationUnit,int)", "generated"]
+      - ["kotlin.time", "Duration", "unaryMinus", "()", "generated"]
+      - ["kotlin.time", "Duration$Companion", "convert", "(double,DurationUnit,DurationUnit)", "generated"]
+      - ["kotlin.time", "Duration$Companion", "days", "(double)", "generated"]
+      - ["kotlin.time", "Duration$Companion", "days", "(int)", "generated"]
+      - ["kotlin.time", "Duration$Companion", "days", "(long)", "generated"]
+      - ["kotlin.time", "Duration$Companion", "getDays", "(double)", "generated"]
+      - ["kotlin.time", "Duration$Companion", "getDays", "(int)", "generated"]
+      - ["kotlin.time", "Duration$Companion", "getDays", "(long)", "generated"]
+      - ["kotlin.time", "Duration$Companion", "getHours", "(double)", "generated"]
+      - ["kotlin.time", "Duration$Companion", "getHours", "(int)", "generated"]
+      - ["kotlin.time", "Duration$Companion", "getHours", "(long)", "generated"]
+      - ["kotlin.time", "Duration$Companion", "getMicroseconds", "(double)", "generated"]
+      - ["kotlin.time", "Duration$Companion", "getMicroseconds", "(int)", "generated"]
+      - ["kotlin.time", "Duration$Companion", "getMicroseconds", "(long)", "generated"]
+      - ["kotlin.time", "Duration$Companion", "getMilliseconds", "(double)", "generated"]
+      - ["kotlin.time", "Duration$Companion", "getMilliseconds", "(int)", "generated"]
+      - ["kotlin.time", "Duration$Companion", "getMilliseconds", "(long)", "generated"]
+      - ["kotlin.time", "Duration$Companion", "getMinutes", "(double)", "generated"]
+      - ["kotlin.time", "Duration$Companion", "getMinutes", "(int)", "generated"]
+      - ["kotlin.time", "Duration$Companion", "getMinutes", "(long)", "generated"]
+      - ["kotlin.time", "Duration$Companion", "getNanoseconds", "(double)", "generated"]
+      - ["kotlin.time", "Duration$Companion", "getNanoseconds", "(int)", "generated"]
+      - ["kotlin.time", "Duration$Companion", "getNanoseconds", "(long)", "generated"]
+      - ["kotlin.time", "Duration$Companion", "getSeconds", "(double)", "generated"]
+      - ["kotlin.time", "Duration$Companion", "getSeconds", "(int)", "generated"]
+      - ["kotlin.time", "Duration$Companion", "getSeconds", "(long)", "generated"]
+      - ["kotlin.time", "Duration$Companion", "hours", "(double)", "generated"]
+      - ["kotlin.time", "Duration$Companion", "hours", "(int)", "generated"]
+      - ["kotlin.time", "Duration$Companion", "hours", "(long)", "generated"]
+      - ["kotlin.time", "Duration$Companion", "microseconds", "(double)", "generated"]
+      - ["kotlin.time", "Duration$Companion", "microseconds", "(int)", "generated"]
+      - ["kotlin.time", "Duration$Companion", "microseconds", "(long)", "generated"]
+      - ["kotlin.time", "Duration$Companion", "milliseconds", "(double)", "generated"]
+      - ["kotlin.time", "Duration$Companion", "milliseconds", "(int)", "generated"]
+      - ["kotlin.time", "Duration$Companion", "milliseconds", "(long)", "generated"]
+      - ["kotlin.time", "Duration$Companion", "minutes", "(double)", "generated"]
+      - ["kotlin.time", "Duration$Companion", "minutes", "(int)", "generated"]
+      - ["kotlin.time", "Duration$Companion", "minutes", "(long)", "generated"]
+      - ["kotlin.time", "Duration$Companion", "nanoseconds", "(double)", "generated"]
+      - ["kotlin.time", "Duration$Companion", "nanoseconds", "(int)", "generated"]
+      - ["kotlin.time", "Duration$Companion", "nanoseconds", "(long)", "generated"]
+      - ["kotlin.time", "Duration$Companion", "parse", "(String)", "generated"]
+      - ["kotlin.time", "Duration$Companion", "parseIsoString", "(String)", "generated"]
+      - ["kotlin.time", "Duration$Companion", "parseIsoStringOrNull", "(String)", "generated"]
+      - ["kotlin.time", "Duration$Companion", "parseOrNull", "(String)", "generated"]
+      - ["kotlin.time", "Duration$Companion", "seconds", "(double)", "generated"]
+      - ["kotlin.time", "Duration$Companion", "seconds", "(int)", "generated"]
+      - ["kotlin.time", "Duration$Companion", "seconds", "(long)", "generated"]
+      - ["kotlin.time", "DurationKt", "getDays", "(double)", "generated"]
+      - ["kotlin.time", "DurationKt", "getDays", "(int)", "generated"]
+      - ["kotlin.time", "DurationKt", "getDays", "(long)", "generated"]
+      - ["kotlin.time", "DurationKt", "getHours", "(double)", "generated"]
+      - ["kotlin.time", "DurationKt", "getHours", "(int)", "generated"]
+      - ["kotlin.time", "DurationKt", "getHours", "(long)", "generated"]
+      - ["kotlin.time", "DurationKt", "getMicroseconds", "(double)", "generated"]
+      - ["kotlin.time", "DurationKt", "getMicroseconds", "(int)", "generated"]
+      - ["kotlin.time", "DurationKt", "getMicroseconds", "(long)", "generated"]
+      - ["kotlin.time", "DurationKt", "getMilliseconds", "(double)", "generated"]
+      - ["kotlin.time", "DurationKt", "getMilliseconds", "(int)", "generated"]
+      - ["kotlin.time", "DurationKt", "getMilliseconds", "(long)", "generated"]
+      - ["kotlin.time", "DurationKt", "getMinutes", "(double)", "generated"]
+      - ["kotlin.time", "DurationKt", "getMinutes", "(int)", "generated"]
+      - ["kotlin.time", "DurationKt", "getMinutes", "(long)", "generated"]
+      - ["kotlin.time", "DurationKt", "getNanoseconds", "(double)", "generated"]
+      - ["kotlin.time", "DurationKt", "getNanoseconds", "(int)", "generated"]
+      - ["kotlin.time", "DurationKt", "getNanoseconds", "(long)", "generated"]
+      - ["kotlin.time", "DurationKt", "getSeconds", "(double)", "generated"]
+      - ["kotlin.time", "DurationKt", "getSeconds", "(int)", "generated"]
+      - ["kotlin.time", "DurationKt", "getSeconds", "(long)", "generated"]
+      - ["kotlin.time", "DurationKt", "toDuration", "(double,DurationUnit)", "generated"]
+      - ["kotlin.time", "DurationKt", "toDuration", "(int,DurationUnit)", "generated"]
+      - ["kotlin.time", "DurationKt", "toDuration", "(long,DurationUnit)", "generated"]
+      - ["kotlin.time", "DurationUnit", "valueOf", "(String)", "generated"]
+      - ["kotlin.time", "DurationUnit", "values", "()", "generated"]
+      - ["kotlin.time", "DurationUnitKt", "toDurationUnit", "(TimeUnit)", "generated"]
+      - ["kotlin.time", "DurationUnitKt", "toTimeUnit", "(DurationUnit)", "generated"]
+      - ["kotlin.time", "ExperimentalTime", "ExperimentalTime", "()", "generated"]
+      - ["kotlin.time", "MeasureTimeKt", "measureTime", "(Function0)", "generated"]
+      - ["kotlin.time", "MeasureTimeKt", "measureTime", "(Monotonic,Function0)", "generated"]
+      - ["kotlin.time", "MeasureTimeKt", "measureTime", "(TimeSource,Function0)", "generated"]
+      - ["kotlin.time", "MeasureTimeKt", "measureTimedValue", "(Function0)", "generated"]
+      - ["kotlin.time", "MeasureTimeKt", "measureTimedValue", "(Monotonic,Function0)", "generated"]
+      - ["kotlin.time", "MeasureTimeKt", "measureTimedValue", "(TimeSource,Function0)", "generated"]
+      - ["kotlin.time", "TestTimeSource", "TestTimeSource", "()", "generated"]
+      - ["kotlin.time", "TestTimeSource", "plusAssign", "(Duration)", "generated"]
+      - ["kotlin.time", "TimeMark", "elapsedNow", "()", "generated"]
+      - ["kotlin.time", "TimeMark", "hasNotPassedNow", "()", "generated"]
+      - ["kotlin.time", "TimeMark", "hasPassedNow", "()", "generated"]
+      - ["kotlin.time", "TimeMark", "minus", "(Duration)", "generated"]
+      - ["kotlin.time", "TimeMark", "plus", "(Duration)", "generated"]
+      - ["kotlin.time", "TimeSource", "markNow", "()", "generated"]
+      - ["kotlin.time", "TimeSource$Monotonic", "toString", "()", "generated"]
+      - ["kotlin.time", "TimeSource$Monotonic$ValueTimeMark", "equals", "(Object)", "generated"]
+      - ["kotlin.time", "TimeSource$Monotonic$ValueTimeMark", "hashCode", "()", "generated"]
+      - ["kotlin.time", "TimeSource$Monotonic$ValueTimeMark", "toString", "()", "generated"]
+      - ["kotlin.time", "TimeSourceKt", "compareTo", "(TimeMark,TimeMark)", "generated"]
+      - ["kotlin.time", "TimeSourceKt", "minus", "(TimeMark,TimeMark)", "generated"]
+      - ["kotlin.time", "TimedValue", "equals", "(Object)", "generated"]
+      - ["kotlin.time", "TimedValue", "hashCode", "()", "generated"]
+      - ["kotlin", "ArithmeticException", "ArithmeticException", "()", "generated"]
+      - ["kotlin", "ArithmeticException", "ArithmeticException", "(String)", "generated"]
+      - ["kotlin", "ArrayIntrinsicsKt", "emptyArray", "()", "generated"]
+      - ["kotlin", "AssertionError", "AssertionError", "()", "generated"]
+      - ["kotlin", "AssertionError", "AssertionError", "(Object)", "generated"]
+      - ["kotlin", "BuilderInference", "BuilderInference", "()", "generated"]
+      - ["kotlin", "CharCodeJVMKt", "Char", "(short)", "generated"]
+      - ["kotlin", "CharCodeKt", "Char", "(int)", "generated"]
+      - ["kotlin", "CharCodeKt", "Char", "(short)", "generated"]
+      - ["kotlin", "CharCodeKt", "getCode", "(char)", "generated"]
+      - ["kotlin", "ClassCastException", "ClassCastException", "()", "generated"]
+      - ["kotlin", "ClassCastException", "ClassCastException", "(String)", "generated"]
+      - ["kotlin", "Comparator", "compare", "(Object,Object)", "generated"]
+      - ["kotlin", "CompareToKt", "compareTo", "(Comparable,Object)", "generated"]
+      - ["kotlin", "ConcurrentModificationException", "ConcurrentModificationException", "()", "generated"]
+      - ["kotlin", "ConcurrentModificationException", "ConcurrentModificationException", "(String)", "generated"]
+      - ["kotlin", "ConcurrentModificationException", "ConcurrentModificationException", "(String,Throwable)", "generated"]
+      - ["kotlin", "ConcurrentModificationException", "ConcurrentModificationException", "(Throwable)", "generated"]
+      - ["kotlin", "ContextFunctionTypeParams", "ContextFunctionTypeParams", "(int)", "generated"]
+      - ["kotlin", "ContextFunctionTypeParams", "count", "()", "generated"]
+      - ["kotlin", "DeepRecursiveKt", "invoke", "(DeepRecursiveFunction,Object)", "generated"]
+      - ["kotlin", "DeepRecursiveScope", "callRecursive", "(DeepRecursiveFunction,Object)", "generated"]
+      - ["kotlin", "DeepRecursiveScope", "callRecursive", "(Object)", "generated"]
+      - ["kotlin", "DeepRecursiveScope", "invoke", "(DeepRecursiveFunction,Object)", "generated"]
+      - ["kotlin", "Deprecated", "Deprecated", "(String,ReplaceWith,DeprecationLevel)", "generated"]
+      - ["kotlin", "Deprecated", "level", "()", "generated"]
+      - ["kotlin", "Deprecated", "message", "()", "generated"]
+      - ["kotlin", "Deprecated", "replaceWith", "()", "generated"]
+      - ["kotlin", "DeprecatedSinceKotlin", "DeprecatedSinceKotlin", "(String,String,String)", "generated"]
+      - ["kotlin", "DeprecatedSinceKotlin", "errorSince", "()", "generated"]
+      - ["kotlin", "DeprecatedSinceKotlin", "hiddenSince", "()", "generated"]
+      - ["kotlin", "DeprecatedSinceKotlin", "warningSince", "()", "generated"]
+      - ["kotlin", "DeprecationLevel", "valueOf", "(String)", "generated"]
+      - ["kotlin", "DeprecationLevel", "values", "()", "generated"]
+      - ["kotlin", "DslMarker", "DslMarker", "()", "generated"]
+      - ["kotlin", "Error", "Error", "()", "generated"]
+      - ["kotlin", "Error", "Error", "(String)", "generated"]
+      - ["kotlin", "Error", "Error", "(String,Throwable)", "generated"]
+      - ["kotlin", "Error", "Error", "(Throwable)", "generated"]
+      - ["kotlin", "Exception", "Exception", "()", "generated"]
+      - ["kotlin", "Exception", "Exception", "(String)", "generated"]
+      - ["kotlin", "Exception", "Exception", "(String,Throwable)", "generated"]
+      - ["kotlin", "Exception", "Exception", "(Throwable)", "generated"]
+      - ["kotlin", "ExceptionsHKt", "addSuppressed", "(Throwable,Throwable)", "generated"]
+      - ["kotlin", "ExceptionsHKt", "getSuppressedExceptions", "(Throwable)", "generated"]
+      - ["kotlin", "ExceptionsHKt", "printStackTrace", "(Throwable)", "generated"]
+      - ["kotlin", "ExceptionsHKt", "stackTraceToString", "(Throwable)", "generated"]
+      - ["kotlin", "ExceptionsKt", "addSuppressed", "(Throwable,Throwable)", "generated"]
+      - ["kotlin", "ExceptionsKt", "getStackTrace", "(Throwable)", "generated"]
+      - ["kotlin", "ExceptionsKt", "getSuppressedExceptions", "(Throwable)", "generated"]
+      - ["kotlin", "ExceptionsKt", "printStackTrace", "(Throwable)", "generated"]
+      - ["kotlin", "ExceptionsKt", "printStackTrace", "(Throwable,PrintStream)", "generated"]
+      - ["kotlin", "ExceptionsKt", "printStackTrace", "(Throwable,PrintWriter)", "generated"]
+      - ["kotlin", "ExceptionsKt", "stackTraceToString", "(Throwable)", "generated"]
+      - ["kotlin", "Experimental", "Experimental", "(Level)", "generated"]
+      - ["kotlin", "Experimental", "level", "()", "generated"]
+      - ["kotlin", "Experimental$Level", "valueOf", "(String)", "generated"]
+      - ["kotlin", "Experimental$Level", "values", "()", "generated"]
+      - ["kotlin", "ExperimentalMultiplatform", "ExperimentalMultiplatform", "()", "generated"]
+      - ["kotlin", "ExperimentalStdlibApi", "ExperimentalStdlibApi", "()", "generated"]
+      - ["kotlin", "ExperimentalUnsignedTypes", "ExperimentalUnsignedTypes", "()", "generated"]
+      - ["kotlin", "ExtensionFunctionType", "ExtensionFunctionType", "()", "generated"]
+      - ["kotlin", "HashCodeKt", "hashCode", "(Object)", "generated"]
+      - ["kotlin", "IllegalArgumentException", "IllegalArgumentException", "()", "generated"]
+      - ["kotlin", "IllegalArgumentException", "IllegalArgumentException", "(String)", "generated"]
+      - ["kotlin", "IllegalArgumentException", "IllegalArgumentException", "(String,Throwable)", "generated"]
+      - ["kotlin", "IllegalArgumentException", "IllegalArgumentException", "(Throwable)", "generated"]
+      - ["kotlin", "IllegalStateException", "IllegalStateException", "()", "generated"]
+      - ["kotlin", "IllegalStateException", "IllegalStateException", "(String)", "generated"]
+      - ["kotlin", "IllegalStateException", "IllegalStateException", "(String,Throwable)", "generated"]
+      - ["kotlin", "IllegalStateException", "IllegalStateException", "(Throwable)", "generated"]
+      - ["kotlin", "IndexOutOfBoundsException", "IndexOutOfBoundsException", "()", "generated"]
+      - ["kotlin", "IndexOutOfBoundsException", "IndexOutOfBoundsException", "(String)", "generated"]
+      - ["kotlin", "KotlinHKt", "fromBits", "(DoubleCompanionObject,long)", "generated"]
+      - ["kotlin", "KotlinHKt", "fromBits", "(FloatCompanionObject,int)", "generated"]
+      - ["kotlin", "KotlinHKt", "isFinite", "(double)", "generated"]
+      - ["kotlin", "KotlinHKt", "isFinite", "(float)", "generated"]
+      - ["kotlin", "KotlinHKt", "isInfinite", "(double)", "generated"]
+      - ["kotlin", "KotlinHKt", "isInfinite", "(float)", "generated"]
+      - ["kotlin", "KotlinHKt", "isNaN", "(double)", "generated"]
+      - ["kotlin", "KotlinHKt", "isNaN", "(float)", "generated"]
+      - ["kotlin", "KotlinHKt", "lazy", "(Function0)", "generated"]
+      - ["kotlin", "KotlinHKt", "lazy", "(LazyThreadSafetyMode,Function0)", "generated"]
+      - ["kotlin", "KotlinHKt", "lazy", "(Object,Function0)", "generated"]
+      - ["kotlin", "KotlinHKt", "toBits", "(double)", "generated"]
+      - ["kotlin", "KotlinHKt", "toBits", "(float)", "generated"]
+      - ["kotlin", "KotlinHKt", "toRawBits", "(double)", "generated"]
+      - ["kotlin", "KotlinHKt", "toRawBits", "(float)", "generated"]
+      - ["kotlin", "KotlinNullPointerException", "KotlinNullPointerException", "()", "generated"]
+      - ["kotlin", "KotlinNullPointerException", "KotlinNullPointerException", "(String)", "generated"]
+      - ["kotlin", "KotlinVersion", "KotlinVersion", "(int,int)", "generated"]
+      - ["kotlin", "KotlinVersion", "KotlinVersion", "(int,int,int)", "generated"]
+      - ["kotlin", "KotlinVersion", "equals", "(Object)", "generated"]
+      - ["kotlin", "KotlinVersion", "getMajor", "()", "generated"]
+      - ["kotlin", "KotlinVersion", "getMinor", "()", "generated"]
+      - ["kotlin", "KotlinVersion", "getPatch", "()", "generated"]
+      - ["kotlin", "KotlinVersion", "hashCode", "()", "generated"]
+      - ["kotlin", "KotlinVersion", "isAtLeast", "(int,int)", "generated"]
+      - ["kotlin", "KotlinVersion", "isAtLeast", "(int,int,int)", "generated"]
+      - ["kotlin", "KotlinVersion", "toString", "()", "generated"]
+      - ["kotlin", "KotlinVersion$Companion", "getMAX_COMPONENT_VALUE", "()", "generated"]
+      - ["kotlin", "LateinitKt", "isInitialized", "(KProperty0)", "generated"]
+      - ["kotlin", "Lazy", "getValue", "()", "generated"]
+      - ["kotlin", "Lazy", "isInitialized", "()", "generated"]
+      - ["kotlin", "LazyThreadSafetyMode", "valueOf", "(String)", "generated"]
+      - ["kotlin", "LazyThreadSafetyMode", "values", "()", "generated"]
+      - ["kotlin", "Metadata", "Metadata", "(int,int[],int[],String[],String[],String,String,int)", "generated"]
+      - ["kotlin", "Metadata", "bv", "()", "generated"]
+      - ["kotlin", "Metadata", "d1", "()", "generated"]
+      - ["kotlin", "Metadata", "d2", "()", "generated"]
+      - ["kotlin", "Metadata", "k", "()", "generated"]
+      - ["kotlin", "Metadata", "mv", "()", "generated"]
+      - ["kotlin", "Metadata", "pn", "()", "generated"]
+      - ["kotlin", "Metadata", "xi", "()", "generated"]
+      - ["kotlin", "Metadata", "xs", "()", "generated"]
+      - ["kotlin", "NoSuchElementException", "NoSuchElementException", "()", "generated"]
+      - ["kotlin", "NoSuchElementException", "NoSuchElementException", "(String)", "generated"]
+      - ["kotlin", "NoWhenBranchMatchedException", "NoWhenBranchMatchedException", "()", "generated"]
+      - ["kotlin", "NoWhenBranchMatchedException", "NoWhenBranchMatchedException", "(String)", "generated"]
+      - ["kotlin", "NoWhenBranchMatchedException", "NoWhenBranchMatchedException", "(String,Throwable)", "generated"]
+      - ["kotlin", "NoWhenBranchMatchedException", "NoWhenBranchMatchedException", "(Throwable)", "generated"]
+      - ["kotlin", "NotImplementedError", "NotImplementedError", "(String)", "generated"]
+      - ["kotlin", "NullPointerException", "NullPointerException", "()", "generated"]
+      - ["kotlin", "NullPointerException", "NullPointerException", "(String)", "generated"]
+      - ["kotlin", "NumberFormatException", "NumberFormatException", "()", "generated"]
+      - ["kotlin", "NumberFormatException", "NumberFormatException", "(String)", "generated"]
+      - ["kotlin", "NumbersKt", "and", "(BigInteger,BigInteger)", "generated"]
+      - ["kotlin", "NumbersKt", "countLeadingZeroBits", "(byte)", "generated"]
+      - ["kotlin", "NumbersKt", "countLeadingZeroBits", "(int)", "generated"]
+      - ["kotlin", "NumbersKt", "countLeadingZeroBits", "(long)", "generated"]
+      - ["kotlin", "NumbersKt", "countLeadingZeroBits", "(short)", "generated"]
+      - ["kotlin", "NumbersKt", "countOneBits", "(byte)", "generated"]
+      - ["kotlin", "NumbersKt", "countOneBits", "(int)", "generated"]
+      - ["kotlin", "NumbersKt", "countOneBits", "(long)", "generated"]
+      - ["kotlin", "NumbersKt", "countOneBits", "(short)", "generated"]
+      - ["kotlin", "NumbersKt", "countTrailingZeroBits", "(byte)", "generated"]
+      - ["kotlin", "NumbersKt", "countTrailingZeroBits", "(int)", "generated"]
+      - ["kotlin", "NumbersKt", "countTrailingZeroBits", "(long)", "generated"]
+      - ["kotlin", "NumbersKt", "countTrailingZeroBits", "(short)", "generated"]
+      - ["kotlin", "NumbersKt", "dec", "(BigDecimal)", "generated"]
+      - ["kotlin", "NumbersKt", "dec", "(BigInteger)", "generated"]
+      - ["kotlin", "NumbersKt", "div", "(BigDecimal,BigDecimal)", "generated"]
+      - ["kotlin", "NumbersKt", "div", "(BigInteger,BigInteger)", "generated"]
+      - ["kotlin", "NumbersKt", "floorDiv", "(byte,byte)", "generated"]
+      - ["kotlin", "NumbersKt", "floorDiv", "(byte,int)", "generated"]
+      - ["kotlin", "NumbersKt", "floorDiv", "(byte,long)", "generated"]
+      - ["kotlin", "NumbersKt", "floorDiv", "(byte,short)", "generated"]
+      - ["kotlin", "NumbersKt", "floorDiv", "(int,byte)", "generated"]
+      - ["kotlin", "NumbersKt", "floorDiv", "(int,int)", "generated"]
+      - ["kotlin", "NumbersKt", "floorDiv", "(int,long)", "generated"]
+      - ["kotlin", "NumbersKt", "floorDiv", "(int,short)", "generated"]
+      - ["kotlin", "NumbersKt", "floorDiv", "(long,byte)", "generated"]
+      - ["kotlin", "NumbersKt", "floorDiv", "(long,int)", "generated"]
+      - ["kotlin", "NumbersKt", "floorDiv", "(long,long)", "generated"]
+      - ["kotlin", "NumbersKt", "floorDiv", "(long,short)", "generated"]
+      - ["kotlin", "NumbersKt", "floorDiv", "(short,byte)", "generated"]
+      - ["kotlin", "NumbersKt", "floorDiv", "(short,int)", "generated"]
+      - ["kotlin", "NumbersKt", "floorDiv", "(short,long)", "generated"]
+      - ["kotlin", "NumbersKt", "floorDiv", "(short,short)", "generated"]
+      - ["kotlin", "NumbersKt", "fromBits", "(DoubleCompanionObject,long)", "generated"]
+      - ["kotlin", "NumbersKt", "fromBits", "(FloatCompanionObject,int)", "generated"]
+      - ["kotlin", "NumbersKt", "inc", "(BigDecimal)", "generated"]
+      - ["kotlin", "NumbersKt", "inc", "(BigInteger)", "generated"]
+      - ["kotlin", "NumbersKt", "inv", "(BigInteger)", "generated"]
+      - ["kotlin", "NumbersKt", "isFinite", "(double)", "generated"]
+      - ["kotlin", "NumbersKt", "isFinite", "(float)", "generated"]
+      - ["kotlin", "NumbersKt", "isInfinite", "(double)", "generated"]
+      - ["kotlin", "NumbersKt", "isInfinite", "(float)", "generated"]
+      - ["kotlin", "NumbersKt", "isNaN", "(double)", "generated"]
+      - ["kotlin", "NumbersKt", "isNaN", "(float)", "generated"]
+      - ["kotlin", "NumbersKt", "minus", "(BigDecimal,BigDecimal)", "generated"]
+      - ["kotlin", "NumbersKt", "minus", "(BigInteger,BigInteger)", "generated"]
+      - ["kotlin", "NumbersKt", "mod", "(byte,byte)", "generated"]
+      - ["kotlin", "NumbersKt", "mod", "(byte,int)", "generated"]
+      - ["kotlin", "NumbersKt", "mod", "(byte,long)", "generated"]
+      - ["kotlin", "NumbersKt", "mod", "(byte,short)", "generated"]
+      - ["kotlin", "NumbersKt", "mod", "(double,double)", "generated"]
+      - ["kotlin", "NumbersKt", "mod", "(double,float)", "generated"]
+      - ["kotlin", "NumbersKt", "mod", "(float,double)", "generated"]
+      - ["kotlin", "NumbersKt", "mod", "(float,float)", "generated"]
+      - ["kotlin", "NumbersKt", "mod", "(int,byte)", "generated"]
+      - ["kotlin", "NumbersKt", "mod", "(int,int)", "generated"]
+      - ["kotlin", "NumbersKt", "mod", "(int,long)", "generated"]
+      - ["kotlin", "NumbersKt", "mod", "(int,short)", "generated"]
+      - ["kotlin", "NumbersKt", "mod", "(long,byte)", "generated"]
+      - ["kotlin", "NumbersKt", "mod", "(long,int)", "generated"]
+      - ["kotlin", "NumbersKt", "mod", "(long,long)", "generated"]
+      - ["kotlin", "NumbersKt", "mod", "(long,short)", "generated"]
+      - ["kotlin", "NumbersKt", "mod", "(short,byte)", "generated"]
+      - ["kotlin", "NumbersKt", "mod", "(short,int)", "generated"]
+      - ["kotlin", "NumbersKt", "mod", "(short,long)", "generated"]
+      - ["kotlin", "NumbersKt", "mod", "(short,short)", "generated"]
+      - ["kotlin", "NumbersKt", "or", "(BigInteger,BigInteger)", "generated"]
+      - ["kotlin", "NumbersKt", "plus", "(BigDecimal,BigDecimal)", "generated"]
+      - ["kotlin", "NumbersKt", "plus", "(BigInteger,BigInteger)", "generated"]
+      - ["kotlin", "NumbersKt", "rem", "(BigDecimal,BigDecimal)", "generated"]
+      - ["kotlin", "NumbersKt", "rem", "(BigInteger,BigInteger)", "generated"]
+      - ["kotlin", "NumbersKt", "rotateLeft", "(byte,int)", "generated"]
+      - ["kotlin", "NumbersKt", "rotateLeft", "(int,int)", "generated"]
+      - ["kotlin", "NumbersKt", "rotateLeft", "(long,int)", "generated"]
+      - ["kotlin", "NumbersKt", "rotateLeft", "(short,int)", "generated"]
+      - ["kotlin", "NumbersKt", "rotateRight", "(byte,int)", "generated"]
+      - ["kotlin", "NumbersKt", "rotateRight", "(int,int)", "generated"]
+      - ["kotlin", "NumbersKt", "rotateRight", "(long,int)", "generated"]
+      - ["kotlin", "NumbersKt", "rotateRight", "(short,int)", "generated"]
+      - ["kotlin", "NumbersKt", "shl", "(BigInteger,int)", "generated"]
+      - ["kotlin", "NumbersKt", "shr", "(BigInteger,int)", "generated"]
+      - ["kotlin", "NumbersKt", "takeHighestOneBit", "(byte)", "generated"]
+      - ["kotlin", "NumbersKt", "takeHighestOneBit", "(int)", "generated"]
+      - ["kotlin", "NumbersKt", "takeHighestOneBit", "(long)", "generated"]
+      - ["kotlin", "NumbersKt", "takeHighestOneBit", "(short)", "generated"]
+      - ["kotlin", "NumbersKt", "takeLowestOneBit", "(byte)", "generated"]
+      - ["kotlin", "NumbersKt", "takeLowestOneBit", "(int)", "generated"]
+      - ["kotlin", "NumbersKt", "takeLowestOneBit", "(long)", "generated"]
+      - ["kotlin", "NumbersKt", "takeLowestOneBit", "(short)", "generated"]
+      - ["kotlin", "NumbersKt", "times", "(BigDecimal,BigDecimal)", "generated"]
+      - ["kotlin", "NumbersKt", "times", "(BigInteger,BigInteger)", "generated"]
+      - ["kotlin", "NumbersKt", "toBigDecimal", "(BigInteger)", "generated"]
+      - ["kotlin", "NumbersKt", "toBigDecimal", "(BigInteger,int,MathContext)", "generated"]
+      - ["kotlin", "NumbersKt", "toBigDecimal", "(double)", "generated"]
+      - ["kotlin", "NumbersKt", "toBigDecimal", "(double,MathContext)", "generated"]
+      - ["kotlin", "NumbersKt", "toBigDecimal", "(float)", "generated"]
+      - ["kotlin", "NumbersKt", "toBigDecimal", "(float,MathContext)", "generated"]
+      - ["kotlin", "NumbersKt", "toBigDecimal", "(int)", "generated"]
+      - ["kotlin", "NumbersKt", "toBigDecimal", "(int,MathContext)", "generated"]
+      - ["kotlin", "NumbersKt", "toBigDecimal", "(long)", "generated"]
+      - ["kotlin", "NumbersKt", "toBigDecimal", "(long,MathContext)", "generated"]
+      - ["kotlin", "NumbersKt", "toBigInteger", "(int)", "generated"]
+      - ["kotlin", "NumbersKt", "toBigInteger", "(long)", "generated"]
+      - ["kotlin", "NumbersKt", "toBits", "(double)", "generated"]
+      - ["kotlin", "NumbersKt", "toBits", "(float)", "generated"]
+      - ["kotlin", "NumbersKt", "toRawBits", "(double)", "generated"]
+      - ["kotlin", "NumbersKt", "toRawBits", "(float)", "generated"]
+      - ["kotlin", "NumbersKt", "unaryMinus", "(BigDecimal)", "generated"]
+      - ["kotlin", "NumbersKt", "unaryMinus", "(BigInteger)", "generated"]
+      - ["kotlin", "NumbersKt", "xor", "(BigInteger,BigInteger)", "generated"]
+      - ["kotlin", "OptIn", "OptIn", "(KClass[])", "generated"]
+      - ["kotlin", "OptIn", "markerClass", "()", "generated"]
+      - ["kotlin", "OptionalExpectation", "OptionalExpectation", "()", "generated"]
+      - ["kotlin", "OverloadResolutionByLambdaReturnType", "OverloadResolutionByLambdaReturnType", "()", "generated"]
+      - ["kotlin", "Pair", "equals", "(Object)", "generated"]
+      - ["kotlin", "Pair", "hashCode", "()", "generated"]
+      - ["kotlin", "ParameterName", "ParameterName", "(String)", "generated"]
+      - ["kotlin", "ParameterName", "name", "()", "generated"]
+      - ["kotlin", "PreconditionsKt", "assert", "(boolean)", "generated"]
+      - ["kotlin", "PreconditionsKt", "assert", "(boolean,Function0)", "generated"]
+      - ["kotlin", "PreconditionsKt", "check", "(boolean)", "generated"]
+      - ["kotlin", "PreconditionsKt", "check", "(boolean,Function0)", "generated"]
+      - ["kotlin", "PreconditionsKt", "error", "(Object)", "generated"]
+      - ["kotlin", "PreconditionsKt", "require", "(boolean)", "generated"]
+      - ["kotlin", "PreconditionsKt", "require", "(boolean,Function0)", "generated"]
+      - ["kotlin", "PropertyReferenceDelegatesKt", "getValue", "(KProperty0,Object,KProperty)", "generated"]
+      - ["kotlin", "PropertyReferenceDelegatesKt", "getValue", "(KProperty1,Object,KProperty)", "generated"]
+      - ["kotlin", "PropertyReferenceDelegatesKt", "setValue", "(KMutableProperty0,Object,KProperty,Object)", "generated"]
+      - ["kotlin", "PropertyReferenceDelegatesKt", "setValue", "(KMutableProperty1,Object,KProperty,Object)", "generated"]
+      - ["kotlin", "PublishedApi", "PublishedApi", "()", "generated"]
+      - ["kotlin", "ReplaceWith", "ReplaceWith", "(String,String[])", "generated"]
+      - ["kotlin", "ReplaceWith", "expression", "()", "generated"]
+      - ["kotlin", "ReplaceWith", "imports", "()", "generated"]
+      - ["kotlin", "RequiresOptIn", "RequiresOptIn", "(String,Level)", "generated"]
+      - ["kotlin", "RequiresOptIn", "level", "()", "generated"]
+      - ["kotlin", "RequiresOptIn", "message", "()", "generated"]
+      - ["kotlin", "RequiresOptIn$Level", "valueOf", "(String)", "generated"]
+      - ["kotlin", "RequiresOptIn$Level", "values", "()", "generated"]
+      - ["kotlin", "Result", "equals", "(Object)", "generated"]
+      - ["kotlin", "Result", "hashCode", "()", "generated"]
+      - ["kotlin", "Result", "isFailure", "()", "generated"]
+      - ["kotlin", "Result", "isSuccess", "()", "generated"]
+      - ["kotlin", "ResultKt", "runCatching", "(Function0)", "generated"]
+      - ["kotlin", "ResultKt", "runCatching", "(Object,Function1)", "generated"]
+      - ["kotlin", "RuntimeException", "RuntimeException", "()", "generated"]
+      - ["kotlin", "RuntimeException", "RuntimeException", "(String)", "generated"]
+      - ["kotlin", "RuntimeException", "RuntimeException", "(String,Throwable)", "generated"]
+      - ["kotlin", "RuntimeException", "RuntimeException", "(Throwable)", "generated"]
+      - ["kotlin", "SinceKotlin", "SinceKotlin", "(String)", "generated"]
+      - ["kotlin", "SinceKotlin", "version", "()", "generated"]
+      - ["kotlin", "StandardKt", "TODO", "()", "generated"]
+      - ["kotlin", "StandardKt", "TODO", "(String)", "generated"]
+      - ["kotlin", "StandardKt", "repeat", "(int,Function1)", "generated"]
+      - ["kotlin", "StandardKt", "run", "(Function0)", "generated"]
+      - ["kotlin", "StandardKt", "synchronized", "(Object,Function0)", "generated"]
+      - ["kotlin", "Suppress", "Suppress", "(String[])", "generated"]
+      - ["kotlin", "Suppress", "names", "()", "generated"]
+      - ["kotlin", "Throws", "Throws", "(KClass[])", "generated"]
+      - ["kotlin", "Throws", "exceptionClasses", "()", "generated"]
+      - ["kotlin", "Triple", "equals", "(Object)", "generated"]
+      - ["kotlin", "Triple", "hashCode", "()", "generated"]
+      - ["kotlin", "TypeCastException", "TypeCastException", "()", "generated"]
+      - ["kotlin", "TypeCastException", "TypeCastException", "(String)", "generated"]
+      - ["kotlin", "UByte", "and", "(byte)", "generated"]
+      - ["kotlin", "UByte", "compareTo", "(byte)", "generated"]
+      - ["kotlin", "UByte", "compareTo", "(int)", "generated"]
+      - ["kotlin", "UByte", "compareTo", "(long)", "generated"]
+      - ["kotlin", "UByte", "compareTo", "(short)", "generated"]
+      - ["kotlin", "UByte", "dec", "()", "generated"]
+      - ["kotlin", "UByte", "div", "(byte)", "generated"]
+      - ["kotlin", "UByte", "div", "(int)", "generated"]
+      - ["kotlin", "UByte", "div", "(long)", "generated"]
+      - ["kotlin", "UByte", "div", "(short)", "generated"]
+      - ["kotlin", "UByte", "equals", "(Object)", "generated"]
+      - ["kotlin", "UByte", "floorDiv", "(byte)", "generated"]
+      - ["kotlin", "UByte", "floorDiv", "(int)", "generated"]
+      - ["kotlin", "UByte", "floorDiv", "(long)", "generated"]
+      - ["kotlin", "UByte", "floorDiv", "(short)", "generated"]
+      - ["kotlin", "UByte", "hashCode", "()", "generated"]
+      - ["kotlin", "UByte", "inc", "()", "generated"]
+      - ["kotlin", "UByte", "inv", "()", "generated"]
+      - ["kotlin", "UByte", "minus", "(byte)", "generated"]
+      - ["kotlin", "UByte", "minus", "(int)", "generated"]
+      - ["kotlin", "UByte", "minus", "(long)", "generated"]
+      - ["kotlin", "UByte", "minus", "(short)", "generated"]
+      - ["kotlin", "UByte", "mod", "(byte)", "generated"]
+      - ["kotlin", "UByte", "mod", "(int)", "generated"]
+      - ["kotlin", "UByte", "mod", "(long)", "generated"]
+      - ["kotlin", "UByte", "mod", "(short)", "generated"]
+      - ["kotlin", "UByte", "or", "(byte)", "generated"]
+      - ["kotlin", "UByte", "plus", "(byte)", "generated"]
+      - ["kotlin", "UByte", "plus", "(int)", "generated"]
+      - ["kotlin", "UByte", "plus", "(long)", "generated"]
+      - ["kotlin", "UByte", "plus", "(short)", "generated"]
+      - ["kotlin", "UByte", "rangeTo", "(byte)", "generated"]
+      - ["kotlin", "UByte", "rem", "(byte)", "generated"]
+      - ["kotlin", "UByte", "rem", "(int)", "generated"]
+      - ["kotlin", "UByte", "rem", "(long)", "generated"]
+      - ["kotlin", "UByte", "rem", "(short)", "generated"]
+      - ["kotlin", "UByte", "times", "(byte)", "generated"]
+      - ["kotlin", "UByte", "times", "(int)", "generated"]
+      - ["kotlin", "UByte", "times", "(long)", "generated"]
+      - ["kotlin", "UByte", "times", "(short)", "generated"]
+      - ["kotlin", "UByte", "toByte", "()", "generated"]
+      - ["kotlin", "UByte", "toDouble", "()", "generated"]
+      - ["kotlin", "UByte", "toFloat", "()", "generated"]
+      - ["kotlin", "UByte", "toInt", "()", "generated"]
+      - ["kotlin", "UByte", "toLong", "()", "generated"]
+      - ["kotlin", "UByte", "toShort", "()", "generated"]
+      - ["kotlin", "UByte", "toString", "()", "generated"]
+      - ["kotlin", "UByte", "toUInt", "()", "generated"]
+      - ["kotlin", "UByte", "toULong", "()", "generated"]
+      - ["kotlin", "UByte", "toUShort", "()", "generated"]
+      - ["kotlin", "UByte", "xor", "(byte)", "generated"]
+      - ["kotlin", "UByte$Companion", "getMAX_VALUE", "()", "generated"]
+      - ["kotlin", "UByte$Companion", "getMIN_VALUE", "()", "generated"]
+      - ["kotlin", "UByte$Companion", "getSIZE_BITS", "()", "generated"]
+      - ["kotlin", "UByte$Companion", "getSIZE_BYTES", "()", "generated"]
+      - ["kotlin", "UByteArray", "UByteArray", "(int)", "generated"]
+      - ["kotlin", "UByteArray", "equals", "(Object)", "generated"]
+      - ["kotlin", "UByteArray", "get", "(int)", "generated"]
+      - ["kotlin", "UByteArray", "hashCode", "()", "generated"]
+      - ["kotlin", "UByteArray", "set", "(int,byte)", "generated"]
+      - ["kotlin", "UByteArray", "toString", "()", "generated"]
+      - ["kotlin", "UByteArrayKt", "UByteArray", "(int,Function1)", "generated"]
+      - ["kotlin", "UByteKt", "toUByte", "(byte)", "generated"]
+      - ["kotlin", "UByteKt", "toUByte", "(int)", "generated"]
+      - ["kotlin", "UByteKt", "toUByte", "(long)", "generated"]
+      - ["kotlin", "UByteKt", "toUByte", "(short)", "generated"]
+      - ["kotlin", "UInt", "and", "(int)", "generated"]
+      - ["kotlin", "UInt", "compareTo", "(byte)", "generated"]
+      - ["kotlin", "UInt", "compareTo", "(int)", "generated"]
+      - ["kotlin", "UInt", "compareTo", "(long)", "generated"]
+      - ["kotlin", "UInt", "compareTo", "(short)", "generated"]
+      - ["kotlin", "UInt", "dec", "()", "generated"]
+      - ["kotlin", "UInt", "div", "(byte)", "generated"]
+      - ["kotlin", "UInt", "div", "(int)", "generated"]
+      - ["kotlin", "UInt", "div", "(long)", "generated"]
+      - ["kotlin", "UInt", "div", "(short)", "generated"]
+      - ["kotlin", "UInt", "equals", "(Object)", "generated"]
+      - ["kotlin", "UInt", "floorDiv", "(byte)", "generated"]
+      - ["kotlin", "UInt", "floorDiv", "(int)", "generated"]
+      - ["kotlin", "UInt", "floorDiv", "(long)", "generated"]
+      - ["kotlin", "UInt", "floorDiv", "(short)", "generated"]
+      - ["kotlin", "UInt", "hashCode", "()", "generated"]
+      - ["kotlin", "UInt", "inc", "()", "generated"]
+      - ["kotlin", "UInt", "inv", "()", "generated"]
+      - ["kotlin", "UInt", "minus", "(byte)", "generated"]
+      - ["kotlin", "UInt", "minus", "(int)", "generated"]
+      - ["kotlin", "UInt", "minus", "(long)", "generated"]
+      - ["kotlin", "UInt", "minus", "(short)", "generated"]
+      - ["kotlin", "UInt", "mod", "(byte)", "generated"]
+      - ["kotlin", "UInt", "mod", "(int)", "generated"]
+      - ["kotlin", "UInt", "mod", "(long)", "generated"]
+      - ["kotlin", "UInt", "mod", "(short)", "generated"]
+      - ["kotlin", "UInt", "or", "(int)", "generated"]
+      - ["kotlin", "UInt", "plus", "(byte)", "generated"]
+      - ["kotlin", "UInt", "plus", "(int)", "generated"]
+      - ["kotlin", "UInt", "plus", "(long)", "generated"]
+      - ["kotlin", "UInt", "plus", "(short)", "generated"]
+      - ["kotlin", "UInt", "rangeTo", "(int)", "generated"]
+      - ["kotlin", "UInt", "rem", "(byte)", "generated"]
+      - ["kotlin", "UInt", "rem", "(int)", "generated"]
+      - ["kotlin", "UInt", "rem", "(long)", "generated"]
+      - ["kotlin", "UInt", "rem", "(short)", "generated"]
+      - ["kotlin", "UInt", "shl", "(int)", "generated"]
+      - ["kotlin", "UInt", "shr", "(int)", "generated"]
+      - ["kotlin", "UInt", "times", "(byte)", "generated"]
+      - ["kotlin", "UInt", "times", "(int)", "generated"]
+      - ["kotlin", "UInt", "times", "(long)", "generated"]
+      - ["kotlin", "UInt", "times", "(short)", "generated"]
+      - ["kotlin", "UInt", "toByte", "()", "generated"]
+      - ["kotlin", "UInt", "toDouble", "()", "generated"]
+      - ["kotlin", "UInt", "toFloat", "()", "generated"]
+      - ["kotlin", "UInt", "toInt", "()", "generated"]
+      - ["kotlin", "UInt", "toLong", "()", "generated"]
+      - ["kotlin", "UInt", "toShort", "()", "generated"]
+      - ["kotlin", "UInt", "toString", "()", "generated"]
+      - ["kotlin", "UInt", "toUByte", "()", "generated"]
+      - ["kotlin", "UInt", "toULong", "()", "generated"]
+      - ["kotlin", "UInt", "toUShort", "()", "generated"]
+      - ["kotlin", "UInt", "xor", "(int)", "generated"]
+      - ["kotlin", "UInt$Companion", "getMAX_VALUE", "()", "generated"]
+      - ["kotlin", "UInt$Companion", "getMIN_VALUE", "()", "generated"]
+      - ["kotlin", "UInt$Companion", "getSIZE_BITS", "()", "generated"]
+      - ["kotlin", "UInt$Companion", "getSIZE_BYTES", "()", "generated"]
+      - ["kotlin", "UIntArray", "UIntArray", "(int)", "generated"]
+      - ["kotlin", "UIntArray", "equals", "(Object)", "generated"]
+      - ["kotlin", "UIntArray", "get", "(int)", "generated"]
+      - ["kotlin", "UIntArray", "hashCode", "()", "generated"]
+      - ["kotlin", "UIntArray", "set", "(int,int)", "generated"]
+      - ["kotlin", "UIntArray", "toString", "()", "generated"]
+      - ["kotlin", "UIntArrayKt", "UIntArray", "(int,Function1)", "generated"]
+      - ["kotlin", "UIntKt", "toUInt", "(byte)", "generated"]
+      - ["kotlin", "UIntKt", "toUInt", "(double)", "generated"]
+      - ["kotlin", "UIntKt", "toUInt", "(float)", "generated"]
+      - ["kotlin", "UIntKt", "toUInt", "(int)", "generated"]
+      - ["kotlin", "UIntKt", "toUInt", "(long)", "generated"]
+      - ["kotlin", "UIntKt", "toUInt", "(short)", "generated"]
+      - ["kotlin", "ULong", "and", "(long)", "generated"]
+      - ["kotlin", "ULong", "compareTo", "(byte)", "generated"]
+      - ["kotlin", "ULong", "compareTo", "(int)", "generated"]
+      - ["kotlin", "ULong", "compareTo", "(long)", "generated"]
+      - ["kotlin", "ULong", "compareTo", "(short)", "generated"]
+      - ["kotlin", "ULong", "dec", "()", "generated"]
+      - ["kotlin", "ULong", "div", "(byte)", "generated"]
+      - ["kotlin", "ULong", "div", "(int)", "generated"]
+      - ["kotlin", "ULong", "div", "(long)", "generated"]
+      - ["kotlin", "ULong", "div", "(short)", "generated"]
+      - ["kotlin", "ULong", "equals", "(Object)", "generated"]
+      - ["kotlin", "ULong", "floorDiv", "(byte)", "generated"]
+      - ["kotlin", "ULong", "floorDiv", "(int)", "generated"]
+      - ["kotlin", "ULong", "floorDiv", "(long)", "generated"]
+      - ["kotlin", "ULong", "floorDiv", "(short)", "generated"]
+      - ["kotlin", "ULong", "hashCode", "()", "generated"]
+      - ["kotlin", "ULong", "inc", "()", "generated"]
+      - ["kotlin", "ULong", "inv", "()", "generated"]
+      - ["kotlin", "ULong", "minus", "(byte)", "generated"]
+      - ["kotlin", "ULong", "minus", "(int)", "generated"]
+      - ["kotlin", "ULong", "minus", "(long)", "generated"]
+      - ["kotlin", "ULong", "minus", "(short)", "generated"]
+      - ["kotlin", "ULong", "mod", "(byte)", "generated"]
+      - ["kotlin", "ULong", "mod", "(int)", "generated"]
+      - ["kotlin", "ULong", "mod", "(long)", "generated"]
+      - ["kotlin", "ULong", "mod", "(short)", "generated"]
+      - ["kotlin", "ULong", "or", "(long)", "generated"]
+      - ["kotlin", "ULong", "plus", "(byte)", "generated"]
+      - ["kotlin", "ULong", "plus", "(int)", "generated"]
+      - ["kotlin", "ULong", "plus", "(long)", "generated"]
+      - ["kotlin", "ULong", "plus", "(short)", "generated"]
+      - ["kotlin", "ULong", "rangeTo", "(long)", "generated"]
+      - ["kotlin", "ULong", "rem", "(byte)", "generated"]
+      - ["kotlin", "ULong", "rem", "(int)", "generated"]
+      - ["kotlin", "ULong", "rem", "(long)", "generated"]
+      - ["kotlin", "ULong", "rem", "(short)", "generated"]
+      - ["kotlin", "ULong", "shl", "(int)", "generated"]
+      - ["kotlin", "ULong", "shr", "(int)", "generated"]
+      - ["kotlin", "ULong", "times", "(byte)", "generated"]
+      - ["kotlin", "ULong", "times", "(int)", "generated"]
+      - ["kotlin", "ULong", "times", "(long)", "generated"]
+      - ["kotlin", "ULong", "times", "(short)", "generated"]
+      - ["kotlin", "ULong", "toByte", "()", "generated"]
+      - ["kotlin", "ULong", "toDouble", "()", "generated"]
+      - ["kotlin", "ULong", "toFloat", "()", "generated"]
+      - ["kotlin", "ULong", "toInt", "()", "generated"]
+      - ["kotlin", "ULong", "toLong", "()", "generated"]
+      - ["kotlin", "ULong", "toShort", "()", "generated"]
+      - ["kotlin", "ULong", "toString", "()", "generated"]
+      - ["kotlin", "ULong", "toUByte", "()", "generated"]
+      - ["kotlin", "ULong", "toUInt", "()", "generated"]
+      - ["kotlin", "ULong", "toUShort", "()", "generated"]
+      - ["kotlin", "ULong", "xor", "(long)", "generated"]
+      - ["kotlin", "ULong$Companion", "getMAX_VALUE", "()", "generated"]
+      - ["kotlin", "ULong$Companion", "getMIN_VALUE", "()", "generated"]
+      - ["kotlin", "ULong$Companion", "getSIZE_BITS", "()", "generated"]
+      - ["kotlin", "ULong$Companion", "getSIZE_BYTES", "()", "generated"]
+      - ["kotlin", "ULongArray", "ULongArray", "(int)", "generated"]
+      - ["kotlin", "ULongArray", "equals", "(Object)", "generated"]
+      - ["kotlin", "ULongArray", "get", "(int)", "generated"]
+      - ["kotlin", "ULongArray", "hashCode", "()", "generated"]
+      - ["kotlin", "ULongArray", "set", "(int,long)", "generated"]
+      - ["kotlin", "ULongArray", "toString", "()", "generated"]
+      - ["kotlin", "ULongArrayKt", "ULongArray", "(int,Function1)", "generated"]
+      - ["kotlin", "ULongKt", "toULong", "(byte)", "generated"]
+      - ["kotlin", "ULongKt", "toULong", "(double)", "generated"]
+      - ["kotlin", "ULongKt", "toULong", "(float)", "generated"]
+      - ["kotlin", "ULongKt", "toULong", "(int)", "generated"]
+      - ["kotlin", "ULongKt", "toULong", "(long)", "generated"]
+      - ["kotlin", "ULongKt", "toULong", "(short)", "generated"]
+      - ["kotlin", "UNumbersKt", "countLeadingZeroBits", "(byte)", "generated"]
+      - ["kotlin", "UNumbersKt", "countLeadingZeroBits", "(int)", "generated"]
+      - ["kotlin", "UNumbersKt", "countLeadingZeroBits", "(long)", "generated"]
+      - ["kotlin", "UNumbersKt", "countLeadingZeroBits", "(short)", "generated"]
+      - ["kotlin", "UNumbersKt", "countOneBits", "(byte)", "generated"]
+      - ["kotlin", "UNumbersKt", "countOneBits", "(int)", "generated"]
+      - ["kotlin", "UNumbersKt", "countOneBits", "(long)", "generated"]
+      - ["kotlin", "UNumbersKt", "countOneBits", "(short)", "generated"]
+      - ["kotlin", "UNumbersKt", "countTrailingZeroBits", "(byte)", "generated"]
+      - ["kotlin", "UNumbersKt", "countTrailingZeroBits", "(int)", "generated"]
+      - ["kotlin", "UNumbersKt", "countTrailingZeroBits", "(long)", "generated"]
+      - ["kotlin", "UNumbersKt", "countTrailingZeroBits", "(short)", "generated"]
+      - ["kotlin", "UNumbersKt", "rotateLeft", "(byte,int)", "generated"]
+      - ["kotlin", "UNumbersKt", "rotateLeft", "(int,int)", "generated"]
+      - ["kotlin", "UNumbersKt", "rotateLeft", "(long,int)", "generated"]
+      - ["kotlin", "UNumbersKt", "rotateLeft", "(short,int)", "generated"]
+      - ["kotlin", "UNumbersKt", "rotateRight", "(byte,int)", "generated"]
+      - ["kotlin", "UNumbersKt", "rotateRight", "(int,int)", "generated"]
+      - ["kotlin", "UNumbersKt", "rotateRight", "(long,int)", "generated"]
+      - ["kotlin", "UNumbersKt", "rotateRight", "(short,int)", "generated"]
+      - ["kotlin", "UNumbersKt", "takeHighestOneBit", "(byte)", "generated"]
+      - ["kotlin", "UNumbersKt", "takeHighestOneBit", "(int)", "generated"]
+      - ["kotlin", "UNumbersKt", "takeHighestOneBit", "(long)", "generated"]
+      - ["kotlin", "UNumbersKt", "takeHighestOneBit", "(short)", "generated"]
+      - ["kotlin", "UNumbersKt", "takeLowestOneBit", "(byte)", "generated"]
+      - ["kotlin", "UNumbersKt", "takeLowestOneBit", "(int)", "generated"]
+      - ["kotlin", "UNumbersKt", "takeLowestOneBit", "(long)", "generated"]
+      - ["kotlin", "UNumbersKt", "takeLowestOneBit", "(short)", "generated"]
+      - ["kotlin", "UShort", "and", "(short)", "generated"]
+      - ["kotlin", "UShort", "compareTo", "(byte)", "generated"]
+      - ["kotlin", "UShort", "compareTo", "(int)", "generated"]
+      - ["kotlin", "UShort", "compareTo", "(long)", "generated"]
+      - ["kotlin", "UShort", "compareTo", "(short)", "generated"]
+      - ["kotlin", "UShort", "dec", "()", "generated"]
+      - ["kotlin", "UShort", "div", "(byte)", "generated"]
+      - ["kotlin", "UShort", "div", "(int)", "generated"]
+      - ["kotlin", "UShort", "div", "(long)", "generated"]
+      - ["kotlin", "UShort", "div", "(short)", "generated"]
+      - ["kotlin", "UShort", "equals", "(Object)", "generated"]
+      - ["kotlin", "UShort", "floorDiv", "(byte)", "generated"]
+      - ["kotlin", "UShort", "floorDiv", "(int)", "generated"]
+      - ["kotlin", "UShort", "floorDiv", "(long)", "generated"]
+      - ["kotlin", "UShort", "floorDiv", "(short)", "generated"]
+      - ["kotlin", "UShort", "hashCode", "()", "generated"]
+      - ["kotlin", "UShort", "inc", "()", "generated"]
+      - ["kotlin", "UShort", "inv", "()", "generated"]
+      - ["kotlin", "UShort", "minus", "(byte)", "generated"]
+      - ["kotlin", "UShort", "minus", "(int)", "generated"]
+      - ["kotlin", "UShort", "minus", "(long)", "generated"]
+      - ["kotlin", "UShort", "minus", "(short)", "generated"]
+      - ["kotlin", "UShort", "mod", "(byte)", "generated"]
+      - ["kotlin", "UShort", "mod", "(int)", "generated"]
+      - ["kotlin", "UShort", "mod", "(long)", "generated"]
+      - ["kotlin", "UShort", "mod", "(short)", "generated"]
+      - ["kotlin", "UShort", "or", "(short)", "generated"]
+      - ["kotlin", "UShort", "plus", "(byte)", "generated"]
+      - ["kotlin", "UShort", "plus", "(int)", "generated"]
+      - ["kotlin", "UShort", "plus", "(long)", "generated"]
+      - ["kotlin", "UShort", "plus", "(short)", "generated"]
+      - ["kotlin", "UShort", "rangeTo", "(short)", "generated"]
+      - ["kotlin", "UShort", "rem", "(byte)", "generated"]
+      - ["kotlin", "UShort", "rem", "(int)", "generated"]
+      - ["kotlin", "UShort", "rem", "(long)", "generated"]
+      - ["kotlin", "UShort", "rem", "(short)", "generated"]
+      - ["kotlin", "UShort", "times", "(byte)", "generated"]
+      - ["kotlin", "UShort", "times", "(int)", "generated"]
+      - ["kotlin", "UShort", "times", "(long)", "generated"]
+      - ["kotlin", "UShort", "times", "(short)", "generated"]
+      - ["kotlin", "UShort", "toByte", "()", "generated"]
+      - ["kotlin", "UShort", "toDouble", "()", "generated"]
+      - ["kotlin", "UShort", "toFloat", "()", "generated"]
+      - ["kotlin", "UShort", "toInt", "()", "generated"]
+      - ["kotlin", "UShort", "toLong", "()", "generated"]
+      - ["kotlin", "UShort", "toShort", "()", "generated"]
+      - ["kotlin", "UShort", "toString", "()", "generated"]
+      - ["kotlin", "UShort", "toUByte", "()", "generated"]
+      - ["kotlin", "UShort", "toUInt", "()", "generated"]
+      - ["kotlin", "UShort", "toULong", "()", "generated"]
+      - ["kotlin", "UShort", "xor", "(short)", "generated"]
+      - ["kotlin", "UShort$Companion", "getMAX_VALUE", "()", "generated"]
+      - ["kotlin", "UShort$Companion", "getMIN_VALUE", "()", "generated"]
+      - ["kotlin", "UShort$Companion", "getSIZE_BITS", "()", "generated"]
+      - ["kotlin", "UShort$Companion", "getSIZE_BYTES", "()", "generated"]
+      - ["kotlin", "UShortArray", "UShortArray", "(int)", "generated"]
+      - ["kotlin", "UShortArray", "equals", "(Object)", "generated"]
+      - ["kotlin", "UShortArray", "get", "(int)", "generated"]
+      - ["kotlin", "UShortArray", "hashCode", "()", "generated"]
+      - ["kotlin", "UShortArray", "set", "(int,short)", "generated"]
+      - ["kotlin", "UShortArray", "toString", "()", "generated"]
+      - ["kotlin", "UShortArrayKt", "UShortArray", "(int,Function1)", "generated"]
+      - ["kotlin", "UShortKt", "toUShort", "(byte)", "generated"]
+      - ["kotlin", "UShortKt", "toUShort", "(int)", "generated"]
+      - ["kotlin", "UShortKt", "toUShort", "(long)", "generated"]
+      - ["kotlin", "UShortKt", "toUShort", "(short)", "generated"]
+      - ["kotlin", "UninitializedPropertyAccessException", "UninitializedPropertyAccessException", "()", "generated"]
+      - ["kotlin", "UninitializedPropertyAccessException", "UninitializedPropertyAccessException", "(String)", "generated"]
+      - ["kotlin", "UninitializedPropertyAccessException", "UninitializedPropertyAccessException", "(String,Throwable)", "generated"]
+      - ["kotlin", "UninitializedPropertyAccessException", "UninitializedPropertyAccessException", "(Throwable)", "generated"]
+      - ["kotlin", "Unit", "toString", "()", "generated"]
+      - ["kotlin", "UnsafeVariance", "UnsafeVariance", "()", "generated"]
+      - ["kotlin", "UnsupportedOperationException", "UnsupportedOperationException", "()", "generated"]
+      - ["kotlin", "UnsupportedOperationException", "UnsupportedOperationException", "(String)", "generated"]
+      - ["kotlin", "UnsupportedOperationException", "UnsupportedOperationException", "(String,Throwable)", "generated"]
+      - ["kotlin", "UnsupportedOperationException", "UnsupportedOperationException", "(Throwable)", "generated"]
+      - ["kotlin", "UseExperimental", "UseExperimental", "(KClass[])", "generated"]
+      - ["kotlin", "UseExperimental", "markerClass", "()", "generated"]

From 42411fd455973950500ffa7f44a90658338b77f0 Mon Sep 17 00:00:00 2001
From: Michael Nebel <michaelnebel@github.com>
Date: Wed, 30 Nov 2022 15:11:13 +0100
Subject: [PATCH 0964/1420] Java/Kotlin: Allow dashes in callable names (the
 Kotlin standard library contains methods with dashes).

---
 java/ql/lib/semmle/code/java/dataflow/ExternalFlow.qll | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/java/ql/lib/semmle/code/java/dataflow/ExternalFlow.qll b/java/ql/lib/semmle/code/java/dataflow/ExternalFlow.qll
index 186c7ed168d..b7bb10fd6f8 100644
--- a/java/ql/lib/semmle/code/java/dataflow/ExternalFlow.qll
+++ b/java/ql/lib/semmle/code/java/dataflow/ExternalFlow.qll
@@ -555,7 +555,7 @@ module ModelValidation {
       not type.regexpMatch("[a-zA-Z0-9_\\$<>]+") and
       result = "Dubious type \"" + type + "\" in " + pred + " model."
       or
-      not name.regexpMatch("[a-zA-Z0-9_]*") and
+      not name.regexpMatch("[a-zA-Z0-9_\\-]*") and
       result = "Dubious name \"" + name + "\" in " + pred + " model."
       or
       not signature.regexpMatch("|\\([a-zA-Z0-9_\\.\\$<>,\\[\\]]*\\)") and

From f5069ffc1ff22271d1d9a0225bd4fcb5c7c302c2 Mon Sep 17 00:00:00 2001
From: Michael Nebel <michaelnebel@github.com>
Date: Wed, 30 Nov 2022 15:27:16 +0100
Subject: [PATCH 0965/1420] Kotlin: Remove the inlined models.

---
 .../kotlin/NegativeStdLibGenerated.qll        | 4407 -----------------
 .../frameworks/kotlin/StdLibGenerated.qll     | 1861 -------
 2 files changed, 6268 deletions(-)

diff --git a/java/ql/lib/semmle/code/java/frameworks/kotlin/NegativeStdLibGenerated.qll b/java/ql/lib/semmle/code/java/frameworks/kotlin/NegativeStdLibGenerated.qll
index 412390f139e..9301e4f0c6f 100644
--- a/java/ql/lib/semmle/code/java/frameworks/kotlin/NegativeStdLibGenerated.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/kotlin/NegativeStdLibGenerated.qll
@@ -5,4410 +5,3 @@
 
 import java
 private import semmle.code.java.dataflow.ExternalFlow
-
-private class StdLibGeneratedNegativesummaryCsv extends NegativeSummaryModelCsv {
-  override predicate row(string row) {
-    row =
-      [
-        "kotlin.annotation;AnnotationRetention;valueOf;(String);generated",
-        "kotlin.annotation;AnnotationRetention;values;();generated",
-        "kotlin.annotation;AnnotationTarget;valueOf;(String);generated",
-        "kotlin.annotation;AnnotationTarget;values;();generated",
-        "kotlin.annotation;MustBeDocumented;MustBeDocumented;();generated",
-        "kotlin.annotation;Repeatable;Repeatable;();generated",
-        "kotlin.annotation;Retention;Retention;(AnnotationRetention);generated",
-        "kotlin.annotation;Retention;value;();generated",
-        "kotlin.annotation;Target;Target;(AnnotationTarget[]);generated",
-        "kotlin.annotation;Target;allowedTargets;();generated",
-        "kotlin.collections.builders;SerializedCollection$Companion;getTagList;();generated",
-        "kotlin.collections.builders;SerializedCollection$Companion;getTagSet;();generated",
-        "kotlin.collections;AbstractIterator;AbstractIterator;();generated",
-        "kotlin.collections;AbstractList;equals;(Object);generated",
-        "kotlin.collections;AbstractList;hashCode;();generated",
-        "kotlin.collections;AbstractMap;equals;(Object);generated",
-        "kotlin.collections;AbstractMap;hashCode;();generated",
-        "kotlin.collections;AbstractMap;toString;();generated",
-        "kotlin.collections;AbstractSet;equals;(Object);generated",
-        "kotlin.collections;AbstractSet;hashCode;();generated",
-        "kotlin.collections;ArrayDeque;ArrayDeque;();generated",
-        "kotlin.collections;ArrayDeque;ArrayDeque;(int);generated",
-        "kotlin.collections;ArrayList;ArrayList;();generated",
-        "kotlin.collections;ArrayList;ArrayList;(Collection);generated",
-        "kotlin.collections;ArrayList;ArrayList;(int);generated",
-        "kotlin.collections;ArrayList;ensureCapacity;(int);generated",
-        "kotlin.collections;ArrayList;trimToSize;();generated",
-        "kotlin.collections;ArraysKt;all;(Object[],Function1);generated",
-        "kotlin.collections;ArraysKt;all;(boolean[],Function1);generated",
-        "kotlin.collections;ArraysKt;all;(byte[],Function1);generated",
-        "kotlin.collections;ArraysKt;all;(char[],Function1);generated",
-        "kotlin.collections;ArraysKt;all;(double[],Function1);generated",
-        "kotlin.collections;ArraysKt;all;(float[],Function1);generated",
-        "kotlin.collections;ArraysKt;all;(int[],Function1);generated",
-        "kotlin.collections;ArraysKt;all;(long[],Function1);generated",
-        "kotlin.collections;ArraysKt;all;(short[],Function1);generated",
-        "kotlin.collections;ArraysKt;any;(Object[]);generated",
-        "kotlin.collections;ArraysKt;any;(Object[],Function1);generated",
-        "kotlin.collections;ArraysKt;any;(boolean[]);generated",
-        "kotlin.collections;ArraysKt;any;(boolean[],Function1);generated",
-        "kotlin.collections;ArraysKt;any;(byte[]);generated",
-        "kotlin.collections;ArraysKt;any;(byte[],Function1);generated",
-        "kotlin.collections;ArraysKt;any;(char[]);generated",
-        "kotlin.collections;ArraysKt;any;(char[],Function1);generated",
-        "kotlin.collections;ArraysKt;any;(double[]);generated",
-        "kotlin.collections;ArraysKt;any;(double[],Function1);generated",
-        "kotlin.collections;ArraysKt;any;(float[]);generated",
-        "kotlin.collections;ArraysKt;any;(float[],Function1);generated",
-        "kotlin.collections;ArraysKt;any;(int[]);generated",
-        "kotlin.collections;ArraysKt;any;(int[],Function1);generated",
-        "kotlin.collections;ArraysKt;any;(long[]);generated",
-        "kotlin.collections;ArraysKt;any;(long[],Function1);generated",
-        "kotlin.collections;ArraysKt;any;(short[]);generated",
-        "kotlin.collections;ArraysKt;any;(short[],Function1);generated",
-        "kotlin.collections;ArraysKt;asIterable;(Object[]);generated",
-        "kotlin.collections;ArraysKt;asIterable;(boolean[]);generated",
-        "kotlin.collections;ArraysKt;asIterable;(byte[]);generated",
-        "kotlin.collections;ArraysKt;asIterable;(char[]);generated",
-        "kotlin.collections;ArraysKt;asIterable;(double[]);generated",
-        "kotlin.collections;ArraysKt;asIterable;(float[]);generated",
-        "kotlin.collections;ArraysKt;asIterable;(int[]);generated",
-        "kotlin.collections;ArraysKt;asIterable;(long[]);generated",
-        "kotlin.collections;ArraysKt;asIterable;(short[]);generated",
-        "kotlin.collections;ArraysKt;asList;(boolean[]);generated",
-        "kotlin.collections;ArraysKt;asList;(byte[]);generated",
-        "kotlin.collections;ArraysKt;asList;(char[]);generated",
-        "kotlin.collections;ArraysKt;asList;(double[]);generated",
-        "kotlin.collections;ArraysKt;asList;(float[]);generated",
-        "kotlin.collections;ArraysKt;asList;(int[]);generated",
-        "kotlin.collections;ArraysKt;asList;(long[]);generated",
-        "kotlin.collections;ArraysKt;asList;(short[]);generated",
-        "kotlin.collections;ArraysKt;asSequence;(Object[]);generated",
-        "kotlin.collections;ArraysKt;asSequence;(boolean[]);generated",
-        "kotlin.collections;ArraysKt;asSequence;(byte[]);generated",
-        "kotlin.collections;ArraysKt;asSequence;(char[]);generated",
-        "kotlin.collections;ArraysKt;asSequence;(double[]);generated",
-        "kotlin.collections;ArraysKt;asSequence;(float[]);generated",
-        "kotlin.collections;ArraysKt;asSequence;(int[]);generated",
-        "kotlin.collections;ArraysKt;asSequence;(long[]);generated",
-        "kotlin.collections;ArraysKt;asSequence;(short[]);generated",
-        "kotlin.collections;ArraysKt;associate;(Object[],Function1);generated",
-        "kotlin.collections;ArraysKt;associate;(boolean[],Function1);generated",
-        "kotlin.collections;ArraysKt;associate;(byte[],Function1);generated",
-        "kotlin.collections;ArraysKt;associate;(char[],Function1);generated",
-        "kotlin.collections;ArraysKt;associate;(double[],Function1);generated",
-        "kotlin.collections;ArraysKt;associate;(float[],Function1);generated",
-        "kotlin.collections;ArraysKt;associate;(int[],Function1);generated",
-        "kotlin.collections;ArraysKt;associate;(long[],Function1);generated",
-        "kotlin.collections;ArraysKt;associate;(short[],Function1);generated",
-        "kotlin.collections;ArraysKt;associateBy;(Object[],Function1);generated",
-        "kotlin.collections;ArraysKt;associateBy;(Object[],Function1,Function1);generated",
-        "kotlin.collections;ArraysKt;associateBy;(boolean[],Function1);generated",
-        "kotlin.collections;ArraysKt;associateBy;(boolean[],Function1,Function1);generated",
-        "kotlin.collections;ArraysKt;associateBy;(byte[],Function1);generated",
-        "kotlin.collections;ArraysKt;associateBy;(byte[],Function1,Function1);generated",
-        "kotlin.collections;ArraysKt;associateBy;(char[],Function1);generated",
-        "kotlin.collections;ArraysKt;associateBy;(char[],Function1,Function1);generated",
-        "kotlin.collections;ArraysKt;associateBy;(double[],Function1);generated",
-        "kotlin.collections;ArraysKt;associateBy;(double[],Function1,Function1);generated",
-        "kotlin.collections;ArraysKt;associateBy;(float[],Function1);generated",
-        "kotlin.collections;ArraysKt;associateBy;(float[],Function1,Function1);generated",
-        "kotlin.collections;ArraysKt;associateBy;(int[],Function1);generated",
-        "kotlin.collections;ArraysKt;associateBy;(int[],Function1,Function1);generated",
-        "kotlin.collections;ArraysKt;associateBy;(long[],Function1);generated",
-        "kotlin.collections;ArraysKt;associateBy;(long[],Function1,Function1);generated",
-        "kotlin.collections;ArraysKt;associateBy;(short[],Function1);generated",
-        "kotlin.collections;ArraysKt;associateBy;(short[],Function1,Function1);generated",
-        "kotlin.collections;ArraysKt;associateWith;(Object[],Function1);generated",
-        "kotlin.collections;ArraysKt;associateWith;(boolean[],Function1);generated",
-        "kotlin.collections;ArraysKt;associateWith;(byte[],Function1);generated",
-        "kotlin.collections;ArraysKt;associateWith;(char[],Function1);generated",
-        "kotlin.collections;ArraysKt;associateWith;(double[],Function1);generated",
-        "kotlin.collections;ArraysKt;associateWith;(float[],Function1);generated",
-        "kotlin.collections;ArraysKt;associateWith;(int[],Function1);generated",
-        "kotlin.collections;ArraysKt;associateWith;(long[],Function1);generated",
-        "kotlin.collections;ArraysKt;associateWith;(short[],Function1);generated",
-        "kotlin.collections;ArraysKt;average;(byte[]);generated",
-        "kotlin.collections;ArraysKt;average;(double[]);generated",
-        "kotlin.collections;ArraysKt;average;(float[]);generated",
-        "kotlin.collections;ArraysKt;average;(int[]);generated",
-        "kotlin.collections;ArraysKt;average;(long[]);generated",
-        "kotlin.collections;ArraysKt;average;(short[]);generated",
-        "kotlin.collections;ArraysKt;averageOfByte;(Byte[]);generated",
-        "kotlin.collections;ArraysKt;averageOfDouble;(Double[]);generated",
-        "kotlin.collections;ArraysKt;averageOfFloat;(Float[]);generated",
-        "kotlin.collections;ArraysKt;averageOfInt;(Integer[]);generated",
-        "kotlin.collections;ArraysKt;averageOfLong;(Long[]);generated",
-        "kotlin.collections;ArraysKt;averageOfShort;(Short[]);generated",
-        "kotlin.collections;ArraysKt;binarySearch;(Object[],Object,Comparator,int,int);generated",
-        "kotlin.collections;ArraysKt;binarySearch;(Object[],Object,int,int);generated",
-        "kotlin.collections;ArraysKt;binarySearch;(byte[],byte,int,int);generated",
-        "kotlin.collections;ArraysKt;binarySearch;(char[],char,int,int);generated",
-        "kotlin.collections;ArraysKt;binarySearch;(double[],double,int,int);generated",
-        "kotlin.collections;ArraysKt;binarySearch;(float[],float,int,int);generated",
-        "kotlin.collections;ArraysKt;binarySearch;(int[],int,int,int);generated",
-        "kotlin.collections;ArraysKt;binarySearch;(long[],long,int,int);generated",
-        "kotlin.collections;ArraysKt;binarySearch;(short[],short,int,int);generated",
-        "kotlin.collections;ArraysKt;component1;(Object[]);generated",
-        "kotlin.collections;ArraysKt;component1;(boolean[]);generated",
-        "kotlin.collections;ArraysKt;component1;(byte[]);generated",
-        "kotlin.collections;ArraysKt;component1;(char[]);generated",
-        "kotlin.collections;ArraysKt;component1;(double[]);generated",
-        "kotlin.collections;ArraysKt;component1;(float[]);generated",
-        "kotlin.collections;ArraysKt;component1;(int[]);generated",
-        "kotlin.collections;ArraysKt;component1;(long[]);generated",
-        "kotlin.collections;ArraysKt;component1;(short[]);generated",
-        "kotlin.collections;ArraysKt;component2;(Object[]);generated",
-        "kotlin.collections;ArraysKt;component2;(boolean[]);generated",
-        "kotlin.collections;ArraysKt;component2;(byte[]);generated",
-        "kotlin.collections;ArraysKt;component2;(char[]);generated",
-        "kotlin.collections;ArraysKt;component2;(double[]);generated",
-        "kotlin.collections;ArraysKt;component2;(float[]);generated",
-        "kotlin.collections;ArraysKt;component2;(int[]);generated",
-        "kotlin.collections;ArraysKt;component2;(long[]);generated",
-        "kotlin.collections;ArraysKt;component2;(short[]);generated",
-        "kotlin.collections;ArraysKt;component3;(Object[]);generated",
-        "kotlin.collections;ArraysKt;component3;(boolean[]);generated",
-        "kotlin.collections;ArraysKt;component3;(byte[]);generated",
-        "kotlin.collections;ArraysKt;component3;(char[]);generated",
-        "kotlin.collections;ArraysKt;component3;(double[]);generated",
-        "kotlin.collections;ArraysKt;component3;(float[]);generated",
-        "kotlin.collections;ArraysKt;component3;(int[]);generated",
-        "kotlin.collections;ArraysKt;component3;(long[]);generated",
-        "kotlin.collections;ArraysKt;component3;(short[]);generated",
-        "kotlin.collections;ArraysKt;component4;(Object[]);generated",
-        "kotlin.collections;ArraysKt;component4;(boolean[]);generated",
-        "kotlin.collections;ArraysKt;component4;(byte[]);generated",
-        "kotlin.collections;ArraysKt;component4;(char[]);generated",
-        "kotlin.collections;ArraysKt;component4;(double[]);generated",
-        "kotlin.collections;ArraysKt;component4;(float[]);generated",
-        "kotlin.collections;ArraysKt;component4;(int[]);generated",
-        "kotlin.collections;ArraysKt;component4;(long[]);generated",
-        "kotlin.collections;ArraysKt;component4;(short[]);generated",
-        "kotlin.collections;ArraysKt;component5;(Object[]);generated",
-        "kotlin.collections;ArraysKt;component5;(boolean[]);generated",
-        "kotlin.collections;ArraysKt;component5;(byte[]);generated",
-        "kotlin.collections;ArraysKt;component5;(char[]);generated",
-        "kotlin.collections;ArraysKt;component5;(double[]);generated",
-        "kotlin.collections;ArraysKt;component5;(float[]);generated",
-        "kotlin.collections;ArraysKt;component5;(int[]);generated",
-        "kotlin.collections;ArraysKt;component5;(long[]);generated",
-        "kotlin.collections;ArraysKt;component5;(short[]);generated",
-        "kotlin.collections;ArraysKt;contains;(Object[],Object);generated",
-        "kotlin.collections;ArraysKt;contains;(boolean[],boolean);generated",
-        "kotlin.collections;ArraysKt;contains;(byte[],byte);generated",
-        "kotlin.collections;ArraysKt;contains;(char[],char);generated",
-        "kotlin.collections;ArraysKt;contains;(double[],double);generated",
-        "kotlin.collections;ArraysKt;contains;(float[],float);generated",
-        "kotlin.collections;ArraysKt;contains;(int[],int);generated",
-        "kotlin.collections;ArraysKt;contains;(long[],long);generated",
-        "kotlin.collections;ArraysKt;contains;(short[],short);generated",
-        "kotlin.collections;ArraysKt;contentDeepEqualsInline;(Object[],Object[]);generated",
-        "kotlin.collections;ArraysKt;contentDeepEqualsNullable;(Object[],Object[]);generated",
-        "kotlin.collections;ArraysKt;contentDeepHashCodeInline;(Object[]);generated",
-        "kotlin.collections;ArraysKt;contentDeepHashCodeNullable;(Object[]);generated",
-        "kotlin.collections;ArraysKt;contentDeepToStringInline;(Object[]);generated",
-        "kotlin.collections;ArraysKt;contentDeepToStringNullable;(Object[]);generated",
-        "kotlin.collections;ArraysKt;contentEquals;(Object[],Object[]);generated",
-        "kotlin.collections;ArraysKt;contentEquals;(boolean[],boolean[]);generated",
-        "kotlin.collections;ArraysKt;contentEquals;(byte[],byte[]);generated",
-        "kotlin.collections;ArraysKt;contentEquals;(char[],char[]);generated",
-        "kotlin.collections;ArraysKt;contentEquals;(double[],double[]);generated",
-        "kotlin.collections;ArraysKt;contentEquals;(float[],float[]);generated",
-        "kotlin.collections;ArraysKt;contentEquals;(int[],int[]);generated",
-        "kotlin.collections;ArraysKt;contentEquals;(long[],long[]);generated",
-        "kotlin.collections;ArraysKt;contentEquals;(short[],short[]);generated",
-        "kotlin.collections;ArraysKt;contentEqualsNullable;(Object[],Object[]);generated",
-        "kotlin.collections;ArraysKt;contentEqualsNullable;(boolean[],boolean[]);generated",
-        "kotlin.collections;ArraysKt;contentEqualsNullable;(byte[],byte[]);generated",
-        "kotlin.collections;ArraysKt;contentEqualsNullable;(char[],char[]);generated",
-        "kotlin.collections;ArraysKt;contentEqualsNullable;(double[],double[]);generated",
-        "kotlin.collections;ArraysKt;contentEqualsNullable;(float[],float[]);generated",
-        "kotlin.collections;ArraysKt;contentEqualsNullable;(int[],int[]);generated",
-        "kotlin.collections;ArraysKt;contentEqualsNullable;(long[],long[]);generated",
-        "kotlin.collections;ArraysKt;contentEqualsNullable;(short[],short[]);generated",
-        "kotlin.collections;ArraysKt;contentHashCode;(Object[]);generated",
-        "kotlin.collections;ArraysKt;contentHashCode;(boolean[]);generated",
-        "kotlin.collections;ArraysKt;contentHashCode;(byte[]);generated",
-        "kotlin.collections;ArraysKt;contentHashCode;(char[]);generated",
-        "kotlin.collections;ArraysKt;contentHashCode;(double[]);generated",
-        "kotlin.collections;ArraysKt;contentHashCode;(float[]);generated",
-        "kotlin.collections;ArraysKt;contentHashCode;(int[]);generated",
-        "kotlin.collections;ArraysKt;contentHashCode;(long[]);generated",
-        "kotlin.collections;ArraysKt;contentHashCode;(short[]);generated",
-        "kotlin.collections;ArraysKt;contentHashCodeNullable;(Object[]);generated",
-        "kotlin.collections;ArraysKt;contentHashCodeNullable;(boolean[]);generated",
-        "kotlin.collections;ArraysKt;contentHashCodeNullable;(byte[]);generated",
-        "kotlin.collections;ArraysKt;contentHashCodeNullable;(char[]);generated",
-        "kotlin.collections;ArraysKt;contentHashCodeNullable;(double[]);generated",
-        "kotlin.collections;ArraysKt;contentHashCodeNullable;(float[]);generated",
-        "kotlin.collections;ArraysKt;contentHashCodeNullable;(int[]);generated",
-        "kotlin.collections;ArraysKt;contentHashCodeNullable;(long[]);generated",
-        "kotlin.collections;ArraysKt;contentHashCodeNullable;(short[]);generated",
-        "kotlin.collections;ArraysKt;contentToString;(Object[]);generated",
-        "kotlin.collections;ArraysKt;contentToString;(boolean[]);generated",
-        "kotlin.collections;ArraysKt;contentToString;(byte[]);generated",
-        "kotlin.collections;ArraysKt;contentToString;(char[]);generated",
-        "kotlin.collections;ArraysKt;contentToString;(double[]);generated",
-        "kotlin.collections;ArraysKt;contentToString;(float[]);generated",
-        "kotlin.collections;ArraysKt;contentToString;(int[]);generated",
-        "kotlin.collections;ArraysKt;contentToString;(long[]);generated",
-        "kotlin.collections;ArraysKt;contentToString;(short[]);generated",
-        "kotlin.collections;ArraysKt;contentToStringNullable;(Object[]);generated",
-        "kotlin.collections;ArraysKt;contentToStringNullable;(boolean[]);generated",
-        "kotlin.collections;ArraysKt;contentToStringNullable;(byte[]);generated",
-        "kotlin.collections;ArraysKt;contentToStringNullable;(char[]);generated",
-        "kotlin.collections;ArraysKt;contentToStringNullable;(double[]);generated",
-        "kotlin.collections;ArraysKt;contentToStringNullable;(float[]);generated",
-        "kotlin.collections;ArraysKt;contentToStringNullable;(int[]);generated",
-        "kotlin.collections;ArraysKt;contentToStringNullable;(long[]);generated",
-        "kotlin.collections;ArraysKt;contentToStringNullable;(short[]);generated",
-        "kotlin.collections;ArraysKt;copyInto;(boolean[],boolean[],int,int,int);generated",
-        "kotlin.collections;ArraysKt;copyInto;(double[],double[],int,int,int);generated",
-        "kotlin.collections;ArraysKt;copyInto;(float[],float[],int,int,int);generated",
-        "kotlin.collections;ArraysKt;copyInto;(int[],int[],int,int,int);generated",
-        "kotlin.collections;ArraysKt;copyInto;(long[],long[],int,int,int);generated",
-        "kotlin.collections;ArraysKt;copyInto;(short[],short[],int,int,int);generated",
-        "kotlin.collections;ArraysKt;copyOf;(boolean[]);generated",
-        "kotlin.collections;ArraysKt;copyOf;(boolean[],int);generated",
-        "kotlin.collections;ArraysKt;copyOf;(double[]);generated",
-        "kotlin.collections;ArraysKt;copyOf;(double[],int);generated",
-        "kotlin.collections;ArraysKt;copyOf;(float[]);generated",
-        "kotlin.collections;ArraysKt;copyOf;(float[],int);generated",
-        "kotlin.collections;ArraysKt;copyOf;(int[]);generated",
-        "kotlin.collections;ArraysKt;copyOf;(int[],int);generated",
-        "kotlin.collections;ArraysKt;copyOf;(long[]);generated",
-        "kotlin.collections;ArraysKt;copyOf;(long[],int);generated",
-        "kotlin.collections;ArraysKt;copyOf;(short[]);generated",
-        "kotlin.collections;ArraysKt;copyOf;(short[],int);generated",
-        "kotlin.collections;ArraysKt;copyOfRangeInline;(boolean[],int,int);generated",
-        "kotlin.collections;ArraysKt;copyOfRangeInline;(double[],int,int);generated",
-        "kotlin.collections;ArraysKt;copyOfRangeInline;(float[],int,int);generated",
-        "kotlin.collections;ArraysKt;copyOfRangeInline;(int[],int,int);generated",
-        "kotlin.collections;ArraysKt;copyOfRangeInline;(long[],int,int);generated",
-        "kotlin.collections;ArraysKt;copyOfRangeInline;(short[],int,int);generated",
-        "kotlin.collections;ArraysKt;count;(Object[]);generated",
-        "kotlin.collections;ArraysKt;count;(Object[],Function1);generated",
-        "kotlin.collections;ArraysKt;count;(boolean[]);generated",
-        "kotlin.collections;ArraysKt;count;(boolean[],Function1);generated",
-        "kotlin.collections;ArraysKt;count;(byte[]);generated",
-        "kotlin.collections;ArraysKt;count;(byte[],Function1);generated",
-        "kotlin.collections;ArraysKt;count;(char[]);generated",
-        "kotlin.collections;ArraysKt;count;(char[],Function1);generated",
-        "kotlin.collections;ArraysKt;count;(double[]);generated",
-        "kotlin.collections;ArraysKt;count;(double[],Function1);generated",
-        "kotlin.collections;ArraysKt;count;(float[]);generated",
-        "kotlin.collections;ArraysKt;count;(float[],Function1);generated",
-        "kotlin.collections;ArraysKt;count;(int[]);generated",
-        "kotlin.collections;ArraysKt;count;(int[],Function1);generated",
-        "kotlin.collections;ArraysKt;count;(long[]);generated",
-        "kotlin.collections;ArraysKt;count;(long[],Function1);generated",
-        "kotlin.collections;ArraysKt;count;(short[]);generated",
-        "kotlin.collections;ArraysKt;count;(short[],Function1);generated",
-        "kotlin.collections;ArraysKt;distinct;(Object[]);generated",
-        "kotlin.collections;ArraysKt;distinct;(boolean[]);generated",
-        "kotlin.collections;ArraysKt;distinct;(byte[]);generated",
-        "kotlin.collections;ArraysKt;distinct;(char[]);generated",
-        "kotlin.collections;ArraysKt;distinct;(double[]);generated",
-        "kotlin.collections;ArraysKt;distinct;(float[]);generated",
-        "kotlin.collections;ArraysKt;distinct;(int[]);generated",
-        "kotlin.collections;ArraysKt;distinct;(long[]);generated",
-        "kotlin.collections;ArraysKt;distinct;(short[]);generated",
-        "kotlin.collections;ArraysKt;distinctBy;(Object[],Function1);generated",
-        "kotlin.collections;ArraysKt;distinctBy;(boolean[],Function1);generated",
-        "kotlin.collections;ArraysKt;distinctBy;(byte[],Function1);generated",
-        "kotlin.collections;ArraysKt;distinctBy;(char[],Function1);generated",
-        "kotlin.collections;ArraysKt;distinctBy;(double[],Function1);generated",
-        "kotlin.collections;ArraysKt;distinctBy;(float[],Function1);generated",
-        "kotlin.collections;ArraysKt;distinctBy;(int[],Function1);generated",
-        "kotlin.collections;ArraysKt;distinctBy;(long[],Function1);generated",
-        "kotlin.collections;ArraysKt;distinctBy;(short[],Function1);generated",
-        "kotlin.collections;ArraysKt;drop;(boolean[],int);generated",
-        "kotlin.collections;ArraysKt;drop;(byte[],int);generated",
-        "kotlin.collections;ArraysKt;drop;(char[],int);generated",
-        "kotlin.collections;ArraysKt;drop;(double[],int);generated",
-        "kotlin.collections;ArraysKt;drop;(float[],int);generated",
-        "kotlin.collections;ArraysKt;drop;(int[],int);generated",
-        "kotlin.collections;ArraysKt;drop;(long[],int);generated",
-        "kotlin.collections;ArraysKt;drop;(short[],int);generated",
-        "kotlin.collections;ArraysKt;dropLast;(boolean[],int);generated",
-        "kotlin.collections;ArraysKt;dropLast;(byte[],int);generated",
-        "kotlin.collections;ArraysKt;dropLast;(char[],int);generated",
-        "kotlin.collections;ArraysKt;dropLast;(double[],int);generated",
-        "kotlin.collections;ArraysKt;dropLast;(float[],int);generated",
-        "kotlin.collections;ArraysKt;dropLast;(int[],int);generated",
-        "kotlin.collections;ArraysKt;dropLast;(long[],int);generated",
-        "kotlin.collections;ArraysKt;dropLast;(short[],int);generated",
-        "kotlin.collections;ArraysKt;dropLastWhile;(boolean[],Function1);generated",
-        "kotlin.collections;ArraysKt;dropLastWhile;(byte[],Function1);generated",
-        "kotlin.collections;ArraysKt;dropLastWhile;(char[],Function1);generated",
-        "kotlin.collections;ArraysKt;dropLastWhile;(double[],Function1);generated",
-        "kotlin.collections;ArraysKt;dropLastWhile;(float[],Function1);generated",
-        "kotlin.collections;ArraysKt;dropLastWhile;(int[],Function1);generated",
-        "kotlin.collections;ArraysKt;dropLastWhile;(long[],Function1);generated",
-        "kotlin.collections;ArraysKt;dropLastWhile;(short[],Function1);generated",
-        "kotlin.collections;ArraysKt;dropWhile;(Object[],Function1);generated",
-        "kotlin.collections;ArraysKt;dropWhile;(boolean[],Function1);generated",
-        "kotlin.collections;ArraysKt;dropWhile;(byte[],Function1);generated",
-        "kotlin.collections;ArraysKt;dropWhile;(char[],Function1);generated",
-        "kotlin.collections;ArraysKt;dropWhile;(double[],Function1);generated",
-        "kotlin.collections;ArraysKt;dropWhile;(float[],Function1);generated",
-        "kotlin.collections;ArraysKt;dropWhile;(int[],Function1);generated",
-        "kotlin.collections;ArraysKt;dropWhile;(long[],Function1);generated",
-        "kotlin.collections;ArraysKt;dropWhile;(short[],Function1);generated",
-        "kotlin.collections;ArraysKt;elementAt;(Object[],int);generated",
-        "kotlin.collections;ArraysKt;elementAt;(boolean[],int);generated",
-        "kotlin.collections;ArraysKt;elementAt;(byte[],int);generated",
-        "kotlin.collections;ArraysKt;elementAt;(char[],int);generated",
-        "kotlin.collections;ArraysKt;elementAt;(double[],int);generated",
-        "kotlin.collections;ArraysKt;elementAt;(float[],int);generated",
-        "kotlin.collections;ArraysKt;elementAt;(int[],int);generated",
-        "kotlin.collections;ArraysKt;elementAt;(long[],int);generated",
-        "kotlin.collections;ArraysKt;elementAt;(short[],int);generated",
-        "kotlin.collections;ArraysKt;elementAtOrElse;(Object[],int,Function1);generated",
-        "kotlin.collections;ArraysKt;elementAtOrElse;(boolean[],int,Function1);generated",
-        "kotlin.collections;ArraysKt;elementAtOrElse;(byte[],int,Function1);generated",
-        "kotlin.collections;ArraysKt;elementAtOrElse;(char[],int,Function1);generated",
-        "kotlin.collections;ArraysKt;elementAtOrElse;(double[],int,Function1);generated",
-        "kotlin.collections;ArraysKt;elementAtOrElse;(float[],int,Function1);generated",
-        "kotlin.collections;ArraysKt;elementAtOrElse;(int[],int,Function1);generated",
-        "kotlin.collections;ArraysKt;elementAtOrElse;(long[],int,Function1);generated",
-        "kotlin.collections;ArraysKt;elementAtOrElse;(short[],int,Function1);generated",
-        "kotlin.collections;ArraysKt;elementAtOrNull;(Object[],int);generated",
-        "kotlin.collections;ArraysKt;elementAtOrNull;(boolean[],int);generated",
-        "kotlin.collections;ArraysKt;elementAtOrNull;(byte[],int);generated",
-        "kotlin.collections;ArraysKt;elementAtOrNull;(char[],int);generated",
-        "kotlin.collections;ArraysKt;elementAtOrNull;(double[],int);generated",
-        "kotlin.collections;ArraysKt;elementAtOrNull;(float[],int);generated",
-        "kotlin.collections;ArraysKt;elementAtOrNull;(int[],int);generated",
-        "kotlin.collections;ArraysKt;elementAtOrNull;(long[],int);generated",
-        "kotlin.collections;ArraysKt;elementAtOrNull;(short[],int);generated",
-        "kotlin.collections;ArraysKt;fill;(boolean[],boolean,int,int);generated",
-        "kotlin.collections;ArraysKt;fill;(byte[],byte,int,int);generated",
-        "kotlin.collections;ArraysKt;fill;(char[],char,int,int);generated",
-        "kotlin.collections;ArraysKt;fill;(double[],double,int,int);generated",
-        "kotlin.collections;ArraysKt;fill;(float[],float,int,int);generated",
-        "kotlin.collections;ArraysKt;fill;(int[],int,int,int);generated",
-        "kotlin.collections;ArraysKt;fill;(long[],long,int,int);generated",
-        "kotlin.collections;ArraysKt;fill;(short[],short,int,int);generated",
-        "kotlin.collections;ArraysKt;filter;(Object[],Function1);generated",
-        "kotlin.collections;ArraysKt;filter;(boolean[],Function1);generated",
-        "kotlin.collections;ArraysKt;filter;(byte[],Function1);generated",
-        "kotlin.collections;ArraysKt;filter;(char[],Function1);generated",
-        "kotlin.collections;ArraysKt;filter;(double[],Function1);generated",
-        "kotlin.collections;ArraysKt;filter;(float[],Function1);generated",
-        "kotlin.collections;ArraysKt;filter;(int[],Function1);generated",
-        "kotlin.collections;ArraysKt;filter;(long[],Function1);generated",
-        "kotlin.collections;ArraysKt;filter;(short[],Function1);generated",
-        "kotlin.collections;ArraysKt;filterIndexed;(Object[],Function2);generated",
-        "kotlin.collections;ArraysKt;filterIndexed;(boolean[],Function2);generated",
-        "kotlin.collections;ArraysKt;filterIndexed;(byte[],Function2);generated",
-        "kotlin.collections;ArraysKt;filterIndexed;(char[],Function2);generated",
-        "kotlin.collections;ArraysKt;filterIndexed;(double[],Function2);generated",
-        "kotlin.collections;ArraysKt;filterIndexed;(float[],Function2);generated",
-        "kotlin.collections;ArraysKt;filterIndexed;(int[],Function2);generated",
-        "kotlin.collections;ArraysKt;filterIndexed;(long[],Function2);generated",
-        "kotlin.collections;ArraysKt;filterIndexed;(short[],Function2);generated",
-        "kotlin.collections;ArraysKt;filterIsInstance;(Object[]);generated",
-        "kotlin.collections;ArraysKt;filterIsInstance;(Object[],Class);generated",
-        "kotlin.collections;ArraysKt;filterNot;(Object[],Function1);generated",
-        "kotlin.collections;ArraysKt;filterNot;(boolean[],Function1);generated",
-        "kotlin.collections;ArraysKt;filterNot;(byte[],Function1);generated",
-        "kotlin.collections;ArraysKt;filterNot;(char[],Function1);generated",
-        "kotlin.collections;ArraysKt;filterNot;(double[],Function1);generated",
-        "kotlin.collections;ArraysKt;filterNot;(float[],Function1);generated",
-        "kotlin.collections;ArraysKt;filterNot;(int[],Function1);generated",
-        "kotlin.collections;ArraysKt;filterNot;(long[],Function1);generated",
-        "kotlin.collections;ArraysKt;filterNot;(short[],Function1);generated",
-        "kotlin.collections;ArraysKt;filterNotNull;(Object[]);generated",
-        "kotlin.collections;ArraysKt;find;(Object[],Function1);generated",
-        "kotlin.collections;ArraysKt;find;(boolean[],Function1);generated",
-        "kotlin.collections;ArraysKt;find;(byte[],Function1);generated",
-        "kotlin.collections;ArraysKt;find;(char[],Function1);generated",
-        "kotlin.collections;ArraysKt;find;(double[],Function1);generated",
-        "kotlin.collections;ArraysKt;find;(float[],Function1);generated",
-        "kotlin.collections;ArraysKt;find;(int[],Function1);generated",
-        "kotlin.collections;ArraysKt;find;(long[],Function1);generated",
-        "kotlin.collections;ArraysKt;find;(short[],Function1);generated",
-        "kotlin.collections;ArraysKt;findLast;(boolean[],Function1);generated",
-        "kotlin.collections;ArraysKt;findLast;(byte[],Function1);generated",
-        "kotlin.collections;ArraysKt;findLast;(char[],Function1);generated",
-        "kotlin.collections;ArraysKt;findLast;(double[],Function1);generated",
-        "kotlin.collections;ArraysKt;findLast;(float[],Function1);generated",
-        "kotlin.collections;ArraysKt;findLast;(int[],Function1);generated",
-        "kotlin.collections;ArraysKt;findLast;(long[],Function1);generated",
-        "kotlin.collections;ArraysKt;findLast;(short[],Function1);generated",
-        "kotlin.collections;ArraysKt;first;(Object[],Function1);generated",
-        "kotlin.collections;ArraysKt;first;(boolean[]);generated",
-        "kotlin.collections;ArraysKt;first;(boolean[],Function1);generated",
-        "kotlin.collections;ArraysKt;first;(byte[]);generated",
-        "kotlin.collections;ArraysKt;first;(byte[],Function1);generated",
-        "kotlin.collections;ArraysKt;first;(char[]);generated",
-        "kotlin.collections;ArraysKt;first;(char[],Function1);generated",
-        "kotlin.collections;ArraysKt;first;(double[]);generated",
-        "kotlin.collections;ArraysKt;first;(double[],Function1);generated",
-        "kotlin.collections;ArraysKt;first;(float[]);generated",
-        "kotlin.collections;ArraysKt;first;(float[],Function1);generated",
-        "kotlin.collections;ArraysKt;first;(int[]);generated",
-        "kotlin.collections;ArraysKt;first;(int[],Function1);generated",
-        "kotlin.collections;ArraysKt;first;(long[]);generated",
-        "kotlin.collections;ArraysKt;first;(long[],Function1);generated",
-        "kotlin.collections;ArraysKt;first;(short[]);generated",
-        "kotlin.collections;ArraysKt;first;(short[],Function1);generated",
-        "kotlin.collections;ArraysKt;firstNotNullOf;(Object[],Function1);generated",
-        "kotlin.collections;ArraysKt;firstNotNullOfOrNull;(Object[],Function1);generated",
-        "kotlin.collections;ArraysKt;firstOrNull;(Object[],Function1);generated",
-        "kotlin.collections;ArraysKt;firstOrNull;(boolean[]);generated",
-        "kotlin.collections;ArraysKt;firstOrNull;(boolean[],Function1);generated",
-        "kotlin.collections;ArraysKt;firstOrNull;(byte[]);generated",
-        "kotlin.collections;ArraysKt;firstOrNull;(byte[],Function1);generated",
-        "kotlin.collections;ArraysKt;firstOrNull;(char[]);generated",
-        "kotlin.collections;ArraysKt;firstOrNull;(char[],Function1);generated",
-        "kotlin.collections;ArraysKt;firstOrNull;(double[]);generated",
-        "kotlin.collections;ArraysKt;firstOrNull;(double[],Function1);generated",
-        "kotlin.collections;ArraysKt;firstOrNull;(float[]);generated",
-        "kotlin.collections;ArraysKt;firstOrNull;(float[],Function1);generated",
-        "kotlin.collections;ArraysKt;firstOrNull;(int[]);generated",
-        "kotlin.collections;ArraysKt;firstOrNull;(int[],Function1);generated",
-        "kotlin.collections;ArraysKt;firstOrNull;(long[]);generated",
-        "kotlin.collections;ArraysKt;firstOrNull;(long[],Function1);generated",
-        "kotlin.collections;ArraysKt;firstOrNull;(short[]);generated",
-        "kotlin.collections;ArraysKt;firstOrNull;(short[],Function1);generated",
-        "kotlin.collections;ArraysKt;flatMap;(Object[],Function1);generated",
-        "kotlin.collections;ArraysKt;flatMap;(boolean[],Function1);generated",
-        "kotlin.collections;ArraysKt;flatMap;(byte[],Function1);generated",
-        "kotlin.collections;ArraysKt;flatMap;(char[],Function1);generated",
-        "kotlin.collections;ArraysKt;flatMap;(double[],Function1);generated",
-        "kotlin.collections;ArraysKt;flatMap;(float[],Function1);generated",
-        "kotlin.collections;ArraysKt;flatMap;(int[],Function1);generated",
-        "kotlin.collections;ArraysKt;flatMap;(long[],Function1);generated",
-        "kotlin.collections;ArraysKt;flatMap;(short[],Function1);generated",
-        "kotlin.collections;ArraysKt;flatMapIndexedIterable;(Object[],Function2);generated",
-        "kotlin.collections;ArraysKt;flatMapIndexedIterable;(boolean[],Function2);generated",
-        "kotlin.collections;ArraysKt;flatMapIndexedIterable;(byte[],Function2);generated",
-        "kotlin.collections;ArraysKt;flatMapIndexedIterable;(char[],Function2);generated",
-        "kotlin.collections;ArraysKt;flatMapIndexedIterable;(double[],Function2);generated",
-        "kotlin.collections;ArraysKt;flatMapIndexedIterable;(float[],Function2);generated",
-        "kotlin.collections;ArraysKt;flatMapIndexedIterable;(int[],Function2);generated",
-        "kotlin.collections;ArraysKt;flatMapIndexedIterable;(long[],Function2);generated",
-        "kotlin.collections;ArraysKt;flatMapIndexedIterable;(short[],Function2);generated",
-        "kotlin.collections;ArraysKt;flatMapIndexedSequence;(Object[],Function2);generated",
-        "kotlin.collections;ArraysKt;flatMapSequence;(Object[],Function1);generated",
-        "kotlin.collections;ArraysKt;flatten;(Object[][]);generated",
-        "kotlin.collections;ArraysKt;forEach;(Object[],Function1);generated",
-        "kotlin.collections;ArraysKt;forEach;(boolean[],Function1);generated",
-        "kotlin.collections;ArraysKt;forEach;(byte[],Function1);generated",
-        "kotlin.collections;ArraysKt;forEach;(char[],Function1);generated",
-        "kotlin.collections;ArraysKt;forEach;(double[],Function1);generated",
-        "kotlin.collections;ArraysKt;forEach;(float[],Function1);generated",
-        "kotlin.collections;ArraysKt;forEach;(int[],Function1);generated",
-        "kotlin.collections;ArraysKt;forEach;(long[],Function1);generated",
-        "kotlin.collections;ArraysKt;forEach;(short[],Function1);generated",
-        "kotlin.collections;ArraysKt;forEachIndexed;(Object[],Function2);generated",
-        "kotlin.collections;ArraysKt;forEachIndexed;(boolean[],Function2);generated",
-        "kotlin.collections;ArraysKt;forEachIndexed;(byte[],Function2);generated",
-        "kotlin.collections;ArraysKt;forEachIndexed;(char[],Function2);generated",
-        "kotlin.collections;ArraysKt;forEachIndexed;(double[],Function2);generated",
-        "kotlin.collections;ArraysKt;forEachIndexed;(float[],Function2);generated",
-        "kotlin.collections;ArraysKt;forEachIndexed;(int[],Function2);generated",
-        "kotlin.collections;ArraysKt;forEachIndexed;(long[],Function2);generated",
-        "kotlin.collections;ArraysKt;forEachIndexed;(short[],Function2);generated",
-        "kotlin.collections;ArraysKt;getIndices;(Object[]);generated",
-        "kotlin.collections;ArraysKt;getIndices;(boolean[]);generated",
-        "kotlin.collections;ArraysKt;getIndices;(byte[]);generated",
-        "kotlin.collections;ArraysKt;getIndices;(char[]);generated",
-        "kotlin.collections;ArraysKt;getIndices;(double[]);generated",
-        "kotlin.collections;ArraysKt;getIndices;(float[]);generated",
-        "kotlin.collections;ArraysKt;getIndices;(int[]);generated",
-        "kotlin.collections;ArraysKt;getIndices;(long[]);generated",
-        "kotlin.collections;ArraysKt;getIndices;(short[]);generated",
-        "kotlin.collections;ArraysKt;getLastIndex;(Object[]);generated",
-        "kotlin.collections;ArraysKt;getLastIndex;(boolean[]);generated",
-        "kotlin.collections;ArraysKt;getLastIndex;(byte[]);generated",
-        "kotlin.collections;ArraysKt;getLastIndex;(char[]);generated",
-        "kotlin.collections;ArraysKt;getLastIndex;(double[]);generated",
-        "kotlin.collections;ArraysKt;getLastIndex;(float[]);generated",
-        "kotlin.collections;ArraysKt;getLastIndex;(int[]);generated",
-        "kotlin.collections;ArraysKt;getLastIndex;(long[]);generated",
-        "kotlin.collections;ArraysKt;getLastIndex;(short[]);generated",
-        "kotlin.collections;ArraysKt;getOrElse;(Object[],int,Function1);generated",
-        "kotlin.collections;ArraysKt;getOrElse;(boolean[],int,Function1);generated",
-        "kotlin.collections;ArraysKt;getOrElse;(byte[],int,Function1);generated",
-        "kotlin.collections;ArraysKt;getOrElse;(char[],int,Function1);generated",
-        "kotlin.collections;ArraysKt;getOrElse;(double[],int,Function1);generated",
-        "kotlin.collections;ArraysKt;getOrElse;(float[],int,Function1);generated",
-        "kotlin.collections;ArraysKt;getOrElse;(int[],int,Function1);generated",
-        "kotlin.collections;ArraysKt;getOrElse;(long[],int,Function1);generated",
-        "kotlin.collections;ArraysKt;getOrElse;(short[],int,Function1);generated",
-        "kotlin.collections;ArraysKt;getOrNull;(Object[],int);generated",
-        "kotlin.collections;ArraysKt;getOrNull;(boolean[],int);generated",
-        "kotlin.collections;ArraysKt;getOrNull;(byte[],int);generated",
-        "kotlin.collections;ArraysKt;getOrNull;(char[],int);generated",
-        "kotlin.collections;ArraysKt;getOrNull;(double[],int);generated",
-        "kotlin.collections;ArraysKt;getOrNull;(float[],int);generated",
-        "kotlin.collections;ArraysKt;getOrNull;(int[],int);generated",
-        "kotlin.collections;ArraysKt;getOrNull;(long[],int);generated",
-        "kotlin.collections;ArraysKt;getOrNull;(short[],int);generated",
-        "kotlin.collections;ArraysKt;groupBy;(Object[],Function1);generated",
-        "kotlin.collections;ArraysKt;groupBy;(Object[],Function1,Function1);generated",
-        "kotlin.collections;ArraysKt;groupBy;(boolean[],Function1);generated",
-        "kotlin.collections;ArraysKt;groupBy;(boolean[],Function1,Function1);generated",
-        "kotlin.collections;ArraysKt;groupBy;(byte[],Function1);generated",
-        "kotlin.collections;ArraysKt;groupBy;(byte[],Function1,Function1);generated",
-        "kotlin.collections;ArraysKt;groupBy;(char[],Function1);generated",
-        "kotlin.collections;ArraysKt;groupBy;(char[],Function1,Function1);generated",
-        "kotlin.collections;ArraysKt;groupBy;(double[],Function1);generated",
-        "kotlin.collections;ArraysKt;groupBy;(double[],Function1,Function1);generated",
-        "kotlin.collections;ArraysKt;groupBy;(float[],Function1);generated",
-        "kotlin.collections;ArraysKt;groupBy;(float[],Function1,Function1);generated",
-        "kotlin.collections;ArraysKt;groupBy;(int[],Function1);generated",
-        "kotlin.collections;ArraysKt;groupBy;(int[],Function1,Function1);generated",
-        "kotlin.collections;ArraysKt;groupBy;(long[],Function1);generated",
-        "kotlin.collections;ArraysKt;groupBy;(long[],Function1,Function1);generated",
-        "kotlin.collections;ArraysKt;groupBy;(short[],Function1);generated",
-        "kotlin.collections;ArraysKt;groupBy;(short[],Function1,Function1);generated",
-        "kotlin.collections;ArraysKt;groupingBy;(Object[],Function1);generated",
-        "kotlin.collections;ArraysKt;indexOf;(Object[],Object);generated",
-        "kotlin.collections;ArraysKt;indexOf;(boolean[],boolean);generated",
-        "kotlin.collections;ArraysKt;indexOf;(byte[],byte);generated",
-        "kotlin.collections;ArraysKt;indexOf;(char[],char);generated",
-        "kotlin.collections;ArraysKt;indexOf;(double[],double);generated",
-        "kotlin.collections;ArraysKt;indexOf;(float[],float);generated",
-        "kotlin.collections;ArraysKt;indexOf;(int[],int);generated",
-        "kotlin.collections;ArraysKt;indexOf;(long[],long);generated",
-        "kotlin.collections;ArraysKt;indexOf;(short[],short);generated",
-        "kotlin.collections;ArraysKt;indexOfFirst;(Object[],Function1);generated",
-        "kotlin.collections;ArraysKt;indexOfFirst;(boolean[],Function1);generated",
-        "kotlin.collections;ArraysKt;indexOfFirst;(byte[],Function1);generated",
-        "kotlin.collections;ArraysKt;indexOfFirst;(char[],Function1);generated",
-        "kotlin.collections;ArraysKt;indexOfFirst;(double[],Function1);generated",
-        "kotlin.collections;ArraysKt;indexOfFirst;(float[],Function1);generated",
-        "kotlin.collections;ArraysKt;indexOfFirst;(int[],Function1);generated",
-        "kotlin.collections;ArraysKt;indexOfFirst;(long[],Function1);generated",
-        "kotlin.collections;ArraysKt;indexOfFirst;(short[],Function1);generated",
-        "kotlin.collections;ArraysKt;indexOfLast;(Object[],Function1);generated",
-        "kotlin.collections;ArraysKt;indexOfLast;(boolean[],Function1);generated",
-        "kotlin.collections;ArraysKt;indexOfLast;(byte[],Function1);generated",
-        "kotlin.collections;ArraysKt;indexOfLast;(char[],Function1);generated",
-        "kotlin.collections;ArraysKt;indexOfLast;(double[],Function1);generated",
-        "kotlin.collections;ArraysKt;indexOfLast;(float[],Function1);generated",
-        "kotlin.collections;ArraysKt;indexOfLast;(int[],Function1);generated",
-        "kotlin.collections;ArraysKt;indexOfLast;(long[],Function1);generated",
-        "kotlin.collections;ArraysKt;indexOfLast;(short[],Function1);generated",
-        "kotlin.collections;ArraysKt;intersect;(Object[],Iterable);generated",
-        "kotlin.collections;ArraysKt;intersect;(boolean[],Iterable);generated",
-        "kotlin.collections;ArraysKt;intersect;(byte[],Iterable);generated",
-        "kotlin.collections;ArraysKt;intersect;(char[],Iterable);generated",
-        "kotlin.collections;ArraysKt;intersect;(double[],Iterable);generated",
-        "kotlin.collections;ArraysKt;intersect;(float[],Iterable);generated",
-        "kotlin.collections;ArraysKt;intersect;(int[],Iterable);generated",
-        "kotlin.collections;ArraysKt;intersect;(long[],Iterable);generated",
-        "kotlin.collections;ArraysKt;intersect;(short[],Iterable);generated",
-        "kotlin.collections;ArraysKt;isEmpty;(Object[]);generated",
-        "kotlin.collections;ArraysKt;isEmpty;(boolean[]);generated",
-        "kotlin.collections;ArraysKt;isEmpty;(byte[]);generated",
-        "kotlin.collections;ArraysKt;isEmpty;(char[]);generated",
-        "kotlin.collections;ArraysKt;isEmpty;(double[]);generated",
-        "kotlin.collections;ArraysKt;isEmpty;(float[]);generated",
-        "kotlin.collections;ArraysKt;isEmpty;(int[]);generated",
-        "kotlin.collections;ArraysKt;isEmpty;(long[]);generated",
-        "kotlin.collections;ArraysKt;isEmpty;(short[]);generated",
-        "kotlin.collections;ArraysKt;isNotEmpty;(Object[]);generated",
-        "kotlin.collections;ArraysKt;isNotEmpty;(boolean[]);generated",
-        "kotlin.collections;ArraysKt;isNotEmpty;(byte[]);generated",
-        "kotlin.collections;ArraysKt;isNotEmpty;(char[]);generated",
-        "kotlin.collections;ArraysKt;isNotEmpty;(double[]);generated",
-        "kotlin.collections;ArraysKt;isNotEmpty;(float[]);generated",
-        "kotlin.collections;ArraysKt;isNotEmpty;(int[]);generated",
-        "kotlin.collections;ArraysKt;isNotEmpty;(long[]);generated",
-        "kotlin.collections;ArraysKt;isNotEmpty;(short[]);generated",
-        "kotlin.collections;ArraysKt;isNullOrEmpty;(Object[]);generated",
-        "kotlin.collections;ArraysKt;last;(boolean[]);generated",
-        "kotlin.collections;ArraysKt;last;(boolean[],Function1);generated",
-        "kotlin.collections;ArraysKt;last;(byte[]);generated",
-        "kotlin.collections;ArraysKt;last;(byte[],Function1);generated",
-        "kotlin.collections;ArraysKt;last;(char[]);generated",
-        "kotlin.collections;ArraysKt;last;(char[],Function1);generated",
-        "kotlin.collections;ArraysKt;last;(double[]);generated",
-        "kotlin.collections;ArraysKt;last;(double[],Function1);generated",
-        "kotlin.collections;ArraysKt;last;(float[]);generated",
-        "kotlin.collections;ArraysKt;last;(float[],Function1);generated",
-        "kotlin.collections;ArraysKt;last;(int[]);generated",
-        "kotlin.collections;ArraysKt;last;(int[],Function1);generated",
-        "kotlin.collections;ArraysKt;last;(long[]);generated",
-        "kotlin.collections;ArraysKt;last;(long[],Function1);generated",
-        "kotlin.collections;ArraysKt;last;(short[]);generated",
-        "kotlin.collections;ArraysKt;last;(short[],Function1);generated",
-        "kotlin.collections;ArraysKt;lastIndexOf;(Object[],Object);generated",
-        "kotlin.collections;ArraysKt;lastIndexOf;(boolean[],boolean);generated",
-        "kotlin.collections;ArraysKt;lastIndexOf;(byte[],byte);generated",
-        "kotlin.collections;ArraysKt;lastIndexOf;(char[],char);generated",
-        "kotlin.collections;ArraysKt;lastIndexOf;(double[],double);generated",
-        "kotlin.collections;ArraysKt;lastIndexOf;(float[],float);generated",
-        "kotlin.collections;ArraysKt;lastIndexOf;(int[],int);generated",
-        "kotlin.collections;ArraysKt;lastIndexOf;(long[],long);generated",
-        "kotlin.collections;ArraysKt;lastIndexOf;(short[],short);generated",
-        "kotlin.collections;ArraysKt;lastOrNull;(boolean[]);generated",
-        "kotlin.collections;ArraysKt;lastOrNull;(boolean[],Function1);generated",
-        "kotlin.collections;ArraysKt;lastOrNull;(byte[]);generated",
-        "kotlin.collections;ArraysKt;lastOrNull;(byte[],Function1);generated",
-        "kotlin.collections;ArraysKt;lastOrNull;(char[]);generated",
-        "kotlin.collections;ArraysKt;lastOrNull;(char[],Function1);generated",
-        "kotlin.collections;ArraysKt;lastOrNull;(double[]);generated",
-        "kotlin.collections;ArraysKt;lastOrNull;(double[],Function1);generated",
-        "kotlin.collections;ArraysKt;lastOrNull;(float[]);generated",
-        "kotlin.collections;ArraysKt;lastOrNull;(float[],Function1);generated",
-        "kotlin.collections;ArraysKt;lastOrNull;(int[]);generated",
-        "kotlin.collections;ArraysKt;lastOrNull;(int[],Function1);generated",
-        "kotlin.collections;ArraysKt;lastOrNull;(long[]);generated",
-        "kotlin.collections;ArraysKt;lastOrNull;(long[],Function1);generated",
-        "kotlin.collections;ArraysKt;lastOrNull;(short[]);generated",
-        "kotlin.collections;ArraysKt;lastOrNull;(short[],Function1);generated",
-        "kotlin.collections;ArraysKt;map;(Object[],Function1);generated",
-        "kotlin.collections;ArraysKt;map;(boolean[],Function1);generated",
-        "kotlin.collections;ArraysKt;map;(byte[],Function1);generated",
-        "kotlin.collections;ArraysKt;map;(char[],Function1);generated",
-        "kotlin.collections;ArraysKt;map;(double[],Function1);generated",
-        "kotlin.collections;ArraysKt;map;(float[],Function1);generated",
-        "kotlin.collections;ArraysKt;map;(int[],Function1);generated",
-        "kotlin.collections;ArraysKt;map;(long[],Function1);generated",
-        "kotlin.collections;ArraysKt;map;(short[],Function1);generated",
-        "kotlin.collections;ArraysKt;mapIndexed;(Object[],Function2);generated",
-        "kotlin.collections;ArraysKt;mapIndexed;(boolean[],Function2);generated",
-        "kotlin.collections;ArraysKt;mapIndexed;(byte[],Function2);generated",
-        "kotlin.collections;ArraysKt;mapIndexed;(char[],Function2);generated",
-        "kotlin.collections;ArraysKt;mapIndexed;(double[],Function2);generated",
-        "kotlin.collections;ArraysKt;mapIndexed;(float[],Function2);generated",
-        "kotlin.collections;ArraysKt;mapIndexed;(int[],Function2);generated",
-        "kotlin.collections;ArraysKt;mapIndexed;(long[],Function2);generated",
-        "kotlin.collections;ArraysKt;mapIndexed;(short[],Function2);generated",
-        "kotlin.collections;ArraysKt;mapIndexedNotNull;(Object[],Function2);generated",
-        "kotlin.collections;ArraysKt;mapNotNull;(Object[],Function1);generated",
-        "kotlin.collections;ArraysKt;max;(Double[]);generated",
-        "kotlin.collections;ArraysKt;max;(Float[]);generated",
-        "kotlin.collections;ArraysKt;max;(byte[]);generated",
-        "kotlin.collections;ArraysKt;max;(char[]);generated",
-        "kotlin.collections;ArraysKt;max;(double[]);generated",
-        "kotlin.collections;ArraysKt;max;(float[]);generated",
-        "kotlin.collections;ArraysKt;max;(int[]);generated",
-        "kotlin.collections;ArraysKt;max;(long[]);generated",
-        "kotlin.collections;ArraysKt;max;(short[]);generated",
-        "kotlin.collections;ArraysKt;maxBy;(boolean[],Function1);generated",
-        "kotlin.collections;ArraysKt;maxBy;(byte[],Function1);generated",
-        "kotlin.collections;ArraysKt;maxBy;(char[],Function1);generated",
-        "kotlin.collections;ArraysKt;maxBy;(double[],Function1);generated",
-        "kotlin.collections;ArraysKt;maxBy;(float[],Function1);generated",
-        "kotlin.collections;ArraysKt;maxBy;(int[],Function1);generated",
-        "kotlin.collections;ArraysKt;maxBy;(long[],Function1);generated",
-        "kotlin.collections;ArraysKt;maxBy;(short[],Function1);generated",
-        "kotlin.collections;ArraysKt;maxByOrNull;(boolean[],Function1);generated",
-        "kotlin.collections;ArraysKt;maxByOrNull;(byte[],Function1);generated",
-        "kotlin.collections;ArraysKt;maxByOrNull;(char[],Function1);generated",
-        "kotlin.collections;ArraysKt;maxByOrNull;(double[],Function1);generated",
-        "kotlin.collections;ArraysKt;maxByOrNull;(float[],Function1);generated",
-        "kotlin.collections;ArraysKt;maxByOrNull;(int[],Function1);generated",
-        "kotlin.collections;ArraysKt;maxByOrNull;(long[],Function1);generated",
-        "kotlin.collections;ArraysKt;maxByOrNull;(short[],Function1);generated",
-        "kotlin.collections;ArraysKt;maxByOrThrow;(boolean[],Function1);generated",
-        "kotlin.collections;ArraysKt;maxByOrThrow;(byte[],Function1);generated",
-        "kotlin.collections;ArraysKt;maxByOrThrow;(char[],Function1);generated",
-        "kotlin.collections;ArraysKt;maxByOrThrow;(double[],Function1);generated",
-        "kotlin.collections;ArraysKt;maxByOrThrow;(float[],Function1);generated",
-        "kotlin.collections;ArraysKt;maxByOrThrow;(int[],Function1);generated",
-        "kotlin.collections;ArraysKt;maxByOrThrow;(long[],Function1);generated",
-        "kotlin.collections;ArraysKt;maxByOrThrow;(short[],Function1);generated",
-        "kotlin.collections;ArraysKt;maxOf;(Object[],Function1);generated",
-        "kotlin.collections;ArraysKt;maxOf;(boolean[],Function1);generated",
-        "kotlin.collections;ArraysKt;maxOf;(byte[],Function1);generated",
-        "kotlin.collections;ArraysKt;maxOf;(char[],Function1);generated",
-        "kotlin.collections;ArraysKt;maxOf;(double[],Function1);generated",
-        "kotlin.collections;ArraysKt;maxOf;(float[],Function1);generated",
-        "kotlin.collections;ArraysKt;maxOf;(int[],Function1);generated",
-        "kotlin.collections;ArraysKt;maxOf;(long[],Function1);generated",
-        "kotlin.collections;ArraysKt;maxOf;(short[],Function1);generated",
-        "kotlin.collections;ArraysKt;maxOfOrNull;(Object[],Function1);generated",
-        "kotlin.collections;ArraysKt;maxOfOrNull;(boolean[],Function1);generated",
-        "kotlin.collections;ArraysKt;maxOfOrNull;(byte[],Function1);generated",
-        "kotlin.collections;ArraysKt;maxOfOrNull;(char[],Function1);generated",
-        "kotlin.collections;ArraysKt;maxOfOrNull;(double[],Function1);generated",
-        "kotlin.collections;ArraysKt;maxOfOrNull;(float[],Function1);generated",
-        "kotlin.collections;ArraysKt;maxOfOrNull;(int[],Function1);generated",
-        "kotlin.collections;ArraysKt;maxOfOrNull;(long[],Function1);generated",
-        "kotlin.collections;ArraysKt;maxOfOrNull;(short[],Function1);generated",
-        "kotlin.collections;ArraysKt;maxOfWith;(boolean[],Comparator,Function1);generated",
-        "kotlin.collections;ArraysKt;maxOfWith;(byte[],Comparator,Function1);generated",
-        "kotlin.collections;ArraysKt;maxOfWith;(char[],Comparator,Function1);generated",
-        "kotlin.collections;ArraysKt;maxOfWith;(double[],Comparator,Function1);generated",
-        "kotlin.collections;ArraysKt;maxOfWith;(float[],Comparator,Function1);generated",
-        "kotlin.collections;ArraysKt;maxOfWith;(int[],Comparator,Function1);generated",
-        "kotlin.collections;ArraysKt;maxOfWith;(long[],Comparator,Function1);generated",
-        "kotlin.collections;ArraysKt;maxOfWith;(short[],Comparator,Function1);generated",
-        "kotlin.collections;ArraysKt;maxOfWithOrNull;(boolean[],Comparator,Function1);generated",
-        "kotlin.collections;ArraysKt;maxOfWithOrNull;(byte[],Comparator,Function1);generated",
-        "kotlin.collections;ArraysKt;maxOfWithOrNull;(char[],Comparator,Function1);generated",
-        "kotlin.collections;ArraysKt;maxOfWithOrNull;(double[],Comparator,Function1);generated",
-        "kotlin.collections;ArraysKt;maxOfWithOrNull;(float[],Comparator,Function1);generated",
-        "kotlin.collections;ArraysKt;maxOfWithOrNull;(int[],Comparator,Function1);generated",
-        "kotlin.collections;ArraysKt;maxOfWithOrNull;(long[],Comparator,Function1);generated",
-        "kotlin.collections;ArraysKt;maxOfWithOrNull;(short[],Comparator,Function1);generated",
-        "kotlin.collections;ArraysKt;maxOrNull;(Double[]);generated",
-        "kotlin.collections;ArraysKt;maxOrNull;(Float[]);generated",
-        "kotlin.collections;ArraysKt;maxOrNull;(byte[]);generated",
-        "kotlin.collections;ArraysKt;maxOrNull;(char[]);generated",
-        "kotlin.collections;ArraysKt;maxOrNull;(double[]);generated",
-        "kotlin.collections;ArraysKt;maxOrNull;(float[]);generated",
-        "kotlin.collections;ArraysKt;maxOrNull;(int[]);generated",
-        "kotlin.collections;ArraysKt;maxOrNull;(long[]);generated",
-        "kotlin.collections;ArraysKt;maxOrNull;(short[]);generated",
-        "kotlin.collections;ArraysKt;maxOrThrow;(Double[]);generated",
-        "kotlin.collections;ArraysKt;maxOrThrow;(Float[]);generated",
-        "kotlin.collections;ArraysKt;maxOrThrow;(byte[]);generated",
-        "kotlin.collections;ArraysKt;maxOrThrow;(char[]);generated",
-        "kotlin.collections;ArraysKt;maxOrThrow;(double[]);generated",
-        "kotlin.collections;ArraysKt;maxOrThrow;(float[]);generated",
-        "kotlin.collections;ArraysKt;maxOrThrow;(int[]);generated",
-        "kotlin.collections;ArraysKt;maxOrThrow;(long[]);generated",
-        "kotlin.collections;ArraysKt;maxOrThrow;(short[]);generated",
-        "kotlin.collections;ArraysKt;maxWith;(boolean[],Comparator);generated",
-        "kotlin.collections;ArraysKt;maxWith;(byte[],Comparator);generated",
-        "kotlin.collections;ArraysKt;maxWith;(char[],Comparator);generated",
-        "kotlin.collections;ArraysKt;maxWith;(double[],Comparator);generated",
-        "kotlin.collections;ArraysKt;maxWith;(float[],Comparator);generated",
-        "kotlin.collections;ArraysKt;maxWith;(int[],Comparator);generated",
-        "kotlin.collections;ArraysKt;maxWith;(long[],Comparator);generated",
-        "kotlin.collections;ArraysKt;maxWith;(short[],Comparator);generated",
-        "kotlin.collections;ArraysKt;maxWithOrNull;(boolean[],Comparator);generated",
-        "kotlin.collections;ArraysKt;maxWithOrNull;(byte[],Comparator);generated",
-        "kotlin.collections;ArraysKt;maxWithOrNull;(char[],Comparator);generated",
-        "kotlin.collections;ArraysKt;maxWithOrNull;(double[],Comparator);generated",
-        "kotlin.collections;ArraysKt;maxWithOrNull;(float[],Comparator);generated",
-        "kotlin.collections;ArraysKt;maxWithOrNull;(int[],Comparator);generated",
-        "kotlin.collections;ArraysKt;maxWithOrNull;(long[],Comparator);generated",
-        "kotlin.collections;ArraysKt;maxWithOrNull;(short[],Comparator);generated",
-        "kotlin.collections;ArraysKt;maxWithOrThrow;(boolean[],Comparator);generated",
-        "kotlin.collections;ArraysKt;maxWithOrThrow;(byte[],Comparator);generated",
-        "kotlin.collections;ArraysKt;maxWithOrThrow;(char[],Comparator);generated",
-        "kotlin.collections;ArraysKt;maxWithOrThrow;(double[],Comparator);generated",
-        "kotlin.collections;ArraysKt;maxWithOrThrow;(float[],Comparator);generated",
-        "kotlin.collections;ArraysKt;maxWithOrThrow;(int[],Comparator);generated",
-        "kotlin.collections;ArraysKt;maxWithOrThrow;(long[],Comparator);generated",
-        "kotlin.collections;ArraysKt;maxWithOrThrow;(short[],Comparator);generated",
-        "kotlin.collections;ArraysKt;min;(Double[]);generated",
-        "kotlin.collections;ArraysKt;min;(Float[]);generated",
-        "kotlin.collections;ArraysKt;min;(byte[]);generated",
-        "kotlin.collections;ArraysKt;min;(char[]);generated",
-        "kotlin.collections;ArraysKt;min;(double[]);generated",
-        "kotlin.collections;ArraysKt;min;(float[]);generated",
-        "kotlin.collections;ArraysKt;min;(int[]);generated",
-        "kotlin.collections;ArraysKt;min;(long[]);generated",
-        "kotlin.collections;ArraysKt;min;(short[]);generated",
-        "kotlin.collections;ArraysKt;minBy;(boolean[],Function1);generated",
-        "kotlin.collections;ArraysKt;minBy;(byte[],Function1);generated",
-        "kotlin.collections;ArraysKt;minBy;(char[],Function1);generated",
-        "kotlin.collections;ArraysKt;minBy;(double[],Function1);generated",
-        "kotlin.collections;ArraysKt;minBy;(float[],Function1);generated",
-        "kotlin.collections;ArraysKt;minBy;(int[],Function1);generated",
-        "kotlin.collections;ArraysKt;minBy;(long[],Function1);generated",
-        "kotlin.collections;ArraysKt;minBy;(short[],Function1);generated",
-        "kotlin.collections;ArraysKt;minByOrNull;(boolean[],Function1);generated",
-        "kotlin.collections;ArraysKt;minByOrNull;(byte[],Function1);generated",
-        "kotlin.collections;ArraysKt;minByOrNull;(char[],Function1);generated",
-        "kotlin.collections;ArraysKt;minByOrNull;(double[],Function1);generated",
-        "kotlin.collections;ArraysKt;minByOrNull;(float[],Function1);generated",
-        "kotlin.collections;ArraysKt;minByOrNull;(int[],Function1);generated",
-        "kotlin.collections;ArraysKt;minByOrNull;(long[],Function1);generated",
-        "kotlin.collections;ArraysKt;minByOrNull;(short[],Function1);generated",
-        "kotlin.collections;ArraysKt;minByOrThrow;(boolean[],Function1);generated",
-        "kotlin.collections;ArraysKt;minByOrThrow;(byte[],Function1);generated",
-        "kotlin.collections;ArraysKt;minByOrThrow;(char[],Function1);generated",
-        "kotlin.collections;ArraysKt;minByOrThrow;(double[],Function1);generated",
-        "kotlin.collections;ArraysKt;minByOrThrow;(float[],Function1);generated",
-        "kotlin.collections;ArraysKt;minByOrThrow;(int[],Function1);generated",
-        "kotlin.collections;ArraysKt;minByOrThrow;(long[],Function1);generated",
-        "kotlin.collections;ArraysKt;minByOrThrow;(short[],Function1);generated",
-        "kotlin.collections;ArraysKt;minOf;(Object[],Function1);generated",
-        "kotlin.collections;ArraysKt;minOf;(boolean[],Function1);generated",
-        "kotlin.collections;ArraysKt;minOf;(byte[],Function1);generated",
-        "kotlin.collections;ArraysKt;minOf;(char[],Function1);generated",
-        "kotlin.collections;ArraysKt;minOf;(double[],Function1);generated",
-        "kotlin.collections;ArraysKt;minOf;(float[],Function1);generated",
-        "kotlin.collections;ArraysKt;minOf;(int[],Function1);generated",
-        "kotlin.collections;ArraysKt;minOf;(long[],Function1);generated",
-        "kotlin.collections;ArraysKt;minOf;(short[],Function1);generated",
-        "kotlin.collections;ArraysKt;minOfOrNull;(Object[],Function1);generated",
-        "kotlin.collections;ArraysKt;minOfOrNull;(boolean[],Function1);generated",
-        "kotlin.collections;ArraysKt;minOfOrNull;(byte[],Function1);generated",
-        "kotlin.collections;ArraysKt;minOfOrNull;(char[],Function1);generated",
-        "kotlin.collections;ArraysKt;minOfOrNull;(double[],Function1);generated",
-        "kotlin.collections;ArraysKt;minOfOrNull;(float[],Function1);generated",
-        "kotlin.collections;ArraysKt;minOfOrNull;(int[],Function1);generated",
-        "kotlin.collections;ArraysKt;minOfOrNull;(long[],Function1);generated",
-        "kotlin.collections;ArraysKt;minOfOrNull;(short[],Function1);generated",
-        "kotlin.collections;ArraysKt;minOfWith;(boolean[],Comparator,Function1);generated",
-        "kotlin.collections;ArraysKt;minOfWith;(byte[],Comparator,Function1);generated",
-        "kotlin.collections;ArraysKt;minOfWith;(char[],Comparator,Function1);generated",
-        "kotlin.collections;ArraysKt;minOfWith;(double[],Comparator,Function1);generated",
-        "kotlin.collections;ArraysKt;minOfWith;(float[],Comparator,Function1);generated",
-        "kotlin.collections;ArraysKt;minOfWith;(int[],Comparator,Function1);generated",
-        "kotlin.collections;ArraysKt;minOfWith;(long[],Comparator,Function1);generated",
-        "kotlin.collections;ArraysKt;minOfWith;(short[],Comparator,Function1);generated",
-        "kotlin.collections;ArraysKt;minOfWithOrNull;(boolean[],Comparator,Function1);generated",
-        "kotlin.collections;ArraysKt;minOfWithOrNull;(byte[],Comparator,Function1);generated",
-        "kotlin.collections;ArraysKt;minOfWithOrNull;(char[],Comparator,Function1);generated",
-        "kotlin.collections;ArraysKt;minOfWithOrNull;(double[],Comparator,Function1);generated",
-        "kotlin.collections;ArraysKt;minOfWithOrNull;(float[],Comparator,Function1);generated",
-        "kotlin.collections;ArraysKt;minOfWithOrNull;(int[],Comparator,Function1);generated",
-        "kotlin.collections;ArraysKt;minOfWithOrNull;(long[],Comparator,Function1);generated",
-        "kotlin.collections;ArraysKt;minOfWithOrNull;(short[],Comparator,Function1);generated",
-        "kotlin.collections;ArraysKt;minOrNull;(Double[]);generated",
-        "kotlin.collections;ArraysKt;minOrNull;(Float[]);generated",
-        "kotlin.collections;ArraysKt;minOrNull;(byte[]);generated",
-        "kotlin.collections;ArraysKt;minOrNull;(char[]);generated",
-        "kotlin.collections;ArraysKt;minOrNull;(double[]);generated",
-        "kotlin.collections;ArraysKt;minOrNull;(float[]);generated",
-        "kotlin.collections;ArraysKt;minOrNull;(int[]);generated",
-        "kotlin.collections;ArraysKt;minOrNull;(long[]);generated",
-        "kotlin.collections;ArraysKt;minOrNull;(short[]);generated",
-        "kotlin.collections;ArraysKt;minOrThrow;(Double[]);generated",
-        "kotlin.collections;ArraysKt;minOrThrow;(Float[]);generated",
-        "kotlin.collections;ArraysKt;minOrThrow;(byte[]);generated",
-        "kotlin.collections;ArraysKt;minOrThrow;(char[]);generated",
-        "kotlin.collections;ArraysKt;minOrThrow;(double[]);generated",
-        "kotlin.collections;ArraysKt;minOrThrow;(float[]);generated",
-        "kotlin.collections;ArraysKt;minOrThrow;(int[]);generated",
-        "kotlin.collections;ArraysKt;minOrThrow;(long[]);generated",
-        "kotlin.collections;ArraysKt;minOrThrow;(short[]);generated",
-        "kotlin.collections;ArraysKt;minWith;(boolean[],Comparator);generated",
-        "kotlin.collections;ArraysKt;minWith;(byte[],Comparator);generated",
-        "kotlin.collections;ArraysKt;minWith;(char[],Comparator);generated",
-        "kotlin.collections;ArraysKt;minWith;(double[],Comparator);generated",
-        "kotlin.collections;ArraysKt;minWith;(float[],Comparator);generated",
-        "kotlin.collections;ArraysKt;minWith;(int[],Comparator);generated",
-        "kotlin.collections;ArraysKt;minWith;(long[],Comparator);generated",
-        "kotlin.collections;ArraysKt;minWith;(short[],Comparator);generated",
-        "kotlin.collections;ArraysKt;minWithOrNull;(boolean[],Comparator);generated",
-        "kotlin.collections;ArraysKt;minWithOrNull;(byte[],Comparator);generated",
-        "kotlin.collections;ArraysKt;minWithOrNull;(char[],Comparator);generated",
-        "kotlin.collections;ArraysKt;minWithOrNull;(double[],Comparator);generated",
-        "kotlin.collections;ArraysKt;minWithOrNull;(float[],Comparator);generated",
-        "kotlin.collections;ArraysKt;minWithOrNull;(int[],Comparator);generated",
-        "kotlin.collections;ArraysKt;minWithOrNull;(long[],Comparator);generated",
-        "kotlin.collections;ArraysKt;minWithOrNull;(short[],Comparator);generated",
-        "kotlin.collections;ArraysKt;minWithOrThrow;(boolean[],Comparator);generated",
-        "kotlin.collections;ArraysKt;minWithOrThrow;(byte[],Comparator);generated",
-        "kotlin.collections;ArraysKt;minWithOrThrow;(char[],Comparator);generated",
-        "kotlin.collections;ArraysKt;minWithOrThrow;(double[],Comparator);generated",
-        "kotlin.collections;ArraysKt;minWithOrThrow;(float[],Comparator);generated",
-        "kotlin.collections;ArraysKt;minWithOrThrow;(int[],Comparator);generated",
-        "kotlin.collections;ArraysKt;minWithOrThrow;(long[],Comparator);generated",
-        "kotlin.collections;ArraysKt;minWithOrThrow;(short[],Comparator);generated",
-        "kotlin.collections;ArraysKt;none;(Object[]);generated",
-        "kotlin.collections;ArraysKt;none;(Object[],Function1);generated",
-        "kotlin.collections;ArraysKt;none;(boolean[]);generated",
-        "kotlin.collections;ArraysKt;none;(boolean[],Function1);generated",
-        "kotlin.collections;ArraysKt;none;(byte[]);generated",
-        "kotlin.collections;ArraysKt;none;(byte[],Function1);generated",
-        "kotlin.collections;ArraysKt;none;(char[]);generated",
-        "kotlin.collections;ArraysKt;none;(char[],Function1);generated",
-        "kotlin.collections;ArraysKt;none;(double[]);generated",
-        "kotlin.collections;ArraysKt;none;(double[],Function1);generated",
-        "kotlin.collections;ArraysKt;none;(float[]);generated",
-        "kotlin.collections;ArraysKt;none;(float[],Function1);generated",
-        "kotlin.collections;ArraysKt;none;(int[]);generated",
-        "kotlin.collections;ArraysKt;none;(int[],Function1);generated",
-        "kotlin.collections;ArraysKt;none;(long[]);generated",
-        "kotlin.collections;ArraysKt;none;(long[],Function1);generated",
-        "kotlin.collections;ArraysKt;none;(short[]);generated",
-        "kotlin.collections;ArraysKt;none;(short[],Function1);generated",
-        "kotlin.collections;ArraysKt;onEach;(boolean[],Function1);generated",
-        "kotlin.collections;ArraysKt;onEach;(double[],Function1);generated",
-        "kotlin.collections;ArraysKt;onEach;(float[],Function1);generated",
-        "kotlin.collections;ArraysKt;onEach;(int[],Function1);generated",
-        "kotlin.collections;ArraysKt;onEach;(long[],Function1);generated",
-        "kotlin.collections;ArraysKt;onEach;(short[],Function1);generated",
-        "kotlin.collections;ArraysKt;onEachIndexed;(boolean[],Function2);generated",
-        "kotlin.collections;ArraysKt;onEachIndexed;(double[],Function2);generated",
-        "kotlin.collections;ArraysKt;onEachIndexed;(float[],Function2);generated",
-        "kotlin.collections;ArraysKt;onEachIndexed;(int[],Function2);generated",
-        "kotlin.collections;ArraysKt;onEachIndexed;(long[],Function2);generated",
-        "kotlin.collections;ArraysKt;onEachIndexed;(short[],Function2);generated",
-        "kotlin.collections;ArraysKt;partition;(Object[],Function1);generated",
-        "kotlin.collections;ArraysKt;partition;(boolean[],Function1);generated",
-        "kotlin.collections;ArraysKt;partition;(byte[],Function1);generated",
-        "kotlin.collections;ArraysKt;partition;(char[],Function1);generated",
-        "kotlin.collections;ArraysKt;partition;(double[],Function1);generated",
-        "kotlin.collections;ArraysKt;partition;(float[],Function1);generated",
-        "kotlin.collections;ArraysKt;partition;(int[],Function1);generated",
-        "kotlin.collections;ArraysKt;partition;(long[],Function1);generated",
-        "kotlin.collections;ArraysKt;partition;(short[],Function1);generated",
-        "kotlin.collections;ArraysKt;plus;(boolean[],Collection);generated",
-        "kotlin.collections;ArraysKt;plus;(boolean[],boolean);generated",
-        "kotlin.collections;ArraysKt;plus;(boolean[],boolean[]);generated",
-        "kotlin.collections;ArraysKt;plus;(double[],Collection);generated",
-        "kotlin.collections;ArraysKt;plus;(double[],double);generated",
-        "kotlin.collections;ArraysKt;plus;(double[],double[]);generated",
-        "kotlin.collections;ArraysKt;plus;(float[],Collection);generated",
-        "kotlin.collections;ArraysKt;plus;(float[],float);generated",
-        "kotlin.collections;ArraysKt;plus;(float[],float[]);generated",
-        "kotlin.collections;ArraysKt;plus;(int[],Collection);generated",
-        "kotlin.collections;ArraysKt;plus;(int[],int);generated",
-        "kotlin.collections;ArraysKt;plus;(int[],int[]);generated",
-        "kotlin.collections;ArraysKt;plus;(long[],Collection);generated",
-        "kotlin.collections;ArraysKt;plus;(long[],long);generated",
-        "kotlin.collections;ArraysKt;plus;(long[],long[]);generated",
-        "kotlin.collections;ArraysKt;plus;(short[],Collection);generated",
-        "kotlin.collections;ArraysKt;plus;(short[],short);generated",
-        "kotlin.collections;ArraysKt;plus;(short[],short[]);generated",
-        "kotlin.collections;ArraysKt;random;(Object[]);generated",
-        "kotlin.collections;ArraysKt;random;(Object[],Random);generated",
-        "kotlin.collections;ArraysKt;random;(boolean[]);generated",
-        "kotlin.collections;ArraysKt;random;(boolean[],Random);generated",
-        "kotlin.collections;ArraysKt;random;(byte[]);generated",
-        "kotlin.collections;ArraysKt;random;(byte[],Random);generated",
-        "kotlin.collections;ArraysKt;random;(char[]);generated",
-        "kotlin.collections;ArraysKt;random;(char[],Random);generated",
-        "kotlin.collections;ArraysKt;random;(double[]);generated",
-        "kotlin.collections;ArraysKt;random;(double[],Random);generated",
-        "kotlin.collections;ArraysKt;random;(float[]);generated",
-        "kotlin.collections;ArraysKt;random;(float[],Random);generated",
-        "kotlin.collections;ArraysKt;random;(int[]);generated",
-        "kotlin.collections;ArraysKt;random;(int[],Random);generated",
-        "kotlin.collections;ArraysKt;random;(long[]);generated",
-        "kotlin.collections;ArraysKt;random;(long[],Random);generated",
-        "kotlin.collections;ArraysKt;random;(short[]);generated",
-        "kotlin.collections;ArraysKt;random;(short[],Random);generated",
-        "kotlin.collections;ArraysKt;randomOrNull;(Object[]);generated",
-        "kotlin.collections;ArraysKt;randomOrNull;(Object[],Random);generated",
-        "kotlin.collections;ArraysKt;randomOrNull;(boolean[]);generated",
-        "kotlin.collections;ArraysKt;randomOrNull;(boolean[],Random);generated",
-        "kotlin.collections;ArraysKt;randomOrNull;(byte[]);generated",
-        "kotlin.collections;ArraysKt;randomOrNull;(byte[],Random);generated",
-        "kotlin.collections;ArraysKt;randomOrNull;(char[]);generated",
-        "kotlin.collections;ArraysKt;randomOrNull;(char[],Random);generated",
-        "kotlin.collections;ArraysKt;randomOrNull;(double[]);generated",
-        "kotlin.collections;ArraysKt;randomOrNull;(double[],Random);generated",
-        "kotlin.collections;ArraysKt;randomOrNull;(float[]);generated",
-        "kotlin.collections;ArraysKt;randomOrNull;(float[],Random);generated",
-        "kotlin.collections;ArraysKt;randomOrNull;(int[]);generated",
-        "kotlin.collections;ArraysKt;randomOrNull;(int[],Random);generated",
-        "kotlin.collections;ArraysKt;randomOrNull;(long[]);generated",
-        "kotlin.collections;ArraysKt;randomOrNull;(long[],Random);generated",
-        "kotlin.collections;ArraysKt;randomOrNull;(short[]);generated",
-        "kotlin.collections;ArraysKt;randomOrNull;(short[],Random);generated",
-        "kotlin.collections;ArraysKt;reduce;(boolean[],Function2);generated",
-        "kotlin.collections;ArraysKt;reduce;(byte[],Function2);generated",
-        "kotlin.collections;ArraysKt;reduce;(char[],Function2);generated",
-        "kotlin.collections;ArraysKt;reduce;(double[],Function2);generated",
-        "kotlin.collections;ArraysKt;reduce;(float[],Function2);generated",
-        "kotlin.collections;ArraysKt;reduce;(int[],Function2);generated",
-        "kotlin.collections;ArraysKt;reduce;(long[],Function2);generated",
-        "kotlin.collections;ArraysKt;reduce;(short[],Function2);generated",
-        "kotlin.collections;ArraysKt;reduceIndexed;(boolean[],Function3);generated",
-        "kotlin.collections;ArraysKt;reduceIndexed;(byte[],Function3);generated",
-        "kotlin.collections;ArraysKt;reduceIndexed;(char[],Function3);generated",
-        "kotlin.collections;ArraysKt;reduceIndexed;(double[],Function3);generated",
-        "kotlin.collections;ArraysKt;reduceIndexed;(float[],Function3);generated",
-        "kotlin.collections;ArraysKt;reduceIndexed;(int[],Function3);generated",
-        "kotlin.collections;ArraysKt;reduceIndexed;(long[],Function3);generated",
-        "kotlin.collections;ArraysKt;reduceIndexed;(short[],Function3);generated",
-        "kotlin.collections;ArraysKt;reduceIndexedOrNull;(boolean[],Function3);generated",
-        "kotlin.collections;ArraysKt;reduceIndexedOrNull;(byte[],Function3);generated",
-        "kotlin.collections;ArraysKt;reduceIndexedOrNull;(char[],Function3);generated",
-        "kotlin.collections;ArraysKt;reduceIndexedOrNull;(double[],Function3);generated",
-        "kotlin.collections;ArraysKt;reduceIndexedOrNull;(float[],Function3);generated",
-        "kotlin.collections;ArraysKt;reduceIndexedOrNull;(int[],Function3);generated",
-        "kotlin.collections;ArraysKt;reduceIndexedOrNull;(long[],Function3);generated",
-        "kotlin.collections;ArraysKt;reduceIndexedOrNull;(short[],Function3);generated",
-        "kotlin.collections;ArraysKt;reduceOrNull;(boolean[],Function2);generated",
-        "kotlin.collections;ArraysKt;reduceOrNull;(byte[],Function2);generated",
-        "kotlin.collections;ArraysKt;reduceOrNull;(char[],Function2);generated",
-        "kotlin.collections;ArraysKt;reduceOrNull;(double[],Function2);generated",
-        "kotlin.collections;ArraysKt;reduceOrNull;(float[],Function2);generated",
-        "kotlin.collections;ArraysKt;reduceOrNull;(int[],Function2);generated",
-        "kotlin.collections;ArraysKt;reduceOrNull;(long[],Function2);generated",
-        "kotlin.collections;ArraysKt;reduceOrNull;(short[],Function2);generated",
-        "kotlin.collections;ArraysKt;reduceRight;(Object[],Function2);generated",
-        "kotlin.collections;ArraysKt;reduceRight;(boolean[],Function2);generated",
-        "kotlin.collections;ArraysKt;reduceRight;(byte[],Function2);generated",
-        "kotlin.collections;ArraysKt;reduceRight;(char[],Function2);generated",
-        "kotlin.collections;ArraysKt;reduceRight;(double[],Function2);generated",
-        "kotlin.collections;ArraysKt;reduceRight;(float[],Function2);generated",
-        "kotlin.collections;ArraysKt;reduceRight;(int[],Function2);generated",
-        "kotlin.collections;ArraysKt;reduceRight;(long[],Function2);generated",
-        "kotlin.collections;ArraysKt;reduceRight;(short[],Function2);generated",
-        "kotlin.collections;ArraysKt;reduceRightIndexed;(Object[],Function3);generated",
-        "kotlin.collections;ArraysKt;reduceRightIndexed;(boolean[],Function3);generated",
-        "kotlin.collections;ArraysKt;reduceRightIndexed;(byte[],Function3);generated",
-        "kotlin.collections;ArraysKt;reduceRightIndexed;(char[],Function3);generated",
-        "kotlin.collections;ArraysKt;reduceRightIndexed;(double[],Function3);generated",
-        "kotlin.collections;ArraysKt;reduceRightIndexed;(float[],Function3);generated",
-        "kotlin.collections;ArraysKt;reduceRightIndexed;(int[],Function3);generated",
-        "kotlin.collections;ArraysKt;reduceRightIndexed;(long[],Function3);generated",
-        "kotlin.collections;ArraysKt;reduceRightIndexed;(short[],Function3);generated",
-        "kotlin.collections;ArraysKt;reduceRightIndexedOrNull;(Object[],Function3);generated",
-        "kotlin.collections;ArraysKt;reduceRightIndexedOrNull;(boolean[],Function3);generated",
-        "kotlin.collections;ArraysKt;reduceRightIndexedOrNull;(byte[],Function3);generated",
-        "kotlin.collections;ArraysKt;reduceRightIndexedOrNull;(char[],Function3);generated",
-        "kotlin.collections;ArraysKt;reduceRightIndexedOrNull;(double[],Function3);generated",
-        "kotlin.collections;ArraysKt;reduceRightIndexedOrNull;(float[],Function3);generated",
-        "kotlin.collections;ArraysKt;reduceRightIndexedOrNull;(int[],Function3);generated",
-        "kotlin.collections;ArraysKt;reduceRightIndexedOrNull;(long[],Function3);generated",
-        "kotlin.collections;ArraysKt;reduceRightIndexedOrNull;(short[],Function3);generated",
-        "kotlin.collections;ArraysKt;reduceRightOrNull;(Object[],Function2);generated",
-        "kotlin.collections;ArraysKt;reduceRightOrNull;(boolean[],Function2);generated",
-        "kotlin.collections;ArraysKt;reduceRightOrNull;(byte[],Function2);generated",
-        "kotlin.collections;ArraysKt;reduceRightOrNull;(char[],Function2);generated",
-        "kotlin.collections;ArraysKt;reduceRightOrNull;(double[],Function2);generated",
-        "kotlin.collections;ArraysKt;reduceRightOrNull;(float[],Function2);generated",
-        "kotlin.collections;ArraysKt;reduceRightOrNull;(int[],Function2);generated",
-        "kotlin.collections;ArraysKt;reduceRightOrNull;(long[],Function2);generated",
-        "kotlin.collections;ArraysKt;reduceRightOrNull;(short[],Function2);generated",
-        "kotlin.collections;ArraysKt;reverse;(Object[]);generated",
-        "kotlin.collections;ArraysKt;reverse;(Object[],int,int);generated",
-        "kotlin.collections;ArraysKt;reverse;(boolean[]);generated",
-        "kotlin.collections;ArraysKt;reverse;(boolean[],int,int);generated",
-        "kotlin.collections;ArraysKt;reverse;(byte[]);generated",
-        "kotlin.collections;ArraysKt;reverse;(byte[],int,int);generated",
-        "kotlin.collections;ArraysKt;reverse;(char[]);generated",
-        "kotlin.collections;ArraysKt;reverse;(char[],int,int);generated",
-        "kotlin.collections;ArraysKt;reverse;(double[]);generated",
-        "kotlin.collections;ArraysKt;reverse;(double[],int,int);generated",
-        "kotlin.collections;ArraysKt;reverse;(float[]);generated",
-        "kotlin.collections;ArraysKt;reverse;(float[],int,int);generated",
-        "kotlin.collections;ArraysKt;reverse;(int[]);generated",
-        "kotlin.collections;ArraysKt;reverse;(int[],int,int);generated",
-        "kotlin.collections;ArraysKt;reverse;(long[]);generated",
-        "kotlin.collections;ArraysKt;reverse;(long[],int,int);generated",
-        "kotlin.collections;ArraysKt;reverse;(short[]);generated",
-        "kotlin.collections;ArraysKt;reverse;(short[],int,int);generated",
-        "kotlin.collections;ArraysKt;reversed;(boolean[]);generated",
-        "kotlin.collections;ArraysKt;reversed;(byte[]);generated",
-        "kotlin.collections;ArraysKt;reversed;(char[]);generated",
-        "kotlin.collections;ArraysKt;reversed;(double[]);generated",
-        "kotlin.collections;ArraysKt;reversed;(float[]);generated",
-        "kotlin.collections;ArraysKt;reversed;(int[]);generated",
-        "kotlin.collections;ArraysKt;reversed;(long[]);generated",
-        "kotlin.collections;ArraysKt;reversed;(short[]);generated",
-        "kotlin.collections;ArraysKt;reversedArray;(boolean[]);generated",
-        "kotlin.collections;ArraysKt;reversedArray;(double[]);generated",
-        "kotlin.collections;ArraysKt;reversedArray;(float[]);generated",
-        "kotlin.collections;ArraysKt;reversedArray;(int[]);generated",
-        "kotlin.collections;ArraysKt;reversedArray;(long[]);generated",
-        "kotlin.collections;ArraysKt;reversedArray;(short[]);generated",
-        "kotlin.collections;ArraysKt;runningReduce;(Object[],Function2);generated",
-        "kotlin.collections;ArraysKt;runningReduce;(boolean[],Function2);generated",
-        "kotlin.collections;ArraysKt;runningReduce;(byte[],Function2);generated",
-        "kotlin.collections;ArraysKt;runningReduce;(char[],Function2);generated",
-        "kotlin.collections;ArraysKt;runningReduce;(double[],Function2);generated",
-        "kotlin.collections;ArraysKt;runningReduce;(float[],Function2);generated",
-        "kotlin.collections;ArraysKt;runningReduce;(int[],Function2);generated",
-        "kotlin.collections;ArraysKt;runningReduce;(long[],Function2);generated",
-        "kotlin.collections;ArraysKt;runningReduce;(short[],Function2);generated",
-        "kotlin.collections;ArraysKt;runningReduceIndexed;(Object[],Function3);generated",
-        "kotlin.collections;ArraysKt;runningReduceIndexed;(boolean[],Function3);generated",
-        "kotlin.collections;ArraysKt;runningReduceIndexed;(byte[],Function3);generated",
-        "kotlin.collections;ArraysKt;runningReduceIndexed;(char[],Function3);generated",
-        "kotlin.collections;ArraysKt;runningReduceIndexed;(double[],Function3);generated",
-        "kotlin.collections;ArraysKt;runningReduceIndexed;(float[],Function3);generated",
-        "kotlin.collections;ArraysKt;runningReduceIndexed;(int[],Function3);generated",
-        "kotlin.collections;ArraysKt;runningReduceIndexed;(long[],Function3);generated",
-        "kotlin.collections;ArraysKt;runningReduceIndexed;(short[],Function3);generated",
-        "kotlin.collections;ArraysKt;shuffle;(Object[]);generated",
-        "kotlin.collections;ArraysKt;shuffle;(Object[],Random);generated",
-        "kotlin.collections;ArraysKt;shuffle;(boolean[]);generated",
-        "kotlin.collections;ArraysKt;shuffle;(boolean[],Random);generated",
-        "kotlin.collections;ArraysKt;shuffle;(byte[]);generated",
-        "kotlin.collections;ArraysKt;shuffle;(byte[],Random);generated",
-        "kotlin.collections;ArraysKt;shuffle;(char[]);generated",
-        "kotlin.collections;ArraysKt;shuffle;(char[],Random);generated",
-        "kotlin.collections;ArraysKt;shuffle;(double[]);generated",
-        "kotlin.collections;ArraysKt;shuffle;(double[],Random);generated",
-        "kotlin.collections;ArraysKt;shuffle;(float[]);generated",
-        "kotlin.collections;ArraysKt;shuffle;(float[],Random);generated",
-        "kotlin.collections;ArraysKt;shuffle;(int[]);generated",
-        "kotlin.collections;ArraysKt;shuffle;(int[],Random);generated",
-        "kotlin.collections;ArraysKt;shuffle;(long[]);generated",
-        "kotlin.collections;ArraysKt;shuffle;(long[],Random);generated",
-        "kotlin.collections;ArraysKt;shuffle;(short[]);generated",
-        "kotlin.collections;ArraysKt;shuffle;(short[],Random);generated",
-        "kotlin.collections;ArraysKt;single;(Object[],Function1);generated",
-        "kotlin.collections;ArraysKt;single;(boolean[]);generated",
-        "kotlin.collections;ArraysKt;single;(boolean[],Function1);generated",
-        "kotlin.collections;ArraysKt;single;(byte[]);generated",
-        "kotlin.collections;ArraysKt;single;(byte[],Function1);generated",
-        "kotlin.collections;ArraysKt;single;(char[]);generated",
-        "kotlin.collections;ArraysKt;single;(char[],Function1);generated",
-        "kotlin.collections;ArraysKt;single;(double[]);generated",
-        "kotlin.collections;ArraysKt;single;(double[],Function1);generated",
-        "kotlin.collections;ArraysKt;single;(float[]);generated",
-        "kotlin.collections;ArraysKt;single;(float[],Function1);generated",
-        "kotlin.collections;ArraysKt;single;(int[]);generated",
-        "kotlin.collections;ArraysKt;single;(int[],Function1);generated",
-        "kotlin.collections;ArraysKt;single;(long[]);generated",
-        "kotlin.collections;ArraysKt;single;(long[],Function1);generated",
-        "kotlin.collections;ArraysKt;single;(short[]);generated",
-        "kotlin.collections;ArraysKt;single;(short[],Function1);generated",
-        "kotlin.collections;ArraysKt;singleOrNull;(Object[],Function1);generated",
-        "kotlin.collections;ArraysKt;singleOrNull;(boolean[]);generated",
-        "kotlin.collections;ArraysKt;singleOrNull;(boolean[],Function1);generated",
-        "kotlin.collections;ArraysKt;singleOrNull;(byte[]);generated",
-        "kotlin.collections;ArraysKt;singleOrNull;(byte[],Function1);generated",
-        "kotlin.collections;ArraysKt;singleOrNull;(char[]);generated",
-        "kotlin.collections;ArraysKt;singleOrNull;(char[],Function1);generated",
-        "kotlin.collections;ArraysKt;singleOrNull;(double[]);generated",
-        "kotlin.collections;ArraysKt;singleOrNull;(double[],Function1);generated",
-        "kotlin.collections;ArraysKt;singleOrNull;(float[]);generated",
-        "kotlin.collections;ArraysKt;singleOrNull;(float[],Function1);generated",
-        "kotlin.collections;ArraysKt;singleOrNull;(int[]);generated",
-        "kotlin.collections;ArraysKt;singleOrNull;(int[],Function1);generated",
-        "kotlin.collections;ArraysKt;singleOrNull;(long[]);generated",
-        "kotlin.collections;ArraysKt;singleOrNull;(long[],Function1);generated",
-        "kotlin.collections;ArraysKt;singleOrNull;(short[]);generated",
-        "kotlin.collections;ArraysKt;singleOrNull;(short[],Function1);generated",
-        "kotlin.collections;ArraysKt;slice;(Object[],Iterable);generated",
-        "kotlin.collections;ArraysKt;slice;(boolean[],IntRange);generated",
-        "kotlin.collections;ArraysKt;slice;(boolean[],Iterable);generated",
-        "kotlin.collections;ArraysKt;slice;(byte[],IntRange);generated",
-        "kotlin.collections;ArraysKt;slice;(byte[],Iterable);generated",
-        "kotlin.collections;ArraysKt;slice;(char[],IntRange);generated",
-        "kotlin.collections;ArraysKt;slice;(char[],Iterable);generated",
-        "kotlin.collections;ArraysKt;slice;(double[],IntRange);generated",
-        "kotlin.collections;ArraysKt;slice;(double[],Iterable);generated",
-        "kotlin.collections;ArraysKt;slice;(float[],IntRange);generated",
-        "kotlin.collections;ArraysKt;slice;(float[],Iterable);generated",
-        "kotlin.collections;ArraysKt;slice;(int[],IntRange);generated",
-        "kotlin.collections;ArraysKt;slice;(int[],Iterable);generated",
-        "kotlin.collections;ArraysKt;slice;(long[],IntRange);generated",
-        "kotlin.collections;ArraysKt;slice;(long[],Iterable);generated",
-        "kotlin.collections;ArraysKt;slice;(short[],IntRange);generated",
-        "kotlin.collections;ArraysKt;slice;(short[],Iterable);generated",
-        "kotlin.collections;ArraysKt;sliceArray;(boolean[],Collection);generated",
-        "kotlin.collections;ArraysKt;sliceArray;(boolean[],IntRange);generated",
-        "kotlin.collections;ArraysKt;sliceArray;(byte[],Collection);generated",
-        "kotlin.collections;ArraysKt;sliceArray;(char[],Collection);generated",
-        "kotlin.collections;ArraysKt;sliceArray;(double[],Collection);generated",
-        "kotlin.collections;ArraysKt;sliceArray;(double[],IntRange);generated",
-        "kotlin.collections;ArraysKt;sliceArray;(float[],Collection);generated",
-        "kotlin.collections;ArraysKt;sliceArray;(float[],IntRange);generated",
-        "kotlin.collections;ArraysKt;sliceArray;(int[],Collection);generated",
-        "kotlin.collections;ArraysKt;sliceArray;(int[],IntRange);generated",
-        "kotlin.collections;ArraysKt;sliceArray;(long[],Collection);generated",
-        "kotlin.collections;ArraysKt;sliceArray;(long[],IntRange);generated",
-        "kotlin.collections;ArraysKt;sliceArray;(short[],Collection);generated",
-        "kotlin.collections;ArraysKt;sliceArray;(short[],IntRange);generated",
-        "kotlin.collections;ArraysKt;sort;(Comparable[]);generated",
-        "kotlin.collections;ArraysKt;sort;(Comparable[],int,int);generated",
-        "kotlin.collections;ArraysKt;sort;(Object[]);generated",
-        "kotlin.collections;ArraysKt;sort;(Object[],int,int);generated",
-        "kotlin.collections;ArraysKt;sort;(byte[]);generated",
-        "kotlin.collections;ArraysKt;sort;(byte[],int,int);generated",
-        "kotlin.collections;ArraysKt;sort;(char[]);generated",
-        "kotlin.collections;ArraysKt;sort;(char[],int,int);generated",
-        "kotlin.collections;ArraysKt;sort;(double[]);generated",
-        "kotlin.collections;ArraysKt;sort;(double[],int,int);generated",
-        "kotlin.collections;ArraysKt;sort;(float[]);generated",
-        "kotlin.collections;ArraysKt;sort;(float[],int,int);generated",
-        "kotlin.collections;ArraysKt;sort;(int[]);generated",
-        "kotlin.collections;ArraysKt;sort;(int[],int,int);generated",
-        "kotlin.collections;ArraysKt;sort;(long[]);generated",
-        "kotlin.collections;ArraysKt;sort;(long[],int,int);generated",
-        "kotlin.collections;ArraysKt;sort;(short[]);generated",
-        "kotlin.collections;ArraysKt;sort;(short[],int,int);generated",
-        "kotlin.collections;ArraysKt;sortBy;(Object[],Function1);generated",
-        "kotlin.collections;ArraysKt;sortByDescending;(Object[],Function1);generated",
-        "kotlin.collections;ArraysKt;sortDescending;(Comparable[]);generated",
-        "kotlin.collections;ArraysKt;sortDescending;(Comparable[],int,int);generated",
-        "kotlin.collections;ArraysKt;sortDescending;(byte[]);generated",
-        "kotlin.collections;ArraysKt;sortDescending;(byte[],int,int);generated",
-        "kotlin.collections;ArraysKt;sortDescending;(char[]);generated",
-        "kotlin.collections;ArraysKt;sortDescending;(char[],int,int);generated",
-        "kotlin.collections;ArraysKt;sortDescending;(double[]);generated",
-        "kotlin.collections;ArraysKt;sortDescending;(double[],int,int);generated",
-        "kotlin.collections;ArraysKt;sortDescending;(float[]);generated",
-        "kotlin.collections;ArraysKt;sortDescending;(float[],int,int);generated",
-        "kotlin.collections;ArraysKt;sortDescending;(int[]);generated",
-        "kotlin.collections;ArraysKt;sortDescending;(int[],int,int);generated",
-        "kotlin.collections;ArraysKt;sortDescending;(long[]);generated",
-        "kotlin.collections;ArraysKt;sortDescending;(long[],int,int);generated",
-        "kotlin.collections;ArraysKt;sortDescending;(short[]);generated",
-        "kotlin.collections;ArraysKt;sortDescending;(short[],int,int);generated",
-        "kotlin.collections;ArraysKt;sortWith;(Object[],Comparator);generated",
-        "kotlin.collections;ArraysKt;sortWith;(Object[],Comparator,int,int);generated",
-        "kotlin.collections;ArraysKt;sorted;(byte[]);generated",
-        "kotlin.collections;ArraysKt;sorted;(char[]);generated",
-        "kotlin.collections;ArraysKt;sorted;(double[]);generated",
-        "kotlin.collections;ArraysKt;sorted;(float[]);generated",
-        "kotlin.collections;ArraysKt;sorted;(int[]);generated",
-        "kotlin.collections;ArraysKt;sorted;(long[]);generated",
-        "kotlin.collections;ArraysKt;sorted;(short[]);generated",
-        "kotlin.collections;ArraysKt;sortedArray;(double[]);generated",
-        "kotlin.collections;ArraysKt;sortedArray;(float[]);generated",
-        "kotlin.collections;ArraysKt;sortedArray;(int[]);generated",
-        "kotlin.collections;ArraysKt;sortedArray;(long[]);generated",
-        "kotlin.collections;ArraysKt;sortedArray;(short[]);generated",
-        "kotlin.collections;ArraysKt;sortedArrayDescending;(double[]);generated",
-        "kotlin.collections;ArraysKt;sortedArrayDescending;(float[]);generated",
-        "kotlin.collections;ArraysKt;sortedArrayDescending;(int[]);generated",
-        "kotlin.collections;ArraysKt;sortedArrayDescending;(long[]);generated",
-        "kotlin.collections;ArraysKt;sortedArrayDescending;(short[]);generated",
-        "kotlin.collections;ArraysKt;sortedBy;(boolean[],Function1);generated",
-        "kotlin.collections;ArraysKt;sortedBy;(byte[],Function1);generated",
-        "kotlin.collections;ArraysKt;sortedBy;(char[],Function1);generated",
-        "kotlin.collections;ArraysKt;sortedBy;(double[],Function1);generated",
-        "kotlin.collections;ArraysKt;sortedBy;(float[],Function1);generated",
-        "kotlin.collections;ArraysKt;sortedBy;(int[],Function1);generated",
-        "kotlin.collections;ArraysKt;sortedBy;(long[],Function1);generated",
-        "kotlin.collections;ArraysKt;sortedBy;(short[],Function1);generated",
-        "kotlin.collections;ArraysKt;sortedByDescending;(boolean[],Function1);generated",
-        "kotlin.collections;ArraysKt;sortedByDescending;(byte[],Function1);generated",
-        "kotlin.collections;ArraysKt;sortedByDescending;(char[],Function1);generated",
-        "kotlin.collections;ArraysKt;sortedByDescending;(double[],Function1);generated",
-        "kotlin.collections;ArraysKt;sortedByDescending;(float[],Function1);generated",
-        "kotlin.collections;ArraysKt;sortedByDescending;(int[],Function1);generated",
-        "kotlin.collections;ArraysKt;sortedByDescending;(long[],Function1);generated",
-        "kotlin.collections;ArraysKt;sortedByDescending;(short[],Function1);generated",
-        "kotlin.collections;ArraysKt;sortedDescending;(byte[]);generated",
-        "kotlin.collections;ArraysKt;sortedDescending;(char[]);generated",
-        "kotlin.collections;ArraysKt;sortedDescending;(double[]);generated",
-        "kotlin.collections;ArraysKt;sortedDescending;(float[]);generated",
-        "kotlin.collections;ArraysKt;sortedDescending;(int[]);generated",
-        "kotlin.collections;ArraysKt;sortedDescending;(long[]);generated",
-        "kotlin.collections;ArraysKt;sortedDescending;(short[]);generated",
-        "kotlin.collections;ArraysKt;sortedWith;(boolean[],Comparator);generated",
-        "kotlin.collections;ArraysKt;sortedWith;(byte[],Comparator);generated",
-        "kotlin.collections;ArraysKt;sortedWith;(char[],Comparator);generated",
-        "kotlin.collections;ArraysKt;sortedWith;(double[],Comparator);generated",
-        "kotlin.collections;ArraysKt;sortedWith;(float[],Comparator);generated",
-        "kotlin.collections;ArraysKt;sortedWith;(int[],Comparator);generated",
-        "kotlin.collections;ArraysKt;sortedWith;(long[],Comparator);generated",
-        "kotlin.collections;ArraysKt;sortedWith;(short[],Comparator);generated",
-        "kotlin.collections;ArraysKt;subtract;(Object[],Iterable);generated",
-        "kotlin.collections;ArraysKt;subtract;(boolean[],Iterable);generated",
-        "kotlin.collections;ArraysKt;subtract;(byte[],Iterable);generated",
-        "kotlin.collections;ArraysKt;subtract;(char[],Iterable);generated",
-        "kotlin.collections;ArraysKt;subtract;(double[],Iterable);generated",
-        "kotlin.collections;ArraysKt;subtract;(float[],Iterable);generated",
-        "kotlin.collections;ArraysKt;subtract;(int[],Iterable);generated",
-        "kotlin.collections;ArraysKt;subtract;(long[],Iterable);generated",
-        "kotlin.collections;ArraysKt;subtract;(short[],Iterable);generated",
-        "kotlin.collections;ArraysKt;sum;(byte[]);generated",
-        "kotlin.collections;ArraysKt;sum;(double[]);generated",
-        "kotlin.collections;ArraysKt;sum;(float[]);generated",
-        "kotlin.collections;ArraysKt;sum;(int[]);generated",
-        "kotlin.collections;ArraysKt;sum;(long[]);generated",
-        "kotlin.collections;ArraysKt;sum;(short[]);generated",
-        "kotlin.collections;ArraysKt;sumBy;(Object[],Function1);generated",
-        "kotlin.collections;ArraysKt;sumBy;(boolean[],Function1);generated",
-        "kotlin.collections;ArraysKt;sumBy;(byte[],Function1);generated",
-        "kotlin.collections;ArraysKt;sumBy;(char[],Function1);generated",
-        "kotlin.collections;ArraysKt;sumBy;(double[],Function1);generated",
-        "kotlin.collections;ArraysKt;sumBy;(float[],Function1);generated",
-        "kotlin.collections;ArraysKt;sumBy;(int[],Function1);generated",
-        "kotlin.collections;ArraysKt;sumBy;(long[],Function1);generated",
-        "kotlin.collections;ArraysKt;sumBy;(short[],Function1);generated",
-        "kotlin.collections;ArraysKt;sumByDouble;(Object[],Function1);generated",
-        "kotlin.collections;ArraysKt;sumByDouble;(boolean[],Function1);generated",
-        "kotlin.collections;ArraysKt;sumByDouble;(byte[],Function1);generated",
-        "kotlin.collections;ArraysKt;sumByDouble;(char[],Function1);generated",
-        "kotlin.collections;ArraysKt;sumByDouble;(double[],Function1);generated",
-        "kotlin.collections;ArraysKt;sumByDouble;(float[],Function1);generated",
-        "kotlin.collections;ArraysKt;sumByDouble;(int[],Function1);generated",
-        "kotlin.collections;ArraysKt;sumByDouble;(long[],Function1);generated",
-        "kotlin.collections;ArraysKt;sumByDouble;(short[],Function1);generated",
-        "kotlin.collections;ArraysKt;sumOfBigDecimal;(Object[],Function1);generated",
-        "kotlin.collections;ArraysKt;sumOfBigDecimal;(boolean[],Function1);generated",
-        "kotlin.collections;ArraysKt;sumOfBigDecimal;(byte[],Function1);generated",
-        "kotlin.collections;ArraysKt;sumOfBigDecimal;(char[],Function1);generated",
-        "kotlin.collections;ArraysKt;sumOfBigDecimal;(double[],Function1);generated",
-        "kotlin.collections;ArraysKt;sumOfBigDecimal;(float[],Function1);generated",
-        "kotlin.collections;ArraysKt;sumOfBigDecimal;(int[],Function1);generated",
-        "kotlin.collections;ArraysKt;sumOfBigDecimal;(long[],Function1);generated",
-        "kotlin.collections;ArraysKt;sumOfBigDecimal;(short[],Function1);generated",
-        "kotlin.collections;ArraysKt;sumOfBigInteger;(Object[],Function1);generated",
-        "kotlin.collections;ArraysKt;sumOfBigInteger;(boolean[],Function1);generated",
-        "kotlin.collections;ArraysKt;sumOfBigInteger;(byte[],Function1);generated",
-        "kotlin.collections;ArraysKt;sumOfBigInteger;(char[],Function1);generated",
-        "kotlin.collections;ArraysKt;sumOfBigInteger;(double[],Function1);generated",
-        "kotlin.collections;ArraysKt;sumOfBigInteger;(float[],Function1);generated",
-        "kotlin.collections;ArraysKt;sumOfBigInteger;(int[],Function1);generated",
-        "kotlin.collections;ArraysKt;sumOfBigInteger;(long[],Function1);generated",
-        "kotlin.collections;ArraysKt;sumOfBigInteger;(short[],Function1);generated",
-        "kotlin.collections;ArraysKt;sumOfByte;(Byte[]);generated",
-        "kotlin.collections;ArraysKt;sumOfDouble;(Double[]);generated",
-        "kotlin.collections;ArraysKt;sumOfDouble;(Object[],Function1);generated",
-        "kotlin.collections;ArraysKt;sumOfDouble;(boolean[],Function1);generated",
-        "kotlin.collections;ArraysKt;sumOfDouble;(byte[],Function1);generated",
-        "kotlin.collections;ArraysKt;sumOfDouble;(char[],Function1);generated",
-        "kotlin.collections;ArraysKt;sumOfDouble;(double[],Function1);generated",
-        "kotlin.collections;ArraysKt;sumOfDouble;(float[],Function1);generated",
-        "kotlin.collections;ArraysKt;sumOfDouble;(int[],Function1);generated",
-        "kotlin.collections;ArraysKt;sumOfDouble;(long[],Function1);generated",
-        "kotlin.collections;ArraysKt;sumOfDouble;(short[],Function1);generated",
-        "kotlin.collections;ArraysKt;sumOfFloat;(Float[]);generated",
-        "kotlin.collections;ArraysKt;sumOfInt;(Integer[]);generated",
-        "kotlin.collections;ArraysKt;sumOfInt;(Object[],Function1);generated",
-        "kotlin.collections;ArraysKt;sumOfInt;(boolean[],Function1);generated",
-        "kotlin.collections;ArraysKt;sumOfInt;(byte[],Function1);generated",
-        "kotlin.collections;ArraysKt;sumOfInt;(char[],Function1);generated",
-        "kotlin.collections;ArraysKt;sumOfInt;(double[],Function1);generated",
-        "kotlin.collections;ArraysKt;sumOfInt;(float[],Function1);generated",
-        "kotlin.collections;ArraysKt;sumOfInt;(int[],Function1);generated",
-        "kotlin.collections;ArraysKt;sumOfInt;(long[],Function1);generated",
-        "kotlin.collections;ArraysKt;sumOfInt;(short[],Function1);generated",
-        "kotlin.collections;ArraysKt;sumOfLong;(Long[]);generated",
-        "kotlin.collections;ArraysKt;sumOfLong;(Object[],Function1);generated",
-        "kotlin.collections;ArraysKt;sumOfLong;(boolean[],Function1);generated",
-        "kotlin.collections;ArraysKt;sumOfLong;(byte[],Function1);generated",
-        "kotlin.collections;ArraysKt;sumOfLong;(char[],Function1);generated",
-        "kotlin.collections;ArraysKt;sumOfLong;(double[],Function1);generated",
-        "kotlin.collections;ArraysKt;sumOfLong;(float[],Function1);generated",
-        "kotlin.collections;ArraysKt;sumOfLong;(int[],Function1);generated",
-        "kotlin.collections;ArraysKt;sumOfLong;(long[],Function1);generated",
-        "kotlin.collections;ArraysKt;sumOfLong;(short[],Function1);generated",
-        "kotlin.collections;ArraysKt;sumOfShort;(Short[]);generated",
-        "kotlin.collections;ArraysKt;sumOfUInt;(Object[],Function1);generated",
-        "kotlin.collections;ArraysKt;sumOfUInt;(boolean[],Function1);generated",
-        "kotlin.collections;ArraysKt;sumOfUInt;(byte[],Function1);generated",
-        "kotlin.collections;ArraysKt;sumOfUInt;(char[],Function1);generated",
-        "kotlin.collections;ArraysKt;sumOfUInt;(double[],Function1);generated",
-        "kotlin.collections;ArraysKt;sumOfUInt;(float[],Function1);generated",
-        "kotlin.collections;ArraysKt;sumOfUInt;(int[],Function1);generated",
-        "kotlin.collections;ArraysKt;sumOfUInt;(long[],Function1);generated",
-        "kotlin.collections;ArraysKt;sumOfUInt;(short[],Function1);generated",
-        "kotlin.collections;ArraysKt;sumOfULong;(Object[],Function1);generated",
-        "kotlin.collections;ArraysKt;sumOfULong;(boolean[],Function1);generated",
-        "kotlin.collections;ArraysKt;sumOfULong;(byte[],Function1);generated",
-        "kotlin.collections;ArraysKt;sumOfULong;(char[],Function1);generated",
-        "kotlin.collections;ArraysKt;sumOfULong;(double[],Function1);generated",
-        "kotlin.collections;ArraysKt;sumOfULong;(float[],Function1);generated",
-        "kotlin.collections;ArraysKt;sumOfULong;(int[],Function1);generated",
-        "kotlin.collections;ArraysKt;sumOfULong;(long[],Function1);generated",
-        "kotlin.collections;ArraysKt;sumOfULong;(short[],Function1);generated",
-        "kotlin.collections;ArraysKt;take;(boolean[],int);generated",
-        "kotlin.collections;ArraysKt;take;(byte[],int);generated",
-        "kotlin.collections;ArraysKt;take;(char[],int);generated",
-        "kotlin.collections;ArraysKt;take;(double[],int);generated",
-        "kotlin.collections;ArraysKt;take;(float[],int);generated",
-        "kotlin.collections;ArraysKt;take;(int[],int);generated",
-        "kotlin.collections;ArraysKt;take;(long[],int);generated",
-        "kotlin.collections;ArraysKt;take;(short[],int);generated",
-        "kotlin.collections;ArraysKt;takeLast;(boolean[],int);generated",
-        "kotlin.collections;ArraysKt;takeLast;(byte[],int);generated",
-        "kotlin.collections;ArraysKt;takeLast;(char[],int);generated",
-        "kotlin.collections;ArraysKt;takeLast;(double[],int);generated",
-        "kotlin.collections;ArraysKt;takeLast;(float[],int);generated",
-        "kotlin.collections;ArraysKt;takeLast;(int[],int);generated",
-        "kotlin.collections;ArraysKt;takeLast;(long[],int);generated",
-        "kotlin.collections;ArraysKt;takeLast;(short[],int);generated",
-        "kotlin.collections;ArraysKt;takeLastWhile;(boolean[],Function1);generated",
-        "kotlin.collections;ArraysKt;takeLastWhile;(byte[],Function1);generated",
-        "kotlin.collections;ArraysKt;takeLastWhile;(char[],Function1);generated",
-        "kotlin.collections;ArraysKt;takeLastWhile;(double[],Function1);generated",
-        "kotlin.collections;ArraysKt;takeLastWhile;(float[],Function1);generated",
-        "kotlin.collections;ArraysKt;takeLastWhile;(int[],Function1);generated",
-        "kotlin.collections;ArraysKt;takeLastWhile;(long[],Function1);generated",
-        "kotlin.collections;ArraysKt;takeLastWhile;(short[],Function1);generated",
-        "kotlin.collections;ArraysKt;takeWhile;(Object[],Function1);generated",
-        "kotlin.collections;ArraysKt;takeWhile;(boolean[],Function1);generated",
-        "kotlin.collections;ArraysKt;takeWhile;(byte[],Function1);generated",
-        "kotlin.collections;ArraysKt;takeWhile;(char[],Function1);generated",
-        "kotlin.collections;ArraysKt;takeWhile;(double[],Function1);generated",
-        "kotlin.collections;ArraysKt;takeWhile;(float[],Function1);generated",
-        "kotlin.collections;ArraysKt;takeWhile;(int[],Function1);generated",
-        "kotlin.collections;ArraysKt;takeWhile;(long[],Function1);generated",
-        "kotlin.collections;ArraysKt;takeWhile;(short[],Function1);generated",
-        "kotlin.collections;ArraysKt;toBooleanArray;(Boolean[]);generated",
-        "kotlin.collections;ArraysKt;toByteArray;(Byte[]);generated",
-        "kotlin.collections;ArraysKt;toCharArray;(Character[]);generated",
-        "kotlin.collections;ArraysKt;toDoubleArray;(Double[]);generated",
-        "kotlin.collections;ArraysKt;toFloatArray;(Float[]);generated",
-        "kotlin.collections;ArraysKt;toHashSet;(Object[]);generated",
-        "kotlin.collections;ArraysKt;toHashSet;(boolean[]);generated",
-        "kotlin.collections;ArraysKt;toHashSet;(byte[]);generated",
-        "kotlin.collections;ArraysKt;toHashSet;(char[]);generated",
-        "kotlin.collections;ArraysKt;toHashSet;(double[]);generated",
-        "kotlin.collections;ArraysKt;toHashSet;(float[]);generated",
-        "kotlin.collections;ArraysKt;toHashSet;(int[]);generated",
-        "kotlin.collections;ArraysKt;toHashSet;(long[]);generated",
-        "kotlin.collections;ArraysKt;toHashSet;(short[]);generated",
-        "kotlin.collections;ArraysKt;toIntArray;(Integer[]);generated",
-        "kotlin.collections;ArraysKt;toList;(boolean[]);generated",
-        "kotlin.collections;ArraysKt;toList;(byte[]);generated",
-        "kotlin.collections;ArraysKt;toList;(char[]);generated",
-        "kotlin.collections;ArraysKt;toList;(double[]);generated",
-        "kotlin.collections;ArraysKt;toList;(float[]);generated",
-        "kotlin.collections;ArraysKt;toList;(int[]);generated",
-        "kotlin.collections;ArraysKt;toList;(long[]);generated",
-        "kotlin.collections;ArraysKt;toList;(short[]);generated",
-        "kotlin.collections;ArraysKt;toLongArray;(Long[]);generated",
-        "kotlin.collections;ArraysKt;toMutableList;(boolean[]);generated",
-        "kotlin.collections;ArraysKt;toMutableList;(byte[]);generated",
-        "kotlin.collections;ArraysKt;toMutableList;(char[]);generated",
-        "kotlin.collections;ArraysKt;toMutableList;(double[]);generated",
-        "kotlin.collections;ArraysKt;toMutableList;(float[]);generated",
-        "kotlin.collections;ArraysKt;toMutableList;(int[]);generated",
-        "kotlin.collections;ArraysKt;toMutableList;(long[]);generated",
-        "kotlin.collections;ArraysKt;toMutableList;(short[]);generated",
-        "kotlin.collections;ArraysKt;toMutableSet;(Object[]);generated",
-        "kotlin.collections;ArraysKt;toMutableSet;(boolean[]);generated",
-        "kotlin.collections;ArraysKt;toMutableSet;(byte[]);generated",
-        "kotlin.collections;ArraysKt;toMutableSet;(char[]);generated",
-        "kotlin.collections;ArraysKt;toMutableSet;(double[]);generated",
-        "kotlin.collections;ArraysKt;toMutableSet;(float[]);generated",
-        "kotlin.collections;ArraysKt;toMutableSet;(int[]);generated",
-        "kotlin.collections;ArraysKt;toMutableSet;(long[]);generated",
-        "kotlin.collections;ArraysKt;toMutableSet;(short[]);generated",
-        "kotlin.collections;ArraysKt;toSet;(boolean[]);generated",
-        "kotlin.collections;ArraysKt;toSet;(byte[]);generated",
-        "kotlin.collections;ArraysKt;toSet;(char[]);generated",
-        "kotlin.collections;ArraysKt;toSet;(double[]);generated",
-        "kotlin.collections;ArraysKt;toSet;(float[]);generated",
-        "kotlin.collections;ArraysKt;toSet;(int[]);generated",
-        "kotlin.collections;ArraysKt;toSet;(long[]);generated",
-        "kotlin.collections;ArraysKt;toSet;(short[]);generated",
-        "kotlin.collections;ArraysKt;toShortArray;(Short[]);generated",
-        "kotlin.collections;ArraysKt;toSortedSet;(Comparable[]);generated",
-        "kotlin.collections;ArraysKt;toSortedSet;(Object[],Comparator);generated",
-        "kotlin.collections;ArraysKt;toSortedSet;(boolean[]);generated",
-        "kotlin.collections;ArraysKt;toSortedSet;(byte[]);generated",
-        "kotlin.collections;ArraysKt;toSortedSet;(char[]);generated",
-        "kotlin.collections;ArraysKt;toSortedSet;(double[]);generated",
-        "kotlin.collections;ArraysKt;toSortedSet;(float[]);generated",
-        "kotlin.collections;ArraysKt;toSortedSet;(int[]);generated",
-        "kotlin.collections;ArraysKt;toSortedSet;(long[]);generated",
-        "kotlin.collections;ArraysKt;toSortedSet;(short[]);generated",
-        "kotlin.collections;ArraysKt;toTypedArray;(boolean[]);generated",
-        "kotlin.collections;ArraysKt;toTypedArray;(byte[]);generated",
-        "kotlin.collections;ArraysKt;toTypedArray;(char[]);generated",
-        "kotlin.collections;ArraysKt;toTypedArray;(double[]);generated",
-        "kotlin.collections;ArraysKt;toTypedArray;(float[]);generated",
-        "kotlin.collections;ArraysKt;toTypedArray;(int[]);generated",
-        "kotlin.collections;ArraysKt;toTypedArray;(long[]);generated",
-        "kotlin.collections;ArraysKt;toTypedArray;(short[]);generated",
-        "kotlin.collections;ArraysKt;union;(boolean[],Iterable);generated",
-        "kotlin.collections;ArraysKt;union;(double[],Iterable);generated",
-        "kotlin.collections;ArraysKt;union;(float[],Iterable);generated",
-        "kotlin.collections;ArraysKt;union;(int[],Iterable);generated",
-        "kotlin.collections;ArraysKt;union;(long[],Iterable);generated",
-        "kotlin.collections;ArraysKt;union;(short[],Iterable);generated",
-        "kotlin.collections;ArraysKt;unzip;(Pair[]);generated",
-        "kotlin.collections;ArraysKt;withIndex;(Object[]);generated",
-        "kotlin.collections;ArraysKt;withIndex;(boolean[]);generated",
-        "kotlin.collections;ArraysKt;withIndex;(byte[]);generated",
-        "kotlin.collections;ArraysKt;withIndex;(char[]);generated",
-        "kotlin.collections;ArraysKt;withIndex;(double[]);generated",
-        "kotlin.collections;ArraysKt;withIndex;(float[]);generated",
-        "kotlin.collections;ArraysKt;withIndex;(int[]);generated",
-        "kotlin.collections;ArraysKt;withIndex;(long[]);generated",
-        "kotlin.collections;ArraysKt;withIndex;(short[]);generated",
-        "kotlin.collections;ArraysKt;zip;(boolean[],Iterable);generated",
-        "kotlin.collections;ArraysKt;zip;(boolean[],Iterable,Function2);generated",
-        "kotlin.collections;ArraysKt;zip;(boolean[],Object[]);generated",
-        "kotlin.collections;ArraysKt;zip;(boolean[],Object[],Function2);generated",
-        "kotlin.collections;ArraysKt;zip;(boolean[],boolean[]);generated",
-        "kotlin.collections;ArraysKt;zip;(boolean[],boolean[],Function2);generated",
-        "kotlin.collections;ArraysKt;zip;(byte[],Iterable);generated",
-        "kotlin.collections;ArraysKt;zip;(byte[],Iterable,Function2);generated",
-        "kotlin.collections;ArraysKt;zip;(byte[],Object[]);generated",
-        "kotlin.collections;ArraysKt;zip;(byte[],Object[],Function2);generated",
-        "kotlin.collections;ArraysKt;zip;(byte[],byte[]);generated",
-        "kotlin.collections;ArraysKt;zip;(byte[],byte[],Function2);generated",
-        "kotlin.collections;ArraysKt;zip;(char[],Iterable);generated",
-        "kotlin.collections;ArraysKt;zip;(char[],Iterable,Function2);generated",
-        "kotlin.collections;ArraysKt;zip;(char[],Object[]);generated",
-        "kotlin.collections;ArraysKt;zip;(char[],Object[],Function2);generated",
-        "kotlin.collections;ArraysKt;zip;(char[],char[]);generated",
-        "kotlin.collections;ArraysKt;zip;(char[],char[],Function2);generated",
-        "kotlin.collections;ArraysKt;zip;(double[],Iterable);generated",
-        "kotlin.collections;ArraysKt;zip;(double[],Iterable,Function2);generated",
-        "kotlin.collections;ArraysKt;zip;(double[],Object[]);generated",
-        "kotlin.collections;ArraysKt;zip;(double[],Object[],Function2);generated",
-        "kotlin.collections;ArraysKt;zip;(double[],double[]);generated",
-        "kotlin.collections;ArraysKt;zip;(double[],double[],Function2);generated",
-        "kotlin.collections;ArraysKt;zip;(float[],Iterable);generated",
-        "kotlin.collections;ArraysKt;zip;(float[],Iterable,Function2);generated",
-        "kotlin.collections;ArraysKt;zip;(float[],Object[]);generated",
-        "kotlin.collections;ArraysKt;zip;(float[],Object[],Function2);generated",
-        "kotlin.collections;ArraysKt;zip;(float[],float[]);generated",
-        "kotlin.collections;ArraysKt;zip;(float[],float[],Function2);generated",
-        "kotlin.collections;ArraysKt;zip;(int[],Iterable);generated",
-        "kotlin.collections;ArraysKt;zip;(int[],Iterable,Function2);generated",
-        "kotlin.collections;ArraysKt;zip;(int[],Object[]);generated",
-        "kotlin.collections;ArraysKt;zip;(int[],Object[],Function2);generated",
-        "kotlin.collections;ArraysKt;zip;(int[],int[]);generated",
-        "kotlin.collections;ArraysKt;zip;(int[],int[],Function2);generated",
-        "kotlin.collections;ArraysKt;zip;(long[],Iterable);generated",
-        "kotlin.collections;ArraysKt;zip;(long[],Iterable,Function2);generated",
-        "kotlin.collections;ArraysKt;zip;(long[],Object[]);generated",
-        "kotlin.collections;ArraysKt;zip;(long[],Object[],Function2);generated",
-        "kotlin.collections;ArraysKt;zip;(long[],long[]);generated",
-        "kotlin.collections;ArraysKt;zip;(long[],long[],Function2);generated",
-        "kotlin.collections;ArraysKt;zip;(short[],Iterable);generated",
-        "kotlin.collections;ArraysKt;zip;(short[],Iterable,Function2);generated",
-        "kotlin.collections;ArraysKt;zip;(short[],Object[]);generated",
-        "kotlin.collections;ArraysKt;zip;(short[],Object[],Function2);generated",
-        "kotlin.collections;ArraysKt;zip;(short[],short[]);generated",
-        "kotlin.collections;ArraysKt;zip;(short[],short[],Function2);generated",
-        "kotlin.collections;BooleanIterator;BooleanIterator;();generated",
-        "kotlin.collections;BooleanIterator;nextBoolean;();generated",
-        "kotlin.collections;ByteIterator;ByteIterator;();generated",
-        "kotlin.collections;ByteIterator;nextByte;();generated",
-        "kotlin.collections;CharIterator;CharIterator;();generated",
-        "kotlin.collections;CharIterator;nextChar;();generated",
-        "kotlin.collections;CollectionsHKt;eachCount;(Grouping);generated",
-        "kotlin.collections;CollectionsHKt;fill;(List,Object);generated",
-        "kotlin.collections;CollectionsHKt;orEmpty;(Object[]);generated",
-        "kotlin.collections;CollectionsHKt;shuffle;(List);generated",
-        "kotlin.collections;CollectionsHKt;shuffled;(Iterable);generated",
-        "kotlin.collections;CollectionsHKt;sort;(List);generated",
-        "kotlin.collections;CollectionsHKt;sortWith;(List,Comparator);generated",
-        "kotlin.collections;CollectionsHKt;toTypedArray;(Collection);generated",
-        "kotlin.collections;CollectionsKt;Iterable;(Function0);generated",
-        "kotlin.collections;CollectionsKt;List;(int,Function1);generated",
-        "kotlin.collections;CollectionsKt;MutableList;(int,Function1);generated",
-        "kotlin.collections;CollectionsKt;all;(Iterable,Function1);generated",
-        "kotlin.collections;CollectionsKt;any;(Iterable);generated",
-        "kotlin.collections;CollectionsKt;any;(Iterable,Function1);generated",
-        "kotlin.collections;CollectionsKt;arrayListOf;();generated",
-        "kotlin.collections;CollectionsKt;asSequence;(Iterable);generated",
-        "kotlin.collections;CollectionsKt;averageOfByte;(Iterable);generated",
-        "kotlin.collections;CollectionsKt;averageOfDouble;(Iterable);generated",
-        "kotlin.collections;CollectionsKt;averageOfFloat;(Iterable);generated",
-        "kotlin.collections;CollectionsKt;averageOfInt;(Iterable);generated",
-        "kotlin.collections;CollectionsKt;averageOfLong;(Iterable);generated",
-        "kotlin.collections;CollectionsKt;averageOfShort;(Iterable);generated",
-        "kotlin.collections;CollectionsKt;binarySearch;(List,Comparable,int,int);generated",
-        "kotlin.collections;CollectionsKt;binarySearch;(List,Object,Comparator,int,int);generated",
-        "kotlin.collections;CollectionsKt;binarySearch;(List,int,int,Function1);generated",
-        "kotlin.collections;CollectionsKt;binarySearchBy;(List,Comparable,int,int,Function1);generated",
-        "kotlin.collections;CollectionsKt;buildList;(Function1);generated",
-        "kotlin.collections;CollectionsKt;buildList;(int,Function1);generated",
-        "kotlin.collections;CollectionsKt;chunked;(Iterable,int);generated",
-        "kotlin.collections;CollectionsKt;chunked;(Iterable,int,Function1);generated",
-        "kotlin.collections;CollectionsKt;contains;(Iterable,Object);generated",
-        "kotlin.collections;CollectionsKt;containsAll;(Collection,Collection);generated",
-        "kotlin.collections;CollectionsKt;count;(Collection);generated",
-        "kotlin.collections;CollectionsKt;count;(Iterable);generated",
-        "kotlin.collections;CollectionsKt;count;(Iterable,Function1);generated",
-        "kotlin.collections;CollectionsKt;emptyList;();generated",
-        "kotlin.collections;CollectionsKt;filterIndexed;(Iterable,Function2);generated",
-        "kotlin.collections;CollectionsKt;flatMap;(Iterable,Function1);generated",
-        "kotlin.collections;CollectionsKt;flatMapIndexedIterable;(Iterable,Function2);generated",
-        "kotlin.collections;CollectionsKt;flatMapIndexedSequence;(Iterable,Function2);generated",
-        "kotlin.collections;CollectionsKt;flatMapSequence;(Iterable,Function1);generated",
-        "kotlin.collections;CollectionsKt;forEach;(Iterable,Function1);generated",
-        "kotlin.collections;CollectionsKt;forEach;(Iterator,Function1);generated",
-        "kotlin.collections;CollectionsKt;forEachIndexed;(Iterable,Function2);generated",
-        "kotlin.collections;CollectionsKt;getIndices;(Collection);generated",
-        "kotlin.collections;CollectionsKt;getLastIndex;(List);generated",
-        "kotlin.collections;CollectionsKt;groupBy;(Iterable,Function1);generated",
-        "kotlin.collections;CollectionsKt;groupBy;(Iterable,Function1,Function1);generated",
-        "kotlin.collections;CollectionsKt;groupingBy;(Iterable,Function1);generated",
-        "kotlin.collections;CollectionsKt;indexOf;(Iterable,Object);generated",
-        "kotlin.collections;CollectionsKt;indexOf;(List,Object);generated",
-        "kotlin.collections;CollectionsKt;indexOfFirst;(Iterable,Function1);generated",
-        "kotlin.collections;CollectionsKt;indexOfFirst;(List,Function1);generated",
-        "kotlin.collections;CollectionsKt;indexOfLast;(Iterable,Function1);generated",
-        "kotlin.collections;CollectionsKt;indexOfLast;(List,Function1);generated",
-        "kotlin.collections;CollectionsKt;isNotEmpty;(Collection);generated",
-        "kotlin.collections;CollectionsKt;isNullOrEmpty;(Collection);generated",
-        "kotlin.collections;CollectionsKt;iterator;(Enumeration);generated",
-        "kotlin.collections;CollectionsKt;lastIndexOf;(Iterable,Object);generated",
-        "kotlin.collections;CollectionsKt;lastIndexOf;(List,Object);generated",
-        "kotlin.collections;CollectionsKt;listOf;();generated",
-        "kotlin.collections;CollectionsKt;listOfNotNull;(Object[]);generated",
-        "kotlin.collections;CollectionsKt;mapIndexed;(Iterable,Function2);generated",
-        "kotlin.collections;CollectionsKt;mapIndexedNotNull;(Iterable,Function2);generated",
-        "kotlin.collections;CollectionsKt;mapNotNull;(Iterable,Function1);generated",
-        "kotlin.collections;CollectionsKt;max;(Iterable);generated",
-        "kotlin.collections;CollectionsKt;maxOf;(Iterable,Function1);generated",
-        "kotlin.collections;CollectionsKt;maxOfOrNull;(Iterable,Function1);generated",
-        "kotlin.collections;CollectionsKt;maxOrNull;(Iterable);generated",
-        "kotlin.collections;CollectionsKt;maxOrThrow;(Iterable);generated",
-        "kotlin.collections;CollectionsKt;min;(Iterable);generated",
-        "kotlin.collections;CollectionsKt;minOf;(Iterable,Function1);generated",
-        "kotlin.collections;CollectionsKt;minOfOrNull;(Iterable,Function1);generated",
-        "kotlin.collections;CollectionsKt;minOrNull;(Iterable);generated",
-        "kotlin.collections;CollectionsKt;minOrThrow;(Iterable);generated",
-        "kotlin.collections;CollectionsKt;minusAssign;(Collection,Iterable);generated",
-        "kotlin.collections;CollectionsKt;minusAssign;(Collection,Object);generated",
-        "kotlin.collections;CollectionsKt;minusAssign;(Collection,Object[]);generated",
-        "kotlin.collections;CollectionsKt;minusAssign;(Collection,Sequence);generated",
-        "kotlin.collections;CollectionsKt;mutableListOf;();generated",
-        "kotlin.collections;CollectionsKt;none;(Iterable);generated",
-        "kotlin.collections;CollectionsKt;none;(Iterable,Function1);generated",
-        "kotlin.collections;CollectionsKt;remove;(Collection,Object);generated",
-        "kotlin.collections;CollectionsKt;removeAll;(Collection,Collection);generated",
-        "kotlin.collections;CollectionsKt;removeAll;(Collection,Iterable);generated",
-        "kotlin.collections;CollectionsKt;removeAll;(Collection,Object[]);generated",
-        "kotlin.collections;CollectionsKt;removeAll;(Collection,Sequence);generated",
-        "kotlin.collections;CollectionsKt;removeAll;(Iterable,Function1);generated",
-        "kotlin.collections;CollectionsKt;removeAll;(List,Function1);generated",
-        "kotlin.collections;CollectionsKt;retainAll;(Collection,Collection);generated",
-        "kotlin.collections;CollectionsKt;retainAll;(Collection,Iterable);generated",
-        "kotlin.collections;CollectionsKt;retainAll;(Collection,Object[]);generated",
-        "kotlin.collections;CollectionsKt;retainAll;(Collection,Sequence);generated",
-        "kotlin.collections;CollectionsKt;retainAll;(Iterable,Function1);generated",
-        "kotlin.collections;CollectionsKt;retainAll;(List,Function1);generated",
-        "kotlin.collections;CollectionsKt;reverse;(List);generated",
-        "kotlin.collections;CollectionsKt;runningReduce;(Iterable,Function2);generated",
-        "kotlin.collections;CollectionsKt;runningReduceIndexed;(Iterable,Function3);generated",
-        "kotlin.collections;CollectionsKt;shuffle;(List);generated",
-        "kotlin.collections;CollectionsKt;shuffle;(List,Random);generated",
-        "kotlin.collections;CollectionsKt;sort;(List);generated",
-        "kotlin.collections;CollectionsKt;sort;(List,Comparator);generated",
-        "kotlin.collections;CollectionsKt;sort;(List,Function2);generated",
-        "kotlin.collections;CollectionsKt;sortBy;(List,Function1);generated",
-        "kotlin.collections;CollectionsKt;sortByDescending;(List,Function1);generated",
-        "kotlin.collections;CollectionsKt;sortDescending;(List);generated",
-        "kotlin.collections;CollectionsKt;sortWith;(List,Comparator);generated",
-        "kotlin.collections;CollectionsKt;sumBy;(Iterable,Function1);generated",
-        "kotlin.collections;CollectionsKt;sumByDouble;(Iterable,Function1);generated",
-        "kotlin.collections;CollectionsKt;sumOfBigDecimal;(Iterable,Function1);generated",
-        "kotlin.collections;CollectionsKt;sumOfBigInteger;(Iterable,Function1);generated",
-        "kotlin.collections;CollectionsKt;sumOfByte;(Iterable);generated",
-        "kotlin.collections;CollectionsKt;sumOfDouble;(Iterable);generated",
-        "kotlin.collections;CollectionsKt;sumOfDouble;(Iterable,Function1);generated",
-        "kotlin.collections;CollectionsKt;sumOfFloat;(Iterable);generated",
-        "kotlin.collections;CollectionsKt;sumOfInt;(Iterable);generated",
-        "kotlin.collections;CollectionsKt;sumOfInt;(Iterable,Function1);generated",
-        "kotlin.collections;CollectionsKt;sumOfLong;(Iterable);generated",
-        "kotlin.collections;CollectionsKt;sumOfLong;(Iterable,Function1);generated",
-        "kotlin.collections;CollectionsKt;sumOfShort;(Iterable);generated",
-        "kotlin.collections;CollectionsKt;sumOfUInt;(Iterable,Function1);generated",
-        "kotlin.collections;CollectionsKt;sumOfULong;(Iterable,Function1);generated",
-        "kotlin.collections;CollectionsKt;toBooleanArray;(Collection);generated",
-        "kotlin.collections;CollectionsKt;toByteArray;(Collection);generated",
-        "kotlin.collections;CollectionsKt;toCharArray;(Collection);generated",
-        "kotlin.collections;CollectionsKt;toDoubleArray;(Collection);generated",
-        "kotlin.collections;CollectionsKt;toFloatArray;(Collection);generated",
-        "kotlin.collections;CollectionsKt;toIntArray;(Collection);generated",
-        "kotlin.collections;CollectionsKt;toLongArray;(Collection);generated",
-        "kotlin.collections;CollectionsKt;toShortArray;(Collection);generated",
-        "kotlin.collections;CollectionsKt;windowed;(Iterable,int,int,boolean);generated",
-        "kotlin.collections;CollectionsKt;windowed;(Iterable,int,int,boolean,Function1);generated",
-        "kotlin.collections;CollectionsKt;withIndex;(Iterable);generated",
-        "kotlin.collections;DoubleIterator;DoubleIterator;();generated",
-        "kotlin.collections;DoubleIterator;nextDouble;();generated",
-        "kotlin.collections;FloatIterator;FloatIterator;();generated",
-        "kotlin.collections;FloatIterator;nextFloat;();generated",
-        "kotlin.collections;Grouping;keyOf;(Object);generated",
-        "kotlin.collections;Grouping;sourceIterator;();generated",
-        "kotlin.collections;GroupingKt;aggregate;(Grouping,Function4);generated",
-        "kotlin.collections;GroupingKt;eachCount;(Grouping);generated",
-        "kotlin.collections;GroupingKt;fold;(Grouping,Function2,Function3);generated",
-        "kotlin.collections;GroupingKt;fold;(Grouping,Object,Function2);generated",
-        "kotlin.collections;GroupingKt;reduce;(Grouping,Function3);generated",
-        "kotlin.collections;HashMap;HashMap;();generated",
-        "kotlin.collections;HashMap;HashMap;(Map);generated",
-        "kotlin.collections;HashMap;HashMap;(int);generated",
-        "kotlin.collections;HashMap;HashMap;(int,float);generated",
-        "kotlin.collections;HashSet;HashSet;();generated",
-        "kotlin.collections;HashSet;HashSet;(Collection);generated",
-        "kotlin.collections;HashSet;HashSet;(int);generated",
-        "kotlin.collections;HashSet;HashSet;(int,float);generated",
-        "kotlin.collections;IndexedValue;component1;();generated",
-        "kotlin.collections;IndexedValue;equals;(Object);generated",
-        "kotlin.collections;IndexedValue;getIndex;();generated",
-        "kotlin.collections;IndexedValue;hashCode;();generated",
-        "kotlin.collections;IntIterator;IntIterator;();generated",
-        "kotlin.collections;IntIterator;nextInt;();generated",
-        "kotlin.collections;LinkedHashMap;LinkedHashMap;();generated",
-        "kotlin.collections;LinkedHashMap;LinkedHashMap;(Map);generated",
-        "kotlin.collections;LinkedHashMap;LinkedHashMap;(int);generated",
-        "kotlin.collections;LinkedHashMap;LinkedHashMap;(int,float);generated",
-        "kotlin.collections;LinkedHashSet;LinkedHashSet;();generated",
-        "kotlin.collections;LinkedHashSet;LinkedHashSet;(Collection);generated",
-        "kotlin.collections;LinkedHashSet;LinkedHashSet;(int);generated",
-        "kotlin.collections;LinkedHashSet;LinkedHashSet;(int,float);generated",
-        "kotlin.collections;LongIterator;LongIterator;();generated",
-        "kotlin.collections;LongIterator;nextLong;();generated",
-        "kotlin.collections;MapsKt;all;(Map,Function1);generated",
-        "kotlin.collections;MapsKt;any;(Map);generated",
-        "kotlin.collections;MapsKt;any;(Map,Function1);generated",
-        "kotlin.collections;MapsKt;asSequence;(Map);generated",
-        "kotlin.collections;MapsKt;buildMap;(Function1);generated",
-        "kotlin.collections;MapsKt;buildMap;(int,Function1);generated",
-        "kotlin.collections;MapsKt;contains;(Map,Object);generated",
-        "kotlin.collections;MapsKt;containsKey;(Map,Object);generated",
-        "kotlin.collections;MapsKt;containsValue;(Map,Object);generated",
-        "kotlin.collections;MapsKt;count;(Map);generated",
-        "kotlin.collections;MapsKt;count;(Map,Function1);generated",
-        "kotlin.collections;MapsKt;emptyMap;();generated",
-        "kotlin.collections;MapsKt;flatMap;(Map,Function1);generated",
-        "kotlin.collections;MapsKt;flatMapSequence;(Map,Function1);generated",
-        "kotlin.collections;MapsKt;forEach;(Map,Function1);generated",
-        "kotlin.collections;MapsKt;hashMapOf;();generated",
-        "kotlin.collections;MapsKt;hashMapOf;(Pair[]);generated",
-        "kotlin.collections;MapsKt;isNotEmpty;(Map);generated",
-        "kotlin.collections;MapsKt;isNullOrEmpty;(Map);generated",
-        "kotlin.collections;MapsKt;linkedMapOf;();generated",
-        "kotlin.collections;MapsKt;linkedMapOf;(Pair[]);generated",
-        "kotlin.collections;MapsKt;mapNotNull;(Map,Function1);generated",
-        "kotlin.collections;MapsKt;mapOf;();generated",
-        "kotlin.collections;MapsKt;mapOf;(Pair[]);generated",
-        "kotlin.collections;MapsKt;maxOf;(Map,Function1);generated",
-        "kotlin.collections;MapsKt;maxOfOrNull;(Map,Function1);generated",
-        "kotlin.collections;MapsKt;minOf;(Map,Function1);generated",
-        "kotlin.collections;MapsKt;minOfOrNull;(Map,Function1);generated",
-        "kotlin.collections;MapsKt;minusAssign;(Map,Iterable);generated",
-        "kotlin.collections;MapsKt;minusAssign;(Map,Object);generated",
-        "kotlin.collections;MapsKt;minusAssign;(Map,Object[]);generated",
-        "kotlin.collections;MapsKt;minusAssign;(Map,Sequence);generated",
-        "kotlin.collections;MapsKt;mutableMapOf;();generated",
-        "kotlin.collections;MapsKt;mutableMapOf;(Pair[]);generated",
-        "kotlin.collections;MapsKt;none;(Map);generated",
-        "kotlin.collections;MapsKt;none;(Map,Function1);generated",
-        "kotlin.collections;MapsKt;plusAssign;(Map,Pair[]);generated",
-        "kotlin.collections;MapsKt;putAll;(Map,Pair[]);generated",
-        "kotlin.collections;MapsKt;sortedMapOf;(Comparator,Pair[]);generated",
-        "kotlin.collections;MapsKt;sortedMapOf;(Pair[]);generated",
-        "kotlin.collections;MapsKt;toMap;(Sequence);generated",
-        "kotlin.collections;MapsKt;toProperties;(Map);generated",
-        "kotlin.collections;MapsKt;toSortedMap;(Map,Comparator);generated",
-        "kotlin.collections;SetsKt;buildSet;(Function1);generated",
-        "kotlin.collections;SetsKt;buildSet;(int,Function1);generated",
-        "kotlin.collections;SetsKt;emptySet;();generated",
-        "kotlin.collections;SetsKt;hashSetOf;();generated",
-        "kotlin.collections;SetsKt;hashSetOf;(Object[]);generated",
-        "kotlin.collections;SetsKt;linkedSetOf;();generated",
-        "kotlin.collections;SetsKt;linkedSetOf;(Object[]);generated",
-        "kotlin.collections;SetsKt;mutableSetOf;();generated",
-        "kotlin.collections;SetsKt;mutableSetOf;(Object[]);generated",
-        "kotlin.collections;SetsKt;setOf;();generated",
-        "kotlin.collections;SetsKt;setOfNotNull;(Object[]);generated",
-        "kotlin.collections;SetsKt;sortedSetOf;(Comparator,Object[]);generated",
-        "kotlin.collections;SetsKt;sortedSetOf;(Object[]);generated",
-        "kotlin.collections;ShortIterator;ShortIterator;();generated",
-        "kotlin.collections;ShortIterator;nextShort;();generated",
-        "kotlin.collections;UArraysKt;all;(UByteArray,Function1);generated",
-        "kotlin.collections;UArraysKt;all;(UIntArray,Function1);generated",
-        "kotlin.collections;UArraysKt;all;(ULongArray,Function1);generated",
-        "kotlin.collections;UArraysKt;all;(UShortArray,Function1);generated",
-        "kotlin.collections;UArraysKt;any;(UByteArray);generated",
-        "kotlin.collections;UArraysKt;any;(UByteArray,Function1);generated",
-        "kotlin.collections;UArraysKt;any;(UIntArray);generated",
-        "kotlin.collections;UArraysKt;any;(UIntArray,Function1);generated",
-        "kotlin.collections;UArraysKt;any;(ULongArray);generated",
-        "kotlin.collections;UArraysKt;any;(ULongArray,Function1);generated",
-        "kotlin.collections;UArraysKt;any;(UShortArray);generated",
-        "kotlin.collections;UArraysKt;any;(UShortArray,Function1);generated",
-        "kotlin.collections;UArraysKt;asIntArray;(UIntArray);generated",
-        "kotlin.collections;UArraysKt;asList;(UByteArray);generated",
-        "kotlin.collections;UArraysKt;asList;(UIntArray);generated",
-        "kotlin.collections;UArraysKt;asList;(ULongArray);generated",
-        "kotlin.collections;UArraysKt;asList;(UShortArray);generated",
-        "kotlin.collections;UArraysKt;asLongArray;(ULongArray);generated",
-        "kotlin.collections;UArraysKt;asShortArray;(UShortArray);generated",
-        "kotlin.collections;UArraysKt;asUIntArray;(int[]);generated",
-        "kotlin.collections;UArraysKt;asULongArray;(long[]);generated",
-        "kotlin.collections;UArraysKt;asUShortArray;(short[]);generated",
-        "kotlin.collections;UArraysKt;associateWith;(UByteArray,Function1);generated",
-        "kotlin.collections;UArraysKt;associateWith;(UIntArray,Function1);generated",
-        "kotlin.collections;UArraysKt;associateWith;(ULongArray,Function1);generated",
-        "kotlin.collections;UArraysKt;associateWith;(UShortArray,Function1);generated",
-        "kotlin.collections;UArraysKt;binarySearch;(UByteArray,byte,int,int);generated",
-        "kotlin.collections;UArraysKt;binarySearch;(UIntArray,int,int,int);generated",
-        "kotlin.collections;UArraysKt;binarySearch;(ULongArray,long,int,int);generated",
-        "kotlin.collections;UArraysKt;binarySearch;(UShortArray,short,int,int);generated",
-        "kotlin.collections;UArraysKt;component1;(UByteArray);generated",
-        "kotlin.collections;UArraysKt;component1;(UIntArray);generated",
-        "kotlin.collections;UArraysKt;component1;(ULongArray);generated",
-        "kotlin.collections;UArraysKt;component1;(UShortArray);generated",
-        "kotlin.collections;UArraysKt;component2;(UByteArray);generated",
-        "kotlin.collections;UArraysKt;component2;(UIntArray);generated",
-        "kotlin.collections;UArraysKt;component2;(ULongArray);generated",
-        "kotlin.collections;UArraysKt;component2;(UShortArray);generated",
-        "kotlin.collections;UArraysKt;component3;(UByteArray);generated",
-        "kotlin.collections;UArraysKt;component3;(UIntArray);generated",
-        "kotlin.collections;UArraysKt;component3;(ULongArray);generated",
-        "kotlin.collections;UArraysKt;component3;(UShortArray);generated",
-        "kotlin.collections;UArraysKt;component4;(UByteArray);generated",
-        "kotlin.collections;UArraysKt;component4;(UIntArray);generated",
-        "kotlin.collections;UArraysKt;component4;(ULongArray);generated",
-        "kotlin.collections;UArraysKt;component4;(UShortArray);generated",
-        "kotlin.collections;UArraysKt;component5;(UByteArray);generated",
-        "kotlin.collections;UArraysKt;component5;(UIntArray);generated",
-        "kotlin.collections;UArraysKt;component5;(ULongArray);generated",
-        "kotlin.collections;UArraysKt;component5;(UShortArray);generated",
-        "kotlin.collections;UArraysKt;contentEquals;(UByteArray,UByteArray);generated",
-        "kotlin.collections;UArraysKt;contentEquals;(UIntArray,UIntArray);generated",
-        "kotlin.collections;UArraysKt;contentEquals;(ULongArray,ULongArray);generated",
-        "kotlin.collections;UArraysKt;contentEquals;(UShortArray,UShortArray);generated",
-        "kotlin.collections;UArraysKt;contentHashCode;(UByteArray);generated",
-        "kotlin.collections;UArraysKt;contentHashCode;(UIntArray);generated",
-        "kotlin.collections;UArraysKt;contentHashCode;(ULongArray);generated",
-        "kotlin.collections;UArraysKt;contentHashCode;(UShortArray);generated",
-        "kotlin.collections;UArraysKt;copyOf;(UIntArray);generated",
-        "kotlin.collections;UArraysKt;copyOf;(UIntArray,int);generated",
-        "kotlin.collections;UArraysKt;copyOf;(ULongArray);generated",
-        "kotlin.collections;UArraysKt;copyOf;(ULongArray,int);generated",
-        "kotlin.collections;UArraysKt;copyOf;(UShortArray);generated",
-        "kotlin.collections;UArraysKt;copyOf;(UShortArray,int);generated",
-        "kotlin.collections;UArraysKt;copyOfRange;(UIntArray,int,int);generated",
-        "kotlin.collections;UArraysKt;copyOfRange;(ULongArray,int,int);generated",
-        "kotlin.collections;UArraysKt;copyOfRange;(UShortArray,int,int);generated",
-        "kotlin.collections;UArraysKt;count;(UByteArray,Function1);generated",
-        "kotlin.collections;UArraysKt;count;(UIntArray,Function1);generated",
-        "kotlin.collections;UArraysKt;count;(ULongArray,Function1);generated",
-        "kotlin.collections;UArraysKt;count;(UShortArray,Function1);generated",
-        "kotlin.collections;UArraysKt;dropWhile;(UByteArray,Function1);generated",
-        "kotlin.collections;UArraysKt;dropWhile;(UIntArray,Function1);generated",
-        "kotlin.collections;UArraysKt;dropWhile;(ULongArray,Function1);generated",
-        "kotlin.collections;UArraysKt;dropWhile;(UShortArray,Function1);generated",
-        "kotlin.collections;UArraysKt;elementAt;(UByteArray,int);generated",
-        "kotlin.collections;UArraysKt;elementAt;(UIntArray,int);generated",
-        "kotlin.collections;UArraysKt;elementAt;(ULongArray,int);generated",
-        "kotlin.collections;UArraysKt;elementAt;(UShortArray,int);generated",
-        "kotlin.collections;UArraysKt;elementAtOrElse;(UByteArray,int,Function1);generated",
-        "kotlin.collections;UArraysKt;elementAtOrElse;(UIntArray,int,Function1);generated",
-        "kotlin.collections;UArraysKt;elementAtOrElse;(ULongArray,int,Function1);generated",
-        "kotlin.collections;UArraysKt;elementAtOrElse;(UShortArray,int,Function1);generated",
-        "kotlin.collections;UArraysKt;elementAtOrNull;(UByteArray,int);generated",
-        "kotlin.collections;UArraysKt;elementAtOrNull;(UIntArray,int);generated",
-        "kotlin.collections;UArraysKt;elementAtOrNull;(ULongArray,int);generated",
-        "kotlin.collections;UArraysKt;elementAtOrNull;(UShortArray,int);generated",
-        "kotlin.collections;UArraysKt;fill;(UByteArray,byte,int,int);generated",
-        "kotlin.collections;UArraysKt;fill;(UIntArray,int,int,int);generated",
-        "kotlin.collections;UArraysKt;fill;(ULongArray,long,int,int);generated",
-        "kotlin.collections;UArraysKt;fill;(UShortArray,short,int,int);generated",
-        "kotlin.collections;UArraysKt;filter;(UByteArray,Function1);generated",
-        "kotlin.collections;UArraysKt;filter;(UIntArray,Function1);generated",
-        "kotlin.collections;UArraysKt;filter;(ULongArray,Function1);generated",
-        "kotlin.collections;UArraysKt;filter;(UShortArray,Function1);generated",
-        "kotlin.collections;UArraysKt;filterIndexed;(UByteArray,Function2);generated",
-        "kotlin.collections;UArraysKt;filterIndexed;(UIntArray,Function2);generated",
-        "kotlin.collections;UArraysKt;filterIndexed;(ULongArray,Function2);generated",
-        "kotlin.collections;UArraysKt;filterIndexed;(UShortArray,Function2);generated",
-        "kotlin.collections;UArraysKt;filterNot;(UByteArray,Function1);generated",
-        "kotlin.collections;UArraysKt;filterNot;(UIntArray,Function1);generated",
-        "kotlin.collections;UArraysKt;filterNot;(ULongArray,Function1);generated",
-        "kotlin.collections;UArraysKt;filterNot;(UShortArray,Function1);generated",
-        "kotlin.collections;UArraysKt;find;(UByteArray,Function1);generated",
-        "kotlin.collections;UArraysKt;find;(UIntArray,Function1);generated",
-        "kotlin.collections;UArraysKt;find;(ULongArray,Function1);generated",
-        "kotlin.collections;UArraysKt;find;(UShortArray,Function1);generated",
-        "kotlin.collections;UArraysKt;findLast;(UByteArray,Function1);generated",
-        "kotlin.collections;UArraysKt;findLast;(UIntArray,Function1);generated",
-        "kotlin.collections;UArraysKt;findLast;(ULongArray,Function1);generated",
-        "kotlin.collections;UArraysKt;findLast;(UShortArray,Function1);generated",
-        "kotlin.collections;UArraysKt;first;(UByteArray);generated",
-        "kotlin.collections;UArraysKt;first;(UByteArray,Function1);generated",
-        "kotlin.collections;UArraysKt;first;(UIntArray);generated",
-        "kotlin.collections;UArraysKt;first;(UIntArray,Function1);generated",
-        "kotlin.collections;UArraysKt;first;(ULongArray);generated",
-        "kotlin.collections;UArraysKt;first;(ULongArray,Function1);generated",
-        "kotlin.collections;UArraysKt;first;(UShortArray);generated",
-        "kotlin.collections;UArraysKt;first;(UShortArray,Function1);generated",
-        "kotlin.collections;UArraysKt;firstOrNull;(UByteArray);generated",
-        "kotlin.collections;UArraysKt;firstOrNull;(UByteArray,Function1);generated",
-        "kotlin.collections;UArraysKt;firstOrNull;(UIntArray);generated",
-        "kotlin.collections;UArraysKt;firstOrNull;(UIntArray,Function1);generated",
-        "kotlin.collections;UArraysKt;firstOrNull;(ULongArray);generated",
-        "kotlin.collections;UArraysKt;firstOrNull;(ULongArray,Function1);generated",
-        "kotlin.collections;UArraysKt;firstOrNull;(UShortArray);generated",
-        "kotlin.collections;UArraysKt;firstOrNull;(UShortArray,Function1);generated",
-        "kotlin.collections;UArraysKt;flatMap;(UByteArray,Function1);generated",
-        "kotlin.collections;UArraysKt;flatMap;(UIntArray,Function1);generated",
-        "kotlin.collections;UArraysKt;flatMap;(ULongArray,Function1);generated",
-        "kotlin.collections;UArraysKt;flatMap;(UShortArray,Function1);generated",
-        "kotlin.collections;UArraysKt;flatMapIndexed;(UByteArray,Function2);generated",
-        "kotlin.collections;UArraysKt;flatMapIndexed;(UIntArray,Function2);generated",
-        "kotlin.collections;UArraysKt;flatMapIndexed;(ULongArray,Function2);generated",
-        "kotlin.collections;UArraysKt;flatMapIndexed;(UShortArray,Function2);generated",
-        "kotlin.collections;UArraysKt;forEach;(UByteArray,Function1);generated",
-        "kotlin.collections;UArraysKt;forEach;(UIntArray,Function1);generated",
-        "kotlin.collections;UArraysKt;forEach;(ULongArray,Function1);generated",
-        "kotlin.collections;UArraysKt;forEach;(UShortArray,Function1);generated",
-        "kotlin.collections;UArraysKt;forEachIndexed;(UByteArray,Function2);generated",
-        "kotlin.collections;UArraysKt;forEachIndexed;(UIntArray,Function2);generated",
-        "kotlin.collections;UArraysKt;forEachIndexed;(ULongArray,Function2);generated",
-        "kotlin.collections;UArraysKt;forEachIndexed;(UShortArray,Function2);generated",
-        "kotlin.collections;UArraysKt;getIndices;(UByteArray);generated",
-        "kotlin.collections;UArraysKt;getIndices;(UIntArray);generated",
-        "kotlin.collections;UArraysKt;getIndices;(ULongArray);generated",
-        "kotlin.collections;UArraysKt;getIndices;(UShortArray);generated",
-        "kotlin.collections;UArraysKt;getLastIndex;(UByteArray);generated",
-        "kotlin.collections;UArraysKt;getLastIndex;(UIntArray);generated",
-        "kotlin.collections;UArraysKt;getLastIndex;(ULongArray);generated",
-        "kotlin.collections;UArraysKt;getLastIndex;(UShortArray);generated",
-        "kotlin.collections;UArraysKt;getOrElse;(UByteArray,int,Function1);generated",
-        "kotlin.collections;UArraysKt;getOrElse;(UIntArray,int,Function1);generated",
-        "kotlin.collections;UArraysKt;getOrElse;(ULongArray,int,Function1);generated",
-        "kotlin.collections;UArraysKt;getOrElse;(UShortArray,int,Function1);generated",
-        "kotlin.collections;UArraysKt;getOrNull;(UByteArray,int);generated",
-        "kotlin.collections;UArraysKt;getOrNull;(UIntArray,int);generated",
-        "kotlin.collections;UArraysKt;getOrNull;(ULongArray,int);generated",
-        "kotlin.collections;UArraysKt;getOrNull;(UShortArray,int);generated",
-        "kotlin.collections;UArraysKt;groupBy;(UByteArray,Function1);generated",
-        "kotlin.collections;UArraysKt;groupBy;(UByteArray,Function1,Function1);generated",
-        "kotlin.collections;UArraysKt;groupBy;(UIntArray,Function1);generated",
-        "kotlin.collections;UArraysKt;groupBy;(UIntArray,Function1,Function1);generated",
-        "kotlin.collections;UArraysKt;groupBy;(ULongArray,Function1);generated",
-        "kotlin.collections;UArraysKt;groupBy;(ULongArray,Function1,Function1);generated",
-        "kotlin.collections;UArraysKt;groupBy;(UShortArray,Function1);generated",
-        "kotlin.collections;UArraysKt;groupBy;(UShortArray,Function1,Function1);generated",
-        "kotlin.collections;UArraysKt;indexOf;(UByteArray,byte);generated",
-        "kotlin.collections;UArraysKt;indexOf;(UIntArray,int);generated",
-        "kotlin.collections;UArraysKt;indexOf;(ULongArray,long);generated",
-        "kotlin.collections;UArraysKt;indexOf;(UShortArray,short);generated",
-        "kotlin.collections;UArraysKt;indexOfFirst;(UByteArray,Function1);generated",
-        "kotlin.collections;UArraysKt;indexOfFirst;(UIntArray,Function1);generated",
-        "kotlin.collections;UArraysKt;indexOfFirst;(ULongArray,Function1);generated",
-        "kotlin.collections;UArraysKt;indexOfFirst;(UShortArray,Function1);generated",
-        "kotlin.collections;UArraysKt;indexOfLast;(UByteArray,Function1);generated",
-        "kotlin.collections;UArraysKt;indexOfLast;(UIntArray,Function1);generated",
-        "kotlin.collections;UArraysKt;indexOfLast;(ULongArray,Function1);generated",
-        "kotlin.collections;UArraysKt;indexOfLast;(UShortArray,Function1);generated",
-        "kotlin.collections;UArraysKt;last;(UByteArray);generated",
-        "kotlin.collections;UArraysKt;last;(UByteArray,Function1);generated",
-        "kotlin.collections;UArraysKt;last;(UIntArray);generated",
-        "kotlin.collections;UArraysKt;last;(UIntArray,Function1);generated",
-        "kotlin.collections;UArraysKt;last;(ULongArray);generated",
-        "kotlin.collections;UArraysKt;last;(ULongArray,Function1);generated",
-        "kotlin.collections;UArraysKt;last;(UShortArray);generated",
-        "kotlin.collections;UArraysKt;last;(UShortArray,Function1);generated",
-        "kotlin.collections;UArraysKt;lastIndexOf;(UByteArray,byte);generated",
-        "kotlin.collections;UArraysKt;lastIndexOf;(UIntArray,int);generated",
-        "kotlin.collections;UArraysKt;lastIndexOf;(ULongArray,long);generated",
-        "kotlin.collections;UArraysKt;lastIndexOf;(UShortArray,short);generated",
-        "kotlin.collections;UArraysKt;lastOrNull;(UByteArray);generated",
-        "kotlin.collections;UArraysKt;lastOrNull;(UByteArray,Function1);generated",
-        "kotlin.collections;UArraysKt;lastOrNull;(UIntArray);generated",
-        "kotlin.collections;UArraysKt;lastOrNull;(UIntArray,Function1);generated",
-        "kotlin.collections;UArraysKt;lastOrNull;(ULongArray);generated",
-        "kotlin.collections;UArraysKt;lastOrNull;(ULongArray,Function1);generated",
-        "kotlin.collections;UArraysKt;lastOrNull;(UShortArray);generated",
-        "kotlin.collections;UArraysKt;lastOrNull;(UShortArray,Function1);generated",
-        "kotlin.collections;UArraysKt;map;(UByteArray,Function1);generated",
-        "kotlin.collections;UArraysKt;map;(UIntArray,Function1);generated",
-        "kotlin.collections;UArraysKt;map;(ULongArray,Function1);generated",
-        "kotlin.collections;UArraysKt;map;(UShortArray,Function1);generated",
-        "kotlin.collections;UArraysKt;mapIndexed;(UByteArray,Function2);generated",
-        "kotlin.collections;UArraysKt;mapIndexed;(UIntArray,Function2);generated",
-        "kotlin.collections;UArraysKt;mapIndexed;(ULongArray,Function2);generated",
-        "kotlin.collections;UArraysKt;mapIndexed;(UShortArray,Function2);generated",
-        "kotlin.collections;UArraysKt;max;(UByteArray);generated",
-        "kotlin.collections;UArraysKt;max;(UIntArray);generated",
-        "kotlin.collections;UArraysKt;max;(ULongArray);generated",
-        "kotlin.collections;UArraysKt;max;(UShortArray);generated",
-        "kotlin.collections;UArraysKt;maxBy;(UByteArray,Function1);generated",
-        "kotlin.collections;UArraysKt;maxBy;(UIntArray,Function1);generated",
-        "kotlin.collections;UArraysKt;maxBy;(ULongArray,Function1);generated",
-        "kotlin.collections;UArraysKt;maxBy;(UShortArray,Function1);generated",
-        "kotlin.collections;UArraysKt;maxByOrNull;(UByteArray,Function1);generated",
-        "kotlin.collections;UArraysKt;maxByOrNull;(UIntArray,Function1);generated",
-        "kotlin.collections;UArraysKt;maxByOrNull;(ULongArray,Function1);generated",
-        "kotlin.collections;UArraysKt;maxByOrNull;(UShortArray,Function1);generated",
-        "kotlin.collections;UArraysKt;maxByOrThrow-U;(UByteArray,Function1);generated",
-        "kotlin.collections;UArraysKt;maxByOrThrow-U;(UIntArray,Function1);generated",
-        "kotlin.collections;UArraysKt;maxByOrThrow-U;(ULongArray,Function1);generated",
-        "kotlin.collections;UArraysKt;maxByOrThrow-U;(UShortArray,Function1);generated",
-        "kotlin.collections;UArraysKt;maxOf;(UByteArray,Function1);generated",
-        "kotlin.collections;UArraysKt;maxOf;(UIntArray,Function1);generated",
-        "kotlin.collections;UArraysKt;maxOf;(ULongArray,Function1);generated",
-        "kotlin.collections;UArraysKt;maxOf;(UShortArray,Function1);generated",
-        "kotlin.collections;UArraysKt;maxOfOrNull;(UByteArray,Function1);generated",
-        "kotlin.collections;UArraysKt;maxOfOrNull;(UIntArray,Function1);generated",
-        "kotlin.collections;UArraysKt;maxOfOrNull;(ULongArray,Function1);generated",
-        "kotlin.collections;UArraysKt;maxOfOrNull;(UShortArray,Function1);generated",
-        "kotlin.collections;UArraysKt;maxOfWith;(UByteArray,Comparator,Function1);generated",
-        "kotlin.collections;UArraysKt;maxOfWith;(UIntArray,Comparator,Function1);generated",
-        "kotlin.collections;UArraysKt;maxOfWith;(ULongArray,Comparator,Function1);generated",
-        "kotlin.collections;UArraysKt;maxOfWith;(UShortArray,Comparator,Function1);generated",
-        "kotlin.collections;UArraysKt;maxOfWithOrNull;(UByteArray,Comparator,Function1);generated",
-        "kotlin.collections;UArraysKt;maxOfWithOrNull;(UIntArray,Comparator,Function1);generated",
-        "kotlin.collections;UArraysKt;maxOfWithOrNull;(ULongArray,Comparator,Function1);generated",
-        "kotlin.collections;UArraysKt;maxOfWithOrNull;(UShortArray,Comparator,Function1);generated",
-        "kotlin.collections;UArraysKt;maxOrNull;(UByteArray);generated",
-        "kotlin.collections;UArraysKt;maxOrNull;(UIntArray);generated",
-        "kotlin.collections;UArraysKt;maxOrNull;(ULongArray);generated",
-        "kotlin.collections;UArraysKt;maxOrNull;(UShortArray);generated",
-        "kotlin.collections;UArraysKt;maxOrThrow-U;(UByteArray);generated",
-        "kotlin.collections;UArraysKt;maxOrThrow-U;(UIntArray);generated",
-        "kotlin.collections;UArraysKt;maxOrThrow-U;(ULongArray);generated",
-        "kotlin.collections;UArraysKt;maxOrThrow-U;(UShortArray);generated",
-        "kotlin.collections;UArraysKt;maxWith;(UByteArray,Comparator);generated",
-        "kotlin.collections;UArraysKt;maxWith;(UIntArray,Comparator);generated",
-        "kotlin.collections;UArraysKt;maxWith;(ULongArray,Comparator);generated",
-        "kotlin.collections;UArraysKt;maxWith;(UShortArray,Comparator);generated",
-        "kotlin.collections;UArraysKt;maxWithOrNull;(UByteArray,Comparator);generated",
-        "kotlin.collections;UArraysKt;maxWithOrNull;(UIntArray,Comparator);generated",
-        "kotlin.collections;UArraysKt;maxWithOrNull;(ULongArray,Comparator);generated",
-        "kotlin.collections;UArraysKt;maxWithOrNull;(UShortArray,Comparator);generated",
-        "kotlin.collections;UArraysKt;maxWithOrThrow-U;(UByteArray,Comparator);generated",
-        "kotlin.collections;UArraysKt;maxWithOrThrow-U;(UIntArray,Comparator);generated",
-        "kotlin.collections;UArraysKt;maxWithOrThrow-U;(ULongArray,Comparator);generated",
-        "kotlin.collections;UArraysKt;maxWithOrThrow-U;(UShortArray,Comparator);generated",
-        "kotlin.collections;UArraysKt;min;(UByteArray);generated",
-        "kotlin.collections;UArraysKt;min;(UIntArray);generated",
-        "kotlin.collections;UArraysKt;min;(ULongArray);generated",
-        "kotlin.collections;UArraysKt;min;(UShortArray);generated",
-        "kotlin.collections;UArraysKt;minBy;(UByteArray,Function1);generated",
-        "kotlin.collections;UArraysKt;minBy;(UIntArray,Function1);generated",
-        "kotlin.collections;UArraysKt;minBy;(ULongArray,Function1);generated",
-        "kotlin.collections;UArraysKt;minBy;(UShortArray,Function1);generated",
-        "kotlin.collections;UArraysKt;minByOrNull;(UByteArray,Function1);generated",
-        "kotlin.collections;UArraysKt;minByOrNull;(UIntArray,Function1);generated",
-        "kotlin.collections;UArraysKt;minByOrNull;(ULongArray,Function1);generated",
-        "kotlin.collections;UArraysKt;minByOrNull;(UShortArray,Function1);generated",
-        "kotlin.collections;UArraysKt;minByOrThrow-U;(UByteArray,Function1);generated",
-        "kotlin.collections;UArraysKt;minByOrThrow-U;(UIntArray,Function1);generated",
-        "kotlin.collections;UArraysKt;minByOrThrow-U;(ULongArray,Function1);generated",
-        "kotlin.collections;UArraysKt;minByOrThrow-U;(UShortArray,Function1);generated",
-        "kotlin.collections;UArraysKt;minOf;(UByteArray,Function1);generated",
-        "kotlin.collections;UArraysKt;minOf;(UIntArray,Function1);generated",
-        "kotlin.collections;UArraysKt;minOf;(ULongArray,Function1);generated",
-        "kotlin.collections;UArraysKt;minOf;(UShortArray,Function1);generated",
-        "kotlin.collections;UArraysKt;minOfOrNull;(UByteArray,Function1);generated",
-        "kotlin.collections;UArraysKt;minOfOrNull;(UIntArray,Function1);generated",
-        "kotlin.collections;UArraysKt;minOfOrNull;(ULongArray,Function1);generated",
-        "kotlin.collections;UArraysKt;minOfOrNull;(UShortArray,Function1);generated",
-        "kotlin.collections;UArraysKt;minOfWith;(UByteArray,Comparator,Function1);generated",
-        "kotlin.collections;UArraysKt;minOfWith;(UIntArray,Comparator,Function1);generated",
-        "kotlin.collections;UArraysKt;minOfWith;(ULongArray,Comparator,Function1);generated",
-        "kotlin.collections;UArraysKt;minOfWith;(UShortArray,Comparator,Function1);generated",
-        "kotlin.collections;UArraysKt;minOfWithOrNull;(UByteArray,Comparator,Function1);generated",
-        "kotlin.collections;UArraysKt;minOfWithOrNull;(UIntArray,Comparator,Function1);generated",
-        "kotlin.collections;UArraysKt;minOfWithOrNull;(ULongArray,Comparator,Function1);generated",
-        "kotlin.collections;UArraysKt;minOfWithOrNull;(UShortArray,Comparator,Function1);generated",
-        "kotlin.collections;UArraysKt;minOrNull;(UByteArray);generated",
-        "kotlin.collections;UArraysKt;minOrNull;(UIntArray);generated",
-        "kotlin.collections;UArraysKt;minOrNull;(ULongArray);generated",
-        "kotlin.collections;UArraysKt;minOrNull;(UShortArray);generated",
-        "kotlin.collections;UArraysKt;minOrThrow-U;(UByteArray);generated",
-        "kotlin.collections;UArraysKt;minOrThrow-U;(UIntArray);generated",
-        "kotlin.collections;UArraysKt;minOrThrow-U;(ULongArray);generated",
-        "kotlin.collections;UArraysKt;minOrThrow-U;(UShortArray);generated",
-        "kotlin.collections;UArraysKt;minWith;(UByteArray,Comparator);generated",
-        "kotlin.collections;UArraysKt;minWith;(UIntArray,Comparator);generated",
-        "kotlin.collections;UArraysKt;minWith;(ULongArray,Comparator);generated",
-        "kotlin.collections;UArraysKt;minWith;(UShortArray,Comparator);generated",
-        "kotlin.collections;UArraysKt;minWithOrNull;(UByteArray,Comparator);generated",
-        "kotlin.collections;UArraysKt;minWithOrNull;(UIntArray,Comparator);generated",
-        "kotlin.collections;UArraysKt;minWithOrNull;(ULongArray,Comparator);generated",
-        "kotlin.collections;UArraysKt;minWithOrNull;(UShortArray,Comparator);generated",
-        "kotlin.collections;UArraysKt;minWithOrThrow-U;(UByteArray,Comparator);generated",
-        "kotlin.collections;UArraysKt;minWithOrThrow-U;(UIntArray,Comparator);generated",
-        "kotlin.collections;UArraysKt;minWithOrThrow-U;(ULongArray,Comparator);generated",
-        "kotlin.collections;UArraysKt;minWithOrThrow-U;(UShortArray,Comparator);generated",
-        "kotlin.collections;UArraysKt;none;(UByteArray);generated",
-        "kotlin.collections;UArraysKt;none;(UByteArray,Function1);generated",
-        "kotlin.collections;UArraysKt;none;(UIntArray);generated",
-        "kotlin.collections;UArraysKt;none;(UIntArray,Function1);generated",
-        "kotlin.collections;UArraysKt;none;(ULongArray);generated",
-        "kotlin.collections;UArraysKt;none;(ULongArray,Function1);generated",
-        "kotlin.collections;UArraysKt;none;(UShortArray);generated",
-        "kotlin.collections;UArraysKt;none;(UShortArray,Function1);generated",
-        "kotlin.collections;UArraysKt;plus;(UIntArray,Collection);generated",
-        "kotlin.collections;UArraysKt;plus;(UIntArray,UIntArray);generated",
-        "kotlin.collections;UArraysKt;plus;(UIntArray,int);generated",
-        "kotlin.collections;UArraysKt;plus;(ULongArray,Collection);generated",
-        "kotlin.collections;UArraysKt;plus;(ULongArray,ULongArray);generated",
-        "kotlin.collections;UArraysKt;plus;(ULongArray,long);generated",
-        "kotlin.collections;UArraysKt;plus;(UShortArray,Collection);generated",
-        "kotlin.collections;UArraysKt;plus;(UShortArray,UShortArray);generated",
-        "kotlin.collections;UArraysKt;plus;(UShortArray,short);generated",
-        "kotlin.collections;UArraysKt;random;(UByteArray);generated",
-        "kotlin.collections;UArraysKt;random;(UByteArray,Random);generated",
-        "kotlin.collections;UArraysKt;random;(UIntArray);generated",
-        "kotlin.collections;UArraysKt;random;(UIntArray,Random);generated",
-        "kotlin.collections;UArraysKt;random;(ULongArray);generated",
-        "kotlin.collections;UArraysKt;random;(ULongArray,Random);generated",
-        "kotlin.collections;UArraysKt;random;(UShortArray);generated",
-        "kotlin.collections;UArraysKt;random;(UShortArray,Random);generated",
-        "kotlin.collections;UArraysKt;randomOrNull;(UByteArray);generated",
-        "kotlin.collections;UArraysKt;randomOrNull;(UByteArray,Random);generated",
-        "kotlin.collections;UArraysKt;randomOrNull;(UIntArray);generated",
-        "kotlin.collections;UArraysKt;randomOrNull;(UIntArray,Random);generated",
-        "kotlin.collections;UArraysKt;randomOrNull;(ULongArray);generated",
-        "kotlin.collections;UArraysKt;randomOrNull;(ULongArray,Random);generated",
-        "kotlin.collections;UArraysKt;randomOrNull;(UShortArray);generated",
-        "kotlin.collections;UArraysKt;randomOrNull;(UShortArray,Random);generated",
-        "kotlin.collections;UArraysKt;reduce;(UByteArray,Function2);generated",
-        "kotlin.collections;UArraysKt;reduce;(UIntArray,Function2);generated",
-        "kotlin.collections;UArraysKt;reduce;(ULongArray,Function2);generated",
-        "kotlin.collections;UArraysKt;reduce;(UShortArray,Function2);generated",
-        "kotlin.collections;UArraysKt;reduceIndexed;(UByteArray,Function3);generated",
-        "kotlin.collections;UArraysKt;reduceIndexed;(UIntArray,Function3);generated",
-        "kotlin.collections;UArraysKt;reduceIndexed;(ULongArray,Function3);generated",
-        "kotlin.collections;UArraysKt;reduceIndexed;(UShortArray,Function3);generated",
-        "kotlin.collections;UArraysKt;reduceIndexedOrNull;(UByteArray,Function3);generated",
-        "kotlin.collections;UArraysKt;reduceIndexedOrNull;(UIntArray,Function3);generated",
-        "kotlin.collections;UArraysKt;reduceIndexedOrNull;(ULongArray,Function3);generated",
-        "kotlin.collections;UArraysKt;reduceIndexedOrNull;(UShortArray,Function3);generated",
-        "kotlin.collections;UArraysKt;reduceOrNull;(UByteArray,Function2);generated",
-        "kotlin.collections;UArraysKt;reduceOrNull;(UIntArray,Function2);generated",
-        "kotlin.collections;UArraysKt;reduceOrNull;(ULongArray,Function2);generated",
-        "kotlin.collections;UArraysKt;reduceOrNull;(UShortArray,Function2);generated",
-        "kotlin.collections;UArraysKt;reduceRight;(UByteArray,Function2);generated",
-        "kotlin.collections;UArraysKt;reduceRight;(UIntArray,Function2);generated",
-        "kotlin.collections;UArraysKt;reduceRight;(ULongArray,Function2);generated",
-        "kotlin.collections;UArraysKt;reduceRight;(UShortArray,Function2);generated",
-        "kotlin.collections;UArraysKt;reduceRightIndexed;(UByteArray,Function3);generated",
-        "kotlin.collections;UArraysKt;reduceRightIndexed;(UIntArray,Function3);generated",
-        "kotlin.collections;UArraysKt;reduceRightIndexed;(ULongArray,Function3);generated",
-        "kotlin.collections;UArraysKt;reduceRightIndexed;(UShortArray,Function3);generated",
-        "kotlin.collections;UArraysKt;reduceRightIndexedOrNull;(UByteArray,Function3);generated",
-        "kotlin.collections;UArraysKt;reduceRightIndexedOrNull;(UIntArray,Function3);generated",
-        "kotlin.collections;UArraysKt;reduceRightIndexedOrNull;(ULongArray,Function3);generated",
-        "kotlin.collections;UArraysKt;reduceRightIndexedOrNull;(UShortArray,Function3);generated",
-        "kotlin.collections;UArraysKt;reduceRightOrNull;(UByteArray,Function2);generated",
-        "kotlin.collections;UArraysKt;reduceRightOrNull;(UIntArray,Function2);generated",
-        "kotlin.collections;UArraysKt;reduceRightOrNull;(ULongArray,Function2);generated",
-        "kotlin.collections;UArraysKt;reduceRightOrNull;(UShortArray,Function2);generated",
-        "kotlin.collections;UArraysKt;reverse;(UByteArray);generated",
-        "kotlin.collections;UArraysKt;reverse;(UByteArray,int,int);generated",
-        "kotlin.collections;UArraysKt;reverse;(UIntArray);generated",
-        "kotlin.collections;UArraysKt;reverse;(UIntArray,int,int);generated",
-        "kotlin.collections;UArraysKt;reverse;(ULongArray);generated",
-        "kotlin.collections;UArraysKt;reverse;(ULongArray,int,int);generated",
-        "kotlin.collections;UArraysKt;reverse;(UShortArray);generated",
-        "kotlin.collections;UArraysKt;reverse;(UShortArray,int,int);generated",
-        "kotlin.collections;UArraysKt;reversedArray;(UIntArray);generated",
-        "kotlin.collections;UArraysKt;reversedArray;(ULongArray);generated",
-        "kotlin.collections;UArraysKt;reversedArray;(UShortArray);generated",
-        "kotlin.collections;UArraysKt;runningReduce;(UByteArray,Function2);generated",
-        "kotlin.collections;UArraysKt;runningReduce;(UIntArray,Function2);generated",
-        "kotlin.collections;UArraysKt;runningReduce;(ULongArray,Function2);generated",
-        "kotlin.collections;UArraysKt;runningReduce;(UShortArray,Function2);generated",
-        "kotlin.collections;UArraysKt;runningReduceIndexed;(UByteArray,Function3);generated",
-        "kotlin.collections;UArraysKt;runningReduceIndexed;(UIntArray,Function3);generated",
-        "kotlin.collections;UArraysKt;runningReduceIndexed;(ULongArray,Function3);generated",
-        "kotlin.collections;UArraysKt;runningReduceIndexed;(UShortArray,Function3);generated",
-        "kotlin.collections;UArraysKt;shuffle;(UByteArray);generated",
-        "kotlin.collections;UArraysKt;shuffle;(UByteArray,Random);generated",
-        "kotlin.collections;UArraysKt;shuffle;(UIntArray);generated",
-        "kotlin.collections;UArraysKt;shuffle;(UIntArray,Random);generated",
-        "kotlin.collections;UArraysKt;shuffle;(ULongArray);generated",
-        "kotlin.collections;UArraysKt;shuffle;(ULongArray,Random);generated",
-        "kotlin.collections;UArraysKt;shuffle;(UShortArray);generated",
-        "kotlin.collections;UArraysKt;shuffle;(UShortArray,Random);generated",
-        "kotlin.collections;UArraysKt;single;(UByteArray);generated",
-        "kotlin.collections;UArraysKt;single;(UByteArray,Function1);generated",
-        "kotlin.collections;UArraysKt;single;(UIntArray);generated",
-        "kotlin.collections;UArraysKt;single;(UIntArray,Function1);generated",
-        "kotlin.collections;UArraysKt;single;(ULongArray);generated",
-        "kotlin.collections;UArraysKt;single;(ULongArray,Function1);generated",
-        "kotlin.collections;UArraysKt;single;(UShortArray);generated",
-        "kotlin.collections;UArraysKt;single;(UShortArray,Function1);generated",
-        "kotlin.collections;UArraysKt;singleOrNull;(UByteArray);generated",
-        "kotlin.collections;UArraysKt;singleOrNull;(UByteArray,Function1);generated",
-        "kotlin.collections;UArraysKt;singleOrNull;(UIntArray);generated",
-        "kotlin.collections;UArraysKt;singleOrNull;(UIntArray,Function1);generated",
-        "kotlin.collections;UArraysKt;singleOrNull;(ULongArray);generated",
-        "kotlin.collections;UArraysKt;singleOrNull;(ULongArray,Function1);generated",
-        "kotlin.collections;UArraysKt;singleOrNull;(UShortArray);generated",
-        "kotlin.collections;UArraysKt;singleOrNull;(UShortArray,Function1);generated",
-        "kotlin.collections;UArraysKt;slice;(UByteArray,IntRange);generated",
-        "kotlin.collections;UArraysKt;slice;(UByteArray,Iterable);generated",
-        "kotlin.collections;UArraysKt;slice;(UIntArray,IntRange);generated",
-        "kotlin.collections;UArraysKt;slice;(UIntArray,Iterable);generated",
-        "kotlin.collections;UArraysKt;slice;(ULongArray,IntRange);generated",
-        "kotlin.collections;UArraysKt;slice;(ULongArray,Iterable);generated",
-        "kotlin.collections;UArraysKt;slice;(UShortArray,IntRange);generated",
-        "kotlin.collections;UArraysKt;slice;(UShortArray,Iterable);generated",
-        "kotlin.collections;UArraysKt;sliceArray;(UByteArray,Collection);generated",
-        "kotlin.collections;UArraysKt;sliceArray;(UIntArray,Collection);generated",
-        "kotlin.collections;UArraysKt;sliceArray;(UIntArray,IntRange);generated",
-        "kotlin.collections;UArraysKt;sliceArray;(ULongArray,Collection);generated",
-        "kotlin.collections;UArraysKt;sliceArray;(ULongArray,IntRange);generated",
-        "kotlin.collections;UArraysKt;sliceArray;(UShortArray,Collection);generated",
-        "kotlin.collections;UArraysKt;sliceArray;(UShortArray,IntRange);generated",
-        "kotlin.collections;UArraysKt;sort;(UByteArray);generated",
-        "kotlin.collections;UArraysKt;sort;(UByteArray,int,int);generated",
-        "kotlin.collections;UArraysKt;sort;(UIntArray);generated",
-        "kotlin.collections;UArraysKt;sort;(UIntArray,int,int);generated",
-        "kotlin.collections;UArraysKt;sort;(ULongArray);generated",
-        "kotlin.collections;UArraysKt;sort;(ULongArray,int,int);generated",
-        "kotlin.collections;UArraysKt;sort;(UShortArray);generated",
-        "kotlin.collections;UArraysKt;sort;(UShortArray,int,int);generated",
-        "kotlin.collections;UArraysKt;sortDescending;(UByteArray);generated",
-        "kotlin.collections;UArraysKt;sortDescending;(UByteArray,int,int);generated",
-        "kotlin.collections;UArraysKt;sortDescending;(UIntArray);generated",
-        "kotlin.collections;UArraysKt;sortDescending;(UIntArray,int,int);generated",
-        "kotlin.collections;UArraysKt;sortDescending;(ULongArray);generated",
-        "kotlin.collections;UArraysKt;sortDescending;(ULongArray,int,int);generated",
-        "kotlin.collections;UArraysKt;sortDescending;(UShortArray);generated",
-        "kotlin.collections;UArraysKt;sortDescending;(UShortArray,int,int);generated",
-        "kotlin.collections;UArraysKt;sorted;(UByteArray);generated",
-        "kotlin.collections;UArraysKt;sorted;(UIntArray);generated",
-        "kotlin.collections;UArraysKt;sorted;(ULongArray);generated",
-        "kotlin.collections;UArraysKt;sorted;(UShortArray);generated",
-        "kotlin.collections;UArraysKt;sortedDescending;(UIntArray);generated",
-        "kotlin.collections;UArraysKt;sortedDescending;(ULongArray);generated",
-        "kotlin.collections;UArraysKt;sortedDescending;(UShortArray);generated",
-        "kotlin.collections;UArraysKt;sum;(UByteArray);generated",
-        "kotlin.collections;UArraysKt;sum;(UIntArray);generated",
-        "kotlin.collections;UArraysKt;sum;(ULongArray);generated",
-        "kotlin.collections;UArraysKt;sum;(UShortArray);generated",
-        "kotlin.collections;UArraysKt;sumBy;(UByteArray,Function1);generated",
-        "kotlin.collections;UArraysKt;sumBy;(UIntArray,Function1);generated",
-        "kotlin.collections;UArraysKt;sumBy;(ULongArray,Function1);generated",
-        "kotlin.collections;UArraysKt;sumBy;(UShortArray,Function1);generated",
-        "kotlin.collections;UArraysKt;sumByDouble;(UByteArray,Function1);generated",
-        "kotlin.collections;UArraysKt;sumByDouble;(UIntArray,Function1);generated",
-        "kotlin.collections;UArraysKt;sumByDouble;(ULongArray,Function1);generated",
-        "kotlin.collections;UArraysKt;sumByDouble;(UShortArray,Function1);generated",
-        "kotlin.collections;UArraysKt;sumOfBigDecimal;(UByteArray,Function1);generated",
-        "kotlin.collections;UArraysKt;sumOfBigDecimal;(UIntArray,Function1);generated",
-        "kotlin.collections;UArraysKt;sumOfBigDecimal;(ULongArray,Function1);generated",
-        "kotlin.collections;UArraysKt;sumOfBigDecimal;(UShortArray,Function1);generated",
-        "kotlin.collections;UArraysKt;sumOfBigInteger;(UByteArray,Function1);generated",
-        "kotlin.collections;UArraysKt;sumOfBigInteger;(UIntArray,Function1);generated",
-        "kotlin.collections;UArraysKt;sumOfBigInteger;(ULongArray,Function1);generated",
-        "kotlin.collections;UArraysKt;sumOfBigInteger;(UShortArray,Function1);generated",
-        "kotlin.collections;UArraysKt;sumOfDouble;(UByteArray,Function1);generated",
-        "kotlin.collections;UArraysKt;sumOfDouble;(UIntArray,Function1);generated",
-        "kotlin.collections;UArraysKt;sumOfDouble;(ULongArray,Function1);generated",
-        "kotlin.collections;UArraysKt;sumOfDouble;(UShortArray,Function1);generated",
-        "kotlin.collections;UArraysKt;sumOfInt;(UByteArray,Function1);generated",
-        "kotlin.collections;UArraysKt;sumOfInt;(UIntArray,Function1);generated",
-        "kotlin.collections;UArraysKt;sumOfInt;(ULongArray,Function1);generated",
-        "kotlin.collections;UArraysKt;sumOfInt;(UShortArray,Function1);generated",
-        "kotlin.collections;UArraysKt;sumOfLong;(UByteArray,Function1);generated",
-        "kotlin.collections;UArraysKt;sumOfLong;(UIntArray,Function1);generated",
-        "kotlin.collections;UArraysKt;sumOfLong;(ULongArray,Function1);generated",
-        "kotlin.collections;UArraysKt;sumOfLong;(UShortArray,Function1);generated",
-        "kotlin.collections;UArraysKt;sumOfUByte;(byte[]);generated",
-        "kotlin.collections;UArraysKt;sumOfUInt;(UByteArray,Function1);generated",
-        "kotlin.collections;UArraysKt;sumOfUInt;(UIntArray,Function1);generated",
-        "kotlin.collections;UArraysKt;sumOfUInt;(ULongArray,Function1);generated",
-        "kotlin.collections;UArraysKt;sumOfUInt;(UShortArray,Function1);generated",
-        "kotlin.collections;UArraysKt;sumOfUInt;(int[]);generated",
-        "kotlin.collections;UArraysKt;sumOfULong;(UByteArray,Function1);generated",
-        "kotlin.collections;UArraysKt;sumOfULong;(UIntArray,Function1);generated",
-        "kotlin.collections;UArraysKt;sumOfULong;(ULongArray,Function1);generated",
-        "kotlin.collections;UArraysKt;sumOfULong;(UShortArray,Function1);generated",
-        "kotlin.collections;UArraysKt;sumOfULong;(long[]);generated",
-        "kotlin.collections;UArraysKt;sumOfUShort;(short[]);generated",
-        "kotlin.collections;UArraysKt;takeWhile;(UByteArray,Function1);generated",
-        "kotlin.collections;UArraysKt;takeWhile;(UIntArray,Function1);generated",
-        "kotlin.collections;UArraysKt;takeWhile;(ULongArray,Function1);generated",
-        "kotlin.collections;UArraysKt;takeWhile;(UShortArray,Function1);generated",
-        "kotlin.collections;UArraysKt;toIntArray;(UIntArray);generated",
-        "kotlin.collections;UArraysKt;toLongArray;(ULongArray);generated",
-        "kotlin.collections;UArraysKt;toShortArray;(UShortArray);generated",
-        "kotlin.collections;UArraysKt;toTypedArray;(UByteArray);generated",
-        "kotlin.collections;UArraysKt;toTypedArray;(UIntArray);generated",
-        "kotlin.collections;UArraysKt;toTypedArray;(ULongArray);generated",
-        "kotlin.collections;UArraysKt;toTypedArray;(UShortArray);generated",
-        "kotlin.collections;UArraysKt;toUIntArray;(int[]);generated",
-        "kotlin.collections;UArraysKt;toULongArray;(long[]);generated",
-        "kotlin.collections;UArraysKt;toUShortArray;(short[]);generated",
-        "kotlin.collections;UArraysKt;withIndex;(UByteArray);generated",
-        "kotlin.collections;UArraysKt;withIndex;(UIntArray);generated",
-        "kotlin.collections;UArraysKt;withIndex;(ULongArray);generated",
-        "kotlin.collections;UArraysKt;withIndex;(UShortArray);generated",
-        "kotlin.collections;UArraysKt;zip;(UByteArray,Iterable);generated",
-        "kotlin.collections;UArraysKt;zip;(UByteArray,Iterable,Function2);generated",
-        "kotlin.collections;UArraysKt;zip;(UByteArray,Object[]);generated",
-        "kotlin.collections;UArraysKt;zip;(UByteArray,Object[],Function2);generated",
-        "kotlin.collections;UArraysKt;zip;(UByteArray,UByteArray);generated",
-        "kotlin.collections;UArraysKt;zip;(UByteArray,UByteArray,Function2);generated",
-        "kotlin.collections;UArraysKt;zip;(UIntArray,Iterable);generated",
-        "kotlin.collections;UArraysKt;zip;(UIntArray,Iterable,Function2);generated",
-        "kotlin.collections;UArraysKt;zip;(UIntArray,Object[]);generated",
-        "kotlin.collections;UArraysKt;zip;(UIntArray,Object[],Function2);generated",
-        "kotlin.collections;UArraysKt;zip;(UIntArray,UIntArray);generated",
-        "kotlin.collections;UArraysKt;zip;(UIntArray,UIntArray,Function2);generated",
-        "kotlin.collections;UArraysKt;zip;(ULongArray,Iterable);generated",
-        "kotlin.collections;UArraysKt;zip;(ULongArray,Iterable,Function2);generated",
-        "kotlin.collections;UArraysKt;zip;(ULongArray,Object[]);generated",
-        "kotlin.collections;UArraysKt;zip;(ULongArray,Object[],Function2);generated",
-        "kotlin.collections;UArraysKt;zip;(ULongArray,ULongArray);generated",
-        "kotlin.collections;UArraysKt;zip;(ULongArray,ULongArray,Function2);generated",
-        "kotlin.collections;UArraysKt;zip;(UShortArray,Iterable);generated",
-        "kotlin.collections;UArraysKt;zip;(UShortArray,Iterable,Function2);generated",
-        "kotlin.collections;UArraysKt;zip;(UShortArray,Object[]);generated",
-        "kotlin.collections;UArraysKt;zip;(UShortArray,Object[],Function2);generated",
-        "kotlin.collections;UArraysKt;zip;(UShortArray,UShortArray);generated",
-        "kotlin.collections;UArraysKt;zip;(UShortArray,UShortArray,Function2);generated",
-        "kotlin.collections;UCollectionsKt;sumOfUByte;(Iterable);generated",
-        "kotlin.collections;UCollectionsKt;sumOfUInt;(Iterable);generated",
-        "kotlin.collections;UCollectionsKt;sumOfULong;(Iterable);generated",
-        "kotlin.collections;UCollectionsKt;sumOfUShort;(Iterable);generated",
-        "kotlin.collections;UCollectionsKt;toUByteArray;(Collection);generated",
-        "kotlin.collections;UCollectionsKt;toUIntArray;(Collection);generated",
-        "kotlin.collections;UCollectionsKt;toULongArray;(Collection);generated",
-        "kotlin.collections;UCollectionsKt;toUShortArray;(Collection);generated",
-        "kotlin.comparisons;ComparisonsKt;compareBy;();generated",
-        "kotlin.comparisons;ComparisonsKt;compareBy;(Comparator,Function1);generated",
-        "kotlin.comparisons;ComparisonsKt;compareBy;(Function1);generated",
-        "kotlin.comparisons;ComparisonsKt;compareByDescending;(Comparator,Function1);generated",
-        "kotlin.comparisons;ComparisonsKt;compareByDescending;(Function1);generated",
-        "kotlin.comparisons;ComparisonsKt;compareValues;(Comparable,Comparable);generated",
-        "kotlin.comparisons;ComparisonsKt;compareValuesBy;(Object,Object);generated",
-        "kotlin.comparisons;ComparisonsKt;compareValuesBy;(Object,Object,Comparator,Function1);generated",
-        "kotlin.comparisons;ComparisonsKt;compareValuesBy;(Object,Object,Function1);generated",
-        "kotlin.comparisons;ComparisonsKt;maxOf;(byte,byte);generated",
-        "kotlin.comparisons;ComparisonsKt;maxOf;(byte,byte,byte);generated",
-        "kotlin.comparisons;ComparisonsKt;maxOf;(byte,byte[]);generated",
-        "kotlin.comparisons;ComparisonsKt;maxOf;(double,double);generated",
-        "kotlin.comparisons;ComparisonsKt;maxOf;(double,double,double);generated",
-        "kotlin.comparisons;ComparisonsKt;maxOf;(double,double[]);generated",
-        "kotlin.comparisons;ComparisonsKt;maxOf;(float,float);generated",
-        "kotlin.comparisons;ComparisonsKt;maxOf;(float,float,float);generated",
-        "kotlin.comparisons;ComparisonsKt;maxOf;(float,float[]);generated",
-        "kotlin.comparisons;ComparisonsKt;maxOf;(int,int);generated",
-        "kotlin.comparisons;ComparisonsKt;maxOf;(int,int,int);generated",
-        "kotlin.comparisons;ComparisonsKt;maxOf;(int,int[]);generated",
-        "kotlin.comparisons;ComparisonsKt;maxOf;(long,long);generated",
-        "kotlin.comparisons;ComparisonsKt;maxOf;(long,long,long);generated",
-        "kotlin.comparisons;ComparisonsKt;maxOf;(long,long[]);generated",
-        "kotlin.comparisons;ComparisonsKt;maxOf;(short,short);generated",
-        "kotlin.comparisons;ComparisonsKt;maxOf;(short,short,short);generated",
-        "kotlin.comparisons;ComparisonsKt;maxOf;(short,short[]);generated",
-        "kotlin.comparisons;ComparisonsKt;minOf;(byte,byte);generated",
-        "kotlin.comparisons;ComparisonsKt;minOf;(byte,byte,byte);generated",
-        "kotlin.comparisons;ComparisonsKt;minOf;(byte,byte[]);generated",
-        "kotlin.comparisons;ComparisonsKt;minOf;(double,double);generated",
-        "kotlin.comparisons;ComparisonsKt;minOf;(double,double,double);generated",
-        "kotlin.comparisons;ComparisonsKt;minOf;(double,double[]);generated",
-        "kotlin.comparisons;ComparisonsKt;minOf;(float,float);generated",
-        "kotlin.comparisons;ComparisonsKt;minOf;(float,float,float);generated",
-        "kotlin.comparisons;ComparisonsKt;minOf;(float,float[]);generated",
-        "kotlin.comparisons;ComparisonsKt;minOf;(int,int);generated",
-        "kotlin.comparisons;ComparisonsKt;minOf;(int,int,int);generated",
-        "kotlin.comparisons;ComparisonsKt;minOf;(int,int[]);generated",
-        "kotlin.comparisons;ComparisonsKt;minOf;(long,long);generated",
-        "kotlin.comparisons;ComparisonsKt;minOf;(long,long,long);generated",
-        "kotlin.comparisons;ComparisonsKt;minOf;(long,long[]);generated",
-        "kotlin.comparisons;ComparisonsKt;minOf;(short,short);generated",
-        "kotlin.comparisons;ComparisonsKt;minOf;(short,short,short);generated",
-        "kotlin.comparisons;ComparisonsKt;minOf;(short,short[]);generated",
-        "kotlin.comparisons;ComparisonsKt;naturalOrder;();generated",
-        "kotlin.comparisons;ComparisonsKt;nullsFirst;();generated",
-        "kotlin.comparisons;ComparisonsKt;nullsFirst;(Comparator);generated",
-        "kotlin.comparisons;ComparisonsKt;nullsLast;();generated",
-        "kotlin.comparisons;ComparisonsKt;nullsLast;(Comparator);generated",
-        "kotlin.comparisons;ComparisonsKt;reverseOrder;();generated",
-        "kotlin.comparisons;ComparisonsKt;then;(Comparator,Comparator);generated",
-        "kotlin.comparisons;ComparisonsKt;thenBy;(Comparator,Comparator,Function1);generated",
-        "kotlin.comparisons;ComparisonsKt;thenBy;(Comparator,Function1);generated",
-        "kotlin.comparisons;ComparisonsKt;thenByDescending;(Comparator,Comparator,Function1);generated",
-        "kotlin.comparisons;ComparisonsKt;thenByDescending;(Comparator,Function1);generated",
-        "kotlin.comparisons;ComparisonsKt;thenComparator;(Comparator,Function2);generated",
-        "kotlin.comparisons;ComparisonsKt;thenDescending;(Comparator,Comparator);generated",
-        "kotlin.comparisons;UComparisonsKt;maxOf;(byte,UByteArray);generated",
-        "kotlin.comparisons;UComparisonsKt;maxOf;(byte,byte);generated",
-        "kotlin.comparisons;UComparisonsKt;maxOf;(byte,byte,byte);generated",
-        "kotlin.comparisons;UComparisonsKt;maxOf;(int,UIntArray);generated",
-        "kotlin.comparisons;UComparisonsKt;maxOf;(int,int);generated",
-        "kotlin.comparisons;UComparisonsKt;maxOf;(int,int,int);generated",
-        "kotlin.comparisons;UComparisonsKt;maxOf;(long,ULongArray);generated",
-        "kotlin.comparisons;UComparisonsKt;maxOf;(long,long);generated",
-        "kotlin.comparisons;UComparisonsKt;maxOf;(long,long,long);generated",
-        "kotlin.comparisons;UComparisonsKt;maxOf;(short,UShortArray);generated",
-        "kotlin.comparisons;UComparisonsKt;maxOf;(short,short);generated",
-        "kotlin.comparisons;UComparisonsKt;maxOf;(short,short,short);generated",
-        "kotlin.comparisons;UComparisonsKt;minOf;(byte,UByteArray);generated",
-        "kotlin.comparisons;UComparisonsKt;minOf;(byte,byte);generated",
-        "kotlin.comparisons;UComparisonsKt;minOf;(byte,byte,byte);generated",
-        "kotlin.comparisons;UComparisonsKt;minOf;(int,UIntArray);generated",
-        "kotlin.comparisons;UComparisonsKt;minOf;(int,int);generated",
-        "kotlin.comparisons;UComparisonsKt;minOf;(int,int,int);generated",
-        "kotlin.comparisons;UComparisonsKt;minOf;(long,ULongArray);generated",
-        "kotlin.comparisons;UComparisonsKt;minOf;(long,long);generated",
-        "kotlin.comparisons;UComparisonsKt;minOf;(long,long,long);generated",
-        "kotlin.comparisons;UComparisonsKt;minOf;(short,UShortArray);generated",
-        "kotlin.comparisons;UComparisonsKt;minOf;(short,short);generated",
-        "kotlin.comparisons;UComparisonsKt;minOf;(short,short,short);generated",
-        "kotlin.concurrent;LocksKt;read;(ReentrantReadWriteLock,Function0);generated",
-        "kotlin.concurrent;LocksKt;withLock;(Lock,Function0);generated",
-        "kotlin.concurrent;LocksKt;write;(ReentrantReadWriteLock,Function0);generated",
-        "kotlin.concurrent;ThreadsKt;getOrSet;(ThreadLocal,Function0);generated",
-        "kotlin.concurrent;ThreadsKt;thread;(boolean,boolean,ClassLoader,String,int,Function0);generated",
-        "kotlin.concurrent;TimersKt;fixedRateTimer;(String,boolean,Date,long,Function1);generated",
-        "kotlin.concurrent;TimersKt;fixedRateTimer;(String,boolean,long,long,Function1);generated",
-        "kotlin.concurrent;TimersKt;schedule;(Timer,Date,Function1);generated",
-        "kotlin.concurrent;TimersKt;schedule;(Timer,Date,long,Function1);generated",
-        "kotlin.concurrent;TimersKt;schedule;(Timer,long,Function1);generated",
-        "kotlin.concurrent;TimersKt;schedule;(Timer,long,long,Function1);generated",
-        "kotlin.concurrent;TimersKt;scheduleAtFixedRate;(Timer,Date,long,Function1);generated",
-        "kotlin.concurrent;TimersKt;scheduleAtFixedRate;(Timer,long,long,Function1);generated",
-        "kotlin.concurrent;TimersKt;timer;(String,boolean,Date,long,Function1);generated",
-        "kotlin.concurrent;TimersKt;timer;(String,boolean,long,long,Function1);generated",
-        "kotlin.concurrent;TimersKt;timerTask;(Function1);generated",
-        "kotlin.contracts;ContractBuilder;callsInPlace;(Function,InvocationKind);generated",
-        "kotlin.contracts;ContractBuilder;returns;();generated",
-        "kotlin.contracts;ContractBuilder;returns;(Object);generated",
-        "kotlin.contracts;ContractBuilder;returnsNotNull;();generated",
-        "kotlin.contracts;ContractBuilderKt;contract;(Function1);generated",
-        "kotlin.contracts;ExperimentalContracts;ExperimentalContracts;();generated",
-        "kotlin.contracts;InvocationKind;valueOf;(String);generated",
-        "kotlin.contracts;InvocationKind;values;();generated",
-        "kotlin.contracts;SimpleEffect;implies;(boolean);generated",
-        "kotlin.coroutines.cancellation;CancellationException;CancellationException;();generated",
-        "kotlin.coroutines.cancellation;CancellationException;CancellationException;(String);generated",
-        "kotlin.coroutines.cancellation;CancellationExceptionHKt;CancellationException;(String,Throwable);generated",
-        "kotlin.coroutines.cancellation;CancellationExceptionHKt;CancellationException;(Throwable);generated",
-        "kotlin.coroutines.cancellation;CancellationExceptionKt;CancellationException;(String,Throwable);generated",
-        "kotlin.coroutines.cancellation;CancellationExceptionKt;CancellationException;(Throwable);generated",
-        "kotlin.coroutines.intrinsics;CoroutinesIntrinsicsHKt;createCoroutineUnintercepted;(SuspendFunction0,Continuation);generated",
-        "kotlin.coroutines.intrinsics;CoroutinesIntrinsicsHKt;createCoroutineUnintercepted;(SuspendFunction1,Object,Continuation);generated",
-        "kotlin.coroutines.intrinsics;CoroutinesIntrinsicsHKt;intercepted;(Continuation);generated",
-        "kotlin.coroutines.intrinsics;CoroutinesIntrinsicsHKt;startCoroutineUninterceptedOrReturn;(SuspendFunction0,Continuation);generated",
-        "kotlin.coroutines.intrinsics;CoroutinesIntrinsicsHKt;startCoroutineUninterceptedOrReturn;(SuspendFunction1,Object,Continuation);generated",
-        "kotlin.coroutines.intrinsics;IntrinsicsKt;createCoroutineUnintercepted;(SuspendFunction0,Continuation);generated",
-        "kotlin.coroutines.intrinsics;IntrinsicsKt;createCoroutineUnintercepted;(SuspendFunction1,Object,Continuation);generated",
-        "kotlin.coroutines.intrinsics;IntrinsicsKt;getCOROUTINE_SUSPENDED;();generated",
-        "kotlin.coroutines.intrinsics;IntrinsicsKt;startCoroutineUninterceptedOrReturn;(SuspendFunction0,Continuation);generated",
-        "kotlin.coroutines.intrinsics;IntrinsicsKt;startCoroutineUninterceptedOrReturn;(SuspendFunction1,Object,Continuation);generated",
-        "kotlin.coroutines.intrinsics;IntrinsicsKt;suspendCoroutineUninterceptedOrReturn;(Function1);generated",
-        "kotlin.coroutines.jvm.internal;CoroutineStackFrame;getCallerFrame;();generated",
-        "kotlin.coroutines.jvm.internal;CoroutineStackFrame;getStackTraceElement;();generated",
-        "kotlin.coroutines;Continuation;getContext;();generated",
-        "kotlin.coroutines;Continuation;resumeWith;(Result);generated",
-        "kotlin.coroutines;ContinuationInterceptor;interceptContinuation;(Continuation);generated",
-        "kotlin.coroutines;ContinuationInterceptor;releaseInterceptedContinuation;(Continuation);generated",
-        "kotlin.coroutines;ContinuationKt;Continuation;(CoroutineContext,Function1);generated",
-        "kotlin.coroutines;ContinuationKt;createCoroutine;(SuspendFunction0,Continuation);generated",
-        "kotlin.coroutines;ContinuationKt;createCoroutine;(SuspendFunction1,Object,Continuation);generated",
-        "kotlin.coroutines;ContinuationKt;getCoroutineContext;();generated",
-        "kotlin.coroutines;ContinuationKt;resume;(Continuation,Object);generated",
-        "kotlin.coroutines;ContinuationKt;resumeWithException;(Continuation,Throwable);generated",
-        "kotlin.coroutines;ContinuationKt;startCoroutine;(SuspendFunction0,Continuation);generated",
-        "kotlin.coroutines;ContinuationKt;startCoroutine;(SuspendFunction1,Object,Continuation);generated",
-        "kotlin.coroutines;ContinuationKt;suspendCoroutine;(Function1);generated",
-        "kotlin.coroutines;CoroutineContext$Element;getKey;();generated",
-        "kotlin.coroutines;CoroutineContext;fold;(Object,Function2);generated",
-        "kotlin.coroutines;CoroutineContext;get;(Key);generated",
-        "kotlin.coroutines;CoroutineContext;minusKey;(Key);generated",
-        "kotlin.coroutines;EmptyCoroutineContext;hashCode;();generated",
-        "kotlin.coroutines;EmptyCoroutineContext;toString;();generated",
-        "kotlin.coroutines;RestrictsSuspension;RestrictsSuspension;();generated",
-        "kotlin.experimental;BitwiseOperationsKt;and;(byte,byte);generated",
-        "kotlin.experimental;BitwiseOperationsKt;and;(short,short);generated",
-        "kotlin.experimental;BitwiseOperationsKt;inv;(byte);generated",
-        "kotlin.experimental;BitwiseOperationsKt;inv;(short);generated",
-        "kotlin.experimental;BitwiseOperationsKt;or;(byte,byte);generated",
-        "kotlin.experimental;BitwiseOperationsKt;or;(short,short);generated",
-        "kotlin.experimental;BitwiseOperationsKt;xor;(byte,byte);generated",
-        "kotlin.experimental;BitwiseOperationsKt;xor;(short,short);generated",
-        "kotlin.experimental;ExperimentalTypeInference;ExperimentalTypeInference;();generated",
-        "kotlin.io;ByteStreamsKt;bufferedWriter;(OutputStream,Charset);generated",
-        "kotlin.io;ByteStreamsKt;iterator;(BufferedInputStream);generated",
-        "kotlin.io;ByteStreamsKt;writer;(OutputStream,Charset);generated",
-        "kotlin.io;ConsoleKt;print;(Object);generated",
-        "kotlin.io;ConsoleKt;print;(boolean);generated",
-        "kotlin.io;ConsoleKt;print;(byte);generated", "kotlin.io;ConsoleKt;print;(char);generated",
-        "kotlin.io;ConsoleKt;print;(char[]);generated",
-        "kotlin.io;ConsoleKt;print;(double);generated",
-        "kotlin.io;ConsoleKt;print;(float);generated", "kotlin.io;ConsoleKt;print;(int);generated",
-        "kotlin.io;ConsoleKt;print;(long);generated", "kotlin.io;ConsoleKt;print;(short);generated",
-        "kotlin.io;ConsoleKt;println;();generated",
-        "kotlin.io;ConsoleKt;println;(Object);generated",
-        "kotlin.io;ConsoleKt;println;(boolean);generated",
-        "kotlin.io;ConsoleKt;println;(byte);generated",
-        "kotlin.io;ConsoleKt;println;(char);generated",
-        "kotlin.io;ConsoleKt;println;(char[]);generated",
-        "kotlin.io;ConsoleKt;println;(double);generated",
-        "kotlin.io;ConsoleKt;println;(float);generated",
-        "kotlin.io;ConsoleKt;println;(int);generated",
-        "kotlin.io;ConsoleKt;println;(long);generated",
-        "kotlin.io;ConsoleKt;println;(short);generated",
-        "kotlin.io;ConsoleKt;readLine;();generated", "kotlin.io;ConsoleKt;readln;();generated",
-        "kotlin.io;ConsoleKt;readlnOrNull;();generated",
-        "kotlin.io;ConstantsKt;getDEFAULT_BUFFER_SIZE;();generated",
-        "kotlin.io;FileWalkDirection;valueOf;(String);generated",
-        "kotlin.io;FileWalkDirection;values;();generated",
-        "kotlin.io;FilesKt;appendBytes;(File,byte[]);generated",
-        "kotlin.io;FilesKt;appendText;(File,String,Charset);generated",
-        "kotlin.io;FilesKt;bufferedReader;(File,Charset,int);generated",
-        "kotlin.io;FilesKt;bufferedWriter;(File,Charset,int);generated",
-        "kotlin.io;FilesKt;copyRecursively;(File,File,boolean,Function2);generated",
-        "kotlin.io;FilesKt;createTempDir;(String,String,File);generated",
-        "kotlin.io;FilesKt;createTempFile;(String,String,File);generated",
-        "kotlin.io;FilesKt;deleteRecursively;(File);generated",
-        "kotlin.io;FilesKt;endsWith;(File,File);generated",
-        "kotlin.io;FilesKt;endsWith;(File,String);generated",
-        "kotlin.io;FilesKt;forEachBlock;(File,Function2);generated",
-        "kotlin.io;FilesKt;forEachBlock;(File,int,Function2);generated",
-        "kotlin.io;FilesKt;forEachLine;(File,Charset,Function1);generated",
-        "kotlin.io;FilesKt;getExtension;(File);generated",
-        "kotlin.io;FilesKt;getInvariantSeparatorsPath;(File);generated",
-        "kotlin.io;FilesKt;getNameWithoutExtension;(File);generated",
-        "kotlin.io;FilesKt;inputStream;(File);generated",
-        "kotlin.io;FilesKt;isRooted;(File);generated",
-        "kotlin.io;FilesKt;normalize;(File);generated",
-        "kotlin.io;FilesKt;outputStream;(File);generated",
-        "kotlin.io;FilesKt;printWriter;(File,Charset);generated",
-        "kotlin.io;FilesKt;readBytes;(File);generated",
-        "kotlin.io;FilesKt;readLines;(File,Charset);generated",
-        "kotlin.io;FilesKt;readText;(File,Charset);generated",
-        "kotlin.io;FilesKt;reader;(File,Charset);generated",
-        "kotlin.io;FilesKt;relativeTo;(File,File);generated",
-        "kotlin.io;FilesKt;relativeToOrNull;(File,File);generated",
-        "kotlin.io;FilesKt;startsWith;(File,File);generated",
-        "kotlin.io;FilesKt;startsWith;(File,String);generated",
-        "kotlin.io;FilesKt;toRelativeString;(File,File);generated",
-        "kotlin.io;FilesKt;useLines;(File,Charset,Function1);generated",
-        "kotlin.io;FilesKt;writeBytes;(File,byte[]);generated",
-        "kotlin.io;FilesKt;writeText;(File,String,Charset);generated",
-        "kotlin.io;FilesKt;writer;(File,Charset);generated",
-        "kotlin.io;IoHKt;print;(Object);generated", "kotlin.io;IoHKt;println;();generated",
-        "kotlin.io;IoHKt;println;(Object);generated", "kotlin.io;IoHKt;readln;();generated",
-        "kotlin.io;IoHKt;readlnOrNull;();generated",
-        "kotlin.io;OnErrorAction;valueOf;(String);generated",
-        "kotlin.io;OnErrorAction;values;();generated",
-        "kotlin.io;TextStreamsKt;readBytes;(URL);generated",
-        "kotlin.io;TextStreamsKt;readLines;(Reader);generated",
-        "kotlin.io;TextStreamsKt;readText;(URL,Charset);generated",
-        "kotlin.js;ExperimentalJsExport;ExperimentalJsExport;();generated",
-        "kotlin.js;JsExport;JsExport;();generated", "kotlin.js;JsName;JsName;(String);generated",
-        "kotlin.js;JsName;name;();generated", "kotlin.jvm.functions;Function0;invoke;();generated",
-        "kotlin.jvm.functions;Function10;invoke;(Object,Object,Object,Object,Object,Object,Object,Object,Object,Object);generated",
-        "kotlin.jvm.functions;Function11;invoke;(Object,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object);generated",
-        "kotlin.jvm.functions;Function12;invoke;(Object,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object);generated",
-        "kotlin.jvm.functions;Function13;invoke;(Object,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object);generated",
-        "kotlin.jvm.functions;Function14;invoke;(Object,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object);generated",
-        "kotlin.jvm.functions;Function15;invoke;(Object,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object);generated",
-        "kotlin.jvm.functions;Function16;invoke;(Object,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object);generated",
-        "kotlin.jvm.functions;Function17;invoke;(Object,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object);generated",
-        "kotlin.jvm.functions;Function18;invoke;(Object,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object);generated",
-        "kotlin.jvm.functions;Function19;invoke;(Object,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object);generated",
-        "kotlin.jvm.functions;Function1;invoke;(Object);generated",
-        "kotlin.jvm.functions;Function20;invoke;(Object,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object);generated",
-        "kotlin.jvm.functions;Function21;invoke;(Object,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object);generated",
-        "kotlin.jvm.functions;Function22;invoke;(Object,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object,Object);generated",
-        "kotlin.jvm.functions;Function2;invoke;(Object,Object);generated",
-        "kotlin.jvm.functions;Function3;invoke;(Object,Object,Object);generated",
-        "kotlin.jvm.functions;Function4;invoke;(Object,Object,Object,Object);generated",
-        "kotlin.jvm.functions;Function5;invoke;(Object,Object,Object,Object,Object);generated",
-        "kotlin.jvm.functions;Function6;invoke;(Object,Object,Object,Object,Object,Object);generated",
-        "kotlin.jvm.functions;Function7;invoke;(Object,Object,Object,Object,Object,Object,Object);generated",
-        "kotlin.jvm.functions;Function8;invoke;(Object,Object,Object,Object,Object,Object,Object,Object);generated",
-        "kotlin.jvm.functions;Function9;invoke;(Object,Object,Object,Object,Object,Object,Object,Object,Object);generated",
-        "kotlin.jvm.functions;FunctionN;invoke;(Object[]);generated",
-        "kotlin.jvm.internal;AdaptedFunctionReference;equals;(Object);generated",
-        "kotlin.jvm.internal;AdaptedFunctionReference;getOwner;();generated",
-        "kotlin.jvm.internal;AdaptedFunctionReference;hashCode;();generated",
-        "kotlin.jvm.internal;AdaptedFunctionReference;toString;();generated",
-        "kotlin.jvm.internal;ArrayIteratorsKt;iterator;(boolean[]);generated",
-        "kotlin.jvm.internal;ArrayIteratorsKt;iterator;(double[]);generated",
-        "kotlin.jvm.internal;ArrayIteratorsKt;iterator;(float[]);generated",
-        "kotlin.jvm.internal;ArrayIteratorsKt;iterator;(int[]);generated",
-        "kotlin.jvm.internal;ArrayIteratorsKt;iterator;(long[]);generated",
-        "kotlin.jvm.internal;ArrayIteratorsKt;iterator;(short[]);generated",
-        "kotlin.jvm.internal;BooleanSpreadBuilder;BooleanSpreadBuilder;(int);generated",
-        "kotlin.jvm.internal;BooleanSpreadBuilder;add;(boolean);generated",
-        "kotlin.jvm.internal;BooleanSpreadBuilder;toArray;();generated",
-        "kotlin.jvm.internal;ByteSpreadBuilder;ByteSpreadBuilder;(int);generated",
-        "kotlin.jvm.internal;ByteSpreadBuilder;add;(byte);generated",
-        "kotlin.jvm.internal;CallableReference;CallableReference;();generated",
-        "kotlin.jvm.internal;CallableReference;getOwner;();generated",
-        "kotlin.jvm.internal;CharSpreadBuilder;CharSpreadBuilder;(int);generated",
-        "kotlin.jvm.internal;CharSpreadBuilder;add;(char);generated",
-        "kotlin.jvm.internal;ClassBasedDeclarationContainer;getJClass;();generated",
-        "kotlin.jvm.internal;ClassReference$Companion;isInstance;(Object,Class);generated",
-        "kotlin.jvm.internal;ClassReference;ClassReference;(Class);generated",
-        "kotlin.jvm.internal;ClassReference;equals;(Object);generated",
-        "kotlin.jvm.internal;ClassReference;hashCode;();generated",
-        "kotlin.jvm.internal;ClassReference;toString;();generated",
-        "kotlin.jvm.internal;DoubleSpreadBuilder;DoubleSpreadBuilder;(int);generated",
-        "kotlin.jvm.internal;DoubleSpreadBuilder;add;(double);generated",
-        "kotlin.jvm.internal;DoubleSpreadBuilder;toArray;();generated",
-        "kotlin.jvm.internal;FloatSpreadBuilder;FloatSpreadBuilder;(int);generated",
-        "kotlin.jvm.internal;FloatSpreadBuilder;add;(float);generated",
-        "kotlin.jvm.internal;FloatSpreadBuilder;toArray;();generated",
-        "kotlin.jvm.internal;FunInterfaceConstructorReference;FunInterfaceConstructorReference;(Class);generated",
-        "kotlin.jvm.internal;FunInterfaceConstructorReference;equals;(Object);generated",
-        "kotlin.jvm.internal;FunInterfaceConstructorReference;hashCode;();generated",
-        "kotlin.jvm.internal;FunInterfaceConstructorReference;toString;();generated",
-        "kotlin.jvm.internal;FunctionAdapter;getFunctionDelegate;();generated",
-        "kotlin.jvm.internal;FunctionBase;getArity;();generated",
-        "kotlin.jvm.internal;FunctionImpl;FunctionImpl;();generated",
-        "kotlin.jvm.internal;FunctionImpl;getArity;();generated",
-        "kotlin.jvm.internal;FunctionImpl;invokeVararg;(Object[]);generated",
-        "kotlin.jvm.internal;FunctionReference;FunctionReference;(int);generated",
-        "kotlin.jvm.internal;FunctionReference;equals;(Object);generated",
-        "kotlin.jvm.internal;FunctionReference;hashCode;();generated",
-        "kotlin.jvm.internal;InlineMarker;InlineMarker;();generated",
-        "kotlin.jvm.internal;InlineMarker;afterInlineCall;();generated",
-        "kotlin.jvm.internal;InlineMarker;beforeInlineCall;();generated",
-        "kotlin.jvm.internal;InlineMarker;finallyEnd;(int);generated",
-        "kotlin.jvm.internal;InlineMarker;finallyStart;(int);generated",
-        "kotlin.jvm.internal;InlineMarker;mark;(String);generated",
-        "kotlin.jvm.internal;InlineMarker;mark;(int);generated",
-        "kotlin.jvm.internal;IntSpreadBuilder;IntSpreadBuilder;(int);generated",
-        "kotlin.jvm.internal;IntSpreadBuilder;add;(int);generated",
-        "kotlin.jvm.internal;IntSpreadBuilder;toArray;();generated",
-        "kotlin.jvm.internal;Intrinsics;areEqual;(Double,Double);generated",
-        "kotlin.jvm.internal;Intrinsics;areEqual;(Double,double);generated",
-        "kotlin.jvm.internal;Intrinsics;areEqual;(Float,Float);generated",
-        "kotlin.jvm.internal;Intrinsics;areEqual;(Float,float);generated",
-        "kotlin.jvm.internal;Intrinsics;areEqual;(Object,Object);generated",
-        "kotlin.jvm.internal;Intrinsics;areEqual;(double,Double);generated",
-        "kotlin.jvm.internal;Intrinsics;areEqual;(float,Float);generated",
-        "kotlin.jvm.internal;Intrinsics;checkExpressionValueIsNotNull;(Object,String);generated",
-        "kotlin.jvm.internal;Intrinsics;checkFieldIsNotNull;(Object,String);generated",
-        "kotlin.jvm.internal;Intrinsics;checkFieldIsNotNull;(Object,String,String);generated",
-        "kotlin.jvm.internal;Intrinsics;checkHasClass;(String);generated",
-        "kotlin.jvm.internal;Intrinsics;checkHasClass;(String,String);generated",
-        "kotlin.jvm.internal;Intrinsics;checkNotNull;(Object);generated",
-        "kotlin.jvm.internal;Intrinsics;checkNotNull;(Object,String);generated",
-        "kotlin.jvm.internal;Intrinsics;checkNotNullExpressionValue;(Object,String);generated",
-        "kotlin.jvm.internal;Intrinsics;checkNotNullParameter;(Object,String);generated",
-        "kotlin.jvm.internal;Intrinsics;checkParameterIsNotNull;(Object,String);generated",
-        "kotlin.jvm.internal;Intrinsics;checkReturnedValueIsNotNull;(Object,String);generated",
-        "kotlin.jvm.internal;Intrinsics;checkReturnedValueIsNotNull;(Object,String,String);generated",
-        "kotlin.jvm.internal;Intrinsics;compare;(int,int);generated",
-        "kotlin.jvm.internal;Intrinsics;compare;(long,long);generated",
-        "kotlin.jvm.internal;Intrinsics;needClassReification;();generated",
-        "kotlin.jvm.internal;Intrinsics;needClassReification;(String);generated",
-        "kotlin.jvm.internal;Intrinsics;reifiedOperationMarker;(int,String);generated",
-        "kotlin.jvm.internal;Intrinsics;reifiedOperationMarker;(int,String,String);generated",
-        "kotlin.jvm.internal;Intrinsics;throwAssert;();generated",
-        "kotlin.jvm.internal;Intrinsics;throwAssert;(String);generated",
-        "kotlin.jvm.internal;Intrinsics;throwIllegalArgument;();generated",
-        "kotlin.jvm.internal;Intrinsics;throwIllegalArgument;(String);generated",
-        "kotlin.jvm.internal;Intrinsics;throwIllegalState;();generated",
-        "kotlin.jvm.internal;Intrinsics;throwIllegalState;(String);generated",
-        "kotlin.jvm.internal;Intrinsics;throwJavaNpe;();generated",
-        "kotlin.jvm.internal;Intrinsics;throwJavaNpe;(String);generated",
-        "kotlin.jvm.internal;Intrinsics;throwNpe;();generated",
-        "kotlin.jvm.internal;Intrinsics;throwNpe;(String);generated",
-        "kotlin.jvm.internal;Intrinsics;throwUndefinedForReified;();generated",
-        "kotlin.jvm.internal;Intrinsics;throwUndefinedForReified;(String);generated",
-        "kotlin.jvm.internal;Intrinsics;throwUninitializedProperty;(String);generated",
-        "kotlin.jvm.internal;Intrinsics;throwUninitializedPropertyAccessException;(String);generated",
-        "kotlin.jvm.internal;KTypeBase;getJavaType;();generated",
-        "kotlin.jvm.internal;Lambda;Lambda;(int);generated",
-        "kotlin.jvm.internal;Lambda;toString;();generated",
-        "kotlin.jvm.internal;LocalVariableReference;LocalVariableReference;();generated",
-        "kotlin.jvm.internal;LongSpreadBuilder;LongSpreadBuilder;(int);generated",
-        "kotlin.jvm.internal;LongSpreadBuilder;add;(long);generated",
-        "kotlin.jvm.internal;LongSpreadBuilder;toArray;();generated",
-        "kotlin.jvm.internal;MagicApiIntrinsics;MagicApiIntrinsics;();generated",
-        "kotlin.jvm.internal;MagicApiIntrinsics;anyMagicApiCall;(Object);generated",
-        "kotlin.jvm.internal;MagicApiIntrinsics;anyMagicApiCall;(int);generated",
-        "kotlin.jvm.internal;MagicApiIntrinsics;anyMagicApiCall;(int,Object,Object);generated",
-        "kotlin.jvm.internal;MagicApiIntrinsics;anyMagicApiCall;(int,Object,Object,Object,Object);generated",
-        "kotlin.jvm.internal;MagicApiIntrinsics;anyMagicApiCall;(int,long,Object);generated",
-        "kotlin.jvm.internal;MagicApiIntrinsics;anyMagicApiCall;(int,long,long,Object);generated",
-        "kotlin.jvm.internal;MagicApiIntrinsics;intMagicApiCall;(Object);generated",
-        "kotlin.jvm.internal;MagicApiIntrinsics;intMagicApiCall;(int);generated",
-        "kotlin.jvm.internal;MagicApiIntrinsics;intMagicApiCall;(int,Object,Object);generated",
-        "kotlin.jvm.internal;MagicApiIntrinsics;intMagicApiCall;(int,Object,Object,Object,Object);generated",
-        "kotlin.jvm.internal;MagicApiIntrinsics;intMagicApiCall;(int,long,Object);generated",
-        "kotlin.jvm.internal;MagicApiIntrinsics;intMagicApiCall;(int,long,long,Object);generated",
-        "kotlin.jvm.internal;MagicApiIntrinsics;voidMagicApiCall;(Object);generated",
-        "kotlin.jvm.internal;MagicApiIntrinsics;voidMagicApiCall;(int);generated",
-        "kotlin.jvm.internal;MutableLocalVariableReference;MutableLocalVariableReference;();generated",
-        "kotlin.jvm.internal;MutablePropertyReference0;MutablePropertyReference0;();generated",
-        "kotlin.jvm.internal;MutablePropertyReference1;MutablePropertyReference1;();generated",
-        "kotlin.jvm.internal;MutablePropertyReference2;MutablePropertyReference2;();generated",
-        "kotlin.jvm.internal;MutablePropertyReference;MutablePropertyReference;();generated",
-        "kotlin.jvm.internal;PackageReference;equals;(Object);generated",
-        "kotlin.jvm.internal;PackageReference;hashCode;();generated",
-        "kotlin.jvm.internal;PackageReference;toString;();generated",
-        "kotlin.jvm.internal;PrimitiveSpreadBuilder;PrimitiveSpreadBuilder;(int);generated",
-        "kotlin.jvm.internal;PropertyReference0;PropertyReference0;();generated",
-        "kotlin.jvm.internal;PropertyReference1;PropertyReference1;();generated",
-        "kotlin.jvm.internal;PropertyReference2;PropertyReference2;();generated",
-        "kotlin.jvm.internal;PropertyReference;PropertyReference;();generated",
-        "kotlin.jvm.internal;PropertyReference;equals;(Object);generated",
-        "kotlin.jvm.internal;PropertyReference;hashCode;();generated",
-        "kotlin.jvm.internal;Ref$BooleanRef;BooleanRef;();generated",
-        "kotlin.jvm.internal;Ref$BooleanRef;toString;();generated",
-        "kotlin.jvm.internal;Ref$ByteRef;ByteRef;();generated",
-        "kotlin.jvm.internal;Ref$ByteRef;toString;();generated",
-        "kotlin.jvm.internal;Ref$CharRef;CharRef;();generated",
-        "kotlin.jvm.internal;Ref$CharRef;toString;();generated",
-        "kotlin.jvm.internal;Ref$DoubleRef;DoubleRef;();generated",
-        "kotlin.jvm.internal;Ref$DoubleRef;toString;();generated",
-        "kotlin.jvm.internal;Ref$FloatRef;FloatRef;();generated",
-        "kotlin.jvm.internal;Ref$FloatRef;toString;();generated",
-        "kotlin.jvm.internal;Ref$IntRef;IntRef;();generated",
-        "kotlin.jvm.internal;Ref$IntRef;toString;();generated",
-        "kotlin.jvm.internal;Ref$LongRef;LongRef;();generated",
-        "kotlin.jvm.internal;Ref$LongRef;toString;();generated",
-        "kotlin.jvm.internal;Ref$ObjectRef;ObjectRef;();generated",
-        "kotlin.jvm.internal;Ref$ObjectRef;toString;();generated",
-        "kotlin.jvm.internal;Ref$ShortRef;ShortRef;();generated",
-        "kotlin.jvm.internal;Ref$ShortRef;toString;();generated",
-        "kotlin.jvm.internal;Reflection;Reflection;();generated",
-        "kotlin.jvm.internal;Reflection;createKotlinClass;(Class);generated",
-        "kotlin.jvm.internal;Reflection;createKotlinClass;(Class,String);generated",
-        "kotlin.jvm.internal;Reflection;getOrCreateKotlinClass;(Class);generated",
-        "kotlin.jvm.internal;Reflection;getOrCreateKotlinClass;(Class,String);generated",
-        "kotlin.jvm.internal;Reflection;getOrCreateKotlinClasses;(Class[]);generated",
-        "kotlin.jvm.internal;Reflection;getOrCreateKotlinPackage;(Class);generated",
-        "kotlin.jvm.internal;Reflection;nullableTypeOf;(Class);generated",
-        "kotlin.jvm.internal;Reflection;nullableTypeOf;(Class,KTypeProjection[]);generated",
-        "kotlin.jvm.internal;Reflection;renderLambdaToString;(FunctionBase);generated",
-        "kotlin.jvm.internal;Reflection;renderLambdaToString;(Lambda);generated",
-        "kotlin.jvm.internal;Reflection;setUpperBounds;(KTypeParameter,KType[]);generated",
-        "kotlin.jvm.internal;Reflection;typeOf;(Class);generated",
-        "kotlin.jvm.internal;Reflection;typeOf;(Class,KTypeProjection[]);generated",
-        "kotlin.jvm.internal;ReflectionFactory;ReflectionFactory;();generated",
-        "kotlin.jvm.internal;ReflectionFactory;createKotlinClass;(Class);generated",
-        "kotlin.jvm.internal;ReflectionFactory;createKotlinClass;(Class,String);generated",
-        "kotlin.jvm.internal;ReflectionFactory;getOrCreateKotlinClass;(Class);generated",
-        "kotlin.jvm.internal;ReflectionFactory;getOrCreateKotlinClass;(Class,String);generated",
-        "kotlin.jvm.internal;ReflectionFactory;renderLambdaToString;(FunctionBase);generated",
-        "kotlin.jvm.internal;ReflectionFactory;renderLambdaToString;(Lambda);generated",
-        "kotlin.jvm.internal;SerializedIr;SerializedIr;(String[]);generated",
-        "kotlin.jvm.internal;SerializedIr;b;();generated",
-        "kotlin.jvm.internal;ShortSpreadBuilder;ShortSpreadBuilder;(int);generated",
-        "kotlin.jvm.internal;ShortSpreadBuilder;add;(short);generated",
-        "kotlin.jvm.internal;ShortSpreadBuilder;toArray;();generated",
-        "kotlin.jvm.internal;SpreadBuilder;SpreadBuilder;(int);generated",
-        "kotlin.jvm.internal;SpreadBuilder;size;();generated",
-        "kotlin.jvm.internal;TypeIntrinsics;TypeIntrinsics;();generated",
-        "kotlin.jvm.internal;TypeIntrinsics;getFunctionArity;(Object);generated",
-        "kotlin.jvm.internal;TypeIntrinsics;isFunctionOfArity;(Object,int);generated",
-        "kotlin.jvm.internal;TypeIntrinsics;isMutableCollection;(Object);generated",
-        "kotlin.jvm.internal;TypeIntrinsics;isMutableIterable;(Object);generated",
-        "kotlin.jvm.internal;TypeIntrinsics;isMutableIterator;(Object);generated",
-        "kotlin.jvm.internal;TypeIntrinsics;isMutableList;(Object);generated",
-        "kotlin.jvm.internal;TypeIntrinsics;isMutableListIterator;(Object);generated",
-        "kotlin.jvm.internal;TypeIntrinsics;isMutableMap;(Object);generated",
-        "kotlin.jvm.internal;TypeIntrinsics;isMutableMapEntry;(Object);generated",
-        "kotlin.jvm.internal;TypeIntrinsics;isMutableSet;(Object);generated",
-        "kotlin.jvm.internal;TypeIntrinsics;throwCce;(ClassCastException);generated",
-        "kotlin.jvm.internal;TypeIntrinsics;throwCce;(Object,String);generated",
-        "kotlin.jvm.internal;TypeIntrinsics;throwCce;(String);generated",
-        "kotlin.jvm.internal;TypeParameterReference$Companion;toString;(KTypeParameter);generated",
-        "kotlin.jvm.internal;TypeParameterReference;equals;(Object);generated",
-        "kotlin.jvm.internal;TypeParameterReference;hashCode;();generated",
-        "kotlin.jvm.internal;TypeParameterReference;toString;();generated",
-        "kotlin.jvm.internal;TypeReference;equals;(Object);generated",
-        "kotlin.jvm.internal;TypeReference;hashCode;();generated",
-        "kotlin.jvm;JvmClassMappingKt;getAnnotationClass;(Annotation);generated",
-        "kotlin.jvm;JvmClassMappingKt;getDeclaringJavaClass;(Enum);generated",
-        "kotlin.jvm;JvmClassMappingKt;getJavaClass;(KClass);generated",
-        "kotlin.jvm;JvmClassMappingKt;getJavaClass;(Object);generated",
-        "kotlin.jvm;JvmClassMappingKt;getJavaObjectType;(KClass);generated",
-        "kotlin.jvm;JvmClassMappingKt;getJavaPrimitiveType;(KClass);generated",
-        "kotlin.jvm;JvmClassMappingKt;getKotlinClass;(Class);generated",
-        "kotlin.jvm;JvmClassMappingKt;getRuntimeClassOfKClassInstance;(KClass);generated",
-        "kotlin.jvm;JvmClassMappingKt;isArrayOf;(Object[]);generated",
-        "kotlin.jvm;JvmDefault;JvmDefault;();generated",
-        "kotlin.jvm;JvmDefaultWithCompatibility;JvmDefaultWithCompatibility;();generated",
-        "kotlin.jvm;JvmDefaultWithoutCompatibility;JvmDefaultWithoutCompatibility;();generated",
-        "kotlin.jvm;JvmField;JvmField;();generated", "kotlin.jvm;JvmInline;JvmInline;();generated",
-        "kotlin.jvm;JvmMultifileClass;JvmMultifileClass;();generated",
-        "kotlin.jvm;JvmName;JvmName;(String);generated", "kotlin.jvm;JvmName;name;();generated",
-        "kotlin.jvm;JvmOverloads;JvmOverloads;();generated",
-        "kotlin.jvm;JvmRecord;JvmRecord;();generated",
-        "kotlin.jvm;JvmStatic;JvmStatic;();generated",
-        "kotlin.jvm;JvmSuppressWildcards;JvmSuppressWildcards;(boolean);generated",
-        "kotlin.jvm;JvmSuppressWildcards;suppress;();generated",
-        "kotlin.jvm;JvmSynthetic;JvmSynthetic;();generated",
-        "kotlin.jvm;JvmWildcard;JvmWildcard;();generated",
-        "kotlin.jvm;KotlinReflectionNotSupportedError;KotlinReflectionNotSupportedError;();generated",
-        "kotlin.jvm;KotlinReflectionNotSupportedError;KotlinReflectionNotSupportedError;(String);generated",
-        "kotlin.jvm;KotlinReflectionNotSupportedError;KotlinReflectionNotSupportedError;(String,Throwable);generated",
-        "kotlin.jvm;KotlinReflectionNotSupportedError;KotlinReflectionNotSupportedError;(Throwable);generated",
-        "kotlin.jvm;PurelyImplements;PurelyImplements;(String);generated",
-        "kotlin.jvm;PurelyImplements;value;();generated",
-        "kotlin.jvm;Strictfp;Strictfp;();generated",
-        "kotlin.jvm;Synchronized;Synchronized;();generated",
-        "kotlin.jvm;Throws;Throws;(KClass[]);generated",
-        "kotlin.jvm;Throws;exceptionClasses;();generated",
-        "kotlin.jvm;Transient;Transient;();generated", "kotlin.jvm;Volatile;Volatile;();generated",
-        "kotlin.math;MathKt;IEEErem;(double,double);generated",
-        "kotlin.math;MathKt;IEEErem;(float,float);generated",
-        "kotlin.math;MathKt;abs;(double);generated", "kotlin.math;MathKt;abs;(float);generated",
-        "kotlin.math;MathKt;abs;(int);generated", "kotlin.math;MathKt;abs;(long);generated",
-        "kotlin.math;MathKt;acos;(double);generated", "kotlin.math;MathKt;acos;(float);generated",
-        "kotlin.math;MathKt;acosh;(double);generated", "kotlin.math;MathKt;acosh;(float);generated",
-        "kotlin.math;MathKt;asin;(double);generated", "kotlin.math;MathKt;asin;(float);generated",
-        "kotlin.math;MathKt;asinh;(double);generated", "kotlin.math;MathKt;asinh;(float);generated",
-        "kotlin.math;MathKt;atan2;(double,double);generated",
-        "kotlin.math;MathKt;atan2;(float,float);generated",
-        "kotlin.math;MathKt;atan;(double);generated", "kotlin.math;MathKt;atan;(float);generated",
-        "kotlin.math;MathKt;atanh;(double);generated", "kotlin.math;MathKt;atanh;(float);generated",
-        "kotlin.math;MathKt;cbrt;(double);generated", "kotlin.math;MathKt;cbrt;(float);generated",
-        "kotlin.math;MathKt;ceil;(double);generated", "kotlin.math;MathKt;ceil;(float);generated",
-        "kotlin.math;MathKt;cos;(double);generated", "kotlin.math;MathKt;cos;(float);generated",
-        "kotlin.math;MathKt;cosh;(double);generated", "kotlin.math;MathKt;cosh;(float);generated",
-        "kotlin.math;MathKt;exp;(double);generated", "kotlin.math;MathKt;exp;(float);generated",
-        "kotlin.math;MathKt;expm1;(double);generated", "kotlin.math;MathKt;expm1;(float);generated",
-        "kotlin.math;MathKt;floor;(double);generated", "kotlin.math;MathKt;floor;(float);generated",
-        "kotlin.math;MathKt;getAbsoluteValue;(double);generated",
-        "kotlin.math;MathKt;getAbsoluteValue;(float);generated",
-        "kotlin.math;MathKt;getAbsoluteValue;(int);generated",
-        "kotlin.math;MathKt;getAbsoluteValue;(long);generated",
-        "kotlin.math;MathKt;getE;();generated", "kotlin.math;MathKt;getPI;();generated",
-        "kotlin.math;MathKt;getSign;(double);generated",
-        "kotlin.math;MathKt;getSign;(float);generated",
-        "kotlin.math;MathKt;getSign;(int);generated", "kotlin.math;MathKt;getSign;(long);generated",
-        "kotlin.math;MathKt;getUlp;(double);generated",
-        "kotlin.math;MathKt;getUlp;(float);generated",
-        "kotlin.math;MathKt;hypot;(double,double);generated",
-        "kotlin.math;MathKt;hypot;(float,float);generated",
-        "kotlin.math;MathKt;ln1p;(double);generated", "kotlin.math;MathKt;ln1p;(float);generated",
-        "kotlin.math;MathKt;ln;(double);generated", "kotlin.math;MathKt;ln;(float);generated",
-        "kotlin.math;MathKt;log10;(double);generated", "kotlin.math;MathKt;log10;(float);generated",
-        "kotlin.math;MathKt;log2;(double);generated", "kotlin.math;MathKt;log2;(float);generated",
-        "kotlin.math;MathKt;log;(double,double);generated",
-        "kotlin.math;MathKt;log;(float,float);generated",
-        "kotlin.math;MathKt;max;(double,double);generated",
-        "kotlin.math;MathKt;max;(float,float);generated",
-        "kotlin.math;MathKt;max;(int,int);generated",
-        "kotlin.math;MathKt;max;(long,long);generated",
-        "kotlin.math;MathKt;min;(double,double);generated",
-        "kotlin.math;MathKt;min;(float,float);generated",
-        "kotlin.math;MathKt;min;(int,int);generated",
-        "kotlin.math;MathKt;min;(long,long);generated",
-        "kotlin.math;MathKt;nextDown;(double);generated",
-        "kotlin.math;MathKt;nextDown;(float);generated",
-        "kotlin.math;MathKt;nextTowards;(double,double);generated",
-        "kotlin.math;MathKt;nextTowards;(float,float);generated",
-        "kotlin.math;MathKt;nextUp;(double);generated",
-        "kotlin.math;MathKt;nextUp;(float);generated",
-        "kotlin.math;MathKt;pow;(double,double);generated",
-        "kotlin.math;MathKt;pow;(double,int);generated",
-        "kotlin.math;MathKt;pow;(float,float);generated",
-        "kotlin.math;MathKt;pow;(float,int);generated",
-        "kotlin.math;MathKt;round;(double);generated", "kotlin.math;MathKt;round;(float);generated",
-        "kotlin.math;MathKt;roundToInt;(double);generated",
-        "kotlin.math;MathKt;roundToInt;(float);generated",
-        "kotlin.math;MathKt;roundToLong;(double);generated",
-        "kotlin.math;MathKt;roundToLong;(float);generated",
-        "kotlin.math;MathKt;sign;(double);generated", "kotlin.math;MathKt;sign;(float);generated",
-        "kotlin.math;MathKt;sin;(double);generated", "kotlin.math;MathKt;sin;(float);generated",
-        "kotlin.math;MathKt;sinh;(double);generated", "kotlin.math;MathKt;sinh;(float);generated",
-        "kotlin.math;MathKt;sqrt;(double);generated", "kotlin.math;MathKt;sqrt;(float);generated",
-        "kotlin.math;MathKt;tan;(double);generated", "kotlin.math;MathKt;tan;(float);generated",
-        "kotlin.math;MathKt;tanh;(double);generated", "kotlin.math;MathKt;tanh;(float);generated",
-        "kotlin.math;MathKt;truncate;(double);generated",
-        "kotlin.math;MathKt;truncate;(float);generated",
-        "kotlin.math;MathKt;withSign;(double,double);generated",
-        "kotlin.math;MathKt;withSign;(double,int);generated",
-        "kotlin.math;MathKt;withSign;(float,float);generated",
-        "kotlin.math;MathKt;withSign;(float,int);generated",
-        "kotlin.math;UMathKt;max;(int,int);generated",
-        "kotlin.math;UMathKt;max;(long,long);generated",
-        "kotlin.math;UMathKt;min;(int,int);generated",
-        "kotlin.math;UMathKt;min;(long,long);generated",
-        "kotlin.native.concurrent;SharedImmutable;SharedImmutable;();generated",
-        "kotlin.native.concurrent;ThreadLocal;ThreadLocal;();generated",
-        "kotlin.native;CName;CName;(String,String);generated",
-        "kotlin.native;CName;externName;();generated", "kotlin.native;CName;shortName;();generated",
-        "kotlin.properties;Delegates;notNull;();generated",
-        "kotlin.properties;Delegates;observable;(Object,Function3);generated",
-        "kotlin.properties;Delegates;vetoable;(Object,Function3);generated",
-        "kotlin.properties;PropertyDelegateProvider;provideDelegate;(Object,KProperty);generated",
-        "kotlin.properties;ReadOnlyProperty;getValue;(Object,KProperty);generated",
-        "kotlin.properties;ReadWriteProperty;setValue;(Object,KProperty,Object);generated",
-        "kotlin.random;Random;Random;();generated", "kotlin.random;Random;nextBits;(int);generated",
-        "kotlin.random;Random;nextBoolean;();generated",
-        "kotlin.random;Random;nextBytes;(int);generated",
-        "kotlin.random;Random;nextDouble;();generated",
-        "kotlin.random;Random;nextDouble;(double);generated",
-        "kotlin.random;Random;nextDouble;(double,double);generated",
-        "kotlin.random;Random;nextFloat;();generated", "kotlin.random;Random;nextInt;();generated",
-        "kotlin.random;Random;nextInt;(int);generated",
-        "kotlin.random;Random;nextInt;(int,int);generated",
-        "kotlin.random;Random;nextLong;();generated",
-        "kotlin.random;Random;nextLong;(long);generated",
-        "kotlin.random;Random;nextLong;(long,long);generated",
-        "kotlin.random;RandomKt;Random;(int);generated",
-        "kotlin.random;RandomKt;Random;(long);generated",
-        "kotlin.random;RandomKt;nextInt;(Random,IntRange);generated",
-        "kotlin.random;RandomKt;nextLong;(Random,LongRange);generated",
-        "kotlin.random;URandomKt;nextUBytes;(Random,int);generated",
-        "kotlin.random;URandomKt;nextUInt;(Random);generated",
-        "kotlin.random;URandomKt;nextUInt;(Random,UIntRange);generated",
-        "kotlin.random;URandomKt;nextUInt;(Random,int);generated",
-        "kotlin.random;URandomKt;nextUInt;(Random,int,int);generated",
-        "kotlin.random;URandomKt;nextULong;(Random);generated",
-        "kotlin.random;URandomKt;nextULong;(Random,ULongRange);generated",
-        "kotlin.random;URandomKt;nextULong;(Random,long);generated",
-        "kotlin.random;URandomKt;nextULong;(Random,long,long);generated",
-        "kotlin.ranges;CharProgression$Companion;fromClosedRange;(char,char,int);generated",
-        "kotlin.ranges;CharProgression;equals;(Object);generated",
-        "kotlin.ranges;CharProgression;getFirst;();generated",
-        "kotlin.ranges;CharProgression;getLast;();generated",
-        "kotlin.ranges;CharProgression;getStep;();generated",
-        "kotlin.ranges;CharProgression;hashCode;();generated",
-        "kotlin.ranges;CharProgression;isEmpty;();generated",
-        "kotlin.ranges;CharProgression;toString;();generated",
-        "kotlin.ranges;CharRange;CharRange;(char,char);generated",
-        "kotlin.ranges;CharRange;contains;(char);generated",
-        "kotlin.ranges;CharRange;equals;(Object);generated",
-        "kotlin.ranges;CharRange;hashCode;();generated",
-        "kotlin.ranges;CharRange;toString;();generated",
-        "kotlin.ranges;ClosedFloatingPointRange;lessThanOrEquals;(Comparable,Comparable);generated",
-        "kotlin.ranges;ClosedRange;contains;(Comparable);generated",
-        "kotlin.ranges;ClosedRange;getEndInclusive;();generated",
-        "kotlin.ranges;ClosedRange;getStart;();generated",
-        "kotlin.ranges;ClosedRange;isEmpty;();generated",
-        "kotlin.ranges;IntProgression$Companion;fromClosedRange;(int,int,int);generated",
-        "kotlin.ranges;IntProgression;equals;(Object);generated",
-        "kotlin.ranges;IntProgression;getFirst;();generated",
-        "kotlin.ranges;IntProgression;getLast;();generated",
-        "kotlin.ranges;IntProgression;getStep;();generated",
-        "kotlin.ranges;IntProgression;hashCode;();generated",
-        "kotlin.ranges;IntProgression;isEmpty;();generated",
-        "kotlin.ranges;IntProgression;toString;();generated",
-        "kotlin.ranges;IntRange;IntRange;(int,int);generated",
-        "kotlin.ranges;IntRange;contains;(int);generated",
-        "kotlin.ranges;IntRange;equals;(Object);generated",
-        "kotlin.ranges;IntRange;hashCode;();generated",
-        "kotlin.ranges;IntRange;toString;();generated",
-        "kotlin.ranges;LongProgression$Companion;fromClosedRange;(long,long,long);generated",
-        "kotlin.ranges;LongProgression;equals;(Object);generated",
-        "kotlin.ranges;LongProgression;getFirst;();generated",
-        "kotlin.ranges;LongProgression;getLast;();generated",
-        "kotlin.ranges;LongProgression;getStep;();generated",
-        "kotlin.ranges;LongProgression;hashCode;();generated",
-        "kotlin.ranges;LongProgression;isEmpty;();generated",
-        "kotlin.ranges;LongProgression;toString;();generated",
-        "kotlin.ranges;LongRange;LongRange;(long,long);generated",
-        "kotlin.ranges;LongRange;contains;(long);generated",
-        "kotlin.ranges;LongRange;equals;(Object);generated",
-        "kotlin.ranges;LongRange;hashCode;();generated",
-        "kotlin.ranges;LongRange;toString;();generated",
-        "kotlin.ranges;OpenEndRange;contains;(Comparable);generated",
-        "kotlin.ranges;OpenEndRange;getEndExclusive;();generated",
-        "kotlin.ranges;OpenEndRange;getStart;();generated",
-        "kotlin.ranges;OpenEndRange;isEmpty;();generated",
-        "kotlin.ranges;RangesKt;byteRangeContains;(ClosedRange,double);generated",
-        "kotlin.ranges;RangesKt;byteRangeContains;(ClosedRange,float);generated",
-        "kotlin.ranges;RangesKt;byteRangeContains;(ClosedRange,int);generated",
-        "kotlin.ranges;RangesKt;byteRangeContains;(ClosedRange,long);generated",
-        "kotlin.ranges;RangesKt;byteRangeContains;(ClosedRange,short);generated",
-        "kotlin.ranges;RangesKt;byteRangeContains;(OpenEndRange,int);generated",
-        "kotlin.ranges;RangesKt;byteRangeContains;(OpenEndRange,long);generated",
-        "kotlin.ranges;RangesKt;byteRangeContains;(OpenEndRange,short);generated",
-        "kotlin.ranges;RangesKt;coerceAtLeast;(byte,byte);generated",
-        "kotlin.ranges;RangesKt;coerceAtLeast;(double,double);generated",
-        "kotlin.ranges;RangesKt;coerceAtLeast;(float,float);generated",
-        "kotlin.ranges;RangesKt;coerceAtLeast;(int,int);generated",
-        "kotlin.ranges;RangesKt;coerceAtLeast;(long,long);generated",
-        "kotlin.ranges;RangesKt;coerceAtLeast;(short,short);generated",
-        "kotlin.ranges;RangesKt;coerceAtMost;(byte,byte);generated",
-        "kotlin.ranges;RangesKt;coerceAtMost;(double,double);generated",
-        "kotlin.ranges;RangesKt;coerceAtMost;(float,float);generated",
-        "kotlin.ranges;RangesKt;coerceAtMost;(int,int);generated",
-        "kotlin.ranges;RangesKt;coerceAtMost;(long,long);generated",
-        "kotlin.ranges;RangesKt;coerceAtMost;(short,short);generated",
-        "kotlin.ranges;RangesKt;coerceIn;(byte,byte,byte);generated",
-        "kotlin.ranges;RangesKt;coerceIn;(double,double,double);generated",
-        "kotlin.ranges;RangesKt;coerceIn;(float,float,float);generated",
-        "kotlin.ranges;RangesKt;coerceIn;(int,ClosedRange);generated",
-        "kotlin.ranges;RangesKt;coerceIn;(int,int,int);generated",
-        "kotlin.ranges;RangesKt;coerceIn;(long,ClosedRange);generated",
-        "kotlin.ranges;RangesKt;coerceIn;(long,long,long);generated",
-        "kotlin.ranges;RangesKt;coerceIn;(short,short,short);generated",
-        "kotlin.ranges;RangesKt;contains;(CharRange,Character);generated",
-        "kotlin.ranges;RangesKt;contains;(ClosedRange,Object);generated",
-        "kotlin.ranges;RangesKt;contains;(IntRange,Integer);generated",
-        "kotlin.ranges;RangesKt;contains;(IntRange,byte);generated",
-        "kotlin.ranges;RangesKt;contains;(IntRange,long);generated",
-        "kotlin.ranges;RangesKt;contains;(IntRange,short);generated",
-        "kotlin.ranges;RangesKt;contains;(LongRange,Long);generated",
-        "kotlin.ranges;RangesKt;contains;(LongRange,byte);generated",
-        "kotlin.ranges;RangesKt;contains;(LongRange,int);generated",
-        "kotlin.ranges;RangesKt;contains;(LongRange,short);generated",
-        "kotlin.ranges;RangesKt;contains;(OpenEndRange,Object);generated",
-        "kotlin.ranges;RangesKt;doubleRangeContains;(ClosedRange,byte);generated",
-        "kotlin.ranges;RangesKt;doubleRangeContains;(ClosedRange,float);generated",
-        "kotlin.ranges;RangesKt;doubleRangeContains;(ClosedRange,int);generated",
-        "kotlin.ranges;RangesKt;doubleRangeContains;(ClosedRange,long);generated",
-        "kotlin.ranges;RangesKt;doubleRangeContains;(ClosedRange,short);generated",
-        "kotlin.ranges;RangesKt;doubleRangeContains;(OpenEndRange,float);generated",
-        "kotlin.ranges;RangesKt;downTo;(byte,byte);generated",
-        "kotlin.ranges;RangesKt;downTo;(byte,int);generated",
-        "kotlin.ranges;RangesKt;downTo;(byte,long);generated",
-        "kotlin.ranges;RangesKt;downTo;(byte,short);generated",
-        "kotlin.ranges;RangesKt;downTo;(char,char);generated",
-        "kotlin.ranges;RangesKt;downTo;(int,byte);generated",
-        "kotlin.ranges;RangesKt;downTo;(int,int);generated",
-        "kotlin.ranges;RangesKt;downTo;(int,long);generated",
-        "kotlin.ranges;RangesKt;downTo;(int,short);generated",
-        "kotlin.ranges;RangesKt;downTo;(long,byte);generated",
-        "kotlin.ranges;RangesKt;downTo;(long,int);generated",
-        "kotlin.ranges;RangesKt;downTo;(long,long);generated",
-        "kotlin.ranges;RangesKt;downTo;(long,short);generated",
-        "kotlin.ranges;RangesKt;downTo;(short,byte);generated",
-        "kotlin.ranges;RangesKt;downTo;(short,int);generated",
-        "kotlin.ranges;RangesKt;downTo;(short,long);generated",
-        "kotlin.ranges;RangesKt;downTo;(short,short);generated",
-        "kotlin.ranges;RangesKt;first;(CharProgression);generated",
-        "kotlin.ranges;RangesKt;first;(IntProgression);generated",
-        "kotlin.ranges;RangesKt;first;(LongProgression);generated",
-        "kotlin.ranges;RangesKt;firstOrNull;(CharProgression);generated",
-        "kotlin.ranges;RangesKt;firstOrNull;(IntProgression);generated",
-        "kotlin.ranges;RangesKt;firstOrNull;(LongProgression);generated",
-        "kotlin.ranges;RangesKt;floatRangeContains;(ClosedRange,byte);generated",
-        "kotlin.ranges;RangesKt;floatRangeContains;(ClosedRange,double);generated",
-        "kotlin.ranges;RangesKt;floatRangeContains;(ClosedRange,int);generated",
-        "kotlin.ranges;RangesKt;floatRangeContains;(ClosedRange,long);generated",
-        "kotlin.ranges;RangesKt;floatRangeContains;(ClosedRange,short);generated",
-        "kotlin.ranges;RangesKt;intRangeContains;(ClosedRange,byte);generated",
-        "kotlin.ranges;RangesKt;intRangeContains;(ClosedRange,double);generated",
-        "kotlin.ranges;RangesKt;intRangeContains;(ClosedRange,float);generated",
-        "kotlin.ranges;RangesKt;intRangeContains;(ClosedRange,long);generated",
-        "kotlin.ranges;RangesKt;intRangeContains;(ClosedRange,short);generated",
-        "kotlin.ranges;RangesKt;intRangeContains;(OpenEndRange,byte);generated",
-        "kotlin.ranges;RangesKt;intRangeContains;(OpenEndRange,long);generated",
-        "kotlin.ranges;RangesKt;intRangeContains;(OpenEndRange,short);generated",
-        "kotlin.ranges;RangesKt;last;(CharProgression);generated",
-        "kotlin.ranges;RangesKt;last;(IntProgression);generated",
-        "kotlin.ranges;RangesKt;last;(LongProgression);generated",
-        "kotlin.ranges;RangesKt;lastOrNull;(CharProgression);generated",
-        "kotlin.ranges;RangesKt;lastOrNull;(IntProgression);generated",
-        "kotlin.ranges;RangesKt;lastOrNull;(LongProgression);generated",
-        "kotlin.ranges;RangesKt;longRangeContains;(ClosedRange,byte);generated",
-        "kotlin.ranges;RangesKt;longRangeContains;(ClosedRange,double);generated",
-        "kotlin.ranges;RangesKt;longRangeContains;(ClosedRange,float);generated",
-        "kotlin.ranges;RangesKt;longRangeContains;(ClosedRange,int);generated",
-        "kotlin.ranges;RangesKt;longRangeContains;(ClosedRange,short);generated",
-        "kotlin.ranges;RangesKt;longRangeContains;(OpenEndRange,byte);generated",
-        "kotlin.ranges;RangesKt;longRangeContains;(OpenEndRange,int);generated",
-        "kotlin.ranges;RangesKt;longRangeContains;(OpenEndRange,short);generated",
-        "kotlin.ranges;RangesKt;random;(CharRange);generated",
-        "kotlin.ranges;RangesKt;random;(CharRange,Random);generated",
-        "kotlin.ranges;RangesKt;random;(IntRange);generated",
-        "kotlin.ranges;RangesKt;random;(IntRange,Random);generated",
-        "kotlin.ranges;RangesKt;random;(LongRange);generated",
-        "kotlin.ranges;RangesKt;random;(LongRange,Random);generated",
-        "kotlin.ranges;RangesKt;randomOrNull;(CharRange);generated",
-        "kotlin.ranges;RangesKt;randomOrNull;(CharRange,Random);generated",
-        "kotlin.ranges;RangesKt;randomOrNull;(IntRange);generated",
-        "kotlin.ranges;RangesKt;randomOrNull;(IntRange,Random);generated",
-        "kotlin.ranges;RangesKt;randomOrNull;(LongRange);generated",
-        "kotlin.ranges;RangesKt;randomOrNull;(LongRange,Random);generated",
-        "kotlin.ranges;RangesKt;rangeTo;(double,double);generated",
-        "kotlin.ranges;RangesKt;rangeTo;(float,float);generated",
-        "kotlin.ranges;RangesKt;rangeUntil;(byte,byte);generated",
-        "kotlin.ranges;RangesKt;rangeUntil;(byte,int);generated",
-        "kotlin.ranges;RangesKt;rangeUntil;(byte,long);generated",
-        "kotlin.ranges;RangesKt;rangeUntil;(byte,short);generated",
-        "kotlin.ranges;RangesKt;rangeUntil;(char,char);generated",
-        "kotlin.ranges;RangesKt;rangeUntil;(double,double);generated",
-        "kotlin.ranges;RangesKt;rangeUntil;(float,float);generated",
-        "kotlin.ranges;RangesKt;rangeUntil;(int,byte);generated",
-        "kotlin.ranges;RangesKt;rangeUntil;(int,int);generated",
-        "kotlin.ranges;RangesKt;rangeUntil;(int,long);generated",
-        "kotlin.ranges;RangesKt;rangeUntil;(int,short);generated",
-        "kotlin.ranges;RangesKt;rangeUntil;(long,byte);generated",
-        "kotlin.ranges;RangesKt;rangeUntil;(long,int);generated",
-        "kotlin.ranges;RangesKt;rangeUntil;(long,long);generated",
-        "kotlin.ranges;RangesKt;rangeUntil;(long,short);generated",
-        "kotlin.ranges;RangesKt;rangeUntil;(short,byte);generated",
-        "kotlin.ranges;RangesKt;rangeUntil;(short,int);generated",
-        "kotlin.ranges;RangesKt;rangeUntil;(short,long);generated",
-        "kotlin.ranges;RangesKt;rangeUntil;(short,short);generated",
-        "kotlin.ranges;RangesKt;reversed;(CharProgression);generated",
-        "kotlin.ranges;RangesKt;reversed;(IntProgression);generated",
-        "kotlin.ranges;RangesKt;reversed;(LongProgression);generated",
-        "kotlin.ranges;RangesKt;shortRangeContains;(ClosedRange,byte);generated",
-        "kotlin.ranges;RangesKt;shortRangeContains;(ClosedRange,double);generated",
-        "kotlin.ranges;RangesKt;shortRangeContains;(ClosedRange,float);generated",
-        "kotlin.ranges;RangesKt;shortRangeContains;(ClosedRange,int);generated",
-        "kotlin.ranges;RangesKt;shortRangeContains;(ClosedRange,long);generated",
-        "kotlin.ranges;RangesKt;shortRangeContains;(OpenEndRange,byte);generated",
-        "kotlin.ranges;RangesKt;shortRangeContains;(OpenEndRange,int);generated",
-        "kotlin.ranges;RangesKt;shortRangeContains;(OpenEndRange,long);generated",
-        "kotlin.ranges;RangesKt;step;(CharProgression,int);generated",
-        "kotlin.ranges;RangesKt;step;(IntProgression,int);generated",
-        "kotlin.ranges;RangesKt;step;(LongProgression,long);generated",
-        "kotlin.ranges;RangesKt;until;(byte,byte);generated",
-        "kotlin.ranges;RangesKt;until;(byte,int);generated",
-        "kotlin.ranges;RangesKt;until;(byte,long);generated",
-        "kotlin.ranges;RangesKt;until;(byte,short);generated",
-        "kotlin.ranges;RangesKt;until;(char,char);generated",
-        "kotlin.ranges;RangesKt;until;(int,byte);generated",
-        "kotlin.ranges;RangesKt;until;(int,int);generated",
-        "kotlin.ranges;RangesKt;until;(int,long);generated",
-        "kotlin.ranges;RangesKt;until;(int,short);generated",
-        "kotlin.ranges;RangesKt;until;(long,byte);generated",
-        "kotlin.ranges;RangesKt;until;(long,int);generated",
-        "kotlin.ranges;RangesKt;until;(long,long);generated",
-        "kotlin.ranges;RangesKt;until;(long,short);generated",
-        "kotlin.ranges;RangesKt;until;(short,byte);generated",
-        "kotlin.ranges;RangesKt;until;(short,int);generated",
-        "kotlin.ranges;RangesKt;until;(short,long);generated",
-        "kotlin.ranges;RangesKt;until;(short,short);generated",
-        "kotlin.ranges;UIntProgression$Companion;fromClosedRange;(int,int,int);generated",
-        "kotlin.ranges;UIntProgression;equals;(Object);generated",
-        "kotlin.ranges;UIntProgression;getFirst;();generated",
-        "kotlin.ranges;UIntProgression;getLast;();generated",
-        "kotlin.ranges;UIntProgression;getStep;();generated",
-        "kotlin.ranges;UIntProgression;hashCode;();generated",
-        "kotlin.ranges;UIntProgression;isEmpty;();generated",
-        "kotlin.ranges;UIntProgression;toString;();generated",
-        "kotlin.ranges;UIntRange;UIntRange;(int,int);generated",
-        "kotlin.ranges;UIntRange;contains;(int);generated",
-        "kotlin.ranges;UIntRange;equals;(Object);generated",
-        "kotlin.ranges;UIntRange;hashCode;();generated",
-        "kotlin.ranges;UIntRange;toString;();generated",
-        "kotlin.ranges;ULongProgression$Companion;fromClosedRange;(long,long,long);generated",
-        "kotlin.ranges;ULongProgression;equals;(Object);generated",
-        "kotlin.ranges;ULongProgression;getFirst;();generated",
-        "kotlin.ranges;ULongProgression;getLast;();generated",
-        "kotlin.ranges;ULongProgression;getStep;();generated",
-        "kotlin.ranges;ULongProgression;hashCode;();generated",
-        "kotlin.ranges;ULongProgression;isEmpty;();generated",
-        "kotlin.ranges;ULongProgression;toString;();generated",
-        "kotlin.ranges;ULongRange;ULongRange;(long,long);generated",
-        "kotlin.ranges;ULongRange;contains;(long);generated",
-        "kotlin.ranges;ULongRange;equals;(Object);generated",
-        "kotlin.ranges;ULongRange;hashCode;();generated",
-        "kotlin.ranges;ULongRange;toString;();generated",
-        "kotlin.ranges;URangesKt;coerceAtLeast;(byte,byte);generated",
-        "kotlin.ranges;URangesKt;coerceAtLeast;(int,int);generated",
-        "kotlin.ranges;URangesKt;coerceAtLeast;(long,long);generated",
-        "kotlin.ranges;URangesKt;coerceAtLeast;(short,short);generated",
-        "kotlin.ranges;URangesKt;coerceAtMost;(byte,byte);generated",
-        "kotlin.ranges;URangesKt;coerceAtMost;(int,int);generated",
-        "kotlin.ranges;URangesKt;coerceAtMost;(long,long);generated",
-        "kotlin.ranges;URangesKt;coerceAtMost;(short,short);generated",
-        "kotlin.ranges;URangesKt;coerceIn;(byte,byte,byte);generated",
-        "kotlin.ranges;URangesKt;coerceIn;(int,ClosedRange);generated",
-        "kotlin.ranges;URangesKt;coerceIn;(int,int,int);generated",
-        "kotlin.ranges;URangesKt;coerceIn;(long,ClosedRange);generated",
-        "kotlin.ranges;URangesKt;coerceIn;(long,long,long);generated",
-        "kotlin.ranges;URangesKt;coerceIn;(short,short,short);generated",
-        "kotlin.ranges;URangesKt;contains;(UIntRange,UInt);generated",
-        "kotlin.ranges;URangesKt;contains;(UIntRange,byte);generated",
-        "kotlin.ranges;URangesKt;contains;(UIntRange,long);generated",
-        "kotlin.ranges;URangesKt;contains;(UIntRange,short);generated",
-        "kotlin.ranges;URangesKt;contains;(ULongRange,ULong);generated",
-        "kotlin.ranges;URangesKt;contains;(ULongRange,byte);generated",
-        "kotlin.ranges;URangesKt;contains;(ULongRange,int);generated",
-        "kotlin.ranges;URangesKt;contains;(ULongRange,short);generated",
-        "kotlin.ranges;URangesKt;downTo;(byte,byte);generated",
-        "kotlin.ranges;URangesKt;downTo;(int,int);generated",
-        "kotlin.ranges;URangesKt;downTo;(long,long);generated",
-        "kotlin.ranges;URangesKt;downTo;(short,short);generated",
-        "kotlin.ranges;URangesKt;first;(UIntProgression);generated",
-        "kotlin.ranges;URangesKt;first;(ULongProgression);generated",
-        "kotlin.ranges;URangesKt;firstOrNull;(UIntProgression);generated",
-        "kotlin.ranges;URangesKt;firstOrNull;(ULongProgression);generated",
-        "kotlin.ranges;URangesKt;last;(UIntProgression);generated",
-        "kotlin.ranges;URangesKt;last;(ULongProgression);generated",
-        "kotlin.ranges;URangesKt;lastOrNull;(UIntProgression);generated",
-        "kotlin.ranges;URangesKt;lastOrNull;(ULongProgression);generated",
-        "kotlin.ranges;URangesKt;random;(UIntRange);generated",
-        "kotlin.ranges;URangesKt;random;(UIntRange,Random);generated",
-        "kotlin.ranges;URangesKt;random;(ULongRange);generated",
-        "kotlin.ranges;URangesKt;random;(ULongRange,Random);generated",
-        "kotlin.ranges;URangesKt;randomOrNull;(UIntRange);generated",
-        "kotlin.ranges;URangesKt;randomOrNull;(UIntRange,Random);generated",
-        "kotlin.ranges;URangesKt;randomOrNull;(ULongRange);generated",
-        "kotlin.ranges;URangesKt;randomOrNull;(ULongRange,Random);generated",
-        "kotlin.ranges;URangesKt;rangeUntil;(byte,byte);generated",
-        "kotlin.ranges;URangesKt;rangeUntil;(int,int);generated",
-        "kotlin.ranges;URangesKt;rangeUntil;(long,long);generated",
-        "kotlin.ranges;URangesKt;rangeUntil;(short,short);generated",
-        "kotlin.ranges;URangesKt;reversed;(UIntProgression);generated",
-        "kotlin.ranges;URangesKt;reversed;(ULongProgression);generated",
-        "kotlin.ranges;URangesKt;step;(UIntProgression,int);generated",
-        "kotlin.ranges;URangesKt;step;(ULongProgression,long);generated",
-        "kotlin.ranges;URangesKt;until;(byte,byte);generated",
-        "kotlin.ranges;URangesKt;until;(int,int);generated",
-        "kotlin.ranges;URangesKt;until;(long,long);generated",
-        "kotlin.ranges;URangesKt;until;(short,short);generated",
-        "kotlin.reflect;KAnnotatedElement;getAnnotations;();generated",
-        "kotlin.reflect;KCallable;call;(Object[]);generated",
-        "kotlin.reflect;KCallable;callBy;(Map);generated",
-        "kotlin.reflect;KCallable;getName;();generated",
-        "kotlin.reflect;KCallable;getParameters;();generated",
-        "kotlin.reflect;KCallable;getReturnType;();generated",
-        "kotlin.reflect;KCallable;getTypeParameters;();generated",
-        "kotlin.reflect;KCallable;getVisibility;();generated",
-        "kotlin.reflect;KCallable;isAbstract;();generated",
-        "kotlin.reflect;KCallable;isFinal;();generated",
-        "kotlin.reflect;KCallable;isOpen;();generated",
-        "kotlin.reflect;KCallable;isSuspend;();generated",
-        "kotlin.reflect;KClass;equals;(Object);generated",
-        "kotlin.reflect;KClass;getConstructors;();generated",
-        "kotlin.reflect;KClass;getNestedClasses;();generated",
-        "kotlin.reflect;KClass;getObjectInstance;();generated",
-        "kotlin.reflect;KClass;getQualifiedName;();generated",
-        "kotlin.reflect;KClass;getSealedSubclasses;();generated",
-        "kotlin.reflect;KClass;getSimpleName;();generated",
-        "kotlin.reflect;KClass;getSupertypes;();generated",
-        "kotlin.reflect;KClass;getTypeParameters;();generated",
-        "kotlin.reflect;KClass;getVisibility;();generated",
-        "kotlin.reflect;KClass;hashCode;();generated",
-        "kotlin.reflect;KClass;isAbstract;();generated",
-        "kotlin.reflect;KClass;isCompanion;();generated",
-        "kotlin.reflect;KClass;isData;();generated", "kotlin.reflect;KClass;isFinal;();generated",
-        "kotlin.reflect;KClass;isFun;();generated", "kotlin.reflect;KClass;isInner;();generated",
-        "kotlin.reflect;KClass;isInstance;(Object);generated",
-        "kotlin.reflect;KClass;isOpen;();generated", "kotlin.reflect;KClass;isSealed;();generated",
-        "kotlin.reflect;KClass;isValue;();generated",
-        "kotlin.reflect;KDeclarationContainer;getMembers;();generated",
-        "kotlin.reflect;KFunction;isExternal;();generated",
-        "kotlin.reflect;KFunction;isInfix;();generated",
-        "kotlin.reflect;KFunction;isInline;();generated",
-        "kotlin.reflect;KFunction;isOperator;();generated",
-        "kotlin.reflect;KMutableProperty0;set;(Object);generated",
-        "kotlin.reflect;KMutableProperty1;set;(Object,Object);generated",
-        "kotlin.reflect;KMutableProperty2;set;(Object,Object,Object);generated",
-        "kotlin.reflect;KMutableProperty;getSetter;();generated",
-        "kotlin.reflect;KParameter$Kind;valueOf;(String);generated",
-        "kotlin.reflect;KParameter$Kind;values;();generated",
-        "kotlin.reflect;KParameter;getIndex;();generated",
-        "kotlin.reflect;KParameter;getKind;();generated",
-        "kotlin.reflect;KParameter;getName;();generated",
-        "kotlin.reflect;KParameter;getType;();generated",
-        "kotlin.reflect;KParameter;isOptional;();generated",
-        "kotlin.reflect;KParameter;isVararg;();generated",
-        "kotlin.reflect;KProperty$Accessor;getProperty;();generated",
-        "kotlin.reflect;KProperty0;get;();generated",
-        "kotlin.reflect;KProperty0;getDelegate;();generated",
-        "kotlin.reflect;KProperty1;get;(Object);generated",
-        "kotlin.reflect;KProperty1;getDelegate;(Object);generated",
-        "kotlin.reflect;KProperty2;get;(Object,Object);generated",
-        "kotlin.reflect;KProperty2;getDelegate;(Object,Object);generated",
-        "kotlin.reflect;KProperty;getGetter;();generated",
-        "kotlin.reflect;KProperty;isConst;();generated",
-        "kotlin.reflect;KProperty;isLateinit;();generated",
-        "kotlin.reflect;KType;getArguments;();generated",
-        "kotlin.reflect;KType;getClassifier;();generated",
-        "kotlin.reflect;KType;isMarkedNullable;();generated",
-        "kotlin.reflect;KTypeParameter;getName;();generated",
-        "kotlin.reflect;KTypeParameter;getUpperBounds;();generated",
-        "kotlin.reflect;KTypeParameter;getVariance;();generated",
-        "kotlin.reflect;KTypeParameter;isReified;();generated",
-        "kotlin.reflect;KTypeProjection$Companion;getSTAR;();generated",
-        "kotlin.reflect;KTypeProjection;component1;();generated",
-        "kotlin.reflect;KTypeProjection;equals;(Object);generated",
-        "kotlin.reflect;KTypeProjection;getVariance;();generated",
-        "kotlin.reflect;KTypeProjection;hashCode;();generated",
-        "kotlin.reflect;KVariance;valueOf;(String);generated",
-        "kotlin.reflect;KVariance;values;();generated",
-        "kotlin.reflect;KVisibility;valueOf;(String);generated",
-        "kotlin.reflect;KVisibility;values;();generated",
-        "kotlin.reflect;TypeOfKt;typeOf;();generated",
-        "kotlin.sequences;Sequence;iterator;();generated",
-        "kotlin.sequences;SequenceScope;yield;(Object);generated",
-        "kotlin.sequences;SequenceScope;yieldAll;(Iterable);generated",
-        "kotlin.sequences;SequenceScope;yieldAll;(Iterator);generated",
-        "kotlin.sequences;SequencesKt;Sequence;(Function0);generated",
-        "kotlin.sequences;SequencesKt;all;(Sequence,Function1);generated",
-        "kotlin.sequences;SequencesKt;any;(Sequence);generated",
-        "kotlin.sequences;SequencesKt;any;(Sequence,Function1);generated",
-        "kotlin.sequences;SequencesKt;asIterable;(Sequence);generated",
-        "kotlin.sequences;SequencesKt;asSequence;(Enumeration);generated",
-        "kotlin.sequences;SequencesKt;asSequence;(Iterator);generated",
-        "kotlin.sequences;SequencesKt;associate;(Sequence,Function1);generated",
-        "kotlin.sequences;SequencesKt;associateBy;(Sequence,Function1,Function1);generated",
-        "kotlin.sequences;SequencesKt;averageOfByte;(Sequence);generated",
-        "kotlin.sequences;SequencesKt;averageOfDouble;(Sequence);generated",
-        "kotlin.sequences;SequencesKt;averageOfFloat;(Sequence);generated",
-        "kotlin.sequences;SequencesKt;averageOfInt;(Sequence);generated",
-        "kotlin.sequences;SequencesKt;averageOfLong;(Sequence);generated",
-        "kotlin.sequences;SequencesKt;averageOfShort;(Sequence);generated",
-        "kotlin.sequences;SequencesKt;chunked;(Sequence,int);generated",
-        "kotlin.sequences;SequencesKt;contains;(Sequence,Object);generated",
-        "kotlin.sequences;SequencesKt;count;(Sequence);generated",
-        "kotlin.sequences;SequencesKt;count;(Sequence,Function1);generated",
-        "kotlin.sequences;SequencesKt;emptySequence;();generated",
-        "kotlin.sequences;SequencesKt;filterIndexed;(Sequence,Function2);generated",
-        "kotlin.sequences;SequencesKt;flatMapIndexedIterable;(Sequence,Function2);generated",
-        "kotlin.sequences;SequencesKt;flatMapIndexedSequence;(Sequence,Function2);generated",
-        "kotlin.sequences;SequencesKt;forEach;(Sequence,Function1);generated",
-        "kotlin.sequences;SequencesKt;forEachIndexed;(Sequence,Function2);generated",
-        "kotlin.sequences;SequencesKt;groupBy;(Sequence,Function1);generated",
-        "kotlin.sequences;SequencesKt;groupBy;(Sequence,Function1,Function1);generated",
-        "kotlin.sequences;SequencesKt;groupingBy;(Sequence,Function1);generated",
-        "kotlin.sequences;SequencesKt;ifEmpty;(Sequence,Function0);generated",
-        "kotlin.sequences;SequencesKt;indexOf;(Sequence,Object);generated",
-        "kotlin.sequences;SequencesKt;indexOfFirst;(Sequence,Function1);generated",
-        "kotlin.sequences;SequencesKt;indexOfLast;(Sequence,Function1);generated",
-        "kotlin.sequences;SequencesKt;iterator;(SuspendFunction1);generated",
-        "kotlin.sequences;SequencesKt;lastIndexOf;(Sequence,Object);generated",
-        "kotlin.sequences;SequencesKt;max;(Sequence);generated",
-        "kotlin.sequences;SequencesKt;maxOf;(Sequence,Function1);generated",
-        "kotlin.sequences;SequencesKt;maxOfOrNull;(Sequence,Function1);generated",
-        "kotlin.sequences;SequencesKt;maxOrNull;(Sequence);generated",
-        "kotlin.sequences;SequencesKt;maxOrThrow;(Sequence);generated",
-        "kotlin.sequences;SequencesKt;min;(Sequence);generated",
-        "kotlin.sequences;SequencesKt;minOf;(Sequence,Function1);generated",
-        "kotlin.sequences;SequencesKt;minOfOrNull;(Sequence,Function1);generated",
-        "kotlin.sequences;SequencesKt;minOrNull;(Sequence);generated",
-        "kotlin.sequences;SequencesKt;minOrThrow;(Sequence);generated",
-        "kotlin.sequences;SequencesKt;minus;(Sequence,Iterable);generated",
-        "kotlin.sequences;SequencesKt;minus;(Sequence,Object);generated",
-        "kotlin.sequences;SequencesKt;minus;(Sequence,Sequence);generated",
-        "kotlin.sequences;SequencesKt;minusElement;(Sequence,Object);generated",
-        "kotlin.sequences;SequencesKt;none;(Sequence);generated",
-        "kotlin.sequences;SequencesKt;none;(Sequence,Function1);generated",
-        "kotlin.sequences;SequencesKt;plus;(Sequence,Iterable);generated",
-        "kotlin.sequences;SequencesKt;plus;(Sequence,Object);generated",
-        "kotlin.sequences;SequencesKt;plus;(Sequence,Object[]);generated",
-        "kotlin.sequences;SequencesKt;plus;(Sequence,Sequence);generated",
-        "kotlin.sequences;SequencesKt;plusElement;(Sequence,Object);generated",
-        "kotlin.sequences;SequencesKt;runningFold;(Sequence,Object,Function2);generated",
-        "kotlin.sequences;SequencesKt;runningFoldIndexed;(Sequence,Object,Function3);generated",
-        "kotlin.sequences;SequencesKt;runningReduce;(Sequence,Function2);generated",
-        "kotlin.sequences;SequencesKt;runningReduceIndexed;(Sequence,Function3);generated",
-        "kotlin.sequences;SequencesKt;scan;(Sequence,Object,Function2);generated",
-        "kotlin.sequences;SequencesKt;scanIndexed;(Sequence,Object,Function3);generated",
-        "kotlin.sequences;SequencesKt;sequence;(SuspendFunction1);generated",
-        "kotlin.sequences;SequencesKt;sequenceOf;(Object[]);generated",
-        "kotlin.sequences;SequencesKt;shuffled;(Sequence);generated",
-        "kotlin.sequences;SequencesKt;shuffled;(Sequence,Random);generated",
-        "kotlin.sequences;SequencesKt;sorted;(Sequence);generated",
-        "kotlin.sequences;SequencesKt;sortedBy;(Sequence,Function1);generated",
-        "kotlin.sequences;SequencesKt;sortedByDescending;(Sequence,Function1);generated",
-        "kotlin.sequences;SequencesKt;sortedDescending;(Sequence);generated",
-        "kotlin.sequences;SequencesKt;sortedWith;(Sequence,Comparator);generated",
-        "kotlin.sequences;SequencesKt;sumBy;(Sequence,Function1);generated",
-        "kotlin.sequences;SequencesKt;sumByDouble;(Sequence,Function1);generated",
-        "kotlin.sequences;SequencesKt;sumOfBigDecimal;(Sequence,Function1);generated",
-        "kotlin.sequences;SequencesKt;sumOfBigInteger;(Sequence,Function1);generated",
-        "kotlin.sequences;SequencesKt;sumOfByte;(Sequence);generated",
-        "kotlin.sequences;SequencesKt;sumOfDouble;(Sequence);generated",
-        "kotlin.sequences;SequencesKt;sumOfDouble;(Sequence,Function1);generated",
-        "kotlin.sequences;SequencesKt;sumOfFloat;(Sequence);generated",
-        "kotlin.sequences;SequencesKt;sumOfInt;(Sequence);generated",
-        "kotlin.sequences;SequencesKt;sumOfInt;(Sequence,Function1);generated",
-        "kotlin.sequences;SequencesKt;sumOfLong;(Sequence);generated",
-        "kotlin.sequences;SequencesKt;sumOfLong;(Sequence,Function1);generated",
-        "kotlin.sequences;SequencesKt;sumOfShort;(Sequence);generated",
-        "kotlin.sequences;SequencesKt;sumOfUInt;(Sequence,Function1);generated",
-        "kotlin.sequences;SequencesKt;sumOfULong;(Sequence,Function1);generated",
-        "kotlin.sequences;SequencesKt;windowed;(Sequence,int,int,boolean);generated",
-        "kotlin.sequences;SequencesKt;zipWithNext;(Sequence);generated",
-        "kotlin.sequences;SequencesKt;zipWithNext;(Sequence,Function2);generated",
-        "kotlin.sequences;USequencesKt;sumOfUByte;(Sequence);generated",
-        "kotlin.sequences;USequencesKt;sumOfUInt;(Sequence);generated",
-        "kotlin.sequences;USequencesKt;sumOfULong;(Sequence);generated",
-        "kotlin.sequences;USequencesKt;sumOfUShort;(Sequence);generated",
-        "kotlin.system;ProcessKt;exitProcess;(int);generated",
-        "kotlin.system;TimingKt;measureNanoTime;(Function0);generated",
-        "kotlin.system;TimingKt;measureTimeMillis;(Function0);generated",
-        "kotlin.text;Appendable;append;(CharSequence);generated",
-        "kotlin.text;Appendable;append;(CharSequence,int,int);generated",
-        "kotlin.text;Appendable;append;(char);generated",
-        "kotlin.text;CharCategory$Companion;valueOf;(int);generated",
-        "kotlin.text;CharCategory;contains;(char);generated",
-        "kotlin.text;CharCategory;getCode;();generated",
-        "kotlin.text;CharCategory;getValue;();generated",
-        "kotlin.text;CharCategory;valueOf;(String);generated",
-        "kotlin.text;CharCategory;values;();generated",
-        "kotlin.text;CharDirectionality$Companion;valueOf;(int);generated",
-        "kotlin.text;CharDirectionality;getValue;();generated",
-        "kotlin.text;CharDirectionality;valueOf;(String);generated",
-        "kotlin.text;CharDirectionality;values;();generated",
-        "kotlin.text;CharacterCodingException;CharacterCodingException;();generated",
-        "kotlin.text;CharsKt;digitToChar;(int);generated",
-        "kotlin.text;CharsKt;digitToChar;(int,int);generated",
-        "kotlin.text;CharsKt;digitToInt;(char);generated",
-        "kotlin.text;CharsKt;digitToInt;(char,int);generated",
-        "kotlin.text;CharsKt;digitToIntOrNull;(char);generated",
-        "kotlin.text;CharsKt;digitToIntOrNull;(char,int);generated",
-        "kotlin.text;CharsKt;equals;(char,char,boolean);generated",
-        "kotlin.text;CharsKt;getCategory;(char);generated",
-        "kotlin.text;CharsKt;getDirectionality;(char);generated",
-        "kotlin.text;CharsKt;isDefined;(char);generated",
-        "kotlin.text;CharsKt;isDigit;(char);generated",
-        "kotlin.text;CharsKt;isHighSurrogate;(char);generated",
-        "kotlin.text;CharsKt;isISOControl;(char);generated",
-        "kotlin.text;CharsKt;isIdentifierIgnorable;(char);generated",
-        "kotlin.text;CharsKt;isJavaIdentifierPart;(char);generated",
-        "kotlin.text;CharsKt;isJavaIdentifierStart;(char);generated",
-        "kotlin.text;CharsKt;isLetter;(char);generated",
-        "kotlin.text;CharsKt;isLetterOrDigit;(char);generated",
-        "kotlin.text;CharsKt;isLowSurrogate;(char);generated",
-        "kotlin.text;CharsKt;isLowerCase;(char);generated",
-        "kotlin.text;CharsKt;isSurrogate;(char);generated",
-        "kotlin.text;CharsKt;isTitleCase;(char);generated",
-        "kotlin.text;CharsKt;isUpperCase;(char);generated",
-        "kotlin.text;CharsKt;isWhitespace;(char);generated",
-        "kotlin.text;CharsKt;lowercase;(char);generated",
-        "kotlin.text;CharsKt;lowercase;(char,Locale);generated",
-        "kotlin.text;CharsKt;lowercaseChar;(char);generated",
-        "kotlin.text;CharsKt;titlecase;(char);generated",
-        "kotlin.text;CharsKt;titlecase;(char,Locale);generated",
-        "kotlin.text;CharsKt;titlecaseChar;(char);generated",
-        "kotlin.text;CharsKt;toLowerCase;(char);generated",
-        "kotlin.text;CharsKt;toTitleCase;(char);generated",
-        "kotlin.text;CharsKt;toUpperCase;(char);generated",
-        "kotlin.text;CharsKt;uppercase;(char);generated",
-        "kotlin.text;CharsKt;uppercase;(char,Locale);generated",
-        "kotlin.text;CharsKt;uppercaseChar;(char);generated",
-        "kotlin.text;Charsets;UTF32;();generated", "kotlin.text;Charsets;UTF32_BE;();generated",
-        "kotlin.text;Charsets;UTF32_LE;();generated",
-        "kotlin.text;Charsets;getISO_8859_1;();generated",
-        "kotlin.text;Charsets;getUS_ASCII;();generated",
-        "kotlin.text;Charsets;getUTF_16;();generated",
-        "kotlin.text;Charsets;getUTF_16BE;();generated",
-        "kotlin.text;Charsets;getUTF_16LE;();generated",
-        "kotlin.text;Charsets;getUTF_8;();generated",
-        "kotlin.text;CharsetsKt;charset;(String);generated",
-        "kotlin.text;FlagEnum;getMask;();generated", "kotlin.text;FlagEnum;getValue;();generated",
-        "kotlin.text;MatchGroup;equals;(Object);generated",
-        "kotlin.text;MatchGroup;hashCode;();generated",
-        "kotlin.text;MatchGroupCollection;get;(int);generated",
-        "kotlin.text;MatchNamedGroupCollection;get;(String);generated",
-        "kotlin.text;MatchResult;getGroupValues;();generated",
-        "kotlin.text;MatchResult;getGroups;();generated",
-        "kotlin.text;MatchResult;getRange;();generated",
-        "kotlin.text;MatchResult;getValue;();generated",
-        "kotlin.text;MatchResult;next;();generated",
-        "kotlin.text;Regex$Companion;escapeReplacement;(String);generated",
-        "kotlin.text;Regex$Companion;fromLiteral;(String);generated",
-        "kotlin.text;Regex;Regex;(String);generated",
-        "kotlin.text;Regex;Regex;(String,RegexOption);generated",
-        "kotlin.text;Regex;Regex;(String,Set);generated",
-        "kotlin.text;Regex;containsMatchIn;(CharSequence);generated",
-        "kotlin.text;Regex;findAll;(CharSequence,int);generated",
-        "kotlin.text;Regex;getPattern;();generated",
-        "kotlin.text;Regex;matchAt;(CharSequence,int);generated",
-        "kotlin.text;Regex;matches;(CharSequence);generated",
-        "kotlin.text;Regex;matchesAt;(CharSequence,int);generated",
-        "kotlin.text;Regex;split;(CharSequence,int);generated",
-        "kotlin.text;Regex;splitToSequence;(CharSequence,int);generated",
-        "kotlin.text;Regex;toString;();generated",
-        "kotlin.text;RegexOption;valueOf;(String);generated",
-        "kotlin.text;RegexOption;values;();generated",
-        "kotlin.text;StringBuilder;StringBuilder;();generated",
-        "kotlin.text;StringBuilder;StringBuilder;(CharSequence);generated",
-        "kotlin.text;StringBuilder;StringBuilder;(String);generated",
-        "kotlin.text;StringBuilder;StringBuilder;(int);generated",
-        "kotlin.text;StringBuilder;append;(Object);generated",
-        "kotlin.text;StringBuilder;append;(String);generated",
-        "kotlin.text;StringBuilder;append;(boolean);generated",
-        "kotlin.text;StringBuilder;append;(char[]);generated",
-        "kotlin.text;StringBuilder;capacity;();generated",
-        "kotlin.text;StringBuilder;ensureCapacity;(int);generated",
-        "kotlin.text;StringBuilder;get;(int);generated",
-        "kotlin.text;StringBuilder;indexOf;(String);generated",
-        "kotlin.text;StringBuilder;indexOf;(String,int);generated",
-        "kotlin.text;StringBuilder;insert;(int,CharSequence);generated",
-        "kotlin.text;StringBuilder;insert;(int,Object);generated",
-        "kotlin.text;StringBuilder;insert;(int,String);generated",
-        "kotlin.text;StringBuilder;insert;(int,boolean);generated",
-        "kotlin.text;StringBuilder;insert;(int,char);generated",
-        "kotlin.text;StringBuilder;insert;(int,char[]);generated",
-        "kotlin.text;StringBuilder;lastIndexOf;(String);generated",
-        "kotlin.text;StringBuilder;lastIndexOf;(String,int);generated",
-        "kotlin.text;StringBuilder;reverse;();generated",
-        "kotlin.text;StringBuilder;setLength;(int);generated",
-        "kotlin.text;StringBuilder;substring;(int);generated",
-        "kotlin.text;StringBuilder;substring;(int,int);generated",
-        "kotlin.text;StringBuilder;trimToSize;();generated",
-        "kotlin.text;StringsKt;String;(int[],int,int);generated",
-        "kotlin.text;StringsKt;all;(CharSequence,Function1);generated",
-        "kotlin.text;StringsKt;any;(CharSequence);generated",
-        "kotlin.text;StringsKt;any;(CharSequence,Function1);generated",
-        "kotlin.text;StringsKt;asIterable;(CharSequence);generated",
-        "kotlin.text;StringsKt;asSequence;(CharSequence);generated",
-        "kotlin.text;StringsKt;associate;(CharSequence,Function1);generated",
-        "kotlin.text;StringsKt;associateBy;(CharSequence,Function1);generated",
-        "kotlin.text;StringsKt;associateBy;(CharSequence,Function1,Function1);generated",
-        "kotlin.text;StringsKt;associateWith;(CharSequence,Function1);generated",
-        "kotlin.text;StringsKt;buildString;(Function1);generated",
-        "kotlin.text;StringsKt;buildString;(int,Function1);generated",
-        "kotlin.text;StringsKt;chunked;(CharSequence,int);generated",
-        "kotlin.text;StringsKt;chunked;(CharSequence,int,Function1);generated",
-        "kotlin.text;StringsKt;chunkedSequence;(CharSequence,int);generated",
-        "kotlin.text;StringsKt;chunkedSequence;(CharSequence,int,Function1);generated",
-        "kotlin.text;StringsKt;codePointAt;(String,int);generated",
-        "kotlin.text;StringsKt;codePointBefore;(String,int);generated",
-        "kotlin.text;StringsKt;codePointCount;(String,int,int);generated",
-        "kotlin.text;StringsKt;commonPrefixWith;(CharSequence,CharSequence,boolean);generated",
-        "kotlin.text;StringsKt;commonSuffixWith;(CharSequence,CharSequence,boolean);generated",
-        "kotlin.text;StringsKt;compareTo;(String,String,boolean);generated",
-        "kotlin.text;StringsKt;contains;(CharSequence,CharSequence,boolean);generated",
-        "kotlin.text;StringsKt;contains;(CharSequence,Regex);generated",
-        "kotlin.text;StringsKt;contains;(CharSequence,char,boolean);generated",
-        "kotlin.text;StringsKt;contentEquals;(CharSequence,CharSequence);generated",
-        "kotlin.text;StringsKt;contentEquals;(CharSequence,CharSequence,boolean);generated",
-        "kotlin.text;StringsKt;contentEquals;(String,CharSequence);generated",
-        "kotlin.text;StringsKt;contentEquals;(String,StringBuffer);generated",
-        "kotlin.text;StringsKt;count;(CharSequence);generated",
-        "kotlin.text;StringsKt;count;(CharSequence,Function1);generated",
-        "kotlin.text;StringsKt;deleteAt;(StringBuilder,int);generated",
-        "kotlin.text;StringsKt;deleteRange;(StringBuilder,int,int);generated",
-        "kotlin.text;StringsKt;elementAt;(CharSequence,int);generated",
-        "kotlin.text;StringsKt;elementAtOrElse;(CharSequence,int,Function1);generated",
-        "kotlin.text;StringsKt;elementAtOrNull;(CharSequence,int);generated",
-        "kotlin.text;StringsKt;endsWith;(CharSequence,CharSequence,boolean);generated",
-        "kotlin.text;StringsKt;endsWith;(CharSequence,char,boolean);generated",
-        "kotlin.text;StringsKt;endsWith;(String,String,boolean);generated",
-        "kotlin.text;StringsKt;equals;(String,String,boolean);generated",
-        "kotlin.text;StringsKt;filter;(CharSequence,Function1);generated",
-        "kotlin.text;StringsKt;filter;(String,Function1);generated",
-        "kotlin.text;StringsKt;filterIndexed;(CharSequence,Function2);generated",
-        "kotlin.text;StringsKt;filterIndexed;(String,Function2);generated",
-        "kotlin.text;StringsKt;filterNot;(CharSequence,Function1);generated",
-        "kotlin.text;StringsKt;filterNot;(String,Function1);generated",
-        "kotlin.text;StringsKt;find;(CharSequence,Function1);generated",
-        "kotlin.text;StringsKt;findLast;(CharSequence,Function1);generated",
-        "kotlin.text;StringsKt;first;(CharSequence);generated",
-        "kotlin.text;StringsKt;first;(CharSequence,Function1);generated",
-        "kotlin.text;StringsKt;firstNotNullOf;(CharSequence,Function1);generated",
-        "kotlin.text;StringsKt;firstNotNullOfOrNull;(CharSequence,Function1);generated",
-        "kotlin.text;StringsKt;firstOrNull;(CharSequence);generated",
-        "kotlin.text;StringsKt;firstOrNull;(CharSequence,Function1);generated",
-        "kotlin.text;StringsKt;flatMap;(CharSequence,Function1);generated",
-        "kotlin.text;StringsKt;flatMapIndexedIterable;(CharSequence,Function2);generated",
-        "kotlin.text;StringsKt;forEach;(CharSequence,Function1);generated",
-        "kotlin.text;StringsKt;forEachIndexed;(CharSequence,Function2);generated",
-        "kotlin.text;StringsKt;getCASE_INSENSITIVE_ORDER;(StringCompanionObject);generated",
-        "kotlin.text;StringsKt;getIndices;(CharSequence);generated",
-        "kotlin.text;StringsKt;getLastIndex;(CharSequence);generated",
-        "kotlin.text;StringsKt;getOrElse;(CharSequence,int,Function1);generated",
-        "kotlin.text;StringsKt;getOrNull;(CharSequence,int);generated",
-        "kotlin.text;StringsKt;groupBy;(CharSequence,Function1);generated",
-        "kotlin.text;StringsKt;groupBy;(CharSequence,Function1,Function1);generated",
-        "kotlin.text;StringsKt;groupingBy;(CharSequence,Function1);generated",
-        "kotlin.text;StringsKt;hasSurrogatePairAt;(CharSequence,int);generated",
-        "kotlin.text;StringsKt;indexOf;(CharSequence,String,int,boolean);generated",
-        "kotlin.text;StringsKt;indexOf;(CharSequence,char,int,boolean);generated",
-        "kotlin.text;StringsKt;indexOfAny;(CharSequence,Collection,int,boolean);generated",
-        "kotlin.text;StringsKt;indexOfAny;(CharSequence,char[],int,boolean);generated",
-        "kotlin.text;StringsKt;indexOfFirst;(CharSequence,Function1);generated",
-        "kotlin.text;StringsKt;indexOfLast;(CharSequence,Function1);generated",
-        "kotlin.text;StringsKt;isBlank;(CharSequence);generated",
-        "kotlin.text;StringsKt;isEmpty;(CharSequence);generated",
-        "kotlin.text;StringsKt;isNotBlank;(CharSequence);generated",
-        "kotlin.text;StringsKt;isNotEmpty;(CharSequence);generated",
-        "kotlin.text;StringsKt;isNullOrBlank;(CharSequence);generated",
-        "kotlin.text;StringsKt;isNullOrEmpty;(CharSequence);generated",
-        "kotlin.text;StringsKt;iterator;(CharSequence);generated",
-        "kotlin.text;StringsKt;last;(CharSequence);generated",
-        "kotlin.text;StringsKt;last;(CharSequence,Function1);generated",
-        "kotlin.text;StringsKt;lastIndexOf;(CharSequence,String,int,boolean);generated",
-        "kotlin.text;StringsKt;lastIndexOf;(CharSequence,char,int,boolean);generated",
-        "kotlin.text;StringsKt;lastIndexOfAny;(CharSequence,Collection,int,boolean);generated",
-        "kotlin.text;StringsKt;lastIndexOfAny;(CharSequence,char[],int,boolean);generated",
-        "kotlin.text;StringsKt;lastOrNull;(CharSequence);generated",
-        "kotlin.text;StringsKt;lastOrNull;(CharSequence,Function1);generated",
-        "kotlin.text;StringsKt;map;(CharSequence,Function1);generated",
-        "kotlin.text;StringsKt;mapIndexed;(CharSequence,Function2);generated",
-        "kotlin.text;StringsKt;mapIndexedNotNull;(CharSequence,Function2);generated",
-        "kotlin.text;StringsKt;mapNotNull;(CharSequence,Function1);generated",
-        "kotlin.text;StringsKt;matches;(CharSequence,Regex);generated",
-        "kotlin.text;StringsKt;max;(CharSequence);generated",
-        "kotlin.text;StringsKt;maxBy;(CharSequence,Function1);generated",
-        "kotlin.text;StringsKt;maxByOrNull;(CharSequence,Function1);generated",
-        "kotlin.text;StringsKt;maxByOrThrow;(CharSequence,Function1);generated",
-        "kotlin.text;StringsKt;maxOf;(CharSequence,Function1);generated",
-        "kotlin.text;StringsKt;maxOfOrNull;(CharSequence,Function1);generated",
-        "kotlin.text;StringsKt;maxOfWith;(CharSequence,Comparator,Function1);generated",
-        "kotlin.text;StringsKt;maxOfWithOrNull;(CharSequence,Comparator,Function1);generated",
-        "kotlin.text;StringsKt;maxOrNull;(CharSequence);generated",
-        "kotlin.text;StringsKt;maxOrThrow;(CharSequence);generated",
-        "kotlin.text;StringsKt;maxWith;(CharSequence,Comparator);generated",
-        "kotlin.text;StringsKt;maxWithOrNull;(CharSequence,Comparator);generated",
-        "kotlin.text;StringsKt;maxWithOrThrow;(CharSequence,Comparator);generated",
-        "kotlin.text;StringsKt;min;(CharSequence);generated",
-        "kotlin.text;StringsKt;minBy;(CharSequence,Function1);generated",
-        "kotlin.text;StringsKt;minByOrNull;(CharSequence,Function1);generated",
-        "kotlin.text;StringsKt;minByOrThrow;(CharSequence,Function1);generated",
-        "kotlin.text;StringsKt;minOf;(CharSequence,Function1);generated",
-        "kotlin.text;StringsKt;minOfOrNull;(CharSequence,Function1);generated",
-        "kotlin.text;StringsKt;minOfWith;(CharSequence,Comparator,Function1);generated",
-        "kotlin.text;StringsKt;minOfWithOrNull;(CharSequence,Comparator,Function1);generated",
-        "kotlin.text;StringsKt;minOrNull;(CharSequence);generated",
-        "kotlin.text;StringsKt;minOrThrow;(CharSequence);generated",
-        "kotlin.text;StringsKt;minWith;(CharSequence,Comparator);generated",
-        "kotlin.text;StringsKt;minWithOrNull;(CharSequence,Comparator);generated",
-        "kotlin.text;StringsKt;minWithOrThrow;(CharSequence,Comparator);generated",
-        "kotlin.text;StringsKt;none;(CharSequence);generated",
-        "kotlin.text;StringsKt;none;(CharSequence,Function1);generated",
-        "kotlin.text;StringsKt;offsetByCodePoints;(String,int,int);generated",
-        "kotlin.text;StringsKt;padEnd;(String,int,char);generated",
-        "kotlin.text;StringsKt;padStart;(String,int,char);generated",
-        "kotlin.text;StringsKt;partition;(CharSequence,Function1);generated",
-        "kotlin.text;StringsKt;partition;(String,Function1);generated",
-        "kotlin.text;StringsKt;random;(CharSequence);generated",
-        "kotlin.text;StringsKt;random;(CharSequence,Random);generated",
-        "kotlin.text;StringsKt;randomOrNull;(CharSequence);generated",
-        "kotlin.text;StringsKt;randomOrNull;(CharSequence,Random);generated",
-        "kotlin.text;StringsKt;reduce;(CharSequence,Function2);generated",
-        "kotlin.text;StringsKt;reduceIndexed;(CharSequence,Function3);generated",
-        "kotlin.text;StringsKt;reduceIndexedOrNull;(CharSequence,Function3);generated",
-        "kotlin.text;StringsKt;reduceOrNull;(CharSequence,Function2);generated",
-        "kotlin.text;StringsKt;reduceRight;(CharSequence,Function2);generated",
-        "kotlin.text;StringsKt;reduceRightIndexed;(CharSequence,Function3);generated",
-        "kotlin.text;StringsKt;reduceRightIndexedOrNull;(CharSequence,Function3);generated",
-        "kotlin.text;StringsKt;reduceRightOrNull;(CharSequence,Function2);generated",
-        "kotlin.text;StringsKt;regionMatches;(CharSequence,int,CharSequence,int,int,boolean);generated",
-        "kotlin.text;StringsKt;regionMatches;(String,int,String,int,int,boolean);generated",
-        "kotlin.text;StringsKt;removeRange;(String,IntRange);generated",
-        "kotlin.text;StringsKt;removeRange;(String,int,int);generated",
-        "kotlin.text;StringsKt;replace;(String,String,String,boolean);generated",
-        "kotlin.text;StringsKt;replaceIndent;(String,String);generated",
-        "kotlin.text;StringsKt;replaceIndentByMargin;(String,String,String);generated",
-        "kotlin.text;StringsKt;replaceRange;(String,IntRange,CharSequence);generated",
-        "kotlin.text;StringsKt;replaceRange;(String,int,int,CharSequence);generated",
-        "kotlin.text;StringsKt;reversed;(String);generated",
-        "kotlin.text;StringsKt;runningReduce;(CharSequence,Function2);generated",
-        "kotlin.text;StringsKt;runningReduceIndexed;(CharSequence,Function3);generated",
-        "kotlin.text;StringsKt;set;(StringBuilder,int,char);generated",
-        "kotlin.text;StringsKt;single;(CharSequence);generated",
-        "kotlin.text;StringsKt;single;(CharSequence,Function1);generated",
-        "kotlin.text;StringsKt;singleOrNull;(CharSequence);generated",
-        "kotlin.text;StringsKt;singleOrNull;(CharSequence,Function1);generated",
-        "kotlin.text;StringsKt;slice;(CharSequence,Iterable);generated",
-        "kotlin.text;StringsKt;slice;(String,Iterable);generated",
-        "kotlin.text;StringsKt;split;(CharSequence,Regex,int);generated",
-        "kotlin.text;StringsKt;split;(CharSequence,String[],boolean,int);generated",
-        "kotlin.text;StringsKt;split;(CharSequence,char[],boolean,int);generated",
-        "kotlin.text;StringsKt;splitToSequence;(CharSequence,Regex,int);generated",
-        "kotlin.text;StringsKt;startsWith;(CharSequence,CharSequence,boolean);generated",
-        "kotlin.text;StringsKt;startsWith;(CharSequence,CharSequence,int,boolean);generated",
-        "kotlin.text;StringsKt;startsWith;(CharSequence,char,boolean);generated",
-        "kotlin.text;StringsKt;startsWith;(String,String,boolean);generated",
-        "kotlin.text;StringsKt;startsWith;(String,String,int,boolean);generated",
-        "kotlin.text;StringsKt;substring;(CharSequence,IntRange);generated",
-        "kotlin.text;StringsKt;substring;(CharSequence,int,int);generated",
-        "kotlin.text;StringsKt;sumBy;(CharSequence,Function1);generated",
-        "kotlin.text;StringsKt;sumByDouble;(CharSequence,Function1);generated",
-        "kotlin.text;StringsKt;sumOfBigDecimal;(CharSequence,Function1);generated",
-        "kotlin.text;StringsKt;sumOfBigInteger;(CharSequence,Function1);generated",
-        "kotlin.text;StringsKt;sumOfDouble;(CharSequence,Function1);generated",
-        "kotlin.text;StringsKt;sumOfInt;(CharSequence,Function1);generated",
-        "kotlin.text;StringsKt;sumOfLong;(CharSequence,Function1);generated",
-        "kotlin.text;StringsKt;sumOfUInt;(CharSequence,Function1);generated",
-        "kotlin.text;StringsKt;sumOfULong;(CharSequence,Function1);generated",
-        "kotlin.text;StringsKt;toBigDecimal;(String);generated",
-        "kotlin.text;StringsKt;toBigDecimal;(String,MathContext);generated",
-        "kotlin.text;StringsKt;toBigDecimalOrNull;(String);generated",
-        "kotlin.text;StringsKt;toBigDecimalOrNull;(String,MathContext);generated",
-        "kotlin.text;StringsKt;toBigInteger;(String);generated",
-        "kotlin.text;StringsKt;toBigInteger;(String,int);generated",
-        "kotlin.text;StringsKt;toBigIntegerOrNull;(String);generated",
-        "kotlin.text;StringsKt;toBigIntegerOrNull;(String,int);generated",
-        "kotlin.text;StringsKt;toBoolean;(String);generated",
-        "kotlin.text;StringsKt;toBooleanNullable;(String);generated",
-        "kotlin.text;StringsKt;toBooleanStrict;(String);generated",
-        "kotlin.text;StringsKt;toBooleanStrictOrNull;(String);generated",
-        "kotlin.text;StringsKt;toByte;(String);generated",
-        "kotlin.text;StringsKt;toByte;(String,int);generated",
-        "kotlin.text;StringsKt;toByteOrNull;(String);generated",
-        "kotlin.text;StringsKt;toByteOrNull;(String,int);generated",
-        "kotlin.text;StringsKt;toDouble;(String);generated",
-        "kotlin.text;StringsKt;toDoubleOrNull;(String);generated",
-        "kotlin.text;StringsKt;toFloat;(String);generated",
-        "kotlin.text;StringsKt;toFloatOrNull;(String);generated",
-        "kotlin.text;StringsKt;toHashSet;(CharSequence);generated",
-        "kotlin.text;StringsKt;toInt;(String);generated",
-        "kotlin.text;StringsKt;toInt;(String,int);generated",
-        "kotlin.text;StringsKt;toIntOrNull;(String);generated",
-        "kotlin.text;StringsKt;toIntOrNull;(String,int);generated",
-        "kotlin.text;StringsKt;toList;(CharSequence);generated",
-        "kotlin.text;StringsKt;toLong;(String);generated",
-        "kotlin.text;StringsKt;toLong;(String,int);generated",
-        "kotlin.text;StringsKt;toLongOrNull;(String);generated",
-        "kotlin.text;StringsKt;toLongOrNull;(String,int);generated",
-        "kotlin.text;StringsKt;toMutableList;(CharSequence);generated",
-        "kotlin.text;StringsKt;toPattern;(String,int);generated",
-        "kotlin.text;StringsKt;toRegex;(String);generated",
-        "kotlin.text;StringsKt;toRegex;(String,RegexOption);generated",
-        "kotlin.text;StringsKt;toRegex;(String,Set);generated",
-        "kotlin.text;StringsKt;toSet;(CharSequence);generated",
-        "kotlin.text;StringsKt;toShort;(String);generated",
-        "kotlin.text;StringsKt;toShort;(String,int);generated",
-        "kotlin.text;StringsKt;toShortOrNull;(String);generated",
-        "kotlin.text;StringsKt;toShortOrNull;(String,int);generated",
-        "kotlin.text;StringsKt;toSortedSet;(CharSequence);generated",
-        "kotlin.text;StringsKt;toString;(byte,int);generated",
-        "kotlin.text;StringsKt;toString;(int,int);generated",
-        "kotlin.text;StringsKt;toString;(long,int);generated",
-        "kotlin.text;StringsKt;toString;(short,int);generated",
-        "kotlin.text;StringsKt;trim;(String);generated",
-        "kotlin.text;StringsKt;trim;(String,Function1);generated",
-        "kotlin.text;StringsKt;trim;(String,char[]);generated",
-        "kotlin.text;StringsKt;trimEnd;(String);generated",
-        "kotlin.text;StringsKt;trimEnd;(String,Function1);generated",
-        "kotlin.text;StringsKt;trimEnd;(String,char[]);generated",
-        "kotlin.text;StringsKt;trimIndent;(String);generated",
-        "kotlin.text;StringsKt;trimMargin;(String,String);generated",
-        "kotlin.text;StringsKt;trimStart;(String);generated",
-        "kotlin.text;StringsKt;trimStart;(String,Function1);generated",
-        "kotlin.text;StringsKt;trimStart;(String,char[]);generated",
-        "kotlin.text;StringsKt;windowed;(CharSequence,int,int,boolean);generated",
-        "kotlin.text;StringsKt;windowed;(CharSequence,int,int,boolean,Function1);generated",
-        "kotlin.text;StringsKt;windowedSequence;(CharSequence,int,int,boolean);generated",
-        "kotlin.text;StringsKt;windowedSequence;(CharSequence,int,int,boolean,Function1);generated",
-        "kotlin.text;StringsKt;withIndex;(CharSequence);generated",
-        "kotlin.text;StringsKt;zip;(CharSequence,CharSequence);generated",
-        "kotlin.text;StringsKt;zip;(CharSequence,CharSequence,Function2);generated",
-        "kotlin.text;StringsKt;zipWithNext;(CharSequence);generated",
-        "kotlin.text;StringsKt;zipWithNext;(CharSequence,Function2);generated",
-        "kotlin.text;TextHKt;String;(char[]);generated",
-        "kotlin.text;TextHKt;String;(char[],int,int);generated",
-        "kotlin.text;TextHKt;compareTo;(String,String,boolean);generated",
-        "kotlin.text;TextHKt;concatToString;(char[]);generated",
-        "kotlin.text;TextHKt;concatToString;(char[],int,int);generated",
-        "kotlin.text;TextHKt;decodeToString;(byte[]);generated",
-        "kotlin.text;TextHKt;decodeToString;(byte[],int,int,boolean);generated",
-        "kotlin.text;TextHKt;encodeToByteArray;(String);generated",
-        "kotlin.text;TextHKt;encodeToByteArray;(String,int,int,boolean);generated",
-        "kotlin.text;TextHKt;endsWith;(String,String,boolean);generated",
-        "kotlin.text;TextHKt;equals;(String,String,boolean);generated",
-        "kotlin.text;TextHKt;getCASE_INSENSITIVE_ORDER;(StringCompanionObject);generated",
-        "kotlin.text;TextHKt;isBlank;(CharSequence);generated",
-        "kotlin.text;TextHKt;isHighSurrogate;(char);generated",
-        "kotlin.text;TextHKt;isLowSurrogate;(char);generated",
-        "kotlin.text;TextHKt;regionMatches;(CharSequence,int,CharSequence,int,int,boolean);generated",
-        "kotlin.text;TextHKt;repeat;(CharSequence,int);generated",
-        "kotlin.text;TextHKt;replace;(String,String,String,boolean);generated",
-        "kotlin.text;TextHKt;replace;(String,char,char,boolean);generated",
-        "kotlin.text;TextHKt;replaceFirst;(String,String,String,boolean);generated",
-        "kotlin.text;TextHKt;replaceFirst;(String,char,char,boolean);generated",
-        "kotlin.text;TextHKt;startsWith;(String,String,boolean);generated",
-        "kotlin.text;TextHKt;startsWith;(String,String,int,boolean);generated",
-        "kotlin.text;TextHKt;substring;(String,int);generated",
-        "kotlin.text;TextHKt;substring;(String,int,int);generated",
-        "kotlin.text;TextHKt;toBoolean;(String);generated",
-        "kotlin.text;TextHKt;toByte;(String);generated",
-        "kotlin.text;TextHKt;toByte;(String,int);generated",
-        "kotlin.text;TextHKt;toCharArray;(String);generated",
-        "kotlin.text;TextHKt;toCharArray;(String,int,int);generated",
-        "kotlin.text;TextHKt;toDouble;(String);generated",
-        "kotlin.text;TextHKt;toDoubleOrNull;(String);generated",
-        "kotlin.text;TextHKt;toFloat;(String);generated",
-        "kotlin.text;TextHKt;toFloatOrNull;(String);generated",
-        "kotlin.text;TextHKt;toInt;(String);generated",
-        "kotlin.text;TextHKt;toInt;(String,int);generated",
-        "kotlin.text;TextHKt;toLong;(String);generated",
-        "kotlin.text;TextHKt;toLong;(String,int);generated",
-        "kotlin.text;TextHKt;toShort;(String);generated",
-        "kotlin.text;TextHKt;toShort;(String,int);generated",
-        "kotlin.text;TextHKt;toString;(byte,int);generated",
-        "kotlin.text;TextHKt;toString;(int,int);generated",
-        "kotlin.text;TextHKt;toString;(long,int);generated",
-        "kotlin.text;TextHKt;toString;(short,int);generated",
-        "kotlin.text;Typography;getAlmostEqual;();generated",
-        "kotlin.text;Typography;getAmp;();generated",
-        "kotlin.text;Typography;getBullet;();generated",
-        "kotlin.text;Typography;getCent;();generated",
-        "kotlin.text;Typography;getCopyright;();generated",
-        "kotlin.text;Typography;getDagger;();generated",
-        "kotlin.text;Typography;getDegree;();generated",
-        "kotlin.text;Typography;getDollar;();generated",
-        "kotlin.text;Typography;getDoubleDagger;();generated",
-        "kotlin.text;Typography;getDoublePrime;();generated",
-        "kotlin.text;Typography;getEllipsis;();generated",
-        "kotlin.text;Typography;getEuro;();generated",
-        "kotlin.text;Typography;getGreater;();generated",
-        "kotlin.text;Typography;getGreaterOrEqual;();generated",
-        "kotlin.text;Typography;getHalf;();generated",
-        "kotlin.text;Typography;getLeftDoubleQuote;();generated",
-        "kotlin.text;Typography;getLeftGuillemet;();generated",
-        "kotlin.text;Typography;getLeftGuillemete;();generated",
-        "kotlin.text;Typography;getLeftSingleQuote;();generated",
-        "kotlin.text;Typography;getLess;();generated",
-        "kotlin.text;Typography;getLessOrEqual;();generated",
-        "kotlin.text;Typography;getLowDoubleQuote;();generated",
-        "kotlin.text;Typography;getLowSingleQuote;();generated",
-        "kotlin.text;Typography;getMdash;();generated",
-        "kotlin.text;Typography;getMiddleDot;();generated",
-        "kotlin.text;Typography;getNbsp;();generated",
-        "kotlin.text;Typography;getNdash;();generated",
-        "kotlin.text;Typography;getNotEqual;();generated",
-        "kotlin.text;Typography;getParagraph;();generated",
-        "kotlin.text;Typography;getPlusMinus;();generated",
-        "kotlin.text;Typography;getPound;();generated",
-        "kotlin.text;Typography;getPrime;();generated",
-        "kotlin.text;Typography;getQuote;();generated",
-        "kotlin.text;Typography;getRegistered;();generated",
-        "kotlin.text;Typography;getRightDoubleQuote;();generated",
-        "kotlin.text;Typography;getRightGuillemet;();generated",
-        "kotlin.text;Typography;getRightGuillemete;();generated",
-        "kotlin.text;Typography;getRightSingleQuote;();generated",
-        "kotlin.text;Typography;getSection;();generated",
-        "kotlin.text;Typography;getTimes;();generated", "kotlin.text;Typography;getTm;();generated",
-        "kotlin.text;UStringsKt;toString;(byte,int);generated",
-        "kotlin.text;UStringsKt;toString;(int,int);generated",
-        "kotlin.text;UStringsKt;toString;(long,int);generated",
-        "kotlin.text;UStringsKt;toString;(short,int);generated",
-        "kotlin.text;UStringsKt;toUByte;(String);generated",
-        "kotlin.text;UStringsKt;toUByte;(String,int);generated",
-        "kotlin.text;UStringsKt;toUByteOrNull;(String);generated",
-        "kotlin.text;UStringsKt;toUByteOrNull;(String,int);generated",
-        "kotlin.text;UStringsKt;toUInt;(String);generated",
-        "kotlin.text;UStringsKt;toUInt;(String,int);generated",
-        "kotlin.text;UStringsKt;toUIntOrNull;(String);generated",
-        "kotlin.text;UStringsKt;toUIntOrNull;(String,int);generated",
-        "kotlin.text;UStringsKt;toULong;(String);generated",
-        "kotlin.text;UStringsKt;toULong;(String,int);generated",
-        "kotlin.text;UStringsKt;toULongOrNull;(String);generated",
-        "kotlin.text;UStringsKt;toULongOrNull;(String,int);generated",
-        "kotlin.text;UStringsKt;toUShort;(String);generated",
-        "kotlin.text;UStringsKt;toUShort;(String,int);generated",
-        "kotlin.text;UStringsKt;toUShortOrNull;(String);generated",
-        "kotlin.text;UStringsKt;toUShortOrNull;(String,int);generated",
-        "kotlin.time;AbstractDoubleTimeSource;AbstractDoubleTimeSource;(DurationUnit);generated",
-        "kotlin.time;AbstractLongTimeSource;AbstractLongTimeSource;(DurationUnit);generated",
-        "kotlin.time;Duration$Companion;convert;(double,DurationUnit,DurationUnit);generated",
-        "kotlin.time;Duration$Companion;days;(double);generated",
-        "kotlin.time;Duration$Companion;days;(int);generated",
-        "kotlin.time;Duration$Companion;days;(long);generated",
-        "kotlin.time;Duration$Companion;getDays;(double);generated",
-        "kotlin.time;Duration$Companion;getDays;(int);generated",
-        "kotlin.time;Duration$Companion;getDays;(long);generated",
-        "kotlin.time;Duration$Companion;getHours;(double);generated",
-        "kotlin.time;Duration$Companion;getHours;(int);generated",
-        "kotlin.time;Duration$Companion;getHours;(long);generated",
-        "kotlin.time;Duration$Companion;getMicroseconds;(double);generated",
-        "kotlin.time;Duration$Companion;getMicroseconds;(int);generated",
-        "kotlin.time;Duration$Companion;getMicroseconds;(long);generated",
-        "kotlin.time;Duration$Companion;getMilliseconds;(double);generated",
-        "kotlin.time;Duration$Companion;getMilliseconds;(int);generated",
-        "kotlin.time;Duration$Companion;getMilliseconds;(long);generated",
-        "kotlin.time;Duration$Companion;getMinutes;(double);generated",
-        "kotlin.time;Duration$Companion;getMinutes;(int);generated",
-        "kotlin.time;Duration$Companion;getMinutes;(long);generated",
-        "kotlin.time;Duration$Companion;getNanoseconds;(double);generated",
-        "kotlin.time;Duration$Companion;getNanoseconds;(int);generated",
-        "kotlin.time;Duration$Companion;getNanoseconds;(long);generated",
-        "kotlin.time;Duration$Companion;getSeconds;(double);generated",
-        "kotlin.time;Duration$Companion;getSeconds;(int);generated",
-        "kotlin.time;Duration$Companion;getSeconds;(long);generated",
-        "kotlin.time;Duration$Companion;hours;(double);generated",
-        "kotlin.time;Duration$Companion;hours;(int);generated",
-        "kotlin.time;Duration$Companion;hours;(long);generated",
-        "kotlin.time;Duration$Companion;microseconds;(double);generated",
-        "kotlin.time;Duration$Companion;microseconds;(int);generated",
-        "kotlin.time;Duration$Companion;microseconds;(long);generated",
-        "kotlin.time;Duration$Companion;milliseconds;(double);generated",
-        "kotlin.time;Duration$Companion;milliseconds;(int);generated",
-        "kotlin.time;Duration$Companion;milliseconds;(long);generated",
-        "kotlin.time;Duration$Companion;minutes;(double);generated",
-        "kotlin.time;Duration$Companion;minutes;(int);generated",
-        "kotlin.time;Duration$Companion;minutes;(long);generated",
-        "kotlin.time;Duration$Companion;nanoseconds;(double);generated",
-        "kotlin.time;Duration$Companion;nanoseconds;(int);generated",
-        "kotlin.time;Duration$Companion;nanoseconds;(long);generated",
-        "kotlin.time;Duration$Companion;parse;(String);generated",
-        "kotlin.time;Duration$Companion;parseIsoString;(String);generated",
-        "kotlin.time;Duration$Companion;parseIsoStringOrNull;(String);generated",
-        "kotlin.time;Duration$Companion;parseOrNull;(String);generated",
-        "kotlin.time;Duration$Companion;seconds;(double);generated",
-        "kotlin.time;Duration$Companion;seconds;(int);generated",
-        "kotlin.time;Duration$Companion;seconds;(long);generated",
-        "kotlin.time;Duration;div;(Duration);generated",
-        "kotlin.time;Duration;equals;(Object);generated",
-        "kotlin.time;Duration;getInDays;();generated",
-        "kotlin.time;Duration;getInHours;();generated",
-        "kotlin.time;Duration;getInMicroseconds;();generated",
-        "kotlin.time;Duration;getInMilliseconds;();generated",
-        "kotlin.time;Duration;getInMinutes;();generated",
-        "kotlin.time;Duration;getInNanoseconds;();generated",
-        "kotlin.time;Duration;getInSeconds;();generated",
-        "kotlin.time;Duration;getInWholeDays;();generated",
-        "kotlin.time;Duration;getInWholeHours;();generated",
-        "kotlin.time;Duration;getInWholeMicroseconds;();generated",
-        "kotlin.time;Duration;getInWholeMilliseconds;();generated",
-        "kotlin.time;Duration;getInWholeMinutes;();generated",
-        "kotlin.time;Duration;getInWholeNanoseconds;();generated",
-        "kotlin.time;Duration;getInWholeSeconds;();generated",
-        "kotlin.time;Duration;hashCode;();generated", "kotlin.time;Duration;isFinite;();generated",
-        "kotlin.time;Duration;isInfinite;();generated",
-        "kotlin.time;Duration;isNegative;();generated",
-        "kotlin.time;Duration;isPositive;();generated",
-        "kotlin.time;Duration;toComponents;(Function2);generated",
-        "kotlin.time;Duration;toComponents;(Function3);generated",
-        "kotlin.time;Duration;toComponents;(Function4);generated",
-        "kotlin.time;Duration;toComponents;(Function5);generated",
-        "kotlin.time;Duration;toDouble;(DurationUnit);generated",
-        "kotlin.time;Duration;toInt;(DurationUnit);generated",
-        "kotlin.time;Duration;toIsoString;();generated",
-        "kotlin.time;Duration;toLong;(DurationUnit);generated",
-        "kotlin.time;Duration;toLongMilliseconds;();generated",
-        "kotlin.time;Duration;toLongNanoseconds;();generated",
-        "kotlin.time;Duration;toString;();generated",
-        "kotlin.time;Duration;toString;(DurationUnit,int);generated",
-        "kotlin.time;Duration;unaryMinus;();generated",
-        "kotlin.time;DurationKt;getDays;(double);generated",
-        "kotlin.time;DurationKt;getDays;(int);generated",
-        "kotlin.time;DurationKt;getDays;(long);generated",
-        "kotlin.time;DurationKt;getHours;(double);generated",
-        "kotlin.time;DurationKt;getHours;(int);generated",
-        "kotlin.time;DurationKt;getHours;(long);generated",
-        "kotlin.time;DurationKt;getMicroseconds;(double);generated",
-        "kotlin.time;DurationKt;getMicroseconds;(int);generated",
-        "kotlin.time;DurationKt;getMicroseconds;(long);generated",
-        "kotlin.time;DurationKt;getMilliseconds;(double);generated",
-        "kotlin.time;DurationKt;getMilliseconds;(int);generated",
-        "kotlin.time;DurationKt;getMilliseconds;(long);generated",
-        "kotlin.time;DurationKt;getMinutes;(double);generated",
-        "kotlin.time;DurationKt;getMinutes;(int);generated",
-        "kotlin.time;DurationKt;getMinutes;(long);generated",
-        "kotlin.time;DurationKt;getNanoseconds;(double);generated",
-        "kotlin.time;DurationKt;getNanoseconds;(int);generated",
-        "kotlin.time;DurationKt;getNanoseconds;(long);generated",
-        "kotlin.time;DurationKt;getSeconds;(double);generated",
-        "kotlin.time;DurationKt;getSeconds;(int);generated",
-        "kotlin.time;DurationKt;getSeconds;(long);generated",
-        "kotlin.time;DurationKt;toDuration;(double,DurationUnit);generated",
-        "kotlin.time;DurationKt;toDuration;(int,DurationUnit);generated",
-        "kotlin.time;DurationKt;toDuration;(long,DurationUnit);generated",
-        "kotlin.time;DurationUnit;valueOf;(String);generated",
-        "kotlin.time;DurationUnit;values;();generated",
-        "kotlin.time;DurationUnitKt;toDurationUnit;(TimeUnit);generated",
-        "kotlin.time;DurationUnitKt;toTimeUnit;(DurationUnit);generated",
-        "kotlin.time;ExperimentalTime;ExperimentalTime;();generated",
-        "kotlin.time;MeasureTimeKt;measureTime;(Function0);generated",
-        "kotlin.time;MeasureTimeKt;measureTime;(Monotonic,Function0);generated",
-        "kotlin.time;MeasureTimeKt;measureTime;(TimeSource,Function0);generated",
-        "kotlin.time;MeasureTimeKt;measureTimedValue;(Function0);generated",
-        "kotlin.time;MeasureTimeKt;measureTimedValue;(Monotonic,Function0);generated",
-        "kotlin.time;MeasureTimeKt;measureTimedValue;(TimeSource,Function0);generated",
-        "kotlin.time;TestTimeSource;TestTimeSource;();generated",
-        "kotlin.time;TestTimeSource;plusAssign;(Duration);generated",
-        "kotlin.time;TimeMark;elapsedNow;();generated",
-        "kotlin.time;TimeMark;hasNotPassedNow;();generated",
-        "kotlin.time;TimeMark;hasPassedNow;();generated",
-        "kotlin.time;TimeMark;minus;(Duration);generated",
-        "kotlin.time;TimeMark;plus;(Duration);generated",
-        "kotlin.time;TimeSource$Monotonic$ValueTimeMark;equals;(Object);generated",
-        "kotlin.time;TimeSource$Monotonic$ValueTimeMark;hashCode;();generated",
-        "kotlin.time;TimeSource$Monotonic$ValueTimeMark;toString;();generated",
-        "kotlin.time;TimeSource$Monotonic;toString;();generated",
-        "kotlin.time;TimeSource;markNow;();generated",
-        "kotlin.time;TimeSourceKt;compareTo;(TimeMark,TimeMark);generated",
-        "kotlin.time;TimeSourceKt;minus;(TimeMark,TimeMark);generated",
-        "kotlin.time;TimedValue;equals;(Object);generated",
-        "kotlin.time;TimedValue;hashCode;();generated",
-        "kotlin;ArithmeticException;ArithmeticException;();generated",
-        "kotlin;ArithmeticException;ArithmeticException;(String);generated",
-        "kotlin;ArrayIntrinsicsKt;emptyArray;();generated",
-        "kotlin;AssertionError;AssertionError;();generated",
-        "kotlin;AssertionError;AssertionError;(Object);generated",
-        "kotlin;BuilderInference;BuilderInference;();generated",
-        "kotlin;CharCodeJVMKt;Char;(short);generated", "kotlin;CharCodeKt;Char;(int);generated",
-        "kotlin;CharCodeKt;Char;(short);generated", "kotlin;CharCodeKt;getCode;(char);generated",
-        "kotlin;ClassCastException;ClassCastException;();generated",
-        "kotlin;ClassCastException;ClassCastException;(String);generated",
-        "kotlin;Comparator;compare;(Object,Object);generated",
-        "kotlin;CompareToKt;compareTo;(Comparable,Object);generated",
-        "kotlin;ConcurrentModificationException;ConcurrentModificationException;();generated",
-        "kotlin;ConcurrentModificationException;ConcurrentModificationException;(String);generated",
-        "kotlin;ConcurrentModificationException;ConcurrentModificationException;(String,Throwable);generated",
-        "kotlin;ConcurrentModificationException;ConcurrentModificationException;(Throwable);generated",
-        "kotlin;ContextFunctionTypeParams;ContextFunctionTypeParams;(int);generated",
-        "kotlin;ContextFunctionTypeParams;count;();generated",
-        "kotlin;DeepRecursiveKt;invoke;(DeepRecursiveFunction,Object);generated",
-        "kotlin;DeepRecursiveScope;callRecursive;(DeepRecursiveFunction,Object);generated",
-        "kotlin;DeepRecursiveScope;callRecursive;(Object);generated",
-        "kotlin;DeepRecursiveScope;invoke;(DeepRecursiveFunction,Object);generated",
-        "kotlin;Deprecated;Deprecated;(String,ReplaceWith,DeprecationLevel);generated",
-        "kotlin;Deprecated;level;();generated", "kotlin;Deprecated;message;();generated",
-        "kotlin;Deprecated;replaceWith;();generated",
-        "kotlin;DeprecatedSinceKotlin;DeprecatedSinceKotlin;(String,String,String);generated",
-        "kotlin;DeprecatedSinceKotlin;errorSince;();generated",
-        "kotlin;DeprecatedSinceKotlin;hiddenSince;();generated",
-        "kotlin;DeprecatedSinceKotlin;warningSince;();generated",
-        "kotlin;DeprecationLevel;valueOf;(String);generated",
-        "kotlin;DeprecationLevel;values;();generated", "kotlin;DslMarker;DslMarker;();generated",
-        "kotlin;Error;Error;();generated", "kotlin;Error;Error;(String);generated",
-        "kotlin;Error;Error;(String,Throwable);generated",
-        "kotlin;Error;Error;(Throwable);generated", "kotlin;Exception;Exception;();generated",
-        "kotlin;Exception;Exception;(String);generated",
-        "kotlin;Exception;Exception;(String,Throwable);generated",
-        "kotlin;Exception;Exception;(Throwable);generated",
-        "kotlin;ExceptionsHKt;addSuppressed;(Throwable,Throwable);generated",
-        "kotlin;ExceptionsHKt;getSuppressedExceptions;(Throwable);generated",
-        "kotlin;ExceptionsHKt;printStackTrace;(Throwable);generated",
-        "kotlin;ExceptionsHKt;stackTraceToString;(Throwable);generated",
-        "kotlin;ExceptionsKt;addSuppressed;(Throwable,Throwable);generated",
-        "kotlin;ExceptionsKt;getStackTrace;(Throwable);generated",
-        "kotlin;ExceptionsKt;getSuppressedExceptions;(Throwable);generated",
-        "kotlin;ExceptionsKt;printStackTrace;(Throwable);generated",
-        "kotlin;ExceptionsKt;printStackTrace;(Throwable,PrintStream);generated",
-        "kotlin;ExceptionsKt;printStackTrace;(Throwable,PrintWriter);generated",
-        "kotlin;ExceptionsKt;stackTraceToString;(Throwable);generated",
-        "kotlin;Experimental$Level;valueOf;(String);generated",
-        "kotlin;Experimental$Level;values;();generated",
-        "kotlin;Experimental;Experimental;(Level);generated",
-        "kotlin;Experimental;level;();generated",
-        "kotlin;ExperimentalMultiplatform;ExperimentalMultiplatform;();generated",
-        "kotlin;ExperimentalStdlibApi;ExperimentalStdlibApi;();generated",
-        "kotlin;ExperimentalUnsignedTypes;ExperimentalUnsignedTypes;();generated",
-        "kotlin;ExtensionFunctionType;ExtensionFunctionType;();generated",
-        "kotlin;HashCodeKt;hashCode;(Object);generated",
-        "kotlin;IllegalArgumentException;IllegalArgumentException;();generated",
-        "kotlin;IllegalArgumentException;IllegalArgumentException;(String);generated",
-        "kotlin;IllegalArgumentException;IllegalArgumentException;(String,Throwable);generated",
-        "kotlin;IllegalArgumentException;IllegalArgumentException;(Throwable);generated",
-        "kotlin;IllegalStateException;IllegalStateException;();generated",
-        "kotlin;IllegalStateException;IllegalStateException;(String);generated",
-        "kotlin;IllegalStateException;IllegalStateException;(String,Throwable);generated",
-        "kotlin;IllegalStateException;IllegalStateException;(Throwable);generated",
-        "kotlin;IndexOutOfBoundsException;IndexOutOfBoundsException;();generated",
-        "kotlin;IndexOutOfBoundsException;IndexOutOfBoundsException;(String);generated",
-        "kotlin;KotlinHKt;fromBits;(DoubleCompanionObject,long);generated",
-        "kotlin;KotlinHKt;fromBits;(FloatCompanionObject,int);generated",
-        "kotlin;KotlinHKt;isFinite;(double);generated",
-        "kotlin;KotlinHKt;isFinite;(float);generated",
-        "kotlin;KotlinHKt;isInfinite;(double);generated",
-        "kotlin;KotlinHKt;isInfinite;(float);generated",
-        "kotlin;KotlinHKt;isNaN;(double);generated", "kotlin;KotlinHKt;isNaN;(float);generated",
-        "kotlin;KotlinHKt;lazy;(Function0);generated",
-        "kotlin;KotlinHKt;lazy;(LazyThreadSafetyMode,Function0);generated",
-        "kotlin;KotlinHKt;lazy;(Object,Function0);generated",
-        "kotlin;KotlinHKt;toBits;(double);generated", "kotlin;KotlinHKt;toBits;(float);generated",
-        "kotlin;KotlinHKt;toRawBits;(double);generated",
-        "kotlin;KotlinHKt;toRawBits;(float);generated",
-        "kotlin;KotlinNullPointerException;KotlinNullPointerException;();generated",
-        "kotlin;KotlinNullPointerException;KotlinNullPointerException;(String);generated",
-        "kotlin;KotlinVersion$Companion;getMAX_COMPONENT_VALUE;();generated",
-        "kotlin;KotlinVersion;KotlinVersion;(int,int);generated",
-        "kotlin;KotlinVersion;KotlinVersion;(int,int,int);generated",
-        "kotlin;KotlinVersion;equals;(Object);generated",
-        "kotlin;KotlinVersion;getMajor;();generated", "kotlin;KotlinVersion;getMinor;();generated",
-        "kotlin;KotlinVersion;getPatch;();generated", "kotlin;KotlinVersion;hashCode;();generated",
-        "kotlin;KotlinVersion;isAtLeast;(int,int);generated",
-        "kotlin;KotlinVersion;isAtLeast;(int,int,int);generated",
-        "kotlin;KotlinVersion;toString;();generated",
-        "kotlin;LateinitKt;isInitialized;(KProperty0);generated",
-        "kotlin;Lazy;getValue;();generated", "kotlin;Lazy;isInitialized;();generated",
-        "kotlin;LazyThreadSafetyMode;valueOf;(String);generated",
-        "kotlin;LazyThreadSafetyMode;values;();generated",
-        "kotlin;Metadata;Metadata;(int,int[],int[],String[],String[],String,String,int);generated",
-        "kotlin;Metadata;bv;();generated", "kotlin;Metadata;d1;();generated",
-        "kotlin;Metadata;d2;();generated", "kotlin;Metadata;k;();generated",
-        "kotlin;Metadata;mv;();generated", "kotlin;Metadata;pn;();generated",
-        "kotlin;Metadata;xi;();generated", "kotlin;Metadata;xs;();generated",
-        "kotlin;NoSuchElementException;NoSuchElementException;();generated",
-        "kotlin;NoSuchElementException;NoSuchElementException;(String);generated",
-        "kotlin;NoWhenBranchMatchedException;NoWhenBranchMatchedException;();generated",
-        "kotlin;NoWhenBranchMatchedException;NoWhenBranchMatchedException;(String);generated",
-        "kotlin;NoWhenBranchMatchedException;NoWhenBranchMatchedException;(String,Throwable);generated",
-        "kotlin;NoWhenBranchMatchedException;NoWhenBranchMatchedException;(Throwable);generated",
-        "kotlin;NotImplementedError;NotImplementedError;(String);generated",
-        "kotlin;NullPointerException;NullPointerException;();generated",
-        "kotlin;NullPointerException;NullPointerException;(String);generated",
-        "kotlin;NumberFormatException;NumberFormatException;();generated",
-        "kotlin;NumberFormatException;NumberFormatException;(String);generated",
-        "kotlin;NumbersKt;and;(BigInteger,BigInteger);generated",
-        "kotlin;NumbersKt;countLeadingZeroBits;(byte);generated",
-        "kotlin;NumbersKt;countLeadingZeroBits;(int);generated",
-        "kotlin;NumbersKt;countLeadingZeroBits;(long);generated",
-        "kotlin;NumbersKt;countLeadingZeroBits;(short);generated",
-        "kotlin;NumbersKt;countOneBits;(byte);generated",
-        "kotlin;NumbersKt;countOneBits;(int);generated",
-        "kotlin;NumbersKt;countOneBits;(long);generated",
-        "kotlin;NumbersKt;countOneBits;(short);generated",
-        "kotlin;NumbersKt;countTrailingZeroBits;(byte);generated",
-        "kotlin;NumbersKt;countTrailingZeroBits;(int);generated",
-        "kotlin;NumbersKt;countTrailingZeroBits;(long);generated",
-        "kotlin;NumbersKt;countTrailingZeroBits;(short);generated",
-        "kotlin;NumbersKt;dec;(BigDecimal);generated",
-        "kotlin;NumbersKt;dec;(BigInteger);generated",
-        "kotlin;NumbersKt;div;(BigDecimal,BigDecimal);generated",
-        "kotlin;NumbersKt;div;(BigInteger,BigInteger);generated",
-        "kotlin;NumbersKt;floorDiv;(byte,byte);generated",
-        "kotlin;NumbersKt;floorDiv;(byte,int);generated",
-        "kotlin;NumbersKt;floorDiv;(byte,long);generated",
-        "kotlin;NumbersKt;floorDiv;(byte,short);generated",
-        "kotlin;NumbersKt;floorDiv;(int,byte);generated",
-        "kotlin;NumbersKt;floorDiv;(int,int);generated",
-        "kotlin;NumbersKt;floorDiv;(int,long);generated",
-        "kotlin;NumbersKt;floorDiv;(int,short);generated",
-        "kotlin;NumbersKt;floorDiv;(long,byte);generated",
-        "kotlin;NumbersKt;floorDiv;(long,int);generated",
-        "kotlin;NumbersKt;floorDiv;(long,long);generated",
-        "kotlin;NumbersKt;floorDiv;(long,short);generated",
-        "kotlin;NumbersKt;floorDiv;(short,byte);generated",
-        "kotlin;NumbersKt;floorDiv;(short,int);generated",
-        "kotlin;NumbersKt;floorDiv;(short,long);generated",
-        "kotlin;NumbersKt;floorDiv;(short,short);generated",
-        "kotlin;NumbersKt;fromBits;(DoubleCompanionObject,long);generated",
-        "kotlin;NumbersKt;fromBits;(FloatCompanionObject,int);generated",
-        "kotlin;NumbersKt;inc;(BigDecimal);generated",
-        "kotlin;NumbersKt;inc;(BigInteger);generated",
-        "kotlin;NumbersKt;inv;(BigInteger);generated",
-        "kotlin;NumbersKt;isFinite;(double);generated",
-        "kotlin;NumbersKt;isFinite;(float);generated",
-        "kotlin;NumbersKt;isInfinite;(double);generated",
-        "kotlin;NumbersKt;isInfinite;(float);generated",
-        "kotlin;NumbersKt;isNaN;(double);generated", "kotlin;NumbersKt;isNaN;(float);generated",
-        "kotlin;NumbersKt;minus;(BigDecimal,BigDecimal);generated",
-        "kotlin;NumbersKt;minus;(BigInteger,BigInteger);generated",
-        "kotlin;NumbersKt;mod;(byte,byte);generated", "kotlin;NumbersKt;mod;(byte,int);generated",
-        "kotlin;NumbersKt;mod;(byte,long);generated", "kotlin;NumbersKt;mod;(byte,short);generated",
-        "kotlin;NumbersKt;mod;(double,double);generated",
-        "kotlin;NumbersKt;mod;(double,float);generated",
-        "kotlin;NumbersKt;mod;(float,double);generated",
-        "kotlin;NumbersKt;mod;(float,float);generated", "kotlin;NumbersKt;mod;(int,byte);generated",
-        "kotlin;NumbersKt;mod;(int,int);generated", "kotlin;NumbersKt;mod;(int,long);generated",
-        "kotlin;NumbersKt;mod;(int,short);generated", "kotlin;NumbersKt;mod;(long,byte);generated",
-        "kotlin;NumbersKt;mod;(long,int);generated", "kotlin;NumbersKt;mod;(long,long);generated",
-        "kotlin;NumbersKt;mod;(long,short);generated",
-        "kotlin;NumbersKt;mod;(short,byte);generated", "kotlin;NumbersKt;mod;(short,int);generated",
-        "kotlin;NumbersKt;mod;(short,long);generated",
-        "kotlin;NumbersKt;mod;(short,short);generated",
-        "kotlin;NumbersKt;or;(BigInteger,BigInteger);generated",
-        "kotlin;NumbersKt;plus;(BigDecimal,BigDecimal);generated",
-        "kotlin;NumbersKt;plus;(BigInteger,BigInteger);generated",
-        "kotlin;NumbersKt;rem;(BigDecimal,BigDecimal);generated",
-        "kotlin;NumbersKt;rem;(BigInteger,BigInteger);generated",
-        "kotlin;NumbersKt;rotateLeft;(byte,int);generated",
-        "kotlin;NumbersKt;rotateLeft;(int,int);generated",
-        "kotlin;NumbersKt;rotateLeft;(long,int);generated",
-        "kotlin;NumbersKt;rotateLeft;(short,int);generated",
-        "kotlin;NumbersKt;rotateRight;(byte,int);generated",
-        "kotlin;NumbersKt;rotateRight;(int,int);generated",
-        "kotlin;NumbersKt;rotateRight;(long,int);generated",
-        "kotlin;NumbersKt;rotateRight;(short,int);generated",
-        "kotlin;NumbersKt;shl;(BigInteger,int);generated",
-        "kotlin;NumbersKt;shr;(BigInteger,int);generated",
-        "kotlin;NumbersKt;takeHighestOneBit;(byte);generated",
-        "kotlin;NumbersKt;takeHighestOneBit;(int);generated",
-        "kotlin;NumbersKt;takeHighestOneBit;(long);generated",
-        "kotlin;NumbersKt;takeHighestOneBit;(short);generated",
-        "kotlin;NumbersKt;takeLowestOneBit;(byte);generated",
-        "kotlin;NumbersKt;takeLowestOneBit;(int);generated",
-        "kotlin;NumbersKt;takeLowestOneBit;(long);generated",
-        "kotlin;NumbersKt;takeLowestOneBit;(short);generated",
-        "kotlin;NumbersKt;times;(BigDecimal,BigDecimal);generated",
-        "kotlin;NumbersKt;times;(BigInteger,BigInteger);generated",
-        "kotlin;NumbersKt;toBigDecimal;(BigInteger);generated",
-        "kotlin;NumbersKt;toBigDecimal;(BigInteger,int,MathContext);generated",
-        "kotlin;NumbersKt;toBigDecimal;(double);generated",
-        "kotlin;NumbersKt;toBigDecimal;(double,MathContext);generated",
-        "kotlin;NumbersKt;toBigDecimal;(float);generated",
-        "kotlin;NumbersKt;toBigDecimal;(float,MathContext);generated",
-        "kotlin;NumbersKt;toBigDecimal;(int);generated",
-        "kotlin;NumbersKt;toBigDecimal;(int,MathContext);generated",
-        "kotlin;NumbersKt;toBigDecimal;(long);generated",
-        "kotlin;NumbersKt;toBigDecimal;(long,MathContext);generated",
-        "kotlin;NumbersKt;toBigInteger;(int);generated",
-        "kotlin;NumbersKt;toBigInteger;(long);generated",
-        "kotlin;NumbersKt;toBits;(double);generated", "kotlin;NumbersKt;toBits;(float);generated",
-        "kotlin;NumbersKt;toRawBits;(double);generated",
-        "kotlin;NumbersKt;toRawBits;(float);generated",
-        "kotlin;NumbersKt;unaryMinus;(BigDecimal);generated",
-        "kotlin;NumbersKt;unaryMinus;(BigInteger);generated",
-        "kotlin;NumbersKt;xor;(BigInteger,BigInteger);generated",
-        "kotlin;OptIn;OptIn;(KClass[]);generated", "kotlin;OptIn;markerClass;();generated",
-        "kotlin;OptionalExpectation;OptionalExpectation;();generated",
-        "kotlin;OverloadResolutionByLambdaReturnType;OverloadResolutionByLambdaReturnType;();generated",
-        "kotlin;Pair;equals;(Object);generated", "kotlin;Pair;hashCode;();generated",
-        "kotlin;ParameterName;ParameterName;(String);generated",
-        "kotlin;ParameterName;name;();generated",
-        "kotlin;PreconditionsKt;assert;(boolean);generated",
-        "kotlin;PreconditionsKt;assert;(boolean,Function0);generated",
-        "kotlin;PreconditionsKt;check;(boolean);generated",
-        "kotlin;PreconditionsKt;check;(boolean,Function0);generated",
-        "kotlin;PreconditionsKt;error;(Object);generated",
-        "kotlin;PreconditionsKt;require;(boolean);generated",
-        "kotlin;PreconditionsKt;require;(boolean,Function0);generated",
-        "kotlin;PropertyReferenceDelegatesKt;getValue;(KProperty0,Object,KProperty);generated",
-        "kotlin;PropertyReferenceDelegatesKt;getValue;(KProperty1,Object,KProperty);generated",
-        "kotlin;PropertyReferenceDelegatesKt;setValue;(KMutableProperty0,Object,KProperty,Object);generated",
-        "kotlin;PropertyReferenceDelegatesKt;setValue;(KMutableProperty1,Object,KProperty,Object);generated",
-        "kotlin;PublishedApi;PublishedApi;();generated",
-        "kotlin;ReplaceWith;ReplaceWith;(String,String[]);generated",
-        "kotlin;ReplaceWith;expression;();generated", "kotlin;ReplaceWith;imports;();generated",
-        "kotlin;RequiresOptIn$Level;valueOf;(String);generated",
-        "kotlin;RequiresOptIn$Level;values;();generated",
-        "kotlin;RequiresOptIn;RequiresOptIn;(String,Level);generated",
-        "kotlin;RequiresOptIn;level;();generated", "kotlin;RequiresOptIn;message;();generated",
-        "kotlin;Result;equals;(Object);generated", "kotlin;Result;hashCode;();generated",
-        "kotlin;Result;isFailure;();generated", "kotlin;Result;isSuccess;();generated",
-        "kotlin;ResultKt;runCatching;(Function0);generated",
-        "kotlin;ResultKt;runCatching;(Object,Function1);generated",
-        "kotlin;RuntimeException;RuntimeException;();generated",
-        "kotlin;RuntimeException;RuntimeException;(String);generated",
-        "kotlin;RuntimeException;RuntimeException;(String,Throwable);generated",
-        "kotlin;RuntimeException;RuntimeException;(Throwable);generated",
-        "kotlin;SinceKotlin;SinceKotlin;(String);generated",
-        "kotlin;SinceKotlin;version;();generated", "kotlin;StandardKt;TODO;();generated",
-        "kotlin;StandardKt;TODO;(String);generated",
-        "kotlin;StandardKt;repeat;(int,Function1);generated",
-        "kotlin;StandardKt;run;(Function0);generated",
-        "kotlin;StandardKt;synchronized;(Object,Function0);generated",
-        "kotlin;Suppress;Suppress;(String[]);generated", "kotlin;Suppress;names;();generated",
-        "kotlin;Throws;Throws;(KClass[]);generated", "kotlin;Throws;exceptionClasses;();generated",
-        "kotlin;Triple;equals;(Object);generated", "kotlin;Triple;hashCode;();generated",
-        "kotlin;TypeCastException;TypeCastException;();generated",
-        "kotlin;TypeCastException;TypeCastException;(String);generated",
-        "kotlin;UByte$Companion;getMAX_VALUE;();generated",
-        "kotlin;UByte$Companion;getMIN_VALUE;();generated",
-        "kotlin;UByte$Companion;getSIZE_BITS;();generated",
-        "kotlin;UByte$Companion;getSIZE_BYTES;();generated", "kotlin;UByte;and;(byte);generated",
-        "kotlin;UByte;compareTo;(byte);generated", "kotlin;UByte;compareTo;(int);generated",
-        "kotlin;UByte;compareTo;(long);generated", "kotlin;UByte;compareTo;(short);generated",
-        "kotlin;UByte;dec;();generated", "kotlin;UByte;div;(byte);generated",
-        "kotlin;UByte;div;(int);generated", "kotlin;UByte;div;(long);generated",
-        "kotlin;UByte;div;(short);generated", "kotlin;UByte;equals;(Object);generated",
-        "kotlin;UByte;floorDiv;(byte);generated", "kotlin;UByte;floorDiv;(int);generated",
-        "kotlin;UByte;floorDiv;(long);generated", "kotlin;UByte;floorDiv;(short);generated",
-        "kotlin;UByte;hashCode;();generated", "kotlin;UByte;inc;();generated",
-        "kotlin;UByte;inv;();generated", "kotlin;UByte;minus;(byte);generated",
-        "kotlin;UByte;minus;(int);generated", "kotlin;UByte;minus;(long);generated",
-        "kotlin;UByte;minus;(short);generated", "kotlin;UByte;mod;(byte);generated",
-        "kotlin;UByte;mod;(int);generated", "kotlin;UByte;mod;(long);generated",
-        "kotlin;UByte;mod;(short);generated", "kotlin;UByte;or;(byte);generated",
-        "kotlin;UByte;plus;(byte);generated", "kotlin;UByte;plus;(int);generated",
-        "kotlin;UByte;plus;(long);generated", "kotlin;UByte;plus;(short);generated",
-        "kotlin;UByte;rangeTo;(byte);generated", "kotlin;UByte;rem;(byte);generated",
-        "kotlin;UByte;rem;(int);generated", "kotlin;UByte;rem;(long);generated",
-        "kotlin;UByte;rem;(short);generated", "kotlin;UByte;times;(byte);generated",
-        "kotlin;UByte;times;(int);generated", "kotlin;UByte;times;(long);generated",
-        "kotlin;UByte;times;(short);generated", "kotlin;UByte;toByte;();generated",
-        "kotlin;UByte;toDouble;();generated", "kotlin;UByte;toFloat;();generated",
-        "kotlin;UByte;toInt;();generated", "kotlin;UByte;toLong;();generated",
-        "kotlin;UByte;toShort;();generated", "kotlin;UByte;toString;();generated",
-        "kotlin;UByte;toUInt;();generated", "kotlin;UByte;toULong;();generated",
-        "kotlin;UByte;toUShort;();generated", "kotlin;UByte;xor;(byte);generated",
-        "kotlin;UByteArray;UByteArray;(int);generated",
-        "kotlin;UByteArray;equals;(Object);generated", "kotlin;UByteArray;get;(int);generated",
-        "kotlin;UByteArray;hashCode;();generated", "kotlin;UByteArray;set;(int,byte);generated",
-        "kotlin;UByteArray;toString;();generated",
-        "kotlin;UByteArrayKt;UByteArray;(int,Function1);generated",
-        "kotlin;UByteKt;toUByte;(byte);generated", "kotlin;UByteKt;toUByte;(int);generated",
-        "kotlin;UByteKt;toUByte;(long);generated", "kotlin;UByteKt;toUByte;(short);generated",
-        "kotlin;UInt$Companion;getMAX_VALUE;();generated",
-        "kotlin;UInt$Companion;getMIN_VALUE;();generated",
-        "kotlin;UInt$Companion;getSIZE_BITS;();generated",
-        "kotlin;UInt$Companion;getSIZE_BYTES;();generated", "kotlin;UInt;and;(int);generated",
-        "kotlin;UInt;compareTo;(byte);generated", "kotlin;UInt;compareTo;(int);generated",
-        "kotlin;UInt;compareTo;(long);generated", "kotlin;UInt;compareTo;(short);generated",
-        "kotlin;UInt;dec;();generated", "kotlin;UInt;div;(byte);generated",
-        "kotlin;UInt;div;(int);generated", "kotlin;UInt;div;(long);generated",
-        "kotlin;UInt;div;(short);generated", "kotlin;UInt;equals;(Object);generated",
-        "kotlin;UInt;floorDiv;(byte);generated", "kotlin;UInt;floorDiv;(int);generated",
-        "kotlin;UInt;floorDiv;(long);generated", "kotlin;UInt;floorDiv;(short);generated",
-        "kotlin;UInt;hashCode;();generated", "kotlin;UInt;inc;();generated",
-        "kotlin;UInt;inv;();generated", "kotlin;UInt;minus;(byte);generated",
-        "kotlin;UInt;minus;(int);generated", "kotlin;UInt;minus;(long);generated",
-        "kotlin;UInt;minus;(short);generated", "kotlin;UInt;mod;(byte);generated",
-        "kotlin;UInt;mod;(int);generated", "kotlin;UInt;mod;(long);generated",
-        "kotlin;UInt;mod;(short);generated", "kotlin;UInt;or;(int);generated",
-        "kotlin;UInt;plus;(byte);generated", "kotlin;UInt;plus;(int);generated",
-        "kotlin;UInt;plus;(long);generated", "kotlin;UInt;plus;(short);generated",
-        "kotlin;UInt;rangeTo;(int);generated", "kotlin;UInt;rem;(byte);generated",
-        "kotlin;UInt;rem;(int);generated", "kotlin;UInt;rem;(long);generated",
-        "kotlin;UInt;rem;(short);generated", "kotlin;UInt;shl;(int);generated",
-        "kotlin;UInt;shr;(int);generated", "kotlin;UInt;times;(byte);generated",
-        "kotlin;UInt;times;(int);generated", "kotlin;UInt;times;(long);generated",
-        "kotlin;UInt;times;(short);generated", "kotlin;UInt;toByte;();generated",
-        "kotlin;UInt;toDouble;();generated", "kotlin;UInt;toFloat;();generated",
-        "kotlin;UInt;toInt;();generated", "kotlin;UInt;toLong;();generated",
-        "kotlin;UInt;toShort;();generated", "kotlin;UInt;toString;();generated",
-        "kotlin;UInt;toUByte;();generated", "kotlin;UInt;toULong;();generated",
-        "kotlin;UInt;toUShort;();generated", "kotlin;UInt;xor;(int);generated",
-        "kotlin;UIntArray;UIntArray;(int);generated", "kotlin;UIntArray;equals;(Object);generated",
-        "kotlin;UIntArray;get;(int);generated", "kotlin;UIntArray;hashCode;();generated",
-        "kotlin;UIntArray;set;(int,int);generated", "kotlin;UIntArray;toString;();generated",
-        "kotlin;UIntArrayKt;UIntArray;(int,Function1);generated",
-        "kotlin;UIntKt;toUInt;(byte);generated", "kotlin;UIntKt;toUInt;(double);generated",
-        "kotlin;UIntKt;toUInt;(float);generated", "kotlin;UIntKt;toUInt;(int);generated",
-        "kotlin;UIntKt;toUInt;(long);generated", "kotlin;UIntKt;toUInt;(short);generated",
-        "kotlin;ULong$Companion;getMAX_VALUE;();generated",
-        "kotlin;ULong$Companion;getMIN_VALUE;();generated",
-        "kotlin;ULong$Companion;getSIZE_BITS;();generated",
-        "kotlin;ULong$Companion;getSIZE_BYTES;();generated", "kotlin;ULong;and;(long);generated",
-        "kotlin;ULong;compareTo;(byte);generated", "kotlin;ULong;compareTo;(int);generated",
-        "kotlin;ULong;compareTo;(long);generated", "kotlin;ULong;compareTo;(short);generated",
-        "kotlin;ULong;dec;();generated", "kotlin;ULong;div;(byte);generated",
-        "kotlin;ULong;div;(int);generated", "kotlin;ULong;div;(long);generated",
-        "kotlin;ULong;div;(short);generated", "kotlin;ULong;equals;(Object);generated",
-        "kotlin;ULong;floorDiv;(byte);generated", "kotlin;ULong;floorDiv;(int);generated",
-        "kotlin;ULong;floorDiv;(long);generated", "kotlin;ULong;floorDiv;(short);generated",
-        "kotlin;ULong;hashCode;();generated", "kotlin;ULong;inc;();generated",
-        "kotlin;ULong;inv;();generated", "kotlin;ULong;minus;(byte);generated",
-        "kotlin;ULong;minus;(int);generated", "kotlin;ULong;minus;(long);generated",
-        "kotlin;ULong;minus;(short);generated", "kotlin;ULong;mod;(byte);generated",
-        "kotlin;ULong;mod;(int);generated", "kotlin;ULong;mod;(long);generated",
-        "kotlin;ULong;mod;(short);generated", "kotlin;ULong;or;(long);generated",
-        "kotlin;ULong;plus;(byte);generated", "kotlin;ULong;plus;(int);generated",
-        "kotlin;ULong;plus;(long);generated", "kotlin;ULong;plus;(short);generated",
-        "kotlin;ULong;rangeTo;(long);generated", "kotlin;ULong;rem;(byte);generated",
-        "kotlin;ULong;rem;(int);generated", "kotlin;ULong;rem;(long);generated",
-        "kotlin;ULong;rem;(short);generated", "kotlin;ULong;shl;(int);generated",
-        "kotlin;ULong;shr;(int);generated", "kotlin;ULong;times;(byte);generated",
-        "kotlin;ULong;times;(int);generated", "kotlin;ULong;times;(long);generated",
-        "kotlin;ULong;times;(short);generated", "kotlin;ULong;toByte;();generated",
-        "kotlin;ULong;toDouble;();generated", "kotlin;ULong;toFloat;();generated",
-        "kotlin;ULong;toInt;();generated", "kotlin;ULong;toLong;();generated",
-        "kotlin;ULong;toShort;();generated", "kotlin;ULong;toString;();generated",
-        "kotlin;ULong;toUByte;();generated", "kotlin;ULong;toUInt;();generated",
-        "kotlin;ULong;toUShort;();generated", "kotlin;ULong;xor;(long);generated",
-        "kotlin;ULongArray;ULongArray;(int);generated",
-        "kotlin;ULongArray;equals;(Object);generated", "kotlin;ULongArray;get;(int);generated",
-        "kotlin;ULongArray;hashCode;();generated", "kotlin;ULongArray;set;(int,long);generated",
-        "kotlin;ULongArray;toString;();generated",
-        "kotlin;ULongArrayKt;ULongArray;(int,Function1);generated",
-        "kotlin;ULongKt;toULong;(byte);generated", "kotlin;ULongKt;toULong;(double);generated",
-        "kotlin;ULongKt;toULong;(float);generated", "kotlin;ULongKt;toULong;(int);generated",
-        "kotlin;ULongKt;toULong;(long);generated", "kotlin;ULongKt;toULong;(short);generated",
-        "kotlin;UNumbersKt;countLeadingZeroBits;(byte);generated",
-        "kotlin;UNumbersKt;countLeadingZeroBits;(int);generated",
-        "kotlin;UNumbersKt;countLeadingZeroBits;(long);generated",
-        "kotlin;UNumbersKt;countLeadingZeroBits;(short);generated",
-        "kotlin;UNumbersKt;countOneBits;(byte);generated",
-        "kotlin;UNumbersKt;countOneBits;(int);generated",
-        "kotlin;UNumbersKt;countOneBits;(long);generated",
-        "kotlin;UNumbersKt;countOneBits;(short);generated",
-        "kotlin;UNumbersKt;countTrailingZeroBits;(byte);generated",
-        "kotlin;UNumbersKt;countTrailingZeroBits;(int);generated",
-        "kotlin;UNumbersKt;countTrailingZeroBits;(long);generated",
-        "kotlin;UNumbersKt;countTrailingZeroBits;(short);generated",
-        "kotlin;UNumbersKt;rotateLeft;(byte,int);generated",
-        "kotlin;UNumbersKt;rotateLeft;(int,int);generated",
-        "kotlin;UNumbersKt;rotateLeft;(long,int);generated",
-        "kotlin;UNumbersKt;rotateLeft;(short,int);generated",
-        "kotlin;UNumbersKt;rotateRight;(byte,int);generated",
-        "kotlin;UNumbersKt;rotateRight;(int,int);generated",
-        "kotlin;UNumbersKt;rotateRight;(long,int);generated",
-        "kotlin;UNumbersKt;rotateRight;(short,int);generated",
-        "kotlin;UNumbersKt;takeHighestOneBit;(byte);generated",
-        "kotlin;UNumbersKt;takeHighestOneBit;(int);generated",
-        "kotlin;UNumbersKt;takeHighestOneBit;(long);generated",
-        "kotlin;UNumbersKt;takeHighestOneBit;(short);generated",
-        "kotlin;UNumbersKt;takeLowestOneBit;(byte);generated",
-        "kotlin;UNumbersKt;takeLowestOneBit;(int);generated",
-        "kotlin;UNumbersKt;takeLowestOneBit;(long);generated",
-        "kotlin;UNumbersKt;takeLowestOneBit;(short);generated",
-        "kotlin;UShort$Companion;getMAX_VALUE;();generated",
-        "kotlin;UShort$Companion;getMIN_VALUE;();generated",
-        "kotlin;UShort$Companion;getSIZE_BITS;();generated",
-        "kotlin;UShort$Companion;getSIZE_BYTES;();generated", "kotlin;UShort;and;(short);generated",
-        "kotlin;UShort;compareTo;(byte);generated", "kotlin;UShort;compareTo;(int);generated",
-        "kotlin;UShort;compareTo;(long);generated", "kotlin;UShort;compareTo;(short);generated",
-        "kotlin;UShort;dec;();generated", "kotlin;UShort;div;(byte);generated",
-        "kotlin;UShort;div;(int);generated", "kotlin;UShort;div;(long);generated",
-        "kotlin;UShort;div;(short);generated", "kotlin;UShort;equals;(Object);generated",
-        "kotlin;UShort;floorDiv;(byte);generated", "kotlin;UShort;floorDiv;(int);generated",
-        "kotlin;UShort;floorDiv;(long);generated", "kotlin;UShort;floorDiv;(short);generated",
-        "kotlin;UShort;hashCode;();generated", "kotlin;UShort;inc;();generated",
-        "kotlin;UShort;inv;();generated", "kotlin;UShort;minus;(byte);generated",
-        "kotlin;UShort;minus;(int);generated", "kotlin;UShort;minus;(long);generated",
-        "kotlin;UShort;minus;(short);generated", "kotlin;UShort;mod;(byte);generated",
-        "kotlin;UShort;mod;(int);generated", "kotlin;UShort;mod;(long);generated",
-        "kotlin;UShort;mod;(short);generated", "kotlin;UShort;or;(short);generated",
-        "kotlin;UShort;plus;(byte);generated", "kotlin;UShort;plus;(int);generated",
-        "kotlin;UShort;plus;(long);generated", "kotlin;UShort;plus;(short);generated",
-        "kotlin;UShort;rangeTo;(short);generated", "kotlin;UShort;rem;(byte);generated",
-        "kotlin;UShort;rem;(int);generated", "kotlin;UShort;rem;(long);generated",
-        "kotlin;UShort;rem;(short);generated", "kotlin;UShort;times;(byte);generated",
-        "kotlin;UShort;times;(int);generated", "kotlin;UShort;times;(long);generated",
-        "kotlin;UShort;times;(short);generated", "kotlin;UShort;toByte;();generated",
-        "kotlin;UShort;toDouble;();generated", "kotlin;UShort;toFloat;();generated",
-        "kotlin;UShort;toInt;();generated", "kotlin;UShort;toLong;();generated",
-        "kotlin;UShort;toShort;();generated", "kotlin;UShort;toString;();generated",
-        "kotlin;UShort;toUByte;();generated", "kotlin;UShort;toUInt;();generated",
-        "kotlin;UShort;toULong;();generated", "kotlin;UShort;xor;(short);generated",
-        "kotlin;UShortArray;UShortArray;(int);generated",
-        "kotlin;UShortArray;equals;(Object);generated", "kotlin;UShortArray;get;(int);generated",
-        "kotlin;UShortArray;hashCode;();generated", "kotlin;UShortArray;set;(int,short);generated",
-        "kotlin;UShortArray;toString;();generated",
-        "kotlin;UShortArrayKt;UShortArray;(int,Function1);generated",
-        "kotlin;UShortKt;toUShort;(byte);generated", "kotlin;UShortKt;toUShort;(int);generated",
-        "kotlin;UShortKt;toUShort;(long);generated", "kotlin;UShortKt;toUShort;(short);generated",
-        "kotlin;UninitializedPropertyAccessException;UninitializedPropertyAccessException;();generated",
-        "kotlin;UninitializedPropertyAccessException;UninitializedPropertyAccessException;(String);generated",
-        "kotlin;UninitializedPropertyAccessException;UninitializedPropertyAccessException;(String,Throwable);generated",
-        "kotlin;UninitializedPropertyAccessException;UninitializedPropertyAccessException;(Throwable);generated",
-        "kotlin;Unit;toString;();generated", "kotlin;UnsafeVariance;UnsafeVariance;();generated",
-        "kotlin;UnsupportedOperationException;UnsupportedOperationException;();generated",
-        "kotlin;UnsupportedOperationException;UnsupportedOperationException;(String);generated",
-        "kotlin;UnsupportedOperationException;UnsupportedOperationException;(String,Throwable);generated",
-        "kotlin;UnsupportedOperationException;UnsupportedOperationException;(Throwable);generated",
-        "kotlin;UseExperimental;UseExperimental;(KClass[]);generated",
-        "kotlin;UseExperimental;markerClass;();generated"
-      ]
-  }
-}
diff --git a/java/ql/lib/semmle/code/java/frameworks/kotlin/StdLibGenerated.qll b/java/ql/lib/semmle/code/java/frameworks/kotlin/StdLibGenerated.qll
index ed2b0165f47..e4a66f67762 100644
--- a/java/ql/lib/semmle/code/java/frameworks/kotlin/StdLibGenerated.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/kotlin/StdLibGenerated.qll
@@ -5,1864 +5,3 @@
 
 import java
 private import semmle.code.java.dataflow.ExternalFlow
-
-private class StdLibGeneratedSinksCsv extends SinkModelCsv {
-  override predicate row(string row) {
-    row =
-      [
-        "kotlin.io;FilesKt;false;appendBytes;(File,byte[]);;Argument[0];create-file;generated",
-        "kotlin.io;FilesKt;false;appendText;(File,String,Charset);;Argument[0];create-file;generated",
-        "kotlin.io;FilesKt;false;bufferedWriter;(File,Charset,int);;Argument[0];create-file;generated",
-        "kotlin.io;FilesKt;false;copyRecursively;(File,File,boolean,Function2);;Argument[1];create-file;generated",
-        "kotlin.io;FilesKt;false;copyTo;(File,File,boolean,int);;Argument[1];create-file;generated",
-        "kotlin.io;FilesKt;false;outputStream;(File);;Argument[0];create-file;generated",
-        "kotlin.io;FilesKt;false;printWriter;(File,Charset);;Argument[0];create-file;generated",
-        "kotlin.io;FilesKt;false;writeBytes;(File,byte[]);;Argument[0];create-file;generated",
-        "kotlin.io;FilesKt;false;writeText;(File,String,Charset);;Argument[0];create-file;generated",
-        "kotlin.io;FilesKt;false;writer;(File,Charset);;Argument[0];create-file;generated",
-        "kotlin.io;TextStreamsKt;false;readBytes;(URL);;Argument[0];open-url;generated",
-        "kotlin.io;TextStreamsKt;false;readText;(URL,Charset);;Argument[0];open-url;generated"
-      ]
-  }
-}
-
-private class StdLibGeneratedSummaryCsv extends SummaryModelCsv {
-  override predicate row(string row) {
-    row =
-      [
-        "kotlin.collections;AbstractCollection;true;toString;();;Argument[-1];ReturnValue;taint;generated",
-        "kotlin.collections;ArrayDeque;false;ArrayDeque;(Collection);;Argument[0].Element;Argument[-1];taint;generated",
-        "kotlin.collections;ArrayDeque;false;addFirst;(Object);;Argument[0];Argument[-1];taint;generated",
-        "kotlin.collections;ArrayDeque;false;addLast;(Object);;Argument[0];Argument[-1];taint;generated",
-        "kotlin.collections;ArrayDeque;false;first;();;Argument[-1];ReturnValue;taint;generated",
-        "kotlin.collections;ArrayDeque;false;firstOrNull;();;Argument[-1];ReturnValue;taint;generated",
-        "kotlin.collections;ArrayDeque;false;last;();;Argument[-1];ReturnValue;taint;generated",
-        "kotlin.collections;ArrayDeque;false;lastOrNull;();;Argument[-1];ReturnValue;taint;generated",
-        "kotlin.collections;ArrayDeque;false;removeFirst;();;Argument[-1];ReturnValue;taint;generated",
-        "kotlin.collections;ArrayDeque;false;removeFirstOrNull;();;Argument[-1];ReturnValue;taint;generated",
-        "kotlin.collections;ArrayDeque;false;removeLast;();;Argument[-1];ReturnValue;taint;generated",
-        "kotlin.collections;ArrayDeque;false;removeLastOrNull;();;Argument[-1];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;asList;(Object[]);;Argument[0].ArrayElement;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;associateByTo;(Object[],Map,Function1);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;associateByTo;(Object[],Map,Function1,Function1);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;associateByTo;(boolean[],Map,Function1);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;associateByTo;(boolean[],Map,Function1,Function1);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;associateByTo;(byte[],Map,Function1);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;associateByTo;(byte[],Map,Function1,Function1);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;associateByTo;(char[],Map,Function1);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;associateByTo;(char[],Map,Function1,Function1);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;associateByTo;(double[],Map,Function1);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;associateByTo;(double[],Map,Function1,Function1);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;associateByTo;(float[],Map,Function1);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;associateByTo;(float[],Map,Function1,Function1);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;associateByTo;(int[],Map,Function1);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;associateByTo;(int[],Map,Function1,Function1);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;associateByTo;(long[],Map,Function1);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;associateByTo;(long[],Map,Function1,Function1);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;associateByTo;(short[],Map,Function1);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;associateByTo;(short[],Map,Function1,Function1);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;associateTo;(Object[],Map,Function1);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;associateTo;(boolean[],Map,Function1);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;associateTo;(byte[],Map,Function1);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;associateTo;(char[],Map,Function1);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;associateTo;(double[],Map,Function1);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;associateTo;(float[],Map,Function1);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;associateTo;(int[],Map,Function1);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;associateTo;(long[],Map,Function1);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;associateTo;(short[],Map,Function1);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;associateWithTo;(Object[],Map,Function1);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;associateWithTo;(boolean[],Map,Function1);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;associateWithTo;(byte[],Map,Function1);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;associateWithTo;(char[],Map,Function1);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;associateWithTo;(double[],Map,Function1);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;associateWithTo;(float[],Map,Function1);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;associateWithTo;(int[],Map,Function1);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;associateWithTo;(long[],Map,Function1);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;associateWithTo;(short[],Map,Function1);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;copyInto;(Object[],Object[],int,int,int);;Argument[0].ArrayElement;Argument[1].ArrayElement;taint;generated",
-        "kotlin.collections;ArraysKt;false;copyInto;(Object[],Object[],int,int,int);;Argument[0].ArrayElement;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;copyInto;(Object[],Object[],int,int,int);;Argument[1].ArrayElement;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;copyInto;(byte[],byte[],int,int,int);;Argument[0];Argument[1];taint;generated",
-        "kotlin.collections;ArraysKt;false;copyInto;(byte[],byte[],int,int,int);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;copyInto;(byte[],byte[],int,int,int);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;copyInto;(char[],char[],int,int,int);;Argument[0];Argument[1];taint;generated",
-        "kotlin.collections;ArraysKt;false;copyInto;(char[],char[],int,int,int);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;copyInto;(char[],char[],int,int,int);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;copyOf;(Object[]);;Argument[0].ArrayElement;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;copyOf;(Object[],int);;Argument[0].ArrayElement;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;copyOf;(byte[]);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;copyOf;(byte[],int);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;copyOf;(char[]);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;copyOf;(char[],int);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;copyOfRangeInline;(Object[],int,int);;Argument[0].ArrayElement;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;copyOfRangeInline;(byte[],int,int);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;copyOfRangeInline;(char[],int,int);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;drop;(Object[],int);;Argument[0].ArrayElement;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;dropLast;(Object[],int);;Argument[0].ArrayElement;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;dropLastWhile;(Object[],Function1);;Argument[0].ArrayElement;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;fill;(Object[],Object,int,int);;Argument[1];Argument[0].ArrayElement;taint;generated",
-        "kotlin.collections;ArraysKt;false;filterIndexedTo;(Object[],Collection,Function2);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;filterIndexedTo;(boolean[],Collection,Function2);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;filterIndexedTo;(byte[],Collection,Function2);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;filterIndexedTo;(char[],Collection,Function2);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;filterIndexedTo;(double[],Collection,Function2);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;filterIndexedTo;(float[],Collection,Function2);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;filterIndexedTo;(int[],Collection,Function2);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;filterIndexedTo;(long[],Collection,Function2);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;filterIndexedTo;(short[],Collection,Function2);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;filterIsInstanceTo;(Object[],Collection);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;filterIsInstanceTo;(Object[],Collection,Class);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;filterNotNullTo;(Object[],Collection);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;filterNotTo;(Object[],Collection,Function1);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;filterNotTo;(boolean[],Collection,Function1);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;filterNotTo;(byte[],Collection,Function1);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;filterNotTo;(char[],Collection,Function1);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;filterNotTo;(double[],Collection,Function1);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;filterNotTo;(float[],Collection,Function1);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;filterNotTo;(int[],Collection,Function1);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;filterNotTo;(long[],Collection,Function1);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;filterNotTo;(short[],Collection,Function1);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;filterTo;(Object[],Collection,Function1);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;filterTo;(boolean[],Collection,Function1);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;filterTo;(byte[],Collection,Function1);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;filterTo;(char[],Collection,Function1);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;filterTo;(double[],Collection,Function1);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;filterTo;(float[],Collection,Function1);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;filterTo;(int[],Collection,Function1);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;filterTo;(long[],Collection,Function1);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;filterTo;(short[],Collection,Function1);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;findLast;(Object[],Function1);;Argument[0].ArrayElement;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;first;(Object[]);;Argument[0].ArrayElement;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;firstOrNull;(Object[]);;Argument[0].ArrayElement;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;flatMapIndexedIterableTo;(Object[],Collection,Function2);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;flatMapIndexedIterableTo;(boolean[],Collection,Function2);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;flatMapIndexedIterableTo;(byte[],Collection,Function2);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;flatMapIndexedIterableTo;(char[],Collection,Function2);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;flatMapIndexedIterableTo;(double[],Collection,Function2);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;flatMapIndexedIterableTo;(float[],Collection,Function2);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;flatMapIndexedIterableTo;(int[],Collection,Function2);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;flatMapIndexedIterableTo;(long[],Collection,Function2);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;flatMapIndexedIterableTo;(short[],Collection,Function2);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;flatMapIndexedSequenceTo;(Object[],Collection,Function2);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;flatMapSequenceTo;(Object[],Collection,Function1);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;flatMapTo;(Object[],Collection,Function1);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;flatMapTo;(boolean[],Collection,Function1);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;flatMapTo;(byte[],Collection,Function1);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;flatMapTo;(char[],Collection,Function1);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;flatMapTo;(double[],Collection,Function1);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;flatMapTo;(float[],Collection,Function1);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;flatMapTo;(int[],Collection,Function1);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;flatMapTo;(long[],Collection,Function1);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;flatMapTo;(short[],Collection,Function1);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;fold;(Object[],Object,Function2);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;fold;(boolean[],Object,Function2);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;fold;(byte[],Object,Function2);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;fold;(char[],Object,Function2);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;fold;(double[],Object,Function2);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;fold;(float[],Object,Function2);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;fold;(int[],Object,Function2);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;fold;(long[],Object,Function2);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;fold;(short[],Object,Function2);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;foldIndexed;(Object[],Object,Function3);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;foldIndexed;(boolean[],Object,Function3);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;foldIndexed;(byte[],Object,Function3);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;foldIndexed;(char[],Object,Function3);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;foldIndexed;(double[],Object,Function3);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;foldIndexed;(float[],Object,Function3);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;foldIndexed;(int[],Object,Function3);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;foldIndexed;(long[],Object,Function3);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;foldIndexed;(short[],Object,Function3);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;foldRight;(Object[],Object,Function2);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;foldRight;(boolean[],Object,Function2);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;foldRight;(byte[],Object,Function2);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;foldRight;(char[],Object,Function2);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;foldRight;(double[],Object,Function2);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;foldRight;(float[],Object,Function2);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;foldRight;(int[],Object,Function2);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;foldRight;(long[],Object,Function2);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;foldRight;(short[],Object,Function2);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;foldRightIndexed;(Object[],Object,Function3);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;foldRightIndexed;(boolean[],Object,Function3);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;foldRightIndexed;(byte[],Object,Function3);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;foldRightIndexed;(char[],Object,Function3);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;foldRightIndexed;(double[],Object,Function3);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;foldRightIndexed;(float[],Object,Function3);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;foldRightIndexed;(int[],Object,Function3);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;foldRightIndexed;(long[],Object,Function3);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;foldRightIndexed;(short[],Object,Function3);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;groupByTo;(Object[],Map,Function1);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;groupByTo;(Object[],Map,Function1,Function1);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;groupByTo;(boolean[],Map,Function1);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;groupByTo;(boolean[],Map,Function1,Function1);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;groupByTo;(byte[],Map,Function1);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;groupByTo;(byte[],Map,Function1,Function1);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;groupByTo;(char[],Map,Function1);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;groupByTo;(char[],Map,Function1,Function1);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;groupByTo;(double[],Map,Function1);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;groupByTo;(double[],Map,Function1,Function1);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;groupByTo;(float[],Map,Function1);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;groupByTo;(float[],Map,Function1,Function1);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;groupByTo;(int[],Map,Function1);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;groupByTo;(int[],Map,Function1,Function1);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;groupByTo;(long[],Map,Function1);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;groupByTo;(long[],Map,Function1,Function1);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;groupByTo;(short[],Map,Function1);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;groupByTo;(short[],Map,Function1,Function1);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;ifEmpty;(Object[],Function0);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;joinTo;(Object[],Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;joinTo;(Object[],Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1);;Argument[2];Argument[1];taint;generated",
-        "kotlin.collections;ArraysKt;false;joinTo;(Object[],Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1);;Argument[2];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;joinTo;(Object[],Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1);;Argument[3];Argument[1];taint;generated",
-        "kotlin.collections;ArraysKt;false;joinTo;(Object[],Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1);;Argument[3];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;joinTo;(Object[],Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1);;Argument[4];Argument[1];taint;generated",
-        "kotlin.collections;ArraysKt;false;joinTo;(Object[],Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1);;Argument[4];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;joinTo;(Object[],Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1);;Argument[6];Argument[1];taint;generated",
-        "kotlin.collections;ArraysKt;false;joinTo;(Object[],Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1);;Argument[6];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;joinTo;(boolean[],Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;joinTo;(boolean[],Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1);;Argument[2];Argument[1];taint;generated",
-        "kotlin.collections;ArraysKt;false;joinTo;(boolean[],Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1);;Argument[2];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;joinTo;(boolean[],Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1);;Argument[3];Argument[1];taint;generated",
-        "kotlin.collections;ArraysKt;false;joinTo;(boolean[],Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1);;Argument[3];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;joinTo;(boolean[],Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1);;Argument[4];Argument[1];taint;generated",
-        "kotlin.collections;ArraysKt;false;joinTo;(boolean[],Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1);;Argument[4];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;joinTo;(boolean[],Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1);;Argument[6];Argument[1];taint;generated",
-        "kotlin.collections;ArraysKt;false;joinTo;(boolean[],Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1);;Argument[6];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;joinTo;(byte[],Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;joinTo;(byte[],Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1);;Argument[2];Argument[1];taint;generated",
-        "kotlin.collections;ArraysKt;false;joinTo;(byte[],Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1);;Argument[2];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;joinTo;(byte[],Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1);;Argument[3];Argument[1];taint;generated",
-        "kotlin.collections;ArraysKt;false;joinTo;(byte[],Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1);;Argument[3];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;joinTo;(byte[],Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1);;Argument[4];Argument[1];taint;generated",
-        "kotlin.collections;ArraysKt;false;joinTo;(byte[],Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1);;Argument[4];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;joinTo;(byte[],Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1);;Argument[6];Argument[1];taint;generated",
-        "kotlin.collections;ArraysKt;false;joinTo;(byte[],Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1);;Argument[6];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;joinTo;(char[],Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;joinTo;(char[],Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1);;Argument[2];Argument[1];taint;generated",
-        "kotlin.collections;ArraysKt;false;joinTo;(char[],Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1);;Argument[2];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;joinTo;(char[],Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1);;Argument[3];Argument[1];taint;generated",
-        "kotlin.collections;ArraysKt;false;joinTo;(char[],Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1);;Argument[3];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;joinTo;(char[],Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1);;Argument[4];Argument[1];taint;generated",
-        "kotlin.collections;ArraysKt;false;joinTo;(char[],Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1);;Argument[4];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;joinTo;(char[],Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1);;Argument[6];Argument[1];taint;generated",
-        "kotlin.collections;ArraysKt;false;joinTo;(char[],Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1);;Argument[6];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;joinTo;(double[],Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;joinTo;(double[],Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1);;Argument[2];Argument[1];taint;generated",
-        "kotlin.collections;ArraysKt;false;joinTo;(double[],Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1);;Argument[2];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;joinTo;(double[],Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1);;Argument[3];Argument[1];taint;generated",
-        "kotlin.collections;ArraysKt;false;joinTo;(double[],Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1);;Argument[3];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;joinTo;(double[],Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1);;Argument[4];Argument[1];taint;generated",
-        "kotlin.collections;ArraysKt;false;joinTo;(double[],Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1);;Argument[4];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;joinTo;(double[],Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1);;Argument[6];Argument[1];taint;generated",
-        "kotlin.collections;ArraysKt;false;joinTo;(double[],Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1);;Argument[6];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;joinTo;(float[],Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;joinTo;(float[],Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1);;Argument[2];Argument[1];taint;generated",
-        "kotlin.collections;ArraysKt;false;joinTo;(float[],Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1);;Argument[2];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;joinTo;(float[],Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1);;Argument[3];Argument[1];taint;generated",
-        "kotlin.collections;ArraysKt;false;joinTo;(float[],Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1);;Argument[3];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;joinTo;(float[],Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1);;Argument[4];Argument[1];taint;generated",
-        "kotlin.collections;ArraysKt;false;joinTo;(float[],Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1);;Argument[4];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;joinTo;(float[],Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1);;Argument[6];Argument[1];taint;generated",
-        "kotlin.collections;ArraysKt;false;joinTo;(float[],Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1);;Argument[6];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;joinTo;(int[],Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;joinTo;(int[],Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1);;Argument[2];Argument[1];taint;generated",
-        "kotlin.collections;ArraysKt;false;joinTo;(int[],Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1);;Argument[2];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;joinTo;(int[],Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1);;Argument[3];Argument[1];taint;generated",
-        "kotlin.collections;ArraysKt;false;joinTo;(int[],Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1);;Argument[3];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;joinTo;(int[],Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1);;Argument[4];Argument[1];taint;generated",
-        "kotlin.collections;ArraysKt;false;joinTo;(int[],Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1);;Argument[4];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;joinTo;(int[],Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1);;Argument[6];Argument[1];taint;generated",
-        "kotlin.collections;ArraysKt;false;joinTo;(int[],Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1);;Argument[6];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;joinTo;(long[],Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;joinTo;(long[],Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1);;Argument[2];Argument[1];taint;generated",
-        "kotlin.collections;ArraysKt;false;joinTo;(long[],Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1);;Argument[2];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;joinTo;(long[],Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1);;Argument[3];Argument[1];taint;generated",
-        "kotlin.collections;ArraysKt;false;joinTo;(long[],Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1);;Argument[3];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;joinTo;(long[],Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1);;Argument[4];Argument[1];taint;generated",
-        "kotlin.collections;ArraysKt;false;joinTo;(long[],Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1);;Argument[4];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;joinTo;(long[],Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1);;Argument[6];Argument[1];taint;generated",
-        "kotlin.collections;ArraysKt;false;joinTo;(long[],Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1);;Argument[6];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;joinTo;(short[],Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;joinTo;(short[],Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1);;Argument[2];Argument[1];taint;generated",
-        "kotlin.collections;ArraysKt;false;joinTo;(short[],Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1);;Argument[2];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;joinTo;(short[],Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1);;Argument[3];Argument[1];taint;generated",
-        "kotlin.collections;ArraysKt;false;joinTo;(short[],Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1);;Argument[3];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;joinTo;(short[],Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1);;Argument[4];Argument[1];taint;generated",
-        "kotlin.collections;ArraysKt;false;joinTo;(short[],Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1);;Argument[4];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;joinTo;(short[],Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1);;Argument[6];Argument[1];taint;generated",
-        "kotlin.collections;ArraysKt;false;joinTo;(short[],Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1);;Argument[6];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;joinToString;(Object[],CharSequence,CharSequence,CharSequence,int,CharSequence,Function1);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;joinToString;(Object[],CharSequence,CharSequence,CharSequence,int,CharSequence,Function1);;Argument[2];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;joinToString;(Object[],CharSequence,CharSequence,CharSequence,int,CharSequence,Function1);;Argument[3];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;joinToString;(Object[],CharSequence,CharSequence,CharSequence,int,CharSequence,Function1);;Argument[5];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;joinToString;(boolean[],CharSequence,CharSequence,CharSequence,int,CharSequence,Function1);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;joinToString;(boolean[],CharSequence,CharSequence,CharSequence,int,CharSequence,Function1);;Argument[2];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;joinToString;(boolean[],CharSequence,CharSequence,CharSequence,int,CharSequence,Function1);;Argument[3];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;joinToString;(boolean[],CharSequence,CharSequence,CharSequence,int,CharSequence,Function1);;Argument[5];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;joinToString;(byte[],CharSequence,CharSequence,CharSequence,int,CharSequence,Function1);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;joinToString;(byte[],CharSequence,CharSequence,CharSequence,int,CharSequence,Function1);;Argument[2];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;joinToString;(byte[],CharSequence,CharSequence,CharSequence,int,CharSequence,Function1);;Argument[3];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;joinToString;(byte[],CharSequence,CharSequence,CharSequence,int,CharSequence,Function1);;Argument[5];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;joinToString;(char[],CharSequence,CharSequence,CharSequence,int,CharSequence,Function1);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;joinToString;(char[],CharSequence,CharSequence,CharSequence,int,CharSequence,Function1);;Argument[2];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;joinToString;(char[],CharSequence,CharSequence,CharSequence,int,CharSequence,Function1);;Argument[3];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;joinToString;(char[],CharSequence,CharSequence,CharSequence,int,CharSequence,Function1);;Argument[5];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;joinToString;(double[],CharSequence,CharSequence,CharSequence,int,CharSequence,Function1);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;joinToString;(double[],CharSequence,CharSequence,CharSequence,int,CharSequence,Function1);;Argument[2];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;joinToString;(double[],CharSequence,CharSequence,CharSequence,int,CharSequence,Function1);;Argument[3];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;joinToString;(double[],CharSequence,CharSequence,CharSequence,int,CharSequence,Function1);;Argument[5];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;joinToString;(float[],CharSequence,CharSequence,CharSequence,int,CharSequence,Function1);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;joinToString;(float[],CharSequence,CharSequence,CharSequence,int,CharSequence,Function1);;Argument[2];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;joinToString;(float[],CharSequence,CharSequence,CharSequence,int,CharSequence,Function1);;Argument[3];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;joinToString;(float[],CharSequence,CharSequence,CharSequence,int,CharSequence,Function1);;Argument[5];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;joinToString;(int[],CharSequence,CharSequence,CharSequence,int,CharSequence,Function1);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;joinToString;(int[],CharSequence,CharSequence,CharSequence,int,CharSequence,Function1);;Argument[2];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;joinToString;(int[],CharSequence,CharSequence,CharSequence,int,CharSequence,Function1);;Argument[3];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;joinToString;(int[],CharSequence,CharSequence,CharSequence,int,CharSequence,Function1);;Argument[5];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;joinToString;(long[],CharSequence,CharSequence,CharSequence,int,CharSequence,Function1);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;joinToString;(long[],CharSequence,CharSequence,CharSequence,int,CharSequence,Function1);;Argument[2];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;joinToString;(long[],CharSequence,CharSequence,CharSequence,int,CharSequence,Function1);;Argument[3];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;joinToString;(long[],CharSequence,CharSequence,CharSequence,int,CharSequence,Function1);;Argument[5];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;joinToString;(short[],CharSequence,CharSequence,CharSequence,int,CharSequence,Function1);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;joinToString;(short[],CharSequence,CharSequence,CharSequence,int,CharSequence,Function1);;Argument[2];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;joinToString;(short[],CharSequence,CharSequence,CharSequence,int,CharSequence,Function1);;Argument[3];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;joinToString;(short[],CharSequence,CharSequence,CharSequence,int,CharSequence,Function1);;Argument[5];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;last;(Object[]);;Argument[0].ArrayElement;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;last;(Object[],Function1);;Argument[0].ArrayElement;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;lastOrNull;(Object[]);;Argument[0].ArrayElement;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;lastOrNull;(Object[],Function1);;Argument[0].ArrayElement;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;mapIndexedNotNullTo;(Object[],Collection,Function2);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;mapIndexedTo;(Object[],Collection,Function2);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;mapIndexedTo;(boolean[],Collection,Function2);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;mapIndexedTo;(byte[],Collection,Function2);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;mapIndexedTo;(char[],Collection,Function2);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;mapIndexedTo;(double[],Collection,Function2);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;mapIndexedTo;(float[],Collection,Function2);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;mapIndexedTo;(int[],Collection,Function2);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;mapIndexedTo;(long[],Collection,Function2);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;mapIndexedTo;(short[],Collection,Function2);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;mapNotNullTo;(Object[],Collection,Function1);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;mapTo;(Object[],Collection,Function1);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;mapTo;(boolean[],Collection,Function1);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;mapTo;(byte[],Collection,Function1);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;mapTo;(char[],Collection,Function1);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;mapTo;(double[],Collection,Function1);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;mapTo;(float[],Collection,Function1);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;mapTo;(int[],Collection,Function1);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;mapTo;(long[],Collection,Function1);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;mapTo;(short[],Collection,Function1);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;max;(Comparable[]);;Argument[0].ArrayElement;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;maxBy;(Object[],Function1);;Argument[0].ArrayElement;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;maxByOrNull;(Object[],Function1);;Argument[0].ArrayElement;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;maxByOrThrow;(Object[],Function1);;Argument[0].ArrayElement;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;maxOfWith;(Object[],Comparator,Function1);;Argument[0].ArrayElement;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;maxOfWithOrNull;(Object[],Comparator,Function1);;Argument[0].ArrayElement;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;maxOrNull;(Comparable[]);;Argument[0].ArrayElement;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;maxOrThrow;(Comparable[]);;Argument[0].ArrayElement;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;maxWith;(Object[],Comparator);;Argument[0].ArrayElement;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;maxWithOrNull;(Object[],Comparator);;Argument[0].ArrayElement;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;maxWithOrThrow;(Object[],Comparator);;Argument[0].ArrayElement;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;min;(Comparable[]);;Argument[0].ArrayElement;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;minBy;(Object[],Function1);;Argument[0].ArrayElement;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;minByOrNull;(Object[],Function1);;Argument[0].ArrayElement;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;minByOrThrow;(Object[],Function1);;Argument[0].ArrayElement;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;minOfWith;(Object[],Comparator,Function1);;Argument[0].ArrayElement;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;minOfWithOrNull;(Object[],Comparator,Function1);;Argument[0].ArrayElement;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;minOrNull;(Comparable[]);;Argument[0].ArrayElement;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;minOrThrow;(Comparable[]);;Argument[0].ArrayElement;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;minWith;(Object[],Comparator);;Argument[0].ArrayElement;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;minWithOrNull;(Object[],Comparator);;Argument[0].ArrayElement;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;minWithOrThrow;(Object[],Comparator);;Argument[0].ArrayElement;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;onEach;(Object[],Function1);;Argument[0].ArrayElement;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;onEach;(byte[],Function1);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;onEach;(char[],Function1);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;onEachIndexed;(Object[],Function2);;Argument[0].ArrayElement;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;onEachIndexed;(byte[],Function2);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;onEachIndexed;(char[],Function2);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;orEmpty;(Object[]);;Argument[0].ArrayElement;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;plus;(Object[],Collection);;Argument[0].ArrayElement;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;plus;(Object[],Object);;Argument[0].ArrayElement;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;plus;(Object[],Object[]);;Argument[0].ArrayElement;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;plus;(Object[],Object[]);;Argument[1].ArrayElement;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;plus;(byte[],Collection);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;plus;(byte[],byte);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;plus;(byte[],byte[]);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;plus;(byte[],byte[]);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;plus;(char[],Collection);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;plus;(char[],char);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;plus;(char[],char[]);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;plus;(char[],char[]);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;plusElement;(Object[],Object);;Argument[0].ArrayElement;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;reduce;(Object[],Function2);;Argument[0].ArrayElement;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;reduceIndexed;(Object[],Function3);;Argument[0].ArrayElement;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;reduceIndexedOrNull;(Object[],Function3);;Argument[0].ArrayElement;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;reduceOrNull;(Object[],Function2);;Argument[0].ArrayElement;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;requireNoNulls;(Object[]);;Argument[0].ArrayElement;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;reversed;(Object[]);;Argument[0].ArrayElement;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;reversedArray;(Object[]);;Argument[0].ArrayElement;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;reversedArray;(byte[]);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;reversedArray;(char[]);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;runningFold;(Object[],Object,Function2);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;runningFold;(boolean[],Object,Function2);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;runningFold;(byte[],Object,Function2);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;runningFold;(char[],Object,Function2);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;runningFold;(double[],Object,Function2);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;runningFold;(float[],Object,Function2);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;runningFold;(int[],Object,Function2);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;runningFold;(long[],Object,Function2);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;runningFold;(short[],Object,Function2);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;runningFoldIndexed;(Object[],Object,Function3);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;runningFoldIndexed;(boolean[],Object,Function3);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;runningFoldIndexed;(byte[],Object,Function3);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;runningFoldIndexed;(char[],Object,Function3);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;runningFoldIndexed;(double[],Object,Function3);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;runningFoldIndexed;(float[],Object,Function3);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;runningFoldIndexed;(int[],Object,Function3);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;runningFoldIndexed;(long[],Object,Function3);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;runningFoldIndexed;(short[],Object,Function3);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;scan;(Object[],Object,Function2);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;scan;(boolean[],Object,Function2);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;scan;(byte[],Object,Function2);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;scan;(char[],Object,Function2);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;scan;(double[],Object,Function2);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;scan;(float[],Object,Function2);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;scan;(int[],Object,Function2);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;scan;(long[],Object,Function2);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;scan;(short[],Object,Function2);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;scanIndexed;(Object[],Object,Function3);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;scanIndexed;(boolean[],Object,Function3);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;scanIndexed;(byte[],Object,Function3);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;scanIndexed;(char[],Object,Function3);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;scanIndexed;(double[],Object,Function3);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;scanIndexed;(float[],Object,Function3);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;scanIndexed;(int[],Object,Function3);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;scanIndexed;(long[],Object,Function3);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;scanIndexed;(short[],Object,Function3);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;single;(Object[]);;Argument[0].ArrayElement;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;singleOrNull;(Object[]);;Argument[0].ArrayElement;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;slice;(Object[],IntRange);;Argument[0].ArrayElement;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;sliceArray;(Object[],Collection);;Argument[0].ArrayElement;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;sliceArray;(Object[],IntRange);;Argument[0].ArrayElement;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;sliceArray;(byte[],IntRange);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;sliceArray;(char[],IntRange);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;sorted;(Comparable[]);;Argument[0].ArrayElement;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;sortedArray;(Comparable[]);;Argument[0].ArrayElement;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;sortedArray;(byte[]);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;sortedArray;(char[]);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;sortedArrayDescending;(Comparable[]);;Argument[0].ArrayElement;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;sortedArrayDescending;(byte[]);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;sortedArrayDescending;(char[]);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;sortedArrayWith;(Object[],Comparator);;Argument[0].ArrayElement;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;sortedBy;(Object[],Function1);;Argument[0].ArrayElement;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;sortedByDescending;(Object[],Function1);;Argument[0].ArrayElement;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;sortedDescending;(Comparable[]);;Argument[0].ArrayElement;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;sortedWith;(Object[],Comparator);;Argument[0].ArrayElement;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;take;(Object[],int);;Argument[0].ArrayElement;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;takeLast;(Object[],int);;Argument[0].ArrayElement;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;takeLastWhile;(Object[],Function1);;Argument[0].ArrayElement;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;toCollection;(Object[],Collection);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;toCollection;(boolean[],Collection);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;toCollection;(byte[],Collection);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;toCollection;(char[],Collection);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;toCollection;(double[],Collection);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;toCollection;(float[],Collection);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;toCollection;(int[],Collection);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;toCollection;(long[],Collection);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;toCollection;(short[],Collection);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;toList;(Object[]);;Argument[0].ArrayElement;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;toMutableList;(Object[]);;Argument[0].ArrayElement;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;toSet;(Object[]);;Argument[0].ArrayElement;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;toString;(byte[],Charset);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;toTypedArray;(Collection);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;union;(Object[],Iterable);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;union;(byte[],Iterable);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;union;(char[],Iterable);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;zip;(Object[],Iterable);;Argument[0].ArrayElement;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;zip;(Object[],Iterable);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;zip;(Object[],Iterable,Function2);;Argument[0].ArrayElement;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;zip;(Object[],Iterable,Function2);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;zip;(Object[],Object[]);;Argument[0].ArrayElement;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;zip;(Object[],Object[]);;Argument[1].ArrayElement;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;zip;(Object[],Object[],Function2);;Argument[0].ArrayElement;ReturnValue;taint;generated",
-        "kotlin.collections;ArraysKt;false;zip;(Object[],Object[],Function2);;Argument[1].ArrayElement;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;addAll;(Collection,Iterable);;Argument[1].Element;Argument[0].Element;taint;generated",
-        "kotlin.collections;CollectionsKt;false;addAll;(Collection,Object[]);;Argument[1].ArrayElement;Argument[0].Element;taint;generated",
-        "kotlin.collections;CollectionsKt;false;addAll;(Collection,Sequence);;Argument[1];Argument[0].Element;taint;generated",
-        "kotlin.collections;CollectionsKt;false;arrayListOf;(Object[]);;Argument[0].ArrayElement;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;asIterable;(Iterable);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;asReversed;(List);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;asReversedMutable;(List);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;associate;(Iterable,Function1);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;associateBy;(Iterable,Function1);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;associateBy;(Iterable,Function1,Function1);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;associateByTo;(Iterable,Map,Function1);;Argument[0].Element;Argument[1].Element;taint;generated",
-        "kotlin.collections;CollectionsKt;false;associateByTo;(Iterable,Map,Function1);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;associateByTo;(Iterable,Map,Function1);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;associateByTo;(Iterable,Map,Function1,Function1);;Argument[0].Element;Argument[1].Element;taint;generated",
-        "kotlin.collections;CollectionsKt;false;associateByTo;(Iterable,Map,Function1,Function1);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;associateByTo;(Iterable,Map,Function1,Function1);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;associateTo;(Iterable,Map,Function1);;Argument[0].Element;Argument[1].Element;taint;generated",
-        "kotlin.collections;CollectionsKt;false;associateTo;(Iterable,Map,Function1);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;associateTo;(Iterable,Map,Function1);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;associateWith;(Iterable,Function1);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;associateWithTo;(Iterable,Map,Function1);;Argument[0].Element;Argument[1].Element;taint;generated",
-        "kotlin.collections;CollectionsKt;false;associateWithTo;(Iterable,Map,Function1);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;associateWithTo;(Iterable,Map,Function1);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;component1;(List);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;component2;(List);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;component3;(List);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;component4;(List);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;component5;(List);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;distinct;(Iterable);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;distinctBy;(Iterable,Function1);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;drop;(Iterable,int);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;dropLast;(List,int);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;dropLastWhile;(List,Function1);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;dropWhile;(Iterable,Function1);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;elementAt;(Iterable,int);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;elementAt;(List,int);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;elementAtOrElse;(Iterable,int,Function1);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;elementAtOrElse;(List,int,Function1);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;elementAtOrNull;(Iterable,int);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;elementAtOrNull;(List,int);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;fill;(List,Object);;Argument[1];Argument[0].Element;taint;generated",
-        "kotlin.collections;CollectionsKt;false;filter;(Iterable,Function1);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;filterIndexedTo;(Iterable,Collection,Function2);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;filterIsInstance;(Iterable);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;filterIsInstance;(Iterable,Class);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;filterIsInstanceTo;(Iterable,Collection);;Argument[0].Element;Argument[1].Element;taint;generated",
-        "kotlin.collections;CollectionsKt;false;filterIsInstanceTo;(Iterable,Collection);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;filterIsInstanceTo;(Iterable,Collection);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;filterIsInstanceTo;(Iterable,Collection,Class);;Argument[0].Element;Argument[1].Element;taint;generated",
-        "kotlin.collections;CollectionsKt;false;filterIsInstanceTo;(Iterable,Collection,Class);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;filterIsInstanceTo;(Iterable,Collection,Class);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;filterNot;(Iterable,Function1);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;filterNotNull;(Iterable);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;filterNotNullTo;(Iterable,Collection);;Argument[0].Element;Argument[1].Element;taint;generated",
-        "kotlin.collections;CollectionsKt;false;filterNotNullTo;(Iterable,Collection);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;filterNotNullTo;(Iterable,Collection);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;filterNotTo;(Iterable,Collection,Function1);;Argument[0].Element;Argument[1].Element;taint;generated",
-        "kotlin.collections;CollectionsKt;false;filterNotTo;(Iterable,Collection,Function1);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;filterNotTo;(Iterable,Collection,Function1);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;filterTo;(Iterable,Collection,Function1);;Argument[0].Element;Argument[1].Element;taint;generated",
-        "kotlin.collections;CollectionsKt;false;filterTo;(Iterable,Collection,Function1);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;filterTo;(Iterable,Collection,Function1);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;find;(Iterable,Function1);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;findLast;(Iterable,Function1);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;findLast;(List,Function1);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;first;(Iterable);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;first;(Iterable,Function1);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;first;(List);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;firstNotNullOf;(Iterable,Function1);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;firstNotNullOfOrNull;(Iterable,Function1);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;firstOrNull;(Iterable);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;firstOrNull;(Iterable,Function1);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;firstOrNull;(List);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;flatMapIndexedIterableTo;(Iterable,Collection,Function2);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;flatMapIndexedSequenceTo;(Iterable,Collection,Function2);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;flatMapSequenceTo;(Iterable,Collection,Function1);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;flatMapTo;(Iterable,Collection,Function1);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;flatten;(Iterable);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;fold;(Iterable,Object,Function2);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;foldIndexed;(Iterable,Object,Function3);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;foldRight;(List,Object,Function2);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;foldRightIndexed;(List,Object,Function3);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;getOrElse;(List,int,Function1);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;getOrNull;(List,int);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;groupByTo;(Iterable,Map,Function1);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;groupByTo;(Iterable,Map,Function1,Function1);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;ifEmpty;(Collection,Function0);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;intersect;(Iterable,Iterable);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;iterator;(Iterator);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;joinTo;(Iterable,Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1);;Argument[0].Element;Argument[1];taint;generated",
-        "kotlin.collections;CollectionsKt;false;joinTo;(Iterable,Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;joinTo;(Iterable,Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;joinTo;(Iterable,Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1);;Argument[2];Argument[1];taint;generated",
-        "kotlin.collections;CollectionsKt;false;joinTo;(Iterable,Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1);;Argument[2];ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;joinTo;(Iterable,Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1);;Argument[3];Argument[1];taint;generated",
-        "kotlin.collections;CollectionsKt;false;joinTo;(Iterable,Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1);;Argument[3];ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;joinTo;(Iterable,Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1);;Argument[4];Argument[1];taint;generated",
-        "kotlin.collections;CollectionsKt;false;joinTo;(Iterable,Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1);;Argument[4];ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;joinTo;(Iterable,Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1);;Argument[6];Argument[1];taint;generated",
-        "kotlin.collections;CollectionsKt;false;joinTo;(Iterable,Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1);;Argument[6];ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;joinToString;(Iterable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;joinToString;(Iterable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;joinToString;(Iterable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1);;Argument[2];ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;joinToString;(Iterable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1);;Argument[3];ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;joinToString;(Iterable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1);;Argument[5];ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;last;(Iterable);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;last;(Iterable,Function1);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;last;(List);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;last;(List,Function1);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;lastOrNull;(Iterable);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;lastOrNull;(Iterable,Function1);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;lastOrNull;(List);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;lastOrNull;(List,Function1);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;listOf;(Object);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;listOf;(Object[]);;Argument[0].ArrayElement;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;listOfNotNull;(Object);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;map;(Iterable,Function1);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;mapIndexedNotNullTo;(Iterable,Collection,Function2);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;mapIndexedTo;(Iterable,Collection,Function2);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;mapNotNullTo;(Iterable,Collection,Function1);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;mapTo;(Iterable,Collection,Function1);;Argument[0].Element;Argument[1].Element;taint;generated",
-        "kotlin.collections;CollectionsKt;false;mapTo;(Iterable,Collection,Function1);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;mapTo;(Iterable,Collection,Function1);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;max;(Iterable);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;maxBy;(Iterable,Function1);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;maxByOrNull;(Iterable,Function1);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;maxByOrThrow;(Iterable,Function1);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;maxOfWith;(Iterable,Comparator,Function1);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;maxOfWithOrNull;(Iterable,Comparator,Function1);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;maxOrNull;(Iterable);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;maxOrThrow;(Iterable);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;maxWith;(Iterable,Comparator);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;maxWithOrNull;(Iterable,Comparator);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;maxWithOrThrow;(Iterable,Comparator);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;min;(Iterable);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;minBy;(Iterable,Function1);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;minByOrNull;(Iterable,Function1);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;minByOrThrow;(Iterable,Function1);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;minOfWith;(Iterable,Comparator,Function1);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;minOfWithOrNull;(Iterable,Comparator,Function1);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;minOrNull;(Iterable);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;minOrThrow;(Iterable);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;minWith;(Iterable,Comparator);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;minWithOrNull;(Iterable,Comparator);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;minWithOrThrow;(Iterable,Comparator);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;minus;(Iterable,Iterable);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;minus;(Iterable,Object);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;minus;(Iterable,Object[]);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;minus;(Iterable,Sequence);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;minusElement;(Iterable,Object);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;mutableListOf;(Object[]);;Argument[0].ArrayElement;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;onEach;(Iterable,Function1);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;onEachIndexed;(Iterable,Function2);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;orEmpty;(Collection);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;orEmpty;(List);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;partition;(Iterable,Function1);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;plus;(Collection,Iterable);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;plus;(Collection,Iterable);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;plus;(Collection,Object);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;plus;(Collection,Object);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;plus;(Collection,Object[]);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;plus;(Collection,Object[]);;Argument[1].ArrayElement;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;plus;(Collection,Sequence);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;plus;(Collection,Sequence);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;plus;(Iterable,Iterable);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;plus;(Iterable,Iterable);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;plus;(Iterable,Object);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;plus;(Iterable,Object);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;plus;(Iterable,Object[]);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;plus;(Iterable,Object[]);;Argument[1].ArrayElement;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;plus;(Iterable,Sequence);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;plus;(Iterable,Sequence);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;plusAssign;(Collection,Iterable);;Argument[1].Element;Argument[0].Element;taint;generated",
-        "kotlin.collections;CollectionsKt;false;plusAssign;(Collection,Object);;Argument[1];Argument[0].Element;taint;generated",
-        "kotlin.collections;CollectionsKt;false;plusAssign;(Collection,Object[]);;Argument[1].ArrayElement;Argument[0].Element;taint;generated",
-        "kotlin.collections;CollectionsKt;false;plusAssign;(Collection,Sequence);;Argument[1];Argument[0].Element;taint;generated",
-        "kotlin.collections;CollectionsKt;false;plusElement;(Collection,Object);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;plusElement;(Collection,Object);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;plusElement;(Iterable,Object);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;plusElement;(Iterable,Object);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;random;(Collection);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;random;(Collection,Random);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;randomOrNull;(Collection);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;randomOrNull;(Collection,Random);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;reduce;(Iterable,Function2);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;reduceIndexed;(Iterable,Function3);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;reduceIndexedOrNull;(Iterable,Function3);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;reduceOrNull;(Iterable,Function2);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;reduceRight;(List,Function2);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;reduceRightIndexed;(List,Function3);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;reduceRightIndexedOrNull;(List,Function3);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;reduceRightOrNull;(List,Function2);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;remove;(List,int);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;removeFirst;(List);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;removeFirstOrNull;(List);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;removeLast;(List);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;removeLastOrNull;(List);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;requireNoNulls;(Iterable);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;requireNoNulls;(List);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;reversed;(Iterable);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;runningFold;(Iterable,Object,Function2);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;runningFoldIndexed;(Iterable,Object,Function3);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;scan;(Iterable,Object,Function2);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;scanIndexed;(Iterable,Object,Function3);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;shuffled;(Iterable);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;shuffled;(Iterable,Random);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;single;(Iterable);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;single;(Iterable,Function1);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;single;(List);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;singleOrNull;(Iterable);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;singleOrNull;(Iterable,Function1);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;singleOrNull;(List);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;slice;(List,IntRange);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;slice;(List,Iterable);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;sorted;(Iterable);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;sortedBy;(Iterable,Function1);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;sortedByDescending;(Iterable,Function1);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;sortedDescending;(Iterable);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;sortedWith;(Iterable,Comparator);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;subtract;(Iterable,Iterable);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;take;(Iterable,int);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;takeLast;(List,int);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;takeLastWhile;(List,Function1);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;takeWhile;(Iterable,Function1);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;toCollection;(Iterable,Collection);;Argument[0].Element;Argument[1].Element;taint;generated",
-        "kotlin.collections;CollectionsKt;false;toCollection;(Iterable,Collection);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;toCollection;(Iterable,Collection);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;toHashSet;(Iterable);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;toList;(Enumeration);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;toList;(Iterable);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;toMutableList;(Collection);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;toMutableList;(Iterable);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;toMutableSet;(Iterable);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;toSet;(Iterable);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;toSortedSet;(Iterable);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;toSortedSet;(Iterable,Comparator);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;union;(Iterable,Iterable);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;union;(Iterable,Iterable);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;unzip;(Iterable);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;withIndex;(Iterator);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;zip;(Iterable,Iterable);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;zip;(Iterable,Iterable);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;zip;(Iterable,Iterable,Function2);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;zip;(Iterable,Iterable,Function2);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;zip;(Iterable,Object[]);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;zip;(Iterable,Object[]);;Argument[1].ArrayElement;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;zip;(Iterable,Object[],Function2);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;zip;(Iterable,Object[],Function2);;Argument[1].ArrayElement;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;zipWithNext;(Iterable);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;CollectionsKt;false;zipWithNext;(Iterable,Function2);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;GroupingKt;false;aggregateTo;(Grouping,Map,Function4);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;GroupingKt;false;eachCountTo;(Grouping,Map);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;GroupingKt;false;foldTo;(Grouping,Map,Function2,Function3);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;GroupingKt;false;foldTo;(Grouping,Map,Object,Function2);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;GroupingKt;false;reduceTo;(Grouping,Map,Function3);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;IndexedValue;false;IndexedValue;(int,Object);;Argument[1];Argument[-1];taint;generated",
-        "kotlin.collections;IndexedValue;false;component2;();;Argument[-1];ReturnValue;taint;generated",
-        "kotlin.collections;IndexedValue;false;copy;(int,Object);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.collections;IndexedValue;false;getValue;();;Argument[-1];ReturnValue;taint;generated",
-        "kotlin.collections;IndexedValue;false;toString;();;Argument[-1];ReturnValue;taint;generated",
-        "kotlin.collections;MapAccessorsKt;false;getValue;(Map,Object,KProperty);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;MapAccessorsKt;false;getVar;(Map,Object,KProperty);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;MapAccessorsKt;false;setValue;(Map,Object,KProperty,Object);;Argument[2];Argument[0].Element;taint;generated",
-        "kotlin.collections;MapAccessorsKt;false;setValue;(Map,Object,KProperty,Object);;Argument[3];Argument[0].Element;taint;generated",
-        "kotlin.collections;MapsKt;false;asIterable;(Map);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;MapsKt;false;component1;(Entry);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;MapsKt;false;component2;(Entry);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;MapsKt;false;filter;(Map,Function1);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;MapsKt;false;filterKeys;(Map,Function1);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;MapsKt;false;filterNot;(Map,Function1);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;MapsKt;false;filterNotTo;(Map,Map,Function1);;Argument[0].Element;Argument[1].Element;taint;generated",
-        "kotlin.collections;MapsKt;false;filterNotTo;(Map,Map,Function1);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;MapsKt;false;filterNotTo;(Map,Map,Function1);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;MapsKt;false;filterTo;(Map,Map,Function1);;Argument[0].Element;Argument[1].Element;taint;generated",
-        "kotlin.collections;MapsKt;false;filterTo;(Map,Map,Function1);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;MapsKt;false;filterTo;(Map,Map,Function1);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;MapsKt;false;filterValues;(Map,Function1);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;MapsKt;false;firstNotNullOf;(Map,Function1);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;MapsKt;false;firstNotNullOfOrNull;(Map,Function1);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;MapsKt;false;flatMapSequenceTo;(Map,Collection,Function1);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;MapsKt;false;flatMapTo;(Map,Collection,Function1);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;MapsKt;false;get;(Map,Object);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;MapsKt;false;getOrElse;(Map,Object,Function0);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;MapsKt;false;getOrPut;(ConcurrentMap,Object,Function0);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;MapsKt;false;getOrPut;(Map,Object,Function0);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;MapsKt;false;getOrPut;(Map,Object,Function0);;Argument[1];Argument[0].Element;taint;generated",
-        "kotlin.collections;MapsKt;false;getValue;(Map,Object);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;MapsKt;false;ifEmpty;(Map,Function0);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;MapsKt;false;iterator;(Map);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;MapsKt;false;map;(Map,Function1);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;MapsKt;false;mapKeys;(Map,Function1);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;MapsKt;false;mapKeysTo;(Map,Map,Function1);;Argument[0].Element;Argument[1].Element;taint;generated",
-        "kotlin.collections;MapsKt;false;mapKeysTo;(Map,Map,Function1);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;MapsKt;false;mapKeysTo;(Map,Map,Function1);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;MapsKt;false;mapNotNullTo;(Map,Collection,Function1);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;MapsKt;false;mapOf;(Pair);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.collections;MapsKt;false;mapTo;(Map,Collection,Function1);;Argument[0].Element;Argument[1].Element;taint;generated",
-        "kotlin.collections;MapsKt;false;mapTo;(Map,Collection,Function1);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;MapsKt;false;mapTo;(Map,Collection,Function1);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;MapsKt;false;mapValues;(Map,Function1);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;MapsKt;false;mapValuesTo;(Map,Map,Function1);;Argument[0].Element;Argument[1].Element;taint;generated",
-        "kotlin.collections;MapsKt;false;mapValuesTo;(Map,Map,Function1);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;MapsKt;false;mapValuesTo;(Map,Map,Function1);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;MapsKt;false;maxBy;(Map,Function1);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;MapsKt;false;maxByOrNull;(Map,Function1);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;MapsKt;false;maxByOrThrow;(Map,Function1);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;MapsKt;false;maxOfWith;(Map,Comparator,Function1);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;MapsKt;false;maxOfWithOrNull;(Map,Comparator,Function1);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;MapsKt;false;maxWith;(Map,Comparator);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;MapsKt;false;maxWithOrNull;(Map,Comparator);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;MapsKt;false;maxWithOrThrow;(Map,Comparator);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;MapsKt;false;minBy;(Map,Function1);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;MapsKt;false;minByOrNull;(Map,Function1);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;MapsKt;false;minByOrThrow;(Map,Function1);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;MapsKt;false;minOfWith;(Map,Comparator,Function1);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;MapsKt;false;minOfWithOrNull;(Map,Comparator,Function1);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;MapsKt;false;minWith;(Map,Comparator);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;MapsKt;false;minWithOrNull;(Map,Comparator);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;MapsKt;false;minWithOrThrow;(Map,Comparator);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;MapsKt;false;minus;(Map,Iterable);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;MapsKt;false;minus;(Map,Object);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;MapsKt;false;minus;(Map,Object[]);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;MapsKt;false;minus;(Map,Sequence);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;MapsKt;false;mutableIterator;(Map);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;MapsKt;false;onEach;(Map,Function1);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;MapsKt;false;onEachIndexed;(Map,Function2);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;MapsKt;false;orEmpty;(Map);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;MapsKt;false;plus;(Map,Iterable);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;MapsKt;false;plus;(Map,Iterable);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;MapsKt;false;plus;(Map,Map);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;MapsKt;false;plus;(Map,Pair);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;MapsKt;false;plus;(Map,Pair);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.collections;MapsKt;false;plus;(Map,Pair[]);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;MapsKt;false;plus;(Map,Pair[]);;Argument[1].ArrayElement;ReturnValue;taint;generated",
-        "kotlin.collections;MapsKt;false;plus;(Map,Sequence);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;MapsKt;false;plusAssign;(Map,Iterable);;Argument[1].Element;Argument[0].Element;taint;generated",
-        "kotlin.collections;MapsKt;false;plusAssign;(Map,Map);;Argument[1].Element;Argument[0].Element;taint;generated",
-        "kotlin.collections;MapsKt;false;plusAssign;(Map,Pair);;Argument[1];Argument[0].Element;taint;generated",
-        "kotlin.collections;MapsKt;false;plusAssign;(Map,Sequence);;Argument[1];Argument[0].Element;taint;generated",
-        "kotlin.collections;MapsKt;false;putAll;(Map,Iterable);;Argument[1].Element;Argument[0].Element;taint;generated",
-        "kotlin.collections;MapsKt;false;putAll;(Map,Sequence);;Argument[1];Argument[0].Element;taint;generated",
-        "kotlin.collections;MapsKt;false;remove;(Map,Object);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;MapsKt;false;set;(Map,Object,Object);;Argument[1];Argument[0].Element;taint;generated",
-        "kotlin.collections;MapsKt;false;set;(Map,Object,Object);;Argument[2];Argument[0].Element;taint;generated",
-        "kotlin.collections;MapsKt;false;toList;(Map);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;MapsKt;false;toMap;(Iterable);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;MapsKt;false;toMap;(Iterable,Map);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;MapsKt;false;toMap;(Map);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;MapsKt;false;toMap;(Map,Map);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;MapsKt;false;toMap;(Pair[]);;Argument[0].ArrayElement;ReturnValue;taint;generated",
-        "kotlin.collections;MapsKt;false;toMap;(Pair[],Map);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;MapsKt;false;toMap;(Sequence,Map);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;MapsKt;false;toMutableMap;(Map);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;MapsKt;false;toPair;(Entry);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;MapsKt;false;toSortedMap;(Map);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;MapsKt;false;withDefault;(Map,Function1);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;MapsKt;false;withDefault;(Map,Function1);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.collections;MapsKt;false;withDefaultMutable;(Map,Function1);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;MapsKt;false;withDefaultMutable;(Map,Function1);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.collections;SetsKt;false;minus;(Set,Iterable);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;SetsKt;false;minus;(Set,Object);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;SetsKt;false;minus;(Set,Object[]);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;SetsKt;false;minus;(Set,Sequence);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;SetsKt;false;minusElement;(Set,Object);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;SetsKt;false;orEmpty;(Set);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;SetsKt;false;plus;(Set,Iterable);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;SetsKt;false;plus;(Set,Iterable);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;SetsKt;false;plus;(Set,Object);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;SetsKt;false;plus;(Set,Object);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.collections;SetsKt;false;plus;(Set,Object[]);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;SetsKt;false;plus;(Set,Object[]);;Argument[1].ArrayElement;ReturnValue;taint;generated",
-        "kotlin.collections;SetsKt;false;plus;(Set,Sequence);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;SetsKt;false;plus;(Set,Sequence);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.collections;SetsKt;false;plusElement;(Set,Object);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;SetsKt;false;plusElement;(Set,Object);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.collections;SetsKt;false;setOf;(Object);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.collections;SetsKt;false;setOf;(Object[]);;Argument[0].ArrayElement;ReturnValue;taint;generated",
-        "kotlin.collections;SetsKt;false;setOfNotNull;(Object);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.collections;UArraysKt;false;asByteArray;(UByteArray);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;UArraysKt;false;asUByteArray;(byte[]);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.collections;UArraysKt;false;associateWithTo;(UByteArray,Map,Function1);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;UArraysKt;false;associateWithTo;(UIntArray,Map,Function1);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;UArraysKt;false;associateWithTo;(ULongArray,Map,Function1);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;UArraysKt;false;associateWithTo;(UShortArray,Map,Function1);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;UArraysKt;false;contentToString;(UByteArray);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;UArraysKt;false;contentToString;(UIntArray);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;UArraysKt;false;contentToString;(ULongArray);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;UArraysKt;false;contentToString;(UShortArray);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;UArraysKt;false;copyInto;(UByteArray,UByteArray,int,int,int);;Argument[0].Element;Argument[1].Element;taint;generated",
-        "kotlin.collections;UArraysKt;false;copyInto;(UByteArray,UByteArray,int,int,int);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;UArraysKt;false;copyInto;(UByteArray,UByteArray,int,int,int);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;UArraysKt;false;copyInto;(UIntArray,UIntArray,int,int,int);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;UArraysKt;false;copyInto;(ULongArray,ULongArray,int,int,int);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;UArraysKt;false;copyInto;(UShortArray,UShortArray,int,int,int);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;UArraysKt;false;copyOf;(UByteArray);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;UArraysKt;false;copyOf;(UByteArray,int);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;UArraysKt;false;copyOfRange;(UByteArray,int,int);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;UArraysKt;false;drop;(UByteArray,int);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;UArraysKt;false;drop;(UIntArray,int);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;UArraysKt;false;drop;(ULongArray,int);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;UArraysKt;false;drop;(UShortArray,int);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;UArraysKt;false;dropLast;(UByteArray,int);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;UArraysKt;false;dropLast;(UIntArray,int);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;UArraysKt;false;dropLast;(ULongArray,int);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;UArraysKt;false;dropLast;(UShortArray,int);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;UArraysKt;false;dropLastWhile;(UByteArray,Function1);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;UArraysKt;false;dropLastWhile;(UIntArray,Function1);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;UArraysKt;false;dropLastWhile;(ULongArray,Function1);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;UArraysKt;false;dropLastWhile;(UShortArray,Function1);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;UArraysKt;false;filterIndexedTo;(UByteArray,Collection,Function2);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;UArraysKt;false;filterIndexedTo;(UIntArray,Collection,Function2);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;UArraysKt;false;filterIndexedTo;(ULongArray,Collection,Function2);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;UArraysKt;false;filterIndexedTo;(UShortArray,Collection,Function2);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;UArraysKt;false;filterNotTo;(UByteArray,Collection,Function1);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;UArraysKt;false;filterNotTo;(UIntArray,Collection,Function1);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;UArraysKt;false;filterNotTo;(ULongArray,Collection,Function1);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;UArraysKt;false;filterNotTo;(UShortArray,Collection,Function1);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;UArraysKt;false;filterTo;(UByteArray,Collection,Function1);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;UArraysKt;false;filterTo;(UIntArray,Collection,Function1);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;UArraysKt;false;filterTo;(ULongArray,Collection,Function1);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;UArraysKt;false;filterTo;(UShortArray,Collection,Function1);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;UArraysKt;false;flatMapIndexedTo;(UByteArray,Collection,Function2);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;UArraysKt;false;flatMapIndexedTo;(UIntArray,Collection,Function2);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;UArraysKt;false;flatMapIndexedTo;(ULongArray,Collection,Function2);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;UArraysKt;false;flatMapIndexedTo;(UShortArray,Collection,Function2);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;UArraysKt;false;flatMapTo;(UByteArray,Collection,Function1);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;UArraysKt;false;flatMapTo;(UIntArray,Collection,Function1);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;UArraysKt;false;flatMapTo;(ULongArray,Collection,Function1);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;UArraysKt;false;flatMapTo;(UShortArray,Collection,Function1);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;UArraysKt;false;fold;(UByteArray,Object,Function2);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.collections;UArraysKt;false;fold;(UIntArray,Object,Function2);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.collections;UArraysKt;false;fold;(ULongArray,Object,Function2);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.collections;UArraysKt;false;fold;(UShortArray,Object,Function2);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.collections;UArraysKt;false;foldIndexed;(UByteArray,Object,Function3);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.collections;UArraysKt;false;foldIndexed;(UIntArray,Object,Function3);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.collections;UArraysKt;false;foldIndexed;(ULongArray,Object,Function3);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.collections;UArraysKt;false;foldIndexed;(UShortArray,Object,Function3);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.collections;UArraysKt;false;foldRight;(UByteArray,Object,Function2);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.collections;UArraysKt;false;foldRight;(UIntArray,Object,Function2);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.collections;UArraysKt;false;foldRight;(ULongArray,Object,Function2);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.collections;UArraysKt;false;foldRight;(UShortArray,Object,Function2);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.collections;UArraysKt;false;foldRightIndexed;(UByteArray,Object,Function3);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.collections;UArraysKt;false;foldRightIndexed;(UIntArray,Object,Function3);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.collections;UArraysKt;false;foldRightIndexed;(ULongArray,Object,Function3);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.collections;UArraysKt;false;foldRightIndexed;(UShortArray,Object,Function3);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.collections;UArraysKt;false;groupByTo;(UByteArray,Map,Function1);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;UArraysKt;false;groupByTo;(UByteArray,Map,Function1,Function1);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;UArraysKt;false;groupByTo;(UIntArray,Map,Function1);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;UArraysKt;false;groupByTo;(UIntArray,Map,Function1,Function1);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;UArraysKt;false;groupByTo;(ULongArray,Map,Function1);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;UArraysKt;false;groupByTo;(ULongArray,Map,Function1,Function1);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;UArraysKt;false;groupByTo;(UShortArray,Map,Function1);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;UArraysKt;false;groupByTo;(UShortArray,Map,Function1,Function1);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;UArraysKt;false;mapIndexedTo;(UByteArray,Collection,Function2);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;UArraysKt;false;mapIndexedTo;(UIntArray,Collection,Function2);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;UArraysKt;false;mapIndexedTo;(ULongArray,Collection,Function2);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;UArraysKt;false;mapIndexedTo;(UShortArray,Collection,Function2);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;UArraysKt;false;mapTo;(UByteArray,Collection,Function1);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;UArraysKt;false;mapTo;(UIntArray,Collection,Function1);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;UArraysKt;false;mapTo;(ULongArray,Collection,Function1);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;UArraysKt;false;mapTo;(UShortArray,Collection,Function1);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;UArraysKt;false;onEach;(UByteArray,Function1);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;UArraysKt;false;onEach;(UIntArray,Function1);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;UArraysKt;false;onEach;(ULongArray,Function1);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;UArraysKt;false;onEach;(UShortArray,Function1);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;UArraysKt;false;onEachIndexed;(UByteArray,Function2);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;UArraysKt;false;onEachIndexed;(UIntArray,Function2);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;UArraysKt;false;onEachIndexed;(ULongArray,Function2);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;UArraysKt;false;onEachIndexed;(UShortArray,Function2);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;UArraysKt;false;plus;(UByteArray,Collection);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;UArraysKt;false;plus;(UByteArray,UByteArray);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;UArraysKt;false;plus;(UByteArray,UByteArray);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.collections;UArraysKt;false;plus;(UByteArray,byte);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;UArraysKt;false;reversed;(UByteArray);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;UArraysKt;false;reversed;(UIntArray);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;UArraysKt;false;reversed;(ULongArray);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;UArraysKt;false;reversed;(UShortArray);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;UArraysKt;false;reversedArray;(UByteArray);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;UArraysKt;false;runningFold;(UByteArray,Object,Function2);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.collections;UArraysKt;false;runningFold;(UIntArray,Object,Function2);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.collections;UArraysKt;false;runningFold;(ULongArray,Object,Function2);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.collections;UArraysKt;false;runningFold;(UShortArray,Object,Function2);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.collections;UArraysKt;false;runningFoldIndexed;(UByteArray,Object,Function3);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.collections;UArraysKt;false;runningFoldIndexed;(UIntArray,Object,Function3);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.collections;UArraysKt;false;runningFoldIndexed;(ULongArray,Object,Function3);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.collections;UArraysKt;false;runningFoldIndexed;(UShortArray,Object,Function3);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.collections;UArraysKt;false;scan;(UByteArray,Object,Function2);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.collections;UArraysKt;false;scan;(UIntArray,Object,Function2);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.collections;UArraysKt;false;scan;(ULongArray,Object,Function2);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.collections;UArraysKt;false;scan;(UShortArray,Object,Function2);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.collections;UArraysKt;false;scanIndexed;(UByteArray,Object,Function3);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.collections;UArraysKt;false;scanIndexed;(UIntArray,Object,Function3);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.collections;UArraysKt;false;scanIndexed;(ULongArray,Object,Function3);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.collections;UArraysKt;false;scanIndexed;(UShortArray,Object,Function3);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.collections;UArraysKt;false;sliceArray;(UByteArray,IntRange);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;UArraysKt;false;sortedArray;(UByteArray);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;UArraysKt;false;sortedArray;(UIntArray);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;UArraysKt;false;sortedArray;(ULongArray);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;UArraysKt;false;sortedArray;(UShortArray);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;UArraysKt;false;sortedArrayDescending;(UByteArray);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;UArraysKt;false;sortedArrayDescending;(UIntArray);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;UArraysKt;false;sortedArrayDescending;(ULongArray);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;UArraysKt;false;sortedArrayDescending;(UShortArray);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;UArraysKt;false;sortedDescending;(UByteArray);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;UArraysKt;false;take;(UByteArray,int);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;UArraysKt;false;take;(UIntArray,int);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;UArraysKt;false;take;(ULongArray,int);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;UArraysKt;false;take;(UShortArray,int);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;UArraysKt;false;takeLast;(UByteArray,int);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;UArraysKt;false;takeLast;(UIntArray,int);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;UArraysKt;false;takeLast;(ULongArray,int);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;UArraysKt;false;takeLast;(UShortArray,int);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;UArraysKt;false;takeLastWhile;(UByteArray,Function1);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;UArraysKt;false;takeLastWhile;(UIntArray,Function1);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;UArraysKt;false;takeLastWhile;(ULongArray,Function1);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;UArraysKt;false;takeLastWhile;(UShortArray,Function1);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;UArraysKt;false;toByteArray;(UByteArray);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.collections;UArraysKt;false;toUByteArray;(byte[]);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.comparisons;ComparisonsKt;false;maxOf;(Comparable,Comparable);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.comparisons;ComparisonsKt;false;maxOf;(Comparable,Comparable);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.comparisons;ComparisonsKt;false;maxOf;(Comparable,Comparable,Comparable);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.comparisons;ComparisonsKt;false;maxOf;(Comparable,Comparable,Comparable);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.comparisons;ComparisonsKt;false;maxOf;(Comparable,Comparable,Comparable);;Argument[2];ReturnValue;taint;generated",
-        "kotlin.comparisons;ComparisonsKt;false;maxOf;(Comparable,Comparable[]);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.comparisons;ComparisonsKt;false;maxOf;(Object,Object,Comparator);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.comparisons;ComparisonsKt;false;maxOf;(Object,Object,Comparator);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.comparisons;ComparisonsKt;false;maxOf;(Object,Object,Object,Comparator);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.comparisons;ComparisonsKt;false;maxOf;(Object,Object,Object,Comparator);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.comparisons;ComparisonsKt;false;maxOf;(Object,Object,Object,Comparator);;Argument[2];ReturnValue;taint;generated",
-        "kotlin.comparisons;ComparisonsKt;false;maxOf;(Object,Object[],Comparator);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.comparisons;ComparisonsKt;false;minOf;(Comparable,Comparable);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.comparisons;ComparisonsKt;false;minOf;(Comparable,Comparable);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.comparisons;ComparisonsKt;false;minOf;(Comparable,Comparable,Comparable);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.comparisons;ComparisonsKt;false;minOf;(Comparable,Comparable,Comparable);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.comparisons;ComparisonsKt;false;minOf;(Comparable,Comparable,Comparable);;Argument[2];ReturnValue;taint;generated",
-        "kotlin.comparisons;ComparisonsKt;false;minOf;(Comparable,Comparable[]);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.comparisons;ComparisonsKt;false;minOf;(Object,Object,Comparator);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.comparisons;ComparisonsKt;false;minOf;(Object,Object,Comparator);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.comparisons;ComparisonsKt;false;minOf;(Object,Object,Object,Comparator);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.comparisons;ComparisonsKt;false;minOf;(Object,Object,Object,Comparator);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.comparisons;ComparisonsKt;false;minOf;(Object,Object,Object,Comparator);;Argument[2];ReturnValue;taint;generated",
-        "kotlin.comparisons;ComparisonsKt;false;minOf;(Object,Object[],Comparator);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.comparisons;ComparisonsKt;false;reversed;(Comparator);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.coroutines.intrinsics;IntrinsicsKt;false;intercepted;(Continuation);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.coroutines.jvm.internal;CoroutineStackFrame;true;getCallerFrame;();;Argument[-1];ReturnValue;taint;generated",
-        "kotlin.coroutines;AbstractCoroutineContextElement;true;AbstractCoroutineContextElement;(Key);;Argument[0];Argument[-1];taint;generated",
-        "kotlin.coroutines;AbstractCoroutineContextKey;true;AbstractCoroutineContextKey;(Key,Function1);;Argument[0];Argument[-1];taint;generated",
-        "kotlin.coroutines;AbstractCoroutineContextKey;true;AbstractCoroutineContextKey;(Key,Function1);;Argument[1];Argument[-1];taint;generated",
-        "kotlin.coroutines;CoroutineContext$Element;true;getKey;();;Argument[-1];ReturnValue;taint;generated",
-        "kotlin.coroutines;CoroutineContext;true;fold;(Object,Function2);;Argument[-1];ReturnValue;taint;generated",
-        "kotlin.coroutines;CoroutineContext;true;fold;(Object,Function2);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.coroutines;CoroutineContext;true;get;(Key);;Argument[-1];ReturnValue;taint;generated",
-        "kotlin.coroutines;CoroutineContext;true;minusKey;(Key);;Argument[-1];ReturnValue;taint;generated",
-        "kotlin.coroutines;CoroutineContext;true;minusKey;(Key);;Argument[-1];ReturnValue;value;generated",
-        "kotlin.coroutines;CoroutineContext;true;plus;(CoroutineContext);;Argument[-1];ReturnValue;taint;generated",
-        "kotlin.coroutines;CoroutineContext;true;plus;(CoroutineContext);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.coroutines;CoroutineContextImplKt;false;getPolymorphicElement;(Element,Key);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.coroutines;CoroutineContextImplKt;false;minusPolymorphicKey;(Element,Key);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.io;AccessDeniedException;false;AccessDeniedException;(File,File,String);;Argument[0];Argument[-1];taint;generated",
-        "kotlin.io;AccessDeniedException;false;AccessDeniedException;(File,File,String);;Argument[1];Argument[-1];taint;generated",
-        "kotlin.io;AccessDeniedException;false;AccessDeniedException;(File,File,String);;Argument[2];Argument[-1];taint;generated",
-        "kotlin.io;ByteStreamsKt;false;buffered;(InputStream,int);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.io;ByteStreamsKt;false;buffered;(OutputStream,int);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.io;ByteStreamsKt;false;bufferedReader;(InputStream,Charset);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.io;ByteStreamsKt;false;byteInputStream;(String,Charset);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.io;ByteStreamsKt;false;copyTo;(InputStream,OutputStream,int);;Argument[0];Argument[1];taint;generated",
-        "kotlin.io;ByteStreamsKt;false;inputStream;(byte[]);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.io;ByteStreamsKt;false;inputStream;(byte[],int,int);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.io;ByteStreamsKt;false;readBytes;(InputStream);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.io;ByteStreamsKt;false;readBytes;(InputStream,int);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.io;ByteStreamsKt;false;reader;(InputStream,Charset);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.io;CloseableKt;false;use;(Closeable,Function1);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.io;FileAlreadyExistsException;false;FileAlreadyExistsException;(File,File,String);;Argument[0];Argument[-1];taint;generated",
-        "kotlin.io;FileAlreadyExistsException;false;FileAlreadyExistsException;(File,File,String);;Argument[1];Argument[-1];taint;generated",
-        "kotlin.io;FileAlreadyExistsException;false;FileAlreadyExistsException;(File,File,String);;Argument[2];Argument[-1];taint;generated",
-        "kotlin.io;FileSystemException;true;FileSystemException;(File,File,String);;Argument[0];Argument[-1];taint;generated",
-        "kotlin.io;FileSystemException;true;FileSystemException;(File,File,String);;Argument[1];Argument[-1];taint;generated",
-        "kotlin.io;FileSystemException;true;FileSystemException;(File,File,String);;Argument[2];Argument[-1];taint;generated",
-        "kotlin.io;FileSystemException;true;getFile;();;Argument[-1];ReturnValue;taint;generated",
-        "kotlin.io;FileSystemException;true;getOther;();;Argument[-1];ReturnValue;taint;generated",
-        "kotlin.io;FileSystemException;true;getReason;();;Argument[-1];ReturnValue;taint;generated",
-        "kotlin.io;FileTreeWalk;false;maxDepth;(int);;Argument[-1];ReturnValue;taint;generated",
-        "kotlin.io;FileTreeWalk;false;onEnter;(Function1);;Argument[-1];ReturnValue;taint;generated",
-        "kotlin.io;FileTreeWalk;false;onEnter;(Function1);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.io;FileTreeWalk;false;onFail;(Function2);;Argument[-1];ReturnValue;taint;generated",
-        "kotlin.io;FileTreeWalk;false;onFail;(Function2);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.io;FileTreeWalk;false;onLeave;(Function1);;Argument[-1];ReturnValue;taint;generated",
-        "kotlin.io;FileTreeWalk;false;onLeave;(Function1);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.io;FilesKt;false;copyTo;(File,File,boolean,int);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.io;FilesKt;false;relativeToOrSelf;(File,File);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.io;FilesKt;false;resolve;(File,File);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.io;FilesKt;false;resolve;(File,String);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.io;FilesKt;false;resolveSibling;(File,File);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.io;FilesKt;false;resolveSibling;(File,String);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.io;FilesKt;false;walk;(File,FileWalkDirection);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.io;FilesKt;false;walkBottomUp;(File);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.io;FilesKt;false;walkTopDown;(File);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.io;NoSuchFileException;false;NoSuchFileException;(File,File,String);;Argument[0];Argument[-1];taint;generated",
-        "kotlin.io;NoSuchFileException;false;NoSuchFileException;(File,File,String);;Argument[1];Argument[-1];taint;generated",
-        "kotlin.io;NoSuchFileException;false;NoSuchFileException;(File,File,String);;Argument[2];Argument[-1];taint;generated",
-        "kotlin.io;TextStreamsKt;false;buffered;(Reader,int);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.io;TextStreamsKt;false;buffered;(Writer,int);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.io;TextStreamsKt;false;copyTo;(Reader,Writer,int);;Argument[0];Argument[1];taint;generated",
-        "kotlin.io;TextStreamsKt;false;forEachLine;(Reader,Function1);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.io;TextStreamsKt;false;lineSequence;(BufferedReader);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.io;TextStreamsKt;false;readText;(Reader);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.io;TextStreamsKt;false;reader;(String);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.io;TextStreamsKt;false;useLines;(Reader,Function1);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.jvm.internal;AdaptedFunctionReference;true;AdaptedFunctionReference;(int,Class,String,String,int);;Argument[2];Argument[-1];taint;generated",
-        "kotlin.jvm.internal;AdaptedFunctionReference;true;AdaptedFunctionReference;(int,Class,String,String,int);;Argument[3];Argument[-1];taint;generated",
-        "kotlin.jvm.internal;AdaptedFunctionReference;true;AdaptedFunctionReference;(int,Object,Class,String,String,int);;Argument[1];Argument[-1];taint;generated",
-        "kotlin.jvm.internal;AdaptedFunctionReference;true;AdaptedFunctionReference;(int,Object,Class,String,String,int);;Argument[3];Argument[-1];taint;generated",
-        "kotlin.jvm.internal;AdaptedFunctionReference;true;AdaptedFunctionReference;(int,Object,Class,String,String,int);;Argument[4];Argument[-1];taint;generated",
-        "kotlin.jvm.internal;ArrayIteratorKt;false;iterator;(Object[]);;Argument[0].ArrayElement;ReturnValue;taint;generated",
-        "kotlin.jvm.internal;ArrayIteratorsKt;false;iterator;(byte[]);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.jvm.internal;ArrayIteratorsKt;false;iterator;(char[]);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.jvm.internal;ByteSpreadBuilder;false;toArray;();;Argument[-1];ReturnValue;taint;generated",
-        "kotlin.jvm.internal;CallableReference;true;compute;();;Argument[-1];ReturnValue;taint;generated",
-        "kotlin.jvm.internal;CallableReference;true;getBoundReceiver;();;Argument[-1];ReturnValue;taint;generated",
-        "kotlin.jvm.internal;CallableReference;true;getSignature;();;Argument[-1];ReturnValue;taint;generated",
-        "kotlin.jvm.internal;CharSpreadBuilder;false;toArray;();;Argument[-1];ReturnValue;taint;generated",
-        "kotlin.jvm.internal;ClassReference$Companion;false;getClassQualifiedName;(Class);;Argument[-1];ReturnValue;taint;generated",
-        "kotlin.jvm.internal;ClassReference$Companion;false;getClassSimpleName;(Class);;Argument[-1];ReturnValue;taint;generated",
-        "kotlin.jvm.internal;CollectionToArray;false;toArray;(Collection);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.jvm.internal;CollectionToArray;false;toArray;(Collection,Object[]);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin.jvm.internal;FunctionReference;true;FunctionReference;(int,Object);;Argument[1];Argument[-1];taint;generated",
-        "kotlin.jvm.internal;FunctionReference;true;FunctionReference;(int,Object,Class,String,String,int);;Argument[1];Argument[-1];taint;generated",
-        "kotlin.jvm.internal;FunctionReference;true;FunctionReference;(int,Object,Class,String,String,int);;Argument[3];Argument[-1];taint;generated",
-        "kotlin.jvm.internal;FunctionReference;true;FunctionReference;(int,Object,Class,String,String,int);;Argument[4];Argument[-1];taint;generated",
-        "kotlin.jvm.internal;FunctionReference;true;toString;();;Argument[-1];ReturnValue;taint;generated",
-        "kotlin.jvm.internal;FunctionReferenceImpl;true;FunctionReferenceImpl;(int,Class,String,String,int);;Argument[2];Argument[-1];taint;generated",
-        "kotlin.jvm.internal;FunctionReferenceImpl;true;FunctionReferenceImpl;(int,Class,String,String,int);;Argument[3];Argument[-1];taint;generated",
-        "kotlin.jvm.internal;FunctionReferenceImpl;true;FunctionReferenceImpl;(int,KDeclarationContainer,String,String);;Argument[2];Argument[-1];taint;generated",
-        "kotlin.jvm.internal;FunctionReferenceImpl;true;FunctionReferenceImpl;(int,KDeclarationContainer,String,String);;Argument[3];Argument[-1];taint;generated",
-        "kotlin.jvm.internal;FunctionReferenceImpl;true;FunctionReferenceImpl;(int,Object,Class,String,String,int);;Argument[1];Argument[-1];taint;generated",
-        "kotlin.jvm.internal;FunctionReferenceImpl;true;FunctionReferenceImpl;(int,Object,Class,String,String,int);;Argument[3];Argument[-1];taint;generated",
-        "kotlin.jvm.internal;FunctionReferenceImpl;true;FunctionReferenceImpl;(int,Object,Class,String,String,int);;Argument[4];Argument[-1];taint;generated",
-        "kotlin.jvm.internal;Intrinsics;true;stringPlus;(String,Object);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.jvm.internal;Intrinsics;true;stringPlus;(String,Object);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.jvm.internal;MutablePropertyReference0;true;MutablePropertyReference0;(Object);;Argument[0];Argument[-1];taint;generated",
-        "kotlin.jvm.internal;MutablePropertyReference0;true;MutablePropertyReference0;(Object,Class,String,String,int);;Argument[0];Argument[-1];taint;generated",
-        "kotlin.jvm.internal;MutablePropertyReference0;true;MutablePropertyReference0;(Object,Class,String,String,int);;Argument[2];Argument[-1];taint;generated",
-        "kotlin.jvm.internal;MutablePropertyReference0;true;MutablePropertyReference0;(Object,Class,String,String,int);;Argument[3];Argument[-1];taint;generated",
-        "kotlin.jvm.internal;MutablePropertyReference0Impl;true;MutablePropertyReference0Impl;(Class,String,String,int);;Argument[1];Argument[-1];taint;generated",
-        "kotlin.jvm.internal;MutablePropertyReference0Impl;true;MutablePropertyReference0Impl;(Class,String,String,int);;Argument[2];Argument[-1];taint;generated",
-        "kotlin.jvm.internal;MutablePropertyReference0Impl;true;MutablePropertyReference0Impl;(KDeclarationContainer,String,String);;Argument[1];Argument[-1];taint;generated",
-        "kotlin.jvm.internal;MutablePropertyReference0Impl;true;MutablePropertyReference0Impl;(KDeclarationContainer,String,String);;Argument[2];Argument[-1];taint;generated",
-        "kotlin.jvm.internal;MutablePropertyReference0Impl;true;MutablePropertyReference0Impl;(Object,Class,String,String,int);;Argument[0];Argument[-1];taint;generated",
-        "kotlin.jvm.internal;MutablePropertyReference0Impl;true;MutablePropertyReference0Impl;(Object,Class,String,String,int);;Argument[2];Argument[-1];taint;generated",
-        "kotlin.jvm.internal;MutablePropertyReference0Impl;true;MutablePropertyReference0Impl;(Object,Class,String,String,int);;Argument[3];Argument[-1];taint;generated",
-        "kotlin.jvm.internal;MutablePropertyReference1;true;MutablePropertyReference1;(Object);;Argument[0];Argument[-1];taint;generated",
-        "kotlin.jvm.internal;MutablePropertyReference1;true;MutablePropertyReference1;(Object,Class,String,String,int);;Argument[0];Argument[-1];taint;generated",
-        "kotlin.jvm.internal;MutablePropertyReference1;true;MutablePropertyReference1;(Object,Class,String,String,int);;Argument[2];Argument[-1];taint;generated",
-        "kotlin.jvm.internal;MutablePropertyReference1;true;MutablePropertyReference1;(Object,Class,String,String,int);;Argument[3];Argument[-1];taint;generated",
-        "kotlin.jvm.internal;MutablePropertyReference1Impl;true;MutablePropertyReference1Impl;(Class,String,String,int);;Argument[1];Argument[-1];taint;generated",
-        "kotlin.jvm.internal;MutablePropertyReference1Impl;true;MutablePropertyReference1Impl;(Class,String,String,int);;Argument[2];Argument[-1];taint;generated",
-        "kotlin.jvm.internal;MutablePropertyReference1Impl;true;MutablePropertyReference1Impl;(KDeclarationContainer,String,String);;Argument[1];Argument[-1];taint;generated",
-        "kotlin.jvm.internal;MutablePropertyReference1Impl;true;MutablePropertyReference1Impl;(KDeclarationContainer,String,String);;Argument[2];Argument[-1];taint;generated",
-        "kotlin.jvm.internal;MutablePropertyReference1Impl;true;MutablePropertyReference1Impl;(Object,Class,String,String,int);;Argument[0];Argument[-1];taint;generated",
-        "kotlin.jvm.internal;MutablePropertyReference1Impl;true;MutablePropertyReference1Impl;(Object,Class,String,String,int);;Argument[2];Argument[-1];taint;generated",
-        "kotlin.jvm.internal;MutablePropertyReference1Impl;true;MutablePropertyReference1Impl;(Object,Class,String,String,int);;Argument[3];Argument[-1];taint;generated",
-        "kotlin.jvm.internal;MutablePropertyReference2;true;MutablePropertyReference2;(Class,String,String,int);;Argument[1];Argument[-1];taint;generated",
-        "kotlin.jvm.internal;MutablePropertyReference2;true;MutablePropertyReference2;(Class,String,String,int);;Argument[2];Argument[-1];taint;generated",
-        "kotlin.jvm.internal;MutablePropertyReference2Impl;true;MutablePropertyReference2Impl;(Class,String,String,int);;Argument[1];Argument[-1];taint;generated",
-        "kotlin.jvm.internal;MutablePropertyReference2Impl;true;MutablePropertyReference2Impl;(Class,String,String,int);;Argument[2];Argument[-1];taint;generated",
-        "kotlin.jvm.internal;MutablePropertyReference2Impl;true;MutablePropertyReference2Impl;(KDeclarationContainer,String,String);;Argument[1];Argument[-1];taint;generated",
-        "kotlin.jvm.internal;MutablePropertyReference2Impl;true;MutablePropertyReference2Impl;(KDeclarationContainer,String,String);;Argument[2];Argument[-1];taint;generated",
-        "kotlin.jvm.internal;MutablePropertyReference;true;MutablePropertyReference;(Object);;Argument[0];Argument[-1];taint;generated",
-        "kotlin.jvm.internal;MutablePropertyReference;true;MutablePropertyReference;(Object,Class,String,String,int);;Argument[0];Argument[-1];taint;generated",
-        "kotlin.jvm.internal;MutablePropertyReference;true;MutablePropertyReference;(Object,Class,String,String,int);;Argument[2];Argument[-1];taint;generated",
-        "kotlin.jvm.internal;MutablePropertyReference;true;MutablePropertyReference;(Object,Class,String,String,int);;Argument[3];Argument[-1];taint;generated",
-        "kotlin.jvm.internal;PackageReference;false;PackageReference;(Class,String);;Argument[1];Argument[-1];taint;generated",
-        "kotlin.jvm.internal;PrimitiveSpreadBuilder;true;addSpread;(Object);;Argument[0];Argument[-1];taint;generated",
-        "kotlin.jvm.internal;PropertyReference0;true;PropertyReference0;(Object);;Argument[0];Argument[-1];taint;generated",
-        "kotlin.jvm.internal;PropertyReference0;true;PropertyReference0;(Object,Class,String,String,int);;Argument[0];Argument[-1];taint;generated",
-        "kotlin.jvm.internal;PropertyReference0;true;PropertyReference0;(Object,Class,String,String,int);;Argument[2];Argument[-1];taint;generated",
-        "kotlin.jvm.internal;PropertyReference0;true;PropertyReference0;(Object,Class,String,String,int);;Argument[3];Argument[-1];taint;generated",
-        "kotlin.jvm.internal;PropertyReference0Impl;true;PropertyReference0Impl;(Class,String,String,int);;Argument[1];Argument[-1];taint;generated",
-        "kotlin.jvm.internal;PropertyReference0Impl;true;PropertyReference0Impl;(Class,String,String,int);;Argument[2];Argument[-1];taint;generated",
-        "kotlin.jvm.internal;PropertyReference0Impl;true;PropertyReference0Impl;(KDeclarationContainer,String,String);;Argument[1];Argument[-1];taint;generated",
-        "kotlin.jvm.internal;PropertyReference0Impl;true;PropertyReference0Impl;(KDeclarationContainer,String,String);;Argument[2];Argument[-1];taint;generated",
-        "kotlin.jvm.internal;PropertyReference0Impl;true;PropertyReference0Impl;(Object,Class,String,String,int);;Argument[0];Argument[-1];taint;generated",
-        "kotlin.jvm.internal;PropertyReference0Impl;true;PropertyReference0Impl;(Object,Class,String,String,int);;Argument[2];Argument[-1];taint;generated",
-        "kotlin.jvm.internal;PropertyReference0Impl;true;PropertyReference0Impl;(Object,Class,String,String,int);;Argument[3];Argument[-1];taint;generated",
-        "kotlin.jvm.internal;PropertyReference1;true;PropertyReference1;(Object);;Argument[0];Argument[-1];taint;generated",
-        "kotlin.jvm.internal;PropertyReference1;true;PropertyReference1;(Object,Class,String,String,int);;Argument[0];Argument[-1];taint;generated",
-        "kotlin.jvm.internal;PropertyReference1;true;PropertyReference1;(Object,Class,String,String,int);;Argument[2];Argument[-1];taint;generated",
-        "kotlin.jvm.internal;PropertyReference1;true;PropertyReference1;(Object,Class,String,String,int);;Argument[3];Argument[-1];taint;generated",
-        "kotlin.jvm.internal;PropertyReference1Impl;true;PropertyReference1Impl;(Class,String,String,int);;Argument[1];Argument[-1];taint;generated",
-        "kotlin.jvm.internal;PropertyReference1Impl;true;PropertyReference1Impl;(Class,String,String,int);;Argument[2];Argument[-1];taint;generated",
-        "kotlin.jvm.internal;PropertyReference1Impl;true;PropertyReference1Impl;(KDeclarationContainer,String,String);;Argument[1];Argument[-1];taint;generated",
-        "kotlin.jvm.internal;PropertyReference1Impl;true;PropertyReference1Impl;(KDeclarationContainer,String,String);;Argument[2];Argument[-1];taint;generated",
-        "kotlin.jvm.internal;PropertyReference1Impl;true;PropertyReference1Impl;(Object,Class,String,String,int);;Argument[0];Argument[-1];taint;generated",
-        "kotlin.jvm.internal;PropertyReference1Impl;true;PropertyReference1Impl;(Object,Class,String,String,int);;Argument[2];Argument[-1];taint;generated",
-        "kotlin.jvm.internal;PropertyReference1Impl;true;PropertyReference1Impl;(Object,Class,String,String,int);;Argument[3];Argument[-1];taint;generated",
-        "kotlin.jvm.internal;PropertyReference2;true;PropertyReference2;(Class,String,String,int);;Argument[1];Argument[-1];taint;generated",
-        "kotlin.jvm.internal;PropertyReference2;true;PropertyReference2;(Class,String,String,int);;Argument[2];Argument[-1];taint;generated",
-        "kotlin.jvm.internal;PropertyReference2Impl;true;PropertyReference2Impl;(Class,String,String,int);;Argument[1];Argument[-1];taint;generated",
-        "kotlin.jvm.internal;PropertyReference2Impl;true;PropertyReference2Impl;(Class,String,String,int);;Argument[2];Argument[-1];taint;generated",
-        "kotlin.jvm.internal;PropertyReference2Impl;true;PropertyReference2Impl;(KDeclarationContainer,String,String);;Argument[1];Argument[-1];taint;generated",
-        "kotlin.jvm.internal;PropertyReference2Impl;true;PropertyReference2Impl;(KDeclarationContainer,String,String);;Argument[2];Argument[-1];taint;generated",
-        "kotlin.jvm.internal;PropertyReference;true;PropertyReference;(Object);;Argument[0];Argument[-1];taint;generated",
-        "kotlin.jvm.internal;PropertyReference;true;PropertyReference;(Object,Class,String,String,int);;Argument[0];Argument[-1];taint;generated",
-        "kotlin.jvm.internal;PropertyReference;true;PropertyReference;(Object,Class,String,String,int);;Argument[2];Argument[-1];taint;generated",
-        "kotlin.jvm.internal;PropertyReference;true;PropertyReference;(Object,Class,String,String,int);;Argument[3];Argument[-1];taint;generated",
-        "kotlin.jvm.internal;PropertyReference;true;toString;();;Argument[-1];ReturnValue;taint;generated",
-        "kotlin.jvm.internal;Reflection;true;function;(FunctionReference);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.jvm.internal;Reflection;true;getOrCreateKotlinPackage;(Class,String);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.jvm.internal;Reflection;true;mutableCollectionType;(KType);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.jvm.internal;Reflection;true;mutableProperty0;(MutablePropertyReference0);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.jvm.internal;Reflection;true;mutableProperty1;(MutablePropertyReference1);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.jvm.internal;Reflection;true;mutableProperty2;(MutablePropertyReference2);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.jvm.internal;Reflection;true;nothingType;(KType);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.jvm.internal;Reflection;true;nullableTypeOf;(Class,KTypeProjection);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.jvm.internal;Reflection;true;nullableTypeOf;(Class,KTypeProjection,KTypeProjection);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.jvm.internal;Reflection;true;nullableTypeOf;(Class,KTypeProjection,KTypeProjection);;Argument[2];ReturnValue;taint;generated",
-        "kotlin.jvm.internal;Reflection;true;nullableTypeOf;(KClassifier);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.jvm.internal;Reflection;true;platformType;(KType,KType);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.jvm.internal;Reflection;true;platformType;(KType,KType);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.jvm.internal;Reflection;true;property0;(PropertyReference0);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.jvm.internal;Reflection;true;property1;(PropertyReference1);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.jvm.internal;Reflection;true;property2;(PropertyReference2);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.jvm.internal;Reflection;true;setUpperBounds;(KTypeParameter,KType);;Argument[1];Argument[0];taint;generated",
-        "kotlin.jvm.internal;Reflection;true;typeOf;(Class,KTypeProjection);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.jvm.internal;Reflection;true;typeOf;(Class,KTypeProjection,KTypeProjection);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.jvm.internal;Reflection;true;typeOf;(Class,KTypeProjection,KTypeProjection);;Argument[2];ReturnValue;taint;generated",
-        "kotlin.jvm.internal;Reflection;true;typeOf;(KClassifier);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.jvm.internal;Reflection;true;typeParameter;(Object,String,KVariance,boolean);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.jvm.internal;Reflection;true;typeParameter;(Object,String,KVariance,boolean);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.jvm.internal;ReflectionFactory;true;function;(FunctionReference);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.jvm.internal;ReflectionFactory;true;getOrCreateKotlinPackage;(Class,String);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.jvm.internal;ReflectionFactory;true;mutableCollectionType;(KType);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.jvm.internal;ReflectionFactory;true;mutableProperty0;(MutablePropertyReference0);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.jvm.internal;ReflectionFactory;true;mutableProperty1;(MutablePropertyReference1);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.jvm.internal;ReflectionFactory;true;mutableProperty2;(MutablePropertyReference2);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.jvm.internal;ReflectionFactory;true;nothingType;(KType);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.jvm.internal;ReflectionFactory;true;platformType;(KType,KType);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.jvm.internal;ReflectionFactory;true;platformType;(KType,KType);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.jvm.internal;ReflectionFactory;true;property0;(PropertyReference0);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.jvm.internal;ReflectionFactory;true;property1;(PropertyReference1);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.jvm.internal;ReflectionFactory;true;property2;(PropertyReference2);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.jvm.internal;ReflectionFactory;true;setUpperBounds;(KTypeParameter,List);;Argument[1].Element;Argument[0];taint;generated",
-        "kotlin.jvm.internal;ReflectionFactory;true;typeOf;(KClassifier,List,boolean);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.jvm.internal;ReflectionFactory;true;typeOf;(KClassifier,List,boolean);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.jvm.internal;ReflectionFactory;true;typeParameter;(Object,String,KVariance,boolean);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.jvm.internal;ReflectionFactory;true;typeParameter;(Object,String,KVariance,boolean);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.jvm.internal;SpreadBuilder;true;add;(Object);;Argument[0];Argument[-1];taint;generated",
-        "kotlin.jvm.internal;SpreadBuilder;true;addSpread;(Object);;Argument[0];Argument[-1];taint;generated",
-        "kotlin.jvm.internal;SpreadBuilder;true;toArray;(Object[]);;Argument[-1];Argument[0].ArrayElement;taint;generated",
-        "kotlin.jvm.internal;SpreadBuilder;true;toArray;(Object[]);;Argument[-1];ReturnValue;taint;generated",
-        "kotlin.jvm.internal;TypeIntrinsics;true;asMutableCollection;(Object);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.jvm.internal;TypeIntrinsics;true;asMutableCollection;(Object,String);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.jvm.internal;TypeIntrinsics;true;asMutableIterable;(Object);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.jvm.internal;TypeIntrinsics;true;asMutableIterable;(Object,String);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.jvm.internal;TypeIntrinsics;true;asMutableIterator;(Object);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.jvm.internal;TypeIntrinsics;true;asMutableIterator;(Object,String);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.jvm.internal;TypeIntrinsics;true;asMutableList;(Object);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.jvm.internal;TypeIntrinsics;true;asMutableList;(Object,String);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.jvm.internal;TypeIntrinsics;true;asMutableListIterator;(Object);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.jvm.internal;TypeIntrinsics;true;asMutableListIterator;(Object,String);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.jvm.internal;TypeIntrinsics;true;asMutableMap;(Object);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.jvm.internal;TypeIntrinsics;true;asMutableMap;(Object,String);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.jvm.internal;TypeIntrinsics;true;asMutableMapEntry;(Object);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.jvm.internal;TypeIntrinsics;true;asMutableMapEntry;(Object,String);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.jvm.internal;TypeIntrinsics;true;asMutableSet;(Object);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.jvm.internal;TypeIntrinsics;true;asMutableSet;(Object,String);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.jvm.internal;TypeIntrinsics;true;beforeCheckcastToFunctionOfArity;(Object,int);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.jvm.internal;TypeIntrinsics;true;beforeCheckcastToFunctionOfArity;(Object,int,String);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.jvm.internal;TypeIntrinsics;true;castToCollection;(Object);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.jvm.internal;TypeIntrinsics;true;castToIterable;(Object);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.jvm.internal;TypeIntrinsics;true;castToIterator;(Object);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.jvm.internal;TypeIntrinsics;true;castToList;(Object);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.jvm.internal;TypeIntrinsics;true;castToListIterator;(Object);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.jvm.internal;TypeIntrinsics;true;castToMap;(Object);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.jvm.internal;TypeIntrinsics;true;castToMapEntry;(Object);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.jvm.internal;TypeIntrinsics;true;castToSet;(Object);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.jvm.internal;TypeParameterReference;false;TypeParameterReference;(Object,String,KVariance,boolean);;Argument[0];Argument[-1];taint;generated",
-        "kotlin.jvm.internal;TypeParameterReference;false;TypeParameterReference;(Object,String,KVariance,boolean);;Argument[1];Argument[-1];taint;generated",
-        "kotlin.jvm.internal;TypeParameterReference;false;setUpperBounds;(List);;Argument[0].Element;Argument[-1];taint;generated",
-        "kotlin.jvm.internal;TypeReference;false;TypeReference;(KClassifier,List,KType,int);;Argument[0];Argument[-1];taint;generated",
-        "kotlin.jvm.internal;TypeReference;false;TypeReference;(KClassifier,List,KType,int);;Argument[1].Element;Argument[-1];taint;generated",
-        "kotlin.jvm.internal;TypeReference;false;TypeReference;(KClassifier,List,KType,int);;Argument[2];Argument[-1];taint;generated",
-        "kotlin.jvm.internal;TypeReference;false;TypeReference;(KClassifier,List,boolean);;Argument[0];Argument[-1];taint;generated",
-        "kotlin.jvm.internal;TypeReference;false;TypeReference;(KClassifier,List,boolean);;Argument[1].Element;Argument[-1];taint;generated",
-        "kotlin.jvm.internal;TypeReference;false;toString;();;Argument[-1];ReturnValue;taint;generated",
-        "kotlin.properties;ObservableProperty;true;ObservableProperty;(Object);;Argument[0];Argument[-1];taint;generated",
-        "kotlin.random;PlatformRandomKt;false;asJavaRandom;(Random);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.random;PlatformRandomKt;false;asKotlinRandom;(Random);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.random;Random;true;nextBytes;(byte[]);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.random;Random;true;nextBytes;(byte[],int,int);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.random;URandomKt;false;nextUBytes;(Random,UByteArray);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.random;URandomKt;false;nextUBytes;(Random,UByteArray,int,int);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.ranges;CharRange$Companion;false;getEMPTY;();;Argument[-1];ReturnValue;taint;generated",
-        "kotlin.ranges;IntRange$Companion;false;getEMPTY;();;Argument[-1];ReturnValue;taint;generated",
-        "kotlin.ranges;LongRange$Companion;false;getEMPTY;();;Argument[-1];ReturnValue;taint;generated",
-        "kotlin.ranges;RangesKt;false;coerceAtLeast;(Comparable,Comparable);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.ranges;RangesKt;false;coerceAtLeast;(Comparable,Comparable);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.ranges;RangesKt;false;coerceAtMost;(Comparable,Comparable);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.ranges;RangesKt;false;coerceAtMost;(Comparable,Comparable);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.ranges;RangesKt;false;coerceIn;(Comparable,ClosedFloatingPointRange);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.ranges;RangesKt;false;coerceIn;(Comparable,ClosedRange);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.ranges;RangesKt;false;coerceIn;(Comparable,Comparable,Comparable);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.ranges;RangesKt;false;coerceIn;(Comparable,Comparable,Comparable);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.ranges;RangesKt;false;coerceIn;(Comparable,Comparable,Comparable);;Argument[2];ReturnValue;taint;generated",
-        "kotlin.ranges;RangesKt;false;rangeTo;(Comparable,Comparable);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.ranges;RangesKt;false;rangeTo;(Comparable,Comparable);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.ranges;RangesKt;false;rangeUntil;(Comparable,Comparable);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.ranges;RangesKt;false;rangeUntil;(Comparable,Comparable);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.ranges;UIntRange$Companion;false;getEMPTY;();;Argument[-1];ReturnValue;taint;generated",
-        "kotlin.ranges;ULongRange$Companion;false;getEMPTY;();;Argument[-1];ReturnValue;taint;generated",
-        "kotlin.reflect;KClasses;false;cast;(KClass,Object);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.reflect;KClasses;false;safeCast;(KClass,Object);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.reflect;KType;true;getArguments;();;Argument[-1];ReturnValue;taint;generated",
-        "kotlin.reflect;KType;true;getClassifier;();;Argument[-1];ReturnValue;taint;generated",
-        "kotlin.reflect;KTypeParameter;true;getName;();;Argument[-1];ReturnValue;taint;generated",
-        "kotlin.reflect;KTypeParameter;true;getUpperBounds;();;Argument[-1];ReturnValue;taint;generated",
-        "kotlin.reflect;KTypeProjection$Companion;false;contravariant;(KType);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.reflect;KTypeProjection$Companion;false;covariant;(KType);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.reflect;KTypeProjection$Companion;false;invariant;(KType);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.reflect;KTypeProjection;false;KTypeProjection;(KVariance,KType);;Argument[1];Argument[-1];taint;generated",
-        "kotlin.reflect;KTypeProjection;false;component2;();;Argument[-1];ReturnValue;taint;generated",
-        "kotlin.reflect;KTypeProjection;false;contravariant;(KType);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.reflect;KTypeProjection;false;copy;(KVariance,KType);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.reflect;KTypeProjection;false;covariant;(KType);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.reflect;KTypeProjection;false;getType;();;Argument[-1];ReturnValue;taint;generated",
-        "kotlin.reflect;KTypeProjection;false;invariant;(KType);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.reflect;KTypeProjection;false;toString;();;Argument[-1];ReturnValue;taint;generated",
-        "kotlin.reflect;TypesJVMKt;false;getJavaType;(KType);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.reflect;WildcardTypeImpl$Companion;false;getSTAR;();;Argument[-1];ReturnValue;taint;generated",
-        "kotlin.sequences;SequenceScope;true;yieldAll;(Sequence);;Argument[0];Argument[-1];taint;generated",
-        "kotlin.sequences;SequencesKt;false;asSequence;(Sequence);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.sequences;SequencesKt;false;associateBy;(Sequence,Function1);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.sequences;SequencesKt;false;associateByTo;(Sequence,Map,Function1);;Argument[0];Argument[1].Element;taint;generated",
-        "kotlin.sequences;SequencesKt;false;associateByTo;(Sequence,Map,Function1);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.sequences;SequencesKt;false;associateByTo;(Sequence,Map,Function1);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.sequences;SequencesKt;false;associateByTo;(Sequence,Map,Function1,Function1);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.sequences;SequencesKt;false;associateTo;(Sequence,Map,Function1);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.sequences;SequencesKt;false;associateWith;(Sequence,Function1);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.sequences;SequencesKt;false;associateWithTo;(Sequence,Map,Function1);;Argument[0];Argument[1].Element;taint;generated",
-        "kotlin.sequences;SequencesKt;false;associateWithTo;(Sequence,Map,Function1);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.sequences;SequencesKt;false;associateWithTo;(Sequence,Map,Function1);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.sequences;SequencesKt;false;chunked;(Sequence,int,Function1);;Argument[2];ReturnValue;taint;generated",
-        "kotlin.sequences;SequencesKt;false;constrainOnce;(Sequence);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.sequences;SequencesKt;false;distinct;(Sequence);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.sequences;SequencesKt;false;distinctBy;(Sequence,Function1);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.sequences;SequencesKt;false;distinctBy;(Sequence,Function1);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.sequences;SequencesKt;false;drop;(Sequence,int);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.sequences;SequencesKt;false;dropWhile;(Sequence,Function1);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.sequences;SequencesKt;false;dropWhile;(Sequence,Function1);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.sequences;SequencesKt;false;elementAt;(Sequence,int);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.sequences;SequencesKt;false;elementAtOrElse;(Sequence,int,Function1);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.sequences;SequencesKt;false;elementAtOrNull;(Sequence,int);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.sequences;SequencesKt;false;filter;(Sequence,Function1);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.sequences;SequencesKt;false;filter;(Sequence,Function1);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.sequences;SequencesKt;false;filterIndexedTo;(Sequence,Collection,Function2);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.sequences;SequencesKt;false;filterIsInstance;(Sequence);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.sequences;SequencesKt;false;filterIsInstance;(Sequence,Class);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.sequences;SequencesKt;false;filterIsInstanceTo;(Sequence,Collection);;Argument[0];Argument[1].Element;taint;generated",
-        "kotlin.sequences;SequencesKt;false;filterIsInstanceTo;(Sequence,Collection);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.sequences;SequencesKt;false;filterIsInstanceTo;(Sequence,Collection);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.sequences;SequencesKt;false;filterIsInstanceTo;(Sequence,Collection,Class);;Argument[0];Argument[1].Element;taint;generated",
-        "kotlin.sequences;SequencesKt;false;filterIsInstanceTo;(Sequence,Collection,Class);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.sequences;SequencesKt;false;filterIsInstanceTo;(Sequence,Collection,Class);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.sequences;SequencesKt;false;filterNot;(Sequence,Function1);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.sequences;SequencesKt;false;filterNot;(Sequence,Function1);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.sequences;SequencesKt;false;filterNotNull;(Sequence);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.sequences;SequencesKt;false;filterNotNullTo;(Sequence,Collection);;Argument[0];Argument[1].Element;taint;generated",
-        "kotlin.sequences;SequencesKt;false;filterNotNullTo;(Sequence,Collection);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.sequences;SequencesKt;false;filterNotNullTo;(Sequence,Collection);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.sequences;SequencesKt;false;filterNotTo;(Sequence,Collection,Function1);;Argument[0];Argument[1].Element;taint;generated",
-        "kotlin.sequences;SequencesKt;false;filterNotTo;(Sequence,Collection,Function1);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.sequences;SequencesKt;false;filterNotTo;(Sequence,Collection,Function1);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.sequences;SequencesKt;false;filterTo;(Sequence,Collection,Function1);;Argument[0];Argument[1].Element;taint;generated",
-        "kotlin.sequences;SequencesKt;false;filterTo;(Sequence,Collection,Function1);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.sequences;SequencesKt;false;filterTo;(Sequence,Collection,Function1);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.sequences;SequencesKt;false;find;(Sequence,Function1);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.sequences;SequencesKt;false;findLast;(Sequence,Function1);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.sequences;SequencesKt;false;first;(Sequence);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.sequences;SequencesKt;false;first;(Sequence,Function1);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.sequences;SequencesKt;false;firstNotNullOf;(Sequence,Function1);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.sequences;SequencesKt;false;firstNotNullOfOrNull;(Sequence,Function1);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.sequences;SequencesKt;false;firstOrNull;(Sequence);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.sequences;SequencesKt;false;firstOrNull;(Sequence,Function1);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.sequences;SequencesKt;false;flatMap;(Sequence,Function1);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.sequences;SequencesKt;false;flatMap;(Sequence,Function1);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.sequences;SequencesKt;false;flatMapIndexedIterableTo;(Sequence,Collection,Function2);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.sequences;SequencesKt;false;flatMapIndexedSequenceTo;(Sequence,Collection,Function2);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.sequences;SequencesKt;false;flatMapIterable;(Sequence,Function1);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.sequences;SequencesKt;false;flatMapIterable;(Sequence,Function1);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.sequences;SequencesKt;false;flatMapIterableTo;(Sequence,Collection,Function1);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.sequences;SequencesKt;false;flatMapTo;(Sequence,Collection,Function1);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.sequences;SequencesKt;false;flatten;(Sequence);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.sequences;SequencesKt;false;flattenSequenceOfIterable;(Sequence);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.sequences;SequencesKt;false;fold;(Sequence,Object,Function2);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.sequences;SequencesKt;false;foldIndexed;(Sequence,Object,Function3);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.sequences;SequencesKt;false;generateSequence;(Function0);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.sequences;SequencesKt;false;generateSequence;(Function0,Function1);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.sequences;SequencesKt;false;generateSequence;(Function0,Function1);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.sequences;SequencesKt;false;generateSequence;(Object,Function1);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.sequences;SequencesKt;false;groupByTo;(Sequence,Map,Function1);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.sequences;SequencesKt;false;groupByTo;(Sequence,Map,Function1,Function1);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.sequences;SequencesKt;false;joinTo;(Sequence,Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1);;Argument[0];Argument[1];taint;generated",
-        "kotlin.sequences;SequencesKt;false;joinTo;(Sequence,Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.sequences;SequencesKt;false;joinTo;(Sequence,Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.sequences;SequencesKt;false;joinTo;(Sequence,Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1);;Argument[2];Argument[1];taint;generated",
-        "kotlin.sequences;SequencesKt;false;joinTo;(Sequence,Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1);;Argument[2];ReturnValue;taint;generated",
-        "kotlin.sequences;SequencesKt;false;joinTo;(Sequence,Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1);;Argument[3];Argument[1];taint;generated",
-        "kotlin.sequences;SequencesKt;false;joinTo;(Sequence,Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1);;Argument[3];ReturnValue;taint;generated",
-        "kotlin.sequences;SequencesKt;false;joinTo;(Sequence,Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1);;Argument[4];Argument[1];taint;generated",
-        "kotlin.sequences;SequencesKt;false;joinTo;(Sequence,Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1);;Argument[4];ReturnValue;taint;generated",
-        "kotlin.sequences;SequencesKt;false;joinTo;(Sequence,Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1);;Argument[6];Argument[1];taint;generated",
-        "kotlin.sequences;SequencesKt;false;joinTo;(Sequence,Appendable,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1);;Argument[6];ReturnValue;taint;generated",
-        "kotlin.sequences;SequencesKt;false;joinToString;(Sequence,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.sequences;SequencesKt;false;joinToString;(Sequence,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.sequences;SequencesKt;false;joinToString;(Sequence,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1);;Argument[2];ReturnValue;taint;generated",
-        "kotlin.sequences;SequencesKt;false;joinToString;(Sequence,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1);;Argument[3];ReturnValue;taint;generated",
-        "kotlin.sequences;SequencesKt;false;joinToString;(Sequence,CharSequence,CharSequence,CharSequence,int,CharSequence,Function1);;Argument[5];ReturnValue;taint;generated",
-        "kotlin.sequences;SequencesKt;false;last;(Sequence);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.sequences;SequencesKt;false;last;(Sequence,Function1);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.sequences;SequencesKt;false;lastOrNull;(Sequence);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.sequences;SequencesKt;false;lastOrNull;(Sequence,Function1);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.sequences;SequencesKt;false;map;(Sequence,Function1);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.sequences;SequencesKt;false;map;(Sequence,Function1);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.sequences;SequencesKt;false;mapIndexed;(Sequence,Function2);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.sequences;SequencesKt;false;mapIndexed;(Sequence,Function2);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.sequences;SequencesKt;false;mapIndexedNotNull;(Sequence,Function2);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.sequences;SequencesKt;false;mapIndexedNotNull;(Sequence,Function2);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.sequences;SequencesKt;false;mapIndexedNotNullTo;(Sequence,Collection,Function2);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.sequences;SequencesKt;false;mapIndexedTo;(Sequence,Collection,Function2);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.sequences;SequencesKt;false;mapNotNull;(Sequence,Function1);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.sequences;SequencesKt;false;mapNotNull;(Sequence,Function1);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.sequences;SequencesKt;false;mapNotNullTo;(Sequence,Collection,Function1);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.sequences;SequencesKt;false;mapTo;(Sequence,Collection,Function1);;Argument[0];Argument[1].Element;taint;generated",
-        "kotlin.sequences;SequencesKt;false;mapTo;(Sequence,Collection,Function1);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.sequences;SequencesKt;false;mapTo;(Sequence,Collection,Function1);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.sequences;SequencesKt;false;max;(Sequence);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.sequences;SequencesKt;false;maxBy;(Sequence,Function1);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.sequences;SequencesKt;false;maxByOrNull;(Sequence,Function1);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.sequences;SequencesKt;false;maxByOrThrow;(Sequence,Function1);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.sequences;SequencesKt;false;maxOfWith;(Sequence,Comparator,Function1);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.sequences;SequencesKt;false;maxOfWithOrNull;(Sequence,Comparator,Function1);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.sequences;SequencesKt;false;maxOrNull;(Sequence);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.sequences;SequencesKt;false;maxOrThrow;(Sequence);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.sequences;SequencesKt;false;maxWith;(Sequence,Comparator);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.sequences;SequencesKt;false;maxWithOrNull;(Sequence,Comparator);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.sequences;SequencesKt;false;maxWithOrThrow;(Sequence,Comparator);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.sequences;SequencesKt;false;min;(Sequence);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.sequences;SequencesKt;false;minBy;(Sequence,Function1);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.sequences;SequencesKt;false;minByOrNull;(Sequence,Function1);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.sequences;SequencesKt;false;minByOrThrow;(Sequence,Function1);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.sequences;SequencesKt;false;minOfWith;(Sequence,Comparator,Function1);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.sequences;SequencesKt;false;minOfWithOrNull;(Sequence,Comparator,Function1);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.sequences;SequencesKt;false;minOrNull;(Sequence);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.sequences;SequencesKt;false;minOrThrow;(Sequence);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.sequences;SequencesKt;false;minWith;(Sequence,Comparator);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.sequences;SequencesKt;false;minWithOrNull;(Sequence,Comparator);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.sequences;SequencesKt;false;minWithOrThrow;(Sequence,Comparator);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.sequences;SequencesKt;false;minus;(Sequence,Object[]);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.sequences;SequencesKt;false;onEach;(Sequence,Function1);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.sequences;SequencesKt;false;onEachIndexed;(Sequence,Function2);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.sequences;SequencesKt;false;orEmpty;(Sequence);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.sequences;SequencesKt;false;partition;(Sequence,Function1);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.sequences;SequencesKt;false;reduce;(Sequence,Function2);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.sequences;SequencesKt;false;reduceIndexed;(Sequence,Function3);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.sequences;SequencesKt;false;reduceIndexedOrNull;(Sequence,Function3);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.sequences;SequencesKt;false;reduceOrNull;(Sequence,Function2);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.sequences;SequencesKt;false;requireNoNulls;(Sequence);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.sequences;SequencesKt;false;single;(Sequence);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.sequences;SequencesKt;false;single;(Sequence,Function1);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.sequences;SequencesKt;false;singleOrNull;(Sequence);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.sequences;SequencesKt;false;singleOrNull;(Sequence,Function1);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.sequences;SequencesKt;false;take;(Sequence,int);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.sequences;SequencesKt;false;takeWhile;(Sequence,Function1);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.sequences;SequencesKt;false;takeWhile;(Sequence,Function1);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.sequences;SequencesKt;false;toCollection;(Sequence,Collection);;Argument[0];Argument[1].Element;taint;generated",
-        "kotlin.sequences;SequencesKt;false;toCollection;(Sequence,Collection);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.sequences;SequencesKt;false;toCollection;(Sequence,Collection);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.sequences;SequencesKt;false;toHashSet;(Sequence);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.sequences;SequencesKt;false;toList;(Sequence);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.sequences;SequencesKt;false;toMutableList;(Sequence);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.sequences;SequencesKt;false;toMutableSet;(Sequence);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.sequences;SequencesKt;false;toSet;(Sequence);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.sequences;SequencesKt;false;toSortedSet;(Sequence);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.sequences;SequencesKt;false;toSortedSet;(Sequence,Comparator);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.sequences;SequencesKt;false;unzip;(Sequence);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.sequences;SequencesKt;false;windowed;(Sequence,int,int,boolean,Function1);;Argument[4];ReturnValue;taint;generated",
-        "kotlin.sequences;SequencesKt;false;withIndex;(Sequence);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.sequences;SequencesKt;false;zip;(Sequence,Sequence);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.sequences;SequencesKt;false;zip;(Sequence,Sequence);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.sequences;SequencesKt;false;zip;(Sequence,Sequence,Function2);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.sequences;SequencesKt;false;zip;(Sequence,Sequence,Function2);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.sequences;SequencesKt;false;zip;(Sequence,Sequence,Function2);;Argument[2];ReturnValue;taint;generated",
-        "kotlin.text;CharsKt;false;plus;(char,String);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.text;MatchGroup;false;MatchGroup;(String,IntRange);;Argument[0];Argument[-1];taint;generated",
-        "kotlin.text;MatchGroup;false;MatchGroup;(String,IntRange);;Argument[1].Element;Argument[-1];taint;generated",
-        "kotlin.text;MatchGroup;false;component1;();;Argument[-1];ReturnValue;taint;generated",
-        "kotlin.text;MatchGroup;false;component2;();;Argument[-1];ReturnValue;taint;generated",
-        "kotlin.text;MatchGroup;false;copy;(String,IntRange);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.text;MatchGroup;false;copy;(String,IntRange);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.text;MatchGroup;false;getRange;();;Argument[-1];ReturnValue;taint;generated",
-        "kotlin.text;MatchGroup;false;getValue;();;Argument[-1];ReturnValue;taint;generated",
-        "kotlin.text;MatchGroup;false;toString;();;Argument[-1];ReturnValue;taint;generated",
-        "kotlin.text;MatchResult$Destructured;false;component10;();;Argument[-1];ReturnValue;taint;generated",
-        "kotlin.text;MatchResult$Destructured;false;component1;();;Argument[-1];ReturnValue;taint;generated",
-        "kotlin.text;MatchResult$Destructured;false;component2;();;Argument[-1];ReturnValue;taint;generated",
-        "kotlin.text;MatchResult$Destructured;false;component3;();;Argument[-1];ReturnValue;taint;generated",
-        "kotlin.text;MatchResult$Destructured;false;component4;();;Argument[-1];ReturnValue;taint;generated",
-        "kotlin.text;MatchResult$Destructured;false;component5;();;Argument[-1];ReturnValue;taint;generated",
-        "kotlin.text;MatchResult$Destructured;false;component6;();;Argument[-1];ReturnValue;taint;generated",
-        "kotlin.text;MatchResult$Destructured;false;component7;();;Argument[-1];ReturnValue;taint;generated",
-        "kotlin.text;MatchResult$Destructured;false;component8;();;Argument[-1];ReturnValue;taint;generated",
-        "kotlin.text;MatchResult$Destructured;false;component9;();;Argument[-1];ReturnValue;taint;generated",
-        "kotlin.text;MatchResult$Destructured;false;getMatch;();;Argument[-1];ReturnValue;taint;generated",
-        "kotlin.text;MatchResult$Destructured;false;toList;();;Argument[-1];ReturnValue;taint;generated",
-        "kotlin.text;MatchResult;true;getDestructured;();;Argument[-1];ReturnValue;taint;generated",
-        "kotlin.text;MatchResult;true;getGroupValues;();;Argument[-1];ReturnValue;taint;generated",
-        "kotlin.text;MatchResult;true;getGroups;();;Argument[-1];ReturnValue;taint;generated",
-        "kotlin.text;MatchResult;true;next;();;Argument[-1];ReturnValue;taint;generated",
-        "kotlin.text;Regex$Companion;false;escape;(String);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.text;Regex;false;find;(CharSequence,int);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.text;Regex;false;getOptions;();;Argument[-1];ReturnValue;taint;generated",
-        "kotlin.text;Regex;false;matchEntire;(CharSequence);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.text;Regex;false;replace;(CharSequence,Function1);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.text;Regex;false;replace;(CharSequence,String);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.text;Regex;false;replace;(CharSequence,String);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.text;Regex;false;replaceFirst;(CharSequence,String);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.text;Regex;false;replaceFirst;(CharSequence,String);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.text;Regex;false;toPattern;();;Argument[-1];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;String;(StringBuffer);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;String;(StringBuilder);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;String;(byte[]);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;String;(byte[],Charset);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;String;(byte[],int,int);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;String;(byte[],int,int,Charset);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;String;(char[]);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;String;(char[],int,int);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;append;(Appendable,CharSequence[]);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;append;(StringBuilder,Object);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;append;(StringBuilder,Object);;Argument[1];Argument[0];taint;generated",
-        "kotlin.text;StringsKt;false;append;(StringBuilder,Object);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;append;(StringBuilder,Object[]);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;append;(StringBuilder,String[]);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;appendLine;(Appendable);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;appendLine;(Appendable,CharSequence);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;appendLine;(Appendable,CharSequence);;Argument[1];Argument[0];taint;generated",
-        "kotlin.text;StringsKt;false;appendLine;(Appendable,CharSequence);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;appendLine;(Appendable,char);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;appendLine;(StringBuilder);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;appendLine;(StringBuilder,CharSequence);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;appendLine;(StringBuilder,CharSequence);;Argument[1];Argument[0];taint;generated",
-        "kotlin.text;StringsKt;false;appendLine;(StringBuilder,CharSequence);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;appendLine;(StringBuilder,Object);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;appendLine;(StringBuilder,Object);;Argument[1];Argument[0];taint;generated",
-        "kotlin.text;StringsKt;false;appendLine;(StringBuilder,Object);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;appendLine;(StringBuilder,String);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;appendLine;(StringBuilder,String);;Argument[1];Argument[0];taint;generated",
-        "kotlin.text;StringsKt;false;appendLine;(StringBuilder,String);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;appendLine;(StringBuilder,StringBuffer);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;appendLine;(StringBuilder,StringBuffer);;Argument[1];Argument[0];taint;generated",
-        "kotlin.text;StringsKt;false;appendLine;(StringBuilder,StringBuffer);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;appendLine;(StringBuilder,StringBuilder);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;appendLine;(StringBuilder,StringBuilder);;Argument[1];Argument[0];taint;generated",
-        "kotlin.text;StringsKt;false;appendLine;(StringBuilder,StringBuilder);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;appendLine;(StringBuilder,boolean);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;appendLine;(StringBuilder,byte);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;appendLine;(StringBuilder,char);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;appendLine;(StringBuilder,char[]);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;appendLine;(StringBuilder,char[]);;Argument[1];Argument[0];taint;generated",
-        "kotlin.text;StringsKt;false;appendLine;(StringBuilder,char[]);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;appendLine;(StringBuilder,double);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;appendLine;(StringBuilder,float);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;appendLine;(StringBuilder,int);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;appendLine;(StringBuilder,long);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;appendLine;(StringBuilder,short);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;appendRange;(Appendable,CharSequence,int,int);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;appendRange;(Appendable,CharSequence,int,int);;Argument[1];Argument[0];taint;generated",
-        "kotlin.text;StringsKt;false;appendRange;(Appendable,CharSequence,int,int);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;appendRange;(StringBuilder,CharSequence,int,int);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;appendRange;(StringBuilder,CharSequence,int,int);;Argument[1];Argument[0];taint;generated",
-        "kotlin.text;StringsKt;false;appendRange;(StringBuilder,CharSequence,int,int);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;appendRange;(StringBuilder,char[],int,int);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;appendRange;(StringBuilder,char[],int,int);;Argument[1];Argument[0];taint;generated",
-        "kotlin.text;StringsKt;false;appendRange;(StringBuilder,char[],int,int);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;appendln;(Appendable);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;appendln;(Appendable,CharSequence);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;appendln;(Appendable,CharSequence);;Argument[1];Argument[0];taint;generated",
-        "kotlin.text;StringsKt;false;appendln;(Appendable,CharSequence);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;appendln;(Appendable,char);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;appendln;(StringBuilder);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;appendln;(StringBuilder,CharSequence);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;appendln;(StringBuilder,CharSequence);;Argument[1];Argument[0];taint;generated",
-        "kotlin.text;StringsKt;false;appendln;(StringBuilder,CharSequence);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;appendln;(StringBuilder,Object);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;appendln;(StringBuilder,Object);;Argument[1];Argument[0];taint;generated",
-        "kotlin.text;StringsKt;false;appendln;(StringBuilder,Object);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;appendln;(StringBuilder,String);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;appendln;(StringBuilder,String);;Argument[1];Argument[0];taint;generated",
-        "kotlin.text;StringsKt;false;appendln;(StringBuilder,String);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;appendln;(StringBuilder,StringBuffer);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;appendln;(StringBuilder,StringBuffer);;Argument[1];Argument[0];taint;generated",
-        "kotlin.text;StringsKt;false;appendln;(StringBuilder,StringBuffer);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;appendln;(StringBuilder,StringBuilder);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;appendln;(StringBuilder,StringBuilder);;Argument[1];Argument[0];taint;generated",
-        "kotlin.text;StringsKt;false;appendln;(StringBuilder,StringBuilder);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;appendln;(StringBuilder,boolean);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;appendln;(StringBuilder,byte);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;appendln;(StringBuilder,char);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;appendln;(StringBuilder,char[]);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;appendln;(StringBuilder,char[]);;Argument[1];Argument[0];taint;generated",
-        "kotlin.text;StringsKt;false;appendln;(StringBuilder,char[]);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;appendln;(StringBuilder,double);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;appendln;(StringBuilder,float);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;appendln;(StringBuilder,int);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;appendln;(StringBuilder,long);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;appendln;(StringBuilder,short);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;associateByTo;(CharSequence,Map,Function1);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;associateByTo;(CharSequence,Map,Function1,Function1);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;associateTo;(CharSequence,Map,Function1);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;associateWithTo;(CharSequence,Map,Function1);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;capitalize;(String);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;capitalize;(String,Locale);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;clear;(StringBuilder);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;concatToString;(char[]);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;concatToString;(char[],int,int);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;decapitalize;(String);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;decapitalize;(String,Locale);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;decodeToString;(byte[]);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;decodeToString;(byte[],int,int,boolean);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;drop;(CharSequence,int);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;drop;(String,int);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;dropLast;(CharSequence,int);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;dropLast;(String,int);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;dropLastWhile;(CharSequence,Function1);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;dropLastWhile;(String,Function1);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;dropWhile;(CharSequence,Function1);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;dropWhile;(String,Function1);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;encodeToByteArray;(String);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;encodeToByteArray;(String,int,int,boolean);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;filterIndexedTo;(CharSequence,Appendable,Function2);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;filterNotTo;(CharSequence,Appendable,Function1);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;filterTo;(CharSequence,Appendable,Function1);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;findAnyOf;(CharSequence,Collection,int,boolean);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;findLastAnyOf;(CharSequence,Collection,int,boolean);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;flatMapIndexedIterableTo;(CharSequence,Collection,Function2);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;flatMapTo;(CharSequence,Collection,Function1);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;fold;(CharSequence,Object,Function2);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;foldIndexed;(CharSequence,Object,Function3);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;foldRight;(CharSequence,Object,Function2);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;foldRightIndexed;(CharSequence,Object,Function3);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;format;(String,Locale,Object[]);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;format;(String,Locale,Object[]);;Argument[2].ArrayElement;ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;format;(String,Object[]);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;format;(String,Object[]);;Argument[1].ArrayElement;ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;format;(StringCompanionObject,Locale,String,Object[]);;Argument[2];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;format;(StringCompanionObject,Locale,String,Object[]);;Argument[3].ArrayElement;ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;format;(StringCompanionObject,String,Object[]);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;format;(StringCompanionObject,String,Object[]);;Argument[2].ArrayElement;ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;formatNullable;(String,Locale,Object[]);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;formatNullable;(String,Locale,Object[]);;Argument[2].ArrayElement;ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;formatNullable;(StringCompanionObject,Locale,String,Object[]);;Argument[2];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;formatNullable;(StringCompanionObject,Locale,String,Object[]);;Argument[3].ArrayElement;ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;groupByTo;(CharSequence,Map,Function1);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;groupByTo;(CharSequence,Map,Function1,Function1);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;ifBlank;(CharSequence,Function0);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;ifEmpty;(CharSequence,Function0);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;insertRange;(StringBuilder,int,CharSequence,int,int);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;insertRange;(StringBuilder,int,CharSequence,int,int);;Argument[2];Argument[0];taint;generated",
-        "kotlin.text;StringsKt;false;insertRange;(StringBuilder,int,CharSequence,int,int);;Argument[2];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;insertRange;(StringBuilder,int,char[],int,int);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;insertRange;(StringBuilder,int,char[],int,int);;Argument[2];Argument[0];taint;generated",
-        "kotlin.text;StringsKt;false;insertRange;(StringBuilder,int,char[],int,int);;Argument[2];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;intern;(String);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;lineSequence;(CharSequence);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;lines;(CharSequence);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;lowercase;(String);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;lowercase;(String,Locale);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;mapIndexedNotNullTo;(CharSequence,Collection,Function2);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;mapIndexedTo;(CharSequence,Collection,Function2);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;mapNotNullTo;(CharSequence,Collection,Function1);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;mapTo;(CharSequence,Collection,Function1);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;onEach;(CharSequence,Function1);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;onEachIndexed;(CharSequence,Function2);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;orEmpty;(String);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;padEnd;(CharSequence,int,char);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;padStart;(CharSequence,int,char);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;prependIndent;(String,String);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;removePrefix;(CharSequence,CharSequence);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;removePrefix;(String,CharSequence);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;removeRange;(CharSequence,IntRange);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;removeRange;(CharSequence,int,int);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;removeSuffix;(CharSequence,CharSequence);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;removeSuffix;(String,CharSequence);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;removeSurrounding;(CharSequence,CharSequence);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;removeSurrounding;(CharSequence,CharSequence,CharSequence);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;removeSurrounding;(String,CharSequence);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;removeSurrounding;(String,CharSequence,CharSequence);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;repeat;(CharSequence,int);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;replace;(CharSequence,Regex,Function1);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;replace;(CharSequence,Regex,String);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;replace;(CharSequence,Regex,String);;Argument[2];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;replace;(String,char,char,boolean);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;replaceAfter;(String,String,String,String);;Argument[3];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;replaceAfter;(String,char,String,String);;Argument[3];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;replaceAfterLast;(String,String,String,String);;Argument[3];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;replaceAfterLast;(String,char,String,String);;Argument[3];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;replaceBefore;(String,String,String,String);;Argument[3];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;replaceBefore;(String,char,String,String);;Argument[3];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;replaceBeforeLast;(String,String,String,String);;Argument[3];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;replaceBeforeLast;(String,char,String,String);;Argument[3];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;replaceFirst;(CharSequence,Regex,String);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;replaceFirst;(CharSequence,Regex,String);;Argument[2];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;replaceFirst;(String,String,String,boolean);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;replaceFirst;(String,char,char,boolean);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;replaceFirstCharWithChar;(String,Function1);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;replaceFirstCharWithCharSequence;(String,Function1);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;replaceRange;(CharSequence,IntRange,CharSequence);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;replaceRange;(CharSequence,IntRange,CharSequence);;Argument[2];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;replaceRange;(CharSequence,int,int,CharSequence);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;replaceRange;(CharSequence,int,int,CharSequence);;Argument[3];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;reversed;(CharSequence);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;runningFold;(CharSequence,Object,Function2);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;runningFoldIndexed;(CharSequence,Object,Function3);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;scan;(CharSequence,Object,Function2);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;scanIndexed;(CharSequence,Object,Function3);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;setRange;(StringBuilder,int,int,String);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;setRange;(StringBuilder,int,int,String);;Argument[3];Argument[0];taint;generated",
-        "kotlin.text;StringsKt;false;setRange;(StringBuilder,int,int,String);;Argument[3];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;slice;(CharSequence,IntRange);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;slice;(String,IntRange);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;split;(CharSequence,Pattern,int);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;splitToSequence;(CharSequence,String[],boolean,int);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;splitToSequence;(CharSequence,char[],boolean,int);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;subSequence;(CharSequence,IntRange);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;subSequence;(String,int,int);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;substring;(String,IntRange);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;substring;(String,int);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;substring;(String,int,int);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;substringAfter;(String,String,String);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;substringAfter;(String,String,String);;Argument[2];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;substringAfter;(String,char,String);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;substringAfter;(String,char,String);;Argument[2];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;substringAfterLast;(String,String,String);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;substringAfterLast;(String,String,String);;Argument[2];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;substringAfterLast;(String,char,String);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;substringAfterLast;(String,char,String);;Argument[2];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;substringBefore;(String,String,String);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;substringBefore;(String,String,String);;Argument[2];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;substringBefore;(String,char,String);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;substringBefore;(String,char,String);;Argument[2];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;substringBeforeLast;(String,String,String);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;substringBeforeLast;(String,String,String);;Argument[2];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;substringBeforeLast;(String,char,String);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;substringBeforeLast;(String,char,String);;Argument[2];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;take;(CharSequence,int);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;take;(String,int);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;takeLast;(CharSequence,int);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;takeLast;(String,int);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;takeLastWhile;(CharSequence,Function1);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;takeLastWhile;(String,Function1);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;takeWhile;(CharSequence,Function1);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;takeWhile;(String,Function1);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;toByteArray;(String,Charset);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;toCharArray;(String);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;toCharArray;(String,char[],int,int,int);;Argument[0];Argument[1];taint;generated",
-        "kotlin.text;StringsKt;false;toCharArray;(String,char[],int,int,int);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;toCharArray;(String,char[],int,int,int);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;toCharArray;(String,int,int);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;toCharArray;(StringBuilder,char[],int,int,int);;Argument[0];Argument[1];taint;generated",
-        "kotlin.text;StringsKt;false;toCollection;(CharSequence,Collection);;Argument[1].Element;ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;toLowerCase;(String);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;toLowerCase;(String,Locale);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;toRegex;(Pattern);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;toUpperCase;(String);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;toUpperCase;(String,Locale);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;trim;(CharSequence);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;trim;(CharSequence,Function1);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;trim;(CharSequence,char[]);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;trimEnd;(CharSequence);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;trimEnd;(CharSequence,Function1);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;trimEnd;(CharSequence,char[]);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;trimStart;(CharSequence);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;trimStart;(CharSequence,Function1);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;trimStart;(CharSequence,char[]);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;uppercase;(String);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.text;StringsKt;false;uppercase;(String,Locale);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.time;Duration$Companion;false;getINFINITE;();;Argument[-1];ReturnValue;taint;generated",
-        "kotlin.time;Duration$Companion;false;getZERO;();;Argument[-1];ReturnValue;taint;generated",
-        "kotlin.time;Duration;false;div;(double);;Argument[-1];ReturnValue;taint;generated",
-        "kotlin.time;Duration;false;div;(int);;Argument[-1];ReturnValue;taint;generated",
-        "kotlin.time;Duration;false;getAbsoluteValue;();;Argument[-1];ReturnValue;taint;generated",
-        "kotlin.time;Duration;false;minus;(Duration);;Argument[-1];ReturnValue;taint;generated",
-        "kotlin.time;Duration;false;plus;(Duration);;Argument[-1];ReturnValue;value;generated",
-        "kotlin.time;Duration;false;times;(double);;Argument[-1];ReturnValue;taint;generated",
-        "kotlin.time;Duration;false;times;(int);;Argument[-1];ReturnValue;taint;generated",
-        "kotlin.time;DurationKt;false;times;(double,Duration);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.time;DurationKt;false;times;(int,Duration);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.time;TimeMark;true;minus;(Duration);;Argument[-1];ReturnValue;taint;generated",
-        "kotlin.time;TimeMark;true;plus;(Duration);;Argument[-1];ReturnValue;taint;generated",
-        "kotlin.time;TimeMark;true;plus;(Duration);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.time;TimeSource;true;markNow;();;Argument[-1];ReturnValue;taint;generated",
-        "kotlin.time;TimedValue;false;TimedValue;(Object,Duration);;Argument[0];Argument[-1];taint;generated",
-        "kotlin.time;TimedValue;false;TimedValue;(Object,Duration);;Argument[1];Argument[-1];taint;generated",
-        "kotlin.time;TimedValue;false;component1;();;Argument[-1];ReturnValue;taint;generated",
-        "kotlin.time;TimedValue;false;component2;();;Argument[-1];ReturnValue;taint;generated",
-        "kotlin.time;TimedValue;false;copy;(Object,Duration);;Argument[0];ReturnValue;taint;generated",
-        "kotlin.time;TimedValue;false;copy;(Object,Duration);;Argument[1];ReturnValue;taint;generated",
-        "kotlin.time;TimedValue;false;getDuration;();;Argument[-1];ReturnValue;taint;generated",
-        "kotlin.time;TimedValue;false;getValue;();;Argument[-1];ReturnValue;taint;generated",
-        "kotlin.time;TimedValue;false;toString;();;Argument[-1];ReturnValue;taint;generated",
-        "kotlin;DeepRecursiveFunction;false;DeepRecursiveFunction;(SuspendFunction2);;Argument[0];Argument[-1];taint;generated",
-        "kotlin;KotlinVersion$Companion;false;getCURRENT;();;Argument[-1];ReturnValue;taint;generated",
-        "kotlin;LazyKt;false;getValue;(Lazy,Object,KProperty);;Argument[0];ReturnValue;taint;generated",
-        "kotlin;LazyKt;false;lazy;(Function0);;Argument[0];ReturnValue;taint;generated",
-        "kotlin;LazyKt;false;lazy;(LazyThreadSafetyMode,Function0);;Argument[1];ReturnValue;taint;generated",
-        "kotlin;LazyKt;false;lazy;(Object,Function0);;Argument[0];ReturnValue;taint;generated",
-        "kotlin;LazyKt;false;lazy;(Object,Function0);;Argument[1];ReturnValue;taint;generated",
-        "kotlin;LazyKt;false;lazyOf;(Object);;Argument[0];ReturnValue;taint;generated",
-        "kotlin;Pair;false;Pair;(Object,Object);;Argument[0];Argument[-1];taint;generated",
-        "kotlin;Pair;false;Pair;(Object,Object);;Argument[1];Argument[-1];taint;generated",
-        "kotlin;Pair;false;component1;();;Argument[-1];ReturnValue;taint;generated",
-        "kotlin;Pair;false;component2;();;Argument[-1];ReturnValue;taint;generated",
-        "kotlin;Pair;false;copy;(Object,Object);;Argument[0];ReturnValue;taint;generated",
-        "kotlin;Pair;false;copy;(Object,Object);;Argument[1];ReturnValue;taint;generated",
-        "kotlin;Pair;false;getFirst;();;Argument[-1];ReturnValue;taint;generated",
-        "kotlin;Pair;false;getSecond;();;Argument[-1];ReturnValue;taint;generated",
-        "kotlin;Pair;false;toString;();;Argument[-1];ReturnValue;taint;generated",
-        "kotlin;PreconditionsKt;false;checkNotNull;(Object);;Argument[0];ReturnValue;taint;generated",
-        "kotlin;PreconditionsKt;false;checkNotNull;(Object,Function0);;Argument[0];ReturnValue;taint;generated",
-        "kotlin;PreconditionsKt;false;requireNotNull;(Object);;Argument[0];ReturnValue;taint;generated",
-        "kotlin;PreconditionsKt;false;requireNotNull;(Object,Function0);;Argument[0];ReturnValue;taint;generated",
-        "kotlin;Result$Companion;false;failure;(Throwable);;Argument[0];ReturnValue;taint;generated",
-        "kotlin;Result$Companion;false;success;(Object);;Argument[0];ReturnValue;taint;generated",
-        "kotlin;Result;false;exceptionOrNull;();;Argument[-1];ReturnValue;taint;generated",
-        "kotlin;Result;false;getOrNull;();;Argument[-1];ReturnValue;taint;generated",
-        "kotlin;Result;false;toString;();;Argument[-1];ReturnValue;taint;generated",
-        "kotlin;ResultKt;false;fold;(Result,Function1,Function1);;Argument[0];ReturnValue;taint;generated",
-        "kotlin;ResultKt;false;getOrDefault;(Result,Object);;Argument[0];ReturnValue;taint;generated",
-        "kotlin;ResultKt;false;getOrDefault;(Result,Object);;Argument[1];ReturnValue;taint;generated",
-        "kotlin;ResultKt;false;getOrElse;(Result,Function1);;Argument[0];ReturnValue;taint;generated",
-        "kotlin;ResultKt;false;getOrThrow;(Result);;Argument[0];ReturnValue;taint;generated",
-        "kotlin;ResultKt;false;map;(Result,Function1);;Argument[0];ReturnValue;taint;generated",
-        "kotlin;ResultKt;false;mapCatching;(Result,Function1);;Argument[0];ReturnValue;taint;generated",
-        "kotlin;ResultKt;false;onFailure;(Result,Function1);;Argument[0];ReturnValue;taint;generated",
-        "kotlin;ResultKt;false;onSuccess;(Result,Function1);;Argument[0];ReturnValue;taint;generated",
-        "kotlin;ResultKt;false;recover;(Result,Function1);;Argument[0];ReturnValue;taint;generated",
-        "kotlin;ResultKt;false;recoverCatching;(Result,Function1);;Argument[0];ReturnValue;taint;generated",
-        "kotlin;StandardKt;false;also;(Object,Function1);;Argument[0];ReturnValue;taint;generated",
-        "kotlin;StandardKt;false;apply;(Object,Function1);;Argument[0];ReturnValue;taint;generated",
-        "kotlin;StandardKt;false;let;(Object,Function1);;Argument[0];ReturnValue;taint;generated",
-        "kotlin;StandardKt;false;run;(Object,Function1);;Argument[0];ReturnValue;taint;generated",
-        "kotlin;StandardKt;false;takeIf;(Object,Function1);;Argument[0];ReturnValue;taint;generated",
-        "kotlin;StandardKt;false;takeUnless;(Object,Function1);;Argument[0];ReturnValue;taint;generated",
-        "kotlin;StandardKt;false;with;(Object,Function1);;Argument[0];ReturnValue;taint;generated",
-        "kotlin;SuspendKt;false;suspend;(SuspendFunction0);;Argument[0];ReturnValue;taint;generated",
-        "kotlin;Triple;false;Triple;(Object,Object,Object);;Argument[0];Argument[-1];taint;generated",
-        "kotlin;Triple;false;Triple;(Object,Object,Object);;Argument[1];Argument[-1];taint;generated",
-        "kotlin;Triple;false;Triple;(Object,Object,Object);;Argument[2];Argument[-1];taint;generated",
-        "kotlin;Triple;false;component1;();;Argument[-1];ReturnValue;taint;generated",
-        "kotlin;Triple;false;component2;();;Argument[-1];ReturnValue;taint;generated",
-        "kotlin;Triple;false;component3;();;Argument[-1];ReturnValue;taint;generated",
-        "kotlin;Triple;false;copy;(Object,Object,Object);;Argument[0];ReturnValue;taint;generated",
-        "kotlin;Triple;false;copy;(Object,Object,Object);;Argument[1];ReturnValue;taint;generated",
-        "kotlin;Triple;false;copy;(Object,Object,Object);;Argument[2];ReturnValue;taint;generated",
-        "kotlin;Triple;false;getFirst;();;Argument[-1];ReturnValue;taint;generated",
-        "kotlin;Triple;false;getSecond;();;Argument[-1];ReturnValue;taint;generated",
-        "kotlin;Triple;false;getThird;();;Argument[-1];ReturnValue;taint;generated",
-        "kotlin;Triple;false;toString;();;Argument[-1];ReturnValue;taint;generated",
-        "kotlin;TuplesKt;false;to;(Object,Object);;Argument[0];ReturnValue;taint;generated",
-        "kotlin;TuplesKt;false;to;(Object,Object);;Argument[1];ReturnValue;taint;generated",
-        "kotlin;TuplesKt;false;toList;(Pair);;Argument[0];ReturnValue;taint;generated",
-        "kotlin;TuplesKt;false;toList;(Triple);;Argument[0];ReturnValue;taint;generated",
-        "kotlin;UByte;false;toUByte;();;Argument[-1];ReturnValue;value;generated",
-        "kotlin;UByteArrayKt;false;ubyteArrayOf;(UByteArray);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin;UInt;false;toUInt;();;Argument[-1];ReturnValue;value;generated",
-        "kotlin;UIntArrayKt;false;uintArrayOf;(UIntArray);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin;ULong;false;toULong;();;Argument[-1];ReturnValue;value;generated",
-        "kotlin;ULongArrayKt;false;ulongArrayOf;(ULongArray);;Argument[0].Element;ReturnValue;taint;generated",
-        "kotlin;UShort;false;toUShort;();;Argument[-1];ReturnValue;value;generated",
-        "kotlin;UShortArrayKt;false;ushortArrayOf;(UShortArray);;Argument[0].Element;ReturnValue;taint;generated"
-      ]
-  }
-}

From b80829a3a08ed486984dc82eb3b643652347a987 Mon Sep 17 00:00:00 2001
From: Michael Nebel <michaelnebel@github.com>
Date: Wed, 30 Nov 2022 16:18:05 +0100
Subject: [PATCH 0966/1420] Java/Kotlin: Cleanup files needed for inline
 models.

---
 java/ql/lib/semmle/code/java/dataflow/ExternalFlow.qll   | 1 -
 java/ql/lib/semmle/code/java/frameworks/generated.qll    | 9 ---------
 .../java/frameworks/kotlin/NegativeStdLibGenerated.qll   | 7 -------
 .../code/java/frameworks/kotlin/StdLibGenerated.qll      | 7 -------
 .../dataflow/external-models/negativesummaries.expected  | 0
 .../dataflow/external-models/negativesummaries.ql        | 7 -------
 6 files changed, 31 deletions(-)
 delete mode 100644 java/ql/lib/semmle/code/java/frameworks/generated.qll
 delete mode 100644 java/ql/lib/semmle/code/java/frameworks/kotlin/NegativeStdLibGenerated.qll
 delete mode 100644 java/ql/lib/semmle/code/java/frameworks/kotlin/StdLibGenerated.qll
 delete mode 100644 java/ql/test/library-tests/dataflow/external-models/negativesummaries.expected
 delete mode 100644 java/ql/test/library-tests/dataflow/external-models/negativesummaries.ql

diff --git a/java/ql/lib/semmle/code/java/dataflow/ExternalFlow.qll b/java/ql/lib/semmle/code/java/dataflow/ExternalFlow.qll
index b7bb10fd6f8..bc4d3d19de3 100644
--- a/java/ql/lib/semmle/code/java/dataflow/ExternalFlow.qll
+++ b/java/ql/lib/semmle/code/java/dataflow/ExternalFlow.qll
@@ -98,7 +98,6 @@ private module Frameworks {
   private import semmle.code.java.frameworks.apache.Collections
   private import semmle.code.java.frameworks.apache.Lang
   private import semmle.code.java.frameworks.Flexjson
-  private import semmle.code.java.frameworks.generated
   private import semmle.code.java.frameworks.guava.Guava
   private import semmle.code.java.frameworks.jackson.JacksonSerializability
   private import semmle.code.java.frameworks.javaee.jsf.JSFRenderer
diff --git a/java/ql/lib/semmle/code/java/frameworks/generated.qll b/java/ql/lib/semmle/code/java/frameworks/generated.qll
deleted file mode 100644
index cc088532c6d..00000000000
--- a/java/ql/lib/semmle/code/java/frameworks/generated.qll
+++ /dev/null
@@ -1,9 +0,0 @@
-/**
- * A module importing all generated Models as Data models.
- */
-
-import java
-
-private module GeneratedFrameworks {
-  private import kotlin.StdLibGenerated
-}
diff --git a/java/ql/lib/semmle/code/java/frameworks/kotlin/NegativeStdLibGenerated.qll b/java/ql/lib/semmle/code/java/frameworks/kotlin/NegativeStdLibGenerated.qll
deleted file mode 100644
index 9301e4f0c6f..00000000000
--- a/java/ql/lib/semmle/code/java/frameworks/kotlin/NegativeStdLibGenerated.qll
+++ /dev/null
@@ -1,7 +0,0 @@
-/**
- * THIS FILE IS AN AUTO-GENERATED MODELS AS DATA FILE. DO NOT EDIT.
- * Definitions of negative summaries in the Kotlin StdLib @30ce58cea74 framework.
- */
-
-import java
-private import semmle.code.java.dataflow.ExternalFlow
diff --git a/java/ql/lib/semmle/code/java/frameworks/kotlin/StdLibGenerated.qll b/java/ql/lib/semmle/code/java/frameworks/kotlin/StdLibGenerated.qll
deleted file mode 100644
index e4a66f67762..00000000000
--- a/java/ql/lib/semmle/code/java/frameworks/kotlin/StdLibGenerated.qll
+++ /dev/null
@@ -1,7 +0,0 @@
-/**
- * THIS FILE IS AN AUTO-GENERATED MODELS AS DATA FILE. DO NOT EDIT.
- * Definitions of taint steps in the Kotlin StdLib @30ce58cea74 framework.
- */
-
-import java
-private import semmle.code.java.dataflow.ExternalFlow
diff --git a/java/ql/test/library-tests/dataflow/external-models/negativesummaries.expected b/java/ql/test/library-tests/dataflow/external-models/negativesummaries.expected
deleted file mode 100644
index e69de29bb2d..00000000000
diff --git a/java/ql/test/library-tests/dataflow/external-models/negativesummaries.ql b/java/ql/test/library-tests/dataflow/external-models/negativesummaries.ql
deleted file mode 100644
index 32e2c4bc5cc..00000000000
--- a/java/ql/test/library-tests/dataflow/external-models/negativesummaries.ql
+++ /dev/null
@@ -1,7 +0,0 @@
-/**
- * CSV Validation of negative summaries.
- */
-
-import java
-import semmle.code.java.dataflow.ExternalFlow
-import ModelValidation

From 309807796c499edaa954dd5e248164cac48a748b Mon Sep 17 00:00:00 2001
From: Michael Nebel <michaelnebel@github.com>
Date: Thu, 1 Dec 2022 11:01:52 +0100
Subject: [PATCH 0967/1420] Java: Deprecate ModelCsv classes.

---
 java/ql/lib/semmle/code/java/dataflow/ExternalFlow.qll | 8 ++++----
 1 file changed, 4 insertions(+), 4 deletions(-)

diff --git a/java/ql/lib/semmle/code/java/dataflow/ExternalFlow.qll b/java/ql/lib/semmle/code/java/dataflow/ExternalFlow.qll
index bc4d3d19de3..d8377cbb9fd 100644
--- a/java/ql/lib/semmle/code/java/dataflow/ExternalFlow.qll
+++ b/java/ql/lib/semmle/code/java/dataflow/ExternalFlow.qll
@@ -134,7 +134,7 @@ private module Frameworks {
  *
  * Extend this class to add additional source definitions.
  */
-class SourceModelCsv = SourceModelCsvInternal;
+deprecated class SourceModelCsv = SourceModelCsvInternal;
 
 private class SourceModelCsvInternal extends Unit {
   /** Holds if `row` specifies a source definition. */
@@ -148,7 +148,7 @@ private class SourceModelCsvInternal extends Unit {
  *
  * Extend this class to add additional sink definitions.
  */
-class SinkModelCsv = SinkModelCsvInternal;
+deprecated class SinkModelCsv = SinkModelCsvInternal;
 
 private class SinkModelCsvInternal extends Unit {
   /** Holds if `row` specifies a sink definition. */
@@ -162,7 +162,7 @@ private class SinkModelCsvInternal extends Unit {
  *
  * Extend this class to add additional flow summary definitions.
  */
-class SummaryModelCsv = SummaryModelCsvInternal;
+deprecated class SummaryModelCsv = SummaryModelCsvInternal;
 
 private class SummaryModelCsvInternal extends Unit {
   /** Holds if `row` specifies a summary definition. */
@@ -176,7 +176,7 @@ private class SummaryModelCsvInternal extends Unit {
  *
  * Extend this class to add additional negative summary definitions.
  */
-class NegativeSummaryModelCsv = NegativeSummaryModelCsvInternal;
+deprecated class NegativeSummaryModelCsv = NegativeSummaryModelCsvInternal;
 
 private class NegativeSummaryModelCsvInternal extends Unit {
   /** Holds if `row` specifies a negative summary definition. */

From 5e35785fd08c674d51dcad2f0cf4ce947be99c69 Mon Sep 17 00:00:00 2001
From: "github-actions[bot]" <github-actions@github.com>
Date: Fri, 2 Dec 2022 11:37:44 +0000
Subject: [PATCH 0968/1420] Post-release preparation for codeql-cli-2.11.5

---
 cpp/ql/lib/qlpack.yml                         | 2 +-
 cpp/ql/src/qlpack.yml                         | 2 +-
 csharp/ql/campaigns/Solorigate/lib/qlpack.yml | 2 +-
 csharp/ql/campaigns/Solorigate/src/qlpack.yml | 2 +-
 csharp/ql/lib/qlpack.yml                      | 2 +-
 csharp/ql/src/qlpack.yml                      | 2 +-
 go/ql/lib/qlpack.yml                          | 2 +-
 go/ql/src/qlpack.yml                          | 2 +-
 java/ql/lib/qlpack.yml                        | 2 +-
 java/ql/src/qlpack.yml                        | 2 +-
 javascript/ql/lib/qlpack.yml                  | 2 +-
 javascript/ql/src/qlpack.yml                  | 2 +-
 misc/suite-helpers/qlpack.yml                 | 2 +-
 python/ql/lib/qlpack.yml                      | 2 +-
 python/ql/src/qlpack.yml                      | 2 +-
 ruby/ql/lib/qlpack.yml                        | 2 +-
 ruby/ql/src/qlpack.yml                        | 2 +-
 shared/regex/qlpack.yml                       | 2 +-
 shared/ssa/qlpack.yml                         | 2 +-
 shared/typos/qlpack.yml                       | 2 +-
 20 files changed, 20 insertions(+), 20 deletions(-)

diff --git a/cpp/ql/lib/qlpack.yml b/cpp/ql/lib/qlpack.yml
index 94e33167971..585ab2170e5 100644
--- a/cpp/ql/lib/qlpack.yml
+++ b/cpp/ql/lib/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/cpp-all
-version: 0.4.5
+version: 0.4.6-dev
 groups: cpp
 dbscheme: semmlecode.cpp.dbscheme
 extractor: cpp
diff --git a/cpp/ql/src/qlpack.yml b/cpp/ql/src/qlpack.yml
index 9e95a399ad6..75d3e65c592 100644
--- a/cpp/ql/src/qlpack.yml
+++ b/cpp/ql/src/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/cpp-queries
-version: 0.4.5
+version: 0.4.6-dev
 groups: 
   - cpp
   - queries
diff --git a/csharp/ql/campaigns/Solorigate/lib/qlpack.yml b/csharp/ql/campaigns/Solorigate/lib/qlpack.yml
index 7aacb4b0081..d10c89a3f5c 100644
--- a/csharp/ql/campaigns/Solorigate/lib/qlpack.yml
+++ b/csharp/ql/campaigns/Solorigate/lib/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/csharp-solorigate-all
-version: 1.3.5
+version: 1.3.6-dev
 groups:
     - csharp
     - solorigate
diff --git a/csharp/ql/campaigns/Solorigate/src/qlpack.yml b/csharp/ql/campaigns/Solorigate/src/qlpack.yml
index 0fc8cd692f6..98c95da4b03 100644
--- a/csharp/ql/campaigns/Solorigate/src/qlpack.yml
+++ b/csharp/ql/campaigns/Solorigate/src/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/csharp-solorigate-queries
-version: 1.3.5
+version: 1.3.6-dev
 groups:
     - csharp
     - solorigate
diff --git a/csharp/ql/lib/qlpack.yml b/csharp/ql/lib/qlpack.yml
index 1b379be53cf..05eb16f3750 100644
--- a/csharp/ql/lib/qlpack.yml
+++ b/csharp/ql/lib/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/csharp-all
-version: 0.4.5
+version: 0.4.6-dev
 groups: csharp
 dbscheme: semmlecode.csharp.dbscheme
 extractor: csharp
diff --git a/csharp/ql/src/qlpack.yml b/csharp/ql/src/qlpack.yml
index a536596e2f3..f7da9740b21 100644
--- a/csharp/ql/src/qlpack.yml
+++ b/csharp/ql/src/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/csharp-queries
-version: 0.4.5
+version: 0.4.6-dev
 groups: 
   - csharp
   - queries
diff --git a/go/ql/lib/qlpack.yml b/go/ql/lib/qlpack.yml
index 30fe0c11015..b9088307812 100644
--- a/go/ql/lib/qlpack.yml
+++ b/go/ql/lib/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/go-all
-version: 0.3.5
+version: 0.3.6-dev
 groups: go
 dbscheme: go.dbscheme
 extractor: go
diff --git a/go/ql/src/qlpack.yml b/go/ql/src/qlpack.yml
index 995462d15fd..7d586cfb931 100644
--- a/go/ql/src/qlpack.yml
+++ b/go/ql/src/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/go-queries
-version: 0.3.5
+version: 0.3.6-dev
 groups:
   - go
   - queries
diff --git a/java/ql/lib/qlpack.yml b/java/ql/lib/qlpack.yml
index 47670ae0024..f4040ca5619 100644
--- a/java/ql/lib/qlpack.yml
+++ b/java/ql/lib/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/java-all
-version: 0.4.5
+version: 0.4.6-dev
 groups: java
 dbscheme: config/semmlecode.dbscheme
 extractor: java
diff --git a/java/ql/src/qlpack.yml b/java/ql/src/qlpack.yml
index 4ca619f75d1..00070f5ccf2 100644
--- a/java/ql/src/qlpack.yml
+++ b/java/ql/src/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/java-queries
-version: 0.4.5
+version: 0.4.6-dev
 groups: 
   - java
   - queries
diff --git a/javascript/ql/lib/qlpack.yml b/javascript/ql/lib/qlpack.yml
index b24926f5b04..0eb9a36345a 100644
--- a/javascript/ql/lib/qlpack.yml
+++ b/javascript/ql/lib/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/javascript-all
-version: 0.3.5
+version: 0.3.6-dev
 groups: javascript
 dbscheme: semmlecode.javascript.dbscheme
 extractor: javascript
diff --git a/javascript/ql/src/qlpack.yml b/javascript/ql/src/qlpack.yml
index 23845438f76..b297ae8268d 100644
--- a/javascript/ql/src/qlpack.yml
+++ b/javascript/ql/src/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/javascript-queries
-version: 0.4.5
+version: 0.4.6-dev
 groups: 
   - javascript
   - queries
diff --git a/misc/suite-helpers/qlpack.yml b/misc/suite-helpers/qlpack.yml
index d14026692ee..5272d0402e2 100644
--- a/misc/suite-helpers/qlpack.yml
+++ b/misc/suite-helpers/qlpack.yml
@@ -1,3 +1,3 @@
 name: codeql/suite-helpers
-version: 0.3.5
+version: 0.3.6-dev
 groups: shared
diff --git a/python/ql/lib/qlpack.yml b/python/ql/lib/qlpack.yml
index b6d559c6662..237c3c5b0bb 100644
--- a/python/ql/lib/qlpack.yml
+++ b/python/ql/lib/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/python-all
-version: 0.6.5
+version: 0.6.6-dev
 groups: python
 dbscheme: semmlecode.python.dbscheme
 extractor: python
diff --git a/python/ql/src/qlpack.yml b/python/ql/src/qlpack.yml
index 64f2923485f..f82723bb46a 100644
--- a/python/ql/src/qlpack.yml
+++ b/python/ql/src/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/python-queries
-version: 0.5.5
+version: 0.5.6-dev
 groups: 
   - python
   - queries
diff --git a/ruby/ql/lib/qlpack.yml b/ruby/ql/lib/qlpack.yml
index 248e936a52b..ee703754c4e 100644
--- a/ruby/ql/lib/qlpack.yml
+++ b/ruby/ql/lib/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/ruby-all
-version: 0.4.5
+version: 0.4.6-dev
 groups: ruby
 extractor: ruby
 dbscheme: ruby.dbscheme
diff --git a/ruby/ql/src/qlpack.yml b/ruby/ql/src/qlpack.yml
index 45845758329..ce73dffcf88 100644
--- a/ruby/ql/src/qlpack.yml
+++ b/ruby/ql/src/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/ruby-queries
-version: 0.4.5
+version: 0.4.6-dev
 groups: 
   - ruby
   - queries
diff --git a/shared/regex/qlpack.yml b/shared/regex/qlpack.yml
index b3c5109ba04..cb2ff3557b8 100644
--- a/shared/regex/qlpack.yml
+++ b/shared/regex/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/regex
-version: 0.0.2
+version: 0.0.3-dev
 groups: shared
 library: true
 dependencies:
diff --git a/shared/ssa/qlpack.yml b/shared/ssa/qlpack.yml
index 2d6b5feb739..0946f820a92 100644
--- a/shared/ssa/qlpack.yml
+++ b/shared/ssa/qlpack.yml
@@ -1,4 +1,4 @@
 name: codeql/ssa
-version: 0.0.6
+version: 0.0.7-dev
 groups: shared
 library: true
diff --git a/shared/typos/qlpack.yml b/shared/typos/qlpack.yml
index a1a8dba9702..6bfd03987de 100644
--- a/shared/typos/qlpack.yml
+++ b/shared/typos/qlpack.yml
@@ -1,4 +1,4 @@
 name: codeql/typos
-version: 0.0.6
+version: 0.0.7-dev
 groups: shared
 library: true

From 2ae0c7e115a83e36870c8282a05d94221c24681e Mon Sep 17 00:00:00 2001
From: Matt Rothenberg <mattrothenberg@users.noreply.github.com>
Date: Fri, 2 Dec 2022 14:02:54 +0100
Subject: [PATCH 0969/1420] Update RequestForgeryGood.js

---
 .../ql/src/Security/CWE-918/examples/RequestForgeryGood.js | 7 +++----
 1 file changed, 3 insertions(+), 4 deletions(-)

diff --git a/javascript/ql/src/Security/CWE-918/examples/RequestForgeryGood.js b/javascript/ql/src/Security/CWE-918/examples/RequestForgeryGood.js
index d603ffedc2e..70e7c17f2fa 100644
--- a/javascript/ql/src/Security/CWE-918/examples/RequestForgeryGood.js
+++ b/javascript/ql/src/Security/CWE-918/examples/RequestForgeryGood.js
@@ -1,10 +1,9 @@
 import http from 'http';
-import url from 'url';
 
-var server = http.createServer(function(req, res) {
-    var target = url.parse(req.url, true).query.target;
+const server = http.createServer(function(req, res) {
+    const target = new URL(req.url).searchParams.get("target");
 
-    var subdomain;
+    const subdomain;
     if (target === 'EU') {
         subdomain = "europe"
     } else {

From a453405365fce52ebf7935357e47ab93a9240d94 Mon Sep 17 00:00:00 2001
From: Matt Rothenberg <mattrothenberg@users.noreply.github.com>
Date: Fri, 2 Dec 2022 14:03:37 +0100
Subject: [PATCH 0970/1420] Update RequestForgeryBad.js

---
 .../ql/src/Security/CWE-918/examples/RequestForgeryBad.js    | 5 ++---
 1 file changed, 2 insertions(+), 3 deletions(-)

diff --git a/javascript/ql/src/Security/CWE-918/examples/RequestForgeryBad.js b/javascript/ql/src/Security/CWE-918/examples/RequestForgeryBad.js
index 1153627dfcc..216347a1194 100644
--- a/javascript/ql/src/Security/CWE-918/examples/RequestForgeryBad.js
+++ b/javascript/ql/src/Security/CWE-918/examples/RequestForgeryBad.js
@@ -1,8 +1,7 @@
 import http from 'http';
-import url from 'url';
 
-var server = http.createServer(function(req, res) {
-    var target = url.parse(req.url, true).query.target;
+const server = http.createServer(function(req, res) {
+    const target = new URL(req.url).searchParams.get("target");
 
     // BAD: `target` is controlled by the attacker
     http.get('https://' + target + ".example.com/data/", res => {

From f5ddbd6abb40e8b8ed426394182844d6457081d0 Mon Sep 17 00:00:00 2001
From: Alex Denisov <alexdenisov@github.com>
Date: Fri, 2 Dec 2022 11:11:02 +0100
Subject: [PATCH 0971/1420] Swift: add a test case showing case
 canonicalization

---
 swift/extractor/infra/Path.cpp                             | 2 --
 .../osx-only/canonical-case/Files.expected                 | 2 ++
 swift/integration-tests/osx-only/canonical-case/Files.ql   | 4 ++++
 .../osx-only/canonical-case/MiXeDcAsE.swifT                | 0
 swift/integration-tests/osx-only/canonical-case/build.sh   | 7 +++++++
 swift/integration-tests/osx-only/canonical-case/test.py    | 5 +++++
 6 files changed, 18 insertions(+), 2 deletions(-)
 create mode 100644 swift/integration-tests/osx-only/canonical-case/Files.expected
 create mode 100644 swift/integration-tests/osx-only/canonical-case/Files.ql
 create mode 100644 swift/integration-tests/osx-only/canonical-case/MiXeDcAsE.swifT
 create mode 100755 swift/integration-tests/osx-only/canonical-case/build.sh
 create mode 100644 swift/integration-tests/osx-only/canonical-case/test.py

diff --git a/swift/extractor/infra/Path.cpp b/swift/extractor/infra/Path.cpp
index 6d54321fcac..37b4d13fd0c 100644
--- a/swift/extractor/infra/Path.cpp
+++ b/swift/extractor/infra/Path.cpp
@@ -17,8 +17,6 @@ static bool shouldCanonicalize() {
 }
 
 std::filesystem::path getCodeQLPath(std::string_view path) {
-  // TODO: this needs more testing
-  // TODO: check canonicalization of names on a case insensitive filesystems
   std::error_code ec;
   std::filesystem::path ret = {};
   static const auto canonicalize = shouldCanonicalize();
diff --git a/swift/integration-tests/osx-only/canonical-case/Files.expected b/swift/integration-tests/osx-only/canonical-case/Files.expected
new file mode 100644
index 00000000000..250d73ebb0a
--- /dev/null
+++ b/swift/integration-tests/osx-only/canonical-case/Files.expected
@@ -0,0 +1,2 @@
+| MiXeDcAsE.swifT:0:0:0:0 | MiXeDcAsE.swifT |
+| file://:0:0:0:0 |  |
diff --git a/swift/integration-tests/osx-only/canonical-case/Files.ql b/swift/integration-tests/osx-only/canonical-case/Files.ql
new file mode 100644
index 00000000000..9782ea4ce0b
--- /dev/null
+++ b/swift/integration-tests/osx-only/canonical-case/Files.ql
@@ -0,0 +1,4 @@
+import swift
+
+from File f
+select f
diff --git a/swift/integration-tests/osx-only/canonical-case/MiXeDcAsE.swifT b/swift/integration-tests/osx-only/canonical-case/MiXeDcAsE.swifT
new file mode 100644
index 00000000000..e69de29bb2d
diff --git a/swift/integration-tests/osx-only/canonical-case/build.sh b/swift/integration-tests/osx-only/canonical-case/build.sh
new file mode 100755
index 00000000000..4bc325edb8c
--- /dev/null
+++ b/swift/integration-tests/osx-only/canonical-case/build.sh
@@ -0,0 +1,7 @@
+#!/bin/bash
+
+SDK="-sdk $(xcrun -show-sdk-path)"
+FRONTEND="$(xcrun -find swift-frontend)"
+
+# This test case will only work on a case-insensitive FS (which is the default)
+$FRONTEND -frontend -c MIXEDCASE.swift $SDK
diff --git a/swift/integration-tests/osx-only/canonical-case/test.py b/swift/integration-tests/osx-only/canonical-case/test.py
new file mode 100644
index 00000000000..4aec427a4b4
--- /dev/null
+++ b/swift/integration-tests/osx-only/canonical-case/test.py
@@ -0,0 +1,5 @@
+from create_database_utils import *
+
+run_codeql_database_create([
+    './build.sh',
+], lang='swift')

From 42a438cdcb3828aac620e78344a442669635f9de Mon Sep 17 00:00:00 2001
From: Felicity Chapman <felicitymay@github.com>
Date: Fri, 2 Dec 2022 13:06:32 +0000
Subject: [PATCH 0972/1420] Apply suggestions from code review

Co-authored-by: Michael B. Gale <mbg@github.com>
---
 .../reusables/vs-code-basic-instructions/run-quick-query-1.rst  | 2 +-
 .../reusables/vs-code-basic-instructions/run-quick-query-2.rst  | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/docs/codeql/reusables/vs-code-basic-instructions/run-quick-query-1.rst b/docs/codeql/reusables/vs-code-basic-instructions/run-quick-query-1.rst
index 5f7d077068d..765eb115cd1 100644
--- a/docs/codeql/reusables/vs-code-basic-instructions/run-quick-query-1.rst
+++ b/docs/codeql/reusables/vs-code-basic-instructions/run-quick-query-1.rst
@@ -2,6 +2,6 @@ The CodeQL extension for Visual Studio Code adds several **CodeQL:** commands to
 
 #. From the command palette in Visual Studio Code, select **CodeQL: Quick Query**.
 
-#. After a momment, a new tab *quick-query.ql* is opened, ready for you to write a query for your currently selected CodeQL database (here a |language-code| database).
+#. After a moment, a new tab *quick-query.ql* is opened, ready for you to write a query for your currently selected CodeQL database (here a |language-code| database). If you are prompted to reload your workspace as a multi-folder workspace to allow Quick queries, accept or create a new workspace using the starter workflow.
 
    |image-quick-query|
\ No newline at end of file
diff --git a/docs/codeql/reusables/vs-code-basic-instructions/run-quick-query-2.rst b/docs/codeql/reusables/vs-code-basic-instructions/run-quick-query-2.rst
index 030fb7b9ef4..5449aa85b5e 100644
--- a/docs/codeql/reusables/vs-code-basic-instructions/run-quick-query-2.rst
+++ b/docs/codeql/reusables/vs-code-basic-instructions/run-quick-query-2.rst
@@ -2,6 +2,6 @@
 
 #. Right-click in the query window and select **CodeQL: Run Query**. (Alternatively, run the command from the Command Palette.)
 
-   The query will take a few moments to return results. When the query completes, the results are displayed in a CodeQL Query Results window, alongside the query window.
+   The query will take a few moments to return results. When the query completes, the results are displayed in a CodeQL Query Results view, next to the main editor view.
 
    The query results are listed in two columns, corresponding to the expressions in the ``select`` clause of the query. |result-col-1| The second column is the alert message.
\ No newline at end of file

From c49e9e8503a5c468234df127980f04f275add6f1 Mon Sep 17 00:00:00 2001
From: Matt Rothenberg <mattrothenberg@users.noreply.github.com>
Date: Fri, 2 Dec 2022 14:07:39 +0100
Subject: [PATCH 0973/1420] fix: use let for subdomain assignment

---
 .../ql/src/Security/CWE-918/examples/RequestForgeryGood.js      | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/javascript/ql/src/Security/CWE-918/examples/RequestForgeryGood.js b/javascript/ql/src/Security/CWE-918/examples/RequestForgeryGood.js
index 70e7c17f2fa..049ed8cb4d9 100644
--- a/javascript/ql/src/Security/CWE-918/examples/RequestForgeryGood.js
+++ b/javascript/ql/src/Security/CWE-918/examples/RequestForgeryGood.js
@@ -3,7 +3,7 @@ import http from 'http';
 const server = http.createServer(function(req, res) {
     const target = new URL(req.url).searchParams.get("target");
 
-    const subdomain;
+    let subdomain;
     if (target === 'EU') {
         subdomain = "europe"
     } else {

From 7aca35d52b2cce1947c25038649bdd91c2fcb31b Mon Sep 17 00:00:00 2001
From: Felicity Chapman <felicitymay@github.com>
Date: Fri, 2 Dec 2022 13:09:38 +0000
Subject: [PATCH 0974/1420] Apply suggestions from code review

---
 .../reusables/vs-code-basic-instructions/run-quick-query-2.rst  | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/docs/codeql/reusables/vs-code-basic-instructions/run-quick-query-2.rst b/docs/codeql/reusables/vs-code-basic-instructions/run-quick-query-2.rst
index 5449aa85b5e..5937edead68 100644
--- a/docs/codeql/reusables/vs-code-basic-instructions/run-quick-query-2.rst
+++ b/docs/codeql/reusables/vs-code-basic-instructions/run-quick-query-2.rst
@@ -1,6 +1,6 @@
 4. Save the query in its default location (a temporary "Quick Queries" directory under the workspace for ``GitHub.vscode-codeql/quick-queries``).
 
-#. Right-click in the query window and select **CodeQL: Run Query**. (Alternatively, run the command from the Command Palette.)
+#. Right-click in the query tab and select **CodeQL: Run Query**. (Alternatively, run the command from the Command Palette.)
 
    The query will take a few moments to return results. When the query completes, the results are displayed in a CodeQL Query Results view, next to the main editor view.
 

From 7d674e7cdcbe4de1582620fd5456cc51d02684a3 Mon Sep 17 00:00:00 2001
From: Matt Rothenberg <mattrothenberg@users.noreply.github.com>
Date: Fri, 2 Dec 2022 14:17:17 +0100
Subject: [PATCH 0975/1420] set base URL

---
 .../ql/src/Security/CWE-918/examples/RequestForgeryGood.js      | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/javascript/ql/src/Security/CWE-918/examples/RequestForgeryGood.js b/javascript/ql/src/Security/CWE-918/examples/RequestForgeryGood.js
index 049ed8cb4d9..fd65fafeba0 100644
--- a/javascript/ql/src/Security/CWE-918/examples/RequestForgeryGood.js
+++ b/javascript/ql/src/Security/CWE-918/examples/RequestForgeryGood.js
@@ -1,7 +1,7 @@
 import http from 'http';
 
 const server = http.createServer(function(req, res) {
-    const target = new URL(req.url).searchParams.get("target");
+    const target = new URL(req.url, "http://example.com").searchParams.get("target");
 
     let subdomain;
     if (target === 'EU') {

From 95f994a82b594e4e8d3f13f89de88282d4e57a02 Mon Sep 17 00:00:00 2001
From: Matt Rothenberg <mattrothenberg@users.noreply.github.com>
Date: Fri, 2 Dec 2022 14:17:37 +0100
Subject: [PATCH 0976/1420] Update RequestForgeryBad.js

---
 .../ql/src/Security/CWE-918/examples/RequestForgeryBad.js       | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/javascript/ql/src/Security/CWE-918/examples/RequestForgeryBad.js b/javascript/ql/src/Security/CWE-918/examples/RequestForgeryBad.js
index 216347a1194..6d6b55b99e1 100644
--- a/javascript/ql/src/Security/CWE-918/examples/RequestForgeryBad.js
+++ b/javascript/ql/src/Security/CWE-918/examples/RequestForgeryBad.js
@@ -1,7 +1,7 @@
 import http from 'http';
 
 const server = http.createServer(function(req, res) {
-    const target = new URL(req.url).searchParams.get("target");
+    const target = new URL(req.url, "http://example.com").searchParams.get("target");
 
     // BAD: `target` is controlled by the attacker
     http.get('https://' + target + ".example.com/data/", res => {

From 55090ecb65aa56b0f6bb910122dc93eec074c112 Mon Sep 17 00:00:00 2001
From: Edward Minnix III <egregius313@github.com>
Date: Fri, 2 Dec 2022 09:17:41 -0500
Subject: [PATCH 0977/1420] Java: Typos and minor fixes

Co-authored-by: Ben Ahmady <32935794+subatoi@users.noreply.github.com>
---
 .../AndroidWebViewSettingsEnabledJavaScript.qhelp      | 10 +++++-----
 1 file changed, 5 insertions(+), 5 deletions(-)

diff --git a/java/ql/src/Security/CWE/CWE-079/AndroidWebViewSettingsEnabledJavaScript.qhelp b/java/ql/src/Security/CWE/CWE-079/AndroidWebViewSettingsEnabledJavaScript.qhelp
index 4a049ae0b5d..c464b58045d 100644
--- a/java/ql/src/Security/CWE/CWE-079/AndroidWebViewSettingsEnabledJavaScript.qhelp
+++ b/java/ql/src/Security/CWE/CWE-079/AndroidWebViewSettingsEnabledJavaScript.qhelp
@@ -10,13 +10,13 @@
     </p>
 
     <p>
-      For example, if your application's WebView allows for visitng web pages
-      which you do not trust, it is possible for an attacker to lead the user to
+      For example, if your application's WebView allows for visiting web pages
+      that you do not trust, it is possible for an attacker to lead the user to
       a page which loads malicious JavaScript.
     </p>
 
     <p>
-      You can enable or disbale Javascript execution using
+      You can enable or disable Javascript execution using
       the <code>setJavaScriptEnabled</code> method of the settings of a WebView.
     </p>
   </overview>
@@ -30,11 +30,11 @@
   </recommendation>
 
   <example>
-    <p>In the following (bad) example, a WebView has JavaScript enabled in its settings.</p>
+    <p>In the following (bad) example, a WebView has JavaScript enabled in its settings:</p>
 
     <sample src="WebSettingsEnableJavascript.java"/>
 
-    <p>In the following (good) example, a WebView explicitly disallows JavaScript execution.</p>
+    <p>In the following (good) example, a WebView explicitly disallows JavaScript execution:</p>
 
     <sample src="WebSettingsDisableJavascript.java"/>
 

From a317f2bfe2b3e3ab1168e082f9c91e11890ddbe5 Mon Sep 17 00:00:00 2001
From: tiferet <tiferet@github.com>
Date: Thu, 1 Dec 2022 14:23:32 -0800
Subject: [PATCH 0978/1420] Test for endpoints scored at inference time

Adds a test to detect changes in the endpoints that get scored at inference time.
---
 .../adaptivethreatmodeling/ATMConfig.qll      |  11 +
 .../ExtractEndpointDataInference.expected     | 278 ++++++++++++++++++
 .../ExtractEndpointDataInference.ql           |  26 ++
 3 files changed, 315 insertions(+)
 create mode 100644 javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/ExtractEndpointDataInference.expected
 create mode 100644 javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/ExtractEndpointDataInference.ql

diff --git a/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/ATMConfig.qll b/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/ATMConfig.qll
index d6582eb969e..933ce25922d 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/ATMConfig.qll
+++ b/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/ATMConfig.qll
@@ -154,6 +154,17 @@ abstract class AtmConfig extends JS::TaintTracking::Configuration {
     not AtmResultsInfo::isFlowLikelyInBaseQuery(source.getNode(), sink.getNode()) and
     score = AtmResultsInfo::getScoreForFlow(source.getNode(), sink.getNode())
   }
+
+  /**
+   * Holds if if `sink` is an effective sink with flow from `source` which gets used as a sink candidate for scoring
+   * with the ML model.
+   */
+  predicate isSinkCandidate(JS::DataFlow::PathNode sink) {
+    exists(JS::DataFlow::PathNode source |
+      this.hasFlowPath(source, sink) and
+      not AtmResultsInfo::isFlowLikelyInBaseQuery(source.getNode(), sink.getNode())
+    )
+  }
 }
 
 /** DEPRECATED: Alias for AtmConfig */
diff --git a/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/ExtractEndpointDataInference.expected b/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/ExtractEndpointDataInference.expected
new file mode 100644
index 00000000000..5489a3ca9d7
--- /dev/null
+++ b/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/ExtractEndpointDataInference.expected
@@ -0,0 +1,278 @@
+| DomBasedXssAtmConfig | autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:14:30:14:30 | v |
+| DomBasedXssAtmConfig | autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:22:33:22:33 | v |
+| DomBasedXssAtmConfig | autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:23:33:23:33 | v |
+| DomBasedXssAtmConfig | autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:26:25:26:29 | query |
+| DomBasedXssAtmConfig | autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:77:22:77:24 | tag |
+| DomBasedXssAtmConfig | autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:85:20:85:22 | tag |
+| DomBasedXssAtmConfig | autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:130:23:130:24 | id |
+| DomBasedXssAtmConfig | autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:131:30:131:31 | id |
+| DomBasedXssAtmConfig | autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:11:22:11:22 | v |
+| DomBasedXssAtmConfig | autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:12:22:12:32 | req.body.id |
+| DomBasedXssAtmConfig | autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:13:22:13:37 | `${req.body.id}` |
+| DomBasedXssAtmConfig | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:26:13:26:25 | req.params.id |
+| DomBasedXssAtmConfig | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:41:7:41:20 | req.params.foo |
+| DomBasedXssAtmConfig | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:48:13:48:27 | req.params.name |
+| DomBasedXssAtmConfig | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:55:13:55:27 | req.params.name |
+| DomBasedXssAtmConfig | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:63:23:63:27 | query |
+| DomBasedXssAtmConfig | autogenerated/NosqlAndSqlInjection/untyped/redis.js:52:28:52:30 | key |
+| DomBasedXssAtmConfig | autogenerated/NosqlAndSqlInjection/untyped/tst3.js:16:23:16:41 | req.params.category |
+| DomBasedXssAtmConfig | autogenerated/TaintedPath/normalizedPaths.js:312:19:312:22 | path |
+| DomBasedXssAtmConfig | autogenerated/TaintedPath/normalizedPaths.js:321:19:321:32 | normalizedPath |
+| DomBasedXssAtmConfig | autogenerated/TaintedPath/normalizedPaths.js:328:19:328:32 | normalizedPath |
+| DomBasedXssAtmConfig | autogenerated/Xss/DomBasedXss/classnames.js:7:47:7:69 | classNa ... w.name) |
+| DomBasedXssAtmConfig | autogenerated/Xss/DomBasedXss/classnames.js:8:47:8:70 | classNa ... w.name) |
+| DomBasedXssAtmConfig | autogenerated/Xss/DomBasedXss/classnames.js:9:47:9:70 | classNa ... w.name) |
+| DomBasedXssAtmConfig | autogenerated/Xss/DomBasedXss/classnames.js:10:45:10:55 | window.name |
+| DomBasedXssAtmConfig | autogenerated/Xss/DomBasedXss/classnames.js:11:47:11:64 | unsafeStyle('foo') |
+| DomBasedXssAtmConfig | autogenerated/Xss/DomBasedXss/classnames.js:13:47:13:68 | safeSty ... w.name) |
+| DomBasedXssAtmConfig | autogenerated/Xss/DomBasedXss/classnames.js:15:47:15:63 | clsx(window.name) |
+| DomBasedXssAtmConfig | autogenerated/Xss/DomBasedXss/dates.js:15:65:15:69 | taint |
+| DomBasedXssAtmConfig | autogenerated/Xss/DomBasedXss/dates.js:17:49:17:53 | taint |
+| DomBasedXssAtmConfig | autogenerated/Xss/DomBasedXss/event-handler-receiver.js:2:49:2:61 | location.href |
+| DomBasedXssAtmConfig | autogenerated/Xss/DomBasedXss/jquery.js:7:20:7:26 | tainted |
+| DomBasedXssAtmConfig | autogenerated/Xss/DomBasedXss/jquery.js:10:13:10:31 | location.toString() |
+| DomBasedXssAtmConfig | autogenerated/Xss/DomBasedXss/nodemailer.js:10:30:10:47 | req.query.receiver |
+| DomBasedXssAtmConfig | autogenerated/Xss/DomBasedXss/nodemailer.js:12:11:12:69 | `Hi, yo ... sage}.` |
+| DomBasedXssAtmConfig | autogenerated/Xss/DomBasedXss/sanitiser.js:23:29:23:35 | tainted |
+| DomBasedXssAtmConfig | autogenerated/Xss/DomBasedXss/sanitiser.js:30:29:30:35 | tainted |
+| DomBasedXssAtmConfig | autogenerated/Xss/DomBasedXss/sanitiser.js:33:29:33:35 | tainted |
+| DomBasedXssAtmConfig | autogenerated/Xss/DomBasedXss/sanitiser.js:38:29:38:35 | tainted |
+| DomBasedXssAtmConfig | autogenerated/Xss/DomBasedXss/sanitiser.js:45:29:45:35 | tainted |
+| DomBasedXssAtmConfig | autogenerated/Xss/DomBasedXss/stored-xss.js:12:35:12:38 | href |
+| DomBasedXssAtmConfig | autogenerated/Xss/DomBasedXss/tst3.js:6:27:6:32 | data.w |
+| DomBasedXssAtmConfig | autogenerated/Xss/DomBasedXss/tst3.js:11:36:11:41 | data.w |
+| DomBasedXssAtmConfig | autogenerated/Xss/DomBasedXss/tst3.js:15:23:15:29 | data[p] |
+| DomBasedXssAtmConfig | autogenerated/Xss/DomBasedXss/tst.js:8:37:8:114 | documen ... t=")+8) |
+| DomBasedXssAtmConfig | autogenerated/Xss/DomBasedXss/tst.js:12:28:12:33 | target |
+| DomBasedXssAtmConfig | autogenerated/Xss/DomBasedXss/tst.js:15:37:15:42 | target |
+| DomBasedXssAtmConfig | autogenerated/Xss/DomBasedXss/tst.js:43:20:43:20 | s |
+| DomBasedXssAtmConfig | autogenerated/Xss/DomBasedXss/tst.js:83:29:83:52 | documen ... .search |
+| DomBasedXssAtmConfig | autogenerated/Xss/DomBasedXss/tst.js:86:31:86:54 | documen ... .search |
+| DomBasedXssAtmConfig | autogenerated/Xss/DomBasedXss/tst.js:87:28:87:51 | documen ... .search |
+| DomBasedXssAtmConfig | autogenerated/Xss/DomBasedXss/tst.js:357:20:357:25 | target |
+| DomBasedXssAtmConfig | autogenerated/Xss/DomBasedXss/tst.js:361:14:361:19 | target |
+| DomBasedXssAtmConfig | autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:4:14:4:20 | tainted |
+| DomBasedXssAtmConfig | autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:5:12:5:18 | tainted |
+| DomBasedXssAtmConfig | autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:7:14:7:20 | tainted |
+| DomBasedXssAtmConfig | autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:9:19:9:25 | tainted |
+| DomBasedXssAtmConfig | autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:10:16:10:22 | tainted |
+| DomBasedXssAtmConfig | autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:12:19:12:25 | tainted |
+| DomBasedXssAtmConfig | autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:15:27:15:55 | (attrs. ... 'left') |
+| DomBasedXssAtmConfig | autogenerated/Xss/ExceptionXss/exception-xss.js:5:11:5:11 | x |
+| DomBasedXssAtmConfig | autogenerated/Xss/ExceptionXss/exception-xss.js:9:11:9:13 | foo |
+| DomBasedXssAtmConfig | autogenerated/Xss/ExceptionXss/exception-xss.js:21:11:21:21 | foo + "bar" |
+| DomBasedXssAtmConfig | autogenerated/Xss/ExceptionXss/exception-xss.js:27:19:27:21 | foo |
+| DomBasedXssAtmConfig | autogenerated/Xss/ExceptionXss/exception-xss.js:33:11:33:22 | ["bar", foo] |
+| DomBasedXssAtmConfig | autogenerated/Xss/ExceptionXss/exception-xss.js:33:19:33:21 | foo |
+| DomBasedXssAtmConfig | autogenerated/Xss/ExceptionXss/exception-xss.js:68:19:68:21 | foo |
+| DomBasedXssAtmConfig | autogenerated/Xss/ExceptionXss/exception-xss.js:89:11:89:26 | foo.match(/foo/) |
+| DomBasedXssAtmConfig | autogenerated/Xss/ExceptionXss/exception-xss.js:95:11:95:22 | [foo, "bar"] |
+| DomBasedXssAtmConfig | autogenerated/Xss/ExceptionXss/exception-xss.js:95:12:95:14 | foo |
+| DomBasedXssAtmConfig | autogenerated/Xss/ExceptionXss/exception-xss.js:102:12:102:14 | foo |
+| DomBasedXssAtmConfig | autogenerated/Xss/ExceptionXss/exception-xss.js:117:11:117:23 | req.params.id |
+| DomBasedXssAtmConfig | autogenerated/Xss/ExceptionXss/exception-xss.js:128:11:128:52 | session ... ssion') |
+| DomBasedXssAtmConfig | autogenerated/Xss/ExceptionXss/exception-xss.js:136:10:136:22 | req.params.id |
+| DomBasedXssAtmConfig | autogenerated/Xss/ExceptionXss/exception-xss.js:148:33:148:35 | foo |
+| DomBasedXssAtmConfig | autogenerated/Xss/ExceptionXss/exception-xss.js:171:11:171:17 | tainted |
+| DomBasedXssAtmConfig | autogenerated/Xss/ExceptionXss/exception-xss.js:180:10:180:22 | req.params.id |
+| DomBasedXssAtmConfig | autogenerated/Xss/ReflectedXss/ReflectedXss.js:32:5:32:22 | ['body', req.body] |
+| DomBasedXssAtmConfig | autogenerated/Xss/ReflectedXss/ReflectedXss.js:32:14:32:21 | req.body |
+| DomBasedXssAtmConfig | autogenerated/Xss/ReflectedXss/ReflectedXss.js:70:47:70:54 | req.body |
+| DomBasedXssAtmConfig | autogenerated/Xss/ReflectedXss/ReflectedXss.js:99:31:99:38 | req.body |
+| DomBasedXssAtmConfig | autogenerated/Xss/ReflectedXss/ReflectedXss.js:102:68:102:75 | req.body |
+| DomBasedXssAtmConfig | autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:19:45:19:57 | req.params.id |
+| DomBasedXssAtmConfig | autogenerated/Xss/ReflectedXss/partial.js:13:42:13:48 | req.url |
+| DomBasedXssAtmConfig | autogenerated/Xss/ReflectedXss/partial.js:40:42:40:50 | [req.url] |
+| DomBasedXssAtmConfig | autogenerated/Xss/ReflectedXss/partial.js:40:43:40:49 | req.url |
+| DomBasedXssAtmConfig | autogenerated/Xss/ReflectedXss/partial.js:49:38:49:44 | req.url |
+| NosqlInjectionAtmConfig | autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:14:24:14:32 | { id: v } |
+| NosqlInjectionAtmConfig | autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:22:27:22:35 | { id: v } |
+| NosqlInjectionAtmConfig | autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:23:27:23:35 | { id: v } |
+| NosqlInjectionAtmConfig | autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:25:23:25:48 | JSON.pa ... y.data) |
+| NosqlInjectionAtmConfig | autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:26:25:26:29 | query |
+| NosqlInjectionAtmConfig | autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:10:17:10:18 | {} |
+| NosqlInjectionAtmConfig | autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:12:17:12:18 | {} |
+| NosqlInjectionAtmConfig | autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:14:17:14:18 | {} |
+| NosqlInjectionAtmConfig | autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:12:19:12:20 | {} |
+| NosqlInjectionAtmConfig | autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:48:19:48:20 | {} |
+| NosqlInjectionAtmConfig | autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:59:16:59:17 | {} |
+| NosqlInjectionAtmConfig | autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:106:17:106:18 | {} |
+| NosqlInjectionAtmConfig | autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:12:19:12:20 | {} |
+| NosqlInjectionAtmConfig | autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:23:19:23:20 | {} |
+| NosqlInjectionAtmConfig | autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:20:19:20:20 | {} |
+| NosqlInjectionAtmConfig | autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:76:12:76:16 | query |
+| NosqlInjectionAtmConfig | autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:81:37:81:41 | query |
+| NosqlInjectionAtmConfig | autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:86:46:86:50 | query |
+| NosqlInjectionAtmConfig | autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:88:51:88:55 | query |
+| NosqlInjectionAtmConfig | autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:90:49:90:53 | query |
+| NosqlInjectionAtmConfig | autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:93:43:93:47 | query |
+| NosqlInjectionAtmConfig | autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:95:48:95:52 | query |
+| NosqlInjectionAtmConfig | autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:97:46:97:50 | query |
+| NosqlInjectionAtmConfig | autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:99:44:99:48 | query |
+| NosqlInjectionAtmConfig | autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:19:19:19:20 | {} |
+| NosqlInjectionAtmConfig | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:6:15:7:55 | "SELECT ...  PRICE" |
+| NosqlInjectionAtmConfig | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:63:23:63:27 | query |
+| NosqlInjectionAtmConfig | autogenerated/NosqlAndSqlInjection/untyped/redis.js:52:28:52:30 | key |
+| NosqlInjectionAtmConfig | autogenerated/TaintedPath/normalizedPaths.js:312:19:312:22 | path |
+| NosqlInjectionAtmConfig | autogenerated/TaintedPath/normalizedPaths.js:321:19:321:32 | normalizedPath |
+| NosqlInjectionAtmConfig | autogenerated/TaintedPath/normalizedPaths.js:328:19:328:32 | normalizedPath |
+| NosqlInjectionAtmConfig | autogenerated/TaintedPath/pupeteer.js:9:20:9:50 | { path: ...  'a4' } |
+| NosqlInjectionAtmConfig | autogenerated/TaintedPath/pupeteer.js:13:29:13:45 | { path: tainted } |
+| NosqlInjectionAtmConfig | autogenerated/Xss/DomBasedXss/dates.js:15:65:15:69 | taint |
+| NosqlInjectionAtmConfig | autogenerated/Xss/DomBasedXss/dates.js:17:49:17:53 | taint |
+| NosqlInjectionAtmConfig | autogenerated/Xss/DomBasedXss/nodemailer.js:8:22:14:3 | {\\n    f ...  OK\\n  } |
+| NosqlInjectionAtmConfig | autogenerated/Xss/DomBasedXss/nodemailer.js:10:30:10:47 | req.query.receiver |
+| NosqlInjectionAtmConfig | autogenerated/Xss/DomBasedXss/tst3.js:6:27:6:32 | data.w |
+| NosqlInjectionAtmConfig | autogenerated/Xss/DomBasedXss/tst3.js:11:36:11:41 | data.w |
+| NosqlInjectionAtmConfig | autogenerated/Xss/DomBasedXss/tst3.js:15:23:15:29 | data[p] |
+| NosqlInjectionAtmConfig | autogenerated/Xss/DomBasedXss/tst.js:15:37:15:42 | target |
+| NosqlInjectionAtmConfig | autogenerated/Xss/DomBasedXss/tst.js:83:29:83:52 | documen ... .search |
+| NosqlInjectionAtmConfig | autogenerated/Xss/DomBasedXss/tst.js:86:31:86:54 | documen ... .search |
+| NosqlInjectionAtmConfig | autogenerated/Xss/DomBasedXss/tst.js:87:28:87:51 | documen ... .search |
+| NosqlInjectionAtmConfig | autogenerated/Xss/DomBasedXss/tst.js:199:32:199:75 | {danger ... inted}} |
+| NosqlInjectionAtmConfig | autogenerated/Xss/DomBasedXss/tst.js:200:32:200:75 | {danger ... inted}} |
+| NosqlInjectionAtmConfig | autogenerated/Xss/DomBasedXss/tst.js:361:14:361:19 | target |
+| NosqlInjectionAtmConfig | autogenerated/Xss/ExceptionXss/exception-xss.js:5:11:5:11 | x |
+| NosqlInjectionAtmConfig | autogenerated/Xss/ExceptionXss/exception-xss.js:9:11:9:13 | foo |
+| NosqlInjectionAtmConfig | autogenerated/Xss/ExceptionXss/exception-xss.js:21:11:21:21 | foo + "bar" |
+| NosqlInjectionAtmConfig | autogenerated/Xss/ExceptionXss/exception-xss.js:27:11:27:23 | { prop: foo } |
+| NosqlInjectionAtmConfig | autogenerated/Xss/ExceptionXss/exception-xss.js:33:11:33:22 | ["bar", foo] |
+| NosqlInjectionAtmConfig | autogenerated/Xss/ExceptionXss/exception-xss.js:68:19:68:21 | foo |
+| NosqlInjectionAtmConfig | autogenerated/Xss/ExceptionXss/exception-xss.js:89:11:89:26 | foo.match(/foo/) |
+| NosqlInjectionAtmConfig | autogenerated/Xss/ExceptionXss/exception-xss.js:95:11:95:22 | [foo, "bar"] |
+| NosqlInjectionAtmConfig | autogenerated/Xss/ExceptionXss/exception-xss.js:102:12:102:14 | foo |
+| NosqlInjectionAtmConfig | autogenerated/Xss/ExceptionXss/exception-xss.js:117:11:117:23 | req.params.id |
+| NosqlInjectionAtmConfig | autogenerated/Xss/ExceptionXss/exception-xss.js:128:11:128:52 | session ... ssion') |
+| NosqlInjectionAtmConfig | autogenerated/Xss/ExceptionXss/exception-xss.js:136:10:136:22 | req.params.id |
+| NosqlInjectionAtmConfig | autogenerated/Xss/ExceptionXss/exception-xss.js:148:33:148:35 | foo |
+| NosqlInjectionAtmConfig | autogenerated/Xss/ExceptionXss/exception-xss.js:171:11:171:17 | tainted |
+| NosqlInjectionAtmConfig | autogenerated/Xss/ExceptionXss/exception-xss.js:180:10:180:22 | req.params.id |
+| NosqlInjectionAtmConfig | autogenerated/Xss/ReflectedXss/ReflectedXss.js:70:47:70:54 | req.body |
+| NosqlInjectionAtmConfig | autogenerated/Xss/ReflectedXss/ReflectedXss.js:99:31:99:38 | req.body |
+| NosqlInjectionAtmConfig | autogenerated/Xss/ReflectedXss/ReflectedXss.js:102:68:102:75 | req.body |
+| NosqlInjectionAtmConfig | autogenerated/Xss/ReflectedXss/partial.js:13:42:13:48 | req.url |
+| NosqlInjectionAtmConfig | autogenerated/Xss/ReflectedXss/partial.js:40:42:40:50 | [req.url] |
+| NosqlInjectionAtmConfig | autogenerated/Xss/ReflectedXss/partial.js:49:38:49:44 | req.url |
+| SqlInjectionAtmConfig | autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:14:30:14:30 | v |
+| SqlInjectionAtmConfig | autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:22:33:22:33 | v |
+| SqlInjectionAtmConfig | autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:23:33:23:33 | v |
+| SqlInjectionAtmConfig | autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:25:23:25:48 | JSON.pa ... y.data) |
+| SqlInjectionAtmConfig | autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:26:25:26:29 | query |
+| SqlInjectionAtmConfig | autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:77:22:77:24 | tag |
+| SqlInjectionAtmConfig | autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:85:20:85:22 | tag |
+| SqlInjectionAtmConfig | autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:130:23:130:24 | id |
+| SqlInjectionAtmConfig | autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:131:30:131:31 | id |
+| SqlInjectionAtmConfig | autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:11:22:11:22 | v |
+| SqlInjectionAtmConfig | autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:12:22:12:32 | req.body.id |
+| SqlInjectionAtmConfig | autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:13:22:13:37 | `${req.body.id}` |
+| SqlInjectionAtmConfig | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:6:15:7:34 | "SELECT ... ategory |
+| SqlInjectionAtmConfig | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:6:15:7:55 | "SELECT ...  PRICE" |
+| SqlInjectionAtmConfig | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:26:13:26:25 | req.params.id |
+| SqlInjectionAtmConfig | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:41:7:41:20 | req.params.foo |
+| SqlInjectionAtmConfig | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:48:13:48:27 | req.params.name |
+| SqlInjectionAtmConfig | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:55:13:55:27 | req.params.name |
+| SqlInjectionAtmConfig | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:63:23:63:27 | query |
+| SqlInjectionAtmConfig | autogenerated/NosqlAndSqlInjection/untyped/redis.js:52:28:52:30 | key |
+| SqlInjectionAtmConfig | autogenerated/NosqlAndSqlInjection/untyped/tst3.js:7:16:8:34 | "SELECT ... ategory |
+| SqlInjectionAtmConfig | autogenerated/NosqlAndSqlInjection/untyped/tst3.js:7:16:8:55 | "SELECT ...  PRICE" |
+| SqlInjectionAtmConfig | autogenerated/NosqlAndSqlInjection/untyped/tst3.js:16:23:16:41 | req.params.category |
+| SqlInjectionAtmConfig | autogenerated/NosqlAndSqlInjection/untyped/tst4.js:8:10:8:60 | 'SELECT ... rams.id |
+| SqlInjectionAtmConfig | autogenerated/NosqlAndSqlInjection/untyped/tst.js:10:10:10:58 | 'SELECT ... rams.id |
+| SqlInjectionAtmConfig | autogenerated/TaintedPath/normalizedPaths.js:312:19:312:22 | path |
+| SqlInjectionAtmConfig | autogenerated/TaintedPath/normalizedPaths.js:321:19:321:32 | normalizedPath |
+| SqlInjectionAtmConfig | autogenerated/TaintedPath/normalizedPaths.js:328:19:328:32 | normalizedPath |
+| SqlInjectionAtmConfig | autogenerated/Xss/DomBasedXss/classnames.js:10:45:10:55 | window.name |
+| SqlInjectionAtmConfig | autogenerated/Xss/DomBasedXss/dates.js:15:65:15:69 | taint |
+| SqlInjectionAtmConfig | autogenerated/Xss/DomBasedXss/dates.js:17:49:17:53 | taint |
+| SqlInjectionAtmConfig | autogenerated/Xss/DomBasedXss/nodemailer.js:10:30:10:47 | req.query.receiver |
+| SqlInjectionAtmConfig | autogenerated/Xss/DomBasedXss/nodemailer.js:12:11:12:69 | `Hi, yo ... sage}.` |
+| SqlInjectionAtmConfig | autogenerated/Xss/DomBasedXss/tst3.js:6:27:6:32 | data.w |
+| SqlInjectionAtmConfig | autogenerated/Xss/DomBasedXss/tst3.js:11:36:11:41 | data.w |
+| SqlInjectionAtmConfig | autogenerated/Xss/DomBasedXss/tst3.js:15:23:15:29 | data[p] |
+| SqlInjectionAtmConfig | autogenerated/Xss/DomBasedXss/tst.js:15:37:15:42 | target |
+| SqlInjectionAtmConfig | autogenerated/Xss/DomBasedXss/tst.js:83:29:83:52 | documen ... .search |
+| SqlInjectionAtmConfig | autogenerated/Xss/DomBasedXss/tst.js:86:31:86:54 | documen ... .search |
+| SqlInjectionAtmConfig | autogenerated/Xss/ExceptionXss/exception-xss.js:5:11:5:11 | x |
+| SqlInjectionAtmConfig | autogenerated/Xss/ExceptionXss/exception-xss.js:9:11:9:13 | foo |
+| SqlInjectionAtmConfig | autogenerated/Xss/ExceptionXss/exception-xss.js:21:11:21:21 | foo + "bar" |
+| SqlInjectionAtmConfig | autogenerated/Xss/ExceptionXss/exception-xss.js:27:19:27:21 | foo |
+| SqlInjectionAtmConfig | autogenerated/Xss/ExceptionXss/exception-xss.js:33:19:33:21 | foo |
+| SqlInjectionAtmConfig | autogenerated/Xss/ExceptionXss/exception-xss.js:68:19:68:21 | foo |
+| SqlInjectionAtmConfig | autogenerated/Xss/ExceptionXss/exception-xss.js:89:11:89:26 | foo.match(/foo/) |
+| SqlInjectionAtmConfig | autogenerated/Xss/ExceptionXss/exception-xss.js:95:12:95:14 | foo |
+| SqlInjectionAtmConfig | autogenerated/Xss/ExceptionXss/exception-xss.js:102:12:102:14 | foo |
+| SqlInjectionAtmConfig | autogenerated/Xss/ExceptionXss/exception-xss.js:117:11:117:23 | req.params.id |
+| SqlInjectionAtmConfig | autogenerated/Xss/ExceptionXss/exception-xss.js:128:11:128:52 | session ... ssion') |
+| SqlInjectionAtmConfig | autogenerated/Xss/ExceptionXss/exception-xss.js:136:10:136:22 | req.params.id |
+| SqlInjectionAtmConfig | autogenerated/Xss/ExceptionXss/exception-xss.js:148:33:148:35 | foo |
+| SqlInjectionAtmConfig | autogenerated/Xss/ExceptionXss/exception-xss.js:171:11:171:17 | tainted |
+| SqlInjectionAtmConfig | autogenerated/Xss/ExceptionXss/exception-xss.js:180:10:180:22 | req.params.id |
+| SqlInjectionAtmConfig | autogenerated/Xss/ReflectedXss/ReflectedXss.js:32:5:32:22 | ['body', req.body] |
+| SqlInjectionAtmConfig | autogenerated/Xss/ReflectedXss/ReflectedXss.js:32:14:32:21 | req.body |
+| SqlInjectionAtmConfig | autogenerated/Xss/ReflectedXss/ReflectedXss.js:70:47:70:54 | req.body |
+| SqlInjectionAtmConfig | autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:19:45:19:57 | req.params.id |
+| SqlInjectionAtmConfig | autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:49:34:49:43 | msg.length |
+| SqlInjectionAtmConfig | autogenerated/Xss/ReflectedXss/partial.js:13:42:13:48 | req.url |
+| SqlInjectionAtmConfig | autogenerated/Xss/ReflectedXss/partial.js:40:43:40:49 | req.url |
+| SqlInjectionAtmConfig | autogenerated/Xss/ReflectedXss/partial.js:49:38:49:44 | req.url |
+| TaintedPathAtmConfig | autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:14:30:14:30 | v |
+| TaintedPathAtmConfig | autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:22:33:22:33 | v |
+| TaintedPathAtmConfig | autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:23:33:23:33 | v |
+| TaintedPathAtmConfig | autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:26:25:26:29 | query |
+| TaintedPathAtmConfig | autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:21:25:21:45 | '' + qu ... y.title |
+| TaintedPathAtmConfig | autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:24:25:24:50 | query.b ... bstr(1) |
+| TaintedPathAtmConfig | autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:77:22:77:24 | tag |
+| TaintedPathAtmConfig | autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:85:20:85:22 | tag |
+| TaintedPathAtmConfig | autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:130:23:130:24 | id |
+| TaintedPathAtmConfig | autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:131:30:131:31 | id |
+| TaintedPathAtmConfig | autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:11:22:11:22 | v |
+| TaintedPathAtmConfig | autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:12:22:12:32 | req.body.id |
+| TaintedPathAtmConfig | autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:13:22:13:37 | `${req.body.id}` |
+| TaintedPathAtmConfig | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:26:13:26:25 | req.params.id |
+| TaintedPathAtmConfig | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:41:7:41:20 | req.params.foo |
+| TaintedPathAtmConfig | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:48:13:48:27 | req.params.name |
+| TaintedPathAtmConfig | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:55:13:55:27 | req.params.name |
+| TaintedPathAtmConfig | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:63:23:63:27 | query |
+| TaintedPathAtmConfig | autogenerated/NosqlAndSqlInjection/untyped/redis.js:52:28:52:30 | key |
+| TaintedPathAtmConfig | autogenerated/NosqlAndSqlInjection/untyped/tst3.js:16:23:16:41 | req.params.category |
+| TaintedPathAtmConfig | autogenerated/TaintedPath/TaintedPath.js:115:12:115:51 | path.re ... /g, '') |
+| TaintedPathAtmConfig | autogenerated/TaintedPath/TaintedPath.js:116:12:116:36 | path.re ... /g, '') |
+| TaintedPathAtmConfig | autogenerated/TaintedPath/TaintedPath.js:128:11:128:50 | path.re ... /g, '') |
+| TaintedPathAtmConfig | autogenerated/TaintedPath/TaintedPath.js:129:12:129:36 | path.re ... /g, '') |
+| TaintedPathAtmConfig | autogenerated/TaintedPath/normalizedPaths.js:21:14:21:49 | pathMod ... y.path) |
+| TaintedPathAtmConfig | autogenerated/TaintedPath/normalizedPaths.js:31:14:31:49 | pathMod ... y.path) |
+| TaintedPathAtmConfig | autogenerated/TaintedPath/normalizedPaths.js:54:14:54:49 | pathMod ... y.path) |
+| TaintedPathAtmConfig | autogenerated/TaintedPath/normalizedPaths.js:73:14:73:56 | pathMod ... y.path) |
+| TaintedPathAtmConfig | autogenerated/TaintedPath/normalizedPaths.js:94:14:94:49 | pathMod ... y.path) |
+| TaintedPathAtmConfig | autogenerated/TaintedPath/normalizedPaths.js:106:14:106:49 | pathMod ... y.path) |
+| TaintedPathAtmConfig | autogenerated/TaintedPath/normalizedPaths.js:117:14:117:44 | fs.real ... y.path) |
+| TaintedPathAtmConfig | autogenerated/TaintedPath/normalizedPaths.js:130:14:130:49 | pathMod ... y.path) |
+| TaintedPathAtmConfig | autogenerated/TaintedPath/normalizedPaths.js:139:14:139:62 | pathMod ... y.path) |
+| TaintedPathAtmConfig | autogenerated/TaintedPath/normalizedPaths.js:148:14:148:58 | 'foo/'  ... y.path) |
+| TaintedPathAtmConfig | autogenerated/TaintedPath/normalizedPaths.js:160:14:160:49 | pathMod ... y.path) |
+| TaintedPathAtmConfig | autogenerated/TaintedPath/normalizedPaths.js:214:14:214:49 | pathMod ... y.path) |
+| TaintedPathAtmConfig | autogenerated/TaintedPath/normalizedPaths.js:219:10:219:33 | decodeU ... t(path) |
+| TaintedPathAtmConfig | autogenerated/TaintedPath/normalizedPaths.js:226:14:226:70 | pathMod ... g, ' ') |
+| TaintedPathAtmConfig | autogenerated/TaintedPath/normalizedPaths.js:230:12:230:36 | path.re ... /g, '') |
+| TaintedPathAtmConfig | autogenerated/TaintedPath/normalizedPaths.js:236:14:236:47 | pathMod ... y.path) |
+| TaintedPathAtmConfig | autogenerated/TaintedPath/normalizedPaths.js:254:14:254:47 | pathMod ... y.path) |
+| TaintedPathAtmConfig | autogenerated/TaintedPath/normalizedPaths.js:312:19:312:22 | path |
+| TaintedPathAtmConfig | autogenerated/TaintedPath/normalizedPaths.js:321:19:321:32 | normalizedPath |
+| TaintedPathAtmConfig | autogenerated/TaintedPath/normalizedPaths.js:328:19:328:32 | normalizedPath |
+| TaintedPathAtmConfig | autogenerated/TaintedPath/normalizedPaths.js:339:13:339:46 | pathMod ... y.path) |
+| TaintedPathAtmConfig | autogenerated/Xss/DomBasedXss/nodemailer.js:10:30:10:47 | req.query.receiver |
+| TaintedPathAtmConfig | autogenerated/Xss/DomBasedXss/nodemailer.js:12:11:12:69 | `Hi, yo ... sage}.` |
+| TaintedPathAtmConfig | autogenerated/Xss/ExceptionXss/exception-xss.js:117:11:117:23 | req.params.id |
+| TaintedPathAtmConfig | autogenerated/Xss/ExceptionXss/exception-xss.js:136:10:136:22 | req.params.id |
+| TaintedPathAtmConfig | autogenerated/Xss/ExceptionXss/exception-xss.js:180:10:180:22 | req.params.id |
+| TaintedPathAtmConfig | autogenerated/Xss/ReflectedXss/ReflectedXss.js:32:5:32:22 | ['body', req.body] |
+| TaintedPathAtmConfig | autogenerated/Xss/ReflectedXss/ReflectedXss.js:32:14:32:21 | req.body |
+| TaintedPathAtmConfig | autogenerated/Xss/ReflectedXss/ReflectedXss.js:70:47:70:54 | req.body |
+| TaintedPathAtmConfig | autogenerated/Xss/ReflectedXss/ReflectedXss.js:99:31:99:38 | req.body |
+| TaintedPathAtmConfig | autogenerated/Xss/ReflectedXss/ReflectedXss.js:102:68:102:75 | req.body |
+| TaintedPathAtmConfig | autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:19:45:19:57 | req.params.id |
+| TaintedPathAtmConfig | autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:49:34:49:43 | msg.length |
+| TaintedPathAtmConfig | autogenerated/Xss/ReflectedXss/partial.js:13:42:13:48 | req.url |
+| TaintedPathAtmConfig | autogenerated/Xss/ReflectedXss/partial.js:40:42:40:50 | [req.url] |
+| TaintedPathAtmConfig | autogenerated/Xss/ReflectedXss/partial.js:40:43:40:49 | req.url |
+| TaintedPathAtmConfig | autogenerated/Xss/ReflectedXss/partial.js:49:38:49:44 | req.url |
diff --git a/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/ExtractEndpointDataInference.ql b/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/ExtractEndpointDataInference.ql
new file mode 100644
index 00000000000..f1188c77990
--- /dev/null
+++ b/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/ExtractEndpointDataInference.ql
@@ -0,0 +1,26 @@
+/*
+ * ExtractEndpointDataInference.ql
+ *
+ * This test surfaces the endpoints that pass the endpoint filters and have flow from a source for each query config,
+ * and are therefore used as candidates for scoring at inference time.
+ *
+ * This is equivalent to ExtractEndpointDataTraining.qlref, but testing the inference endpoints rather than the training
+ * endpoints. It ensures that CodeQL changes don't inadvertently change the endpoints that get scored at inferece time.
+ *
+ * This test does not actually score the endpoints and test for changes in the model predictions: that gets done in the
+ * integration tests.
+ */
+
+private import javascript as JS
+import extraction.NoFeaturizationRestrictionsConfig
+private import experimental.adaptivethreatmodeling.ATMConfig as AtmConfig
+private import experimental.adaptivethreatmodeling.NosqlInjectionATM as NosqlInjectionAtm
+private import experimental.adaptivethreatmodeling.SqlInjectionATM as SqlInjectionAtm
+private import experimental.adaptivethreatmodeling.TaintedPathATM as TaintedPathAtm
+private import experimental.adaptivethreatmodeling.XssATM as XssAtm
+
+query predicate isSinkCandidateForQuery(
+  AtmConfig::AtmConfig queryConfig, JS::DataFlow::PathNode sink
+) {
+  queryConfig.isSinkCandidate(sink)
+}

From 294f34bf072eec4cb6070309ca21926bac039d9d Mon Sep 17 00:00:00 2001
From: tiferet <tiferet@github.com>
Date: Thu, 1 Dec 2022 14:24:50 -0800
Subject: [PATCH 0979/1420] Small improvement

Not strictly needed, but better to keep things private when possible
---
 .../modelbuilding/extraction/ExtractEndpointDataTraining.qll    | 2 +-
 .../test/endpoint_large_scale/ExtractEndpointDataInference.ql   | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/javascript/ql/experimental/adaptivethreatmodeling/modelbuilding/extraction/ExtractEndpointDataTraining.qll b/javascript/ql/experimental/adaptivethreatmodeling/modelbuilding/extraction/ExtractEndpointDataTraining.qll
index 763c74c7cf3..093a12264b1 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/modelbuilding/extraction/ExtractEndpointDataTraining.qll
+++ b/javascript/ql/experimental/adaptivethreatmodeling/modelbuilding/extraction/ExtractEndpointDataTraining.qll
@@ -206,7 +206,7 @@ query predicate reformattedTrainingEndpoints(
  * Gets the ATM data flow configuration for the specified query.
  * TODO: Delete this once we are no longer surfacing `hasFlowFromSource`.
  */
-DataFlow::Configuration getDataFlowCfg(Query query) {
+private DataFlow::Configuration getDataFlowCfg(Query query) {
   query instanceof NosqlInjectionQuery and
   result instanceof NosqlInjectionAtm::NosqlInjectionAtmConfig
   or
diff --git a/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/ExtractEndpointDataInference.ql b/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/ExtractEndpointDataInference.ql
index f1188c77990..79551ec1e0e 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/ExtractEndpointDataInference.ql
+++ b/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/ExtractEndpointDataInference.ql
@@ -5,7 +5,7 @@
  * and are therefore used as candidates for scoring at inference time.
  *
  * This is equivalent to ExtractEndpointDataTraining.qlref, but testing the inference endpoints rather than the training
- * endpoints. It ensures that CodeQL changes don't inadvertently change the endpoints that get scored at inferece time.
+ * endpoints. It detects CodeQL changes that impact the endpoints that get scored at inference time.
  *
  * This test does not actually score the endpoints and test for changes in the model predictions: that gets done in the
  * integration tests.

From 2e20abca90bad3c91052980bf631604c9778ebfe Mon Sep 17 00:00:00 2001
From: tiferet <tiferet@github.com>
Date: Thu, 1 Dec 2022 14:32:09 -0800
Subject: [PATCH 0980/1420] Undo error from previous commit

Oops, now I see why that wasn't private
---
 .../modelbuilding/extraction/ExtractEndpointDataTraining.qll    | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/javascript/ql/experimental/adaptivethreatmodeling/modelbuilding/extraction/ExtractEndpointDataTraining.qll b/javascript/ql/experimental/adaptivethreatmodeling/modelbuilding/extraction/ExtractEndpointDataTraining.qll
index 093a12264b1..763c74c7cf3 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/modelbuilding/extraction/ExtractEndpointDataTraining.qll
+++ b/javascript/ql/experimental/adaptivethreatmodeling/modelbuilding/extraction/ExtractEndpointDataTraining.qll
@@ -206,7 +206,7 @@ query predicate reformattedTrainingEndpoints(
  * Gets the ATM data flow configuration for the specified query.
  * TODO: Delete this once we are no longer surfacing `hasFlowFromSource`.
  */
-private DataFlow::Configuration getDataFlowCfg(Query query) {
+DataFlow::Configuration getDataFlowCfg(Query query) {
   query instanceof NosqlInjectionQuery and
   result instanceof NosqlInjectionAtm::NosqlInjectionAtmConfig
   or

From d17383d98cf43af95742cae05464d1e6001dccb9 Mon Sep 17 00:00:00 2001
From: tiferet <tiferet@github.com>
Date: Fri, 2 Dec 2022 06:53:37 -0800
Subject: [PATCH 0981/1420] Add XssThroughDom

---
 .../test/endpoint_large_scale/ExtractEndpointDataInference.ql    | 1 +
 1 file changed, 1 insertion(+)

diff --git a/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/ExtractEndpointDataInference.ql b/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/ExtractEndpointDataInference.ql
index 79551ec1e0e..3d360797514 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/ExtractEndpointDataInference.ql
+++ b/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/ExtractEndpointDataInference.ql
@@ -18,6 +18,7 @@ private import experimental.adaptivethreatmodeling.NosqlInjectionATM as NosqlInj
 private import experimental.adaptivethreatmodeling.SqlInjectionATM as SqlInjectionAtm
 private import experimental.adaptivethreatmodeling.TaintedPathATM as TaintedPathAtm
 private import experimental.adaptivethreatmodeling.XssATM as XssAtm
+private import experimental.adaptivethreatmodeling.XssThroughDomATM as XssThroughDomAtm
 
 query predicate isSinkCandidateForQuery(
   AtmConfig::AtmConfig queryConfig, JS::DataFlow::PathNode sink

From f3f8f35069b276ab8ab5d4cd50fff69ed6caa75c Mon Sep 17 00:00:00 2001
From: Mauro Baluda <mbaluda@github.com>
Date: Fri, 2 Dec 2022 17:37:23 +0100
Subject: [PATCH 0982/1420] Update InsecureCookie.ql

Support interprocedural setting of cookie security
---
 java/ql/src/Security/CWE/CWE-614/InsecureCookie.ql | 12 ++++++++++--
 1 file changed, 10 insertions(+), 2 deletions(-)

diff --git a/java/ql/src/Security/CWE/CWE-614/InsecureCookie.ql b/java/ql/src/Security/CWE/CWE-614/InsecureCookie.ql
index de4a3bd8ffe..f0950e93779 100644
--- a/java/ql/src/Security/CWE/CWE-614/InsecureCookie.ql
+++ b/java/ql/src/Security/CWE/CWE-614/InsecureCookie.ql
@@ -26,11 +26,19 @@ predicate isSafeSecureCookieSetting(Expr e) {
   )
 }
 
-from MethodAccess add
+class SecureCookieConfiguration extends DataFlow::Configuration {
+  SecureCookieConfiguration() { this = "SecureCookieConfiguration" }
+
+  override predicate isSource(DataFlow::Node source) { any() }
+
+  override predicate isSink(DataFlow::Node sink) { any() }
+}
+
+from MethodAccess add, SecureCookieConfiguration df
 where
   add.getMethod() instanceof ResponseAddCookieMethod and
   not exists(Variable cookie, MethodAccess m |
-    add.getArgument(0) = cookie.getAnAccess() and
+    df.hasFlow(DataFlow::exprNode(cookie.getAnAccess()), DataFlow::exprNode(add.getArgument(0))) and
     m.getMethod().getName() = "setSecure" and
     forex(DataFlow::Node argSource |
       DataFlow::localFlow(argSource, DataFlow::exprNode(m.getArgument(0))) and

From c0aae3d68ecb5e29b095e19bf0c583a70df30734 Mon Sep 17 00:00:00 2001
From: Tiferet Gazit <tiferet@github.com>
Date: Fri, 2 Dec 2022 09:00:45 -0800
Subject: [PATCH 0983/1420] Apply suggestions from code review

Co-authored-by: Stephan Brandauer <kaeluka@github.com>
---
 .../lib/experimental/adaptivethreatmodeling/ATMConfig.qll       | 2 +-
 .../test/endpoint_large_scale/ExtractEndpointDataInference.ql   | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/ATMConfig.qll b/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/ATMConfig.qll
index 933ce25922d..778728b3e30 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/ATMConfig.qll
+++ b/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/ATMConfig.qll
@@ -159,7 +159,7 @@ abstract class AtmConfig extends JS::TaintTracking::Configuration {
    * Holds if if `sink` is an effective sink with flow from `source` which gets used as a sink candidate for scoring
    * with the ML model.
    */
-  predicate isSinkCandidate(JS::DataFlow::PathNode sink) {
+  predicate isSinkCandidateWithFlow(JS::DataFlow::Node sink) {
     exists(JS::DataFlow::PathNode source |
       this.hasFlowPath(source, sink) and
       not AtmResultsInfo::isFlowLikelyInBaseQuery(source.getNode(), sink.getNode())
diff --git a/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/ExtractEndpointDataInference.ql b/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/ExtractEndpointDataInference.ql
index 3d360797514..73e68b4f597 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/ExtractEndpointDataInference.ql
+++ b/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/ExtractEndpointDataInference.ql
@@ -23,5 +23,5 @@ private import experimental.adaptivethreatmodeling.XssThroughDomATM as XssThroug
 query predicate isSinkCandidateForQuery(
   AtmConfig::AtmConfig queryConfig, JS::DataFlow::PathNode sink
 ) {
-  queryConfig.isSinkCandidate(sink)
+  queryConfig.isSinkCandidateWithFlow(sink)
 }

From 04f1fe523ab12a3980d7b4063077b24a80e8cfb5 Mon Sep 17 00:00:00 2001
From: Mauro Baluda <mbaluda@github.com>
Date: Fri, 2 Dec 2022 18:01:10 +0100
Subject: [PATCH 0984/1420] Update Test.java

---
 .../security/CWE-311/CWE-614/semmle/tests/Test.java    | 10 ++++++++++
 1 file changed, 10 insertions(+)

diff --git a/java/ql/test/query-tests/security/CWE-311/CWE-614/semmle/tests/Test.java b/java/ql/test/query-tests/security/CWE-311/CWE-614/semmle/tests/Test.java
index 3274310a6b2..c198f522e30 100644
--- a/java/ql/test/query-tests/security/CWE-311/CWE-614/semmle/tests/Test.java
+++ b/java/ql/test/query-tests/security/CWE-311/CWE-614/semmle/tests/Test.java
@@ -84,5 +84,15 @@ class Test {
 			response.addCookie(cookie);
 		}
 
+		{
+			// GOOD: set secure flag in call to `createSecureCookie`
+			response.addCookie(createSecureCookie());
+		}
+	}
+	
+	private static Cookie createSecureCookie() {
+		Cookie cookie = new Cookie("secret", "fakesecret");
+		cookie.setSecure(constTrue);
+		return cookie;
 	}
 }

From d211decfb4d99aa1544ab64bada2d30b9795106e Mon Sep 17 00:00:00 2001
From: tiferet <tiferet@github.com>
Date: Fri, 2 Dec 2022 09:03:44 -0800
Subject: [PATCH 0985/1420] Fix error in last commit

---
 .../lib/experimental/adaptivethreatmodeling/ATMConfig.qll       | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/ATMConfig.qll b/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/ATMConfig.qll
index 778728b3e30..5532c8d4726 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/ATMConfig.qll
+++ b/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/ATMConfig.qll
@@ -159,7 +159,7 @@ abstract class AtmConfig extends JS::TaintTracking::Configuration {
    * Holds if if `sink` is an effective sink with flow from `source` which gets used as a sink candidate for scoring
    * with the ML model.
    */
-  predicate isSinkCandidateWithFlow(JS::DataFlow::Node sink) {
+  predicate isSinkCandidateWithFlow(JS::DataFlow::PathNode sink) {
     exists(JS::DataFlow::PathNode source |
       this.hasFlowPath(source, sink) and
       not AtmResultsInfo::isFlowLikelyInBaseQuery(source.getNode(), sink.getNode())

From 93e3c72c6ac3556e5889634f1e1f5e2c5750ea12 Mon Sep 17 00:00:00 2001
From: tiferet <tiferet@github.com>
Date: Fri, 2 Dec 2022 10:29:39 -0800
Subject: [PATCH 0986/1420] Test for contradictory endpoint characteristics

---
 ...tradictoryEndpointCharacteristics.expected |  0
 .../ContradictoryEndpointCharacteristics.ql   | 74 +++++++++++++++++++
 2 files changed, 74 insertions(+)
 create mode 100644 javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/ContradictoryEndpointCharacteristics.expected
 create mode 100644 javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/ContradictoryEndpointCharacteristics.ql

diff --git a/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/ContradictoryEndpointCharacteristics.expected b/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/ContradictoryEndpointCharacteristics.expected
new file mode 100644
index 00000000000..e69de29bb2d
diff --git a/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/ContradictoryEndpointCharacteristics.ql b/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/ContradictoryEndpointCharacteristics.ql
new file mode 100644
index 00000000000..c82e7778f4a
--- /dev/null
+++ b/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/ContradictoryEndpointCharacteristics.ql
@@ -0,0 +1,74 @@
+/**
+ * ContradictoryEndpointCharacteristics.ql
+ *
+ * This tests surfaces endpoints that have a set of characteristics are logically incompatible with one another (e.g one
+ * high-confidence characteristic that implies a non-sink and another that implies a sink). If the test surfaces any
+ * such endpoints, this is a hint that some of our endpoint characteristics may be need to be adjusted.
+ */
+
+import javascript
+private import experimental.adaptivethreatmodeling.EndpointCharacteristics as EndpointCharacteristics
+private import experimental.adaptivethreatmodeling.EndpointTypes as EndpointTypes
+
+/**
+ * Holds if the given endpoint has a self-contradictory combination of characteristics. Detects errors in our endpoint
+ * characteristics. Lists the problematic characterisitics and their implications for all such endpoints, together with
+ * an error message indicating why this combination is problematic.
+ */
+query predicate erroneousEndpoints(
+  DataFlow::Node endpoint, EndpointCharacteristics::EndpointCharacteristic characteristic,
+  EndpointTypes::EndpointType endpointClass, float confidence, string errorMessage
+) {
+  // An endpoint's characteristics should not include positive indicators with medium/high confidence for more than one
+  // class.
+  exists(
+    EndpointCharacteristics::EndpointCharacteristic characteristic2,
+    EndpointTypes::EndpointType endpointClass2, float confidence2
+  |
+    endpointClass.getEncoding() != endpointClass2.getEncoding() and
+    characteristic.appliesToEndpoint(endpoint) and
+    characteristic2.appliesToEndpoint(endpoint) and
+    characteristic.hasImplications(endpointClass, true, confidence) and
+    characteristic2.hasImplications(endpointClass2, true, confidence2) and
+    confidence > characteristic.mediumConfidence() and
+    confidence2 > characteristic2.mediumConfidence() and
+    // We currently know of several high-confidence negative characteristics that apply to some known sinks.
+    // TODO: Experiment with lowering the confidence of `"FileSystemAccess"`, `"DOM"`, `"DatabaseAccess"`, and
+    // `"JQueryArgument"`.
+    not (
+      characteristic = ["TaintedPathSink", "FileSystemAccess"] and
+      characteristic2 = ["TaintedPathSink", "FileSystemAccess"]
+      or
+      characteristic = ["DomBasedXssSink", "DOM"] and
+      characteristic2 = ["DomBasedXssSink", "DOM"]
+      or
+      characteristic = ["DomBasedXssSink", "JQueryArgument"] and
+      characteristic2 = ["DomBasedXssSink", "JQueryArgument"]
+      or
+      characteristic = ["NosqlInjectionSink", "DatabaseAccess"] and
+      characteristic2 = ["NosqlInjectionSink", "DatabaseAccess"]
+      or
+      characteristic = ["SqlInjectionSink", "DatabaseAccess"] and
+      characteristic2 = ["SqlInjectionSink", "DatabaseAccess"]
+    )
+  ) and
+  errorMessage = "Endpoint has high-confidence positive indicators for multiple classes"
+  or
+  // An enpoint's characteristics should not include positive indicators with medium/high confidence for some class and
+  // also include negative indicators with medium/high confidence for this same class.
+  exists(EndpointCharacteristics::EndpointCharacteristic characteristic2, float confidence2 |
+    characteristic.appliesToEndpoint(endpoint) and
+    characteristic2.appliesToEndpoint(endpoint) and
+    characteristic.hasImplications(endpointClass, true, confidence) and
+    characteristic2.hasImplications(endpointClass, false, confidence2) and
+    confidence > characteristic.mediumConfidence() and
+    confidence2 > characteristic2.mediumConfidence()
+  ) and
+  errorMessage = "Endpoint has high-confidence positive and negative indicators for the same class"
+  or
+  // The endpoint's characteristics should not include indicators with confidence outside of [0, 1].
+  characteristic.appliesToEndpoint(endpoint) and
+  characteristic.hasImplications(_, _, confidence) and
+  (confidence < 0 or confidence > 1) and
+  errorMessage = "Endpoint has an indicator with confidence outside of [0, 1]"
+}

From 7c4bd509a7d92bab3503d0c13592c8ccfc664ebe Mon Sep 17 00:00:00 2001
From: Ed Minnix <egregius313@github.com>
Date: Fri, 2 Dec 2022 14:43:52 -0500
Subject: [PATCH 0987/1420] Java: add AssetLoader example to WebView file
 access documentation

---
 .../AndroidWebViewSettingsFileAccess.qhelp        |  6 ++++++
 .../Security/CWE/CWE-200/AssetLoaderExample.java  | 15 +++++++++++++++
 2 files changed, 21 insertions(+)
 create mode 100644 java/ql/src/Security/CWE/CWE-200/AssetLoaderExample.java

diff --git a/java/ql/src/Security/CWE/CWE-200/AndroidWebViewSettingsFileAccess.qhelp b/java/ql/src/Security/CWE/CWE-200/AndroidWebViewSettingsFileAccess.qhelp
index fa4b1e1696f..13ffa6d9c33 100644
--- a/java/ql/src/Security/CWE/CWE-200/AndroidWebViewSettingsFileAccess.qhelp
+++ b/java/ql/src/Security/CWE/CWE-200/AndroidWebViewSettingsFileAccess.qhelp
@@ -38,6 +38,12 @@
 
     <sample src="WebViewFileAccessSafe.java"/>
 
+    <p>
+      In the following example, an asset loader is configured so that assets can
+      be access over <code>https</code>, and not require file system access.
+    </p>
+
+    <sample src="AssetLoaderExample.java"/>
   </example>
 
   <references>
diff --git a/java/ql/src/Security/CWE/CWE-200/AssetLoaderExample.java b/java/ql/src/Security/CWE/CWE-200/AssetLoaderExample.java
new file mode 100644
index 00000000000..dfd5afda5ae
--- /dev/null
+++ b/java/ql/src/Security/CWE/CWE-200/AssetLoaderExample.java
@@ -0,0 +1,15 @@
+WebViewAssetLoader loader = new WebViewAssetLoader.Builder()
+    // Replace the domain with a domain you control, or use the default
+    // appassets.androidplatform.com
+    .setDomain("appassets.example.com")
+    .addPathHandler("/resources", new AssetsPathHandler(this))
+    .build();
+
+webView.setWebViewClient(new WebViewClientCompat() {
+    @Override
+    public WebResourceResponse shouldInterceptRequest(WebView view, WebResourceRequest request) {
+        return assetLoader.shouldInterceptRequest(request.getUrl());
+    }
+});
+
+webView.loadUrl("https://appassets.example.com/resources/www/index.html");

From 1c0494ec538c102a4a18e54092a5eaba27df4107 Mon Sep 17 00:00:00 2001
From: Chris Smowton <smowton@github.com>
Date: Thu, 1 Dec 2022 12:11:41 +0000
Subject: [PATCH 0988/1420] Extract a no-arg constuctor whenever a Kotlin class
 has default values for all parameters

---
 .../src/main/kotlin/KotlinFileExtractor.kt            | 11 +++++++++--
 .../kotlin/jvmoverloads-external-class/User.java      |  5 +++++
 .../kotlin/jvmoverloads-external-class/test.kt        |  2 ++
 .../kotlin/jvmoverloads-external-class/test.py        |  2 +-
 4 files changed, 17 insertions(+), 3 deletions(-)
 create mode 100644 java/ql/integration-tests/all-platforms/kotlin/jvmoverloads-external-class/User.java

diff --git a/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt b/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt
index 0dc226b86ce..19a59385b7b 100644
--- a/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt
+++ b/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt
@@ -1049,8 +1049,6 @@ open class KotlinFileExtractor(
     private val jvmOverloadsFqName = FqName("kotlin.jvm.JvmOverloads")
 
     private fun extractGeneratedOverloads(f: IrFunction, parentId: Label<out DbReftype>, maybeSourceParentId: Label<out DbReftype>?, extractBody: Boolean, extractMethodAndParameterTypeAccesses: Boolean, typeSubstitution: TypeSubstitution?, classTypeArgsIncludingOuterClasses: List<IrTypeArgument>?) {
-        if (!f.hasAnnotation(jvmOverloadsFqName))
-            return
 
         fun extractGeneratedOverload(paramList: List<IrValueParameter?>) {
             val overloadParameters = paramList.filterNotNull()
@@ -1096,6 +1094,15 @@ open class KotlinFileExtractor(
             }
         }
 
+        if (!f.hasAnnotation(jvmOverloadsFqName)) {
+            if (f is IrConstructor && f.valueParameters.isNotEmpty() && f.valueParameters.all { it.defaultValue != null }) {
+                // Per https://kotlinlang.org/docs/classes.html#creating-instances-of-classes, a single default overload gets created specifically
+                // when we have all default parameters, regardless of `@JvmOverloads`.
+                extractGeneratedOverload(f.valueParameters.map { _ -> null })
+            }
+            return
+        }
+
         val paramList: MutableList<IrValueParameter?> = f.valueParameters.toMutableList()
         for (n in (f.valueParameters.size - 1) downTo 0) {
             if (f.valueParameters[n].defaultValue != null) {
diff --git a/java/ql/integration-tests/all-platforms/kotlin/jvmoverloads-external-class/User.java b/java/ql/integration-tests/all-platforms/kotlin/jvmoverloads-external-class/User.java
new file mode 100644
index 00000000000..abe5b4e0092
--- /dev/null
+++ b/java/ql/integration-tests/all-platforms/kotlin/jvmoverloads-external-class/User.java
@@ -0,0 +1,5 @@
+public class User {
+
+  public static void test() { new AllDefaultsConstructor(); }
+
+}
diff --git a/java/ql/integration-tests/all-platforms/kotlin/jvmoverloads-external-class/test.kt b/java/ql/integration-tests/all-platforms/kotlin/jvmoverloads-external-class/test.kt
index 0996b3f158a..0d155020de5 100644
--- a/java/ql/integration-tests/all-platforms/kotlin/jvmoverloads-external-class/test.kt
+++ b/java/ql/integration-tests/all-platforms/kotlin/jvmoverloads-external-class/test.kt
@@ -3,3 +3,5 @@ public class Test {
   @JvmOverloads fun f(x: Int = 0, y: Int) { }
 
 }
+
+public class AllDefaultsConstructor(val x: Int = 1, val y: Int = 2) { }
diff --git a/java/ql/integration-tests/all-platforms/kotlin/jvmoverloads-external-class/test.py b/java/ql/integration-tests/all-platforms/kotlin/jvmoverloads-external-class/test.py
index b763a28daa9..1416b7ecd67 100644
--- a/java/ql/integration-tests/all-platforms/kotlin/jvmoverloads-external-class/test.py
+++ b/java/ql/integration-tests/all-platforms/kotlin/jvmoverloads-external-class/test.py
@@ -1,4 +1,4 @@
 from create_database_utils import *
 
 os.mkdir('bin')
-run_codeql_database_create(["kotlinc test.kt -d bin", "kotlinc user.kt -cp bin"], lang="java")
+run_codeql_database_create(["kotlinc test.kt -d bin", "kotlinc user.kt -cp bin", "javac User.java -cp bin"], lang="java")

From ff4baf096ffe4e02eb92a942b7073a7c2149d3be Mon Sep 17 00:00:00 2001
From: Chris Smowton <smowton@github.com>
Date: Fri, 2 Dec 2022 17:38:16 +0000
Subject: [PATCH 0989/1420] Don't add name mangling to top-level internal
 functions

Turns out kotlinc only adds this sort of name mangling to class member functions
---
 .../src/main/kotlin/KotlinUsesExtractor.kt                 | 2 +-
 .../library-tests/java_and_kotlin_internal/Java.java       | 1 +
 .../library-tests/java_and_kotlin_internal/Kotlin.kt       | 1 +
 .../java_and_kotlin_internal/visibility.expected           | 7 +++++++
 4 files changed, 10 insertions(+), 1 deletion(-)

diff --git a/java/kotlin-extractor/src/main/kotlin/KotlinUsesExtractor.kt b/java/kotlin-extractor/src/main/kotlin/KotlinUsesExtractor.kt
index b9e66ac18d6..6785169ac59 100644
--- a/java/kotlin-extractor/src/main/kotlin/KotlinUsesExtractor.kt
+++ b/java/kotlin-extractor/src/main/kotlin/KotlinUsesExtractor.kt
@@ -821,7 +821,7 @@ open class KotlinUsesExtractor(
                 OperatorNameConventions.INVOKE.asString())
 
         fun getSuffixIfInternal() =
-            if (f.visibility == DescriptorVisibilities.INTERNAL && f !is IrConstructor) {
+            if (f.visibility == DescriptorVisibilities.INTERNAL && f !is IrConstructor && !(f.parent is IrFile || isExternalFileClassMember(f))) {
                 "\$" + getJvmModuleName(f)
             } else {
                 ""
diff --git a/java/ql/test/kotlin/library-tests/java_and_kotlin_internal/Java.java b/java/ql/test/kotlin/library-tests/java_and_kotlin_internal/Java.java
index 73be4ea80bb..585161f21c0 100644
--- a/java/ql/test/kotlin/library-tests/java_and_kotlin_internal/Java.java
+++ b/java/ql/test/kotlin/library-tests/java_and_kotlin_internal/Java.java
@@ -1,5 +1,6 @@
 public class Java {
 	void javaFun() {
 		new Kotlin().kotlinFun$main();
+		KotlinKt.topLevelKotlinFun();
 	}
 }
diff --git a/java/ql/test/kotlin/library-tests/java_and_kotlin_internal/Kotlin.kt b/java/ql/test/kotlin/library-tests/java_and_kotlin_internal/Kotlin.kt
index 09297fd286e..98235ec7ff8 100644
--- a/java/ql/test/kotlin/library-tests/java_and_kotlin_internal/Kotlin.kt
+++ b/java/ql/test/kotlin/library-tests/java_and_kotlin_internal/Kotlin.kt
@@ -3,3 +3,4 @@ public class Kotlin {
 	}
 }
 
+internal fun topLevelKotlinFun() { }
diff --git a/java/ql/test/kotlin/library-tests/java_and_kotlin_internal/visibility.expected b/java/ql/test/kotlin/library-tests/java_and_kotlin_internal/visibility.expected
index 3edb62a6505..378da6dd22f 100644
--- a/java/ql/test/kotlin/library-tests/java_and_kotlin_internal/visibility.expected
+++ b/java/ql/test/kotlin/library-tests/java_and_kotlin_internal/visibility.expected
@@ -1,9 +1,16 @@
 isPublic
 isInternal
 | Kotlin.kt:2:11:3:2 | kotlinFun$main |
+| Kotlin.kt:6:10:6:36 | topLevelKotlinFun |
 modifiers_methods
 | file://:0:0:0:0 | final | Kotlin.kt:2:11:3:2 | kotlinFun$main |
+| file://:0:0:0:0 | final | Kotlin.kt:6:10:6:36 | topLevelKotlinFun |
 | file://:0:0:0:0 | internal | Kotlin.kt:2:11:3:2 | kotlinFun$main |
+| file://:0:0:0:0 | internal | Kotlin.kt:6:10:6:36 | topLevelKotlinFun |
+| file://:0:0:0:0 | static | Kotlin.kt:6:10:6:36 | topLevelKotlinFun |
 #select
 | Kotlin.kt:2:11:3:2 | kotlinFun$main | final |
 | Kotlin.kt:2:11:3:2 | kotlinFun$main | internal |
+| Kotlin.kt:6:10:6:36 | topLevelKotlinFun | final |
+| Kotlin.kt:6:10:6:36 | topLevelKotlinFun | internal |
+| Kotlin.kt:6:10:6:36 | topLevelKotlinFun | static |

From 7e0e56dadc654a919dd5f315ca9c2389cb95237e Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Alvaro=20Mu=C3=B1oz?= <pwntester@github.com>
Date: Fri, 2 Dec 2022 22:16:40 +0100
Subject: [PATCH 0990/1420] Added two new CMDi sinks fot python's stdlib

---
 python/ql/lib/semmle/python/frameworks/Stdlib.qll | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

diff --git a/python/ql/lib/semmle/python/frameworks/Stdlib.qll b/python/ql/lib/semmle/python/frameworks/Stdlib.qll
index f5d6dd8df1c..b334de69ff6 100644
--- a/python/ql/lib/semmle/python/frameworks/Stdlib.qll
+++ b/python/ql/lib/semmle/python/frameworks/Stdlib.qll
@@ -1169,7 +1169,9 @@ private module StdlibPrivate {
   private class SubprocessPopenCall extends SystemCommandExecution::Range, DataFlow::CallCfgNode {
     SubprocessPopenCall() {
       exists(string name |
-        name in ["Popen", "call", "check_call", "check_output", "run"] and
+        name in [
+            "Popen", "call", "check_call", "check_output", "run", "getoutput", "getstatusoutput"
+          ] and
         this = subprocess().getMember(name).getACall()
       )
     }

From 15c58dee5f4331c4c4d5e2d8ee8686e1a282f20a Mon Sep 17 00:00:00 2001
From: Porcupiney Hairs <porcupiney.hairs@protonmail.com>
Date: Fri, 3 Jun 2022 22:18:31 +0530
Subject: [PATCH 0991/1420] Golang : Add SQL sinks for `gorqlite` and `GoFrame`
 frameworks

---
 .../2022-12-03-gorqlite-goframe.md            |    4 +
 go/ql/lib/semmle/go/frameworks/SQL.qll        |   67 +
 .../semmle/go/frameworks/SQL/gogf/go.mod      |   26 +
 .../go/frameworks/SQL/gogf/gogf.expected      |   47 +
 .../semmle/go/frameworks/SQL/gogf/gogf.go     |   70 +
 .../semmle/go/frameworks/SQL/gogf/gogf.ql     |    4 +
 .../github.com/gogf/gf/database/gdb/stub.go   | 1175 +++++++++++++++++
 .../vendor/github.com/gogf/gf/frame/g/stub.go |   14 +
 .../go/frameworks/SQL/gogf/vendor/modules.txt |   57 +
 .../semmle/go/frameworks/SQL/gorqlite/go.mod  |    5 +
 .../frameworks/SQL/gorqlite/gorqlite.expected |    6 +
 .../go/frameworks/SQL/gorqlite/gorqlite.go    |   20 +
 .../go/frameworks/SQL/gorqlite/gorqlite.ql    |    4 +
 .../vendor/github.com/rqlite/gorqlite/stub.go |  102 ++
 .../SQL/gorqlite/vendor/modules.txt           |    3 +
 15 files changed, 1604 insertions(+)
 create mode 100644 go/ql/lib/change-notes/2022-12-03-gorqlite-goframe.md
 create mode 100644 go/ql/test/library-tests/semmle/go/frameworks/SQL/gogf/go.mod
 create mode 100644 go/ql/test/library-tests/semmle/go/frameworks/SQL/gogf/gogf.expected
 create mode 100644 go/ql/test/library-tests/semmle/go/frameworks/SQL/gogf/gogf.go
 create mode 100644 go/ql/test/library-tests/semmle/go/frameworks/SQL/gogf/gogf.ql
 create mode 100644 go/ql/test/library-tests/semmle/go/frameworks/SQL/gogf/vendor/github.com/gogf/gf/database/gdb/stub.go
 create mode 100644 go/ql/test/library-tests/semmle/go/frameworks/SQL/gogf/vendor/github.com/gogf/gf/frame/g/stub.go
 create mode 100644 go/ql/test/library-tests/semmle/go/frameworks/SQL/gogf/vendor/modules.txt
 create mode 100644 go/ql/test/library-tests/semmle/go/frameworks/SQL/gorqlite/go.mod
 create mode 100644 go/ql/test/library-tests/semmle/go/frameworks/SQL/gorqlite/gorqlite.expected
 create mode 100644 go/ql/test/library-tests/semmle/go/frameworks/SQL/gorqlite/gorqlite.go
 create mode 100644 go/ql/test/library-tests/semmle/go/frameworks/SQL/gorqlite/gorqlite.ql
 create mode 100644 go/ql/test/library-tests/semmle/go/frameworks/SQL/gorqlite/vendor/github.com/rqlite/gorqlite/stub.go
 create mode 100644 go/ql/test/library-tests/semmle/go/frameworks/SQL/gorqlite/vendor/modules.txt

diff --git a/go/ql/lib/change-notes/2022-12-03-gorqlite-goframe.md b/go/ql/lib/change-notes/2022-12-03-gorqlite-goframe.md
new file mode 100644
index 00000000000..d86db129dab
--- /dev/null
+++ b/go/ql/lib/change-notes/2022-12-03-gorqlite-goframe.md
@@ -0,0 +1,4 @@
+---
+category: minorAnalysis
+---
+* Queries that care about SQL, such as `go/sql-injection`, now recognise SQL-consuming functions belonging to the `gorqlite` and `GoFrame` packages.
diff --git a/go/ql/lib/semmle/go/frameworks/SQL.qll b/go/ql/lib/semmle/go/frameworks/SQL.qll
index 322d17a420a..b8b85d634c8 100644
--- a/go/ql/lib/semmle/go/frameworks/SQL.qll
+++ b/go/ql/lib/semmle/go/frameworks/SQL.qll
@@ -103,6 +103,14 @@ module SQL {
     /** A string that might identify package `go-pg/pg/orm` or a specific version of it. */
     private string gopgorm() { result = package("github.com/go-pg/pg", "orm") }
 
+    /** A string that might identify package `github.com/rqlite/gorqlite` or `github.com/raindog308/gorqlite` or a specific version of it. */
+    private string gorqlite() {
+      result = package(["github.com/rqlite/gorqlite", "github.com/raindog308/gorqlite"], "")
+    }
+
+    /** A string that might identify package `github.com/gogf/gf/database/gdb` or a specific version of it. */
+    private string gogf() { result = package("github.com/gogf/gf", "database/gdb") }
+
     /**
      * A string argument to an API of `go-pg/pg` that is directly interpreted as SQL without
      * taking syntactic structure into account.
@@ -152,6 +160,65 @@ module SQL {
       }
     }
 
+    /**
+     * A string argument to an API of `github.com/rqlite/gorqlite`, or a specific version of it, that is directly interpreted as SQL without
+     * taking syntactic structure into account.
+     */
+    private class GorqliteQueryString extends Range {
+      GorqliteQueryString() {
+        // func (conn *Connection) Query(sqlStatements []string) (results []QueryResult, err error)
+        // func (conn *Connection) QueryOne(sqlStatement string) (qr QueryResult, err error)
+        // func (conn *Connection) Queue(sqlStatements []string) (seq int64, err error)
+        // func (conn *Connection) QueueOne(sqlStatement string) (seq int64, err error)
+        // func (conn *Connection) Write(sqlStatements []string) (results []WriteResult, err error)
+        // func (conn *Connection) WriteOne(sqlStatement string) (wr WriteResult, err error)
+        exists(Method m, string name | m.hasQualifiedName(gorqlite(), "Connection", name) |
+          name = ["Query", "QueryOne", "Queue", "QueueOne", "Write", "WriteOne"] and
+          this = m.getACall().getArgument(0)
+        )
+      }
+    }
+
+    /**
+     * A string argument to an API of `github.com/gogf/gf/database/gdb`, or a specific version of it, that is directly interpreted as SQL without
+     * taking syntactic structure into account.
+     */
+    private class GogfQueryString extends Range {
+      GogfQueryString() {
+        exists(Method m, string name | m.implements(gogf(), ["DB", "Core", "TX"], name) |
+          // func (c *Core) Exec(sql string, args ...interface{}) (result sql.Result, err error)
+          // func (c *Core) GetAll(sql string, args ...interface{}) (Result, error)
+          // func (c *Core) GetArray(sql string, args ...interface{}) ([]Value, error)
+          // func (c *Core) GetCount(sql string, args ...interface{}) (int, error)
+          // func (c *Core) GetOne(sql string, args ...interface{}) (Record, error)
+          // func (c *Core) GetValue(sql string, args ...interface{}) (Value, error)
+          // func (c *Core) Prepare(sql string, execOnMaster ...bool) (*Stmt, error)
+          // func (c *Core) Query(sql string, args ...interface{}) (rows *sql.Rows, err error)
+          // func (c *Core) Raw(rawSql string, args ...interface{}) *Model
+          name =
+            [
+              "Query", "Exec", "Prepare", "GetAll", "GetOne", "GetValue", "GetArray", "GetCount",
+              "Raw"
+            ] and
+          this = m.getACall().getArgument(0)
+          or
+          // func (c *Core) GetScan(pointer interface{}, sql string, args ...interface{}) error
+          // func (c *Core) GetStruct(pointer interface{}, sql string, args ...interface{}) error
+          // func (c *Core) GetStructs(pointer interface{}, sql string, args ...interface{}) error
+          name = ["GetScan", "GetStruct", "GetStructs"] and
+          this = m.getACall().getArgument(1)
+          or
+          // func (c *Core) DoCommit(ctx context.Context, link Link, sql string, args []interface{}) (newSql string, newArgs []interface{}, err error)
+          // func (c *Core) DoExec(ctx context.Context, link Link, sql string, args ...interface{}) (result sql.Result, err error)
+          // func (c *Core) DoGetAll(ctx context.Context, link Link, sql string, args ...interface{}) (result Result, err error)
+          // func (c *Core) DoPrepare(ctx context.Context, link Link, sql string) (*Stmt, error)
+          // func (c *Core) DoQuery(ctx context.Context, link Link, sql string, args ...interface{}) (rows *sql.Rows, err error)
+          name = ["DoGetAll", "DoQuery", "DoExec", "DoCommit", "DoPrepare"] and
+          this = m.getACall().getArgument(2)
+        )
+      }
+    }
+
     /** A taint model for various methods on the struct `Formatter` of `go-pg/pg/orm`. */
     private class PgOrmFormatterFunction extends TaintTracking::FunctionModel, Method {
       FunctionInput i;
diff --git a/go/ql/test/library-tests/semmle/go/frameworks/SQL/gogf/go.mod b/go/ql/test/library-tests/semmle/go/frameworks/SQL/gogf/go.mod
new file mode 100644
index 00000000000..1ac3796ab52
--- /dev/null
+++ b/go/ql/test/library-tests/semmle/go/frameworks/SQL/gogf/go.mod
@@ -0,0 +1,26 @@
+module main
+
+go 1.19
+
+require github.com/gogf/gf v1.16.9
+
+require (
+	github.com/BurntSushi/toml v0.3.1 // indirect
+	github.com/clbanning/mxj v1.8.5-0.20200714211355-ff02cfb8ea28 // indirect
+	github.com/fatih/color v1.12.0 // indirect
+	github.com/fsnotify/fsnotify v1.4.9 // indirect
+	github.com/go-sql-driver/mysql v1.6.0 // indirect
+	github.com/gomodule/redigo v1.8.5 // indirect
+	github.com/gorilla/websocket v1.4.2 // indirect
+	github.com/grokify/html-strip-tags-go v0.0.1 // indirect
+	github.com/mattn/go-colorable v0.1.8 // indirect
+	github.com/mattn/go-isatty v0.0.12 // indirect
+	github.com/mattn/go-runewidth v0.0.9 // indirect
+	github.com/olekukonko/tablewriter v0.0.5 // indirect
+	go.opentelemetry.io/otel v1.0.0 // indirect
+	go.opentelemetry.io/otel/trace v1.0.0 // indirect
+	golang.org/x/net v0.0.0-20210520170846-37e1c6afe023 // indirect
+	golang.org/x/sys v0.0.0-20210423082822-04245dca01da // indirect
+	golang.org/x/text v0.3.6 // indirect
+	gopkg.in/yaml.v3 v3.0.0-20210107192922-496545a6307b // indirect
+)
diff --git a/go/ql/test/library-tests/semmle/go/frameworks/SQL/gogf/gogf.expected b/go/ql/test/library-tests/semmle/go/frameworks/SQL/gogf/gogf.expected
new file mode 100644
index 00000000000..f4e3e4f15b0
--- /dev/null
+++ b/go/ql/test/library-tests/semmle/go/frameworks/SQL/gogf/gogf.expected
@@ -0,0 +1,47 @@
+| gogf.go:12:9:12:11 | sql |
+| gogf.go:13:11:13:13 | sql |
+| gogf.go:14:13:14:15 | sql |
+| gogf.go:15:13:15:15 | sql |
+| gogf.go:16:11:16:13 | sql |
+| gogf.go:17:13:17:15 | sql |
+| gogf.go:18:12:18:14 | sql |
+| gogf.go:19:10:19:12 | sql |
+| gogf.go:20:8:20:10 | sql |
+| gogf.go:21:17:21:19 | sql |
+| gogf.go:22:19:22:21 | sql |
+| gogf.go:23:20:23:22 | sql |
+| gogf.go:24:23:24:25 | sql |
+| gogf.go:25:21:25:23 | sql |
+| gogf.go:26:23:26:25 | sql |
+| gogf.go:27:22:27:24 | sql |
+| gogf.go:28:24:28:26 | sql |
+| gogf.go:32:9:32:11 | sql |
+| gogf.go:33:11:33:13 | sql |
+| gogf.go:34:13:34:15 | sql |
+| gogf.go:35:13:35:15 | sql |
+| gogf.go:36:11:36:13 | sql |
+| gogf.go:37:13:37:15 | sql |
+| gogf.go:38:12:38:14 | sql |
+| gogf.go:39:10:39:12 | sql |
+| gogf.go:40:8:40:10 | sql |
+| gogf.go:41:17:41:19 | sql |
+| gogf.go:42:23:42:25 | sql |
+| gogf.go:43:21:43:23 | sql |
+| gogf.go:44:23:44:25 | sql |
+| gogf.go:45:22:45:24 | sql |
+| gogf.go:46:24:46:26 | sql |
+| gogf.go:51:9:51:11 | sql |
+| gogf.go:52:11:52:13 | sql |
+| gogf.go:53:13:53:15 | sql |
+| gogf.go:54:13:54:15 | sql |
+| gogf.go:55:11:55:13 | sql |
+| gogf.go:56:13:56:15 | sql |
+| gogf.go:57:12:57:14 | sql |
+| gogf.go:58:10:58:12 | sql |
+| gogf.go:59:8:59:10 | sql |
+| gogf.go:60:17:60:19 | sql |
+| gogf.go:61:23:61:25 | sql |
+| gogf.go:62:21:62:23 | sql |
+| gogf.go:63:23:63:25 | sql |
+| gogf.go:64:22:64:24 | sql |
+| gogf.go:65:24:65:26 | sql |
diff --git a/go/ql/test/library-tests/semmle/go/frameworks/SQL/gogf/gogf.go b/go/ql/test/library-tests/semmle/go/frameworks/SQL/gogf/gogf.go
new file mode 100644
index 00000000000..d0eceaf862c
--- /dev/null
+++ b/go/ql/test/library-tests/semmle/go/frameworks/SQL/gogf/gogf.go
@@ -0,0 +1,70 @@
+package main
+
+//go:generate depstubber -vendor github.com/gogf/gf/frame/g "" DB
+//go:generate depstubber -vendor github.com/gogf/gf/database/gdb DB,Core,TX ""
+
+import (
+	"github.com/gogf/gf/database/gdb"
+	"github.com/gogf/gf/frame/g"
+)
+
+func gogfCoreTest(sql string, c *gdb.Core) {
+	c.Exec(sql, nil)               // $ querystring=sql
+	c.GetAll(sql, nil)             // $ querystring=sql
+	c.GetArray(sql, nil)           // $ querystring=sql
+	c.GetCount(sql, nil)           // $ querystring=sql
+	c.GetOne(sql, nil)             // $ querystring=sql
+	c.GetValue(sql, nil)           // $ querystring=sql
+	c.Prepare(sql, true)           // $ querystring=sql
+	c.Query(sql, nil)              // $ querystring=sql
+	c.Raw(sql, nil)                // $ querystring=sql
+	c.GetScan(nil, sql, nil)       // $ querystring=sql
+	c.GetStruct(nil, sql, nil)     // $ querystring=sql
+	c.GetStructs(nil, sql, nil)    // $ querystring=sql
+	c.DoCommit(nil, nil, sql, nil) // $ querystring=sql
+	c.DoExec(nil, nil, sql, nil)   // $ querystring=sql
+	c.DoGetAll(nil, nil, sql, nil) // $ querystring=sql
+	c.DoQuery(nil, nil, sql, nil)  // $ querystring=sql
+	c.DoPrepare(nil, nil, sql)     // $ querystring=sql
+}
+
+func gogfDbtest(sql string, c gdb.DB) {
+	c.Exec(sql, nil)               // $ querystring=sql
+	c.GetAll(sql, nil)             // $ querystring=sql
+	c.GetArray(sql, nil)           // $ querystring=sql
+	c.GetCount(sql, nil)           // $ querystring=sql
+	c.GetOne(sql, nil)             // $ querystring=sql
+	c.GetValue(sql, nil)           // $ querystring=sql
+	c.Prepare(sql, true)           // $ querystring=sql
+	c.Query(sql, nil)              // $ querystring=sql
+	c.Raw(sql, nil)                // $ querystring=sql
+	c.GetScan(nil, sql, nil)       // $ querystring=sql
+	c.DoCommit(nil, nil, sql, nil) // $ querystring=sql
+	c.DoExec(nil, nil, sql, nil)   // $ querystring=sql
+	c.DoGetAll(nil, nil, sql, nil) // $ querystring=sql
+	c.DoQuery(nil, nil, sql, nil)  // $ querystring=sql
+	c.DoPrepare(nil, nil, sql)     // $ querystring=sql
+}
+
+func gogfGTest(sql string) {
+	c := g.DB("ad")
+	c.Exec(sql, nil)               // $ querystring=sql
+	c.GetAll(sql, nil)             // $ querystring=sql
+	c.GetArray(sql, nil)           // $ querystring=sql
+	c.GetCount(sql, nil)           // $ querystring=sql
+	c.GetOne(sql, nil)             // $ querystring=sql
+	c.GetValue(sql, nil)           // $ querystring=sql
+	c.Prepare(sql, true)           // $ querystring=sql
+	c.Query(sql, nil)              // $ querystring=sql
+	c.Raw(sql, nil)                // $ querystring=sql
+	c.GetScan(nil, sql, nil)       // $ querystring=sql
+	c.DoCommit(nil, nil, sql, nil) // $ querystring=sql
+	c.DoExec(nil, nil, sql, nil)   // $ querystring=sql
+	c.DoGetAll(nil, nil, sql, nil) // $ querystring=sql
+	c.DoQuery(nil, nil, sql, nil)  // $ querystring=sql
+	c.DoPrepare(nil, nil, sql)     // $ querystring=sql
+}
+
+func main() {
+	return
+}
diff --git a/go/ql/test/library-tests/semmle/go/frameworks/SQL/gogf/gogf.ql b/go/ql/test/library-tests/semmle/go/frameworks/SQL/gogf/gogf.ql
new file mode 100644
index 00000000000..7b56fd97441
--- /dev/null
+++ b/go/ql/test/library-tests/semmle/go/frameworks/SQL/gogf/gogf.ql
@@ -0,0 +1,4 @@
+import go
+
+from SQL::QueryString qs
+select qs
diff --git a/go/ql/test/library-tests/semmle/go/frameworks/SQL/gogf/vendor/github.com/gogf/gf/database/gdb/stub.go b/go/ql/test/library-tests/semmle/go/frameworks/SQL/gogf/vendor/github.com/gogf/gf/database/gdb/stub.go
new file mode 100644
index 00000000000..4eef94f8893
--- /dev/null
+++ b/go/ql/test/library-tests/semmle/go/frameworks/SQL/gogf/vendor/github.com/gogf/gf/database/gdb/stub.go
@@ -0,0 +1,1175 @@
+// Code generated by depstubber. DO NOT EDIT.
+// This is a simple stub for github.com/gogf/gf/database/gdb, strictly for use in testing.
+
+// See the LICENSE file for information about the licensing of the original library.
+// Source: github.com/gogf/gf/database/gdb (exports: DB,Core,TX; functions: )
+
+// Package gdb is a stub of github.com/gogf/gf/database/gdb, generated by depstubber.
+package gdb
+
+import (
+	context "context"
+	sql "database/sql"
+	time "time"
+)
+
+type ChunkHandler func(Result, error) bool
+
+type ConfigNode struct {
+	Host                 string
+	Port                 string
+	User                 string
+	Pass                 string
+	Name                 string
+	Type                 string
+	Link                 string
+	Role                 string
+	Debug                bool
+	Prefix               string
+	DryRun               bool
+	Weight               int
+	Charset              string
+	Timezone             string
+	MaxIdleConnCount     int
+	MaxOpenConnCount     int
+	MaxConnLifeTime      time.Duration
+	QueryTimeout         time.Duration
+	ExecTimeout          time.Duration
+	TranTimeout          time.Duration
+	PrepareTimeout       time.Duration
+	CreatedAt            string
+	UpdatedAt            string
+	DeletedAt            string
+	TimeMaintainDisabled bool
+	CtxStrict            bool
+}
+
+func (_ *ConfigNode) String() string {
+	return ""
+}
+
+type Core struct{}
+
+func (_ *Core) Begin() (*TX, error) {
+	return nil, nil
+}
+
+func (_ *Core) Close(_ context.Context) error {
+	return nil
+}
+
+func (_ *Core) Ctx(_ context.Context) DB {
+	return nil
+}
+
+func (_ *Core) Delete(_ string, _ interface{}, _ ...interface{}) (sql.Result, error) {
+	return nil, nil
+}
+
+func (_ *Core) DoCommit(_ context.Context, _ Link, _ string, _ []interface{}) (string, []interface{}, error) {
+	return "", nil, nil
+}
+
+func (_ *Core) DoDelete(_ context.Context, _ Link, _ string, _ string, _ ...interface{}) (sql.Result, error) {
+	return nil, nil
+}
+
+func (_ *Core) DoExec(_ context.Context, _ Link, _ string, _ ...interface{}) (sql.Result, error) {
+	return nil, nil
+}
+
+func (_ *Core) DoGetAll(_ context.Context, _ Link, _ string, _ ...interface{}) (Result, error) {
+	return nil, nil
+}
+
+func (_ *Core) DoInsert(_ context.Context, _ Link, _ string, _ []map[string]interface{}, _ DoInsertOption) (sql.Result, error) {
+	return nil, nil
+}
+
+func (_ *Core) DoPrepare(_ context.Context, _ Link, _ string) (*Stmt, error) {
+	return nil, nil
+}
+
+func (_ *Core) DoQuery(_ context.Context, _ Link, _ string, _ ...interface{}) (*sql.Rows, error) {
+	return nil, nil
+}
+
+func (_ *Core) DoUpdate(_ context.Context, _ Link, _ string, _ interface{}, _ string, _ ...interface{}) (sql.Result, error) {
+	return nil, nil
+}
+
+func (_ *Core) Exec(_ string, _ ...interface{}) (sql.Result, error) {
+	return nil, nil
+}
+
+func (_ *Core) GetAll(_ string, _ ...interface{}) (Result, error) {
+	return nil, nil
+}
+
+func (_ *Core) GetArray(_ string, _ ...interface{}) ([]interface{}, error) {
+	return nil, nil
+}
+
+func (_ *Core) GetCache() interface{} {
+	return nil
+}
+
+func (_ *Core) GetChars() (string, string) {
+	return "", ""
+}
+
+func (_ *Core) GetConfig() *ConfigNode {
+	return nil
+}
+
+func (_ *Core) GetCore() *Core {
+	return nil
+}
+
+func (_ *Core) GetCount(_ string, _ ...interface{}) (int, error) {
+	return 0, nil
+}
+
+func (_ *Core) GetCtx() context.Context {
+	return nil
+}
+
+func (_ *Core) GetCtxTimeout(_ int, _ context.Context) (context.Context, context.CancelFunc) {
+	return nil, nil
+}
+
+func (_ *Core) GetDebug() bool {
+	return false
+}
+
+func (_ *Core) GetDryRun() bool {
+	return false
+}
+
+func (_ *Core) GetGroup() string {
+	return ""
+}
+
+func (_ *Core) GetLogger() interface{} {
+	return nil
+}
+
+func (_ *Core) GetOne(_ string, _ ...interface{}) (Record, error) {
+	return nil, nil
+}
+
+func (_ *Core) GetPrefix() string {
+	return ""
+}
+
+func (_ *Core) GetScan(_ interface{}, _ string, _ ...interface{}) error {
+	return nil
+}
+
+func (_ *Core) GetSchema() string {
+	return ""
+}
+
+func (_ *Core) GetStruct(_ interface{}, _ string, _ ...interface{}) error {
+	return nil
+}
+
+func (_ *Core) GetStructs(_ interface{}, _ string, _ ...interface{}) error {
+	return nil
+}
+
+func (_ *Core) GetValue(_ string, _ ...interface{}) (interface{}, error) {
+	return nil, nil
+}
+
+func (_ *Core) HasTable(_ string) (bool, error) {
+	return false, nil
+}
+
+func (_ *Core) Insert(_ string, _ interface{}, _ ...int) (sql.Result, error) {
+	return nil, nil
+}
+
+func (_ *Core) InsertAndGetId(_ string, _ interface{}, _ ...int) (int64, error) {
+	return 0, nil
+}
+
+func (_ *Core) InsertIgnore(_ string, _ interface{}, _ ...int) (sql.Result, error) {
+	return nil, nil
+}
+
+func (_ *Core) MarshalJSON() ([]byte, error) {
+	return nil, nil
+}
+
+func (_ *Core) Master(_ ...string) (*sql.DB, error) {
+	return nil, nil
+}
+
+func (_ *Core) MasterLink(_ ...string) (Link, error) {
+	return nil, nil
+}
+
+func (_ *Core) Model(_ ...interface{}) *Model {
+	return nil
+}
+
+func (_ *Core) PingMaster() error {
+	return nil
+}
+
+func (_ *Core) PingSlave() error {
+	return nil
+}
+
+func (_ *Core) Prepare(_ string, _ ...bool) (*Stmt, error) {
+	return nil, nil
+}
+
+func (_ *Core) Query(_ string, _ ...interface{}) (*sql.Rows, error) {
+	return nil, nil
+}
+
+func (_ *Core) QuotePrefixTableName(_ string) string {
+	return ""
+}
+
+func (_ *Core) QuoteString(_ string) string {
+	return ""
+}
+
+func (_ *Core) QuoteWord(_ string) string {
+	return ""
+}
+
+func (_ *Core) Raw(_ string, _ ...interface{}) *Model {
+	return nil
+}
+
+func (_ *Core) Replace(_ string, _ interface{}, _ ...int) (sql.Result, error) {
+	return nil, nil
+}
+
+func (_ *Core) Save(_ string, _ interface{}, _ ...int) (sql.Result, error) {
+	return nil, nil
+}
+
+func (_ *Core) Schema(_ string) *Schema {
+	return nil
+}
+
+func (_ *Core) SetDebug(_ bool) {}
+
+func (_ *Core) SetDryRun(_ bool) {}
+
+func (_ *Core) SetLogger(_ interface{}) {}
+
+func (_ *Core) SetMaxConnLifeTime(_ time.Duration) {}
+
+func (_ *Core) SetMaxIdleConnCount(_ int) {}
+
+func (_ *Core) SetMaxOpenConnCount(_ int) {}
+
+func (_ *Core) SetSchema(_ string) {}
+
+func (_ *Core) Slave(_ ...string) (*sql.DB, error) {
+	return nil, nil
+}
+
+func (_ *Core) SlaveLink(_ ...string) (Link, error) {
+	return nil, nil
+}
+
+func (_ *Core) Table(_ ...interface{}) *Model {
+	return nil
+}
+
+func (_ *Core) TableFields(_ string, _ ...string) (map[string]*TableField, error) {
+	return nil, nil
+}
+
+func (_ *Core) Tables(_ ...string) ([]string, error) {
+	return nil, nil
+}
+
+func (_ *Core) Transaction(_ context.Context, _ func(context.Context, *TX) error) error {
+	return nil
+}
+
+func (_ *Core) Union(_ ...*Model) *Model {
+	return nil
+}
+
+func (_ *Core) UnionAll(_ ...*Model) *Model {
+	return nil
+}
+
+func (_ *Core) Update(_ string, _ interface{}, _ interface{}, _ ...interface{}) (sql.Result, error) {
+	return nil, nil
+}
+
+func (_ *Core) With(_ ...interface{}) *Model {
+	return nil
+}
+
+type DB interface {
+	Begin() (*TX, error)
+	Close(_ context.Context) error
+	Ctx(_ context.Context) DB
+	Delete(_ string, _ interface{}, _ ...interface{}) (sql.Result, error)
+	DoCommit(_ context.Context, _ Link, _ string, _ []interface{}) (string, []interface{}, error)
+	DoDelete(_ context.Context, _ Link, _ string, _ string, _ ...interface{}) (sql.Result, error)
+	DoExec(_ context.Context, _ Link, _ string, _ ...interface{}) (sql.Result, error)
+	DoGetAll(_ context.Context, _ Link, _ string, _ ...interface{}) (Result, error)
+	DoInsert(_ context.Context, _ Link, _ string, _ []map[string]interface{}, _ DoInsertOption) (sql.Result, error)
+	DoPrepare(_ context.Context, _ Link, _ string) (*Stmt, error)
+	DoQuery(_ context.Context, _ Link, _ string, _ ...interface{}) (*sql.Rows, error)
+	DoUpdate(_ context.Context, _ Link, _ string, _ interface{}, _ string, _ ...interface{}) (sql.Result, error)
+	Exec(_ string, _ ...interface{}) (sql.Result, error)
+	FilteredLink() string
+	GetAll(_ string, _ ...interface{}) (Result, error)
+	GetArray(_ string, _ ...interface{}) ([]interface{}, error)
+	GetCache() interface{}
+	GetChars() (string, string)
+	GetConfig() *ConfigNode
+	GetCore() *Core
+	GetCount(_ string, _ ...interface{}) (int, error)
+	GetCtx() context.Context
+	GetDebug() bool
+	GetDryRun() bool
+	GetGroup() string
+	GetLogger() interface{}
+	GetOne(_ string, _ ...interface{}) (Record, error)
+	GetPrefix() string
+	GetScan(_ interface{}, _ string, _ ...interface{}) error
+	GetSchema() string
+	GetValue(_ string, _ ...interface{}) (interface{}, error)
+	Insert(_ string, _ interface{}, _ ...int) (sql.Result, error)
+	InsertAndGetId(_ string, _ interface{}, _ ...int) (int64, error)
+	InsertIgnore(_ string, _ interface{}, _ ...int) (sql.Result, error)
+	Master(_ ...string) (*sql.DB, error)
+	Model(_ ...interface{}) *Model
+	Open(_ *ConfigNode) (*sql.DB, error)
+	PingMaster() error
+	PingSlave() error
+	Prepare(_ string, _ ...bool) (*Stmt, error)
+	Query(_ string, _ ...interface{}) (*sql.Rows, error)
+	Raw(_ string, _ ...interface{}) *Model
+	Replace(_ string, _ interface{}, _ ...int) (sql.Result, error)
+	Save(_ string, _ interface{}, _ ...int) (sql.Result, error)
+	Schema(_ string) *Schema
+	SetDebug(_ bool)
+	SetDryRun(_ bool)
+	SetLogger(_ interface{})
+	SetMaxConnLifeTime(_ time.Duration)
+	SetMaxIdleConnCount(_ int)
+	SetMaxOpenConnCount(_ int)
+	SetSchema(_ string)
+	Slave(_ ...string) (*sql.DB, error)
+	Table(_ ...interface{}) *Model
+	TableFields(_ context.Context, _ string, _ ...string) (map[string]*TableField, error)
+	Tables(_ context.Context, _ ...string) ([]string, error)
+	Transaction(_ context.Context, _ func(context.Context, *TX) error) error
+	Union(_ ...*Model) *Model
+	UnionAll(_ ...*Model) *Model
+	Update(_ string, _ interface{}, _ interface{}, _ ...interface{}) (sql.Result, error)
+	With(_ ...interface{}) *Model
+}
+
+type DoInsertOption struct {
+	OnDuplicateStr string
+	OnDuplicateMap map[string]interface{}
+	InsertOption   int
+	BatchCount     int
+}
+
+type Link interface {
+	Exec(_ string, _ ...interface{}) (sql.Result, error)
+	ExecContext(_ context.Context, _ string, _ ...interface{}) (sql.Result, error)
+	IsTransaction() bool
+	Prepare(_ string) (*sql.Stmt, error)
+	PrepareContext(_ context.Context, _ string) (*sql.Stmt, error)
+	Query(_ string, _ ...interface{}) (*sql.Rows, error)
+	QueryContext(_ context.Context, _ string, _ ...interface{}) (*sql.Rows, error)
+}
+
+type Model struct{}
+
+func (_ *Model) All(_ ...interface{}) (Result, error) {
+	return nil, nil
+}
+
+func (_ *Model) And(_ interface{}, _ ...interface{}) *Model {
+	return nil
+}
+
+func (_ *Model) Args(_ ...interface{}) *Model {
+	return nil
+}
+
+func (_ *Model) Array(_ ...interface{}) ([]interface{}, error) {
+	return nil, nil
+}
+
+func (_ *Model) As(_ string) *Model {
+	return nil
+}
+
+func (_ *Model) Avg(_ string) (float64, error) {
+	return 0, nil
+}
+
+func (_ *Model) Batch(_ int) *Model {
+	return nil
+}
+
+func (_ *Model) Cache(_ time.Duration, _ ...string) *Model {
+	return nil
+}
+
+func (_ *Model) Chunk(_ int, _ ChunkHandler) {}
+
+func (_ *Model) Clone() *Model {
+	return nil
+}
+
+func (_ *Model) Count(_ ...interface{}) (int, error) {
+	return 0, nil
+}
+
+func (_ *Model) CountColumn(_ string) (int, error) {
+	return 0, nil
+}
+
+func (_ *Model) Ctx(_ context.Context) *Model {
+	return nil
+}
+
+func (_ *Model) DB(_ DB) *Model {
+	return nil
+}
+
+func (_ *Model) Data(_ ...interface{}) *Model {
+	return nil
+}
+
+func (_ *Model) Decrement(_ string, _ interface{}) (sql.Result, error) {
+	return nil, nil
+}
+
+func (_ *Model) Delete(_ ...interface{}) (sql.Result, error) {
+	return nil, nil
+}
+
+func (_ *Model) Distinct() *Model {
+	return nil
+}
+
+func (_ *Model) FieldAvg(_ string, _ ...string) *Model {
+	return nil
+}
+
+func (_ *Model) FieldCount(_ string, _ ...string) *Model {
+	return nil
+}
+
+func (_ *Model) FieldMax(_ string, _ ...string) *Model {
+	return nil
+}
+
+func (_ *Model) FieldMin(_ string, _ ...string) *Model {
+	return nil
+}
+
+func (_ *Model) FieldSum(_ string, _ ...string) *Model {
+	return nil
+}
+
+func (_ *Model) Fields(_ ...interface{}) *Model {
+	return nil
+}
+
+func (_ *Model) FieldsEx(_ ...interface{}) *Model {
+	return nil
+}
+
+func (_ *Model) FieldsExStr(_ string, _ ...string) string {
+	return ""
+}
+
+func (_ *Model) FieldsStr(_ ...string) string {
+	return ""
+}
+
+func (_ *Model) Filter() *Model {
+	return nil
+}
+
+func (_ *Model) FindAll(_ ...interface{}) (Result, error) {
+	return nil, nil
+}
+
+func (_ *Model) FindArray(_ ...interface{}) ([]interface{}, error) {
+	return nil, nil
+}
+
+func (_ *Model) FindCount(_ ...interface{}) (int, error) {
+	return 0, nil
+}
+
+func (_ *Model) FindOne(_ ...interface{}) (Record, error) {
+	return nil, nil
+}
+
+func (_ *Model) FindScan(_ interface{}, _ ...interface{}) error {
+	return nil
+}
+
+func (_ *Model) FindValue(_ ...interface{}) (interface{}, error) {
+	return nil, nil
+}
+
+func (_ *Model) ForPage(_ int, _ int) *Model {
+	return nil
+}
+
+func (_ *Model) GetCtx() context.Context {
+	return nil
+}
+
+func (_ *Model) GetFieldsExStr(_ string, _ ...string) string {
+	return ""
+}
+
+func (_ *Model) GetFieldsStr(_ ...string) string {
+	return ""
+}
+
+func (_ *Model) Group(_ ...string) *Model {
+	return nil
+}
+
+func (_ *Model) GroupBy(_ string) *Model {
+	return nil
+}
+
+func (_ *Model) Handler(_ ...ModelHandler) *Model {
+	return nil
+}
+
+func (_ *Model) HasField(_ string) (bool, error) {
+	return false, nil
+}
+
+func (_ *Model) Having(_ interface{}, _ ...interface{}) *Model {
+	return nil
+}
+
+func (_ *Model) Increment(_ string, _ interface{}) (sql.Result, error) {
+	return nil, nil
+}
+
+func (_ *Model) InnerJoin(_ ...string) *Model {
+	return nil
+}
+
+func (_ *Model) Insert(_ ...interface{}) (sql.Result, error) {
+	return nil, nil
+}
+
+func (_ *Model) InsertAndGetId(_ ...interface{}) (int64, error) {
+	return 0, nil
+}
+
+func (_ *Model) InsertIgnore(_ ...interface{}) (sql.Result, error) {
+	return nil, nil
+}
+
+func (_ *Model) LeftJoin(_ ...string) *Model {
+	return nil
+}
+
+func (_ *Model) Limit(_ ...int) *Model {
+	return nil
+}
+
+func (_ *Model) LockShared() *Model {
+	return nil
+}
+
+func (_ *Model) LockUpdate() *Model {
+	return nil
+}
+
+func (_ *Model) Master() *Model {
+	return nil
+}
+
+func (_ *Model) Max(_ string) (float64, error) {
+	return 0, nil
+}
+
+func (_ *Model) Min(_ string) (float64, error) {
+	return 0, nil
+}
+
+func (_ *Model) Offset(_ int) *Model {
+	return nil
+}
+
+func (_ *Model) OmitEmpty() *Model {
+	return nil
+}
+
+func (_ *Model) OmitEmptyData() *Model {
+	return nil
+}
+
+func (_ *Model) OmitEmptyWhere() *Model {
+	return nil
+}
+
+func (_ *Model) OmitNil() *Model {
+	return nil
+}
+
+func (_ *Model) OmitNilData() *Model {
+	return nil
+}
+
+func (_ *Model) OmitNilWhere() *Model {
+	return nil
+}
+
+func (_ *Model) OnDuplicate(_ ...interface{}) *Model {
+	return nil
+}
+
+func (_ *Model) OnDuplicateEx(_ ...interface{}) *Model {
+	return nil
+}
+
+func (_ *Model) One(_ ...interface{}) (Record, error) {
+	return nil, nil
+}
+
+func (_ *Model) Option(_ int) *Model {
+	return nil
+}
+
+func (_ *Model) Or(_ interface{}, _ ...interface{}) *Model {
+	return nil
+}
+
+func (_ *Model) Order(_ ...string) *Model {
+	return nil
+}
+
+func (_ *Model) OrderAsc(_ string) *Model {
+	return nil
+}
+
+func (_ *Model) OrderBy(_ string) *Model {
+	return nil
+}
+
+func (_ *Model) OrderDesc(_ string) *Model {
+	return nil
+}
+
+func (_ *Model) OrderRandom() *Model {
+	return nil
+}
+
+func (_ *Model) Page(_ int, _ int) *Model {
+	return nil
+}
+
+func (_ *Model) Raw(_ string, _ ...interface{}) *Model {
+	return nil
+}
+
+func (_ *Model) Replace(_ ...interface{}) (sql.Result, error) {
+	return nil, nil
+}
+
+func (_ *Model) RightJoin(_ ...string) *Model {
+	return nil
+}
+
+func (_ *Model) Safe(_ ...bool) *Model {
+	return nil
+}
+
+func (_ *Model) Save(_ ...interface{}) (sql.Result, error) {
+	return nil, nil
+}
+
+func (_ *Model) Scan(_ interface{}, _ ...interface{}) error {
+	return nil
+}
+
+func (_ *Model) ScanList(_ interface{}, _ string, _ ...string) error {
+	return nil
+}
+
+func (_ *Model) Schema(_ string) *Model {
+	return nil
+}
+
+func (_ *Model) Select(_ ...interface{}) (Result, error) {
+	return nil, nil
+}
+
+func (_ *Model) Slave() *Model {
+	return nil
+}
+
+func (_ *Model) Struct(_ interface{}, _ ...interface{}) error {
+	return nil
+}
+
+func (_ *Model) Structs(_ interface{}, _ ...interface{}) error {
+	return nil
+}
+
+func (_ *Model) Sum(_ string) (float64, error) {
+	return 0, nil
+}
+
+func (_ *Model) TX(_ *TX) *Model {
+	return nil
+}
+
+func (_ *Model) TableFields(_ string, _ ...string) (map[string]*TableField, error) {
+	return nil, nil
+}
+
+func (_ *Model) Transaction(_ context.Context, _ func(context.Context, *TX) error) error {
+	return nil
+}
+
+func (_ *Model) Union(_ ...*Model) *Model {
+	return nil
+}
+
+func (_ *Model) UnionAll(_ ...*Model) *Model {
+	return nil
+}
+
+func (_ *Model) Unscoped() *Model {
+	return nil
+}
+
+func (_ *Model) Update(_ ...interface{}) (sql.Result, error) {
+	return nil, nil
+}
+
+func (_ *Model) Value(_ ...interface{}) (interface{}, error) {
+	return nil, nil
+}
+
+func (_ *Model) Where(_ interface{}, _ ...interface{}) *Model {
+	return nil
+}
+
+func (_ *Model) WhereBetween(_ string, _ interface{}, _ interface{}) *Model {
+	return nil
+}
+
+func (_ *Model) WhereGT(_ string, _ interface{}) *Model {
+	return nil
+}
+
+func (_ *Model) WhereGTE(_ string, _ interface{}) *Model {
+	return nil
+}
+
+func (_ *Model) WhereIn(_ string, _ interface{}) *Model {
+	return nil
+}
+
+func (_ *Model) WhereLT(_ string, _ interface{}) *Model {
+	return nil
+}
+
+func (_ *Model) WhereLTE(_ string, _ interface{}) *Model {
+	return nil
+}
+
+func (_ *Model) WhereLike(_ string, _ interface{}) *Model {
+	return nil
+}
+
+func (_ *Model) WhereNot(_ string, _ interface{}) *Model {
+	return nil
+}
+
+func (_ *Model) WhereNotBetween(_ string, _ interface{}, _ interface{}) *Model {
+	return nil
+}
+
+func (_ *Model) WhereNotIn(_ string, _ interface{}) *Model {
+	return nil
+}
+
+func (_ *Model) WhereNotLike(_ string, _ interface{}) *Model {
+	return nil
+}
+
+func (_ *Model) WhereNotNull(_ ...string) *Model {
+	return nil
+}
+
+func (_ *Model) WhereNull(_ ...string) *Model {
+	return nil
+}
+
+func (_ *Model) WhereOr(_ interface{}, _ ...interface{}) *Model {
+	return nil
+}
+
+func (_ *Model) WhereOrBetween(_ string, _ interface{}, _ interface{}) *Model {
+	return nil
+}
+
+func (_ *Model) WhereOrGT(_ string, _ interface{}) *Model {
+	return nil
+}
+
+func (_ *Model) WhereOrGTE(_ string, _ interface{}) *Model {
+	return nil
+}
+
+func (_ *Model) WhereOrIn(_ string, _ interface{}) *Model {
+	return nil
+}
+
+func (_ *Model) WhereOrLT(_ string, _ interface{}) *Model {
+	return nil
+}
+
+func (_ *Model) WhereOrLTE(_ string, _ interface{}) *Model {
+	return nil
+}
+
+func (_ *Model) WhereOrLike(_ string, _ interface{}) *Model {
+	return nil
+}
+
+func (_ *Model) WhereOrNotBetween(_ string, _ interface{}, _ interface{}) *Model {
+	return nil
+}
+
+func (_ *Model) WhereOrNotIn(_ string, _ interface{}) *Model {
+	return nil
+}
+
+func (_ *Model) WhereOrNotLike(_ string, _ interface{}) *Model {
+	return nil
+}
+
+func (_ *Model) WhereOrNotNull(_ ...string) *Model {
+	return nil
+}
+
+func (_ *Model) WhereOrNull(_ ...string) *Model {
+	return nil
+}
+
+func (_ *Model) WhereOrf(_ string, _ ...interface{}) *Model {
+	return nil
+}
+
+func (_ *Model) WherePri(_ interface{}, _ ...interface{}) *Model {
+	return nil
+}
+
+func (_ *Model) Wheref(_ string, _ ...interface{}) *Model {
+	return nil
+}
+
+func (_ *Model) With(_ ...interface{}) *Model {
+	return nil
+}
+
+func (_ *Model) WithAll() *Model {
+	return nil
+}
+
+type ModelHandler func(*Model) *Model
+
+type Record map[string]interface{}
+
+func (_ Record) GMap() interface{} {
+	return nil
+}
+
+func (_ Record) Interface() interface{} {
+	return nil
+}
+
+func (_ Record) IsEmpty() bool {
+	return false
+}
+
+func (_ Record) Json() string {
+	return ""
+}
+
+func (_ Record) Map() map[string]interface{} {
+	return nil
+}
+
+func (_ Record) Struct(_ interface{}) error {
+	return nil
+}
+
+func (_ Record) Xml(_ ...string) string {
+	return ""
+}
+
+type Result []Record
+
+func (_ Result) Array(_ ...string) []interface{} {
+	return nil
+}
+
+func (_ Result) Chunk(_ int) []Result {
+	return nil
+}
+
+func (_ Result) Interface() interface{} {
+	return nil
+}
+
+func (_ Result) IsEmpty() bool {
+	return false
+}
+
+func (_ Result) Json() string {
+	return ""
+}
+
+func (_ Result) Len() int {
+	return 0
+}
+
+func (_ Result) List() []map[string]interface{} {
+	return nil
+}
+
+func (_ Result) MapKeyInt(_ string) map[int]map[string]interface{} {
+	return nil
+}
+
+func (_ Result) MapKeyStr(_ string) map[string]map[string]interface{} {
+	return nil
+}
+
+func (_ Result) MapKeyUint(_ string) map[uint]map[string]interface{} {
+	return nil
+}
+
+func (_ Result) MapKeyValue(_ string) map[string]interface{} {
+	return nil
+}
+
+func (_ Result) RecordKeyInt(_ string) map[int]Record {
+	return nil
+}
+
+func (_ Result) RecordKeyStr(_ string) map[string]Record {
+	return nil
+}
+
+func (_ Result) RecordKeyUint(_ string) map[uint]Record {
+	return nil
+}
+
+func (_ Result) ScanList(_ interface{}, _ string, _ ...string) error {
+	return nil
+}
+
+func (_ Result) Size() int {
+	return 0
+}
+
+func (_ Result) Structs(_ interface{}) error {
+	return nil
+}
+
+func (_ Result) Xml(_ ...string) string {
+	return ""
+}
+
+type Schema struct{}
+
+func (_ *Schema) Model(_ string) *Model {
+	return nil
+}
+
+func (_ *Schema) Table(_ string) *Model {
+	return nil
+}
+
+type Stmt struct {
+	Stmt *sql.Stmt
+}
+
+func (_ *Stmt) Close() error {
+	return nil
+}
+
+func (_ *Stmt) Exec(_ ...interface{}) (sql.Result, error) {
+	return nil, nil
+}
+
+func (_ *Stmt) ExecContext(_ context.Context, _ ...interface{}) (sql.Result, error) {
+	return nil, nil
+}
+
+func (_ *Stmt) Query(_ ...interface{}) (*sql.Rows, error) {
+	return nil, nil
+}
+
+func (_ *Stmt) QueryContext(_ context.Context, _ ...interface{}) (*sql.Rows, error) {
+	return nil, nil
+}
+
+func (_ *Stmt) QueryRow(_ ...interface{}) *sql.Row {
+	return nil
+}
+
+func (_ *Stmt) QueryRowContext(_ context.Context, _ ...interface{}) *sql.Row {
+	return nil
+}
+
+type TX struct{}
+
+func (_ *TX) Begin() error {
+	return nil
+}
+
+func (_ *TX) Commit() error {
+	return nil
+}
+
+func (_ *TX) Ctx(_ context.Context) *TX {
+	return nil
+}
+
+func (_ *TX) Delete(_ string, _ interface{}, _ ...interface{}) (sql.Result, error) {
+	return nil, nil
+}
+
+func (_ *TX) Exec(_ string, _ ...interface{}) (sql.Result, error) {
+	return nil, nil
+}
+
+func (_ *TX) GetAll(_ string, _ ...interface{}) (Result, error) {
+	return nil, nil
+}
+
+func (_ *TX) GetCount(_ string, _ ...interface{}) (int, error) {
+	return 0, nil
+}
+
+func (_ *TX) GetOne(_ string, _ ...interface{}) (Record, error) {
+	return nil, nil
+}
+
+func (_ *TX) GetScan(_ interface{}, _ string, _ ...interface{}) error {
+	return nil
+}
+
+func (_ *TX) GetStruct(_ interface{}, _ string, _ ...interface{}) error {
+	return nil
+}
+
+func (_ *TX) GetStructs(_ interface{}, _ string, _ ...interface{}) error {
+	return nil
+}
+
+func (_ *TX) GetValue(_ string, _ ...interface{}) (interface{}, error) {
+	return nil, nil
+}
+
+func (_ *TX) Insert(_ string, _ interface{}, _ ...int) (sql.Result, error) {
+	return nil, nil
+}
+
+func (_ *TX) InsertAndGetId(_ string, _ interface{}, _ ...int) (int64, error) {
+	return 0, nil
+}
+
+func (_ *TX) InsertIgnore(_ string, _ interface{}, _ ...int) (sql.Result, error) {
+	return nil, nil
+}
+
+func (_ *TX) IsClosed() bool {
+	return false
+}
+
+func (_ *TX) Model(_ ...interface{}) *Model {
+	return nil
+}
+
+func (_ *TX) Prepare(_ string) (*Stmt, error) {
+	return nil, nil
+}
+
+func (_ *TX) Query(_ string, _ ...interface{}) (*sql.Rows, error) {
+	return nil, nil
+}
+
+func (_ *TX) Raw(_ string, _ ...interface{}) *Model {
+	return nil
+}
+
+func (_ *TX) Replace(_ string, _ interface{}, _ ...int) (sql.Result, error) {
+	return nil, nil
+}
+
+func (_ *TX) Rollback() error {
+	return nil
+}
+
+func (_ *TX) RollbackTo(_ string) error {
+	return nil
+}
+
+func (_ *TX) Save(_ string, _ interface{}, _ ...int) (sql.Result, error) {
+	return nil, nil
+}
+
+func (_ *TX) SavePoint(_ string) error {
+	return nil
+}
+
+func (_ *TX) Schema(_ string) *Schema {
+	return nil
+}
+
+func (_ *TX) Transaction(_ context.Context, _ func(context.Context, *TX) error) error {
+	return nil
+}
+
+func (_ *TX) Update(_ string, _ interface{}, _ interface{}, _ ...interface{}) (sql.Result, error) {
+	return nil, nil
+}
+
+func (_ *TX) With(_ interface{}) *Model {
+	return nil
+}
+
+type TableField struct {
+	Index   int
+	Name    string
+	Type    string
+	Null    bool
+	Key     string
+	Default interface{}
+	Extra   string
+	Comment string
+}
diff --git a/go/ql/test/library-tests/semmle/go/frameworks/SQL/gogf/vendor/github.com/gogf/gf/frame/g/stub.go b/go/ql/test/library-tests/semmle/go/frameworks/SQL/gogf/vendor/github.com/gogf/gf/frame/g/stub.go
new file mode 100644
index 00000000000..6bb8a96631f
--- /dev/null
+++ b/go/ql/test/library-tests/semmle/go/frameworks/SQL/gogf/vendor/github.com/gogf/gf/frame/g/stub.go
@@ -0,0 +1,14 @@
+// Code generated by depstubber. DO NOT EDIT.
+// This is a simple stub for github.com/gogf/gf/frame/g, strictly for use in testing.
+
+// See the LICENSE file for information about the licensing of the original library.
+// Source: github.com/gogf/gf/frame/g (exports: ; functions: DB)
+
+// Package g is a stub of github.com/gogf/gf/frame/g, generated by depstubber.
+package g
+
+import "github.com/gogf/gf/database/gdb"
+
+func DB(_ ...string) gdb.DB {
+	return nil
+}
diff --git a/go/ql/test/library-tests/semmle/go/frameworks/SQL/gogf/vendor/modules.txt b/go/ql/test/library-tests/semmle/go/frameworks/SQL/gogf/vendor/modules.txt
new file mode 100644
index 00000000000..72560d0da5e
--- /dev/null
+++ b/go/ql/test/library-tests/semmle/go/frameworks/SQL/gogf/vendor/modules.txt
@@ -0,0 +1,57 @@
+# github.com/gogf/gf v1.16.9
+## explicit
+github.com/gogf/gf
+# github.com/BurntSushi/toml v0.3.1
+## explicit
+github.com/BurntSushi/toml
+# github.com/clbanning/mxj v1.8.5-0.20200714211355-ff02cfb8ea28
+## explicit
+github.com/clbanning/mxj
+# github.com/fatih/color v1.12.0
+## explicit
+github.com/fatih/color
+# github.com/fsnotify/fsnotify v1.4.9
+## explicit
+github.com/fsnotify/fsnotify
+# github.com/go-sql-driver/mysql v1.6.0
+## explicit
+github.com/go-sql-driver/mysql
+# github.com/gomodule/redigo v1.8.5
+## explicit
+github.com/gomodule/redigo
+# github.com/gorilla/websocket v1.4.2
+## explicit
+github.com/gorilla/websocket
+# github.com/grokify/html-strip-tags-go v0.0.1
+## explicit
+github.com/grokify/html-strip-tags-go
+# github.com/mattn/go-colorable v0.1.8
+## explicit
+github.com/mattn/go-colorable
+# github.com/mattn/go-isatty v0.0.12
+## explicit
+github.com/mattn/go-isatty
+# github.com/mattn/go-runewidth v0.0.9
+## explicit
+github.com/mattn/go-runewidth
+# github.com/olekukonko/tablewriter v0.0.5
+## explicit
+github.com/olekukonko/tablewriter
+# go.opentelemetry.io/otel v1.0.0
+## explicit
+go.opentelemetry.io/otel
+# go.opentelemetry.io/otel/trace v1.0.0
+## explicit
+go.opentelemetry.io/otel/trace
+# golang.org/x/net v0.0.0-20210520170846-37e1c6afe023
+## explicit
+golang.org/x/net
+# golang.org/x/sys v0.0.0-20210423082822-04245dca01da
+## explicit
+golang.org/x/sys
+# golang.org/x/text v0.3.6
+## explicit
+golang.org/x/text
+# gopkg.in/yaml.v3 v3.0.0-20210107192922-496545a6307b
+## explicit
+gopkg.in/yaml.v3
diff --git a/go/ql/test/library-tests/semmle/go/frameworks/SQL/gorqlite/go.mod b/go/ql/test/library-tests/semmle/go/frameworks/SQL/gorqlite/go.mod
new file mode 100644
index 00000000000..1f243775658
--- /dev/null
+++ b/go/ql/test/library-tests/semmle/go/frameworks/SQL/gorqlite/go.mod
@@ -0,0 +1,5 @@
+module main
+
+go 1.18
+
+require github.com/rqlite/gorqlite v0.0.0-20220528150909-c4e99ae96be6
diff --git a/go/ql/test/library-tests/semmle/go/frameworks/SQL/gorqlite/gorqlite.expected b/go/ql/test/library-tests/semmle/go/frameworks/SQL/gorqlite/gorqlite.expected
new file mode 100644
index 00000000000..cbd8166ea5e
--- /dev/null
+++ b/go/ql/test/library-tests/semmle/go/frameworks/SQL/gorqlite/gorqlite.expected
@@ -0,0 +1,6 @@
+| gorqlite.go:11:13:11:16 | sqls |
+| gorqlite.go:12:13:12:16 | sqls |
+| gorqlite.go:13:13:13:16 | sqls |
+| gorqlite.go:14:16:14:18 | sql |
+| gorqlite.go:15:16:15:18 | sql |
+| gorqlite.go:16:16:16:18 | sql |
diff --git a/go/ql/test/library-tests/semmle/go/frameworks/SQL/gorqlite/gorqlite.go b/go/ql/test/library-tests/semmle/go/frameworks/SQL/gorqlite/gorqlite.go
new file mode 100644
index 00000000000..9b60c6684e6
--- /dev/null
+++ b/go/ql/test/library-tests/semmle/go/frameworks/SQL/gorqlite/gorqlite.go
@@ -0,0 +1,20 @@
+package main
+
+//go:generate depstubber -vendor github.com/rqlite/gorqlite Connection Open
+
+import (
+	"github.com/rqlite/gorqlite"
+)
+
+func gorqlitetest(sql string, sqls []string) {
+	conn, _ := gorqlite.Open("dbUrl")
+	conn.Query(sqls)   // $ querystring=sqls
+	conn.Queue(sqls)   // $ querystring=sqls
+	conn.Write(sqls)   // $ querystring=sqls
+	conn.QueryOne(sql) // $ querystring=sql
+	conn.QueueOne(sql) // $ querystring=sql
+	conn.WriteOne(sql) // $ querystring=sql
+}
+func main() {
+	return
+}
diff --git a/go/ql/test/library-tests/semmle/go/frameworks/SQL/gorqlite/gorqlite.ql b/go/ql/test/library-tests/semmle/go/frameworks/SQL/gorqlite/gorqlite.ql
new file mode 100644
index 00000000000..7b56fd97441
--- /dev/null
+++ b/go/ql/test/library-tests/semmle/go/frameworks/SQL/gorqlite/gorqlite.ql
@@ -0,0 +1,4 @@
+import go
+
+from SQL::QueryString qs
+select qs
diff --git a/go/ql/test/library-tests/semmle/go/frameworks/SQL/gorqlite/vendor/github.com/rqlite/gorqlite/stub.go b/go/ql/test/library-tests/semmle/go/frameworks/SQL/gorqlite/vendor/github.com/rqlite/gorqlite/stub.go
new file mode 100644
index 00000000000..f6f4ca18ec1
--- /dev/null
+++ b/go/ql/test/library-tests/semmle/go/frameworks/SQL/gorqlite/vendor/github.com/rqlite/gorqlite/stub.go
@@ -0,0 +1,102 @@
+// Code generated by depstubber. DO NOT EDIT.
+// This is a simple stub for github.com/rqlite/gorqlite, strictly for use in testing.
+
+// See the LICENSE file for information about the licensing of the original library.
+// Source: github.com/rqlite/gorqlite (exports: Connection; functions: Open)
+
+// Package gorqlite is a stub of github.com/rqlite/gorqlite, generated by depstubber.
+package gorqlite
+
+type Connection struct {
+	ID string
+}
+
+func (_ *Connection) Close() {}
+
+func (_ *Connection) ConsistencyLevel() (string, error) {
+	return "", nil
+}
+
+func (_ *Connection) Leader() (string, error) {
+	return "", nil
+}
+
+func (_ *Connection) Peers() ([]string, error) {
+	return nil, nil
+}
+
+func (_ *Connection) Query(_ []string) ([]QueryResult, error) {
+	return nil, nil
+}
+
+func (_ *Connection) QueryOne(_ string) (QueryResult, error) {
+	return QueryResult{}, nil
+}
+
+func (_ *Connection) Queue(_ []string) (int64, error) {
+	return 0, nil
+}
+
+func (_ *Connection) QueueOne(_ string) (int64, error) {
+	return 0, nil
+}
+
+func (_ *Connection) SetConsistencyLevel(_ string) error {
+	return nil
+}
+
+func (_ *Connection) SetExecutionWithTransaction(_ bool) error {
+	return nil
+}
+
+func (_ *Connection) Write(_ []string) ([]WriteResult, error) {
+	return nil, nil
+}
+
+func (_ *Connection) WriteOne(_ string) (WriteResult, error) {
+	return WriteResult{}, nil
+}
+
+func Open(_ string) (Connection, error) {
+	return Connection{}, nil
+}
+
+type QueryResult struct {
+	Err    error
+	Timing float64
+}
+
+func (_ *QueryResult) Columns() []string {
+	return nil
+}
+
+func (_ *QueryResult) Map() (map[string]interface{}, error) {
+	return nil, nil
+}
+
+func (_ *QueryResult) Next() bool {
+	return false
+}
+
+func (_ *QueryResult) NumRows() int64 {
+	return 0
+}
+
+func (_ *QueryResult) RowNumber() int64 {
+	return 0
+}
+
+func (_ *QueryResult) Scan(_ ...interface{}) error {
+	return nil
+}
+
+func (_ *QueryResult) Types() []string {
+	return nil
+}
+
+type WriteResult struct {
+	Err          error
+	Timing       float64
+	RowsAffected int64
+	LastInsertID int64
+}
diff --git a/go/ql/test/library-tests/semmle/go/frameworks/SQL/gorqlite/vendor/modules.txt b/go/ql/test/library-tests/semmle/go/frameworks/SQL/gorqlite/vendor/modules.txt
new file mode 100644
index 00000000000..f5e5b9989ed
--- /dev/null
+++ b/go/ql/test/library-tests/semmle/go/frameworks/SQL/gorqlite/vendor/modules.txt
@@ -0,0 +1,3 @@
+# github.com/rqlite/gorqlite v0.0.0-20220528150909-c4e99ae96be6
+## explicit
+github.com/rqlite/gorqlite

From fc56843c040e8bf07b089b00a025aae028cea88d Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Alvaro=20Mu=C3=B1oz?= <pwntester@github.com>
Date: Sat, 3 Dec 2022 16:34:14 +0100
Subject: [PATCH 0992/1420] improve predicate QLdoc

---
 python/ql/lib/semmle/python/frameworks/Stdlib.qll | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/python/ql/lib/semmle/python/frameworks/Stdlib.qll b/python/ql/lib/semmle/python/frameworks/Stdlib.qll
index b334de69ff6..3fce979c147 100644
--- a/python/ql/lib/semmle/python/frameworks/Stdlib.qll
+++ b/python/ql/lib/semmle/python/frameworks/Stdlib.qll
@@ -1163,8 +1163,9 @@ private module StdlibPrivate {
   API::Node subprocess() { result = API::moduleImport("subprocess") }
 
   /**
-   * A call to `subprocess.Popen` or helper functions (call, check_call, check_output, run)
+   * A call to `subprocess.Popen` or helper functions (call, check_call, check_output, run, getoutput, getstatusoutput)
    * See https://docs.python.org/3.8/library/subprocess.html#subprocess.Popen
+   * ref: https://docs.python.org/3/library/subprocess.html#legacy-shell-invocation-functions
    */
   private class SubprocessPopenCall extends SystemCommandExecution::Range, DataFlow::CallCfgNode {
     SubprocessPopenCall() {

From 7fe4108a0b8d10cf4abf208c59ecc850aea92808 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Alvaro=20Mu=C3=B1oz?= <pwntester@github.com>
Date: Sat, 3 Dec 2022 16:37:14 +0100
Subject: [PATCH 0993/1420] add change note

---
 .../ql/lib/change-notes/2022-12-03-new-stdlib-cmdi-sinks.md  | 5 +++++
 1 file changed, 5 insertions(+)
 create mode 100644 python/ql/lib/change-notes/2022-12-03-new-stdlib-cmdi-sinks.md

diff --git a/python/ql/lib/change-notes/2022-12-03-new-stdlib-cmdi-sinks.md b/python/ql/lib/change-notes/2022-12-03-new-stdlib-cmdi-sinks.md
new file mode 100644
index 00000000000..ca2fa376a5d
--- /dev/null
+++ b/python/ql/lib/change-notes/2022-12-03-new-stdlib-cmdi-sinks.md
@@ -0,0 +1,5 @@
+---
+category: minorAnalysis
+---
+- Added `subprocess.getoutput` and `subprocess.getoutputstatus` as new command injection sinks for the StdLib.
+

From a0d7043615a8359a8ec861940b526925bbf3c5d9 Mon Sep 17 00:00:00 2001
From: Paolo Tranquilli <redsun82@github.com>
Date: Mon, 5 Dec 2022 08:32:32 +0100
Subject: [PATCH 0994/1420] Swift: always upload integration test logs

This way we can get logs also in case we cancelled the job due to a test
hanging indefinitely (which is happening from time to time to the Xcode
test).
---
 swift/actions/run-integration-tests/action.yml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/swift/actions/run-integration-tests/action.yml b/swift/actions/run-integration-tests/action.yml
index ab311fead5e..163f572acde 100644
--- a/swift/actions/run-integration-tests/action.yml
+++ b/swift/actions/run-integration-tests/action.yml
@@ -28,7 +28,7 @@ runs:
       env:
         SEMMLE_DEBUG_TRACER: 10000
     - name: Upload test logs
-      if: ${{ !cancelled() }}
+      if: ${{ always() }}
       uses: actions/upload-artifact@v3
       with:
         name: swift-integration-tests-logs-${{ runner.os }}

From 6e7c7c245b208303d1f19c2e2dfd7bfa3bd8787e Mon Sep 17 00:00:00 2001
From: Tony Torralba <atorralba@users.noreply.github.com>
Date: Mon, 5 Dec 2022 08:47:18 +0100
Subject: [PATCH 0995/1420] Update
 swift/ql/src/queries/Security/CWE-022/PathInjection.qhelp

Co-authored-by: Ben Ahmady <32935794+subatoi@users.noreply.github.com>
---
 .../Security/CWE-022/PathInjection.qhelp      | 19 ++++++++++---------
 1 file changed, 10 insertions(+), 9 deletions(-)

diff --git a/swift/ql/src/queries/Security/CWE-022/PathInjection.qhelp b/swift/ql/src/queries/Security/CWE-022/PathInjection.qhelp
index 17a569c2129..bd86d39a8c2 100644
--- a/swift/ql/src/queries/Security/CWE-022/PathInjection.qhelp
+++ b/swift/ql/src/queries/Security/CWE-022/PathInjection.qhelp
@@ -26,28 +26,29 @@ such as <code>..</code>. Such a path could point to any directory on the file sy
 
 <example>
 <p>
-In the first example, a file name is read from an HTTP request and then used to access a file.
-However, a malicious response could include a file name that is an absolute path, such as
+The following code shows two bad examples. 
+
+<sample src="PathInjectionBad.swift" />
+
+In the first, a file name is read from an HTTP request and then used to access a file. In this case, a malicious response could include a file name that is an absolute path, such as
 <code>"/Applications/(current_application)/Documents/sensitive.data"</code>.
 </p>
 
 <p>
-In the second example, it appears that the user is restricted to opening a file within the
-<code>"/Library/Caches"</code> home directory. However, a malicious response could contain a file name containing
+In the second bad example, it appears that the user is restricted to opening a file within the
+<code>"/Library/Caches"</code> home directory. In this case, a malicious response could contain a file name containing
 special characters. For example, the string <code>"../../Documents/sensitive.data"</code> will result in the code
 reading the file located at <code>"/Applications/(current_application)/Library/Caches/../../Documents/sensitive.data"</code>, 
-which contains users' sensitive data. This file may then be made accesible to an attacker, giving them access to all this data.
+which contains users' sensitive data. This file may then be made accessible to an attacker, giving them access to all this data.
 </p>
 
-<sample src="PathInjectionBad.swift" />
-
 <p>
-In the third example, the path used to access the file system is normalized <em>before</em> being checked against a
+In the following (good) example, the path used to access the file system is normalized <em>before</em> being checked against a
 known prefix. This ensures that regardless of the user input, the resulting path is safe.
 </p>
 
 <sample src="PathInjectionGood.swift" />
-
+```suggestion
 </example>
 
 <references>

From 9d2b04928d23c9088afcbc12a560b8772bdc705b Mon Sep 17 00:00:00 2001
From: Tony Torralba <atorralba@users.noreply.github.com>
Date: Mon, 5 Dec 2022 09:16:27 +0100
Subject: [PATCH 0996/1420] Fix qhelp after suggestions

---
 swift/ql/src/queries/Security/CWE-022/PathInjection.qhelp | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/swift/ql/src/queries/Security/CWE-022/PathInjection.qhelp b/swift/ql/src/queries/Security/CWE-022/PathInjection.qhelp
index bd86d39a8c2..a4bf4170c0a 100644
--- a/swift/ql/src/queries/Security/CWE-022/PathInjection.qhelp
+++ b/swift/ql/src/queries/Security/CWE-022/PathInjection.qhelp
@@ -27,9 +27,11 @@ such as <code>..</code>. Such a path could point to any directory on the file sy
 <example>
 <p>
 The following code shows two bad examples. 
+</p>
 
 <sample src="PathInjectionBad.swift" />
 
+<p>
 In the first, a file name is read from an HTTP request and then used to access a file. In this case, a malicious response could include a file name that is an absolute path, such as
 <code>"/Applications/(current_application)/Documents/sensitive.data"</code>.
 </p>
@@ -48,7 +50,6 @@ known prefix. This ensures that regardless of the user input, the resulting path
 </p>
 
 <sample src="PathInjectionGood.swift" />
-```suggestion
 </example>
 
 <references>

From c2d843f96be4c4b1c8ba4b6770980e8213ea33c9 Mon Sep 17 00:00:00 2001
From: Tom Hvitved <hvitved@github.com>
Date: Mon, 5 Dec 2022 09:35:56 +0100
Subject: [PATCH 0997/1420] CI: Change `--ram` value from 52G to 50G in
 `codeql` tests

---
 .github/workflows/csharp-qltest.yml   | 2 +-
 .github/workflows/js-ml-tests.yml     | 4 ++--
 .github/workflows/ruby-qltest.yml     | 2 +-
 swift/actions/run-ql-tests/action.yml | 2 +-
 4 files changed, 5 insertions(+), 5 deletions(-)

diff --git a/.github/workflows/csharp-qltest.yml b/.github/workflows/csharp-qltest.yml
index 531f4296a84..b9bbf930add 100644
--- a/.github/workflows/csharp-qltest.yml
+++ b/.github/workflows/csharp-qltest.yml
@@ -67,7 +67,7 @@ jobs:
           mv "$CODEQL_PATH/csharp/tools/extractor-asp.jar" "${{ github.workspace }}/csharp/extractor-pack/tools"
           # Safe guard against using the bundled extractor
           rm -rf "$CODEQL_PATH/csharp"
-          codeql test run --threads=0 --ram 52000 --slice ${{ matrix.slice }} --search-path "${{ github.workspace }}/csharp/extractor-pack" --check-databases --check-undefined-labels --check-repeated-labels --check-redefined-labels --consistency-queries ql/consistency-queries ql/test --compilation-cache "${{ steps.query-cache.outputs.cache-dir }}"
+          codeql test run --threads=0 --ram 50000 --slice ${{ matrix.slice }} --search-path "${{ github.workspace }}/csharp/extractor-pack" --check-databases --check-undefined-labels --check-repeated-labels --check-redefined-labels --consistency-queries ql/consistency-queries ql/test --compilation-cache "${{ steps.query-cache.outputs.cache-dir }}"
         env:
           GITHUB_TOKEN: ${{ github.token }}
   unit-tests:
diff --git a/.github/workflows/js-ml-tests.yml b/.github/workflows/js-ml-tests.yml
index 031b17c83ba..90cb5691126 100644
--- a/.github/workflows/js-ml-tests.yml
+++ b/.github/workflows/js-ml-tests.yml
@@ -47,7 +47,7 @@ jobs:
         run: |
           codeql query compile \
             --check-only \
-            --ram 52000 \
+            --ram 50000 \
             --additional-packs "${{ github.workspace }}" \
             --threads=0 \
             --compilation-cache "${{ steps.query-cache.outputs.cache-dir }}" \
@@ -58,7 +58,7 @@ jobs:
         run: |
           codeql test run \
             --threads=0 \
-            --ram 52000 \
+            --ram 50000 \
             --additional-packs "${{ github.workspace }}" \
             --compilation-cache "${{ steps.query-cache.outputs.cache-dir }}" \
             -- \
diff --git a/.github/workflows/ruby-qltest.yml b/.github/workflows/ruby-qltest.yml
index d8af552c8c6..370375cea93 100644
--- a/.github/workflows/ruby-qltest.yml
+++ b/.github/workflows/ruby-qltest.yml
@@ -62,6 +62,6 @@ jobs:
           key: ruby-qltest
       - name: Run QL tests
         run: |
-          codeql test run --threads=0 --ram 52000 --search-path "${{ github.workspace }}/ruby/extractor-pack" --check-databases --check-undefined-labels --check-unused-labels --check-repeated-labels --check-redefined-labels --check-use-before-definition --consistency-queries ql/consistency-queries ql/test --compilation-cache "${{ steps.query-cache.outputs.cache-dir }}"
+          codeql test run --threads=0 --ram 50000 --search-path "${{ github.workspace }}/ruby/extractor-pack" --check-databases --check-undefined-labels --check-unused-labels --check-repeated-labels --check-redefined-labels --check-use-before-definition --consistency-queries ql/consistency-queries ql/test --compilation-cache "${{ steps.query-cache.outputs.cache-dir }}"
         env:
           GITHUB_TOKEN: ${{ github.token }}
diff --git a/swift/actions/run-ql-tests/action.yml b/swift/actions/run-ql-tests/action.yml
index 3694459082b..436f913e630 100644
--- a/swift/actions/run-ql-tests/action.yml
+++ b/swift/actions/run-ql-tests/action.yml
@@ -19,7 +19,7 @@ runs:
       run: |
         codeql test run \
           --threads=0 \
-          --ram 52000 \
+          --ram 50000 \
           --search-path "${{ github.workspace }}/swift/extractor-pack" \
           --check-databases \
           --check-unused-labels \

From 4c7cdc62457513793e1be11ba60df316b5256d69 Mon Sep 17 00:00:00 2001
From: Michael Nebel <michaelnebel@github.com>
Date: Thu, 1 Dec 2022 11:26:22 +0100
Subject: [PATCH 0998/1420] Java: Remove unneeded imports of ExternalFlow.qll.

---
 java/ql/lib/semmle/code/java/dataflow/FlowSummary.qll        | 5 -----
 .../lib/semmle/code/java/dataflow/internal/ContainerFlow.qll | 1 -
 .../semmle/code/java/dataflow/internal/TaintTrackingUtil.qll | 1 -
 java/ql/lib/semmle/code/java/frameworks/ApacheHttp.qll       | 1 -
 java/ql/lib/semmle/code/java/frameworks/Flexjson.qll         | 1 -
 java/ql/lib/semmle/code/java/frameworks/Hibernate.qll        | 1 -
 java/ql/lib/semmle/code/java/frameworks/JaxWS.qll            | 1 -
 java/ql/lib/semmle/code/java/frameworks/Jdbc.qll             | 2 +-
 java/ql/lib/semmle/code/java/frameworks/JoddJson.qll         | 1 -
 java/ql/lib/semmle/code/java/frameworks/MyBatis.qll          | 1 -
 java/ql/lib/semmle/code/java/frameworks/Regex.qll            | 2 +-
 java/ql/lib/semmle/code/java/frameworks/SpringJdbc.qll       | 1 -
 java/ql/lib/semmle/code/java/frameworks/Stream.qll           | 1 -
 java/ql/lib/semmle/code/java/frameworks/android/Android.qll  | 1 -
 .../semmle/code/java/frameworks/android/ContentProviders.qll | 1 -
 java/ql/lib/semmle/code/java/frameworks/android/SQLite.qll   | 1 -
 .../code/java/frameworks/android/SharedPreferences.qll       | 1 -
 java/ql/lib/semmle/code/java/frameworks/android/Slice.qll    | 1 -
 .../lib/semmle/code/java/frameworks/apache/Collections.qll   | 1 -
 java/ql/lib/semmle/code/java/frameworks/apache/Lang.qll      | 1 -
 .../ql/lib/semmle/code/java/frameworks/guava/Collections.qll | 1 -
 java/ql/lib/semmle/code/java/frameworks/jOOQ.qll             | 1 -
 .../code/java/frameworks/jackson/JacksonSerializability.qll  | 1 -
 .../semmle/code/java/frameworks/javaee/jsf/JSFRenderer.qll   | 1 -
 .../lib/semmle/code/java/frameworks/ratpack/RatpackExec.qll  | 1 -
 .../ql/lib/semmle/code/java/frameworks/spring/SpringHttp.qll | 1 -
 .../semmle/code/java/frameworks/spring/SpringWebClient.qll   | 1 -
 .../semmle/code/java/security/PartialPathTraversalQuery.qll  | 1 -
 java/ql/lib/semmle/code/java/security/PathSanitizer.qll      | 1 -
 java/ql/lib/semmle/code/java/security/SpelInjection.qll      | 1 -
 .../code/java/security/UnsafeContentUriResolutionQuery.qll   | 1 -
 .../experimental/Security/CWE/CWE-073/JFinalController.qll   | 1 -
 .../semmle/code/java/frameworks/SpringResource.qll           | 1 -
 .../flowtestcasegenerator/FlowTestCaseSupportMethods.qll     | 1 -
 .../kotlin/library-tests/dataflow/extensionMethod/test.ql    | 1 -
 java/ql/test/kotlin/library-tests/dataflow/foreach/test.ql   | 1 -
 java/ql/test/kotlin/library-tests/dataflow/func/test.ql      | 1 -
 .../test/kotlin/library-tests/dataflow/notnullexpr/test.ql   | 1 -
 java/ql/test/kotlin/library-tests/dataflow/whenexpr/test.ql  | 1 -
 .../ql/test/library-tests/dataflow/callback-dispatch/test.ql | 1 -
 .../test/library-tests/dataflow/collections/containerflow.ql | 1 -
 41 files changed, 2 insertions(+), 45 deletions(-)

diff --git a/java/ql/lib/semmle/code/java/dataflow/FlowSummary.qll b/java/ql/lib/semmle/code/java/dataflow/FlowSummary.qll
index 6b790e487c1..00abffe5f7b 100644
--- a/java/ql/lib/semmle/code/java/dataflow/FlowSummary.qll
+++ b/java/ql/lib/semmle/code/java/dataflow/FlowSummary.qll
@@ -6,11 +6,6 @@ import java
 private import internal.FlowSummaryImpl as Impl
 private import internal.DataFlowUtil
 
-// import all instances of SummarizedCallable below
-private module Summaries {
-  private import semmle.code.java.dataflow.ExternalFlow
-}
-
 class SummaryComponent = Impl::Public::SummaryComponent;
 
 /** Provides predicates for constructing summary components. */
diff --git a/java/ql/lib/semmle/code/java/dataflow/internal/ContainerFlow.qll b/java/ql/lib/semmle/code/java/dataflow/internal/ContainerFlow.qll
index 19f11842d14..b53138c7421 100644
--- a/java/ql/lib/semmle/code/java/dataflow/internal/ContainerFlow.qll
+++ b/java/ql/lib/semmle/code/java/dataflow/internal/ContainerFlow.qll
@@ -3,7 +3,6 @@ import semmle.code.java.Collections
 import semmle.code.java.Maps
 private import semmle.code.java.dataflow.SSA
 private import DataFlowUtil
-private import semmle.code.java.dataflow.ExternalFlow
 
 private class EntryType extends RefType {
   EntryType() {
diff --git a/java/ql/lib/semmle/code/java/dataflow/internal/TaintTrackingUtil.qll b/java/ql/lib/semmle/code/java/dataflow/internal/TaintTrackingUtil.qll
index 4ba026bd045..874c08bdaba 100644
--- a/java/ql/lib/semmle/code/java/dataflow/internal/TaintTrackingUtil.qll
+++ b/java/ql/lib/semmle/code/java/dataflow/internal/TaintTrackingUtil.qll
@@ -10,7 +10,6 @@ private import semmle.code.java.dataflow.internal.ContainerFlow
 private import semmle.code.java.frameworks.spring.SpringController
 private import semmle.code.java.frameworks.spring.SpringHttp
 private import semmle.code.java.frameworks.Networking
-private import semmle.code.java.dataflow.ExternalFlow
 private import semmle.code.java.dataflow.FlowSources
 private import semmle.code.java.dataflow.internal.DataFlowPrivate
 import semmle.code.java.dataflow.FlowSteps
diff --git a/java/ql/lib/semmle/code/java/frameworks/ApacheHttp.qll b/java/ql/lib/semmle/code/java/frameworks/ApacheHttp.qll
index 8c77a050a9f..64e38a19e9d 100644
--- a/java/ql/lib/semmle/code/java/frameworks/ApacheHttp.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/ApacheHttp.qll
@@ -4,7 +4,6 @@
 
 import java
 private import semmle.code.java.dataflow.FlowSteps
-private import semmle.code.java.dataflow.ExternalFlow
 
 class ApacheHttpGetParams extends Method {
   ApacheHttpGetParams() {
diff --git a/java/ql/lib/semmle/code/java/frameworks/Flexjson.qll b/java/ql/lib/semmle/code/java/frameworks/Flexjson.qll
index e0f04da2954..55a8e262438 100644
--- a/java/ql/lib/semmle/code/java/frameworks/Flexjson.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/Flexjson.qll
@@ -3,7 +3,6 @@
  */
 
 import java
-private import semmle.code.java.dataflow.ExternalFlow
 
 /** The class `flexjson.JSONDeserializer`. */
 class FlexjsonDeserializer extends RefType {
diff --git a/java/ql/lib/semmle/code/java/frameworks/Hibernate.qll b/java/ql/lib/semmle/code/java/frameworks/Hibernate.qll
index dcb72cd9722..28b28101454 100644
--- a/java/ql/lib/semmle/code/java/frameworks/Hibernate.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/Hibernate.qll
@@ -3,7 +3,6 @@
  */
 
 import java
-private import semmle.code.java.dataflow.ExternalFlow
 
 /** The interface `org.hibernate.query.QueryProducer`. */
 class HibernateQueryProducer extends RefType {
diff --git a/java/ql/lib/semmle/code/java/frameworks/JaxWS.qll b/java/ql/lib/semmle/code/java/frameworks/JaxWS.qll
index 23f304be83a..54b41f28a08 100644
--- a/java/ql/lib/semmle/code/java/frameworks/JaxWS.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/JaxWS.qll
@@ -4,7 +4,6 @@
  */
 
 import java
-private import semmle.code.java.dataflow.ExternalFlow
 private import semmle.code.java.security.XSS
 
 /**
diff --git a/java/ql/lib/semmle/code/java/frameworks/Jdbc.qll b/java/ql/lib/semmle/code/java/frameworks/Jdbc.qll
index be22f2716be..b58099237c0 100644
--- a/java/ql/lib/semmle/code/java/frameworks/Jdbc.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/Jdbc.qll
@@ -2,7 +2,7 @@
  * Provides classes and predicates for working with the Java JDBC API.
  */
 
-private import semmle.code.java.dataflow.ExternalFlow
+private import java
 
 /*--- Types ---*/
 /** The interface `java.sql.Connection`. */
diff --git a/java/ql/lib/semmle/code/java/frameworks/JoddJson.qll b/java/ql/lib/semmle/code/java/frameworks/JoddJson.qll
index 5440b1ca5d6..d92b80ca32b 100644
--- a/java/ql/lib/semmle/code/java/frameworks/JoddJson.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/JoddJson.qll
@@ -3,7 +3,6 @@
  */
 
 import java
-private import semmle.code.java.dataflow.ExternalFlow
 
 /** The class `jodd.json.Parser`. */
 class JoddJsonParser extends RefType {
diff --git a/java/ql/lib/semmle/code/java/frameworks/MyBatis.qll b/java/ql/lib/semmle/code/java/frameworks/MyBatis.qll
index 64b32c78003..4c1244ca1d5 100644
--- a/java/ql/lib/semmle/code/java/frameworks/MyBatis.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/MyBatis.qll
@@ -5,7 +5,6 @@
 import java
 private import semmle.code.java.dataflow.DataFlow
 private import semmle.code.java.dataflow.TaintTracking
-private import semmle.code.java.dataflow.ExternalFlow
 
 /** The class `org.apache.ibatis.jdbc.SqlRunner`. */
 class MyBatisSqlRunner extends RefType {
diff --git a/java/ql/lib/semmle/code/java/frameworks/Regex.qll b/java/ql/lib/semmle/code/java/frameworks/Regex.qll
index 687e983eab6..90213957f4a 100644
--- a/java/ql/lib/semmle/code/java/frameworks/Regex.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/Regex.qll
@@ -1,6 +1,6 @@
 /** Definitions related to `java.util.regex`. */
 
-private import semmle.code.java.dataflow.ExternalFlow
+private import java
 
 /** The class `java.util.regex.Pattern`. */
 class TypeRegexPattern extends Class {
diff --git a/java/ql/lib/semmle/code/java/frameworks/SpringJdbc.qll b/java/ql/lib/semmle/code/java/frameworks/SpringJdbc.qll
index fb729f5c00e..82eedca44e8 100644
--- a/java/ql/lib/semmle/code/java/frameworks/SpringJdbc.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/SpringJdbc.qll
@@ -3,7 +3,6 @@
  */
 
 import java
-private import semmle.code.java.dataflow.ExternalFlow
 
 /** The class `org.springframework.jdbc.core.JdbcTemplate`. */
 class JdbcTemplate extends RefType {
diff --git a/java/ql/lib/semmle/code/java/frameworks/Stream.qll b/java/ql/lib/semmle/code/java/frameworks/Stream.qll
index af157d78740..f68cd6c844e 100644
--- a/java/ql/lib/semmle/code/java/frameworks/Stream.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/Stream.qll
@@ -1,6 +1,5 @@
 /** Definitions related to `java.util.stream`. */
 
-private import semmle.code.java.dataflow.ExternalFlow
 private import semmle.code.java.dataflow.FlowSummary
 
 private class CollectCall extends MethodAccess {
diff --git a/java/ql/lib/semmle/code/java/frameworks/android/Android.qll b/java/ql/lib/semmle/code/java/frameworks/android/Android.qll
index 7b76302bc05..5bdfc523b3d 100644
--- a/java/ql/lib/semmle/code/java/frameworks/android/Android.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/android/Android.qll
@@ -3,7 +3,6 @@
  */
 
 import java
-private import semmle.code.java.dataflow.ExternalFlow
 private import semmle.code.xml.AndroidManifest
 
 /**
diff --git a/java/ql/lib/semmle/code/java/frameworks/android/ContentProviders.qll b/java/ql/lib/semmle/code/java/frameworks/android/ContentProviders.qll
index df51d59063e..7bcd4baa3e5 100644
--- a/java/ql/lib/semmle/code/java/frameworks/android/ContentProviders.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/android/ContentProviders.qll
@@ -3,7 +3,6 @@
  */
 
 import java
-private import semmle.code.java.dataflow.ExternalFlow
 
 /** The class `android.content.ContentValues`. */
 class ContentValues extends Class {
diff --git a/java/ql/lib/semmle/code/java/frameworks/android/SQLite.qll b/java/ql/lib/semmle/code/java/frameworks/android/SQLite.qll
index eb6765de9e4..2898b6aee54 100644
--- a/java/ql/lib/semmle/code/java/frameworks/android/SQLite.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/android/SQLite.qll
@@ -1,7 +1,6 @@
 /** Provides classes and predicates for working with SQLite databases. */
 
 import java
-private import semmle.code.java.dataflow.ExternalFlow
 private import semmle.code.java.dataflow.FlowSteps
 private import semmle.code.java.frameworks.android.Android
 
diff --git a/java/ql/lib/semmle/code/java/frameworks/android/SharedPreferences.qll b/java/ql/lib/semmle/code/java/frameworks/android/SharedPreferences.qll
index 99131155151..a3298fd70d8 100644
--- a/java/ql/lib/semmle/code/java/frameworks/android/SharedPreferences.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/android/SharedPreferences.qll
@@ -1,7 +1,6 @@
 /** Provides classes related to `android.content.SharedPreferences`. */
 
 import java
-private import semmle.code.java.dataflow.ExternalFlow
 
 /** The interface `android.content.SharedPreferences`. */
 class SharedPreferences extends Interface {
diff --git a/java/ql/lib/semmle/code/java/frameworks/android/Slice.qll b/java/ql/lib/semmle/code/java/frameworks/android/Slice.qll
index 393a543bbfb..33de1ea0d12 100644
--- a/java/ql/lib/semmle/code/java/frameworks/android/Slice.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/android/Slice.qll
@@ -3,7 +3,6 @@
 import java
 private import semmle.code.java.dataflow.DataFlow
 private import semmle.code.java.dataflow.FlowSteps
-private import semmle.code.java.dataflow.ExternalFlow
 
 /** The class `androidx.slice.SliceProvider`. */
 class SliceProvider extends Class {
diff --git a/java/ql/lib/semmle/code/java/frameworks/apache/Collections.qll b/java/ql/lib/semmle/code/java/frameworks/apache/Collections.qll
index 6f8158b6c66..24030e35045 100644
--- a/java/ql/lib/semmle/code/java/frameworks/apache/Collections.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/apache/Collections.qll
@@ -2,7 +2,6 @@
 
 import java
 private import semmle.code.java.dataflow.FlowSteps
-private import semmle.code.java.dataflow.ExternalFlow
 
 /**
  * The method `isEmpty` in either `org.apache.commons.collections.CollectionUtils`
diff --git a/java/ql/lib/semmle/code/java/frameworks/apache/Lang.qll b/java/ql/lib/semmle/code/java/frameworks/apache/Lang.qll
index ea04948d9bc..9ea2400b871 100644
--- a/java/ql/lib/semmle/code/java/frameworks/apache/Lang.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/apache/Lang.qll
@@ -2,7 +2,6 @@
 
 import java
 private import semmle.code.java.dataflow.FlowSteps
-private import semmle.code.java.dataflow.ExternalFlow
 
 /**
  * The class `org.apache.commons.lang.RandomStringUtils` or `org.apache.commons.lang3.RandomStringUtils`.
diff --git a/java/ql/lib/semmle/code/java/frameworks/guava/Collections.qll b/java/ql/lib/semmle/code/java/frameworks/guava/Collections.qll
index c20bafb36de..94dd356f62d 100644
--- a/java/ql/lib/semmle/code/java/frameworks/guava/Collections.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/guava/Collections.qll
@@ -3,7 +3,6 @@
 import java
 private import semmle.code.java.dataflow.DataFlow
 private import semmle.code.java.dataflow.FlowSteps
-private import semmle.code.java.dataflow.ExternalFlow
 private import semmle.code.java.Collections
 
 private string guavaCollectPackage() { result = "com.google.common.collect" }
diff --git a/java/ql/lib/semmle/code/java/frameworks/jOOQ.qll b/java/ql/lib/semmle/code/java/frameworks/jOOQ.qll
index c109b980508..2aa78e9425d 100644
--- a/java/ql/lib/semmle/code/java/frameworks/jOOQ.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/jOOQ.qll
@@ -3,7 +3,6 @@
  */
 
 import java
-private import semmle.code.java.dataflow.ExternalFlow
 
 /**
  * Methods annotated with this allow for generation of "plain SQL"
diff --git a/java/ql/lib/semmle/code/java/frameworks/jackson/JacksonSerializability.qll b/java/ql/lib/semmle/code/java/frameworks/jackson/JacksonSerializability.qll
index 7499e26450c..020c167fab7 100644
--- a/java/ql/lib/semmle/code/java/frameworks/jackson/JacksonSerializability.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/jackson/JacksonSerializability.qll
@@ -9,7 +9,6 @@ import semmle.code.java.Reflection
 import semmle.code.java.dataflow.DataFlow
 private import semmle.code.java.dataflow.internal.DataFlowForSerializability
 import semmle.code.java.dataflow.FlowSteps
-private import semmle.code.java.dataflow.ExternalFlow
 
 /**
  * A `@com.fasterxml.jackson.annotation.JsonIgnore` annoation.
diff --git a/java/ql/lib/semmle/code/java/frameworks/javaee/jsf/JSFRenderer.qll b/java/ql/lib/semmle/code/java/frameworks/javaee/jsf/JSFRenderer.qll
index 17eec30769a..546d3be6983 100644
--- a/java/ql/lib/semmle/code/java/frameworks/javaee/jsf/JSFRenderer.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/javaee/jsf/JSFRenderer.qll
@@ -1,7 +1,6 @@
 /** Provides classes and predicates for working with JavaServer Faces renderer. */
 
 import java
-private import semmle.code.java.dataflow.ExternalFlow
 
 /**
  * The JSF class `FacesContext` for processing HTTP requests.
diff --git a/java/ql/lib/semmle/code/java/frameworks/ratpack/RatpackExec.qll b/java/ql/lib/semmle/code/java/frameworks/ratpack/RatpackExec.qll
index 079cb44eb5d..7efa72c3164 100644
--- a/java/ql/lib/semmle/code/java/frameworks/ratpack/RatpackExec.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/ratpack/RatpackExec.qll
@@ -5,7 +5,6 @@
 import java
 private import semmle.code.java.dataflow.DataFlow
 private import semmle.code.java.dataflow.FlowSteps
-private import semmle.code.java.dataflow.ExternalFlow
 
 /** A reference type that extends a parameterization the Promise type. */
 private class RatpackPromise extends RefType {
diff --git a/java/ql/lib/semmle/code/java/frameworks/spring/SpringHttp.qll b/java/ql/lib/semmle/code/java/frameworks/spring/SpringHttp.qll
index 6f4eedf0f36..4e91c1f18a2 100644
--- a/java/ql/lib/semmle/code/java/frameworks/spring/SpringHttp.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/spring/SpringHttp.qll
@@ -4,7 +4,6 @@
  */
 
 import java
-private import semmle.code.java.dataflow.ExternalFlow
 private import semmle.code.java.dataflow.DataFlow
 private import semmle.code.java.frameworks.spring.SpringController
 private import semmle.code.java.security.XSS as XSS
diff --git a/java/ql/lib/semmle/code/java/frameworks/spring/SpringWebClient.qll b/java/ql/lib/semmle/code/java/frameworks/spring/SpringWebClient.qll
index 955cb9e4131..3a8d4bb084a 100644
--- a/java/ql/lib/semmle/code/java/frameworks/spring/SpringWebClient.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/spring/SpringWebClient.qll
@@ -4,7 +4,6 @@
 
 import java
 import SpringHttp
-private import semmle.code.java.dataflow.ExternalFlow
 
 /** The class `org.springframework.web.client.RestTemplate`. */
 class SpringRestTemplate extends Class {
diff --git a/java/ql/lib/semmle/code/java/security/PartialPathTraversalQuery.qll b/java/ql/lib/semmle/code/java/security/PartialPathTraversalQuery.qll
index 70416546b96..a43f90ae10d 100644
--- a/java/ql/lib/semmle/code/java/security/PartialPathTraversalQuery.qll
+++ b/java/ql/lib/semmle/code/java/security/PartialPathTraversalQuery.qll
@@ -3,7 +3,6 @@
 import java
 import semmle.code.java.security.PartialPathTraversal
 import semmle.code.java.dataflow.DataFlow
-import semmle.code.java.dataflow.ExternalFlow
 import semmle.code.java.dataflow.TaintTracking
 import semmle.code.java.dataflow.FlowSources
 
diff --git a/java/ql/lib/semmle/code/java/security/PathSanitizer.qll b/java/ql/lib/semmle/code/java/security/PathSanitizer.qll
index bd15b0581b7..3b8ab9d6ba5 100644
--- a/java/ql/lib/semmle/code/java/security/PathSanitizer.qll
+++ b/java/ql/lib/semmle/code/java/security/PathSanitizer.qll
@@ -2,7 +2,6 @@
 
 import java
 private import semmle.code.java.controlflow.Guards
-private import semmle.code.java.dataflow.ExternalFlow
 private import semmle.code.java.dataflow.FlowSources
 private import semmle.code.java.dataflow.SSA
 
diff --git a/java/ql/lib/semmle/code/java/security/SpelInjection.qll b/java/ql/lib/semmle/code/java/security/SpelInjection.qll
index 76fb6191911..55f526d72f4 100644
--- a/java/ql/lib/semmle/code/java/security/SpelInjection.qll
+++ b/java/ql/lib/semmle/code/java/security/SpelInjection.qll
@@ -2,7 +2,6 @@
 
 import java
 private import semmle.code.java.dataflow.DataFlow
-private import semmle.code.java.dataflow.ExternalFlow
 private import semmle.code.java.frameworks.spring.SpringExpression
 
 /** A data flow sink for unvalidated user input that is used to construct SpEL expressions. */
diff --git a/java/ql/lib/semmle/code/java/security/UnsafeContentUriResolutionQuery.qll b/java/ql/lib/semmle/code/java/security/UnsafeContentUriResolutionQuery.qll
index b362a5dceeb..0bc76e384d1 100644
--- a/java/ql/lib/semmle/code/java/security/UnsafeContentUriResolutionQuery.qll
+++ b/java/ql/lib/semmle/code/java/security/UnsafeContentUriResolutionQuery.qll
@@ -1,7 +1,6 @@
 /** Provides taint tracking configurations to be used in unsafe content URI resolution queries. */
 
 import java
-import semmle.code.java.dataflow.ExternalFlow
 import semmle.code.java.dataflow.FlowSources
 import semmle.code.java.dataflow.TaintTracking
 import semmle.code.java.security.UnsafeContentUriResolution
diff --git a/java/ql/src/experimental/Security/CWE/CWE-073/JFinalController.qll b/java/ql/src/experimental/Security/CWE/CWE-073/JFinalController.qll
index 94cd966da9d..035039046f1 100644
--- a/java/ql/src/experimental/Security/CWE/CWE-073/JFinalController.qll
+++ b/java/ql/src/experimental/Security/CWE/CWE-073/JFinalController.qll
@@ -1,5 +1,4 @@
 import java
-private import semmle.code.java.dataflow.ExternalFlow
 private import semmle.code.java.dataflow.FlowSources
 
 /** The class `com.jfinal.core.Controller`. */
diff --git a/java/ql/src/experimental/semmle/code/java/frameworks/SpringResource.qll b/java/ql/src/experimental/semmle/code/java/frameworks/SpringResource.qll
index e8c86a26512..a4f53284d5d 100644
--- a/java/ql/src/experimental/semmle/code/java/frameworks/SpringResource.qll
+++ b/java/ql/src/experimental/semmle/code/java/frameworks/SpringResource.qll
@@ -3,7 +3,6 @@
  */
 
 import java
-private import semmle.code.java.dataflow.ExternalFlow
 private import semmle.code.java.dataflow.FlowSources
 
 /** A utility class for resolving resource locations to files in the file system in the Spring framework. */
diff --git a/java/ql/src/utils/flowtestcasegenerator/FlowTestCaseSupportMethods.qll b/java/ql/src/utils/flowtestcasegenerator/FlowTestCaseSupportMethods.qll
index 80de2c6068d..437923c1d1b 100644
--- a/java/ql/src/utils/flowtestcasegenerator/FlowTestCaseSupportMethods.qll
+++ b/java/ql/src/utils/flowtestcasegenerator/FlowTestCaseSupportMethods.qll
@@ -4,7 +4,6 @@
 
 import java
 private import semmle.code.java.dataflow.internal.DataFlowUtil
-private import semmle.code.java.dataflow.ExternalFlow
 private import semmle.code.java.dataflow.FlowSummary
 private import semmle.code.java.dataflow.internal.FlowSummaryImpl
 private import FlowTestCaseUtils
diff --git a/java/ql/test/kotlin/library-tests/dataflow/extensionMethod/test.ql b/java/ql/test/kotlin/library-tests/dataflow/extensionMethod/test.ql
index 47f3ce17767..f30061c4f59 100644
--- a/java/ql/test/kotlin/library-tests/dataflow/extensionMethod/test.ql
+++ b/java/ql/test/kotlin/library-tests/dataflow/extensionMethod/test.ql
@@ -1,6 +1,5 @@
 import java
 import semmle.code.java.dataflow.TaintTracking
-import semmle.code.java.dataflow.ExternalFlow
 
 class Conf extends TaintTracking::Configuration {
   Conf() { this = "qltest:extension-method" }
diff --git a/java/ql/test/kotlin/library-tests/dataflow/foreach/test.ql b/java/ql/test/kotlin/library-tests/dataflow/foreach/test.ql
index c14c0ca83d2..1b0dc06d7b7 100644
--- a/java/ql/test/kotlin/library-tests/dataflow/foreach/test.ql
+++ b/java/ql/test/kotlin/library-tests/dataflow/foreach/test.ql
@@ -1,6 +1,5 @@
 import java
 import semmle.code.java.dataflow.TaintTracking
-import semmle.code.java.dataflow.ExternalFlow
 
 class Conf extends TaintTracking::Configuration {
   Conf() { this = "qltest:foreach-array-iterator" }
diff --git a/java/ql/test/kotlin/library-tests/dataflow/func/test.ql b/java/ql/test/kotlin/library-tests/dataflow/func/test.ql
index 54971bbddbd..d9753998114 100644
--- a/java/ql/test/kotlin/library-tests/dataflow/func/test.ql
+++ b/java/ql/test/kotlin/library-tests/dataflow/func/test.ql
@@ -1,6 +1,5 @@
 import java
 import semmle.code.java.dataflow.TaintTracking
-import semmle.code.java.dataflow.ExternalFlow
 
 class Conf extends TaintTracking::Configuration {
   Conf() { this = "qltest:lambdaFlow" }
diff --git a/java/ql/test/kotlin/library-tests/dataflow/notnullexpr/test.ql b/java/ql/test/kotlin/library-tests/dataflow/notnullexpr/test.ql
index 6e97f945f13..36fae98724c 100644
--- a/java/ql/test/kotlin/library-tests/dataflow/notnullexpr/test.ql
+++ b/java/ql/test/kotlin/library-tests/dataflow/notnullexpr/test.ql
@@ -1,6 +1,5 @@
 import java
 import semmle.code.java.dataflow.TaintTracking
-import semmle.code.java.dataflow.ExternalFlow
 
 class Conf extends TaintTracking::Configuration {
   Conf() { this = "qltest:notNullExprFlow" }
diff --git a/java/ql/test/kotlin/library-tests/dataflow/whenexpr/test.ql b/java/ql/test/kotlin/library-tests/dataflow/whenexpr/test.ql
index 6e97f945f13..36fae98724c 100644
--- a/java/ql/test/kotlin/library-tests/dataflow/whenexpr/test.ql
+++ b/java/ql/test/kotlin/library-tests/dataflow/whenexpr/test.ql
@@ -1,6 +1,5 @@
 import java
 import semmle.code.java.dataflow.TaintTracking
-import semmle.code.java.dataflow.ExternalFlow
 
 class Conf extends TaintTracking::Configuration {
   Conf() { this = "qltest:notNullExprFlow" }
diff --git a/java/ql/test/library-tests/dataflow/callback-dispatch/test.ql b/java/ql/test/library-tests/dataflow/callback-dispatch/test.ql
index 09366857c0b..cadd07c6f41 100644
--- a/java/ql/test/library-tests/dataflow/callback-dispatch/test.ql
+++ b/java/ql/test/library-tests/dataflow/callback-dispatch/test.ql
@@ -1,6 +1,5 @@
 import java
 import semmle.code.java.dataflow.DataFlow
-import semmle.code.java.dataflow.ExternalFlow
 import TestUtilities.InlineExpectationsTest
 
 class Conf extends DataFlow::Configuration {
diff --git a/java/ql/test/library-tests/dataflow/collections/containerflow.ql b/java/ql/test/library-tests/dataflow/collections/containerflow.ql
index fc596462aef..df1f397f059 100644
--- a/java/ql/test/library-tests/dataflow/collections/containerflow.ql
+++ b/java/ql/test/library-tests/dataflow/collections/containerflow.ql
@@ -1,6 +1,5 @@
 import java
 import semmle.code.java.dataflow.DataFlow
-import semmle.code.java.dataflow.ExternalFlow
 import TestUtilities.InlineFlowTest
 
 class HasFlowTest extends InlineFlowTest {

From 65f242cabed3e60e12a997847b8cdb207c187dd1 Mon Sep 17 00:00:00 2001
From: Michael Nebel <michaelnebel@github.com>
Date: Thu, 1 Dec 2022 18:41:46 +0100
Subject: [PATCH 0999/1420] Java: Delete import of framework related files in
 ExternalFlow.

---
 .../code/java/dataflow/ExternalFlow.qll       | 47 -------------------
 1 file changed, 47 deletions(-)

diff --git a/java/ql/lib/semmle/code/java/dataflow/ExternalFlow.qll b/java/ql/lib/semmle/code/java/dataflow/ExternalFlow.qll
index d8377cbb9fd..14773872ba0 100644
--- a/java/ql/lib/semmle/code/java/dataflow/ExternalFlow.qll
+++ b/java/ql/lib/semmle/code/java/dataflow/ExternalFlow.qll
@@ -80,53 +80,6 @@ private import internal.FlowSummaryImplSpecific as FlowSummaryImplSpecific
 private import internal.AccessPathSyntax
 private import FlowSummary
 
-/**
- * A module importing the frameworks that provide external flow data,
- * ensuring that they are visible to the taint tracking / data flow library.
- */
-private module Frameworks {
-  private import internal.ContainerFlow
-  private import semmle.code.java.frameworks.android.Android
-  private import semmle.code.java.frameworks.android.ContentProviders
-  private import semmle.code.java.frameworks.android.ExternalStorage
-  private import semmle.code.java.frameworks.android.Intent
-  private import semmle.code.java.frameworks.android.SharedPreferences
-  private import semmle.code.java.frameworks.android.Slice
-  private import semmle.code.java.frameworks.android.SQLite
-  private import semmle.code.java.frameworks.android.Widget
-  private import semmle.code.java.frameworks.ApacheHttp
-  private import semmle.code.java.frameworks.apache.Collections
-  private import semmle.code.java.frameworks.apache.Lang
-  private import semmle.code.java.frameworks.Flexjson
-  private import semmle.code.java.frameworks.guava.Guava
-  private import semmle.code.java.frameworks.jackson.JacksonSerializability
-  private import semmle.code.java.frameworks.javaee.jsf.JSFRenderer
-  private import semmle.code.java.frameworks.JaxWS
-  private import semmle.code.java.frameworks.JoddJson
-  private import semmle.code.java.frameworks.Stream
-  private import semmle.code.java.frameworks.ratpack.RatpackExec
-  private import semmle.code.java.frameworks.spring.SpringHttp
-  private import semmle.code.java.frameworks.spring.SpringWebClient
-  private import semmle.code.java.security.AndroidIntentRedirection
-  private import semmle.code.java.security.ResponseSplitting
-  private import semmle.code.java.security.InformationLeak
-  private import semmle.code.java.security.FragmentInjection
-  private import semmle.code.java.security.GroovyInjection
-  private import semmle.code.java.security.ImplicitPendingIntents
-  private import semmle.code.java.security.JndiInjection
-  private import semmle.code.java.security.LdapInjection
-  private import semmle.code.java.security.MvelInjection
-  private import semmle.code.java.security.OgnlInjection
-  private import semmle.code.java.security.TemplateInjection
-  private import semmle.code.java.security.XPath
-  private import semmle.code.java.security.XsltInjection
-  private import semmle.code.java.frameworks.Jdbc
-  private import semmle.code.java.frameworks.SpringJdbc
-  private import semmle.code.java.frameworks.MyBatis
-  private import semmle.code.java.frameworks.Hibernate
-  private import semmle.code.java.frameworks.jOOQ
-}
-
 /**
  * DEPRECATED: Define source models as data extensions instead.
  *

From 5c8ef15d6fa5f9db12f52ee438d687d0c0594df2 Mon Sep 17 00:00:00 2001
From: Michael Nebel <michaelnebel@github.com>
Date: Fri, 2 Dec 2022 11:35:38 +0100
Subject: [PATCH 1000/1420] Java: Add bi-directional imports of some abstract
 class extensions.

---
 java/ql/lib/semmle/code/java/dataflow/FlowSources.qll     | 8 ++++++++
 java/ql/lib/semmle/code/java/dataflow/FlowSteps.qll       | 2 ++
 java/ql/lib/semmle/code/java/dataflow/FlowSummary.qll     | 8 ++++++++
 .../java/dataflow/internal/FlowSummaryImplSpecific.qll    | 7 +++++++
 4 files changed, 25 insertions(+)

diff --git a/java/ql/lib/semmle/code/java/dataflow/FlowSources.qll b/java/ql/lib/semmle/code/java/dataflow/FlowSources.qll
index fcb4ac3b970..501f5f16ee7 100644
--- a/java/ql/lib/semmle/code/java/dataflow/FlowSources.qll
+++ b/java/ql/lib/semmle/code/java/dataflow/FlowSources.qll
@@ -36,6 +36,14 @@ abstract class RemoteFlowSource extends DataFlow::Node {
   abstract string getSourceType();
 }
 
+/**
+ * A module for importing frameworks that define remote flow sources.
+ */
+private module RemoteFlowSources {
+  private import semmle.code.java.frameworks.android.Widget
+  private import semmle.code.java.security.TemplateInjection
+}
+
 private class ExternalRemoteFlowSource extends RemoteFlowSource {
   ExternalRemoteFlowSource() { sourceNode(this, "remote") }
 
diff --git a/java/ql/lib/semmle/code/java/dataflow/FlowSteps.qll b/java/ql/lib/semmle/code/java/dataflow/FlowSteps.qll
index 4f350ec9ccb..24b49000c5a 100644
--- a/java/ql/lib/semmle/code/java/dataflow/FlowSteps.qll
+++ b/java/ql/lib/semmle/code/java/dataflow/FlowSteps.qll
@@ -21,6 +21,8 @@ private module Frameworks {
   private import semmle.code.java.frameworks.guava.Guava
   private import semmle.code.java.frameworks.apache.Lang
   private import semmle.code.java.frameworks.ApacheHttp
+  private import semmle.code.java.frameworks.ratpack.RatpackExec
+  private import semmle.code.java.frameworks.android.Slice
 }
 
 /**
diff --git a/java/ql/lib/semmle/code/java/dataflow/FlowSummary.qll b/java/ql/lib/semmle/code/java/dataflow/FlowSummary.qll
index 00abffe5f7b..09a5f05914f 100644
--- a/java/ql/lib/semmle/code/java/dataflow/FlowSummary.qll
+++ b/java/ql/lib/semmle/code/java/dataflow/FlowSummary.qll
@@ -97,6 +97,14 @@ abstract class SyntheticCallable extends string {
   Type getReturnType() { none() }
 }
 
+/**
+ * A module for importing frameworks that define synthetic callables.
+ */
+private module SyntheticCallables {
+  private import semmle.code.java.frameworks.android.Intent
+  private import semmle.code.java.frameworks.Stream
+}
+
 private newtype TSummarizedCallableBase =
   TSimpleCallable(Callable c) { c.isSourceDeclaration() } or
   TSyntheticCallable(SyntheticCallable c)
diff --git a/java/ql/lib/semmle/code/java/dataflow/internal/FlowSummaryImplSpecific.qll b/java/ql/lib/semmle/code/java/dataflow/internal/FlowSummaryImplSpecific.qll
index 007105d3e95..c3366436d27 100644
--- a/java/ql/lib/semmle/code/java/dataflow/internal/FlowSummaryImplSpecific.qll
+++ b/java/ql/lib/semmle/code/java/dataflow/internal/FlowSummaryImplSpecific.qll
@@ -14,6 +14,13 @@ private import semmle.code.java.dataflow.internal.AccessPathSyntax as AccessPath
 
 class SummarizedCallableBase = FlowSummary::SummarizedCallableBase;
 
+/**
+ * A module for importing frameworks that define synthetic globals.
+ */
+private module SyntheticGlobals {
+  private import semmle.code.java.frameworks.android.Intent
+}
+
 DataFlowCallable inject(SummarizedCallable c) { result.asSummarizedCallable() = c }
 
 /** Gets the parameter position of the instance parameter. */

From 6e486d43476aa834e2eeaf31225502f80f6cf708 Mon Sep 17 00:00:00 2001
From: Michael Nebel <michaelnebel@github.com>
Date: Fri, 2 Dec 2022 14:43:36 +0100
Subject: [PATCH 1001/1420] Re-arrange imports.

---
 .../ql/lib/semmle/code/java/dataflow/FlowSteps.qll | 14 +++++++-------
 1 file changed, 7 insertions(+), 7 deletions(-)

diff --git a/java/ql/lib/semmle/code/java/dataflow/FlowSteps.qll b/java/ql/lib/semmle/code/java/dataflow/FlowSteps.qll
index 24b49000c5a..f6f1d92b195 100644
--- a/java/ql/lib/semmle/code/java/dataflow/FlowSteps.qll
+++ b/java/ql/lib/semmle/code/java/dataflow/FlowSteps.qll
@@ -10,19 +10,19 @@ private import semmle.code.java.dataflow.DataFlow
  * ensuring that they are visible to the taint tracking library.
  */
 private module Frameworks {
-  private import semmle.code.java.JDK
-  private import semmle.code.java.frameworks.jackson.JacksonSerializability
   private import semmle.code.java.frameworks.android.AsyncTask
   private import semmle.code.java.frameworks.android.Intent
+  private import semmle.code.java.frameworks.android.Slice
   private import semmle.code.java.frameworks.android.SQLite
-  private import semmle.code.java.frameworks.Guice
-  private import semmle.code.java.frameworks.Properties
-  private import semmle.code.java.frameworks.Protobuf
-  private import semmle.code.java.frameworks.guava.Guava
   private import semmle.code.java.frameworks.apache.Lang
   private import semmle.code.java.frameworks.ApacheHttp
+  private import semmle.code.java.frameworks.guava.Guava
+  private import semmle.code.java.frameworks.Guice
+  private import semmle.code.java.frameworks.jackson.JacksonSerializability
+  private import semmle.code.java.frameworks.Properties
+  private import semmle.code.java.frameworks.Protobuf
   private import semmle.code.java.frameworks.ratpack.RatpackExec
-  private import semmle.code.java.frameworks.android.Slice
+  private import semmle.code.java.JDK
 }
 
 /**

From 6884db120ab39d6a072bd97fc2ada2029c2faf64 Mon Sep 17 00:00:00 2001
From: Felicity Chapman <felicitymay@github.com>
Date: Mon, 5 Dec 2022 09:56:28 +0000
Subject: [PATCH 1002/1420] Remove another outdated reference

---
 docs/codeql/conf.py | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/docs/codeql/conf.py b/docs/codeql/conf.py
index 662a3f44b66..da8b9114025 100644
--- a/docs/codeql/conf.py
+++ b/docs/codeql/conf.py
@@ -55,7 +55,7 @@ def setup(sphinx):
     sphinx.add_lexer("ql", QLLexer())
 
 # The version of CodeQL for the current release you're documenting, acts as replacement for
-# |version| and |release|. Not currently used except in LGTM Enterprise support info.
+# |version| and |release|. Not currently used.
 
 # The short X.Y version.
 # version = u'3.0'

From 21b51b48eb5a8c3ba29d96281f8e7eddd63c791d Mon Sep 17 00:00:00 2001
From: Tony Torralba <atorralba@users.noreply.github.com>
Date: Fri, 2 Dec 2022 18:14:42 +0100
Subject: [PATCH 1003/1420] Adapt PathSanitizer to Kotlin

---
 .../semmle/code/java/frameworks/kotlin/IO.qll |   8 +
 .../code/java/frameworks/kotlin/Text.qll      |  20 +
 .../code/java/security/PathSanitizer.qll      | 140 +++--
 .../library-tests/pathsanitizer/Test.java     |   2 +-
 .../library-tests/pathsanitizer/TestKt.kt     | 479 ++++++++++++++++++
 .../test/library-tests/pathsanitizer/options  |   1 +
 6 files changed, 610 insertions(+), 40 deletions(-)
 create mode 100644 java/ql/lib/semmle/code/java/frameworks/kotlin/IO.qll
 create mode 100644 java/ql/lib/semmle/code/java/frameworks/kotlin/Text.qll
 create mode 100644 java/ql/test/library-tests/pathsanitizer/TestKt.kt

diff --git a/java/ql/lib/semmle/code/java/frameworks/kotlin/IO.qll b/java/ql/lib/semmle/code/java/frameworks/kotlin/IO.qll
new file mode 100644
index 00000000000..38af34bc690
--- /dev/null
+++ b/java/ql/lib/semmle/code/java/frameworks/kotlin/IO.qll
@@ -0,0 +1,8 @@
+/** Provides classes and predicates related to `kotlin.io`. */
+
+import java
+
+/** The type `kotlin.io.FilesKt`, where `File` extension methods are declared. */
+class FilesKt extends RefType {
+  FilesKt() { this.hasQualifiedName("kotlin.io", "FilesKt") }
+}
diff --git a/java/ql/lib/semmle/code/java/frameworks/kotlin/Text.qll b/java/ql/lib/semmle/code/java/frameworks/kotlin/Text.qll
new file mode 100644
index 00000000000..7f5c5b316c4
--- /dev/null
+++ b/java/ql/lib/semmle/code/java/frameworks/kotlin/Text.qll
@@ -0,0 +1,20 @@
+/** Provides classes and predicates related to `kotlin.text`. */
+
+import java
+
+/** The type `kotlin.text.StringsKt`, where `String` extension methods are declared. */
+class StringsKt extends RefType {
+  StringsKt() { this.hasQualifiedName("kotlin.text", "StringsKt") }
+}
+
+/** A call to the extension method `String.toRegex` from `kotlin.text`. */
+class KtToRegex extends MethodAccess {
+  KtToRegex() {
+    this.getMethod().getDeclaringType() instanceof StringsKt and
+    this.getMethod().hasName("toRegex")
+  }
+
+  string getExpressionString() {
+    result = this.getArgument(0).(CompileTimeConstantExpr).getStringValue()
+  }
+}
diff --git a/java/ql/lib/semmle/code/java/security/PathSanitizer.qll b/java/ql/lib/semmle/code/java/security/PathSanitizer.qll
index bd15b0581b7..ad861ddeb42 100644
--- a/java/ql/lib/semmle/code/java/security/PathSanitizer.qll
+++ b/java/ql/lib/semmle/code/java/security/PathSanitizer.qll
@@ -5,6 +5,8 @@ private import semmle.code.java.controlflow.Guards
 private import semmle.code.java.dataflow.ExternalFlow
 private import semmle.code.java.dataflow.FlowSources
 private import semmle.code.java.dataflow.SSA
+private import semmle.code.java.frameworks.kotlin.IO
+private import semmle.code.java.frameworks.kotlin.Text
 
 /** A sanitizer that protects against path injection vulnerabilities. */
 abstract class PathInjectionSanitizer extends DataFlow::Node { }
@@ -47,16 +49,25 @@ private module ValidationMethod<DataFlow::guardChecksSig/3 validationGuard> {
  */
 private predicate exactPathMatchGuard(Guard g, Expr e, boolean branch) {
   exists(MethodAccess ma, RefType t |
-    t instanceof TypeString or
-    t instanceof TypeUri or
-    t instanceof TypePath or
-    t instanceof TypeFile or
-    t.hasQualifiedName("android.net", "Uri")
+    (
+      t instanceof TypeString or
+      t instanceof TypeUri or
+      t instanceof TypePath or
+      t instanceof TypeFile or
+      t.hasQualifiedName("android.net", "Uri")
+    ) and
+    e = ma.getQualifier().getUnderlyingExpr()
+    or
+    (
+      ma.getMethod().getDeclaringType() instanceof StringsKt
+      or
+      ma.getMethod().getDeclaringType() instanceof FilesKt
+    ) and
+    e = ma.getArgument(0).getUnderlyingExpr()
   |
     ma.getMethod().getDeclaringType() = t and
     ma = g and
-    ma.getMethod().getName() = ["equals", "equalsIgnoreCase"] and
-    e = ma.getQualifier() and
+    ma.getMethod().getName() = ["equals", "equalsIgnoreCase"] + ["", "$default"] and
     branch = true
   )
 }
@@ -82,12 +93,18 @@ private predicate localTaintFlowToPathGuard(Expr e, PathGuard g) {
 }
 
 private class AllowedPrefixGuard extends PathGuard instanceof MethodAccess {
+  Expr checkedExpr;
+
   AllowedPrefixGuard() {
-    (isStringPrefixMatch(this) or isPathPrefixMatch(this)) and
+    (
+      isStringPrefixMatch(this, checkedExpr)
+      or
+      isPathPrefixMatch(this, checkedExpr)
+    ) and
     not isDisallowedWord(super.getAnArgument())
   }
 
-  override Expr getCheckedExpr() { result = super.getQualifier() }
+  override Expr getCheckedExpr() { result = checkedExpr }
 }
 
 /**
@@ -149,12 +166,18 @@ private class DotDotCheckSanitizer extends PathInjectionSanitizer {
 }
 
 private class BlockListGuard extends PathGuard instanceof MethodAccess {
+  Expr checkedExpr;
+
   BlockListGuard() {
-    (isStringPartialMatch(this) or isPathPrefixMatch(this)) and
+    (
+      isStringPartialMatch(this, checkedExpr)
+      or
+      isPathPrefixMatch(this, checkedExpr)
+    ) and
     isDisallowedWord(super.getAnArgument())
   }
 
-  override Expr getCheckedExpr() { result = super.getQualifier() }
+  override Expr getCheckedExpr() { result = checkedExpr }
 }
 
 /**
@@ -188,70 +211,109 @@ private class BlockListSanitizer extends PathInjectionSanitizer {
   }
 }
 
-private predicate isStringPrefixMatch(MethodAccess ma) {
-  exists(Method m | m = ma.getMethod() and m.getDeclaringType() instanceof TypeString |
-    m.hasName("startsWith")
+private class ConstantOrRegex extends Expr {
+  ConstantOrRegex() {
+    this instanceof CompileTimeConstantExpr or
+    this instanceof KtToRegex
+  }
+
+  string getStringValue() {
+    result = this.(CompileTimeConstantExpr).getStringValue() or
+    result = this.(KtToRegex).getExpressionString()
+  }
+}
+
+private predicate isStringPrefixMatch(MethodAccess ma, Expr checkedExpr) {
+  exists(Method m |
+    m = ma.getMethod() and
+    (
+      m.getDeclaringType() instanceof TypeString and
+      checkedExpr = ma.getQualifier().getUnderlyingExpr()
+      or
+      m.getDeclaringType() instanceof StringsKt and
+      checkedExpr = ma.getArgument(0).getUnderlyingExpr()
+    )
+  |
+    m.hasName("startsWith" + ["", "$default"])
     or
-    m.hasName("regionMatches") and
-    ma.getArgument(0).(CompileTimeConstantExpr).getIntValue() = 0
-    or
-    m.hasName("matches") and
-    not ma.getArgument(0).(CompileTimeConstantExpr).getStringValue().matches(".*%")
+    exists(int argPos |
+      m.getDeclaringType() instanceof TypeString and argPos = 0
+      or
+      m.getDeclaringType() instanceof StringsKt and argPos = 1
+    |
+      m.hasName("regionMatches" + ["", "$default"]) and
+      ma.getArgument(argPos).(CompileTimeConstantExpr).getIntValue() = 0
+      or
+      m.hasName("matches") and
+      not ma.getArgument(argPos).(ConstantOrRegex).getStringValue().matches(".*%")
+    )
   )
 }
 
 /**
- * Holds if `ma` is a call to a method that checks a partial string match.
+ * Holds if `ma` is a call to a method that checks a partial string match on `checkedExpr`.
  */
-private predicate isStringPartialMatch(MethodAccess ma) {
-  isStringPrefixMatch(ma)
+private predicate isStringPartialMatch(MethodAccess ma, Expr checkedExpr) {
+  isStringPrefixMatch(ma, checkedExpr)
   or
-  ma.getMethod().getDeclaringType() instanceof TypeString and
-  ma.getMethod().hasName(["contains", "matches", "regionMatches", "indexOf", "lastIndexOf"])
+  (
+    ma.getMethod().getDeclaringType() instanceof TypeString and
+    checkedExpr = ma.getQualifier().getUnderlyingExpr()
+    or
+    ma.getMethod().getDeclaringType() instanceof StringsKt and
+    checkedExpr = ma.getArgument(0).getUnderlyingExpr()
+  ) and
+  ma.getMethod()
+      .hasName(["contains", "matches", "regionMatches", "indexOf", "lastIndexOf"] + ["", "$default"])
 }
 
 /**
- * Holds if `ma` is a call to a method that checks whether a path starts with a prefix.
+ * Holds if `ma` is a call to a method that checks whether `checkedExpr` starts with a prefix.
  */
-private predicate isPathPrefixMatch(MethodAccess ma) {
+private predicate isPathPrefixMatch(MethodAccess ma, Expr checkedExpr) {
   exists(RefType t |
-    t instanceof TypePath
+    t instanceof TypePath and checkedExpr = ma.getQualifier().getUnderlyingExpr()
     or
-    t.hasQualifiedName("kotlin.io", "FilesKt")
+    t instanceof FilesKt and
+    checkedExpr = ma.getArgument(0).getUnderlyingExpr()
   |
     t = ma.getMethod().getDeclaringType() and
-    ma.getMethod().hasName("startsWith")
+    ma.getMethod().hasName("startsWith" + ["", "$default"])
   )
 }
 
-private predicate isDisallowedWord(CompileTimeConstantExpr word) {
+private predicate isDisallowedWord(ConstantOrRegex word) {
   word.getStringValue().matches(["/", "\\", "%WEB-INF%", "%/data%"])
 }
 
 /** A complementary guard that protects against path traversal, by looking for the literal `..`. */
 private class PathTraversalGuard extends PathGuard {
+  Expr checkedExpr;
+
   PathTraversalGuard() {
     exists(MethodAccess ma |
-      ma.getMethod().getDeclaringType() instanceof TypeString and
+      (
+        ma.getMethod().getDeclaringType() instanceof TypeString and
+        checkedExpr = ma.getQualifier().getUnderlyingExpr()
+        or
+        ma.getMethod().getDeclaringType() instanceof StringsKt and
+        checkedExpr = ma.getArgument(0).getUnderlyingExpr()
+      ) and
       ma.getAnArgument().(CompileTimeConstantExpr).getStringValue() = ".."
     |
       this = ma and
-      ma.getMethod().hasName("contains")
+      ma.getMethod().hasName("contains" + ["", "$default"])
       or
       exists(EqualityTest eq |
         this = eq and
-        ma.getMethod().hasName(["indexOf", "lastIndexOf"]) and
+        ma.getMethod().hasName(["indexOf", "lastIndexOf"] + ["", "$default"]) and
         eq.getAnOperand() = ma and
         eq.getAnOperand().(CompileTimeConstantExpr).getIntValue() = -1
       )
     )
   }
 
-  override Expr getCheckedExpr() {
-    exists(MethodAccess ma | ma = this.(EqualityTest).getAnOperand() or ma = this |
-      result = ma.getQualifier()
-    )
-  }
+  override Expr getCheckedExpr() { result = checkedExpr }
 
   boolean getBranch() {
     this instanceof MethodAccess and result = false
@@ -265,7 +327,7 @@ private class PathNormalizeSanitizer extends MethodAccess {
   PathNormalizeSanitizer() {
     exists(RefType t |
       t instanceof TypePath or
-      t.hasQualifiedName("kotlin.io", "FilesKt")
+      t instanceof FilesKt
     |
       this.getMethod().getDeclaringType() = t and
       this.getMethod().hasName("normalize")
diff --git a/java/ql/test/library-tests/pathsanitizer/Test.java b/java/ql/test/library-tests/pathsanitizer/Test.java
index 27a15d867ce..61e0f498bd8 100644
--- a/java/ql/test/library-tests/pathsanitizer/Test.java
+++ b/java/ql/test/library-tests/pathsanitizer/Test.java
@@ -279,7 +279,7 @@ public class Test {
     }
 
     private void blockListGuardValidation(String path) throws Exception {
-        if (path.contains("..") || !path.startsWith("/data"))
+        if (path.contains("..") || path.startsWith("/data"))
             throw new Exception();
     }
 
diff --git a/java/ql/test/library-tests/pathsanitizer/TestKt.kt b/java/ql/test/library-tests/pathsanitizer/TestKt.kt
new file mode 100644
index 00000000000..0960e9301a7
--- /dev/null
+++ b/java/ql/test/library-tests/pathsanitizer/TestKt.kt
@@ -0,0 +1,479 @@
+import java.io.File
+import java.net.URI
+import java.nio.file.Path
+import java.nio.file.Paths
+import android.net.Uri
+
+class TestKt {
+    fun source(): Any? {
+        return null
+    }
+
+    fun sink(o: Any?) {}
+
+    @Throws(Exception::class)
+    private fun exactPathMatchGuardValidation(path: String?) {
+        if (!path.equals("/safe/path")) throw Exception()
+    }
+
+    @Throws(Exception::class)
+    fun exactPathMatchGuard() {
+        run {
+            val source = source() as String?
+            // This gets extracted as Object.equals, which makes the definitions in exactPathMatchGuard not catch it.
+            // Note that it gets correctly extracted in Java.
+            if (source!!.equals("/safe/path"))
+                sink(source) // $SPURIOUS: $ hasTaintFlow
+            else
+                sink(source) // $ hasTaintFlow
+        }
+        run {
+            val source = source() as URI?
+            if (source!!.equals(URI("http://safe/uri")))
+                sink(source) // Safe
+            else
+                sink(source) // $ hasTaintFlow
+        }
+        run {
+            val source = source() as File?
+            if (source!!.equals(File("/safe/file")))
+                sink(source) // Safe
+            else
+                sink(source) // $ hasTaintFlow
+        }
+        run {
+            val source = source() as Uri?
+            if (source!!.equals(Uri.parse("http://safe/uri")))
+                sink(source) // Safe
+            else
+                sink(source) // $ hasTaintFlow
+        }
+        run {
+            val source = source() as String?
+            exactPathMatchGuardValidation(source)
+            sink(source) // Safe
+        }
+    }
+
+    @Throws(Exception::class)
+    private fun allowListGuardValidation(path: String?) {
+        if (path!!.contains("..") || !path.startsWith("/safe")) throw Exception()
+    }
+
+    @Throws(Exception::class)
+    fun allowListGuard() {
+        // Prefix check by itself is not enough
+        run {
+            val source = source() as String?
+            if (source!!.startsWith("/safe")) {
+                sink(source) // $ hasTaintFlow
+            } else
+                sink(source) // $ hasTaintFlow
+        }
+        // PathTraversalGuard + allowListGuard
+        run {
+            val source = source() as String?
+            if (!source!!.contains("..") && source.startsWith("/safe"))
+                sink(source) // Safe
+            else
+                sink(source) // $ hasTaintFlow
+        }
+        run {
+            val source = source() as String?
+            if (source!!.indexOf("..") == -1 && source.startsWith("/safe"))
+                sink(source) // Safe
+            else
+                sink(source) // $ hasTaintFlow
+        }
+        run {
+            val source = source() as String?
+            if (source!!.lastIndexOf("..") == -1 && source.startsWith("/safe"))
+                sink(source) // Safe
+            else
+                sink(source) // $ hasTaintFlow
+        }
+        // PathTraversalSanitizer + allowListGuard
+        run {
+            val source: File? = source() as File?
+            val normalized: String = source!!.getCanonicalPath()
+            if (normalized.startsWith("/safe")) {
+                sink(source) // Safe
+                sink(normalized) // Safe
+            } else {
+                sink(source) // $ hasTaintFlow
+                sink(normalized) // $ hasTaintFlow
+            }
+        }
+        run {
+            val source: File? = source() as File?
+            val normalized: String = source!!.getCanonicalFile().toString()
+            if (normalized.startsWith("/safe")) {
+                sink(source) // Safe
+                sink(normalized) // Safe
+            } else {
+                sink(source) // $ hasTaintFlow
+                sink(normalized) // $ hasTaintFlow
+            }
+        }
+        run {
+            val source = source() as String?
+            val normalized: Path = Paths.get(source).normalize()
+            if (normalized.startsWith("/safe")) {
+                sink(source) // Safe
+                sink(normalized) // Safe
+            } else {
+                sink(source) // $ hasTaintFlow
+                sink(normalized) // $ hasTaintFlow
+            }
+        }
+        run {
+            val source = source() as String?
+            // normalize().toString() gets extracted as Object.toString, stopping taint here
+            val normalized: String = Paths.get(source).normalize().toString()
+            if (normalized.startsWith("/safe")) {
+                sink(source) // $ SPURIOUS: hasTaintFlow
+                sink(normalized) // Safe
+            } else {
+                sink(source) // $ hasTaintFlow
+                sink(normalized) // $ MISSING: hasTaintFlow
+            }
+        }
+        run {
+            val source = source() as String?
+            // normalize().toString() gets extracted as Object.toString, stopping taint here
+            val normalized: String = Paths.get(source).normalize().toString()
+            if (normalized.regionMatches(0, "/safe", 0, 5)) {
+                sink(source) // $ SPURIOUS: hasTaintFlow
+                sink(normalized) // Safe
+            } else {
+                sink(source) // $ hasTaintFlow
+                sink(normalized) // $ MISSING: hasTaintFlow
+            }
+        }
+        run {
+            val source = source() as String?
+            // normalize().toString() gets extracted as Object.toString, stopping taint here
+            val normalized: String = Paths.get(source).normalize().toString()
+            if (normalized.matches("/safe/.*".toRegex())) {
+                sink(source) // $ SPURIOUS: hasTaintFlow
+                sink(normalized) // Safe
+            } else {
+                sink(source) // $ hasTaintFlow
+                sink(normalized) // $ MISSING: hasTaintFlow
+            }
+        }
+        // validation method
+        run {
+            val source = source() as String?
+            allowListGuardValidation(source)
+            sink(source) // Safe
+        }
+        // PathInjectionSanitizer + partial string match is considered unsafe
+        run {
+            val source = source() as String?
+            // normalize().toString() gets extracted as Object.toString, stopping taint here
+            val normalized: String = Paths.get(source).normalize().toString()
+            if (normalized.contains("/safe")) {
+                sink(source) // $ hasTaintFlow
+                sink(normalized) // $ MISSING: hasTaintFlow
+            } else {
+                sink(source) // $ hasTaintFlow
+                sink(normalized) // $ MISSING: hasTaintFlow
+            }
+        }
+        run {
+            val source = source() as String?
+            // normalize().toString() gets extracted as Object.toString, stopping taint here
+            val normalized: String = Paths.get(source).normalize().toString()
+            if (normalized.regionMatches(1, "/safe", 0, 5)) {
+                sink(source) // $ hasTaintFlow
+                sink(normalized) // $ MISSING: hasTaintFlow
+            } else {
+                sink(source) // $ hasTaintFlow
+                sink(normalized) // $ MISSING: hasTaintFlow
+            }
+        }
+        run {
+            val source = source() as String?
+            // normalize().toString() gets extracted as Object.toString, stopping taint here
+            val normalized: String = Paths.get(source).normalize().toString()
+            if (normalized.matches(".*/safe/.*".toRegex())) {
+                sink(source) // $ hasTaintFlow
+                sink(normalized) // $ MISSING: hasTaintFlow
+            } else {
+                sink(source) // $ hasTaintFlow
+                sink(normalized) // $ MISSING: hasTaintFlow
+            }
+        }
+    }
+
+    @Throws(Exception::class)
+    private fun dotDotCheckGuardValidation(path: String?) {
+        if (!path!!.startsWith("/safe") || path.contains("..")) throw Exception()
+    }
+
+    @Throws(Exception::class)
+    fun dotDotCheckGuard() {
+        // dot dot check by itself is not enough
+        run {
+            val source = source() as String?
+            if (!source!!.contains("..")) {
+                sink(source) // $ hasTaintFlow
+            } else
+                sink(source) // $ hasTaintFlow
+        }
+        // allowListGuard + dotDotCheckGuard
+        run {
+            val source = source() as String?
+            if (source!!.startsWith("/safe") && !source.contains(".."))
+                sink(source) // Safe
+            else
+                sink(source) // $ hasTaintFlow
+        }
+        run {
+            val source = source() as String?
+            if (source!!.startsWith("/safe") && source.indexOf("..") == -1)
+                sink(source) // Safe
+            else
+                sink(source) // $ hasTaintFlow
+        }
+        run {
+            val source = source() as String?
+            if (!source!!.startsWith("/safe") || source.indexOf("..") != -1)
+                sink(source) // $ hasTaintFlow
+            else
+                sink(source) // Safe
+        }
+        run {
+            val source = source() as String?
+            if (source!!.startsWith("/safe") && source.lastIndexOf("..") == -1)
+                sink(source) // Safe
+            else
+                sink(source) // $ hasTaintFlow
+        }
+        // blockListGuard + dotDotCheckGuard
+        run {
+            val source = source() as String?
+            if (!source!!.startsWith("/data") && !source.contains(".."))
+                sink(source) // Safe
+            else
+                sink(source) // $ hasTaintFlow
+        }
+        run {
+            val source = source() as String?
+            if (!source!!.startsWith("/data") && source.indexOf("..") == -1)
+                sink(source) // Safe
+            else
+                sink(source) // $ hasTaintFlow
+        }
+        run {
+            val source = source() as String?
+            if (source!!.startsWith("/data") || source.indexOf("..") != -1)
+                sink(source) // $ hasTaintFlow
+            else
+                sink(source) // Safe
+        }
+        run {
+            val source = source() as String?
+            if (!source!!.startsWith("/data") && source.lastIndexOf("..") == -1)
+                sink(source) // Safe
+            else
+                sink(source) // $ hasTaintFlow
+        }
+        // validation method
+        run {
+            val source = source() as String?
+            dotDotCheckGuardValidation(source)
+            sink(source) // Safe
+        }
+    }
+
+    @Throws(Exception::class)
+    private fun blockListGuardValidation(path: String?) {
+        if (path!!.contains("..") || path.startsWith("/data")) throw Exception()
+    }
+
+    @Throws(Exception::class)
+    fun blockListGuard() {
+        // Prefix check by itself is not enough
+        run {
+            val source = source() as String?
+            if (!source!!.startsWith("/data")) {
+                sink(source) // $ hasTaintFlow
+            } else
+                sink(source) // $ hasTaintFlow
+        }
+        // PathTraversalGuard + blockListGuard
+        run {
+            val source = source() as String?
+            if (!source!!.contains("..") && !source.startsWith("/data"))
+                sink(source) // Safe
+            else
+                sink(source) // $ hasTaintFlow
+        }
+        run {
+            val source = source() as String?
+            if (source!!.indexOf("..") == -1 && !source.startsWith("/data"))
+                sink(source) // Safe
+            else
+                sink(source) // $ hasTaintFlow
+        }
+        run {
+            val source = source() as String?
+            if (source!!.lastIndexOf("..") == -1 && !source.startsWith("/data"))
+                sink(source) // Safe
+            else
+                sink(source) // $ hasTaintFlow
+        }
+        // PathTraversalSanitizer + blockListGuard
+        run {
+            val source: File? = source() as File?
+            val normalized: String = source!!.getCanonicalPath()
+            if (!normalized.startsWith("/data")) {
+                sink(source) // Safe
+                sink(normalized) // Safe
+            } else {
+                sink(source) // $ hasTaintFlow
+                sink(normalized) // $ hasTaintFlow
+            }
+        }
+        run {
+            val source: File? = source() as File?
+            val normalized: String = source!!.getCanonicalFile().toString()
+            if (!normalized.startsWith("/data")) {
+                sink(source) // Safe
+                sink(normalized) // Safe
+            } else {
+                sink(source) // $ hasTaintFlow
+                sink(normalized) // $ hasTaintFlow
+            }
+        }
+        run {
+            val source = source() as String?
+            val normalized: Path = Paths.get(source).normalize()
+            if (!normalized.startsWith("/data")) {
+                sink(source) // Safe
+                sink(normalized) // Safe
+            } else {
+                sink(source) // $ hasTaintFlow
+                sink(normalized) // $ hasTaintFlow
+            }
+        }
+        run {
+            val source = source() as String?
+            // normalize().toString() gets extracted as Object.toString, stopping taint here
+            val normalized: String = Paths.get(source).normalize().toString()
+            if (!normalized.startsWith("/data")) {
+                sink(source) // $ SPURIOUS: hasTaintFlow
+                sink(normalized) // Safe
+            } else {
+                sink(source) // $ hasTaintFlow
+                sink(normalized) // $ MISSING: hasTaintFlow
+            }
+        }
+        run {
+            val source = source() as String?
+           // normalize().toString() gets extracted as Object.toString, stopping taint here
+             val normalized: String = Paths.get(source).normalize().toString()
+            if (!normalized.regionMatches(0, "/data", 0, 5)) {
+                sink(source) // $ SPURIOUS: hasTaintFlow
+                sink(normalized) // Safe
+            } else {
+                sink(source) // $ hasTaintFlow
+                sink(normalized) // $ MISSING: hasTaintFlow
+            }
+        }
+        run {
+            val source = source() as String?
+            // normalize().toString() gets extracted as Object.toString, stopping taint here
+            val normalized: String = Paths.get(source).normalize().toString()
+            if (!normalized.matches("/data/.*".toRegex())) {
+                sink(source) // $ SPURIOUS: hasTaintFlow
+                sink(normalized) // Safe
+            } else {
+                sink(source) // $ hasTaintFlow
+                sink(normalized) // $ MISSING: hasTaintFlow
+            }
+        }
+        // validation method
+        run {
+            val source = source() as String?
+            blockListGuardValidation(source)
+            sink(source) // Safe
+        }
+        // PathInjectionSanitizer + partial string match with disallowed words
+        run {
+            val source = source() as String?
+            // normalize().toString() gets extracted as Object.toString, stopping taint here
+            val normalized: String = Paths.get(source).normalize().toString()
+            if (!normalized.contains("/")) {
+                sink(source) // $ SPURIOUS: hasTaintFlow
+                sink(normalized) // Safe
+            } else {
+                sink(source) // $ hasTaintFlow
+                sink(normalized) // $ MISSING: hasTaintFlow
+            }
+        }
+        run {
+            val source = source() as String?
+            // normalize().toString() gets extracted as Object.toString, stopping taint here
+            val normalized: String = Paths.get(source).normalize().toString()
+            if (!normalized.regionMatches(1, "/", 0, 5)) {
+                sink(source) // $ SPURIOUS: hasTaintFlow
+                sink(normalized) // Safe
+            } else {
+                sink(source) // $ hasTaintFlow
+                sink(normalized) // $ MISSING: hasTaintFlow
+            }
+        }
+        run {
+            val source = source() as String?
+            // normalize().toString() gets extracted as Object.toString, stopping taint here
+            val normalized: String = Paths.get(source).normalize().toString()
+            if (!normalized.matches("/".toRegex())) {
+                sink(source) // $ SPURIOUS: hasTaintFlow
+                sink(normalized) // Safe
+            } else {
+                sink(source) // $ hasTaintFlow
+                sink(normalized) // $ MISSING: hasTaintFlow
+            }
+        }
+        // PathInjectionSanitizer + partial string match with disallowed prefixes
+        run {
+            val source = source() as String?
+            // normalize().toString() gets extracted as Object.toString, stopping taint here
+            val normalized: String = Paths.get(source).normalize().toString()
+            if (!normalized.contains("/data")) {
+                sink(source) // $ SPURIOUS: hasTaintFlow
+                sink(normalized) // Safe
+            } else {
+                sink(source) // $ hasTaintFlow
+                sink(normalized) // $ MISSING: hasTaintFlow
+            }
+        }
+        run {
+            val source = source() as String?
+            // normalize().toString() gets extracted as Object.toString, stopping taint here
+            val normalized: String = Paths.get(source).normalize().toString()
+            if (!normalized.regionMatches(1, "/data", 0, 5)) {
+                sink(source) // $ SPURIOUS: hasTaintFlow
+                sink(normalized) // Safe
+            } else {
+                sink(source) // $ hasTaintFlow
+                sink(normalized) // $ MISSING: hasTaintFlow
+            }
+        }
+        run {
+            val source = source() as String?
+            // normalize().toString() gets extracted as Object.toString, stopping taint here
+            val normalized: String = Paths.get(source).normalize().toString()
+            if (!normalized.matches(".*/data/.*".toRegex())) {
+                sink(source) // $ SPURIOUS: hasTaintFlow
+                sink(normalized) // Safe
+            } else {
+                sink(source) // $ hasTaintFlow
+                sink(normalized) // $ MISSING: hasTaintFlow
+            }
+        }
+    }
+}
\ No newline at end of file
diff --git a/java/ql/test/library-tests/pathsanitizer/options b/java/ql/test/library-tests/pathsanitizer/options
index 1e6e9ea2bf1..02ea18b0cac 100644
--- a/java/ql/test/library-tests/pathsanitizer/options
+++ b/java/ql/test/library-tests/pathsanitizer/options
@@ -1 +1,2 @@
 //semmle-extractor-options: --javac-args -cp ${testdir}/../../stubs/google-android-9.0.0
+//codeql-extractor-kotlin-options: ${testdir}/../../stubs/google-android-9.0.0

From 995b7327fe0a400e1ced4e62719b287e3a322b99 Mon Sep 17 00:00:00 2001
From: Tony Torralba <atorralba@users.noreply.github.com>
Date: Mon, 5 Dec 2022 08:59:15 +0100
Subject: [PATCH 1004/1420] Add missing QLDoc

---
 java/ql/lib/semmle/code/java/frameworks/kotlin/Text.qll | 1 +
 1 file changed, 1 insertion(+)

diff --git a/java/ql/lib/semmle/code/java/frameworks/kotlin/Text.qll b/java/ql/lib/semmle/code/java/frameworks/kotlin/Text.qll
index 7f5c5b316c4..62eafa9565e 100644
--- a/java/ql/lib/semmle/code/java/frameworks/kotlin/Text.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/kotlin/Text.qll
@@ -14,6 +14,7 @@ class KtToRegex extends MethodAccess {
     this.getMethod().hasName("toRegex")
   }
 
+  /** Gets the constant string value being converted to a regex by this call. */
   string getExpressionString() {
     result = this.getArgument(0).(CompileTimeConstantExpr).getStringValue()
   }

From 8fb5c37ba826ed069919ce74a56c6406758ada5f Mon Sep 17 00:00:00 2001
From: Tony Torralba <atorralba@users.noreply.github.com>
Date: Mon, 5 Dec 2022 08:59:20 +0100
Subject: [PATCH 1005/1420] Add change note

---
 java/ql/lib/change-notes/2022-12-05-kotlin-path-sanitizer.md | 4 ++++
 1 file changed, 4 insertions(+)
 create mode 100644 java/ql/lib/change-notes/2022-12-05-kotlin-path-sanitizer.md

diff --git a/java/ql/lib/change-notes/2022-12-05-kotlin-path-sanitizer.md b/java/ql/lib/change-notes/2022-12-05-kotlin-path-sanitizer.md
new file mode 100644
index 00000000000..ac6d59046a0
--- /dev/null
+++ b/java/ql/lib/change-notes/2022-12-05-kotlin-path-sanitizer.md
@@ -0,0 +1,4 @@
+---
+category: minorAnalysis
+---
+* The library `PathSanitizer.qll` has been improved to detect more path validation patterns in Kotlin.

From fea755ecc8828da2bbf34601ae4f430fb75126eb Mon Sep 17 00:00:00 2001
From: Chris Smowton <smowton@github.com>
Date: Mon, 5 Dec 2022 10:02:02 +0000
Subject: [PATCH 1006/1420] Delete go.work

---
 go.work | 5 -----
 1 file changed, 5 deletions(-)
 delete mode 100644 go.work

diff --git a/go.work b/go.work
deleted file mode 100644
index 3dd8ff5b5e0..00000000000
--- a/go.work
+++ /dev/null
@@ -1,5 +0,0 @@
-go 1.18
-
-use (
-    ./go
-)

From 16d7dc0853fd75b13255285170472cb7b35fe312 Mon Sep 17 00:00:00 2001
From: Mauro Baluda <mbaluda@github.com>
Date: Mon, 5 Dec 2022 11:02:19 +0100
Subject: [PATCH 1007/1420] Restrict DF configuration

---
 java/ql/src/Security/CWE/CWE-614/InsecureCookie.ql | 13 +++++++++++--
 1 file changed, 11 insertions(+), 2 deletions(-)

diff --git a/java/ql/src/Security/CWE/CWE-614/InsecureCookie.ql b/java/ql/src/Security/CWE/CWE-614/InsecureCookie.ql
index f0950e93779..c6aad828896 100644
--- a/java/ql/src/Security/CWE/CWE-614/InsecureCookie.ql
+++ b/java/ql/src/Security/CWE/CWE-614/InsecureCookie.ql
@@ -29,9 +29,18 @@ predicate isSafeSecureCookieSetting(Expr e) {
 class SecureCookieConfiguration extends DataFlow::Configuration {
   SecureCookieConfiguration() { this = "SecureCookieConfiguration" }
 
-  override predicate isSource(DataFlow::Node source) { any() }
+  override predicate isSource(DataFlow::Node source) {
+    exists(Variable cookie, MethodAccess m |
+      source.asExpr() = cookie.getAnAccess() and
+      cookie.getAnAccess() = m.getQualifier() and
+      m.getMethod().getName() = "setSecure"
+    )
+  }
 
-  override predicate isSink(DataFlow::Node sink) { any() }
+  override predicate isSink(DataFlow::Node sink) {
+    sink.asExpr() =
+      any(MethodAccess add | add.getMethod() instanceof ResponseAddCookieMethod).getArgument(0)
+  }
 }
 
 from MethodAccess add, SecureCookieConfiguration df

From d8937687266dbc18d4a939f695e3650285f5668d Mon Sep 17 00:00:00 2001
From: Nick Rolfe <nickrolfe@github.com>
Date: Fri, 2 Dec 2022 11:24:12 +0000
Subject: [PATCH 1008/1420] Docs: rewrite "defining the results of a query"

The old guide was based on the code duplication library, which no longer
works, and used screenshots of LGTM, which is deprecated.
---
 .../images/ql-select-statement-basic.png      | Bin 13444 -> 149361 bytes
 .../images/ql-select-statement-class-name.png | Bin 0 -> 150727 bytes
 .../images/ql-select-statement-filename.png   | Bin 13475 -> 0 bytes
 .../images/ql-select-statement-link.png       | Bin 0 -> 151884 bytes
 .../images/ql-select-statement-similarity.png | Bin 17424 -> 0 bytes
 .../defining-the-results-of-a-query.rst       |  72 ++++++++----------
 6 files changed, 32 insertions(+), 40 deletions(-)
 create mode 100644 docs/codeql/images/ql-select-statement-class-name.png
 delete mode 100644 docs/codeql/images/ql-select-statement-filename.png
 create mode 100644 docs/codeql/images/ql-select-statement-link.png
 delete mode 100644 docs/codeql/images/ql-select-statement-similarity.png

diff --git a/docs/codeql/images/ql-select-statement-basic.png b/docs/codeql/images/ql-select-statement-basic.png
index 228542ddd6afb4fbdd5240ae0a9722ff2178b054..84e3705c0cb89d68af8e53b6e9f8465721077e34 100644
GIT binary patch
literal 149361
zcmd42bwHEf`#x@AfPf-`5~6erFkqB`h;#~)BSaWEx?Aaxh9QiQ?iw(<B}ex*P-z$=
zBn3pikNS%D>+|>Tj~@>9`0VUFC+>5f>%Ol0gsLjbkP_1npF4MsR8IDV+PQOAlFpsG
zkahI}a3|lB_x-tZ=SwXlB~|4lCGV>`*qU0vpy$r9$9Ttx%R*jK28$bqXWk4Jbh2~v
z$4W_MO3K{2eUmZ3JVW=2;b%0%19t-hMn*wmV!s!Z^7`X0t5`V^7rWcUfra;p$&{7l
z8z|k=5N2|(2=6+MzBiqS95y;W*dBPrd6;=+M|ni)x=e)YtvKmf7Ksad6pSXiM7Kk`
zjb(onkuMDKS~{I#ay)Zjp7~2&6ZiC5>fM?qt9JH&_?siuiAXH3&-p0SNzGZzefN54
z@so3AzE8FNO7asi1}o)bFAcFLX?LCl!5<bETac`$rD{$NkgV6?2#qDqOO;vf>W;`h
zM8Uk5&0u}H`kB$grAGR(6&A={(}0)rcbJomgXpB{vxPG$WqS@+pZsh_`o7hnB&nV6
zjlNwY@q&^iRjr+Av^Nu>JoivE*60)*<!Ufu>iTuSHlJIgYVpdnVUQNv?GkI+<iyuo
z&yq@Y;Fc^G*ZA~&W7v}34wIX^8Ok08ov!)6baP*J7uZm(IbXvvbkeZyUX%XGi}(w@
z@6ch>cdtte;WtDAq9DUDF(P?s7#VMOhO;j^-ur`F=a#g6em<CXs0Sv{4XQ0?s-$#|
z6S%&5j_5qaxr@NndEno<^EBs(eqWzECx4#ypKG=A?0=O33?SIz+@-(D=mPJ*exiY2
z;M;$_U-)?8?-Ey%K3@F$`a;&Pq7_8q%)r|<J6RpabLXg7e*K=8Q)Au+YS6KGrR}7x
zq$q4`Yt3V1V*3Wl<7RF5>s#lZx(Nf9)=(#-`)<}S8%JR`QO4gTgn{c{w|N=w|1RQW
zCCaF+q<UY{)&Y7S%=3`vA)^@a{rmTyI+&OWtG$r^>+8V(L>bMUoa}^od0kyyd0e0H
z*gBZ;J`xfV;(hp-_wi$Hpai$0yN#2P8@G)k)1ONIuIB~R(b&Pl&dI{o=KimGjo#Qg
zJBczf{(8_qKY!ZkWMTU6lWZLS>K4#J-d~^aKH_=E`%m4#SD*g6E3D#R0R^7?tA4RZ
zPk)#E&%M8%^OX13!~dr-e|q}+F3?pm;-|d-44WA7U4ywR=PpRTm3txa$_-0sy5{w2
zV)o3Csz$c~V|g;}TLPKL!)h{=OlTHOYC>ul#&e!Nl~1_x;$~P6nbEDQR&Q@y6}c85
zdgK0$=T|YZZ<$TrF+aPHW{$H)4k$i;(rdDC7WnP%P>SbPl86<RSo&0+w~@ojjAP4T
zib&noNz<3zlA;@zB>wXn_n(-U*ynz6-tYd^|9#<mFQ9||d&|$Gz7_f4Kc)OWrty@+
z{(I|wejW*k_J8XFuJLRC|EaFXwVW`DbZ}5pBepueHpuYb5gCs7n1)6wp!+&d($Qu^
zsk|ss>jk~%{~5GP`x^T%;HmNPnU{^w&#hBl{&xgEHs_^vBCYGDZB$`5tpCqvV#R6g
z$OLxq>98gZM3)|CAVK@$|BP0?ZIMhlj3bH+NAmz(M#L>kdw%f$%mtnn?*reEx=flv
z`hVt=ZDIg~$Qm+`7}7%+L6~gvpU^a0d)mq74``KAx=-s`T4J|vri<>amaP!+Oj>ds
zONS7X@Zuz^tWT8nh(4y}_Vsa|++eAxs=CiAs&p+>?%-B@iWkNCwXQ9Wzq*2d(#K_S
zYND}3pT$E?GHR-ix_|!$vxX}YX80C{kVp4<3J&s&!L9h9X$b6`uFvX-A&x#hdR30i
z%4&UjQrbs2*Y^4`_uS0`e~;4=->;nK_W70;(~R@dG77FeTC<?x_b5KS#I4tO{k*-L
z!H={*wuJW_6>z20(Ag-pFh4AB8%+j#T4C$KFKW9BD=XJ4zDc>huZQh68HZzq>u*ry
zaZY(ZX&>O`c~M-nZuvuJtX;pl1Frd0DC7H_z0{eus+e)OjcaB`&cr~^Nv2X_&<)T1
z)g4&yWpy?j4aOW#xMtRf(?)GQJD8%jl1Z5z3yb)%ytXopaIZNf?D8H(-h>h3`Zh`n
zb92e{mRpe-_jt+)X}skyl}qqHQ^GuqU6mFYU>1K`nqN8Q&8VR})`gO8&a7ta5mnFI
z8JOu6hGX8BUp2AVNJiELMNH>wByfr&G|b(tbAw0(Pwqc>j9JBx?@A%?8X8{?y6A$N
zww`9VHdG%(mL}#VIs`wHnYuOTSyKTMe``u+R%9qQN{+t`@-!TmuyMWYpFyriXhnL)
zD6)<vy{~kkMc9V$I+PP^UP7JuMW#Q|`a?Y#|6aQ91mQ|zF;Itw>eke1Ju8fsYF%b9
z-piiL6*)@We>FUo2d<Nz_NrZqaQdtyd8kxu{Nsxh9dey)jdYr=aPS1zvf{3OR(P#<
z;5|#bhBl2W_?%Q<hv)Vxg8Q=_NK7^?-Bi(0uwg~9&Y%rBVEP0%WO2Uoq-&oH)Ihz~
zp7Y#Ac4aZG;btTar~y*ty<!6<%ty2#MQ>_@f3MBxXKHX!lbFe-T-_3VwMHWNY}~&5
z+n}W&efCF;Y{Y1|b`yw0vjcg^N<03{4AC9%sz8XO*<3xRpId)nN(;T&V-45OukHi8
zEg)en?+7-SRQaakW89F~S!`@ht8VWCo8kcnQ+{!=ZnNb+usWpZ-)}x48GZ*nWPAtp
zhn^_C#`xU&pT;QhOx3Bc2y+gwTN8sC*c86ZRBYNU&^q!Jk&RE$3g5U<K=YnnlFB0C
zVTC%}JGYgQ`}F3$qC9td3F91&4l(6&_ue$&vzh`mca{<rWp>T5AWu+3mU?b|PsAYd
zG@YFu#h+=WN%L|v<Ym^z;Zb@NJ-PH({r@(nIq#2mz7z|^kho6NkHo{)49a2ohnz<#
zYo9Bm{Nl~>07p>8z*8_RAoBFd>MDUaavp89N`pJa<ksa_O}smfX-hb7RIjj9g2XvF
z_Zo6NHN&iD(ud`gZ@J8T1mWU9Yoo}W@{*h2hJb90JkuT~O<brA>CIVAFkmi+mBU)D
zfpE6%hm?QK64DD_IwCdcLT#JNx1(_ZSQMZ00b{MZSv~r#k*jSxifD;b$3?9)^pr3b
zCl4yw=@etNcFM;-dZM>d1I96j^DHOs2sV5kZo60QojP5NrXtq?*XR-;yL?=SQ(sm=
z2&EVop^w*NUHF@@ai_<IuQ6h`wOx2Aw87e_FPGpO0&||kznz8b{Tw~CzeVXRwIW9E
zBAj&puEjdGHs;5Vs?khNu2Vc<#`5rirh<?0JBpST8}pW~<9OWZ*m5W+uBsVaGw_qL
z*=xAxt9({LoX^rV^d`Pu*u427BX5y~G4;Df2^|z$PLZe)Ce3T|Y=;Ov$W?p8`Ju<g
zaRgd32zD(hBs7$JOgPGa#C$y7%G!l^9E-z^J$ZciV$-nF<>ChP?49Jw;0ixK!izEo
zg+iswI6kVdr>zO#h1_d28iVKi2R|M(eJSvX!O0&=dp(Gd;^=uOHDW(9vJp9xp5leX
zbV_FRy3DCPNDbUalsUU~56)7S9_vn7G9L-`?30q_4Q0!0ikDkDv(q0n=lk!alSV{j
zYV-4By06z|b;t$s(gYtwaB*_hF{H`LngsKu+Mw)>9V=_?u|b35gQ=eEn(JU#m>6AL
zYHC*QP6Gyp+6wf0edaEu!M|_h_#G_lZv?5y%g$EQO1;OF7a2LYdqgxocpQQ7_tP4Y
z%Z}+E<kivvTSrHKcoBS;&S8V^B|4GUFyq>M*4F#N<m9TcwK*J0{f7C&q7+xHvZ*hL
zWY>?ollHFDj21~wjXV^g^j`EbXr}$1ChW52@PPDAvJT2!-Z3J`$~ep5heWEf**b+(
z6lsIBdKVdZ^IU>9IKrsD-i8?G!7WHDpw6(W=UUfX8ceG`bWde1fH5IHo=(_l5v$d@
z^O~5fvu`&>RogA;Li6d_1)GM4g>`gweMpPJ(azoNm^)#Yla%cV-`s@lOAn5)KO#bN
zk`(B3%dX?C>)=6e^3r)1{@{Q&92JBqGplidQP}1yPLYp6&>B~#+ZsAixdLS&#V3}Y
z)~gvoO}#-RG)24OG9nFOMa5u8{$>R$?EFyj<O_lRi2PZ~F}J7a>=Je7q30XZxa>%b
zuYsAlc!Dii_?Wu?gDdM<Dgp&-8O8ZawUw;++x$|&bV;zM>aSn+l{(it!j6{R3dCLR
zf3R;uavQXmyK?i_I{12f$6-CYbiEsz+LAA?2<TLm_0^-Y^~UPg-;qWZeu??0!u7Dm
zncXF=-R29?zTs`PBFngYxzxcCH1;5o`-*11>JlvIQYTp3T5KU-RqZ9avnn~JU__<u
zz`}}HH}a6#dn}R-<msB(K@3Mk88jf8M|8lD*PkMy8uX19*Kh9n7GOkM`a@iG4tlG`
zY{`70AS$EF86834xAYCYPpwb7aITx0*y4-|`^_JLE$+ucn5M?<og%=zo!xB{Cb8K1
zVQ1Q$a1*TJ><8-F+R{>kwFSHmYQmC~?3xBPW`jU^TPVHP+S(e?QS*{6UbxX*E?T`6
zzjB|N${_8LW8~<&EB(m|v^_rCV~-Z5xu<MrK+_7(-%vDs%O5ee7S|G19CYeI4!F3u
z<mTp*(*6upYt;%arG9^7l-f`kWh?G!@U@y(*_z1J9JZ~JE~j;C;^5#waztj@qEndN
zEg@pC$PD8|74IQ+Z*Ma?B}LDcH1rr-|LqnlS1Jvz@yVU*@(e9rN5l=@8cL+3Q>h|{
z>;t?s8=MT(Ns76%F((#0T%AUJRc{?vb{FSNrE-#Eq<J_vjKtZYm}Cd;6UoW4#slf`
zHgiK2QH0CJXY}SFexFUUL&mGCS~AAflX<w)67U^<Z+*o!(Ikn)`p0Q%qjOA;oG9f*
zJPuDYIMc(^Wo5J1K8}+qG15f))V`PeZLS3|A1{~QUy4%?xD;Gqf)SFU!f@ga7%y98
z(qa>YEZhhJC*Clxn2lg+zDa@Qo*JPyP$`4Z)sH-Ip;z(+jgc+u*EfFcqu}rIZ<n=A
zEBi!@v4j`!wG#Io?*=QUk=R*hc}y*sl;k)lQ!TO7K&3FDw3DsmW=6KXRUsigvx^9V
zr@@IEylk6%yeus4uCA07kl{#hUi#^gr_WjHAV@@ctBjmBQ5#H8LzHxy0JvuEz&?J)
zgptMVXXZ|_IlkEVQf48jV*~}-$4A$~KA~gmLX8fX)Y(OF<k|*-Z~?t(nmiNU_uefA
zx;0bR&5?zvc1>5a0=-aug9(-Ewd`S{4>7RaekusK#v%;8^{rd9E7#CGwQh3fth7nk
z&-mMOIMm-H7F*Ds&)jj076`Ugcl_GmvXvleVDscSlwgpIPy%&lUo6fqJV=4opsJ9}
zx(}aUB6kpDIAlR1hgPTsH`H2F+~;RZgbi342M;(!L}Xad2K4pHO7Z4T_~pjljKI`{
zwgA80i?UloO4fbo>nj96P-n@=wq4)6#vtzwGU37K^%*X$u*P;|rQ@Jb#L)QN%9Pw~
z&&T_)H)Tgo=ktofVBIsOnA^7#IC<YA&ua}K*J){{E!ejg3!YqJnt4;fE^7QW$OiCV
z=>}bY0=1dfn5`?80CszGHe>;@d<EX=AE$s<6dGYB4~oKFros|qD;Fy9myhD{N{=Gw
z&<4o7K@0ymdykxpy}Z^-+AcqI;wW07H;oWa9I&I<&RBDnvF1Sowd^whSG-<m6u{ia
zg&fbAB!EOX2Uhv6q6YJBf2bQmGKKxzs8Rs+F&ly^J-ny&nhef)nAov6e+Q7s7<fW9
zZr&Q?x$Wn$78}Z`bMT3j?3M&6#7yR@bHBKCEITCuJX(v<J|L6`Tio>qX1YP$A!Cx0
z{+s|K`XIYCWCbq;m2T`rQgdHZ3$*}7YsMH;P+-C7YQ&_zq+7xkgK6NEKi%vJ&Wx(<
zMrM(B*H$sHTvdDdl0$YKF8tt8fv5ir1|!64S8+VcZFrl}I$+>>b<UZ3<>&wvNH5a~
z35>FImVHk!L%~+dXmv=SIe-u~<+~OefgmZTl_oj)l0^oc`a)1T2)#`FCPeAcw@YS2
zY1H{XhU30Ub(0)ugDO7RB{y&qWjf5v6k0^bd9Vj5n!r25MeX~X62|nlll`=E?{y<B
zW|~ias$!xVx&b3vYM|VHE3|8}(yR_I3HX|zm=V{)P^p_L_H6!pLln<ndyh>ep`?2s
zl>ADalCfy`LD`eC><JEZu4#I@W?_&lwk{iXjVux>!%C|GuEjrVqJeXBvlK5r2(P-3
zQewM#WAUbfH>eWBfrgiMt}ww%;^RsKD(f2cdA_ye_Z9xEyPE21c%621y^>zJ`xEKJ
zs5*+<fEQt377HDF>s0+lrAOjQq@nJ_axl285?j<=sc2+>On=Qo*e(fDIX{`LcO(Km
z)CSl1E$#FOV}kDr(4jZ4u^&krV~Wj&NM>%;iQ`{8*~zXB8+GKAwW3*vLv>sf6i8fy
z&)U&tHe_F19&b1q%`H8-YnE81JMb+eCOy(#1msRco!!mv^5au^2@aUfVIMY?)CaTA
zjtd*q;rco{EGLgoGIJzeULm)Rn7;YYEG_<v4v6XzMfI)x1vUy^eV+ba(Hh5<dz<_2
zVQg9#u|pEM5{$c>Kafj%yZWAo+}gD-h(D;Qk7Xy`cDWwMbjT3>{81_U`4imtfKU6h
z0&#Wc)E2G9YwEtvvy@_Z*;JP5W%9mztSw67P+KX2(E7bq%O%TMPL_a38c{gwg@_tb
z1WNW$s-&W`TBkSiZrIA^dS$E!d(Uw^5@sW(NL!M7D?T+<Qj&{>#ksHQoQ=Pd5oDH@
zf=@3;KXccLOSZ|!v9_wG7l=fJpcujja$*B1rI9;X9IO!+^^qnbrhGIx0WtH>@|IQi
zZiaPbvPg{1(I8E^ak7%eS>A&7aWV83CYupga$XsRbw#c-1&BTN@#{Z1FHdsY4T`r1
zL9q9|GlpHyJE!sFl}28w=aajrOf4;}Ml86Yg^EKC>-8gXI9v|7kNN9Mz;>E(9{{GH
zjZlIW)u_2*>Z5QEg<wNfy9cb`&5kG;J6c)vh?~#d;NRiMP5@LuNVEB~`}3`;z()@>
zU>WDgY<rOe3&{6C#w~gXA4s-=wf@~ft%)l=37<7tWFd7WY!C>{1MXRdD1w2=@}WtL
z;`1ul@sn<(P77a?Q)lzBs9ey1%s$dhD>TY5i-(J=HUe;HNE4OW$V;d79T9qdg%MZL
znq{UssH*ZVwj$2%k^&E_wA|W0E0D;tVx^OzKXttNiYpt<YPPJgh<S5|=vDfVvEA>a
zeMJuWa!3}<t#Bjt*<n`F+GC1BOKlf3Giuz=emjk#t?U%n`;ByB2U3VMG%4KLVk2{|
zZ;%K)dlF=dxkrUQAST`V{Aqjh4aWa7{Tn`-y2^Xb4|Pee-l!y;ULmvB)*+t7)6xiX
zX1ub04l0`Hli;z`#J;N2M86ydKv6><Qme$J$1N4GAigKB@`{%3U6Wm(bC>{|8|LKv
zFs_e`Br6@gAXVMqr+B3^B8=Zkz|Osxo10rtY@dX;#S)CjQL1<qF4?uQu>m7>JuVr|
zbfK%do#?6}C%1IWkRIJLaU;*hjxF+eVJtL#h&Niya4skZX0TGX>#nE1dy(2vVbR&i
zsq0f001D^|4O;9g_jD+=sFyG+h7M&Z$0w4(6(^Z%OtaLT?~KFM-f*FjYtL!}>}hP#
zT7la)qq#Z;h~{)9D0;WcwLubXMYWUJQO{tR3Um!gf*>`x(g<8kC`)~aX=h+gEY$-E
zLhw9Jb|?wn->X}B<kV=9cl7uhUt!|ql0|S_n%E<>m^W+c?Ay}YqpnKqG$ho#3z09e
zW~E^_^%=8qc4a5SwL8a9y5G@V&n>w3hRT-#e)-S}wFv>|@`qgb>=6$1vgP;B{PpZd
zDRLL0N*##!?%mTe;mTW&hXQu=D*1<JMSmYv!+r55)h~22CE!r>LHXz5Z{LX1KxiIb
zcfHsdddDE%3jML+K`1dfL^lKQcy}qaFb4t97K*RKMf@YAqm|L>CUvf`nEOYGfi09S
z627&}^Ouc-d4nQy>y>Dv*G$vOVcwM;jnk?5g~D9jr{vlENA&|XMi@iuvfEEJe&H1O
zEClYm$B6b>suqZ+kP?7hbL{*2354)uGPovVS$&%<hnbAto{5#t#tndUO2q5!)u<{5
z-UP!swM7cFX;B-QhiiyhuNK*q!=(U9T3^2n={IUfm<T;RJuF3tabf7bW3jxdZ0dqP
zvLI0=ir%c|Xdd1B<%jnzl!lUt-W!Y)_X6iT_7btF$;qxcm_;ar1Fgw<QQz)c>{z^s
z&5~$X+UU#0#YF%jfS&m}ZhOj?(2LEh7JZ7Ce-aVlQTi}s6t2fY$AOMR5>&e1s~37b
zpA!A%zM>iHb#RnO=$uS7SSKjFci4%Ba*-;R9t-KKc?s`lgAk<~X=TI^HMRDemTkzI
znX#*Db0IolE&A}%DtRsC0|}Cd^FK{<QOZlJ(1oGug#@(VA6h{n7I2!UlHcYd)-!3f
z8>cNd>hbTP-KKm+1$h$5v@f}MR31PvWtYs8`*#k<_m$}B2F2LtJOBf{;w;6LzC1I6
z+3)2Hj>pT<7Uei4C`quS^TG{3j9>?;o1@{xF-XFPC-<5%*-SB{(pTJQZsdNr+JD=4
zZuBTi<*o+&u8~5>aNDu@w3CaAJsWiU0`<pq8o0jZ!drB~uB9%jO4!68ScuBy@Ry6w
zfDh;!u-eXt@Aw0>QBf?l4r=s-z+8#x&(x;k$Fi7WVAk)n41FQPMU8$WYe_m_$KD{$
z&ZcVydLR#ne2yt3ZLlqF@FxHu275)#wydGf)vsk>q~|Rze4h-Vw|ux)&GivA(=4-z
z@&DpC1599KFt9=1+~(y`GVmaP?fFGvP!n`DnVDHvzmT6nff+{cT5<%WU5e?`qbY|0
zEa_7PXA?{V(;<njv4GFql2+Xp0L;{?U7H`Bn6WyK1VNN?Ueg*@l3%k}y2Nj3VNp@@
z%*KYQ>GV@1gN3XRT<KkAS3>eUI8uzR!}{5V2xW1U_=8n#Gcz_VaI&XHC##A!YOngb
zCLcnZm@rn*T|ofwOrxV@wGR`H08kNr5f)!7$l<Gutan<02}*Q5iN3{~Q;Vy3Na8w+
zZn1kgP<WZS>GSI^OowXWT7M&+($h5-Ba9Y((X}Xj^_=%^bj05;Zx$!ab90~pE*J=z
zQAbrK1<!)T$I<jX4whmq74c9mdo#pi9>Ms7dlj)m-f$$$KH;{1L7YBi%+G<G!(~dH
zSCbDO+}03!-OS?o{XzmA`g8i5y=_9c4l1V_?UUOhPks&dW}$UI1#9G6M0trvKiRn2
zfDX(|13%E)$zw~1U&oGLQ6fc)84`wr<J?W1`^Swoi>I}=*1@8Q3Lu1V2UTRA`fI*#
z{=^_!5F`OWtA_3yr2B%V0IHM|0Cor|G~Cl*>Ul)%o-n^8J8b<xO2H4dEH9a_b238O
z%oG8RaF@X@4MJ9YNOpi|8eilt8>6G2+P^<FJpQS9!Ip~&O}0gC;8QIZA~R75<GKB+
zRnGd&`6{P7b|A>MqAU%u&6M6!bnW*`_TBxamFn;TO>_7C{hFLW)_N(z#k{&*>K)%^
z!TGg<C#D50@g-#X-KTK0qHD5iii_~<T48xwIiZkd#BYbdFC+ZCQDndN3o$ZJpMusd
zXa9C>QTiz{-K|?(f^|qM@xoW8nqVBI*2!mcJ_pIch#yX6dVd8VdJO~d#+WN($=WYi
z8tCXaj#4DSrSw+|Ro1D{SRaiP>46G@y;V^Ps@G2z$sIGp6A2XuH}_bqh4L$!3Ja|x
zJHGKu&qXs8S5eLh)CgTK@$pa#{aSMv$!)o{y%#9U4?KMwU|#)x?1j=6ro!*)c=tT$
z{({{sGBW;BT%21{RalZWR{aogXKcIuFb0RP@xcpJ$3veBcb$P1%K~o_8OgYyxW|zc
z{OC32HKuTp8_r$g(H2@__yDoXWs3QBEp!I5vUkgVu)tGzt~M*qB2Uy}AROd*<zh=V
zs3D^w#y^%86%aa7@(P$J<Wd{R$)&Hbb`L*hHVPG3kpJQ^ku&zB@{{MwAtWYj?pB_n
zt4Cun8U4+#QgEnxf9KWrS^9cB;#w@ZI-Tdf1FrfFd_aTP2XMSZrMyck&J_}fh4;`c
zY?Iau4SK!Kmb7%I7eBnOd@?yXxxDB80SAKU&ibhXLEm}rgU#`UU+^Vw#SBjJeMjTL
zJ@6_w;FB1#CuFDnUZS}CziZGIG&=kR)*R%JARKnHwPlhX?yLV^stBO0q2J(aAcPhE
z?Gv~+Bl?IzS!90y!u_5K0>I)b(=Nsq2&HsW4cxh_w^mgxDtGz(iRs1C7ccbzR|m$`
zgwlQ&_kY4GyqJeBRqpMw#KLL5kkXRp1VMqQa27#CXaqtgUhJM8UdP2){R%G5mwnv%
zJo++Plf||IhT-fgo_>t9DJST5J6VW)hm_l0OWo{}ZmPL}wAvC&RI}-H@Q2pa)Qq)J
zQ75K|q$j!viypXnE&jX+&_O~2ek-zJ1BS|JG~R;J&~I;Ah?0t~I2<e1t5@O}#3-`H
zAJ@E2P2Q=NFP3jbVmL_wT4lLvcU{276tY~%U8${E(6}Sut1kq9{5APaTb0@)D&><*
zvM?R+VL*pipyZTwzaV01?vg#HWqM>q`L=_yvW>jFrJ^EeV0a(Vff*EpVnze`geoSS
zYoFf*w6+2c=wN8h5OQVQ8m^Qj)%Zy3F~S)0In@J%hHEz3tLU`?oUkZtSOc!)TfoN$
zw&a5XVa{N-8J&2{9e_@@`b1`vV+f#{wBzX?bKOkr@=n%ktE;MGkfFb6NFF&jG>&Sk
z6gn1{a|BLsww9;Ekj|SvbcRn>rSjT{CfJI>F^z1!<s7;8?k1@UAl%IS(>6GliT%t?
zUq=w6zW!tJbOO1MW>0&A#4cKW5b?>NqRgQD12Z~&f;mGZffj@t#Y#2Rf2=UoEB}<v
zFO|v{)Vb!LMOV)a#pnsqSR}=$b-x+rjEkJ51>ch=MK52bNY!!f-z)sc81ZMK55DhD
zkdXvT_Dng~W$2(*n6cp?5e|+VHeYA=aHt6M62K*Uwj<>Lng;n{^z-uQ#{_wW?Sd)%
zurpr$eyY4ES}fhLT*!+Svab1B2VMefl2Ty7v9esEer1tV9%;^>*B)!d%xH{hQ+!n6
zp~p>H^Y>`5plxhz53_d{pLREz!l6KD&c114GzUG8zPB?cgEvel59JC0P(wD9OY%~%
zq)1LiQI&ZbEmF4xAc(F62RH=gB@p7F;o%N?&R&;WD+qh<6@%MFmI{BiXYH~ZydANI
zH`#rA{H;sxk!vK>(-mI<!dWD7BnZc)%}KY4o~3b4Sps3?2SKRtNw)m!wYN3epc%E+
zQ6gD#DTYT$FMORmmL8M+R&KKm<Ut6@2{k*E$&kRO?Kyk0YQa}XLRW6&s(M#1!cx1B
zqx=K(3xB;VOBfV4lkob+*Y-?e4F$;xmbWs&UU6QtlOs9HwU?HodC<u2va*98gd!76
z$z<uGV=kcP@hb6Zj9GJ_St~vm=$Zy_PcX86NF)EfCavi6qWV~b5d*1&JjVI`W}7ib
zAP{h(SJgq$f*KGysMCel7_j>wQm(g`EtN4y;7Uu4@yg~TT=Vck`*U{7zK(6ctD06O
zDZrhgpoUG&_wO`ZPo^N%X}09oB1{ZPm=0Cb8dM9v5=E=4Q%<ucfFNMcSr*4Yn#LX^
zrj<vRB6~TXgsuZ1(8~HsC^+_eRJsA%U!9BRn6ku#G0YAkqwa}p-eB;T7<gGe7wgSD
zsSm<6s1H$t5Jg9&kH4mQsf?tv&V=)BRuGD&(sS(Ba7cg!R{j|nE>C~Z_gAzan-i}M
zmQfZO#!QZMvNDy0+Nice<N+I;`m_x497N_!<V*|;*yF95Bs4Cx4R?NN9cWWr3P=ue
z0o13&JD<5h4OO`tNd+uC&JZ{>ah*;TW|1JN%L93BQvH}>zpwn8s--q+Wbs*aO#xGn
zUPz{jz)`)@5a9G&om?tb4gqCaFV!O$vPPQ(tz^eEQ83&?!caY-p6oNWczqCJd<G`$
zwAup@BAqqIfKxK9s8vr2=T>`wQ%PKmhbG3y%kGBEnqsDSZqd`TjVVW^Kg4hl-(-Gz
zEZk#5_jvv5jhkp?AmT#-;*x)|!BGS>FZJLy+VtW&r3cnYtmPRgnsv>o9zcPq?W!uo
zbZo3FMg3v>wCKnP@iy?p@O1w2v*`&5Pf9efee4pU#eCW`a+R98Yc+p}LSZ(`REGNj
zP+S>vIQ)_jeXrljj6vN$yz*Np+mbM7Lwk0c)a$*_7@^e*AsoLAkB7RtxKs$uetv_&
zS5V_vW#)w7C04JhUB;uOcI?I+;YxXLXJgKE4l4RhwJ;SF=w^Jam`P8Y?WTGk9m)Gw
z6X;jz+w;E%7OaJltiO|6JU=MhUkl(Y!<x0a@p8hpcGGeFfq*a&!|7F1>$s4g;qlHO
zT&Y8ei{W@1fM__HVni1^qWVn}+3-P1kZHA%dqG<LNQka(cH_cnM#u7?q3q3&&<F)3
zC3LT-)~i>=V-rE8xK#@9W15JH?geU)9wX%KM3;oT0{<+932OL!b&5S0&0<x3Tb_G;
z|1zeOO0RLTN^5iCP7)wI6rJX&cYs%=-~*R62QuTCX^c66^&_07W%n+3H_y0>V?;QC
zV=kpu?d!ptF$I6k&Bz%Q|D(O6JwQ66QPR=ZKLyC1qhP3+*-E*RQ0imwOQwUUMt~Yz
zyDXZ~6|(Zn=tV@jGd>?Ca7o<*v;R!Xv=v>8YX>M~Ac71Bw7L|p*vsdXgp<wnzTL``
za>in@qsn=~#X4MW?02ZszXtyuPCdH-AD9p{xOb!!+xGEj=^#DoS^>pZ07@IU*2ZK-
zxJK|CyGeD<&sK|2>^(9|R^J_135Ni}6&@knXkh$lW?uEsSS2>UtEcm^2EX)lAFc6}
z*Dcc0uB)e<C9Q<m{Q)xaYd`vtL$_;WM;?;KVj#|Q_Q!xLTXbX<ZjsWM)b$n-VFp%Y
z19EA1OnyV0Ty*?CVtO;nXdwfb*P_UzWkMVAr?z8Y{fSq}Sw40hCEP<*z1hi42E;Ul
z5mg|cz*Vs4ypixbOqi$%K6cj0=R^#Ba6{VjyFGbjdmD119Ht4y?v&gV$>s>QdG$0z
z*iH7CUn3d`=&xpn{HwDM{M5z);?9Ydc5Odswd2uf;um1HN4X_TtqN;}@#B(mlayXX
z6TMQHrfP<@Mz?7*UL*lv{ca~(xDackB4L{J^r<VmB=9m_?m#S{x0ZIj+h{ELT=OyD
zLil~}J|utgV^qQTI3Is^JEJjXf~Fz-*A{W)2es;}<{2?iY0e7^SEzNiiHlVe77>Bs
zIBMN`S>OYOIXQvS%B{t9qiR2Wn*Um3_7vr?%|CFrR`c%1{Jy^STtFB<|9M^;td;Uf
zQ?-2*n-df-q<>OT(d#Z39S$W+Rq3HBIdub#xy#KD4)TB<-P_1Is~M)~ZT7ZJj*_5J
z+B$90#^Z(ZIuw?-Am&n`0A)96Gx^Fl)ptPbx?r?ryw7k$N0%h988|XoVr;H@SWSH;
zTAGhHF|4w%Zt0tdw!e0_$OvPTeSp@5hT4@C0f{oSw|@!ZFf|u)UbuI4Svd>=h~9OD
z&75dZ`8>QG&~!h=Z3AHHg!srd%}4pV44j+%fR5H)K_o0OYfnEK;DJoYQ?Pq|ua`MD
z22)$2PlupfspHM60BZIdOuHxn%mENFH4w)O@hwxJQD}2MWTVCakpw4I2>H=A(>J^e
zz`@Nkz=7067yhNjI?N{@6N9gB*1)r!$R?3}uQsF->#f7j{=uZgK}$B>d7<-HZtHzx
zJfsrg=HZ#MG-~)Z-o5+xBGG>XpI!YhPlK?JU>W#ac#AEVSo<Ky;fnTCf#-Vy32hb6
z$^nW#NEg|yFv#oN>OzOse1j~mU4-H(P9Sg!GJS%Dv!Hk-j7p*ztZwWXo52i*YTu|C
zd61x|4=epxStn)6`<Wg<Of2Z-FwYmPw4DQ*0#)`$JwGj;e6CQ!2ykDzfIes@K&5Bc
z_vX0av%4+z$3U-1kq;Pr7JHR^0Lom80=p)o8C;5>dgzINucMwzWCA#k7K%z3yjzI$
zC&1ph6Vbl3#atX;C;dtOD}?l`zA+o8tc7kL?o~G%Chv|+&-b}08woW_8BoK<mINt+
z!JbZX`;6#iJ6u}N>HH*~rMhL-7^9Wb?^<95l}@HRDig$|3a{08U}nZW0s0_y$8a-A
z9^jvxXd|KFIDpprvxl$(+Uhlu84H*oY3(U7h<?{^s{qPH&x%x&Mk&oac?u{5p+y?8
z(I3XS6Yc+Gl_5TXP70Ye=^8)IjN+q%8kr<`yC8IEAT3EP{d}_5AV7Zow37?06wwK$
zd@URuseHwuuY%y&O(mq{tzX{pKm*P-(t0{+j^A4}If{cia*>9`^$B@_USl{`lxF;+
zokzY<-nm<&nU?9{I_<`u05EQ3dss!b!1G!!geflyu}@hWR@HGE3_Vz=S*}y<xB<eQ
z>@f2q#As3c?WT#^sNkcoKeftUV}N9eBF*5-!Cuz>5>8(RsTk~RzeykPdpXF<7rtKD
zbw46>0qGnB+fER~+rzdC18T!Y0puJIqF@%(RqZ5(DX)wWpmaa(E}~FixCl8w=Y3eR
z;Des8T*f{Xx2uS^9_fTG<{4}MghH}Z09JUORl7LW7&B8q`Sp38+asZ)?4~myY+3eS
z6NL|mhPnf^TXG<ss_x!fV~kVw!Gj7Tg%2M&XaWdA2};sbr~Aea^UW}@4L9*}m`z{E
z$s~5PkLB~IT#OB>qe3ZFnazAG{5PzU0f{)Ao!_^8^+A#KASC;V?6zpNxka=*TxlVW
zE4!nDFum~YAnExTmD7iY!D)ei09KC%pi*G8Kp^E~OHXdJAGFe(2y_DI#PaMI3}%1w
zX#~KBc-23v`k=nI#_F<QZ{-F|9jsKo_Emy2nR^*|)Pj}E3Z>8sTPziu0IR*3(l{4F
zi?FbsdJN3t^s9bk;%13@FH%I9zA!L;vZ_LbI$k;5H8>(ztruChE2S({=4Si(HQ{wf
zCSRr3h-nuQiNJDdq*_jI=_jNs^J>TZ_;JEH(vydwr?(^EHg&Sc2&mych`*tRFe156
z3?GQmYqR>P*PaW@(aoEWg%E{XjciWOSYl%@N&>++#oU*trzvXIn?MY(hBvw3C#O#_
zZuX0uC3Nv|H?Z^&=H0;0r$!!-$AYLx8a9()X{=iAPw`(L=*+N|au<!QeF}(gf>(4T
z5UHsp#0!ou(u058^10&%VCIBZsXu{`U%q^2ID=`leVz`zoL_N2IG$^;vZGUri#?mr
z9ZW`B$`>RMXuWhyumZ#`{eg{_9Bt{xPq|-%8<qfx*raCBp#}iTJgaE{-{_i`7NzY1
z=s<n^6e1!b0M$NfRsGd7jHz8-2hWGjUcY1qLX<@F_y|^bO<1}poX}hY@Ep!rtflop
ztPPMA>iOSX*&O|?9;?Ly*=rLOUYBZu5bBMc6@=YRvU0aMo+H;;UEPKtB8$4&0wYXR
z1TW`Q@5M4MT`n!hqZd@Zh8$4LVz!>U-n7Z4mp3Zt;%O|7E_nY*??@iy`g2wC&b11j
z3RqYpDT&zA(vU$U0ek_jBx)uiDbu%9j=Swpo)-S07Oe1fQ1^g+n(e$kvD`M`E2lP3
zX>ryNfZz`~{&*=8nv(`~oXwrnvR#dCpms5jQ+%**hJejc3zPU2uFn6OdVPu$y%(s~
znzIQ~5Mm(qpyToTrXn?zQj;IlQQ&BCB4a%}ptOAZF=9>ebDd+9r_qs9zo3m$`SkZ&
zbl-$r#iDSjly^gP4w9>Br=wa<eh!C)$-7)EnxFwR9%8zj=@4(O^rx14+7=ZdUDBeE
z48&7Fpxh*Ou(qa8T#@Zi>B}&`XFo0|$Q+N$)mtyuo(X1%dcDgfA}lPp8J8AQ@Ts%*
zYL8}cIR`&~1kUZKaDvjv1p(xPZCm5&Iuu0)b{}sc36HIXrXD3Pbat{3z<l86lf?=8
z%yG0}A)&gN%WR9L9(rCETtAGfXa#=)0tgJ%h2{Q*9*%wMwsw|Lv6Ez|;mL_2MQP9J
zmD-6H04zCJi+7s>piAvt?<M&dUu_iiFLMEhvXW8v0wjhKYw$N!9i7f5Nr3K1Y|a}r
zNm(l0)r(=TUj`C1Jpo6PofT<}`Q?0+*#*{04Gdv#Jq2HIS7!C>qHC1^C^W+n85-Id
zA^e-V2bAjB(91e-{Z~-u1gK-tSxm>m9vw6HRJHwkZBaC8qzOoEf`<XwIGrgL%f$4J
z{3=W=c>pJ+Nrd16Kkx2jrNrguH|qp(I_y8{c_(5;`<@J<iz`dOe)V97t^y=dYDTIR
zH=zBnz?J3)+iR;e^dczz3mmbzG#0g=Kn=q;F}Nm^s5iuouEC^h)k$QK`uN4tG-zB9
z$l+YykO~)fq1^|5%27b5oOxymc0I0BqJfF1tTM$#l)~H2qYo0MUs$B?K;ei(cs8M^
zDbL^lh$RH$w}A{`qTqmgVPZ&@r*8mS9Tb7oLM^?H^RVws+;DpXknd=%60#3ZqLjL+
z7D>W&TuQQaE4X9eWM-J1*C^I%bvQRP68w;+?yMEHAyPm)cEMC3DkO{BhYShI&CANQ
z;nk(!15B$_)8E<^HU9uqxO{;n$6-d{bUZ|j$bf7N2fhdX5l1e5&qyV`$_m*2M}Ml<
z04Vmc+0W<4A$(u=AQqQ%fHW+P-X|2EV&8wXcJh_h#`O>-8Jmsc=9t75k~7;{IAH6W
zJ*OhBn>wh+0ccqkm6XS`5#Q{7yvTG?9;tSk4N{_{0!vJvff`Cml(6TM>7B9xnUB4k
zF0jfS$TH3mb>P<^P)pa}AG<%-mFKF1s>w}L(E$%wp%m-9pLz+o7jl1{NzMT~GGo^c
zDM@YDEa-({zi3Gy%}<>!TU|R8N*f`))|DQ4SLQ(`*LLZwCy<j4XLTLh$E+uQD~c`l
zt@)Dn?zgZE!m*Z0qXzt!6N}maSimZ`wqm>xZVDSI2`Q$%tJj;O-0%sBQ5F-*aGOak
z{I*^MWC7bJjTriWCr-j?TQtE?_V|1Jf)>X7kjrhG`q#oVgfWd;U@T=AKpTJgkQEb@
z=))zo0oc^5<QOYe)Q8#+&~CsgX)2(P#*#A6d;!{dG|8dfl=bjVtEp0TzFz=!u#$#1
z!l{yHA_)UHG#b;<I1y`wfi&ieq#sy3@!6tZ5U_1ugbfJ@rxJpZ5yXjm*2U<!Kp+SZ
zx7y>`ZH2ikg}y-{wsUvYYC#B14pU4v5RF)38TK}BfVWhr0B{^9w4Wg<Q!mitB&FI%
z2H&q7YRR71F>D3EL<O!`r$NHS5DmW~viM^#nX5tP`J33$&xf1g^I#hra7FY;L2%S}
zMU)eAN(Y=O!{eyl`zs@_h?H^QV$KKjat`Ow>|t<y&07;0nU%)YPD>XFM1{oeMRc==
z=$w8ZBauO~rE}soc_yGs#ESvK-Ml({BcWgg*c0}Tv&7bzB;O_AqeEKqR*7>>-NveU
zSXnh2516!4`U=)mh%B6`0h&^4sqYG)23)rp|Gl9&AfR!kwiEVF1apr{AmzEDz#ko^
zvC~$?x(_-5coMlf)`ajL`d9fG{S}1wBvc9L$${z2TR%3wm~1W*i-m}q`_vJV<M28M
zY0P2?KN(2+^r4v4RQ<T6(bAmUf$3%dh#1-b@bFhoe6%-T&QTI$1bl31gi-*orJjW4
zJO3>F#9kY<wIB2l1mCzaJmV?h!utlJRYpDY0f^$|lQmy021*!~P7os{bQC{c+Dbvf
z)I3b#camF#zBgg9!Y&npEU-`9>}>bd<pZNm85TQaUX6Is<U0x14jI&`eaflkWC=wK
znDR`#vXC3%7`p&adF$V+C7&_t45hZHQkk6iL2<PYH%8X(W=8=&^;RXoTycde#F;>U
zWd<2n%7l|Bge%CpN*EoAqgh8XDiq!mD`sKWVv-eESp+w&;2THdzvrmwb<Ljsjr}MJ
z4Ih<}?Hh(GYsUaV5$@R}*@rAMFm!&l<ey%>F2Kpnzjg%GQ!iZtf2M0D6~O<_2y|~p
zh8Gs=wL5sqBzl5Q@cZ>$O#WP*=LS*JAAzyL?>n$7uT`p@S^)}Mu~pVjbgpxy!Ob<V
z2b+<DrFS7tmOTsE5fjM!I2O3RUgy*|ZSL;7ogiGU^9boY*;qk#+gA#7sjHrLY~yag
zXN&7i{4imW20)Hqq}=lihsM2ml01=e3@8fthPiNX8`6^sV1TrHu?@9#TK)hBfF>XO
zAk=LQ_hwxvb~8RGanXSfz+I<H8|`KS6$0b(237r9n8fLUEWW%?S7%gZWV%BGURc~F
z@~qzj+-ZWQ@`830Kq`U5<oWdiZA3~w)?zfz89%8dn$Aa|Y%GT5Eke(E1_N1smD-^B
ztOLhrTH1X?JBoAPeSEb7NX-_KieBt5hP4^g7R$A*3HmU;Ot$0Br+%rXh6Gq&7GkjL
z&*v=juv>vxYq&KZO{cax6_HxLg&=0|^~;w)%D;7k*Vv0_Zo+Gke!v9cmE(#spL8Y&
z)^r@cuhc<VPv1Vv20^ko91&1n$X&*tH0a*mr9QsOcR4YjlFkff0Aiq=8>*6T?5EGd
z2;W1MzdTi)|8N1m(K}ul${MJmgHi(a@c6WcFNf9~*nG&J4II8wuMCxrA>6i|z^g)f
z69J@>_iGvhudFIaaAc(biLw^aW9I=&NI7l(I9FJ84)lA6RuznUAR?TtR=xyKL7Z#c
zkojkDsNq?|F&-~TN~czJv~c@&4!>a{;<W%kyvUJuMRFjZ$j~hs{VEd`eQ)*Pk1K$T
zD-K&<#kys`q>71xs5?uoKkrq-x?!n~6wNGsN4qSoQ}YLZrR7W{x_w5#UfVk&W-71n
zgHEud4sbaX=hf4PC9NRqK7gaP59cccjS&)z9QTij!w#&|(lvECt~Y#K0dfQ<){B&o
zB>E0MR%y$6_TfcwQ`FY=oGu1#fzYudBD701uN`<QmjRv_0K>1YvV$4{6;qTI%=3st
zh=pa}%jbN};}5P-J{pTCfX%)|5jTH}0?4vla}wU#Y#$zvkBg%Paw)nrOf_Ast@X9E
z5^*I77U&_9l$^=@j=dHjM}NQCSyZS8pnfPvf&AV4A<7j3f$ms^m%>q?OIu&RNm&b`
zqhFG1E)9V|>NF7mSqOf<L(H?fAC&e`=l#GyA`kWGom#4i6vul90M)bPWgtd++4A9m
z+mE#;Ykab>C`cn0v8RW0uC=i0!`ULpyoe46KB`7aFXkL2EVlp;D*9Rh*Dm2M;rn9I
zsG+GT<UKyVl9x8xT6yKiYQ=(+eb(9DA~A<Zphfmbb!6@~5b!%)+c$YFzy}`PPf2DR
zQ<NL(&%Au<em5^<gxO&qN&Z`ZSX3D?bfiWXvmq6`A0vPS_OX@(wOA-X%3I?J1kNIh
zEchYwU9~}kd=cRPQffeG<VN8{4It<hwEfCVFRbevXpt(}nCjD0Rj;@^0C0wmVW2nd
zn?FSrtf=YzN?$%I0kX<}9$zjg-7rZLI(E913c^<so+mcFnVug1JOUhU$}O?l#d8PV
zvM9unWz!@Q>NFQT6=f%8La?c9d-6k`^%Y7z_KnV5=w?odp|l$t!09~~4Y{}fIe2&`
z+lrix`v5%@typ^8RZ`F%;&;EGJ{^d$IxwXa)*PLi5jj$Sj?Db|>rv2(6pg8#&7kS;
zJKewY5;(yY1?U~U6dS;am%ZK5$4NDB*MgB(ai*B4Xa9Trula^H3I`CA%Ggy^%cIx2
zx1=dA$xZlcA7~JzY!t>s{_lyrMYDI%hKz0P)3{q<ISNFUCms^FuR5rRhC^|S;E~In
z|9h+tPxY&;FNi(SkFXS@{gBRYapD%R*5%|lOmZj~VK*rrbB6tIOPsTSE=R{heH$|~
zC$NEYmn4w*IuIhEgbx*AgM*#?_iUr8%JAlkj*f*en2&XC*Y0JKYE4i7#pIxaW@<hW
zw2#B{Z{_!`H8Y4VUh}(zr~f}EIFCQ<4bU&cOL-QJB%_7jLH{I{|9kXMRR1;Rf5!;8
zR#l<?>&Vo<AB>L?{dGF-xBL11!M@Y~XVonh0DNjuVWBPra+4UKl^Cx5ryD&?NdwC>
zGc&x+-!t>`ua3OEe|0CO6?sxDc0#D+P|y9;)kPB_{o>-E^M=3vdS#TB@}w%)xNd#^
za=Pg%{=JRd!O`*NEuii%`VMW#lic=>j+4VJal5arINO%f>L~+Ay_1Esw6v$E2;;?n
z$H(BMf&#iToH|cA^|*uK=QiZa@nn?GUe@l)5EBR(2C-PgFRAtNq21K@<QE4t_m^XF
z{ROPRtkcx2>)GM(nNE$7@y|eot2eKAJpAj`um(qk_2DmG$ujg>W2s+2&3c>>(mV%E
zm+lJ!W$>hMQs2{RVf@%oGt0{spVQ0N@7V1Q2#6oA`bOS8+3N9rd0T`3D)qk=7FAVX
z^z16Oi`;j8kH^xHt~2DKd#WyjLZ7Y#8QlTVx?u8@^L!Q9X{Va^Cn1L4$I?xQj_@y@
z$9|rEU)%O~vpULSi=3V9yHy(ZCviXrZn-9&eqU%A6ip1i0Tl9wcJSa#EWGgrc`Z50
zsCn$KK|T96*iiI*(qtt~pho+q<Q?E~e_p6M%(z2czDZ}F#^J1Q3n6uXOyz7-&*1z8
zB48Zgqzwzh&g(5pnaBI<Q!Tz{2%Gw~pC=4=j(YRyMO+i$7B}Vosq4G6i?#PcZ<YGl
zt~kSt$9jpp!1z$h_H%<asZYdz`qw>CFYH1jD^QCnsXcfy^uq_ccUQ)E0Z&UB!uiiI
zc`ZzvSa5T2f2k58RCM3V!<n=x?HT^uneqz{47mdo(*_eF2e_@%-yiQmKC8C)Ooc_y
z*mt{raoa6{N}$J{41y7m8-I5&$f%aQLBh8GDdH5fI<!^0K$a&k=+xr%Z4`Qm^iQkC
zl(pVENun5;#ZNGz4BmV8+TSP9QY;}){%O)oO>9Ro6x%oJ$>@7VsGN6#HGFnonQcc)
zU8Voipj;*RBwPBAGTS5R14ibSqYc}Zl!t3yGdk+)FMp!@XSg>fCTS5vE4LL9;DtdE
z-|V0F+*i-M-kR_NqgW1`W-8NZ*n~7|{W2ypy6+n}+cUJ`8BML-Nbk715-W)x`9H>a
z$fKpXM#dm?oY?Zix%KUNo>^+&r$2nd<@v7O|I?)AB1=o#=A&iXqnD>AhYW6GO0Kis
zhrZ;e>CUv^Wy9Kl%5(qLW=D${pe8B1#G~glBzjnD&-(*omY!(dcT@UL%e)Z~tn~XI
zi;&p|o;PD<7*2;C8K2SD@fKzlUN*b*Z~rVx3rfUeK0I~X7PqPI9e|bdcKH@?ls#hx
z=A#X16qS<fatxW}{@21MOTL7}UHG>lmjn=yQp&`jVlwa53_}kGoCp+O<zUS+f9<zD
zdYZ)L?ANq-&qG8dU4dE05cE<g|1rT@oc`2DacAMvtSGVO4cwQ5Z5!7~f)KXPGJx{;
zTpx@VO$8iWik<~*Ijh2+Re@{p>c6wxq+^%^#cr42d`@s|fW@yIk#7051}01hU!n>!
z`VQnI69slIW_2r<=ca!(X)rl{-n5pBs85C3MofQ(*|e>_{m1GWMk0c8i&GrW?j3fz
zwj7Gu&TjLN=o*w1Ny30Kwt{edRc*TZ2k)Occfl&G&1u;_7YuMu&Yg*5dP*F`=12gO
zJxKI#%OYI6mu_psoMip{-n|0&!>vxw&l*KjtCqCC41JC^1j-=l@|?6C9*7k@eUq1>
zxGo)ix)c!FW%^|B!oSt%gZYvG$aJ|s<#eH8bLZH4D<}ei$M0W#e7$3vwC$fG^$Fl4
zi0>}qiwjB5&z0!2N!nz4;@5wV^4z9_hSJ8!bZyJ&>DI+7WP6>dwm|mevGm1x;7K#x
zIw*?HTn4PXu|knCj?3KNykQYwBu>eZh8{;l^}>y&zdXyImunP45e}>(g+!uR&#k8B
zhNIbPPnE2UYa_sHZK6StzAQ<BfZiP|36fFix0O(Ros!*=T{D)`<Ea*&F-^vuzbopn
ztI^h)ijI#x{(N%Qcm#)dd7RNYfBl%z8}Jr*)S=Fwv;0a14UfF+hvgANONQ|_uWc%P
zfF*N!8M#%rk`^AQWu7O>_5$Nhba0~tM-i!Td1lNj=Y=strb)K*-ZO?!Q5$iI3VSyj
z{L&W3pTXe8n%Ho2jub;$=0;=~_B*(@V?IphnkuBf&(1|TzX{kJ912VOpo{$J#uNmX
zzal;Hat1b7OW0kZYZ$#gG%!AFaSSuoFbX947Tktx>PHG46K?PISKqCFP<$mVJ6x)h
zn&-B=jb*UaQHG4KwX0MABTN%py5c^0&(A^E=D0L>l*~Jr!)g%s!Hv`X2#H#gR?&fi
zyJnbBJ%8x1XIgL+owc|`<qG%nXL`uwzZ+dv+dN{&%H;T|N5!V))a7i3h(SDN7-q8u
z_qR4jF2j>Md5X*LDB66^i2AJR+?|hhVOw^$mH>G>BF55+_7aleY2d4vj~jw(I9>eF
z5|xXqKity(=8cBzT<5uW^@sjdK+k4&x86KHHSP%uBmH)a@6s$IFxK=Ng``b=-##x{
z*=fX?r2EuT2{+yM|EN0auqd~#ja#6gfGD9LpduhJfOLaJNGc6OOEYvyD+mZk!_Xn!
zF~HCz&Coq`cX#t`JnxC`I$Y=SADDTbU2EOzUccRuC&tv644M?K&<1z0eF56wVqdmK
z-)v$0fYtR&500=VONqe6(QNevHpMH=*D%$}*4~jmH#|5FIO(n&g@5M2p-D6}J8H*g
zo!9n!NLCu0R$XR!)ZksM=UV565QFA2f};&)A!#XkGDPC@ouVGiPXkbAE7GBs=3nac
zR8bbnCS9>nxGTbX=sw$i%j-S;$Qh%jtG}^Pq`pNn(|fu~lJ7!9`s@#B-HXum`hEi3
ziF7CmeZyfgkEU|Ghf8g*6|r&`yD$w*4dCm%fegNdjw%H~8$hU^l79xidYT|f`Kkq*
zl5M<&iTktTIob*v8_ot_m?nCBM%xcg2LAE)lc=xaNOCXkP)o$@xl^1?K`#a}`j*FS
z`d5@Wnu}}3GU+pIgXxWmlnliW+%>)reAPW<gI6tS@)HLdRS^>3$|#{;-8{<{?fBuK
zBV&=<w5F$S<xJ0M4D%Q5aXkNFVDKT}rMYYDC{E`nlz#pA=0hK6Yhj1msDqmZ3+Bj^
zuoq^x;A)@bXZr}By2JAfSoXVrOK762TF_<3Yk^W7TzBC(r!63vFVMOTjD>%8{!+#A
zl$=DwNp0N{v4%s2>*a+DCK^O0ean0869Cjvy<3<_sVrqFq`zsa2`$srGuwXx8HElG
zmLMuf3#ze)Ze>tPld6%(9r`oTS<zRW*C;Bqa4f08)r^Z=o~Y1PP?jj$DikOq>qw(?
z3qPO*IwBU#ZM!15K|ALHm?WQCWi)f<dM+<|`GvuvzF18PaNaxTx9BDKTv*nuj;ux0
zf&ah(n-BZ5ZcpQu1&XG$r^oUZ&gaqu&lT*JDkjfO9rP6Nw9s}g3f6~@Zu3gMk1b47
z_^3IgS+K!n_=P?H%ymdUh1g*iehKrAT&2@DWGo9NCd;k~Qsy|WY+^AL@6f33h5Z;B
zVt+;(ZD*RH%o8Jko0Dv=tI8pyPm*Su7dAL}w96N6Y<%ZO8L-r-{968o)hNbm8K6r#
zpXocc1bY3SRzPhR3Gqk;+FarVclwwGv~PL0(l~F=J5Qb;4zVveT7J2Dl>hfI5ynQV
zvoq3_$Ai$Dw<q>;Onb)#k3Z-sNP&kz7_+WKk7BnmG+RasXM-Ly`Q3xTgW3?(fjL;J
z6YMPK?Fg*`uk7@xsch@2ZawkQ+gV2vi~YXT`;Hkf>vTrTt{Pu8ZFI3PeMbXW+3{wX
zZ4mfmUPcPTt4ygg>o!m!Wk(6ztgui<UOr3#oArLX809z$A-OQ9!G93JR9!RadI|dD
zo5)E4JmJp>0J}En)wG!wSZJ6F4OhP?yj=CkKWSvzK(%$Qw?d+eJ2lnvr9C}j>Dcy*
zLcn};Y@}k(QDuOEMp1YNQT5v&;=ZxC8mn8`O9r+f4serK+lD>8v>83c7xr<U(Pf8c
z6%l$>UJ%~A_TR{@G;R`PX*W(Ag1<GG@g)Rz{JvhHxM)-k+uL{y6w<M=O;f|k^>B44
z;KDOKJsZsEe_rsPxpF?W5;cND%6YjzFyyi~OVP(~SdzacLhj5)bLeCS8c$@S)~It2
zS|~$&992xPK@dl;?phhdPv$7?EhVDmadW`gQYE9U>IupuSb+hwlqPjPI-=XEb0R$Q
zqai6XnZWB+ScaC7fhKuL1{0=Eo7Zy~y6`ebvoG+DRMCnPWugxiQR?fhE~l8N&i1zP
zYCDaOq6Skly1z(~@5z5uE6J&TQs&pJy++~eJGpy#?sN%a&J$q@q1J94uv#lNr-A~D
zNr@pU<whOl>lKGoX(^-~M0tg4bZTlU4hw^16|@d->Wq=XYd(IwzpM&EeKH!OVxy(?
zpS`f=xA`Kg^j=0RDz&#b<<ZX$q7%8J1GRpfm3w468SRisjIv4u^)qgp(atJgcLfGz
z@&^U<!56Ync}l0kyy=;+=M~ZI3^QuoTt#M1WlHtuTU$L`wxWH@dZa@G+}!3@G=zn%
zJ3a$#fyIsoWL)+<Nj=?jd$p@1I0sc9@2?3mF)}0xWGmNrcTSb#Xf^xOTmcc1=B}F=
zpP-)@(R|q-scn2?{lM@=VeJTT`I0{I=9ls+<1(O%r8eTGxx68HU*jGYNfQ-`iIaBQ
zh~G59Es}P+MY3ZtZ(*KSOBCL;8Enbnxk{4tKRbIO+hLqr=f%fi;nFuf_24FPy{bvm
zDxY#5y5<*U_YP9|kdq$V4fh$Y6PA_6L8UTFC=Ly*=BkA*oyh<og6!nktNpd@P^p)e
z7mdGTgFfvMz9vhW`k2i}fdvAJp_|nm)4$VaEa&J@sodhkT~()eGHfl@K1qoIz1~*E
zU2Lw)Yu)WBxP6M4`v)?gusTEpHJZR0(Ry@XGNEgT4o*Q`9G%_0%8}2z5b<AjT7g7X
zu{sRQBXfIitKGJI>h}>btCdZ`S<D)R<sKB`HaT8hB#IO{@sEB*7pavj7&u#}eoC^k
zf6NbBNb0mZXxTSK+1p1_PFb?4&0WVmzf_U#R~P%`fWSl?&)FHG<?Z)4T=GQE46zm*
zHJDfLIKGj?8KGfXQ1TJIRO#W6#J(SFI164R<4&;qJ~U*{L!M~<6wQGQal5f<%gLsU
z4v<?V+ze=2RhjK%$7t?%#aCc85m|4e+;^0IoJk6;Vi!p@wNt7IwWXPe%fYc+)E6?c
z{WPRgWmoym27h!r6OaIo#+=Ujp7=%R<_S)`<egB}MgOwE?O^n+KCsAN<B%3p1jc6m
zW0;vf+5+oCUd=vkNnCQrCJx!bA?L*2II%s*qc)Bk-Cdow!*Y0SE8bXzs;1`L!&atL
zd(pR`A-I1Ex@Xwil&7!k@*(yhFiasscS@<(QLzs@cbrHP+)lymQqS+E)f`Y5kci(W
zG=Yr%7;=w^ReYso^tJb!bQH;J(w4<6|C5+;mM{A%b?W{N<ocZC0+vPVi(+1_k+{lO
zL=?P1d^*FIbQn(PwgHl9$D8qfWM-2tEA8Av<gG+umR?Pmg3q|+=aYW$pW;^Tj6@^W
zZ!zK`dhGWh(VcEGc`cx*#I#;Cr0{7-PQmZuFkCFHiDNU<+GjG9`<QrmU7SsYBsaRA
zGIW91&o(T;*NF5Ul+w0GRl%p8_+eU{jMBG7%L3sJQOZRP2tnbRucFT|1;S;S$#t^Y
zE<P_Uu0w0oHvhDk|MAIGQjjVyfqjX{4Yh3K<^;{1qn4h_&d!cQY}7=><x?_`UjGS~
z#dwj~nSs4yu#}^4#n!uDBwk+z-p4-yz02<L+1)<<TW25wn*;*Dg$}w);PlCQ`A`9j
z1uFdY4ED8M%x*MzZ;eChxU^^{f4p8nzWjX%n8mcj64p<}oJ$uc8}A+rJce|dC1zyh
zVZ!N)cN_YHORXg13fCx=&t$$;^p1U)(c3oe*7}sq5oe&2LBB|o7PbKwhfV}fedTRz
zHr<W-jI$=PB$|@%sQq24yd`bi6{?gg$1y@xsQZpQaxMm^nj%?VaKR+?rk0@P)Xz6O
z_dt7~_$sw4B3H~?w{HtI5E0fCEe-(zZJ4u=`+`(q3JzrSSM3i{3cHG?JK<5|yQnJ?
zf*EeW{hLvjN0%GB+a>lj@e{juN59Dp^gEEpe4mqJPY6Mx?Y4f<KzQkCqyYxO411J%
zY0E=gNNg>b-GuVB9CP!`z?0$<w@STpYWCaYNE5HMZOiB$X`RDF<L<&IA-MUaMeSDb
z98QkHKQshFabf=pP86cAYk_OMH*~qMv|nv`n{L_$sYoNOpRR)zSIky;NHroM*;_Qs
z7A@CVF;`@b@qYCq<ARvC-tW2PnL&duT)NwIi$nV&7^vjOrHeaE4j#H`Df&EqUBn@2
zypq$0IxFaQ^<9k<)Z}vJ^HJs!<%4-`zqY$cu-bvbwVgH+TM}$O)8BG+ck+fv!{V6D
z-*M8Nq)Ri+{)xg*M;S~E(>i}%IJM`IJHn=Fzg=jdnX2|IfwDGk(*l||-5XC@UU<zf
zW78iA79cbA&<Neq6rvCXuqjoSne^JmMhWmS7tdK1FWDOUl-nAxQbBS(b*=V8Tc<xb
z9D05Ot$~@w&Yy!6IxMP6R8eHaik2sZew`XJXDG!<zE7o&68J-!D?$%B4?-)KG^;e3
zGQuUgIx3M#j?Kgj0dT>spQzLb*z9!SQ1*f$_NWyJom5HM0hy6|c6uNgrqqy&&SM@S
z37+?Wp3uHPvK)Qgv=D|nrcdZf7Ec<hYsVzH@fR6EpGj%y$t}K}FM^Xy{@b$^u6mTR
z;XYz~-tFK-m3O0wK3wCSB1fg-m0yt&EX$NA0U6;$bj>2t%aSH|pkzuba5*3rY(E2=
zjOMMD7JBIn=Nd$Y9WkWof9MDU<(_t)P6^eQVjp55?@7-$nZkmZx${OJFuuI`T=edI
z1PSMv4(RT@{|@Hk9Z|?@AFsFYWdAhrLZea!nA*FrRFf_FhB#hQQzplVDRRrLEtmND
zrzisS1#l&1TSnbgm)&Xu%}gAAqa~BaX=}}34eGNLs$n02dG#Maf~-SH)AG$1{xzpd
zEVx%mySZIis}8pVWWya#z-j8+?el!d+~mc<;oWdXyP-OV--wiJJg+i4K{L0JA&Bk8
zaKej@Q8_$$g|OJVlZO5W`_2h|t9}aX+(>Of(gfy+Y}0(0A^C>C+#$+{R~NnPp_lu%
zd>Cojm5qk%S2Po#5q5+c*?BgalN#T-38cpE=P6D;+!@rd$Ik94w!A%mP=9R@77g|h
zo_bo7HOFgv%1E)Fzz?_ZY0hvKoQlT&>~j66F_{!~HZn0zE>Id#<|uA*d8IkT`EXZQ
zA00>VXnU+Gz5Pdt631!=>*9B_$ztct>c%(plcYR9&j;`}Dp7cN={1-26n)j6en<W5
z`8s;@Vgbhei?f3!cSZ|0Yoqp~n<OLX{)bC&PI*rWa0xNBLZfz@&=OjwwmoGT7sWhI
zpP=;E*JL~oqGQA3qbzK#zT7%IIRn{CP}cQv1B01YZ4??#9=IHg&uDq`o*vI-c!(>S
zcQ=Os^G6W*h~izMzOH&o+s+u$mlzVwQZK|AD--}rp=5oG-a}jU(~X0Y9_D5@#XKsj
z>&Y#nE~ZurQshHxi?h_`<4LkkIo2$(r3}-bo2B98YLQ5p4(~$6H)sN+U(;wN`)cxO
z;^6Si2rl04eAB%~E8~V@<q!M>I?iH%4)!9|PoWQs$DYUCbFg66TSH=Q@%M@i>3?Yo
zWDm;KRp#d01B7|5XbLq7Y)+d3B%j$DlPwa&;jrdR8yuP6q816V?`VD`GCS72T{c%k
z@O`Hr|4bn@rlTW566rYmhISx4v49rh#`BuuF_`Tsq^c0QgK;oJkwtG#-u~LWvBIY&
zrACHjZ5WIh!}!xW*}Aew11;6|)`}U$5yjAZTafJ)wIoi$$3PJ4()|yn;KXdtvk%7=
zWaYJ+tfPD<aP(vJwTgceup$3Buf{hpt1J%VsxHmC6XMU;$m1FB9$#YORLgxy2}i7r
zv3O;o-NWTe>kx`$)8gk7$I3m!lJa}IgkGy6IeEb{{pqZoWjW#y$30B))JgtSgKn91
zH)oq)1vs)LLjnSkG~-qWEtQio3I@TwMm#>B%OumVB~Lpad4hC{<A@G1C=VyI^S_Ng
z?c-OWkZDKY5Iyd`to=Ttl|{GQ-7<^p7d3W{;aYqJUwV0~X1;Q;p!QBQj@n1lpd6E(
z<J3&{W|A98D;I<^v}97nmU!g9L%vX7G(FGpdPw)Y@mB}c?`-qssmajpbhdlIWg)$W
ziOS_vL2K={By0Z#Sm3`-H5map?Wo(7UnSw{FLmA&IK@2V-;3XHmagGnqF}Vx8r?ja
za1Y?i1$>3ICTiB(WlN>Wl4^8x(=S&X-+6(Yh4^-kHuMp%3jzQZWYt^w9|R88&u5x+
zSMM-wyAHBNLQBQ&j@t1Sy}N8JaHK^;^0KG9103I^y3b%rf7~Kr3@GmDZkU(7+-_7{
zA<><wmtnwt4Du7CC-1p};U`|)5$sGiRmUi2zMxfCAb;h0a@n}^S`f$p9?m(;fA1KZ
z6QaAzBdx2qZJ2CDY%V_66Mk9kE+U73;mY66Q>X86nO{ld+w~$Ir%w|&s`|B7ZEym}
zAr@1^iJ`-72pG@(T%KEgCACzjvJM@Txz(ElTv0EPs)<LXTtAE@Pwq4<NNSA^cQj}P
zAz(hpz1GLE4!G8y-*XR_`$Kfm)<I=oQd;UAPR4d0@k|^w5X9LHadv8yhK@=&oHRgq
zpK*u%LtFqd+{{13g_!D%ce8D);TC^#OvfMeSvISKW?$x+T+e#~T;?bf&%0c4%bZe1
z4cxsT(d}@DKzO@t8-hu3*T8bbf5elTUZg{qo7!{|$ZWB7D-3Y86tnqmeGuYD?X{)c
zl%+^+ZG4g$R|cgSr!Gr~Oxd*ypbgITc&Uk|>14OU4;c(TU__-F<X1R4S$<HD6cXbo
zTfF|xjf@=D&#sJ4x^N0fZ*PfTG#nns>YbRx>lF+4NPYt_JKA;zF%mO(N(`Pw9;|+N
zltl{VPG!m|pACEn0H95COd5u_>J!om)|l#zhNY=u>`JZ2x*?<W+GzD()8o-sy<Vp&
zHD_wHpV(elyE_*`O)JI+n3lCJPYg!dx$y*cjsjdQ15TvJEmuqG2?tlLGRj*<H_t-e
zeY0Kl>lhQC2LVetu%Q{{gP>SCV~*a-nES?C0rTN!zt|TdoVb0dt?r6fa6PXNBm1ab
z?ID!1rpHT}#HTMmjn5l~oI6T@t>}hQMxMjgzMSSM<c+3NvjAh6tZ!J>t;C{}m|v~!
z{{kCg!$KC>s3M{E0f}kW1cqs>pznn!q2^+cS1f0J+%?do82}py2Y3LmVaEMdvly2Q
zoJJR2FXEglw-Ax*IJ4WC^WwOjLcNF>O02OuOeI`}LWE(`D4xeK(gIwE44ka=OXOnK
z?*$FW+?`@gG<3u8`<^+7M6>*b6jf5_X-*S7ny$He=Vr@rJD`uO*1v#`#y=-;faND|
zy`C8=*P~eqP|&JS2bof|Q%Y&kA!4nD0iwU1n+1tRC8}AJs#EboiPRPu;8pY;&vd^8
z?Cf}Ja2-4=3C)W;tNpG`bq6(4jUC@1!<OBEc-Xo76xzY#LylPM;^290l%g_?>AP>o
zDyA&lWm2mU97J`bK{GK>j4cz5)~At{VEB|N|29^KnHl>1B$~HDhLyP8-qDyJi&Bwp
z(RGNM_HHL(bSG2E9ua7VI)cMPum6Y5q2LgIJ`z$S>`vBLUVdXPEAKof_l;Q=!`2jK
zz~x??M!IYE`A)n>M)qJC$-@mv^KAzb;yf;$-kkAA8xK%G)`$*v7+KKvTPh|%dVXcQ
z?lhii&i?2`#mm=c-El6CKOf_Xy8XJO1rCuTrK)fm329V2B#MG#M)vyUOz&Juvni`$
zU%i4b$h5uRam@E$dz05+2+O@C*`o640}kU5%gZky=LAI^Dg(dqqX4Gr-{;6w<Tv`T
zr|RB8jts!Ula)aLn>9Xo_ADnRVa55*yO1gjMDCkCKh(b%2g0t3*{0s#hy4N-b>Hd>
z-28juw^Y#v8}fu*%2x~rFY%Kf(#rp%IMDX#+s{L3U%m)6;m}r0*8EKJWzC(c{6|>>
zVtL1u!g3~sz)%|@X)#pQ9<yttz+MWkl$AC9o8s`70{(h2t}B|y<fI-?aAy40dQkk&
z2Xjh$PH=vwoSQYX*HR*MSEI>%?q1r*345CblSXAjXkAQGo1l<WF-cU<8g+EQyid2e
zUctLkZG@j&tk`u5U*~nlP`@$=N(y4Iu+toJH>!#S<Vw6*!?4YqFWdED{)DWhXAV3v
zZ>aNR%B?eU!^Fi)?1W?X`MxN7^z|S-Y4unPG8D>RCOTNzeA*zFO*VlM!d#EC-yu)I
zK{=z<ZKcE^DT8d{Br{Bz6TK4N&f5@IxyQgvga~=f{2)}`h5vHMm0$jovLwZ&QJwZ_
z^Cn2>?JnnN=%8O_T4~fAwtd9&WLdw1SS-3q^H+ze;T?c1D6g|i?hzm%-aLjbPToSh
z&pb1F5+0ab9pyz3X_$+LMcbr1xm^+#r0aDEqAnrYnhAgwNpZvG${=_x?sdHxfzkCn
z`PY<fhdeI#{fG1$N@_`Uv?x9LqN@bG_wB=R?SpT9d&(N#+k3>F4;0aUKt^Kdyka{%
ziI14EmRFKivi08jMeNuS<bQutihrZTZOt&e9Wy4^M$9ZLUs3RskZb2P0JuS`WTjFH
zB`u0Kvutq20<9<o$Laq*6|QQ^Un2`^4y!gDgLDIcrJ$F^#EvXz5#l)FuY$zzH}Y0K
z_{PfE|B;%Bf9|W8xRFZLZ^Qs}a;<w!p;hJ^OnLn_H5b$O#ME65c&uezgQe?<oyxCP
zXnpPSNB~_&j;QinL>-9JE9}lVy<RE&YQF>3oHM(N8sCtp%{9vm>UJRvk=x5zWG7-K
zvRk2477oX*VFSv}$L@S)rR*vXT`N3No$$e1pbl_A51Q_)rkHL^ocr7+cX;1nx68Cq
zvAGkby=(LQKAF|e@$veA^8@0VkI|D?T6TO#+b8>vUI9%7yguThJ1;8Lb<okjpWlK&
zq4M=_S_8Xrw5{pciRXYw<9OoDRWQWQq*N5@(J7@&7_J^07(-X_Sn&j&#TXmxpi)T;
zq>`LR0=8#5Y0VX^EMi}YmEn@i#FVf6Z7s^qRKp%w80`+_Is1_@>7i9qriLaRXjpkm
zMwwJ$-KiZhfI$HykRQ;`_WXxAb@BqrNXz1=A>0@NJm4P`&w`r!`v}k_bOEry6O`>p
z6p7V!JXOS4J!VxSqHNW@hy)Azs?ApSevJ`jF(9h^wH76e+vwGu_t`fWbfqJ>GO{ZZ
z!QM<eO1465)#%#@aU6q_0OnqX`uA~rUC=v-7tekYscY5YDGr(rSx>fGsem3rzM<Rv
z;bts#ZiB5}L91_lEff+BJ&{rI)9H*;v53SsanAZOF21jBnXit6IvDH45WJZb(_lU#
z6&ppcPu_w+t*VsS(duyC{NM28Xtzf(P@eu4cO`qJ`Sr;6_;m8pMWK^>_tK(@g`q|r
z?Tp9ou*+byTd{f86X4%Wlg^#K^&^%sWy~Q~7sO;d!)JHHrF8WgX;R+{QH&$4HbLSO
zqgQA3qH&?CS#r2=^K08oWAD?^rIq%wZ$KrYSIrwt)X60meQTKs7!jM}t{*dWP3w5r
z=Z(iT(XcR2JOPsBqTRZzA)adn&79YjAz5<j=){k0UyXe*`otQQxJ1@`2nt~vSYGGc
zZ$7p}0XYMY=7+58sr64Fs)8dqfK2))-+f6|5KZupK28I`g+OXN-^djn)n7lYj)@0C
zS%|y!(N-%QsMMb46A|>09R)D38sWO)^b@7}j8h+I4PErmsYF@G%!S`6iS5~A4Wa$-
zM6^pb$4g9Qxk`HTLUpaAonhoVbs_{*<wy|E_U{e;oj&k)cPzjO>D@QWPfa%mQE~XM
zWTBr19F-56e}&ypVE}WjY6_GJr8-P&w%;dhDj|^t?0N0M4z1Q~6^7DLTIbtMDPAjR
zISpla)ok*&`X~-Kr%4(kM_R^2I)`NR`4O=eJA^+pr*B>VDx2<GQpq5_(#d3&(uc^6
z@BGX>MJbXnqpFp(@L5%TSfd>~<!OVY-y)QJGZ~Z{^^Dd(mVfgcTS?jnidq5h4jD=y
zufTkjzxSv434Yk<;cIwDhn-=D9Vp7InQEe?9@hbp9dhS1{_^<sR?Zl3NPKV53Hc1y
zXfOD(fqVH)<6;F4t;yMmz8Hj>jTiJC%LHBtPVqOEh2XI+9Qr^oh2=oM=_(&I(hI?Y
za60$0utL(BX;Oa#`LMM-sf(#G&*<gxTIrB~VK=ZEx+s_Q%Uiq|X#>Tvly61&br4DO
zNP`N8yf#`^ztf_(werSwl#71L?JJr@<R6*@+}QXU<HIMo>!F^xy@~c4TdUMoZ!K45
z62erc4XJ>7K-Jj`WQ=Q1P*P$atkSPp2@S-vSd%y2eO2Cp(C@O^k@KWq==|Rl;ALP<
z=>;VK(_5fcogpqnHEO#-#_PiJ7f%AHTV*L<Q|<<CpzRWnZ$h8V0AALgq>;aam`Uvd
zc+8geizyae*lQ9qM-@7^VsvXrlo+3SYQxW)l}Tui<;|F_t=x6Phl))l2LqHe8V6nP
zE43jQg7=?s1K~qCKTpc=_&vJQ3KU15OSka=C409Gk`*vmLy<f`Tpp~8w<~Q`&At4Y
zW0&%B;CS8$+dl*xz_h`zHxIr!Hz4x*i}HUJ5()+75G7jwB=}(BYz(SVs*MMc6@(9|
z%s>^I+xy@-O2A?5mJ%{lmm)y=z7u@_Icu)+hB`mT#w|Ou%c=T+aTl+V#LqV|?<rMl
zr=$omd<XXh*qzlPKnX?_k?aT=wRC>-%JwlE6$!$889R44i>pOOR)@nwXvxnsm-x;3
z;jMHAT$Pl#`3zd@wFfA8hq_&>>Mu+t1dJoUkQgFo)gOs2lTt<snTCmGc=;Xebq6Wo
zrM0IdK0wZhloYPLY<@5&&m-@OLi|7cgkwDP`r({oTfg?ax|2nK?r7X!?1@+GPgxf$
zXR2~J|K4by0N+yKqSHR8l)pAlI!U59KSGY0T7~H{sZ<tarXmj!Frw273wRS1Jm<k<
zdVB5foxYIMkL7Qu5(x`oEH>@S`j>ptlrIyWU1ayQYXF%_R-80^d5r@#0hA^>*58DW
zKFBGdW%TncAD@r^M$oT7DI({tAuicOWEUYpPKr_Q7A{6U<IpvmmlVR18m}ZSj%2rN
zd$6YT&<6qTx+uh&o)xMd52e^~F&*HF(6TC(;Vs8J?`%mw^u#^I)EC@2I^3)jpFecI
zyf~+kiW<v~>2D&+NN_oc(gm7*=mLI42clJS0bcq&`KreKhfN{o4p{};r*a-=IX)35
zE*d{Qhk(sx?aT8L=Z{-a<c)~ghq6u}Q>x|hh&v#@(Vq{qG*s4Y8S#_SN~gi_|LouR
z7o$SJoC|Iumc_X1p+;6D@@Hvi<gbA(knD7G*|>0KlU7ZQvg9a}1~TeG6$t{Yz91(y
z#)-7QW0W7Pg_dz&W<Jz0taNZrvK(gFf4=13@TQ5coQFgE3)cwifD3Ka5%AVZ*S5Bw
z(bEAy9-hR@4J=3n`gfk@@-q}Qv4Zl#dX5eDD)2Ud6%*qAxsqECG?yU?_WguZIA<tP
zh^&2ulxNLEkA4+s1*0_hpxU;dhrh(?4w2+^VR9vZ7v#<fr6*!KrRC_aiT-3{^vO4(
zB38GrR+Doyp3&jcJ}_=U#BB2#yg)9^U^zpMy}1jCc0uSE2JW36`EQ<Y)rpW#5+Efd
zFZ3F6TbQV&(@yPAS^`{mSi>}q&rkMGr`++ve5A5f3jG-f*Ja_7&Vf7rb(=V`0;}{s
zwLot0j}^U2N)*jM$f`dkKr~Uo<Z_IE_z3V=nI^!lE0Er9t+5tz4h&ln?`JQsOuqqL
z`l=!&C2rRWQdBVp#ex1dTXuSyE)jNNY6%?k;!A6zKVz4v9J)htA{dk%tUDT_1m3hE
z4<5yS*@GO}$OoO5VVg?WW9l%6i{B|%1s_c*Q7K8mXsc<Npj5;O5aUj~bmRGA>p14E
z+lD3lh6Q&HcrVu?*@gMy9jZ0ahRcz#OJIZA18CbnqzkZDdwn+rr}%5w7#7Jjwq=7v
zi$>`fq5)>MNHCe;5IlT70>1kXSO2c|j2o2Co@$?kmrS};OkG%aC)5E4ek5ctG{i7T
z*cq5$FBWUR-5eMj_RLk&fDW0U-aED+%Ba@f&XSDhGFu)-Bo4<=hpT?n+r~zvPKvF5
zxu>qctXpB)QQ%2NgTst&>i12pWD!?3$r6K`Nb5_LX=0CQ92#ks$@CuTlV-&r)|zR;
zooH#*5{onwhLjH`iQwWrTY*zPWsb(24XcN7ETHBt#>A$Poo|lO5hj+=t-n6{b5w>B
z>f}xm?vg)Y5aziJ^4m*0wSh!X!hAq-m`3^%64^*S!p_SDvUMD4dd1N>?+hx!wv@MP
z>W<mp&I$Z3yEx@(BQY_Fckx%VV7S9nyLXby3&LD379KE|yiTiMg+$ZeWnAKpym@{Q
z7b44KZ-VXx_ucSA6xW5|<MlPF6+yb;hV)k+zK^{pqm%YqLCuCY*+I8FEw6R`!lc0d
zPluTE5o6a7=V!*J8_qW#%&Ec2s-1}|@&F%*=A}@Tsd(w=@DG3MuIihBtfAkDV@=z#
z%Hbit%QOCxzHU&?!lpmND>$3>$WKxaa3XwXM*^(X`PK@Fl@EX%`~$_t>yZhz<j*8;
zK^Z*;sLZ0jZ0%D}VW-2LqbtsL#a`y$=>^R#zf+zgGd|M<t2wJsR;YZo`+IKy1w_@v
zDu4!>*C=hsv2tW%tVTb-Ow&=2iUYEHg?CC2tD(`?qR<)u^Z%<TgvRo24d6RTpX%J>
zwHqrCTuGSdhB1j+UX>RwHh&$C+X>ngLIxHXv}|xrHh9=T?o{<Tm{wWkSn+%$02J>w
zD&%CZqc|e6pCm)UxtTAT1U?CMA;oAAmoG_^Qjk)vz>Gp-*tYm!A9(ezKi9V@;nzol
z5XgULQ$Y7)8?}_p6DdF>q8@$8z$!DXq?w%mcA+rKzu)SX@-<<!2mwewtjWu;X#ynZ
z7_&^|chNxN<+sOw6S$mhW(p)StO}giyPF7@BK_7&<&P?9oB1$2ts*aq!&mfYm|Exs
zB6{Z!t|39^<C}t8Tc43Qpir%`>z2CU8W2C0ry&^j{xl;ku3DyD|Hx8&dL3<7YX^yT
z_Bb1oK3BgdLIhD+;pUiu+Y&H|(8h<skme~N@`DIXe%EQ4gW3$qynA}Ny&E9e<nFIl
zs%!^Y0K?K6_kF;ExBv;U;x`trCa|f(4ql?51FH8Mr0+~T-ud>$rUFctMGAOMma#Sa
zyy{SbzTksb`Yv5sSA;aM{)=%iH>z$=7OdsqSM&>}Px%m+l?)q#Ivw!YaK@cn0f(>r
z2g8E7#@()a+gs6Q)yn45JZG*V1Yrir6l2w&hoa4@&igKp@aopr56E~)$LNlS*TJ}u
zI<tSo6!uj<i0EL4ys#-Zh+|R$8O*y|)ps7AtEHL1Y@&5t`$V1TqrXDL4~Hjnk86V4
z_JzIN8j+zodD%B<HPQ5B+ZO$g@qhf}%b{bcK+gou8E5%+4EDHK<O(0S15G~vrf}u=
zg;EA~@FbLjiWW*`$*J=5`p)1Eg;-|u(R*0A*H9bykWoLM0Z?@0psnyCMs29Wo&9hd
z8b_-=<6TbdT+jMA?T$7IV5ohTq`a!_%NT(=<m$z3@|I5iE~;(|s$a1i*2_Kv52>Xu
z-S{k4TKgV@(h+Jl2Ge!R@m-ahUwR3ycve}p%8!i3lg>aqzGt++gm8rbDNL;l_V_hR
zEs;Xuf8rE#BJ`9S9vcJCEuw<rL}u@<bqIj?2)D$;Y;yjEL72R%f0`q3x;ic1DnI!C
zPH}U~!UD-_(`&YmD9bo(Ce~o)fT}vAKCpsJ(4vS~b;0j~6b2m9#)g#j7vUHiY#cF|
zV=fqQfBU*aIbaN0GYexum@LFimo+0=Rda$V3z{qbCmrT@jrSr2SEkMnCz(n~t5!EE
zfN|_m^!y~nfPz9EuG;BN{N))4Z9g8&I#M12$#vZ3D`+wYnLq9)ldzi=+HmJu{8}M>
zhmd8!K>OtHd|$s%1`n(?_$py~nI(=}XW?32!r1R;LVt~;2G<}5{*c`QQ58Y{!iQ0t
zv0Zn?n>Ev?q|z;uy!kID4WD0b>V<;zQW~8*yW&zBO0vldCwo#~at2&mAcFdgCQ5Dp
zLFyp@=$?)jiZGBwQ-{p|@^U$@y@{tv%cwgP3JOG^jBL@J2`Y9bxxL<E3Vuh{?I4xq
z(VUW`vp5KFJ)3>#{ej41Xe*Cul}wsoZ9_tjqhcGJ+CcN$U#@C3Ty`s_07fO_K{G@%
z5C(=4%TvEs{d5<9qestITJSa%$ikM3SDUY%J@Dg7Mv-V*)sA7vAa#uja7njmQ8h5*
zJ;OHovQjLftT`nPJ35TgZd&!9e!N<nu3Ia`)c`FL5}|*wl_+&I_^W6Ms7uSD>+hZe
z1^kHlfuodeNDxNqc50k%Ve#yFEuxH;a)WeS%G|pIk#fxGA(THF3YQ0G`4!>lhpyRZ
znc_JqAy~ctBZ#omm<Rn!5J_K3x*~`uT(-AY7yP3}JOL2~?nN^%i1Y7{`AEfZm1U28
zz}A@#n>oIFBi?zVY}09xcdQvtm_lJ@3S`HH#(U_8hPt$Ae<Z_e=!df64H@XNlm$?k
zGP%%ElMkyNu!2|7NHU;Ikwxc*{=&5gS;h!z;UyTH;qa_ua+k=fyo+)$OBaoh##bQU
zwk8w3j=FG?1vgKqsSmYHOI=5G(w?VUW38*LDrvsg52V0^J;q^1`F9xZoQwqc;__^1
zuN*XD52*)sl)_Yikew3Fwc+1Xd9JAC%_r{7JJjIk(?gmGpi@Inj6Y7=AH4ZJ{@G_(
zV?Io|(&l)j2i&dH4?BS^dA^DU?nUwi_eldtbfrZfe9X#zfhg;%uGI_0t*9D)t=$Wd
z)-FKJWW5W`P7gpIlDC|gDIp|RsN%C#mZ3QAJ#S?W@$Y#9k3OY$#D)e_tHnyZew88a
zc5=_GW>*?OHhl-ypWbb|&g%+kh4|}JT8ll+P&d;V;t%QQo1+Ubo2-&1D)BZ(!Qt{g
zShT*K=;^i_w2_%Ni0`5qyzZT9Ocua=lUMfiKR46Q<8S`_8B9d92xxkK7~ILK7IBhV
z__@@lg%qx4ORrLxD;>s#bGxeb(2XPvB_b)eTvv9#xAu``x=6?6Qrq#09oKmSM!+9H
z30M=t^CaH=RvY#|_f!~;;%0v2%fNX$SeALNKLI*svM+@cM77*)yti7|4a^hUwD^vK
zD(Nk--6)sPK4H6lWzal_6*iXJiy!eHj!~9kIfG)qtaL1Mq&(r{mNsrqi{80Of$au{
zk}++wXB-<}3NuoGF>*|17pNb-VGr(R&21`xYQ|Y!pcrl~JCp!H@pDjwny`>}9~&iA
zHFy7;H$D%#V<jpZxW~(Gf`=}7u#n5vc-HrB8TXoVYn=mVSs(HBK0R)vla2`yw7?A6
z_su6E)xOx}^LrpnkPpM1qMPpo!5!bLUlFTerI>eodC_n7>*yK<f1~AJE+>TgIEq@-
zfN}w&0n*0(`Ta*!Vz+d}6NZnni6gUnZ{pbo;L}Q}-#FR~BZTPJ$jtth7s5f=wyvoL
z>IF>#I#GT9+61C`q7xA<LA1M1lMc9U<8vWbLa!uEdndgnYb?c=qk@{slPIwme$by5
zR`(2k=_tqL)W0|urFk2-*|K3#PLHUf!Wb+1fzDGs^qV@|gspYE3;VL+X%qh@>fM8?
z)8yJuK7PX`JFWF1{%|7S^z^|3!t&N60g6Sfz*gYu8hi9bcSMY_E66iG^c|U>?_&Bk
zkUPdWfY;=S=Jsuh0{zU^vELT)$)Rjij7>tXkvt7UczjYXtVo%_@IG&!ugx8Q)Jdl2
zr0pXOgqcL`+|O*yyG*Jxal#N~^5+$z)SR$hDSb=QCjuli>jU2+lr~;v#OLCAgWU8p
zG=jyMNJJ{bjCB!H>=e*(B;lUM!0b6@ln6G$0_n7d3Ms+p`i>=_wVl@^s<`$++S1Bq
zQ7Q^5q<JRhN6<4dZ%;=r!2M%%mZpm5YgAh-d;ZB<QnZ8X6qLq7{dxR#L6sI2`_Z&l
zIhTo}mj6j29Q|qTSodtT0p3QkK_Ei@15@@-Ta9bEob1I=O*P$18_Aleny2}QHjgk?
z2_j>eoz@^qLHoHLk=yqkiTb^uPKkizjNANtg7WA2+|7YR4E7^aiKFmhn6vq0E`d0M
zPQ30WLn@_g`-xqHZ5HU=h2lr=_s7%j0sFbk%~*gu81SDLfEjiQH}7qoS)#01*`@GQ
zqev?#<uUa|l9$TfrQQKB3`vHw9e2BcASQDD)&lA#V5G;P&H{m{T3U~AV8A?w#q!Ek
zv2|4+Ks<X9k2okgOl4jq^BSQU;$sxV(mcmOcM1u~&`T3pK)qZ!dcPxywNorv$}=_h
zeYayw;*+IXNVNPE_%=xW7r;|MI<r61%m*&Y1F;^whyt#)rWS^9yn{kQYZ0wkgW0nm
ze*-g#g++H8@DYMU?g2riXUeC8HYEH0iI6xvvjGjdz~WhKqSo`S=N=)*q$MIq^39ih
zK<TMqdDzWKix~x4YQ*rd$nKDJx(SJ+qxwOX5XwDLyM&B&95TU5GnI(oQ*(I##KeNB
z<w=jMnX-hmh~#)&mFDzTP*Rx+4szU(>~hMOrNsPOunhM`ii^?vj2lc|%O<3Fj}K~q
z`=TXI!0?dR|8c498Jm^qR8geWGG*`AKC_g^p%Vb^tN-G_Y3pm*T?17MnxMNZ&7J8b
z6i#fx#y*&rz;RL{yf*TL9KZC-<M1Fca^N^1ot*}1(sE3q@iH(F|Bs|H+N}e({i=7H
z%y4SvDK<ppnTh`}VFn`A=lr)Qu@1?Lv7<dk)WKl?E=YUrJK(e>0bW46&c}#>7WV7;
zzvn%VOPprl&jB7%qEek>L|7IrZZ9pUj)Lk8%dT_(BEj?W8(t=(;0}~(wzBBlF7=w9
z;)NIEE{>R2JEqp*7|aw)rFti~V&lP>BiJ58l+k4iMB&O|zgn%Awt`$QtXiB8$Kx4Q
zaay_{qw<r$QxeDaX&(v_E|nV%1(={E9@7A{4V=L~4`l74lzWY&c?XuR>N>4SPZW0x
ze@Tz*XRBQ`*&sp{;JVQ&BkD0I%1xS7xD%mr#g6EC@4J1_6e1dbyPL5gHav$()wl?O
z!3kS^%^{jkdwA_DaHCiPljEC$<t+|DPTAdgh4KFNVr$!5x}lAr_DruWSSaRwjHIFH
z4Y;S08H-G^1+@wiRx$n{fd262+jsdK)LteEF*wli|2TQpgct``14=7#guh&ut!}s6
zod^yc_f<mvYK4gVhDvaraU2=IIK0e!KbDc`05|T%eor$JgRQrh731kU>~P&aI`E;D
z`jgk$*8u>8|6eLgXUj`73^aeVO12of4&kzZ$3z6YvVK=)@NsHTo?WX3X;Ygi2S_!~
z=!FWJ!w#x#noUhVtGUN{{FFMc6QR@<r*Q-#ko_DBXV}>Zbkn@}O|pFgffc$^j;iLo
zQ*a#mI#^GwHs<&rE(?;XQd~K?_HKCYD=af9Jtn2}J@lEchk!0xJ<<XEA1UJ8E8=;B
ze&89tt8@>cM8{UDvD(}>gYA(3RSUYb)S8FM18RIVKT&Wz5>RW_#JDnd97Nw`Boa6r
zqqt=k3*xUk%490Ct1cNc<qqfmu@$j{BO3*f)1VKHWx7%<i9n{4y&Eq8IRL>7wp^$k
zfHQ(B4#uNU=%h?cpcL7|e6tL&d8mAvT){*k*L`POF0rRCOT%ob3lh*&a1;9a#D#=(
z*60T$09d~>rAw$vDU0O&P_k&`{PGwG8LW1z4FG3;aNf16Gbn!VXXc;U5U%zCe&<1#
zx~UHM3#H6&5OT2(BvJIG4RB`e2M--bO-eEv(0Mf%!hX3E3YBjIaoV(RP<>ep)eVuA
zk@o#{ylPe@o0_9T>?`|Qc+Ac621|<E(eV1yign;}&qR~q$nlVk=>w^0u2&^2xZz4#
z&dlfyj?<8c0r#eiB1ACW2k(RQw$%-$kq;v!PUYv}ci-FY|5>OFHz`y9pc?gpezjnh
zW_5+63aa|H{4RC{AlnwF5!?8!JxIFImu~Bj4C3Mcz*~^2Ov4P$#P83O-iJ-fvhg(x
z*_R8@q@`Hp*@-G6=T9<k(ovk<^7u{{MtgY1;<7D<U$PBqSzigSdK`xZIXI&AJEL~b
zH(fQ%QOCU~rbS}awRMpda@55vq{H)zb5)Q1+j0`P$!^m_KO@`o@H{rURRVBx9ei~@
zzbunXW|YK2MKvYA?YDv(QN)1~dU&O17eJ_=#I_DqD_IOrPq*F9qT?QeRAeVc=xXq$
zWBao4MjLZ;q|xSd0}SJYT~lpw2z2Glc{>R$>84}8GaDkF3-o?tnl{9ms$b;k6sVqG
zHH=N@pk1zYR1xbypM+DyBm`z>dg8x`=S!(h_zpqop?F&mFh`Q{QY_i9sm*-+_zm7K
z@7wM~bufT7b5KDSlvg&Ji_~|~kWn#p4+FK>4_PmV`%=JGZ>GQ~(}W-g)UVDOYmcmM
zlQcpC&QWYl7-q>e(lA5%MJ81`27JxUE%4S>_JwI``*Xl>`xuRbeLC!f&uMN+Hd0v%
z{{{EFT)8Hb>R|Ge^%I^4^pd4S{k|<VN?eW;&jIAcc~DWT0j-B!JPN5$8G70jg?JhG
zR<gd;7IPPy5s-$E66#TR5FTVOuj9ss46(FU`M$^*v6#_mN6V3+v<S6rY2b)br328T
z+l=beE|E{yt*I4LBLOT-CugPH%TIE_hV*yx!1we^+&o4XfzIXV+hR{-0hA)rfuk>Z
zix!3C1|G8Bhtw<FY8wrk*VB*VdIvarUj|prfTD&j{V}lZ&W7qjbD8*FYha5#p6{RL
z{^lElD+<6%Ylj#(iYXYHSDXH$gK}1uLYLjqN$d?av$A=34*uvWDNfaeC{xxSwfh34
z7zI+N#f=>PJd0_wV17ePj(C;If>h*wR*Q<E5Pq~qtj315p%@ik$wld|1evV(C>UXc
zBSmHQZ`^J)PAImAtSqk#4goXO8n2F!(C=ftu-JfBqVq;k{MnHq7Vn99o1BA8>LQJl
zRN(cq46C*|8lhAE!N>eopT0Xr!_)$hz#t09y2*~0^7fX6;_bj%k6KvE;~&(dx9ik1
zr_VWWG2L|uR6s^>VKh91SM3Ex=b1h_2OROjDMGlUEEXi%{_M9L;(*a~W8i7UVR`FV
zaIE6}_y`1OFpBuR4VrUO<2$AmFlTEBAvwnw#Fx8@H8S3XuE!`ZtFC#ppn8sR0)JCe
zEY|}^KAr_76$d>-<rF(SP@;LZZoL2uGN51#tPnsNm1IyTfmSHV#W?K{6bq9HfO-S_
zY<4Q5ZRpKG!=8u4GybqhA?H*sAa1|8M2|W9Ms`md(`B*Ghc%MqL?u4<q~1+Q3<kC0
z(L1f}Z8@14>sTQ|ibD~x;nJVKCW_4t)~mCVM0M)u^=T$xf(9Jw7iqmu3;0d9b7|K=
zK^VFGy3RV!)O%Akk8?qz{H>Stc#>3a>Ap_sieJYS8b*z_hwEQ74B$}WmzVaqI#_yy
z#{OpOT~ZN|<zjs1&G;+s9?V1@N3AP^mZc*!w7;)EL6B*dfH~@YuKK}W(`Jha?t1As
zR#J0rQfIOtIAMR-JO8|)jnj2dUED;f-FO0?Jn7hG4k_`z=<A<JtLpP-VT?XVBRxod
zY@1B7G-=e^MQFzPbFjf}!C60-y_o$2MXaF&6B`(6*QOBv^!(p%nL{y(0nTfvgs;N{
z)Q$;a)C@gu>fZyF4nYe4cT&>M#$#pFBs3Ly0U?P-c1>8Zls?iQB<WMt^Q`i;&;q~F
zs?jb=>JJVY7Kn@uBM**=)jxU{ZdRYtd}yV?=e(Nye}0tKjvjjB37-9!!rTR|lpEjN
zdyxB)nx!S9{WF1>)z8!eB5F0!>UwCIy)~>J(1xd{7<Q{=Lx`(FMe(q+ViO!Npp4)+
zck!~}3d-=;kAkI|^K8DWvvr>&C)Ng|i2vDpRhRpojzMKStQLz=_a8n22w4b}NWVg?
zD20GDMaUtRbg!wa`KP>h;ceU}rPS68ZkSh&xj#Rs(i8?ujeZb)F_q?>wMx4@aD86T
z`rQUHRXqiQ{KD(FHdVfv%t+8CI++i<-UAv1g$0>jLg4d5e=%xm`NuGm4Bt$>4dbc+
zEv~FL^rE2IKS=-g=j&g!mm^d-4Z1bUO$f&1q~iFBC7|9)byef<+~||<stLUMHEfpB
zs&#~^ix%S=m8T@DP#hhGO;l1<YSg$GncLP}oO@kv0xKDoh5O%cz|$lZ+Ta(BJX_O0
zykkm3;k5J%T<%NF3ioz*tm5`D*)32dc=Qe27~O^7e=(9U><kE#;(OB(P_rs|!p@DM
zO;D5T9bkWI`u9tye^r)Tv=*j#@w_D{Q3HcfRZcnQUG|hfD`IgiLr6(8A9h&)<L#lQ
z54*4B8yNWMQ*uBVdd!k#y<g34JOwe)QrN|>m`N)#_74rfg15{Xy+d)SWX*f5ak(!C
zXeOcA-%kM@3^e_Mu=Jh=R9@*D3;LCkEpQqPB7289%1sK_X}HkN!_?xd$CYkg6fW<n
zI$e%}L^>BWUjO@-&2$zuO7~9n;|a(3aG!9QOD^$Lj^90eY`hA!!Q_hokL~yX<!L4n
z%`iCAi&(tax*f)K3c7g>#a3wlokd4YMZa3vC^ZKUs}G&)VrS{|&ZsVbQ~i%f;#uWa
z2+fvfF9sHHP4MfWK7nsDb${lcY2$SBM4}0;ak;?h=GX)^tzy?c?F6I)?Z4<K^#bPN
zr022B00AR6vj*TOhU?`x|4xZ5oOxmAzKDX$D;5RO*sJQpiBk{7kNJPGC_J4F-Fw&$
zvySO3Y%j0h)a!_Ix8eKey_!8~ZlpQenfAgc@tHiGIK(CA$>!vsQ~)Ch8pYS3pzck|
zVY)Gt7f%;6UUNy4B*4xQ`R|IH7T6p)X~GkHV*6+DJQVReDJm_xSKy}g=&EVkwG=dQ
zn7=xKLrp)q7oP5~UQOH+cg%mM-bOt~NzppGVw1S0RNCC@2nhWFN8ewRXS^>3-w`w*
z4@;YZ?tplS)1Cm=><9Xn+sBLS^MwCCyt#&rkbKAJrP)VN*2XyWlueUl8d7-v_X8+K
zLvqR%cPSi}o`ua9y6$IbfO^u8e<?SIt-RoBNREqU*E0!o#Uqp#1-QS?9r@3vPjW!B
zg{Yz?1y8fZV$KWW$3tva?)^J%W6i3niT1}`u0)WWeqd!0@(q`hU%gKcwieI?zCj%`
zuAP%TSam!&3N&K7n$z)jUIG7ECeBTgsqjW|_{EY)B3-C7|GBl)hJCrm-=AK3I@YT&
zY4C`9=OLIhsnMnrrG~8k`EbsdaMx)NSuvI3fQhTQG_rq%f%yx9<5@B3@Od{IZ3Sk`
z^_!UO(KWTbZvT01Q_?7jzSP@JhmMmE$8KKC=j9QpmVQ?PWS_}yKwEMM%~n`Vm5jc%
z-&3k$__^8N#Mt=V*gxDYhde}K;T5{$&c=ml#X7R3MYIt8Qwe~Q_Hh6P%K1IG%dn@X
z2Q=r0ki?AVY1AA}x=!k_JTv`=AyxH>$ajA7^5W2>WSqKmpOnYiz}}u)8{^IWe*IhE
zrgt)MrC|(@%}OWlrkr=7hQo5o$cRb<&fiR@^dVYi=Iv=O3Zk*S^Qqf{KYV=)RdRk1
z0$x=-z7j`&T0a_XKmFU|Higqi-Q%^%vjt8nDyko(fAgw7GRerw_T_8UH!v;ulkp-m
zGqDT6-(C^Ff$}_w0{E$7m37uGz9cZ?&K3o`T3g@z=ixod%gYZo!4o+jVwvu30IEk(
zQPIJH?f1KGPtyaOF}{K~V6Mc;#s<(yP%!X^HJ9f{M_>N)?H9AEt6jPi-T<wHI5aed
z-Iz#B>@9eC{8ukefjY!+t|bWkB2YaM&ZoAw{(WqktinR8-GvUo5bC;hXcr)GVjv}j
zYvOHw_3D|gep@*wC#O)qO932C_a5cL&@BJ??dHtH#F;Lj4uBjvbYt!0aI;3c(Wj|N
zxB(k{^G$%+TA2lx=d2Fp5ug34Kks36Ir|bS=l=JwuY604E>1{DptwA0b{j2UjC0(W
zY4lZ7Q@cY9-uvW3@ZJvx1_y0HL*BQWw=?U|SEh!|%L_9wH%kA3XzjlwBqF-FIIJNa
z>jv-!Ni8icNlD4ShK@jq!}?u%Qqt^PYsl5)ke^voRJTv5t|qtm_gg#zU-A0&>sQ;=
zEjufaF*<zsfc0nQC;}|m_)EYIY(b$aK=>dB?{b;(rePz&nZf+~^ZOrKAFP3`_GHK{
zx^&dE!UXIaM7|h*Mn4OTzUfmNTU&To82^61EEobNmu=s%G1dQ!oue*Cbo0;0Rv=-;
z+L#hJ+p6E$vHbG_@$N!M%cq5%)YQg7uNo&<vtEK{T5sRp_|K>N@mS0>Fu5L!Z&!_O
z&o<{M(Es`7UIV;JwuZ{w+_bbF?B}-@@hr`{IXO99&$gTYHxC>SP5<*HpgL?Mf=5&C
z;5}oTjy3s_DypgZ{aJq|`>Jp?6$Nr6yBnY5hSL@GXYqmM2XNmgt6n>Zs;*{*)3N2h
zv!bPIWo5<Z=g+f7CYNWWx~G>HHJ6+H8M0sr{~6c#OPM8buRJZS&|l!6q(BGdoI!Tu
z!SuhhJ~l%c5s};fKH?nbz`#HinEBQssn&&qVDWQXEp+SsHNc8p+GwOIjPoVO501Gw
zaJvauM}hz=z|Iv7h{wPHlmC+A?=>3e3Knsh#cUHe6E5$MWt^`l*0gnWq%hz!-f>G1
z$cy`p2z$wK-mO3aRUsQye?$77bmwa0X>D!2nj2u_Q`B%SE-1kNckb*I7pbhHm}(?A
zwcR)k+}+*x9r&-_zcppLNIr}<0C$w+87dEhL6r1*r>9&dn22Y`yMmX;UGjsZ_A41_
zZK#61m;Zb}yn%^{YMs_#it{BAw~9i+vuV6=Mm6v@-<E<UV|vR*5Owg}9kbJOOhI2?
z-_US5L|P!@fxh5Y?M-`o`+qm1zyRy*nMVCMdtq~ptAo_T%L|M>r2^P2Ie(M`$L=1Q
zekszJ6=vLkV<TK&VuFW@ReanQ_8boi?!6%um?`ukKi>!JUlkLf$vdCG1zC<ikS3F@
zQl8)i*Iex9fhlxFsS73GgM6#ZYipxBy-!tARP>aZUlPmv!@<MQ7^er<mzy?e|J>nl
zas}Q?la9X_-*izlmpxdBHiL(TK2_j!vyJP%y^&qaeUY6(W1UfzM9-&iIrn`A+}@Bg
zrUBr-_=KZ5>x!J@hE6c29)Ku(i#rHa*>1bhKhz%!86|!?n%axlA@?st70r`KMlPn>
zmcl6<_J(YmX<j(=wgN6CvKZWhxlHQrBL3z3d4js@D#e(Sfsqjj2P{G?#u=<QAz|Se
zo*VXx++~Zy8TtlBZzUX}g#E~k1>b<HX5YP54JNKh`?FoG)VH;?d;!Y`qvSJKj3sza
zxHJot9A<k66_tI*EN$LJ-{sstIRIC1gUeC8Fbu)9+YXz<iQr1ev(Imi0fO8y_}<9^
zE?z()dhCN5xH+v!k8Lp=iL^VqAB`KO;R1j~9N_lBRV*52a5r(4_*|g-KL0PppjKg|
zB2;_7G(uD!+^)USpOr1kyKn8czKYA~e=iqs^cSWrhREr<1%-1m#{gJ*|7HNV+y&W1
zKB&$T!Bh71ktF}jH_4I$*yOjhyyg_j&JDvxVVB)KtF?~GQ5S%2cltl7&cY$8?R)#z
z02Bn3R8mDiTDk;8B&54Tfgy+PR!|X;h9L(;I))fvXb_Pc=^PkRIz>wQ-Q&IAdw=gA
zFtE=#JJw$7S)Zrlnjmly@X*!P93m*uzYMe21WdwsR?WW;`nPZ2&ZhqL>+=_+ZxhHt
zfV1$=bX5VHmRuCQ|2m?YaH|bWi9nmG2@{{!9QJM_b?qK`o2LDGz;D@QVz|G}U}A7H
zD~U!Ojq>213TZR(xraXQ2y!|2$v`v1I4$gFpZk7ugimv4{&Fc8`eCj~ZSVD7z!yFN
zz8*C(rKmBKf&Z`Jyuzl<2oVyiz~$?WlZYx$w?_WP`1L0dCFxH1^%0PhOZ=|FhGz<~
z0cyaE132`#)briB;XjL91PQ-l9XltdG6fKE242_<<$_Sa=v@P6T$dXF2~V}tWZk0I
z^Qg{8)}_!v=ObGF&r`ae{@wu$zr>*WGO_IjJ_(6*2dvNPCD1RdX!ranBCEo#dx<)c
zI*mr%&cXR^2^iHBFe0#DZe^0-P@1@+e*pNlnAX4m0~^(q5%4BZx{lumW_`XEw2aS9
z57+B4*Udi9;C119)}^Y-##-|0R~0+XnR+`jgc|GMH1fvBrY|E+4NKPh@(`y7nasO8
zMBBS1!k4F81_k!92d)NRHkzC<8UVs;Z*T8=uyGe?<o}M40?*b>^X)d=jcc?zNmc=<
zR_LpGFvK$)wT<n0Z`{D6hhhPz6K-zHb7T$tmIU}iKt&_R21PJPHi3ZTkUlF)54fI&
zODD6PDZFkUStDRUDh+y2e{AaBS$o4F_9N(>_`y`D_=6*E*0H$;@Er58UklXi_C?VW
zTtakL1E7BD{&Akn;k7w-r^mLK#+n{v!ZWuYNNDq$4F?Qdq4D^5vQOe7Ha6#rLDvr!
zr2|&R{NiGRCfj{rdL={maf|Ph4ilQWs=AtmnR(i|gAQyv>!r=p<KrK=@wsvSsgsVt
z4kz^s@()FvR60!D_W%okY(c4|rl<2%R=sJfBc<&~ua%MknZro;7K3+njj+)Y-OK#Q
z7oUhchPOV9Wpwh&Wbl@Z>t38zYOGq8_6*m=!^L@PG$uZ57xDqIxpH?M^e&l(0Ec{P
zyxrOwPdEp#Jp5>&eY6u67U#Xh#c}pX-QZ1fYd4#5cC?bR<TCT+o*}@QKV+uig6YTg
zCBrsK;zrkhcU<Pyit1#y@ppMvPRipM1zg~|wWw+b{s4$tQL=jgK%_v;V_SJ9aj{$e
zqvcuyJFb#UyS38U)6)n-Bdt-IBd~#v`6{CJpS}S;!Y9h0sz%oI_x3~z2-XMS+PpE-
z+<Y(Gdb+{e-QB(M__2Sv<?L7EDvdC@)Bz4fz9GWzhmniyq#sR71xKb{uEon3Hx*S3
z@aYQ<)3`rIbVcxR*NM9o3+{qlI0e5c-`~n=Oz*|@lifB1k~qb%PKPd^;jYo$Te<aG
zT+PHi>s130^BazbdIxnY_*<_gBYOYfia6PCPEx=6AFgQgXqS*<G7pq*Oq=K3D5<DG
zsMHL?NpOeCB%<QF*J}bc6+P6<RoJG`oG%C*!IW(28LM+&4*;}LLWi1_(G6^^YbB&q
zLIVJR6c-V+?ZC%9?#a5Sv>4F``(Ab%?TUIF5%{;#^+xYUWzbH;3G!Xy%O=Q<p*%CN
z8*N?EKr|W89ghl#W)H3oWeIkD4nN8{O)C^~b5e|oWuVuMcgM`%M{^-;esD3eACAqe
zaHJ~7c!+$u5$hq)I1zVtZ2A%-kx;}jDX3~|YkLkt_@ZwZ&nfq@t~i$4wtXN>1cQGA
zKFRO&KjW8w0f9hpJlR<tJ3zU-fB(KuV^cLlfv3I)0Pu`iifU2a<!=U#Mh$h(!7J`y
zXB)psqN98GdTOdtS)fmev;4ve7@e3tzrjKC3ugUcqGJ%{rOM3=4v~!;VPbZqP$T{2
zr(vckCTvr(2B85;@)XrQ=j4plJ)N@(Sp{+RsG4r%s=`<C89-__r+U*MrH^9C!C7&o
z`;A`w!bA76*W3bTqMOGNXr1@a>ro#<Lpg^;qk;#lhvV(+JqU+^O&9PX1>R`DKJdyW
z<l>Dq0H6y9r23KP051}-od7c<n(DXQhV%`uhG6-@A-uho>O$Wb+=3xAH{KVgVS!yq
z;MpV#I7J)-PbSsX)v*@!P6g4uUypmnL>tVP9SC*(5q5olozX5Fzkd&0ae*<WUX>`n
zMbCu4I>D+W&0B#Mo3!zc8yFj6G3t<m2zEBMT84Cad5aK!xC6@B+_j>{d4gHwXrUMG
z`$%V95E=&T?%?pO++Xz=C~Es%(8~*N8Et|6SFXPWMT3EzXkK=<hORMUXl!7>TcY{(
zgnqNLtJ+UC(NO+a48WYDbBRew<5nIAOP2r;)6uU*c77?pJ-E8IW}Js8JogIT8~loH
zZ_j<7Gyl~up90ff^nJSDDC$N>Tp>LGazKmqZ?+4}aWwDOnaMJFsm#}U1gJ|QB2>=#
z2UgusT<Uw{Wp@0Kjh8=2)IcTkPHxe9ZW&@MsKS|V|4pxZ;<~^ZHp%C}OM!*FAUk^j
z82^klU4{{8Iz7@!k9zy{E1LZ0<^|QyshAU+x`J9-(8O-jJJ`1SGv-bhezJ-)F!~jB
zE;%@wIE@I+NmiuGExoa3UkiJ0mZvDUdGwFxWeex@XPNM=hFz5w|Iyt(NmD(&aRQRj
zdX5u6o{V^7{k#K@PnCrcC&eub3pXDsSGCIZnjni`g^^;#Q2ALyi;}PH_BXF%a?6Cz
zbSLeAYeE!6kV;!$EZGCdnti0@oD)VYPeftEaq+vk0B#*bR|OVR2V5XweSy*3zS&30
zJVJqw3u8=GQ{k~YV7J(2h)^NPE^O*)(!@mAcpeZ>h&4^WK9_2o@G)xk^4tVF7nt$D
zL+aRadpOW>eFeE419cC`@~A2=VEhpTF>DBMc)l4c4!i_?2;*OJ_T&E$%G9Zyuu_(;
zKVwwL`_isqv%<WXGAbjaW@Y_wL%tvI$tOh{^bdS#HP?e>Q$i2}uV3X!XH`(pfnDGm
zY&+WFDa*6tNW5y|4y4VsE)zqbiLEE2t9jCM`FIX&Z<x!B4u058YDPhfW`%D+@@?S7
z1FWBCXiw>J5GUynVk(xpCUCGFL{x8M5nlK0plM=(b2x814{q*;)3s@Tb>nG6=T9gU
zm)n%=>VsrKO`#<`u970nQ@f|Y{Kf#$azAq;k{)Pu0L38vZ;eiWzuM%C1#tIJr;P{9
z{uj}jU)GlIQBj%zThqvmrcU4yHi(a8I0Z&U9_W1<A)*7|q4v!I=R!2ump~H7M~8$~
zz~S(M0-M(NfuG5L0+S;=#<zQIiE*2gzy()ca=@0oM%p|$5cnde<fE#q8NwvKs<4j&
zUl*vGi8wm9;?pquuTP#K3kwTAcJjkxqY)X8^;d_-m*6d*YFrK%(YoWCpk>0kW(!*@
zXY*jl+EM2)y4`|z6Bt^$>a&sn8#>_3%yLtRoo(bJzYDlvpGdKyN8{}<fa<hZCG?p@
z_QYomQ)zc-;?b;IDtVV$VxF&rF05ga@eP;G$xT|)tEaoprY1F7D}#seu_O$knOSNR
z1NGZCwU3NWpFew`OpxPYO*-(}&ByNF>0ZudRP%FhNR?=-%mEOE?I%$JLPCdcg7>-5
z;B0u4%Zb^XsPHKH=m>ouca3|>umdLWX;KYgj<V_YrW!<q6&C*((?!GBy)A8D*f!}i
zp)HG!>E#6mRaY+b9jp&S6xl!^&LNq@nKROApC4m3S@M@g?L6t=L<a!pW3S*(j4fsP
zVEkiP?29RHStPKHiKG#&1rNdyqb0zCR{?(irg3os;?C~)?*|9Oe^D&#u+=AyS=w3z
zgW!Vj;Gqi(u(zbnOVZ1kzBxQ$*vpFa8mBfCTv&a<q*A?1shr^8l>6l?-FbYEfC9(K
zkxfopB)bM^83St+db-Mwp=X|2;i&huap7j;o0ow#x-Qe_eY6~#_E$iZ-;xT2;2dA?
zN4eeeX>8e@O_PW#vGlA|R)VInaMaJvGwJK?g0}X+ix5e0R^wRamfw>=vY#`LE&#a2
z<9+DvlLF2m%EVKXRlcQr71YXitM8sY_u%g7VTPFxUeeLh1}3_Oh6ehioOkXA5r||&
zoy0;gz@Q?{gY{+a6K4lrx>8aTE8hgLWyeB*iZ_p0p)xro+os%FuprIzu2qGFVT~Im
z(?|&d8L51Y`G*3<Ul*TF>|}!CeV+2h7noJ)>Un_Necn#8s5xwiJU}%!U3o(wgKO4J
zJ7yD@px1x?tnsuQj&CH6E^)MenV0zm*o55r=oH@edGF&JnmS<VDo$%T|Bu0=SrrPU
z0vFwn1opyMlg6`y$()=V{~unUt0E&^>#N}S#)F%j2+(*8jhO;FTX^k5q7R!CGA0>k
z$|Etr#nIN0zn4Fps<eVab!BD4r5lNfqLmlGmm49PXs~lrKS;2<HG~~(J1`mr*MLq-
zp)r2pSD2$55^&hmp?L0V&-<&N@^N`R*VRTs*Eofs@eMoIE__x#a*BEc`vk{LrWHRU
z5T>EbTNeDFz{jQz-73zZNJ=;u937~#J`~_r1)P;)3X4EVNyKo3(4F|_w^e$C^3sH2
zxUGv-su{iy*XkIsCoE36Js%;qM{=Yx2f0~*`6AM3l7Dur=imn0eDUUX-$;1(N3U?u
ziAI`DIt08UYdVl1wW+oBRW`S~%0Tr&g{Nu!@l*_OtOhM^atx8T`A=~CgO#m|-!R)L
zpUF)C#7IgZVR^{x?idZc=74vTPILWY(X;G`vgAzEULfY3J|&0I=Rd$G*(~SI5Qc*7
z=E15D@2tTkKu4i{p~3z{CFcuuO3GE6Oj=Fg4bOpIA~gG;%(HXV3hY+-0j9%&%C)1w
zo3@f)e$h)XncP*Bw*sk6Lg9Oi7_kKxkaS^4orZ^qRf`=V5W&!*bDdANPNX4{TlBy-
zJaJp&%ax_?aqttM6eA7N<$b4uYIUoFOFW(bUC+^^>m7jikNadAo4EKHfVq=lwWk73
zHVJOhZ}4$H^NxYIQb?Ycf2pnkhtQS8%GP>B2OS|}ei!!=Au-YE$bmtk-oZEG5tT`h
zw}`3D3IE}#kWQn%E`lbxHdKHaYcvl}5%28PX+<6~7ezGm4CH;>=m5^RWzAD_#S8p!
zZYc_qoMJzww4R*%lWmRgpL^M)Io%JTvBKz}`nnQ|h|FC*{jt%lkwWHTJzGf!<%G*c
zjXqD-4Z7fT*L^Vae8XMYMsY)S;XW{BL^*>I{ZUUnoe)2I>-wW3S#wOWRUZ+StX6XE
zrJIxd3h;-^DgA<G?gx_Lv%4)*bIm`06@jA$t|Vrx=XC_iNQ*@}u20N>^(2-=(WC`$
z)j5Jrk_Wne09>gmXMkm>yij!0+EzS7S4XF->3fs4joNUFH0bTR`aSs&H!~Kj4huVQ
zU|sZC^JzlFQ##2QuT_^<DqFR1u|ucQKFue!)cpY@yu_r*p38}xc^TUi^^U-)PUA~_
zN(yshahZ7%ZSBQt@-Sza>*F)+EDuX&YLdS*S!yiUOIFu{t*QhAY<L&z<nn&|tS(3c
z58pKK`S(_A7j385nBGQGi^G^NM^qE1q5wh%QQlUiuilqKqxr<sG$UbHT52>8bW1Cm
zO;`)SKLP6&Y6Di*0&rY8(Lf0&*QTRC&9QBg!c7gO)_@aUj*QCtsNdfKQ=!8TgpRgh
z?RS)UY-m?vnI?I%1|BheBqtCR2>BeP#!tz4J(grFTEGq?OHEC)*&3SqaYLTb)$z%r
zoMR1s4<m;Adoep?7SlJ?4D!FQYet!42Ju&k-Zc^B@4AV&yFcvDc|q+|_joWy<BLr*
z5+46<33$&=PjmVIl)eJWf<}aR-oP`?M%BW!B3jlQIK2%Uik=1q5rMFrA>c_64j3it
zBjB|Ex1D^nX0lSQs^r-osGQx#YWRaZmO-CJ)-fAe0=61G(ZHm$J(OOt5QE6?f4QN?
zHp|}k0kpt$mG+HZl^fYs2C=mbdG=$_stmmzzZl~VJfQbtbT9utU1wn-uZZ4jWujRB
zOat2}I01Pb8_oUL%Ty&uC`>1?s?kF?=+(Nj|I?(%&G*aeRsgky#Xpd_R=`4@4=#^C
zMs;3XN7lBz*+lwNCf=PR{CI=NC8-S=dK63*KcqhnxBk@f*dhjYf*9Ny?`9FyJk3dU
zck^&wEL>#)s|ML>uIwh=m`Ip9PVQe9I)xYEnqguHC`!O$<^+k?V@J6Is!#t1<YUa?
z+g~sJQI^qjG>b&G=+Y%KSmVW)`y}j&nTGz-SLB%D*;GD2stiOrWqK4+*~V-|!bIK1
zopkjN3P(upmXhTuC0f2;bE~>Io9j5lo;(G053N%CBRF4dVK*>yHOj#Yv-QMFCJCdV
zup4!l{iO$t#cTZ5s7wMzpn{62W(AZXA15a#G1OaohB-2u!q)6u+v%~Ok4RGDeoWDQ
zm8seEMKyVC<OcBn9$aR}mc{q1KLM7LcD4btW)7hZk&(Sg<HEqCR(b@uEy5(i=K&__
z<WzAhK{GIL<*|n;zdxX&2|Gd66`&A(LAq;+k5zuy9~It`xa<O{sl8{!F8|;zJ!Lr4
zBQJ`vl)c*@l-)wjg~&o=x{<6CgDh5VYu?YBM6h|9sxZiqjI3tKep$N2;gk1~LYw@7
zQd#Pa{MJm>$$NW%-~rr;Ht^jL(M@*G2K0cu)$`+^gsb+)71H}t?|r92+9^&9ORP!#
zA@ML<qsG5os~6JR>BSEErEgw$$PGCC!NBtH;csj2U7%I>6fPlW$&cEo<v<v3H0jVe
zt%w-D*Q+z2V~M0fkB;U$Ses9}B|vTx4Z0-Prbewn=8$fRT>D8lA2D_gUtn78U<#rt
zJTcqa9&8EmW;}!&tBp=@iphPWxllXE4np|zLMz=9^2EDcbsN#044$KNvPq1c!_Yj7
zx&E{VM7qQEl?qE5_c%|L>tPPE#t<T;W=(b<sc@;-2HiXs_{@o}dcPwpE!zP3NSC5o
z(R;jQ8-SDE2sx7DMuMV}uQaQ=TPy5w-VK%S$XcQK1gC5r!#OpD`TpBNW?$#td(JRS
zWS4On*(tIgY8(N#c0h1KQEz~d`cZ;kW29Zi+0j`uE_(yY!arMYnl^Z;cT0^6yFPEv
zkXq79_!KSLK>*R@28OP^4!gLxy?KHhm2jpFOqK^DK}%2_%sJs{yiP_|^J|ebPEKcb
zpx1zWBH}V}Ns0ZAXpkGw6b(yDGXfo(cq@M>RN!()YnxD`?w4Dx-baD2J`r2=mJ#Bu
z0Xthwa#l!CU8!S{*v2Zv;xcrN<8?!JaQ{$s&`g-q(xok#rx>Q1mmUups+!u>ex<0O
zApFc&EBm+HjYIxtKEh_O9_^0L?1&AMmF_MH>r9?67cmBgc`kd%o#lzp2+7PPGp2ux
z%pby9Uf$ug=zM+Y%2iJdG8UC$XOxcXHfiE{Eo-iNj=;#1Q-ktSlQfA989F7`PBu=2
z^NP~&3&s;e1aBU?!Fukg;MlNGwIiJ|16P4lFr-<+aA=Ti*UG6=swwgyTE+llM$WSP
zeZz7{aEGy<7>20i9_();8BTw;FfD=$(0DPx?=t~uo?1vVF>ZS&OGn$KnIbr#eo1y1
z>D|9E=URITOyzTARV<RzwjzyzK!_Wo!MPEX#=oD9!79j18Y0rCwUwu}S~>Su*X_co
zVLb>nQGMQC92Q8sE1bh{)!!o)0|f)nAGS_R0_{?GCjMvkQl-GrBHPLm^PP#Nko=I@
z%emazSx>nZHYMyg>2XjEbp9$^BEF97MKV-WhQx19=>6Qjd`SiAl#KJeJWx$pn#dfo
z04Sx67Dp)uJ3I4^)=t%qYrm-ynYon%szZxbU$HY9mbeRx@mcoX-ct}qFDdjxv7}to
z_akdzxXnqwkP$siS8Li&UB3eie!DMhriZ^JDBMacSu!DthG1;j@Fst!_{+<)v*ZJt
zqVPsM7uO1F5f_hBd1>I&Oc?)Z^nSJT-rOCBE4CR^_XN-1eliDl%)en#sZU;E)Csci
zXojF>tYxZs^c_eLa_x3k4^HgUU@Q-1=*Xc;SEBsOo>TF(`~^co>l!9Q(!5yPrXt_z
z*Q}eIzY8Y`e(r4pn07C5yeRbO2Rhqy<}mIbe=7c=G2cpz>$e(pwVHRDPPP<PRXyuI
zdThrkj)dtmC@&W!D^Je<)hQ}k?>A;Is0eJHC3b=Iuj}BUaG?qD%tJXiKcR<#<H{^0
zzE&$TA*reIt1L(ve4TZBWdEI_qh?JM9pGgYlcT+};Y0(DzZ%a-kl^?p4%0lcOl|XS
zVJOXinL+H-4B=ZRVArx)Cj9t)eBNpP5%ocObeq5^#<ko+6}}<t4GgtNka2xoGmW`R
zsd&5V;EvX(lweBg+HDy{pSP*-*s0I)My`sfsUeU*ib@@P!uUYq_i&kQ!vxSfXzIO5
zyf17C0^}D$w<>Tx_r4}$&mwB}L<OWDfdC9Ra6*?9r1SMp2DF=8FSrBugMm2@DJYSM
z&4flq>eLc7;~iN{*zAuy$?hyJQCaFEm)0aZiEKuE<Pd8x^*S11zE7{+hpg37%d`7h
z_LqU^4Ph9k7xP16ylT4=7kMMUpc-?_3e4XKDUj5_A*3DvgcSCOsCLH1%LjxVYupfE
z+v?oB$U6jIqRWG;c-FBMgBzqm64N&m*KEdb^_o#9h<m;hOy!q!4NTvhv{#$HF*h^A
zW6|~4luPLT-ffvWZ#x4FUmZGYV=`0-=70BJZj;6(fjiNIt8SniU-!v{@yxa*2ycIX
z-+$xFlqIJ8?h`b9IWnl|Vx7@>MF;g*s6Kuk_`b%UpPR+K0#~*9y*_@fLo6#gz{aQG
zlK_hU@&5C&MZ;bGAl{x5<OaB^t;w~`PdUK8>r@<MDR4#=lU-eVZ5|sCtiCiSbwCj=
z{CsV{oi<|Vqb0R`%9>!<>)B)}trT@p1hAGJ$lLhQKM^2s9Iu{&<b?a%dMnc3>|bRG
zs6h$ivPHx}G7|Qe0lr9w$r1ROZ{=x0&j>MTrl3(!ReoVwG%w?WtIE{S^$t1^V{g8&
z18v-5cYf~=nw|?fV1*NeeSzMAMi8o20X`ot$fFb$gJ>K1?AyFxbxN%ntTu871{EAT
zCScb`nf?C8Is~WR26nJl0oxfv?#grdhc#6qx=%awcAnrQF2#dukRU%@nmr^mGVShL
zHwzZ*xQm_!xAqzV*qG}Kwb5c6$Opj>fY767b@y?#KB}?~FAuo7Uq0TLD(EQR=vCo<
zvbKD=$xr)32(eE%#C43oMt~IcGJdoBUciWK;rn*kEzID1&R5E8mOOvTgSNv11GlNE
zkK-~<pF6GZO@fLkD14`nDXrW50uA66+Bt!G2NNr@D3&Up<Vg*O`wEz#wmMmYs|`+x
zuGZ)TDW`5EM5ruW`8i#)$==}{f9|8Vm6vOZIK;3RWExbqtj7HF3Ep=3hB8kCXmF!Y
zor$^U>IS_mQLm9tW2V@ngq;m=kBpF`t|gRIcnk044ymv)7vhrfX7Vezo1$=Di~4|L
zr?=AFyik)b!8wBb`BoUV_Tq6~q(j+;L5G`-*l)u!r|a;ocG<@2%SgLzi9`*DHkV*X
zb#?Vn3nf(|NN6PjGsy!lzlHNF;Kt;v{}a4IMHq+r-w6||UfR6CxFgO^Bk^dE--f45
zor7#`4y+b$eK@{U+e{mbT*u}PNOa}FO`DzhCV6%3liQFAiwVs~SK7+sFO88C<tBuc
zJ55lztAU_`h4z4zw$8!49m9d+NvQ*#)Vp_yt}ZT`8X90l*}N~Aq3!i(XGO!fvb#bN
zC9M?QH7+^w%B-#`9R4uzJivse=A4hHjm6NS54MKQ!FQgI@SVS$o*uLMDi{Rpbt=G1
z+?F5WjYrj+ZAB{?a|e_N?7opW<e0Lem(q{NPv<%qA1S!ms~@HF5`42iclk98E`bii
zpF(i!^+SSe*3nSL`NJ9;>c=m?qzKqq=w9C5oM#j3i^$jh0a9LrbyvY*iW10i`JNt*
zs3_Lb1O|m|gFH5yQ+A%-)C7;=Dcet^64<rp;vsU(;bE{c4nw6ueR6Pf?roaSz6uWX
znRutW)u`^qp#^+kXCU37kzZv=VG!%0OfZ!4V1B>orbzMDqtq`F0sd7l<@@!`HD|R;
zq^)f>2S=+0?se6?43)GC6ScV!K13iV@^A^@i!cyDn_@QYr1An}Nrd>-)w&P8r7k1(
zSf3~d$sDI26AvOqe2=piw>RrD^-;?YC&F>kl^mA9BJXgB800FbD}X=pBJ@QUGHGyn
zY4B5mg5uADv9*5pHO+f)aO_HCn3jq7(HO4lyfl;n1%K3s57%1QUDD_;dK}|4G}`3b
zB&C+vV(V?G6)*2~<(N;_A@FMpEigcMlJ1tCwwyHf9l3$oz1#-p;Ar4@iIJ8#l|L&Y
z6?Deq$>vC{ghD>dI$7uOyCqQexJv63?e8V;%|@%0{H%<HBRANr6c5Y#{t|}4!8ca(
z$}^%+&E9=v@_N7?)(9+XciN43JR@;E+T|RRHp#3BqH*bSvR}k6(!tdS)MJu_A)<eS
zrK<Hfuo_<m@#I0;hbQ^D_o!O~6!8$SvTQC@*z_Kh6Q<+N<pqKPgyzeavvAL8)*53_
zy*t+e6$X}@88Y(s3B(IOeT`+#akJ@bTZC=B;LX2e;TgddTauLMGX09Kd7e!>w3S<#
z8=OZsvk#ubIJs1msVNt9VQ~L8<gwZn!vlkt`Y^b2%Y%INUWz-n)y%0Mb}cIb`*%zQ
zM;XA?pBLM7rHiJjQV9n}#%eA&kq@D2)C5vVlBMUQsq7}j>P|iEZ<j&0Hj2k}OP2_*
zz@~^f$0bQ%_HoM`sX(zZ$ZF>0`qNj;W6Qzbxq_dRC^Mh+W^2)V2+p@zUxNvaavlM~
z#VL<Tdr*j07Ml50Z<S%%WGkS%G14bx*;hqlQYES-j@Hy9A7@VBFckEiVsd>)-2j>q
zzHotL+EP9dZ7c9kE$v2-vhIUm4J@#gxp>wwTTB?kR4)>Q_FK0Y+`UDiH5Lq^?o_xn
zx{HTivTgEBzq7dK8+Oh=_XjIw+IY?pp*REE|CsFhi`z(R%_$j`X56E3-8TH6@MtHA
zTk-<1J4msQru=q$CaWE(B;B_f!PdLPHoZh?=r=HjF?6R@1xd-6;@Tdw-k&n+HKJ&R
zaDEpvS6B;DrrMEB4+Roe2<Vm|dWpBxlj%<U=RB?EdFu5d8%+a;0V<A3;_@jn+G{NS
zt^_A+!S>gxDm{*NCq92eiiy?(gWm3RqgB2<M~56o3s}!*i$euJFYqEBuxw>IH5ULX
zi-v2(DyVVc3MMmaHyL)4+va=6*bK9up)$C-SkYXptT9WsL35IB>6kzI`*-p&e^)<u
zhgoiVzdg*dDe1!}$D*AMw7l!Hw{D|VUc6XDnO5j%*E%(qZ&VI7fnL*>@Mo&2y~|Yj
zufU(+PN;BJtkJx)_TtTtZ`l?J`sD%UnDQN#@my+Z?Gb8oU4l(@j>&q>J}Qor-`7J@
z1o!EG80;Lzm)9m6`i+pm?3-gb3`iH;9ulRy4r!lROswvZF^e%xq%R|Ij;H+*pI|T;
zC<WsJuiIEAV)`dFK*3om`vpL|p2MV5b_=geo3d0OvJ?pmw0&00&P%gaG)cm@M`*Ol
zHx94hE()yZrq5Ntrha^6H@{MTX|T~9nU>g!B^X-RwgpwTdY;PD??@}?KrNwb52x|Q
z;|he_1axa}w@M}y64J4T=~<zEVEq%2;pt&T0HC%tH)Gov2?=x^7`6q$b{fcz57OZF
zj!vkDchxA!g_Y%e7Qa!N1Q}w`)|lQo?|<dG%$<Gh+qd?d+}y>5bWm*_UA2`Sv)B46
z3!?f&ZqtCh0Xd+b3^+TvIBhc3z$z#TOp#ik`Y%<b0aIfpyDAC=&h>qKObMk?!$PI*
z*2tY?P@O6|6QZU&AKiI?w!Bhgsjfg8!IQu-89>*^Uh{P5Xo%-WyfwT#-s#+tyF+94
zz-&k{SZ6B|%i#Ou9BgDD3qq}|Z)|)91R+Nu5G$+YGG!4sub?{PK~%%Zx!NkecxL;D
zW!!fY6YI#FK1^Uw=X&(;JpJ<@HWb*KgrL{ML0LG>FBbnVWziICqaCt58FwIK8&t^)
zDb{EAdUS^><DSFY5(@rbR2)VR4CN+0NVOwhfaC01U5xwj-l{2(2?m{HiEY&|ii%E*
zvA4KofhAp=LvEV7dL}6&Y_wG<VgT29X&LA%Q&iY~Emf8f#`ysM8O+`$!JA`8;kD&p
z`x=NuSRLFz-!0OJ%@F~z86s7rKyKhXZv5i{f^p3e;cz+XTn;nL&RRTs$_bzODeS+;
zYW_<^^MFE8J)ufxM#4J48>|}2r9yp^DnwRz5%yV@?##wB<*&@H%fCA7UMaFOI~LY{
zDzEdmS2x2LUEhBF82*JeK9387sDxT(0Gh;C>zk5WuXKd<P~eVQsASkAU>3r^*dGx_
zpiXe}x_opIX~l+k%n8Py*vIq3C-Qw@nT|L9!BQ6jStR0a_(W-SxPDlXG1L5VF4o~X
zuc2n!h<YBq0y1|N6mhw_w-9IY%WbU^0Qnjy;$2vyRH2!_77wWa;@KzQ1oRuRWgP|;
z7$*S|=(7EO6CM+}-qlr27-As4Tp7%`0uf5eyXcb9apQm1p`m7pd+34BFL7-nqpt|p
z)cE*83~NTSn$u1!XjZ3~x--;yJxM^<pxe}+(WmkLvD3%O_o0e^=k4n*L3ooTjuzq!
z9cpEqT=~tueFzH!>VT^tQ&SY_1S__4Ls)qD%IWT{GS}zy+kfjOOu&=1K!1cv6nfUY
z85Au(yAwF-eK$E$h2Sy~j58WgmBmYz?-czdS0aX80fI7I#pj79OMtQELeXZGimuo~
z`$)caLQu*CIBM#{Aw&1n$p}(K#g2|Sfv`(mU%rFc?nJv}B}}nX56~J;1c>q|-kxRw
zQjCLE@xfc1JDhlf-oZ%IS7h_K2Gnu6@VJnp;!Btz;kMe|ZPl*;_PW8o(CmFI!b7W%
zdZPC+!a8Vm|JW1Qxf&Mko2p(k83r|g+??<1aIP*spRSGP*6F*AKrX}8?1Ohcz<tc^
zfcBbC3@GZLu-c!#XYwTKp^Rm-Vipm$T-P+ppZbA2W~gp8&ED3ni!vyXRur)=gF@Z`
z<L+fD#p+cq*ydEhG7(JKGZpK5lV0%A9aueG26GsLmQ!0e)^MY;rsi$YyUlh@28VYh
zJB45W+|lX8efC-i7|5|?Kqq7T;ss8j<}Z8=w9MOO(O~cs`ZHrazKQ+piIAfW`@Nbf
zHa-(+_#>^{!`;{)>UWz+2{R)o=w4HoWTKNP9m}nUdI}hoxVq?@=Rj=P-AeTsYkVEQ
z<oh+<mk)mg`O#^?@&{ks<__y*UIO4jwC%*o(~aJy&xKFfeNFItJfAVLI2OM80pz7-
zx{2lylIUi99_H-sMmr)sl&1wZ-@I(*O~>+$^b5o&csKUZ#793FRULle^0%@5Dw0T1
zw<%DB)U^7Z!pnJ2Of2Lq0i<%C^xFKKVGva!7UWIsF>n8<9#x@RYO;B8FGER;Q;%ps
zeATUr;|BbRJN}u|#_!NIsy7RI9w2<r;l$W>T9{YJC2IX)Ds6^hxg8KD8Yh$DFn{fC
zzr;En%j~Y0i?E8Rg1CU9#2)2FTnd@>VllnoAv2R=^_(86M)^OaQeY$T#oPZMsWgmC
zAR*IdWt?Q*x|{CHk@{_f?S;IOOV;h<!B;c`>%_W$G;^_WCZ!k4k{2RCGTlNv095jJ
zwzkI}w17~fSTrHr9&cJG7=tTWQqVpsbo!J*yQ(6QXDiUl<hyqDdBS3BrDqY}Xa^++
zKAKYTI}+2WsF=L_{L#~__YfLoxKVNp){N++rG#ra!@yIo@<wcnvpKLtEUH3}5b$w{
zqxBo=VeGtIo&36k;7ZCOcA#Yfs1S{esu~rm6|W2#p&p?S-=v#cf%}B8ss8aATX$=x
z&N0C|&kr}DJC_bA9W6{-S%9jCP!JUL`W$G<Xgbbyz9UES4lUDqGz?C5*7o0h1#SEl
z9V{#?LXRJ-F`>6+nlHdj)W+qQuM^Bi4o`Y8<$2IU*4>vad#b!amYsF-^Lf;%+l@bb
zB=G%=uvf#iT{u$35-uC9kaGib&dS5Uv-Tdp$BiA}PR0ZBqZ$>_R}{kOoj6h>hb0~g
zLa&qY%LGS@=OMc~KTA^Gz{hc(>9z@AJ<e9nGX{nRwciXeU&F;{Cx=(vf&?2ok&R+F
z1PKVZ)h=Y;by=82$%_VGozV=3;TKq7_$6wei2^E!IK5*A>z<=jNbUMZfAcL~6E!EP
z{%b<acH$=Y$#AN(<LniBU^hpH)0g9UN`n@eKv~)Mzazd#+yg3=qR1l@3aXZnAUmGY
ziR_GJY6j6aDNEmkw$_}QyhRI1h~$XQMv<;G7RpwF1bTiB!+Shv%W&Nfz^`Z2$jI<V
zoc4^?$atK^ry+ZQV2t?{c*k}12;_PrG*oRrmc34gJ{HlBa_+Vad9uDT6joqK6D8b0
zzw@)^fjwM|JJG_Z%;}0rPdyQmOv=V`Q@%f>tw4aL9B94Eo7oUH>m{YJjz`{!>DiWt
zFma!JlNO{%EW1}vhT?cULTg>i$ff9|Gv@?ds-d!>%S-w1Nc{(=sd*Wig+1VE!}<^3
z2oyFrIEq1IA_&k|2C{~F({`+)F>O20w<TH9=SY=~uO+_Bsh}g9K1$R}{tw}3%}tc&
zKBN?~;RJaTuf@bfBH$eY783*hv^hqXNjtCkw+oWA_=(%fhsrYH4y1@JN9X;;u-y%(
zoe@Gp){~vg*7xjF>Y!BEy^k3K^v}AK$t;Z^$$f8wFHjG30iR`;L)W4MusJsB7yo;~
zGL&zCgh_(kLk|xRmp=3CG250ya=Et&$YC4Ui?QpodV+@cjZdA-jtWOMU<U%E*@@0A
z%KJd+0ukDZeVCEf$6W@HM_<vU4iV#*V3$B2%2ZNeK>?17%~iwl*_6|$rmU%{sW0T~
zI!AqOCLCP_s?h4%jUV_0QpH#t@|W`UwNkF&E%7#iaI#>VG+cR`&Tx3(sE0v5vD>ir
zj4dIvU&yn8zmc5dWSwTA-D6VFt)!#0RIs}9iS8|sb6VpU_^fq4Z;_rHUYi7ASxgz{
zWrV(o;l;zg2;{EV1S$B|$Xh!6QZ>Du$PH8^m#8U9|Ea&)*W!(5ktj|);Z(%2eYjrg
z*NU{pE_@F~>YwRO(;y?qLFUO?Yj~#lAi<2`;S-U}8WtnT`ZtgY{lNge_vN12-KYYf
zdfsBrXb^RS$M;iEnppC|yTm-VoVhtNBJXw}u2a$k1~EziouYGn+=DATXcHh^JlO%2
z7Xx+mE{B&@2B7Ar_$G^-rrdEcPA-DpaAy1t85yI=!rL=G2hcrr^T{cDGhQtU6^VAu
zo?}^5<Bt-yrKKh94)nLBqYOX!`QtV;00Np*I{XLucoS;wP+4KtZV7_$#hHfNw5qOL
zef#JB=qP2Ay_jc`P2P}yHxhIv7<E`jQc)$AP2NdKc{W;{VEi!793vu9i^XSIu=FwV
zyX=`Xtg0LG4HV)rl$V#j|LA1hw+H3#L5Y(Ti0MhNENMyS89~j+bAc4zgVlJiF`%KT
zx$6(KFM)a}s=V|lJ;6|B5~?mxo>pcK*-_KiZ)=nWfqP<8Uav*kV#%&i%%i%c<%M)#
zp!UzsiZsW7(&3WIBcat26I1AGU*YGR6<P8=cN0fXGsADx_h0q~M-^6ZpO_fS8W|dj
z*ZUgmEe`wx#$VP(iUNPdWn6Oz0_@z-hK7cck`f69VweyoI2a$h7kcJh{zViuq^N6c
zbX%WA#+?ps%(|@1;Z*7U^YS^dSBaLqPNvKmPf57LEpnE-)wyAlzRw%d*#%wdzMKMy
zgAF8@1_p5r_v@yV1<uM_Z<~O^A7v$EUFET<!Y^;mWr^YcT%#c1@r?5~dA)V^W^_cP
zdBXcG{*GTmmtl>a<xL%NWMPn6*NWOW-!*ANN^Sikv3HSNB~rh-&wfS0BdvBQN^ElT
z(|S1(#tKmcp!-CQnI@u_w*weBJQP%)$n#5HTxw)uJ+a*`NNjvHL`lMgE3N`T9w_Mp
zk*pq=Pl{O^3HBo6*(OFi5V7<m9@pMq+C`wWVLnujcl6Z^X3Soo169n<X$4_g65<7@
zL@FjTdM|;DIVBgapB9LzwgYEz<(y$hDOlT{+i(RC$QY3F1Fc?(PO!ZvYX1HPLxIt!
zY^_M&f(&Z)!Y}AoK9lW0xAzNV-!@j`Je1))iW7lr2SM)?m%f|IGsKYGKSu01LO^kD
zm5<a{;`iy7HvW>DxK6xebF1OWIYx;eDW6-KS)uD&oo8UZ=%aYwqUD)X(|D&McAQS1
ze|A$DsB)Wnulx^;s2+h(p171k=avoRe~-#&-&J~>4ol^Ty9j7+P|4N-XRo>TJb-Mg
z&P`X<7woY^Db@Nv@dH6W=PWiQN6_`*#OfhAvE!-@ohbD8FJPiBJ*G*Ut*HlK4iU1e
z?O?6S-Jd}DFPBXDf=7ojd&+G|&hGK5u)Gt@l3jW5g!3iJja$RI7jjmAc5nliPu{mp
zfWag#PIrSQGeGm{+xMac#p5jcs3M*2!;Os%>b7{FmuCT=JlZLZowUw=?~e@fTZt7f
zykxHqVmO=3$-6O3Jt?stab_P}E^SbGI9)DNi2(xEf($6cYO>V931+N4!z^w$$oBxy
z?=$Rk&$uv}as=pd7a+keeE1HtG!^=JmDV*^|9J16%2`;a=y4#X;|@sQatYbGnuPj|
zczKj7)SF)K|9)dk2F@RAqa{CZO5?hqoA<rRY{x=WbHU%!{u27&{(s1tsnJp9zga^X
zzgJ?BuD#cvz9$FfM%rQef~?>+lX5`NDE7AJB(6;sJ80nnuG}HV`|G7hzk_PW=CkF)
zi$O`LT=pOhkFw$n|8ph;D#*?P2%SAr1?+@6x9mXKAS7)@-xVUHD6gb3aROwg*me-n
zQ}T-9x+}V1DhHzI+^(+>2eu>Nq~-j7DMR35eMlL-v9gjzRioF#Wz8pO9q<xlQCR+P
zhS0hQ%H`i69g@9=iH#-AKtfBE#4|vAF~+d}g5fS<u~x|QQ*jyH#{#XXCGI>t<?~ex
zwewmk%7JY1MfH!2+Y|g&`fsn^S40y;fH3O=KKQ_H(xK<{>5_rxHv@l5w?y=TjygY}
ziKBUV4}ekyk7;WvMk544BMb+^97rB74RTIw{?eE<nzxU`%sC>4@GKLi!bNRp`I}Gi
zfvM1RPD~8*YPkM^_6va<Oh615&uItbNkfs@5g%N`3U=cb2TO8tdnAlB?gO&Jahku(
zjzCaby>Tk@%_z;{j<1b@f5E1#^id2?UAOTtjUOPUjV4a!?cYV%Yz)+6sPO%3b=W)c
zAv|wL8(h1QFIJQF&8*KsdBxUleY|ZxzU+4OC(vo+^)m)cRlqN+p7xpS+w%Y7C?(<d
zoT4Z1jY3}V$p%mW7#S34#MWS-OB%`vu)Q>1&ZkW1rbtt<s{kwn_6vv<3fy`kh=%Cl
z=~BmDpc)KJ6MPzDYxrO2i~=Q!kf3j6O<85lTQ@3lkBbT@DIInFxBM^sg>d?UE(?vI
z9{{<St|~5B20jguhvE#L`o$ylMX)k&?zpFy^Z|io&6rp=$I04$4xN_7Z~gj!tU--9
zg+%AoEBHCb`zbD*)jLZ+?O#*lGF-$tV7tFKF1;Yd{=&MTIl(rvz?Sp|Qs0fV5Bo4y
zKRgRmsK=Jc?o#cb^IKCrZ{7#V652P|!)}v+P;T+D->XWz-GUSotFJ*mzK9-vs}5S0
z@_zLUW_yi-c8AQYN%EombVyu{mJb)1=?fM8pPjSa2a#NP9KOZoBh;c#F+TGb1k$D8
z{+;g<bOY#S;rCu*glN%CYkFN1^)<D+!63p#-|S5i>9B|SgT5{=^8<v3KCB1kIbPD>
zgng&@4k$m>f|?m6>Bz`v^1fZes>#W9guZ=lLxJa8w+FHv2|6l2^r8R)LNH80!04TW
z7~)e6M&~bcz8bu7&|c$U)30C?`uc?7xG&YANygvfKy3SL2o&F;!@whzZL^}0tD|<;
z8^;ggV>c|L;<D3l5{=A|k7qU_T9b*7kLNIIPznv|fj6s#3Qs=&fw70#^HaC!X;R{8
z<l6{idS9xmmutf8>-~nFM{{nx6#LFPbU9unuIMvgTY_+P>*2==eU$w;#YHxUVHPVe
zdEqv^`{0}!-PN_&&0p~*Cx!#jmie$~gc{{uUzu`ie`anwdxs3(<o)Rz4;~<k7Fdxf
z6N2T6%Zfe{fAu+iXi?>q{&mWBL9QiP!~+cbbm2%QDwdmqB0)v}U}U{WtUobGLsrDy
zYhdtR-W82iUWbcm3~f`7+3kcVi)L=?8aB?qh;VJt{u+DkPe2<oj>j5w0+RpUa#;gd
zVV>J@&u{7rc3H1s$%h^xKJ>ISsTZ-~y-hj$Jrt*a75;vlOX3k_{>;MmX{upeei8Dy
zuZ2?%{34*?^D}Unj0QVl{dp#+CAX|NxedyYgclZr64pf3_nEmi#6jFI(6NQV9|1&R
z|DrMy{p^JHG?i~9SA*^E$_fS>5~HU{i>S2ZsaCvTFHn2LXO9tIpp)-8%ec@;npDy0
zq^$C&&0)Wap)*QdeT*~H<R!wOno1R~;%PFNa`24j7$wm9jD%2sLHb8l)C!)JH9WMC
z`wr@DLn?V4-`bg&nZU&}y^s6ns;hg}fV{7gibQgB5_v{+65LfKZ^+w|>V0l*S{ioz
zHyM8k5U1MNtv}HZ$yPE9VE(}Y_&~WAiwkM&WAXmSt9jtI0$R6dDJgaI^j50xdAhl2
z$oIkfvLrOqKzII%WTX7|sXONG?)##~_7L|f01E<F*F^(+kV%-lc65R9C98R~b#ifW
z)4HU+o!Ne{(k5<6W#XZ73V+W?$}qo;(x7AU$Q?VV8Gp#Yov1tfUNUWD6t^4H)EcDJ
z$uHf$Dzzwk>C&Q}1I!%rZt9&(|3wEhVBJcRZx@4!!!s%EDDwXX@mS*9KKgEDmA;#P
z$Wl7{OflS0Yi6jjio%$K*?-nR%e5DSVRLbGlHks8!$*Ei`mtlxn;WzH^><BM`GZ%g
zihYmMNggJlMmU|*_k8@lYlAi<Z0Kzsu2yH)yU^S1j0{Xm^?DA@fbOcJk4VWh9}T)b
z@}K7A9bL1s=d0t%DV?lJKGb*DJ6ZkM_HW#Mwz)dq!$xtpudDDwS8^;YMn=ba`*FH&
zNkOK1z_-p94+Fh%8Qe8K1!ZNN*ipn&G#H;))Meqruwq>Frf$NN?jZNdAxnX7h>*(l
z;xnjm&+`lFj9ZW|nYjzQ1_Q}EK4k?7-MvFcbu~)%N<M}!s#*{!%Mx{1_Z(C~MPa$-
zTAd*?TCgw&5xy6l&xa_#Yi~v9w%?QJ>oh--(%!4-EoyG=qOg~yWz8DX9+wdPTW`dB
zcw*~HR|>?Jrc;F1*HBzUj`F<#RD9H|HT+t%-Eb?2HU1Kxl&(axv#shgT|#D>WJX3t
z%7jyPeZ!cTm?$Q4$@Jsutbd-2V$imVj9IB>?mdlgwFn@C+qk<6fY$Sa@Z_+vZ0e_!
zYj$hiAenT-%22WL9eKSFjPlJf;s(AnXoL+33878fTwN7`bjSDhs{Drm5E>iEl4J0i
zz0^zG3z!1v?Cgiw*{9Lc-{KqkJ?}Nrt=YK{!R+H74Uk~yWhJ;vZ+R0X`8^6Ni=aFs
zyjqLkGHs%zpb&7HeJUb6+1hG8oUeXnWkUYXkb``(wAe;EV;CD78iYNCrl+S#N-3^O
zooTL8?YS*F3l%urkcv#8Dc>j}6`nL;q@!8O0j=+%{>OWCp4j_jR?Ww2Ma0B_Q}ah*
z0Ja^6{H?96va&K9j3ezNC4}DR5g*^sUDw8^Y8UD`$lab=!nwDfhXhCN3#-k<`IbYo
zpv-_aq{dJ)QSUVO6*vJus_;9|R2A3O(Ru$bPh!ELu&Bs)w?{}MhrBBT#%(%{#R3vZ
zw0L)2zSSea9eA8V%CMKh)qSa2MzrAC0!Y^skUns`O=_k^{^s~&U44B~VPSgUxp%Vg
z2@a73a2o%z45Cl+i;CFq-J1oV&3P>PbX7I5yRWa=1#jQ)eka#;{ewnL1r>`-Hr8RG
z#U_qaSUEo`#(~EE^lHb=wW2(Tt1B?MYGNm|x=H^;SVH1IhDE2cmVv?XFEqF7mKivw
z1??xY2dr<gUqfm#!~D17V}+L4M&AmpP3(NQwpOu52Y4*UnE+hyEtCv0zd_^J;Jn-m
zzefGP_bOh}+uOU{d~t3id2)A|(sHFg6JQ9Q72oT;WMwo)5rHzCxfDRWPXy>7(I<du
zV19mj#OsVoOdKoJF1p44@8{M5f7N#>+3I(#Fz8GkuvNcu2~1w3%1g|xg;Cx+H&O-d
z=f5XDLk|tPPE^`}3X|-=Oq8|TpzBvPL*k4@^62_<F9gga!grT(OpTyo3ebXHTMv*b
zjEsx`K5>u0%Gb-w?`I2vD4gV9GDGJ+V7&~RM~S!BTGei%CO>CoiHVAWR{~^324LW7
z+-kbIRJ9LipLmrirHQ+(^ylU>|F;ly3lRu=(EBZfb-J?rei5|Fl@=6872}p34WP+L
zHA(|Y$<fgf$gwql|Ahg{YX0eo{}Dwx6F{}W2XLo_4_Q3{)1^Q&PmSs}?$JTV?yX_F
z;i)NOb@iQ%ioWh|7+@n|>fpfj-xMLr)+mtucxP^Lv90z+GM`nXM#1wx|9JAxKi>Fg
z4~6=HwtI{D4O~s?{{2h;J#@j^*4A{B{|P`}x7Lb#|DFq}K!Q{s4!d#70@o*<e+aJx
zX9q*zX}MCGKR`olPSsQW_j_;f*#18vgq}QklI@`ML|k0A#0c|e`h(>r2xufhJ~^N<
zwE1L9ELnIGjkeog8~JbE^nzEK*xY;p0)Vbsc5lG3AtWR$F{%y1!DRmVc@fxwUcUUK
zgxh|Oz@ZndsPx}k?<fR~k8M<@3)rX|cOJh)!#JrU@c(@D4IFo1-wcpc=!KnLOV)<H
zpr@w?#rTo+{r~oZ$k>*bdSx$LW?O<qgct!+Mp8jR;qOnbg6Tx=)4?C#s1Kg3-0b*4
z23m_J!5bViy^vFelm5$(8ow`*ntrsPsp{+??a;8ATL!OB)w2DAK%%7Ppm~3Cw|CSX
zs5Svut2qW>C|9l0YrP7{|NFg4k%0k=>JebGJIrBUf20*Dyd!iEhcVL=ywNIaw@>%3
zE%E$!M;=&rGgE<qmO5Z__=ojYCLS5C>IHaW!qxQEKxL5GDrdlN|A7KWYJ(BC{)`%}
zqG2ntecyC`6KpM!!1BP$50GH~_iK9xYYqS3b2WhA;<6<sak8;H_>1t*$Z_PXq!tXk
zyM2l0f(~pSGk}s)@3AfOFSHCbw*{aUA3%=`-E!oQEz>hLi8+fRohT=OZ^CiAZiMUQ
zIKX*!Y5sh5wBtUtzu15OnWCfwaWQt$xV*aBmFzw3dyv*$Nd51B)*D>Y*<@=T;dK_Q
zJx)97;XpK9`S*S4MRskr=Jpr{0Faie13!JhLJXhPkaN~0@KnK&*2mD66hY(h-l_C-
z6Bj2`NJvKrL!@Sb;eWs|&bmsaor#$Xl`Tf$yL@O^X+A>p53K9Y3x`b=j&yvZZwBxf
z@WO>=POacbKyUenQ<vnMHPGbO)(zeyRoY3oRfaDY%V9&w)a!pA8|{)>at8HTDh)WZ
zOWv1F_dlpr%vt;o7N*gQZvJ_?8#ss60TcF~bt^N(obL~0?a$!fRUJnLeVvzlvh!9c
z?F_(ZESJ;&W6)6=Oclb#JC^gRr`l`tyv`UL$&DU8E5@PJ0PE{L0#!1lrmio(Ffs-v
zDvoEsLaO@UUnCx%gsb3LC`<YRRvG*E=d{<c`2z~O1Lo-~8fOoG>7o2XIrKM-(2NUu
z+JEl9VKWO=TQmEM903r^5>}x>@;Ep=QQ<ZYGWO@U^~D<1DrY_^U|)Rs<#pBhrDKnO
z!E|$Wk)h#%D{~<tLbrnnZbpidA{<8kd*KHuMmk)E<r>Vr2YY*a>Ea<qA^#2;+c(vp
zf4m*oL2~DDv@5|*TQ)bEJmJs$#+K@PNIA3al#i2DcCiSLKZXVi*w^*by-H6{|NFaN
zNF3M5488v!aLlQ>s${CnYWv)GyFSWw`{%mph3I{r0_`F>9Oi8<paV%1rWh<3a?3YR
zD8rF)qWw+Ct0U&IM7gN8pX=BGVc+qx>h%QWe_zR=D)5?UJlSd%zRt5y@~YQUB4MQJ
z@1Zs89e`oE+(JDXZl4QzmFzH7l_3##fHs}xteEcH?YqdSY`FZtIW>1~iD)u!ZCCcZ
zSkp~Ac_+u<zXvtIUnBbp7Sh=V2#ssG{ipGJ6OW;jOf~^hb3d9d8o|`~*&4Nwj+Xx4
zdaN-8xWm&CUDMs4KWCLHE6f%PCyxIHv29Ut7>1d}-Hga7e>YODOi?LS`D)y9eS&zA
zLc8>Izm(Vcz}WNbm&M?JEWwjd!>Z#Pw9YA@7A!Y@J4$R`0PJlcs%unWXTcuoqoU;q
z>`87fj-?4))4iNV+{)|h0Y^H23zP-NljKpC>erjJ&;K2o<ZmOB7O-NTEaSiW^7>7x
zAb}8n!Jm0ovt0ot;I*EG&J!CxOFTgc92*5>!tKJvWB3oULT`#6WcLNNwJ|OFGd>44
zn7Oy?v6Nx=TUVASdlKXFI=^86W?GNoPPU^QHf>%JLa0f_qyttundk06(vRFL<YXbs
zx#CA+ID%nonI@QZKE8cNxB#kF%xgE}qCrjXqh5=+!%T1lUu(Q<p6PI%YU^N_d+vMA
z2x#T2OUYbC+rLG#&m*}N&QFbxP*<Or1hpXHUyyf?H*W2HFXpp${Xj#X{WW%wNQUVk
zwKzn7S2{}E#zo7mSUjRQzc6!5(BbQ{|BoBjCmMPxH7~qQ#BbakE7cU3U}{o?%tKXG
z`?md-<~g5P2{VbuN$juDq~ON>J2Xy-!20|%<k|;qkJ)W<+-Ba|>#>$x5$H94z1P15
zoPiBs9xqW6n=SVCYOlDU?VX*grUf_~^zuwSD{b~t*6tHg-2DEi(axnSYbL(wywMC>
zm(m}{S;dK5BB$HK$i#WVHR@GQ6QA>^P|F^m-{V=NybULLW>8K7pJCH25KYqjBnzqC
zuBvpOaB|TW6b;D53O4F1R&I*lije3<!Y?5sxE^u2yQZBjR0L)^F4-UKauYk#GwL-v
z6IImm%24Qe%%F0WtKAJBS!qxi(5I*WkWBsrmOZfF1cw9eWP5z$P+X{pKO>N56<`JD
zvE+V_mzt>*yKk`z3H1meenr0{w5sMj3OZ=3B@E}hyJ>2yGjj>lLyg1VT%U-aHE;`H
zA3WK6Z)KUt$K%)1@ryOusj26E+<JPc0^Q{KyulfI_q$5YrzFcUxh(Dq=<*w=dfKK#
zo2(BWnq-o!7h0l&87FwpQU+}TbG=nv?ue>*%o!EZ0iZpgft?a+Z>_@u7qv$s%S{^|
z;=!gExwN$g;KV>^5B5s1VXP#LgX_ZwSFxWJ8D|^vdps7^uOX8+&=OO6cG|u{^I9)4
zX&bX*O^-5zANy8=cEBd8O~+dvwFH)W614Ri!-8o>3ok{=cCuUf<TAz&pJuIR4J7KL
zh@SEVS1k5DybiN>%TiFTc5N>f@i+Inj7FUrgq4Ud?j?f(YFakNP?`9Z8>z2;gjp;v
z4H=6viIZ{Ac*F)vd-T7;iIe|~@&D2F)=^P*U)=X?2PGn1A_@XScPrgUcQbUSw2FXq
zj0_D*cMRPUQbR~Hq;z-pbI{*?KhJvCdYAqQ%r)nnYoEQpd+*Qowt))ouVA%-o92Tf
z<<8;)4Yao!`@=aO(q_;#OjpTT7&by;ej5qj>t=dI`gu;1pQlmAG<r?sJb}c$cFRl&
z3$bxObawt5QNQe1H)1nTECq^kQmjy7%_L0R6rk?>#W~}4l|iA1ciWOi{>-9AiLfby
z<>x@OWt%sf{qofp0oGfj>J=owiCNx%Oy;(r0NjvBadQ3?pIbKz2_gR9g9_;D)EbO#
z)gMoLFfQZ$PWJGI#eSX4wHB{($455I2S?RXArHHmOkW+jZ$Ili^RzECY|b2a7EfsI
zGlP>_5LFf~_1jAM1(V7t`9g!UYAi7(V4BnF+T7-j)+U5OP-MASezL!(JFiD&ltANF
z5*1Ru+u@CK=8z%1`S)iGm7&lH!qA3JgwB10hp{8(Zq;r|+}1v|w*X<tKag6}LcK%(
zfxVy@U2hGlUeG*J3saKw1w0*aWuGJg(5V0H^j6o}xPfisJaA}eI96C)bye7NcaH?%
zmtOCM!z;!6e^KO<dd_JlNWfJ*vV7PQ4$f9MGl=TJGPr#8!s1}*^T<!FOnH~#@Ck?H
z9bx%fBlWUIgRgqSF-_%!8FQkE9XU;G6QJU-*X%$RzIi6H`mKjzOT+vwSj36TL1v3}
z;;ZfYSzyZxeD9Nn@B#Pl=HI;Q4T{s>qX@VaKfYmr(1LTh>w34H9H=WVrC(?Rsr>yk
zS*aqywYH{4*4$x+w%=AVnA|IWoT3W89HzalU-A~WkJh)?#>ysI_wyqJ?ciQNiime2
zZ3JQ7pB1c;Sn$r}!Yfkf<jrg5q8>T8wGZ3bb7Tdzbj`OaHeew8RVmDC1|FU=0ALS5
z_TbuVTPfxUo?oEF{jX`k<~}&B;27-wwbS)OF;ZOt=x)O;Ey8Q@Ga%55o>}{Il>w5@
zwWIl~sdR^o#ef%<VX;utU_8NFNdE$Fr_pI{<L`ve7_xscPTG>zU+%k(_Lp8}=wK#8
zO`}LQ^?D$si=TruOup)=SW7=}#8XEiNS}rZbRbrrnOinWQ<_^2=53;EX7o{n8r8hV
z;wSg+o-*j+mbq!YH&!+XTqGEwNkC(aCa}iNHXlErhA9cVZtd=4z0^X1zC9-~I6`tU
z{dJC(GtFuoc0kyDt1*Nzs>}H!aVH*3agdFtzD2{O0Kv>oZ**Q*Z`{~1ZH+a7gX1cM
znlxPerr*)qLoH76+ziLu&Q5~hQA}!EP0XG)$wF8B+2{1Hq_xM48VzTmJ`MCZrZDLV
z8l}btyWOX&90fdRi~ACSY=<Sm8IPA*DBI^&7-TUk%?%8pX?~>C$Oy`EcD9gK3+o^L
zUf7XYz3IrDi|K5|gbJZg`e$`zb)U*8?39?eKM`{Vw35jKbW2ru$ixAuc^tPf|J6F@
z3BxhvgUAEpvkL?q3cDB9MnYX%J!!icG<?grhx-)2<I!BAp1W{dDy;ysTMPW%)4Kz4
z&}7#$^0n=RREx(%r{S#&&jvEo3N;$RmT-%ivLdX19FO)E)p-sWbi_gV<U6ay+-;qc
z{BHX!;<C3<MXvN4G`>?7a^-MX>oh>6W5N2JFWW4ApK>>(V=Sn{Do~zlk+Bg*L>1JD
z7p1us({uQee16o=?7a<kw|0CNs6ViU+zn{$x=M~nQri*!;Tnq(!s1V9slmZ*+WEU0
z^z1&xFm(8WB}Pj5pm&@DwjV=6>aY}bAC`hXFrFHP;IKq=lCXsQaTXG4Rr2)aYBvDY
z;djsFRdX-^_&RSsRP!-KjUV-XeX;33wsh~DDAOiS&pvzA44#=ky>~cVKUk<n|NhcL
zV^EsI9NnqlPQR^W$;JZODA8)E_^GqRWz?6p-*<=I{HFbr_*Jr}>=AzXA2%SUK6^6@
zI0Yd%O;AX!+;C*xFG6}#a>@DNyu*OOp@s)Vo6oqzK9=+_a~D|DFVKgi&Yn?q_#n+y
zB$K8OqCZL1-yxp=VBF5d`nryGjp(8rK0UyQq0EjtuLvs6?w!GVeFE_qw2xlV(5FYb
zNc?#{vz*HLArr~lM=o&E7(0itTFThdm!V|bCM1IW&MOJqv3Qu6D2j4*73<4Hw;93H
z4Ly;{y}gL<6Rw-(AD1MmQ*+xGpTFah%<NAm6hOnHvsl|OMdhkaIW(3l60?vc)qQ%w
zJ;o1?SD>%5?=qu?1$J=_R|oLnSnIr2Wcf~3a9k(dj<2b;IIoSLoCaN=VI&rigmTN-
z8eX(Yw)JJWz?e}`8g&wn7v=|5^69r5EH>Tcuqdt!yVwTzrXBGk<b$NU+I@~Ply`8V
z6paOf#_+KvQ&h{mV$KOy>pbDIm@wtMFEfM!EQd1wX*HiyGhGJM1~V{2ckA+0q^=Z~
z7WBTwFe)iWZq=}}$*f(xsMlGVPxUuBJSyg2(1r)KjI!3tn;Hjt9~<Tf$;ngpGD4P0
zH=3ni9R!r=d0iGHol{x~9GdyeZwll6_T)EiXK=4=qZT$2jPJ+~5Sd;|ese!B$%B&X
zRtnc@-o~V7K=H=q1I)<!i1A;IVs$<c23@&?aFSrkEZ-sb4oMN7bTohan^<ZKx0gTW
zc*C)8SFd%l4r=K;xM%(w)HP|17tX3>ZavV^KMtlZmnG^vSBjTv<ddgxOnbCE;gY0C
zOt0DbwgW-gmzxr+LN(rjzf3Da=M-#saM&K7ZZbxh0&8?|8Ht8?IC`RaJ>!yw54)o4
zsmPK)TzV)srmTe;Yx2QlHvYb7lx4kLXSsJ+RQEg0PTy#Q4aHEeFi^qal~sNK-*`Ty
zSulllYUrpH_t3MZL^TL1xTyor`z4ulPqoA<KqL(dbOinQf}vMg-S!X`zj*}}Bk4d?
z`ul4bvwb(H%@`3AzDolqB_(DI;EN))@8C6iBuV4IAr24ZavCCoCq={BKeCr`e@!_N
zQV4ujn=T8VeNK!2fZI-~c;$@T^B}O+`%vo?TpSpj{5u`nl6OTaQ>|>ib5o(3fO2uJ
z;S!t~O4Xl8*6bF+YCoXHhLl5gmyD&`E_WL#y84~d`HilsCh@=+V9+A%QeC;P9fl53
znWt2yu<m^Z8g|*+{qfPk)ykQ%%$Arw*6AMV#=9(iMdW0-`A<!LCnFi19wOyrk;Mcl
zMW#I^vCWLmYs{Fa5@`#JgIM|db}YGHIJ!;XUM0#Dj{46qsyyL38cOmh{v`5AvpuV`
zvh+kbrsy)G`~=S3IW2!CtRFvyS+3fexM2~oeQ}Ju9x1M5e5NCkf5wXJr5~02sB?cW
z6F0b#9(W2SdbYm^NE#Aq<#N<S*)^>e;wfeEbdL%~kSJ7EJ(6L#@)!?J8kHS&yB%F5
ztkYnSy<tpInlY_dnVf3YlUVTg5!;gcTHy3fkKCdTOuEAm-1nWGSDE}>MM2Xds;l8s
z!?f;N88rfttM!9YBm=Nj|Hz~o^(=fS3RXE%S+?7IJ5RkrIJN(QhD+bTg08Yjs{+L1
zDk_78xhIEpwW4HW3`dfM)8M6&=qu=vhzYpn_Bh4s7+(x<z-1fEhW*o@cl=bmM_r(`
zlE&Qb!O>xThM96Nn0wu4r=QyUa^n12aCO`*r0zcYd)E^Qg>-h;??ppRh&bpdO@ep`
z8J(cEqGS@ANW#IeQ;xAr8*!zdL)Qnp0U^T7HYY&^c+a!e-wCas`%v_C@~o~OFRUYv
z@O5cRIuQ6L3@}s*ar~?G$yX_IFqDeSY9;Od03D_QN-47^$}QeeSE=~@T1oo*pBBN8
zgo6p6(D!-=>)`v85~5V^T}*KAi}ZPcj_k)x(s7^V)~1Mpu_6erw$cqq{`ghF@)^lj
zm)qArJWluET1T5$YURJJ)31<-eY!)Z_yW;wN!;pWpO(>l-J>Dv!*Q1f+f=^V++jV@
z8+}>9<$JD2AX<q-*Elvtkv|yj5cD*D)h(AqJ2ZfHm#lP$Nq=v|-QA6<e!RCWmd``&
zPW{Wk??1a<1`Kw0DV}ds>n07*x=Y84P@gAYyA)7V3W>WbR3ln)$>i`b1=BPf(`lG0
zsx|Y?B&EK?%Vy>@o~J;0X^Ffdpc6{^t=`9}ER<n}sIvNHhKEztrodTW^tKcaBc%4c
zr~8#_N25Y&s%vt#k<ZxdcjoV^&oE%TC9~uhb*lYmvFE8gZ5-8E5DtFlho~4OP8&=V
zu)koItAC~4t=YUSJdL9a7QYqb2AXHg<|J_mGuHuF$<G&sIifA%sZ_U}Pt0UobiJkA
zmqvauEgiZ&mCw9i7VIm-6KFTupod8GBqOTu*b>s4ukb#v4FJ;eVoaZIwR_T&AZF1=
zD~)2J?Po<ZZ@TYBh)kaV9wxV2w?$(jkFU8Pck8GWHSA6$y;E12Mss~$c5bBOZyA+$
z9f5DoCTf0!Hd{xQ_x~(64?ZG%+P7&i+AB36BsY>30cBM(Br<2`egoVjSRt+l-|l+c
zMs>0GJl;gj-POWosz~N8^$4ElX0YOp&arSRO)y3|rBRj5)93E0(ZVyFwvXr<sTg@m
z9B7Xy1MhINE&LN{)~$z7?hsbX$JCcPj;+CQWEtQOjdh!UOFJARLdo?qgzbYT6kJMv
zXcDr@&-aJYNIhNz_96V}UJAZmsQkc|jGi@ebeDzg(H*(_Vu&nbpH3H1Vw%T2ry!L-
zh(>-95w;sziS_8-ZWNTxj~?5rM~EO4*d>aBSG6gTNyPRmD=Q`B%xDjh{bPcEoEke@
zdzjSas%gs1`$5@6%k%57%bh5%Q%O5pQ<N>3-}7+(V6#gnYX}@n>fZ7KzDbeMZ%ii9
zBiZWX#S|5BNmDkm<xDL@$y4c<_V0RX(qxU(fNa9ptHR{-3WH-rQGfCq^TXh55Da{}
z8<B4@dv$*{7w9I{E4h;aP#EQ_kiPX9I+JaShe1m8W1~O#OrFrc6r#@EM}{!n6Pwo3
zSlnrQNS8t&%k#3)2Hnd}vU_#Q6t_N<cT`ILNA~r13vTXjU>`6`>E8}dTG*jFffeUv
zBJv7_*4~lYN`agw%~Gy^?O93-G+4fR$o>37AHsDjRKFPUq()_Ah*eoAckb>?t}5xB
z>JAIPJX%_sv^3NFM>h0G-L1+n-IlNBrJv)z2XzrGMSdtIV=yPXqp}~&z>F+g8;_Gh
zdzs6RYm88mDcae`GTu{HSyMF<IP}62SX*R&1BA<+9lobtAtowL7{}Bpm%&5nF6d>8
zF|OhK$sJ{av^?+}3SEVtWL!@b;~>2Btl}r0eyi|Qx1=mq#2DLvpL8tE-uMA22pqbM
zQRulxdW~;SAVE37dl%BeR&-eco(lx-S_=o*Ho>hQ4T6OX>ADb|VNAmm5<dGnCGi?E
zW$2tZcL)A4I5xBB2VT3;2$knuLpH*>m7gaD*a)kq*0V5HhZVwKgip#kdzHey^M|t)
zkp?K^2%0)&LsNdQB{y``%t@;;+?6v2k5Q)+LdECl2~UdnD#ZAv?eT0a)k~s%e0rlJ
zg)x)NAZ)@HkcKVcv*?z9za9%cmD&cDz{!*4+^eIB?Joj&c{l3rB^<i^bv<@tbb}?S
zc)Z2z+QPl$8^KXnrra<EgwB3+A*$LVdKJH%W7#Yiex<)OM@fet<<#GdQmPzgeWfHZ
z5et2~KOWm^J@4dZgG5|k=x|SIB6KJ`<r{vOq%Etiq-!D>S%v0=8LO|$#%DvBHDd+j
zIeH!q9Xu)ZO|YA`GRRw@mtCN?EePk!TZ)mPki{)Hn)ZcEeC%Jb1W~jh3iJCce*(cY
zCFFc~bS6sb8OFnLtH`EZ4UT=Wx@Tb!2AVAV2~zK0S8Fe>iFO+l4H1!evc&s}r_~oi
zdFmWG7)PXmX9QvwBBet9AD)PlF-x0;hT$@r_UBq=&38W`RJ$K%ppq!GCMNLyS~wi5
zZdMG1Lg@yCU#K^EUbfLYyfDH=j#LoGN<CLB?E{e`dM_Tl3KwCO!}1H*Gd!iJxVU49
zgY=^pz=0)!%icLK*ba-(oVdCZuyQ!|&NH({uJhUbNY4m;-ACdbd!Hd57p8hr(cDz?
zWY<-!tdauP15cDnoP&*$%!3r#!JqBzR2HNb4!X=Dqh8nOKy;4TT;~^``u#-zz9i#;
z<O_YWg_#0n9WLpRpksF!z|xc;*AG~U*Nm%=2@@<O3qYR-A|%r!o%YPHgR2#+`{=)+
zc`~OK7H*=rhQlcuM`1AfgWRKxAT{n^D;Q3SYhc4?SswJ|au;vU<mIZ7SV+;DmC|Zx
z#oFmGeAF=K6TfhN=#i%L?z`z57Zun^Zjj|6TkXqh`h1&NDu`D9ueaMnK>1KyHweSr
zXPYxjO1{n)I&k|@-eHD;X&cf{o?l>+8#z=iF?}~fkBtt-VxUBy<)NNlX&J^Ahj%q`
z+ppW5rr`mxjvWG=^svzT>J{@EF1B%3{U0G(YhEsMV$tzpC3-S(CiKWmOEh$^eNu0?
zh=s4LVyvD1EIoCPl6}5^DYct@RVq^hr0D`f6o~9IN8q&YM=hK%ZW-J@Y5V<-o8U~-
zS6WI|%Q%_83evHrN;*Z}CVP_D(kNrThsC!SkYG#rveKm@W)%Lr0Qf~FsISukiK?BZ
zD49p`A28~oh-3;gQhdO*Y>PF~qCs50gB13Ey!ALfPVv!296{XZZ4r%%M5!jR29vd?
z&0UWW(*f@)<44})TiMJ)WRA%VBnaWMw?$PM+$MYQ@$ed`*R$}y@I7rYS5Ij0r6KOA
z%QX~4;x)hxIMU@$5;K2bav!Gqllnt_cukXqy`wK~e_9##-+Z(Tk>Me`)DJ{A1U@`V
zT|y0s53Q(!;Xs~YTYX64zJm$-^TGmKChJJIoSzhb9oO1M=S_c*=meBr4{rSZg(AsL
z8f*9x!hb3SN{j~Wus6JwfLil-XCq`|<F}>mlGm^JhWlLvIsF<Zp4yo>XY|l&!Bo%w
z<IbYj!}p2au$D6xZmxb5lgp%?mu*)$Xf}?Sf<ZaW(KCI8w6o@9CnVZUj~I?lAFPr&
zsXVC<xlO5OmE){vR2XRwZATM$JQyYpHA^4-%_A!<HT<I_XqqLXhA{nVdAloP2@^xw
zX4M|PxnuSL$aND)1PI^gPq|E5S4u_@8{09E%Em%J64q5`hnin)Jrw&f5cYT)3<}dN
zapIFOrt$W<xlNz-N$A@!X)c<^_y?igpqm&=kkqsGVjKmg<v=jlGWOOBpePyI*8#A{
zx5|o%nIH-KG7=J4ak8w@!Y|T{PB1K$bLc@}B!mQVDK=jG3icpY;!^i{a(Gr_#n&n+
z#yW={cW;xLpLO%V3I~@qkGCL@Rao^a%;IChAk6fZ(JIWDzletMTSu>cknSn^5#pVR
z&Be#kMGL2&>C75jQDH9M26vxKOeuxn)PH+KmuERc#L+G6{>gPO%WWTDIZp5WkNOxW
z^5CK#!ZztK4iV;HszCMn1CLXHwN~52L+o4)O*&p;bE$q1GRfOma^g<Egzu?NBwZP#
z_f+#*SOb@+LT+4pJsC1V+sL=gGk0N3Su6g1iSR7wekAed*4w4GDQWyPsoC2;L;L6s
zPNUDLFt!nbuX{I|T8`53yvG|v-RTk=qC~uVBB{<K<)KFH107<shWDb~vywOPG%8xs
zZUNcSnh}YoTCXoNTJ)snbg^_JdqsVzz;W-9;PMa$IX9lT?Q4eFbbd?6=SWP<NAtxS
zx#RBlrS9LgUP{yYu7kJm3aL6^i_$VyadJQO4HsaZPq5`4Z3wXed8tmd4t$tW?@r~5
z6zCvsOO{Lm)ZWK6fPCS%Xgm}ayN^vETpO$HohgMbSdLm@%#@igwaQf7DRvb%HeNnD
z`62qi`e@S66HbaS!uPReD>C(FkL{w)8!3$0AOHAs*?^<e%D@@zD5)yjh~&(wFGoBv
z;%l=33U8FEUFL_ET7HG2AMm-mPoC$C3E_vZgrQ%kS$}rvV8Xmnoos9h3Muuye&38{
z>AiPBezg-&76K`tWT5}8+k?RE!ZeBVJ14f#+SnuzFJ)_{d6iMeldF*Xje|ArrB50T
z$FLN34Q({a2E1Szy&K=9KBINMw>3r`U=uceSB;&s-py$nRmL^(aOpBM%71S&YNncf
zxgFe^qNpxvdtE(b^+{@A2;siV`hue}dbL|odzu|GLD>Hf5N9i5plH%LESboT@gE4f
zT#L`;UMZeOjE?wcWWm8jg-SfM&p~)!AXV+mg&bKqFgD$1e3sPP5hO1oK;UfEzIFLA
z;S;?{6YI;LD~wsaK&zoCeP4q7#0MRR+>g*;tG`ITeDDHO1k65r2lVyXwuB|f$+V{G
zPXm-ww0{Y?Y}wfR>qFx1f6Cm-p+rcjXtfdPuPpkiqQ2$^q7M}UfDJ3PT6z?)`s@hp
zp^TJl>HggkGlVxH9K<X+rYwfx)c)dPk*sV$Vx1xY!5mj46<To48jsBP5XVzL2dOy6
zmC_aF@;E4Lx>+xlCa$O0idViK2sV->Rt7(bC%W%m7(3(!YgANBy;ITh`JVlfl8%#^
zdvT{f76?Hc_XAj1FCPQPVW@qj-$?L<!V4qmygIe?P4c#zvVpN49nYMDBA-j*>#43`
z%aIWpVr;r%t2yyTY?|1eZI$7Kd96L#4XGLnD|Qj6S*ER81J|ff|E#SGE&bL~R}0=h
zYyrQZ@YPr@lFp$WS$wI6<-7siRzw1uf3t;`W(mWVwq>h^v)w0)p2*C5=iO^2U*?Q>
z$TieWL?)&s=kzyUe&*m5%Zwwj$RV@Dt<O+80ca>yX-?!&_YhN3T#D$HGJG@SU-L-M
z@+mYyc*6kI+F!EUoZ#u66dY6dHU5))15k1q1@8@jF%I;s)Ii$PS%(`bz;)i|d}dQ$
zqg#+?HR%bImsz639laZuBVkh@sb?`*PMs{%aOqNgD5mSZ7~Qp|8BlB`n=qZ+hGS~H
zC{<#$U5y4|V=4O3g1CwDuT>tU#eE_Wf)_M$Joru9yA=@{RY=Efo=ksHqY@MG6)|Z`
zuk>EC3s1u(F5^J`jPRcpggjMNyvm2_m+MbMNyM-2hH#W_oCd=+-j5sTb|)F2j#Ate
zArppiG;wk=awQbMkFMo#qrYyB)%$<|@c>2}=11B9f>N1#ki-v8dLqWctVL4c!hgj$
z7p=;QReXBg=0<;?)r^?FMckDM>_UNNM0-JAiG)cg!xJN|>c^xycQv@I=gqFyTFfm%
zrx}E@Mu_EbEtWSG1eo(=oP<;FMXufh+3|OQk%eD+p47x9s!pslcFHVO)s}25k&_X3
zqbqemc3uR9&-ccO<}}xJOGLSS#Fnde3}6!*@d|Z=Ep4fc?<5MZs3?S%y0R1Ks9T@f
zV=4tr8HzhUMY<@moe?1`Qbc$opya{)x8R#k;9k~W!+8y`nbAF5MeHQhgEM<7KKyzT
zl;3p^Qmc?*67|a32z5qIbvG^REi9EnTCLC^s2<3(2PG9v$jcEOkAvLpj$VGB>pNH=
z$L@2|f`cE#Fy4m{EgdajQOa)m2uZ-)xOgSKND>^fp$*<AMh@xpUqBP^J~0bP%92r#
zB-GhWYu7k>yZ>~dd{6Q7id~?<({&p7W`t5-4urQk^TWhGZ-zA|6Jx_z8zQs_n`w0-
zHF<Uu7U`(_)RfndAmHY`IcBSNzaA{@b0`GB`8taCmJ*awR)-Wf88zP|OWvYigEW<j
z?>yQtGZG&W)6bAcTdX>CCK8PR13S?Z{B{Bi=rq=<G(@@Ky5~^eRh>1W+IRPLi^B#2
zrSk6M2OMpC6G!eXgVRta?!zTj;qYHtneVW;4+>3DTR0fSR)i7<*IuL`V1Oj3qb3o&
z7r#50=T9onfW|vElv+aZ99X}-iB)xYlAgMZypstvvH`yF%`#k?i+eS16;I(I^=v=t
zZG}Nh&&Tm`a-Y5ff9Y4yKK^4<kOEBx^{3sa12R+8ZeXXJA<9XgUPyir?UsW&hrOGq
z><@o>JcDfhdtqrt^H7tYH6c)OvcT_ZDk@rxrs6B8w^Kn--nAh|04DZiYpc6F8gZJx
zmZKq7>0Zb?Dz+MwVDafx4CX&o*RE6g8>G2_>YZ^DZ`SpZx4v94>)UnvHU_(3G9*MR
zmXp*?mETjPTr@Q)?-#0(+uCCp<bq2b3{(sQN;c93kci`q+|{R@E_3s!+UV3D@lBHx
z@<Dw>i(_p&o35=8;<GnIMIKxU(*u6)0u##XbugVEXsrs{WIS~6HLBt%xeM@oIs&a<
zlR&iOu1v;~cYsI{=}zeZ9I#N@JiTw~_*Ib%xSPuG0>#S5ZtXjfMmMgJ$n&{h{XkO$
zZnxV#Q4p3let45ttdN8_)gLOUM)MLyD<<NW@b1qbd&Hu%@*$s_hP{UtKjv$KYKA4J
z^5{q-`-U}G=!%K^<e_0D0Z>+UF_ZV_>J#1$W{Itc)gN7PU!!6VnByQ5Ut8lNqow7R
zcT>D*MAwZoKbJlkse4wHGj=eSL01{DNs+`&LGy~9bs0#~shKt#;y60M>Lf{KsX=$Y
zGRNn)9z+AtaK=l$;*LB&b;-t18G6m-@*Y|eh|-IacO+*+G#qb#;@A%U5)#P!mggVt
z)sDcnXM!c_%HmVG!SXV?B|IPY-!ZZ9wB7rka~%ki&k(pepV?osYFvb0&OS)wCq<hi
z)~M)IktGFrZLrLAn&J~*N=uO>A4=KX?<k4$mVE1xge2rJBUY<|JPo5K4z|>d7L>oM
zzW;EO1$VQ&98Z&7;1YwHMLiyOKsrMYNrmxfA#?L}kNN9!yV}T87+&iA(u6$P+-ckC
zdDeEyQU#yK_w05b|14WhmG#VgbGy69$H(ikMJ-T9Q8R082bJb&DvFCT)GX;;`ghBd
zpc5K};~yatJw7Jxj7SsRu4w`iS{d%L?{iJP_1Gj&7u4aTHI7*I1+M<#3tv;GtLTSJ
ztdzB8iWy%hp6s1Z`Ze%BHLl4FDzBGo-AoGYp(hW&7CBOm;Iu(Q*{~u<68bJB!h(}F
zUBNgghc$HXIFsOa!!MATvV}_nEROI(ZOYH%(d>sKZ69swN~SrpKHm;~4)%fZS@f^G
zApS_>%|RlNy!HUE&(V<MeIx_WKX5n8mtASEg|J!sHcP7B59EoC!lGfOxJVN+t*GSv
z(8_ST`?vA2{)WFwHi|jaG8YGJ#I_6C8R5jojW@M@xat)$YHUtcVYc77lZ;s9?}W4W
z=S{(KU7jLMmb_(X%J9dkA0e+Q-N-Ii*oPBeFahzM<^lO27Qv@EZ-^LM5-ro7eZ+}M
z4J%Pg3C5$}sV)+3>w-RNy@B%5TGUFeKXb`m2mE=bzyd!?+q|er(wNmpf$)VqC28$I
zMnx|Uif6{EG`ku6#fc1=sYl_nhicrJ?EuQ)X1iGTP}s%l>m>YzpVDdrymBL}5ixkz
ztQKXUpmuSw+<2A6M2heflEAQHCHTY%EUb5@gXKpS-?n^UmyTZdXf2{Yyr8~IDHgui
zXLH=U6Ip10>Jp1Cr&;b=!aJh_*}qyWq{~LmGCBY*<eN-;*pVTp$tuLJe1pd31A#*v
zpUhfbZ2f-C==!glTX;N62|5OL-u51Xsijx@M$Go{9HfT#;MN5<riPxy?g-?#`nnl7
z-8XpX7-qwaEl&KfNq!>o61r)L7<q?=IMq31ne=uPva9zU2M)h-pS%~gVpTHvOvCil
zwQ%@_oU^i#b|0cL#j4s>Gq8W*N1(|!v>B#v#H>Dy9s**CDy+n$n|fgU4jyE}KWG@3
zOdc9=V?d9Y;g>CMObD3W^Z7YXX`Shmo{rC{sTOJo8jU0t1)932fYcF)8~Az+cLKsm
z=AT%JXj*cVYkK*v`;x@iMX}<iTB|CL@a<*^&Rp%+8vm*AqS2GJ9$w2(cTu#6U+{aV
zf)S^VG8^4s!vs>F4cb(7yU;HSi#QVb3H6GIQ-+=Ltw#Zf&W-g8E7t*um|>)eTzyOc
z`f!=X@5b&8Kj4z#X>g>_fV=+h32uN73vA&KRngJ+T#4MaA^Pa&mAucpSnG*<sg@IB
zl@@3EzM{m+FjKV?RK)TBFS$*pQ)ETNz2?Qp$k_Yybf_qchBo&J@JJ^vHswn9MsP7m
z*^o<L;Y;tQ6iVwhWZtem6)&-xGd0ocO9X`#M-558F(I`TKhb|NhAzl*t7oi5Xr$J(
zd3JWSVb=WU0QsY`O+!X5o-Af?m6lYSESgDN&<l#oDD5}Skx#W+9oV8h(?{{QAr6(}
zu!$dgae@2dx=#j-U{fhS1pWv8u@->sL~$Pc`uV^rp)S%J<609jy(`k&3`z)A{U|X>
zqx%qxS;tfvnf6QGR>S2FY#wv`q^9JJDW$!i8rQ{D#d4#?Bz-;yht(7A`aOGr*p@ua
z3y%RCL2q4aF!>p@0D&kzkaxR5{Ev7`z`k~A5-s)>${G;mi$*{9GqwsR^XR;2<~JX_
zhcED^!l}z-x-X%4<yH%#GdaFS<jpUW-dqXl^za-r7MAw(Mxg09ZNA4Zwp#i+TUj7F
z*!FTdXv7m8^HEw1O;NTz;P-$R<R!e`=-9gyB@$CKw`@P?@siJ%t5FH0NIH#C={_ue
zP6Ti-rnT5r8H(#3Uca7p!og-t!oMK|Mu8=#)lA7gXX7dTGU8$y@N4BHt>+uy4~{tj
z5Q!Kr!q$tfM3m(DQSDeCMZrqunseo@H*P;*W%3hMYg{f~z&^=a@ENO#6qLL)c4-g?
zc2_yGi=pAWJb>$<%<c(fQahJ@2^TLcOtlP_pYgt|74Z0)s%Nijlukl0QMV)klNn@x
zvlXu`bWKy#ykR1n!|}_y^kmEzA}>fqfv2h($UEBgd|ooa(wY~Qp<V$??FZek{5hzF
z+P4Y9Ar(Q;i8w4wIDHp_Fbe6`lOj3xtU%eaU&evX)PWws%~Kf<>HI(;fXocsDJP<Q
zT3!v@`p2f!^G{?3Udnm-g9|oASAD`}CGz<oY@YB@(lZGQi~e8x$$?Ae1JUg_nc-?Q
zyeW>G#*E7~OP``Eiak(M;wdDR=2%lZ@J4FoqS?^BvwvQ|o(wsHmMiDO42@SNyD1xK
z&RHOU_q;Qb!=zD4q~?0rJ#OrCwocg|0$XbV&;x_<4J)`#Znj~?YZV{=GB;3-XQI*w
zJQ!H5*SoW(KtRMa`g83A4I<9*WfYvX&*-xe`?6~gMYE#D+5!Zp7w1PY(0+KXXInvC
z+{!Ci$Cq5j1f1OTtnDWPO+fLpLC5?_%6_A+`W9yAy6vafM&{Y{-aGx|H={PeDT_UM
ztnLD9L!aQ^)M?8>Yx;+mhg<FYhW@*$i+T(TdPd&bbh+!wdnVAT>*}(o#sn9{#_fF#
zjO~-umubp$0nc&zaQ@K-^#_QvuwzwKLgIb<ccF^b#X(S*@EguOP+S?>I!np_nfr~W
zrwldGHOSsDFeyH7;vt<T81QMp%;C%=hH;E_s++qrY!HXU-QHz&c^wxgxXSuvwQb=;
z5W{KH`1;RQNxoI_w;-$98!R?sjB?2YL>BrZfUlWcz`04a$I8Vfsl74f!Lh}_D5ZzY
z3!X>C;Xw8z(1ktaOpTcna9-RIKpyRL-thxs`_)gy(n@aSf*KH9fBvEHC3K~7FR)!c
z@g)RLK_@Gn&I!loXmKd{F-vtebdN;x7{?*o$bJ`{9VBw#8kyPY-ROAXml6fTQ0Vfs
z>&&(>m6_mSyC9wpgrYqr@PnE27jp9Vi4ul*x-||MflRPFwFc6!OA~H9aVW~~RfbGU
z2ltKq>qb;!==`Br?~w+my+t?q2nwt|7X*cb8Mwg82FDqg9lE*PF=l$>+9Q+(Du7Gs
zXYIm)q{8#J1bWB9fw5xjYL?Q4Y!-Bh$@Bmu4MvNt9wfU1XTNo!)!+rl#pHZPZD7tS
z#(i=N@DG_#y_9>E#M2Y9FBAEig(^MW^hUuqC^Ay70L3xgx1e%7msl_iCai#t_*Grw
zYo;rsIZ0W5$1g3EX?98&Kt4MDQeK03?R?91>QK5j;{?okjf;#1X5%?1@(Uq+dfYbG
zMT?v8`McQ)fsH`H3@_an-43c&{mm(;LrnDp9^+`PEt>R;FAN)R;02s1KYp=Q8aU>m
z+`hka@kErsHS!T9ErgKsd*r3RgL`v2iehB@1|=>UKg5sYm1ahzouV=|4QL(-0R0EU
zRTeKt<1I(~Dcp#7Kh#Z@*x}8oyf}%3Ee=TO;9WVILz8~jJ@=qa#8b(Qt=fI`_MHqX
z_cs}JFfh~~I;b(g5c>z-vLy;hc(3zY?EWjh>wyT6ojw*7xo<tav`j8B_*x07b)TcN
zGBxTazZf5L%Y^A_7dzMt@hl_9J-<^h#3xtmi$q6Q#FPfY>Xi;``~?z^MVyjgs>I{E
z&H8&fAy6x@x3Gn^v`LH=WaN+H*>0*C=BecjE!YV-)l{_ljGI|LvM6#FG^CvvcCz+e
zNCIUFOtl|iVIh>Uot#^-PYEGAkEHP$SSadYwUa$D-x8WZIpRkZJ-j1#Mce(&34+8E
zpk!Y3J%?xuo#8q@iF?kv5mM#?0*E-3$lgZpdHAM*M}@yXC^Y<Ooc>fkjsxj`Wd}m&
zox~SLtK%OqUP7Ec6|ZYl)TmHf{lm@Mk$eV9@;*Xer}rCpG#~C+<i_3?V|fmfYYurC
z21SMO943O0!%a4ZhVw80$ZSma6XQyU%=|^PE|OkMX}wnm$^GS8!^7P2bxD%XS;fzg
zg-RU3iQ6e&l0qV4zavO%J@FuTRIadH)ND%?)B4O(rRhy)$(T334#W)*hWE0-<PaAf
z&<|5`8;Pf>e);2}$|$*|CK0OYWvYFdPk96{s2%<sjYk%%K&y>=x&@?pL^H_qrC8->
z1QY)vtFGyqvjIXv0-KczjuBcwQSKFpGd5^o9=(r>E+Ms5s*IEH;%DqBK#G0n8X)2^
zP4?>42ceUL=)gm|Kdf%VzI1Gu8*6(Qu53{<0zH7srE#1dZsP(~<nyb_yKNjW{-+E(
zn{pYY@-D?z0VP&c3gbDRaZ5LVmRkH0E9X49uXvJilRId$X)2(S=l2J63T-^uyoFM$
zIZz_$Fmeq%2B+zi*BpkKRHZ9ZvkyR}%D9WKvP*GxijTR3{Ufa>v_Sc)4@vR)wklua
zBCO)PNo;$i1daw6{1gMxVJJV`tUW@+i1g628JB?syzDdjqzyZ`Y#1f1nr0E?@boQw
zAMU@A>=xZu%(y7R-k#w2Xq?c{V%lWLo$x%k|E=RKBnMR;n#Rj^pv&|-3<fVTYS11|
zf%_{9VHJ?*4s2ALxL32dKZ*1(#q70QB({v)F_n?dd*f$5TjH5q(W0>Ry9Unq=K=Qh
z>ZjlAaRl0BZ!VV&cgt}nv_`#)(h1vT?T?LnU3z`XH-Z*Jv6X!vx{@Y4?_}mYZB7tj
zD%V8nb%O*&w8OeOTsBdu5JyNcOwvwd)JPE7oA<;3)vSpJD(v7X&*7^OHjRx<sLGy(
z%b93_-K&ewhV2|;u>{HLzm{0sCk949Rc>>x%|+XsROs~Y4H%G9A|VNHyXBfug(xW>
z6I9zLV%ED#!;<}=9QDP61?;b1?GbOyWuD*Lh9IowKt9gXOkiUQ8&`$>z}Q}K>`UCc
zFyYMf$K<sF9bmv)R4Mm>Lg%c0g9k%ngrp@js?~Wj2}3p)tNl_QYzgQqm?k+Yl!04!
zlPx}x9CuvuVtkB9YC?o+$6EEzVZYRqm+S+3e~A^{>L-avO=hu%BNP_L=AJgoMikd3
zL-jn|`?Fc(m@WF#)wCuD{Y}cBk+^aoE3SvYE{$BjE7m$;_;Mj0$l{YFar`@c-`G=5
zO4ew}>KOw3%~H$`&z*VvCofepC$9|Zb`&3#+WpSdpHv36x~0%n)rH}jzLVId%0NrP
zjMBBxp(+KOLfoZ&9;ws9&Q~6aZf~l!QOsRMU9`8k_|qFCjUq}Dzy*6oZbIYfmJF3~
zYsY`}5~4^~k^-$<<z3|&63eu;4vi#tz0jxh(d&4tu#N%pd2^sTY$ZBG7o<lSxpSF~
zMu(XKgv*kv_E)TRf@ghhv9r{c9QWR*{%BQfMUAk+|FATThB#ar#OmESDv5)F4hZ_j
zZ=YWyGm*Ss5LQY=Q$vK)iaV~rhraQ{4ewUeuX!)1Cl&{NqS0}muXxwHWHv$xhVk6g
zPT<zamVIjN;krYR)YQ`?1~w5$$<N>qnb^7Pl<bs(+io*CTSw%re+7P4q{U6&3-ARr
zL?T*2N~<+R%VONbYaP@)d$_rQ$$<*7c0D=xk$UQUKK(2-k2y@Ij}=={W=|~=G=R7o
z7tSuK@ca?`s$3gotlB%{NGLI@TW8>N&9SDc1iiikIFHN-&(ZrAtmR3M8mKd_-hWvo
zy#5S12bxX~WWx27_6m6yWC~(gdYtqn<?%-5A`rPMmG+KbisPS{3)YXB>dE1H?Z3fn
zSGLPiK%5S-#wR`lZ=x8u-6N)7;o7lG?#|qa0HUUqVx;a%o;eW1m_kk+N|X&Eq3b@e
z?>}6;mVkbR-Dlj<F)0xq7YrF}#80o4lKltm<}~y=2G>}h9mE0b3*B<_x!(0zWAmK!
z7nK=So#Pg7xU6SRgBK_T^Di726k-T8v-;JM>TJKPIis#^9{DUB>}|eE^Y{1tC_I}I
z&Q=cOOD9mHoTd@)s;VqW;qi2!25-8zFbMG>m!9EGqGC4ty+o0!DotBrBo!zV!={fA
z5(w!$WuCDl5e--b01E{ZWgc2#%2Gz|bmjxf2Z(vRaDkbFw0n6go3m`}N+XH86UbaH
zb_A(6g7-6Yg5;)*{%|QepENkZgS}&`-e$PmbQ!mmno696hlrFIaCw>OSp(t-yGy`*
z1EX(iP2wVQ<fG-`V5d*3OKmGj$hI|;<A-6py<Ae)_S{=73(6%bAXWPI4E~iWiAQ!s
zjL36AU0cdMGc|K0$#*hy`#A-FQl#j(%$(<%49{s++L!7YmD&-Xq`w`)hh?ku1)8F=
zNvViTWrbH+X8tuQYRZc6ukj`u6rj4l{19Wy4)K~;1?6^{junv|<!x!2r@S@-3jWer
zBXG$=c;KM&g(q;=KG;aM*_(xX_&raA{<vyotDB8Q{{p_wi(2`3aU#jH0{*FT(Lu2r
z1O-Dh4Mf0VO(!ckO@=3#=Jx|E(pSF3r&%N4VIq-Au?K7{Baup646`r)P$)o{Ys^QT
z_kzk)%At!8A*6;m|I%>bCBkLwkM1qb&AfWkhTdDf&;YtnDKSN)>Z>2NqzV-M5;wJU
zNwh-2a;KwH1?&q8@~7c>BQ<y}4a$d;^<8}&!<e9^_sVBsEtjULd?tVsB#g#b!&4}+
zMS>~vlwG-GW#greI4@I2k{9%}7{U+z=QO<x%5~`!?nwYLMNO5a58L{9$%KbylIL5k
zsUcV;@e!wg>*xH>ty%3J(r+`Sw<YFBDGt*vawX)+HuWwy<)HdjrPf(ug7!rQC}7pQ
zd32cSU!u2EXbfgf)SDK?#KZt>#O&;D(*vV;9XZ?^T_60fs;n)khF(zP*i_Am^&TFH
zlZP|X(2M8mR~^U8eJ}4ofUeRB<`ooKs?IxYsXp3A5g097+Z@&&le;(o$`KV<s^@b_
z&h9MrUz6z~@1EVzB^KY0>Vd1Dj9Ve0!J}oXpvQ2l-rIKZQ0O(|$?GRiz#pZ7Xg&Lj
zw;;|C)vp@;ZKdPkZZcx)4H}g}x32e6+)ZCA=ikR9fY0+l=f7NsEHq+pTc4qeLIEzL
zrT(x&bB6HQAeifwT>L0wQ@_|MtHcVkA9I{UNPzJ*1McEz>ca`M{-PgD8_6SUypMw!
zFL%S`L04^K?e$f6KFNO%eG1yMg@jxuTVzSVobD~bXos4fM>vJx_pHeI^1KaI3Hj$!
z`Y8fw?>@MXbYVckn^7Y~t7A-)(u@eYJc}!V181Od|9{)MN$6<vX5P=sVqsy)kv4AQ
z(}P~?o2BJEJKwqQZ-~>#rAEOn_!2Zr*JAhI|LH%g8&=929ol1b#jE=F)^ypN4*s`o
zwm5sjY14A#Y{qR=Coy;}EBVaGL^bSB$Fm)1my!2~Nm5(ECIn0C44Duq3(S!E@=H|W
zi-N*k|ML))wGl$r#>l`@!0%8k(#UJSWBR|9#j7e_nUiL$?`}*y(!+mOWCgmIt13%3
zJQ`?85$~`QzX^$P06~!zl2Gv<(c%GUrcWO(7+3Mm``bMkH`6WTEcm~_m|0*x*rT^|
z+2?)4+FO1w<B#5nZ2X|!WVc<eXq~O(oPGGd{5DudYS0*OCs?<KIZ-_^I4F&IQ@uyP
zdn6oPgZpnwu0a|r!XerFjIdYb0E2UqpvFtw$Pw+oCT;YIMb!cUs-u&F%4u2v897}N
zv|J~C^6#MmEvSvj9DgwsPtWR){ek=Z_P-u&g9lZzquw0+`)Z9><=yU-eFEo`83PXg
zo{6nxISCo}gOYYGwcbihBB$TKzvDR*|KE@1ZPWA;e`~Nyp8Q@2Y}WP12MEVL%Kx=^
z+ci2HIU>Q!)Odq<iRl47m+ura-~8Xt7S|lL$<EFv+gq~)onnmMyTLet)c>CLD#4oi
z{U1#?5Lm(GPp7@LTS38s-^~Xpv~NnkZdx{r=l}m(#3yI8wPu(uW+?0G-ovu{61nqI
z5kw_7y>U(8ZT3%sM%Os6jShmobbvU^Kg9Y~`G22U@>V}_g$>%x$a=2PPAtA1{jSwg
zO`QkLH=VmTZSm;5{eTF7z@_`U@3!@(mWNd`f2<{e|G6I$HyWTDhymY0QLSS^J~-xN
zWN3s^^}oj+1V_Vf>*4;v!B^kX&Yx$0I>UWWQGcz`tiTqBPVLNEIe<`6FYleKW~Fp?
z^$wR4KVi5zS~u;UW4JcMYvE$;lVCCeSh!*X+fllNe>c1etM*&*31CpnX%hfn<z7Bk
zuI&#$X0T>A3<jo+@q8E<<>Gyctc8vcyIq|&evMZ9x5M2or7TmH({=h&lkWpZhCn^9
z&GL&+LjQpf2wcj`&oCY6uTHjo7;#JmFLo%am-qhr;B9Vx%Jm$<t4K#?Pk`XC!J0s&
zEB^W3c8x|T0MOWa&hmM9co>6_MFboc(6<Qo#rI!qjh7^t7c!V7f88nX-CX^YjNRg^
z(Dyet+>md&^u<;WKe=DN&Q#5t@wxT_R%S%YHZ&+m=zqACZvtsbS#tbGV@8RVzb9;J
z>3Mi+($eny0dKgM18T^_HMD{CL+~@vfu(@BQtY;Gau?%&9HKiGmX^eV-WTB2`ceJQ
z)x~}vAV~j#Ze&;907JeBqymT$E}bgKJ_Cr+{&F8R<@0}OCx;fIqN4meKki)ccx1^X
z)p(w=0E7|XJ-Pry%abA3Ary)b4{vF9mI6Rt+}*taE9<`Rf4md-9KaL$f(;I79oJ~R
z<5IT*Ex-u?)XC6;8&t}>lz~NLjFFL%ZNsU_A0W~E_0{&ZrWU|Q{AJW+kLJ|YdYm6^
z9#1-AEe9RX29Wo5b-e(slwi5vkv{><k+)v5fb_Duy6QUR90T;o0cl3C2NX8o2X205
zThZDY1dVk~Zgl;iyK%8Ax~He-?=x`zc?NQ2SJ&g8!T6`J>cJP%QH%e5bR{4GA!lZ;
zdwI7Pv=;@y6WqIZFZShqu&isWw~_wOv-`qq*xA{O>h^-b=jH(>2R}dQzo-^>KY%vT
z_1qQhJ=_GN^D3-Rsegb!pTMs@yjk@Iz8~dfWg!I2z_5_9nf(G>r++`XqX)`FfCo`$
zdcULJ`*Tz9YBwBk99tjXe6sYPPY##P8k9}uyJ?RFwx_~oD(KtIw*~*V@+T)JZ+;^Y
zIi6rsV?NX1wID_C=cJrP{W&S;0QkRicnD4kxF+!EH9zNm`unR99#Tc4K9`51m6Hx=
z%keG;EB&~*xPRBG{m)u8zB4s7H8Xo{8s%!zd@Kp0B1FIcFC4~!^VO?Y{AVj^iFqjS
zdbPK<IypH#SH0N-a-5rex)cQfApw_-u~5$G*ME>e;LE2L6kz<jWRv0xw-3|81&Fxp
zo-ZpN0mNkf|Byc48nULF5P-TBD4#5oDJ#&l>-)Te*4fz^41b<-TTTK-0?e=C%uo#c
z_ieLrxI<1z=yrX1?8so~bGfdU0%${fi^xBqogr$U$5UUSF>1>GR#=qDjdsj4Vr8L5
zkKRU*IJ>&y<KpsP?6j~TO$B#babmAY|Gq~K55Q=0EOLR#!9f@dG-=Nd{`&Pn{btF%
z6t_AM;KAU&#iHLi!d~Bfi#H4aLSQJyTrlGeKxooY-o%9JzgKEQ)Jj6)VKv*Lc9j5F
zFHop#EcqGjW^-W<j39dcS@F@(*G%|{@#a{TV$QV3Hvga0x=nCssOY~2Az4vYwr9Pl
zu{W+8JkVfYU%2+-i$9C47hPLyMH3_|zy@!_Q*Gx^`E|eF|9J<;s#6VP!^zDpc5`BE
zXTttHF@>YxB?M6X%V52WPmc9xz(D9#*?pW`p#1Za=|yW5TTz4qo)}eE5x3=&!n<6=
zpPmPUL!@427Wp@;X@z3>*W5UiFzD1AG@~)v6)FQu^n`?Da(q1K?>edT_aR6-zI`mE
zc!+p=-}j^TvE%fJ@$_UO3slO~l=|NVs@`ySp00BPgdO5#mP3GFfY8&6{xOsd1!N{D
zbT5~Oz=tG6@aOB1_WvT~y}a`&q`@htwYNMYJv}UC=O@5IRCl<#si-*5JXEmX6;=A;
zvN0K|@K4QI3vYsgg2J5#nBZpO=i?I#CCV7KNE(WbkJkh=3maS8_FLc_zf5K${g$4t
z^iTrpO74#p@p<Rsa>F6}S^cISKv`N^TAX=64)rZ@TD+GlC#VrJSV?)?LAQS5q|@`Q
zk0ES753tC@i$0u1xko{H?-&!S=qju(aRHfB@q2dhj4^+AJh}UZBy1k%>881{urOtP
zMPQ2j7IBidmKoqu``4e_hTM)&0A~oyk!+X`;{_MFnx0qr_wP-F^qrmj;wkPHb+6aF
z&#VTX4c^kM@x;At7)^4*dt;j4UcPm&zsf6Wr~yyPt(FC*9^~Zb1430yPF+Q5`iOob
zu5*~rtn)8ZeAzI8i4m-DIoIQ8K^Z#cd$ZFtuab0Lr`aa0B`~sjMdP#tx!1}CP&vok
z!Q!ts;Wd?iXIUGUX;C({W#{A`0_DXrzUC^9pSN<Q<JcQ=WE|k!=Q#IM({(1Je29qx
z(1(hK1}t<*eN@Cj)r{9{v)==9&vz!L8(GQjx%v6svpxSHU3@-5Cn#_3KS1A-3JeSk
z=i7U@oO%GrW*XYsiB0<8ii}z9m3+m<Qh_>_v%k=C*GFaTJIf>*v5x;TU(CxaQ5sW=
z*^HKfdKl;GWVKAb%Mgy&nHV}fx_z&HX^L9YN_S$hkglkg#x(wHN!yQ?<Qth0is7Fg
z^j^3iEFEo#PTi%oNw|Ay$ikVNAR36`kpR4gI*@^}TgzSF0sy<h++6po)8!i=)YVZX
zH#c{f^&NGWKJB8R;r^u1Mke(N{u`qVzQL)5wKXZH4N2p(>8~_O;NHci>xjOMbTLh0
z+|-{-)ckN;#KC#7YuJY|=h@M)ZKV{IYt0=bm5$DP)%&D26>fg(FA_e>dYOpjc#xze
z>;FIOhh;I4u;ob#vst!EIrTEqzm41yt$C*`<GPwS=~zgJmynPEIA%Ja%YWy0)9&sr
zrqw^{F5za&TlG$3r)Z!O`+rLu<)h;ch8NCUZn-8}_IqqqQ?s)l{;`V-Qh*g(?SJ;#
z?CSl!S7OGN@}D%zifZVQBjtK=6*+QFJ)qWaj@EbO@i`;Xg|K5QvZr&1xaI1wnXX7m
z<6(XVpLH7~i{(>%{P^(tNH};6n}ij-Om6cOZ|J6z8KA_>%f|z8sDVA?oPIywo5V|6
zZeF}WhOJ(Kyt!Mzxn&t18ae>x&duH3fyzFP(>57KW&iPcSaO_#`}WtTG-w~ozY6Lq
zZSGWjgyH~JiZx%VyT?aE9b?!XB=fP`Fo&}gf7WdAhQU6rPps;T8T9jt0O)eGa|BEw
zC~Be&QClOL8+_pU2j>v6X#j8zB2qX43C1;j*A885Ot;$~Lu&DJ9%yhV0PHLnK>@s9
zM#dtQJdzf+CWMEGK8gXyJL_hfCBgthu+nDg3_y+I9Uq;I8HFz{EJVD*X6PtjOQh{*
zGI5IzuEd06pz`~Xxhq$~j@FpS3e^Wn>=zbGHAi${m#NN1Pd>j6rsWk;a{vbdLxI-2
zt<oCeVWeED{N#-057D76mBrX2_Ftky;du(5K1vRtUKkbo5LPdIn~Kc`sX){T9H+m0
zzN5z9j{rCYoVU20zm~v38C*igfcNG|A;lmtny-<j2uMI3Q((al#Y8hJ29ivj-&0P(
zNPi+2U3E@d%GRAuqEU-7_hRLm(t}SIA-y(=u8)G<1zE~puBT4R!F6<PIkp#TgP&Pq
zu^qa?WwRu-NZ&n{)Jo8`?sL&$1flt#H3Y?o<>XPly&WALApGcPLM@og1DNBl)s1-d
zJCIuOyYNkxS=SqX<`bkP3>kBIaRGuOJ-b3aJ<r{r&CShp*}iDiDL(*UlUl_RKk36o
zovViFD6VPoh8K0unteOeBJQ4?u{ogxKlg{EspB^Ye+`pVpHQ)ho&z61AUNfBvn?Tf
zQIx%%PW^Es3$)%3+|-?TG_1RG`$Cs-wYlEEwrI(u&l|aKg@zFv7M7EZAbAifmX@8*
zGXCNn<*1hVD&cuE)?J%1nF@#Jdpm#{Twtw9Et*qW%1V8#?Ibe^xBi}|dTxt3?XvT0
z77Y6g)+pg9wkp?5N^-REX?=^(Gu}S(Czp`o88%rgjD&3pDKK+CPN>ke+yPK^$*OoF
zqJsKtXJ|x1d_rHMESlhxY8$U7sQoX#0Ud$~)j8zpDY0kh_G&SHUE1m7@pypaZy>-I
z86n|n?ohQFZ8;9nj){PFM2^>ckOvO8^)xAnrveh~g0lDMs#9h`#Pf)HE`V1Apgmx=
zz6%F%u(L}R)aB)!dwSnO#mH(^oShc^zr2a3PvxVg4zQ|RVmsm)b?Zdro={(!42_It
zB}<}BmB5^g{?I1We6kxEHwYF4dowd&4D|wLl&dBIX<^BI$jVzYF#j9UEUAB@M%(_^
zM9cKrTxI$TM%rj8Bbda&N-^CtTqjc_mv<l&E+8W|`a5EC^iwI6&ioGd2*;$sxZPUZ
z91Y+1FI`<-nB)TPo7DQ{f{!o*qc8ctSDn0gbkci`Z#VzrwJFyP9>Woio-7_F1~YpC
z6DD!wOD5s6oY2<M5)YH>I7&)yTA=nVtN1@$opo50YuoPEGEhN4K|o4CN?_;)0g;eK
zx<O*-?nXg6B!?Jc(G5D3w1VUi(hMmj-QD{hT<hE4-pBjbI*wOn=6UYCuJinzh%o0i
zTc9KZ3(F&#H*IZgfR<{&H<k)E|A!AASV#=sUW6gyprkAYy)T9-<VNn0S!zEW{mg=3
z;E;&(6`h@-TCdX<MyeOFB#x5E*;;PSvo$&8ZYr5+k5Smt$zw)X(p}37$2jHA=4^4;
zWU0Ab&hL9$bj*k!rtC-}T7G_o0W|H|Z)B7w-^fo#pRrC$=Io#{CfceXV+)%cq1kQg
z`vOx9BGNvhhSAzh_2-!60{p#OY)L-3^7J0$W!qn0`#Vu;RX8i&cCfEpduwTBqmr*8
zxViXVyKXregG~rU1*xxC$J7I&(s=nw>ZZWC;cXUWHY6LwYgW3-{JI7_Cmd-%pY<<R
zZbO%8(4o7M)+cqn+>#L-xu*4g$&Wh_8!ClnGsMEN$%=z3><jJt_<FNXk64FV1l_h1
zv`e&dwZFQrs`NL$s7q*WI%>ZP3Bc(gGB-DWIPq2D4~rt)JCT=1CRY3uGWm|}<lY@=
zn@)FU85u}M7YL-&5p#>?lj3$qVTy#mA88Y1VQD&<p1P|nxW#ElrS<9{JVP;EhPBoL
zsotj!hTkBTACE=Yu2bQ(iJYs}yjhhXEv?JciDK@pCSh~@{NP7ELOw8y)6;P8E_wjK
zrhap+Vfy89R(^)BcIG=jJ3zMe=39H=qdjo6Z(x?QzXv!Zm~!7NnvXLEK$J(+8lF6M
z<dA7ktN>U0zCx+Gtk30qo9w|})!|`I{nkvQ;=fdi=cVfPycd7*C+5!YY+7eHE${!B
zGj)kfO_$VFSC{lt>O>GEr~xcRaMS4#*x>qv4<jZj+(a6ui$z`%lZeb=nF`VD@f_db
z&?FCe+4JBeQ6=Bt1!MJ^n~V&4#G;WDev*+fr@9y7ub=ai=ZuOeJRhXeV~aq?6h`Yt
zo3WjooJ@fP%hcjt!`2}7G5SY~!f0ncmn+NcBqjIhv(t<7H0%T!EIAcAq;NvM@hC;y
z3|+Tc>%2}*-WZxZu~r+MHj~!*1pAccwBaZLHSe_E*!U{5!0E5bG!pl;o~Zo=a{pAk
zOSlt(^4&y=WNo~sBi^;))1nCK10#U?C4^TpeSbI*dxDk7A6=5UZpY^9qEP#}vQjMG
zxer3%*;R&NsOWkh5DQx%_d6=Yw><g@SC|z9EsRh()Cr>`IcLpkkowFej%f|)@|CS7
z*Qs+s<d#;-RCsp;Uo>=krm_EdHmXA8wWST0c(f5Jls;}T`VE4bnc4C@!0ESjN@{Nm
zG|PBie2g*<O7w)#;T^UO&Qi1F*CzzZ8?iiEK>-B-*HfA)xVUkW-gqu?oTwGy{k$%r
znuocUy$eTuY?S!g1Q)qwzWt9hSAMYlvqf)y7lB?x|1!~2xbybyPwt)`0NDI5*R`=(
z**(ox&DAwZ4hB}V?9>-AZ5ym}@_ls4%X*%suoaRp7Qm?}EG$gh<jiR185Dvb+>@7y
zc8jY1Zh1H*n<zupf~aun(~9_X?6wbS%6r#ec)U>cnEQ9!->DIdS=bfHPz{Z-PO_&G
zw}G6Imz#GepQ@vxp?TrJzEPj`Fyg~%9ec+@n!ukC;0-l3MF-=huJ^z}S>)S?+lyv6
zU;NMTkisl4N-38B$r?zGhE5@!QE~)YW@^UyPulV>yEhyawklBS%3Oy2B|4d6#@f2y
z5ZH<3ER&Oz^uJ8*t)~bQZ%MQ6O!MTbHO_-m{zD2oRf8*giK^6g@4B+Q3faB6@27)N
zhWq82r{F4pqGOFX!>PD6y4Wm_OHYPGNPk<++0a;ym(8VCI4I9FZo4!41F>wULBg_s
z23Lc?XI?lsjC=}dXs)pK!i*R%{})*S=6-S#9Y}uUfu+U9GCJW)a;RxRH3~~EAKzQD
zi#o9%R+`jw9gZ<C=ApSOT2ySsXEFVno+f<*Md{||#=57+;^$O6cK5!<YqKDdp=*hJ
zbpwQR;0>z6iYsM+!k4D`QrY-1_CQ{5k_5f+)mCQ5y@w5=;F1dj0{D1%Wmj)8KE@Gt
zvvKF0ha#-=C^2Sf=#G8?&x-ewU3jH|k`@$1?&+-3SBO|u#e!Ov7K)=jjNx+h9UEUN
zwEx02s%I#5KgC~6K`00s=X;)^WGvonO9~=`6YbQ#`4B?zgpPsNkl_w16i;9`Tq5B6
z{B4?`W<iUmH+jpaARaxAUa<*%5hF^b@I5hvLTQce9@4@ZcSB_8I(a<h#p8M*=W>5z
zAwK1XLSP0n4&bDlyy;<L`5^8Y(?mLIat&Ixqg$xAeW7K70%u3%+Bs!DxU>jGV@cTW
z(snX^2JR}?0V|!Sqpz+H{aYv#B3Re7zRzpcN>8_yyg7J$mwI;E^i_s4?m)V=2ofih
z(<{Q^xhzw!Wx3D<6>?j~+`?iVPvVH)sfzF%4s-^i?LA%=XDZF6sIB+0=cLFyA-|aI
zrk&gOa3xOf-H9aT)jz>(Fuz3(+Tb-coNgz6KAVwXDk|irGq5zd^9VT|)*U|llyq`x
z0&k7guowMm0LUK?QB9m{Qe3Dl$oBR}tosHoHJu1hgp@EaHK-ok{*~D}+3I=<(WF^)
z%d&Xf($F%pehb7hK<YG8<GgH-w|sim_i57Qu+53?B|GEAxGigx(q(L;D887iVp6@6
zk(MUFVREJb?bSyNAC2UcZk?6yJ_v<ZThp4}l6r1;F}32~^4zp)$jpPYmpb?)c(5zj
zZDUGkf0DnY(dtpL3sb_QGgJ=4qWE}?$UG}+!wbOQbzg||I^H7K<fKXW^5bKY#^Tq?
zcn#~73$@4@S^NuXwj5oSkea%;X-#4J0UTwjT^<bT1<F6~7}JdQ92$LV7!$XP-}D)%
zKZUoKo1;p?4%i*T9xS{Hf(!&%aFI|M(m0HhHEe?6j~5ALy7)NFO=*9-G1fGpdpIpA
zE@sQ(M-M5ka$yq<37`PeQsbR=R}w$pz6a11zoJz>0Zj-&EX9*OomV7^K`K^Ww}?|d
z{!M?I8l{3~kI);C414V)jBN5gMeKaXU41INPZ<05QMvXet99s#6=93HyC3hTO4x?4
z==Z>tq_4Ol>E9rfkT+<(IQkZ*z6zk@xFQ#9B0BRYy9+(|p7+;AAcB|v`khSlC8aZ9
zuK>pqDw)I8I+D3t(#w#FmsChXTiGWJYZJX|B&3(yv<ZI)ryS7~j7jhi$N5>{9x8?G
z=`v6Xa({L`--R`XuH|}>%;<kB+XVP`FUt@B_jq083x++y<elpN7Ctl65s&b;UOVKM
z-_MQHzeAZX$0A<Oz@O8YAGA2rZuPM|F1qT8P)1-;IWYggY9;xIOCZimlswT5IhqTz
z^!-Olc4aBwrYLT$3wU9CItV;j`J_><-54<W3CZK5<tB#gp~iD=WOW4~?3lav(*+$r
zLHcfsWOI{XI}PJL3yZyd>jZNCYS9pb2`f`a#fejlHiuDRN1|-xX{Urbldc+6jX+GP
zBZAZpz$|KJAPX+PYn%YgLI!$!U+R@6Zen4zXtkPtAK}}rwKXF~=I8=ospwK*Z+vdw
zYWkb8wy`m-EB|WU%5KG3V6Mo#sEu*~naDcCJ=JB9OIKz54|8*am!l)*(ACLD@w^~D
z3k;`UQc_UF28h~qCIejsL4bG$7rvd%=6^J*#@+ZiCG<5k+??f7<zT)4tbwCFW`;!a
zT2|6Yip|pSn@Hj}cHybQEjCL8y6?ubqQ}D!)(C337QR(Gu&{o9{D`Tw_s*QQD4yu?
z&-Fv!tM#O+2NWNkN(AwFvioX&guumhP8K(&PG1tn*kQY@719II8zs0WAu7^^_g@BW
z*sUdVnGz2cYn+ur3Gtr^3nKycI8y(81VM|Nyc8D<sO>hgKljQJP;-diPc+m&rn>B&
zYvn`Ns=J749Y_UTH$ZuuZwv;S7p29;VkQ3ww<3};aodx(ibzmdm@d6(*Lmtza)Gu4
zaFOU%1Sh6eG_!V9vbmw=?ErNwrty1HT11Brjk)_0%wnJ-$MRYgLGsm5)BT0z&514q
z_k?ZUquQPCf7N=8XXKdPQfNIpiehrct5m#S-gDn)BmJ1iYdN71wDGm|XBjqV9(rex
zy=9uh<aEj0-MyW!X5xmfh@|w>hyoM9y*I^VF81Voh~`;~(Mitmo^<^8&|@~_7W0sZ
zKr|HBXMZ!#bhoMALnoxotr(a*JgD_C->9pp!4qQnyoZC5*uKt*WVct!^k9t*%zST9
z^<7mC1)FCX#`%n&q-=sW)Sg-FRfy5N;?G{Gm&r7B>1Aas0(}pG?>?GXy^SHKZ%1@s
z7zr{rR-sMl!s}<0&k%YFCS}?{Ca>8phos{^*9CRdfQmp`+dznpCdR}&wmTRYSAK}Y
zIMEs*fPri0f0ldnoSt3-2bq_#-oWXdGdvMR#$BvtB(_VOP!!1U@Oc%D${)nV`F@v5
zE@MWt!zaI~<YXEH_a(LeL0m|Jsr4V@0+dCmkaWiNmlZ9rgar1FDV&?k`&_TT3VOqO
zRXd(jmkxJIi<ndSyw~~%WPg}$=PvY@bO6`<%@Anj2NjIw?WS|S#Q5gZUOR;hVVi5~
z7mpTIwb~G3#yyy<(c9Isa=GIum%x%peLl9L<o-Q#SejaozjYxo7Soy_F&GZZ9}21q
z<9^pJHU|#TU>3(n5saB)ma=*LR0oJ3<H26#B7S^E4!PzZ4N=`CzdT9q$WFT!^k7BY
zc>_0$+^%L=ZN{_`BbB&?v^SgM$nlV?9Fy2H`r6vy>M?AAolig6ig4L9oyyn<+3yp!
z(sDHn{9w?07ob3OV1T!lI|G6*#He^k+6D^-Xn?5R3af#A!yr{1%s44zC&xr}&0G@i
zcUf5vCs&{qSP2w!+sL`LjDdo{KhCP^Ao$*^u}6>S-UBKH?L9Gr^W2gmE<k@c`h}o$
zb9EiOG@M_K<G%=(jw9NtSCW&*H6})NGgf5pgS*s!bPMLm*B(MYUXF2q6~^@MAm}!>
z2qi%!xaqpPyLXoIIu0=}rq0iLv6bHisxtlr|48rNVcL%g_=^RNjnkDF^VK{v*~WF(
z_r<zDZ-A>FhF0xxQBq)blsG3=^dX#}<devE3r#mSUKO4c54E-zUYgZARS&fnt+N<D
zgSQ_9J%?y6MjPZ}!>fN5NAkIcRIshO9|X{Hgg6L%j)um~O%E@fs4#4Cv-Y$^c%2eq
zF7;Tx8XnBz0YCEwa&a>hRE>=nKzPRb>MDZ^yEKa+5k&J9p;!qeZz7l?45L&%oq4&c
zdZuA~`&#LtP&0!;&g9NT{KC>Z<hH+a3OOd+1|dWz&P`E6&*rnbaSGMgp)c|<Mkl=Q
zpFrxHPB|>{2b?|3V{|IIaq4y%etRXlD6!JNm8)~kp4f=``nCI=<wHF$@q)Meo<rmq
zG3R-D510?4NOSC(lIJI~y^BwTP|slGPobmPIWl^J;y~-?xPJOuw}So-2{XL+0l+9Q
z%K|H`*sQmXa1`<7+?$rWfCGst8aW!Pil(M(R8SzoL^U~q19A51;3JKt-b?e_vyUa=
z2OdrnP^8W>3)WuYFy~&e$Nd;B<Lu5M1s5x(%c$lr5s>M|>$3^cQr(w~fEZKw51E4H
z6Zzu6>Gy`HRI}HhrIs$})^xG4k)LrICqojfcR5EDCjpb!F!wMXZ~hoa=P7=0J3lZy
z5i$1axBJ9-y~kcK;!u<{xtSw*m2f{wr9Ve2m0<K4Oi!o3z9h4Q%y8Lxqp;%-{$l0-
z;x7aQf}HFnmVM(3BTB42)#Nt4A|+d$`APSN$T|MpT+qEUI}~C`qxp<rS!NHE9er$V
z%T|WFA1$iK_9NEez2gUNlktQaeLce(R0VISOi=u^o^)OU<s|_Xp&HA&tg{z0Mpy@{
zj)_{`n;SNVsYfBE_(LQ$h!mD&n|-R!nyfl`4-<PQ{5rh>F~vuIEI65z(f8!a=2G{c
zEF-$jcp1Af^Lhf8H14V3=i+g<Emy157zIy-P^KVdVBJ+q`ACfkU;~mwlahT2(6cuW
zxZDEOSf36YGKo9+o<anLsbW0VQ@!USj;9rp>{e9Qh`mOCzk)S}`y0H5O_wOMzjfTN
zek5E+&<z#UubRjR>Lb)5h|~80ch-|nkshl$c`F{;l7xOtp!%T4?hVcbkge^x);Ij_
zF{UV*-`;m%(e``k=g;CZ(k?-`$lh|=wdWZ`7-`CQx0%!1<inxLDZj4sPeM&2l-JSL
za(U$M!=7>sl~WU+pLF3i>l+)DCoci>5MX=0zxeI`GFTYc(tu?_Y|AD2eYrl-yJbvJ
z$xYrB)r|be@)Sx&Y*|vmvKDPfhAy-&78Dh&RgLK{=qh`9dY+x1*Hl(gsz;y8f*l(+
zN|*1+&77y&`CSF#W2|{pJLsB1Gb5P$F^*V1ho_vjk$PrN`i+Vb)%(0L)5lEx*lL3#
zQr5zEz=)SSr&dA1Rjvc%FF2@~ZS*csd`nE_C1MKPc>FTl9rNHU2stu=YaLD8mS>Ue
zZnDHis#m2z^JGT|(co+tEpWRHFt%5&a3FX-Z(!^@Ti~DQAe`^=PcbI6vQ!*xeEQ6|
z1Y;%DJOXXXu09wHmL`~y=t;-?+ui%*LnpX<K>naERx297iiL#eZy+c+4`21A%2$|s
zo>ITb&K>QM)1=S$E`3rw54=G#ttSr*G_5c4m~~dUIY(d?5GFN!6pb-MfY-L)51>(^
z>+=QCFnfD6;lAQzFMpV!dhl_E7|1FeWI;I~jXp#o<}l8lfXJYyt4m%%Av7wA%4{XC
zG}GA_h^T+tJjh(RL0y2tz)5b8gv5~9fUzYflCCkZnN5WQ4)91qhvu-$v9THZ&c|lA
z(qZX_%b0*@vnZ3Rm8<-MaSxLvRbE!a_xbLx%z{nBdN5c6!AWAx_#l`<krEBN02wZ+
zqd?SpQ!z@Nj0Dn+o8$o9S4{_lvOuqKq!{qGC`&ZpraaHKyyMm6tT#6#a8?e^%I4bi
zB_|NaLmjBPu>0l*bdpxntX|Hqzs$q$Hd)w&C?7sSs$10~*9H3%T~qtU+Dt1q1q*Sa
z)Jt*f7ArQ2Br7K7wc4zKs~-c4pU@G9op?EASZ`5kDSk!TJ-fepQ~GUO=R@9%iy<)Q
zP%cZ!#JLBmscCu|U<gct6kNvX+nZfgi43O@uZcVXPs6!*xa6S~%tj>Cl@clJ!GTKa
z@B!l?Jc82XT)|6|M`^x`MoG>>dszmMZdG==#?JnU+*6@smH~q{!{9Tw^SwV<jM9RV
ztZ-{KI=_@nPLV@75{kmFbe(b%j#lz#c=vobR>#{-k)mZBS|H%0CV%&b$8V2bE@XOh
zXX0$<{Cs#jt>5ua<J%ZBlmPkcm9S{C`yqrO1guZupg~~oY6hNs%ncX=8)PDZ&@^xn
zW)IBIwT^-Ahdb(WD=L_2x@vm{Y0ag{Xla-(^6k;Tt4xNn>NSOdSB}PF+`Mv|FFo;c
zY4Wl)H&_fcb+tf>kkr#nvNLIdjuxEqvGwG__ksA)&!Pm1M)o+U0UH_pf*%<K1_t(v
zT)$i%bO4RJ%*;%X4irK#%tVs`EgzqJ(R>vo?W`9bXoyV)>o@^@QVdyEeoo?go+OV&
zlXia<E<*Ra-1vD|n$<;BOly^<>h?n9%28lMg-D+6*Hl0yB~R5IeiLv7_#UPi?lR+F
zS|xShDpw~1I9YLS-d~Mt_hF4j8K~Cxi~9<GZJ^|6%Gg;R8l6gm52+8<s$N}xhmu6~
zBSK?i6|}@3Za<``wK|@OI>MQ}^;+x&f>E%QDHyu$EI_9P(4;<x!4JN#Sp3W}?_6_P
zPc|xN!Qt>JvDv9R6y4KGPtE!!39Ok}sCD&ZhT(TWFYWtlZuZkjzaMCR!|j^*U%u4+
z+Hz~(J`_Zm8dZp63hnN9btuwIcyz0(s|^r{c&4I}9JYiMRoZ>}Kj-j#Xhu~alV9@F
zIW=9u^$7d#8sHPuP5FbtD8Jf)L`u&R9=bUZEgHOtxBLt+B<Ln|tTO2SrSdz0{GklT
zGSXQfFF_zUeqgRKgH6oLwke(Xtf6K~L3nss;APsAx2=XAuN5avGFPTDht&nOs>?3J
zRK2Fcpcy?Q-8t=G3a018Fmkp$c^Z>q7v~LaJoSe68KbJ?O+y!3uBb=iY~BHobH%iq
zDA=7mAoa!P-AonbM1j|>T>4GkpbEn!Q(gKaI1L!a9gRpa-I4*IpU%>1=$Wv$bI;e^
z3!O_)X8;#Bo;x2|l&K~Zih&kC4k>Q<><cI>O|T7&xG)~}R1#M}vK}e4WLE@Ox3UZ!
z;r;@c?8PUhr{A#QOO@SFh~Qy_F<@a>)Xq=ZHUAL?-MTft)(Ud07e8A+&sDC4>J&&k
zwN(7D@FPx|qryn99bpV^DaDq*`*JPtgaiw8zF2ppd-lCUbtoo{R9YZN$M*d4xom9y
zV`Lz#12fvvdp!C!|J{zn6VlVKe&8$Gmp!$sU4nIXN=>rtfl~n(*8P}e`LaTtx*|fn
z3-RByagg}j&39afE#x!IP}9>IN#2HDny&D^k{0*Tw)Fr4y?2XXnaPrf<(k;S)li-M
z`4qj<U^L?8t|5BTt#1P=0E5e)$1BLyUQ*p33ej&p69feS-KyJK)$mW}jZsjzs+Jmo
z!%j3P;pWVAJ_F}BfwaDf_trQwl8Ir}oPcpXJu}0yNS@suq4U+9A@r5AoUV+FrNUNi
zY^-uFg35e>u=sO~WOgY3vu0408n{&=iKDDvhIY^f;&i4AaaNQ#s;N~Cr|4)8XUQ|a
zfFQ;hCoLnqdEGu#ZPEt^>1PT->g%feKpW-!9B7w8tWJele;(G8XkofID7<~Q!5?eU
z`O14wl|j1(JWFi)@GnpJ7W(PrwN`6f?N0t4Oa^U4!3=|c-l}r(@I+?p1X^i=_<Ed1
z#_;?IB@^1b@(Z)!r*pTq-Wvb7Qt2m#fTC>4%yF(Pt!r8IwV;IW;YUSGv-6(W24<Qy
zDQD$DhQYr(rQaxU<(-7KWeI?OPNCW0ty{eI&oJBD=s||hO@TA6)8#xzI?lFkm9B4T
z{`%^;nNe==uR}&)(6%aY>~T|w^-4SK99~ELkag86VBc$SLmdl}CgF01(@@~Bb4wnj
zsm3XmIJ(u;S8PPSQEgdcq9`xaZ>llWcrAN?s*d-b21V(;vp%~09wQ}~&xrStY~31`
z-a8Y$9Cre&L9wLv3q$P(T2xxTez5{9DqhvE{6q~4EH~tY%d6s`iDRxDq<asP9KE-n
zR5ToFeLtkDS*tspv{Z%%+KziOZ9VSn2Jw<nI$H8P;z!d(KJlRRa5;Z(4iu&eDWeqz
zLG(@<+eBaaWHJG8QwKwbiVBLRo>j{xIhu>L1q1}+I7vktYaM~|=t1?&dB3>=!y37u
z+hjzfw)QY+$Of`Dvuf34z44bDQ~gps))gFEDZPV@ffazTaT1ALFfxO0nxG^tff!4e
zl~t=k)YIKPTIY$%-wqf>peR;ZS62sG7A5*M`uD3qo47Qx^+0RpfTSsHvy~z96}1#_
zs0C*E>#NDg6s7uP#(Y_^judJ`kbA9x9yhpXmSi;^T_}K9Zub4D^q0v~)6Blfnr}5t
z2#|Ra3cQ0(-oKfj!1mmBZ_0j$PUJu$3gnf)bzjUlbdUoH2_Y+-s<RZ#$L%m)B<_fL
zJ#(4vtRc^_v3+G&>s|<8q~~J$RF?%^?SOv5VekBd+McOTM?(T`#wf7iKaH=wvgZsf
zDmjw<yb<r6_POW2%DbFAr8`1I@HgjRp8|QD%1%?U#)kArmJ+t{WM@0a?1|S)hk=Hs
zif^StOn3(EPuKQmpgeA``5}`N6CBDwti)NtckmQhooNJk`f!DA*L@?D#yKVkc?1#`
z0Okmvdh^1Ru>r)(Y(8KG=!o)Yk;AEQZ$5-&Rr4jVvrWW^kmv6EHw@Y_H!hf@;jH$^
z<xYdU(crai)#&R@tpB(im4K`GN!G|HD{<^EAgLMuY*<9m4P`U$VT9SlN@izz6sP_z
z`hq0n)71|3)rRZ#rCFtwW_4a^??n7Q=t5m4NHie>kq1xy1$C5;SSBAo+t8)T*V*Fs
zOX>7``~3+k!Ui!kILMJlSdFddvq8~L1%$v?436KAX0NZ@zWp_`G+${k1mZOxF%`H;
z3nQcYxsa8S(lrt7v3<!tv}<xq!AqMm=Ip)&+iXma<X#THp%TEQ5qnodriLQM2Jb*3
z!Bkw6&x4M+s#*sJxwXZ!u+UyNejZmw^c09A_<mqTR%DI0?Lutq3{fBz)kdM)Q~`6o
z>+h=SL*CEU9i4zV9`u?59Pqb9wvK6GHXA0{A{U+M@Qb4(*F2iaw(=6(3BF0QCa_|H
z5gC`3W_&dH4T|FWRPppe$+(^W4r$Ejpy2pmma9)Rz;@5|1e(L+yD><D`u47(y!oIL
za;I^xI3R*ToU)eEbtD{L+MA?j$XgKQS8t7Z`P|_k0u|`>0k9;aKSQv8(S4#FQI46s
zEwkPoQJJ!D;9D(dk%L@=a^}w%7<jclzlNq4f*t`LOY3LrD*?b=_%jdiBT26ru&1PF
zKR>k}y5GQh@&01AP|d1W!353gNV?&5JkL{?em&pyjQGzxpmY4Y*>1MUYr8Sg$pMgt
zj?;v^U>S;kiQ2vZFlgf_84(=~V}~V>S~_50q3q_M`K)(>F(K_?OI*sm*s>0x;f|R-
zhpl#mViLZgZy)Ra;;S$yKJ(<{x1HSqWEl}Ie>9|NL2hp^fvF))yDmSo=JN)+1Qn>b
ztfPeC8hnbx`~e#I<D;|R5aiTe$`xI1V%5RKHU!9OPKv3+H3CRI=*-s$cZ&RaQ#{ge
z?pk;9-X@NBuzU`mo<8565VWQgS;@%p&2C=D-jEmAd-%X|!_)_^N^-jlFTQ@$BDg&u
z2PM-bUIf{)DT3%0xi>8Tt?EgSj`@Mn?9%IM35-ObN6b4-bchnpMSKV)HG4)H^gp}~
zAdSpBvYS98VCMyB9*s~~QqFi?w}LI}Pae+YZ#P^AO&*krO5%6}^T#2!!3V3xj42U4
zk5}!`7h}PhyAU`(^u%V}eES`qo&1un`6h<}kh(6G3;~)EIIzWOx}JQHI<-?ZuhRDX
z^wI3mvYRDJMkE;^;}!Fwaas|^Q62EUCwsH07@P|c7KVVAdn5D64GIbZwt`@%gq69u
zFXjVT?UEOHuNoEiK+?Qu?IMtGqy{FZ8Vy(*;8+QQ*7-YKbKUUH>E1ch;`h^Mt-UI@
zts)6oHf$k+JlXPeVA3@0Z9NZ^gXt+-{iD;DQ^UD$n6ikU72kzWE7g1Wq3Q!PF5%;k
zs!ra<HXu4X$lz1cvLxv(a%^t=R@XrVTIq7EX^p*M7WBaAr}sepj$y$ke-=uy>%xYn
ziZ_x^H7YiWk8;uMhKWLuI`O|*9ZEg*i>X~zoxfM6ED<!fgH9lDx)w#D<1AI1t;&Ok
za~mcHx8zv(E%4|w=0QpMCzipf-$D&wx+_MR(Kzer%~ML3j}6@rJ2(<LaGwc4!X{6u
zpb0Xx8PS8r#M62fl(ec^$y)L=4htgC`VR}5JOc-IO_$RFpFFUif(}?5X`%smk;)Kw
zW_v1`avonl3zI=9B~@;-u<4Y0p)eU4B8{IswHINvwwA;!Lwgd((|?q#$hvwt{c?ad
zd1@0>srh>WGxQIN1r$%ZQmMbx*TWfJGm{nbH>*5+4C_{=H%qop{|itE2nJ7a>D9}1
z6j?1&sJ~OSew7Ai&xmdOi^D43>fp^5W)`3$7a=-roBHaoFzq(mTTA1;*G1o-CfMO8
z`@nxnMg7Z0=dgN8lhCnzvNCP@<Uq-)(b~ri>9?R-7!Bb}P2tOqmM<$R*ft5{BT|#O
zHM>KD-M9m!ItpH(e}9~&dTpp3>Y$BW+@H6T17J867thsayEUYff@RUH9AD-^i20pR
z|8(cGi}+Vvc*HtUDZQ_gofW*@ibw=Al9jr-0M7>0BuU|-Sv6GMGiPjetY4en%-SYk
z#W$mjj@G^<-%6{R1Q!M|x7&piTUoKKh|<CC%Q1R$+Be_HC6k^3wI{3+E6;F4F98t=
zW;wjJi(a3iQYlFR*feAMoats7y)tYJPr(t;RN-^d3I4-femCJysMJTqJ6f*4f_e|e
z0A@<gr3$5^fDthFEAz#iT+nN4@#X}@3((zcF?!6XhNYJYckixD79v;-3X-Jjk8u{E
z3Vy!)SS%7~sFR?K#XWT4=Q|4z4%FO1_HL`s;2>vC*<SMf5cOa-Mq1hgEqBn}rD-|f
z0LQ^hL069YWY3@_D4-z_s3k1!pHp02V)IU4Tz8G8xy@2{Bb*!^lc!%&x#o4W(X-V{
zPgvL_KIOE1*@ywMD4sgXOjLuD^4#h#Ync3#M_)gn%)y*D)usVw8ef67*@M%ITfc#>
zTbcv6<qO~fqE`i;$NUaSQnnK$MI$MP!9cYAo1BEhR_9RAg-0lkcscpGl1Wd0m(Veg
zq+)uJw<36LP~Bud(Yq|I2_N(sP7L=@W9OCOR6*Wv)8CK4J?|F_5in$k6lY}_bw*RA
z%8CNP=ll2XVK72);fq9sLEYR8h<Roqr^mQMGO>LY$y4v+y~)Km4boJ6Yu7O|mL6#F
zXl;u7xjvJkBDnN5yDbLj07ZfiP2pC`ZtTOcnj_uC9smn%8s_^baV(5d4+m*G;(`@7
zRA1NYTB?ldB74FQ8Z~6CMuFI#gHj8|0Tp*W^Sn%+tR;6b0*Y1k83!QW?8LXHqc1Xa
znH9A!Lr~KOWv<7eupOGn)CWqrXQZ0d)DrYEf(ficQw=pVP=igOLj><VJL9)4Smh0C
z6px(w)>f*2eg>C43leCNwbee^l-w>9KmEjZ%O6N}LGfPvKa59arqaI{4^Z7KleUS0
zVkKukjtHU%nfl_yYtatG$1Ore=HcN1kg(M*{Ww!row;K$y5veR7Jf&xiJ7bR-jR`7
zN=iKIlF4D*;YgbKx&y-9d{1`osGQ|U&&>AXS7&f}bqx|=5wg-6JjO`9P)ia8R7an~
zYawcnUoj#VCO>WV9FF>ZeSy9)ZWPG*?^Y1y?B5Hvo+b5t2ebg7B*R8r_=B@K%~;Hj
z&-b~KyF$zt=Y`+z@CXG&#}9!hu0mz}FGtsCp~HQH8qgmVql%2;bC<FVmy;(L`X+^8
zGANyN1wL}K0FB3lr;a%%JF5642_q+;+MD(%XA|Su?7D?H+szr0bJ||4x%|Bzz!SrF
zU(t{Opr6b?V)+SsFg|!p{NZ?Gy1CP>maP^Z(T_vXUXF>lvhnr0u?LYpPh<z#$n`+D
z&o}k~7=&aT9N2;G;~vZhdwSRvQ+mm1HeMdP<ZybL%|&bzoN`<4Vlq7>)Jiw^c%*ku
zU>Ydq^8^G^xaqS07Us-3T;LuNrs@V~GiQ05xZ60~yORJ8VcH#t4?2>78z){7u%4U{
zopxypca(Qu5Wgl-vWEZ&ql<)`*TA%o1c{73?Y)%K?$4)TwDlzF8#ZK1I&Fm;5EB%T
zB=>MolohzLBk86SZ2t=Qtw;IUnuyAje$IN#I#;B^+VL@+On8o*?MdLy03&ocb>aU)
zJhBR?2LQwav@VA{{IbCDI;AHI7-S|YMCqvg*`^Z~i1a<Gioz~!#!2b|^yxrvYQUyc
zd(#fKFKCy!V)P)CKDW9_WS+9ZUIz{fiXas7Z6V6ajRXDFE(b1CTVc?z46wTn^iK6z
zSM<xn8<wVLC+d|=*aP~xFE+Qj%F4FDF?-3{A0m0L_b%jo4fnzJYr?KwP+BUtr^nZ-
zZc$vTheDwM8~{-40M-IZJ_U*=ozcdH0yG!13>^Mlt1~7gK>a({f7$sYA7SoTNLjLF
zbj_w9E^I;w2NIU4rPsjfrla@Oey(;oeL?r{8T(dj(6KhRvI322UvOB(q@$@^0fJ6P
z&2-hm^)OG@XPt$l;{s1<t1zhgerpzK27~({&}^F4ueZ6=W<ZOz>t|AnqbpQ`dzilM
zXz>hmSQRC6LuRcEgO2ud$;mtwM5OrKWm?Tp=L$v1c9&k#xk5rHZNNoKcwD-S1Dn=C
zXI46G-$gZsKn*T4f3<`9RcDR`EiKN<L4ulEs`XnEe5vn(AYJDLGj%v_F9_vAWM;;s
zLliJc+3~v_I^$L6jK}Vsb}DIcWjL!k@+EES*QvJTRLRhWqU&@cs+KbSc4p_DCMc0#
zV=Oo^IgR$a%1Y6j4`DWoEhgcT07_TyOG{zq$7iei=AKTPe4#34oQVWlPD65T`|)EN
z?MFDJp_>qr?s>hWB6~Oc>ImVnYVnB7cL%cy>vKgRqR$(}B2P95o3Nf=D`oY}G7Jix
zEW9Mn0O!=CF+o6ySo;I>s4yHNEcDMg!d(dKW;C4xr&s$#EMOfJktkblXl%TPP4c7m
z;=K9#ym@cW5iHk@h!0SM`Y%PXZBg54%CQ=wRB=lVc{Wc7*Y7{>xm{?vnPowDuOf`@
z4HkO#5YA6*$UaYQ_C{AF9mnNL2{L(~DSg?j`GHvAL>0h>wSBD`fVU(mtyi3{>eZVl
z!3=1k^1h<ut7dO4Bw|%y><2jCm5H2xL!>d)#a0<RIF)0dG<x$XE^N1M6*tMwGG@s4
zFS5!tkFazjR`+lObLpe%->SYuo(nRZ2!hh(0J{TDYGqDw@w)iytUpALj=pJS&V2Tg
zH(^kNb%`a+yw^3M>d{|`&Hl>f{K`LGkeTU_JF9IN`j<*TP0-fQb>;{M7951k2p$<i
zuc$XeKE-j%J6+<AbZSgOFA6h`yNjO;6i6}g%lHqU17S4~W6(-`CuGrQlt_(yo(YP)
zR$L^)qcl{W=vb)JbuVcDoz-37cPzLIJZUF%^#10C_ZDn@1t;IEv1u_m<|N@Q=XKDp
zCTq1rSI|HY9bjfkhL&rSe!C_{c6C8PTwEZZ)D6%BB)#89HK}OIhg4?hTZ1zP;q1%k
z`6M!!O@E=;6MhCTA0q`a3@8sjhE}FNbh|kIYw<#%s@g)D6_0#(v=o;E=3Q7;1~R3}
zuh@3~I#r79enF3|Up?4w6kO@|G~bU^%8j7U`!66PIm8Dpz{@#YzhAoNmy7fw{LU-U
zs@-?*9AZXl>C>9ch{P1{A~kSxtHabSc?dgk6bCEabYuGWl=nP_w(gQy8u1Jaj?#Xe
z{_4r7$ZHF&dZJ0sWHGe6^<(vpeX-^dQw6fk*00RB{?Ie<QQ;~!kozqZjZ)b9niO^J
z2Yeb+O&q(H3R}GkL2UGuF&$jt9LDG{YiDn!*VZajW_1n<VYjCY$T3(B)KVPN>zQ4G
z3cEmk+4xZ0wY*RQ_<b&$8lEp1;H!3kHnU#1s{9>M-bKs@*UHDrOZ*rC3IL2OO-Z2L
zB|yirYohGv*bUA_rlxEiGT8&s%yhJAGE!jfL?@*=DHN&-xZ<ykj;5wgf#YG00n`M_
z%f+>4^<+m)NzDVCkV+!Ck}g<*e?dhoTku|OaWVYk0Z{e~n&K^QY>@5sKTDNO+we6u
zj#EaxRnef&H<tu<PpFz2XnTDLUL?>pw@|8Y?aH#Ss(-8bw9;_l*LRUP=}H6lxxkbZ
zl7XriowR)b`QVIJAaHtl)q~<1l#ckML&k)61a2$~tFQbmbf)o^!M!9gk*RYl?str2
ztgmbx)AAQW1M*GsMQ{4c(!9LU`RqJlzcp!>mnz>rwLPOpb3KHpb5<DSJV}VxI~lwg
z4<FuOJ$e}lhyhtLq$@cV79*j)(ruV39+4_OigOOGf^QA*YHhE9lhLkWSF%rSwu8b?
zS4}NYQ}j}|XteBNFKR(+BI%%dJfgY*5oIc`(a%#TKc=S(<x4K6-J~jIEMZ%jC_hj&
zPSLIhSNqbzhv4AG6Q<i7=ffZ4V$&Rzt2fE&^XAiL;@sXyDqbUd%LA0Qgx)fA-H^+|
zPu@6RIdCdQxEPofHSXSEHT0FFZ?GDo(SpVG_2+}RvKK$dw1L%4%FvMNU*F@fECDI$
z`A;!ihq7a|8-|94#@W>sZR$j2D>aR&EaYp)k>HAMm8YAbG}`Q|tHgDrzIYj1JihOL
zHup$ZL*sa@xE$E4K<eyqGN;+2KNjkL^y#a#g**?;Z}6itJ;|Kw>+6r1?)z`V%<ZXp
z^0ZamOL>G}z}m&ES*?^ME@<NQ^t7Sj^&<1Tz04OaJlY3L;BngWVaAcd0ja<MC~E;E
zB|9tYzdt|Y(p6*DpYFB2)SI+dKYPi-%-l<yFb~YEB9<dAeigY<EK}Yust61}oQ*54
zT`volK5o0gYJiC=uzGk_sFDx9Ge{O6Z}8ys$3QC(9}Vl|s4@m)lLA}$_v9_Fu2@=m
zd8v$#l%0}+?UgS%vsL-rjMS*R2}ONmw%QPph-C8sBVb1N8W|Y)V$_BS^l?a})p!59
zQE6tl=+-yoea9eBO!fEo2Uq|D$Fi-flMaz|5x-{|Zs6gTpxt=>8zXZ`?qq9Lj&EQ#
z!(DM*Ka^?3SDw@SD0p!T7?{z%XHCtg^oGH({QPC$Ik04V`tK8<bc4OlJei!mYFAXb
z|L`H$>Cld89@$O=@TyH4e#7S|DDU#o;$b$nu%@2onK*e6MFBj+azMEe6&Z<klP>+T
z#>M>vvY5-O2$uS9zOVn3D!5`bH8r_SIow;$+OqRI*SR@Dibe}@eAzHFjYnHd8Aqw<
z-e#z7zeB?ZF5dvRC^0edMa^4_|K9~~TL6B$S%weHiQlain|EWXR;3uEMxjR*teQnn
zkdZ*t$Kd9#*yaPnV>l73FklS;2Xq{5*Io!ITAm{sty9?8=rdZPb%RZMZF{max3mOk
z%s1Md$7q9hG(4&g_~FrRYhXGuxLnf!uKfT0_4x`Idd=6D+x&_4fGHCe7G`N@_Xh3i
z1$H{LFWrC2?Y*sq1u?tPN4Zq_t-z>fLSg^9xoZP}BNIGyPe5I8ESsg1OM0uP7kT3;
zj+R4n2=3HYISWiLcEy3uMKiu8t8MO++<fb|pVr5}7=yqp%H{4&u(Q4N*fRkVxf_Oo
zD92s2@o;hL|1rd~>PIk${CNqUZ<(2yx0|npYuOfbt9w(pi<_FB-B{@<Pj4KbYj@W+
zHh`OGcV{OW7>b32=;c#P{%2(T^Q^Xarpjsz{qp+mPF^0*W~8UjjEn@@-#kw>5yZ_S
zZ+wLw3Q<wN6Lq<|T3d~Oggi#Kc>jIs;c5m3*MJ7$fOyoI0b|jd7#{xk=a;Mf`3l@%
zi;$6(t>5nx1i!xda??&G7w=z7z2nl|$+N?CwDZZaYzQD$RvQ{#J_!s!|2(UkA3qEq
z23B=d)q|Z@TqGpp5_II^<Krp+r6-grd3c;Ml{d6xOw+u0AyukQjkcISGAX@zVV=pr
z23cHO3_N=hz@eV*wbj+rBmS>LJ+-v2uMc1qW_`~$Q>`k-^u0Fc+rs}07ZkW-ps^SH
zuEnZFVBDkWahuhXM#jef5fJhjSy{Ig{m$^0i#7oLd#cf^M!opP15VkAfdT+5@-%=O
zu~)2XtdP!4XEV%_OBJ&Jg{|XX^B?L%0U<Me2H;d8Aclr7(PX=kw*g!^ZpbdJbT^Qb
zV<JH5|J`c<n*M+z;?r#Yr3ug*ZXhMD4fuF*&wMu6``X6Q0pEP?1rpOin&1CJoY?zS
z=Bd>fF8q)Eaz9+!z;fasgcOY-Y5jbAdVFecpku-A>l{X3!uW|IU3@$Pz#{>^$xQ<L
zRx<#c0MZmXf#nYohkagT(G}~zkB^uX#3g&_jHVZqecx(WFZ+6e51`#QfR@&GDDV-N
z6E<~6KjOM-W_{}cd}6E_yRf88VhRnAd>XXrX5-Vk<M(N2Z*N}reeeH*!x(<H2LF$*
zD#ibkIPvG5>%XWA`4>SnX`D9m*+pkX=y<BNcFPkeVN?_{M%D!W;933z$Vc)`+85?*
z)Gl8^fL4AVKAS3yeD&{#+ql+d?NMC22XJ~kI31d&ZQ`yv3?V>2mz$^Fs%rYSKC`a+
zs?^X9^f_y$c}~ooAI@W-pBtNX0H7cF7LUz<rh6)~6ij(KCc#AAoIgyQ8@|g!czt8V
zm)fO;-3-7h;hl0{sE*$J@3~j8yny)bwk7frX#<i8xVW#8ru?tR9@I9SWdYw$`-EO#
z5Z;L_WB)_NaYW;c(rVrT_jGD;iH3m};P5@V;pzN&WJzW&#XRqP9_4#dGb<|g|G|v^
zhw|Z9=<oDg`{cK%YcLIr1HjC{Q#ky;e>36KMBZ$Th|#zAe>>V&2M2c)C~fl=bN&0Z
z*=8AC)-?>|8<$`@d_)@8&vrAi!fF5azeh~v*?dxzYKS~PVv4K)*qZGTZkPZ5b;m9}
z9)-uEQXg~#%$T80F(u{{o*Smk9~O{d?dX~S0^zh>zwHK=bTpjzdGLMoI5E`hj+8HQ
zxIQ-r%92#9qELJhX6Eug0HYfa&(mr=vvt8RR@lq^o(!PE06h^_W@`L@hpFlG4DmCE
z9k=HC3@3&|q`?)(mH2bh=O4gdp1bNqV1>zserikq2jDusgHMCm>D6Zz)g49hUNe9}
z1D1sjqlN$2IuqP3-N!SeTdS*GwNWYDNB~N}xOw_>S1ss26u=Yw$jgs6!;X5Q{R03I
z!9G+7lBTFqM4e~IrTPrX^KRas4E%Qhla`LSSwEOLS~r+&t@ZcZ$qZKR&#`bJzfXi7
zgvUNGAIQ;1vX9J|RSqZMt1@fn+NK?r*8Cw^c(=*;2>v@7r?k}d*_~I`0q7_-8Dw3v
z6c?&Izrh?$b!b(y6HQ`-VP^s4kaYr}WK~_Q{~^$q=gZp-RsBm_IyQ?#W+oJ?U(XY{
zIkKc)9psw<tJvxU_P<|73&t$*r7O67aJ*%0JP&h%aso^P9!)gO%`M~qp}Fb&H(D-7
zPl>{=_FAw~W%Gc!`VNMTDi6;e`qC7DfJeW%XM^*2X)KldzQ(Ooz}`~S8nZna@C-Og
z5u6%I;nCaJJ;?yy1GH*>jv17f6*^5$JJgnw8w`DstU)85=9+9=ijM>{0Dprg$*GYG
zJOJ>4e`e8E1t`QmB;kX*x59n`LU5#TqJjDHgpndm<fZvMz;3KoymN4n_5j!oSN#tR
z;vhKKsPjE}#OK2xklc_t+1dn1U8OZaLOZ_#0`B4dR&>HWRPcC6#<x@bJs{(Je}7Rk
zc<VkB12b=yP3rx!i!?OQN^i||?Ss$tKB_W;KEpfA$-#a>o;PrFYGizBaPs&Ge(pDW
zilcPZ!*C}8H*clAHrT|xrO>TgfO#O1LGGWP?1Eu~<IozQs;TUmS@6R*?vTyOcjXJc
zd{kIeRelVbbvglJ1RLy9sYKy5$*yY@cFn<5w_TsKu{3ESez>gyHXu&-q}}1k!l!c<
zJ$3KGC*pA9dshnR-GF6bj20TUDd?&I7hV7>nn=i-Lm#EZ_pz;K-vV%(xUI*>hVtxy
z&KF1EE6;|otu6N=Y(0V{UjE(4+4^jqX`sT_ho{l{lBHGaGELRF0s1-tlA{xAs^o@U
z%pjt;;mg;(P%WsNJd4LW$yMb36MzC#m*5tN=3CZSyXWINum~9AnO4Lg*pYXgQC&N8
zBf5eBF@9Li<;-Vgz<9Xl_0BeML~uRg4P|2xnnQB!J{~4JO=gCUm|uZ=z%N1OX==y)
zQM;)Y>oU0kq9Fdy*5h+e1gSZ_4(=J-W8FzU_?~oaYO?g+{Lh}b7oOS|P77_4O%wu@
ztlfnfk;CzYPprFbPM+h;-bHU^#l|C)OWVrLCj~_`b>#iR`RXIuP(8Oq9T>eP_-*yD
z8>?fAncv3C9&WZsVqVVcO2}l6Ua|GfjC?CWd5BlJoq~vF=4W@K^6!jk2U&Ndtdvi2
z*Z!FE8pvS>5$Ld)Zgi%{(&Rx}^`@O~Zh(U;IQ{nBMgfZMbXep8CXBqAJ{6@~ig*km
zb<HJB837^6@Dgj)S`>DAW>(Q}ux<PjzK1sgwq#ZHk+tYvfI<K$cr2$coE1*OPxlQj
zQp6-9uiiaOA8NI2LjZy{#CK^u+7shjAZ^WkB4e0`Y4zrkT5*a%QdQ%Zud#3FjZ#W)
zg@AxWwe?K_>_l=)qfxCf|NV(o2;4aWAVD8AFOBO-H5d3Cz?F+V|H;a1t-hq4T>Au>
zy!%h`chsI)>>YrDRLaep<Oi`AP3*5fK#!lBE&m?U6QC6uDt&bX9Ikeahw4+4ugIna
z%zw`K%zfRxjRXtomPA=m8TobBor@5$*FG<=;y~V)D)|SmyT~J<@y?$$-;Cw6WHI^m
z_U@AMr$s+;l9~r0!aQt0Vv38oTz^>yRV$9GhL<f_!^q=?JjWLC2JHBYb^*$CL@6>0
z{;Oi6M44Q(npqm9(3@mxUwxiR1GMeSr-?yQH?R*7x}*TTli2+PaFdD82Yvu}yy}`d
zI9@;|&B6MC>{788x!pCq$Y5Zh?ZTIRL#3M*A@|z8+7S)Fn5!X;^;Ym(FZDX!>;OZj
zSL>+y4ne>S;ig@*wr1z*713K`QpE<4Cn6W?PNPCSwUs>^A9Yj?e%aUSN`W2CAv3t8
zL2B_M79LJH3q=}`eh89mo39#;oV;a?nfjI}<X_9<WO#FK=)^;d4>24+^NEjBF@xBc
zhB+OED!@&T>axfsf;FGlF5xsax&SB$NAxr`+$p3Z^18=4Lj=_4-raeJdWQmo0BkhZ
z7t1<d<35xO>eyjhSu4-wv~NEF=e$Ynp*;A@C8i4#F~@_YMFw{T+<Imtq0xM~*c!hT
zA?<rL#^Pcrir&Fa`cROtLX;P2)u!(mA~?n<N6b<%oGp7$B8JzSp12{ahLu5l{}Tcj
zFa=tFpTGvLM!@tZdsz(Ah5$Hh!T}H;*@=MopIGaHdkd>ukjcZ)K@jyYRWW#9lSh+h
zYF*P+EN%@@@mjDSngr;3t}eCb5vGovpjS{=F<zdU25#%8z9m$rXUjTvbNoUZK@h<<
zZ}xeIb<4`B7QU=I_DgegRyrp$-HgdJ>^zC`LA|BFgvg3)R!`2KSKQg`(pev%_1u%N
zY5dUl-EX2kV%1njp+Fp&)<07U+TmR-2eIo>JP#(>Tyz@knMjS`t1~TTsGJNqEVZ%t
zZ^-1X*5KW?+?#L;OzEKn$xgTLh(G_cxoEQ-c}`7=;1tvu8l8<x0_+li@e86n&rQ^C
z@8>cp1r#;fU)JNLnnxaiS5d4zj;ga-hP8E-FOa_PBnwAV26t#(JWsX0$Wr&pkWxsg
z=;->LNmNW<@4GFn;0dkBcl5qJyc*hgY@)m>UBmTToi)@P2)(RSH{v6}%4!H>C^4;{
z8k&Lfi^N}1HY(5|^JM=ydBc17PHGyYYB3Cs`X)*aj^=4hR!ld2M*vo(+t#NYtowU<
zO^oLI)jOR9EqF-w5)~dIeMa`WrcBhJRp?n<S7D~$@yY4E*wT$DQU?KQ+11K$QkP;D
zS|Lslwe=ob2L{opWwED58G)o4$$U3HWSJUIULMqXwkmOh2vrYY^+xjwFW{xf^5JSy
zgwuYP(*64r;v{5bc#<u-1z&9Q?h@UrMdS%nF+f2A0tj*`)g*re7Qc&%BG~brqyv1F
z3@X3|-scrP%e0sa&&B-R3L+I&Smbed8y%t9f#meaXzD6%u81F&Hs68(j~!&OBMUEP
z3Y6j1ul?U$ydATBdffcUe&`meuuG+BuuAX>&0%(E!4KnW{_O5{BD#nF3WI{f(`0#R
zlAlkP^yeOCCou^bqSg9cJUbbvk$3USV)TPp#~6U=_`VN<#P%?YXWuh1ms2+Tkn#pc
zW5i`V9Gu9C<#5DZoHrx`+(&HLa7r)|=mkmJB;WBGqL#XG@^lZQ1H(*-5C6#x<0L~?
z8})tm@QMe54tmmFWm{<9lGJUP(^))$X620HpTv69+3_-Q?a|6P(~hsXIpw4q=HCt-
z#WA;4#r~2g<VhMe&}A+rlyOlBUS;}`s#k2i0Vd-b#q@!T)a8aAw$&$|O_9>FiYCg4
zG-(u95g{EEAW;umWe-LCAA>OQ3ON%Q$tn-cr?5+?y^SnfN@K2K156<~*)5^ct?&3#
zr67eRw|El-A$r#Uyz1AFaji4t-+SmS4$x_Kp=DqR?WnZ3@5Cu=E3#Z)?m55eGP?%o
z0uVYh-DFih>M#_bsycFV_YNj~7gq`wno|$Z%9jwGks_U~8g)yt_Ut%~w>0<aK?o0>
zL$u`%$OUA+rA~B@U$FdLP|c^|D8GeGF~Uce^C$gHIf(}b%^xZfve`RU13{pN$%U>Z
zFL9h6p&oN>L8wp+m**6{^4|tku0r|2x?X8!pnAVI<3tp#7{;2=e0E0qRqq2?R^xdK
zx$hb=NMKF0nA0%uL!OwJqcar_twFSihdpJ$2#6Xp*@-86O7D}92H$=JYrOtOg&<NU
zJsS%-{?yinwAha^b^yX~hN@>AmI(|+x@-~P9A2N#p2lsGFGbX%8g2inVgq26!4y2W
z1(r#Aif*lnC&*__McTqs@kLq?8N9BPRj7%=w<Mj+Nf#L#NBB&;)L_!cwiLBl7c;$T
z3ktG&KYXzNQ-I}4TM8HK*!F;=;{APGU8nUb=_mYwnINi#BU^Pn%k9!QWmP^nW5C}3
z!pHr#d>s^FjmI??eoNT{1<sBwIY&q{)In?)QKgW(e?2QQ4=ZAP#|3T`!B&XcGBEw|
z0pew4o+Lr}l%!hcUw8$`h;r<tM#W5c-g`1DEhQ6E!H<ypk(qt;d7~utB~D3ZZ|21h
zqA;12H@B4OkoJ!f!UM>@GHCWi1#gVg);0GSE#mLySM@R<INd@7<Sr2$RcwIZbNMWO
zp^y8NX7f4a!0ZT1-XB-#|0Q|XF&+b(L{&>~9sH-cXAk{tK4LZTemY>TX;TjD`7q#i
z%2*h0#t*4S<fRK^^QQ~6!uJIfRKiU!en>lFd<;<PNEP_=@Q=4}JGMC%LzWND4>$QT
ze*q+#W$7FUcX)VGY#t3SMh<7@U2CbcTG5^>j~vv13_K)#s2sy0(3mn&GXz5unFMF_
z)!Q;^ey)J?M3VQM9)sz?c$_8GWX+e6Z+;)6m2XZw{E=F&AsV#QG)fWzK`|{Ii{nW_
zgM+4ouMms_+FT~dUik_4S3k?a<QtC6@f#NnMX5-rk#s@^<FZQ?)@Ki*duYylI}lzl
zy5lSkYM?~~dC>{CZ-sz7z?w*CN4ivO?SuJc0}^FbWm83y>g@?8Kc^q(&!2<9&Bbta
z8!1eGU5J|fU|paviBp4FfE>#`khuYC=AR`fK26SSKk!q^;daX`zu`%YF~HHGsDLLS
zoyH{&KNvXxld^FYrsI%!i~lWP`~KQNJMVL5udIHYXBmLc&*<%hdDxO%Zl-!<EjLNP
zm;-<1%DtvPw2d4-Csw|gmPQ8*e)g&>s<Zw1kLZa~(8d@VVSJYQEJ*JgqG~gZS_7^$
z1`y0ks^7qQ3x9cHWpVb@3%V3GKywLV9-R5Dm10-Cem*pBdZ{?q%}5M_Shc@IF$ne@
zgP6dFo4L&jQ8>*)=Zf$z+aVREKV6-?!!KZu>=f}>F}%2BTOr9BhFEoaPCp*9Q@mtS
zSkriBizk$~r&ax>|NISajB$MN&rm{BDnA0+RUpfoo|LDRiO4754^_sjY8&yanjx^8
z`O1o{&i@v2xg`OW1ZFu4uYSEpbx!?#myf}Q6Gg@ub-G?$-b^b)b^_7KwS{i&7(C<P
z0%-%fEnOQ8{y8f7iDkO2J0TzzqlO;>Xz(qUXB)^uu=sC;htN!>3AE~beZQmT77jUA
zPJVp=J-XY3blr*^e@b=+9%@T!Qyw8UMQF<X;kj&fz>f#%lsaOqNn^{>FOx}r{vXEP
zIxNbsT^lwK1i?aSL0Ve61XQ|}?jCXg=>|!ahM`lW1f&KSq@`o%9=bb}ZoW1C_Oti%
zyzhRG<MR*y0G+w-Ypr$Fy3X?i;E{EjCf#!&ptt8{KE8w21p3HuB=)%Mv2~5_PIHT(
z^Dg0A_M8_tFUNqSHBdDEoOmO;gH(i9fQdfBOWJt@H^*)1;rS_+p5TYcw?LelcB%%D
z;fG-D@E!|&)_&44-__k^2f&ae(0QEB2RNrJL?U*Ni4_W;k#+Rbh*g^y(3nvX`*u2u
zlQQ7+fZ5Q@p?jOYK-@mnw$@AP#piftZHE7%T<{dKx^KaPx(wZ#`Yb9b8FBepbIwsB
zuKBNCXyqZOM&?$D>|=z<udx}!ehD?fLHWZ0+xp@MW*!Ak{YF3KdwPKsJp_{Hz|<{6
z3iQ_j)@<-?PyrCV{gKrxu373CS2$WWq7~}4vp72PgMU!$70AR&M%%wQn9}O6bvuSY
zB!odhMj@P(LZGrCZk6mwtV2pPx#dyv2gp)%>vxinwD9nHi?Wn0bv3IgI!QSP%(&!b
zLBk7;P(0dnNII|N@Z>+RZD|&tt0JB8n^MT-hRuE#4TRv=rK?Ujddxrp)%~>%)B#H$
zZwMo2s(AexyP8fZnXER587Wom{A^VV!rfYvf2jS;2QfeB8`wU*T5)w#w$JK<7=}!_
zxym9Yp2Tu@Q{Q~7<XwRWFTD6B+s#o}eMDTgl2B-7E2elSaqGzt)5XPY)fI=T@56<1
z!iPZ6izi=fK~$Lqli149y*fznv|u>P8C7*k;IV#)akThF?mY9GaU#h=7IC*PH6<Xs
zx2;_#m`Z<re+<j`YV)_UVhjZKCg-=(m(;@ppx?Jt9;PT~>gEEo{4*HaZB)@EQJ~@c
zRtcx>1~F5>Zc?Oqw|;pjO42Ynkx|0rbID0{-xz1zGvR-{DySj<Xyfv$5f3}K6FK7{
zO*@|3$wZBC`w)W>QnNP2W9_7eyPJ`l5b2#%iK1#jaF<LMo2>95yvJJAD)n6Bb00jD
zgA3P$aD|Q60vE=UoH0LeWg7SfsEDpL?7&z#2cdcfCVOg}94|S$p%Ojsy;Yl(CI~kV
z*m}9|nZ8SrGR3x_#NXa+E@bVmUWf#US6{9IdRa%NxWaeN{aDpsm27`BHnFcyUWNee
zQ07TWu39tvW{&^}2>05t+zT-;pPQHc8+8Fee9TbD_I(j^AEziF3a5{vNjn++W?`(y
zC;}Qk07y{KSPwV^R65l$$2c$o_<+LLbm*GKAA5qrYUh6^F4(D=>NDC{ZWNUS%mqO9
z;~@8tw6fz%s4BDeq>Vui1eWBbFr9Dw0a4Pz(gWZ1ntL>r_*!AGmEuJqka_(Vy}$|~
z0VkSXpl~;M<YIarXvGT<5L;wR^v+Ya_oMo^9_lK~7MuC*a`1~%l#zp>V9=r2S%1)W
zK`7D^Y0Q1*&o0#yq}vG(9H9?4MJc%^8KT_xtB8U6PUESKae;49t|5(=y@s=0MVfNE
zKh$xCd^t)^J`CS70!->CBhSByA%Kv_*D{ygr0$%d0Tsssl1@#o=DviC{b8dr$w!Wf
zTR{IME2oAgEX$vvx(ctfM=lb-w^H+IC1x0^l&;2B^fwR_&eb0tOdLyb6HcVZ=_w4S
z*l2{)PHX4*05won<|tg1Od0u14HE7y6BJsw&HHAGJ~<8la_E2@JVTDt)^An+#R9XA
zYbP_zraA5%*quPDBd;PGN6#WxT3>#Z=A$j{{aF8uV(y<=!{y>DD1W5i51WyJOSBT>
zfAI*MN7#BKjvc&=i(+A9;6&ye9L<*lNTsPvKL&KXNs|R;wZ2NxVTh`{+*<v~>6=0`
zn~fy%*kETqpXA>s+bdWid?;4T16AZRn^)5nyfpZNYXkuC9JR?o99JsAlg-^YWiJ=?
zBzoQW%SaxMjq)ZSI%<a(0P+i+<9n56;Wjiya;kt%+A84|NnDS~76_sW*`ffZhmbHe
zTm~uKK{OEG<p5n)H%*NnqUBj_eqMO%gcaez0FMGxufidfB&llMx9@c?1>nwJ2-o^v
zS!H5eW({RiTn0URt&n2H$sHuZNqKoP4<z?Ww<>!h{EG-_G|Oi<vY?ov6bNC4$!QIq
zp*~`fZQY}m9~=WBUeyDC@M%6m{2}^^U5IzowhJ^vO+bdVA`aryU{ZDI#9}g1|5C9S
zHWbKXb3d`cByYeXksrMF<VpC;iS~tsZJ*64$eVCkK8A**PY)9rEH?s>!@OKWyC<Z`
zj=|~kWlGWPy-k4hm1F!aV{NErl%#gA=H{jP14YHDII!6l8?NhsxZz51%9cfe+-=9a
z)29goeO$LbNlE}NjAg-7N0K_moFgwFzmpeZE$UtUk8V0|`R?HI$<v^e4BC3+!8Tv3
zfjZ!So_u%orUT>{rWUP3m9kX!0=#Zh)f8-!AmKHR!XjzfyWD#vt`gLCC8d>e{yxXp
zL3@3L{jffyphu=+>nYR7AamS^P4YV9>ahZ>g)V+$(t*jbP4d24mBNUjj}iiCsYi;%
zmLz+XW+Q-8$-g}_I9er?C!PSWqgUM?=kW(-lvS&ndxHI_=XAMj3&h`*LWjLC600Yt
zIN@X=nY>TpKMbZ-@B>nnPXTrs&Z^czFgl8d<%tnCfzFzdAaqKLnuYubmM&J1l6j;X
z%HV~3BBZFm-#i-(dL-(&=|DWH^>X@|cVu(DJo9-y7DcNN_L7R1;AFdRE_pMYrAR&;
zNF8-|e{wGBf6tsuOc5|5wdVJ}Ez0*gKdk>Bq0j052mo0-!3MT#C-)(PNX(@{&~<>4
zhV}F%JQ9Lm9Bi32#-OD#?^vpKPy;fj0siIcKctrYw36mNWGc<+G6MiSIpTR7I3g9q
ztnz!)TP#I&$m&Hw<>g9Xkx7psipS$>2J;*SpALhtak5=s{t8vfv)>2(3QRLtV8wke
zdo*)IPl1tKGT=D4jRcC6j}$nLmdbn*Yx<AD;I~ui;QO1{c$3zuU4_k>2#H*J!DOF|
zHAe|GPourY@5Ug<c`)?^%6>16l0m|U->I$sv(!A)^c%2YqWg1fX$As$wgym;<#BW3
zk9IQXTipgun=ACv{99`qP+WaoTvcBCHU@HiQKUbghGCz7^{21$nd`;?GkUu|<KRm{
zvSn4e0#%+?w5R@_U)b<YB|0iLIU&XV#Jn5ifu#PTiGLC5i4=ot1I8j$XoPw}k*<Q(
zHboog-cR=|!Lb?|BKK94a(-!I)<i=<?#YfnD#Te+o86-qr<=X;Rb)2qd34Y3&NeOg
z%$z=OLUO2xOehF<Y+aixqx&lK({kT!TDJoQX6WF{Ksa@!j-;OhjdIy$jJqhbY`0Ou
z^h|~ld0*k(A7p6%9SIZ6;4N3_RN(@Z_z(5lAClb9JL3-9lZajeVK`k#TFj+i#CB$i
zcInpoWbDE1<Y<8z(XZgfVA=utf)8-^#%&WxlmICzA?9-}x72ahzwmRQO`e@I2iuLc
z8g-yMu_s3=AiJ@rp1iVYT21i+!1yLvTE{57wk1WNbNEG3ZiV{k7)D~AluaS8Ou90V
zHim^;LlG%vkAX+ak+)S``~td2;+jW_nA1U|k2~_**P`0V&{m%`N@Pe>kmJc*HPLXu
zL$We5OacYP7>lwsdR4M}n$F50L5VmCe?W0RMfeES-;K=w(DCv<XqTx04QPC{najN-
ziF!H4A<Q1j^Ep;7JFNmM``F1pzOOQM!N08Ub-ne}oHW9$;eDo#>Vy+}rf6qqdz62f
zZ*{EtU{<zOi*tEqEDvrOOz1+v*ZH@-W-FPkMML*Y+B*ppl3_R#K>PN}E9$L+ELkty
zY?ni}OE}uXBb%_&2=&Np#AGZqyr-hutONCi*L%=ZQmw~X`CsUM0*_lD<6utaquU7(
zZ+QuH<{BvtSx87JCS3b;Ul(`XVXk?fZMqi&inlWgI*iQRH?VJ%pu21sTvyH4aZrkA
z1T}}9TCZI9i`*9_AamgIm}cY*B#~qGnEOR)Cwhxt)!$oS8~_CX-Wycl2Lx8JVc_&H
z?8YFbf7PBCks^77WsL_b#f6$D>8V$1X?mSo{u)m>jmHbq+lO*>ebZv-JqIbs+;ZG(
z=1S>SioYce0~enYgvt4cN@#!nnSM;algO4C%G9L>=r*hJRyB^wP!nh(5UJuth|(=9
zN2}?>IG>WyAKe{q@_*gM{yMxADN|t>qaUlvV#kauf^vD78!Dn5D3nyL5A*a`Jlyjh
z7PB_Vm#c<ie+VF%(kInP(suqtLB?-NcCF?EdM(LXP&aRJ!n}vpxyG8#-iD<wBgReR
z<frnjB4qjaK_i~v{ayO`0n{6WVSJD8gjR2taRfaF5)?MoPm$q@as&_*IeEg#Bl{vu
zT%xsKXz=g(?*XEH6y3JhMelX05>NhGr#gV5=0uqQRZfEa8ql^8bRq(`fzJ33JkFn8
zT)pib(rymQFyYy{73bBb4y~GrD$ra=RLw5~=>DEu=PZZ1&K!!%6@f=r0$FKSamK(^
zVhs*=&uj}oj5|$*kwx#FYU_S<X+^TM!j0{_S3YGS!y~d^9@CSy+Ol&X9p!EkkCkmD
z8p=r0LXL07UAD$)Rhu}^n*AU6cPu30=i#?#c!|)weqR#xp~TVW0b^2CwFf^pZ}ARh
ze*^0CsvByQyF|kF-6?Lfu)AVF6wQN*0d!r9ze>H=1OkEPPkHi{c_=~!ctGWEep8Ja
ztCOvInEFkQRcItPeRhuK^1|az3s0*}QnBQuSlDV72{mUeU?~vc=laG>>Ovh^whYFa
z{#sFxo5f$ap?8^3AQl4C7n+APfl>tn!+M7B5i!2Y!f@gND1ry~aB@ztKS8cFbc$68
z(-UfqoNlaU7??PQ-V3q=*R5%Xq7Q@uX7xMV+~*pxz&#0=kN)WZl@6#TxZNz&DH3am
ztcz-fSEjryIFaKqyhwqjUR~6_-G#=n1mw$7K|OT=F9B$9DSZx-JXdF%nl0h4hg@4Y
zL2azGN{dRgd}x%7qaaq3Jv@ZoE0PbV21lg{i5?Z!PGzy*MJ8XI*6b<rjIs(2m$STa
zdM+<tpYT4PHaV?MdmR@P4N0_+2EMTwITL`44PbqVaEsA@ihY%)vUxXRU*qW8C7vUX
zSAzk{Ij#WkcR25}S04ikl<cjr#*8NDY_p{C54;Z09$eA%bpoUZpdsEr>27u+1z^%)
zlW(otB!D;^=+*?XHT3DOO`?||Ut@BU`PI*44*8gq$hiV7ComKXQgn(=yV9~AAS1xE
z{MYa`pj=ZeA4{9fySOLb{i+gVU!8%4YwmFSJphO3Hb#!)OV7HV-<3VBas9iE>wJ#N
z(&yU=?b9$Hkb^mrnvW3rl`s8@hVxsXh624hiT$MBs{whD9KXW66&0-ykCD9$ypuI-
zi1CwZnol6*OtSXdI-eP`EEF60`edKl{=L!4>+10X^J`1Pq*EZmF2-BB^IdZ~0TcjA
z!R1PV;_XwQTeyL6uf`idkqD~4NQZ#?Hd(eR#;#yVLST)9+fUn98bFf~fiE$6>Lgg!
z)CdQmPlT>};{Z6ifx@H)^TY}!5KVH%O4z6d-I$ZT11~_kxakwMY+PYE1u46-;9hQ~
zqh2H-o38XOpJuM80H?BrOK<J&y3ZM_{_=}BA>d^1WB3`M-bIw4NACfDdXOpi{)|6Z
zyrY+8xnD}@qn8NT0M2RXASEwQS5tZS>~E4DdvqX%&D~M8o8k*;2B7jUWA|{(iV+w$
z`GH38+0o|j9dIq(q@!ypBO1c&;oynnEJMoMMC%?^XZQTb8xq~H4gppx=5BAt>f0Oi
zZSFH)D%sKrRM0RDD9RM_vGrdg1ah=FdDX*bf&HlWp@&LdHO4SF$P^h>v4+BSlc22%
zorb78Pu(BCfZ^XWk*_<N>DoLr3u4~FI)oDwS&Oz>0(zL#nC+ET_&E{sYQE=gGjIjl
zRh{a2+KJKq1PyTeo-=S9J>_2woew8Eo-&`O&QmXA`J8mH-*1%2sxSp3ki0*IJM6IO
z`5h=HPJ|U8c&V&HPC>k<zsuNiyV5bD4N=m07D}>bMH=#Kc~BM9kbMdCyQBu<5*=cW
zDq3K6>HWWSQCaYlhe(j8?@Uo&yL5pb>{+oAF-n57?>E#K)go6I4I1zsCV%%~;veKa
zer*HPhX-(IoyPnY4QuWqI_e75y>2??A(5QfSIv{K1#02D(yEhj8%P@Y<meUvW^TC8
zE-N~U(0;!k(43_I`+WjI2w#CIPUsVrV4pu0yPHF}R}OiBOGef3s!R<YUDBiz4d()+
zhO=p+f(DjOVZ2~@mm#XB5Yv5maa6NDG2dpR<cP`37cvBqfWA1Ge-XERW$XwPCV*BV
z*n2=u)5@_h`uIDn$j5SWDa`Rss8y$XJ3jwC(DKY74CixH5k|(P&m_krwI!aHs*aKW
zWEg*v9=fH|n=b`jS5;LR0fyaBd)AW*`a;p^6kzaTiPV-N(~E%h5uC-k23?9;T!}lk
z-~E~R(~hpdM1#lSg@u{PvQ}&&IlfENus7(|0rr3L7*PGwmu@|)IY#<qe#_95-;Fw+
zx&x?12u@gG;M&o(qucsd$rfmA%lXrv+Mf1x%iR<FYicm4_6u$}4$@W)Fq&8_!$c|w
zRs)xqtg1TLwDI0C@9$0ByV6FQb;J*WzN=qEsC*8+EKPV<N$Jd;PY@qs9VQqA=E~9f
zgP&P2QYMaKTmPAxn*474aAjHoZ9IgNQ%)cNLa4r(*t`^J!wiG)Ci$B#NH&!E`E~tZ
ze=Bn1d6AOSZ}szaiL#wXaZ`i(KqMp&wN&%>1~eElnfL$@N^}9pub@w-QeGjtPLx$h
zIf%t$H=Lnel`9hGkz7@S(GtG|^iy1q>eY<JzVRG)E~x<EZ;FonV3wM0&G5`6=tLhh
zO<cSDSzUPUBWOnM@1Olz3FL@r$8ubXu)J6G4z>X=Y!=7jSc+fXo-JEtT{6iTnvTU(
zqEfws6S7V#8F7xmOuF%g|M#%NV`Nc&VLZPil?A_YfEJ&cgLf_w6?1I1o|YbE3O!((
zJMcubn7oW)E~>Q0tIM(o#{dl$I-tl(q`&Ou*3l1q{?BKDXaP4cmug5~`geafuql<V
zTbrO$!zLQdOl0gcki;*TnZ|R9*FBXXmw?)E%T4GYRp0~!^zW_k^gj)gKH@~p*5cGv
z0P?&HI{u%vC0c#2Smw&0)kc^W<S6|i5#DF<o{O-wz-Z5cA9}CEB+Iy(IvK^|X(p+B
zI7Wl{qb=s8f6=c@@$giRP)=)j*KK`GFm;y>!2_xxL-+urgo|aS$lHgamkc<l1k+{P
zay>gN+FK9)0o+!Z*1b%9DOmgw4Y(yCG1b;+^EsmBq}N!AA__W5>FqG$p%=sSjN1mP
z=suVF)H4klmPZ%zBl(k6B5(O%84pPZY?tvP()sf0GZMWdGZm!O*XXW5&l^B)L2voL
zAh!YpgnjQ8!2nevBv_`a+u+Z5#2WQTzLnX}KCs3NtZib?1$gxKeA~a!n9gT2jYZz&
zTwf(c1aQ<4rze2$b@&xj3;bUo_%QrW{0+DKc(}QeRr_mHatvlNC>If`4a#8bg>&(h
zGEHzOHt3r7HE@aX-Q{GS^tr?|{oLE|uBAKxH`n{7Z@0gayMosFr#}??YL**`qGaU6
zfr3hC5kX2Y%HjMNIU4e`_Xw3)9tN>Gz)ZRx<eyl`dmN{6RJx^RstQVFI3+?e29f)8
za}5`w5VmgXob>e472L|dum%o)4T?9!7&ISEkj6LW4BFR*TqlP=EWG7wip1@Iex(ni
z@iujKt9Rp$UQrW$mm>31;eFh**hZ?|DV$W3BkgR^zMLiC`|+~eGtT<efeF^_2=1pU
z8oYVY;J(POk7f)e4Abrn5-;R^sT-oaTnj`|1Y{@f481%ml0l>6@Qd$Fb$kr~*F*3r
z+wJ<#9bbDULGQRBfg?<F4pg@mat5)93rM>Ee{%LfGM7@P+hfNM_#)dW0+}Rs<59AC
za`y7p);9#L2PVbRWvgtO0^SQWrqNvgPb}<z%h>O^yA^9X1Z>myq}BAh98Co-F*SXJ
zHQ;c*0H#;(dY_x73<L~{*NJb*8E?fao1L&8?`!@HxLW2&q#Pjd$?fQrqE90gvhU^t
zcUkI%x{3?WUj+ida4KAL$@6+k_AwR5EpWrQTxL-EFM#TypXLWNKoyJ*{XL_NaL^2T
z@6DJr1-MA@eJEz0o8$nQV^DsL+0%`xgutiiO=H7!bh$m$n}@9rMF|**hRtt<a~qwO
zwPhJk<h5!QXdn=E`vbNbme&h9tq0pOyQz34`eKvRpCA-c_?_0kY4)7TNT=$Z#2%|%
z5s_76R+7bC+P%Xo8xIzZzSDk9_--*Y3u>i_=!xru7ekm^dG6glS>5ddw;!1F-#?oL
zF$6}i>ZRpI>etqQ4CepRmk;mMTulB?eR(jE_+s=D@n=;ERLBfwm*C=AdiC;)5w)o$
zN65@G?-DcrAJ)7-G@d>8aRA36>t|L9OHc(v0vI(BdFT019}%s$1wz#y-XNoJS!=KJ
zqPp&;u9dhy`1GB&*W(d%`NLEqvLF);(L?}JctF9km?=C@EgGJ^5&0V|%U!x8XBM)}
zChE)+2N90eJmw@F`nv@+<07H>um_2)V9=1vB?~<YEegiCw^ZVEb2kir?|`!M$=C*<
z0>goPx;SgK*Fb35y4pfwpM))+fY=pSV^AK+PZuoj4sxOv263%{aw|hBw-0`xXG?d^
zq*K^hO`N=_z0|T~u?w&Ai1myUnn?F@Euneq`4&EfQ+A6REFRf-7-&N2Gx0EWR3XN1
zXK&OU*v0ic{~x5Uabp<qO7{Egi{eMSt52VxC{n;Rjp1lo|010yt0%q=xC2rE4Y*G$
zV5H&wdsTcgBVy74<nPYmfrQ0xRv)|~k16<Q%p9^ZqnjH&k9E8$>u}fAm82KK7`b7V
zjNI9);GzWGemq(OLkr90J|IsOe*<QhmfYj4uk%)K#T8y>7*zh&eRvx27;>cmCI$Y&
zLSafne_^58*Udj}+jpE)<l5YPqXg*!?WKEcu`lm|Nr<**47gw{9;iX$3dTY<TXD=9
z<}wW!Z9xaSNzU?mjSdjjKHBAga50~y%QA%&&_=Oy@-G3SzZe-EA!1L0z6B`HAN+K=
z+!Y#3=>SAp%**!E6F96qoE14C0tJqr?66BEuXCLI!O9oN8AlyjtOI<X5`>n*kypAQ
zYQnjU+^Q5yjT_9l_0)ZY)ZE}Y){89UP51r~BnHnXlZbTOD8KM~{0)$}?LO~<%Ud`q
zo4Lw1&Vp;v2#`w!KN>&EKL<k+-L-m-)dy|X87Vyje=(p;kt&W~^7^g6J*BZ}BmT99
zYjd9mP*7>sI%b!Meavh0P4-LHVty6rX!n2Wx_|MGn%4os?tI#Ya60}^i=f^&Y;qb;
z`_S2}{%@M@VBjDnDC!;9jzwmuqZD@u7_2Fe`Mh1*ubV87UM_3d<R{EM=Eb#(3@R&0
z$R%U#bLEt6YAMYCm^Tmy3ud@*b1(CG?0W^0+Fvf3iQl@66sl93`7S-!Ars8<$>jgD
z*O_P639Z5Iy&8bdZ+#^y3sEJBU16j_I)T_gSJq!97k5crn?D?(t=`;T(NgSF%;&1s
zqpu1vZU<wpbW>!hEZ$CNKQ)GM44r+)G?5Q_1$*jsU%!`&18}tZ^UWwXj54I7?TH$W
zw*A<Wm3SMs$dj6{oIk}ubEa-z*-}7q)_*~8<|{iN8$+_IQw$R*ANFiZv91!riu&>N
zReRQb(X%IS=nNf|l0C4Hqsi)UXJ(t7k>@qX)v9A@sp=2Y6Ugk=%pIYgTYp;0yUEZf
z%xVRc9D)cG`{vz$zORiBmxt~JleF7>tIyy+l#^JBN-(zj1D1g?-?H3UC-Le3s<AFt
zbYDtJ(aa=@2ga8!08_YHe{EzVN})VF%)n?R^HkMS!!*Aij5z$erurVQWKokH)2*rm
zNX=><ee37_5LQ~6?8te*8k%YHf%<w_;9w>;rD>_0*7zBJ;NoM2Xv*OevH>3Tkx|&6
zlpnz-U><8JhSMalh^$SzrDGhjUGe~o<;3BEg6~6mrIsxijH;&jX16zbHei)6GN~fy
zsd|`8YPGuk-bT?fPpPx+Q9nW-na^4@64HAHs$0_O!O=v|H#Kak;0gfb%3gXIF0QdA
zOnci&0#cvRI_e%;&ypv#lyWP53)HwApQvnXsyth>UvQDj4+l3svs)_Ry6T)34%;sp
z^1=M1x;S@^{;+_@5PEVM+l+J5vGE`p%<oHs%?c_~&|3ait~owGibx(&L6Ob+CH&f%
zn`wau{->5XQ0TK-nxAJk`1Mg6%+jukT%Q7TivxhyTwib3VSC~O9^Pwu>EtZy=$!SO
z)gXNr7<n>u!jv~zUIs2LE1TpX>hM0PKj7_MjJJ0KhIHnIamO(oP$vuJjRyYgZM-~f
zm=r{$FHa&_^rIh0j~XHozps5e86(p8xuPZDCO*Q&isv|cYl&uQZfRy*yQjU!#QgS4
z5#9%xSmdsA05^5I!rS0BX<eBC<Ok6&2H;UZ2YLPt7c5^KWzzrhm5v7Dd9QP<`91@W
zQphi`Oxt*-mvcZ;?doLF=VFoK`fRMBH-X)FeK6Z<tY{iAhm96$yX;I=0cd8O$1(XU
z*ALfMm!+kpOX)Sv+Y<=u$(5dD^&cASX1yt$F!~0dma?=N0n|t<>knDD7|`m|;7gu8
z6!G<bt_ToXY)L>VIOuZdDPCNzzX}(!$fl8s6_|BUOwd#P$!RS-Um{Zf9u>6LPanWP
zfb93;$~I7NL;=ZhE+G3mH#fJowzjmi1cZPA4t-_Cv<w9;LoMk*0TuDY<mBeYMi&y<
zITk@KRPA+sL@OJIekUSM({9ik`#YhH_U~7x+G}~aX~A(BKvxb`W|rBCuJC4Gv1Uan
zz<N&g&Bk198AOQ437EBU&1x(IjM49~T~+@l%r=yS+j1~V8rVh%XzCgo8p_IskU_Tx
zpLUp_RR>dqJe+}0u53K3*J`SZ_hEs4l%T|4s1$gYqjU;!CiSA2{mGol%H!cYWpj4$
zt0P{{C&~MH95h6}jc}}FfI$7{+rXky)B)+|WFG6Tj*jnzg%w(bw`U03E7)|a9hW+y
zR14JV&Nd2~SD)&Ja{t}Klj-8#u%*>i^qpDr?{`Kh<b8_)W?<Ysv1ASAz`Lmd0Yt>&
z2IwcbxI|r_L|lV~mViRHvSs5tdd7bleAbC$CXfZXrmn6h0oeEw;bh=a2|Nujng4e*
z3==3a1G;O{pxdbsk(U)`mHSroHnv5UVoB&}ZRCoQv4dkW=P|YdSakzb@S6VBvi?eU
zA}l(3aD1F^j$&hTvmie|I3xtXe~x#mR>}X{GIcgJ+X$c)@@}P=ump;>iekZ}2bVjp
z+&}OkX2IWw+qOO)7bkzP?vt4Vam?Q$hsVeIRra(rG$ue_Sd=@0r;X(AX4|f;24-7a
zSoj47ga0`M=##MZMuCyTa`<~sGOxOdN@PgmM+$(T7Ubo1=}qAW+T}O?*{lALb2)(W
zG_ba2LC-_~{Y114;)Kkr0Sn6vc=XUv+>lm|hj-y9XklR?AkvKxx#Iip|Gm<9oerkF
z>+6O8zQ|wag8s|ngCltB-ZY^az!CJk--II($kScyA=&;xvw>x*bQ;rj0j$fN*BQ6K
z^%448|Nah;Fy?(CcQ>D|cDgES%PgRB`Eq)CYTO=v2R*%yKIFw4l?|7LviE|~x6c18
z*xywPUI#>sGi7EGdc_oXO%4wafedrq)fu4L1;0k`X<DyE(pimCqrd{iDfATe|CkGU
z=K!1>*W;aOfJVLTTMQt?0Q#E|1;sGN1K$evkZ2egKRiDl=kJa{|Ky(^SJa<R?_y$M
zCClabW>DGJB*0+%K;DuBY#Z?Djquo!?aEnUNY|6(9?buI%X1Yp;yjvGRzN@iGbj$6
zXaM8{Hq-mpHc@*AJV7504$hQoKl+00-z?<uM1u>+6at4}3xn8;mueMCWWFyR(`F{v
zQ>54`1&W5ihyCld3uEemLPU{PMes%bO+X#~&x8GaI<MSE)Di%s#tC$cRmrGG!`i@!
z1th+7?Cf@9MY^OsP>m}4W$=tEed!{==ZS|9L?!<Mdun&Ql$wW!hk;=opi=?lI(QM9
z+~a(Cb_ilb-+zB`hiz`DaeFl(#*P1c{F-940|y#iIDU(xqoY818+fKW_XsWyi+wJe
zDXxA4WzeWPw3^#R-7H|$1PJ<T;L#3}XD?RR04f(eA#lZU(b4vY8>;H~?__3qO-)QL
zkPR32{<SeZzUyD@#k;w=*<928>!mNF(3odDx9Jp$+afg`02O7#MIvMyc6D{NIab`>
z+A5zeeEGoVq#1-5>f`)_)Ll;y^Y%q%!72Ft8=yk%m3~msBaKP}0t3-I>2AwVKq(q}
zf2#Dn@bOu$&slDvc4hS?XbvUA9z5<r!<CzpM!r4;xZ!}+_8UH;M-5k-4U9}oLQt&a
zo*bn-=bfq3tMlFKEi)12e0TI~f<XI}fIv-4Yhr9{^|TWR<6Z)YF(_`)fN!nmg+}ft
z^PeiAs0C>mF7$~5Kkgv>fmsL`J!oEuV8VBR(hVR5en8p?<;l&-QAm4r+K5GQAVCXY
zjP<;;o}6@aZ3Zu0HAcWofBQzoHi8dC)t}!b;kae-H1vim(4hxsz=|XBl?9Nm{=Ytc
zj|KJpeI|%JLi`tC;pXNH>_KKTaRn@oOyafz9#7~ML?ZLgkfI1Ut!TJ3wr@Gd8Q{0Q
z21k~Kn|oxR5JaDUUPr%#r2H0uzyH1<DyiNqs%dI&o)&ga?ord%Z!l=|+x0%Ksn7cj
zG7e54#e9#D)z!Z1Xa5%1IXC`3vR@0vpp1xoI-i}9n3$Njcp#PaJ@ht1uZQ1%8~x*m
zt@nO%Tbso3{VCHjRdw~g1olM$Xg`3Y+Jf*6EK>IM>n~W@=*S4S^#m{}c;>s0@ufCz
z11AaOxIK?hW>^o%X&T&~V1P#NU*vftn+BfNO|TxW-nepJ0LH5WT*{>6^u&Y!cv3(G
zJ$=mG0D##*uQv>Y&ML3bv$Hdx-0K1|Cy<4qNddkF(d*JSu%kmJn#$lF0rTh3P(X}t
zVPWyU)*9`b&<p-=7D{kmijtgaYXoEk;3F?V;=`{I+W=g2j$(Szh~>1f9U!j*BJlsE
zsQd<x!u7K6`l7D^xThHa8U@T2HsdAp9Z}SP+R43c#^Zl8){SAbv+_D~Ozv4}qdY!1
zXlZZ1{{2aWY)bUxsIsBX{m`-uwKekvP+=hZ`mRSS>;Hn`G2VFMNxRB;zq)9+KEA$M
z6uDYNBWlrM4<KtWu&{QgYj}l(>OdA#Q8BXb^lTZVX@A#n?@qxRrq>TKu=^rzeh2@a
z7qDQ2EmokQ!1;J=<mFz>zd-Ye)6vpadF==Y3Q9(h|Fgp28*i!z7`1#}P51Ez+=f5}
zNw>tHvD#_Vd277X=lTku@h>he3e=089UXrj>&%M!f>?nzeZ2v<`5j=}`BU~Ahx_T*
zDN_wqcC~ac3y=d|IYgWdg1e?mf)W%|ugnw=P0#QU;}192w-ON6!NDD|tY|bKdIDv6
z@xPo71IrGO^Yw-KZ*Oi2dH@9mp9|w_{y4N+G$mzYorC0kdN#HP|7_k9l3U*oJZ8`J
zjEyrX5PyR&_^PFQYW`{;!3IpDxGg_>Hd^^DGjp169H`hT3ZJ&j>QMlcHldS1s>f<k
zcJ?yJ6p8<NLiSt8qqP6!T$!H%ejg2G<;9Jt2`B>icHFb*2*0X^2r~YKnRSppCh^%(
z{qG-fT@2Cnx^3s|%xb-d-3zEUW>P6`%TP;%5(&9G>g%T$NLrR^ycHF_<b-sg<!8Xh
zt*?Ix3;VBgFJXY1!AGYQ|Gd>=I(I>V?dRYx)OyvP+2#D@VGh`DBKP)<U$3K`dc3~(
zdRvrb#YAqJdzZ+A4G_njZ5d=iNIBhu4AT8Qbq~evF;9BjLI*J5SUejoFA5b<s4Dx1
zi08v?#DUMHI#1cZqJ1_!14HLX^A=bGkja03M18UUbq74*))w@**TBQ$yy0@P;V=8e
zn};kV&|U2R*^7VDCq9&p+q{E5w7%<C%OQd};WZ7^GjxUILR#SvB!SO;9*~1&dzih;
z9jXJG5&w_p${;s-lI+=$-L_)Zjxg)T90+>ep^bjkj8EhoBw<D5IeNuD`#rpu{MaWT
zC!G@X2WNNJ=UVWel^FQX#Y}orjFB!W+1i4=XZ7XrN#G4L(T7Xx7ess{>_#oX8&B~`
z*fX8@Q(XK?e_#zVWstzwq`b)-;4|wb`^TMqyA!u9^l$s$U;FkQVy+KhX>j@?d^3T=
z^4eSKEFw47*PjJ`;^LzJYCZi*x?rT*4ztH}f1<+bA9wVbKm&0M%8GyaSlopj;<F!j
z-A%hfgTIifnQ;j?+e&Hht!|DL2r;v;vH2`y<waa<{CQe1mNyb6n)xL^zX+B5!g<%b
z`&Q&Ic!O#{zQGF}pW9$}c5&IAsv7Ehu<eUQ4is1H7jdIALqbC_kmM6%4B)tSsQN-Y
z6#qJ4uC;2F$^G}{Lqf_$@^{q;^~=7#`I^ybiD@-Ea|4yKu|ax4W;Rwps*>;CC*Nf#
z<GrLFF`1f{xGYUuF~L(^-btZIL6YjN=$LZ(RnL2yE#c1dyi@iMf5SZ>Jt-p3>@-ON
zD(dMJ6E47gI;{3q*<lu{F<Ic3Kz(3-|2z(;_tB5j90#d%JW%7+=1;C!Ca=#a>$_qx
zN-a%Cee`^5+dna|%D`xGS)I0l&`X@H{sFfUp1PV}X^W4~Cr?%tvX?k4ySLF+sLD2x
z*~!9tc;w+&eQwSB^DITcw)VrwAOzv&El@P9?Ly<i{Mno~*3-xtPksJ)jF)wMDCs>E
ze&lvse!mEcAYCGx=3FK*v)>|5`%1}B*C`RfoQOF1*&l5(9PrF4y`n5Il*FE(L)s0J
zXxWBXS@L7ee4MJIg-1eIZKLZ@Tp&L{<8kzxs(?7=na2YYA14knJ46F5>FFV?ub+3{
z=6u~u|2H}H=g+~0&SO&(0vI{q+;jv2o1v*T;$vg0JfDtjUhl;>oSbG%JM;+w(N~+4
z#*ZCeZ^eb>0cOXJcC@!6ojqx53cNSwrmS6QQ-RWH!~1K$2<-yIP;)1xynVfr-jMM%
z&g!~hPdCpbOmH2~o4stp)S<z8Q_CY!NKajxb~gw!e8pwJK&AhILcvT*|ERH3nNe<t
zyrV_Pk@>5iUZfq&>|weibLCAA)LN5=mot2Y{zYX^O;=nMQ+XGf+Fu-)*ErHYI{1;w
zVvo}>(Z4^xBC-B$!QntpfJ?S7%q^<$pgt!+#z~hW`{%%u7QCd!7L<P*-0MaXaSDqM
ztu)1p=Nd=zEymqD2kw^-6A-`Px25P{>pBB>YVah|^@47PKzy#xXVnWvz;OaZsQ?7O
zvij)=6m#eO8KS@_ps)a3GGHSC=ZNv9e-0;0H5^_09v)SDW}>rv`HOhf-cC_ntKAOb
z`=PFmk--$goh8tPP$Sr6tWKRiGDgi_m+PjumE<fb6X}wFVY{iSYz!S`(3uclPY>Th
zZ_yPYVZoAm!j`#yjzV=owY%2kn+r3V(^ylT6C#$0OgsOX==zQFrOz=6rzW*ElJj|c
zGIfWYY?g`7>dLf&A3GAAO&g<3^qa#WLvK)eVF1O<qk)j+NbYeIBE(>MMlwX8;e2C#
zZ-lX0Ha<=l14%Fh8Y*jTLpk7&;BM{E^-wMi9Ubr;otI007Tf=o%#=XY4;8Nu{+?ky
zBh>bpH{JLt_}Wu!2@FjhRFntzR_ToE2dxS@Ab~T|M{i`m#n?+H*~3P&?T4(budg`%
zg5tJOakUXE5VOS-i<9RPShLDeOuDnad74z7JwVDVxKiGmeJedlzd*&2lOO4!6nM<q
z11}f`@apSZD1W$MBFX;VrlQEXU&84xt?n|@zC%W8b4$yaC)G~CRefoXuBoX3uC4^y
zFoKTV>bpOoJd?3Z>KE7j=m^4T*83B@)elfsg1qOi7esqiP(x!Qd6KNzn12{^eELk=
zv{DAG)ZbR@=Is#cTiU9tReAm^k!&p9qXL^h2o@;8>cxYv)q6+K%88ZcFkGJSt1Z5t
z?&9G{kD71}J$X&Op{VC%l#ZxG=@%6bi_jo0ZXeDsKj?0D!JXQ!p0x|=Yv$kxO|a6(
zcD;OJK_-xWVq9k8W)q+?IBk5Ydofet-Vo=hfH{%3-`0a|-95gl*YTUi?qTkIQITnN
zT_Y6O2P=2(CDJY0xRyd^v1CACIW^09#4ex2(c_(d-5IKBfYF7+Ecg*4jzu3Zt$i-Q
z8lRo@*_q<M7AfEL+VxN`(y?2_P3l>}Bjx!BIZytOimo4Ye9QfSC74(f`^ze?F=0J!
zOQ9RpY6EF>9q=)-{_6LljTfYT01DdD0zI0*QFW+!O?#T?_N8HbnyNv~5rciZm$eEb
z?tuF$BWmcq-VpWAQiCl^qxweJ5YC;HHA3nqnr)GxcUA^^KP8i%_I*FI<~_-)&Kz_!
z@)8u56cPI2Hrh+@W$7(Hq5MUz48UcD%|Ylej<HUYARdotb=7AdKE-cG(bCA9kx<Sa
zUYFg9+XfK@EAkh7d9#x~oh-jn8{G%-@Teg*>o?~D**YQf<ZQs^lYb8BU)?jiPT#aF
z)tmqx_V?ZKs!F9{e$2_9$ca_0!w$WrTnsnsz}qCiC((Hca|UZ3O|wRbsq===@qQ-A
z@bKJT6nFNi8pGaf&=~5$Fpo%i-=nA|d?QZCQ9RvCT@v;cLFd#D3D?h!BjWD7qbnCo
z+1QhiHN&2ZdNVNQW9*g^C*pbEWaIj+5GTwO<><G2_-W$SGVU2bT2l@dp^?@_LFyiG
z{aKJC72HDJf9?xG4uj+eP?m^PxqnnE;1(91xsKRDXI6`*(H#aaJ%2Z1f#x8cPA*8N
zFx8(IqJwL&?EM2Bl4e$3m-&3y)*yJn6AkZp*^xy_#SkFfx3Pw&r=dZ=YQnL}YZ~7v
z<63uRK$<$r|3XG|S6u-ceWq(ZcYk%N>uj6b>d)NXNmY9>XR=fOMud2;_O*Yf#Bnol
zS1yUxgZhRueRHd6bP$eArzKoOK8TQ}$!3JZc6lN*nuXw6bDh@Ec*x1u{;^jNTu54X
z8yk7FR8t?%t8tXwg#<^na(AlEPIf$P?PpBPuzSV6^GhP!d`xaLuXxxdL|<RuaNtxF
zTM}VCD}H3ZWIousC#x#~i`V*cp~TEmlMtPR@K8Kxlc%hqI-(($WvqTDmrr>q&Z~jY
zD`sP;Bl6*kA|vFl_Q#gAx9=s=eZ|Ew&Z=KXWoBr$)Pu7-=@ZGNUNc&Or7vu=bQB)$
z=Mac386ISVM=$Bk_lM}zOwue@Mcc^<b&hN2(*QHu%c7XzwShv7gu6SsztwQ@Pdm<I
zX1=ff0LSB3K0l_QvaT>z7u)+214ME76K8u&IZs&=nQkoy%_AmlJT?m}b%YwS7^tYI
zf|fGufHpQ;-GS0`IFvVtoStLh<aY3P1cHZQy`@L?SI$EY51l%-<<sI%`T15R0Xx$^
zk!eKBa*{=02>gBLlG}wCjs>0(hg(jX!k9T%(P&j^RiMuKH>0Cy9GEO-p0$5c_j?`+
z#YIplq4xub&_H=!YRBNavgwz7eR(4=;GWHR>cp93y%%o@-ClE$aXn=$MEpEs8I&|n
zlB<8qC`w30PrAE<pV}?sehF88K+!eIIXq*=oJ{87Cg0~P=OtxyzQ<=RCbOC-YbtM+
zuC#3B<i*{i)@zhE{tS@(;|)&m4t=FB_o`ASO&flco*D0L{CaxSYBtb7s^&(F)zul3
z^_lP;rp0^`t~$r`KefLC$Ud1INZR8mG`tP}li5#K6T(_X{inJ=IyB3UM#K4COdGi|
zkdW`28img84ZBfmAU>{PP}_J;Z<A4{Y-OOX(oMxQ<Gkn^=0-|wIX9*4$wdsmIey(t
zh}W;Qt#!G6Q`#dSAQ)e)v%g87{%8v6&_IFj!}q?Cf=kO<`y_n&LY#viX8A*-uBfnZ
z+9A%mLQAx%snxk9HFaZygkQvxI@4HM@UyDx_L)KM$C36h9aSgmfdz;W7J0b|KkD`G
z5DLX~Y1=9Xm#h{&jxzXq7{F9Eda*hugmzNiBd{t%?d|Q+%UwwQXsis{jaj1<OZO6v
zpXB?faRf;Hxmfe->#vY(4F~(8HJ}shvOBY_$Gfw(b^?+PQVr(G?Tq&IUyZKkZJGL>
zfgT)Oc7rN8DVOIDs)YC>J2yH8XgJ)06+$^h8ayjx9>sZq4Z@F8`mFA-*EO-Pm6M}v
z#?>lCgWqJ-(#HC*kqfPLjgEbBLa#KP7l{44F?u*OdH#$9ktaHZ;A`o>4~4*t*70~+
zkY1+gS|)P*$FZkxay;3YdPgdbqV+`0*!4X6-2%AFB$mPQpXUB3zQ(K*T(~dVP^pQi
z*fr(AX{3EoMKmw&!4*fY`00T>eKz4Bb0Oj`ol<47Of^fD|9q~PeE3}_<fGLHR!g$|
z&L1M<IVzB;hnK@*N&8*HxcQBez2DVnEU?!x<?g*=uL-&qYn*XN2$%ptp^ldSjsePB
z5_bDV&u2eokLxQ@1>ZT}lV+prfroEGA!d-(4$6q7*Ny^pt6|C?ir)3^bnr0bS)`S0
zbup>a8sJ%DcPVBmjSNL#w8$Z%UaNrf-?65_kL5jQP&@aBBRNVD<JgERX>Ao_=>}=C
z_A4`#(6o^AW0q-A8uBGij{W^#fOfp$Y^2!q=XXHiDSSAr?Cq^1axwp)SifOsW?4R4
zX&UrFZnnUMh}~1x_|xU)Ow=Bc$=j4|wYAYD;xD$b7#dOb0kEBi<R>p88IPR{@yErB
z8q9G33fhtQP)RY@!-)iFOrh&!OeA?4v*0RKvVwqsDt(zo5~QI_>vD;(;>ZV75R7G!
zxhrFXRyERPTfqF2H|K2jM+e^MZ$mCKc#^OuX#9Un9^O~=vMWWZ3MH96_b3%CZrW0f
z)18KT899fwka#(ptQ!)+0X6Y9sfNe9&2kQ%iQu^V&Ky}a-!!Vtw7UI1br0Qtz$EJO
z1!VUR6l&af2*t{Sg`V=sLtNEODn#AaTeI0ovfHE_lN1D;9<;;Ti!A4`4gr@ymUOHx
zro&x0RPk}BYtaoE&TmhUdNslt_wPPuWngfMfUGVrBd6~C8S1O=|9Z5Rr+zUnc3MNN
zAR{~vFebuj3xnY;&!qq(ub2k!Y@#O0f3kxo*}8SZY0ssSfh$!1?la=9z-yS%X>y@f
znckL3RSz5wv-#(-NTj|`Y1NB|nn#i7;0YL1#B;y+x7g4{P>7H}{FFD`4@5q}@!ua6
zT)fk;Lylx^P@!~ydOsDfhX&4#yL7=@AJ!&F4`E+RRBE-(^gUeM)k{Ll<Dh#pjqp$O
z$a)a|fBlrlW;LNV)^P5&c=oKBiM~?QE>?6QT(&}pbs0$~tohw@;--Kh`=7LH|8v!F
zx2L^oQmvX4-S$$C;oN!6@ewa{RQ+?}>CzNZwU)fg1R<!bOA9}SPtQ4Z65Nb`S-d4W
z^TlD1M|F+2wygJ|XuI={Asa1ff;6#J6aAvlmz_PL9RVpYn@(sy1QF#Mr)@(uJ!y`p
za%Akpc${1mqA)UYx1ywXT=9yLZ@SA2<ye_T-6dVxvt75$EhKMU7aY)x#fUt@ig`7q
z!Lyysq(&jb7wyW-Ps8ka5%8s3U$WsO*x*Jg7Z8HkG2Qu{etwzIu{O?mdPh}ttoNzz
z_>=0``A0C3v>oR%o&4Hvks>f}EY`XuFP!%FNYLeq>I(BheL5Asm6K!I7>^pWxvTIh
z?g@S+n>h-{TQ0rTDC+e$E?<GvD5pa$RSQ%r@MY}9eXt`F``70`qonB{xw?2S((Rps
zV_h)%WA%1UZLQ~3`P*Z|g#c>F(|4iLGOw?>g*dHNcchGRZb~B^(jAIw?PD2^_N(?2
zH=>klt<PEQ7mSW~(m8D@uh+`oR@pSdFU4G@ozz`je|n^%Kzf+O&Gb$KK_v>94K8kV
z-U-yXmm`<_CP!I)5+*0_nI%gn!SNUttr&TUqo(vQNw#bYT#$JSN3ydupnbjt&O%u7
z+Y|0bo;`lEB>RLclohm}^flf1X}PyAAJDUt>M%ECo&2Y-)pcMi<Cy;@RMZOPV6H*3
z?;l>_rVc&M`NYi`g&br~HrLX?7kxmjxDjJrl<9UK%ujw-B605>A7y^uv0(nGf-6=&
z?*|{!+sBJ~D8JyyLb;ciX~Vr&zf>&Ckpo*%qW61Tgt9IKb?>NrZ|o_JwvFu0^Hj^r
zMxHa~5BH@VrD&R#RL!osntrY5HA)i7s0Jy^O0tQVh0LjxFG~rQO=MITy1Wr%+As0-
zyln0XGh^x=+}E^!LwH%ZV5J|H_YE0`O-gclYLb?qD~cI2Nw1z`0^jl`t-+-`r8)g!
z2<lvYYkP@_nzK*OkVh{y5ma2BA8t2eg+LnqjPm(6{z^G)G48Z~{gDePY|r(jvFqZH
za#B!$h><eR?yZ(uK`emCKS8qPzbQ0*v2lWp58fn0yLtWb3eaZaD7AGk=h9k<x?!PY
zN=i2g_~vz=ozE!y_+0ya%|0;AQpGBW>U_gqXEb@Fo3%`g=xtFJIX-7MElbpYB40sd
zGBq|Px%z?L=c)Ga4yb!`>xPS_re5V-0Y>+3HVY-Zm6j+vKp&<p1l&1eY%&`U=wwP#
zcyT?yuiThH-vRHW$+Udu;i}&Gs+qc(r{QZPDhFvk@vt@!C09IF(*nQO`*e^rvdZte
z2-_lzdy|Kwy`z{D*7{lQ(S>!wnAZx+T_w+dbLv6N+69}&YfA?urt09D5w!#ZeG8*M
zg`O2I{3i2KuZ$y`;eGn0zx@qCEnLH<J2q7$hvQdTK(a*};bhV>FMU76M5ZOp=gGuU
zjMf=8vd9^C+G{UlVnZUX_V{r2E5)l0PqleWBu@eqx3s6qe8IQL_k>IcR+J=t`gTZZ
z{ppkD@QRRSTJ?MmUZ2X!gT3=YgCvrqv|Qbn)(YmZa10+qLtTG~^3@?**@v5<mo0J}
z6mRGW9q|N^IrxW>Fsb`P79=U4lx>8A<o-6~RPv7I(Hfz?#qLAzG1IZM7rDD?vSrYf
zFjsc6JT+c{tY|5Ld5PqgKj#Zw+FXbO$GmpdcMSCy8@%f#XyfF~{Jj<n?Ti@oiFJ?<
zAATD?z^x|HMDaI8G@YHVJDYwEWg|^ARDJwq*kAN*YLH&qE2pHHm9oCoiR&kio>J#R
zbc|3Ytj2K=d~L7rDdU%X$>|FO%##$3$I~vm6BWoh%^2JQ&;$%4VyAi@uF{y%ZiX_k
zIll0QBM@<v!;g_OHaK`NVKNH<$Zn_NEF5R>HoL$OAW6D}<XAgMRaa1I^bWVjWOn@9
zd7jd6jz_gACeO8boB<_;?3s-x5|b6wRsJ~vLZhTWMri<a3myZZ@@*)8OkqP2qS_@b
zdGc8THAB~Y+o+vxBX!lc5R-bu+hwJ$l{Y3RxwW0V{ifaDhm&M+nJMI>TX=D)S|%~d
z#NU?fw7!T@b(-OE42AX^&tD#f&3y0v)sqs&oA7+Clqz=%oYjMpXxMlFE=6f5uVc({
z2l2?Z?&Th=Gtz%=(1Za78QRAtp6FiWWmmj!u|Nl!pe0b-(k=H2bJ4^eQ<B!f@9*i5
zSFUGrXLmk)(bCPY)p4y);KYZ%Q0`8i<K|WxV^sA|n&A_0E|z7kDc|~5hmdDclD*lT
zB&1Gt;}xAvIvK9Km;%fzqPq+$otxuyS^oGFXwk->;B^Ib?nk8J!-o82sVBcW^9hC!
zu))5AG0mQ=uc$hDt^7}XZCW;y^`PXPZGm*zSXnvP6435X2H}z3S~hq}=8lWJuZ4IU
zRWNvzTC;BSfSw%Y9r;>Bg9?@)%bYB?dz2^V&d}-~{zWsvt$1PYDSrXU!*xgZbMnM^
zttW~97Pg-vy&;JkVX=6gH-;zX_efrXNzu84CmK}uu=ugL61D2C3r=nT`k>0|Ho_Y1
zr5p92g9(awdk&Y$3KkUQUQ#;LSNQc{w9#@u@_`I=1q{u1vQ8Hf$`8LAoAN+3byvyH
zuFmXaY4WUpI?{cjA_Jjmn3#*yP1PhF8g%ei$iR13;p@4J&)Tze6CAn}DIbJ`$)He+
zUtVJQgj~z<+ViI(>~~kI)qHQox0$bbOC1xR59Tb6<(+B@*2es52Zto-y#P1ANaMX#
z;41tDm;E3QAaO!xt?F64X&lx;UW<0SK68v9$FhU1y0I*M#zy1yK~-3!OVM3b`)!am
zZkv2|zLIBsKU`XB%58JXEX<Rx;k7r<17Qv;EBv31>owJDE*Di?aK~fsonzycg-zgr
z<zAS(xKuh`u9N+|umQb}wX>PydY7$n_R8}zh1_%WtkMgtg1LU<E5=7c+tKD9SrPTO
zIL}dLb1^Y0@frxvR5sR(5F`6pQd~?rWd!N*NU+?$Ri?p^kkjStd_6+ZGT=Z;FIeev
zedk;pSd-RzwsaJ|HI4^f`FGzP!pc=G7W}>)6E7RDVDvnpho5Jf(n3@@`L|Ton~f}%
zu&ZvkVyeq$;hFfneM?)%BsT4wA71zC0v%tO`t#RlrQ{H!l9qnkf2`=!jxDuSo1M@e
zo0_!6e`a;DW;{sG87zO$6w2K*dgoE$g$eZqWw%LC#)G4Gh&1nR(XI%Gt;rOml{;n#
z0M3z~9BP(JissxqXI4n!I{o20Yo5lehy#i#fbKliWFs0lWx_D_&en8xHzn8~<v-0T
zE>`@5+4*5=Ao1dsqKq;q#V38<`9WM9ojDBmYL3LDGqvkIM>|M)1N-|?3<X9_1t65*
z*tBKUL!#3N)7au>LICXF3>RcF8AFTmG6Iy1fQk=G9dzP(!Kjk4qsz@YFbDvL!)?7b
zwQsh=g($$GL7<*!sAQEXxBu{5GxU`yg_?TLnNerpOW1Mx9~AI-GH`@}o78_=pMWk_
z8OOC3Ug&k7NS)b>rEdIrUfQJt5GtQj`*_sId>Im=Y9DU16l%HNuk|g2d-_0KsTccV
zZucc$*6Dr0(VZBG&rejbCQoYYIC<+<-N<!}5lYUMzpJ@j&hn5XgNxeHFY1nmR-HQW
zaTleY&v*II5?iP48P<+|>3jG5prx%+Y&wwrfe8Ivwb}<jeWymzkwZ=&_eZ63$-Ntq
zVOVxKSV;0NX6=_D>?{Hh1SzxjCK0Rkr$Ue#(&yHcDd(#AlYJK1QtBvNV6G`Hjv#}|
z%Ws2j(dnJQyxbxDaI&z_a3_*GeUVRk)B94>JzoVjBqe?YMwb(g1brU`d0U?gv0#nP
zZa*jc!LjN__&PHlKE1q?)@f=D^?EcY0)K(zv2xmZ^5oAVxN)7@>6XZ}1LHY29XoLD
z3nf9&nMSbO{jp+o!B>8a0=vd>^4@ulj?Vcihw+ST=}gQZ(~Sk$HJuGb*&tA7<=hmt
z_r7kH&Wi1r8k}Wga_rc*AOkH}^fe~4hbw%GkYIFM%2ac_^DSW$H)yR7RQv0%-uH&a
z{epjz57*2EJ9eiOS|d<%7P0Ko69)Kb_zhf~6Ni<rLD7BC7MDh<AU%a&7O2maWwqDE
z5nHKPK+o*)i=7(hnF4uwCSkYEym4G1FG`BL%gVi1EdkuDkavwrW;xo}>pY2yh)8_J
zbHPQOC089VXc=<MNPVm}uvIcaLo72m$;l+T=kQ^F5e`c9A|+W`FCq2Lg{`>z{~ujn
z9TxT0wS6oQDFvlFrKL+iq+96*fuXybBPfV8$k3pqGz{G$?GVxosq{!m4GrHO&N<I}
z-tT+9i|g|Ia|V91e|xXJ*1higUT@F-RED<LW<ghXMtov>OTJo|G&qm*=xUVh=+>?=
z=u1KY$4Hbyw^l>;{-df%La54z#0>g(EL#xAyYqClx3l~ma2IGRza$;$diuyfEZjGj
zV+xcga`@od{GX8w<dJ<@M7KExxE_CyWo@;wV4`m*W(rU!S>E1uWTHqb{>x&(6Lhti
z6Pa5zeMrIe&j-i_=(?Pdk<szUVubV_Ha1`eQDZ!Yqny`)<A6;nONxk&?s6>hbGyc$
zZ2KbPAGMh&ghj08pPwouzBvJ&1eH&eZt#Meu|Id2kSSq|GKp?f2(-h|U2$EMvpGVo
zzYO_g_T1<9OKU>H3cX48I=k>ndkn2LXqANJ1hs9B#ve1E{jtHz3dP85urRKcqfdVQ
zhT>zsM)JEul&FO+R2~(;H$;0VsTcK33>44K-<mGMAd`Fsj0Cl@5-Rw1gPgny7Tqt>
zAzq$`%vt>XQPznKi&-?{^ZxZlbOU!Y$c;`ZSky^{dAt^Aazc0uo71Z$`cGq(soYj~
zadwerYg{foH-;auWQ2T$jdCS#mi|1*yO%v;i+OM7)kiViT0=w|9<=l!oatMi@X|x>
zW)aj@z!^Tuy(tC58u@<Q{iV1m0%XzQ8lEu_{8|0`k;WJ*k)ihY=Dsob9lFquu1({H
zIpQWgPS;C*sj6-YLcZxiqmm^7|DO<iC{@t;Zgn-E8b*D)X)+H)(Uh_#SZWBgc^LVl
z=5vh8j|AXM5-Q2WCbQ;<*(yFJe}nHJK`5^Gmnr%BzwU`J2!PuihSVJRX4Y|rDfS2>
z<N&~oNulxXNiz&IE232D7)47Iw}j#OfmOH`57UmZR~&@t(jS4&Q#gL>odJ8Mcm2uU
zQ>~Ze#$u&Zu+7&7#We3ZSmlq>$IogU*$IEK!of=K&LD98l}{Twe!YtxvH=LAL4vf7
z9JsHI2@<x`N%;@l=m%Y?<g2|7d0C1u-$I&bPXq1_VaohbVNb@`l(g6(1yx}dcENue
z0*Od8=Sz)`SB=bi^72$0-A5;i5G7U;QFv=AmIy)A)YO~{nbql`zLajZSnXk34rFdT
zd@FzZsc%!<oRGyd?JIS5K=q741cHJlunV@24Pwwu3u+<fFA2xmuD4PW6FmU;5SJP{
zfFtHqu{lbLr*}3Z)?G6)$r3Uw&o%Ii7G68VU^j^=8npxU9xVNL?y9VdO7soGxs{})
z9qKvo5MKeTWfff6O!%Jqpzy~!&mKn7M;3_m{yD*UUBs8pTx>^{WIf&0>G<==ZunC5
zysFnnb~w|ojkY*Fvr}ic9F1&_WIz1}P=~6yA4@uFzjxW-n!$Yo8<d2Re0A9UpWo|r
zlbaFL^D4}z+_f`H=^C-Inl~wT{_3?;X)l5|r?ew=jIJ1sYJ%BkhPd8<OKi*bMKMVB
z(%P)Ur^pdY^H*Q&1)8R50M!4zFuUa&40QQUnwK(m38CeNQu;KE{D7;_R=sKF;SnX9
zgS${U!)OntkpL*I9DqYlZm{)8{`#dEGScfF{XpGy_^nw|iFSl)t4M}%MNy(o8EY3T
zg@PXJJhz(5<uR~v9c|;l1cuY!KRdLG#}kI<hKF}S_Yh<DC!5egb305)k!xgW<MhzB
z9A@u2z9hk7c)!|xGV}BD5{s~~m7=0zaZwq+K;4r*H3r?<46bG3hoKHLoVzccaEOg!
z{wsidw?v%dE{=HM{GJAh%Nq!9;d?<we@cgE2`k7~?0h=u5JDS~v*ddHK;reyUtahY
zZsH!91H6MYXNQ<G&A$4HxRT?fPWfZH_lH@N<<dG3<57<DqyP*Ah1p5WJ@MJu`t6U<
z1BH<ypGT{EshN!v#!Q~NIMe{opQ-cll+3u;ceef6SxHw~;0<XGQK6Jo(M(lcEQ|*k
z2Xh}OWiG)im(3f1{8>CKAR;v?ssgcjec1EV0v8*)MH`9wy+I`lwmSS3qWaf3F1O3s
z@o;MaFU-&(w$og}9m~OCYu+3YMiBk|%omh*1cjf?kG8$Y$&v1-V5QEJ7IaGWBpyd8
zuW7o}Oe$<t4ZWo&Rag?eleArWAwL)q<^edn+`UwQ3lE6;V*NtOjiaC$z0<ru2&Qdk
z;)88(uN5-QIK9#5QIww#)msw~6`iysG+u7m`=*toE3iMs!^I_G-RBy}8uageh*Tsb
zLQ;*%MZiVIC}xH|?PLQKOos7MzbwN@elOY)QG+?!!`$sZq`3<`cnBl!=98vWypGEF
z<!acu1G?QtTVAPyt$=|sSSTY)&c*-cNLPSkM0;1*H`P8cQIGNKfJG+(C=Vn$@-Ab0
zz3DNjd6}P&?~V7LeEnKZ7)dd}dsjKx_;aM7bkTB!U61)NDJ9L>ax4=#7g)OTYD-Q}
z1hW%4h4*p?sdZ7QxA3rs@I;|ovfZ|7x&o9Rw$}P!VL0&BvB^o|M*j4&@l+3TBMt_D
zNO01!oS>iO;@(MlmcJ}nwEgVEMPUImsOJac=n=oDW?FCTfFHTaG9tVQHeM&+_zxrm
z9kDdtL)t`84tHMD=++Lo13tG(DjyOIETWp<pR%t76LyGA{JHOwOSXSn!-YEVq$D3v
zHTS^qMZ{J5;qau#VG72}1n_*MZ~}HyOHRkpzjk-572>=T5i?K(KnTYwd!~_;h*?9j
zoCi4ZiG46R%tFwH>=70jzvEep`Y6>M!^!Js$cH%Z>bDgRumGK48}Y$69n6{B-d`8c
z+4oz>OxH3ba4$l?OAiHl6~4sqrQAS?4HbcuV{ZVQB@n0e<v45;2`v~GMOFuA^I6Qg
zK>IRMC?sW)5HF=-?9@xrTj#cVdrpQpl9yI8by(oA4FkU|6-oB}KB5ek^{B)SdK1(i
ziI$yF($pYhzG}OV#|RzpfT8QEK9xW(FTn(YX{1hV=#DNp?w8q&`$V@BKYRe_s#7z+
zYT!~EZ(uOp)VndL__GYvoikbS1QVJ{qHMnr>uUFUFl{cPHw<_r#kJjK=zv9VK8$c^
z066yih$)}1x?6?)f;Aw1v1ymodv2w!>F|_lqv?l$+I^c3j`Cmk34tt}_wnq~lhu2X
zs;E+%fdUKkMwd+r1RPyRdd(gn(!oS`kY>;^=_pugqdxwt$dXEf;NN8&1h8R_w4Fkg
zeW-r4(YPtHK~jznJD)oaw4%R7BqcS*3OI~FWyAY#DOVq--hu_zW|TfrTK1$7i7m7;
z&FYuo4+pto^3I;xn;4LgiuB0c^!MMPg%3U!P+0QQ2TgmPT^GlOaGzip{mI5{dfqy0
ztFR+=NN$aAJFS>kK=Hm$;9+1`f|<$0I46_GS%c!*i(~n+*O!VyPOthmY}q9CBhT-s
zf^p$g8@M_N$Gnp3Jo}gUfcK_gEpXzfsZ3!7a*MFtAEt<4_NJUFUUxfh`6-==jlAs{
z<axn1$Gp7N7n;F=frLhOqoR+3stPIzL$H;wBO;^6P~Ef2wl)bKk%@Wn#Ka`V_jC?Q
z#CaEOdE@?w-sL1gVAcRSWbXc-6}6}Vw!4;CJh_V?N-<;#dYZ9nvg|DMWuQ8((<~7O
zZmG&xs+5>y^j>+WPuRTtYH%*j6wx}wwudH}b8~ZN)cL**0|Y^GLC0p$$-7m}|B%8L
zP-Q@G`CCxVR|}qDxoY<=+mp${8uDNu3FV>Yu_J%NE_&$R7_i51#c`FA5@0Tq?*iy@
zXpjc|qYn<zOuXo<C4zC1!~Lbn_V~y%y(c8vsSsWp+&xx{(hkj~cSR?CL8Q{~k|>t^
zz%(hm_n?5_CXc;!-lZJI@QB*caWk>~46w|~OJ59|oSS(?Fc)Z@J_dY+lKJu#Lv8vy
zA}Mcg8;H*OKs16Oyq^{bj*}Op!9T(p9;GerB!QB7&Rl!ykaXui<e0V(DiuAd5(C8#
zIycEK54uZSPsYymGhY6pm3H&v8g(l6Q3~LBJyX_=g!gkl4`pq^ZdtaYlisJJTn$?e
zE^AM91&AT$Q|tk}4`O(j(1F<5nvD>da48+)mKA1R39lTLWUoF(qDi`@9P{EnC=N-y
zCGdf`1VpxXE32IBB10w_{jYwxL^3jK#rNJh2W=c=)Rx4h|7@=$T>FVoeVd6lXO%Ad
zL8Dc$ORDnfF1U(<>s3VRN@R0B)fv{hMs*s>dg+kK?`j!r#3p!s?Tq;X3n)a>VzT`A
z6f7<C=?c->EY#M_Q9{-^gEP4_2z`vuxnTs0Ta<L#KsUpu)uC~MNtV#N5i*5fzQFHE
zEK^;9mdvfvHrvi<M~!uDU!^lLEResNNLZA9UN&Cw0dR`hBI-uozdEl1!^`&tTm&TS
zUMr)KD32u2<o+E)4Is!j-^7JVMOM-ih>atP*>RF*T$&SZ#PO}WWAzQQXgJbI%)7o*
ze%tWEt9V&O7Ld%~N?QGOzuqjmJ$eNcnGn}jhHN{V+wApkn1mq|K@1M6jbX*?Y2mWO
z^bK=jg6o<DuD`h{o0XZv;(D2LydiuU0khEDg?N#>;&AR%2W0`zaH=v}B!tIz=Yc}A
zlrLoqsc_6WpJ=+i=;^wa0V9vc=8&`ZcA|l!dOBnjTi7+j@TS#h%(r^k?Jer+!az_Q
zQ8I3YKuB(}X?XroX}`*p<!yJ2C!SJN)F>+_Lb$UK)Z1ct0?<ZFl?s6Lh8}}fN#|yC
z3{EZ>g|XGNUfy;%c-$=;#-Io&FT1)tL5x!30@(}Sn9(p-Yea^#sHlf~sN*7NIpJv2
z+toNIr_&<?{qbbF!8CW!woh>&8^ep}YPtH!AkqqJYs>m6{#ItKtDa=^Ccu=<4u{}y
zD*-?lORRq47V?0yDM`5hJotHqeb!s^7$BCLsdZpYRE$H!r+@G7?>7PZ!W(n!pv>n2
z!Ij53dAEj_XWGK`SO$pa`kSSsRvnVcG}hj8KG}bo!0^8RBo9KI6^OcX$<SZ13E+bi
zmd5<h78klv8^AI^drqk64;8qmZc$S9v#2U4+))7&>HaDE?Q;;_UrOS5i)tFhk8}a@
z(n14YmGcGuHPZfrO3~3-I<J0cM+bArO`oud@H~uBctqe^Z4}r69oJ1?9K;tC<niz}
z^Hg~r{W>O+LrgGx#QnVXo`SuXufB=Fr;#-KJ(Z-6&W8yaeaxYhp@FN<j^ReN$TJc=
zwq!a(aO^ku2;>Tor<BAk3~Q+inCY-h)=%jqog4V!t)-v6A;yNA6)S*r8GME-Ix$$z
z5HvzZ|ISBVip&J(P+JfdrdFgf$O2d3Yf&EYUrdk4jy;8aQ^YuKb<apQeC$|ZFOFay
zUs9vAc+8Ep8{RiX-O1v0Ul;YK`NwLV6P|&ATa1tWXq@*TJMX7DKE5f)3ZP|Rf68*w
z3D`jnGhP9x6GO|8wLpo`?%SN<3a$1%gdkm?dDzGgI*K9`26V=tH4e6dzw~pwHxz?_
z738jJTL8f7>c}?4$fII32sGD}rD-ntUH$R_u&(HdVt<G1dzoNcZbbbQGL2&y$LHup
z8Er#%dUlo)x~L(%nir`4P8Y)%W7LgYE%|u(j9L|Z$7%kcVS>O5g&L5$w%M<c?L7(%
zNod;(atML=u~7I;SKEL&lz_hdUO6$hATcQ^hLo4-yMb)sr!_68ihi0g?HBQ$Kyj}?
zXZiJS;~VR2Npm>ip1v7$A#r$5*PaG`?Ns^n%Amt5-t!0kD{iR66Ov={pr-*$Hgr6<
zsD(({%nn5Yodr{}9%Xf7dKdp_yg=dn2aULIin#SWyb8Q(v&Wgr(1GP%&qk&+4d_65
z8fATq(RhV*jHTQ2nGfHYM5+X~>fI?de&F0Iy_Zi8WzfFGcf{;bv8!Kbv~UH2dHX%J
zyV~W`1#=(13kc_i58dCwWg{~FR>FadM@qhMM|@o{1qs@SwrI2$=rJZ!P4r8IYuTdm
z#km*0;6L{Q?kpV6%Jdx^I=va%BZ|r-FeMwY<d3d{MMQ<8rKXV78Na-tV58M-^7FxG
zs6)V}rtG6+S&MvW)402FTeao3J1~48_EvsA*ma3B2Uw8Fqav45#AYKBE!^~d7KmHT
zx%((S$%q{Oa4VcnJ3Q+X=EX!vQR`)U`Whw}{{9Z3Bs3%FM>@!!cCKx1Hj%61czp7E
zm@)B#@rOT1{p<ZN8owx(gNEzl6Yuxwd*JS;pgdxJ7nPjXmo5TGSU&`KQXYJ*bx3M!
z0{alOBe}BThAR&QW@>i`W+%bkI<S;ff?_*DQxZ99kB&RSH{E1%Y`#^K?rli8jEn(9
z>QWUg8+53fLlsC|*qouZ6yKV=Sswx#J~iO%-M6OB3(eHg6FB-DbJhFetC^2{Zn=g9
z1|d$<>W~KuOW}x}1W#XKdg{664=b--e==q|YMwNeOK%ZtFxvBPP8Sq{9bb;dE-E%}
z7}Mb`0#+)Z-;nqvE~#KS_&drw{a!Rna>AUTcGWG}>1TYs3^%fznbN`q^xNkZ`gCf+
z>Y(8~aHCYoMB)QSg*MSiEJC@W3e=8+Wr0kAdi_0nO`xlGp6pdnV9@?;tmYmliW2Zu
z0e67lqv3be1!fv6f0yd+Jf6Of+jTyW+7Cl8OmF07#wjuH+XZ^kQ}!9mkHXH9;06F#
z3zi@ehcVL{>JoJSbaW=Y=Y?=>`6X;)c0iYCtqqGa0Ydl)K;5CM<<S8K#SSxad7h6t
zWX~u@+Z1C9`%CQG3H%p&d(?WfPk_h9DDc<-wYM+%NO@;)Ct%tU+OpQ>t~KA01T>~F
zp~*6QsK(U_+vMF~kUc>TBS6A4oGpXa5w>yCctg32n}uvfa%UWy9IPwshr%-PbpZ(T
zX71cea#=$0gHHxvNhM~k^_?5Ke@gag2?5{Bu~dX6ERxV^p~1kuPyxhm&<;Zg@rV%d
z;r^YcZT{?sVZI@-%HkAgXonS3CK*!*=jhW}sN=z@>J#C*Px`g{0o`3ZmgP?q!XcqI
z1ac9%<k0&GEw6latA4L<v~ed9FS8l_1dMLvl=>Y#fd`0;bguZ(Bz=bS$H98$3Ep<<
z;1&mnJce!Hf_Xoq7&v8h0ET)CF5|$)#G=T7ZqD1RVgy<oEj-+f=_R|K+{Ips-hc<h
z_1Ye6HDqz_TZp#bxk$~yH>gxP1YgJ!rcES>$=6HeY#8VaxNLx*<R(L$E117vOKgE~
z_r;Wi4giXHQNuoQc>4l)QECb*gyy%mUzJ4mvs)T*i5Q9i8AxT~D9HqUH_Qo@E%GSg
z(~K&ce3J{?pTiGk38v)1n*<&5EV?hoKLN!mqKhtI46v;RRgI)IBXu(XMb4%2JpKnU
z>7Ykzy|fvZ@>p&sQYa&?3%_1G-CNoIY<hYcw9?<dtN?G5PoPd-Gm?)VfXR((nSPf*
zkVq}=U*BTXXQ;o-xx0y|+5x&r!1xK3m15yJ5Q>xhsRg|lZ&8uSn<8XVcjK807gPKY
zl<|uv6<TUYFSPX55qC|UfL}mB7=pM}M?^(Ke5dlAtNKrnn5P*S<l!UsZPHtf`%~&(
z#JyGf5C7*v+8y=B344>$V;6xr?_tf48`Tv|;o0-LCmx!6t8WCtIgrkpSkQs?b}58!
zfppr#`lqUFp>>vyUh+>y^1arW@3*uvA~HImxT(hKq=Bt?fp1S5BJ<RWm6#sgr?_28
z8K7j&hvS-;^maCNjJDqFlhLlQNth+*+Y;cg0&<eDzXFO;m(X<#mG}gSn+~(5vy77s
zQ6T#GqKF4jdr%JY<^nasDIE&<3kgN$-861gYqHgiA0CC}EGN|RDYoG{|19b%<|PQA
z1D`!hAVA`&<=-5+IJfYmRtD<o^nnk^kQGK+QM0n5MySaPz_NuVW+bGg=@`H4E5XSx
z!NItNFjpN+=`Yzl=r4&Mi6D!TMHsC&H7Y8>)kk^d+eAzZv&U<F_TVMPbIxV!H(8=I
zlh4ZmG}lx+kVW3mwji5&V0OZ&ZZ$H<$e6dBb&tSJ@Ko2pph-5z!PX`&6oQ%w$Eays
zf6hHA#i?aHfjlT1h>2}dkhugZ#y6p%#x1^D2yxRIeGLr_6JKQBr!m7ziGxlO7o&`#
zABMCkRBD+bDolcVYLFeHzWYoa(0&h#yIFl)G#ZbOD2By6+&$w@(jUsC`--&u_UC5#
zo-`_C!_DK>AhPwJhL}`H@kDg16yg-1Y^$5LDMS-|ZU+024g-L5<CV4EtU0q3X4M3@
zhja3F<!xy1OseA9q!LW?iItqdTLjq*jhBcYY1bUAY9%LNH>yWOGGj-rmFx0lxU#h6
zt;uQ_ly{<l&k-e^NnxGk!!*^5Ha*<Eh1}omISKbP^UJSf-TcZMOLZ>wm<&K>2Z}WI
z=^WZQKXBtN4usA0A$D{50mp`L9~bNt6qUT}_t(lT=Y(R9L52qyw08KmeIzCo1&Nx0
zKIsB`xzXu(ZAEJ|Rrcb(s5jP=<AUFd6>nNx>(A~sd`4@>PuFuIh&a9t3~1R#$(<p;
zZyW-*j2zi0GP9`AzqQfF4cGd9Nhw|T!0?or)M1+M-!1q<jIqT3vgYul$tQYE)4Q`O
z*Zb(=2c`tT`o96$IFQAE5F@_0xR@+AxdO%kU{-6~Coo*g4y~W%dTYXtzRT|OX+pN#
z<msyb2Wk2?S!zkQS`nRmb&lC$@0!QqO{W_P_;(%%Shbe}k!gc~#PdCOU{n!JDJsCj
z1LzytC)5_&c9xc_Vbp=%0KLNPo9NI*PkHudId{BPjen#q<gD6?nB#DdUNYy2H<Wtu
z3`TZU7zJEK#_#ro(#ThyJcy6ev>5yR5=h9oSXg!$k}9WIfNKZP^ZNgMOC0J<ZdL*+
zH_6tAfxzPkXi&f3*KjY|23nT$!_zT`7HbM?YZzHjal(u=`9mPZe!C_ouMTt<y#P9k
zi;Mdibw~c}^pw-EzQXzE*Eo7Pye-Slf1dHrzn?L`t;F_6$fgRGt}6vuV@bD!9q5-S
zu|uD~QGNbAGLr88Z68SB8)>v!D+sXucXxNmqPodB%ExWZ&CD*3g07CDMYl=zqQd`q
zW2CpP^(|7${?H4MVNtQk(($?LMO{tCD@6?qI}FY;3k88+>J|9L8*LL|?6Z=%HB+af
zrR9@@DAl$L47>y(74031o50ld&(kLV{j^M?@IW)qfj6ceE{S&>ZsNN9NApUH)|Yzk
z^)UmBm6y7@>)mr18VLK^?(S|%QO`(H-q20EV?Oq7^oa6hrJu||o(n`&xZKFdi&e+S
zr`AH1{|L(OUSv`Eu73hz#>}TaBS7z-Q!`-c21NBh^S=iS2Au0_IR5!HI)D8d$@>qd
z{-dLRezkCQ1f--^z<~oKV0QNQ2eP6^hlhz!Xc>qh;B9wQz2%-j3*1fawK@E)y#4sa
z@*i!n%M|k?pUaaqsprpGSy`K1)Xb_7KphXr*<wJT3{+BXQ?<N*Kfzzh84y4uUk})R
zzX$&Nb${u}1lovTNc@bQjjgz#poiR{coYd{yPporQC}SQNKmaF`Tczq?u?)*1Zds+
z9fAMIsXNrsE$0ZXR+0w~e&*%UfwBT5G2p144mbsdq>23{?eF=TNQ^EZLHqcg{eNCV
z*!AKyxUH?Ot${DiGM@`hArL*K2|8VlW?i}i$DN<5f9aU_TAWwz{4L47nf4#m{m)z=
zD!n+IG>M6d0z=ugnz<Xsroe7S-?A-7^AUbP0SDI3y5bER*WV)Hf2}?qx!C#djtF8d
zPFB`mJ3Bhfq%+gg1Ox<3YMJNY??3eNx)$C7@th7Y%eekck1O>4k>pcgpoOvfLlQy2
zVIn#juZtY$dE!MIf%A<7h*tIGU<xRBap#itduYYd|Gn<LY<r+vV+nz<P({y;j%vJk
zQQ?2G2P}v%yxgz<Z0yzD|N3V~PJu-J0$Gp+O-y8&aSR9un7tXp)q1>0={5U$1`LQr
zt60nb*B9=ND%bP%1x_4cwF7e#wEi)>In)={UGE<O456Lv{eUI?9a&k~R-lpvwoCYq
z%NF;p-AGV*E@077wY}xmIDEhnMHg^7uI)VX4%TyGwx=qk+HWJk9|z|=fl1}GPc1Om
zK<F=5k!!TzZ)=k4kIWI*jhH`w9^7U2@}32d{U0102)nJG&$L~TJI?>(s)SzT>%a83
zJ<W_p?8U6x5X8dbam@%&4V&25Ac6fuW&lc0U1)pue?C@C^>0s^EtcNE#c*bI4UI>7
zQ9YJb{QUe|^DSplg7fv@E4mB;gOqC%7__ABe;K>nTL(TIKK}mAbPo_j5sYGD0jCE@
z`6#gI|NH;{9?2|mq985(X598L*6ir$XmV`Ke!3dju$I{oK=#igp%2Z!O;y<P&vx2^
z_E!g(68fZK!Mjg@LIqqFI{_4nFKF|ZsmXQk{(l+elqRDsHz07Rho`4+GG$X<9^=!e
z{vblsi(QYK1s*Ve{ea~L-Zj_%FnXMA)v2WmRp#Y&5ys9<PU>iD3)oGRP@n(6tQY+M
ze(dex&ei1(F_-bdZ3}}^ZC54Kgn<*FCEgUY{Qo{(#Wt|kh>g9^18>5GMah~2|D&oQ
z@dyK+fA5EDvzoshZM2QiG5By?ho3BJhNh{w*bW3ha39^>?)jhhirx_5oBXpK*wA~-
z_4L3-?HLLfXi@vF)6PZ$L$qsGp1(>?v;)ue!t2)Rxc5+cfhJJ_2y0Qu48un_7*e{r
zQ@}DpV>bN1e5%&2tfYum+=n$p;N&(l*t`|?t(W@%GY1v%_G|kVV`>6|J%F~}u6y-g
zmVqP5By8tBU1pngA=-9;5V*AgdS!;!d_&-c?~!^0kWK(+j!O_yyTwTU%hnJ*>eC?o
z%VYo<_R2fCYBT6!GN`n$(8b(rZM&5!@c7m2pa1QtOLXl89}B#@Hiwd~1B2UpsDprc
zmtn^E+1VKzE30e_Ra6t#KkInyYw*{J{4}*J#mO%qAzCXI^7rS{TaQ|HGKAf_qxcZO
zgo!%noZGSGpVx5>0baWiL3y&|z?UUho+M!WjeTP<^p&@6CAtsPe7qO|yu-k!+uPfL
z--4ja22ikGA08?6`?-EQwb(Q>4j8!UD$N022aP{C(z&z^cPpwjNQHL-o}9#)h*4GB
zL$o~RzFTL<D<z_srYo7rG%%i8=%VJl7APM*TKVNa54N(d?lIbUq<#me5IZ-(xL@GB
zbbZqBp=wa~f$&l1`Pi{&jF+7?rD9n!HR8ZotBq)Ut8Y^}<O|RvcESGk6u?<{v=YXQ
zRP-2FDIU*E`_S>>ytkaHPE>g119M`Dj^J>fO7g+(cM{s4O{gjSUuxyeuUT$U@vxtP
z8`8ni(bGeGa^sLX;NXE{Bf#h_@04r&wFkiw_WYwE2d=Me<@xKIZ-gv0i9`KnEGm;_
zQt0YzRzKZL<|%D;-+WQ$TP@4#aE)R<G1P<H5mf!bvgyEZtyl2)5WDup!6=#89`%xd
z;I`sqjXUbGdL7I+?1pg}%)6X25^C&glJ6L!sNn_N;x!VUI}m(fpCPA7bAxC_Wi4&?
zT<y0Z(|qbK#&$A~sOYB}%>}EP^b>(+6zEy2%>lO-U}xg76wO9YzXTk(x>ShKVdwe)
zp|w|AT3HQd*`#?IG5XolzOa^0r9DnDci9bG>efq?1(P2PM_RhvELW`^<v@iX$6Z^s
z#;tuIrTV@&fmGwu!z;sYJb#yDnr!Z3V>neyX;r;dCOe4!sv$bdsp3>AUimS)@MKi7
z=+ywM1rv7X+6MsZE|k)X<~72oDj%1f9F<o?d792^wKY+Fa&V^@2$~j72E7Of35_!P
zXJ%%=Mt7KXL6ZajXM0_C!?xyKv*$XF6)QHMRSr&_eHpVo-Q=1om#lh+fme6b+-Ur#
zoalv_a&)wf75CL%L@G}rV(Zt1Y2z2;MOTmaf?ch=zLyV5#TUgp4IY%QOrE1%>yVll
zV8L!!gE8CZi45&9;X03BNZ-NCCTDA9PgBH=<#^b=MkU}F_Xp6Z1OKS8v9aY5WyczQ
z5PDxTQlrE2^@#(5Zy?CGM0A#yXl-x=PF4W#lHch<xB<V4Q#q^&B@3XQSn*~B?4qB(
z{1{m$7cOoz-Wc3?5HvUPSob50-N3FQkYt{rp1w}c(<Mr;;tN<i<VX8*S!G_KnV`^F
zz-$lr<uw$Mf?v}0bZc~|<=fq|$)XASsq=Zvgrjci?J+M9Kfu;61Sj<zg!pohtJ*LL
zlHdRX9V*8<bawea&$&>wnH8wNUtXn`fZz4!^w?Zrk{uWjLq3sK!Y$m$%|@QTW!w59
z!UFLX$wjgV_<~8}l^;-;qs0<9PSc5HY>k$R;!eqJI`E;=-LOZTYZI|FtM_1==d6S&
zf}NhrRB(a25Moj=DH|xhUU(L~V^&T#Ya7Zs-*ta-6TMCq_BM0CxefThajGl{q?I-{
zo}MjSiT{_!EK!ne9}sCQVXRrr!>kckssi>*n6YpzBJL4ZK*^e!?frt-D4pvUkX738
z`(&T%HvcH$Tv5P7#De%$=1Tyq=!ba7G@~+151Ahftl7Oevir4dlrhCLhX-2K`MM$=
zeZL`yR{RfmAW&qb$X+i~g}uzdms|KBl9HPEqJV+X=3Eo;k^bKy4y143Ak~@x@?&|8
zZlGuz^zvKQB;TKqjt)c<ugDz}J>3cuV8T3Ei+a*f(Z?KYK*nJo8jIhNwmj*!h_XCw
zVpeKguCi|l$Bhs-=vuT-%wNN2(^M8c2ho71*t-|THEys@aA}qDKCnzcS+AD)<w&9y
z|Iemup{6&vNM-uvroS#jQv_g<T!FgF3(%vLM(d5sdx~QI_d_lKzjy2!d-2=c2OurN
z$K<^+h_76#`m}&Kt6XH3DGajnbnDNrOGCdHQCj2c&pfhpUocn27ks1WJ<QDzth&`_
zg;;)<{8EB5cbH`~h*@{8WaE|RGAmrb<4C-1_C}n}gaNb%-w&!1Cf{^wM5fS0X1vuG
z7={5CH!-XgymWTfJ^tlE-r=>SAe8E#H|;}SYb{b{SiU-2v=uu)Wm;{qwko$HcAo+k
zwF%j2@30yowwo4h8B;vvbTb})+tH)?#$lnwb}RI|gJ>_6+a5NqWdz{Y>WxB8yu~dS
zBwY=c*Uc93a`Pe9BJP~3_a?wmbtU@x)hqs<oOD;*sycrIbg#cBYWDkBYDxlelSH7A
z^ZKdED;G?HUWxI6QUVj&i_UqgcTN3sBTY0H-&=QU$R6$g+)c1?Phu)a<1`#yUH;N1
zu&gX2+Y?tiO;CIB{b!EVz4yx&fleD^2|LEEo?<lHMBDXC(Rx*u4I)t+?u|f?*~*`L
zc)C#zxN&o@dtq}VzUh7Mmhc}hzGu@qBP8f!{8L%n0`<5-^XJcHXSe4~nhLVk(wZe5
zosZ2$T)`|GZY8FnWBML>yZZ@!yxb=iMga-M9%Y5a%#*E@P1*8q`xryUP_`aG#CovH
z2gXnReKA5gvLJ**v!jYZ8=87aqno#Fh?_j~HiGf2#ba#el4ps6v`w^kRHq^8nzlBR
zC=JSel<m7C3(r-Zl<CG2Fw;BFS1ILNf66U~5vIdsfwGdMnjfDUTh^p2X`hz5wTo|A
zy(}%ptBbp}hFSTI8^L1p8CPK|H=PlaFPCCuYzt#817TV@9aEXz{#+t#%BL|Q{f;Y!
z!r}5{QC?M#v1x;%wkTgU(CtvgyH@R4m>8&5Cz#W&ymKfY32ebmY}UdpHfROZ2wWm8
z68&*&1=g{0ReO3&Ro~uP4a!_%mKs-<0a%tv8LR*^t`D}h;~_sMHLY^FO_i+AQ4nhJ
zXJq<HtWmCvl}9)vVZYb;*OgvA=-THNAg-3N;7n5Cmm(=*y<w(^mdxBT)EkK3-rO@Q
zgiQ*9s}03emC3MH*P|AT=T3RCSd5CI&o+}OryeN9PVzrF4!W%SVJs^qAp$mBf~$n}
zuW^<3S2M>E7OqU=clB%4$Hx|h;oF-$<=B8jOuxMe#E7hzO-?hUlGBnUUzK!9UGC`y
z%=R)Sv04q`6NvuiTE&dRePfcBvWL|I>7Cdj@Dq;nO`Z2%T(+5AGYjiWrhxU%JQFM6
zaRq+mVY(qsvoNjfu={Em+z~TEV7Ij%mO6EHb%EUmBGU(a50KEUq6-_-O8dGns<qEk
z0jMaG<0YlpgilA}$^9P)Nh#M*%g>mKTQKnx`ZV0l(or@FdT;62MK61~T_2i>`d$op
zspaRv3-`gsM|VF;D0u9~i^jy0yRR>dzY32zQv^3c<ka9nN(R9R;p)!#NS}j^M4Mrv
zx2n@GsFs$8-%$K5vi9uWuo=}_a>q{!1;B9o)fo%(PZyU45no|(WE6IBKXs^Jcpes&
zaIvpUv$oZTNAG-dUtCE5s^&`UX#!JX^jm!KdD)#L`aNamVoL09yJhYf%7N3v9&T9D
zB3!&n66H4c`)iduwAHnQOQm;KkTi*=N90YFFH6qihM2ePJ-<bRDK=b$)$Uek^M`8M
zw)3yT<o?XM9K5)7bN$&L<c5$Z@ALp~<<(p#^_De}IifAY#30|*TYUxafURQ11D4sz
zIa*8+cv!Nt$Bi?>vdQ1=uhe+6Y2eY3(Qfx{=PaQj5@n@sb3-#+S&i^~7%)d>iw>Jz
zc-;1uH>2&{j;FBHzzkC)BbKg|LGT`-Nvpn!1i^h?gzU|iC-rf4TamGDKVDXz-Hu5@
zMEcX!6RU(p2dX~9tH>{#cY~Jll58>PH-^bS?M(rf{2yirw438wY+?+WOn_tp55k4p
z_u(jub(j1#f1cL~dNR&@Ky_R`{@Fq`vUt+rA+`^+14f>zzt!<#n%8P5$(ypk$SPUL
zCp8_5mir`ErvMDS0+kQ?XG#n@;BU88>G@OWlUWFftVR5zbrn_B7Ye0%H)E#zJRIy|
zVC<q#YowUq#t+Ipd~+$h;7zvic%K5yL#Aznmml-MWz;4@b3Icb#M&u$)ZQ$zi|)Kf
zCYg-&+F%A|r8Lgard25}-R4f{D5zWTPv>~TTCAaZL_d=Yecv6l&N0D-nwQ?Us6xNf
z$jeJ)0e@~BP^T7XF~K=Odcnd?(dIn5tSl@>9CW_7VMWlEvGX(nk7eOiy@TUJ>3-G8
zz+6%hn^-#zB1x#27%cJXOSc1b;Lo$g)beSo`l`+LyuKSBETvhXE$-uF!Zd##D@(@t
zv7c$mM)w=tmpE)%E7$h>@SF{tYM}WRcR&8@2YgtD^C-h5W9|4^!z&zH)p9ebW@VWs
z*FHknR(2c@PgO?ZJ{caj(TwOf``1kMxu!wttVQN2jxx_rBkp)$5Wz2zYC%P#$Y*7@
zQXy<S2P9CjUnj%mZ6{?vCV?B$+F(*IMOykAhasI1Dg$QEeVfY?SkLTCylcs#?Otf%
zi@HvBuVD+&3d?;Sw%qVi@1_eP7<)1NBnVo_pl-FSld}9wVbO}Hcs&xg^%VkSJ@v7&
zCzwjCG@<O{TViUMh0DYqFBs~024F#_Hn>%`SxJBy6h+aqyw1?LSevjlqLoU8V2w+a
zqI+iiJMxK3rzh7`0ffkM*@}s_lp|SGh6(OD?v9yxe|j0G;9x}Ty?<Tiw}nLl^rg@A
zkVJsmX~DB7r?N%vw*p2A>Fu@+D!Aop%Ewz|XIY`5a1=xPyEVLzeDr|6IK5BI6*2E;
z>U93oqupShO5*j&26m9YLadN{)uw6yv0In~Se_YA*<6Tal3`K5u$$*V=m1Vk@)M+a
zUD}Gj3+YvTzCVv!PuXXwu$cIZ!E~{#wi{PkUIpxDzNL!4At*@k<hGc%x197r^IN53
z?tm?kklO@#Sehf@WARFld}N5}a+c5&%l&wSKY|#XoA4Wd3$C@%yEg1{M$Bb0fT;|^
z>@f=jDXvV>B$0{Vm7II~z$8IK^{xG!YCj*1jnB5*U{_vJvYAARa9Saia92C+jALfK
z*f5|`u237bG_riuLxGMTXjRDMyT)$(X^D7`BNhtT$7UdY=*j_39$AX2Q3gftSf^a0
zg&6~VT>lq~w&28vZ&pXxXH08<@4t==+#N^X3Hda}HJ-QHn1ajoej6-RHDD_^^!?1@
zViEP<?5sZ$Hx&@_Yt`Mg0aJVdV1oVuw^+H@YV1?Nf|1^#T3V8zmP_3;@PbV?$G>AS
z3I!1{Hs6n!x44)DO#*+)+*pSKk>~2uR?>VCagGZWo8#dQ=SFI?^A!Hg4r|E4J7@go
z_O!W=OYb*b!DXT0=<?~#nd7RLv0HUi_{){=79J5YsgV7)y)}MZ5XPhQ5MS^aJ<}jM
z0=ma%zGjkhAivJt%MHJzn&>RY8ohfE4prs-%0S{{9wO!08enyB{_T8M>5)y}@9IHF
zShcyf;P277yW8&;Ual~c9$~=q6Xx%iORT;*4$HJolE(y;UQ{Pw7I=mv4&ta{+@#zV
zE77Z!__+MD4`xDn<{6P6A{phkgb%-QV}#ugB#$`StL6BJ?_=LyU{yvEs`6BOrljaJ
zD^#9mmuXM(JUramB{YN}HiD&)1eX1&#apIXUWH_-$#OSy74oVaVgs}cTL$e%A={Z?
z(t?yQCO*D4eL{$tuZ(lAz{nnsfz@K6oR~yosm8|u>!L0i^AN=Izs1~Txg}q1xGqHg
zyl^MdxLW?8p^WG9mzo>b8XADc=rTkeO^JNes|}V?i-ja8tbRMR#otGQ5oNs<Dns8O
zK3;xn-}uRs2U7VRI4d{%)1Ug@;?eoNz)xFR>E5NkN^;_12_uPP`HI{S&l*T62b%u>
zWPMEoz|hN>Ddu(p-dEE~p4VT3j7PtetXloro(n7r`Sd2ZPw==wbhEH>Yl5t#%A6la
zaNwGj;;^*>Q*o_{t{201&ZacevF>2xe-5ykvREAFfLalW#_sA&76WdmI=8w(3Zf4!
z!jxSFn8oa`U_373Jyz<>36>i{j3be;(TYx_J0w|`CJ_{k)GSaXn6l^*EWA&jzMh0d
zqAIF?O>Ev2!I2@R98g4-H}SK1ep=-SB@tK{|EwR>^Aa(x@0zT5e&N_bw_d^QWvq{X
zV1(k|g9rYM;o|4R()e2O+emex6l#g+C*L&_f)zDJ&)Ww*&t5~w7zgbesWdtNNE<Y@
z03vQ(m#)7=+#Z`V|A@F3b9yw8wz=s9s#e30?fjV(TAo&Wi%=~E26dAb&MBL9$YLeo
zfq;fpKkUk8BYMtNznc;2@T-;w4ht_8FWBMXMXR_4fJ2Uv*IbRqhPEmCd;=aH82sYa
zv{w98+py5=ZcQhwu6WWZ{$JYdeqq$st~(!}sEi>0=nA_*i}pX-?SH>FQrkXE3uVtZ
zu&(~`y(jO?@otDi9Rzhr<Gqj5jZ4f-n5+YaU@5vt1<|xFQx}<#w-|A`WbRe5PQx!h
zn^|P}LBHI871&K64!>kC8W(%d0Yug@f}kMP-i$P{tNgyDw&u8c`RiGuhRo1lzgVez
zz`Fkis{_7KFF2`YZy7R2Mdv76p3v8EiRT=V!kJnkIDb=%rWz><7_}>*w(5X>U{?h%
z9q|XdU#y<zNA|1FH1Jk+j_DT;8NPoDwljrR2!UW5c|g<Pb0<B;R4T=C{&so2zn0k&
z+ax6&vUVrhGaLf2lZwe&**xgfaJ8C5(%nB69z5W{lv*fp_K5mhunlX4D<6enC5S_R
zm?$Sdy_yo{6&9=KgXt98QD(EOVJeKFC#0)?2lXJwOLjs#QVJM{vmOd`fznb^u<R+n
zvl{?OeZ{5^cG6>4t$TRb1rbrAu{4z~NeyX%71B)H;1W!k-_l4qP=C+uf``^>@A%s^
zq-){6OEaiJiScmNJm&fL^$V<eFyO@-2tMM1Z&M!o-6i%PPs&YgjhYs)J><nc4I408
zFNOV78S!CGwiunaMCi+nU5={RO*iKHP7CzBa2M&qJaIZzV_U2tSotuKk|)(n3cWb0
zV8TBO*MMfY412?JBdXjhe(SQveB+HkVA2NZev0>2rb{-p__b}hdJ@*c)ES&oa!2%5
z8>v&g%fKXQe_was8txvsiXL>Jx#yYwGY%i?9xjsPAMQ4tn-XBicJH!$nztOfi?^i#
zz4%IP5`SG(prRH)hEmLa1}?s*Lw2-mM{mu&GtxP$&2`2`wCse4jUR)Wsj0{7xHN!=
zV{X50Fkqq=6h?bhKELBqiVEMhsT9|S1omVp(JOiFyc~)liYWI=1QhL$8K<1c(@|mP
zlQ|l2Mu0naK#e}`KkwpPi_UkNar6%(`+z%^sH&kaSaJ!#IB+k+uQrzReP6&rHqw*_
z()1v!49LR%b1bl7n*e-T?X)2YA{syK#^6uTd9zQgT~YmV4tf7k(`Kx8<4vn#Wo2#L
z)AIg%fs+PJ8MDugH}@Ffmhr^AeedpMA2pU_N%N`A1&s32r6MWFvU-H1o0Ll4^qnNu
z*oq`p0Ot=A^Sz3!UOg~*Jp|8sy?L$QB&Uip^@D=SzE*IYV%TkZADvl=#+OQ(svYSn
zb1f^ZN-`l`NQGT0xcJNd)hya9dHaQ7NS@nt?CUQkun{LcPjCH#PO?vE>?Pz2T7%6H
z|K@J@xnk8OxDEOZ)|LrF5ZT@#6cQ=2JC8YdXA(vpf~kBjT?p6>=4OFELD<`!c-cDt
zvywQS(z$0+Rs|*RvC0Sg`v_+v6$0Q4VnYLLvHxhWx$VkEm*%o!AGf#OdIym>_%5Yg
z{AkMenny;}0n30g^+a)yS*}RoV{5*L@b2G|Ajish@;;3;*QDmBLEOLc2O<ju=gGp_
z#GZLsO70M`?SQKJ6C}wD7s__MZ6xBx<z%)<L6~{9&_`RRs?EYCN>_0{kH#yhBQU`N
zS;DSbx8T#L5gY*K+9hn#y|3Cl9Q*nSm?~H#BADER#dCOA_Jv!O@~N?uXXi_ve1Gu{
zvZhlR;_i`6NYQNCCQFB?mZ;hct)=pPvzG-$1HJe+;Y9sl6uWB576!abM{t*z)bCv4
z%5QgXoOyJF+<;G!U*3H-FzLDDBP#?()msYtu9aed7!_EpFfnCC&QZ5HSiKp2>>Zlx
zd}*<|2{Oh#9bUrfA+nS{%=naqwXp-#u3U6@Vn4esGjl*GIeXgR$Zvq1W@w9BY<M;<
zr#7Dc0YS7~Y&o@;gsB_WhDpU(B62dROM91{D;Mvz^lZ-hQ&-t*)M?Gl`kvSxo-D#j
zW}9;f3qcaH^X{Fc_UTHMy=8#>;L`lrpVb5@295o5uC^N||JvPtUt!eA`YqfIDo;ju
z8M<C)Q?;2o+lJedsA@d>eSu=C83JRGIF~?G%gh{HHogznQYClTmBiHb>EbTML?`rx
zH*<%8yKAGIM?_wIce<XVGV556#YSzWz144EPRHAR3`En)W-ck%SheIOx#9PU`vDAu
zmo+M9;pr$o-?|wq73^_kfmmV1uA0wr&!^mG<EcB60uklCOW{14VIy|TKEpykRmt`Z
z=%dp?jeB2X8gAHN88SuSzt{3=UpxFxD^OoybA51}A?1EG(nHYm7*wE!<@pKrPnd$h
zoT^v8+GTv|yDId&q<uz*c)Q%=g*#?nD;sR#K1{R;5b{VOHC8qM)_QhekOfj_V_ziW
zlZ{WntBk^z5AK<2shD5oO1UnaGU49=E7zXv-j2!Qw&T3WRs8A?oh#!-%b~%&lK@_@
zt>^(kjg|!&n3aw8DFeMnP-R_JDKjRYNIsz%(~8kUJhNJMCd-B&ZR$p$7k4~KulqaW
zhKjZtS(HM{K!v@e@unCwL&L_<qdrR2kK<K)BX_vjFG^8^X!GE>UqlhonNiF8p~5by
z%tT{-g^|>-O*Gj2{v$}UXpV8h1u`l!)7fjhzxoE5Ba~6eU6?Yr7{mDCsB~$zUYJ_u
zw?E+8Zy<yP`4Ax)8~`<0N^7PMn!1-uu5ua660h8X&P^0rEq(xx4K=_H9)^DmACBcG
z7vSwP2Ia~@gJ%cGR~heF5m|mncsRuf<sfO<j!%)sef<^Y^w;p0`~AK`VB4Y9S=8d5
z!Sm)-`2&lP>nw(=wY~?|U}d9xT>B9~Pa-DzobRg={{`y23Wca45X~Z$QM;gq^i5k!
zQo2K<HjUWCO2{J&H?(uP%Ow_Dp5!K-`&HZ=;jXx-MmNj+X*^o)S7-`97SJBs9ZZ1a
zg;UF*!clpd-z^%bmCdjozXSMnFT$&k2PAmpGk(boz$jIjv8DboH!0JBPOe`)fX+j@
z6s@Ld19GI!O@Wg{3S<VY00-%XaFpjdikYEREHL<>^wN)7*>RF|*82WGlI2G_MaM3k
zK*_hr>E@+xi2~__*Zb!TH>q0YdL1cX^e<-UULF^Y>h+^Qop$~n0%8LO9lRBgi@?Ms
zOiQt5JrofLX5i397pwT5HffxS<k@WGCRrZFLT0Su^NJ^gqISenpxfjBij(YV-O74N
zw-;jpOsed>9{0Qj&~*<d9K#{BD}P8kRoRPV2nsvb4c&ChbrkB`jXchTn0)3RE&YiF
zx6D4XF&!}7PPTt_?)%t8Eo<eO1!zblMxQbVnn@Z(4E{PWa6gM3X2@WjE7$e>y(^HC
z(C>_%yY9)=6&A*xrs}##bq^En*?3euUISoj@wBEFn^BvBJuQ<Hg<dt1&+E26YRLE{
zLcD%89XFeA&MXmgp2Syw`DxCq3Rzx$WK^%|qc#5hAw}%~qy1PmQeIiS!TZFv{dNfj
zW?{W=zzedJLGI^@gMD1?eOlw$b|HLqws(s44SoBRgk>#<@Lkbr<lA5g0kt9|Bm_jp
zk?9yJJha^V{OkU~aU;mPfwIT&@L27h)sPVhQR@bP$O~;q0ZOjOsWmY+&WlzcqjYu>
zJX1!iTqm9GC3rvf=3^WOBIN5{<TV$fmIQA3f~oFDrf&8vrXG1)n<S;dCNlzf^Mm*i
z&b4>z^+rQLn3J$Yz<zeJVlvuYN&X1Vy=QElP`uT>9QT_W?kK2xvUv<Tz!&Cn`_txI
zemtTv4}bB(qt@({C-vFg@gEe=<oSj@I}EKYkLEmrDVTLBg;xukYYQmH*w49Ui!sS1
z`On8{*svG#g2v5vtM5U&0!V!2c<90)v9493(?}N5DM~;4lp$NMzyDj_vZ3-cqF;FZ
z&u6YN&_Sxblj4nWi;%CZRg3It3fP=4-OMl!X6#hcy~g<t^lHP9ML^6R82A?35JcJ!
zE%bD$)LUupbmQX~2*2MI=9;DvK-PRPf9s&tnDVSvn)Mf@U-n$L>_F)>`WiC{G->uf
z{K&_Xq0u#N%)C{|Yl%fbJ#w63WGSOt+vTz)=W6`4#O-6nCfa`mFegnXq(UKn;%J>X
z2+W@0C|}o%qI&;Cy)~4DzDPqKA$vjnK|F9T^0D_}rC*CUkv!MD6wmxO+)D~jP~~n6
zZdiZG#bZjMUt@f<7wkn^gF2VZ`I6%BdH-1~Y7^II^zE=72S-g-p$|X>oRi7)eV-eS
zCpJ9zrw&%8e6*_ST&CVRe+iD-#<KW%y6+3x+T5Qe0wTGcv}^Ko1p;#h=WiehmEF0v
zCo9DKhtpKT3yc?tjz5Ab2TOQiynkFwDLeqO<Hs!@A+28?OtH^Mk!<~(6pKWkh(t)x
zqbGK?CD?d*b~T_%*1=X7`j)381c1DwYXS1o)ycw$v&Hx{Zl*cCrHveN<#EeoFWaR3
zNBr~;h4NOGJX@TGdyE%D;~N4%eQy%DrE=%BDOg1Gqz!)lNBzFN*W7$TFlSY2sQKuJ
z7?hH5?Kj^pKoHNDWjHJCQ!{xRDgf9TAn`wyLkMJ4Tzx$@?C5pjI7h}!e~!zN4oj+T
z`H|zzBoiSyPReMw%sntG_uNf2UAFN{o1@JKQ^fMd!8Yp#$9oDSXe8byf>SB|G~b)F
z<51sv;-*%d-Z)I#ZJ7Fisa<}$i?cxf0OSV;isA0TmJ&d12h9x1Fw&Trrr&QuE8T~X
zDGuFl>wnYT)U74ft0gBb7JG$oe^Hyo45tFNyAur70dBK?nX}6vU?hL|KFGzKRtI|B
zzj+sh_lF)n1PwoQ2Ow}MCcv*5tt6g!WmBVFx<f9^!E0c~A$?S0Yn|PZXEm6qCZ4|6
zr+gCejE7y6x$T8Le0)Q2*uZvLB<$98z`fj!2`UMeuC^Y|216;%UMF(RbfERy0lfDt
zze-sDD6`pdKfMnZzXckAG*==uzH_pt<!BLc%C(5tj7g_2d~7u2@1pE1@p}3cn7UOH
zL1%ITdd1Nbx4<n6A&k*q{B3+i?04r`MPpUid^Za_H0#Nm`ugrZrRx5#Uch@=b>pd{
zTaJHcKj`-mH?7Zch^;TLL1mpX?oab^=I)joko8@eIBnHlA@@lz+2_X)OA1XV$&gX$
zDVBFv<uV?wzb2Na;>f0b!S%Kr5lnkEAQI-JAXm>DFb>r5%`Ie1J0Kmy#+L_aQOXfV
z{aY|a7&8hoY9l)<fAHxc9CgKJ_^iU-!)>GS$9DjP3JKcf=5vT#75YU8j*vca#MsCf
zjGsE5Jt6R20xi#8E5u%hA82+mP6Tf9c!5UJE2pe|MhJmSTy0)Nk&fU=YuurcWvVDz
zGmkv}4%aDeOQ!A=wmxAMpW*Q^U{*d&{(lt1Tl-xQPMLg=hfHly!#w={gxOnL%U`QX
zDVrpWFUcQG<B0`G1Hd*RC_}&2w-iiyUX`+RxD^UvX3DBo%Uo_-k>IUzD*2~a16%{p
zKW8%FcG1fDQr-!QwsnUxKE;c8`wduNb&k(-Yr?f`J0>h$WkqOX5TBmhV3FrH*cE7M
zcaP@YG`qvYy$S|PS63(m+C1HQ=s3dBQN2}dq*~8fnAS2(L_LPX35QZ^X6jEfT5ZV<
zIys$+jCT)?X7FtjE3YfheqX%_w{&g77l9l5^}i;*0-bYYWrrZCcv?&y{J^(oE-u>Q
zN<&k-;J}<**l0`(+Onk?cK&TtO}dvP_sYF+K6{Mx0ANnny6)q$$AjQB<1e+h!+`8X
z$~CD>pT0Ip+X1s>W!WaHahR#UX_+9xE^cnPa@;}*0|yA$Q|~VHbJNAAiHZtlwTYxi
zvkMohC+QtLKRZp^86i)*-08`RA@`a8%7}wUbW34N<W|deifKAif{#ByDzCM`_C_tY
zj*Tn48>B5n=8SA;7-O}5C_ZXgsmHqd10IU;@-Mlkhg)$!KY_wP3d7iWgZ`pO*Zo(O
zj}KEDeJ@3B;K1`Is~DLQ!mY{Lanq0-TXqZp!<aGh{`A2w(Q0fz$4gpz$&w1)??IEh
z3_#Zl!O*#fvpKk)TjwJp&-egx4iE|7B@GB(IQ;<;+pP#4=GyS{W%CFEkj&y?R(387
zG*X2|?&}FixSpqU6%oaSh#5e#>D3nIb3L1VHX)wG2|0vz)z~$b$h&$;x}FYpL*(RR
z6uFmAniX>D8o$AiC8NvbX2RU656P1W8I0-}SW5?}wLha1MWmrTFHb=SO}zOs{5FRM
zsU&cN((7YcRi!8lQA!^Jz6b2(iXv&j%G$?>m@ZmcHN!I1z*b6E&Rpu5`gWKR&jrQT
z4$Z^Y-(X@m{|LEfmkFJwniHv2bzKYNqurU%J-c!}Ce@QSdW4(nyP9B#yqHP<UqW9`
z0PKP;ecQ=)4Oy6-mQ|9E)A_4Q#ZZ5H>9$0*r!ITd+8j;JZsrl8gWpx2t|X*{jQ1Y?
zVqzMMbC(bg6G?#%zE}dMIoScg%OYPEkHkL?X#%wAr#PbF#LO_#=Jf{+WH$a&9@pfk
zN&6{f{bVeOg;vp2;r@dX!wP%r`*}aU?-RgVQ>2}|_;_0ZX~9;MVxFbRxY!Jgk>9UX
znk@W3#l3Y@RomP5Z6Trv3ereONv9wnAR<VkpfrMXcSr~aP(qqbZBj`QsZF<Zw{$7e
zE!{lV_QZXD_x(K2`;PJc@jCW!oCDjn*Pd&xx#kt$?+4nWkj{xxc;a(!E0eD&oUA$j
zmh^^ZkAb9jdh<m(y}rP8oUx_{chiPacic$Nn2gghBl#O4(_$m?yF(G(=*3#~My(1-
z{l_ugcWgrD+xJ>)(<AUMB5oxw#QNie(bG@aw(a|g_!}$pv%OQvK~<uZJG*(QT2P3q
zBONu=jH|K}Exg!bM0z7~2|^uF3M`-6Kl5<)aL_+#PJMd6-mHYC@_lFU0LPQh+`BpQ
z=6dh%6z#k<5V<{LO?YYOd4wTY!I~fmKN(v;ymVV@aHCNE6e~O@&U25pUj7qZwKzMe
z6imW&LoHl{y8ip0Ti94pC-3z7aQhHD^koQtx2S}tUlmU~Y-utx$Ym;3!SrXYN&K}b
z<|4K%0_+EI+S5}~-{fKI=@_)(P({g+ms?<Z<0T$WY%P10kPEo+xD6$K54C_4uP!g~
z&ap8meyKkF0qV9wM<QjRVf`HB3wwSH<Nd1ZW2tyK(eQ+J=3&c^FX|PZT~ezN2J=Mm
z^H#hbzfi*`zXW$5BTPFID?&XUV_W>Pp}D5(V*4$16zcm(DDo6Yl9mXvIbR9-{6Cbt
zA#ocaHtTP6aFdP?MNh`x9Umf0*<V(>)K1UNFdtuL@R)r9W_)7R5sG5nu$2xpb9r~}
zi2SIvV<c+`1Cv!-T)S+=P_nRp`4&l_{dazJqk?Lcdw&zFhLqrjZys^GWv~5}z&*yK
zQ2IOE*3Va}p;~!RJE8Bc>_%F$p<D}H!X&?ozE@aWRrAfKLma`t37y=!=)2ltqAB?^
z&~J{9_tRqPKws7YvRq97ohe&d49o6!ymtl#8w64`)?hghN9M}t@~(Uy<jIzr8lHf&
zYCsR_HF<PWVZp)Hr$HOwX;k31-;?#N?nAyvUolTCtwQqL6UpE>U>30}bc@m&F#oY0
zru_kpuf2KqZQ+d9n^B~zI*Br*E$}_oh<CgAAIO=e#X}XMzqT=so&N*%*;zZgX#*2Y
z3+f<&x~46arM>Gjk4rd3EDx$%wRjA=_O7-YUP!BIi#D;OxGOpWe&_IDq&Jiso$*P+
zrPQ)@|KW@kTI<_R#GG@*p+>0BjFv*c?YaB`Y;od(kMJ8LI{NhGt3;@6tjR{cS!mTT
z%AT&F=gy0Pm91k7L7D{%FR@}QZSz6P4}3?u?x7nM&oVO_cPR?isS5Jb#rSMCc@B0w
z*1cO3Ts)_&flD6(j>EsNqU*P25B<BZ@*mKG85Wl}mXFrfeEHjy)_-KR@_)%{>Cv*<
zm~GCr`QJ29bo*I?ds=ak??;ngMi_(|f)Tk+Sgmx4_*(g^>H*>xM7cN{WpGW?)QWYC
zi-{}KW$^Vz8sfsoW+)e7T_qiRSFf%i;2LB8v(MeV?DGUwPYE<c$n0Do9yPWJGPvf`
zeGN^ZC8GQW+YIp`+2cp4-d<9(3|Q~9w&ZwI>JQ)nD8dnsRlXN*0R1-?A*Z5znbQ@^
z=*W=09%*2Q#b+p(E<v!hY*p==x%qiM$gZe7in6GA@2wQ&*3_lwR+PWp*45OH2kp64
zYPpv0{cMAS7A#U*zrkM4i*CO<>}Lo$qCgNJ5{o+3uIRMd^+gq3(P=0t(0_YwF4f&V
z*8vA9Tj+&Yye0Fjj!ye3T0`3s4MOuV0umRnf{W6?syJBpYVnA;yCv`<OHrnKOWz$L
zSpApl-wVv!vtMA&g#L<Cm;ic0Uxcf0kapS2PV-6&qf6*9reK)@AZY37qe=Wl9i0)_
zieIzpt&H<0dW*uFS3zE~d%U5S9HPx3x&CZovVMm3hwJ#9L_)sP2=zS6(cD-Q!)Tg}
ztB$F|Xk*UCHynPJxSv0dKbTY-HJk3I#z=kPbSPoDbrf>D(~D{h>QPMfZ-dTWy=xmF
zr_nZ`y1N)|dEQnar^K;e2B%FedK0b$vVbKcKmem*{Zf`xhC>@_>Y9bF%R3!m8)(s3
zseLsfe6G{;8j3Zz9k+`ROF6RsifvbXWYW_|p$7enw=by`3k6!vtsLlXIMt<w;8F@w
zH(eQb9XQ!<<@qg-b!kpC_MZTpeV_rp3e-3C7mE9@_F0Z!)v>=+a)}o<li8XDp1;+x
zFx^KT<lPnaOT!@7s^PRkn6=f=+TWGPPI!E$zRb3pP<rK^e{974+fodQ2j_<%8Sz+Q
zD)Mt0^B|~W-^o;e$;^uWL~OEjrZ+-kEq1~A#opAJkhl+p5!c;H5RF2afxxxyv8jBz
zVEz;T&0M9}-7buP=xbfCA;nb|@p#Dexx8BO>|ou+nPe)$XYx#y<~yV6k)tNE<-Yy*
z-&Dmw;=9(k_T&L}y|;nwV(kvmW+IxJ>t)a$=n8I58urQ=jBz#Z371gNOf8iEL7qjL
zk6weJ)6rz9oLzxk^_vIl=XRE}&vP1gC0T1xRz3k*yqq#>qe6BH%q1`BAiH|-4qtz;
zZ=`^+OpZmo6>g_X7l$$4d>njWp;ADsf7Tp4#~h?sGhUov?@2VT#W`Zb%TM#-5gmAs
z@!b^7cJ5fZTzh42HAA4(fOs)^CeNIHPUxUg6uiQ35npn>cEC}zopla{b?Y-E-mhB-
zr9^#N!Aw-t4HYSki4CwIbQ`CMs-n)EsLHq6pl(mkxF!x^Y`jh>*j6EmP^J7IL><4E
zw~uStW^xHJ?``DcGiLNDBy=%VK5av*Vl{Yf>xV$%g+Wn)AtSzx{eia1RO$+wdeQ9z
zjQJ1>1tDZqqHA&9%L)C>@6jWXOR=!KkTOZFYgR~~CD3|$@7|Fe4MO{Fs#JF(JG}$_
zs$2R8zhfm)-8BhHrF%u6NMlW*ZBW&)yT`VuoR^^{beVcSpgmSY>vgcS`#X{24VqGF
z&&tnFC=SZbaD_M}G;MZV4CN`16!;+tR0y(z45?mM6|T3fd31KSN$Q}yq<?ibk*3_p
z!HyZ(E%mIyzm)+N4oT1I_$H}<u(I|66H1UI*&t+ab815Owt-#?6@u~?qluMS>E1>=
zn43FN?+#He1;_Wc_od`fY$SULy@)<Z<mONPcVg+It|+FURAtRZwgHVxdL3F);Ulh9
zMS>Z9#L-!>qAJ|w2t8AFD&HzlGpa;hq%A58_!dNNwPv7HHOMSd(@L#!Pa}s%eIJQ}
ziq$T?T*WX!Ts95E!gDnhhXCVzVe1zuvybyVv#?Db=C82zF+|*YG}^pMaSihm#7nSP
zavL1#I7@*bE44Lu1E`c3e6*n|J8jIlx?gHRK2W{go?H2TnSDm6YI~CzbQ52m6Ms<x
zB?b668IHJZuVD3pR^_8g<fRs$SHm<;dtHZayq1zwxl3Ckb{vB`@HE$s)pW5wc~{A>
zc{I`&<axP%?I`HF_I#wffaJT&z(hX@Hn=uzuHw&|q)StD1-m{`klv9UeF!FAOUlb=
z=J$%sUt{~&T|_UUHqVt;ojlwJUt!dL+a9>u+9-3Z<lEKE@7-Riy`X8y{Zs$?l>@tC
zCRUvQeI#iY5=FFnNBMMKPD==Vm7Z$_a3~Txj`+`Sp9z;lsm&nnGiBiiT?DildplwM
zNDk?bVGe9&1G|!)DT+6@_Gm++w-@w6UPb&Kls(|i`ebp;TnDhG(0lz6juoF8*&Z(N
z(L^>f;dAYRti!zvB}6;=0ez5_waEdqp&!MUHp2(MXoWnx3?;;)NwbZu%bUT<xoXh4
z&hh0+`|0ZOsBI($E1Ux6<@REH3*G!%ckJ=-boFm}z8aRPR@Mp_!)qZ!OZ|3Y1+Y2c
z`wZ_@2Pg4`Iz4vh*K@1QV_-STNE&=lqe&1p;_nB@cEJr*UJDS`JSpL~OZu)418EUg
z;o2N>Mz$tP)wlzETi;(8a5A`2&1b7ZngP@XJ43%bxV@`u^E3t*vY{2i<(lF)d>OHK
zXl(;-GJ8bCkGV^VnvH1&#F{WWHgw8}MXadO96qMrqPYeG{995*VeYhds@JDKp7ijl
zY2Qo;2MVUakJ@|glkor3BJ|Ws|6tcwh?Mzwr|j0NN@YB6^+FSJhNWq3o)`3TVjj%P
zDYaMaJ6~k{2w5)QWA&yO^v{1Q15O%!r*VHuU?@KRh2_in0X@rV_MH)bz+hYuAWr(D
z_Y$1$Z#~8lqQce4O#pw7Db)ASe$I$k4o*Ao41LzP_ue#Rw6I<H=dB6XCAI)7<RwVh
zVga6rSz7eheDKiIPlTQ*JzBfAo2*3+?t=CiBCe*J@N;NphF^wQF82hH?y#(BQ1NYp
z)U3#9iPH~#MjqT{4}x3>;gh0wDyD+&)C6&Qp@05c09Dg8;@9Of?$>e|?i*sC6A~jD
z0W#ZrcgU#FTE*YPh;xoC(2zFz?aXpNGKm^}XK<{{(?>HMS9<E39tJ9esbBi%t+bTy
zMchC<F>QD`ya$GnD9M`G8v}lg6O+V;1%oKHnCQC34?`37&-cYl9FSu@i{T-0x)=I^
zUhdRy`vx{XoF9zMhmRlq&tg(78?4CCKR~PH?uWklm}-7JHA%*)duh#@>P{d2>F(qa
zdM1#<kXnB)-yiHI(;TFh_qct=w;4e6^8)(gpZ}KWa+(?&4+FZX=Ip5Er=`*G(ywMp
zTpS#53nj(@^>0tljj~Ta<~ywifgUL#aPA;7ARqAFmk#{DqN&igl$DhFYrQe&yAqBd
z3O<`As(Jn06VtNh#Bu!Eb<Qw5>8=%kq|4Yw&3DE<>3VHv$1NZNifJBM_er;P*D0tz
zjcvH<-1U!tYOC&Xx|LM3J8Cxb7||~$FW@4KmR4K+1(629>ff(pt>4;LIJ<vdp*7e3
zL>d3{CaNo&pkzS{YXAK@W&16C{rgDhcehOa#f|>g`wl98f4hGj%!|qcgirr@up2WV
zEBg%=|JU*UznokS+|Ld>*BgK&T-f?s)&3tRUoUzJPLE4u$-2{i(QMj`7C06^H6Q)!
zwBg;?UmVc1cXf3|dgoz$<n6lqpJ&|DgYd{VXCoZD{{DJ0TBQB27th;Sb`}jFd*XsT
z`gmn{7kiXy^grHlNmNY3y%u%wK!Ax}K2%#K;w$^5`)IlLzh1`1#v9O~hE4iEej#ZZ
z3R$rv0?}?+<TFm2`lUdL=C$is*XG?$T#9_tW@l#=;(2yJ*;ftTP(|f7#yrnn4BT_Y
zZ(N%QQ9HNE2Lj!(in}&oUOCz@6@iSj5D^87+8!$J*J$SB@0XvFY1l6?;Rlm_pxBz2
zE{l6V6jStWMOB?g@ed5}?elj*N5H4&JO5Jf330b0q)m$~>`edyB+MgllDKgHNVMvB
zRGZ`4!_)LWRKRvmzmvm9xnnt{^v=Ab58&gHEUFpq^&7nlpKI*5Sofm6cqX{)X10gg
zz(&JLEEu0@tE%$3C%AOwM9maj_HOl|$5Zl7-ve3SO5%+#5^<%U%jYJS46`Oa6GkUt
zj+b(Vy4M!Y{oz>WBhlyS!C4TyJp=ydm<8M5b62V55x06->x?XM^{ExAH|^$8>p5~B
zpeTo)yg0LK7&(nHpBYjR7Mtp*SOu4-TGv3TJ4`+!T6Sj3H)7&oB8w2I7M}r^0{@@;
zA<*T>igu0+d`qA7tBQhMeYK*Mc)+is)2C$p%HXKR6X2F0U^TN>GH#1F#(ST|!p^4b
z?=S)13*Q!-H?G9b(av?9xt)BsT10H#(d5ku-~P`q@&u9iOi?{_tbyGXRTG|yd+P?v
zk@YmEp_5CM`xRM$t)8bvwA$w^cuibRvAIuvPj&ahr_8i>Yvz4q;5v5a?_1MvFw$k2
z-B4LDZMcwVwbvebGiCL|1cLxlnJd{}U&d&Kl3(ltK0Q%O73CCI%VaDEYh<mhs!$kZ
z#B&SZ56bp<t>`<3;X`3DuW}037N^#z%fA2MV~fwQ!~ghg1fDYwz#TC?A2gs+t6E*$
zX%Q}V{f|$Ob{BWuqfCv{a?#5(SAgW#pLfYfq+Ra}USsjmyLS!(G}FN~geKR^-^@uA
zCd<v3sjDJ%_z<nApLW}u6>Hmhb7XD3=5~8QYJwV<oMw32a}+f&u8~*&rDS7J(tGKC
z0wm)b+?1*T&VwsuFAXlq$#up(Dv^)p0jt2xP_;jBesfQu4U5~;;7InLB`<@f?6Rmn
zxS281=AWp#4}q)L!t;sE`>O@lF7<_k;(8XCWU9MJX#jaRG*oXx)NzhFrN1#5_xViT
zid`h3yTHvpE14V(wyZDy2R^-`=F?$7@4S_HkT#mgU^wLWVp1q-!m5HgYSm~T_5Z+R
z{rlWX<^Nho9`9sVxv3WONc4}hRepc@@}2X_=gWpiXrGnvPzJ6Tb9={|^b<kk;FUQA
z=xDAGRY0dc!W)UW9or?Gf1z`N?@>rGI0RjN-=}G@aC3aFDadoRHKFhP_qF_$+pRdQ
ziVNT9>LdQQ6jjel|4>u`<wFlHh**E$q6=^sK4p~7VFz77zZHhKNsJYNR`CZR>XLg#
z(PCb~z+{H3vm;VWb`PQbP5tqm>6+oyyp+aX(%McJ=Kwb4Z~6Btz)+58(k?-};|p80
z;jd7GA%5XkE*9@h+rxH$bfFe+m_(CBJo=yDQ`oh_wG+nAQTlT&?WvZ%EjBHk)BdQ>
zE&gO$mtYj%RzcR~23u<>R8s9lTwL=xOq16V$z+9ZWXn_W2zp0v=(`XfZJrn5?*?yW
z@7AX0lP{t=J?frMjmofJ;73dQGSTI^M7N>6&CBh84B&?e1e6)@L>|Mx9UUI7p6fV?
zbJ<&T;KSU?txr2UI|PIYA`#a5V92h|{v?=Qi>2n90grQLq>HPoOgme8YWnIVewB?<
zOOBrq&`sa7-9ng3dh}k8${tz<$M7afdD>?2;5D7Pu=sdx2_oDe>|!V%wWtk~I2Y6%
z?NZWq4&*qnJ_!#YE2~OL`L6k@E-VEASgm1{@((0VN5Fq{Kv_#`S6FO(YMs`Z1UNH6
zWMpwMxBz%uV3U*Q(<-esj$n&77wh_Vdg3dou{ul;=Jp^hHTAjtoKwMw`P4O&OGooT
zovf)iU}rajEz!8r+1W|+!oejl@bJiDmLM`U9vmwHvD7L>D}<x~xtBRg)KHn1zaum+
zF2g^<ZFSUv>tUsRr?I64fEWUUCuB%H?G2GXEx#+DzHx7+I<v{i^Rr*f{vjyICnGKV
z%ssR2x|;%%<BmGPB8R@d&CiIydwp79-`S`A&6r0sQgXSsGY3$N2|@f1IiutbIgnbQ
z{<7rlT9Z`7w9T<9t<Lc!6YHK#JU%b}Ttg!+!hU*=PDkmA33;D#;@(@pqo&sGooajA
z;itqewt&N86ASV|NRlLVwy3PU&C;U1?X+h0R_Cv{aA^s)OpY@B&{5t`QYwW9uStQg
zh<^C_QN+!Lwo>0oQ#y5WJ+k8Pr&1Rf9!qi`3yL*lp1<5V<WZGV3}_51X=4qF3@wjO
zL6pCw?WzER0&pM=gg{FZSo5}cAQWbf%lVu<s`hx_P-<;4?<gyF`Ro^iJ)g~DIXn#}
z^_4!qXbl_PGYft81w5dDq8g@IAA3<<*OoAN*2#bNH8tv4wlqryqstc@ZE#_ge$iy-
zus8nUh<fq4=FUvPN;<Fa-8mbxfj-wjX}i~N?WmNxr|5YT-gIn@UfnghUXPNBE<S6;
zk9xz={tBbL1;MwT?kfnauE5e?4kdPhZUcI!>^x&<{egGeQQb2{fO)Vm6q4%t$sij6
z!aHDU?*{FyiQFw#dtx-d8ENKzGQ;iViuSFY#$}j%Y8k1VUCip%Y<YSI883BD`OC|p
z!9liN2S8+)7Wuq=7qIFlC^#_C^~Bc7%1Ym!#RN0|Di~|7+{!yF4FfZLR`p8Rm9O4W
zEDU5<+<*OC<X&WTS__UCmVwz-^((@JyR^Fz2f@j&AGVwYPW~QX%G*HdX0|WyPw{Ab
zWZrIdj9n`~)-73?kIPqr&%L(n5r6jR&`@-Qn-_(0A<S5Q0gy=}3aFHsr}-vHRn*nf
zpGO-H6?X!mYUP{tPx;)TfHx<jMa$c}o!Qx`6>C!-lICt<lWbcyVXgWCG1hMb4e}jh
zN~jjVn(S5S$S`e2#!dK&ecGTE2D87@P&C|3>Os`XUno|Wnu{fg*mChak&M2Dl}94`
z<rN|1a^c1s3Wo0P2d0rSLyVlaMZz8hKQez}RmJ^s&h8hu=5diXv{8He*-KLXw&zAK
zZ5i!M%!sIuxl=`PYCe17X^Sz}la*>FzvrtB@F5lL*hR9io-FS_y~n1-P@GC}5Pv*y
zrwldyR;TFA5j-SIag_oBv1?0Qo#Ts(Qo6T%(r${FocCu9nIUap5<9M|D_5Gwcm%mK
z63x!Fx=Y`$rH9$%awVE|o@cE}=?KqVdk6{Y1~=c!t#=)5am_eJ7FILf-TPJYBbSz+
z9ThpHyF0637Ms1D1n$%7T9gT-M~#h4ajS+5lxr-m)+V;+(ny{G(Fh!U8B_Rgc&L8i
zA-&_5zw%{;oPQ>a+)qAZuhQmf7eU*|?GbvqdvbY~kSrD8&Htx7Z;Dp)vkRxARGc}D
z=O?glhDFI1=NLG*wLcAbX_Bt2H5&8uk|W4<^tQk<5`=vUPPlT(bS{1k-tjQZ@&zlK
z@1-+dTm?Ru056g}m-uCd*$YKQCWL_%kYq9<TMTWz($mBx5FIuu_8(RA-ewJv_cij|
zyT^V-ok@#ykwRXrvg4O{rHu@+$OW{cq`0c1)S`ICDmQq%W>6m|VhhP{$1BiVb7fso
z?y!iO7#^mz)4gSGUAr9dofjN@w>cs<z}B7CrL<A^rfbtz`-yM;i!T$<)G_qxQi0~b
z_{Wi@qMBXwRzCYgM}NL=#b4LNB%W&D$8rSjxOM_qQQ4Nu1S!LXNm@@CM3bhprz8u^
z6*b%)^_o&$8iyXp9kcoxlq?=CEJ^LB^rXLRHo}JMP*s~O)HM~E8odlIld;amKcozd
zBZsy_Ex#r#3x(g9%3<EY!F>*tbF66{FqEDdjoOm*aqki(eQX^EG>2{8;~|{;QB^z=
zdb2yCCBW2Gnr7Nj@pFT8=YONM(x)^23)cE1o%EZjf;#=Fb@K7VO$NFo>ktD5N(CE}
zC%QLM^Yf+de2H5JW58Mqupugjc;ujB>=tPg``cjb*}5|j19d8AtFb$xU@~3yel>nX
z*^*l`toc~1P_1D8J%%1v@I;07msdMlT6nKMVk_yDCsDN<;^|7p75X#WcLf&B=AQUc
zuIW>NrJC_wYG3K5M=T(qw}OtV;=R!EplK0P7izvk<E~wdOlA6q7T~<{E|#EgzKvzr
z2W`p_u-$vzgCg+Kn__Gy6x-0Hmt#<UWm}#g{7`qlBKo)II$SkB!ixcEdhrwZkduap
zLQPg7&_LzePGI~qR?KYMMlR}nT^855Vnd{XfYwQ$SQKm1c4NnENcug??2GSbA2~IC
zn;htVo5ZYv%-v01H)`XLotnjdGyY*q6OoJfjD|~DZ$?MAwT)3Yeo0`f$thFu8^DQY
z<Aqy)*I>!M$z9YjNsHbsV+E9b%6a1v8x9nW;6`zBo(`8UN)9~?0Mr29IS$q}N|9H0
z&In%Do)a*MnwXgA9RGm^QNe8lJekj*a}t=#^BC=!>uJEoeqz<I?71`2LldNP{_jWP
zfPuB*1mNN0>-)LoFrcuD_F^x{owyPInuU?xQX9s}&D|(pH8t#0!o!5FmU5Tu&xI?~
zu&?+JMc<W5!5SO<gX4$CKVFy(Zk<<p`BK<J{o@gb4eVXq?l#fVeK?CvL>AdO(Q@|x
zkvdz}&9CyZtnJp(!T5pfP77moqyRso<N7K87U5=yJafddG7FVG80qR$g`O5O>*9K7
zr}7At@v_zmi;Zr5&weIldiUlIv`KY@$B<{!Gki)-jj+!iAFp)2<`r}OPO|R!GG1!M
zX4c~__UKR-BYhr`*473oB~W{ocVqg#4NsP&q!A08!qIQT`w~;D^BrHJ4`=2ZEnN~-
zcD~~qj+zR<w8#_n^^TaV%XjFcx{`8kHF>LkVmAqTQ{r;vpzX`Zg>_6n*5`jtu9}Co
zqSQkd6rH&e%17}*WN2m0#TiaRcU^v$Syf8Zn5`29wtxG$?vl+{)KT#~7{9<e_&D}T
zwPCGQ&_O^{=xBI-?w88=@Yvl`UqsCH{YB#kNq;XM>RN`rJlBB#SCvl$!atf1t@1#U
zbT%p~FFaf(bGGA)^NHJM&myf0E~0Gt<_l5V9S@Tb97U`;O@Gy&?2aXmGnPu@Clort
zX{8gfJpv_mKpPfZTiRz-GPE=cmhQjF9@4-0?DT*c=L^kj{IluYK*@?;GHqqG$ZYJ4
zlmo2}!_<>BGN!pgu{lHo_hn9UmReM6W=4r7Ijfm?(zq?ADT`0)L=+jzSl`c{t)%1R
zD4actL6)(4{gL-Q8@1Q5DOsXUnlyfbW2oIAehA%ft>6*B$}cl-ebjJ$f+<GVz$Gu)
zZd$|@8t^~3uea~KgnPLq1be`^u!H8jyRhcp(ASt8uyk)Ne5me_M~WoB)z4gPG1b_R
z@95;j{p(xziF@FP`5ckB66<9WFuv>MA8*xeBrMYVkZtd>_c!tNAB`ZCuG*QIkey&O
zYFM78qd5=MIN4{+D!F=5Ez9dAX{qU8H;w&yvP>}ijOBf6z~*)Vdug=%34n(d-h}<A
zpCU5B^kLofhwf>5%(_c~h|^+VdRUzQ$TKcWGcGGxw@d+MXZL9%7=zBPyv0XOFLb8H
zz3WCvnQbM-hbeX6*=#Y+#Ss#XlA|X9luf<cVaFD+ZRG)mdF<=HEWS%tuXukZ37bS|
zS?7dK{?S2j>?9{?_C>8Ej9<b%0m&kv|NgsGedU_iVdV60@Cs}wW;XD%(o_Tnitga)
zkM!5a(kZiOQe+sEE=9WVu9WY`zB~WLi=+f#i-8uMvVp9bt(jXA8LeTnGO-5pn)V+)
z!Hmf^Tb<SG1Y#dj!fu~&(#{*l3+H|Kg;IM%0+e7QbG^S>eyHmO>StMlIKB-%dd_6+
z`Xe*ueH!7WE&NaP*V*2MRxt6Y?nb-bb~$~Qg@cRz72Rcy*|r%1E;YUE)prQ*mYXR=
zC|zdgL?QX68?95-Cl*4b?<~G0v#9&-Q!+_1MTcV3gvb4s;=#@`4v8Ol)e4ZUkXZ%c
z%N(?QSNHkjMq0X2&p=CC*G-lTm=2akJ}vvGFcM|DFv)};-d-Q0859!IOAc1H%Cyfu
z`@IkA=en4aXU-MPiG0|goV2{UYGBPP(g>y<0coB<jvg?P<SN*tFcHd6xy#Cms7IOn
zak?~I(kLzHUPrCsPu6NAAm|{gdn2C}DSO{73h=R%3Q3Gn2X8xE`{onWq&6Wbk;kCn
zBrr4*O>8hj-A=e1FS~2UmG;_U;g=dOa!g2@p!jdrESCb!zAp`Y^%Yh9bb>hkMNHOI
zTn@5AvoZbMm*po&+dsjj=q-dgQI7fp*(la0Zc$a>BmAqPw7Mwz{D@cCZ9gzkH^GxW
zjZ30KcBAISi{G!F=*saGaE`oleZty_f(%fP>kp$>bB}S1>|ty(w#NOGp~tg%U@=DL
zZTwBE=RTjxN7{IFfam0|tcxecXFRM0*HJb}iZy%y0r-H*LzZTUm}jofGuWbSKcna{
z)QX3XRvrTlP9mSjv=C-Ye;Gzo<#GArY`B5g9%y$Uv3MgG=j1kGW7YkGUR*bI`MEG$
zwXF>xa7YsEj`9{2O0M{IQGdlf7vew004l`z^8?pG0N70dG{&l`DtnI@a4Et%ZTx?U
zjSU$2<JAZzez0VOgw^r*dNYT|fRh7fCSIzN3U@9Bz~}jqUi{UD>v+c<Shn9LCM?)J
zhm9j#j{Mg|j_D0lc}?yrma0DMXliX%in%U%fP=N%&rQn&Hfu43y&YLh@ehCvKEy@t
z&h+L%Li*R2xBoXd+Tj@c2ZyzI$Oc*g4hTUOCnjf8qZJ=4#KgQq?lG}xhZTH2A10qs
zvL5D~DGmy--&?~g$quL<YP_=2w&|cM4%koZ8ZNHZBLrw4DUsZ6bG&j%SfjR@tu=3@
z+3>}lYTC3+F}Y34M{+y$`N?NMB4;X!d>+Z2u;!h+z~g(1Ty{1fS8b+{0H19leSJ&9
z;Qng+u}d6Qt!dW25FcV%PXqN;!3lQWmFdkvn)5T3A*X|L^{Z{WZlKG|#7^LI1GMKw
z_C~acYB39ABMJ?FcO&OsJHg#21G9i4GCt?Tp+~_n8v^`VcbN>=M|W!Dk>76E4!YZW
zuWx9?Z96|1o$b<?7dD##Li}&(qMAnB*W;}9rR1q!^L;IS6GvrJA&cP+DVu7%_*a=~
zrTBZ##ZFx(j$-{K>o;|)BL~?*ZL)~$BjAqfln0RLM}v;`+%0@L?Dq?p^6e@)uTI;(
zFTx|UC8-VYOFE}*kJAN%1iRSp+LtqZVPL5!d$Dxyp-b0~y&DF;6k96(3ntNz`AUZm
zuXd~$C3z|-D$>d4d>;+r0-y1>X#JxV2XPGByo6i%pEyTYHXjE_y<jPJn^vi5Zj;qs
zv9wv*@f|h@C60Pi^zli#^7eG7)ff9m@rQ@EH_cgw>nCwISdJufM9Uur=uP7+-Xg)X
zE#FO%C3qgYcv#|iKkwCMLF~(|rz{FQ2|5jkFAIH<2Zwt#t?8zV7N&@+ChPf=AIwg_
z9gj}Bd%8kUbksrT`@XkqC`~+RIgOLlpg9_?510&fQ~r>Gb~tSh2e<yD9j}`SHIF#v
zRANC}W5{WhfKW))lb=xX`5D|bL-blP){DiJ5~F4xjYmRwhW{Vovf2*hN>f}TY1g`m
zWY)!n+tayyx{)P4i@)gU5<<TQ@U+ugumyc39&K#c<W|!S<P!L5l++z*I3k<=U8T8N
zYw=Lg{e6ICp+T4GuBZ2}zO>%T#4=M3qyk(Td-amZ$(I@3^{~f3ULgzw0-sEe5nPmd
zlm&0xyit_N1`sYN2tVBd-wI53UOa(UxA?#{+_e5LvL^acF!N4$8bl9CKAX$aTh$G?
z%f%=f!_LK`A@Et$%2qWv{9DiBGg(}-Vym-hT}LSbA6UehKkhs;MjT%akYbE_lUe*k
z;Jl=yZiPMc?MK_U@u%!D(P)!RkIhu#Qy~oI1t0B(FR$gT09YGF8gy+V1MKrySO1>=
z7zM=r$^9*`RWAzu(dW2PV%q6qTMk((>3c1n`}J(^#--b@M}g(%6P)7o^j+P9v}3P2
zi2Q)@Bq7l(5aeYfd3C;fzDq$k@ea3h{%;MWqIFJB=He>krfxDL)$-)!57jx9>Ha%u
z7HQtj6Gb4CYfgk{`-AcQ<$m2(RpQ(759r}x!9c!CO<t|%1n@#!Oh2Wt%~nq37h24$
ztnHnhGE!1>H1@FH)gl4opPEp58i5KN#ND3|)ADC_ko0b=ZN!&%qNJ?CCS#<KAiRSM
z(uq1Cu^Pwk{|;;%A(kFUp8emEwF+<U*8owcPg>t{aeX~nNdqtlf5y3f%C@3JL1XfS
z($D0@Rd>-Ph=ax~M@f>(SxHyRGO1CZPDw>56s+`$GVyoTJ#JZ&TYH>V+J>?kCpI41
zQ{mH)$zq-Ppx8x%tG`sj;1rzp=rhKz{PJuS(yRR@sub~aw2kk5Bf}UCdwbOc#p^Zo
zQ7i8SFk9r8STaaugKsW=o3xY!R{++BRvp@|i2gjokwk<shMJ?JV~$Ao3V5Mp1X3{>
z<}v{AgIVwiT2eWFqf*=)OZZ@vv|7ylN~#is6p;Re$jLrO1M3<Jo$`@K)y5o~i1zdW
z8^|PeI!?lnE4;$AFS<c`ZEel)x1v%shfD2m;_M9ZkZi$98nd#D3hMJx?4@>!y;ICh
z?a1#9v<=W0mmH)~M~maT5@D~EFTOP%I$+9rUxgTtu!}a4us|t_H6cRp>o1aX^{8tB
zU4pceCZUb^t<DiI|LC=dsxq9ASPVkyuVJ?<1AXzou(cB2uI>rI$pp4d0=E@4TBCW4
zW0kKOllI5KwNQGxBo1V%yFJry(lff!;K+#;;6y9)gO@(22)uam)#O!q@pYDckYDv<
z4WN8ro1(T9J3(CxUrNi&O0zupc_2=EWFD1px{0vJvnIi;0laoBrk5oA$ytwg>29*H
zBMi77Y8$SU^{#B-J&X^GKBpNj8>MACafcg>6n4RK{%8ms9i6*S{<gMVAi;#rPuHna
zZ=ngHwR=~tf0TSi!JA7S1?vJ*M+$gHU$Zf47YuqDj9b!svSm>!lzd!oawe=72CWZR
z6aXzN&jo##f3juowxAY$v?_#EyPl~C@J3U$Q`}Ie3rEvLL=wVge}tMm%~}kk^zH%?
zsK9EEuuD~Z%7-|ajj&<x=`!$5<WuEEY-t&KyV@q)`5QkA`MfmFA7frG3ty`>&NAx~
zD1)^1&m{4EPUbl&Z+WOoK~++;pJhNS>J3XxJFs4tq=+D2<IZcr-#I-Q9wV;?Dfx>U
zvqBWs??a&Gr)we+1I_lWe7C*?Dy0$ff4T2MrL>eTLEp|>nixAbcT$wDVtBA7h10%P
zGVvOCoE=3{pkJl<@D%0BDEt5@9O3wTPfNRRsj|ei81vB4B@m0eN(OBv1huS$PU(8T
zrI}jcN>N%G8tox8U<fl6Pk(p>3Eqxap&`brVOL&nJJM9xv=oZfrK&nwT2d680Ag$A
zTbmJ!V9i$zmN-k*jGnD5N=|}ETUFjLiIkBlhEYcB9okwOWyj!-PpV1zE5PU~{}kLM
z&yV>i7iUR@MPuZ*lt`eSIzz6axm5X3z<`4k*{A}=lwG9$>Y+}CklHkV$v=-)9&57%
zG18K<s;(dV4yOKr17NcP0}1R`6ICk}wV=kTnfAg|wc=WRJv?VuuMp(^^t73_N{l?m
zCJ^Ro$EVtqCDdnDdRVzZHjxmlNpEI|dgqp}F*y3bgoymYMz<yxvtTu}{PpoIbaK5<
zd-?n}cwg4r4?usZNYco~V1qFLJ3|qL7xH@fe5mHCGtZHg&4&{N`M&Z5tFN}eDgc;0
z!t1Y%j^6@lB$QB6O0K=Vot?EpRZA<S*SOwk#Sx2)1ltD|`K-Y&M6zGoY(mR{77e1n
zg+C&I6EjSgH4vmrw`}iH`&s#A*;1kM+AOhJ;cH~p4nu|y+fxYe_`bx8Gx|$XLbY>s
zYd@{6UH?9iozjW35hQqBeo`2g3cOX+uiI<i(xh?|#WS<yetMp{1g7Z>^07-~QCf<M
z(nPcNE!KD54cBY}^X`CbUo7}0&};Z0X_+Zjy}mq@CB*XdP(VD#<(T2!HLs|(QT#}^
z2XqYc*o)`%d%`@MXhm#dpJ$Ym@YQ_aFduXD_w|A;7x>KmnXdFHlfcY0ju@Prl`k*O
zm>U|EdF>(ODz+pQ90nwlO@Eo<k;iJgzHwv*oLO9$4Qf-L-GXn%o{ni4x~SSM^zQDH
zzZu2oFOzOJh<q_I*iQT4W_|Pag_vzpAA4The7BzWDiV({xo+Er)u3bvZl&GaN){qb
zSGJ>3=eLs9sdrgeFx;H7Whyugtv^I$-+ps!QQpCe%EclhZIzdzDYehDRo!hN!CBO#
zRrlV9B=ns4)rvGC%bi3wkf6NnrEs69|75MrWUa=V?cyLNJ1*?r@{x=L7cYcPDwIkE
z8ccEN$UpAwKt6(2@mcfQ#5yl;-{Lmx`}f&vfD!DD*5YPPo8}^L=}Zt!CF%*XZGTf}
zl|v0Ygq^DGV-2f`KP^QV^e?TKM5;Wu1O&G4D5QaNiZ5z8vrUyezKTIA>Jn*?^?b+v
znX~hOZSXsZCa<h}IE3hh8#Llsq~F+jUn=A%-Md%RAy5MSD!g$U<$M4jE^k1YI5;^W
z67c~)DH2%|^4GKV!>doQNr?^4o?PFQ7Lg?kz^EJs3?^^EZp!@IV8amz)+4tF=${W7
zE5BZCW@^@RvsT}MfIfdipZ<qGv2a%w$5wwJM@D+4-1myfPl30Nr2CzTo!AK@JGS*@
zLbmAG7SmWT>f^KD;B=d4u7(1Zq~qI+JS(?&=`<-cOZ*!;i|KRqH+8mIe<u=Y=t)>`
z>!so*mO?D-M*DL^&kkFSQh&5ShU?#gPcpBP9!&YR=c(M>NXKYEHJ{o2BxERKhpLLe
z$AbBXaAQ<C{-js&<nnF;+LR*+_T|`;Hsp={WY7K5J(19t6Kg>wO$R>UTOgq#))gdy
ze-cRmaLy7EmZ<ENo~_I6yhzy&S6m9hyS=PvCT)cK(^^_~TdVwj2tnzIipdn-{F77j
ziHvcWxAZYw*1Fa?`6gK@HnXe&MRF{Cb#LPwa)rcpW4W{l$EFQ>BD@TqWR!&}Puu5z
zd1?$@B)5OG&x-qZ9|&AI42rB<=^~2^)75?nGOfDMx8&aTa+0$N^Z^P^EQr@Yb2|3M
zXjgu@%R^&Hd-(Ld!O>ZvaD*!FP-_z`I}CgWkf@cFHqOu<A*}`&T^|HB9U3>D!|i=0
z1q1n@%jEyYk>$Zo5cIftVBPeEf0M{lU)2$IgZZqB<}D4EQ=TY&2EApi1*C^1qX)a%
zPgW_~DZX=0UC&7)S+t$0>FZrf4Hs^Y?!>MFj$RYvnL%QvzQO!P$t%@jdnBxte?Ay{
z-}+PbeoffEo^jnW$@AdN%V~ikn}GU<gaIvc4G-$=LJaUZ%cQvqP?!dPJs(MxU0%Jq
zeZ6r3n?OE|Z^YPGMppP$v5mh0_YTSJ8I!jAJ_d-k`(@WxZ2wrq_nOf35(n7e&4xa#
zlp*q-wuWXP)*um*Vh1#3b>>4dkv9#{Lz@uH5S&z!&^vbtEMb~AF)VlW`bS2qi|gLu
zK+UA`0ahpdRM30>pDW;0#z8T@cl8RI&`DB$?*Z)!^YV`3-m3lP`8`6bRPA~OG!%BY
z^jHz2%0}9h^hCuZidCetWZ_YM!)OR#F<{%byPNr?lI7X0i@hr*<iLc5R0NNcJ20#J
zSQOGe<3jd!3vhk=<^i&7(C;L_#cmlS93;{H4-_`-5}W;dB0Jlz;pH00b&tig0ryg>
zqrbaaCt~K0<5W!ScKRo#>v-sp?3TCy^&5E%@31s?s-+zWh!X@SF~LEItIuJ1aqZOw
zt5&HWR>j@<vOy9w&(ghqKW^!w60B!F9rH2C(&N8*e0-DECPBS|T9v+?{sbYFTA#N9
zPo~|lN2eOebsZ1%rd0pQGvIyeJ!bO>xZM^-a9yWhLg!HogD=l7KD$T*Uj~QLON&4k
z>KGsFK-O^9qbTE*v$>@)61xM;9T+QBWbs%8?@H6)Q#v{BaDP#{K&is#k-++PCBfg?
zD5_!G(V)RTZIU!H9br;Fe*>{)cBZ6T{nhzZmxE>5!il@@$0Qs*hGx29VZbk!5E8DK
zM0%jt@M_tF<I5il#t?`79-r-)vnu8{VZ*b*!Xx-}cj4m&m>IMx)Au~+b(A=ivXwY%
zv;T+o6TQ+j*xC^hCd}u`(~ELQMbd6^SMGGZcKJzm#us)}8n)Q@>;9vmDR%5|7Q$<P
zYd;_SQVplFM0Bxc^%|#QF$zWZPDEZ-bQ>5Hn3+l7_(fApcDES_c4`?SM{YU9Uu2~P
zY86<z^2~imWg0@cTAg>x_DwNN6c3l7WPWS8{^m1I*@UW2RGhkcjL>_GeS`p16{W5C
zVT)1AiX2`=WXQ`rR{&WhtWtRGYYQt8WfIAqhI)z38}p|A%eTbdHYR^-z56p4|7)JP
zfLQr<y}#T?jem5cF95eyrLX}ht%iox`c-BKi!X`RYtGE~nK3`dE{G%R9UWsQNXg>f
zRk&g}g#E>YP}R5fMU>XmXnW6m*7anm_ptrkZi;i3xxnRy*iRT(vJBI2YsFw0T)(A`
zz4f#>k^D;Z9~#&((x8-Jmgy4zfd?QXg^rw8OEf_tCWHKDMgb=^M&|gPfgfKRNatvj
znuZb%C$2nuPuzELaU!gMrb-CW<qC<T+PD0v_5Cusc)qvswXRwMiTmX3L+dw^oUN}$
z*i6LS;_SWFYh#4mpxNiH2_;KCu__Y9k8!Ep&~nqi#Ap3GemS&p*r#&;g4)u!SyV_y
zxBlQI8M$s9zivpzcdYHVJd8E48mkUCJ=9nav@*AU-DFmz4)ugBPZ~<HUaMJr1thO`
z5=(M{(i5Wv`b18%E}eTQ<*}v){_wTt`KS8ioZs%#vc!+1i>~IWLeWt^`6n~r8%Wla
zRPA2|25_=c#oYEn7p@9^LEMr0?lzlDRaI}kE3&?WUB?-TLTeMhJ`W816-(-i@lbN=
z%2=_Mb(n1WSVUA5Cz<}0pzXqK**Oj=A+1$Bm>a1w;7ja9osnt@TgCaIkujDyzbQ?~
z4RB@oe}2BR-OsqF6|M4|i{|jqp*IP{Ip!F?iSS6jNpfFSW-TxfD%po(N=n>YIM<OS
zTIKRk#rxW^B^!R1Yd$(k%k6N4Xum4>)rg?e6E21b5_=%mk?Bz2goQ7@oH^j>%B)K9
z=5GXqWU2Q%bns#vla-krowWSDvGFtW&IR*P9n|fPzW!I)eajM{5caPg&oa2m;JT78
zaBjiz%^6XJMtrgn#M180nV*xpJVVGji+fU5I}F{p<Rk3DIzMU-vHW3A2cD+#G?>fX
zFVxA`tF7W|bbplO0cf<_zxKfVo!a)CR&QJ3;!#X+#OtQ-jwSYy2Dlrx2_h9Aa>{$#
zwkH=~b#_q8u&*Pv3`dhb%CvA2%jRTXxEi&}+Uwc(a<-j^4>#h&is#qX=qe}yf}qrW
z_g!e-M(PZ{Yw}Mh_K5f2bv4wu%-c$Ya2p9`0J3B;qrDkaEbZ?XKduCivB6Cgft_dJ
zj5V+2)sJ?HP~LQ#Yw_%TOY=l;Z;fF9=<N~zsUtNT!bDG^)`739!7>z&QcTl7?mrK9
z&P=*>C(1Lrc6+=DpWb~NigYVK5RRSNg>SVz6j!0($*xi6<MwXq`%Lcf6=?&t-E-?C
z{z4RPvr7)C+MEnwCi*@JVWZHR7|HnF{?zYNj5pSk-F1;dXgI(RlYU?{`H1hZeld{c
zH0F-oVzAcDRJDb3uK*4J88ml{mIbOOq~v(gq){J3<8c`%@W*HnN{zyt;aEs}ymSwy
zc2p#(%S(e1ea(K8w$+m#TV-2imyHHlW;;TSGlm%Zstz(7j^FynJ*tPa9PR2?$~s-}
zJmuKnI|cG`-(&sD!qyz_jY|&4-z~XBn1zFIH<C{$++8pK&QBZrF;;ZYM#a3ge7qb*
zvkHw)gip+xa+R)G@>*t(8diX@Lh<(a_X|lRbNc`n`*62&JI|25x#Y1ulpaW^jy4qu
z_zRI^aSRqFGbwJ0=Y10Gl7A-9*;>owncEH>%@7s2RaToOIiA!OJ1J+;+1>?3D}An?
zP^{|8x4SQq4Q>|;uA6vhqgIwAm}}~;?G{1{7L+-2MZPupZvNt*RM*C28GG_yoY#ty
z5|vOwf8_Ya){hh!CdR6}=ehQ+)i}N=#v0($Q7VKfokH;_<>%?8{F?<lNF@e{q`_R6
z+e_6x?*kgwTohX+`B<X4Z_IqGTE<$NjPKq3hGRB0wo)}i<>KMVpSTQMWMo0~q+9|!
z5PM@NF)(+bTAlUp@HHMood`Kjb$tJ6-<+3Crmp*P!ml+}s*x!xjeM7cc&*UR1&OWm
zKmjG#=rRh!1Mc*W&&=mLFy#W?loS^aX0d35q3OUv*2~W*&%!>wZQKl%)Xr$Zrq6Ii
zl(Es#y>MB5LeC$mgh;x2yuy~K@bluMMQ<qS-`>mlvp4c$3F=}+3El)W1*r-c{!XN<
zbc5ydk9(MJQ|e5jgv^ZEmrm6A(}JLfffym*@OTH$il8n64~-M$#jce!60TNwpl8h}
zzT+D=a(~+aGl69;Q^x?uU>Rw3V(`Ly>~<emlTk&?sMk^ZuTGLZg_h*Nf{R4@m^aXL
zQ)@k-hjN*yI}}|=s20tR^1GbI=}BB^2g}P<$S{j-LDD#Tptv`n(f<{Vp(sBV7hTl;
z@LrJH@mrQy1py}h+Z|51+PQ{x>W%*$=eo;!JjyOgYr?KwCUHaG)!V>MGiIfCk%U$o
zf^%>_!?ZNOo5yUu>e5yD4tBr+*R~Kc8&0CJ6ML}gl9N_7e0nRD>*$h7kC4I+c8x>Z
z^0+}U(vogvuIAdEvuDX2%eNLO`nDb*lLFXoapyX1s6iU)1*X36{z$c5$*>{<#{2W-
zdj&So)MlyqXQaGx=>Q7vnioa{!v$&UpN|8O7#3kS1Ee&L9zkH>Ttl9D+-j4TpYq}b
zDLOKq<d&EaGiV*&j{~@_r-rlE{`uYxn^~1u_JQ5f22?+L-mjg3&Ms|2mCs!Fz8xa)
zK4_<p>y13l6qn%Fa&nFz%u2yx8LLR<R$~r`yGW{!d!J3D)c6-ybhXSBQxbDIRTbxn
zas^d;dcWWbf%g5i|A}n1{8UpTLc<-9BwkCwcDur<X1L7+d-<l`2%qb-g!ipI78wMo
z6Qu-S7p_=hnWqjETU?o}Q@E*<YprkprBOFb*p!mb)+mGR4wJ-}F6ibjRdsJ=^r8jI
z#GQO1dQ-(|`}nSwX-rL-nSf8(*;)mbDa05W)wV&zHgk_-M=j74>(u;os;jhea^?6=
zmjOow<y^}{`ir6*`4^pHwg@lzC(x^icilovkK;_ib+8-jVLtt(RxJHuowt3mluq`L
zOIcmLDb)m6)!X{+Y&e{1*@K^As*cScrJimZLQ9Ly;hZONGno0Hd$#nSzK%4oW6J$>
z>o3Xc;@-I#&5ZIu`o4fmMwLC;KQ!B-o0{k|VE+G0@#-j+*N?M!z$35CF6l&|agOlM
zm2j9TWteA>q}LrH>vHeW-5mFfwAGaG`xOl+s|j7~_%i*(ypPXVTm)8BE9_BvJ_dG_
zFEfcGc405YADUUR%b(d-*^+BgI=txv>A|nr<DGVnMOT{Ya``{ZqPY2tT|nhnb;7rB
z;R$A@K5vm?B*dAqJCKeIe<}J6%LY{js&1ZyH^=52jy1)P9P-o0#(w%)%0i-jFcl}y
z9Mk#YUy8?ttn*V-+AkbfA-zL)kCj=FfsZe@GC5q0L{<&rYE(0H9V6977LjUnX+%H<
zLsj%RIRFh2D(Ru_XaH}P1)}R26{Jt<%aX69@+iLAtbwZS>L{;=<;<x&nMq&3Y_w#8
zlwfp3M7Rf&WXHsUo`uCKX;5)ynz(#l;N;}we{x$-IaIMFeh!$uNW~pDALt9982nsO
zQ2}AtB6jLm2v{)YuSzlepeVV^+_wTnh_W9KN&BlR=_V14x|vx@Vf73HG?BC?QT8hS
z&FXzii)++B6Shmz(+x91VttN#@RwijUKVj);z5qLhzKF6F?=}|P4shU#P(&~&m$iR
zEe_vKNYEE%5Wk5CQ+!<=b8Dg9B)*WC<Z+Jt(Vy#Py|fF0_2A1ZrAK4qeuG%GON<}o
zpkX4q$@q@K5;Xe1KOMGbOBqp4D>jTq$|vxp6O!b9)1X7e_CRNa_JpyjRj6(FwesK@
z()Vl{P>!FaeD12^;hkP0L!JV%<oGXdE~X6tpM*<B_H)!^^(mRRLmxqA;GYQCbh`~P
z3CWX?ITGj+j3c)#*kcRnU+eC{YU&kRGYN&g1g?<lqe9RvExe#Rj~0#nnTtmMtu5_k
z;Hto9iM?;=AbN#V^SUtPzw1VF@GOKIaT>k>EA%g60sP0)hh|SzcOzYV3wy<*Z(hN^
zE_Z;@K1ch1;H&=EzYE=)agCbzu=vI%zdk%N`?l%_4AR(58h8wN6=>b7%m4QYeGm;}
zSKEahfPh@_o1khkK5L2(9~sYdN8-onK`{F7)9ImVi)M-YI2?bCsq_A|o~Mx_D06v8
zgf-|gK3<@uZD_fB;lIuSbXnz>qYZp%i+|pFD5eTBE)$!~eE#xI<k6*h+<y(ol}*ad
z(UHvn<UoAQc-GER^?mn~?}bZ7MBh3`2Kv4Y2JHI!6kqrg6!~9g^B6QSd`>icygY&b
ws8#;?@c*B*Y;1q4dH%WHEmICZn}W_LzhJrra$VIhJqLfJ#N{97Jks&{Ut`a3i~s-t

literal 13444
zcmcI~2UJtrwl<22O7n=Kbd;u4kq#1&-Vu=ARBGrDIsrrkqy`cJ=~4uP6zM`JDpEp=
z)JW(OK)Qq?q5eB~&bjy9d*A!t_{aDegPlF*o_nsj=9+7*Z+?44KhRO7zQ}lyjEsz0
zT}?@!jO>g78QCfF^QQrc@6YiR;OByenkj^gjOGjJ|5P#`4HF=w@K)DWrkJKYPsvIl
z_<Z&LiAdSR`@WC2qq`RwvaCl95K(ypA|*SBjThL%8|>~zMt9)`2Oz&lk}JA<1bBfR
z9KFd(XnUjqDb0!0%kD8rmE9ZcYDXsai}nKW<O1o5fxEr8-(xR3GE0wRk~-yyaWKTj
z<uRb@MOOE*8U~2Zlf=f4z1+ZV4rCvh=A!@^#qalhylm{qwvWS?|58(QcXhRM^CsKr
zNofIO=SXS~!QL)*WN+67c*w{^bk&vaKlI0~PV7U>7lWrZ4z8wy9i$JrR%z|*UmDF-
zR~Z$JW{LNY46cd08M&77UaPMheuZQnthBMS>4<9*U;Uzgd8FX#K=sWs+cJgpmuF-0
zK77}|<6F<(MyYm+^5T_>M!M4%tWG7FR7^owr-47R)BabHznrs2XP!|ksQkFM0Li8d
znL{I}FGeWjKDc!S_>uZHXDoS^boX0;SN!t<@WaXWw^-o@@wYzdX%{3N3iOcdk#&#?
zA-XNQtmKQ7Hc7A}h8BanRdVMzZh<)!@@WCl(?e~q_=1cQw1dw!;^*wGBGM3iZ04?4
z8PFcVb7(8%jvDIFkrabZ6fMvWzP=HIX8_3~YlH<tjMz!`dTwrelmUKXE;t)%Z^Suq
z9l@M<;=}LjQ#?8F0vRV8>B>$dUCGcCq^lZ;bd@KZI=S9BdGy~Zke#$amI!?>6S-%9
zTYr}mcq<X=@ex7G6NdP0N8&J(<Xj^3qqZCm$towC#~?->xB*%m--28QZsZB0B^&)`
zZ?_-UPEp-s%nr@=^AA3xE9a@M-c>qWCk&X)j#&|fBo0p;PJ~uEl?1W3?M_indDVwX
zRYY$e5GJOB>Qwz6N9FS^hi)V%d{l)jg)XqFw(LZV5v<+zC~t=TXpQ21C>%;ggI6~R
zB1B&i1mf`&uSghmA_QEHJ)Vfj?zD)*+a$`~+bIu8XAtN~;@GV7BE)0u)Mpdtt`El&
z!Vla*4!1kZZTTwQ+oi_q5kI#URqC9-SG8;>xU9iKTkO8iDtDh|Yn0fD-GkXyuyA#}
z0}aDNZDR}ANu9hwbh%4}if)-SWUltntjFRx_BTgu*58UCZzj5;Vh%L)!#w#b<6PO3
z<YF}L^J4IHAzm%Y;x8SZ;hqqZL_7`&iDzuKZxA=-no*UROR2jX`Dzoe{WtsHb&gl#
z@ElS6=Hp+&fRRmvs)2Bj!*`()?0yxTIWGM-%?A>zTr;5%ldhx${$o_q<coq@IL18g
z+?y<!3j@`Joj0d!&Zj_ij+!emyPE1}8n#;3Ccr$RaM+4guk|ld)_jC~4!}yRWZWdW
zC>dktbT;BsLwClG*H({rn6Q&b7HEsjisHft#&IFP9xo9dzdY-MoR&npBW!2`D|3Hk
z)IIBCqG5UCTutf{-tz82`*^b2p-~7IWhW{<bRIE0uLgoS81pudZD+I`83e?R%bJfA
zs?8(!H0uJr<k%9r2$k<&PVHl;CCWoN_o2t(>Z4`jZe3jtMaH)ImAs>2>(K2c6Vb9-
z{iC8^Aj^Ya`gix0kW*ct&Y4W95XC^<IUSHqKIK5|>m4Fx%V49WqCxE|DCe-r_cZ3u
zY)3Gr_Sj+yGv`6YVbwnWAp5wavvKrPrag`J#82YH>+a|kXCAKO5>ztcc1|YKHfVUB
zL$14HI#<F4RlwYqTzupgB7H0LQ+dcyEp&QrkgL1p2w690vza<|@WxEt-`9}F+Dgi=
z!N=ao)GDdUfw^X{5h;=nhe7Y)MapSRv#NW<fQhhTzk)1XNvzDDabV+Qs~>*X{Eb7T
zG?;)kNPdRjs6TTfK&8woDFa+D_LAb;J3gG{>&9Dth*(P9=HNBiG_d^KrFy%A_EEq6
ziNSX1(5*w-cOlc_lZ2V3jj6*eIa^H-T)%lMD50-b&xXzEX#Qw*J}SjBdE&>RhsK0+
z$g#G=RFnZP3%aipXG?5T)3Va@%iFFAUzJcDx;U(}cTO>MuT3UD>_uSeR`ec1#8t&W
zeje1RerIaL91a`TN`>xR%ib4pa;?l}gU+V5GkmMT+t4r-3wI2}Ye%H?`~l+q`F1KD
z^^QSXl(*rnggsLkVpgD?5A}5(k(MYcE3)K3j8%gsC-S2<wvPwxqvgHY@vvLuUU9Dk
za`JKxzu0W0@3+aYp=k#OBoE|+@}b#=W_?-Eq4YUrjwJgsV0C#UVS{P%YwBJ1UU%Fb
zr9eB_dl7>c){!srIyb>!PT@TobbQG@nmTWKxJ=u2O|>4~z~s#f8i)Kud}+B)@tA5j
zRqK0g&}B{DW~^OWnRa%K^+D{fUZ&)nxvSe$lQNg!L8g%W#PR;4?Yb%B3#x7sQ~cmm
z2V#m*zW)L8$|hg()Un6wATyQ(?-%ef(@poeOz3jApDP09qF@%px>Yoh)m?Sa61+^_
zt+)PJyG7VI><g>Z8O;pXf%xWC$Y!k6@Y|JwkwT+4^i{4JcXeV{&3AZ-oeN)H<P+)=
zC3#P^?><mxr%gL*L-%R6i?<)El}mviW>S_ivU!QY>iIdSpUyv4h~UooE1mk?;<HQs
zjK$Urbktbdi-+xk0LB6~eqO`>fm}Cj8lA2K(*j3bG2xDtxRdD-0k+3EQ*h+6`pG=L
zRi$fhCI{uknNvBC;KGv0k1E)?&lt<euYO+iSiD0rrw38Emca!xHLA>zIAmhTn!3vb
z6(?NBAc%q4bXQk~CD~d(L$xLyfi#D4QTxqf&`mP;i9cT<VAUS!$KTuU`OG&v5o8})
z`{xsX$nB$Ah<y|Ty<T)^9tbrsA5aWIFIlMN_SuP@;Xelq>hMRpVnu2+#CPsT`jOJM
zn*8S$uX3~a<8SPtb&tcx2N)0>-7gp~=%jt(FeeD>c4fMnytvnxI)BCH>GK12o1g+4
z_;c#|@+?Mc`1lik7j=H{V|$;8;f)Q6BlmrWqr+j2<6YHuZWn}B0^TP3GR{I=B7D=A
zi)}2yH4SB(HuLfB#ZGahIVmY0dwE<hu;Q`@kM&5Yf_kt{_vY;iW|V6PqugvnNwlMA
zcgIKejSs8sit5{y(FzFNc}Ac=zUg0>AS=S3bu|s#cQ*!NUqQbpPG$C(|J3N$#ZMl#
z97pY?oNK8!PjDq9z1r#(YI;YA+@gWc#f#^-kh+xAF*9`-=&-hPX7N2I<V?o;H9MEc
z9!2(O&C@*#N6VOAMX}1&r_6=VMMu@u?VOYn`{y|*yUqFc6FG>T6IGlQEPIeE-h)Ci
z;OF$3In~S}1{tZMQFJ!vV*+*)|44B$PF@v2WkT=TU?L}z^b>~8_f&4)om5eYu+s!B
zLF}k#5$8Dv?e7I#P7T-hRJ&VCB|i4moc+y>hxCY>-JwT*>HKI_g;eGbjhZ+e?1;+<
z&}EO0D=<9Atl?dm3}6KYW?Nm{Jd-xWU7~&gA=7ye0egNajparMjjfKoKzZkboB489
z_SZYLKm<wadDp7A9${c*sqHE-PYLc!f^wFsql{|X!zQ#q^N+<-awV6HN1sIr|4I)y
zwfWp7h012}f_=ejX7|w=JV&TxS}bOKmpi~@+X?YPP(6P!-569caKthA%d{_>i>L-q
z!V8I1sVC9KnOO~F^_;mSQiaxgM;l#YWFN9Gbi5Pu#U0Fk2v#l!bbst^So?Hec}9RK
znDL8Xfqns)#ntPW*U#UJ&-wu&X<tgSHp%q;n}v*|SbQxeGZwG%V4eq9N-AH)9oO~<
zKH|o#IP(Se_CD}Ry)Dvhw;xGAhDW58+eUa@abn}VhQ2ub#dCf&CG!I~1B$mY!Xazz
zxa$Nax7Z$@;3qgn95KCtXlXijKLRIH1t-lc!WnGEozUbe13)VSV+#jtlX}*>9N`YO
zr-%wn`Q)$8P!S1iHia%=rX=u`?MRqQm034o0RN;XNnjn$@RkdPe0@`@3$D)T-#PBt
zc3eQ%<&#68EA7<LcL*t8o)7t=RY&*-p<)&RuTzp9ZidT2G}z=euQ(j<i)i0nsM)h7
zYNXU16&U2{)S8ysIVScz6PW3EC24NImSRd@J9+8LZ@~8yUv<b?r-o0gkjB+*DLwIW
z5IXF_(@gI6Js891H~-X=-t07%Z{8~x>P}7RB0HC+hBJ}Ri|AospCa6Difks-n_KCs
z<tZn)-!)uRYoJ9Ys9bJ;*q-R740jq@p*)wyqPb&wIiY|COibdkV^8Gd6BAaf^#l<F
z(^|}Z)qQs%Er*b_eUtRkxZuRr)FZvSwrVsQzVh~9#GKurR5SWvgMvC#zgzPKoFTF9
z%`wxTh!u|6L3q;4qw}vaC~yd{)=o`Tb{E`G#wGNWt6@Zmtl2&2{JE>>8<@<1w2TlP
zQqgAh0nahD5|FzR3_g6{C`c_i5V1nk`UBoopsu>}mC(Q(u{9_|ws{uv8vwHtUE~%w
zwkgWRx<cOw*eSZ}CFR)Jh5~yqW<hG$K0jp4oG@ywMk_tcrn~o99hKO4nK{~HQ1=9!
zqdP!qofeq8S5$+UkkEISx@M>!|NcXF3^~K(Y{Py<50V|h+zIObz`~GXllK1ApDwC_
zrVDdO&>X<-J6nZ03M6CycYsfNfrKhazyDk!{9OT%9{h)@f}QyPv+Vdsqa+~zyJR6<
z|C3iiub}pY^d~jkNyTP&OpgOlZIG4|2QYTi^^Th}qNh&!Mk;DZg$Ai00`5t@A_a(4
z6OlSYx+jHzbbq22^{0Xw=+C!En*aJ1>CuiQAzGE5m8OqoTm6Er=d)8}L0Qn7VTnT;
zlk#Rh^wws~3}2nzMa>?Z1zxX8!&ed1%GIFF#EptKTsn8iriq#$zA8vFXge_hXp%Fh
zmn)~U(I}OwM^&<h?CF9q@ymj$B5idK9ie}o^jw=eXXEDs!XJ!H6J%sEFQG>E3sH0v
z#SUy#kvt0{h6SeADfcPvTG!PQOX8xM!e<uW?7oEkWqB?c`O#+ezFFw*Y(<26AnFuZ
ztqk!?QEPEqyWBlF*7N&&4#8o`yY1}*Z|U75_Y`T#lPYF9tb)_}J)j)jl5F>ZAiy#7
zfvDczpvBd5WZ#f@Iu<5<&pGwIWlfGlvmv5nePQynjllVUYft_R-1{jw=Cfj{@WO`e
zc=JwLUE=^7P15f$e*|fRX7&CY4$1dup8m03Hmx1s*z$7cRk<x+@{{qP;2~ZYVeZ*G
zh-RRPJhxz{kd<7~5rFZy6kMX+TJ=*chrLgt<nX{htc9cxjN;P;Zlc<bX?8Z7PM_5(
z%SBz4q1QQ3hZ-H<G)=zh10V^CJ^~T>*vAcwA8FM8DLF_5-M<O{${14i{C64iryWwx
zeuDV&4SCK#Xq&OU9fF*<DCMc{K;fl>3cknlhL$8sY+Gxww9Vvo(Y+~M>m2dp8uG6E
z{u7;WDTfXyv!6a^6l4>(B*uFc-YDQbyGqe*&g`QaD`*&$9sD?fXgSA~tXgx`s^Pot
z*pmQ1*8P-Uk^C8}<qZ#^1!Z>JEp7QnOIW^yln)9jvi|)j_v7qIg6r6^l;3I%ozP-V
z)IfGyHRF!gAl0$AJmJ$PH4xAG?oG<rPx9Su=}*vd3;Rz{4Rn<2De1hpM;*w#n0&iz
zZ2&0lM6{(nYRM-mCE;_H*KVOH*oo|$&7pRBWyGYjQ^Sn)UfB(d4~|jSCpuH0+>F(@
z+{S&=Yx6IbE%cN(Hrfk)*E@SOT=J*!i1o<3a2QHUa9>RO(>=`7q60PM4Rk_uDR++i
zc6R^^mc}T3EENhhOyw-kF7>IGHHhusriRn1fh1p}J3iFs46JR_4mUB4_GbOGzEz2I
zq|AfE^bXY~(i{Xd38&B$Li|_N1_WD7;kw!MW6Lyb#U(r6+#RuW3OBZ==i#kAO(H=a
z7AYDK6dacFohG$`e%0CJ#QamVL)l!lZy17x+)UYU=-YRfd!7Z~e|FR49GUwWPB^Pp
z$9Zm<So-|3SV}huET8f`e17!Kz)&T$euz+>T)m^JZ_e+xmCRQDmACVk#e!AkqH|K?
zi}E;83uA%xa^{xF%NBJdJIRB+#m44+c!aA2uaKmLT?gMB@q7O)c1jy`o61KbN6(xe
z%pWA{<Mrf-rsn<D1%60eQNrOC%ffJjaSZ&b$`^yuz(8i?J@aL2QK#T#^cgjfzYYR}
zEKXP&1Y=bo-ok>BQLv$xVrK-XWk&L>dj=7()rbjh4!g0$h6g#ah0<VaqvWK;H4Dwt
z10K0FGx3$p4;~0^2lgg63@wB2TTb>S>xh2y5;kpNcK5~^nX8m-Ru^*_R;*QRp+Hl@
zPZk3&ZCKnc?O&oq!Zg-7Lo#YW8d<kWC-od2apw;_?9j*Iyqo9WhA5Qz8^!g`S+Xti
zRir54)HOlA%Yd`rU}zrk{*XhldbjN6YZ^v!ZAC0@p^m~gv17?cv1T&<rizblUU%dj
z3~7Gtr*43p{i2+TVe`gXrBMDd?Z^xu{?Ssj=N-sm;9ZYnpi(XnQgZ1JU3l3)aWmcM
zg0`rmvy8zq!^W~Xw7x=)7jvcjDqHc8@v>_@Zi&hajtS)dX231>y<$G3R3BZ>)KNAp
z6V5S_Afk-MhWqJoCP@D<XqvxV?$>!Y8q0*|H!SYE?u05&p4dElt-AS?o_l@m;<9%3
z^a}&?(uOykl4-z#fN>|F8^zO4tN)C#nA2Ih*1D6xM?Ei`M(I|HdO5javJAo+*r!5W
zgjRgfJo}M1W!>ow8v~mad9y+~viSOtJ@|YU1wW53xyDY)sa?#AseAlro{<S?aX|%|
zA@e7yI<P<~G~2GUmWnTS6&pVr|7Q4#LGi^0+sMbCJy#!sonsxG6sFRQ-yKNx1uQ9@
zrSn;4h-%E#0~g!eF0P+Wbkdnx&1(-4XuE2})@Hw!B^KDi6R2R%nZtiF9LDI5hgMQq
zj#vAI5(+_s13~8Ww=_X3F*{(x^vSMVYr5^_lA}vns59L)R@NX-Q>>M5W8e?{;5$V5
zipO1*w8(c3#g_-nCpF;$>w6cwGlhpUzFR1=+ZOW=+DqQ4IqQlar?$yAqwqYu1T{=9
z%-7lW9kecYR`)(Vv}eLLqN<3r@#FDp9T-#$!Y=!%+|}g<mL&*Kt(3<X%I8_9!6X{O
z`9_Uixs0iAf39qno&D@q7rDZue{E-gCTFpIA{}~}g`%)0D<!@ajhnA}j5OMc5P2t{
z=$BuQx*tegDeSckcb$^cJcQ3>E=QHC+yu8TTkDGVn*?zd0<NI$IWFY>-0Sq#xg2YX
z(5>}3&B?a%4v&DgS2+g%v|qwH2O)=rk`~cC#6Xoojfb>pS)EnfY#Hr-!NL&tIwNb*
zWGMcV`P;Ev2^^<$?168q<nt{X^<k|PTc2-7-&|#au1ipR!_T29_W6m|Q$LhseZ>`B
z)B=qPu82E#*4!{~ml&?+(<G=fm4O?cIB0@$hw%1M18`XItV$rEqV$gel~c;6Rooj|
zqgD{QUR){tGJ9d))^%}k6(0lt;H?#4A;|)=aG#I(jp}=y74xRcre3*b(2M2+XT!-a
zFYlZ6%UrmU2)&#yz@zVMa>qx+#Cof`3*L6^kZExi%6-{~__AUQGakQ%w_&b%)4O2S
zt>vUU)F_b>s1wTSi)<LHes!b<$CJZpX|xFHBc~14v&$dODp0C}>V;N_Zk^{Z8{>H`
zhsIlE(GEJ!n9%w%tBhA}pG=KB2mwYJy07<Mjl>Lpr_xe7z0CvR$<eMQULV$;+1AT;
z1&NaqP|^dvz%UCHYzi2b`D1G&)#+MbFqM{;xz%#ON;0VHFku9;u-%_2j$X)arllzo
zc@%I!@1=&ZH-*52B)JY7yESVz3I}NSSBNrZLQ6X;;7KV@A84y|Ygl@2nac8T%9Pvn
z;m17zO(yYU{q6k2EZT<gzX}wqsMLHkj$L$h2iu(I`s#ZCi2sM@%&VRsxbXpji7!n8
zHQ25)CmVfr5Ib@DHD?YoWuU=HRla4~*sNKO9fr3FeOza*xI?YnG|YuvuIZPQ#g&kE
ztZTXG68Z<*Htg$aZTu$hrKl1%L^YFda3qXR%$glHjn6{2c*5J>umsxKGODJ}WjZh{
zAoRfY>Yxa$Dn<unI>In8uc8rGdKL%_JKBK*JMI=G*n-6H=5MR3^#!Hu>Qv(ia|y45
zGcfHj<vU*An^qws^%KnT4ptibDZ@ip{8htj^*#=Vv@vZ%xhNPitO_$pZQ%2EHBNjZ
z0puLNnHS(DVN6`a$H}7IHEOtX;=c^Z?$zz0A9}?L93{sqz%e{IPy!x}n46nZ<Gd>;
zCs$`zdD(P$U_f7#(bC#FbZ_f+P9U82eFPq{SE-p6QG#xP*MA;IckKM0nRhWCQ^Z>r
zjDk>TgqWdeXSGZ7PWyKU?i^|`tf2ry45*)MY2GNQpWtTRQ+gdZH!P%@E<*f<Sxqqo
z+iQZ(VpRh;+4g-R%`|vptlhWuP+|D+Yhk?;a^lLok;%!)=9X10zV>TuSr)i<0#Zos
zC_g4Gh1UKvB*}!Io9Vj?0!sE2N6pCwfNcqUu`Ec~a4X{HjuF-T&6++8u4qnb6o+Hf
z?F8VO{OUP4?NizJA3l8RpPQ<W`E)BM*jZW<RMpVXH7g8Y!UsUx<d2NeBD{+qRz8f?
zQTl{m3E1&n?R&YEn6lQN3H@8=*HYwzTSMa`O)@^=ygsF~`m#S=;sA&_<OUQL-?+TO
zva_;W8&)TK8)mGbM;ofN;RC`?t@;6k{MwfsP4O|Tl&OGOh$$y6E$K$?!G*t_BR7{&
zBckK~NTZFiI`y}9Gm;6knPsT@Yj6GNj@g6qr~T8fdZfFo0dL7Lx~tq`IP>*;NgCS8
z<<<$oOXC-7m;l_0R^@963^Xm(E{=LO>AyXqN_Z4^^cAq_&+1e+wO5s#1m3S@jF#6Q
z)k6XByzwhq)#+Io?0beLDD-F3M?9Vr@)QmwdxUY8h?cF#-cGj6o{7T6<H@JVxY-uT
z9(^I<#P4vlJo}}16`~?gNIi0QmdLMB4M|+mdX{))u}z><w%zH?HD;1K9|4xE*#z8F
zcr6`TKt)ZBu4DTd1;pwj>xdiNV~A;L&7|Aqn{Wu<+X)~TRwZ~2*ry(C*<(ya?IL~<
zi{;76{oMwwvjn(D&%H-HEv%owA;x}Uobn|!?xK81qQ>VROij`F!NEZhIXMj5Gax=e
zCMaYBziM&P#j@9U#Z?u;DGv`g%sX6s{{5r|VR3COJ0oM37N~Qc%9c;m4%|{YQMt2x
zuG=Svv<f~Y&xFPaxhEEd47mZp6Y`z_3Id=%r*uFn;krk|C%q#>M>UWJWB)esIvq+K
zkXzepkPOKaa!DESu~{87zwX`%c~1L#Z2nY7`ieAHJ?2=yJwfWWyc?vcZqF>edLXd-
z+W8JYCmC3zOoM$+{lnKH6(Rx>=O$n&loOqwwIplX4yj<$>*pkn=N$MDYvzZg5_{(E
z#PEQFeQqL9v_8cnq~3%PotG~<t>*f25Xqzvupo=$8>|@&KE4TUwLYt-{MZ|jbJ&|U
zWf@1)H12LF0jkMu(APnmd-rewzeafwq`s5EVRlFQHnQ+g@jrq{9)1)-V01X6I^`F*
z5wPp)j3L!6a9!IWJ11=V3PJ7#916rno^abAM84tMVRmG|_y9<)r_bOR+%s=Agni6|
z*H~FxfI))`SX=NN>|k}kZ&}59d3DB<_;HVXZ9m#rdd<0%X(LS!yBb!TLB3iS6+V9!
zry2>j#Ns9(OqFIWwQ0kutyy)|b24iQeeDvTS=}@Ep@Y{<gjKJBpE53QbDHV0dehWS
zt+=Da3bsQj&jvQAWa8Gg>!do2x6htir*UNIaSN2$ew}QS`kATwQ`wDR*YG}&>*1+i
zKc6~3n4Aod%R6mcZr)<l&Ouu}yi?<oP_Cj96a~kA|6$@jrGRsvYg27DS}5?0yKp4$
z{^EC-bU#%%(1|gU#<r7#$k{=xo}hLd<-YP`h1pzx!g+Sq5}kwPCeJEcq;8p#DzGx4
z8Q-Q+(RatHT$HjqWsQ=lwl5iX+|)y|gVvlh1g82WMwc1WQs2yKQpV!U5VO$8bBN{h
zD2li_bI!Pk(>e<U%@iA^b?)q(l)Hi4+Yz&x;ew+UWtK7f!N?l4(ap-XPm^e|!3*k~
zId7(SKOE6|57S+bQzHKrzI5c7D>NNz7LoyVo<T1x4i@D;cw1kZ@jKOR=xQ?R5n~R`
zRSj+GGbcHjg11>(wQmYeJ(rSOGX(ET3fP=z+^NDp-#W4b*X=W)RrkvSE=TOH9DXuF
z^GGy>iv$w-$Dl@s&9ysvJ}unkJ@#X=!RBFQGmCi2y)nqD{x_EM1-jo8`|k@TK}Qs9
z)^@^-1lXw^-E*iwuZF~rKhjkaOZENTC6G+4av>{$EwLxQg};PeES<nF2Mz^ENW4E;
zh+L$I->QjJsPO1>^wvd~YnInPEK~9qbIlhj>aM_bp{@eiE}Lm9PPAI@uJT9PUrTKj
zsoe8-@oelCbL+ctIYfHG%)L5d-zrtEf^r63UlWHH85J9n$q!*$>K9LSPW=u$$co;{
z*&VR;zwJzjrjjHdjMa0Uij3T@6QVd6bcQ_xl}7Mv*2M%whCj+4RDRz2xGo42h}z!T
z>cL<(F(meA?A>cz?}5*ogtcvE<&*-_T$DjTSK5h^GBtX_r4r|cN(S$~Z4ao@wF0kG
z^>qlig8Ef;7^p<Py@6rW6E>5sYH;X=I$&3dohJK7#3dg&ZR*{yo1BI0r^Y|N=UN9f
zdkbuBdrAX1noiaR%V<x~s2^DBEo=#lk{Y735O??NU59j$Wh)VqUKGMu8ic>iYS?D%
z=08exFw=d=&>}X!BIse{ETF7>v#F`+n9$RK%7NPE2L}gNk{^hWmaZM%x4t5n$64ke
zF&0vSf8!2_vmBioX%8Gn;XuvR)uN)JTkRQ#C+}5)M^AyUz&iP@6(?{!JZ~^~vbn%@
zS=*z=()UoTDt?fRen-(u=MUcRG->m&rEM8}hP|{t&i`zG{4&0)(2io)0@%?X0n5B$
z?3@7sxp=Z6WE(6mFC!2LKN;y`B66`5w%F6sIS+g?2HHEi`1eNH2fyG^AVm21@ngod
z^%eUG_6)>tn|#3bbb=DdWCZDB<KyFN>gtX=gs4|^+Sr-ky=WD?!OYOVcXx?SKg;gH
z+YAW-t64e6OY6F8-fip|iPY$m7W?FY-SsVL8+fldGBRRsZx1^7*}5s$*fi)9?xG;h
z2{h_8ul^U_nBbU5GB!32|1=%6-t=pDUB>sv=&KSVBf%4cKghKKip@y^@NY#NoSrJg
zcAbGC$=T1xb;2E5;Sj`k&NTN=<$gL+Lj6V<On1)~S=7uWC0Ao5L`9*CV`GEDW=1#P
z!LN2X+09j6nBU_BSgjf+U@zT)-z$Nq1TGfx+lbmdOXu@3ZrN$tGsZ}Vu0p~T-kk}E
zZPc3-<V!L{U$m>K^vaF`z`*ZN1?fuP>i(gXmaZ~C_fm)}k^W$Qe!gxh1XWl#ubM1(
zwAR+`Zn?YY7h>XUjyJB9H#AJ<=XXz%=o+)*s^kUyPMO5~Jv0!dY)drukIu7}%`c=c
zo$nMWot(6)8$0|&!Pa<uv|q-LH@392tbFxP7FZ+yb_H`g;00GxN`C)aZ|f9Is3dd9
z!LH}6E9t!oz}bVI-d^-)0)0S!V;0ZjlLlKSdDxH$fF|ZTzAMX+bXQE+-F(PhO7rBz
zk8l2peQqy6>}3G7us9nq>ZG^=ss3+NADs4o$N&ANl!2E2m0bLbNBmF5ff4^#=J_9V
zG%#-em8AT4E}CTXx7z>4N#HyQn&Ru0b%`YOmZ6nYNa-ZvL&QZfixlH76lK%dWl6}}
z?^=qtFkJE4Y_dkiYv<c*L)0eXGe%vX;=>PhE$c*LeYN|%JZYqs66h_9ckb;kF>Ru{
zG<ji8e2w01EqadHNyq;kF)0A~Z-~jDr`_5j2ZJOQ?*Rdc{3XP%qQEint1Dsgm}$HX
z4<RH7Ro<CdL<%)=X2^K@Wa7zzQ%dUn$!#wzFxQ~Q&Ug*~B`5jA^(UgsZ2@_?g(fI_
z5MQE_#X<~k3`|12CP>xZ=n2zVpu&-OnFJlTyBZbil>RIr`;;y*DdszZh0a_X6t<M=
z*TQS+UpI6hfvd&OzJoLF42+tkj)~M<x13@J;8gfEN#d)rz(AJ=sS^_#AQrT;>>T(Q
zARhsCi__<nF6zocsAp}}H!Hv02X-|bA&QtqE<ZlB!~A5Ltfb&^L|&E}$Sg+2V#y3T
zFH1@?w5r5HS#i*+TAsNXKra%gkyvY~kS3t8GOAZ;n(L@G%DPaRp`<#xp%F0cx2vXY
z8b0|>z=0r~A{2rw>=Dk!jlpI5%z|T;lO3E6qobnw9}N=I^Y^;CyO&)2_G{oHM{31_
zzsX58BRn4mHP%pqOe!X2x<PL)vmR$`owwRv@4Lo-pYW+!7gSU%U99Vjt<LW#Z^`Iy
zbcf`Mm-d=%$q=^EKkt}1A(ARx)yzv!#FCMHdBLMpLra_DqU!ESQH!^V{`n<BSG<#1
zuzZF18P0)c#Tq?m9!8gX$04KmzLMdv;smo{c(KW^`nQBH#DpZrJqDP6*~^he{Q_f&
zH-48}hDWReKF#R6i>}%(DS>?~@^rkjf^Ij3=Simw7#V&-U#S0XDlBeX8pz7}n*#0g
z(6foH+IYTl0PwU@AXCk}NnI4hdvhKVxvdR?v*~nmt>aLCXbRK}gz7op5^_GTb%tEq
z4u=5<JsjU!r3R7M`_3w$>CF-l`e(O^&&_OIl~cC`FMi@PJLC1?@V<3WNAkHAF{07}
z)L2Nf&7(aRJNPL<WT5nWbu+Ye8%twYOmo@k;Xrh(V2<3kyj7JazcLs2hSuVDWs9+y
zc6D>xOM{C(kNfAG9PV7{-*eFt{gF|&9k;uk9|Ta8PDAv2daCqKphkehN4lUWnB_aa
zbE*w2Uh#&hN`r4E*A%kePmeTc8osPq4qmt^YX`81-8G^jMBAwc1q;1-F~%6bPUYq)
z&xIHWuL#jG>MIMgr`qrXJqvGSPm-_XC|nm9s)y<}2ocE{Kk#9L=GM8yxFvS5UBzL8
zXJbXR8QAH|;@8k-2RBfLhlPwG4);AR{j1;nFmGrABwJeV(`(eo+x;i8M>0impcoag
zhYum2Zq&SL9#f7#Y&U4L!DigMUn4TVki4f8NzZ}IkM13p$yhPZUb&E#1g$Kg1Nf6^
zE;b1AHr6@4+DxOtue-bpuG^XyY?j5dI-i2oPF_xnynWaef^0MoKH4tanT=nYj;Uc3
zk6A?Llxv(ewAAF(o7HGpXa&AaL^lnW?+40yYYZ=^Oxy`XEtc~Xv#l~@&kif5R^QNC
z`sC31&`WMBm`~l8{OgqAd>mJC=3QF0%fNS)M{w9ijJUr_OJ@4%=!pm%cb&_tpvR_D
zZV-W93xLT%F8hL`Fy6Cn+Mwu3YXfZ_gNZY7Bu>$$bayMFbT~{sumjv=q!BO1SRaV4
zUC)vJI+QS)13COTtj5{vf4Ge1W^{&qsh)JZ`#>X$LKCCtI%U-&0+(#9CC_V|7reUn
zWaLk>jzWm|mVu@~YkQeC$Lih1f?@qy?34OP+zz9}0>j{$yWn6ZT#>$}lWuOInMTb>
zvaMEEk4?0uuNgtO)@_tJzoC+oFMsga>Wpn)cy$(H3D`I8Spy$OGVNENkAMsx5zxK@
zHKvMX)M<ezWS=GQDWo$Ks#T*{i>K4jcJsX@K>Q}*R=|@}jqC9BHsE};RVV}P1Q9un
zpCB!^$SbCDs=4C7Ji!vb?i%1|Z~?vqbgd4s?1iU7d#-g2J<5QNLAOS(YtHe;Z*vrj
zO%eD7q_@`s0=#@pGjc>r>oSTgvcp(3z2m>;lvz5bnX2_@6x8gOyW47maFRn$^6Ayx
zHv>w$GR&fvdLEUUT~?Ii(T_zoyK=H6LVrHtV#}cPIfdpKs}T({dq0-=2WOcY>n*3X
zscgJR(Kd_!e<m1TPWFfGA?gtr?lEZGm%KWR1$=F;5GPPuQS*<WbK;;1A@1F6j2YrN
zE3?ocvJAXrP6H(2_F#m}hG3IhqES|ZQ&i)GxwToqhaU|xPFXYTBNMyDXRasbbM{;T
zhbv_bIN$~cy*JG2A%f0?B&S*by!@RP3s%JC_NPOyYRS!L!R1?T*8HloWy)dFy>FKk
zXi9A+GmL|vpKdRDTUiyKYatcIpD2@|D}qC3fm58=fgUknDi4`kdNo-w#SiB9N_$vj
zusg`WVcCKS5~vy$)aHD}Jvgk$)Jc)S6Tilal@`LYF67Hy;ul=~x|}{wr(6#Z*Pfv0
z3v;$-UJf#xx6=g?vXrkSps8ki1tz@m8h?|S!EJSLU_u(Ol?Rp7%XP`!1||hSeatN@
zk;jT}Th!K1v}aut;<2x~4fa(P=ZByy{Vi+o1<i`9Z_`h^aX{Q8l3!l#Rl*t1XX*6i
z8Q_)@Tx@kg`aE2PzxwUzmewR~CS6C@lC}U^5xHcf0&tS>!IjK++qOnh0M?+8C4RGf
z3(&@<WpC1)JDYE8Qn?gmXd54u?)V}YXdYU!4^|R!OtCp>Q1JrUB{-<%$6Vm?UVGKN
zZ-&PZ*f3X1+H7tym7_Ney0QR#Lijao1xo*MMlw~5=)zeDA8au+;+<-zKV){hP5f3a
zGNiAscM$jv7OMCEfQwFm-@k%D&i@G+{te##ak>EL^MA4PKOQ9b?WFvTc1!JGf#UHk
zn!Yb{Z{EvX>YUA*Y3_ftGj&cH@vceuM@Y5B4>y6H=Qif|Du2G+bn^fYx?87tPc6AO
z^-l$Mv*Fo<|H6R#Afk7|vfLM&*|43R{)hvFZeQE!HF=Zc#{zff8y0ElKbW_V{p$QY
zZMh!)K81XCroRtmBMiFz+Z9eW<`?+<h$~ZvtGXbZcta%HYB`>c!N;eU@mOMXF7(n|
z{^=8>41DdruLg3~6hX}106vJ!y>@=EyylZ%p6~4Iqv(8ey;0_oH<>1XEq&luvAfOJ
zX@eSF3GXtRKgLKke6bO+Y06ewMu+!(+Q~R{t&6Naa?h35#lF}q9LX=~mCCL?%9!la
zSzY~S2B=2RAy>XUsM;VXR`jL-1uAl@hFW^RdYfXrm3)uJZxZ%aaoGp6h`JQ;y0o^u
z6ap2yi<5atCEQ;z*&I<l)fEeamiDQ;DuxWI6DR@|p$`E7c5-as8y4MhePM72yOwSN
z9J2T@wa#c3vz+UQ6EL;2nQ1Ox&OOqAg74=g@YAzGQ0?<Isq=xB9GlM3)~*HZL@MgY
zk)f2&Yo}}!1uk1EoGOCom%5FtGMz`CZq8N@p4lCEtqI3itd|Zo*GLy}C3^cNAcOxa
zKeL&O#8+KmX2Tv|Eekvyp5!<k@?e5faO*5ouiG8r&P8JKNU)tkfXEqyYRms)YT|}$
zm?N5Jg>|R&4O||37$J}SS-qGQ2xnma%A@>sp!<Y`L4z+p%)k^+VS$2Qzq}{C&PC^1
zVD+7H>rj+Z>Xx8;VV$E4gYLea3PrsV!IUz-evHDb=BeoGv#-$8;p(oIwD)dgOz{Gz
zF@TH)st_74!s3>?h+3^Un?Z(_ZJ?K_xr=ARLRpM-_Y8xnB&#{|x>tM#<i+zGow^Yw
z*O_MQoNmdTds1~NNl<Q7WT0V!8RfQP(**swwY}4^OUd<%U+Ex(XgPvkgJLv&9{Q*L
z2#{$W=L)ao<C>|dmq+cTrgN-<u55t??xnRD_J}Z_$;#^S_+3i@=@+64Lb5uBTOO(1
zgL#5nS6gS>B>|EqU+{PupFYx<FOcbY_U>HbZez#7j!@BLNOw_0OdLL6mvf@Xbz|rK
zSn~CS*+yj3z$C-a-q0H#1<e(!vEJP5>B@ju=a3wOb3Zu&?x<3eO~%{ieMfSq_=f5y
zK}_|MsKeoE{tV49uC-)@G-rS`+6k+vU=?cxD9@Afj9F{8)m8h@l9nNhM4tZZ@uR;M
wh~Fo${wzEH68`(@^H+8Ex1Fc_=!Ii){aVNRdr{OTqytjw$~sDA3Xh)sA8eTam;e9(

diff --git a/docs/codeql/images/ql-select-statement-class-name.png b/docs/codeql/images/ql-select-statement-class-name.png
new file mode 100644
index 0000000000000000000000000000000000000000..705db268ef559d3253e0c23d2d4131f4853cabb0
GIT binary patch
literal 150727
zcmbrlbx>R3w*`trvEnW6R;;+YySo+$?(W*+F2UWQSa5eQZVm2I+>5{TzI$ix@4i3Z
z<YXpua&kV~-`Z=feG;jnB#nklfD8o%g(fQ_p#}wom;nU^Q-lNqIaBV-5(5QA9POi_
z<EHk_lg!D*(ZbpeK<4J{1Rw)=SzACsd974uS|(Xkcu2mpBcnlkejR{Dm#{)0=w9ju
zpWm^sN2yq702b4hds$bZw%?`$doGRrnlR1Em!z|*CA<IpWM_F}-MKJ+NXrw>E79rc
z34E37dCBP~4gA(4M0O*)ZTa}<Sli=g6!7@6jM%gpaGf7`6>T2aUhs1N_A>J6;chkh
zMmQz{v*zze?bUPMgI}j-phb%fCF<EBFi(G=Hh#NbF=gCSf4Adi<ge#@H|-{6jh9+1
ziSn9X9*4RTb+<-xc;lQrH?OcVUrhZ$7Qe8oP@7*~?A*<-vcV*|MNgl$G~Ldaq=~VX
z6gBa&o>*%Ci=548C4x>ccG|(<09MP($i=1hr<a_I2PG;gdiwNYp;sy%%YAbC7|B3a
z{137hX@0*yZ5j6jJ|hRp*pY|c|M33Whx;&1*<7+|Tjd9@(mM6`QQf$r0|e~(Qqj5k
zS>a1DS+fRX6OQkcV2R!}nP_z4q1p`%>=+||=&z;}DF+1i!H%}FvWpeF$3s`WA1^xA
zCCOR3cw?1|<#|SkoQ*$qI2$b1!xZ%kQnj+0mVDHwtBrilmh><DZ^6rSMd*a~x2(fN
zwg<XavRU@`ya(B~S5uk;prQ3>hNTtnG{cs&=4TS$b9cHt_4pi*Cw$A?eQ>lkx8sKY
z-&^<jl9c}HWrvQ}IQ|Qtg%yTcA>Xq*?hU__mY=Uli-AvX!sbk`Nlh;Rx#hb}&~RDT
ziRdO}lGAVsI~&lJV%HEqKfl2RPr8zm!F60WJENxV7nx$)6^^z{EY4CEsOwh$JYafl
zb4s6VDKNF=#gpw*O8a~GuYIS9yz6@w&_PJY4dAp41$SQOsC#+!eoSA@YFRYVXsY_^
zm+w6zEy+51zjvFEv2b<Vn@G_$TZQ@X1Oxj885(i&a3tP!1)-DiEiUx9D<9I5L*|_r
zS<C%J;&3`%<aNi-^;9Y9W9wf=%|o2?N5QRmUeE%gM>zr?+kW4i?G2VJb0;&AD8Kz2
zn(uhx7E)PGA1Ms#-1}1<4vUu~-33*XI>KsX1HhnPcfbB~fTKfrUOYC!SG3=$)-$PW
zK2_#Rp49i5+pNCJe@{qTsfsNf{<Hcw3&5@G#Gf%w?-#P~ejePNnem4fx$ME0bq>M}
zK{LHG8}3j1=F{9UP`)$RyVWO`(_QT9bX*huzh-l)KK~-PSo4mU#eqRr<MCT=s8!8R
zzRFuNJ3GT;{=RlYG3U!{h^t>UgYNDzu@%3A$y{GX{@HJhgiu|%OrPq<s$EYeBGQA)
z+OKdUd&m3ELt?_hFD1q#!iz@a;9^2<ZyI6e+|Jd49C-~VvjXA;duxN*T7I-Y3;Nky
z7V6!$&Tq*FC{?6%U+1Qxh3fs(D0PQh8P23bzEIYCXvujq@lgStm+Syo8Cuw`yp8k7
zt1snyD?S_yqEIVP`MNFRyz{4&m^D`fwe~o2ce0W(DVh9>L!EZlUio-NT7@HRIc!!R
zL#p*ZmQu6h%P$}sN{k3&Smz=FRzC%1`nDPVA+JriXmmL`lF(wglj3&x(lcEiA{>M{
zX_4VQKa}GPh3?-3+kbXD182Lw&tj*Sq9G~Qp{)}8$*2;6N3f9@%@F^3D_IGCmUx1%
z-nrXLH}E@y8m@iVvYin#jFGh2cmkPEF`lM@e|>^`<{P7?ns?}i?t(J{+X>9>AC*HW
znqUN0HnUmfFImj|p#fc1z|I>_${a3iQga*Isq{_N7WKPQv7(fWtIxr$vz3_l_G0!~
z$!=AGWo#HMy9~?MrEe{2=VPlj>-sm*sP#jyIC~$SCugm>Q=vYJClkS^1~zuEr-F)b
zD>i)axtj{G;N{XGeJx9bgF5`424!7{=uzB|PuYHJ2SQBe|6mbf71mxrogNg&g4PJ{
zhc^UMU<;+RkC>k*k{zrga6}!|ZV8QN@67+%Dccl2*;?3V6Prk69;?Zlo^rHLQ#F=P
zZxGmxK)ZrnIJXr&hUdil8n7;GSbE#{$bdDmV1ycK<W5+)%xxdvO6%8Wn-|pcSFeHK
z&aF8|sI5c0E4&|e1zS_6JT1T@$R%RkfA3FR!)%!pKAHZi3T9)|lkGD{lBC;Uk({p|
z;GhvdJ0ZDz?)9n}ZK%dS<AcP0IJ3H<F@LI#s-R%ioqDt**XZ|bH5o7;qjzwTXL733
z{mLD+^apMp8?HgYGbjY31gxvCrWu3bA4m~1JGt}3Ds#Tb{6cB%T#xz`j8|bpApr<c
z@;?)gRGic9$qafJBVCY#4o=6x!g!MLlg(hBT!S8h3-R$VxICxw`jEw{>AJ=l6ZVbq
zSn3JkyyR5Pnjul^(#^mIzOo!XD3D#`HJ1AkJ{ymi@2~`Z2GKka%C>Ir#5FA}{pOi0
z^JyuJ<Tz7KH?EPh0aN3tf=4j+FV?p{4!R;AP0&Misj2Kb9_%fe>9ka2|0&vErISL9
z-Uszi6U?(~@1a%F5CCy&5GFJf_mn&#?N{KJurJdAn@7Q$h{>OBF$x)S+CoN;5_qg^
z47V|G+c85k3d&roEqJL4_AsEXZ({{a*FMbRJ_=M)&7;F(Y_zZ}O!zNWlyZ1)lJ8+~
zd&MSEvZX{wevS^`7l7^*@IrzLJfnAI4N^H`u!O;Qg^j-;N)h51Q@9ptigH#j$_u7!
zeV?6M6=J*oQA`wlMQ)q^pa<l;n}DMuSCMD6bUOOEe>OE2F-BQpiGvYB@%e&+aF!3(
z$R<Uu8OnkhDX*ZP%Y@xa@{J%!dDcsjj6Z`)RfAy=>Q~4!x8wZt%Ws8VbO5Oe5*-FS
zCZmOmE~O!TC|~#I1=qTFERkZUBqTl?5pFf{$&{xmMT-KG!E!588L0g*jnt_9xK6H!
z)&+}&EK)R9Ie&@2f~v%Wh%~bBlBhpxu#VtDJw_=KMllklk%EXLy#>z*O=QEWKI2-A
zmw(7WHAj|f=b%WzsO7y2au!#Y`6zN*B)d7cAd+TIknUxr_^0~s8sU!*I+lAh`DB+y
zg_l>qu-1iV<TDpTc!SfMvAs_cFxV4A+LtzecxF&Ln|?=mw#CBvg}*Lt#u-NB06SGc
zQWqz!u95%~4=<oPS*={mEaHx*8~-^xt`P9+PUc#2&&|~$QWXh}%P!v}Hi)}3cQ@6b
zuM556^RQ}3l)sZ;>frZ-P*>t@Gwy9*pS8K&2Xv)<s>schLJ7alxh=Z0-{cagN@71*
z)yZH2##FF&a0sJuVUR=*s2}j?d=?lR^RYTd9lgRu$e37aY?wRc(qv84$`R<Db6>3K
z+i~`aHB{q<#DP0v>Evb~V~y|DRxrLCv&uXrB>mF(vSVh(k`HBxe3x)U%^LYPx=uLv
zp0h6WZ8>%HMR4@0E&eZs3OP;VbxKN!Hrm0-E!oPi!FGHJ!YLVJG19~X7uB}z*;piW
z(_pK7e$i{4v)@2QT8SW*9n?j*$B+0lnNiC!wr5As0y;=lKQ2c~WujqDI?GUAX4@Z3
zk~d0TR9T(KbR@X7;edJ=gJMj*^VE&hwLkxI+Q@tj4+wq8&?`=vbrn#o5<*)&l)<<2
z4B4e<$EA?kYLud14yxn!nYE$`BIGLNZSn$E?iACq4eorhh!^JlbK~2e7eM%SQ~SQ;
z7>v^c9U(46u9%L9J$6}H%d8_Ah@JD@`WGCWt2A$LTMN-+R>9I{XQ+^vOc1!O^=p%3
zcEDzpN=X9n7wUL&nn^vK*!X7^vJkAlbXL~*JcJ;ZiqRDDq$dKnM+SStp7MUPQEURN
zqkQEr2ZjVq=rVHXLr7d9q{1<KFTIg?1)b5P2Wr90MmX%RJ;$uY;%a#xU6lH_VYf=H
z&bG(s@py6en2&k~9n+P%^PwY6$D#SjXMB!23v|ZIV$j@k73j5Qx*YZx5|UZo@pYmL
zed3`Ae@E&|wg}_YIF8yED)s!}l=xzXTcXPM*R^ny<=!EMk2T5Q`td`;O_=Y)5<zw0
zD2wdQZ&XEdPmYnyqG6f0snXS82`_j=0j=SCEV^4_n?GUAci&jx&&9xKjKXU|P8a!C
zqT{#qTZUBoNqN>4XG&>7*eaap&<L_hfrw0qiDSMA?6*|PpSAVU(IrdGexLeVl%&8#
z5-Eo7?ObBt>d2@+tUzb<R>OOaUn0j5&4v=%UKHSx!VI04s3&A7j-$a2b$si$icn3&
z+U_HT>82%%Ox9`-3yE=)PiNReK|r&Al0tNkQWt1TK&VcV(cbE{9<uQCm!D9fGBWpM
z^QhlDDhRt0S*0b_N0CAzu8>K=MxyyxA_+gPL<6Nsp!)fcMuH;(7d0nFYY9dNW{^v%
z9cE{&5(5WL<1?Q6k{T9%)-8ZRd?i%+V>M9L@r(>6)JvF3Qi#02-VL!@g6Y!ew_3CV
zp?ti6i4;KkCB}`}BlxK=cVkv2u<V}nYgD1sw4}mdmTU5IY@>2q1e^+aWBGpR^3@zl
zzode37|d!uZg?xd2`>hnRn4>YOL>xQ3e<k+m*H4aOA$GXNh=Y$+M$LSz-~$HT)Eme
zcM(89PP_p(QWQ!sYEdN_>j?5ad0@^=*SQI8)FpCA2DSt43!-JhUrz)K#O?@vAAcE3
zlf`aH`N64uzDJxj1gH1*@8uc7RG&>P)s*p5tV8mmD@4^V-?EAyj*dOcc|Th>JNnDf
zjW)6%*Yq>P8uSXydit!27AxsCeipCjMFK*jO786z$666kCjRwA`f#U<E>dPP^TioU
zqgXHqs);+1q(nA4!M76%L=dceMdmV$i#1z=UWes=xfrBxwDfHV^&=r)cW7#p4R1`u
z0K)bv`xd*?I15_DHT6L9V85#333vK9)yz~~INEPJtH@ijK+fMVQq&6y`ME}mU+Q?T
zGEh(q?{@%u-z`eVoB=9`l7`N{z901MD)MO-7M!dX^mPkJvPVA8RUiWD8@EDCw<h(p
zN@n60P>#fpE@ilaCzH}~dWz|fO!|yTgNX{&M~RYwr}+xTb~wSI{x$$cb{LgwKZVnK
z&cTn_izY;%hY06c0_6k&Nj!755b+;OR)RIdOjxM55#OW|g&WxfFxXw~_FcJ?VY*ht
z#D7wlggPB>f#ksIIf|NJxdtg3hJr=EY|0&5`bqSztE`!+T#L|ItVj5U7m3ks<J=wy
zsy0=|GPZh!Hv8^%G#Ql2c&XlfSYh)5j9JW5yas;&^qPtIUy@WKXP!cHGSjsxD8`B9
z!cODb4!ae0G}((6{XUg(_M><;FBi4*qhqT~5e%k2PNyosB4b50L-hP~3EL0vXX5M_
zQ!^c<9AzuI#MuVS?n5=;dPyZ#9+{sVDY7LV5DZ03z(2_TZ9|?wZu`jr$4Q~77>(Q<
z`tHRL@9l~2mJ2FK<XEMkR~bc)AFon5OO4K0rW}rg;Z427b2d@nX)Xe)MeqxrHk*|K
zWx@9rn{8MxRjQUsOGi`V50pURtxW6SpSTWRf&=;onN^^|B=toqI#i5l)m0)iz<Oe(
z@Maipn~^@n5i^%=?;~2+L8^}Gwv$f@9|Ys4bUM<0+z6ofpRB-?q-@#eBjt!p*nB`h
zO9w1NJEhC>QwTEonTB@P!4S>|Su2N4dMhXyC`N~*tNE5{e}+$;m9XW!#rz|OnUX6y
zqf#d0%aJ<a>bb1+rQWd|6zo!g6fb|lH8y{KEgk(KuAH+O6Fxxoj&X4sr7n8j9)pRd
zvFW=723>cyMtu0pVX8+UBTqB&{Az_=aoIO9@6`EC8@1yigbLV7y%{f>2cFNQ-OS?5
zLxO5OWpfjH><Fx$7&jQ&Z?cTkmr~C_RUgD}qIOWHUZJt0;)!9z9mnx6)OM?lo8qEP
zTOa{g$xvv1Jy5_(^=B8~Te$jBD`g%TX=t*o7mmspO1bOKQmlecW@2?CC_UUvnOr8A
zH?FZ*)Cdvr{YNu*8Vpv%lSLsEd&T9KuI}=6W+m6iDFb3fo)r@MUN|stZSxbn&4OIh
zge#KbXQXf@1z)$(#?jn26IAu0pPK!U1yLA^giWFysY(G_!_tEl3wgK`<V7WSq(53E
znW_rBoqiOD>$;G-efKQfz*;h)6gA1M2$X${5qAnAAKWJwZL{ra62V}>ErOk%fKrwO
ztRidZOKAkxd_Cwyy^yA?C~S=8$>$l!Ib@hqd7shnQbOd2Hy>MMGxiJqZEG1!<@Uz0
z5H0Uvl18QY&8D`bd}N~g(r1XsD(pA5z2jh*n3#4AN}X)KnV{&*fD^m>8^|OXJe1Y=
z`+G;w#3&l((nf*S3MOGA_9*L~iXVLBGs;Cy3@SOX$Oq&tiq$T^nqd-zjC{6y3P*J2
z3A%XT36LE?vEYh)?QPXN6m9^c_fTfHj^w!AI^Xi?@hgUB`9O10sXaN#O3>i`HSS5a
zh#1}@{%8DK(_&2|GK~ldewl>Wh2T{5PRfer&-L@MM?YXC@~(B!s9ruS6fDUG#f4RR
zx)+3w<LV5g^cmsY;j9+0vj2^Mi!Wd2^c7<m7gA(q<TcSbrnT-WF{6$g9CxtQ42nvf
zSypmZbSZDRg&&jpDUW3&yLvs=q7hPIt=HIkOMa)*VkW|_nH5VQ<!%F=>M3a-RFJeF
zx2wLq8907<YlVAk*YDoQqK<*2{;}4O0Ev(M4-nfg;!`&VAyxF3<4rwy0<PIpxghpi
zu_c9JWNri-s2yCd3OxdNQWLB*idy<Zo(s<!Iw`q*Os_qE;`F1EA*??P<+_b}v+f7*
zid>sRZb=B=36YXC4}+NIpoJ+|Q9##?pPG2!g$Ex5=@1veg$?-g^M-hdEi$h^-Cd+@
zA6gn$f-We*b03)|UQp*{2`5IGF%Ub1a=APk#lDY0U(OU?tn&J=G+yMBcmYyyrV$Wl
zd<#uA@J%gBHvly8=xkkMTYHUI!=(5<$EF6n2@OrusFsDdNOP$U4-A&O3rk0QeTAcD
z;<J_9jMdL}2H(qvw}fP0BZ=?a?;n_FF6VvLLjR`jz0ai{OqWkg5A>Jykx9}?L`CS?
z`9P-ybZgu8tv&u}F>-xBetQUL<9*p(x22HS9+cY7rx6L{OL+M<gR&qsPd0aTadBAv
zYxBGKmKX*Dk3F1CPsEz8UVT^jW`%vF{dZ9b^x~I@#ESi=GqP&4^eio;rp|A{eOo?G
z(S|l|yQT-Q2&5TsW#e-eVugy*0Sj9pD`c<)stjoof$;%}JNB$i)I{1vU&B(Ya?Cba
z>tF1>B59pVBF7q8e^Qd0CdTfp{49j>VXh-UNXV>**=**hl#DXaACV+nJ>hqR+K(wo
z9Vn;Hd~x>E=ET5_tTEUOStf|7prjLk$HVTCbtEG*37i3G=ytf*)T%X#D_zWVw;3v&
zGnxMYhqm;I#2`xD|9D#*W*~v%Y~i1iV;!cOH~+*M%QE{Xq?w|9>So=s0A`W2X^-g3
z&mUKP#Huhf{@Dv{3(s>tJ<Y{e_998tP6cu{EKH)kj?de8^8BCIGW$z@xGsRa61B)Q
zVObSk7pMLvR`IFl@54vHe&0C@%69p>SNfSyl$?p$>hPC&U)1M=%7^_ml@_-qy!PSQ
zxH}6|1zb=?S8hl|3ZBryV_|>2os2MX1GH8XQfz2`u1nI5ik2wdD12<$B=Dys^9&8Q
zJcP1^s}C1eY`p$)f>%|!6Q;Z2k2X29C<8b0A~@`>_2v|*GsrTWUu^Z5a*w;)u%kbG
z1b^p~4UpEt6pTQoQMzpFLBWe&j}~Z7)ue`|C#ln{blgo*o|^?`<pMvz>QPT2I$_!-
z#4wW8F=>~7CsD%ZIq9E#Y;UeNa*loCUx6_a{aytu6O`$snhvhM>Pa=V{RmnvARdRS
zjB&e{Tp>%D5z=vCLtZu)r{>^&U?iMc4E7}3Hq7!aWx`jb{}q-Jm9Ll5wOP~PJsv0O
z(OYpOf31)B*w~|CqIyQOdgSK$Ge*2H=Rjo5w0^qf3bE4W^)7#%Ol1w#49b_5D-xMM
zL^v>xzwo!a(y(-ihqwDRXCzW4(Qx7Oy%k@6BNROcKH!^9m+Z|%-6su9=8qRR8q@?t
ziHvh^a2M4`M_0XmozhIV=N0}tmHW_g!4_PXIFEMVI=y`6bEMnrZcIh(!{jCZ`iX2d
z!LtX9xDNQmwrQoJF_&)<m3S+ANfH^~VfYr+UQ<fE$FW<|(bEM?;EG~pb@WQ-+AyRf
z!Ioz#usDOR;woR;m85KD=?u=qf_pxGT@p&0A~@QTUJh<tE(cX1Ns^K9MoPG0s_iSr
zwaxHy>|vkN&v0qdNV&*&D6odCN<Fh4c4^O6>{WyzW;Z&+rG14zi}pbN6L4t&T?b`q
z++u@1lCTIL%0jHBR%UUFwwUoL4C-_qm@{?W2XiZ=Qo>HmM4qcs9&9RwuTHDqkPpUg
zbCeOCfs>)hUYQ>;Wq7h7cW70Xj=thMVmmX0f@2cl+@kcTvw=5qSC^Y3`GJ@7DzL0;
zCG_Z2@aQS05`~N=M25tez!=71j;QN+Dve%m>wG${!5b2V9;6gOSJIM(cg%(~iFC1$
z`<5U|WME91$?wKQ!cHIN_D!1eg<~`8&-|6H&$cbxb_>^Aqx5q!rnv_qU34*)04CSM
zh`@-g9{CJNC}_0_zoft4ai}ELag7G|<}BjXjv12!v>#b>Ao><^OGSgkl;34#<4m9M
zx=JF3BO(oDC0Ne%`mp&f^s)#a_~b7wSCq*Iv(4jyC*Kf#9~t@`$s(w}-zN9_C?Oi-
zhJ-vewOseOe*VHv3$f0|*O&+i{+?l?9mZAEGiyaLi^2Si!gW5FD0Jp|r#Fc@t3^!G
zceS}Oa<SGA{e?~C^imGRxCQW7YJ(WzyB>L$svMGHzVwD%CjCT>47k<FS?R48bcc^J
z*e&<OL31mkrT5k`I=R4sgko$?mrR7k#voC_<!}jUC%5_!=SaA%^Daz^ss>P}{hlXv
zpMp&H+6(tvQJo8~v(sA(dGBHyX0_1FmX2w7^B9i4mE#2b=#(8n#fdukH8dX=Y-)Bm
zL|#6ZlojV7x{+cR-uz)#B<R$(ZC0lDGjq}L-lRAwaavA=gv_CL2j1<hne)}*EpU`z
zOV;1<Owa%^0eOE*F?Ej1FFu-~<G3~abUQIv!UmIx=@!dmP=V>}kBFY~N+1kvRWoh^
zDI5u9|LtdeXPo00w;m-n-0H)*0k@*APEHX%!d@c2=bxJN9{^{~w%Tt>1ws*_kvp@X
zgUFw;(@-Z0(v?y+1tNcQro?}WYv@Vf^Yw+}P<`Q35uw~sV=Z=peZ1P>W#z0L=>06P
zXViS1qeBrpUK~i<+=wR|%*e<?)IZ_Q46DhOwL>ciC6y-PD#5WXVaya*-gEe!5OyXD
zhizs|d|xCGi@q!G2W2`a7P0L2kKcSH!919jKON5$f+`p3>>IANhz}Ou3<iE4J2B5w
zd`o9#&Fd_&`h_A8AHlN{zKDLA=-`SFhxo<0$hgYtg#UY56I^6l0A>6AKn83G4l3e6
zCQwcfstkmO)L4M>k(=p8{>$d|&NP)9#YBC8PCBOy#yLZveqe;cvV|5-5Ms{vWSVCn
za{{5B<xt4Xd7&OV5ihK$%9cRmLVXikTYyC{P@q&jd`5o;vx<(mfRcqzgGc0Bxw+r-
zP7C(8%^+OZF*IH|y4YwXyRG}B$CGMTQCh2ayz`mIJ(k5QXdIM)MF%grMqns8uMNrp
z|J`gdo_{aYI95Q25hsWcsz3e6`*fU|-m0`r@XGNhqAxG7IPfOfrY)vntoED07l#fL
zwyL<_eK9yXs(pinLs6m^`88~djDI%te74_F8~vnrN%w{}tz^_)tgNf0c78s4UXt|q
zxIKy5FEx6^jcauR>M@1l2{XrJi1xnS+=^xP;`%g@MK{_MFJr_wUJ@4kc$DH7Z+}rA
z5yISrjV+u+X^lNEaof(qKT3u_FvY0#U~S|{k4VdW7!!o*NmA4igk$iKwj7RZ-Vh%;
zgQxCe!7=xc=OZi~82Lr87>eGt^4oqhkzeZhykya-%?KBMjF9p%Xc*S?{S)dmi>vs4
zvndo5bf~qsxQeW}`2Un;A;s8i|3pEV0TH4hWAzd>N^}nl=TVg$#)v2$8{8-r@&)8-
zzI1~pctwIFoKMnyO<P+dri*<;y4r}^q8Kkw&TcMhZi!g$X*ha=K2B@#o)09R7f=O8
z7VYbt=tp5@C0Ne%$%d(7wHV}NF-8%{4U@dON`<?B+ogkQJy~-XAJ_7VlqbNbNHT*B
zzZ!{l&~}a$NA^0EiM~lnQVP+MG#rHt#v5q+2kaVL>TG3TGUQ~^#$m|+;L=)6$7Ra#
zisGp}M%YKe&*PlZ&%Sd><-8a(raOp91=P$FNx?+xgrI)-Qb|{UipZ*mre;@cCA`rm
zy!Qxjso47xoM;A(d!!;D{Fn6Qd}&Hq>94FQ(NTc&dORjsBMOI2&9nb$dn`8DUsMBp
zroa;PUw%nOw$`(h`GJJ3tq#_INSxYWQH3(1O1#t(N)x7GFD!2rbxpSLkZK>hI3Jv!
zpo%N1_RyT1kYe!Ye7goZd{=y*9~2sTNcTEi9K?cl5g^6#4^A?=u24{T)c@YlvT9V9
zkdugRvWk+32dFS8=oD08w?dFp2&VGV5>W5|Uin>R$xtv%%(4=q8eS`>UB|9C+L;%D
z@4?TNl<k`e-;LcA+>|Az6&iPap4vOs%^q571(!WM)9=|{kg{y&O$bqAS@|O-gLL3!
zVCs<)M92ndM9AQfsDj~S#86~l;HWE#=d?;nDm9{;lWu*<1cxe;Gs-|9kR0{Z>u?Ky
zOp5#U9$4;ij5hB^c$f?+<UbC&Fit+cC*c`n3^>vMeW);^FcSXfrASfk!2t39eG%ky
zJ#(Gi|GniBJP_?aZiWFj)ZPms|Ih34bw25E{b!>XI43X@VgJ!Tq!3d>6Y&3ORORRY
zkIr$j>UgNTqO{dr(%3$Ic>4ICgFFJLoPthE4}gu7_<NiuToFtK_P5mk+07YqO-9gZ
ze}9%9Ml;2NRJ_=Kc27}g2yX&tTJNr6hhhJJ#w`0&=Ns4tCo6!iWEf~Ua&I|<F#CT7
zoVgbD0myVXYc0)&^VpOR=S|-Gf5)FJzB>&<GoShYexbJe3&i_mhvaiGuE3vkrFLia
zG;0<)MxT@?#Q8&4&)In_CZpl~D(?;8|AH4?;_kws>i>!zh)paAjMRjR;%sVadJd;+
z>**oAv8DJUC0fu!9~I^B&E$WUok~k_w^v)%{{7~Jb{?A%SGm&)11ZT?K-Ysxq`4R}
zZJ$TLlR&(NHeNq<UW2jszsm1Bo^P=sPG77W-0MpwpDfPzKHrAVv%h@0+sJ#5`q!qW
z=B8y?Zc**We@&k7-n=N*TTghP+Vxn;G#H!T8e&@nGvP(|G%nqvH-7!EmB7~XNSj^|
zI`Xufc1nlmaz}rZZ*W5^_+h3+Nm<mRXY!P1ES&f<E-;_qh%<@x;?etL`rY?Q+^T+d
zw*JNUT#?ppzNM+Vy>9!{jbh;XZ_sreXI1a4aDKx+rK*LDc!Z&#)Bu0MfM7pR%A;M{
zv|wZ;79fpo{@$vCxO1u_&vji}`w9eTw!c0RIyzGmj)Fdx5^pOlZ-99}0D0@U=!W5e
zg1m6R>QYMl5isUkxN!IG&GCD3`H<;$cO?NK;q2&tMU0}s+2rxvyuvlhL6(%%Ep|oe
z6nQhpwfY1Z0WX(($I^iNQmV_ROi8kf-lIA39J^@$oQ2Y>2Hd+1Pwk901WQt?Y-X1*
zzB>xlQjaFjk6k@nTc;VzXYKNY_p#kgg^?X_?d>{856)&_Rj5g#sip2@a~uwGo%@W_
zo3&#i^bsnZ)7}-Dgf)kUb&ziWzah)eC-0y2rwKmLHxn#%cAU<PSq26Mg&mE=vK?)6
zBnwLgiT|~SGh26bxE_6e=zCgUWpLFrj+c!ZU>5nzeC>7DlFdP!EG(6t46S8y*wZ_m
z_lgEipLfp`NoDIQuiMR%5RgW)H8DKYoRqmLthK2z-ySi4JvM0Rysl-oi}+DPN(!7r
z07!F~W)6Vs+4pJSCholi>;%(BsxydAh;>%s<_1RYP7`V>yWiOi-2ZoH$8_(xT@Ozf
zY@D1_-u#jOUj&-@4$KDpYgc=rcdMMpF&Hoc+K6LsSaZUmmr9YCbm5t<k%?-mJ5`rN
zXPVKyUfc6v>cWU*;~bwCZZ`=G--&c<IQ5yxHw|WCnTR78B}tpNUf{oY-G@92qt-yA
zQ{~;)Pi-)U06MKd^qo1ASrIflI6b}L#kPgz3;s8^y`Vl2ZA~v|k;)Qm{?tCJs^PGq
z>8<+Th^A;YrpwhfR7pGS?h&bOgrnoZIB|Y`*75uKP0w|%?c5>!BN~Nv{5-dNgCrU@
zA^_}p(s{i=dhG3y`RU_iC<oy8$cLns+|#Il3<Ax0p36V|2u({fBOrfDWU!=>2axzx
z<QRfu^%>R@itIhPyFIk;9vdMELbi+(xhXKVSt2kK2ot%jFcVtI6cb7-IfX^#6?uWs
z|2=n9kdqs3{iQ{8LknFd;F&?qS^o!y8-<XB!+gf9qQ*Q&`=$<<T>QUMQrHcTw**TY
z+g8BiV^T%FWkH5|Cg#bfR)EM=`mE}H6NMkJi-nd<7x~#?M1CAJ5Sip);~>kQM9xb^
zHEBUmFg^UX2R9K{{vT6TJPLZhYuZFd`+;Y#Vf-$^`i%GA2?JX%%I^;(fI<hz-|!u^
zrm&!ZXo?bO&r-{P-+Q}{gJ>hh+|5?z;2(<)_YIIhyhW#@eb&h)NN6(CZ0EEAppS7G
z{<Pn5_GlRxF=`6T`yEBQ@l}_rMgKH!Im<KWEC8&_MMy#H63QmSw{ZE#X^PN47$B`-
zVvj9j0yY6-Yny;=)Xc$qowkqUsSV@-DF5BBWM!Lr;Gw)&2aAqRIW{9<CI`q3&6)Bs
zc3-jdUi4|P><TZIG0Rt7lxZ(xLHO(V{&^iZyh#1v4!K33hs*O9ILq%TUpLZT=>h5W
z3lUI|kMDjv3`$~Sjd#!i<}nF$>ZGO}J^&hcw7bRq05nv8`1<TOweec9>PbziG(9>w
zY1<6vh*&mn?NBd+j=T^S9xgvIuAD2>VR-?~HvxA2bS_+e?Ak`TASW&^uDST&dQ($M
zqO{pfdDYuD06t_%S+B~si4ZOiZQ>=08?SsWn=+qwpIrpx2<dCMP2ld7%$ocDZO!%h
z_FiC#E0midIk{+$!X&MhLfF<(b~v>@H*YyjeWp~vAe`)<`v#t0Ww5F07J5%7fA$k)
z^PA<lC0$!t8GgNdiiPozQTJ^4!EeayyzPd1r(tm*Yg6Tqh<;%3tNQ29xunPS-K)RT
zVzFEA-nPDoi`yzss(<<#DMuVO7)vV=x}=nZHb+BO_`X;M{werANcBg8VC?h-ITbJu
z&5ewF%!Zwu=Z>BFvNtxbB5nY0h^@v_KFLx^RV_2Z)^L>MS$0~)YT#0)Ax+(7<fy61
z=}uj3p@Cz_>0S?9RA{lnFP4>N*Uofv3wFC7QT`Je@Kpn-C@<k_Ny{k@Nv9mWRs}Py
zrIMzp5i|Ko#lxU7#k_(pjF#2vW(E)*P;q|A&Y`qkkpUKsDsyU~`tDA-F}uCG+R!<&
zsHw2Ab7!!Eec=>wKF(mWht&vP%7?YMUT!|28{67WCHVH$wuQf+2$$n;1?AF+<Mz9Q
z0cqf^j>XI($v>V#lf0mF?`!*O1;yE0YGDrD>Kk~VTUGseYhP`7YTi(osG-E*h*xvZ
z%Zdc`O?zq7O8hzBoO#4k{ZQpi@F6!l*B!q(w5@CT%NmebG0;ej_l>Q>^exYmH_UO_
zXRc<YqId6Ro!9fJaY02@<9gB8p%NEYGR?1j)VpP>3eS-6azyPt`lRIPZ?Fki{9@Mc
z`GAoSxAnx%(=%_$S1QZ@x3P((@+BcOpSJ$8%C{!p&6_aAU*|#r14e3x_}3L$xtZ&M
z$dx@b#Y;j|Jqoblv3Smm{LGVo0@Xz+Cmc{1$&Y}Q9F46|mq#hGl;K$ofkxBQ{&9dj
zMn6?09!CBuG84oJ@wBtsfwUYz!v`rhKLgLWL{jNrf#DV-0hyR)y7$#d{G<wx5@<vb
z;*6W#7c6g~@c@eo;-&f34u^r#K>xFrD9gtI(#-<?4b@!_>n3o!+I`75_t<Suxf1t)
zq2am>>GBi^5fKqPS$#o?>Mm{!$B*VC8XB>ju-sX`*7l@6b_m-KI&K&L*W}cyrAkAu
zwLk7QGW%I=H(<(#G7_xpeJN3L-^*p!16g714uvVVv8bWAm>8T-X$pB)sd}LoN??}H
z<i!`=#yi3RlTUvwjkAGT=X1Y@dt6&ID9t+)TqAR|eqv)KQyCTI0MuE^7o%RbN7Sn-
zE8XLv{kzEWj2&9C!fN!4Pi5pvBTGw!761#*HcgqVu3YX<<ps}v>Nj)RVJkm+UeBK^
z!sp?=wD~8_o86goS|!fria95@k*1K*bg3!$$_E*<egY&@-JVW){TVw-&kIa}_JItu
zpYa6peXjTDef@kb%iwaX3se{{=dI_D<4N^W3bjm%KZ$=)>5j1WZZ9fD<ZOxt*8IKF
zcYk|Wb9^=K%W9!+)L}IH$8K)18tj}$Y0FUY(dS1&RSHH!jH_={2)-^pVT-)hJ{!?D
zZ#KcQPut=*ThF$s6WMK5O{J=Cs_~hyY$c6?Bb$bC+wjl)I4FMnQ+_3DC0ETs=p9De
zZ#O>s?XPZe*0x${dK@*y#~)bezGzyXdaG3Xu?Ts`A#qM_&Y!>I;4<^ft?<9>Pib+b
zv1&h3Bl7zKP;<;`JElBrp<ki1@GRW%h3v#k!EV+Iqo=hTAUg*JjT(%$?DHT*G1sKk
zLiJKV+Od*wzD1pT!ig+`6<CLI_XazHKc`NG=*0N=@Dn7KnF7IcF`q|4?Ci=2lB%>y
zIjRh2XP%oM$3ZB_(T!hO+7m8!n`J!Dfi}Fv#K~EnoJ2swha=WkEtCmtm4GDh+RtHT
z-FeoKpbk3j>w?=NJ?0mQCHkS0ee|L{y4<0Cmxk#NM=<)U{QZ_-*jHFaKg<}6zR+yP
z!@%jCEW{>v(JGu4k1n17V2ySxU42s}1UE-P5Nw;DlXKH45AK4n5(oXXl?D#H_?3{Z
zd=)*dni8Rj-KC=roi??PWwvd8nQb3Qmmvwox@4}kG<CfSL*sXXCdFK++!UxH^>?b4
zFB_hRf%9+eSO8=PP+x$n_F=3Q^s2{K83Y5=rV9?UxT8axUqGo<i+aB<VJO=_L*QGJ
zQ9`=6b^5Twqbta_hRg(<bjYNG^EQw3PYGp;Fh0+FP1r^gzP=j-w5pqt_vkK-vS~3f
z`Z{^pxdIhCQ?p6)+;8c^-H3jj?d#kxB^!#ODD>E9cO<NoLdO9PH(jfs4e&70;VH{r
zVT%|ewb*k`Hq11i-XE8=nsbzKd2vu?NwR(>0xZ*bLb*aT9+UV!KInQ#%myM>V@0!#
z#b+X-k#d<$V~b47*%cx8uuV6<n3M_78JU9Bxtd2?6c$E7pNNstk@SA^@r#w4&eA7K
zDE5(1I&wz>YI#jl%Vw7+LEz-16Q<B>=u0+8O2&%$Ui%@%Vvr8l<!u`R%<^yn08)j3
zh7jg_g=5}MiN;?3XCcGxtc=olw5>QEP_<rDrOPyFYipZD_EZ0y5dO#R>L?{8<%y=+
z%oiVNHBe^)wr*MLW#AA-e{5EBr9038c;?0jkD2CDRV~Tbty||5siz=#STw@6NU$`!
z`~X3RCLFQlDKue8U`~2=;VWB(qFchqrS3h1ss7k+gPBg})yJ^(xl%*Aaej)aZ8TTH
zplD9qceZWJOC*rP+_Q#A()tz~TDBItX$NtwNIKLnl0g6KTitsCK@#N|EC_4(#xPLg
zrfm+^_&LmbGy;x-jTE0=(SL)W9<KhsrEmE>^<+`AG9qpYR!WQ3k{@#Cq?@>ZP=c`C
zA`*jtW`Ige!ztzRDP!hB5>8>E5Lrz_sWTbfM5*bf&PMSMnWwg5Q)F}q)HA!-F#b~n
zct9p)>YoP{Sxhk5_MVS$&Vw$-^q%kl@O9T;ib2q#>D;0d*Qb^V__wST#3tcS1p)Dc
zb>v+wH2M5^#77C9;90*8)4?t&pdu{WLX6<pAuLaT`m+koxZjk`NR4Lee9cPyX5IXc
ziH}}0UsZIfiC}Bu0j~Ty=RE5rf4}aQn1Snql8m{4lRglTPA;3a$eWf`P|D!)4|@T4
z=Q&bAD8a+ynj+15CW)M|Pt_j!`qBndM+>Djclf}Ol8$G?!h&Fm@p318bg@90+XnT7
z*7(PSa0LVa*xvr^+C}KiZRNoJ1B7%Djq#8`_Hj0=cb5?>{N=!=?J^39a7ArpcV32f
zlKr<xR%cz&qP0;*4WC39z%%;OW2Cwzm&3}J!>pkp>TAFc;(<K~@48}eRICm%-rJ=6
zo#zwri<7LW^VW6DJ)XpMD4@q2Ut93cj-c;Hl@W;2KMst|>EauTF!3IFY$H^JBXC4S
zCjsU~%b6wHHmDJ?FXZY@TT(BoV05xrf{EIadnw#i003OHYRG<1V~*cN=SlaVTIkEK
z{q*~BsJ;v~e7^kH3SpLlkyPfEVaR5NM?0nm!VcYOp8c+KyVj^E95+*mrjUQ8Lz|t2
zDbj+J3|pP(0mhXA-MKUse(*@+AZz-ByoiIT8_Z|M`fh>c5r|2#zyBE|Ct;~V53);R
zAiKGPu-6b^uaI57kISZi6k}Gq$cF8vf6sR*#vEtQ@qkAZxCMC8S@s7`QT83NDQdk{
z+=lrXoCvYtSzXkUZ&Jn`&Q;5^F)F^}{S`x|1&(Tcut`b$e%+<T>-09$i{*&w5JZ&i
zf&CY%*qML_c#H0-PKS?r{SZmWr3w|^f}?wXJ@6uxSo@1zQMvAP?6`p4Ve*e@aOvLQ
zsRQf8fq=ih?f8$}dC95uPd=p%T1XLEsDTGMTqiAB9A^Ua{-7D>Bak8HMdj6%<pMyP
z!SfP=f)MS-7ckI$VaoC;{|n}~q0>di2_Ws#-!B#RZ@KrvwcOl|gu@`$i}t<4Oi=xg
zFL|0<`AUf`XW@h}NS_U5W&-?zuUBAQl8B}nq)mUj-J*^W8u-4+K;YEeJcTJxvt3hu
zjGGh=!w8*Jy71R!NhrV<QOdd%<Qk0j5Ky7(kv;}OE7;y8{48X|_&g9_#+Rd1v)nL!
z=oC)hZOUi?c6*=x2H<r&IX~VO+g@N(is0no8SNALqGg1$PV0)J*`1-I0#x*zvismR
zec^Ev9ldC?OY%V_*=58D%ynd-sQ6;Wmp45k8RSAln;EO{X(%=d5`<1|G0)G>ZC-zb
zU#^I~iKuah<`CnOP(OZb_#F{Y)tpB)vOIXa?zq8t@Fy>@C};v*VR4HuE>nZDI}sL?
z*&e=Dr%_yPfJ*Nz{(|SgA_Uot+!vKnz)97i*NX7H>B81dy4s#A;JLvZ`CSOb1aKO?
zYH?gqQ&LVIdv8~{%$c6e$M-BaP$Xvb6Gu}gsVKmqezdKP2&k#0<&2s`BVP_lQr7ce
ztlTndlEiq{IQ0qcb`JB@h=Y8H@9}C5d&7scsQ%*Iv5r}XZ|z{D0$l$TF>(B5kN4b~
z%(+%#W{1WRPV)Ar4jGdz3f?un&`U-Ng|-O}p7<Y8XP|vsWo2cBpJ*ISUv^1tIs{pe
zN&Z&HZ&JMb{D3h0eAxj|-fM+NxjNHVt(tQoQj`XeBX20kjye27`7k}|yaRA)6(gU2
z75zv<pW~ncd|is7@xHt$IuPXo!#{FQ5bV<v;OI7+qID2=vv^*c>pJ_6*@Cvt*E;;7
z&Zcs|F{^n!HETg+sE<lEfS(BX>R}*KeZO}*>RT|r=MTu0#dw+MH@5K*^=~EHAt__Q
z8W>(<rE-*d{I*?Z*TG<7WR7bU6~5K_-j>uYlg7);_#AG=)u&Efcj{~b#s)k~!|L9z
zUUb(&o?6~=(o;d8wE!EiA#)O0*Eb>*C$&1sN@qENB_Z%f5DxQ7a74OQNb}E|90Y;)
zs!0O`G+9jz<81#6Wkx4@rnHLk>tyPQATiW@bKT0hyEtlaT1S@XBW8-_YYq{OkF066
z24?Y(=g-tEZ{4!|g(U#7!tzF-v*XXI#KeLE^0=+h&A7B(!X}L&2o@s3gKotg;-#U_
zXZu0Ar8j*k%8;jU)Lf60gs^EQwB);XT-w^4<R4RA((0^^k((Yz0TwF7E_#DQRda9}
z@&Ww-j6&P(KQtELuCDu_6qQx1g~~z0OaVJEgg0gW<4tX^A4wM$kcDysZa=S{&fRc9
zprJVf_b2bICS3qCo%FOu`0%h)(|(TcH!H}Ww-TAZ&P5kARyRtaef)TMV5m89E_PR3
z3mdyCFyo#IOhwrlv}RmqVq*7z)%i!DqA-DzXMuDZozBKeAEQ4ZB1ngVPCMDsfPMtU
z?)Y5JKFGWi0sK>Ihxn=k=R{LNEW17~K*djY3xz}nr-b;gU+Bq-eVlE=vui-)<$H)|
z<Am(!=r@rpdlh1PjQkHZ4A~o>8cs<pp#);()zRP%lIoqdUwB(`2<Btz=p~L!DLL$<
zq@>!EGC-_wM`b?%+@1(qE|s0Yq%K(K#AWN?$aRQ=dJC~qIvIIKY4;H!{!$#*1W@|&
zasSFoCt<Kq3KDt#@2@!zZxrR4it7V&*T`cA*|k#sZ~F@O?F0l8%IIyQ<F`d45N-}}
zC|;ZFPmVCMBhV6)5rbSakQbol8*pdlc7!P(PRVUz1voec<HB_}f8k<4Gb<PcoJHxV
zj3aEAemKg3h%*8))ixXshzOFTr21-ZM4~#eo%D0w627D!@qIh~!l}po_Rd)!KFYPz
zr52tJ%Lu)>5_kXR@kM;+EtFuLL5&CE)o=|&t^zcsW_5^OAZBlceJFk8FqVEMuyNwW
z7}tmeaRuQ?k}%FP?;}z~O_gtX4&dS8;n_F*)FpC*(d@9)uay9j#avY&K40XI$`HUe
zbMx=7rYnh!`bL4g6V2fEmqq5<a-4-pa~qTBc6|>PIv+e*$pX=duHt^do3EX{5zJwq
zSoUpB0pSCpWm>DOA>H$}n{@fx#bz&!O--~^G!@h&1+{k&&v7RM<-d|w93URv0z0>*
z%#ipBj_NXYx^e6Z;(~hKqi)vR$#kpJJ~2Ew%R}ih*WAGYz&2~TYT$vOg$;JkCI~m#
zVPrsmK<c2Uc;)`Ip%1vW`6YgR8b5Fk^{eI1JS`oN*L95A@Boo={9pfE(1TXQVPx(2
zojA)}es5NC!hB+$tk;7LM~e(A5eB|A4aG7okwY|jXjl;6TIH-;iwt(u>%tWKdLlFX
zIAhkA0h+inW~X-Pe<tZjGGHF9=dTG~lMKByZ=~-1!5M%5v~7XpdUH+C+9pAm%1WYH
zRtt^HL2DSWi?r!2v0hknW`*MbcAn8-#yP5-^BN-kSG=j|*>9+PJ9nNB;<|<K%w@p6
z;O$q40Y6VG;k82lC$2ciYCON=y*@}v2$jc=(u;=55&3+<;2@#uk$VvL#!Em{mn*Aa
z9}=I1uq$E3PC8tM-CHJ^S*LvlYVhZ*L8jNH(AcQ-J{nkeaRS~yL?FT}tL3$IYDQx}
zSKAu=tXlLt-20lx079d!&>=KB$CD|q3z?Y{Xv`r4!)DjmJl6A!a|5tln3+lNGB$Qd
zuQ=l(PsdqfhZ;bMSu>TfZN+<9TQJ8vCGYeYD5X`-4HJ$!YCqD~%-vs$|EqpqQrVS;
z@Nb=2nIRm#yEtA_BWkrTG3p#qV)rRH|Gv(l9wB^W@Y@2>L~c)uAQgrz5N7OkN9Vp4
zFFm9*_xFHAX);4DoWaHLE;MVujXq}gU-j&QMTkj?^Kzf+UHZ+qwKn3v#<5{+i#J%t
z!Z(A-F*$mU0?qmsI*>@f^)`^nAD+1q?nha`S%e4luNod$Di|+z$E%wOoW!&(o<KDw
zuRr}65`_Adw*~jS|KH+rj?n>`rhWP%yH+(~4zL?eUkKsXswrP3h+Hd`mtmFNs`iw4
zO7KTP@s<`JbUc(DYyI+=S=&<?Y+^h8rA^7|kYLnXFKxVSv?VVGsRfvrYBBO8`6U6H
z-;5jGBxg>#oVJso9_s#vtr)z_@jc9hMDHJ_$H@;s{e|QOQwU<3K0uJZHNwOU7kvWH
zRa1Y<><jv>D{tT;h`Dal^0Xm&PtaGqYi?2>)}v&X%M?u$0c7VPQj=P5_dn}6*+ozY
z%nY-Say*#QemO@82e?WacDuwrGll0i*>Q{y36&A^;?4e3LQnkiik=ha^#i%S6Twf0
zFE&4fAk1QHKB8xIu*)ZB3<o>V>0do9!Gj)j+P4k$)^t&Lt>43_m(va|jA-fq1~yPV
z45>do!R>Plj5}O~7fCP!pRn19qU?oK@Me$DOs1#)#%pX${(%ntY(Z!cTNp+KtIMU|
zB8lh)G<>5Y6Ebx6lxwaAlAgz`)qPOc)A5kak=|r9IV9$Op-{E>J2wULefG0ce5*`a
zhG!&X)K88v1xM+|=+@IWxYyami9fQA4=d_dbhN#K`)46)LoA97TOM(OgoLCt+TO~l
z^F6<GPsw_t=>?)YoR2YainhQDs{w&M=DJfu2C?22MN6XwLJ9ny@}YXW(T8hBiF#OY
z&m}p9ARN2lUtm#&9^tzLllR7iOU1JR>5xL5uhqbqAM=p16lAUH<==6Xz-f9OwG_WT
zU@5UU-9+<AGJzYZ@*E|4L2ZnW1#x4oO()`AYQPBk?n<mAw>rB&`~<=fn-xN=Af$0>
za<XXA@x8!}`6nk<l>`T3D#ZlNnG$%Uru@2ZegizFRomJsan+$rIZ>J+dGZzQV(vOB
zq`we_H|<D1*?(0EWkSn0W+c*o90Z9yiGREDvzrn<^W7~i8rnhrwDbT@Y%C;R7O~=k
zB1Qhm1$l@ZX{4SQ4x^pewO?ruTi^kq?;JSAbGV}mT77OcJZV!q=hHpnNnh>Qb<>t%
zT%9Ks=mpA~J2PPfx-#l_cjOoT&iTlzHQL|tk-KrtZwt@&FvFqGB8ib@3F|wF2A@u|
zr%8&<-Hd?F{Y+NibdLW-hR0%VI<bm9@5I5}?C5+92Ru#a(r34yj=v>>0j{u-K3atA
z#MtJ=krElR=3tb2PdGb_6-Y_aULcYy0Wg2|I?)RX?KaKx*wcYzIf;jNn?4n_j8!a;
ziZi|vL&mLq!oOeT=choV3ri5^lkX&}EyNb5!Ok^Wl1abZjS1o+rL588_B0XaNFA^x
zh1)QHO&D-B;Az&dXL3`Zlq4o0K`*=B%k0I_z}x((OUhDX4k<H3f5?1#{Ip`6njj%A
z_6sy(&cEPXnmjktq!;VmTa^W{_12;?0n<OL4IIzse<a_Vo7LTJIPL4}gG3U<j)ic>
zOyEgUgI$qUWI5UwPT=~|EM`Jgdt=P=R&E#KZysa3cpGytdN}2U-rLh(rqh<JUQt~S
z^<>_Kf+oBDKcl!j-O=RQ3y{#}G>TJ&aL>`UbcRhEECslK))WzAmiVHJQ}f*(is|3z
zN9Z;l4$$d_knxoLVNz%g<35hgFHj)gNHOLR2$0*ljj<)BUR7FM@EfPsHOUyx_~WBg
zlR;W9(HubcKID~H)eH<9S|s_fewEP-QGnJJ&Dnrt9R(I;_Wn{EOzdBm;fgpq&D2g$
zR%?ax`}p64QxhHI-7+9QYectFSVaR0PBE^&JJ;D2>2Ot)A8F0_?tU!wa}i*de=t&T
zd;f)p3lBWI@@nM)_%r&RK6b|i{@vx@neKiY*5^<1ShX{>agP(Dw58&=fz<UV=(1O%
z7377^6X+^U4Qyl%Ov%yA!FB@<8=3k0l_xM+@@Lh4kIacK(~$an(+NCw3IIjz+~%rm
zzBHU2rLmJ6LukUGUS|R8Eo=}Jt4CePUcR8i#eLUG92p)S4weq(m|H+dBA8%qQ?JBp
zfvhA7*Bx4GjW^0~p8fxxbsWtkIqX9#HiJfyv7YWeiGNaOtPjNNG9EldzDY+I(@9$<
zjpkTUf7)-uP1r#6|8Vz~QBj6(zo>;MsYocTv<{$jr+`X_bi;ta&;lY20s@l43=Ps9
zL$`DcA<dA|f<t$o8~^(~=iPgs4`=O<XTfs0fEkA8x$o<~eszrq3T}=VlbCD!Q9MH+
z?<S)-wR_7(!H9$D;~`#PH?rpEw!INrK1mYrhmTb%NVJ?oxNo%cRA7HuM&6fp&ZkqB
z47k3)!&G7s;g)n=x{sEp*FrwV4H}^vBb6(?yefXSE$3pR)Wy0_RouUHBhmCsr%HU9
zmD>Dlh_e=d+2O2#2XjvWb2jyN^m|;0yvh$vMH4M&6O(kIFil>RXQkY+d)2$mdqkg4
zgDPv<IrKvd7NfM77(+C95XZ6g=373o#%KnYXYELIz-a6T->HYn5k_N{6+mwzJf$?2
zQE}i?U0F6l!^{WKbbZ&1v4m9qEx7f_^N0T842I}w+551^d<d*|8<!8}Xpy;l6vNiE
zs7-aRyWQ)6bsJ?vPu%Ksd8OvY`Wxs;HdStrD6pWbBOKpSN3t$Y-F)P8Ef?XV*a`?H
zCQH*-vD|wb{^A%mdWdZNBL_m)c!Hr;o%*miO8-^O$_kC)qL-??FIxMywRoJGkCB)c
z%SB4)QgReE?lcX@$$3cjy*{7&(vx*0NX5r|uryGLd#QK(UXnN+=>Pmy_kJ<x-^B&e
z^oHw(0g#@}YAtVTIe+tVlIMeOXoR#oFrNKmiixb`F3xeonU;b+|Nd=s+xA_1L19yq
zfdWD#iN^yVqLEuQt{NdBvUz!133B-A`JsJ2fJFA>PwEG1D+RCh``&ccc}%LUsZ35J
znvzb<0o@QB0V^%fi-A=M66b3l{V7!@j&UpWT+XZbF_u!xC;>^Z)?_^^iTv=*!W4b!
zRG+o^RDSjP7&l2LmuxW!hC1>~OKhmJ-u^ZWc&CeOof5mZueEp(W;28gRScLO0S`E7
zFepKw7RL4U0f`9Keg`u3^Zm0lzjr^8GSbo$TS*OPsw8gauG8erVo_xnK+P_@f3N-I
z($k39Bl}agYl9Xhe>q}Pt`Bf-ipc2x3M4@+fHdbndjntlknr(|_d}uL(Za+2{%b-i
zJvyN0JCovnwh3SaYA8De6`DTbT+RoOUJa}=R^e`gmVT>l0yWr?(*Me%rp!qezHyB2
zwyCFKU$`pXDh3okmz05RO1k7r?|K?0Tq%BOYHq8ZS1o3<u~n;5R(AZ-e>51Jk|SU)
zCmoT{Iom&obR%+lt1!*s;z>sv!H~_mTrc?zKc2Ifg7jds*Oe^;9YlXRMDLF>9xVJ<
zNzg5@G`?|}v#Zk*i~(>V^FvN0#r%ue(Y|$|EP=BK7h%8%xwa<H838swTi^4S38jH@
z?{^bUU3SYbFO5FN(hzb!r-bO>qRd8N7W`56y3`x_i_81qdQA}3*0#J0WjC{CQcQsk
z8~}bB>#doVNSZ&?@eA*&anX6D*J4)T;!qbx7X2ekpmd^-P)l`@kbr<(N?9vH{DR0V
z36!@vcC8KqCRX$88d4&Z+45efP)^|#0A32twQipoNl`0@p5G+0d^1stc<xxQdy#0L
zr<tpyrcaC?y#umpM-fo~;q#lQ70)w(``%97kL~NjxNeE&JjA09gF1G<?Ft+U$Jspy
zZ2PD7aM4bE)O}Moj}^9P%-jvY9H(Em;|LJ_zBG~0v))@KiLsnxAGuejdWbH^s=4m|
zlnUO0Jv7(IF~Eg!JCs4@dPMlk13%TR`u0*78-Gx=Qj6frJpX8{nX}R=_D}C3WcqH#
zG%2%8p6$GI-HvVpPAAyXZpUJto9JfU1cjNoR2+0*dbFpqWBjdkFufX4!Uw5Pz+<l1
z@VJ~m_UZ$0M*|b>^=rcDQ5HDZ09jB;?mKzP4K)ejqvt1r5)g#j^P5UYbZBc<hW+xC
zvXXmfQ{52?{oAEUMSwE%Lz)O_9Zr}Up*_F;WH20!HS-}k8awe%l%3})j;$z-6Z>PP
zSwDzAqzbClsx+9+vew=<peJ|LX<<8T$(575>j<QPO5?vgFypHl4-F*Pqw)fjA|bpH
zP}|u?I<>=2;rV+((6i-_0$T7qsQA4mvJN~bTKCqUZC*b7ytXB8SNcy=Vj)1Z#0pat
zy^^TE2}$68ss^|I{oH6I6^M<2bhI3&KzpqcV-a~oR08{+D}IKQ9A>457iJ1pKR)m6
z{r-^Ej*?7L9dI{*C>)u^OSSD?jMGv;BsX~gLUJIvF7@#9ql;ILjA!-m2LEfX6SElu
z;Cg(X7P&$P8WqPWON0F+u^?vvKST5pPiwK9?=apY=s{K}$sT_0u8_Yu5oUt6l!KFy
z)yus%_Cl$&Sm?BPSU>>Um5SIZ;*eG37-<W@!=1ENaG*etCCL84tZDFtl(sU;f!d_&
z5I!uWU|&ilEU7Ex@Uf?t5Td#xkL&Xj8Hy0?`x^F|M!FO;akU;V2hkxn1sCBNrMfI{
zrY>?kl?I)Jv~``1hrZBY*Q3_Z(#lM#DD7qbu;?XV{rMQ8lUGPf2>VEWqTWr_d}wfL
zS~00<SY?WScRCLQigG{Yur&BgzLKDWj0%TahREwQ!nv=Y0=_t3S}R)^s)erE9F$_r
zmj;({J~bO`nFUO`8TBdw!c}VLGA$q{FE3tr(Z?^az0*x7xq9?(MrOce3hphE5{w8U
zK{%4{6Wj{h12Pryz9mN-Tuyq+_s%AgYzL}`C%6kfZD6%qg!7%?v3da9I6n931vAgG
zI+OORXWGB{*a95z@$r{+dr4q+wIZIfl73@)KeTnGh={(A3<dpCVyRIT;Nal+2Z$f(
z0`xH7&qAS7fBU9USEubn`=<~S^!SVENjfo5&VV!p9836zyq043Ug~|dr3XnS$QgjV
zsXvM-!m+>fIIxgc&k4*JUF<xN2bhtInc(^AcBwaX&i(fa^%o4vHPX=ZQXd*@i2<OB
zT#M(3^3TkB@!h&jA*u+xrFxYLI^~r?cfr7KSM{?64cy?aY4H6(@1ubOD+>H_qYghA
zgGav5qy0kwN8ZX^4iW_3YeKSj{dIFp>GKwEbS=}g+xCmsKKwmhpFgRUaQL+n=|<w)
zK;t1Y2jt<)!`yr~X69fN%RH0uAZ!Vco1_oik9XAUKUAWpDXTswE#dFzoa)+~EO3B+
z9ag}r*FWL-v#%n-kU}6V%|Wj_FKg52&8uuFsjBmXxs=b$l<st9=;`mV;G(0Ji8k_o
zst8HJ<u%r6h_DH=?+2%ecOB+#_Tg0=wZ#5_B(yf~RxWe>5*3pioGT>XBfzelxJM@a
zykA+&QCCSAR7#2Pc1Qw>qW>RgW+u!7Cb6kYuBWep^xhI{;DH~Q^>|nUBfl|h?oL94
zT8a9M8XX&KralMk%%inio%XMY&kMD*^_vMqPdqdBSK}t9?hlCQtM`w6;e6j~8XTne
z0kkx<%mR?Q-CRWbTVQr6g=oGCR{x1Cj;`a9=#GpW1d0hL$lWgMucykFrq@gelbZsW
zvMEt3$S*I>OGii^9G!-ooXd;Hu%sRUcuefldF^qDSxPdm?TmyvPN?-FtCH4%jP5~q
z6D<)h5IB*IYdK?%DG4G#t(=Cq@A<4ZxP}jR@`OzG2EUGj5;jc75(>PNgrdQ68!oau
zn6fuJG$J~CLC(q!ECRUfTyANJJ5WP3Wj6`zRtFZz&_+%e&%Cb=mK*)h+QfvVK$Hp6
zc&uX<cJ<e)={>4X{%CZUHw){|_dNQpr$09r+E=i`9Oya=^#&e3sEE$eFGhGYC6Hh9
z%)N^+W+-65Ls?o1)$=>Ps#$V5S4Zs?E$35BPfT=C^Lun?M4F&YkiA_%CVRcX-|UZz
zSc(lWK~timIbJdc%l13!Zsn6qx;5LuJ$6*ss!V>+c12VCoW^}ZUg4o3Cik~|4M>5)
zLY^w@UK?TnEzkEPNm+XU@$U--q3#(4AU0i<fFNt)Q{43-=nh#4Y}4qQw)d6TmABBz
zwGk@IOd0b1E};`!=Q5q%^=7_ST7LN!2V`7rce*$@?p25XatRcgs=GS#06wl+eZdIq
zYv%~E6jS<h|KT*Xjra~}Cz6Ki&d&vTrs(fd`-I;V6ie)~hg*=Kfgdq`e^+0T)lav7
z`7g;PSZ%tRh38D4Q_PndxXlRmQJ0!H6QbV}9d)?b?~E!@Qd1D2vfzl4-@t8~g8;Wo
z&9Rc>W2P=%ok90%T@C4@RkNUh@=}dvk^4$h<y{j-dzhj!7fpd(U^G<2=C-3`M6Kk>
zw-!&$tG3|Yghu7QP1j;fIQIW69zmi<gCcl~aeUZ*XAazVv-FJg68y!s9+2qQ<mt5R
z2FHH)eLaAHH<yjs%Cen3I9)`l%2f3)od_yty_8y$Hs5sYL}*T3qu6k-^R@D^F`h$j
z0DJ+h8;lmMNvl3?EMD#X&J>cGV8<iL>pJTz1*8xj9kQcM9(>Ug&fD=al+17CR?tcz
z?Jd;XCkRgT5oq;k0=IwxkR<<g%7V67$t!Zi+utYf4|V*#uei9Pfk5FB=KwQ>plmA3
zyXO2?_4Bh!BkRqJpB2vs;3Kg8-1RK74Emay^%xOf#p)#1u}rjh@JV>ShnK6&u-0{M
z+&)?AR<)@e%-+{47+zkGD6=RK$;n-|i~*FV)$C+oczGF&NQQoKtZ0?`o^sO*711#0
ze-;fe90a2vXqXK_47BbRXKh58Ldr5V^)G>egEwy=IxV1xJ;=LT^-K9LX#3xg@r8x_
zkRF`K@|SoOQ+Y04uwcX$>&Uh;#Bjs;ntx$uMfE?oV@ASM&kS=w&AA9q^c?LMA0qwx
zpz~`*87yd1uVK~f>I==2Cw&cn7l^3NT^qC%6iBoxqp=cXc_hZ$?-I+Zjclr<2J3p_
zIk;yPc0RFN`n_GIMxl$pjHd_uQx15Jnb0{0fPUZVviHtS^)J7%ua<$+V4`^eDL#(<
z%&n;^Sq<NZ*LfmhR*%Ha^o{uDq!y3G`pS*e^Nw9cRjZ!`KNyn|ru*^f5$5zg&>=%q
zy^W~e5*{}`fu?gt+ue6E(d=c@?rC?R;qr;@=xae9`z-@wwr*F=>#AJ0L+Xgm>I)!R
z;1Lk4TamJzAX8|Ibt~YTL*VivI(Jw)a6_~b<l%*yI2oBJbR%749}h(|6txr4c1s~e
z*kxan@x2LvCnqHKUpae13%bJp<mFBRKHXi|oSKA9G$~r>3xkKQWVa6=8OvM${oL10
zJ&y{9nnA5T0IO*^;U=3-jkdm5-XUO5#%(5E(?s&}T{x>9l6^0Q=v;nlqq$WBe6XP}
ziXPQS1J!%f84!KC%3R058Q(47!Na+?bg0+;F?0GRFpS+ZS00+h?LcB)X-(&NHKeVT
zxt<YN3be<{$9vSW!`*P(2s_6+ZQs6;)2<a#5W!s<ED+Z^1iZxVL2zUCAr;>nNd;>I
z!S?FoZH*vi!so2u*omb2Sa#<oim^Kd=U1@26?p}Zp8w?K7xF!5nedxTWu~I3k|4Lc
zdvnFvOI=nrpL`ap9|vU2&(8x;NtpyJTWjHIK#F=va4oW3KOO5yD?Y3CHYh)D9Zpa3
zv9e+U3k4Nj`rg47C9=V34r4ITn|SG^cm}v0$L~`$U4LlA-Sb<l3xo`Kbokzf<LD+%
zHfM=%pS9tSp1Z-OUrbGo5Qh+atZy2F*y^7aQdU@*qtOfsMPluy3&!vyxAAt8XHu_J
z6$h`HDyx+Xvwb(?x`ppXz&0QF69B+HSr@nz7-|{TOArJde)-*HbGJ2#373k?ure7F
zHGZxZNp}ieC)IS0e&G1U&iP~iE=L&#bO>yuDzI8dcxz{bnwFD+^)QoEbwTV)US=y)
zO>BPVIiYBBE#P85ZFK_FIXM;RKHrkLV{NMaa3sxdRDY*Z^O)U`Eod9mCE|e!z=n$H
zuCF@<2hK1vs|lXva-yf3*$@e+638I{&LmY@oQY6XQHPtymY0S-OuFRQu6&{uHQtTg
z7l29nXiNLVlKpW%p#4t5{A#PK>3gO4IR9oG4ueogk?~%zR^<RMQp7U^zPt9)S*%B^
z^65YFmK1)0vCaCTr=8YbQ34BWefo*0J98001*<Fd$$D;admV{ZT*}UNr4+yzoFQax
zqGqct@@v{})!qa$i4XLwV&!X0x(Py7?^M&-HYGeH`2F5V6ktKlG;rmBK|C~}D@mjK
zM{g+x8K@sRHC8ADBl-DDWZ)iRTO0%ESmsUs+$7*YU6Ne8sx4(ug9~$T)V^lHXxj*U
zE7VbfCppK=*}nY46L6OxAxi-SKRD7z%s>;;8BL^un;1J&m`M=H{0Jggsp(8Cw%3M*
ze)JU@F05Ex>M*Ju`nxrvFismnD&A(SRGSf55d+uwYSDtNDpHEB4dZm<d5(k)?fmqh
z!cx*?m9gHZh?7+*FeA?yp_(=aqPhJ}nWgvwb$DQi?fa=A$F*I)P{<kovwdqo>t$X7
zsHI}c8)=9ps>|TKyCHu1>HUGnD-^X`a;x?$1=UR{S&e%Ra#n~A{jYbxSE;*-{mX|w
z)j3v;L^xG1Dddu7RMS~hX=}T_Lczgdq4{ew{VA&%TDp)(nL>?R3-p}5tWmyt*lmD+
zbQOTv5E|8F%JYG(v5}PYQGjhDYWj?TQZ2vcA0~brHaR(2we==LRQC9+mEC+Ok7#9>
z?|QSvM?<DYM7ppbglEzKWR$MDhMF@}2Hi|7M;pHR_tep;`&z756^YO)Cw%1#lGa+S
zE#ghWlSLX?y7U)>Iu#L}?YUIJw1V{TnP2^@I}?R%Pud|mLyd{l_WrpqEM9(TL)P8q
zh0~ksS7C#xI{|%NU4K9i;OpxNxK)<o-ptIuAU9C1K}Q7jg?5sHwyoFH8e)_Di`ETd
zch(Gq<aIMN5OjhF%^tl2#|%&D&sPV+jnpDV21r;Y`BB_K-!$mheYZ=Mq>fg{ZHc=K
zJ{<+h(g?$Ir4b#sc&Uj?Dzg|l5kIB|RC8wNGg_qW^8fvzvXu;&s8xn-jbmVMFCKr<
zxDI^9w#65QlMgEdyoAkXFR;0TX_k;rqBYcT`db(rAAIb*u7ZzSInk@5VYV>XbUCz6
zTWP%(KVjr+8NH?D3`FOZN1*|?6XEiGnv6t3uEY##t~hdEB+TL@E9j@l=>psJGO4f`
zVq$Gbwf8(}C$hYWf@{)qKSV@&C&{>u?_xbN2-IbBF&lf!o%iN@QO+Ou@5Mb*2+paq
zFBdK`d$6ab^H!%W4scUhpxrpn-#-)Zdme&*?2PUi^`%4iG8unH5ztG)FU}R09%{o#
z5EWRsh~t#rQfxq~m<$X<e`#bGqg3Yx9q4oZvo!8qtC<l`-<dx%U8S$OA9ijh86y1|
zmBpuIiXONkrkwKl5hxiP)ijNs962$my?=NE)ccXeeOBR&2lD5`{8@!eb+u>izVRq6
zo(sD!-uTbC8V@4}=7ujvh$MRC1wNe^Ex$2;?gd;AnX=L5i}@Km8!XAdDXKXwl(CNy
z$3=NMTdB{h_u@#1LUQ-ILU4MJZ>JeU$%nZpIA9&gTd99US3rWpTJI_5Tg#X(9oQ_5
zQ}lI%466Wc0OE|$X;(U}SE;=pS5lMbfL+tM&7McYjJOi<<@{?+<K^4#q#>|8u>7TX
zZAnFQ3LWcaA_dcj*D^RsNoH!5m14cpQ<3Y9qn6x<#9@t%d3o#g=YP41dR{!Yt}GfH
zRG!J?*3sUC&!i9KwCp$Kt)Br!T+_xh#r8}5KJY2zaaK42bKb?Um~oNGHzy}2ox;k>
zFalPi&miN$N-B$Pz_IuOyolvfRHZMq64}NVnGU$_CRbRFUc9s#otpz%9{lcYl2{kk
ztNs}ka(dr;W6Vds^XnTGqVBqis!_EuE4SodoTvxh4ZbTR?;ig_!vgQ(D1-C7CHEC*
zE;BO&?ppFK|EI5$I@wCjR+I;}#1X!aPKwDw?{VL%M?d>~7?O3Dm5+=~H!WA*eCLzU
zAiJG0YXG?IAQ(DJBWnUoxy2gQ0L8H(YX3BiN<@)lg6z-P*81Q||I_Curau-}Zo8<S
z{fc1!)Ex|&Vo&g>&ghrK(r;MJ%KLokG+RhWAS&x9F0~v}<FHkmC#V0)Xq?qjuJ(>q
z@%lxGH2h*w{`L5;LUP6aB$0JUUfF^);*s&h8}h@@N*6+{+JF{swx_7+S09TeY7Uml
zDCfX|4k`ji@ziMY(KnO02QG?7q8(LtDL)ege&FS<Dye&S%k*C&(loX04?ii+mup~p
zk6h-yW~B(QE-XDtU^BT)cK*f;qLJrXhp|Nc1Th~_EQhb<SZ`gg_Wvhb`-ZjzW5>lu
z8G&y$j<&gezzasrN_wfZBxia*&)JcJi2WqboUbJeFFdbBDqq?+RsR*Fy>kmSRwy#i
zwJ_qXhFX;^x!}IT!W^J^7>m<SFnX`^U#gUu=)dx`ME4*%fkS&35VMQ0CHWACx&NN_
zO^R^{RCY+dT)gyOt}i(8zd!enCL36!ABHNs?qwqF8|Bh2Bm)WQEPa0F1EcQ|5s}LO
zUQg<q|4QP5zXV1FxNmlsN&>tvV?ObSG-Cv`EK0>h_M;AR|It3pzv!m2s-)y1&E;{}
z9FLAh0m;A3|9~s3=egavapT+Fy8PaGGELhj`($r6F;9}+Ls!hv;3dZ<8|LO58PkeK
zh&}TApEJn6=)cb_@9l?&JtLs-Ex-T&)6jC}ci`L%Fnk<f^xr=<tD2Gj(-*)uOJF6i
z|Nb-A|A$cg&yRb27x=RNmoEkU?@#rA`ndm3FX8{?_x&F~4r6bQb~?acLTLb3c}i;8
z|8h<Kxr@d}c{3>A(6Q^(NW<=1r!W3*Ka<{xWH+cO!ZLaxVf|4Qul41B|I~Cg)v6>8
zDfBb;`|v-12hR^GlL*aMhMoS1Cf7-(no1F;c>TX#Z;0RmM5jMpl^}y<*Gl~Uu7vmh
z{u=49kWQQ*e#3TWNA_9o*U`@vdk~vhXcUoo9JUvDoo9Om>D2w09pU1S&p~GO&%Hh)
z$TsQrHtAEO=(~LSZqsSs$W#8cK~LR^ZE$`5r%H1Cxq7|ed2Ex1-r!H2zlVlVXhs`d
zbi;;=5!{<iV<C43{~Tl3EP1=3iqnxIGeJb1wi<D{31-=q<5iyrFJEd_HiMMsKtQT_
zQE&8Zi&qnG!{zV^X%bp^V_IX*!>{()Jy)0X?`KE#!FehHRn!zm$w|Nb)96a-BIQW5
zE$U`xd<byCs1^^8`JHe-6gC;7^inO*YI<^8C&XHq;M6j|Ah#~sr4X4_IWQbP&$}k?
z1$(?p_7J_cYy9su8vrc{U!B*rt;qI3VA}7rC&e-K!prlbZOfM&q0C)X7vMXlo1Wr)
z*s0xA66$;or%PMSv)(~wpV=i~?MYxd`hDbAYenQs&YfdUXf9{PvaVul%MQdE8`52V
zMyRUsV&e^BuiU%rUf;bd$Kc|nnW^;|yZU6*OesOm5KeVJg0-fo@o9(sVbgi>RUh*C
z%w^x!>^Dl(Yy*3YpkBHwM}eO=)k{sD6|$G=u+NJt)|lT-pH7|!%w-&5TygPELcX4F
zm);M#0oKtu$JrPiFX|Q6C0chlAC-``2^03{T-&ykm~tL}pwWe3v6ddK#{`YVV{_|`
zpn8!AnksvI<4Sx(OXk|f(X&glkWYLbDP!ni-pBn~NE^YWcK!O*Z(Sr6ZeC53y~)fB
zilTC<F+S?|i&ly|;|wg}RQwTzU&~Bb(Oq8*(NCBZ9J8&eoPD6J$^=7@TBj*nt8v+#
zXFC5QK#luYw(3miVj8hn!0(m9g>qAVo9jg+Y|UkYkNvMs%-fryDaS7_zmASPq*otV
zqspK|6M7=X?!&39AZ~jnHbvqB7{6F@2O1XSm1*T$)YsGHg#gPk8FO97qZ_<d^ybs$
z6rNIC<x3jGUh1N4I$k}D#U}$~Jg;+P7=cCf)`u0l%EKi3W+a2lfxyIPHeIB#LxC0u
z+;+u`R$wC7*y^z1RErJXCs^Myr@)@*Zd%b6EckBXYR>+gfBD9k-G7Q+*h4t$2~(Lo
z;<;~Ia8Wmoq0VR@b-E=1+&Y?d<~C-{Y}2;0KH_Yj%KVMrdJI;Uncn=y)m)K!`>jwY
znrHPlxDUZhLw(2><U+w%jU$i*{GPB6ZCrt6Cgv;k7n|5kCo>6_@Y`1011D!kfL)yh
zsc-Aa%DpmnGb%wRGh=Hp?6JFW{OgZz+@(Uc%|!f3LhehCH4m5cTM>oYFOCHR-45CL
zqCN|aac~&@TjrezD7a*6=8m^1xgI!eyiK5OE@~D0bPiukI)*oGSg{u#J=WZF3#Bf~
zOI$8pvYd5qJcF8{m$1#Y&RdhbPMh6n=VnI(Q(?2C^3*4GryQA~@%fk_!R+Z8Ossse
z&Z6j8;JI<8cPyAwAiF*zYA})N{0zu3xzTz{P;<2MZS<mpfTWN|$2j|J$)#D*X5BJ~
z4rOp@QfTsAf4o#Li0h~^&e#C3^d`zPZhU*G;iis@;lCGev;onvx0SB5$|-7h%dE9s
zxpbCNuegk6y~`e2IG^SC2y$c*t;GX597!sqOpMtgTi+${fVasAkcm22iOTBOiaAGm
z9lJ>aQ`8D&M%=N5@A8!2#xj1-s?!l+ySYnHio%)+TDKI#S%N@7Wki((mc_JTX5=@o
z53punEd;05ZfOChWe}a^I<+74`s2Djmpp|eRE)l=-uZS5w@z;>tU~rSDgfW!Wc3CD
zH^DRQQw9oUe(%0T+3*v$+sPz)MHt|9qOuWzXp1oPjrm+@+OC*wik>(4n0ds4Xe1g1
z-`=w7gE{;_L_-4~G3aT`ML5vPJG^-l-^V49f(2g8U8~#I|Dx`81haT?9dLR%7HX4S
z&8CR%UO5g|CSAwI4bj&}3XBhR89AhOXkR1aSyTOV%t6%~+8XfbszSd~P+^ADNyfwK
z#;Avr>-UZ_-Q3OZ=Byx&TDB!{4A~BHCp{kd+c5nqg;8^I<Mwor1Qfk_`Ga>Hi*~ox
zY^zq4T^MC1nIU-r3CWPeFD6*6|LzAxXsFQ$Ix#-wXYfQh*G`Fgu&qY2e4=pHbfXsL
zehWh4iEOs>eNp=+OhiOSzqG=jNi}-<MjM-<N-y|Ng+6MyubeZ~4$f4&>I@}&eC$Yz
zQpxVL;=_EXa*m0H)9@!tjZ0~`&@aB89sN5-?e;aKg?46Cm7P8tlZ`_ohe}=HsPeBQ
zkpuzp%)&is<(<J^RUM+J%FQ?ZeD?8|78YdI8uE*6qGnwl$(}nbA1F@=J%<ceJU{L1
zzW+}`T&K=gmyb$P*oj%#Z_-j@clNt^|4glF7Q>#KMscebspXxk0gCweTmrX4nhfe`
z7ut=Uid%V>zpSE#e^W6xXh<#7Z_ZLQG582XN^=M{flK!BXJ)<C$2c7#XJuaH?)Mdh
z7QSE5XQ!XVtv!_)ETjZtouk=Yr}}5O0`_oi)^kj&X0#l#6Ki)*Ea74r@_GeO?qO@~
zyB0&jI-)6x0<~fSZczEc`NtvfuhM1y@lab!0sNQR%v?nlk(vz8xN`3Jh0-Ns#7@E4
zF~Wx$381OiFj1wG*Nm?pVf?7KKQ}V@V~lge%%ZaV#2m-XM-(>QqVQ}p#G6gM@p+UL
z&8T^De^#VotDk^|&^`Q<$*A-4LHFg)4?~%2Ejc_~p{u&2RmsX$pJE|y)2q>kQr_{t
z)=#MX9$j~LAh7CSA)F%qX|>%(s{i08rjW-iS!=2zTz<?a<S4O@-G#lUgiXY3#<2!e
z3yaEt`cQp7$kaSlf#ohGyK{kv(S=AM=Ot|1$GtAheGWeB^N1nLn#{8vUhX@KWU{G4
zy@Ah6@Nb*!iBvUS+_loFza*Oc?1%WZK?(81C^XE<j!VscZajPQqoHvo-&0huO<g6z
zaAqsHQT&jO%6XKDfmQFe#?}$TinAADtmeGhdOUMewTg<W;kI;NB((F^A$#U<P`J6H
z-??dJmUTzn>0JY@2N8O&YxOrE32Z3|;a81gAf<FxeDFN1N=eJPXVlxcYE|frPxDZT
zFE_u{2tDuaoK}X(=fy$a;2lemOJF02`g}G+c#cgYCzw~8RpnBod2zc+{QF#!*PeB4
zQkKrU^vP`W5Imw@rtxi-X`b}-B>qZe*tQm+4g)u*Mz0g$aKs#yN3!r4p^9M6`%irx
z^5QqGzye2R*~}yPDsT<zAz=hcjZRmmI)`0tGj3SsHPJ4i!m&1InJM{tjOMkb+?wDH
z4vwsOsakDs)H#FU=B|hJSeJ|7fH=cM7UTxiaaHcv5|dcndB!x5Xp&9x_n7rQ5qc1$
za>+(485qcc&#uS~@6TVXlXK(&--kbW2U6!_R1K5&Se%|XC2ALnoEeik)%vK4S?Ztm
zDAjFOUG95*Kgz=4%X0n(wXsUsJK7p$lh+=eENs5Qc?FV9e^OOAS=V5~7C5|I+-0ky
zeC@=Dqum}$o<9i(^;ojyLhxTRkdZ=d#)t3yF4QIm7cnot|9Tl}x2YO9#QE%~V%gwL
z_Q1JxA+zPEBiSCFt}vb{`V~hu7uzlQKI@Ue>0yH3j{y+ji-#oiW<8{BqRuWEo*9%7
zbdysOVH@DX9PMXRMtneuz&-YUB(S|MB)Hl>3J5i?rJVik@<46WWkF}8=i~s{k$-ds
z!qAB4$Az~PqyOArFx#<eky6&l)Zc>UzF5^j@IqPqS!o&{dJDFXv$+n$P#@BL%ygJ&
zU~YXrw=}$UH9e9B=MkVUvyk+x;p3w?=W0&#=#|aFH4=5$ERqz#1MU*szl>fL#d@L8
z;q81Lw~-E=H;}qgM{f@)zm+hQ;2k(sgyHMXPN&t!^Acqyz?I<xN!WDqo0ZElH_eOb
znAHUi#_1O)+MC*I5|e_~^Su3`X~wMC=_dV&O~eGKqMW=RbCxv}WJ;d9t(}bA&fW20
z%IU3xwo70=S=MZqr+1PRBLu&BrcnlrnV9?F>KRI^Iv!KDZGJ4J*M2E+htR>S??e!V
zl-+udRX8+6lApw;TtK5&Os;Qk<@8q}P8!}|y=uc+_&U&^{L2Sg6i-z}zObwbzhN1}
zoAuI`1P1N(GP`aZd-gy5FxvQ<(TaIPh;}ZhR#FU^zBt!3&S$0ESE`4~bMP;ELj$65
zJTq6VTkrxfRc0JEO}y_AW|mAumS3l}UkW=6Noe$6%NH*-UxrNO6c?JyO%G;6pT;DM
z_sEO@3*khZsy69OM_fXrMqx<y+nbcP!O<)e2NkUMYtp4G5!Ul~adkBNun&-y_*K)!
zL*xXg%DMnjnlj7WRsd2&)*f6y>(q4kKgN=ij<+Cd+<TVxCF&ZDQbF!W3ww4BHt3+2
zf+?{ZZ_i9jP9i_o+Y`OmUI=O#Sc$K`6+%-}Q<}Zfw_1l~&f<x=+{iO$`V954kO|xM
zM+n=mstd5sx|y*ms!qfYE8YJr6hjk1VQQYg@bX^m5gqDRZu^p?nlaju(5Yt*?^hp^
z-_Brg+vKbs195Y=*uC?P)0h}F=0M1PGM2>Q0XgeAcov!+G5g31W{H;#{nMy%w$=sq
z?r<k^&F^Uvv*0Sym|u~+*Y}vOhJ9I&Voo|s)Olgd=9g#faiQRne~Gxi%5l?zH9yFP
zgS<DvkkN)R?oYM-<@^(%d?hw{6_ctCxX#Ug6u0yRHsG|(2er;N#~?lcfMU4;V?_`_
z3xx>E6I3?MXu554gI=PN1Xc3^tEP$E;j1i$&~KkeA-YJ3vnRPfh-qG1G;5;N3-Q-p
zhbKQ5eZm3ue@m*$$L=JDN>eYBEE>V)OI=w{JR8^SV%AVZnfaA?1xKp|92i4cMZ8Y_
zG!csehgy1LWrm??=--$tdtwBuDW#UPTwiW#h*+6FHhM>=lH$zs{xyDv7tT<6hYf5F
zH6v#(Bsq_&tmdPlnnaDc6QMd(eogvgISm9K?W!D=WWN<o0OUfoDNY5^p$>Gb*Ywif
zNQKmu&$dF}km<ZT>WvRoxkBrHCvM0;HEv+__V7ZGMwIP~HR`#^cgX}t+v4<&-P}wA
z$lb6H&M%zHIuW|`;Eei)2fUBy5m5eJKc0p;uC{LqYkbzOBiW1w>w`U7z*m7393}5e
zL?62>w70pVwVe6xOSc^T=l+_>ySS`%Do_eK1=yg_hP+-&h-Ytz$}sveG}xAFMQ#I^
zej2vK>SH5-$8E5fQrHY|KJB&r$SdnARdHV1c<FrEc-!J5q2g*%lU>~T4c9JH5Z5dp
zgs`u&(_D;C9`|)3`!RyCjUU@BPcH1LW>}=tJdfSxRrI0q*7oQI$+aib@{kH9nLBCI
zU6evmY#V{0I)7Hzp2X#kwWIE1&1|FKGvdy8F9L*TS&Q+$S|#kc99HqyXb`z<F*xGC
zVP(J2b&z_GuYsxBBXbx{XH$4Hy;rbEkUgMN^4ilW_+j&I*q#jS(CgG4c)5AXxvm;{
zg0A3iqsF1wABRFw_7d;fAopewWiT5-?x0j<Y|wT|OaASt@ZBQaaWpz=98tpdYt%Pf
zC6lR(QYBCt9>hzN(iDjxP7!)rLq)t;Oqc~VP2_8ElHuSDqJK=>k0Zw&onn8I=VT!h
zE;^uIFGFph_+72>)}40Ea^fz<*N&^`uO7*o2FW7}08g<5{0eBg4uE6%hhyTWCyhoq
zB+Btb*M5x5j(mLnC9m-KYv#UwOv^TIvDOFYV{@GGa18wdk0oinlGMc;FA}AYL55#0
z#`KMq$*kUUy)of-<Wg$HtSkF8y9Yfv+(L42Dpkklf1VlISgmS1oE6Qaz69<0HXjnR
zzT#bgR;{dBH$=Zh9IG{n##zU^lq7jJ?inAApG_?jbD!DR*#I|5vZHt4nrMR6sa*ne
zF|H`OJ{j5xyQ=@fG-IXsydL^qWeYxRSsVOf)T8R}jQOSjK>f=E$MfZ^YH*JO5klku
zJfK1}BNo&{oYbpTT#78FiowjtRhrG{)zfNEQA5b!`+J@!S6f5hhdku9MeX^qQ%e9H
zxfSiVnY&yxE%BV#Az6e!y<uO9J3dQjo$;n$G!u){@mHSTZT8xhE}nb|qV=t%1n`*+
zO4GnTb~4_Q`B`>uR2WwDxdRdd3JIt)^Gb9xBldwTD>@I#V6}zIB}mHJit?R#J<BId
zzV%zvtMfJ|IhwA@;qsxBQWvI^`$}4e@Gtai#{FZ95lzIs!bGWzB<548j-w);JygT1
zYpc)1a^H96N3Nw+D~lgp>9U#BwyrMZt`RilYy9w-ICCd>A}FlSvvub}-CFc50e#SL
zok5NI&rwmPBOJ2d(*Gmsje@5a?FL)gXg*gNnOY{%Rkr`j<8T%*h`5T|Lx6ED1St%g
zvoE|z+n1$Iu3KxWzho-x%q_1^Fdr;!7PIo6DW~0U!O9$pnwT_Njt6hLle>Iz&(bDb
zBq#y3w?12|+VSdRJmd!w!;&IrBAc4^{fI8~RakEKf0Ew2sm2K6!}@L(?2$>k_5CJ*
zL22YK<Yqs_a98YZ5uXrzzsnQyn}h!a5=I`##WzYmom0%(K2Cc`rLbzeo%@4B(cCc*
zR0XP)^@k#;uv~ry{X4zZRMYo}!*Q+&*|1wE#<E=MC6+P}-({i_ir4j=9vkNEQZ6gL
zeY@&vehXi{GgTQ<HzV@%$3UV(w$Ps#T<k1?F24|dwT9=Y=b~9T{p~|1DSh1CM-s#(
zn7>DQx*^?;U`jtSmwRIPVlS#A-mEwg<}h$Oi}9||#GiEv)8f-9zcenotJ2xtWQ7NZ
zmlnQKjjZ(e&siM5&ar5aRQ_J!VWl5-ZMEnKo4pyfhAP{<)Ari=u*`Zlo2J*-=z$gF
z?5tejP?eYZ4ulG<A_7hz(Q~=G-)`;nhc+E#U*(fBzjKinf07sr{L#!KcBT!vLBii`
zyjus@b`jy1A(B4qL?--tx+6;$lQK_BVLWrpGr4)0BERi6TteXX*ok$IAJD?xr1+Dh
zQnFL5SN(k~jMC9vy1$b_;QJi@B~>Q^iXDYU?~xvRRk#`C!QuCV{Ho8eYvgDxxrPT<
z=e@&(#J>P8HuHU9PTqYS(;E4yoC7XK9VHVq<fiM^0F8xQ-w(kPxmbt}>p^fuXFnEC
z4-lQcxZ=Wd`efLidN0u7u&($XS=`D?ibT=A9&e#y0qON$JCmPAzf4YN+K1PD1K}5;
z9DN8eKLQIYSp?B~IhLYgaJHS^&E_?+Vjf8;x3rKRY7Mv3bpBQUNZP}C@aSQu>!@>b
zgs4a&XuAQ~(>a+)1i7_aO2*~Ke|<#C1VXP?vq(v|0(y`&%#%rEb==6Z4Sqe~^?k%}
z^Jy#7XqDnQTM5Cay!+u&3Oh{6ucY9jZu>1f-H03Rv3QdZS%FD^%!mRV(2d+t2Y=9A
zT~#83p!?G|VT@0te6JQ$g!OLw{xUm6cZ04fZ~6I;cgWaSd5H~|_um7pdJnQ;^IUX@
z=c~47z8P4nQS#%JpO|n^D-P}`)gEtXI43HZc}kSL3%NWf&7PbA=s7oSQf?5m!qnA%
z)L>K~bSOIxGiB@7NYC~>#B$TCAf&MhFPKh<rv|5Pg0+`5MQ_@;%7kvt?hQLORiDYe
z?J}GM@^ka0WZ~C^kyIYk&O&l2C!sfz?2LAItu)$vRd~RAh;?`ywnFU#l+@U;<ahOz
z4{x*m3vicW=$<g$xejn&_Epu)IZuABF1*#AuwuUx6Z{3?S7<49;Cgx?x!~;Tze&PE
z32#uUhSF4_a?XF;lJ)i6tK%K5Y>t*Q31XEGH4N4-L<-ip5MUGr@o$jTYw2qhg7~(;
z>3M@BDU+YsYL>)}>WBHSqp@R*U&x=B#-IDh(B7J*d5$7=zaNEbLt2K7a*5?C(E=kP
zGhe7<TT6qU$Yz!eswnI=&#~iLQ|)xJKq?OyQpb1J4^u_&R<jBWhbP@|_W{t{<O_6Q
zg5u{EpBPwS&KhD4^MG?wUrbm6*ceWH<s5@%2CYKbl>;<o>BZ<XF5TG&zjSM26q?^I
zdxy6-UUELKta*lF%W<^dS(I{OlML{Qg=%npI<FwH^{jsJ(&R3gfuhFquS@T75jIEy
zJEOJBp0DZ2*)Ust0qw(=-Etz+W|6kRIWxNY(V&QEeU{R3G^i(gu+g|9hxqikjR2MP
zwrAxy>xK1qJr+O$I;&|N>Uf<tO+IarQ5D6FfnJr^%O1P3axFK0up;cbC^WjaAsA6<
zw#eA6Yk7~=P1N$EghOy@1-n5XnT)4}{RsKVdT2|;*V{5WpbYMs2v`flzNSRuCsNH`
z1MiCCQzia40K#G-#a*sUZkD@0wu9(=Ypu@ut<VQ0;724d6=`Y|(=nsWILohjSb<dQ
z5zR{49MyOIKdIf*b2PUf(=vA!6y%b0PTb`_Akb-9bL3xG+)%jgvW5gCRb$-rGof2D
zRD^r#1(#1jEEL?;qbA485^hoVrP$-h$E;-w+om?h?S)g1>#gICK3y(*UD$?okWWBr
zwVdT=Om0u<o>xe*lB&?UZ?tw^7EkJRyDh)fPD?bQ&svFIc=l`7Vo|IT{(AeG<D=w;
zH=I|8vihWJ8^b*|ZSL_$cTch1Nge9wzbUC%={%)(vz<E9nxrdh^zx+TcaT!K8kj%D
zOH-@0sd%NQvc+Th_|6Q7lGjkN$oo8;1|**bX?^t<*XI_}6L;vYYI3DqpbHB1UD6V(
z2YKePu7-!frJs}x^6Ublk2AAvBdl@Ac?h<CzcxZox87|p<i4g!(|eH1#e}%CY45)Y
zfgUz-`o*-g%Kjt!-dqubdiNON!BGnT`Dim*lt?W6srN1Tp#s4>#%#(5={hwa&P%~-
zYx1LP^2NHR<NPS4zx&Rln(`~MnBL1hvmL5*=I04jA7_0T#ETKKhdnnxz@e%MAv;e%
z5F0mmY4$x?AkO9SBp8Kc3~w;IFgx@<x;%eK_K;E#qSNcm7v1gS$>t}%k$!3z9*vDQ
zXVP(@5B!{I#bbl>r=V!oZn94d-bc{2oIiFwad9_Q#obkEC-O0GQ(N=z>FpQQT9oAk
zlzc1t1TX(>#nk*#9|IkT*#%1Gie!0|E*>I?<M^)eUb#-)L^j<LCK2_M4csF;xl&AK
z=dE2b$L^4Jh}-470#B_ftHGB!?!KGd73{N)(s5A7_AC^L^KqW0Ah>4T{}Aj!I&JxL
z5~_)(mho+F2l^-jv+1cya;PaF?fLq?X1a;hZ)G~$3eOe#Lj!G30#bI+;*)l+S?^`P
ze#S#$;6*n#^>Er-uM_d$Zjh8c#-4u0@n4Z^+Y|M|kS2HTl&KU}%4~Df0AdF#K2(;V
zX6*#9(%K?4mdK_v5(d)ava9#+1uJjsf;Y#pU1b+?T}kW^DpR&HWuxf|O<PC>?~Lel
zSg+lEow|;STmMaq!Cg%8c=h7L@*|fmk}ovKSd)$d{)KmN4dDmG?Y<TjrjSHVg+$Ua
zSXkL{ww=Uoa$3~TOD4c;=p;+Tb6x;@{lC!lTh_QI_3LY7#0Kw!xKLS*={u@gsu~X2
z=Kv54uR44<kX1kr=pz#Ap8WHLcWb;kT~M|8{&Qc(_ce_JypUl^1#F{c6aL!?QZy)d
zHtWy_4+9;Ts_k5b8xa^Dlc+lVOw8bdvJ1Xz)BHbf5WDK+opSA7fc%@uw)p+xg+&fN
z+b(HVX1b(ip>@tDJZg|zra>lG6|>f4wP+;+FcIM#?$;Vmgwjd2=*wUK>uiZXY$kfC
zr_CfwNV4}4a1V87fdD7wb@T<=tP|I+H)wobD66~N_tWY{(o}qI$3slUg$l1CqnRh?
zskodz0U=0j(q9D|zh(we$D6!ntVqlczxat+K6J}?@^GJyJUm<+-q+{in&$%4YmB`i
zTHK&?&V`nh5-#805LNt@<pOFmQ7&(dE3z?L>BvjLL1|_&spY)Z@Vs^}MP!ennLAkP
zFg=^mhK6-)Ki^+g9o**VCIr>Rzg+dY$GT(Q_+Y2MiR|c@uMd~QgKQLq!g2~!peRS(
z1bvO-Rl4H^ZlW$fteam4tL3hP)eQrcbJJ|qlmaaHdXBPF$4D6KK=2)i;8RycJ`eK!
zr(dQ81YWqqXQozbl-24PjK&Q_PT5(<8CGq8xo?nCZP%Wmt6a=6VmauRL?3}@DDlMP
z=nDmiiCWno6STOa|C8eis7r0jKnMvgM9_JKxb9xpMMg8;$}P~%bdsYynHr_U@Y*3~
zNBMmYyZJN5f3p0bRUh#wS&-N7`Mu)xK(im&fV_Ch-$ZRb`zcG-`s{UkkK<)GOqI_f
z36QqjeY4<di^`YS!Swoq5hq(#1|LtSCC>?rwqPFyqwErO)mGEsrjMfTQ9ivsB~z>g
zSXhFMD<4!?Wx&fn63P+7`=Bs`m`w7b9hEZ7_S<qF$k}epUqf_23CsZ~72>wUb7y-p
z*uxxcbvgHYees?@$AQ%4k2klo{Jj?S&IB$&d(ob90g%OXxwUzjR7}9@ACc(Bv3b_}
zZ_~P#e}+D(c!VEH`TA7=8@*$5EEpG2X$1JOjO9Gki+nJxsdxyasTEUB`ut^GL7Lie
zO-rJ}ovt|oyhp~-T|i+1G^Lx9C9-J-^1c<~QnMu%2|}Ci2d9mEi+P-nJzg$9VjZ<R
zB1HPX@Em?J1c@|5&wE*Ob7Mm?YBYA4p8bOqW*}R1uVLo~xaxk;zh-F2;l+ieBk<4D
zaj5U5;pKxrS|V4HE{&uN#_=BV$Nb8qK`TN`@*JHS*%VL)bGdpzwpNe;rRl25&wMgZ
z^o=+N1G8|#b9i{M*n-rl!v+-T4b!VLZAXm~v0c!LMxMD9?|-0dUF=6D%{CjbTbU-P
zJ>Vw%zmw`<@Kf1nc4xAyz}a_;;r1$bP<HaCHb(|&VNp2kpUF{3AZMT!zh27{DcM)+
zp%OeEKIDU*`y*Wc($nDaY~u5}3nmT{3&|ioeS*bH2gXAESA04YDvM!pwYB`U`d~-L
z#TyzZfZJ9B!81aGE3%xb&g;Ty8S}M2)!}o!K#}mD@n?ePTq4IyL^C<dD>zMB&w7wR
zJ+ZXFomiZomb#s+3DP^)op>3{!UcQB6Yt-#Ef3c_r2oCB>QV`u{$7nGPf0Z^QK&7$
zCyXe@@hZ3R6eO1a!5mE~U<Q`jrZ;m+F_p7EN4z>8%fp|cHcJTe@cDU~?}g&K@>uUS
zNQZ|Rned@1`LPYcaqr#ta&moyfave2!c?!OdKlZSzR82pgnq&pST1wSiEJNIE4qNa
zT_zTiAn%Yy=<f%$3JUDuvp=n4crij`<<50bRx}&2cfquQ?!3Dx6@A^PF1fU*io{hK
z9}te*GVeF2b!hmy*<rO#ouD&0L3vO6t7KpWli=!Zp3_dSYdJ%r-r4b5H5W&M$(MI*
z&sp%h53(35qNW6`gRkLIkWyHrKWaguP}E8Oizd%hi8fEBd%$He*>z_6Czz078Q;&@
zc&Q$`_yO;J_%bEkkHcK}&5jem)SM{tu5QiAfK_fWcHyeb1DkZFU%bOg%o`jGSZZN+
z7)O;;3CSZn-rE{MZwQ~;L<CyOx|#o)&wlmveO-m@nZElxmn^92$_6?>1+4tC|E)Ku
z9cf~x0Orrv22E{6%lVNmVO^tUF#O8e2;oqn0jB<fwsraaf&WsiSuxOhJzoqgzJj{_
z9WogM1Yg*k!;-oHVEC-!8~Q45hC-%j`rY?_2m&cfaEH}We6CD&3IJ~}{h{Lqh*QvH
zfKNaf28aXCWLi}p>5L~Ksk*9CYB#D?W;C?7Tu0WIiQ@A!RelVdhR1nTtG+t9OTu<#
z2uRD>Zvbhn*`7`ErfiA0rys#`{o*t0o8`03u(L~nkVd`akZ}H4%f!lMduIGdf6Yi#
zYVis%IF?yH%@rrT7aLKF3d};c*8WhXrg)W%N?<Fw0E2uDc<<Br@BF{Eiur4fOO2-B
z9c%z>>s9zb1Us617})?cv-%~RAfzJKiCO~`VhO`9y$?&8&Zni1Ff}5vyFs*1R~lQ_
zYRlp)T_zQh`8y9Qmfrte=*)~nBZeiZoQ%s7XpmVQgteRrjSV!p1}z0;pj1qq;7ZDW
z7IOr7**>f|_-y`Uxpj7;bw#<80tBQXFCP2<Y2PAc<=iHD@Cs#y9T1%i;P}@p(>K$7
z6Yrl9`32Xxi~Bxo=c2P59G;#HAKRQw<(^kLorW|%`e7DCiQ)nC4zVf#ivymH%Fi*_
z1g+9!=QY&zUHAI5->xpfZ2qKGMGEZ|A2!fjIjYJoNyuaUyN0wg9h`c;^5no;uDkD|
zoMbhxoS)diqXnGjI+hc;f;wm#l?wUhU7NsxYvTsx@<8o|QV1g(0i}W^M6hazMUiue
zJk~Iy@%?<+TSP6tFXTo#h7Jde%sHS#%r7BADB`VeYm3zF8N2YYKfCuVX`|=|SQ=f_
zk{(776an|`@OZ3TCq_aP!6WIwlbx68EzL*}AG;*$u8~V8ABL2yRJJ^VJtP$Y=)~t7
zb#*$oK-IuwGn<tFE!%qS_{Bw+Jg!eqmP`Rk&JjD1*wm&DYhS0iHQPCdoM9$tVSIz1
z(hj^CUK7;}{}qESW4~$lnBk8vAYBq<)hRCTW{Wp47?HV2H&5N2FN2YKdjgBW&fSvh
zQP-gG*~PrHR2qyh!_}&Xu>FylzVO2wMNXPL4TAzd7%62;7RFqZXut3AOdk<H2uzQU
zMJs0c*SeZvN-&QTRWU!00j)=-Y@0u3Pv}rWNDmN<&?Y1ygu;VK|E6?^*5R~d5`-SV
z)<U0N)7e#04A&jOSbKupC-`HAX2)5hHoP4{vPOM2C47~nQZw}=qC^wtEsrV98xX}H
z`5Iof6)d*2CK$hf)SLCDHDF=qNsu|~bL#P0l|#?=5Io)?jo%}5k@f}Y^|^kdWdM;v
zQ$i_GB97zDRGi$UBoIO1hz<KT3dRreFbj5khbnTwSzq0&&BqHIJrp>tZi^NdMOv?J
zg5JqpM!y^b1euM3(1s@b$zzOllMS486yEUjP(f#(0$@;y*4DOOR%?iEY?IxSi|xO*
zt5z};l-MlKS>6kBc>WFZ{?rQ~houcI*ku0MG=dK^1}7(LB7{94338!7;puLik{b<%
z5Y)=o>`z|Gl3<8@qOb{YMl3AWeWnTlsZ?3~3sJH=&kfOIo8Cnao8JDc@B^oO*L6l6
zRCDc4%kL47BOF&eH_}u8?K!^=^|J8hYi8oW|H{e&?u~yt>Ie*##y_8YH{F0JG=FR1
z`m5b&ey>^4paPf!o^^IUEu@|=!AvBoT84P1543tJz1u3XEylg(6?wjZv8r|sU)R49
zO^}pf9DQ!EWlwh%^MpbK1xpAPKB(sz9Ydzhgl=;qio}&%;TNM7pZGIAbcsaVf?wzv
z+B~xNG`AU+y=kTI-rFNA`ibchYfiDD$lbO-?L5`z98|k*J9xu>Yz*q`p~?q$P;`vh
z40fA}x&J0W4AFN>VC>(`UdyBrrfWK5yl%_igIil{O-DtPGZ-P3ob#EXBxfAOjl4%_
zyvIu~#&Pao&#@Mp5{fupMmdjV3D+YwyRi~J46<G%UtnKssOoENj3%nKD7K}cyFOa=
zIjjQ0`WZo==kY}OC#}S#YA1^2t=(by%l){y5_@x%U>!$Uig6oXicevFc6v{??=+?f
zWW)~F=Z{|;C{8!<I)G_@M0*Ky4Hg>@FCt$bJOp&N%2mVz8J8hi(=)ZB>r{KQCY;qv
zGQ~>g@;xLwBp|IxheXR<3E9oiO0vXEJ4{KYrU>8=WuNh8$1?tEbpnVeMPrl5?&NUU
zpBKzkgs0q{fdX5Y>8ZejXxDX&>!BfAen4qoOY)ogye~b-(9_8%-rehNJDxaAR3la@
zSvvascZ7O4pbHDG<+B@wtkaf$9<+cVn%^--W2ikY#k8e*{&7S%XwMFi()J&moxYoY
zR!LYYKCGyk!Unx0lWaMdk?ZnjZaf~0CRmX?0==JU`^N!xo6Lrrt|{i5;{a@?Jj2uy
zZ~nW_8_mw4kh)AO@7APSaJ|v}XHNH%W{6@9+t!t+@50FOU!nT**E!v{I{Q{{e|q))
zOxfzgRu+&<x9TSf2X$^M%9zYv<(J<|&eUy~>kJL%$DRb{IUq`WC>A=Soi}%s#}r$}
zH%PPoU);TARMcVH?ri}o0*Zu^3W`dK(kUV(5(Zrg4Ba3d3IYO>%7CPF*N{Ua%@7Jh
zcY|~{?i0P^dG2TL{eIkQy=(EowM1lQuK#tN*Lfbt@zY{&L)BhrOYTUflKf0X3}+Y(
z1b%?cy133=rn=-*s*3e-c7jaFm|_i$j}0G}q<_FvcqU{?>?Cz)_9!;DY1rp~pl6^W
z89UFQAXROAy#CYe-XA|Sn?_zlZH*C0!r-!QaZaKaWJ0leE`SWoH&Hx_t~?Dbqq9jB
z=KiSMTWu-9ak~kIpk%zrrBH-rw4nL>uB7q_P}Lyskj*M{NxV6yLQ*m%0C$1SEXhA+
z=(f0qz+_j3k0rCX_jew9i8q?}x09_m7t9-V&@dVsP3KS>)G2eQqw`a<h{|@7tR~+Z
zyZwoYOP5H-9j27DV#ltFf6g~iB{Mk1^t(;tAV~Uc+ieV2kxC!V(<=vHCW5|jb3%F2
zHEYi5mMkSuXL_R@Kh&ahOl5I2&NUTdm`WlR``s>+;GPsc447=Qb?2|045Rn*DmC`Z
z#9C3!zuD0KXDwKB*3(SeYqVI+UdtJs$FRCm{W#<IAhRV$X`8^cr0u%~Pa_H)eP8ZN
zYD28%U4m0{Y8`gqI_xle)V?06pjnkOWJ$O)W@i{ptbH7~rN{Z{E*RCT75t*zu)mJ>
zzT;*qPEg%oUe?9y)|X1p6Io>aV)NXnS#YXE%O64BjZQR@$FI}(`+lX5<Sub6XHavx
z;Ogs+aLb2H(x*;DmB@VIrNv%XRu*RdTlv-^G-Aguau@H5=HF?#u7wLhZ>sA>(Ph)Y
z<)NH!nO!a~_LE|vz(iu$9G10dywA?H2k{SAdd%O<<67q2u5#YgQYXWV2zBJW)Ss$;
zPKc8%`<v3~)NohJXR!iX<^ESGQ#n=9!kYd=CWezugeRtG4~)_VuMymD$?aNoUh14;
zK3>ExO4%1UqN-#oSBWRPgDHHp9O~SSN7L(9;=ye?D8<t18M`7QGt2t0YD^CzfbdqD
zI2w&<g=WH=dZ?RyBXzB6y)YgkmG*n-<%+Xb8zq=T$6t|-kTRUd9O-p2l2}AF&DU&r
zW=vIKN%SAi=)#OJd}Lx?Oa1nXER;2?b(@;z){R@AwqQLiHil&@w+UX3chxFn)fA%P
zIXNh<w29Pb<rNqh|7Moaw6r4T#UR&(x+bavuGiBf9<N`tZvW8FJS2_FG1@)iav>B!
zxmzg4TA@@=y*(U{Akf1P`{98Rf6Veol)bf^p6XBc8ACS~x@6(^XIps#Ay(TO-br@v
z3j4X_RabcJdh-@u?5rq7l77ZL|H2d^L6ZrE3>)0cjM7XtExZxKw&kemL>xZv78L)P
zE*Hr+?d{d8s{>>!pcePgED_+^w$D4$-d<uj%lcK7=N58ldA6ALuwQ+8>ZjjXYwbhl
zHy*Wu*C2rhgrMiwLw^aesvqsUkQcippCr8d-Q0r~H{(q~Go3(ZxFNkIaC#&+`nsiC
z)8VTxb6Il>UI=Y@92HLe^yxdJ_G1%zz7b{nHkD%Jj2L80aN^V!Ra3Da?Z!KVgbyPB
zdFS&!FH3DiOUxtY$fyE+T05d`*zeKM;b?w1`+|@vxoiQZM@?VP48L0VW1{}8=sb=p
zkr}k@)L<f)NhV`s)-we;`<_3m#(9nQhPJ_yb79(dZ_M5xz9tyqU<3k;^oH-ZnWmKL
zZnod$M$xT&%SblL=`Zmy!=zd4%_mOXWWF;&@szL*P2Q1q*+H(Ep8W_<F8a7QE!O4c
z=%rP-%uQ{j80DyvS2=g{?SCw<nJ->X71dEGqT<?{teNaFO|-0kOV`^(g-IT8-L7ZO
zzDsckdkjr8kL6uK`V$G~i{*DPulkUG*Kh?4`9%UBN2)Y`ZtlIABs1dMH{UzWabTmx
zyhHYpHlQ(U_;S_l@iH;YRQ@BH0a_9rjgl{Sv~uR0Ku4)bVYTQ)r2S{b6^cx+6Xs?~
z{08i<Cx{qzGTo=62R=uyU=yLFsW%@Mp_dr(m}*QGcSy~7-}ZeuXCdb%ODKnZU#}vh
zFP^O`A{mukWeYW)<nB^v^1iAPlO{DvK|^@brAP`!IK{3!YwzZ5)zF7y4g4v?(CO)F
zCVsv>2qlopYE3AOLo-M}s-77}Mh_gfdyydv_G@L^dZ1O#wYN|`e0Xb9Dn--f`#wx8
zgFC?zYxny{<bwUw(E`F>II3u=6kD<Mcn7wz_1V)l7cHkrH}D6eJWRe57}7S;T<4mm
zITZxDXBaq^-sPgwT!(cF0u&9~R`CjY$pnxOs%u_x>qy6$k(LvhqTPd8{+{I^D62X2
zutxDssIH6lzmAUeJS*>}T6;c}NHv3qzET1tHQYsU{%zWqyMbJq+px$B((a;;KvF8b
zmwt+wW`1E2Mq^`rU#v%*J43bQH<+SLUPsW8^o0Z^R=6~MP04R84jw-8F#1{Jn>^^W
zr@<Ze1Z0Aw9fg+Gr~09mm)#4EFE=*Q7q$}cBT8S&v#tr$c7s(>ul%_7<n}`TE@$SX
zmmZe$h^Af6w7s6t?+7NX(mS{zaog_W@b2zbhaLva{0v<Xd&BzOJCLf&wG^Bh&rLMh
z8>}4gP83Klgs2+`C3)>0f()qrTj|@BPku6lh38nek(g7p1XYw`^%QIpEN&m+bANAt
z`WO-$C=Uv6`=@$7?ZD|S2i1#6%a@>@)jt)?J*X>+J8COj-2av^5YbnqJ|sU(b&KvP
zKE`%uW4u=Tw@G%Itf(X2(n$&O=$#1qh^7AY{44g;2grl&X_>6yvwX@$Hmm{kzpHeG
z_`S;?;JnQaQZD-9C591ujvySF>uyIigF3^?lUb1L)=&&)D{cmQQR<-x=yN#??EF^F
z$<@+!wgtGPauNGS-p4%reEJSwRf=qgisXwFq6es5WrinLDQEN2o?q4={laRfYs&4n
z@-dEg*oaGQfG`>74&frZ_T5a}m+_-b>LJ?Q;xTK50wHUzOZ2R+iY$^)P}Yb^q?^v~
z!G=4)D;b;O1{zS+UsceD0T(hcv)Tl+O~W@qNm@46GDtrknN>01J-k`1>rMrN%RF+r
z8dTCFR~E_OhREmUbF<__*!8JrkJbuaGqW0cY47|DBD3a(gv+~^7+KF1rf<JVy-n37
zaNGX)4y`LF%C7FvA0eebQ=|1@OW=FVJlL1RGLP1?YH?*zVhJzW@39zW=Et4=f)sn?
zxb#VFv@*Kt^1-9;aK(moTcu?x6lA_)i~IW*<e%S8(Ol`a`Xzkyx+gqEnIE$)B<J0R
zSPD{Oyk%e&x^K%Cc|r9xpN`tfqaQ69c_vn}ys-z`v-R(=gR!>@ElX4^)x_ArJNrCK
z)4_&I$x2f}OR54)*e)~K9!x2v_jV5^!k7-u)r?J@^jV-wJIwz)7@-s?ID`j{^b_(N
zR|rDlG>4pe&=SE=qhZ|B+;p=0uWS~Iwm%R<qN)q0axmh6z3b2ugI$gXdFf2+p0xY7
zEO{BbIC3_v(5n8WK>k5H9*xN&)iXVc2fO#cVNDdBHk>Gv)F;n#n#7=}z!X~VYgx8w
z-$5OIiQ)t4w7A()?(#@jx}tumuoA`!Q{mvUVVkzCOX$7~ObR&~i>#9FaAEfPh^@%(
zAKkv)koTtFjK#tX&|85dQ&sbM)~=TjCnv$3G(2du0g;c`B>u0jdIR>^$4|wn1a!i@
zG=K0^9qL^OxaQj*&1yu)+Qr8o2xmVf4^HC!-?b6}mi^-(EwWSCY+K(d-tef5zR`B3
z-Y=e(EcB4ah3w%onOrB$-Ha!Rc%)^C2G?n<itPsa7+KU&bYs#i3!loJrJe4yY1d<<
zhANZ<-Vm6R{i5d!KN~jG5XZdU(~j~#8VGr|FqLe|Pb%@nrrVcI_&Un#VTVT`iaefO
zM*dUlJ%7J<n*(3RSHh}cU9iPrVhptV!56X$LXWP`13l3w!Ta91)5Fcgc$9K1LVYHb
zAX<`%dH!UbpHkJ`OeW21c3W$qdv#~<2Xtn9^<z;L-9$h7&ti!^Up{a2qsD3*_1XPu
z?}3yc3Z_`Kd!=hBWRoq$_ur3z-upO{!A7$%-W|25@AhgCPjAsw=|dA#tuNeX2FT38
z2Qp5ri+@-gs@j#Tz~wmNWB&Y8|EN=v#8bO=@XaqBHPLLqIl%svhf|V=*=f+z%*DFv
zx)`!;+a20~$;8TB8@ry(|Mc%qL@a-1GXAxWZ`PTm0kvM~SLO;O#De9M<xkW-G<-TR
z3kX}!o}SW-Q>#gy;nI=&X}AEHVy?^DBOtxxHV=ax;roS9M_sUCy^VaDa1lnOg(ZtI
z=qy1b<=4ufG$|O&$w#L}n-AYhaHH_U7p-u%R`Uk4LygJLkkRU&vkoRk%#8O!#U&lY
z-a4hQkTLibW)!26kqxH`8T|*rfxR$Srlu+7@&00KI~pe0;kZ6^S=w>rm+Xwa3sI%W
z<Xdl<+HfKiWtGm^MJJz@yBf<dfF2U~{nvnvZ;q6dCLq9Cv~a`rz5dO&{g;TSXZFW|
z#4)|K{5O+p0h8+B`w}#~FC6*Ql)8a6y}{K~@BlM7nUvnSFQ+6^|6=3kIh(nG(3=q%
z5}9rHPMQd=yi4ms_@=C>meec-f7_rEzioCT<`-?^QFoT}lL9{94w$Sb+&5<#pEXME
zAj6{Dhg=k~!H=C}(fI`<ldIxe3XG-k`-*IZadfG$U%P!GvmzLFo=a}veLlfs*Sl7|
z=)XRFZfN=~5!@jqCT}h5@vy(0yM6~Nffe$PJ{#_Mwf(9WLgKu>HA4K2lhny?^{+1)
ziL!&U->ZqH27faAF)6AA#MIs#0RQJ=cF3te9-9+c&B@m)<~3_aYxjYR!PRTbgZ4;p
z#EIS>u=4fC(*6C0e}3B-)UykgryVL}s5Lq8FP)t3EH?)3;dRc<!q4?RRK4;>TJiAw
zKY#9@e<nvECu0(7ZnL-HN$^}+hOn0H9!9aYKaOI&@4x@>*8$qnl`s6y(cf3LodV{{
z6H1c*<_~rKs<J)snd{I0D~MdWGoV{YLT5ru{NRD_$@BTIFSa|FlgbG+JnemhnxnoP
z{r8o(?Q>0fUKpA9m`NjD-P`~5CY}62OI58DFEc=-;4Hi#(f_}Dfd7+1ecm_upKkU)
z?)($?{QoQD^#2<kw#+5uFm~uMD|2~sgsc0p$G_f&KYwt%PEy8PmWIB)B#G<LR!X2P
zZ9wUA;Ut~l-(MUmq<+k0xvR-!AF|FD{!IAy-~9Qm&vJS7s3c_*Y7%ff|4An}i9z`D
zWkAfNs9Z!*pG^BSEpNI%@927gNWp&qz!{3Q-4PfEn}Og<Vy-NAMKsS_{09&G$JCGA
ze3P@+IsV6ABw~3$upmU~9)o_+6`))GN-zQ<YP79<ryzgg4N_5E{Q;18Ph8U~v{m)m
zhS5|qfRL>leIgNv&?bGSEdvm)6W8?0O5<U~M@ZqAGxv>;SG(31q^_8;G}AWm#U*XD
zUF|-E=xzS??mByH5Vx`h#I!lJa90Ht6;Cq1)b^ONvDkbp8vwB3CHvk(Xcjl>58MJm
zUE||WFPDUQhixTtu5tj(0Ut9~{}!1MCyxNqF>MEOhpNKOp9+mGQD3Vcd(ZF{dfF0a
zbft}q%zP}PhD{9FBO_~1OxDlr%3Wti@19QyfuuLJflTum*#HqY9>H3-=PO5hIm$TS
zlwU%okL@qs{r&q@4DppQ4?9LlB8yBKs|nMyvzLJ_WHuUlIJ_e*bZGx;!Mt2d^kb#t
zL{D~=#dv33#Cg>(;ZffKP#G&5*?#OJ&NBA9yQ*?~&}U26_`8&&J=;lmE5~{Gs7ao4
z77#_)pcC}(eu#8DSPeGb29W6d1td3;yW&B|=D<V)ghhO<Dn8PUt6g6AbRcEzIIl1t
z=Wsu#Rbi0h{-WOvh-MMR{65_Gnc|el%=_Vkw$nIf4F23<*Z4R~mYla=mAXA&r?j~n
zD@5`OYrN3Ox0P8@d%(Kg{?x?D+<%XJBUbR$x8J*bX-g1w)k!1(6q<g%Kre23>g6lh
zSE81~?O#7MW9GNIanNXa{g3ha{BUr~%Imk`W?SeGhyw=Tszr+N%3{<xV=`q*lF2ie
z7%E86$ll+-16ejWM=b}oBWL)mtkl;75{G?zn^22j$SE0}nbD{>@cA2z@y)<D$v<vj
zfS;=1(0it4&uPGejMLQ5GXU#C3Va3=LkO7)HqN`I+YeCj@0!Pe+|Z6wgxJ^o!u>Xs
z_%m)<2<_cZ*7V~%-)^=*vF~i0Q4&NO(2t8tzm83*aGE<RJY5m%Fq~ah@Md&QjVYp}
zrEAXDlZJ{LNsaTPb=+i$UrJmAB1B`Gg*u|!$1R?@Bk(g#&onRDj<S@^7I#fMUeD(1
zQMQ!?qx3YnauL~{b0uVgKHi@gtYqq6*pi*gXouV{d&AA*nh*rjkvHU751od%mTM1#
zul`{elgN11q9Xak9<^~lDBYCTm&D1&<T~t&dKuSN{)D9IylLl3PIn(Eogjo;D7HcK
z7($`pHFgy#_o-G?^?aIdNNb$$;@+a+^rJbP8nU%|__z(&A|?j39NY1b%`&AghyIaJ
zR-I@)ydF_i3KMom3uk4Bs-yn-(U4HTvAy-{W#+-jwcIUrnqoaGX0;RMGC(TxMN8B7
zk1-bAc?~GhUpTF7RlqMuud4bz=zwqIyyL=WT8f#DDIpiySm0fpuFKNw9T;JM5WiYU
zBdv52Ht8%x>m@UF?hn~o?Bx~h{*m|32@yt{gO)S$`Lyae78uODrTDLoQ26j5)pM~>
zpS14Ds@9vgkE-BRXqQ^17hj@iN9Ej;!FzuaJvpr3s=Kxs$l5m=XHN#HOIbdenn-HS
zAVJoYu2j2`0}MQENqW4wiW}~p(j_PBPp4z&8^ljXE-#}xW}iiHME_TswDwQC76{wN
z@NyDFQcE@KqdLgR!=^MakkUE_Shg0TNB}3$1nRqM@;lvxOupMZsE+CORspF-d48M0
z()%WKjJYQV;N1xAwI6^9)BH;A&cf*6RB<-Jyzwik$0Kf<V(N}!tsINlA=_nvt|Q1K
z+<OBn)0-q3Slu$3l2fRMjW;k13Ic2GGG?(cukU5r1~#-Z_`#c@b*B&l#<vvx^-0u(
zTVB1G9nVFHN4|1To1Yze^34G_>5XZ0jR`X~@dwLUDjMs~)NaEDkG4NXG`xomF!hQx
zn9aH4gZ{Y9e-eF><qx?M`BfZSCvM`xZ~lInf9k|;P6BLqDBhK~>qwQ0l%>jEPLUjl
zi^OT$L%#dPJ&zI2g~>Y;o@MIG?@0R44%aTR)BWQG`_{$0kCg43BH@Q5FUg0}zXWnx
zCm#|s!zZ(*PPp@t?w7B6jDMeQ|BokF$bF;M(X?404>z6Z_9TcFbbfIFsj&_yl5HXi
zToU}v%|M3eg&3f#gz32q#XDbWTd3fzn3yvM#scuRc5;`%FhBl83NnBashfkSh(q)q
z`v1_^ant-yJouTf&j_f(V}vG|EXfv^V`#`YpC;Gvj%N=W6;^)041Bo!kEiWAAU29G
zSzKG_Sn#M*0S>duBW856<s;1eN&3+0R|-e`m#_PSp7VttoH=bSczwAnuxI4W^68Ma
z>~j7E2r`SBD*7fD=%pLU+QYSGojy1|SwwUDw{~UPgb(*KIRAO;Sm*(ITeS#T2El}A
zk?XgpjqKm@%=%YWqv#oPi!R(c(XII~<(kxJ(LkiMJN2uFdhI<S4K1^jKpMSpAhKT?
zWf9hqw+JL`_FLLd{-EpSIS|Yk8ft1MI|VTCLrR`Kp1Xe7wd>c9tn`@<YVHlJ)8wY8
zx#n&FkM8LAr;Y-#_<E?u5}t@+g^>X>gSE^{x^W)SB1$Vh+gpYU7jM*?XBmXh(sw)&
z=0->J&n(K^v1`q&<4SS*pr!_%?Sc@Cj$+^r^~v1OdV!>t{q+m_O+2ywmC#IqdpNK;
z`^$vi9%N6|&R<8P9omp%OJg>CZ7gKXBJT%QS1k-x_L{r&cNPU7>GL`*e}`N(mn(xY
z#s&td>HDr`Bi-2A`9Zr|G(7e^2Zx>zy8Mb@4exC(mv`-RmAAhE-df69S_<SaKVLJ?
z(v52}Mc#o6Y2@3qj*8=uAC6Uzn-TW6qPN@G973x(?k}PtOwnc<9^x)xCr2kS)9&6`
z+J{r$_(T6I0p0yw*xE)m>i>v9cW)J-3H;5BJ%1cqTx2ItO_)TRMDvW_YH_AbJKZR?
zEN{=5p2%n+H4384Ar3qBs^P8t4JM$H;tk!sn}~V#%(X}6)jB`~{=?pm{3;e!&X1t=
z9}nSA;$xiOas;$A#N=@%#6u*gUty+RsTk&l3||DgGcf@_G2eJRFb-v+N;kmIpQh3o
zNRx0{9N)8nlLa)?A8<o&Ezh4vXC;Up<W31?Ouvy+Q**Mkyij<7K&X^XwKl0aWBQYL
z7Vf4>+GSO-{{5Hy`B&46xyJ$xRdWujP=>pe-!8mR)x1fdRH{so@iveq-;d^?P&Vua
zTU`Bm`~y`lf48_?W!34bq!oNO!(+C#_s6FriW*~caQQ<*3{~!L8%xRnj{!IwQ9N(G
z+NC!#zU4Lnd>yCX?bJUXFbw1euZr}WYN-CUGB%=}5L&Rn>p#~ybY(TzDX_vRJn<Y5
zJ@>>P%XXUN6OE?Yq-YfWwrE9$54$7{A&h9L-n3k3K><tAYg?rG*o8Tbft$9ZYh#fz
zaL_h-snW4ySX;sDYt48b6a<UJvpt#FyUzyWFddzKM3->ULEFnWe@l@PC3o!+UE4mg
zKXruH{i})d0LeU<e6{GaXFyAeW*H_t`joeG!tuipJkFtKo7;OWG>(BYCkbSb?fJCI
zD8-9-5oci1`6rgb?qG58`nKDXEc{!@r=rEV0~Ks3-i)I3<A8pUiq>z^*Bw~ddzMW^
zVfY3qe%33Ru%gD+=CI!RYGkFT>#4UN4yo~%uLU5wF27Jed8|}$POHc0ojzKHZOz2}
z3N>wSw9b<dVGjQ7u20u6sQLCKk9)CA-0gI7kwT(W+I#IzZfms6C4-4&EpI8gj!q)0
z1uzii)ecdh2@Oj;k9IbI-ZPDUdHW?N(Cg#W6bl1k;OODu;nRH2=uU`ZqwYna&)!~M
zCyUuuK4Wzz>%w32eC2U-i-K`CtAN=SAK#-jkI~lX4jME>la4WSU%c4wQ5Ex0ZXZ2>
zuu7IzWVY4SO)M$V1(Y$C!Wr1FHRo@->>LrZ-pQ%&Y|)??+&y7#fA~ah#hTaU`}VPR
zNS$Y4zR53~Le*g5Lwh3yg~DZafY(lKV3usVekd&X!I8`Hlf&xnFP=ixws77^J{Rnd
zXqi-pc_z`N@1w3eN3cJfDbI*T*bSC~kv87eurp%D;@l|dFkl~n0@8UB-25O-O?029
znB(Vzc-zDd?icdPb*@QP$A_4&N*m@MX(g_sD1O}NeGu6cS-kRESW+WrZRP!POw91T
z0}`iLS9_qaUl>>x{<8d=_sH}{%x?dzb)AbyR^#$Z7FHJS6-EMKRl2EA4p{Qzu7g9F
zTw!TfAQTW%P2k4Gz=s)eeDE&WwCy5`uCMfDq!QVOWmEp{`ee>;!uMI;|4inl{cu_G
zjS;PSZj~szMzcARldRVfY;;^1D`@RIM<0%3r@dU=Dhs;@_*>Us^1X-=RDbM`EvjX_
z5h~4kv%}>u)gj2K`q3<(O@FpM>-q$i@U%!zDw**kEqQ8e0M#`rzzn7-cnO&LiLvXn
zLgCxTeTpNfk$syPiVP;MnJ`dk$xiWUH`la(3s+7M@-N<%&VJxf%j_>hxenKdZ;jTG
z$t^@BYO~X<Zu4=noJc59lD(>_?}1u0(k0x~?H9xRn@$YG$A&S;edC}9xH$kFL{_5Y
zqWBUN2Y@(A`vpNxLT30z)8?ja8U0}c+Pe4^W`6EksVSj1qF2!ISyi_?O&vSJ20!aB
zcYSdE|HfTE5^)EW4Qx0_!3*La$3)tTH>&jKyFCU<zbW{tm1$B5OZR4Y_4ca*+YL05
z5b<qjc$<$ITdfJ$o8m0#B^3%k2@l*TBr?=EtpnJl`>cxDu#Qw&WA(CCTlD;yBNZ9_
zja8w%5%DBYxlJdSddpHeV~|?4)!wiEv9$LnWI!uMTH55Pvg$*aviluzuS{Ic93@(e
zUhLTm$26%fyLSz;0E(q*o-?eBblD!l0oJJIy!_dg23G>h79!{TCqE%=d3DeE&zb$B
z4$%*#xGuhpXOn0opSR{${dFe@9b^yFJ)I|<(Bx#SsZ0I!^HA~{7A|KKZ3~H07b=5)
zLazEz6Ixqe+qU>yE8GASgj{gh1&<O;+DMO%Rr9rNto7wCBQ*v|F0+klQ%6J&u?mqF
zy7kxQ&H<8Frf}NJKjJ0ZT23A0>LQ5dY|n|bl5U;0;95$L=D$%^mnNQv)?`ZC0B~j#
zcPa0}^@x<(WYfI!@l_{S@JRw(&gb~#y^dx=7N2P&JQ@vU-mI%<EQPkLo0Y}~#M}g2
z!Br8V2e3v6QN3yqOcEB2@c#Vzma_~j5iroTsa@q55l~W81Oq2rb139)4$l=SGmjUv
z!j3f{Cs7H!Bw7sIi6}dLpbyN1>>3zgIKO~YW3Rp+;V<yu!FR9IxLW~<x(+u1TWvZ1
z`&H&)?tg)@qXo*fPoV4-s{a=#dkgY^17+6^Pvw!krBP1u-8l-XL>5EcbL)HJ$i}Rn
zuHr^_>+zneDsM+@t=)`n8j2SvgY^-AKea(u>am{7LvCWN1TM9(2JhhGy9Y%@+f7-x
zR}lS4h-nJ^6dxpt?QOX-#EJM}8TEF1gR~%Zvr}0Xc)5QLL=M1PhOJHJP}2MHx6t5P
zNC}toTd~|=cSr7Ov;NGj2B-ocipZ(w&a2MAQ!H?lKvnf}qx6#6E;B!CTl%y*9G2+s
zAKQDrqvS{pO&ywn4ZGO5!o8VaB}l_O&9N1B1K(TqRV79H%=e(9i4j?QQ_BQZJz_4&
zC`3&{LPto0yl~N50s_j2?hmBWOS3D6N>17~SraNP(UaVZzRminA)ejK-;Diikuphn
zv_qErVg>ymj@CJSyUK()atq!PfC42Qbk<FMG3?TBGN0`K5=^0D>*gj5mVAca^7}v4
zZrlA@h#mSTi~V~I*-0F3uh>olWIq5(Bx!?HrRat0I|1DXcQIzh#!8<I2FqD)Lg7b$
zz40VX{UHNn@p|1jE?fRj5<8AXzc-NBIV4G5d@~sp5f--m)e3p&)6V%o6s*j&VB3ln
zathFLFg7}?EjH`cam@8wyyh4ys+)Z}Z8|AdI@@V8oN4>uHm2m)bMlpbr+0kIb9t>0
z#N3o4%TA{}VtLGbm*a{-IW>>HvMVd2zf20|sb#CYlb&E~=qpi?)ygOYri(xh_*uWc
zwX`r&s6wJF;9eT3E$%N#rh15IvE^>~;a3V-@c2gr=v`*{zW)A6)r(AAf9v|)1*lY^
zB)zlJkCCBUhcNc>%<5O7d)Fb%-G*)f3vh@R+es~x3x**rO7GyIN1oa9F<2I$&Fdgu
zz+6>n4d+$U3;?~G4Q_YehKY{J&95qV=-0yh1#-^&e};lrzeD3&_iMWrp}pKVbMg8W
z5m7~t@$ommzw}=|Zv<)XZ|;zU#oxM%N!}7UuKUs>NRi6n8)LeWOaFW+*yxK&(c$6=
zpuHrX?Eay#<XVkSRf3__^TwYPboNGn+ov)&kS<9AHwyMFVg%zk^_%G<pT{-Mzmy)!
zX#J?`P};nb#ePT6E|$@Xs&$F<!+n^|nOyt=>7@aqxm^+?0h5zCkl0@RxU-|UXc;r#
z?}%E+p;Vg^dy64f2Wg&)>QOEGpbupLeea^Bp<)rm_)6?`khJ6Na^FmhkQZHQn~$z4
z){qSnJUVR>mX*)bc0TO2uH)lJul%)NAAj*@!Q!jn5K>%v$*op0njRg{=1li>K+84U
zT=$E#l8kUOdg&DvjgysQDZx_{x_h&-v`!Z(X0K?d!5O?#efI!`(`HPzR)uBeZ`JMh
z`mwr3aEX=;c?9UIXxTfx3pO4t)XCxIB0#B%RKCE3iK85DwH{9ei+&vi71h*hT2dyq
z^m^^_%ecdZU?cu)n_`hegVB0ltZF($e|k?)ILy?ey&GGX;<>)(JXFC^_{*O2fd&aT
z<MyIp_4EU1gMvf<q)!5Oj`F)?+!jst_V(dz{32BfgH3*u#uJ;%u+*%#I;x&mBk+=q
zET|=9(t|YxQ?ot`YmIv)(TP?3{^rGGbOL05$@w2Z_Dcbn532ytns2{N4IX`z$=+hF
zYSz#zg~S35krNPj7@fx;mAS6&lfN!~Mxac#w@stdnV2$ou08z>nd?XM1@k5sur}+i
ziR=yUCHDe6y)sW?$YDX}-*H@@N*f=IQ}>Xh50duH;+cH#P)^*DGYD7MDcqhG4luQt
zLO?<a^|BRwvK}>_Y(k|SLa*1z2XX0;f)3K>S$A5cVwR%YQ+M~z|J^0uD{rq=M^BvF
z3$6_V^roOvC;DAPzTwB|vTn->`#fzke>i-KS|JKy^Bg|;SEo6Y#uZjf;MC*5=C8d=
zUb%}op9e~;2`&Yg37Ab1c12V2-NlU9d~Zmy2=;#e5@VgFgt~ZU*{5$<sNPVVG3MO4
zb*&2WRl6G!L1}$g`WxaD7}&zFWoa5W**^-baYw7VUQ-B_X_9Tb?S`y&7!}j`Xbq^f
z4Bg%9vfzJ#J=?MjjeFxk?&2Eae<Ij_l$k+YFmgt*HkeG>_z|NIewa<cg)oh&Nx2lu
zyQ}rRkA9yb=iJ*&y9dhu%CE<;=1A$crb=ufD17-HWKo-NUcBf>f?3;hHsNOrRC}oD
z-&#+IPn-tuX&jtK|KhJ7Yf(S@H-CNQIOAt400;>6F;|~7&4;R{Pn1dodYn<&u6R2y
zV_TR3)F?PaRCJRi6K+|i@!H&pz3>^V`<j;MA$8}Z!>4Fz`<O082O%pdE)v@323N?-
z<*v%J>|F>G`IzmQ5gCry*&aCiK-xrFK7-iKaA=bC4;3^WZo_@Vm!#G@vQmdih)vp5
zRaENVDDKH7He}-hal#DF&3SRAL;+mhedfr3VBs$RAHA20*WTSY-MhM)TOL+}f+@u}
z1Jok4u3#hSHn7Gcs<MrlC-WwvOx?JB`gxK}^y$#%%4uCU<L9$B(}CqwO*6iZmIpJG
zN6^nDL>`S$SpR<acuZ{FK`3w=+eTKeOHynku=oZ;Wb4&|>TVZ{D7yV_;N?}ZkBEFj
z6qGr)^c!8H+VpCnx$S?Db#1e1*MqCJp+O`+tfPLtF-fKSB3g5t(2>uUNPJ%1H%+yV
zfY<O>a{{_Mq=@K}SL9pW<{DYEj1I{h7QpQli_R1G^WcHH;@{l$J~hR^hW&$;mGT{O
zkt~QxL?V?Wk)O}7?8E(J@hvCEM=tMaI;O5b8hqeO5ad=BnNr8sBWk|icK_qrr+7`_
zbWBt5`_oXqH=wqE{J6|d1Eq-4Wy@yIW=xL875u0D)oRSAEAjzrAbOWE%$;G&qSWBS
zIj>d>y%BGA@Z0^&ZyeiW!iQ_r%f*1^Hp_TqiG1U*n;5lfm8)=S>wiGkM`VuW-`CgV
zRIMRjdk7Kx-!9^)=aI=PNo>GI0(9GbGQR__?sreOAhsO^@V280QCswr16q{zOCj}>
za)~Q7^<JN~<#^|~A7k>G>MhgJQ08{UH)BSxd4QQ~`7!L}o=*8(zR6lGkxrFYNlaT?
z+tsLu%5P{1z)hZHbaSZKN>-}>n($S1<vA6!CoWE}WXkn)e~IV#%3FB)vZSCQCaaWc
zubd`{DuBKl7cTZYsyn<=pjKSJBljX3zNBgE?ZzK9C^z=eDQfv8>gBPQVthJ6pnO=D
z7#S?2X`Uz<gS2c^2X4tIDtPPVD^!8?1#v|h!Z{uz0ymka391DXEfc~1Bp%rj4aBy`
zV*EjiopOC4P0gXBjzgC@@}9X58hZ3R*0Xg4csqv;<1{{-1H@ktFY)#$Wzs`mDneH;
z*F@%lFQV#b`C!6B1^ZxYgKY}$<G<<Z>T_R_H^10U^}$U%1RYjWxOkNM+-WD}qH3fx
zex%E>d%#NwX)q5R`q|DT_4VtW{>idZlH+IN#Ax`u|AVZ4%H)d8jxZT-v-fF<oO2x?
zretcOBQQD^oWH$Fv}pqG{B`edjA+?B8VrIgv}6o9)idjtmxVEcxP5MSHPkzx#fZN2
zFi!K{R)Fm;=k_5>P}`uZy1qfWRYyj_$#1q;TMmtf6Ce1%H|>|wC(ta;a%cbNzg&OD
z-)gAA&BhIZ<hdb!T9Mw0qJRKMt;Hu}^_l6te1La}W!-%kaof`T(z`za;=xEWWVBL4
z{^Hj%RrF!i6=H8Q(yP|_YWI$f-b*dja8O=4IJuYlER^(ZfKD-sRK~rt4_p1}YE7`4
zra4)nAt>QGq|Ca67>ji0pMA}ObOHYX%Tnnd^0Q|=Hl3m_5)m=RI@Zf1YOLgN;`tjS
zzt>&97Eg9r;9(Q1WlKtTOReJm7dI-vE=~{Gwulx@=gTpfr;VTHJGynzSQ@w@3S*Z|
z*6%@}`CmTwdM3HMlWV<!5Xkf46t0Mt5x&wG^{Z>E`s&Xmv;Rg<XT!TqL?wF_ocr-T
zP0-gwNj_%zT<gcyRK03cSiCzwtN!Z2K?mS&PK^8b_CGsGMRIn4d3y%8u9L~g+VaKg
z<v1L2Oh+(hnAho57#~6`o}bCl3Df0CZr(+2gdaMcWtE*2Zy$Yb&fni(q^hG&|4y^h
zwwGfPAcb=Er~VV64!CC9&m)rH;F0<=@lbWmE?Xdcpt}1}2&CsxuL7wvd0M-ldFi=c
ze*w>vCF74y=VA)@ZyR6)9M(zxB)a=1!{@4XyHLy<vC=k=FxJjzI;?3neUcWQ+c!Y@
z?j3jZc|ub($9WNzqKVV4dGAy4xBWEhHQR4_2I-$73Pq&g4I)4LpC?m#w#gl0$$aqI
zEax4h)N}=o%9rqQor)d4_sYBP)k8nRxsLW=$FwlaYJzxQnj3GF4BkSYXF4Qsa*DpZ
z$7k$!a_-=iudOPDjyeAG>0;7j*Q-x%?WsYTqMk)}W*x(w;J?7rFADyDz|&RIzY}{$
z`JpK`TE(-1(atxZe}&8GbXYHqHo9#cX=5mLInyH^b%=mAfCy8E=U8EpUFy#aAc9?0
zLT!)Ji#%rzSCnq}?lVXw*N)<~osazvZ8*%b!UtZF@AEijuFq3G>fCgxyaEh9)RZ?L
z1Ke_mwx0H9icqkpKH>vt1+{-H%s~|tx}nOOotgRhtN6D(pOc0a(i8;g;7`69E9f~c
zH`AB&j*<3P*qN^h-SDUhkCb1pL%9fPNsjJ@*xp*AVMDU)MnL)gk>ScgMj2wK;83Jh
zi1O5*78M-}Yd+i~BgtS!KIL#>qBGOP&}crqmON5lg(an~dhD)r;}qI1c33O?Y_*N0
z>FOy3Rs}J6q)Vyfmx2$7e(jL<_&$i?obI}DFE_=^HTXN?c*NFaIMD;q6&`1tR(wej
z>x7>%JS)BbV122K?cCyW>b2_1*KXdgCFOJSZmv@7+}tGmq+04_5cEZGb7s_9f7B{j
zqwtO%-nkj?T2#L&mtkf)B0Lz|!&#^4?yOb!?Sb7T%LBn*u2181Os^F44!W#w?zmP!
ziSA4cDCXqB1Lb4IhrS3rmwKV4raTMabbrg0yz+7%lUOEF$g*2t440v`VJpeb{|!dn
zvw|DB;$A3VCes}K!m^=nj^jaCu)wP>W#TbjRw}jhA~L?@;CMnJBJY<DRx+>8GfL<5
zWCoHeg?KPfRs07<J?%Abmz3e0Y8IEM;w_j(V)E%uV`TfoC}d-C>jN&j@q3N@A35rC
zm(rmpCDL_uo{Td&pjB3#?uJ>z^%4r`{-(|MS*@?<7^9WB*d*YB#xog|rzL79jX9%v
z+3@G)YIwBAzYfavz1(9uZK=<yB{sVg+R}1ld<Caa&@5`UYc1Qm@tU^E%U0%nEzEe}
zz33oqq{EQiNnwzY`^bpNcK$UCfEO7jmR!iQahe04)hzL+^Qr6vAuvwdeMUKmIRhWh
z#tOO^Kv&Kwth?4<7++Q^Fbh*X?lCFVCG?aV)V{v$FK%iIaLH^tDAjsU-yyb0^ulqV
z2ZFL5B?Y`o_mMZ91RHCu%xkPh@d0YIY?V7)Q3xji8rDb8Xis=9Ie(ZGyZKOV^uYWd
z+AFHj2|t=lv=(xA3CzrN#94ggMdMR_Ez@p(#RO~LsL-ag-RL>TqNG9Ir*1?^(_-iI
z#i@teI!A*o94^n&9mMIv(OiO2D&M9n-ovs5EFVL9Pum}O`u$Xx0H5b-z4Q|3)-2_)
zXfP=ytD3Czwyh|W?5G89j<-+A@-=ib^FUhf#j1sFIBqfPEqF^@=Fj-g>j^Y*ib`uJ
zeJ<wkYERowz{r=RjT-3`Cg=NoT19a%G59KFKB&GJFx#7fsIP6%AY)zMuOskQT}YeG
zv2WPt^TrmbeL9Efxmo1sjz6wzx7Vk1J@F=1_&!BjA#j5a#Koa9t+UNO{0hQ=z>uw^
z-SeLj`BJi*aS*j$Xr<1&10928nb@0^9Z~GoMZFob#-aZSNvCl-X4uUN;Wybo!x_)=
zk=oCOexXFS$ETSN*>+oq0U97Tl9g?nqb2hoJ%N)UV$Al*E1iDg)~A9|G$f~%B%k79
z2;Y+Z_y-?d*$hIixWMDT`Hhj4b=>yK{nf$Gn2=1%-*RRc5x=Cjk8@2}&mV2}TdT4n
zdq%<${kX0K(;65eLwxzYD4f5I^2?Y?%`2B@qHMAUR|g39#HWK)6H-ja&8@7>@JuRu
zmwwctg#Ga_TwVy_!b_E)Pr$mq8oXsan8qsBj(M}Zal6H?P^m?O&r9)(%63a_kNlhL
z6t^$bdY!I`tR0eHddWDE(J}h^L<yWv<j0^}UHeQ4_KJWt^TG>_C@tm)GN`sUFpAlV
z(wXc~iwVR8*%=F3tmeLV^7K(rb91YTVg)V3J^-Ckapn}uOG*;c_bZ#RuM1Bc{b!I%
zVZaTdT!aoJ<IGQ_@}rlZ9l%`df{uL3TBdX*gm=HT#mw%mV&U>n9XQ*=baej(LErQR
z2zum;mN&8Q5C^?$5vAT7(N$mhwfy~!z|VgV**1OcLZMvYrTell{@so>gUTP8it5@3
zH_b1m7s^nwu}Pj2?ZcgTg>Ut&t(BCx)!0vCxGX|H4t<-ju-<iO#*uz6UhV`O(Sv)%
zgMv4Kdl}6s<P!H7&TSJbHy!IwANDw({Jvy3t1Puh^Zjo}`kZ$EkfJY42q-nx2*bRM
z0u;lr4t=9Sg$4jB_X>7DNwpX`?b%2SA_npl+eFP@Nwx`<l{<Y0C5Uec`X8sUMj&B(
zIA&Avn;OxPG_%TBPk%x(4@AmMvS6#`m6o7ADYi2lDp!%bEfVRn3rxSsdX!3d2EwWP
z=IGrpw5NE^@N}1J18{T#x-`0q3t4&l_I?PYI+=o8Uj5=q2}edX)t3~;y{sbBnM8p2
zexJK9Or!UT2gEhVw)Fl^t6P&L0<BNMiQhlVb}d{>p>;s^!HU-B`F6!1-EHXZ1%b!V
z9%z*)7Z!)V)N&KqP<e@H<;5BA%(OK;JUsvSRA#q0*9-aWxSbg*Vaz(-pON`p>TnUu
zhn6r6wr5FlfMqstSWs|ZRi_-TcsrAG26dwi07q=ER(b@*8TGXnj%Fgrn@C}!f0E0&
z*!J=tW7*V`goG#<9rk)}TNB0iJ!QDXV0bUc$%q);J=RzzGpWpl(bRIAWLZ<p=s0Gu
zMWdr0P84p|r9GTDvqQ~u5+A&3oEjGwEV$JcS+Cka>a_HC%TGky08HA4d|hL6gM0bj
zE(yGL`-e!;VyLA#8LmBl_Rwk$B{(L>AYDBYxVJM@Q<Wxh<~*}<(Ibe%nu>_l$vi`a
zUePv}N6I*wxA|?iGVZdsH4!zMh}iK@HFN{O+&yXlG(`=5h^`wyI|)O?#di-`V0eKI
zmz3xnTfG)$bNiNVrYB;-wT;dIH*U^g=)YUU17!dkI2ksvdOz%)f=&dE;*g>}i~~Kp
z$^o{kcP4I7bxm9!Dr4|sx>`mS8P>Q38|apr>$63*aOmE*j!e%}_bUHylyXhe|4Atq
z9DU4FabNE)W`_8YcU6s{Jn%ZtTgiN2gn)#!er!k8W%E-QI*hzZ(ff=K&pm!gHdqz~
z$!j6Cb>2^p%9yAbs>{M5p|PrP4a4lTa(wC{?It@-@fiq}<U(pi3HTP6OdFkrf2<`+
z=uMCP>H1rQ-~bM}6P-`z1LU7V82^>1w-H|qZ8i5xHk`y+RGIUl`RvMtc4Y~PM%TjX
zx-&1giz{3z<+-~uQi;y5<6y`nTTy^gYY_^Xo4ej=zjwyVX~N4x`r-H6*X}u`MvVvE
zPRHJxkh#)d?L5p}hPM95TDQ`Y5<y&mI$9t1y1`)u&4!{Q=%il$Wt+LTv)g-PhM{;t
zO$}(*!T*I(t{C};QEoyKL#Q}7I@)pDiC{k%Mx8L=h#Oo?!b~zUWfbIdAwABSIwRjf
zj=&4kw~H?jCiK?Vb<h=;x0;O#^Qz67QK6f)4)|n-cnMTuEM-b@wo@>R*_KRU%DmnE
z$gzI<qOik$W=VmW$}&iF4z4@cpwB#bJU0w2bGA>{0qXg^aD~n2V|se}*%!RD0?a}q
zlWU+2yTih{`CI*UA>07Q^R&-3gGK+O&;^UWQBi?~hkC2EibI7atL4S8FdxxvJ?s3E
zY9Okuk=8%Jxb9<b$sTq1I(_)ofa<^Ox_^dLi|ybtyED>svG+20fe;7DRF5T82LDhe
z!N<g1NM!jbtw_rFMhYAi(mbz?2)@Nq&9j!S^t@Q?`K)m!zQsz4@8I?Qo<;^{Tnw2s
zG<lI>DGz3S<fBx;HB~B6!a?6npt<egYu;xSJ7D*`pvH%O_4P2b(`yS3EZ)PLf|&jg
z#AL`Pe7d%78xD(xdjW#}#`xfVx_E~pQYg~)mZ+5^G?wjG=ZqicF2;<EK)c?jS$JUl
z^0?AAj)RN&a()gCo{QG5h)mYlu}bSef%lHpJP$agH}+sszf~-!F)S+bTwV5p@D)Ej
z`YsnCOf(GA(|H)$P0Rw+DrDEac3E6li=8b2g{aQeBs<`OF)FlNV(9Y<NJu?H^5W&r
z{lvTF&~rWBUy&0e;dQJR^l>=yFIH#$N$d8CmK~GKv_*7bt<qtLX`__;A$9~`#|t7}
z@iKyI$lby=iGIj$+AVaYB+KVuXDP>d(qzJq-DgU^Ii3Lzp1&_lv`%~I^g~DZC+({t
z&5~Ew{lAKr^aKe%nesCJu_C{W5j(bFK>~-3`3?S-tf<FhGlPAnM=^6!!3eq7HPSN8
zp9RF3@k0}2P+x2te<ZWrUfjeBOid-j@8$V>P}OMz<$A5?1xISbGkOzQT`}F}kWr{_
zeLVD!9u(r<BJQ^rICXtRpexI>M9Rp3cIrHZa*-LbjUfj@by>5}JjD%4Qfw%rC}taZ
zyMy28$%6IKJ$3s^NJ>rMh@zrr{&t6dNTd^(h9sBuqpc-4vCLa9su!++P8fA=!4lE4
z`2#~>&$7Y_EX%;r+!T#&qoR5k;A*>dV|h7P7xW8Mww3MU`mauZVmphOk<5O5^*(Fr
z>fqk!g27eR5`|m|y66DEh6yvT`b>X>pv}uHWMo-EW>neAbkIeK`)N<zsm{>4@yW2W
zS$v`7HCu8d#5-_q!IbtcApYsE->~1_!#~zS=*3{e>7qP@-2Xdq{94e{w;;%%dzw@7
z7dTGvL%qa8sy&hioZjV>IG*Wl&gU3rd9!!AFG7L_^x(LrPehIGADzrjS+nUHV7E0+
zpFZwN?vQudUfq?dI4nF1BXTb$JF>#9aUf!v30N$d!)^3P1d;#NvcK5yxKr|~bKR0{
z4#BhFxQ`Ok((k{8sFxD&R|c^;vO|ha_p^1Fx_f$ZGi5A~y2*czjBK2k|Hka(a!9rv
z{!$-B$|P<q)Y}emD$xIXmW;c6B7`FKv*L>$D!%`>&c32ztKV^--1vn5yKQ#G(8@ua
zjCyV?RmE276wVA?r4mh%Q4X=6j24X2{mb8t1*+keY@{c}<(4_aUFQtuc#W-j<jwrG
zUkf+~{4h%eAr;pG2WdR=ctX+N+t`{N!<uQE|0mS3jj_bqhT|J%L`_Fe;yhEt4Rr*G
z%65?Xmwo979KesawwO)brM_3)Z_;C)R`2yHW;%+|Dp#WO9g+7&yOf#ES9{5t;el9U
zLlVef0BvJlu4};A{{xAfdblq?xP1!r6Z;X<k?0NdTt2k<hcsA+i>*`mLo5Yu^%Uu^
zoZg<aaT^>MXrQ^z!xQczBteKXHU6GTXxFh_zyb9UXzk>&Jmxj=Yeu@f8u8<I-1Hu8
zd=$O59+l35e0Qz5qbjP|?CH$L9*>2*s$#bC?R}EoGXTLf+G2z1op1!Cu&O*`3#JBl
zkLK8yA55E1Q%dJdT_-gNu+IC;!4<Nzs4yinlsmruIw*&!Z4=yB|LL}GmQYOt3C!g7
zd*}73d)&iwFZWq{=B+H_`Z*M7u~@6ZmNH}qr}<K?!~i6d3Dc!?ycVVbGnB+c>L|C_
z03$6Cq!NK`>i8QS0!L^$L~+XnkFcdz%4n6}PWogRHnky{r^^@4Z?&;a-RX3bEuwe)
z+tz#jXKR5UuIcyRQtcuMBSagT<X=A|RpHtxdHlV9=u?7Di6Ni?pl&jFHqRN>rQc!M
zEDkJB6$ZjT;$we&km{f?<1{~)uaHiKxpuRT##zqJv+|~I_<tI49@BfDFm;b|k9!RL
z>L%%y=2CA7TZ%+blrG>T0f@L~%i7-*&DUY<M>+kKKvNa+u-4PUuW3L;BB6`1*j4Hd
zn)~;8A{54giqYYSu8$KBx_2)Wj=fw=4(`0of3}g4V0ildd<qV;ll5!YKp1h{wbBpM
z|KRjXR3c&k4_ynk1@-q+8v3EM{2Cc!57oP#{p5*0z!UGLA=1?>j%Bst^AHOF;GLAo
zH=8GW4=`<ap2~0c)isB?jE%k7%VHju(`-W9@CfR3jGP^HsrtY_M&#zKZ($*?1<;AG
zqjL^$AK?$NZOqc>@Y2Db@T|{lW56gf<8*dTn~VlGRkQ(M*h=75+~v|RAxGxV>3ITX
z{)fIib=RlG73(%_x?e4Uq62IWasi*`?oi!=VJ0BUrOt)ny}LO7(#LiBRFuu?=5;NX
z<LPI6dhZs+br)ZLfXh<$aITLKow>#SQYy1c*!ZTellVj+-st5j&j!+7A9Z?bgFqvG
zof(r8w>|g-bfbkLzdArByzYtH9>(+kblY!-Kkd7hrNrUFWj-n*)0n(NK=Ce3Y)I{f
zD^I16tMp@ScpaAODmRFhfG7^FfS??uO~JyIY7q)6Uke!)R-r=$ZFStx4(`YPY4-kD
zn}V@L;V-fTbVT7>Z0M!v^qhg`lr6%KM^hq;Z~w@BbEo76$~8WBk-gvPzEN_&W0aI3
za8W@%H$@+%cl|9lCyxJZLORI&_TQ%n!44XS<?OwZqp;@)OMA53flKz|FDdh<ZhxFA
z%ZRnE?xrzA_t^!w8UZ!=YJM5{;!2P=@4=hfcxq_s!?`L63DFX9Mt_#rUk%4ajq{)H
zEV&?Jd<YN5!~K6X>)9e*w?gt4LD1-s)9myFRve#n@`jmUzZf|t&uWR;=^5E~X5NfP
zU(T@aWJ@1!dX~Dvvfg*AZ@dP_v>7)eI{7)T22Ght(kR^Kl#<l)&3T(S7^e)5kKjRl
zsVKDN^)NbZn!dOQ!W=HMgZEEjmYMA#B%o>*a)*)16o0YWy%xflv5Z-f#<5Uge`6-!
zgS2K>lHRi+YE7PeHFOX>=*gVQre4BP>Hmz$UDYO+q8!Ad=*K0u!2U}kFVMS9?Q_~P
zEu;4yjcvj=`K876uu%<G?yxs1i`O6O@9gYIyw`mGZ+y9WqQJAz0d*RZd#jDHvRxJL
zbyH8yEe28&GEa^`Uq9*Z>K`8F%Nhv}gE5DZD<>Rr;7qUn0FSfl&EmT+`6dtvGe?v@
zTdYREK4!p@%*JfVXr0rGVffV9>0=bw#qbBZt;Ku|mq{rr^hF5-Z|FRY>o-~uKA@_<
z3-xI4<w0f&OmkbCPVC&@k;T<ug!Cq_P*-w7D?GYQ8`p-i@ZZ@)=9|Q6GLYL3&R+O<
zzvAWWPvwe5wRX^CmrpTA?rV%ZSif<C{r-%omEQojMqj}UXn>+6H9ztshcj0FC7Ca7
zWMye1SyDPe<rK8&`$9+uIQHtDyPcVb4)9+0e@6bpr!5F`@xF}@ls4X(SDeG2;a=J&
z^Ao$AckPdfK53d%+u*q7i=0UjE7?UD^Al2iTxsaG!irY~qi@wi=H1ib8kg<)msh=`
zu<mt&G(_Z@DMd*ss;kM`bV{)u#SX^q$o-tbT&XL%67HH(i&oLhgE{4R^OFkQI{@_l
z{ziSBfRjzN^l^}mY8l7&<69@c3^?f%LmLL8%aXh@Yj4{<EfnAdmxUTjEPNi)7bB?M
zO9Q<M!V#2(PoKESOYymEt4rQ+0+|BKwdj2@`nxHlqPej(5R`oU_3`K;_6f&fjAt=C
z+-;c3<pfVepyBz=<o@Rh3McBiS{2(}Em1y2qI=ZW|JDb<`%V1h>?Dc9Du^|-yLZT2
z0R850UtCh9&!0V=znIBPzSB0l*yCg!Q}OPE4F8}d$#XA*`OYUYq)e&CLNH!^{xKMX
zN=rS^6$2_<KKMzqbZgxtUvN5}now^0<0ASu&gA#}z+s%Zx+A>RZ<nVudG2dbeLRmy
zHA;&QDM%LHJOC8yIFW7Tv271nN8N3x73A<$+SbbEj3!in-I+#gaYsC5{cVh5x@D}&
zXloL`GM9!`IBcB%H%_@*nd}n7dm=7(HGg2$cc?wKt6%SpKOz<S;)-3^!mXeT)T4*-
zJ5e(A^NfvN>zQFU`Gj2&)<_Wtv7|9(cm_o5)XOw)5S0jhcF|ngZD@djNKwYkaG2et
zUD1~UKmB}Y*S-DxwB+SDfpL$`0D%)jJ(>lB&821;<+#!(p*4hH)u2h~k=aj7BIjsl
zt5R;b^}0V1<d{Zug`ci+1cF)*pP`Zvt-jov`Pm4{hE7t_VPa?J5qB|>QCY}Yoe=v;
z1S1g1##}=;94GS=mIy3>U)JbAeZ4dmp2hxH0SAf~%`;>e*cOaTA7`8k>$!I^L&Q#w
z$my9{q=EN-+aR&cZ^3VOZS7u0aJthk{Gv&(ka;Y_DA@WMrcBQIYC^Y=)a|`N>NJ7g
zxZ!j^H4ALS)EWb|@D{h+|1n|=zvb18l9JtNsu|LB5H}&*c8SI^+`uk2YN-vSPCh6*
za9+GV%fNIvJvmRCl+H-Jq~c@hdVDb5t_UrJ$X9R^JR*WXT*3Bt8K2Fq42)>8ZK!$d
z`dJ!|OS}Bj044XufsRkduO2?0xA|ftGuSJ4%y<$_ul1idV_`n9h|vhTsbQ0%GOqZ{
zMf3!24)4Z=9?}z-*~(F&-tRuv?5%Tx=As8T__Ilv9{Jyp&H5apPvnj08Vej6&_0hD
zaf!nNb}dgN)5D8{(vMy1o)xdbLpJYP_$_x1T$0cYG%Mz}(zoG@1~y>48fdjQ%t>A;
z4u_4zamoKrnt9NJ4>%`Hv*JaXP;t`a-wFz&D@AYXt>|Iv#3t_0Vo$vEAp4n%#U-|;
z*2&Ds7&Iy@d~0KHp_Ph)!YEI<1wK*wL|8V%%O5?PCv4C(!f7e&tC<QJ%iby($H&Kb
zoP`|MQmf02_h5+DdE-jmS8+7?B_;Emqwz_{h!AWR2f2Z2b1@%>Jja;fMAwtDr#f?0
zccRD1W&KrD6<Jw0Ipk~aje@MZ#iK>bI)adw+<IqOP6KVU1V=llY5U4q;5HImmV_AJ
zeBjcfZJ0#5IIwjF+zzdVh_UTc&Qf(VH-8e($%qDvpCNEDEPejJh<gjDsK375+XR)c
z0SQ4-R2aIXRRl!3gkfkLI;4gM1tq0n=#uUja%cgGp`-^GkglP-&sOjMbMEIn&w9_h
z&b!`q)^Z^WW`<wwy}z-q>r*A>MDcpn)W>9ea8L_~9Zs-4{qF-8de8qB+Ok`P33I6L
z_Bdy^7ERj@RST^EwN>X^Gk+-*L*iQPL495Y=lJt?rOo`dRf9G=2|(loH=+5OwbUF4
zVzm{VC^G*6H%Bs97(nTV>y`EDw&pW?T-KKDE^$zxc22n+2`+o%O+*%l<K^TYlW*-x
z5Bh~4kO02Y3|?k_4nox#GV3j19GHtKq(PevZ9KeihbDj%EEdW0AAAr>Hbhl9k6!#0
z<%X#U)zo072lr{XiquR^sUkHloBxa6-PU9-W@K_X_zOeqk3@LTvq`+XZ&{q4TvPwU
zzlvc>Zb88gh7AXh@}r%VCmvES(C)8KXF)KaQ*r*UWH_c`N>R&!@Wwc)3{UeV3^Mgi
z2?)e`x?^MRZeshc-@RG(zB%Z{pO2HFWDbJSPl!iJ#ZPVpXw+J-#P6Mczkje>wMG@I
zegE(0QQAicZ5Kzk=s&7rzjQB$0wnN^&jpm}ss9L-lOkWP#K-#`y>}Bb)EZl|0~PrM
z9#^la!N{q2slPJiq^qf9%RPWczDXhmBBdA8FaF4#A1^YDBn|&Ljv8ggr;yMTlOnl9
zA#cQAd36j|w!_ryQ=Wqi8)+OVEhS-$i=P;hIjeA;0m}U4O6=#)U%&pnC^d1}*|pti
zHx#zO-gWnRi)ZS@f0ff5l3m3hp+sv<iep}cDHdUhp^{lekI~G~!>fna|GcJkertA4
z^8^T1x&2N+f8Ls9j+BHXIq$Fdnj!iaaung1Zm$|`pRl^Qt&fo~>NU~(Q<3^zJIr(u
z)<&hxzLYUHhC0IGDw?>)vN8nSUjcoRWbT8B%s!zhnsaqtTGu}PXV^M8?;@6eKIpgX
z`Om+nga3B~?*AVS&i41V%Nze@uJFfYVHx0V|JR@WX8Hb44~9Q4`-_<U4_^lG%|CG0
ze}D6T{iy%b_x-;*1W>a0_rL!8`~Tzj39Uk^@@qf29JJdFZr`^3Uq2YQP88$OhhBgR
zJ_BbO@?lOkw-x+f{<s=qTWxoiX{eOWOe`~C)%)KJJb*U^*qsK!AoYsu<jroF|4(a=
zKlT-ccpsD*x1WqixS~D=rGLa}^xq@bfpb9nC$9f+4)`yBKlMeK1p!H%%y?`}?Qj3l
zqtc-7kd^kGZ{4*~JHPSeR;IlDu`vu1w^auF4`Pjgxf|r(huj0>6s*YWwwgfUjso8W
zDaWB>nGpNC-S2cS16%EU4W>75#yOW`E0r?N0!~E$?tJ&$;eG9j_m^FX`U)&?&qV#j
z`hh3&{yb!di1O0!6M7OijjAGpt33u5nk}-;Z<mEm{ml7?(x%S^Sm3GmS@O03u==-;
z^m>36@zp;*C7nMFMSD0^4cb4IP~cM~(!IQcWF}+VC*Oi(sLsZ^;ImSjffN;N1UR2c
z2i^;{{#AJP?X>%dR_`|tz8StZoHb;;+yIOX64*@x>z)nfPJI1DLya%9O9hU$b?_sA
zCkH;!ZI*6(3?vT@m!N1pySYWYFZaz72dVEYh;*rh%{H#H^Q)&XP0pVc{6?Xy{V@fA
z{x$^w`V6BR;GQ{fRF2@YEPAI8-&xw4?58%y+GaTe*B{=YXkeZG+XobQfBnl+sF!GE
zW%oSum*eh&#C^bMpht|jPe-%3H!q-Vsgr*8Ynai84?45$ixvZ8!q^MuH4QBZIPO$^
z>rz`13N80Y-Xw<AQ!AqYFg4PjFMd2Uz}xh^D_ubGfF_r;FVAg8ZFki*YiyCSlMHac
z2{1p7FJO2C<J>ojE0VMwQMJ)h60(6(<G|2*in|zcgmApPH_AEBs#^lk%V6{tlA>HV
zAJtWMQ7@u_OU>yDqfJkYw2YZKp86bytfEo4m3ySxbA{q~WM!SS7G3RY+Bh`rA@>RR
z8}Ty?0Zeqm@FB2=cdz5uVN9FZd0ofNz=;W@ZhhB;Ekc^T2Q~Mvw=*jHN?}zD4V#w+
zc|MsfTiwB-SISG5(;Orj|0USJjHC$#5O&~@?X}%ZUI%wB$MGc>9L_}B_(h7lQ*~%p
zbhr-#X6WiirXhbegZkp%L&~AI(9GL@J;!zB!N8MQ6IKAl;ok?(lNmjvyF_o@bnj4!
z=OFk9KxS}O)x*j9)(VFA)Ep_-HP*tWyAfi4kMzH#uS4X3K>e9I3XP=c1&>sHv3@l<
z8&KVsRt^2+1p|P;_9)$jqjN+*5vc9~JRCm@(IOk_>Bn!9`YbN3O}JEb_XX)*{5yF9
z5Or0xDDc%^%Ixj($LU~Aw8C}aRLQkC|AvB}cS-IyZ=`=2XV6@_FM%|-A$5!HO?S8k
zjLhN&qe}iA!XEnn0AUYXT@8%q=QQrM^(g)H2L$d3Z@JL=`%&i0NY}kxXD9K)w-2!6
z0W(>4tY+`GwDI~8;AUvn1YUJo!GDpCKjm!*0mkJ3yl6{Y>RCxr;N$W40XYvj0vA;z
zHfO+}<Kf-mDty$d{&`>|Xt-)AhwgU;WXY|A)kR5j@Wj)J;9q53guwXvaY7EMt-#L^
z2^@0QxF15x-U&o(8XIMlV>t8h$ACr3a0WPS>!w<YYw48Plh&@FM>7}|2N5u#bJmbG
zbZ8m`g@vVBQPM=X+*{B8IH#bh@<)%_p6vpPwclhLz_xA@)&LMlybrm>N)bxc>QIA}
z;NsuKKq3r&_F;r)b%%YFV5ZWuV8XsF$ae4g<GIb31>jJBZIgoY6Xz4I@^>D;eXHh#
zDvWXd7s*AAl#w{kWjU;{OreW&VNG>Io&&KAN&W~BRI$PI0XcAi@NEY58~;ve`acWb
zZ%Vw{uGB&dx&>(7`A;mTAj8b&@emW>+;8(;(^<)8RH`EP)1ONTmZ{}|Cl?fTkLS~o
zfm%On0|yMcMUI8&_P6`Z3DtPaI%*_Qku-dO>|D)&A-h%M>W*r5cd>w1z>c1exu|Wg
zINdjl&ASLNb`W<uW%=oAVQ}vW%CO-79hV(*pS9|UP$cH?o<JtxBO{Sq?^xFA0a~@&
zEx4BD2|p%3H>)`qY*quqYBDn550kCzEg)ql(PACh>G)yn2Upd2s1Iw}fcfNwqz{@X
z5NG!+tkmVXd`f7PTM2cIoRG9O(POfgUfR)Gjgq?!0aKm@8PJxH7zap#Z2ZQeya?vu
zqI_dcBj4JL4tDnLK#Od=<QrMviDIGI`bj|1xgYIOuIpVo|5GV!Ch0}z;wITRL{bFt
z@PXC!_*u2VXh1>)&*zoW(3EZ^4a6ES#A|a_;<XqD{7%~VqRiC(#SP$6F`B3OIBixU
z(D0|-&jFgY=OOkxPMHEhl}Ch3Ii^|Up-Q_-UjUp_-sVfp8CQG2Snr@?O6I=NTo!<v
z!0aCx#yyugD=D$RCj9CTn*F6cV~W*+$iAd!^wDH9Miu)&2G>buv2x9N(w2CqKY5$j
zBnQy2<P!Mo0f3n7{ougzdg2$#hO;fNbc5_hVCJ1gxJUD*$~y03Hsz9q8Oz!WfWKjU
zVzoC8xYqr?T%p*5yNsChi!8I6DVVX)LVvXH+x%?TH@6>kj1LVFnQZwpN;35}l%&|U
zjUral+2gc7C`ml7TImWEnC*|~Rz+Pxn=I)u=R{ldal8pz#U38G^!~iui!EJmkq6M)
zn*jzy+!#O&rPL{rH`3^PSoHR_k^D1Zng_g5%p=~9_n^$zofCLs3N%>1@g%2x&G#An
zV7zI<m!gn!-t`^h=XVNar~O^{&n7EZDwtAs+Rt(fq+*d*e`D{sG#2%YbKfZs6#gSz
zpDfDSXvPn+nH>{})nrMY!VYU46h_?LjYr~HV#>B3zfpSbwoIx{_Vt8P5mlKt4X|k2
zU#0n3I|~3c`Z{gwa2$`$9}hFNGE!2t<KddUx7{OQWe45@<q2!G%9CbzV$yVN==wv`
zhD5iXlA8DBHo={CN&C+L3vg=^_4Y@6p&MYSZ%7X{P}N-T(4rxCUJf}jN{)Y<<ezqy
zah9Ig)2;6fx8EjJjui?m)u30YtsQVq?!TFMg8!CDyQi_(ma}B@H0{H|h9%>uzfzC8
zX;ws5<MP=XP5+_#c8VK#2kvv%EV~^E+(pyM@lqF&tDo3%9?4~It(kTLzSo(0!4%{Q
zFbVDbGbY2({J?{_%MgsObb)f<RT|<l4cUCsm+mhL0mABwXAK@zGUyzQqC;=@1MM@|
z1_bcnR_I$$V<%pD!nPub0K}dkpu(X-Z?QsvhLa?M?YE9)kMN2DA^if}c0r{&d;c2{
z`<%VDJLZ0Lg>%6#2=MwVBJ7UhmiR|X?%5310~s*yml90WnwIN)4mRwD)z8l4@p4;5
z{@^(U?CyZz4X^~`OY~^!9>1LW4$5>p9_o3mfV_}8BU|~8kbH1DDLH459Dr%IP3Tkm
z;r&)7rH6QbX#XOC?D?#J3CR!p&OkKESYI^)Evw9P?V6}lt>QA4F)b%JV`}=VBnRl5
z`(@HggTcaG%rYfkuOv{-YPA{GDIPR2B)VF$@X8%OZx0^$NKlEyzCHz>zq_9OJCtYl
zjf|Ja%9I>Edaef<B!niJ13S>O?nTRs8%-jJrLPsNnLER-+0AM3eD1zpw9Gd*-%=iN
zKiUJqL}{gTfV}NLc@L5%dnMm+AGrHBFbv1XkBqM<pJ2k$dVz1~phGVRcL4wF5tD&+
zFhC2~)0|bODinp*X~N%i^yK;cwAWsJH>w-tCR=w`!;A|Gx^e=eL>}~10)**imT&=&
z<%Z~^Q5c$_sr$jW200+ho`{OX9!=2$>tB*w>8SLr;wNe7%4*T%UKsjCS($o*xsPia
zI>_`BFuKnv!UK=jT)<;DcnK^bg9oEN15OUxx9MrL&DRgf*rG&(rWZ(8V3E8KZ{sAM
zu5N63vUmpSr+^Jq%EpQg-j%&r%VBxvt|=c4jc9o%P<H!eQy%7#ZPNulOMw~v;jrHv
zLrPSJ?BPW+XTSFa-dC;GT4g)*or2~HA$IxBYbJ@jVWUQx+oRQXA5lE;Aml^M9ml7s
zrtM{Wyfa?(8<34$sO0_cLF~h({{dp(FzWf(_iq?>Bm2#9W#-5;v$^b4v%%J4<Fww2
z^t%z^*BH$}vwQL7<7k+=xlnS=>A`US8z2gobl%PCe2!LQj@-hMqb|vPC5DoqS7ZU7
z!j<&VzH?Ib(#sz8li8Frla)e1Tnd861J1!}MBrIsjfiXD)Z4z(jk;fsJFlhdqOa6N
zMMXvXBt%CAW>nR!n&a<xcPA9#Xb{fE_rK2-85@mKd_7M^bR+hB(Y4@9dbi)u-SB_$
z@x_$~H*Vc}bw%>yqZdhOslD&ib4tR=9_{0v3pHmQy-#S*ZfA^WvTGioNe_>3EE5FI
zD*|i!m%{UEh}rurA0!?{m+M$f{JQZsLP47MmQxV~)U$Y2KjuCRp*`Er8yXVOphv21
zwQ|oRJ7g2Tj3M$dEij`_3(km>^2|et716LS@F(*-6rc17LQqT&{W$U?^=5Ok+Ra9d
z%FzOgb)9Qlf*w6Wn=864a&v>d24|(Uk~dG74;$609DIt=wB9+|+k@j<E)V)5$@<kf
zLYqAl((ad4+5yhV$x6*hHmaT#X)b9h{Sqlu#N~J^?Ou@|yg;LTe5P}&bSm~!5#B#?
zOXmKos-Ld%Fj{F0wV-v!@nma@TmtD=cpv!*zr6U|W!#BiF6!BLG<=zW!V490glp8J
zNRn$Y8_BlO6tw;P<;<Ve%DLLb?yG{~<&NS}Y8>Qx!3epvwQFw<pEfg>UzXvxE1g(K
z(d3G~2pcd>5ukEIhnwr;5nBVPJXb%i6Lc4AJ5QU3%xCL<Tc!KyGSz=?D<Ym}n$@7U
zHM848%s(<l<RN$Xs^?Qq5KkU3){)wtg`8T_OBwjG5i{~hwtj^sdQWkT7+JC(u=U=C
zpJk4dp|NzSkRy|qA#L$}zGSh5Hs92C4Yj*?8KY(+9|ZOFa(1j5>O=myZ$DIIEZ92+
zGlIw#FR@hLpN?R4KK-=&D+LPWzGtnnKV{xH>b=Z;agOPzTzjDC3byq<Hj$w$YE5|L
zYEFOY(ZwkO0oHv73O0N9stO^Z0@7l(`>cGu4=g0j7dScFu(t|I`hQ9!&L3|1k1K{W
z>A16g7iP1rvI-Vg@YEkJxG77OL0(lBzdYhtR0U-<mYh5}&sf)usu#qRWpk&~VMrMo
z-mE9QHWts-!+uLa7QE$i315}s{b6yYb4Yx^qecEG3yKIr1$|OSw@p+&c{blZu-U$J
zY&tY#IsW5=8r$%<5`38kE1Gw_hWB8<t<QGs!2jC}$xN_hBIHP+MuzvBxk?8C+HxX3
zd=uAumqUMP$u8@G&wTz7{s6z(p8Y+xd^aQ2k2$yK9Mbi9M}V~F>->?uWuD&oXIaJ=
z)s|M5t*KcT;}IHN)*afn0u5!A3hJwOnfT|K$i&IZ^~s~T=}N12E9Z*+-j<C5V7y*)
z3QJ(X=mFrjr*^;!)$-#lUKfs8B|x6qKJ0PupQwZhldZ@|XE3STgWYfUrG>KLWh$4}
zFc6q5@9}s^P^M@8-HFs>yA8$hp^0@H-Ii6?Q&O*br<a0tYU_5drnF4>`8|zpAqhiQ
z!=5mAf3!HZQ?xc&`nfFwyFDzqeKBn0RtK^4<M5!0_XkTeq7uEmoO-tr?HfC`q3xU>
z<&ZK;pIqqp?Sa!4EzpbmLWB?Bm&u-9V>0kvC(bssG@7096W{|Ioo9#S9k2DW*ih+D
z8#B^bj+cqv=Mk5~L83`CPAs~g-L7$puYhl7mrh-6Rt(>NkL40+m6J~FbiUdx{<DF;
zWzc-sZ2Jv&2LvX3Sg!DsD?jrxq>gw|`1yt{SG-2Q6_@wZ1ogj}h7MNT&D1mg=8rFg
zG!prI1w+IdwS9F5W|2{zulyO!7bokA5t{h9oKbUAB)zm}R{Db6ZP-+|{m++ml6J=?
zl>sLa*K%ip7V1MltEBR&en0?aFrxJEwRd%nHpH|Cr!rG$w)Cvh^>oX5G?bpkmrp1s
z(7v#R814JI>4lwL%uS@uOnfH-Lqu;V{8Rd(Vmz-nUIVDB_7B7?ZC1B^iP+HYt?IHg
zjO4xq9iNzlaIW;a0$7=1Ga{INb`k!~i#ApUjN1|J`Uo`+FPvy0k2OFako7}g)xHCT
z#l*M;gM=?Bl<+wDDnNW~5FW{^&LJ$_A=d5D%&CJo>zfHW@2I(59v|%ge*bFg-Z5m9
zfF@_Dfxb)zOuki->F?q*#naywDcqzg4+9EttKA}prHSfIb;BUpBcF;-5A=tUU>yQ4
z-MQ6U{WrMnoc8=9H`NX}Q7pyydS&84tNv7mMU}R^YX=9{sF3J8J5I*;Mpd?#?93EO
z-S*Z2ZvmW%_}ys)KJ*?n(0^mJ>u!BuF|KoZ841T2N{H$c38>gTV~(eDcUkL(h!Mc3
zgO*t2jKm#9TqH<DvLnD&<eWqG4H*K_#rGSL@VcW0TdV8+w$>uO6#8_ET17pf(1&K8
zj5|hXha|sjXQZ|$)YFJQ_;K@~&@>o$UQRqc1a(7dD*5zFVQ>sofP;gz(Ct8X#e4sX
zF1F+hU|_|4;gD)#p(AeYWt-g&$*x^liGEktOMiTF2{40pVvThEZp;O=;V2<#e^WAE
zsgAii*-<C2*^*l#(XguHsOh=JPapM5?3COKOZScDIV6W<;)Kp#2uMZ0g6ogYsO+NZ
z&CM&Tec;$SwLv;0GLWfp&%;@e@&qxRq+mQ?ES~Aw#4M*_udYSWX}vE<qyAH#D6EEm
zuU)es;N)BR!;r+Px|3~^41V~vyDGe+N0<J2H0Z+Muvd*wc-UNCsqN;R9ZZOS`gYaV
z*>&752g>72G<-#3u%E{#HZ9HYQljQe(Ar6K@{1s6%@c^prtE-gom$zx!Qtqdn@;%Q
z$H|d`I$u4iIN|xbw$XM9BJpAqzk-Lm{K;6s<6%(L==XYwol4*JLK3m1>~?eY<phzH
z;hJt~%)Xccp_lk@)tNX~AC|ZELs=Z%t8`WIEI$k*qw59eMvdKy3?fDS&fUluUF<`S
zzBC1N7T*O~;oFZeJa2)c-YR?}!deD;caB-j%vQMg5fwV<X-CxMwZ5xHwy%*deU`qL
zDWmXnJl+mTD(qfYOQ8e9(=0g#zJ(;&6*N^%LTaH?iJh5d8qbghHSb))bl*8XRx~xd
zXbLUMOB<M36z5E(_M~=0%8a&l+lt!W(<8e6^wx*UL!341-y*yY7A<UBsya5X@$h86
zk7dt?BAlN&A3E=~;iYu`=(Hrwu`fFRc*(8KqjdJ;GQq_T#wotdp|;~EwstA8pUj*i
zPxDRGaSy9f&yXnC>noTtJ7WKcLyoKgBavMD;XWU4bBi6+HQfC9Zgm5lrp@n0r*)&T
zP@d2-t;WLG*y}aDsU0JI*%bGM7gx$`G!p{OTq8Q)*M>)Z?P80=8>p3)=AB2H3t<u<
z7!h?qUcVw7B;Xu3#hl|q35M0i$==Yo11$c2YEq#ZO8Q!d!-zzp&rUXauioYTY`*I=
zH^90$zZ+iGWuQuJ)TK&v_xvx2(x;m`z2ly{)FDF7S77u4M+D6qZ2E)qem+uU46H+%
z<U}UedfNU$=gT$XVz5^V&}%WDHM8-AkoQ`FnQ)D1oh60l@umRxt#(suf^%icNlrfn
z`CJqks)@@OlM)QyXs|L9If!5Lf};#MJIow;50X86JlzkLRe`Nyh%v<1xi6q^d&4Bc
zUQvIkQ%kk(V1J@_b9C<aBHZ04@Ls~cVCuzGW!CL;7R`{GWiQ2K9^Ci;B1LG)7}bV8
zzJ3e$4T!fV&2;!M28+-8`?8KHSdSsFll8_C%#CI2c3-rgXy4@+p$q5#6mT-wFoU<?
zQC3>qXYABrx;%7yi0NNnHibLIUpQvmq0L(!8sce&+YOXep5)DG#!jkIcip`C0yRe7
zZQ_)zbTg~HdR{T8f?b7=1B!?=ZR&eAQ+9u#I6&_R!uLJVy=VOf$|FjWZL_&{@W$P_
zd-v>#>!{7Qlm$`!aB2eHC2a3g!a(h9WZII!n-g*j<<~({8Rmuf4@h%I(~qDsNr)-d
zKIuMtX9@X++)H<zVa1%f;ePzuQjcnPouqLxFu1ZZ9$RgVbLzyyKX96g#Mqj>`u439
zs;<Tt)BCk?u$50WKW08+=Hyw{)NUD)$B_!zs)8Y4AzcF#c#MKeP2C-CgT8lGQi(Zd
zzO9n?3BGDQOSsx5(?Hs}NfFo8{*F8s1@?Er{qL!3IZv;gOEMo;<5AHrVvmpY+lTH_
z&^@pU3bKCpu85fPbTHhhMew+H`~vhY>Se6qf-<~2rz7`-qQ0>@jj8tfpL_K<9eEmg
zwsi)rbq`Zm>bBJ9ckX{a{2g0wjqDshSm#?Cz~XPW7SFqsvc*L{*dQd9+4LKL+f7jX
zt+r+GV0acITAp(WB5+Kv5cAEebVP`i)B0{CR}`pXR~Yc6`6_U0tN)r--B>nFoY!;X
zi|JD<QeF!0S*7jG_9?XM8XpAVrP~27Qv!Wg9e$4c?M7fvx!uC?V0+H)TQ)@pce>YK
zHgvF6JoYMKRhYE5pQECtcYaOkxE1i5O+2ZIh%87&P9XB7TzdQZ`KnKCGpeC>VFIa7
zs^tFdp3UZx`#HPejD)!{T^;Dw@vd~ae)fz{2V-BTH(uCQQFV+%-eV=(vaTV`EzJ$(
zIUZOQP~zH2Vf0{66ZG{hVap?^L+MZ0@iw3TTe35#yqeivvAZ_syJ3aHhOQvIzC-*b
zRkeR^DYYJ-eA$22@VyL;Th4*MBT+vjR;;Y{z<W>a^#>4iaI2b^ls|nTBK1+ruI|SW
z{p`&RY+HKXRX1<q0@&IBG+wBoB=!pgMjb4LEFk@Rhgf>4t|6Hje0yERb86?>8~Vw*
z2#_c<t9o}n_mJpzKj=tfN3pT>l~K5l(1i&Ksx=gxF?;o&KuQ=|*2&&c26g?GQfmLa
zbt<0KrcLTCrK71qhQcfJvZ&O<B-CyR<xPI)AXV<^Vzi4y;+1FL;T*#Epk>4Koc5*d
z55|QPO<b7Y>yoA`3KQv%%fxH>j-2TSoGM+bTUc?=+fz>p^;4g)2&ULV&{B1XYX}QM
z1nz)I5Ri5tn88jxh`Mw%%{hz#b-PVYor@hYt{b(3^{{$t5~H1L2+m|EDV7mtx7M)J
zTRc|n@wJ1<yH~bw`wCiN{h`WD-^Puw44JuT5*R(og-&&o$W?vp6sVlUoelhLqa|-p
zpA)-#fRRY-*o8Wfd8iKc7`-kq=t@Xod2igT*_{8H%{=_;muTj|Cn&QYEJ7I{%)WOW
ze+#9PyFmmki+dFleVVO<g-F%b>2Fr0F&*b+MRB)2A}B?|l_q}fKP$*(VPvUsc*c5S
z%h2ft*6AjvHpu9o@WoHoW#a}?Bzmj8CA6?_!v8|_PZOfws~7^T!rH1Xoy)wIu}_hC
z71C;M_r8U-GBqERE(^oFgouIfAE;9|6x%_04ruEJB%{_dm^+<qoSCRR4~>VgyrIw~
zb%&mfoLS*eQg`R!NmNX1_u;voYp?8c+=5FRD`709&9B?sk5q7v^st)wAxE97p)n0{
z0<KRipNHjdn+Xh+E>)<G6KlFae$Zo##R<H`vuKVrKePS%9>wLK%tKk^_7lebInnD=
z95aqdaSQ2BVqka2@eLI5RQ)2bED%rw;*q;YIOi}=UF=M*e<eDq7bS<L;!^kMuI9BI
zO|FHJ-o&s}subDC^@3cKX(`hHyGJ|VxA$X{Q4NG2ot;ebhF?kK=uuy1PMyj(_y(r&
z`jf-zMV&qDVRr@w)=1OWyE$kgaXjBt6)>s?Pg8lhbhnpkjA^6YRbFwDT;;|fq_T9P
z7n8Vb&1INxV~RTknE-!o_;Y;2c9tCesldmsYYFhZZ4#|E)-j5z6A&h0rEA_J%?BVi
z6JACXnkIH{zdj#J$@#HE7IO23z%(R|Bo~hDx7Et%t~BF}xVvTjIU1hBNeXqo*Uq&5
zeax1br|<a`-<3ZdFF9SL5Pfa)ljs4Byp}SHQG(`2t((OGeN!>r$mg1?Nmt_ggsj0F
z=a&-buBB1nOo#j2Iz=FnfAA*ei9wUWXO^mOtZavC?Ech2Tu9tWqrRu5A`Qds>V>K4
zI03D^{)KphM-u`KJ`Zt~kH4_%Be&ikuuGil=6i41hS#u872P^9m<X~_V?-og<bDki
zc%8>SpoUm~H1Z1RIynU|G?P->ML~t<i@OD+(Yms4WmO8krGMz(R9SMi!~oGlP}pUk
z%Rh>7BDu@^v8q~1?t77SZt#;i^8keCn>$|OWJmnxawdKm5OKyxeqJIM8wilv!9XPZ
zzHGlW8;)2WjLot$J}^&&jOLZUO~v0s35z%j3$!X3d{g6*>Ygf?IMH!pGyD|2N8n+I
z1tzx5uLsVf%s_a@Mx5RFM48Bdz!(-bq#SI=KGadJ=D>>ap#gxsm3c7Jaz+S6IdSPh
z%f3V=6R*wR&Rd~L?}F;yQvr=%&<?$Z!msrSc#Mr|#=?jzxjjbwN%=Y;!wW~JnHDdk
zBXe7I&F^A_7vhQe&)GW=j*8#G<eS-22|ZXRqD8eXYmOU>H(jC^Z)1W$zOI$8;ONiD
zR9MrM)>f&aZ#ZFY?Z^*#C&DFU!73j6;@jDlU7;Bfln4707mG~TXxP5Dbkq?f9E}@T
zzLxZ|>Cs*EYzY#siYo}2_PJ<)9f|z~)@{E<qOU$>4-t_50O}VJH4nZcn!BJ=(}ruO
zEzwSUB4!W)-U7PU;4-R(`7#Xq`G`Ycp3tjRy9bwEu*a5pz>l2CdVY#_7Nc0^{KnYc
z{CQlLUfOL~3&X_f+b6z^Lqlcq&)SgGxmo5>cObEslR<SsH@%o^PaJ|NTjvN5acn4f
z{9@LI>|cq_?mb@DL$56ybEmNHuKB3Wx;GUC<q5+;1A@iyaoJb+yc`tiTHX3A{SE0Y
zT2@J$g$t%$mDjZfw7J_yzVGkfbLnEDJXH2IarhiF?&s?yJlaQz4#WAtC6rBHb79C7
ztaY9Vd%Oq!4Po{2KsDQ)B9fUWClqtKGnFRp%RL^ut6&&3!7AUhHfBDlu4^(lIE@cm
z?5(1e)<#b`o191At#jb314gm!ON3?VWbA|<9&qQexrKBp{A`ZC?Us=#Bx$K3<*M=f
zjaiEk8#e`CZG&wITT^Fm3k8sih=%LGS5Pjgo6X3-db8#h)nLcBa1OjuA^z+jnN3k0
z5i2_%o#<-ZBrfCiS;9K-ru$KU$2tAeg)nSFW9Na1?i(nNR4%^FzZh{c=b0s8{H-EX
zTg^IWYTQ#DCKap3b{SLl0eJ<Nq*uYWUp=Fx)Q}`_uG$$?<2GP4xGu?t;(PWy2iso|
zdJiyUVMnl7{YR~s8z+4Q5&GQzrdR&SMHtN2D21aYj<5;uaDpS0T`UFV=M1aH=pjJ}
zEjxDy>#z9Ae$mAJSvUJfa}<>b_ZO>4Ab{<}P1K&akniXlWHHsD&k&6|u1D)kIp)F}
zR`3+qn2OSTkR187Rg!(_tLBcn{RX~PwbCXk`?E#`Av~sXIW1qV6L`>eoE@BOozzu{
z8HV(hB}^`)1eWt+7kwUcd!A3ki$esysnhpD5y6Yu%<r)`-J+wbA+fWA!|~w{y`h)a
zt<e+*cU|06xJ{+_T$BaLa9GCB4gi^*BF7kf-UC%LJ#AC1T7H99l+cc>skKZcn8vX@
z7q^?-M3TxKl^NE4)|W`^E2o{=W3j0Z95%N6L&u<6w>YHHmglz<Ti$kDl$9n_I2iR5
z**WO;o@w*TcWw9E@JS{*6C^V!F|$zlLrichZD*mGso_-&VMJ8qvG+4v9c_xMrzn@Q
zY~s;R{L65))~JA@bUm)>#F)<(JcV&^fBX)Z%*1N?mr$)I`S+1F;zE(>sp(nv6+*g^
zUm&C3G4ca7gj30^TJ4;i`Az75ZqoURB7Fx-i-Ok0+yFtGW3trP%Fl;}K59I$qoQ@U
z!g>~vj3-u4FJzdTzI*iPpkPPFV7+Mn;{)~#iK7q6!8$X2uTMtf<nM@2p1V+QXD;cq
z49ZCIC32Q$Pcc<fLsz&Oi|MnuAI8H8ucmk&I|VCD>R?Zc&E&$VrRq&MIz5ca?u>&l
zMzp24S(?rkmZP;`hV$wK^Co-uIr{3`y{)zrEbroWjoWk#{Ih*E<_LRBni>5V8E8lo
znqhAWYPHLMYVWoreAsU;ZjL<n8fhXt@d`wf$aDPrmt|d@Ky6tp|0+nJ-*kdO8RB$a
z?I!dPQ_LLqIG0knDon8{e*fqr^y_70fs7t3I!+eM;pizviZ+M<&x4<)8=~4l8^gr8
znBrzNH@nSD!ytDu*3w`&%;BDio$aB(NI@jhSNm^r)==!ZvGFj&;WdF_-SE&M>M==-
zh~J*R@rF&g#!}OjcSZO)mV&Q8sJd)rNRZ68IwDidWoHlL^n`&*Yuv6VHtnA7RdKM>
z^`I&1-CYK-*YVfDIH=^CqzCo|yoj7&yFrB7q!6K%8~;%3DeG?v_L^Nm(!BVwq@z|w
z5l%DNR-8eB85~z3Pg%d9Q!3OYjKmMjtMXWm78z|QqB~CyV>3;gc{@=&A)fnYE+HQ;
zbrhHO5){6TC=KY~_)%PX<02|AOY9P2i(KrdccLrbgdhd{4tHH<)4F$SdfpT=uqy$S
zm>{YS?UN}M?i_63{fW&w2&ZNpg6gQ`1Fb?37dCemu$uV#`$;v^|5zK#8?QyR9GEMY
z@C@{vq3TU8V+<yXOfI#JJYYkbw?T9VlF-_)7J|x{dB4>qyP~FN5Z2qGyL<Qhv+dOk
zQ8}h}+8{@uuw%F6-b{aq9?9&r-gjA9Q+wlq-a2Fy<i|wn_J>X+MziRhe_G35PFD+6
zotA$D>W09X6s4G`-N%_&j*#K#CPt*pDK>OI1O;kVH{P4RzJRe<*}1U2ESH0%F4-fF
zl~%w_)xeeJ3!`*q(k_=?6m<$AOnxQ}(#Gadtwp2E6IbMnnXl4GL`5zOqQ_kuei4(v
zhFl@*{dy^Qp^*_ua}XH~rp1-K6;J^N<@lkoC3zX4DWc6!HI=NjPWUa?NvgD2zav9#
zQ%>4(Os^FO636?z#6~VO!}Tr3vPxz?eEmkz2ObXGy#Lq%=#I#@G~t}(kHFQNTNqfT
z))eA+9?QOL!`><jbH#w-=ZH)ZF-=P5wL4(8A1!!V4Jv;Ln=LEDcln)~6Pk`UhYFsf
zRU&yAgJR%HGD4!SYAo(M!-an}6L;=;ltN-Bb?7<vk5wS5A|zsR<>OiCHA@-L&G{O}
zxalV7+-4;g`pw}QveQF+01^wY*ZC9JAA9=ceUbXY9&P-&)a&?02#IRqkUYXFBr#u%
z14N})VVU;Xt3tuNDH9j1zdg}J3Yq`VZaVOjWom}BGnCUo%St03#0=MTam)%hf|$7Y
z$3Nr7Zd!6E9)HX*kX-pIfpM+Di&IN*RpDrB=*D%;9d)Qx+fAieE7GskB}wl{8o-1-
zrQL}SP&W{F@i%asexrkxiFf;@Z>1oSxWDh2hhQ(?|L)mcN9Ed|d=$}h_s9D9iryZm
zMlmqYojYh7Q{Rw_2+$Idr|G&`WF}1O+_O8Sf2%kS`WTp(ivF<KEh9h_Qx)NFl>P{Z
zV;epj^x5CuV=&$IhZEkrPKwOK6yIx8fn50Eam}#%fbk=bZbP0Q_pQYb5K4a>aSk-L
z)hS_?g1xoVwKT~Gx5ttC{R+cf$q><BAP$G}vVMr7Ismy81u0K^?a09LEs&slg+h5S
zf`I<M#oYudyfM-@yOM$)K8&E0q0XNH37<F>2(@mO$AKo;gEUnL=O+0US;gUw;c>|}
zaWpSGvQusR052teS-;IOG*szgY)HqR$1Eh4xqT0`NABF*GdqVO=aA+%m?pD&LMxr9
zyNyq-E`IB_QvV2(KG`0q$0dRvt_cbt96UvK+?u3S4%j6_y2f^CQyTjf*xCwYt>$vS
z7i5&X?DwkJ_A&Zd27MeHg~hk*Sdz2W1c$+t6`g8IASbrzJ{hiH2bGFxvpMN~zVtJu
z>KyM<n?D0p9=>z&-Nd&k#qyV%)QGzT|H|=p3hG!`&Gsx6cKoVu5D)t{RPwa2iP|v*
z**zyz{)sI$Uv<}>jqp0E8|2N(x%UW@zpFK{?(VJtQ|Hz3q6<@fb8hGsQgcH1xXYmG
z9oUxy1I4a7H6FW9YOUJL<(0(fAn_~9blk#Z7Xv^>E+fsRXkO3H%t{=PSP(W^`az#j
zH2AAZ>ip)gj=|L_avJNx2$5z^9}@i~c^vcE+U|T?Q<hM(#7kr$zNhp@|9k99F9SIw
zeeD%UEI@qEnG4L^U_=*@)5o_RDP4F^%PDdcDwY^89ND>Qy;vJhV_~o8r=82p)8)U|
zbF$LNUr^5HbVzVL@%b~+^L&EAlb+G2`PR0FF{9KF;SCh)yqq#U#@5#>@wnsHD_Is%
z3TxQ`(Du+O+)t5fN?4+z*8BAfv@jLoAf}%{+Ua#&kYyef0GfK@%pFswh!rW_f$)j;
za->$<y}Jw4hQFo8JmxYzvodDGg@P0_Hssbbit%0T1_P<q1c;@B0iwZTGfGB123qs<
z_Bup--bJW_T~NHmc3wT>@&aD>x7OG)9Enndzt_^~gsEE%31ZyHs@Yt<_IK8h`8tmR
z4_yzIC>#a<%;YyuUy2DwIfc`NBWgjgAt<NlsolnU+{skXHXpK@V60y@3tEIGYhQel
zH@HL!JB_Suyg8=jpQ`ah&vD_hM0o<t**)u6Fa|+PTydRU&quuC8Qv9{5wVJ*3o5BW
z7cn&8jt1+^=;!}x(&q8dTNM<T7w@eTc9#WC+Sf$xI6L1aL`VgGcySOkF}TR^Zq;4{
zQ_Gz3x(7G>3c0eYRo{au)3r|=T6-9)zt36)!y3rMHzw;~StXpgYgc3ZmRzt?`~fp(
zkv+X50v*MUE@c@ivX7Guuq=D6a&t>Fxk-)BYT@R(wL4wLqBPlV{CW>+I&<)bkB>n>
zWZvuevNSAGjQcG^zR-g=9joc2@XiZJA$ADtYba?W$Ja0>rCm^vnArzlco-C&DCo9n
zJ2if>$V#9ts{Et*I><$rHzH8It&oFaZ#q^#Kdm~)QF|#>pUGiA2VHK{6e{C`1SI3D
z0cg1{r*kZ<vluRz`ddv5y6Ip1elPHq;>1>7l_7TQLIW{=HP*Pp-;dXGUt!(gOv?{G
z+~Lv>)$X4g@f}mL9whJn(PwZB2etK9|MPxCA--}qkp+R!Vi#^#F^dm}OpRR0NvimJ
zzEAE8I_>aNs^;E?(sPzbq@955!AzBF-yT11&$hF08r~lj0Lx4_^8`*Ngq+W!*Dix7
zOJVp~r>gCtOPvKhcYM_Nkl{IlbC#bRemQ{NC+N7;oie-?CYtGS1Kno)fth3Nx8?rb
z&zf8_wv#am8ZPUorq9ILZhLIp=@v9ui$>oi-;9ZpJS6OJN*{BI#Tm`_du^&NIH4I0
zE|O4fTvB~KC<kckb%grw`C(z9N&}ElEbr5x5B!+Ss;p;55OyCkW=z=<$Bd&or29Zw
zmeRqNrH>TbO>h%vh=1>p2JI3giq=TpuH{SqPKE$jgyP7CAU5;G=$Cwb-zS)}!|cT-
zT=_=C1vK0`HX?C(de#?z(wdbX<r=I*sxZx{7^BB7_EKAsl6lHXWX}0U<G-K?nH-of
zGR{xEvp7p;W=Y<(;Q3P0S;jPFn%Hjipy=Ew<)Nxe^T_vBAr)oL8$3=-UJA~~i4&tp
z>cuzA3pmH3Sd&MV>o{GBOgTiM8AgqVD4g_}Hd*Dt`>X8<uOYFk4gupDgWNd9_Vu5v
z<PqWRdui7ya%0(so|p=_ZI(oz^a&M41uEIENR(ZRmdi*pls2QkP8>iXMo87*AETad
z!|(A;&~eXl&IPhX|5#V5yLnaE-z$hjq_&&A?Ori4#>9QQ4S(NIn_}Va4n0vl?`EvK
zLr}9=yKZ*>oV9%F_uswE^Q?4>maJ+3S`8()IpGgt(dxQxeM=a$!VeldqjoASwz8p!
zI_IdzHf$W`45V+O;V=%V&+hWZ0d#~CvFw_K{aGDVPMUh(pK`_<Z9g|xEHq=TRbwY6
z6B9Firr}a-hU+m)InZ_q)Vqr*o8frG<KK3Yn%H&cw`ln9trI_G7?>Pd`ryp6LjmvT
zX~qhl(3+ZwKPVpr3|`icJjCt6%DN`hC$SSrPy{@M6oa&ZW<q()MWk4J!GF7h1XYf|
zHy3`azHRrSsPs$7#m24dqegK{=OYPisQH#DMO|%K+wA?TJ8h&$^T!wiAHLVm1q3A=
zL!f2I5Bee7qy;zkGjrW;xJ(OX=Bd7h9HvS!Kw&R+izs92KvkP^h56x~9ypemI&<wu
zfOWrDT?jN(uTebV;GP}f(Q1755i#Gr%f9xz&!G<SKSLA58)DJE8b<`)@A6@m>Bmy4
zE(JuzqAv@$%%12yOSzv~Kt2xGYgkHB{WjjOf|d<>Vu8k6JXj(yi>cGq-Rpfjz4F#A
z`SI2V3$0JlPYgkgm9u?5#{kQK5|sz|?RS4FQR~+kJ3$F~|8jAPY5}L`&rVP481_5M
z_oT^?D||`|?Xohj8-tEd&;k9`Q_I4jV;B9xl3&2jPwG0YfH5D2^pxWcDC4Km|5K=y
zaSGc*2a2Dzjg6#;F(!@uqBvz6TqQrR5j8eGOUbSzBc)b$<gIee9rc|z{dhvVUlB#I
z^2h;+Tf2XEOWss^VuG4p<egxOk|z1moebwDRuHF`XF6Fu=_})oy(jhV?p(?~*&q%2
zph;B1a@0xURQr{Gn=Z9o1^sI}P>%f!5g<---1IOj-`n)`C-zY3{Fn?jyL8sI<$#o}
z=>i%uYLoKZT_ODDUNnfF(VpDjh0a%4epmn{w}UVCauwUF7oYhx`Vw7dRD%t8N<c)*
z=MnKEG8bv}E|uTJ3~nNOG>eYaOET&O_8!^opk2lTyip;sqtpV3HBQE@4y;XnBy!O$
z1kU-iLQ79L+Vh)0S3)=PV!l#PIu&B#BqqX?hvGpLXeseN?25_Cx|ptNPI?#4#9YPv
z#HD9EBx5plhYnWUab=W*IH1RuPWVu7;P^21X^O?Q4g;r#nS<G)R#5Ib!lEoxMYuy0
zeq7}b0xf?vhigW<rvRkF)1LX_i6$a&seKb0x#e0LpA>%?9r5k@mcN^zYg0*`Un#F=
z;^XfknQmrF`3b2r$|+YR1f9eNgz9!(&J<RFA78-8XM?NA!Dqy%mr7Dq6`d(gDwGW>
z>{J&{g_7LM>2fXJ8U~mYGuD}J^IYZ5+GP`ck44W{4R5*?;dNL<(Lu7t9~W<}fF)q)
zM6Q^!sP<1Pwtfc{wMXxOlyU19=CXGeNXeNh4qlc;AS$GPqCqttEZ&=vexRa&w2657
zRO?-35Dc$LUL|u2{VDn97Cax+Y660VxQ$^2*~Ksp*Cdlfs$inE>kgE0>J{l&8VU>p
z*d=9qJGI9fdspO#bLWkP!h6UX?mqvwhDfw@;A5$4^upFjen)uM(q;)Fx1Xb^$Fj)5
zxPv?rgjk>%Mh+pRhN#bDzYHxK6$mRWt#DNI#J4TiHatKFbayf(9SwjGi=1^fVk~=M
z0pYdkV;*S1uZQTG-NHt4pjgNv!cErXVGFx~tKX)2`{s*TXJ*JWSdB}{TPq_@k{C<v
z4u<mk#xv{ZS!V8xSHn$>17^fm?XN3^X|Xb=a3~3AGu29-m5`Ai!dyYMEiWsr%YgTG
z)FPhBMIM%@t^6$@xEE}8U!e*4Q2d<Vxt%G;h*&<Sw}PZtS*WWPq>)?{M&9?L$@6E(
zd+8LKqP;4~A@(-0DaVMr@jwY|%hF>!yJYXZ`hn}$VpGQL729`Z^Qoxnss1QcBEOO>
zF9H*`qw@F2D_cpM;c>Fw(@*4D7#^|s`TZ^tfE!uhhb`3KtF89<uHzJ43sV|>!8wfG
z!Yb3pbQl|aAVBBWr<O%|H%TY)l88}WwaquqpeluBdcRy?5mnxl*eUb)uD4<+3I@|A
zV-{Fr*@%ypL4)#L<#Nx!c#2pT{g*C`{o(TH#Y)BUoj__<YZj5YeKWb`Dp<_onaHq7
zVr2iJt5ZuQEMI4E19j`=c3}7bNdmK#qC!?JFD>b%+s9NN<5xps-tC<jl*c_AWku#y
zrej@e@z4pHs#Qn@Z_gOF;3sn`7u`%5qbL2sw}sWSW5<f-`RimY&e#TJ=^fQIw(PxW
z1XvM-2$O2M1TN4=cpkgLNsN*D{^xkTvAcu2V5^}Mp0jAUk)KK`--GA#Z&eaS!do&?
zBiG{JTC6exAwtoT9Mh#HmB;7*XqG4vvJoWc=12GIj(3=3m{-K9_RxpFH-m@3shE4u
z{a&=#h~*UPPzR0=!$I)}sLdb(k03B|!y~B@_<z8=<;+>ttCh9Hqh|FN?XMfg@tuuO
zS^C3j4-?OXK3z@G`F$K-x~5<PmFZX|Q{wC%>GL!A)KDziTzvPnfR!bOtCprx2ByI7
zW|;x5;4f)g?%vQS9=-g&D^6&BG;^VVob?237sREp4lqUjJ?F--=6k$xXVn#28XIyp
z)>_vo34u!~Glu6o_Vgd}cO6|9I*KX9r1W}P{EMoFzvn~Zo;cnBgu$v9bMa--?|=n<
z>882-@1_MHb#s9wt69;9;$YzHc#Y}cixK;upHDvPC_ZD(KF#k8K!PK0Y$+Cc9cvc;
z>b3N%SK{I~|GrmkkAyT{(8g_d-X`GbE=YQ*MI1-4ygp?fe{V%7<jArv+ZkTUy!iI|
z!(v@Pd(_2#EA1bq#0}=U{=*C>OWr*hL4z>^9(}M=5W-w{k~vQB`LFa<P-W#qV95@#
z0FK`18n_uAfAfpKck1ug|6{G`|9yGw-w^lDUHaD<{V{#}D_#HB*E_QRRcsvc-zcGb
z|Em&O4E<j@<ZsCT7>N8kYx~aPg+CUx|I$?dQC2_H{4Yl$pGx${5d9zR_3zjD+5Z23
za52=7s^lVHmmQN&Mu(S92>*=|4$flx;ZtiULR4RAvq5>YeZX{Ju!raH*1sR42b~e{
zw}9>r<XkqmQO43Q9`x!zUEoVHLSkf?LA|1jNyBs_|M^!hmDEDM7Y97$am`Hofkf#$
za{x)O=zo5VjJX(a4REvt2cYSeH|$w```2GV`+r=|q^x9LLo6AG(SP~Hv#hHI*ssDc
zj|8l6*!A>Ud7&8Vg%299zRgJlnRt%Dbaj7rK(&ugL{2a<Q2_|&t$w3#F)`i=4E(mw
zNl@qR7@HUy?+`2erebszv}H0mstU=3B)XGaq!K0ndkwC6A`B5Nsdh%S6VEsGcwWIz
z*0rZ$r$dI<4Vy+V_tET(Nm;4Bz^LgQHinWi_93+)??|j!*^gf`N4n0ZNA8E@K{f?5
zmz7!r17)o&Q6h-~+yp0|!j<LH#*Z5l*@#|*r2CE9Hz{>vhrG8;IhIg-TY@r0ZqsDM
zX17QTr1D+gtGbJLvHW@7dR}KG+m)2rJ#rWw5ocx{Jv+oFw?KIhwd=?4(YkN;T`o-!
zcQDpkSs1=etX|hYei9X+B1XkiMrg-x%hv+IJ6Uzhc`PI5>z^}ao9YPOax(m`hFEy9
z8+1E|w=1yZJ^k6?mbPy$qfXuNs46xAlp!VC2(gpuqoW!1;g@vIi&fMYXL!{Y!)b&N
z-$PAl5Be8T6zIQq^LAQYv=Y<9>5nJ9)#?}w0n)X`B)D{|xz~+YeamE#I-+ICOP@x3
z^sMnXN!EMz8L5;XZiM@AkTJGmz64Wqer;uAI7~H?r|?^C(HPlP8ZO=6ac}gb*%p(e
z*UK<K&hB{LNIGxJpHZKCNr&B+i;eBW^c-^#b5PS)X)#L7ZVveeH^)mz=6?p6k;xT^
zK&V~0MO3Mc!VVolo}`fD=C<5&%uLZC&aLrR7pSUo_0OU>Hq7kn1-^>l9+U4F`Y%09
z31aYo`@h6K2#7LxE@0gi0BYXA>bKdN#aD}un}Ok+zhtWOb(5wCnpQ_${_@Lj^s#O`
z7rI!3z;*d&Fw2kts&Ivtf0^&`##P0yQFVruQ~fkKH!;P8-U*Q5zVxd3k5EK_>uY;&
zRu&8?Rck_UV|4$r<>|)kM6JpDdumjU4d0s0y2*<186vqa%emcJz+?PAt}RZ3sOP+z
zH28Q=xEw$iWB8qStEc=JL}s~1Htp-&Pr7h#H7NgOCh=ATro0F420f;Jq&3mPw5-|;
z81ams7UAZd#?|5eA~?7%|J<{J!F+|3d9G{7lexE}a^(Fny!sOjh4}VEUH*FkPaSn2
z&Sn}<s#^VlB{uETco#Nq4$c4y<3U3kLHmB~F4(Uj`#d;SN%0(67`URqa!M66zm~vp
zSf#2=xPO$o`1jF$-(U60&ufutMOPSL3+@!An-}^|OU#U1L#`BX_-QPe&3TH-P087J
z2AcZHA_R>n2XSoxfol)n&7`lrsE@7UtO}r<ybS8q0OHKW^O#n808buD1|ZJ%^k*~Y
zF$9Glx&FB-M}VI4XBJM%dQfO)#Ia<nkoer8EZyFZ9?OV4alp69kqc%t)@k<EbJTx*
z>(BCz`$HUVmO3oV2|S)7#onuQU`nhSLPxr*>5sZ)FN+ys^?XVuNEqpi-5YZ}`7HLq
zVxe>1_yU0SBvfC(?1FRtI}DUWb+A3DN^%oX6d#W<nTJ1%o`B@FrNC)+x~r1Ao~J^C
zr=D(S?DM;_&a4aMqXq~Ke^Z^f0C#ujE;!o>=<=6Vs!@q%F*<E|B#rbE=zJmACP?aD
zH54=Dtij{j#!3w*kSkYhTM{B7a7KGLQkF=};QJx`?MxxJ<BA!B#f@zx0sED-lsI6R
z)rD)XJ^gf}w0B{_sCh*Iisd^ZO*O+(mh&#Y_z{ibwTw_;hY*s<W`M}K%Qx(vGHW)j
zXj|#vVCe89monZA^r_@o@z}H6dWqgZ1sgli4lE60<F!_`x8Dc|-B!w&wtuA9DQ6Iu
z?2g#m&K$`u=;kzN)z=s1umQYev$3(U@50qCkL9R)`*BlUnkT|;kv%;9O2)=5S$T*x
znRdZQ6)i1YhOMJtzmn#k_FqZpj)je85+5m%DqLrv71WTIe<QX7l}Ilt+Ne?)C`lAL
z+HLvKtn{S!4Ous<J1B5`c)Z4_!pSlT<^7pJE9~<6$(!IBS~XURcx~l3F(ITGG%1X0
zZ^mTwD>5q{eSC$+t@`<m_D68V{>;xD>~A(OKz$VJql>q-oilktqY@l=`b#&Un-#Q9
zjs1+wEi()x`D~*IC}i$1%$LY_+<HK%Y;w7~7^bdHMC6~j%GH`V!=-BaBrAF?rjARV
z$Uozpql?Sfcc^l1pkQRL``FV;NxRf7pIt|utz%q!cChfqH(km35wH&7ZA`{VU}a8o
z=6_vSg1{~d`k+MQxV_<>%3EEwd9o`$A~-vAkKI;+v(a$>HLp2nS<1YX=CV(VrmOz7
zANCm*Pf-<?Em#Z2-mVUdL(9Xaju=19F81yRhXjdd7S%9b7f5#{b4?f`DzwkJ#-y<3
zs7S@13$ZO+K)EuwC(|?>HZmAO^!P+MVePv8ql6XVkhN+<D)tdKmt)^yTLV8K!Ks~y
z)0d5jJ*$&X`k!Z9(^w8d1cwznb=}!1MSR&ccyIA4=ec#}IkQKw@5K@=2|jJbvq@&X
z$zxhSvd#*B{3z3f9PO)QtnTkc!uvknsjEGE#p=5M4fMPl-kj6E{=CJ9LCy#<lX0&I
z3D;&~{H>N4_E3+>=#I)FEpj>O6mjAajze@9aiW>EYY;WnW|4CfC#O5NpKvCqm0MUy
zNElA7x^6y<j>)31#o(~myMl!PV(u&ThKoOVP@uH5wtMF1&z~pHyfbOOUaQts%9X39
zoD<K_a;z{rU`+9oC{UB3T5#Lgs@!U3-ouX;Ja3Pv&YAj=*cqMSYN0G+kX_sWx2rBJ
zH2Tp|N6Eb(*d*k4^VOl#q+a(f(@;~-6NEEoPR#IrGw)mJS3gkE^UZy4ZOt^Qe|+iu
z%_~k(44H6rR~Ktu`PlM8r-m+3`{KomT($v+dZsQH;*AX2MK#4~43)E^QMF03?s|)d
zWBt{(ZEV^5rk2&EYcKpRti>2&HEH6B$e4MuV|X(7{s(n$85VW)uK%it7=);lltD9y
z(v66e2uPPSGc-s`i--tF!_Y0=GlVoqGjtEBba&@}4gPBHv-frW*Lim?eZdQG@EdEb
z=YF2geaFitVwZw~b}31LSr;zI#g*X5sZ(Xg=5e}|8#m6p+#*ZIiZ?Km>o$4up<+D&
zD?yA?(DhJqyr!f&{`eWo+Rt8E--?>4<%JkW=A4=%%cY><%A-4Iom$O%d1t<K9VD}9
zWS0-)TP9ujL?3U(mYPrRw9D?%fe(KSg-}$w6x=P(CU{Nw1XlY@Ri<-|Q$ssQD5JI_
zB3LW8Yv~n<o5Baj-(}Lf!$U4+5uHP@tHtrPJG{~HggMKf{WK29LG5%a@<Pvjt*c|b
z#h~i55}`FR_F!Dd-)`2ABqeP>vW!>x_q`pf=d~5ZBC;$NzS|ogy<ZjZ_dO0W1X9K*
zv_Sl)Qu+?oxp>Lg0wRnGE`yboZ{KKqdeVg8cc%6?h!Af&JVd&C^s4VS_RUI#!x~?~
zWe%!^<Oh21(+BMDgA((|5bdP8)A^h=Thgk4{jiy_MqYpZL$QpCgY5IVl;d-(;~X-0
zM$#!wY+mm-Ex&Y&2k)PD1XKyn1xNc)3p%_it1)Lketp1jc82vNJoz?PSt+)tJSQFj
zo<EJoi&qae=TJv?#Ncja*`r1wDXMw$E!_%k0h<+S+1uN<!yqma)0XUcuVatMN6a3h
z)|VGKoZ)oSz4$t;4B_JtPQ?V;US_PE+*~&tg$|{}u5ob4_^gNKP>hc2x13~Bd@uqA
zPY1l1z+_k#Bs)A>zdLTvd%7(+S{iFGhSF@bC2_I23Wwd_)OoXqxlB%4ni<b(Z_-%2
zWLBzSWMm`_<)p+}5Mt1Q5PW;_t4TVUl=O1Ps(u7H2@Th%Z;ftp6G5!5C{q|FKI=ng
zRND@G)Av7L3%wz>iX4`|t(B!PkhdDXI{CbCHKaw3n_}g8|8J%G(slV}!6q>3`{9t2
zNjpXrb@(x3XR9SPrt`sk!4^xZ!B+x;^&!04@@=x1i>1$_So1Nxf~ygAG3R4DAAV`T
zW$>QefP!0I&(LEG_QDaB+$}+f%bZ9{tHI#M9e=1l4(;%W$Lm>EzQ0^x%wH~$oU19O
zJd!RlQuTT>0xZXG0o2)PiNJ|qT4`*<-SK&v*eO6wTG%QOIXCQyV4YiD&nPb!BOGEm
zc{4faYcadEwZ-{@yp!6}%=L3sSZa%G;iks~$>wn0l;MCn7|e-8H68koira>?B1j+_
z<_{FRT^B#Z$T#qv98WrV#6-uxn?P^&r&(Fw@}19-vbc9e7fhtqp3hT@CFFel?gznJ
z=sK|$>WVs2Wj8Sle`GaI&ta&Qe)6at7o}ZJ*Ia;wj@j+D{EKvgsZ9xqj5eRZ1mj~k
ze5g)spFNnR19w!HoPq+k3BrV2#fvqNaagZ=`MVdLf9@XBVrL`(1~e5vfz{2Jsaa3}
zbHeh3f)~LtaplD=1g8~0n&>&|S^oT^lUKf7FlD?3*3KMG^#qS79n>!adlYi^Wn~-X
zWY(SK^k#Y#6@|0@19HnRNcF>`VmybCGSe4T;>*kA_YX?>N<>dr1joL~Kd;Frp<gnX
zd$vG27PS8Kc6t;CYm!`ps3Q$dHzLfoipt>qGxF!Kl5VQCo_&e@-TnQbr6(sjWjL;Z
z+&hri{pO+S-P0v+7&_!rs1665#d$6!YGx^et;?{PmPR)5g<?%LH90xhDhTlKUc8g$
zuCu%El9%~2eg02CY*}gZhAxje5J|8s;qA*VHr4Yihjd53{{XXpyYVJ@)L*u<E+s8Z
zc@kJD$xapWa?Nz0!O$Og2}8)j#@1Ax$`h3SwBy~VZ-@caR$pJBKTEFszwl0a>~?tG
z?h#lgzym<D)A{Sy6DJKl){~4xzD}dbb|!4vw(8I_qbYYbvzMk$Yqp(i%Njp<{D^`o
zJ}%@}4_N!)XE<rYNz5|H2_cSg^mlH@-{hFwr=tuG5_7p9X6D~V$v%+K;?BdI^~LYE
zTQn5eM9NtxNvWi*Eh3tel=Kev7Svg1l(?RIpFg@6{a&fY3C&ts#7&V>qmtaEpV05&
z84jow3UydDY>xgCUpXT6dJ-Y{IEpOl4Fk3H;OL%2P&|*zzAM-eZCnN8e{AFa4uke9
zJ)-{B6;Ca`iflZ#$qxcMP4Iz18)iZp%7TJtJY2IOu6?=%Dmc3#a7JPwAgH*uti3T1
z`L!j88c8CQiD#b}qsHdn4rm1PBI_-VSH?be%Apzf740}ZhcXV8*CP9M8JOmy!@=vt
zl(3T*fHvM$z`s1~>!ROsZ<Ir|dCgpQ);rb}vGcW}1w8_+LbzLNXJY5t00Ihsra(cl
z-ENk91S&Fc<e{vd1|?V;_JyB2%V;{vHsI6hX?z|I>mC)#HeYyjYlx|)j2k}oSt@A}
zK!HkUX-*}@b6_h0rDJTM{W)89g2mm)KYOR2MpaJDmfVzM2u(Sx4PM+oSd79~zCfq&
zWxukKWp%PQ^*Mbfa_}L;|9AvOZDp#${UGA?xO;s9S850a4a$K)n9wZwW;?#Z)k1To
zSe{XjbBk)y^|M#V)qj(FfUV}=kTW1u7+A3*@8Ih1EK7o+Gh`E?YU*DtwI(JY6r6>z
zV<91g4lS~k5sqSxGq@IS6JPY}z$t4Rn0dBhH{k7hmiQ7lE;KJ?+DrA&T#IUWcmjGC
zBO|2#SJM7TcNW<WYr|0=jg7xGDPF7}6re(Ui<v`)pBtVYZW+ATxPCThOv}+cJiw@a
z=k{&&BOo#q{R{6@-=D}f{RiF|LC6=dU08M9z+eUx0CehHseUf|YmsOQl>hd&l@1<H
zWU)?l5(+VgZ20q`P*FLuukY6Oxlg~k-}i(BZR^;rEo-M&?CmFi6iewUJ38my56;aI
z;fD6LO#}Gp!!ho^*v>c&?KTYC+2PfG58la?AHV^x&^YLLBh9}~f=YLLrdAvkAUYwi
zLEM#60ReqL?}q-avS#{CsfHy9L>4%ibHE;;!yXvjFTs_m@_Rd%*d6aNGoMHQ_&6RP
zqgnNY15~5ItF$k^I*eY~c!laLtWcBXL4};v*-LEHv+8b<Qp+J&-|_(dSCtL!?L-eK
z!Nm6>Q?og+?F(O&){HfIS)fhbmw!%xIW16h(LRZ!#_eJKdH+au==YOc>WA)6Ziq<G
z=k$I5=5~O}bl#GKsB)f_B)ch5(cso}%k(&ng|cXYI_q7yU-phhvCNMn$W1VoA0Iww
zpuC{bg{T!?<s7vV+;o<`0vD`@xF8@G#*b0%YXN27uZbN{N$$7(20T!;xW$*JYx}SQ
zrF%x*I6ZWb%2u#uZLq7&ntn8n5|a^fR$3uJ5l^XkES#BC5W2GEpIJ(Aj6LE%K&XAM
z$~h8;yfj|`M+N%q5cSo<Cn3(@)G7De?$0!>b!-92Gj}0hdTNe-Hg|cY7?j$VBtj1|
zN=hh?rtICvNb^*srojX1!|RCM$C@+pS0g$K%?Xo0!YGcoi@|?Do_$lob=Q>UVh~KO
zI}-}2J0Y~_9=F$e;*gJtvM*C-=^<Ws2fZU?IuS0;&gwUAr9LUjE^5(I>Aa^$rBtyE
zl7BkdnuGLj4S{11F#}7OajG;H<+tiDMY_HEsi#cf{<ERZUDsVxXAqD{n2P=nEhuz>
zbWSK`DV)x9=g#wi;bHcdtTEyP=#CvaRVQzZoMC*sl@%Tzx)$-#vxeWWFnk(lT%)l+
zw?Os72{O(d)bVi8;>^Tcr9o`Ld9e$g1EZWw+wYI9oT6XzlKaZrSip_Fn?z1%0RUFB
zM5K_X_AcbbnZ||ylYiK#*j@7nbv-ljx-^Wam9J3rRi8suUhdr>VVxEpM|fHCbkR_t
zaGq&{=wvyHy`b{JQ(jWIAkS>mS=N(e{*zNE`hZ+w;0WaC)FWitUcp%;HbH9l4IHt%
zk5a^g0QK#9akj^Ok;$M8-K!4mW9#&s=yX3_f)r`n+wb`Ws2f7tlN(^4nrst3o&;tT
zvshU8VfltQ+g#y6Dd}F1O3-3llSz1rFe1=110{{TwLr(YYyOkaK#<;RKiu?LgKLwn
zQgs8OS<`;cuU(;Ml|MM;;p552J2tOb4A3ooa*X?QmZz0dwO!}St1AZ5*x5*2<nT4S
zTdZDrw?`Jp?m4cj+z@z*4T2PrWOSuM31ES2tY^L0S8n>{*6ohPqC>kbgKxJ7vcWn(
zOm6lR>YsdP*S4-796b1bn-#eVlA`4{f=^DAgXWrS6{+&Uh}}OP1I4Rv;p+WBtynIm
zs))Ri%^KU10?*S;o_ZW3Mutl7&6K>}&BfI|vNQ8z)~*lNq!^B+Wx=Y`#-5$3;dX{)
zvkuuJ{Iy;!<tP34a$8Xp2XrhvS2VDdcy7_DBa|mcJ;4VWDQtt3G(2uxWbierB+|=%
z3&fVDYdQrFmBM{aliD_kz0#7SYLT43pS{C);I}BrcIrDD$4^DeH0b}iQ*EZY-(!)U
ztoG9`qkkpvXS2{W<M$|+*D8LFHA{a8<Eh8MX~vI;`bEtVtgS@&dr^*r&2xy0QTp&V
zwm0?`zF_Lzu6DcGrhxu>{#7azkcHqDZ@^$zMWPah5jCOqcwz;%2l7&LJfQ+_G9aNi
z&z*C<_!3G$HCf20!Y+-c2V0W}8!a(POerzxaH&0Y=lUf2B`>6ai0Fi9C=%}Qe!K>$
zxL}fjERbuY)!_PI{SmVp9550lIQg|tA`Z%r6K^KX>D8%~PDcliKUnR7)QZTi6WQ0_
zz`+51yceP<pew$(V!RRwstF~xre-@!rfE~O!6(5J#eq3P9@c|53ALPQlUq!#Dy7aR
zf0F;;#d^eHaM9qdj?o}GTA>cjY6mw4fcOwFX&p5oWW-ZlUWWx8Gsd`@kdl)dWT~p;
z`@V2yuiI7+4_L^AGI!{lInt~TT~H3{D&~S9)U{(D0&483pqZJOfd_u}I!jNwCL=G^
zbz{Fa0hHy&zJ5OnpT~7QE^lC%VJ<aT-9aobR!mNHC`VsKTkBZBZHM2?ttX?!K>Kl-
zG=4F2dn&mM#I$)H_5$iqr}dj%r&KCHV4vxNY$NRf@CIj^_fbzsnR4^k_F#FZRV2nA
z@M}y9Yo@fcmv~N;un&lD)>bls@_Ul_AQBcY(1(TLBr6dTD+mjI+MoCtD66sI$`H*i
z=VaZh6}_&e@OT&6An*6R^vhBGb#~~Jmv&(km%u0x#TeBbfa`dr=akDM^#Dt#cV0-D
zdBFW-<mX{y{Xc`^RtNnH5GM6gBPo;UV}^Og?8Ed^?kSc%^(mxLH}jQZkZ0dH*rtsZ
zy+e%ZZk4a~y;=v43RB-d4$vGqIe|PG(EzXI;QNw>lNUr-XOOGTZf@1xE76CmG<plq
zJj^Qe!iGm3%^$0HKmnwJGt1<AIf3N#ZmAsvy3%>|xe@2ol(rYVE0o6S^fZ5gW%^`K
zNp}s>uD0K6KtJGeKT*6@xY%;M3VJ;<ixEGaO1^gYZq&my8FH?cb~7z!IB&#o*q6)Y
z*R)jtRr9XTiq55k0nS7-6C+)}jj-IE$|AofH7&hkN)*ydli~PmNwmCL$e%_*p6sQ+
z%Z_hEWCl;8In7l^Pi07K#DyK<MK5V&Z<;K7-<WW^c0hj>(~3{0;nNqXPplvbAJS0^
zm|J2cJV;cUw3=}a0<VM$TJ2KDr!l&6x*^deP5S1aG^v;TP~Oz*iOwOTJK_>@al6d3
zDtTAb_GemxvJhZp1<P7rwc~!;IM6B8ov%+Yd<-f5SoOhLX}%m1<^%&Q_Nw6VG&!vh
zi>1eU)gR_HaVaIDTb~8l<mAQPv)K-j2;Hd#M}F(>&O8h8#ZAzc8Su`naMUScCVWdy
zYoNy$Z7tr3AgkPs`{i4CFj1vUJbUZjTh_uIf4(LLbTJSutpN?7zI{d+)|)eQsHynE
zELch)``r}~?GV^3C)3#gjy%}d-s<XTj*~TX;;+v}qA#Ss{Nv^&Y%586(0j09^-t?$
zO+%oaU>Ox6d0y;5425WFyTGO1ay}(+e;V_)p@ZI*Kmn*rV5Kj@iKd!Sp~k#g=|4J<
ztA=2#@o?>E<UVKK{fi1v%>A&pX*N<1TGd|iDob2u`pKWPPdzm9;L51cXDj(iHWxZS
zC_hd!`KZLk5FS`TtJFq4PP5q=bBxTKGh(1){M9!8k%OBYPxbMMm+!D^y{)aRj58Qe
zBr35qoy;XalPKWHf==#fpRxmqif?}wv{M?>cz`%~NYUn5WNxZ#ef`FLGb@F8_5II+
z7Sqk!p|LUA#&Ajj-_l@c|C$?3_X$`!6AMP@sRbx-QFL=!o!rj8YGVuYBWvQ)o6*C8
zjT8EXn!zsY-G~hp<qbJrj+32oKfY|>9noeP9;TFo3SEp4YocB5`0>ZY5FRqF)32uR
zn>Sj&haR>VCFOT~xHY4DTP}YWUxWyRfO5WAel;{8pj5aD)@l87<y$fwGy{;6tnkyw
zX#6*#!+#bF4aILqL1Ud%e(0jXUB>Ru5Tbt7dOHdEfUON7AujG`72ZfoQ*-ghj(smw
zy;K?bng=H$zXNG*T6~3#r|66DYDZ`!3z5aVkyi<l!2q4NCgjfNAJplJShZi_=H&Qt
zYQ%9;?vy%9r<r>1Z+AF78{9dW7QW7fsZGfavm$WY>bIjVU_cWt7$#9~w7dd)d{-Ot
zvuDmr^(M34S5H8~20*nPS!7K~VwLowp<%DXYquZCv2W{r*DA_SBH1;g26|mQ<?t^m
zVNzaQcqc-YoaO5Az-@T-($C?BPoFEXl7&v*BFy0;?qgC7Vr=yY`Y5PN4Ilv+!F*GD
zckTQR@fqMXctRcCR{O<d&kQwwtGtbH>MSg+uNNWKBOwLhdJWP;wI^pQ%NsSIcUacE
zvADR%!DLJN5N%xYEG%#;By)sUGphG3oq8=pw&nY59hlXDW-FrU>qH^r(A&J6>R8m`
zgojgvBpS3xU6yRLgEKl_7nzIc>#&0&<GXIxHTDg>Oz2lAH+oIq^xLP)Ydvz~@>=_(
zijK2wnASv}A$g49I69q(HlaTSB}ij{0G<^m4Q-N{Smv$n!;YM8S?*yh;*H<53!u(n
z8#}E%I^u(|XA@Ls6bW5Y#`1*%=sWwxS&r`MnXHoFjJMmEDL~kSD43*rE)_5c;TN2O
zhQq$llD^Qe3addhxKwxc6s-<DD|l(+bV?d9dqvGbE>U%_;cocZ00oMQ++%x;wma<C
zg`Fpp_Bjwgp1i?_G)V+QG~e3XBfU)!OGkpD+dCkL6LfJu{vN$dz6Xl*50w*FIle{x
zcvTkX-bQbhQ&7O|OwM-&ezxm_-Iz~A<bO$_=CujQV<=Ry7TQbz=DNO}EH^9ge!%$=
z-q}|QY)6{Daz-0}&ij_xYOwNwXP;7XORA@|nf|(Mdle5va}~np9IO~12ak8;oMMRh
za0N1!t^P#7>y7HXI+y0%ky*Y(a|`jxYP9j<L+`R25`jVoVmwCF{=nj*Zx|L<asb{7
zzgECFfORH`5wZhuu~w*zTCSfxZz>^MSTk2H6wu01)HTv}lyQO!3Y~vxx`WezIKioA
z`yMIi>R#}ej`Rpr<P-0157!+6sSu0dtu7>1Lv-9Xb)l#&1UNUtR>HqN2D>uv<&l4E
z!6rIe7oz~OX_a_G_<t>&Nr8D9Q^Xi(J^5;s{$eO<E)EhVqoCL=69KZz-LSeF=ql48
zE)EWw{xpJ&ZnbI$!IGCi<<--Z2YoOQOMx%p6NM#Gk4Wt9eWnWb2=Fp4&G!y{DDCd4
zy~~L>bP!lOn$Kga?Z^zyoYc;+lpk#Sa0bF&TY#fW&MAwqeZWsq;2<zk2qR9T=_O@v
zLkRACgzgFQ#e)X_)VF{b+*<_cBpq=&%Z$?T28~lfoa}W`u&(1@wm-4`iE(%b!IZ8v
zavjjAybdRz<;EfZV2Yt!Q`rK^>EPhti>(OoWFy~q;J_7agkBAo6Sg1iIPZ?{zE|5s
zn%{wNTtl}+32B88G5*er7X$5Aj=07|VjESagdaB`_URxL=|bb(yKkCq7)d`Sl&u?4
zc54Z&A%W_4Cj>i*688)Er=Pa8vZgNA3Xj(dRqfS1FZG%u<#ivF0<7xRmZTB7vU{%;
zttvDzRJEnn62e>!#tiP{+yMImcX5z|lLYY!XiZP%==iDY0PK1zV-Km;b5qazXz8=Y
z=wl0yCsWb3X1~QtP7*8{CwVnKI6jhuPxSD$<3EUBeRr7Vq;0(d3NOKR^4+54w~_rh
zOOx-HB;IkYxtcjIeDCbEdz4)X0G~nWiJMlCGBVC<c%fO{2(K@_BJP5%nIOiR9ipj}
zTD_#ZOn5}c^(nHSy(^CBpa*n;_~32=XW<`n9VZjhCD~knXsZK>C7c9OA=`VkGWY&3
z9Ed2zrYU)&gu-v>&D3PTAuz@7XTULSD;rpjNS+1W^9hSi?Ju7PB{(M+mwQ>Zv)L(r
zw6KG{BhJvn`%MV+Xpmm3&*ns^@g1G3^1z2f*LbO%Nd0SLlnOgQ_SBy|0I$*2f-_Qb
z5-Zrn>e4s;#nA2qLDs~HSxR4*U+n%GC<N!=(2y^0<?QMUZ*MU;1lz<6VKqWwW|ss-
zsmiZ?2qVDA9g1pTn+$nhaQJTc(?;Txb-jWTYS4ds00|l&yD)dk?w;0cB+!Xb9h=Of
z4n_^R<0cG&F$gM3mtXJZ1CbL0+3D?8bqH|J<~W{0>LsN!@SXFwEZ4x4hD%ZL)M8iA
z@e@h7Tdg%sYm!S4f4mS|L4oX^^XFGGhKOL$j0BRJ&~Fjruh5fN&E{5c_vsD4MnC_r
zG-jeK5j<~cYo-NqHK&c^PRfYFM<e!boPO}`(ZQ}A4JTf_sqR6;^Q?iQ9yF3-0o&AJ
zc<5xi>QFRYEGK<~UDMoRZ**^3xXk<@B)v{Rj3^8rM=k_dv4C=EFY>I2o&pqnLGPbM
zwkmWk=-o^wNziCVs9#(BO~SL6_4CVXG5p&eU|jr(U;O?S{W7*LrsY-#FktmxzeLiQ
zfm_xH9bHBzSODI=-zG)vySf9B<g0!_pRFdp|JTn@v*o3w38Yo6e20)0D)0xT?H<l{
zj-9LPsfPRuavJ^E)$x)t)L}H<KZ;Lac(l$^AUU=gTjTL%c53VR4a_?6^BiS)Uyj=%
z)&85iZ!ywkB|gp5!jrCp>*$9e%?N4^Cqg}^t+(=Bp4RLT7uRwBATy^TxmjVk=i6Nx
zZr>t9XCx5*(oig5j9KO=jL*Xm8~<Ro{8pZ405@QxXQkNhy-Xp<QFEB>K2h|Ant7Rn
zKF{?AQ;;O5hEPq^L5KWwk=ktsMOTgHJuT2oPbl$qZ8VzkH>A;p=S8UG>VihsDWG55
zF!XC!L+|5jl|V6H1kt=TF9^iR#HyWgI*d_yTiVio*f;bA5W!I7`#&xHa#;sMv~%ac
z7E}0X(Ak-`$@Obm9X+nB0wv-9L|~biEd3?MW9?p6pZ)%=yX!YNsw8^ReJzIwQd!{f
zQXu$P=GqWGIQ2=xZruTAB2Xyfc8-|`EXS7>mt;xjlU7U{NO$h-?IkCO0Wg{~ATSV?
zfKq@6R?xu=w6v;^JVW3P;|!gAB}QOW;VP>P?xhC!Bg_fDwk@8P*i?2neuOzis#e4q
z+=kO5O6gh{L_dnJy!1QzspF6DP+bEib0VvK3;E_F1$m$AqkrJF@R3p{mi}?t4pziI
zCNio=EjwBdQ?ErqATB`k`MI^nB-~d=we7C%dFsPiTGvdjR?2ysjw7}v*7dnEQU}7{
z`f+p93|Nt@CnOwF`dZ%-9$ixUqq>ECR5v+JGBrV$6J|b{mwS)9s~xoBM>~8DCaaXw
z)lRI<&CNa9AIqI6sZJ@b`py02V7C_+Gh5@qGaJK~*#k5Cu3e<DGa41J9cs)`j*)ms
zLnH>Bj<J5j*3#9!2Ffc9MWit0Y#b5U#w2=lDxQO3h@Ix*Kq!*_1rTcn-RHKgm8dvT
z=`qe<8z-^a{Iq%>JviaGq+x$4N~`ZHT2VmCSo$}6o?~!WA?Mix)>=@b5a*62e}9~2
z`(9oE8<lR07C^zGUy!0Oz2=Lgz6h{-;z=hCzi}W8Nlan<`fO0+t$Kb*!f9Q{s5-|0
zWQ<)tG8|6E(vc}BkWMY@cW`5QWo7swYyTTnPf%OwN&cORdG{LB`R+_<(lv_QKSrXO
z9;}F;FsY4|w2R!BQLu5gclS(O+rKli#xo}9VU&X*UJcMB(kC*A)vYahFoOg3S2InC
z#!%#@Ln+n#&dHRaj}&~OpS$^{IVh(bLgV_)CZ`Ff-kaRN_|e+l*S8cAagwKeE{I?5
z)ZHn*6pG~z;WzmTr7oYAcv?klasPhnHxH2Y8y`$YHx4;50XD>8bKgWv0iYvpL*)Od
zDCrmQ?Zi!zQTvdiAMlzlj#N`dlPx9*W--ljR(pP`DqdbL4SG=<P-YDJT7M1Gbhp(0
z4Mt;jvpI2b$Z2KmD<`J6BL?2Ffy>zfcBj2lM$m+Bd+-O}r@`<w6X(M_w>oOVb3U<}
z-(nNO%{4&FrFFFGu)a5c{j&?~77dS@5oGA9P{+YcT?lV?$V;8P=Tmp&@?dE5q8d=F
zq<s5ngcVgCtf!z^>VkbJ2igmZ=mswz&TTWC6wo35%FOTAdm0?>8vJkS6{F0eGOALZ
z)3bLKGJg{&&+@UfD%b&2V_M^F3$_a={-O`Wcm$~Z)*-`;tdW~iiW5i#0<F6Ez~EaV
zp3=mk{pEmw_I02E$&u{&?yfCN4e>kgT18f989?M(dzoc9QDJRtGXt}ICjvjSi`>F#
zt=)SJZ@TvHXiYbd_3;zU6@7tH*DjxeQ-Xy$>T~6>BQqed5wZos*@*^*#)r4uLP{b&
zgEdF;+U|pfg@rYaw;@FvRl`i-M~=HW1{)M-;M}M}ss-0NZ_Oj}(y&s66&~qLYV1{s
zPpxs^39p@4*js*Sy_Zzm5+By{1RpDPe7%CL0ddwhf4`f=I8FQ87c$s2U?xCI`4vh^
zubOTy111aERZbfG)GDE`R26rEtAEA89RvztM?j#4JF)X0ur*u<QUaoZ@~z-BN#O`M
zXCLkz2**v1ukOM7TU#ZYqu)+Yq?)U;!_Jk*e*>9d){sz8uv-7C<#rYJ)LW&ej&^p4
zk_qF(wr<=-0sWhd&phcpj1gl^ctYoPLx+bu2@ipYc33kD%d!kv)TCn{4848Ff23J+
z#t{q^jeQRcOsC-M$W~YCP`s*!LXfY?<m%c5A|nq>%xPA~)BL}T6zVxWZ;jmR+699k
zxiLyzb+UrB&h?<TE-KbBo7$-aQU>((5(ub;^fSoam<!u0j!)E$xdH|&Bb0NM(2+Lk
zJ1P^E-41D8k%Df`Z?{%}T=6_y>MS2cO!lAafRbzK7b2Gic;4s<b$4v<(hsLk7U?Gj
zbqhVvklz}LK9<CI?5O?ke5N=PN~7CP6|D1=ws`9k&KR#6w*OW8nA%t|^}uXrgm!(c
zu-3a+52H`si^M8;Y%xd6eP3G)<OU#eFm&-4+S-*;GTP7G<EK|hzkyTNAHsqLd)^k(
z5}JeEESrSu-3awQ0vpjB{66Kv)tY*1ULH5|@f=ei>J2dhpev4|!RRZVb+6=FQGI|Z
zH#t?>!Gw9yo2T%JCD#u9GWPuPUmb|7rE9VT)ApzjE|1o1tek659iKCG(SL$T87LKM
zAT~Q~_rlNYwr5e3V2i8qO(Wk1Lq1C|Ov86NuY|tT%+Qdg5T@4_DR|upy{!!HR!?3f
zX<*(r5)~|ed`8V8VoB*iG=fvMgKGtJEI&$Or7mU2QuD=$H>usLR>&t5jnlI<)Ossd
zlCEzx^56s==LBJs=cn+JFfcI4O*RZ~$h^Duqx;dZvh2be^6sdk;UM97TGkt+CFb7m
z-I?|)_F`4?wB&R`$m7nLYA-BV!1^lqbgR*;AOI~n<7fZG%&-}eRcr&H!8`vk>jl)I
zv@}YPR^e&d&UH9nnO6Vy&AbbENY0dQryO(up4EH=5fKx3t~vRstL76kYVz7v9cD(t
zU}hT32(ct$+Zfl%!QGZ@5(IR5?M)9RX&&0>H|ED+6vwx%NnrdTEHlq8bEOI!h=+Zf
zcjXMlu2&x=qqHCNcmwP{1st6@!H6QyiNZ6NY0$&%|CGEBI#X`9G28lGwNhco30Z{+
zWrWmRcWquG(Cg{)49@e1Kz)uPAGe~|YTLH!_rk>&)Z=$$8Exh%aXIuQKIxEL$ry`C
z4WqQZuhA4YN<|;Hq!3AuDT2Mjz*!lbIeySet(ns+p`kbwU;#2}DOvn%zz&RXh_(jw
z!KmAdaMw4Koi*EF^0neACFmr(lNzWRI>6N(#6$cocDB;zpCip5=IdW2jUn)=Lo|Ge
z68(Z~uni}PhW4{C`+F;$=y;qnlL;NCZTs=F`76~yC%%*md5Qszk^Lm&WFKtOIm7OT
zIblb;XygKYX^4sVb3go{JyfmRpyk5w4ft!!169$YkIE7&Py>`I7(x@55VmIXvKR+V
zI5tR*AW$MjMfsLSAV%ncAjp-eR;${RtI{)%e0CILS8m8YJUS!Dz^VH5qqZ72Y+@v{
zgB1ZL2;{cSJz0K-@zXyr4<Xeur$I2qYwj9g4c9BZp2+hEig70aOgr=z%As<??|pYg
zJal)YW433akXPmGN?)kD9Wd&WAS&DVNcRk!3xp%!5i{wOnAbSz6F5tlh`dU~$iZLd
z$kHk-%@<Z)c1<<y=nj+yw(@A|r5aKKKoy)~SAX*FeoTwOC{)!&<FIrEqbl|~Q2H+Q
zTXdQekO$dk*4mU=s)=+r;oKq{es2nQJIxMrTLB{hpUK*QgU-H^ICmny+P)zat#_p}
zjKomx2}TI{LXLtLu-y_eHDe*&1)~U0^n2;G*lt1Iyg?20oC2i^h))7fa?zP6gp@?p
zu)Wf6+*FE^KURjk`|pN1-evKRI8p<b?JcCZ$h4Q27euJnSW0e!8x4Hq3BG+WZ%9{T
zpTi6tK5NCtMh%V7QuZ1V^bIpxPRS#|JoaoM4A7~kosQB(yy=}NL)I@~$2xl)JcVnL
zwx!~l+8F8t=1m(r!jO4e{NL|A$x$y&4;S@ubD+jE;Y5|1Vh&c|bulx7$BDfj=3r+S
zVtLMMXF{;rc2(xw#_T#6;qto<2gqESJ!**OxV}zksu0S|X_D%8%{}Roop|u)_9v)t
zWf3A)zXeS8<mFOxwQYms^7b~q&@}r;F2~KUW3uXUE9!e~oPbRmTRw}&kNZb}la=$3
z^y#$8Yn^n<_lcY$L3LF(X_k}@9%#<6#HZTWahd%|Sr%D#<V5A)A4*jE<i4{V3H5i%
zZv)dD4IcZRP#+b2Ix{otogX*Qa@CR4?@L`Hbf$=`+^oi{(k9hhi8R2s`(ophv*y@u
zh;&Y8LdD08z}yZJVcTfeCSq!CzPcSD@E1x=ZZHwITgp24<#k)Pw@252tU|CS8c?ZE
zE~!-aW6{ab&Z4oogLXme$wZshwfz?@-sK^n;T#r9@G#;C?6d3RdAn_jt;@QC@D7n)
z%E)I6ZC8iE*@o0YM@Od?5EQ9N1A}J6<b*~t0|S_uF6q6MABf|GxJ?mhwwDc3EA^wJ
ze2Eav*qWu+cd6ZqOx??9Ml)ltg+*&WcXD^4xd+^Q=)iEF;{Bp3oN1?UH%3+KX`H0<
zbI)Rf7IkfdtskiF+VsO?u*)C1@{91_v11ma#vJ%9?pN!VME?^@RXb{GAQREnLdUFX
zmNt_O#>23P1t~YvJO?KF8|Ir?#_mJn#5{6C@?L<7O_S>KjFnVqax7jMZGT}HAmHwt
zo+-zzh=e}^@*^k5X`=v&Iah(DGV(*ZKV?dp$J=A?(_M|Z-#|7I*Nu1R6V5yiV7c)L
zOoMq;{t($9IqBcn7w*2RUtE<e2hUqGZ9%VlL>26u{s!+L-kNZzzBN`N#KmsaS8ZxI
zr4#1wfcM=4Sti4s+IpNysnKN&_tS7(Yq@{at$wlk6AtFt>%Y$m-;#p@3A;X-{ytTB
zXLBqq#KouZJrkH*^S)+;bo;93BqiBDGNJ~W94XVGxvOztZUMA99CNa9Zrpg~_&O3L
zCehJd>p;6<x*kylmQHXg9u?&|IR-_g(SmlmwX%lFWN$Cyf(loGIItg%Ei<-K(mmDz
z;vE=@4H*YB<}(97z_CmrIx8N9VqQ!nzPEFwS<T2OvZ1%PZwN+LTMuU5!zSE!RHC_F
zfwD=g)z2^=WXuwn8RH6=4f^qmz)g*f7cHSgcsEA%fC31r6%NS<TN!%m*r>t&ewPgq
zynm9Ww5;~V$;Ng4zH;;$_yNfmyi1S*9!^+Wr-DUxvggB&bCzh@UjmuA_X4h0R!76K
zr6YI1Xt+r~?(-tDxThAxmjetpV;(Fok>{9_)+liWyCE<1O+27yAIi)=d-(4Y1P+f#
z<WEv1ZNJM}=MDtBTy*9yyS)HTUh$LfWEEsUWN8b_P>MuByO-^gXVt668}6$VfGJF7
z(+Q0`I*inXB>_VF)Z&UqntT$Jf<e|)GRiW~!GR!oLH8SAyTX2E|1%5rZ#{N*_tjEE
z)I##s&e^R1pQP5|MzF9s^Ni`Fuqdv!MQL2WJg;3oieSaRHq<(kF>UHMCTE{418Apj
zy66}?UkAWz9akmG)1z?RGW`oVSKP7x%TJ~MIKI(RJ26a0XDOsO-~;na4}J0tD$H4T
zNn8Ho_qdc+di+ztTxlY(q8OGfb_`6h2A|QYkB+(aue{dFGXj_Z@=q7eGYb{jAKH~I
z#^q>w;0w|02Uwb6>Vqfx_wKQ=`TdQV{l~YnrW?Y~mP+UUgwPw48T&EXsFyOZaF&Xf
zahfG2U4Z}Czy2nXyr+VnA;s+3_1B=Bmc_R?XgPWRJLgxiyhcq<;k<p_dZb6`|92GN
z|0SZx{1U!KMdf|TpI%b9e`(fFc>hC`>i<Mv{wIrx`5F^2_uuk8LAdFE;-{Fe|C*cq
z=lA_z{hSx*)&IZ$Q~%G;`~UuPay+Q~{H&)sKR>E-{0qSS*L4CgkR)77OEK~%cQi$b
zdD`g1QSp}l_6vGJeS)Ci=h3*ohP+1?-7l~2zb`j%VnUd+5c6O0!%O+^mkCa31Gjix
zv?K~1;yB8&FcI?C<p28Yzh6N3XCa#Ny}mAC_D3c91lzKokpKR-FFy)U)Yu3tSWg{#
zR_jE83)r~1W-Pl0yHtMUy-1aVT>w;48W`Ddmf$I-`T{OrP^S3g<?VD_p1#w}$$7Gr
zSt=uHfJ!a`p8x@wka#bn9MX!vH~j+-MOg2VOt$Dwrw<k@?CFC+T-U<E^I9R7!!DSM
zHdI&~8y9XthJx*)@9lQ%NB`vJy~e-fZZT1fQ&Jzh->`pr0HR%~j9^;0>A}FF%i4+^
z<|f4172H^jBM@<XQN4$c`8D2u+<|{wE^)M*IgR<A!0Qs2!Kjjt{^Ti>UT@x3612Lw
zTHh1E;AqE>V$QMMxgD4&5Fg@{{M*_0^gcG`BK={U84K_#BZq8i#g1(w&I-DzoLy&Q
zcCc6D-47O}@0bb(Y=)JWba@g2hVuQ`Jj_73_v>K5I%q-08jSqPCpi#!{$OBoRj?s9
zlSQ!Mu_+i}M2KERcu<IQ+7kvMFXk>zJ)Y#;9>Fm3$p&a(qha8aQ--bw1U-a&fke$g
zS60Zb5ra=|7KM>k5Ke#oH4PGK>?)T^xF-W;B+YH@QX?=7{71hd;01QcRDxef7Y#po
z<wR|^U@#m{T0F1SzY1?zF7v@4m20Z@^>Nrcp&EIN4ml^>%;wVx_mNl^l<Rgur{+>v
z%*&|WQj!>`55D2b^s1yZ7aJH`S?;xS_^Bd64}uZrU)BOc5y4V{d-ow@+uC(Um?@^S
z>7OlVl4{eu=qV<UZq)n!@+M<Uz0>*Iaj<gZk<7=>jb)s5jdz8IMgUVeJdqayjL0)l
zM$nF|y2q0-_bF}UFD&IVC#&Kp{>^d%*?oQ0+HdZC@yDfssHiItx)79=s;_9p<~&Q`
z>dg)8I33Ki2kSTB5(Dcv?Qo3*{#-9pFHwB3C^&pP^@rj;@xWypZoD%G3^nXqOdAoa
z_`|IkzAP0kV0<KU5N~;X6Leek-#JJ=O(*LLjI*5qSN43aK<5Pl7dU_}<amSovQ9me
zqzOEzfOoi%>-6lb#wYx`Yry{+^M}7L4xW(wGo?+=DWDW%@}<Sf(vYU7UkyFMCsV^X
z-_&SV*^Pd$U7QAqL8iszm%ayh7ZWKJi5+>Im`^!fhr<e2-~B8%`*^n0HI-YK$J?ui
z!7VppRLXj7A7Z1<2W`f{<JK8lv;inT`OYix-^Ig$+t^wk>e+S*a<$NN^%id&EiqO+
zDB*?+HbCPj<HuD9X3P-t=V{NdG^#N~MMd6MT6A`jvV@m3<J@w|uZt>!v?Si0FU(>G
zn6n!5VcvRoLSVlnEZ4iKvl9Eu)vnN-N4J)$pC*tx#Ee<3v{trjg)qnlI0gG?6!7+L
z>E)iGehl?hT%Cx=#SLgSw9CFEFwM*KpH}^Z@Sl42f%WAnd;iVLMH*ut0LKG3D&NL<
z7>&bF^T-;ODBqn*k_W_cZQk6MW)7fNoROfIzwhTof1D{w(FUeGGF*TOW%tr%t=J$E
z_j%V<Dq^?luQTSc25Pd)XCQZKPI(`v4Z%!aJyd;qpj;Z!!l!Kqh{$j|dl{|iNyAR}
z$0jfOZ@Q6S?$^KW8~9q3dy|?8DMX@Jzgvl?^FDrO@Kuo}@Oew!yZlWs-yX=pZIADN
zwG~)FO!7Xz2j(CaLRH`G`>wctgN=V+lN4kL%$P<ymit)j=;c<II7VIKnRPvj%sJI}
zo$OOx_Iybap#G2h&fQgC_nm)L#jzdFsz*qpEUAU8*|;9R07irr26DpjPPIdh<fXh7
z8^YOxfY1aXCcvUW0iQY`U`$Ga*L8Jvua8YaRqmTc8=70~<IWI>-ns9vrdg(Ed)hT&
z*La$8Z#ZepMz?o)5yHeM_;HqW(BBmJk{LU6K|$z7V%RUqqcx^w?=OvlO22{ejp;K@
ze-ETy6nS}8+SwcTKgq@SF;1NpGLnKZvKPf=rOY)T78DSgz+`t>v<DEHr-fb3LIRGD
zCH@kcl<`7LvSaV$*5stpN=Fk4SAY-ju%A^-+vy~FW|sm4gYGzKi9U_cTS%Z;t_KeB
zz-Tu$<v91LZLQ1CSrzOxddrr4;Mt1_25s6w>A+>k<GO2J4+4|+_zK_s_rQNoHu#Z?
zaG~~dzS_)Sj;FM=)G16>lciqGz|l$MiudZWJrPl)g6jG6*d~R%EdS09*wxr{5x%8_
z&P3rjJ0%f5XD4U`=nSWSbB>LVfezO^c&N)E9~IaC3XDz}zw?fP3TKyTRmI8KXE6G|
zk+m&x2nDZAmUollr`$*7S36Sl?Ptrw&z}|~1usi35Uz!Z&jj>s{{zj`z=T)%Opj85
z@C6mu_~mB~D@(S(i4$ayjk-N*S}?@N?B$zxnh?M~i*;&Au50B;sM-Kzr*YEr;e+_i
z@_yjoug`+Yx1z4GAm0V9!)o=1`4iMUb|sDzZL&=Fz~;*BrVo=5i=8==A9YTkPT4$v
zsW00NyySslV_D)x#k)z>vH4Qd5b+|@pi#G}BEE^IM0j2jx8s!(yxZ1ZWbhr#@52Xh
zA5IMh`pFojkAUc@Y1L6@JQpO2Q{hlocWN#H*v-$%7**hFujQH8``GmWBVA$%e4<YQ
zfTQCoK}JC|@!RQIp!P3h&o*+*O~KQz5cF?MlXeF^T#u0OlG38YMd8m^hQ))><?`cs
z>dAgB?<KD#_JPOng6geOBQUfpDjwTwanwgNg+e))oP%YOQo!cz!P-pSxUrS5%m^cE
zXjZhJNZEKPy!5xHnB3HFur`R}^f_lBjy=g%Yi#B2m3YZ}s^)8M+%E*qeqh5U5fdX<
zJ{`+6PNl7ax$md_gpLPl`K5xVh{jUDcAsL+Hr13(F(N>Bs|j@^?jO|KRc1bwO!|11
zb)IF@oVvu7$W1|UtS+05>pbH0Rao#Ac!H-*X!&3Uxi{><Sk_-M)BV5;xElSF%%q%<
zeOMvxMu;>q3*vqC<}a8D%;06>E&nhkak6T$eP=pf_BeO^mG5@D$}9morlA1>QF<~>
zN8@00>|V6U*OEBOz)d=S8~DUENz?BX2MO`UN94J$8gBQ!6zm#Zz&N8ic3<sIiDAxO
z_Z<UHH3N<(iV6YGqz3lRh4l88fP2dhG30#9nR|hGs~iP<5d}_UN?Zp+=W@WZ!tC&h
zg%!@uUGOr}7g!f<CY4e-o@4go)6dA&7}x=@`Vsfv=v}xIHkK1J4%|F<pwCJ#QpIGo
z@+)RuMfPqx@A95Sl*)%o<aT*7cds9IP1u}iDpjxJ1J5#tVGOHDI5mx4;E!GNW4W`A
zS4CmL{^sW?ScUWW(Mxtaw-v-1J8jkv14+l6iZoAem(*5u)}RFS&++CHSxk5w1Zh0?
zqtmp#^!|wW2!yiep?%TX0m0h2{WnRh4vyYC^fe$%9!-?uJq+-uRdaBwR5j!a@N++4
zP%Bma9CD?G>O&wQaSY{=i8yHe+fA+97fbt*PPVoN9CfS`A^a=)`DF8AL?#v+H*2hc
zAyf=6g@x^Q$C2(QF?BK8vq4;x;yd?kaEKINRp78l{rwQ=>hPO`t$?Uo9E!9MPh6yG
z>ILyMWZAk}q6Wa!aCne4)VS%Uyg+NT-~w|9G;%z9Q~d|<{QR(&<8J%zFR}@Yq(S?!
zbIc*igm$!Js!kh>`+$I|MfI3(669+v%fH^UFt8~m01u^Xm-;HOY_lt#85ymwW$UVO
zbt(a39IW1Ao<JFRC7225{iTkSH_?py;IN@0K*nZklGNK2xCh*8?F=TpqQx$7yj|w@
zos_In|Kv@QcV@x`Ocu#0_*{fyv*$T&uEW<N4Q3qtPW0&cMR$O2wXhw5^yO|A_yHcT
zy{f=!xUiL+Qw{LVJ988y>5FSS?#M9=y$NjQ0KNHh4rJ8vKeIa;*IO;ujU;{1fLXw5
z1y?T#PLOwnAvkMBhL?vk4}p1ba|<~|gOx>LEMo_b<{F!(2i4lS?r&98BIP2mjn-tB
z;WUUuF?({Jl`Z`F0(_PqzQ=6`#?v=aKkgG4tm$hOH6IkNmY<B7B>HV(#%KuMJj*#D
z45?j&xagZ~)4X8^c8A*KmetWNCfoldm9rC{ZF%{3h`~I8gb;8K)vfznvpDPtyx<ns
z7xdy~F!ZMDej1=R-48y1rFx!#1Zk2}6$T;=)edXd?;L_`MpAo~I!I+_ZzrHPF`1l*
z)&Dh<bN7GD<b0g^M7qIO(Wpb!0UYn5q@Jb<-En;-Is~mCNa-kC%>>h5d_89p$8ujG
zK=gT@2~>Gds)P|x3ij>>En9$yQKLtiQDnvSL+F{m@Fp;td+T5+;rP3VDX@zQ18-J=
zS^c~;<v6LuTJ(*INXZx$5WsD9bj1r(s_}$^@$de4I+4=(xfTi_Tk@{&NhWu}hRtrc
zvy}}QI-T$5@DWqxXoAv5Q)Yd0^vp9DVeVtw$iOvz(+Ih_Gi(s^dNR9d^WnMW#-{$1
z4!z6VICB;m$L;3fy<EXO@ul}8?h5(G?zYywkN?eZmc{Qle-E*4$Z9nS(_T$kbJSk7
zT<<Gad{!m=p|o+ywhGLl6?2!ar!C0+6UF_n5uLl6zG37BWgfsk*VU!qPUrxnvIX6;
z{%YyQ$AyF+am=b<b>At_(y4VKZ_opU9n}Y9ID7)WvIk8495-aZ4d<YAJWpY8!s0dT
zqc8lZWEFO>({gZL#RO~kV?ggnpXOR-=iL!i;jCo}4j;ru-A0kBDnyf2CBn4I=6ZOd
zg~iF>#eYa+GYI_hLxkj{WHf8|#OGs4SQn)G*KfL@FW!ybIvTVGFlR>v>A!P2VPy7h
zydH$iRQA^9<6TCSj*psl5LIgY6W?^pX9U#WExu0LBCfS9bA^n?M!nZ8UXM!N7l?9J
zl5WhsIT;D&CBMsK`45PIb5dVV#Ye`C6|2K?U@j+AtAo6qNz%CEU!V1*v3kJH?nW;S
zgn(v(UQQ$B#>C;ukJ*8N)TP)`y27wUA9EJX&(WS)U$zM&Av*D{i;^17;^x0(d2146
z6`XEtwjoTIf(c$PbRh{(MD^Wxhg-lxGSv3f5JW`%o98Tj!IdEEbm`mtM{n0o#?9md
zUIqFN^}yE(IT=W_7!*V=lo~nh%f<bm>{FIX;9F#(emMg|Jyd_&Jj8`?e`^bNdRR2=
zo_XANKm22A3rwm1i`Gep;jky>!Tg9ot^!{}wt~}s_&i9vbBlCY1ZH;G_lsiHmq9-Q
z)xww7a-ILZwo?G-Ma#pngC)w!XAT8Iy~zOTJa0nW&`L17ZfMk4)|j~Qro#zNbj;0s
zIH?_2iXFy3MvsDL9b+PY;lM(X4(2F9xqi6N6lYh!x4!32Uy^q?3=H*%=FoHTy01GL
z*X&l_?bT{3Nhpsv<ogR;ysW&0IvG`6&@ixY<&gWmd185CqVL};i607eEEjLoVEByi
zvbzEdZC#2lX3FgKe;(ZFL_EDpTN?#A0SzN#TRY^5M+F`%c4=M{a6%0&vTV7)DKj1J
zKpbcqZvAR4p+@9CcurUFnAbvLE%TZLF_EtLwn)yBLWyewKbFnO?Q*kmf@W3A)vq&@
zEWhStQ}zq+8~GUziL?fxwSeWEj~Je9eLYI#-*i8u$gGEDK0c}TVcwVK!x+BmlO}1W
z+|y`v5_Jb%rW-3frV3$@%2^ffQ&(?1X)V9@o0Po3uoxcsDZhcfJC3^zL8knDtVkMW
z3t??%^*DP|SN`K{8Cwg^l1Pacz_O||m{x4}`E;vV82Ny#(*l3UZu<)?{GcHNR3sp$
z^KC!yi!%%kmn8=FGa$Ex<lv<Y{lU|K7tL975x9R<ZHOK^cY0LPAS=hdI~T;(fr-4)
zg}4G@gmq@@!US+TiG(V07p*=k-ieX{mecNA7#H-1?0&0Kp7Ans5rcdLW_xVTiW7?X
z)XD<g{@NufHO`lQd;(B4F4SgHo}FWDbZzopVJF7g7V<#j{hMA~RE=v!Vv+1bZs+U~
z&M28i^-(a+n+4^4_T~yP)-3P0MHgFRe6ht{G@6}qlx5^JAnAY-=G!`lgM}rU3bM4+
zz5EMnkXEm8KcBNnc{?}NoGdhHv-%?55AF`Pi<b#VlDZ}m59jWL31vvQpC-A|I_`q7
zzt=I{pOb*;Rcx2tk?UtRd5DW1V%WIWW_X3S9y~2xZ{ZfV@DfMrHgD;n?dVM&FvJA^
z9H#eDM4InEEFla8u|0RWrKP)X3RSjJPn{qw{S*!emO|ABW`PebxNKVidu3B+bqsq~
z8%jVJN)s24TNm>p+e!)`0)Q`PQ9KEYHlKVzhrSPy?|=bU^YL|2vdPm$kRm7GF<Ru3
z7!BX@Pr=6xC_I=BIP^za1^+SU75UPE2v8u3R8~5^j)1U*XvqDAI*+S>M)5X%{wB}S
z+hE8T!=7JiWn_~<J10~*s!X@2_oy}0d{HRnxdCyN9DPzRq56%-*>}biIuXG472@^f
zkLbgVe<PjsNb?w8^r1YY-Z}4(?oK#ds<=1J6TeaWR}`qOQ|<m-5}gT0=t%JvsCv~P
zeHJ~m9n`V`Hq^a#Z|>XI-Fg0lN+$9ki`@NL*B?*<f1mX2)%I^=W+>j@x^=1ghSVVp
zx}BgT$r}#)OFCQeSWk<&t!M1%`8$!T%#OURTpC4%6}_D=ORJ?X(v#8$SukuTZv-+f
zppl`ROS<^iH0H)h_*cEk4k97587!z~Tv)qNpwkP&?ff2%F!cP)>c10j#n(@JzUS|z
z9jwuXw{~j^Hm*LIo}w3AvLAClo9jDjdm4qa<3fbtJ172ZPoFD=^u)WJBUWPxa4z{y
zfJMl`=cvIa*<4Q~y+!-^3L$3<$Z9y*z*Izhf|9@(88)HDm6)*KORrxIk|Lf{tCySU
z_~}3@fxIPWvSOZ1qR=QQ$a^IY%Jlr&+wR-%H5YiFxa{986?fRj^PACY&g~{@{q%3N
z6JwAsQXt<8f2RchOs5ygbaM4hbmUW0GC5wb2Ni*f1cD<Uo|w5vaBDKXt2U-`VR;$3
z$u^Sx$t~frHHa<vO~yzH?@Z`?j@;Xt^|}27AESfGL&kxt63r#od1k6y;Qyxzlk55O
z_kZSkPJC1j0z@bMm2p1|)XfA~5bWpb^A~z8ngj2Z5Bgs2L3c)m{UZ@Q8+SWXK!Ccj
z63u5La&qYE(F@#`UMcn;y&Cv-C4!ERTQUP{bW&{g+m`0D)H@0m4?$!(^2HFt)=m4)
zKlkYe>FF*Xf-rw5(vZ^Tb*XXb>~Ek8#R9vQ!86D`-rCVk60wdfS+OXlodjv^qB@fH
z6L7vLwyd*whS&7{5Pr946@<(GgY4x0#>d(dt-P)uvIKkR=Pk|6Q$>Xf3|5_QKb@xv
zsXnVBab6#CnJ-e5guNn)j1+gJN?444f3jC1vm64bBW=e%v)A!>>hDTH7Bf&cLFf`E
zujUU&N{sN<(Eh*We-?q_fcc=z_i?d{)poo63MX>lE^Nr1V`&7;DVyoEwkb;}##oO$
z<Xvc2uKjh4Nf;j+(-@t#80D`Jd!GWuBJnw}(st@(sF~FH-?+~DrCf9SdOnvpkm?wf
zJO@Ng{41kh1E7j~MCASDS>JM?L09kHJ2+&>;O;_oR4iJ_WH~kp0!wivtErV`o&PNc
zbY6r=0L4WXaDFQIsf%h)k>jYZhnuHSq2M)(PMX?}fl&<CSr8HAJu>LAQ%YGerX=|B
zhgzgf+x8%l^1<iT*A*|36E!FGyI;j?ts0D<r1_`wK*%V9WJXMON6G%)TG073rM}lY
zMsngh^UF%1T4gy0zAfJhsr)^8#XsR$wtQahA(FOx#sgzZPDnhzf4e*$S*9#cHDRpZ
zYh{J-XGDrNB04L}rgBbksv{LBNFNgIG<2{_vOl3CeNj%Fc}|`)>F+S~@b!nXef+7C
za<dpW2#pX31|HW`4&#3fsmwFtF&DwaGVMo+1ir-q&TaVIC^%A^LG6<zM`8>V^c@Tj
z;Jdzj^Bm6;D}$d>F@Rus-F?_&6eeV^(A>q0zw%60ay&=83<2Q56)tn)OU@JapPVOH
z06;vJtD^hl=O&>QkS&*drRNDMolCWLu!~BgP|aODaNtjwaE-xSbz@uyLN$L&BW0~q
zxT@vJ=chi<oO09DYO$-w>eqI&PdIC+7=ylb%YuxH&9Zdn;k<+8+^z)O(M~{^<G0eH
zRDJX@{>EUE#J?@cF0m=QAa9%b!D`=2+eiMa>2wNm*h5|5t)!>s(?2))aw^JvF=}u9
z67g+gLW*%YlIkrVkP|e%u?e-_83I)pM7?~`Dm8^Uhx!u<#!z>27K#R{6AYp1GGXAH
zaa*dQFBOI!UU%_a1q!$FYjNSqkd3X|XMw2YZA#}S@BRsVF3^_vp(W`+fXa5p`?&)o
z2v*PR|2|Urbuh;|#!<fWQ?xk^EKci>cT=t0#wKqlNY?{tC|_6@fXVU1z!Ek(z{Vfb
zp7V)-uE1Upv!r+6e}b~(&($-4>h67O8*~MUJrh2_QTxi0#RzT3EE|zmaqt@?m`~&w
z8EW%{JA6))=n42tV&dPT)1_l~I&1PT))ScXVpz}V0kTv<q;gjW%}xAIDSoU!KoWp?
zqIb|(5$euMZjOh^4Ioz{^NzZPwdy}nPgoWV+T1vjw(uZOW+Yli>E7%ukO~L?Kg|7g
zRMhR-#*M3}7$|~-NT`5-Fmy><fQW#Iv@}D9bc2dWE9D@qbjKiFB7)!$(hMyf14uW#
z=jh(|zW3hG^IOmQt@n?2E&jOI@^&1)ab4$ip2u-~l<xC(>W~9GsA<#bp(mV9YWT@R
zqhv(Q*fFWqNy|#w>RL~px-LJ~-kE(Ey$>&D{wNl5<iH&dJ8E7f+i8*gxV<K#hk;%x
z0fiBuwJX_b?y|t!bBilC5Lc}4WKy~OnwS5wX5jrgN@2=s*uwJp=V7T1ub4igkx%@!
zuzorp#lKz(+Ni39*rjX|TbfVNJ^o(%!ev^&t)AGDxhh+ZJkcJTMU?CUAf1$sm?WI8
zuF}5QIupx+vRtA9h9af-rP4>kPL+*i(~sMx3bop$X+elpgUylWrJvIMSk2X0PjI)5
z^!XzN@<HkkQ)0F)W%K%iML{=n!BF1%A`}X7W{!H9gjasZfhupbw|`MdEYd5wkKPKw
zS#}zR17b%J1Ji696`M?81H-cvf)i6ddE{!<U`<YouMSsQ`d-3OObmnVF-(&jLg?{q
zg~T`T9S#+96y+c1aQqW0%JhGMit1y3Lq!ddMK6&xf(s0*c@Jh91m+rK(GxYz_Kz-?
z1B+1BC>b1tQO1&IP_!}myzj-=w=djrJQ4@%;NmQGWtdJWx8p9phKs@jU%?v}>&<!}
zB^OL_gco_*t1s$0rzY#p9eJzw#)=K-c}vIDCA%#{EIgsGG8(!N2V@I9zxZR5EjRZ7
zlE*Rg$}j(Vrxblfn!(tq)@;rV$Cj6q+=ok?X5^<M92gu4xB}%U4(&$+-l|HJ7`=Xn
zgek?9=B2ozG-Zp&K1h@th2p{Bex-=E&Oox7>LYt(k{d8Rpyh&F_6~*j2;o-LPWl15
zf7hieU!vQFY<+fcAe>h}xjp%f=<bKVjJ7a*ra}ymqV_Ek+sbfY?S%CwG9vc!FMT<<
za{d)(2rw|AL!YXEHpQ;511+8#KDTrLxUKAw%A9tqQ~qCmH0tXRjs_PjXEq|2e5hIs
z!`1^6=NeLWkQ<IQz%Tx9lBoRPWOiFyd|P}nLNm0lH|Re(qQN}JK(Uk)ef^6-I;0^M
zGvz6XL*wsXmd*rZ+42c5aJ$|8j-E|BQS`d)zTM#+`N~eS6goNL`l}zerK^R#|GLh+
zPGSlf%WZ-4a*KzQnE2^JJjETN`Bu{W#b5G5Z~Pn_3`?b$PGH0}$N2E(PB#DqDn^r_
zbQ#-ptK@dhjALL($e*MAVq#^hAOvoPtFi>qZ7h>|F-B|!h)(e>+8Q4MA_+0^x~PS1
zVYOl(L=0|bQBJmP3xdbjgLmMFzBqSof-2&-nG*z&u%_G6*nmN4zwVem07Y4OJYD@Z
z_N9w1b~he<f{poNp^A&WF7AoCc(wJ3{PX+*9Pp4Y6j&7K$uULiveC1y^a=14GvfNE
z!#~tp;FD9A)Ne@>L!?Rhd-Dk1Ye)V;z$HguHnjiY;%tcSKMBOBbHwW}31L6DhQ!8S
zhVH6^y=Hj+l46zI;5ID&dVY;P9kc&h`0+(^2HnF&ou@I&z@`8rRU26!;cA*VX3=TY
z`6o;(HS<(^A}ha7f7W=&wc->wH(}8~fr|fGBGC7jnN!AN_t^{}7Ss5CUo}UZP#!a3
zTEvY?9TOCL;>732?#G+Z^^D9fK7yYwLD~zr0Iq!d^Yya9q~?`^3rVeXHP$iXPK(9A
za+O>9U1L3Xv|Km6XMq`_!2S%{zk!jfXRU`bvpsdq%}DI7vZ!sW-WYC&S-&1on|`x6
zH>h?f6Qw9d-lU05Q@-0mO8ML?DR!EnP>v(&<qY_48-xf5*eKcS;=iVk)vt?Ik65AF
zsfo1?Lmsx>#f1W&z+Sj*4=2kYV8+8J3jA9P_n37;G?i|%e(?yj6^U+Oj7)pPOsRTu
zN8GvAS>(t7Pc3VuJm~hw+}!ly*;HLDMJwq?x+k~Mz_{+c;l;A>Dr!IBri0WTg+VC~
z21fmc4-;}518^O1XYjBp`7wpFWo+aMkL99M#l4K3c~b+dgMtMwzk&rYC%v3d`**^A
zcqB6KLI-}~Xg;{QJ&+gAETZlF12|4F&-B!@71@0xKaUe=<VH_FCiWPM+#L#yH!$3v
zl^5Fm4gi805nP{3!EPhJu}WDMOrMZR6$J);%os<vJkJ|O9wZlovY}<Ot9AKWHWw#*
zdJ1jF1{|mro;qn)4yiuob*{mBETY)JIapy6LOX*=R`K!T0cos9PrS<80ay2IVFNp7
z{-He7E=h!($XoF_XSeXU^Y<KJODJ^Bp#C{&5~IjKCVuJt4!Ei8yCLBCRKg}RC&s9Z
z-;p_`(Z=j(Wh{W=WNe6GXawf!h&t(dgDOZU3Sca(AWjAXCe=?dU;q(O0?;Wc1nzGC
zhErD*Ga@l#*=^@!PGUO!><7=&=w|q2@bLW0&AH+ES^TMOmOhY>d3GT7JK-rJCTHKo
zQvA4<*S=hYPu}x%_2QdcpVkHg5O?h#?7(6acl{1GelfyDyv1HJ|EHM~aPJd^F_p;O
zH@}+kcdg}JH}Th4E!&Ov@I-p6pFz)go|B`D_I}D4(YpC^{<>5o@!USl5m@A@@T2(G
z%x5vfF16+h-+Hu1BqYn9YAb$*hC_yWan(Fl9C#rV5_>?J(I6oG-s6d=yn@IH<U=jc
zT+(B)8)|Ch==F<Q0d!xsZDg!bGFGJazFeWaH%K0Ml09+dN`me&4?Rd2G1c48uHtQ-
z)HLD^b9)5Z3XjtLo2$e6Bz9m$B%pf*9*LSVWDv++Ix}S$ApbptOSmzQkc#{~YJn58
zaj&i5cs5ff!p}(dC#{5wusuSv`S=|t%$!eak7XYX7lvY$i0g~Uwctv}eWQPQIcEcw
zsyfIl2KCAR<>Va68<^qTHBh(-TKqBDBlNQT3BK2C!LojYcJEl4cojFOw+VfU5SsT2
zmgIKtR~^ZIuTiUmviynA`}w=JwbZxmcZc^rK$gw`8{fuT$;>V3YGrQR{wUv~rN#11
zDQ!iN{>H2ZDk64n1{al{00XybXy09~s=7xT>B=W||IzQU?X!t|T)1E?{bdo23F=@Z
z%JsxFUD!<KR&N|-h1l_@4=+5#_b7)Pu2Q`idX{P)P=M<Y=8WHUK+jQh4;!#@RE#W;
z&t*;4Q>>cQpfw~|U3Ojae5t4epAcNF>f={e+eq5@_}m+fmAM^H(MyD)B|(Th59+SX
zx8P<G`4Wy);6~+0s#d|ermMz2RD?Fn6R$zL47`E)k*C}N<ZdiH0c`18Jhn9GH?}l@
z+yVw(UJQj0%)tKjvjr@2FNXFc71w?m>$D2ut(z^Jtla%PMx81)n5(ygVE36kqafto
zC7tBLd<=9j;Ta@f_mBUdxTP$LCoqooE)K!}=Gj#Kg^2mM?MCcg8L9!S(m$3>%$433
zl{y#a)cNcYyWgB+t81acVMEacYZn#I4SPR3*m6-b4usbwLjINK<;f}X;}-?~T>s-}
zT#q*A6Jg63Yokr*&2Ev$ydn!$({u=rxh9(AaJAlj@E_pP%b3<*QYmxqbv7nG`ys<&
zP^Ig>xBh;*>F$PBPu^DV@T^V{J(|C8trG-Cz@cTea{oB^_E8X?Tbd0;?pce<7f6WX
z8oCo5dW6(Ntsc$bHJm_(7#Qxa<`(b-Ty9Iw8+mdnGVKszT#Lu@kmU-rT?2waB@#%T
zAZj-(iU*j+0HsE4x4`<D38)<ub|X+DDt}ow(S_EJ7*Bx_<AreguVL?gI63i4=V>!@
z`U`OJ@fh?>>qpQlOA`!c50PPha0h%Z@0iEhVl8X*<qPdN+`eBaF;IoA(Tx-|5;bEp
zi^{m*?{K<$qSO|09}bv(<mc`bC=h7l4Y%O<qB@TnK-C0H&ZT{vne7o#-rUbI1?t#|
ztjzFBKZJ5w;$I>=%PiuNh0T|Oe&_#qJ%X5OZ2p={jv*z<_Kj%$na4Tx5t9<R1UJOE
z3L(mYAG7hW>x57J*yj+{GgTqsS)SIn1_uBGbB?+A*o!u6Ep`@CV=bfTS8yCWa_0AO
zFv1XPbwg`~|GEZ}yS}`=`b>{wb#uM$;Kr)3UN6WJ_K!J2=f2g?x*cInV~W^y4pqkk
zu=Y2V1)zhSsP_m_HY8Fx^s}o?Zw2`{3*4JsLd}2No9Kn7kuHJKd)>A%Tg;LwsA!`S
zHN0SITe%VD4Hglt*!geha3i&i*1(}D>Yvc4{d$~dEP<7JNJZ{43G`)8x1=sHEz0%a
zC?O$&js~F_iR2B-Qac`Wg1lqj?1<%;mzw0}j2%C}_L=pEwIAm<zi2(1@S9*NCpf&~
zhCTCAM)Gm~bBXFr<DtsWdR7y7{Nv3&mSeeDz1ORc$e+7jXn}Is1GQef1W04}qv$I?
z7S#WCacZWpGpxRBZ&2Pe|H_`$vL!pCR;>9wXs^EVM6TyPl?1!k-Km>FNM5vy_->eD
zt(q+Ws=7WKF|OjxI!1x(uplr<eiftsjPoH1e}gTR9Bd-&G`=L}#*&vErX#`ygP&4#
z(xnz+yozxAMNtii4Ymm3&D0d1B=?aKi*C)mx-yYUR}Ltp8kb4_JRf0+-N(cJK7}UE
zYQ^6GLEG`f;$C>h;%pjkw_AQmap!#s?c_eIsZx8>knl3M@*AMonGzs;cI5Xt(h?PC
zTcnz7eYj<*<xz3K$)fp<3v&@YuV11AveK>zjMJ8INO!Om>TB7j)(cw!QGAVTZ-no(
zpf{h+xtQM0DbAiO)8z0{cl=3^H+^&@dG2s<4oCfw6I~3}TJ$Ng`d`~`$Idal5{O+6
zxZR5A&THK_+5`rnfloUUyWPF7!JWRY&m-(j(^R9r?9O=TP@?`}FLFrx`N5cF&Fc96
z$U@5)mvfi6;Xws#VLIAj8=^GvuGj8`OWlKn&bx)o7!sZ1fQw~!fj*Tjk%kMB-_6Ix
z>%nuJ!IZHMIwe6q0b}$Y-!2dtTudgbc`j)YOWC<S?&jsGHoZ=ilV<%3#+c<oQrO&7
z7$H+`y%&>~r?~Aji+6Lvx|@(LW%a2fKeECU@8;x~nBaNE$Q$_Y5Yw%L-w@O6riYM*
z>-@CUm^yEyGT7#V@yKYd$BpdhGM5ujg>RbAPee{)F}r^trYD5|--DPk1$HTTza>IG
zu9-(mHlXoi9Eo(W0Zl*yB)bnb<n*e;Yp*|dihdSIl0iKGh@r17N<BY>xNL-4pmOLs
zU!L*FL!5pe8W$Vn(cvC+ikoVDDsK}+7jV?aPd&#gXel9cs6yJSXpn7d6C?pqDI64u
zG0<@3TQ!!w9J@#Y(fkV=b!sA-gpX4b&sN##gj}?9E#Iv?Z)``zYbIkgM{^!(XBmmc
z5^BPIeXQm1jr^if`$#8Q75*~ywD)>gTU(+8DuJ((3`O5g2JLnHDur<nyNc;oG&PN=
zqsZ)oM_6eBU2K>A(KJF5kK(UU?}w@cOL~7BIIjV!A;SI=N-y?l6q=a?!}M)wkX>4_
z{hZLy%Z`?37K8H3J^dF4x-ZTQ-H@%uU26<XOvE#0OBVHS7Sn61okIZBaK(dP`Bi42
zRh<#{K(+#kef-+FAi4)41)zi`H)tPAu?@a7Mr6k@ukV`4PwobEZeHUyy-@%DpO-}O
z9NTl(lW3%TOqgvI%2Kj9<AY&gz<?$wl#(DqFJOZV4k+)Tf7huxaWbujhs#U|gGvZ>
z9;*dhVUkU~a40{I0rrUoYVp?Dy^#X9k=m{#&<Ys{SbdB}pPOP=qiIeytftIHVr?%}
z8CNHEPVYKUXUy7r3(w-tmZEX&7l>)zY8MF@8Q^+H?ll>|py^)<M<$3Ru(zq&$APLZ
z@O5na7pHQY<=QsVi#+%z!_bV4c5Y{T5Tptw&NHbwAq+Du#9AAP&pFmg3@PGRP&rus
znbyY2&+#{R46!`#QdjFi+vlPBNG)jB>$kr2qng0B<M@Y%tT31>r&?wYJTC+oLyQDx
zZlqx8_Os8-m`*w3j-QwHME0P{YRIT~%AkScWyo2wGCknQaL{;K_+DvXe5q5UYw|Sg
zWcEKN<Xp3qSm9F(#b|1kkg&^_kEM^-sa0^?6sSY1Ym+Fj?+gW$uuEqoVO2eg28(}v
zV3>RMZQeYFEGiC(ii_>7D|RvW7HbACym`oN?Cr~V5LwKL2fh)UfrIYo<4CX)!V_&+
z5Mp+SIov)p+?t6DeDEMx#izpuQ-0dc<5(b6HZj=4fhEriB?ghM02>wl57=lGfwmGR
z@{6v_E0E{R(FL-nZ2-)C(P+AmlZtj9lq{m@#TAiAHI-dZ)^FZ);9y6A1WlUax%GtL
z;V-(sOq{%zw?QE$G<t$@f8hj1eWTEL{Woy5`JQ*C$LOfusxO|4J~X9Vi2EabG1^dw
z@h5m}g#E*_hMrHZb|igop_MU}m;kSky=uM1BZ=pq;NGdB_V@NXV@gCXM#6Kf6IY{C
z(k_b8t`?p;NYWVG{w-(>Y(h7sJ%~ME7gn9&t6K?rtfeZr;&Am)=UAJ!VmlYhxP?z}
zm;+QIY4!Yt<GCOS<HW!_>?za_j!wd=-;U1hA@)k=5!#JVp4?xx&tJv|5|f7IuBEGQ
z#LLDaK@OnF#emg;In?)=DLZJHWFum(O<nkj`$aP;X@u4I5-i#A*g<NvF03equB(TQ
zp2DN!didwW5BX~6T1NKj+=4eyAaLc!I7(>ta(6Sfa(!2%K9E8g5U*3aOc{64;wpg4
zUbv;6balCvjyX_)PoraX-Z~LqJF~jO`)TyO#=d^D{Hh2ULen79{$7IEeI3q97ugo{
z&_Dc~|2Nv`1HWt|Y_!vY>@wDaFBxFG&>P&tkH&K1)NLt9v^twVsFi%4_>m%(&rHa-
zjmaTtMqCy`Xs#x?4wRpZaoTkaeKUD<wM-uOR?y&z#~pU-ZM#1(IA&T5Q)G9P{x^vz
zP0c5~x?z(yP?izl4i+N4*Lih9jaa#|te)9}WG=`Y5U%@3(64vs6+UG{_a-bFPHr}#
z6^2LK7_9`iJk2XpvFy^ug%qv1GfAGRg}8y@+q@qn@P{}%xz@5y%7a2;gvgWs1uM!N
z0X$cI{i9l_h1!R!l#*072~>sRY1A4FgBPEJCcjmyF;vHS^Ofw9cu3;S*wSAgj;TS{
zlW`=<{BQnEpo(T|)u?;s4JwVsxrKpfNBp^|Gj&;6O94n@l6cyH(&uU#r4WCI<9~;W
zo=D-)TCO6o>3Jwe%Z0JBOaJiD6l*E;(;H>@{B?MbHypeHqRYM)E`NNvoib|*mOCm3
zC0&8evrKKALqr5;P;!e7>;JTGhPu>#QMz?@RpQw%E{r)M-X1HI$%cVVeRJFKr6a|R
zN`QDX=g#ulw#sPNUrf=#h78}Jt9iMgm(VKFD^wgZ70_+(JgRefPy%7wIMo1nXmD@x
zkGMUe=EC%_E2PV5T~$GSH(1y{_50OgT=B}W<|$lEXth2#X!llibKvDSKaB<vuj5AW
zdt(>%$xP}6SoZp^;k4>(NrV0Y2K_9&kes8c%*cIYkQ22J%|_RnKIubN##sT4;UCPH
z9>=0Z!|4&v6oSx^p^m56EruHuf*=x#TO=u{hC`GtdS27b*LcyayM<*13^^F8mdA?o
zx%(^}_1k*cL!fzYzJKtR-!mWYn|MWtEL=7^jY++I47ES_m%lf>7gXY)-+*!jlqPNE
z@7-XK(UcSL#>#l+P2bc^DudDVQ}G0k8@%)SiZZ5m4FZdNO_pXjSUJQzICh~oUb`M9
z<rWyLiG8aHctS9km|8y>1xWiD>tS@!Cn;No%?jTPnY>7pB6v9S$VZaB<gdnmn1h+9
zg&ezsKt<F|aVVL*`*%P{Y55AYVpf(*ey_so+p#cMku-R&@vgx#BxTNKV~B-4t@f5k
zb7SSR>op-K{pk<*nyYlnK*=y!k~I^NY?Wg7LY_^vM#SDX>8Jv;c$`UEAzF+%ZjwB$
zp;F^fvK&9(BX2CevVKqaPB}I75grHHjmLr7Mt?Fr`M&S^aWHY7%K(%!-xJ&1r|j%C
z!B-^l@>?Rp@zmCz^ZW#}^|^rk1Y?dQKSA-E(+4NIdqf_q2s#&kb*XHWNhyaN@Fxv;
zI{6%lR0YchT!{w05@9wjSY~1}uFN?k|5C3ie+rJy;e+;<ZUh=<6RLk!n%m8DEX|Hf
zXP76aVzoxzlm;{b$O8@W16c98{7S~(W7XeZ0=|dzOC6nEQ9e&8_p_IepTu~Y>Df@Z
zo_}qk+S}!y_28Hx{#pF%hw}}nKkK{6RO#k##eCMqD&(*i1QqUI@8_wPGW)X_;q_kd
zvsG`S+4f84)vNvq@9MCp;N~lS_rLKs|MB_1$n0=stu>m-g(2hnMuK?6rsw6v#Q8A`
zui$5YkePpd__9}aLDN-{opb_r0+{%PAPHqY-7fgYAOHCV`8cN%KBvv#4@lj7Tu7k>
zaXS-r$_0|}kdRQt<G;V-pa1WYXRZ1M93<R~3-`Ydd44(#9T*i9yM}CVPP=7GKl9AL
z|I;T*s?1C4_<6Wqr9KBI&GY}kMfg8i690A)e_zf2$$j{L`FnW7%)jo(|MF2_o&3*#
z@Bjb5_YX(xU#{DqWdG@Iz3~5Wisk>&zxq%5-@nYg|07~Ex2YCQeL1F4HIKqCRpE!%
zUl-=je{jB}k3{~V%w5lWTBTxn&N7J;pB(zPpVUnHP^3<khVDtd`8$?tEWfSHe|^r6
zE+xZ)zl@y!e);))$ZsG(pWW%JVP+vDQq1fv;3x2(e_iEXzD1NYGhpr}djrH8MUJ-O
z<2L{H6MZ?_8D)9R`{aN9L0B||yv`I}pNU%F-PWBu+nsd7_x!i(jAou|=>m;a<P;Pw
zvFr6Chn+Rq{#cU|L4{zZ%nX+q)5N>Joxg#UD3nUuh3kM~`3V-watNX7Bm*WKSN=b*
zK=d=@2+qqcWx;x?i$i48WR^zK`&PL8#U{KDlAoVXK=Nj*)h9u$MeyHzozvP)XH!FH
zY2(I*!O!MoMzlk4BP0Gn)wZvM9>sHdImjCEON%eeBcARx>@v2Sa*5X8Z(zUFN7o*5
zek)Uuhv(%<qMCH9nAVTMexnu5w^t-K=Bk-0DuW@^&T4#ai8wVD=Lf+{M%9qpsPb5&
z7?L$3S1BQzcMZT{4l9rly6yUNEUsc>*zM8Xns)>oqzj@Fhy4&R4}nL`a7BQ<B`K01
zZZHKQ!Xl)bhREsCAuA#-{8i^k0uy;r4ny=p>S^3e->P-!yoQ74!=BUBA+v0?5uN;8
z9E+CE8oP$U^UfQ%OMx@p<!U$p{$J!&_ko4tkY<)e;kd?z&P-9rO+g{4L%@fM#gmwS
z`_a+WC$2FsM!IJkY1iDWXu{j33Tav(##={kll1+VbE;?FBWZk9fcx<RcSWR*+E`ix
z9qP5eop(=#JYVNvA?r6J5(0j3&vF(PlyqMoGxw%{s*A;Q2&IJIyE2Yu4ZoHvF!}r|
zYi`)1fYQu--rW=F?k;MEJ=5cH?wmj|7NWlbsS*C#R1bxC+mQZlNh2EKR{p-PFFGx)
zZinMQW%Ru|V%}P>+|6}^?tbcs>0DfAJH(uuqsIk)gJRuh<cC5|>0RMFx4ZWpD2CIF
zpZrGXdj;%bTLf;RrioHxSDlIj+;+{~16_9^f#3ETvZk!VvBc`;meHVnW%z=S{XGZU
z*(+1MJGc`*5E<@HN6%lPy7wJ&#o6<G+_svWb_eQ{+*4^@jE^fE%d!qPptsq8Yr^&1
z=yhRB9wXIBxicsao^c|P*v{G5W4vT)1B@M?KYxbY2+{LAhSq474(JwDJzvEz<XhlL
z2i}Hpk974ByRAbHAVU#Ck=C^!GT()_0o_zp_2RI@`LJ%*!a8&JXT>{E_Mx^51R;e7
z&@N1}wi`GXuWyb|?~HA2-8@N+e`~3<E2`8Tv3Ez71OVKpdxWD<ZF)GsaupJ-o}a}I
zNHlD0=mpLBJM>R#*Blu`6TJCW>l3^rGE%pJmGINK+D7&mSY`&0X1}f3qw>>pyb%JB
zHqDPaRx}*T;-ob{CStA+iDePA9e$>-3mK*vqsS0$&z?O(Oh;ThrE3{}A1IA}cgx2%
z;wV4%K;$Ioe`9s%ULdJYBiuTgbWrS0%S}PN<(l6SB9lM#WQ|xM-6gl0^7F4GA%Gi&
z0SOCYYK~D4L-?F%8O8nQu*7_L_FV^6#TI^dfT3)s*CwiSDEBPa>Gux<$QhSMQ-+UR
z8UqAwLj%D#Y)~<$ycs;jWWp$|Ct_P2qWf{0%3I6|@pO$nSLDr5S_W5+VgyqDSXpJN
z0FZ@$W~ERsib8>_)x2Q=e3YHK%l7uN0&s<?jCs<U_sQYzk%F~!V}e|*_-CG@^^c6w
zh9;>up{GM3f{{(ccRvUVB7GBsC}hn>gXRk#=DepD4Pcz_;Dot$g0H+<yVSWi-b1KN
zHT}%mxU{H`SUkjo2CQM%(tHAw?1lLE&!o(TI(lATn)~_5fRA}5^@<DJZwLaqWQ$+F
z88MtFkMbY&KQ#AdIg)~r@`7Hf=0~n4kDP+YGV?G-ia`K7?XFtSPcwa5Y{dcA^BH4_
zlg#7Y7&gllBW_dL+E2+jmi7*2-zw&#J65&s)+um(;!{*o+Kd9SYB@e@<+KCp<tfd_
zD^|UIK-@~Yo38Gtxc;HEV0*5&xLWtO#kPr12`sjLp++78-|SRZCo4~Qdh}|b#IB#{
z5%52bSJk+jKv^<2pxdv8a;_pOwxmvb7itzWvuq#=EqE5bj*vpko5N}JA_U2~99$H>
z>u{wHk~cj7JW^ah?^GNcyMT|biY9kZ;)U$ZcriEaR=byk0{APC%(jZqZ1|d`r2I=Y
z@`y0uo@c3Nj_nUo8FvR$ZyJHz-LHF7VkI;@q6OH1YmcQudso8(Q}#CFb1a`MA_4bx
zvd-Uqdhk`x3AcWZ$a9x0QC`NMS!M=^Fc1VXjSV}`r+!&t5FzrOW%hML>V$Vj^!}X=
z{Zx`2tBK7sYL55+{Wr|V$uPqR0qA_Mkx8oAD)+c0_;s-$?wYYa{gzHdFAPb1{yf?;
zAV7J>-NHiDQ#!G9A9^+)DpKm&Yrj<KxQ(;J`>AEC>UFqA#j76LY{=+~f5s{0m;jSh
zu19BBRj9n}b}s?Rj9lN+{6baW7|ysXRTOigPT*5!-zRh3J;<Z_nwKp)^Eu@GEipPb
z`i9X%M;QWY1E6A-&$bFC%<w^<-oOUq9qBsB(@6ER34-wJ+Y^nje63=dR>H$V>izKh
zY7&KRY*x^RZ3tEhzaM`MHur1)_NapfnmG<UMpAAU8Ol~E+<65AQilsUFiaveo`do2
z*4W;Wy(Ae_%X8rIR<`ZGee(wGewBbg_#^k4ckuPzMI4St>EPqXkJyAZ@*3H0m%T0S
zlXUn6${!LCEiIG0c)zhpIlwxTfK7p<t2T;mv1R6cDYs37RmFmeHkXucm3u?3_BHKn
zdCTVQ0!03&yOy)$3q)+Kmgx*XuJIv?w1=axmamZ&CmXQ0Tursv2O5Tjz87x;BanTa
zFjzPog3VvpHeUVcew-D5d%Ix#iPNp7_Vjs)R8<+l+zc->Z>xsDqw~qhMo46*Wm;QR
z*;5Y9aIHdx4^o?2*9B$YrX}>3nRC)k;<;oM1HBR#5>*o2Fu-g>qwOHZ90K*MtUF!=
z@fuqXv#z@AQXVn46NZzVlYDIR2Uo>~Hz^5_SKqT_+&yDhvH9V(t6tlI@d-eu1x06N
z)zuK{z;q{faS_6PAdK(Z(*5LUz)Ige#4Rd{eMq$#qvAD8xa!^T(Rh4nielsEB%8}v
zNa`YmQ|@k0aj!xYlgRoLjeZ-mEU-TFv?1R`s=ja96Tf+LM(7Ox%jwmr9s$<6gNVCb
z-c5wWlw@R&6+L=FO)V_;td#i|jN7XB0i*UeYxL8miU-|6vd%qnpQZtj(teuMaEY+z
ztkg6md6-dho$0sq?;@m5otNN9efmR)RY^tSn1I9e7NbvWnfwj~QCNg-JKud~+PJcQ
z8ENw5BnfA=@zp@kw?@+guscKj@p;<Rqf!@rnuOTN3h()ye8*(2E)e&8h2~BoYv&KK
zmAa6m_OLj&vec=MZJh~I6Vubx{@d7}Gruf2HzO3W8vXsPaczkhRL^a`Yd=2s40%aQ
zPX~v^v@sQ2dHof_>`YZZQZKA2>DhFlAsG=nEv_!m5{^)908n*M(3X6n@mI9zS~RDC
z98N0h#&>FCo$u#HNp8q(%~5<%_oFQ@--*{z)!bnGke}bUXTr>nU9gu)JRNY7{M@A-
z>vG-g1NCaAsUJW25-64M1z5mwpm@c#enV)ji<rl}mUbsFO`0I;&DvA@s;}vq=7QQ^
zs1~rH4mTGHc;2yBVhGVm^BU586%Ugi+Yn2X0S`CxbJ2kbq0o)2>4%Cs=8->hYDa%u
zY&*~tmK(agw(-`b`i{yI7y#j>#5O+;4tHlj8lY3^#M;#0Ww2rrPd}oeb)!!-6M|HF
zK}@Pm-|+r;+)EkM{(Wni1_0Ce0<K&b%e|szoDNM-K-UHE-5|-z2ma1KaJP+zgTBe~
zC_V-df|*O!<7dZ<V#BZ^bvxPUf9QmrNGir*b1hrDLR(u#W_8K)aK}HKN+DjYIQhuX
z0Q2H-T7^j%D#li>SxS;C!UfQ#KLI}Z+f7|u+`9QtP`F%T@&evZEoc$2E~EBku#umi
zIFell`DA&9Jj;}TS63e%!GI)q>{zY#Aa1gMTB_SHm34m6(cS&uK(}+x%J3kuYTe%G
z_r|@a-3m$UJ~jwO4Xs1cH{^R$*Aq81)SKU`6~&}#bFq?d$8Dx5KN&plOmw{G?8-Jj
z7uT)3z3H5Q8+d<IyUjDk(NXam)jPAPY|ivfcF_}`rcz{IE7rrhoCBm&GUr~<T+Yor
z%{M7f?EWOwGHbts$p2%hhGyscr!R#kXNeVa=X<PqGVf^gFBfpvU8xvxFX<{ocA?3|
zZx@#u1Fh8<>+0(2(0ejj8}q$&dAQ8Lri*8Y)%~W&>vkfV_YDmVGlX?;0BGOvx>r7!
z1@FN)A6MV8*X5xYARcJBv`EyGxV122#8I9P21g<IpV#+8({{(C=-YbZ*p)8nRNnRx
z?fW8*v0BD0L5>Tt@4{WpQ)?ZUUd+|TOjEYLZYhx4xFF8-0>7_-d+eZgd4yy6yWAd>
zfSz`KoqkBK@*J!omhP<>_jmPdSyI!sF##q@T?-T1mh$$cW#<nF&9B)vuvG!<3go2|
z-H3XMo|J^M8_uDwCI0;$6eIMWl8dE3LyZGjSV`|HjF@=+;G>EE_};NhRdnroRlchN
z10-LPE`5f6w;A8I<k8|_U!>d1YB31@uV;slFkLK(bT~7p8_%i>41L<YrwF_pzW$g?
zM#!(|)!eBVJ?$r<!`jBbf|Ve?u=%GU$0#QzxBBq;f!XWH8!Qq{M&^9_kvJdy6EUak
z7y!Fsm^x;!l%uIr9M$aPxmVOKaaEl8!x`6?ji3mwyIV)^uM%{j-a8fqSY*FZgb9)X
z+C@@w+UeC&&RPg%7Z)EHR273wNt8-r%P}|AAyU*(cf08tLhfr4ZS^r-$X1TN(FUh5
zm8$nOKtqn2>x?pg6#&0objHJ0Q?nT(2(O&GO@0Q&u01sq-3>u{rJ27OE)ie8aH3jL
zMO<<Xkmjc5;gmZUt8SV_ZREeGKR+)laj5ZYyfV-0IfoujF$<!trCx3&Ns8QP*73iG
zs?t-kIO5VFEK<?;#ec57UYl>3?a0%Q5cSKksIq@7y#3+{N4bbL9)ZO8q4Nv<^LFVp
zvJ#WwNVkqJ#}D(*;E(2C+VCXo%K13?9YEid?=)A7V^$so9@?+H-)V=`eVx6Yuw+Mm
z8N-Z_v-_uy5NjK$IsT#LcF$9o9hkdg(w!=Q`H<%IG*-_t^gA`i419lk0r0tpdjqb#
zK3FI1b!tRXqa>Kzeo1y8E#7W4$UB*=HGA@Gy8zUtY@K@Hh?t15ami*NmOvYyZ)H-^
z4EzBK&mW#_uXzSr@^OY*bJ7%m9v}-vgnb}6@0bA=7z9kjAAQtMP_5gI8NS}G3!S7)
z0q;976Fg~Ib|2?1dPc`+lIabh^Cq<7`lRTtT+z8$*uM7@-ta~dJ@aRB3Ebh1Y}O6O
znCn}CmQ(SRL&4-D6?KawJw_Y<T0az9#iu=<o5#(sHuZ|`y*wwOg`$lNF{zI3Vmcb~
zZB%^&5M_!JWoPh6<Hf7(_KTHQrpJS#y!gYVq+}u*BJbt#dEGN(86s2!83<r|JZT$Q
zYF@!Aap|P;CADJbmCPv5Ep-8mfA&0{_Vn7d-uV|>2H)X=x%F^9GHWp&l)u83>c4Kb
zpgi9_FvP<C9C&-4kNrK?8?=UQ_cQ3UvN`O9`S^~<SfR^`<OZj|CA6NgkT9>xs}X!)
zl_?#uJ;Lfn%owAGjh_w#jOP8mb5K~xQK0rGnmTJ-rPmMY_B13<67d6va*4v*t0aM^
zXvgP%hs1CfBDJpPx_<>v)e5qv=sQI#f=XO{Lu}xbtVr(0ShAy(TYa9=QaUEw&ivM(
zX0FrXEbu5-uU`Xt$}HWa#^luj^hdD^_A$8N_rbPtP@>LkWVoPmg13RR)g|qaBb>*x
zx$(AL$3dpt1;zemBlH_R!t()h`%w8$RI4ItV4`0Ce}(RPs%vk?ne$`lE??Gnx@~{4
zLSphqQQ}y1v@b+P_g}8@{>fDyPF$)E`H4;I(IunQ<+~{ZLc+O=^L@6B$qK*;?_gb;
zhWuHeSH##%;cB}Wpq0}2@V4MU#zSRzJf4=vZjS1m8?x?{yAjx)v|(t<RyWxAtxBi*
zfcxK>yK+Kl%yMjqhn)Lero}Bo-&r|x`Mf@E^$xPR0Iig{@MJQoSG@PB$Kla|oV^us
zhvil+w~X=gwDRF2chlx(q>fYn%x{}&PP+J_VPH6!V5PvsdL?i=+Ws3+(R9I;)(5N~
z>78|qusn0oa2D*k4G2@dPiM}YfoS6vf%^}{XO?tNWmEPAZqU<U-L6JOziGW1{c7^X
zJ+BV-lfic2)@CsMCT|og(^n>Y-hSv0d^c33C95Y_!WD<FhM-vzK0ZIo_|Eu90>slC
z+rDMLxW}cRaJ?t8lXIp+3{cO%h%z4)TD0TidyB3Gvk7m`o?#&_gM7?qXp8o<V0Dq<
zhXeZ1AdkNFV|IaWR%!b`)EU}H*V2w?WLJ*88Ji?GJ6c9Bg@|c?RzFSwN1{*JgU#k*
zU&7P4m(>mS-rOtxl(bmK>R2u6b}f}Y-Ny%8$GASAai;w}+2&p2fF_c9&-1fJR_z|-
z{u<3Q1=ou@stIlwp{eoB$sdrRHF@KFabrBk7I+3=%h2>`?uBgG^(a*N$8I)Dn}fKc
z@QXcYES&>tjM$BL%qZmBH)48NjZZf>w?#C=?OdC(lpJh5B8E51sYw|+JyNNnAcEa7
z;nL&~1Q)eflE&d~+NL<E8nx|d<>2x@`PN>GtMe!<3AT)inA{Ase?n5QD0Lfq2GZpT
zP%<bv15FFTh4AM2+}=dXl_MX*V!V3w=JNlG!)sUeG`p9#)iAoO3DS9$(%R6wEL7zV
z4o-#7o+Ol{mS3i#(kog1r0Jq6=O~ht-f7&t7K!Z4p{*#0T=f*Dp~ZzB;m^2i_oHB9
zl(U@JnB+rOCdly-n^_wx{1_yHIdOkzN#_a;O@!0+VLIM_!FOjIEC9YcJM{k>zPk<`
zrsAw3ZfdNC`+op<6C?{NS@7hB=XNr?-Dk@|(j`K3o=`;D;Rbu$RnR3yle)Q9dRhm+
zeT%smEi9QGATNMLT5)v70#>!*$K=Bku#Wh48vD6@NDbc&ZMZaUwQ?sCF9@J{qNj_s
zUChpXBfo(<!r%BR-@@^vVr|fhI``)XVqePr%Wo~;A-E`4$=8&B@j<MwDG@bt7X(-<
zO?01KzNrZWv)DXdKRr)%&&tYjwFxZ)3m=C4*7dS5C;t4R2rSv!jH0Ekw~Mohng`_W
zDt4u<^d<4++ek)g4ZRDPJ>v-go-voX==Z_3zPb3k;zy8;!{9wp;o!+EXN0Jz+AY|U
zX=T46L9CMI=qzvmFo2yGxNxMz`uRx;f>`S(71DQUPC{Dow$sT=hLPiuLv;!$nqP_C
z5b|AR6-ifCU&Bg4PDAJN#kSJVOUvsMFv@YI6hiMDH8*Es*sA*G3q<35m!I6}=|62;
zzGqpUoK44j8w-RLC!ud&-&olOnF*<pr4~SxofS$<9p&{Y<aZ-U>O~?>TRyTj1JF!T
zdjG-bJvCHDHT0|_=W1ZIq0>9?Upnt@w(fQYshl<_-Ke<UZsCm^#OQOc<W9{m`Yy89
zJ8F|w*(P3&sz1+0n(?inzOblk!jj`@C8O2q`j`4P&Ld5PEuVsP$lguypiY1F%Y>MJ
zo>+EfzYz6e#Z3JMIr|p~kH#KnzD!BUdP|@ky*iISF|-e>nZ0=)-UiNz;KzAuo5cCf
zx5`qp&*1Cf8F$0`vYRA6R0X3R!bgMEu3@g;bI?O772*KnoEPy381fy$8>N`vZYGd7
z!;1DW`i<3VBz1~X2tgn66D73k9z9}N`Zj6XltBkn$P~9KUCNtDvZ4bLE#*?D^JZM5
z-@VIGs|U+J2Fw1y3U!j}(j`o)!b}H4yvkg}?XljX5n0%vfxt+PO&5<9_x2>2)NV@3
zs%+B0VVB-%C!Dyjb=^iKLi&SfV*023lM=qJZgE7$)RT8Rb3b-@2at*JeH>ybGhNsz
z$G4%#7%}o~PTW5nb9h1+8v#YLt{t<iF#lxD)MU&5y~14v52&AHr_<@*64Kghx*FFG
z9qoO-UMAfIQs@<{`JTgfTh2KDOI5oaq6Y|_<irH3G^(;EQ$DS1^Hp?`ex~?<<XV$5
zSyn)jl>3Uf`b@Kyt$(gbIZx<Yxf7iU*%;DfnCg+6^itYvJ==x~WUr-}wgj)KZIBs*
z0eob26}qsMNK!>;%CHaLt%l|%c}iw>wd!My)TsLH=q{)sNavMRRrAKq4u`&j84Ng_
zAVhpQqBtc-&gKJvz}Sv`rpi;yJ}x;lAw*Ab@$Z1&G1R+%xxoJu@T(txtBIrt=cx_E
zj)5&8c*N~@V|%};NGdU3L*|{BA=N&q8SDsikSQwCF%8R~;9<ZLUDQNA@l3xuHX7-*
zo7v9uUgBU*qx!*M%wG9(g|Z>5jn>*<A*|U9<3Xyo>>bv{0PALA(%307;fdr+ceeUo
z*9~m%Snmgdfq_)>t$jg@?Vqx5@(q-hm0gcTXp$glAoRL)a;|9pT-GyO=}xxZ^(TlI
zx5y)O1R-x|()58QNf(s)y%M8#Luci>JZw8I@gjC-iP@y0)t|obJfWD^ZX)O!km@i0
zY*};4dlKotrtW!@wGg-C+THeX<xC##=UGbWZNx2ES##)rDUOk_Y6E&>{p%_G{`FH2
zi_lkHZ7`rcic>ej`Y3xdU1UpO{WUgQwQm4@zRoKzBPR`M%Wv?H@svZvvRZf8@8)!w
zHh=ndyqv?M;+xmTV_>=XT63N%nTn(?#p{6mP*2HqWZ_1TEAr0ravgMcUDsA;Uy8ML
z27OJ~5MhbYGjZW=01_Scrt!f-*lQiBS<bTUp##T!3kZHJu&@kv^SRe`N6-O!GAI__
z{7MR=uI~2Pce?{$FC=P?or}@uF9bb^xkPkVuGlVFj-0`;NXr-Ok@F<QQq?L?EaFwa
zJ9Wjy39BA6)`7Hv^xqb7=nItZ_*kuyIheb@EKO<aKD>8?otU5jP2TouB30MdDC(}Q
zZC?6W0q9DFBLk^4w7pi}9=)YmLq>#2onsS7wNn}_g<dhWgtj{8Mp`;%8|pI**ErrP
zUU??rUCywlvx#%v)Rk!}VP)(pEB@<6Y;h^1#{St^K)PyshdM7|YIwGHvS|Izcl2cU
z2~pt~mtn&_3pm%&6Z=n>48h>VKAg#1X*u3w*MZrRfg5FMD0w27vCx9_oGrJ-;7kSm
z<22cPsSr43q)FT}X2uO7ZE@`f!1LpFCB4CsaI1y78GEhz8w0VkKw_e5&T`pZl*YG-
zB&+g}_O}!^8oE@bq)tn`tMW(i4Ni5I1~kwR`w63v5-wxpDwT_V*XSt?!l#$^xZ7Ss
zlV;7Ak(mCKGBAOP_e2P4OOo4)uE=GU_6NQ~yN^Khy?AF3(c77OMTAV;m~92hOHA%b
zcLYAYF?&n1_jqK~`PXf%0z(ken5=9<uNe0{sfl~e--5<vk8ibH_B^(=8Y}Ul@Ti(2
z<9AjRyK$8+X<d<h(sma@Wb*-CMaf5nI|aY?kxK+xY^>*vtihKAD=!(Mq5`5vR)<EO
z#==|At~vfy)5d|QU+G3=v|{6QWC`_k1S@tvZmokSizV~@*{zr*)K2yi6q@8mGz_s_
zQ*$Mmf2hGP>38Lbjuazen$hY+qtN*NO#d=RnG2!WqAXH*MTz@I8|jCvI^v?gQ-hVV
zRTG~deBfxKKwH?{$_-O1hNIL?LgoAF8+E>K$$TBlp3Z$Ehg%&$c@~!W08L?<^L5nm
zi&lB71!Dr^h4?1WwMM`Yg?Zc%e9q>Fuh#O)idyo-=D}Xycw2jFGh>Y-bovCaAvME0
zX9t09O|Qvkeru?t=xa(^#*^Au+A(i7p_Gd4GzPl3=9>(jDIIOA<&~9p+)o4xxz^7?
zGJiff^!->wfm{ac(;O|T&up?r*yMdm*LsgRCgpUqOB6M36^q}NqK&c9W}4E~*n!mh
zLiDb+@dE3Q1H_T!nB43uD#i>h#+Kp2OVU7YJI?SX{_}0$_e~nLXo8*%C9PUQq(m?m
zs%pudSaY<UWyl>`;jar#$4@^LCq&WuqXT|h(69f~f?gJ=S>k!oK~OV+{gOYHx8>Df
zCixLes)$#ng_hQSTm>FH3pAZhg*c;G68of42h}x=(wnTSPf<;xg?i?OD6p?d`6~nt
z%uf|`f9(n23%`2vNC4}dV4!~fQr`kpNFjM$(2t)m``(sx>C3&xWf>798BAw*P>;8s
z%MVs9P354kDun2|zKGN5x-kc_{0$BN^q)ujs~M7p1}|o@dfqq!;#}$RwA3j*$@+zt
zFTZ4GTSV`xv1&*Cwujg~;zm_Ldq~FIC7{b*!O1}+DJxmj#^((ZbJ`E|k?o^6j}r}O
z_0W4$mwvrWR|tl7S#r>^8i3q7%t0*@!^m_*y^KlffL_b5YO3i_{X@47YJo&60-E<b
zRx*5=uD8VtCq(;W3`%zSPmz-jC{^#|w=X*G%CGdnsVu5sC=D9a7abRQ9*7<*J_hfv
zkF*qG_mLH+X8vM#$~lIETZ*7Qq`5>XA)%FCNY_xZ+yB+uReUoNc}N`Zrt)p8Q>#;;
zulp(fb^dlcn;7J%sV@N!1W!S_&6&mXhC?$FuJvVXg}&@MHwtk<<{S>uB;2)rO|LK0
zx^)ci1LXa&%6PS_+bDE`&8(K*6ly>3vqi~y-^PUsq6n)Ij`s?14${J32?Y@7_>2_0
zCp1Dw8EFzC5F*Z`me(+;1G}Jr-*vB#U!?Zd!zKgVAV5>RpLuBXgxz7bsq~mt*6{Fp
zAaW!p6VMeV0Kkx|ex7|-I2tE~u{3p1C#^!Km)`Rjp^ld_qH5YNYP@PF%IsU&{&z+(
zr*9^N+fyd_>0f&lgbcjbFr7sjZE}ArXmSuOcAHl8{@vcaFGw)18pV@Cn)BGAN9|fh
zo9_kmv6*b>rvR5~IXJBJ)mLa=S*2=ct?}FdPR}b#xb?IX!}rRkc?)}#mZr6#GMGcd
zooBv&1-IaE659yJ5Euk9-EydQfI%M8I7}z(LgX*<UaeE_k%4nK-1pY1N@%EYRDr0j
zD!VS;l5q9Cx~M+j{{l#mJV#<1!nPSj&48L=9FHL#dHF}R191?{NHNR<n>K+j;ySSt
z(&9Q=C^^zjHq2JX<hhEsIu0ix$x7VHgjTL;7FntGkdn>}aG~PS(E}nPx%GyhOPkSz
zzVUw46N4)ONTbtIJb}vQ4DTdtmu?R1Gkf>w7RMs3g@<n}){I(>MrqRrAg6~ff5<fD
z$lZuD3~N1K@JsgmLpAUR1^&hwTap7OXIf|Vw9YUjfx>EhOdDY`8GXq{70yj~9*n#Y
z7k<wOVQ~nFJX!QNn6Wx;{s>JCgJOYQF;`NQ`=F=dlcCZlHO;okYX8nMX5oCXxMJS?
zhh;p>2rDW7eDhY_EbmL9v(1%)7l3+?9tiHZ4SrU<=bbkl*g{R{S<y4%XCcvPoHV{|
z8>dW~;J?z6j|&YYDM;&h<5Fe3F{7B{eA7mmNLH;_Iw>j1_k3ED@ljc&coz<~_o8%d
z*8Wv?qkh4Nw=AnN9nG9UxZRUe8?@WKBz<RKo8(hOh%hY(wTXodU=A{=WfmwgMnZgj
zcl^e_`+D)FsWk7Bh+-(Zy9JpZJG>?IJx0{B(S%MAb@@&oM__<W-WExa)^3ye^?=v5
z%;J{Ct)%*E8POnW*<<xDLR6$#KOA)7x{U<^0zpXW<%xtIez`7-3*!H6^-kJ{a|<Ak
zwTZ$y)?rxm-sOr4>Yo<*ogLTk3|_h1PeK9$jydUSp*9_NKUvCc_?t}}fzo=CqMr0h
zxYJ@kwIZS-{pJ%$8c+-OXX*>^3!teu?`tsff-Ir!8Z@4sBX`{>w#YRvU&6FjL|d=5
zdLH?$)h6;jgAj>D40O(}v9XK}QU)Op7dP_?KO1uEeVT%q6ohyBbFhu2=!ho1AC9~J
zt{8<hH#0Rw=Bc%}k=hV!@U(zj=mqV}mwMT`hc;t=JcoAo2btyCkCIt9n`~K3xd_pV
zZ0(KyKD}^Z4t%$Z5L!z*<3h{X1u+_HeUO5)uHCN~w4QnwTDsGZtQ|5{BR+xqm8mAW
z(CT<;`P*pxbQQXWIL<}^eXQj0{M`W4Z_}sW?+$qEnCFV3-{v3Z`Du&=m4V6$q{2~D
z74G@nhf(`?pfS>^3<O&S_c!tOh=C-gihaWds`5j@2ie>U;|eDU3HL2Ss$>WemFABN
zi$8w67RBLl)1v{(^^6lRS_R@9tJO$GPLAD8;jc8Oj4lOWCPDQhyZO1?<r9DG&=1`h
z@LJmi{fNiUUBN6~*dFiZ7FRCWt<}oL_1jCYS^a%vMX483KmyO18!0{@4dxC9KIB`N
z{3dm7ua>O__oX+5{PNSsBEI?6c$gVI=LQ*?&-62BeSsaQN3Q>t4wj~3Uv1|`Gz)Om
z2Xiuuv6n?eD!#tF0pSYxkX>>$N3c!Gy{0m5y{x70xw+drOSGPh0<&wOci733C;JE#
zchaKRLSG^U1xx%y5bSKd;%P&yVMcgD)4Lw-`2FptdGa>G>K(s6zxi?}esW!vpppAa
z^gP_Snt-nUVY(WIb`w%OpRKB&6<=Ax(l}E2&6{_J@Eg@;vRCwJZIyhS(g|&<gxL%I
z)AshucA5hw0JJjQSL94DAGdIV7=pE6N2+seawfqNLk|DNK?Wy`=gQalXOZ7MkJkcb
zH{i6CJuhd4Z$jg&oOWQbM@63H$aZ|EPc8;YuvSkfS7$%d!Yq8Z7F`jmeH&|?`{_j4
zU09f-7aQLh3u&h>7h3OZ4$|9$%jLx-xkLP8pl2VVL(IcUg8;n+MYoAHh`{c>**G^k
zX<yDu`9Cm{*{WSFUVr5J663-li!&cG$;;<QJD*)xN>`G7y7!2W|Ddta4>FA^J5&E*
zs|OKH&=_Ixy=g!zYj*YZZ4G74frQ9#?MFB5sCAsbKGtI48}mmUrfukpP*fiS9mLq@
zA02jVXrlHTvy_-(M^wK1Bj}wkthz|KxJV`!ShQJJz(_uzo^Gb(hqte1Hu|&L1{74{
z#&^OMmdFq>``v{l(Ao<SjV!_kEz7v`Fe+H#%&cr(j1@ih3C2bvyhjoqz){5ovHa^N
z!!lcMK!DsZT?FbKwN`aTER50FQW5wu@)@5?7!J4eyAqSov>n%QUsSI}`&Qb_!Nm89
z*W6j|QQK4>2ovj9$?Inq89ikoaRwwzo5IJt_w`L{+CBO}FOq=R&2U1`0^O|NSN}bn
z7P{u>#zwE_RdUy8b=;EX%Z%uof+D{=L%WUmOx8*7!H+Jes+$>FgSLl0+N;v1X)zR6
z($(T42P>I^kc1%x!k19&Cy~<5a1v7TL7KaQY(w_58BfbgmW_?v8bwLZ0s-!er-pJe
zD1`^m{2UNALZbPp#r@<%bLzjNlxxiY3#HsP21#{)P|Dm)W0U~)oV4{vbT_}c@CW2u
zc>G5#=d(E_eR%@(m?Z)4<3bA(4Y}Q|iw-M<%iW${>hRXRQubyIgS0WWI^*c*Al|4@
zAf0DsW$8?c%?HGTR5AtQVr1k7MPY>J9G}jWl|GyG_-@3mhGM}Uqh{>F?DzU=xc@+0
zU-G&+WRMgv^WZ79%9~1~w&5B2v8DS)lxKI+Tt9_#KCPTsnw?suIvHH0ly>g!?rg~z
zsMd^7R=-uR802eY_~VqXSVFYNty_TQ$`M(i8Q$laQ>Wmk$ikrb+~)$3Y10+jTK%I1
zZhaPwtuPr&^z^#<dGZQ5s8Wu}S3gbto@SF_@tFvdyDIfd0}8^o8yiYH?Ewi^<`fy_
z?Fan+Kd`I~{loix{U2~?sp`d@Zb-!y+10)D2rAT2pZJ4wlQ!E7N@ZroU&TjOMa*@A
z+_4Hid<;h!ck%;}(g!qR@6?I~8o!EsJ^~JZ{({N`aQHLWY{D2*5u@T>!U)HkFQVob
zqe9yn4xjA=jj9)`XcWAxs%ky-a<e|5sed=+c6eel?aj;ql77ec4YioySnFUZZAqGS
z+b1`i=TM%T_9m&L8x_aTseU59lXne*f{zBa-~x}xT%|Zl>gOSS_4uh*w~oCEIe!1x
zag7HR58O;|u$#DC5fZD<m^O?TReq<;TDwU-vdEQ^-5hR=`K}<o9owkNbN3_!42(`V
z3I_I>)PAv^sS{eQ?jlSIN*u0I)h(Kw+B$9{tKj6sa^2|<99lm1@luZR_kCI#3?0MU
zp&?I0#=d%@bxpl4MO4fCI9Crv=_gO@bwtM&#df;}Ha9jJ5L$W<`PU8+4-{b?D|h=!
zkTJrjyMBQN<7kL_mZ>Dki=l`#-kLPG?)&^LxInQLeXgA!**i>@^@?|Gd(orGa$zAr
z%mj^7Ec}Wc`x1oi!ndZ>o{C0&-_9@nn%9~l$pk&WOnSd})Ini><Sf3i7$v7$k&4C9
zDV3GUgGu&&Lcu#w2_wYQRYV1{va;R=2bMfwz9S)LXFYw6nAkh{7VOyL*X2-RW~iH*
zEwd0Vm}&ZGaCG=$UMa_z!ZeEboZTgW?@~Ecc%NNI-tMfvx_m1|7mFZL-#0>FToQF#
zYBX2q7o4Z6=uo=J4VDM>y%fsZ#Zi^ROr>hg7K>yU3cI`E);=^5Vwo-Igzoc=E}s*K
zXT>*u=wbH>7{*$st*rBFa%Skxtg-1mPF8nh`G{Q`n%K{HO`wmx*5ECzeGy##9@cxs
zUrS#t<#@I$yWbWs72H%OZK4*mC8I8M8(Is(>}1PHRBkR-9jotuYhO_+IQcx!b0Rx3
zQBD5z6_P;1>mZa1aLQk*l#rp#p0-s6F^!&ccl5f}kl4xuef3Xy5kWQofuZI(xdI~E
zr1b0?lH`%%XIQ5AM0Qj2_A0_QR=(T6!SkkT+!ulut-9+hS)pF(jM^#x3ODJ&77t^w
z>5o9FxsosGNr;%Ax@A_|^`&_U<%xOf31VlrD2eKn$8`C~gKZ?2VNFN&Dub<FFt)%#
z+Q|QuQ>F>X<)}?g7JQd&m14(i$gS8{r(!m@RW7r*to5x`>>xDdWB2DrDpO`qW-#I>
z>wowDl%FS}X<%UL5=r261s8ViY5$1<X>*G*jp&Db#vfm&GO3s<rM2+2WPSxDiPYc|
zzKj6s&aWn}%(sRVD(9Ai_}F?QBHs>t5y#hS6XD_*)J5Y%dn*^W$Vmb%evFafue{}T
z`m=8&3`mv0_qXU+V=^+r>14{JL`EsgXe@EcmgLR}%o`a;bF@XK0;(Ar3&f{uR|+p)
z&L!XQOS4|j(LrQ)8DcGbWTYYY9&^>4NxHm%39~qVMepkFw2t!J6-nN2ep^SL4`K~2
z7X4b+uKC1lT2j$qF5t(9p*zRU=axvreNXNb>i^;Fy`!4?)~#VX3IZZkx*(tsL_m5I
z1yQQ>-U+=(m#!jG1px`YsnpPtK<FUS3B4Ms^cISg(BWNpe)oLuJ@@_N8+VYAkr77P
z-fKT)K6B04^`gj(?2*STLsNM9H?@CUsoxYU>+`Y0Ege`^Gph~Y<Kq!xZ7J``6ggv9
zXyk7u-`>6?R}o_lE4C1RW8LQaaNE0fhNw+L^{*whO1gxVyHL>!vUQJY0amrV{-$;L
z?ur<jGG{0>t7863Ucmgs4-uFIC-nL0arjlOo*Uh%)y%F}{@PN*+$Xle*3(lKUzHSV
zEtS8Yg&Z9RxuMN6S!UAQP4G`YW&_belb19FX%gaIdhGQc8STitYUDSaE>fSEJ=E!s
zm8oc5mY=DdNx)}yK{GX?=dloyqoA(`>DR$?U*j!?ltU#t6fKEi6i`T!I2pidX_M>2
zCMG9MH3th;vC<{DUlngW+_Nvi?IO5GP0KuZ4GFM~k5=qS!xaX_avWJ((%|Iu?U3X{
zO+UZDp}5F64h{}&Ndb|>x{bwwqVKgDXHPi5Iq&^oj{RmCiaM*QvV8OAo-i!ct5}XC
zMqs@EK>QU<$=lqSQekCcG*4dSm((MqwJ|xyf}4Zm4n3`I^r$_vrRY?CcEb~0kNzMJ
z1_PrpzP2<fpdpmN8yF_HxO%jRScOTG&TxL&DO@1gPF_lGuH7<=%hvBlEU7#%N}wZk
zNW0=2H+X-2+ry@qbwWqV7(Wg7KQOW<qQ8QnqIP+F7;(uez^5c}_eVo!^q(Z+mUqx_
z)qXOakIrV$j<hF`WQ5)px+#?}^P9d5Z@(ABXJOjBK{NbKtKB$@rG*i+ywxqRi=<p?
z_tldEhoi`enUSfp*Di*sQ)XnBFJFep<x}P)@a-1QT;sRwijI}-HT;^8nJjKK89%Gp
z-qpp8n>SnW-{QYaD;GiA%C>pEENN8FIk4WBPsx|p%i20*`lzP*AY1mU)AA3ZXKwM`
zf|K<1pC*DqjLD`KZd2yp^DxrU^>BCibd2<nm1Ub%zcJ>SaOvu>gAU`(ElpIkzsNSN
zn3BGcdDdIK23?qvAuy{p@6_;IpEM^6R{`5F8oLAs5OLxY6A`DcjG>Ri<l~&#Vl|5+
z&IS*V94d(`)I62GY(C5~YY!KyOU$s5owv!>HGm9l;)?#qnr?u(%QS~bSP{5a<~Q4O
zlSe|27P8#w%#;@C56EPnKzs%v&iF{fmkkK}{;vtp?C(Q6H$HO%<vZM$0c-owq}~B@
z7oXnY$?l@Q6&WiCrk;m3NooJ%l9}n~m8}h`s~Exj_mQgs(F}Di0^zCbN--`4<u(g<
zlDPW2a|Y&b_nuoQCRP0FV;0D{8xXk6X|m|EFy7H@u~I0uTwd7!WV&FBbwpIj=7@FV
zElp-Y8*lA;E|bGC_Lxw86nIgKoL>E=Ht}HhaEdN+P6~heCi102?zV3Dv7Vb}F`GCg
z^{0FFh>9>M>oOCKNYc=Qje##vE2-b4_ws2WM2ZBr%a3Q}<JBj0(xG%pDjaX_qrO!=
zC}FZpf+TaMUma0Tf8a!8k}SbQYig(vJ%5}9#eO?|*KazHVG&BdFOB_1&S8uPDSVDD
zAK*x?Hq`j6?~YT5qivpjhTp{j+rvM8Jb69zGlu7A>4%U4%qen;3gw%1yi#gYQ<7BH
zUi^vfU8$RBvS4fC77>^7-PyaBBl?w2-vtKe(YOUXOed?J{q&kG+00wij#F^Lr6)l^
zj)du($}h3eXV0D$e6?Wi?$_#7u7Z3uzVnt}FxzMAeB~M4d_66sFu$da&@P@R@g34T
z3^SPC(LTUW>cY6CSpP%^Y1$2|*PDH6<4i=@bFK~A@MDW|w>Mr+2JAHD0c_i0H0g;|
zhhPaI&(IftE@2E(E{oZF%2&40Y9hN!!#!I%NcwV}>N58&CVJyaOFw&q<B@Q)IaTIh
z{1_6)rHz_92rE(-^W4aMXjQhEWMkmFgp&CnMrn?{m^dm?0P)d~w}B3F7>2jIxyeRG
zhBhPpd=x}pe|BH))kWI~BrQY@1L<(#N_1gAb_{9XpU1ygP&E7aV1OsgAyjNxYA(76
zMN&AV{xa!V?pd#~4Q-||Wa}-TqBd`{z5##%Qxh$JCS-A0<1@aMEOu#8n<YZkIeIWW
z7r4%;hejkYhYl5`Kz#>Y{4cgsdw8efhUC_@R%ELq)l3(5org;6RG`kk5dovj>)I&D
zH_h!MpqH=&Hpsn*rJ0V?w>p9ocg~Kvy1S-~7WDjby&C(dM5zb1mP&B&tL%t16uHKY
zcx-?8$DF2N+BnvQ-{8k=dk7%A@Za?pl9H<%c~XfkACj44r4?eKv5^M+UNoDQ5q2-b
zj&_ttz1E^F5Bi!n;;Yl5j9=j^5cVGv8b6>|UB752{$=p%yeM1FR`4URhX4FZpas93
zIQb<hJHHg_V6!;jjz8-@if!u5&rV_S*Ef5TurOXpG^^kKm{n&YSid$9Qcu_wb6uai
zsLaMS#eq?!zpP+YOHK-SN{m%hR|f+H2A`GE#O%&CXPDC3eS*EjLsBp(=@)LBKGs;&
z!c-(4o{(}7)V{UIDEuvqVTT&_kXX~VZ}bu5H_AmVGdUjSpp@X+UC7{%A9XzpxdtrF
zg1_jZSy3|g#5BL4a9Yd6lw7E#+0ZuR8A^x*7}o99UY@>=$;Kv-Y36H|k1<>Usmv#3
z*fttt6budSzp*hl0fey!a(;?VBDid15_w{G?|UF#{o-7PISm#YRZAPaAU|gmvWo(8
zEQ95ny<k)aogP7;3AQlx+2KLByAJ+$Z`+q&dR(;dO_jx@l=pWNMUozR=b2!?2UDJ8
zn~u0JA1o&``oT_otz{+)9VR1Yv8kf&Tccm|xjFQK+NH<S%YfAG>aYMoH1OO%O4Sq~
z@tCy+INz>XXPE<OX~*7H3<`Js?LsIKlH(SJ@#Nuj3%Jbf-jm7=ljP?C31G-*Kbz7p
zEZ#W7@{XJF#Q3<&3msHnm^%HI@rdfhphB0y=XEi<F=kxqa#;%|Q-1h@l;$42tD&GH
zK;{a;*(92q>joiXZ~3%%y7`NB%7zJPL_q29@lvkTLHf|U?}We>CUIy;Vh8hW>@fDP
z)rmIOGfpbJMRNWub3KVo)~O}!(VY)2PK(PIy1M?172LiE*F|T3xlG`Y9931C1Qiod
zkSS1?1-9sYG^J}!ZU*u2!+GE>=t#yy6@W0Ap76PviTc}B#GY>PDuBTrQukijOzH(C
zm{Qf7W%(yPPS#JqMP};8?r{C&EErq4K_1uYQSK5Y>L=LcksY&beXtX+lHK>6VWv^}
zFH0S4&;cF9k*9(IWcwothB1yMkJQ5B!%rk}N>{)2FYm3x(L*W)i%zQGV-Wl&>wdUI
z(0qN?)`zw4sm!WvjypMoB$u)bMJ1lTQLfay=BipQ?@ih8`}sW|^|5V<<uxFRi}TJQ
zS>ouD&m9S^3$W3_w}lu-m94#Fn0PiTNf$wfVchMpSc5pG^)mYm1{^dv!62kb(5Xrv
zm0ARis6_{|`9*Hvu$`}jw;I}HT1d-NeLyNTHO*PKbB^Zg$B!S2j4()VslC)a4hG>j
zzrr3O^rf%b!Sh`ZHzy>Q6n8CaE<v8Z<`R~5b;Y#&D%2`3)A(KcfS|@G`GEIl-1y`q
zg2Ss`GtsIu$-J3QM=<dC{nKVu9X<kCSA)tVHUfimalc{PqmGV_vQ;77yMdJOVLdXd
zXBtD&DEp|^Z@(%kcA`@@8`=(@Otf1!0HTvV%t3ML@vSB~W8C9<BZ_aKDUY)T2$N<p
z9MNnKbOiJ2i_`N%pnBA;sx5Jf%|A$=PE1GyM=|pI=}*zPVX;D##_9YU3S;Hu5vnHM
zYCD;v4?s7XiNafgz-=Kqq<R))`V7odF9%v;!*2N}mD`Z;7AjUf*B*(KwR!~OE~YFn
z7JP2f8V=PDmH0lmak*6`&9cmMrBlTD@}D5eDzx5OPI<YuJyCN<k$u@U_dkG!4yuQz
zR)^d&{K-Q}wP917Bgmq$I(}(a>Mr}o^~<<{o#pF>#oCFrbJ7COtw#F#Zs0Ehq_LLX
z+d$&h6%0GW=i63Hbt?p~Wi|BrOcIOu&k)-DeJFO!>FG$g&+B#kHGv|w`s%6$+jmM7
zu0A8ZAf)<Mh~zZ+RzB5-DQ)fC45+N`E7h=zdQ5jmSx3!AAIPq7_4+^7FR5`f=@*Tq
z!87&TQQ(u@VYo%jTA_44ELs}zF)m22WbG1fc;PhlV*fqz<q@AK%MWDp=YTOr>k#i#
z4*eAhiOo;Vni}n_tg5_p5gZs2@@~tch#y-qpEuBj1vs1awHnZa>W-kC#@oDf)NHE~
zV$`?Zh`Tl6aLI1f30~arlBIXYr!FBYxD`&$s`O~DxI;~UX;ZM0UR*aXuR<?$PxzDy
zaXvaJUOK%DFaQ4SdkhG;dGbu+kZeA632G{;J}HKK3(`9XutB-Jy0Q+T$`NV*`gKV*
z8V{P@Z^0Dtl3_8`-YTAZu{qE|f)?AdCFzi?mDN=r9fPN-?>rKm*|zbi;w$&UBH(0>
zS6hcBC;u$HyhHrbR*RPCals|1;>A!=abjOu>-ap<lf?|z<EA{m?ezsZbz=9ySNM%K
z2-&nUWf?6EO-45?HdaC4W!D)_xAHyTGjeUfC<U8%==6Qem%~625^&o59?CUhuQ2Wf
z7Rzp+3PYvA(BnuFM#(Bib6m{<QJoP5%6skO+zEkA%|H-yhT#L2lVxv1eSJB<U69-!
zn>0%BKK<L57Nn7W8uy!<@F;S?`tL>TAIkb9Nn+LZb|<sBIrRD+y+nQ7HX7ufw|vb9
zDT1JI;Ld6ZZX@8P6cab+o>9j}cg2`rVM*(duyCYqj9680Zdkvgr>d7@JYKL&g7ke?
zsR!{;1wplUaNoS5ti;+NaZlB^E?2Y=WOU@QM3KL&?e=6iLlm6gYktaXCsK}Whn}#n
zD8GnIJMK!`KYP-RNUkQS5}YS2<`5f;CZ3#*KlU|0uPQY;icf+P_@)(sd?_?cf=oU9
z9B2Wz&v`$Pe|M7;szNlwQSBLb@AHKb!W`PZSaWQsWc9%FmG}mGgR`%Xl`LzYzb&{~
zvk*e)&L3sG(wJpDp12*~hD;v){N-lSn=lp-ci*8d3;aa<Yma(HyrK#A??+wD!QLP?
zOR{g2N;W2AQ#g=*^(5>e%;CQESK_d94)^(`_vIgPf&0R|VGjEqHaxc1l0w3s!yJ|l
zcj+wP|6wl9gZQuSuFTgKDK-&i`;I;LYdkcZPtBapZLH+ajZxCSU--H=rQ4zXD5#ZT
z(=P)KXeiHT-O``4Z~C7!>dqH)=O4Owngdi|<w{aT67UB8*NgtS&v-J_Cown{JpQX!
zfu+R$Ux(n|_xDGENAJJB{lD*JtN;04|KIy$SpPqK%Gds<l)_iTe~#9_-%R>d>HkAY
z!Q&nDoY47y-})Z@@4uWju%;Q4`m2=lZ*>yzKpJ?o{@>aj;PEwJ*YF=teLOc*{_oEL
z;?;lC`8fag|9Gqa?d$&keTDz|dH?&@F?zxb^|Ykx-Yn-^A71(NpOPUkiL`SLIE%9<
zpVzbyW>BzKke2bk9}pUdm<!}+CJQcleT>5P+rfVvFyLo`L4MM~G2aIQ6#pSMqT}&P
z7fsomP5No@my3tJ@im8A4*z+$aV4m8jf!<;!GCL1{P#})9vjqcBuUbjtztdzWfeqC
z*zQZW&)(YeShmH>F{zvtpRF+gfQpl=*jpq&x1?fFTUKl@%cSG&x2_&e!@7s^jvKh2
z`$-{npPievDeuJpv8Vj!2TqrWl@}}qc9oq$TLwG@hb<{Rzdbc6u@BZ2{MHkhVTJB#
znrK)3^&$$x#VGNBbfT0Ay?Aywb=tRBx}%UufviFsjgNh?Nw1@4z303qIrZ|SzCM6J
z{TjVPHz<|py_LEgXpG7Gz|d(+vl$t;+KceZe#o$+SzHUJrlfi4>9H%i<r<_Y#rY~7
ztk_M=O3tUrBhA{6$r6{7rt<Aq_WZ&P#zuPtbM1D=e(S0mhs;BY{8hVK-Hp1O=HqrB
zimdp1s!vGqIG?;RI*782KkEsKb1KYBOdNcDnwB#lc1u25eDdNqaXBY<BcERrzb2Wy
zUB~@KQ44OE2t#6xw)D>8M})^m?qw(sp_IA-Y#+m<C4;f24?*6iQ%pq8$K`P`pKFhv
zCfbdiJcniLUtYfa*tSlh@A##e#3x$YtF~W^x!wIJjMKfpeM7L~xYhK?pN!NRGrZRP
zV$;LOa~DHG&~{pf?cn@MZ*?{c4jeEvAFbbyA8Bkwmai$A1;gEj-UHPf9l;i0XnudP
zl7nptK8YN%Q+*fhrrORb=U?<$>dfWt3OP7m{<<f_NwiE7$B(pDi$oS*Ms09?<Y*p3
zI1Hyak_qis*K4}@JiCO&h3s)^s$P=t3w$slCiBR4g{c!_?A<gmOnEO&%z2D;-N91r
zSue+ntCFrc+vQVL_C(?i+JTq}rbtT$Ph$wqY|&>&i{ttI?XcOd6=ky(;4aI;zs2P}
zIiZm=Ikesx`6yKnZuPrZjP95n#_hfm%p|RGweow5X^I4|j>rBJ^n>n5v;`{w+H)91
z8c0TdJ6^<mWL;iBcjJ=FeLc!c1EF$WTqeHn&do`Bj7w-Jum4NNr>_%vmLB(zq2Tx%
z)<0rDy)G}Nk>d`AJ-v=xJU%7hM;9JuXq)(UMpu1mmCNAJWVLm>gVIMmLA9Q#^Cn+p
zMRwL%Jnuz{1d`GdHGP%z*e+Viy_kOfn24_rBVH{ez9g3J)n9?5eI{R{HPa)?-9+d!
z{Pt{mrUEn@NOp$vX`8hTx=sL&B{~cT1b_=kce;m-U*3j{y;kta(dmx=$o#fUiJ5wm
zhpgHSR9Gfh)k#8{zb5PFM(gK+R|ieVSb3ydvJKu+b;R~IJCG0%ef65newB8=q0>bP
zW;oE#L(a=U5QehTR}vom^J6wd0bVPW$fWo#XU+E2Zye}++s}5C;);K1aN8Q4*&g<I
zI1d2KYoDm_;@Tz?l?F_dVnVU7Mx?NL=l(g*ypIT&dB5_|`D@Ug7QMZ&ak?2E;5E^~
zSAyOusP`k2gsq)85?7VcmHY1e*$He_Q7*W;^kekD+|N0#V6+ToEm&J$d@$UqP@G^n
ztk=QcV|wCu?k#76{lsutN?)UyFIb1|CrnpRM0h_gWvD1L4M@bFd4;}w%bz+z-L6#4
zFGe!&M!SsCwXP(?8DJ@%{9LVYBggM`xBNhQQE2XVB%~dWIT?nNRL2&f(>qqboApeN
z$!KyrWw+V#NdqXr?rfBwyIyZa&#Ok4Bd&wXI-j05Yd>ny#%uJU=B1RA5wW>RfwQ;C
zl0BSjlHPFFWilbUqZXn&nfFMxnzh3H1ejr|s)Nl&CA~W*oWUc!VID9B-p>*bfuE;(
zcK7B4mGYUJ$CD{{7_|P&HM`3o3!eW)GQvI)CiYS#yDZjGXk0&!+_1v8X{i#IA<5ey
zm{4o$BW=`SC(wMcklRTMQ;(ont93VI*Qt9YyrALxXBSJOtpMCj=IJsTX-HMJZ2S-W
zPGSnJfL!-1<H@g~xdMEAD6|nxWgPL^;?6T#B3xg0b@Ixbl?LO+5BUe0d$8?7Ek7Sm
z%hvA|RVuevDcghkw<NaI+5BMKEN{9#{5EwdMd8{A<UwYL>{ev`yUfnL;{WlBKbOAZ
zkvMl+Nhu9l{MgN<-Yl4ev_I66^E7Gx_H8NW%E8FIzxA7CvU1Uv%{HNa+Cp~GOGlcp
zc4D-V^^kbk8nu_j9yot1#pAx?jh9LT9#<PEYmvZCZtL5hJdumd(@x)^%RfV-pYz(P
zIk}ZkJj+f-e4qT&pRu$<(m645k2IYjel)k*7K!_`XcUnl8=TaDOpS_p$PIrno@y`5
ze2?3bHgn@W@F5B;dv|{S_YbVA^Q(oP7bfAulcPMsIBF3u2*u8UvwVp&jb6e57=s@k
zKbq>H(p<LCw_FuU!wks3sogX|B@6={Q{owCcl>XcJrs^5NqV(x?c}CavGC+g*hyFg
zmY-Sj4xwN0?wbF}CWsDnV-AdqC42mH;{&BCf_edulc{%|Q{x@BrKq*2{NfL13pE7*
zjQcUd2~)8%>}(&OYl$@ram$#ZjCRYI9?GQO12D(I)jd*1sXNJ^D=bg4n<kEwQ(pQQ
zI2s3kT1U6`bP$hS5>P4MJNz{MB~Z?67CoR!!YJXzRsUmRlrdWmv}j$GJ{xmbq8nl{
zTE$~D^?n=-ykbH<1FP;SP@xKam+h@RCQ<oCSt~GLc+oNsUq}D&f3mYfOfkumsRdNb
zWv@=grpOP?=Q~}u<{&GYOFGQ9!-^1)Fc~w^)tkCLU5O^&=^4E?6zI6ZQ78FqePvCZ
z>HT4*(`*jqL;N&w_h^2o)Wy9%K4IoMQ%YPmIQc~*A6|GvEHYKxbsKM(+PT5KmRk4i
z72CdKac+J#pZ!!>u-@y%^*IG?WNt2cu}x8mW_z8o&wmEJrh}4%(MEeCh3hUsv84?`
z5nOIbtLEiu{C#QR@{D~KZXk98?XJTA$Oe7CW23TlQFQ*3K3bKjyR(W+=B~b&cxCx^
z-h=w&F0<u=yij*bREE+3GjSE-V7ppcj^l+K59Fb93Uq)%bvZxF790KLDMJK1VV4Lu
zJx~-B)f5KqD^I*g?hZUqAIVCD9p2c5@h|cdhATJ(OLeu^)h>7T6eW32;Wf6Cpzzm2
zj8g8fhx*Si_kDQ6Fy?kPRJN-t<dS<g;-T|?lg+5+zPH$kMuJ$t-QCSc2>Ya`ew6*=
z+3xZBT1IT8FTU;PSj9aYup?F)6>@RR`OcWVGJ)n_Ry@=hAP^zG=0m1iVIeZ~aZQ%+
zJS)5FpcS)v#u4=tdI(&A(d`S`4mg@#<9tL-pPj-R=+v7*R)4#!mU8dIYqCj-1YduK
zh&||UYpGth=hA=KGt1Ch05jAcy;Bwi_5iu|c=e-Z)yB5WyIl7K9E8WbGk=i3N^>r=
z(cUwx{aC1mKy4c3uRRknzmZ!1!cosPAL?lteE8`dD2S%+Dn1)k`nd`B@iWdtcF!=#
zm|l7wE?|V{`B3+aGxJw`Ows7srSGoCCa#4&@l2cP@q3&~lX^=#8<P>x0CY|RwRuqw
zGN)<e2rW*#kAxQ!Vo2EB-S0!hzHBJF!Tb(JcgxTA8TC`!Hwj{Ma-Tt_jwhIW>A18U
z@*S-8YIeo~j*ZX8cJ9}EpLCrBN8)#gg*BzzoS2eJ42@hm9#OJd9&ma9Pi&0i#)=_R
z_0Y<b=c@o|=xbOX^IXgHF5%n+b&tcwCsu=Yw?(M{(}<zafU-v|gv5%ee-eR#J(>ZC
zF0@s!IEuR;LS|jz0~Xop==aU>MV2Z_TTEJ%bvCPlvZQx>Qmwkhr|?Aa5TQ4OVgiV*
zV(6mv(-w1%o{&cQoupmFwf$Zz>>#057R%Z61Svp02_^{M+g<hY6)1OC8!5957oZa?
zUnNts<+BxrtNHExakF(J2!5+t>(*W(`bWtB=!^~bLhZMqA8ak(DPgyqr$D(YVSsj=
z8-I~q8Q7AoX-u1dozWzrpZEmbJw3Q}5iKhe`0Vff6sBe6BHL8^=wsgoGyTup>j!<Y
zE@Q|cfhwtFv8mEHm9$!B|ML7Q|Mlab?3~SYg4n>1D6O8$Ky$$-R`Re1<7X?Z<B<i|
z8c%pwEZU>qT<lxzeG*RhHb!nH-FmSF|JYn#bF>+g7?$mcXPG&gFY)cF;+T(nA`ZfB
zu`p)Rwa}1X8X#coi`qNZFo&^bEkBr2HKmY_n~spsUi5hPGoku&dJE3vLSb!#wYBAK
zjM?#!^wBev04EQ{n@b^|wn;*QS*yPf-j77#BG(ZX6xj-|XnB9~$I|LaWKQ;lxT)2C
zUic&@ksUhd2ai#+5zA`53_ZQ>j#WL9quw+0xA2&5u*@MO|InPnZrcrCj`~1&)`xSE
zi-DDT@3ZEDV!R{_lbz<;aR$8(lAz;DCE&$m2Bbe8k*d7!;{Ev)^-ZcPBoG(|k2<Jo
z$gh~fYx`=;xiQN1U-BAjmSkv?lAaZ(fcPjH99#J$15%xln{b-nxJB_L{dnnRC1o{*
z(%Ai9G9S3Sj*28iInsQ8e_lR7c3ISI`wd#?2k)o6RWA9OFX{$tOP8r$mVOPs&p4-;
zzAF?BU7X-Ta`yw5&JNW?oNr-Uh)#ZT`NnzT(?>54-gcm}HYpB-jA>4p?4GMH43!DO
z6%Fd6;p%AzL{xBn=_wHZ-IN3D=O%e>1VINBvqW;Biwh43aR3WjR|bADe-#)s$9iQX
z<PA^v*!?s#4VgqSmIJBcBM78sg>5rDA6L0eO-o9roMTw(5EOwSfmp3MI^-zO_zcpr
z16Q-+d<{ypik7uE*`A6zVzW03D7%3mZXbN1EYD%YeU9a4+WVe;d&ecxcfj<1`bGzG
zU`rz6WpkQS-*{mga!OBgd(XJmBm?EKTKD^il!&vrYy!*`hQ^uPF1+cj*-fuIkYxAn
z%e0KX;o;+OJ0e8(1giK$cEYnTHFCz)JCmaTa^$bMp|YTTe|Ty8F6LI_XLlVBxxL@o
z1QX~W-hM4{hdHVArXuUOb=}AMo1Z1tt|K0q#qU2t;|cg%^;}yXVsb8VIQpa*uDvqw
zcE(S#=d`p96BVuuN?gO7u9ZI&$u&-gs>g{|-&{~=L$=1Vt7JT8RYu^T@R5~QH@3RQ
zJOj<KARO2+zE>>wxci&~F{Y=VTz9{)5xE?GkzvVgRCeG*yzupdpH)!fwhF$wIK_IX
z8LYTpYCMTJdB`;8`F_34eR`r43OX)p*u;|Kb`aId{>;3hK1^cO$yld(ke^FfS=}|6
z+j#pA+3<-XaG3v9c$o9j{q~h<;#6q;LA6wfxb}3EWLi;3ytw~L!D+iP2u-4QE)0G%
zIep)JDEB>#&+k@NBeKx!MInhrobgY<-?)^@c?qIVUt<gO(_j+N(H!(uvDf>;m{-M1
zq*^jY{GP4l@DY9S3}V1DS2BL3Q7~!bdn&gbdPa1`zwEozmF(_)#Xk4cs*nU=kjVLZ
z3wJdqt-JwT@}L8o0(G5<K_^-HspB0?B=xUhQcGC1*qXUUvBZwTc(nd7`KvnntxWpG
z0g}f@ttpPmM~v&#8vC*vMi7mYe3cp;^;+Gbg+f!3!1egSH?lJ}tE`m`+SS0AF^%=M
zBE$R6ibp=?KLqba>^}*@FW8$F%<SZ>KMI&cov0-b*#>JQ9EUNw_*FZ0P*b@mPsE(n
z*l(Oy@Bux~CaMvvB^547PiFe{&3npwRp;u5%kTrnO8ld%D0_r{7}<R381kA^_iP$c
zw3u~zlRN<$9Anb-E=8D}qbo!mqQCQ#4WmxNDDvib4x9!i#Wa?Bh!bH9;GET>!Y2w(
zR(6HTH%47S+WI-u4_eP*$MK)9X(rkU47ou`H@}_q2Roix9UGM@{;XBNk3pX#5%38B
zT(aeVx-(hNV~kq=-52Y|b-Fu~#i#zL%Y#!r4rB&kX(}x=E#kScrt}iZ>#dOvskQvT
zl_(nOYdckBq>>J*1tX-{r%oXrLm-lIfjGqPR|da*ve-e8zk$v0)bV@jex7EBF=<Q6
z7XnVcjyem>TbQH4CWP}?E3Kn(*o!=0D=S(u`=G{b<#gH0?+*2k@u}x33}!A4ec65=
zS6l;D$XLlx|EMr{JN3&AJ`r-7$|`bSmLFa;-a?c(SgB>C-mTEO)k+;Gd?U0vZ^imb
z-#v)uJvc?}V2{#l@!q|hY(^1;sq1_Cr7Fu4b^?AA8lzGR*{yfaf>lz0HRr?DkpX6)
zzyQV|>hFA+X~oPX@YPL+E=5sbX*<Rcw}<Mo@TCH6GJTNreWO-h7hu*DGPyFw=lM{M
zGBMEbG>{do)h439m?h~yw^tGc+f0P|{jCSvP*+YKgwSHTFxpKF>cl#=isYi0>;o;S
zuImbqo|1>WhoV*ml#~W{p4Yb1l^6!ivLGb|Cs&-A%bb2j-b*cz2CI5g#tOR!_rZ32
z;E%ne&mD@uJwKcOeVZQ_ACgX?-O3U_1W7&)Ko9eJS3KyN#tciIedjXM$h$5f6{anL
zPDiymNh?^XbBc8%1L})lLo3ur6TyxilboxShZ#Pzm0GaPIXM(&*V#4$;xoK{&C5`F
z)MdAwYDI&HR4}~I<jn!E)WT6gp2{C>WgobY5|g2@X2Qnob-G%YZYuTeYMeE{{@SK<
zs%J~lH6WK$ce<Wk6&_@`GOt2vu%`e^)jU2)s5;JAC8e{S_vMpHG?u>1xzsYWR^<&D
zo1Mp)^m81c#7>u!IV*n+vJ7>ZLOi}8an?`Ti^1Tkv6|^|)fkPf_?zQ<W1Tyix&oMN
zeKFv0x%7PRD}-JkBYBRxBpV(-(K6sTZz%Dg*n(m=uw5M#>uy9Hj<|WYd;@`9Ak?7w
zSExZgP27CUZ5NNY{wjayPre20C{9sm6B3U|3BhX@*JJw~)ud(|#H+{lcD$Qw$al2i
zyZ7!GtLJ#uyRn7GNpYXt_6bf6YoLwH*8n?Yi_4GFic1`A<W-&KsY?u-3v{}MXTEVw
zwxg&Y11vGjdCa4&=c|s<7vp2hs`O$ENiL<LE?QhPKYtbbN+7HB@ssnb4)uDp>bVeH
z)axm#<H&Rs^jAQsK|KegTE36Ufo!i}z`-uIS>n}D``Qb?2xnWbOa;JteBqIQy~JL`
z69%t)SIhQ<lJ6lT`4cl|f~F*VyvBEUNS9xg+?xHZAiGhL#jm%w7fn|h(OCbdfKX@v
zOm*pneGSIFg5bk2=zwk;oVs@xIy_ZpqJOBS7qrYW1JILc(ArV-JOBu5OaSG%jS~+s
zrpSK9%FRX1AeA-@3wrK30EZRK=qshM9C6&lf<h}8YV6m`P0)DS_`YL}S|3B3;#Iv=
zK2;Zzo^^&7n^*V0SReLln^bUQR1I_A6f3Lg|7dTcKL38f++6K|7_;P?USBP;D;US6
zC95Vu?kU#bMbz%ivvns*$b9$<g(0r{{ytx^oII84L3gFxyypGwlCqzFUu<>y#Lbr%
zdF2fIHNT%0lg6}>e&c&lS$b#8L4xS+^VSNKJ+CUM0847N18qu~)lbULWLXfgCJSt2
z@8%!kn@rR&C802_cV9u+aJZ9_1Vvd;XbB?=YUIapo1p`lR@9l*&L1xs&*^Qsp>o>^
z*rEWfmPKnHEKHr~OCRmdp~|t}onG}Bm>q=$Cl=3LeCV$DRC<~WGDa6y!V-N5>Ti2)
z0k7nNQwxuU6t6ldhq1)(>iic~2h-{<0tJUKOAn7-zT0>IDmZB7&%FO?rq8UvgcM-p
zo@H}dTrIIDi>x_m-FvL=dL`ADT?Xb5R6g#&0C7~6RQDisUEnUEje<13r8GnegjavR
zXzeZolMd+)a>%p9x_@%~^8_=Z!#-%4)57Q}0!R%=b+Cn#Lqv1H&5Z%(K<Um!P%^MX
zXA1LMmWSCG5s9$L;=A;-M~FP$p{kltCj$j`ahqX9IUL>J-94_}>7clevCR8HY4f}(
zF}7RJ+x(l%H7r{crl1Ig>ndzks3%^Pl^I{#rK=1Z6nd;`G12DiF`);*|2N~h9_Bvv
zDS~%H_I98!zr8%;n9mS?8i&JOfYmy!(gHT~98XL#1vW+MWx<qt)`=0+>Ggg^K|_>C
zf6+0E!tn^DVwG*>i-r1!o>#vhz36oXi6$g0qotZ=>*?nKn)JE^$6A>x8gz%q<Il#m
zy%X|KT+jNeW6e@wD*yT-LHeMBhdA@kSEW&{_jp*s1cyQ!<v9>Hh?(FKLS|p~0Q99T
zw71F;n;A>k%1;9-@otXCrPx^^t^gW+J4JRNgJy;$haSig=%VQxIG*1OWqv91DG8$Q
zdzQ+E{PK**X>MF_oN<tN`+JlmRS$fwkNl*qgW=_aiwImw^`37Q^qtA^yR=&?Yy@xl
zjm)nmv=AB?O^X5L1~Rxsl?e4wBbX>~Iu`0C)cCGv>-4r=JN;hM&$Hxi8o^2tmzDAI
zSM+z4jJXiK76yC{qbg2md>;g?_S4b9@fH}NMzMH{5z!;Inwx-CkPk2K8DVprr@kV=
z8uSyn$YsL}<Qo>GSx8Qs>uVg#Zf2XVD9lXGja;>#7@aoVpm%$tQBDA17Omd|qGMoe
zvQ<Wcoyhiv@I)%bUU<!M9&9)VAP+?aQxSJ~vTbywLXK>LxMF}C@9jCRvq`SlVd{;!
zb*bE!s-JFi!k%Q11L1}nK<O}z2X6&`%<9&xvB(TIf*dCVD>dUB?&3GwvEd;j5I-!q
zGPFYFa-EpO{naF<&!Y@^5cJG8Z*`aQ;hhU{Lf7aA0i0YMpk^XV6`58i9j(|UwRr;n
zBnqh>5Zh!DqjS431<w2+9fN3MwV#n+KhKt)GMYJ!dFcC)f73hxWwPvLj3qY9aNS>4
zG!mqwkMMERcHXUmydKXGg+0wX?b}?(j435$y!sNC%?MK|Te}7#N?zN*2*&e%(qy0F
zX4?iO<RS0#boCsl{+y^xX|#t*-=x+~#=QomI)W+8ucf?nxxTP48s+if!8;W|tj$+V
zO)^m4G}{Nkk)DVDT#Gn7!~R6uZz_35H3O2&O-E^9L{vCVy-Vz0Suar4+da{a(JB_`
zTpw~D_8)Y!fBN++n#ZVnu)YiJ%fz7;=X)^f?q~FXpH|!N+XJy%tQSAo|2Eq@9a?qL
zYaStxR~@nc1#z^gK1{!!G4BX$muC_`8&KkUA+BwSJ2%}M^hU)T0I@i8zH92_?saQA
zUYJr&@vnrI><V55k{^th@7-HRKFE<8lUJyxSV~k|4e=3nW>>293(oO5NOErxfA%a+
zqPSo8h&LqIi*Me|0v2MCL&yc#?xXvjx9fLS0m8)6elFzTYspooSIB`od077mC^_&@
z2_G$Ri%eBHaYl}z8{PUNFJSP8JYKeOmiKnsZaDY2Wb+747Q#+mbt>abBT&?2S37c;
zF3-H4O*FcVUTqpZM|#0@r0}>$!QkCT%VZ?(<W#z@tZ+g5N2#xr{QRu9DCFpfV`*em
zfK@Tz5$bp~a6O5N8_&tk`>1PyK7KvEG_#;P<wY3tZcp;c&xwM}65O})<F8TW#<oOu
zPNiM(h0BqS^^;E-qAq7K5TijvlcOHAm|1z>P1RDaYg4x8?_S*MUC`dwI>@0i?;b|P
zKk2#K{cDJsgKil&T@6h%ZHk?6&#Kkc$&SI-ubIJXpxv=)f6TD$x@#_8mh1vwhTr&I
zoYlwz#m$^N5!4I#*p=818D^#IKK)}^W%D>a37V5-Y_?~z6Dqp!SUA1@jjnj_yxqt%
zY;qvPN5v%{l!hgIvt6D7RRRY$Zs*Ax)jFC#5z*0oQ<m~|@R48l*O=yj$+pTh3Rz0m
zi#>_uKk&Y!>B5CSs93&dh-%lLbTR6c==f7n<dM`1bi$yqx_B^+{6*^tVG;J$K_|hH
zLBDC1tSapakpv;f%Dx^*fURa&RoU<A)wkH%kY-KNTVTzC4M3SJ{I}pJLE^r~$gSAZ
z0fh(CzX}gUQ*D&x1^MU*gc%ph!X(}tJGkDeoQ8OswV`x)-h8T*$7+9O))DNwdwzhg
zux1lC=%Bm9iVJEz4$mmu@GNGlpwQ{it?@gxHC1$8CVzVu^y%>t(AdRwBHX*I2blFG
zd}D>yvR!lYwY)cVJ-fPiowpu6PiE%v#w`_Y-Rq!m9m*^-*Z$G!-&YpwnDqNmd_dBM
zlgeYjy7l~)3=P)}^;7L6W|-D{-tz#~<*g9*AxhVF_vm44d1LbxRxktoQ2eN2Ex2as
z6^hc-YU5S{pIg4E`e%nSn&q-!ai$Y+dEeoI)dJ|!{7}oJwx$pBTF?P!|DNLfbZSzW
z_nCFzz%QJAB^iOVXif@`=f@t}X9~0JzP|4nk%_WbDUMf0&-KOXA6!k;6#__xIOud0
zqD*M7I#qogv2tBx67zb_-(%mznK*yB5|(Oi=j<~ej{b<%ix$1{J}@J9CVY&^PkaKs
z3F^uF!xzc>rh&roU{EKIckZva>)C}dh}_G!q322uPS;!6?R&brh@9UFw;|`t_Y;?k
z31MBxIf7A+dZU`hz5JAYG0SkyX-n*&$6x>elEEe><Ej|<8AaMIe^3B5ZG$-dmzxTB
z$#%m|{iV@4FS^3#DSn0h)p>~eN9RFx`oDA@1Zj8P=K^R9lrn!tf>JC$NZb(g)9TPc
z4{d8${&5~zai?qaB<pj_f_pSBT!A;SUU+sM=2M|(_NtT$4|$(Exn8<%`525sib?Bq
z3fEh=6=4#P?H*A-&SHLH*vX8Ix5C-!D#L(>fX+Pq=7B-l$`vd2gXSu<_ci;M<0=cu
zjZBDp^?I~JBF}41@2EDt-kL~c$WG*9=|tL%9p%x8sCYl5@?gNMjk{<0%~lT6oXL_w
zeLJ^)6@2NB=#^}i7=JTJUiZ_w3Ss_aoRpYt7jF-JAwp12AAj-<JAaij|9f%#x+kJo
z+`+Aa6l^5p!B@+k7Ig>8pa?N_E^C>w2Y=27i|)pVsY)>s3YgM4Fc*^f&96wWns?`D
z5rAc(cN_1nE2W<UYNK^_Js{DqT)CNq#DP-35H`lw4Fxy}SQ>+yY<zK@d@%$osl(>^
zprH>kr)wV0G*6-!8dxLF+B8p$BwE);;DQujV_E3?nzudy%<TJF{s+^Q+h{}zI9+Nf
zBn)4wis0G)zPjjc6bsm3r1XnXK6zB~!)FE=^Pq0zShY96h5?)6FlX=7aIwY$wl)YM
zLnt@vc!c<ndm$Vwxj#Z!+mS<1A|}ivnm;cyPsF!g=e-Gb4h&Ezz%{J6<CgijR)!B|
zxHYHy!`#5yxRr<HT`m9WvZTjW1Pu+z`C$9_b_ot3o390;WZivBDq&acCyR#-$J@f7
z{2G3zj6DqJS6jlRiZL-77L4WN&8P3IEY$*SuH6=G=*aem-*@6o(2K_TOqF@)UpoX-
zRCJA)w+`M<yO_n4=)^|NV4|`{Icnq`+wNmPSKkiBAr{G#xK0yiX4&K>!XC4l8K9~@
z(LacYoJhU=SoEg)w0r+)$?jcUMpyiskG?bLR*!TDvo}}_&Zbz74YxzvMtl|_-zOQw
zue;YqRe=AGXsE|$sBw)OC1i{Yrqo^GJA`N4Sd*$N=MWKClKs>)o>U6IUV?++m8o**
z=`nc!@}k*dqX6|2!zyj#YG(!a!uc}sOK}ji`z<3Ty5cYcys^3h2b1R$ilN631(;C@
zlAw&#L4d?RB(i$^^GMX|#+)V#R3#C=TuF3?{0o$8xM1K<HIpI<lwt{JK8Rxc)r@T7
zNLZNvp07mZt1t$joHKjB0L%H_91ES-1iyNwn7K+=PqBtA3C?xYwU*xP-xr(HeSJ#y
z-m8Hc&a;&ZH1ADm(kdWFAY>|>@k_azx4uodJNm?5>rWe)2xi?ftwDk|%xqwYL%-lQ
z<Vq{Dxnz96Q*=IP3&tQ25a~ZI<xqODPN_?fU)B=Bh#t5>NdI@#PALPIz1p0{fA+Ro
zy!5^y1I+JXv3k)W^QQC5PgCZU_>||0kA5DS3KNpEqudsCPrp6)b+ph~d?!;Dz>=Ey
zl7uHKw;dT+vM(vK6bN8J($Lezkp?7#1=c(YJt|6)E_~83_h3b=79cT`qtiFOK5e>3
znLY0YgT{+LjGYYu{M)&r$vVtP5f`8NVF-TKY94Gul1@QNVJ7pvLtCW&@QMgJ`e-0<
zodtBJW>~XkTlORqE*4G~oR;PY2kr&Zj|5@aXjy`LB6pEN0?5ywsAX$9zGK!wtD|JD
zhyv+=IoF6+-;8TgY?9xynL&IYFO-&YXDGiH^>MEc5H|6HsmMsx#aknd6vh*;k6CV;
z$)KazubW&4ZO;r6SFLg~6SCdmeP=D{cJXde@_T4HX0^0K_4QKrRC<2$QDYO5Sjgv^
zk@2({?{c<&k|ou!fxcR|^|6<W`hGvdhd?M@)Sd3}WnWMARPH{(E&w89*6~TdM_z6I
zDTY-k#wN!fa?m`mdvtLplA4{~^2WGsj3<?;((rg;g2%$%sx8BMm8m(_jJ^uB@l56c
zhDz1t^#e%&1(?Oe{(dE_gI?=P|Dp}xG3mWCtx$nUP^c>S{D7ynI8818o=8n9EA#Yd
zcUztyW#=(E<R1C~;EjidU4ZKpwO(W>uxmzgh2dlWlA~CvhjV+FK(<#Yaf-vySGNRC
z-A>-8KHVT4wSfhy<>P2=E6AO{>}?!5N0V6ph`o19ec(eVG@KHSO8Z4~Sf5k~^qTmY
z&6w+dOA;^U@k^r2z9rqA?n^Ph*DE-*Y|=U7;)*)O%jy7;Mbvtr9UP#W>E0jM!@%&v
zYcC9NwLFJ}!mg^9*b`WVmUwWM;5HE;`|bfqQ!75fxb~F&Q|~oTg~ug0KnY38zC%VH
zaSWzm1sq28Udz($=Ba^UiM~tnWOd;og<OVZtLC$X*G7)7h7Z9L&Y2-#Z}B`a+HmfN
z-4WZ7T`(xlG@5zkjJ}^xwr_nGuDkzr7UF}e8XoMKv7M)w6yQE-cxT_(>T=+u{Sima
zXdmehTXS_-)sg>nr<zuA+nP?ex`gjV3fLKJ*HhXSMF^-yd%My?yD#&HcAlyL2zbVp
zC!7KOv$eXY=EZd|y{~)0k6h3QXX$cFAS5SIx1u7go%e;$<i$v0sAA`i2ZS`UTeIZB
zXaV;8PxSbY>ni&|?|8P$%)ItCfIHlVNRYVu^|zD_U|lYDxbavPxua`;T&mt!9U1Ox
zn(ym)bTqKeAeNr%MO(nu$1a=QkJw}cg^9ggqk>k!op^bw8_F5A-3tw=CHtAy`N#Mo
zqn!KsFRomgd9bjNDb|Vv^E~5VOh`6@>J|ncfSgG8EVf>2;pSt>%X1<u5^M>FqRN<b
zpHIBr-{zqf-6sr5f`&6RzUV1z<GaWH9CZKP-M1q>^Fx0k9n!7FYy5;pb<i8CO=URx
zW;4>AXSpT660?}WrM^DwF_4oy164(Q5HQCs$Md;+BYz#@CN5clu0BUb$Z=lRkSgyc
zUAeuw;#F|kHb0nPwR&UOy4j~VS8o7#r~cI1qcYm!TW$x>HF0=_7>GEMVpKOJsWLn=
zHTfGtY?7j-?0+kw5fh}2rzhH!d{4?{HwlV7X(VID9#~S63Slgl**&a0LM#S0BMhY%
zQeTzey3;Pg&^`b%m2IJ8@a?3X$y`0!Urp!E-}0;2(5rs=#hd2*oJBW1L%HVJ?TVd{
zn!B?WG+%)X4$Ki}uWezPY9DaFee-1#f#Xp>p-S^(1Nr!oXj5@84VaTL+{fUXLl9RA
zl5D7CP+6OR$3PC$aV#%oR?F``wStd0+yn>H>l)28L%h6Ena8&`Go>nWqTAp?ZF<jb
zbXaJd^nN!v<!i24|8%czO(5iGY-sf|Gyr!)?g;=eZalHb6D5CIim-=W5Z$?|>`*J|
z0e>UYJa!FKuVg8;Ld&c`)q(e_bOvOsLHB2#GG!OU2h3{^ZETy`W^&E2lJVl+PZ?Um
ztOFi-b%6YJw;K=kWZ-w&Uhwz#4i+R{O-9(KIyV@7G|3nToxi=Ux@?>H$u$KDm#0=Q
zEzZHA8Kk|4Gd^lDZlrvVpbM${9Yt0t;^P!+^SJ<Ez&TF&{^%v2)-=+$sebOg-0PL9
zqCC;|rxR19726!4yS9?uKd1K+E~@*Trfq+>GSETyw7Q7hN%c&DE^6-=PV9LhR~Aaq
zhC&pFXZD5WUI<;rHB0`d4B0<(Pq1l-c{XA@7b_U+($?kEKqdN-QvKAriGG0$f5(RI
zkvB&35X{3u{9*q4l&n1qg-(i{!!T`TW5K{aX^R4qAZWNWRy7TB#Ac3tPSFo$)`USr
z{SyqBBb%c*Q2KQlm+ZT4#S=MA*1>y5Wh^c94>tTCiMRoORxNSqs>CQ?Hsd;vi3VuF
z&1%~fS^LMHr%w-Gw^+IEHr)S~i>>s6)o%;hQ<b}wmj<i35CENW$~2eF5T&dkp+_xb
zKt+Mb$NmqI&rNUMXD3>(VNia{93$gFvc<`6>L@_G$>~!0jPEX{YN1glK9LH~)+n*3
ziq2<$Tfhja2C(Z@+5LR){LI$PbAIMf_1A$Y7ucE)@%_8b@tQyH9E#s{E?*c81sh_k
zdP_ioVW+dA@W>qNMulchFl4u0A(@hu*%=@lImdC9WtKRMEr*G#+%H@Mb%y`4E_wuP
zlie5@;%tjgg7VuQfI6-)?IQ12?Bh?NV7)%zIrVyZA!DWIDT%en_Jwe&Grpn1AZNmA
zib{qyv4>^6zj7*b*+mweNso%gZ;^o{Uwp!JqYYFEFu%h{riVH5uW%gPQ{O_PdZxBZ
zIPRN`oYdb~xcJ_bGh$RBYJcdpO_`rYFiog9K92U35>|E6?{~EH;X8b7MteAArsvbT
zCcY!lYKK~Q$Q0{vDsIRTDn;~kr1MB>S{JSTg8#P6SJE6Ej~(OdfG?PRG`WlT19(5Q
zT8mQ@#-B;oyZrvtI&Ecf>4tsUn4=D(OBeT%PA^-QvpgSh5BuX**2e1WqKf^uh&Fu6
zT;=yebnbCgqTt#!1Lq@++`wIsuFh;tBc>B5;S+^xe8S{YuX9rA3Ys+4d;Tq=aKgAk
zHBJgt6lS+HjSptgYuA}DmMUice|U<k$23L^|4Tzb=IM-Mb5SmNm;>#O*~i1e-w=$Y
zuuhTw0*Q){yR0$FcA*FQ;5yBQdOc3X+(1?QDkd9IpmITX@^uT6A(4$`Jnw5Fbin?1
zlo<Eawa?l_5qhw-<hf;ErT9BLY@yve-ZY@toOns^d{wr2W`k+hiKYeF3Zqbdp<!=4
zoe#}xZ1g7MefWN`U}orpmA5W(+!m?;F6(_L6l(-@H=fhm0Rw^RQvLBE>PzZJfEGGn
zq60J%Y>4}bBt&xprsi8G=H}{e_94r7xu+mIhw~ZxSe80{(T4h?WaHc;Kp=E`V_fdJ
zX&iqvzq22eN}Tx^ehA48tygrXtNZi9eck?UgOySPWV{gQYV7F0i<;+D`)xj~);wgy
zdvhvm?PJ~}TYh%OBb}_=d~ILJo!A5RVu}*Yhi9hJPzU(RT^ZfL_}wwU!Cv{X_GETP
z0Ekt+q9j!vbKJ&(A;-x=@F1PCrFW<;j6vR7&`-$O6FL1B1n57%O|aRJ<Y<Ft786`c
z^7`ugTym=Md>z(k5{^mu04$<CUpKkUyTv6!XKulATzY{b!bB~aLgY%*P;OJr55R0I
zrsjcqZfQlE6*4gXk+sRcp9n>D&JskWJ)Rd^p_tYj+D#(M)37n~WJ_1BwmtyHF?`OL
zm+GgizK}64=<_rYtF)Z4W08hw@*L=71CYv2rsgZsp^RW##Kxx3jz@f-A_TqpY)&_l
zl8CY)rr<J)n(uKfn18}PG^}8snL39akG^BaWUqHbnh8kRk0mx8UWNz!TU5iU+bRT#
z(kqTzc#i)daHxy!0qOO@h1K)MB*Z%SCsOxu>HfW_q?ffB?>mw0gHl~n9M-EDstf7U
zoPq_^WL0zRFIW7e6abGd*Ul~Q2q3)mpwl=ug{Y)(TXFYVV2#cSs=rE&nWs7Eb|F;`
zcr5k;6X$~+M<Jq~Yo<b%T|sU1=+=Yx-ETjqB=7}6c!J-^>v?T}npUhz^9WLeKi$5a
zmQwW#A~`|^a1L&Dp9j{}A#au9d%v^u@3RhxxJLnzh3;5JhM2K_0p{$O-iB7QO=JT7
z^JtZpKR-1Dcj@%i>a+MN#FSPl5$129=Gr@(!4G*bOSM=Q8-ZO>XMWq(=R^;W!SK_d
zOfx!<mA7%DEO2{I{9@+|Z-~A@Ti?<gVaiERz`ls4xm8pwm!7NuhJ^QAeB+O%2{vLV
zM#vG%F1JNR6(1Jey^@tOm?k>QkCy3A+`e-YJ=wuy5<CV7@XW(hbc?NS=i@-B!p&se
zrS+uw7iBXPZmwL8j{x;cMEA->SJ<7Zc7DlZF{3yGL;W73_u1<lQv4NfL}Dj4>AaL>
zr5+UTRQH@MnIp2QypL$=>it<q2x$<suOOT5%eI1JZ$LE`LG9+TyZ%DnH0QxAsg*8%
zc8l;JYb!=hg(iKpM5KYjx5Tk=%j9#9aSbGXMbZ13m=gY}-;=(Mzab^Nh{bY?*D@dQ
z3Vw-xmSv0j^%~XXR?wE&@D!C-JlW1;ktLey5&e(M!X4cs?>}nzCn2MTot~!6|HK)<
z_v0Tbzv-0<#X>^E$b7m<4gpCip%D5LVLw$<3ZTaU5snNwin~bMOg~39w1oIT2#S3^
zt-Cfq!DXgRzj7H+P)m$t6#1)qX~aFY6murNww_mc3Oz_Vv1>G)hkdxMj_lLlK-Y5K
zLmfB^4$*;)k(iYDZsl&c$=rP%k5XNuzGzi(7^lVjpM?u)4N}O~)D6OACEo@VAaz?<
zjIZ4J<x;0v1fOqBa!B4aj*l{x^b0>S<!v7P!pG|-u!ka#j;}6o+2bd%OJXqqX0Tb1
zPJNzI?_;j~?=2s80q*!d%xJ*BV(Bx~Rm>>CxMknr;N{l?F7#BIHH_%N<vkE+aCeC{
z>nK;azo@-`g)meLqoI|9*hq?SPu*5qjN9$MFy)WX<e-+n1?2sXG{i+-q<p-s5TcTe
z*uX((*C6^4F_Ay`BFMSa@mI{SbNg#z^VZ*X5&Fwo+|GM-zbe-F7dy@AjsY8FEU-4*
zyglB}&E)haP1V>jI3))|HUn==1?*yt>4YxXEV}`Uu5|}bfpAbn@Xbfwzc-z$rgO|X
zjZ1VSSw9K`Vq$heT6a=dt^Mw3-hfqK_k1Hl25wmE_ivqrIamy;ZeI|DEGc%s9YhVy
z??oai%zTa+k1oQpFNSi5vhwG0@y!TP&_7w-t9w-kGG3lB;<-g!r;cD8{##TI%20K2
z3e9g5uo7MSAP?YJU-_YQIzjQadi9hkKs5UJn^WD_>Fu?ZT_Cg25G8$C^59%$AxgK-
zw(Ia$PrbqYs7oT8128Bcs@(0-c1s;iDhaGg`9IaYXHb;c`u01bfFeN@P>G64Y$WF_
z0+J=uAekoToDoovEFw+Ll5-OU0hJ)ol4H{ZCFh)>;a%;_-tYeJ_k22a>eM+?lr=Sj
z-3`z4taY#ZzOLUjg5#9uw3F5MH`@c>%=!pqYL$N+>@HAgpom*p4yUHM69GFrtbN4%
z)@|hl_<xsN<YF`3?AHN@a6K_Okup|hXf}5S5o$cs!svSbX~Z5VjyT{-X-hJ_cCTr{
z4hKfFs+=7A<w$+nu%^`tTlgciyAq!soGqaTe=^{#)W%$`b@0)qoZf2N&x!0h{ds7q
zc=(at_sUNUf3b`W@iRFGut?Qu<KS*y1n9i9()|VONdA>GG%jrzW82c7xBSR$$PKzj
z;e?&^R88lZ3e&&h+PsU3Yb<oNGHjE`v>EwLByn2`ReG%xg8RW-dj9@}m09EhL6mu}
zu8DEymD~d($%PQQ292H#Bjaw$FRNO&)Q39L0;3N$^Moj!fC$81aOTv(Mk(3gN?MoG
z3PX%s0o!fviRcCQ4nxa$x`xOF+zC3k2k5iaYRe04Dcs?)P-#uK*_dZnpK_Kuw=Pr=
z_c~Gl8$qV4&IzKkhf)3|_LfZ3Z-P*$*)?4K_}f&Xw+C6LE80c&G=<@34a^SA2L@2$
zQ~nW2no5H0r{l-3IeNhU^`q{?O2{OO(D<tU3c@+PHu4E+bQId&yJTdIFFeH$sA65K
zZr;}}iEh5^S3Qw-h8sgSu+p6FNNON$jfVU+)9rA%BMR@3BworFs?+W084mE?nh7?L
z;Of_MOohb_vBU6qqCw|^*y;9k-DT#*?>xn`;c9Q7o!O+qO5#xBb`0(>l3>DI*eN-%
z{=1LxTN+prQ;UfWKx?<I%!4&sY#ofs*+}?JX*yr))L!%j10fy@g|6!={VbIdI4FCa
zmr%dM2NG$BUZ`)6_%Grh7&1(tV~}Cq6|V<TI$j)Y8ojOV=y3`gKL$#|Bq0i#-H7a_
zm%lipwlN!ZWe*6>dpmTc)34?0)N1RB_m4J~B|i5a2({%N>diApfvy6?AJu(U?s2UR
zv5@G2UUaYEXdhvK==tyNV476Yw6An4*`0}9sX0y+CAzW^hgb8%ik=#rALUop?Jynz
z#T<Sy^9vRzLe9_|7P5;><y=U<+x9;b;6+t9bkQYF`=7q3kyctNB=A7dQK{(F##x|$
zHgK~Oo!Uk_6F5=vlGS#rQk}?~%Z0PCdaV*#6CX|iNd)w~MDx9;f)C?OylUOSJ#fOe
zM%Z5M)@c&x`{KD$r}Y)kGwdo9gtF~!4vx8OPODehZg~inD9sVUz}!j#&>3d_&>8Hm
z?XJDoT6GvhxKJmBa#z_eXI26mkB$>3FYvH)da8kJT-5}vD%*VXuy<}nOcp59uCvYQ
zDgbDhlvU|A1e(&tl~dcz^YzIuFA(b!Aq-k|J7|vy|A@+Ud2PGtCVKd#{Nd;u8X+_B
z{fJI5s?Y1<XbXLZ-9eB&h$aAZQkguw_6@P6eSo+Qj;Wsjh~Z3dzy1f$&(Uu2L}>He
zhpx8{eZ1o5ls?T*`Ws*<Du(uvBzu{BU?`K4z{UEkX!KSeAQ>D4&_#RF*3FMTFUHW1
zQ>JL$3@w7z9yJmUJI|Q%eMrY|LlmcY^}cT-Jezr@OrD1p?o<mZke!uE(7uziW)^ki
zm1e+76{ht48saJpHLP72!W)5cu(26t)ocC<5yr{%nhgRg)^6|~Tac#PCQFsW^q>lp
zF@Q9*;p9Qkp-GFqhL-Jq;2z%xR*Z0tf(P`Sy<lH&+1|XFkcYNv|NXo^)5z|LO8UR>
z43J@lKX?W=J4{gx)xwu+%{UG-HTgBI46y-kSU;ByG}&2v&`io#&VU`@2q4WJ=d{xO
zv3Q15u<ZWm&ZQMJM)}4d;ia!E$Ug!GMx9n0ibK<_AA;r~D(=JT58sf;^y057%iKg<
zLum1Q%6E8;7j(QFk+!&G__W$jMf|~9b<pB5m){-3Z-_3Mbo(ND_>mU1Z2r(wA%Sa=
z*L(cVNOT7{DP8X;XlldnXY|zg34gnXo5v_kcltiNo*~_2qo>~@tkbm!Qz#2&m;VQv
zLHsG5Ue&uwTdz_h41%1DT=puG_`8X*<(rU;>lr`cg`gna&&o$Dv}h{oMd6X^-`$TO
zo0YzXbv%qf%t?TTK57HwJZl>pXy3FQ6oJVobqm*TYM#Z7*YkcJUn4;%t65=tm3XsZ
z&|ab1Dl~(UANsrWGUZo-(Wh>jpM7plehNaV1lLA93pt#di9dgJeroDgg=fa{+R8n`
zLdmb{h>vrg<>}4OKz>>!+s^M{(R^Lyf@4&qU=j|aI{pw1)4eTZGb5iki-(2wQ&^Qa
zj9J^~6U6P+|EMF<G>4`s@lmb*P8rf2zh|}~fW0B1PK5Fo7O=i7-G;*o;S%l-<F{%d
z=%Y{1r+!<pWNup2d{`>}j%d0_DoJbaxkG8D@(Spe$SD%c&8Gys4xgRo{seOB-A!`f
z6A0OQ7q!VJWC9F3;E?et*RZ<>Szc7;ad-<DUV+V}FSQR8qkA2tUsfl)(RVY*{a+cx
z`t4C{L=pI2%q{>C%&P;UfmdBTEo$+g@XZ8RhM6yZ2^TAnr-b|a`Ug>E$)^O`rOIFQ
zEVQ@ccDvUnMRG#t?@l^cT1SU`o3*zBUYRU0i5htfUz-|eNl$gLf9jPG7D;p8(RC+w
zyFKTmz*8MGS7zf1{EAr*<$B~z14H8T(NxW?s-gLTDpxlYy+a)O1^s6=lExh7DgP&!
z0T?uLdx5u@Z{+bo9az!GKi(&vm<`^Oqw^~v&xUm%n%Hl*^9=qB09Kl0)4~zmiQq5t
zG8=zx4&d|zSFf?Gnq6dE#7(yK5~a)kr1>J}_!JBa$I|S2*w${)p$TZos*gbDf6~43
z06AP)jf|@uRthgZqyHR6kh=Gnh2Xq@L5Y2zx_;W}aoyfa<)sn)sZ%*BUD2yBH-q*=
zAqW~jc1vtSFn-Kyz0ssUpw1hwqga`mSux)uv*g=ZeQ)thcl82rA{49C{#2w~o6dMV
z8ka!rroQ$@jcTL^17r!{20QV75S0lWY~N$kS|!J7j~MmsE>|;CI*v=Gh%}D-;!^l>
zYhJp%IqSa@0s~t_m7k1}mmH{cz?Z;vZkE#flb~Y_mP_zeUebPkTYYv-_2KrL?dK*a
zE^p$umI-jpcg6BJX4r4wAe60IV%LG>Z7pwGHaXq++w#f*Y0N>hNBu<P^c38=2SIzm
z?ZT_BKAGTZm$4@O^G?4l4=<!-r5`tm@rl)2+W%wB|J`wTaXG$H_t&C-)Z;N=TioCn
zP@YUv%m8nhxND>S#%_F{_3ux%eZ0Fi{D|@PZI3G6)XSX!i~~k-=WhodVXN4Wbcd5J
z-?*APbYotsf*d;T_kdfymw5R4k3T==y=di@9rUG2TYsQ=_rK5q<`)544QB5_VHTAf
z2)ysT2&u;tnd5)I9RS2ROd{Aa(_RBxGxo=3)j0$`i-`ujm)zjx-{{oFSjLsAy?ZD3
zqO+3;=g;?uRO%eEUo0Fjt6P|vPhEFqd=it6E!h3a%1UM1vGWG-6Jp{{$hT}unhq<d
z+;D<nF;|fkcAq-<mTQgY?(qEWy5GL$+?B%!EL%&HO=JDTkrS`6m+BtzR81+SCp|D-
zOam9pGkO0Hl)?Xfw7|c9C4c|2uz&u)OjG#3e7}F=E&lnJ@K67LBU=1FjN4EmgzIbS
zOEvprLI43`1OI=JH*W2-FnL4WHQkhUFEn-$<i%J5#Ki6YP5;0`Q<h<xJc#wRF^A;`
zw(12@6mS25sr>UB_C6ughoIlJ69<_DTmBc?qp2;N0&XW=xgzz5w>Fgqoghi|{C_e^
z9xN|tfo?QFKy0b-{u=@DU+*Bua{)n1;t{3(7q4Vr%{ukpum(W7E!T(u;K+L*7W5cZ
zwR`Ib0Ct4kCVpa}4NeQm2LK_>E=wLCFM6Ok03d>#Hzfx0PEYX+?>;#?I575AdajRb
z*enhQtfA#`_R8Jeo4$5_$J?A5*Z<&3%HP??@0STq+Ip&Z3$wJ5enw}Mzp%Ri3@(1t
zR~F791-Gu7P^!Rbh~L{46g4n(J7K|<NKKjsD{<St%Yzn7PG8a(;u*7<i%Ud(-3l1X
z3kqSHKWfa#HDP{;n^L^aR+2uVdnZ+1ReW>KhTgiPM6kI?r_uk8P_4>vuG>>bA|)k|
zEOBQRqz5bQ)Ev-FWByVi#9q$#g{Sy3-BftC`cpjPXnwATy-b^~YXM0+!`pz@mmNkk
zFu6h0touaVnJ81)c4R_uo=Va#{UL_E0iCfWG9xBhcCi5~%jjie918gPu3S8Q3N<3U
z{sL7*iPwH*)0%Kjw0FB=<}vr}iRXhT?w{t2Dt(STJV*7F>)V0rTW8_oy;$hM<=oOG
z1W}ZUL5@uu`2gJnKqmGPgSBY?_D?4xyO$qtLe3U$>D0yp-RfY=&w&N!>2q9wdcw!c
zK9UvD;rsJT7V>^Mz{n-9cj^C`mA5LV$%e_g?>YqS<aR_{Wnb~QJ<3`&A|y=5R6IQ=
zK0C7+w#`npI&8X)4(`EReYo>W;bdyp-a!Nmv_yHTi3dMDq+Q+~iOxJa^tGG^;Hi@N
z7QNZ<5DGeeIL(#*pN_Q`@*hb1!C;V4B?A_^w!ZFrBTulR_Qt35^mIUIJXv4a^e68X
zn$U5VD1E)Na0h&N95Cj(Jmm*Me=?b+`~R?PKIKS&o+xvIuuL}BODgbjiGW`0cZqZ5
z0Y9ySWQ|T?j*n%x%pF?0v-WB|TCF~<ixcg5a-yq}cej4HC`Ny9N1ynd?+Z`u-hYyA
zbJII?$3l1E!=<giG*9)}afK}>lW+;?5TS)^pJ&P~NF#uSL6!h-l>LVp{wQDI{<2)s
zcy7d|xaWU;R502JIm)Ac_nrG6TF(nvFpk?b<Qo>H3l~ZU*@eWVf|C$FKdH3`t8E$p
z9+&rN91b&NUcO<uk2&&MD3xrY<z&s8b`9-CtWP(`dNooik&y8qpBB?_O#LoKA|Bx(
zek?d9d#`PXV|Hu!OCVQmSo>01UT>fz0bp;6(luqSPAQFVZy!}1R`XZdGb6h@FR)Jj
zJKA6tYXV7m`VO(6kkzLx)m$z3F9wino6aGiWrLp{m)p-0ceojK*X=U{$TrCW2-|AC
zbds^*rxRoQB@|tVp5k|;0e*1(>95QiF-sr&&?BBAjeAZ95{JR*M6!DGlav7lG>&=r
zxSRkxepmZ&=!>yi<}aPY{t7wwSnV{Jtk_E-uK;UTbIQuW>ibo`9_<-DNq74_KvR-E
z_v-}1d#s>~vFt0N6u_TH%mL#%HzorT4rQ3LjbUsUb-_peVOPD7jfCA5IY_qWt9@=Z
z^>tLelvJULs`@J;s}ngQU@5H&NQ;rj-gp)%6X{iUA)&I1$K_w;{B;J(4PU7ARovt5
zO;<(z`2`<ymk!OXntqs4vHlq&%*EC4s8nB{1TZkttn6l$+lHT%GXY<+d;?fsyaI}T
zzkXkxX!WL<3iId=M7RXUCPe}VkR8(Nageni7?A!>V@DN<PZot7w;eUoNdNVK4Vt0E
zcx#E8Ydd35N(P2hnikjKMAAC>_MVD{&~eW%(xI?MbVk*y@gAB!r8;U_TI2iA7B{Si
z*_RR;F(3RVSyo0YP{D)Q5l=L!E$ZBfF<x#&#i3yF$cH|84%Z*yVcPs1!>T{)QltG5
z7V&WKigv;4PgjY`i5Kc)0p~>r7u>So9pR!*xNy5%2`JwRK$St*<o@F$5`2WkrOQEW
zO8e3E*CABl6*{l?NG#$F+3xv3jT-})Do4g*^tZ_P8+}y{vZeeY=tlfZo#M?OZhbtx
zvViN8ye#Dh_tTVD<`T{dw0p#jSpk6p>BjDv5`Q>#!o}yeyxfK|>#xtVb|a+Z^l5<E
zd!aE_8yJk8R&s_chTPZXC#rdk4dt!9y=B}={X{)QXtk9}jrB4Q&rkLMviOH`>O`|C
zKh45$k_!nfg@;?{8co5sZ{M=dNCvr|GHxiKss-(j(*5%L(i?rsUx#O1nA|EUt*WZ3
zSpK#Xm%s95c|AH^AU@5nO8BdK&bLDVkgNG#)?|t+=6cMescqw8q;MN>xAo8y_A_0=
zPOFONwa<n2;_~|j#nBUJO}CMeg*EQ^tcNM&w+rY_`O1omE$9rI;7{DGtnHnaK*-ub
zuN9Rw7FMgOzcJawxZ&$<Y#gh+cr-n2Fr!*<+c#s3mq+dXVIFlRh2nI;c1IL7OVNfP
z7ZDMWID|PD1Acxgs=F#tFGQi#hJgs%iC?;-ZbCivZz|2RMaBJ2Bk^9mE2VqIsuRV|
z^0?;(J_%i}`ZT;g?$i+g{2maj9C$~BZ>p;g+R8L$SLHE`CiMhSC<XH@Th3DkM=QUN
zzL>X4+PDka89dTFJiMwkpQr_1{3q}rJ_`tGR{%dUYz9$Ef!|255l$I&`j?wN*9e}{
zBF2wB=#eedU1=lYVa^am^MJOV-rZ4y)nC<e+*u+?aV)H?eQAvxhkK?j)a2~-YGK*N
z&xjhFd%Q1hx-2AL#V0`<+{G3cmek~6BvAU|0D03le|S-^$?uT|otKK44_}7m$)OPz
zS(mVNpuu}>Pb%6yUT?x@UU%s<r)Qp9Fnw13lyu+ZhP)p3hSwS3FdF~Mj&C{d_t{2q
zN;SdcfT(L#{gI{CQiv&=hAMh!V!3VMffmhxWMTH<r@A5k+EmLd%u7w5vyCw{H6`s%
znrYOTbR|IgQ#Ve_l}ZSInq5gKD)tz!lhV%760P<iQq7_3T<3_6clIh7uoBlo*Lj8b
zhGt%l3O-jyy9^C|G`93Z{yI1l6&{)>;24%7)?dps;92hP&ZS5CTWChHi@sw(PCE{>
z`!-J5OUv#!il=IpsXwE9aOszB=pMUi5S<9RpA)f8tKwy@m3Ck_lfHPS&IITnACBFU
zMVDK_Vi|D*B;9-W3(63l{B1?Af}ELe+BMYh=}X$|ek@$Qg{+&th;x_=4vo?64c^#b
z)hdN;y*@h!ynVOxd8<`x<q;JZ7lqm0$HnpA3huc^pa%!758V9Vq8uEz65bc+1V!rR
zf0^`u4DjEZN`evxMw-6>Y}-yw5;UDk)>i;IRxi!-=OB4?;L2U`G*RtIXYE0QcGWVN
z{$2ibPMheR&m&e`L(D0g?w+0kjEo-L!!5d+$F*(x;k3_A0f4@FBcb$_RL1b=Xr=lc
z)=NNfRO<A6x)CH$^880fI~AD>a9FeI#D|{)PH=em=D*Mg2mAXkv1o*zof|y;uH8~f
zGDH@dMTJA=YB|E78?~CN5Hb=5{LeGsxmU%a5vC?4xg0KViq*Lnt9yHu(Kw)y{H8`7
zSa6{1MGm%+652bSBA~qBoFe!0+}(%HslwTi6i1Gyw#lcN3Ebsj5#pgW2|@yPw1VER
zL^hW_o~K)<Y^-koHkCX|4Q+n{IJU=UYg?1-<A#2B*W9Q~ZLD+FFgDn7oZu}iqi5rG
zi`!}5!uN+@1?Q)>BaK6cgPWjdB#5?W1_>Ciddi7g;bI~mQJg#?*{z6nQR>g;d%=7g
z?g{nO8QycUWr1L$FCDyg2}%G^iQw~?JS%uspnFk22y38Y5!Wmfq7ZwMBPCKMIS+L#
zCb_w~{Jd5+F5{3Sk}Z&F5oVtLrFj&n?yu_=76{cmrd<Fe+g-lR!=(({!m3sO{gWV3
zrP_5s6lYAeBNqlp28yAO^K;fS{u_BeMr`taA6jjYwuGvT5%`$3fy4wzNy_=bGy^Lf
z1GvNCcr8?`nNYq1m&%iZ_|O)r#d0AetzoiA;9w+By07F7P)O4V`VU$=xC&b%5mjXt
zYaHxCvC+}J{j5vif~U0(@U7fWkTOProxI=BO(#8QH||xLHLH7<K~i0IYi#*EAkn%i
zpLY(-<t-uka#R#!2B)STi7{s0DY3C6OoJUA9Yj3V9grd;aTZHCd)tYigMXZ$U^YLI
zcgti-D<@~Xt)Qu+^Qj9__hfUp@W}+E|EmE$)ZNA<Vx)?PG=>k|l=<F+-!NY!!UT@%
zfk1pX%w0|ui^6uTpBbZg)UA50JhsT0{sl)MK$_1Wirn!V<u&6Kb|6EtWqP{0pgzg(
zO&u~rWgV&E=PT_T;bA;8S(B}#K*Ji)PRm~PB=0B0V7w8$NIoo#KTF&L%l6K+G(xTG
z$=&^F7}o@yw0TPkMc|;Xqjnpv;L;w%t}R9{fikaETNuoEu8)yj0EGO3x1S&8k-CYE
z9Y}w7+6sf2Zpb;@g&qRdyp@zdFJfib|3WiYS+vt{F~!f`DR@+ws_oUwMOp1Q_B|KD
zw6%d1|7s<BtMU=m0*f+Xp^!zZs;)H~rJR-kp}JI-&jqRcp`cEACHh`{&}Yt=BuTfs
zmTj8cS*@kEpxfPNqD3e2{?0+(JCyr|Y;2bLTb^1Xpq7W7P3>My0XM<bBUsJVT}K~s
z5Os1x=GoXadG1*<q(R+7t)-_4uXJ?CsFA&0T_YlIoK$E{3WmYPdq5&9mf-#ngfzH|
ziDq7ffhOdXioSjm8v&^w+uG@|*6#N9b~o?Z0ZE;pnB;WWy)=tAm%vZlqg6g-G@=8l
z=a?U@o}m+3F0q}6r5-~ga`nCvotUz!;t1G_m;LluE`s~3XW184YH8ObX{9Vs4ow)w
z*d-Pbw+Y1|Ws~Lew|{laeJl(Z=?cxfX3+}nffc$~mhOGYkHkoWT4yB*eCLtG7<;Vn
z!nNq7&f(&*-E7^Yy@yU?cMc;gS?YCOy<J!%ur#Et<`OHX&?EB%_W*W0#a|Q%!dEu)
zyhdE{YGJ5mSs1v>)4bbovB$%??}+l5BZYJyp|QtL(XNsrtd~x?3b8^t^$0_J`40fp
zew&-`c?gVzB<82GWxqI-<uy5CeVO(Y;88Eio-TNRNj9kOEQ$}`hQa9iHiy|y?uj%l
zsJgaGCGo-ZYG+Dc^kiLs&u>RcA-g^Vwme&7nUl{qM{2D$$&}zU1#QG49zMY|%J)fq
z$o%Rw3kqHX;&kV7d{Fv4k|wmw?WHWQ-v>$V;1w*x!Zsb{o87)YFu?i)k#prqi#0IX
zBjRnM(*&gJ`kiisxz4e*gedZN1R~a(o5kGMUht>-s1r~AY*IS<334CMAV8w>H8@-o
zH|T~d&~+{Gg8RSgj3h5jC4cUz&T-V2K<Y?yBw}riY97;XchV4535qmyhBp&<g74q)
zY%<`zeei7tVEWTV*jO7bU)!&=Q}R{dA`kBWmd{f*`G5l(GCw`<+=(k5vw#0vSy{PE
zr1YI%qVMeReX%`?1g3)Li!~+saz0%pIE9N*eMAXj{@>lt+JoMfcn-IrJ=XI=gdMjl
zwiaA>))gNGErjgBB(nk~Fm|9?{0DWQibWmlEqmmAkT1ACodD(2iyZhXVp!tsTj}8%
z`^nA|Z&gCHk;?9cgs_xj>4Ru?nUC&U3VB62q|f6jCS#XX^4fu9ky68Fc^l~d`xtCz
zzTuI24UN8eX>KH=OT=zia|l+qrC$9PlSz;Nn|3gBFkbnGb^!Lb?lUJ~^Ha<Ro66A0
z%X9eocI&sY-SZO{uNQ-3R*XDJ)Z$*r=F+T#H22{f8tiV46B=LeWel?xb7mg$FfFT<
z4Ndaa)VTI&ipY00^>7QfJ1A6JlL;Mt@?#bX^Tt+SOay<DPj>X)_8r&Je#TP-fQC<X
zblvMZ9@S7qCSy-&>#CJXyigf`zLsabW0JyxuBCGl=084=)se466C$T$N1xK2BB!F5
z@6-G!^8ln^dW)M``Ui(e6=zm@YvXY7%OdC2N(!N&v?Vk&vM7+j50zA^Q+pl{mZ7B$
z>vKn?Qfhf>9%PvlN%s$s)uO40NFh+s<nfRVesx>xhKW=$@PS?fD<I~($>5eN@~xML
z8_~%8KuK@?P-)!gNcW1pBFSS94b0;?06sDqq~hYO?y>8QCzck<1j;Zbf*_dBnQYt7
zUjRSuxTT#83rz%05=yb=z~6K2h#9Yd4?pINOO=lX!Cd!l=m<pb%M4!yf^bR~J)t8|
zq}g$!21F9xgJw>3H)b~)%BX_O5=thZLNs<Fab=ttYR&NYJk_%v`#O?Qr<O=aOOw2h
zg_nn?&19`W>qqg2l}|e5<KUcvgiVf({g^Ebz@*f9`}i#AhbabD#w_(^M0hbSmus!b
zaW&^DZ~4#35VHm>)<EFo3I9SHfYU&H1{Q4)-a#t@F>lnZF&EXlw6nAn5S>FXAk8(L
zKnZpNB|}E+g09bXp#)cnQX`P(J@DJT@gKB-jw_>5*v1CUEMIGD>+YMp-h#~c#d%sG
zSzI`*5QvG<M?8g0$XRQbdfR`X4Gx}xB@mzuz%d|=H$}O1LUVqSrg?ar-GAGw38Eol
z0u;#Dg5RneQD~$w@%mIwb--_;g+3+D#C52Bc|1%#TsD|>tR#WG4GS731489rCrrpk
z-v%WKiDD`weu3+cvi5gn7ITgY-AQJcdGF$JtY+F$|LZVn!IJhaTz`P$!6P3*+`Tk4
z_MB|0=pDu#Z36G{GH?@A%|Mjw`oO9w+mUZu0(M~y4i-B{4<j&&gPEn%YR|B}W#O+S
zLVTy|S=IPzD4k5YS}+Sw*gBc&YQ8_`K{m0m%^|*#?aYqUHEp<8n2M6w^HKq4Pwg!Z
zRu#VpYf{QpHWP;c54R{BPFX7C#bKsljLChsuZSN>FqMxBbifbeN@qjP)Zk-?U<(El
zba>=<0@=~g(UaT{0v-?F2?3(Q^ra)0RG`?w(Lt4GwMAbykc5~duX{{qm{C?fotr4X
z+g?G$#Z?~O-r10D*N_3SJS)>zdIP?&B()Q>-Yx{?Fu=|G?+lVVrS!GvY|olxd@;;7
z$H^|>NvJ&PFZKNK>(_%huHE7zE@Z8|=Bv}=Ft+!w;tbUd<_FQlND8?qW&!TDUABKP
z1@YdwAVC9HwcDaw`8Trsu3nTZ+^qFu&B{CJtiivk<^8{NT_5;dfhdH!`}l+!$`?dc
zYDt^?Z%_elH^S<JnJJ%@q5N@!yrCi8S}VW(yiR;nk9n*yO8G#|B3}vUR<{WJ!ZF~0
z4hZsEpA!pGHAa$eKI@kR@O8Z=1Jf_YE{t1cRSNA`BKpfj9ljhm*8@|OG$=Zej|ciS
z1H4&Hp$?bVAB80yd6y8t9cy`aAt~+h?BhdbZldK*B;gM}gg?}}>8B9+tcLz9XGT=P
z=($d>4t>=+h(gIa@2`NNX6K?nW*fA|(-fVlb7`_^K38s%RJdE(EtUTWF8lLrVDbKK
zkK1wUwG%hi{PRNZ+%@Nk9+?srF@U6aC)Br=f1n&eSM@S8o<-{dcZTm!SQQbr1@)*0
zv2a~113bFzjW(pbKvJ=TIl>;cvNhUsV?dvpuu8yC39}GqHS49RQ9zLj<FsMMC&p_-
zfUe+nd~LHTuW?UGiv;Oky`E9zMwFPR^Zg#r57!@>#ES?BFdc@1{ZeaksfxqvWKt<G
zB9`b&-e|d7GtlpnhIgy=cNQSaLytp$A}hlQgQ!KF<SY4|<_s?v*$&5g%bwO=PZ4rq
z^<n$^ahoeL_rdGtr#rulo%*@e!0}Nu#n_}cvfEX$?HkB@BPxb*5UCp8K4NHjYQ$PT
zhTMh*WUS`a4q0GuvK26Kj0I44L&J=6x6Y|4(eSHbrs|tzK${-Bt^wEy+1Y2dCohYL
zPM~?g`ftD4AH+~3GeQw7j#ak!K800745lbfq_*{8C^&HmRgX;Ec0FkEW{bdWw<&6F
ze#rN9nq}uY=C91!mt(ZpMsw67?3%BP>Wnj*WL_{l0UJSQfRg&!DUU^?;pz>zYtTRk
zI0ePG1j+pUCM>0%^`HpaTGPHV2XeD-i%ph$s=7%p_y=}?GZOh3^AQPNg4CD$$n?gX
zhi(2QNW>nUk3;-Er566p07S0xPlw)%Qww8bsT0ny@~rlJoSF5#oRR4ZQbV~;effQe
zJKkqXxzaRtuEe1Z6p8mfYY!COGi{nlxxB8LHW3vn3K7tcO3Vp`RRt<qtj6||L8u^l
z3V;B{A8_Pz&@tO1J{5(eDu5m~D5XgC*<|I6E>id*wlnPf9H&BbS|Pk|dM9F%Cn{Ox
zRMEprm?22&&DmR|#q%kj>khnfBiVFy6`x+F>Fd*{b07jErq0G%yowdVw)dG=|AaT9
zM=qcL#pZFf13}*RX1>TM)I3S*sfB_1-IBVxF*q#3a;voNlI&VF(Tl7KTOq&p4j#Vt
zD2JIYQ_K(cwf1Q;H^B@MHq*k}IHKy-G%errEeh(kw$=>mcFw#)LRfqZa;pw=^4dbZ
zK+}Ne2ZXc>YeWTwv~7`Ek%V9?ua`sj6|W+visA}fK_wTd2$OR4Hz_dTafP%rK9r)4
zf&C?ST~T+gj-BU8Q4I+Gy4ln+;5BfNAWBL~7xj2k5#b$7gdJ+70y{HZS)sm5eUcXl
zB>>?!aP7A3j3*Q0C~k=TEsq9G{nsCg{Nb8X=d60)K%`uCL1WC9SThvFi&H_yc9$wM
z;4uRV)6>k!F6R^>$fHHK8{vL*h`y$J36n}oluyLOSFSViW{EM6LC;jxQ&g(odG(<T
z`{qwInH7{w3$~NA8DHzmwis?Ah+Jsz-*@9B9<9f>qk7vV3HPh2PaqOKeSYBMWAyx|
zmDE*91B5e=F7$AqM7f<ZD+Id|)XbA1;Z+74VMp)t27ImIN=KLLA@9Xhf288&7hm8v
zB>4z`Y!d85kkE(~8KFSt<$Ai;QL`CuLp*t<{B*UT@+U^E@};x3@5T4u?uUt4sCLbY
z@9o|MmY~^`70_20KlBByv&`25^oT4#4hZl4Lk^I!Zr~OAx?~7>S+x!_S2*3Zit18z
z9YI}K{Mowd(v$`76v{Bu-7Sw^OFCYEY<w0i(dRma*HW`M{;VXhTN2LZ-nnoao74%Q
z5nTFpFNbCz(5Er77LDNoN`3-f;TtRcw#?b9|M4tqS*Z|CVJYelAcLvi?}QLy0^}4F
zVGim$ijxZ3%iA7*x*gIW{dOMYBYre3gAOiP)LeCM2|72i9iutWyQ21raJ%Q;894)J
zxIfpRv4>-N#Ogc|>FK{Ssb*`WHBGcA&>NtQtWn|6fsj%$U3`F~Kr(>cRCBSvhS-b5
zB#1O=4*&5^?AL@wsx+Ec;8C0H_UGGo|Ac~^)bDsk%$!lc7Ps`CKLn^0%G<Kb8Ehtd
z-~PEqd_5)*dBr4<*<?=L9jXeBj}kpS6jKD!ve6lYOzw)M4|ERqmikuASXo#=G)Zq$
zS^~%wX)EN0hz41aeM$62FR@cV6ooU&k}UX4;(zW2PBzC`*f^c--5o4F{5cvvEO(3g
znl!oU0Ej2EyV=5ORbIc;5F*3sDquQF?e<WCR#a<U{@RdMmrkN`x>&I}DpLP6#BsLw
zQ{xfAGwKIf)i_j!!%Wucpjs>eUI_*NOg}a8_COW-B`!bBCl7GHAqqDNE<eVLvavJ-
z%*iNwd*k)^Hy-9y7>zjoS&{)OoP|)SB~RG3wzz=1A<-JdzS091$$D-t_FM|DVq^9%
zK2{X>FF>Qk<cL(k@Dhag={%vmVutNSd@llX7|_$-Y8u~}gbeOU<QY;%QIYuAmUf01
zr{FvrHJn>})PZPsz2BmDd(foUq;MLlX{u+Xr+oSZzx+UD?cwe$SdK}WGC<D*KU5}p
zB0XV*nCzoh`OKDJ3OYU+Rk@K$HysZ>EC}Fe1~`Hz6l1Sm^rOX}Y3_IOIv&OH?-}&1
zq+m~=PWhNs4k2i5vD5p~qk`UQQ(tM9GbS_Cx@Kfio@9mXl3X>Gy18Wt<`rk*e!CaJ
zV2M*3J+S5V9>3Q(V$H_vXQwb(XmFiX5prfMw=(_lDu_cWZG{5HS8?7b3x0vqQ*h8<
znC?}#z==|PQWZHLn0)#Hr?1k{HfLPORWUAGEZ{=q<M+4-jMPhMc$4h{rQ1VfcRI^)
zbfUu8q2>*#;U^%Qw%W=jXx4Q(bJ%Tab8!cT66y;lg9tlWs4>}DpWS+<bt{S-^uq4l
ztM_AMfBJ9-v<22u6F{dR`3e1KAu#TP!>88sWZ`km)3ejyPNEt?e?2hPQg0gGu~Iif
z0doC#8MsehYA#SlWfo)&_2wfLlyDH(u$6%h#3g9{C7*n|b@MvWFkP7!so_XIX*R1(
z&+kPbqvI@Q*X!VTKtvq%M$KwI+qs+^$+yt{+Z6S-?+d!OCd{gwoR5u4foy1kx9zYz
z$vrQ?=<%5($w4STh4u;=0|AsTjYf~ub@x<v$l^tI+na-7o$xmY;9a3}_JUSPS=S*x
zsX%zUW`t6%v{iFIR6+|IG}MW^9$WUaLc&lAN}Pdn*s*9rJ2U<dglvo6*bdmf6fjeU
z&4(SJg%Vy;LRw%p^riYVdInxFE~sa$_#Ym8YGz`DZKcVW-8<mHSG!zAc#jzvJW)H`
zSFtesoXjf;t)-7Gi*`duG06n>`dkHRUm(S@n5X$lC02df>B`c9Sjj-3g2GqH#);j@
z>l&d3m7`jq{*sA=36ChyWblD@<Gy<6A>Zv&s?UM%^0-c(k#u5nT%<q1*e8anAC;zg
zxd+YcMsAg;WyOH`)iYy+34Lq_U(5DjWTURvPj`a9I00}_QI0xpow$J<-0Pv82vqVL
z(Ae=glK}-RzJ~1(qO#LwR0gbC#n;G8E6S|i>xyT7e@+FsDYPbXtKj;LSR_=XgoGWF
zyOG4Oz(sjP=*=gxng_%=aNu^qAA%KjNa=xrIQ3fS_iu>O!=b4um(9tyUFvy7TR!>9
zDPX1(TyTq1?yZ#|Xg|is$2(Iy^+SAYlkZW2T}LlAZ|Dc)6>rTS!#$T?lTxJ%yhrP@
z2Lo;oc;i>F1!$F+XWyu$&!%@ML2oEeB$%90o4EMm=(uO*ypE=|ho`xTqFDwcZ$Z$7
zST1OIrR|Vix+trKERVj?=uX*phC4mv&)e<k?Emx{d?yIs!p_RJz<RpAvT~m&AKcV^
zx%%%PA)<bYyoO*){KruDZ|ZRwW}t%!5!knuRJjIxQD1DKFKAxhvxl?g?d9E}lZE?X
zE(EI9!Pa472O`#FF*#?_Mm-!ys8@UFL7*luVO4n!pF;D~%V6SWbY6jC-S&*F(%+J&
z@G5t9I4s}H)l!+u2$hvr3<M9dC*=0Pzmj2XZKIMd*0`OL3vBcZn1#9N>1hd8GtlB8
zp0+N6>VYCxF+nU<1lC?uqj42<>Rg<iL8Z>bUhdeK(ta0h=P)Hl8^bs!zqndMg|&!}
ze?Jsm<IqGTn!Y*oJu;A#C@U?knsAYo&9_ojpc8ir&qgFHv_KIe|6!$XpbR@rWI!JF
z%z-n4r9gm?PZ>GY2;mKI?R##^UYp1hqKUKuiH6Os;Arrm1aKdqM^75TigvIZrp}`Z
z_M4-MPs0mE_EuKpH}i~8#JyO&vk)YOtjhH*Lz@Sv#k%H?yM}};9_Lxy0P~^yd$509
zns+euBZ`34PJM+PGk!~69$swgXSENkf}(z>gzs@dDMsl5R}xC!s2lv%*HTn1?+Q}v
z=HZ8U^P%MI24kj4{KRJN%c-&V>ZpW}Vjl}lP+KM5v2t^9Y;KZuIKo4MXeyjiez+|C
zcWn9(ebpS0;21vPWze@2kDL3f+wZa!b|j}10FGhfQYGD5BlCAZ%v@wx$%J<|g_E-@
zHCD5G^dK;sACWXxbt0hLCdlwYQsE^Fr$?~e69t*SR}}_9%pr?((XEUE@rapIjI*{P
z0^M!9pk^Hb9#BFDG2`7Je{f>=6N8!3*ll<6g3L#At8e5_7`gkmSOuY}QU<zk8v01$
zowbKDZ-Zd~-lsZJ!+WMq(lyX5`6bo=bX~A#`Aa|au<}lRn`zVD#bfCYC@`A@a`5}V
zm4q{%&in)!j>fN8puQtQ{Ra8)`agF2z`!fOZvT$4K>rz}3K+N}aBsG6esXc8v;oVJ
zs+3eKiGn=;4~IA}B^y0G#~My>vSeGn8+d-zkUiXKoBS3pl0rBn_E;wt_AbOs0)j?C
zzwapLb|I*elgEE|BYSfGO5I?YwX&ZmBKLpF2f}Q{oX<abJAi4GD!?gV4_fBnZ{6Z8
zNR(3SHIIvnqdHZ4KTNlKlc2QhxyB9jZ4VY1I_v>UkO?HAi->&Z;sfthduaNuB|-XG
z1HGnA{72AxIe@zFE)X9~gF&cj#rpm4LU9lALc?<>yqZPZ%%eDv(*e1`f!eq#pQ?tK
z(P*T>*X|tXjJWghp;6VwhmfJ#(Xh8!d}{N<6g~<cD{LukAeu;U8=1+qvUyD`MBlo4
zUMjTrbx)P=>a{nK0K|MNYd>$)H?Y+yiV8_gZwk2XdW7B4yJn~y_M1q)ebCZ`zt-gL
z31X@xoBmvVGfSg9xh5=0Vwpm_sUMZs;{+Q28ROY@LdWdX@n1NBDSkE_Hj1O>-2tmK
z0w)&oODkm9K66o`tAH!T)&nqtuyV;<j}iS13`A%1JD$(sMHy@lKWg1``v|ML)}O`h
zXkA=?t;Ok+Ct5<*8qQ|Y2BN)mn*J(DBzgD}zVQq4TO%LHG(LfZ>a+uqG;l%8vWG(P
z@$huioV}<xB@EJH!>YmRLIB?|Vs~?&APj<0Svzcv$5)T7(%?*tWVOnQPJKI<-&|W0
zc3VsxiFmnRwKTs{B~*M1tIq?|7VzT5xT3RgFbAH7!FPV`Hl=3<CO}9tFz3bc=#4Y{
zbDUHqXzjg=&x;jAbQ$q4%Z*U8LUHq}d6KfdV55FHgBQVpyf9NpJ09!c(-eIdxEGEH
zd)Oh9ObR!e-+Z*!%tAjf!{$_|El+lbNA?EN9O?~vxY?hj65hOtfmxi!*zB&q!NU~&
zg>*M)=6NLf_|!2RCVNS~2{S>-Fy7JLAqW~7EM-tQv_6Zs3lqNE4$(XA83cVRG75^7
zD!$nJD6NaoxcoQ0h^WDE#_@rH`zP|vU>~Y1&~|igOp!LK1HqL0zf-*oSA$h$RJW#C
zD<+&>e1qy?j=x$N|M=(q*V~v6rgd{4*8+hJ=kEB_#?gd-1+s1B@9cTyR{?&ivKkt$
zh9a{d!gv@BGDkt~qp>3I{w1VZ{TrgO!KdwNp_B<!6cBQNdpdPh;}nw8n}!>lqO8>G
zPR?n3{d4yBMVU>Yod8a-j`kr<xh5%6PUN57<$Cpf9wZ-+fIy<Vn0_VMDwsOip}*%h
zG@OE~UhGQ0&&qn_J`KiEOxUMMS_{1N{@H^6)<L<jHBOMQPe{AnD6JK7t|$G`<Ajlk
zFVB$_&D=1QiS7~@nXS@<zk`~iJm^kxzl?i#FS>02_10%Jl{q8NPx*rU%e!-Lwdr<+
z)m2npv=D%4k~F>T&Dohqr<IRAb2G6MjUk)bp6%?(A?H;Ng^wnohEaI%rVC4M<XP5r
z7XIH>03x&QchmHtJSHd*CS3mVS=CBo*O@vISi7Vm@ngO)0Cua5L(B~PUcz>hu(0N_
zrthUty+?LC;k|h(erGZ&amZ6re&xRUlD>)kx#7)e)|Vw10Un-e{)N}&{_+ZR%<k>Z
z^2a(-k6FDO9bbOg2w1|%t@hg{6bqTJ5VRJLmTawV#xf>=wiShG(~7H1%hkz}X)<I#
zXLxtAng$T@yf#s;s&Y8(1_vYda>XSbKA+orph3O7sa0D1)%h9{T&Ll&Ctz%%wH_{%
zHJ&HQekXs1ASW7O8xp+G09)N!%P(8D8MWxcxu6l`;rSUPHIjsH8Oa)+Z-nB39{}(S
zUXKnIkoHD6UJPkI#vDwR!jR@zQOu!ZOHOG2Zc(mQIgc5cj?G4YEP?w{QOUOBy5XN^
zH5PXEl-lbA*F-j6`)Mwnv(^@8q#wq<Ss;*m$k#r;5D(j@$c}<l*|yK0Qp8=K1cJA4
z^l)uKw(HrcZ1Xgl2Mp7G{}{PSprh!cH6>0Qb$;ZvPzyN&qAU9J&9%BnG>mhR3rP!<
zTXOy*^G@i`e8tJeZjF{1J@Owk_zZLH1W`iG5Iyk%k-BPaiw#++0CKf@pgduo^&fiE
z`{}Ukp&#fzHpU1el^gn>+FuTRURbSs6cM5VmTaYnv^R=0T}SytpJ{uOX?H3e(9%H1
z1EzS(cMW{$pP9ZqSJ%8=F01$$E=s9udH7s#w)iXJewQW$r-OcRnSmR$r@xhk^WI)@
zG_mEi>q;yED{WmrRy%4NpOUf(UpUGnzZMt%sq^7Bc)*q7nq=xf0Qj)kt5z1(!m%~-
znTfpc4*-85g55#Y=d+YaH{Ba~AE^}%-c#+a|6o<)1cT+)FMt^<5go|R<$45CG;xZT
zu7P>i``<TBQIWO=$Oiipbi24<UzU+!X}<&R59r~^%@y1BXVS||YhTyj5-L?DPJ+T$
zSJcOIw_4GELn02Q?g5jnOr|@0yk&t29BKJ;<uxTBjUYQVOK+&=4$V5tFva>i4Wl7U
zKVg?UtR10U1}(4p^jPVWEo~gMHn?dRWi><!--s*DgFhwGdT|O)D6FEQ!G3ScxSS0<
z4S6@^C(zT=S3<A{1EmLW(bWv4?<{>^3#n+GQou^eoE^EeX?cskS$$Re^^z1d#nub%
z{J7TEN4DBpkdy_-3i)#-n7P?2b5xGn{4pB&Dz8xc#S=}8$^42TM(X=YND9r<4fv0u
z!SoU0f=6axAOI8@V6sp2LexRq6a=<rLiBzLDFxJYhdF^p6z}^6+p(>qcYk1wS}U&#
zD4{NdL@DCMF9gut1g72CGj~B)R7eijwKh5MVzyqItG2(*5w`6E)o8vggNPIN0yZ3i
zdt=6^D{{WXq$WkDH+~}8nO3etS_LY(U@8ybJvwY&db7$&{XmcnD<>S<uy-8UU0MHZ
z+msjivzV|}%v0wlF(dbNUK@0?Y2ER`k$CDW?IjNs)xCQHAUl~SpAj8@@14c9qpmLc
z<x$<A{YvTFTgaWF`Nc(wLm56d@sp%0QIA5z=l9FO7;+Xb;KVHXnD3~+|5odfm&YEP
z|6`&mO6>eY^CC6%RqYNqC=wbF5)%Ujd8ab>k-LEo6szDq4-xi(rk~1uKcvYc3vr{O
z;E`{(<{M<UFfh%RTOhPw#vLXAV3buB69zidyatyeTD{4wl_3k;`hmJ2VW^4+|6Jm*
zHXTJmg&NQsn2qS|E?0^HGa-=>tmyb4ae)<e^`W(gI{e2!>j}84Qe2;I;LLs4MN;>=
z$5-#Ilsp@?10>8FQ8q)zhUy@S_sTtil=!IHSQnWT1hy&*9?GkNp!o?b<vEpd*~AgN
zQ<2HRx^c=^_OF4}B>5ervB>y6sf6I8!~X4e_js+o=B0ixfRoKS9lX9ruaxId$XxV0
z(aa;|2m9*x5rN|bA~)ySE9!8z+iG;Z=CB;Qds1~KC?KJ%U7(66CdhE2&u~Y!sxiIn
zsnV~EoR<-DaL>EiC+m?{Q>m|N1x~v_Wj#iaXTwqiJp^)q5<Kfke{naUQI9rv>n8g2
z6#bs;aP!e{xI<WkO!Ql-ElZ;qH6fpnyC>p(fT84eAtzqINJ6|)W>M6KD1QNR9~N_+
zS9Nww0>KY??`~+h`%8=KJov;q?)8uH<U`}xBPM;bufbxJQ+-j5N9%E04Rg0|gTr8E
zO5cXCJNEe(gj*XKJ*c-f1`c@spP>1ud^8QF1>wKP!?6x{8#scTDzMsBD24Aw7|I-Q
za{pN1XNQwOL9Wh8(GH30d-t&Sx;BD2FTX0!q#S)q7_`|YKKlwh@_N_#Qb)Q=A~m-(
zGtCv+M&7-mZZ*fOet8N~y}MYygxTbUsgQ!kN`>!;?rHd|-}_^v%x4Kzz^N-Ud(-w6
z7^ohwj=n4Ta37gBsGP<Zw-GLMnLdw^RY?`{Js!_1z2TZ?8_eEfK;8WbP&|M_N0pg!
znBQ<<8(L?@t(j)^m?5e;Qw83HJNqadOgv+vA}+mEBSi@2?`i76{T8g@B8CHQ)=QhB
z!wV%^#oSR5B!2LBj`=`iOF~3cMIbksL^fLXjQl$--|_JZh~pkkwhh#(R7gaufBPo+
z8U50$fY>TSgYWS5%N}fZ52#MSq<dy2RxBXh=}DaEl^Pgoe~+2H<*)uf_gX)wQw|Ko
ziI2|~7>r_ZiO=2-t-lF*!o0~`Sz`k9eqiYO*1~mg8>rCP&|3!8<ttMoyb$i-WEhFa
zk>0a@?OLGLtyW>7iipv|=BmSX2%okXsSMTOr&zR&Awh;cFC?TnJV}#c!wO{IKGLj7
zRZqNNv4|eEKoOM&?~*Ri6hYmAD$<KlBaSM%rsRd4dC98`SX=?lf&)#D+5(4S%TP}(
z|7=ek5Mf?k0wKQETTTEMuwW`1*6#&4|GQ#)As=XySp-cW!j^$B+3Ww?BAu7wLh&n)
zZ;AxD&G~?wLbO7+``>nU=jZ8#V4y!(_Ni%A@95Yr?DRlN%wzNWu@+a)b*+JKTB*6U
zwb2`IaxJF7a<)>*XBWK}p`hRJ-Ico*I37hYo13(7KJ5)4yf{2K=)wmXY3jm=zkFG-
zNliM}^Qn7P-0Ud>Ef>H#NWG8qA+R=R4wCZGO;kA3=_5FY%|7-$UgpHKDqXtPS{;BV
zufLxIDV(LVtGxc6>!02`xacv-Z%I-Z!rUv0>j6oGkzoBs?y<nPKmXlaPpN2jy5vt!
z@S7DkK+EI<L9_3j!XOwpihk2nzxfKgIW<v38b1dIBaugnCa-}y2>;D|8HLW%-$Ubk
z1rqNed7f*9TD(YF-kUwOL1Wn0I~=ExmHEqN6DY-%Wb3^6TFR!4;dZY!JhVnUd%in^
zv!G_&4J0jm*BOkj3O>@ec7t5w31@_6228w+&x<LWm>};vJIBpNxKc{k@AEu}9x<VX
z<Pm7ZrCp?8qxEF(TBg@O@WH8EAK1EW?^|W|nc>*c>{~AA)6q0%);o+D+kt}1+VUdQ
zL)_BdUhr`V%F=DkzcWBz7PqD1Zy$S-MX4f9d~&eg5vt0W!qbxc@iaJi(&LxH_s_xe
z1n6VLq{OA@TgB=ZAaFkUc9LU-ZLt0zsh!^YW&_vDz+_ke{=_6CCn&z<+`E$AsiK)j
z?;$nBXTMRxpJq@VvjNnHvWveb(OyC-y?j3$s^nSA%~2t0#MISxVylDJ|L|9_isZ_#
z+hAL0ozfJcjj?;%Uw@C9da{PU9S)0;FTS2AX3hj!@*ohL2EOqEE4qpN3(2QpI8$Ne
zLXCMH>vO$F{GnJ~FeoB3Elp85gV|nMVRyq>&y-xAcXAH!(;gPYj1P#m?ZP|LNe#uf
zeR(#kMZtD-;?W)=cIl{fG9^0=G=Q!;wcma$WLlwYi1|rKia$I9vI*a+zS66lE%Mg;
zy7LLZ1Fdn7g70E!gm>2*NFQ8_KWXb<9i|4-h^zVuyI{al67SYf!1e$rA})O`+u*Q1
z)bv;Hw^m|KfS0`P1U}lo&BigO?Bd5g9~LC5)<L78ke}j?d?Lb@v+}Ft8gDb;W9e0F
zQxyxZf^r|686bHI#Hy}ieh0en^Y4x9uTH;yYYjhh-|^S`Hc?dc3L;e(19{nW|7J}X
z>14Rx(c&UJs#0%(zu6CWI>lK+`BJDkesX%clF_S0Gs)s-^4>4w%9XoNzToqqXYH!v
zHoM`A_0GHs(bOVdrzInYpwVeF=77kS2FLsw`reR&B7h#GjghT%a$0#L_&Yc@=XFEe
zKoCf72X^YjW~&DkukdHB{F|6MijsojlvypK*)yK67Z{;(W=gNT&}`c!d^g85C!a?-
zj$5?3ncgZJ1AP*ZDVdPwr@nI_xYu0$Zzub7(~)1uo5WmJ*U@Q0uw*Od3$4bu^0pjQ
zeEJyw!}^;Pkj2}{kef6VlQ636XukE7A%H8fu=$xCgm-|JMaLbSSQwf(`xdr3U{JyZ
zLJ4s6zs2L!K5M`Wb@$k+u<JIL0=-d2gs20g3=uvknu5+XZ=`o?N*uFmC<YBRT-Z#4
z$bxeyF_K}bd>fGq@iT~>u)TH}4mn#g)GSgM9})h-p3}-A-Ibv|mWWr8vI^b!n(e2g
z^&V6Fsbhj-WP&P`OL*UFr#0N4t~ZaOkRM$IFba)!B~*#kWurXbF`YHaruStygY>{y
zJMm~8zroEjH}gkzU4JMrBX#h(;A+@)15|N{f6L^8@D8Y1FyGqc?Q5X&4<s=NpcKQG
zs|<Mr@U$!6N#RW!uc$!av=bj17+MnE_`U<0aVua)0BR6mGIN;h^wLqA7#h0M{K#8`
zR)~J8z!2Gx?!{JIu^fora6h~SX5Z4%N8DWHYAxODOt$v+v2kx!iyLYeLEddOKMMz@
zeEA}HbP;Y@HlLMcTr`MJ5>fb5qYtR^_Eqr1yl(lG<mQfS*q1rj4&P{|qNXk>EN${B
z|GNATv|ojUgmR24JR2Ip5IjeWL#tSt<QYWM&~T=8_Vy}ab!#MRQr*_PDkCRt-E%2c
zfwIHHXrKqSe4$n~sFP{@gxzg9v!He8Ykr`6(rJGHvCt2dR2J?n`)1COm$F2#OCXXU
z-P9PE(Jbg2QWO})Et|>oJ3KrLQRA>SEHao#Qsqd_dsd={?_)KroPxazuB{aJaPL=S
zU#j_gbWClo9r*yO-@#bFsr9C(!S-;9e}2lL%-L{E9IvMA(aYc5?D4B-LA*p_bOctR
zt{&6FhpC52?u`-h;A(|lG*&St3XcXZnF>lcEBF-Jx;9HMOplgToS){Z+gs9<*xj#w
zc9Z_KR)wu${IuUbW@YB-M()JD`}gajwP(0ItLn#?2sJY`-S4^u4=NY<1GOK=`-f}(
zTxAd+jc0vXw>FAaDV;RsUjL8$ddut=iV4O@#KUFs;bTxIaHrBR4ZxWXpDVIq_o#n=
zH6fC3pV7N?Zo%tcKD^aN20+g5nFo}oGvqV0HB&yd=94Iq)*26$W5-<o{(4z$<>~oc
zky6>9BLBt+j-;Y$8$y=N(LGZ};BS}WKi|po(6uIW>F!Nd6n(}#I1p<PU*nX%i{vBY
z8Nh4*V-3Sjsj*)S?{D|ka)m4T`y|<1V}0=K{U=K^R7ja&i)5|*LwbgX4<F_HZ8H7W
zEB}66wGO02pDFQGxo<sY^@i3m0SB#Q9T8PVCg$(g{QJ+$FjhL`#meL^*iBQLS0tbF
zU4vSgRQ!)$)^+cbVKo2Xi14}Z^}ncs)^Xwg<)ghO-T40*mozUI*Y4%jr3~`|%ht`A
Qzra6o(#p@vo*4!GFJJk@Z2$lO

literal 0
HcmV?d00001

diff --git a/docs/codeql/images/ql-select-statement-filename.png b/docs/codeql/images/ql-select-statement-filename.png
deleted file mode 100644
index 4e94bc0643f00d5f39ce661a283077d97da38a82..0000000000000000000000000000000000000000
GIT binary patch
literal 0
HcmV?d00001

literal 13475
zcmcJ02UL?w*Dg|3gs3P;3rG>^0*4-o(z_rXDH<ZurH2wQauiW|uR*1Q6sgkjp!8ma
zP^I?}YG}D{!1I0oJ%3qut-F5KB6->Gls$X)?0NPxL-0dw6{^b&mx+josMJ&y^@xZ_
z9}*E=pu9*7NL*s(4}h;rFH}w3h={1a6Miqm@=`MbLJD^^EhUO+%8QgN?35`IeP<#i
zWB2<W?$4cFiE;}&RRPfzcR-{FbA!6tzHqm7b|Rv=bekQJUna;EoL_jm+S)vKC;ANP
zlmevGXHr+#6GBl|cUwmok?20?67c2{;msrGXYO84Twz4!FYtuolxL0Gx<MVD07YGi
zDjUnf0r5qG*yxF?ldY2tQ6u9*5Fn#CukYasg%R!I16Thprr_-82y=2L+UtyK0A%EZ
zV*0l34ltsejeag7A`vGw#ryj3vGs`)H?vX1)YkFMBwHJ)6V7!I>{*QAP+6&A_GqeD
z-|&DPqj-LWp*U!@-Ow>}H6e~ACX`uZZ>)?)L(MqaP<7zl*QoN#wt5<RH`IbPzWtnk
zb%RCz^3}WY-?52TRWaAD2Al8sZe9=oepp||$m{tvEOb(nO>#Yc+EbP0+bwfY-V!d(
zedF@$2Ol5ay>WTIim#!W`vc+eOhO9&`_1bIw=w?`-?)qnI<G(|^^Oh>jFHGnrxXPF
z@{=n+-=&)x`1_@dmTPDRqy2QSvRts@(yt4EthiFGFwz}L1+lkh31U%_lqOW%`=d=X
z%IPyw<q+|}%|3;hAoER{V^9+pL)thw#g>u)0xO;9$3Q)-W>0&2^Ee-p0+2O=L6Fk?
zD5nr_%8L*}t@BU$X+l>-#2~`w)id2*HWJ!+*{E>#>c1^OL<%O<Va5FWlL$%CQx}Pp
ze0M{Z;4q|MNE$LIx>4<{*h_naHo>7ULZ(gAq6w9VL0^X#Ie-VC$HHAnLKRj_f@TQ6
zy3pz9=vsh8b#XEX4xNRDOPAH|7@xSoyz6Eh!;j<b5oh{dgcwqJ>}TA<L-v`oSB;|0
zes&i*kxkV|8vaQVR_Jv6!>HzXe{o1|kwvND^mQ`UvT&D@Enq2-f=6E{fC$wQU3_`~
z<sS4pAMEJUX>X?Y_=&3eR=<!&Xaqatu*e^kc(+rHeY?^X8#)40o8|BD)fa3BVSD_#
z^}-CS1zjDQCH*|P?pM!F9x7LEg?0OXVW$mEraPFf+wv-!#Lq?B992f|=gSUV_q7iH
zlZA*#e)=}%#=>bUJH3%%3dtl5QYCD$RAoxnMvs#PZE*uPWD~H+JX_Z)Tp_7=dY9)o
z=T@}NLR;OtwYxpjWnGP>71gI59pGS@iiVS=Cm9>rfusIMe8l0ku+drCNeRG$NE<vk
zxJo7fxA|u7S8QW6zpgdqE!T?BXy<NK$p?}1Y01mx%65Xd&rjW1WCj{(P-Znl*Nabv
zR@x6=v+UDm8}(j<U_TpmS?*s0yrEHG=Ic81uJ-0sBaJ!w;HVvGWO@8!^R%WCk9Icq
z&h|VwDck}v)2w(SsvgGKOH>h^^yB@E;&7JuWz%~fl&I;=@9Yo4VxfYAZKl}gq29F-
zhXu##v=QY={xh*%3l|~b3x>S)Q`_hUoSTV~KoY;%BaRjQlT3|?Y|D!(FmDs%c9!GC
z!v*{O`GigXdz?qH`I@5#<DGeH`eK|En7X36Y;uV<i+21@cQy!L7bAyj8g2`Z>qHwh
z#6lw~-Bu2EEf%de8bxF)4i*Dk&6v08{EL=tWjsr|8rh#TN43xK`)vh07PruE>KtQW
z$w9toUP)Y5qP=&>Yb~@LH&20Xgno{a{GhFVdd-V+_VA65je|mo-xV<YuL}FNny>nz
z2i-kE^MVKEJyS8DTEA**oRREqg`dMI7Tpk4oY5asi}0TBY^xYuzUi&hjoK<4TGUFV
zzX_iUyq)H~8#koZF%GN>d7%MqM_7D}O_H~#^K>L{?aDSn*k-JSCE(LvJ!rZ&9Qamd
zm)&=d6*_Ky950O1Rlw?a>k6>N)3OBYclru@zkJ8ynt4zl?nG7nEX472E{MhOq!soV
zJChnbh2N30ri5JAu0N*WpIC=B3k@E3O(bi9_=0$X`tUPl)!&b2lEaXoY=gT|fsqAm
zSdGYp+D`)VMZ?ryVibeqL-&1x6ao%2!-N793pmqf>s|6DzHX&?Uva(OX|x^J$Uf4W
zEq7FSwDEZ?$zf4t>M+)Y{2eX4lU~7N!nipv_j43(C#+p^rE)>YRyim{ozL!vL-?;b
z;~(%$2^k1tQ%4OOQ^$g{3E;{#z!v+MpRz@nax!*2@!Q6inMH-C2;tb<o5Yl><8=B2
z{TJeXewMwxS?^})AL0L_&v)z{*4yy5q}Q~rSsYy`Yf=>%u$rG{rAk*qv^IBS2RciA
zNqW`>+d<uvx^0S)HGTb@Pdgj<Mv7dw(ZX!10$0U{2T*S#CU0KSUa<-0bVk&fnTs+M
znlpW&f<!6v`1e8+;aVG?)9~;2yQE{&=5KnmOo-fw(lB<Ti+J36y6ZJ%^i8=?cnUJX
z?X|&=P~1A;((5eJKgB2v@v~~Q=WtcM6U7^Lw|UjOqQx++0vXPWlU8F&RpV87bfs)@
z?JC>jRmK63>R4o@)$&Z_)U*1h8xBH2^fwa+hX=C;pH?udG~0eL&um4ioU-w3wA*}G
zZB}S&!UjdKaqGLj-})HE1QtGF;i3@i8-rJ<EZm9^_>SvM+PZB-6WJl$KVjofn$z1D
z{o5?eINa83=(&^8`xZak8!8+}s+6?TRI-l*M9~lSU=<cR`$kbSksR!mld$Z#dBIa_
z`Bz#iMMLzpefRAC%xA$@iKt9-^RBmxy=!w-UAZ-9Y9btEE!QFHUUAzokxR>5K;ufO
zL&n9C!#FQ%@J!rjU1?%VsZ?UoqU3%fwQLhqZMI*UD}b9D8;Emr&1S#L0(P5@Jk{K`
z98YlRhOlbY%dJoriK$KXP5Et-40-84pKklTLc*|`B0U>a5La}~&Mu?tXttCNhyU?V
zWdLWmkToR_IsGALy8B!l&OYswqAE({nRr|_j6)E%5bA(zf#kbZsL0M4*14l@f#h02
z*zvFs*{G1)@udSa9oLOQUi07Q<Zt@yC{ZJOIE-IE?rdoATVla~|M}YSW!p7)r<+uA
z$8eUFzv;+fMf!*^s7=@wIe&=-y%w{$)}L7QT!lD%ZZgeir-RF+J(i&oXVl;I)PJz$
zI(%-HLnp~ZmYiJe$NC71YC?SY<Bv!#H%cH>_atR7xQz)3>)1mB4*IaNmm$B9UKUww
z@Z32Y*S6CseACddPn!2ysN-~``_8)Hl%9~n8=^L>GDxSQHj*FH+O@eEP%7=Ui40MX
zQuFVM55|ta*5qfsui@IUc)BXs75>Cpn#emjs%wswGbDFLM;R2($Cqy$c3WjS^8K?*
zRy|8Sy1nJ~Oc{{|d?Y=tn*5Fy{V8f8EgGHS<n;7yo{vTixt~o(hNt-v&FKonHq9gd
zSO)7iq32Q=Bu%I-P?@^#N6EpvRl?wts5y3#ClG(8c=1fV2t|AE2!}_T&M{6pCYn>`
z)7uRr&o4ou%I88mO#2^I*E^LGR_S7AAvFZcr@rvE1aLwhqdE1y6!}htu{k{*0jBLM
zkSH1JzXF*kA|x5hYuUmt(Fbk_i^v1&B=2MSYUXnp*)gp{d75c3$u~?$l?O>XPhqQ<
z?>?Irl6wI4?o>YEF`K;iOjktE3T4`L-JGwfE(8+|jqPIF!>Dc?t}HsKlE*FgS^LP(
zs`02TT))Rq1fQeft&<VHmNvg;LL5$d>(X(_HEt|Yx1*yOrY)BU)tW3njA(rZqprkb
zodw&#nbP`FF?_)C8P>t)8Qmd?!E?`930DFWD?iPBy~-h$Qo8Du;9X2BEQPbb^^alU
z+OD?>uH`mi3a%$ykEnl=gH1HS%N3fptnPR%+4CNDrE0snaJzkn9X-2=Zj7eSw+_S#
z3<{|-MN#E(Pj?>4AU=%(A%yeuj=D^&<Y+}e0siqX0(`m(M^U#i${nF=@C#{%ZBTyf
z_bNrQL~YZjFR$HmAPK*+EP3>UdRIvXYZb!BYN-ef!A3p4Z8-+j^x&7dEsRXo<cM%I
zwKK7hG7eEIgz+anFnyZP&UHPFPgfE9rjyv~AWa_}uuLb6F6ZO!Q!-TRyz58@x9$*r
zVsw(}Ye#=cMD9=|=*pakj^SQ|+`!#v!~B4DqukovP$xBs(X7n47Jq97`!+~(=ZNrb
zg=R|ei4)6jyhn=4R{r&lgUXv)<;XKtRa0OIhDmt*mC<s`mJvR<FVg;&8Q0t#kKa|I
zSL6V3wQBY@6Gz>(W+1}Z-JoaSfQCXgA~@bLSwiw2M21|`OAqD<%zb_v8pP3=bLr+4
z;htEgQc}iCjQu_A8tn?Q*K-CRQxc+ExiztqB!}d5&&h`1Jg<93bh`w(_mOZwJcOFV
zS)E#b!7O?nHX>OM*Kd|qv(xL)@QmUPNo!{n{|{=Tp4{s>{oFb$)Zg&rsE$|Z&cvPm
zN7nvIZ_?WK7p=Qb`HEDJ;lBpk9<RDx2PUc5k~rM&+G177er8b<w%UE9RpQG8J(wdz
zjUtTc<GhDAo$#$q$pj1lZqHycaxpjZiFttg=liF;GF-_%_~2tc&??AJqE1>TQ!I4{
zjT%Tp7`<uBz3(MFt>uH9i?w3?t6cUB>yx6&j#;BcJD_4K9SZYkc>Q)PdUlk{5luDM
z$Go^6Zk<G$SScT7f@+IYapDu9b}Q&1U~~Y!|5jFh`u??|UG6i4|DRKX{~Gxd8u)K>
zimUMd&7|Z1uWPFgq>ZOf<iB&YJ*SUB6hy@$8P^EQ%d;dX2*|1kc@AL=gdB-r7s4}O
znzLjHFghVkB0QfLBNX_DkWk<sb<f&4E9T9E<N}-c-Ghh=vvNYZyvc~x+^2&N6#99*
zk8Qh5{JgpEWt1C&?i>Ky1~Qu{AGEvIv}&Gk%hF<@mYB%Xa@r&{d7nDR*A3{H6?5YT
zoQ=|yM!4+iObGB6Ivp$+@_NHomuoH)7}rI}Ycf<YMiu*pUSSN_gzjQKck_qbY1ZzU
zV5HXRa?ar>l>qNi!RnpXXG~Hr`o3ur>DaOr1oXTJAtOV@4%y<_*DFS?4$`-NaK9<L
zK!oy~4(|EW03YJ){^T!~J?d`nll-l&u6ZH;p^z(Yzz6KJ>EVz=Vd%`kvp5?#=~+Xs
zLAJ@3n0pyiM3~RSI_`donK3QPMS>LM<$rGLx@zQqQ!zc=;%okGWUFve)DH^Nk*@UI
zuZY!BD{t66CbskWcv*K7e&^F~dt++JP~RiOEbmEX@YjF&xVuN_fMEDFTq9J|^xonw
z=N<lA^cE44u7)iv^D?&gcOu0~yMHMl^29fD_O{cNPN~l_G+@@HFsgGVi6*zSwB^?6
zFX<=^lE~n+HBy=A;tiJ;FPtUJHMapB{+`#r{e!Sveyj6O{~%2N-^KoR1!T~_oaS%e
z`VhhUq3{s}5A~gn89KY}!D<C*Kh<t=YJ*zS`S&+V`loS&H4?^p-k-|4ZjPRQ{FA{l
zU*f>j=xxuXi;$m;kohd034I1~n%#^&g`}LK!`OH1*{R<8?%Rc9yj&K&;>Kf@){{`#
zUF!?dV}|Kh?Q*5{TtAL6Ylu<NG1|PJNB~3ham~2;wg)<q^Pz*5o!is47w%7Az~-b|
zu40sF<6oT)Z;J+T?xirly}8Ru>l|yClBZ*s_pNY5gC{Jes`4tlU5YOLSzsW)7MFTP
zf5XB%y$KRh6avP6C$`G)u)VBf%0BG7oRN4bIoJ#L@m*7qhnB4Ez+@gJ1?Vw6eR$bb
zM^H&zjFK9H+i1;eRDM!oVc**BTgeEIlUlu;gExSh4p(M~XN8TuH-(yJF$}PgflcMF
z!e5RfTXOoc$}exoPZX#Mf&TI;{C)#op=hu_UzbbXbF7o+`?9gLC#Miq28Xi1vGYa#
zx>BAg8WqxG1-o;e#NicAACZf-HX;Q=1~xUS$ROIQq+r&bMv*BWJ$taJ&2C;r#>b()
z7r!3<_(o?|d+2O#;L$>Ddvi51-D9Y3J2$Ulr`xKdoaV5|qDYwhM`oOyXSL(Ks4=K_
zhdj>3yRPI=W-*aY53yysre-f@NU}RJc=26)n58|Hld;%Qf7_iQm$cIA9?x5`i>4{C
z7T$T;@yOW`C$eY{Kj#7N@|FQASW$+ycIQYYZ5%QH#!r*G?_bj7Qnis8HJ2&>-5gPk
zeaq1QaMetBjDNL_^djW0|8$jWu0>J429M6rq3|J#gPqa9FrSk7`)tcDw82ZyzPsqK
z4EDP};T6jHx*+`&3G~gkS+Gk50*Egkb?aU$c!YlQc3xL<oEb#xO5WDRCzI&pRIZ0u
z1a*8#tzrs+<u~m%)fnUn=BhUfC7U(!A-Q7sF}JjW#r8Do?su%ZuIxM;WP(4fqiV?r
zu7&8rDW8vo^b@~o3`79Z=+u!6bs0abc1d1rn%U#}UOmO6H$&gH$KY>DeDK!2Q^r{*
zegdMZ)xW-bXOGaiFP|JZmvtt`gAT@rxT1Y^efg@4*Dt<d%m32#GpcCTBUml|WK8wt
zPK9HM1$r#k)T=RjbL+>OZ#h>)zPcXBXV#nOtj>$6^y*DGe}9F5sqj*R9T^50qEdof
zcG?Y8?)9Qw^Ehxm#j}dP%qi;ZtmJ>~3Ygs4@~KP7R3Cr`zk|ZOYQHHthNuiaDqKG_
zO_#p);(4-xj1fH-4J*b<g;?iPq0`XH3j>=hffh&mk?->dYpLQPTRo9VoAV6GjnSFJ
zomU`|o;Px0Nd_3+zN{(wQqhr24==0i<>Iy5t-9hNJt~~A=UGCAS{~N(RvlWV(gxYB
z>%+=@2ePQeC!N0s?268wEZALGC)VMc>&3R^m;2lIYlw0VtlY>YH}W+fdpoN|y}lb(
zQaaYypg)~hmoAuFXKY3JeCoH+>EW95nbE<rSL@#7+5R#1@$GhqnEYsJ?IrOKR98nf
zmoh-nFYHBY2B#0Pf=0L~!OB{{>A!}oo`x5V=$M7w9umk(qC$}VSf1k-M+Cyc62uA*
z<>wQ90`A&5wrXv%d3W4fd~!?LBbIaWRb^iPPT?cw!^2gNf?#ySn1Tw$E?4THuNNms
zf!WLh%VBF@*MF@Qk_haQ(lqd>qSip6V5!~|1qZv4&aWkj!#FE*nNs31N{ES92G5LZ
zi+iVlMn))h#Zh$^nlY(83<jf>Tl9jGGeAr2lf=&)HFdnm*oMVXliwZ41uP%hbYc&)
za2yobjGSZ4jt?(n71Q3+5K#vhb<iGcT5Yn-?A<f{@=}wh!MWr*AV}MYh#g*$(t1KW
ztPv{m_JL*R_{XV*(5yUPZ)=f3^rxv0>aujnQ%`O=-#)3!$n({3bL~B?<6;==Y>ULQ
zyra4be;Cpjokvm{`iI6~A&vs&aPz|iZOP_cN7ZCE;hsilUVkYWiZiYBacG5l`5j4=
zy*daoYSvg5r=ewf)#M5;#Z+7)*oRfj%q>w$AKi2>tw$ua8DIOl?B!^ZE+M!T3zCF)
zJqjLX;OPN_cdN&b`r_pb=S|c*uVrY_+(7f)#c-e^Q#Bo*^bOM0f0=U{XeLV8cgza6
zLJh8tKgy%wZfH_1+6eV>tZMMc^bqslu)_pqR*!5to9AqZ@@IKXJ(>t?46M5f2PWW{
zM5p5NJ$u#SsmM=MU;ItN9+Iod#Wv15NoIi-2eJ|dT6F1X;n=kqHJK);f5aU?Bg77}
z{AOX*3Z<P4gp+Q-R~2i2p;R=z>?JGaWg`%5QJ5<|uf+v@?*yXqGfj63!Z$)~JK_gZ
z?6*i?3F|&XCzdid&t@+p7sLFo@KXoLSyv^Fumy(0IuODuW9U%>i?Qjqt)<CY&ME7?
z<nmr(tp%TH#uQTGRK$jMBt(5?BS)UxD);PkSubXY{45i$@AX|m^6=^kG?STne<ve^
zPc9&HT*!IASQ)VxW;a`G<{KC-+*rM*o_PA4Z%78%HcyZ(6`oyk80&l@k;(|DN;JRG
zWKMrtS=HnH65Hb;F_Q4XbyGRDI)AG}x_c0A3`Z6wcf;M+MjVTH!`0WsPG#7V>?s2o
zO`GXsK?$K|BnxDa(LSZYHqf$`6H12*>&a)+C_mjs3m0?i>i3-fm26|b6KtZlUCB|O
zDNyC-t<hT_WaDO#HLCU*E$N(^S&(_Z>lW0H+phCg9P0p<!{*P@PTh2d*trjjTr6*L
zhb^=^ap^txW+j|a>CGno!jk3MSo;YFhK{#KdbXhqqAqLh3i-~lM`l2HawY}WjFrD6
zM4_@vkWnw|B#nZs&$0&Q&c3Q>_f=cbwx2&%EYcKTagm|A5^B~x>SiQ##UeKO9OInv
zDHE*_kI`qgX0Bc-lBnlvgN!<9nFY%R!Ay%X@5w4(ign%PXT1oK|5mX-LH+aiU^bjZ
z&cC*#<a)3oEiLUrrIr|5vZ;kdm~uKJBV(E$_7WHUIY45?tZ9y!n48!2iR?3GFW~#^
zJ9NJIt?-7QetlZ88#s#b<Dh-t7AAov1#1((oan{4B!@SWSg}Oj6&8{-$G*l4Xh|=y
z>8{YFiuB+5TvRl01wd6+HUrd^H~={A#b;(_7J{crHKdhsYi1(ff=A2CMaKxBZ0&~A
zHo$JL3F=+bu=ML#N3xNEx%(R*FDJxl2P|(b&e6b$J{)}QQklL`yh*Hc_lBL_CcpNy
zZf2q517Q#q0ouQtS~=GyAaYPhTzmvRV9?pPEhvj$It~0VzVj(P4Zw9u)R6H7b_@ZM
zr!xsAC#0sve(O30U>Xs|uhQr2)z5IGN_$Ts#T-(50}kjkUFE!c-tl7oX^)?CL8jO2
zegG5yQrL*`i^tD8W{Lp7`EpSj^Ww}F&PFE<{;o=n>&bLbvI01+8IgOk{EG`i)VSfi
zJ2yOOwh4)=@y%0>-p>`uKkE>FN)n!tiaOdVAVbL=A_MH~-c{KH8Wks-)lK0_hZ;i=
zJs}({wiH!_;bX>u!-OhWMk+rkswq4B*gxP8hItSG2VYK%uBeT*)oIyMY<HfI@+TCz
zs1ZB-LGSr=q_D6sTeJr@2!Okd8xFf6^~|{YNs?`HdUJ^e%V;4nUWJLXQDPpGfpb^8
zn5FSWFa(f?Sy{;+?&A~)^GH|WbKPO^owHYgjpyvGhMVWw7ZQiNm}&S&=sGHU;c1C=
zEG?)0`inRK2<${_e;MjjI}N@YUEsRMplEyfd;mZP%cJ6VK2B;+FR!nsrll>Osc-&s
zB{$he@~@CT{K&|_=k5^N2(9W<n!bRfXmlH2am=QCYY6z;w0F+oB?vH(pFzl$0|qJj
zUHN>#GV;?OS11T2Z^A=1Qje46Ol1Hah(QEXQV@p=DJ8pa&fzE0%X~<|R`vL1dHZz3
zF(>%R%t7f`Pg7qZs)|csep8!Cb9ML0NK@<suM!EyFvo3)CTJM?TS1RSmDGH-&`(c9
z@%kIVuj&M)h>(lRq~LAwzIogZbpaSjp-K)O`SVl(A|}1C1P+%ODmXGf#l*!~hKEQe
zBfi<x)?_=n98@f#zznl9UpCNtT+xjr1RZtm|2WvI>Z;|kNgo2dGZDFHLi(ol;XW-%
zc)}7r;%g<bj&-N)%8#U#t%>*7;ef-*PmlWKb195;PSuz{oI2~gm=pz&G9GtQuip-6
zu>V|R(hRd@=CcPOQibJL59QHaeV1^JhsT9A!A8{^b_n{dQK7}Ik9!LryOY!JZxg2?
zBj*mvv`3D!9EP*kpRLb4-=}iK6{4YTTV2KI0Rc*J-;?}>?`#uVvnLyhmTh$#Gu;c{
z_88g6SSuqMinykGshx`_guY}6-t+TSWmFnoTOQsv2vfN1TuADxyi-6WO<uNsWS*|j
z{luj1sPNFRB-lURg1?!4zpRV8%uDC9QuCoo)F`Laq+D^ro|*U7$I31tSZxbwT7#V8
zxwUQH7off~LZz?!Rz!F{-@OQF%)-&5_R#+P{eK=$Ow4wyJX81k#D&{FjA=kimM(8g
zDi2cfo}y7Rs&*dh+^j)-)9dc9heJadWgt9PzH_C7=FZoUXC0;@$xNi`YrkeVisG*H
zw7zg<d@>U8#V_BwIAUrhp+B5eb`eYc+WLa?R80K~KkuL1H60$RE@|TBqN5s$dlKVv
z<xWz!gBwekQWARc6y|P6LF~Hti4WBdkC`yO>2Xtcj5vW^mxM?scSt1b?p0s`Ey`(J
zAUI6xMM&0d$Kia>Wo>#B9scEud<lZT%F{T(86Y-|n)aTHkg<TSZMN@=8`PC*e71X6
zdRCAsn=>Zc-e~ETL0D3)aQr%E2Z8fdwuus4%3qYqDDK$QNsGS?z44e0^Es&5JXOKb
zRDhx1FzxbWa=&Ll4|55wAZjY2LPr+IapSUR`TlQr@_srt`ana4u#m9S5HT4@dZE=P
z=^yCzU1ho;C*KndyI@>mFSMqS#?msJ%NL&IBXuHTN22kuDl-=I*+CX;mbB!eoiH0@
zjdF??n{(JIY+2S|dH}ccmtn_f?uP92<V^(~mQBn{WgIA2dVQ+os)yXP=w^VkDNy4(
z_4K7HB6ShFHyfOvojmEy-(9pmH5Ae@z1k^8@+T=uB^)d{wRxLh#ObQa*J!_mNQX4s
z<d|5t*V%%RBnh7ofrL4&2gg^eD%g!Z_qJ;8gRmC4ds5K-iUXsT6oMd2!sF?3zR`Yf
zRK)I@O9f8IxY_54sG!F%5xGGsuxPT%k$E#AaG!0%%utD<@^qigt6^&Su-<u1NK^Dl
zgyE}08tL^ecEq=v+u#v|MGzz<`XVH%b7%2YA!uKcCi2edy`QtFzCitE=TNoE?Swef
zKbxM!+qb+a+uhye=i|fl0egVF3$f0}O5B{i=U}y&@ADwSiGBrFhZ}cK`0keMh)5AF
zd!%YW0KNgTtGh)KzUB@@U+R}V!i4QD{R1#;XFA8_iB?@}wX^t0tb@FxjAo?p1uLfQ
z`p3n`t0*g5Al!-%kSd-$HE|@<rJBIL@ayi9Sep0sm2s@?g|i4;Eb^%@XKEAgvhHg}
z4G}g8wFYxH;96dHnX*gAns;2l7y+?W-sOgSvLL=|fd+oQ`-zB&iDhMFIeB^Dw?}L$
z<fJ6=Y&FrT?S=D12fV=c@Im5obyv32;`}3Q)qIPiEHUV1>TR7D>idViy}ikc((mZu
z)?Ou#M$4Iq0?2@%cZ1>_6r>yTiOI@Nj*jA38X)>9K9-&wXU$6D0Zek2;d~=d!74fE
zk##iw;@v#Pj^JOcm>3<FP>x2fX#)dYI3}QjgmX1n3W|z)y1V@kW`b-2{I*R-j((SG
zPb5r0<T*x=ivsVJmzP`JJDBv{M63t#_vBoN=xT3<(Uq`|GEW==UH`oH8xG7>M0dv0
zUnJ#-&>tB-8IC_hIfV)`#{4e5;R;{`tL*d5KP@U3%JELMj&J|d%Ia#v@kI8(h#+I6
zRvS62w8UkU%x&-t51s3P7b9||Q}>yKm3@Ic@y^}Ajs(2eofl_n*pdwR=u!8XjkkTJ
z<l1PA!$UD%#_WCqgm7v+vnxXVa2%HM1!Bg%-PX#K<m#1|o4dSTIaQdOi&LA|X$Uy|
zWwz*lTE{XnMvIH(duU+5N!h_u^69g{Z(ZD%0E=1ePm8et`(?coiS?eQ8aI~T7TeXU
z=d!=QU-P&SBzrJ@vOneZ>~_P-@^a)4>nA2khA~4h_7ZM8KVTGV55^bJmPnN(HsFqp
zP<&!;>m2+b{mW=$U~b>h?7j?i(ibGdj`VHvN3%6Vk!|<}mK6UUQa1<T-i@bQBI@xi
zP`BEw=pQfeO(62k+L3|LnddcqLu2EkSSOY3T~DBDb)TySZS-r{O%q+i_|VoY>%f$u
zRGuAR^WR9lx8*{+QklZp+eBg&Ug3hR)%t@WmclvX{T(K1IiDTi8c-MPHqiOP;v(!^
zeOn4I4-m-aoE>%}{Y5aqzgT0y>;DsZ2#oZcJp5m0oC(w=09DR-%zx08|D$66*8iUb
zH=#8kQN>?D6-mHZ4J@Sm=kugp=5ORR+%1aPr}dd1@>r4ok$d<MrNK}m>snS=%XtfZ
zYPRC|v;7GPDR}Lw!RRyE0=6!_^f#s}VKI+$Jmsp|LvShc*}UP;8Eap(#ao=9_93{R
z*vUv(WuO5aHA|j-YM1lY-yG-12Vv{El`mVg#mf#o_mT=4x0Runi9r!w9+qxHm0xdM
zBJ<gdVIIQM^8q(~3Yr*AQr!2=`RiC~q+PsUNihJ~h+yAP=3D*0-cNRj>LKd<M~hCY
zZgiQZYY&ew4f9lUnGY+c*r@YRvp7Fr+aY~s1WhKRK>2yaxXf(u<O7WCz^%^hD_=W6
z22B11_O3O^7R!^T7j_#iLtv>sluJwSfk9&0@S6E~5~@HmY3Dz(07H8l?E|dq0FT7b
zS6W_-J13n-eD+E7xiWdfTKRI@MY`*J9>dI#hbHUYdMC7*beR~PZLu)Nz3yBRp!-3r
z&-RvUY(q}K4lOR75oyC{6ViMGfShQg&7^^W*V@BRHMP}VvQ-aOb_rx-%r~Ni1<4g|
zxx5L_q`@}^?y<~8G19LoKtnM@t99#=tIwghCc(j&a?OmeJ@=q=!zrlRe6FeGuR`b_
z08zN`wtfp+B86^}JtH^m7~9Rr+ry1G1jz`5rgm)voUY&-6+$wcsVBFC#7M_J$R#V9
zQXTLM5#-`-Ug1i#sgnELLAe>d3`VRx-`0Nk(<?>OoZ<qa0kJ4wm9eLFTF%cW*!7^6
z`c!{bx%B04R1D|67gX~a;H4^T-6^mRH6NCA9IOmJobq$%vs(2|54L?_UC?B}*q;@r
z|HG$~GnT8{lk5|)Mc1g=yLTTstOgtbIm#oGb&PpGUOvdOsy~70Mtu2A>Cu_5kGZmc
zS><k@n2L@)yve_pA=-Y;tDGSWo`VfFo$7xU*FYS~4J5V~kScc7(Ry9xRX4wsx#b5g
zX1+guU{V(#yyVO`;4hm^wQS)LYtY`~Y_Zq6T3}$5=S!!B<Qn8L<E_f^>Y@;|ZOi^K
zPw69FBQSLI*~8s^(iith|8=(M4v*AN5B0Gh(TCXGkuc^QeG(r1S@&PH1FMu3c0rL6
zke1QQ9`FlkX1fb!)Mge%vWb&PagRTHk}6zt3~8~ht6wFsoDDT}jO6KU<i>TYtxrRG
zE(2`F$3{2IQfz*h)rU$Y9%X~@#1)&GG0`V|1|GL1tu@pw6V0dF^e#LjN3BV}+o?0r
z+ro|t<R(&>NeM`1ITD9Y>XG_s(@P+}X8bZv6q(+BKIHn8{-}{=)zRm~T_K%aBDV;R
zDRXNpq}DMtU#WdoJ7sM8NSOIW*^=DUB^V{-8s1<XuD=?mi?>0?;6QW3L9ZKr{zB;S
zdVXFD6ThoKD=wD)o|?YNb2>@kh@>DZRotTmvsA9^^>AGmZ`GUds*%J&2$P_pRRtXz
z>u$UI0%u@?6*G00w-?n&)rcF>>e|jdw5|J9^Kdd>7C-iNC9s9@@izl|1*aPW{0h#o
zb2-(+s-L>*4NP4yYw~<9Wo?CctC7`}_D0uR%7V40haCoO+3w{o{d8sDMpwdYPu#H*
zJJ3h#OV6Gb2&<HQ<8|A<4dh$WjPMYnG789!RBw#Jnw?Sd*QnZ!GID_2vswViJynB>
zO!G<A&ON83s+G8)S9)HfdVyIbI~Zd#UIhEF)Hny?M%-jf1}f;%<9aLlX&c82AbJGr
z@S)sl7T}48HTe>Y{ttK;N)VRIi(SG@y69<M<_ipufRl^@a<Hf^GG_Uk>H1!$5Q5Y#
zFSV4KO{YS$BCw-N)Y*1Q4?ACG0T+F9dpBj?-9Fdzh$}Hn7;60Kwq|~MXq_2#Q%*X+
z<4d8|Z+q+3+F{o95<sl~Nd}yckd%h~v6>=qk3e)eRz%pV0Qo@tc)lcYc>Onk_iHuq
zRicU%CP&Qs6mrX8j7t<30&}y}D6cc~*{;9JJ?*K^-3b)3=*hp?K@VS3=CFI;cQ#x6
zm;}^}Q0PflWspjPxwS0{7WeVx%2>ttpYPjy9jj*Cb(7sh3g{-y1-#yb-Fc(8B%WDV
z)-7-+i|5^vIo@RT`8xMdlQJyH|IvzZELZt8(SvWMDy!m|>Z#GWKlIb2J^ldnCqcGk
zdGfOoR4;u)ie~0iJdU@B7Sh%V)ZxN(+RI!Q95x@yN_eEuaG4U~y@&ZJ6YpGr-(H*P
zvmEh}!`l6DB?s39Exx*PLtONU(3zq6DNu?aoz_KL8B6E@0KDnJqLbpdD>@U2akh`B
z5{xyR&F3l}nR~qdyisLp>RmjS#A}D>79K`pO7zQlWYx-f18X&;nKo<_txLC#V_jSP
zhNXPmeywbMzxR~>f%)mXzL!7BNbcrJj{Ler3bXbm5S<rlY%O3>DNSQFOWWkxFnxFL
zT%SMUq!@rL@U#(XR6~0eUSjYv(X6#TJtzBcr#ycwS`0C^z1mV9Y==^wPW;NVi`%*r
z?`dV%y~ITZMhsu@PHG*J{unBFcZnXAg5=s4fdqw%OU~_fXVGvr*R-bJ)L>SCnbi5-
z`<mcMC%hu<rH^*CFG?}iv0slZ=@5PxdbVM_N48*J!%jJq<Al+Cjx=H0W8b9@JNdN=
zTeDzs6>dd2W?I|L#ecHf30HP?2E+8_)!i@KTE=+^OR{L&Ci9jg)`i7owVHTBB>6R+
zN4U42bohfZ1L%^qpj8adZ6$VJF@)>7Weqd`%DMqeCL^+?(3777W1UMNToEb@RfF1M
ziFvE*)V9%Tl=@@>rJuZ|8L8!jFb?VsEo2DglJ`ak#^l%C{c-G=xund3Uqk)8E2Q=A
z!jgd|vIWL$>XK7_N(H>(OU5>~HTtG*9P1jowweG_ML2c8v5Bv9MCe{89M%F^9UuWx
z0z!`bPZ0C>X)Y-kxRy;Q@Lz!;pzc49cv&(3f^PpAArW2?+Bru^e<Qr#jsHg>;h7jz
zY(Uf9j5IVzl4&Y+@#bE`9&H<oK<?3Yo|*-Cxt5LunS+cj%Y6PZ`obZ3lMk}+mHF``
zb|wE&A!DH92nE{d;MK9tm9z0FOn<YWf=tjHg0_DC*-+}{AcSv>b`xsoU>OcDK4*!D
zK^?}3AU^7;y>UwWEkQ7NwO$518%_ML`qU6pv8_qOAyNgc(zDbA9JjMUyHS#}mXBoW
zeRXAd&IblK?@VK9Jw#gcnlQ-L?2=Saxsdq?MYYeuuvmF_*bG{s`EJqor>h@*Wst#{
z@Sp3p@s^@z4A1rOuCV<Y8U*Klb&zy21==~}dEoei(|Xj)bQ4Cg;f(}Uw0~)KjhUH@
ztn@;y<lrP^(A!O)(TEniU(;M&ZjjOOob#v1Cuhf>LLVHbHW`@vL0^xY6zj_UM{4~q
zM*5CDqZq5<8fJr@u(z#UXWnEn);ubxJ?KR*B=mdEiKKD>gwJ;svNH@E1RR0ff`{0^
z87QPuAKAAx((L0>*gITgD7(ILd~y(&+}(rpS_TUWs{a-F<F8qP#e-LS{eBH1#l@(D
zp=T@fsK}Y#>aj;ZMXlFz46bXmZobgW?dqzkRk&@^h!)QjWU>T%s!u0wHbhEQh_!^w
zMQm)icxe9L)Q-PB4~CC|>&_0Ia%B8;Ms+YiJg1O~j^cPSXTGw{;Eag`@`i72*WpnL
zW54>|?(e+?L&_RyJVSj(9$ombxbdmM#=W^L3vBf!Xvdqntk>1+tJYIB*9DTHrqYG&
ziq#&nT%(0fU$LOeGP((sMMVO^oQTKCwl~*VXKfogZ;{1cgsgsaF<N|>9QXcB*|_k{
zTJcQBRg|>#w%P03j^_*Fo7*jTbzT2*WI<5NAPG%kqG=zkS<-S%!S!x+xFKy=OWYlw
z6q<#D+lkreOe#sU+Etgs>x@@)x{7Q_QMsr{|C?#U3W%|YiXR`*7WgP1nE#!fpG@#y
zAjCxB!%uS0d1_NcF^X@PP7^b8JRR86eKJh8j-Cy(kk^?8XfHV5+|D4ouOc2zd%i>g
zc&S37W0x@cB3$r#&n!UFb@yEYz7DWW;3>>t^>AW3f6CIf(2wwgSLju2L5AVKX%}$s
z9^7q^z`M*oAGTOtqqZYi>{m|Wq%NxS&Jg_ibaJ-3XEh?o?K+Z6b|_tr&K>c!C-Lnc
zTS4Ez`ymYUHYe*%eF8(3O=W|>LxpD%K(2_|0-WhttbrK)CQUGNRR4Lc12Km1Zx(+C
zkMjWVujul-iU0Q?1Y9$7`<*18{fo-$2ctEw!N6rC83@r!#As8~=>OQ)bS?!74|4Qj
Vg(Z~@V+psa)ReRp3m;g$`ajqV7)t;E

diff --git a/docs/codeql/images/ql-select-statement-link.png b/docs/codeql/images/ql-select-statement-link.png
new file mode 100644
index 0000000000000000000000000000000000000000..f87f6cb8ff09f2df7eaa7b024019fa54872aaa47
GIT binary patch
literal 151884
zcmbTdbyOU|w>65pyA#|72p%A~y9d`WxNC3=?jGFT-JRg>?(XjLCimX&t?&Nce{W6C
zTC=KaO;^{c+Gp>5x<eJ^C6Eya5Wv8|kfkI=mBGMZQ^3F=^57sqEyW(p5ny1%1@5XE
zPRfR^U+f%gP0X!;U!2_RfM0;W%uT?+eyvobnMaXuI|O~+V(~)^Z@H&$!92n6cV=<P
zR2*x5orM7i=_;#vrx*h+F~(3HeLh|TKX=qmDT0+>&FUJ4s#r(ICiKPMR;yl5PbVLh
z0h>ObPl?{|T!8|g*&p@+W3CZZ54V$g-d>yDUZ2r~4V(Hc(_K$OrJq;eukUYfhp?`n
z?^|!K4DMXxPlx)uwmuuYyB)7}yv&hb>$BwEzmvb&6Ef+D4tGX#c)Nb6er$AY#&1%%
zua)#;y6U`bm=~r4I#p-jhi7HDh&wOpHGd9sxpp43*LiIcF5Hf-=29`dWawRRo-b8f
z@#?cN^xRxF<X^VjdThuC&}8)&aNF1QOMIMPUS%;oF?4ON#^M#^8^pcb#c!o22IqfG
z{TKyOQg-OOmFfF_KE1!HKdBf+A}uhF1t7cY2sCMMyjL`yF@Wv1jx1)qNWarsK9|My
z)-i-ji6a=v{7{jpIb2hrPlAPa_>oz$CkCTj@mxKmGe*#oBX(!SKRfGcUHN?YT95Et
zvQQqMW-ebVT{5S@96)em(J-f_eeOJ`$;WP4Fu$N>d%}IWAXC+Gzaf#e9vsPfVwM-p
za&VPWG#%&MxP17>vGrD#xu@*b{1D+WF}b4l#G<UK=HN!|`K<QTrtPxk@F6}r!{Nld
zD9irfI*q9S%ckYNarLtK_9bs2v*YH(va0L);C55<HF4hO<=tmU>m{+_4Jf^Mzp1&~
z)^RGn$rxu>NN;KkNERJvV-*xK-3LUeO8+=WsQbpItHc&wJ~A#fEn<;hy_Rq))8+Ws
zH1@vV4sG<Fb(8cdec-SB_!-keRQWEl@gcSl6=Uav|9UL^mz`k!(Ouj0CIM@OFI%$7
zOJ?o%g2Q^SB09is@FJz^@`t!jc5H_%{c=rK?*y-;$Y6fWPh_`b=w@CoG2feXSSU*a
zn-;Vo#`iWLP)<H~;(n#FNJ-M2pl-Ev+LV9~?U9(-7Z$%G<B%HHvNI9I{&;^}HDfit
zYh~v`_nnZmSbI5GMR3r8yCN7F=Uk!#tTJ%5M$ZC>M(1T=dU>yCV4W_KI&sCPHIeyZ
zZ7T85{>nm*Pk(B{=v=|(kd+yai?i#?g8ic`va`xf!E|{Sk!;VywWrK2Ywct>MKFD<
z>C*fQ``7v(DTmgzt~e239#fdR&wN*t9c(JJ&MRJL*F=>@Ec_dtj+l9LP(=B5>1q$H
zi4Ym(K20Ptwu{Zxk$*BItBzag8-HXIpPa31Mem?9)fACwc<Rt_HfFk1#bQ-zEi$<I
z+A$CQ^*)+^FqyR6sQE%)=iTzI>Jg|)v)(+!_8jVXIL~=*rPLEC&Re`X(_GZ<Z8jy+
z@mF)uYQ(jsPhiHg=QRj|;{5DRYMhrNPEFG_=Ur0KkgCC2fv#<qY<l2f*$N}&2ZqOT
zeSEOm<d0zvA9e;IuobXu&7=|T*)t0C%4>pXYb<H*_%J-W2FGHi2Q``|Sc`2SmHXK$
zUBJVarCO(-TCDLkq7_qOPH&L02i}S<?>h>PuO-RuLnJpD^PI#PLnj3rM+0K}u1@gK
zUEma{6$CfgJc&~wd7CXu{G$cRmhIjf2(MPG*d=FrAx|gR$6r~moR3Ufe_p{uG(V3P
zyD4QPB+y%TXvb2^h4XOT4Kq<JalK*igl(u=omL82wa`Mq>s)%)sghMCL6#SA6mskh
z+Kv1QY&b%q!)m>|NvzOvw(uNdtFWpaJ6ROb=FA@O+Bkh!Ad?pt!$rHUoQHF1m3EQ_
zWJ?%olJ!!)xj<><<r02M4>dp%N4WB$0k8Sv_?|R9a22hJSDIY)tsHsbgp#vQLL7<v
zhUnXORWW!!z--UNWgEc(*kE=1C<>dMjLoI}q}U_t1af+?Rzmp74#x>?B~$fBW(1TO
zmDWnm!J^`jtO!!ARj){ZEo?p|MK8j~@qLatuIZhu;7+C4Tjv-A`g>twv`A9_WLRBU
z(I?j}<>H;<P67wtn0QvfJieaO%hL}hO;vGRz~7706?XKog_yx?@+JG9Fusb#{X5en
zRorgA@kg`r{5S=9hw13c=Vl6-2GaC8ArueQl^Sz58+XEFxYY?t<B6huBB(l5qF6D$
z2$qbwY10$_;*#ZjZBx~xw5#utF7OYKW+<Z<Qw+j54mYh5bST3Fnq#{)BwH2>@APte
zX!_7)X6UOqkHWD}HqK-chug!Pz6$^Wp~<^73RZ$;{Yi_+!fYwb1SM5QQzf$Ei}_Hc
zF0U8_!4>dbDR|XvhvZD~v?>8wn6G|G$Mn9E+d{aG0Di-aB%f+IjYy`TD+`=P70)*=
z@TFeE5D0v)MHb5GYauPu)^V8bRed8mc(cHlfnVGAftFxB9YW%mQx3HX9odN+Ey%Ph
z8R1Ob#<*bMfJ;B<W4<A8Wo`0B+$of!%HGHrucb_LL}FXxR|Xs`Sj2?f;+9_0mRQkm
zofX*dP-YVs<_&~<xkynPWowD6+SrBk3dYM&(hN%5$J>}@%0Hqvz&^g13vy#hG|F@f
zO78IZ`QcAOUk?qy{OJ~>H4Y)8LyU=<nh`|(;sasgVuHp=#r+#Y@c?O&SJ17z13dNW
zyZ<;nSRXqLoP9w_@mb~uo+3)cgq(p<sa#69nRKxyG`qeWws)`>T`>&6IR7g;#n#aT
zJ<@NSZn)yBTwYrL`7PF9h~ZVkReqV`L56VLn@PHs?j5ERtZNBMEX)L=5R`9<P{?FL
zq<L~kK2jwiG&C7pBFplD;022G82I<|PcQU4hyE(!(ze>YTMBvbfA8BfeF?BKN4(uH
zX=ue1$<rJwu(lDCIS*&lhcK7MBzT83)iX*PPAm#v?2^68eiTqXAZvm}85oE#NT0U`
zNFrwjDJ-67k;C;h4D~Hhxhe$$aitxtr14oL#LflNC<La+ugvJLGL3A^&HX&`Ft6-1
zD@07c99}{u{z|~iA@9&?GW)jg3j>MAy4Zc{L5m2-=mZ9n^2#aMwH_HZnEfK*36~hF
zq*uyPFW~+hm+=*M^;^+R%=%Ql6E_S|`sN(v?|`c0dOlU$Qm$Mz+6R#YCP@eJis%nx
ze6&5f^E@=GXn$zM42p=$Gv^_=t)J6(t6(vr4_oMQGDEy=qHi+M5%5Cd<`W3M5bots
zH*CLYLJ+pAl`_fg3`FMczj$HUkwVMK9cde%+MUb8F_xli36DYO2HA5fQbe|;_vgw^
zXQ-ks?A)ZpOF^LE%h)lX61Yie$81z5Y|0<<e|$kFjEhlZBEVs;S8EF0p;46D!C(il
zbFcd+3H?<zFNQ|KXUTO!*#YFRa=A#pGgW%x+8>)K^L=M}7H5ZhK)^Q$x<cC(=l5q9
zfq`sT@~)58&lC&HsUbN6j|it)8qnMvSgEH4vVL{NV*QHTuUx%`Q0c~~lZpvZ(78C0
z0ms|Xe9Zf@2hf5R9hjv2de29(<%_2kW&mEMOefEA@d6Rrvr3Txe+ntW!dwn9aSc!|
zY|wa-Q}Y>wA$k<GoLx>9&eb1g=MC3@LkiqmEKDVB+#`Rx!n*NI^Gb(FId9xDyfY4n
zWGfBx7eZ0uNbTxDCW!R&SA)_;SMVZ}B5a&eD)L0z(SmcM5B=TyWWcCvogY#C;d!<w
zb{cf)_~1A%@cDG<9p-pi+7srE=i8t{7-R6!F5_!L<+nef)3}Rgy$)3aS-qR4%HBT8
zCaC8mq8uiuNW0{AK`fyM-bR8hR&j-Ofw)ht%j_nNJv`HrkGO(HZR(K_Y~^7td4($D
z%&h?)vHO~V07iE}ca*am=b2)|{q(F!8vre9So#_)hM9v}=)zNrP`opjfQEu_Xk4Px
zz%dN4iX>pUk);qh>!w&aE%cZ8a3Av+cHptG@*OqqA$Z_*I`Y+UDBH#_)IooYK|9C%
zl!Hcdz3Q!*q5X+p2FTC%>Gp-aGt~GRWDjjjz$n5123PJt@mZLQ+9Ga?zUZF26qpU@
zZ(%IetrLSr_Zef=>MSS+Yq{3kbvQ{ALzx8_L2$`faP3EE=6l7&!(xckSaote29-?N
z%WH=YQ;_$9Z!XzGZ4pli<Aj<KW2XzI><W+&ROfU^*qZ&W?8)TuA%jn4UWBv#HKjl(
z8-10Pfs)PrXag3<`P=i4gGx}VPqmL&Zy6;FXW~XcC^%U!R0!-G0(Guo2Ryrh@Tg2F
z*#NFlTt^Q7Utu$v>iVA0;%~-X1C_c6k4naZ8iEB>+2=WaL(~S+_nWie48~Bg;+-VO
zvEBn+`QWxeYIASUYGGM&PZb*u-;y+L<IF^9kvaX2LyDu}fO*fcQX++Y-HOH8MBBQs
z^(gn5SH4>avh97a+aAt#;VZzwkhN1pUVlMSu7KsQPU3r%#cB855V)xYY{qK>;blN6
zQZgv|Ayl_oF?UqP-}ddijS36?Od+gFziBSx4Fs0vTw~oS^e%h<a)4>mx}9`Z!KQ$3
z`F?A)al?dBuQw*Y!mC5nH-fAo%w~IM<rj-~F(6&;ZO8vHe+Ml;3)sqsTQUs#isDup
z>iSAQ&OW5*f3x^Z1uibP2oAmuaneC>;$-0hDM-7)gS}N31I7oQk<Hj+otLX<4~Eh<
zVJ9y>RR~~~{TUcXtGkSy9T^OlhUyPBcj>j8yC1?V7a}9HEGUTY&3ff1XqQ$?PHuLK
z!SpNT`l-z;GSWk0gjwfVWH=j+>}!UwYBPdF5WN8UUv^#u6e-lLO!3_>@A3%?5(a%*
zwDLqWJ%V3zu5)Ii3##|XkNi=HV24%qU_urA#QP@;RieJ+3AMDQ`!4zS3f;;fN6@M%
zng%33{VpPlUr*{H`Oe0K-v$d$&XwAf{Y)dANR#L_x5S1L*`To^hj<AllO18M^`K@@
z17rSI!%a_f3Mm#37au*YK|CCBiX#QD8?D}z!zSc6iaSgaS``5@iPY3tOn^20&v>>)
z12JVX)rAqhP?(&YLM$E^xSB8ImJml@yC1#S=3UtL*vq$bL+PZEXAD>oGB5NmBs_k?
z|I+%#Ntg=xOF*i-6gAssI!?vG*=ivvo53Bg!`#%<Q)r=)J^@L=Fwea9W?3-9ZJOb3
zP}kM8RYRpp>soY+p+*p1uEHnHq=A+*Z#>pe2m0rh!xyqWRmK2)EKV)|?7lfoZ+%u-
zWZ`ct!P+zqc8r@tcmjUOQzb|Br)Np>a`YHxD!1A>`9uiRcrbyU)DNE7E^I+YBUJKW
zMh90+Gpp>vWf?;`SO`RnIdvo{`dJYEd~kG+!o9e3hb8crbDI=Y{tn(k^otBpc<x0+
zdbPQwQ3QGhi>(IH``{@GyM$oBElbRrgKD9`ZenJ?Z}W<@eX}2<JAHq?$m-(0g8S2N
zq`CsR!tNS+oyCMm(6tw`ErYcJIT@Q%>y$f{uY!_)xC%zj_y_&2lw0&`>*CR(ItM4D
zhRl<Ag7x&tSBjlY$Nv1j3!a(k4QR3<gqI~=?KPmxFwypmpfJ{{Lq*GP_G5G_xC_$r
zu)KzMw3IA_X(t@g;0Feg!s~V5Z-@ACxOT8Bo_t~J*pewG2a@oRzgd}tM&LF*4UylI
zr}P!2c(MIt0uEHftOAn09>VOFd<J2RabU?MCn=t#c_{hep{Lr|b6-_qav213Y9vmf
zcZ!d?7JCZnYpccS4YnMymqnAlQ0`g-Sm1g?3b=m7b1XnwlBYBJ_fLsK%^6CqXJw=^
z=L;Thk0qH~96qz>$wOyhEZnZZZC5%>9A?9_o804bDQK}4!L_Gz&?n_nEN%5CR_83T
z^ap3ekkljWE6CMI*PqPv6RdDVDk@6ec|sevRzLEu)Z7tjeDhs%{z2{2MJag?s|TUL
z7E0<wPJmCYaZU6f+jg&AHK0r{n8L8x4>#bb5j5l)qFN@53_%?_1R!o~uw^GMh^)=W
zE&kFHnVX9UFN75sbhtGWnB~-eC?$k$H1eBd5c#$yQfH<G>`nYSM@Q;Q6r*M1Z%o?j
zFEYL4?IGgzcMxjDBDpWfTL?r2dc~3w63zaVTMu{})n(=Vv7AiN$@iT-2t2{e%8&K4
z!Ttz0Fa&upe#Ge6nn=2w&RFdFgT*Ik)z~>PA3?sov(UW(wy=1TN&qX>5Uq`IISFT#
zS())M3Qj4<cJ#6r62u`0I-zKX)L-$wLo8NMzLD1%JgyGI6G4)LX^`I@iLQYVb{r{g
z<)S`&JXDvvObJ&^cmf#3$?QQvTv5x6$Zb=CD(T>@yOKCe1htlXmhiW2r^X%igq2AC
zx@RaOFxAu_=<879(;8di&q0r{kGy2x6#c`r#T?63(BkiVIEvv-i)e92aNP)<`U?X5
zDL%K!*<b8LLj_{ABYNb|c>5^g(0PMv4iTVQ+Ka@ks`aCCygoAEuJCr&<bFaviAiY8
zIbX&McM_0@JO;i|ijWCHvm;*bYH{OgKsk!&=Lz5}c4H+hDvLnCQgm_{BM6XkHp#CY
z?ba)-^T@`-3T{AHDVl3MtK4Rl?**lXQ9Q(6bLg{b(EE)PrxYro(?aa@XoxUjVr3&L
zUS`B0XYrNMD_Z<zwL^iHuyzf9zHV64b|j2Ef@z2v3cM~371N)9K_EfahfIKtrEu8R
zBww$#I-${2%f>HnxbAy>J&MYP&&_5p6^er0@uQ7^f+lCepTxQPrZ%{2u-oCA7X?<Z
zO+*?w(QK?=$Cj3*DGldBX*f5^Qrt)+$XDBSKL+t3m=(_1k&EK~;{38pY)1z12UC8s
z^x_phEiwky7;Yb*K{S%ytf@q*$cb?XD07I8J9HTJ1!4zWgFA4m&7@^br54sDm#aqj
zv7E5kb>4~oI5n-y8R9c9w`BVI7d3?+p(NB294kiAv`F6RmITkeJ0&HBBC3qzj<{|C
zOyG7<^<Q1gl+jL(;W?$vSuA|ZxWKXvdI#%JP6|D^{u#*t>x2yw_|r@K8cTxUM_Var
zOiP(IobQ9bFwj&mNEXpfCkULa^vy<-dgn?2U&T3cxMKjvX?07BKV*v3f1yT(cdahZ
zKJC9p*i}vlcwgA^T^Y_Ux%#k?UgSI$e5@4dO0fLGlo-j65m)a}k3>K(UxQ(M_I<ca
z|2)i#?hc_eKreyu{~{y~o;CKPAW<C!IRu6+|F1dU63R{sy&ke!KK}DFxbYi-mTJde
zXvwWeSaL#T8KuJ=o+9TCB=D5u@eDYUUdK7KwSX!SFo#o^ktdo(f;haJgiIrN=rFPO
z>`+EKg~$+#UiUm}65+%LZ}+EJtroo6>}sUDJOd$MH>bJX<DP;bA<;HJc;z%NN$UI@
zjAn%zdp5YTP&p-PQ#K06Z|Yx!(7$7XysIIr&7}kD4H&C)4}~mthtkQ0aN^L{Eg6vg
zDz=!6vLunD@p$#w-5?>Zxv?4UI(~s`U*MoTJ&3uP9my(psw2gHr*Q|K{w=YURZ^Ho
zr)k7wT>nCT7FrAr8Sy3<i4{)|u7}hRu5m5e88eMIG7V=m6FOx#I}L;Lo!mPrA-<ng
zwpd4O%npH_!lUQseo@N%-|RNBTC+{R?*ruG&vb_CibhUBy)Zd=9sIc%sgCzhCZru%
zzE^#fzT%pFm}}*mP|bsE+mut{4f1`KaF=K_h4Rc;iM7rV2t_<_p?B!u``^yeSot#4
zAAj!!S8)^yo(|}MA<uswNHiLRn1aH!yqTcP^EJJC!?}<gF**4L`3Z$bL@;)D(?j;w
zbh;<^o=ZaZjLWUdOjH)zAlcT1p1E=QZ5KYnzMR_J@6~q|)vE?q=Lg{tC(mgOBl>iW
zoES4%GwvM36n6!b^eikV>d#H7t4E_y`H9y_4=S<U7?>e}t@@)(RDJMI;=GxKW4z`H
z5o+H^aVW_Us3_zBzEr4y5UIg0m@H{#*gV3?who_Y=(Lu9uyq0%MtZXqm*eQ&17a2k
zM`XoT>w1D+zzWP{rNt$r9u0d%DQC8&l63eJ#B)a$2A+;1P_d;WeIMZ%!{k%dF5!;v
zS=Kh<vyOG)Br|Xsf0LXxv-RgQm~?1>0WtZhm0(n8ax@RAS^VgH;ab!AH-qSW7vuC8
z=*uI&VkC=2&&r$O<S9WM<k=v*tunGcQFn_VcYnX37h%S3c<hkI8m9Z*H4kMBn+>*4
zgAjP`C!xN5g<47%6Yo66Q>Z9;NoPp@W0D8&9R)IO?7W&;LBlX($*SC%i3V`Bu(*Es
zBUrHrg)QS=g+?X#NF<juebTl3a%j#^qE%ReJUa*F-8s{g$KNDNQV*d^oqvjU;<`o%
z+GV;WdOzoTiJ>T#@HX!+oveV4KLzi0x3duEZe6awZXO|^Kf((0QqWur*(RZMZB(cF
z8Pp}!#6-g*ig9D|CvMaY=;qw@gznA8U=B^C(YMhG)SU#WMM_liArYO4k)%tub&Z?5
z+)_;R(N1>7HEk2yDL0HB1J|Y>@qRe*ZJD_HQ8NFG?j|l+RoRFmD3;PlEM+uTgg&xr
z|9(>I$=uUGxsBjvHh}1lQcr4$y}1L&8%{n2H($JHQS3>-#F_Buo*lSr3ZtaT)BgwF
zqN4gSazxRi;>_i4#GXhEP3t8{Y_38+w3a-hcMNM!_<8_<KM?o6TPPA}r$KtHB=m<z
zW){6e)t5J0%?__@hMGlr#Wx$4m@k0-^#`T2=tfvCIll^z?qK4Zq6%70m;8h%{7yZu
zDveTrL1d)u)~0~Ek#DCO&MUXM@B-d@$@a)JCGhPv3s%=o()5&o^h$)z<`4dAc2oOK
zf<>!4VcjVaxDtn7KNTUYv}7ny%8Z_HW%esEMmZMDPPG-~mjg%z8Eaniv8Tnb18$x%
zvAAn^RdEQKjj8866d**PNLtUgUjlE`xO~MHln!i8M2HTmf|(n?U<EyMDcN^7-pZId
zILM?+C7gaEOfe7=^o5c=i+t-L2;P%(d7FkR`H8AjY5*ovdM3_{iAJme|D!`_&QBo!
zk&C3!oB0n|amqualx+<0_+O`yrq<F(gz+I&ekwjmtO?f*#PDoP7Qr)}cmk+6sZeE%
zg|CdNV;>WrapVC}%bMN!hKQcE!^AzWdZDUS!1k{iEFAQIe(k!m%ZN7$FwmCg1@QT9
zdvM5HavkKbP&1I3+RikyU&Bd~Sy2>3_4FE7TVx=$iUzaV>K>xizinuCUmGvjdt>^1
zy9<JiDM&WA{BuM1Cc*r7=lhGXHP7VtXAgZ%k&x0^suSM|>rDV!k3W<Iw@nT>0Ey*y
zK;~~QsBX-DLSb-r^;Hz>mNCHycTJIM3z&xPeRjj?N5jH9;$E~8JEuR5tXLwHgxlq*
zKXG$@iI4CJ!9>zS{n_`xmtrOx-oomLP`memGZy_B!bV|f*CI#rDiQDA2za^7aOuK|
zLeXS5=X2~0Ou2Ir>P0OeX~1cL7cjv_dNIka@9z=8PJsIsQa_t>7aKCW2RN?(%(-+j
z_PBrrmv1CYL6p0cC!d)fXgC$~CeGZ|3l9qP<>{FYWql!v4T2<UKq*Grv`XFL>#!Ad
z?YvrueAqoKi|VR8-EVhRkp9i<uMfvpf0k_&_t4tkJvY-70H{C>i-sjO{CXX=2RQv*
zW6r3{I@PJZ)_DN~mvmeVR(J905gQmtR!T;baUJ!mZ#E~c&bxkKoredKutb{JoVi{!
zYz>cLU;Xn^(l#|EEZ-)1MqBT6aEa=RHK}Bf2dsIT$xoH>{A*<|V(~m*+Tt*bQPN<i
zbR?<*^c5~FVLD!7{E)i@7JQyu8&(8sva+y^_SsP-e3t(8_#;(^Y=$=ukwzV%{>jNM
zxuR43wU6sEvYj|74`A46%MbTOw<T;Yl#YkrKNe(WfV-y<1O(p(dIWKAJu0a6)g-4q
z^%B8jc1hfrVDycVjC(>;4=kQzjlO(Y=yjdI>=}?3-1~Be1J?){3_*^wa*vE0%KSPL
z9;%cGsF-fBD>AWtj#BS&QSE)4;pf^sDvii2HP*UhUVWY0$Mn5V)~}eVk20q@LDwhq
z$V9a8fgVy`K$chScGfC|jWuZf?R-i#{kwFUUBEQs`^?&gy)2Jk@CO(5_Cj#!UrJ|>
z+xn_M4wIv}uD_ZiuDYO#NGd|JHcr66zyr)hL=>e&ME*~~7F4E9_lo6{>=PvVtFKa^
zOo8HpW<R8u0SF2EW`P~1NH&L1!ShGw1zL_E4hvVJr(tVr&}hEruckVzx)9nMn7xyO
zvQsR^XEK&nzq{R9wCf{@>m^u@o=NLE2g*^<&jJj4x_I40;VLw;FA;hn2zBG!n)123
zPpuNZRjw?V^UrHpc?zS;NN|$<bz}8JJIFi7a)W#A3PgrtVif!|By~sr{n0w=Uf#Pp
zR~lO>=nNUDG*M_Wft){9|6ns_{0jS4dJMCVh@ZtVp`Cv3kjQa4tWSFokqE4uB@%}S
z*YHPzr!S?=L4sw`LRPlQHxt<C5!ibMI+X0u`^EkQ$39a0F7QP9cCj#_Apay~M0DhB
zzaEYLr5=&pqVm=2tThtz%M+3gKBG?o%9v-Io~8LTMYa!NbF+>435i_`Bocp0Sivvl
zn8KJz$V<~ZIZcBt9Js3I4vt6r7qI-2vOQ!wJGclOT91ytHjfpL*GJj9F4Da=2ODAE
zT^LXq9o|k-(-8~|hw9%KTuPbp3e*VeBqb*Xdw>Lih=S>?aR&uzf-#bj5C!}E_sQ-k
ziU)&WNs$s2QvJ1Z_WtUKrSAP1?eppPmQcEvta^@GGDofUx}n;*W7Xcau|#+|C~tL{
zwA?_vk&xUp?q9<K7+BH?1c%(A7sLoj6NK<X;{t~u`z;7ZDF~q}2#0pWI&;LCH#%m<
z)GD)yThErxz3z1&t1xLs$(MC6JHp^D@0!KGe#;Z>c7OWzIq(I}|9>5{K^#0hFP|dJ
zf@n}e|MyV?sJ8mgz6;Pv$p5Po8r0v`?pm_{-7i}MSA+9^{}~$ADa2^d|GF@ozmcxN
z^8bBB&~L?ZL;&Ic9w1zpvma38Kl;@${r?}_V!y$1q}=%4>7s3QVb|8nf83B9^k1e?
z8!HQW-gF_o4wsH4gq4AY-~W5)spVl}NnY<S$oRi2;2Z44{$m2Dvy8%l3@uAAw45RT
zF%eUgKgz4E_`>9TRHc8GmHm8WFbgpIkGqqz`3p7r<Myb&4?p!yYs$YBed|9Wkv*Jq
zZMsa&YWDv*Ayr~;vP|T~3C-tdT}V9fM_HZyeQ3IW59{w_=6v9?mc9LO`Lh07pTN75
z?wd(j1JJ=q$@*Ny2bY*THM9r}%hJNy`W98mL0_NrqAIl5GH~%-S4q_g6Y~F!N=+%@
zi-3&9ds&NuDYeFE*2@$bTK>YX+A~RCD>2Z#vP9LTm5<}ds5}+AG$(y-XL+Bv_B8a`
zq0HD^8f&NBKEDmK9HADNJ}I1JY`%jlfYUChYC30i+^2VRG<Q+w9!zL&U4})bH5nSb
z&I^3iTIAenD)9O`24l@9Vik~=cl7hWRvUFS(S;#r<M9y*LS4^5l#q|*!i3PB-I#^3
z@f}V0$%n;-%3lF3MXqlVQ=HAI*31&kP0YVZ@<K&=_$CK-A5yfny&Ic91`$s`s&m}-
z$+Umu)KzU7OiJXA#{|WMvQZS7{<e-hyNT%U#U|xSBIb^H@9X11Gab~biS_Z`#|4zJ
zo~i451XwPMCS|0${8`o2mKdb`HRjhK#KKg4HcSQz@_N<fE$mTPU(YgDrIPPZqf2?W
zpZtGq0<#?p1$k7$RmEZv@aXLY0$!MwsnZl^uneNK*88bZ-SSb_^&=cV&-XkTRF`T#
zPOcKQo4Wmm&L(xuW)xE&$!}_V2=@!&qG>l4rv#p^a@`wjRRmf1$jH&1HMz08&^&D#
z%@?}^wRvEv-06&6amHBeWEv00XO3$Z>GFq^zn1(O<i5Cl&*TL@zPYp%_2asg*PO*v
zLR>I+b=ThKn=D(hods#P>FsZ8t!B(d{+~gI{aoHF+b8L(_-ne-vOu4i;~*AsBIG6D
zS|e@IeuTrvXG8F7e-);3kUy+x#M5Q**@kat%>9MB%+tb?awS3ig7|TBtZero(P86h
zjP}?n`DM$ev6&x->HVqNij$5v7k`#$A}T}MM!4FlYH^h0@TPe_e%B3lfz$8qNQ#j+
zpP}qRA+RorBZ+uMt^0i+SEDg=4v?11)W^IwzGMac-w0#IDm7kPWLryMS?Xh;8rjrc
z`%}|)KvTme<issC*M>XcaEkITE8x{QRt1KKAv0@@+7X+4x-h@pD=++^!SZ70>u6;I
ziW%oOXHAzm!H4EEd1c#<+gDJuMJ6o_Dh|cMlkFJOhH3}(%7vQv%ojoX$vA5?MFVjP
z9tt#4s3hbhK6~h-3L1`4>a3P+)*GsM?qVB+|Hid!ct%h&*J{L^@hFphNgBjx6p(wZ
z&x84{y=@@Qsj+O7I|4<iY?b4?SG*c3CM<B-)xz^+hV<ACrIndP6Xqz%&_`aeeP7h{
zZZ$#GS>$sPXYuqth$V^dd#;kMacSMz5sh>a@kGeDG=+OApKE58uV;&al4KS~GEhPK
zU)cSC0YC*EKj5iUJdm)gy^*R6^M8gWMJ<=qaorr7YL!~x(NmifT9*5oNy=D^ng1O$
z4x)nh*(97`-Yu?x?bzvltIqbI3RButYxh_2_z9PBDXU1CIzID@#WfQr)mKe){?U!J
z+3^lh-g!-zZ<;e8U@#A6!wUYLzbs90x4hKF-BU|JU)=~#S#4E)7RmtHF6OmXH+=&i
zF)R2)B=aDK_TOnGb!ui$#fPoR#(=i}>qf3F6&QdpHH3hGL^sV)J^FBWG2Lfr3NT#T
z(%_=^+}Km3a&ol_39iQbqhK|6;UL>$TI^o5WR!a>v%x20>87ajt0rfY*4gEPrc35=
z>IooCE*7Ol1fP=F!rl4XYh-8le~#+7#wzSw*n;NJrOJf&fAW=_+3~(sCIh^+UiF;;
ztOh5$xv`oWuBWxzPu*3p_gRVSA5ux<9VOYxH?k+Er27`GOT;46=C>9t61w_ns|RDq
zot{(a{XddTe}B*sCGqj_Jbb)>iEhlX3^74)i-G2=psdeudE1loB@Ak`veGTVi^+7d
z6LQssnpApnXnfqV7UmK*c@${gNRNUr7ZemEJ$jM(&DrEJ^SwTq&2)0pM{)i1L9{p-
z1{M~yWeyMaNxvm@T6^q#%!w=?P9(206!oF`Oo3TC@?>BqJ}P8R6yE06jq*4b79SPz
z_N(NjolnPWwIaNt@C$7HOwpXv)qR+<pcHF~Z)<I{-K67lKCqgp#NxS~T|PYWae2H8
zc`0pL6fha;>l32)oc?xayEZd3@_v2NAnYPJyKh41+OobgU{2VooRUIQT=j6FFy0cQ
zt)xV!^1Oa}|MDoDvGwU8qs>d)*K<eV1U-vF+F_sf2ZiH^+kt?D#O<m&Xl2=T%Rtx&
zLsyhw`0O2<ezXv|5?ilmR#w*AJEeHPNFi$)8RKA{%LV)Hf|*Csot$`lELUYCu{L?Y
zZundo688A^nVzBSNO@*9A~m<JPzG?z&IWKtnvs)mt#p{3hM(EU`d)$j(xa%!$w$7z
z!&9t16HQbAE{=*YY^p_>iGfa_8g{3_*|Nw>zBvI}JxFy{VKZ91uvO}A4+l<F<JB}K
zuEcEzv?bRg0J;q;!g5<e#qa%Ao5w^TKu=4$%!Y}dblzXP@G{1a;YOb&R1Mdf=sJ`d
zKhG(2Nk93nw%4k%dn;AmbbL;DPfAD}-Ss#^@*IWrjT5+B(vxA@+UnlNcp#a)`<nMa
zRYJVBiF<Cj>5(H5I{J@#n1xA31H0;Yey3X5T!!fNQ}xx-QI}W}HmjZ#4*7NFsZ6+L
z0USntllM_D2f$Vixc(e80HwhT+-clED)kY*1^JRI2We;-m%*5>o~Vm0OmIj;M&~vk
zT&Fi>$qH*luT*LjLVSAwFVpyekBU$n(9!Z7N>@2C2qzhgB!km@&+ZW*=h<xiEy-)=
zWz?nDa9J}DoI!)6eJ@);-Z^O;2an~-zK=uP8;|8PEtU8cC_V;U=901L;yM?x;gkBy
zW-@_Mq|tdlaS3`DZ+vWKwY;s!^!z3A^KFEg{qg2>v)%c|>7m%ItbXM@gU$oB7<X7z
zHn@h#+tJiCd1G*2^P#(2(8wWdBPyXxMIHA|o`i_#`ycP$FG82TT-H)>2pV~7!wn4z
z>Xlk~t~>Ud6$Qxb0#DCxfoDmtC`4Fi`&!%1F1szaIJ7>CymAvxBdOz25fNCp$z$pF
zDSE+|(#te>WcgK{dOMrm_pP9ZQ_~l4F6Nddy1a^1F<3JvTZT4%lw)GVV=)0HYme!V
zh_RpFQ47_7{J<xH9H{hv`MCM@o!#la^6x{waqF~kR4^01?zfJ-RE}4~)}y?_%3Ha0
z8GU?rnva9kOOkI1Ox<lafVR<%7PD)N4i%M5bNM2+Bk;7Fgpi|bgpu0WTjIFL@3Wek
zytJc@_efr?d4Y^C105Z0lnr?jKDF1)bOv1&%+v;0Q>To?A13MhH@Z#Pi*mLxX{$Pn
zk4Hj2Jj;xl8Se1ZVJ6h=>3CCQksU*rO3cid7G8Ki*fTQYmrkk}hu+J&B9P?N%^;9k
z!9fgJ4w%F!|Gbxw(`y(9Xsewl(gd#R_xl=Eka@|cW<EM}323Soy<Nuwx7ImUtS2^>
zmDj)Ul$78A7}wShKCw7#+%-mP7C{TySkR|CH&8R95H&4EgEND`ne|m64v?mekZ38&
zm`t+;o8vZIF>S8W5w|xJK<o~9ZP<^zw+6?w=mVq$@$jY}`GZ2^4~%A$%M=8P%Nj3(
zAjLnoc$Y@uwBZ3Xe=xx1z{POmKe!noecMP~jy9WgiOa;+@oCAVD5I5bZ@)j(g7)EQ
z1%{2xXMQG^n-lW!5WUOu|M3<*=#MtdnES48!}bz>ptoj&`pOHQVIZUJ@dRk=s>-68
z_D3gwB0C%n)UN})_VlG@2V*svWPI~Unovirs*_Ly;n{GlYr$FKG1UrSu3ryR(<Qk>
z<+6z#Cwe8IBU@3+Mg8Dc(qILrORWVlD9Vm6PKW&N%7iGRg*1tKY!zpEEnB{FZqlOe
zisrRv`@uX*Ck}Cu{RPWQAz`{BI^DH&3v-B%EmK|j17*t)<08$=sy%!PQ=D{?^D>bv
z9YS3%FA~eciCe~(eA5|IALcTMynMWxdvjL(g00AMCJvX)E!@$*z|XIFt1HS6a8+Xe
zWQR%!&<D%504x+aos#hRxfbR@Mkfe}iWF%*QVWYrg5|leQSnabXkmjoSlg6-gtU_V
zCC9K7S|$#_n_itnti-y_70x;wodzRI%K4KSL2y#assOU^%GS*yn1@c!aCw%Ky)0Qa
z!FYM|47C~Ec!`Hs_^3N~mU=krB*!Z6f-4YM#c!pOJk2#$yPOecSpj(h{uLXP0infv
z7oq6cjBrLb>Zyc+q+=N9=_6~-c6Km^bz}6s&Ld6AIMOq@-FURUUH5LeaY5(O5nIU4
zX)mSyOn4a?EBxzi8mh4MNH^t4@bNWqyEMIBSL5U6BZ($?h6_Gb>Q2Tvt=4i~Yd}Dr
zJj(H|kTpcwwNV!WTn@)!o*peZ^xQKm)EngS@Ywt`XqBaKx>&oKHC_%Krn@PU@-p)M
z9yD3I>3;YKn8g0IaK_9I8=8xVE7DAAI`JY~7!e`Z*GDnB`(yMnmPh(Fm=-^&!(G=?
zlDC%Ka&x`#J5}!2Vs=dzYlEN$q>{Ub$l4lSxfByCl!@B=IM=%!Z>An0N6rE!lcK}p
zwDMF;dQiI9vqMEx{yEp_xk&8fUZ|%xfH&&mCjOvz^n5KGxvZ|3be;v5!RUgF5*_tV
z&rV?(EC*M8TS5~nq!o3u7SuC!7V%L`k{h4lD)+n+B(zN0+R}I^Ax}0AkTPvE)_BNA
zO)}PS`D4hK{G`9g`Q@_>PWMp~iExIu43cS(>veTL`ApJJgl$(Z4mj(J)L^7=(*hQ?
zxx|SV$f;kwQp2#HS?@VmV~N6Je-DFt@>->Ce&|d1b9oIRX;s15;^Pm?zJ?1Rd#_}m
zR<lYE*Jo!g<;;;AG@BskSMCA`eE*I?KYDR`x+{2I<#W3Lq5+`vu(-hAq2gleF~fus
zJpSz2xouNY>6Xu51s&cg#p}s_D9m*3I$WE0f;>kTFQn;WX_?lVfy$p+V{R$@&~h8h
z7WKD6v&cl2KT9D(^!@5_WWJY1!4kxWOieNkJTwetb?&!mU0IPaA~9%J8)rA8v%Ys2
z?&5H40+^VT1b!^B$nrZM06zCByzycfTCXf0^bsquFL>=@#+<+0x8Jz_<%rI*8~5%o
z#&`YY6zY1ptbltlG(BdURH>MiVIp4r()(PNJryaqYwdGFcHddd(b&w%FwP?Ko^roa
znNNX5d07VHqIh`_IL8obs;V<nt@e4pj&Hu%1kBa<<)Fa)RQK!XYTi4251uJLJwnM1
zu6F-2EnrRp6X`hqb_$|pMRk)@mm7WSqI=f7@qKO(v*@Ld%_i>yyP7nUSzUi>AANbc
zGHsOaF~87`7E1WJOE_J&<JC+eo|aj9jitT^wi2skVoc+!rUKGFdOIC?xJo$85Os*T
zicBeKM<+UVf56Uywy!Psv{VI^iEB;Ddf2A^CXo~8-<L@2NM3o@jOL5)zlL+Td#2KJ
zQZ}|w{rV?xY<AT<t+V3`%zj-4k}w?#r|g;G7#kOvp16vEOoM{s1rT>SS<NprjU*1R
z66P~aRVbyni5xt4=avAebqT&HOqUXye*!<uK53m$<C*8Sl)?=0Hhy)<Rs+QrBoQ9e
zxIfj;$DkO*e$)?w@)%%BRTe$r5705QrGaYS^Ra|{vGR8PWGcKo<>PySKNWrwvA2c{
z4aOZ$XT;_Tghd?Dh@+^{QoSo`DX&hacRtc62p>SXEYT+3{COY%talW;EY^(86W?ID
z^FxVq`u7Di=emb<-PzZ0V485>AQy{gyT-#SsjO>@&YIdJe{!F7p{A|SSnXsw-=ras
z!|C+o;$TMUo?bqL<LlS%9)61->#BA0BT94lY^H%Dwec>{lr-LTPJx4c0y<WlypQo<
z&U8)4>ec}d^GidYvRvQ4j{$v^tD@9tW~J=&j6j@ThjF*Flb<Q;WwFa`^z^<o&1e}v
zI3hSGXsH$RuFCyX%E41kXXAY!(&*v|v_u`|{f@sjBTDGf57&}@FIW2P>_wK53v>Sz
z;#iz}c^Y5S@&ut%i`z3O?dFAn2$1S0&fj@4xBCVzq{TRtV|ue%tNV4sy5(kVwfLDC
z<eMG|wq^``KE9}KFeA}-!P&A`bk!u2vedLPOEq;>RR^RDn<Pce2MIQlT1Lgik}8Tw
zmME1n+*bB|I`na&0+VI#CXeMVC+>hLDb81s5*fS%U>CmWwuJ@5{HBK5!gDjgz&Yvn
zfmN9BdG71mB2>oTBHpK#NOwPqSwhbbworQg(1Y)54Y}M%$#255GQ-FCa@BtWDdy=t
z_VOO?P23S5>){cAARUUTZ(n>W|Iz^>LY05hIRgKgcC;{>54Vcv2Elqp<yyKOeP_79
z2RRU4j?Z7sBZ<)_Z6TPw{W8qp$(}J@wk<bPrTOHyAutHnjq&L$7t+l&41<!n0jwre
zCk1xRo%`=@$Az@%_Qm3HCOrr_bCq%-1_OE5z#qka<fuCTh<eRpJdSiq+wHCG60pF1
zD}_qpn*ey^0zS>iN4;;)UGFi(9!aGUN4EL_X$;~y!4wq>NxsS$hs*>=n3b(Vu%zQ#
zirM<_Uhg^!dv&JHWHnZevj5iF;+Tf|?n=SvZZq-?LS=2R(ytE5x{U2@!^W)S!3vTp
z`2&Yw=)gG;1zlofV^b(@YH@l-Xd748XLiHi%qLDdPKlwV=NoO7{^HK=XlEDGw|oMD
zZjn@>UfO(c9iJ_j^f6R%UF?dJn5f1INP|AQlzUaI;;3W~-riv|thMTxVX$cmmcjXv
zMdymJ3DC`P6>t#aWcSI9K~HX1;L6s!#;o*5%RqFsGD=#X-G!rtZ{QHRjA>Tc^}b*|
z{hvh;(3fXb-ywtNpf(TN&i0z!DF8yHKWW-`I#u=;6>82K@$Q^rO0R5XoRY*O`0oI^
zFC~Yokms>BG1N#p&nN}qa|C!hoBOI=@1>cU)3OR5TC<6K+GjH!w+T`4CK9?1q4Q39
zTxA{pb2O<<YrnSe#n#dPX(QHJE1P$b>zzms$JXWMTpt5=5V$coj?T?~sTi*gA5|&V
zd`PoT(z^^HaXGYm;Kp7|TkBCS2CSA>a~>wi)Q-Us4%zQ-$r5o=P~@$Nr8JU39ntjF
zrtv`7aTB-8j&^?dj-A$b_g;Wd;{}lB(GHN>55EZjxhxWCz%sU{w;T5kfTWR99_6UX
zrjO5Q#wKD^Y3qT~@w&rboy@BIkGo^5hxU_Gu`VKql*D6+sG$B@P?CC$Zfxk#t<D3v
zO>h|9Ez;2LzQ@m)Q!8hi6pyPSb3AUKFcPCW@@Fv*HSf*r%^y~VLMK{mjW76?)j7-)
zsL;}@`yX`YI8DRB%ciKC&N%>hPv`K3EYAkIKE}1zx<JgPr2yiuT2RX(1Uo!4toD5>
zNNYc!hQ6YfA`8TVG~AjkTY9sa_`Cpp^|z<_#f>R#7!~wLsz#3cQ;42Cgsf<f!|X1F
z`mJ9NExx~xQd1>BqNS>8(#Ltors-&$^<hI5RsCOrAyTzS;=^gCjWMYm7=7|qAmrsx
z{-8Bk#$w)ZKf2ep<tzxPFcXr%cH*S+o?JY}HzdseJdhv1gJC%JjH_CRJ84!sRy!P(
zo19p)lhWJI+%Q~eFln&7X|n_*ORo<s)Y>*8d;6$1UBQh9*CAwhy$i1VV?g;v%Rl|*
zf8(Cn%u0L*hxXiMJGW>Dff4b#$cN;yOC)WW_Y4tQE0(|=NHVyuX(}z}`Az{JCXys2
z^jR<f_&=9T0vqN~UaQ<Qx(j3+%NP0$MRE;~QHkkt^I{Y_XF;SX;Klc6vnC^lc0OU)
z`&`tlZmbR42p|n5h>=JkxqBZUd=zGsL?P)NBum1$Oq53N1iW%L1jlN*tXE0AbrJEM
zmw6#Ad}NSv>iZ->I#qEjF(^j!Rf%(G$yIP_mHhy66p+qU9bW8wGak2k(;k<Q;^x2J
zS*No5e0p{c#8d~x`|RrD-ge^zoBX?5SSuf0$~x=Oi4VZ{2P$L~5YZb`*%i9UveH4)
zyNBc2&#hx48<18pb+f?R#RX<9qWlezCa+)3vYvJ}&~%yLuuGGD^0&w7+MeG{YgFwI
z{Jre)2^5j1P3EuHkIoM{ZJ%EgQxzlcdQ^1}dHGAEw+oe<c%en2?68T{qc*1qa0yjv
zW&-%lk5BU0?_ah5-HEc*^+mS%9J@Nw%gwG0HCLF<#~ki73>Oiiq{lUMUh5f@Y)1^=
zYZcbY$kbtLk{`(0a9^I?JhSy#GZyAU<Ei?&NOXb_@u7LT5TB7Tk;C$j8KnAxp!!f6
z!lKrk308u>l{6;u6xRR7eBB5cDKd1nm^-P%PC;ApOI$f+oWhQQ6d<L6R1V&fjvi6V
z#CY-9m*~?kM-rLv(?pIqAksRZk0Qr84{5Yh^BfqRQ!D?#WRUZD($^^2gx@J_w7e!P
z%H7279q})eNpYG0ZQXl+%vY0E6V9wZKwKS$y@lGmt`JB0$YYDGD4V1;lp+pH&4-#X
z0Ql&|#qoCb-iL^}kyF_Z(1u-o5XIp+Rdcusm#I3S&DXzkWnxHq&nj>o{p%51RBXk#
z1)`2{?wyB|`dDCQNkEmX@Nfu60WG_hH=TFbrhc%elT#|Aqz?OAPM3hkLa!kpR9cyx
zM&qBd6-b}L9YFzgu#TJ@vZF`**Hx*T3%;Dp<3dLGGm@4-4Uxo9KpJt3r79?s{ZGKC
zYwi<Ftrnt$mY2~3eLwEBF*P}P$&{+HCdLaFOqK#ThYD`(zzdF%YcKsKq>wse4nj}m
zdz_-qk$ZBl!oo=1TUuz-EEQ%QIy7Csfy^rv^#M<ApN;j0{1#GKsDEM70EG!s1pLkN
zGB7hccI-~>hg>^0%IHBV4`BpQpAnV+o%_cY8d%RT7GQWtG>H+#@{%8ANMTVYBksHm
zB!9`dta=lWMwv>k3EB{sUZV)T|M9ZnI?(G+h7Xb-*(!_B078Jav`LNCIQ>BRQrt3(
z2IpYT8y>K4fYGU?<$k$$`Z~TyM7jlg6l|1)fFL)%qRO`UGrM)q#e5^tU&VC7VIQ5n
zZfkjF)!V1TSaTv!XPBo>>D0KAWayl?Kxo{?XWOV!Z*)y7mKECnJq{Ej^dQZ;E;#oq
z5Nk5lwlTL{6bW`bWJDv~>ywCvma8$)s=`Ao0=c4~{QfifL;D->(y!KI-*Ds0whr{g
zM{anox|P=S)m4Zu&{6G1ggD;bav{*Y&}#n6xVoBf9C(u4V$^_w_4(|`NGTy#n4{zE
z(Q(tI0gs2CMUwT13VCXPbTrVB!MzOk1fQ7rCob6A$I)o@B-m)78{GL$EHL{lwrVSr
z=CzQ4aWnSM`d=#a+eeQrE9s8T$igLMLY;aG_W-N!FCQ-^Cu%jW=@%GIyu8o|sp<t%
z@kQ2Voyr&Z_@P$Q(F+qja+<Ay65XO829+I3C6^?(k`6STjh}z!ybCNIj73HRi3HF)
zxK~16pB2FyplTIOC9jI3M`P9rQYg^l)qfC7hb)}I@5zG|T85RiyEZbgL5G{bIVE<W
z+h{6IYH%P(4oicRE9Piqgk_dRNGw&d9v@VEFw^(whR7ifFjzi_Hv=t5xyvGmQIwZ3
zua)h*?P@FK?R#=L*<)Kr%U<~os;9jM1|V}9E0Kxi&3_p(0ml*tp8WcDQASDD=8d(X
zx#`DQAissFMVIG0Kw2$ap2iV-ScD^z3OsXnrY5m3Dd%S#ma~}|ZF&HWI&5KfEx_Zx
z_1Cq~!U8{b_1Uq{i|B_MycjzrD46xurnOs6W<~5y)|`&sTO4DxKyL<&>a&Cn*xr^x
zA)nuhquqZIvOvZO(pslV>Ywy~q}g~vX1sRXU0T#y5mZHB$}C(acoaeix%X$3N?I5A
zDt(*vB>PIpKyc6MCStVg%&5H2x<u}D8>daNxV3dvJmv;JHm<yMj1S#LR&%yrLL680
zGYRDJDBy6<%gFhM{wvtW2LK(5wU8&E5Mv~3K^tQ`UAqzlqE@QZ)qjAW<Lx|BSfh<@
zZ>f&8Ff!D&XIFh%7~#kBK=CDIMk9axkLpl}(MFgJ{x}(@)((oZB31+<PztjEq-8?J
z0o!_N2UCEr0w_t=IHT0q*y~6L`WtBv+aPeernksNY+}l^rbhs*p58mSjSOf!EQLE0
z`@E+$^=Em3q(mdldF?9ieH1rB#+aTZr2I-ExmmjQAEiPPS4k{2Hf9b=M-F9>eP=aj
zvl92kae>2cy`X6;$30Q9;n0)+6C~E*M`~Mc068yt_-uVGh{hX)a9Kbu?Fy?LkQKOE
zUL@)SlSndpKrQgE%8RFA7sE)^16{%jXsh|DSk+!@n6$p1K%d$}LefOt)`INfgc``r
zx9gArA~sGj?1Lnc7xWR2nNJ6ljsE}jbU{4G)z%*;I?C@3l@mW8C&y3n>KMs;jEiSU
zs;FdQ#1sor(Wh~$HpUs{q$(%&sL6K`ER@t1)M82_t(GATO=Y#p?XK0$1oQV4jr!uK
zo8Z{SHDfIv3`C8Ns9k&nRivAF?hTd+XqPoYqd_$&?Y(|H1lZ99%fa)9bO9gxfiX=Z
z2v*AnT>h-s5gn^ogz;VWWFQwid+}`ua^2Zsbm;bW8dcNs4Ya%H>Wmd}l{}~2NI7P_
z7)VHX%5HR+`pDLt#jVB~fhJTMCw1$G=-kg`%CvEpEk*aKO|nKBssLcHJMPp5#ds}Z
z6>d#~eXsGd3Ew{_3JT=DuEZjrHHS)o{6tB>>y55!u}~ut$Xu43r^@P-;%et?>bWX1
zWhZ0_2fpsE*Lw!9@?uPPmsI)O^*cvKSUpF4{jbD~21x5HS*~h%xJbTYd5q%qeSSb0
ztvid2RpKmK{eOu2%BZO0y-yVpBvndD1CSU}8UYJYk?zi+JEau_1f&Fp4v}tVq!~ga
zhwh;}2ap;X_J{XA&)$1?U+mczyJtAO;4s6#zV(SO5Ew@|a#Wy7-3H`@tP(54FHK3z
zaYXyF?s;%8xw?Kvq4baA&p}Ph1dzmh%y(TPC8eW-YnzpcLsOs@)4`HcmLrNSB><fm
zx0okmjOIBX;-6J7*XvSU2gEi?)jL~F-RL+~eB1qHox(vjy<teh>uBh~{(kOiKNwAm
zbm}AB?+bF(S5{`g*SvLfkX<IGmiO_&Cve8HZ@p^_2-V_SH)9v7DedFsOzs@M`yGbb
zj0rT(FOw{W1~%oo<p8`VPEw(Y`VqTY;m!TS)&5sspa?p41PfD8OB^E#E76*7N#D0|
z3Wx=FD`j4$r&;O(YDSEMmTXTNgt`FW;^PXy#UK{cQb)nbdb*X&XuR_pkr)ersJ;G_
zv>2MNVK9cI?;GGUp6^~c$=_7R?*8%WLH$WKw7i&hO<C>tFckoA#;%Y$sxg#jE{i(Y
zR0VH(m?^4_2<W>KA?xcjQlJtx-`r6#UI&hio8@i%ZAby>3uVQ5;`WK1uMcE;a%e!F
zA5Q#P@YHxfTZ!d;nG1={(;_Wa4{wJ=<JcFMee-91w6;w7Mz(I<7^;PPkC>%F%L0Zx
zcoBZwIwR-$)2bWJP_xvAoagjj@sgjO9_1Mw618#<y=|-a?26-D^<}1+MOcwFfxFuQ
zE9S8E6s8iLE<DgQV7$!vSatm@VGsB<`;xjJ9xMdb-`tUpoLqY*#^8))^N~zH%~S)R
zh%LK_`F^Ww2nvrjr#IdM`^l#e(f4=hmRg%SLCnAm&;<zvT>#(9MR*a{CZ%|7J{^By
zYO0>O-CVHoJNF5uZVF(wX>FLuAMs#>4*RpD-3Bc#n<J*F_$vJv!LRay&e^augaMw_
z&2aZFcSt(CGPFoKuGQ)x>fF7Z*F~rule}35*opkv*+@K6OOVPGcUy}#ZH$mSx*%9i
z?D=*w31FPzPqry;@t{ob0u)oU<e^_|+9TA<tK@DD;Kcwu>f*Tb_>`50{IDC6_$2*J
zC){+)%3wSxaWL;5Z(btcak!?5b;)gwjiZ?gX~NKt#_pfU@ipQ*-ld640X+ILEYjdC
zkhn{&OP%0b3SNa}Ennln1flaane^*w_bw$;h8ovkU1#jLZ(ed)z=z6+OZ5B~<-D%d
zHkVoz2?Z(2{~D2Cd)eVzbT&FbQ_I*kpY_qNUUfEpqVbzLD3FHg>!w-2l!ay3DMmBk
zbW_$0GVr;MerA0OLkcu?(+A9$of(qx^C^9M)VI{odspoxGovx22~M1WwbX>as$8WO
zgjuH<I)fQPrXy?{3|mqDP<Co+>N$dvcQ6h8W)6Q>@nu7yNp=%!E2fA`&CHyCce%A3
zUnl%*j?y}+(I;|cq41_Cnk-vD=3XbjqcEQeL6DxM0-ifjQURUbG>iBEn&~X-@t07a
z2`*Z2FYC2AsZfegdi+^Ee;y?b0ktb4r?|3yY&^m<;&*DT?>_>!qv{WsvmWYR!2%AB
z#stkQ&eTb*YzXV}?`9`Ow<vSX<*qXZYY5QfBat1vd=LU2^h9tPM9Wt7zK~wRjO5Sf
z0)H}X?iH_UR9Jp!UFEb1Xo4;LXmWA;N>2a%-isxbR`zLul^8zIyhg-JUKU~b&Uc+~
zk84WWyB#TrjG;j5xdr*FsLSaxw4m#j%%|i}xW0aHt9ushDO~aCKXPwDR^N8QWr!@#
z5@IJhhMJcML_ALTu!fr@H<bV;m#CD)<`9%<y+yyU6ZvDn<hg!gf~_Y0b(nSCDfBfF
z`7uBuThG--j1AEp_Y=>v<$f8Id3kwhmyV<{pkv^!ZWC)z_Ij=Ar$y=MiYaBKoh)X{
zK72+dhY&4cP3(0#64O1=Ba?RPM$IoR#t5{AeuXjm-SNDy<aC>#LRdO%l6_>{!9$U^
zCKE+B{AlPEfXWCY?AN|lmT{_V*cw4jgx#EKaM)hl)#;Q!XZsr80bl*SI6}oQ3D6@9
zJ;=OwY`6B^=j*icpIWS3I0g+}g8?-{iRhjBw+;J#JeQ5^uY%_k(NMri!*7<8i(Pzr
zs~ZR6;{38LmWF>p*j5SwZu7j)w>oXqsj2j%G4UqT^8uQL^P#(30+#Lq+<T`M1jEef
ze~`m$C&P>~`E?R`TC&Dt0ZZ#DeYzHRE~De&10K|p-D58t#Xk++67)4ox8^y*z}Run
zX8MtG^5FAtI4caF^2dz@p57oLyt;b+DnF*}=0y;|1{<h*>o}wbFWaV)VsT$nZuVv6
zERiH~GXasw^rtCZij2DTFr}-_&$`X&To}imD$dMYo1890v>n_~FFzu9%%3Qp=pyve
z{tZO5)AP@Y<%<%`W=cwi4r@@m#ONydtQr>A&B%5WLBZW7XhTjY;4Oa^F)1X-rI%9H
zo_zo=KUKk*(9@@$+-G0veJm{KZzjxHygLk1=M%led=|U6e7JRz60A%4n!PGiw*jDw
zv<W|+<z3!AvMLfx?j9v<=-N-zzb6uw?hyM;#kuQ8goA8Iu+4F}&-5ohPt$}}c$J=^
zuGa=}h1SoaYjojp(1G~lz~5j{_02N71s@swV;HcbX3(h&>zdVfo_1K<TF?HzQeV)M
z;$J&6{^t+An!cv|f#0ix%9%f)ci4owfhUA`S-qT9E{KIR4?qlw;r3jclOA(~K~Tr-
zOre!&clZ-V@JqSM`DIV;@6G|$-NQ+JXma?Z{?T`m?ZvkG<?pOfb9C7?4|&9X2(J|e
z>SC$wy?wlP7i%^Rl7Btg+fE$P#l8_5_#|ddpQ`8ug6<X{C!}UhqhaLiKx#vq{@EMQ
zd-yYbUubJv0Tct6+!x0A)1jIUHV1GTu8BzjTtB9_Fl!t26W(78H*+ZaM|s-LtJ7SM
zI_U)Z0M@ntaQZ`<sNj|hF=8^^)l@RQ3oa#Y(}_oy`5le{D1`YD-1|xQuk*Oy=VYNU
zR?r&%lI}`j@kj#Q%A+b@$%e{|UtCn))@gE;3#yIOK|e(WDiX>U;tJx*N(+`#^^W{?
ztvCDOHMDjM>H<>Ss}a}vuZtg=1(@i}u(&!*BskNO(9;i}hmI}pmZH=YrE)=Tb9;I+
z;dUVbHA#tp+_piW8J{TT4vfye>#k8utFV9h5~pUdQzKO}3>u!x_Q+>{{|<8cW_N0R
z4kx4=R6Q$Q_Szy>eQo;`qt|+c5%mOF2n->WV-*D<?!AMFD@(d<5rgH)S8tvJ3a<ZT
zW43)jbKepV<evcc3M%CCON%iBo2PbXwqWe+@MB{^(JN7;?4B&6sQD_WN~~<$wp~@V
z_TtQUs*2JG>+(&N))p~mYx`lno0YjH88i#9&kvU;`n`s><DH)+Z5wRv71UYl16G*+
zTUM?KRwh=Y`y4&z-nGH{E$fI;<|YyCTR@g;pgwIHy0_7&bN{VyEs@Z0Tv+(bupMD=
zg%Ip4P5eGJ`h#|j`YXMQ9QRCudoY>Ew+L%_F7jEnZ#o<Y@8|S`+;tm$$+5jEBr(uL
znqhcw&rgJDV}PkU7cySdDy2unBOsdN!bF#j&W~P*Bns*nDAOdTgOp#jD3|HN^>{eO
ztaa#L^x_Swp{)cH@%x-JU1P@M9Z)Aqix8l=WeeV+$-Y1x3t+YE(Bg#Np<!|8ljL?F
zLHO#7THd9CZ}gr%DV|}&)7p~AS#og|npb~QU=1i7OsmA9*=uR(h7$}94i0+RVX#3#
z$H;i8pl6gA2wu}TDf<TI_1T@Gs36BCwIXPnt%YHiAG6u#T^~0eg;76d-fd<`C{%Uv
zlkgJpFkV=U0a)$QA1`yXPS?wHIeRgAKnQFdhJ;90hE_b@NT)ZcxJOI-Ucw<-6d;G0
zx1ng6VUx{<75d_0+ZiDv01hRD7&|lt<oi9Z%X7|NrqZ65jS3qWEu`vK;f{q4$Q!U9
zvB>2Cd1$5c{Zw(UmPwmER-?!34mDMSR@C{Vc?=FxF|L^(*QWx*=|P9Ti~&q3b{?P^
z_7eDg&eJ9KA?{D@{(?=>cripkPE9kIltRaD_qhZ9b|TtjHbr0)s+ev1DysAy+$xjg
z(LptPm&#}~B@^c|WnK6yKchS~@pe9m*|@ES-rWkRstUrPffoZxp>LczokIDf&GYqM
z4o_gf!zfEBjQ2}@_)}rU?y0cEa|b$*`tO%m)x!yr6CS+M8Gn`o8n(0Wq?E0h`{oGi
z2*R8Njq(=<J6pKX*J$qD>q5>iy@&+KJEwg$<0ecb`K7kyn%;J+?+{9Wr+_#Pa{Zx4
zeMM5Q%qKzD(TFKs=&WvS$aR!AJ)RB0l@8F|7Fgb_w9JuSeq3RX)4o9$<dDcW%3CZV
zOHuWL!w&~W$66ZHe|r%H5lnqX789h%<pH>05}(@RF&aRAFFSJ5zv~%An$~~Y`+dpo
zS?cRIs8`rE$DUnxTg>Ahk8%MNc59Xq;f{ZEL03_pY5`+^|Ekq^N?VtAGej#ikeu6n
ztrPu7>d7iMKsr=YZwCqisZ&B+N_PT@#{ldz&@{=<uT8Qxzf|vUb&jU~;s|BWiPTNT
zsF5_V()1+lqf^C`3w4R?&>dTYt#W~Y0Eh9f3-(J5(#c+k<ORn8q1M{;o71D2^?AX8
z$~n%5Bki=PtRKlhx>UqUeVS_?h>%Tg?|fQnZOWU>TG1#dt@e3W{#!l45*)*$atC?g
zCRxz~I=I~RmHHu?-bvF#<En~hr*@t?r%RuIX8=lT(Djo@8Q_BI9LnU+YSXuJkta&#
zZKYdcUo`$vQP@D38(JFUc_HLF;pSNxHo<fAblD=S7wd%&Sv0s3tsP|z+4&DQKDl5e
zpVo)#4dh%ga`y`!RVERDXIBv?4+5fKjoNLmcnxjDs9v7lINRsQgq-;N1n^IUUh4*x
z!h;hv%o8*Uf2+y^FtbH<>6J_0u(gLIW@M!TVN=CUM5r%Q@asKFM=*R~o}XLUpZ%J&
zCRgZ`vzh1p;d5o111CyIy@S&p_lyFZ3V3uDe@jAxIX2P>?l6-imUD)_qC8rGFv4V-
z-h0`{GOP*NPrk)5K?TX~M}jWsb-hdz5CY#Z47=4G)~%bxivj|+1&0UC=gVr|-vh!Q
z<fiY`B}fv?z)cz_(h4}1UlhGR0d0U6DCl!#3{ftbZ3m=Br$-_4<L!H|dQl|9d-=sk
zgR&jH2JPFklO9;hP0MlY?~k>ETf-JME`@)pr>21Db4kFZMoiluT58&Lo?cumhg2HS
z5YUn0ysFm&2*3#T`83((Z1H7>z~=LrANK;NB8c|c;=18)fxhZRb$D=y^e<0*Q<LO~
z>B*#?WlNXhI4CJ;ctOZCWI)`yh2#xCO5iU64Em;Bm33Do<ARFPIB59Subh2c){PvJ
zZL)8C;TTY6+x?YRX84=zfy`xaoo;r@fIKm)E&;^?D%*+kR?yY}9mjKk1;W<GZ@fo8
zI#`M@L?&on-YoJ&fXp42gr2;pS6&lnfqS?IRu!m=rLwQan4-abb47MMx)+)>ko*0q
zxo;-f$dU4~gq7K4Ww<-M<HVAxXUo098vt%l3klF{^FAa*036Op6E_!EwsZ5FaKM|N
zH(_*I5K)3Ow>e+T&EG)sO+KMsWf97Fn3Mm+pm%^=IimD#H0N7*d4J8Kq1pM=Ptpx+
zw^3(8D9}_mLF{y-u96SuE6|+DE(MdX$KPPnA=yL#BZmDE!u{=>ZgDKic1Ww=5r{tC
z!p^SUCb7MQ!cHwmYzMESBlXb)H5p<zkiL7{9eF2)Ffr`I;t2M-@5_KDxHT9Di(OFp
zaveqQ5!uG|Qq#P4vQEjO!?AL~CAX8y6l9Lo2i!a;)oAYpvtE?cOU=%IB9U(a9ZEsH
z^JM)a0Jgs9MCc4S-q8vSkOF63nC!<#Gx#22h<xee|8RiDSTrKbj<<2I0&k3e*#vY+
z5}sA#H%3fGhx)J}rktMhPm>5hs!gkG8G`RM$bih7cC!_}K6az>Gc?%vYbmCb$~lyk
z@=hyJhoK*UFiWWx<$e22k;fxZtm=8T^Xnfl{c~Uc&Z4MXb~}T&4ofOhz2bb9qhG&%
zJ^x^!Bj0NakjKTCDk!HIZq82N?I3|hxKRjb3RK|&RDyD55r9`bo#{}qBtl?7vHDGe
zz-8hC;F|hO&N;PSc*-EBM!916NiR8%AXh3!EG-t|bO=Pr`-EHPPOBhm;@(un{PMdt
zJUnVP%jR_Q{mFhJT%IPev9J}~>Ol^4LWz=2Y=ch&-az=Fr}(ypR8^FRJ1t0h`(bXI
zwYUci%9h>{`6hN1wJ%DjisJlc9JH%6b7U*Ulf7hZPk=BR*jQGXG6D9a5H7@?UL?>7
z*WrxSpI=LmTJt4+*M&zd+d)x~pHJEWk7*U0#K*|#O_+1)&}X~Ge|@{e_GU`YyY#bW
z1N<$J1Pn@QXF6lWJ8Bg5ZA>!9H`+Tz8dU;KZL8DM6Me(E)c0h1E6Ad2p6zC=ghLNH
zVyx%twAc|?lS8?n6{5UW85~T8bP3eZC00K(8K^aOd9*kCJiWf1tMAlH|3vKK-2)F;
zx^~N_5V3?PJ`0(TGmrZ2KOXyV^k8Fw&LWlBWLUN@|3@lQ8Nf89GyoKKSU<C}+BYWd
zCQE$D_FR8w%4@vLR6$Vg>Enf9L_(FW^J!p1<n6404TOZ1?c7O9+NhP32dCx}5sKNl
zCLop`)BE*xdD04IjV|S3V}JX@$03P$W!@eU2I#EMWft}!eD7f90?^T~NcHD^^<9=I
z8ZG}xP9cZ4;6M$_-nx93?&dqG)SISS>!Jw~cuC=*7xxRkdh838qBV82er@3Pwk<r)
z(lQk`!P(V?;;Pkknt#3R7syW^{@B68sY?52E4Xqa1jT^GE6Ay}MW8z;{Sg%va5x+2
z;6n3j7AagjOof>Eft$&-V^hJ>sbSA2M&+OelUzE{4iq$lnc)5p@F+<D4NU(9Ut}E3
zU8Ce=9f3q7Anvp38fRwo5ks0T#oG5C4DpB4l9)m!Ae<E^pwFhp>G3Gr@s5)k8W}lA
zJAOcX!-5+ikbraIdlQ|iWjM<gSCm5E`r~n#6R@&odVI2B-&YJ|4!-ep^3dtW;=tYG
z>BR0mvg~dMM-3RV&C&t}>i#i&v4lLF2Y_kPI5Kvt8t~^27Edj@vrgfn0cJaPbJb5S
zQkLxpK6dV`X9?!yegdh)Mp4NPx;Y`*)1&#+Jn7+cLa!fXKg+`BW2r9<e9dWQb<zs0
zLk^^p?*P}nH|@^ao&adQ3mUa>0cRpb6!|z%T9{kW(9)(jG~RJ$PWCO7ay@_84sRm0
zG_n|F0X_}ub?TokB(ELm$fQqZ(1s&0vK~v%9yuGWM1!8%wcZn?Ded^@YpvszpkbhJ
zCkZqY6yQhXzq@Aq*A-`+{u`02Zg%T(q`z-Q%cPIShZ+Bdq0}pDh#wL74pRHT#IpPm
zFPX+Hg2ir2hx~OhlB531Y<LGBB1%h4gsbd_cFQ8Xd_(X}SmB!}GhmTPs}~e7C-=&h
zuy|<IoWStu@-N^AC!+x|b$Ra3qu%PH1BTY=j<C<3<t~Dj;jY513{|313=drrU0!6^
zUnitIBk=oN{`M`#Tk7RkGna*dtxOlGoJJA(;JP_$xqA7-rdKrNf8BFwZ8!gEZhQk;
zRGj0c02BVUDepY8rklQe6d@3;zWsH<Hg~31qYoL4mC64e5KI5RoXYseLC6WHhG#fG
z?#kZE$Q^~E3!?i+2_{twPH{&_FRxKrPVTVCpLu_0Z&xSMW=+4#BfI{5KBwSCwnT}W
zM-0=AAH{d0Q=u22h3UL*=~hUJbJO>F!rlLHT{6c5cb)C@3d>H(gEzAOUu>HH4?LuP
zkns@-{3dRqfBOm`h7teU54edg)ja?4qb7ayf4q-dT|iyn-#?0*=zsaB|J(QdpB=*g
z`uG0t-xn^5D#|T<tXJ(B!+(ZLMH66f_g}vt9#1t~WURe9&iQuWG5O7^y#kz1|Ks%4
zUG~(mnJ6{rt#anUmc_t-|AZT;FbGQ3p_EwO>X!AteRhCB3FZspKW(!AaR-3FDhZnJ
z<^&Ev#+$?J`6RyGe_nodmyBoS1~-V4WTqVNdpZ7+Z9ZTSCqa~<)I!A1jk_gI2ju35
z3yKRZlW2966?Epe(vgAv+if3>x_YP~=MUa(+GFR=6TZ~Nxi(KzxE&o@^HbMp51q&a
z$ZWSDl2>kh@bs$vy~+^r7>HyafXCs_tBU3+IXw%XGs($%h~=njCLZ0x)kBP|&l`E{
zAele@0#!c5DZWmqS9N^u<pp>am=RWC;)%W~RRT)b?B*FscWt$cmA5+o;+>V<T(l#B
zw~uv{3piqzqvlE8qJ7$Y6fdT0w&o+RwkCw2HcKmX1CcZbBd_)fgm+JMO5G=!iLCC`
zc;cvp>N*T_ESKSJVpGl|#Or3Ami4;4@(vm53#EKy@kh!|qC@EGl2bm#iIi0g3!dOD
z)Sg*a4udnX%b1)Ly|uRvFK;$Iq=~BQKGm~c_+?R{A+>2onm|GNbbTeHZ2gzZSZQM9
zncIm0B7Ac4M60lp>$lCy%Jhfw-5=N2xl}dIH@WtWkHc3*HL+AeFOt8mROPYie-STv
z^#|`p1=oz~&Yu5JLRofdO}(bfTGY)>_@k?Eijl$LR-x|m)%tT$R36dEa=oXR1H@xw
z3TI-I8WJ@tj6ZzC4?2GiCMKEG>J3A`EiRJJ0T&JM$LZ$5&ANMb?`Qe{2IA8guia9q
z9qC=$<&iThxA{Ff4stJHFGaKQS^5R)BfiX`f=65)Ydq}qX;BFs5RW4s(UAv~9uhXh
zG9%@OQ<LP3x6VWgf7A#TSOpbm$vPvbHme>wytb~>^D;GXjs9jz%iJ6FDdo;YWIeTM
zd_P3g;l38xUx)C`M);Gk)H#<ClSHCoD?i}69Ir{16tq3EUQfEi1#hNC0h#R#I0KT_
zf%3AF@BMl{3RH?y@(={3wqt67Aa*WcDR&2MT4U7UGi==Tl%&M!GCsn@QA?HBkw9zb
zjpuV@v9=$}jU^6MH1X73fPGhHxw?|%`v;<mfU&?3TE3BpdkTDoIq<tgyoEYv6FNVH
z<^!7co}_=z6#sGfq~*a>b(G6~<i*+C8yPq=h{S7VOLpa_@4o4ygGD`(F!r3fa6^Zu
zh=wud2=+XB_{-`_486L`S3TSbJ$-bGp27N>nw0bdm3v`OSXav6SQIvQ2i6|-(QUO1
z&*q;;%MaV=c~GfN&#30)ta@cU&w_U&kqRRE;`Tnq>&r8~P9zcapoFIKh%pQD>|)cZ
z&#G4&X6;Jsnb4nC^{5F_Q#+N9o{2U=TPeD{dXgoaL?`OnooHKsu&Y;BWXfMMyjxrE
zNhb{3@F=}8*-|Ka8PR=F*^h^>Iq6&LqyO<DLj_goteLT9Q2Xek$s(aj3uhI(>wBHh
zSp4z~_Njgft>Rwazqx%L1z)vPK5fp!CXl&2|D=;`J2NV?thL?cGc~TNX}KiVc0gV0
zYwPB0lCO^f7aL6J%n~Jsl=N$d8wap6TrjvZLU)TS_VNPBBr^tepmJiut~#i&v7s{l
zb4Q)FGXCqoCtksH6xWYVn)lsBd0XH*nnRLVBB(IxHu~7f__=t*((%nUFiQvSX*g<N
zGx*eLE=vk{xey&st6Jc_?@ES$yaVxg2)8P&a;14Zy!wx_1P+~l#Kfr*&oaR)Hs9TJ
z%W{ASIoxcV_KSYD1wmGTHILR1fMCJ%Pn)DtOtpq3_D=e3DnccJZQIH$dz@C?Hhq>U
z&Ukt8dy@|peD_g<<u&_bC;NNEEvBx)KFQ!%t4z?-4OyJ1Fz<Abaes~$@LdB&XX4B9
z0uCbK=(hJ(ElZ*{&gBpP7Ck>`h=zb=qT@&6)YCeZ^`J5(98`de{YxncHNwR6^s3D9
zRyF*a=A{D~9@o6ttCjoMd*I3R;vAY@(wbIh7ggQACaZi7V%@9Pn~c#zGUDa_7wSd^
zA%rptFgjV7(?2Rt^MeQG<^A|xlt2kaQ$T$A9lS)dYB6TdKJP)-P&45Vg@MBuye<Ps
zAQ^h`%$&`=YU~lYRI{cvL5bBU`BqK;qj~{3Yw0UPF{v@yMQbW*9I>Wov}=+l#o?<u
zg40j=ViN)kOzPvbXA@yBpy-sk#*vX5_jeMQr^lj{QlJRd{_ox}$^P$IYJrI9_D1*?
zOpQ*=P2_<vllN|U^jV;6a+jMnRW0eb^<;SJ5G(NPYTHcj(=e?{g+FH8%tF$3iFmEs
zR2Akwet}%T>{G^0ih6At?xf(*2w2OEA!D)X%8F|{$L~$i*5%#b`fCEip?z+BXu58p
zlvtmk;SK!l@7(eV`w>Mi96H2BW(I!}t#L|QnnjHRYQfR6wJd$^QT$`U$BfqKlqCC8
z@-sQhM6)Uj>c{6iFE{tGL9Wl|d+WCcfR4VEFm?z1KqfZPdSdwA!tYDRF5bYCoMIQ|
zEn)j(OxHM+H)a~7hjXO-<HHNx>CsoMB_4WgI*rJa0Zu*EjF-gjVR;N6PNcU~6h(t-
zu)l3((?Z@nibvLi%l5Oext852A(70bADRwhXAn=PVeHJe#jveR>N!R1y?Q4j`Xam5
zxs{W;3D;kch}Jl^NyXuWQ>TMU4sl(?vidi#+>@rP*87uAJ*lZ&HX<U=$2=tWUjocZ
z>>)Kobqywl*Khu@&+o-fJSC8&e!dZN-^5U_=7(8s4)gu*X^J*75@Il!4K=|d*=hU!
z8+w_}R$|kV7c!;hIj!a!s}j0%8R0%r1}E4Yj>3{`Om6G!@Z`CMlwM48ew<h`Zm#ut
zeN>h4tytTJ3pvt6J^BUY4KCbi`&Mg0QfG*S3Dx8G{I1yL=`ESgjr85jP*+_{`Wqy&
z^^Ndqg2{BeqG^BgvZ>6JL(#fj<jV;UQi%BCVK@ce^|?VKOi;x;S~<X^7m3m>A1Ru8
zx;%CsOCZBe#@6hzc_i2MGB3;aG&DO<?O)kv+&6uv>uOM@70(ve49{gBP2u4dy6me)
zxlzoq!#lQZ8<oA8N0Vz8uvqQG(!ODz*%Zr>Oom_Cld;tfo7Ir=2%~Ry>H=Q-O5AS^
z+Fe_%^|GCRr>;)u&2Y<ai4My50ySYt1o6$Ug@SLc8o!xUjkQcW3|ej&N{MZpa+b1A
zl=Bf6ZKKafYp9-{MB-qi#^`Vq@D2T#d)vsL7(ZqOy-#u{r-%oh_fM9z>Mss;I}k18
z*Iu83(k}qSBjan;%7KV7Nu;5zg?oUuOzf`g>YAOpi%@Fv3Pki`Y~R)UK<d&I%+MXj
zDqHHgyK!(zlbuD^=ap6ATyVH~l6t;gZ@IasR$T9Ps1D2S`8n;JSWtMgy=ExHm@TX6
zixy(4e~exnwYj=)BRiT~@n~^PdE{wi<7Ul4rlQ0O-JdmL8UXo#(2#WQnuFQ{+wBHi
zXzW?ybl2IpNnZOA`bJ&OB^?976n@i`9arSQ!u#w3ybvxujs)@D9(TGr>t)VH{0Baz
z`jI{-(EQ=27jMgpB1QSjcZ(?~q+hg<W%s}<DAo_VZW2(zOwmphdtt$+02q|EndX0b
z<Eswt{uy-3rN4KmhH_i0{Gjc&Vzsf;>|WT~yxdZ+q~JECe06Lc@1E>w==8ZO$N|@C
zL1N@6wB9}6DVxe=?fEI7^@rs*knz64i%HpK!{MdMOY|fsLp-?OMG0Uqn((K^EgHad
z=^3pb<LM7G5w&d=TvvI16bmILcg&aIx7G^j{I%kA7n6O5(+O^wHK1o!)V3&f_(*#H
z=_ix>Yx|L>=f$C2?i2@uQA1BMW%u(#yp@XStBUCS@pRPQ@%XRaHbnE0W^|8;5*?pl
zysUYhN6oX&mXX%(8@-*MWuJ5VL>Z&`)QqKSb}aGih`>ld3k0MlD0~*Zy*2BVe7$pz
z_+O8mn+@tsnacuRMTM4HJ*Um_j8WQS*?m+|D$lJ9^D0f!WBc<VD3Z~JvR+Z2b#$j;
zh@KOFwm$;#vmZvPL)ef!=crbD;vjf(TV$XOx6}{;eQ7*3pYcp=P(51q^I02ORCb^H
z7Q%|NF!2;UB>)1yskmcqh{hI(NC>{8D`Pk5Dr|2-MAI6+M0Vc)!T-8)5Hrg4#PA_X
zJTB!nxn!oP@md+S#r6US5xSAu_nT^0UX6*o|B!#IsZiRvX_h#!%o)%GN3rLx>Os|0
zKJG*@h~*CaPebt(l1pXj_dpo!z<(KvttLsZuGd5wk6W_-Xp}cCn!Np~{~6!AE&j<C
z7X-zLRJ*qq0V_J}UZjNf_Z_XxI%9KerZ~Z+)N;jq`)^Bed1jf+UrVuohF>&&jrWgN
zOCKn?G#=Cu?8r_zK3m#Lovu<L1=}O`GQN3cQN%<Okc@(7B?B*Jvx5Ff&rwB;L~TvQ
zX<V|7miEmIkd^gl%?RHqyXp|UP>!W9Ymd+v`<h4y%nw>UuBDK~CD{asN*6qY!DFQW
zimhDLR_onMI;hZuCb(OAAw-PKJT+W24Z=IG_6oSgr00$V-N}A0%7^Gj#eXwE%Z<B5
zh`H(|zV{}(oC_0CaMrK0*KY26ya>$HC^xxhQ`VfpPYc_yBlTvd`gMka-#8Wtd&P41
z4r*zQHEN((^eZvWJ=mn#x{qs=a>>E03%jeXcDs3Sg&%#tZGA<_C$W(<jptU|WIbTg
zh`#0S5rz$l7297>t>m2Wu!+}G8hw=g{f?7|g+!V_TNq`R!7Zl^DcE<V@Z7+hU+`rH
zjC}n)eW28usjEE?Jda<4czBxc{KIsti!}H_6mx&NR>uTr)$24Fs|a^`e2$KzssrrY
zm;RJOjwU1JlEf{)LI?0(jw!fwGi?Z4ASEM)3$dWc0UCxJ^Se-ktG?!tW1L^;SEP~l
zu>^nql-1DK2V@8|4q7o@eIayabTnTdt#>OL+H-;$aTnfCI-q|?rEK-Vb}W!Lw71H!
zNiGU%D?7^SlQ8)B2EOef<fN-&+Q_Y_fx(AY$}xgP+-)i8v|Tp!$TXgpcdkZ%`y0iM
zM@Crx>4SFxP%f=9<_tP9@2oRa#3eXL#3nPYgJadX5H8C4VQyIZW(-uRgq@5mYSr&s
z5QQNaVeH*+06{Jv#Vn<FpAq_mkanl_t+@8WEyhPm8JyGP)}6>YkuU&2MXMe?%AQ~7
zS3gyaWhIYez6-iD97v5UF1-HT`jxgzkf7Bcnt#>F(<K{7+VzYP2W9O(q26BVYx^}o
zBG)B+%Yu7gk(yhKJlYh!_H@FixdmkbR?N8P-f>s$5W~AJ{2u1sn-RtAAwjkA>fx76
ze3&R}lf;b`|FS1hntn2jc<6&GD+sHWmq7Kg`9rBfN0ifPqi$ldKa)p^(;FkKw?^cS
zXhT?8gr4b7Y{v>NDVw5a$?x8rCd=vkq5(<VhpSljhto^A@9ZsoP6m}G*IPrEj4?>V
zB^(ipQ&#VO)-`#exLd4KoKwVF?PfVYOh-$SD174BH0e-L`_4<(v0l5<)n_bdz|_2+
zkcvymHcd93r~{tLuRgeOdLDj(VD=v9D;V%l8i*}Al<kVErsd?hv)?qmOSQ|E$8g!;
z#icZ2OMb;wt~Dua8dEc_DV=yXnH+n#zh25K+qS54JF<veD-~@BGuVmjjG7Q|-Bi84
z5Zrx2cv37}6-(y2@xYPpjac!ij=dX{e*_Z?lpTRmu|f~*4|WM%S-cw4nbr^ko%pJH
zLOvAa)wj)RnKq{Kr>M$WC`U*RdGsth<$dV8g^I`xDgV`mJXx#r`sMmg%&+3Q*)4w^
z57N&fcR|I%p3i+Nj#9!Zjr7sIA~o25)_=PAmeuWhyialhEYkjT5Vp}iA+wjRi7K~C
zX>j_yCdR2(Ca}>~+Np%TEX+syPEmQOR{)78MldLv?y-FI#Y;h5PiK7|)I2lgm%Q_=
zx09b|ns0JQmVem0(AaUfvtzGlnM1}s494SL&##7yTXJZPUn{N(p)JP68N)wP(&gX3
z-3`?$OBrxY8gTvdGhxj1Wv7aUKr=?5xVY@_LUt*O4}eREk&Cg>Q}cK1$-hFSxTfI+
z=2-JO%44Vnjeot<+yz&a%4D>TY4__IdBj+=lohMnWDTctpN~8~%KFb{))iVg(~KnQ
z*sYg=jVVI=;Z=}CZ2o58w70E>cW27CX~fcJoii719m1}kPMZ{Ji*ySJ*Cf6JRH2>1
zW4ox#3vE*nWCQZc?ha@LQI^X}_%sYslh=;&m%E|v(%;PKJXm_aEc9IV`QU^Xb#o1T
z>-uszC{V{^DtJ$}Y|Hv9gqxr2`J-;c2eZmvMvF1}=)f()D~qpS|3Ncke0AW;8F^Ia
zdy7n^M_f+_zZdP>@7HPFa<aeZaFf&jbX$OC?Du_vv+9?$Y1DQtp&tb*u6vY4(wydw
zxbFo#mxs}X5tmp6d!r3@!>5N4t5Zq|(AI13QW791NOOkr@oM404|@ydHcz_T2@PRh
zeCvFHF+;tDRb_tCQbYMd4_xGmWBt4a3#xM;I}_7Np4qi@0%B?DGh?|wZU}6&=4k7V
zv?Kea!8x~b?8e6WY?SGQ0CGy46DQi;xmF}zHkgLuW>8I)W{X(2F0eO)mJW^n(I){B
zosTF*tsAY&_SUZzK5pOUw|6^0sS#Ao_p~EBRq(Q!W;kh`a~Us-X70I{KMgE_e1CY-
zp(wYqjHa^ea0PX-R~7Qt-3(@s9G{T6we-`|*kYO@Ca^cG*BHH4^P@C3rbdOI6>Q0_
zznH(UW8&2uv(_HTWiWGhmhe5^Mu_kWs*U8;xz&6%T5&=E*-EyTke~IZYFRHj^RM<v
zn#kVFzl;kTlImck9_^Dp8baJ`)qNEQl9)wH3i0fQ$Vdo%eZzy4-q&Oil+Xal)-;)X
zs1nV3&;LBZt;|Z4oP?nJMHEy{&gwR#un9`!6|JvQoU{9LGP~Ak)%9InOK{p6Q=fTt
z8}zP%l)ZFAlq0)#f~`AzT-#%Y#Q6gdFkV<gAH~{$wKRhCZk4O??yGDGi*TCSie?Ly
zLZQK&4&7qKLU}fQv_%95J;fzhO^XZqFln(IX%moa$!+a!|JpIaZcbedOXwngKXG1D
zKZr-XyP)Bc_#^dYDgZCmGSoQf;=-QO3B*wl5U68^PHc)=2g@?Lpy)vw%;tH|w;TKG
zP^Zw!X&e?xsNf2QPQT|^dRCDEbIks;1|PR{BHiCT_r{LR*6OnF>+Q9P9+Bfw@!2JQ
zo^E)(?E0<i8{mlx)PRhWQ;XLH%>vu>^x=ljI#V!nHiq<nnxrk)snK1$a?n6MorMFR
zQw9>;I>^^W2S<&lOEfnKih#nW6S3cQS8+&2y!X3!ZTt{a*S>K&a#_YAR`#)_XSE;N
zgSXd=IbGG|--vlTUaMJb+#?F5`iawyp(3O_x-bXWBCi<P9Z3Lq*u^~CGs{AZpk}R{
zKjHJEhS^oLbv5Y7+xi)*`04k%(-*Kh_h4Pu_Acj?_I}!cke<)&@cnniqt$fU@RH;A
zRZ8k5W<gVDZ4~I<)1VhE+B@QtAKg6`*zo(R?6iV4T%>D4C;JjUO!|&Z<l0NP#_vae
z*-3MEQ??dI;#Q_!{OrB+rx>pY3!XXFKSPPs{9_;Da%7_n1ZN)FUcDHC2;L?^k!ZU5
zCcB)2jtM#P)SS8D^{CaExJ1U%3+&Gqlj0I|>i#d2t0|x`>zkflD%{y~Yk?UH+j8`q
zU1lLNClBNY7^#uhV1@J^&)MTHL3KMPb%7K2;Y$z*h(4ixo0Yvx?cL>zP6^HM@Yw5~
zeW|^A;@kNRM)DUBYgLvUDmz89-;!Ru>ns646T4`<XW=jEg<}P~;{V0>!&|QSdAD~m
zruFyB&;|El+US)<5l5X5LD#gO9WEoEclbIsXE6wzFcYAbEIjk2J3fM4KByEHlte-s
zeCVDhm(SaEd-(kz$xsl$UKeMe;~|U1t5WdP;)z{mUtMMJ`IR!#Bqg`-g#Cc_4QUXR
zDt2<0!5S&Kr`ZAUK#n(8mf0v)u4XOcX{&Ah(<_ZeuS0=%0G&$6%UQ+ewqIpw_&k&P
z5HxciGe)5HS@Oz7*JXC-74~sBp}NTms8USRy;j`9QksjkeZeZ9jS^Q!Y209{u6bR;
zUdCElt0Bw0k@01QI~AKS8t;exO+XiHBIKC=HP1&`-~JEi6RW3q<ATj0rG>eARQTr>
zF-^@##~HgI<}2DS_9lbb++dUQn0-Auc%c?~SII%v>uZ(wF1534V#gDC9o|p`Hy`Rb
zkUxn$O5FGNxN6RN;c6Ok|CX|pvsHmlZn|3OR7M{+Dofa)*QVBedPCxh{V#m2Ux~+H
z+a_a)>U`k1Uu|4F6MOE6XfQKs(*apauz*eRZfwCgnH}+*JCtO;`MrG{Dn)-mUzPDh
z3}#)r@0d@+q;vgm>t^H+?HMC$*b;iiYJw(lZ4kux6d~}vzh-aAz{vBP?leJ8G^A25
z#^ViX6s)wjZr2-|fJdSoPG~uyeO_tOE;^v$;)WdY`8n52>Uu-9bLIt|h*CUvxOA)y
z(fixn>|f3dT-wQ>xcTI(AX(CDtEyRiMC-fRzH(HV`!5+jEp3OdGD9sr2jcTgjW01=
z1t{9~6kG4-slb!77(O5Y<U2m~29Af$92pjRKg)3k&tZ38cpPLGPL(L|s8PQ#*^qks
zm@ymQ{Y26GlTe~!i^BQ>kkl-?F&*i<->5-mmgyj60+ER_+A4XU5KSkb>g2}iF|bL7
zPQ#P`_x9;F^u*KcPtI5&pyDrofdUw`>6Nk9q0oU<LV+xgsL4Yx6V8}^T!{919)>u6
zpk}~4_ynx*E4N#-3j5#@h(a=ZN9`ni*NQnoz5|DcBe7HnfQ&a_575&bK7<a-oU(01
z+&I&P2}3JfVw}cPVgEv%tmG-7lo47p*eU1vw0F!`Rv^&fL-Ce2&4<-{M(#?59DaWx
z*0OnQFCDQcX3n|S{7ImBny#X%B?cO}00@fP#%RbJ;+4RT*TtpC91WMKWIXhmmCYpz
zN-qUNp2q1!nBF%*n{IuUf2l#YTN0A>xe30wVTZ@(p<bq(rtv*30XqF*!Jtaw%=K-d
z`2)S)G6tqDsPG`JiJiys4Kz~$)k^K1R?53a04%soVCePUKOT=#&stjDa!?QA>aTp5
zS>yU~gMeCKjR;80(G%gs3DTCn04$b@f#&Dy;!lCC7E5FZOwt4}*t+ad*>~si=v7Ad
zY_b3l$WHS~Bs4n<3hY^Bg?@hD+F4JUS5!BE6FxvjOJk)#O|8+E6PfTMf=e%vjcp13
z4SnJE<FH(VJf;x0R=@9C+H#^Bo7UyOCYABx<Rs`kGizMjaolJ4y;>nri!IZSjDr^I
zRs>DXfEBcnDEu%w7{^kc%&_X!m1Tl72~TYr%;UwY*or8Q@u-(#14A?dH?#}7OYTPf
zwNazg3PXQis-oXHR%ce_iK+>`a1^E!gL%#B{;}{IcM#bhPT$U@BuQ_G*0JXifoN&#
zFe=*$k1)mED2dxQMbR`(>vY1cTogJqJPvcIDw1x?aIJDBIDU&zcX2e8sOXP&@4g(E
zn*gpKOHZ7m*Ga)eiNN@SjbIpAr2B1eH9XbzJ5n}4A*PL3&D(+^UOeZV%S8Q-85Iz8
zZG^zOIJ|O;Uc*6ms%`RnY>0txOpxgdf8QFe#5}@pZ+7Q>;``q;eqeE`(xwhUS62hP
z5&okC&Yyo5VIplpqmQNy+%bw)v7F~xq_SH__|NZs?Ti5MsVSPXI9wJx`{OZ4d{pF9
zZQWH)jJu3#^v|CVrf?uP4!{(WD&(aK@3tBgiO<J#D9jPcL2t;V2xpJ*R;XsY|D=yY
z9>ekL&-P<SUwY5EBC)Gis!QLJ(sd_1k@JjjWoN)oFl_v(%R||HuT?HcL!g!OtitZa
z&Sv_zes0@aWE$nwpZQFW)vltJ@)iO`n89epIrs#cf5W^k?~eIDywj4-GVL2RvBl&m
zB8e~M>On|i+;aaZB+X;k3~R9P(kc3s_Dr7ksXZ|B?><<m$(&#eHcB`*O8dxP3|HIw
z2)u=BA~D}wj&H1uc`fei5@hwnikL4|tt(QENUWJ(p+RwqTBHK!Ls8#6rJi}A;Dz_r
zs%ZD1r5Kn(OLsYCU}ptC<h&+x9hWvOQPqn-M^A`LFcMalv(K>GcOJ(PUUp)Zf9L2%
zK_HrR-1lWIAh0-!Q2>_A;gs_=W(G;-ST=XLXrTk0)$d<IWcG)ESJU5jLWITYccw<R
zXa{6`;Gp&fHC+ox;?*op!ycTjt){MU_MetO-DgeXoY7iDDQn6>mPA8n*tLTb60Y?$
zVDn2FL*#_`4GjU;dds5YOQMF(8b-HAaRR`5;EG+CK;b6D^-nJyhidJ^W}*&;>1sx!
zXSubaOwpMKY_40<$zT9(6b{zF&YL=0rL&kGXE#f$l9Nw?9_uE_Ba!4z6-Lq_kNvG&
zdQ-00utM5$BD$!I9L@@^BtIYB)yi7nUB3h++McV9;HzU9vV9;Id7llb?-&9KukLh7
zpmDWV)_g@XK}*K%;XM;HZ#~6Lbr*2^?TXBM86FG@*p>b=MT;S)EG3%(iEs|a>_?85
z#`xh&WBi(1(%Mb+v(tIT$xDFn!?sKWNmD@8H}cA|$M>}u_o*d<<|uLJPA!uBUGgeS
zWDg;tgKv;IEi$c5btqQukq@R@S5As+xLoDHnzVt8q?#gIUMmT$DV70J3z&?!!W_Bh
zXWzpkJW<~|LJ+)VL+sZYL5TjTL|D1>;XBhl1U%(UE*#32f&dDsLR{EI8e!`M%Fq28
zRyDVz<L?j<Xr_G-N`iOKmSEPHr;DU@0HY*aUS!%eV7$Js;KcaF|2l4K6A`#yh%oW;
z_2_h#=hK}=J(2GHV?z=OK$TqTr2?}d7zBjq?4>#WQdiLkmjO4f_B8+bEK0Qg#K=N3
z-~$E!r`STxCIJdu*d%&>VJ8~ktJ9a(?ET}!xt?<{2iZ<k|7gz(aY*lN$CL@oblrTL
z-r3sVe-FB5ANWdve^>D(uiB$#;QMmH0IVF^eQYDC0v5~-Xfi2o#3Ljme0Xeq;Z{XY
zrE^lSvtR8tuf-qS0Cz@ije7LOP=H3chFnk%G22c%pv+l{!T5MV?QRG=<3eRjd2R3E
zzVb-yHZS;fAQQl0_C_YM;;^v&4Z;fWgwg>7&eZbblo84fzrGgC0(>VS#(uS@MZJ9K
zmP#VFY*Aay)b@`W0iOhoqJ_j|f|U9MMT{P(O<&r5zO||MklV+%!9lPx-7buSCf*?k
zmZ0I=9dUxmTrF{LcQS%__<VX<+zI?k8S<u3)E_@}rHTG#E{h!oOGt9#o%V1%6A8@i
zCEwrVD3_xfX4Su4a_?KxLp+i+$}i@DR0ED#mP@sfTFS+cns$<tMTASl4=mc<Te(&K
z#(&8^0R?9eFH%{)4LpYny0&`fW$RW)*TmA#4mBn}IKw|Fkr<;zaYG&b!`s2oYZMFx
z8T897l!>S+y!U#=!*qJE7FwVT5N)^iT)zO=uo3<eNockeX@ahbB^(_S0(+Pcf7i7w
z0Q@zy%kesz-Aex42ll4as)FnO*f{J5-NsP)(QxulyyWj*UZVn>kP}_MSRKiMQNFZ3
zO73YP!`H0KEC>u4(}NyOTu9=?)Ij~#JAj?yzP;`4RoGl4nb{0UeE&qyasB&c_0dOz
zM-`rZl_9n62NNKN?^6d|M`f*qX*Ke`2TRph?mCSCZe76$T_|>j`Srj6j&W)II2B<;
z__cSm_p96cn}$t-xDLfFxW7F>9JNt|jGU5>4_%bQ6=+AA$x&IK8f{#%l%tz@Gc^Q4
zzJ<md;zvOdlCodF+m&F_JbV;KA^@_aCat<cF?=|`7cT1YLU#WhU_&{s(I{Lt&?*C&
z<_z8H+mi=_IN3cqwVq`;l^9*;E;0Z*XyH6>fa{5`SWlvbV^s@7M+$xv&R_!NQbI2c
zz^`)_K}m_w*2=DVr>+&Kvnvm9{71@0#@p~p`S4Uuna}D1<E6YIisDiiY9Wjo*o*Tb
zaUk*ywprG2tRFP`@r`x1RQtc2-9D%7v=^I8XN&7!KvZ;A*K>A&6iRAJn~m2DsMmgv
z7$8K}&>TnOkd;`GrQV68SMEwan|<%Rrx>6CyObjk(FT3s5GRnceYzw6>QL1aLI31z
z?wM9JSRiWo%!`}+{e_$Dc$TA1V9~z3mHWo06B}fp$$d;epY}YbUW2l6D=yiRa-T7J
z0;997wVnu&?NPT<Kr=pCF3Qho(HUB?URm++DwG7)>eZ<lF6Xo9WDf0{l2{6(L`SfW
zXqC6wbXQoO&+NIb{@sAtyTA^2$A$GsEWq+>ub_!8)b>r0`A$60*6Iz#-vWRfM9gB`
ztLkJ_#?;0?|FAT$ZX)s8$Xz*7?8~}YdHFM&;gP(4rW?N)fmO6#Kp?;G&)#oJ0{H_f
zA=xPh-J&&)!hLa@ZF}6V{dc*&rf1_2fLz_fH-BAkf?H}Zwt8>IBJmUj4}cZTtpC7N
zO>}t&w_L>LTDvb%5~M4|A&X_~C+rhVUgMsfAvsjXK58XTk;A&0fBHUp?3gy~vtS&I
zeJp_@L1>o+K}1{XKQVKHLDLc=Bco<|Lj6Jb%xu`a99P=XV?o{JxNjbK#Q}5xyy8<Y
zSO0p&Q-r)=$l+kn;xWX^npoz27FqjkLM34=lRQ1J&i`*-afeyM|MrTz=u^M&Sw(h)
zYPsed83EG$H`pCC7M@b~rT**1kRa;4C+;h-;`Gz^=w(Xfd+A!dAfPst9^Ua|TQ!U|
z{&c&G_YwIJE)=~WAob^NG&3Vcic@9pohxd$+B+nCbTDwlY(1PAwImYdYy13td-vvG
zDB}5ssmJ)Q`t0;}_(e&fzcf?+0GDoi_nfi1z&hx}0r)Nw_~y)nrxhM^JO+@>3A`!_
zsY|B#gSNVhn*KLd4V@!3?+vNryio1D+>cOEF&x^AABXbtgY4kogvb{J<V9eH6xeX5
zQRj`Ng3Jf{XwVIDUhAn|97Hj5lF-V!LqscnWpY00zXR4cls8lL-5)Ml6>*@DJ>MQb
zX0GzDbJboUcq}Rvv5K)Hb&%X$(TqdEiEB|g=JqkoZ-2p?KKB`TKkY040S|yfQa4>)
z2DOhW@Xl+NHmtRPM|~XzMZ`SwJ}$oC)LpS^$|?*1+J4iIk80=p+t&qcpmIrLd{FLG
zao0$(5{hXr2Kg-gT>%6Oo0gN1C#5ZL^LsZf$)gz#2&Di|;C1sOG?$n3v$_#l`|8Rc
zDk0*vF5o^FBbX8Zi$xIHhhVm(<hpVKs9IvMzaSMDci3DM#DmMB9T2;GE6ad5T9i1a
z!nRvi&=qCPzFRvYJA5>=5t$}$sDxo+p$3)YF~MpKnjdmr_8!(3S`j&Kca9pMtzMm5
zBuUoFlWH*lUh}L;87<hL(xa^AV2anmrHX_Izw=ngid4tDb2*o}!nzhi>nMt^{%D4H
zoHvqS$2nHg-9Ve~x{l*Mlh4<;fEpXHje`b~6IgH-Pc9O$s25}~Cc;TFK0>#Mez&4s
zU-j+ejw`yMZS<are^#VQEc|hHtSO!0r{0u;EDmkzAf`L}mKq99#4Av*4C-!3sP6I}
zNRcTn_ss*D)mJK1iZMjXP3`P*&<-5J3VBo+7C)DOJGT~rUe8nV+yo6oAUg%2(AUpJ
zeZ~TxfV$t&2Y);|Y!L4Kcv-K8Q=PCcj-#s(QleG);oh13W-Q@iBa4(m$h&v@<zFu+
z?EYai*(0#xgCfOy??Z&FrS-g`9%xZ`ov)3D%{CJ)7W)F2T~^!MOF>B+$UkaYGbTNn
z$6c{P^*WT<|LrKZUMHyJn-jcQ>CN2&2TPOV_;c83kUM3!^}NH?_HGn@Y%INOxo;k)
zvn1{`6skSi8g2;cjm>>N#i5g84u(qvA}vi=9#W_(SjWbGrF&_5i#RxswZwaqj)PEf
zd{9X>47#j>4H&Bc>#n={xGvUs1nv1-;4#}xb@oR9E+<qMkghgQ=s@PZo$n2Ez7GOx
zcH0O|h0>u-?}yYfgV7r2s&==|6TPS3PSblxp5Cw*V5c(xCVXb{K_egjE^!jpgui#r
zheCb)745Nu#5kck@H$#gY~k59*MIdT(cTDhx@FlZ9X?iB&F~<zMJf#Xcxi{@qLrFZ
z9a~vy#h_&J``LF=gt`mH2S)}UW^KJbniTO<*dTjOAkl29t?s@prpv4R+Kr=~m=}#L
zfI=#v0l}j1*Jn-%sNrF6%szHwDt2uvwT41Pd^O>Y_e07qSr@Fk#^$ADp*a@~N|#p+
zMAm*{jJUjro?qya1QQrZl$E+Vp<RCy_I;j(&6O3$`x93&0qZg!*G1mNAt0xMXi-bv
zK}SbidKJzgzKkODJgBTE`=mh&(P#haF>loVhsAuS*syAXkNhll|GcU7d%fXs4@Dg1
z;Mx5FF;1bUS5a9WV6TazbCdAj9atTH!6DSBly^v;<sIBwo@2yf=yQ#7{YIx|a&-ia
zqYA$bsG`@4)sx<C?BSB1BqF)+QItK3fa->XQOV)#uz572mX!HER7u+YenMMbp0@N&
zoE9a^PIRR98vNUaAu%e1Rnc9RRyaqw_l5IgC6sU0s3y~z+ZWKFNvyBTPkn3=iMZ_i
zKa^Uzgo^t-EL^Ji7I(P?^dm+O#{WeLkxz{TG$n=7UFIT^$48Pr>91hW8ZW<#(w2vy
ziwy9+hRr^wFj#K38-d&|!Eh;!GinI<Kcn3w2R36Bf2<8LggaeV>G$6K;g5pJgfq=f
zqv2XFJmkVmc))=9)?IpL)2#F4;w{|+AU0Zj?SFh$&#i&oL{0AC^_)jMyA3&!8<NRF
zYTq3IJGuw0j;(+|x*6E7xOW>H;rto`QVzHwAMM}zJ1(6yKTEZ1FZAWVWA18Y!*AWr
zqrqcoq|viW{Ya#&s(6}Z_T!^gxUlcrK*pR0e@-OM!~fdVcls%&?S<kD8M-)XXgOVu
z-mS6lqn6mh8M;I^F0%br?|ozXMU$w>^j~)M?y8K6?WWc;3~a#kT-X6Jo}KsgwAojZ
zvjR&dv8!BOUGhJ8d+Vqu+kRpD76g@4Qre^>q#Hz}q`RA;yBh(4n-T#Tx*G&!M!Ezf
zhwdSz8>AcFbG)Cu_p|qY|9aQ@zO`5`mf~>DT<3MhFOGv3{1%ue+g|uwfMdI-@(6pR
zP|R|9;0Dv>a+32*cyM5(x7}aPtfo@@euvyuF<|>WdbyL8eUWuhi7pLFJL0D!<_?We
z6~Z3BF6RFr?ubtbvialH3{TqC`n;ZiBV3FfC|zQ`SVnUx10DE+7{oID37Eaf^r~w1
zZ7e>wrx9C4G`+@1Ciy&$VQ*GtA(dg9RPTv+T0yTkO1ruG%h(Prm9@~MJIo+J`2^YL
zSJAULoFwS)-_w7L?yfpxDs9iEkWu__xjyCV0aJ?4PJoUdRTtR&^^_Q*^2v=w8y~p9
zu=&OSGJr#fct@4i2aUf02c#QhA>+{<yx5{=x!yQFsaH|a<USRso4fQ+YeWZ0KqorT
z%}*#M>PT&UMJ62B=w)!($|r;l%Gc;0p+d9kM(;pC<gYUQ-K!;%3@^)vj<^p=++jhR
zOS$9gcPj?WCAjQXUKie5go`KP+B_f%9!TyoJ@)%;c$(<=yi4XU5L?DZATwN#k`OR4
zc5l`~I8Xjv1Re*MclNd;<2Rd6W3kn{lX?BirG;fipxOQ22rgPB*an+UpMwhROC+`@
zrA?!2b?S7QR}Y<;?Srs8vTGnqlTmPd$KLtq$SXQsuoUytCi!!4^OI%`$5TBwjUO@Z
za96$M@dT?wXGt6=-<p}S<GdPeCe!U<{Z+URa`H3W;5dn9xZj!aO#=kmI~Ojuc-|i!
znATEvHR@(w26c`-vs(h2Ek%6ijWut)T;~EUMUUs%OqY&&Lhgnx(IP%aAD1F^s_3j)
zV!LrE%J4AHTl0L5mD2k9{;#d>*(uea)g2TiF52;2e5r`5bUkq>LUO9_&6NK7#3-;v
zFwqF&Q=p{aAQWJZX$<NX1$OT}t=lab?<na+??f#@@0=AK^WKi9;bi3!RLkdhIc1w6
z-~V>c=QNa~0JYj?#*|%t*1pbzAOALKCwG1v{;oEkGl6^!i^0!(G(Vw;h!LUh*W3S6
z#koD9-us^Nf%m9T4wAR;&e?&FfOgG_mql^6+Vd>xL0z>lvEF6EmsyRW^aiY#q$Oy|
zB^E4wa$(>c=8P`$%nD}1|Hv*VPn$HNjJ=w6penT=6kV)h=O(N4td8UDjtjVQ-)q1G
z8xFi47<`X+V=KB6)wN(`zQ+rS7B9x!N&2$y1S(Sirn(-G4lkiL@rU>@J3eH_IV8Ma
z8n%7%!-?j7GRG-4kNA7tNzfe&W;J7|+&)3|)vx*f2^Q*W+h5aB{>?RW8)WxEf^LhG
z@#)M;u|CV*@}@7(=}96ELS2$eR70JI=WpBZ`(evP6W`&PHT=JNl38Zbve)|cgTxoW
zjNN1Z0&HACB?>$C)Sq?_xYn?eW{9J)T2J~Lrj*q0-mIY_em95-9=dHoN7PIw2F}*a
zn&1AO{)NgWgB|-gv+h1bL{z_l$qrO;$Y}WdM>~CK_f&C+q{}lGeo$o#Dd__gSS!KY
z4@00-7L?%>v}rb&246(-{v=zGAOCseGVU^2!ef)lWlqgiHkYO>`0=H$u4GXFuSQiM
zxsm~c>lo>62N>a=7o8b}r07>x-B`!_BSz)g6wN+k+82M<wQU&iy|&^<sNYH~4%~~@
zsSoHNc7IeWzpBYiwbPl=yO5mS(rmpK05VVb`Q|_E=OoN~Y`=j}wgdJ10}ZfJmda<J
zij=RPoP#=%P5uk}V@#J*GGVP<=7%Db(K>KpKj&7Bc_x*4jLp%TOs31LcERJr@TLM#
zx|{X1v*{GX`cdKmzCvMntgi6~mfZqaM@UP245V&8J}AtBLfVl2S5<yy%3GknV1!U-
z@@&rDl?8KW_qg&(a1AVMKK?!OaoMG7^-b@$6cx}c8K1?emQgO0I6^^P_CD(!Q&0<)
ztK`d%s#`cRT*$&JV}Z-Q$JUS<8n|edwatMm(y_&8K#->IGtd0>GU54UgiLDoA0Q*W
zinDDQ`QQEAXC!Vj`mPATGq%Yj?4E*2(N}>AfU-$YmF(W-FR~k(p`}Nh6p?V{nUpEv
zirW!G+UyNbK{%BtNT}5XIl=8F<rhfYsqU_Nwd|b-zAL_tnNdxYV=<4f+l{w?Y9ek-
zL{FtxtUmwqheb}g_a)r`!h{htPFhuuS@U^gUY)yG414$9Ury4cbf8tAE)Opp%<^wV
z4`4ZNb^L+sJpdv#M!avJ)q?nY6|=%JSnycAnM0CAb;b6hDSuUAg-si1q_~e*CCGc;
zlb~fMtP~5Qdx!wrsajpB3V(2nDFeOywYf)S|JBRC^K%2vz5_%!Z9nzAe_D&!$xFrV
z(Kvw^)BcXB!u$t)w{Q9WV1Qe1ofTJtX8w;qXOl0dzFEGiM^+;izZ)?0)Mr<pwspeJ
za;NO>X&7m3qoPtvqi0!@Anr90BlBb85JU!_YjlXF^(*-Hui!;oqZaZ7j2B{!C?w3<
z26_TEXy<1!V8%Lp>a+e^>3p^?^}5#VG+e7{dV;3ftWoyzJDI?fu|GHu0A1|k`_X6h
z7B3fVgog!Mf27GByfNb?jJDOtsXekxDC;qLgFNVfvg{;j+D0hssm!F(sX|Nr<dg?E
zFO3h2j>+9??iJ8gb!8kcKId*>TJZ=|*$WD*Z9$0kz-{<LklL0LRwHJd)sMc}Y~CsR
zU^bZ4yeg|40vX|q_odSSRZp(x3|`wGCVqe$zY4PnPb*FiG=10o%|?MHLzs!XU7L#l
z6yj)sOiJ@#K~7sb;e^9|SQwD;o*Z9C%JbWohhu!B_i}2vBR@c1K{QR}!|`a3wW9?Q
zv<lPX*?zUmR-#|)wlDq5MiQ-mn!BSCRw+S=&p*O*;0Z;&u=qfV2sN3pjezLQWV!|S
z{<u0!(GFw9x)<G3c0}_eVuzqCpp(|x8bo3fA(!dpTZvB}1Rq<CN`Tt&XYF-qg4Qf3
z1^_5rSUoU5j{OOW>2>`|=3>(geBrXOkXKp@V3zs9cLR>I<qu%bTVTX)(%v{;7#mCN
zpue4I`ZPO)OT$NO0GovQ5nupR|6u^A6P!b&UPV=dz<9o3C^nXT*OgP1;}%{c>;ME_
z#pZefjxrOXL%xHcC@3~)&0It?cD11zomu<{9`w6RIuEScBV0zBvF3b^8Vk>Qvn1}s
z+U-2bBid;iC4LGmC9;2%v2m+4{QGN8w4R&9AaCE>iPUe1)JoYW!oHF+M4DC0S0BAn
zRzV=Y^oiLn6<W*JW4lJTz*^AgJ<|I*Mft`^2U~}D4OG?aQqMH968~9zxFaC9n*xX%
zv{19!*XT?-Y}Kt*>He3E;xPFNLBvTTeQ2NBj-rm`3kyeLmA9e*0;0ZVv<)f~JX&Im
zMfxDb0D#h6@vs4w|2<U$siVC0APkbx)Mox#mCGxK<fpn;1N*C(58(E7a$2O<Jeej1
zqyXbIQ#G>JsxF66AJGSLKukpfs)77^zdP)+3+-}%_Bs$p9BmWAoY~r`cVIBMZmk#5
z^V-XDY1y3&zK8L32UIZW2HT0a<ol_RSebCt9BWo7SDRjUly27Dy+O~HwoGUv{`l)%
zb)3$WZT$)Lpunn@^XhD!PT9F=S#nF1PToN~<=uoOFgLrlx_0cV)FtdW?rgfI9K|YY
z_?$LUJF3g-*`lgL-*p$eBT7awXuc%lbEbZIrKxuaoE+-0>l+e={uhh#hb8vV4Lw>D
zXf0OkX~H~H7Rk5mwWL@U9@j@2mT8UAFlUw|4{UnNn@~KOmEtxykDh+hdI|*Ww}P6|
zGG{Q7>BRk+7|$0@&Y=sVft5UM{wVE`BjOI%RHQDen`3Kp8qLG5{AJe?jri}A7h@6R
z3~U$0OevMG&e%LIFr$eDEX(ppw-n}woWMqRb0=FH-?ldZfnTk2{MlWq<hur^$9%Z`
zxUBn>bFEGhQ8#V#UE3?i2>bm<DXZIW`L<vM)ZHdImJ}Lny7skF{o7dLGb`hVMbl*&
z%=V)n`#E1-KDGRigoUM^%jCD1Rg%Ngd@<k({oYF5SjpDCXIt^U-)EGV4{TnJ=N{{z
z%5BhEQAaW&9$zlR@0w-<U4;N#Uy3pzOMk-$3j!;559`zh_aG6Cx0fnzeN%St&taJ|
zDw_+nz8YSpi`BRV0$iuUpfH{$6Hc*CjD;^kWLiB?`cUp_EJ79DVg;s>=HdrC8s$Zq
z;0ZK7C&UWi3`zz0q4xo+p?ytYcQwNEgZs?>6-5r^PuR4eg25motvnS09%9a`2{GBY
z5&jHeRvyRzP>GL$b8wnevwKQ+MlehC<fm(Sb$NDOe&+9v4QEnkR#M$2WlgX0;klj2
z8EVij^t}@#cSsM*mY4Ne7#gQ1N3C{Q__t?YR_~=Zes*VQ{?$=BOlw_IR|RXJnHVFT
zZ4fUVx&yN42D)wo!&4-PG+BeL(L9i@MR5v1HM7L+h_3GA%?%yxX%M72CMl8iMK>=$
zmDUqek}hI@y9?E*be%L=FspDqQB@VmWqZ^3eu=v`XVdXyu2x4hD1f{d<a|pD6EVXM
zoMo7FF-B&G?Me#0q^e)&sn?ONSB2A$XWdcY5uUX$cRsx0N!y^4PxHK%2s<du3Luxi
zMD0KX3$qQeXiAbB3he4F@Z1*CBl2y%WLU9gR><kUI%YI2<(~I0Y<&U=xMA(`0Jkqi
z_vP@(`7gTB9$PJAZfp)T&wDS|J>P;JI;q*~)wA}VY~0;YEMnldwmR`Cg6EDeIZ!lU
zxioP;Dz@FPbP+!(`RL|YF_U-H7A2YP;3gR=N17}zSo$rr10VN8Ho1Gf$&((F#NGE^
ziXX|jQESTYv#A~L^eJ7<oqX1nIMzVIi;PuF5#wyVlTqjVQR(?#MBRh_h};axr$jhw
zk@Q_z!lQR90f0Kx=IQBS`&g0lrv%=CIY;t{&nAq2=UKnI7P~`d*Z5%VK^qLLBDLH(
z-x^;0$?k*S_2(-(N67b%<u9<yT_=3ZG;Inkl^9rfxRX5P<)$Y6;ZNThs-*f)<d!k9
zgd@(snba2zEK370E=RY*cRF$vO4@h-<3~_Gn2zN)x$Vuxl3C`iCon$w0jM_HU>NTN
zApYdnjrmpjaR%1^AP@favVUHDL3(K;jCnJd<<`&9cl3Q6c$z>(Hm`u{bE^N=`kjuo
zN?)~zP@{hhu0b*#5-R;&wBo<L5LhO``jDez_-%W=!bW6>b}Rm&QN-uZN=pCzDnXrT
zd2`_<XiR~hd>^aIl;y^O3Q>beMwwhEYdSo>`IqrOpU}VlR2d&H^Gk95>-sM+sXs*g
z`#VN`-vY`Q{{1>o-~ZG0_wPT6`TzL;P>qHE{yO0M|NT<`m*4mQ{{Q|UFHlU1e|=>$
z{J%S||9^lf{C|IOgh3F%28k;-Xl_Zq3EaB(2fOiyZ-Js*a1s;M1Ne6l-;M*O=ke6B
z@hc08i9aaN|NI1>Sil%bv`zqJ!}Jf3fcTFg=s!MR0I~52XNHz88&hOXK0!G|{{1UX
zv!WGtOwWC-#1K_l_Gza)6F2*RxX?Lki3yo>`f^6_%q<SAMX@&}KEVH{89cNj1Cr8}
z8SuaUA+I9|;(UZ8I_j-Va^p35uQzn`T#_(Og-FC(oz%>_z5ONJ%zq#M_GrX)KLu!m
zx`)Jp(ehf)W!Zu@9Zm6TQDtSH$h&R;f<;NRfgJVJU0i8M4#!5S^klas&^x`9PQcuz
z>c%cD_~v#u)y^#lAc25a3nj|F0PCOdk><O2&#^}tmKw4X7*uGeH-DB-Vr}8UDKxMT
zZ$Ac@_3A@ejdJ%FB%iDdEw+EOr)Mw~U+%ZoEj#N0RTd7lMXV)2LcDlWmEDoQ`nVIt
z9E`|g@KF)aMcn>Y5IL^@rESD}&$8MbRtj`(H_MNYLWeo7=z#X~<^xJSUi`IgV9u+5
zPJhOLPzh)ie!I7K^i9A178Jg?y-hH&%5*uCI}Q}s7VqCYJp+)>)tA+~{Tp_hk5f(8
zWJbO<CtrR!OmQTkeMjL9EY!Cm*MNU7EB>tbbb{y7+xysvf*<9j2rmR2u}z%XMuCr+
zUAvF@ecCIy+k`n<E~XA7!prIF&e}p&gT1HZb=~=A+KkeJrv=`I9(A#Q)>!qMoD|`t
zY|(s)*<9qjSA%@Ra;~evL^)RUjMQ5-^nkKvcGSv-0_S+#dgn{yv5k-zusZij+xVJS
zu5@B&+!nsM6?IOH6YrP0{l&)4-a~z8;o+V;!qMs)h#({snT(`Be4^~SG1A3c+}3=>
zeK1gd6$nuax!$z4|Kpoh8NqX|x87P$ygR`3jhns$11iLK7nrb_tPx@T%}E*sX7yj^
zHHV}KL%JP%lAolQAOQ|~ra7J2&FH&q5g9w`83}ud=lv5%LosY`V<3hLyH%NTK%AY&
zjGNIu75U-ws<P!>vC79+`8R+~b8_SlD`X-0w7H{3a#HBm^z}|PMFC*Bn^fz=neX@8
z?ND9;A++Q3d78>o{CCS58C7L1?h|))uX{`I+Dd_oeE2Ftz=K?`!U3Z*3L<%j)0tPt
z?`1c=1pwj#MMljmUs}KP?@2W4lsCYS3J^=@J5Kclty-P`q9Yt&GwCSPMWj9z|2)E@
zwc`BDSVb3xlj3=;rCj0<udBLa7gVxB@AF7B;19rmNR^kVUg@l9>UY;VFo!<ns^M<i
z-N7a+16Sfyd*6SGprtjJ?MzNChQj*-kQ*a|bCN5NJ=9|WWmYrG3y4%vvtH3D??kSa
zXPhwl`jxJFs&S8P(O1(|L9d|K9>ZEaE>EIMm5lGQh>k7|wuXa`CU?pgs-Z|rJoC=}
zG>)g5RTEo~XlKA*?%x0Nw!DsV!TkZusQ>Y<B!E1R?EW)`_uj)ZB8~%I+J;yIfF}q9
z_I;#(A^E1GNympqiA>Di_k9NQN2c`G`xQ0@xAdXxFR#r~Uyg3x(?AGqy4C5mJ=&}Q
zH;cua=r@U;x{>UQTfK6u8Wz6l-^MiM+FKt${5*Vo=gDsck}=ogWM{a?r3CN>Ps~IZ
zK}#pZRT3bQxTevF-519|2;>i(4M$%w$G!Bwdpwwcg)w<=x0Aa7jvN5ji=Wh{hE@KR
z_QuebPzqI(OQ>Op6s<h?EElK3s<0!~x6|Fc*8R$P#NUC{o)N`u=7&3zbwGA6>Rq#C
z$r8+$f4#hC3tw_c=$-yK_#)*g3hfl9se2_>5!F!2zgKvEAvqrjx1bHM<24ge|5c;C
z+g-boU9$+>ubX{<y7_=Xz+2w9q%NjQ&HPiJ{U-2upLg4G5PqE~5zJwWb5%U);^8Se
z252N80L$qLRxHZxKo~)!x8&Z8?x_s>)>#-_c0XHN$`1fWb07`e^rGVIdvL2;OmP7O
z^!m|>KvmiHoctde0{|RMEkpvqL3RPsdF}i`R{}Ok@IOQbBF*W$1c1kI@{?GzN|R`~
zh~WgqOG8i$f0Pqq%Xwqv;IY`g+Bo;<gb8N<OodkcA2^h_N{l9l!;)itvhiAcEtjR4
zbkwON_F4E{;G37(MQo4_z0->+fd|-Ibup#A+TeP<Dz4J}!-|7bVPk!DL{UOQg0%4c
zq)6d}A98e>C)uUSTHe@NH(72kShcSFbouCScr);yHuBBRaM}U`yaOzkA|)BDLiBhK
zq~Y-r>+lMHg8+!6>c8JUH1L^&=lc^v_u)h&1tqm!eE*tb!Rm=@jkEn0xv9d!t_e+t
zSmb>UQ?NeLC$pzPL;#fjS>AjpcC7jA2BmTH4Uq<ql$sL)K)l+_9~EPSqAq{vMXLxD
zK;3ZQTsi{}Ptjv%v#y0#0F=35c|5b38n>84&u6l0UPZ6p=y<wBL|+r=>p&2Y#|_6R
zItJ*00S?1VC0A@$5mP!eS)Z!kFNYPNfUv&Wq5*amllLMPlTN0bmK&bwJv~BQDtAUc
zG|X`ZasyDyNtO6^>1FSq2gagD_m5Tmr1(R^<hr-qp(~F(khf**S{RA&%9ZWjsjmk*
z6%m8+U$+_iNp3zWViio}**6s~xj!D6S<{u>V}fM(D}2}Xwl@Ev`wPe}H*H7b*HMhu
z>D1a5R$39dim?^4g>>dDn2lGgL$f`XD-JB;jXa7>@vmm~sHSHvFrb5gWFV06y&qL+
z-C(VAaz0G{+H%>l;-r;a8XkmJnU$3Vn9$&iglsey*;(mD9s;D?X`Rrc&AgVD7C?Oj
zRQ!8*dG^!kH6q7~KxzuWejBfU(s2HmN|iSkU%8GefNwOcZ^Pu%7#Qm|@b*X7&Ah>+
zQ`XuPG=P7mX-49zks$Pa{x1N9)tj9KlCN}rXKqUkth96B%s3LM_kI`lnN$ACBt%e<
z(v%CGJoF|?M_apAM88qJ3(vA{#%777T4#pWR!oDD<M8hB*xYpyAE^^?@j@7zy&Ls!
z^$Q8F{Ov8R3ru){Z@bJ8czOWSd?X7~NKzgk^6;t06$OARNmfcW``<Vam91MY$zk0C
ztb~<UM;jb<qOA=Vz>__9Eq+g0AvY&U%LPylPlg`@bC1=pC%(c45D2l}d#_|A6%d9G
zgQS~<h)0XoZLIgJ{h>fy#uZeGiaZ8Vc*%D<lJ{I?E@E;xf2@l>J(rCDb=q%(HbV=l
zt-3D(74INpg`kdM6#JscZ2F0<+gZ5DlB0ll*~a;&KyPZ9`q2$AMQ%-F61npm=wn;2
zp?Gz`CTh*GP4t`*7jI)iFl&G@YR2Q?!<5zd+UuRT+Lc%ftj$}x<B0HNN$;&Jo|3`Z
zm3MS$+dxAabm8Ylz2$&^NioV)iJW9xpMMh;67*BUR>WpLxAK0x*`Cthx+h(dBOzcw
zZ#II#e|Kwcu%NJ$9V^{HVCqIQAZNX)0AXpGMp<vNt{qIrJimXf<ZbLW0jTJ8RRNF8
z_~ia;yvxm>QBGRze2JP_pH98}%Atw##t6Uux{<DFR#qvHhWRzj(DiJ7l<4UhI{qy`
z)a3<{Ozs*VH>EeV>+<~JdY&Q<PLvP~$26g)%G6c)r^oN%!-K_ZbW!=-(k;k#ZY|qR
ze{+C{dhTszPWHNsGc+wQm2e`Bc)*9KAc@!pzOeG)r)hS9yXJ!ddhVRpvDuJK`WEd>
zBG_hdxmUL0`0XQ65^RicPM2~G&y!U_e7NNc%KBCMqWxqYZHK2STR{@qiKRmyjO;_x
z4PWsC_$O6La?acbmX8-y*me}3AR`ZleX2l9lqGeGU+ON}#S-Y~wF!8HPQ#;X@-9Y%
zOW*_%35tvCp)-D<dwRwzHr%{7^(Ej(0N>&zk8pBQ-sO|64Xt{=C6VR>?7qgU3m*G4
z!89SOxo~uVdF+`(-xOyj9x(#=+8JaK1#TC7J0Kw7=Q2?v6@x}W8OvFkATO`S>+Ac+
zL34Kiru8AwH;LLfK$k4jt(4gN32X;46c&EJ56`iY%%@bm^pglM$hSMdE>`iT%sn}E
z;|o^`6&V==3riB;7DprAd^}9y^;;<e-^QQK*PE{U1GVv$!6=A?J@A!(j09w86hz|V
z&lkbi2)IohmY1Zs-)+zaP%MOWeyAwPY-$#y#>drbw5|ZsKReE(r7Rf<Qu)0?v%Z@^
zmW#roS1F38!x|xTVa?|!^<WCY{#_=B*oC>XXg9pu8~tLQJVNH9<^uGLkEm3`?SybN
ztyj{<pr6Yq63)IId}eXZ?Z$7<ANdabq<XbWF4Mm=_teN#kfWui5q)x$jn_9$4K9i$
zYpI=W_mP%67CX88Jw9(55KrCsgFO{vooK2UC+VW!i{GJLWEgl5MybO)xAQ2W>MY)L
z>%O(91l2LMfOY(aP%>e$M!}G*d_i|^U2f()Cwdm{i%y)rkH_O~1@iQM>lla-aC)QV
zN6a}r`;c$jjl~QJzwGaOh5h!lDt+5@i6(sIYXCAo`H@m?a}o0Os?Gl4OX>An_{`v*
zh^?iO##sJR0rS{cTRd<0g*vP5a=1*PHI0ZJ`7b}iOkb*o<-r-!b08T-3uG!X)A>=E
zX)-t+Ydm@;TR+!Azh7Y1{+PS=V_C#qPfC;1gA>LGGjqSX9C40hHI};=9inU%xx(T8
zWI5{N!8-fV%oGP;!zfz4Mk1$X?@-XunRfG^0(;#e3E-^SeQbQ0!4k(Fl=xq$foF*R
zUO~W{pc3)aF0bU7_v4{Qur%nuK=CF3GW0CX`BJ_J#haLExB`@vz9qV&a&{(#H|NqM
zGI7-PrgGEkLksKf2f&!kPUk1MmAiWGlrm(%dAjK4Jvski{jSc`RGT>x@MD?6NFpD$
z;PV-<TqQ%0U}nB6lv~5K_46F=(&XilCR7|A{vNnr0M}lYb;vA>_5}3f0oJKkb6$nV
zDD^f*Fj%SBJK=(Ml@)PnTfi)uG*TdNIuthrU@}5QFET8_+Jte>2IvBYgWeDIh~0sd
z+pBwvU7QU@TsRWpzRH(Ub>>LMRQ$~x6wPo$V%jpO8k$!DCJ?VjCo;Wt1yKmf{Sz|4
zAIOL?LY{7222vBdYFArNf*K)`o>5bz?p_*`lNEJJ^7}phdFBzl4bM-R=(NBxWg)<s
z^O&0KUqgij;Rg<XRif^H3x2OK8KlvT0p=tEXK9j$m#@Mb;1`gw7|-s~*m~~$lw^Pj
zF(#!rv4AOsZ++p75^`$1d%tgc_0#SXrb{D}H%&fpTL&OU@-P^^g+#Yzmw=AMPf!YO
zFJXrYNy>qHzUE~O+<*1wuN*$rbqjlC!C9hP8B0D}i!S~v1(u%UITiWLT=e7=fNOCZ
zS~BT27ZyY3DDVYMlT5L>$0Y1aRiW-9WR>ptAYotkX!QBWYsBgk@6zK?XMmy*NJV?T
zV2u_}29#SUDzw<kE@I;N4ox>l$FOCVuJWc63HTVf{6MN;8gsM2!Fg%~__zMxna^%t
z-1FYR)1XjwQSIs}fVYjdrvuDw6qdWWen+}{Q{t0(+Vb#ik=C&p1-IQ$y(XyGN30|R
zkIZtk!JgJn*fvnkuCI(b3p;VDl$)eAHll<h`H%SB?anM=+h9sOAITMFdqWL|m3`x(
zH*^h45O~XygWe4VM?9U0<}mlARgsX$1n#62$C8y(DXP44G2n63Z)6e9rP4~S+_MAI
zj?!aQlj2+)SS>5g#Ts#JR_$U2(=hX7-|!@GOj+cg6awRv!l>p+pH;c(5+}MTyfC{L
zcAJ^;WB~J;^X;U~QRbY3tZGagVv+RhGRN&t@W}$zm9W@J!~KrL{fp3nrC&5n6M^Dm
zQQGFo8G9?YOZ$^*#JdkfxsF%z17JyCfN$4urt~(^e{~9tNn>t<9kb&cr8*<p{jU6c
zX)en<1LITkw_X;uW+lXzhr*B5BiH8SGdDiWy$ec<{>GGuHdIw6TK5T1v&GtCwBtjg
zs!4b4Mp8KS82t5})+V_^&8BdvmX8?~2F)V`5&7ej_;w=4?9(>DC9e6V8|19v;3K&K
zzAB)DAc#{j>rKt`)AIB1c%cfNotWqhm@>FsEd@?PU==MZ_4O*)o;%6a0~m_KbDy?Z
zWxYcwUwv#6-#E833m~qX+5^eMF^WPJ+925W_&B$#0F4i)$;kM}ZRa&miXNc@2NVh)
z;f%*&7YlpwCBX{m<Lc_O1HFR(jY2{GQnAXmpqWO*(+fB>t(vrSb+i4xeltn*+3eN2
z>DIY^{Y1lMVPd<PMEBK<`>!WSTW>Z!SN6iKsYMo&uYo&j_xC!%-W)uGWd^vnP^M^M
zfxbw?<KROL(JYF9j_I3Gu}xnkYa2&f^<<Nf3y!UJJ!wgLsW}a}jUAf=2GcM`abaO@
zmMb7N53e}RU;@;(7!^)O8Jf4hWB0@*exA~QASkl^hXrxS*OJdCI@#g!<{2_`jiL2n
zUBDd`dU!Ygx$2%{-$hg>Ts|GNt3dYdxcUjr=5Erx0nI(pXvd${=RDbrGf2lZCN2_z
z%D`0sm6_lu?9d;zHVev4dN6+f9k<D5-7`)Nq{mFU=dmYm4IiSPcvk&=TBHTBo2ez!
zR`g=&J(iO}PQ$gNGNgdcs3^CNZc6Jqkk}Bh3O)YIDk0bH>^4l-WuA}#;pQbVS{|(Y
ztLfO(Ts=#L!K?6e&f*K`XQM`#OP3Ng-GZoG+GmFm!#oa+yy^8lqCRk}R$SX&ACuM4
zxK(9wF?J)>s~Mf47B&8dPRtpgd9qS}r>HOV#heb7B$KD<D@K?4kYlVfiM14M*5ygR
z;<#sTF1k`2eQvmPE+UO_u=Gw=T>z%E=$xX#D>zya2(Wm4{YT|1NW^&^ExBDWsvO1#
z0K%je_iFF=P>iDFPWOgZO@SO$wBxHXcqbDJN9zjAVZYhTSQz8bg_u4$uO*XZx1d_U
z^<%kKmz{^{msc8c{@~a?Oi5kuTvsp4Xp{YS>5yc;BlVDZ1hC^BN5dEdTnylU`-2An
zD6CT6wsrEb`7~&v1n2Ixx-)76!U=7*`C9g(y|95)p#dWZm&?}X?&`48F{Aw7T(4jM
zXc4wjpH+pA^(c*!ahM19z~bC6UeNi$U4lE?2I6eF1yHOBhH6|5+n|%N$*zQ8lqH4z
zO_2sDGTX?lQL6AB@GFBl8W_+dC|qyNH>@0cjmcGPM~ZcbiHX_FKDf|mJbuB~M9Z@0
zw<N*l4w%YVwVOX&9?t~lu*939*33eGgN2YhTJgr)%w%gT-zzga<|Z)F%{2Ic(ov;$
z-+Oq)e{d5h!AFR-bf^n4r&iU)?l+{(Olh&S<p$<CFe&JUMW&~JSobkCeRut4q~!9E
zD%7kbIi<u}4Uoj0aMJ9cpc)=13t`NP6Gi3Equ4&Fl#teO0+~XksM-YgL#wF272DC&
z+llTuV?T_Fj7(=<owymtdC6t@^+1BLq=%n|=fRNd9GQ2;8^yu<I_Z#-5zYSiBd3Hs
ze?ylgNAK-#Hpx$rR8!K|JF{24;rVPc?C*)JSn*|N^1D(}bQu=SvXbq$hpCZ)VSmWa
zgYQg{ooE{2grkyp21nw(yRSBEe#F4%i#NwMpIyt9&e@m+#v^)#Ji4<UB#h}e6?K}1
z`^Xw0o#V7?eU-k$7ar4;f-oG_7l?DrLh4U-S90ECK@G3qXI5_LZj}m-NihcncfziK
z?UA;XQZ(Oe?EEE>rE@n~lr4F=YB3?N#l&Xcx+2meu}<b%C-5vyrfu{1z><DJgO@EB
z;_pA&U%E>Eq3Z{%GXbLTWrYUxZ`wCqm+5D(1ErNHSt{tTY^OhR$Q_#^P<+35C64af
zsz!>s50qFw=Ujsm0}wf35Mw7mm?2D?Z(CgYB3-%4^y&mZO+Nu3c<;wRcfmPLMon#Y
z=?Ox6|H+Yf$`&@u&T$9|A7m2BzfJo9|I)2UUOp9cBk40eqY$Fz{Sz-vXJG7VLvEry
zvVxXs6xXco$7Q~O-gK4j7rK*xy*xWp3dTBcZ77y=m2rkHEOLM*ug2k5cGaOWB<dLq
z?pUZP)Lq0$oSV}>`}3oO1_ho>{e8l+z=vtr?l#8I*^#CD^babzME5?|s4V&IvTvcr
zNPFWKau-OJA{VD%&&rNdQvcT)h}wG4=GfX8r+T>*O`pCgfdn8u%{Yk#@_M_t$fhBI
zOiSSO(|WkG^qWoXaIZVnunzu``e@&oqnZja@8UOc(#MYfcv3-|5eR=~Bu_uLlo7a%
zsscehUf;=gX|Eo1F|IV}!|gGbu{4kQ^j<U-jWNvmUXwSw(Pb=cSt!h#jxkBJs5$AR
zPdySwj8Bt>>1+kp(Z2;o^7c~@d+&26Bu?#<2tkb+f8rp&W?-R4dZY;XvLuMG$npGD
zuf6-APQVRU0%DMyr#*?mw=u3_?z}~8t1&?ImRLhN`t7xphz@9eseZdbFvfci2)jRV
zBh<}*pM%F->+{cSRCRaL?G1=^l2W3yXh7K!UMpxIeZ4V)-1Z!sh#(1FVShCeO^F)@
z(NLc~rLncHUtfS(>=THh@oE&k!G9gI&VGK{b$#-%QXU9eOgq~EtM$JjB|P9<zc#<>
zR(24D_rz!NIne8IzC}}69V4rxMD+8!N(_?M@0a@@lAM-<EQeju8^?H~-O9h@S`jVk
zjrk#=q1R%IH$hfy3b|lUeL9UpXBV$@9F4_<=Z6Z;LR(bdnS|NOUDv%)JogdaO$)ja
zeq`P&O#1nup30$AI?8o=UXF*{Az?o5pG(<XumXE=tDtc2h}XUGwxe~&gRk(~?^aZr
zRbtugekoJXsEzV(_{K5}46>aSZwhAS@CSCX*jQ?5FPJWSaTCt&BO7mx#Nbc%GFAy}
zFmcn8&w7SOwZCn#ti3)Zy#EK1Pb3GWie-&I5W!&;Ap+ztNr~s~lQz(!6vwMm`*Qb>
zLa{%$S-KzhezD)od@0JQ#9Eu<Eft!8ahGm$(E|j}!ts5t>oh{A&rD-D-ZEW+kYjsq
zc)Mo{h}1p$sAFSx&6&oyqZ<$tABx68c^q;p)wM{zwOu*sl&#{N+R)gucn|4C#@voC
z9?{oO)esYC+UKwB_3e48cj#N|-BXGJ^B2PdP#~mZ`P@A6CC91g6BY;}qKx6&;H0I|
zz!ssMf4f0=j0vpjmeVJ{x3s$o5p!gUmpaDx^QeUDEM)?X%Q!#wPDRH~!S_C7R$KPo
zgKF{G8<GO11hDb0c&<2qjPVSdZGx*jmvuZjfrXX4=W=lKxCPOLW2{H%g5tC3UwZAx
zT#iLZ-jsyi>4af4KPajXoaWNtd(r$W`Rqr7zP%!}Pu;>3#3?8~R6S*&gvu4LPA2Zk
zxh+k*zpvdVR6JfZtUKe)5G-9`?EUDK@8XJvC(NVJ;OlR2n_ns-Xuht#;#VH4b*ZGh
z9qkF+F_9qV1#Wv=`OR2GA3?(QLl-62@Ufq~i8&R?dmI<-jg`fG8f>5g=GBvpolnGl
zYCy9#g1Pw8rA*D^ZIAf-z8$0LwN2<Z2JUj7>4)Db@e+nG|2PiBwZT#0qLSNf126B!
z{^QRqoxawYZRPMI*RQ9<lwtN(Wf$;Ft}4#gRAGh);MBT5SBD)B8IZAyry)*(<3M|%
zsEeFdaK+-^v@wkJtCo5GyUb&i&^@MMPS4~)@{lZg_pq>((3AU-a2egrX{(i|6uvzo
zc=tj&fa!LWVLHTsQLTJj-ao7r{t{pr8C|eQ&Q(E(9m@O?u31&Li9vVL=h9~*%!Xj8
zQST~+NculoOC=u}`$09!R7)jq4LW#Dl7KaJc6OvqwEH@A_~*KMDPT%e?SwJ8jF&9`
zKEP&wjiO5U4b9hnH9hf%&N1_VmcPmm&02NO*3ZFSQt5v)C1wcFf0dLc{H=8YvXzs#
zpr7z*!Xuk9&{A()W`%#16pntad*=wqU^3^;x9#b=>rcU5OsRVD&3l=|7*~xJkRaZa
zDOK2@PDK=|F=cCAP3-3&*w8CE8T@Rldz2|EuRF^lyS=m_H)#z3D$U|_EeKvY!)(M`
zK{s#oVvuUC(ILFBGRBY(5=C`K$aAR$QSeH`7qYbfOGR{d<^7+-5&bZG48$KgN=^lB
zq?0@ngPHN>YJKB<J3o40uwwIUGusz%Wsqw8qr^YNAV|@Ka3hYu_ItF+#VMUI<mesH
z;1ON`#J>;kd2GMW!u*K|o!{osPh0xYPF>a-O>I=L1%OFYlRp?$$8doL&?NiN<`EnS
z$-(?4^$%ep52&-pzZ&<3Gbh;s&nIP1v=X<?%-e(%oeXA55dPrL{i0KW^KCmT>nT6-
z;v(b{zgWgDVO5WT7r5pAi!m`F16|SWivP+%Q7ON=831hS<fGdsq%5nOmA$3J3@T41
z{}P9Q84qNw27~6o8D-i@MyH;dKUKg!;Oq&Fuosg>IL3%qyC!d1zc8H{lCu72zLmin
z|I6$v{6owKYm5%3q<Tb+#v|b&p^^adP!dbCnHZ@9|1Z)+EY3HZIyX)~E9(q(aE7W;
zN=-?TRA~0SH-bD=hX3m}&KyaUpL{o}7@8c9OJk>5ASqjD9r<j*R4wtD3xpB$0`%a9
z-}4tac9z;<q`Q`c)gAec3^x3Q$5@Giu)DJE5j2=IW;58|{%pV$bKBM2^izxy*nHzl
zwg`UaAt%Q%L!Yaee3T;}EMXWDdHBsE%&evQzOM@0Hl2}xnAu3HDlr#M&+P*()fY(}
zIg(R9pOgmBIqoPj{sir<H=d<?Uh!+X()JPoCKKl$o@j9dr0Ip~3cXk_u3-2byY&!w
z<{85CMU_vwG#m!vd`IG;ds4l4QoZ=05IDkSSaYo8bxvWW^JgK9<GQ~^A(k}D<KCQC
zuYv>2BWea}A<M^B;|i8gD&a70Fu5EFLz~AyZ;hxyg@S+&Cz#?G8}xI-7_M#Y<N%@f
zZbpM!-Zn%fq|HVS2&_FconK$0FzDF*O1&`VK6P%TFC5n+2Q_0at7Sq%#qC=p3*u_S
zm$Q;PV*eU&+?eb!LJYD=hx2oC67{#lm7uFAYC#*l^cv2dfcPxHmZ5aOfHd(8MVgSC
zs^ZXc;Qy{dUdNp>`-Lvn2+Dk@1L{NzwuK({bKzb*|0uEj_@W&v1A>o(14dVJV(LMQ
zB!_9gOy3`ambs#m59M!?=^cH-W}s;%;^cY9yvrqK=hrnnndwN!!xll0s1gXlIeL+z
zO9+8deLtN%mB3Am8s+QNo2QNcbkq?p@lUh@bm0PdrbDu^bew*j%h{rnjDoIv&tL3)
zm6gwr<oc>St9VJYs%m&azVNN8mRmc=JV-^@Agu#H4_9@WfJRR0tJlvmJ2<6)0~`#b
zZ8Z{JN~oU00DR?L!QwPQ7+1XO9rKDS#rtaTjW2ve@=vb^e_M>EGowNK^wPjF)inLJ
zA#!Oj5XCkytFTd48tTjZy#mO8)QDb!@@(2Vhpk0qKCs$1>a!*k*hE628#O2Pfu&I9
z3aMe>ZQ?!5Qm@Ao{2D8*SKk_4ek%T1xHlT9*_WbDDgyDbUK!kO-6$eLEzn61CcCaw
zS2;uX4Q7u*eL#`m%NS^Os&x1lMdHSyqxU~45`F5gbPA_lBe=m<HW&;n{J%?2S6x!h
zcDk7h{Laf%;~$5oU=UZBKq1aMg$V(}s$Nac&9thPpB;Fa(Pir%OEl(X@Kz)#{&RA<
zYmC%wpDy+?c!8JLL|MyffJMRCXAAWXjaGhkBnK9b0a&AN&de*v4o&U^&pz>Jo4t*(
z^2gpvyz=(7?NXpM))-&G;aMuM;hd;pLhc_QM@t+cvpZp-k`e|0YM`%sY!CD}g73N2
z7oW?5NF^UzNNWr1c*?O}Xl=kCmCYHN_yNpC!2{;Y*73~BS)Qptj2IGv=}KK;1iiju
zV-xg&FLUcOy@|HaNiJO)>&BE%ay5nl$0*=L)SqrgGeGs61eBRlb~L-+63&GG?ZuP=
zq|JDg@9{4LexBr-g4XFhv?=dgEw_c^XI0$tiA>X9QM_N`>hZ<zxMqG-&XuHNgmiL_
zGI-psvN+Jbms#dSyr%MQplAeOnTW_j+h9u^2J-Km?P}j@qp1!_?*H@AeKbXCAkYJo
za^ZUUG&{e37m_Q>Xg97(erzggfxXl^0S38%8X5bTUQk%X#m5?2I}mR%V8uG`O7U1*
z$qWfx+i!zw=bDt<5*fB)>KdOb`Bkk~Y#%jz5RY6ZduHJP64kE}YAIbXlPewD){5-}
ze7TZimy=rHt{!>ymF-#~!=v%3hU9F9*WdpTA0{RW@?~iH5^LSACBVeraJ9G?3sR)6
zuE*RdX{7;A43Vr)KOumY)DXn3l3l+Or_N4VkfECRBNY)KI4uSnE3V&8Y+D!=98K<2
z=*=$Fjf#mc8UN^Y<zo5lCk**1Uh7NjI}=cbf0?lalwIp?H$FFSg}51$2&h%SO29_2
z$rVp#m<n<%t<CiyO8O3*Xd&a*u1Zz3+r9j*A=E@5!z%2dX;Q)I>gHB)j~29h3cq~D
zUsyAkv?xeuu7&w~H;Lj7oPp(Mq!zT#(Y(+2i<Q!I)DGaKf-|^G>z7<}pL=iai{8fV
zm?nSgcEL+Y1)2p=izW92xZYD)Yp-0T79BhbS1nxs+y{teRk^{Ec^J<U6OkKr&7|11
z#KgrM;e6cc&B?APRAsBe#*S|{{k9Lb_TKsI`$0@?yV;e@=-{#3fIBF2A)Y-|6+8s)
z_(>|Uy>feMR%l<VZqkaHrFyHHUDgmtULy7?CIn#Ds%yQa%tXs0L~Sn6zWCptWZ(~a
zMLqdnG#^9zQdOA*WFJ$l0>U2FJp>SBeog+`7s~Oe2=0s9kecqhD>(hu++1`1$avgs
zag@x>02NPGG(G7W>irBlF+H4FmSGdx`yo*}9eHucWX7yd{1ub!_@LVo%)p7_N?J1#
z6EAyBz(V5RXi6rKYI-7nstp?Y$A16r0y;NPqEd8jqEX#qj0e`z+DaNp$>%rR;~;!U
z+k^(FJlj7Mdz`V0afX=52oT(-3`Q53Q>hT1&q95h9q0=EJNoUe0T?8J)p(hsJl2SO
zoJNTk6~&G)Gj}11#%vU?$vw+t5@4QxYUj{dBoC&u%j}X1Q!(XIu3vA7W)APttUbST
z$p2qktZ0l@Em$et_gJJ@Th7g|@UJ0uaQ7-HlE*_#9IedCR9W^`-)zJIPW3E2$mA;;
zWi5zvgP^3B`7z?Am+|T;S>W6KOvfiYWvjH6SXNeWJ~HqyaY~t9hz@n#H)vjox2Jf4
zy+Kd@n0zU`?BmBsFaj1Pm;%)whJWgaf>0D{QsIFeBFqHD)h10*%0>n}Tt^Jemk6eB
zi_lhq3}?2~U1B(Q6+ss&5xW1@e7cH`+zjdG7*W;zt69qBVEkj+c9=>^KF%tLYMuNT
zFPrbW8L$<I>&q^*8Cv+Q)c{I^MyhtQU?RJupFV4z$XKj6RWPZo20Xk`d(06JamL7O
zGx)_>NDzm<`@CfulN~g4L9rEXN9YzY4CikR>x`hbizowp`-;I8u#g$jZ)FH#r(QV>
z#<kZIarJPXnWc*V9@YgeoSgzRdO<nvpP`*q`Cu1HiCbkAnh&b}KxPWbm`bFNA5y_6
zudwG(D0Adc68lelA_iK^<gFl&KW#Wzt|z};ufB{<iXMm+D)1}9bz%2cq^k?3;Y*zG
z!R+5)`Y)C0g^A1#wMyvj%m&34uo~8M0=zQ&b8zH@Nlp>tX=T4B6>p$_MzIE<K5|q+
zF3<cl1mhS7d-M}dC+=m%$S4ccbjueaDoAFQ41y9fX3VycXi(cvR}cvtq6-k@?7XR-
zGBrl_JV^ohl~$ulP@bt<F_B4wjEA{{U=o<?bm|1lva^-bD=T{GE!O-wP0RoyfKU76
zE)|~nk-)iGw{45|-yLAe*D|a&MZUjS3KXC33R3!%4Mg!1(@x&X?DcsFs`2MzfY&sJ
zCE~alSyRcPwqp<AD}0_V_2`UmAM5oh-Y`Zc^}sfMu1t_}iG#q?HuY%%HG%!!u@}f(
z1BKxFt#jBII2di6d=nsOmi}=Z#D;3N2X{$4i}_TUBBA&>NlHu>%ZpZ8xzDv<Z7VG#
zS{n5`Z66|-Qp{*|IX!`Cm9Krw1ZjhjSSww+cnBes0B8u^g#%D<<zQ#dV(I&25+{&3
z=>9(^Nl~y0c2tS(M(9(T-2M68H%He-eS+YjsAI0qfk3ieo|v5K^ZkF_AY?lJ1ubRD
zA>fb9ApC_I+tiMQPlA%m@traV3Lw1bJiw}1`_kOhFY&=fHRUd@D!;pEer@`vyK|1o
zCJG0CZb++iU;aQoRlg!70cdTe5xhu#$W&inKxe7(-uM9DjbHpM-dA*PGUd_+1Lq)$
zqCGH*MpeX=r@s%8U~YS`(TK`zT8rS}<I~8BEbe6_CrbwA*Zd2YfC>fG9)ch?X@Qvz
zlbqvxsagZ*#w?%C@vG?tftr*pxdM(8GzaHvTFsD8IfXNMrfPbJ^tq`cz(0AjggT?l
zC#_c4>?S0FZB^S235LImAlRvzZ_*HejK_oIY|$=#m9_}79)n;u6)o=2pfO)W=S$z~
zKg0wiyiRez#lz#{tJlnhm!jF;x(*&_P`Oi>AfV`nIR9zdJG!T)EliU!>&p~R*rKNK
z!nyVZXYj*vuAgDvcNBdeSM<U<RauEtRJBXg9AmR(UDu1cVGN39bkM-~@k8`Kcak#<
zl4F%@5vBqMepd^YERT&AykxwJ+d2^clcg*#Y>K*7`-=&sIZW1M@@9HHuilLr|CO_K
zOh@Ip4EJ0n>(<j+_kvArG(an+giBtekTdB398vB4Ma3lShW1J>VHqzn)r^|mT*S_8
z#<YT^LQ&0;4;x}t!jhLuLi3G+n^)l1PANy)df$FqkOKe@wUeY@!?%9&?Qm;&zNE0-
z4@5)#Ljr`bTc0QgyEI%#f=%R7A&M$!>EJ4o8$pfD`kxK$%UC3LmSVA*b<ZjTgco9U
zFsxq;?@rEGO~snPjK@1*>HdBzq+XS^GJu`>BgO<t*^(<pF#7Negp8A213)Pi%5%=^
z;h}k1v3qzvx$>$gXB2D?1i@0*aGSx-p&$jlUyZbhB`X@W+;(`mrpGWiU6Yj+FzW<-
z@6Ui*Ry97R`NAt~4&c5A3{*);*1$5zT~4e&fh&v_aY)H=VHJF(_Bst>P?Lx#)uivL
zS;KsN`ZgrDY6nN^cLvx~&e`LG1YWU$z-N#z*R5?_7ot%H)xk>vTmB%5FhrvYs@-%S
zN;e%VHc+liw#W$H(O6R24OVxuDznq<eMzQdDshjy0x;zq+iwXLSL*Gs0uk1}NFF_=
zbkGxCoA4}p{cFa?L8QYqr7(haC^af#YE0u@Ott+HSbiowxjJDPoTtufC8tg$Z9-Sz
zL?aFL6<*6e&^rXw5IN6)2VfkaAwY*8kWf0-LXRMF0inO1+wFDnTu#@rwrt1#h1Co3
zDHkMa9cY|+rQ6m!;RWKw1!xFRn#?dgSegIpz4IeiHiX%{W3I$ekHO5>RSv12OqX8q
zq0AhuB#$kJThfTC;XBRnDfX{~XG6HHRFSkmnoXUzl{bUog5#AKuh*r7RQ>=*7SAv8
zdw?opT^mZgHHgf)l6lCN8RpwpF}ag81fws>3a}7n@Z6klI7>f^zX%0ra(7yFgW|K|
z2YR+UD%>MUsY#x#n$<qS{!gd-!HOBt5Lg0u2O#}3J-ZNT^0cA~=(XWAw_t2AGv8s=
z0$Uc-41^N8q-#`65?t7XClSOQ>NMXeL<f})%ISYwPXP&p`o=h&>8Oy53m){kXkM$-
z#9mT=iz;m-?#<E0c1%oyhLwj$V%upR#NGA7#Qh0$kbyY*)Lc{ZaoPhMx;7U+lvlTa
zf)B~s5vE!_asWd!wOz%F+}*#p!2HBPyEm6pD@Ds=Q^WswxkTID%ddrNmve(R%DD4k
z8H%kFf~C_f>8U)+P~TaKeh%vIcHMFm$ON<!ru*{DMl^jDuRjYEH@w2oJr(vj(gX)`
z{AcF<#v;_!W>lv^5A{xQDXI(q19{-DSX5CiVp{#(`lpX8Gx}axMWF`eurBUZ2YS<w
znPL~61P(()`rN{qtUxsql&!tCv^mn^wzQY8UKaR3q^zO=oInEj`%5;vm5Ng#-h@ad
zXleS#5iRF(zPR=GjxY4!-%mkh^o*z(5pRt~qWy%27A;Hq)A=Tqo>_(?k9!d)Nh(-q
zbmU$5g`OXbUzYOd9dA<jR_yYQ6-l_ZJ<lOxulS*~{~h;AgF=Hbw_%*l|C8>QR$@A~
z>l81>Z#KJWf_-Q2!2*JP0fzBZ`fR4ZA!o^8(XKN<);!AlgirjI`HZOEBG;)$*9{GK
zb|oN*1P$8A@U1Cyu2|4+?>?!+Fm$u$BiQWe1}&$VfA@E*Q|=EPbSaRU>-X9dRqjgj
z9CIx0TET+y;X$chR)h^dT0t=JWY9|^O$ZD0Pe4X|CU<viVopj{o-f0BU(u^$SLhN<
z4-cwaK&oK;$Bz#cb_?OGmk$nr=emk+CtL^qNv@M*89PENMNh3%Q#v<q1X(2%Q_4;8
z1yZvA8BIbVjn5l&g-~^XkjW;;;zRQ<0$PM4BU&RyppxXZ`y85;Zlge+$9<WLnor8;
zj%79&T*D=C*FAT5AxmJ)UXB#N$0F{q=$xlroNavLv6+FHT}%9fFpyMRsqcj#H|M3U
z&VOw!@r=|gvOJsUrbOiDq=7to83XwhNZG^X)4F>FD{Rf#(-^8-cw{s_9xBE*V}UiF
zO^u-O)>FKCAm4VnXluQBjAC%s{LHkr`puPtkKWbl$Dg@*h^0~Y0RBo5dPI{`rQ&r%
z_FhrrrHW-&#hwsgVgu^FBbjRQ2y;6aY>K)~OD+>VV%*6b>uSz94-)keM~=rQ9Naof
z!!{+uwoHb{mmFzRgB1f{(%l-`N?O$@sucojE1}f!cc}3=Us&lVF=zAQ6ByVuGCAx#
zabtdR!5b9{a{HTYIn55uYV@0KxFz@Ssn$U2$zJqSk!Y2E?t#K08T)L?jGp1y*j-fj
z5LSUiseaQMsB)gkRqu-)1OkpYS~K?{o=pBeB>pSD$)3_*lD9(SJyX3ituJPjDf9hR
z6uh8)!7<@rS_Om8L|yiB)+swq9%{03z~n6(-};reL{Sw@N$;LQH_yCdaokPw>cC^b
zY{ye6p}1H<?*|7yPL-~vjb|f;iaDOixfUdoMINizYi{}J(KB!iCV{}e`QGvh@Ovi#
zu_Z`CB7%u7GYrmy$%R95!+S2RNEkjKk};fvU{$HuwE#eH+j0bw*WnX>vLKE#FS2~N
z#`?*gZiG;jRX}qDR2zkiO|^2h5<i-2G;dyQs<KtU>5{p&D_u1M6-HY-*UK9=b|%%+
zZEBh%-s9V>7Z(?!0$gd35!Ypc-^VDFR4qH+ri<UEGhpy<;|nJndEDt%L;-$MR6QE$
zb1w^PYF_k)I+%?=0Q7-#pC%N2-~^oS>dyMucSg*%KdAl*tb&y-{Gey1!?;O+D?9ax
z{XBj3yWC0t$-%D)d#|5@6Hmm~myO!bmNDw5zi32)N*K1%Q5zwT#zWZz@T*o$Hi;hZ
z8*y$lH+$-+8R`viT6zLkxkpHYpdFX{^TAUpO&ri9LnOeYb55()>_fYh!Ca;>!It@V
z#B4}Yj+l@f%YM~_070$&rt|=8qprkTA}yEI3~5qq_1MeL*7Lc}xFBfKW|fgAStA;0
zVI6v3ub#qff-WNmEzKVw9&jnZNrAtum-A~-tfr2*(gChb!W2|vjDqfGu=0Sb52Sdd
zQ5tiX#?_S;=fbQ+?Q_NBFD%lqDv+u)wzvTw<IYLHNpEsgGE<5RlY^e*9is6PC5mhL
z)o`M%BuqvWSzsW2%<&xVCB3L$o`A3)(;0T&IN+6rUZXw2L)DQv0~EUb=v^d$%3;;#
z3Sl+|9_@o5iZM$5{tsCIq@14?vN5xEmpps`{`OgnLCE)E4~~*R+wL9ZB!hl11r5J?
z1>Sb}Fi4epom)sn{6W61<1>nbhNDecoqz&c3w6@8!N|y$bWR`+bXVrF91*m%ur4bD
zZ9MOufN*$qEGTnf$D-V}`pgc7`?H}-`_-{{p#zA%Yhpi)IIVUemJ&x4`;l^nMbmzd
zmqPzxbwptQ=Yh4~GUN^zf1?`uEM~N-vLn$XrEryhXKK|&c~8j6i3f!X#Dc2in9Kb1
zBc_x^9TuCLHq0m|b6}p?7#Ay_tB<~U6Vv|*mkNN~2@>9mXsoq&Dr)@(H3?V~V6<Qa
zs9CSy<=P6n^gl*=XGtDlX7TDCV%|ZdJAvupTWn=*jpy5-?TQ~O_cY41O%fsV4E1z#
ziOlp_-7sV;n&h!TuJ2K<TQ@A;YsS2P?a=w~0O{0i1XlC2&C0jO*n2lF8_y*<j@O4Z
zf3*S!-T37H;qE=7n(DSa?#F_aB1%yZ5Ro20dI#x96_65o3rLq<LU|~Pf;5pJUAlA#
z5PFd&5PA<)dJDbxccJH=d+s^+!#nO6@0WMr$nZmwy|ee)Yt1$1{Qv%MrkR{hk~#O{
zkgv$&e&m7JP=A006I-aJ7hUgDf3rXA&{J$BRH`Bp?(rB*tb3vE>(w|wBVgqno?`}x
zq~e97`Ct8iIp|hse^)9ON$^s#I{}rZkhrpC+Vp(AI+ZX!=9GM}LDFMY8F>wQ#`HGD
zvW{LfzO3*Ac{9LG+dj-7_dQz<7VHG`?k;O2dz&s!+X<Qt@d^O$vg!(wDnI0ubWO^*
zYu>reTYIHqBC#X)fv&ULeg-pBCF9{C*o|KI5)`Yr%cUH2t_95QF?8!yr5sjv?=QZ5
zIRB<9S!4m!Q@^65Maw(t7H?<GAET~Z+<9)vCOYuLL0_@R3K<B<;}Vlf=JoM`%&%G*
zSvy-6Gy<mvv7Vpk$o*JyR=hwlxEIT7DfzO<2)fTa#S?&m#{=zC+hXOe_u?VLr1tr1
zls>(p$s4*1e&vj;2p^5M#DWFf7~7=1j#Z)+9RADUBCBuw`5_1q;YF`Fz0N*z-dK8g
znP9oaePZ9aar|v%g<?VDd+0bX_gFfhywui{;-fR(z7y8ot1@=BxdynCYuYtGKu7<D
zRI-**F`!Wh?;DH7F307@vei)3Exbk;nR1rHwDyyQ0>6n@zR7^D_d>iRd>~mzMqX~H
z`byx#uuQSfRwUt{tW{oE?SuSAx^+zOw}6<gHob5+u=F6weNA;<+)RY1S@q=Aa%r;X
z88#zAL<gLHs6g#ow5|1lglEI56i`=y0?F)_+tV_cXtWd@!c^&=x9Rbtv;oZOJaL`l
zdVFv=Gjq=No&3J?N*#TpGS|@euc;xg6o(cBVF%y21q_etzyq(h-=(!aH$6?b(gzA{
z%U`pSfT&~HCswut?^97%7i(PS<me=;+LYnjw}lu>mMYEsPvI-EGWda<B(@~cV`p;~
zEFr#&HQMf?fDW*_3I{>sjceRrUDJQ<C#aG=Ywu<$dP}UJsT?-j8>wAMyNv9sc~KVS
zktOj!>RO_$XJzlU1@75~qWSShHFE@FLY<PE>s6!0CA#g)%_svR%f)dAm6F{x-+j=m
z3%cQ6u8mwSf=jy(eYSD&!}<nhltS1JLQhn)PFzBw&Hlb7VWRfRn&N(pq+KAqd?tpi
zphK}%e?Hm!!Caxt!i~o^t7H(L6?DZ!oKLp|X~cPE(S}j%=iY(!AqlopiA;%|GBJro
zaplX-$+9ud8<*nOBGH#rk67Syg3!5f?`+2(>nM=eaJ+vRS%9HuE3}C#ePAUlFf|aV
zPxMKJ&vb1d<ij&4N^~TZP~3NDzN*`QE_6M)cWZTTsOv}Ep#Hoe)2gT6>o>x^Kh$Uj
zM5*y8W8cJAOpktnWx`F5lJP5LK*I}xzQaQ|!Yd$`7Xu5+>T%?g1d8SuJ@xxfF1OZx
z-`cWS7dKDmc<LNCt}~uCC|YY!B9jUJh>YoC%F}PbvUkLKn)(ilvFt4I6imGuYS@oj
z+LyXl@C>N>H>P5l1AvluczK|cXJeIWp6MYFvh)W2Q94H|=(gQ85bYaFZp-)zjG(zb
zx{OZa9>Yx{rG??gsdNn*xkrST0T0k5rUC(;u2*9<2k(K>rM?UEc@nIa=4GdCDFS=h
z2Y<e>CqM&3L#5*`B%Mtz5nd5QjS$Z8FP7l$EBbxPv3D%j9uMgLTuyac1yTOaXPqgi
zO|Pyt(||hHpWpQDt9r4`=9)S{Y<&;5ljsR}WnE+~_5LFd1J7@Hwwhe@Mx}%vi*Rba
zuebl@kGvJj#pJWn-(k1pfS>C4tu0f_6cdzhP$xFTOx-|2O`V!@>(3|E4iXQ`??3f8
zZ%e5pCkT)DBj)DHN;AWN3*=h*ScQs<pSTJV7xhmZ!SNqOI9}K%v*>a&Yt)Jg7PN}0
zN#*-eI}!i>)*jQyB-jP;q94nF2r4;yoD_20;j-Xn|J^Nf8C$#t8-)-Xf6(?0l!~sF
zp6YwGK#6qk&#&ouHU#P{XwI3{n|1Fq0_u@}F2e7h_4}%8{r^J8e*=mt@VWPIFopMc
z{~KW8KM@Q68{^?WDG&d_Y5;VI|71h_zxdn@&_?#}XZoLC_3%HA_kaH!paAQs=_uDa
z9WhxQ-(}_bAFPnZ=UV%2NNnur@s~4;IT*8MaNai?UAI4Ukbk~jayPJ`E3y5Fwc_^>
zG{OI%XgtS7P(c4lIruLK$v@s=h#@q`co4;%fB({=q4{%Pv*$+dzx{mBR>z0d*jWN6
z5PPcK<5x-e>whpxE~y(>Szqf$Tr$46>ctnwfaVyqA?o?q%qqHo#Ot&z-sdngsU;6;
zpfk+JU-><yvSmsNPLMtuaph+$Fi<>|_%c3=Z9d~B^a4Q8I_B-|tudzD>CClSVD*RQ
zw7DoPIuaeyTDq{~n`pCrwLicqTr^*>Ad>D=sXG`<8T?&syRxpWkTGM`58oHu^Xc1*
zhghWxV5O&0<Y<^)s(;~YBQ$1Vc<m*x)2>g{(AKcQz}Z-Pi^Q<U^Jj*I);oZZnxrV!
ztsBR9(r>)^R5(A!XE%-YzcB`a^al=nH!-F*Fdaa{-Fe9Yo$zV(QN5U|+W7q&g3;?m
zW%_|N<Ojo&ySe;3r+P&m6Lh%PZ|e?tX~g@0o*q}5IzPyVp6V(%=}oBw_`IV!K^>m>
z^<0Z>MdVKU$998Gul5)-igP?6fQ>!0skumcqa>~uV1J*#u6Af<V-46)^iYFaw`uAS
z)vPo4rm2)gCFn;Y>f|%4i^^l!saAkqOcWQp6X1PP12a>#I(C+cOEt(K<jECq;e78M
zlksK<v;ynj;0fn)CLOyCE(-2>xb@odqOI>x;xCi#X-clQj=;@2&imBXpgy7};OTJ<
zd)sfe!weXEfbAf9Htb^#jWW6beiDF7yfF&@drZ&2`3|stH^h|J)gwEdC1fsuy<FXS
zic+Tw^upTRM4|I#!xn(Pbvl|tU5rZOPBfnl{|&nwd4=r3sSw}g6ZXEJF0&Dfq&X0=
zFjGLM#tAXRTrCs4QLdyDKKlL#n_VX0Xg=1ZswE>mB`M#pxB0bj3|#Bt;HRZFwFX|K
zZ<*8QoMq~G={PS@3PVkpA`NR(fE)NUn^`_liV>jyF?$<Gi7}IFkV<#7ozCKyUwlO^
zNQufjm!~YTcMkRw>{B{hohoR8pl!yBJyK^XTc4vidsu4p*c0-1Z1ulq5x4tA)|qy{
zife4BDU{{B3A9j81izy3p@|lazoHK+BVG2wPfnVDu>CAD&h(87W<`9wseDa8ft<)E
zgA-iH7^n-;3(mmedCkw)(Hi5JS<^5_VBH!yyLEkt$5$5^xl{B3+FL!Sj5GZ@zlz3h
z%RySVG}Kn@C4Pht)t!kv(K7~|MnHRAxcfIm?+jdlD$noipiq2yEh7UiVZ;5dB@g-1
zC`c>ok$WBLML9M*Mw{}L)ss2=lcq~Hea-pyrWlvu`b@^W*sA9p$j0T6muMs=4g0}N
z!I4kU#r893kla|T^VI9MG|XFc_c;;(+};CYyh^}a^#spwD!sCDF3wW@=%snk<)6to
za1!pvT?U>vV;;4ub1aL%>*nky;OMz6?%FL5tMho!|1jMa9r~~kXcKyF!=F&nnGMnD
ziMIR)GzW28lwmyOm0aJHsU%a8D@G+Gx7#2W*)chca4K3Iuo(sh2mq^$nU^>fF<7~d
z9#V2Xz<tc>P+eN<K6#FU<1rvutfDo9@!UPCg!)@14Meq{&0iF!QJ>PVW$pD4u1q_a
zKm<D`zs5rZEuX-3UCe{byJA=ApE!ynQT3SvPs7MQLz_#w!R6oVdVCctcXP(0;Dzn?
zVLG0dwiOhz{Pc#24sc~rI7t?RFW#T)-3!A^B_YF3wzRNkE2BR&H>w78JdSTXa6C#I
z_Bqu!@!~GD9{D<3ELidJrR?s0w?fuqwFY>VmEpw86PepX0ROzJFPpC8FK7)w-d}6j
z`Jpbm57O24Gn>uQ0Rs`NQI`lI2>ebZntL-<%2_wjIjWhtiya!?zG!bJJjFfTRfFpM
zndr9=kN0P-nr`bv)(KL+x^qcxEj#$2FP8dZYvcTWxTnW9;sJ!5rx_UbuGh2;LifX$
z)&Q^gd<}R@8c`A`dX|?g>68j}p#bvDuAoo2;kP(HaEd%K92OW!3)ZD1q^P33tZZx^
zmv|BmSQ~FxUAue*f0Qyl@PQUzY+$Eq=_x94W5(gSb=Pe~Y-f?Rv*8{8-_QAGnmGo{
z-!Z~z(mI>kmV&I;n|x!NmFtnyuhy3D-n!bxtyo)1FOgb?Wlo!pc4@0^EO^E*T=Z^i
z0r-F0#)aL_wF&iJXT22#i|e~Qr((vwWN(C2Uvh?KVDVJj599_ylS0^CfSRAydk6L9
zEKn(-(_NRengF2G!jc9V@$U@i+D`3}(=N+|(LY<ysCnEe;I(R7k;klRrz{As0Z*M$
zQq|Y$#d=^f7U{B)E(|c~mDM7^(k?EqIBj=*+63yP@8kly8y4pcN}UD8JsEIczZOo*
z36DpH;q!5`_*bF<cTJT>Wqod8C=>u0WjK^=m1IYe!u+#`jK@hsJiWL{EgyY4!r?Vu
zGkQIIyLP7~lMQEEfKKcp+dpqcUgms*-+uIc{s8c(T**mjgDb_0z;|3?6y^`QC^LQ7
z25z6%4fFE!vSTNs<uu=JoR<J=)a6(Hi8SVA1$Ddnw55^dR?4Rf*DF78ea4(HzeXsM
z>vmL$XIAhV(d*G!R%}nx{F~x_poGS$9oUSgu<O2ZYpfS@;nxL(xxRGIEiQQgYL$oV
zaB*6D;PxpVoE{y`WTZYwtI>Qd$_4U!G$}uf(`_-1PZDlC6lMS-&<Hm<$v3agHh1^&
z-pX5>kH2m8LC7zOsF8UhRQs{1AD%B8lXkkd3bMH*)XsVuMyzPXIeu%OQSazNQkEU!
z>#Zh3e>O-^T*~e5SSI$EM@h4e-(|>msBT)eOR_FHaJ-E@_sO;*@U925S9;Lom(#@g
zpIE01Ku>E96Sl^XSZUVPi3#9zO5$GJkmG{5sP_|)t9@n0z=@s$T)JY%+VTGPwVaYr
zF!<@<b>F7G|8&vw@Lqd!G7(+ruwDt_p-FEf7dQq4w?3}J)sj$ddMy3-Me-V3Dy`q4
z7=nW2CSVd`94q2#br=~&9r9O=E9A{02zXLX)(%wB@~X0pE#a|AeI^)QN@3B~^4V?^
zf}knYf<4*ye&cPEo>+c|iDb#YcQ2Offax2vTNo+YcEkM<wk@89!qX;r!!wIh<mBjO
zuk*N9g&;5_yEmj-olRP`5;LQ9A!E6#riJ_X)9tp<qbsl6bh;c5$(d?k24vsd1Un>D
zNe5NfiW-ZsfNIFK;r9w8%WK$gLtXfQ7oibm+S4Va7z@&WQ%4h26?@N!efUf=_?owY
z!RC%#e5{M49jBGf&!CN3aAN0G3;N!`FDft$=6<XIKjwn!JoxOIL)!LQA&?LdVbe>6
zJ%RXSbt1k{%}%C$Fe~5vss9A92ut_w5&U&&mxq%Jo`9g0*k<(1uF~lk%)Z2zr!MY<
zwh9Jp-~4L8fNZc8vg#6=-|)z6i&26SkN}r;F0X~8Jps?LE<Ha&@pI!JPcQb-8hP%C
za?s({1hTQC;h-Q|>RDjAjTsAa1|$4mwDCan4~8rm<u$;OI6g<Z3R*0!=mi5CCHUMe
zMm>(ow;nQkz;<paB@SRQC*%ztdC;G?*j)&^cVD?O8D)+^457dxr+q1n*N$UxBQgfs
zi4*{i;4NYDs37(>rTfcU?OTiYY4A0h<2rJ@L<ajlA(;a2@q*f7)A6?-{AUl!YCVlM
z`@ak=5=upG<Q<xI-e3%>d8<5|-T)kS+Xg#G({99fVZCgyRb_s&)+Kvv!j`i@A#Yx=
zQ8|$QLMQhA;YEJMDDK!*#iOQSKaViQ{OIKx&UB@{6|UH}<@D0Yut@Da0ZTJgW}7Gc
zX4zyl9#&Oq^oLW|fbbcFxj!z=8%2K>=uQyuoPK+v=tx22+$u&LGpAG_{FbU}`E@R|
zO{^1nIj)Cm7Q|GEn4oJRN&zX1HN^W%8@mO5ks);GNrPX81%8L-=N4nyT&Xhi#Y7)?
zT=#>00>5p(yb-PTZRw&l$DZT?0i8m>HzuL4h>_h<b{C-(E<75Z!4q4nJBZ$^2c|T;
zTKjbnt6y^5ps^@px8<4XKT!<<@|~e)9H8S33v2?!R9<^XXXsn~w)aG0f&UywM=;<`
zGzJuOfSHq{D%A$e#t-q)tOdClK2b*QSKF1nchi)@^pF`gyGw6(1>Fy7U&lO97IaY9
z@vP`vVjIPTPT=pmUKRLp+>)^gMK#Wwy(}>dxaHj%!@0o*xipM^v>T4dKkS+(Ia^m;
z%n2OEq*l6DftEkJi6Z%o=r_f$9>9Ts3^Bx0Gu5XhG-_%?Ow|Dv44`~>YrC_h9`3rG
zc#R|T;<PKz1Dsg~ebgLh-uJZEZ|i}A^r`T7@58*M7cVfY!Sl)LUmR<-G~%urH{0de
z4WVC7PwEYFzWc>;jCo+aRi&(^9c(%7A%>a){Qp7VdeoN=Tu@vdJ-ULfJsNqi`~7=A
zWZ&Bn>LRCK1{7>HKb7*ea<aGt6CUtQi*GK)FBFN59Wne^*~a@5LK|YX>mIE7>fvv%
zob8{6P2KPuUnhHh#>IGJ1o1#9WyGGk^_Uq1G92_LY-qAX=UtGJPtX{7z~%8;yEO+(
zd~-+4;A_=>J<Iy$Tm1J4G@kGQX+lODX(PuF-76Azu444Q3|~Cgl}IVmFta$IV#(%&
zJuAK`O~3bg&o83^$!O|aF6AmF3;InazXm|yo)+8JnK+F}fb82S6*uY$V2_%8f`MoJ
zS;gIL;E;P9c_9k-Iey$6m2uJ7ExHNclkBLD`QXjY&OT+=q@b+u(+NI4v0hXq9Ck)N
zHeoax5=TA$Dei`e$(v6_?1n{;?&WAbbGd&1R=~*h4^n@>xb=*Oy6D!Gt1Prps6K7l
zEV;X%-E4IeXXd;(loPVsnWBDG&cxm>lbv_iHeC@(s_yn;%Av7{nK(i263B?WJ$&N^
ziSuSpy9Qf~=b7kEWeR+nr?cNS?npD%I#F92ASJ&?5M6GW*EZEGe4=$Mx~4H{eLf?Z
z6GzO0wsk1=dA?3_wj=7r!^VJ4JRWAtb6ANfTbI*(ZS7{)p_P!(Q(C-k-j39y%Nwp!
zu#9|u%We*Ga_MaBp5H*_C4?!7JoMUZWj_n1;GJd@fSC>`|H#Gc?1stW!H%ir0%6@T
zbqs0Ogx#zu$uZlA4`P|0cQ{&cPey0j>8Qw`WGRYes#i1jjj&s-<b4kN8ck&r@(3*g
zo#`DvS`DUf<kX{SM$QjfC_s7k?y-{#f3F)~>+7D;T%*r>^gD5J13k1=BS3X`abVKG
zRFyEa(;==Xhkx5z!zBi{g2{6MHNQD6Clz+ytorRu=~s8%BI}$ZOO5L>dIR$}g=cQW
zDcwAJ_`)cvTv)y!bkp=|VpW0E_~+5*Z(yHihw&Z}+&)Q?iK6b+5ujzqOuZO^AKMLk
zWRVV*AB(R{muw~HBs$ZN@+4UBDpoOi_Bf8G3>mvY#`1^Uu7C|Ej`Y(51~8CF(Imp=
z=PA22CkK>5)f^UQBU=yV+O{*EyzE2@j_ctLoNw>(^4iD?!>5fcpzc5BnbDdBCVbWn
zY08bZh?&o0+s=wdo-IRb7B}&!(r3HAa?4D<P>KP9XDUs>xwF%Ce^FLB-6G!A&7px^
zy9Ji;M`}8mG9i-JHV+Ql#`}=)cf7Xi3f=c~M!LUh?M*-A<#4`#)K{y6`s|&U7{Tvj
zpVGnG9nTi7Uv*|oMYqu=)QYOm(6wwOPB_-wGH?Whr$YO?G2Bl|t1lM4qsN&{s?I!H
zATAzG!I3=H9xk&k>B>p`I<*4*pA3&$aI(Mk_`f(~aqrhS(kkICDo4HP7m--25HzW)
zyI1_w-2iw^vP+9<rI9-wt>CR_n|ICoY!UmA@YqfeTAJV5VExcdDqpLFsZNLuO?={U
z8%@!+i;k?DduMU(Y^g2XaxRfGlu;PCbYjV3_0;`Z|D$%9ctIcg(L}G9KxCvUPutPn
zZg{)h-#|I1kF)K&gmE7-sbkA!8$Lc<nr)*S49B|3H)W_D)fNmxZoJ$ma2Y-4{qj__
zBEL1vOv5{BdNh7aY5Es0TrYPCCAv-|PaoH()oaI+r(>TRB7OI6v9@<zhJI*q^UNqw
zb62;+(OH{DW1(dqs-<2u!ZAn~_^_GFBnj1~jCk2*SnXg!@iIr>n7-luE0`UPxCu8I
z7NCE|d;0TfARpaJ5eyyg!tQ|dF~8J~8j8E!LJ%|DG3!Rg|Fw%w-|5>s+wp7@n^~R#
zodn8%#BX_=RxFzq?o+UXsG!6h*Gf$)I}=|LoZEO5@jS1-{?IJb(PT6KD(w)Ha#3C3
zYkXUP0VjY6x79br;_=ALa`eta@8TvgJlQI3&qArm!S32T_6haVLhF7;D<YxpiDB_x
zns+Z9*o7;?KYab34^;E_p<0`E=(g4<WhaD|9p|L3rDM^_J4w6l$>sazCr9QV`tZ0Z
z?6H+Sy_17f#esT}u(1&`HZpYR%`c}8NbEt&CmV-S&VllSUq+}Hiy9nm^kkg#S0mV?
z%0X_fVyD+RK@Tiloj?GYI?-O`p#|+^SOL!lFwbC){M;<8ki=h=o)8vE;f#lk{EIuQ
za`Xnp>SW_j>o`_BHuPWV8WdU58NtRiPc0hhG|=UZ6V2OMV0Mnnqo7-(L2|zTB&?sL
z<?44nXes=%Wq4qIqB|aKzL?~=f}4Y{kom**F?SXny4HIKaq9KXSzay3BfUIejmc<>
z14Uv`R<N;I6bWk8D$Ss0sC6nuOYe)O_m;;<X_`dk-3*A1w}7Q3`ADjzoW=5$qlue7
zrnDR@ak{z7bEL8A6Jg)HH_KHQ798?c(3*D7-zyQwe}}+3Mz&@szc0_7$a;OUw{%aI
z*O|P}zWTb%vO0O_!!36*4OS{L6$UK(0<7nu|BNi^5nc_Kg|!$zTb|ppH$j}|u~h7l
zRbEPOCY9+;7{&pV<$@C+%l-{8GE_4GTB*afRQvvlN@SRg0?i|mb+zxp&0oubNh#W<
zj~GhFmp~oDHAhohT7v(Nc@v)vaUyD<8KnWAw<N&&vp3^<irdH}oqENdYjt-!Ot=j^
za0x|OEEAwesMd7pmNVWJn`14_Xw{a+M|h546A-)lI$iy7BsR%QhbEDQLi7Cw5e6At
zskd4xpyM1vXh~&{_SYOoC4HK5*uO!c-TTTQ<B{$9I{>Q$EAi8a%!k`c++~%fcM`HK
zN)HH4F+8Z2;1(ne1YvU*j|$VYNoWMz(-(c9v_Toxlayb6WI=hDrH$UvFf&;-b#f5E
zWc2msT&YeYlI#B#6rO-sZFkk&1kYcQ!am%jMLSBwuzWwbV4)B%H1YW}y+i>M{jL=B
z7&B@IEKkze5zzI*lyHxk_Gk9!gyl!uJQ!(?6U=Umug_??bD$DBKvD(naRQ~i#~i!7
zzReNOLi!;bic-&-`K$vI^M#y+=WV@lCYI6+cGg1O>X|xPyBV9#-@q#JfEtZrs+qCe
zFl}qtjzY?R6>&rj?z9G3fAvo3VV9rGyxFtzA=mGo-rX_PPULEw?u;)9tv1PkS#*nt
zD`pSz0h)QgpCor7UfP&UuxKO#CO|$qRGxe1EG3?nx?d|t!0TPhGD3r&h6jmVSrBoy
zd0^i`xA-LN7J9#+!F2xOrA1G!LEBYZ_a0dqRUR{j9Bww6+4be<Zjd|yvGxr#&t78i
z`$0B*ttJObgSxL@<m^AR{S8oNS5Cmp<~>-1^4ney|6DpBuu68fgK37p9}=*wO?3^U
z6ilqaQ2Bs{;n=RCQYyaCS|*s<<5XzSfza8-b!7M!!sm%k&hs<M&0JW(il0lur>TpY
z+C-dv#RP-}FE8a@;m6NG>x5q>Ra?nM4n;}$xmMGknU%HtG8#6*?4xdIq0S)i63E3H
z8Z?6Q@T%?F+u$cJB|*1{PW;9B!q`R@+FzHcdW9FgGq_tGCPGrMI(Zg&922GEk`~y6
zylXd(8*dXO!F}PiVo>+`+26%-I2wO1V{U6|;Dol;3OD6OOz7zsi7I^E&3ZcfIlT=%
zY#W4gHds%kp+WvxfAQIfxC-=k>=%~o6#!7w@A?jdz+GFsn<tw>E@u?1L7dJgM%8yk
zYG<V6FSQ1=Va{NFWp#}&t9^R;Gc2#_GvLt}XJnT1shx^g^6_aqn|_)0jeffo`I*VN
z<*Pq3HJm+0;{BDvR!l_XKd`da<aJ-J{JvEZE~Tza_|HV*=x+aVsirj^${LXr=U3(t
zPhwqD4K(&d_!E9?A7pwsuj_+UbZlRnIxA%w1!cY2Lk4K+d!~?U7_O0#Vl2g?;D9*;
z<r%O1<DmH5{d{kB!o(=LFB{e?ID^R)tchem1P$`5b@h<33s;SwM}4{_P1X|u<71`z
zcREf{SKH&#PT%B=+L9}ks`DI)*K}0jqYdmU@NVC8n67G~$qQ0YH$zF@)N}AeVtJH(
zer1Hm3A{%01g&wp8U!0(9ry8G>|uPqjR|dGNcbcg59j_tSpHT@;BJDtp?nS*ABdkc
zvg4@tz(iqE>hh)~y$e)oP-Q^UspXOeISIKqW!r0cYI$ThE|ZMJZXohLRp-CcSPOnH
zEwN@7!dl`CA8ml4&&<-Porb&zoK)M*q^y!e;xfB32JAb?j<D~7kE=gda|%n0Pxkga
zv+E!4W2MVK&hZVNIEgN(vxqXFVv<tSE!7z3SX%LU`ZuELiU}sjPTWDQP@=e<T1I(3
zTRFG15imZ2iM1y^Pimfjv+2;{(W^B!@!)9=VIv}961kRUJxMYLFmy$CIFt1mCn)R*
z0z((Rmu>7ivB~L9`*ioDw%2Md=bk-m`C09Lw>G#%=c!pj(DZQq%7{x03;9DQy}kFL
zBHZ|9TtiNBCiPYhxF(c$z=x2{rFZi1&H0>a?5;z3Y`*FHE`Dd9ZE?yjSQ`9^=k;-r
zh0yWGn->qAvbRqmpo9uaYNy+U){1N$Gd<5&gQhq3G7NjgUm1A!>_k>@$1ZZ(O4R7~
zHLY+kK72)`oy)mzc{Q_W2AU-=j#j&tX>0dM8DI~5Dt@_te<{XzGVEjmy2F~Et#q;R
zc0@9J_B=?Bylsf7!k?-UND^S0^c>opHgXlq6tEFxsEG<bS3wsD_R@t)u4tbisBEHm
zi?w}3%pha?Lw|uRYUmdjTAhuEvtP0JXaFL(IPeICpg5CEa3o7qju&C3Tmm;L0^2E#
zNQgxw8)CXz%x=)C@z`mm>R{NdKtWI=xCfJ+FJ2F+iB)O+dwCJU3_VSXzEdzNrP8cj
z-*4W9?@<GSJmSB!O)&!tD=GEZR2=lY`5x84a+$Xek5@)4j7=9QKK?6V%DbM!Z#EE?
zQ(>7`EOzA>dSw?*z~twpx=vb`kgFYce<g}l7d8I2SX=O^1ur=iHA21EW$-wpOtM2@
zFr)v*Im7VdPd!A(%q`C{NJxXeL}p2m$xmmHeMI)^N!74{+<%AT(OIlVLNIag{g$t=
z{<kVMy!LmP);gUgp7p|7V(RE^MY?N^1~qHj-@X&5xc^^sFARfE%4Ux`G?X_nHwegd
zMK+~sam2dYDCMZjwva>)bo&|xbXh34j=argaohj+s#`HsT!scsveDYa65<f#+EYL_
zBUB;F%CywBRFz*Erg)ue0`km5UZrw`$SGUHs<H4+;2l;fas)-lf8CNe4R#V1L<hb<
zj1!-@o?(ZSK2ap@=a6}D)AFMj>h$r^E~KzNl^(X{grI;ZdT!pJy^Ftwe&-2um|-jq
z8)6dwaOY7m{$r7Bs5y^WNXLq=E&~IurTvM&OemDD>d|n}0OP&KH>8MzpL_0Z&3&V<
zGnys2_IG|(sd(T6dS&$_)2+O!Aia-<quCGdI)d=s645yV`$ecEhk5<VNx0!=lQe=Q
zI@~P7N4?NmgI07v<fyY6Cs{vBi@Vh+TdoAkGa<Mlnhu)>OD%}sM4h+-C%qZt%03R$
z7F+)bpl$|@3zTLyqKuA>GKNZvORYwF7@m>AF<KlaVgO<EbC}90iW*bAUoIU4yHJ+%
z_pqa)<9`%~Z<%wIZkQPtt-73>-?&ik_dCsRh{=G&rQ?4{8Z29M*3MH(ULMLnk2mg)
zuF}hW9*ZqFsPxm%SVm692CSQvMwd$T6iPzAKr&^TIMKE{yJ`b+)BPAhy}*JBH8!VQ
z!CutT-^sS`8AV8TBIbcjvaX6?K;<o?5&BdMgoMqY2?&IY?}$2I+f$Gv`LWWG_lXi6
zDs6S?{3Fwj^j9jHsuX6qk5CkGrt2nByRl#4bYz)Bd$?QUF(J(k<7=o{F2=6%+S!aE
z1dRGJgREW`V{e8rH%qFR9cMy|7w6{<Rsi}@iH0YngXweNO5RZS>%gkubdwWhoxo5F
z)z`{pY@Z{2G?vTfP{im&P9K%<NC>lLA(o)UD@|0r!EWWgC1MSZI$a=Zp6?OMS`}C!
zlSaT+J(*Ptv1wlvBgXr`QBj))+7~}H$57}^-o<&x9659W_M<Dh(H+P&kIS8wUilbB
z%~Sg|y)z>P4@ESuLarkjbJIsIM2hfU{zLH)CbU`BPdKY(X_{6vO$$Wu&FV)rna0A0
zS;b-vHh~(9<o1vMR0qN81s8Yl@8UIasCYD%BAPpM)6gB$Vo$yjX5b3<BqS6lE4bM9
zPsBOVBP#kz*;?`hc^=d+Vj^WNz2so$EOj5zx=gs$f*h;6u-;UEFJD|A%qU_OTscgJ
z{zUZf?k9%!gfRyW0W)sp1@nrA!!ByLqSETP7mIgX%SBLVX1_{m6Ebz+_x2`Ua;y~z
zHoXKOR7HF5BShgM44&?bWmIVyu<x2GYHnSpQZxC+^++ATafmX%5Mu4bTkoeq?Rmzr
ztHDw8D%juWIBSRQnDn&H)ZjOQ-Hv(;y5-#?=N0=vNfpH%RSAxq2xIWvle<hK=LIzN
zbUg%teOyf5eMUIQ3WOzfP^5z>!2I^0NlR$h9Ai%m?>&CBw-%IzBpW{tHU`2-vCPWV
zO)0xGTU5%i@6){UaB*`fDQr0mV=a1er<B#@tnCnnF@CrD971y62<NetP6?ezU6j_%
zKY;=+<fKZ1g>XIOsQ~-@&>hR}(b+y|A^YLs_iUN-1sm<gQC39F*hBe%X%Z8pjcySZ
zshu=P>KDGrj;=OKPSrAO%65AfLjS-MRa0<bu=qN7eqgNXSSDZ+DK6}^YSN9I&E&2}
za)&QnoC|27LLhNi%Z(19FTyUT*SW78fsMLNLgI5WNr<YEN8&yb3nuS5p_xJ`PX&4m
zzTY5K<mpS?3$|DeX=MDL<Uu677nD%k@N+H=FK#9X2FhDO_rbN(DDJtgL)aSxi?p&N
zS4ClO9aB8DAJhh_^Q5Z+9wpHIEKYZ0oA_H$l%CzkH?G+&N)k(ErAzK^W?AjA{P@;w
zVhA6iGDsY4vYpUGhGWqT$0`^;c^Ym6{;&<!C0vW!Jycrzs((6hAc6ta7I#uwa<d5J
zO1SA|vnKilU-+zIy5_T+P(@fjQUr{O!6A4{Kj6^KHUmwh#o19aW_%;LhCbD$@3sWb
zZp3Q#I-!jRGs#K}GLPMZpo$nBnltpl3c->xw<+f-*@|p_N<W<p{Kmh@_-H{BiY|Ic
zix;89Lx&)2%A=rG{w6zFq7J!Au8x?PUjMw@_qAwtk>xN{`xn^Ans<>BO_oD7&U;jb
zpA5ZtRfzpNPInE%pSj4U#Fdx2_7ihJDMA?`O=9(_C-H7je&AeCJDI%G;JC3zHf>pZ
z%4-wTq4<DT-AT5JU$jsog#y8<A`%yice$YZ7dP&lHPe<Y+b8nPJ2LZR1HpMWx3qXo
zrU1pKqtr0^oA|tY1qRYluwsr?-%1A1+B2C@l%!8Ydgo5TRJHSkQF?0fOCfd~G-`{5
za8Ri^JRNPL^Nz2K?QwP0Y;|&rteW}7cSFo4LFK-?e$D9?V5*ssOWYrNm|QbIxpJp%
zM&=d|+o4(M&^>Jhr7QoaCvdM>ua4>U@WXUcEhua*lJ@#6$=`yNpnK)bVzleejFwiE
zBSo?_oi*_)A8-%1kFNjxoaiW56eE4Wo;jlSYSOE!MQ39C;MiE^m1oD$Oup6G^lC%;
ziLjWw_?S0`WpM*vQYH`6sij|Xrb-&c+i3~%p?p%(Bq|eB09;MRpuu|>o)hmRNoG9K
zg`Caio=JeoXyuPeBPbSq%%s`SW~JPyj0`lU)<{8VD$ZGJ+&?v$5m?fDZFp~KZG=3^
zVc@88*7N{Mal*-Kfnh-hqZ>!T4`k9Jnt{fAU!b%ZaHG^_LF!~J<@;0H)RX(u{9r~B
zO=6eFDhbGBnzKAZu*9ZRfVF|ephjsS%o)!pB__fcW4-n>aq|349lY+)GBiZ(#Q;PH
z`|x~wJcvnRSN44qa?MMAWHPH3vl>(=KK?N-QJ7TltX6%tRJ_O_!y+N^tCDzVKnn<X
zg0WFEDjEp(H>#em5H;(P;bB+q?pIlxVrE9ewwvG2eP(J5;q&aw;}jw(p!lzRLt`n6
z*VvALl#;pKLe?QgLbU-CgE=YM%u19*<O9)2^KJBb4SSgPc%_FF;Y0SD;=W<c1h{eC
z=Y=E((c->@IZvLG(WkzBc>7ldD!qCSWUo|8l+6$R%Bi}qN-$uAu^%Mc>H<Dhy@cl;
z0nlkf4A@Ih-3ZjDVy@4Inu&4g+}Ws~PVF_p7}JJRU5wS`kP7IajGadyI=P(nw>Ca-
zZTHRRG~dni8tscApb}(E9I3{cdelyot7}3E!W(><t{EFs%oK~xBc>A*13qzM%*?aD
zBGOl?@67-n>eZeIwzp&hVEqf0dELSDAs!a2d+2XZl|}lumtDt5Aruv2ce_e}SpLVi
z2!FvZ>AoX9eqzdm8<zOjnqH|Ua*=jJ1dZx^8`wn2(uNYtd6^L`3vWKC3o4vVt*(OO
z_Pg)|OR%|KzbidhO7{J1VC~0EA#3%2PCoak7&r#rny6sR1<8Ck%33zUK1*n6$Fpoe
zNTmydVZ&vQj6V|p9DQmX4#xY_AD-MllJU!$%C&vN%Hl1|VbWT@5yh^RelxGDl<4*$
z@Pp<qs?OZqINNxO8<hg@jEzWqC<(~rpNL#LBVYM}ob`hRsuT&_N3hVre!3T7Nk73(
z7PCPmAyrn(21FRdaJ*yYoMD@IZulhWT)~2Ft%pQX=|`XvpACB?DB^%v6V=(eN*<?U
zJk@H>ru#bg-NQtX<$GEf$8Lpx_O^YIbN2^B>USKeVU}wV>Q>DxdU+J~4M=F-CP<?D
zb7@P^$a~?1!6LH=o6Z7iz9ygR6-LAQ->nv~Sq2B^lLX5sfT^&?%PR0>mH+m+Cf=D3
zLMzV@lh4zbr_%k*aP1x?8a2;iq?wtrgiy59iG0xDM{lh9URO4NShZU3f$6r4R85#-
z0l5_9q=iO=eW%<xtEvgBfhuA|lQ7qR(jk5JhU9@Xn2B=Vx+@jYfBqRmo9F6sGfuoD
zmGB><9o1{ilvqy0c~U$!(|h)Jf+tc@Pr8E@p?KalzPOApdV->B82WG%(V4N7)&C@(
z!Yh_GoBWf`Q0e|h9BFT^e$REoFPFFCq{BvnpUm>&o4Gh))v+c|yrs#_voNX9O-cX`
zCf7nKGjQIQP9~_*ayh+-c|;5u!;DmOFuKF~JnG2xvNgl_#6+rNPK<#xJjU@TD5QWm
zI*6P~#6>l!bUE{Ygh)>__iSW-ZK8yQyGNusz07NroA#<C1QCK=-wql-s$n-7%)%T{
zX?P3M|JVp<M(f&8aPY-FUshuuj${2vP!6qPL?oLKMNP={f<-{0oxf8UF7oyq(3w9{
zqRkA9^+B|g?=qOgD?r7K&S1uK`uL@DjJPUAiD9z8kd$+v?(RO)`n~@=YF@2KXkvi)
zTG<}R;w9@_lof;#f7KW`bK_~V*U6sQC4$5y!n_cjEAKfGHfWuv`w5m4w<(hn>iY9`
zf^%J{k0R`ujHeqZrG`+-(BXz%u9+BEBy>+8NKQUmVN+Nt#$m~#9Vo*|2;b)H`7PWm
zD2Fn3+=9B8mr-Y*5AzSM?8c9APu_0B^Y%fOMo3G})Pd~&a?_S5wtX5Fa_x6m1bpij
zB3T8;kJaC!H{=i0jXHu%-n(ts@9bE7fU}ZmXv9}3uX>IPpNYmov)=#WL0WGaIPXid
zJoun67c%P$EB<I@>DiIJnYFbwQmRyhI*hJLy0C5Vj_!g8kSn)1U|lj2TAsv`(A%nh
zVLn%ju}^l39xF6d?&+p1sX2@ZfM{y)!vhK2oy;DAx%x5|g`h*9amRVP?(B2bNf=`Y
z7yQ9FBCVwzh=czwN^59SyC9Q}E1c74Cj02b$6gkTGF8y%9F-i}$!+-{WwRa}9rW<6
zDOh9_1Zbu3e5brNW%?`Y*=^@Q70HmVd~Ddf5(Y|1y0xFl<jgR++lQ06jUYi9lb8&B
zTAhIs<D`iqQ^e-aVdMKX$fw}1sBQUe8w>zq$V(MA*PYS5>l9bF#Yq4|ziWPkHZ$EZ
zUFXkvVAAZa+RxDdr&*rD8H4Wsp!qox^e*TVe8?9QfU8KKuS>ITiaoroF-0kdUT^Ei
z=YsM$Yq}8S95lA%32ONmuG#&*{n=yY-?7sN%YCfQJO{Cl6QPh<mC;Xl4jRzz+b~*E
zMh=sl-6m1A8L{To$a}^4<&3v#-<ApPi3fhj1ahgDW4P|B<VrDR`X=U7R*S7ro+BSs
zGOYpDDZ)AnEEDT<DGBZtWN?mKU*+JbhPe(Exe9~UzHg(<nUB>ZNcN%>4E-(}bX6`r
zGjCXDo^N)XR|mCK;A>KypsSweG*6@+zt_XenNWvVyfLLgv-0L!%Ko?^MJjMTruxOz
za#SJ6-qs#y3ZBtRL_{s$S-FEyEPEl;melR)2C=2uyXWFRaHyrgb>4YDP|GlF+|PN`
zn`6MIR@Q2tUb=^0vQ<mUgY^K<Oyi075M{Lbb$R7`t1V6vie*GVCJqlu^0PL=^jd|G
zM#5yi#tLhP9&!{~w^+7;Ir$5xyF9wRS;2g}Yxg<kXA@&m@X66u-PuX+g9==fJ|nA9
z;8<)d<$WvpQA0z4x|3gFVcEFF`~sELZ~{t%Z>p||>3Bfh2XcjYA$3*~m8rS=%ubP+
zo+2h`WEDf0`XQIpb$TC8J};gymD#A5s~8>v<{Z4j!_=^5!NK`8*x~t1`qLaC=+M>7
zt~sdpCZ9n)kAAHOMd@>S(J3TNf}WZFdHQ!G_9g&*G%Y=<bG@LR{RB#WUs*r5RpRCN
zi;37D=eAj&sa0S(mW3LdL#fAc;9!Ih7kv)9P*i_=bVujr_E60U);@LW&W15qI3V0{
z$19~XsxBHJ-i7XvOjYJ|Ba>*^J|#UlKjz&bDI^egngVg~my>HI7!*jtPGy;5R}U`I
zxW=8oHYKDFP8zWOdVvrhJm!hqu*nU7>h57lgBPPkcS|b9x;U44{g#C_7K*aiy2pI6
zRw8G4hZ}9?NO{H=*NK~MqZReAN{a_i4HF<!xuR-u{Ct8@x=&Fat}JV7NMEt#M9$3P
zu;3Ei+B66`5f`I|t1j)~^Ig5n)xPGIe)th?Wsy+q|I;KCQOn)}JDb#L_MI5_di<)-
zz_g#Bd!p8Sux$SGtqgJy{CTzD;9j#LN0FQ7sf4#7o^1_dKHNZ?J=j+8XLhc!woj1u
z!FD3AEZHhyh8O~+!Nz`T5B(!K=@qj#dNT58RI7gh^I1rEnyvQ!{hCg;RWoy0LhHy~
z-JZcVbc!~u&Y{G5XT_S61hn{XSQsvvq&Uq4fCrWUcpylNhaZ%CdA`HvNec=Tw0(YU
z_I8fB(%Ovdf`W>*KiK!0$wc#3n;A7nU%T!OHWKqW!(N<rzF$N0T1hpEQQGGIxM54;
zOAd%UEf$S9ymll^XzpezoP)r2B1$Qf-D+RxDCptLCwrPWV~<KpfwgyNgmS!4lnX0W
zmw}MvGq2oa(<fc+8a+yLg0z}mx2=W1EY#w)TU7n<7uX}UEh=XU``FKn9|bRK&fUoL
zff)|CAXt28ZqNDCL-eK3f+i$~T7d;T#(Q_m6ve!9N?x`;l2GJh?jb$X&h3<L?Z3=v
zF0-xL_j|SC|0uFqoAPt93dWqZyi_-jx3qls#25n!|Ld``Rtc9qtdG>7Ga~6K|D_CE
z#G6CY+n{$UYmZUqJNn}e<p5+1QP%XqiD~;d(k7#IFZ%9dqF7LF^FpOYw8(1=jw_9q
zK$IoxSnZVA=NGd=`qjv#>d7`oN*DMEx4OZ^x+cp^DuRX5cI<P*FbNayOFgc#uLizU
zvJ3*V$s<WrH0<OP`sPRUmEHn1pKn)+Jw0|G?B_jw9*z(sNLVa)-s9p*rwHOMJ-YyE
zp<Qca<`Znz?Mo?zkQ@}Hdscs;={>uQnwQaurm&?bOV&R>VIF?rSaH&<E+Bcja#5w6
z`~*jQTS3Hm&W!Cc<%NzQNSOZ0y+@?p7uBv-l^e_Jfao-q<sZ`vgrS`mPZ=k{&S2>x
z&imIeWR=>{NAy_pG^mE2W-99`?5ho14RQbXYv<h?j~x$6O?6ksoiZkz+_pRQHA|>K
zfHS7WBmX6o$$+Hd=*`P^N-4<L#5}Ab-16dZ>Rj*AkbcRdsN*T|TTF?e?W-Y|Uz;ik
zXLY=0SODZ2uoBHzkQ=fChV;qU2%EXYN$(u2p&Gzo3^Oyii!o?O@`1W>zX^*@k@h$i
z#EBVk2_3@b&by$m#!Yr$vW*FnbJqJaQgED(O5DaA<3t6$S{rp)=*#`&AK#^H)8!C2
zcn&JRxNx8c-|$<5#CfhL=*xEZ#_Zq_)&{t)P3HKN-;NaFw$bNCukY{CLbS7seMS|q
z;T)IIC*g_G{K5HCS2y&h_=-Fx*}j=&b9u?^vp8D(9M3?NAIP(#W{pzGRw`QF9(#*o
z;NHx|J$6T*t;4biG_Qt#N*}x~9OAIbpJvTX`3@u-t7}J+%`nAj-RZjr_-`-WYQ3{S
zcnCU`zn3Mf7G{4n3MzJf%A4~=2M*mYzWt3`KZoEbgC~L6>@J!$hua9_z;YLaXlwK_
zFadN%XVVK-1~g*$8GX)!pf%w~{Om$?)q+?hN~W4MEag3#mlSoSC0(<tVf&5v2pf8|
z*#~|(K0zKC_ZTP&I6FfuvILknRW#0@Z@0K>LGxO*aOI-8pkwI`IhJqEyX-{2JM&!T
z%AlwXOl9b!*jFRj(l%J~7-B}0_1s6bC6~gf8pn+*=%iA)`*v$@i%&IjXoWBLtaRvo
z^LK2zDBZ<Vklg4ZGL`X%onUAw*q12M4A`pe)jE-0Q^SR3&AhonUJKSzAr@X%lkeUX
zTKhb$!?#F3H`Bx!t3H(%Fz7-Q=$or+=yxK0WW^>TD0lZ&qBV-Gt0wOkZM^n<>F$t`
z*Kl!^Ai*kNMD`f1E~#*a36+-0`q|rn^f{c->6N&$O0SbN&lZ`P$zv-tL1!kuTxgvj
zX-7tuP}5(^UpC=_SUU*ap@>bOe#0(l`Jn%0!FvYL6X+KzP$fyKgkE`iDS7gKq{S1=
zFpv~~K$`WpLr6{-OB2O_K?Zl3`>``?KMBYi*779iV!OBmR3ZKM`Oz7_5X~KR(3xAM
zEv*Ekl)2&*6GV5yK;&o2Giw7j&Iz@q!)>0X5LTICTWw__k6lz&aT3c}%4U2Gi^^4?
z4Nx(~u>aMWN@@xw34$)9tj6FK37qJHCDJd?K|0XriW-8VUV+oBvuH--0iBn};mAwo
z@dxj#s%z+#lA`FVZ}tI0ZaK}zO1f^ZevGaQdv-86-TcN`8t0SDW3Oe^j68FeN3a^O
z4Ab6<-^{Sd0%^P_^<1bB-Kn|DvicxDn6~%i>_0BEAuVr2=j#r$Eqp7d_^G_metY=Q
z2?2Dn_9pS&=-fg%xrDM`g3L2mUT&~KuWCz|(_mq(U?KI~9QORSK3C@tn<oG|c%S>i
z!nbBJ*<4}_Jh^|a@VqlmsQPx~i37QBi39Sod1L*GicL&;!QCn@T^8h2SA1eG@+aU>
zXSc0nv~bQbnqz+Fk(fFCVbaz9;1ntnqO;9IPnNfq&7*M<b(e8~w=B!SUcaHg`d?f)
z(O}CUF}h<D=-QHRmcvA=R>s@TsUOn}!vN;6QnAA%cT00<`|4|keaGZ#Zk#0^&oB2g
zeEQrZisnJyD7Oz*KahqurTG^T6t(<~Ic+GCIiN>&Y(?;=j{NF2+R4%8%`*uTd9@V9
z)YPDhv$-ew1&nBKo&@79j%L5dm-F-EGLpvR%RtrMk?pLa<XB$Os0G=W$3n@X?Ygf-
zdIlqq3;LOtLqJyXvCbiztM#5vu5|{TlW@&7dU>IZJO^!RxMg34(qMCt)z>&_MKRtd
zq#{eVx%f)ozJrbi;G^lNDp%N9!o@{9YW5^*qsw<c;G^}ebTfrBM^Z7-*8GpQBCqMW
z^;8w04lSskdB9IS!o@nPnB#-UFep(h2xtp+W^qh0A||v}aQmI_H!!KgdXtlV$Zhbv
z1%@REIn!-)RGfm8RB1_7s%sOSrXU6T0rn`eV$lIu09NYjs*M?LP{-<wf*m}Sa0L9=
zdNQ4P*eU_f!3O3f`aPGa-1FVOG`;7{E~bH;mjW+jYrK`qHj}PKRabmbVa*e?lN~4R
z&osPZo9gYE`)>8!fzNq`yu7L!1fU?Lc><TUZ(D0wKmhoaZXQKC5R?<V%2BNg*~}Ff
z*BcI!&*JRCFLqQiU|>j7nz<OiPvH8)Wtg`@&TcAI=Cduc@ZDW4_e!r`!N<;S9-GTz
zf*wq~n>`rs>4C4LY{W+f+yg2!m^v1_j}Kj$>>Xy-{gi?b=g88ny5Zrvx>0@$omsy#
z*5l;r+*h}9t267Whg=t2hHKI5Uhiy=!;sokI@dO7i?jkI>3gec^VsUD;XV;@3d#JX
zae|hN&oqwqh(l^mk?SBKN1*TSva#gTo=)wI-P(&DK2nNy>GfW6kjtr=*1KC%1eyYM
z*Ai}>8iEPttLN~vp!!O3-N5c*)YUxDGL{q9czY~X;DmsvV$r-J!`kX`aYo|##Ykz_
za#qL`g(bgz|ARIGZ<nVZy3Ri{vEfMFtPKlga0z*K#9K{tFX$cRfX;gf;C>!><hNHF
zN!z`yH$;2@26zTK`)5Z)5^m}3wSZCcCivav_?PtBb+T6H&)Z%KyN|y=w%e}+ost9_
zy>2gsEVW#|yyY1)#|4xCu#GZ$7+OS;FB0_W8oofpzJ5X&v8EV#!{wmIt&=5DdjlSI
z(7A%TDJ&yif@aQcQm4K0M-uC;vbMh$taj_dMH?1^<`_;b%}F9=e?46A=Ud;)Bup8c
zRo`pRxsA_t3y4RF5jH`^611Zn&C(Wxm&bi?U>!F0imjlqDMQ`m<VGKx%lR2Zf*%dC
zUtdUT1Am{}dzmc8k_W>a)XJmpU%EZlav9J<`Mt55Oq3R7EBMYaKb&!E%&y<yQm_eT
zbR%7r4Nkqs%X#U}4?dHh!@bVB7X=lfYjK^46@MSmh!3zXI?uX`bLPX@Sn95YTm#j<
zXqe74_Em_}A33T4Nar~)BjkAZTKa9?@c#bTG-)HaJrT1tV2c<~rptp1jO4$(@&98p
ze~LV6n6T9lZ)yjr2lttbn=Cgj^>oiquNGr{64bngrzOz!hL|D~%#{>H6chE+KWg&J
z3*5+-CtQ18avFN!>YhN{?Cn$P2-i0^=N-Lsd3lTun@ur32gBLJq=Kq!PETmafm-Sj
zf@RczY)rZAZ2#gq?;mS<K0{D_bIIeat3EOPxY)6lFMj}UU-f)3^7}3}vSsV7pJ#-M
z+_~CI1g_xYqJP)j{#J_pKH{H?bou(9^5y@lN&ThD@6Wyb@7MoSQ2*!g{_mgrH~IS$
z2E^6het`cJ#Do9L=>5hO|KSb%d3{xV_cw{~H}v2)t^l}xyZ&*B{@3?yvHr%k{^K3L
z-_0<I^BYk4N9h0OwYlm)h4^m&ix7X~|NE2U7SM80w4pefX_ik}rZ4yT*Ixtv&*nc9
z4I3U9N?+@G!lqmO+D3G=r6%BCuhx@W9xB9PkQ49)0=LG9EN4T-|L1qqxCOBx*1DVV
z{f+(KT-r4M%fFiXAX0>lRMB$adEbbGGxi0J%{`lcy?THPL8@c_0|}!{KnXT}F<{<*
zvT>d7H@V`!PhzRLr?uFc{1MmNKhT4J9-!xL7NHsDlgOA~B1WX&#k~5pE0<UIBpzej
znfGZqM?(!U35jC-E=Kfpii+)}?y}QR-9yFKDq9RalJI@A8J54A<H*R!uIYUl9~%o^
zwBlM3KW~1aMnt45{WH{Y!gZJ440TwuCwY_X4-MnZ7fUN8_>+A2tFa3Q9&xDi6nz`s
zMfVq(2cP3<!#tOWdxFy<OfkKGVY~+ihMM`i@|}nHAD2eN?Kke95?mboyt1g*8aDR~
z_~ka&D4siw2KO$zrkh`9T}hZar?k7mFzK|qPqEeO=;}OuL>3au;q38^5mBJ)AF8<G
zvt5ELnj+yX6D>Lz=b0~2%iTCouFG%f{4-=#zh~IjBffR@av7df;P?q_XIV|KO;0=`
zBRkKGiSm^`?A>km{bA%Z8ZOz0H>62yqc!%pceZDNvSe#07)}|AMODGyk7Rjxyq}p~
z|MU<YO4)io-E7%}+0w9{Gw?okj8K2K23Vv1YnaPMB2*kjeo@5{jvK9SshB-$A(m9a
z5QC%~*bkNnmKCC{_%Z2t?H|uw-|&<|UJ32@lippqv2HxbNxLwc)gou}#8Szz<r|9d
zla-)clAN^*duhqA##5(gmduF}p3U{Af#r)GI|)V`Yi++a$#*PAvTB8=2nl%KG-<iu
zzTj-c95cUcd6DV|qv{fA!C!Q#GWfgfzSbCns<Lu-DLL=8eWyAipTB2AV1Z7go1Qq=
z5iI}pgfBJU({d47wN(cR$P@=QfjnTNlXUJ4O&Hg#!&t<OKO%s{RaTz9wiTJA+{cd$
zL$zfdM?%%N?8Bt}V8JgjDxF`=_yoNZL%?RSM!&!<@&6(2Eu-Szwl?1=5eP(Z4Z)#+
zB)BIbNCelyC520Hhn)~0K=4omclW}A6C4Wn!d(jp9w?+&vG;q<>3;iu>2Yu0u`~9F
zKo#&`Yp%KGoWJL>dqiAE%E?$%u8@WyU~A^^*f@-jn#=ireDAo8?i+sXG=2&OuQf58
zKV>jxlL!mz?cZING8t}QjzEpS`<4|aCo-6<ojR<^bUok6^Jv}NS{;frqM9IJ&O1>O
z1i`EwnfK+(O!M0e7^B*3B}cE>-~Ch;^yCwmVF}Us1Vg%_(V24rjk{y5okFtXHNtfN
z=!t~Zc|OnWgePtFZme61@fBGp8XwJ$Jfhm>u%)N5EGeek!!2wrznZ(veHVV#^Quj(
zJ8y{3a3-t>jaV0TCCz7caR%ye?P*o*$R31YA~V>wbfRoQ>ZSwVv#(y;J>HL|Ju9e%
zV0?h_IrF9Q`6`jR<Cp6Mck2vYz=iPd&0oze$=v_cGu`fncxMzGCO&66c{g*+>vaKW
z7bUY+x2F~uZEaG?ijMQTh>O39+0fTcT$2Tl$*N;b-q_u*4N-BIj&9^OCkrUVzpKh9
z=dg70ouQ>QEgraiW_2ni3~pRR|I7RT^VUfUK*G_4d)-7KYRqMX+Kk8zp$)-+H73^W
zF6##dPMcU8@T3DdrgP``tGh**Ne<52$Rfe+egHHyjGC&V>b2+9z0x*e#wddT`}TXR
zkJsb}bLj-E&^O^!D*yQir1*bd`DYK1r-MK*8829c({f``ZCRNB4<B5hX?~hywRs#G
z5lqawzaj7*8dM}l@k(*HjPXYBaXY*Es$UR9!Uzb&JiM~6hK=$Pd<}e2mj)3E9~cHt
zL)w$?FaQV1!B(H>0Wn6FQ<;xsqTlxNJFr%akkwELQ-`GXtU1Xi9WHi6Z14pTPzoYU
zk&c3$VX1A~lkC7G&tH-49<ZyZ@>o&cLQz!@jOI-hi8!bo7BBEw!TU_Jyq@8WEIU@e
zvz`)g=8r81Ea2Ga3;X;TIYp~OE@A<CQ+?WF<$I_*+sLkzWixZrd!|gFgHe8Xm^)fP
zBWTO*vS3uT+k|Rc^(uGDy7K5C;zc4Y0X|N4m&DoAA{!5n>zKJ?++%~Nj0yIw$w4Z5
zj%3SKS(p)ZQu%n52+vA$_P~IqVB}1#j`b|_(Ctr&Sb$jo{eDK=>8a(>^t-6LYs%g_
zbc3_AeN%2rrHPh8j*OPl8L`qLQ1?23GL-)EISsUrrcg|nVjSN~l?qwA>i>Jo&xs^2
zfm85}E8S*ySIWETpDt_%b1Au_P5f^_ez!4VSrxg@o2uQfGRQvS66?e6dT&5nO0M7{
zITbf8Rm@%a!9EGNcJ2q5SXgBky_qSA5+to<=AJR_cYgOeTgiv}_ib<3XeAEw?u18y
z-SIiRxeLBu67Rz2Mk%9_38s%(vhvN)B>C#^GKbF=2c{Cf)fi`%KFNjY>KOlur|u5-
zu^0FxE=+bhN4if_DqhtZ31u&pyX*6g1|wLVs(!sV*<rT2mc2yD1ufexBsL|%<R3<G
zdEmYW%k!K`E|BIAB2bv6ZJgM+6l`Z9jnzt<nbC>Nvd_t)NJj_Z2i{e{f%N7=wbF2`
zU77j9j-w#MT`GVTGYOirDxyjFUq?AH|K6)s@qiw0IrwRq`Vm64D_1P7ybMO41hL2W
zat1k4xZi)quZ0@(I&tNTCus4E4XL1ke4KIG*R&Ml=FTG{xHU9t{U_2YndMJXq4f{)
zm39UKpX$XSC91Z7D)NaG3P;&@ri5<z@mDrF%8M+>-+l$CS(?Q_LXB)|wpVrYuX24z
zEY8i0GcmxSQz@Pv#Agbv`Ed#%iE+Pu+1bz^CEZ~QjiI`LNupt>sKA0cJ|l>x+`#tE
zBgPyh$c*cX)2E;#BO|Eg$aH_P^V+W0@mjA;$ZoD~y~FR1heaM6%jKn|R?}7DI`o6q
zf<X-aY?_)Ad7j#du%n|RYiX2)!{dvo>^!`4dZ5gUU2vOv4vlQ83^#A)fdw8AAT`sY
z`@v!E4leN^PDcHowNkQq_=F=`nR4mXxrEIEi&7@W%gQ0T%f5ryOV#f#ZXo0P)8?FC
zd{)yLtF&pHb#YW<o^#=^Py7d=y&N(Yr(nOBziM3&U}|Z5Yd_%oL5ySsls!rEdIC<*
zX<DbM9E8xK_ouZ(6AKd(sMo7hj|?nr?~0fRu83EBvx*yrf&_<bYF}S-bR}asU5reX
z1Ut9CH5OUWP<;Za2KS-mJd|qGvR7v1)K(Ic1?b}C#IvS-@)Jd7NT0m7IU+R;*KPpe
zzfX_uFK?Oj4ut84mVnjTXN5)|+duRYp2*D%nK-=V;^kp&#YwwW<_lnVja#cD3fwH5
z8H-1wLNQf&ZP(|r_lvD}eQ_?%FG>Rnk=zW&eqJ%5i)sCgIGdO0+D$@UWX2C;m}=ng
zyxacX_F?&rv+o5R2+k-M)VZCteXQ;9w;I{prGwR#{X$WO4<wu`Cdq!Dwrf_s=62?J
z*VMX|@yd*De`1y}4`8=eIhjt_E(*{9Sp!2$hwWn-k|$P<3!cACKF-{{o|1kTRUu&8
zK{qm^m(iff!EPCNcZ*apIcn29%niW~5!$Ose$W&7BaKp<?dYbq<MReYHk}I3q2|Fw
zsJi33l}E*eiiM;no<H^wCFrp9j?}EKuR#zYuDuuXgk=}A`nk2Wz#;u5)bYIK8r8A{
z$pC6CxW=YHr@Fw7e|%Ya3pyxbf<W)yB3RRPP*3>08$lVY!RE*kQ(m0XRBXK%zvgDo
z;qEo^a&Q9{+b{P%WMFEF&XXw#H_zH4;7iKM@aP0nxQPUTf_po_52KzS>)Z;3S6M(E
zJEbQveFK=p&qE{O(*qw+6nxghrVQhdp=KQlsH5h)+~ErD2O;G*Vv|0eNf!4Ucgd)e
zPPcT97qe-v?5=gxUKBk6Q?1sl-A;gwWe9kLEr)N)65WGOEm5Uh4R`H+R6nDuk=d?0
zqK~@n-Go*roIB3k-GK{F7udaBtBhA&u`A4wn+$KYfT+Aa49QSi|Mui_Kr1Wvx}iAv
zO(Z@ZdoZ!XJv@9dpUd1GA_ReZ$g<|^Eyd+(gZRXD#NVDFEjitV64a9@mZ;~gkPO3E
z@V`xF67Q_K$MUu`40a^uQuQQPBJ<bUwb=1nq(_8&e;lLO(sW*aVp~|q-(n*CxE|L9
zlJ0;XdsZqlLb!=7#TVQqwoy7<CntC}^VaIG(=dUkFf?nR$lKDZ>M!}}%R?{C;#Ptp
zv`@A6nVj+&c0`N%yVl(4)v$UrI83k6g_#pZk`)KS3e_XifM<4kdPSol%Ew0{#_w@G
z@MLx9`T7<{B^;OU#lO1~7cp0ij(e2(N>F~QQh4xeXq1n6pbDnjUeAvR66WSErMF2x
zpBrJ!Y!^Z$I)tWQ3|cL9!`XFV4ke97DC!X7$wbi+F|S;wuyzEHlCg|b>a8)h&QNKp
zs;-*8XyX4D_sf@NF>=ZMwi^QO7i54;yIMX>vL{`D`*oQAaJzTmi+|$k_b>&Mj~`8}
z8eg5!DT+sXejU(9;YQK>+CP?xKOV%+Yv9CpI>KcPeG@&k^97c7Ze^(Y3j=9Wi7rUZ
z`Q}5v3Mch|+=L!k%Mr2k7XyAVFs8Ih`$NevE2kSMR6+u+nd7rY5RE=P8gs4@$>EW^
ze6FsvP~MxgCl3f+rsm3vpohb@_y{@OZQh`^yo~1PWzLd)^})U9>UVtdHA+PNNsP?M
z4E_;TzRA1BCHr<Z<xhBq`a)SVlk?5xCnx6d#PQr``mH0sS({a!P7z4i5FpL~v!(a8
zi~EYlI(3GKfGs@UapX7Ig8Q2go?MSZQ@`>Vr{qEI(mKsyryWPRzVnP;gsHW~6tY3A
z7Vr<$^1H}ZgaoHnxbtjZ7}`*PLXkHl@u@-rM2w%GkQKSLxd}@;RIB$iH$F)~N~p21
zQfpV+*jesM`Zh6o39_S&SlH@0bw~H3b<;PeW9{Y%shkeute5UBe(y+vR3|4ZO!v}=
zQq~(dD1uz6n(Gj3%qLuoiM^SUDOdlvZMmN}NfA|8%>X&;$K^$d&x+TZo>_fZr)Ol4
zAIVEk+!k|oM(wIRpMgLi;ks;q`~}I<_j(uP7MZPtu{+B-=$o8^WF{PXT@i`#+HyMf
z_Oqza?MY~o4YAtEV4qlP-9*J65A*FU=5lr4hFfbT-MuSvduXOSb1OVV!tGI@dEoO+
zuAv0zj98?-Z@{8QG_0hB^h__zO5SvheO)7pgUFMM?~`R{Ou5id4>(xvCvw8wYdzG+
zd8kBQ?mvVJJv@t8GnE(P>#m=Uigw_~sCQ<tqiLTMLK7c$Q2gkT7oAT@M;;kd345L{
zF6Rp^p1Qh9FY#f0vJ0;rzt~5+&ln~WjYOGyypP+DuAu?6K=GO~m^TXey;$`GyInzI
z)V0^!SO>D3UBVV8V!`(d7CcC5Qp${HfBj6H;mqZVe_w^s$`mGZ^sEZ>l>N0jIb<a8
zo-fFN3`yK}XJ*q9<@HNO=)JUEhyN?WK)*+6JOs=ik0<u1Z1dvmS`6RTUN8298D1z|
zUN*qMv-)8WMpPi~M`@j>xhy8^T>`rRRpJki*PK5e#VvI}G)3X2PnS2T;NnyPSCoRw
z6zJjZrQM0AY$x3}_V|?)?1P_F<+=0u6oON-{i-_sO+ru^jm}Yud!wnS{JwZUCvQY;
z`S<s*dnn)STSMjZ^*Mn(3aS1Sfy0N)1MqA?iAwuBgkljS#-;5vMDGclO0(EZUg6N(
z62OZ*GqN&Atam&>Sda^SRZEucEVq#cNATKY^R#R#?XxLNx)JIDF|yppH^jo=k90Bm
z=;CS5!cI|jf(OLU(n!M^2y}!{iu4pA@TSJcC!m5kDlK=)PB56i;oclOK{5#{F@1w9
zh>%Mvt-wyM_42{~?|MrPHCzn+3z^Px{bAl!bsnA?y^Gn|$Nxe18VtfW^WZkt)||-9
z^WnmoUDw*(g4d3%p*s;wa?Mqb_6t=v-aN0%0LIsAinKx(HMqxlf=}ads%?hSK%IK4
z*7g{4cLSb5c+fNTygWDEpADtq?(Hp}Y1?ZCCZ&ifHpf`J0u3A#bUZeLim<-dB=4c+
zr}jU!I1aO76g6C5od2G4R(+D1nyNHuWMU%inG791yUi*UuXG9cg4@Bj<iVzgtjP0^
zr#EZ}hU|Ae(nMSN%WC@4|Lz88s`Ik(N@avyVbhjrx}%B=iF3`Nqlce;`1q%H1CI>F
zO~0|hS9zFmc-1ja<(38tPRP>3!)T>6%e>+gi$Jpse0e*5jPP(bGLcfdZQ9Qr7h5!L
zE4cEFJqR}Jp<4eg-=iQ+N+H`F#I-q*?WgO(FR+P@dU<$i@u~L=hYi2xt;H7`N3B`j
zpP2^_UJ*j7|6IL=%20`Y6Ue1Os^KAztRIXL-hI}(uFD2QATmr!rkbwvmd7LtTJybv
zZ?2IURFdraUA;SpPy7?=9avOXVXfXZAT6yFN%mlSip>u17jLeL%!S6F@MEWkI5U~)
z+?`VT??_I>#F%>mI95Q7L3$7RuoO)Bw?1~9(gHJIPHy*V&z8lToURq2LES7Bb}U5!
zJ&d)kH;-hl@=()|$H@faW~4qu!S;e1_tNQu6Y)}I)E&aa-1!rd8&<AkrbXdA$A4^K
z(hyBZ#2Ls=qmA;AKM!Lo?^t+G*6hujF6u&_8ejGHHW2ESQRi0->az7C@)?TYr4Q6J
zGNKNx5b#)z``JyR+v9ouP;MfB@Hs6Ibcrf{`&gCRPEYTzIg82{U%C+aZ;7JBoJk4W
z2MAE)A*yON;9^DvXTP=&$o8^v3byVCjyutSA5d9~+}fgsLm;{=)n5whqKyxP5l<*G
z5}ECr!;jXkma=*_vfl15E3#86K?euRioeMkexsV%%n{_Vh1g(!uppcM$T=H&81YLV
zK5G&AV^3K_)W=hSv0oJui_dLZd-dSlMY~qTr;bb$k0F1s$I+}caJNXx2(_TfpC63O
zao)&lmaZ1mSS^lGe|tUhyP>7!`1{l160ZUW7!i3W<<C{#^oz^nw>I>yKP+>F{2}40
zlN&o+@jD4;@_kt<#Q;ck+GlTz+%ieC*juFS<*dmgW4w=X()VX}pZnV;!Bn(ji8S<G
z`e=b<g`G92Vh#~5>+_6W#%ceu15fVS0aowiCUw0pFt~d)@~MzKFigLVBy)mSBo7+q
z$Ga;J`?`HAL)sNM6N(5tgl}&0;OVTsN;%s1=|rGn_H56Hv08ELsCL8>UfoJ>_$b?F
z`UgBXU_NF3^r&L`IDS5_vvXUQlVc}#>DX*t&MSdlM@>bg%)k&1jjl5;Br@lMp}<LZ
zC(cq_DPsNwmvOi1zYt*Ex5nDDU(pldUF0r$dN0rf5n}Nf?LR-5?(UYw8oc!4`7M|^
zx8*M66~;~&8JUCvIqI<ZH<mqHNp?dN)GwI%kkRTC+}T>rho^>H;CGeP$czTBy}!fh
zov&I=PDzPp?=R$pZ1kj)XhfhY$Qa8zvrZLWHvhUb9(evktog+riN9M!Chm>M-W5YT
z{1aCU;e;^_7yav~sF?~umuT40;UUfzer2`h0aVAGcWKKEq)V;wZ<&4rN7iz!5S0$$
zTxP8vZ_uFk7H_h+^F5p8o;Pv&6-**2arVU-LQq1~R`;Svoq93eM>q}!cA0RUC~~Se
zh=4eY_-aP+jh0l^7MdCDMShQ3%p3K0{GhgK^1+~NUzn$-N<81v>id8%NT-rWbOAiC
znkU}VPQ0}4+!(;0E8ckp$>GrzL9xoDDuuGpYKu+Jeopn%r2S^bQxzN0ML!3)IG(Dn
zL2E{9k@cq-7^n#+@9k?s2-pLARE3XUEeuBr@2+tZzKgPQppa}P>N#)d_*y3QA)R7F
zCN|?Oy1I`=$GQGsHkN4g{AqvoR!3Nog-zbea#jaROeiaeL{|fUE($q_xxn21ULY-q
z8F!2}mK7#D$_!b$Hw1BOi75*kE$dSNmyYDa3Q3Z;6SYn)IrQ~V)7$Z7G(2Un34952
zr9?j9eNEj;YcSFdF6!%hZxxM}ui9WnR3i%Gw+c9(*$nI6(?U<zpB!jvzx|Rar!dNx
z`Bf7KB<eT%Z29ycnmaPmR(BmuR0S3-rf(kjyVOo60dAmg7dW!xULW^Olm0g^T&Pps
za}tug-qK@#;3Dd-{0nP+oo?@h$K=JTR_mc_Jrgi2R%5)X0Gr9h^331=JhR>zSOS%s
z=ATMyH*^3XIiiO5RvIPTxi--7!szm;yEH{l#1NW~YcX%$VG)Rt;j&oczA=s`Cnsat
zXI&KuU1lg@+rSWQD0-IFzDW?EQ2lV6$71qS&*8C|q$d7lWk!DTZ6bI?6l41p)mkr|
zdQ{hQBi9w$AsE&45SScWPFC3Tk0bZ3am+jKJ|<q>k6Q&sEyq8M9tA!OtgjUjJ4H_=
z9UypyFPcA|w|#rZqBzU6{H#lkuim4cz=K_0saQfNe_(=T*NOWcH?vqkXhu3|hH?zY
z18ZF5)-HYvgau>z6;Sd<p<IKBpFwfhypsdYu2!q}&^RO3XfGS;IPK&9FJ8EZg229V
z)r{V)Bn$@XdH^>(493R+Drs+(QZ=D~7UnVM`wD2`aPb$HwD5|TMS-?4v}69FMn@|}
zG(c2>$o#6;L3d5ksN3nEH#h$xhVqtGRxv-tnEbLmhMxIZ1>yg0i7FX}xE*)$%;Ny$
z2KoH+rV2eovs*>;TVgips`1Uf+}vF6bCE~&@o5(002wY&kEEv#V{azU0icV4pB8=b
zC4jo6EchuZ26nN(u`ZwL{_Npd8<{)dFZIK|zNdj!rs^pL7)XZaE$xo8wId{Z0H)r4
z^tY`ZL`bAU2{6Mp)a4)UW&chXz00AbWYMu!6vIp5Z$_S&&tzIgFESOJ#h7+^nsa{!
z<@L-$rw!#o;+D5QA9N3yUv(;tR&6UE1YEt-Vj9q85<c<cdNETW*D8y@O)6zffE#W=
z<Vt2WA#H9Q+5m+<4I$q7wdRZF1=1V=T*J9G>$!PVa+&1*!2#dYg_qPd`w}R5kvd*!
z>_%@;a^m^`==8SG$zC(UN{VVA0%2H?nBm_bF%n*wGSLk<;@21gYJ8R@)qJ4u3{tXH
zgWQ}PP}yaxauqq!nog#Zg1X!ogg6)PJ2rsZLxkP@ccXaJ51!|_w`>o_50Z#0#B6rI
z4=12B!US)AzCMtdW$?h)KSC7Obr%$~2#>U8#y<GqXTFaw5bba~qG5Jq_-vYM0D13M
z5&{H445L0tIq!{7fl~47KYzWpB^le3;A_blE7b)l-d%Wi&Z6Hq(<5T`I|pxDa$aUA
zsk~Aog~V=A9VCMKS%uY9oqhK2p=>QzjO9c$hYo;NEnWV#4cR5Na|z1V(Q(~qL%?ho
z5~j$^e7J%FNz-Qzz4n|it*VJfL-U7H9Av)w-(YOZ4JSNSK1y0e3jIY-WJJ{l9(}Kr
z%Cg#)KS9YBCk2?`9bkLHt3KaFk+OqX<iGq@yqnB4+EVxrVeu;N@Pjc^W}2FFY0bW*
zt%`S)cdt;DHdJJR`vDNZni3J`>Avoidr~mDm%y?m`msOWHOFu>S(OLrSWdpn^_JCn
zh;>BonRZ3%H)T<_E3cf^!KRKm8Y<g5Bbgj}Zqcy=uEz~Y$&)jnRadS7XS9XO<g*?&
zNZW2Ukt%}J1GIeRTX(}_J+U`e+lQ8P$c#A;;rgRZ;C!7qmbp1iaR<q`1d^(j@1Hyh
zWHqeIZY0+6T1~TN;7R@D^MHFC=^Xd$i(t>zpOWCK8WQ-MLaw}n8(5%2L#fQr+>#Ln
zmDrV+@p$uTMP0D`qSRsa2cv|??&2GICOHnSjHCdF8z@H}yirva1{>bS>qOlv=Zo$T
z12Cv7HS!3Uw_Qyda?may)|{5sFR_TXmbeSAb=e4(-ZJeAxzEV`bU!vd6o}$%Z`ZqS
zp7?(6_WJX&rpKWJ=y6rNh6qK<&Zg_32(JceZdLbXm+YaRG!6W=GGySFtcoVun7gqL
zI(-HNFT1bFv?9EF!qR91M3D)x<62OfK~@^>$H_LgHS_NL-J91@2Hdp@H2>s)@7lu+
z4M>lPf|O|9dq=OLwLpj=A6^ON?d!N4`#0u@8sGkSria~00&2n~O0oHHVSPB1_s#2L
zT&KO~bo1yJ2T%CGlO=PB2b~sm8MGnjx|OugnBD2ibSy%H%K(wxvs95ZfO)CD^qkU1
zN<9CCkop0;<w*sZC<L=$*-5ju@_%-xe-vY$mki}*Wm`>#zqV0(z*~rKzUNwd$sV8W
zV;rcw4mK)=>M@{umnSnlHee8~LFz3@yzM|L3$V~)yYi>0vLaid%sHkyX3|DHir4_x
z1mazq-SATDGD73GJg~k#T$Ia<7fPg=qvHam&RF`GCOGkahf)%k^$T_?xb}*DfKN`7
z5z4U^D`aASjq@flqlibj?=;VUi*z^1octEygM4(-Z#BCsdP_@~drd`I;I^r#NGd`(
z^~GYXP=D`=<|iOigKZ>V{)h|9#d`5PV6tUalL@o(5VjQjszo!4_n><J<O6DYT0eKs
zpAGJ@;~2uoqgsL%ze%0@oG!27>#&yiNn}vlgt+C(Z*@n*iNDSf+@R_g%+a*e_Lv2e
zO%2@k$UQB$_ELUxhbk;0>j4G%x??W#&(}~`poDCr_}sI>RRdJo)>gton_Ms`*~q+L
z1QoB9J)i!^24Qyx_we4lglalCl*LJbkm-3CLrPhrWv>F!)srZta_9*&TYSm^-S;IV
zLK*=l?AUUPim(*P9z<Y)WFRc?UM|$+bN*M87Q`ElDD$?0{iGRMP^Wvn+g>9K(X4^m
z@88zt`MaiD%q#ola`jpW{=IrF&Rn}w+$=05%iqg`Du+#MO;!bS?sM`O*{*L?NPI1Y
zaa0coINz_!?0o|nHMZ*D`YF8^(c+VRwqd;?tre@FGbm&-na=Sk-mYb@u>_r*tPkg;
zyo1be9*{R$?B6T)1!??exk0VF0mT=kIilYp?u5Vs^|_)YiDN_rfCcvmOVCTjLnRS-
ze1dt_rd{1@2LsR%2`<tq1C{BX8BA(0?3VJ1J#~*L@5;nYRUe+#vo*uQQ3^9}3%Mx<
z;!i<EF2i~G6%}g04?8%q$a&4y?2}TZF)nT(2*yfK=#p*OSDyQX5X`aA_(F$BRE5Pc
z>!9GcXPmau0_i`1vh^h7PKT^<?QnvS&{RgI#`$crHeuv2>9ON^3YJk0`YDdp^uSWe
z;aMT32y}y6P2Q=fNKc|{tbU6mk5VIDC9Ys^)JbG|0WiiE8D7(S|A@(hn18YhT0-YO
zoCSoYN~p5}5rU>3Bgu68DL+9#0nI&pDNA$nSZ9N~aLWbFC*zkXdJ+1nVOTR>&`lR<
z>_NcrZ4Q{0fyfLulc9Si!BL`axF|Kq7T8%!8(r++26Y78HB}vXYzn3lbQndcpw<b>
zpHkB@d1tq=^D3Mf`_MzdWXipn_rnqu7yJt@q2(63q2zRhUD@YWoQaf<d&w}XTe;6{
zXH$fReg@}DJ@kXbKC!Gk=}a6QF6=TxIVJCbu;1u54SHuFv{<%w87RTehJK!;s~<=}
zo`$;*)dcv&?Z0@*zZqICramj`R<fc|xm}k!gA!~QiM<2*hTQl?*BR0(2{W>ECOsX^
z>>9LxJ%2Sm>6_tZtbh9rs??7B+k16wxmzjb74fi=4Mo02Q1Ma?dJ(_aVvKswxO&@5
zq%rSfkp;La=ZrurgbWkoHYr*c_tA!JEh44m<q{z<8h-oN!Xp?j(o8@)8(SM)lFp!>
z-R!n`gjmXz{1@rmd`UWkhS-FJg2bfc5ksS0IdIb!a0?!bw-1)>1#a4!Lx1;P%_I0a
zPmA+wMQTP!S-?v5qzv|a`Nevfag6`w>uy9#@Em7ve%ABXAs>L$=XAwu?#o?Oe@J&v
z*50x1L@)OV-H&1m@>1cA(_l|x^}<d>jSS$K*Pq1(gHpbyNZy7aZq3*8Gep%MFZ)gC
z@R*!J;qa#nYqPZ6rpGjwQA-aT3?44Nr}78f{Ppf0zNNmP+ZYfUK8ZTBaLHlm@P$=*
zan~X$r-W&v^3O;G@&ozcB2W3d<d<6)HivRFR;+&^aJOB6R0xP;rY|)0EiCWu_7Xa2
z2A!_z00{t^p+l)3_B0=Jg`}4pRCPjPr1$7CiNYX8I*i53`@#G)G+R4k9(}MJ{aTEE
z%Bm{Wh-gVe^K-(__9gVex8Sn-g-CB0Qt~)}-N#9I<pX_pu8}3+p|P#WVcht9Xf>?`
zoa(-2sm!eliPSJPrhF34xI@!-#-fpKs=~!B@1g=P?7B}L!|v|0<fz;8+Y(#TA$5w4
zEVIxd9&@+-VYe1{oL|Fp_FjEG<q$3d(Es0Dv@(SvUT>H|`KMqIYZn_A&i9L5ua1Ed
zB8LTbFEzIQT>&XqpOLW>%u!cUNT6&}cbr|3O8@Myx>QNB<>;^QbJ$=t222_p=1y__
z-1<mC(eSl{h5PXknPg1M_ujjeUr~G(9}w#=a$Sj;E-yTszWd--AtRn)xfL{P@{Rp-
zxLw)12Z}hvca9Fo?%s%C;pf)A75-q1ib==<&j#?BVtHK6(Yy1}DU%}Nf)F>8_J+1I
zhhhR^Va}(!=Zbb;qda-P7?7;Ib(O?LT3LBLbX4SZV{Ql25=|S{dZ<HYc_aF7uV@^L
z(SN+Q>%khE=>WlR0U*(!c*%B1zOM!nCP6;^xj1VQcP_r<(tWt7`J-rszSfJ6r(fEk
z<rfw$xM;L}TU{6@iM9$Biq<M1elXUZu*ZJ(@uaKp5{d?yuDWF<uYknlz#vsW+pr|O
z+sp^MooXw1vkw71h#_-9Z}BRBx$X2!{H*%-kSbh;q@cboi@nNWqujZ9GrM|d!mW1t
z%gw;ELh_RfNU_E*M0J&0^Yv`wheeLJLtqoT@S@_sZ=$vC^|al|&(;0E`Ho!W4GOk=
zjIh9ITOz`x5t6}gTelfxW(&{wN{u`Wl(gcm(j%j>*wyn<auQ9=G-f_f_8VT08cN{)
zhTaU^)QGq&Kn2C^14W*%Z!_unZcGWp8jmbfD}VX^#5~vT-qSC}W%z08A(-wj(xV$-
zV|YwUe;F32M<YKGAsO@A&Gg;fCj(Zlu7|x_Ch2)%d7!1md*iDy{A`n>iN1yH=oRzz
z>NbApFWq>~nsXeuWylj?oIN8m5kKc74H0T||2<}|jJ-z&F9yZ(rJd?kX!_{3+}WM$
zo+M$@3+2>iRkm=iKqvg%$(}4Z$&(SQJ!<WK*fJjC?d>fzcywbtv*xtUKrJuh^<Q94
zAnX<n&g(5~Up!l>gerI(`_t5k`H9G_mh!B8e{LW1V?!otZ{Mw<dt9a%k190_ts20}
zR!^hYWBT&fQp2(JL~#UPh6lJ1`@0;J@l{o;d<pE4>PD=+y{>J5Dd27?$a)lT#Eovj
zJJ@bi(u5u=(c!}<;Ms*0Ayo#m<)WUHwu^lH{LOdYv#ooEu9B(6C47brmgMy!pi>`P
zFK;n*{}dA#NpbSmXo;`Tl8DU~QUNaFIsfVTKvmMli$k$zH+%}a^A$3U)OZgENt?E<
z9eGQrBx7M0+kq!6H%C-)xlXuDdI+5eG)Smjz#vzI+7Ns4PVdvlm-COcAHbzlF5R}n
zDaVzFq9o2>&_eg7d9~IuZ0;?%^hDe~b#{|(uv*wTe4)i;O=%5@O%alTi*R$FPB7rh
zz-4~rJ1;|O<MaKF-A~OS?=!zr2vy;beY)oj8<ZXBaa`9Fo)^NUnipfqK@@SvIFa}q
z3M{sI&}^jJIr#tqB7Eeu6YUqt`<WHzCa&p!<iKf1x9jWAgY+banjM-57<?fog2aYt
zwLH;-WdGhH)Aj9VgjA{&OFp5J?aI$!CyP)i;SD=DMap?usl;MVf(&pd0j7K-LiUY<
z_$&cUFke0{<$|QFdg+(B*<UaBOqWFy<^IJ&JA<a%C$G*f;Uwsj$t7D;qcp`-|Eb70
zH;!Jjh4pna8|0lwVsldsqVO~2oNuR~*pOfMh*Hc`kpt4B&Px|dvdgIvPs-L)!a12u
zbmBCZJq5uucPLr3ypm`Y*=VqM<(n~*$4CDMv<&;#Cz?PnZ@2Wi0>Ff)BB@%|&p_8K
z_TbjY`QN}QNVWmHHA;`X27kvO8Z!JX`ySz^4wYo^{SS@sFmpV6O<mE*vi+eIE=g>!
z5t*1_k`Vl4WQOzsoJwBB@M2Q=9lgvbkkAdOE{MdC&Xb%CA7-@md>n~L8>JKRJ@+%;
z%^X~h>&g6k5A*soBcN~i0>bhF!pq!npz)#Lmbo6P$cX%=6l)|f#7j`5XiBgF`LvyU
zt?Amr27Vc9Pa84ZV>V@i=1%?d%##7_z5amDu#&XUB}}*ZH(<CB_`paWWGU){a_<up
z>pGqbPT3&Djm=U^9A4-sOn!$&i5?!yd23j|lTAC&ZyuhiM`h!Fub<ZcA^5Rul49K^
zGlTo<R6|a=TOVyC5fcB+JVM+yyY)f;?IMe3?*ws>PlF5IqCA5@ML?b1Wnnr0d2()+
zGrf^u1Q!><mr)2v3~9IgaH=X@R>&-B?JB-eSvj@Vg{n`0K4**WMU&sc#>TypIMB{2
z30Z1yP$+ozTz{Tv9!DudHY!lU-rhcdsH$Vo*po*wXmVhn^B)L0Y2~ZJ!abInKjQI&
zELOiW#pKAzT|F~#ZrviQtM^PD+yA~=p^gh$6-9y<jg3#rcg7ckh8pL2uV25u=5~lc
zLaI7(bH<Pe^LPg=3tgC#V-)ucHb^`u@f=#A@9?yJr8{B2#D!!GHsIoWwCZC|f*m<f
zX?`nu&NmEZPf>!QA=Dy9Arxn-&LkUaTSnQaA+>Gzl%a8?8%GGwHjsQ9D;PRJw8{No
zK6h<QVL*G|pE`me)jG~TUDmb$3U^uCiWn1IUOZmo;O!_)HGlf7L?UyxECv<<ycowk
zRgHFjCZ@cHv%m7L=yVOXU%Ns2H8bMFMDq_AW*8+Ry{V`179*GIeC%BQm*T9@FJE+d
zdBLwD%oVps19aA-C-*MbRLgtXVsIIm13lQWYt*|#1&wYxl3X)C)b^S!$m3#QgI1_-
zB6syZu%1lmP>UNaRbx)>`K7i;D7>?k8r4$<3H!;*0#izmfjGJNEiT&g5)}6EG*|`T
zBjJIDH}Z>UImp*8EI#H>wpB^(Tu(Ipi*=?<l`o`q>B~2h5(~4cBBVEI19CF~O#1rW
z6;3Yra2-y??(aXKu!MZVN5c*(Vp4LoXmECto;!nh&6{Q+nqX(E=GqDtNc|sM-icYz
z$j_~>7yE~DKAt!Z9AUJ6uU`84eVghcZZ1?aP&t1rQTkm}iP0ub@wkONoPB{-j8w#a
zaW$bf+MXN??{=y+-#7k7fg&6nR2eh{V<6nHb^Gy3cYd#(`(gXVzTuzv*)(4Yts&Yy
zVOM(UcfjPu=~{2ZV#}2k_v#m-UV@w8*|BR>#d%6teLNY}H+>QT24J)IgXlvE>bPwf
z4%i$YLFu^QGR8t+TGv8t=vWENs#6JuN4w~CpAc3lmj6<l=?Yv-PxHdAB)N3@lLkxx
zbs~}Zh~i+s7m}iHkmRrh0eyUxzm6Vo&b~k=g0WrhQ`|U!8WV*QIqM5ow}(bHvxk<N
zT?ovuIvobD1y#V@NVYQjv!^<5rR}=qoX$*DYEKIj)d}^1g83WlnCY~v?n-JZh#|W#
zXA-uPl+GNZHkw{DA-4}h6c+_U=o%4c<fN3MszVHLe<1V&PORj^wGdLF66^G0=n)Y%
z^G*W#!M%Ml3xBPJQ-BFEMx%0h3&X1RHt+HCB-(USm;2V+PbcPL@8Gv)dw4YMYCQJh
zD%%B<$1Fo}@PYQv4E3Pfp54o23unL8kTLiO#7%m+_SC?1J%_2}kq!#-JmNb9od~FQ
zSc3{4lq4^;_$R;SGx=^qR2>`?f(V7#ScQ-fq3ZTW+_ZE+ptXDGgNZ24HDvGugW!if
z!QBcvMj+3B+F(mNd>)l}F5LLQbS+=#d7yFwZ18g>C?@pyD+yw}E(jLNH^;JdFwely
z>e(SJjhLtH2a4$F+p4Hv8J=L>#mSymd;(6^rLgL?;*q>5z4mw7MPv3QxW^><!JfYX
zQuVXC+D}DY)onhl*VRp?vl!KbSQACuaAyNpG=y#8aps;<Y{{g4*~Ra<KSd;=cn2In
zq3X>s3GOS`U@#*1#Ql!35mleqB&hX7^A^Uy2=MXQ-)Lq3&)_l)7nx!6HD#p4^w=o3
z28RlJ#H~sh;nFMea}>Be8sb*Y;$h?B`wS6EiY4&i*1+vVtR*)7;5TKcq(S&UxZLrz
zAXCjQeXK8!WVv~Q9V1tHO-dh0m(|(onVX(3W2utYqyraWPY<JVN+l}<%7(!OzbaOQ
z>^atd6kq!WqR+MdR09sW!Kob4n<6A)^q?f31wH%}XeDqS!T_XaVDC37!3er4oa%a?
zu<Of1W&@O5J?GDz%~Oe(*;K@UFIaT;tj~$P2N+~V9BY5RzSliN!Bw7~?vPkyl*)o+
z+~g|Q$oi{MmB-9*rae!(I5Io6Gx9x+Siy(m64gtO>ZJ+|_O;{g$s028Gm$5hTE(ny
zR!&JcwXN<VQUSk>4i6^X#~&!1sqz4sU81LMQw-5e(Jt6xN<%+JqL#IRK7;3p$KPPG
z<H5Lt=5&*UTH%JffM#q>e@<Ra3=9)lXKdX!A*HR+eJQ6{rzFt>UP)|2zTk<$y0uef
zf;wkw7MPSIu((P|KG*K9)icY>b8jzi<emR5_*qk;_GrWWH(~+&gv6~BMh9+G%{1;t
z$3E!*4etG`m*t^30E2&uR0^cJFmZ)J9TJVC0X43`F%rg@e;w7&!#wc*rjbhClmRCa
zZezJ-7}2E*@~aaM0Si@giE^>W1pcs<sl|K^6sh|Ne@m6EBd_@!U>Vp>m`c#B`e$!$
zu8yi@flis7Or6aP2_};OB2@K|4LT7RE5+09X{O~FisJz0^!cyVI4)$k8Wtyg0TN5N
zxacySg^ly30F+%_*}N#IDm$_s<*9QByt;>vpHLslDd$X(_HG*$Ybp_yKu$ufTvQ%I
zek-?+>aU(5t8<_6W;`o4aOK5RG2}*!ARX>pW2)iu2<atRq#{|6+*)0IFEe53&;t(d
zdb^6QeG({-_k6fwi-P*ITP>UXPNKTNjylex%M7!=zP`jZs?Lzkp;I*(z>krTq2fgz
zIxF|TfgXEQ&U)7`Uw2@-pvue3yW5F4E3|gK-z=w#eqJ9PtLG5g7}2BM=U#X1;hnP2
zun5rh&GJ`Ici0i=6p6}o{@o<+<RoV_a<y{)<!mw=^Uu6L2WwpQcLjxhT@e1z0VFcG
zd|dE?+1`!3TC!uT-qG6!&I&&YE&>V5IeJWrV?Oaaso6;sIox(i*aATjtnF{@>tFhk
zm%7JAyusl0V!#tmuOF)rmo(Q+HS+5_q3Y#p$KQy->}|u0)4J_TI<m{5q<Q)IE`gRR
zFT_cru!!mqOd}hm`xqntDH9BNh^0YlGEbOg`^kk~8y_VR(u&n;EyovCP2bHMl&z}G
zA=Uh*0N8U7kDmpOC3=?Zx%k}AUAhNmk}e8(sjc~f)GlfYL_=+9t?qw^0n{LH6l3(+
zs?0>Lw@+;%_Wi=~5=Qg1k}i+1Y;8Q`7H&exIf%44IDT|%9rYx2oi|{h$UFByuG8qO
zn;2fJpw2-A!9=HgDglgfQ4Rg#=<KYXL`y1|nwMKj=&o1)xTZJ<s&pbEBK<-sZ41eC
z#DrRPp<d6nUwMLH%MpcKe(9h#ny*=5x7VXo&&t7KX=)m2&bE;|0+njA9jAzYdNz|k
z;WVzHu}~Ry>y}^E8_>o|waakiV6T<97?d=imZUMaw6v?#AdiW$U#Gys!y6Ka2lw$m
zZqm@>vmRL|VPQzZ)|OugYZig9`LL$b6XD$H>FH{K8Uwc2u6Ieh)-hht|HAH_@Z`;j
z;r@P?3;mlS;r5zq(4;ojoOewMewnutsY^?S{LYV(OU@dzpB2t9AJ&^?rAi{auwu7c
z%8vf8hR2sbnJ?9W?jIO-tkc*^zhC3^ngpMcoZQNSg4tyeSvl?iV2*f-v);M6%uqqz
zbf(YelX}BammA)6xSz+lFk@Tmjoeny7Qmmt5YcABgJ6m3T5-^!53F!obzjW`1eKec
z6eP!dgFMgfo;{Sy9t8RN<WZ$6_#Q)VLEtNs6Kma>ui7L&TNSJx=frjL;|nI_&JP8@
zW$am-P<?cG9PS?0hI^41CUV_3fsS^Zr_5nKC;STPGWP#N=JmZxCwSy@%|4dA|1p+W
z1DDC}kB(WdH8aLii%b9ZI{vSZ_sIuTLCY}VD2=Ij><iBD`Oh#6>}@H?U;28@&17=A
z`Uqqml+R?;U;9t&?<HqiRgJjrw#h?WJ{q?5S0&ib{0b8*Yd|HFuZ{iJi(@~f51G0@
z*^}6n6Fw?ykE1C;`B^e*J`jc>;_b(2!463L>z5Ai8Gy9#5Tn#)637>vKjy<=7>AvC
z287C;2gSGVkP%7z>qD`bNtDua<oRCJN!_`ADc=5P7Efq7vzMub*wo>~#iL2F|9IiY
zs|;#?!7e_i4u7FHe&a)6d95~-9LOjB`>nArtmNQG;Oge*7v^`bcJ=>zZu9>isMMze
z0mz)c+2McxpR)Xahw=V*koQu9?>}K;tjXhl{u%rG|Nc_{r&h?9PM817%m248;eYdf
z|Hq$)2KxC+L@J9w6Fo2^an|UP^}d9;FMn1b?V$(8V_D-hB0<6{6Fz2`exOnE?|;Ai
zaCJwt`r#Vaio^YKmZ8?oe^B@T!lQwjI|uS`#lY`n@ypWx`pbX5#b1cj9z;Gf?^&NN
zxn@ByRaVlyluP^8e?KUI+B?A6_g1?n2Hzi-84&Es{#EkdU*#sE$*8XZwa6|s0PLlX
zFhKe5!PaKi@#hfHgiB2IP9R)Wd87uQvKp$?CMo&V13R66Ep&(EQhnlhyY<lt3#W=k
zyK(dpRvPbE@=SZwHe#^ad_cXZ|MA~nP3n+8D*w~Zt=80psFDW(tgfvE4(DP@)V1~F
z(Yhl+I#<166Rij`kMf%$B_3AO3B-PUYcFBLXMU0YNz29wKI(WgB1q9(EAwN2EpX?H
z#dICpM}>=er<pdk>%n{^(?3~6UAx&go$Dl1nPd~lO#*!0sU{gl2vy&*8g;hZSy<L_
z>$OD9sRkUJodegEIU}F-jGpriqUnXvDIkjKq>C1|tKKMR@-w<LekK{NFyFkhp7P-7
z4ZzR>nTV+0TlN?nPwtZEeYd^9q|MY|h%7}oTdaFtA?tWi%?L?{((K0rl=DW5$kD!J
zDW9<vjnJ@fa2+$xpDZ8+cLgP8pBj+E58RK>E4)acDr25NtV=2cW<6QuO;s>HcLVH?
zA`4+%J=ENBYbv#k$pe2NCUOfI{0LZ4>>8i7pJSjZcQD#L<)Wnzu}i65@BG43)%2bG
zQN<uDSP~BsiXD5Z<|Q+Sog`}IwsLj19iWyMPG0!|i!479#!Y%n`A$458)&y&?5zGg
z{k6Gq(J@Kxm{Z8e4<??dL_&cu!$SU8JCOPXLNLWmJXJbhOh@%BQ`^}$w>~4)t~r)D
z{sn70)^6AX5ea^_`?Gsc%v3YAhm@#^>2I+Bux6*e?$U--*;zXz51LhFI?Vz@3|rl^
z59Wr#B^K-JyGqf{^zL6P7WD#6b2{I3BMh&^koAn{zIh0l*dD>Ja84*O>UDdj^B()Q
z=@r}l+Eu?>Ws1=J^|;P;ShHZ=hi>j?SXH14_-5Uhzoa*IO@m#G9{XcFGxGKHS);}y
z&PbrB%D0(ogG6WwpLtDB>Q${2K^@;jj+%`xA(7aAOqS7mt~e^O-c~U2dW7`~LEz=(
z3u9H1LtvOXU2m)7bq8Rr=Cb{(Db@U{U=c4iP+;H2d9T}y^PU<Zyp2~?$0qL{#O;HK
zap9YcR<YiK^X-F!i{kb;8{NX+DN|VSk3TKHXL@rG3|SN<8PkV=gJvA9IA9kWKSACM
zX1Jwk0cksJtWN1SK8Tn6h42!c*-4F#JTXEGJ%np3_lpyx5-|{jz}&iW0&4)DV)WSU
zHNJ5m)BCuGj~|1CoOob+9Es4C_AbMczS#fTGF$llKX0p3lS72)g)~mowJ>5V_c)yD
zNv~$=tm;jiir)2B!9FS9g}(X4d>}V5b=&tlCp*%&X;0JN!QkRSWjWB5T`zSPk8@9I
zXV28&6d2pp58vAxYMsxa9*p1L#|MrvIb3y3hA4{)1G<_Th|r<`Kx{>3i}8Qj4PzxL
z9Ef8BPeCZKpU<h;lGkP%_>BFDT#8HtOJ(Y!35Dc<?&eqom~XMty$CT9&1||5%#67?
zutl9f?2!&!F8y-lIM&a=`t9W02o8ls4U>=5o&w=jA1FJv;SFftniR83-OX162I&t@
zv@ajge?6+p$5q7c+XMEhqQWPet{B&y^5rO})PsM29ekre?DbCjg>d!w)F910c<p8!
zEej^8RMPd3hfkNy<a*-N&jsPctH=7`CB-En2N&{ympLfp<bAxmt1&b0%_)K;R!S2;
z(|+*AFGh!|!$ubmuB~P32A0hmme@yX1*jU2(d1MC0#@$|{fOMNUkh*Ry|3}eRcz0v
zW8LV0ds|8>x?9ja{b%#=$b)oMTPGJ_q$BK({?G}hLaOG;PM1aotIOL@EgXO{0)=+I
z#Au+?HZo-+C3hmeSnLSxqUL7&mDA^ZVB%<%1308eGR4KfUv@8<+}^Y#U63p=H>s1C
z|H-sB+nKhgVy^W3kS66~&B8+U^zJ2v>*V4#?3d(8I`&5)();Xp^IFM26z(wjVxuWV
zm6FgPS62Q=riH-AKdVc*eD<vM6^=izOC?L*KCQ{gfcNMRmMd3zYgS~&3q*lYwte#G
zY7dW5>*<s;i?N>!Hn4|Nuh%=~_lQ`L8TVwD6H<{{(WMDik2a5iK;-^kubq#Ys&Q3&
zN#f~i!xRS(`xpv!D#A`a0s+dWvWWaaCHt};R!c|LCG=HhRV{+nB}FoYFI_>kPORQ*
zb@kfXD$o$JFa{8AmLq>Qv>Yv+i7&}{x7$gBd-|cmx^lk}YRN$~;51yW+#_=CNue0Z
z@lOn<Ks@*A0l=2ZDyVe&?}lqGtP9x;mh9}8D4n<#nh&m(#~Fkeb-b#IYoML1JAXla
zYcsT9C$_e?AneuL>F(A^IWwb>+7PDhy?H`u_wUiSdENpxf$Ich+SSgQN2F?ho$f8;
zRQ2DZk{-D{t&7krTWD&2uS_BK`UN2A&*jJib`@gdRU2@r$k#pt;`+cv>RDE<<(ksd
zIwXNBb9i!6n5_S~*csp1YhxLSfU|3UCJ!4E8gGfj_BukwwojhqM_(HqOxKQ-5v?XR
zCFI<+vHSgi?PfIaF~i)QvKJ-9Fi@LLC5&dPqthn%k^qJ~ISu=o5-Z5QZ4{eX|69Ko
z$fBKRVXda7NQBtPJrp)e7kEjZKV7|{E?4dYQxXci<ZyR=l`Ow0T>!5<Q2tG7D82CO
zL}ZHx)YmbtpbEWV1g{mVfC4pD$9AwI+~csZ#mN(M6^q{%FEC{R{1*85G_+=$y5;fO
z@$&X+{+<fC*qj0QEpl{bvX(P9vtp*;Fx!EbKHVamq+>r;mQKH4QA%8C5mKFstbT4<
zJN)U?DKqah8Q*cHls$6%*ZLO{4ozypqSl{bKtI*E`%O{R@4^-OKAh!KtIm~qIFLM6
zpj-k9w>As@5t%3dkhiKue?UHC^XS}Qc-DNxT6zEeuJNETPI)4iS3g&b60`{m-U8o@
zn9v;{PCjqQAZP;%PsH6Qv8cjTHJ0!M(%~t&E&4~Fes6s~bqC5>*&7;Dfz2xBLi@K_
zrk+>Xs2U#tk;1i%i9fgh#73QeP}lxLadE86qUp%|y8xip+}yHf8&Q|oEl<^FDO%7k
zN*T{iX-2Swi^?w&Uzb_d<@gAM7x89i!3=Xyp8A8@#IF3EADhvyE<(a7@?=ec=Y}h7
zGewAN^CsJR;ynxInC~P?yBJPQidZyb<MGlIa8o(McscnfQ6kUe-ZmxjiR}Tmny9TK
zX2)0ToCzyC8&*n;=PqW3(0l?qFKih0?11vN2+yD$pzL*0Vi(Wzk9FdEL4yd<+;mu9
z-)`Bd!k1uGqM;MwDSPpDg1JYkCQh3qA?T0n<o@YKoLO#z3KtRGZPka@`hn&pk)|T#
z$m}!hF*aDI@I&#_oXFH91>BgNTgNiEHs=fFF~|utKbW$@Qn*4JZ<QZz+6CN;pF>V@
zR5DF8BKTIw$>;i1A|(0ks@YZ%5my22y;k02K70X+8^hhcUH0ol+&$Njyo9887Dk&2
zo;50#EYxFBTsNQ)Do+@h5N29d!FRq_{~3W+GTycSL82{fX!mY0$Syfae&u6n_naXU
zojwW}DXjhj;%<xOl^R5)m{PC_Qeq^hOW9Rc8V3*2T(vsoWM|F$%ms(CJ3?2r^;Bdm
z!GatdWdDc5jRsi);BY<nRQr@pjHa*2Rj@86{Y~O(1C8|v7>HmBnUR-Pz(6!U*jF;w
z+Vlx^z5{QT+%gc}jo*vraZ5PiSQUaH@#B$Rhl|s7Bw+fBFLGHZKWVjU{tK9YeO;|2
z;SJ++*zdpcrgqtXrjXN-c{d99+*M~LQUyK{zEBoznI@DK)OQI|W5t71*Yvb0N_@a-
z-^MF^kuAR+bTSqy`2j`ivQ<ZHBL>1m?y1!-utO-<x^{U7NezPmskwgtq{V0*kUhDm
zgxHsOh-Mu@6)gI}A*>OGfml^;yt)-zMr`&S_`!hy_Q$pG9hSwVAxr(aZq)R4HgVGg
zFI!Fie)}J1pqhA1Ha>!^dL&y~k;Q#%Z|}Gle;?#B=60nq#odO?dNLPOfB5w|kr_B7
z5eTe0K5L>#sQkP&+sL1*a1l#mu1%%>8LXcF%MJz=vB$en@vsnx47CIR`walb%08O>
za1r=8erZDho76tx8^@8lHRnYL!EiXLmh;`k$3<Y#;M;~+BM}#r2SS5`XTmwQSQ<C6
zON0**G`YF)PQ6t5;-i1=NT<-7iIR}NY20N_+0rVgehHdU4RdQjbU^H4(0C85plq+R
z0oKd}myH5@i56c#8V#fFXbWw4W<cD4s{0u-jrWfCZ!k^>BAiIr3hOD@{xU-TGq*x0
z2kXZ`q)AbdlsqHsiV=~!_&Ow?L6c&yei(Ng_)4(PyKPz5*8&VUCn<sR9NZl)RyJ6>
zpM{7$Wv`H4yweHhjL!g$8zO-pRjr%gB?!{%bC#RoqC*hOo^rm2Vp{Hxe6pc?R31ZU
zgD+IHNTUv_{TYkvgWPuHkp8D3<dl!EU=JN#YPihHubwv~5)zm0#=?*;h2UJs*!eO1
zoqzBY2B$W66;-O(zzK+=*?%1gQ=&AFq_FZSfu2<IYle|`CN`N1)Yi2$)B)`{BQEm%
z@Ew`%&KdtDtufC5PMpGfLgpb?SCx*QZgzx~pdFa-5}zRoD~Wh4@wE^74r6;tV>1>A
zMOXFrsOUbRO8LsSV6%xjj&Q0spTgQj0y@8qwIC$0mc$<0=e4&8fLgH_@SJf$)UZe^
zmZ0&SNUoRFyPtK-Oeps1{8ZOa)%kebxjVc;iVrmJ2a96Ufm4#ZwvuQfnB^M>YT#=>
zfmUW1U#Joz&=hYQ#&;3J3T6jBR0C;M4G+&*tPAdk)}fI#1-kw#ry`!uD@xHib3w5n
zuW2Se<YH9y;BO6jAOE_p6qw$nC1x6b=+TX1-s|RC!A%>rsvq;~02;^$%L1Y(a$5;N
zKR*4nG87H`NJIaN$?eF0UOv%l++~m{RRQE|GmQDH)K2!JOP2m;BsZMTGV&iJmluoV
z0$3P>`;0C82nO#aHr)4?sCo%(S&|AImbK1Fba#yP7e;`gOv&Ai|4VMXC?tZVF=8X&
z)Wm2>jjRCZOcNe@l#DXSDV!d=`<ce&8-XlcEa+<U*{P9#ll^nk-40%t=jcoC+?%Ob
z?_B*VQ$nPAIlt_m=lL$kXvgt6pq*@+a$nn%lwDVKLuqzb?GdGFF+vaqoJzSQ$Q}An
z8bO+?Z=)zJvdtw}EH6)`9q1v*ifo_$#_$|~s)10CQ{M$m^$5KoU*^~&93(u%p&8O+
zy0ed@`NMMUbW0vr!XS{K{7;0J#07eSeDEJYx7#>T#pitKnjhs~5{g2=w+Rd0>XtG{
zv=F}QMNRDXmI$or*f%__j~G`y9o=(Me&=rejF|L6?xsQ-yOKkI?b<_TPsZM{VThOV
zQxUC`mLB;>&sX0!Zvs!>UpY)t?Fdu!V;!F-EEBD?k&H+yu0u!id;V+FU;^a-P2b%M
zOS>VSBDrfrY3pVb_IYjuG$oe6@)C0WyM{v=c{E4BK>)B@QfFTPn+A}%OB>eZjz3C6
z+IvW!A3A#&Ox-zA%RQhc(^ZOc60_q-jQ8rv=K4=C_oQ2M_lRhOU4~^na{gg?E-;rE
z({SH+`tyIscXvw}NWT0J?%p~m>c0Q~wGbsm327CS2I&SBDd}cO1(sYux<RCLk%mRO
zq<bj|K}lihUQ$ZByU%;QuIv8Z_kDgdXXgCo%sF#r{NtLr##Q;e_x*Xr^Z9&e!b0Wg
zu4>lA2i_|{(7Nq!SB7iz1&kOE-(T_Q4KJ94EvHE<h&dNjpX!VPSFR%G|G0APR#(s%
zUv6yeac6J%5eNR_lrB^-X%|og;LMHfx6@Uwo`!F+noSg>^Xm(T%o3NmFj!l$79L!~
z`3@#iTftzP9DsefR)xJUCfIw@br%~qT|NUB3nk{0oghg8+_~+bR_88vpCclK@1SbP
zjrEN+2VW4_GLAXQtjZ&Y&Ia9TfvUZ=TMXgx(C7ZrGWBTkNIQj||2`<|jZ_;KbD0NO
zrfPkXtv}OuSZWM3bf9vS8QyGpO$53}U2Q}Y9Pj$szuNc?I66dg8i*Uf@?qdqzy^|l
z0VfEMdfiU}sdw`R=2VqvSF-VVn%rxW_J=lXr(8l~7~_#{9{=OgEyyV#;zx-@Q@c4u
zU?38K*RF5uIhGZ)3m?+>HzQlP(7<42rE&6ZW{jggzKKu3y)oR;ZRL}jU@*IF@n|;~
zyHMsznN~N!U#xs&iE3tZ$uj#nZbI3<hAEaWEWmXn#CGql<ofcuS<JHn^Q>AF>TRXo
zgBPY~%}ltQO$-(ma!;bNHDgGFSf34qhCF)a188jKh~KwrkK}=dK5q}6|1Ih<E=sF|
z{mn@yTC<0a1^MRW<BK*{w-lOZ`E*E}7mjQ&IbKwet^G%AooI82a)Lg^=>&8H<HckK
z#F~TsGEam2W-2!drt@_9^g?Yu>ZL=ea8XkQj5GIAmXr11>&D9j(>g{%4->?>rcu(6
z9fZWzNmV}8q@xIzTJxTqMe5FE8e$Cb)FGWePQzEdZIwqmJ>pBc%q++N2DR-=CJ!vk
z3v>pE8Dtsoh9s9<bZbuvuiYm-P`;JjgXEZ4crb367Wy}j7plcf;Z=|xPgT<Hi_oyM
z)-(@Tcn(Mahh*fcd4$A}Rtv-X8N=hefq2(TE2pLv^UHCDR&?-}Jcl?X!q3nI*S{dF
zB(NLpTay;7ZH8PSRvdykmQDECcq*$Py;f2w)E`>qiswgG6TT$sm4<{>{;tz&z+(0A
zha8wgF8Tns(QHffGH`f?^m*h53SLO1z~y;Y)wEhHcD1_ekS$^{f7y=Ki`8HR=#2Kc
zS*q4#z_u7nO34MrnS(4}bPP6l=gM3$i@_<lGEjD}r~rp5!pq|Wgs!%>&dBF8V9ZFi
zK9-A$EuJLC1u$3ff&xDJZ{4yb0qMxQJWRUkLxkELb%`n{?SqX^=kRYIDKB^S`OzTE
zrMxWj+EDQCQj4ou{;@wa^YxwFJg)1{zOs`YwZ#}UPx+dBW9?#8jx*kW@WbHvG*Pcl
zfGuevK}7$-(O{k;VS+>NvI^&O#2o<M(@lZ8e679a60~NiHDq@$MIq|OTj4*exQKtV
z=PKHBLeVsa;=0!sK;W+j>pOe1sy7iQ)2u2AxYnC1WZV&8zy|W!d46-USs2x9ABbqU
zqyua29<b*6RDUlm?k&_-WH2{~sgrul8+-u|U2v-B7>F;#3F|FHdsa4Cdg5ZH_FLvA
z=mPDa#0a){Ho>D}hdf@0v$q?6uo6xOo5VSW)XSss+j<eN`a5w}9>m#BBTT6nuf=~p
zkg;^Ft?Qd(vUl)8nu63FjX;52_1qw6)+)xGTVzKrh8L~wcAbH4m?q-ely+B-WBUA)
zw9mKozt-{0?(V%bwp*`44Ci{-1JH3Ho{xy7ETC(_C`vxa)vFy^h5r`9AS>IV|J)9l
zQ`#@tXg{4Ysw2)Pkuex|ZfQnZpYo}02CnsFa^+jJ{Xg#9q-Z3hZ!Ej#cWxPz6IGd%
zn8!@ISTX&ke9xUK7apGWah|I3;E(wimcNV+F>e^1g^{3FD)+PsNviN_PEu~AF4%n6
zuAEH>pCDfAEwKODr&hgk&uaZGz@r-lAo!=fIq=LWf!-;$c=U6!g54ZwwBbEh06i2-
zum|Z;&?ujy^~yzhq6rMiR@MPS929Ox)7*PG$W09)EAhZ>PTQ&Xo9Ww#4|dt`L}=MQ
z33br}@@C?wkK;b{_;@B5ghrUIR!_$w({Q<<dl$8;{ocx4pmyR-QydWtw`)IPBjFpc
z=E~)NgF7)X*jPlHbq88nKB|6eB5C{+<=_7-wDqBVOzZbw4mMf&tpTcIn5Bit3giIn
z3$}~T%!J?1H5PN>VGVa=x)XDu>Kz+`pi24qIp-!DyJyoNllT3X0P;m##mT800onnW
zQJ>Lv6)1F6jL;_=YkY~9Hgl?Q5CCrE^?8{TD%E_AF5b#_rL(f2{O2#5wYA#SEsa6!
z+s`34TSdzr&sx7hD^PoJ%5@L`-F^?Ay{Qle&|Cnh5c@AUxhHuNlz{nPG3kvJx=(3P
zFni`04D4ooyA8hHZ=V8&v0Mvs9K<>dW~$5u-F4=ziJ>l&GN?4FxRq46!hEB%Kc76n
zQ!FGuH5~dl_;OcuMx&N7PaD@2+{Vv~`FE8ouRRN91%5ky;?G{?udB}rF8qYf4}t_W
z2h8#y2aS(en(;B<9acI4Z|%zXe6WlmPE8?s)^M2mXp~{WdwaY+uYxJfU>T62@%i&B
z=pvngcQ}~Ze&ej=FKabW&Rq74XrxIU8_}PDQ30s;ZD_+V4qf)Q4@oufY9eblPZvmA
z&QrcFs{ncNz2}X}M5oBdRzI^}iQ2LimN7F#exB5sHoZ<}nxAq?mX0UfBK*|oO-lzF
zE(`B`^4DlP1-i-N2wb{+pEyG@Ux3JDAWB-mz8S7y7cb=fmcroyAb8;>yFY3Uu{USl
zU}MxwW@l|<3o0lz0~Xx@j-Bnb^y_RZTy$X1vTvDq!p<f2Q*%hhG0_9{uBAbE@NPLn
zP#2QSw4#}nNthm?KQh+#J0{)+@Vyb#Y6xqc7VUCvE@9x)5>UUA(P^0IdIF=-O<}tW
zT8qGFdn;j}Uh#4)J=_qlQ`L)%^<ffT+)M8CD-d~aL0YHnF8mAh5<+i}a{lGeO-p^6
z)3Q!TBWPM-R;l?#(f8L=@YMWgFknZ~W6+A+zv8G+NFtOd;FfnnA8b3RvG(f5fM$#K
zXYK=9kYCWsem(51YDd=l^i?9U2Y`rG?a#w~o)5IY%*Sa5?SM0N>mO%sI#9n)sa!I#
zv2fJrc!Ev@d@J`3<j{2rb?k8%Q^H^0!eEt=3Hd@R6Yf*(M79f-0CU>MlsmzoStQWO
zjnkmR<d*|eE~woZwJVJX3Z`uz4}Zkv%QLII30I-1S-IUYv44JI)O2G8bQ#X;)#+1*
z`v$QZGele0Fb|OC8>`3U$6p$B^CITFg~lpWxDT~~sfj-ypEnl#)NkOgTo^|%n>{l3
zwQcgBTN?(oQg>)QQpa$nDH+T}0g8CM+o?co3Q;l*0&@sgyuhP0!Y3VYvg$-eCzD)B
z6LwnmCgj}&8$C9&v0P}gH_2_3^WpuD^YfJA{3QnP%~dp3b*8UAs4Ro=WvUw314AUM
z#|>@gUZw*u=msGZDVgp`?c5k2F1vpHnB{FTFU-(Ko;>ueEzr?{vO1wMQxS0PXDI+v
z2+aIBRifiAEQZ(I+>T>G0S_Pepg>m!pHFko-{&5h*)Uojy%-oyGma-78dwjWpHI;c
zVz0JtK`wS063^44I)LT|U<{X)Vzv@${NthGxOSRFDtZLe(KSUGML!VyssNz4s2lMf
z%8&_z&nMqJzx7b~Qv!(~YGY}~fRPbQ+%H^c&r}v`Oc2(fm_j5mzd$Gum3&>u;@0Wp
zVVi#H+ig*BqfLh2VL0X&`d)+HFXgp|Igr$L@J|+u<aya=h6W8DLes;#!Rt9Lfz%S<
zF|WHN?YPJM!uoStx<d{C-2&sqC0*6&933jyB@zFwN`e)w!0p`h6y<y8(qbgwftvWp
z@8)PISh=jTFC~^2s=!nOpa=z0m5cJEGv^Ow*N1{9qK8iSl5I|(wp+yf_zs+%rV$NB
z(Ab}l13&?WSAVAaiG*MsA43q!&oNc;e?frL{~H2)?v~IXGogW}?Q9j4u)qYeV!ft|
zSC7E_S^aW@rNPw;Z22k_<z$HeGU6J<MHh7F@v(R2sD%mB!!6@uDIy^u#D9#8m>E>{
z%54Amb4X<mEJg;6VRM|BY%oI61tM}eG~CXf^h&<nb-v*5+SFlLstlkR7}s;BkcK~N
zLZfC^zzBZzVoRXN(s+e|7eavm$A=gDisl7#6A5@bO1#3!@H34MG6_OG^>73$2=l#g
zT$ftNh43HTJYJY3Levhm8%Y5+RXPrr09`0mTJS+=DKfv5bF+Sw{2|JQlO0W6#d><=
zRQ1P-3!abWAEu;daCP7w%kvC7z$cW<Q1XGq1LU55{>+YXcywVqQncQi^SS>`F1V-L
zpCBM#Lu?dq_eJTiCjroVTWCt^lLufCT3yJUXsi6kd0QR}#c<{piNGz`4)79XWbE(-
z+=34Wer+*yLqFf>AtRv0T5E|UVow;XM~Ssqg*h%&{~&AQ1D=e+KY&CXz?ld~LZy2*
z?|^|ESU8>#_x5FUA(fKa?^(?OkKJF`YRR8S^vQm_<l*SpCs<r+Y9Dutbx2ZPyx{E1
z76A}M$D-qsUYJ`pjquPiFuPBZSZ!^l9}kYE^`g-HCzy{jiR)F&urtg6!NxAXZs?=i
zHaqrdCw}Vr9J|x)wMi@vF~9`c_M8FrXiL=1*ZK!k+QC>-j7L0OndVDN9xegge_L<M
z>aNs&167wAh2IyL0wT$=@#%qJI_u0ixLt`J2WidHy+E*$3f?9R@PlHDo-}o=d^!)R
z|18>*SJDc`ik9oQs=K{*vI>oeMgdlhz$I2bw)GRWxa|*@!D|>SheLfT&>A9lf<kL<
zmfn2-9xCqBQac7f7(IrG<~q{jVP%`5o+6JzSOIZYl#E!Pu$?3ZA-B!PSM@pB63m}!
z8JY7rxvUgl<SZ&xJ$c2d3)4=LWJ*c9+{FU%TR!4Ohh(u6S#55!(LIHuIi{~%^+3vu
zG5w%N-oTH~;wP^5zuu}{o<K1Y{y&~u$K#br^3!EWyR_6TaG8O8Um=S4=6h;@b~$~w
zZ$lj<lxfo2Wf<UWh3*DY&|&<x0Gt|}sWTuWAAtgY%j0p2nChyU7hJ}xV7rxQL<mBy
zPRgi5s;DCnRBtlx;?j<m(bMS*gj_A)3T(B`Y1qDHC60kjY%!XmasBN(Pf~I&H;Q{4
zZq-k$gCfBvS^pfW!+n~jH;gt@F*X^m4pp8Ls-%&n0!eb^3uo^*tyUV)t7DE?UenOS
zTvfsV2WUn87@{5^o6PjiRSQlYk=}=RmbC1-<OY>Qr9DV=mKnG0Sru_@@d5~teH;$S
z1lYGYke;!w!y()Y=2kdr>Krye++h42)MF17bkB~@?nELj7J2Tw*~UZ>yd1F+MwyOe
z+W2E;S|Q3uy_L!$-VkU1g*-6xx4W341?OdGcr-qq-Rv}wQ_#zH_>CQ5XkgY-=^9x3
zwitioH!Vp2xi+l73=)5&TnVYfn5V2700NH+W3bNiA6p$HB@-uB2$}9%s0dDne+}7?
z^IwF~p)NdISxbeNsgjZ_fSh#uy2tc>LKOfhG3>V01pe-8L88aPM8BQ)c^`Uj4^dHO
zzXO1$QO>i4Y7&jWr3k!_(D75m2dQj$IAD}z##y{gFWaq-W0!n`(~7j{-GN2E42Z=V
zb~vciUN<c8N~0-T9yI_WX0qr!n#%9NOVg}&RMi`yCQLsQh754b&TV#I?tMSlBj`;H
zfOdT_W}`3{wb{U8dWY$t`?`_*Nqhz8ImtH{`2)yjiwlH?vrN(5m1d_@RYeA8GoT$V
zD1VR!fXF`^dfO<$J9v*fS~jBOk?X)4G${D&<09OReTfF%RetF}HP#id*yQgK)sTUS
z3)qA`lCL5B+Dh`JxO)_O^!|my7q`fy$?M>H6k1cvX+laAvKd3WZX+`ipwhQ8=+5?U
zl{NlAg1lyN`c8MRf-Cu^aaesYraG`T0E&;`m}lN+wwFZ)OE5Hi2qasSc3+{ZqwD_(
zP}!t^yKg<$zPK9gl6smks+HJ>=o4$O3Q-9LR{<k*6%6{1_cl1{%3s!7enc0}GwJ&8
z7Rq40%|WBWIsO0`8|-HYTfM#*TsZ(xSCG=cSN|BcrVe`8(h2|Hj_RdF=^}!mrE80{
z0)KgKv)5sy8E>mN9(|?+avO<28M)~*R<gfMx3Hxp%G^62T2&Gp#+Q?Ih9uL7Z2eQI
z{tPdU-k^g*G=3de75FuhK1b7m3~R|oChyn#9gKe)ZUKn+FT*XF7Wr%^N3`3+Zi2$P
zHJg-&LnDS{x&;}aK-(>t-)F$5<wh3g3Vlz@PX^pATK>bpr06ahoJ*6JC2L<_qu;0(
zfEfiy!nZSEJ;gFcUsSJP`p&zW<Djf*G4Q+SSaG5>>q<VvI?fja1MXfk>qp!;V@JlV
zp<#*8(;m&b?|=t1%D;ogB_pwV7-%M~?{{m>v@>2pJaOk3&+BOiqvi8Hr+l_Q9j9Z3
zbMtLL?rt17+#u{X#}8rM=M_OHWJ%pQymw#}c;fQI;2)<gdyNh&4JTkC?jICVZ-6cF
zks<HiCBz5_!E49xs-#4t-c?ArVn~4gA(-J(mu1gn(QU5wj7IINbGw65SSZuCiJ9u*
zw(*76+yA(1#URcPCjF$ySm*o{XjpT1TDgv@wH8mg3en6ZSr50tiq&Hz{}1%WwHe}U
zoP9MWRF^CfUFv2^aGOb|v~ov?HkhYi*q3<K4l}E!l$daRjYhZTXe8~T>Z!C#VLKxp
z`k%rYVvg!ue}?Y<Cc6kIJqs2ZHI{hiYKjKiHe!A;eTqgME=t9UQseWsN7An6_^jhM
z5$pFlKKZLGHL)Y8FE`Hti6AMYizO-&qvxyb%Y08Td*gV^bR(GL=})un1s1+~O+98C
zPk<Hk8qP|Y(p7fUFFi1ht#TQt9DH_496P1C1|N#Pb*EID4_S+1v0nu1FO6)|X&>$5
z{lps$_eeP$Dx7})f;E0oYSFW;p%VXPx}K#S7^<S~%z{6Skh2Mjc8K>l@cebg51Y6v
zis-6ut^>e7P*1?W^&Nv;2YriFIUrOi8YOXhv7H?F4?CKhinWT(%puuk1@1fUzBuKl
zTwFdr()Pz)E0RD|&8A`J4y>0wNHLVDQxo~${60|RvU`p;F+=hXS%JSc1+a*FkdyTn
zpfA^UE=jDOKwIC!xpY#j5aK;`4vB5O|A#Hyl@r2;x|k;0zk)SvAM%3J@5w5BJR{av
z(W6#tvDUGnO*~5Ll1dTbN{oBa`=IPAj$|pg(f)vV#B%j^ppSK+f-PC-dYoY?73^T1
z;S?U(T1An5in}ElGF*2?+9|<pCZ_xag{<|u4g_Io?MT}p*A{LUih*%`n_br(aK04&
zG>*4mAPUJD35J&SEp!*2^%7?cE%MJ1QoBGO7OuFnmc%|Rmu+K<XDb730k^5ei0utK
z_f>Fl5?|&P44aL}(G@|Q>2uM0wLpS(Onny>`jnQ6bvzo%9ht9v<I`gj#pIKbr(^z)
ztC)vnzBGNT9x8uqjI<nnf=o8!m14DYFsxH=en)4F{`9(^iOKTT*@mBZ{4iFi9i0!i
z?bW6qlVT1ueZ$K{vBh5kBO!eGBK7>MZ-1pYXPKEJZWZTR_jbx;O5Lkv5fol5haOD(
z;n<<T`V&0$^(baKA3m?F?D4aZ6gNiQza6&>4m}Wz<2EWDK{Q1vdx>#AfzGy7lU3bh
zqKu&PiHW(8-2#OjgK?Wu$;pATj<Zs-b80&>w-%Y9{f(B-X7b0$bt{YxANV4{#fjs9
zZv2#AknMvM`t*<6R&TtY0l00wSxObB+5tkgBy}L~%rQ9IkTv7E%FYKM$9X+DlY}hn
zgFhLl$i7MGBB<v@JdN$WkdGJJZO8Nps4Rakyj<ez>aiEpY0Pz=H8<bm7<xv?^sT8$
zn-By|fp;4SsnF~XG5WG%x_jl_wd<M;CaAar@ILO$RVbtCu<|PSP&SLI(U$eAd)>e?
z#_BO%P2fX+26$6S6MOz(?V$QWV{~|Ih=ao*{WY*sD2Q`<U1XS`mK<A3`I2%&K+|g9
zYu<sx?WjG^eqI>+d6MFd5~-HUrAa=!@&!s$LJyQJS~+d!KyYZpf6F52J~e_mvIQD6
zuNnd(e?p(~dX!UbLtmpm4Ml1dk29L>AP_OZaor$q{0%bfqna4mp~UsU3<i7Pv{lt>
zB&g!$6{R0Wl>hkd=zaKumR5tjKF!I|?T|)<^}2L*>(8&ZeTeu!gZY9UYkGbAW6h-}
zN+6D0hS$EZ%(rk|YEtRK^evcjWVEtG4VPKdXlhcv-j=2fcF9AHqqfdl<RmrSkOf$Z
zN$q84zwGMYS=V{)3t7HFc-KRvg=#wioK6LbCS=YZ{n*Fty?G(gO0HF?z^P9k<wU88
z?FVRckSKfXY<u+o!eguPV}S)m{ZsdFqpU5&o24$;slvHr5Vn#JXmV%>bTQGiOV@K1
zsBoTyQHwu6+s9C~Y5kY#L1oQ&i2aXCAIzoNVbl&gV4Dg2wM7-S!!%^$tl&=INs!Wi
zSDW)*N#@LyBkYtV;iy@IqAunYmh2Mn*v1Ck;WPz6Az91S4Ckk8ndcig+1}sR4<lB8
z+(s^!nyX70zZf`)i6=!Zi+F^DMQ#yd4v(QCVsf4GPQ!;&vaO#?2PMRlYMC@r+!#@W
z<Nx?<Wq{8XN>R*JbqtgC&=NmI^yEB_o9zK{O`3aikcw|QwlV<9sC{ibC9(VW%w+y<
zX+nAva$)xVa~9Z#V5t*v%BMSWlXGWDHUp_D^;W#>$+grx51T*$xB{88+nv6);#&U2
zN;UO@vIoonrv|C~{FvGgdS6;Aa}5Bs+d*U!*V#4@#u|d*0gy!{fZV^alJ*pm$0xDH
z4d^}+({lw)Pr+y5K!v4U?>-42&L5UX;ht}Jt@54ter|nW_h&Z)wG_;?z!c3zv*Xt%
z8ix(ImDvNIf%?T$63-5ZxD+@=^?8#Hz_<|TwO<Lx5-xJkJc<+>R_3~624yj4*h$)v
z)iAt98J4gWi&<lE+&pSobK5x{umF!wz~#c|grxe%vLX5XiX<p%TISmEuiL?~Dh)>b
z5xiW+Xva#>x5ll*g)RZK+}UhxIxaclt3AFx)A(yJ@QkR7-rIctja64Mov^NWY5Uj)
z{mN44#MbS)`$=QHHXknil{OGsr=S<N*P`VxpZ!d69k@@!QaWR%wf0;ry*fx&>}Tt+
zc`@%H&PRXNQ&D-3Z??*%Wb-L1S@W>zayl0dSelymw$QsIZvG;f#W`Lw2W#=;RG_zB
zQWqcZI~wj6LQJpIX8v@d0c*X}i>j=Sjo>7sI2n-IL-@2_9=Cpw?Ub#?<sr$v!MInA
zPeguTrY#`E;S^0=s#8q$Tt$ZOVf7nuSX=nAf;}f(2k-HG;b9}haBPLo&{e#j)Bwd4
zvg4al9tu%YO8fm4f1g!*=M;z#S9U)pLQz*smiJy_p`M`b?JOBFY3r9v@4ty0u#DJB
z1>FnDZM}dYb;-+YEVsT*Kt%DZ9_KZ)#l`A@cXV^16j7VEcroXx%hWP3BHDT`9EWwB
z57BiuGovF`(nbu9v<DF_&Ms~c_Ag@?!F%kCu?%~S0c)8ImL4D5XUgabY5`AmvrDj+
ztbH>_x<3{MYL@-+phP!D4`8^JI{jm~1qyjB^_|S8+C(#8)!o_N2OpX>HSCdnI=O}+
z*=KA{#kNFQjtfHqpcR--HfVfaDHw2oH|XTPSM3NloWF~)3m-Vn?SgESjA4W!Z#W*1
zujrQ~LB&rseV%Z9SzH3*z*~lmwa%ME;uHR|De)M~t;^}jT~f9ow7B&XXPLhypI+I>
z0O)|gOO;i~fh|IyV28pHuzml_bIZv8m*@5u7~WWvX9?nk2ayk``30T&M%=~Eu@PQ_
zSVk(~?TqJ{kp9tOZGT6$OBdBj=sFhl7T#0UiK)rD@=21z{)SV2E6W@#pb+i^!Ux){
ze?`qOhT_LyW@q2xfAv=9Ot#`YwFFb7mtpYgPn`jT9>jZkXW`-QX%byXz#0ypyVOR)
z4m4WJlZCYp%%NyJPU+ibZNC{gxKRgW6Q3WmX_#S&b#%~<aY<>Iu-?p+i!WFQ`v6`Z
z%+hvHh*EWc3t+MjVft-&3XCv~48DVqPB^hH-%c}=qwwhFRQ2Jzg&v*9AAuMc;+;Pf
znGEQ!(oxXUvPK}$EONNOG)n(z!3A5#TvPN#vxKH+QwMO(XaWOn)gJ@y0mIH}xaNv2
z84ixM8{y)DVgIpxC3r)yNP%`ye12;~h7dS6<?<nw`nDfOUGhLokI!(Lo@DbND2mlt
z|J{7M`mBR|A}i}n@{l_d_}Th=$Xf9PJACXAzZR#Jb8u#R$!U~PBUR|z@yih=K6;Gw
zSJeJAt6-iqAIZ$-d<L8p!OZSF60cg2A@-%AP7Grvzghmnf$Qz&k^_D;|L(t~t#56R
zohZ7UT>PxGC^4x^N8nJC?2iF=oS>LsDU1eX3O($eT85twV1rPDzx~jaJzvj$u?CxH
zP(M|Fdkpt}ep?NUkw`(v@YPNp<6$b64GH6)O>K%}pYIMWtc%*66o|}-hO>Wj(yEz#
zJKN}oGwi%MW2~7bd?hJ&@(j1)Bl(0T>$qW+$@0#Sz5e^}w{6D|W5dh0ugM#a|J+w7
z3ek1ZPTB<lC&k3EpD!Neo4#G{a5^_4fREdqnG_|yO)9+%Us(50E`8gMlmBJV4Y$7R
zQMb368kqAX=;fIV%|?#f|G@U?!d_7Xb4dV}W<(t@^bPnu@IEn$JqEXAfsLB$a5Zjx
zkJk4`X__T4`|Rw5_zxO7WGNYIi30~&1~p^CfXR)@YYHaR-+&AmBA8NoZvD$|TavmI
z)V65ltHv@s_2~>l=gz!U$0$E?DT$+Nwq{uw?<?TsL5E64e0w4dT!Hm}+_s)?H07K6
z`VS}5NUPI-63R)l7os>;HK`=^Zi#{IXMmI);kZK8vpQ`d+7^?3^V)e$$gfSZZ&Z0y
zichgH>xR(GmN*Bv)1|!8#fC3XLo2ZGp5mH-;Sg+nWrUDPDJJjc7;#~#gg~a!8rb9g
z4f6GM8k1EsYxunfrZ5K$-MM^h9orw3zl>YDHG!E^Lq0S}S7B}ljHRwKk<H!&Gvo0Q
z4uee~^ysVG4@vU6SH%<Gx@!pidgj0aVX_>kpl!(%5SO>F@p#0{bC~e>VaXaP&<-*{
z%Ps&LoHWWC=;zkCHIbEM{9%^iqVAIm>uhW+J*Wo9qtSMtckNC@H2_7bT&=LXG|awY
zfXJaISsb{sfL1MiwS~6=|9~dFI`i9-<#yk_YOw6pud)9&jJ_k=)rB3S0pQcUQ%n9z
ziDJ60b6FW_oXM2c<0H}v?wMcxyW_@=cZMkU#HHV6@#)uRq_wMzC@;KS8RUQK;zp~f
z38s;UhvDF4gmkfOZ<T!25q^c*P@zrL%=D(5fjE7w1;RO1vs7x+#YEskkV$I3tbR<h
z@qQg>JYuHmrNihaHQh;<N_QMj(_I8sw)TDv_&M*X+x+^=ddp$Jyz`&d+qf4)z<3ci
zu7Ap2dq`5VEY5f%%;ffS;gg<ck{KKg1s**u-F{lhNq5hcD#QD5jd7+y#ZC3?H(1*;
z&=}o4@zc;y3toBjXKO(LR(CF$>5IJ@JpckfOyZ&<8I}R{zs%xyI*3(w3o~?~WwalF
zOu7!v*@un3r>bD{0+N6%0u*208w|vC#D4yCHT_QfMQs<i(THT4uw>)~X;#ioQB(G3
zZ40Q-CEVT6iTnNczIl}<WQPCWp6NgLKIYHI{A%-?);SU3^?qT0o#F<FBCwoW=GvpW
z-3Oe5ceP?}{KV9Y|N3P}<Kj&CA)kr8)AD%&K*=htiyD)g1-&YV!bAH1{FDCq>@Cz>
zR%m_0Ev$<6T0fF%j6q8H<H7HBi@n_)IJ26!HN51U@0{e{J{t(ae<V7l?{AvLvCbc*
zP6f64{y?TkEe|T#Ip;_T@%{73n7{Se&Ji$mas5;r-F$&T+5(_C(Oqlh|HR3%dUVF0
z929w%<NYxrQa>0o$-n!^i0CdCGaRG7`qwWGK@`T<wpr|K@O3<d5B#yl9Z1PjIpfpi
z%IS;$c2;s!Cs}*3C0`^P@L+)t#{NHfJpX@YGyR*9_&*M1c;^3SaI*jJ*pfpC5c+Dm
z()F&}k>)42H)#Ll4F1bS-it~-f}(-b-J+KJCoUO>#&}qz9mju>fDP1J=unssAZX+Z
z82g&>uiyRGe{dvYOy>@zO{t>~#{T>NmCOb}byZ*|X$?G;dep+o&naL2mpOc?MN_W?
z7AKv(-u-l81TOkh_-glmnAbrfEGN$n>$ucS{6zf!u*%=rdtvDh;mhc$Of{?QDW4?g
z7@}5~E_0FSFl_*-C!gNh0u~jBNj<;-WaaK^2_@}wNZr#=7s27_0|`d1xX-q;0s~v0
zkv#@LgIVCrtpV8!y~J2pv3;fg{0u1U7N(ZG&C=#<voyVHQA52#?{4}^B}qj>rLUWu
zYN+XwEeg~QLl)l-O4*DNj_+c4x!8#=55*&+U=|i6hkT&@;*iRoj!7o^nga|!9(7o$
zt^**np;@|Tawq_hb1gdtmwmIe>+SJ{oS%7}H^qdU&s3Lr+`$)kly`TdajV2xWLV_E
zRQ;6LMS{Y5AijvGL`32|h{m?6@F;gjMg5pzIjjQ(^hJ5zMTi^kr9ejH*@0)9KmB6f
z^+FJpa57?5vs=dRF-&clRGPVcp6PVSvy1Mw*b`vOwA0XB?Rybc<#PWUF2=L}BIIGx
z*bPJgHgSK>92M93EBZy*?N46;&uCwNDh;s6xT|=*J}-Gf754$d>;m}yYlEpk5cHbJ
zqy?Q_kpuo2Fe+ooUnQ(T7*@1?=T)z&u6U#bFl(=Q>uL+8uUk<_)Nc`8-rzD~6?T7c
z8kF$n{}Pic@o$)1%^I~KmYcl~kFyQ6GOkL$oYfzV8p+*dIo%OLucJC#%B))p-@+;7
z<t#qU(-V?@ZTWWIHTa-x!2L8(ix!sIHTZ2K#Z;4q1?N~){(8)OhBeO}jm^Z+dV!40
zEOI6l%;6>0!8<M~;#exiBNR`H@Be;rq&a-ZGD|h^;W2&J=pf_9der>Q{e!M`rTM66
z4CQq)ul{F(-H@+l<>C_2P+z7`q6+!Jg8&inNs_%g<gHtuuSt#<H;(Y1b#<F=Gpa?4
zzBM-&s9P;`2r)Sl0zZbEsc|!~^B8*LR4|GrG@~^Ra;Tl;_)dvaU`?ExoxKQnb5}iT
zY7GPPL-`TZ{lHC3a!0%Jw*Wo8G~F*hNBXG%Ku>vIC9XEnwJ}*$D?jVeifp&mp9#yF
z`mEJ-kTv@COXHyux5WL@x`y(iq4Sr!@&tO0L1R_-xOD>~(*Jy;#yCyd=?r@fA&GsB
z7r%b%t*f>Pn!p(w#oD_!o>x{8-qZNl6SpWVfpecR)%`AH>?kyf8kRCS^>D8!Tg4PT
z$oZt8DAorxCFct8&I85y5-Yyz$v?J=Vncb~^IMr{SALGB9{OYvST?u#keq~de03kb
zC<tOjgSP{(Sy4*XT$a38>jyX#H}WE(DQ#yNm#aNm&t9YB=kAoOsic9Du`5Unr0rz!
ze15MJ2es|8Al$^;)ZAYtB(%{wZcHG(!(;c6otv}laovXK!}jIX>pg#Nkiz?1jHs!|
zrnGgj;A-d&Efj~OQCK#Pm_=rG!y)O-4ZIY3emsHz+NV#)#Dpuz^-;xO-<WP+JftUD
ztC;+vSHJrAB*4e8B%TAF0Q`RgDQp!gabartxWzf%+u8=7;_b^XfM@!^R6`gXSDm4x
zXvhIz1><puy8W(v(lzru|Ma7tmcRQ5_zI6n6bfq9hLXD9<<@1~h;=zS@C=&WTS|FS
zSj>-qxV#5&)&t#u0Xe|v0_Yb554!;G8C<fM@3Nzj3`kgP_`Mbe+v(#=5@_2b*KN%8
zkcxOGvWkM!8`O*&pUimbyqX(MJOJ0j!Gcq_f;G75njD3+=-HOdDYO&&xJ)6FY1foE
z>N75jb8?ptmJ>>C)es7tB|@kl2yWX$ypHD;Pf+a4he&0;ftU~ua#W~Sy5rc!r=tQM
zqfA+~tedxfE)JLl?$v_DHkm4LsmoyC3>jLl(UqShQUxM_8vsW6`U64=3$AB8P*VF#
zQ7I>TahbfImWFk_O`6!jg*PGDL}K-OZSc_*RTW`fcA^V@H5UGb@`NG_^yNH+>8@L|
zmCh%uKZzsf_f=b)0quZiF7e%D8i%Y`b!WcP-Gwo8Vwun0Tn%>94B2>LunMCO(fTGw
z2KHH>V`m+C@PE2MQlM&P0@}Zl5&Z%Vx&y~|QCpuMneAU=12cn&!p|O@Iuzo=fOyEd
z96weA-ZS1o{$E;N(e2f4`)GYfW-tSOH9f}d-p5k1_OtDw@|jE!6cnFG950YGw9VM&
zo5czO1y>|Qzc~gA#_S-b4C?E<TE>|j#dvt?JR5wy8o1g#ul56;7GmREiJQgBk8MR}
zoo-QgChZ+2kfp>}rh0AklS0S}#4t<c<w|a-a?jfrk!n%&1}ulApVPAJo>4zN0}(Gr
zEVwRnbB8i3?Y~MsM?8DZv1$zB>f}*L#bTp*Aau*v4mG(bwBQiV(inAU_%`^PWEV0w
z1-nwuDb=aG+y^KpKR=>g*@Vjo4eqVTgi?C=LZvnS{izX!N~C^ORYt6@QhIyT`-OD8
zXGfUxQX@;*{MG3w1kX$~fx*LcZhZ6LW=i__<vbJ0nN$Cf#n~%{1iFd-+zL&4UTVsu
z{slZdqec!)EfPQ_Arya<y>L5!)lV~)FXYiukDZKDPyBewl39z5=o`lT!k;zxOV10_
zfT{R4f#XLaV%??FH3e^M2(ze@+@=0h^gt1q<jMx^)I9GVzFOG@n5So%;>|j4mIyY)
zGqkaavKRr074TCnugGXS(>G9h0Iy(d%yf?!q6|77%DbxOoN1OQ6r;O}H$^}b)~2$!
zC(Nkqu`}PkPuYS^K#eYk3R5rq?3;7hKsY%azRZoedGjWSes^F#Tnp7-wi>n>O|D@%
z9o?qnms{c)Y`A~Z3f$nCRU1?yi3%f<TCq+`G9W>B;|@m%O(me5FR{bMkJtPUp{6Ph
z6&3ymGc2tk6T?&904*XR9s0y}LSD;T;Pn1^&jG;@w&e<gub2c46&_Nabie6)>;69e
zTF@fLe6W7JP1RQiC6_Aq#d7?~+|JJHgPK5X_d8KQL&se%d#83}6`v}A;^EfrN$V4#
zAV5xCBFI{w@&LrSB+Fha6TpG0@hAr0eCxLEFZk___i`D6dqD760^iqgp9ppbiH@@I
zmmc1GOPrz)h^EegnRjScl0nw?%eOd)V>`g7W{T-K?z`V-Sl&IhnXFN$ikvbnXZgo=
zE{U<7FSYNBJ39J0?tyrz_ZNVpmta5?($zJ{3Zg<)u`|d5ehafv*nVVmVm`N%k;!ww
zSLZ!ArPdxzx|joeXK+rnOe<KYr(evNE*l$~xrApA4Q<nxu$*kB2H9Bpc$<@p^?zsD
zDxMYT4IK8RixpW7D`)FAZx@-CWiZuv6n9h7kt8=;$Q*@_wss`Z=qr$S$?rduwZBd+
zDcTwZ7OTrCnnPvg35~0%(&a|zhtPnM&L{g@&l06&>yMT5Pp!pl?mI=RAI(QN&|68h
zKdw_~E7ufVfuxR$gu9dlNl6cC<TNF+EcaPl0@9H=>-udk0$$9KZZUXnEOX+~0eATZ
z-nhl$0^yZ7^nio1k^;!dg+TGRN*(AV#xr7X671&x?b?_7BCGya>+5G~HN1%HRh1R8
zWc;o%Oa8tpS?PPuUv3%lfbkXK84kqG0#G^lH%<@com4v|h>TCr-Qe1;spG^qWn3du
zsYr}IAN+~TrBzkmysUnL@`hE?&)u7Q>sPww&!csDFRCcr6pcX<cYJ9sH0nUMT%&t)
z=03_Rb%yiBw9O}u$OFiJ)AKQ0q2Z`Kk2C*|E5s;(GSh!O2Oha*LWPSXt3l0~q4$Zy
zK*rh1h%ErSii*H=16AbYRxvC~Nv`v(0qw}I$ciCkd^Qk^ZEjA7Bhf3*E@}ZKf#ghq
z|7i)g7h#3p&}|SDO8m!{4hW)NfMYfkz`&|4Px<*`HhaMIgRaeZshV9hNQi6+0Ti8$
z%jzL0*TCb14QF%noRSjr#%84g3eUOU)^M5^C$lKD?>ZT~tmlDC<Np>ETBjhpBII9C
zXh%xgt3JE^DR}v~KD+BKE^Du}e(8H5CczHEVHlP#x7#o<VdK*KhXXu>;Q)83sx#_k
z$xXP`4CKM6La2y;Y|P{1`?7(U-y2xy+2n<NrRGL59;Expc_V9<)%A<6!H$donr#;g
z*DYClzvahualgK9mPDBkn9l$j!ZXc^<xe^QM{?6_mA!vKU7(`77Y-d*2Wi8kn>v7`
zah=A_FWtV7lNo<E=i@cRZWp@5zXp=y;>#wgG=~!v73)s?QOHkkaNKqU2ATl4-%Xl(
z6la4x8Ea3#8RdaPoU2@xDyn&5k_$GX%@!mwXKqP0lVuEkO`1QlnPk6+29KMwf7c!m
zcyN<mVg?B#DpPe#8{PT&IIONRXtXhFFG?~HXyX%%K6xxqj*MKwh$JQ7EN!zS5w4yX
z4Ulm6P&QUNm@?h+mCE`Fq4Kpr!Yp~*(yxp^`Hs9UJAHMz3}%PYjma>rhsi?@e)i9+
zsGBxRA(G<U9x%eke6~u4rlvekCsSF4FO7T&cGGc}*Bqs%1hk6vM+B*?!PN_+XRST^
zA#tKbjmS<tqYug$hU>$#tP7Uju2H&~ozNuVPNz8a?zy8)_wEg3IJz8un7+MqZIv?N
zkr~?So7ba{ntOLzf)aZGHx{{8d)VQZtP0|USI!_c1}t^#$r=Fos(|=rx2u_?ncnq6
zVXYzpT2)c5<0W@*+gz^XHqMAG@oHkvgnz({enA0sZNC$HO7aA_-5<R{?`8FSW>0>F
zqzk+On|B}p?0bzqv^*K*5&*&bLvjVmcRc6nIqVVo=+R<Rw9&C3#Z8`a0>+!y=anKU
z&m!1S)O-~pQJi>g?t#vUYp>NF03B97!4@n1xqvn>(>!?)((8E8+kfn@@lc(RP|<Lc
zK=`WO!^#q+1dpeKqId-4t>1Z`L|BNes$_+52%p2ulo8aQ1FZMWF<dTXkSlbOAt=Q>
zIy9Vly7+l0jr20R`=w}qoRP#kPW}pr!d*zS>it*OT;~B18E~Uv!%2_cL!aZ~R@vL$
zxV_>YGNF0l|F$YGjIF~63Wt$kcd+jq;SQ+GXT|kC$iMuUcGW^FtNleezND4CdO<rf
z<rVq;ox2>~2nA8Yjm#5P-Lq?7;$B|%m#)d+e0o`gdG73pZ$=uC1Tha{5mPu}P%=_d
z3!3+5fcyi(3M0xpe>9;_g6L>_1j%Vo-GX+^U#>4CqqrxPyuAD#73v-YoCVX3|CErB
z03H4ct&O!kye{e-f(<zlU)P+10bsBuKMM>PUtBR<m-F2!ce0PH9vHB@;C`pafvFB}
zL2dr(x%j7nf0@?7{NOLsx(LR!?!M^qs7J#U#M8<Pe>7xJ4BQe?{CxCLk(``Fg@P(R
zp+xzAT<eXGKR%@XsbY5Fh*AGP&xT(`Datr3`&Wy{8(73=-_roXsYeMybj4+WWVU!0
zGzCx@$;>!_u>74}yQd|DG(y+*Y)g`HOyXZf2D5tXZaZ^YoS$dvr0IYfzElBDdo<W|
zefT_wL48;{e!lyOYke(a=Sj@;8cef_epLk|K?~^z$QOQTLSElB2_tn^F2VEy6l|;>
zu18D>T?b*@FL0xpr!%!*oSlBXkV)vKc^P?;t+8(;2vdvv`Z(JUi?FmHk|-KF?Xp+4
zVrJQ+Xl+`qb>>tfys|6kQ6@d1o6KoE_u5zYQvN3(L}f`=gY10WKz=5+t`DCJEtAwn
zP2H9DA(ah1o9(M#JWO;<OUgXLFNUJOfPj$FszY(2H``@y=>QByp@W^=Y^Z%-7(q?Q
zcnmd0r-NHu<n5BoL1`jBQvxR8TM0o+MTHZC!A){0p8}#~1-DlZct??tgcVJGt>$y1
zYkGqTc5*I@j+u@vwgSM3e&@|DK|6S;ut#^*&Q1Fc6J^9?Z!hEKA_&JfEEQq`Wg5`x
zf@Ng{c~sA$+8>j<i`eB%23)sl)5MhKj_zpBXYKu&`}|x^ccbnyS`GL29MX!^0j5u!
zEh#B!dof8VVH6>?U`J)Ou5(W~i_o0hw&5=OJO+=@NfE9yb?MN6q7^ZzJ-0uga&~tN
z=C?*G^4s)GbppyNgJF_|REg)@H4WvZ=cyN!qE4}%tYZn<db-gTDQO3tCl|S2xYg-5
zQLG7UtxMR!j()G?Y*j{T0P^h*D0Z-XGR-*<)M7`TrSq%nwf#BEOSjWwOC}<gQskBV
zPO2>~_Uk(fn$T^keAaIWiQKwQqGhJOI|l9$k+JF5i?9CLo@3y*oqV`BG9ba+aP>VB
z=1%exJKb#Yl;*Ucq+V~;7##EY^HFek6)=aFlzhR(L-)Y&?WWjBT=?(Ek(=_Ju#X_D
zxc!Nvrmn--viQ8+`}@lET-ok3He~B&pnpBS+o;=c(dsqrPoJ%^r^KdgLCTVVgdrR=
zQsjY2qZr{aq|nhIf=>=7VV|CEL^wzLK+QiWUCq+H^M;En<jvl__rx`><0Z5d3zi3r
zKCgIrf2CdP0kD~@7+rZ5Keb>;h<a{JWLTw>BfeMwraL+^MX&9OoLk^Jc@gn_gB2<t
z$6q|S$tI^iV1AUR|2CU}5mjV4KNQZif*Y+)1Nnom$*VZpoiKx0$_tOn8YI3^UClW1
zeb|48d%zDto|ZFiX{nQB^}W3EcEI5&yQ69ekFi`v;?|oQ;w}&a>v&gSFddhuc#@e(
z7YrwyNBd3CgH<igyO;Efa11<n;_6c8`0NudK)CuhCo&w`a2aGr6BabN576o`?g4jP
zON7__l3id7bZK~as=HsMkXbQjXnMNmH7&ThG?E6|8CQ;O-vifwJ0*VmM?){};_M(F
zOAzNe%5c?EwGuzS@_Acc?o71~Ab$M2&0RsavP`G-+qZA5DJLN19ksgOQF|9nF43x#
zEJC!Z*xR5}$k2WiUsHFQDHpJI299sp%6CVKwN{lV%Rg_!g-w<M-FVeOz=<6#LOdxl
zvDyYX#z`Hb`Rzz@jfqO*>@zm_kR%2K(pdBuOr^jUc4uJ5zIrsn@|DH%)nmXPfPDM}
z$iZ}R6p@DJnoi>HJ5&~<tE=_$Ys&XXjhFUHfUrxPO8oi6b>1XT+T1WsMK%sc3jmS@
zew&-D9&nza(qbQ1bUkThT<5aUcO<#0qmxK!JXiabRluptr<aK+zo1UN+0MRGqI%zG
zs|H|njBY$Gg9(XNMuANHv?;Mx<g)!s6I$Y7?hk7)>RTPi6biNK>sj3G-}<Phm_M9y
z-0u&d84QeD>UuKT|4b!Yx=%FblqTu=sus@+zOLM~A5&mTv=e)mbAWkg&<V3sfZs)#
znuN>$c$VW~3K&-D;W)K@DKNWP;uh}b0C-}|Ty<o2s8h``R+cfy3T7FExDV&gpoY_1
z6Z$uGMA=$O2BnvcB~o*=)x*;rC5u{j&e>R3UnJ|I2gSC!UtIU->fq1KWgK}JJ;F`M
zO!^7(7#c>3nEXvcZ0ne0^^E8q@cdG;3J<e-l(Sxfm>F+SnHJua1X?59j$eQ|NRm;~
z7y&3_Y0=HwQE$p`=d<qw5w>v?ADwB8j<+G7fSEW@v<E|x)0a&G1D~A8NB+XuC%71h
zgq#IqWu1~!Q4x>3*)%prSehV&3mCs7mp_C|aB=UxtLp;Eo6XksNA?H1;#Vwcophei
z!(VN3Y2I#zn-bvRJxydI`w$Mm(z&xc*o1!9ASVxX=lWKdL2p>tgp_=D0f>K^9>$r1
zjqGCg9-=Clzx7W}Hbn+3us~zChWK|2lBG3Gn)dDmglg}IiN4cpQPReGSVQV;V~LpT
z>$70IT_M!I5<Qw(+M|!5^`Ub|1?Dkn_>6<)i31PI*6dgkHLt$|^(Xu+;(iHiAm)uw
zE%w3$=>YPh(#;^B+U7gCsNg&C8!3;R@-ywhXf(<TJwOZNXWj5oMwumd^LDf0he5@8
z7016w<dnHK8)he*?w#7hp9f(NieAIjk7qBGrRxU?#uj>C+(;;q_-_*_MAmL8!!)X~
zJ4E5#!<Mh?bw?h6s~28Va2Y6;;F`}EESr%k=i(8l;&KCXco-0DvE%9DW^dLY1_u&)
z3EPJ#^}Sq>T79;=&fq1)TASwdOr_0_pk_mv<$N1|Q^Esymxp#L;U5^;Ny=Q922ChG
zs5`=);vyVc2X9ouD(-jI@l~~2R?7*=mU1c(wnY*am=-e4uk%h=)to)05HAAJ5PL?y
zE8Hz;w}W38Uf#kEc#Y-|Kq0t~lEs4zif=`}90XD9EytU--*$ytATcr14F-C%{HWcb
zK@j;bTUV5qXW7!qTE^woGX<uwU~6&BY`k~yi$E{H&XL^yRiNri^7>Jq^*=s%LOi?=
z=WhUcg_t~+Rl%U%S&en6_@==k&qR{#A_wx14_??gGvECKC)A)j2g)kE+Dp_j)f|F>
zJ&rci)Ygou`mQiH!F1j+%|J_rEVaPJ=F4ukXao6|5x!ZIJVu=PgTT?y$W)2W&E23J
ztBXf=wmXi#sXND>u<qxE#mt3tr=K4_tO58V(1xzB<4;iAyHu@2)gQq+CWjChwk8Q>
zkpH}MPij0=&Accz1vcl0wE-kRl8Eh33V|XK#V*<x%jg)ZoL-mdzGAT^bnETp^yO=E
zw5w8EvmD(M!}L+xE@Xm@jF}8&z*PRRR`hM3eXc6s;$Q<!C;^C@KZi%)B(h~`_UYH!
z_XvMU)a%@dd~~&b_MJk}efF}oHbo8W*VVgG!z0+DS1pG&4|GUr(gwf=<M80Bg#;+m
z=>Qg~wP>29Ob7M`9dK9|9}p9!xAQZl+)4XjU^6PV5Q(q-8$%{3Veke_axkJMK07KT
z;6=~+f3nS@;`Ustg3~rTTEKZm8%V{suoR`faitv{&m;v9aGxAUzaLG_|F~pq?#9`w
z(uRbH$BrnwK|_zv`fQ!~!q&#Gu%1eqqHXKXi`<QgDn6YKw51`}08>NCVC03gHCtie
z*ffPcqxInwNq*#+Y34%=6nYS0Elgaf;5DUfI^%jj2&5tyve)GGu*k;6VK=Yq>MC5^
z{aRbo+^pfl`?l2M5)2TWn23_aB=r*#AK8#Q?u!#WLruObg|+ZMtY#WbgDivtPRt;~
z?|pZW&R+TgrMr2?4!rS^puuuHhKDSpiTUf@*M(Na1M|p)2Zk1pw^Xq5pWa)E>7V3G
zJj>PFKLBkWi{|B4a+-9ES8+e&R7GvJtquU;r03X(P>R6Cim)o@6rm=5mM<*~6t!^K
z57_KAyt`(_F{i{%GS>jyH!DjLv=ZE_1XUG|ftukeiyN%tWIIb><?*H1h3BImfBrOy
zbjihWol*q^JeIODEt3j!XOXeX`Z~pYPanJXSAtAT^k534$eCy?YT1ft4VU8Dc`)z_
zOnbb@gbJlN0Mx^N|A%Ih;MG6Nr_=jfpOA!HK(gOM{5<q?f{5_|p-((7=EH+UKHSk<
z2Zs)4WAEiu<ns~lL1Nuye~o;rr|hBDI;Q@Q?g{3LihR`QX0k6E`=p4>vU~6e;t1Au
zKckQ-t>ma~b}op_*|>g@(8#j~f*F_X1Bom&f>7Z@sl!|K_}`IpD$b>_>J_Xgfxn&e
zn6jW^ZHZweabU}F$~6@wsYQoQ02y+Irik~@Di_D6jMZLR@f4FCa0p#7r1rUgw`L60
zHKXOBPcOtScb(UTP_IZY7x!oH{_)Kp<=g(o`ZfgsrOa2#!Jw*ZNYWQAjf+6_tcW{W
zIlkkl$D}5qw2FxMU2QwH5k#<J@T@J1#*EJ7Tb_xtyfe_(r{3F)J6flQ4j`0^9RW0b
z`vdIZuribmMJhc12$;1%-3rZyGouJ7LW5mxe)A<?P-!3vZ^ff)Rzj>15C+iC;$Z4O
zPXKnpd0sC%{XD|lmE=CJt#a@CNO>@&ug?%SACiOT;nSrg(t2y903uKyuMAyEYRuK^
z_~!9<_Q3p5myZF~cVDA3K;@7zsq_RqYd6oLVygwQmMaNTYheD7`~uTx%YPx4=$|$+
zTYV<u!FR4(y<48P5x0E!n)Jg|(aDU<KJdrnomqNBrO)3=c(@o03ys!itp#nNe#px+
z8C#u0y3MS#?;rB%JbNDo%HklXD~D+<f<*w7Jh5~Q002j?g=sGQP8d&lny5e-_Ih6s
zgzbV)7%zvHGM1V+1EYjp&J`(0r6<XxO{JJFJs7IIm0_x~3;;qE5w{m)x*8f@;9l(;
zTCHB(Api|c2i<4WAHkVb*Dvf35&_tfXSK7nAOa#9o<CBAUGeoCWJDGmbPmG@neI^C
zlq3m$DxbIq>5ZBO#o*UPFl1(N6aes_ec7qn%V(u5MDn^M#&3iYz2v))<h6JrjR{p7
zU+v218?oslYriLR)G%qbWSxU4G=>!XSbR_{uEbn6M~hh#pDQWvZe-(YwBu&ZrMkKZ
zU;rL~Dm7bip?}<VyxVabW6S<iCc;A`#AI#2mMVP?K&S1$HwWH%9&GwyOI^__ga(zx
z>1U(`AlI!7HpT#=gG4iZ?Bx996kgEkI=k~S<$i3&7fx+!hg%uaV4-yv_ubDFDjD$Z
zmXF=Wi-C$0awT9pr>uTaK?u}vQ`4a4$^&Zgp^veH8pBp4^VkVR?xPM4Zi<IzSUfOq
zIY_lMr`C>uLR@daFpDTS2&Fto7ODTR4YqM7629qKtO;29(zv1kpr-HyHwJpik?i3d
z(k?yD_)OJdeao^Iix>pH-m`KbR85o(aagwL$+en1<@n0PWd`zpI8_gzVKto}v|qn0
zO9QY8@XXZ(PUV<A$!rgm<v&M^RByWqC#aa&PG@vKm?DC!H%)2im99Zgb($HqN(t)3
zADGzL=U}x-KmOYSZsB^#RkD_<wl?6r8R8F(+TkGmY}D~x48Sw1blxi&g6TeqS|Hs-
zf*7jaquA5zB)L6BQB5x+9xA+&Xq3*#eLesNUjY0<NRVgxwfX;9O13uJ-XCxN{}Phj
zDHO9zvG*ppbS?0;g}}W?sX!=LK7%bT*ooV7)v~dkf*LU>Fc6R;V0%Yn6BOs}9l%hn
z;2NzZdRHqyrGEL?3oij0Y`N?SP@Ah@wLkENKEz;@pM=jdGQVb3PGlBr-QYBtaaR<*
zWJUNX+ycF99Cd-TVEN)b6!W6qZbB}H&8b<a#$E<{0P8wELJP5-X%rE*rOnsW#v5`S
zXv@htNKpaO2>??|Xaa`!t_5*V*~?(In<YlqXjz`V=!>0Al%qXmoIUv_Y4vkxW^LUg
zpP(Fm+Th54_KL%<1-WZ;(3^SeRUzUUA?q%LXVtJtQJRP5AVU$H329gAvnHr3zZGQk
zbOX_=UU85WjX`yO8`<=)`JfIi9zpFygY;>o2E&nU&<e_(*A~|wv;u4!8(X2~BGvz0
zq_+4g;C}A8n+H0$hmqOO%%+}!)X(l^Vq6U%fBnmk?h9>;gbqCGMlj!jRW<0(-s&um
zkq*m>8w3_!zDhKd3i?s5sLaGuSKIm7xe}hSO1>$8`-XlAm422q={M^QHr~XduZpq?
z9X1=af6EL44Zt?}RTO5kFNJ^x`>;SDZ29slApa~s?FZ=#VlA;RUnM_HgZXaySj|nz
zJeq#I!Y%ECt*4jjv@}2~s5g@+IkG6{-h8wCRbVPAx+zQ>AhwI1BZlv^PtC%iK@a~A
z?%pyg%J%*Hy%hxk1rZQYLPdHA=@3wn5&>z3t|5mmX;F~|si8%>Yk)yo8XS74A*H*!
z_lfuKzn{H-&zrrTmwPeG<ytIeuDP!BJkBFO-;&tr&6vTEfw9NV|E;gBk5xNe-q;ZI
zI-3I#`QQy>kSFn|v&H@JKQsR7>gs6MX28bG>LFmht;=4;g5W5AIvOgp2<Cns#6aA{
z0|Q~Djcs!vHg6+GvsXQ2L$LAXo21~Qo~8n|&`Rw>kVXFN<)@L5cpX8#qWn@Sj1S#i
zukm=OHQ*a;Z2u~q2;{lw(FdoXg~v3onl8t)!MXij#(dvw!}WqQJywKVYG013NL^)h
zd_mybF*NcV)YQ(*s-94r7d{_cov{+nX>;<^Y!dEOG@2&!PK{FyOXb6#owWLGPCVOe
z26z3FDkJGUx8HEp`^2>NV29RJ1sSK5zeicwh^589x`m^Po%@;MmwT&=?``b9P7{`a
zi4cZ*ujH!x3oD|aSZ**0YHEHZ#UadScCJEVW(0LIyZ%OzORVYZ7tRNkg_dB}jSV-0
zgaK9$d`#era5nb!bs^~>>Hy{zy6du+ZG`P<bC+M7UNds212kC;qw!?X1Gm}~zV?Fw
zoqve{lasn}?4AN%jWZeOoSX9V-`OCLDyLI<7%Un+_;l#ydoZ)+P5$EhxPvPiQN&e{
zw%&&2<qah<H!f+twSL^%74dD&aY$>uvJ_+GmOD>OGb*774G9Mk3c>!_^3WR)BHzg?
zWugx_iDf_&)wH31Z(?T8mdhyB;40koFF;h4_rGayr-3Q8xc!$pQG+t8r9{*z6fJ|6
z!<&<=E&>)>T4VnM15jL7(Z}`~VR1e;fwWQ}9V_2l+7gfxil8Hiu;g{~c>l;_56B5P
zv5TiH{wkB=gYvRYQClJ8SbiEk5J5g8Lln><(6?nEi%i8{QRZR&U)u94o0ofpQt>Q~
zz0hy5puXU=!F5%G1SRfLCjVzKqG^{oku~}HSRnPi^1biLnOIg@keCb4oi_=v$fYpk
zhh88%-!v8$4-3;<j_Tt)?^6&RbuRwpd0^60Za?KIRbT4#2UKH!fCTc0?ayER)NpDW
z%x^T=J@l*g1pH9o2CoZX?aF!`>eBtZwheS>sonM)hRllB_$r=sx|^oZHBzqtxk4d=
zHD=ND)}C6DQJ0{l68H-4_BYI3Wd!w;;LxpMx=sQ-G=SixS|m9E(q{*@&fuMVkEpZu
zxVWX|8*byl{PkZcbTcKBAa5ZNjumm|2At#IEl}*H2N-}DHa*@e+Jg#y`EU+ByBAaZ
z!}|LADfU2?8NMnGlJBJ<kW)0)p?M?S!O?99P;*mp@%%O>S@jZX6c@s*)(u*P=>CEL
zn)>t@jzOZ8PyU)B$W|L2p&eLrZ}-tr-b14f*$mvXKpy?-KpCt~6%Yk|N{_eLeqz$H
z89~noX}Om4dZ&dg`cZ5sO?8d<$^;9*wy9U~UeKC+uSo1U<*@)~L#7FOUqpiq9smCR
zuRXMpwz70LuRBY@dG;>!)1Xo1`;$wX&93CMpZy-2hqOP%<eK+5Nc+Sb$CoNeHanZw
ze~NgzZwHGMEtYSVPf%yp-i|4DwR#vFlJXqa=$9e)>C>0DnnQ0GPLTxt^W@35f399H
ze|U0OsnX}XCDfe6%gXXt5sYJ0P=!Um-8yfr5VmDz-JKI;EbTs?i|pwOe3mLc#k3zl
zK^WAc>y#}~D|8i;+z@0>dY+zm0^$79OSQ;}m>>;SJ~XNHrdlCX*q(n!2>3scZ!^^s
zg<A({`dFBg=bF^zYlE1<7r`ObptNUei(Jm>5F@H@;dFS&m_TFLL(i`jB~cPvsj*0e
zTx(f=)kC~PbM$mPMHKzLwiG&UKkQm@p_tl+Y{6p*U8EoWs|(KcR~P)pnt%dA<Sexq
zF5dH9#0X!57X$G(l$}oM7I-AHp9@Wh#h**|Iv3u5ZE878@7smMF$_X2|EV`q*@<ty
zGZTOjrC#n_<l+dtsa50Xdz5U+Ka$Seo0V<YKiv+k`3!NNA9YGWiXD8RdxkhCy}#`y
zfyi|b_pc%UN)5w8t~t&TCXTW&3oZ#M)mZ(Y<3-=E+!_fJQ{?#PbmR02P(U<EpSYs3
z-HB}ZGc!yIZ)7Jjai58V1(k+F#}WYXMT;=6XJT!Iw%6^gF&Zgn8kSsGq%QUa5IfdV
zf9NOQKis8dcrG*5D8jy<7<j&KXSHd$n|qxoXR}tYUX#SNmR|t<yDd+=&b?E?A;A5|
zWmJU$<kYzCyr>Bg{G(_@wCP8k%O51n?6Sy2ZLP=t)IIIOm<0HvpBibzGi7snoK36t
z+XQ#2D9{I&H#W_vxF9VnNcuZ|>lz1r+C>77`z{UE-S4XmY##bno~3;PoPu8+F`L=n
zKj~FrKoXDj6G=_D$(zo!+UcLiBN37jPgN^M>z|Ma3AbnfpH%Qslt_LT5*wR*wrl<*
zF^ULXXugpZNT8wZBk91kztJB<r*}~N4JeMkp_K=U<MmQkisMVhMq(Gw0004lX^N;F
z^@1t?9;(DAT=b~;GggT&A<+Vat&Js7(U;Rdx4{H+TG<SK)x`G^^_}vwM}g&cn<9b9
zzg`Vg_tJ>7x?(ekB`GCpolZjs5vzO*L0WFrRZp2KKSL7c3B)}1e!AIMDQ#>5r@&!n
zWRN_H<mot2tJX3YQAEfwUI~uVv9Q;%(%7ALPpqtait06fYH2O_dXaonja9?hRK4QE
z<Nbsi`8172*wFF+Jn2P(X=2oD%NG^(#L_j|O_n4a8OBkKR?}@B{_pTK=C}*0o<JC=
zvbiL#zh6`9LIRPt=F0ogk+|5IZq{@m_0l!eALGY)#H$Rb%m{ySCaDjVLf=bBdul0O
zvrF6;u^L1M!^ZCIrlc6eKM9I_Dbc;BsV*iLP|zO`3{`WVw?4f4SJ;}zzMoe7cTUeh
zqI?%JFaGn+_X)2xieZWLlEAawToY_uMO7o=KI|37=kfOY41Fx*HuN0RWB;8=qx1pk
zH>c_Z`Ufem{Ff`5%Y|ACkofHPxf6t2kS*iAbE_nHFk(yK);KZb{dw`ImpX8{cx|%o
z$2&(1KmX_kf=#7xH=2q0synV1eqz1y-LVPi;@+BVFe(E5tYgALeAaJe-d^<4gb~yS
za<uy$F4V<d`|PoA@!fFtl%BXbqz9%uU}|+TT?_g@74y#pI5~@1t!#dHy_Kb9ac;4H
zd&6G?!dh8huQ%7dStq7O9j~LK6IrZZGM#}|cXD<@^T)^}E07!2E<1kp{%1UYk__GZ
zJn(nCl8Vf7(>FtT2Zy4Yzw52q*mdK&OW+637AlHrh6XdPQ>oB^?nv%Cjsfe{%H-9l
z@=Pf6ks!*IipJtJNW!#!rS)-`odSnb%ga(x&xbp=O!W1?(Z{OIoj>m5Eo8cqE-$~5
zE}sO_<<yn3%|De}xY4@a`EuO;(Z1%*+-SZx4qs>0YctV@l;2U6;qj8Dp;`LaCZ+zx
zMLBH~C}_<zY4VJB3E12XeXb=q!Pn*=d&`$W5p{Q}cbfIp^CKRI$O?l^p9>GoN)vYT
zl`@D3x?0v!E-N$`7G&Nm7j2h@ajtuXm%5RqF=O6}%4{pIZMrhoJpKQ!1T(Uf_AUT)
z3%>1zD)AAqjHysBg&*8HTbCG&R|slpxhL*v%l@_j3C;hSs;`o~M)DKv_th^7a@J&1
zwP~1&6T}hU_jp(-IRmu;mglum*PJx}kTF&S1X9uri$9g6x!e4Y{`t7JjFKTfS}*)D
z&3=bhYQ_4lB|?M>YW81R=Gj~5Wj#MdM##^9wakP6A6n*^B5%{^gz7(PPjJ9@<NhQg
zp)_~*!)23QrmK&Ub_WpD;-q@Psqe+HdwM>z6Rn~MvSV>=3W-A0M;IR*KVIc8)!OV`
z{wldVCDjq!95ASrHWbQiE$G!~TJuPt4e6KB*{<g)GPWYvu#7RCZ=L}kf{aUYXxX6<
z5fJRTu+=N*wYk{_J%}q^90~Ld^miZf!4gu&YgRvD`sF=-gs;{^LnFo<sVCeE%6vLl
z#rzFoVdcZ(i(e~K;ni<~g;haEMe9ZWJqQsIQAaahH`Mth|6A2R5t3z@ZvcuFUD}qc
zz-n_y1YrEjL244U??=dS(HCBNgt9e9#iL&ZHhUHt7BVXz)=qqe93?S)K-pL-Rgf%3
zezk=3TY*aONwg{x22&-fMsv(-AjCVQVVGASHe@nrYtd&zH6a@!JeS^+H8dm`mvLq5
zucL=3uPnhuO}=yQ%=t4d1aPUwEME4nxZY<$GX!wRQyR(d@9t05rBqfYU^&HUo*xk3
zW|P0%W@8o7%e(o44C3B~C8E~WWfTbjOUCYoYzrw~f1qzpiz?HymSmOSm`|DEAGx+v
zG0IBA!pREPds|(h4Cnt`2e;66>*;gjvFm;f$QEC!5Ye<>SU8y+TfZ2mVbNO1Kj`~u
z=|;u3XP16Qi3Do!8I{k;F>AqItE(Nn33g<l6|fbku{icvakLZTk^0?P)v3Q)drH4%
z>)wCp*F4H+gJt(RKPPS*9L6gNuB)pf&Ehit!?gH-Qf!*r?sJE7W=F?UA)#@@uhu(d
zl%<ln5n7s>*iq|&^Ep#oN9yMmiBX-AV!h3(<9}uq7>S5329$tk`Ryr+ah9@wBtPfl
z+854gMvHN9BwN*3&obmr|Ij<UxG1YV9Wh^+V)AD}7v|)_Zl+n*q^3sLwa#^Ey`$(b
zp7=W7@K}$px}U=YR*Fft|LU^rJ3!Elgs-p|GSJS-JM9ixp@`-p85OYel2Zhm#<e;+
z5T1mSmGcO^e3iHuq{hDJha>4^m>6wbNb+MZ5re*a2QU3cJpl^9-di6s_IH7iC;0W=
zjca`ufABVq)f9?S|NV~N-IP0lF^c~nphzZE2w|07m6Ke{OUX$Nq_C`n+&x@!j@SAS
zu*ggX{`d$rOa;UWilP#KlL^&}!E#0O<dKo`j+)@snDO-`)m4_{7xp;bGaJ33#RVxv
zwnN6U34{tiD5vL&x|9YbEzriqHhaXGd{4nngljA4-N-X3PUfz%5iY-lcjX=;3TTO+
zWQl6IlmWJo$lb)lcfoyp6De%yx{F_o90eYnV@5){so~KNQu5oM*Y3P0)LLqc;sX!`
zUE79i6@J<C28X7UMkz1MlP^Na<y5x}f1=%TZ0-7_jT-J9+^VmzS$ZETHJP>iD}jL;
zUYaY3zK-!35%`^B4a{#yW)|sq@_Zq_osOLxLN2;TGI+prPUcQX6?9n1SkT+x%K!Y~
zsB(;K?~;;zf3UUG5mO7Yo?pehPJdg<bTDUecW=ncPSwCp)%AKz9-X1<Yx{<WDRj$=
z=g`+aolTrctb+3kNTT0vQ)~V!i5^ujaw|Op1FdG4>EyFSBVjL$KlY`yDQrx*d<=Zf
zZ;;|4c?D~T0I-H6UUK*O6)-@Y+1EYaMA;$!roWBlE$$4&>gIYn=IKfFH36g9ZBo(G
zBTT@K;YWu$t;aFRfwl0K6$x4OUiCSGta>7uU3c)r&w`)bC9ZQkW?50sCxOxf0%ArI
z=QbgVb>$40A}S%bvtK?<mi*5!amYI+p28dv2@zhb0%&0S9-sU=4`fe{wj5R*?5m%@
zv$R5ZYK+yo(nB{s&TUQ)nd+ANR&-skYzhI>t4gGsDq3=}SUpGrdgzBVV5I$j7T_0S
zLBH}+$e3fI93FK=Zs-f%O2zOrBgc}pUy~@4veHWE9QftI&y)9-A0P=Px%O6CA>XZ_
z0M{}16xG+3w;Drh26f8zy)Y1hl@t6%#ft}C+Z^y-Dw^7~ObI<aNVULpWj^C)Qqtr`
zuyu==%{=#Xm<_g)b0nkt<A2!W7U^>>!C#5d<r&E{_dnDLE$&x2ieh+@U6Q$N9vhmW
z??~#xwftcK7P+<<=^L^DKje2{5gQvRKCxY$*+aO*48^m<Ue%xKmL5S}Z@*W<KDvj_
zj4P?Ru?L*;n01?!5~`%2!TyIR$mtGsq|^nEwW5ba_p(%GLye+fW&?eo5C5G=$Lj*O
z`^@CVBd(ptmaG+LbbuQ?xQ2r>d~9AwI$SeHj;A#zMZpv0$;TP7njL%_ZQ?KZRzR3f
z$~6w^?CmWU<g0QD;*;uIjNB3}hsO7FKB6=69ju^Qt#J-OOa1V?WXyR@sp$NtopPYp
z`8S1RQDJ2CJC_@IOZv)}2hqbTD@UWskbtcPwlTS|a%UZ-_u4C;S~3%0i`peZC*ekn
zBdt0*6Obn4C@F(iAI4~huXYvyio<XI(K=3gPFu`FWG^5#C>TVob_xusZ|z6p?1Dc6
zXoh+1jyuajztQNhEe4N2y$0t^awi_S<{+Xv`1R{g#C)FPfkHw6wUWt|-wR6bGl{Tj
zq3_JCOR1EF)FF_uyCHA5tsQZ9<^>zCq8hBkghBDz^dES@*POUUP%C4jq@Lb?nN%Sx
zH~ZPKX2UE`NQYrnQGLVNa^qN~?s)KFY+UCA7Q&HEiJD8mcd!0C%wgDs6!!dld$XUj
zsH8ybHfV#O?CsIZZ$h5peQmbOsq+?`m?InEsCMg<y@}?NR93V6S{nbtt}CwxY5t3O
zbI94)>6yBv#{Tbd7CY=Cj8DZ`?i52%gQ==f{erM7$3JL>0_3fh_j@n%JUBp2JoK6w
zP3>cMvXZrF+I!X>{NCXVM@$?={x$X%t1DzAK`2L=$Z~SBNk#EpmsXG7{{AXGjncj-
zSmXg-(O=PZK?@_j4v5TO(RCTlWKlNL?NYT@Gos01Eq_JV*Z+#H<2<F(s1#DnItz*^
z<h+RmouRnZ>2#y0$DXxE8zQ`Dnu{lXys~u$^U$eo<vF0aZo>KoD2H9%Z7&kn%&7-m
zrGMHz1ui9hx+6=S9`QpnqQMz0Zti}F<)d{n=S4fOu#=R^lP^LN98XK8oNv_cYD>8q
zO$9X|aZ&}RoA2x&n_&NG(#K|&N)5e?ha^ZSY0W<$HpQk#9w!Oy^4QhAr4}z`C=%O(
z`Z{TK;VLYQiBUzk52R3qt*6DXy0DoB*l^@#;zw6o>W?UvjFC*pE>qCn!o4bbh@ffs
zWIYcS&MXkF;(jn<+3*4P((&+OIF4y4&qEYVMXvnwaafRe|Ko;XQq52jamQPNLJ8|}
zlEL)RwI`5-GJ#s(J8O7&>qhS88W}X}XD0G6hg0q`AAYUhV+4DVz&yOMsiF3RxSKI$
zw~ZdWZ1W3E3xE;hnIfI<|DE%vsyTbyg$Gs~XmL}sfiOgYt|UW4AI~964-pS-KKE`H
zwQ<w_MP(3jkYVVhvVDAf&{)A8!c8CB<=RssjlPWOKfZY6`31ST@vtSLm!`S=Mk##H
zKaB-~C-AMpSZ)SakmJ>lU)B8wC+B>JZ4cD#rTpAYS7`FM6uxt<PoCeya3JBhzAk}e
zQU)DVWL<X4_Mud^o@>p_dF!mKtm^rimgG@YAC?JNXW;(1LZB;k-;MlHOq6I8sptbi
z+H7G;HVs`}12i&Zj9=&0Od5xCJh0Ej7MWY=7=rj=^_PD+5lS`+9I7PfGIm`l;6jj5
zcs&5B@1nL##b-!R*F<;KW*(gY7YIHj&slgK6PZeEGf`&*zlxc<M-#%Q=nXMBG=qDB
z?MTY^L;*0&hfxdehj)7>Cg4KWnb#7-wZo`2i4^Xt!@<gu)Rzi`u|8AtWkB;KiO3Vl
zvof2ciN;!0?hwm0HD71a-Oaby7*3{fJjOM@ZcdnF{;6!WMtGpb>ieDBu*sE^*$9g<
z&Q!X}@85L`k`m<mM{9B5a>u`(MRpe!INV@(L=(oyDV=uub={WiZ=T|T_(~CNo%&l(
z=Re3Xi^Q}KiaA^1dfa`b;PX{hSCZ>0`wph}VqxVwT-_e`rv&e|8%YXxmP%8bfWyvP
zL&9X}fB~aaATVNREMOp$VFl%TMA`4fqg7l}r*Qk@-7H+5k32i20VLy@IGZ4*wre*o
ze~o`fIE^AoZZv5*6f`_$y+Dcd-re_bO?rSRN@Q_0V`AUHrR(@#KmxLtoiLcfjtyBN
zx+d0v{%~cm=9Kttb#--`%bTKMS*gyhT11iqJ*#k5_R)9ry!{8!AuLqegP(hqYd^11
zSOU~t#7VTPd7a96($Z=beU`mjTsF(g%UT`iLHmqS^klW(YgncmI}1zZrQ^3)zrHq2
ztugIF#MexQq%+*}^Yd~iClD$>caxS`7Oxm1C8h|f$Xnfx<XXY$u`EB*{gSb=yj-cb
z^HB(AopV=dC?w(LfJ|^3+jcKOXkJ>=`Ia4}PQ*aIBU>+wd{DI|y9wi~Krt$@B7W)G
zC+Ib!5_hwLAVlkq(}48BX1mUnl!*1<7{7`VRu=P>&{qd!63lStH>n?f)fEsaT%T~7
ztUY^4*!9djLOkt~ax7kr+9D;uTF27+i!g`Hny_AP`7B)Ob#9Q!tw?@8VC56-t3+lc
z7eD7tesj*aB>)P*xgbka=XMmhxN^Rc+j?;kE^jDZ!TXT=Kl1PWeWgArTEyoG@)aE8
zvs{vdJn$a|9Vcl8l*6^(ttSMJdV6=XS6cZ7rC<8N9<8|ZX=`urOE!W-Xi)B)E|wlU
z!TVD64IL9pPl%G9!)Yn!$UCjYmj!wC7=C|tQ<fF;wjwum8jCnorQOEHf{e_aAdHq-
z;=A1+KUo%Um981!i%7jL%d@a(QKi3z{C6t+2Zi_v)Dq;?!0R0^4_TD*ymTR+)Af)>
z>lghH_mSKGQYJ(mDhFM)+=JJ*oc~}50^dVaWjpT;z54b!kPu<j9%YubA(PdUXYr0}
zpw}<+)>!ef`oC}d*o=qZUm^7$(qQR(J9zaP(sZr2<Kl*hwveC!Uls_$Pya^{zL$`p
z_+R!xBW7Su(zSL~uPgsSqb6rBlZr<PT-<;Z04M%l@8cz3G7Y}J7d0KA2yfzl>zPey
z#=}AbMWwK+7e*8)`TNUAx3@F>N0q+z*M9`tnO<}}7G8eyDEH>Wj6gjE+i&R*t6r<7
zRz|b`2*NMHdQ+%+II?0Mc{zCTvRt*ieR?cMd3Iux6;;nwVKH=&`4#jD;q$oh0-1)t
zSMcx60sp4_p5Xnn`pO!<bd%)2e|MK`^ZyT;@vQF<>zn^ATK;vq_zvQ~mB_E8iT@Yy
z<6rWJKKB16fc)n_K<VQDg&DbGg#2%B1y1_^qrdzAb_xIc=l!4mU6=rxoh|Qia=k5-
z$MaL`|H8QZ<+%WTWEq5xrdl{sB>Kf-wXek^vqyJ`|LZ0psD%-p7mYCLFIEKQeP{pm
z#X;c>hLwakKOh4LivN0hi0}$zEYJ|+Cuso}6n1|6na}^f@9kgcUnfv*%ZlHzY@wM;
z`p5LYKK?UIiqP1v>xWNihn91C!P{~Dqsh-wKpwtvemqPxZcp!WOpF1d2^9MF4OJ8s
zWz2sBqBi84*l<Gm#R~F?92M>TvPg%A&GxXJvOc-(HU6e~|ML~3CXQhfwE20b9FfU2
z)tT&B>4fChKf{DOfegI!4Il%b30DYdl5|ti-QKcuoy$Bg7P%b0JP5mHnpk~T=85IX
z!{*wM<fG#tJKuEp6tzIk<>9)E9U2JJyH;2S#ppW73KtgjE#XII-pDnaj)-0wxmMwF
zFj27MyLf`qRnZUjtZ1chb`Pl2TbF`efyX&=lX;GD#9Y}XMZ0WN`3?i?qn-K%{3JzZ
zaKRMPQ;4Zdm%_Y<O3^7s`~5<KcRR0%)%oUv`lW~DaZe`V@=!3^22ylxC^Z{5rW;nz
z5%JXZTrBi9vCg6K)TYIXt$wk~s?6aIX+dNKuhJ9m=cSEITVt%NnQ)sIc9_|XK<m=b
z{OYsw0m)0)4r!C)#`g_T?UYU@>RN+fld;#!IF5rJ-evQcDBLQGZ1QZyi{c+AX(4x(
z)hFaOvMZ#`t#0Y?2lshFYj<%@uUJFZklt_<G7w13Uml5FWVPou9@uzYTI^{YWEKdI
zOta*z{z6_UaSu~~`Qf^QY+=qCqCxLVxtlDUtrrO#zniQ%`gr{R=gv%N=sr5?IOSBd
z97;Tl4fAhh7%a6yB%6`*A63_@IUdtp$FBKTuzCirSG%8J3V%v)T39?}fe0*FY~CjA
zp{|`KKRjp&Z7o*#M&PlNxj0o{gksxjwh9?6oHXNE^*{AcWE7qf9~SxfI*x+Y9N&oN
z)coz|?ruWXs<!+B^-T+Rgz(#}p@sERxTR5V2+XtgWLoNj(J5Xz(d=3ukiEx40!UE}
z{UZQk5I+B-==@VsomGR6O17fR-M&bNcw}(&8iIPU;NvPGL^v1n2qXmmZkO3a*rk|k
zu2V7BIai=q)a98@G?i$F2H$aW*H-0RXDvIbVq6J*gA6=>T^;R$OYzHH%K5-r=FV)|
zJ1-i8=nAdY&#hkHx|xY%Ro6Q?F>74f+M=!GCK&-84`7Wt4x$bL4=<-^bi;K&htHF1
za&+1D<3R!A#MONk?tLU{Nv@Y;y?n<8uF&R233a~xk{gVLvC4dcJ+fZk@}Ex>be{~e
z8@s|uuveYFT<Zrb8wfnPvi>=_j=rKCNse9NAoZ~<ALdqI4c*{vea)Zp#=$T?jjRUl
zrpads))L8<TJEr?nX~WhoOKfLrG)RfQQ4V?TvBj1F<(6af<%#rP`=~j`aA-%gj|WP
zRXzDjEW5SP3q<WUTuWN`%nuu#K_mhA1Vv~wUXj3f*i_Dz56q7g&@cS|(l36yo_D!;
z?VhR^KyWNs6^>VjK{vn!?a&Xc5|eYO<aeVkb0bTdABpns01cI^A9s~vc)Z#<Jh$-j
zH1RFiiB`sOWyst41^J{M*RKo^#|yNz{o%QVH94BfF#49333hJlkGh4tAA{S*#`5Ka
zN8~@ILPbT&2^FT5hl{Skd)OW6kF8G8T~D6X$P1Y^UQFtcYVw86up}?19eQ8Zxoun<
z4n<S95x!7a%c+jf$(`>agUU%V1DUy19XsScF=1{Dm3f~`#?HNX7AdN_3y-e|Mr&pI
zUs#70w!^|Wcbz>~dGq0v)$cd)bk;`sb=&=)*}Z>^(p<{}b)n7~`GZfsnVV|Ix&Xh;
z{Y~VlpF{I3<2$0e-#``T&T@4(z(n-xTU|jSu6{swRY}!JHYzq^$Gad~!uJY=rH>_8
zT3+5T!X|q2mDi-VM#v=~*PzRVoNvwIy_=$7$u-Lc3FoV+D@e)6*T3UjJG`+EUpHDl
z|D@q)mB;S0zVTd;*CMn=YT~3MFGrA?;~x5}6<ghd>2|KKj%>wJ!bU?w=$`DFi#mFx
z+>L$H(fpHx1IXb>`iX+_L$VHEE`r(}WqMBp+tUwSU;ZfC*Oab};JwWP2Ds-P-PJX7
zUY*QWKPxx>-8p(65EBy^F=vsUJ38+(1Fd*q*gZBEb+eYVw56;Y$HNk@%sw={iV>1&
z!4L2pE;9>Xs#ZmG+~G^K!n`Q&T68r&9M0)N87bcXabB7;Z;!MuUZWT>T=jF~jdR16
z{E&^7YzfR`IM3BGwR1-dxTiTPemL{QxbUN6dJu%`13I96I36RW^UC3{;v-C$mj2&!
zbkJ5>8pzqap1OIpJuGqlZj!$^um)i4z8VOaK-^c@<&%(`W5J)^LHS&J$X%pcBGa-8
zG@M-&?k=1Tj<Y1e(eU$D%uP-FqQx~!5{!^{WvSwe!fu*eomxn>ze%r~jub}|HYlv@
zBdq?J_4Yx4!q=x$2I5lh#m<g{cQQkD&!3c;Z<vo}t&ehtt(?OXE=9ADM}7meHjsir
zW2|Gx4b(fKVZKl6_l6-_x5J6{tDi;?@zw}M%+@`CRBv@pcuIxRGh{*Z%K2cY8)=N(
zG|^+j29bH^eHi;D)XT21`FeX^F{`PD=JYPdC{Mpo9gdn=i&cLmHdi4}U?FIQo%meQ
zp)l5A_;^h;Xt>t<vwuu&iVZ0oI{VZpa!TCi+J{}25sP)*M&^l>U3=rApw~BnH$c$A
zJeK`SSQ(R3mHX(S_^3=UYb7d0P?+Cl(}yna9)F>3OrqBo)48cm+R7{b{m7TePh3vi
z2K;__Js3HXk>EYu>O2lIjLBTM@3LW0E@(IURntOUQ)qDT>l_=9IH_@-MaVB44iPE*
zVN${O>0!;a$iAIWv7UZ^yh>!hF@uUFcU_PR^ReWQ^Ye8^a|~iW?_LfGAUF*FB{&Eq
zxCY2OsLtS8FpN5EfA(|qc{6e{UH)lsU&1$CxW9X#*6}xxc25;ejCSA+evPWEJ?1CK
zVfOx+K;I8lCS4uxYUG>1T~2lPx;&dsO(RWDqlkWCn+U_Or6Q|Bb7AOEo)vw^wBDL5
ziCK1%40&>T;G3=1YprvyZ6Ds8A?qGLuzoRiur5k*rw^sG($2ijrK2k22y?K}R~N$4
zB=g|=ZEQqNJ-vOl@AGXGnLk-SYv0x=&Zd{amt~B?@bvSL`Ja_l`gI$2Eu)sJ6DX*y
zQ%Zm6NEB7*d5)YnR0#>ajnd$|^Am@>e{M*#qPDEnX7Fj|x_qJi{&$WQZSTyG+{4o}
zHgMjreB)QG(J0?+cOo7XTeoO<H4L`0Z*`KD?rDT~e1GwbG0>CbQUNZ_XPB1KawPw{
zPZ2r#V&d%XPnPqA6^=oT$+-&pnoRLq+gh?bb%PTaj(%gIyX2DNG9{9HlhIkDBX8Yw
zy^~GKdq4Uqo&wIf&|yv6gcf@lW+}AwL!Lr;Qtj*==ANGyABR}Tg$Xw^MkkXGU!?4U
z9gPmF=#P~W@wkWQ#HL#yRIfEl=#lYTD9Gi3FTT;n<Ab<%7ioI3(|aMiR`stJrPDS(
za!k$!&p2mvXc2z@v(cq-5F`8u=lQ}3#Qm)G>o0`gYdz<Em;p9Cy%1<jNbO7jMG+1Y
zJ=fK+&653Rcf2{RYlNDC;N%oOyoTGUXkNLibpb$2FWWA+#pJ?v{M7ZPN-y8LC?qTI
zD=QCwi>-m`KErU5(;4*juY3hV{LWHYHegNV;ZPPRE1hWIRohIWB3Bx6e-XwM6yMB$
zUO1N;(I4k<FJJyFK@h*pN3cHOEaNAvKa(vmEwQWSne_{UezIAIJdAOsGU`(c1^Z$s
z^(93ffnK#iWUAi_?<CXF;9mz03mk6U-+$+g<OD<~CnaRzQxek(GwZ6Q#uUBf`B^NA
z&QvRAA-_sz&rLDit|tC6Ot7;**uRldXgPQvtzNX+OP4-iJYcJqak3OCGq6OYdtGwB
zU*YRuK>fkyrLZfS=;q|0DR%Hqi1Nir`Cty^VVR_Qp6AB^QkQ^i=UmXZrls)dKuv8k
zYq?=GSS_#2&Ko<LeJkpSvxL2P{u2A%h7j2zf?iF2_T8Kuhv!TT(rH))Kbi7StP>VC
z8_*hB%Cak1W<J|>QSByLG9RkAjA#628NqM`0f056StS)S$1nQp#i2?S`!-q+k~4WU
zR3C<PJ3U1QQ!Z>@Cw6brgy##MY7UTgzdTHn@qJ3ja>bC0C|*m#Qpe+iSrER;;#93t
zctUptfGCU>{A?J<sj93bUT`-PFwh|4itbWNOiPwMIVUfD;9c5t(F+gxUFuTvq`CF@
zw7DrfFJpiyv=r_#ylYIBDf|ARQ80%y56YD;sn6e0srK8#px;DhzyMBOgp#>P|Lirs
zY^@LN7kw=gE04Kk#hJ4RNWZpZF<5lxEr)#}$a?jIPDXaL=8R;3!$eJ^1*Y61NOQ*Z
zMHGF%BAwwMG+#-q{<B0s#_5Fz1}WI>WRvDsh+0;*iTe^68MMWtW0sc}^`J&nNeC6{
z43bYTsifce-O=5JxgtEQ4Pd1;4w7c>o#YXrmEU{qG_}pEtts(X8A<qoL_08s1A^NF
zwWo4DF;<evu{14%8~2k*d-2s&2H$ieCnnj$->|y*&%EkRXZ9wCIybBvjy?4hw(+Tu
zy$M<JDA=mf$hG9RHb<`UuJSJr+_SoGp<nbFQeBnOw*rm#m$F=etHu4a=he%4!EM^3
zT=A(cvSO`Q@O)8yV*(H4w5ycOCo%TBgk(3J=h#WsuLvNXwGcC#jPi>Tnf<^Ph2STd
zRHt`w(Izr9Fa%p>a$3i|kW*|_!0~4%CtNtM4sO!1KdBvQ$i`nI@`dFsB;o9EO2wbt
zP!<u{T@LN4fL1F{&{QuQ*ifP~`O1^7mpdQy<@ca2mNfz?ny_h6E^5P2CqZyhANiVM
zDSdSh=psI3syb9WMSB^U7aYk7!KydF_U5cs(jJooT|ruIO+^0?CsbVQx`?&D>6w^%
zN;Fb+#)mK2oO;3cWG;21d*esi4UfY1N2&-pqZYl+{9<aOUOo~@wxwdYi~1%1sW!^@
zdB55V^Bq=PC$;785~VkZv6#?XgmljM4?8iBLo^+B_|RF`rEESV>8!t}I+B|hTpQp;
zPQw#~oWdHA<~;0e8cU_{TqV<(29In1Vn3oxnwb%`wpapcmREJovuYn8r;YR4UE<%o
zftO4hBejRy_Wj&%k6237W6c<p7V94L`^Xz7@`sJ)WvhL0LW?H2nj5pmwQ_+*5kP+c
z3Uxd3N{1V!)0bshuBFF8F<QK8BLMwBcriH=wukn<FhsDSzwZne6&S9>Rcy#B8^b@C
zcH#*Mr#P5S^hCjm-j4t9j#ptcxH}1?=~iv(=ytSy#ZHVP%o(41%pEbGM^X!4a0r<j
z52!bEVt4n#q{(3?kKg*idgAJt(s4xGEG~@OLDlrO5YW*>#hNRIl*&11zlnwgSr%)!
zVvbQ~f4G&32av5>ehC@87v}e!$bsm~C-e>t_KTN)cprq!xBPVbdYF8M2yGWfQFLj;
z*`B?)R?*YP(x}0N*vz7vy(&Hnoq=h8oqs^eZlbYod=+zHO^KdlDrS3#|MSH`Ju~+3
z^F5bhgRfR~@STenix{G^8*Pb&=p&MishnF6wUaoMLROU7aV4rbgohrMn%rq3wm4U_
zxf6e)?{ze2jYj4y`rlCYd(6$=iR*;IH)zIVDdRUKG$PLuGYC4~{oX|}TA(JJ-bkkA
z7`e~gQu57V1(B%exVI4HoK(4<u~86btWe|gEXh*#1;!%Yq`0mi=ECA3b!rc?#hO_%
z3S(_v_^N3i=~hoSy_FUVlZw!9_DK{-W9;%*hG^|29tZUwP>+L9D7X0zZSW(GdWa1{
z1Q@7p!gRb`r`7fJ+(ji(lopXiM=j`9*BN%XeQj!0ID4^X!Cd2@E?U%~CqD(;B%sRf
zI1YxE+aI+*i3D|Bb69yzvRLgQZ4jbp++}HGD9L=PTkA1*CSQem$QzukLy&k$jlct5
z;pSUe3d<4wcaT%tVAeRH01t~P4lRk~tPI-N`VW<z{2bcd(YP-?4QUxRMQp!VIg}PN
zF{wHJ*8BX4qFYCLw9L1Y<(tLi(fAfHU#KyTtRCZ*GzR&1qh~eK&RKE^&$UE_G5-3M
z)7PQzmtF%51fa|uYn1UnuSA()M8)?j8P9)&`$I`;IDlO9gS2b+b9?~qLPBS?F(a|a
zWZTjJGemubfzW(aQ>U@zWdGYaSE%aK5(C8L8HQ0o@;4#oXf-Kkc^NMZxS^fwskF%Q
z{E#`Kcl1$VKm}q37)@d-k#KOnhZbc8snp?&AmLS46bQ>j*Rb;^C3T6bvuO$pamM2I
zGwdV@^5i%Ow*Hl?2vXZD3pxdyj(MgB7%B=7xu$}QLzYq>)kjdZycdM?_Tizz#NfNr
zW1fsxqP|-*qU@8aD$Uf&cg70{o{%wtrrNSfDY33wvYd@OPP!Eg7xnR4yqCSZx0fxs
zHRY5;nUuVLQ|ez_BoM^U^(LCObf}fM-w=3R3AMeO6tDVCpnNlej;*{vIs;@(&t^*3
zs(D2Z9JX3Qd(~tOA=S(u1b;@oJEfm#IUEdbhw-8rFn9gWKNNJ?J|NvBlCOFy86DWW
zn--EA3q4So#NLL7mabK(?<h78yKA2oxtd8k9P3itIT#sp=h46AK7B_EAp&zxdm);_
z7DH{BA<t{77c@ff75Jixw^v5=j$<oZO;45@a~jVcNR7<Jw3%lnx=g3sM~zOWxn0g#
zg{&FicqX;3ECvY;7Tw#p<CV<CS)TIbP&jXO&V!35J&TZKG%wc-2`@_K_$-sW*5Pys
zTn77+90?1}RE;$O7<T((1kgS??~Wyo*IvKPyCG~JY-JK}^QsGZNG;S_jJ!Qz@hBcD
zkgM8?UoI@<dHbNxdR|9_y~vns|Fhlf6*K4_f1rCTpOLeyus4&Y&e$&+{P)qhrB=Nq
zG%vh<qn7vfi*LQp9SqMk7GfS^y%)(>s@+QcUH-npIq(H-);V)%!;_vHuk9bV)R69}
z=j}hE)KkuKskdeJix!(5zX_m1fejBsb5$Z?6yxlO<f3A0^S6pc6q5$kZ#8Oy3tFV=
zKeWjwfiNzZg~4j{saTMqtKwDeqp6#oT8T9l2|r%R&NbJM$z{&SAe>X!Jjas_SDczN
zRArp%&EN4FIRQajTmrf>w`k&L%L5@D2pB?sP8&>m_)?Xzf^PqLYtFnc`&IKLQn}?L
zEKH|IS*Fb8pzn*16~k^bn0-RTeqykhk&RD<ss*xpizQJ!TC!yLcyRfRjEgsGR^1^l
zKec9Y!-m<0K(H4m6L;Ybt?<x6DjD4u`^qMkAy<L^Sf<gl*XQkPciwLMVrc353b)C|
zR3spCekRNdt{E>pAN8P^b?LwVEGWtD$2-9R%Q6)SKM62(w1+FzUJzF>qcasm$41S_
zr&y{P1Pt1{Y40x<!>}=%P90)e;ApnrJw{1S;+H-Y>#hGRfBfP7ucD_1+S<_OK+RTs
zG&>OuPydJl4NmX-5c=O3S2Yq`w6){mC{c1Y7uM~o_u()BVn>2%AV>ZE*@an<s;+$&
zfjG#~#+(+I$3G1JPFs255iaBOOdup#){@QrqV><a$NN^b#(Cu0Z?g29K+63->Hd4V
ze)G}H2B;m9_bn_GOk@}!;ZkNt?YLjVZlS%_r!Fg0f0zLqqlKGgf`w4}l7~WAi|+9Y
z+wQ%Y!%AH2O?q>Z9Vr*m+fW3>*Bt&)l!j=%i@aL3`AW2$+NXp0g7D9grk_5s_vmmc
znD#BNlB~Kethv&uc0imp!lgZrbKlsZb<CG{_!vKRtWjW0&fYMgHhOd7zA;(2DA1yB
z7)o%9B#C}4oxefCg+{$q^~n0!e80Wl4;~_wSK3~$2;>U^USf!L3iGau#Ca#~7JyK!
zkgHcG+$2Ps{+2fw4aTYs)5#(YPW)fDK|Un2zs#dU-hS=K4wvNxSuOhjJk7Fkt`t6D
z-h-d$oa!q$fDslXfr>;2GtG}fUdNe>Dm*pVrWwD~RAjZ5Q7(T_x|YUYlj+Jf=ORBJ
z9MbyCk4-vT<EHMonB0?mUCWF<!7g}{ZW@CMqLy*EAkJiNutjV=u6q<UVZP%qcKwd~
zxhMQdS3TS+DoX}p%dlDEip?&3(5-gkQy<_2ZU0Wum|2_Yw6fvJoC4{tty{=7kSGzf
zdi`K?8MK2IcqJ;2W*j@6q`)`Vfb!!Uu*~GxL@_z@5$BxGUd~OY=PZ`D4MWTFezZsY
zak}ZEjnaOmOhvYw4ySpA=z8r!tTjixjmse=$d@Df5OS(tCzZw7^I7Lp^|eQ<$X7`-
zEu!0+KVB*F5Ey;&EH0sPf48IjCj9RFV=g@>d$GJ=e#0pKkP1spxBbYDUKt7VyH^B>
zQ+%D#l?>13LxGS4d=2MdAff`j=zE1=liIpDJ~~bED#HIEFBEljaSA-DG<jls-p#KD
z_ZRb)OK3fxejonq7q(BwTCpZg7yw(GsG?@Fk|?*pPBD9*Ym)ra%|)(pEpzcEd(kbb
za1nQZD80Lor=j-)v26#5W_rTNn4SqT!iU&jv@z<qH*33PY`>%;$#^=nRItPv?KM=2
zXfTVr_c^dO;L+vu;4oG%L2DEXC=(L9BbL`Pzr-}C<>@$`xLwzoahpym-joK;{Q>-I
zTmcu0n95zdEl>!^9psArn!^#`9;ruB?36Huo)oloSH<AmzpJC+2u8$RJ_z9yh&z|(
z(V&BdGiCny2|`H?XBI)b^t$=|c}h(BlYGN%7u5Cv#03IHJ*D>-nCGM~xCU~>gWgGq
zKps1-G{Yy&<NbxVq=1QoTTpLXS?2N3!Fd@gGmH@hp*p#%OXOj)mnL>X>a@7)wjJU3
z&zD#b=6xP_wN@{M%CRilx4M2QvpbhLKaB=;tF544$jjm%njTLd**@45>wt{WCX#7{
z`=(WA={-~CKD;<e$ZJB1T-1RjIB?CwC~^f;ROQ6wf>*Pq(W@^hk9z$5@nHI(S2O<@
zSwagA+60@CS71c4F?7^T;q-6_AA0LEOw4KnpK7L2M^$pCG0<8f{pO<q=)A4bbU%dn
zr?T(!cjtn?!gJhT6yM4;d4&&W+3uNA?Fe{vJ7yqu?VIG0p%~feJAHHIhtJSZ;nb*K
zjL#5qgW2+O?2I3tpJ9h2+t8r2h&We%kGkSd)bJmqy@wtgqSYk655HzTln^(1zhM)?
zUgqS!(g<U{T{>`A$WqKg=((VT;@BdGNlqHG6IJQkx>!$%Wc3J_jEtZ$b$*_XF`kOD
zAfG%*zAO9$SP2C)tKu2iAZ0*WQKoaQaHH3rUmv2i{Z6`&z}XBTI5$`M&Z$9D_yr20
z)!DmqlCb&Znw1e?3hj|U!jv;xCxYa}huhy0kzJXI^u!up<KFi~X-bVZ^+i&ytWQi9
zN}$yr9#U4RV0T%P%4wTE#PZuT9QOUZI<0^ty5*V%itXcl{tM@1Rs`hqgAc60x|%GC
z*S?1wZTg7kxBA=@{7xNneU`9voNIKu#FcaN-9}Bwjv3h)HFHTmJjMs%!yN|e@~6)|
z{ZyVim~>ca5Ik%lC22CuF86{wSa;s_b<Tq}?7ri`(>74h1_|A10RyZW$ZV~=7cZ5A
z9(@1vc&dtTmo_xG@$p;oKW;*hv8|0YqOM!YC-`Xw(F+!L4e#M#;N3EdDz2^9@4s3}
z9v+gahSCA4)IvN7T8#eVs+S$?dZ^3^o%5AzD___`Q09`&*B<afM>emI-e)L=g2IV)
zNROpwK}TQP0HgU2b|QgIwNnOJk|)6Jqvx3E;%f3|l%+enZy+smYAU!luz9`pBP?sd
zv3>s7Pzr>wVw`WXSSBJ@5v*(x^D+&{2Ba!PtJ^K*1K?A{D|8{byLI#}v3-myv6wB7
zg)@ommmny3gXG799&`^l-b5E#!cE?D3Bsx$PQ>4SWvJSLRx2b)DOJ_={RsWQoA&J*
zW)Z>yJ?qJH<xfn_He~-}&TTUGebXn6k?bE$W30;JO8T$0l$$~GrpL4c(-mLqWBGtw
z6a_n&F4zLcjS)!$C{GM(muD8fx^@D+zK0j~dtg4@<X&=8zHSWFN*ud3>S=a~rts4o
za7n0<CyU*BR3TUAi>eCLd4@8f7ng+2E584(EJA0>#8pqkozV=HBQ4pX_Qn{r(6;lK
zp<ZXy%VlSVXTP`+_8e^j6_CRO`%l9&?=*~_=c$~+IH8>TJF^99HuXyU#S@R*&-BrC
z^QQOg?{9uIC(zXByTf?{cqE^IRO;SDO2HWXH*!Mf)q`Oc&w`_o=s?pG?Wu!1Y!CU;
zwby<;`O=L&hg(z%m8sF-ZPc55YRdhL@$mL8YeB%m0&Eanx&qv(v5zMD+}zg5&?dF?
za*b{9_bwHqbDpp4{CQ#SMtcOLlU~6TYx%c?gT8RWmNG4Kl^4t0+__Fgd!&j4zl7qV
zbzO5qo_n$u>rT#@3MBA3^SvSfbrKXyP>I=d*#8hK;_5#f9|u9<o+#-=gxBNrZ(40o
z)bL_fr03Sw_I{%<R8U>PIC0AT&n?+7{f9R>GAD_S(97H)OPCX9%4ZVYx#MHJxPa9h
zzi8i9R&zJ8lvsIoi|BJ|pv(hN5XM_gNAg+WU+-1rRa>%cOlMwsegFQH`r6wY7_|<K
zSPU_ZDwyVA$BD5u+*ueu`*e%rE_il{ujAt`a>3Y?tXH<@&X_CVYZ2w=mfx21So#3{
z-g&?~@a@}O8#3LWQ4V{?xD)3Q%BX-vz#@~{xL2~K0w>ySsH!SbN^p9I5p@049Gkfw
z^)4~;%)6t+2<v^QKKRqO1b*{D!RmV;lld$>M3QcX?ghBxt_VzU@$n=mk!vB?I7p2x
zp8pK)yJ07KwlZTOlsyWJ0-PeU%n4e1nc&Hu*G%`1IB*xzl3<sh7%0oWojAGRd$$wF
zVs=bzIOOQrvk-O*vDH!C2hij{qeGJ->f@vpyqY3h#7B-kD>v##`m(tfNMy!ACT|3n
z>CE7j_TqzWJkvKMO&y?gD95ed91FwTiVS?!)Uqp)<hLs_#_rTB!1v^X;u}iZ(pO1|
zsUZi<8`CRI8%yMp7`YA6earYxI80g)uYxK@4yRj~T-50u&gt(+2EWsf4CwoM@6t(f
zgoy7=sA?RLqcTOVRsuI<?122VU`!d9nK=gv<h$oE{bX77{1QN=m;x1xd*c66DcFDN
z)VPjyZ<C6tCju&kn42a$ZXg#X*`)h>OteEeW;l&W63!9_dqzB{RZx^eq`*kn#ur#1
z-p0e6TY;vPnNBtps&g0)yh_@%vzJTce1g^UAJCnv)8AH(d0)D=I6JCpNuDK+mr<yt
zGscO8Xe~m+KfxFoY(mrJtY}}i6Qz{^&H!~%-P(AKYQUo_FL)_2rW2V|CEJ{@{2b7L
zMZQ?H@}Sqgr9KcMkp;Nka}opW6s=YGXRH(gRtoibfuqm?r(nd%Eb>P>bL0+a(!ajV
zN;)=-nV>kRzW$`E>)pgCR%%znHGuQu6JWg+yO39X5E_f03&hU&^`fQ<`gF$I17X}M
zY+{E=)%6k{KiExX06mrap|p4m$mzzLJWe4kdkd2k`#D3ZErHyez*3{?OJ^Q82fDNo
zqwBQRm7l>=#6sk9#dQ8`pHP4BmXCyqd5eaho*jQ#2=vZ8((tI_$f6{fjUTj{lQwW%
z+u7?IG>9cAiahWuAnxdIC~4zX3#!e-Ni`qhd<r=okyH4=2iMEpk|peX^T13@NW*#V
z+32gkEjh(-DGffs-5HqH(GD=3V{!3?x)O5Jg1Zy})c`XID)_|$^IICIOFt*-%dM5w
zmCcKV!=gfs(z?v<or)K@(GZl=1KsGKisY44HJoYkq8s0sa?Q0Zq)h~ssEo0OEx^{k
zUd$&9+89N`>#;21$To$uGmy|x1atXri1#83pY6i6ZwhVR0m)(DC<X@Pf_Yu}iK|}N
zUq~ZB#(#Tv5KcZ_vey6SF*U;E&A6$43X4;<`s#da=Dql@gHim)bjH|tpJ}!3x+(et
zkzyd<bS2q-Rf66V+g0YTJZ-++hr5G$Cl92Dp#&tYtRfepBnj-oLl)8cPa0K!fMyS%
zt<_FA&-TLjJNcZn?Wh@!M?$=nNnoeOi~P1Jib0bQpfc~RakI}t@m0xU@1Lv}NG2U>
zglE++qkR(%>7%1pR=tk{MY2d}2TQ#kgfzbCfK0f`Z>iFW@^j_yzD#8h2=As4rqX?@
z7zy(;*!J{q=O8GCi#$6?*26<Pe*+J<Y;Z%=cCQ(4wlxpG9kd%*IQVg6Nh4Ka5f~@}
z^n%1uNm22k89=F$-9(QBL!m*kE~S8$%8h6enAb<tzS_ShXFFqLZ`i-^(+~>`aauF7
zC2;T^PlMVUKv18{jR)mRVR*7QM6Z?zB0P}yF_gv%;koe|5&MYoH3F2PpW-GFK!gtj
zB|(dbT$-&7*}{kE61evk!H!`(3F0Y+pt;m}So^n9Vt8QFNmiE#2@<}4IuPi;W)&ke
z=MOisCcZk-UbsO)XUMC1y_+ym!E<#$UGZ|uw<lYxUr>bb&pbx+jnAx;QdGTv^C#Zq
z{*bnoQn%Tes)fT|KQ-v3e-uV3Ke@*=)OqW!6=ob0TD-<ykM9+7gZ9$kRk^vn!~JUg
zDw^O~-+-^!r6_t=Q<9;R>05@QaTV%Ag5yqUt;iMuN7E@ke;_`XI=7|d@unTw@{Dmh
z#kLqemL|qt^iJ%<ULJNg|DNTQ-#QffZPERTrxW>0GWse~fK~B;wFvYc6?knyje{`8
zVb^+so!L`cXYBF96}lpMvemvkxm`fad)prKVidRAYwKv)Uj-R!^yMHiLGNw^`gdOb
z!T89yq2_>a3%%m+=Ufi*ue0Z~G6U|R@3X3zD*j$vy0kB3KwtEH^sj3ac3HOn&Uq}$
z%9l%dkETaZ^0k$65>e|}A7kWozXXs7zd~2U@4wWI%3vK@lM$2V4+KW-(^v~J*eCov
z0XLP4;dq<(0J?(XHkv(D3?WCF4)VWpq+Ab+9)R?*=Gcny@9<)%^Y0cS3=f^k#jnLn
zPx%a!YHnlwdA+UzF3+O4`3EUtu=_4w=c-V>7STd0`Htv!SP*yc_S^!Uc%cdiHk;z*
z7kIjRkrY6$J|~cr=weS_;~9D{q48iD45+B{9U^IY1%3HLUOsh&dk7?l=};n*ON;0)
zpa%+cRj5T~UIrV>vWKWE7siC397GF&kp(+xpPpN;)=w;^iprF`6}BfFW>*6Qg`r=;
zR>{xDD1i@JUNx%WCPHt)v(DiT^3(Osl-pL3NrnZbEqPxQ{@(kkg3lw8l6R!<W%h;9
z4dUJrj$mrhZRP-q(K_XyA;R6>x1>1GCY8LXjdzi0o=qPFJ*QHPW@vIB#RGl;=75?k
zY#$^-$Ye}Fp#g-p+>P!)N4})sPLE!V#~T)CXU;u~qEc5|MhIY5u+*nv7Re;Y?H-lO
zeu07Q>MiJ*Ig;cUDnG0#4G})-aJFe!p8*g)^jQgLHK-YVz>Me`@><(i4mzkk%!4{m
zdE9){g=`5mNMBSlrc9OPdWKkE(`nq6=hXzo@-!<N;hP*|_lP0FoLgN?d;P&^3%(=s
zw>X1i?Z`Drmm>3c5<5SThvgkRFK#`mL(`W1njLokgpBd`PBmBETX;QSm7m(5eVfO@
zeRLe>+0{18g`&v!i~~wLP-1Nah^~th(4Hb0apxdkhsF#5NYJK?9K$8s@C1`jBw%H1
z<}bWMF@Jc!2g+RS|4iI(*sPu5^WdDKGa(108<S-QlxbzllW+eQcW)h4<@&z+E)xX-
zkrqioYEnu`iimVcgEW(pkZus^E}3+9_oP9jnRHK5kWQsT;5-x8+UxuK?R~~MV~;(~
zA7>1P!=c1vzVG`y_jBFX{kaypr@!^`rs*JosSgHsL6#}EcPXHeSNPTdVN3s>y^%xg
zn>^7p)*)7WaXxn5m@|0lNDk6_#iE^SKR2hFL~4fMOMnI&D<I`0NAC<LesAE0@V+J@
zU6^<p3@9U5fWAe<y18F*yD;8_;7vu=Pb_j?VnC%aym^Z1gpXk)F=^C3GlMa$5bJn5
zykT%!59Ih89Rbu#d<;%-j1w|JS1z&(1U04KQ=?x1W3d}kgdTlSM*9S?jegPm6_K?u
z^KdZ)T5)?Yg5{&>CMXfwo-)jF`X@qz-k&s<k>?S9asyo_-3rvBC1aQGXoy^7?`0Qw
zeLz6@nY&ok{;LCnD=wT}9cO#KuVl`n4_DW^yHxFHe?obDq5`Oti*F<DBvkPx8Rn9P
z6_q_*xx_ep!)_!*9|xn{Z;n+fJ9SMk+))J0LB}uUW-qNcF|i->ID;(@GK}<}NvtbS
zyYP*QhmM@As@QngF2+5aM1uC-Vsb*}{-f@d`3t2WUSN+%UHJid;+{jyI<~s&6jl#H
zm(g6g=Udkren9F=sf@V~l=4ljdwi47U4MIUj#e~GLc;8WkQB5MKJw>?q=A?i_QLKY
zwNMJD6DF;Rz5JDIi|s81!D^k=4}2xoFlfy9$t@+J{vnrg8kuY@&EJof5QeNg!NFrd
zf?=cM?T>;sgArIql?(8OiF`BV<x7Gf3$|6p3+LHwjv7k3DpuatTS=x=1@v~o_c~o!
znXO^wUzGV;I#ytS57EBGh~h)o*qM9X+sYnD6egFsw5}5%g5q&-HGj2EtaeVS$ttLN
z8X3vkRjyY2v(gRCoS`T!!l%i%v%FjJ{-XOgtzNli{6r|ycJXX8h-dLPiO(Vqm&Kgv
zi`(lzU0=|))Qk;YReUwQgRrl<!x3^OeN!15>}H_o|8qs7e14)$|DwY50oF;h&u#>y
z7P`7Dizdth!|Ap5=@k&(j6p=lh2CeJ!#UOZ5w*$B-%E~f_m!Ebr=JwWL%a>*5pGFS
zX3;X<3_oo>X-B!Aqb?^qsBhF3LE~ba-u(_>{>n?9NvCNG|03*U4+)5e28C&Qa0%X)
zJ2aw1t4wtIBoY)P3C(4dk<X#3_Ije4`hx5p_bv{(WEUomK1}+O^CaR^@GhuqXf2%a
zHZ2)_O-)^0SKu-HLOAusd`qFGx}#bjS#y0QKWyorw23XPYUeF$>*h_f%v6!5?AFXs
zx<gN`E@#$&DTRUijExRJZ24nzHmQFZ39ZFDU5WA|jxbE#eiJ)bz(a&yk$(e7h|R|d
zDl``Fqib3|W=J0PD!U2^G;kfaKOkDdh_S{anTJ3gaS7OO6bgJ8!QSobW05Pom|WjP
zHkccwx}yi}oK@NUK|&x$)^Th1dG!V4{0s$M-(U76-fjhX=CxBi1|K=y7gzNPxspO}
z)TlMm!_xHeqB)?0!n3>%!htXQ8XRBBU1myafHfK!6+8d?Qc0zL!y%?8!w_kk?a3UG
zSgu*dxZ$mr;M*9Rc0ET+j0M|-A-A{Fi;0ZKU9ib~oU_?sM)$MvodmmVLl^@A*};|x
z0PbO2iPzVkZ3jhxStYkNX*$&ahg~m34HPM;MWH!>)|ZWVa5wUewhNy1VuY9~e1iNy
zk6v1*t+C9`ZgjhU&$}l(wB?;&1!l3pgQ<lt+nk<rqQx%8Cl;}FA;^)8)xNW%9v+cw
z!h&cfl&C`(4L$FBWJF?B2x`}vVP-28Z49Yx%O*N5OkZ%4g^hoIAEB~(u&az_#dW&O
z>1)gp<D(<&qusY$pM{$_Z)-IGl<v)+P0Suw&CKXM>%U@(LL%4;&LFt~Mp^X_M#6>5
z*fhjg8+!G@0{^-h|3tNz>W+XRlhV5%gsne|CM~|8XOK&#?W<<h^w0{BpS4Rxsi03X
z#Gq^kjgb;+87YSvPGl`NtA#^GCVJUk$K*Tu^VI8v4#4luk`I^g#I4g5tJzbhArEH1
zZ0Gp`tP@U$mlqTO<KJ522Yo6_{U)w(`S@*8>38M!#{st7Z18xvfs}IJ)SK~rzD|D;
ziycOled3QmFu{>xh@|rSnlg8eJ<{+MxRESZnRK{geK}WlCF&dhB}ahf8Nta&aiwh^
z9tiNpjK|4SG|_XQ0Tq`eG0kzV)QmMi)4U0To};)CQV9#&&pXZ0LX*RBgI>V;x>kTW
zU-^!Hx08K#wx5IO@HIIi;z!PZk|VU5Op9uwuscGkosZ-c_g=Ygzlwq?I6y_q>IBWE
z>bwrol&?^Ov@>~&aZs=cj*B~r{xD&yI0EP|!HeX%ZN<No9}oGysRXBB$Yb?HhoQu@
z#tIgokqT()gf=JeID2q4$4ehV4<N;<B6Cq6Uh)`4JZG<6#I9qmtf=m4FD*Isdq1Y@
zqo%~g{#a6Ou+Psu0h}C(L9In*1*T9qh(%N{Qm4z!JU)(V4r%YOdoULmB0IeZ%QLhM
z4o9HYM;FX@S0;OK**`uKG7=M$k&1f_ixK8yE@}|{@x&p<G=+x4os*UI=LcZJL%^lB
zvr@OIZgOhAj*9R79;UcD%KsXQ1RI8(n8gR9l!gYs$K*jR2t8{e5dq>(3<c!O2Q%>t
zSkL#p*ioCP`mjc(oVA7Hf{U%O4m$$z0_0l!R9W|D3?MP<>dO>Jk<!Nrm5?UZZeuQl
zW&$h}AWO&;e?@Ae`K2guIM*fhh7nFcc)ty94OzFvctT$&OKMfPM?C=zfOiaUd7>P$
zeD04vle&C2gDt%zliY1kdg#1BYF|^tJMvo3JV0DXY8A8|JEH<qc_o3vZ9YQ(`NuCd
z!NI_rX5|GYBD%V%HWJ>Wuo6owIbn)46QdlZRkOM0-2)H$wR`nO9f2nf-uGj#he8$9
z)OwPjmq646T&MF4GO)3)z}p1-v|`OX?bsfFsMrem?F!73_VK8*Q%^a0v`XpcA&$%M
z3;G?zDkYMfn$%HtBrr5Dl$u$qNIL*6|6f2QqFuImG|<XVT7>OuhpK@frt$#|qc6M3
zxuVoRdgD!plX9a^`|%+#s)IIgdx;0H<qa2#H`@Z>JW(si3fsOO>I*E}3VzKJ630Hf
zwiCjDun2!XB0V$S)wMUvFmH(~1yg#$1PVp=D?L9ahV8MODZP$zwd6NtQ^L-^lmy9R
zWYVXTmEmvavRj_-891(JVI`SZNbSGnyc0=WXYw}2BUZDPA5oO7S-_Ni-}!Q%UBb8O
z+PVE)TAww@otq)S1u!Y;33;VFaD%cU0<aLz5Q#DUGW`WQOLVG^xguIa5%PR61_M;9
zBM{0W6SvsU_S!k>)lbO9N>5kp-TRvZmECq#YafHmD=s(FO)n@JZ+(Vj$Hu>V=F7gM
zLrcZtptigL^?Ephw}1|tr4F&<N;KcUt1{}PjyrCNDBo2)kvd<Pxq$U;JL*n8ycogT
zS21fAoT4IpcXx*!ZiH=;97f3`XBqM3k#`_dC-a~kwIA=GS(jx}v_JFDzSU`4>oo6{
za%j11dlW5)Eq$5yi9y{_Qe#jD?|-A5IQ>{Ddf@RJrDjOXd<601U$*OUqc};1gws(%
z2au3{=KIiSV?A5~)=A|;wX5xhJ9^x3DlOH%DbtO|299rNU*}YqEkEWAQLHc{#wOOW
z1r}osha7n}pmx!w;0PzO6&ol>$r?$wYt@*wdy6X=ukI}bFHush>*LehvVy@s+f!A4
zNj#(}{WbZ^gZO-i7QiO7`;ut^Y=Yn8*Iw;D;m9>?;yLREV8f?G++J+KC1A;LZ+{%2
z^jsgQI0dGc+U!M=Jb>@SWf*%$LQ=cQlqrdRS_iaNBWAuFXtb!on9zpMc2sOnU7OAD
zl}Il%<~|iSmCC{z?>zeS16Z?|wWCi!D|k<d!tZFhd~3w$#qv4+g^an_+-pr4*Ii(0
z_(M@*gONrqKN$xIl@U35o;A>Nl_X10Ea@6zt5dbtv1AuFY&`&+_5$Pbt#eIKY)6oe
z_$NM&Fk}HP%`UA(_J-xp%T%`)dqfs*>+Hch?rS_ob;4v^q&=c(1%sgqeS_=*-&!bL
zM0^{&?f?r_7!_=rOEU4IBq+b}k;@oZa7E$U@n)ds!>sXr0_J`UbkUmcsUNn^oD1%R
za3!tY3JBx8%d~Kk%6XfiQ!6q3x$P;9-1iOqiH`(a*`D*jOL8Aglby5F85+ni&d~6s
zh>19|ec=Y?q*O(Syk-$MvTjS25%c--+XjV}P8gU!uzu(aFlgird{R2GrtFMkkz?qL
zJSP0A2cH(s$MRR~OIe{I?skm+c_vH!uR0%Bz>|w>E++WE12FVmdM@E6PgGQY9N)7v
zxLCKDVB#*)5iae%w)Y#_!e5*_6LFvl*OuTRcT}*M>hAy!(j~QZ=2}W)#U~3l_cFqu
z6|dHF_n;98Vd-npL*L3lpPc|B??~`6?25j%GdxjSj;=!N&U;Sj*bj&)a8AmrxB~El
z@Jf>)=j~2#s5#v9bN#*+5K&|hkFOzumT<<^>`_&in8Tzm?hS781hNmv9*#xB`Cf5W
zQNFmC!q6t8D@roO=^aC2*w`iT=aQ1)HUR=fw!OiP6J>XlQ~5s_6<}Ewox~9Hok9nO
z)jhD1Qfi6<*YI0M+_^@hl*<L+`I@P89)l#TV4}=_TPd8lyqUe%Hxh7!yhIe6?Nq5}
z%O>ZC*uzNgRZY6IlYVVtGemAaS6_Y^yshqEIGabtt`TA=8kodocMvG-q0wAdGgVo3
z6SQU0W{ZwqKIb-I;Uk7i+_?*GmClz4P8#hO$8~^BZA}%rYJ$7R2M%zINBR0rr|2=X
zbgdnhxUc(1*&ICN@R&m4r94{N*#eqO405}ozT+W|BsbBfoTq7`#8}S4%?+oJz|aP-
znmE80M!I~C+C_q6+R7}vmJ}i-9s<zxDXzb{kMoWhU)AQB&(o$7q`)iKGTnwnwhu*V
zn1ukBJj?b7ehCK3Vw*(w7AwqrV>7%f^liSx#6d~!a~VoVj;VQuMGkj{_AdWJuh8tP
zPxD=|y!h1^U*`)9Vy3WdkEUY%x@UOs9(j^;2}AKfCPt@k2Bug?v!KW=J5ej3_%)7&
z9b{RhKD-YU26i<#4t^8xY9{RsX#8xX?*cs?&Pf{5A^4s3P2ig=0RNxb8EL8N1Qv$C
zCnIO$W<JKHW>3Sl{VLyiAo}}kmQW)HN~_(-K#t8K)yR10)d`WSXuSEpe2j91S<cQQ
zwoOH={_+dKOt(tX+2WV8_SHSddZk;RY$WO~8{h&J+}>^=ldC|pQMaLtu9~;619?7G
zPWYrU%r%YJN9hQE1@yElP4fgHxmxyxRZV@}@&dD_lVQ&=?fweWA@T)s4W}E))*7ZI
z;G>6#8xv*RiyH;K1~3hjtqWI14f9FQyH3TCdTZkjRQjq{LtI)XGo1^J_Cc@2SMfX8
z2}jGau*%K$HWbX`TW7saSHh?!A15ed_yIBG%J0Fb^}If3WU^md`3LorRA!nHfur`k
zZ?>oB$a>!m#$WDL+PE2;1|isvSz3%F0n+KW%YjjAR3*=sBS`wzWgR@X?Oiay|K1wp
za~6UNI-a(~5wzs<=+GTc*<E-)$_CyVh)z%Wtyq(@-j~WVek<xgldxm8%^jJr0X4&^
z&+)68gYj9Dz}5f^YzEb7uTEJt-<`i~vz=cMnBqRIDN=<;R2u+A!&>X}D^D)VY2*rA
ze2M&r1n|L_Pt~>N_u@X2uGMnvJP3j$w2W=uIlIPKoS9`m`IzMXGZ(tg&!ACbkfkKI
z(Qs#81IMUUaSSkzpT%sTfoUAgmkVAI`<``CL!W7~!T@p#=Z!4k=aV%6ky5ExQRPr@
z95=bsx5=mzAqOT7QRgWJy}0rA%{5T87zyKPZtu*x9F=YTToj3Ml0QT|KSiv=Eoq5V
zJlDmC{Ay1HwFKtxC90Pl87?^lOxosa$R-*f+gqZl!&Q$|hHrkl0V>A0^2Q<d(U`j*
z9X`13HOOPhPP%HvKv(bVUqt93byZz&00SWA!nXIFck2z#W@istM`lI$(MFUr#AmmA
z9xi5>=x_X`ydMYdB3H%TFgNpgdglATnMb5c((AB(0<n@?24aXkXoQp|ZM0rAi}1AI
zJ|9tCyfVvG+1eOuAB!KbXh%CjhnatE0gAO*0OxjihoZ9M=9MIt1nawHbfX$(L+U6|
zFCmKDaakYv<{~Jbsu8K-Nan-%gOLM%*2lUsvtzyC1vQYRa{VGEE&TbJ<YfXCdM-?c
zYAEt<Q>K0#%)6hb^ig(=ClkW(skybVpRx_F647IMG<aH1WfGwrwsy=={ypDR`^1_e
zw#-8AyEIo7<*RZ`$d!?xK|SHg@~y8?kL>(%G;Y`lPFK@ve}rvg_Zw_OEXc+vTn_3+
zCKMFk#Yfv5PUcmtG8<^td{OvVUz0V9+xV2Tc52-}j*um#ui=Z;&TDreT_tI+3O{2D
zlYwS=$33YP(6&`6Asij$coUhhC+{S(Q?*&i#qcw3pAcx=#TLfFs}kAgj7saEi>qju
zzY6^KLmr{uN&0Nh#xSMFsxa9-C%P@auO9#tV{ab|tFzcbQhi7t)31+ZHR`;95@d4Z
zsp?toB)WM#d`VmwLAfsmu|O+$puaCeMvu=Tz)$((%%OB~dOh}9WTs)(2Tx{3OBKAd
zM|O^NKi6OLIx)Za_=j+zQoKS^{dglcV(V{$-%K4iUo{t=w@D8yxDK?q4uH8+bFEBT
z`#HT(gdk)v{;J@|FUACy7eTxxXKqVp`^qmg+qF7(idT0FhKq9#kG1#TyG?424D&AP
zGo4Wu=jIF9<6O_sxlhdqH|N_NRY^?_p8%08Y<}|RP={~HagB1aX-34mgGuF+)YOb)
zTTdh44Od$q7-0_6)E4B-yWAW#WcWDuqlWJ1h3Qo-6<|s4tm+5z4J^B8o{5tfb4xrW
zZ$ILJ@ctEHl4;xU{Zut3kgZ%_QxyHjuj6QrGxD+XLyb6iCfgjik+ioQ=Nf@SjAB4=
zDSbR3lhb%GHhzT7PQ@k_Z5Y3D`LzpsxefPPUFaNX3~v*1HT{EY&(T|k-zs^1KoQP+
zneMiRnv?dfKnm!WHc+Eb1Ffu2e2Jsyl9#c5Xh5Ih(ENcIJn<vgmkget{Dkf)>LZGa
zfDPGDzp1Y*eEnYO5yhXWd+ua@&O9yGh>9u&#>+c@CM0!L;q{DkA;JC6sR6`b`$0ce
zv@rsYBu@k^*+Av^ffQf;4C{;oa_(=cf2apG3ZlE(@ViVWWvhWCV_+Iy)CbDwZ{KsI
zc-Bx^`0a~!0+m^7wzenudhj6%)3y|tho6Wc$O#lH#_Tq#R7B7asQ=L=!s7lVwaH=_
zUzl`qPoJ6yHT67=Zscd`t$+P{KIqITA_$td&lC2b{RgLT12qc0+@kbNh|u)zT|_7k
zA~f9COYhI;hw;EJwwnf5)c^Tx5IJIK?p8nd=eMICdZv-}5GN`;JVO5V^($}$7_}5>
zrmN%K0$D=G*R$P8==1XzRaD<W2P{|h`t`S<y1$FF9Cpa#dO2EF)uVf*W<!8h;AKI=
zDIoOs3k{<J^TtUm8=3UV(vmEux30fAxAjETA>8r2&P5KNRn>k5)w%rhp8WGCYS8$<
z{nOpQ-<tpU=l{*GL)muz`9c4DxBvND{m(z|fB)<LFk1eGr~m{B9qj)P_z;XgESP_P
zt$TqEp4SN!{{x}|{_>0YZw$=8pGP+ba4Yso(oCm4(FN)2xRvDp6}>WuNIiifl{l*M
zT!y<b2w9Y-UrifJ{$a)Z^Jgld(yy-alJ~XwUZv7$oa)!Grhk9LTDt;(%seIFeGrJ5
zj)~&k{QGfmlTk|*j^Cb*9Wpv;ZNK&EuK7drf4=XZZ;?u<VFk|8WJz_jvtP6sk0^F;
zbE8sA|Knq=eXtAkN{HD%{x@*UAVwYzfZPi3eojUTC>&=tD>B8y9kkzB2QK8uBA(7@
zXlY$~2WbCB(J&-oCHVyf9&Gu!g<ImOfk!*MpX&d@votj}egNPbva;BKfswnF$OzyY
zeT}}M7dJQ0Zq4uAV)AuJ-hAbAP4e-Ue~1TvPdY%5Q~i7U%iaWTzU+#VJmteS_DBft
zV~S}xC28}-A6xNtQyUxcUDD^eE|(=&+vK<Ud-?-1!vXqfaqgL$z+wB^LH)?^E!x9z
z@~dFfYhY+{k!?8OOG>I~dYkb~HjW@S5WiqNT_0@}pqJ(*jW**~+_eV=bGb7zam}xx
z7tL`B0nbob7!>z1DCo?j=Vyp=mG)XU1V#gjruc4oGUm?mre2AtbXF7@@jRp9Xs9YZ
ziy1+5AB1(2kc2Kd^SF71eksZ?({A`$kZ_ivg6-uc#1)s;WkH?1BV_NeXOG<>Y!gO=
z2qo*fEGxPFW6M#Jb5FMUGU=L*q3sm1jReDdFYK^+-|O4#V|)y|^}%cLJ&2d{{aRjR
zTaqsNBx(8#z=qe=c0&6-Yxtk`E?&RbZ*<`GijFRm7|iOp$77786KFou3%PKOR}TE_
zJAN6aGEq>{vU^;0a3s>^#e!$wUEk>3%=`FoaB^Ih3-i}2H0Ju&xoLoenpjaPi)?<`
z%tNN`+NSzHcn}@00Jxl-*D8>-|HrR}zp7uB!sRn}c6Jh~Ezq{MH=K$4c>uXz4B#yo
z0Y5Uw(CS8xrY&|m)c=v8)%9Jgi{~vL{uFSeepf5>w2y1sWa5wM(Kt+eJ>hu9H+2*Q
zuv3M}MZY&K85kd*e`B5-$ccMG^TT)F=C=)3{n87Gm$PI?SOESVC3#s8hyQDE=V@zs
zd+Jv1Td5a`q=FOEK;#ujk%g>+1Ra)+KCD7>y!C}2&&wnU=NpfoC)zcXZH24f0H`+|
zWaz+R7kNps2j@eF7cc+w?aQhB{VHhkAjJG47gu39=1fYw4B%F6b9gfgcCV7<=Lp6(
zaTFp+q#V{Dh@-;?eUsw`&Z(e7ucn!@j-{>jH+W%Wl*IC49pJDHp~R{hP942SvjNb`
zTtLw%s;x%AQ<KOY%~nT{s&Egy$onW5#Q{1*!-n7(vA)bst(T2m<QqA^9a>)vVGHv5
z`%Vo0ocQkQt6YcOt{-A^Wyiu@-Om8IqSWT!EP!CPT>5gfI?`ig_JJpI(@Ak8#-+sN
zFirVobw^5!PvW|eP%o(g62Jg$=Sz9y93d_`gVgn1i2ibYayqa!@C&>MQ8igyqQ7x-
zZ@H3~(rp5GR$in3*VpE-8Zd8Lu^RMr?AV-pj-cYUO>F!1Y6PC#w?cA>1$BAzft4Gj
zTi_`mN;J3d=zxRF%Xor@o3y9yA|>vWfWoZT%kA<OiYRyE7bcN~OG}uFiP`ZNa|rGX
z4*rA%W7+Wol5@3TWe_ipLQF#@0H4#X=f_Wt@~`^}zaG}h#yPY2tsSR>l*d<{rh5cz
zZAWYPs`lO$HJ{?A&b8x6*wq0*6{~{#dVOO>2M>fZ()M@$#6h$Vhp4)pD!kwaF~Vnd
z(cQ3a`TO^Wh=<ShHKN>K8ku8DoLOCX%BDb%C4-m+au>Pl`(FH9g;o`kxxZ{o++n~e
z-^yQcx5D;#|BgvO#YJ2VPDDj&?Sn4HGx~EwER@8>6Dq2tW1b;~qEuw4=pbeK7R6+<
zT+NleWd8H^S`)#?_;@)@zZ|p6=b@%+^O3G>Yyw;Rmw$q0Ly_}PS{jG{MiXa=L`684
zq}Qjtt)#vK5Z=%Pp`ne7pXq`}#9d})-nBfY;FZe-tVZLL*(@RdhU{AH_qX?Gp#P4i
zPclA+)Mp+n1Sk+|z_(TFDV-eD&uVSrIP8uNzaKgmeAs+2eY47FAQ^v#fzS2e1W-@c
z={jYTn;e=mD;U*xUmYGFgNMd}d4Dl<)&vATn9l<fR^AAJ<E824HWS_bu<ytRIIE#g
zc!gF)j2zb1e$C8$(4<U$tZ4?kE%J<J(}xXT!7N<*hUtg<=HiP0=cwUw4tRN@VJR~;
z^gjK+Cj%4?QnpD+^XoRY9vl$wef`vjet#7E76`oOD#d0oTJ_hAkJp%~tuBykv;ho<
z4S?ZQQ~^oSz1%j%xw)#e`}G5>7*Bi{D1SP+>ElN0s!VB_wv6(h7i;xpq)#P39RYmR
z3$(1t6mwpCnrG&jZ!?o2TH0U;V2Xlw6+OxD-QK=oI=`UP-WTTZdm4fb%B6Kpx#6~=
zQx4xBChcW^DH`<yzEf{`vF3U0_pUMVkvoQ!j65Gq^^)q<Cex=WG;M8{9}|)$QIK8$
zLf|xuZ%_F;!O-N4)L10kf!vO@PTqKKB;6{;|6LBc3xTM5BH0(5u)F@8Dpmu7MShnV
zwR3i&8qM<)<(mx&zWGWa3yC+k8Jb5OSf?vC<S<SRlB+Yzt8*O0JP1_AX0(SUjV6io
zrXHw2_LxcT2<4%%b-;Yj_=~jXSE0a+1ipx{6OYwPS7A|Gx%}LuRUTu(%`o_|dv5+k
z;}N4Y<^!xd{bl20Ed5_i`d<~j;>}$2QDNZBOTEjHeLH=axo$P5woMonxh2<dKZ7Fp
zv+d|Q$%C!ZI`INB9v-yZArMLuqCZsQ-|uszU*%TsK=JY3S#>{U{B%lOa`ppZlS+FK
zmoOe|&+y<d`~qpQA##CL^q!%73$TIj4toJXdCc$gw`$%kWm`P#W3cwyNr(}4UGYDq
zs~3w2duj;M0_+VE&%z}0k(@wCmc{r@{|F`>6M14+=Q8NW0(5`eVDDdtr8dDt=-!5%
z9`QIvYDXZXVmJ8oQxUC+BOu9dJVbEKohj)2a6`jVn?vK}Az;z`h1yfs<u8}#=eVu6
zZrgF>Y~*BRaX>e*oFb%J6@zIIDphc}nwutg><<rVXmV6ZyNr|etj|%I2p-^m%10}>
zS@J%~7(*4%@&TE$DWSP*qYak;l8q_Vd~!Ovz6e86g`d#yt_IfpTB08b9w?HDijzUw
zR)cU=C#TaNw62Cq3kmPw^v?Iz3rdX8;Mz3?FWug$s0_$R7yc&U!eFQTu^wEp2&Lg+
zGs$T20j;H~&q{e+AdUfEb7C>+M$w=gUQ)8NW3f@EY+h!e|6J3UXF2UzhHnMK7}!SS
zGI$;D6OBm<5-ZbQo+ViBP9|l4tv`d*7iHOjT}L^`aAt&$EX>>!v;f{zDTq7|;*FlC
zci(K|C|S1jJ}1U}*IsFnZqns)DpPGJn})>cGmvr+A>SFW9vKxeBB0&zH1yi=8Xi=B
z@Bg;(7bt-Wln@~_6DDiOoL}tT4Bq)ZZ@aV4)Akgi^E18<Kc8K+3aO>T*u3|^zg1yK
z;VLteeE#6KqaA<q;^m9Og_E|rZ=#pFsMXn7UX}B$5X&^(nsKp8RLap2zxGY}UPLdS
zg;J6U9Et;fCvRse&exN$U$ATrszL!xZOgHXwS6RSf;qBG03jnV_RQW;8jSyAo*r@?
zSw6abHwA7|b4%Tdb!|bxUcNdw7O2-gc2Ui<V`lB;+Ho36LqzOpSP4)CLBfPEb*G<x
zh~H2n<WtEgQTccrFxLPA56tC9Tb_0n9vy*q5_D1$8EaASgtqOYH(D>bEC|+~gu-9O
zII%r~X`ZdIT`2i2)6)s&)zx(bY6fPT7p{HWVsrv`O%kr4<C_2aX?foo?ns8Mon6qt
z{k7YhBniOQ+{oWZ6`*|Zu-z+>CC7sabXu?_%!9s^8VB&W!}=%COM<c(7#Khp1h{85
z{zWGgWsO~<6EwE8<mhUYaut$6j!P@Ani{Wt&U&JNW-VBB!Q{)jOqP>uJ&0&Y{|cJm
z>9cuMaqVT6+uR>6KX+9<N*VhrzA@W~gyfypd`>LU?G-cj6&rg35NiVp4_Yin{A`>Y
z=dAeTxwKyacJTAGikgeb@-qA6&4)%-?2YW^{@`c~ibGI}8M89&hyv^}i)V80t}VmO
z>+SY!I8-0+pgiO=yBcTGR7rE*XdYVafNS+Mjm6+fnNY7o&*wGM4H0){+Py}e*)VuF
z%b^;nkMl~8@W2qCIVbA69~=Y3r2-9M%>D`pga|V|1L;M@bGy$JB$4oTB1+mrMw<e&
z>YR(9_S75s^m=g3b9sX`MM~-Ii)@I?0$I%OufSZ^_tgy)W3IK0!JvG&{WRhOUKX)c
zAQU{uxxzGEAoT{gIT{*VQ5XaOs;{!cVN$YMn!JC}8X;?x2y&{85?>Mydp>7@#sPL}
zlMv206EE*-PnYuE_wOiP_W^dbg?@QMl$T#<=}(WTq6TC+enHV=Ml%#}xYPZ2fct6D
zjtCVZnau{SB*ni!=Z03uFg}7j1vy4`_ODm_>r&_uG7>UFg3|d>tX=v`kn@o0OKLzu
zpq2Xltul&;$A;5;)9SbPfbDP>9Xl&4Hvr#X;^d`Ek-q`)Fg}tnKikv|_5A`AKOT?}
zs4Hq19lVA+hCZszb=cAqF<x1TS1o1@MfPYVEpVR}`HU^r2bRUPgN*s1H;PvVd4DN;
z**Q%7)!JsNO}AB^)IRj2)zs=VToqpJ@^Lc`3x*FY&S(rDN7n6mL<e!fr8Pb%Hw*r(
z1(y%ULI^}|4zZltI6BW3tOcG|nDxLvhDk=m3*%5&PEkQZxl_mdG?3qd_iPCBfdiO6
z9>S{_K<aq5@|HL8IrS0UnMHz}JYbcjr7cK0)G4sk9UIk4`;{LvI<NQZoXvt<$NGUn
z-YL_wwY4n$>nUwc7?blt<g#BFnV=QJQ~H-su-5M(_HNzs0u#&0$z*p;ufXy?84W*H
zzYHlarv-Rwt!gXWR^2Fpl*jf}UjYAk;KNj~TAs@hH1VZqXA=J^uhXrU2E#BY7dv~;
zxf4i3VVs~&=C*T|J-hT4ku>O7IzAs0WB<#8MYG@OcV^+qPU9^!tRN0E)@Lv`?v7}w
zq&Dh1JyUiEr(mss6{#}q_kr8#6i#)dyEpWM_B5$_Nl316?VzN+*$}#FHeD9<H?rX4
zdPb*Nwe~=AYoMrfgA>Buv<8r|d(Z5XUG1}RTC7{|l&22*yt*(48A*F(#+G{4=JMHY
zz8m|4*eW#9a{tLJ2n-C&`=Hqve+<ay@Rt5j{(qSThexw{igvblhNM+@#13dj^yCD&
zLYn71z7Lk+=0tK?>Js8OZTl{X?R-^yed-?sE9Q1w>jLR53h<rqADin`(Yt@aAqf_D
z_B_|7PSZLCWD8kV&tgF$f|DT1STllJQ?|LMDcuX!=&uO+-bp<TGj5Q~*pK#8Z&RVi
zWRbCC<0rt3H~I3cIZuK&ZD?t(aMdZUXvGoSgXZ09;n@5iTolx^&wt_%#6K<Cb1AQ6
z)DG(|v|IFbhSNxs7*h#>BrPelpnlf7%bpG1$`#zFj6amehNxFtm+h<{hMcCB)e2IM
zL92x0sk`(Y;?v^Z?S2i4TMlvilhK2&hT2!g=*0Y>6Ln|H`i-0=fxfbej``{98jqJF
zOC=tXs3#eE(-0A-5aAKn>=?$pk7Yxc<~_q+c8rv%4AE4h&8cVO51)}gj0zU@0zqAt
zU894XxZRQ#B0Q<#fKrL>1wD81Yx88+1c4gIk|1JH3buU@lN|Z=CuoF#oqK%quv{73
zu3mpL1;SGJ`cO=Psj2C|nF42LXGB{Wvpx0sMFskJcHo`{cXLR>=g+uCZoDP+2?KGO
z#RNxUpYp$$x0VB_Kz_cXa-OH>4T2jIRXp#arD)ro+d<8)#{2_30stz&a&_c8uo~q+
zQ~ts?IECNk*-BDsvw9J2_enfY<M~*DQ{itl<V)Z>!S~{LqLlXx(R7un=-%|LE{k5I
z(V^LU+jM<T$&9JV)3e1Uju3E=G6F$i6PY4X)<D<nwp>+eBknhf4q9YQJnxwa>lLNx
znKUVOJ-9=&y4HYEWcmRXRu30@K?6BFzqlx>wicWPb8}<aZ0l5kTZufBgk{GwU&cao
zLqAvnfuYG`9Rs4I(e(*L_34l9(zxJQ>wNV0`8rtXS)?!QlSPb2LY~lM&(K`;SPY%`
zq4ZrCxiN8s+ItcG6h5`+DC{}NVa4fReRL<c@J%9Y<3mc7vtCYXV0f)~|Ckv4(7%|g
zqc{~_*Inf2KGi(t9sbOaCK{&j*z_sS(_cz*hVc^1{68@%ckclujotaW2pOOQF)<av
zy-|^m>oVn*vya@BPlR8R-TAGQNt_nSVBz%3eo*S@&^t9_&;kwZ)PykRTy6aENW0i_
zFK7IKOL_|`O`(tvvnbz=JFnWmG3jk4dfO9A$oaXO5Pu+a^ag@V7sjs+^RNwvHeaqx
zD|@C-JLF6~=LSJl-E@T?4Ky{~<QM`*j9PPXVVX-IKY|U9NDh$bgW_G!D*32Ek<;xC
z5-hTDHlG(?*jwD3rg*Vgt{M#LlNFm?&l_dQtIr@$@+1t)S_9u~1c;NgGhsjBhFIEM
zextEUC}~Q*7zuORAWMqBACNxW7!18xmL3OS=MRh!_o+bOb98>q!H~WNg(P`72U$^n
zdd*2O7J}f$8SsCWPLW9dJNO@6Tx>xAfuzv$`hW<9iaIj2NX!vYJRZH4bK4v0G=jRs
z-fQnwQO);^R?;tzOr_J6A|~_7IyF(lK*+prvF&BQ>iF0VcE^T4X^{z&)IH&|jG(2y
zoTKFQ?XR0PS1MgnFfU7KFQZEXWnNLXcvZ2x)jgT^hXp=O?Kk6!9!U&C;`@A-9PF0W
zW)=?!E>1PBz7BTt?K0Z*&39*6zf-C<VIerEEVkU~HxzLnXjS2BbbB=gjx~dHI!K~B
zjXyI|SykaDj$Xd9%1m>kb1dV{vGvH40#(C&*Mhylb^m3YefLTiw6-Mb%(_DRZ*?i_
z3vE8cA^LWwcLA(_0E<k@y&^-rk$*GMx_lS-P9dFKN!-(a0sV$|9HJ5W9iwY?KY&8~
zO-MXM!}aO{Z0wnIN+2xl^EX~!wZxKaflJ$TM=gB({5wW!2GFTFH?S8j)*s)@GB<uV
zTWZ*wSak0%qd4@!zi<QM=|8?X+M+a!o|&I#Ir0MtPo+2S%UPXHXQazgBQP7_%(-@`
z^9W90&%41bQ1)+7wovX{zhTlx`h}9IY)Q|YXkTt)9;wJ0(P}WrB|&2w33MbJiOs5}
z#=d@il`1(?ul?wV6dbhrlKWW8l-@4;p;KX9ZZnpsF?pHzpGDSio!Z^dIK6N`>KC#M
z+sK0B=6t@HE-6XAQ2{pI<X4;F^>ualXpc&yYwQ1hqD=@yGhV%vI5woe>H!*6TU;2A
z;9g~)5Q}E{1QU|mr33zKna(seOD*^a5-Ne9u#_z^&94;XT~q3;#}`!6v~rU3$HaVx
ze@>5$<rV3bFbT0ZgT3v$92|Q2$`7utvjIfURgAi1pDOQ+YL{>cn&!gCv7|+UQ>OL9
zI4EU21P{?cx8_5B2Lx1Nke`CA4Ps?943D}dtzOIi%QK?|bIwyX@zk_-t0{+iFXO6a
z2RgY&);W*(gOY@b-#)_Zy_poq+21%(q-_FhQb%OB#y;g}*qN&AI#hhO<<JWyhxIWV
z@F<knW}|c-b?d<E=XoPUWc2yb57{Nm(d(Sch}Eh=c@4=A*OT;L>Wt=l#sYlROz(kN
zb&e|NG?s|DLJGD_#YdiC;kLralI8iq)#!mvVo+pESHt6f|8@bXk6)FZlGIE#qKca}
zMJhhGz&cQM)?{sOcu;+U)!)!Z1{%G#Rw@;)=%pmAC?C7Cf9m>Yn7%{91O3*NZ>E?k
zXHt`%ejR6fh~*4K=Yp1Qv%Q$z?j^Y(y*{xa7_v1@O8u6CP_&$%9;vtP3;TDTo`Xi9
z7le3<u>YB`B@o3eT}D%nCCsS~mMwgt8Fw)-%$@KSws;rBF^=AGlp90L(c)kAj2E-@
z1=4Md3wuC}tRUv(lC88sD~|W`nB(ojfxhs@w%*J`E-|Kg!k5sap-xLGJtw)Hzqm@)
zLRD*?YnsQ|89?ksIj{_BvTrzp^BeboQ8t0Y(m$<%w?gq56jinWaz9#^QKUC#b2Jfk
zDx}o&ZiI-zd1K<f&cx7kP`-I<qREo-?5OtUMzuNKGjOV_dPH7-u!cKUSZXQuAUPEy
zZ61R4R6y+rq^{_N$O->*84+qMv29!<(ix|t5MD-Jzapq;O0K?4>&Wu=TbhVwobEX=
z3JLVAccoiLp;&ims&{3SGBniK3YMxiBj2o<MR!wD5NP$$8N51p86-h)RgwBLQ~^(^
z_YU9Yv=e;Q<?KN1&L;vj&aqk^dR7<X7QIuoOF!lite;~O6=M*W_WY{FyC^k7<Th^s
zaIVJ}z;6p?>!qg9yecUyti0gIO-Z7*oO`qpSNuMSjx2(y?QuS8Hq-At^|dJ;H3>~X
z7-?cmCrVOg>nFQ;X10(`q*=ZvH#jA__?)|hR&hGH|NHlFZt)=S=snY4>~^k4Yqhw?
zmevUb#p!JzLDCtznGxi;mvHWS4xlq%Sv#Mi1X(Gy*w(I&)lG4ACKV1twW2ZgpC~E+
zTJn_%`E0vHfgnIU18#UFLl3ydoL8*Qo0StvaaU^A4=zy^gfR+0hb)iLbY^E)@__b5
zjHezm_4LkH`wPQnhh9=>rFp>p`_KR%cRW%7GR+=TM)&Wux*A-MgM&*Wh3OF~pEU#w
zt5*Sc7zn4$h$_m>ZE$F&zIrRPl2r%-!paZsWy}B6+t~ipoXk)AqxWSWUj<u%0StSo
zqwl6h5Xet;={FrPD-uh(-J&a}$acRKNGFp7?$e=~i^<?%UO2b_#G6qc*Poz*Q=y85
zOLTm*1<5jCf8Kij@qUiktQE-Zy2lbOrtYb!JxZtCosEh4-~j`0Xh)Kprbww)QjfmC
zuecl6l>aCayhzm8dQVR>9*|I-Id*4irRvVjr=y=GgDK`eOeG(#pbXvd;(d#e_qZ+<
zpS37JBW8L$@c5Ovw)>YuWQT8T-(nk~$b6zUskpFzma~INk$F~;Ai)=c3g#0ZWvlE1
z&?h*1Y8LTq#CwKeAwywf4>McSHps@VGp4~0)h`JC%!(e!hS(t|GPUqfR-SOk>Gc2_
zUEc5h1ITgqh>)X-A+oil<-{7yhN`}|p%n7ieW*0ly3qvUK-8-1W#8{-YuVB!8S7hq
zZ>K~QTWlBw?2g9S2bUOIko!Rr8Uy9WX0Tz~d;wsZZsgz+s)K}=Oy=w$!H^*;^NOSW
zi>F($_>4}~?UW|YEHnJSr^`XzX{$0dhuY0h)8#4?;{l%Oy$3l!&H!TTg9o`c2lW)X
zAy1uhvzs!%+CZL6)4{PwM>2E4bq~t?xfJ>Rp<)D-<$d{k%`R}-1KoeH?jC4Iv%b-M
z-B&ISa@rVW{IDc6Czef#)nG;Yg<>t`;AG?fXS5vsdbHfl%?*e-)HFE_R}0)p`;lsJ
z1&4rGyL?tdD<JQipY>-@5}@Pc3%<V`iE1Yc`HrWCz^-gFBcNTW(8oCOrjGyl=AFsX
zqIL5aq~A6>QwM3|z!@{q$&Nsi?lsopu}~ttj@iIlg^*;V5}M&HK@iN&8}qhxno=%B
zr6x$#bRzgDrzC5-81Kk5*B6(PgtJx<Mr@0Y3*OlN(4u=1`XbXx8f^}kd1ZJkgdHRZ
z!;t#RSg0>m=@w|ndX|86g7$Lp+S&=T1q3M4COy7~JL7XGwKAzO?=akjOt0>jp(ehM
zeqwL(T!PrWw96e!Z71{D4rwMPSXh(3T(_Qv-$F>jJ3L+^j29bAKd=JQ<2$l^4PZ~(
z0ar+Q3+z`sMw*Y`Ybs-q^%T76Nj^9om5i|gq;kV`wbzG!KRQIM@z)x-9s(n1Q2{Ql
zl3(BTcz(7*ncB=uQlG|ip4gmcXiQQEJMYHAny6OGL)%r1k<L4D)s=g_X86ASL&@y{
z-6wdA?VAtApC-1KjX6?*C{)=R=VlkWx*N#h5*wT5lYYpbH_`<bB0ng}jSjZkb7x=B
zaP?L+8!0dA`Y`@>QKy^XM!Svb#Efha`8!=O7g%3^S2glXkU4Ls41tu62{^&G!wzGF
z@w0MM8&0J)4NY_1hM9Xswo3lOp+pcwC3^dPYbh@}8W|gNJ3ByH{h-ag-vw5OlZ#7M
zhBs30bk${y)a;?qtn2Y@clQJ$q8gZou#~orNF`{afGo^bZs?GBHv_Ei5qT7sC6Y`9
z!h7|$QWdUR79a3zGSFWclCWf5YriE^;f940a8>PdRc?^-PeFKBC5r!JcssCfafgqM
z{sHC_HPyCd-dQ$KF4tmeJQO!td$O&T82iLa#`QMXS?g`7!9ni1Oyk<l9wwHkf-(*$
zMNrcH*7eDEfvyV&zyON}7<AP^kBFPQPW$%w1Dli{t`wLS5Pa0b3@S^_v<Je84rSfV
zwW7CEzckT|V{1xpbOnRSbCWoWzJv#=_L=MXpkZiriNUp@YX7Rr&aP7?F@AscW<lFy
z5Gviay6>Y-Iqk4Ra6Nl{d~ncZyWVQ`gOEj2h~p#kzMhtr`>$D-<z;+km7v&LLO?6r
zb8ZBQT0k!`j~AW(id0e>d-|?hFBE5Lzi8UwwY8>Z<5=>nMVN`aBssr*V0!tJr}KT<
zc&4X$Ch6Cc@M>Qo-?&KuX=>*OO&0dL^(9C%{WEv10wSo1?pI0M@erXptGBVZ^jEfW
z%gtbh{NaR9=|x{*(Xf$_#g4wuKx{22_y97W+CI~(!o5&bVumEOC+lJsgO7QeFSCa?
z@CA?T&E4}@sDld1DjZ}$-@~q7ELb(bm7rQsk|W5)VO@4N+`X<zVC%BG-*#%HLvAyq
zQHXdL!hEcCOtcxJ+dRFUZ)_{D?9ZccL>{APG}|#1hB|-%iv`fow&dkNmg77xb;S?h
zZ)ipiRsJyR1P2&!xvR;~$tR9DtB!;C+w#qn`h+M?Nw4AzGizo_RDTUuN}^d$KxTfV
zTd8!|v4orjCZ8cl&edlI+6aQlVbT|#G$u|^i|BryrO}jj%f`lB9w3oG;nwt3?VyL~
zJ3-3fBm`2K#8Sev6=X^H3bD*}K-{02`bUxO?gs~G5;6q4lq?WL=)<?7Cx`bkz#{>g
zrMbXs!M}dKY&_4ZB_n9HQCZ_RJ`P_i+iDdJ3+i+RC(=Ob3YTNjd#Lg21gn+A$#LJ9
zB2|8>Xvm7<{i=yP8s_Wa>ynZI`ap(7PScosh%E}lrSs8~GT!wkNySw_b<72t1Gp{|
z<}=j$o$#ZhpQiems+=0<R&;0g?=>YQeE-f!VG3iifAEwa;CCNtMuN!%quocL4h(&2
zGoXj-qB3ME)2_@PSeoN+b1Oc1-BsklUR6?imR4mPak1c3er&rmfwF2KE95m~Z2Sc&
zj{ON(=-J!#F#7$o#oM8Nu+N3YTN&~-W1hx$&r?ke-Y%f77vdRe2OW-xhwj!c8Gcu4
z!Cl|7?Kv9%mZGzqmPk(i(zUsy-Cn#kfMlcnn;Z$fwP{czjf^U%<_Cxp0*K!R;;l?h
zQz8!DH!hWvYIl*W^|!pegY8u9iP8?T$6Y;JtwM+pSWorsr~!PxCv@Kc*~)^B;5^tu
zzJPsFdeQfp4vsemIzthPCGk}Oaj!1dCz=&lY~di8auUKz0XI&-x(s?tQzAY?k<7h4
z64CF<yq~UG+AgW$e^qPmB^`g$Es)_EX=q|Q7{OI3)+A&&*O%pft%tnf)TnhmLrrDr
zqbsV$Dft)a>CGItgalSyD4r$Bnpj`C2s0npRYx(tHl1Hima2gV<$exN^a>=@7IcYf
zXfSJe`sNPn9qW0w(vl%o-^KLRrng<rKfiX7GP2V9-nw^-6NGwnV+N`v)_i+Z+o4zW
z3-G(L37&EUeK^J{6ddo+6K>NSN^YE8pe9Q@bp^$K4F&e5OaXRv9ZxdmbsMtqy1?Xl
zSFt5KF%jfpZmKfoMZ{e~mq4UvmPxF8|E&c-`)&c%BR3oOD(9>>Y(h4P07{v)s`7$S
zeWuQ<72KqS-#6n?QL4=hU(1tJDEh>R0t6EEkiV`lj;YGbGNM8*PNKwA&4D*b^2qc&
z8ssGd6(w<h_Os>cGdz6!%?i#4VnFpmZFc?TA;W>RYxXXB+T9a-mUQE<AIO4*?cSE*
zz-g#JBBwqKHT!%xzRjzwQ9K<Bu~^>@T!U>;0Di$YY;ykMIgNxb=e&Hdi$p$qyE{<t
zdk$>E7s^ETU!Wran<Xq8{((Wefub`_Hr389DFZPeP0*?!?aIh=49r&{$C${(E}q>e
z@B<8&r`K2F5)yiFl%C2prA+ob?xs^6TD!UO6SII!lG4M!5F2J%<hqhgvHgo}4Fn(;
zZcVm$N$rWo2lrO11j1-neqoR;Km0T1ncu;c9+>F35Hfm9#$s<uFmb$f3UDAwUdGwF
z(*%NcqdP(jVKuMuFshL$+i=ZZG?ZoR3E^8IqC4xTdxXjiV^Lc+cbq<ftLCYlE!IrY
z&me7f%u}QJccL{FO^>l5E@No~1h3QXF>o!I$m=7w+%TS!B)hkuuEzCH>b0xmdMLG1
z3mA*49c;~JzC?ccoxx9r?~bn>4n~yS*lyiD-5BF*?>Lqu^Cw9`G~^CU9kjZD)Wr<d
zb1NMk9Z*cZy7&SUP}~Y!{&MeOnX0n2hevZ)(!85TArCuHD4yxI=(S45lx%Emz$}?T
zSAe0zd1U>;)nEUPFK6XO4*OBIC$6k$VSMobhk}OZN#OO0_kyaas6aA0GWwtS<uW&i
zd_9%X`|X^VF8^G@7f&D)ObS4)`zOzy+xq`0&)$bUNZ;wK3$y5187<@pUaW+lGCab2
zuw85zKTYJWIFb|lY$#dDq2H78u9P%rzMbLG8lngGq!%n*FL@Zc%3-x!Nfy=l#LCq+
z4%3BcZ=e{8Q)l|-L$U2c?CWQ@QpUaoFM;Me*zg~h%JA(~7Kc4niKwOqo76)Jl+BO*
z@wM^^Wbzc~CR+4r%o#XZvmeBTe_Q^EALf59jmr}SI{yc1oQQ3K#p~E|t8;A`78PyY
z^0htj#<lUvN%5}Hh?^cf5xdKU>y*t$=Jm#)-T;Td=AVnWICXd11(ig8I=30?AzLGS
z48vegn;t+CBHp)C=|KJuWY%APn%X@MLa4kG>4qdgL33!s_PZ<^){}85oE__0_NVXi
zhTC=|`WwDLtE@ovR<nF^KSd-AB&WtjG@m)c$80{2<P7u#v=bu?4PJou{qiKu|Cz*k
zv5K07@5gjSbEUlQV~iI2AhT7(weNrl6d=ITgZ|U(lWY{+AT|tP^19s~$`Pb*$)cXs
zkommgWg1@)2~010PF;1@q^$SMD_@IkWwGMB4&7Ovt{<XiM~PL>&dk4}q9(ATsg{>1
zf?b+Z=KT+mEPFgcJiYAG;gPzJ<58K@9J2($L2e+5^}{BW8zwP$Y;U4OF(}!cTAt((
zpx{s(g7D|2<TN<|4INFnG>yjnp&lSBGn-8}8C^fS_``#(#b1esF#qlN6XhFd-8oZB
zWpNE^S6?4;lns4U^bO}W5rZT!l}IEpO-aFuxZ|x_S7tx3&0|%Gh~4-BT=Ucc1C&%!
zN`isFBt=8&1tk(y$=;H0D<>|Xv6MhE;MReIn_lLNQ()*>P(rLK<OH3k1wakQp?5WQ
zXIXUprlXn!smI}<LH27C^caep1lEj7N=kOy@*WU#_q=@DA$uY<qqFzL#Jb!+6stNm
zErHLxqc9?W2?kS!!%6G}PvdTAiUvQXrP*J?W}hbHIsqZzUS5J#qhG)N)p`svIGOH>
z|F2T%Q^NnhOr`e<{l876SIVuZ$?tIIJc_mv8m>_bCS>(hbHa9o+&q?-P9b_?P<UFL
zEO;AsWO00#-!j)?<I2&lu@|*cEY47{M(9H`%$E{}vMadbx5}8b6I7HAz6^+%NOWkC
zWyTxT>(z3Hyn$^=ohM^j_8A-1rw;>q5{b0~=3r$Tdo-t#K=UFeXIH|ILzGOV3G;V-
zfkX7B7b8qvd56>}VWAXN$9|I^OxX8QZ?TmY;Xr7))kKfIDq{3+Jvzb!hNM_#;dHvm
zPk2XU6r+Kb0YPsCu({@jyU4N}>(Hcc;Yq0-^?c7HAB{Rkvz^ZwF+#><W;ZLW<XCTT
zZ&BL;f7XvW?vF_6B+Ahz+#pyml8BB}sR?4eKlJDeKcDj+)N;NyVIge3X;1x~bq}bJ
zfZG=wyDou{hP->VXK8tGc<7_T1Ua?-MB%~ZF;o|l@Q8p3r?m|K*EiGgaVjVy=S`D!
z+wo$_M-_d5Xoed5Jy`n{1?t#Ty<TZmy8k-%Tgzhw?zBpq(~ocW9!4CL1x9*uOKJ%5
zu2=fIL;vcZbOeohl&arA^gVHxpldltk42-*d1x5_0KfLzdWrBb#wt*fPl?4T$Xr2>
zZL~!7X}N?UBte2#cahLcW%Se`d*`L?!3l7mOjw9zzkrf}hOibj7tMw8M;KVHgbqB<
z@ihe)CyF!jGdvI^gJXn8-R0G<Zhmy_-ctg-p5~+k3hg`A#?2_3>Pyik?V;UKP>AFq
z0(SXx)j-7%K;)1wXJkbU<5=7lc_wU1@En)OOj_C^F=gd(iYjgP2gMS7;p*F*%-BCi
zd|ck!IB<ojDI>mlkAeH=UcmJ29!~l^&m(bYMbDNQPY?;G#>0--i2ga`?~5iFaC$Da
zszH&sUIJ|nfhOZZHV^VmUnY=UD9McAV8Td=&Qf}IGo1ir={&kt38cZEQ+4!jA<fOk
z(|o|q^tGG~-I-EU2)J$caF$8))$BniwG*vk6etCmWh`|I-={#Ma&InMlJ>|iv+_Aq
zNNQ<;CPMb1sK)x0$Axs(V$w?|OKT&#yiv`56f2$oP&AS(p5dh-gxAay+If#n^uAH&
z3LVP}#Ln)nQCYa@)kuj4;lhJbkRRMjh5r%Bu3OCX0l{q}V{`=?xAtJ~->4$zvXB@m
zA>RW{aZz~WdZ-RQso4hVe$ymHL;rst5kK;jeAEgiz1?;5XVGtfs#1N7_A)VLBe5N;
z-~v>Y-?UymA5{j)Pf^yzOTM<G%gf86j<~3(>B|M+V;@6J-@54Nd<0jS=RBvc4U7IC
z=A~}$qWX+$m-{bx_ecqd4W`6=%Q9akr8Pe~S3=}kVH}UyIXzlYqg#<mU0{+>!&RU*
zv;TqVh4+}@WkcckER-x^W}U>qiF3>y$cpn23L0k!Z|Zc|g{MjpJ|yANHe+;kRA_ng
zb7Srel)abejxJv2OZ0qGPF<weJ1r~_qz-#$pn3`}=w?{ede|V@SS%l&JlY+F1tX1B
zAN@_opoQO{RgCq(Na#4CVymbn!4sseb`t)tLf{=zM<&L{=&1<I*CU^OV5Dov@Ld5q
zcxqObU2~~n20h~0Hn!G;{0*NX>(P#;NVP~kMg`I67k&b6>ivsGMW5T;1jzr)&`#Ih
zkB6M2z2Ppkwo8{e1xkc2dU-}mIi|h1Xr;N(nKRHMOkw=Lg|R-sTw8l8nv!z5*os*C
zl>I>f>Lul$Iof)wimwspA1_00Cea#ga$1y2FqRl1eTR>BD$E5ohQU-X;OrSDF$Am4
zlvchE9%J+amg;Ov(Vn4Kphr{?CN@HL)KQEwK%XUJ(k7Lrv_~AhFOPE=dcQm_eC3I-
zNK#8=doil^+4a;D)*>{v8Gg%4cz)Y{{lPpC1D2{CE1utloOkMeD)6v!4&q}@Nm)s+
z$hENMo}jERUxU9A)Y4%Cmju|YiSGEYp{IW<E&V0PQV`8m0YzqRV!LiUPF*p!@F3W@
zw+${&Vf6pC(p@Wb73NL3@*yYT#I#iZ+jmY>wPxBCZpZ<SBqjsLe`l_ld-UvLsT6*8
zeS43|D}bk9osHgpRl1u~)hBY>jEIE!U!~%KOUusA`#e|l`%K^{AaHfS(UOybSqTXb
zipu)_9I94`sd~SUIjkhpqT-<=Yxe3@tI{NQF<+SZ>TJXc-<}8CfUQ6KC%Tc7cQ~H&
z7SQ;xZp+@f{bw!Ij!nID@!`FhyN<6qGkLks?(+RdK)YfcAI?=e8W>^3?phqPYmPE|
z3~;l-sjT0pPMreo*ob0Xsu#EGP?v@DqE*0UeARp7jvfP!1U+rxcRR=a%Fm5^+VpVX
zbsLYr`9k-_ZZ8&IGfUIv<(8&rUqvT)tN<qNE4MFuhaNFn+kHLo*;1XOt@3TVcJ1Pq
zvC>JG;D{*!j;M;n&j<GA-rnXs7Mf5M^yMLNY^o<$NKEHiWVP|9-7Yy+qTN3(%sC32
z56+z|D)s86>>^GEZ%@Tz%jcYWA96nH$j@UxoAfTnUSxUice7vBfA@=PGmlPu7xv?(
zk{=^zY0ROxBawH2!vi7HH(WN~VSPFGYmwgBJ|E}pK3_r8*6-3*zf?VY|4R1m_ved_
zx1}DB0Nvt#Z-MuLvJ_T$X1wsX>mI|oWn!7YrNVrt>+EvZyqDg+>72=-zX{upN3;d@
zJh&#gaN~^ccdB=lR=o7vo|(Up|MUOPtvg>btujjm9<9opufK|KPQ|@u0Va-!lWWbq
zxm8!he>+z!n;5j_;0@q0Yh@2PPTwopB@4W~*JActW46=YPK-xl!oC5gTn_F$(`^}E
zv_9_a?*9w6?A~o%<^H8=Z^;qh`tO^T;hQ!UcXhqr8Kc*(zH#o{qesh)H|quO*V+?&
z<<cds=V8~vePeZfn=|u65`M)4Gi0vr+K(|Ofs469mVSRXJz(a_dEH%IFYRSjo+W<S
zc<q|m^wmojuJlyj?^s`7pBsA@6dQ6uLBB4%{dVN=(MP~7Cx4do{5tSCN_U@l;>xP3
zs&~_E7MydiKC@>^>EkrUQlZC%-ZopB9>01~06fOZZMur7b}V;Eq-&|B*{csF4==Zt
zP5gDCKCYy1zC~!-!L?40!<=PJC;hbsu1_gk-ZkmgUS^Z%9RW9{R<7<|RukI$_t)y<
z23vQ`znJs+&RM-%(r<(9osNXOTi3W~d7akPe%9=F!2Ki_`CgW<-1%4X?c}zjAx^Wr
zFYLFy`|!@{-}7wie@|T|6Jlm{|4~uB3b*<`iADEocR9U$&cE8u30lsI?0hjr`u4Ba
zQNPz-XyRA^yhS!(>2|q)6~BO2iHAr#J1bxNC>8a4{nQ^lhXPomQp*F)HQu(oT3(;P
zA#SupV*dYl<!Gk1dCH2nfP2m!t(wFD8W)D63mFq<=pCMx>U_a_#l-ZRhtn*qLl)@<
zzqvRg3UZ-1uyqGQRhg!CAD5p|%s;o@4Y)NcIA%kR^D-CfQh%%3xX|QDeDm#0TyM1b
z?uXuD4z=LpvV#W|4Kpn&znx19;bt+!xJMo0jteU;00%pPJFHHM{ZyHM;`^c^g$~Vq
z5!)7S=rq$n*??x!HKk@%Z(z=+XztbR8<><>JiFYd<-P#!v`bknqLd^gWMtF@y#gL$
z^kP4w({-tNp{2q0S!_)yNA*vOr7k&U_F`M&W3-)lCRL&dH}}tp`}gkBE#d2XI!?4H
zX!r6>L)~7dKMy!qGI!s>bY_Md0x9}fHvh4r=@4K!x*K{IJtQPS<bn!un%}y<ZsEd(
Z|K&659K{0<ug+os0#8>zmvv4FO#sDNFVX-2

literal 0
HcmV?d00001

diff --git a/docs/codeql/images/ql-select-statement-similarity.png b/docs/codeql/images/ql-select-statement-similarity.png
deleted file mode 100644
index 181fe75088e50733d0dc2d7dde054ae9e6a857e7..0000000000000000000000000000000000000000
GIT binary patch
literal 0
HcmV?d00001

literal 17424
zcmcJ$2UJr{xA4zn!;XTAbm>Z!E`%bzgVH<FJ7@x-gAEaBQX?fG(t9Ta0w_og1nDI}
zq=u5vLNU~Tz{ltP-h2OFS>JarYq3two_+R|GqY#*Z{~zO(Ney4nf5Xn8QC>e6$KqK
zva=X6vcDc)JVTN&)9WXZE|;FG7=y^ju75xI|0{v}Ivq(!?y0J&NdEK6#hVvyiGQSg
zb}CXd@|5-Rbo2m{<(G7;kVIEKNg@S1kPXo3xu=tdI~mm_W>%8?@`+sD<GC-;$-&W+
ztcappf+W3uDh1kEov7aPbaJyJ6WOJ>L`u1IlA`Nj@9Av?v?DWrete>S<<z(n$i~%*
zqzWX1eXWWni7%dr4XuFgPVNq5U+ES?Niy=^&wBxF?8vr{->m#mllO3Qvvc<(+v!eh
zBFQeCsOdR*y4sQDt@d-0k;$P|6=d~%#_<g+AUfmpPuM0oCY=PedHF_#g!>6$ln!6M
zr#(Q&RFsQYpi5_p1dSbrH@RxMDx(Y<J7&#OYDN}H@O|T(I)%3_KX5nBa65HEXv1!?
zKb<+>{Qj&C+eNvrWM|*sSbMGVn)>6tu$!AJAlgW!Oxah|Pvf^Fy*`{5-2?7{_m(V=
z_kL;@mn_`BbvZ;X<H`M7T^9F)KWIKa`FSFFhW(Rp`8*)^Z{d?N(BImZLtaC5|2(^v
z13gQsD%sc7vKXj?U}^sn5BlPX;F<T0!#kI}VT6PP!~9#{NN=2s?4`NfmMPoBBnkov
zPW6R1i=K1~vQY+wCdKASyxGihCpFUb<b{&GoRlSLB8s3*J~8%mf1QYM*S}y^!F*$j
z>gp@}Ipx0%PF4_>s#I#Xt?z@cpFa1yG|#Z3;wQIczolgVg?FTi)@?dFZ?*p#;F*VV
zSIpY(T47JJTBFD#*7Gf%X7zRdO(Mcu?A-o0mU@jf0FIuN{xh%=RC9L!I)I#X^L3pJ
z(2hE(R~cxB;k1-5r~mqsh#K?$UE+7-xZe+x0UR*Dv$@MywpIojefs(h|9zcDlw@QN
zC7+R!$~bYUkzbWgEWZp4g`TzUBK;=2N>K(P`yL-jYS7=-Pk)o$Wjtx1dpWM>PE<}!
zdqkJV_&ykJVu0E7egXNzn^#t3-ks@e4beYb>z^?p^vZ2g3$&h;xW$H)-I`?2HSKJp
z<DkP{M5FSo>8IXI^01P6*7_&Y30r$I$33Xg-O4@87=-)y=g3-@<#$irjwtD}H3Z+z
z*`Ey)7hMWv)G|6RkbOmAE(INIB;3N$12BouQu~VFEw5l_(Kk?2m1`8oFo^p0NJ(op
zrmGG14*6-A3n{VuYE$;8*p}PvVHl6%vb|f280_YpZ2Q_li@QrC>IlD|lu+dCt%0DR
z5~GtJ!=>mu7+VJFg=fmF(zXu%MOH?TLhkJq65-WwNTEv-lS~z<wbrtr!At=Ume}ic
zr@fm|+0sqGUv*QlCIjZP1Divo2c;v$UNJAsvW>wXM7{762^aU;;yPY)RUNpE6M=qs
zYD4+L!j<t>0`p&S*j}A$!HeDj`$~8-1LMTnklW;>N^(09j$4yTf_ILks&Z4JWGo+T
zbHlRmhbSTNV$-k8^rKKtf2G&K2Mxh9<;qb-$lcc9k=;8(0nF8+DP~aLn6c!~HrP@4
zw?adBVX!b;P6!k-fB}l~n4-sjfio~)e=-~|e0a0r_aH&T`uqYW56YRFxQf}6mC68(
z`}#R)Cd(Wm>_%{Ae0QsxFwvwjf?#f`2Yx%o9u=mmb)#s3y9*S@v%yE9n-iO%>p0BO
z3TA?+xHVKLRUS1EryhLRYq?)}Y=`G(IGBxLTBvcw`cWG9;0;x4H2fZ<B%7O>6Q6z<
zCC(h|*^7;&RDyb2o(oG7Gtk7Y%{``(t4DKj>BpPL2bE2G4s@j>*MiaFT(Gpg5S4O?
zo7c;;n+U;Eu`iBFkMT+@?!U^}l2od6IK=l}ywPA^`nhvh(3DVWdoF2tp|?d4eGPXo
zAHGEl9@?iqN<j*S-A%J`r`_1Ra@@wb`+3vX-CnT`5|e$fZ0TATIP0HJh-;^+Fnh|9
zL=4Zb;?c8bzx@jm+@y{v?$RkZei5C@sB<)hag5t{-9Old>5v;k<JudS2vHuc*i2T!
z@z$Eupx4oM6Bv}MlMQpi0+%J+nQd=pK`SmSyT<J#GI>fzi1_9^BQF}T87Wov8cWxX
z!$nk`EF$B(*4k@6P6-W)&98e9@8$CV?;hMpF5j<f$d21N+?%%=dlP)@F`01IB8rdZ
zxbk?(0XTY)f(c@?=g;gx7$putm>smL)LFUZZC8w4ilfCE?5d#1SIq4Q3%iCswG)Sf
z7Larzw6>O7(DolMA1FPI?<{W}`LHC%H9Ow^=4yPY+P1u$4CTxi5OyOi>h1T<<8{nV
z*ymsnFTxH0X%s%{Pj9SX1*iEZ1V3HYpC&MtgPs!VlC>Uq=>6EOgChS5Trz9g`uxT6
z$_?G)u~z07FYz1OH*QMzQC~XO^@c4lf>wFwpg>YD7A9299X@<8452t^eBhE6yk3tn
z|0R_!(&;T_bG*xcs45PijysC9bi+4_Sr29GU}PRh9c9s;#b`P+?M;?SzQJfNv#N5j
zg5ox|RkPieOeUYV<7?A0N^E@|5u=Y$hcQNK+U#Nz$Ln)a+#wBB*DG$~mY2#vH>G`F
z-|-PF#&Qsd4H!RLw^!zsp!yptx|1;#Us~&gXU){%N5g5!)**G(7Au#K+0h;k!$fSo
zt+9s~tq!+X9&?k&@YdKAG5k!0^4uMD_qi<E<Hh3!PX8V&Yy}nj4{H%s;H|@h+`r)M
z1Iiu6D;OlXuQgSm^REW_-n}Sy8^8!C@zt=o?h?tnKLfnuG(2e99x*8*8`%0D`&N;y
zfF&`%G-8}3OA2COZh7x0TE<(GkFWn{`aTwOG;Vp+dXUOI0W59`2ztyn(=VM)Ou_5t
z0=C(|%JFScn)dxg4Yzf4`#9Rubck05wu=8s9}e&;khf<C9eEyW+o8sA+@W@=CP>UL
zbxlf<<N9=%NhdEDKpnOhJ%s6;klxcidd!j`q5L@d9^|0_(0HI^$H5>^T~1|3YkdkH
zxN9P^=6j>gw_z>v@}30@B>wq$dyKKTk2Z{;S~gavd}}PW?8~g8hIsAB$Opl5Z0@{?
zr8432$0(UaFg-?W`ArF!k9?IFJh`&?PBF?~{5$?iLa(4gyP&+h>IUz=W}4B++Htr?
zbqF$yEBC{91qSa|z~)D&q-4yY7P*<7hPb=}9Ea%=jY$<X1V9v31`qO^I_|M^>@fvl
z%WaCiWi^U-0rSF%`p>_k=F$DkI}d9n5niUBu{jRe%AjkV=(Qtt&M{I?min^R!v;qX
zP(pBDp|meNrJcNS+Y`Fi8R1T;X=YW17OQ8st>Sb`fn6<0V{;W=A6KM>?dW|!T1VEL
z2k@UP7hK!dv%(S`tGo^=!#_T$Q<yKRO&Enou-dbv``0VaCm*dH&)Yz+vRW=(Qe;$^
zI1W9=y?zU<!kB*ZDGY&pMBJ~JG>2SLjNiT}NS>5nOQR9Nr?&pI<cRV%<;F*&tQILx
zlkkXp5Hgx?YVPGYvl0Wr;IIoyulW_d*gmp(-_)Vup5dStVR%@L@j?vjuU0#|PZ$)J
zG(DBYtbqBHRfjyl?ygvt;ZkTcz3}i^TH=%OB`Y`r6v)#h$1po`{Oz-mk5#%C+p4f~
zG2m73u66_6D4c%LK(OV)VirT-6+StB&Ns8EJdiP+y1puOr_>u8j{18!Q6d$bb@3Na
zpxbj0$o10oc@*rEw|hpVG20y$e>GZN;xid7zg5mXgbf$~;Z)p_a^IG*=~a)p(OP;u
zm!lw(WjFGa*fZ{X+WS-9ab`Rg0CwK)+i-%DMRMN3f%*FGbb7_8qz<1AQw_I3qQ6*E
z$J(-3WI!!Gm@TlGaDMafO<o4u`La{rT5G{lzJQFTnyuQIyznc}9C>HH#j@qP4ct~7
zs{rK}->+xWA2(EU7uvdLvQiw5(;6dkC-hi{7|#=&7kC|NMu*G@O6LPh(eQJ(w1ZzL
z(<_E%w<gS6MS8`@n^Ye@O9<Vjj5s)e94S<_EPv8w9D6?j>3Sg!fO%gu;?p!<<(Vg|
zrUcKwnM+3gRWOjn)~PWuPCI5bq}bemSj7h%nFhmVOAnF?HxD{Y-WIxfJj3p+Uc}qE
zG?1^xf2!jsk2mPtFvw%&p48vs#@#K~o56g5B8f#zx~N98#CS@75CQ6-C&T-q8YG@N
zhrifv^^6(ze7BJ(Yoe1hZI4HIl9sMznk@sHymgWyjrW;~vTh-*&CkoXX>0MTe>D|0
zr?vHU)7Uhb2Vy+u^ATP-hg0t5n=BK@M;ObSFOE}!vlXQs0n|1@KWHH#A5@V*bykvh
z_GsF1zs&>i7P(Agk^HGKuAE>9pU=h};F3LuSQMps`0X(z(D2vjp$W>Zn#5O0kZ`6{
z=#@=yCA}4JZmFoKCg=U3#g8GB;(YMF7^5R+;(&Y`%o;mCSDOk|H`=f~%v_C}t=N2|
zx~EdXBnG78a){CDkM%e9Uw#h1+~M36`BqP7mEQBt+uHz0j2)#igJ>B@KoV~1BVTW$
zYhBR$+~o?Ipe?$1yH7gD{Bv=<qrXHw`&LOMmsqF!IGjERNY=4Jz6>(3`0|mQUukn_
zFFJU$y(Mn;%AQ@=){Jut)Ai*(GrSp-;qc1kFH4&R8_UiH25Q{(6Xab;3h`|=WjT&L
zWqR9y&WoO-@Cmw(4@kYutIlpcc7L}v&0OqTUVMQ<Me&v%sk!6yJ$aPaOc|X%B&+*H
zXz=;1(>0BAB(M5x>)M*z$_F_rA}l#`TmY~srrV)6`yf}Xl$VQWH1uwN%su?F226U`
z{~)-@Qn{XoSaXJm@{bmC#@a`JSn1FFa*KHHcy*!Ce+6+C%tsuUci-<CgVWQ05doXm
zIMlp{#7mRf4hsxG(q+@>eXe3vq+y8;>S~a}J7a--oygZw8ZVHjdHRniVS2C8uc&#~
zc<kBv*G2VC*qtg5W#`(Xf>e6bz=BcbGViLHbywx#P`hP1jaYOmsoHD@3#F69`Qv$q
z;O$;BH|L9LZSbIdU3b>tqk)Wt^z&;6ESr@wo5)Pn_F>Q{e6(f)s%FEbc>S(aW4D>#
zuNc^C+v06mmdXV0=($VzRpXnVRpqv?10Zx~oi^sJvQZCsPCY1QJ*zX}-ek;ii3P0@
zl8PrhA;+lSB&#^_ZhAms$=p$TW)J0+-hA)rxeE3Hwa3c+cH6U_PB4ZI8~8-{p?dO5
zqqmX=@t;0R29f5<l3Sa;pS|U*`6SlNN~mKE7#GuPv`Yp|=0dbw-mf|<ZMDRD99E?2
zY1p%C|H{7J?~<xlJBaeKTRxtBsZqh&`>eHtT6ZPfR0o7R=waD6;<0@L2{y-@U8fEW
zM%Ld1{xVrzee`|4=p&sOY3k{lgNnD)B`Lzv;?%vc<hbboaog<nPr#<T%g)&BT{1!W
zLj~3P`tB#*7i}z8^JifsODK)7-8B^oUNrT<F6BuO3qCU00zg=XS!#y|%>5&b>*Qm;
z)+BoP{-rnbz=X4keFdUWy)7YZ!uo;bFee;?oQu`rcIJatb)+h0&IjsFI)p3ivYlgv
z6w4f2j&!a#43{dX*DCwbew?#XMLZboI4JOB;xwn$h~hWi<aJ@rTzUktom$q)R>zyQ
z2ilsm4X?fzbx&fdEDh>z^y4Olk(i6(XV|vY7%z4H#q6Q?end_C{Y+8fwfb?m<m(uV
zSDvAZz=*Dkn?4<CJ2x&R^1Ujupk;64AungMPgr^Sv<>nGy`26uCw7WrK1~)`m3ra2
z#~txRX{)*TM>|Ws^J)5R@hyfN0swi>O3-XV491Vm*v^k$oNDeGWhb`W+nnWrT|ef_
zkzrj?qM1P722hGit)Ncw43#WQ!Yy8`dcJ26Pd<24_q6F6-@L!8qTmtjoyt!0mx04D
z-J=u*I&*+su;uO~xifZV_)BXnpu`(Knkz|1iL46RZ688yN7r<`@h8$y`+i~54xbB)
zkQ^w-pt}4Mf$3Z{XJUajF0&~Hi~SN|aa#xa7sOqjdnfB(c9fxf*j5m-<;U!m7^ivs
z_+`X{-A3!<J-cC`FIF&N;<0){R&&!1vgsqE2K#}>kgS1anw#q7`l5Kf$L_&)0f&Os
zg;4BZDRtP)%7)@r_HF}1r<bh87zuZbikGcPn*ksQQ~&mm;cKZ1QQp&rE0*Esve++p
zFtPMTutgSC&C1cRlpHV~fF(|Y^OHb*_tiKYVSV5=1fx_0Uxhrb%?ih94kQ4`FGWI*
z^h%3D=H?LOfkVuHN9v>AOnFeO9yM??r|e*8O`yY)$m1b@JxB~LCYE<}UYRIj-kI13
z7mM9x+3=!?eV=<n_XIth5Q2slFkc0?$B`PzUnnv!ZJPx(22}-6^ZEa!Dh5f%#qK_t
zZ+((qITxdzT$@=b`G*sftxZV*$p74(P=ol}x|d13;(wqOB$V+RX`F%wQe^VX=OxtU
zBt&^RZH4^<Fj~%%Li|&`{}tU>`!HQxg0R*_n0D~RF^EyNoidUs)*Pka!Pi>8)at+)
z<=-^rP*$$&;$FQGn=_wtT2Eskg%k;Oocx_8pKz7`#=FyskmCANFjWTnJImkFKLz-2
zxpVl<!k(S9?n$@%&9}<L@Bx0nv{ROM0_kva%;4+mN36LLC+a_?!l0FrzZ>MF$R`E+
ziXs8D(_)j_>9iiFwKy#^NqpLPB=Mi??>9_J_>T&I8~bhaCCnW=Hh4hM!vFe>jy=a%
z-EZ!OkOFAS&<PGo(x=hUnVZ?JoH;H2`Y=vXggP;g_`~c2{_@L{dE_g)icn6I@WcAH
zpefmuDnPq67I?XxipW!)k(8f31Sy9w2Rc*qYGhR`<c-aTsr1vYYAaDKc@eIlf4%8+
z3=l8}KXVTROEYR*AP6y~boK@~ZTQ|do+v<EY>f!(=U@2JLS+6nmfy-#f0xul2$YHa
zape&0$ndRhLLc$cNv3uHF`YpcP-aY4>Y(;vSFR0+)dUiX9UN;Aq}2<ePiA0%hI5-o
zMHJnQ{HCJga;RdxYJ8vQ>Eq6~BK;6n=a|)Uttp~i$7X!;P^hygZ~<h)DrD8<n|^OK
z4VwHEudzvP6H9|;J9&BVH)HS{NxWohA<&ik)r*8r6>}=q`iJ#*cd_XaPU_ct`1wkB
zXzaeN<1)sQ%-lJg)4zZB`V8HkPbmK=pcSBYlydxS_>--&<-(AqsXuTo#A2~)=KY4g
zr)NUL)!&_CeG2XCF6erfKw-1jwAJy^32X4aK{%TikZB<+U~)F>d2jA;yjA_RZgD}=
z3&nOzhTYX6xzJ$?ouYBltadWozlJ(u2`_A_ax>tUSmSst+xq<~aB33bf-d%<`wkq2
zT~||wy3!()B8if8d_3x|(laokx2<fCG1_-CDKI0G(0MDLm*fdf90F4r6dPNaA$Psb
zU~}6mm(3yW=KdV&m7j6nQz>IGi*004yJ}PfN=BQfJFDn>g1(eiz?ZVD?P@Quz@Ngn
zVd46R`p*~VD`N&#zWd}7oP4C?kc|<^)6WUTJ>MWy+$Cp0Gzm}mKzC`9kjEdBCQ;#P
zkDNUT)^;6tn+l&P&BXOOgq`#?a1``xzz?u{Rsq`;C|l#j(1q9nki0(^abP+L%Wr_Z
z7B5ZH-c0OlArSZ@d=TYD*&)9^X7yyn>T-Fr3lvtE#rEpYvQ$>+SyYV9W+Kn^l13VU
z{N?TdYWGZGCchgEKRlp6-05VXl34CDZ2fyJ=Mj%^j)j?mbT8GE3@K6r<5CNmNo$8Y
zWykmOHsrH5TG@ff6Eh?-{BI-gzh$(Z4FA(y{#^g%8-5Sx|AoSTjq@l2oo)b-eAp@N
zeunkGeGDg%@7(UnZKo|gui>U9I)wbV+}Pu6i0ur-YKyXS(+`+zWwcxyDh})3G0ZRZ
z<sQ0#JK&97ES1&=sc5}D6lw1Tw;9q~<{o1C81JVVRHlKd1vkG%uautaSDXz93Pv=u
z=bV9P4bsOarH13a!p#)&Obq4-S~e9<YY-;rac78%JtqZJvpa6bjUP%#k+>^(bcLEC
zXz+)q8@_!namhR{Yup7Z*LJgi{JG<CtNJUbq>q?T?_zN>s!ndHZi@1KqxoT{0@@j{
zLVGqYCCRa(u)XFEbUU&^s@MDT29t9PocOL5{0zHR4IQxv@8-{n-DpfJXj#U5=d);#
zZer5vi6-AGg^C``{u&Y>&6&q#Ml?m^!AC#KQ_?zYCkFg<q|+D6(`Awx7g)R2x116-
zCLYx`9huyl&ad<N88=);>ww6&xKP8!Wj1&4W&p_fBskv#Xk|AkfOx*?jzLjDEpalz
zdCtn`9fSy3foOHu=aX7Ca)~RrY%@1704x_BA4a!njuU-!@v=6$YjfY~lYE^4Yk2cd
zDXLLBQom{}jv6FyU?!oWgkR`7?jYTEAq?!U*E*-D5V;#Rl7dp`O58N(S<RVU5h;dQ
zbn#u%SPQ-gc6Zs<8z?Q6s`uKi81H%P)z?ItzmBXvM~#+B^w;QCjCp`)H@4#p(M=WU
zpK|u6jyoIuSZnV(O4Y4dds)uA+03mRVkuG?x@)gtQ~|kxnSuUP`!6a7+&fVi(Qy>-
zU*?9=<3ly|evF7A<1zxT)wnMNPN?{1v44`$bu_}SXOB;q{;(rJ!9U+aR7Te7S8ls|
zl|sLwVQIpX?P<cElRrnlu~)ZGY|zil@dA$Rx85y<5Rs#A(JqB1?U$>iyfC`CiM34&
zw&q97OKM-{i#CcZ?JdlQewyGjbH@+!<@QY{C5!?!-i?@D?)dD9SZdpd?x}WEFEWjN
zvAO)ST31N~<@qdbl$avhii%Ffi$xviJ%$Pr<K&>S%4`#kfZ~WzB4<zI;GUfF?5h_1
z3lUV`6@lF(^$X#sBmu2gDUEtlX~ouI9aX#C?IF``6@zk3wLkJf&#p7nZ`@-N21!Yo
z<0jHL@8LT+#n2`_RQO-U9?}5|emi5diBxst?nkx(CB(X+LT;PVX+{ss<^B20Wd0SF
zEB*z6rm9uY%Hg`PO8D3vdls)F&!(vnE@PzcLt$9QTt$2|tqEo2be*4#E!qUV3q1r?
zlpaRF^IcG8nzxjsUtmDh-#&FZt;q%LN<AuW8&vcNfCx1oE><ux+j&Q>@ZC4xmE7@7
zlwl=B>|sDnY;m5(l1Ds6v^<Q@v{9M~zwB0<SE0<eQ{@@SXJQ{v-o!tS$!m13UG2rT
z-D)dsnm`LRI`fuq$mV7C-3>b2c)wf6Tiy2DQ$HI~#4o)IGehxjl&7`sg@0bFGmcbt
z`)0c%0=B539btOADhggAPDCb?J6MH50(m1tBIBTkjhfLsM44Ud{ATl4y(_yScZHS=
zd+)}{!x)EBE{Ps~JMZ<q&Q;?pYBw3Go&uChMzoPXPzHP%u;4ckX>Fq_Pvn{<jI<Ft
zt4a%$q=UUg*jmth!WPRZF!P33H_nJ$>~f#&%!d~=F58Nf(@`jH&70UE7dz2_YK!E)
zxMEdq3!nA3v`tHGeSso-Pd}qrq=Ha%QEcN8&Yy+|sZynd)Y0d*sBD$1?S5rbwYJ@h
z-j)ip<%0GZ|5dSA_gM1F@M@g>@dtJR=VDy~P1J4NL1au=6%&kpW>#q+6d2b=^f6+H
zRAfe18PKq2+6bb)Q9)NJK2%FHHuh0|qNm71M74<7xhE~9@e@?3Yq}G=<>rp4zswri
zTxnZBNCMVwBy-+e6Vh=n3b;KoK-dQJT>$MhYRs4FI;5H~j8tm7OI}|seCptyhj*^$
zEPn;9A9@}Q^9VVN{Q=kT)5XQ?@D6wr!gYIi)4uzBccB-`jmH^Cn8x`)2Yc>{GcJ1M
zuUsvyrN7$VyNx^&apof@gc$_)nLsKDoizj14$Fw??^zNbwgO+nm!b@|-%{<!OF&dx
zO9Inm26dBw4ho9k)fyKw?^nn=NF@j+)ZBwIbeK8I6600f_^j<#S6#BQ_nXYPD+DBb
zySzmC-R2ZgT3Te>TRAXD*sZmArIcbzis_on@@;|QCMx83dvMyK>vBQ;B3+k}I?mZQ
zUWKQdx1^Lmmx=)r>6x5oJCZeEoC0;o)nh2x!eS@9xKmNQ=TdBMY96f<`hL#7sz2(q
z23T6AX?mIoIG5<`ik2w#7Pp7}B0N)f3u4WZ*KE79h>wVFdm|yQL=inzQ2lOKY+(q~
z?Jef~NiQLt$$6>Yg*y1?aFUydzKU%-hYO$>gEtHs_;Wz<Dqa3cjRlu)$p!A~1vCpx
z4A((jll9zS+f`EFr8ok4l*m4%lLNr<Hupk2GK9ZFu{@*4^Hu_DVOle_)E0zCX);y3
zz)Fg!-x6)s(X@5PQL19?OAN4p^|j`3i-bN*m-sw9xu7dfpwuF&`YbL03sa0vG!M3x
z&JR?fkw0+8|HYkv(2xreh+6cQQx@)J+Cxm1oKb2k=Di~KdX>EUzEjd1RlClIW0B35
zLt}=kTSZ?{#Sd#Pv(dFo_Dbs$l7%$O=hT)KfaAVS*LHpOb4FHmg4)`44sbyM+BF^_
zT>28GXtn%e=mYLX;+t=2g*L@r#8LRlbiv9J$oP#d5*s4la6t1k3|haI+;9G~V$}|h
z*ot^Q3NJS5vty5sG#_qMsWKPt|3>I7Qvx{mIF<_zrXBc7k2$>!4V0A%vU%3#%JF){
zMIz<E2^7YQalog{evqoneukX}n7^}4p-5UlP<Fas<}EZH65DI3baLT{g2~zOO7y_w
z#7dO(C>W8YuVenQ92lb%_Gl>Tz9WJt<aNF-#%17Qi%nUPwyS<u;NI2~<}R^6AJwc9
z?CpNyHa<dEU^!Wfj&F(ah#ygpdhP{pdx>1w7g_Q=mO~NmPt>Y;Y20ZO{z6N6UEs?j
zgBjOOks()$@MIO2r6^}3w}#o}Jhic*2Yk!uC)*aPkH4cZ4l{<4>*#8Q7y-TANb~)o
zIiCB{_vYRDGL_=Jr^<9THWhGP*nV>LJfrhw1c@4J?C{Ckn23OyavH)bd(*~rJdvc4
z3eerzb>7dRHa9D}R!=<+%PK9|_|>lHRp?VQ45IS~hjxwSeMdo?@z&TYH$A+hMdlxu
zL-#Emu=Bm|dq#aXN?wee&t5t515hNCgSHLwZq`{;_q1Y+;_J+_DsyzWLA*5}7oV`*
z6cDJ}ffZl~G&75sR!riRV9j1PSk(Jjclnqi8#xhFtKVW0GUN4N6h3g|Vm31QA%;4^
zbh<zC(kPL!0_3mp<s-eZlWXUOd(!oCv&hzMP;btRX@5c|xdVI2XA3)SzfHQlBevrk
zn237e8qF1#0<L8%yCjYZ?3{E;{H^xHD2t1??Y}T~B%0al-B_&hMm$UoLWPr}kos2=
z<5$2I7uSkMqk_4y-~F6RF?U2z{4Fx6{1J_>M&VvN2>>aWEp{Fy-Loh6`7kRJ-L8oy
zrnz7SgW&gl1#5C1R62~qjAyMnIIoRJ$Zah7YU_&wFh1?K-I?0~?(_mWe)isNs7UJ1
zkyoiKpXsFEN~s_~!=R=KJg_TjBY`X6)t#A4-TT}T(86gYGvml$sfRfYmI<xf6FE4u
zR#X#S_0GbxreGs;m5GKgvs;S3*l^hd^8rfps)EBh=UcdgKGyjGJ8P_!zh?iK4nWKX
z+t=(U5q+K%H|z%CBp*CT!#bN=tIrbzz2t1A`75V2R<eqHMRIj0p0oQ6KF`<ZpfCrR
zgPt8<!+anVKbUlzkPYP3>)m5#?zOQc-+`sN6p>Caxv_w3Mxv4~#cVv*-gY38z1#Z4
zeS6e$-^=BGn#wOzbZ=?{ljRFlN|hQ~iu|U!aejD2tf)z#Nz=uUlV+BiX=H<9{q+#X
z`c8aB;dC?)mXy0uOA(FOsJlnbsnH==9Ndh^g9d`9GPODlqB#>Mz6K&w(@ZNsyOr8H
z=}nT{#M-!xsD;_6sEaUK07f2<R-0RCX=C(QiJMq`Vrp)a;8*{`qsn7Bqo+JY+Q!yP
zxDM?LA4`sai3a(~+J#!WJ^B)70d7WVrn~E)HSs+oW5l8jzn8YJyw5ccte}wq{z;M5
z`mc7A7}7Z-jy1%zfy%qxDK4W5!O4;w@{INPE#P94*W?JGe$^h^$tYjpKb{uAq*XGG
zmxNpuE{NEf`en<)xa>;YNt8*_R7TVK172r_VVBvF$g`KQrWq1MQ$eEz?jj}Gigt2Z
z*QC{J!)={;2m(^t!zht%duqRC{?&#~(Etjx^s|^R0mYb5d^2DIGbsEF!D@;^ZL9iy
z3B7WQ6d&RzHsWZ?Lt?>M0qGZP(m>mLH`9nm{x8xmSO({?Dpd|=_RH6;yfJf1zc8#_
zqEW!vI^{g1`*vfWCl|e)vTc{FvO%|0#f<TKoW5-OwV;M)H*?1F><iy#&?uN_y53Nn
z^nKLe`PlEMa)No*M`|m;I1&w)(7lefXf_Qqd&-H-&0PfqcXl*{egHxlY1dL11qX!e
z#hzP^41ip~tA0CnMY!`zOtW(Ll8|mKs9o!Qj{W(rrSXFxCwJXA(sDr4J#tGjyD8?m
zGU1yb*uuWXx0rjYNM|Cf2P|aDf!10=z0QIiz26?pLqM^DuXgyimi4Z=7xvy6F`uou
zVm5q8+Gupols3(xi(9c*W{)HuX+&%=?TRk6d(`b7hNrsVBw=^)BbS)3@n*zIo1TG{
ze0sogZDc=Gp=cmeikGPMwB%O=GkajoC;k`1lFO+krCGG1ofb^~McIhTj0X>GCqCZV
zbA|giv~Rd5vy=8)Ycu>Y%i=0CJ;m+L+zBv(dOB3bvo0M;1-^bls=lIr+UNa_>rcXa
z63;s2S0~5KPD9y0*FOn=uK!XX(T7tCcJkZ_#5)Bfe}}>U82fjlB>n%aaLQRp;{Ram
zx6wZ({O9@-+Ef_fYkC3g31^^9Lv?+ovE(uM7BBRMHEa{pR!68jv>)Adb*danPEYG}
z1@+h~Nm5XSo2E%hP1nzQ9JgVDIAec)ZaLweBwiQ*!6E!L0z2&6tQi<s2?=Q8yUf;r
za++-`UXkSn236Mzli@j!FyeG*My^m>gBsXAYk%7D9qakO2_(V13M8M^q79xxMcQpC
zr8k&@(`Yw#8q1DS79%Cir=NWLlhH0N!0m;fHIGxTtFf9-Xyjm&#|41DB@Z^@;pTb^
zGxt~vy&EsFN=&-uBlObS)lNfLOL>)fX=Tz<->a82AwlC(6ED!gYg#`#yj0uv{Abh9
zN;@4=y+(Zp9-(#hk)4$TtW)*!yY3WT6Opt_?46@8J+jcB6kczrhfRG>MwdDK_!Qht
z&7gC8H7K^fQ1oYtzP^f-h&{lk)ZbNHMDRv;_)gd2*Pj7>Fu`@>+DRcRp8M8lm6*}T
zvGV__Y#E4q4PjT-0w_;~5nS13uJPF?)M^vI=Yj~@%?&bn%ww&-eJ^O-><6(7P@xMw
z*L`L|E(?Zmxhdc0kKj2F;aR$hJA)j4&<I~iDnBrPz;s4d#EsSTC#(+Cp$*p9%Cp{=
zy<B!R!i2rOqn9P@Sf`sOY#%%@o>~9;Jvnfw3d+yX);9RGlK%a*Tmx%uN|UQta+~Sf
z?J%Nh`EP_>Mu6F1iQS1fHLin)c|2of1R6_WghAQR6epp4YBAnT%?{lnzpSX!QkH%d
z7A}vq<Q*y}%&YuL>#`e>w-|-EiapD2+94KpDwc*1n7YQ@P3XQ8XdHXhW}IjO92^lC
zbXPg}$UH_BmP^%!NV^crhjH$3J$=h$fZ%=b6hq>3Abb?gTLVo_HWE}a{j?mM=M~^&
zZ=!^<ztiT|U;{S1BfGXklf+5TmYaGn-jWnHR!s>=U%YnRal}%6hc1biAWzX!eqPEJ
z%msIb5pb0%Fn%YcaZdX?$Z=oi4yqIrBZ1{R5nRU>9~5(j)7YDpvJhLQk%z@U-sYyj
z<W7&3o}5Kw0Px$UT-{aD8N0lRTJut9FG3J-GnG>v>)(@aa)>F3W-f^uqEP3X8#{EY
zHUU=h0qQt2FY8B+JR9zVSP=qB3Kq%CFnNhJIOqQK_oAr=^tYq$v4LSOF=fh>U7CPi
zt*rvH9glbW4LQLM>Fj=IbtPomi1<p!+^FP%OqLUuKpM5UyDpiBd&N&q2|XDg6xM09
zWf9)AOJ31>TGIbgWOuSZ^LIw%|LhHr;2;^<lq>+UBJumIFlm2bEJO}R|MJuqApqr|
znw!6m+5YiDC$Qz;J=Y0q{Wk}7;*kEX;y<42KPj9F{uuq2pZuS?wm**aKPmigi}Qcw
zd>hew1HM2E@hlOzK07Yt^=i(vBz6}WjXIu_W2;OGJHTFcdGRc`XJY{0IJi?7>q<O0
zc-0GtqvsqYTHNci3@ljqDBb)oT-mh|T%pQTc0w#eBjW0g)b5!Jqp-W}+-BBX&zBT>
zWRp7K9c^wZK^X~D1yc|ic#UV*+A|@YK|dTIcuNmtI)}HA{RdVyY_}c!n0~iB{QbIX
zf1`bpsTZbxG{AMaw!#C1{ssp?eu9{1{RaMFm=vPF8K#7(Q?2w3GoumAwd#(KX+7>S
zoh50Pb9HR)+%d<Dq6q=yw88prm>VP4aR=trgx<AKUBZ<xBQ)G(RxJShu(B}WQ}FX~
zu$Q)HQ2FseM#0xRI7ER>kd?%=M}u!b)7|cCn9HQ@(8OPK)c`LOygsU_Z7aCyB=sO&
zduuehTf>rYGuv)Yugk}se!?=C_v5;rx#YU4i&3P|lpg<CQ_7S_0u;E?ra>`yS%t;U
z+sQ_#$5MRoB($4j!Prqsr?VD&WEeV+8FvXYpKQ3oaIGeXW417s*AiWkFEL6>*m!(g
zJ<wJ>zENnyR08!_B{c`ZZHyGwOuU6gi_wf=mK&jxq_)tu!$QcvTmcDn_WjJ9^4s>X
zrp6;SWUcM31P^RK=MNj1wf_PeGLcr?7%u=!D_ylkc~?YI1#i#JV!4KC9-5rrb2gXD
zQXLQDKB?{+O*~uRP)rTOdQVWw`}d{ki18zRi}*OrZQtF7<G8?WC54AS{5&zO%Z*z(
zTHR;)c9&Z@aXa_}w^>K2tsH3}a}C;SbYb|p=)x=LSo0dG=ukI?)D(1rC?FVpAJ8<D
zE_`ebqa*T-`9g?Q_vvue$0xzgDA5&t3I2p;1US3g*aYtx2sp?j5J%BPYjQ1p(cSGi
zkUje=k$p>y!7Guo%Z2=WMsR_Ujp#Jz-Q3ISMeYnm(i|-=d|tl20cJk5E@rdgCWR+d
z^My$B2{~mSW~e;e`mPE6R*?aP6e{(M6i*e{w7uDvZ+DmM2+fZT6w_X2PjfEWD=K>-
z7^5XsF?Xz29d&#7@OxnI&^zr`8!dloAQ#Q!T&4g$f}OdoZ0~@b%^7ebjUMixW9%qP
zqOE`et%Xkbc;K&K{Z{m;s5LfScwcAb3PU9Mby)k*BV{B_uGbG*?0f0l_|HbI6`@YM
zR6F5Upc3S5L0s@OLB2D#!L|GjU8gj(^5~R?8aV0xWRaTJ273c2Cb~HZcM~Liz1GJc
z*fa|<5Oxx{y7+a%Yv;nu`obQki`2}4Y`7f77$>BQ?eoINISSOac?Vkk+lRAm6>L0p
z(~s+VHueLBG?*O>)P|0~+jr3#o{xKMK*{UiGDPW8SV+s|sP3le_jv*Z9Q#DH0rY|S
znwX+R{6)n~vELRZ?uE=2z_V4&v!tCJRlDD<EJsFqn7W`v`6~#vmisgyl!!wKhv2+P
zP<0?<JWdT3hdg{N!j*&>JcX)H_K|sEFS>5cBlJbJ4FSCgl>{7a*DcbVc<UDCM-iMA
z*Fu+k(B~Ng<$p)&Vx9p3BCsQt#rmM9?B!+wgLgFSEp4!bzLKd6B0-1qQ;bQnjWs90
zbeY{Ez*Eeb@o9MPAunX8n}6Sg_6pd&&|+lUzg%y+<STZ2pEe?Ct56*TTpZ5y1L602
zCepH+%5w<Avp;xkQ08tg_*6!TCF8#Kh*=WjT%ZC48Zb%rEr+vF>m&sjth5&7jQX$)
z>(~VxnMer@j?~Oz5z{KohKBrZ1CZj%osHR>off=}l*n12HcOJ4128G1<B)%DIY^}D
z-k1n?6lY-Dgx2u+nVZ$$wUZCIHz&$Aem2sIpr4?Jz}n3(0?m8b_6on7U&n0GMGn3j
zdNkqF6Zd|X#`lcD=Z#wUa9A1YW2a1jA^e=PPn>Hu?P1Xq{#{3X?MDJ0l81)ZJ%6r8
zCO($SWx91HNs*4KjG!5JLRa|?n8cDPS$pf}@}yl;X<MyuRXY^_175vCj-T`S+%DlQ
zI3Q(d;^Yz1ohZmzgv_4{>OxGR=HE&LTIOsPwkecq&1=fi0K5w`3Zc2yBM}!v+$Xkp
zKR9pc5R$$maH04s_~kt01F0;G>tkX<g3>U9`5G|~>ck#|akt@<lHHWC2|4cvP=@v`
zhC_E;G#4xkuT6TwXf*4lE;{v&5e!oDg>1LhyOKS3q4O02#qtGf3)H#ErjlVB??*;G
zf1_B!^wY6x)_{_z^c9GFYaTq6n$zS^(Zw8v;zVm9SB$2fTk9}<+>_48nuiUymUAOh
z&2Epu(Iqb?&u>W3IJ)Nfd~V7v5kipAZ}-3u%CPlCtMW<-xdVMpTGUi*RowU#>Q@#|
zY3ncC724P9f#DZD@h}D}8b;UpRXP(R{!w4SA9?of6V!a?QWOGG4yLi0-`dZ5AI7zU
z8yh847He6;{j;=+Pv~u%p?71njJBt!*O2+vHM`B~;wAX@qnp8u!UY+;k_@p)h0Bq@
z$ttXXw`HG>u<Wr=Z@IMQpO&hcTL~v-+!6RylBg_*UR$&1^tfS%)yb~^*4G(Av@1~>
zCHYHuae!Ylg2B+Cns-BBUW%1f@BHN$M4)~5=U>eAmq$Bpt49XU$sO5MJYI<jq>j|n
zVsLUv_8k1S@!71}pj<tD&U888e1RklYoUi_Pg0H%u+=xPx>!+Kq1;NOD1??K)cJNZ
zwX>^>d57!M7P@f_CLLn!a#)jvw`C)3ojYWcuJhA!<^IMg`N|=|*E>8X@ReQ3d|}qm
zg~BL*&MsCX;)Mc+O5&>T(GM(sX9XtVcxA-tQXSJn`4qdfwR&ioofbPpH|GqXw>`qk
zrlK?Fb1D=vTxPanb<VP9v7#VrXi*$ZK2}EELul~1xi>aB@=6UI+0Q0{yoD5g;QWT(
zWrw}rjt<2A_MmP7IdLmCyV&qs-=Jv{Z-VI3DxlEQrcNhMC%dvbaHURGEt=cEB&vFN
z-UeHu9Ms9^iAk8(E>Xix1dhb7o(VJ}QET<HGNtLcEhzkaMX87L&`srZ--F_SAre1T
zNjz+88e!@ce}}ysvy_I)??iFG`%bY0t-OJ7f17<cZCq}(|7k~Y7o6-7!ZEI}M|V~T
z-dv@5RAr1#%wv>HY`XSbuceFBlJ(<X7S`9HC3WMkd@|k{xa2K^IqeO2rYtQ7?6R7;
z0Uo&IIk~scH6YFmvskEN)MxBw&Y{kK5VBJ^iXybABQUP4YUjTcL8)a-`4JoT!KrS3
z@3t)rD@ygxHxaCwy9%s|<u>YWjT>XP(SegaIc2qXF%n`N&#);9VLugD^c4e>N>}OX
zcZ@q@j8ogVJi-}8SiTY7C47KzS{q73sv@6^37NygB}7Olwly~v`Jj>pK%wu^_`s+5
z1j2?-T~3GvU-;#Q?%EFEchfGKzFk8{H|h)L$i5$wX;V=v0C`?|GrML=ATN)0nCsC_
z>3jw0ZOnrcK{n$I{e~kx2eV&p7m=uKT(%&ctqs8YGAta*uYedL4#uBt1+NA}p`<mU
zs13HYzRiyMmR*fcJ9jw<0`NtfX6WR6QJNd=m@$H(;X(<LxB&r=kz1g8keE~wl7g?x
zwU6dO2uv>b%!rFCm!)6tvv&>QxCxWGOxi>!0N>OmJz?M`q-3Gz9>NR2Qj%6THPCuQ
z&9tilR|Irrn)1`rS*C^?CO@W1`TUbkkY<RymVf&dP?-#cx#h*G^zPkl`(RP2lJU$q
ziA5b_kq-&YCN9c2M7dkt6RJbufj*@|mCjc6z?!~6kn>3_#<6^nXVjOO17-~vElQ<Y
zd0HQ2I{1h>;>{Sbd6Dit)YL%%u4}IjZVbzLhWr;?HHGPr+O#wrS}**72=>|hHb#4x
z^W=rS`scm4fJWVr9z)r`{0G~v!rM^Xj{Qh{5fCix@_kdrsdo702kl<}g03-QTl-_;
zwF*su*i^P?g>1kp)xaRPE|fP1*j>M3g0G|30;n5(cS)nt6b3S#f=dzWn@8avoB=ji
zhK)Y0g#3PS{aePC<|=t~WR_)*)&c|^J*jmuB#>*39XV^WmnKVszGlXx<+}>eGilVf
z_90b5yN)&19w%vXR}))KI)Fo*swRxgK`jrKogF1_>ZpE@$QQ7QXlmM78Ga(k+(2KG
zF77YWIOB|!D!5+EsNL<G@17tjlLTs-J5Uw1+IE@^VOG^S*u(|0u2p6deHxKvGb@Fw
zzDm1c22Vwb?2$eYEe9%E@vUp2m(N(u-Byt(YFA;xd5Dh~;gh_aG7VWQnMCUvTvp=f
zyM80r@Qb8HFDyKWwHf#H>GmF0<(U_JhV}&RGR{X_pFM%QwzsJnqp-kvT^r;W9C>MF
zrqNC-iFb_1k^Gu;Dw+-pP4Uld*=bY@!7Ckk9jG(BTHo?Jo!}@LJZcANbxE{v%-{8e
zO^N@gaD97m7HvqeFc|+SX`NSmYbf2AF1Md!(#s(M2HHNrj%ub0RIH-<hfv6#VaY+H
z`$zm3d}%<_dA5)-l(cQpS`Re!#b(#H1ycXbh1*D6SSNnHa-K8^F<xK5yyW=+h4cbO
zE@6lWLYs$wj;k+rL2tPl=~-1=4r6_k>{DV<p$8Sc({#HauBmlf-)Qp2>Tf>mS#!#V
zT@azm?pXN7s|!NW0m27)FlHv!UOT<>eESG1WA{P-HFP3*W;kC%SJoR?ot}ihur#~V
z#-XO>*-bweW57r*HjI()$tcmZiZG!RSc5A(<~ojQDh9nXp7otqZk36g?!SMxv@~e|
z+%2*1>f|;om1ooxA77p()Mbh#9$BT17<%3835~L_yk=Ty*QlObue_dG>FxKkSUP5{
zkonj}na|CW>-oGVK4T_b<Qoa{;&lg2-><B>-EO+=Y}P@6o=P<p@V`ae8Vtnp)4;vC
zpO#pPL#T#_0?oCPipPBCHNT})6C(Fq#gF3#BJI7ki7;<253v(Yt4HUBa4xIrO^oHR
z8&*3X0}JXQ6(|zEy`mR)Tfe0-fwI3zv(Y79ddOQ1vyi;i53QE951+7G^6lEW>MhK~
zV}rG`cPad|a$(Hf9%+kyFgX(GdB9Z8_?Yy1u_Y6J>Ab5P_=+p84PCb^L`T0s0YQ}a
zr6IiMGAsuikjp-c!wFiIy78u%rVepZ+x)n>vE`_(-l!YTy)YLgZK{zX)`BPWwKqiC
zb7*J}NZFw5@McpifkoM7dy$u}(s;z*`3L*DUlQ;97xjJjo%ERpL>dsh=qUr?#0BtI
z$O6v4gtm}VE{rZji=LcEBO!_3WPt=KPI<?l>%S=PKPQ|1DEvq6@t;`<$p}g5#Qy&r
z1OK1q_K$_%Cc)Pe9s-^_lohw$$9p%IC*e{|P?e4jYvChNw^u~D2X=bO*2ennsRd=E
z;>PTy9RB~{ug~}2Om?&iy5BY!>T2)zeLyOCtPkEEP@cpa*_24TJr%_^wLSw*KIOj4
z*Es<~{fEy(#W;QgA7ZEt)}z^7SANp83S?Czwud8q!#((ZWGCR+7qLyxkh52R(_t%a
zaHA-HCnx2qX4{1T)=3z<RLezkewlDjm9#doH+XN-B>9R}07C^*!BVlRr9v4urWoqH
z{qttsg{_z}SQ)!>^F4prg9Op<%RkLK^sNHgenBaeEo?zTuYO3;5W$ZUYgVeyZ7P$W
zvA?zFwEMi>?YIFT%R0hNv$7WHAF)ha^KDBUy4XSy8etoY&T#h<Dw9pH2mU(|-n@>S
zo7C3X%X#+L*`-@_d+-zfXTxgw{9wo9hy3H*nP=Y+6fs?29j3v(Z>ys?PKfY771RZ%
z^#Yo9AKL%&795_Gs>>tvR@yWWdtIo?-PiQ^C^yb+zsw$O`SHBqAv^}Y8gsLmp>Zx*
z1jG$4=@9`exIKu#h(8ke8QI%8I@U@&Z&O0@Uq7D*F$y&@yBvtZtyJ11(=O@1!CkTR
zx&MIm?LOyV$5^XXDUW+5*T1u2w>O`_ji2t)>5>lu?}?_Ggh{D7I;1j1gc#Ce7C2i^
zjtZX~s|Jw17eWh~rha(vYWb&$m4<cz%00Es;l<dDSu6`XZ#ihT^ssdR7tYy&pZNik
zZyD%9>Ei;#DH}%wzA$LML)<r%sxC6}@Z^$ttl9W9fpp5pXd}Foz4KuXw3J;rkU<_#
zS_;y{X|tti-3<?>RjCUoWUl-NpNlzS`N|1-{8kqVS|+F0yAFP|Ja?6i762red6DAY
zaT8G{5(mb=*Ic6EVYB4n>Cr&qDw9IWE!I9wCMf=>4^&#{Jc#=!W^G_)Zw)T~j^gxt
zb9P{F-?pi|HnJc-@XnIx?BZB!SW;^RX%}Mid(It$h`RHc&YRgrw$6BC7FUHX^`@aw
z%w<j7FYcPZhbR+i<uecUuZ!ftlUS~2bZG1x9xioXUZRc)WUPz}m`_rUtqk?oZ}gE~
zGqb<{4H)db7H-GDA+{hYX&Vl8iAlTiHZX>ryZB%VTE^VS4la=p5azlkvgO-@AZ+TJ
zsO9kx{9$hn!`SyJM_8<)+2T{ce6X8bki(SepwcDGm_yjq*Z7K~SdZc(mZhgR|7@&G
z&NlRBThQT0JVMU=%~`=mqBP-CE*rZ?k82+N8+-kKN35g|$BvKpU-ah3zRi~=^%XKz
MMJ<IAxo5BcKVlR`CjbBd

diff --git a/docs/codeql/writing-codeql-queries/defining-the-results-of-a-query.rst b/docs/codeql/writing-codeql-queries/defining-the-results-of-a-query.rst
index 9b17b257ac9..90304636fae 100644
--- a/docs/codeql/writing-codeql-queries/defining-the-results-of-a-query.rst
+++ b/docs/codeql/writing-codeql-queries/defining-the-results-of-a-query.rst
@@ -10,7 +10,7 @@ About query results
 
 The information contained in the results of a query is controlled by the ``select`` statement. Part of the process of developing a useful query is to make the results clear and easy for other users to understand.
 When you write your own queries in the query console or in the CodeQL :ref:`extension for VS Code <codeql-for-visual-studio-code>` there are no constraints on what can be selected.
-However, if you want to use a query to create alerts in LGTM or generate valid analysis results using the :ref:`CodeQL CLI <codeql-cli>`, you'll need to make the ``select`` statement report results in the required format. 
+However, if you want to use a query to create alerts for Code Scanning or generate valid analysis results using the :ref:`CodeQL CLI <codeql-cli>`, you'll need to make the ``select`` statement report results in the required format. 
 You must also ensure that the query has the appropriate metadata properties defined. 
 This topic explains how to write your select statement to generate helpful analysis results. 
 
@@ -23,7 +23,7 @@ In their most basic form, the ``select`` statement must select two 'columns':
 -  **Element**—a code element that's identified by the query. This defines the location of the alert.
 -  **String**—a message to display for this code element, describing why the alert was generated.
 
-If you look at some of the LGTM queries, you'll see that they can select extra element/string pairs, which are combined with ``$@`` placeholder markers in the message to form links. For example, `Dereferenced variable may be null <https://lgtm.com/query/rule:1954750296/lang:java/>`__ (Java), or `Duplicate switch case <https://lgtm.com/query/rule:7890077/lang:javascript/>`__ (JavaScript). 
+If you look at some of the existing queries, you'll see that they can select extra element/string pairs, which are combined with ``$@`` placeholder markers in the message to form links. For example, `Dereferenced variable may be null <https://github.com/github/codeql/blob/95e65347cafe502bbd0d9f48d1175fd3d66e0459/java/ql/src/Likely%20Bugs/Nullness/NullMaybe.ql>`__ (Java), or `Duplicate switch case <https://github.com/github/codeql/blob/95e65347cafe502bbd0d9f48d1175fd3d66e0459/javascript/ql/src/Expressions/DuplicateSwitchCase.ql>`__ (JavaScript). 
 
 .. pull-quote::
 
@@ -34,78 +34,70 @@ If you look at some of the LGTM queries, you'll see that they can select extra e
 Developing a select statement
 -----------------------------
 
-Here's a simple query that uses the standard CodeQL ``CodeDuplication.qll`` library to identify similar files.
+Here's a simple query to find Java classes that extend other classes.
 
 Basic select statement
 ~~~~~~~~~~~~~~~~~~~~~~
 
 .. code-block:: ql
 
-   import java
-   import external.CodeDuplication
-
-   from File f, File other, int percent
-   where similarFiles(f, other, percent)
-   select f, "This file is similar to another file."
+    /**
+     * @kind problem
+     */
+    
+    import java
+    
+    from Class c, Class superclass
+    where superclass = c.getASupertype()
+    select c, "This class extends another class."
 
 This basic select statement has two columns:
 
-#. Element to display the alert on: ``f`` corresponds to ``File``.
-#. String message to display: ``"This file is similar to another file."``
+#. An element with a location to display the alert on: ``c`` corresponds to ``Class``.
+#. String message to display: ``"This class extends another class."``
 
 .. image:: ../images/ql-select-statement-basic.png
    :alt: Results of basic select statement
    :class: border
 
-Including the name of the similar file
-~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
+Including the name of the superclass
+~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 
-The alert message defined by the basic select statement is constant and doesn't give users much information. Since the query identifies the similar file (``other``), it's easy to extend the ``select`` statement to report the name of the similar file. For example:
+The alert message defined by the basic select statement is constant and doesn't give users much information. Since the query identifies the superclas, it's easy to include its name in the string message. For example:
 
 .. code-block:: ql
 
-   select f, "This file is similar to " + other.getBaseName()
+   select c, "This class extends the class " + superclass.getName()
 
-#. Element: ``f`` as before.
-#. String message: ``"This file is similar to "``—the string text is combined with the file name for the ``other``, similar file, returned by ``getBaseName()``.
+#. Element: ``c`` as before.
+#. String message: ``"This class extends the class "``—the string text is combined with the class name for the ``superclass``, returned by ``getName()``.
 
-.. image:: ../images/ql-select-statement-filename.png
+.. image:: ../images/ql-select-statement-class-name.png
    :alt: Results of extended select statement
    :class: border
 
-While this is more informative than the original select statement, the user still needs to find the other file manually.
+While this is more informative than the original select statement, the user still needs to find the superclass manually.
 
-Adding a link to the similar file
-~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
+Adding a link to the superclass
+~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 
 You can use placeholders in the text of alert messages to insert additional information, such as links to the similar file. Placeholders are defined using ``$@``, and filled using the information in the next two columns of the select statement. For example, this select statement returns four columns:
 
 .. code-block:: ql
 
-   select f, "This file is similar to $@.", other, other.getBaseName()
+   select c, "This class extends the class $@.", superclass, superclass.getName()
 
-#. Element: ``f`` as before.
-#. String message: ``"This file is similar to $@."``—the string text now includes a placeholder, which will display the combined content of the next two columns.
-#. Element for placeholder: ``other`` corresponds to the similar file.
-#. String text for placeholder: the short file name returned by ``other.getBaseName()``.
+#. Element: ``c`` as before.
+#. String message: ``"This class extends the class $@."``—the string text now includes a placeholder, which will display the combined content of the next two columns.
+#. Element for placeholder: the ``superclass``.
+#. String text for placeholder: the class name returned by ``superclass.getBaseName()``.
 
-When the alert message is displayed, the ``$@`` placeholder is replaced by a link created from the contents of the third and fourth columns defined by the ``select`` statement.
+When the alert message is displayed, the ``$@`` placeholder is replaced by a link created from the contents of the third and fourth columns defined by the ``select`` statement. In this example, the link target will be the location of the superclass's definition, and the link text will be its name. Note that some superclasses, such as `Object``, will not be in the database, since they are built in to the Java language. Clicking those links will have no effect.
 
 If you use the ``$@`` placeholder marker multiple times in the description text, then the ``N``\ th use is replaced by a link formed from columns ``2N+2`` and ``2N+3``. If there are more pairs of additional columns than there are placeholder markers, then the trailing columns are ignored. Conversely, if there are fewer pairs of additional columns than there are placeholder markers, then the trailing markers are treated as normal text rather than placeholder markers.
 
-Adding details of the extent of similarity
-~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
-
-You could go further and change the ``select`` statement to report on the similarity of content in the two files, since this information is already available in the query. For example:
-
-.. code-block:: ql
-
-   select f, percent + "% of the lines in " + f.getBaseName() + " are similar to lines in $@.", other, other.getBaseName()
-
-The new elements added here don't need to be clickable, so we added them directly to the description string.
-
-.. image:: ../images/ql-select-statement-similarity.png
-   :alt: Results showing the extent of similarity
+.. image:: ../images/ql-select-statement-link.png
+   :alt: Results including links
    :class: border
 
 Further reading

From 243b94b54ae3f03aeab52f87cc98a40ad05c9040 Mon Sep 17 00:00:00 2001
From: Michael Nebel <michaelnebel@github.com>
Date: Thu, 1 Dec 2022 19:22:28 +0100
Subject: [PATCH 1009/1420] Java/C#: Delete old model generator scripts and
 rename the new ones.

---
 .../GenerateFlowModelExtensions.py            |  15 --
 .../GenerateFlowModelExtensions.py            |  15 --
 .../models-as-data/generate_flow_model.py     | 210 ++++++-----------
 .../generate_flow_model_extensions.py         | 215 ------------------
 4 files changed, 75 insertions(+), 380 deletions(-)
 delete mode 100755 csharp/ql/src/utils/model-generator/GenerateFlowModelExtensions.py
 delete mode 100755 java/ql/src/utils/model-generator/GenerateFlowModelExtensions.py
 delete mode 100644 misc/scripts/models-as-data/generate_flow_model_extensions.py

diff --git a/csharp/ql/src/utils/model-generator/GenerateFlowModelExtensions.py b/csharp/ql/src/utils/model-generator/GenerateFlowModelExtensions.py
deleted file mode 100755
index 0e93d34c8cf..00000000000
--- a/csharp/ql/src/utils/model-generator/GenerateFlowModelExtensions.py
+++ /dev/null
@@ -1,15 +0,0 @@
-#!/usr/bin/python3
-
-import sys
-import os.path
-import subprocess
-
-# Add Model as Data script directory to sys.path.
-gitroot = subprocess.check_output(["git", "rev-parse", "--show-toplevel"]).decode("utf-8").strip()
-madpath = os.path.join(gitroot, "misc/scripts/models-as-data/")
-sys.path.append(madpath)
-
-import generate_flow_model_extensions as model
-
-language = "csharp"
-model.Generator.make(language).run()
\ No newline at end of file
diff --git a/java/ql/src/utils/model-generator/GenerateFlowModelExtensions.py b/java/ql/src/utils/model-generator/GenerateFlowModelExtensions.py
deleted file mode 100755
index 3dd1003bbdd..00000000000
--- a/java/ql/src/utils/model-generator/GenerateFlowModelExtensions.py
+++ /dev/null
@@ -1,15 +0,0 @@
-#!/usr/bin/python3
-
-import sys
-import os.path
-import subprocess
-
-# Add Model as Data script directory to sys.path.
-gitroot = subprocess.check_output(["git", "rev-parse", "--show-toplevel"]).decode("utf-8").strip()
-madpath = os.path.join(gitroot, "misc/scripts/models-as-data/")
-sys.path.append(madpath)
-
-import generate_flow_model_extensions as model
-
-language = "java"
-model.Generator.make(language).run()
\ No newline at end of file
diff --git a/misc/scripts/models-as-data/generate_flow_model.py b/misc/scripts/models-as-data/generate_flow_model.py
index b2e8e1a2e52..5367f87b1f6 100644
--- a/misc/scripts/models-as-data/generate_flow_model.py
+++ b/misc/scripts/models-as-data/generate_flow_model.py
@@ -1,5 +1,6 @@
 #!/usr/bin/python3
 
+import helpers
 import json
 import os
 import os.path
@@ -8,6 +9,21 @@ import subprocess
 import sys
 import tempfile
 
+def quote_if_needed(row):
+    if row != "true" and row != "false":
+        return "\"" + row + "\""
+    # subtypes column
+    return row
+
+def parseData(data):
+    rows = ""
+    for (row) in data:
+        d = row[0].split(';')
+        d = map(quote_if_needed, d)
+        rows += "      - [" + ', '.join(d) + ']\n'
+
+    return rows
+
 class Generator:
     def __init__ (self, language):
         self.language = language
@@ -17,32 +33,32 @@ class Generator:
         self.generateNegativeSummaries = False
         self.generateTypeBasedSummaries = False
         self.dryRun = False
+        self.dirname = "model-generator"
 
 
     def printHelp(self):
         print(f"""Usage:
-python3 GenerateFlowModel.py <library-database> <outputQll> [<friendlyFrameworkName>] [--with-sinks] [--with-sources] [--with-summaries] [--with-typebased-summaries] [--dry-run]
+python3 GenerateFlowModelExtensions.py <library-database> <outputYml> [<friendlyFrameworkName>] [--with-sinks] [--with-sources] [--with-summaries] [--with-typebased-summaries] [--dry-run]
 
 This generates summary, source and sink models for the code in the database.
-The files will be placed in `{self.language}/ql/lib/semmle/code/{self.language}/frameworks/<outputQll>` where
-outputQll is the name (and path) of the output QLL file. Usually, models are grouped by their
+The files will be placed in `{self.language}/ql/lib/ext/generated/<outputYml>.model.yml` where
+outputYml is the name (and path) of the output YAML file. Usually, models are grouped by their
 respective frameworks.
-If negative summaries are produced a file prefixed with `Negative` will be generated and stored in the same folder.
 
 Which models are generated is controlled by the flags:
     --with-sinks
     --with-sources
     --with-summaries
     --with-negative-summaries
-    --with-typebased-summaries
-If none of these flags are specified, all models are generated.
+    --with-typebased-summaries (Experimental - only for C#)
+If none of these flags are specified, all models are generated except for the type based models.
 
     --dry-run: Only run the queries, but don't write to file.
 
 Example invocations:
-$ python3 GenerateFlowModel.py /tmp/dbs/my_library_db "mylibrary/Framework.qll"
-$ python3 GenerateFlowModel.py /tmp/dbs/my_library_db "mylibrary/Framework.qll" "Friendly Name of Framework"
-$ python3 GenerateFlowModel.py /tmp/dbs/my_library_db "mylibrary/FrameworkSinks.qll" --with-sinks
+$ python3 GenerateFlowModelExtensions.py /tmp/dbs/my_library_db mylibrary
+$ python3 GenerateFlowModelExtensions.py /tmp/dbs/my_library_db mylibrary "Friendly Name of Framework"
+$ python3 GenerateFlowModelExtensions.py /tmp/dbs/my_library_db --with-sinks
 
 Requirements: `codeql` should both appear on your path.
     """)
@@ -50,22 +66,19 @@ Requirements: `codeql` should both appear on your path.
 
     def setenvironment(self, target, database, friendlyName):
         self.codeQlRoot = subprocess.check_output(["git", "rev-parse", "--show-toplevel"]).decode("utf-8").strip()
-        if not target.endswith(".qll"):
-            target += ".qll"
+        if not target.endswith(".model.yml"):
+            target += ".model.yml"
         filename = os.path.basename(target)
-        dirname = os.path.dirname(target)
         if friendlyName is not None:
             self.friendlyname = friendlyName
         else:
-            self.friendlyname = filename[:-4]
-        self.shortname = filename[:-4]
+            self.friendlyname = filename[:-10]
+        self.shortname = filename[:-10]
         self.database = database
         self.generatedFrameworks = os.path.join(
-            self.codeQlRoot, f"{self.language}/ql/lib/semmle/code/{self.language}/frameworks/")
-        self.frameworkTarget = os.path.join(self.generatedFrameworks, dirname, filename)
-        self.negativeFrameworkTarget = os.path.join(self.generatedFrameworks, dirname, "Negative" + filename)
-        self.typeBasedFrameworkTarget = os.path.join(self.generatedFrameworks, dirname, "TypeBased" + filename)
-
+            self.codeQlRoot, f"{self.language}/ql/lib/ext/generated/")
+        self.frameworkTarget = os.path.join(self.generatedFrameworks, filename)
+        self.typeBasedFrameworkTarget = os.path.join(self.generatedFrameworks, "TypeBased" + filename)
         self.workDir = tempfile.mkdtemp()
         os.makedirs(self.generatedFrameworks, exist_ok=True)
 
@@ -114,166 +127,93 @@ Requirements: `codeql` should both appear on your path.
 
         generator.setenvironment(sys.argv[2], sys.argv[1], friendlyName)
         return generator
+    
 
-
-    def runQuery(self, infoMessage, query):
-        print("########## Querying " + infoMessage + "...")
-        queryFile = os.path.join(self.codeQlRoot, f"{self.language}/ql/src/utils/model-generator", query)
+    def runQuery(self, query):
+        print("########## Querying " + query + "...")
+        queryFile = os.path.join(self.codeQlRoot, f"{self.language}/ql/src/utils/{self.dirname}", query)
         resultBqrs = os.path.join(self.workDir, "out.bqrs")
-        cmd = ['codeql', 'query', 'run', queryFile, '--database',
-               self.database, '--output', resultBqrs, '--threads', '8']
 
-        ret = subprocess.call(cmd)
-        if ret != 0:
-            print("Failed to generate " + infoMessage +
-                  ". Failed command was: " + shlex.join(cmd))
-            sys.exit(1)
-        return self.readRows(resultBqrs)
+        helpers.run_cmd(['codeql', 'query', 'run', queryFile, '--database',
+               self.database, '--output', resultBqrs, '--threads', '8'], "Failed to generate " + query)
+
+        return helpers.readData(self.workDir, resultBqrs)
 
 
-    def readRows(self, bqrsFile):
-        generatedJson = os.path.join(self.workDir, "out.json")
-        cmd = ['codeql', 'bqrs', 'decode', bqrsFile,
-               '--format=json', '--output', generatedJson]
-        ret = subprocess.call(cmd)
-        if ret != 0:
-            print("Failed to decode BQRS. Failed command was: " + shlex.join(cmd))
-            sys.exit(1)
-
-        with open(generatedJson) as f:
-            results = json.load(f)
-
-        try:
-            results['#select']['tuples']
-        except KeyError:
-            print('Unexpected JSON output - no tuples found')
-            exit(1)
-
-        rows = ""
-        for (row) in results['#select']['tuples']:
-            rows += "            \"" + row[0] + "\",\n"
-
-        return rows[:-2]
-
-
-    def asCsvModel(self, superclass, kind, rows):
-        classTemplate = """
-private class {0}{1}Csv extends {2} {{
-    override predicate row(string row) {{
-        row =
-            [
-{3}
-            ]
-    }}
-}}
-        """
+    def asAddsTo(self, rows, predicate):
         if rows.strip() == "":
             return ""
-        return classTemplate.format(self.shortname[0].upper() + self.shortname[1:], kind.capitalize(), superclass, rows)
+        return helpers.addsToTemplate.format(f"codeql/{self.language}-all", predicate, rows)
+
+
+    def getAddsTo(self, query, predicate):
+        data = self.runQuery(query)
+        rows = parseData(data)
+        return self.asAddsTo(rows, predicate)
 
 
     def makeContent(self):
         if self.generateSummaries:
-            summaryRows = self.runQuery("summary models", "CaptureSummaryModels.ql")
-            summaryCsv = self.asCsvModel("SummaryModelCsv", "summary", summaryRows)
+            summaryAddsTo = self.getAddsTo("CaptureSummaryModels.ql", helpers.summaryModelPredicate)
         else:
-            summaryCsv = ""
+            summaryAddsTo = ""
 
         if self.generateSinks:
-            sinkRows = self.runQuery("sink models", "CaptureSinkModels.ql")
-            sinkCsv = self.asCsvModel("SinkModelCsv", "sinks", sinkRows)
+            sinkAddsTo = self.getAddsTo("CaptureSinkModels.ql", helpers.sinkModelPredicate)
         else:
-            sinkCsv = ""
+            sinkAddsTo = ""
 
         if self.generateSources:
-            sourceRows = self.runQuery("source models", "CaptureSourceModels.ql")
-            sourceCsv = self.asCsvModel("SourceModelCsv", "sources", sourceRows)
+            sourceAddsTo = self.getAddsTo("CaptureSourceModels.ql", helpers.sourceModelPredicate)
         else:
-            sourceCsv = ""
+            sourceAddsTo = ""
 
-        return f"""
-/** 
- * THIS FILE IS AN AUTO-GENERATED MODELS AS DATA FILE. DO NOT EDIT.
- * Definitions of taint steps in the {self.friendlyname} framework.
- */
-
-import {self.language}
-private import semmle.code.{self.language}.dataflow.ExternalFlow
-
-{sinkCsv}
-{sourceCsv}
-{summaryCsv}
-
-        """
-
-    def makeNegativeContent(self):
         if self.generateNegativeSummaries:
-            negativeSummaryRows = self.runQuery("negative summary models", "CaptureNegativeSummaryModels.ql")
-            negativeSummaryCsv = self.asCsvModel("NegativeSummaryModelCsv", "NegativeSummary", negativeSummaryRows)
+            negativeSummaryAddsTo = self.getAddsTo("CaptureNegativeSummaryModels.ql", "extNegativeSummaryModel")
         else:
-            negativeSummaryCsv = ""
-
-        return f"""
-/**
- * THIS FILE IS AN AUTO-GENERATED MODELS AS DATA FILE. DO NOT EDIT.
- * Definitions of negative summaries in the {self.friendlyname} framework.
- */
-
-import {self.language}
-private import semmle.code.{self.language}.dataflow.ExternalFlow
-
-{negativeSummaryCsv}
+            negativeSummaryAddsTo = ""
+        
+        return f""" 
+# THIS FILE IS AN AUTO-GENERATED MODELS AS DATA FILE. DO NOT EDIT.
+# Definitions of taint steps in the {self.friendlyname} framework.
 
+extensions:
+{sinkAddsTo}
+{sourceAddsTo}
+{summaryAddsTo}
+{negativeSummaryAddsTo}
         """
 
     def makeTypeBasedContent(self):
         if self.generateTypeBasedSummaries:
-            typeBasedSummaryRows = self.runQuery("type based summary models", "CaptureTypeBasedSummaryModels.ql")
-            typeBasedSummaryCsv = self.asCsvModel("SummaryModelCsv", "TypeBasedSummary", typeBasedSummaryRows)
+            typeBasedSummaryAddsTo = self.getAddsTo("CaptureTypeBasedSummaryModels.ql", "extSummaryModel")
         else:
-            typeBasedSummaryCsv = ""
+            typeBasedSummaryAddsTo = ""
 
         return f"""
-/**
- * THIS FILE IS AN AUTO-GENERATED MODELS AS DATA FILE. DO NOT EDIT.
- * Definitions of type based summaries in the {self.friendlyname} framework.
- */
-
-import {self.language}
-private import semmle.code.{self.language}.dataflow.ExternalFlow
-
-{typeBasedSummaryCsv}
+# THIS FILE IS AN AUTO-GENERATED MODELS AS DATA FILE. DO NOT EDIT.
+# Definitions of type based summaries in the {self.friendlyname} framework.
 
+extensions:
+{typeBasedSummaryAddsTo}
         """
 
     def save(self, content, target):
-        with open(target, "w") as targetQll:
-            targetQll.write(content)
-
-        cmd = ['codeql', 'query', 'format', '--in-place', target]
-        ret = subprocess.call(cmd)
-        if ret != 0:
-            print("Failed to format query. Failed command was: " + shlex.join(cmd))
-            sys.exit(1)
-
-        print("")
-        print("CSV model written to " + target)
+        with open(target, "w") as targetYml:
+            targetYml.write(content)
+        print("Models as data extensions written to " + target)
 
 
     def run(self):
         content = self.makeContent()
-        negativeContent = self.makeNegativeContent()
         typeBasedContent = self.makeTypeBasedContent()
 
         if self.dryRun:
-            print("CSV Models generated, but not written to file.")
+            print("Models as data extensions generated, but not written to file.")
             sys.exit(0)
         
         if self.generateSinks or self.generateSinks or self.generateSummaries:
             self.save(content, self.frameworkTarget)
 
-        if self.generateNegativeSummaries:
-            self.save(negativeContent, self.negativeFrameworkTarget)
-
         if self.generateTypeBasedSummaries:
             self.save(typeBasedContent, self.typeBasedFrameworkTarget)
diff --git a/misc/scripts/models-as-data/generate_flow_model_extensions.py b/misc/scripts/models-as-data/generate_flow_model_extensions.py
deleted file mode 100644
index eee328c6f15..00000000000
--- a/misc/scripts/models-as-data/generate_flow_model_extensions.py
+++ /dev/null
@@ -1,215 +0,0 @@
-#!/usr/bin/python3
-
-import helpers
-import json
-import os
-import os.path
-import shlex
-import subprocess
-import sys
-import tempfile
-
-def quote_if_needed(row):
-    if row != "true" and row != "false":
-        return "\"" + row + "\""
-    # subtypes column
-    return row
-
-def parseData(data):
-    rows = ""
-    for (row) in data:
-        d = row[0].split(';')
-        d = map(quote_if_needed, d)
-        rows += "      - [" + ', '.join(d) + ']\n'
-
-    return rows
-
-class Generator:
-    def __init__ (self, language):
-        self.language = language
-        self.generateSinks = False
-        self.generateSources = False
-        self.generateSummaries = False
-        self.generateNegativeSummaries = False
-        self.generateTypeBasedSummaries = False
-        self.dryRun = False
-        self.dirname = "model-generator"
-
-
-    def printHelp(self):
-        print(f"""Usage:
-python3 GenerateFlowModelExtensions.py <library-database> <outputYml> [<friendlyFrameworkName>] [--with-sinks] [--with-sources] [--with-summaries] [--with-typebased-summaries] [--dry-run]
-
-This generates summary, source and sink models for the code in the database.
-The files will be placed in `{self.language}/ql/lib/ext/generated/<outputYml>.model.yml` where
-outputYml is the name (and path) of the output YAML file. Usually, models are grouped by their
-respective frameworks.
-
-Which models are generated is controlled by the flags:
-    --with-sinks
-    --with-sources
-    --with-summaries
-    --with-negative-summaries
-    --with-typebased-summaries (Experimental - only for C#)
-If none of these flags are specified, all models are generated except for the type based models.
-
-    --dry-run: Only run the queries, but don't write to file.
-
-Example invocations:
-$ python3 GenerateFlowModelExtensions.py /tmp/dbs/my_library_db mylibrary
-$ python3 GenerateFlowModelExtensions.py /tmp/dbs/my_library_db mylibrary "Friendly Name of Framework"
-$ python3 GenerateFlowModelExtensions.py /tmp/dbs/my_library_db --with-sinks
-
-Requirements: `codeql` should both appear on your path.
-    """)
-
-
-    def setenvironment(self, target, database, friendlyName):
-        self.codeQlRoot = subprocess.check_output(["git", "rev-parse", "--show-toplevel"]).decode("utf-8").strip()
-        if not target.endswith(".model.yml"):
-            target += ".model.yml"
-        filename = os.path.basename(target)
-        if friendlyName is not None:
-            self.friendlyname = friendlyName
-        else:
-            self.friendlyname = filename[:-10]
-        self.shortname = filename[:-10]
-        self.database = database
-        self.generatedFrameworks = os.path.join(
-            self.codeQlRoot, f"{self.language}/ql/lib/ext/generated/")
-        self.frameworkTarget = os.path.join(self.generatedFrameworks, filename)
-        self.typeBasedFrameworkTarget = os.path.join(self.generatedFrameworks, "TypeBased" + filename)
-        self.workDir = tempfile.mkdtemp()
-        os.makedirs(self.generatedFrameworks, exist_ok=True)
-
-
-    @staticmethod
-    def make(language):
-        generator = Generator(language)
-        if any(s == "--help" for s in sys.argv):
-            generator.printHelp()
-            sys.exit(0)
-
-        if "--with-sinks" in sys.argv:
-            sys.argv.remove("--with-sinks")
-            generator.generateSinks = True
-
-        if "--with-sources" in sys.argv:
-            sys.argv.remove("--with-sources")
-            generator.generateSources = True
-
-        if "--with-summaries" in sys.argv:
-            sys.argv.remove("--with-summaries")
-            generator.generateSummaries = True
-
-        if "--with-negative-summaries" in sys.argv:
-            sys.argv.remove("--with-negative-summaries")
-            generator.generateNegativeSummaries = True
-
-        if "--with-typebased-summaries" in sys.argv:
-            sys.argv.remove("--with-typebased-summaries")
-            generator.generateTypeBasedSummaries = True
-
-        if "--dry-run" in sys.argv:
-            sys.argv.remove("--dry-run")
-            generator.dryRun = True
-
-        if not generator.generateSinks and not generator.generateSources and not generator.generateSummaries and not generator.generateNegativeSummaries and not generator.generateTypeBasedSummaries:
-            generator.generateSinks = generator.generateSources = generator.generateSummaries = generator.generateNegativeSummaries = True
-
-        if len(sys.argv) < 3 or len(sys.argv) > 4:
-            generator.printHelp()
-            sys.exit(1)
-
-        friendlyName = None
-        if len(sys.argv) == 4:
-            friendlyName = sys.argv[3]
-
-        generator.setenvironment(sys.argv[2], sys.argv[1], friendlyName)
-        return generator
-    
-
-    def runQuery(self, query):
-        print("########## Querying " + query + "...")
-        queryFile = os.path.join(self.codeQlRoot, f"{self.language}/ql/src/utils/{self.dirname}", query)
-        resultBqrs = os.path.join(self.workDir, "out.bqrs")
-
-        helpers.run_cmd(['codeql', 'query', 'run', queryFile, '--database',
-               self.database, '--output', resultBqrs, '--threads', '8'], "Failed to generate " + query)
-
-        return helpers.readData(self.workDir, resultBqrs)
-
-
-    def asAddsTo(self, rows, predicate):
-        if rows.strip() == "":
-            return ""
-        return helpers.addsToTemplate.format(f"codeql/{self.language}-all", predicate, rows)
-
-
-    def getAddsTo(self, query, predicate):
-        data = self.runQuery(query)
-        rows = parseData(data)
-        return self.asAddsTo(rows, predicate)
-
-
-    def makeContent(self):
-        if self.generateSummaries:
-            summaryAddsTo = self.getAddsTo("CaptureSummaryModels.ql", helpers.summaryModelPredicate)
-        else:
-            summaryAddsTo = ""
-
-        if self.generateSinks:
-            sinkAddsTo = self.getAddsTo("CaptureSinkModels.ql", helpers.sinkModelPredicate)
-        else:
-            sinkAddsTo = ""
-
-        if self.generateSources:
-            sourceAddsTo = self.getAddsTo("CaptureSourceModels.ql", helpers.sourceModelPredicate)
-        else:
-            sourceAddsTo = ""
-
-        if self.generateNegativeSummaries:
-            negativeSummaryAddsTo = self.getAddsTo("CaptureNegativeSummaryModels.ql", helpers.negativeSummaryModelPredicate)
-        else:
-            negativeSummaryAddsTo = ""
-        
-        return f"""# THIS FILE IS AN AUTO-GENERATED MODELS AS DATA FILE. DO NOT EDIT.
-# Definitions of models for the {self.friendlyname} framework.
-
-extensions:
-{sinkAddsTo}
-{sourceAddsTo}
-{summaryAddsTo}
-{negativeSummaryAddsTo}"""
-
-    def makeTypeBasedContent(self):
-        if self.generateTypeBasedSummaries:
-            typeBasedSummaryAddsTo = self.getAddsTo("CaptureTypeBasedSummaryModels.ql", "extSummaryModel")
-        else:
-            typeBasedSummaryAddsTo = ""
-
-        return f"""# THIS FILE IS AN AUTO-GENERATED MODELS AS DATA FILE. DO NOT EDIT.
-# Definitions of type based summaries in the {self.friendlyname} framework.
-
-extensions:
-{typeBasedSummaryAddsTo}"""
-
-    def save(self, content, target):
-        with open(target, "w") as targetYml:
-            targetYml.write(content)
-        print("Models as data extensions written to " + target)
-
-
-    def run(self):
-        content = self.makeContent()
-        typeBasedContent = self.makeTypeBasedContent()
-
-        if self.dryRun:
-            print("Models as data extensions generated, but not written to file.")
-            sys.exit(0)
-        
-        if self.generateSinks or self.generateSinks or self.generateSummaries:
-            self.save(content, self.frameworkTarget)
-
-        if self.generateTypeBasedSummaries:
-            self.save(typeBasedContent, self.typeBasedFrameworkTarget)

From a9ba964be40887e6d07f34f1bdab4a04d560ce17 Mon Sep 17 00:00:00 2001
From: Michael Nebel <michaelnebel@github.com>
Date: Thu, 1 Dec 2022 19:24:16 +0100
Subject: [PATCH 1010/1420] Java: Update the Java model re-generate script.

---
 .../src/utils/model-generator/RegenerateModels.py   | 13 +++++--------
 1 file changed, 5 insertions(+), 8 deletions(-)

diff --git a/java/ql/src/utils/model-generator/RegenerateModels.py b/java/ql/src/utils/model-generator/RegenerateModels.py
index 55e9651b4ca..f89873339f5 100755
--- a/java/ql/src/utils/model-generator/RegenerateModels.py
+++ b/java/ql/src/utils/model-generator/RegenerateModels.py
@@ -5,19 +5,17 @@
 from pathlib import Path
 import json
 import os
-import requests
 import shutil
 import subprocess
 import tempfile
 import sys
 
 
-defaultModelPath = "java/ql/lib/semmle/code/java/frameworks"
 lgtmSlugToModelFile = {
     # "apache/commons-beanutils": "apache/BeanUtilsGenerated.qll",
     # "apache/commons-codec": "apache/CodecGenerated.qll",
     # "apache/commons-lang": "apache/Lang3Generated.qll",
-    "apache/commons-io": "apache/IOGenerated.qll",
+    "apache/commons-io": "org.apache.commons.io",
 }
 
 
@@ -36,13 +34,12 @@ def regenerateModel(lgtmSlug, extractedDb):
         print("ERROR: slug " + lgtmSlug +
               " is not mapped to a model file in script " + sys.argv[0])
         sys.exit(1)
-    modelFile = defaultModelPath + "/" + lgtmSlugToModelFile[lgtmSlug]
+    modelFile = lgtmSlugToModelFile[lgtmSlug]
     codeQlRoot = findGitRoot()
-    targetModel = codeQlRoot + "/" + modelFile
     subprocess.check_call([codeQlRoot + "/java/ql/src/utils/model-generator/GenerateFlowModel.py",
-                           "--with-summaries", "--with-sinks",
-                           extractedDb, targetModel])
-    print("Regenerated " + targetModel)
+                           "--with-summaries", "--with-sinks", "--with-negative-summaries",
+                           extractedDb, modelFile])
+    print("Regenerated " + modelFile)
     shutil.rmtree(tmpDir)
 
 

From bf332fa5e75b518830496b73d9ece34fb111ca1e Mon Sep 17 00:00:00 2001
From: Michael Nebel <michaelnebel@github.com>
Date: Mon, 5 Dec 2022 10:39:17 +0100
Subject: [PATCH 1011/1420] Java: Update MaD regenerate models worksflow.

---
 .github/workflows/mad_regenerate-models.yml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/mad_regenerate-models.yml b/.github/workflows/mad_regenerate-models.yml
index 0abc8936911..d92e3652d5c 100644
--- a/.github/workflows/mad_regenerate-models.yml
+++ b/.github/workflows/mad_regenerate-models.yml
@@ -53,7 +53,7 @@ jobs:
           java/ql/src/utils/model-generator/RegenerateModels.py "${SLUG}" dbs/${SHORTNAME}
       - name: Stage changes
         run: |
-          find java -name "*.qll" -print0 | xargs -0 git add
+          find java -name "*.model.yml" -print0 | xargs -0 git add
           git status
           git diff --cached > models.patch
       - uses: actions/upload-artifact@v3

From 17e7f04adf1a26f673c3933b27e035c101e08dbc Mon Sep 17 00:00:00 2001
From: Michael Nebel <michaelnebel@github.com>
Date: Mon, 5 Dec 2022 10:45:52 +0100
Subject: [PATCH 1012/1420] Java: Update the MaD Model Difference workflow.

---
 .github/workflows/mad_modelDiff.yml | 10 +++++-----
 1 file changed, 5 insertions(+), 5 deletions(-)

diff --git a/.github/workflows/mad_modelDiff.yml b/.github/workflows/mad_modelDiff.yml
index 04e5f486866..46fe7fbaf54 100644
--- a/.github/workflows/mad_modelDiff.yml
+++ b/.github/workflows/mad_modelDiff.yml
@@ -61,8 +61,8 @@ jobs:
             DATABASE=$2
             cd codeql-$QL_VARIANT
             SHORTNAME=`basename $DATABASE`
-            python java/ql/src/utils/model-generator/GenerateFlowModel.py --with-summaries --with-sinks $DATABASE $MODELS/${SHORTNAME}.qll
-            mv $MODELS/${SHORTNAME}.qll $MODELS/${SHORTNAME}Generated_${QL_VARIANT}.qll
+            python java/ql/src/utils/model-generator/GenerateFlowModel.py --with-summaries --with-sinks $DATABASE $MODELS/${SHORTNAME}.model.yml
+            mv $MODELS/${SHORTNAME}.model.yml $MODELS/${SHORTNAME}Generated_${QL_VARIANT}.model.yml
             cd ..
           }
 
@@ -85,16 +85,16 @@ jobs:
           set -x
           MODELS=`pwd`/tmp-models
           ls -1 tmp-models/
-          for m in $MODELS/*_main.qll ; do
+          for m in $MODELS/*_main.model.yml ; do
             t="${m/main/"pr"}"
             basename=`basename $m`
-            name="diff_${basename/_main.qll/""}"
+            name="diff_${basename/_main.model.yml/""}"
             (diff -w -u $m $t | diff2html -i stdin -F $MODELS/$name.html) || true
           done
       - uses: actions/upload-artifact@v3
         with:
           name: models
-          path: tmp-models/*.qll
+          path: tmp-models/*.model.yml
           retention-days: 20
       - uses: actions/upload-artifact@v3
         with:

From 1c135bd207d31ce96bab7b12781afa3eae7bd05b Mon Sep 17 00:00:00 2001
From: Michael Nebel <michaelnebel@github.com>
Date: Mon, 5 Dec 2022 11:32:18 +0100
Subject: [PATCH 1013/1420] Java: Temporarily disable the Model Difference
 workflow for changes to the model generator.

---
 .github/workflows/mad_modelDiff.yml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/mad_modelDiff.yml b/.github/workflows/mad_modelDiff.yml
index 46fe7fbaf54..1d75fc1d654 100644
--- a/.github/workflows/mad_modelDiff.yml
+++ b/.github/workflows/mad_modelDiff.yml
@@ -11,7 +11,7 @@ on:
     branches:
       - main
     paths:
-      - "java/ql/src/utils/model-generator/**/*.*"
+      # - "java/ql/src/utils/model-generator/**/*.*"
       - ".github/workflows/mad_modelDiff.yml"
 
 permissions:

From 71a6b09badbe5b2dc61d0c0c3fcfe5c3904f8cd7 Mon Sep 17 00:00:00 2001
From: Tony Torralba <atorralba@users.noreply.github.com>
Date: Mon, 5 Dec 2022 11:52:02 +0100
Subject: [PATCH 1014/1420] Minor syntax change in tests

---
 java/ql/test/library-tests/pathsanitizer/TestKt.kt | 8 ++++----
 1 file changed, 4 insertions(+), 4 deletions(-)

diff --git a/java/ql/test/library-tests/pathsanitizer/TestKt.kt b/java/ql/test/library-tests/pathsanitizer/TestKt.kt
index 0960e9301a7..ec8ab63a0cf 100644
--- a/java/ql/test/library-tests/pathsanitizer/TestKt.kt
+++ b/java/ql/test/library-tests/pathsanitizer/TestKt.kt
@@ -95,7 +95,7 @@ class TestKt {
         // PathTraversalSanitizer + allowListGuard
         run {
             val source: File? = source() as File?
-            val normalized: String = source!!.getCanonicalPath()
+            val normalized: String = source!!.canonicalPath
             if (normalized.startsWith("/safe")) {
                 sink(source) // Safe
                 sink(normalized) // Safe
@@ -106,7 +106,7 @@ class TestKt {
         }
         run {
             val source: File? = source() as File?
-            val normalized: String = source!!.getCanonicalFile().toString()
+            val normalized: File = source!!.canonicalFile.toString()
             if (normalized.startsWith("/safe")) {
                 sink(source) // Safe
                 sink(normalized) // Safe
@@ -328,7 +328,7 @@ class TestKt {
         // PathTraversalSanitizer + blockListGuard
         run {
             val source: File? = source() as File?
-            val normalized: String = source!!.getCanonicalPath()
+            val normalized: String = source!!.canonicalPath
             if (!normalized.startsWith("/data")) {
                 sink(source) // Safe
                 sink(normalized) // Safe
@@ -339,7 +339,7 @@ class TestKt {
         }
         run {
             val source: File? = source() as File?
-            val normalized: String = source!!.getCanonicalFile().toString()
+            val normalized: String = source!!.canonicalFile.toString()
             if (!normalized.startsWith("/data")) {
                 sink(source) // Safe
                 sink(normalized) // Safe

From 47d61e0b4d355786a47f25197878cb7ba15c173c Mon Sep 17 00:00:00 2001
From: Tony Torralba <atorralba@users.noreply.github.com>
Date: Mon, 5 Dec 2022 11:52:50 +0100
Subject: [PATCH 1015/1420] Add test for File.startsWith

---
 .../library-tests/pathsanitizer/TestKt.kt     | 24 ++++++++++++++++++-
 1 file changed, 23 insertions(+), 1 deletion(-)

diff --git a/java/ql/test/library-tests/pathsanitizer/TestKt.kt b/java/ql/test/library-tests/pathsanitizer/TestKt.kt
index ec8ab63a0cf..dc9cf86c8e1 100644
--- a/java/ql/test/library-tests/pathsanitizer/TestKt.kt
+++ b/java/ql/test/library-tests/pathsanitizer/TestKt.kt
@@ -106,7 +106,18 @@ class TestKt {
         }
         run {
             val source: File? = source() as File?
-            val normalized: File = source!!.canonicalFile.toString()
+            val normalized: File = source!!.canonicalFile
+            if (normalized.startsWith("/safe")) {
+                sink(source) // Safe
+                sink(normalized) // Safe
+            } else {
+                sink(source) // $ hasTaintFlow
+                sink(normalized) // $ hasTaintFlow
+            }
+        }
+        run {
+            val source: File? = source() as File?
+            val normalized: String = source!!.canonicalFile.toString()
             if (normalized.startsWith("/safe")) {
                 sink(source) // Safe
                 sink(normalized) // Safe
@@ -337,6 +348,17 @@ class TestKt {
                 sink(normalized) // $ hasTaintFlow
             }
         }
+        run {
+            val source: File? = source() as File?
+            val normalized: File = source!!.canonicalFile
+            if (!normalized.startsWith("/data")) {
+                sink(source) // Safe
+                sink(normalized) // Safe
+            } else {
+                sink(source) // $ hasTaintFlow
+                sink(normalized) // $ hasTaintFlow
+            }
+        }
         run {
             val source: File? = source() as File?
             val normalized: String = source!!.canonicalFile.toString()

From 7c4b76b08b0678fbff2ad51af63225d9fbc53cb4 Mon Sep 17 00:00:00 2001
From: Mauro Baluda <mbaluda@github.com>
Date: Mon, 5 Dec 2022 12:55:53 +0100
Subject: [PATCH 1016/1420] Update InsecureCookie.ql

---
 .../Security/CWE/CWE-614/InsecureCookie.ql    | 28 ++++++++-----------
 1 file changed, 12 insertions(+), 16 deletions(-)

diff --git a/java/ql/src/Security/CWE/CWE-614/InsecureCookie.ql b/java/ql/src/Security/CWE/CWE-614/InsecureCookie.ql
index c6aad828896..0766ee07134 100644
--- a/java/ql/src/Security/CWE/CWE-614/InsecureCookie.ql
+++ b/java/ql/src/Security/CWE/CWE-614/InsecureCookie.ql
@@ -30,10 +30,16 @@ class SecureCookieConfiguration extends DataFlow::Configuration {
   SecureCookieConfiguration() { this = "SecureCookieConfiguration" }
 
   override predicate isSource(DataFlow::Node source) {
-    exists(Variable cookie, MethodAccess m |
-      source.asExpr() = cookie.getAnAccess() and
-      cookie.getAnAccess() = m.getQualifier() and
-      m.getMethod().getName() = "setSecure"
+    exists(MethodAccess ma, Method m | ma.getMethod() = m |
+      m.getDeclaringType() instanceof TypeCookie and
+      m.getName() = "setSecure" and
+      source.asExpr() = ma.getQualifier() and
+      forex(DataFlow::Node argSource |
+        DataFlow::localFlow(argSource, DataFlow::exprNode(ma.getArgument(0))) and
+        not DataFlow::localFlowStep(_, argSource)
+      |
+        isSafeSecureCookieSetting(argSource.asExpr())
+      )
     )
   }
 
@@ -43,18 +49,8 @@ class SecureCookieConfiguration extends DataFlow::Configuration {
   }
 }
 
-from MethodAccess add, SecureCookieConfiguration df
+from MethodAccess add
 where
   add.getMethod() instanceof ResponseAddCookieMethod and
-  not exists(Variable cookie, MethodAccess m |
-    df.hasFlow(DataFlow::exprNode(cookie.getAnAccess()), DataFlow::exprNode(add.getArgument(0))) and
-    m.getMethod().getName() = "setSecure" and
-    forex(DataFlow::Node argSource |
-      DataFlow::localFlow(argSource, DataFlow::exprNode(m.getArgument(0))) and
-      not DataFlow::localFlowStep(_, argSource)
-    |
-      isSafeSecureCookieSetting(argSource.asExpr())
-    ) and
-    m.getQualifier() = cookie.getAnAccess()
-  )
+  not any(SecureCookieConfiguration df).hasFlowToExpr(add.getArgument(0))
 select add, "Cookie is added to response without the 'secure' flag being set."

From e66a3c4d83953dc14c8f171efa2a7584901e07b8 Mon Sep 17 00:00:00 2001
From: Tom Hvitved <hvitved@github.com>
Date: Mon, 5 Dec 2022 12:57:11 +0100
Subject: [PATCH 1017/1420] Data flow: Add consistency checks for parameter
 positions

---
 .../internal/DataFlowImplConsistency.qll         | 16 ++++++++++++++++
 1 file changed, 16 insertions(+)

diff --git a/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImplConsistency.qll b/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImplConsistency.qll
index f681e90aa21..3eacc21f356 100644
--- a/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImplConsistency.qll
+++ b/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImplConsistency.qll
@@ -244,4 +244,20 @@ module Consistency {
     not callable = viableCallable(call) and
     not any(ConsistencyConfiguration c).viableImplInCallContextTooLargeExclude(call, ctx, callable)
   }
+
+  query predicate uniqueParameterNodeAtPosition(
+    DataFlowCallable c, ParameterPosition pos, Node p, string msg
+  ) {
+    isParameterNode(p, c, pos) and
+    not exists(unique(Node p0 | isParameterNode(p0, c, pos))) and
+    msg = "Parameters with overlapping positions."
+  }
+
+  query predicate uniqueParameterNodePosition(
+    DataFlowCallable c, ParameterPosition pos, Node p, string msg
+  ) {
+    isParameterNode(p, c, pos) and
+    not exists(unique(ParameterPosition pos0 | isParameterNode(p, c, pos0))) and
+    msg = "Parameter node with multiple positions."
+  }
 }

From 52f3a48638a2256058d11e0c8e26b29d2a418c21 Mon Sep 17 00:00:00 2001
From: Tom Hvitved <hvitved@github.com>
Date: Mon, 5 Dec 2022 12:57:27 +0100
Subject: [PATCH 1018/1420] Data flow: Sync files

---
 .../internal/DataFlowImplConsistency.qll         | 16 ++++++++++++++++
 .../internal/DataFlowImplConsistency.qll         | 16 ++++++++++++++++
 .../internal/DataFlowImplConsistency.qll         | 16 ++++++++++++++++
 .../internal/DataFlowImplConsistency.qll         | 16 ++++++++++++++++
 .../internal/DataFlowImplConsistency.qll         | 16 ++++++++++++++++
 .../new/internal/DataFlowImplConsistency.qll     | 16 ++++++++++++++++
 .../internal/DataFlowImplConsistency.qll         | 16 ++++++++++++++++
 7 files changed, 112 insertions(+)

diff --git a/cpp/ql/lib/experimental/semmle/code/cpp/ir/dataflow/internal/DataFlowImplConsistency.qll b/cpp/ql/lib/experimental/semmle/code/cpp/ir/dataflow/internal/DataFlowImplConsistency.qll
index f681e90aa21..3eacc21f356 100644
--- a/cpp/ql/lib/experimental/semmle/code/cpp/ir/dataflow/internal/DataFlowImplConsistency.qll
+++ b/cpp/ql/lib/experimental/semmle/code/cpp/ir/dataflow/internal/DataFlowImplConsistency.qll
@@ -244,4 +244,20 @@ module Consistency {
     not callable = viableCallable(call) and
     not any(ConsistencyConfiguration c).viableImplInCallContextTooLargeExclude(call, ctx, callable)
   }
+
+  query predicate uniqueParameterNodeAtPosition(
+    DataFlowCallable c, ParameterPosition pos, Node p, string msg
+  ) {
+    isParameterNode(p, c, pos) and
+    not exists(unique(Node p0 | isParameterNode(p0, c, pos))) and
+    msg = "Parameters with overlapping positions."
+  }
+
+  query predicate uniqueParameterNodePosition(
+    DataFlowCallable c, ParameterPosition pos, Node p, string msg
+  ) {
+    isParameterNode(p, c, pos) and
+    not exists(unique(ParameterPosition pos0 | isParameterNode(p, c, pos0))) and
+    msg = "Parameter node with multiple positions."
+  }
 }
diff --git a/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImplConsistency.qll b/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImplConsistency.qll
index f681e90aa21..3eacc21f356 100644
--- a/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImplConsistency.qll
+++ b/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImplConsistency.qll
@@ -244,4 +244,20 @@ module Consistency {
     not callable = viableCallable(call) and
     not any(ConsistencyConfiguration c).viableImplInCallContextTooLargeExclude(call, ctx, callable)
   }
+
+  query predicate uniqueParameterNodeAtPosition(
+    DataFlowCallable c, ParameterPosition pos, Node p, string msg
+  ) {
+    isParameterNode(p, c, pos) and
+    not exists(unique(Node p0 | isParameterNode(p0, c, pos))) and
+    msg = "Parameters with overlapping positions."
+  }
+
+  query predicate uniqueParameterNodePosition(
+    DataFlowCallable c, ParameterPosition pos, Node p, string msg
+  ) {
+    isParameterNode(p, c, pos) and
+    not exists(unique(ParameterPosition pos0 | isParameterNode(p, c, pos0))) and
+    msg = "Parameter node with multiple positions."
+  }
 }
diff --git a/cpp/ql/lib/semmle/code/cpp/ir/dataflow/internal/DataFlowImplConsistency.qll b/cpp/ql/lib/semmle/code/cpp/ir/dataflow/internal/DataFlowImplConsistency.qll
index f681e90aa21..3eacc21f356 100644
--- a/cpp/ql/lib/semmle/code/cpp/ir/dataflow/internal/DataFlowImplConsistency.qll
+++ b/cpp/ql/lib/semmle/code/cpp/ir/dataflow/internal/DataFlowImplConsistency.qll
@@ -244,4 +244,20 @@ module Consistency {
     not callable = viableCallable(call) and
     not any(ConsistencyConfiguration c).viableImplInCallContextTooLargeExclude(call, ctx, callable)
   }
+
+  query predicate uniqueParameterNodeAtPosition(
+    DataFlowCallable c, ParameterPosition pos, Node p, string msg
+  ) {
+    isParameterNode(p, c, pos) and
+    not exists(unique(Node p0 | isParameterNode(p0, c, pos))) and
+    msg = "Parameters with overlapping positions."
+  }
+
+  query predicate uniqueParameterNodePosition(
+    DataFlowCallable c, ParameterPosition pos, Node p, string msg
+  ) {
+    isParameterNode(p, c, pos) and
+    not exists(unique(ParameterPosition pos0 | isParameterNode(p, c, pos0))) and
+    msg = "Parameter node with multiple positions."
+  }
 }
diff --git a/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImplConsistency.qll b/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImplConsistency.qll
index f681e90aa21..3eacc21f356 100644
--- a/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImplConsistency.qll
+++ b/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImplConsistency.qll
@@ -244,4 +244,20 @@ module Consistency {
     not callable = viableCallable(call) and
     not any(ConsistencyConfiguration c).viableImplInCallContextTooLargeExclude(call, ctx, callable)
   }
+
+  query predicate uniqueParameterNodeAtPosition(
+    DataFlowCallable c, ParameterPosition pos, Node p, string msg
+  ) {
+    isParameterNode(p, c, pos) and
+    not exists(unique(Node p0 | isParameterNode(p0, c, pos))) and
+    msg = "Parameters with overlapping positions."
+  }
+
+  query predicate uniqueParameterNodePosition(
+    DataFlowCallable c, ParameterPosition pos, Node p, string msg
+  ) {
+    isParameterNode(p, c, pos) and
+    not exists(unique(ParameterPosition pos0 | isParameterNode(p, c, pos0))) and
+    msg = "Parameter node with multiple positions."
+  }
 }
diff --git a/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImplConsistency.qll b/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImplConsistency.qll
index f681e90aa21..3eacc21f356 100644
--- a/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImplConsistency.qll
+++ b/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImplConsistency.qll
@@ -244,4 +244,20 @@ module Consistency {
     not callable = viableCallable(call) and
     not any(ConsistencyConfiguration c).viableImplInCallContextTooLargeExclude(call, ctx, callable)
   }
+
+  query predicate uniqueParameterNodeAtPosition(
+    DataFlowCallable c, ParameterPosition pos, Node p, string msg
+  ) {
+    isParameterNode(p, c, pos) and
+    not exists(unique(Node p0 | isParameterNode(p0, c, pos))) and
+    msg = "Parameters with overlapping positions."
+  }
+
+  query predicate uniqueParameterNodePosition(
+    DataFlowCallable c, ParameterPosition pos, Node p, string msg
+  ) {
+    isParameterNode(p, c, pos) and
+    not exists(unique(ParameterPosition pos0 | isParameterNode(p, c, pos0))) and
+    msg = "Parameter node with multiple positions."
+  }
 }
diff --git a/python/ql/lib/semmle/python/dataflow/new/internal/DataFlowImplConsistency.qll b/python/ql/lib/semmle/python/dataflow/new/internal/DataFlowImplConsistency.qll
index f681e90aa21..3eacc21f356 100644
--- a/python/ql/lib/semmle/python/dataflow/new/internal/DataFlowImplConsistency.qll
+++ b/python/ql/lib/semmle/python/dataflow/new/internal/DataFlowImplConsistency.qll
@@ -244,4 +244,20 @@ module Consistency {
     not callable = viableCallable(call) and
     not any(ConsistencyConfiguration c).viableImplInCallContextTooLargeExclude(call, ctx, callable)
   }
+
+  query predicate uniqueParameterNodeAtPosition(
+    DataFlowCallable c, ParameterPosition pos, Node p, string msg
+  ) {
+    isParameterNode(p, c, pos) and
+    not exists(unique(Node p0 | isParameterNode(p0, c, pos))) and
+    msg = "Parameters with overlapping positions."
+  }
+
+  query predicate uniqueParameterNodePosition(
+    DataFlowCallable c, ParameterPosition pos, Node p, string msg
+  ) {
+    isParameterNode(p, c, pos) and
+    not exists(unique(ParameterPosition pos0 | isParameterNode(p, c, pos0))) and
+    msg = "Parameter node with multiple positions."
+  }
 }
diff --git a/swift/ql/lib/codeql/swift/dataflow/internal/DataFlowImplConsistency.qll b/swift/ql/lib/codeql/swift/dataflow/internal/DataFlowImplConsistency.qll
index f681e90aa21..3eacc21f356 100644
--- a/swift/ql/lib/codeql/swift/dataflow/internal/DataFlowImplConsistency.qll
+++ b/swift/ql/lib/codeql/swift/dataflow/internal/DataFlowImplConsistency.qll
@@ -244,4 +244,20 @@ module Consistency {
     not callable = viableCallable(call) and
     not any(ConsistencyConfiguration c).viableImplInCallContextTooLargeExclude(call, ctx, callable)
   }
+
+  query predicate uniqueParameterNodeAtPosition(
+    DataFlowCallable c, ParameterPosition pos, Node p, string msg
+  ) {
+    isParameterNode(p, c, pos) and
+    not exists(unique(Node p0 | isParameterNode(p0, c, pos))) and
+    msg = "Parameters with overlapping positions."
+  }
+
+  query predicate uniqueParameterNodePosition(
+    DataFlowCallable c, ParameterPosition pos, Node p, string msg
+  ) {
+    isParameterNode(p, c, pos) and
+    not exists(unique(ParameterPosition pos0 | isParameterNode(p, c, pos0))) and
+    msg = "Parameter node with multiple positions."
+  }
 }

From f31a7cf921c3a0a1dbff94a60346ff7cb24ad21c Mon Sep 17 00:00:00 2001
From: Nick Rolfe <nickrolfe@github.com>
Date: Mon, 5 Dec 2022 12:32:47 +0000
Subject: [PATCH 1019/1420] Apply suggestions from code review

Co-authored-by: James Fletcher <42464962+jf205@users.noreply.github.com>
---
 .../defining-the-results-of-a-query.rst                   | 8 ++++----
 1 file changed, 4 insertions(+), 4 deletions(-)

diff --git a/docs/codeql/writing-codeql-queries/defining-the-results-of-a-query.rst b/docs/codeql/writing-codeql-queries/defining-the-results-of-a-query.rst
index 90304636fae..9e49f464835 100644
--- a/docs/codeql/writing-codeql-queries/defining-the-results-of-a-query.rst
+++ b/docs/codeql/writing-codeql-queries/defining-the-results-of-a-query.rst
@@ -10,7 +10,7 @@ About query results
 
 The information contained in the results of a query is controlled by the ``select`` statement. Part of the process of developing a useful query is to make the results clear and easy for other users to understand.
 When you write your own queries in the query console or in the CodeQL :ref:`extension for VS Code <codeql-for-visual-studio-code>` there are no constraints on what can be selected.
-However, if you want to use a query to create alerts for Code Scanning or generate valid analysis results using the :ref:`CodeQL CLI <codeql-cli>`, you'll need to make the ``select`` statement report results in the required format. 
+However, if you want to use a query to create alerts for code scanning or generate valid analysis results using the :ref:`CodeQL CLI <codeql-cli>`, you'll need to make the ``select`` statement report results in the required format. 
 You must also ensure that the query has the appropriate metadata properties defined. 
 This topic explains how to write your select statement to generate helpful analysis results. 
 
@@ -63,7 +63,7 @@ This basic select statement has two columns:
 Including the name of the superclass
 ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 
-The alert message defined by the basic select statement is constant and doesn't give users much information. Since the query identifies the superclas, it's easy to include its name in the string message. For example:
+The alert message defined by the basic select statement is constant and doesn't give users much information. Since the query identifies the superclass, it's easy to include its name in the string message. For example:
 
 .. code-block:: ql
 
@@ -81,7 +81,7 @@ While this is more informative than the original select statement, the user stil
 Adding a link to the superclass
 ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 
-You can use placeholders in the text of alert messages to insert additional information, such as links to the similar file. Placeholders are defined using ``$@``, and filled using the information in the next two columns of the select statement. For example, this select statement returns four columns:
+You can use placeholders in the text of alert messages to insert additional information, such as links to the superclass. Placeholders are defined using ``$@``, and filled using the information in the next two columns of the select statement. For example, this select statement returns four columns:
 
 .. code-block:: ql
 
@@ -92,7 +92,7 @@ You can use placeholders in the text of alert messages to insert additional info
 #. Element for placeholder: the ``superclass``.
 #. String text for placeholder: the class name returned by ``superclass.getBaseName()``.
 
-When the alert message is displayed, the ``$@`` placeholder is replaced by a link created from the contents of the third and fourth columns defined by the ``select`` statement. In this example, the link target will be the location of the superclass's definition, and the link text will be its name. Note that some superclasses, such as `Object``, will not be in the database, since they are built in to the Java language. Clicking those links will have no effect.
+When the alert message is displayed, the ``$@`` placeholder is replaced by a link created from the contents of the third and fourth columns defined by the ``select`` statement. In this example, the link target will be the location of the superclass's definition, and the link text will be its name. Note that some superclasses, such as ``Object``, will not be in the database, since they are built in to the Java language. Clicking those links will have no effect.
 
 If you use the ``$@`` placeholder marker multiple times in the description text, then the ``N``\ th use is replaced by a link formed from columns ``2N+2`` and ``2N+3``. If there are more pairs of additional columns than there are placeholder markers, then the trailing columns are ignored. Conversely, if there are fewer pairs of additional columns than there are placeholder markers, then the trailing markers are treated as normal text rather than placeholder markers.
 

From 8422df1c433b97f5acb40d794c2a21c373dc3e44 Mon Sep 17 00:00:00 2001
From: Tony Torralba <atorralba@users.noreply.github.com>
Date: Mon, 5 Dec 2022 13:21:38 +0100
Subject: [PATCH 1020/1420] Add change note

---
 .../change-notes/2022-12-05-insecure-cookie-global-flow.md    | 4 ++++
 1 file changed, 4 insertions(+)
 create mode 100644 java/ql/lib/change-notes/2022-12-05-insecure-cookie-global-flow.md

diff --git a/java/ql/lib/change-notes/2022-12-05-insecure-cookie-global-flow.md b/java/ql/lib/change-notes/2022-12-05-insecure-cookie-global-flow.md
new file mode 100644
index 00000000000..3eb33b8624e
--- /dev/null
+++ b/java/ql/lib/change-notes/2022-12-05-insecure-cookie-global-flow.md
@@ -0,0 +1,4 @@
+---
+category: minorAnalysis
+---
+* The query `java/insecure-cookie` now uses global dataflow to track secure cookies being set to the HTTP response object.

From 19db8e5d82a83feed9215c3ac0db26e388829486 Mon Sep 17 00:00:00 2001
From: Michael Nebel <michaelnebel@github.com>
Date: Mon, 5 Dec 2022 14:07:16 +0100
Subject: [PATCH 1021/1420] Java: Address review comments and also delete
 comment about type based summaries only being for C#.

---
 misc/scripts/models-as-data/generate_flow_model.py | 10 +++++-----
 1 file changed, 5 insertions(+), 5 deletions(-)

diff --git a/misc/scripts/models-as-data/generate_flow_model.py b/misc/scripts/models-as-data/generate_flow_model.py
index 5367f87b1f6..cc99e627383 100644
--- a/misc/scripts/models-as-data/generate_flow_model.py
+++ b/misc/scripts/models-as-data/generate_flow_model.py
@@ -38,7 +38,7 @@ class Generator:
 
     def printHelp(self):
         print(f"""Usage:
-python3 GenerateFlowModelExtensions.py <library-database> <outputYml> [<friendlyFrameworkName>] [--with-sinks] [--with-sources] [--with-summaries] [--with-typebased-summaries] [--dry-run]
+python3 GenerateFlowModel.py <library-database> <outputYml> [<friendlyFrameworkName>] [--with-sinks] [--with-sources] [--with-summaries] [--with-typebased-summaries] [--dry-run]
 
 This generates summary, source and sink models for the code in the database.
 The files will be placed in `{self.language}/ql/lib/ext/generated/<outputYml>.model.yml` where
@@ -50,15 +50,15 @@ Which models are generated is controlled by the flags:
     --with-sources
     --with-summaries
     --with-negative-summaries
-    --with-typebased-summaries (Experimental - only for C#)
+    --with-typebased-summaries (Experimental)
 If none of these flags are specified, all models are generated except for the type based models.
 
     --dry-run: Only run the queries, but don't write to file.
 
 Example invocations:
-$ python3 GenerateFlowModelExtensions.py /tmp/dbs/my_library_db mylibrary
-$ python3 GenerateFlowModelExtensions.py /tmp/dbs/my_library_db mylibrary "Friendly Name of Framework"
-$ python3 GenerateFlowModelExtensions.py /tmp/dbs/my_library_db --with-sinks
+$ python3 GenerateFlowModel.py /tmp/dbs/my_library_db mylibrary
+$ python3 GenerateFlowModel.py /tmp/dbs/my_library_db mylibrary "Friendly Name of Framework"
+$ python3 GenerateFlowModel.py /tmp/dbs/my_library_db --with-sinks
 
 Requirements: `codeql` should both appear on your path.
     """)

From 8f701cf1cb4ada65a5e73ded41391551b9f979c3 Mon Sep 17 00:00:00 2001
From: Tom Hvitved <hvitved@github.com>
Date: Mon, 5 Dec 2022 14:33:06 +0100
Subject: [PATCH 1022/1420] Python: Update expected test output

---
 .../experimental/dataflow/basic/dataflow-consistency.expected   | 2 ++
 .../experimental/dataflow/calls/dataflow-consistency.expected   | 2 ++
 .../dataflow/consistency/dataflow-consistency.expected          | 2 ++
 .../dataflow/coverage/dataflow-consistency.expected             | 2 ++
 .../dataflow/fieldflow/dataflow-consistency.expected            | 2 ++
 .../dataflow/global-flow/dataflow-consistency.expected          | 2 ++
 .../experimental/dataflow/match/dataflow-consistency.expected   | 2 ++
 .../experimental/dataflow/pep_328/dataflow-consistency.expected | 2 ++
 .../dataflow/regression/dataflow-consistency.expected           | 2 ++
 .../dataflow/strange-essaflow/dataflow-consistency.expected     | 2 ++
 .../dataflow/tainttracking/basic/dataflow-consistency.expected  | 2 ++
 .../tainttracking/commonSanitizer/dataflow-consistency.expected | 2 ++
 .../tainttracking/customSanitizer/dataflow-consistency.expected | 2 ++
 .../dataflow-consistency.expected                               | 2 ++
 .../defaultAdditionalTaintStep/dataflow-consistency.expected    | 2 ++
 .../unwanted-global-flow/dataflow-consistency.expected          | 2 ++
 .../dataflow/typetracking/dataflow-consistency.expected         | 2 ++
 .../dataflow/variable-capture/dataflow-consistency.expected     | 2 ++
 .../library-tests/ApiGraphs/py3/dataflow-consistency.expected   | 2 ++
 .../frameworks/django-orm/dataflow-consistency.expected         | 2 ++
 20 files changed, 40 insertions(+)

diff --git a/python/ql/test/experimental/dataflow/basic/dataflow-consistency.expected b/python/ql/test/experimental/dataflow/basic/dataflow-consistency.expected
index 8f4dbd04742..686ddfdb83d 100644
--- a/python/ql/test/experimental/dataflow/basic/dataflow-consistency.expected
+++ b/python/ql/test/experimental/dataflow/basic/dataflow-consistency.expected
@@ -19,3 +19,5 @@ reverseRead
 argHasPostUpdate
 postWithInFlow
 viableImplInCallContextTooLarge
+uniqueParameterNodeAtPosition
+uniqueParameterNodePosition
diff --git a/python/ql/test/experimental/dataflow/calls/dataflow-consistency.expected b/python/ql/test/experimental/dataflow/calls/dataflow-consistency.expected
index 8f4dbd04742..686ddfdb83d 100644
--- a/python/ql/test/experimental/dataflow/calls/dataflow-consistency.expected
+++ b/python/ql/test/experimental/dataflow/calls/dataflow-consistency.expected
@@ -19,3 +19,5 @@ reverseRead
 argHasPostUpdate
 postWithInFlow
 viableImplInCallContextTooLarge
+uniqueParameterNodeAtPosition
+uniqueParameterNodePosition
diff --git a/python/ql/test/experimental/dataflow/consistency/dataflow-consistency.expected b/python/ql/test/experimental/dataflow/consistency/dataflow-consistency.expected
index 8f4dbd04742..686ddfdb83d 100644
--- a/python/ql/test/experimental/dataflow/consistency/dataflow-consistency.expected
+++ b/python/ql/test/experimental/dataflow/consistency/dataflow-consistency.expected
@@ -19,3 +19,5 @@ reverseRead
 argHasPostUpdate
 postWithInFlow
 viableImplInCallContextTooLarge
+uniqueParameterNodeAtPosition
+uniqueParameterNodePosition
diff --git a/python/ql/test/experimental/dataflow/coverage/dataflow-consistency.expected b/python/ql/test/experimental/dataflow/coverage/dataflow-consistency.expected
index 8f4dbd04742..686ddfdb83d 100644
--- a/python/ql/test/experimental/dataflow/coverage/dataflow-consistency.expected
+++ b/python/ql/test/experimental/dataflow/coverage/dataflow-consistency.expected
@@ -19,3 +19,5 @@ reverseRead
 argHasPostUpdate
 postWithInFlow
 viableImplInCallContextTooLarge
+uniqueParameterNodeAtPosition
+uniqueParameterNodePosition
diff --git a/python/ql/test/experimental/dataflow/fieldflow/dataflow-consistency.expected b/python/ql/test/experimental/dataflow/fieldflow/dataflow-consistency.expected
index 8f4dbd04742..686ddfdb83d 100644
--- a/python/ql/test/experimental/dataflow/fieldflow/dataflow-consistency.expected
+++ b/python/ql/test/experimental/dataflow/fieldflow/dataflow-consistency.expected
@@ -19,3 +19,5 @@ reverseRead
 argHasPostUpdate
 postWithInFlow
 viableImplInCallContextTooLarge
+uniqueParameterNodeAtPosition
+uniqueParameterNodePosition
diff --git a/python/ql/test/experimental/dataflow/global-flow/dataflow-consistency.expected b/python/ql/test/experimental/dataflow/global-flow/dataflow-consistency.expected
index 8f4dbd04742..686ddfdb83d 100644
--- a/python/ql/test/experimental/dataflow/global-flow/dataflow-consistency.expected
+++ b/python/ql/test/experimental/dataflow/global-flow/dataflow-consistency.expected
@@ -19,3 +19,5 @@ reverseRead
 argHasPostUpdate
 postWithInFlow
 viableImplInCallContextTooLarge
+uniqueParameterNodeAtPosition
+uniqueParameterNodePosition
diff --git a/python/ql/test/experimental/dataflow/match/dataflow-consistency.expected b/python/ql/test/experimental/dataflow/match/dataflow-consistency.expected
index 8f4dbd04742..686ddfdb83d 100644
--- a/python/ql/test/experimental/dataflow/match/dataflow-consistency.expected
+++ b/python/ql/test/experimental/dataflow/match/dataflow-consistency.expected
@@ -19,3 +19,5 @@ reverseRead
 argHasPostUpdate
 postWithInFlow
 viableImplInCallContextTooLarge
+uniqueParameterNodeAtPosition
+uniqueParameterNodePosition
diff --git a/python/ql/test/experimental/dataflow/pep_328/dataflow-consistency.expected b/python/ql/test/experimental/dataflow/pep_328/dataflow-consistency.expected
index 8f4dbd04742..686ddfdb83d 100644
--- a/python/ql/test/experimental/dataflow/pep_328/dataflow-consistency.expected
+++ b/python/ql/test/experimental/dataflow/pep_328/dataflow-consistency.expected
@@ -19,3 +19,5 @@ reverseRead
 argHasPostUpdate
 postWithInFlow
 viableImplInCallContextTooLarge
+uniqueParameterNodeAtPosition
+uniqueParameterNodePosition
diff --git a/python/ql/test/experimental/dataflow/regression/dataflow-consistency.expected b/python/ql/test/experimental/dataflow/regression/dataflow-consistency.expected
index 8f4dbd04742..686ddfdb83d 100644
--- a/python/ql/test/experimental/dataflow/regression/dataflow-consistency.expected
+++ b/python/ql/test/experimental/dataflow/regression/dataflow-consistency.expected
@@ -19,3 +19,5 @@ reverseRead
 argHasPostUpdate
 postWithInFlow
 viableImplInCallContextTooLarge
+uniqueParameterNodeAtPosition
+uniqueParameterNodePosition
diff --git a/python/ql/test/experimental/dataflow/strange-essaflow/dataflow-consistency.expected b/python/ql/test/experimental/dataflow/strange-essaflow/dataflow-consistency.expected
index 8f4dbd04742..686ddfdb83d 100644
--- a/python/ql/test/experimental/dataflow/strange-essaflow/dataflow-consistency.expected
+++ b/python/ql/test/experimental/dataflow/strange-essaflow/dataflow-consistency.expected
@@ -19,3 +19,5 @@ reverseRead
 argHasPostUpdate
 postWithInFlow
 viableImplInCallContextTooLarge
+uniqueParameterNodeAtPosition
+uniqueParameterNodePosition
diff --git a/python/ql/test/experimental/dataflow/tainttracking/basic/dataflow-consistency.expected b/python/ql/test/experimental/dataflow/tainttracking/basic/dataflow-consistency.expected
index 8f4dbd04742..686ddfdb83d 100644
--- a/python/ql/test/experimental/dataflow/tainttracking/basic/dataflow-consistency.expected
+++ b/python/ql/test/experimental/dataflow/tainttracking/basic/dataflow-consistency.expected
@@ -19,3 +19,5 @@ reverseRead
 argHasPostUpdate
 postWithInFlow
 viableImplInCallContextTooLarge
+uniqueParameterNodeAtPosition
+uniqueParameterNodePosition
diff --git a/python/ql/test/experimental/dataflow/tainttracking/commonSanitizer/dataflow-consistency.expected b/python/ql/test/experimental/dataflow/tainttracking/commonSanitizer/dataflow-consistency.expected
index 8f4dbd04742..686ddfdb83d 100644
--- a/python/ql/test/experimental/dataflow/tainttracking/commonSanitizer/dataflow-consistency.expected
+++ b/python/ql/test/experimental/dataflow/tainttracking/commonSanitizer/dataflow-consistency.expected
@@ -19,3 +19,5 @@ reverseRead
 argHasPostUpdate
 postWithInFlow
 viableImplInCallContextTooLarge
+uniqueParameterNodeAtPosition
+uniqueParameterNodePosition
diff --git a/python/ql/test/experimental/dataflow/tainttracking/customSanitizer/dataflow-consistency.expected b/python/ql/test/experimental/dataflow/tainttracking/customSanitizer/dataflow-consistency.expected
index 8f4dbd04742..686ddfdb83d 100644
--- a/python/ql/test/experimental/dataflow/tainttracking/customSanitizer/dataflow-consistency.expected
+++ b/python/ql/test/experimental/dataflow/tainttracking/customSanitizer/dataflow-consistency.expected
@@ -19,3 +19,5 @@ reverseRead
 argHasPostUpdate
 postWithInFlow
 viableImplInCallContextTooLarge
+uniqueParameterNodeAtPosition
+uniqueParameterNodePosition
diff --git a/python/ql/test/experimental/dataflow/tainttracking/defaultAdditionalTaintStep-py3/dataflow-consistency.expected b/python/ql/test/experimental/dataflow/tainttracking/defaultAdditionalTaintStep-py3/dataflow-consistency.expected
index 8f4dbd04742..686ddfdb83d 100644
--- a/python/ql/test/experimental/dataflow/tainttracking/defaultAdditionalTaintStep-py3/dataflow-consistency.expected
+++ b/python/ql/test/experimental/dataflow/tainttracking/defaultAdditionalTaintStep-py3/dataflow-consistency.expected
@@ -19,3 +19,5 @@ reverseRead
 argHasPostUpdate
 postWithInFlow
 viableImplInCallContextTooLarge
+uniqueParameterNodeAtPosition
+uniqueParameterNodePosition
diff --git a/python/ql/test/experimental/dataflow/tainttracking/defaultAdditionalTaintStep/dataflow-consistency.expected b/python/ql/test/experimental/dataflow/tainttracking/defaultAdditionalTaintStep/dataflow-consistency.expected
index 8f4dbd04742..686ddfdb83d 100644
--- a/python/ql/test/experimental/dataflow/tainttracking/defaultAdditionalTaintStep/dataflow-consistency.expected
+++ b/python/ql/test/experimental/dataflow/tainttracking/defaultAdditionalTaintStep/dataflow-consistency.expected
@@ -19,3 +19,5 @@ reverseRead
 argHasPostUpdate
 postWithInFlow
 viableImplInCallContextTooLarge
+uniqueParameterNodeAtPosition
+uniqueParameterNodePosition
diff --git a/python/ql/test/experimental/dataflow/tainttracking/unwanted-global-flow/dataflow-consistency.expected b/python/ql/test/experimental/dataflow/tainttracking/unwanted-global-flow/dataflow-consistency.expected
index 8f4dbd04742..686ddfdb83d 100644
--- a/python/ql/test/experimental/dataflow/tainttracking/unwanted-global-flow/dataflow-consistency.expected
+++ b/python/ql/test/experimental/dataflow/tainttracking/unwanted-global-flow/dataflow-consistency.expected
@@ -19,3 +19,5 @@ reverseRead
 argHasPostUpdate
 postWithInFlow
 viableImplInCallContextTooLarge
+uniqueParameterNodeAtPosition
+uniqueParameterNodePosition
diff --git a/python/ql/test/experimental/dataflow/typetracking/dataflow-consistency.expected b/python/ql/test/experimental/dataflow/typetracking/dataflow-consistency.expected
index 8f4dbd04742..686ddfdb83d 100644
--- a/python/ql/test/experimental/dataflow/typetracking/dataflow-consistency.expected
+++ b/python/ql/test/experimental/dataflow/typetracking/dataflow-consistency.expected
@@ -19,3 +19,5 @@ reverseRead
 argHasPostUpdate
 postWithInFlow
 viableImplInCallContextTooLarge
+uniqueParameterNodeAtPosition
+uniqueParameterNodePosition
diff --git a/python/ql/test/experimental/dataflow/variable-capture/dataflow-consistency.expected b/python/ql/test/experimental/dataflow/variable-capture/dataflow-consistency.expected
index 8f4dbd04742..686ddfdb83d 100644
--- a/python/ql/test/experimental/dataflow/variable-capture/dataflow-consistency.expected
+++ b/python/ql/test/experimental/dataflow/variable-capture/dataflow-consistency.expected
@@ -19,3 +19,5 @@ reverseRead
 argHasPostUpdate
 postWithInFlow
 viableImplInCallContextTooLarge
+uniqueParameterNodeAtPosition
+uniqueParameterNodePosition
diff --git a/python/ql/test/library-tests/ApiGraphs/py3/dataflow-consistency.expected b/python/ql/test/library-tests/ApiGraphs/py3/dataflow-consistency.expected
index 8f4dbd04742..686ddfdb83d 100644
--- a/python/ql/test/library-tests/ApiGraphs/py3/dataflow-consistency.expected
+++ b/python/ql/test/library-tests/ApiGraphs/py3/dataflow-consistency.expected
@@ -19,3 +19,5 @@ reverseRead
 argHasPostUpdate
 postWithInFlow
 viableImplInCallContextTooLarge
+uniqueParameterNodeAtPosition
+uniqueParameterNodePosition
diff --git a/python/ql/test/library-tests/frameworks/django-orm/dataflow-consistency.expected b/python/ql/test/library-tests/frameworks/django-orm/dataflow-consistency.expected
index 06a8a168262..78188947e79 100644
--- a/python/ql/test/library-tests/frameworks/django-orm/dataflow-consistency.expected
+++ b/python/ql/test/library-tests/frameworks/django-orm/dataflow-consistency.expected
@@ -67,3 +67,5 @@ reverseRead
 argHasPostUpdate
 postWithInFlow
 viableImplInCallContextTooLarge
+uniqueParameterNodeAtPosition
+uniqueParameterNodePosition

From 17244734d03916a1373f6b91b536339fd2b3d19d Mon Sep 17 00:00:00 2001
From: Geoffrey White <40627776+geoffw0@users.noreply.github.com>
Date: Thu, 1 Dec 2022 14:06:57 +0000
Subject: [PATCH 1023/1420] Swift: Results repaired by merge.

---
 .../dataflow/flowsources/FlowSources.expected | 19 +++++++++++++++++++
 1 file changed, 19 insertions(+)

diff --git a/swift/ql/test/library-tests/dataflow/flowsources/FlowSources.expected b/swift/ql/test/library-tests/dataflow/flowsources/FlowSources.expected
index 1830ba152c9..8fab1fae006 100644
--- a/swift/ql/test/library-tests/dataflow/flowsources/FlowSources.expected
+++ b/swift/ql/test/library-tests/dataflow/flowsources/FlowSources.expected
@@ -1,9 +1,25 @@
+| alamofire.swift:91:27:91:27 | .result | external |
+| alamofire.swift:99:27:99:27 | .result | external |
+| alamofire.swift:342:23:342:32 | .data | external |
+| alamofire.swift:349:22:349:31 | .value | external |
+| alamofire.swift:356:23:356:32 | .value | external |
+| alamofire.swift:363:22:363:31 | .value | external |
+| alamofire.swift:370:23:370:32 | .value | external |
+| alamofire.swift:377:28:377:37 | .value | external |
 | alamofire.swift:387:28:387:28 | call to init(contentsOfFile:) | external |
 | alamofire.swift:387:28:387:55 | call to init(contentsOfFile:) | external |
+| alamofire.swift:394:22:394:31 | .value | external |
+| alamofire.swift:401:22:401:31 | .value | external |
 | alamofire.swift:402:28:402:28 | call to init(contentsOf:) | external |
 | alamofire.swift:402:28:402:50 | call to init(contentsOf:) | external |
+| alamofire.swift:409:23:409:32 | .value | external |
+| alamofire.swift:416:22:416:31 | .value | external |
+| alamofire.swift:423:23:423:32 | .value | external |
+| alamofire.swift:429:28:429:37 | .value | external |
 | alamofire.swift:446:20:446:20 | call to init(contentsOfFile:) | external |
 | alamofire.swift:446:20:446:49 | call to init(contentsOfFile:) | external |
+| alamofire.swift:453:23:453:32 | .data | external |
+| alamofire.swift:459:23:459:32 | .data | external |
 | customurlschemes.swift:30:44:30:54 | url | external |
 | customurlschemes.swift:34:52:34:68 | url | external |
 | customurlschemes.swift:38:52:38:62 | url | external |
@@ -11,6 +27,9 @@
 | customurlschemes.swift:48:9:48:28 | ...[...] | Remote URL in UIApplicationDelegate.application.launchOptions |
 | data.swift:18:20:18:20 | call to init(contentsOf:options:) | external |
 | data.swift:18:20:18:54 | call to init(contentsOf:options:) | external |
+| file://:0:0:0:0 | .data | external |
+| file://:0:0:0:0 | .result | external |
+| file://:0:0:0:0 | .result | external |
 | file://:0:0:0:0 | .source1 | external |
 | file://:0:0:0:0 | .source1 | external |
 | file://:0:0:0:0 | .source4 | external |

From 64fb98e46f33af539c8ee6c8c192f31fb2de4173 Mon Sep 17 00:00:00 2001
From: Geoffrey White <40627776+geoffw0@users.noreply.github.com>
Date: Fri, 2 Dec 2022 18:25:39 +0000
Subject: [PATCH 1024/1420] Swift: Rewrite bits to try and get rid of red
 highlighting.

---
 .../dataflow/flowsources/FlowSources.expected | 40 +++++++++----------
 .../dataflow/flowsources/alamofire.swift      | 26 ++++++------
 2 files changed, 34 insertions(+), 32 deletions(-)

diff --git a/swift/ql/test/library-tests/dataflow/flowsources/FlowSources.expected b/swift/ql/test/library-tests/dataflow/flowsources/FlowSources.expected
index 8fab1fae006..7bbbe10244d 100644
--- a/swift/ql/test/library-tests/dataflow/flowsources/FlowSources.expected
+++ b/swift/ql/test/library-tests/dataflow/flowsources/FlowSources.expected
@@ -1,25 +1,25 @@
 | alamofire.swift:91:27:91:27 | .result | external |
 | alamofire.swift:99:27:99:27 | .result | external |
-| alamofire.swift:342:23:342:32 | .data | external |
-| alamofire.swift:349:22:349:31 | .value | external |
-| alamofire.swift:356:23:356:32 | .value | external |
-| alamofire.swift:363:22:363:31 | .value | external |
-| alamofire.swift:370:23:370:32 | .value | external |
-| alamofire.swift:377:28:377:37 | .value | external |
-| alamofire.swift:387:28:387:28 | call to init(contentsOfFile:) | external |
-| alamofire.swift:387:28:387:55 | call to init(contentsOfFile:) | external |
-| alamofire.swift:394:22:394:31 | .value | external |
-| alamofire.swift:401:22:401:31 | .value | external |
-| alamofire.swift:402:28:402:28 | call to init(contentsOf:) | external |
-| alamofire.swift:402:28:402:50 | call to init(contentsOf:) | external |
-| alamofire.swift:409:23:409:32 | .value | external |
-| alamofire.swift:416:22:416:31 | .value | external |
-| alamofire.swift:423:23:423:32 | .value | external |
-| alamofire.swift:429:28:429:37 | .value | external |
-| alamofire.swift:446:20:446:20 | call to init(contentsOfFile:) | external |
-| alamofire.swift:446:20:446:49 | call to init(contentsOfFile:) | external |
-| alamofire.swift:453:23:453:32 | .data | external |
-| alamofire.swift:459:23:459:32 | .data | external |
+| alamofire.swift:344:23:344:32 | .data | external |
+| alamofire.swift:351:22:351:31 | .value | external |
+| alamofire.swift:358:23:358:32 | .value | external |
+| alamofire.swift:365:22:365:31 | .value | external |
+| alamofire.swift:372:23:372:32 | .value | external |
+| alamofire.swift:379:28:379:37 | .value | external |
+| alamofire.swift:389:28:389:28 | call to init(contentsOfFile:) | external |
+| alamofire.swift:389:28:389:55 | call to init(contentsOfFile:) | external |
+| alamofire.swift:396:22:396:31 | .value | external |
+| alamofire.swift:403:22:403:31 | .value | external |
+| alamofire.swift:404:28:404:28 | call to init(contentsOf:) | external |
+| alamofire.swift:404:28:404:50 | call to init(contentsOf:) | external |
+| alamofire.swift:411:23:411:32 | .value | external |
+| alamofire.swift:418:22:418:31 | .value | external |
+| alamofire.swift:425:23:425:32 | .value | external |
+| alamofire.swift:431:28:431:37 | .value | external |
+| alamofire.swift:448:20:448:20 | call to init(contentsOfFile:) | external |
+| alamofire.swift:448:20:448:49 | call to init(contentsOfFile:) | external |
+| alamofire.swift:455:23:455:32 | .data | external |
+| alamofire.swift:461:23:461:32 | .data | external |
 | customurlschemes.swift:30:44:30:54 | url | external |
 | customurlschemes.swift:34:52:34:68 | url | external |
 | customurlschemes.swift:38:52:38:62 | url | external |
diff --git a/swift/ql/test/library-tests/dataflow/flowsources/alamofire.swift b/swift/ql/test/library-tests/dataflow/flowsources/alamofire.swift
index 22613a70387..5fdfad51534 100644
--- a/swift/ql/test/library-tests/dataflow/flowsources/alamofire.swift
+++ b/swift/ql/test/library-tests/dataflow/flowsources/alamofire.swift
@@ -332,7 +332,9 @@ struct MyStreamSerializer: DataStreamSerializer {
 struct MyDecodable: Decodable {
 }
 
-func doSomething(_ p: Any) {}
+func doSomethingWith(_ param: Any) {
+    // ...
+}
 
 func testAlamofire() {
     // requests
@@ -469,11 +471,11 @@ func testAlamofire() {
         case let .stream(result):
             switch result {
             case let .success(data): // SOURCE [NOT DETECTED]
-                doSomething(data)
+                doSomethingWith(data)
                 // ...
             }
         case let .complete(completion):
-            doSomething(completion)
+            doSomethingWith(completion)
             // ...
         }
     }
@@ -484,11 +486,11 @@ func testAlamofire() {
         case let .stream(result):
             switch result {
             case let .success(value): // SOURCE [NOT DETECTED]
-                doSomething(value)
+                doSomethingWith(value)
                 // ...
             }
         case let .complete(completion):
-            doSomething(completion)
+            doSomethingWith(completion)
             // ...
         }
     }
@@ -499,11 +501,11 @@ func testAlamofire() {
         case let .stream(result):
             switch result {
             case let .success(value): // SOURCE [NOT DETECTED]
-                doSomething(value)
+                doSomethingWith(value)
                 // ...
             }
         case let .complete(completion):
-            doSomething(completion)
+            doSomethingWith(completion)
             // ...
         }
     }
@@ -514,11 +516,11 @@ func testAlamofire() {
         case let .stream(result):
             switch result {
             case let .success(value): // SOURCE [NOT DETECTED]
-                doSomething(value)
+                doSomethingWith(value)
                 // ...
             }
         case let .complete(completion):
-            doSomething(completion)
+            doSomethingWith(completion)
             // ...
         }
     }
@@ -529,7 +531,7 @@ func testAlamofire() {
         stream in
         if case let .stream(myResult) = stream.event {
             if case let .success(myData) = myResult { // SOURCE [NOT DETECTED]
-                doSomething(myData)
+                doSomethingWith(myData)
             }
         }
     }
@@ -537,7 +539,7 @@ func testAlamofire() {
     AF.streamRequest("http://example.com/").responseStream {
         stream in
         if case let .stream(myResult) = stream.event {
-           doSomething(myResult.success!) // SOURCE [NOT DETECTED]
+           doSomethingWith(myResult.success!) // SOURCE [NOT DETECTED]
         }
     }
 
@@ -546,6 +548,6 @@ func testAlamofire() {
     let myResult = Result<String, Error>.success("data")
 
     if case let .success(myString) = myResult {
-        doSomething(myString)
+        doSomethingWith(myString)
     }
 }

From fca249a62e859f040b8bd64d833c4ac5d4ad54f4 Mon Sep 17 00:00:00 2001
From: Michael Nebel <michaelnebel@github.com>
Date: Mon, 5 Dec 2022 14:44:52 +0100
Subject: [PATCH 1025/1420] Java: Address review comments.

---
 java/ql/lib/semmle/code/java/dataflow/FlowSources.qll | 1 -
 java/ql/lib/semmle/code/java/frameworks/Jdbc.qll      | 2 +-
 java/ql/lib/semmle/code/java/frameworks/Regex.qll     | 2 +-
 3 files changed, 2 insertions(+), 3 deletions(-)

diff --git a/java/ql/lib/semmle/code/java/dataflow/FlowSources.qll b/java/ql/lib/semmle/code/java/dataflow/FlowSources.qll
index 501f5f16ee7..ddd65fc1dea 100644
--- a/java/ql/lib/semmle/code/java/dataflow/FlowSources.qll
+++ b/java/ql/lib/semmle/code/java/dataflow/FlowSources.qll
@@ -41,7 +41,6 @@ abstract class RemoteFlowSource extends DataFlow::Node {
  */
 private module RemoteFlowSources {
   private import semmle.code.java.frameworks.android.Widget
-  private import semmle.code.java.security.TemplateInjection
 }
 
 private class ExternalRemoteFlowSource extends RemoteFlowSource {
diff --git a/java/ql/lib/semmle/code/java/frameworks/Jdbc.qll b/java/ql/lib/semmle/code/java/frameworks/Jdbc.qll
index b58099237c0..6807a976e77 100644
--- a/java/ql/lib/semmle/code/java/frameworks/Jdbc.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/Jdbc.qll
@@ -2,7 +2,7 @@
  * Provides classes and predicates for working with the Java JDBC API.
  */
 
-private import java
+import java
 
 /*--- Types ---*/
 /** The interface `java.sql.Connection`. */
diff --git a/java/ql/lib/semmle/code/java/frameworks/Regex.qll b/java/ql/lib/semmle/code/java/frameworks/Regex.qll
index 90213957f4a..780dec48b92 100644
--- a/java/ql/lib/semmle/code/java/frameworks/Regex.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/Regex.qll
@@ -1,6 +1,6 @@
 /** Definitions related to `java.util.regex`. */
 
-private import java
+import java
 
 /** The class `java.util.regex.Pattern`. */
 class TypeRegexPattern extends Class {

From 9eed12af23de4e5362809f3f819fa91801362aef Mon Sep 17 00:00:00 2001
From: Anders Schack-Mulligen <aschackmull@github.com>
Date: Mon, 5 Dec 2022 14:54:03 +0100
Subject: [PATCH 1026/1420] Shared: Initial commit with copy of Ruby
 TypeTracker.

---
 .../codeql/typetracking/TypeTracking.qll      | 628 ++++++++++++++++++
 1 file changed, 628 insertions(+)
 create mode 100644 shared/typetracking/codeql/typetracking/TypeTracking.qll

diff --git a/shared/typetracking/codeql/typetracking/TypeTracking.qll b/shared/typetracking/codeql/typetracking/TypeTracking.qll
new file mode 100644
index 00000000000..52807799c2c
--- /dev/null
+++ b/shared/typetracking/codeql/typetracking/TypeTracking.qll
@@ -0,0 +1,628 @@
+/** Step Summaries and Type Tracking */
+
+private import TypeTrackerSpecific
+
+cached
+private module Cached {
+  /**
+   * A description of a step on an inter-procedural data flow path.
+   */
+  cached
+  newtype TStepSummary =
+    LevelStep() or
+    CallStep() or
+    ReturnStep() or
+    StoreStep(TypeTrackerContent content) { basicStoreStep(_, _, content) } or
+    LoadStep(TypeTrackerContent content) { basicLoadStep(_, _, content) } or
+    LoadStoreStep(TypeTrackerContent load, TypeTrackerContent store) {
+      basicLoadStoreStep(_, _, load, store)
+    } or
+    WithContent(ContentFilter filter) { basicWithContentStep(_, _, filter) } or
+    WithoutContent(ContentFilter filter) { basicWithoutContentStep(_, _, filter) } or
+    JumpStep()
+
+  cached
+  newtype TTypeTracker =
+    MkTypeTracker(Boolean hasCall, OptionalTypeTrackerContent content) {
+      content = noContent()
+      or
+      // Restrict `content` to those that might eventually match a load.
+      // We can't rely on `basicStoreStep` since `startInContent` might be used with
+      // a content that has no corresponding store.
+      exists(TypeTrackerContent loadContents |
+        (
+          basicLoadStep(_, _, loadContents)
+          or
+          basicLoadStoreStep(_, _, loadContents, _)
+        ) and
+        compatibleContents(content, loadContents)
+      )
+    }
+
+  cached
+  newtype TTypeBackTracker =
+    MkTypeBackTracker(Boolean hasReturn, OptionalTypeTrackerContent content) {
+      content = noContent()
+      or
+      // As in MkTypeTracker, restrict `content` to those that might eventually match a store.
+      exists(TypeTrackerContent storeContent |
+        (
+          basicStoreStep(_, _, storeContent)
+          or
+          basicLoadStoreStep(_, _, _, storeContent)
+        ) and
+        compatibleContents(storeContent, content)
+      )
+    }
+
+  pragma[nomagic]
+  private TypeTracker noContentTypeTracker(boolean hasCall) {
+    result = MkTypeTracker(hasCall, noContent())
+  }
+
+  /** Gets the summary resulting from appending `step` to type-tracking summary `tt`. */
+  cached
+  TypeTracker append(TypeTracker tt, StepSummary step) {
+    exists(Boolean hasCall, OptionalTypeTrackerContent currentContents |
+      tt = MkTypeTracker(hasCall, currentContents)
+    |
+      step = LevelStep() and result = tt
+      or
+      step = CallStep() and result = MkTypeTracker(true, currentContents)
+      or
+      step = ReturnStep() and hasCall = false and result = tt
+      or
+      step = JumpStep() and
+      result = MkTypeTracker(false, currentContents)
+      or
+      exists(ContentFilter filter | result = tt |
+        step = WithContent(filter) and
+        currentContents = filter.getAMatchingContent()
+        or
+        step = WithoutContent(filter) and
+        not currentContents = filter.getAMatchingContent()
+      )
+    )
+    or
+    exists(TypeTrackerContent storeContents, boolean hasCall |
+      exists(TypeTrackerContent loadContents |
+        step = LoadStep(pragma[only_bind_into](loadContents)) and
+        tt = MkTypeTracker(hasCall, storeContents) and
+        compatibleContents(storeContents, loadContents) and
+        result = noContentTypeTracker(hasCall)
+      )
+      or
+      step = StoreStep(pragma[only_bind_into](storeContents)) and
+      tt = noContentTypeTracker(hasCall) and
+      result = MkTypeTracker(hasCall, storeContents)
+    )
+    or
+    exists(
+      TypeTrackerContent currentContent, TypeTrackerContent store, TypeTrackerContent load,
+      boolean hasCall
+    |
+      step = LoadStoreStep(pragma[only_bind_into](load), pragma[only_bind_into](store)) and
+      compatibleContents(pragma[only_bind_into](currentContent), load) and
+      tt = MkTypeTracker(pragma[only_bind_into](hasCall), currentContent) and
+      result = MkTypeTracker(pragma[only_bind_out](hasCall), store)
+    )
+  }
+
+  pragma[nomagic]
+  private TypeBackTracker noContentTypeBackTracker(boolean hasReturn) {
+    result = MkTypeBackTracker(hasReturn, noContent())
+  }
+
+  /** Gets the summary resulting from prepending `step` to this type-tracking summary. */
+  cached
+  TypeBackTracker prepend(TypeBackTracker tbt, StepSummary step) {
+    exists(Boolean hasReturn, OptionalTypeTrackerContent content |
+      tbt = MkTypeBackTracker(hasReturn, content)
+    |
+      step = LevelStep() and result = tbt
+      or
+      step = CallStep() and hasReturn = false and result = tbt
+      or
+      step = ReturnStep() and result = MkTypeBackTracker(true, content)
+      or
+      step = JumpStep() and
+      result = MkTypeBackTracker(false, content)
+      or
+      exists(ContentFilter filter | result = tbt |
+        step = WithContent(filter) and
+        content = filter.getAMatchingContent()
+        or
+        step = WithoutContent(filter) and
+        not content = filter.getAMatchingContent()
+      )
+    )
+    or
+    exists(TypeTrackerContent loadContents, boolean hasReturn |
+      exists(TypeTrackerContent storeContents |
+        step = StoreStep(pragma[only_bind_into](storeContents)) and
+        tbt = MkTypeBackTracker(hasReturn, loadContents) and
+        compatibleContents(storeContents, loadContents) and
+        result = noContentTypeBackTracker(hasReturn)
+      )
+      or
+      step = LoadStep(pragma[only_bind_into](loadContents)) and
+      tbt = noContentTypeBackTracker(hasReturn) and
+      result = MkTypeBackTracker(hasReturn, loadContents)
+    )
+    or
+    exists(
+      TypeTrackerContent currentContent, TypeTrackerContent store, TypeTrackerContent load,
+      boolean hasCall
+    |
+      step = LoadStoreStep(pragma[only_bind_into](load), pragma[only_bind_into](store)) and
+      compatibleContents(store, pragma[only_bind_into](currentContent)) and
+      tbt = MkTypeBackTracker(pragma[only_bind_into](hasCall), currentContent) and
+      result = MkTypeBackTracker(pragma[only_bind_out](hasCall), load)
+    )
+  }
+
+  /**
+   * Gets the summary that corresponds to having taken a forwards
+   * heap and/or intra-procedural step from `nodeFrom` to `nodeTo`.
+   *
+   * Steps contained in this predicate should _not_ depend on the call graph.
+   */
+  cached
+  predicate stepNoCall(TypeTrackingNode nodeFrom, TypeTrackingNode nodeTo, StepSummary summary) {
+    exists(Node mid | nodeFrom.flowsTo(mid) and smallstepNoCall(mid, nodeTo, summary))
+  }
+
+  /**
+   * Gets the summary that corresponds to having taken a forwards
+   * inter-procedural step from `nodeFrom` to `nodeTo`.
+   */
+  cached
+  predicate stepCall(TypeTrackingNode nodeFrom, TypeTrackingNode nodeTo, StepSummary summary) {
+    exists(Node mid | nodeFrom.flowsTo(mid) and smallstepCall(mid, nodeTo, summary))
+  }
+
+  cached
+  predicate smallstepNoCall(Node nodeFrom, TypeTrackingNode nodeTo, StepSummary summary) {
+    jumpStep(nodeFrom, nodeTo) and
+    summary = JumpStep()
+    or
+    levelStepNoCall(nodeFrom, nodeTo) and
+    summary = LevelStep()
+    or
+    exists(TypeTrackerContent content |
+      flowsToStoreStep(nodeFrom, nodeTo, content) and
+      summary = StoreStep(content)
+      or
+      basicLoadStep(nodeFrom, nodeTo, content) and summary = LoadStep(content)
+    )
+    or
+    exists(TypeTrackerContent loadContent, TypeTrackerContent storeContent |
+      flowsToLoadStoreStep(nodeFrom, nodeTo, loadContent, storeContent) and
+      summary = LoadStoreStep(loadContent, storeContent)
+    )
+    or
+    exists(ContentFilter filter |
+      basicWithContentStep(nodeFrom, nodeTo, filter) and
+      summary = WithContent(filter)
+      or
+      basicWithoutContentStep(nodeFrom, nodeTo, filter) and
+      summary = WithoutContent(filter)
+    )
+  }
+
+  cached
+  predicate smallstepCall(Node nodeFrom, TypeTrackingNode nodeTo, StepSummary summary) {
+    callStep(nodeFrom, nodeTo) and summary = CallStep()
+    or
+    returnStep(nodeFrom, nodeTo) and
+    summary = ReturnStep()
+    or
+    levelStepCall(nodeFrom, nodeTo) and
+    summary = LevelStep()
+  }
+}
+
+private import Cached
+
+/**
+ * Holds if `nodeFrom` is being written to the `content` of the object in `nodeTo`.
+ *
+ * Note that `nodeTo` will always be a local source node that flows to the place where the content
+ * is written in `basicStoreStep`. This may lead to the flow of information going "back in time"
+ * from the point of view of the execution of the program.
+ *
+ * For instance, if we interpret attribute writes in Python as writing to content with the same
+ * name as the attribute and consider the following snippet
+ *
+ * ```python
+ * def foo(y):
+ *    x = Foo()
+ *    bar(x)
+ *    x.attr = y
+ *    baz(x)
+ *
+ * def bar(x):
+ *    z = x.attr
+ * ```
+ * for the attribute write `x.attr = y`, we will have `content` being the literal string `"attr"`,
+ * `nodeFrom` will be `y`, and `nodeTo` will be the object `Foo()` created on the first line of the
+ * function. This means we will track the fact that `x.attr` can have the type of `y` into the
+ * assignment to `z` inside `bar`, even though this attribute write happens _after_ `bar` is called.
+ */
+private predicate flowsToStoreStep(
+  Node nodeFrom, TypeTrackingNode nodeTo, TypeTrackerContent content
+) {
+  exists(Node obj | nodeTo.flowsTo(obj) and basicStoreStep(nodeFrom, obj, content))
+}
+
+/**
+ * Holds if `loadContent` is loaded from `nodeFrom` and written to `storeContent` of `nodeTo`.
+ */
+private predicate flowsToLoadStoreStep(
+  Node nodeFrom, TypeTrackingNode nodeTo, TypeTrackerContent loadContent,
+  TypeTrackerContent storeContent
+) {
+  exists(Node obj |
+    nodeTo.flowsTo(obj) and basicLoadStoreStep(nodeFrom, obj, loadContent, storeContent)
+  )
+}
+
+/**
+ * INTERNAL: Use `TypeTracker` or `TypeBackTracker` instead.
+ *
+ * A description of a step on an inter-procedural data flow path.
+ */
+class StepSummary extends TStepSummary {
+  /** Gets a textual representation of this step summary. */
+  string toString() {
+    this instanceof LevelStep and result = "level"
+    or
+    this instanceof CallStep and result = "call"
+    or
+    this instanceof ReturnStep and result = "return"
+    or
+    exists(TypeTrackerContent content | this = StoreStep(content) | result = "store " + content)
+    or
+    exists(TypeTrackerContent content | this = LoadStep(content) | result = "load " + content)
+    or
+    exists(TypeTrackerContent load, TypeTrackerContent store |
+      this = LoadStoreStep(load, store) and
+      result = "load-store " + load + " -> " + store
+    )
+    or
+    this instanceof JumpStep and result = "jump"
+  }
+}
+
+/** Provides predicates for updating step summaries (`StepSummary`s). */
+module StepSummary {
+  /**
+   * Gets the summary that corresponds to having taken a forwards
+   * heap and/or inter-procedural step from `nodeFrom` to `nodeTo`.
+   *
+   * This predicate is inlined, which enables better join-orders when
+   * the call graph construction and type tracking are mutually recursive.
+   * In such cases, non-linear recursion involving `step` will be limited
+   * to non-linear recursion for the parts of `step` that involve the
+   * call graph.
+   */
+  pragma[inline]
+  predicate step(TypeTrackingNode nodeFrom, TypeTrackingNode nodeTo, StepSummary summary) {
+    stepNoCall(nodeFrom, nodeTo, summary)
+    or
+    stepCall(nodeFrom, nodeTo, summary)
+  }
+
+  /**
+   * Gets the summary that corresponds to having taken a forwards
+   * local, heap and/or inter-procedural step from `nodeFrom` to `nodeTo`.
+   *
+   * Unlike `StepSummary::step`, this predicate does not compress
+   * type-preserving steps.
+   */
+  pragma[inline]
+  predicate smallstep(Node nodeFrom, TypeTrackingNode nodeTo, StepSummary summary) {
+    smallstepNoCall(nodeFrom, nodeTo, summary)
+    or
+    smallstepCall(nodeFrom, nodeTo, summary)
+  }
+
+  deprecated predicate localSourceStoreStep = flowsToStoreStep/3;
+}
+
+/**
+ * A summary of the steps needed to track a value to a given dataflow node.
+ *
+ * This can be used to track objects that implement a certain API in order to
+ * recognize calls to that API. Note that type-tracking does not by itself provide a
+ * source/sink relation, that is, it may determine that a node has a given type,
+ * but it won't determine where that type came from.
+ *
+ * It is recommended that all uses of this type are written in the following form,
+ * for tracking some type `myType`:
+ * ```ql
+ * DataFlow::TypeTrackingNode myType(DataFlow::TypeTracker t) {
+ *   t.start() and
+ *   result = < source of myType >
+ *   or
+ *   exists (DataFlow::TypeTracker t2 |
+ *     result = myType(t2).track(t2, t)
+ *   )
+ * }
+ *
+ * DataFlow::Node myType() { myType(DataFlow::TypeTracker::end()).flowsTo(result) }
+ * ```
+ *
+ * Instead of `result = myType(t2).track(t2, t)`, you can also use the equivalent
+ * `t = t2.step(myType(t2), result)`. If you additionally want to track individual
+ * intra-procedural steps, use `t = t2.smallstep(myCallback(t2), result)`.
+ */
+class TypeTracker extends TTypeTracker {
+  Boolean hasCall;
+  OptionalTypeTrackerContent content;
+
+  TypeTracker() { this = MkTypeTracker(hasCall, content) }
+
+  /** Gets the summary resulting from appending `step` to this type-tracking summary. */
+  TypeTracker append(StepSummary step) { result = append(this, step) }
+
+  /** Gets a textual representation of this summary. */
+  string toString() {
+    exists(string withCall, string withContent |
+      (if hasCall = true then withCall = "with" else withCall = "without") and
+      (
+        if content != noContent()
+        then withContent = " with content " + content
+        else withContent = ""
+      ) and
+      result = "type tracker " + withCall + " call steps" + withContent
+    )
+  }
+
+  /**
+   * Holds if this is the starting point of type tracking.
+   */
+  predicate start() { hasCall = false and content = noContent() }
+
+  /**
+   * Holds if this is the starting point of type tracking, and the value starts in the content named `contentName`.
+   * The type tracking only ends after the content has been loaded.
+   */
+  predicate startInContent(TypeTrackerContent contentName) {
+    hasCall = false and content = contentName
+  }
+
+  /**
+   * Holds if this is the starting point of type tracking
+   * when tracking a parameter into a call, but not out of it.
+   */
+  predicate call() { hasCall = true and content = noContent() }
+
+  /**
+   * Holds if this is the end point of type tracking.
+   */
+  predicate end() { content = noContent() }
+
+  /**
+   * INTERNAL. DO NOT USE.
+   *
+   * Holds if this type has been tracked into a call.
+   */
+  boolean hasCall() { result = hasCall }
+
+  /**
+   * INTERNAL. DO NOT USE.
+   *
+   * Gets the content associated with this type tracker.
+   */
+  OptionalTypeTrackerContent getContent() { result = content }
+
+  /**
+   * Gets a type tracker that starts where this one has left off to allow continued
+   * tracking.
+   *
+   * This predicate is only defined if the type is not associated to a piece of content.
+   */
+  TypeTracker continue() { content = noContent() and result = this }
+
+  /**
+   * Gets the summary that corresponds to having taken a forwards
+   * heap and/or inter-procedural step from `nodeFrom` to `nodeTo`.
+   */
+  pragma[inline]
+  TypeTracker step(TypeTrackingNode nodeFrom, TypeTrackingNode nodeTo) {
+    exists(StepSummary summary |
+      StepSummary::step(nodeFrom, pragma[only_bind_out](nodeTo), pragma[only_bind_into](summary)) and
+      result = this.append(pragma[only_bind_into](summary))
+    )
+  }
+
+  /**
+   * Gets the summary that corresponds to having taken a forwards
+   * local, heap and/or inter-procedural step from `nodeFrom` to `nodeTo`.
+   *
+   * Unlike `TypeTracker::step`, this predicate exposes all edges
+   * in the flow graph, and not just the edges between `Node`s.
+   * It may therefore be less performant.
+   *
+   * Type tracking predicates using small steps typically take the following form:
+   * ```ql
+   * DataFlow::Node myType(DataFlow::TypeTracker t) {
+   *   t.start() and
+   *   result = < source of myType >
+   *   or
+   *   exists (DataFlow::TypeTracker t2 |
+   *     t = t2.smallstep(myType(t2), result)
+   *   )
+   * }
+   *
+   * DataFlow::Node myType() {
+   *   result = myType(DataFlow::TypeTracker::end())
+   * }
+   * ```
+   */
+  pragma[inline]
+  TypeTracker smallstep(Node nodeFrom, Node nodeTo) {
+    exists(StepSummary summary |
+      StepSummary::smallstep(nodeFrom, nodeTo, summary) and
+      result = this.append(summary)
+    )
+    or
+    simpleLocalFlowStep(nodeFrom, nodeTo) and
+    result = this
+  }
+}
+
+/** Provides predicates for implementing custom `TypeTracker`s. */
+module TypeTracker {
+  /**
+   * Gets a valid end point of type tracking.
+   */
+  TypeTracker end() { result.end() }
+}
+
+/**
+ * A summary of the steps needed to back-track a use of a value to a given dataflow node.
+ *
+ * This can for example be used to track callbacks that are passed to a certain API,
+ * so we can model specific parameters of that callback as having a certain type.
+ *
+ * Note that type back-tracking does not provide a source/sink relation, that is,
+ * it may determine that a node will be used in an API call somewhere, but it won't
+ * determine exactly where that use was, or the path that led to the use.
+ *
+ * It is recommended that all uses of this type are written in the following form,
+ * for back-tracking some callback type `myCallback`:
+ *
+ * ```ql
+ * DataFlow::TypeTrackingNode myCallback(DataFlow::TypeBackTracker t) {
+ *   t.start() and
+ *   result = (< some API call >).getArgument(< n >).getALocalSource()
+ *   or
+ *   exists (DataFlow::TypeBackTracker t2 |
+ *     result = myCallback(t2).backtrack(t2, t)
+ *   )
+ * }
+ *
+ * DataFlow::TypeTrackingNode myCallback() { result = myCallback(DataFlow::TypeBackTracker::end()) }
+ * ```
+ *
+ * Instead of `result = myCallback(t2).backtrack(t2, t)`, you can also use the equivalent
+ * `t2 = t.step(result, myCallback(t2))`. If you additionally want to track individual
+ * intra-procedural steps, use `t2 = t.smallstep(result, myCallback(t2))`.
+ */
+class TypeBackTracker extends TTypeBackTracker {
+  Boolean hasReturn;
+  OptionalTypeTrackerContent content;
+
+  TypeBackTracker() { this = MkTypeBackTracker(hasReturn, content) }
+
+  /** Gets the summary resulting from prepending `step` to this type-tracking summary. */
+  TypeBackTracker prepend(StepSummary step) { result = prepend(this, step) }
+
+  /** Gets a textual representation of this summary. */
+  string toString() {
+    exists(string withReturn, string withContent |
+      (if hasReturn = true then withReturn = "with" else withReturn = "without") and
+      (
+        if content != noContent()
+        then withContent = " with content " + content
+        else withContent = ""
+      ) and
+      result = "type back-tracker " + withReturn + " return steps" + withContent
+    )
+  }
+
+  /**
+   * Holds if this is the starting point of type tracking.
+   */
+  predicate start() { hasReturn = false and content = noContent() }
+
+  /**
+   * Holds if this is the end point of type tracking.
+   */
+  predicate end() { content = noContent() }
+
+  /**
+   * INTERNAL. DO NOT USE.
+   *
+   * Holds if this type has been back-tracked into a call through return edge.
+   */
+  boolean hasReturn() { result = hasReturn }
+
+  /**
+   * Gets a type tracker that starts where this one has left off to allow continued
+   * tracking.
+   *
+   * This predicate is only defined if the type has not been tracked into a piece of content.
+   */
+  TypeBackTracker continue() { content = noContent() and result = this }
+
+  /**
+   * Gets the summary that corresponds to having taken a backwards
+   * heap and/or inter-procedural step from `nodeTo` to `nodeFrom`.
+   */
+  pragma[inline]
+  TypeBackTracker step(TypeTrackingNode nodeFrom, TypeTrackingNode nodeTo) {
+    exists(StepSummary summary |
+      StepSummary::step(pragma[only_bind_out](nodeFrom), nodeTo, pragma[only_bind_into](summary)) and
+      this = result.prepend(pragma[only_bind_into](summary))
+    )
+  }
+
+  /**
+   * Gets the summary that corresponds to having taken a backwards
+   * local, heap and/or inter-procedural step from `nodeTo` to `nodeFrom`.
+   *
+   * Unlike `TypeBackTracker::step`, this predicate exposes all edges
+   * in the flowgraph, and not just the edges between
+   * `TypeTrackingNode`s. It may therefore be less performant.
+   *
+   * Type tracking predicates using small steps typically take the following form:
+   * ```ql
+   * DataFlow::Node myType(DataFlow::TypeBackTracker t) {
+   *   t.start() and
+   *   result = < some API call >.getArgument(< n >)
+   *   or
+   *   exists (DataFlow::TypeBackTracker t2 |
+   *     t = t2.smallstep(result, myType(t2))
+   *   )
+   * }
+   *
+   * DataFlow::Node myType() {
+   *   result = myType(DataFlow::TypeBackTracker::end())
+   * }
+   * ```
+   */
+  pragma[inline]
+  TypeBackTracker smallstep(Node nodeFrom, Node nodeTo) {
+    exists(StepSummary summary |
+      StepSummary::smallstep(nodeFrom, nodeTo, summary) and
+      this = result.prepend(summary)
+    )
+    or
+    simpleLocalFlowStep(nodeFrom, nodeTo) and
+    this = result
+  }
+
+  /**
+   * Gets a forwards summary that is compatible with this backwards summary.
+   * That is, if this summary describes the steps needed to back-track a value
+   * from `sink` to `mid`, and the result is a valid summary of the steps needed
+   * to track a value from `source` to `mid`, then the value from `source` may
+   * also flow to `sink`.
+   */
+  TypeTracker getACompatibleTypeTracker() {
+    exists(boolean hasCall | result = MkTypeTracker(hasCall, content) |
+      hasCall = false or this.hasReturn() = false
+    )
+  }
+}
+
+/** Provides predicates for implementing custom `TypeBackTracker`s. */
+module TypeBackTracker {
+  /**
+   * Gets a valid end point of type back-tracking.
+   */
+  TypeBackTracker end() { result.end() }
+}

From 27755d1551f23f60705491e874f2fce074ba7975 Mon Sep 17 00:00:00 2001
From: Anders Schack-Mulligen <aschackmull@github.com>
Date: Mon, 5 Dec 2022 14:56:11 +0100
Subject: [PATCH 1027/1420] Shared: Add a qlpack with a parameterized module
 defining type-trackers.

---
 .../2022-12-01-initial-version.md             |    4 +
 .../codeql/typetracking/TypeTracking.qll      | 1106 ++++++++++-------
 shared/typetracking/qlpack.yml                |    6 +
 3 files changed, 654 insertions(+), 462 deletions(-)
 create mode 100644 shared/typetracking/change-notes/2022-12-01-initial-version.md
 create mode 100644 shared/typetracking/qlpack.yml

diff --git a/shared/typetracking/change-notes/2022-12-01-initial-version.md b/shared/typetracking/change-notes/2022-12-01-initial-version.md
new file mode 100644
index 00000000000..3c6b40318a4
--- /dev/null
+++ b/shared/typetracking/change-notes/2022-12-01-initial-version.md
@@ -0,0 +1,4 @@
+---
+category: minorAnalysis
+---
+* Initial release. Includes a parameterized module implementing type-trackers.
diff --git a/shared/typetracking/codeql/typetracking/TypeTracking.qll b/shared/typetracking/codeql/typetracking/TypeTracking.qll
index 52807799c2c..f26415be122 100644
--- a/shared/typetracking/codeql/typetracking/TypeTracking.qll
+++ b/shared/typetracking/codeql/typetracking/TypeTracking.qll
@@ -1,69 +1,240 @@
-/** Step Summaries and Type Tracking */
+/**
+ * Provides classes and predicates for simple data-flow reachability suitable
+ * for tracking types.
+ */
 
-private import TypeTrackerSpecific
+import codeql.util.Boolean
+import codeql.util.Option
+
+signature module TypeTrackingInput {
+  /** A node that is used by the type-trackers. */
+  class Node {
+    string toString();
+  }
 
-cached
-private module Cached {
   /**
-   * A description of a step on an inter-procedural data flow path.
+   * A node that is the source of local flow. This defines the end-points of the
+   * big-step relation used by type-trackers once the transitive closure of
+   * `simpleLocalFlowStep` is prepended to the other steps.
    */
-  cached
-  newtype TStepSummary =
+  class LocalSourceNode extends Node;
+
+  /** A type of content to be used with the store and read steps. */
+  class Content {
+    string toString();
+  }
+
+  /**
+   * A label to use for `withContentStep` and `withoutContentStep` steps,
+   * restricting which `Content`s may pass through.
+   */
+  class ContentFilter {
+    /** Gets the content that matches this filter. */
+    Content getAMatchingContent();
+  }
+
+  /**
+   * Holds if a value stored with `storeContents` can be read back with
+   * `loadContents`.
+   */
+  predicate compatibleContents(Content storeContents, Content loadContents);
+
+  /**
+   * Holds if there is a simple local flow step from `nodeFrom` to `nodeTo`.
+   * A transitive closure of such steps is prepended to the non-simple
+   * type-tracking steps.
+   */
+  predicate simpleLocalSmallStep(Node nodeFrom, Node nodeTo);
+
+  /**
+   * Holds if there is a level step from `nodeFrom` to `nodeTo` that does not
+   * depend on the call graph.
+   */
+  predicate levelStepNoCall(Node nodeFrom, LocalSourceNode nodeTo);
+
+  /**
+   * Holds if there is a level step from `nodeFrom` to `nodeTo` that may depend
+   * on the call graph.
+   */
+  predicate levelStepCall(Node nodeFrom, LocalSourceNode nodeTo);
+
+  /**
+   * Holds if `nodeFrom` steps to `nodeTo` by being passed as a parameter in a
+   * call.
+   */
+  predicate callStep(Node nodeFrom, LocalSourceNode nodeTo);
+
+  /**
+   * Holds if `nodeFrom` steps to `nodeTo` by being returned from a call.
+   */
+  predicate returnStep(Node nodeFrom, LocalSourceNode nodeTo);
+
+  /**
+   * Holds if `nodeFrom` is being written to the content `f` of the object in
+   * `nodeTo`.
+   */
+  predicate storeStep(Node nodeFrom, Node nodeTo, Content f);
+
+  /**
+   * Holds if `nodeTo` is the result of accessing the content `f` of `nodeFrom`.
+   */
+  predicate loadStep(Node nodeFrom, LocalSourceNode nodeTo, Content f);
+
+  /**
+   * Holds if the content `f1` of `nodeFrom` is stored in the content `f2` of
+   * `nodeTo`.
+   */
+  predicate loadStoreStep(Node nodeFrom, Node nodeTo, Content f1, Content f2);
+
+  /**
+   * Holds if type-tracking should step from `nodeFrom` to `nodeTo` if inside a
+   * content matched by `filter`.
+   */
+  predicate withContentStep(Node nodeFrom, LocalSourceNode nodeTo, ContentFilter filter);
+
+  /**
+   * Holds if type-tracking should step from `nodeFrom` to `nodeTo` but block
+   * flow of contents matched by `filter`.
+   */
+  predicate withoutContentStep(Node nodeFrom, LocalSourceNode nodeTo, ContentFilter filter);
+
+  /**
+   * Holds if data can flow from `nodeFrom` to `nodeTo` in a way that discards
+   * call contexts.
+   */
+  predicate jumpStep(Node nodeFrom, LocalSourceNode nodeTo);
+
+  /**
+   * Holds if the target of store steps should be backtracked via
+   * `simpleLocalSmallStep` to a `LocalSourceNode`. If this flag is not set,
+   * then the targets of store steps are assumed to be `LocalSourceNode`s
+   * themselves.
+   */
+  predicate hasFeatureBacktrackStoreTarget();
+}
+
+module TypeTracking<TypeTrackingInput I> {
+  private import I
+
+  module ConsistencyChecks {
+    private predicate stepEntry(Node n, string kind) {
+      simpleLocalSmallStep(n, _) and kind = "simpleLocalSmallStep"
+      or
+      exists(StepSummary ss | smallStep(n, _, ss) and kind = ss.toString())
+      or
+      hasFeatureBacktrackStoreTarget() and
+      kind = "storeTarget" and
+      (storeStep(_, n, _) or loadStoreStep(_, n, _, _))
+    }
+
+    query predicate unreachableNode(string msg) {
+      exists(int k, string kind |
+        k = strictcount(Node n | stepEntry(n, kind) and not flowsTo(_, n)) and
+        msg = "There are " + k + " unreachable nodes in steps of kind " + kind + "."
+      )
+    }
+
+    query predicate nonSourceStoreTarget(string msg) {
+      not hasFeatureBacktrackStoreTarget() and
+      exists(int k |
+        k =
+          strictcount(Node n |
+            not n instanceof LocalSourceNode and
+            (storeStep(_, n, _) or loadStoreStep(_, n, _, _))
+          ) and
+        msg =
+          "There are " + k +
+            " store targets that are not local source nodes and backtracking store targets is not enabled."
+      )
+    }
+  }
+
+  private module ContentOption = Option<Content>;
+
+  private class ContentOption = ContentOption::Option;
+
+  private newtype TStepSummary =
     LevelStep() or
     CallStep() or
     ReturnStep() or
-    StoreStep(TypeTrackerContent content) { basicStoreStep(_, _, content) } or
-    LoadStep(TypeTrackerContent content) { basicLoadStep(_, _, content) } or
-    LoadStoreStep(TypeTrackerContent load, TypeTrackerContent store) {
-      basicLoadStoreStep(_, _, load, store)
-    } or
-    WithContent(ContentFilter filter) { basicWithContentStep(_, _, filter) } or
-    WithoutContent(ContentFilter filter) { basicWithoutContentStep(_, _, filter) } or
+    StoreStep(Content content) { storeStep(_, _, content) } or
+    LoadStep(Content content) { loadStep(_, _, content) } or
+    LoadStoreStep(Content load, Content store) { loadStoreStep(_, _, load, store) } or
+    WithContent(ContentFilter filter) { withContentStep(_, _, filter) } or
+    WithoutContent(ContentFilter filter) { withoutContentStep(_, _, filter) } or
     JumpStep()
 
-  cached
-  newtype TTypeTracker =
-    MkTypeTracker(Boolean hasCall, OptionalTypeTrackerContent content) {
-      content = noContent()
+  /**
+   * A description of a step on an inter-procedural data flow path.
+   */
+  private class StepSummary extends TStepSummary {
+    /** Gets a textual representation of this step summary. */
+    string toString() {
+      this instanceof LevelStep and result = "level"
+      or
+      this instanceof CallStep and result = "call"
+      or
+      this instanceof ReturnStep and result = "return"
+      or
+      exists(Content content | this = StoreStep(content) | result = "store " + content)
+      or
+      exists(Content content | this = LoadStep(content) | result = "load " + content)
+      or
+      exists(Content load, Content store |
+        this = LoadStoreStep(load, store) and
+        result = "load-store " + load + " -> " + store
+      )
+      or
+      this instanceof JumpStep and result = "jump"
+    }
+  }
+
+  private newtype TTypeTracker =
+    MkTypeTracker(Boolean hasCall, ContentOption content) {
+      content.isNone()
       or
       // Restrict `content` to those that might eventually match a load.
       // We can't rely on `basicStoreStep` since `startInContent` might be used with
       // a content that has no corresponding store.
-      exists(TypeTrackerContent loadContents |
+      exists(Content loadContents |
         (
-          basicLoadStep(_, _, loadContents)
+          loadStep(_, _, loadContents)
           or
-          basicLoadStoreStep(_, _, loadContents, _)
+          loadStoreStep(_, _, loadContents, _)
         ) and
-        compatibleContents(content, loadContents)
+        compatibleContents(content.asSome(), loadContents)
       )
     }
 
-  cached
-  newtype TTypeBackTracker =
-    MkTypeBackTracker(Boolean hasReturn, OptionalTypeTrackerContent content) {
-      content = noContent()
+  private newtype TTypeBackTracker =
+    MkTypeBackTracker(Boolean hasReturn, ContentOption content) {
+      content.isNone()
       or
       // As in MkTypeTracker, restrict `content` to those that might eventually match a store.
-      exists(TypeTrackerContent storeContent |
+      exists(Content storeContent |
         (
-          basicStoreStep(_, _, storeContent)
+          storeStep(_, _, storeContent)
           or
-          basicLoadStoreStep(_, _, _, storeContent)
+          loadStoreStep(_, _, _, storeContent)
         ) and
-        compatibleContents(storeContent, content)
+        compatibleContents(storeContent, content.asSome())
       )
     }
 
   pragma[nomagic]
   private TypeTracker noContentTypeTracker(boolean hasCall) {
-    result = MkTypeTracker(hasCall, noContent())
+    result = MkTypeTracker(hasCall, any(ContentOption::None c))
+  }
+
+  pragma[nomagic]
+  private TypeTracker contentTypeTracker(boolean hasCall, Content c) {
+    result = MkTypeTracker(hasCall, ContentOption::some(c))
   }
 
   /** Gets the summary resulting from appending `step` to type-tracking summary `tt`. */
-  cached
-  TypeTracker append(TypeTracker tt, StepSummary step) {
-    exists(Boolean hasCall, OptionalTypeTrackerContent currentContents |
+  pragma[nomagic]
+  private TypeTracker append(TypeTracker tt, StepSummary step) {
+    exists(Boolean hasCall, ContentOption currentContents |
       tt = MkTypeTracker(hasCall, currentContents)
     |
       step = LevelStep() and result = tt
@@ -77,48 +248,48 @@ private module Cached {
       or
       exists(ContentFilter filter | result = tt |
         step = WithContent(filter) and
-        currentContents = filter.getAMatchingContent()
+        currentContents.asSome() = filter.getAMatchingContent()
         or
         step = WithoutContent(filter) and
-        not currentContents = filter.getAMatchingContent()
+        not currentContents.asSome() = filter.getAMatchingContent()
       )
     )
     or
-    exists(TypeTrackerContent storeContents, boolean hasCall |
-      exists(TypeTrackerContent loadContents |
+    exists(Content storeContents, boolean hasCall |
+      exists(Content loadContents |
         step = LoadStep(pragma[only_bind_into](loadContents)) and
-        tt = MkTypeTracker(hasCall, storeContents) and
+        tt = contentTypeTracker(hasCall, storeContents) and
         compatibleContents(storeContents, loadContents) and
         result = noContentTypeTracker(hasCall)
       )
       or
       step = StoreStep(pragma[only_bind_into](storeContents)) and
       tt = noContentTypeTracker(hasCall) and
-      result = MkTypeTracker(hasCall, storeContents)
+      result = contentTypeTracker(hasCall, storeContents)
     )
     or
-    exists(
-      TypeTrackerContent currentContent, TypeTrackerContent store, TypeTrackerContent load,
-      boolean hasCall
-    |
+    exists(Content currentContent, Content store, Content load, boolean hasCall |
       step = LoadStoreStep(pragma[only_bind_into](load), pragma[only_bind_into](store)) and
       compatibleContents(pragma[only_bind_into](currentContent), load) and
-      tt = MkTypeTracker(pragma[only_bind_into](hasCall), currentContent) and
-      result = MkTypeTracker(pragma[only_bind_out](hasCall), store)
+      tt = contentTypeTracker(pragma[only_bind_into](hasCall), currentContent) and
+      result = contentTypeTracker(pragma[only_bind_out](hasCall), store)
     )
   }
 
   pragma[nomagic]
   private TypeBackTracker noContentTypeBackTracker(boolean hasReturn) {
-    result = MkTypeBackTracker(hasReturn, noContent())
+    result = MkTypeBackTracker(hasReturn, any(ContentOption::None c))
+  }
+
+  pragma[nomagic]
+  private TypeBackTracker contentTypeBackTracker(boolean hasReturn, Content c) {
+    result = MkTypeBackTracker(hasReturn, ContentOption::some(c))
   }
 
   /** Gets the summary resulting from prepending `step` to this type-tracking summary. */
-  cached
-  TypeBackTracker prepend(TypeBackTracker tbt, StepSummary step) {
-    exists(Boolean hasReturn, OptionalTypeTrackerContent content |
-      tbt = MkTypeBackTracker(hasReturn, content)
-    |
+  pragma[nomagic]
+  private TypeBackTracker prepend(TypeBackTracker tbt, StepSummary step) {
+    exists(Boolean hasReturn, ContentOption content | tbt = MkTypeBackTracker(hasReturn, content) |
       step = LevelStep() and result = tbt
       or
       step = CallStep() and hasReturn = false and result = tbt
@@ -130,499 +301,510 @@ private module Cached {
       or
       exists(ContentFilter filter | result = tbt |
         step = WithContent(filter) and
-        content = filter.getAMatchingContent()
+        content.asSome() = filter.getAMatchingContent()
         or
         step = WithoutContent(filter) and
-        not content = filter.getAMatchingContent()
+        not content.asSome() = filter.getAMatchingContent()
       )
     )
     or
-    exists(TypeTrackerContent loadContents, boolean hasReturn |
-      exists(TypeTrackerContent storeContents |
+    exists(Content loadContents, boolean hasReturn |
+      exists(Content storeContents |
         step = StoreStep(pragma[only_bind_into](storeContents)) and
-        tbt = MkTypeBackTracker(hasReturn, loadContents) and
+        tbt = contentTypeBackTracker(hasReturn, loadContents) and
         compatibleContents(storeContents, loadContents) and
         result = noContentTypeBackTracker(hasReturn)
       )
       or
       step = LoadStep(pragma[only_bind_into](loadContents)) and
       tbt = noContentTypeBackTracker(hasReturn) and
-      result = MkTypeBackTracker(hasReturn, loadContents)
+      result = contentTypeBackTracker(hasReturn, loadContents)
     )
     or
-    exists(
-      TypeTrackerContent currentContent, TypeTrackerContent store, TypeTrackerContent load,
-      boolean hasCall
-    |
+    exists(Content currentContent, Content store, Content load, boolean hasCall |
       step = LoadStoreStep(pragma[only_bind_into](load), pragma[only_bind_into](store)) and
       compatibleContents(store, pragma[only_bind_into](currentContent)) and
-      tbt = MkTypeBackTracker(pragma[only_bind_into](hasCall), currentContent) and
-      result = MkTypeBackTracker(pragma[only_bind_out](hasCall), load)
+      tbt = contentTypeBackTracker(pragma[only_bind_into](hasCall), currentContent) and
+      result = contentTypeBackTracker(pragma[only_bind_out](hasCall), load)
     )
   }
 
   /**
-   * Gets the summary that corresponds to having taken a forwards
-   * heap and/or intra-procedural step from `nodeFrom` to `nodeTo`.
-   *
-   * Steps contained in this predicate should _not_ depend on the call graph.
+   * Holds if there is flow from `localSource` to `dst` using zero or more
+   * `simpleLocalSmallStep`s.
    */
-  cached
-  predicate stepNoCall(TypeTrackingNode nodeFrom, TypeTrackingNode nodeTo, StepSummary summary) {
-    exists(Node mid | nodeFrom.flowsTo(mid) and smallstepNoCall(mid, nodeTo, summary))
+  pragma[nomagic]
+  predicate flowsTo(LocalSourceNode localSource, Node dst) {
+    dst = localSource
+    or
+    exists(Node mid |
+      flowsTo(localSource, mid) and
+      simpleLocalSmallStep(mid, dst)
+    )
   }
 
-  /**
-   * Gets the summary that corresponds to having taken a forwards
-   * inter-procedural step from `nodeFrom` to `nodeTo`.
-   */
-  cached
-  predicate stepCall(TypeTrackingNode nodeFrom, TypeTrackingNode nodeTo, StepSummary summary) {
-    exists(Node mid | nodeFrom.flowsTo(mid) and smallstepCall(mid, nodeTo, summary))
+  pragma[nomagic]
+  private predicate storeStepIntoSource(Node nodeFrom, Node nodeTo, Content f) {
+    if hasFeatureBacktrackStoreTarget()
+    then
+      exists(Node obj |
+        flowsTo(nodeTo, obj) and
+        storeStep(nodeFrom, obj, f)
+      )
+    else storeStep(nodeFrom, nodeTo, f)
   }
 
-  cached
-  predicate smallstepNoCall(Node nodeFrom, TypeTrackingNode nodeTo, StepSummary summary) {
-    jumpStep(nodeFrom, nodeTo) and
-    summary = JumpStep()
+  pragma[nomagic]
+  private predicate loadStoreStepIntoSource(Node nodeFrom, Node nodeTo, Content f1, Content f2) {
+    if hasFeatureBacktrackStoreTarget()
+    then
+      exists(Node obj |
+        flowsTo(nodeTo, obj) and
+        loadStoreStep(nodeFrom, obj, f1, f2)
+      )
+    else loadStoreStep(nodeFrom, nodeTo, f1, f2)
+  }
+
+  pragma[nomagic]
+  private predicate smallStepNoCall(Node nodeFrom, Node nodeTo, StepSummary summary) {
+    levelStepNoCall(nodeFrom, nodeTo) and summary = LevelStep()
     or
-    levelStepNoCall(nodeFrom, nodeTo) and
-    summary = LevelStep()
-    or
-    exists(TypeTrackerContent content |
-      flowsToStoreStep(nodeFrom, nodeTo, content) and
+    exists(Content content |
+      storeStepIntoSource(nodeFrom, nodeTo, content) and
       summary = StoreStep(content)
-      or
-      basicLoadStep(nodeFrom, nodeTo, content) and summary = LoadStep(content)
     )
     or
-    exists(TypeTrackerContent loadContent, TypeTrackerContent storeContent |
-      flowsToLoadStoreStep(nodeFrom, nodeTo, loadContent, storeContent) and
-      summary = LoadStoreStep(loadContent, storeContent)
+    exists(Content content |
+      loadStep(nodeFrom, nodeTo, content) and
+      summary = LoadStep(content)
+    )
+    or
+    exists(Content content1, Content content2 |
+      loadStoreStepIntoSource(nodeFrom, nodeTo, content1, content2) and
+      summary = LoadStoreStep(content1, content2)
     )
     or
     exists(ContentFilter filter |
-      basicWithContentStep(nodeFrom, nodeTo, filter) and
+      withContentStep(nodeFrom, nodeTo, filter) and
       summary = WithContent(filter)
-      or
-      basicWithoutContentStep(nodeFrom, nodeTo, filter) and
+    )
+    or
+    exists(ContentFilter filter |
+      withoutContentStep(nodeFrom, nodeTo, filter) and
       summary = WithoutContent(filter)
     )
+    or
+    jumpStep(nodeFrom, nodeTo) and summary = JumpStep()
   }
 
-  cached
-  predicate smallstepCall(Node nodeFrom, TypeTrackingNode nodeTo, StepSummary summary) {
+  pragma[nomagic]
+  private predicate smallStepCall(Node nodeFrom, Node nodeTo, StepSummary summary) {
+    levelStepCall(nodeFrom, nodeTo) and summary = LevelStep()
+    or
     callStep(nodeFrom, nodeTo) and summary = CallStep()
     or
-    returnStep(nodeFrom, nodeTo) and
-    summary = ReturnStep()
-    or
-    levelStepCall(nodeFrom, nodeTo) and
-    summary = LevelStep()
+    returnStep(nodeFrom, nodeTo) and summary = ReturnStep()
   }
-}
 
-private import Cached
-
-/**
- * Holds if `nodeFrom` is being written to the `content` of the object in `nodeTo`.
- *
- * Note that `nodeTo` will always be a local source node that flows to the place where the content
- * is written in `basicStoreStep`. This may lead to the flow of information going "back in time"
- * from the point of view of the execution of the program.
- *
- * For instance, if we interpret attribute writes in Python as writing to content with the same
- * name as the attribute and consider the following snippet
- *
- * ```python
- * def foo(y):
- *    x = Foo()
- *    bar(x)
- *    x.attr = y
- *    baz(x)
- *
- * def bar(x):
- *    z = x.attr
- * ```
- * for the attribute write `x.attr = y`, we will have `content` being the literal string `"attr"`,
- * `nodeFrom` will be `y`, and `nodeTo` will be the object `Foo()` created on the first line of the
- * function. This means we will track the fact that `x.attr` can have the type of `y` into the
- * assignment to `z` inside `bar`, even though this attribute write happens _after_ `bar` is called.
- */
-private predicate flowsToStoreStep(
-  Node nodeFrom, TypeTrackingNode nodeTo, TypeTrackerContent content
-) {
-  exists(Node obj | nodeTo.flowsTo(obj) and basicStoreStep(nodeFrom, obj, content))
-}
-
-/**
- * Holds if `loadContent` is loaded from `nodeFrom` and written to `storeContent` of `nodeTo`.
- */
-private predicate flowsToLoadStoreStep(
-  Node nodeFrom, TypeTrackingNode nodeTo, TypeTrackerContent loadContent,
-  TypeTrackerContent storeContent
-) {
-  exists(Node obj |
-    nodeTo.flowsTo(obj) and basicLoadStoreStep(nodeFrom, obj, loadContent, storeContent)
-  )
-}
-
-/**
- * INTERNAL: Use `TypeTracker` or `TypeBackTracker` instead.
- *
- * A description of a step on an inter-procedural data flow path.
- */
-class StepSummary extends TStepSummary {
-  /** Gets a textual representation of this step summary. */
-  string toString() {
-    this instanceof LevelStep and result = "level"
-    or
-    this instanceof CallStep and result = "call"
-    or
-    this instanceof ReturnStep and result = "return"
-    or
-    exists(TypeTrackerContent content | this = StoreStep(content) | result = "store " + content)
-    or
-    exists(TypeTrackerContent content | this = LoadStep(content) | result = "load " + content)
-    or
-    exists(TypeTrackerContent load, TypeTrackerContent store |
-      this = LoadStoreStep(load, store) and
-      result = "load-store " + load + " -> " + store
-    )
-    or
-    this instanceof JumpStep and result = "jump"
+  pragma[nomagic]
+  private predicate stepNoCall(Node nodeFrom, Node nodeTo, StepSummary summary) {
+    exists(Node mid | flowsTo(nodeFrom, mid) and smallStepNoCall(mid, nodeTo, summary))
+  }
+
+  pragma[nomagic]
+  private predicate stepCall(Node nodeFrom, Node nodeTo, StepSummary summary) {
+    exists(Node mid | flowsTo(nodeFrom, mid) and smallStepCall(mid, nodeTo, summary))
   }
-}
 
-/** Provides predicates for updating step summaries (`StepSummary`s). */
-module StepSummary {
-  /**
-   * Gets the summary that corresponds to having taken a forwards
-   * heap and/or inter-procedural step from `nodeFrom` to `nodeTo`.
-   *
-   * This predicate is inlined, which enables better join-orders when
-   * the call graph construction and type tracking are mutually recursive.
-   * In such cases, non-linear recursion involving `step` will be limited
-   * to non-linear recursion for the parts of `step` that involve the
-   * call graph.
-   */
   pragma[inline]
-  predicate step(TypeTrackingNode nodeFrom, TypeTrackingNode nodeTo, StepSummary summary) {
-    stepNoCall(nodeFrom, nodeTo, summary)
-    or
-    stepCall(nodeFrom, nodeTo, summary)
+  private predicate smallStepSplit(Node nodeFrom, Node nodeTo, StepSummary summary) {
+    smallStepCall(nodeFrom, nodeTo, summary) or smallStepNoCall(nodeFrom, nodeTo, summary)
   }
 
-  /**
-   * Gets the summary that corresponds to having taken a forwards
-   * local, heap and/or inter-procedural step from `nodeFrom` to `nodeTo`.
-   *
-   * Unlike `StepSummary::step`, this predicate does not compress
-   * type-preserving steps.
-   */
   pragma[inline]
-  predicate smallstep(Node nodeFrom, TypeTrackingNode nodeTo, StepSummary summary) {
-    smallstepNoCall(nodeFrom, nodeTo, summary)
-    or
-    smallstepCall(nodeFrom, nodeTo, summary)
+  private predicate stepSplit(Node nodeFrom, Node nodeTo, StepSummary summary) {
+    stepNoCall(nodeFrom, nodeTo, summary) or stepCall(nodeFrom, nodeTo, summary)
   }
 
-  deprecated predicate localSourceStoreStep = flowsToStoreStep/3;
-}
+  pragma[nomagic]
+  private predicate smallStep(Node nodeFrom, Node nodeTo, StepSummary summary) {
+    smallStepSplit(nodeFrom, nodeTo, summary)
+  }
 
-/**
- * A summary of the steps needed to track a value to a given dataflow node.
- *
- * This can be used to track objects that implement a certain API in order to
- * recognize calls to that API. Note that type-tracking does not by itself provide a
- * source/sink relation, that is, it may determine that a node has a given type,
- * but it won't determine where that type came from.
- *
- * It is recommended that all uses of this type are written in the following form,
- * for tracking some type `myType`:
- * ```ql
- * DataFlow::TypeTrackingNode myType(DataFlow::TypeTracker t) {
- *   t.start() and
- *   result = < source of myType >
- *   or
- *   exists (DataFlow::TypeTracker t2 |
- *     result = myType(t2).track(t2, t)
- *   )
- * }
- *
- * DataFlow::Node myType() { myType(DataFlow::TypeTracker::end()).flowsTo(result) }
- * ```
- *
- * Instead of `result = myType(t2).track(t2, t)`, you can also use the equivalent
- * `t = t2.step(myType(t2), result)`. If you additionally want to track individual
- * intra-procedural steps, use `t = t2.smallstep(myCallback(t2), result)`.
- */
-class TypeTracker extends TTypeTracker {
-  Boolean hasCall;
-  OptionalTypeTrackerContent content;
-
-  TypeTracker() { this = MkTypeTracker(hasCall, content) }
-
-  /** Gets the summary resulting from appending `step` to this type-tracking summary. */
-  TypeTracker append(StepSummary step) { result = append(this, step) }
-
-  /** Gets a textual representation of this summary. */
-  string toString() {
-    exists(string withCall, string withContent |
-      (if hasCall = true then withCall = "with" else withCall = "without") and
-      (
-        if content != noContent()
-        then withContent = " with content " + content
-        else withContent = ""
-      ) and
-      result = "type tracker " + withCall + " call steps" + withContent
-    )
+  pragma[nomagic]
+  private predicate step(Node nodeFrom, Node nodeTo, StepSummary summary) {
+    stepSplit(nodeFrom, nodeTo, summary)
   }
 
   /**
-   * Holds if this is the starting point of type tracking.
-   */
-  predicate start() { hasCall = false and content = noContent() }
-
-  /**
-   * Holds if this is the starting point of type tracking, and the value starts in the content named `contentName`.
-   * The type tracking only ends after the content has been loaded.
-   */
-  predicate startInContent(TypeTrackerContent contentName) {
-    hasCall = false and content = contentName
-  }
-
-  /**
-   * Holds if this is the starting point of type tracking
-   * when tracking a parameter into a call, but not out of it.
-   */
-  predicate call() { hasCall = true and content = noContent() }
-
-  /**
-   * Holds if this is the end point of type tracking.
-   */
-  predicate end() { content = noContent() }
-
-  /**
-   * INTERNAL. DO NOT USE.
+   * A summary of the steps needed to track a value to a given dataflow node.
    *
-   * Holds if this type has been tracked into a call.
-   */
-  boolean hasCall() { result = hasCall }
-
-  /**
-   * INTERNAL. DO NOT USE.
+   * This can be used to track objects that implement a certain API in order to
+   * recognize calls to that API. Note that type-tracking does not by itself provide a
+   * source/sink relation, that is, it may determine that a node has a given type,
+   * but it won't determine where that type came from.
    *
-   * Gets the content associated with this type tracker.
-   */
-  OptionalTypeTrackerContent getContent() { result = content }
-
-  /**
-   * Gets a type tracker that starts where this one has left off to allow continued
-   * tracking.
-   *
-   * This predicate is only defined if the type is not associated to a piece of content.
-   */
-  TypeTracker continue() { content = noContent() and result = this }
-
-  /**
-   * Gets the summary that corresponds to having taken a forwards
-   * heap and/or inter-procedural step from `nodeFrom` to `nodeTo`.
-   */
-  pragma[inline]
-  TypeTracker step(TypeTrackingNode nodeFrom, TypeTrackingNode nodeTo) {
-    exists(StepSummary summary |
-      StepSummary::step(nodeFrom, pragma[only_bind_out](nodeTo), pragma[only_bind_into](summary)) and
-      result = this.append(pragma[only_bind_into](summary))
-    )
-  }
-
-  /**
-   * Gets the summary that corresponds to having taken a forwards
-   * local, heap and/or inter-procedural step from `nodeFrom` to `nodeTo`.
-   *
-   * Unlike `TypeTracker::step`, this predicate exposes all edges
-   * in the flow graph, and not just the edges between `Node`s.
-   * It may therefore be less performant.
-   *
-   * Type tracking predicates using small steps typically take the following form:
+   * It is recommended that all uses of this type are written in the following form,
+   * for tracking some type `myType`:
    * ```ql
-   * DataFlow::Node myType(DataFlow::TypeTracker t) {
-   *   t.start() and
+   * Node myType(TypeTracker tt) {
+   *   tt.start() and
    *   result = < source of myType >
    *   or
-   *   exists (DataFlow::TypeTracker t2 |
-   *     t = t2.smallstep(myType(t2), result)
+   *   exists(TypeTracker tt2 |
+   *     tt = tt2.step(myType(tt2), result)
    *   )
    * }
    *
-   * DataFlow::Node myType() {
-   *   result = myType(DataFlow::TypeTracker::end())
-   * }
+   * Node myType() { myType(TypeTracker::end()).flowsTo(result) }
    * ```
+   *
+   * If you want to track individual intra-procedural steps, use `tt2.smallstep`
+   * instead of `tt2.step`.
    */
-  pragma[inline]
-  TypeTracker smallstep(Node nodeFrom, Node nodeTo) {
-    exists(StepSummary summary |
-      StepSummary::smallstep(nodeFrom, nodeTo, summary) and
-      result = this.append(summary)
-    )
-    or
-    simpleLocalFlowStep(nodeFrom, nodeTo) and
-    result = this
+  class TypeTracker extends TTypeTracker {
+    Boolean hasCall;
+    ContentOption content;
+
+    TypeTracker() { this = MkTypeTracker(hasCall, content) }
+
+    /** Gets the summary resulting from appending `step` to this type-tracking summary. */
+    private TypeTracker append(StepSummary step) { result = append(this, step) }
+
+    /** Gets a textual representation of this summary. */
+    string toString() {
+      exists(string withCall, string withContent |
+        (if hasCall = true then withCall = "with" else withCall = "without") and
+        (
+          if content instanceof ContentOption::Some
+          then withContent = " with content " + content.asSome()
+          else withContent = ""
+        ) and
+        result = "type tracker " + withCall + " call steps" + withContent
+      )
+    }
+
+    /**
+     * Holds if this is the starting point of type tracking.
+     */
+    predicate start() { hasCall = false and content.isNone() }
+
+    /**
+     * Holds if this is the starting point of type tracking, and the value starts in the content named `contentName`.
+     * The type tracking only ends after the content has been loaded.
+     */
+    predicate startInContent(Content contentName) {
+      hasCall = false and content = ContentOption::some(contentName)
+    }
+
+    /**
+     * Holds if this is the starting point of type tracking
+     * when tracking a parameter into a call, but not out of it.
+     */
+    predicate call() { hasCall = true and content.isNone() }
+
+    /**
+     * Holds if this is the end point of type tracking.
+     */
+    predicate end() { content.isNone() }
+
+    /**
+     * INTERNAL. DO NOT USE.
+     *
+     * Gets the content associated with this type tracker.
+     */
+    ContentOption getContent() { result = content }
+
+    /**
+     * Gets a type tracker that starts where this one has left off to allow continued
+     * tracking.
+     *
+     * This predicate is only defined if the type is not associated to a piece of content.
+     */
+    TypeTracker continue() { content.isNone() and result = this }
+
+    /**
+     * Gets the summary that corresponds to having taken a forwards
+     * heap and/or inter-procedural step from `nodeFrom` to `nodeTo`.
+     */
+    bindingset[nodeFrom, this]
+    TypeTracker step(Node nodeFrom, Node nodeTo) {
+      exists(StepSummary summary |
+        step(pragma[only_bind_out](nodeFrom), _, pragma[only_bind_into](summary)) and
+        result = pragma[only_bind_into](pragma[only_bind_out](this)).append(summary) and
+        step(pragma[only_bind_into](pragma[only_bind_out](nodeFrom)), nodeTo, summary)
+      )
+    }
+
+    /**
+     * Gets the summary that corresponds to having taken a forwards
+     * local, heap and/or inter-procedural step from `nodeFrom` to `nodeTo`.
+     *
+     * Unlike `TypeTracker::step`, this predicate exposes all edges
+     * in the flow graph, and not just the edges between `Node`s.
+     * It may therefore be less performant.
+     *
+     * Type tracking predicates using small steps typically take the following form:
+     * ```ql
+     * Node myType(TypeTracker tt) {
+     *   tt.start() and
+     *   result = < source of myType >
+     *   or
+     *   exists(TypeTracker tt2 |
+     *     tt = tt2.smallstep(myType(tt2), result)
+     *   )
+     * }
+     *
+     * Node myType() {
+     *   result = myType(TypeTracker::end())
+     * }
+     * ```
+     */
+    bindingset[nodeFrom, this]
+    TypeTracker smallstep(Node nodeFrom, Node nodeTo) {
+      exists(StepSummary summary |
+        smallStep(pragma[only_bind_out](nodeFrom), _, pragma[only_bind_into](summary)) and
+        result = pragma[only_bind_into](pragma[only_bind_out](this)).append(summary) and
+        smallStep(pragma[only_bind_into](pragma[only_bind_out](nodeFrom)), nodeTo, summary)
+      )
+      or
+      simpleLocalSmallStep(nodeFrom, nodeTo) and
+      result = this
+    }
   }
-}
 
-/** Provides predicates for implementing custom `TypeTracker`s. */
-module TypeTracker {
-  /**
-   * Gets a valid end point of type tracking.
-   */
-  TypeTracker end() { result.end() }
-}
-
-/**
- * A summary of the steps needed to back-track a use of a value to a given dataflow node.
- *
- * This can for example be used to track callbacks that are passed to a certain API,
- * so we can model specific parameters of that callback as having a certain type.
- *
- * Note that type back-tracking does not provide a source/sink relation, that is,
- * it may determine that a node will be used in an API call somewhere, but it won't
- * determine exactly where that use was, or the path that led to the use.
- *
- * It is recommended that all uses of this type are written in the following form,
- * for back-tracking some callback type `myCallback`:
- *
- * ```ql
- * DataFlow::TypeTrackingNode myCallback(DataFlow::TypeBackTracker t) {
- *   t.start() and
- *   result = (< some API call >).getArgument(< n >).getALocalSource()
- *   or
- *   exists (DataFlow::TypeBackTracker t2 |
- *     result = myCallback(t2).backtrack(t2, t)
- *   )
- * }
- *
- * DataFlow::TypeTrackingNode myCallback() { result = myCallback(DataFlow::TypeBackTracker::end()) }
- * ```
- *
- * Instead of `result = myCallback(t2).backtrack(t2, t)`, you can also use the equivalent
- * `t2 = t.step(result, myCallback(t2))`. If you additionally want to track individual
- * intra-procedural steps, use `t2 = t.smallstep(result, myCallback(t2))`.
- */
-class TypeBackTracker extends TTypeBackTracker {
-  Boolean hasReturn;
-  OptionalTypeTrackerContent content;
-
-  TypeBackTracker() { this = MkTypeBackTracker(hasReturn, content) }
-
-  /** Gets the summary resulting from prepending `step` to this type-tracking summary. */
-  TypeBackTracker prepend(StepSummary step) { result = prepend(this, step) }
-
-  /** Gets a textual representation of this summary. */
-  string toString() {
-    exists(string withReturn, string withContent |
-      (if hasReturn = true then withReturn = "with" else withReturn = "without") and
-      (
-        if content != noContent()
-        then withContent = " with content " + content
-        else withContent = ""
-      ) and
-      result = "type back-tracker " + withReturn + " return steps" + withContent
-    )
+  /** Provides predicates for implementing custom `TypeTracker`s. */
+  module TypeTracker {
+    /**
+     * Gets a valid end point of type tracking.
+     */
+    TypeTracker end() { result.end() }
   }
 
   /**
-   * Holds if this is the starting point of type tracking.
-   */
-  predicate start() { hasReturn = false and content = noContent() }
-
-  /**
-   * Holds if this is the end point of type tracking.
-   */
-  predicate end() { content = noContent() }
-
-  /**
-   * INTERNAL. DO NOT USE.
+   * A summary of the steps needed to back-track a use of a value to a given dataflow node.
    *
-   * Holds if this type has been back-tracked into a call through return edge.
-   */
-  boolean hasReturn() { result = hasReturn }
-
-  /**
-   * Gets a type tracker that starts where this one has left off to allow continued
-   * tracking.
+   * This can for example be used to track callbacks that are passed to a certain API,
+   * so we can model specific parameters of that callback as having a certain type.
    *
-   * This predicate is only defined if the type has not been tracked into a piece of content.
-   */
-  TypeBackTracker continue() { content = noContent() and result = this }
-
-  /**
-   * Gets the summary that corresponds to having taken a backwards
-   * heap and/or inter-procedural step from `nodeTo` to `nodeFrom`.
-   */
-  pragma[inline]
-  TypeBackTracker step(TypeTrackingNode nodeFrom, TypeTrackingNode nodeTo) {
-    exists(StepSummary summary |
-      StepSummary::step(pragma[only_bind_out](nodeFrom), nodeTo, pragma[only_bind_into](summary)) and
-      this = result.prepend(pragma[only_bind_into](summary))
-    )
-  }
-
-  /**
-   * Gets the summary that corresponds to having taken a backwards
-   * local, heap and/or inter-procedural step from `nodeTo` to `nodeFrom`.
+   * Note that type back-tracking does not provide a source/sink relation, that is,
+   * it may determine that a node will be used in an API call somewhere, but it won't
+   * determine exactly where that use was, or the path that led to the use.
    *
-   * Unlike `TypeBackTracker::step`, this predicate exposes all edges
-   * in the flowgraph, and not just the edges between
-   * `TypeTrackingNode`s. It may therefore be less performant.
+   * It is recommended that all uses of this type are written in the following form,
+   * for back-tracking some callback type `myCallback`:
    *
-   * Type tracking predicates using small steps typically take the following form:
    * ```ql
-   * DataFlow::Node myType(DataFlow::TypeBackTracker t) {
+   * Node myCallback(TypeBackTracker t) {
    *   t.start() and
-   *   result = < some API call >.getArgument(< n >)
+   *   result = (< some API call >).getArgument(< n >).getALocalSource()
    *   or
-   *   exists (DataFlow::TypeBackTracker t2 |
-   *     t = t2.smallstep(result, myType(t2))
+   *   exists(TypeBackTracker t2 |
+   *     t = t2.step(result, myCallback(t2))
    *   )
    * }
    *
-   * DataFlow::Node myType() {
-   *   result = myType(DataFlow::TypeBackTracker::end())
-   * }
+   * Node myCallback() { result = myCallback(TypeBackTracker::end()) }
    * ```
+   *
+   * If you want to track individual intra-procedural steps, use `t2.smallstep`
+   * instead of `t2.step`.
    */
-  pragma[inline]
-  TypeBackTracker smallstep(Node nodeFrom, Node nodeTo) {
-    exists(StepSummary summary |
-      StepSummary::smallstep(nodeFrom, nodeTo, summary) and
-      this = result.prepend(summary)
-    )
-    or
-    simpleLocalFlowStep(nodeFrom, nodeTo) and
-    this = result
+  class TypeBackTracker extends TTypeBackTracker {
+    Boolean hasReturn;
+    ContentOption content;
+
+    TypeBackTracker() { this = MkTypeBackTracker(hasReturn, content) }
+
+    /** Gets the summary resulting from prepending `step` to this type-tracking summary. */
+    private TypeBackTracker prepend(StepSummary step) { result = prepend(this, step) }
+
+    /** Gets a textual representation of this summary. */
+    string toString() {
+      exists(string withReturn, string withContent |
+        (if hasReturn = true then withReturn = "with" else withReturn = "without") and
+        (
+          if content instanceof ContentOption::Some
+          then withContent = " with content " + content
+          else withContent = ""
+        ) and
+        result = "type back-tracker " + withReturn + " return steps" + withContent
+      )
+    }
+
+    /**
+     * Holds if this is the starting point of type tracking.
+     */
+    predicate start() { hasReturn = false and content.isNone() }
+
+    /**
+     * Holds if this is the end point of type tracking.
+     */
+    predicate end() { content.isNone() }
+
+    /**
+     * Gets a type tracker that starts where this one has left off to allow continued
+     * tracking.
+     *
+     * This predicate is only defined if the type has not been tracked into a piece of content.
+     */
+    TypeBackTracker continue() { content.isNone() and result = this }
+
+    /**
+     * Gets the summary that corresponds to having taken a backwards
+     * heap and/or inter-procedural step from `nodeTo` to `nodeFrom`.
+     */
+    bindingset[nodeTo, this]
+    TypeBackTracker step(Node nodeFrom, Node nodeTo) {
+      exists(StepSummary summary |
+        step(_, pragma[only_bind_out](nodeTo), pragma[only_bind_into](summary)) and
+        result = pragma[only_bind_into](pragma[only_bind_out](this)).prepend(summary) and
+        step(nodeFrom, pragma[only_bind_into](pragma[only_bind_out](nodeTo)), summary)
+      )
+    }
+
+    /**
+     * Gets the summary that corresponds to having taken a backwards
+     * local, heap and/or inter-procedural step from `nodeTo` to `nodeFrom`.
+     *
+     * Unlike `TypeBackTracker::step`, this predicate exposes all edges
+     * in the flowgraph, and not just the edges between
+     * `TypeTrackingNode`s. It may therefore be less performant.
+     *
+     * Type tracking predicates using small steps typically take the following form:
+     * ```ql
+     * Node myType(TypeBackTracker t) {
+     *   t.start() and
+     *   result = < some API call >.getArgument(< n >)
+     *   or
+     *   exists (TypeBackTracker t2 |
+     *     t = t2.smallstep(result, myType(t2))
+     *   )
+     * }
+     *
+     * Node myType() {
+     *   result = myType(DataFlow::TypeBackTracker::end())
+     * }
+     * ```
+     */
+    bindingset[nodeTo, this]
+    TypeBackTracker smallstep(Node nodeFrom, Node nodeTo) {
+      exists(StepSummary summary |
+        smallStep(_, pragma[only_bind_out](nodeTo), pragma[only_bind_into](summary)) and
+        result = pragma[only_bind_into](pragma[only_bind_out](this)).prepend(summary) and
+        smallStep(nodeFrom, pragma[only_bind_into](pragma[only_bind_out](nodeTo)), summary)
+      )
+      or
+      simpleLocalSmallStep(nodeFrom, nodeTo) and
+      result = this
+    }
+
+    /**
+     * Gets a forwards summary that is compatible with this backwards summary.
+     * That is, if this summary describes the steps needed to back-track a value
+     * from `sink` to `mid`, and the result is a valid summary of the steps needed
+     * to track a value from `source` to `mid`, then the value from `source` may
+     * also flow to `sink`.
+     */
+    TypeTracker getACompatibleTypeTracker() {
+      exists(boolean hasCall | result = MkTypeTracker(hasCall, content) |
+        hasCall = false or hasReturn = false
+      )
+    }
   }
 
+  /** Provides predicates for implementing custom `TypeBackTracker`s. */
+  module TypeBackTracker {
+    /**
+     * Gets a valid end point of type back-tracking.
+     */
+    TypeBackTracker end() { result.end() }
+  }
+
+  signature predicate endpoint(Node node);
+
   /**
-   * Gets a forwards summary that is compatible with this backwards summary.
-   * That is, if this summary describes the steps needed to back-track a value
-   * from `sink` to `mid`, and the result is a valid summary of the steps needed
-   * to track a value from `source` to `mid`, then the value from `source` may
-   * also flow to `sink`.
+   * Given a source definition, constructs the default forward type tracking from
+   * those sources.
    */
-  TypeTracker getACompatibleTypeTracker() {
-    exists(boolean hasCall | result = MkTypeTracker(hasCall, content) |
-      hasCall = false or this.hasReturn() = false
-    )
+  module TypeTrack<endpoint/1 source> {
+    pragma[assume_small_delta]
+    private Node flow(TypeTracker tt) {
+      tt.start() and source(result)
+      or
+      exists(TypeTracker ttMid | tt = ttMid.step(flow(ttMid), result))
+    }
+
+    /**
+     * Holds if the given source flows to `n`.
+     */
+    predicate flowsTo(Node n) { flowsTo(flow(TypeTracker::end()), n) }
+
+    /**
+     * Given a sink definition, constructs the relation of edges that can be used
+     * in a source-sink path and calculates the set of source-sink pairs.
+     */
+    module Graph<endpoint/1 sink> {
+      private newtype TPathNode = MkPathNode(Node node, TypeTracker tt) { node = flow(tt) }
+
+      /**
+       * A node on a path that is reachable from a source. This is a pair of a
+       * `Node` and a `TypeTracker`.
+       */
+      class PathNode extends TPathNode {
+        /** Gets the node of this `PathNode`. */
+        Node getNode() { this = MkPathNode(result, _) }
+
+        /** Gets the typetracker of this `PathNode`. */
+        TypeTracker getTypeTracker() { this = MkPathNode(_, result) }
+
+        private string ppContent() {
+          exists(ContentOption c | this.getTypeTracker() = MkTypeTracker(_, c) |
+            if c instanceof ContentOption::Some
+            then result = " with content " + c.asSome()
+            else result = ""
+          )
+        }
+
+        /** Gets a textual representation of this node. */
+        string toString() { result = this.getNode().toString() + " " + this.ppContent() }
+
+        /** Holds if this is a source. */
+        predicate isSource() { source(this.getNode()) and this.getTypeTracker().start() }
+
+        /** Holds if this is a sink. */
+        predicate isSink() { sink(this.getNode()) and this.getTypeTracker().end() }
+      }
+
+      private predicate edgeCand(Node n1, TypeTracker tt1, Node n2, TypeTracker tt2) {
+        n1 = flow(tt1) and
+        tt2 = tt1.step(n1, n2)
+      }
+
+      private predicate edgeCand(PathNode n1, PathNode n2) {
+        edgeCand(n1.getNode(), n1.getTypeTracker(), n2.getNode(), n2.getTypeTracker())
+      }
+
+      private predicate reachRev(PathNode n) {
+        n.isSink()
+        or
+        exists(PathNode mid |
+          edgeCand(n, mid) and
+          reachRev(mid)
+        )
+      }
+
+      /** Holds if `(p1, p2)` is an edge in a path between a source and a sink. */
+      query predicate edges(PathNode n1, PathNode n2) { edgeCand(n1, n2) and reachRev(n2) }
+
+      private predicate stepPlus(PathNode n1, PathNode n2) = fastTC(edges/2)(n1, n2)
+
+      /** Holds if there is a path between `source` and `sink`. */
+      predicate flowPair(PathNode source, PathNode sink) {
+        source.isSource() and
+        sink.isSink() and
+        (source = sink or stepPlus(source, sink))
+      }
+    }
   }
 }
-
-/** Provides predicates for implementing custom `TypeBackTracker`s. */
-module TypeBackTracker {
-  /**
-   * Gets a valid end point of type back-tracking.
-   */
-  TypeBackTracker end() { result.end() }
-}
diff --git a/shared/typetracking/qlpack.yml b/shared/typetracking/qlpack.yml
new file mode 100644
index 00000000000..f2e33268e39
--- /dev/null
+++ b/shared/typetracking/qlpack.yml
@@ -0,0 +1,6 @@
+name: codeql/typetracking
+version: 0.0.1-dev
+groups: shared
+library: true
+dependencies:
+  codeql/util: ${workspace}

From 025cfe4064bf81e339a3073b8396c29ffc95074a Mon Sep 17 00:00:00 2001
From: Asger F <asgerf@github.com>
Date: Mon, 5 Dec 2022 15:11:03 +0100
Subject: [PATCH 1028/1420] JS: Add reproduction test case

---
 .../TaintTracking/BasicTaintTracking.expected |  1 +
 .../TaintTracking/refinement-sanitizer.js     | 34 +++++++++++++++++++
 2 files changed, 35 insertions(+)
 create mode 100644 javascript/ql/test/library-tests/TaintTracking/refinement-sanitizer.js

diff --git a/javascript/ql/test/library-tests/TaintTracking/BasicTaintTracking.expected b/javascript/ql/test/library-tests/TaintTracking/BasicTaintTracking.expected
index b8706b25f2e..bb2d31d1612 100644
--- a/javascript/ql/test/library-tests/TaintTracking/BasicTaintTracking.expected
+++ b/javascript/ql/test/library-tests/TaintTracking/BasicTaintTracking.expected
@@ -171,6 +171,7 @@ typeInferenceMismatch
 | promise.js:5:25:5:32 | source() | promise.js:5:8:5:33 | bluebir ... urce()) |
 | promise.js:10:24:10:31 | source() | promise.js:10:8:10:32 | Promise ... urce()) |
 | promise.js:12:20:12:27 | source() | promise.js:13:8:13:23 | resolver.promise |
+| refinement-sanitizer.js:19:17:19:24 | source() | refinement-sanitizer.js:33:10:33:21 | array.join() |
 | rxjs.js:3:1:3:8 | source() | rxjs.js:10:14:10:17 | data |
 | rxjs.js:13:1:13:8 | source() | rxjs.js:17:23:17:23 | x |
 | rxjs.js:13:1:13:8 | source() | rxjs.js:18:23:18:23 | x |
diff --git a/javascript/ql/test/library-tests/TaintTracking/refinement-sanitizer.js b/javascript/ql/test/library-tests/TaintTracking/refinement-sanitizer.js
new file mode 100644
index 00000000000..df34cc9127d
--- /dev/null
+++ b/javascript/ql/test/library-tests/TaintTracking/refinement-sanitizer.js
@@ -0,0 +1,34 @@
+import * as dummy from 'dummy';
+
+function oneUse() {
+    let taint = source();
+
+    if (!isSafe(taint)) {
+        return;
+    }
+
+    let array = [];
+    if (taint) {
+        array.push(taint);
+    }
+
+    sink(array.join()); // OK
+}
+
+function secondUse() {
+    let taint = source();
+
+    if (!isSafe(taint)) {
+        return;
+    }
+
+    let array = [];
+    if (taint) {
+        array.push(taint);
+    }
+    if (taint) {
+        array.push(taint);
+    }
+
+    sink(array.join()); // OK
+}

From 80777b8c501d0b772b5381804031b7e52081516d Mon Sep 17 00:00:00 2001
From: Asger F <asgerf@github.com>
Date: Mon, 5 Dec 2022 15:05:45 +0100
Subject: [PATCH 1029/1420] JS: handle rephined variables in local access paths

---
 .../ql/lib/semmle/javascript/dataflow/internal/AccessPaths.qll  | 2 ++
 .../library-tests/TaintTracking/BasicTaintTracking.expected     | 1 -
 2 files changed, 2 insertions(+), 1 deletion(-)

diff --git a/javascript/ql/lib/semmle/javascript/dataflow/internal/AccessPaths.qll b/javascript/ql/lib/semmle/javascript/dataflow/internal/AccessPaths.qll
index cebcaa1a1da..63c0105a5ac 100644
--- a/javascript/ql/lib/semmle/javascript/dataflow/internal/AccessPaths.qll
+++ b/javascript/ql/lib/semmle/javascript/dataflow/internal/AccessPaths.qll
@@ -45,6 +45,8 @@ private PropAccess namedPropAccess(AccessPath base, PropertyName name, BasicBloc
 
 private SsaVariable getRefinedVariable(SsaVariable variable) {
   result = variable.getDefinition().(SsaRefinementNode).getAnInput()
+  or
+  result = variable.getDefinition().(SsaPhiNode).getRephinedVariable()
 }
 
 private SsaVariable getARefinementOf(SsaVariable variable) { variable = getRefinedVariable(result) }
diff --git a/javascript/ql/test/library-tests/TaintTracking/BasicTaintTracking.expected b/javascript/ql/test/library-tests/TaintTracking/BasicTaintTracking.expected
index bb2d31d1612..b8706b25f2e 100644
--- a/javascript/ql/test/library-tests/TaintTracking/BasicTaintTracking.expected
+++ b/javascript/ql/test/library-tests/TaintTracking/BasicTaintTracking.expected
@@ -171,7 +171,6 @@ typeInferenceMismatch
 | promise.js:5:25:5:32 | source() | promise.js:5:8:5:33 | bluebir ... urce()) |
 | promise.js:10:24:10:31 | source() | promise.js:10:8:10:32 | Promise ... urce()) |
 | promise.js:12:20:12:27 | source() | promise.js:13:8:13:23 | resolver.promise |
-| refinement-sanitizer.js:19:17:19:24 | source() | refinement-sanitizer.js:33:10:33:21 | array.join() |
 | rxjs.js:3:1:3:8 | source() | rxjs.js:10:14:10:17 | data |
 | rxjs.js:13:1:13:8 | source() | rxjs.js:17:23:17:23 | x |
 | rxjs.js:13:1:13:8 | source() | rxjs.js:18:23:18:23 | x |

From 8053b729017dee00aebeb968b7f118d0b53ec994 Mon Sep 17 00:00:00 2001
From: Mathias Vorreiter Pedersen <mathiasvp@github.com>
Date: Mon, 5 Dec 2022 14:11:43 +0000
Subject: [PATCH 1030/1420] Swift: Skip lvalue types.

---
 swift/ql/lib/codeql/swift/elements/type/LValueType.qll | 5 +++--
 1 file changed, 3 insertions(+), 2 deletions(-)

diff --git a/swift/ql/lib/codeql/swift/elements/type/LValueType.qll b/swift/ql/lib/codeql/swift/elements/type/LValueType.qll
index 1ce57b2db20..d6b4048bdd7 100644
--- a/swift/ql/lib/codeql/swift/elements/type/LValueType.qll
+++ b/swift/ql/lib/codeql/swift/elements/type/LValueType.qll
@@ -1,4 +1,5 @@
-// generated by codegen/codegen.py, remove this comment if you wish to edit this file
 private import codeql.swift.generated.type.LValueType
 
-class LValueType extends Generated::LValueType { }
+class LValueType extends Generated::LValueType {
+  override Type getResolveStep() { result = this.getImmediateObjectType() }
+}

From a07c9ffbc548f194d0ea45ba8a4c3708e4c4405f Mon Sep 17 00:00:00 2001
From: Mathias Vorreiter Pedersen <mathiasvp@github.com>
Date: Mon, 5 Dec 2022 14:19:00 +0000
Subject: [PATCH 1031/1420] Swift: Accept test changes.

---
 .../dataflow/dataflow/LocalFlow.expected      |  5 ++
 .../dataflow/taint/LocalTaint.expected        | 51 +++++++++++++++++++
 2 files changed, 56 insertions(+)

diff --git a/swift/ql/test/library-tests/dataflow/dataflow/LocalFlow.expected b/swift/ql/test/library-tests/dataflow/dataflow/LocalFlow.expected
index 721505ee087..b16a93e97b3 100644
--- a/swift/ql/test/library-tests/dataflow/dataflow/LocalFlow.expected
+++ b/swift/ql/test/library-tests/dataflow/dataflow/LocalFlow.expected
@@ -1,9 +1,11 @@
 | test.swift:6:9:6:13 | SSA def(t1) | test.swift:7:15:7:15 | t1 |
 | test.swift:6:19:6:26 | call to source() | test.swift:6:9:6:13 | SSA def(t1) |
+| test.swift:7:15:7:15 | [post] t1 | test.swift:8:10:8:10 | t1 |
 | test.swift:7:15:7:15 | t1 | test.swift:8:10:8:10 | t1 |
 | test.swift:8:5:8:10 | SSA def(t2) | test.swift:10:15:10:15 | t2 |
 | test.swift:8:10:8:10 | t1 | test.swift:8:5:8:10 | SSA def(t2) |
 | test.swift:8:10:8:10 | t1 | test.swift:9:15:9:15 | t1 |
+| test.swift:9:15:9:15 | [post] t1 | test.swift:11:8:11:8 | t1 |
 | test.swift:9:15:9:15 | t1 | test.swift:11:8:11:8 | t1 |
 | test.swift:12:9:12:14 | SSA def(t2) | test.swift:13:19:13:19 | t2 |
 | test.swift:12:14:12:14 | 0 | test.swift:12:9:12:14 | SSA def(t2) |
@@ -27,6 +29,7 @@
 | test.swift:54:11:54:18 | call to source() | test.swift:54:5:54:18 | SSA def(arg) |
 | test.swift:59:9:59:12 | SSA def(x) | test.swift:60:15:60:15 | x |
 | test.swift:59:18:59:18 | 0 | test.swift:59:9:59:12 | SSA def(x) |
+| test.swift:60:15:60:15 | [post] x | test.swift:61:23:61:23 | x |
 | test.swift:60:15:60:15 | x | test.swift:61:23:61:23 | x |
 | test.swift:61:22:61:23 | &... | test.swift:62:15:62:15 | x |
 | test.swift:61:22:61:23 | [post] &... | test.swift:62:15:62:15 | x |
@@ -64,12 +67,14 @@
 | test.swift:93:17:93:23 | bool | test.swift:93:17:93:23 | SSA def(bool) |
 | test.swift:95:13:95:16 | SSA def(x) | test.swift:96:19:96:19 | x |
 | test.swift:95:22:95:22 | 0 | test.swift:95:13:95:16 | SSA def(x) |
+| test.swift:96:19:96:19 | [post] x | test.swift:97:40:97:40 | x |
 | test.swift:96:19:96:19 | x | test.swift:97:40:97:40 | x |
 | test.swift:97:39:97:40 | &... | test.swift:98:19:98:19 | x |
 | test.swift:97:39:97:40 | [post] &... | test.swift:98:19:98:19 | x |
 | test.swift:97:40:97:40 | x | test.swift:97:39:97:40 | &... |
 | test.swift:102:13:102:16 | SSA def(x) | test.swift:103:19:103:19 | x |
 | test.swift:102:22:102:22 | 0 | test.swift:102:13:102:16 | SSA def(x) |
+| test.swift:103:19:103:19 | [post] x | test.swift:104:41:104:41 | x |
 | test.swift:103:19:103:19 | x | test.swift:104:41:104:41 | x |
 | test.swift:104:40:104:41 | &... | test.swift:105:19:105:19 | x |
 | test.swift:104:40:104:41 | [post] &... | test.swift:105:19:105:19 | x |
diff --git a/swift/ql/test/library-tests/dataflow/taint/LocalTaint.expected b/swift/ql/test/library-tests/dataflow/taint/LocalTaint.expected
index 1e3d799cd58..d991a70115c 100644
--- a/swift/ql/test/library-tests/dataflow/taint/LocalTaint.expected
+++ b/swift/ql/test/library-tests/dataflow/taint/LocalTaint.expected
@@ -614,9 +614,12 @@
 | string.swift:7:14:7:14 | [post] &... | string.swift:7:15:7:15 | $interpolation |
 | string.swift:7:15:7:15 | $interpolation | string.swift:7:15:7:15 | &... |
 | string.swift:7:15:7:15 | &... | string.swift:7:15:7:15 | [post] &... |
+| string.swift:7:15:7:15 | &... | string.swift:7:16:7:16 | [post] x |
 | string.swift:7:15:7:15 | &... | string.swift:7:18:7:18 | $interpolation |
 | string.swift:7:15:7:15 | [post] &... | string.swift:7:18:7:18 | $interpolation |
+| string.swift:7:16:7:16 | [post] x | string.swift:9:16:9:16 | x |
 | string.swift:7:16:7:16 | x | string.swift:7:15:7:15 | [post] &... |
+| string.swift:7:16:7:16 | x | string.swift:7:16:7:16 | [post] x |
 | string.swift:7:16:7:16 | x | string.swift:9:16:9:16 | x |
 | string.swift:7:18:7:18 |  | string.swift:7:18:7:18 | [post]  |
 | string.swift:7:18:7:18 |  | string.swift:7:18:7:18 | [post] &... |
@@ -637,9 +640,12 @@
 | string.swift:9:14:9:14 | [post] &... | string.swift:9:15:9:15 | $interpolation |
 | string.swift:9:15:9:15 | $interpolation | string.swift:9:15:9:15 | &... |
 | string.swift:9:15:9:15 | &... | string.swift:9:15:9:15 | [post] &... |
+| string.swift:9:15:9:15 | &... | string.swift:9:16:9:16 | [post] x |
 | string.swift:9:15:9:15 | &... | string.swift:9:18:9:18 | $interpolation |
 | string.swift:9:15:9:15 | [post] &... | string.swift:9:18:9:18 | $interpolation |
+| string.swift:9:16:9:16 | [post] x | string.swift:9:21:9:21 | x |
 | string.swift:9:16:9:16 | x | string.swift:9:15:9:15 | [post] &... |
+| string.swift:9:16:9:16 | x | string.swift:9:16:9:16 | [post] x |
 | string.swift:9:16:9:16 | x | string.swift:9:21:9:21 | x |
 | string.swift:9:18:9:18 |   | string.swift:9:18:9:18 | [post]   |
 | string.swift:9:18:9:18 |   | string.swift:9:18:9:18 | [post] &... |
@@ -650,9 +656,12 @@
 | string.swift:9:18:9:18 | [post] &... | string.swift:9:20:9:20 | $interpolation |
 | string.swift:9:20:9:20 | $interpolation | string.swift:9:20:9:20 | &... |
 | string.swift:9:20:9:20 | &... | string.swift:9:20:9:20 | [post] &... |
+| string.swift:9:20:9:20 | &... | string.swift:9:21:9:21 | [post] x |
 | string.swift:9:20:9:20 | &... | string.swift:9:23:9:23 | $interpolation |
 | string.swift:9:20:9:20 | [post] &... | string.swift:9:23:9:23 | $interpolation |
+| string.swift:9:21:9:21 | [post] x | string.swift:11:16:11:16 | x |
 | string.swift:9:21:9:21 | x | string.swift:9:20:9:20 | [post] &... |
+| string.swift:9:21:9:21 | x | string.swift:9:21:9:21 | [post] x |
 | string.swift:9:21:9:21 | x | string.swift:11:16:11:16 | x |
 | string.swift:9:23:9:23 |  | string.swift:9:23:9:23 | [post]  |
 | string.swift:9:23:9:23 |  | string.swift:9:23:9:23 | [post] &... |
@@ -673,9 +682,12 @@
 | string.swift:11:14:11:14 | [post] &... | string.swift:11:15:11:15 | $interpolation |
 | string.swift:11:15:11:15 | $interpolation | string.swift:11:15:11:15 | &... |
 | string.swift:11:15:11:15 | &... | string.swift:11:15:11:15 | [post] &... |
+| string.swift:11:15:11:15 | &... | string.swift:11:16:11:16 | [post] x |
 | string.swift:11:15:11:15 | &... | string.swift:11:18:11:18 | $interpolation |
 | string.swift:11:15:11:15 | [post] &... | string.swift:11:18:11:18 | $interpolation |
+| string.swift:11:16:11:16 | [post] x | string.swift:11:26:11:26 | x |
 | string.swift:11:16:11:16 | x | string.swift:11:15:11:15 | [post] &... |
+| string.swift:11:16:11:16 | x | string.swift:11:16:11:16 | [post] x |
 | string.swift:11:16:11:16 | x | string.swift:11:26:11:26 | x |
 | string.swift:11:18:11:18 |   | string.swift:11:18:11:18 | [post]   |
 | string.swift:11:18:11:18 |   | string.swift:11:18:11:18 | [post] &... |
@@ -700,9 +712,12 @@
 | string.swift:11:23:11:23 | [post] &... | string.swift:11:25:11:25 | $interpolation |
 | string.swift:11:25:11:25 | $interpolation | string.swift:11:25:11:25 | &... |
 | string.swift:11:25:11:25 | &... | string.swift:11:25:11:25 | [post] &... |
+| string.swift:11:25:11:25 | &... | string.swift:11:26:11:26 | [post] x |
 | string.swift:11:25:11:25 | &... | string.swift:11:28:11:28 | $interpolation |
 | string.swift:11:25:11:25 | [post] &... | string.swift:11:28:11:28 | $interpolation |
+| string.swift:11:26:11:26 | [post] x | string.swift:16:16:16:16 | x |
 | string.swift:11:26:11:26 | x | string.swift:11:25:11:25 | [post] &... |
+| string.swift:11:26:11:26 | x | string.swift:11:26:11:26 | [post] x |
 | string.swift:11:26:11:26 | x | string.swift:16:16:16:16 | x |
 | string.swift:11:28:11:28 |  | string.swift:11:28:11:28 | [post]  |
 | string.swift:11:28:11:28 |  | string.swift:11:28:11:28 | [post] &... |
@@ -725,9 +740,12 @@
 | string.swift:14:14:14:14 | [post] &... | string.swift:14:15:14:15 | $interpolation |
 | string.swift:14:15:14:15 | $interpolation | string.swift:14:15:14:15 | &... |
 | string.swift:14:15:14:15 | &... | string.swift:14:15:14:15 | [post] &... |
+| string.swift:14:15:14:15 | &... | string.swift:14:16:14:16 | [post] y |
 | string.swift:14:15:14:15 | &... | string.swift:14:18:14:18 | $interpolation |
 | string.swift:14:15:14:15 | [post] &... | string.swift:14:18:14:18 | $interpolation |
+| string.swift:14:16:14:16 | [post] y | string.swift:16:27:16:27 | y |
 | string.swift:14:16:14:16 | y | string.swift:14:15:14:15 | [post] &... |
+| string.swift:14:16:14:16 | y | string.swift:14:16:14:16 | [post] y |
 | string.swift:14:16:14:16 | y | string.swift:16:27:16:27 | y |
 | string.swift:14:18:14:18 |  | string.swift:14:18:14:18 | [post]  |
 | string.swift:14:18:14:18 |  | string.swift:14:18:14:18 | [post] &... |
@@ -748,9 +766,12 @@
 | string.swift:16:14:16:14 | [post] &... | string.swift:16:15:16:15 | $interpolation |
 | string.swift:16:15:16:15 | $interpolation | string.swift:16:15:16:15 | &... |
 | string.swift:16:15:16:15 | &... | string.swift:16:15:16:15 | [post] &... |
+| string.swift:16:15:16:15 | &... | string.swift:16:16:16:16 | [post] x |
 | string.swift:16:15:16:15 | &... | string.swift:16:18:16:18 | $interpolation |
 | string.swift:16:15:16:15 | [post] &... | string.swift:16:18:16:18 | $interpolation |
+| string.swift:16:16:16:16 | [post] x | string.swift:18:27:18:27 | x |
 | string.swift:16:16:16:16 | x | string.swift:16:15:16:15 | [post] &... |
+| string.swift:16:16:16:16 | x | string.swift:16:16:16:16 | [post] x |
 | string.swift:16:16:16:16 | x | string.swift:18:27:18:27 | x |
 | string.swift:16:18:16:18 |  hello  | string.swift:16:18:16:18 | [post]  hello  |
 | string.swift:16:18:16:18 |  hello  | string.swift:16:18:16:18 | [post] &... |
@@ -761,9 +782,12 @@
 | string.swift:16:18:16:18 | [post] &... | string.swift:16:26:16:26 | $interpolation |
 | string.swift:16:26:16:26 | $interpolation | string.swift:16:26:16:26 | &... |
 | string.swift:16:26:16:26 | &... | string.swift:16:26:16:26 | [post] &... |
+| string.swift:16:26:16:26 | &... | string.swift:16:27:16:27 | [post] y |
 | string.swift:16:26:16:26 | &... | string.swift:16:29:16:29 | $interpolation |
 | string.swift:16:26:16:26 | [post] &... | string.swift:16:29:16:29 | $interpolation |
+| string.swift:16:27:16:27 | [post] y | string.swift:18:16:18:16 | y |
 | string.swift:16:27:16:27 | y | string.swift:16:26:16:26 | [post] &... |
+| string.swift:16:27:16:27 | y | string.swift:16:27:16:27 | [post] y |
 | string.swift:16:27:16:27 | y | string.swift:18:16:18:16 | y |
 | string.swift:16:29:16:29 |  | string.swift:16:29:16:29 | [post]  |
 | string.swift:16:29:16:29 |  | string.swift:16:29:16:29 | [post] &... |
@@ -784,9 +808,11 @@
 | string.swift:18:14:18:14 | [post] &... | string.swift:18:15:18:15 | $interpolation |
 | string.swift:18:15:18:15 | $interpolation | string.swift:18:15:18:15 | &... |
 | string.swift:18:15:18:15 | &... | string.swift:18:15:18:15 | [post] &... |
+| string.swift:18:15:18:15 | &... | string.swift:18:16:18:16 | [post] y |
 | string.swift:18:15:18:15 | &... | string.swift:18:18:18:18 | $interpolation |
 | string.swift:18:15:18:15 | [post] &... | string.swift:18:18:18:18 | $interpolation |
 | string.swift:18:16:18:16 | y | string.swift:18:15:18:15 | [post] &... |
+| string.swift:18:16:18:16 | y | string.swift:18:16:18:16 | [post] y |
 | string.swift:18:18:18:18 |  world  | string.swift:18:18:18:18 | [post]  world  |
 | string.swift:18:18:18:18 |  world  | string.swift:18:18:18:18 | [post] &... |
 | string.swift:18:18:18:18 | $interpolation | string.swift:18:18:18:18 | &... |
@@ -796,9 +822,11 @@
 | string.swift:18:18:18:18 | [post] &... | string.swift:18:26:18:26 | $interpolation |
 | string.swift:18:26:18:26 | $interpolation | string.swift:18:26:18:26 | &... |
 | string.swift:18:26:18:26 | &... | string.swift:18:26:18:26 | [post] &... |
+| string.swift:18:26:18:26 | &... | string.swift:18:27:18:27 | [post] x |
 | string.swift:18:26:18:26 | &... | string.swift:18:29:18:29 | $interpolation |
 | string.swift:18:26:18:26 | [post] &... | string.swift:18:29:18:29 | $interpolation |
 | string.swift:18:27:18:27 | x | string.swift:18:26:18:26 | [post] &... |
+| string.swift:18:27:18:27 | x | string.swift:18:27:18:27 | [post] x |
 | string.swift:18:29:18:29 |  | string.swift:18:29:18:29 | [post]  |
 | string.swift:18:29:18:29 |  | string.swift:18:29:18:29 | [post] &... |
 | string.swift:18:29:18:29 | $interpolation | string.swift:18:29:18:29 | &... |
@@ -820,9 +848,11 @@
 | string.swift:21:14:21:14 | [post] &... | string.swift:21:15:21:15 | $interpolation |
 | string.swift:21:15:21:15 | $interpolation | string.swift:21:15:21:15 | &... |
 | string.swift:21:15:21:15 | &... | string.swift:21:15:21:15 | [post] &... |
+| string.swift:21:15:21:15 | &... | string.swift:21:16:21:16 | [post] x |
 | string.swift:21:15:21:15 | &... | string.swift:21:18:21:18 | $interpolation |
 | string.swift:21:15:21:15 | [post] &... | string.swift:21:18:21:18 | $interpolation |
 | string.swift:21:16:21:16 | x | string.swift:21:15:21:15 | [post] &... |
+| string.swift:21:16:21:16 | x | string.swift:21:16:21:16 | [post] x |
 | string.swift:21:18:21:18 |  | string.swift:21:18:21:18 | [post]  |
 | string.swift:21:18:21:18 |  | string.swift:21:18:21:18 | [post] &... |
 | string.swift:21:18:21:18 | $interpolation | string.swift:21:18:21:18 | &... |
@@ -834,22 +864,32 @@
 | string.swift:27:15:27:15 | abcdef | string.swift:27:7:27:7 | SSA def(clean) |
 | string.swift:28:7:28:7 | SSA def(tainted) | string.swift:31:13:31:13 | tainted |
 | string.swift:28:17:28:25 | call to source2() | string.swift:28:7:28:7 | SSA def(tainted) |
+| string.swift:30:13:30:13 | [post] clean | string.swift:33:13:33:13 | clean |
 | string.swift:30:13:30:13 | clean | string.swift:33:13:33:13 | clean |
+| string.swift:31:13:31:13 | [post] tainted | string.swift:34:21:34:21 | tainted |
 | string.swift:31:13:31:13 | tainted | string.swift:34:21:34:21 | tainted |
+| string.swift:33:13:33:13 | [post] clean | string.swift:33:21:33:21 | clean |
 | string.swift:33:13:33:13 | clean | string.swift:33:13:33:21 | ... .+(_:_:) ... |
 | string.swift:33:13:33:13 | clean | string.swift:33:21:33:21 | clean |
+| string.swift:33:21:33:21 | [post] clean | string.swift:34:13:34:13 | clean |
 | string.swift:33:21:33:21 | clean | string.swift:33:13:33:21 | ... .+(_:_:) ... |
 | string.swift:33:21:33:21 | clean | string.swift:34:13:34:13 | clean |
+| string.swift:34:13:34:13 | [post] clean | string.swift:35:23:35:23 | clean |
 | string.swift:34:13:34:13 | clean | string.swift:34:13:34:21 | ... .+(_:_:) ... |
 | string.swift:34:13:34:13 | clean | string.swift:35:23:35:23 | clean |
+| string.swift:34:21:34:21 | [post] tainted | string.swift:35:13:35:13 | tainted |
 | string.swift:34:21:34:21 | tainted | string.swift:34:13:34:21 | ... .+(_:_:) ... |
 | string.swift:34:21:34:21 | tainted | string.swift:35:13:35:13 | tainted |
+| string.swift:35:13:35:13 | [post] tainted | string.swift:36:13:36:13 | tainted |
 | string.swift:35:13:35:13 | tainted | string.swift:35:13:35:23 | ... .+(_:_:) ... |
 | string.swift:35:13:35:13 | tainted | string.swift:36:13:36:13 | tainted |
+| string.swift:35:23:35:23 | [post] clean | string.swift:38:19:38:19 | clean |
 | string.swift:35:23:35:23 | clean | string.swift:35:13:35:23 | ... .+(_:_:) ... |
 | string.swift:35:23:35:23 | clean | string.swift:38:19:38:19 | clean |
+| string.swift:36:13:36:13 | [post] tainted | string.swift:36:23:36:23 | tainted |
 | string.swift:36:13:36:13 | tainted | string.swift:36:13:36:23 | ... .+(_:_:) ... |
 | string.swift:36:13:36:13 | tainted | string.swift:36:23:36:23 | tainted |
+| string.swift:36:23:36:23 | [post] tainted | string.swift:39:19:39:19 | tainted |
 | string.swift:36:23:36:23 | tainted | string.swift:36:13:36:23 | ... .+(_:_:) ... |
 | string.swift:36:23:36:23 | tainted | string.swift:39:19:39:19 | tainted |
 | string.swift:38:13:38:13 | > | string.swift:38:13:38:19 | ... .+(_:_:) ... |
@@ -862,31 +902,38 @@
 | string.swift:39:29:39:29 | < | string.swift:39:13:39:29 | ... .+(_:_:) ... |
 | string.swift:41:7:41:7 | SSA def(str) | string.swift:43:13:43:13 | str |
 | string.swift:41:13:41:13 | abc | string.swift:41:7:41:7 | SSA def(str) |
+| string.swift:43:13:43:13 | [post] str | string.swift:45:3:45:3 | str |
 | string.swift:43:13:43:13 | str | string.swift:45:3:45:3 | str |
 | string.swift:45:3:45:3 | &... | string.swift:46:13:46:13 | str |
 | string.swift:45:3:45:3 | [post] &... | string.swift:46:13:46:13 | str |
 | string.swift:45:3:45:3 | str | string.swift:45:3:45:3 | &... |
+| string.swift:46:13:46:13 | [post] str | string.swift:48:3:48:3 | str |
 | string.swift:46:13:46:13 | str | string.swift:48:3:48:3 | str |
 | string.swift:48:3:48:3 | &... | string.swift:49:13:49:13 | str |
 | string.swift:48:3:48:3 | [post] &... | string.swift:49:13:49:13 | str |
 | string.swift:48:3:48:3 | str | string.swift:48:3:48:3 | &... |
 | string.swift:51:7:51:7 | SSA def(str2) | string.swift:53:13:53:13 | str2 |
 | string.swift:51:14:51:14 | abc | string.swift:51:7:51:7 | SSA def(str2) |
+| string.swift:53:13:53:13 | [post] str2 | string.swift:55:3:55:3 | str2 |
 | string.swift:53:13:53:13 | str2 | string.swift:55:3:55:3 | str2 |
 | string.swift:55:3:55:3 | &... | string.swift:56:13:56:13 | str2 |
 | string.swift:55:3:55:3 | [post] &... | string.swift:56:13:56:13 | str2 |
 | string.swift:55:3:55:3 | str2 | string.swift:55:3:55:3 | &... |
+| string.swift:56:13:56:13 | [post] str2 | string.swift:58:3:58:3 | str2 |
 | string.swift:56:13:56:13 | str2 | string.swift:58:3:58:3 | str2 |
 | string.swift:58:3:58:3 | &... | string.swift:59:13:59:13 | str2 |
 | string.swift:58:3:58:3 | [post] &... | string.swift:59:13:59:13 | str2 |
 | string.swift:58:3:58:3 | str2 | string.swift:58:3:58:3 | &... |
+| string.swift:59:13:59:13 | [post] str2 | string.swift:69:13:69:13 | str2 |
 | string.swift:59:13:59:13 | str2 | string.swift:69:13:69:13 | str2 |
 | string.swift:61:7:61:7 | SSA def(str3) | string.swift:63:13:63:13 | str3 |
 | string.swift:61:14:61:14 | abc | string.swift:61:7:61:7 | SSA def(str3) |
+| string.swift:63:13:63:13 | [post] str3 | string.swift:65:3:65:3 | str3 |
 | string.swift:63:13:63:13 | str3 | string.swift:65:3:65:3 | str3 |
 | string.swift:65:3:65:3 | &... | string.swift:66:13:66:13 | str3 |
 | string.swift:65:3:65:3 | [post] &... | string.swift:66:13:66:13 | str3 |
 | string.swift:65:3:65:3 | str3 | string.swift:65:3:65:3 | &... |
+| string.swift:66:13:66:13 | [post] str3 | string.swift:68:3:68:3 | str3 |
 | string.swift:66:13:66:13 | str3 | string.swift:68:3:68:3 | str3 |
 | string.swift:68:3:68:3 | str3 | string.swift:68:3:68:3 | &... |
 | string.swift:73:7:73:7 | SSA def(clean) | string.swift:77:20:77:20 | clean |
@@ -895,9 +942,13 @@
 | string.swift:74:17:74:25 | call to source2() | string.swift:74:7:74:7 | SSA def(tainted) |
 | string.swift:75:7:75:7 | SSA def(taintedInt) | string.swift:79:20:79:20 | taintedInt |
 | string.swift:75:20:75:27 | call to source() | string.swift:75:7:75:7 | SSA def(taintedInt) |
+| string.swift:77:20:77:20 | [post] clean | string.swift:81:31:81:31 | clean |
 | string.swift:77:20:77:20 | clean | string.swift:81:31:81:31 | clean |
+| string.swift:78:20:78:20 | [post] tainted | string.swift:82:31:82:31 | tainted |
 | string.swift:78:20:78:20 | tainted | string.swift:82:31:82:31 | tainted |
+| string.swift:81:31:81:31 | [post] clean | string.swift:84:13:84:13 | clean |
 | string.swift:81:31:81:31 | clean | string.swift:84:13:84:13 | clean |
+| string.swift:82:31:82:31 | [post] tainted | string.swift:85:13:85:13 | tainted |
 | string.swift:82:31:82:31 | tainted | string.swift:85:13:85:13 | tainted |
 | string.swift:84:13:84:13 | [post] clean | string.swift:87:13:87:13 | clean |
 | string.swift:84:13:84:13 | clean | string.swift:84:13:84:19 | .description |

From ed1fe1447b88722b5ad138c51b8e70d44ce753ae Mon Sep 17 00:00:00 2001
From: Anders Schack-Mulligen <aschackmull@github.com>
Date: Mon, 5 Dec 2022 15:19:20 +0100
Subject: [PATCH 1032/1420] Shared: Add more precise types in TypeTracker.

---
 .../codeql/typetracking/TypeTracking.qll      | 26 ++++++++++---------
 1 file changed, 14 insertions(+), 12 deletions(-)

diff --git a/shared/typetracking/codeql/typetracking/TypeTracking.qll b/shared/typetracking/codeql/typetracking/TypeTracking.qll
index f26415be122..4a4e508c52e 100644
--- a/shared/typetracking/codeql/typetracking/TypeTracking.qll
+++ b/shared/typetracking/codeql/typetracking/TypeTracking.qll
@@ -344,7 +344,7 @@ module TypeTracking<TypeTrackingInput I> {
   }
 
   pragma[nomagic]
-  private predicate storeStepIntoSource(Node nodeFrom, Node nodeTo, Content f) {
+  private predicate storeStepIntoSource(Node nodeFrom, LocalSourceNode nodeTo, Content f) {
     if hasFeatureBacktrackStoreTarget()
     then
       exists(Node obj |
@@ -355,7 +355,9 @@ module TypeTracking<TypeTrackingInput I> {
   }
 
   pragma[nomagic]
-  private predicate loadStoreStepIntoSource(Node nodeFrom, Node nodeTo, Content f1, Content f2) {
+  private predicate loadStoreStepIntoSource(
+    Node nodeFrom, LocalSourceNode nodeTo, Content f1, Content f2
+  ) {
     if hasFeatureBacktrackStoreTarget()
     then
       exists(Node obj |
@@ -366,7 +368,7 @@ module TypeTracking<TypeTrackingInput I> {
   }
 
   pragma[nomagic]
-  private predicate smallStepNoCall(Node nodeFrom, Node nodeTo, StepSummary summary) {
+  private predicate smallStepNoCall(Node nodeFrom, LocalSourceNode nodeTo, StepSummary summary) {
     levelStepNoCall(nodeFrom, nodeTo) and summary = LevelStep()
     or
     exists(Content content |
@@ -398,7 +400,7 @@ module TypeTracking<TypeTrackingInput I> {
   }
 
   pragma[nomagic]
-  private predicate smallStepCall(Node nodeFrom, Node nodeTo, StepSummary summary) {
+  private predicate smallStepCall(Node nodeFrom, LocalSourceNode nodeTo, StepSummary summary) {
     levelStepCall(nodeFrom, nodeTo) and summary = LevelStep()
     or
     callStep(nodeFrom, nodeTo) and summary = CallStep()
@@ -407,32 +409,32 @@ module TypeTracking<TypeTrackingInput I> {
   }
 
   pragma[nomagic]
-  private predicate stepNoCall(Node nodeFrom, Node nodeTo, StepSummary summary) {
+  private predicate stepNoCall(LocalSourceNode nodeFrom, LocalSourceNode nodeTo, StepSummary summary) {
     exists(Node mid | flowsTo(nodeFrom, mid) and smallStepNoCall(mid, nodeTo, summary))
   }
 
   pragma[nomagic]
-  private predicate stepCall(Node nodeFrom, Node nodeTo, StepSummary summary) {
+  private predicate stepCall(LocalSourceNode nodeFrom, LocalSourceNode nodeTo, StepSummary summary) {
     exists(Node mid | flowsTo(nodeFrom, mid) and smallStepCall(mid, nodeTo, summary))
   }
 
   pragma[inline]
-  private predicate smallStepSplit(Node nodeFrom, Node nodeTo, StepSummary summary) {
+  private predicate smallStepSplit(Node nodeFrom, LocalSourceNode nodeTo, StepSummary summary) {
     smallStepCall(nodeFrom, nodeTo, summary) or smallStepNoCall(nodeFrom, nodeTo, summary)
   }
 
   pragma[inline]
-  private predicate stepSplit(Node nodeFrom, Node nodeTo, StepSummary summary) {
+  private predicate stepSplit(LocalSourceNode nodeFrom, LocalSourceNode nodeTo, StepSummary summary) {
     stepNoCall(nodeFrom, nodeTo, summary) or stepCall(nodeFrom, nodeTo, summary)
   }
 
   pragma[nomagic]
-  private predicate smallStep(Node nodeFrom, Node nodeTo, StepSummary summary) {
+  private predicate smallStep(Node nodeFrom, LocalSourceNode nodeTo, StepSummary summary) {
     smallStepSplit(nodeFrom, nodeTo, summary)
   }
 
   pragma[nomagic]
-  private predicate step(Node nodeFrom, Node nodeTo, StepSummary summary) {
+  private predicate step(LocalSourceNode nodeFrom, LocalSourceNode nodeTo, StepSummary summary) {
     stepSplit(nodeFrom, nodeTo, summary)
   }
 
@@ -528,7 +530,7 @@ module TypeTracking<TypeTrackingInput I> {
      * heap and/or inter-procedural step from `nodeFrom` to `nodeTo`.
      */
     bindingset[nodeFrom, this]
-    TypeTracker step(Node nodeFrom, Node nodeTo) {
+    TypeTracker step(LocalSourceNode nodeFrom, LocalSourceNode nodeTo) {
       exists(StepSummary summary |
         step(pragma[only_bind_out](nodeFrom), _, pragma[only_bind_into](summary)) and
         result = pragma[only_bind_into](pragma[only_bind_out](this)).append(summary) and
@@ -655,7 +657,7 @@ module TypeTracking<TypeTrackingInput I> {
      * heap and/or inter-procedural step from `nodeTo` to `nodeFrom`.
      */
     bindingset[nodeTo, this]
-    TypeBackTracker step(Node nodeFrom, Node nodeTo) {
+    TypeBackTracker step(LocalSourceNode nodeFrom, LocalSourceNode nodeTo) {
       exists(StepSummary summary |
         step(_, pragma[only_bind_out](nodeTo), pragma[only_bind_into](summary)) and
         result = pragma[only_bind_into](pragma[only_bind_out](this)).prepend(summary) and

From bf8084080bef58ffc84d261f68dd2bb607af7e5a Mon Sep 17 00:00:00 2001
From: Tony Torralba <atorralba@users.noreply.github.com>
Date: Mon, 5 Dec 2022 15:37:40 +0100
Subject: [PATCH 1033/1420] Apply suggestions from code review

Co-authored-by: Ben Ahmady <32935794+subatoi@users.noreply.github.com>
---
 swift/ql/src/queries/Security/CWE-022/PathInjection.qhelp | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/swift/ql/src/queries/Security/CWE-022/PathInjection.qhelp b/swift/ql/src/queries/Security/CWE-022/PathInjection.qhelp
index a4bf4170c0a..a4ec83290a1 100644
--- a/swift/ql/src/queries/Security/CWE-022/PathInjection.qhelp
+++ b/swift/ql/src/queries/Security/CWE-022/PathInjection.qhelp
@@ -18,7 +18,7 @@ such as <code>..</code>. Such a path could point to any directory on the file sy
 <li>Do not allow more than a single <code>.</code> character.</li>
 <li>Do not allow directory separators such as <code>/</code> or <code>\</code> (depending on the file system).</li>
 <li>Do not rely on simply replacing problematic sequences such as <code>../</code>. For example, after applying this filter to
-".../...//" the resulting string would still be "../".</li>
+<code>.../...//</code> the resulting string would still be <code>../</code>.</li>
 <li>Use a whitelist of known good patterns.</li>
 </ul>
 

From e7ec5a69a3ceee6bda814728e4cdd63cd932e9d5 Mon Sep 17 00:00:00 2001
From: Mathias Vorreiter Pedersen <mathiasvp@github.com>
Date: Mon, 5 Dec 2022 14:53:23 +0000
Subject: [PATCH 1034/1420] Swift: Accept more test changes.

---
 .../generated/expr/IdentityExpr/IdentityExpr_getType.expected   | 2 +-
 .../expr/ImplicitConversionExpr/ImplicitConversionExpr.expected | 2 +-
 .../ImplicitConversionExpr_getType.expected                     | 2 +-
 3 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/swift/ql/test/extractor-tests/generated/expr/IdentityExpr/IdentityExpr_getType.expected b/swift/ql/test/extractor-tests/generated/expr/IdentityExpr/IdentityExpr_getType.expected
index 025db5e1932..029023374ce 100644
--- a/swift/ql/test/extractor-tests/generated/expr/IdentityExpr/IdentityExpr_getType.expected
+++ b/swift/ql/test/extractor-tests/generated/expr/IdentityExpr/IdentityExpr_getType.expected
@@ -1,5 +1,5 @@
 | identity_expressions.swift:4:9:4:14 | .self | A |
-| identity_expressions.swift:4:9:4:21 | .self | @lvalue Int |
+| identity_expressions.swift:4:9:4:21 | .self | Int |
 | identity_expressions.swift:4:28:4:31 | (...) | (Int) |
 | identity_expressions.swift:8:5:8:9 | (...) | (A) |
 | identity_expressions.swift:11:28:11:43 | (...) | (A) |
diff --git a/swift/ql/test/extractor-tests/generated/expr/ImplicitConversionExpr/ImplicitConversionExpr.expected b/swift/ql/test/extractor-tests/generated/expr/ImplicitConversionExpr/ImplicitConversionExpr.expected
index fcc62b36775..a414cc31347 100644
--- a/swift/ql/test/extractor-tests/generated/expr/ImplicitConversionExpr/ImplicitConversionExpr.expected
+++ b/swift/ql/test/extractor-tests/generated/expr/ImplicitConversionExpr/ImplicitConversionExpr.expected
@@ -1,5 +1,5 @@
 | implicit_conversions.swift:2:3:2:3 | (UnsafePointer<CChar>) ... | StringToPointerExpr | getSubExpr: | implicit_conversions.swift:2:3:2:3 | Hello |
 | implicit_conversions.swift:4:16:4:16 | (Int?) ... | InjectIntoOptionalExpr | getSubExpr: | implicit_conversions.swift:4:16:4:16 | 42 |
 | implicit_conversions.swift:5:25:5:25 | (Equatable) ... | ErasureExpr | getSubExpr: | implicit_conversions.swift:5:25:5:25 | 42 |
-| implicit_conversions.swift:12:3:12:5 | (@lvalue (() -> Void)?) ... | AbiSafeConversionExpr | getSubExpr: | implicit_conversions.swift:12:3:12:5 | .b |
+| implicit_conversions.swift:12:3:12:5 | ((() -> Void)?) ... | AbiSafeConversionExpr | getSubExpr: | implicit_conversions.swift:12:3:12:5 | .b |
 | implicit_conversions.swift:12:9:12:10 | ((() -> Void)?) ... | InjectIntoOptionalExpr | getSubExpr: | implicit_conversions.swift:12:9:12:10 | { ... } |
diff --git a/swift/ql/test/extractor-tests/generated/expr/ImplicitConversionExpr/ImplicitConversionExpr_getType.expected b/swift/ql/test/extractor-tests/generated/expr/ImplicitConversionExpr/ImplicitConversionExpr_getType.expected
index d8dfc2cd957..a7f1b65dcbe 100644
--- a/swift/ql/test/extractor-tests/generated/expr/ImplicitConversionExpr/ImplicitConversionExpr_getType.expected
+++ b/swift/ql/test/extractor-tests/generated/expr/ImplicitConversionExpr/ImplicitConversionExpr_getType.expected
@@ -1,5 +1,5 @@
 | implicit_conversions.swift:2:3:2:3 | (UnsafePointer<CChar>) ... | UnsafePointer<CChar> |
 | implicit_conversions.swift:4:16:4:16 | (Int?) ... | Int? |
 | implicit_conversions.swift:5:25:5:25 | (Equatable) ... | Equatable |
-| implicit_conversions.swift:12:3:12:5 | (@lvalue (() -> Void)?) ... | @lvalue (() -> Void)? |
+| implicit_conversions.swift:12:3:12:5 | ((() -> Void)?) ... | (() -> Void)? |
 | implicit_conversions.swift:12:9:12:10 | ((() -> Void)?) ... | (() -> Void)? |

From 012beebe3bf93e717b10da30fc90d085807708a6 Mon Sep 17 00:00:00 2001
From: Mathias Vorreiter Pedersen <mathiasvp@github.com>
Date: Mon, 5 Dec 2022 15:02:44 +0000
Subject: [PATCH 1035/1420] Swift: Update .generated.list

---
 swift/ql/.generated.list | 1 -
 1 file changed, 1 deletion(-)

diff --git a/swift/ql/.generated.list b/swift/ql/.generated.list
index e5a221bcb09..57a071fa10b 100644
--- a/swift/ql/.generated.list
+++ b/swift/ql/.generated.list
@@ -319,7 +319,6 @@ ql/lib/codeql/swift/elements/type/GenericTypeParamType.qll 6881305d3599d5a511561
 ql/lib/codeql/swift/elements/type/GenericTypeParamTypeConstructor.qll 4265701fad1ad336be3e08e820946dcd1f119b4fa29132ae913318c784236172 d4bf5127edc0dfa4fb8758081a557b768c6e4854c9489184c7955f66b68d3148
 ql/lib/codeql/swift/elements/type/InOutType.qll d2f6be1da40e93a6d6745b467824b1e974bb64ec56378dc328cc3e864c54e433 942f46afd617151783c79c69d96234aa4ca5741084b12b3d8349338cebb99cc2
 ql/lib/codeql/swift/elements/type/InOutTypeConstructor.qll c4889f1009018a55d0ac18c5f2a006572ac6de1f57633adc904e8a2046c09e83 8a2496df02e9f5fcb07331165cee64f97dd40dc4b4f8f32eacaf395c7c014a99
-ql/lib/codeql/swift/elements/type/LValueType.qll 60a55935763564f2fa7a5ca71af5ac59914289435d2385aee9a01e5d161b1600 daa1eacb13397c20fe3c092e4b7f7f5798da43005bad61c0fef2b18357770b01
 ql/lib/codeql/swift/elements/type/LValueTypeConstructor.qll e426dac8fce60f9bbd6aa12b8e33230c405c9c773046226c948bc9791e03c911 4d495938b0eb604033cea8ff105854c0c9917dbad59bb47a8751fc12d7554bdd
 ql/lib/codeql/swift/elements/type/MetatypeType.qll 5d2995b2269ec118daf81268cca62beaa4189e65cae32ef7ec83b9129858cef8 34c021dc051d5d80410cd7aa25b45ccd2d7b267b2bbcb92f4249f528f524c5d8
 ql/lib/codeql/swift/elements/type/MetatypeTypeConstructor.qll 5dfa528a0c849afa46ad08c4c92e47c3bc3418abb7674e94a0d36bc0e45d5686 6b95579b99e4cdd53cc95d9288ecbdb07ef268e5344e467336d89adddb7cc853

From 7972db68bcfd4de7fc6e911053764cc1dc29e041 Mon Sep 17 00:00:00 2001
From: Tom Hvitved <hvitved@github.com>
Date: Mon, 5 Dec 2022 15:27:58 +0100
Subject: [PATCH 1036/1420] C++: Update expected test output

---
 .../dataflow/dataflow-tests/dataflow-consistency.expected     | 2 ++
 .../dataflow/dataflow-tests/dataflow-ir-consistency.expected  | 2 ++
 .../dataflow/fields/dataflow-consistency.expected             | 2 ++
 .../dataflow/fields/dataflow-ir-consistency.expected          | 2 ++
 .../library-tests/syntax-zoo/dataflow-consistency.expected    | 2 ++
 .../library-tests/syntax-zoo/dataflow-ir-consistency.expected | 4 ++++
 6 files changed, 14 insertions(+)

diff --git a/cpp/ql/test/library-tests/dataflow/dataflow-tests/dataflow-consistency.expected b/cpp/ql/test/library-tests/dataflow/dataflow-tests/dataflow-consistency.expected
index 8c15a1cbcb9..948a1ed7cf9 100644
--- a/cpp/ql/test/library-tests/dataflow/dataflow-tests/dataflow-consistency.expected
+++ b/cpp/ql/test/library-tests/dataflow/dataflow-tests/dataflow-consistency.expected
@@ -93,3 +93,5 @@ postWithInFlow
 | test.cpp:499:4:499:4 | p [inner post update] | PostUpdateNode should not be the target of local flow. |
 | test.cpp:505:35:505:35 | x [inner post update] | PostUpdateNode should not be the target of local flow. |
 viableImplInCallContextTooLarge
+uniqueParameterNodeAtPosition
+uniqueParameterNodePosition
diff --git a/cpp/ql/test/library-tests/dataflow/dataflow-tests/dataflow-ir-consistency.expected b/cpp/ql/test/library-tests/dataflow/dataflow-tests/dataflow-ir-consistency.expected
index ea2f4ae0d29..90e2d6f31d5 100644
--- a/cpp/ql/test/library-tests/dataflow/dataflow-tests/dataflow-ir-consistency.expected
+++ b/cpp/ql/test/library-tests/dataflow/dataflow-tests/dataflow-ir-consistency.expected
@@ -637,3 +637,5 @@ postWithInFlow
 | true_upon_entry.cpp:101:18:101:18 | VariableAddress [post update] | PostUpdateNode should not be the target of local flow. |
 | true_upon_entry.cpp:102:5:102:5 | x [post update] | PostUpdateNode should not be the target of local flow. |
 viableImplInCallContextTooLarge
+uniqueParameterNodeAtPosition
+uniqueParameterNodePosition
diff --git a/cpp/ql/test/library-tests/dataflow/fields/dataflow-consistency.expected b/cpp/ql/test/library-tests/dataflow/fields/dataflow-consistency.expected
index 8a9e15049fc..e8d3ee839dc 100644
--- a/cpp/ql/test/library-tests/dataflow/fields/dataflow-consistency.expected
+++ b/cpp/ql/test/library-tests/dataflow/fields/dataflow-consistency.expected
@@ -158,3 +158,5 @@ postWithInFlow
 | struct_init.c:24:11:24:12 | ab [inner post update] | PostUpdateNode should not be the target of local flow. |
 | struct_init.c:36:17:36:24 | nestedAB [inner post update] | PostUpdateNode should not be the target of local flow. |
 viableImplInCallContextTooLarge
+uniqueParameterNodeAtPosition
+uniqueParameterNodePosition
diff --git a/cpp/ql/test/library-tests/dataflow/fields/dataflow-ir-consistency.expected b/cpp/ql/test/library-tests/dataflow/fields/dataflow-ir-consistency.expected
index c1b3d0c66b7..7841e662585 100644
--- a/cpp/ql/test/library-tests/dataflow/fields/dataflow-ir-consistency.expected
+++ b/cpp/ql/test/library-tests/dataflow/fields/dataflow-ir-consistency.expected
@@ -1326,3 +1326,5 @@ postWithInFlow
 | struct_init.c:46:16:46:24 | pointerAB [post update] | PostUpdateNode should not be the target of local flow. |
 | struct_init.c:46:16:46:24 | pointerAB [post update] | PostUpdateNode should not be the target of local flow. |
 viableImplInCallContextTooLarge
+uniqueParameterNodeAtPosition
+uniqueParameterNodePosition
diff --git a/cpp/ql/test/library-tests/syntax-zoo/dataflow-consistency.expected b/cpp/ql/test/library-tests/syntax-zoo/dataflow-consistency.expected
index 1980b113311..3c0812213c3 100644
--- a/cpp/ql/test/library-tests/syntax-zoo/dataflow-consistency.expected
+++ b/cpp/ql/test/library-tests/syntax-zoo/dataflow-consistency.expected
@@ -127,3 +127,5 @@ postWithInFlow
 | static_init_templates.cpp:21:2:21:4 | val [post update] | PostUpdateNode should not be the target of local flow. |
 | try_catch.cpp:7:8:7:8 | call to exception | PostUpdateNode should not be the target of local flow. |
 viableImplInCallContextTooLarge
+uniqueParameterNodeAtPosition
+uniqueParameterNodePosition
diff --git a/cpp/ql/test/library-tests/syntax-zoo/dataflow-ir-consistency.expected b/cpp/ql/test/library-tests/syntax-zoo/dataflow-ir-consistency.expected
index 26abe41c33f..e8b6e1048c6 100644
--- a/cpp/ql/test/library-tests/syntax-zoo/dataflow-ir-consistency.expected
+++ b/cpp/ql/test/library-tests/syntax-zoo/dataflow-ir-consistency.expected
@@ -2713,3 +2713,7 @@ postWithInFlow
 | whilestmt.c:40:7:40:7 | VariableAddress [post update] | PostUpdateNode should not be the target of local flow. |
 | whilestmt.c:42:7:42:7 | VariableAddress [post update] | PostUpdateNode should not be the target of local flow. |
 viableImplInCallContextTooLarge
+uniqueParameterNodeAtPosition
+| ir.cpp:724:6:724:13 | TryCatch | 0 | ir.cpp:735:22:735:22 | *s | Parameters with overlapping positions. |
+| ir.cpp:724:6:724:13 | TryCatch | 0 | ir.cpp:738:24:738:24 | *e | Parameters with overlapping positions. |
+uniqueParameterNodePosition

From 407e4cdd07e93ad076db556e06a67698dcdf3db0 Mon Sep 17 00:00:00 2001
From: Chris Smowton <smowton@github.com>
Date: Mon, 5 Dec 2022 16:04:50 +0000
Subject: [PATCH 1037/1420] Don't create a default constructor for annotations,
 or classes that explicitly declare a no-arg constructor.

---
 .../src/main/kotlin/KotlinFileExtractor.kt               | 9 ++++++++-
 .../kotlin/jvmoverloads-external-class/User.java         | 3 ++-
 .../kotlin/jvmoverloads-external-class/test.kt           | 8 ++++++++
 3 files changed, 18 insertions(+), 2 deletions(-)

diff --git a/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt b/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt
index 19a59385b7b..e47946c15b7 100644
--- a/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt
+++ b/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt
@@ -1095,7 +1095,14 @@ open class KotlinFileExtractor(
         }
 
         if (!f.hasAnnotation(jvmOverloadsFqName)) {
-            if (f is IrConstructor && f.valueParameters.isNotEmpty() && f.valueParameters.all { it.defaultValue != null }) {
+            if (f is IrConstructor &&
+                f.valueParameters.isNotEmpty() &&
+                f.valueParameters.all { it.defaultValue != null } &&
+                f.parentClassOrNull?.let {
+                    // Don't create a default constructor for an annotation class, or a class that explicitly declares a no-arg constructor.
+                    !it.isAnnotationClass &&
+                    it.declarations.none { d -> d is IrConstructor && d.valueParameters.isEmpty() }
+                } == true) {
                 // Per https://kotlinlang.org/docs/classes.html#creating-instances-of-classes, a single default overload gets created specifically
                 // when we have all default parameters, regardless of `@JvmOverloads`.
                 extractGeneratedOverload(f.valueParameters.map { _ -> null })
diff --git a/java/ql/integration-tests/all-platforms/kotlin/jvmoverloads-external-class/User.java b/java/ql/integration-tests/all-platforms/kotlin/jvmoverloads-external-class/User.java
index abe5b4e0092..c3356f588d5 100644
--- a/java/ql/integration-tests/all-platforms/kotlin/jvmoverloads-external-class/User.java
+++ b/java/ql/integration-tests/all-platforms/kotlin/jvmoverloads-external-class/User.java
@@ -1,5 +1,6 @@
+@AllDefaultsAnnotation
 public class User {
 
-  public static void test() { new AllDefaultsConstructor(); }
+  public static void test() { new AllDefaultsConstructor(); new AllDefaultsExplicitNoargConstructor(); }
 
 }
diff --git a/java/ql/integration-tests/all-platforms/kotlin/jvmoverloads-external-class/test.kt b/java/ql/integration-tests/all-platforms/kotlin/jvmoverloads-external-class/test.kt
index 0d155020de5..33e6d1d1221 100644
--- a/java/ql/integration-tests/all-platforms/kotlin/jvmoverloads-external-class/test.kt
+++ b/java/ql/integration-tests/all-platforms/kotlin/jvmoverloads-external-class/test.kt
@@ -5,3 +5,11 @@ public class Test {
 }
 
 public class AllDefaultsConstructor(val x: Int = 1, val y: Int = 2) { }
+
+public annotation class AllDefaultsAnnotation(val x: Int = 1, val y: Int = 2) { }
+
+public class AllDefaultsExplicitNoargConstructor(val x: Int = 1, val y: Int = 2) {
+
+  constructor() : this(3, 4) { }
+
+}

From 731419fc807a5e3f92cc1d2ea536f4e2e4f527bb Mon Sep 17 00:00:00 2001
From: Nick Rolfe <nickrolfe@github.com>
Date: Mon, 5 Dec 2022 16:47:15 +0000
Subject: [PATCH 1038/1420] Remove reference to query console

Co-authored-by: Felicity Chapman <felicitymay@github.com>
---
 .../writing-codeql-queries/defining-the-results-of-a-query.rst  | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/docs/codeql/writing-codeql-queries/defining-the-results-of-a-query.rst b/docs/codeql/writing-codeql-queries/defining-the-results-of-a-query.rst
index 9e49f464835..1cf0a31289b 100644
--- a/docs/codeql/writing-codeql-queries/defining-the-results-of-a-query.rst
+++ b/docs/codeql/writing-codeql-queries/defining-the-results-of-a-query.rst
@@ -9,7 +9,7 @@ About query results
 -------------------
 
 The information contained in the results of a query is controlled by the ``select`` statement. Part of the process of developing a useful query is to make the results clear and easy for other users to understand.
-When you write your own queries in the query console or in the CodeQL :ref:`extension for VS Code <codeql-for-visual-studio-code>` there are no constraints on what can be selected.
+When you write your own queries in the CodeQL :ref:`extension for VS Code <codeql-for-visual-studio-code>` there are no constraints on what can be selected.
 However, if you want to use a query to create alerts for code scanning or generate valid analysis results using the :ref:`CodeQL CLI <codeql-cli>`, you'll need to make the ``select`` statement report results in the required format. 
 You must also ensure that the query has the appropriate metadata properties defined. 
 This topic explains how to write your select statement to generate helpful analysis results. 

From 9c27cc0abe5bcc734268ef0a230275c96e845264 Mon Sep 17 00:00:00 2001
From: Henry Mercer <henrymercer@github.com>
Date: Mon, 5 Dec 2022 18:44:16 +0000
Subject: [PATCH 1039/1420] Add a script to check for duplicate query IDs

---
 misc/scripts/check-query-ids.py | 44 +++++++++++++++++++++++++++++++++
 1 file changed, 44 insertions(+)
 create mode 100644 misc/scripts/check-query-ids.py

diff --git a/misc/scripts/check-query-ids.py b/misc/scripts/check-query-ids.py
new file mode 100644
index 00000000000..aa06ae3a6a5
--- /dev/null
+++ b/misc/scripts/check-query-ids.py
@@ -0,0 +1,44 @@
+from pathlib import Path
+import re
+import sys
+from typing import Dict, List, Optional
+
+ID = re.compile(r" +\* +@id\s*(.*)")
+
+def get_query_id(query_path: Path) -> Optional[str]:
+    with open(query_path) as f:
+        for line in f:
+            m = ID.match(line)
+            if m:
+                return m.group(1)
+        return None
+
+def main():
+    # Map query IDs to paths of queries with those IDs. We want to check that this is a 1:1 map.
+    query_ids: Dict[str, List[str]] = {}
+
+    # Just check src folders for now to avoid churn
+    for query_path in Path().glob("**/src/**/*.ql"):
+        # Skip compiled query packs
+        if any(p == ".codeql" for p in query_path.parts):
+            continue
+        query_id = get_query_id(query_path)
+        if query_id is not None:
+            query_ids.setdefault(query_id, []).append(str(query_path))
+
+    fail = False
+    for query_id, query_paths in query_ids.items():
+        if len(query_paths) > 1:
+            fail = True
+            print(f"Query ID {query_id} is used in multiple queries:")
+            for query_path in query_paths:
+                print(f" - {query_path}")
+
+    if fail:
+        print("FAIL: duplicate query IDs found in src folders. Please assign these queries unique IDs.")
+        sys.exit(1)
+    else:
+        print("PASS: no duplicate query IDs found in src folders.")
+
+if __name__ == "__main__":
+    main()

From 6484935d257ce4f34eadd3c00b3da7913fd28bc8 Mon Sep 17 00:00:00 2001
From: Henry Mercer <henrymercer@github.com>
Date: Mon, 5 Dec 2022 18:46:53 +0000
Subject: [PATCH 1040/1420] Add CI job for check query IDs script

---
 .github/workflows/check-query-ids.yml | 21 +++++++++++++++++++++
 1 file changed, 21 insertions(+)
 create mode 100644 .github/workflows/check-query-ids.yml

diff --git a/.github/workflows/check-query-ids.yml b/.github/workflows/check-query-ids.yml
new file mode 100644
index 00000000000..9ce9ed5ba85
--- /dev/null
+++ b/.github/workflows/check-query-ids.yml
@@ -0,0 +1,21 @@
+name: Check query IDs
+
+on:
+  pull_request:
+    paths:
+      - "**/src/**/*.ql"
+      - misc/scripts/check-query-ids.py
+      - .github/workflows/check-query-ids.yml
+    branches:
+      - main
+      - "rc/*"
+  workflow_dispatch:
+
+jobs:
+  check:
+    name: Check query IDs
+    runs-on: ubuntu-latest
+    steps:
+      - uses: actions/checkout@v3
+      - name: Check for duplicate query IDs
+        run: python3 misc/scripts/check-query-ids.py

From 5b040a9476b8d45dcb7b2111274cdeb01d252f7e Mon Sep 17 00:00:00 2001
From: Henry Mercer <henrymercer@github.com>
Date: Mon, 5 Dec 2022 18:55:25 +0000
Subject: [PATCH 1041/1420] Python: Fix duplicate query IDs

---
 .../Security/CWE-022bis/{TarSlip.qhelp => TarSlipImprov.qhelp}  | 0
 python/ql/src/experimental/Security/CWE-022bis/TarSlipImprov.ql | 2 +-
 python/ql/src/experimental/Security/CWE-079/ReflectedXSS.ql     | 2 +-
 3 files changed, 2 insertions(+), 2 deletions(-)
 rename python/ql/src/experimental/Security/CWE-022bis/{TarSlip.qhelp => TarSlipImprov.qhelp} (100%)

diff --git a/python/ql/src/experimental/Security/CWE-022bis/TarSlip.qhelp b/python/ql/src/experimental/Security/CWE-022bis/TarSlipImprov.qhelp
similarity index 100%
rename from python/ql/src/experimental/Security/CWE-022bis/TarSlip.qhelp
rename to python/ql/src/experimental/Security/CWE-022bis/TarSlipImprov.qhelp
diff --git a/python/ql/src/experimental/Security/CWE-022bis/TarSlipImprov.ql b/python/ql/src/experimental/Security/CWE-022bis/TarSlipImprov.ql
index e614c1a3d78..80462fc91c0 100755
--- a/python/ql/src/experimental/Security/CWE-022bis/TarSlipImprov.ql
+++ b/python/ql/src/experimental/Security/CWE-022bis/TarSlipImprov.ql
@@ -4,7 +4,7 @@
  *              destination file path is within the destination directory can cause files outside
  *              the destination directory to be overwritten.
  * @kind path-problem
- * @id py/tarslip
+ * @id py/tarslip-extended
  * @problem.severity error
  * @security-severity 7.5
  * @precision high
diff --git a/python/ql/src/experimental/Security/CWE-079/ReflectedXSS.ql b/python/ql/src/experimental/Security/CWE-079/ReflectedXSS.ql
index 008650c86e7..46382ad296d 100644
--- a/python/ql/src/experimental/Security/CWE-079/ReflectedXSS.ql
+++ b/python/ql/src/experimental/Security/CWE-079/ReflectedXSS.ql
@@ -6,7 +6,7 @@
  * @problem.severity error
  * @security-severity 2.9
  * @sub-severity high
- * @id py/reflective-xss
+ * @id py/reflective-xss-email
  * @tags security
  *       external/cwe/cwe-079
  *       external/cwe/cwe-116

From 2627632a419cee1f28f5e4fdf7d41e3b6e7e1dc7 Mon Sep 17 00:00:00 2001
From: Henry Mercer <henrymercer@github.com>
Date: Mon, 5 Dec 2022 18:56:32 +0000
Subject: [PATCH 1042/1420] Java: Fix duplicate IDs

---
 config/identical-files.json                   |  4 ++
 .../CWE-400/LocalThreadResourceAbuse.qhelp    | 48 +++++++++++++++++++
 .../CWE/CWE-400/LocalThreadResourceAbuse.ql   |  2 +-
 3 files changed, 53 insertions(+), 1 deletion(-)
 create mode 100644 java/ql/src/experimental/Security/CWE/CWE-400/LocalThreadResourceAbuse.qhelp

diff --git a/config/identical-files.json b/config/identical-files.json
index 0a5d037e226..06bbf55a341 100644
--- a/config/identical-files.json
+++ b/config/identical-files.json
@@ -580,5 +580,9 @@
   "IncompleteMultiCharacterSanitization JS/Ruby": [
     "javascript/ql/lib/semmle/javascript/security/IncompleteMultiCharacterSanitizationQuery.qll",
     "ruby/ql/lib/codeql/ruby/security/IncompleteMultiCharacterSanitizationQuery.qll"
+  ],
+  "ThreadResourceAbuse help": [
+    "java/ql/src/experimental/Security/CWE/CWE-400/LocalThreadResourceAbuse.qhelp",
+    "java/ql/src/experimental/Security/CWE/CWE-400/ThreadResourceAbuse.qhelp"
   ]
 }
diff --git a/java/ql/src/experimental/Security/CWE/CWE-400/LocalThreadResourceAbuse.qhelp b/java/ql/src/experimental/Security/CWE/CWE-400/LocalThreadResourceAbuse.qhelp
new file mode 100644
index 00000000000..bf0c2d4ef2f
--- /dev/null
+++ b/java/ql/src/experimental/Security/CWE/CWE-400/LocalThreadResourceAbuse.qhelp
@@ -0,0 +1,48 @@
+<!DOCTYPE qhelp PUBLIC
+  "-//Semmle//qhelp//EN"
+  "qhelp.dtd">
+<qhelp>
+
+
+<overview>
+<p>The <code>Thread.sleep</code> method is used to pause the execution of current thread for 
+specified time. When the sleep time is user-controlled, especially in the web application context, 
+it can be abused to cause all of a server's threads to sleep, leading to denial of service.</p>
+</overview>
+
+<recommendation>
+<p>To guard against this attack, consider specifying an upper range of allowed sleep time or adopting
+the producer/consumer design pattern with <code>Object.wait</code> method to avoid performance 
+problems or even resource exhaustion. For more information, refer to the concurrency tutorial of Oracle
+listed below or <code>java/ql/src/Likely Bugs/Concurrency</code> queries of CodeQL.</p>
+</recommendation>
+
+<example>
+<p>The following example shows a bad situation and a good situation respectively. In the bad situation,
+a thread sleep time comes directly from user input. In the good situation, an upper 
+range check on the maximum sleep time allowed is enforced.</p>
+<sample src="ThreadResourceAbuse.java" />
+</example>
+
+<references>
+<li>
+Snyk:
+<a href="https://snyk.io/vuln/SNYK-JAVA-COMGOOGLECODEGWTUPLOAD-569506">Denial of Service (DoS)
+in com.googlecode.gwtupload:gwtupload</a>.
+</li>
+<li>
+gwtupload:
+<a href="https://github.com/manolo/gwtupload/issues/33">[Fix DOS issue] Updating the 
+AbstractUploadListener.java file</a>.
+</li>
+<li>
+The blog of a gypsy engineer:
+<a href="https://blog.gypsyengineer.com/en/security/cve-2019-17555-dos-via-retry-after-header-in-apache-olingo.html">
+CVE-2019-17555: DoS via Retry-After header in Apache Olingo</a>.
+</li>
+<li>
+Oracle:
+<a href="https://docs.oracle.com/javase/tutorial/essential/concurrency/guardmeth.html">The Java Concurrency Tutorials</a>
+</li>
+</references>
+</qhelp>
diff --git a/java/ql/src/experimental/Security/CWE/CWE-400/LocalThreadResourceAbuse.ql b/java/ql/src/experimental/Security/CWE/CWE-400/LocalThreadResourceAbuse.ql
index 3c3c58da449..f66235994b0 100644
--- a/java/ql/src/experimental/Security/CWE/CWE-400/LocalThreadResourceAbuse.ql
+++ b/java/ql/src/experimental/Security/CWE/CWE-400/LocalThreadResourceAbuse.ql
@@ -3,7 +3,7 @@
  * @description Using user input directly to control a thread's sleep time could lead to
  *              performance problems or even resource exhaustion.
  * @kind path-problem
- * @id java/thread-resource-abuse
+ * @id java/local-thread-resource-abuse
  * @problem.severity recommendation
  * @tags security
  *       external/cwe/cwe-400

From 6dbc59d5b5ce7ba58350128a24709ce767c81285 Mon Sep 17 00:00:00 2001
From: Jeroen Ketema <jketema@github.com>
Date: Mon, 5 Dec 2022 23:23:08 +0100
Subject: [PATCH 1043/1420] C++: Simplify `isSink` based on reviewer comments

---
 cpp/ql/src/Security/CWE/CWE-022/TaintedPath.ql      | 11 +++--------
 .../CWE-022/SAMATE/TaintedPath/TaintedPath.expected |  4 +---
 .../CWE/CWE-022/semmle/tests/TaintedPath.expected   | 13 +++----------
 3 files changed, 7 insertions(+), 21 deletions(-)

diff --git a/cpp/ql/src/Security/CWE/CWE-022/TaintedPath.ql b/cpp/ql/src/Security/CWE/CWE-022/TaintedPath.ql
index f15a9bb1ad2..3003a8c281a 100644
--- a/cpp/ql/src/Security/CWE/CWE-022/TaintedPath.ql
+++ b/cpp/ql/src/Security/CWE/CWE-022/TaintedPath.ql
@@ -54,8 +54,6 @@ Expr asSourceExpr(DataFlow::Node node) {
 }
 
 Expr asSinkExpr(DataFlow::Node node) {
-  result = node.asConvertedExpr()
-  or
   result =
     node.asOperand()
         .(SideEffectOperand)
@@ -113,14 +111,11 @@ class TaintedPathConfiguration extends TaintTracking::Configuration {
 
   predicate hasFilteredFlowPath(DataFlow::PathNode source, DataFlow::PathNode sink) {
     this.hasFlowPath(source, sink) and
-    not exists(DataFlow::PathNode source2, DataFlow::PathNode sink2 |
-      this.hasFlowPath(source2, sink2) and
-      asSourceExpr(source.getNode()) = asSourceExpr(source2.getNode()) and
-      asSinkExpr(sink.getNode()) = asSinkExpr(sink2.getNode())
+    not exists(DataFlow::PathNode source2 |
+      this.hasFlowPath(source2, sink) and
+      asSourceExpr(source.getNode()) = asSourceExpr(source2.getNode())
     |
       not exists(source.getNode().asConvertedExpr()) and exists(source2.getNode().asConvertedExpr())
-      or
-      not exists(sink.getNode().asConvertedExpr()) and exists(sink2.getNode().asConvertedExpr())
     )
   }
 }
diff --git a/cpp/ql/test/query-tests/Security/CWE/CWE-022/SAMATE/TaintedPath/TaintedPath.expected b/cpp/ql/test/query-tests/Security/CWE/CWE-022/SAMATE/TaintedPath/TaintedPath.expected
index d9ed395e45a..a4f42c91796 100644
--- a/cpp/ql/test/query-tests/Security/CWE/CWE-022/SAMATE/TaintedPath/TaintedPath.expected
+++ b/cpp/ql/test/query-tests/Security/CWE/CWE-022/SAMATE/TaintedPath/TaintedPath.expected
@@ -1,10 +1,8 @@
 edges
-| CWE23_Relative_Path_Traversal__char_console_fopen_11.cpp:55:27:55:38 | fgets output argument | CWE23_Relative_Path_Traversal__char_console_fopen_11.cpp:77:23:77:26 | data |
 | CWE23_Relative_Path_Traversal__char_console_fopen_11.cpp:55:27:55:38 | fgets output argument | CWE23_Relative_Path_Traversal__char_console_fopen_11.cpp:77:23:77:26 | data indirection |
 nodes
 | CWE23_Relative_Path_Traversal__char_console_fopen_11.cpp:55:27:55:38 | fgets output argument | semmle.label | fgets output argument |
-| CWE23_Relative_Path_Traversal__char_console_fopen_11.cpp:77:23:77:26 | data | semmle.label | data |
 | CWE23_Relative_Path_Traversal__char_console_fopen_11.cpp:77:23:77:26 | data indirection | semmle.label | data indirection |
 subpaths
 #select
-| CWE23_Relative_Path_Traversal__char_console_fopen_11.cpp:77:23:77:26 | data | CWE23_Relative_Path_Traversal__char_console_fopen_11.cpp:55:27:55:38 | fgets output argument | CWE23_Relative_Path_Traversal__char_console_fopen_11.cpp:77:23:77:26 | data | This argument to a file access function is derived from $@ and then passed to fopen(filename). | CWE23_Relative_Path_Traversal__char_console_fopen_11.cpp:55:27:55:38 | ... + ... | user input (fgets) |
+| CWE23_Relative_Path_Traversal__char_console_fopen_11.cpp:77:23:77:26 | data | CWE23_Relative_Path_Traversal__char_console_fopen_11.cpp:55:27:55:38 | fgets output argument | CWE23_Relative_Path_Traversal__char_console_fopen_11.cpp:77:23:77:26 | data indirection | This argument to a file access function is derived from $@ and then passed to fopen(filename). | CWE23_Relative_Path_Traversal__char_console_fopen_11.cpp:55:27:55:38 | ... + ... | user input (fgets) |
diff --git a/cpp/ql/test/query-tests/Security/CWE/CWE-022/semmle/tests/TaintedPath.expected b/cpp/ql/test/query-tests/Security/CWE/CWE-022/semmle/tests/TaintedPath.expected
index 33f4a4b9d75..2306a3dc384 100644
--- a/cpp/ql/test/query-tests/Security/CWE/CWE-022/semmle/tests/TaintedPath.expected
+++ b/cpp/ql/test/query-tests/Security/CWE/CWE-022/semmle/tests/TaintedPath.expected
@@ -1,31 +1,24 @@
 edges
-| test.c:9:23:9:26 | argv | test.c:17:11:17:18 | fileName |
 | test.c:9:23:9:26 | argv | test.c:17:11:17:18 | fileName indirection |
-| test.c:31:22:31:25 | argv | test.c:32:11:32:18 | fileName |
 | test.c:31:22:31:25 | argv | test.c:32:11:32:18 | fileName indirection |
 | test.c:37:17:37:24 | fileName | test.c:38:11:38:18 | fileName indirection |
 | test.c:37:17:37:24 | scanf output argument | test.c:38:11:38:18 | fileName indirection |
-| test.c:43:17:43:24 | fileName | test.c:44:11:44:18 | fileName |
 | test.c:43:17:43:24 | fileName | test.c:44:11:44:18 | fileName indirection |
-| test.c:43:17:43:24 | scanf output argument | test.c:44:11:44:18 | fileName |
 | test.c:43:17:43:24 | scanf output argument | test.c:44:11:44:18 | fileName indirection |
 nodes
 | test.c:9:23:9:26 | argv | semmle.label | argv |
-| test.c:17:11:17:18 | fileName | semmle.label | fileName |
 | test.c:17:11:17:18 | fileName indirection | semmle.label | fileName indirection |
 | test.c:31:22:31:25 | argv | semmle.label | argv |
-| test.c:32:11:32:18 | fileName | semmle.label | fileName |
 | test.c:32:11:32:18 | fileName indirection | semmle.label | fileName indirection |
 | test.c:37:17:37:24 | fileName | semmle.label | fileName |
 | test.c:37:17:37:24 | scanf output argument | semmle.label | scanf output argument |
 | test.c:38:11:38:18 | fileName indirection | semmle.label | fileName indirection |
 | test.c:43:17:43:24 | fileName | semmle.label | fileName |
 | test.c:43:17:43:24 | scanf output argument | semmle.label | scanf output argument |
-| test.c:44:11:44:18 | fileName | semmle.label | fileName |
 | test.c:44:11:44:18 | fileName indirection | semmle.label | fileName indirection |
 subpaths
 #select
-| test.c:17:11:17:18 | fileName | test.c:9:23:9:26 | argv | test.c:17:11:17:18 | fileName | This argument to a file access function is derived from $@ and then passed to fopen(filename). | test.c:9:23:9:26 | argv | user input (argv) |
-| test.c:32:11:32:18 | fileName | test.c:31:22:31:25 | argv | test.c:32:11:32:18 | fileName | This argument to a file access function is derived from $@ and then passed to fopen(filename). | test.c:31:22:31:25 | argv | user input (argv) |
+| test.c:17:11:17:18 | fileName | test.c:9:23:9:26 | argv | test.c:17:11:17:18 | fileName indirection | This argument to a file access function is derived from $@ and then passed to fopen(filename). | test.c:9:23:9:26 | argv | user input (argv) |
+| test.c:32:11:32:18 | fileName | test.c:31:22:31:25 | argv | test.c:32:11:32:18 | fileName indirection | This argument to a file access function is derived from $@ and then passed to fopen(filename). | test.c:31:22:31:25 | argv | user input (argv) |
 | test.c:38:11:38:18 | fileName | test.c:37:17:37:24 | fileName | test.c:38:11:38:18 | fileName indirection | This argument to a file access function is derived from $@ and then passed to fopen(filename). | test.c:37:17:37:24 | fileName | user input (scanf) |
-| test.c:44:11:44:18 | fileName | test.c:43:17:43:24 | fileName | test.c:44:11:44:18 | fileName | This argument to a file access function is derived from $@ and then passed to fopen(filename). | test.c:43:17:43:24 | fileName | user input (scanf) |
+| test.c:44:11:44:18 | fileName | test.c:43:17:43:24 | fileName | test.c:44:11:44:18 | fileName indirection | This argument to a file access function is derived from $@ and then passed to fopen(filename). | test.c:43:17:43:24 | fileName | user input (scanf) |

From 82c0449d56ea1a276570c09471ddd751c4fc7fea Mon Sep 17 00:00:00 2001
From: Ethan Willoner <ethanwilloner@users.noreply.github.com>
Date: Tue, 6 Dec 2022 00:01:17 +0000
Subject: [PATCH 1044/1420] Fix bug: In OwinRequest URI should be Uri.

---
 csharp/ql/lib/semmle/code/csharp/frameworks/microsoft/Owin.qll | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/csharp/ql/lib/semmle/code/csharp/frameworks/microsoft/Owin.qll b/csharp/ql/lib/semmle/code/csharp/frameworks/microsoft/Owin.qll
index 331e89b1bb8..5f55a77d96b 100644
--- a/csharp/ql/lib/semmle/code/csharp/frameworks/microsoft/Owin.qll
+++ b/csharp/ql/lib/semmle/code/csharp/frameworks/microsoft/Owin.qll
@@ -121,7 +121,7 @@ class MicrosoftOwinIOwinRequestClass extends Class {
   /** Gets the `URI` property. */
   Property getUriProperty() {
     result = this.getAProperty() and
-    result.hasName("URI")
+    result.hasName("Uri")
   }
 
   /** DEPRECATED: Alias for getUriProperty */

From b886157f52e5641e1fa84bc241d8f869713e1a2d Mon Sep 17 00:00:00 2001
From: Ethan Willoner <ethanwilloner@users.noreply.github.com>
Date: Tue, 6 Dec 2022 00:27:17 +0000
Subject: [PATCH 1045/1420] Add change note.

---
 csharp/ql/src/change-notes/2022-12-05-owin-uri-fix.md. | 4 ++++
 1 file changed, 4 insertions(+)
 create mode 100644 csharp/ql/src/change-notes/2022-12-05-owin-uri-fix.md.

diff --git a/csharp/ql/src/change-notes/2022-12-05-owin-uri-fix.md. b/csharp/ql/src/change-notes/2022-12-05-owin-uri-fix.md.
new file mode 100644
index 00000000000..44c50cb1305
--- /dev/null
+++ b/csharp/ql/src/change-notes/2022-12-05-owin-uri-fix.md.
@@ -0,0 +1,4 @@
+---
+category: fix
+---
+* Fixes a bug where the Owin.qll framework library will look for "URI" instead of "Uri" in the OwinRequest class.
\ No newline at end of file

From 5637d573c1f8acead4f770ee32ae5a7e62025aa8 Mon Sep 17 00:00:00 2001
From: Jeroen Ketema <jketema@github.com>
Date: Tue, 6 Dec 2022 08:29:27 +0100
Subject: [PATCH 1046/1420] C++: Add test case that is no longer detected after
 latest changes

---
 .../Security/CWE/CWE-022/semmle/tests/stdlib.h        |  2 +-
 .../Security/CWE/CWE-022/semmle/tests/test.c          | 11 ++++++++++-
 2 files changed, 11 insertions(+), 2 deletions(-)

diff --git a/cpp/ql/test/query-tests/Security/CWE/CWE-022/semmle/tests/stdlib.h b/cpp/ql/test/query-tests/Security/CWE/CWE-022/semmle/tests/stdlib.h
index 8ef60116657..5b6483480f7 100644
--- a/cpp/ql/test/query-tests/Security/CWE/CWE-022/semmle/tests/stdlib.h
+++ b/cpp/ql/test/query-tests/Security/CWE/CWE-022/semmle/tests/stdlib.h
@@ -6,7 +6,6 @@
 typedef struct {} FILE;
 #define FILENAME_MAX 1000
 typedef unsigned long size_t;
-#define NULL ((void*)0)
 
 FILE *fopen(const char *filename, const char *mode);
 int sprintf(char *s, const char *format, ...);
@@ -15,3 +14,4 @@ char *strncat(char *s1, const char *s2, size_t n);
 int scanf(const char *format, ...);
 void *malloc(size_t size);
 double strtod(const char *ptr, char **endptr);
+char *getenv(const char *name);
diff --git a/cpp/ql/test/query-tests/Security/CWE/CWE-022/semmle/tests/test.c b/cpp/ql/test/query-tests/Security/CWE/CWE-022/semmle/tests/test.c
index 198037d6b52..a11fd73edd7 100644
--- a/cpp/ql/test/query-tests/Security/CWE/CWE-022/semmle/tests/test.c
+++ b/cpp/ql/test/query-tests/Security/CWE/CWE-022/semmle/tests/test.c
@@ -39,7 +39,7 @@ int main(int argc, char** argv) {
   }
 
   {
-    char *fileName = malloc(20 * sizeof(char));
+    char *fileName = (char*)malloc(20 * sizeof(char));
     scanf("%s", fileName);
     fopen(fileName, "wb+"); // BAD
   }
@@ -51,4 +51,13 @@ int main(int argc, char** argv) {
     sprintf(fileName, "/foo/%f", number);
     fopen(fileName, "wb+"); // GOOD
   }
+
+  {
+    void read(const char *fileName);
+    read(argv[1]); // BAD [NOT DETECTED]
+  }
+}
+
+void read(char *fileName) {
+  fopen(fileName, "wb+");
 }

From 995efef5dab179d08a43670d45a3e0dcd1b6d671 Mon Sep 17 00:00:00 2001
From: Jeroen Ketema <jketema@github.com>
Date: Tue, 6 Dec 2022 09:03:21 +0100
Subject: [PATCH 1047/1420] C++: Add explanatory comment to
 `hasFilteredFlowPath`

---
 cpp/ql/src/Security/CWE/CWE-022/TaintedPath.ql | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/cpp/ql/src/Security/CWE/CWE-022/TaintedPath.ql b/cpp/ql/src/Security/CWE/CWE-022/TaintedPath.ql
index 3003a8c281a..be4f57454aa 100644
--- a/cpp/ql/src/Security/CWE/CWE-022/TaintedPath.ql
+++ b/cpp/ql/src/Security/CWE/CWE-022/TaintedPath.ql
@@ -111,6 +111,10 @@ class TaintedPathConfiguration extends TaintTracking::Configuration {
 
   predicate hasFilteredFlowPath(DataFlow::PathNode source, DataFlow::PathNode sink) {
     this.hasFlowPath(source, sink) and
+    // The use of `isUserInput` in `isSink` in combination with `asSourceExpr` causes
+    // duplicate results. Filter these duplicates. The proper solution is to switch to
+    // using `LocalFlowSource` and `RemoteFlowSource`, but this currently only supports
+    // a subset of the cases supported by `isUserInput`.
     not exists(DataFlow::PathNode source2 |
       this.hasFlowPath(source2, sink) and
       asSourceExpr(source.getNode()) = asSourceExpr(source2.getNode())

From 6fa21936027bbf0cea8c6758162a4c55491b1fa2 Mon Sep 17 00:00:00 2001
From: Michael Nebel <michaelnebel@github.com>
Date: Tue, 6 Dec 2022 09:26:09 +0100
Subject: [PATCH 1048/1420] Java: Add Model Difference workflow on model
 generator changes.

---
 .github/workflows/mad_modelDiff.yml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/mad_modelDiff.yml b/.github/workflows/mad_modelDiff.yml
index 1d75fc1d654..46fe7fbaf54 100644
--- a/.github/workflows/mad_modelDiff.yml
+++ b/.github/workflows/mad_modelDiff.yml
@@ -11,7 +11,7 @@ on:
     branches:
       - main
     paths:
-      # - "java/ql/src/utils/model-generator/**/*.*"
+      - "java/ql/src/utils/model-generator/**/*.*"
       - ".github/workflows/mad_modelDiff.yml"
 
 permissions:

From 204766b967674dee9558722e5d91810aeaa44fc3 Mon Sep 17 00:00:00 2001
From: Michael Nebel <michaelnebel@github.com>
Date: Tue, 6 Dec 2022 09:53:39 +0100
Subject: [PATCH 1049/1420] Java: Adjust generated model paths in Model
 difference workflow.

---
 .github/workflows/mad_modelDiff.yml | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/.github/workflows/mad_modelDiff.yml b/.github/workflows/mad_modelDiff.yml
index 46fe7fbaf54..586b1576bd6 100644
--- a/.github/workflows/mad_modelDiff.yml
+++ b/.github/workflows/mad_modelDiff.yml
@@ -61,8 +61,8 @@ jobs:
             DATABASE=$2
             cd codeql-$QL_VARIANT
             SHORTNAME=`basename $DATABASE`
-            python java/ql/src/utils/model-generator/GenerateFlowModel.py --with-summaries --with-sinks $DATABASE $MODELS/${SHORTNAME}.model.yml
-            mv $MODELS/${SHORTNAME}.model.yml $MODELS/${SHORTNAME}Generated_${QL_VARIANT}.model.yml
+            python java/ql/src/utils/model-generator/GenerateFlowModel.py --with-summaries --with-sinks $DATABASE ${SHORTNAME}.temp.model.yml
+            mv java/ql/lib/ext/generated/${SHORTNAME}.temp.model.yml $MODELS/${SHORTNAME}Generated_${QL_VARIANT}.model.yml
             cd ..
           }
 

From d2140eb4b10ce8272a6c6397c6660493301a37b1 Mon Sep 17 00:00:00 2001
From: retanoj <s919student+gh@gmail.com>
Date: Tue, 6 Dec 2022 17:07:49 +0800
Subject: [PATCH 1050/1420] MyBatisAnnotationSqlInjection no @Param case

---
 .../Security/CWE/CWE-089/MyBatisCommonLib.qll    | 16 ++++++++++++++++
 .../CWE-089/src/main/MybatisSqlInjection.java    | 10 ++++++++++
 .../src/main/MybatisSqlInjectionService.java     |  8 ++++++++
 .../CWE-089/src/main/SqlInjectionMapper.java     |  5 +++++
 4 files changed, 39 insertions(+)

diff --git a/java/ql/src/experimental/Security/CWE/CWE-089/MyBatisCommonLib.qll b/java/ql/src/experimental/Security/CWE/CWE-089/MyBatisCommonLib.qll
index 0d13340b55d..747bb278109 100644
--- a/java/ql/src/experimental/Security/CWE/CWE-089/MyBatisCommonLib.qll
+++ b/java/ql/src/experimental/Security/CWE/CWE-089/MyBatisCommonLib.qll
@@ -185,5 +185,21 @@ predicate isMybatisXmlOrAnnotationSqlInjection(
       unsafeExpression.matches("${%}") and
       ma.getAnArgument() = node.asExpr()
     )
+    or
+    // Some of method parameters are not annotated with `@Param`, which named in the SQL statement as their name.
+    // Improper use of these parameters has a SQL injection vulnerability.
+    // e.g.
+    //
+    // ```java
+    //    @Select(select id,name from test where id = #{id} or name = '${name}')
+    //    Test test(Integer id, String name);
+    // ```
+    exists(Parameter param, int idx |
+      param = ma.getMethod().getParameter(idx)
+    |
+      not param.getAnAnnotation().getType() instanceof TypeParam and
+      unsafeExpression.matches("${" + param.getName() + "}") and
+      ma.getArgument(idx) = node.asExpr()
+    )
   )
 }
diff --git a/java/ql/test/experimental/query-tests/security/CWE-089/src/main/MybatisSqlInjection.java b/java/ql/test/experimental/query-tests/security/CWE-089/src/main/MybatisSqlInjection.java
index a751d2ebb1c..2e86fa9645f 100644
--- a/java/ql/test/experimental/query-tests/security/CWE-089/src/main/MybatisSqlInjection.java
+++ b/java/ql/test/experimental/query-tests/security/CWE-089/src/main/MybatisSqlInjection.java
@@ -63,6 +63,11 @@ public class MybatisSqlInjection {
 		mybatisSqlInjectionService.bad9(name);
 	}
 
+	@GetMapping(value = "msi10")
+	public void bad10(@RequestParam Integer id, @RequestParam String name) {
+		mybatisSqlInjectionService.bad10(id, name);
+	}
+
 	@GetMapping(value = "good1")
 	public List<Test> good1(Integer id) {
 		List<Test> result = mybatisSqlInjectionService.good1(id);
@@ -99,4 +104,9 @@ public class MybatisSqlInjection {
 	public void good3(@RequestParam String age) {
 		mybatisSqlInjectionService.good3(age);
 	}
+
+	@GetMapping(value = "good4")
+	public void bad10(@RequestParam Integer id, @RequestParam String name) {
+		mybatisSqlInjectionService.good4(id, name);
+	}
 }
diff --git a/java/ql/test/experimental/query-tests/security/CWE-089/src/main/MybatisSqlInjectionService.java b/java/ql/test/experimental/query-tests/security/CWE-089/src/main/MybatisSqlInjectionService.java
index c8e1ce9c3cb..b48a8dc686d 100644
--- a/java/ql/test/experimental/query-tests/security/CWE-089/src/main/MybatisSqlInjectionService.java
+++ b/java/ql/test/experimental/query-tests/security/CWE-089/src/main/MybatisSqlInjectionService.java
@@ -51,6 +51,10 @@ public class MybatisSqlInjectionService {
 		sqlInjectionMapper.bad9(hashMap);
 	}
 
+	public void bad9(Integer id, String name) {
+		sqlInjectionMapper.bad10(id, name);
+	}
+
 	public List<Test> good1(Integer id) {
 		List<Test> result = sqlInjectionMapper.good1(id);
 		return result;
@@ -80,4 +84,8 @@ public class MybatisSqlInjectionService {
 	public void good3(String age){
 		sqlInjectionMapper.good3(age);
 	}
+
+	public void good4(Integer id, String name) {
+		sqlInjectionMapper.good4(id, name);
+	}
 }
diff --git a/java/ql/test/experimental/query-tests/security/CWE-089/src/main/SqlInjectionMapper.java b/java/ql/test/experimental/query-tests/security/CWE-089/src/main/SqlInjectionMapper.java
index a39b26a3aea..03aa0ee9a50 100644
--- a/java/ql/test/experimental/query-tests/security/CWE-089/src/main/SqlInjectionMapper.java
+++ b/java/ql/test/experimental/query-tests/security/CWE-089/src/main/SqlInjectionMapper.java
@@ -33,6 +33,9 @@ public interface SqlInjectionMapper {
 	@Select({"select * from test", "where id = ${name}"})
 	public Test bad9(HashMap<String, Object> map);
 
+	@Select({"select * from test where id = #{id} and name = '${name}'"})
+	String bad10(Integer id, String name);
+
 	List<Test> good1(Integer id);
 
 	//using providers
@@ -66,4 +69,6 @@ public interface SqlInjectionMapper {
 	@Select("select * from user_info where age = #{age}")
 	String good3(@Param("age") String age);
 
+	@Select({"select * from test where id = #{id} and name = #{name}"})
+	String good4(Integer id, String name);
 }

From 1b77f50fd7337644daadd49ae09e9de6116e0594 Mon Sep 17 00:00:00 2001
From: Anders Schack-Mulligen <aschackmull@github.com>
Date: Tue, 6 Dec 2022 10:34:34 +0100
Subject: [PATCH 1051/1420] Shared: Address review comments.

---
 .../codeql/typetracking/TypeTracking.qll      | 94 ++++++++++++-------
 1 file changed, 60 insertions(+), 34 deletions(-)

diff --git a/shared/typetracking/codeql/typetracking/TypeTracking.qll b/shared/typetracking/codeql/typetracking/TypeTracking.qll
index 4a4e508c52e..4125f25129a 100644
--- a/shared/typetracking/codeql/typetracking/TypeTracking.qll
+++ b/shared/typetracking/codeql/typetracking/TypeTracking.qll
@@ -3,12 +3,16 @@
  * for tracking types.
  */
 
-import codeql.util.Boolean
-import codeql.util.Option
+private import codeql.util.Boolean
+private import codeql.util.Option
 
+/**
+ * The step relations for type tracking.
+ */
 signature module TypeTrackingInput {
   /** A node that is used by the type-trackers. */
   class Node {
+    /** Gets a textual representation of this node. */
     string toString();
   }
 
@@ -21,6 +25,7 @@ signature module TypeTrackingInput {
 
   /** A type of content to be used with the store and read steps. */
   class Content {
+    /** Gets a textual representation of this content. */
     string toString();
   }
 
@@ -70,21 +75,21 @@ signature module TypeTrackingInput {
   predicate returnStep(Node nodeFrom, LocalSourceNode nodeTo);
 
   /**
-   * Holds if `nodeFrom` is being written to the content `f` of the object in
+   * Holds if `nodeFrom` is being written to the content `c` of the object in
    * `nodeTo`.
    */
-  predicate storeStep(Node nodeFrom, Node nodeTo, Content f);
+  predicate storeStep(Node nodeFrom, Node nodeTo, Content c);
 
   /**
-   * Holds if `nodeTo` is the result of accessing the content `f` of `nodeFrom`.
+   * Holds if `nodeTo` is the result of accessing the content `c` of `nodeFrom`.
    */
-  predicate loadStep(Node nodeFrom, LocalSourceNode nodeTo, Content f);
+  predicate loadStep(Node nodeFrom, LocalSourceNode nodeTo, Content c);
 
   /**
-   * Holds if the content `f1` of `nodeFrom` is stored in the content `f2` of
+   * Holds if the content `c1` of `nodeFrom` is stored in the content `c2` of
    * `nodeTo`.
    */
-  predicate loadStoreStep(Node nodeFrom, Node nodeTo, Content f1, Content f2);
+  predicate loadStoreStep(Node nodeFrom, Node nodeTo, Content c1, Content c2);
 
   /**
    * Holds if type-tracking should step from `nodeFrom` to `nodeTo` if inside a
@@ -113,9 +118,14 @@ signature module TypeTrackingInput {
   predicate hasFeatureBacktrackStoreTarget();
 }
 
+/**
+ * Given a set of step relations, this module provides classes and predicates
+ * for simple data-flow reachability suitable for tracking types.
+ */
 module TypeTracking<TypeTrackingInput I> {
   private import I
 
+  /** Provides consistency checks for the type-tracker step relations. */
   module ConsistencyChecks {
     private predicate stepEntry(Node n, string kind) {
       simpleLocalSmallStep(n, _) and kind = "simpleLocalSmallStep"
@@ -329,12 +339,17 @@ module TypeTracking<TypeTrackingInput I> {
     )
   }
 
+  pragma[inline]
+  private predicate isLocalSourceNode(LocalSourceNode n) { any() }
+
   /**
    * Holds if there is flow from `localSource` to `dst` using zero or more
    * `simpleLocalSmallStep`s.
    */
   pragma[nomagic]
   predicate flowsTo(LocalSourceNode localSource, Node dst) {
+    // explicit type check in base case to avoid repeated type tests in recursive case
+    isLocalSourceNode(localSource) and
     dst = localSource
     or
     exists(Node mid |
@@ -344,27 +359,27 @@ module TypeTracking<TypeTrackingInput I> {
   }
 
   pragma[nomagic]
-  private predicate storeStepIntoSource(Node nodeFrom, LocalSourceNode nodeTo, Content f) {
+  private predicate storeStepIntoSource(Node nodeFrom, LocalSourceNode nodeTo, Content c) {
     if hasFeatureBacktrackStoreTarget()
     then
       exists(Node obj |
         flowsTo(nodeTo, obj) and
-        storeStep(nodeFrom, obj, f)
+        storeStep(nodeFrom, obj, c)
       )
-    else storeStep(nodeFrom, nodeTo, f)
+    else storeStep(nodeFrom, nodeTo, c)
   }
 
   pragma[nomagic]
   private predicate loadStoreStepIntoSource(
-    Node nodeFrom, LocalSourceNode nodeTo, Content f1, Content f2
+    Node nodeFrom, LocalSourceNode nodeTo, Content c1, Content c2
   ) {
     if hasFeatureBacktrackStoreTarget()
     then
       exists(Node obj |
         flowsTo(nodeTo, obj) and
-        loadStoreStep(nodeFrom, obj, f1, f2)
+        loadStoreStep(nodeFrom, obj, c1, c2)
       )
-    else loadStoreStep(nodeFrom, nodeTo, f1, f2)
+    else loadStoreStep(nodeFrom, nodeTo, c1, c2)
   }
 
   pragma[nomagic]
@@ -465,8 +480,8 @@ module TypeTracking<TypeTrackingInput I> {
    * instead of `tt2.step`.
    */
   class TypeTracker extends TTypeTracker {
-    Boolean hasCall;
-    ContentOption content;
+    private Boolean hasCall;
+    private ContentOption content;
 
     TypeTracker() { this = MkTypeTracker(hasCall, content) }
 
@@ -478,9 +493,10 @@ module TypeTracking<TypeTrackingInput I> {
       exists(string withCall, string withContent |
         (if hasCall = true then withCall = "with" else withCall = "without") and
         (
-          if content instanceof ContentOption::Some
-          then withContent = " with content " + content.asSome()
-          else withContent = ""
+          withContent = " with content " + content.asSome()
+          or
+          content instanceof ContentOption::None and
+          withContent = ""
         ) and
         result = "type tracker " + withCall + " call steps" + withContent
       )
@@ -613,8 +629,8 @@ module TypeTracking<TypeTrackingInput I> {
    * instead of `t2.step`.
    */
   class TypeBackTracker extends TTypeBackTracker {
-    Boolean hasReturn;
-    ContentOption content;
+    private Boolean hasReturn;
+    private ContentOption content;
 
     TypeBackTracker() { this = MkTypeBackTracker(hasReturn, content) }
 
@@ -626,9 +642,10 @@ module TypeTracking<TypeTrackingInput I> {
       exists(string withReturn, string withContent |
         (if hasReturn = true then withReturn = "with" else withReturn = "without") and
         (
-          if content instanceof ContentOption::Some
-          then withContent = " with content " + content
-          else withContent = ""
+          withContent = " with content " + content.asSome()
+          or
+          content instanceof ContentOption::None and
+          withContent = ""
         ) and
         result = "type back-tracker " + withReturn + " return steps" + withContent
       )
@@ -753,7 +770,7 @@ module TypeTracking<TypeTrackingInput I> {
        * A node on a path that is reachable from a source. This is a pair of a
        * `Node` and a `TypeTracker`.
        */
-      class PathNode extends TPathNode {
+      class PathNodeFwd extends TPathNode {
         /** Gets the node of this `PathNode`. */
         Node getNode() { this = MkPathNode(result, _) }
 
@@ -762,14 +779,15 @@ module TypeTracking<TypeTrackingInput I> {
 
         private string ppContent() {
           exists(ContentOption c | this.getTypeTracker() = MkTypeTracker(_, c) |
-            if c instanceof ContentOption::Some
-            then result = " with content " + c.asSome()
-            else result = ""
+            result = " with content " + c.asSome()
+            or
+            c instanceof ContentOption::None and
+            result = ""
           )
         }
 
         /** Gets a textual representation of this node. */
-        string toString() { result = this.getNode().toString() + " " + this.ppContent() }
+        string toString() { result = this.getNode().toString() + this.ppContent() }
 
         /** Holds if this is a source. */
         predicate isSource() { source(this.getNode()) and this.getTypeTracker().start() }
@@ -783,26 +801,34 @@ module TypeTracking<TypeTrackingInput I> {
         tt2 = tt1.step(n1, n2)
       }
 
-      private predicate edgeCand(PathNode n1, PathNode n2) {
+      private predicate edgeCand(PathNodeFwd n1, PathNodeFwd n2) {
         edgeCand(n1.getNode(), n1.getTypeTracker(), n2.getNode(), n2.getTypeTracker())
       }
 
-      private predicate reachRev(PathNode n) {
+      private predicate reachRev(PathNodeFwd n) {
         n.isSink()
         or
-        exists(PathNode mid |
+        exists(PathNodeFwd mid |
           edgeCand(n, mid) and
           reachRev(mid)
         )
       }
 
+      /**
+       * A node on a path that is reachable from a source and can reach a sink.
+       * This is a pair of a `Node` and a `TypeTracker`.
+       */
+      class PathNode extends PathNodeFwd {
+        PathNode() { reachRev(this) }
+      }
+
       /** Holds if `(p1, p2)` is an edge in a path between a source and a sink. */
-      query predicate edges(PathNode n1, PathNode n2) { edgeCand(n1, n2) and reachRev(n2) }
+      query predicate edges(PathNode n1, PathNode n2) { edgeCand(n1, n2) }
 
       private predicate stepPlus(PathNode n1, PathNode n2) = fastTC(edges/2)(n1, n2)
 
       /** Holds if there is a path between `source` and `sink`. */
-      predicate flowPair(PathNode source, PathNode sink) {
+      predicate hasFlow(PathNode source, PathNode sink) {
         source.isSource() and
         sink.isSink() and
         (source = sink or stepPlus(source, sink))

From fb8559f03a0d4f94b8c8b738c90104a96e47a523 Mon Sep 17 00:00:00 2001
From: retanoj <s919student+gh@gmail.com>
Date: Tue, 6 Dec 2022 18:03:00 +0800
Subject: [PATCH 1052/1420] tiny fix function name

---
 .../security/CWE-089/src/main/MybatisSqlInjection.java          | 2 +-
 .../security/CWE-089/src/main/MybatisSqlInjectionService.java   | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/java/ql/test/experimental/query-tests/security/CWE-089/src/main/MybatisSqlInjection.java b/java/ql/test/experimental/query-tests/security/CWE-089/src/main/MybatisSqlInjection.java
index 2e86fa9645f..856c1d0b299 100644
--- a/java/ql/test/experimental/query-tests/security/CWE-089/src/main/MybatisSqlInjection.java
+++ b/java/ql/test/experimental/query-tests/security/CWE-089/src/main/MybatisSqlInjection.java
@@ -106,7 +106,7 @@ public class MybatisSqlInjection {
 	}
 
 	@GetMapping(value = "good4")
-	public void bad10(@RequestParam Integer id, @RequestParam String name) {
+	public void good4(@RequestParam Integer id, @RequestParam String name) {
 		mybatisSqlInjectionService.good4(id, name);
 	}
 }
diff --git a/java/ql/test/experimental/query-tests/security/CWE-089/src/main/MybatisSqlInjectionService.java b/java/ql/test/experimental/query-tests/security/CWE-089/src/main/MybatisSqlInjectionService.java
index b48a8dc686d..6e334ea35dd 100644
--- a/java/ql/test/experimental/query-tests/security/CWE-089/src/main/MybatisSqlInjectionService.java
+++ b/java/ql/test/experimental/query-tests/security/CWE-089/src/main/MybatisSqlInjectionService.java
@@ -51,7 +51,7 @@ public class MybatisSqlInjectionService {
 		sqlInjectionMapper.bad9(hashMap);
 	}
 
-	public void bad9(Integer id, String name) {
+	public void bad10(Integer id, String name) {
 		sqlInjectionMapper.bad10(id, name);
 	}
 

From de652e1e27ded3498c0909f8a35b89ab4745fb7d Mon Sep 17 00:00:00 2001
From: retanoj <s919student+gh@gmail.com>
Date: Tue, 6 Dec 2022 18:09:48 +0800
Subject: [PATCH 1053/1420] expected

---
 .../MyBatisAnnotationSqlInjection.expected    | 43 +++++++++++++------
 1 file changed, 29 insertions(+), 14 deletions(-)

diff --git a/java/ql/test/experimental/query-tests/security/CWE-089/src/main/MyBatisAnnotationSqlInjection.expected b/java/ql/test/experimental/query-tests/security/CWE-089/src/main/MyBatisAnnotationSqlInjection.expected
index 1aedc93eb9a..52ec40f1b92 100644
--- a/java/ql/test/experimental/query-tests/security/CWE-089/src/main/MyBatisAnnotationSqlInjection.expected
+++ b/java/ql/test/experimental/query-tests/security/CWE-089/src/main/MyBatisAnnotationSqlInjection.expected
@@ -1,30 +1,45 @@
 edges
 | MybatisSqlInjection.java:62:19:62:43 | name : String | MybatisSqlInjection.java:63:35:63:38 | name : String |
 | MybatisSqlInjection.java:63:35:63:38 | name : String | MybatisSqlInjectionService.java:48:19:48:29 | name : String |
-| MybatisSqlInjection.java:94:20:94:44 | name : String | MybatisSqlInjection.java:95:36:95:39 | name : String |
-| MybatisSqlInjection.java:95:36:95:39 | name : String | MybatisSqlInjectionService.java:76:20:76:30 | name : String |
-| MybatisSqlInjection.java:99:20:99:43 | age : String | MybatisSqlInjection.java:100:36:100:38 | age : String |
-| MybatisSqlInjection.java:100:36:100:38 | age : String | MybatisSqlInjectionService.java:80:20:80:29 | age : String |
+| MybatisSqlInjection.java:67:46:67:70 | name : String | MybatisSqlInjection.java:68:40:68:43 | name : String |
+| MybatisSqlInjection.java:68:40:68:43 | name : String | MybatisSqlInjectionService.java:54:32:54:42 | name : String |
+| MybatisSqlInjection.java:99:20:99:44 | name : String | MybatisSqlInjection.java:100:36:100:39 | name : String |
+| MybatisSqlInjection.java:100:36:100:39 | name : String | MybatisSqlInjectionService.java:80:20:80:30 | name : String |
+| MybatisSqlInjection.java:104:20:104:43 | age : String | MybatisSqlInjection.java:105:36:105:38 | age : String |
+| MybatisSqlInjection.java:105:36:105:38 | age : String | MybatisSqlInjectionService.java:84:20:84:29 | age : String |
+| MybatisSqlInjection.java:109:46:109:70 | name : String | MybatisSqlInjection.java:110:40:110:43 | name : String |
+| MybatisSqlInjection.java:110:40:110:43 | name : String | MybatisSqlInjectionService.java:88:32:88:42 | name : String |
 | MybatisSqlInjectionService.java:48:19:48:29 | name : String | MybatisSqlInjectionService.java:50:23:50:26 | name : String |
 | MybatisSqlInjectionService.java:50:3:50:9 | hashMap [post update] [<map.value>] : String | MybatisSqlInjectionService.java:51:27:51:33 | hashMap |
 | MybatisSqlInjectionService.java:50:23:50:26 | name : String | MybatisSqlInjectionService.java:50:3:50:9 | hashMap [post update] [<map.value>] : String |
-| MybatisSqlInjectionService.java:76:20:76:30 | name : String | MybatisSqlInjectionService.java:77:28:77:31 | name |
-| MybatisSqlInjectionService.java:80:20:80:29 | age : String | MybatisSqlInjectionService.java:81:28:81:30 | age |
+| MybatisSqlInjectionService.java:54:32:54:42 | name : String | MybatisSqlInjectionService.java:55:32:55:35 | name |
+| MybatisSqlInjectionService.java:80:20:80:30 | name : String | MybatisSqlInjectionService.java:81:28:81:31 | name |
+| MybatisSqlInjectionService.java:84:20:84:29 | age : String | MybatisSqlInjectionService.java:85:28:85:30 | age |
+| MybatisSqlInjectionService.java:88:32:88:42 | name : String | MybatisSqlInjectionService.java:89:32:89:35 | name |
 nodes
 | MybatisSqlInjection.java:62:19:62:43 | name : String | semmle.label | name : String |
 | MybatisSqlInjection.java:63:35:63:38 | name : String | semmle.label | name : String |
-| MybatisSqlInjection.java:94:20:94:44 | name : String | semmle.label | name : String |
-| MybatisSqlInjection.java:95:36:95:39 | name : String | semmle.label | name : String |
-| MybatisSqlInjection.java:99:20:99:43 | age : String | semmle.label | age : String |
-| MybatisSqlInjection.java:100:36:100:38 | age : String | semmle.label | age : String |
+| MybatisSqlInjection.java:67:46:67:70 | name : String | semmle.label | name : String |
+| MybatisSqlInjection.java:68:40:68:43 | name : String | semmle.label | name : String |
+| MybatisSqlInjection.java:99:20:99:44 | name : String | semmle.label | name : String |
+| MybatisSqlInjection.java:100:36:100:39 | name : String | semmle.label | name : String |
+| MybatisSqlInjection.java:104:20:104:43 | age : String | semmle.label | age : String |
+| MybatisSqlInjection.java:105:36:105:38 | age : String | semmle.label | age : String |
+| MybatisSqlInjection.java:109:46:109:70 | name : String | semmle.label | name : String |
+| MybatisSqlInjection.java:110:40:110:43 | name : String | semmle.label | name : String |
 | MybatisSqlInjectionService.java:48:19:48:29 | name : String | semmle.label | name : String |
 | MybatisSqlInjectionService.java:50:3:50:9 | hashMap [post update] [<map.value>] : String | semmle.label | hashMap [post update] [<map.value>] : String |
 | MybatisSqlInjectionService.java:50:23:50:26 | name : String | semmle.label | name : String |
 | MybatisSqlInjectionService.java:51:27:51:33 | hashMap | semmle.label | hashMap |
-| MybatisSqlInjectionService.java:76:20:76:30 | name : String | semmle.label | name : String |
-| MybatisSqlInjectionService.java:77:28:77:31 | name | semmle.label | name |
-| MybatisSqlInjectionService.java:80:20:80:29 | age : String | semmle.label | age : String |
-| MybatisSqlInjectionService.java:81:28:81:30 | age | semmle.label | age |
+| MybatisSqlInjectionService.java:54:32:54:42 | name : String | semmle.label | name : String |
+| MybatisSqlInjectionService.java:55:32:55:35 | name | semmle.label | name |
+| MybatisSqlInjectionService.java:80:20:80:30 | name : String | semmle.label | name : String |
+| MybatisSqlInjectionService.java:81:28:81:31 | name | semmle.label | name |
+| MybatisSqlInjectionService.java:84:20:84:29 | age : String | semmle.label | age : String |
+| MybatisSqlInjectionService.java:85:28:85:30 | age | semmle.label | age |
+| MybatisSqlInjectionService.java:88:32:88:42 | name : String | semmle.label | name : String |
+| MybatisSqlInjectionService.java:89:32:89:35 | name | semmle.label | name |
 subpaths
 #select
 | MybatisSqlInjectionService.java:51:27:51:33 | hashMap | MybatisSqlInjection.java:62:19:62:43 | name : String | MybatisSqlInjectionService.java:51:27:51:33 | hashMap | MyBatis annotation SQL injection might include code from $@ to $@. | MybatisSqlInjection.java:62:19:62:43 | name | this user input | SqlInjectionMapper.java:33:2:33:54 | Select | this SQL operation |
+| MybatisSqlInjectionService.java:55:32:55:35 | name | MybatisSqlInjection.java:67:46:67:70 | name : String | MybatisSqlInjectionService.java:55:32:55:35 | name | MyBatis annotation SQL injection might include code from $@ to $@. | MybatisSqlInjection.java:67:46:67:70 | name | this user input | SqlInjectionMapper.java:36:2:36:70 | Select | this SQL operation |

From 86c021ef7e5cc67ded3a36aab217f55bc0b17e5e Mon Sep 17 00:00:00 2001
From: Michael Nebel <michaelnebel@github.com>
Date: Mon, 7 Nov 2022 14:57:31 +0100
Subject: [PATCH 1054/1420] C#: Deprecate hasQualifiedName/1.

---
 csharp/ql/lib/semmle/code/dotnet/Element.qll | 5 ++++-
 1 file changed, 4 insertions(+), 1 deletion(-)

diff --git a/csharp/ql/lib/semmle/code/dotnet/Element.qll b/csharp/ql/lib/semmle/code/dotnet/Element.qll
index 713261dcf36..5ad51dc68fc 100644
--- a/csharp/ql/lib/semmle/code/dotnet/Element.qll
+++ b/csharp/ql/lib/semmle/code/dotnet/Element.qll
@@ -97,10 +97,13 @@ class NamedElement extends Element, @dotnet_named_element {
   }
 
   /**
+   * DEPRECATED: Use hasQualifiedName instead.
    * Holds if this element has qualified name `qualifiedName`, for example
    * `System.Console.WriteLine`.
    */
-  final predicate hasQualifiedName(string qualifiedName) { qualifiedName = this.getQualifiedName() }
+  deprecated final predicate hasQualifiedName(string qualifiedName) {
+    qualifiedName = this.getQualifiedName()
+  }
 
   /** Holds if this element has the qualified name `qualifier`.`name`. */
   cached

From 38565407c5e686f970bbde56b8f5c0dd1f9b71e4 Mon Sep 17 00:00:00 2001
From: Michael Nebel <michaelnebel@github.com>
Date: Thu, 10 Nov 2022 11:55:47 +0100
Subject: [PATCH 1055/1420] C#: Add small module with relevant printing
 predicates.

---
 csharp/ql/lib/csharp.qll                      |  1 +
 csharp/ql/lib/semmle/code/csharp/Printing.qll | 19 +++++++++++++++++++
 2 files changed, 20 insertions(+)
 create mode 100644 csharp/ql/lib/semmle/code/csharp/Printing.qll

diff --git a/csharp/ql/lib/csharp.qll b/csharp/ql/lib/csharp.qll
index dc187fc8d92..7a5e376427e 100644
--- a/csharp/ql/lib/csharp.qll
+++ b/csharp/ql/lib/csharp.qll
@@ -21,6 +21,7 @@ import semmle.code.csharp.Using
 import semmle.code.csharp.Variable
 import semmle.code.csharp.XML
 import semmle.code.csharp.Preprocessor
+import semmle.code.csharp.Printing
 import semmle.code.csharp.exprs.Access
 import semmle.code.csharp.exprs.ArithmeticOperation
 import semmle.code.csharp.exprs.Assignment
diff --git a/csharp/ql/lib/semmle/code/csharp/Printing.qll b/csharp/ql/lib/semmle/code/csharp/Printing.qll
new file mode 100644
index 00000000000..59af2b2f785
--- /dev/null
+++ b/csharp/ql/lib/semmle/code/csharp/Printing.qll
@@ -0,0 +1,19 @@
+/**
+ * Provides predicates to pretty-print a C# qualified name.
+ */
+
+/**
+ * Returns the concatenation of `qualifier` and `name`, separated by a dot.
+ */
+bindingset[qualifier, name]
+string printQualifiedName(string qualifier, string name) {
+  if qualifier = "" then result = name else result = qualifier + "." + name
+}
+
+/**
+ * Returns the concatenation of `qualifier`, `type` and `name`, separated by a dot.
+ */
+bindingset[qualifier, type, name]
+string printQualifiedName(string qualifier, string type, string name) {
+  result = printQualifiedName(qualifier, type) + "." + name
+}

From 315a3a5ed3e56d16e23efe7fbcb7f65f88b55fbf Mon Sep 17 00:00:00 2001
From: Michael Nebel <michaelnebel@github.com>
Date: Mon, 7 Nov 2022 14:56:40 +0100
Subject: [PATCH 1056/1420] C#: Add hasQualifiedName/3 including overrides
 where relevant and re-write some of the existing hasQualifiedName/2
 predicates.

---
 csharp/ql/lib/semmle/code/cil/Type.qll           |  5 ++++-
 csharp/ql/lib/semmle/code/csharp/Callable.qll    | 10 +++++++++-
 csharp/ql/lib/semmle/code/csharp/Generics.qll    |  8 ++++----
 csharp/ql/lib/semmle/code/dotnet/Declaration.qll | 16 +++++++++++++++-
 csharp/ql/lib/semmle/code/dotnet/Namespace.qll   | 16 +++++++++++++++-
 5 files changed, 47 insertions(+), 8 deletions(-)

diff --git a/csharp/ql/lib/semmle/code/cil/Type.qll b/csharp/ql/lib/semmle/code/cil/Type.qll
index 7aeaf9a6495..204eaff4b87 100644
--- a/csharp/ql/lib/semmle/code/cil/Type.qll
+++ b/csharp/ql/lib/semmle/code/cil/Type.qll
@@ -4,6 +4,7 @@
 
 import CIL
 private import dotnet
+private import semmle.code.csharp.Printing
 
 /**
  * Something that contains other types.
@@ -52,7 +53,9 @@ class Type extends DotNet::Type, Declaration, TypeContainer, @cil_type {
 
   override predicate hasQualifiedName(string qualifier, string name) {
     name = this.getName() and
-    qualifier = this.getParent().getQualifiedName()
+    exists(string pqualifier, string pname | this.getParent().hasQualifiedName(pqualifier, pname) |
+      qualifier = printQualifiedName(pqualifier, pname)
+    )
   }
 
   override Location getALocation() { cil_type_location(this.getUnboundDeclaration(), result) }
diff --git a/csharp/ql/lib/semmle/code/csharp/Callable.qll b/csharp/ql/lib/semmle/code/csharp/Callable.qll
index 0477874eec1..7ce2a138e84 100644
--- a/csharp/ql/lib/semmle/code/csharp/Callable.qll
+++ b/csharp/ql/lib/semmle/code/csharp/Callable.qll
@@ -459,6 +459,11 @@ class Operator extends Callable, Member, Attributable, @operator {
     super.hasQualifiedName(qualifier, _) and
     name = this.getFunctionName()
   }
+
+  override predicate hasQualifiedName(string namespace, string type, string name) {
+    super.hasQualifiedName(namespace, type, _) and
+    name = this.getFunctionName()
+  }
 }
 
 /** A clone method on a record. */
@@ -996,7 +1001,10 @@ class LocalFunction extends Callable, Modifiable, Attributable, @local_function
   override Callable getEnclosingCallable() { result = this.getStatement().getEnclosingCallable() }
 
   override predicate hasQualifiedName(string qualifier, string name) {
-    qualifier = this.getEnclosingCallable().getQualifiedName() and
+    exists(string cqualifier, string type |
+      this.getEnclosingCallable().hasQualifiedName(cqualifier, type) and
+      qualifier = printQualifiedName(cqualifier, type)
+    ) and
     name = this.getName()
   }
 
diff --git a/csharp/ql/lib/semmle/code/csharp/Generics.qll b/csharp/ql/lib/semmle/code/csharp/Generics.qll
index ef3aced9cb9..e67907554a2 100644
--- a/csharp/ql/lib/semmle/code/csharp/Generics.qll
+++ b/csharp/ql/lib/semmle/code/csharp/Generics.qll
@@ -159,7 +159,7 @@ class UnboundGenericType extends ValueOrRefType, UnboundGeneric {
       )
       or
       not exists(this.getDeclaringType()) and
-      qualifier = this.getNamespace().getQualifiedName() and
+      qualifier = this.getNamespace().getFullName() and
       name0 = this.getUndecoratedName()
     )
   }
@@ -424,7 +424,7 @@ class ConstructedType extends ValueOrRefType, ConstructedGeneric {
       )
       or
       not exists(this.getDeclaringType()) and
-      qualifier = this.getNamespace().getQualifiedName() and
+      qualifier = this.getNamespace().getFullName() and
       name0 = this.getUndecoratedName()
     )
   }
@@ -594,8 +594,8 @@ class ConstructedMethod extends Method, ConstructedGeneric {
     result = this.getUndecoratedName() + "<" + getTypeArgumentsNames(this) + ">"
   }
 
-  override predicate hasQualifiedName(string qualifier, string name) {
-    qualifier = this.getDeclaringType().getQualifiedName() and
+  override predicate hasQualifiedName(string qualifier, string type, string name) {
+    this.getDeclaringType().hasQualifiedName(qualifier, type) and
     name = this.getUndecoratedName() + "<" + getTypeArgumentsQualifiedNames(this) + ">"
   }
 
diff --git a/csharp/ql/lib/semmle/code/dotnet/Declaration.qll b/csharp/ql/lib/semmle/code/dotnet/Declaration.qll
index 046cb99944e..4f23c722e38 100644
--- a/csharp/ql/lib/semmle/code/dotnet/Declaration.qll
+++ b/csharp/ql/lib/semmle/code/dotnet/Declaration.qll
@@ -4,11 +4,15 @@
 
 import Element
 import Type
+private import semmle.code.csharp.Printing
 
 /** A declaration. */
 class Declaration extends NamedElement, @dotnet_declaration {
   override predicate hasQualifiedName(string qualifier, string name) {
-    qualifier = this.getDeclaringType().getQualifiedName() and
+    exists(string dqualifier, string dname |
+      this.getDeclaringType().hasQualifiedName(dqualifier, dname) and
+      qualifier = printQualifiedName(dqualifier, dname)
+    ) and
     name = this.getName()
   }
 
@@ -75,6 +79,16 @@ class Member extends Declaration, @dotnet_member {
 
   /** Holds if this member is `static`. */
   predicate isStatic() { none() }
+
+  /**
+   * Holds if this member has name `name` and is defined in type `type`
+   * with qualifier `qualifier`
+   */
+  cached
+  predicate hasQualifiedName(string qualifier, string type, string name) {
+    this.getDeclaringType().hasQualifiedName(qualifier, type) and
+    name = this.getName()
+  }
 }
 
 /** A property. */
diff --git a/csharp/ql/lib/semmle/code/dotnet/Namespace.qll b/csharp/ql/lib/semmle/code/dotnet/Namespace.qll
index 9a0e9edac00..74aa71574a9 100644
--- a/csharp/ql/lib/semmle/code/dotnet/Namespace.qll
+++ b/csharp/ql/lib/semmle/code/dotnet/Namespace.qll
@@ -3,6 +3,7 @@
  */
 
 private import Declaration
+private import semmle.code.csharp.Printing
 
 /** A namespace. */
 class Namespace extends Declaration, @namespace {
@@ -25,7 +26,10 @@ class Namespace extends Declaration, @namespace {
    * `qualifier`=`System.Collections` and `name`=`Generic`.
    */
   override predicate hasQualifiedName(string qualifier, string name) {
-    qualifier = this.getParentNamespace().getQualifiedName() and
+    exists(string pqualifier, string pname |
+      this.getParentNamespace().hasQualifiedName(pqualifier, pname) and
+      qualifier = printQualifiedName(pqualifier, pname)
+    ) and
     name = this.getName()
   }
 
@@ -41,6 +45,16 @@ class Namespace extends Declaration, @namespace {
   final override string getUndecoratedName() { namespaces(this, result) }
 
   override string getAPrimaryQlClass() { result = "Namespace" }
+
+  /**
+   * Get the fully qualified name of this namespace.
+   */
+  string getFullName() {
+    exists(string qualifier, string name |
+      this.hasQualifiedName(qualifier, name) and
+      result = printQualifiedName(qualifier, name)
+    )
+  }
 }
 
 /** The global namespace. */

From c24302bec277bc8f35f1b1cce6bae13448fc9f59 Mon Sep 17 00:00:00 2001
From: Michael Nebel <michaelnebel@github.com>
Date: Tue, 8 Nov 2022 13:28:30 +0100
Subject: [PATCH 1057/1420] C#: Replace all uses of the deprecated
 hasQualifiedName/1 predicate.

---
 .../ql/examples/snippets/catch_exception.ql   |  2 +-
 .../ql/examples/snippets/constructor_call.ql  |  2 +-
 csharp/ql/examples/snippets/extend_class.ql   |  2 +-
 csharp/ql/examples/snippets/field_read.ql     |  2 +-
 csharp/ql/examples/snippets/method_call.ql    |  2 +-
 csharp/ql/examples/snippets/null_argument.ql  |  2 +-
 .../ql/examples/snippets/override_method.ql   |  2 +-
 .../ql/examples/snippets/throw_exception.ql   |  2 +-
 csharp/ql/lib/Linq/Helpers.qll                |  2 +-
 csharp/ql/lib/semmle/code/csharp/Stmt.qll     |  2 +-
 csharp/ql/lib/semmle/code/csharp/Type.qll     |  4 +-
 .../lib/semmle/code/csharp/commons/Util.qll   |  2 +-
 .../internal/ControlFlowGraphImpl.qll         |  2 +-
 .../controlflow/internal/NonReturning.qll     |  6 +-
 .../internal/rangeanalysis/ConstantUtils.qll  |  2 +-
 .../internal/rangeanalysis/RangeUtils.qll     |  4 +-
 .../rangeanalysis/SignAnalysisSpecific.qll    |  8 +-
 .../semmle/code/csharp/frameworks/Dapper.qll  |  2 +-
 .../csharp/frameworks/EntityFramework.qll     |  2 +-
 .../semmle/code/csharp/frameworks/Format.qll  | 16 ++--
 .../semmle/code/csharp/frameworks/JsonNET.qll |  2 +-
 .../lib/semmle/code/csharp/frameworks/Moq.qll |  2 +-
 .../code/csharp/frameworks/NHibernate.qll     |  2 +-
 .../lib/semmle/code/csharp/frameworks/Sql.qll | 15 +--
 .../frameworks/microsoft/AspNetCore.qll       |  4 +-
 .../cryptography/SymmetricAlgorithm.qll       | 92 ++++++++++---------
 .../system/text/RegularExpressions.qll        |  2 +-
 .../code/csharp/frameworks/test/NUnit.qll     | 33 +++++--
 .../csharp/frameworks/test/VisualStudio.qll   |  2 +-
 .../code/csharp/frameworks/test/XUnit.qll     |  2 +-
 .../dataflow/UnsafeDeserializationQuery.qll   |  2 +-
 .../csharp/security/dataflow/ZipSlipQuery.qll | 22 ++---
 .../csharp/security/xml/InsecureXMLQuery.qll  | 16 ++--
 .../csharp/serialization/Deserializers.qll    | 62 +++++++------
 csharp/ql/src/API Abuse/CallToGCCollect.ql    |  2 +-
 .../ql/src/Bad Practices/LeftoverDebugCode.ql |  2 +-
 .../Naming Conventions/DefaultControlNames.ql |  2 +-
 .../Bad Practices/UseOfSystemOutputStream.ql  | 10 +-
 csharp/ql/src/Concurrency/Concurrency.qll     |  6 +-
 csharp/ql/src/Dead Code/DeadCode.qll          |  4 +-
 csharp/ql/src/Dead Code/DeadRefTypes.ql       |  2 +-
 .../Documentation/XmldocMissingException.ql   | 19 +++-
 .../Collections/ContainerSizeCmpZero.ql       | 14 +--
 .../LeapYear/UnsafeYearConstruction.ql        |  4 +-
 .../src/Likely Bugs/MishandlingJapaneseEra.ql | 18 ++--
 .../Security Features/CWE-091/XMLInjection.ql |  4 +-
 .../CWE-114/AssemblyPathInjection.ql          |  2 +-
 .../CWE-327/DontInstallRootCert.ql            |  7 +-
 .../CWE-384/AbandonSession.ql                 |  2 +-
 .../experimental/CWE-918/RequestForgery.qll   | 25 ++---
 ...nsafeUsageOfClientSideEncryptionVersion.ql |  6 +-
 .../CWE-759/HashWithoutSalt.ql                | 10 +-
 .../JsonWebTokenHandlerLib.qll                | 12 ++-
 .../UnsafeTypeUsedDataContractSerializer.ql   |  4 +-
 .../library-tests/assemblies/assemblies.ql    |  2 +-
 .../library-tests/assemblies/locations.ql     |  2 +-
 .../cil/dataflow/TrivialProperties.ql         |  6 +-
 .../csharp10/fileScopedNamespace.ql           |  2 +-
 .../library-tests/dataflow/async/Async.ql     |  2 +-
 .../library-tests/delegates/Delegates2.ql     |  2 +-
 .../library-tests/delegates/Delegates3.ql     |  2 +-
 csharp/ql/test/library-tests/enums/Enums1.ql  |  2 +-
 csharp/ql/test/library-tests/enums/Enums10.ql |  2 +-
 csharp/ql/test/library-tests/enums/Enums2.ql  |  2 +-
 csharp/ql/test/library-tests/enums/Enums3.ql  |  2 +-
 csharp/ql/test/library-tests/enums/Enums4.ql  |  2 +-
 csharp/ql/test/library-tests/enums/Enums6.ql  |  2 +-
 csharp/ql/test/library-tests/enums/Enums7.ql  |  2 +-
 csharp/ql/test/library-tests/enums/Enums8.ql  |  2 +-
 csharp/ql/test/library-tests/enums/Enums9.ql  |  2 +-
 .../ql/test/library-tests/events/Events1.ql   |  2 +-
 .../ql/test/library-tests/events/Events2.ql   |  2 +-
 .../ql/test/library-tests/events/Events3.ql   |  2 +-
 .../ql/test/library-tests/events/Events4.ql   |  2 +-
 .../ql/test/library-tests/events/Events5.ql   |  2 +-
 .../ql/test/library-tests/events/Events7.ql   |  2 +-
 .../ql/test/library-tests/expressions/As1.ql  |  2 +-
 .../test/library-tests/expressions/Cast1.ql   |  2 +-
 .../expressions/DelegateCall3.ql              |  2 +-
 .../ql/test/library-tests/expressions/Is1.ql  |  2 +-
 .../test/library-tests/fields/Constants1.ql   |  2 +-
 .../test/library-tests/fields/Constants2.ql   |  2 +-
 .../test/library-tests/fields/Constants3.ql   |  2 +-
 .../ql/test/library-tests/fields/Fields1.ql   |  2 +-
 .../ql/test/library-tests/fields/Fields10.ql  |  2 +-
 .../ql/test/library-tests/fields/Fields2.ql   |  2 +-
 .../ql/test/library-tests/fields/Fields3.ql   |  2 +-
 .../ql/test/library-tests/fields/Fields4.ql   |  2 +-
 .../ql/test/library-tests/fields/Fields5.ql   |  2 +-
 .../ql/test/library-tests/fields/Fields6.ql   |  2 +-
 .../ql/test/library-tests/fields/Fields7.ql   |  2 +-
 .../ql/test/library-tests/fields/Fields8.ql   |  2 +-
 .../ql/test/library-tests/fields/Fields9.ql   |  2 +-
 .../test/library-tests/indexers/Indexers10.ql |  2 +-
 .../test/library-tests/indexers/Indexers2.ql  |  2 +-
 .../test/library-tests/indexers/Indexers3.ql  |  2 +-
 .../test/library-tests/indexers/Indexers4.ql  |  2 +-
 .../test/library-tests/indexers/Indexers5.ql  |  2 +-
 .../test/library-tests/indexers/Indexers6.ql  |  2 +-
 .../test/library-tests/indexers/Indexers7.ql  |  2 +-
 .../test/library-tests/indexers/Indexers8.ql  |  2 +-
 .../test/library-tests/indexers/Indexers9.ql  |  2 +-
 .../test/library-tests/methods/Parameters1.ql |  2 +-
 .../test/library-tests/methods/Parameters2.ql |  2 +-
 .../test/library-tests/methods/Parameters3.ql |  2 +-
 .../library-tests/namespaces/Namespaces1.ql   |  2 +-
 .../library-tests/namespaces/Namespaces10.ql  |  4 +-
 .../library-tests/namespaces/Namespaces11.ql  |  4 +-
 .../library-tests/namespaces/Namespaces12.ql  |  2 +-
 .../library-tests/namespaces/Namespaces2.ql   |  2 +-
 .../library-tests/namespaces/Namespaces3.ql   |  2 +-
 .../library-tests/namespaces/Namespaces4.ql   |  2 +-
 .../library-tests/namespaces/Namespaces5.ql   |  2 +-
 .../library-tests/namespaces/Namespaces6.ql   |  4 +-
 .../library-tests/namespaces/Namespaces7.ql   |  2 +-
 .../library-tests/namespaces/Namespaces8.ql   |  2 +-
 .../library-tests/namespaces/Namespaces9.ql   |  2 +-
 .../library-tests/nestedtypes/NestedTypes1.ql |  4 +-
 .../library-tests/nestedtypes/NestedTypes2.ql |  4 +-
 .../library-tests/nestedtypes/NestedTypes3.ql |  4 +-
 .../library-tests/nestedtypes/NestedTypes4.ql |  6 +-
 .../library-tests/nestedtypes/NestedTypes5.ql |  6 +-
 .../library-tests/nestedtypes/NestedTypes6.ql |  4 +-
 .../library-tests/nestedtypes/NestedTypes7.ql |  4 +-
 .../library-tests/nestedtypes/NestedTypes8.ql |  4 +-
 .../library-tests/nestedtypes/NestedTypes9.ql |  4 +-
 .../library-tests/properties/Properties10.ql  |  2 +-
 .../library-tests/properties/Properties11.ql  |  2 +-
 .../library-tests/properties/Properties12.ql  |  2 +-
 .../library-tests/properties/Properties13.ql  |  2 +-
 .../library-tests/properties/Properties14.ql  |  2 +-
 .../library-tests/properties/Properties15.ql  |  2 +-
 .../library-tests/properties/Properties16.ql  |  2 +-
 .../library-tests/properties/Properties4.ql   |  2 +-
 .../library-tests/properties/Properties5.ql   |  2 +-
 .../library-tests/properties/Properties6.ql   |  2 +-
 .../library-tests/properties/Properties7.ql   |  2 +-
 .../library-tests/properties/Properties8.ql   |  2 +-
 .../library-tests/properties/Properties9.ql   |  2 +-
 csharp/ql/test/library-tests/types/Types36.ql |  2 +-
 140 files changed, 372 insertions(+), 313 deletions(-)

diff --git a/csharp/ql/examples/snippets/catch_exception.ql b/csharp/ql/examples/snippets/catch_exception.ql
index eff10ed9ba1..b01ef55da14 100644
--- a/csharp/ql/examples/snippets/catch_exception.ql
+++ b/csharp/ql/examples/snippets/catch_exception.ql
@@ -10,5 +10,5 @@
 import csharp
 
 from CatchClause catch
-where catch.getCaughtExceptionType().hasQualifiedName("System.IO.IOException")
+where catch.getCaughtExceptionType().hasQualifiedName("System.IO", "IOException")
 select catch
diff --git a/csharp/ql/examples/snippets/constructor_call.ql b/csharp/ql/examples/snippets/constructor_call.ql
index 0329b13169e..62adb46fbb9 100644
--- a/csharp/ql/examples/snippets/constructor_call.ql
+++ b/csharp/ql/examples/snippets/constructor_call.ql
@@ -10,5 +10,5 @@
 import csharp
 
 from ObjectCreation new
-where new.getObjectType().hasQualifiedName("System.Exception")
+where new.getObjectType().hasQualifiedName("System", "Exception")
 select new
diff --git a/csharp/ql/examples/snippets/extend_class.ql b/csharp/ql/examples/snippets/extend_class.ql
index 40a2eeb20d3..00d062b8978 100644
--- a/csharp/ql/examples/snippets/extend_class.ql
+++ b/csharp/ql/examples/snippets/extend_class.ql
@@ -13,5 +13,5 @@
 import csharp
 
 from RefType type
-where type.getABaseType+().hasQualifiedName("System.Collections.IEnumerator")
+where type.getABaseType+().hasQualifiedName("System.Collections", "IEnumerator")
 select type
diff --git a/csharp/ql/examples/snippets/field_read.ql b/csharp/ql/examples/snippets/field_read.ql
index e36c92aadf9..ee7dbe17d75 100644
--- a/csharp/ql/examples/snippets/field_read.ql
+++ b/csharp/ql/examples/snippets/field_read.ql
@@ -11,6 +11,6 @@ import csharp
 from Field f, FieldRead read
 where
   f.hasName("VirtualAddress") and
-  f.getDeclaringType().hasQualifiedName("Mono.Cecil.PE.Section") and
+  f.getDeclaringType().hasQualifiedName("Mono.Cecil.PE", "Section") and
   f = read.getTarget()
 select read
diff --git a/csharp/ql/examples/snippets/method_call.ql b/csharp/ql/examples/snippets/method_call.ql
index 8ae3c8d3fb0..723efc8ecb6 100644
--- a/csharp/ql/examples/snippets/method_call.ql
+++ b/csharp/ql/examples/snippets/method_call.ql
@@ -12,5 +12,5 @@ from MethodCall call, Method method
 where
   call.getTarget() = method and
   method.hasName("MethodName") and
-  method.getDeclaringType().hasQualifiedName("Company.Class")
+  method.getDeclaringType().hasQualifiedName("Company", "Class")
 select call
diff --git a/csharp/ql/examples/snippets/null_argument.ql b/csharp/ql/examples/snippets/null_argument.ql
index ca1e1516c34..78a6d3c39eb 100644
--- a/csharp/ql/examples/snippets/null_argument.ql
+++ b/csharp/ql/examples/snippets/null_argument.ql
@@ -17,6 +17,6 @@ where
   add.hasName("Add") and
   add.getDeclaringType()
       .getUnboundDeclaration()
-      .hasQualifiedName("System.Collections.Generic.ICollection<>") and
+      .hasQualifiedName("System.Collections.Generic", "ICollection<>") and
   call.getAnArgument() instanceof NullLiteral
 select call
diff --git a/csharp/ql/examples/snippets/override_method.ql b/csharp/ql/examples/snippets/override_method.ql
index ea5c2126f6a..c93b43ace64 100644
--- a/csharp/ql/examples/snippets/override_method.ql
+++ b/csharp/ql/examples/snippets/override_method.ql
@@ -11,6 +11,6 @@ import csharp
 from Method override, Method base
 where
   base.hasName("ToString") and
-  base.getDeclaringType().hasQualifiedName("System.Object") and
+  base.getDeclaringType().hasQualifiedName("System", "Object") and
   base.getAnOverrider() = override
 select override
diff --git a/csharp/ql/examples/snippets/throw_exception.ql b/csharp/ql/examples/snippets/throw_exception.ql
index 94c1615fd21..b737863225b 100644
--- a/csharp/ql/examples/snippets/throw_exception.ql
+++ b/csharp/ql/examples/snippets/throw_exception.ql
@@ -9,5 +9,5 @@
 import csharp
 
 from ThrowStmt throw
-where throw.getThrownExceptionType().getBaseClass*().hasQualifiedName("System.IO.IOException")
+where throw.getThrownExceptionType().getBaseClass*().hasQualifiedName("System.IO", "IOException")
 select throw
diff --git a/csharp/ql/lib/Linq/Helpers.qll b/csharp/ql/lib/Linq/Helpers.qll
index a3c5667c8bb..f0dda07e882 100644
--- a/csharp/ql/lib/Linq/Helpers.qll
+++ b/csharp/ql/lib/Linq/Helpers.qll
@@ -19,7 +19,7 @@ private int numStmts(ForeachStmt fes) {
 }
 
 /** Holds if the type's qualified name is "System.Linq.Enumerable" */
-predicate isEnumerableType(ValueOrRefType t) { t.hasQualifiedName("System.Linq.Enumerable") }
+predicate isEnumerableType(ValueOrRefType t) { t.hasQualifiedName("System.Linq", "Enumerable") }
 
 /** Holds if the type's qualified name starts with "System.Collections.Generic.IEnumerable" */
 predicate isIEnumerableType(ValueOrRefType t) {
diff --git a/csharp/ql/lib/semmle/code/csharp/Stmt.qll b/csharp/ql/lib/semmle/code/csharp/Stmt.qll
index 3ed9468a8d8..6bf826c675d 100644
--- a/csharp/ql/lib/semmle/code/csharp/Stmt.qll
+++ b/csharp/ql/lib/semmle/code/csharp/Stmt.qll
@@ -75,7 +75,7 @@ class BlockStmt extends Stmt, @block_stmt {
 
   /** Holds if this block is the container of the global statements. */
   predicate isGlobalStatementContainer() {
-    this.getEnclosingCallable().hasQualifiedName("Program.<Main>$")
+    this.getEnclosingCallable().hasQualifiedName("Program", "<Main>$")
   }
 
   override Stmt stripSingletonBlocks() {
diff --git a/csharp/ql/lib/semmle/code/csharp/Type.qll b/csharp/ql/lib/semmle/code/csharp/Type.qll
index d475442f886..022bd12af23 100644
--- a/csharp/ql/lib/semmle/code/csharp/Type.qll
+++ b/csharp/ql/lib/semmle/code/csharp/Type.qll
@@ -825,7 +825,7 @@ class AnonymousClass extends Class {
  * The `object` type, `System.Object`.
  */
 class ObjectType extends Class {
-  ObjectType() { this.hasQualifiedName("System.Object") }
+  ObjectType() { this.hasQualifiedName("System", "Object") }
 
   override string toStringWithTypes() { result = "object" }
 
@@ -836,7 +836,7 @@ class ObjectType extends Class {
  * The `string` type, `System.String`.
  */
 class StringType extends Class {
-  StringType() { this.hasQualifiedName("System.String") }
+  StringType() { this.hasQualifiedName("System", "String") }
 
   override string toStringWithTypes() { result = "string" }
 
diff --git a/csharp/ql/lib/semmle/code/csharp/commons/Util.qll b/csharp/ql/lib/semmle/code/csharp/commons/Util.qll
index 342ab2afd4e..91903a9109b 100644
--- a/csharp/ql/lib/semmle/code/csharp/commons/Util.qll
+++ b/csharp/ql/lib/semmle/code/csharp/commons/Util.qll
@@ -8,7 +8,7 @@ class MainMethod extends Method {
     (
       this.hasName("Main")
       or
-      this.hasQualifiedName("Program.<Main>$")
+      this.hasQualifiedName("Program", "<Main>$")
     ) and
     this.isStatic() and
     (this.getReturnType() instanceof VoidType or this.getReturnType() instanceof IntType) and
diff --git a/csharp/ql/lib/semmle/code/csharp/controlflow/internal/ControlFlowGraphImpl.qll b/csharp/ql/lib/semmle/code/csharp/controlflow/internal/ControlFlowGraphImpl.qll
index 6bd0d5d033f..37fc97903e6 100644
--- a/csharp/ql/lib/semmle/code/csharp/controlflow/internal/ControlFlowGraphImpl.qll
+++ b/csharp/ql/lib/semmle/code/csharp/controlflow/internal/ControlFlowGraphImpl.qll
@@ -768,7 +768,7 @@ module Expressions {
             nc.getOuterCompletion()
                 .(ThrowCompletion)
                 .getExceptionClass()
-                .hasQualifiedName("System.InvalidOperationException")
+                .hasQualifiedName("System", "InvalidOperationException")
           )
       )
     }
diff --git a/csharp/ql/lib/semmle/code/csharp/controlflow/internal/NonReturning.qll b/csharp/ql/lib/semmle/code/csharp/controlflow/internal/NonReturning.qll
index fe9f1148a6d..1f00343e08a 100644
--- a/csharp/ql/lib/semmle/code/csharp/controlflow/internal/NonReturning.qll
+++ b/csharp/ql/lib/semmle/code/csharp/controlflow/internal/NonReturning.qll
@@ -51,7 +51,7 @@ private class ThrowingCall extends NonReturningCall {
       this =
         any(MethodCall mc |
           mc.getTarget()
-              .hasQualifiedName("System.Runtime.ExceptionServices.ExceptionDispatchInfo", "Throw") and
+              .hasQualifiedName("System.Runtime.ExceptionServices", "ExceptionDispatchInfo", "Throw") and
           (
             mc.hasNoArguments() and
             c.getExceptionClass() instanceof SystemExceptionClass
@@ -85,8 +85,8 @@ private class DirectlyExitingCallable extends ExitingCallable {
   DirectlyExitingCallable() {
     this =
       any(Method m |
-        m.hasQualifiedName("System.Environment", "Exit") or
-        m.hasQualifiedName("System.Windows.Forms.Application", "Exit")
+        m.hasQualifiedName("System", "Environment", "Exit") or
+        m.hasQualifiedName("System.Windows.Forms", "Application", "Exit")
       )
   }
 }
diff --git a/csharp/ql/lib/semmle/code/csharp/dataflow/internal/rangeanalysis/ConstantUtils.qll b/csharp/ql/lib/semmle/code/csharp/dataflow/internal/rangeanalysis/ConstantUtils.qll
index c067e29d320..e3f5deb9898 100644
--- a/csharp/ql/lib/semmle/code/csharp/dataflow/internal/rangeanalysis/ConstantUtils.qll
+++ b/csharp/ql/lib/semmle/code/csharp/dataflow/internal/rangeanalysis/ConstantUtils.qll
@@ -13,7 +13,7 @@ private class ExprNode = ControlFlow::Nodes::ExprNode;
  * Holds if `pa` is an access to the `Length` property of an array.
  */
 predicate systemArrayLengthAccess(PropertyAccess pa) {
-  propertyOverrides(pa.getTarget(), "System.Array", "Length")
+  propertyOverrides(pa.getTarget(), "System", "Array", "Length")
 }
 
 /**
diff --git a/csharp/ql/lib/semmle/code/csharp/dataflow/internal/rangeanalysis/RangeUtils.qll b/csharp/ql/lib/semmle/code/csharp/dataflow/internal/rangeanalysis/RangeUtils.qll
index 067a9b94f45..ce7637ccd92 100644
--- a/csharp/ql/lib/semmle/code/csharp/dataflow/internal/rangeanalysis/RangeUtils.qll
+++ b/csharp/ql/lib/semmle/code/csharp/dataflow/internal/rangeanalysis/RangeUtils.qll
@@ -150,9 +150,9 @@ private module Impl {
   /**
    * Holds if property `p` matches `property` in `baseClass` or any overrides.
    */
-  predicate propertyOverrides(Property p, string baseClass, string property) {
+  predicate propertyOverrides(Property p, string namespace, string baseClass, string property) {
     exists(Property p2 |
-      p2.getUnboundDeclaration().getDeclaringType().hasQualifiedName(baseClass) and
+      p2.getUnboundDeclaration().getDeclaringType().hasQualifiedName(namespace, baseClass) and
       p2.hasName(property)
     |
       p.overridesOrImplementsOrEquals(p2)
diff --git a/csharp/ql/lib/semmle/code/csharp/dataflow/internal/rangeanalysis/SignAnalysisSpecific.qll b/csharp/ql/lib/semmle/code/csharp/dataflow/internal/rangeanalysis/SignAnalysisSpecific.qll
index 04d0816a683..9102bf29131 100644
--- a/csharp/ql/lib/semmle/code/csharp/dataflow/internal/rangeanalysis/SignAnalysisSpecific.qll
+++ b/csharp/ql/lib/semmle/code/csharp/dataflow/internal/rangeanalysis/SignAnalysisSpecific.qll
@@ -83,10 +83,10 @@ private module Impl {
    */
   predicate containerSizeAccess(ExprNode e) {
     exists(Property p | p = e.getExpr().(PropertyAccess).getTarget() |
-      propertyOverrides(p, "System.Collections.Generic.IEnumerable<>", "Count") or
-      propertyOverrides(p, "System.Collections.ICollection", "Count") or
-      propertyOverrides(p, "System.String", "Length") or
-      propertyOverrides(p, "System.Array", "Length")
+      propertyOverrides(p, "System.Collections.Generic", "IEnumerable<>", "Count") or
+      propertyOverrides(p, "System.Collections", "ICollection", "Count") or
+      propertyOverrides(p, "System", "String", "Length") or
+      propertyOverrides(p, "System", "Array", "Length")
     )
     or
     e.getExpr() instanceof CountCall
diff --git a/csharp/ql/lib/semmle/code/csharp/frameworks/Dapper.qll b/csharp/ql/lib/semmle/code/csharp/frameworks/Dapper.qll
index 3d25f4389fd..4455da25ac7 100644
--- a/csharp/ql/lib/semmle/code/csharp/frameworks/Dapper.qll
+++ b/csharp/ql/lib/semmle/code/csharp/frameworks/Dapper.qll
@@ -9,7 +9,7 @@ private import semmle.code.csharp.frameworks.system.Data
 module Dapper {
   /** The namespace `Dapper`. */
   class DapperNamespace extends Namespace {
-    DapperNamespace() { this.hasQualifiedName("Dapper") }
+    DapperNamespace() { this.hasQualifiedName("", "Dapper") }
   }
 
   /** A class in `Dapper`. */
diff --git a/csharp/ql/lib/semmle/code/csharp/frameworks/EntityFramework.qll b/csharp/ql/lib/semmle/code/csharp/frameworks/EntityFramework.qll
index 946ba0b9e2d..ce63f139367 100644
--- a/csharp/ql/lib/semmle/code/csharp/frameworks/EntityFramework.qll
+++ b/csharp/ql/lib/semmle/code/csharp/frameworks/EntityFramework.qll
@@ -20,7 +20,7 @@ module DataAnnotations {
   class NotMappedAttribute extends Attribute {
     NotMappedAttribute() {
       this.getType()
-          .hasQualifiedName("System.ComponentModel.DataAnnotations.Schema.NotMappedAttribute")
+          .hasQualifiedName("System.ComponentModel.DataAnnotations.Schema", "NotMappedAttribute")
     }
   }
 }
diff --git a/csharp/ql/lib/semmle/code/csharp/frameworks/Format.qll b/csharp/ql/lib/semmle/code/csharp/frameworks/Format.qll
index 373194ef366..7a7166baea1 100644
--- a/csharp/ql/lib/semmle/code/csharp/frameworks/Format.qll
+++ b/csharp/ql/lib/semmle/code/csharp/frameworks/Format.qll
@@ -27,15 +27,15 @@ class FormatMethod extends Method {
         or
         (this.hasName("Write") or this.hasName("WriteLine")) and
         (
-          declType.hasQualifiedName("System.Console")
+          declType.hasQualifiedName("System", "Console")
           or
-          declType.hasQualifiedName("System.IO.TextWriter")
+          declType.hasQualifiedName("System.IO", "TextWriter")
           or
-          declType.hasQualifiedName("System.Diagnostics.Debug") and
+          declType.hasQualifiedName("System.Diagnostics", "Debug") and
           this.getParameter(1).getType() instanceof ArrayType
         )
         or
-        declType.hasQualifiedName("System.Diagnostics.Trace") and
+        declType.hasQualifiedName("System.Diagnostics", "Trace") and
         (
           this.hasName("TraceError") or
           this.hasName("TraceInformation") or
@@ -43,14 +43,14 @@ class FormatMethod extends Method {
         )
         or
         this.hasName("TraceInformation") and
-        declType.hasQualifiedName("System.Diagnostics.TraceSource")
+        declType.hasQualifiedName("System.Diagnostics", "TraceSource")
         or
         this.hasName("Print") and
-        declType.hasQualifiedName("System.Diagnostics.Debug")
+        declType.hasQualifiedName("System.Diagnostics", "Debug")
       )
       or
       this.hasName("Assert") and
-      declType.hasQualifiedName("System.Diagnostics.Debug") and
+      declType.hasQualifiedName("System.Diagnostics", "Debug") and
       this.getNumberOfParameters() = 4
     )
   }
@@ -65,7 +65,7 @@ class FormatMethod extends Method {
     else
       if
         this.hasName("Assert") and
-        this.getDeclaringType().hasQualifiedName("System.Diagnostics.Debug")
+        this.getDeclaringType().hasQualifiedName("System.Diagnostics", "Debug")
       then result = 2
       else result = 0
   }
diff --git a/csharp/ql/lib/semmle/code/csharp/frameworks/JsonNET.qll b/csharp/ql/lib/semmle/code/csharp/frameworks/JsonNET.qll
index bbadee3d5c9..a56d711eabf 100644
--- a/csharp/ql/lib/semmle/code/csharp/frameworks/JsonNET.qll
+++ b/csharp/ql/lib/semmle/code/csharp/frameworks/JsonNET.qll
@@ -8,7 +8,7 @@ import csharp
 module JsonNET {
   /** The namespace `Newtonsoft.Json`. */
   class JsonNETNamespace extends Namespace {
-    JsonNETNamespace() { this.hasQualifiedName("Newtonsoft.Json") }
+    JsonNETNamespace() { this.hasQualifiedName("Newtonsoft", "Json") }
   }
 
   /** A class in `Newtonsoft.Json`. */
diff --git a/csharp/ql/lib/semmle/code/csharp/frameworks/Moq.qll b/csharp/ql/lib/semmle/code/csharp/frameworks/Moq.qll
index e0705ac7d98..7c19908f7be 100644
--- a/csharp/ql/lib/semmle/code/csharp/frameworks/Moq.qll
+++ b/csharp/ql/lib/semmle/code/csharp/frameworks/Moq.qll
@@ -4,7 +4,7 @@ import csharp
 
 /** The `Moq.Language` Namespace. */
 class MoqLanguageNamespace extends Namespace {
-  MoqLanguageNamespace() { this.hasQualifiedName("Moq.Language") }
+  MoqLanguageNamespace() { this.hasQualifiedName("Moq", "Language") }
 }
 
 /**
diff --git a/csharp/ql/lib/semmle/code/csharp/frameworks/NHibernate.qll b/csharp/ql/lib/semmle/code/csharp/frameworks/NHibernate.qll
index c416d6f6849..a0b90cb9146 100644
--- a/csharp/ql/lib/semmle/code/csharp/frameworks/NHibernate.qll
+++ b/csharp/ql/lib/semmle/code/csharp/frameworks/NHibernate.qll
@@ -14,7 +14,7 @@ module NHibernate {
 
   /** The interface `NHibernamte.ISession`. */
   class ISessionInterface extends Interface {
-    ISessionInterface() { this.hasQualifiedName("NHibernate.ISession") }
+    ISessionInterface() { this.hasQualifiedName("NHibernate", "ISession") }
 
     /** Gets a parameter that uses a mapped object. */
     Parameter getAMappedObjectParameter() {
diff --git a/csharp/ql/lib/semmle/code/csharp/frameworks/Sql.qll b/csharp/ql/lib/semmle/code/csharp/frameworks/Sql.qll
index 3d643934b5f..f50f601b45f 100644
--- a/csharp/ql/lib/semmle/code/csharp/frameworks/Sql.qll
+++ b/csharp/ql/lib/semmle/code/csharp/frameworks/Sql.qll
@@ -34,13 +34,14 @@ class IDbCommandConstructionSqlExpr extends SqlExpr, ObjectCreation {
     exists(InstanceConstructor ic | ic = this.getTarget() |
       ic.getDeclaringType().getABaseType*() instanceof SystemDataIDbCommandInterface and
       ic.getParameter(0).getType() instanceof StringType and
-      not ic.getDeclaringType()
-          .hasQualifiedName([
-              // Known sealed classes:
-              "System.Data.SqlClient.SqlCommand", "System.Data.Odbc.OdbcCommand",
-              "System.Data.OleDb.OleDbCommand", "System.Data.EntityClient.EntityCommand",
-              "System.Data.SQLite.SQLiteCommand"
-            ])
+      not exists(Type t | t = ic.getDeclaringType() |
+        // Known sealed classes:
+        t.hasQualifiedName("System.Data.SqlClient", "SqlCommand") or
+        t.hasQualifiedName("System.Data.Odbc", "OdbcCommand") or
+        t.hasQualifiedName("System.Data.OleDb", "OleDbCommand") or
+        t.hasQualifiedName("System.Data.EntityClient", "EntityCommand") or
+        t.hasQualifiedName("System.Data.SQLite", "SQLiteCommand")
+      )
     )
   }
 
diff --git a/csharp/ql/lib/semmle/code/csharp/frameworks/microsoft/AspNetCore.qll b/csharp/ql/lib/semmle/code/csharp/frameworks/microsoft/AspNetCore.qll
index d9624b60dcc..f4cfb19a354 100644
--- a/csharp/ql/lib/semmle/code/csharp/frameworks/microsoft/AspNetCore.qll
+++ b/csharp/ql/lib/semmle/code/csharp/frameworks/microsoft/AspNetCore.qll
@@ -217,7 +217,7 @@ class MicrosoftAspNetCoreMvcController extends Class {
           .getType()
           .getABaseType*()
           // ApiControllerAttribute is derived from ControllerAttribute
-          .hasQualifiedName("Microsoft.AspNetCore.Mvc.ControllerAttribute")
+          .hasQualifiedName("Microsoft.AspNetCore.Mvc", "ControllerAttribute")
     ) and
     not this.getABaseType*().getAnAttribute() instanceof
       MicrosoftAspNetCoreMvcNonControllerAttribute
@@ -288,7 +288,7 @@ class MicrosoftAspNetCoreHttpHttpResponse extends Class {
 /** An interface that is a wrapper around the collection of cookies in the response. */
 class MicrosoftAspNetCoreHttpResponseCookies extends Interface {
   MicrosoftAspNetCoreHttpResponseCookies() {
-    this.hasQualifiedName("Microsoft.AspNetCore.Http.IResponseCookies")
+    this.hasQualifiedName("Microsoft.AspNetCore.Http", "IResponseCookies")
   }
 
   /** Gets the `Append` method. */
diff --git a/csharp/ql/lib/semmle/code/csharp/frameworks/system/security/cryptography/SymmetricAlgorithm.qll b/csharp/ql/lib/semmle/code/csharp/frameworks/system/security/cryptography/SymmetricAlgorithm.qll
index d0b9c2e5239..7a307db2fa5 100644
--- a/csharp/ql/lib/semmle/code/csharp/frameworks/system/security/cryptography/SymmetricAlgorithm.qll
+++ b/csharp/ql/lib/semmle/code/csharp/frameworks/system/security/cryptography/SymmetricAlgorithm.qll
@@ -5,32 +5,33 @@
 import csharp
 
 /**
- * Holds if the object creation `oc` is the creation of the reference type with the specified `qualifiedName`, or a class derived from
- * the class with the specified `qualifiedName`.
+ * Holds if the object creation `oc` is the creation of the reference type with the specified `namespace` and `type`, or a class derived from
+ * the class with the specified `namespace` and `type`.
  */
-private predicate isCreatingObject(ObjectCreation oc, string qualifiedName) {
-  exists(RefType t | t = oc.getType() | t.getBaseClass*().hasQualifiedName(qualifiedName))
+private predicate isCreatingObject(ObjectCreation oc, string namespace, string type) {
+  exists(RefType t | t = oc.getType() | t.getBaseClass*().hasQualifiedName(namespace, type))
 }
 
 /**
- * Holds if the method call `mc` is returning the reference type with the specified `qualifiedName`.
+ * Holds if the method call `mc` is returning the reference type with the specified `namespace` and `type`.
  * and the target of the method call is a library method.
  */
-private predicate isReturningObject(MethodCall mc, string qualifiedName) {
+private predicate isReturningObject(MethodCall mc, string namespace, string type) {
   mc.getTarget().fromLibrary() and
-  exists(RefType t | t = mc.getType() | t.hasQualifiedName(qualifiedName))
+  exists(RefType t | t = mc.getType() | t.hasQualifiedName(namespace, type))
 }
 
 /**
- * Holds if the method call `mc` is a call on the library method target with the specified `qualifiedName` and `methodName`, and an argument at
+ * Holds if the method call `mc` is a call on the library method target with the specified `namespace`, `type` and `methodName`, and an argument at
  * index `argumentIndex` has the specified value `argumentValue` (case-insensitive).
  */
 bindingset[argumentValue]
 private predicate isMethodCalledWithArg(
-  MethodCall mc, string qualifiedName, string methodName, int argumentIndex, string argumentValue
+  MethodCall mc, string namespace, string type, string methodName, int argumentIndex,
+  string argumentValue
 ) {
   mc.getTarget().fromLibrary() and
-  mc.getTarget().hasQualifiedName(qualifiedName, methodName) and
+  mc.getTarget().hasQualifiedName(namespace, type, methodName) and
   mc.getArgument(argumentIndex).getValue().toUpperCase() = argumentValue.toUpperCase()
 }
 
@@ -60,13 +61,14 @@ class SymmetricAlgorithm extends Class {
  * Note: not all of the class names are supported on all platforms.
  */
 predicate isCreatingDES(Expr e) {
-  isCreatingObject(e, "System.Security.Cryptography.DES") or
-  isReturningObject(e, "System.Security.Cryptography.DES") or
-  isMethodCalledWithArg(e, "System.Security.Cryptography.SymmetricAlgorithm", "Create", 0, "DES") or
-  isMethodCalledWithArg(e, "System.Security.Cryptography.SymmetricAlgorithm", "Create", 0,
+  isCreatingObject(e, "System.Security.Cryptography", "DES") or
+  isReturningObject(e, "System.Security.Cryptography", "DES") or
+  isMethodCalledWithArg(e, "System.Security.Cryptography", "SymmetricAlgorithm", "Create", 0, "DES") or
+  isMethodCalledWithArg(e, "System.Security.Cryptography", "SymmetricAlgorithm", "Create", 0,
     "System.Security.Cryptography.DES") or
-  isMethodCalledWithArg(e, "System.Security.Cryptography.CryptoConfig", "CreateFromName", 0, "DES") or
-  isMethodCalledWithArg(e, "System.Security.Cryptography.CryptoConfig", "CreateFromName", 0,
+  isMethodCalledWithArg(e, "System.Security.Cryptography", "CryptoConfig", "CreateFromName", 0,
+    "DES") or
+  isMethodCalledWithArg(e, "System.Security.Cryptography", "CryptoConfig", "CreateFromName", 0,
     "System.Security.Cryptography.DES")
 }
 
@@ -75,21 +77,22 @@ predicate isCreatingDES(Expr e) {
  * Note: not all of the class names are supported on all platforms.
  */
 predicate isCreatingTripleDES(Expr e) {
-  isCreatingObject(e, "System.Security.Cryptography.TripleDES") or
-  isReturningObject(e, "System.Security.Cryptography.TripleDES") or
-  isMethodCalledWithArg(e, "System.Security.Cryptography.SymmetricAlgorithm", "Create", 0,
+  isCreatingObject(e, "System.Security.Cryptography", "TripleDES") or
+  isReturningObject(e, "System.Security.Cryptography", "TripleDES") or
+  isMethodCalledWithArg(e, "System.Security.Cryptography", "SymmetricAlgorithm", "Create", 0,
     "TripleDES") or
-  isMethodCalledWithArg(e, "System.Security.Cryptography.SymmetricAlgorithm", "Create", 0, "3DES") or
-  isMethodCalledWithArg(e, "System.Security.Cryptography.SymmetricAlgorithm", "Create", 0,
+  isMethodCalledWithArg(e, "System.Security.Cryptography", "SymmetricAlgorithm", "Create", 0, "3DES") or
+  isMethodCalledWithArg(e, "System.Security.Cryptography", "SymmetricAlgorithm", "Create", 0,
     "Triple DES") or
-  isMethodCalledWithArg(e, "System.Security.Cryptography.SymmetricAlgorithm", "Create", 0,
+  isMethodCalledWithArg(e, "System.Security.Cryptography", "SymmetricAlgorithm", "Create", 0,
     "System.Security.Cryptography.TripleDES") or
-  isMethodCalledWithArg(e, "System.Security.Cryptography.CryptoConfig", "CreateFromName", 0,
+  isMethodCalledWithArg(e, "System.Security.Cryptography", "CryptoConfig", "CreateFromName", 0,
     "TripleDES") or
-  isMethodCalledWithArg(e, "System.Security.Cryptography.CryptoConfig", "CreateFromName", 0, "3DES") or
-  isMethodCalledWithArg(e, "System.Security.Cryptography.CryptoConfig", "CreateFromName", 0,
+  isMethodCalledWithArg(e, "System.Security.Cryptography", "CryptoConfig", "CreateFromName", 0,
+    "3DES") or
+  isMethodCalledWithArg(e, "System.Security.Cryptography", "CryptoConfig", "CreateFromName", 0,
     "Triple DES") or
-  isMethodCalledWithArg(e, "System.Security.Cryptography.CryptoConfig", "CreateFromName", 0,
+  isMethodCalledWithArg(e, "System.Security.Cryptography", "CryptoConfig", "CreateFromName", 0,
     "System.Security.Cryptography.TripleDES")
 }
 
@@ -98,13 +101,14 @@ predicate isCreatingTripleDES(Expr e) {
  * Note: not all of the class names are supported on all platforms.
  */
 predicate isCreatingRC2(Expr e) {
-  isCreatingObject(e, "System.Security.Cryptography.RC2") or
-  isReturningObject(e, "System.Security.Cryptography.RC2") or
-  isMethodCalledWithArg(e, "System.Security.Cryptography.SymmetricAlgorithm", "Create", 0, "RC2") or
-  isMethodCalledWithArg(e, "System.Security.Cryptography.SymmetricAlgorithm", "Create", 0,
+  isCreatingObject(e, "System.Security.Cryptography", "RC2") or
+  isReturningObject(e, "System.Security.Cryptography", "RC2") or
+  isMethodCalledWithArg(e, "System.Security.Cryptography", "SymmetricAlgorithm", "Create", 0, "RC2") or
+  isMethodCalledWithArg(e, "System.Security.Cryptography", "SymmetricAlgorithm", "Create", 0,
     "System.Security.Cryptography.RC2") or
-  isMethodCalledWithArg(e, "System.Security.Cryptography.CryptoConfig", "CreateFromName", 0, "RC2") or
-  isMethodCalledWithArg(e, "System.Security.Cryptography.CryptoConfig", "CreateFromName", 0,
+  isMethodCalledWithArg(e, "System.Security.Cryptography", "CryptoConfig", "CreateFromName", 0,
+    "RC2") or
+  isMethodCalledWithArg(e, "System.Security.Cryptography", "CryptoConfig", "CreateFromName", 0,
     "System.Security.Cryptography.RC2")
 }
 
@@ -112,26 +116,26 @@ predicate isCreatingRC2(Expr e) {
  * Holds if the expression 'e' creates Rijndael symmetric algorithm.
  */
 predicate isCreatingRijndael(Expr e) {
-  isCreatingObject(e, "System.Security.Cryptography.Rijndael") or
-  isReturningObject(e, "System.Security.Cryptography.Rijndael") or
-  isMethodCalledWithArg(e, "System.Security.Cryptography.SymmetricAlgorithm", "Create", 0,
+  isCreatingObject(e, "System.Security.Cryptography", "Rijndael") or
+  isReturningObject(e, "System.Security.Cryptography", "Rijndael") or
+  isMethodCalledWithArg(e, "System.Security.Cryptography", "SymmetricAlgorithm", "Create", 0,
     "Rijndael") or
-  isMethodCalledWithArg(e, "System.Security.Cryptography.SymmetricAlgorithm", "Create", 0,
+  isMethodCalledWithArg(e, "System.Security.Cryptography", "SymmetricAlgorithm", "Create", 0,
     "RijndaelManaged") or
-  isMethodCalledWithArg(e, "System.Security.Cryptography.SymmetricAlgorithm", "Create", 0,
+  isMethodCalledWithArg(e, "System.Security.Cryptography", "SymmetricAlgorithm", "Create", 0,
     "System.Security.Cryptography.Rijndael") or
-  isMethodCalledWithArg(e, "System.Security.Cryptography.SymmetricAlgorithm", "Create", 0,
+  isMethodCalledWithArg(e, "System.Security.Cryptography", "SymmetricAlgorithm", "Create", 0,
     "System.Security.Cryptography.RijndaelManaged") or
-  isMethodCalledWithArg(e, "System.Security.Cryptography.SymmetricAlgorithm", "Create", 0,
+  isMethodCalledWithArg(e, "System.Security.Cryptography", "SymmetricAlgorithm", "Create", 0,
     "System.Security.Cryptography.SymmetricAlgorithm") or // this creates Rijndael
-  isMethodCalledWithArg(e, "System.Security.Cryptography.CryptoConfig", "CreateFromName", 0,
+  isMethodCalledWithArg(e, "System.Security.Cryptography", "CryptoConfig", "CreateFromName", 0,
     "Rijndael") or
-  isMethodCalledWithArg(e, "System.Security.Cryptography.CryptoConfig", "CreateFromName", 0,
+  isMethodCalledWithArg(e, "System.Security.Cryptography", "CryptoConfig", "CreateFromName", 0,
     "System.Security.Cryptography.Rijndael") or
-  isMethodCalledWithArg(e, "System.Security.Cryptography.CryptoConfig", "CreateFromName", 0,
+  isMethodCalledWithArg(e, "System.Security.Cryptography", "CryptoConfig", "CreateFromName", 0,
     "RijndaelManaged") or
-  isMethodCalledWithArg(e, "System.Security.Cryptography.CryptoConfig", "CreateFromName", 0,
+  isMethodCalledWithArg(e, "System.Security.Cryptography", "CryptoConfig", "CreateFromName", 0,
     "System.Security.Cryptography.RijndaelManaged") or
-  isMethodCalledWithArg(e, "System.Security.Cryptography.CryptoConfig", "CreateFromName", 0,
+  isMethodCalledWithArg(e, "System.Security.Cryptography", "CryptoConfig", "CreateFromName", 0,
     "System.Security.Cryptography.SymmetricAlgorithm") // this creates Rijndael
 }
diff --git a/csharp/ql/lib/semmle/code/csharp/frameworks/system/text/RegularExpressions.qll b/csharp/ql/lib/semmle/code/csharp/frameworks/system/text/RegularExpressions.qll
index 531fa6ef721..cba035d28d3 100644
--- a/csharp/ql/lib/semmle/code/csharp/frameworks/system/text/RegularExpressions.qll
+++ b/csharp/ql/lib/semmle/code/csharp/frameworks/system/text/RegularExpressions.qll
@@ -36,7 +36,7 @@ class SystemTextRegularExpressionsRegexClass extends SystemTextRegularExpression
  */
 class RegexGlobalTimeout extends MethodCall {
   RegexGlobalTimeout() {
-    this.getTarget().hasQualifiedName("System.AppDomain.SetData") and
+    this.getTarget().hasQualifiedName("System.AppDomain", "SetData") and
     this.getArgumentForName("name").getValue() = "REGEX_DEFAULT_MATCH_TIMEOUT"
   }
 }
diff --git a/csharp/ql/lib/semmle/code/csharp/frameworks/test/NUnit.qll b/csharp/ql/lib/semmle/code/csharp/frameworks/test/NUnit.qll
index ee6c50b2c8e..7148e7159d4 100644
--- a/csharp/ql/lib/semmle/code/csharp/frameworks/test/NUnit.qll
+++ b/csharp/ql/lib/semmle/code/csharp/frameworks/test/NUnit.qll
@@ -14,6 +14,19 @@ class NUnitFixture extends TestClass {
   }
 }
 
+private string getNameSplitter() { result = "(.*)\\.([^\\.]+)$" }
+
+bindingset[name]
+private predicate splitExceptionName(string name, string namespace, string type) {
+  if name.regexpMatch(getNameSplitter())
+  then
+    namespace = name.regexpCapture(getNameSplitter(), 1) and
+    type = name.regexpCapture(getNameSplitter(), 2)
+  else (
+    namespace = "" and type = name
+  )
+}
+
 /** An NUnit test method. */
 class NUnitTestMethod extends TestMethod {
   NUnitTestMethod() {
@@ -38,7 +51,11 @@ class NUnitTestMethod extends TestMethod {
       expected.getTarget() = this
     |
       if expected.getArgument(0).getType() instanceof StringType
-      then result.hasQualifiedName(expected.getArgument(0).getValue())
+      then
+        exists(string namespace, string type |
+          result.hasQualifiedName(namespace, type) and
+          splitExceptionName(expected.getArgument(0).getValue(), namespace, type)
+        )
       else result = expected.getArgument(0).(TypeofExpr).getTypeAccess().getTarget()
     )
   }
@@ -56,11 +73,13 @@ class NUnitFile extends TestFile {
 
 /** An attribute of type `NUnit.Framework.ValueSourceAttribute`. */
 class ValueSourceAttribute extends Attribute {
-  ValueSourceAttribute() { this.getType().hasQualifiedName("NUnit.Framework.ValueSourceAttribute") }
+  ValueSourceAttribute() {
+    this.getType().hasQualifiedName("NUnit.Framework", "ValueSourceAttribute")
+  }
 
   /** Holds if the first argument is the target type. */
   private predicate typeSpecified() {
-    this.getArgument(0).getType().(Class).hasQualifiedName("System.Type") and
+    this.getArgument(0).getType().(Class).hasQualifiedName("System", "Type") and
     this.getArgument(1).getType() instanceof StringType
   }
 
@@ -88,12 +107,12 @@ class ValueSourceAttribute extends Attribute {
 /** An attribute of type `NUnit.Framework.TestCaseSourceAttribute`. */
 class TestCaseSourceAttribute extends Attribute {
   TestCaseSourceAttribute() {
-    this.getType().hasQualifiedName("NUnit.Framework.TestCaseSourceAttribute")
+    this.getType().hasQualifiedName("NUnit.Framework", "TestCaseSourceAttribute")
   }
 
   /** Holds if the first argument is the target type. */
   private predicate typeSpecified() {
-    this.getArgument(0).getType().(Class).hasQualifiedName("System.Type") and
+    this.getArgument(0).getType().(Class).hasQualifiedName("System", "Type") and
     this.getArgument(1).getType() instanceof StringType
   }
 
@@ -120,7 +139,7 @@ class TestCaseSourceAttribute extends Attribute {
 
 /** The `NUnit.Framework.Assert` class. */
 class NUnitAssertClass extends Class {
-  NUnitAssertClass() { this.hasQualifiedName("NUnit.Framework.Assert") }
+  NUnitAssertClass() { this.hasQualifiedName("NUnit.Framework", "Assert") }
 
   /** Gets a `Null(object, ...)` method. */
   Method getANullMethod() {
@@ -179,5 +198,5 @@ class NUnitAssertClass extends Class {
 
 /** The `NUnit.Framework.AssertionException` class. */
 class AssertionExceptionClass extends Class {
-  AssertionExceptionClass() { this.hasQualifiedName("NUnit.Framework.AssertionException") }
+  AssertionExceptionClass() { this.hasQualifiedName("NUnit.Framework", "AssertionException") }
 }
diff --git a/csharp/ql/lib/semmle/code/csharp/frameworks/test/VisualStudio.qll b/csharp/ql/lib/semmle/code/csharp/frameworks/test/VisualStudio.qll
index 16f05cd7834..cd8864d0c9d 100644
--- a/csharp/ql/lib/semmle/code/csharp/frameworks/test/VisualStudio.qll
+++ b/csharp/ql/lib/semmle/code/csharp/frameworks/test/VisualStudio.qll
@@ -5,7 +5,7 @@ import semmle.code.csharp.frameworks.Test
 
 /** The `Microsoft.VisualStudio.TestTools.UnitTesting` namespace. */
 class VSTestNamespace extends Namespace {
-  VSTestNamespace() { this.hasQualifiedName("Microsoft.VisualStudio.TestTools.UnitTesting") }
+  VSTestNamespace() { this.hasQualifiedName("Microsoft.VisualStudio.TestTools", "UnitTesting") }
 }
 
 /** A class that contains test methods. */
diff --git a/csharp/ql/lib/semmle/code/csharp/frameworks/test/XUnit.qll b/csharp/ql/lib/semmle/code/csharp/frameworks/test/XUnit.qll
index 0d229ad53ce..629a5c91ec6 100644
--- a/csharp/ql/lib/semmle/code/csharp/frameworks/test/XUnit.qll
+++ b/csharp/ql/lib/semmle/code/csharp/frameworks/test/XUnit.qll
@@ -5,7 +5,7 @@ import semmle.code.csharp.frameworks.Test
 
 /** The `Xunit` namespace. */
 class XUnitNamespace extends Namespace {
-  XUnitNamespace() { this.hasQualifiedName("Xunit") }
+  XUnitNamespace() { this.hasQualifiedName("", "Xunit") }
 }
 
 /** An xUnit test attribute. */
diff --git a/csharp/ql/lib/semmle/code/csharp/security/dataflow/UnsafeDeserializationQuery.qll b/csharp/ql/lib/semmle/code/csharp/security/dataflow/UnsafeDeserializationQuery.qll
index 6f75a712386..73b23acfb29 100644
--- a/csharp/ql/lib/semmle/code/csharp/security/dataflow/UnsafeDeserializationQuery.qll
+++ b/csharp/ql/lib/semmle/code/csharp/security/dataflow/UnsafeDeserializationQuery.qll
@@ -162,7 +162,7 @@ class TaintToObjectTypeTrackingConfig extends TaintTracking2::Configuration {
   override predicate isAdditionalTaintStep(DataFlow::Node n1, DataFlow::Node n2) {
     exists(MethodCall mc, Method m |
       m = mc.getTarget() and
-      m.getDeclaringType().hasQualifiedName("System.Type") and
+      m.getDeclaringType().hasQualifiedName("System", "Type") and
       m.hasName("GetType") and
       m.isStatic() and
       n1.asExpr() = mc.getArgument(0) and
diff --git a/csharp/ql/lib/semmle/code/csharp/security/dataflow/ZipSlipQuery.qll b/csharp/ql/lib/semmle/code/csharp/security/dataflow/ZipSlipQuery.qll
index 99f001eb115..de5a5bbd837 100644
--- a/csharp/ql/lib/semmle/code/csharp/security/dataflow/ZipSlipQuery.qll
+++ b/csharp/ql/lib/semmle/code/csharp/security/dataflow/ZipSlipQuery.qll
@@ -46,7 +46,7 @@ class TaintTrackingConfiguration extends TaintTracking::Configuration {
 class ArchiveFullNameSource extends Source {
   ArchiveFullNameSource() {
     exists(PropertyAccess pa | this.asExpr() = pa |
-      pa.getTarget().getDeclaringType().hasQualifiedName("System.IO.Compression.ZipArchiveEntry") and
+      pa.getTarget().getDeclaringType().hasQualifiedName("System.IO.Compression", "ZipArchiveEntry") and
       pa.getTarget().getName() = "FullName"
     )
   }
@@ -56,7 +56,7 @@ class ArchiveFullNameSource extends Source {
 class ExtractToFileArgSink extends Sink {
   ExtractToFileArgSink() {
     exists(MethodCall mc |
-      mc.getTarget().hasQualifiedName("System.IO.Compression.ZipFileExtensions", "ExtractToFile") and
+      mc.getTarget().hasQualifiedName("System.IO.Compression", "ZipFileExtensions", "ExtractToFile") and
       this.asExpr() = mc.getArgumentForName("destinationFileName")
     )
   }
@@ -66,9 +66,9 @@ class ExtractToFileArgSink extends Sink {
 class FileOpenArgSink extends Sink {
   FileOpenArgSink() {
     exists(MethodCall mc |
-      mc.getTarget().hasQualifiedName("System.IO.File", "Open") or
-      mc.getTarget().hasQualifiedName("System.IO.File", "OpenWrite") or
-      mc.getTarget().hasQualifiedName("System.IO.File", "Create")
+      mc.getTarget().hasQualifiedName("System.IO", "File", "Open") or
+      mc.getTarget().hasQualifiedName("System.IO", "File", "OpenWrite") or
+      mc.getTarget().hasQualifiedName("System.IO", "File", "Create")
     |
       this.asExpr() = mc.getArgumentForName("path")
     )
@@ -79,7 +79,7 @@ class FileOpenArgSink extends Sink {
 class FileStreamArgSink extends Sink {
   FileStreamArgSink() {
     exists(ObjectCreation oc |
-      oc.getTarget().getDeclaringType().hasQualifiedName("System.IO.FileStream")
+      oc.getTarget().getDeclaringType().hasQualifiedName("System.IO", "FileStream")
     |
       this.asExpr() = oc.getArgumentForName("path")
     )
@@ -94,7 +94,7 @@ class FileStreamArgSink extends Sink {
 class FileInfoArgSink extends Sink {
   FileInfoArgSink() {
     exists(ObjectCreation oc |
-      oc.getTarget().getDeclaringType().hasQualifiedName("System.IO.FileInfo")
+      oc.getTarget().getDeclaringType().hasQualifiedName("System.IO", "FileInfo")
     |
       this.asExpr() = oc.getArgumentForName("fileName")
     )
@@ -108,7 +108,7 @@ class FileInfoArgSink extends Sink {
  */
 class GetFileNameSanitizer extends Sanitizer {
   GetFileNameSanitizer() {
-    exists(MethodCall mc | mc.getTarget().hasQualifiedName("System.IO.Path", "GetFileName") |
+    exists(MethodCall mc | mc.getTarget().hasQualifiedName("System.IO", "Path", "GetFileName") |
       this.asExpr() = mc
     )
   }
@@ -122,19 +122,19 @@ class GetFileNameSanitizer extends Sanitizer {
  */
 class SubstringSanitizer extends Sanitizer {
   SubstringSanitizer() {
-    exists(MethodCall mc | mc.getTarget().hasQualifiedName("System.String", "Substring") |
+    exists(MethodCall mc | mc.getTarget().hasQualifiedName("System", "String", "Substring") |
       this.asExpr() = mc
     )
   }
 }
 
 private predicate stringCheckGuard(Guard g, Expr e, AbstractValue v) {
-  g.(MethodCall).getTarget().hasQualifiedName("System.String", "StartsWith") and
+  g.(MethodCall).getTarget().hasQualifiedName("System", "String", "StartsWith") and
   g.(MethodCall).getQualifier() = e and
   // A StartsWith check against Path.Combine is not sufficient, because the ".." elements have
   // not yet been resolved.
   not exists(MethodCall combineCall |
-    combineCall.getTarget().hasQualifiedName("System.IO.Path", "Combine") and
+    combineCall.getTarget().hasQualifiedName("System.IO", "Path", "Combine") and
     DataFlow::localExprFlow(combineCall, e)
   ) and
   v.(AbstractValues::BooleanValue).getValue() = true
diff --git a/csharp/ql/lib/semmle/code/csharp/security/xml/InsecureXMLQuery.qll b/csharp/ql/lib/semmle/code/csharp/security/xml/InsecureXMLQuery.qll
index 53fe605b963..d1330bcb97d 100644
--- a/csharp/ql/lib/semmle/code/csharp/security/xml/InsecureXMLQuery.qll
+++ b/csharp/ql/lib/semmle/code/csharp/security/xml/InsecureXMLQuery.qll
@@ -47,7 +47,7 @@ abstract class InsecureXmlProcessing extends Call {
  */
 private predicate isSafeXmlResolver(Expr e) {
   e instanceof NullLiteral or
-  e.getType().(RefType).hasQualifiedName("System.Xml.XmlSecureResolver")
+  e.getType().(RefType).hasQualifiedName("System.Xml", "XmlSecureResolver")
 }
 
 /**
@@ -145,14 +145,16 @@ module XmlReader {
   private import semmle.code.csharp.dataflow.DataFlow2
 
   private class InsecureXmlReaderCreate extends InsecureXmlProcessing, MethodCall {
-    InsecureXmlReaderCreate() { this.getTarget().hasQualifiedName("System.Xml.XmlReader.Create") }
+    InsecureXmlReaderCreate() {
+      this.getTarget().hasQualifiedName("System.Xml.XmlReader", "Create")
+    }
 
     /**
      * Gets the `XmlReaderSettings` argument to to this call, if any.
      */
     Expr getSettings() {
       result = this.getAnArgument() and
-      result.getType().(RefType).getABaseType*().hasQualifiedName("System.Xml.XmlReaderSettings")
+      result.getType().(RefType).getABaseType*().hasQualifiedName("System.Xml", "XmlReaderSettings")
     }
 
     override predicate isUnsafe(string reason) {
@@ -197,7 +199,7 @@ module XmlReader {
           .getType()
           .(RefType)
           .getABaseType*()
-          .hasQualifiedName("System.Xml.XmlReaderSettings")
+          .hasQualifiedName("System.Xml", "XmlReaderSettings")
     }
 
     override predicate isSink(DataFlow::Node sink) {
@@ -209,7 +211,7 @@ module XmlReader {
 /** Provides predicates related to `System.Xml.XmlTextReader`. */
 module XmlTextReader {
   private class InsecureXmlTextReader extends InsecureXmlProcessing, ObjectCreation {
-    InsecureXmlTextReader() { this.getObjectType().hasQualifiedName("System.Xml.XmlTextReader") }
+    InsecureXmlTextReader() { this.getObjectType().hasQualifiedName("System.Xml", "XmlTextReader") }
 
     override predicate isUnsafe(string reason) {
       not exists(Expr xmlResolverVal |
@@ -244,8 +246,8 @@ module XmlDocument {
    */
   class InsecureXmlDocument extends InsecureXmlProcessing, MethodCall {
     InsecureXmlDocument() {
-      this.getTarget().hasQualifiedName("System.Xml.XmlDocument.Load") or
-      this.getTarget().hasQualifiedName("System.Xml.XmlDocument.LoadXml")
+      this.getTarget().hasQualifiedName("System.Xml", "XmlDocument", "Load") or
+      this.getTarget().hasQualifiedName("System.Xml", "XmlDocument", "LoadXml")
     }
 
     override predicate isUnsafe(string reason) {
diff --git a/csharp/ql/lib/semmle/code/csharp/serialization/Deserializers.qll b/csharp/ql/lib/semmle/code/csharp/serialization/Deserializers.qll
index 8e026f03a0f..af3cdfc28bb 100644
--- a/csharp/ql/lib/semmle/code/csharp/serialization/Deserializers.qll
+++ b/csharp/ql/lib/semmle/code/csharp/serialization/Deserializers.qll
@@ -90,7 +90,7 @@ private class WrapperDeserializer extends UnsafeDeserializer {
 /** BinaryFormatter */
 private class BinaryFormatterClass extends Class {
   BinaryFormatterClass() {
-    this.hasQualifiedName("System.Runtime.Serialization.Formatters.Binary.BinaryFormatter")
+    this.hasQualifiedName("System.Runtime.Serialization.Formatters.Binary", "BinaryFormatter")
   }
 }
 
@@ -121,7 +121,7 @@ class BinaryFormatterUnsafeDeserializeMethodResponseMethod extends Method, Unsaf
 /** SoapFormatter */
 private class SoapFormatterClass extends Class {
   SoapFormatterClass() {
-    this.hasQualifiedName("System.Runtime.Serialization.Formatters.Soap.SoapFormatter")
+    this.hasQualifiedName("System.Runtime.Serialization.Formatters.Soap", "SoapFormatter")
   }
 }
 
@@ -135,7 +135,7 @@ class SoapFormatterDeserializeMethod extends Method, UnsafeDeserializer {
 
 /** ObjectStateFormatter */
 private class ObjectStateFormatterClass extends Class {
-  ObjectStateFormatterClass() { this.hasQualifiedName("System.Web.UI.ObjectStateFormatter") }
+  ObjectStateFormatterClass() { this.hasQualifiedName("System.Web.UI", "ObjectStateFormatter") }
 }
 
 /** `System.Web.UI.ObjectStateFormatter.Deserialize` method */
@@ -149,7 +149,7 @@ class ObjectStateFormatterDeserializeMethod extends Method, UnsafeDeserializer {
 /** NetDataContractSerializer */
 class NetDataContractSerializerClass extends Class {
   NetDataContractSerializerClass() {
-    this.hasQualifiedName("System.Runtime.Serialization.NetDataContractSerializer")
+    this.hasQualifiedName("System.Runtime.Serialization", "NetDataContractSerializer")
   }
 }
 
@@ -172,7 +172,7 @@ class NetDataContractSerializerReadObjectMethod extends Method, UnsafeDeserializ
 /** DataContractJsonSerializer */
 class DataContractJsonSerializerClass extends Class {
   DataContractJsonSerializerClass() {
-    this.hasQualifiedName("System.Runtime.Serialization.Json.DataContractJsonSerializer")
+    this.hasQualifiedName("System.Runtime.Serialization.Json", "DataContractJsonSerializer")
   }
 }
 
@@ -187,7 +187,7 @@ class DataContractJsonSerializerReadObjectMethod extends Method, UnsafeDeseriali
 /** JavaScriptSerializer */
 class JavaScriptSerializerClass extends Class {
   JavaScriptSerializerClass() {
-    this.hasQualifiedName("System.Web.Script.Serialization.JavaScriptSerializer")
+    this.hasQualifiedName("System.Web.Script.Serialization", "JavaScriptSerializer")
   }
 }
 
@@ -210,7 +210,7 @@ class JavaScriptSerializerClassDeserializeObjectMethod extends Method, UnsafeDes
 /** XmlObjectSerializer */
 class XmlObjectSerializerClass extends Class {
   XmlObjectSerializerClass() {
-    this.hasQualifiedName("System.Runtime.Serialization.XmlObjectSerializer")
+    this.hasQualifiedName("System.Runtime.Serialization", "XmlObjectSerializer")
   }
 }
 
@@ -224,7 +224,7 @@ class XmlObjectSerializerReadObjectMethod extends Method, UnsafeDeserializer {
 
 /** XmlSerializer */
 class XmlSerializerClass extends Class {
-  XmlSerializerClass() { this.hasQualifiedName("System.Xml.Serialization.XmlSerializer") }
+  XmlSerializerClass() { this.hasQualifiedName("System.Xml.Serialization", "XmlSerializer") }
 }
 
 /** `System.Xml.Serialization.XmlSerializer.Deserialize` method */
@@ -238,7 +238,7 @@ class XmlSerializerDeserializeMethod extends Method, UnsafeDeserializer {
 /** DataContractSerializer */
 class DataContractSerializerClass extends Class {
   DataContractSerializerClass() {
-    this.hasQualifiedName("System.Runtime.Serialization.DataContractSerializer")
+    this.hasQualifiedName("System.Runtime.Serialization", "DataContractSerializer")
   }
 }
 
@@ -252,7 +252,7 @@ class DataContractSerializerReadObjectMethod extends Method, UnsafeDeserializer
 
 /** XmlMessageFormatter */
 class XmlMessageFormatterClass extends Class {
-  XmlMessageFormatterClass() { this.hasQualifiedName("System.Messaging.XmlMessageFormatter") }
+  XmlMessageFormatterClass() { this.hasQualifiedName("System.Messaging", "XmlMessageFormatter") }
 }
 
 /** `System.Messaging.XmlMessageFormatter.Read` method */
@@ -265,7 +265,7 @@ class XmlMessageFormatterReadMethod extends Method, UnsafeDeserializer {
 
 /** LosFormatter */
 private class LosFormatterClass extends Class {
-  LosFormatterClass() { this.hasQualifiedName("System.Web.UI.LosFormatter") }
+  LosFormatterClass() { this.hasQualifiedName("System.Web.UI", "LosFormatter") }
 }
 
 /** `System.Web.UI.LosFormatter.Deserialize` method */
@@ -278,7 +278,7 @@ class LosFormatterDeserializeMethod extends Method, UnsafeDeserializer {
 
 /** fastJSON */
 private class FastJsonClass extends Class {
-  FastJsonClass() { this.hasQualifiedName("fastJSON.JSON") }
+  FastJsonClass() { this.hasQualifiedName("fastJSON", "JSON") }
 }
 
 /** `fastJSON.JSON.ToObject` method */
@@ -292,7 +292,7 @@ class FastJsonClassToObjectMethod extends Method, UnsafeDeserializer {
 
 /** Activity */
 private class ActivityClass extends Class {
-  ActivityClass() { this.hasQualifiedName("System.Workflow.ComponentModel.Activity") }
+  ActivityClass() { this.hasQualifiedName("System.Workflow.ComponentModel", "Activity") }
 }
 
 /** `System.Workflow.ComponentModel.Activity.Load` method */
@@ -305,7 +305,7 @@ class ActivityLoadMethod extends Method, UnsafeDeserializer {
 
 /** ResourceReader */
 private class ResourceReaderClass extends Class {
-  ResourceReaderClass() { this.hasQualifiedName("System.Resources.ResourceReader") }
+  ResourceReaderClass() { this.hasQualifiedName("System.Resources", "ResourceReader") }
 }
 
 /** `System.Resources.ResourceReader` constructor */
@@ -318,7 +318,9 @@ class ResourceReaderConstructor extends Constructor, UnsafeDeserializer {
 
 /** BinaryMessageFormatter */
 private class BinaryMessageFormatterClass extends Class {
-  BinaryMessageFormatterClass() { this.hasQualifiedName("System.Messaging.BinaryMessageFormatter") }
+  BinaryMessageFormatterClass() {
+    this.hasQualifiedName("System.Messaging", "BinaryMessageFormatter")
+  }
 }
 
 /** `System.Messaging.BinaryMessageFormatter.Read` method */
@@ -331,7 +333,7 @@ class BinaryMessageFormatterReadMethod extends Method, UnsafeDeserializer {
 
 /** XamlReader */
 private class XamlReaderClass extends Class {
-  XamlReaderClass() { this.hasQualifiedName("System.Windows.Markup.XamlReader") }
+  XamlReaderClass() { this.hasQualifiedName("System.Windows.Markup", "XamlReader") }
 }
 
 /** `System.Windows.Markup.XamlReader.Parse` method */
@@ -362,7 +364,7 @@ class XamlReaderLoadAsyncMethod extends Method, UnsafeDeserializer {
 
 /** ProxyObject */
 private class ProxyObjectClass extends Class {
-  ProxyObjectClass() { this.hasQualifiedName("Microsoft.Web.Design.Remote.ProxyObject") }
+  ProxyObjectClass() { this.hasQualifiedName("Microsoft.Web.Design.Remote", "ProxyObject") }
 }
 
 /** `Microsoft.Web.Design.Remote.ProxyObject.DecodeValue` method */
@@ -383,7 +385,7 @@ class ProxyObjectDecodeSerializedObjectMethod extends Method, UnsafeDeserializer
 
 /** SweetJayson */
 private class JaysonConverterClass extends Class {
-  JaysonConverterClass() { this.hasQualifiedName("Sweet.Jayson.JaysonConverter") }
+  JaysonConverterClass() { this.hasQualifiedName("Sweet.Jayson", "JaysonConverter") }
 }
 
 /** `Sweet.Jayson.JaysonConverter.ToObject` method */
@@ -398,7 +400,7 @@ class JaysonConverterToObjectMethod extends Method, UnsafeDeserializer {
 /** ServiceStack.Text.JsonSerializer */
 private class ServiceStackTextJsonSerializerClass extends Class {
   ServiceStackTextJsonSerializerClass() {
-    this.hasQualifiedName("ServiceStack.Text.JsonSerializer")
+    this.hasQualifiedName("ServiceStack.Text", "JsonSerializer")
   }
 }
 
@@ -432,7 +434,7 @@ class ServiceStackTextJsonSerializerDeserializeFromStreamMethod extends Method,
 /** ServiceStack.Text.TypeSerializer */
 private class ServiceStackTextTypeSerializerClass extends Class {
   ServiceStackTextTypeSerializerClass() {
-    this.hasQualifiedName("ServiceStack.Text.TypeSerializer")
+    this.hasQualifiedName("ServiceStack.Text", "TypeSerializer")
   }
 }
 
@@ -465,7 +467,9 @@ class ServiceStackTextTypeSerializerDeserializeFromStreamMethod extends Method,
 
 /** ServiceStack.Text.CsvSerializer */
 private class ServiceStackTextCsvSerializerClass extends Class {
-  ServiceStackTextCsvSerializerClass() { this.hasQualifiedName("ServiceStack.Text.CsvSerializer") }
+  ServiceStackTextCsvSerializerClass() {
+    this.hasQualifiedName("ServiceStack.Text", "CsvSerializer")
+  }
 }
 
 /** `ServiceStack.Text.CsvSerializer.DeserializeFromString` method */
@@ -497,7 +501,9 @@ class ServiceStackTextCsvSerializerDeserializeFromStreamMethod extends Method, U
 
 /** ServiceStack.Text.XmlSerializer */
 private class ServiceStackTextXmlSerializerClass extends Class {
-  ServiceStackTextXmlSerializerClass() { this.hasQualifiedName("ServiceStack.Text.XmlSerializer") }
+  ServiceStackTextXmlSerializerClass() {
+    this.hasQualifiedName("ServiceStack.Text", "XmlSerializer")
+  }
 }
 
 /** `ServiceStack.Text.XmlSerializer.DeserializeFromString` method */
@@ -529,7 +535,7 @@ class ServiceStackTextXmlSerializerDeserializeFromStreamMethod extends Method, U
 
 /** MBrace.FsPickler.FsPicklerSerializer */
 private class FsPicklerSerializerClass extends Class {
-  FsPicklerSerializerClass() { this.hasQualifiedName("MBrace.FsPickler.FsPicklerSerializer") }
+  FsPicklerSerializerClass() { this.hasQualifiedName("MBrace.FsPickler", "FsPicklerSerializer") }
 }
 
 /** `MBrace.FsPickler.FsPicklerSerializer.Deserialize` method */
@@ -598,7 +604,7 @@ class FsPicklerSerializerClassUnPickleUntypedMethod extends Method, UnsafeDeseri
 
 /** MBrace.CsPickler.CsPicklerSerializer */
 private class CsPicklerSerializerClass extends Class {
-  CsPicklerSerializerClass() { this.hasQualifiedName("MBrace.CsPickler.CsPicklerSerializer") }
+  CsPicklerSerializerClass() { this.hasQualifiedName("MBrace.CsPickler", "CsPicklerSerializer") }
 }
 
 /** `MBrace.FsPickler.CsPicklerSerializer.Deserialize` method */
@@ -620,7 +626,7 @@ class CsPicklerSerializerClassUnPickleMethod extends Method, UnsafeDeserializer
 /** MBrace.CsPickler.CsPicklerTextSerializer */
 private class CsPicklerTextSerializerClass extends Class {
   CsPicklerTextSerializerClass() {
-    this.hasQualifiedName("MBrace.CsPickler.CsPicklerTextSerializer")
+    this.hasQualifiedName("MBrace.CsPickler", "CsPicklerTextSerializer")
   }
 }
 
@@ -634,7 +640,7 @@ class CsPicklerSerializerClassUnPickleOfStringMethod extends Method, UnsafeDeser
 
 /** Polenter.Serialization.SharpSerializer */
 private class SharpSerializerClass extends Class {
-  SharpSerializerClass() { this.hasQualifiedName("Polenter.Serialization.SharpSerializer") }
+  SharpSerializerClass() { this.hasQualifiedName("Polenter.Serialization", "SharpSerializer") }
 }
 
 /** `Polenter.Serialization.SharpSerializer.Deserialize` method */
@@ -647,7 +653,9 @@ class SharpSerializerClassDeserializeMethod extends Method, UnsafeDeserializer {
 
 /** YamlDotNet.Serialization.Deserializer */
 private class YamlDotNetDeserializerClass extends Class {
-  YamlDotNetDeserializerClass() { this.hasQualifiedName("YamlDotNet.Serialization.Deserializer") }
+  YamlDotNetDeserializerClass() {
+    this.hasQualifiedName("YamlDotNet.Serialization", "Deserializer")
+  }
 }
 
 /** `YamlDotNet.Serialization.Deserializer.Deserialize` method */
diff --git a/csharp/ql/src/API Abuse/CallToGCCollect.ql b/csharp/ql/src/API Abuse/CallToGCCollect.ql
index 4ffef9caa0a..a10e7dd238f 100644
--- a/csharp/ql/src/API Abuse/CallToGCCollect.ql	
+++ b/csharp/ql/src/API Abuse/CallToGCCollect.ql	
@@ -16,5 +16,5 @@ where
   c.getTarget() = gcCollect and
   gcCollect.hasName("Collect") and
   gcCollect.hasNoParameters() and
-  gcCollect.getDeclaringType().hasQualifiedName("System.GC")
+  gcCollect.getDeclaringType().hasQualifiedName("System", "GC")
 select c, "Call to 'GC.Collect()'."
diff --git a/csharp/ql/src/Bad Practices/LeftoverDebugCode.ql b/csharp/ql/src/Bad Practices/LeftoverDebugCode.ql
index c4fdee86eb8..d2cee805c04 100644
--- a/csharp/ql/src/Bad Practices/LeftoverDebugCode.ql	
+++ b/csharp/ql/src/Bad Practices/LeftoverDebugCode.ql	
@@ -19,6 +19,6 @@ where
   m.fromSource() and
   exists(UsingNamespaceDirective u |
     u.getFile() = m.getFile() and
-    u.getImportedNamespace().hasQualifiedName("System.Web")
+    u.getImportedNamespace().hasQualifiedName("System", "Web")
   )
 select m, "Remove debug code if your ASP.NET application is in production."
diff --git a/csharp/ql/src/Bad Practices/Naming Conventions/DefaultControlNames.ql b/csharp/ql/src/Bad Practices/Naming Conventions/DefaultControlNames.ql
index 2bf51653d99..53660128959 100644
--- a/csharp/ql/src/Bad Practices/Naming Conventions/DefaultControlNames.ql	
+++ b/csharp/ql/src/Bad Practices/Naming Conventions/DefaultControlNames.ql	
@@ -29,7 +29,7 @@ predicate usedInHumanWrittenCode(Field f) {
 
 from Field field, ValueOrRefType widget, string prefix
 where
-  widget.getABaseType*().hasQualifiedName("System.Windows.Forms.Control") and
+  widget.getABaseType*().hasQualifiedName("System.Windows.Forms", "Control") and
   field.getType() = widget and
   field.getName().regexpMatch(prefix + "[0-9]+") and
   controlName(prefix) and
diff --git a/csharp/ql/src/Bad Practices/UseOfSystemOutputStream.ql b/csharp/ql/src/Bad Practices/UseOfSystemOutputStream.ql
index 05424066c41..fbf9ea069ea 100644
--- a/csharp/ql/src/Bad Practices/UseOfSystemOutputStream.ql	
+++ b/csharp/ql/src/Bad Practices/UseOfSystemOutputStream.ql	
@@ -14,30 +14,30 @@ import semmle.code.csharp.commons.Util
 predicate isConsoleOutRedefinedSomewhere() {
   exists(MethodCall mc |
     mc.getTarget().hasName("SetOut") and
-    mc.getTarget().getDeclaringType().hasQualifiedName("System.Console")
+    mc.getTarget().getDeclaringType().hasQualifiedName("System", "Console")
   )
 }
 
 predicate isConsoleErrorRedefinedSomewhere() {
   exists(MethodCall mc |
     mc.getTarget().hasName("SetError") and
-    mc.getTarget().getDeclaringType().hasQualifiedName("System.Console")
+    mc.getTarget().getDeclaringType().hasQualifiedName("System", "Console")
   )
 }
 
 predicate isCallToConsoleWrite(MethodCall mc) {
   mc.getTarget().getName().matches("Write%") and
-  mc.getTarget().getDeclaringType().hasQualifiedName("System.Console")
+  mc.getTarget().getDeclaringType().hasQualifiedName("System", "Console")
 }
 
 predicate isAccessToConsoleOut(PropertyAccess pa) {
   pa.getTarget().hasName("Out") and
-  pa.getTarget().getDeclaringType().hasQualifiedName("System.Console")
+  pa.getTarget().getDeclaringType().hasQualifiedName("System", "Console")
 }
 
 predicate isAccessToConsoleError(PropertyAccess pa) {
   pa.getTarget().hasName("Error") and
-  pa.getTarget().getDeclaringType().hasQualifiedName("System.Console")
+  pa.getTarget().getDeclaringType().hasQualifiedName("System", "Console")
 }
 
 from Expr e
diff --git a/csharp/ql/src/Concurrency/Concurrency.qll b/csharp/ql/src/Concurrency/Concurrency.qll
index b2d5e97f28e..da14cfdb8e5 100644
--- a/csharp/ql/src/Concurrency/Concurrency.qll
+++ b/csharp/ql/src/Concurrency/Concurrency.qll
@@ -5,7 +5,7 @@ import csharp
 private class WaitCall extends MethodCall {
   WaitCall() {
     this.getTarget().hasName("Wait") and
-    this.getTarget().getDeclaringType().hasQualifiedName("System.Threading.Monitor")
+    this.getTarget().getDeclaringType().hasQualifiedName("System.Threading", "Monitor")
   }
 
   Expr getExpr() { result = this.getArgument(0) }
@@ -30,12 +30,12 @@ class WaitStmt extends ExprStmt {
 
 private class SynchronizedMethodAttribute extends Attribute {
   SynchronizedMethodAttribute() {
-    this.getType().hasQualifiedName("System.Runtime.CompilerServices.MethodImplAttribute") and
+    this.getType().hasQualifiedName("System.Runtime.CompilerServices", "MethodImplAttribute") and
     exists(MemberConstantAccess a, MemberConstant mc |
       a = this.getArgument(0) and
       a.getTarget() = mc and
       mc.hasName("Synchronized") and
-      mc.getDeclaringType().hasQualifiedName("System.Runtime.CompilerServices.MethodImplOptions")
+      mc.getDeclaringType().hasQualifiedName("System.Runtime.CompilerServices", "MethodImplOptions")
     )
   }
 }
diff --git a/csharp/ql/src/Dead Code/DeadCode.qll b/csharp/ql/src/Dead Code/DeadCode.qll
index dd0f6104e31..0718312867f 100644
--- a/csharp/ql/src/Dead Code/DeadCode.qll	
+++ b/csharp/ql/src/Dead Code/DeadCode.qll	
@@ -26,7 +26,7 @@ Expr getAnAccessByDynamicCall(Method m) {
   exists(MethodCall mc, Method target |
     target = mc.getTarget() and
     target.hasName("InvokeMember") and
-    target.getDeclaringType().hasQualifiedName("System.Type") and
+    target.getDeclaringType().hasQualifiedName("System", "Type") and
     mc.getArgument(0).(StringLiteral).getValue() = m.getName() and
     mc.getArgument(3).getType().(RefType).hasMethod(m) and
     result = mc
@@ -42,7 +42,7 @@ Expr getAMethodAccess(Method m) {
 
 predicate potentiallyAccessedByForEach(Method m) {
   m.hasName("GetEnumerator") and
-  m.getDeclaringType().getABaseType+().hasQualifiedName("System.Collections.IEnumerable")
+  m.getDeclaringType().getABaseType+().hasQualifiedName("System.Collections", "IEnumerable")
   or
   foreach_stmt_desugar(_, m, 1)
 }
diff --git a/csharp/ql/src/Dead Code/DeadRefTypes.ql b/csharp/ql/src/Dead Code/DeadRefTypes.ql
index f3949891271..4ff5809167c 100644
--- a/csharp/ql/src/Dead Code/DeadRefTypes.ql	
+++ b/csharp/ql/src/Dead Code/DeadRefTypes.ql	
@@ -24,7 +24,7 @@ predicate potentiallyUsedFromXaml(RefType t) {
 
 class ExportAttribute extends Attribute {
   ExportAttribute() {
-    getType().hasQualifiedName("System.ComponentModel.Composition.ExportAttribute")
+    getType().hasQualifiedName("System.ComponentModel.Composition", "ExportAttribute")
   }
 }
 
diff --git a/csharp/ql/src/Documentation/XmldocMissingException.ql b/csharp/ql/src/Documentation/XmldocMissingException.ql
index a5c06c598c7..f336868bf12 100644
--- a/csharp/ql/src/Documentation/XmldocMissingException.ql
+++ b/csharp/ql/src/Documentation/XmldocMissingException.ql
@@ -11,6 +11,14 @@
 
 import Documentation
 
+private string getNameSplitter() { result = "(.*)\\.([^\\.]+)$" }
+
+bindingset[name]
+private predicate splitExceptionName(string name, string namespace, string type) {
+  namespace = name.regexpCapture(getNameSplitter(), 1) and
+  type = name.regexpCapture(getNameSplitter(), 2)
+}
+
 from SourceMethodOrConstructor m, ThrowElement throw, RefType throwType
 where
   declarationHasXmlComment(m) and
@@ -20,8 +28,15 @@ where
     comment = getADeclarationXmlComment(m) and
     exceptionName = comment.getCref(offset) and
     throwType.getABaseType*() = throwBaseType and
-    (throwBaseType.hasName(exceptionName) or throwBaseType.hasQualifiedName(exceptionName))
-    // and comment.hasBody(offset) // Too slow
+    (
+      throwBaseType.hasName(exceptionName)
+      or
+      exists(string namespace, string type |
+        splitExceptionName(exceptionName, namespace, type) and
+        throwBaseType.hasQualifiedName(namespace, type)
+      )
+      // and comment.hasBody(offset) // Too slow
+    )
   ) and
   not getADeclarationXmlComment(m) instanceof InheritDocXmlComment
 select m, "Exception $@ should be documented.", throw, throw.getExpr().getType().getName()
diff --git a/csharp/ql/src/Likely Bugs/Collections/ContainerSizeCmpZero.ql b/csharp/ql/src/Likely Bugs/Collections/ContainerSizeCmpZero.ql
index 23f786be49a..9ee37583eb7 100644
--- a/csharp/ql/src/Likely Bugs/Collections/ContainerSizeCmpZero.ql	
+++ b/csharp/ql/src/Likely Bugs/Collections/ContainerSizeCmpZero.ql	
@@ -13,9 +13,9 @@
 import csharp
 import semmle.code.csharp.commons.Assertions
 
-private predicate propertyOverrides(Property p, string baseClass, string property) {
+private predicate propertyOverrides(Property p, string namespace, string baseClass, string property) {
   exists(Property p2 |
-    p2.getUnboundDeclaration().getDeclaringType().hasQualifiedName(baseClass) and
+    p2.getUnboundDeclaration().getDeclaringType().hasQualifiedName(namespace, baseClass) and
     p2.hasName(property)
   |
     p.overridesOrImplementsOrEquals(p2)
@@ -24,16 +24,16 @@ private predicate propertyOverrides(Property p, string baseClass, string propert
 
 private predicate containerSizeAccess(PropertyAccess pa, string containerKind) {
   (
-    propertyOverrides(pa.getTarget(), "System.Collections.Generic.ICollection<>", "Count") or
-    propertyOverrides(pa.getTarget(), "System.Collections.Generic.IReadOnlyCollection<>", "Count") or
-    propertyOverrides(pa.getTarget(), "System.Collections.ICollection", "Count")
+    propertyOverrides(pa.getTarget(), "System.Collections.Generic", "ICollection<>", "Count") or
+    propertyOverrides(pa.getTarget(), "System.Collections.Generic", "IReadOnlyCollection<>", "Count") or
+    propertyOverrides(pa.getTarget(), "System.Collections", "ICollection", "Count")
   ) and
   containerKind = "a collection"
   or
   (
-    propertyOverrides(pa.getTarget(), "System.String", "Length") and containerKind = "a string"
+    propertyOverrides(pa.getTarget(), "System", "String", "Length") and containerKind = "a string"
     or
-    propertyOverrides(pa.getTarget(), "System.Array", "Length") and containerKind = "an array"
+    propertyOverrides(pa.getTarget(), "System", "Array", "Length") and containerKind = "an array"
   )
 }
 
diff --git a/csharp/ql/src/Likely Bugs/LeapYear/UnsafeYearConstruction.ql b/csharp/ql/src/Likely Bugs/LeapYear/UnsafeYearConstruction.ql
index 838406ab82e..814ccd99e4e 100644
--- a/csharp/ql/src/Likely Bugs/LeapYear/UnsafeYearConstruction.ql	
+++ b/csharp/ql/src/Likely Bugs/LeapYear/UnsafeYearConstruction.ql	
@@ -20,14 +20,14 @@ class UnsafeYearCreationFromArithmeticConfiguration extends TaintTracking::Confi
   override predicate isSource(DataFlow::Node source) {
     exists(ArithmeticOperation ao, PropertyAccess pa | ao = source.asExpr() |
       pa = ao.getAChild*() and
-      pa.getProperty().hasQualifiedName("System.DateTime.Year")
+      pa.getProperty().hasQualifiedName("System.DateTime", "Year")
     )
   }
 
   override predicate isSink(DataFlow::Node sink) {
     exists(ObjectCreation oc |
       sink.asExpr() = oc.getArgumentForName("year") and
-      oc.getObjectType().getABaseType*().hasQualifiedName("System.DateTime")
+      oc.getObjectType().getABaseType*().hasQualifiedName("System", "DateTime")
     )
   }
 }
diff --git a/csharp/ql/src/Likely Bugs/MishandlingJapaneseEra.ql b/csharp/ql/src/Likely Bugs/MishandlingJapaneseEra.ql
index 0f4c5f0d1a0..6699f863631 100644
--- a/csharp/ql/src/Likely Bugs/MishandlingJapaneseEra.ql	
+++ b/csharp/ql/src/Likely Bugs/MishandlingJapaneseEra.ql	
@@ -23,8 +23,8 @@ predicate isEraStart(int year, int month, int day) {
 
 predicate isExactEraStartDateCreation(ObjectCreation cr) {
   (
-    cr.getType().hasQualifiedName("System.DateTime") or
-    cr.getType().hasQualifiedName("System.DateTimeOffset")
+    cr.getType().hasQualifiedName("System", "DateTime") or
+    cr.getType().hasQualifiedName("System", "DateTimeOffset")
   ) and
   isEraStart(cr.getArgument(0).getValue().toInt(), cr.getArgument(1).getValue().toInt(),
     cr.getArgument(2).getValue().toInt())
@@ -32,8 +32,10 @@ predicate isExactEraStartDateCreation(ObjectCreation cr) {
 
 predicate isDateFromJapaneseCalendarToDateTime(MethodCall mc) {
   (
-    mc.getQualifier().getType().hasQualifiedName("System.Globalization.JapaneseCalendar") or
-    mc.getQualifier().getType().hasQualifiedName("System.Globalization.JapaneseLunisolarCalendar")
+    mc.getQualifier().getType().hasQualifiedName("System.Globalization", "JapaneseCalendar") or
+    mc.getQualifier()
+        .getType()
+        .hasQualifiedName("System.Globalization", "JapaneseLunisolarCalendar")
   ) and
   mc.getTarget().hasName("ToDateTime") and
   mc.getArgument(0).hasValue() and
@@ -47,16 +49,16 @@ predicate isDateFromJapaneseCalendarToDateTime(MethodCall mc) {
 
 predicate isDateFromJapaneseCalendarCreation(ObjectCreation cr) {
   (
-    cr.getType().hasQualifiedName("System.DateTime") or
-    cr.getType().hasQualifiedName("System.DateTimeOffset")
+    cr.getType().hasQualifiedName("System", "DateTime") or
+    cr.getType().hasQualifiedName("System", "DateTimeOffset")
   ) and
   (
     cr.getArgumentForName("calendar")
         .getType()
-        .hasQualifiedName("System.Globalization.JapaneseCalendar") or
+        .hasQualifiedName("System.Globalization", "JapaneseCalendar") or
     cr.getArgumentForName("calendar")
         .getType()
-        .hasQualifiedName("System.Globalization.JapaneseLunisolarCalendar")
+        .hasQualifiedName("System.Globalization", "JapaneseLunisolarCalendar")
   ) and
   cr.getArgumentForName("year").hasValue()
 }
diff --git a/csharp/ql/src/Security Features/CWE-091/XMLInjection.ql b/csharp/ql/src/Security Features/CWE-091/XMLInjection.ql
index 038dc267d14..c537a85c1f1 100644
--- a/csharp/ql/src/Security Features/CWE-091/XMLInjection.ql	
+++ b/csharp/ql/src/Security Features/CWE-091/XMLInjection.ql	
@@ -27,7 +27,7 @@ class TaintTrackingConfiguration extends TaintTracking::Configuration {
   override predicate isSink(DataFlow::Node sink) {
     exists(MethodCall mc |
       mc.getTarget().hasName("WriteRaw") and
-      mc.getTarget().getDeclaringType().getABaseType*().hasQualifiedName("System.Xml.XmlWriter")
+      mc.getTarget().getDeclaringType().getABaseType*().hasQualifiedName("System.Xml", "XmlWriter")
     |
       mc.getArgument(0) = sink.asExpr()
     )
@@ -39,7 +39,7 @@ class TaintTrackingConfiguration extends TaintTracking::Configuration {
       mc.getTarget()
           .getDeclaringType()
           .getABaseType*()
-          .hasQualifiedName("System.Security.SecurityElement")
+          .hasQualifiedName("System.Security", "SecurityElement")
     |
       mc = node.asExpr()
     )
diff --git a/csharp/ql/src/Security Features/CWE-114/AssemblyPathInjection.ql b/csharp/ql/src/Security Features/CWE-114/AssemblyPathInjection.ql
index 3705ece0e72..c0990112188 100644
--- a/csharp/ql/src/Security Features/CWE-114/AssemblyPathInjection.ql	
+++ b/csharp/ql/src/Security Features/CWE-114/AssemblyPathInjection.ql	
@@ -34,7 +34,7 @@ class TaintTrackingConfiguration extends TaintTracking::Configuration {
       mc.getTarget()
           .getDeclaringType()
           .getABaseType*()
-          .hasQualifiedName("System.Reflection.Assembly") and
+          .hasQualifiedName("System.Reflection", "Assembly") and
       mc.getArgument(arg) = sink.asExpr()
     |
       name = "LoadFrom" and arg = 0 and mc.getNumberOfArguments() = [1 .. 2]
diff --git a/csharp/ql/src/Security Features/CWE-327/DontInstallRootCert.ql b/csharp/ql/src/Security Features/CWE-327/DontInstallRootCert.ql
index 4f7e04f1175..fefd27727ec 100644
--- a/csharp/ql/src/Security Features/CWE-327/DontInstallRootCert.ql	
+++ b/csharp/ql/src/Security Features/CWE-327/DontInstallRootCert.ql	
@@ -21,7 +21,7 @@ class AddCertToRootStoreConfig extends DataFlow::Configuration {
     exists(ObjectCreation oc | oc = source.asExpr() |
       oc.getType()
           .(RefType)
-          .hasQualifiedName("System.Security.Cryptography.X509Certificates.X509Store") and
+          .hasQualifiedName("System.Security.Cryptography.X509Certificates", "X509Store") and
       oc.getArgument(0).(Access).getTarget().hasName("Root")
     )
   }
@@ -30,9 +30,10 @@ class AddCertToRootStoreConfig extends DataFlow::Configuration {
     exists(MethodCall mc |
       (
         mc.getTarget()
-            .hasQualifiedName("System.Security.Cryptography.X509Certificates.X509Store", "Add") or
+            .hasQualifiedName("System.Security.Cryptography.X509Certificates", "X509Store", "Add") or
         mc.getTarget()
-            .hasQualifiedName("System.Security.Cryptography.X509Certificates.X509Store", "AddRange")
+            .hasQualifiedName("System.Security.Cryptography.X509Certificates", "X509Store",
+              "AddRange")
       ) and
       sink.asExpr() = mc.getQualifier()
     )
diff --git a/csharp/ql/src/Security Features/CWE-384/AbandonSession.ql b/csharp/ql/src/Security Features/CWE-384/AbandonSession.ql
index ffdb7220f01..e158ac6b366 100644
--- a/csharp/ql/src/Security Features/CWE-384/AbandonSession.ql	
+++ b/csharp/ql/src/Security Features/CWE-384/AbandonSession.ql	
@@ -30,7 +30,7 @@ predicate loginMethod(Method m, ControlFlow::SuccessorType flowFrom) {
 /** The `System.Web.SessionState.HttpSessionState` class. */
 class SystemWebSessionStateHttpSessionStateClass extends Class {
   SystemWebSessionStateHttpSessionStateClass() {
-    this.hasQualifiedName("System.Web.SessionState.HttpSessionState")
+    this.hasQualifiedName("System.Web.SessionState", "HttpSessionState")
   }
 
   /** Gets the `Abandon` method. */
diff --git a/csharp/ql/src/experimental/CWE-918/RequestForgery.qll b/csharp/ql/src/experimental/CWE-918/RequestForgery.qll
index fd08734fb5f..9dc3fbdf2b9 100644
--- a/csharp/ql/src/experimental/CWE-918/RequestForgery.qll
+++ b/csharp/ql/src/experimental/CWE-918/RequestForgery.qll
@@ -68,7 +68,7 @@ module RequestForgery {
    */
   private class SystemWebHttpRequestMessageSink extends Sink {
     SystemWebHttpRequestMessageSink() {
-      exists(Class c | c.hasQualifiedName("System.Net.Http.HttpRequestMessage") |
+      exists(Class c | c.hasQualifiedName("System.Net.Http", "HttpRequestMessage") |
         c.getAConstructor().getACall().getArgument(1) = this.asExpr()
       )
     }
@@ -81,7 +81,7 @@ module RequestForgery {
   private class SystemNetWebRequestCreateSink extends Sink {
     SystemNetWebRequestCreateSink() {
       exists(Method m |
-        m.getDeclaringType().hasQualifiedName("System.Net.WebRequest") and m.hasName("Create")
+        m.getDeclaringType().hasQualifiedName("System.Net", "WebRequest") and m.hasName("Create")
       |
         m.getACall().getArgument(0) = this.asExpr()
       )
@@ -95,7 +95,7 @@ module RequestForgery {
   private class SystemNetHttpClientSink extends Sink {
     SystemNetHttpClientSink() {
       exists(Method m |
-        m.getDeclaringType().hasQualifiedName("System.Net.Http.HttpClient") and
+        m.getDeclaringType().hasQualifiedName("System.Net.Http", "HttpClient") and
         m.hasName([
             "DeleteAsync", "GetAsync", "GetByteArrayAsync", "GetStreamAsync", "GetStringAsync",
             "PatchAsync", "PostAsync", "PutAsync"
@@ -112,10 +112,13 @@ module RequestForgery {
    */
   private class SystemNetClientBaseAddressSink extends Sink {
     SystemNetClientBaseAddressSink() {
-      exists(Property p |
+      exists(Property p, Type t |
         p.hasName("BaseAddress") and
-        p.getDeclaringType()
-            .hasQualifiedName(["System.Net.WebClient", "System.Net.Http.HttpClient"])
+        t = p.getDeclaringType() and
+        (
+          t.hasQualifiedName("System.Net", "WebClient") or
+          t.hasQualifiedName("System.Net.Http", "HttpClient")
+        )
       |
         p.getAnAssignedValue() = this.asExpr()
       )
@@ -128,7 +131,7 @@ module RequestForgery {
    * This guard considers all checks as valid.
    */
   private predicate baseUriGuard(Guard g, Expr e, AbstractValue v) {
-    g.(MethodCall).getTarget().hasQualifiedName("System.Uri", "IsBaseOf") and
+    g.(MethodCall).getTarget().hasQualifiedName("System", "Uri", "IsBaseOf") and
     // we consider any checks against the tainted value to sainitize the taint.
     // This implies any check such as shown below block the taint flow.
     // Uri url = new Uri("whitelist.com")
@@ -147,7 +150,7 @@ module RequestForgery {
    * This guard considers all checks as valid.
    */
   private predicate stringStartsWithGuard(Guard g, Expr e, AbstractValue v) {
-    g.(MethodCall).getTarget().hasQualifiedName("System.String", "StartsWith") and
+    g.(MethodCall).getTarget().hasQualifiedName("System", "String", "StartsWith") and
     // Any check such as the ones shown below
     // "https://myurl.com/".startsWith(`taint`)
     // `taint`.startsWith("https://myurl.com/")
@@ -168,7 +171,7 @@ module RequestForgery {
 
   private predicate pathCombineStep(DataFlow::Node prev, DataFlow::Node succ) {
     exists(MethodCall combineCall |
-      combineCall.getTarget().hasQualifiedName("System.IO.Path", "Combine") and
+      combineCall.getTarget().hasQualifiedName("System.IO", "Path", "Combine") and
       combineCall.getArgument(0) = prev.asExpr() and
       combineCall = succ.asExpr()
     )
@@ -176,7 +179,7 @@ module RequestForgery {
 
   private predicate uriCreationStep(DataFlow::Node prev, DataFlow::Node succ) {
     exists(ObjectCreation oc |
-      oc.getTarget().getDeclaringType().hasQualifiedName("System.Uri") and
+      oc.getTarget().getDeclaringType().hasQualifiedName("System", "Uri") and
       oc.getArgument(0) = prev.asExpr() and
       oc = succ.asExpr()
     )
@@ -217,7 +220,7 @@ module RequestForgery {
 
   private predicate formatConvertStep(DataFlow::Node prev, DataFlow::Node succ) {
     exists(Method m |
-      m.hasQualifiedName("System.Convert",
+      m.hasQualifiedName("System", "Convert",
         ["FromBase64String", "FromHexString", "FromBase64CharArray"]) and
       m.getParameter(0) = prev.asParameter() and
       succ.asExpr() = m.getACall()
diff --git a/csharp/ql/src/experimental/Security Features/CWE-327/Azure/UnsafeUsageOfClientSideEncryptionVersion.ql b/csharp/ql/src/experimental/Security Features/CWE-327/Azure/UnsafeUsageOfClientSideEncryptionVersion.ql
index eb1cb673ed2..be503fe31d1 100644
--- a/csharp/ql/src/experimental/Security Features/CWE-327/Azure/UnsafeUsageOfClientSideEncryptionVersion.ql	
+++ b/csharp/ql/src/experimental/Security Features/CWE-327/Azure/UnsafeUsageOfClientSideEncryptionVersion.ql	
@@ -18,7 +18,7 @@ import csharp
  */
 predicate isCreatingAzureClientSideEncryptionObject(ObjectCreation oc, Class c, Expr e) {
   exists(Parameter p | p.hasName("version") |
-    c.hasQualifiedName("Azure.Storage.ClientSideEncryptionOptions") and
+    c.hasQualifiedName("Azure.Storage", "ClientSideEncryptionOptions") and
     oc.getTarget() = c.getAConstructor() and
     e = oc.getArgumentForParameter(p)
   )
@@ -28,7 +28,7 @@ predicate isCreatingAzureClientSideEncryptionObject(ObjectCreation oc, Class c,
  * Holds if `oc` is an object creation of the outdated type `c` = `Microsoft.Azure.Storage.Blob.BlobEncryptionPolicy`
  */
 predicate isCreatingOutdatedAzureClientSideEncryptionObject(ObjectCreation oc, Class c) {
-  c.hasQualifiedName("Microsoft.Azure.Storage.Blob.BlobEncryptionPolicy") and
+  c.hasQualifiedName("Microsoft.Azure.Storage.Blob", "BlobEncryptionPolicy") and
   oc.getTarget() = c.getAConstructor()
 }
 
@@ -62,7 +62,7 @@ predicate isObjectCreationArgumentSafeAndUsingSafeVersionOfAssembly(Expr version
  */
 predicate isExprAnAccessToSafeClientSideEncryptionVersionValue(Expr e) {
   exists(EnumConstant ec |
-    ec.hasQualifiedName("Azure.Storage.ClientSideEncryptionVersion.V2_0") and
+    ec.hasQualifiedName("Azure.Storage.ClientSideEncryptionVersion", "V2_0") and
     ec.getAnAccess() = e
   )
 }
diff --git a/csharp/ql/src/experimental/Security Features/CWE-759/HashWithoutSalt.ql b/csharp/ql/src/experimental/Security Features/CWE-759/HashWithoutSalt.ql
index edcbf425497..a833ac79898 100644
--- a/csharp/ql/src/experimental/Security Features/CWE-759/HashWithoutSalt.ql	
+++ b/csharp/ql/src/experimental/Security Features/CWE-759/HashWithoutSalt.ql	
@@ -96,10 +96,10 @@ predicate hasAnotherHashCall(MethodCall mc) {
 predicate hasFurtherProcessing(MethodCall mc) {
   mc.getTarget().fromLibrary() and
   (
-    mc.getTarget().hasQualifiedName("System.Array", "Copy") or // Array.Copy(passwordHash, 0, password.Length), 0, key, 0, keyLen);
-    mc.getTarget().hasQualifiedName("System.String", "Concat") or // string.Concat(passwordHash, saltkey)
-    mc.getTarget().hasQualifiedName("System.Buffer", "BlockCopy") or // Buffer.BlockCopy(passwordHash, 0, allBytes, 0, 20)
-    mc.getTarget().hasQualifiedName("System.String", "Format") // String.Format("{0}:{1}:{2}", username, salt, password)
+    mc.getTarget().hasQualifiedName("System", "Array", "Copy") or // Array.Copy(passwordHash, 0, password.Length), 0, key, 0, keyLen);
+    mc.getTarget().hasQualifiedName("System", "String", "Concat") or // string.Concat(passwordHash, saltkey)
+    mc.getTarget().hasQualifiedName("System", "Buffer", "BlockCopy") or // Buffer.BlockCopy(passwordHash, 0, allBytes, 0, 20)
+    mc.getTarget().hasQualifiedName("System", "String", "Format") // String.Format("{0}:{1}:{2}", username, salt, password)
   )
 }
 
@@ -150,7 +150,7 @@ class HashWithoutSaltConfiguration extends TaintTracking::Configuration {
   override predicate isAdditionalTaintStep(DataFlow::Node node1, DataFlow::Node node2) {
     exists(MethodCall mc |
       mc.getTarget()
-          .hasQualifiedName("Windows.Security.Cryptography.CryptographicBuffer",
+          .hasQualifiedName("Windows.Security.Cryptography", "CryptographicBuffer",
             "ConvertStringToBinary") and
       mc.getArgument(0) = node1.asExpr() and
       mc = node2.asExpr()
diff --git a/csharp/ql/src/experimental/Security Features/JsonWebTokenHandler/JsonWebTokenHandlerLib.qll b/csharp/ql/src/experimental/Security Features/JsonWebTokenHandler/JsonWebTokenHandlerLib.qll
index bf9df3e5184..636400ceb33 100644
--- a/csharp/ql/src/experimental/Security Features/JsonWebTokenHandler/JsonWebTokenHandlerLib.qll	
+++ b/csharp/ql/src/experimental/Security Features/JsonWebTokenHandler/JsonWebTokenHandlerLib.qll	
@@ -7,7 +7,7 @@ import DataFlow
 class TokenValidationParametersPropertySensitiveValidation extends Property {
   TokenValidationParametersPropertySensitiveValidation() {
     exists(Class c |
-      c.hasQualifiedName("Microsoft.IdentityModel.Tokens.TokenValidationParameters")
+      c.hasQualifiedName("Microsoft.IdentityModel.Tokens", "TokenValidationParameters")
     |
       c.getAProperty() = this and
       this.getName() in [
@@ -52,8 +52,10 @@ predicate isAssemblyOlderVersion(string assemblyName, string ver) {
  */
 class JsonWebTokenHandlerValidateTokenMethod extends Method {
   JsonWebTokenHandlerValidateTokenMethod() {
-    this.hasQualifiedName("Microsoft.IdentityModel.JsonWebTokens.JsonWebTokenHandler.ValidateToken") or
-    this.hasQualifiedName("Microsoft.AzureAD.DeviceIdentification.Common.Tokens.JwtValidator.ValidateEncryptedToken")
+    this.hasQualifiedName("Microsoft.IdentityModel.JsonWebTokens", "JsonWebTokenHandler",
+      "ValidateToken") or
+    this.hasQualifiedName("Microsoft.AzureAD.DeviceIdentification.Common.Tokens", "JwtValidator",
+      "ValidateEncryptedToken")
   }
 }
 
@@ -99,7 +101,7 @@ private class FlowsToTokenValidationResultIsValidCall extends DataFlow::Configur
 class TokenValidationParametersProperty extends Property {
   TokenValidationParametersProperty() {
     exists(Class c |
-      c.hasQualifiedName("Microsoft.IdentityModel.Tokens.TokenValidationParameters")
+      c.hasQualifiedName("Microsoft.IdentityModel.Tokens", "TokenValidationParameters")
     |
       c.getAProperty() = this and
       this.getName() in [
@@ -158,7 +160,7 @@ class CallableAlwaysReturnsTrue extends Callable {
  */
 predicate callableOnlyThrowsArgumentNullException(Callable c) {
   forall(ThrowElement thre | c = thre.getEnclosingCallable() |
-    thre.getThrownExceptionType().hasQualifiedName("System.ArgumentNullException")
+    thre.getThrownExceptionType().hasQualifiedName("System", "ArgumentNullException")
   )
 }
 
diff --git a/csharp/ql/src/experimental/Security Features/Serialization/UnsafeTypeUsedDataContractSerializer.ql b/csharp/ql/src/experimental/Security Features/Serialization/UnsafeTypeUsedDataContractSerializer.ql
index f3a83b67926..5907e4be311 100644
--- a/csharp/ql/src/experimental/Security Features/Serialization/UnsafeTypeUsedDataContractSerializer.ql	
+++ b/csharp/ql/src/experimental/Security Features/Serialization/UnsafeTypeUsedDataContractSerializer.ql	
@@ -14,7 +14,9 @@ import DataSetSerialization
 predicate xmlSerializerConstructorArgument(Expr e) {
   exists(ObjectCreation oc, Constructor c | e = oc.getArgument(0) |
     c = oc.getTarget() and
-    c.getDeclaringType().getABaseType*().hasQualifiedName("System.Xml.Serialization.XmlSerializer")
+    c.getDeclaringType()
+        .getABaseType*()
+        .hasQualifiedName("System.Xml.Serialization", "XmlSerializer")
   )
 }
 
diff --git a/csharp/ql/test/library-tests/assemblies/assemblies.ql b/csharp/ql/test/library-tests/assemblies/assemblies.ql
index 9c072f0d51e..70d9c419d5a 100644
--- a/csharp/ql/test/library-tests/assemblies/assemblies.ql
+++ b/csharp/ql/test/library-tests/assemblies/assemblies.ql
@@ -20,7 +20,7 @@ from
   Class class1, MissingType class2, MissingType class3, MissingType class4, MissingType class5,
   MissingType del2, Field a, Method b, Method c, Method d, Method e, Method f, Method g
 where
-  class1.hasQualifiedName("Assembly1.Class1") and
+  class1.hasQualifiedName("Assembly1", "Class1") and
   class2.hasName("Class2") and
   class3.hasName("Class3") and
   class4.hasName("Class4") and
diff --git a/csharp/ql/test/library-tests/assemblies/locations.ql b/csharp/ql/test/library-tests/assemblies/locations.ql
index df22a55ca3c..0e368fd4792 100644
--- a/csharp/ql/test/library-tests/assemblies/locations.ql
+++ b/csharp/ql/test/library-tests/assemblies/locations.ql
@@ -2,7 +2,7 @@ import csharp
 
 from Element e, Class c, Method m, Parameter p
 where
-  c.hasQualifiedName("Locations.Test") and
+  c.hasQualifiedName("Locations", "Test") and
   m.getDeclaringType() = c and
   m.getAParameter() = p and
   (e = c or e = m or e = p)
diff --git a/csharp/ql/test/library-tests/cil/dataflow/TrivialProperties.ql b/csharp/ql/test/library-tests/cil/dataflow/TrivialProperties.ql
index edca7e6cb4b..2f165c8ae55 100644
--- a/csharp/ql/test/library-tests/cil/dataflow/TrivialProperties.ql
+++ b/csharp/ql/test/library-tests/cil/dataflow/TrivialProperties.ql
@@ -2,9 +2,9 @@ import csharp
 
 from TrivialProperty prop
 where
-  prop.getDeclaringType().hasQualifiedName("System.Reflection.AssemblyName")
+  prop.getDeclaringType().hasQualifiedName("System.Reflection", "AssemblyName")
   or
-  prop.getDeclaringType().hasQualifiedName("System.Collections.DictionaryEntry")
+  prop.getDeclaringType().hasQualifiedName("System.Collections", "DictionaryEntry")
   or
-  prop.getDeclaringType().hasQualifiedName("Dataflow.Properties")
+  prop.getDeclaringType().hasQualifiedName("Dataflow", "Properties")
 select prop.getQualifiedName()
diff --git a/csharp/ql/test/library-tests/csharp10/fileScopedNamespace.ql b/csharp/ql/test/library-tests/csharp10/fileScopedNamespace.ql
index 5b955bdafcd..c4ca6874987 100644
--- a/csharp/ql/test/library-tests/csharp10/fileScopedNamespace.ql
+++ b/csharp/ql/test/library-tests/csharp10/fileScopedNamespace.ql
@@ -1,7 +1,7 @@
 import csharp
 
 query predicate fileScopedNamespace(Namespace n, Member m) {
-  n.hasQualifiedName("MyFileScopedNamespace") and
+  n.hasQualifiedName("", "MyFileScopedNamespace") and
   exists(Class c |
     c.getNamespace() = n and
     c.hasMember(m) and
diff --git a/csharp/ql/test/library-tests/dataflow/async/Async.ql b/csharp/ql/test/library-tests/dataflow/async/Async.ql
index 71799e22f8a..aef928038e1 100644
--- a/csharp/ql/test/library-tests/dataflow/async/Async.ql
+++ b/csharp/ql/test/library-tests/dataflow/async/Async.ql
@@ -14,7 +14,7 @@ class MySink extends DataFlow::ExprNode {
 class MySource extends DataFlow::ParameterNode {
   MySource() {
     exists(Parameter p | p = this.getParameter() |
-      p = any(Class c | c.hasQualifiedName("Test")).getAMethod().getAParameter()
+      p = any(Class c | c.hasQualifiedName("", "Test")).getAMethod().getAParameter()
     )
   }
 }
diff --git a/csharp/ql/test/library-tests/delegates/Delegates2.ql b/csharp/ql/test/library-tests/delegates/Delegates2.ql
index 951c7ab9724..1ce83492659 100644
--- a/csharp/ql/test/library-tests/delegates/Delegates2.ql
+++ b/csharp/ql/test/library-tests/delegates/Delegates2.ql
@@ -6,7 +6,7 @@ import csharp
 
 from DelegateType d
 where
-  d.hasQualifiedName("Delegates.FooDelegate") and
+  d.hasQualifiedName("Delegates", "FooDelegate") and
   d.getReturnType() instanceof DoubleType and
   d.getParameter(0).hasName("param") and
   d.getParameter(0).isRef() and
diff --git a/csharp/ql/test/library-tests/delegates/Delegates3.ql b/csharp/ql/test/library-tests/delegates/Delegates3.ql
index 88c019b3067..08fc413249c 100644
--- a/csharp/ql/test/library-tests/delegates/Delegates3.ql
+++ b/csharp/ql/test/library-tests/delegates/Delegates3.ql
@@ -6,7 +6,7 @@ import csharp
 
 from DelegateType d
 where
-  d.hasQualifiedName("System.Threading.ContextCallback") and
+  d.hasQualifiedName("System.Threading", "ContextCallback") and
   d.getNumberOfParameters() = 1 and
   d.getParameter(0).hasName("state") and
   d.getParameter(0).isValue() and
diff --git a/csharp/ql/test/library-tests/enums/Enums1.ql b/csharp/ql/test/library-tests/enums/Enums1.ql
index f9978014487..ede536a2695 100644
--- a/csharp/ql/test/library-tests/enums/Enums1.ql
+++ b/csharp/ql/test/library-tests/enums/Enums1.ql
@@ -7,5 +7,5 @@ import csharp
 from EnumConstant c
 where
   c.getName() = "Red" and
-  c.getDeclaringType().hasQualifiedName("Enums.Color")
+  c.getDeclaringType().hasQualifiedName("Enums", "Color")
 select c, c.getType()
diff --git a/csharp/ql/test/library-tests/enums/Enums10.ql b/csharp/ql/test/library-tests/enums/Enums10.ql
index 21bb8019785..ced6b3709f9 100644
--- a/csharp/ql/test/library-tests/enums/Enums10.ql
+++ b/csharp/ql/test/library-tests/enums/Enums10.ql
@@ -8,7 +8,7 @@ from EnumConstant c, EnumConstant d
 where
   c.getName() = "Blue" and
   d.hasName("AnotherBlue") and
-  c.getDeclaringType().hasQualifiedName("Enums.SparseColor") and
+  c.getDeclaringType().hasQualifiedName("Enums", "SparseColor") and
   c.getType() = c.getDeclaringType() and
   c.getType() = d.getType() and
   c.getValue() = "11" and
diff --git a/csharp/ql/test/library-tests/enums/Enums2.ql b/csharp/ql/test/library-tests/enums/Enums2.ql
index eda8843c3c8..97c68efd774 100644
--- a/csharp/ql/test/library-tests/enums/Enums2.ql
+++ b/csharp/ql/test/library-tests/enums/Enums2.ql
@@ -7,7 +7,7 @@ import csharp
 from EnumConstant c
 where
   c.getName() = "Green" and
-  c.getDeclaringType().hasQualifiedName("Enums.Color") and
+  c.getDeclaringType().hasQualifiedName("Enums", "Color") and
   c.getType() = c.getDeclaringType() and
   c.getUnderlyingType() instanceof IntType
 select c
diff --git a/csharp/ql/test/library-tests/enums/Enums3.ql b/csharp/ql/test/library-tests/enums/Enums3.ql
index 4cbb3e65e4d..4e497154ee5 100644
--- a/csharp/ql/test/library-tests/enums/Enums3.ql
+++ b/csharp/ql/test/library-tests/enums/Enums3.ql
@@ -7,7 +7,7 @@ import csharp
 from EnumConstant c
 where
   c.getName() = "Green" and
-  c.getDeclaringType().hasQualifiedName("Enums.LongColor") and
+  c.getDeclaringType().hasQualifiedName("Enums", "LongColor") and
   c.getType() = c.getDeclaringType() and
   c.getValue() = "1"
 select c, c.getDeclaringType().getBaseClass().getQualifiedName()
diff --git a/csharp/ql/test/library-tests/enums/Enums4.ql b/csharp/ql/test/library-tests/enums/Enums4.ql
index 087c6b1f576..5a16ffb7c4c 100644
--- a/csharp/ql/test/library-tests/enums/Enums4.ql
+++ b/csharp/ql/test/library-tests/enums/Enums4.ql
@@ -4,5 +4,5 @@
 
 import csharp
 
-where forall(Enum e | e.getBaseClass().hasQualifiedName("System.Enum"))
+where forall(Enum e | e.getBaseClass().hasQualifiedName("System", "Enum"))
 select 1
diff --git a/csharp/ql/test/library-tests/enums/Enums6.ql b/csharp/ql/test/library-tests/enums/Enums6.ql
index 93e03a3e787..3e9332e2890 100644
--- a/csharp/ql/test/library-tests/enums/Enums6.ql
+++ b/csharp/ql/test/library-tests/enums/Enums6.ql
@@ -7,7 +7,7 @@ import csharp
 from EnumConstant c
 where
   c.getName() = "FourBlue" and
-  c.getDeclaringType().hasQualifiedName("Enums.ValueColor") and
+  c.getDeclaringType().hasQualifiedName("Enums", "ValueColor") and
   c.getType() = c.getDeclaringType() and
   c.getValue() = "4" and
   c.getUnderlyingType() instanceof UIntType
diff --git a/csharp/ql/test/library-tests/enums/Enums7.ql b/csharp/ql/test/library-tests/enums/Enums7.ql
index 93e03a3e787..3e9332e2890 100644
--- a/csharp/ql/test/library-tests/enums/Enums7.ql
+++ b/csharp/ql/test/library-tests/enums/Enums7.ql
@@ -7,7 +7,7 @@ import csharp
 from EnumConstant c
 where
   c.getName() = "FourBlue" and
-  c.getDeclaringType().hasQualifiedName("Enums.ValueColor") and
+  c.getDeclaringType().hasQualifiedName("Enums", "ValueColor") and
   c.getType() = c.getDeclaringType() and
   c.getValue() = "4" and
   c.getUnderlyingType() instanceof UIntType
diff --git a/csharp/ql/test/library-tests/enums/Enums8.ql b/csharp/ql/test/library-tests/enums/Enums8.ql
index 26ac31db457..03086265795 100644
--- a/csharp/ql/test/library-tests/enums/Enums8.ql
+++ b/csharp/ql/test/library-tests/enums/Enums8.ql
@@ -7,7 +7,7 @@ import csharp
 from EnumConstant c
 where
   c.getName() = "Red" and
-  c.getDeclaringType().hasQualifiedName("Enums.SparseColor") and
+  c.getDeclaringType().hasQualifiedName("Enums", "SparseColor") and
   c.getType() = c.getDeclaringType() and
   c.getValue() = "0" and
   c.getUnderlyingType() instanceof IntType and
diff --git a/csharp/ql/test/library-tests/enums/Enums9.ql b/csharp/ql/test/library-tests/enums/Enums9.ql
index 895764920f7..b1ad791b758 100644
--- a/csharp/ql/test/library-tests/enums/Enums9.ql
+++ b/csharp/ql/test/library-tests/enums/Enums9.ql
@@ -7,7 +7,7 @@ import csharp
 from EnumConstant c
 where
   c.getName() = "Green" and
-  c.getDeclaringType().hasQualifiedName("Enums.SparseColor") and
+  c.getDeclaringType().hasQualifiedName("Enums", "SparseColor") and
   c.getType() = c.getDeclaringType() and
   c.getValue() = "10" and
   c.getUnderlyingType() instanceof IntType and
diff --git a/csharp/ql/test/library-tests/events/Events1.ql b/csharp/ql/test/library-tests/events/Events1.ql
index 5be331349b1..39cd0365a19 100644
--- a/csharp/ql/test/library-tests/events/Events1.ql
+++ b/csharp/ql/test/library-tests/events/Events1.ql
@@ -7,6 +7,6 @@ import csharp
 from Event e
 where
   e.getName() = "Click" and
-  e.getDeclaringType().hasQualifiedName("Events.Button") and
+  e.getDeclaringType().hasQualifiedName("Events", "Button") and
   e.isPublic()
 select e, e.getType()
diff --git a/csharp/ql/test/library-tests/events/Events2.ql b/csharp/ql/test/library-tests/events/Events2.ql
index 3ff06e1a4d4..ef5a08d1f8f 100644
--- a/csharp/ql/test/library-tests/events/Events2.ql
+++ b/csharp/ql/test/library-tests/events/Events2.ql
@@ -7,6 +7,6 @@ import csharp
 from Event e
 where
   e.getName() = "Click" and
-  e.getDeclaringType().hasQualifiedName("Events.Button") and
+  e.getDeclaringType().hasQualifiedName("Events", "Button") and
   e.isFieldLike()
 select e, e.getType()
diff --git a/csharp/ql/test/library-tests/events/Events3.ql b/csharp/ql/test/library-tests/events/Events3.ql
index b90a358b43a..97a03e97ecb 100644
--- a/csharp/ql/test/library-tests/events/Events3.ql
+++ b/csharp/ql/test/library-tests/events/Events3.ql
@@ -7,6 +7,6 @@ import csharp
 from Event e
 where
   e.getName() = "Click" and
-  e.getDeclaringType().hasQualifiedName("Events.Button") and
+  e.getDeclaringType().hasQualifiedName("Events", "Button") and
   e.getType().hasName("EventHandler")
 select e, e.getType()
diff --git a/csharp/ql/test/library-tests/events/Events4.ql b/csharp/ql/test/library-tests/events/Events4.ql
index 7250c0b2c1c..3213e28b03b 100644
--- a/csharp/ql/test/library-tests/events/Events4.ql
+++ b/csharp/ql/test/library-tests/events/Events4.ql
@@ -7,7 +7,7 @@ import csharp
 from Event e
 where
   e.getName() = "MouseUp" and
-  e.getDeclaringType().hasQualifiedName("Events.Control") and
+  e.getDeclaringType().hasQualifiedName("Events", "Control") and
   e.getType().hasName("EventHandler") and
   e.isPublic()
 select e, e.getType()
diff --git a/csharp/ql/test/library-tests/events/Events5.ql b/csharp/ql/test/library-tests/events/Events5.ql
index 259ac14966d..3aed44b4f6d 100644
--- a/csharp/ql/test/library-tests/events/Events5.ql
+++ b/csharp/ql/test/library-tests/events/Events5.ql
@@ -6,7 +6,7 @@ import csharp
 
 where
   count(Event e |
-    e.getDeclaringType().hasQualifiedName("Events.Control") and
+    e.getDeclaringType().hasQualifiedName("Events", "Control") and
     e.getType().hasName("EventHandler") and
     e.isPublic()
   ) = 2
diff --git a/csharp/ql/test/library-tests/events/Events7.ql b/csharp/ql/test/library-tests/events/Events7.ql
index 407d69be06d..0d6c31630b8 100644
--- a/csharp/ql/test/library-tests/events/Events7.ql
+++ b/csharp/ql/test/library-tests/events/Events7.ql
@@ -7,6 +7,6 @@ import csharp
 from Event e
 where
   e.getName() = "MouseUp" and
-  e.getDeclaringType().hasQualifiedName("Events.Control") and
+  e.getDeclaringType().hasQualifiedName("Events", "Control") and
   not e.isFieldLike()
 select e, e.getType()
diff --git a/csharp/ql/test/library-tests/expressions/As1.ql b/csharp/ql/test/library-tests/expressions/As1.ql
index 6c436883d13..451a6c3c099 100644
--- a/csharp/ql/test/library-tests/expressions/As1.ql
+++ b/csharp/ql/test/library-tests/expressions/As1.ql
@@ -9,6 +9,6 @@ where
   m.hasName("MainIsAsCast") and
   e.getEnclosingCallable() = m and
   e.getExpr().(ParameterAccess).getTarget().getName() = "o" and
-  e.getTargetType().(Class).hasQualifiedName("Expressions.Class") and
+  e.getTargetType().(Class).hasQualifiedName("Expressions", "Class") and
   e.getEnclosingStmt().getParent().getParent() instanceof IfStmt
 select m, e
diff --git a/csharp/ql/test/library-tests/expressions/Cast1.ql b/csharp/ql/test/library-tests/expressions/Cast1.ql
index d7f812326ef..5233c6066c3 100644
--- a/csharp/ql/test/library-tests/expressions/Cast1.ql
+++ b/csharp/ql/test/library-tests/expressions/Cast1.ql
@@ -9,6 +9,6 @@ where
   m.hasName("MainIsAsCast") and
   e.getEnclosingCallable() = m and
   e.getExpr().(ParameterAccess).getTarget().getName() = "p" and
-  e.getTargetType().(Class).hasQualifiedName("Expressions.Class") and
+  e.getTargetType().(Class).hasQualifiedName("Expressions", "Class") and
   e.getEnclosingStmt().getParent().getParent() instanceof IfStmt
 select m, e
diff --git a/csharp/ql/test/library-tests/expressions/DelegateCall3.ql b/csharp/ql/test/library-tests/expressions/DelegateCall3.ql
index b68b35dde45..af7cf0bba16 100644
--- a/csharp/ql/test/library-tests/expressions/DelegateCall3.ql
+++ b/csharp/ql/test/library-tests/expressions/DelegateCall3.ql
@@ -10,5 +10,5 @@ where
   e.getEnclosingCallable() = m and
   e.getExpr() = a and
   a.getTarget().hasName("cd7") and
-  a.getTarget().getType().(DelegateType).hasQualifiedName("Expressions.D")
+  a.getTarget().getType().(DelegateType).hasQualifiedName("Expressions", "D")
 select m, e, a
diff --git a/csharp/ql/test/library-tests/expressions/Is1.ql b/csharp/ql/test/library-tests/expressions/Is1.ql
index 705b7a98ad4..baa85f62da2 100644
--- a/csharp/ql/test/library-tests/expressions/Is1.ql
+++ b/csharp/ql/test/library-tests/expressions/Is1.ql
@@ -10,5 +10,5 @@ where
   e.getEnclosingCallable() = m and
   e.getExpr().(ParameterAccess).getTarget().getName() = "o" and
   tpe = e.getPattern() and
-  tpe.getCheckedType().(Class).hasQualifiedName("Expressions.Class")
+  tpe.getCheckedType().(Class).hasQualifiedName("Expressions", "Class")
 select m, e
diff --git a/csharp/ql/test/library-tests/fields/Constants1.ql b/csharp/ql/test/library-tests/fields/Constants1.ql
index 587a38b5731..9759e49893e 100644
--- a/csharp/ql/test/library-tests/fields/Constants1.ql
+++ b/csharp/ql/test/library-tests/fields/Constants1.ql
@@ -7,7 +7,7 @@ import csharp
 from MemberConstant c
 where
   c.getName() = "X" and
-  c.getDeclaringType().hasQualifiedName("Constants.A") and
+  c.getDeclaringType().hasQualifiedName("Constants", "A") and
   c.getType() instanceof IntType and
   c.getInitializer() instanceof BinaryOperation and
   c.isPublic() and
diff --git a/csharp/ql/test/library-tests/fields/Constants2.ql b/csharp/ql/test/library-tests/fields/Constants2.ql
index 908c1f7c5c9..ec28d999150 100644
--- a/csharp/ql/test/library-tests/fields/Constants2.ql
+++ b/csharp/ql/test/library-tests/fields/Constants2.ql
@@ -7,7 +7,7 @@ import csharp
 from MemberConstant c
 where
   c.getName() = "Y" and
-  c.getDeclaringType().hasQualifiedName("Constants.A") and
+  c.getDeclaringType().hasQualifiedName("Constants", "A") and
   c.getType() instanceof IntType and
   c.getInitializer() instanceof IntLiteral and
   c.isPublic() and
diff --git a/csharp/ql/test/library-tests/fields/Constants3.ql b/csharp/ql/test/library-tests/fields/Constants3.ql
index e2bb2d9e34a..38af03d0676 100644
--- a/csharp/ql/test/library-tests/fields/Constants3.ql
+++ b/csharp/ql/test/library-tests/fields/Constants3.ql
@@ -7,7 +7,7 @@ import csharp
 from MemberConstant c
 where
   c.getName() = "Z" and
-  c.getDeclaringType().hasQualifiedName("Constants.B") and
+  c.getDeclaringType().hasQualifiedName("Constants", "B") and
   c.getType() instanceof IntType and
   c.getInitializer() instanceof BinaryOperation and
   c.isPublic() and
diff --git a/csharp/ql/test/library-tests/fields/Fields1.ql b/csharp/ql/test/library-tests/fields/Fields1.ql
index 7e7c5dfbc95..dd85903934c 100644
--- a/csharp/ql/test/library-tests/fields/Fields1.ql
+++ b/csharp/ql/test/library-tests/fields/Fields1.ql
@@ -7,7 +7,7 @@ import csharp
 from Field f
 where
   f.getName() = "X" and
-  f.getDeclaringType().hasQualifiedName("Fields.A") and
+  f.getDeclaringType().hasQualifiedName("Fields", "A") and
   f.getType() instanceof IntType and
   f.getInitializer().(IntLiteral).getValue() = "1" and
   f.isPublic() and
diff --git a/csharp/ql/test/library-tests/fields/Fields10.ql b/csharp/ql/test/library-tests/fields/Fields10.ql
index fa17e74d69b..5b5bbf7d808 100644
--- a/csharp/ql/test/library-tests/fields/Fields10.ql
+++ b/csharp/ql/test/library-tests/fields/Fields10.ql
@@ -8,6 +8,6 @@ from Field f, SimpleType t
 where
   f.getName() = "MaxValue" and
   f.getDeclaringType() = t and
-  t.hasQualifiedName("System.Decimal") and
+  t.hasQualifiedName("System", "Decimal") and
   f.isPublic()
 select f.toString(), f.getDeclaringType().toString()
diff --git a/csharp/ql/test/library-tests/fields/Fields2.ql b/csharp/ql/test/library-tests/fields/Fields2.ql
index 9a970e1eed9..ef4e737a635 100644
--- a/csharp/ql/test/library-tests/fields/Fields2.ql
+++ b/csharp/ql/test/library-tests/fields/Fields2.ql
@@ -7,7 +7,7 @@ import csharp
 from Field f
 where
   f.getName() = "Y" and
-  f.getDeclaringType().hasQualifiedName("Fields.A") and
+  f.getDeclaringType().hasQualifiedName("Fields", "A") and
   f.getType() instanceof IntType and
   not exists(f.getInitializer()) and
   f.isPublic() and
diff --git a/csharp/ql/test/library-tests/fields/Fields3.ql b/csharp/ql/test/library-tests/fields/Fields3.ql
index a6a4fade742..2bfdc558d08 100644
--- a/csharp/ql/test/library-tests/fields/Fields3.ql
+++ b/csharp/ql/test/library-tests/fields/Fields3.ql
@@ -7,7 +7,7 @@ import csharp
 from Field f
 where
   f.getName() = "Z" and
-  f.getDeclaringType().hasQualifiedName("Fields.A") and
+  f.getDeclaringType().hasQualifiedName("Fields", "A") and
   f.getType() instanceof IntType and
   f.getInitializer().(IntLiteral).getValue() = "100" and
   f.isPublic() and
diff --git a/csharp/ql/test/library-tests/fields/Fields4.ql b/csharp/ql/test/library-tests/fields/Fields4.ql
index f6c01e4e322..96c88c178cf 100644
--- a/csharp/ql/test/library-tests/fields/Fields4.ql
+++ b/csharp/ql/test/library-tests/fields/Fields4.ql
@@ -7,7 +7,7 @@ import csharp
 from Field f
 where
   f.getName() = "X" and
-  f.getDeclaringType().hasQualifiedName("Fields.B") and
+  f.getDeclaringType().hasQualifiedName("Fields", "B") and
   f.getType() instanceof IntType and
   f.getInitializer().(IntLiteral).getValue() = "1" and
   f.isPublic() and
diff --git a/csharp/ql/test/library-tests/fields/Fields5.ql b/csharp/ql/test/library-tests/fields/Fields5.ql
index eeaf4996e0c..2ff6d63581c 100644
--- a/csharp/ql/test/library-tests/fields/Fields5.ql
+++ b/csharp/ql/test/library-tests/fields/Fields5.ql
@@ -7,7 +7,7 @@ import csharp
 from Field f
 where
   f.getName() = "Y" and
-  f.getDeclaringType().hasQualifiedName("Fields.B") and
+  f.getDeclaringType().hasQualifiedName("Fields", "B") and
   f.getType() instanceof IntType and
   not exists(f.getInitializer()) and
   f.isPublic() and
diff --git a/csharp/ql/test/library-tests/fields/Fields6.ql b/csharp/ql/test/library-tests/fields/Fields6.ql
index 8706c829205..8967586b86b 100644
--- a/csharp/ql/test/library-tests/fields/Fields6.ql
+++ b/csharp/ql/test/library-tests/fields/Fields6.ql
@@ -7,7 +7,7 @@ import csharp
 from Field f
 where
   f.getName() = "finished" and
-  f.getDeclaringType().hasQualifiedName("Fields.Application") and
+  f.getDeclaringType().hasQualifiedName("Fields", "Application") and
   f.getType() instanceof BoolType and
   not exists(f.getInitializer()) and
   f.isPublic() and
diff --git a/csharp/ql/test/library-tests/fields/Fields7.ql b/csharp/ql/test/library-tests/fields/Fields7.ql
index 5097de7923f..3c031831ab6 100644
--- a/csharp/ql/test/library-tests/fields/Fields7.ql
+++ b/csharp/ql/test/library-tests/fields/Fields7.ql
@@ -8,7 +8,7 @@ from Field f, UnboundGenericClass c
 where
   f.getName() = "count" and
   f.getDeclaringType() = c and
-  c.hasQualifiedName("Fields.C<>") and
+  c.hasQualifiedName("Fields", "C<>") and
   f.getType() instanceof IntType and
   f.isStatic()
 select f, f.getDeclaringType()
diff --git a/csharp/ql/test/library-tests/fields/Fields8.ql b/csharp/ql/test/library-tests/fields/Fields8.ql
index 5097de7923f..3c031831ab6 100644
--- a/csharp/ql/test/library-tests/fields/Fields8.ql
+++ b/csharp/ql/test/library-tests/fields/Fields8.ql
@@ -8,7 +8,7 @@ from Field f, UnboundGenericClass c
 where
   f.getName() = "count" and
   f.getDeclaringType() = c and
-  c.hasQualifiedName("Fields.C<>") and
+  c.hasQualifiedName("Fields", "C<>") and
   f.getType() instanceof IntType and
   f.isStatic()
 select f, f.getDeclaringType()
diff --git a/csharp/ql/test/library-tests/fields/Fields9.ql b/csharp/ql/test/library-tests/fields/Fields9.ql
index 24a601da86a..9bb87878ee3 100644
--- a/csharp/ql/test/library-tests/fields/Fields9.ql
+++ b/csharp/ql/test/library-tests/fields/Fields9.ql
@@ -8,7 +8,7 @@ from Field f, Class c
 where
   f.getName() = "Black" and
   f.getDeclaringType() = c and
-  c.hasQualifiedName("Fields.Color") and
+  c.hasQualifiedName("Fields", "Color") and
   f.getType() = c and
   f.isStatic() and
   f.isPublic() and
diff --git a/csharp/ql/test/library-tests/indexers/Indexers10.ql b/csharp/ql/test/library-tests/indexers/Indexers10.ql
index a8329523315..2d1c7aee3a7 100644
--- a/csharp/ql/test/library-tests/indexers/Indexers10.ql
+++ b/csharp/ql/test/library-tests/indexers/Indexers10.ql
@@ -6,7 +6,7 @@ import csharp
 
 from Indexer i
 where
-  i.getDeclaringType().hasQualifiedName("Indexers.Grid") and
+  i.getDeclaringType().hasQualifiedName("Indexers", "Grid") and
   i.getType() instanceof IntType and
   i.isPublic() and
   i.isReadWrite()
diff --git a/csharp/ql/test/library-tests/indexers/Indexers2.ql b/csharp/ql/test/library-tests/indexers/Indexers2.ql
index 6065ae9abb8..ef470e73bad 100644
--- a/csharp/ql/test/library-tests/indexers/Indexers2.ql
+++ b/csharp/ql/test/library-tests/indexers/Indexers2.ql
@@ -6,7 +6,7 @@ import csharp
 
 from Indexer i
 where
-  i.getDeclaringType().hasQualifiedName("Indexers.BitArray") and
+  i.getDeclaringType().hasQualifiedName("Indexers", "BitArray") and
   i.getType() instanceof BoolType and
   i.getDimension() = 1
 select i
diff --git a/csharp/ql/test/library-tests/indexers/Indexers3.ql b/csharp/ql/test/library-tests/indexers/Indexers3.ql
index 9b38e6f6751..f6f116ab70d 100644
--- a/csharp/ql/test/library-tests/indexers/Indexers3.ql
+++ b/csharp/ql/test/library-tests/indexers/Indexers3.ql
@@ -6,7 +6,7 @@ import csharp
 
 from Indexer i
 where
-  i.getDeclaringType().hasQualifiedName("Indexers.BitArray") and
+  i.getDeclaringType().hasQualifiedName("Indexers", "BitArray") and
   i.getType() instanceof BoolType and
   i.getParameter(0).getName() = "index" and
   i.getParameter(0).getType() instanceof IntType
diff --git a/csharp/ql/test/library-tests/indexers/Indexers4.ql b/csharp/ql/test/library-tests/indexers/Indexers4.ql
index 5eeb3808a53..08d693e9489 100644
--- a/csharp/ql/test/library-tests/indexers/Indexers4.ql
+++ b/csharp/ql/test/library-tests/indexers/Indexers4.ql
@@ -6,6 +6,6 @@ import csharp
 
 from Class c
 where
-  c.hasQualifiedName("Indexers.BitArray") and
+  c.hasQualifiedName("Indexers", "BitArray") and
   count(Indexer i | i.getDeclaringType() = c) = 1
 select c
diff --git a/csharp/ql/test/library-tests/indexers/Indexers5.ql b/csharp/ql/test/library-tests/indexers/Indexers5.ql
index f264e130711..3e21cdd53cc 100644
--- a/csharp/ql/test/library-tests/indexers/Indexers5.ql
+++ b/csharp/ql/test/library-tests/indexers/Indexers5.ql
@@ -6,7 +6,7 @@ import csharp
 
 from Indexer i
 where
-  i.getDeclaringType().hasQualifiedName("Indexers.BitArray") and
+  i.getDeclaringType().hasQualifiedName("Indexers", "BitArray") and
   i.getType() instanceof BoolType and
   i.isPublic() and
   i.isReadWrite()
diff --git a/csharp/ql/test/library-tests/indexers/Indexers6.ql b/csharp/ql/test/library-tests/indexers/Indexers6.ql
index 148a896e515..9b33dd67126 100644
--- a/csharp/ql/test/library-tests/indexers/Indexers6.ql
+++ b/csharp/ql/test/library-tests/indexers/Indexers6.ql
@@ -6,7 +6,7 @@ import csharp
 
 from Indexer i
 where
-  i.getDeclaringType().hasQualifiedName("Indexers.BitArray") and
+  i.getDeclaringType().hasQualifiedName("Indexers", "BitArray") and
   i.getType() instanceof BoolType and
   i.getGetter().hasBody() and
   i.getSetter().hasBody()
diff --git a/csharp/ql/test/library-tests/indexers/Indexers7.ql b/csharp/ql/test/library-tests/indexers/Indexers7.ql
index 74dc80fa624..3c93f94ef9a 100644
--- a/csharp/ql/test/library-tests/indexers/Indexers7.ql
+++ b/csharp/ql/test/library-tests/indexers/Indexers7.ql
@@ -6,7 +6,7 @@ import csharp
 
 from Indexer i
 where
-  i.getDeclaringType().hasQualifiedName("Indexers.Grid") and
+  i.getDeclaringType().hasQualifiedName("Indexers", "Grid") and
   i.getType() instanceof IntType and
   i.getDimension() = 2
 select i
diff --git a/csharp/ql/test/library-tests/indexers/Indexers8.ql b/csharp/ql/test/library-tests/indexers/Indexers8.ql
index abaf258fafe..f3fdfa9b0fe 100644
--- a/csharp/ql/test/library-tests/indexers/Indexers8.ql
+++ b/csharp/ql/test/library-tests/indexers/Indexers8.ql
@@ -6,7 +6,7 @@ import csharp
 
 from Indexer i
 where
-  i.getDeclaringType().hasQualifiedName("Indexers.Grid") and
+  i.getDeclaringType().hasQualifiedName("Indexers", "Grid") and
   i.getType() instanceof IntType and
   i.getParameter(0).getName() = "c" and
   i.getParameter(0).getType() instanceof CharType
diff --git a/csharp/ql/test/library-tests/indexers/Indexers9.ql b/csharp/ql/test/library-tests/indexers/Indexers9.ql
index a50719af912..5999bd14791 100644
--- a/csharp/ql/test/library-tests/indexers/Indexers9.ql
+++ b/csharp/ql/test/library-tests/indexers/Indexers9.ql
@@ -6,7 +6,7 @@ import csharp
 
 from Indexer i
 where
-  i.getDeclaringType().hasQualifiedName("Indexers.Grid") and
+  i.getDeclaringType().hasQualifiedName("Indexers", "Grid") and
   i.getType() instanceof IntType and
   i.getParameter(1).getName() = "col" and
   i.getParameter(1).getType() instanceof IntType
diff --git a/csharp/ql/test/library-tests/methods/Parameters1.ql b/csharp/ql/test/library-tests/methods/Parameters1.ql
index d4b1939bfe7..c28a724198c 100644
--- a/csharp/ql/test/library-tests/methods/Parameters1.ql
+++ b/csharp/ql/test/library-tests/methods/Parameters1.ql
@@ -7,7 +7,7 @@ import csharp
 from Method m
 where
   m.hasName("Swap") and
-  m.getDeclaringType().hasQualifiedName("Methods.TestRef") and
+  m.getDeclaringType().hasQualifiedName("Methods", "TestRef") and
   m.getParameter(0).isRef() and
   m.getParameter(0).hasName("x") and
   m.getParameter(0).getType() instanceof IntType and
diff --git a/csharp/ql/test/library-tests/methods/Parameters2.ql b/csharp/ql/test/library-tests/methods/Parameters2.ql
index eb992f2c7f0..15b1471f1c5 100644
--- a/csharp/ql/test/library-tests/methods/Parameters2.ql
+++ b/csharp/ql/test/library-tests/methods/Parameters2.ql
@@ -7,7 +7,7 @@ import csharp
 from Method m
 where
   m.hasName("Divide") and
-  m.getDeclaringType().hasQualifiedName("Methods.TestOut") and
+  m.getDeclaringType().hasQualifiedName("Methods", "TestOut") and
   m.getParameter(0).isValue() and
   m.getParameter(0).hasName("x") and
   m.getParameter(0).getType() instanceof IntType and
diff --git a/csharp/ql/test/library-tests/methods/Parameters3.ql b/csharp/ql/test/library-tests/methods/Parameters3.ql
index 0c69218be58..8f286d7ee7e 100644
--- a/csharp/ql/test/library-tests/methods/Parameters3.ql
+++ b/csharp/ql/test/library-tests/methods/Parameters3.ql
@@ -7,7 +7,7 @@ import csharp
 from Method m
 where
   m.hasName("Write") and
-  m.getDeclaringType().hasQualifiedName("Methods.Console") and
+  m.getDeclaringType().hasQualifiedName("Methods", "Console") and
   m.getParameter(0).isValue() and
   m.getParameter(0).hasName("fmt") and
   m.getParameter(0).getType() instanceof StringType and
diff --git a/csharp/ql/test/library-tests/namespaces/Namespaces1.ql b/csharp/ql/test/library-tests/namespaces/Namespaces1.ql
index 0a1e1e965b7..92fe438894b 100644
--- a/csharp/ql/test/library-tests/namespaces/Namespaces1.ql
+++ b/csharp/ql/test/library-tests/namespaces/Namespaces1.ql
@@ -6,7 +6,7 @@ import csharp
 
 from Namespace n
 where
-  n.hasQualifiedName("N1.N2") and
+  n.hasQualifiedName("N1", "N2") and
   n.getAClass().hasName("A") and
   n.getAClass().hasName("B")
 select n
diff --git a/csharp/ql/test/library-tests/namespaces/Namespaces10.ql b/csharp/ql/test/library-tests/namespaces/Namespaces10.ql
index c45a49cbd39..135067040a4 100644
--- a/csharp/ql/test/library-tests/namespaces/Namespaces10.ql
+++ b/csharp/ql/test/library-tests/namespaces/Namespaces10.ql
@@ -6,11 +6,11 @@ import csharp
 
 from Namespace n, UnboundGenericClass ga, Class a
 where
-  n.hasQualifiedName("R1") and
+  n.hasQualifiedName("", "R1") and
   ga.hasQualifiedName("R1", "A<>") and
   ga.getATypeParameter().hasName("T") and
   ga.getNamespace() = n and
-  a.hasQualifiedName("R1.A") and
+  a.hasQualifiedName("R1", "A") and
   n.getAClass() = a and
   n.getAClass() = ga
 select n, ga, a
diff --git a/csharp/ql/test/library-tests/namespaces/Namespaces11.ql b/csharp/ql/test/library-tests/namespaces/Namespaces11.ql
index 3aea83ac0cf..8f8453ad18e 100644
--- a/csharp/ql/test/library-tests/namespaces/Namespaces11.ql
+++ b/csharp/ql/test/library-tests/namespaces/Namespaces11.ql
@@ -6,7 +6,7 @@ import csharp
 
 from UsingNamespaceDirective u
 where
-  u.getParentNamespaceDeclaration().getNamespace().hasQualifiedName("S3") and
-  u.getImportedNamespace().hasQualifiedName("S1.S2") and
+  u.getParentNamespaceDeclaration().getNamespace().hasQualifiedName("", "S3") and
+  u.getImportedNamespace().hasQualifiedName("S1", "S2") and
   u.getFile().getBaseName() = "namespaces.cs"
 select u
diff --git a/csharp/ql/test/library-tests/namespaces/Namespaces12.ql b/csharp/ql/test/library-tests/namespaces/Namespaces12.ql
index 73d66435b9d..5cc9dd3e643 100644
--- a/csharp/ql/test/library-tests/namespaces/Namespaces12.ql
+++ b/csharp/ql/test/library-tests/namespaces/Namespaces12.ql
@@ -7,6 +7,6 @@ import csharp
 from UsingNamespaceDirective u
 where
   u.getFile().getBaseName() = "namespaces.cs" and
-  u.getImportedNamespace().hasQualifiedName("System.Collections.Generic") and
+  u.getImportedNamespace().hasQualifiedName("System.Collections", "Generic") and
   not exists(u.getParentNamespaceDeclaration())
 select u
diff --git a/csharp/ql/test/library-tests/namespaces/Namespaces2.ql b/csharp/ql/test/library-tests/namespaces/Namespaces2.ql
index f176ad89d3d..0cebeb2eb7b 100644
--- a/csharp/ql/test/library-tests/namespaces/Namespaces2.ql
+++ b/csharp/ql/test/library-tests/namespaces/Namespaces2.ql
@@ -6,7 +6,7 @@ import csharp
 
 from Namespace n
 where
-  n.hasQualifiedName("M1.M2") and
+  n.hasQualifiedName("M1", "M2") and
   n.getAClass().hasName("A") and
   n.getAClass().hasName("B")
 select n
diff --git a/csharp/ql/test/library-tests/namespaces/Namespaces3.ql b/csharp/ql/test/library-tests/namespaces/Namespaces3.ql
index 60acfc8bce5..0ecf971f3fe 100644
--- a/csharp/ql/test/library-tests/namespaces/Namespaces3.ql
+++ b/csharp/ql/test/library-tests/namespaces/Namespaces3.ql
@@ -6,7 +6,7 @@ import csharp
 
 from Namespace n
 where
-  n.hasQualifiedName("P1.P2") and
+  n.hasQualifiedName("P1", "P2") and
   n.getAClass().hasName("A") and
   n.getAClass().hasName("B") and
   n.getAStruct().hasName("S") and
diff --git a/csharp/ql/test/library-tests/namespaces/Namespaces4.ql b/csharp/ql/test/library-tests/namespaces/Namespaces4.ql
index 81313001412..738a4c1966f 100644
--- a/csharp/ql/test/library-tests/namespaces/Namespaces4.ql
+++ b/csharp/ql/test/library-tests/namespaces/Namespaces4.ql
@@ -6,7 +6,7 @@ import csharp
 
 from Namespace n, Class a, Class b
 where
-  n.hasQualifiedName("M1.M2") and
+  n.hasQualifiedName("M1", "M2") and
   a = n.getAClass() and
   a.hasName("A") and
   a.isPublic() and
diff --git a/csharp/ql/test/library-tests/namespaces/Namespaces5.ql b/csharp/ql/test/library-tests/namespaces/Namespaces5.ql
index 95c51ca1e37..aae2d671b2b 100644
--- a/csharp/ql/test/library-tests/namespaces/Namespaces5.ql
+++ b/csharp/ql/test/library-tests/namespaces/Namespaces5.ql
@@ -6,6 +6,6 @@ import csharp
 
 from Namespace n
 where
-  n.hasQualifiedName("Empty") and
+  n.hasQualifiedName("", "Empty") and
   not exists(n.getATypeDeclaration())
 select n
diff --git a/csharp/ql/test/library-tests/namespaces/Namespaces6.ql b/csharp/ql/test/library-tests/namespaces/Namespaces6.ql
index d89e2a998fa..27539b59f7e 100644
--- a/csharp/ql/test/library-tests/namespaces/Namespaces6.ql
+++ b/csharp/ql/test/library-tests/namespaces/Namespaces6.ql
@@ -6,9 +6,9 @@ import csharp
 
 from Namespace n, Namespace p
 where
-  n.hasQualifiedName("Q1.Q2") and
+  n.hasQualifiedName("Q1", "Q2") and
   n.hasName("Q2") and
   p = n.getParentNamespace() and
   p.hasName("Q1") and
-  p.hasQualifiedName("Q1")
+  p.hasQualifiedName("", "Q1")
 select p, n
diff --git a/csharp/ql/test/library-tests/namespaces/Namespaces7.ql b/csharp/ql/test/library-tests/namespaces/Namespaces7.ql
index 4593ddef8c4..6822aacf1ef 100644
--- a/csharp/ql/test/library-tests/namespaces/Namespaces7.ql
+++ b/csharp/ql/test/library-tests/namespaces/Namespaces7.ql
@@ -6,7 +6,7 @@ import csharp
 
 from Namespace n, Class b, Class a
 where
-  n.hasQualifiedName("Q3") and
+  n.hasQualifiedName("", "Q3") and
   a.hasQualifiedName("Q1.Q2", "A") and
   b.hasName("B") and
   b.getNamespace() = n and
diff --git a/csharp/ql/test/library-tests/namespaces/Namespaces8.ql b/csharp/ql/test/library-tests/namespaces/Namespaces8.ql
index 870f0c397b1..312fb960c91 100644
--- a/csharp/ql/test/library-tests/namespaces/Namespaces8.ql
+++ b/csharp/ql/test/library-tests/namespaces/Namespaces8.ql
@@ -6,7 +6,7 @@ import csharp
 
 from Namespace n, Class c, Class a
 where
-  n.hasQualifiedName("Q3") and
+  n.hasQualifiedName("", "Q3") and
   a.hasQualifiedName("Q1.Q2", "A") and
   c.hasName("C") and
   c.getNamespace() = n and
diff --git a/csharp/ql/test/library-tests/namespaces/Namespaces9.ql b/csharp/ql/test/library-tests/namespaces/Namespaces9.ql
index 253e74ddfd6..ec380123d61 100644
--- a/csharp/ql/test/library-tests/namespaces/Namespaces9.ql
+++ b/csharp/ql/test/library-tests/namespaces/Namespaces9.ql
@@ -10,5 +10,5 @@ where
   a.getATypeParameter().hasName("T") and
   a.getANestedType() = b and
   b.getName() = "B" and
-  b.hasQualifiedName("R1.A<>+B")
+  b.hasQualifiedName("R1", "A<>+B")
 select a, b
diff --git a/csharp/ql/test/library-tests/nestedtypes/NestedTypes1.ql b/csharp/ql/test/library-tests/nestedtypes/NestedTypes1.ql
index 411ff0b664f..57b667876a5 100644
--- a/csharp/ql/test/library-tests/nestedtypes/NestedTypes1.ql
+++ b/csharp/ql/test/library-tests/nestedtypes/NestedTypes1.ql
@@ -6,8 +6,8 @@ import csharp
 
 from Class c, Struct s
 where
-  c.hasQualifiedName("NestedTypes.Base") and
-  s.hasQualifiedName("NestedTypes.Base+S") and
+  c.hasQualifiedName("NestedTypes", "Base") and
+  s.hasQualifiedName("NestedTypes", "Base+S") and
   s = c.getANestedType() and
   s.(NestedType).isProtected() and
   c.isPublic()
diff --git a/csharp/ql/test/library-tests/nestedtypes/NestedTypes2.ql b/csharp/ql/test/library-tests/nestedtypes/NestedTypes2.ql
index 0432b5e4303..b3be4723dff 100644
--- a/csharp/ql/test/library-tests/nestedtypes/NestedTypes2.ql
+++ b/csharp/ql/test/library-tests/nestedtypes/NestedTypes2.ql
@@ -6,8 +6,8 @@ import csharp
 
 from Class c, Interface i
 where
-  c.hasQualifiedName("NestedTypes.Base") and
-  i.hasQualifiedName("NestedTypes.Base+I") and
+  c.hasQualifiedName("NestedTypes", "Base") and
+  i.hasQualifiedName("NestedTypes", "Base+I") and
   i.(NestedType).isPrivate() and
   i = c.getANestedType()
 select c, i
diff --git a/csharp/ql/test/library-tests/nestedtypes/NestedTypes3.ql b/csharp/ql/test/library-tests/nestedtypes/NestedTypes3.ql
index d636c18b6d3..c3b216e23a2 100644
--- a/csharp/ql/test/library-tests/nestedtypes/NestedTypes3.ql
+++ b/csharp/ql/test/library-tests/nestedtypes/NestedTypes3.ql
@@ -6,8 +6,8 @@ import csharp
 
 from Class c, DelegateType d
 where
-  c.hasQualifiedName("NestedTypes.Base") and
-  d.hasQualifiedName("NestedTypes.Base+MyDelegate") and
+  c.hasQualifiedName("NestedTypes", "Base") and
+  d.hasQualifiedName("NestedTypes", "Base+MyDelegate") and
   d.(NestedType).isPrivate() and
   d = c.getANestedType()
 select c, d
diff --git a/csharp/ql/test/library-tests/nestedtypes/NestedTypes4.ql b/csharp/ql/test/library-tests/nestedtypes/NestedTypes4.ql
index e52c9149db1..bfdb3a441e4 100644
--- a/csharp/ql/test/library-tests/nestedtypes/NestedTypes4.ql
+++ b/csharp/ql/test/library-tests/nestedtypes/NestedTypes4.ql
@@ -6,9 +6,9 @@ import csharp
 
 from Class base, Class derived, Class nested
 where
-  base.hasQualifiedName("NestedTypes.Base") and
-  derived.hasQualifiedName("NestedTypes.Derived") and
-  nested.hasQualifiedName("NestedTypes.Derived+Nested") and
+  base.hasQualifiedName("NestedTypes", "Base") and
+  derived.hasQualifiedName("NestedTypes", "Derived") and
+  nested.hasQualifiedName("NestedTypes", "Derived+Nested") and
   nested.getNamespace().hasName("NestedTypes") and
   derived.getBaseClass() = base and
   derived.isInternal() and
diff --git a/csharp/ql/test/library-tests/nestedtypes/NestedTypes5.ql b/csharp/ql/test/library-tests/nestedtypes/NestedTypes5.ql
index d7a71757724..7585b923594 100644
--- a/csharp/ql/test/library-tests/nestedtypes/NestedTypes5.ql
+++ b/csharp/ql/test/library-tests/nestedtypes/NestedTypes5.ql
@@ -6,9 +6,9 @@ import csharp
 
 from Class base, Class derived, Class nested
 where
-  base.hasQualifiedName("NestedTypes.Base") and
-  derived.hasQualifiedName("NestedTypes.Derived") and
-  nested.hasQualifiedName("NestedTypes.Derived+Nested") and
+  base.hasQualifiedName("NestedTypes", "Base") and
+  derived.hasQualifiedName("NestedTypes", "Derived") and
+  nested.hasQualifiedName("NestedTypes", "Derived+Nested") and
   nested.getNamespace().hasName("NestedTypes") and
   nested.getDeclaringType() = derived
 select base, derived, nested
diff --git a/csharp/ql/test/library-tests/nestedtypes/NestedTypes6.ql b/csharp/ql/test/library-tests/nestedtypes/NestedTypes6.ql
index 40c3337d643..ca2c3aadb89 100644
--- a/csharp/ql/test/library-tests/nestedtypes/NestedTypes6.ql
+++ b/csharp/ql/test/library-tests/nestedtypes/NestedTypes6.ql
@@ -6,7 +6,7 @@ import csharp
 
 from UnboundGenericClass o, UnboundGenericClass i
 where
-  o.hasQualifiedName("NestedTypes.Outer<>") and
-  i.hasQualifiedName("NestedTypes.Outer<>+Inner<>") and
+  o.hasQualifiedName("NestedTypes", "Outer<>") and
+  i.hasQualifiedName("NestedTypes", "Outer<>+Inner<>") and
   i = o.getANestedType()
 select o, i
diff --git a/csharp/ql/test/library-tests/nestedtypes/NestedTypes7.ql b/csharp/ql/test/library-tests/nestedtypes/NestedTypes7.ql
index b8a58417789..750e2c72b01 100644
--- a/csharp/ql/test/library-tests/nestedtypes/NestedTypes7.ql
+++ b/csharp/ql/test/library-tests/nestedtypes/NestedTypes7.ql
@@ -6,8 +6,8 @@ import csharp
 
 from UnboundGenericClass o, UnboundGenericClass i
 where
-  o.hasQualifiedName("NestedTypes.Outer2<>") and
-  i.hasQualifiedName("NestedTypes.Outer2<>+Inner2<>") and
+  o.hasQualifiedName("NestedTypes", "Outer2<>") and
+  i.hasQualifiedName("NestedTypes", "Outer2<>+Inner2<>") and
   i = o.getANestedType() and
   i.getTypeParameter(0).getName() = o.getTypeParameter(0).getName()
 select o, i
diff --git a/csharp/ql/test/library-tests/nestedtypes/NestedTypes8.ql b/csharp/ql/test/library-tests/nestedtypes/NestedTypes8.ql
index b854068b1e9..cc7fe1475a1 100644
--- a/csharp/ql/test/library-tests/nestedtypes/NestedTypes8.ql
+++ b/csharp/ql/test/library-tests/nestedtypes/NestedTypes8.ql
@@ -6,8 +6,8 @@ import csharp
 
 from ConstructedClass o, ConstructedClass i
 where
-  o.hasQualifiedName("NestedTypes.Outer<System.Int32>") and
-  i.hasQualifiedName("NestedTypes.Outer<System.Int32>+Inner<System.String>") and
+  o.hasQualifiedName("NestedTypes", "Outer<System.Int32>") and
+  i.hasQualifiedName("NestedTypes", "Outer<System.Int32>+Inner<System.String>") and
   i = o.getANestedType() and
   o.getTypeArgument(0) instanceof IntType and
   i.getTypeArgument(0) instanceof StringType
diff --git a/csharp/ql/test/library-tests/nestedtypes/NestedTypes9.ql b/csharp/ql/test/library-tests/nestedtypes/NestedTypes9.ql
index 2b926ce8ec6..75874018b87 100644
--- a/csharp/ql/test/library-tests/nestedtypes/NestedTypes9.ql
+++ b/csharp/ql/test/library-tests/nestedtypes/NestedTypes9.ql
@@ -6,8 +6,8 @@ import csharp
 
 from UnboundGenericClass o, ConstructedClass i
 where
-  o.hasQualifiedName("NestedTypes.Outer<>") and
-  i.hasQualifiedName("NestedTypes.Outer<>+Inner<System.String>") and
+  o.hasQualifiedName("NestedTypes", "Outer<>") and
+  i.hasQualifiedName("NestedTypes", "Outer<>+Inner<System.String>") and
   i.getUnboundGeneric() = o.getANestedType() and
   i.getTypeArgument(0) instanceof StringType
 select o, i
diff --git a/csharp/ql/test/library-tests/properties/Properties10.ql b/csharp/ql/test/library-tests/properties/Properties10.ql
index 7f2fae74da5..b2f0ca08da2 100644
--- a/csharp/ql/test/library-tests/properties/Properties10.ql
+++ b/csharp/ql/test/library-tests/properties/Properties10.ql
@@ -7,7 +7,7 @@ import csharp
 from Property p
 where
   p.hasName("Y") and
-  p.getDeclaringType().hasQualifiedName("Properties.A") and
+  p.getDeclaringType().hasQualifiedName("Properties", "A") and
   p.isReadWrite() and
   not p.isAutoImplemented() and
   p.isVirtual() and
diff --git a/csharp/ql/test/library-tests/properties/Properties11.ql b/csharp/ql/test/library-tests/properties/Properties11.ql
index ca1696d6152..10c25532a36 100644
--- a/csharp/ql/test/library-tests/properties/Properties11.ql
+++ b/csharp/ql/test/library-tests/properties/Properties11.ql
@@ -7,7 +7,7 @@ import csharp
 from Property p
 where
   p.hasName("Y") and
-  p.getDeclaringType().hasQualifiedName("Properties.B") and
+  p.getDeclaringType().hasQualifiedName("Properties", "B") and
   p.isReadWrite() and // overrides a property that is readwrite
   not p.isAutoImplemented() and
   p.isOverride() and
diff --git a/csharp/ql/test/library-tests/properties/Properties12.ql b/csharp/ql/test/library-tests/properties/Properties12.ql
index a8334485efc..a23d9d1d87c 100644
--- a/csharp/ql/test/library-tests/properties/Properties12.ql
+++ b/csharp/ql/test/library-tests/properties/Properties12.ql
@@ -7,7 +7,7 @@ import csharp
 from Property p
 where
   p.hasName("X") and
-  p.getDeclaringType().hasQualifiedName("Properties.B") and
+  p.getDeclaringType().hasQualifiedName("Properties", "B") and
   p.isReadOnly() and
   not p.isAutoImplemented() and
   p.isOverride() and
diff --git a/csharp/ql/test/library-tests/properties/Properties13.ql b/csharp/ql/test/library-tests/properties/Properties13.ql
index f0bf658d1f9..97f6139ecb0 100644
--- a/csharp/ql/test/library-tests/properties/Properties13.ql
+++ b/csharp/ql/test/library-tests/properties/Properties13.ql
@@ -7,7 +7,7 @@ import csharp
 from Property p
 where
   p.hasName("Z") and
-  p.getDeclaringType().hasQualifiedName("Properties.B") and
+  p.getDeclaringType().hasQualifiedName("Properties", "B") and
   p.isReadWrite() and
   not p.isAutoImplemented() and
   p.isOverride() and
diff --git a/csharp/ql/test/library-tests/properties/Properties14.ql b/csharp/ql/test/library-tests/properties/Properties14.ql
index c6c3568e1b8..226dc003f18 100644
--- a/csharp/ql/test/library-tests/properties/Properties14.ql
+++ b/csharp/ql/test/library-tests/properties/Properties14.ql
@@ -7,7 +7,7 @@ import csharp
 from Property p
 where
   p.hasName("Count") and
-  p.getDeclaringType().hasQualifiedName("System.Collections.Generic.List<>") and
+  p.getDeclaringType().hasQualifiedName("System.Collections.Generic", "List<>") and
   not p.isAutoImplemented() and
   not p.isStatic() and
   p.isPublic() and
diff --git a/csharp/ql/test/library-tests/properties/Properties15.ql b/csharp/ql/test/library-tests/properties/Properties15.ql
index af729d49275..2f71f77aec7 100644
--- a/csharp/ql/test/library-tests/properties/Properties15.ql
+++ b/csharp/ql/test/library-tests/properties/Properties15.ql
@@ -7,7 +7,7 @@ import csharp
 from Property p
 where
   p.hasName("Init") and
-  p.getDeclaringType().hasQualifiedName("Properties.Test") and
+  p.getDeclaringType().hasQualifiedName("Properties", "Test") and
   p.isWriteOnly() and
   not p.isAutoImplemented() and
   p.isStatic() and
diff --git a/csharp/ql/test/library-tests/properties/Properties16.ql b/csharp/ql/test/library-tests/properties/Properties16.ql
index 4ef2776d39f..5cf64128372 100644
--- a/csharp/ql/test/library-tests/properties/Properties16.ql
+++ b/csharp/ql/test/library-tests/properties/Properties16.ql
@@ -7,7 +7,7 @@ import csharp
 from Property p
 where
   p.hasName("Init") and
-  p.getDeclaringType().hasQualifiedName("Properties.Test") and
+  p.getDeclaringType().hasQualifiedName("Properties", "Test") and
   p.getSetter().getNumberOfParameters() = 1 and
   p.getSetter().getParameter(0) instanceof ImplicitAccessorParameter
 select p, p.getSetter().getParameter(0)
diff --git a/csharp/ql/test/library-tests/properties/Properties4.ql b/csharp/ql/test/library-tests/properties/Properties4.ql
index 89a0b03f5b4..ad8055a45f4 100644
--- a/csharp/ql/test/library-tests/properties/Properties4.ql
+++ b/csharp/ql/test/library-tests/properties/Properties4.ql
@@ -10,6 +10,6 @@ where
   p.isReadOnly() and
   p.isPublic() and
   p.getGetter().hasBody() and
-  p.getDeclaringType().hasQualifiedName("Properties.Counter") and
+  p.getDeclaringType().hasQualifiedName("Properties", "Counter") and
   not exists(p.getSetter())
 select p, p.getGetter()
diff --git a/csharp/ql/test/library-tests/properties/Properties5.ql b/csharp/ql/test/library-tests/properties/Properties5.ql
index 7c86e26a5c4..0e5291ae236 100644
--- a/csharp/ql/test/library-tests/properties/Properties5.ql
+++ b/csharp/ql/test/library-tests/properties/Properties5.ql
@@ -7,7 +7,7 @@ import csharp
 from Property p
 where
   p.hasName("X") and
-  p.getDeclaringType().hasQualifiedName("Properties.Point") and
+  p.getDeclaringType().hasQualifiedName("Properties", "Point") and
   p.isReadWrite() and
   p.isPublic() and
   exists(p.getGetter()) and
diff --git a/csharp/ql/test/library-tests/properties/Properties6.ql b/csharp/ql/test/library-tests/properties/Properties6.ql
index 3e81cdc04e2..5ede824b59e 100644
--- a/csharp/ql/test/library-tests/properties/Properties6.ql
+++ b/csharp/ql/test/library-tests/properties/Properties6.ql
@@ -7,7 +7,7 @@ import csharp
 from Property p
 where
   p.hasName("Y") and
-  p.getDeclaringType().hasQualifiedName("Properties.Point") and
+  p.getDeclaringType().hasQualifiedName("Properties", "Point") and
   p.isReadWrite() and
   p.isPublic() and
   p.isAutoImplemented()
diff --git a/csharp/ql/test/library-tests/properties/Properties7.ql b/csharp/ql/test/library-tests/properties/Properties7.ql
index 8ad1f8a37e3..f31c29d1ec8 100644
--- a/csharp/ql/test/library-tests/properties/Properties7.ql
+++ b/csharp/ql/test/library-tests/properties/Properties7.ql
@@ -7,7 +7,7 @@ import csharp
 from Property p
 where
   p.hasName("X") and
-  p.getDeclaringType().hasQualifiedName("Properties.ReadOnlyPoint") and
+  p.getDeclaringType().hasQualifiedName("Properties", "ReadOnlyPoint") and
   p.isReadWrite() and
   p.isPublic() and
   p.isAutoImplemented() and
diff --git a/csharp/ql/test/library-tests/properties/Properties8.ql b/csharp/ql/test/library-tests/properties/Properties8.ql
index eeb6bd41dc2..4033ea92484 100644
--- a/csharp/ql/test/library-tests/properties/Properties8.ql
+++ b/csharp/ql/test/library-tests/properties/Properties8.ql
@@ -7,7 +7,7 @@ import csharp
 from Property p
 where
   p.hasName("X") and
-  p.getDeclaringType().hasQualifiedName("Properties.A") and
+  p.getDeclaringType().hasQualifiedName("Properties", "A") and
   p.isReadOnly() and
   p.isVirtual()
 select p
diff --git a/csharp/ql/test/library-tests/properties/Properties9.ql b/csharp/ql/test/library-tests/properties/Properties9.ql
index 5b22b9d5394..e55ffafa131 100644
--- a/csharp/ql/test/library-tests/properties/Properties9.ql
+++ b/csharp/ql/test/library-tests/properties/Properties9.ql
@@ -7,7 +7,7 @@ import csharp
 from Property p
 where
   p.hasName("Z") and
-  p.getDeclaringType().hasQualifiedName("Properties.A") and
+  p.getDeclaringType().hasQualifiedName("Properties", "A") and
   p.isReadWrite() and
   not p.isAutoImplemented() and
   p.isAbstract() and
diff --git a/csharp/ql/test/library-tests/types/Types36.ql b/csharp/ql/test/library-tests/types/Types36.ql
index cf9c897996b..f8462097802 100644
--- a/csharp/ql/test/library-tests/types/Types36.ql
+++ b/csharp/ql/test/library-tests/types/Types36.ql
@@ -1,5 +1,5 @@
 import csharp
 
 from Interface i
-where i.hasQualifiedName("System.Collections.IEnumerable")
+where i.hasQualifiedName("System.Collections", "IEnumerable")
 select i.getQualifiedName()

From 38e906f854338208138acc2e385bfaaa7bd5bef9 Mon Sep 17 00:00:00 2001
From: Michael Nebel <michaelnebel@github.com>
Date: Tue, 8 Nov 2022 15:40:46 +0100
Subject: [PATCH 1058/1420] C#: Use hasQualifiedName instead of
 getQualifiedName.

---
 csharp/ql/lib/Linq/Helpers.qll                |   5 +-
 csharp/ql/lib/semmle/code/asp/AspNet.qll      |  43 +++--
 .../lib/semmle/code/cil/ConsistencyChecks.qll |  10 +-
 csharp/ql/lib/semmle/code/cil/Method.qll      |   4 +-
 csharp/ql/lib/semmle/code/cil/Type.qll        |   5 +-
 csharp/ql/lib/semmle/code/csharp/Generics.qll |  13 +-
 csharp/ql/lib/semmle/code/csharp/PrintAst.qll |   8 +-
 csharp/ql/lib/semmle/code/csharp/Type.qll     |   2 +-
 .../code/csharp/commons/GeneratedCode.qll     |   2 +-
 .../code/csharp/commons/TargetFramework.qll   |   2 +-
 .../csharp/frameworks/EntityFramework.qll     |   6 +-
 .../csharp/security/xml/InsecureXMLQuery.qll  |   4 +-
 .../ql/lib/semmle/code/dotnet/Namespace.qll   |   2 +-
 csharp/ql/lib/semmle/code/dotnet/Type.qll     |   2 +-
 .../ql/src/API Abuse/NonOverridingMethod.ql   |   7 +-
 .../Naming Conventions/ControlNamePrefixes.ql | 163 +++++++++---------
 csharp/ql/src/Concurrency/ThreadCreation.qll  |  20 ++-
 csharp/ql/src/Dead Code/DeadRefTypes.ql       |   6 +-
 .../ThreadUnsafeICryptoTransform.ql           |   2 +-
 csharp/ql/src/Stubs/Stubs.qll                 |  15 +-
 csharp/ql/src/Telemetry/ExternalApi.qll       |   2 +-
 ...security-validations-always-return-true.ql |   8 +-
 .../security-validation-disabled.ql           |   7 +-
 .../Serialization/DataSetSerialization.qll    |  30 ++--
 .../backdoor/PotentialTimeBomb.ql             |   8 +-
 .../backdoor/ProcessNameToHashTaintFlow.ql    |   2 +-
 .../raw/internal/desugar/Lock.qll             |   4 +-
 .../internal/CaptureModelsSpecific.qll        |   2 +-
 csharp/ql/test/library-tests/async/Async.ql   |   2 +-
 .../attributes/AttributeElements.ql           |   7 +-
 .../library-tests/cil/consistency/Handles.ql  |  17 +-
 .../cil/dataflow/TrivialProperties.ql         |  20 ++-
 .../ql/test/library-tests/cil/enums/enums.ql  |   9 +-
 .../cil/functionPointers/functionPointers.ql  |   8 +-
 .../cil/init-only-prop/customModifiers.ql     |   6 +-
 .../cil/regressions/ConstructedMethods.ql     |   2 +-
 .../commons/Disposal/DisposedFields.ql        |   2 +-
 csharp/ql/test/library-tests/enums/Enums3.ql  |   7 +-
 .../test/library-tests/generics/Generics.ql   |  12 +-
 csharp/ql/test/library-tests/types/Types17.ql |   2 +-
 csharp/ql/test/library-tests/types/Types18.ql |   2 +-
 csharp/ql/test/library-tests/types/Types19.ql |   2 +-
 csharp/ql/test/library-tests/types/Types20.ql |   2 +-
 csharp/ql/test/library-tests/types/Types21.ql |   2 +-
 csharp/ql/test/library-tests/types/Types22.ql |   2 +-
 csharp/ql/test/library-tests/types/Types23.ql |   2 +-
 csharp/ql/test/library-tests/types/Types30.ql |   2 +-
 csharp/ql/test/library-tests/types/Types31.ql |   4 +-
 csharp/ql/test/library-tests/types/Types34.ql |   2 +-
 csharp/ql/test/library-tests/types/Types35.ql |   2 +-
 csharp/ql/test/library-tests/types/Types36.ql |   2 +-
 51 files changed, 277 insertions(+), 225 deletions(-)

diff --git a/csharp/ql/lib/Linq/Helpers.qll b/csharp/ql/lib/Linq/Helpers.qll
index f0dda07e882..f2368b69242 100644
--- a/csharp/ql/lib/Linq/Helpers.qll
+++ b/csharp/ql/lib/Linq/Helpers.qll
@@ -23,7 +23,10 @@ predicate isEnumerableType(ValueOrRefType t) { t.hasQualifiedName("System.Linq",
 
 /** Holds if the type's qualified name starts with "System.Collections.Generic.IEnumerable" */
 predicate isIEnumerableType(ValueOrRefType t) {
-  t.getQualifiedName().matches("System.Collections.Generic.IEnumerable%")
+  exists(string type |
+    t.hasQualifiedName("System.Collections.Generic", type) and
+    type.matches("IEnumerable%")
+  )
 }
 
 /**
diff --git a/csharp/ql/lib/semmle/code/asp/AspNet.qll b/csharp/ql/lib/semmle/code/asp/AspNet.qll
index 0666c5eb782..91443f14318 100644
--- a/csharp/ql/lib/semmle/code/asp/AspNet.qll
+++ b/csharp/ql/lib/semmle/code/asp/AspNet.qll
@@ -40,7 +40,7 @@ class AspAttribute extends AspElement, @asp_attribute { }
  */
 class AspOpenTag extends AspElement, @asp_open_tag {
   /** Either `>` or `/>`, depending on whether it's an empty tag. */
-  private string closeAngle() { if isEmpty() then result = "/>" else result = ">" }
+  private string closeAngle() { if this.isEmpty() then result = "/>" else result = ">" }
 
   /** Gets the `i`th attribute of this open tag. */
   AspAttribute getAttribute(int i) { asp_tag_attribute(this, i, _, result) }
@@ -58,9 +58,9 @@ class AspOpenTag extends AspElement, @asp_open_tag {
   predicate isEmpty() { asp_tag_isempty(this) }
 
   override string toString() {
-    if hasAttribute()
-    then result = "<" + getName() + " ..." + closeAngle()
-    else result = "<" + getName() + closeAngle()
+    if this.hasAttribute()
+    then result = "<" + this.getName() + " ..." + this.closeAngle()
+    else result = "<" + this.getName() + this.closeAngle()
   }
 }
 
@@ -75,9 +75,9 @@ class AspOpenTag extends AspElement, @asp_open_tag {
  */
 class AspCloseTag extends AspElement, @asp_close_tag {
   /** Gets the name of this close tag. */
-  string getName() { result = getBody() }
+  string getName() { result = this.getBody() }
 
-  override string toString() { result = "</" + getName() + ">" }
+  override string toString() { result = "</" + this.getName() + ">" }
 }
 
 /**
@@ -146,44 +146,49 @@ class AspDirective extends AspElement, @asp_directive {
   string getName() { asp_directive_name(this, result) }
 
   /** Holds if this directive has an attribute. */
-  predicate hasAttribute() { exists(getAttribute(_)) }
+  predicate hasAttribute() { exists(this.getAttribute(_)) }
 
   override string toString() {
-    if hasAttribute()
-    then result = "<%@" + getName() + " ...%>"
-    else result = "<%@" + getName() + "%>"
+    if this.hasAttribute()
+    then result = "<%@" + this.getName() + " ...%>"
+    else result = "<%@" + this.getName() + "%>"
   }
 }
 
 /** A quoted string used as an attribute in a tag. */
 class AspQuotedString extends AspAttribute, @asp_quoted_string {
   override string toString() {
-    if exists(getBody().indexOf("\""))
-    then result = "'" + getBody() + "'"
-    else result = "\"" + getBody() + "\""
+    if exists(this.getBody().indexOf("\""))
+    then result = "'" + this.getBody() + "'"
+    else result = "\"" + this.getBody() + "\""
   }
 }
 
 /** Arbitrary text. It will be inserted into the document as is. */
 class AspText extends AspElement, @asp_text {
-  override string toString() { result = getBody() }
+  override string toString() { result = this.getBody() }
 }
 
 /** An XML directive, such as a `DOCTYPE` declaration. */
 class AspXmlDirective extends AspElement, @asp_xml_directive {
-  override string toString() { result = getBody() }
+  override string toString() { result = this.getBody() }
 }
 
 /**
  * A 'Page' ASP directive.
  */
 class PageDirective extends AspDirective {
-  PageDirective() { getName() = "Page" }
+  PageDirective() { this.getName() = "Page" }
 
   /**
    * Gets the 'CodeBehind' class from which this page inherits.
    */
-  ValueOrRefType getInheritedType() { result.getQualifiedName() = getInheritedTypeQualifiedName() }
+  ValueOrRefType getInheritedType() {
+    exists(string qualifier, string name |
+      result.hasQualifiedName(qualifier, name) and
+      printQualifiedName(qualifier, name) = this.getInheritedTypeQualifiedName()
+    )
+  }
 
   private string getInheritedTypeQualifiedName() {
     // Relevant attributes:
@@ -192,11 +197,11 @@ class PageDirective extends AspDirective {
     //   provide a fallback namespace if `Inherits` does not have one
     // - `CodeBehindFile`/`CodeFile`: used by tooling, but not semantically
     //   relevant at runtime
-    exists(string inherits | inherits = getAttributeByName("Inherits").getBody() |
+    exists(string inherits | inherits = this.getAttributeByName("Inherits").getBody() |
       if inherits.indexOf(".") != -1
       then result = inherits
       else
-        exists(string className | className = getAttributeByName("ClassName").getBody() |
+        exists(string className | className = this.getAttributeByName("ClassName").getBody() |
           // take everything up to and including the last .
           className.prefix(className.indexOf(".", count(className.indexOf(".")) - 1, 0) + 1) +
             inherits = result
diff --git a/csharp/ql/lib/semmle/code/cil/ConsistencyChecks.qll b/csharp/ql/lib/semmle/code/cil/ConsistencyChecks.qll
index a17e5327b09..f3481dca28e 100644
--- a/csharp/ql/lib/semmle/code/cil/ConsistencyChecks.qll
+++ b/csharp/ql/lib/semmle/code/cil/ConsistencyChecks.qll
@@ -484,9 +484,13 @@ class InvalidOverride extends MethodViolation {
   }
 
   override string getMessage() {
-    result =
-      "Overridden method from " + base.getDeclaringType().getQualifiedName() +
-        " is not in a base type"
+    exists(string qualifier, string name |
+      base.getDeclaringType().hasQualifiedName(qualifier, name)
+    |
+      result =
+        "Overridden method from " + CS::printQualifiedName(qualifier, name) +
+          " is not in a base type"
+    )
   }
 }
 
diff --git a/csharp/ql/lib/semmle/code/cil/Method.qll b/csharp/ql/lib/semmle/code/cil/Method.qll
index da1c46b5dfd..4ba193fb01f 100644
--- a/csharp/ql/lib/semmle/code/cil/Method.qll
+++ b/csharp/ql/lib/semmle/code/cil/Method.qll
@@ -146,7 +146,7 @@ class Method extends DotNet::Callable, Element, Member, TypeContainer, DataFlowN
 
   /** Holds if this method is a destructor/finalizer. */
   predicate isFinalizer() {
-    this.getOverriddenMethod*().getQualifiedName() = "System.Object.Finalize"
+    this.getOverriddenMethod*().hasQualifiedName("System", "Object", "Finalize")
   }
 
   /** Holds if this method is an operator. */
@@ -258,7 +258,7 @@ class Setter extends Accessor {
 
   /** Holds if this setter is an `init` accessor. */
   predicate isInitOnly() {
-    exists(Type t | t.getQualifiedName() = "System.Runtime.CompilerServices.IsExternalInit" |
+    exists(Type t | t.hasQualifiedName("System.Runtime.CompilerServices", "IsExternalInit") |
       this.hasRequiredCustomModifier(t)
     )
   }
diff --git a/csharp/ql/lib/semmle/code/cil/Type.qll b/csharp/ql/lib/semmle/code/cil/Type.qll
index 204eaff4b87..ecb60b5f45b 100644
--- a/csharp/ql/lib/semmle/code/cil/Type.qll
+++ b/csharp/ql/lib/semmle/code/cil/Type.qll
@@ -20,7 +20,7 @@ class TypeContainer extends DotNet::NamedElement, @cil_type_container {
 
 /** A namespace. */
 class Namespace extends DotNet::Namespace, TypeContainer, @namespace {
-  override string toString() { result = this.getQualifiedName() }
+  override string toString() { result = this.getFullName() }
 
   override Namespace getParent() { result = this.getParentNamespace() }
 
@@ -68,8 +68,7 @@ class Type extends DotNet::Type, Declaration, TypeContainer, @cil_type {
 
   /**
    * Holds if this type is a member of the `System` namespace and has the name
-   * `name`. This is the same as `getQualifiedName() = "System.<name>"`, but is
-   * faster to compute.
+   * `name`.
    */
   predicate isSystemType(string name) {
     exists(Namespace system | this.getParent() = system |
diff --git a/csharp/ql/lib/semmle/code/csharp/Generics.qll b/csharp/ql/lib/semmle/code/csharp/Generics.qll
index e67907554a2..8a3193c6268 100644
--- a/csharp/ql/lib/semmle/code/csharp/Generics.qll
+++ b/csharp/ql/lib/semmle/code/csharp/Generics.qll
@@ -97,11 +97,18 @@ private string getTypeArgumentsNames(ConstructedGeneric cg) {
   result = strictconcat(Type t, int i | t = cg.getTypeArgument(i) | t.getName(), "," order by i)
 }
 
-/** Gets the concatenation of the `getQualifiedName()` of type arguments. */
+bindingset[t]
+private string getFullName(Type t) {
+  exists(string qualifier, string name |
+    t.hasQualifiedName(qualifier, name) and
+    result = printQualifiedName(qualifier, name)
+  )
+}
+
+/** Gets the concatenation of the `getFullName` of type arguments. */
 language[monotonicAggregates]
 private string getTypeArgumentsQualifiedNames(ConstructedGeneric cg) {
-  result =
-    strictconcat(Type t, int i | t = cg.getTypeArgument(i) | t.getQualifiedName(), "," order by i)
+  result = strictconcat(Type t, int i | t = cg.getTypeArgument(i) | getFullName(t), "," order by i)
 }
 
 /**
diff --git a/csharp/ql/lib/semmle/code/csharp/PrintAst.qll b/csharp/ql/lib/semmle/code/csharp/PrintAst.qll
index d179da2e194..8cb59f3b6c8 100644
--- a/csharp/ql/lib/semmle/code/csharp/PrintAst.qll
+++ b/csharp/ql/lib/semmle/code/csharp/PrintAst.qll
@@ -107,10 +107,10 @@ private ValueOrRefType getAnInterestingBaseType(ValueOrRefType type) {
 
 private predicate isInterestingBaseType(ValueOrRefType type, ValueOrRefType base) {
   not base instanceof ObjectType and
-  not base.getQualifiedName() = "System.ValueType" and
-  not base.getQualifiedName() = "System.Delegate" and
-  not base.getQualifiedName() = "System.MulticastDelegate" and
-  not base.getQualifiedName() = "System.Enum" and
+  not base.hasQualifiedName("System", "ValueType") and
+  not base.hasQualifiedName("System", "Delegate") and
+  not base.hasQualifiedName("System", "MulticastDelegate") and
+  not base.hasQualifiedName("System", "Enum") and
   exists(TypeMention tm | tm.getTarget() = type and tm.getType() = base)
 }
 
diff --git a/csharp/ql/lib/semmle/code/csharp/Type.qll b/csharp/ql/lib/semmle/code/csharp/Type.qll
index 022bd12af23..8bb92c8c86a 100644
--- a/csharp/ql/lib/semmle/code/csharp/Type.qll
+++ b/csharp/ql/lib/semmle/code/csharp/Type.qll
@@ -69,7 +69,7 @@ class ValueOrRefType extends DotNet::ValueOrRefType, Type, Attributable, @value_
     )
     or
     not exists(this.getDeclaringType()) and
-    qualifier = this.getNamespace().getQualifiedName() and
+    qualifier = this.getNamespace().getFullName() and
     name = this.getUndecoratedName()
   }
 
diff --git a/csharp/ql/lib/semmle/code/csharp/commons/GeneratedCode.qll b/csharp/ql/lib/semmle/code/csharp/commons/GeneratedCode.qll
index 7da80a79ffd..4a90c121e2e 100644
--- a/csharp/ql/lib/semmle/code/csharp/commons/GeneratedCode.qll
+++ b/csharp/ql/lib/semmle/code/csharp/commons/GeneratedCode.qll
@@ -39,7 +39,7 @@ class GeneratedAttributeFile extends GeneratedCodeFile {
 class GeneratedNamespaceFile extends GeneratedCodeFile {
   GeneratedNamespaceFile() {
     exists(Namespace n | n.getATypeDeclaration().getFile() = this |
-      n.getQualifiedName() = "Microsoft.Xml.Serialization.GeneratedAssembly"
+      n.getFullName() = "Microsoft.Xml.Serialization.GeneratedAssembly"
     )
   }
 }
diff --git a/csharp/ql/lib/semmle/code/csharp/commons/TargetFramework.qll b/csharp/ql/lib/semmle/code/csharp/commons/TargetFramework.qll
index 83de1b9d294..41ce7b36944 100644
--- a/csharp/ql/lib/semmle/code/csharp/commons/TargetFramework.qll
+++ b/csharp/ql/lib/semmle/code/csharp/commons/TargetFramework.qll
@@ -14,7 +14,7 @@ class TargetFrameworkAttribute extends Attribute {
   Assembly assembly;
 
   TargetFrameworkAttribute() {
-    this.getType().getQualifiedName() = "System.Runtime.Versioning.TargetFrameworkAttribute" and
+    this.getType().hasQualifiedName("System.Runtime.Versioning", "TargetFrameworkAttribute") and
     assembly = this.getTarget()
   }
 
diff --git a/csharp/ql/lib/semmle/code/csharp/frameworks/EntityFramework.qll b/csharp/ql/lib/semmle/code/csharp/frameworks/EntityFramework.qll
index ce63f139367..a56e7d183e0 100644
--- a/csharp/ql/lib/semmle/code/csharp/frameworks/EntityFramework.qll
+++ b/csharp/ql/lib/semmle/code/csharp/frameworks/EntityFramework.qll
@@ -38,9 +38,9 @@ module EntityFramework {
   /** An EF6 or EFCore namespace. */
   class EFNamespace extends Namespace {
     EFNamespace() {
-      this.getQualifiedName() = "Microsoft.EntityFrameworkCore"
+      this.hasQualifiedName("Microsoft", "EntityFrameworkCore")
       or
-      this.getQualifiedName() = "System.Data.Entity"
+      this.hasQualifiedName("System.Data", "Entity")
     }
   }
 
@@ -162,7 +162,7 @@ module EntityFramework {
 
   /** The struct `Microsoft.EntityFrameworkCore.RawSqlString`. */
   private class RawSqlStringStruct extends Struct {
-    RawSqlStringStruct() { this.getQualifiedName() = "Microsoft.EntityFrameworkCore.RawSqlString" }
+    RawSqlStringStruct() { this.hasQualifiedName("Microsoft.EntityFrameworkCore", "RawSqlString") }
 
     /** Gets a conversion operator from `string` to `RawSqlString`. */
     ConversionOperator getAConversionTo() {
diff --git a/csharp/ql/lib/semmle/code/csharp/security/xml/InsecureXMLQuery.qll b/csharp/ql/lib/semmle/code/csharp/security/xml/InsecureXMLQuery.qll
index d1330bcb97d..b83795b033a 100644
--- a/csharp/ql/lib/semmle/code/csharp/security/xml/InsecureXMLQuery.qll
+++ b/csharp/ql/lib/semmle/code/csharp/security/xml/InsecureXMLQuery.qll
@@ -94,7 +94,7 @@ module XmlSettings {
    * Holds if the given object creation constructs `XmlReaderSettings` with an insecure resolver.
    */
   predicate insecureResolverSettings(ObjectCreation creation, Expr evidence, string reason) {
-    creation.getObjectType().getQualifiedName() = "System.Xml.XmlReaderSettings" and
+    creation.getObjectType().hasQualifiedName("System.Xml", "XmlReaderSettings") and
     (
       // one unsafe assignment to XmlResolver
       exists(Expr xmlResolverVal | xmlResolverVal = getAValueForProp(creation, "XmlResolver") |
@@ -114,7 +114,7 @@ module XmlSettings {
    * Holds if the given object creation constructs `XmlReaderSettings` with DTD processing enabled.
    */
   predicate dtdEnabledSettings(ObjectCreation creation, Expr evidence, string reason) {
-    creation.getObjectType().getQualifiedName() = "System.Xml.XmlReaderSettings" and
+    creation.getObjectType().hasQualifiedName("System.Xml", "XmlReaderSettings") and
     (
       exists(Expr dtdVal | dtdVal = getAValueForProp(creation, "DtdProcessing") |
         not isSafeDtdSetting(dtdVal) and evidence = dtdVal
diff --git a/csharp/ql/lib/semmle/code/dotnet/Namespace.qll b/csharp/ql/lib/semmle/code/dotnet/Namespace.qll
index 74aa71574a9..db2f933f563 100644
--- a/csharp/ql/lib/semmle/code/dotnet/Namespace.qll
+++ b/csharp/ql/lib/semmle/code/dotnet/Namespace.qll
@@ -34,7 +34,7 @@ class Namespace extends Declaration, @namespace {
   }
 
   /** Gets a textual representation of this namespace. */
-  override string toString() { result = this.getQualifiedName() }
+  override string toString() { result = this.getFullName() }
 
   /** Holds if this is the global namespace. */
   final predicate isGlobalNamespace() { this.getName() = "" }
diff --git a/csharp/ql/lib/semmle/code/dotnet/Type.qll b/csharp/ql/lib/semmle/code/dotnet/Type.qll
index 04b6cdaf6eb..ab55f284824 100644
--- a/csharp/ql/lib/semmle/code/dotnet/Type.qll
+++ b/csharp/ql/lib/semmle/code/dotnet/Type.qll
@@ -28,7 +28,7 @@ class ValueOrRefType extends Type, @dotnet_valueorreftype {
     or
     if this.getDeclaringNamespace().isGlobalNamespace()
     then result = ""
-    else result = this.getDeclaringNamespace().getQualifiedName() + "."
+    else result = this.getDeclaringNamespace().getFullName() + "."
   }
 
   pragma[noinline]
diff --git a/csharp/ql/src/API Abuse/NonOverridingMethod.ql b/csharp/ql/src/API Abuse/NonOverridingMethod.ql
index 002835db5a9..7425b7791b6 100644
--- a/csharp/ql/src/API Abuse/NonOverridingMethod.ql	
+++ b/csharp/ql/src/API Abuse/NonOverridingMethod.ql	
@@ -36,9 +36,10 @@ predicate nonOverridingMethod(Method m, Method vm) {
   m.getName().toLowerCase() = vm.getName().toLowerCase()
 }
 
-from Method m, Method vm
+from Method m, Method vm, string qualifier, string type, string name
 where
   m.fromSource() and
-  nonOverridingMethod(m, vm)
+  nonOverridingMethod(m, vm) and
+  vm.hasQualifiedName(qualifier, type, name)
 select m, "Method '" + m.getName() + "' looks like it should override $@ but does not do so.",
-  vm.getUnboundDeclaration(), vm.getQualifiedName()
+  vm.getUnboundDeclaration(), printQualifiedName(qualifier, type, name)
diff --git a/csharp/ql/src/Bad Practices/Naming Conventions/ControlNamePrefixes.ql b/csharp/ql/src/Bad Practices/Naming Conventions/ControlNamePrefixes.ql
index 4cc4f58bdba..3e87b71253d 100644
--- a/csharp/ql/src/Bad Practices/Naming Conventions/ControlNamePrefixes.ql	
+++ b/csharp/ql/src/Bad Practices/Naming Conventions/ControlNamePrefixes.ql	
@@ -11,90 +11,95 @@
 
 import csharp
 
-string prefix(string typename) {
-  typename = "System.Web.UI.WebControls.Label" and result = "lbl"
+string prefix(string qualifier, string typename) {
+  qualifier = "System.Web.UI.WebControls" and
+  (
+    typename = "Label" and result = "lbl"
+    or
+    typename = "TextBox" and result = "txt"
+    or
+    typename = ["Button", "LinkButton"] and result = "btn"
+    or
+    typename = "ImageButton" and result = "ibtn"
+    or
+    typename = "Hyperlink" and result = "hpl"
+    or
+    typename = "DropDownList" and result = "cmb"
+    or
+    typename = "ListBox" and result = "lst"
+    or
+    typename = "Datagrid" and result = "dgr"
+    or
+    typename = "Datalist" and result = "dtl"
+    or
+    typename = "Repeater" and result = "rpt"
+    or
+    typename = "CheckBox" and result = "chk"
+    or
+    typename = "CheckBoxList" and result = "chklst"
+    or
+    typename = "RadioButtonList" and result = "radlst"
+    or
+    typename = "RadioButton" and result = "rad"
+    or
+    typename = "Image" and result = "img"
+    or
+    typename = "Panel" and result = "pnl"
+    or
+    typename = "PlaceHolder" and result = "plh"
+    or
+    typename = "Calendar" and result = "cal"
+    or
+    typename = "AdRotator" and result = "adr"
+    or
+    typename = "Table" and result = "tbl"
+    or
+    typename = "RequiredFieldValidator" and result = "rfv"
+    or
+    typename = "CompareValidator" and result = "cmv"
+    or
+    typename = "RegularExpressionValidator" and result = "rev"
+    or
+    typename = "CustomValidator" and result = "csv"
+    or
+    typename = "ValidationSummary" and result = "vsm"
+    or
+    typename = "XML" and result = "xml"
+    or
+    typename = "Literal" and result = "lit"
+    or
+    typename = "Form" and result = "frm"
+    or
+    typename = "Frame" and result = "fra"
+    or
+    typename = "CrystalReportViewer" and result = "crvr"
+  )
   or
-  typename = "System.Web.UI.WebControls.TextBox" and result = "txt"
-  or
-  typename = "System.Web.UI.WebControls.Button" and result = "btn"
-  or
-  typename = "System.Web.UI.WebControls.LinkButton" and result = "btn"
-  or
-  typename = "System.Web.UI.WebControls.ImageButton" and result = "ibtn"
-  or
-  typename = "System.Web.UI.WebControls.Hyperlink" and result = "hpl"
-  or
-  typename = "System.Web.UI.WebControls.DropDownList" and result = "cmb"
-  or
-  typename = "System.Web.UI.WebControls.ListBox" and result = "lst"
-  or
-  typename = "System.Web.UI.WebControls.Datagrid" and result = "dgr"
-  or
-  typename = "System.Web.UI.WebControls.Datalist" and result = "dtl"
-  or
-  typename = "System.Web.UI.WebControls.Repeater" and result = "rpt"
-  or
-  typename = "System.Web.UI.WebControls.CheckBox" and result = "chk"
-  or
-  typename = "System.Web.UI.WebControls.CheckBoxList" and result = "chklst"
-  or
-  typename = "System.Web.UI.WebControls.RadioButtonList" and result = "radlst"
-  or
-  typename = "System.Web.UI.WebControls.RadioButton" and result = "rad"
-  or
-  typename = "System.Web.UI.WebControls.Image" and result = "img"
-  or
-  typename = "System.Web.UI.WebControls.Panel" and result = "pnl"
-  or
-  typename = "System.Web.UI.WebControls.PlaceHolder" and result = "plh"
-  or
-  typename = "System.Web.UI.WebControls.Calendar" and result = "cal"
-  or
-  typename = "System.Web.UI.WebControls.AdRotator" and result = "adr"
-  or
-  typename = "System.Web.UI.WebControls.Table" and result = "tbl"
-  or
-  typename = "System.Web.UI.WebControls.RequiredFieldValidator" and result = "rfv"
-  or
-  typename = "System.Web.UI.WebControls.CompareValidator" and result = "cmv"
-  or
-  typename = "System.Web.UI.WebControls.RegularExpressionValidator" and result = "rev"
-  or
-  typename = "System.Web.UI.WebControls.CustomValidator" and result = "csv"
-  or
-  typename = "System.Web.UI.WebControls.ValidationSummary" and result = "vsm"
-  or
-  typename = "System.Web.UI.WebControls.XML" and result = "xml"
-  or
-  typename = "System.Web.UI.WebControls.Literal" and result = "lit"
-  or
-  typename = "System.Web.UI.WebControls.Form" and result = "frm"
-  or
-  typename = "System.Web.UI.WebControls.Frame" and result = "fra"
-  or
-  typename = "System.Web.UI.WebControls.CrystalReportViewer" and result = "crvr"
-  or
-  typename = "System.Web.UI.HtmlControls.TextArea" and result = "txa"
-  or
-  typename = "System.Web.UI.HtmlControls.FileField" and result = "fle"
-  or
-  typename = "System.Web.UI.HtmlControls.PasswordField" and result = "pwd"
-  or
-  typename = "System.Web.UI.HtmlControls.Hidden" and result = "hdn"
-  or
-  typename = "System.Web.UI.HtmlControls.Table" and result = "tbl"
-  or
-  typename = "System.Web.UI.HtmlControls.FlowLayoutPanel" and result = "flp"
-  or
-  typename = "System.Web.UI.HtmlControls.GridLayoutPanel" and result = "glp"
-  or
-  typename = "System.Web.UI.HtmlControls.HorizontalRule" and result = "hr"
+  qualifier = "System.Web.UI.HtmlControls" and
+  (
+    typename = "TextArea" and result = "txa"
+    or
+    typename = "FileField" and result = "fle"
+    or
+    typename = "PasswordField" and result = "pwd"
+    or
+    typename = "Hidden" and result = "hdn"
+    or
+    typename = "Table" and result = "tbl"
+    or
+    typename = "FlowLayoutPanel" and result = "flp"
+    or
+    typename = "GridLayoutPanel" and result = "glp"
+    or
+    typename = "HorizontalRule" and result = "hr"
+  )
 }
 
-from Field f, RefType t, string name, string prefix
+from Field f, RefType t, string name, string prefix, string qualifier, string type
 where
   f.getType() = t and
   f.getName() = name and
-  prefix = prefix(t.getQualifiedName()) and
+  t.hasQualifiedName(qualifier, type) and
+  prefix = prefix(qualifier, type) and
   not name.matches(prefix + "%")
 select f, "This field should have the prefix '" + prefix + "' to match its types."
diff --git a/csharp/ql/src/Concurrency/ThreadCreation.qll b/csharp/ql/src/Concurrency/ThreadCreation.qll
index 43cb9da20e6..3ef6726ef2f 100644
--- a/csharp/ql/src/Concurrency/ThreadCreation.qll
+++ b/csharp/ql/src/Concurrency/ThreadCreation.qll
@@ -9,14 +9,18 @@ import Concurrency
  */
 class ThreadStartingCallable extends Callable {
   ThreadStartingCallable() {
-    this.(Constructor).getDeclaringType().getQualifiedName() = "System.Threading.Tasks.Task" or
-    this.(Method).getQualifiedName() = "System.Threading.Tasks.Task.Run" or
-    this.(Constructor).getDeclaringType().getQualifiedName() = "System.Threading.Thread" or
-    this.(Method).getQualifiedName() = "System.Threading.Thread.Start" or
-    this.(Constructor)
-        .getDeclaringType()
-        .getQualifiedName()
-        .matches("System.Threading.Tasks.Task<%>")
+    this.(Constructor).getDeclaringType().hasQualifiedName("System.Threading.Tasks", "Task")
+    or
+    this.(Method).hasQualifiedName("System.Threading.Tasks", "Task", "Run")
+    or
+    this.(Constructor).getDeclaringType().hasQualifiedName("System.Threading", "Thread")
+    or
+    this.(Method).hasQualifiedName("System.Threading", "Thread", "Start")
+    or
+    exists(string name |
+      this.(Constructor).getDeclaringType().hasQualifiedName("System.Threading.Tasks", name) and
+      name.matches("Task<%>")
+    )
   }
 }
 
diff --git a/csharp/ql/src/Dead Code/DeadRefTypes.ql b/csharp/ql/src/Dead Code/DeadRefTypes.ql
index 4ff5809167c..d881e715f48 100644
--- a/csharp/ql/src/Dead Code/DeadRefTypes.ql	
+++ b/csharp/ql/src/Dead Code/DeadRefTypes.ql	
@@ -16,10 +16,8 @@ import semmle.code.csharp.frameworks.Test
 import semmle.code.csharp.metrics.Coupling
 
 predicate potentiallyUsedFromXaml(RefType t) {
-  exists(string name | name = t.getABaseType*().getQualifiedName() |
-    name = "System.Windows.Data.IValueConverter" or
-    name = "System.Windows.Data.IMultiValueConverter"
-  )
+  t.getABaseType*()
+      .hasQualifiedName("System.Windows.Data", ["IValueConverter", "IMultiValueConverter"])
 }
 
 class ExportAttribute extends Attribute {
diff --git a/csharp/ql/src/Likely Bugs/ThreadUnsafeICryptoTransform.ql b/csharp/ql/src/Likely Bugs/ThreadUnsafeICryptoTransform.ql
index 392c3e843d7..16ddedd6400 100644
--- a/csharp/ql/src/Likely Bugs/ThreadUnsafeICryptoTransform.ql	
+++ b/csharp/ql/src/Likely Bugs/ThreadUnsafeICryptoTransform.ql	
@@ -19,7 +19,7 @@ import semmle.code.csharp.frameworks.system.collections.Generic
 class UnsafeField extends Field {
   UnsafeField() {
     this.isStatic() and
-    not this.getAnAttribute().getType().getQualifiedName() = "System.ThreadStaticAttribute" and
+    not this.getAnAttribute().getType().hasQualifiedName("System", "ThreadStaticAttribute") and
     this.getType() instanceof UsesICryptoTransform
   }
 }
diff --git a/csharp/ql/src/Stubs/Stubs.qll b/csharp/ql/src/Stubs/Stubs.qll
index 1e562eb3aa7..db2cc57a3d1 100644
--- a/csharp/ql/src/Stubs/Stubs.qll
+++ b/csharp/ql/src/Stubs/Stubs.qll
@@ -114,15 +114,18 @@ abstract private class GeneratedType extends Type, GeneratedElement {
   }
 
   private string stubAttributes() {
-    if this.(ValueOrRefType).getAnAttribute().getType().getQualifiedName() = "System.FlagsAttribute"
+    if this.(ValueOrRefType).getAnAttribute().getType().hasQualifiedName("System", "FlagsAttribute")
     then result = "[System.Flags]\n"
     else result = ""
   }
 
   private string stubComment() {
-    result =
-      "// Generated from `" + this.getQualifiedName() + "` in `" +
-        concat(this.getALocation().toString(), "; ") + "`\n"
+    exists(string qualifier, string name |
+      this.hasQualifiedName(qualifier, name) and
+      result =
+        "// Generated from `" + printQualifiedName(qualifier, name) + "` in `" +
+          concat(this.getALocation().toString(), "; ") + "`\n"
+    )
   }
 
   /** Gets the entire C# stub code for this type. */
@@ -154,7 +157,7 @@ abstract private class GeneratedType extends Type, GeneratedElement {
   private ValueOrRefType getAnInterestingBaseType() {
     result = this.(ValueOrRefType).getABaseType() and
     not result instanceof ObjectType and
-    not result.getQualifiedName() = "System.ValueType" and
+    not result.hasQualifiedName("System", "ValueType") and
     (not result instanceof Interface or result.(Interface).isEffectivelyPublic())
   }
 
@@ -461,7 +464,7 @@ private string stubQualifiedNamePrefix(ValueOrRefType t) {
   then result = ""
   else
     if t.getParent() instanceof Namespace
-    then result = t.getDeclaringNamespace().getQualifiedName() + "."
+    then result = t.getDeclaringNamespace().getFullName() + "."
     else result = stubClassName(t.getDeclaringType()) + "."
 }
 
diff --git a/csharp/ql/src/Telemetry/ExternalApi.qll b/csharp/ql/src/Telemetry/ExternalApi.qll
index 653eb419b7f..244e3e1dc3d 100644
--- a/csharp/ql/src/Telemetry/ExternalApi.qll
+++ b/csharp/ql/src/Telemetry/ExternalApi.qll
@@ -17,7 +17,7 @@ private import semmle.code.csharp.security.dataflow.flowsources.Remote
 class TestLibrary extends RefType {
   TestLibrary() {
     this.getNamespace()
-        .getQualifiedName()
+        .getFullName()
         .matches([
             "NUnit.Framework%", "Xunit%", "Microsoft.VisualStudio.TestTools.UnitTesting%", "Moq%"
           ])
diff --git a/csharp/ql/src/experimental/Security Features/JsonWebTokenHandler/delegated-security-validations-always-return-true.ql b/csharp/ql/src/experimental/Security Features/JsonWebTokenHandler/delegated-security-validations-always-return-true.ql
index 753dfb82999..14ec83268ed 100644
--- a/csharp/ql/src/experimental/Security Features/JsonWebTokenHandler/delegated-security-validations-always-return-true.ql	
+++ b/csharp/ql/src/experimental/Security Features/JsonWebTokenHandler/delegated-security-validations-always-return-true.ql	
@@ -15,8 +15,10 @@ import csharp
 import DataFlow
 import JsonWebTokenHandlerLib
 
-from TokenValidationParametersProperty p, CallableAlwaysReturnsTrueHigherPrecision e
-where e = p.getAnAssignedValue()
+from
+  TokenValidationParametersProperty p, CallableAlwaysReturnsTrueHigherPrecision e, string qualifier,
+  string name
+where e = p.getAnAssignedValue() and p.hasQualifiedName(qualifier, name)
 select e,
   "JsonWebTokenHandler security-sensitive property $@ is being delegated to this callable that always returns \"true\".",
-  p, p.getQualifiedName().toString()
+  p, printQualifiedName(qualifier, name)
diff --git a/csharp/ql/src/experimental/Security Features/JsonWebTokenHandler/security-validation-disabled.ql b/csharp/ql/src/experimental/Security Features/JsonWebTokenHandler/security-validation-disabled.ql
index 9c2a5d3983f..9db41a12b9b 100644
--- a/csharp/ql/src/experimental/Security Features/JsonWebTokenHandler/security-validation-disabled.ql	
+++ b/csharp/ql/src/experimental/Security Features/JsonWebTokenHandler/security-validation-disabled.ql	
@@ -16,9 +16,10 @@ import JsonWebTokenHandlerLib
 from
   FalseValueFlowsToTokenValidationParametersPropertyWriteToBypassValidation config,
   DataFlow::Node source, DataFlow::Node sink,
-  TokenValidationParametersPropertySensitiveValidation pw
+  TokenValidationParametersPropertySensitiveValidation pw, string qualifier, string name
 where
   config.hasFlow(source, sink) and
-  sink.asExpr() = pw.getAnAssignedValue()
+  sink.asExpr() = pw.getAnAssignedValue() and
+  pw.hasQualifiedName(qualifier, name)
 select sink, "The security sensitive property $@ is being disabled by the following value: $@.", pw,
-  pw.getQualifiedName().toString(), source, "false"
+  printQualifiedName(qualifier, name), source, "false"
diff --git a/csharp/ql/src/experimental/Security Features/Serialization/DataSetSerialization.qll b/csharp/ql/src/experimental/Security Features/Serialization/DataSetSerialization.qll
index a6230b0ff59..79aa9e30e5e 100644
--- a/csharp/ql/src/experimental/Security Features/Serialization/DataSetSerialization.qll	
+++ b/csharp/ql/src/experimental/Security Features/Serialization/DataSetSerialization.qll	
@@ -16,8 +16,8 @@ abstract class DataSetOrTableRelatedClass extends Class { }
  */
 class DataSetOrTable extends DataSetOrTableRelatedClass {
   DataSetOrTable() {
-    this.getABaseType*().getQualifiedName() = "System.Data.DataTable" or
-    this.getABaseType*().getQualifiedName() = "System.Data.DataSet"
+    this.getABaseType*().hasQualifiedName("System.Data", "DataTable") or
+    this.getABaseType*().hasQualifiedName("System.Data", "DataSet")
   }
 }
 
@@ -41,18 +41,18 @@ class ClassWithDataSetOrTableMember extends DataSetOrTableRelatedClass {
 class SerializableClass extends Class {
   SerializableClass() {
     (
-      this.getABaseType*().getQualifiedName() = "System.Xml.Serialization.XmlSerializer" or
-      this.getABaseType*().getQualifiedName() = "System.Runtime.Serialization.ISerializable" or
-      this.getABaseType*().getQualifiedName() = "System.Runtime.Serialization.XmlObjectSerializer" or
-      this.getABaseType*().getQualifiedName() =
-        "System.Runtime.Serialization.ISerializationSurrogateProvider" or
-      this.getABaseType*().getQualifiedName() =
-        "System.Runtime.Serialization.XmlSerializableServices" or
-      this.getABaseType*().getQualifiedName() = "System.Xml.Serialization.IXmlSerializable"
+      this.getABaseType*()
+          .hasQualifiedName("System.Xml.Serialization", ["XmlSerializer", "IXmlSerializable"]) or
+      this.getABaseType*()
+          .hasQualifiedName("System.Runtime.Serialization",
+            [
+              "ISerializable", "XmlObjectSerializer", "ISerializationSurrogateProvider",
+              "XmlSerializableServices"
+            ])
     )
     or
     exists(Attribute a | a = this.getAnAttribute() |
-      a.getType().getQualifiedName() = "System.SerializableAttribute"
+      a.getType().hasQualifiedName("System", "SerializableAttribute")
     )
   }
 }
@@ -77,13 +77,7 @@ class UnsafeXmlSerializerImplementation extends SerializableClass {
  */
 class UnsafeXmlReadMethod extends Method {
   UnsafeXmlReadMethod() {
-    this.getQualifiedName() = "System.Data.DataTable.ReadXml"
-    or
-    this.getQualifiedName() = "System.Data.DataTable.ReadXmlSchema"
-    or
-    this.getQualifiedName() = "System.Data.DataSet.ReadXml"
-    or
-    this.getQualifiedName() = "System.Data.DataSet.ReadXmlSchema"
+    this.hasQualifiedName("System.Data", ["DataTable", "DataSet"], ["ReadXml", "ReadXmlSchema"])
     or
     this.getName().matches("ReadXml%") and
     exists(Class c | c.getAMethod() = this |
diff --git a/csharp/ql/src/experimental/Security Features/backdoor/PotentialTimeBomb.ql b/csharp/ql/src/experimental/Security Features/backdoor/PotentialTimeBomb.ql
index 9de38f673ab..9ccbd675486 100644
--- a/csharp/ql/src/experimental/Security Features/backdoor/PotentialTimeBomb.ql	
+++ b/csharp/ql/src/experimental/Security Features/backdoor/PotentialTimeBomb.ql	
@@ -45,10 +45,8 @@ query predicate edges(DataFlow::PathNode a, DataFlow::PathNode b) {
  */
 class GetLastWriteTimeMethod extends Method {
   GetLastWriteTimeMethod() {
-    this.getQualifiedName() in [
-        "System.IO.File.GetLastWriteTime", "System.IO.File.GetFileCreationTime",
-        "System.IO.File.GetCreationTimeUtc", "System.IO.File.GetLastAccessTimeUtc"
-      ]
+    this.hasQualifiedName("System.IO.File",
+      ["GetLastWriteTime", "GetFileCreationTime", "GetCreationTimeUtc", "GetLastAccessTimeUtc"])
   }
 }
 
@@ -56,7 +54,7 @@ class GetLastWriteTimeMethod extends Method {
  * Abstracts `System.DateTime` structure
  */
 class DateTimeStruct extends Struct {
-  DateTimeStruct() { this.getQualifiedName() = "System.DateTime" }
+  DateTimeStruct() { this.hasQualifiedName("System", "DateTime") }
 
   /**
    * holds if the Callable is used for DateTime arithmetic operations
diff --git a/csharp/ql/src/experimental/Security Features/backdoor/ProcessNameToHashTaintFlow.ql b/csharp/ql/src/experimental/Security Features/backdoor/ProcessNameToHashTaintFlow.ql
index 5bb8a1dc6e9..6f5acf29f1d 100644
--- a/csharp/ql/src/experimental/Security Features/backdoor/ProcessNameToHashTaintFlow.ql	
+++ b/csharp/ql/src/experimental/Security Features/backdoor/ProcessNameToHashTaintFlow.ql	
@@ -44,7 +44,7 @@ predicate isGetHash(Expr arg) {
 }
 
 predicate isSuspiciousPropertyName(PropertyRead pr) {
-  pr.getTarget().getQualifiedName() = "System.Diagnostics.Process.ProcessName"
+  pr.getTarget().hasQualifiedName("System.Diagnostics", "Process", "ProcessName")
 }
 
 from DataFlow::PathNode src, DataFlow::PathNode sink, DataFlowFromMethodToHash conf
diff --git a/csharp/ql/src/experimental/ir/implementation/raw/internal/desugar/Lock.qll b/csharp/ql/src/experimental/ir/implementation/raw/internal/desugar/Lock.qll
index e061a1371b2..bb1ab29e51c 100644
--- a/csharp/ql/src/experimental/ir/implementation/raw/internal/desugar/Lock.qll
+++ b/csharp/ql/src/experimental/ir/implementation/raw/internal/desugar/Lock.qll
@@ -128,7 +128,7 @@ private class TranslatedMonitorExit extends TranslatedCompilerGeneratedCall,
   override Callable getInstructionFunction(InstructionTag tag) {
     tag = CallTargetTag() and
     exists(Callable exit |
-      exit.getQualifiedName() = "System.Threading.Monitor.Exit" and
+      exit.hasQualifiedName("System.Threading.Monitor", "Exit") and
       result = exit
     )
   }
@@ -160,7 +160,7 @@ private class TranslatedMonitorEnter extends TranslatedCompilerGeneratedCall,
   override Callable getInstructionFunction(InstructionTag tag) {
     tag = CallTargetTag() and
     exists(Callable dispose |
-      dispose.getQualifiedName() = "System.Threading.Monitor.Enter" and
+      dispose.hasQualifiedName("System.Threading.Monitor", "Enter") and
       result = dispose
     )
   }
diff --git a/csharp/ql/src/utils/modelgenerator/internal/CaptureModelsSpecific.qll b/csharp/ql/src/utils/modelgenerator/internal/CaptureModelsSpecific.qll
index 18366b1a5d6..c3d520154a4 100644
--- a/csharp/ql/src/utils/modelgenerator/internal/CaptureModelsSpecific.qll
+++ b/csharp/ql/src/utils/modelgenerator/internal/CaptureModelsSpecific.qll
@@ -35,7 +35,7 @@ private predicate isHigherOrder(CS::Callable api) {
  */
 private predicate isRelevantForModels(CS::Callable api) {
   [api.(CS::Modifiable), api.(CS::Accessor).getDeclaration()].isEffectivelyPublic() and
-  api.getDeclaringType().getNamespace().getQualifiedName() != "" and
+  api.getDeclaringType().getNamespace().getFullName() != "" and
   not api instanceof CS::ConversionOperator and
   not api instanceof Util::MainMethod and
   not api instanceof CS::Destructor
diff --git a/csharp/ql/test/library-tests/async/Async.ql b/csharp/ql/test/library-tests/async/Async.ql
index afb279e8100..9ddd4c24c83 100644
--- a/csharp/ql/test/library-tests/async/Async.ql
+++ b/csharp/ql/test/library-tests/async/Async.ql
@@ -1,5 +1,5 @@
 import csharp
 
 from Method m
-where m.getDeclaringType().getQualifiedName() = "Semmle.Asynchronous"
+where m.getDeclaringType().hasQualifiedName("Semmle", "Asynchronous")
 select m, m.getAModifier()
diff --git a/csharp/ql/test/library-tests/attributes/AttributeElements.ql b/csharp/ql/test/library-tests/attributes/AttributeElements.ql
index cbcfae12bda..9ee758bf52a 100644
--- a/csharp/ql/test/library-tests/attributes/AttributeElements.ql
+++ b/csharp/ql/test/library-tests/attributes/AttributeElements.ql
@@ -1,7 +1,8 @@
 import csharp
 
-from Attributable element, Attribute attribute
+from Attributable element, Attribute attribute, string qualifier, string name
 where
   attribute = element.getAnAttribute() and
-  (attribute.fromSource() or element.(Assembly).getName() in ["attributes", "Assembly1"])
-select element, attribute, attribute.getType().getQualifiedName()
+  (attribute.fromSource() or element.(Assembly).getName() in ["attributes", "Assembly1"]) and
+  attribute.getType().hasQualifiedName(qualifier, name)
+select element, attribute, printQualifiedName(qualifier, name)
diff --git a/csharp/ql/test/library-tests/cil/consistency/Handles.ql b/csharp/ql/test/library-tests/cil/consistency/Handles.ql
index e67e4b29416..b49e8c5a066 100644
--- a/csharp/ql/test/library-tests/cil/consistency/Handles.ql
+++ b/csharp/ql/test/library-tests/cil/consistency/Handles.ql
@@ -11,9 +11,10 @@ class MetadataEntity extends DotNet::NamedElement, @metadata_entity {
 }
 
 query predicate tooManyHandles(string s) {
-  exists(MetadataEntity e, Assembly a |
+  exists(MetadataEntity e, Assembly a, string qualifier, string name |
     strictcount(int handle | metadata_handle(e, a, handle)) > 1 and
-    s = e.getQualifiedName()
+    e.hasQualifiedName(qualifier, name) and
+    s = printQualifiedName(qualifier, name)
   )
 }
 
@@ -21,15 +22,19 @@ private class UniqueMetadataEntity extends MetadataEntity {
   UniqueMetadataEntity() {
     // Tuple types such as `(,)` and `ValueTuple`2` share the same handle
     not this instanceof TupleType and
-    not this.getQualifiedName().matches("System.ValueTuple%")
+    not exists(string name |
+      this.hasQualifiedName("System", name) and
+      name.matches("System.ValueTuple%")
+    )
   }
 }
 
 query predicate tooManyMatchingHandles(string s) {
-  exists(UniqueMetadataEntity e, Assembly a, int handle |
+  exists(UniqueMetadataEntity e, Assembly a, int handle, string qualifier, string name |
     metadata_handle(e, a, handle) and
     strictcount(UniqueMetadataEntity e2 | metadata_handle(e2, a, handle)) > 2 and
-    s = e.getQualifiedName()
+    e.hasQualifiedName(qualifier, name) and
+    s = printQualifiedName(qualifier, name)
   )
 }
 
@@ -54,7 +59,7 @@ query predicate csharpLocationViolation(Element e) {
 
 query predicate matchingObjectMethods(string s1, string s2) {
   exists(Callable m1, CIL::Method m2 |
-    m1.getDeclaringType().getQualifiedName() = "System.Object" and
+    m1.getDeclaringType().hasQualifiedName("System", "Object") and
     m1.matchesHandle(m2) and
     s1 = m1.toStringWithTypes() and
     s2 = m2.toStringWithTypes()
diff --git a/csharp/ql/test/library-tests/cil/dataflow/TrivialProperties.ql b/csharp/ql/test/library-tests/cil/dataflow/TrivialProperties.ql
index 2f165c8ae55..1d8725d5e6a 100644
--- a/csharp/ql/test/library-tests/cil/dataflow/TrivialProperties.ql
+++ b/csharp/ql/test/library-tests/cil/dataflow/TrivialProperties.ql
@@ -1,10 +1,16 @@
 import csharp
 
-from TrivialProperty prop
+from TrivialProperty prop, string qualifier, string name
 where
-  prop.getDeclaringType().hasQualifiedName("System.Reflection", "AssemblyName")
-  or
-  prop.getDeclaringType().hasQualifiedName("System.Collections", "DictionaryEntry")
-  or
-  prop.getDeclaringType().hasQualifiedName("Dataflow", "Properties")
-select prop.getQualifiedName()
+  exists(string dqualifier, string dname |
+    prop.getDeclaringType().hasQualifiedName(dqualifier, dname) and
+    (
+      dqualifier = "System.Reflection" and dname = "AssemblyName"
+      or
+      dqualifier = "System.Collections" and dname = "DictionaryEntry"
+      or
+      dqualifier = "Dataflow" and dname = "Properties"
+    )
+  ) and
+  prop.hasQualifiedName(qualifier, name)
+select printQualifiedName(qualifier, name)
diff --git a/csharp/ql/test/library-tests/cil/enums/enums.ql b/csharp/ql/test/library-tests/cil/enums/enums.ql
index 280bee49921..5d1fa016cd3 100644
--- a/csharp/ql/test/library-tests/cil/enums/enums.ql
+++ b/csharp/ql/test/library-tests/cil/enums/enums.ql
@@ -1,5 +1,8 @@
+import semmle.code.csharp.Printing
 import semmle.code.cil.Types
 
-from Enum e
-where e.getQualifiedName() != "Interop.Sys.LockType" // doesn't exist on osx
-select e.getQualifiedName(), e.getUnderlyingType().toStringWithTypes()
+from Enum e, string qualifier, string name
+where
+  e.hasQualifiedName(qualifier, name) and
+  printQualifiedName(qualifier, name) != "Interop.Sys.LockType" // doesn't exist on osx
+select printQualifiedName(qualifier, name), e.getUnderlyingType().toStringWithTypes()
diff --git a/csharp/ql/test/library-tests/cil/functionPointers/functionPointers.ql b/csharp/ql/test/library-tests/cil/functionPointers/functionPointers.ql
index ddc6671d358..607eceb22e1 100644
--- a/csharp/ql/test/library-tests/cil/functionPointers/functionPointers.ql
+++ b/csharp/ql/test/library-tests/cil/functionPointers/functionPointers.ql
@@ -1,5 +1,6 @@
 import cil
 import semmle.code.cil.Type
+import semmle.code.csharp.Printing
 
 bindingset[kind]
 private string getKind(int kind) { if kind = 1 then result = "modreq" else result = "modopt" }
@@ -26,9 +27,12 @@ query predicate params(string fnptr, int i, string param, string t) {
 }
 
 query predicate modifiers(string fnptr, string modifier, string sKind) {
-  exists(Type modType, int kind, FunctionPointerType fn | fnptr = fn.toString() |
+  exists(Type modType, int kind, FunctionPointerType fn, string qualifier, string name |
+    fnptr = fn.toString()
+  |
     cil_custom_modifiers(fn, modType, kind) and
-    modType.getQualifiedName() = modifier and
+    modType.hasQualifiedName(qualifier, name) and
+    modifier = printQualifiedName(qualifier, name) and
     sKind = getKind(kind)
   )
 }
diff --git a/csharp/ql/test/library-tests/cil/init-only-prop/customModifiers.ql b/csharp/ql/test/library-tests/cil/init-only-prop/customModifiers.ql
index 3366bef35ce..7633d59c247 100644
--- a/csharp/ql/test/library-tests/cil/init-only-prop/customModifiers.ql
+++ b/csharp/ql/test/library-tests/cil/init-only-prop/customModifiers.ql
@@ -1,3 +1,4 @@
+import semmle.code.csharp.Printing
 import semmle.code.cil.Type
 
 bindingset[kind]
@@ -5,9 +6,10 @@ private string getKind(int kind) { if kind = 1 then result = "modreq" else resul
 
 from string receiver, string modifier, int kind
 where
-  exists(Type modType, CustomModifierReceiver cmr |
+  exists(Type modType, CustomModifierReceiver cmr, string qualifier, string name |
     receiver = cmr.toString() and
     cil_custom_modifiers(cmr, modType, kind) and
-    modType.getQualifiedName() = modifier
+    modType.hasQualifiedName(qualifier, name) and
+    modifier = printQualifiedName(qualifier, name)
   )
 select receiver, modifier, getKind(kind)
diff --git a/csharp/ql/test/library-tests/cil/regressions/ConstructedMethods.ql b/csharp/ql/test/library-tests/cil/regressions/ConstructedMethods.ql
index 15195dc0dd5..3ea940e2ef0 100644
--- a/csharp/ql/test/library-tests/cil/regressions/ConstructedMethods.ql
+++ b/csharp/ql/test/library-tests/cil/regressions/ConstructedMethods.ql
@@ -3,5 +3,5 @@ import cil::CIL
 from UnboundGenericMethod f, ConstructedMethod fc
 where
   fc.getUnboundMethod() = f and
-  f.getQualifiedName() = "Methods.Class1.F"
+  f.hasQualifiedName("Methods", "Class1", "F")
 select f, fc, fc.getTypeArgument(0)
diff --git a/csharp/ql/test/library-tests/commons/Disposal/DisposedFields.ql b/csharp/ql/test/library-tests/commons/Disposal/DisposedFields.ql
index 6df087748d4..307ea22e69e 100644
--- a/csharp/ql/test/library-tests/commons/Disposal/DisposedFields.ql
+++ b/csharp/ql/test/library-tests/commons/Disposal/DisposedFields.ql
@@ -4,5 +4,5 @@ import semmle.code.csharp.commons.Disposal
 from CIL::Field field
 where
   mayBeDisposed(field) and
-  field.getDeclaringType().getQualifiedName() = "DisposalTests.Class1"
+  field.getDeclaringType().hasQualifiedName("DisposalTests", "Class1")
 select field.getQualifiedName()
diff --git a/csharp/ql/test/library-tests/enums/Enums3.ql b/csharp/ql/test/library-tests/enums/Enums3.ql
index 4e497154ee5..3a7d3d865aa 100644
--- a/csharp/ql/test/library-tests/enums/Enums3.ql
+++ b/csharp/ql/test/library-tests/enums/Enums3.ql
@@ -4,10 +4,11 @@
 
 import csharp
 
-from EnumConstant c
+from EnumConstant c, string qualifier, string name
 where
   c.getName() = "Green" and
   c.getDeclaringType().hasQualifiedName("Enums", "LongColor") and
   c.getType() = c.getDeclaringType() and
-  c.getValue() = "1"
-select c, c.getDeclaringType().getBaseClass().getQualifiedName()
+  c.getValue() = "1" and
+  c.getDeclaringType().getBaseClass().hasQualifiedName(qualifier, name)
+select c, printQualifiedName(qualifier, name)
diff --git a/csharp/ql/test/library-tests/generics/Generics.ql b/csharp/ql/test/library-tests/generics/Generics.ql
index 4b43baa6fca..34e2befb24d 100644
--- a/csharp/ql/test/library-tests/generics/Generics.ql
+++ b/csharp/ql/test/library-tests/generics/Generics.ql
@@ -259,18 +259,24 @@ query predicate test32(ConstructedGeneric cg, string s1, string s2) {
 
 query predicate test33(ConstructedMethod cm, string s1, string s2) {
   cm.fromSource() and
-  cm.getQualifiedName() = s1 and
+  exists(string qualifier, string type, string name |
+    cm.hasQualifiedName(qualifier, type, name) and s1 = printQualifiedName(qualifier, type, name)
+  ) and
   cm.getQualifiedNameWithTypes() = s2
 }
 
 query predicate test34(UnboundGeneric ug, string s1, string s2) {
   ug.fromSource() and
-  ug.getQualifiedName() = s1 and
+  exists(string qualifier, string name |
+    ug.hasQualifiedName(qualifier, name) and s1 = printQualifiedName(qualifier, name)
+  ) and
   ug.getQualifiedNameWithTypes() = s2
 }
 
 query predicate test35(UnboundGenericMethod gm, string s1, string s2) {
   gm.fromSource() and
-  gm.getQualifiedName() = s1 and
+  exists(string qualifier, string type, string name |
+    gm.hasQualifiedName(qualifier, type, name) and s1 = printQualifiedName(qualifier, type, name)
+  ) and
   gm.getQualifiedNameWithTypes() = s2
 }
diff --git a/csharp/ql/test/library-tests/types/Types17.ql b/csharp/ql/test/library-tests/types/Types17.ql
index 80c0b783a53..c73a26c7b26 100644
--- a/csharp/ql/test/library-tests/types/Types17.ql
+++ b/csharp/ql/test/library-tests/types/Types17.ql
@@ -6,5 +6,5 @@
 import csharp
 
 from Enum e
-where e.getQualifiedName() = "Types.Enum"
+where e.hasQualifiedName("Types", "Enum")
 select e
diff --git a/csharp/ql/test/library-tests/types/Types18.ql b/csharp/ql/test/library-tests/types/Types18.ql
index 3d15ac88d27..34b11bb0bfb 100644
--- a/csharp/ql/test/library-tests/types/Types18.ql
+++ b/csharp/ql/test/library-tests/types/Types18.ql
@@ -6,5 +6,5 @@
 import csharp
 
 from Struct s
-where s.getQualifiedName() = "Types.Struct"
+where s.hasQualifiedName("Types", "Struct")
 select s
diff --git a/csharp/ql/test/library-tests/types/Types19.ql b/csharp/ql/test/library-tests/types/Types19.ql
index e0352d8b547..27f7f02f0c1 100644
--- a/csharp/ql/test/library-tests/types/Types19.ql
+++ b/csharp/ql/test/library-tests/types/Types19.ql
@@ -6,5 +6,5 @@
 import csharp
 
 from Class c
-where c.getQualifiedName() = "Types.Class"
+where c.hasQualifiedName("Types", "Class")
 select c
diff --git a/csharp/ql/test/library-tests/types/Types20.ql b/csharp/ql/test/library-tests/types/Types20.ql
index a7bc8e81474..ae9c38c8d08 100644
--- a/csharp/ql/test/library-tests/types/Types20.ql
+++ b/csharp/ql/test/library-tests/types/Types20.ql
@@ -6,5 +6,5 @@
 import csharp
 
 from Interface i
-where i.getQualifiedName() = "Types.Interface"
+where i.hasQualifiedName("Types", "Interface")
 select i
diff --git a/csharp/ql/test/library-tests/types/Types21.ql b/csharp/ql/test/library-tests/types/Types21.ql
index b111f959d20..2e5f54991f6 100644
--- a/csharp/ql/test/library-tests/types/Types21.ql
+++ b/csharp/ql/test/library-tests/types/Types21.ql
@@ -6,5 +6,5 @@
 import csharp
 
 from UnboundGenericClass c
-where c.getQualifiedName() = "Types.GenericClass<>"
+where c.hasQualifiedName("Types", "GenericClass<>")
 select c
diff --git a/csharp/ql/test/library-tests/types/Types22.ql b/csharp/ql/test/library-tests/types/Types22.ql
index b539167d66a..059831abf21 100644
--- a/csharp/ql/test/library-tests/types/Types22.ql
+++ b/csharp/ql/test/library-tests/types/Types22.ql
@@ -6,5 +6,5 @@
 import csharp
 
 from UnboundGenericInterface c
-where c.getQualifiedName() = "Types.GenericInterface<>"
+where c.hasQualifiedName("Types", "GenericInterface<>")
 select c
diff --git a/csharp/ql/test/library-tests/types/Types23.ql b/csharp/ql/test/library-tests/types/Types23.ql
index 05a214086ab..229f86eb584 100644
--- a/csharp/ql/test/library-tests/types/Types23.ql
+++ b/csharp/ql/test/library-tests/types/Types23.ql
@@ -6,5 +6,5 @@
 import csharp
 
 from UnboundGenericStruct c
-where c.getQualifiedName() = "Types.GenericStruct<>"
+where c.hasQualifiedName("Types", "GenericStruct<>")
 select c
diff --git a/csharp/ql/test/library-tests/types/Types30.ql b/csharp/ql/test/library-tests/types/Types30.ql
index 1d00aa27e10..b79a8d47344 100644
--- a/csharp/ql/test/library-tests/types/Types30.ql
+++ b/csharp/ql/test/library-tests/types/Types30.ql
@@ -7,7 +7,7 @@ import csharp
 
 from UnboundGenericClass c, TypeParameter p1, TypeParameter p2
 where
-  c.getQualifiedName() = "Types.Map<,>" and
+  c.hasQualifiedName("Types", "Map<,>") and
   c.getTypeParameter(0) = p1 and
   c.getTypeParameter(1) = p2 and
   p1.getName() = "U" and
diff --git a/csharp/ql/test/library-tests/types/Types31.ql b/csharp/ql/test/library-tests/types/Types31.ql
index 204123bb779..07b68b63d2a 100644
--- a/csharp/ql/test/library-tests/types/Types31.ql
+++ b/csharp/ql/test/library-tests/types/Types31.ql
@@ -11,6 +11,6 @@ where
   m.getReturnType() = t and
   t.getTypeArgument(0) = arg1 and
   t.getTypeArgument(1) = arg2 and
-  arg1.getQualifiedName() = "System.String" and
-  arg2.getQualifiedName() = "Types.Class"
+  arg1.hasQualifiedName("System", "String") and
+  arg2.hasQualifiedName("Types", "Class")
 select t, arg1.toString(), arg2
diff --git a/csharp/ql/test/library-tests/types/Types34.ql b/csharp/ql/test/library-tests/types/Types34.ql
index 12e2dc0920b..36aa7eba142 100644
--- a/csharp/ql/test/library-tests/types/Types34.ql
+++ b/csharp/ql/test/library-tests/types/Types34.ql
@@ -7,5 +7,5 @@ where
   t1.getDimension() = 2 and
   t1.getElementType() = t2 and
   t2.getDimension() = 1 and
-  t2.getElementType().(Class).getQualifiedName() = "Types.Class"
+  t2.getElementType().(Class).hasQualifiedName("Types", "Class")
 select t1, t2
diff --git a/csharp/ql/test/library-tests/types/Types35.ql b/csharp/ql/test/library-tests/types/Types35.ql
index 3f55fcd8197..40a6808f7a5 100644
--- a/csharp/ql/test/library-tests/types/Types35.ql
+++ b/csharp/ql/test/library-tests/types/Types35.ql
@@ -10,5 +10,5 @@ where
   m.getName() = "NullableType" and
   m.getReturnType() = t1 and
   t1.getUnderlyingType() = t2 and
-  t2.getQualifiedName() = "Types.Struct"
+  t2.hasQualifiedName("Types", "Struct")
 select t1
diff --git a/csharp/ql/test/library-tests/types/Types36.ql b/csharp/ql/test/library-tests/types/Types36.ql
index f8462097802..a201312b805 100644
--- a/csharp/ql/test/library-tests/types/Types36.ql
+++ b/csharp/ql/test/library-tests/types/Types36.ql
@@ -2,4 +2,4 @@ import csharp
 
 from Interface i
 where i.hasQualifiedName("System.Collections", "IEnumerable")
-select i.getQualifiedName()
+select "System.Collections.IEnumerable"

From f7a1a4a9b775ced225d94b56a1a918bcf3b2d214 Mon Sep 17 00:00:00 2001
From: Michael Nebel <michaelnebel@github.com>
Date: Fri, 11 Nov 2022 13:33:42 +0100
Subject: [PATCH 1059/1420] C#: Add some missing this qualifiers.

---
 csharp/ql/lib/semmle/code/asp/AspNet.qll | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/csharp/ql/lib/semmle/code/asp/AspNet.qll b/csharp/ql/lib/semmle/code/asp/AspNet.qll
index 91443f14318..28c867935c6 100644
--- a/csharp/ql/lib/semmle/code/asp/AspNet.qll
+++ b/csharp/ql/lib/semmle/code/asp/AspNet.qll
@@ -215,7 +215,7 @@ class PageDirective extends AspDirective {
  */
 class CodeBehindFile extends File {
   CodeBehindFile() {
-    getExtension() = "aspx" and
+    this.getExtension() = "aspx" and
     exists(PageDirective pageDir | pageDir.getLocation().getFile() = this)
   }
 
@@ -227,5 +227,5 @@ class CodeBehindFile extends File {
   /**
    * Gets the 'CodeBehind' class from which this page inherits.
    */
-  ValueOrRefType getInheritedType() { result = getPageDirective().getInheritedType() }
+  ValueOrRefType getInheritedType() { result = this.getPageDirective().getInheritedType() }
 }

From ae4f4d6df4c4aa3309d85b431548d8491ac98c51 Mon Sep 17 00:00:00 2001
From: Michael Nebel <michaelnebel@github.com>
Date: Mon, 14 Nov 2022 09:21:33 +0100
Subject: [PATCH 1060/1420] C#: Add change note about deprecation of
 hasQualifiedName/1.

---
 .../lib/change-notes/2022-11-14-deprecatehasqualifiedname.md  | 4 ++++
 1 file changed, 4 insertions(+)
 create mode 100644 csharp/ql/lib/change-notes/2022-11-14-deprecatehasqualifiedname.md

diff --git a/csharp/ql/lib/change-notes/2022-11-14-deprecatehasqualifiedname.md b/csharp/ql/lib/change-notes/2022-11-14-deprecatehasqualifiedname.md
new file mode 100644
index 00000000000..03e6ae84fb4
--- /dev/null
+++ b/csharp/ql/lib/change-notes/2022-11-14-deprecatehasqualifiedname.md
@@ -0,0 +1,4 @@
+---
+category: minorAnalysis
+---
+* Deprecate `hasQualifiedName/1`. Use `hasQualifiedName/2` or `hasQualifiedName/3` instead.
\ No newline at end of file

From 0a3295ef3f91190fd9f9942333feeca12e59aff4 Mon Sep 17 00:00:00 2001
From: Michael Nebel <michaelnebel@github.com>
Date: Wed, 23 Nov 2022 16:16:37 +0100
Subject: [PATCH 1061/1420] C#: Address review comments.

---
 .../2022-11-14-deprecatehasqualifiedname.md   |  2 +-
 csharp/ql/lib/csharp.qll                      |  1 -
 csharp/ql/lib/semmle/code/asp/AspNet.qll      |  7 ++--
 .../lib/semmle/code/cil/ConsistencyChecks.qll |  8 ++---
 csharp/ql/lib/semmle/code/cil/Type.qll        |  8 ++---
 csharp/ql/lib/semmle/code/cil/Variable.qll    |  2 +-
 csharp/ql/lib/semmle/code/csharp/Callable.qll | 13 +++----
 csharp/ql/lib/semmle/code/csharp/Generics.qll | 27 ++++++++-------
 csharp/ql/lib/semmle/code/csharp/Printing.qll | 19 -----------
 csharp/ql/lib/semmle/code/csharp/Type.qll     | 30 ++++++++--------
 csharp/ql/lib/semmle/code/csharp/Variable.qll |  2 +-
 .../code/csharp/commons/QualifiedName.qll     | 34 +++++++++++++++++++
 .../semmle/code/csharp/frameworks/Dapper.qll  |  2 +-
 .../csharp/frameworks/EntityFramework.qll     |  6 +---
 .../semmle/code/csharp/frameworks/JsonNET.qll |  2 +-
 .../lib/semmle/code/csharp/frameworks/Moq.qll |  2 +-
 .../code/csharp/frameworks/test/NUnit.qll     | 16 ++-------
 .../csharp/frameworks/test/VisualStudio.qll   |  2 +-
 .../code/csharp/frameworks/test/XUnit.qll     |  2 +-
 .../ql/lib/semmle/code/dotnet/Declaration.qll | 14 ++++----
 csharp/ql/lib/semmle/code/dotnet/Element.qll  |  6 ++--
 .../ql/lib/semmle/code/dotnet/Namespace.qll   | 24 ++++++-------
 .../ql/src/API Abuse/NonOverridingMethod.ql   |  7 ++--
 .../Naming Conventions/ControlNamePrefixes.ql | 12 +++----
 .../Documentation/XmldocMissingException.ql   | 11 ++----
 csharp/ql/src/Stubs/Stubs.qll                 |  7 ++--
 ...security-validations-always-return-true.ql |  7 ++--
 .../security-validation-disabled.ql           |  7 ++--
 .../attributes/AttributeElements.ql           |  7 ++--
 .../library-tests/cil/consistency/Handles.ql  | 13 +++----
 .../cil/dataflow/TrivialProperties.ql         | 23 ++++++-------
 .../ql/test/library-tests/cil/enums/enums.ql  | 10 +++---
 .../cil/functionPointers/functionPointers.ql  |  8 ++---
 .../cil/init-only-prop/customModifiers.ql     |  8 ++---
 csharp/ql/test/library-tests/enums/Enums3.ql  |  7 ++--
 .../test/library-tests/generics/Generics.ql   | 13 +++----
 36 files changed, 185 insertions(+), 184 deletions(-)
 delete mode 100644 csharp/ql/lib/semmle/code/csharp/Printing.qll
 create mode 100644 csharp/ql/lib/semmle/code/csharp/commons/QualifiedName.qll

diff --git a/csharp/ql/lib/change-notes/2022-11-14-deprecatehasqualifiedname.md b/csharp/ql/lib/change-notes/2022-11-14-deprecatehasqualifiedname.md
index 03e6ae84fb4..472fbaaa5a5 100644
--- a/csharp/ql/lib/change-notes/2022-11-14-deprecatehasqualifiedname.md
+++ b/csharp/ql/lib/change-notes/2022-11-14-deprecatehasqualifiedname.md
@@ -1,4 +1,4 @@
 ---
 category: minorAnalysis
 ---
-* Deprecate `hasQualifiedName/1`. Use `hasQualifiedName/2` or `hasQualifiedName/3` instead.
\ No newline at end of file
+* `Element::hasQualifiedName/1` has been deprecated. Use `hasQualifiedName/2` or `hasQualifiedName/3` instead.
\ No newline at end of file
diff --git a/csharp/ql/lib/csharp.qll b/csharp/ql/lib/csharp.qll
index 7a5e376427e..dc187fc8d92 100644
--- a/csharp/ql/lib/csharp.qll
+++ b/csharp/ql/lib/csharp.qll
@@ -21,7 +21,6 @@ import semmle.code.csharp.Using
 import semmle.code.csharp.Variable
 import semmle.code.csharp.XML
 import semmle.code.csharp.Preprocessor
-import semmle.code.csharp.Printing
 import semmle.code.csharp.exprs.Access
 import semmle.code.csharp.exprs.ArithmeticOperation
 import semmle.code.csharp.exprs.Assignment
diff --git a/csharp/ql/lib/semmle/code/asp/AspNet.qll b/csharp/ql/lib/semmle/code/asp/AspNet.qll
index 28c867935c6..c85096f1b6e 100644
--- a/csharp/ql/lib/semmle/code/asp/AspNet.qll
+++ b/csharp/ql/lib/semmle/code/asp/AspNet.qll
@@ -5,6 +5,7 @@
  */
 
 import csharp
+private import semmle.code.csharp.commons.QualifiedName
 
 /**
  * An ASP.NET program element. Either an attribute (`AspAttribute`), an open
@@ -184,9 +185,9 @@ class PageDirective extends AspDirective {
    * Gets the 'CodeBehind' class from which this page inherits.
    */
   ValueOrRefType getInheritedType() {
-    exists(string qualifier, string name |
-      result.hasQualifiedName(qualifier, name) and
-      printQualifiedName(qualifier, name) = this.getInheritedTypeQualifiedName()
+    exists(string namespace, string type |
+      result.hasQualifiedName(namespace, type) and
+      splitQualifiedName(this.getInheritedTypeQualifiedName(), namespace, type)
     )
   }
 
diff --git a/csharp/ql/lib/semmle/code/cil/ConsistencyChecks.qll b/csharp/ql/lib/semmle/code/cil/ConsistencyChecks.qll
index f3481dca28e..e39cebef4fd 100644
--- a/csharp/ql/lib/semmle/code/cil/ConsistencyChecks.qll
+++ b/csharp/ql/lib/semmle/code/cil/ConsistencyChecks.qll
@@ -4,6 +4,7 @@
 
 private import CIL
 private import csharp as CS
+private import semmle.code.csharp.commons.QualifiedName
 
 private newtype ConsistencyCheck =
   MissingEntityCheck() or
@@ -484,12 +485,11 @@ class InvalidOverride extends MethodViolation {
   }
 
   override string getMessage() {
-    exists(string qualifier, string name |
-      base.getDeclaringType().hasQualifiedName(qualifier, name)
+    exists(string namespace, string type |
+      base.getDeclaringType().hasQualifiedName(namespace, type)
     |
       result =
-        "Overridden method from " + CS::printQualifiedName(qualifier, name) +
-          " is not in a base type"
+        "Overridden method from " + printQualifiedName(namespace, type) + " is not in a base type"
     )
   }
 }
diff --git a/csharp/ql/lib/semmle/code/cil/Type.qll b/csharp/ql/lib/semmle/code/cil/Type.qll
index ecb60b5f45b..8131c7db2fc 100644
--- a/csharp/ql/lib/semmle/code/cil/Type.qll
+++ b/csharp/ql/lib/semmle/code/cil/Type.qll
@@ -4,7 +4,7 @@
 
 import CIL
 private import dotnet
-private import semmle.code.csharp.Printing
+private import semmle.code.csharp.commons.QualifiedName
 
 /**
  * Something that contains other types.
@@ -51,10 +51,10 @@ class Type extends DotNet::Type, Declaration, TypeContainer, @cil_type {
    */
   Type getUnboundType() { cil_type(this, _, _, _, result) }
 
-  override predicate hasQualifiedName(string qualifier, string name) {
+  override predicate hasQualifiedName(string namespace, string name) {
     name = this.getName() and
-    exists(string pqualifier, string pname | this.getParent().hasQualifiedName(pqualifier, pname) |
-      qualifier = printQualifiedName(pqualifier, pname)
+    exists(string pnamespace, string pname | this.getParent().hasQualifiedName(pnamespace, pname) |
+      namespace = printQualifiedName(pnamespace, pname)
     )
   }
 
diff --git a/csharp/ql/lib/semmle/code/cil/Variable.qll b/csharp/ql/lib/semmle/code/cil/Variable.qll
index 604f2c2b646..be1834eebc7 100644
--- a/csharp/ql/lib/semmle/code/cil/Variable.qll
+++ b/csharp/ql/lib/semmle/code/cil/Variable.qll
@@ -29,7 +29,7 @@ class Variable extends DotNet::Variable, Declaration, DataFlowNode, @cil_variabl
 
 /** A stack variable. Either a local variable (`LocalVariable`) or a parameter (`Parameter`). */
 class StackVariable extends Variable, @cil_stack_variable {
-  override predicate hasQualifiedName(string qualifier, string name) { none() }
+  override predicate hasQualifiedName(string namespace, string name) { none() }
 }
 
 /**
diff --git a/csharp/ql/lib/semmle/code/csharp/Callable.qll b/csharp/ql/lib/semmle/code/csharp/Callable.qll
index 7ce2a138e84..7a6feb0b37f 100644
--- a/csharp/ql/lib/semmle/code/csharp/Callable.qll
+++ b/csharp/ql/lib/semmle/code/csharp/Callable.qll
@@ -7,6 +7,7 @@ import Member
 import Stmt
 import Type
 import exprs.Call
+private import commons.QualifiedName
 private import dotnet
 private import semmle.code.csharp.ExprOrStmtParent
 private import semmle.code.csharp.metrics.Complexity
@@ -455,8 +456,8 @@ class Operator extends Callable, Member, Attributable, @operator {
 
   override Parameter getRawParameter(int i) { result = this.getParameter(i) }
 
-  override predicate hasQualifiedName(string qualifier, string name) {
-    super.hasQualifiedName(qualifier, _) and
+  override predicate hasQualifiedName(string namespace, string name) {
+    super.hasQualifiedName(namespace, _) and
     name = this.getFunctionName()
   }
 
@@ -1000,10 +1001,10 @@ class LocalFunction extends Callable, Modifiable, Attributable, @local_function
 
   override Callable getEnclosingCallable() { result = this.getStatement().getEnclosingCallable() }
 
-  override predicate hasQualifiedName(string qualifier, string name) {
-    exists(string cqualifier, string type |
-      this.getEnclosingCallable().hasQualifiedName(cqualifier, type) and
-      qualifier = printQualifiedName(cqualifier, type)
+  override predicate hasQualifiedName(string namespace, string name) {
+    exists(string cnamespace, string type |
+      this.getEnclosingCallable().hasQualifiedName(cnamespace, type) and
+      namespace = printQualifiedName(cnamespace, type)
     ) and
     name = this.getName()
   }
diff --git a/csharp/ql/lib/semmle/code/csharp/Generics.qll b/csharp/ql/lib/semmle/code/csharp/Generics.qll
index 8a3193c6268..8e1d1aef491 100644
--- a/csharp/ql/lib/semmle/code/csharp/Generics.qll
+++ b/csharp/ql/lib/semmle/code/csharp/Generics.qll
@@ -15,6 +15,7 @@
 
 import Location
 import Namespace
+private import commons.QualifiedName
 private import dotnet
 private import TypeRef
 
@@ -99,9 +100,9 @@ private string getTypeArgumentsNames(ConstructedGeneric cg) {
 
 bindingset[t]
 private string getFullName(Type t) {
-  exists(string qualifier, string name |
-    t.hasQualifiedName(qualifier, name) and
-    result = printQualifiedName(qualifier, name)
+  exists(string namespace, string name |
+    t.hasQualifiedName(namespace, name) and
+    result = printQualifiedName(namespace, name)
   )
 }
 
@@ -158,15 +159,15 @@ class UnboundGenericType extends ValueOrRefType, UnboundGeneric {
     result = this.getUndecoratedName() + "<" + getTypeParameterCommas(this) + ">"
   }
 
-  final override predicate hasQualifiedName(string qualifier, string name) {
+  final override predicate hasQualifiedName(string namespace, string name) {
     exists(string name0 | name = name0 + "<" + getTypeParameterCommas(this) + ">" |
       exists(string enclosing |
-        this.getDeclaringType().hasQualifiedName(qualifier, enclosing) and
+        this.getDeclaringType().hasQualifiedName(namespace, enclosing) and
         name0 = enclosing + "+" + this.getUndecoratedName()
       )
       or
       not exists(this.getDeclaringType()) and
-      qualifier = this.getNamespace().getFullName() and
+      namespace = this.getNamespace().getFullName() and
       name0 = this.getUndecoratedName()
     )
   }
@@ -236,8 +237,8 @@ class TypeParameter extends DotNet::TypeParameter, Type, @type_parameter {
   /** Gets the generic that defines this type parameter. */
   UnboundGeneric getGeneric() { type_parameters(this, _, result, _) }
 
-  final override predicate hasQualifiedName(string qualifier, string name) {
-    qualifier = "" and
+  final override predicate hasQualifiedName(string namespace, string name) {
+    namespace = "" and
     name = this.getName()
   }
 
@@ -423,15 +424,15 @@ class ConstructedType extends ValueOrRefType, ConstructedGeneric {
     result = this.getUndecoratedName() + "<" + getTypeArgumentsNames(this) + ">"
   }
 
-  final override predicate hasQualifiedName(string qualifier, string name) {
+  final override predicate hasQualifiedName(string namespace, string name) {
     exists(string name0 | name = name0 + "<" + getTypeArgumentsQualifiedNames(this) + ">" |
       exists(string enclosing |
-        this.getDeclaringType().hasQualifiedName(qualifier, enclosing) and
+        this.getDeclaringType().hasQualifiedName(namespace, enclosing) and
         name0 = enclosing + "+" + this.getUndecoratedName()
       )
       or
       not exists(this.getDeclaringType()) and
-      qualifier = this.getNamespace().getFullName() and
+      namespace = this.getNamespace().getFullName() and
       name0 = this.getUndecoratedName()
     )
   }
@@ -601,8 +602,8 @@ class ConstructedMethod extends Method, ConstructedGeneric {
     result = this.getUndecoratedName() + "<" + getTypeArgumentsNames(this) + ">"
   }
 
-  override predicate hasQualifiedName(string qualifier, string type, string name) {
-    this.getDeclaringType().hasQualifiedName(qualifier, type) and
+  override predicate hasQualifiedName(string namespace, string type, string name) {
+    this.getDeclaringType().hasQualifiedName(namespace, type) and
     name = this.getUndecoratedName() + "<" + getTypeArgumentsQualifiedNames(this) + ">"
   }
 
diff --git a/csharp/ql/lib/semmle/code/csharp/Printing.qll b/csharp/ql/lib/semmle/code/csharp/Printing.qll
deleted file mode 100644
index 59af2b2f785..00000000000
--- a/csharp/ql/lib/semmle/code/csharp/Printing.qll
+++ /dev/null
@@ -1,19 +0,0 @@
-/**
- * Provides predicates to pretty-print a C# qualified name.
- */
-
-/**
- * Returns the concatenation of `qualifier` and `name`, separated by a dot.
- */
-bindingset[qualifier, name]
-string printQualifiedName(string qualifier, string name) {
-  if qualifier = "" then result = name else result = qualifier + "." + name
-}
-
-/**
- * Returns the concatenation of `qualifier`, `type` and `name`, separated by a dot.
- */
-bindingset[qualifier, type, name]
-string printQualifiedName(string qualifier, string type, string name) {
-  result = printQualifiedName(qualifier, type) + "." + name
-}
diff --git a/csharp/ql/lib/semmle/code/csharp/Type.qll b/csharp/ql/lib/semmle/code/csharp/Type.qll
index 8bb92c8c86a..d176163943e 100644
--- a/csharp/ql/lib/semmle/code/csharp/Type.qll
+++ b/csharp/ql/lib/semmle/code/csharp/Type.qll
@@ -57,19 +57,19 @@ private predicate isObjectClass(Class c) { c instanceof ObjectType }
  */
 class ValueOrRefType extends DotNet::ValueOrRefType, Type, Attributable, @value_or_ref_type {
   /**
-   * Holds if this type has the qualified name `qualifier`.`name`.
+   * Holds if this type has the qualified name `namespace`.`name`.
    *
    * For example the class `System.IO.IOException` has
-   * `qualifier`=`System.IO` and `name`=`IOException`.
+   * `namespace`=`System.IO` and `name`=`IOException`.
    */
-  override predicate hasQualifiedName(string qualifier, string name) {
+  override predicate hasQualifiedName(string namespace, string name) {
     exists(string enclosing |
-      this.getDeclaringType().hasQualifiedName(qualifier, enclosing) and
+      this.getDeclaringType().hasQualifiedName(namespace, enclosing) and
       name = enclosing + "+" + this.getUndecoratedName()
     )
     or
     not exists(this.getDeclaringType()) and
-    qualifier = this.getNamespace().getFullName() and
+    namespace = this.getNamespace().getFullName() and
     name = this.getUndecoratedName()
   }
 
@@ -398,8 +398,8 @@ class NonNestedType extends ValueOrRefType {
  * The `void` type.
  */
 class VoidType extends DotNet::ValueOrRefType, Type, @void_type {
-  override predicate hasQualifiedName(string qualifier, string name) {
-    qualifier = "System" and
+  override predicate hasQualifiedName(string namespace, string name) {
+    namespace = "System" and
     name = "Void"
   }
 
@@ -1007,8 +1007,8 @@ class NullableType extends ValueType, DotNet::ConstructedGeneric, @nullable_type
     result = "Nullable<" + this.getUnderlyingType().getName() + ">"
   }
 
-  final override predicate hasQualifiedName(string qualifier, string name) {
-    qualifier = "System" and
+  final override predicate hasQualifiedName(string namespace, string name) {
+    namespace = "System" and
     name = "Nullable<" + this.getUnderlyingType().getQualifiedName() + ">"
   }
 }
@@ -1076,9 +1076,9 @@ class ArrayType extends DotNet::ArrayType, RefType, @array_type {
     result = this.getElementType().getALocation()
   }
 
-  final override predicate hasQualifiedName(string qualifier, string name) {
+  final override predicate hasQualifiedName(string namespace, string name) {
     exists(Type elementType, string name0 |
-      elementType.hasQualifiedName(qualifier, name0) and
+      elementType.hasQualifiedName(namespace, name0) and
       name = name0 + this.getDimensionString(elementType)
     )
   }
@@ -1106,9 +1106,9 @@ class PointerType extends DotNet::PointerType, Type, @pointer_type {
 
   override string getAPrimaryQlClass() { result = "PointerType" }
 
-  final override predicate hasQualifiedName(string qualifier, string name) {
+  final override predicate hasQualifiedName(string namespace, string name) {
     exists(string name0 |
-      this.getReferentType().hasQualifiedName(qualifier, name0) and
+      this.getReferentType().hasQualifiedName(namespace, name0) and
       name = name0 + "*"
     )
   }
@@ -1190,8 +1190,8 @@ class TupleType extends ValueType, @tuple_type {
 
   override Type getChild(int i) { result = this.getUnderlyingType().getChild(i) }
 
-  final override predicate hasQualifiedName(string qualifier, string name) {
-    this.getUnderlyingType().hasQualifiedName(qualifier, name)
+  final override predicate hasQualifiedName(string namespace, string name) {
+    this.getUnderlyingType().hasQualifiedName(namespace, name)
   }
 
   override string getAPrimaryQlClass() { result = "TupleType" }
diff --git a/csharp/ql/lib/semmle/code/csharp/Variable.qll b/csharp/ql/lib/semmle/code/csharp/Variable.qll
index aa66e59e7af..8d72a6f8050 100644
--- a/csharp/ql/lib/semmle/code/csharp/Variable.qll
+++ b/csharp/ql/lib/semmle/code/csharp/Variable.qll
@@ -71,7 +71,7 @@ class LocalScopeVariable extends Variable, @local_scope_variable {
    */
   predicate isRef() { none() }
 
-  override predicate hasQualifiedName(string qualifier, string name) { none() }
+  override predicate hasQualifiedName(string namespace, string name) { none() }
 }
 
 /**
diff --git a/csharp/ql/lib/semmle/code/csharp/commons/QualifiedName.qll b/csharp/ql/lib/semmle/code/csharp/commons/QualifiedName.qll
new file mode 100644
index 00000000000..cfb31cf3025
--- /dev/null
+++ b/csharp/ql/lib/semmle/code/csharp/commons/QualifiedName.qll
@@ -0,0 +1,34 @@
+/**
+ * Provides predicates related to C# qualified name.
+ */
+
+/**
+ * Returns the concatenation of `qualifier` and `name`, separated by a dot.
+ */
+bindingset[namespace, name]
+string printQualifiedName(string namespace, string name) {
+  if namespace = "" then result = name else result = namespace + "." + name
+}
+
+/**
+ * Returns the concatenation of `qualifier`, `type` and `name`, separated by a dot.
+ */
+bindingset[namespace, type, name]
+string printQualifiedName(string namespace, string type, string name) {
+  result = printQualifiedName(namespace, type) + "." + name
+}
+
+private string getNameSplitter() { result = "(.*)\\.([^\\.]+)$" }
+
+/**
+ */
+bindingset[qualifiedName]
+predicate splitQualifiedName(string qualifiedName, string qualifier, string name) {
+  if qualifiedName.regexpMatch(getNameSplitter())
+  then
+    qualifier = qualifiedName.regexpCapture(getNameSplitter(), 1) and
+    name = qualifiedName.regexpCapture(getNameSplitter(), 2)
+  else (
+    qualifier = "" and name = qualifiedName
+  )
+}
diff --git a/csharp/ql/lib/semmle/code/csharp/frameworks/Dapper.qll b/csharp/ql/lib/semmle/code/csharp/frameworks/Dapper.qll
index 4455da25ac7..dcfb5f2260f 100644
--- a/csharp/ql/lib/semmle/code/csharp/frameworks/Dapper.qll
+++ b/csharp/ql/lib/semmle/code/csharp/frameworks/Dapper.qll
@@ -9,7 +9,7 @@ private import semmle.code.csharp.frameworks.system.Data
 module Dapper {
   /** The namespace `Dapper`. */
   class DapperNamespace extends Namespace {
-    DapperNamespace() { this.hasQualifiedName("", "Dapper") }
+    DapperNamespace() { this.getFullName() = "Dapper" }
   }
 
   /** A class in `Dapper`. */
diff --git a/csharp/ql/lib/semmle/code/csharp/frameworks/EntityFramework.qll b/csharp/ql/lib/semmle/code/csharp/frameworks/EntityFramework.qll
index a56e7d183e0..1bd86b98ff2 100644
--- a/csharp/ql/lib/semmle/code/csharp/frameworks/EntityFramework.qll
+++ b/csharp/ql/lib/semmle/code/csharp/frameworks/EntityFramework.qll
@@ -37,11 +37,7 @@ private predicate isNotMapped(Attributable a) {
 module EntityFramework {
   /** An EF6 or EFCore namespace. */
   class EFNamespace extends Namespace {
-    EFNamespace() {
-      this.hasQualifiedName("Microsoft", "EntityFrameworkCore")
-      or
-      this.hasQualifiedName("System.Data", "Entity")
-    }
+    EFNamespace() { this.getFullName() = ["Microsoft.EntityFrameworkCore", "System.Data.Entity"] }
   }
 
   /** A taint source where the data has come from a mapped property stored in the database. */
diff --git a/csharp/ql/lib/semmle/code/csharp/frameworks/JsonNET.qll b/csharp/ql/lib/semmle/code/csharp/frameworks/JsonNET.qll
index a56d711eabf..69ae1ec292b 100644
--- a/csharp/ql/lib/semmle/code/csharp/frameworks/JsonNET.qll
+++ b/csharp/ql/lib/semmle/code/csharp/frameworks/JsonNET.qll
@@ -8,7 +8,7 @@ import csharp
 module JsonNET {
   /** The namespace `Newtonsoft.Json`. */
   class JsonNETNamespace extends Namespace {
-    JsonNETNamespace() { this.hasQualifiedName("Newtonsoft", "Json") }
+    JsonNETNamespace() { this.getFullName() = "Newtonsoft.Json" }
   }
 
   /** A class in `Newtonsoft.Json`. */
diff --git a/csharp/ql/lib/semmle/code/csharp/frameworks/Moq.qll b/csharp/ql/lib/semmle/code/csharp/frameworks/Moq.qll
index 7c19908f7be..9ab9a026fd2 100644
--- a/csharp/ql/lib/semmle/code/csharp/frameworks/Moq.qll
+++ b/csharp/ql/lib/semmle/code/csharp/frameworks/Moq.qll
@@ -4,7 +4,7 @@ import csharp
 
 /** The `Moq.Language` Namespace. */
 class MoqLanguageNamespace extends Namespace {
-  MoqLanguageNamespace() { this.hasQualifiedName("Moq", "Language") }
+  MoqLanguageNamespace() { this.getFullName() = "Moq.Language" }
 }
 
 /**
diff --git a/csharp/ql/lib/semmle/code/csharp/frameworks/test/NUnit.qll b/csharp/ql/lib/semmle/code/csharp/frameworks/test/NUnit.qll
index 7148e7159d4..0b105b1a57a 100644
--- a/csharp/ql/lib/semmle/code/csharp/frameworks/test/NUnit.qll
+++ b/csharp/ql/lib/semmle/code/csharp/frameworks/test/NUnit.qll
@@ -2,6 +2,7 @@
 
 import csharp
 import semmle.code.csharp.frameworks.Test
+private import semmle.code.csharp.commons.QualifiedName
 
 /** A class that is an NUnit test fixture */
 class NUnitFixture extends TestClass {
@@ -14,19 +15,6 @@ class NUnitFixture extends TestClass {
   }
 }
 
-private string getNameSplitter() { result = "(.*)\\.([^\\.]+)$" }
-
-bindingset[name]
-private predicate splitExceptionName(string name, string namespace, string type) {
-  if name.regexpMatch(getNameSplitter())
-  then
-    namespace = name.regexpCapture(getNameSplitter(), 1) and
-    type = name.regexpCapture(getNameSplitter(), 2)
-  else (
-    namespace = "" and type = name
-  )
-}
-
 /** An NUnit test method. */
 class NUnitTestMethod extends TestMethod {
   NUnitTestMethod() {
@@ -54,7 +42,7 @@ class NUnitTestMethod extends TestMethod {
       then
         exists(string namespace, string type |
           result.hasQualifiedName(namespace, type) and
-          splitExceptionName(expected.getArgument(0).getValue(), namespace, type)
+          splitQualifiedName(expected.getArgument(0).getValue(), namespace, type)
         )
       else result = expected.getArgument(0).(TypeofExpr).getTypeAccess().getTarget()
     )
diff --git a/csharp/ql/lib/semmle/code/csharp/frameworks/test/VisualStudio.qll b/csharp/ql/lib/semmle/code/csharp/frameworks/test/VisualStudio.qll
index cd8864d0c9d..787c8770827 100644
--- a/csharp/ql/lib/semmle/code/csharp/frameworks/test/VisualStudio.qll
+++ b/csharp/ql/lib/semmle/code/csharp/frameworks/test/VisualStudio.qll
@@ -5,7 +5,7 @@ import semmle.code.csharp.frameworks.Test
 
 /** The `Microsoft.VisualStudio.TestTools.UnitTesting` namespace. */
 class VSTestNamespace extends Namespace {
-  VSTestNamespace() { this.hasQualifiedName("Microsoft.VisualStudio.TestTools", "UnitTesting") }
+  VSTestNamespace() { this.getFullName() = "Microsoft.VisualStudio.TestTools.UnitTesting" }
 }
 
 /** A class that contains test methods. */
diff --git a/csharp/ql/lib/semmle/code/csharp/frameworks/test/XUnit.qll b/csharp/ql/lib/semmle/code/csharp/frameworks/test/XUnit.qll
index 629a5c91ec6..4d694774b7c 100644
--- a/csharp/ql/lib/semmle/code/csharp/frameworks/test/XUnit.qll
+++ b/csharp/ql/lib/semmle/code/csharp/frameworks/test/XUnit.qll
@@ -5,7 +5,7 @@ import semmle.code.csharp.frameworks.Test
 
 /** The `Xunit` namespace. */
 class XUnitNamespace extends Namespace {
-  XUnitNamespace() { this.hasQualifiedName("", "Xunit") }
+  XUnitNamespace() { this.getFullName() = "Xunit" }
 }
 
 /** An xUnit test attribute. */
diff --git a/csharp/ql/lib/semmle/code/dotnet/Declaration.qll b/csharp/ql/lib/semmle/code/dotnet/Declaration.qll
index 4f23c722e38..3755ac18509 100644
--- a/csharp/ql/lib/semmle/code/dotnet/Declaration.qll
+++ b/csharp/ql/lib/semmle/code/dotnet/Declaration.qll
@@ -4,14 +4,14 @@
 
 import Element
 import Type
-private import semmle.code.csharp.Printing
+private import semmle.code.csharp.commons.QualifiedName
 
 /** A declaration. */
 class Declaration extends NamedElement, @dotnet_declaration {
-  override predicate hasQualifiedName(string qualifier, string name) {
-    exists(string dqualifier, string dname |
-      this.getDeclaringType().hasQualifiedName(dqualifier, dname) and
-      qualifier = printQualifiedName(dqualifier, dname)
+  override predicate hasQualifiedName(string namespace, string name) {
+    exists(string dnamespace, string dname |
+      this.getDeclaringType().hasQualifiedName(dnamespace, dname) and
+      namespace = printQualifiedName(dnamespace, dname)
     ) and
     name = this.getName()
   }
@@ -85,8 +85,8 @@ class Member extends Declaration, @dotnet_member {
    * with qualifier `qualifier`
    */
   cached
-  predicate hasQualifiedName(string qualifier, string type, string name) {
-    this.getDeclaringType().hasQualifiedName(qualifier, type) and
+  predicate hasQualifiedName(string namespace, string type, string name) {
+    this.getDeclaringType().hasQualifiedName(namespace, type) and
     name = this.getName()
   }
 }
diff --git a/csharp/ql/lib/semmle/code/dotnet/Element.qll b/csharp/ql/lib/semmle/code/dotnet/Element.qll
index 5ad51dc68fc..dd8e7fe019c 100644
--- a/csharp/ql/lib/semmle/code/dotnet/Element.qll
+++ b/csharp/ql/lib/semmle/code/dotnet/Element.qll
@@ -97,7 +97,7 @@ class NamedElement extends Element, @dotnet_named_element {
   }
 
   /**
-   * DEPRECATED: Use hasQualifiedName instead.
+   * DEPRECATED: Use `hasQualifiedName/2` instead.
    * Holds if this element has qualified name `qualifiedName`, for example
    * `System.Console.WriteLine`.
    */
@@ -107,8 +107,8 @@ class NamedElement extends Element, @dotnet_named_element {
 
   /** Holds if this element has the qualified name `qualifier`.`name`. */
   cached
-  predicate hasQualifiedName(string qualifier, string name) {
-    qualifier = "" and name = this.getName()
+  predicate hasQualifiedName(string namespace, string name) {
+    namespace = "" and name = this.getName()
   }
 
   /** Gets a unique string label for this element. */
diff --git a/csharp/ql/lib/semmle/code/dotnet/Namespace.qll b/csharp/ql/lib/semmle/code/dotnet/Namespace.qll
index db2f933f563..e15b461d023 100644
--- a/csharp/ql/lib/semmle/code/dotnet/Namespace.qll
+++ b/csharp/ql/lib/semmle/code/dotnet/Namespace.qll
@@ -3,7 +3,7 @@
  */
 
 private import Declaration
-private import semmle.code.csharp.Printing
+private import semmle.code.csharp.commons.QualifiedName
 
 /** A namespace. */
 class Namespace extends Declaration, @namespace {
@@ -20,15 +20,15 @@ class Namespace extends Declaration, @namespace {
   Namespace getAChildNamespace() { result.getParentNamespace() = this }
 
   /**
-   * Holds if this namespace has the qualified name `qualifier`.`name`.
+   * Holds if this namespace has the qualified name `namespace`.`name`.
    *
    * For example if the qualified name is `System.Collections.Generic`, then
-   * `qualifier`=`System.Collections` and `name`=`Generic`.
+   * `namespace`=`System.Collections` and `name`=`Generic`.
    */
-  override predicate hasQualifiedName(string qualifier, string name) {
-    exists(string pqualifier, string pname |
-      this.getParentNamespace().hasQualifiedName(pqualifier, pname) and
-      qualifier = printQualifiedName(pqualifier, pname)
+  override predicate hasQualifiedName(string namespace, string name) {
+    exists(string pnamespace, string pname |
+      this.getParentNamespace().hasQualifiedName(pnamespace, pname) and
+      namespace = printQualifiedName(pnamespace, pname)
     ) and
     name = this.getName()
   }
@@ -50,9 +50,9 @@ class Namespace extends Declaration, @namespace {
    * Get the fully qualified name of this namespace.
    */
   string getFullName() {
-    exists(string qualifier, string name |
-      this.hasQualifiedName(qualifier, name) and
-      result = printQualifiedName(qualifier, name)
+    exists(string namespace, string name |
+      this.hasQualifiedName(namespace, name) and
+      result = printQualifiedName(namespace, name)
     )
   }
 }
@@ -61,7 +61,7 @@ class Namespace extends Declaration, @namespace {
 class GlobalNamespace extends Namespace {
   GlobalNamespace() { this.getName() = "" }
 
-  override predicate hasQualifiedName(string qualifier, string name) {
-    qualifier = "" and name = ""
+  override predicate hasQualifiedName(string namespace, string name) {
+    namespace = "" and name = ""
   }
 }
diff --git a/csharp/ql/src/API Abuse/NonOverridingMethod.ql b/csharp/ql/src/API Abuse/NonOverridingMethod.ql
index 7425b7791b6..cc42043fe30 100644
--- a/csharp/ql/src/API Abuse/NonOverridingMethod.ql	
+++ b/csharp/ql/src/API Abuse/NonOverridingMethod.ql	
@@ -11,6 +11,7 @@
  */
 
 import csharp
+import semmle.code.csharp.commons.QualifiedName
 
 private predicate potentialOverride(Method vm, Method m) {
   vm.getDeclaringType() = m.getDeclaringType().getBaseClass+()
@@ -36,10 +37,10 @@ predicate nonOverridingMethod(Method m, Method vm) {
   m.getName().toLowerCase() = vm.getName().toLowerCase()
 }
 
-from Method m, Method vm, string qualifier, string type, string name
+from Method m, Method vm, string namespace, string type, string name
 where
   m.fromSource() and
   nonOverridingMethod(m, vm) and
-  vm.hasQualifiedName(qualifier, type, name)
+  vm.hasQualifiedName(namespace, type, name)
 select m, "Method '" + m.getName() + "' looks like it should override $@ but does not do so.",
-  vm.getUnboundDeclaration(), printQualifiedName(qualifier, type, name)
+  vm.getUnboundDeclaration(), printQualifiedName(namespace, type, name)
diff --git a/csharp/ql/src/Bad Practices/Naming Conventions/ControlNamePrefixes.ql b/csharp/ql/src/Bad Practices/Naming Conventions/ControlNamePrefixes.ql
index 3e87b71253d..6c72fc4b411 100644
--- a/csharp/ql/src/Bad Practices/Naming Conventions/ControlNamePrefixes.ql	
+++ b/csharp/ql/src/Bad Practices/Naming Conventions/ControlNamePrefixes.ql	
@@ -11,8 +11,8 @@
 
 import csharp
 
-string prefix(string qualifier, string typename) {
-  qualifier = "System.Web.UI.WebControls" and
+string prefix(string namespace, string typename) {
+  namespace = "System.Web.UI.WebControls" and
   (
     typename = "Label" and result = "lbl"
     or
@@ -75,7 +75,7 @@ string prefix(string qualifier, string typename) {
     typename = "CrystalReportViewer" and result = "crvr"
   )
   or
-  qualifier = "System.Web.UI.HtmlControls" and
+  namespace = "System.Web.UI.HtmlControls" and
   (
     typename = "TextArea" and result = "txa"
     or
@@ -95,11 +95,11 @@ string prefix(string qualifier, string typename) {
   )
 }
 
-from Field f, RefType t, string name, string prefix, string qualifier, string type
+from Field f, RefType t, string name, string prefix, string namespace, string type
 where
   f.getType() = t and
   f.getName() = name and
-  t.hasQualifiedName(qualifier, type) and
-  prefix = prefix(qualifier, type) and
+  t.hasQualifiedName(namespace, type) and
+  prefix = prefix(namespace, type) and
   not name.matches(prefix + "%")
 select f, "This field should have the prefix '" + prefix + "' to match its types."
diff --git a/csharp/ql/src/Documentation/XmldocMissingException.ql b/csharp/ql/src/Documentation/XmldocMissingException.ql
index f336868bf12..295275fd6bc 100644
--- a/csharp/ql/src/Documentation/XmldocMissingException.ql
+++ b/csharp/ql/src/Documentation/XmldocMissingException.ql
@@ -10,14 +10,7 @@
  */
 
 import Documentation
-
-private string getNameSplitter() { result = "(.*)\\.([^\\.]+)$" }
-
-bindingset[name]
-private predicate splitExceptionName(string name, string namespace, string type) {
-  namespace = name.regexpCapture(getNameSplitter(), 1) and
-  type = name.regexpCapture(getNameSplitter(), 2)
-}
+import semmle.code.csharp.commons.QualifiedName
 
 from SourceMethodOrConstructor m, ThrowElement throw, RefType throwType
 where
@@ -32,7 +25,7 @@ where
       throwBaseType.hasName(exceptionName)
       or
       exists(string namespace, string type |
-        splitExceptionName(exceptionName, namespace, type) and
+        splitQualifiedName(exceptionName, namespace, type) and
         throwBaseType.hasQualifiedName(namespace, type)
       )
       // and comment.hasBody(offset) // Too slow
diff --git a/csharp/ql/src/Stubs/Stubs.qll b/csharp/ql/src/Stubs/Stubs.qll
index db2cc57a3d1..c67d53a20db 100644
--- a/csharp/ql/src/Stubs/Stubs.qll
+++ b/csharp/ql/src/Stubs/Stubs.qll
@@ -12,6 +12,7 @@
  */
 
 import csharp
+private import semmle.code.csharp.commons.QualifiedName
 private import semmle.code.csharp.frameworks.System
 private import semmle.code.dotnet.DotNet as DotNet // added to handle VoidType as a ValueOrRefType
 
@@ -120,10 +121,10 @@ abstract private class GeneratedType extends Type, GeneratedElement {
   }
 
   private string stubComment() {
-    exists(string qualifier, string name |
-      this.hasQualifiedName(qualifier, name) and
+    exists(string namespace, string name |
+      this.hasQualifiedName(namespace, name) and
       result =
-        "// Generated from `" + printQualifiedName(qualifier, name) + "` in `" +
+        "// Generated from `" + printQualifiedName(namespace, name) + "` in `" +
           concat(this.getALocation().toString(), "; ") + "`\n"
     )
   }
diff --git a/csharp/ql/src/experimental/Security Features/JsonWebTokenHandler/delegated-security-validations-always-return-true.ql b/csharp/ql/src/experimental/Security Features/JsonWebTokenHandler/delegated-security-validations-always-return-true.ql
index 14ec83268ed..dde2b35c2b9 100644
--- a/csharp/ql/src/experimental/Security Features/JsonWebTokenHandler/delegated-security-validations-always-return-true.ql	
+++ b/csharp/ql/src/experimental/Security Features/JsonWebTokenHandler/delegated-security-validations-always-return-true.ql	
@@ -14,11 +14,12 @@
 import csharp
 import DataFlow
 import JsonWebTokenHandlerLib
+import semmle.code.csharp.commons.QualifiedName
 
 from
-  TokenValidationParametersProperty p, CallableAlwaysReturnsTrueHigherPrecision e, string qualifier,
+  TokenValidationParametersProperty p, CallableAlwaysReturnsTrueHigherPrecision e, string namespace,
   string name
-where e = p.getAnAssignedValue() and p.hasQualifiedName(qualifier, name)
+where e = p.getAnAssignedValue() and p.hasQualifiedName(namespace, name)
 select e,
   "JsonWebTokenHandler security-sensitive property $@ is being delegated to this callable that always returns \"true\".",
-  p, printQualifiedName(qualifier, name)
+  p, printQualifiedName(namespace, name)
diff --git a/csharp/ql/src/experimental/Security Features/JsonWebTokenHandler/security-validation-disabled.ql b/csharp/ql/src/experimental/Security Features/JsonWebTokenHandler/security-validation-disabled.ql
index 9db41a12b9b..e18c83da944 100644
--- a/csharp/ql/src/experimental/Security Features/JsonWebTokenHandler/security-validation-disabled.ql	
+++ b/csharp/ql/src/experimental/Security Features/JsonWebTokenHandler/security-validation-disabled.ql	
@@ -12,14 +12,15 @@
 
 import csharp
 import JsonWebTokenHandlerLib
+import semmle.code.csharp.commons.QualifiedName
 
 from
   FalseValueFlowsToTokenValidationParametersPropertyWriteToBypassValidation config,
   DataFlow::Node source, DataFlow::Node sink,
-  TokenValidationParametersPropertySensitiveValidation pw, string qualifier, string name
+  TokenValidationParametersPropertySensitiveValidation pw, string namespace, string name
 where
   config.hasFlow(source, sink) and
   sink.asExpr() = pw.getAnAssignedValue() and
-  pw.hasQualifiedName(qualifier, name)
+  pw.hasQualifiedName(namespace, name)
 select sink, "The security sensitive property $@ is being disabled by the following value: $@.", pw,
-  printQualifiedName(qualifier, name), source, "false"
+  printQualifiedName(namespace, name), source, "false"
diff --git a/csharp/ql/test/library-tests/attributes/AttributeElements.ql b/csharp/ql/test/library-tests/attributes/AttributeElements.ql
index 9ee758bf52a..35358cae8aa 100644
--- a/csharp/ql/test/library-tests/attributes/AttributeElements.ql
+++ b/csharp/ql/test/library-tests/attributes/AttributeElements.ql
@@ -1,8 +1,9 @@
 import csharp
+import semmle.code.csharp.commons.QualifiedName
 
-from Attributable element, Attribute attribute, string qualifier, string name
+from Attributable element, Attribute attribute, string namespace, string name
 where
   attribute = element.getAnAttribute() and
   (attribute.fromSource() or element.(Assembly).getName() in ["attributes", "Assembly1"]) and
-  attribute.getType().hasQualifiedName(qualifier, name)
-select element, attribute, printQualifiedName(qualifier, name)
+  attribute.getType().hasQualifiedName(namespace, name)
+select element, attribute, printQualifiedName(namespace, name)
diff --git a/csharp/ql/test/library-tests/cil/consistency/Handles.ql b/csharp/ql/test/library-tests/cil/consistency/Handles.ql
index b49e8c5a066..59b8e7a428d 100644
--- a/csharp/ql/test/library-tests/cil/consistency/Handles.ql
+++ b/csharp/ql/test/library-tests/cil/consistency/Handles.ql
@@ -1,6 +1,7 @@
 import csharp
 import cil
 import dotnet
+import semmle.code.csharp.commons.QualifiedName
 
 class MetadataEntity extends DotNet::NamedElement, @metadata_entity {
   int getHandle() { metadata_handle(this, _, result) }
@@ -11,10 +12,10 @@ class MetadataEntity extends DotNet::NamedElement, @metadata_entity {
 }
 
 query predicate tooManyHandles(string s) {
-  exists(MetadataEntity e, Assembly a, string qualifier, string name |
+  exists(MetadataEntity e, Assembly a, string namespace, string name |
     strictcount(int handle | metadata_handle(e, a, handle)) > 1 and
-    e.hasQualifiedName(qualifier, name) and
-    s = printQualifiedName(qualifier, name)
+    e.hasQualifiedName(namespace, name) and
+    s = printQualifiedName(namespace, name)
   )
 }
 
@@ -30,11 +31,11 @@ private class UniqueMetadataEntity extends MetadataEntity {
 }
 
 query predicate tooManyMatchingHandles(string s) {
-  exists(UniqueMetadataEntity e, Assembly a, int handle, string qualifier, string name |
+  exists(UniqueMetadataEntity e, Assembly a, int handle, string namespace, string name |
     metadata_handle(e, a, handle) and
     strictcount(UniqueMetadataEntity e2 | metadata_handle(e2, a, handle)) > 2 and
-    e.hasQualifiedName(qualifier, name) and
-    s = printQualifiedName(qualifier, name)
+    e.hasQualifiedName(namespace, name) and
+    s = printQualifiedName(namespace, name)
   )
 }
 
diff --git a/csharp/ql/test/library-tests/cil/dataflow/TrivialProperties.ql b/csharp/ql/test/library-tests/cil/dataflow/TrivialProperties.ql
index 1d8725d5e6a..838e9e86736 100644
--- a/csharp/ql/test/library-tests/cil/dataflow/TrivialProperties.ql
+++ b/csharp/ql/test/library-tests/cil/dataflow/TrivialProperties.ql
@@ -1,16 +1,15 @@
 import csharp
+import semmle.code.csharp.commons.QualifiedName
 
-from TrivialProperty prop, string qualifier, string name
+from TrivialProperty prop, string namespace, string type, string name
 where
-  exists(string dqualifier, string dname |
-    prop.getDeclaringType().hasQualifiedName(dqualifier, dname) and
-    (
-      dqualifier = "System.Reflection" and dname = "AssemblyName"
-      or
-      dqualifier = "System.Collections" and dname = "DictionaryEntry"
-      or
-      dqualifier = "Dataflow" and dname = "Properties"
-    )
+  prop.getDeclaringType().hasQualifiedName(namespace, type) and
+  (
+    namespace = "System.Reflection" and type = "AssemblyName"
+    or
+    namespace = "System.Collections" and type = "DictionaryEntry"
+    or
+    namespace = "Dataflow" and type = "Properties"
   ) and
-  prop.hasQualifiedName(qualifier, name)
-select printQualifiedName(qualifier, name)
+  prop.hasQualifiedName(namespace, type, name)
+select printQualifiedName(namespace, type, name)
diff --git a/csharp/ql/test/library-tests/cil/enums/enums.ql b/csharp/ql/test/library-tests/cil/enums/enums.ql
index 5d1fa016cd3..640aa788827 100644
--- a/csharp/ql/test/library-tests/cil/enums/enums.ql
+++ b/csharp/ql/test/library-tests/cil/enums/enums.ql
@@ -1,8 +1,8 @@
-import semmle.code.csharp.Printing
 import semmle.code.cil.Types
+import semmle.code.csharp.commons.QualifiedName
 
-from Enum e, string qualifier, string name
+from Enum e, string namespace, string name
 where
-  e.hasQualifiedName(qualifier, name) and
-  printQualifiedName(qualifier, name) != "Interop.Sys.LockType" // doesn't exist on osx
-select printQualifiedName(qualifier, name), e.getUnderlyingType().toStringWithTypes()
+  e.hasQualifiedName(namespace, name) and
+  not (namespace = "Interop.Sys" and name = "LockType") // doesn't exist on osx
+select printQualifiedName(namespace, name), e.getUnderlyingType().toStringWithTypes()
diff --git a/csharp/ql/test/library-tests/cil/functionPointers/functionPointers.ql b/csharp/ql/test/library-tests/cil/functionPointers/functionPointers.ql
index 607eceb22e1..504275ac1c0 100644
--- a/csharp/ql/test/library-tests/cil/functionPointers/functionPointers.ql
+++ b/csharp/ql/test/library-tests/cil/functionPointers/functionPointers.ql
@@ -1,6 +1,6 @@
 import cil
 import semmle.code.cil.Type
-import semmle.code.csharp.Printing
+import semmle.code.csharp.commons.QualifiedName
 
 bindingset[kind]
 private string getKind(int kind) { if kind = 1 then result = "modreq" else result = "modopt" }
@@ -27,12 +27,12 @@ query predicate params(string fnptr, int i, string param, string t) {
 }
 
 query predicate modifiers(string fnptr, string modifier, string sKind) {
-  exists(Type modType, int kind, FunctionPointerType fn, string qualifier, string name |
+  exists(Type modType, int kind, FunctionPointerType fn, string namespace, string name |
     fnptr = fn.toString()
   |
     cil_custom_modifiers(fn, modType, kind) and
-    modType.hasQualifiedName(qualifier, name) and
-    modifier = printQualifiedName(qualifier, name) and
+    modType.hasQualifiedName(namespace, name) and
+    modifier = printQualifiedName(namespace, name) and
     sKind = getKind(kind)
   )
 }
diff --git a/csharp/ql/test/library-tests/cil/init-only-prop/customModifiers.ql b/csharp/ql/test/library-tests/cil/init-only-prop/customModifiers.ql
index 7633d59c247..00bf824c0cd 100644
--- a/csharp/ql/test/library-tests/cil/init-only-prop/customModifiers.ql
+++ b/csharp/ql/test/library-tests/cil/init-only-prop/customModifiers.ql
@@ -1,15 +1,15 @@
-import semmle.code.csharp.Printing
 import semmle.code.cil.Type
+import semmle.code.csharp.commons.QualifiedName
 
 bindingset[kind]
 private string getKind(int kind) { if kind = 1 then result = "modreq" else result = "modopt" }
 
 from string receiver, string modifier, int kind
 where
-  exists(Type modType, CustomModifierReceiver cmr, string qualifier, string name |
+  exists(Type modType, CustomModifierReceiver cmr, string namespace, string name |
     receiver = cmr.toString() and
     cil_custom_modifiers(cmr, modType, kind) and
-    modType.hasQualifiedName(qualifier, name) and
-    modifier = printQualifiedName(qualifier, name)
+    modType.hasQualifiedName(namespace, name) and
+    modifier = printQualifiedName(namespace, name)
   )
 select receiver, modifier, getKind(kind)
diff --git a/csharp/ql/test/library-tests/enums/Enums3.ql b/csharp/ql/test/library-tests/enums/Enums3.ql
index 3a7d3d865aa..913ca7c6274 100644
--- a/csharp/ql/test/library-tests/enums/Enums3.ql
+++ b/csharp/ql/test/library-tests/enums/Enums3.ql
@@ -3,12 +3,13 @@
  */
 
 import csharp
+import semmle.code.csharp.commons.QualifiedName
 
-from EnumConstant c, string qualifier, string name
+from EnumConstant c, string namespace, string name
 where
   c.getName() = "Green" and
   c.getDeclaringType().hasQualifiedName("Enums", "LongColor") and
   c.getType() = c.getDeclaringType() and
   c.getValue() = "1" and
-  c.getDeclaringType().getBaseClass().hasQualifiedName(qualifier, name)
-select c, printQualifiedName(qualifier, name)
+  c.getDeclaringType().getBaseClass().hasQualifiedName(namespace, name)
+select c, printQualifiedName(namespace, name)
diff --git a/csharp/ql/test/library-tests/generics/Generics.ql b/csharp/ql/test/library-tests/generics/Generics.ql
index 34e2befb24d..08e62a65ef2 100644
--- a/csharp/ql/test/library-tests/generics/Generics.ql
+++ b/csharp/ql/test/library-tests/generics/Generics.ql
@@ -1,4 +1,5 @@
 import csharp
+import semmle.code.csharp.commons.QualifiedName
 
 query predicate test1(UnboundGenericDelegateType d) {
   d.hasName("GenericDelegate<>") and
@@ -259,24 +260,24 @@ query predicate test32(ConstructedGeneric cg, string s1, string s2) {
 
 query predicate test33(ConstructedMethod cm, string s1, string s2) {
   cm.fromSource() and
-  exists(string qualifier, string type, string name |
-    cm.hasQualifiedName(qualifier, type, name) and s1 = printQualifiedName(qualifier, type, name)
+  exists(string namespace, string type, string name |
+    cm.hasQualifiedName(namespace, type, name) and s1 = printQualifiedName(namespace, type, name)
   ) and
   cm.getQualifiedNameWithTypes() = s2
 }
 
 query predicate test34(UnboundGeneric ug, string s1, string s2) {
   ug.fromSource() and
-  exists(string qualifier, string name |
-    ug.hasQualifiedName(qualifier, name) and s1 = printQualifiedName(qualifier, name)
+  exists(string namespace, string name |
+    ug.hasQualifiedName(namespace, name) and s1 = printQualifiedName(namespace, name)
   ) and
   ug.getQualifiedNameWithTypes() = s2
 }
 
 query predicate test35(UnboundGenericMethod gm, string s1, string s2) {
   gm.fromSource() and
-  exists(string qualifier, string type, string name |
-    gm.hasQualifiedName(qualifier, type, name) and s1 = printQualifiedName(qualifier, type, name)
+  exists(string namespace, string type, string name |
+    gm.hasQualifiedName(namespace, type, name) and s1 = printQualifiedName(namespace, type, name)
   ) and
   gm.getQualifiedNameWithTypes() = s2
 }

From 6b35098fb7f8d4a19dc000f0d5a097f64ada1663 Mon Sep 17 00:00:00 2001
From: Michael Nebel <michaelnebel@github.com>
Date: Thu, 24 Nov 2022 14:57:45 +0100
Subject: [PATCH 1062/1420] C#: Replace more uses of getQualifiedName/0.

---
 .../security/dataflow/ExternalAPIsQuery.qll   | 18 ++++++++-
 .../CWE-020/UntrustedDataToExternalAPI.ql     | 13 +++++--
 .../cil/typeAnnotations/typeAnnotations.ql    | 38 ++++++++++++++-----
 .../commons/Disposal/DisposedFields.ql        |  8 ++--
 .../commons/Disposal/DisposedParameter.ql     |  2 +-
 .../commons/Disposal/UndisposedParameter.ql   |  2 +-
 .../constructors/Destructors1.ql              |  8 ++--
 .../library-tests/csharp9/covariantReturn.ql  | 13 +++++--
 .../ql/test/library-tests/csharp9/foreach.ql  | 16 +++++---
 .../ql/test/library-tests/csharp9/record.ql   |  5 ++-
 .../ql/test/library-tests/csharp9/withExpr.ql |  5 ++-
 11 files changed, 93 insertions(+), 35 deletions(-)

diff --git a/csharp/ql/lib/semmle/code/csharp/security/dataflow/ExternalAPIsQuery.qll b/csharp/ql/lib/semmle/code/csharp/security/dataflow/ExternalAPIsQuery.qll
index 4c0b7b00765..e3aa061fe5f 100644
--- a/csharp/ql/lib/semmle/code/csharp/security/dataflow/ExternalAPIsQuery.qll
+++ b/csharp/ql/lib/semmle/code/csharp/security/dataflow/ExternalAPIsQuery.qll
@@ -4,6 +4,7 @@
  */
 
 import csharp
+private import semmle.code.csharp.commons.QualifiedName
 private import semmle.code.csharp.dataflow.flowsources.Remote
 private import semmle.code.csharp.frameworks.System
 private import semmle.code.csharp.dataflow.FlowSummary
@@ -70,8 +71,21 @@ class ExternalApiDataNode extends DataFlow::Node {
   /** Gets the index which is passed untrusted data (where -1 indicates the qualifier). */
   int getIndex() { result = i }
 
-  /** Gets the description of the callable being called. */
-  string getCallableDescription() { result = this.getCallable().getQualifiedName() }
+  /** Holds if the callable being use has name `name` and is defined in namespace `namespace`. */
+  predicate hasQualifiedName(string namespace, string name) {
+    this.getCallable().hasQualifiedName(namespace, name)
+  }
+
+  /**
+   * DEPRECATED: Use hasQualifiedName/2 instead.
+   *
+   * Gets the description of the callable being called.
+   */
+  deprecated string getCallableDescription() {
+    exists(string namespace, string name |
+      this.hasQualifiedName(namespace, name) and result = printQualifiedName(namespace, name)
+    )
+  }
 }
 
 /** DEPRECATED: Alias for ExternalApiDataNode */
diff --git a/csharp/ql/src/Security Features/CWE-020/UntrustedDataToExternalAPI.ql b/csharp/ql/src/Security Features/CWE-020/UntrustedDataToExternalAPI.ql
index 01faeb6ba75..4d89913e435 100644
--- a/csharp/ql/src/Security Features/CWE-020/UntrustedDataToExternalAPI.ql	
+++ b/csharp/ql/src/Security Features/CWE-020/UntrustedDataToExternalAPI.ql	
@@ -10,11 +10,16 @@
  */
 
 import csharp
+import semmle.code.csharp.commons.QualifiedName
 import semmle.code.csharp.security.dataflow.ExternalAPIsQuery
 import DataFlow::PathGraph
 
-from UntrustedDataToExternalApiConfig config, DataFlow::PathNode source, DataFlow::PathNode sink
-where config.hasFlowPath(source, sink)
+from
+  UntrustedDataToExternalApiConfig config, DataFlow::PathNode source, DataFlow::PathNode sink,
+  string namespace, string name
+where
+  config.hasFlowPath(source, sink) and
+  sink.getNode().(ExternalApiDataNode).hasQualifiedName(namespace, name)
 select sink, source, sink,
-  "Call to " + sink.getNode().(ExternalApiDataNode).getCallableDescription() +
-    " with untrusted data from $@.", source, source.toString()
+  "Call to " + printQualifiedName(namespace, name) + " with untrusted data from $@.", source,
+  source.toString()
diff --git a/csharp/ql/test/library-tests/cil/typeAnnotations/typeAnnotations.ql b/csharp/ql/test/library-tests/cil/typeAnnotations/typeAnnotations.ql
index 78dab812d72..9babcaa7fb2 100644
--- a/csharp/ql/test/library-tests/cil/typeAnnotations/typeAnnotations.ql
+++ b/csharp/ql/test/library-tests/cil/typeAnnotations/typeAnnotations.ql
@@ -1,26 +1,42 @@
 import cil
+import semmle.code.csharp.commons.QualifiedName
 import semmle.code.cil.Type
 
 private string elementType(Element e, string toString) {
-  toString = e.(Method).getQualifiedName() and result = "method"
-  or
-  toString = e.(Property).getQualifiedName() and result = "property"
+  exists(string namespace, string type, string name |
+    toString = printQualifiedName(namespace, type, name)
+  |
+    e.(Method).hasQualifiedName(namespace, type, name) and result = "method"
+    or
+    e.(Property).hasQualifiedName(namespace, type, name) and result = "property"
+  )
   or
   e =
     any(Parameter p |
-      toString = "Parameter " + p.getIndex() + " of " + p.getDeclaringElement().getQualifiedName()
+      exists(string namespace, string name |
+        p.getDeclaringElement().hasQualifiedName(namespace, name)
+      |
+        toString = "Parameter " + p.getIndex() + " of " + printQualifiedName(namespace, name)
+      )
     ) and
   result = "parameter"
   or
   e =
     any(LocalVariable v |
-      toString =
-        "Local variable " + v.getIndex() + " of method " +
-          v.getImplementation().getMethod().getQualifiedName()
+      exists(string namespace, string type, string name |
+        v.getImplementation().getMethod().hasQualifiedName(namespace, type, name)
+      |
+        toString =
+          "Local variable " + v.getIndex() + " of method " +
+            printQualifiedName(namespace, type, name)
+      )
     ) and
   result = "local"
   or
-  toString = e.(FunctionPointerType).getQualifiedName() and result = "fnptr"
+  exists(string namespace, string name | e.(FunctionPointerType).hasQualifiedName(namespace, name) |
+    toString = printQualifiedName(namespace, name)
+  ) and
+  result = "fnptr"
   or
   not e instanceof Method and
   not e instanceof Property and
@@ -53,7 +69,9 @@ where
   (
     not e instanceof Parameter
     or
-    e.(Parameter).getDeclaringElement().(Method).getDeclaringType().getQualifiedName() !=
-      "System.Environment" // There are OS specific methods in this class
+    not exists(Type t |
+      t = e.(Parameter).getDeclaringElement().(Method).getDeclaringType() and
+      t.hasQualifiedName("System", "Environment")
+    ) // There are OS specific methods in this class
   )
 select toString, type, i
diff --git a/csharp/ql/test/library-tests/commons/Disposal/DisposedFields.ql b/csharp/ql/test/library-tests/commons/Disposal/DisposedFields.ql
index 307ea22e69e..2fd67ea7fc4 100644
--- a/csharp/ql/test/library-tests/commons/Disposal/DisposedFields.ql
+++ b/csharp/ql/test/library-tests/commons/Disposal/DisposedFields.ql
@@ -1,8 +1,10 @@
 import cil
 import semmle.code.csharp.commons.Disposal
+import semmle.code.csharp.commons.QualifiedName
 
-from CIL::Field field
+from CIL::Field field, string namespace, string name
 where
   mayBeDisposed(field) and
-  field.getDeclaringType().hasQualifiedName("DisposalTests", "Class1")
-select field.getQualifiedName()
+  field.getDeclaringType().hasQualifiedName("DisposalTests", "Class1") and
+  field.hasQualifiedName(namespace, name)
+select printQualifiedName(namespace, name)
diff --git a/csharp/ql/test/library-tests/commons/Disposal/DisposedParameter.ql b/csharp/ql/test/library-tests/commons/Disposal/DisposedParameter.ql
index 97ca1ba7f2c..bc507851d8c 100644
--- a/csharp/ql/test/library-tests/commons/Disposal/DisposedParameter.ql
+++ b/csharp/ql/test/library-tests/commons/Disposal/DisposedParameter.ql
@@ -5,5 +5,5 @@ from DotNet::Callable c, DotNet::Parameter param, int p
 where
   mayBeDisposed(param) and
   param = c.getParameter(p) and
-  c.getDeclaringType().getQualifiedName() = "DisposalTests.Class1"
+  c.getDeclaringType().hasQualifiedName("DisposalTests", "Class1")
 select c.toStringWithTypes(), p
diff --git a/csharp/ql/test/library-tests/commons/Disposal/UndisposedParameter.ql b/csharp/ql/test/library-tests/commons/Disposal/UndisposedParameter.ql
index 9125fcd3d28..f4efb4e9921 100644
--- a/csharp/ql/test/library-tests/commons/Disposal/UndisposedParameter.ql
+++ b/csharp/ql/test/library-tests/commons/Disposal/UndisposedParameter.ql
@@ -6,5 +6,5 @@ from DotNet::Callable c, DotNet::Parameter param, int p
 where
   not mayBeDisposed(param) and
   param = c.getParameter(p) and
-  c.getDeclaringType().getQualifiedName() = "DisposalTests.Class1"
+  c.getDeclaringType().hasQualifiedName("DisposalTests", "Class1")
 select c.toStringWithTypes(), p
diff --git a/csharp/ql/test/library-tests/constructors/Destructors1.ql b/csharp/ql/test/library-tests/constructors/Destructors1.ql
index f8b1fa9b6ef..c23fc8905cb 100644
--- a/csharp/ql/test/library-tests/constructors/Destructors1.ql
+++ b/csharp/ql/test/library-tests/constructors/Destructors1.ql
@@ -3,9 +3,11 @@
  */
 
 import csharp
+import semmle.code.csharp.commons.QualifiedName
 
-from Destructor c
+from Destructor c, string namespace, string name
 where
-  c.getDeclaringType().getName() = "Class" and
-  c.getDeclaringType().getNamespace().getQualifiedName() = "Constructors"
+  c.getDeclaringType().hasQualifiedName(namespace, name) and
+  namespace = "Constructors" and
+  name = "Class"
 select c, c.getDeclaringType().getQualifiedName()
diff --git a/csharp/ql/test/library-tests/csharp9/covariantReturn.ql b/csharp/ql/test/library-tests/csharp9/covariantReturn.ql
index f4958cbba31..41c0d577f30 100644
--- a/csharp/ql/test/library-tests/csharp9/covariantReturn.ql
+++ b/csharp/ql/test/library-tests/csharp9/covariantReturn.ql
@@ -1,8 +1,13 @@
 import csharp
+import semmle.code.csharp.commons.QualifiedName
 
-from Method m, Method overrider
+from
+  Method m, Method overrider, string mnamespace, string mtype, string mname, string onamespace,
+  string otype, string oname
 where
   m.getAnOverrider() = overrider and
-  m.getFile().getStem() = "CovariantReturn"
-select m.getQualifiedName(), m.getReturnType().toString(), overrider.getQualifiedName(),
-  overrider.getReturnType().toString()
+  m.getFile().getStem() = "CovariantReturn" and
+  m.hasQualifiedName(mnamespace, mtype, mname) and
+  overrider.hasQualifiedName(onamespace, otype, oname)
+select printQualifiedName(mnamespace, mtype, mname), m.getReturnType().toString(),
+  printQualifiedName(onamespace, otype, oname), overrider.getReturnType().toString()
diff --git a/csharp/ql/test/library-tests/csharp9/foreach.ql b/csharp/ql/test/library-tests/csharp9/foreach.ql
index 38d431d762f..ae87550ae15 100644
--- a/csharp/ql/test/library-tests/csharp9/foreach.ql
+++ b/csharp/ql/test/library-tests/csharp9/foreach.ql
@@ -1,4 +1,5 @@
 import csharp
+import semmle.code.csharp.commons.QualifiedName
 
 private string getLocation(Member m) {
   if m.fromSource() then result = m.getALocation().(SourceLocation).toString() else result = "-"
@@ -8,8 +9,13 @@ private string getIsAsync(ForeachStmt f) {
   if f.isAsync() then result = "async" else result = "sync"
 }
 
-from ForeachStmt f
-select f, f.getElementType().toString(), getIsAsync(f),
-  f.getGetEnumerator().getDeclaringType().getQualifiedName(), getLocation(f.getGetEnumerator()),
-  f.getCurrent().getDeclaringType().getQualifiedName(), getLocation(f.getCurrent()),
-  f.getMoveNext().getDeclaringType().getQualifiedName(), getLocation(f.getMoveNext())
+from
+  ForeachStmt f, string namespace1, string type1, string namespace2, string type2,
+  string namespace3, string type3
+where
+  f.getGetEnumerator().getDeclaringType().hasQualifiedName(namespace1, type1) and
+  f.getCurrent().getDeclaringType().hasQualifiedName(namespace2, type2) and
+  f.getMoveNext().getDeclaringType().hasQualifiedName(namespace3, type3)
+select f, f.getElementType().toString(), getIsAsync(f), printQualifiedName(namespace1, type1),
+  getLocation(f.getGetEnumerator()), printQualifiedName(namespace2, type2),
+  getLocation(f.getCurrent()), printQualifiedName(namespace3, type3), getLocation(f.getMoveNext())
diff --git a/csharp/ql/test/library-tests/csharp9/record.ql b/csharp/ql/test/library-tests/csharp9/record.ql
index 7fc45550365..f067b7800a3 100644
--- a/csharp/ql/test/library-tests/csharp9/record.ql
+++ b/csharp/ql/test/library-tests/csharp9/record.ql
@@ -1,4 +1,5 @@
 import csharp
+import semmle.code.csharp.commons.QualifiedName
 
 query predicate records(RecordClass t, string i, RecordCloneMethod clone) {
   t.getABaseInterface().toStringWithTypes() = i and
@@ -7,7 +8,9 @@ query predicate records(RecordClass t, string i, RecordCloneMethod clone) {
 }
 
 private string getMemberName(Member m) {
-  result = m.getDeclaringType().getQualifiedName() + "." + m.toStringWithTypes()
+  exists(string namespace, string name | m.getDeclaringType().hasQualifiedName(namespace, name) |
+    result = printQualifiedName(namespace, name) + "." + m.toStringWithTypes()
+  )
 }
 
 query predicate members(RecordClass t, string ms, string l) {
diff --git a/csharp/ql/test/library-tests/csharp9/withExpr.ql b/csharp/ql/test/library-tests/csharp9/withExpr.ql
index 7f51f85384b..e6045731256 100644
--- a/csharp/ql/test/library-tests/csharp9/withExpr.ql
+++ b/csharp/ql/test/library-tests/csharp9/withExpr.ql
@@ -1,7 +1,10 @@
 import csharp
+import semmle.code.csharp.commons.QualifiedName
 
 private string getSignature(Method m) {
-  result = m.getDeclaringType().getQualifiedName() + "." + m.toStringWithTypes()
+  exists(string namespace, string name | m.getDeclaringType().hasQualifiedName(namespace, name) |
+    result = printQualifiedName(namespace, name) + "." + m.toStringWithTypes()
+  )
 }
 
 query predicate withExpr(WithExpr with, string type, Expr expr, ObjectInitializer init, string clone) {

From 29ccac8e93e310451ab5c7095fdc4bee7d124ee1 Mon Sep 17 00:00:00 2001
From: Michael Nebel <michaelnebel@github.com>
Date: Tue, 6 Dec 2022 12:05:48 +0100
Subject: [PATCH 1063/1420] C#: Address review comments.

---
 .../lib/semmle/code/cil/ConsistencyChecks.qll |  2 +-
 csharp/ql/lib/semmle/code/cil/Type.qll        |  2 +-
 csharp/ql/lib/semmle/code/csharp/Callable.qll |  2 +-
 csharp/ql/lib/semmle/code/csharp/Generics.qll |  2 +-
 .../code/csharp/commons/QualifiedName.qll     | 28 +++++++++----------
 .../security/dataflow/ExternalAPIsQuery.qll   |  2 +-
 .../ql/lib/semmle/code/dotnet/Declaration.qll |  2 +-
 .../ql/lib/semmle/code/dotnet/Namespace.qll   |  4 +--
 .../ql/src/API Abuse/NonOverridingMethod.ql   |  2 +-
 .../CWE-020/UntrustedDataToExternalAPI.ql     |  2 +-
 csharp/ql/src/Stubs/Stubs.qll                 |  2 +-
 ...security-validations-always-return-true.ql |  2 +-
 .../security-validation-disabled.ql           |  2 +-
 .../attributes/AttributeElements.ql           |  2 +-
 .../library-tests/cil/consistency/Handles.ql  |  4 +--
 .../cil/dataflow/TrivialProperties.ql         |  2 +-
 .../ql/test/library-tests/cil/enums/enums.ql  |  2 +-
 .../cil/functionPointers/functionPointers.ql  |  2 +-
 .../cil/init-only-prop/customModifiers.ql     |  2 +-
 .../cil/typeAnnotations/typeAnnotations.ql    |  9 +++---
 .../commons/Disposal/DisposedFields.ql        |  2 +-
 .../library-tests/csharp9/covariantReturn.ql  |  4 +--
 .../ql/test/library-tests/csharp9/foreach.ql  |  6 ++--
 .../ql/test/library-tests/csharp9/record.ql   |  2 +-
 .../ql/test/library-tests/csharp9/withExpr.ql |  2 +-
 csharp/ql/test/library-tests/enums/Enums3.ql  |  2 +-
 .../test/library-tests/generics/Generics.ql   |  6 ++--
 27 files changed, 50 insertions(+), 51 deletions(-)

diff --git a/csharp/ql/lib/semmle/code/cil/ConsistencyChecks.qll b/csharp/ql/lib/semmle/code/cil/ConsistencyChecks.qll
index e39cebef4fd..94382c88eca 100644
--- a/csharp/ql/lib/semmle/code/cil/ConsistencyChecks.qll
+++ b/csharp/ql/lib/semmle/code/cil/ConsistencyChecks.qll
@@ -489,7 +489,7 @@ class InvalidOverride extends MethodViolation {
       base.getDeclaringType().hasQualifiedName(namespace, type)
     |
       result =
-        "Overridden method from " + printQualifiedName(namespace, type) + " is not in a base type"
+        "Overridden method from " + getQualifiedName(namespace, type) + " is not in a base type"
     )
   }
 }
diff --git a/csharp/ql/lib/semmle/code/cil/Type.qll b/csharp/ql/lib/semmle/code/cil/Type.qll
index 8131c7db2fc..fdeb865bf94 100644
--- a/csharp/ql/lib/semmle/code/cil/Type.qll
+++ b/csharp/ql/lib/semmle/code/cil/Type.qll
@@ -54,7 +54,7 @@ class Type extends DotNet::Type, Declaration, TypeContainer, @cil_type {
   override predicate hasQualifiedName(string namespace, string name) {
     name = this.getName() and
     exists(string pnamespace, string pname | this.getParent().hasQualifiedName(pnamespace, pname) |
-      namespace = printQualifiedName(pnamespace, pname)
+      namespace = getQualifiedName(pnamespace, pname)
     )
   }
 
diff --git a/csharp/ql/lib/semmle/code/csharp/Callable.qll b/csharp/ql/lib/semmle/code/csharp/Callable.qll
index 7a6feb0b37f..d8de93a1802 100644
--- a/csharp/ql/lib/semmle/code/csharp/Callable.qll
+++ b/csharp/ql/lib/semmle/code/csharp/Callable.qll
@@ -1004,7 +1004,7 @@ class LocalFunction extends Callable, Modifiable, Attributable, @local_function
   override predicate hasQualifiedName(string namespace, string name) {
     exists(string cnamespace, string type |
       this.getEnclosingCallable().hasQualifiedName(cnamespace, type) and
-      namespace = printQualifiedName(cnamespace, type)
+      namespace = getQualifiedName(cnamespace, type)
     ) and
     name = this.getName()
   }
diff --git a/csharp/ql/lib/semmle/code/csharp/Generics.qll b/csharp/ql/lib/semmle/code/csharp/Generics.qll
index 8e1d1aef491..a6cdfb6e9a5 100644
--- a/csharp/ql/lib/semmle/code/csharp/Generics.qll
+++ b/csharp/ql/lib/semmle/code/csharp/Generics.qll
@@ -102,7 +102,7 @@ bindingset[t]
 private string getFullName(Type t) {
   exists(string namespace, string name |
     t.hasQualifiedName(namespace, name) and
-    result = printQualifiedName(namespace, name)
+    result = getQualifiedName(namespace, name)
   )
 }
 
diff --git a/csharp/ql/lib/semmle/code/csharp/commons/QualifiedName.qll b/csharp/ql/lib/semmle/code/csharp/commons/QualifiedName.qll
index cfb31cf3025..32e2a743f78 100644
--- a/csharp/ql/lib/semmle/code/csharp/commons/QualifiedName.qll
+++ b/csharp/ql/lib/semmle/code/csharp/commons/QualifiedName.qll
@@ -1,34 +1,34 @@
 /**
- * Provides predicates related to C# qualified name.
+ * Provides predicates related to C# qualified names.
  */
 
 /**
- * Returns the concatenation of `qualifier` and `name`, separated by a dot.
+ * Returns the concatenation of `namespace` and `name`, separated by a dot.
  */
 bindingset[namespace, name]
-string printQualifiedName(string namespace, string name) {
+string getQualifiedName(string namespace, string name) {
   if namespace = "" then result = name else result = namespace + "." + name
 }
 
 /**
- * Returns the concatenation of `qualifier`, `type` and `name`, separated by a dot.
+ * Returns the concatenation of `namespace`, `type` and `name`, separated by a dot.
  */
 bindingset[namespace, type, name]
-string printQualifiedName(string namespace, string type, string name) {
-  result = printQualifiedName(namespace, type) + "." + name
+string getQualifiedName(string namespace, string type, string name) {
+  result = getQualifiedName(namespace, type) + "." + name
 }
 
-private string getNameSplitter() { result = "(.*)\\.([^\\.]+)$" }
-
 /**
+ * Holds if `qualifiedName` is the concatenation of `qualifier` and `name`, separated by a dot.
  */
 bindingset[qualifiedName]
 predicate splitQualifiedName(string qualifiedName, string qualifier, string name) {
-  if qualifiedName.regexpMatch(getNameSplitter())
-  then
-    qualifier = qualifiedName.regexpCapture(getNameSplitter(), 1) and
-    name = qualifiedName.regexpCapture(getNameSplitter(), 2)
-  else (
-    qualifier = "" and name = qualifiedName
+  exists(string nameSplitter | nameSplitter = "(.*)\\.([^\\.]+)$" |
+    qualifier = qualifiedName.regexpCapture(nameSplitter, 1) and
+    name = qualifiedName.regexpCapture(nameSplitter, 2)
+    or
+    not qualifiedName.regexpMatch(nameSplitter) and
+    qualifier = "" and
+    name = qualifiedName
   )
 }
diff --git a/csharp/ql/lib/semmle/code/csharp/security/dataflow/ExternalAPIsQuery.qll b/csharp/ql/lib/semmle/code/csharp/security/dataflow/ExternalAPIsQuery.qll
index e3aa061fe5f..1ddee826325 100644
--- a/csharp/ql/lib/semmle/code/csharp/security/dataflow/ExternalAPIsQuery.qll
+++ b/csharp/ql/lib/semmle/code/csharp/security/dataflow/ExternalAPIsQuery.qll
@@ -83,7 +83,7 @@ class ExternalApiDataNode extends DataFlow::Node {
    */
   deprecated string getCallableDescription() {
     exists(string namespace, string name |
-      this.hasQualifiedName(namespace, name) and result = printQualifiedName(namespace, name)
+      this.hasQualifiedName(namespace, name) and result = getQualifiedName(namespace, name)
     )
   }
 }
diff --git a/csharp/ql/lib/semmle/code/dotnet/Declaration.qll b/csharp/ql/lib/semmle/code/dotnet/Declaration.qll
index 3755ac18509..32c735cc591 100644
--- a/csharp/ql/lib/semmle/code/dotnet/Declaration.qll
+++ b/csharp/ql/lib/semmle/code/dotnet/Declaration.qll
@@ -11,7 +11,7 @@ class Declaration extends NamedElement, @dotnet_declaration {
   override predicate hasQualifiedName(string namespace, string name) {
     exists(string dnamespace, string dname |
       this.getDeclaringType().hasQualifiedName(dnamespace, dname) and
-      namespace = printQualifiedName(dnamespace, dname)
+      namespace = getQualifiedName(dnamespace, dname)
     ) and
     name = this.getName()
   }
diff --git a/csharp/ql/lib/semmle/code/dotnet/Namespace.qll b/csharp/ql/lib/semmle/code/dotnet/Namespace.qll
index e15b461d023..5832d0f437e 100644
--- a/csharp/ql/lib/semmle/code/dotnet/Namespace.qll
+++ b/csharp/ql/lib/semmle/code/dotnet/Namespace.qll
@@ -28,7 +28,7 @@ class Namespace extends Declaration, @namespace {
   override predicate hasQualifiedName(string namespace, string name) {
     exists(string pnamespace, string pname |
       this.getParentNamespace().hasQualifiedName(pnamespace, pname) and
-      namespace = printQualifiedName(pnamespace, pname)
+      namespace = getQualifiedName(pnamespace, pname)
     ) and
     name = this.getName()
   }
@@ -52,7 +52,7 @@ class Namespace extends Declaration, @namespace {
   string getFullName() {
     exists(string namespace, string name |
       this.hasQualifiedName(namespace, name) and
-      result = printQualifiedName(namespace, name)
+      result = getQualifiedName(namespace, name)
     )
   }
 }
diff --git a/csharp/ql/src/API Abuse/NonOverridingMethod.ql b/csharp/ql/src/API Abuse/NonOverridingMethod.ql
index cc42043fe30..4d499a09b8c 100644
--- a/csharp/ql/src/API Abuse/NonOverridingMethod.ql	
+++ b/csharp/ql/src/API Abuse/NonOverridingMethod.ql	
@@ -43,4 +43,4 @@ where
   nonOverridingMethod(m, vm) and
   vm.hasQualifiedName(namespace, type, name)
 select m, "Method '" + m.getName() + "' looks like it should override $@ but does not do so.",
-  vm.getUnboundDeclaration(), printQualifiedName(namespace, type, name)
+  vm.getUnboundDeclaration(), getQualifiedName(namespace, type, name)
diff --git a/csharp/ql/src/Security Features/CWE-020/UntrustedDataToExternalAPI.ql b/csharp/ql/src/Security Features/CWE-020/UntrustedDataToExternalAPI.ql
index 4d89913e435..c4f6c874559 100644
--- a/csharp/ql/src/Security Features/CWE-020/UntrustedDataToExternalAPI.ql	
+++ b/csharp/ql/src/Security Features/CWE-020/UntrustedDataToExternalAPI.ql	
@@ -21,5 +21,5 @@ where
   config.hasFlowPath(source, sink) and
   sink.getNode().(ExternalApiDataNode).hasQualifiedName(namespace, name)
 select sink, source, sink,
-  "Call to " + printQualifiedName(namespace, name) + " with untrusted data from $@.", source,
+  "Call to " + getQualifiedName(namespace, name) + " with untrusted data from $@.", source,
   source.toString()
diff --git a/csharp/ql/src/Stubs/Stubs.qll b/csharp/ql/src/Stubs/Stubs.qll
index c67d53a20db..b76480c4ce7 100644
--- a/csharp/ql/src/Stubs/Stubs.qll
+++ b/csharp/ql/src/Stubs/Stubs.qll
@@ -124,7 +124,7 @@ abstract private class GeneratedType extends Type, GeneratedElement {
     exists(string namespace, string name |
       this.hasQualifiedName(namespace, name) and
       result =
-        "// Generated from `" + printQualifiedName(namespace, name) + "` in `" +
+        "// Generated from `" + getQualifiedName(namespace, name) + "` in `" +
           concat(this.getALocation().toString(), "; ") + "`\n"
     )
   }
diff --git a/csharp/ql/src/experimental/Security Features/JsonWebTokenHandler/delegated-security-validations-always-return-true.ql b/csharp/ql/src/experimental/Security Features/JsonWebTokenHandler/delegated-security-validations-always-return-true.ql
index dde2b35c2b9..e2dc841b831 100644
--- a/csharp/ql/src/experimental/Security Features/JsonWebTokenHandler/delegated-security-validations-always-return-true.ql	
+++ b/csharp/ql/src/experimental/Security Features/JsonWebTokenHandler/delegated-security-validations-always-return-true.ql	
@@ -22,4 +22,4 @@ from
 where e = p.getAnAssignedValue() and p.hasQualifiedName(namespace, name)
 select e,
   "JsonWebTokenHandler security-sensitive property $@ is being delegated to this callable that always returns \"true\".",
-  p, printQualifiedName(namespace, name)
+  p, getQualifiedName(namespace, name)
diff --git a/csharp/ql/src/experimental/Security Features/JsonWebTokenHandler/security-validation-disabled.ql b/csharp/ql/src/experimental/Security Features/JsonWebTokenHandler/security-validation-disabled.ql
index e18c83da944..7ee02fa7d5e 100644
--- a/csharp/ql/src/experimental/Security Features/JsonWebTokenHandler/security-validation-disabled.ql	
+++ b/csharp/ql/src/experimental/Security Features/JsonWebTokenHandler/security-validation-disabled.ql	
@@ -23,4 +23,4 @@ where
   sink.asExpr() = pw.getAnAssignedValue() and
   pw.hasQualifiedName(namespace, name)
 select sink, "The security sensitive property $@ is being disabled by the following value: $@.", pw,
-  printQualifiedName(namespace, name), source, "false"
+  getQualifiedName(namespace, name), source, "false"
diff --git a/csharp/ql/test/library-tests/attributes/AttributeElements.ql b/csharp/ql/test/library-tests/attributes/AttributeElements.ql
index 35358cae8aa..06b879e20e8 100644
--- a/csharp/ql/test/library-tests/attributes/AttributeElements.ql
+++ b/csharp/ql/test/library-tests/attributes/AttributeElements.ql
@@ -6,4 +6,4 @@ where
   attribute = element.getAnAttribute() and
   (attribute.fromSource() or element.(Assembly).getName() in ["attributes", "Assembly1"]) and
   attribute.getType().hasQualifiedName(namespace, name)
-select element, attribute, printQualifiedName(namespace, name)
+select element, attribute, getQualifiedName(namespace, name)
diff --git a/csharp/ql/test/library-tests/cil/consistency/Handles.ql b/csharp/ql/test/library-tests/cil/consistency/Handles.ql
index 59b8e7a428d..19a78d5a860 100644
--- a/csharp/ql/test/library-tests/cil/consistency/Handles.ql
+++ b/csharp/ql/test/library-tests/cil/consistency/Handles.ql
@@ -15,7 +15,7 @@ query predicate tooManyHandles(string s) {
   exists(MetadataEntity e, Assembly a, string namespace, string name |
     strictcount(int handle | metadata_handle(e, a, handle)) > 1 and
     e.hasQualifiedName(namespace, name) and
-    s = printQualifiedName(namespace, name)
+    s = getQualifiedName(namespace, name)
   )
 }
 
@@ -35,7 +35,7 @@ query predicate tooManyMatchingHandles(string s) {
     metadata_handle(e, a, handle) and
     strictcount(UniqueMetadataEntity e2 | metadata_handle(e2, a, handle)) > 2 and
     e.hasQualifiedName(namespace, name) and
-    s = printQualifiedName(namespace, name)
+    s = getQualifiedName(namespace, name)
   )
 }
 
diff --git a/csharp/ql/test/library-tests/cil/dataflow/TrivialProperties.ql b/csharp/ql/test/library-tests/cil/dataflow/TrivialProperties.ql
index 838e9e86736..577ee105802 100644
--- a/csharp/ql/test/library-tests/cil/dataflow/TrivialProperties.ql
+++ b/csharp/ql/test/library-tests/cil/dataflow/TrivialProperties.ql
@@ -12,4 +12,4 @@ where
     namespace = "Dataflow" and type = "Properties"
   ) and
   prop.hasQualifiedName(namespace, type, name)
-select printQualifiedName(namespace, type, name)
+select getQualifiedName(namespace, type, name)
diff --git a/csharp/ql/test/library-tests/cil/enums/enums.ql b/csharp/ql/test/library-tests/cil/enums/enums.ql
index 640aa788827..ddd7fea5712 100644
--- a/csharp/ql/test/library-tests/cil/enums/enums.ql
+++ b/csharp/ql/test/library-tests/cil/enums/enums.ql
@@ -5,4 +5,4 @@ from Enum e, string namespace, string name
 where
   e.hasQualifiedName(namespace, name) and
   not (namespace = "Interop.Sys" and name = "LockType") // doesn't exist on osx
-select printQualifiedName(namespace, name), e.getUnderlyingType().toStringWithTypes()
+select getQualifiedName(namespace, name), e.getUnderlyingType().toStringWithTypes()
diff --git a/csharp/ql/test/library-tests/cil/functionPointers/functionPointers.ql b/csharp/ql/test/library-tests/cil/functionPointers/functionPointers.ql
index 504275ac1c0..9cb7b583315 100644
--- a/csharp/ql/test/library-tests/cil/functionPointers/functionPointers.ql
+++ b/csharp/ql/test/library-tests/cil/functionPointers/functionPointers.ql
@@ -32,7 +32,7 @@ query predicate modifiers(string fnptr, string modifier, string sKind) {
   |
     cil_custom_modifiers(fn, modType, kind) and
     modType.hasQualifiedName(namespace, name) and
-    modifier = printQualifiedName(namespace, name) and
+    modifier = getQualifiedName(namespace, name) and
     sKind = getKind(kind)
   )
 }
diff --git a/csharp/ql/test/library-tests/cil/init-only-prop/customModifiers.ql b/csharp/ql/test/library-tests/cil/init-only-prop/customModifiers.ql
index 00bf824c0cd..ca1e8c94f20 100644
--- a/csharp/ql/test/library-tests/cil/init-only-prop/customModifiers.ql
+++ b/csharp/ql/test/library-tests/cil/init-only-prop/customModifiers.ql
@@ -10,6 +10,6 @@ where
     receiver = cmr.toString() and
     cil_custom_modifiers(cmr, modType, kind) and
     modType.hasQualifiedName(namespace, name) and
-    modifier = printQualifiedName(namespace, name)
+    modifier = getQualifiedName(namespace, name)
   )
 select receiver, modifier, getKind(kind)
diff --git a/csharp/ql/test/library-tests/cil/typeAnnotations/typeAnnotations.ql b/csharp/ql/test/library-tests/cil/typeAnnotations/typeAnnotations.ql
index 9babcaa7fb2..8e66a70ec66 100644
--- a/csharp/ql/test/library-tests/cil/typeAnnotations/typeAnnotations.ql
+++ b/csharp/ql/test/library-tests/cil/typeAnnotations/typeAnnotations.ql
@@ -4,7 +4,7 @@ import semmle.code.cil.Type
 
 private string elementType(Element e, string toString) {
   exists(string namespace, string type, string name |
-    toString = printQualifiedName(namespace, type, name)
+    toString = getQualifiedName(namespace, type, name)
   |
     e.(Method).hasQualifiedName(namespace, type, name) and result = "method"
     or
@@ -16,7 +16,7 @@ private string elementType(Element e, string toString) {
       exists(string namespace, string name |
         p.getDeclaringElement().hasQualifiedName(namespace, name)
       |
-        toString = "Parameter " + p.getIndex() + " of " + printQualifiedName(namespace, name)
+        toString = "Parameter " + p.getIndex() + " of " + getQualifiedName(namespace, name)
       )
     ) and
   result = "parameter"
@@ -27,14 +27,13 @@ private string elementType(Element e, string toString) {
         v.getImplementation().getMethod().hasQualifiedName(namespace, type, name)
       |
         toString =
-          "Local variable " + v.getIndex() + " of method " +
-            printQualifiedName(namespace, type, name)
+          "Local variable " + v.getIndex() + " of method " + getQualifiedName(namespace, type, name)
       )
     ) and
   result = "local"
   or
   exists(string namespace, string name | e.(FunctionPointerType).hasQualifiedName(namespace, name) |
-    toString = printQualifiedName(namespace, name)
+    toString = getQualifiedName(namespace, name)
   ) and
   result = "fnptr"
   or
diff --git a/csharp/ql/test/library-tests/commons/Disposal/DisposedFields.ql b/csharp/ql/test/library-tests/commons/Disposal/DisposedFields.ql
index 2fd67ea7fc4..c10f7703462 100644
--- a/csharp/ql/test/library-tests/commons/Disposal/DisposedFields.ql
+++ b/csharp/ql/test/library-tests/commons/Disposal/DisposedFields.ql
@@ -7,4 +7,4 @@ where
   mayBeDisposed(field) and
   field.getDeclaringType().hasQualifiedName("DisposalTests", "Class1") and
   field.hasQualifiedName(namespace, name)
-select printQualifiedName(namespace, name)
+select getQualifiedName(namespace, name)
diff --git a/csharp/ql/test/library-tests/csharp9/covariantReturn.ql b/csharp/ql/test/library-tests/csharp9/covariantReturn.ql
index 41c0d577f30..a9f1107b050 100644
--- a/csharp/ql/test/library-tests/csharp9/covariantReturn.ql
+++ b/csharp/ql/test/library-tests/csharp9/covariantReturn.ql
@@ -9,5 +9,5 @@ where
   m.getFile().getStem() = "CovariantReturn" and
   m.hasQualifiedName(mnamespace, mtype, mname) and
   overrider.hasQualifiedName(onamespace, otype, oname)
-select printQualifiedName(mnamespace, mtype, mname), m.getReturnType().toString(),
-  printQualifiedName(onamespace, otype, oname), overrider.getReturnType().toString()
+select getQualifiedName(mnamespace, mtype, mname), m.getReturnType().toString(),
+  getQualifiedName(onamespace, otype, oname), overrider.getReturnType().toString()
diff --git a/csharp/ql/test/library-tests/csharp9/foreach.ql b/csharp/ql/test/library-tests/csharp9/foreach.ql
index ae87550ae15..33e73554588 100644
--- a/csharp/ql/test/library-tests/csharp9/foreach.ql
+++ b/csharp/ql/test/library-tests/csharp9/foreach.ql
@@ -16,6 +16,6 @@ where
   f.getGetEnumerator().getDeclaringType().hasQualifiedName(namespace1, type1) and
   f.getCurrent().getDeclaringType().hasQualifiedName(namespace2, type2) and
   f.getMoveNext().getDeclaringType().hasQualifiedName(namespace3, type3)
-select f, f.getElementType().toString(), getIsAsync(f), printQualifiedName(namespace1, type1),
-  getLocation(f.getGetEnumerator()), printQualifiedName(namespace2, type2),
-  getLocation(f.getCurrent()), printQualifiedName(namespace3, type3), getLocation(f.getMoveNext())
+select f, f.getElementType().toString(), getIsAsync(f), getQualifiedName(namespace1, type1),
+  getLocation(f.getGetEnumerator()), getQualifiedName(namespace2, type2),
+  getLocation(f.getCurrent()), getQualifiedName(namespace3, type3), getLocation(f.getMoveNext())
diff --git a/csharp/ql/test/library-tests/csharp9/record.ql b/csharp/ql/test/library-tests/csharp9/record.ql
index f067b7800a3..d62f637057a 100644
--- a/csharp/ql/test/library-tests/csharp9/record.ql
+++ b/csharp/ql/test/library-tests/csharp9/record.ql
@@ -9,7 +9,7 @@ query predicate records(RecordClass t, string i, RecordCloneMethod clone) {
 
 private string getMemberName(Member m) {
   exists(string namespace, string name | m.getDeclaringType().hasQualifiedName(namespace, name) |
-    result = printQualifiedName(namespace, name) + "." + m.toStringWithTypes()
+    result = getQualifiedName(namespace, name) + "." + m.toStringWithTypes()
   )
 }
 
diff --git a/csharp/ql/test/library-tests/csharp9/withExpr.ql b/csharp/ql/test/library-tests/csharp9/withExpr.ql
index e6045731256..b4713191e9f 100644
--- a/csharp/ql/test/library-tests/csharp9/withExpr.ql
+++ b/csharp/ql/test/library-tests/csharp9/withExpr.ql
@@ -3,7 +3,7 @@ import semmle.code.csharp.commons.QualifiedName
 
 private string getSignature(Method m) {
   exists(string namespace, string name | m.getDeclaringType().hasQualifiedName(namespace, name) |
-    result = printQualifiedName(namespace, name) + "." + m.toStringWithTypes()
+    result = getQualifiedName(namespace, name) + "." + m.toStringWithTypes()
   )
 }
 
diff --git a/csharp/ql/test/library-tests/enums/Enums3.ql b/csharp/ql/test/library-tests/enums/Enums3.ql
index 913ca7c6274..57d46ac987a 100644
--- a/csharp/ql/test/library-tests/enums/Enums3.ql
+++ b/csharp/ql/test/library-tests/enums/Enums3.ql
@@ -12,4 +12,4 @@ where
   c.getType() = c.getDeclaringType() and
   c.getValue() = "1" and
   c.getDeclaringType().getBaseClass().hasQualifiedName(namespace, name)
-select c, printQualifiedName(namespace, name)
+select c, getQualifiedName(namespace, name)
diff --git a/csharp/ql/test/library-tests/generics/Generics.ql b/csharp/ql/test/library-tests/generics/Generics.ql
index 08e62a65ef2..86c86994d6e 100644
--- a/csharp/ql/test/library-tests/generics/Generics.ql
+++ b/csharp/ql/test/library-tests/generics/Generics.ql
@@ -261,7 +261,7 @@ query predicate test32(ConstructedGeneric cg, string s1, string s2) {
 query predicate test33(ConstructedMethod cm, string s1, string s2) {
   cm.fromSource() and
   exists(string namespace, string type, string name |
-    cm.hasQualifiedName(namespace, type, name) and s1 = printQualifiedName(namespace, type, name)
+    cm.hasQualifiedName(namespace, type, name) and s1 = getQualifiedName(namespace, type, name)
   ) and
   cm.getQualifiedNameWithTypes() = s2
 }
@@ -269,7 +269,7 @@ query predicate test33(ConstructedMethod cm, string s1, string s2) {
 query predicate test34(UnboundGeneric ug, string s1, string s2) {
   ug.fromSource() and
   exists(string namespace, string name |
-    ug.hasQualifiedName(namespace, name) and s1 = printQualifiedName(namespace, name)
+    ug.hasQualifiedName(namespace, name) and s1 = getQualifiedName(namespace, name)
   ) and
   ug.getQualifiedNameWithTypes() = s2
 }
@@ -277,7 +277,7 @@ query predicate test34(UnboundGeneric ug, string s1, string s2) {
 query predicate test35(UnboundGenericMethod gm, string s1, string s2) {
   gm.fromSource() and
   exists(string namespace, string type, string name |
-    gm.hasQualifiedName(namespace, type, name) and s1 = printQualifiedName(namespace, type, name)
+    gm.hasQualifiedName(namespace, type, name) and s1 = getQualifiedName(namespace, type, name)
   ) and
   gm.getQualifiedNameWithTypes() = s2
 }

From 2bbd37f9aba3a2756fdca9966a12a0d80e4a3aa9 Mon Sep 17 00:00:00 2001
From: retanoj <s919student@gmail.com>
Date: Tue, 6 Dec 2022 19:27:29 +0800
Subject: [PATCH 1064/1420] change code snippet to `or` condition

---
 .../Security/CWE/CWE-089/MyBatisCommonLib.qll | 19 +++----------------
 1 file changed, 3 insertions(+), 16 deletions(-)

diff --git a/java/ql/src/experimental/Security/CWE/CWE-089/MyBatisCommonLib.qll b/java/ql/src/experimental/Security/CWE/CWE-089/MyBatisCommonLib.qll
index 747bb278109..27b48fd723a 100644
--- a/java/ql/src/experimental/Security/CWE/CWE-089/MyBatisCommonLib.qll
+++ b/java/ql/src/experimental/Security/CWE/CWE-089/MyBatisCommonLib.qll
@@ -140,6 +140,7 @@ predicate isMybatisXmlOrAnnotationSqlInjection(
     )
     or
     // MyBatis default parameter sql injection vulnerabilities.the default parameter form of the method is arg[0...n] or param[1...n].
+    // When compiled with '-parameters' compiler option, the parameter can be reflected in SQL statement as named in method signature.
     // e.g.
     //
     // ```java
@@ -152,6 +153,8 @@ predicate isMybatisXmlOrAnnotationSqlInjection(
         unsafeExpression.matches("${param" + (i + 1) + "%}")
         or
         unsafeExpression.matches("${arg" + i + "%}")
+        or
+        unsafeExpression.matches("${" + ma.getMethod().getParameter(i).getName() + "}")
       ) and
       ma.getArgument(i) = node.asExpr()
     )
@@ -185,21 +188,5 @@ predicate isMybatisXmlOrAnnotationSqlInjection(
       unsafeExpression.matches("${%}") and
       ma.getAnArgument() = node.asExpr()
     )
-    or
-    // Some of method parameters are not annotated with `@Param`, which named in the SQL statement as their name.
-    // Improper use of these parameters has a SQL injection vulnerability.
-    // e.g.
-    //
-    // ```java
-    //    @Select(select id,name from test where id = #{id} or name = '${name}')
-    //    Test test(Integer id, String name);
-    // ```
-    exists(Parameter param, int idx |
-      param = ma.getMethod().getParameter(idx)
-    |
-      not param.getAnAnnotation().getType() instanceof TypeParam and
-      unsafeExpression.matches("${" + param.getName() + "}") and
-      ma.getArgument(idx) = node.asExpr()
-    )
   )
 }

From 27efb0d8438b0f569724085ef3c43f02e2a827a2 Mon Sep 17 00:00:00 2001
From: Michael Nebel <michaelnebel@github.com>
Date: Tue, 6 Dec 2022 13:53:50 +0100
Subject: [PATCH 1065/1420] C#: Rename  ->  for .

---
 csharp/ql/lib/semmle/code/asp/AspNet.qll      |  6 ++--
 .../lib/semmle/code/cil/ConsistencyChecks.qll |  6 ++--
 csharp/ql/lib/semmle/code/cil/Type.qll        |  6 ++--
 csharp/ql/lib/semmle/code/cil/Variable.qll    |  2 +-
 csharp/ql/lib/semmle/code/csharp/Callable.qll | 12 ++++----
 csharp/ql/lib/semmle/code/csharp/Generics.qll | 22 +++++++-------
 csharp/ql/lib/semmle/code/csharp/Type.qll     | 30 +++++++++----------
 csharp/ql/lib/semmle/code/csharp/Variable.qll |  2 +-
 .../code/csharp/commons/QualifiedName.qll     |  8 ++---
 .../cryptography/SymmetricAlgorithm.qll       | 14 ++++-----
 .../code/csharp/frameworks/test/NUnit.qll     |  6 ++--
 .../security/dataflow/ExternalAPIsQuery.qll   | 10 +++----
 .../ql/lib/semmle/code/dotnet/Declaration.qll | 10 +++----
 csharp/ql/lib/semmle/code/dotnet/Element.qll  |  4 +--
 .../ql/lib/semmle/code/dotnet/Namespace.qll   | 16 +++++-----
 .../Naming Conventions/ControlNamePrefixes.ql | 12 ++++----
 .../Documentation/XmldocMissingException.ql   |  6 ++--
 .../Collections/ContainerSizeCmpZero.ql       |  4 +--
 .../CWE-020/UntrustedDataToExternalAPI.ql     |  6 ++--
 csharp/ql/src/Stubs/Stubs.qll                 |  6 ++--
 ...security-validations-always-return-true.ql |  6 ++--
 .../security-validation-disabled.ql           |  6 ++--
 .../attributes/AttributeElements.ql           |  6 ++--
 .../library-tests/cil/consistency/Handles.ql  | 12 ++++----
 .../ql/test/library-tests/cil/enums/enums.ql  |  8 ++---
 .../cil/functionPointers/functionPointers.ql  |  6 ++--
 .../cil/init-only-prop/customModifiers.ql     |  6 ++--
 .../cil/typeAnnotations/typeAnnotations.ql    | 10 +++----
 .../commons/Disposal/DisposedFields.ql        |  6 ++--
 .../constructors/Destructors1.ql              |  6 ++--
 .../ql/test/library-tests/csharp9/foreach.ql  | 16 +++++-----
 .../ql/test/library-tests/csharp9/record.ql   |  4 +--
 .../ql/test/library-tests/csharp9/withExpr.ql |  4 +--
 .../test/library-tests/generics/Generics.ql   |  4 +--
 34 files changed, 144 insertions(+), 144 deletions(-)

diff --git a/csharp/ql/lib/semmle/code/asp/AspNet.qll b/csharp/ql/lib/semmle/code/asp/AspNet.qll
index c85096f1b6e..2876043d4ef 100644
--- a/csharp/ql/lib/semmle/code/asp/AspNet.qll
+++ b/csharp/ql/lib/semmle/code/asp/AspNet.qll
@@ -185,9 +185,9 @@ class PageDirective extends AspDirective {
    * Gets the 'CodeBehind' class from which this page inherits.
    */
   ValueOrRefType getInheritedType() {
-    exists(string namespace, string type |
-      result.hasQualifiedName(namespace, type) and
-      splitQualifiedName(this.getInheritedTypeQualifiedName(), namespace, type)
+    exists(string qualifier, string type |
+      result.hasQualifiedName(qualifier, type) and
+      splitQualifiedName(this.getInheritedTypeQualifiedName(), qualifier, type)
     )
   }
 
diff --git a/csharp/ql/lib/semmle/code/cil/ConsistencyChecks.qll b/csharp/ql/lib/semmle/code/cil/ConsistencyChecks.qll
index 94382c88eca..16d556d4d1d 100644
--- a/csharp/ql/lib/semmle/code/cil/ConsistencyChecks.qll
+++ b/csharp/ql/lib/semmle/code/cil/ConsistencyChecks.qll
@@ -485,11 +485,11 @@ class InvalidOverride extends MethodViolation {
   }
 
   override string getMessage() {
-    exists(string namespace, string type |
-      base.getDeclaringType().hasQualifiedName(namespace, type)
+    exists(string qualifier, string type |
+      base.getDeclaringType().hasQualifiedName(qualifier, type)
     |
       result =
-        "Overridden method from " + getQualifiedName(namespace, type) + " is not in a base type"
+        "Overridden method from " + getQualifiedName(qualifier, type) + " is not in a base type"
     )
   }
 }
diff --git a/csharp/ql/lib/semmle/code/cil/Type.qll b/csharp/ql/lib/semmle/code/cil/Type.qll
index fdeb865bf94..cfe04df8e2d 100644
--- a/csharp/ql/lib/semmle/code/cil/Type.qll
+++ b/csharp/ql/lib/semmle/code/cil/Type.qll
@@ -51,10 +51,10 @@ class Type extends DotNet::Type, Declaration, TypeContainer, @cil_type {
    */
   Type getUnboundType() { cil_type(this, _, _, _, result) }
 
-  override predicate hasQualifiedName(string namespace, string name) {
+  override predicate hasQualifiedName(string qualifier, string name) {
     name = this.getName() and
-    exists(string pnamespace, string pname | this.getParent().hasQualifiedName(pnamespace, pname) |
-      namespace = getQualifiedName(pnamespace, pname)
+    exists(string pqualifier, string pname | this.getParent().hasQualifiedName(pqualifier, pname) |
+      qualifier = getQualifiedName(pqualifier, pname)
     )
   }
 
diff --git a/csharp/ql/lib/semmle/code/cil/Variable.qll b/csharp/ql/lib/semmle/code/cil/Variable.qll
index be1834eebc7..604f2c2b646 100644
--- a/csharp/ql/lib/semmle/code/cil/Variable.qll
+++ b/csharp/ql/lib/semmle/code/cil/Variable.qll
@@ -29,7 +29,7 @@ class Variable extends DotNet::Variable, Declaration, DataFlowNode, @cil_variabl
 
 /** A stack variable. Either a local variable (`LocalVariable`) or a parameter (`Parameter`). */
 class StackVariable extends Variable, @cil_stack_variable {
-  override predicate hasQualifiedName(string namespace, string name) { none() }
+  override predicate hasQualifiedName(string qualifier, string name) { none() }
 }
 
 /**
diff --git a/csharp/ql/lib/semmle/code/csharp/Callable.qll b/csharp/ql/lib/semmle/code/csharp/Callable.qll
index d8de93a1802..6c66b4e1beb 100644
--- a/csharp/ql/lib/semmle/code/csharp/Callable.qll
+++ b/csharp/ql/lib/semmle/code/csharp/Callable.qll
@@ -456,8 +456,8 @@ class Operator extends Callable, Member, Attributable, @operator {
 
   override Parameter getRawParameter(int i) { result = this.getParameter(i) }
 
-  override predicate hasQualifiedName(string namespace, string name) {
-    super.hasQualifiedName(namespace, _) and
+  override predicate hasQualifiedName(string qualifier, string name) {
+    super.hasQualifiedName(qualifier, _) and
     name = this.getFunctionName()
   }
 
@@ -1001,10 +1001,10 @@ class LocalFunction extends Callable, Modifiable, Attributable, @local_function
 
   override Callable getEnclosingCallable() { result = this.getStatement().getEnclosingCallable() }
 
-  override predicate hasQualifiedName(string namespace, string name) {
-    exists(string cnamespace, string type |
-      this.getEnclosingCallable().hasQualifiedName(cnamespace, type) and
-      namespace = getQualifiedName(cnamespace, type)
+  override predicate hasQualifiedName(string qualifier, string name) {
+    exists(string cqualifier, string type |
+      this.getEnclosingCallable().hasQualifiedName(cqualifier, type) and
+      qualifier = getQualifiedName(cqualifier, type)
     ) and
     name = this.getName()
   }
diff --git a/csharp/ql/lib/semmle/code/csharp/Generics.qll b/csharp/ql/lib/semmle/code/csharp/Generics.qll
index a6cdfb6e9a5..ee850f25ea3 100644
--- a/csharp/ql/lib/semmle/code/csharp/Generics.qll
+++ b/csharp/ql/lib/semmle/code/csharp/Generics.qll
@@ -100,9 +100,9 @@ private string getTypeArgumentsNames(ConstructedGeneric cg) {
 
 bindingset[t]
 private string getFullName(Type t) {
-  exists(string namespace, string name |
-    t.hasQualifiedName(namespace, name) and
-    result = getQualifiedName(namespace, name)
+  exists(string qualifier, string name |
+    t.hasQualifiedName(qualifier, name) and
+    result = getQualifiedName(qualifier, name)
   )
 }
 
@@ -159,15 +159,15 @@ class UnboundGenericType extends ValueOrRefType, UnboundGeneric {
     result = this.getUndecoratedName() + "<" + getTypeParameterCommas(this) + ">"
   }
 
-  final override predicate hasQualifiedName(string namespace, string name) {
+  final override predicate hasQualifiedName(string qualifier, string name) {
     exists(string name0 | name = name0 + "<" + getTypeParameterCommas(this) + ">" |
       exists(string enclosing |
-        this.getDeclaringType().hasQualifiedName(namespace, enclosing) and
+        this.getDeclaringType().hasQualifiedName(qualifier, enclosing) and
         name0 = enclosing + "+" + this.getUndecoratedName()
       )
       or
       not exists(this.getDeclaringType()) and
-      namespace = this.getNamespace().getFullName() and
+      qualifier = this.getNamespace().getFullName() and
       name0 = this.getUndecoratedName()
     )
   }
@@ -237,8 +237,8 @@ class TypeParameter extends DotNet::TypeParameter, Type, @type_parameter {
   /** Gets the generic that defines this type parameter. */
   UnboundGeneric getGeneric() { type_parameters(this, _, result, _) }
 
-  final override predicate hasQualifiedName(string namespace, string name) {
-    namespace = "" and
+  final override predicate hasQualifiedName(string qualifier, string name) {
+    qualifier = "" and
     name = this.getName()
   }
 
@@ -424,15 +424,15 @@ class ConstructedType extends ValueOrRefType, ConstructedGeneric {
     result = this.getUndecoratedName() + "<" + getTypeArgumentsNames(this) + ">"
   }
 
-  final override predicate hasQualifiedName(string namespace, string name) {
+  final override predicate hasQualifiedName(string qualifier, string name) {
     exists(string name0 | name = name0 + "<" + getTypeArgumentsQualifiedNames(this) + ">" |
       exists(string enclosing |
-        this.getDeclaringType().hasQualifiedName(namespace, enclosing) and
+        this.getDeclaringType().hasQualifiedName(qualifier, enclosing) and
         name0 = enclosing + "+" + this.getUndecoratedName()
       )
       or
       not exists(this.getDeclaringType()) and
-      namespace = this.getNamespace().getFullName() and
+      qualifier = this.getNamespace().getFullName() and
       name0 = this.getUndecoratedName()
     )
   }
diff --git a/csharp/ql/lib/semmle/code/csharp/Type.qll b/csharp/ql/lib/semmle/code/csharp/Type.qll
index d176163943e..8bb92c8c86a 100644
--- a/csharp/ql/lib/semmle/code/csharp/Type.qll
+++ b/csharp/ql/lib/semmle/code/csharp/Type.qll
@@ -57,19 +57,19 @@ private predicate isObjectClass(Class c) { c instanceof ObjectType }
  */
 class ValueOrRefType extends DotNet::ValueOrRefType, Type, Attributable, @value_or_ref_type {
   /**
-   * Holds if this type has the qualified name `namespace`.`name`.
+   * Holds if this type has the qualified name `qualifier`.`name`.
    *
    * For example the class `System.IO.IOException` has
-   * `namespace`=`System.IO` and `name`=`IOException`.
+   * `qualifier`=`System.IO` and `name`=`IOException`.
    */
-  override predicate hasQualifiedName(string namespace, string name) {
+  override predicate hasQualifiedName(string qualifier, string name) {
     exists(string enclosing |
-      this.getDeclaringType().hasQualifiedName(namespace, enclosing) and
+      this.getDeclaringType().hasQualifiedName(qualifier, enclosing) and
       name = enclosing + "+" + this.getUndecoratedName()
     )
     or
     not exists(this.getDeclaringType()) and
-    namespace = this.getNamespace().getFullName() and
+    qualifier = this.getNamespace().getFullName() and
     name = this.getUndecoratedName()
   }
 
@@ -398,8 +398,8 @@ class NonNestedType extends ValueOrRefType {
  * The `void` type.
  */
 class VoidType extends DotNet::ValueOrRefType, Type, @void_type {
-  override predicate hasQualifiedName(string namespace, string name) {
-    namespace = "System" and
+  override predicate hasQualifiedName(string qualifier, string name) {
+    qualifier = "System" and
     name = "Void"
   }
 
@@ -1007,8 +1007,8 @@ class NullableType extends ValueType, DotNet::ConstructedGeneric, @nullable_type
     result = "Nullable<" + this.getUnderlyingType().getName() + ">"
   }
 
-  final override predicate hasQualifiedName(string namespace, string name) {
-    namespace = "System" and
+  final override predicate hasQualifiedName(string qualifier, string name) {
+    qualifier = "System" and
     name = "Nullable<" + this.getUnderlyingType().getQualifiedName() + ">"
   }
 }
@@ -1076,9 +1076,9 @@ class ArrayType extends DotNet::ArrayType, RefType, @array_type {
     result = this.getElementType().getALocation()
   }
 
-  final override predicate hasQualifiedName(string namespace, string name) {
+  final override predicate hasQualifiedName(string qualifier, string name) {
     exists(Type elementType, string name0 |
-      elementType.hasQualifiedName(namespace, name0) and
+      elementType.hasQualifiedName(qualifier, name0) and
       name = name0 + this.getDimensionString(elementType)
     )
   }
@@ -1106,9 +1106,9 @@ class PointerType extends DotNet::PointerType, Type, @pointer_type {
 
   override string getAPrimaryQlClass() { result = "PointerType" }
 
-  final override predicate hasQualifiedName(string namespace, string name) {
+  final override predicate hasQualifiedName(string qualifier, string name) {
     exists(string name0 |
-      this.getReferentType().hasQualifiedName(namespace, name0) and
+      this.getReferentType().hasQualifiedName(qualifier, name0) and
       name = name0 + "*"
     )
   }
@@ -1190,8 +1190,8 @@ class TupleType extends ValueType, @tuple_type {
 
   override Type getChild(int i) { result = this.getUnderlyingType().getChild(i) }
 
-  final override predicate hasQualifiedName(string namespace, string name) {
-    this.getUnderlyingType().hasQualifiedName(namespace, name)
+  final override predicate hasQualifiedName(string qualifier, string name) {
+    this.getUnderlyingType().hasQualifiedName(qualifier, name)
   }
 
   override string getAPrimaryQlClass() { result = "TupleType" }
diff --git a/csharp/ql/lib/semmle/code/csharp/Variable.qll b/csharp/ql/lib/semmle/code/csharp/Variable.qll
index 8d72a6f8050..aa66e59e7af 100644
--- a/csharp/ql/lib/semmle/code/csharp/Variable.qll
+++ b/csharp/ql/lib/semmle/code/csharp/Variable.qll
@@ -71,7 +71,7 @@ class LocalScopeVariable extends Variable, @local_scope_variable {
    */
   predicate isRef() { none() }
 
-  override predicate hasQualifiedName(string namespace, string name) { none() }
+  override predicate hasQualifiedName(string qualifier, string name) { none() }
 }
 
 /**
diff --git a/csharp/ql/lib/semmle/code/csharp/commons/QualifiedName.qll b/csharp/ql/lib/semmle/code/csharp/commons/QualifiedName.qll
index 32e2a743f78..4955d8db8f2 100644
--- a/csharp/ql/lib/semmle/code/csharp/commons/QualifiedName.qll
+++ b/csharp/ql/lib/semmle/code/csharp/commons/QualifiedName.qll
@@ -3,11 +3,11 @@
  */
 
 /**
- * Returns the concatenation of `namespace` and `name`, separated by a dot.
+ * Returns the concatenation of `qualifier` and `name`, separated by a dot.
  */
-bindingset[namespace, name]
-string getQualifiedName(string namespace, string name) {
-  if namespace = "" then result = name else result = namespace + "." + name
+bindingset[qualifier, name]
+string getQualifiedName(string qualifier, string name) {
+  if qualifier = "" then result = name else result = qualifier + "." + name
 }
 
 /**
diff --git a/csharp/ql/lib/semmle/code/csharp/frameworks/system/security/cryptography/SymmetricAlgorithm.qll b/csharp/ql/lib/semmle/code/csharp/frameworks/system/security/cryptography/SymmetricAlgorithm.qll
index 7a307db2fa5..85d8f5c4200 100644
--- a/csharp/ql/lib/semmle/code/csharp/frameworks/system/security/cryptography/SymmetricAlgorithm.qll
+++ b/csharp/ql/lib/semmle/code/csharp/frameworks/system/security/cryptography/SymmetricAlgorithm.qll
@@ -5,20 +5,20 @@
 import csharp
 
 /**
- * Holds if the object creation `oc` is the creation of the reference type with the specified `namespace` and `type`, or a class derived from
- * the class with the specified `namespace` and `type`.
+ * Holds if the object creation `oc` is the creation of the reference type with the specified `qualifier` and `type`, or a class derived from
+ * the class with the specified `qualifier` and `type`.
  */
-private predicate isCreatingObject(ObjectCreation oc, string namespace, string type) {
-  exists(RefType t | t = oc.getType() | t.getBaseClass*().hasQualifiedName(namespace, type))
+private predicate isCreatingObject(ObjectCreation oc, string qualifier, string type) {
+  exists(RefType t | t = oc.getType() | t.getBaseClass*().hasQualifiedName(qualifier, type))
 }
 
 /**
- * Holds if the method call `mc` is returning the reference type with the specified `namespace` and `type`.
+ * Holds if the method call `mc` is returning the reference type with the specified `qualifier` and `type`.
  * and the target of the method call is a library method.
  */
-private predicate isReturningObject(MethodCall mc, string namespace, string type) {
+private predicate isReturningObject(MethodCall mc, string qualifier, string type) {
   mc.getTarget().fromLibrary() and
-  exists(RefType t | t = mc.getType() | t.hasQualifiedName(namespace, type))
+  exists(RefType t | t = mc.getType() | t.hasQualifiedName(qualifier, type))
 }
 
 /**
diff --git a/csharp/ql/lib/semmle/code/csharp/frameworks/test/NUnit.qll b/csharp/ql/lib/semmle/code/csharp/frameworks/test/NUnit.qll
index 0b105b1a57a..a1563ec2d46 100644
--- a/csharp/ql/lib/semmle/code/csharp/frameworks/test/NUnit.qll
+++ b/csharp/ql/lib/semmle/code/csharp/frameworks/test/NUnit.qll
@@ -40,9 +40,9 @@ class NUnitTestMethod extends TestMethod {
     |
       if expected.getArgument(0).getType() instanceof StringType
       then
-        exists(string namespace, string type |
-          result.hasQualifiedName(namespace, type) and
-          splitQualifiedName(expected.getArgument(0).getValue(), namespace, type)
+        exists(string qualifier, string type |
+          result.hasQualifiedName(qualifier, type) and
+          splitQualifiedName(expected.getArgument(0).getValue(), qualifier, type)
         )
       else result = expected.getArgument(0).(TypeofExpr).getTypeAccess().getTarget()
     )
diff --git a/csharp/ql/lib/semmle/code/csharp/security/dataflow/ExternalAPIsQuery.qll b/csharp/ql/lib/semmle/code/csharp/security/dataflow/ExternalAPIsQuery.qll
index 1ddee826325..4b181d9c984 100644
--- a/csharp/ql/lib/semmle/code/csharp/security/dataflow/ExternalAPIsQuery.qll
+++ b/csharp/ql/lib/semmle/code/csharp/security/dataflow/ExternalAPIsQuery.qll
@@ -71,9 +71,9 @@ class ExternalApiDataNode extends DataFlow::Node {
   /** Gets the index which is passed untrusted data (where -1 indicates the qualifier). */
   int getIndex() { result = i }
 
-  /** Holds if the callable being use has name `name` and is defined in namespace `namespace`. */
-  predicate hasQualifiedName(string namespace, string name) {
-    this.getCallable().hasQualifiedName(namespace, name)
+  /** Holds if the callable being use has name `name` and has qualifier `qualifier`. */
+  predicate hasQualifiedName(string qualifier, string name) {
+    this.getCallable().hasQualifiedName(qualifier, name)
   }
 
   /**
@@ -82,8 +82,8 @@ class ExternalApiDataNode extends DataFlow::Node {
    * Gets the description of the callable being called.
    */
   deprecated string getCallableDescription() {
-    exists(string namespace, string name |
-      this.hasQualifiedName(namespace, name) and result = getQualifiedName(namespace, name)
+    exists(string qualifier, string name |
+      this.hasQualifiedName(qualifier, name) and result = getQualifiedName(qualifier, name)
     )
   }
 }
diff --git a/csharp/ql/lib/semmle/code/dotnet/Declaration.qll b/csharp/ql/lib/semmle/code/dotnet/Declaration.qll
index 32c735cc591..fea5a1aaeca 100644
--- a/csharp/ql/lib/semmle/code/dotnet/Declaration.qll
+++ b/csharp/ql/lib/semmle/code/dotnet/Declaration.qll
@@ -8,10 +8,10 @@ private import semmle.code.csharp.commons.QualifiedName
 
 /** A declaration. */
 class Declaration extends NamedElement, @dotnet_declaration {
-  override predicate hasQualifiedName(string namespace, string name) {
-    exists(string dnamespace, string dname |
-      this.getDeclaringType().hasQualifiedName(dnamespace, dname) and
-      namespace = getQualifiedName(dnamespace, dname)
+  override predicate hasQualifiedName(string qualifier, string name) {
+    exists(string dqualifier, string dname |
+      this.getDeclaringType().hasQualifiedName(dqualifier, dname) and
+      qualifier = getQualifiedName(dqualifier, dname)
     ) and
     name = this.getName()
   }
@@ -82,7 +82,7 @@ class Member extends Declaration, @dotnet_member {
 
   /**
    * Holds if this member has name `name` and is defined in type `type`
-   * with qualifier `qualifier`
+   * with namespace `namespace`.
    */
   cached
   predicate hasQualifiedName(string namespace, string type, string name) {
diff --git a/csharp/ql/lib/semmle/code/dotnet/Element.qll b/csharp/ql/lib/semmle/code/dotnet/Element.qll
index dd8e7fe019c..1000ce57666 100644
--- a/csharp/ql/lib/semmle/code/dotnet/Element.qll
+++ b/csharp/ql/lib/semmle/code/dotnet/Element.qll
@@ -107,8 +107,8 @@ class NamedElement extends Element, @dotnet_named_element {
 
   /** Holds if this element has the qualified name `qualifier`.`name`. */
   cached
-  predicate hasQualifiedName(string namespace, string name) {
-    namespace = "" and name = this.getName()
+  predicate hasQualifiedName(string qualifier, string name) {
+    qualifier = "" and name = this.getName()
   }
 
   /** Gets a unique string label for this element. */
diff --git a/csharp/ql/lib/semmle/code/dotnet/Namespace.qll b/csharp/ql/lib/semmle/code/dotnet/Namespace.qll
index 5832d0f437e..31a625de062 100644
--- a/csharp/ql/lib/semmle/code/dotnet/Namespace.qll
+++ b/csharp/ql/lib/semmle/code/dotnet/Namespace.qll
@@ -20,15 +20,15 @@ class Namespace extends Declaration, @namespace {
   Namespace getAChildNamespace() { result.getParentNamespace() = this }
 
   /**
-   * Holds if this namespace has the qualified name `namespace`.`name`.
+   * Holds if this namespace has the qualified name `qualifier`.`name`.
    *
    * For example if the qualified name is `System.Collections.Generic`, then
-   * `namespace`=`System.Collections` and `name`=`Generic`.
+   * `qualifier`=`System.Collections` and `name`=`Generic`.
    */
-  override predicate hasQualifiedName(string namespace, string name) {
-    exists(string pnamespace, string pname |
-      this.getParentNamespace().hasQualifiedName(pnamespace, pname) and
-      namespace = getQualifiedName(pnamespace, pname)
+  override predicate hasQualifiedName(string qualifier, string name) {
+    exists(string pqualifier, string pname |
+      this.getParentNamespace().hasQualifiedName(pqualifier, pname) and
+      qualifier = getQualifiedName(pqualifier, pname)
     ) and
     name = this.getName()
   }
@@ -61,7 +61,7 @@ class Namespace extends Declaration, @namespace {
 class GlobalNamespace extends Namespace {
   GlobalNamespace() { this.getName() = "" }
 
-  override predicate hasQualifiedName(string namespace, string name) {
-    namespace = "" and name = ""
+  override predicate hasQualifiedName(string qualifier, string name) {
+    qualifier = "" and name = ""
   }
 }
diff --git a/csharp/ql/src/Bad Practices/Naming Conventions/ControlNamePrefixes.ql b/csharp/ql/src/Bad Practices/Naming Conventions/ControlNamePrefixes.ql
index 6c72fc4b411..3e87b71253d 100644
--- a/csharp/ql/src/Bad Practices/Naming Conventions/ControlNamePrefixes.ql	
+++ b/csharp/ql/src/Bad Practices/Naming Conventions/ControlNamePrefixes.ql	
@@ -11,8 +11,8 @@
 
 import csharp
 
-string prefix(string namespace, string typename) {
-  namespace = "System.Web.UI.WebControls" and
+string prefix(string qualifier, string typename) {
+  qualifier = "System.Web.UI.WebControls" and
   (
     typename = "Label" and result = "lbl"
     or
@@ -75,7 +75,7 @@ string prefix(string namespace, string typename) {
     typename = "CrystalReportViewer" and result = "crvr"
   )
   or
-  namespace = "System.Web.UI.HtmlControls" and
+  qualifier = "System.Web.UI.HtmlControls" and
   (
     typename = "TextArea" and result = "txa"
     or
@@ -95,11 +95,11 @@ string prefix(string namespace, string typename) {
   )
 }
 
-from Field f, RefType t, string name, string prefix, string namespace, string type
+from Field f, RefType t, string name, string prefix, string qualifier, string type
 where
   f.getType() = t and
   f.getName() = name and
-  t.hasQualifiedName(namespace, type) and
-  prefix = prefix(namespace, type) and
+  t.hasQualifiedName(qualifier, type) and
+  prefix = prefix(qualifier, type) and
   not name.matches(prefix + "%")
 select f, "This field should have the prefix '" + prefix + "' to match its types."
diff --git a/csharp/ql/src/Documentation/XmldocMissingException.ql b/csharp/ql/src/Documentation/XmldocMissingException.ql
index 295275fd6bc..94cd5e96e33 100644
--- a/csharp/ql/src/Documentation/XmldocMissingException.ql
+++ b/csharp/ql/src/Documentation/XmldocMissingException.ql
@@ -24,9 +24,9 @@ where
     (
       throwBaseType.hasName(exceptionName)
       or
-      exists(string namespace, string type |
-        splitQualifiedName(exceptionName, namespace, type) and
-        throwBaseType.hasQualifiedName(namespace, type)
+      exists(string qualifier, string type |
+        splitQualifiedName(exceptionName, qualifier, type) and
+        throwBaseType.hasQualifiedName(qualifier, type)
       )
       // and comment.hasBody(offset) // Too slow
     )
diff --git a/csharp/ql/src/Likely Bugs/Collections/ContainerSizeCmpZero.ql b/csharp/ql/src/Likely Bugs/Collections/ContainerSizeCmpZero.ql
index 9ee37583eb7..f281601a554 100644
--- a/csharp/ql/src/Likely Bugs/Collections/ContainerSizeCmpZero.ql	
+++ b/csharp/ql/src/Likely Bugs/Collections/ContainerSizeCmpZero.ql	
@@ -13,9 +13,9 @@
 import csharp
 import semmle.code.csharp.commons.Assertions
 
-private predicate propertyOverrides(Property p, string namespace, string baseClass, string property) {
+private predicate propertyOverrides(Property p, string qualifier, string baseClass, string property) {
   exists(Property p2 |
-    p2.getUnboundDeclaration().getDeclaringType().hasQualifiedName(namespace, baseClass) and
+    p2.getUnboundDeclaration().getDeclaringType().hasQualifiedName(qualifier, baseClass) and
     p2.hasName(property)
   |
     p.overridesOrImplementsOrEquals(p2)
diff --git a/csharp/ql/src/Security Features/CWE-020/UntrustedDataToExternalAPI.ql b/csharp/ql/src/Security Features/CWE-020/UntrustedDataToExternalAPI.ql
index c4f6c874559..85a7d7ff53a 100644
--- a/csharp/ql/src/Security Features/CWE-020/UntrustedDataToExternalAPI.ql	
+++ b/csharp/ql/src/Security Features/CWE-020/UntrustedDataToExternalAPI.ql	
@@ -16,10 +16,10 @@ import DataFlow::PathGraph
 
 from
   UntrustedDataToExternalApiConfig config, DataFlow::PathNode source, DataFlow::PathNode sink,
-  string namespace, string name
+  string qualifier, string name
 where
   config.hasFlowPath(source, sink) and
-  sink.getNode().(ExternalApiDataNode).hasQualifiedName(namespace, name)
+  sink.getNode().(ExternalApiDataNode).hasQualifiedName(qualifier, name)
 select sink, source, sink,
-  "Call to " + getQualifiedName(namespace, name) + " with untrusted data from $@.", source,
+  "Call to " + getQualifiedName(qualifier, name) + " with untrusted data from $@.", source,
   source.toString()
diff --git a/csharp/ql/src/Stubs/Stubs.qll b/csharp/ql/src/Stubs/Stubs.qll
index b76480c4ce7..e4787a9b5ce 100644
--- a/csharp/ql/src/Stubs/Stubs.qll
+++ b/csharp/ql/src/Stubs/Stubs.qll
@@ -121,10 +121,10 @@ abstract private class GeneratedType extends Type, GeneratedElement {
   }
 
   private string stubComment() {
-    exists(string namespace, string name |
-      this.hasQualifiedName(namespace, name) and
+    exists(string qualifier, string name |
+      this.hasQualifiedName(qualifier, name) and
       result =
-        "// Generated from `" + getQualifiedName(namespace, name) + "` in `" +
+        "// Generated from `" + getQualifiedName(qualifier, name) + "` in `" +
           concat(this.getALocation().toString(), "; ") + "`\n"
     )
   }
diff --git a/csharp/ql/src/experimental/Security Features/JsonWebTokenHandler/delegated-security-validations-always-return-true.ql b/csharp/ql/src/experimental/Security Features/JsonWebTokenHandler/delegated-security-validations-always-return-true.ql
index e2dc841b831..2ee7c7edb1f 100644
--- a/csharp/ql/src/experimental/Security Features/JsonWebTokenHandler/delegated-security-validations-always-return-true.ql	
+++ b/csharp/ql/src/experimental/Security Features/JsonWebTokenHandler/delegated-security-validations-always-return-true.ql	
@@ -17,9 +17,9 @@ import JsonWebTokenHandlerLib
 import semmle.code.csharp.commons.QualifiedName
 
 from
-  TokenValidationParametersProperty p, CallableAlwaysReturnsTrueHigherPrecision e, string namespace,
+  TokenValidationParametersProperty p, CallableAlwaysReturnsTrueHigherPrecision e, string qualifier,
   string name
-where e = p.getAnAssignedValue() and p.hasQualifiedName(namespace, name)
+where e = p.getAnAssignedValue() and p.hasQualifiedName(qualifier, name)
 select e,
   "JsonWebTokenHandler security-sensitive property $@ is being delegated to this callable that always returns \"true\".",
-  p, getQualifiedName(namespace, name)
+  p, getQualifiedName(qualifier, name)
diff --git a/csharp/ql/src/experimental/Security Features/JsonWebTokenHandler/security-validation-disabled.ql b/csharp/ql/src/experimental/Security Features/JsonWebTokenHandler/security-validation-disabled.ql
index 7ee02fa7d5e..84c846c3a91 100644
--- a/csharp/ql/src/experimental/Security Features/JsonWebTokenHandler/security-validation-disabled.ql	
+++ b/csharp/ql/src/experimental/Security Features/JsonWebTokenHandler/security-validation-disabled.ql	
@@ -17,10 +17,10 @@ import semmle.code.csharp.commons.QualifiedName
 from
   FalseValueFlowsToTokenValidationParametersPropertyWriteToBypassValidation config,
   DataFlow::Node source, DataFlow::Node sink,
-  TokenValidationParametersPropertySensitiveValidation pw, string namespace, string name
+  TokenValidationParametersPropertySensitiveValidation pw, string qualifier, string name
 where
   config.hasFlow(source, sink) and
   sink.asExpr() = pw.getAnAssignedValue() and
-  pw.hasQualifiedName(namespace, name)
+  pw.hasQualifiedName(qualifier, name)
 select sink, "The security sensitive property $@ is being disabled by the following value: $@.", pw,
-  getQualifiedName(namespace, name), source, "false"
+  getQualifiedName(qualifier, name), source, "false"
diff --git a/csharp/ql/test/library-tests/attributes/AttributeElements.ql b/csharp/ql/test/library-tests/attributes/AttributeElements.ql
index 06b879e20e8..198fd905b21 100644
--- a/csharp/ql/test/library-tests/attributes/AttributeElements.ql
+++ b/csharp/ql/test/library-tests/attributes/AttributeElements.ql
@@ -1,9 +1,9 @@
 import csharp
 import semmle.code.csharp.commons.QualifiedName
 
-from Attributable element, Attribute attribute, string namespace, string name
+from Attributable element, Attribute attribute, string qualifier, string name
 where
   attribute = element.getAnAttribute() and
   (attribute.fromSource() or element.(Assembly).getName() in ["attributes", "Assembly1"]) and
-  attribute.getType().hasQualifiedName(namespace, name)
-select element, attribute, getQualifiedName(namespace, name)
+  attribute.getType().hasQualifiedName(qualifier, name)
+select element, attribute, getQualifiedName(qualifier, name)
diff --git a/csharp/ql/test/library-tests/cil/consistency/Handles.ql b/csharp/ql/test/library-tests/cil/consistency/Handles.ql
index 19a78d5a860..d3a71af4209 100644
--- a/csharp/ql/test/library-tests/cil/consistency/Handles.ql
+++ b/csharp/ql/test/library-tests/cil/consistency/Handles.ql
@@ -12,10 +12,10 @@ class MetadataEntity extends DotNet::NamedElement, @metadata_entity {
 }
 
 query predicate tooManyHandles(string s) {
-  exists(MetadataEntity e, Assembly a, string namespace, string name |
+  exists(MetadataEntity e, Assembly a, string qualifier, string name |
     strictcount(int handle | metadata_handle(e, a, handle)) > 1 and
-    e.hasQualifiedName(namespace, name) and
-    s = getQualifiedName(namespace, name)
+    e.hasQualifiedName(qualifier, name) and
+    s = getQualifiedName(qualifier, name)
   )
 }
 
@@ -31,11 +31,11 @@ private class UniqueMetadataEntity extends MetadataEntity {
 }
 
 query predicate tooManyMatchingHandles(string s) {
-  exists(UniqueMetadataEntity e, Assembly a, int handle, string namespace, string name |
+  exists(UniqueMetadataEntity e, Assembly a, int handle, string qualifier, string name |
     metadata_handle(e, a, handle) and
     strictcount(UniqueMetadataEntity e2 | metadata_handle(e2, a, handle)) > 2 and
-    e.hasQualifiedName(namespace, name) and
-    s = getQualifiedName(namespace, name)
+    e.hasQualifiedName(qualifier, name) and
+    s = getQualifiedName(qualifier, name)
   )
 }
 
diff --git a/csharp/ql/test/library-tests/cil/enums/enums.ql b/csharp/ql/test/library-tests/cil/enums/enums.ql
index ddd7fea5712..096ac2f6d02 100644
--- a/csharp/ql/test/library-tests/cil/enums/enums.ql
+++ b/csharp/ql/test/library-tests/cil/enums/enums.ql
@@ -1,8 +1,8 @@
 import semmle.code.cil.Types
 import semmle.code.csharp.commons.QualifiedName
 
-from Enum e, string namespace, string name
+from Enum e, string qualifier, string name
 where
-  e.hasQualifiedName(namespace, name) and
-  not (namespace = "Interop.Sys" and name = "LockType") // doesn't exist on osx
-select getQualifiedName(namespace, name), e.getUnderlyingType().toStringWithTypes()
+  e.hasQualifiedName(qualifier, name) and
+  not (qualifier = "Interop.Sys" and name = "LockType") // doesn't exist on osx
+select getQualifiedName(qualifier, name), e.getUnderlyingType().toStringWithTypes()
diff --git a/csharp/ql/test/library-tests/cil/functionPointers/functionPointers.ql b/csharp/ql/test/library-tests/cil/functionPointers/functionPointers.ql
index 9cb7b583315..5e27e9695a3 100644
--- a/csharp/ql/test/library-tests/cil/functionPointers/functionPointers.ql
+++ b/csharp/ql/test/library-tests/cil/functionPointers/functionPointers.ql
@@ -27,12 +27,12 @@ query predicate params(string fnptr, int i, string param, string t) {
 }
 
 query predicate modifiers(string fnptr, string modifier, string sKind) {
-  exists(Type modType, int kind, FunctionPointerType fn, string namespace, string name |
+  exists(Type modType, int kind, FunctionPointerType fn, string qualifier, string name |
     fnptr = fn.toString()
   |
     cil_custom_modifiers(fn, modType, kind) and
-    modType.hasQualifiedName(namespace, name) and
-    modifier = getQualifiedName(namespace, name) and
+    modType.hasQualifiedName(qualifier, name) and
+    modifier = getQualifiedName(qualifier, name) and
     sKind = getKind(kind)
   )
 }
diff --git a/csharp/ql/test/library-tests/cil/init-only-prop/customModifiers.ql b/csharp/ql/test/library-tests/cil/init-only-prop/customModifiers.ql
index ca1e8c94f20..007a8f0f909 100644
--- a/csharp/ql/test/library-tests/cil/init-only-prop/customModifiers.ql
+++ b/csharp/ql/test/library-tests/cil/init-only-prop/customModifiers.ql
@@ -6,10 +6,10 @@ private string getKind(int kind) { if kind = 1 then result = "modreq" else resul
 
 from string receiver, string modifier, int kind
 where
-  exists(Type modType, CustomModifierReceiver cmr, string namespace, string name |
+  exists(Type modType, CustomModifierReceiver cmr, string qualifier, string name |
     receiver = cmr.toString() and
     cil_custom_modifiers(cmr, modType, kind) and
-    modType.hasQualifiedName(namespace, name) and
-    modifier = getQualifiedName(namespace, name)
+    modType.hasQualifiedName(qualifier, name) and
+    modifier = getQualifiedName(qualifier, name)
   )
 select receiver, modifier, getKind(kind)
diff --git a/csharp/ql/test/library-tests/cil/typeAnnotations/typeAnnotations.ql b/csharp/ql/test/library-tests/cil/typeAnnotations/typeAnnotations.ql
index 8e66a70ec66..8139aa7abfc 100644
--- a/csharp/ql/test/library-tests/cil/typeAnnotations/typeAnnotations.ql
+++ b/csharp/ql/test/library-tests/cil/typeAnnotations/typeAnnotations.ql
@@ -13,10 +13,10 @@ private string elementType(Element e, string toString) {
   or
   e =
     any(Parameter p |
-      exists(string namespace, string name |
-        p.getDeclaringElement().hasQualifiedName(namespace, name)
+      exists(string qualifier, string name |
+        p.getDeclaringElement().hasQualifiedName(qualifier, name)
       |
-        toString = "Parameter " + p.getIndex() + " of " + getQualifiedName(namespace, name)
+        toString = "Parameter " + p.getIndex() + " of " + getQualifiedName(qualifier, name)
       )
     ) and
   result = "parameter"
@@ -32,8 +32,8 @@ private string elementType(Element e, string toString) {
     ) and
   result = "local"
   or
-  exists(string namespace, string name | e.(FunctionPointerType).hasQualifiedName(namespace, name) |
-    toString = getQualifiedName(namespace, name)
+  exists(string qualifier, string name | e.(FunctionPointerType).hasQualifiedName(qualifier, name) |
+    toString = getQualifiedName(qualifier, name)
   ) and
   result = "fnptr"
   or
diff --git a/csharp/ql/test/library-tests/commons/Disposal/DisposedFields.ql b/csharp/ql/test/library-tests/commons/Disposal/DisposedFields.ql
index c10f7703462..c2ef7845f3f 100644
--- a/csharp/ql/test/library-tests/commons/Disposal/DisposedFields.ql
+++ b/csharp/ql/test/library-tests/commons/Disposal/DisposedFields.ql
@@ -2,9 +2,9 @@ import cil
 import semmle.code.csharp.commons.Disposal
 import semmle.code.csharp.commons.QualifiedName
 
-from CIL::Field field, string namespace, string name
+from CIL::Field field, string qualifier, string name
 where
   mayBeDisposed(field) and
   field.getDeclaringType().hasQualifiedName("DisposalTests", "Class1") and
-  field.hasQualifiedName(namespace, name)
-select getQualifiedName(namespace, name)
+  field.hasQualifiedName(qualifier, name)
+select getQualifiedName(qualifier, name)
diff --git a/csharp/ql/test/library-tests/constructors/Destructors1.ql b/csharp/ql/test/library-tests/constructors/Destructors1.ql
index c23fc8905cb..52fe367c61d 100644
--- a/csharp/ql/test/library-tests/constructors/Destructors1.ql
+++ b/csharp/ql/test/library-tests/constructors/Destructors1.ql
@@ -5,9 +5,9 @@
 import csharp
 import semmle.code.csharp.commons.QualifiedName
 
-from Destructor c, string namespace, string name
+from Destructor c, string qualifier, string name
 where
-  c.getDeclaringType().hasQualifiedName(namespace, name) and
-  namespace = "Constructors" and
+  c.getDeclaringType().hasQualifiedName(qualifier, name) and
+  qualifier = "Constructors" and
   name = "Class"
 select c, c.getDeclaringType().getQualifiedName()
diff --git a/csharp/ql/test/library-tests/csharp9/foreach.ql b/csharp/ql/test/library-tests/csharp9/foreach.ql
index 33e73554588..2556d08bb1e 100644
--- a/csharp/ql/test/library-tests/csharp9/foreach.ql
+++ b/csharp/ql/test/library-tests/csharp9/foreach.ql
@@ -10,12 +10,12 @@ private string getIsAsync(ForeachStmt f) {
 }
 
 from
-  ForeachStmt f, string namespace1, string type1, string namespace2, string type2,
-  string namespace3, string type3
+  ForeachStmt f, string qualifier1, string type1, string qualifier2, string type2,
+  string qualifier3, string type3
 where
-  f.getGetEnumerator().getDeclaringType().hasQualifiedName(namespace1, type1) and
-  f.getCurrent().getDeclaringType().hasQualifiedName(namespace2, type2) and
-  f.getMoveNext().getDeclaringType().hasQualifiedName(namespace3, type3)
-select f, f.getElementType().toString(), getIsAsync(f), getQualifiedName(namespace1, type1),
-  getLocation(f.getGetEnumerator()), getQualifiedName(namespace2, type2),
-  getLocation(f.getCurrent()), getQualifiedName(namespace3, type3), getLocation(f.getMoveNext())
+  f.getGetEnumerator().getDeclaringType().hasQualifiedName(qualifier1, type1) and
+  f.getCurrent().getDeclaringType().hasQualifiedName(qualifier2, type2) and
+  f.getMoveNext().getDeclaringType().hasQualifiedName(qualifier3, type3)
+select f, f.getElementType().toString(), getIsAsync(f), getQualifiedName(qualifier1, type1),
+  getLocation(f.getGetEnumerator()), getQualifiedName(qualifier2, type2),
+  getLocation(f.getCurrent()), getQualifiedName(qualifier3, type3), getLocation(f.getMoveNext())
diff --git a/csharp/ql/test/library-tests/csharp9/record.ql b/csharp/ql/test/library-tests/csharp9/record.ql
index d62f637057a..fb7b33fa286 100644
--- a/csharp/ql/test/library-tests/csharp9/record.ql
+++ b/csharp/ql/test/library-tests/csharp9/record.ql
@@ -8,8 +8,8 @@ query predicate records(RecordClass t, string i, RecordCloneMethod clone) {
 }
 
 private string getMemberName(Member m) {
-  exists(string namespace, string name | m.getDeclaringType().hasQualifiedName(namespace, name) |
-    result = getQualifiedName(namespace, name) + "." + m.toStringWithTypes()
+  exists(string qualifier, string name | m.getDeclaringType().hasQualifiedName(qualifier, name) |
+    result = getQualifiedName(qualifier, name) + "." + m.toStringWithTypes()
   )
 }
 
diff --git a/csharp/ql/test/library-tests/csharp9/withExpr.ql b/csharp/ql/test/library-tests/csharp9/withExpr.ql
index b4713191e9f..8ae5265b058 100644
--- a/csharp/ql/test/library-tests/csharp9/withExpr.ql
+++ b/csharp/ql/test/library-tests/csharp9/withExpr.ql
@@ -2,8 +2,8 @@ import csharp
 import semmle.code.csharp.commons.QualifiedName
 
 private string getSignature(Method m) {
-  exists(string namespace, string name | m.getDeclaringType().hasQualifiedName(namespace, name) |
-    result = getQualifiedName(namespace, name) + "." + m.toStringWithTypes()
+  exists(string qualifier, string name | m.getDeclaringType().hasQualifiedName(qualifier, name) |
+    result = getQualifiedName(qualifier, name) + "." + m.toStringWithTypes()
   )
 }
 
diff --git a/csharp/ql/test/library-tests/generics/Generics.ql b/csharp/ql/test/library-tests/generics/Generics.ql
index 86c86994d6e..b0c1623b68a 100644
--- a/csharp/ql/test/library-tests/generics/Generics.ql
+++ b/csharp/ql/test/library-tests/generics/Generics.ql
@@ -268,8 +268,8 @@ query predicate test33(ConstructedMethod cm, string s1, string s2) {
 
 query predicate test34(UnboundGeneric ug, string s1, string s2) {
   ug.fromSource() and
-  exists(string namespace, string name |
-    ug.hasQualifiedName(namespace, name) and s1 = getQualifiedName(namespace, name)
+  exists(string qualifier, string name |
+    ug.hasQualifiedName(qualifier, name) and s1 = getQualifiedName(qualifier, name)
   ) and
   ug.getQualifiedNameWithTypes() = s2
 }

From b0c86d8e51fab15c32a53f98bcb4a467c8740583 Mon Sep 17 00:00:00 2001
From: retanoj <s919student@gmail.com>
Date: Tue, 6 Dec 2022 21:50:09 +0800
Subject: [PATCH 1066/1420] change string match to regex match

---
 .../src/experimental/Security/CWE/CWE-089/MyBatisCommonLib.qll  | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/java/ql/src/experimental/Security/CWE/CWE-089/MyBatisCommonLib.qll b/java/ql/src/experimental/Security/CWE/CWE-089/MyBatisCommonLib.qll
index 27b48fd723a..b91702cd30e 100644
--- a/java/ql/src/experimental/Security/CWE/CWE-089/MyBatisCommonLib.qll
+++ b/java/ql/src/experimental/Security/CWE/CWE-089/MyBatisCommonLib.qll
@@ -154,7 +154,7 @@ predicate isMybatisXmlOrAnnotationSqlInjection(
         or
         unsafeExpression.matches("${arg" + i + "%}")
         or
-        unsafeExpression.matches("${" + ma.getMethod().getParameter(i).getName() + "}")
+        unsafeExpression.regexpMatch("\\$\\{\\s*" + ma.getMethod().getParameter(i).getName() + "\\s*(,.*?)?\\s*\\}")
       ) and
       ma.getArgument(i) = node.asExpr()
     )

From d588ee375b8ed51e514107f028ddd28f38915b98 Mon Sep 17 00:00:00 2001
From: Owen Mansel-Chan <owen-mc@github.com>
Date: Wed, 30 Nov 2022 15:55:04 +0000
Subject: [PATCH 1067/1420] Fix `mayHaveSideEffects` for `ReturnStmt`

The previous code only worked when the return statement
only has one returned expression.
---
 go/ql/lib/semmle/go/Stmt.qll | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/go/ql/lib/semmle/go/Stmt.qll b/go/ql/lib/semmle/go/Stmt.qll
index 9873bf1db17..2a77450855d 100644
--- a/go/ql/lib/semmle/go/Stmt.qll
+++ b/go/ql/lib/semmle/go/Stmt.qll
@@ -569,7 +569,7 @@ class ReturnStmt extends @returnstmt, Stmt {
   /** Gets the unique returned expression, if there is only one. */
   Expr getExpr() { getNumChild() = 1 and result = getExpr(0) }
 
-  override predicate mayHaveSideEffects() { getExpr().mayHaveSideEffects() }
+  override predicate mayHaveSideEffects() { getAnExpr().mayHaveSideEffects() }
 
   override string toString() { result = "return statement" }
 

From 4789431d6eb7dc3c615da16d096a20887c2ef338 Mon Sep 17 00:00:00 2001
From: Owen Mansel-Chan <owen-mc@github.com>
Date: Tue, 6 Dec 2022 16:25:50 +0000
Subject: [PATCH 1068/1420] Add change note

---
 .../2022-12-6-may-have-side-effects-return-stmt.md        | 8 ++++++++
 1 file changed, 8 insertions(+)
 create mode 100644 go/ql/lib/change-notes/2022-12-6-may-have-side-effects-return-stmt.md

diff --git a/go/ql/lib/change-notes/2022-12-6-may-have-side-effects-return-stmt.md b/go/ql/lib/change-notes/2022-12-6-may-have-side-effects-return-stmt.md
new file mode 100644
index 00000000000..2b885555e5b
--- /dev/null
+++ b/go/ql/lib/change-notes/2022-12-6-may-have-side-effects-return-stmt.md
@@ -0,0 +1,8 @@
+---
+category: minorAnalysis
+---
+The definition of `mayHaveSideEffects` for `ReturnStmt` was incorrect when more
+than one expression was being returned. Such return statements were
+effectively considered to never have side effects. This has now been fixed.
+In rare circumstances `globalValueNumber` may have incorrectly treated two
+values as the same when they were in fact distinct.

From b5147bbfb0aa30a5fc6c6ba73eb4927bebd26c63 Mon Sep 17 00:00:00 2001
From: Jeroen Ketema <jketema@github.com>
Date: Fri, 25 Nov 2022 14:23:16 +0100
Subject: [PATCH 1069/1420] C++: Deprecate `DefaultTaintTracking` and
 `TaintTrackingImpl`

---
 ...-11-25-deprecate-default-taint-tracking.md |   6 +
 .../cpp/ir/dataflow/DefaultTaintTracking.qll  | 639 +----------------
 .../internal/DefaultTaintTrackingImpl.qll     | 644 ++++++++++++++++++
 .../code/cpp/security/TaintTrackingImpl.qll   |  29 +-
 cpp/ql/src/Security/CWE/CWE-079/CgiXss.ql     |   2 +-
 cpp/ql/src/Security/CWE/CWE-089/SqlTainted.ql |   2 +-
 .../CWE-114/UncontrolledProcessOperation.ql   |   2 +-
 .../Security/CWE/CWE-120/UnboundedWrite.ql    |   2 +-
 .../CWE/CWE-134/UncontrolledFormatString.ql   |   2 +-
 ...ncontrolledFormatStringThroughGlobalVar.ql |   2 +-
 .../CWE-170/ImproperNullTerminationTainted.ql |   2 +-
 .../Security/CWE/CWE-190/ArithmeticTainted.ql |   2 +-
 .../CWE-190/ArithmeticWithExtremeValues.ql    |   2 +-
 .../CWE/CWE-190/IntegerOverflowTainted.ql     |   2 +-
 .../CWE/CWE-290/AuthenticationBypass.ql       |   2 +-
 .../Security/CWE/CWE-807/TaintedCondition.ql  |   2 +-
 .../annotate_path_to_sink/tainted.expected    |   2 +
 .../annotate_sinks_only/tainted.expected      |   2 +
 .../globals/global.expected                   |   2 +
 .../dataflow/security-taint/tainted.expected  |   1 +
 .../security-taint/tainted_diff.expected      |   5 +
 .../security-taint/tainted_ir.expected        |   2 +
 22 files changed, 701 insertions(+), 655 deletions(-)
 create mode 100644 cpp/ql/lib/change-notes/2022-11-25-deprecate-default-taint-tracking.md
 create mode 100644 cpp/ql/lib/semmle/code/cpp/ir/dataflow/internal/DefaultTaintTrackingImpl.qll

diff --git a/cpp/ql/lib/change-notes/2022-11-25-deprecate-default-taint-tracking.md b/cpp/ql/lib/change-notes/2022-11-25-deprecate-default-taint-tracking.md
new file mode 100644
index 00000000000..54d10d592d6
--- /dev/null
+++ b/cpp/ql/lib/change-notes/2022-11-25-deprecate-default-taint-tracking.md
@@ -0,0 +1,6 @@
+---
+category: deprecated
+---
+
+* Deprecated `semmle.code.cpp.ir.dataflow.DefaultTaintTracking`. Use `semmle.code.cpp.ir.dataflow.TaintTracking`.
+* Deprecated `semmle.code.cpp.security.TaintTrackingImpl`. Use `semmle.code.cpp.ir.dataflow.TaintTracking`.
diff --git a/cpp/ql/lib/semmle/code/cpp/ir/dataflow/DefaultTaintTracking.qll b/cpp/ql/lib/semmle/code/cpp/ir/dataflow/DefaultTaintTracking.qll
index be5403734ce..8b559dbe932 100644
--- a/cpp/ql/lib/semmle/code/cpp/ir/dataflow/DefaultTaintTracking.qll
+++ b/cpp/ql/lib/semmle/code/cpp/ir/dataflow/DefaultTaintTracking.qll
@@ -1,642 +1,21 @@
 /**
+ * DEPRECATED: Use `semmle.code.cpp.ir.dataflow.TaintTracking` as a replacement.
+ *
  * An IR taint tracking library that uses an IR DataFlow configuration to track
  * taint from user inputs as defined by `semmle.code.cpp.security.Security`.
  */
 
 import cpp
 import semmle.code.cpp.security.Security
-private import semmle.code.cpp.ir.dataflow.DataFlow
-private import semmle.code.cpp.ir.dataflow.internal.DataFlowUtil
-private import semmle.code.cpp.ir.dataflow.DataFlow3
-private import semmle.code.cpp.ir.IR
-private import semmle.code.cpp.ir.dataflow.ResolveCall
-private import semmle.code.cpp.controlflow.IRGuards
-private import semmle.code.cpp.models.interfaces.Taint
-private import semmle.code.cpp.models.interfaces.DataFlow
-private import semmle.code.cpp.ir.dataflow.TaintTracking
-private import semmle.code.cpp.ir.dataflow.TaintTracking2
-private import semmle.code.cpp.ir.dataflow.TaintTracking3
-private import semmle.code.cpp.ir.dataflow.internal.ModelUtil
+private import semmle.code.cpp.ir.dataflow.internal.DefaultTaintTrackingImpl as DefaultTaintTrackingImpl
 
-/**
- * A predictable instruction is one where an external user can predict
- * the value. For example, a literal in the source code is considered
- * predictable.
- */
-private predicate predictableInstruction(Instruction instr) {
-  instr instanceof ConstantInstruction
-  or
-  instr instanceof StringConstantInstruction
-  or
-  // This could be a conversion on a string literal
-  predictableInstruction(instr.(UnaryInstruction).getUnary())
-}
+deprecated predicate predictableOnlyFlow = DefaultTaintTrackingImpl::predictableOnlyFlow/1;
 
-/**
- * Functions that we should only allow taint to flow through (to the return
- * value) if all but the source argument are 'predictable'.  This is done to
- * emulate the old security library's implementation rather than due to any
- * strong belief that this is the right approach.
- *
- * Note that the list itself is not very principled; it consists of all the
- * functions listed in the old security library's [default] `isPureFunction`
- * that have more than one argument, but are not in the old taint tracking
- * library's `returnArgument` predicate.
- */
-predicate predictableOnlyFlow(string name) {
-  name =
-    [
-      "strcasestr", "strchnul", "strchr", "strchrnul", "strcmp", "strcspn", "strncmp", "strndup",
-      "strnlen", "strrchr", "strspn", "strstr", "strtod", "strtof", "strtol", "strtoll", "strtoq",
-      "strtoul"
-    ]
-}
+deprecated predicate tainted = DefaultTaintTrackingImpl::tainted/2;
 
-private DataFlow::Node getNodeForSource(Expr source) {
-  isUserInput(source, _) and
-  result = getNodeForExpr(source)
-}
+deprecated predicate taintedIncludingGlobalVars =
+  DefaultTaintTrackingImpl::taintedIncludingGlobalVars/3;
 
-private DataFlow::Node getNodeForExpr(Expr node) {
-  result = DataFlow::exprNode(node)
-  or
-  // Some of the sources in `isUserInput` are intended to match the value of
-  // an expression, while others (those modeled below) are intended to match
-  // the taint that propagates out of an argument, like the `char *` argument
-  // to `gets`. It's impossible here to tell which is which, but the "access
-  // to argv" source is definitely not intended to match an output argument,
-  // and it causes false positives if we let it.
-  //
-  // This case goes together with the similar (but not identical) rule in
-  // `nodeIsBarrierIn`.
-  result = DataFlow::definitionByReferenceNodeFromArgument(node) and
-  not argv(node.(VariableAccess).getTarget())
-}
+deprecated predicate globalVarFromId = DefaultTaintTrackingImpl::globalVarFromId/1;
 
-private class DefaultTaintTrackingCfg extends TaintTracking::Configuration {
-  DefaultTaintTrackingCfg() { this = "DefaultTaintTrackingCfg" }
-
-  override predicate isSource(DataFlow::Node source) { source = getNodeForSource(_) }
-
-  override predicate isSink(DataFlow::Node sink) { exists(adjustedSink(sink)) }
-
-  override predicate isSanitizer(DataFlow::Node node) { nodeIsBarrier(node) }
-
-  override predicate isSanitizerIn(DataFlow::Node node) { nodeIsBarrierIn(node) }
-}
-
-private class ToGlobalVarTaintTrackingCfg extends TaintTracking::Configuration {
-  ToGlobalVarTaintTrackingCfg() { this = "GlobalVarTaintTrackingCfg" }
-
-  override predicate isSource(DataFlow::Node source) { source = getNodeForSource(_) }
-
-  override predicate isSink(DataFlow::Node sink) {
-    sink.asVariable() instanceof GlobalOrNamespaceVariable
-  }
-
-  override predicate isAdditionalTaintStep(DataFlow::Node n1, DataFlow::Node n2) {
-    writesVariable(n1.asInstruction(), n2.asVariable().(GlobalOrNamespaceVariable))
-    or
-    readsVariable(n2.asInstruction(), n1.asVariable().(GlobalOrNamespaceVariable))
-  }
-
-  override predicate isSanitizer(DataFlow::Node node) { nodeIsBarrier(node) }
-
-  override predicate isSanitizerIn(DataFlow::Node node) { nodeIsBarrierIn(node) }
-}
-
-private class FromGlobalVarTaintTrackingCfg extends TaintTracking2::Configuration {
-  FromGlobalVarTaintTrackingCfg() { this = "FromGlobalVarTaintTrackingCfg" }
-
-  override predicate isSource(DataFlow::Node source) {
-    // This set of sources should be reasonably small, which is good for
-    // performance since the set of sinks is very large.
-    exists(ToGlobalVarTaintTrackingCfg otherCfg | otherCfg.hasFlowTo(source))
-  }
-
-  override predicate isSink(DataFlow::Node sink) { exists(adjustedSink(sink)) }
-
-  override predicate isAdditionalTaintStep(DataFlow::Node n1, DataFlow::Node n2) {
-    // Additional step for flow out of variables. There is no flow _into_
-    // variables in this configuration, so this step only serves to take flow
-    // out of a variable that's a source.
-    readsVariable(n2.asInstruction(), n1.asVariable())
-  }
-
-  override predicate isSanitizer(DataFlow::Node node) { nodeIsBarrier(node) }
-
-  override predicate isSanitizerIn(DataFlow::Node node) { nodeIsBarrierIn(node) }
-}
-
-private predicate readsVariable(LoadInstruction load, Variable var) {
-  load.getSourceAddress().(VariableAddressInstruction).getAstVariable() = var
-}
-
-private predicate writesVariable(StoreInstruction store, Variable var) {
-  store.getDestinationAddress().(VariableAddressInstruction).getAstVariable() = var
-}
-
-/**
- * A variable that has any kind of upper-bound check anywhere in the program.  This is
- * biased towards being inclusive because there are a lot of valid ways of doing an
- * upper bounds checks if we don't consider where it occurs, for example:
- * ```
- *   if (x < 10) { sink(x); }
- *
- *   if (10 > y) { sink(y); }
- *
- *   if (z > 10) { z = 10; }
- *   sink(z);
- * ```
- */
-// TODO: This coarse overapproximation, ported from the old taint tracking
-// library, could be replaced with an actual semantic check that a particular
-// variable _access_ is guarded by an upper-bound check. We probably don't want
-// to do this right away since it could expose a lot of FPs that were
-// previously suppressed by this predicate by coincidence.
-private predicate hasUpperBoundsCheck(Variable var) {
-  exists(RelationalOperation oper, VariableAccess access |
-    oper.getAnOperand() = access and
-    access.getTarget() = var and
-    // Comparing to 0 is not an upper bound check
-    not oper.getAnOperand().getValue() = "0"
-  )
-}
-
-private predicate nodeIsBarrierEqualityCandidate(
-  DataFlow::Node node, Operand access, Variable checkedVar
-) {
-  readsVariable(node.asInstruction(), checkedVar) and
-  any(IRGuardCondition guard).ensuresEq(access, _, _, node.asInstruction().getBlock(), true)
-}
-
-cached
-private module Cached {
-  cached
-  predicate nodeIsBarrier(DataFlow::Node node) {
-    exists(Variable checkedVar |
-      readsVariable(node.asInstruction(), checkedVar) and
-      hasUpperBoundsCheck(checkedVar)
-    )
-    or
-    exists(Variable checkedVar, Operand access |
-      /*
-       * This node is guarded by a condition that forces the accessed variable
-       * to equal something else.  For example:
-       * ```
-       * x = taintsource()
-       * if (x == 10) {
-       *   taintsink(x); // not considered tainted
-       * }
-       * ```
-       */
-
-      nodeIsBarrierEqualityCandidate(node, access, checkedVar) and
-      readsVariable(access.getDef(), checkedVar)
-    )
-  }
-
-  cached
-  predicate nodeIsBarrierIn(DataFlow::Node node) {
-    // don't use dataflow into taint sources, as this leads to duplicate results.
-    exists(Expr source | isUserInput(source, _) |
-      node = DataFlow::exprNode(source)
-      or
-      // This case goes together with the similar (but not identical) rule in
-      // `getNodeForSource`.
-      node = DataFlow::definitionByReferenceNodeFromArgument(source)
-    )
-    or
-    // don't use dataflow into binary instructions if both operands are unpredictable
-    exists(BinaryInstruction iTo |
-      iTo = node.asInstruction() and
-      not predictableInstruction(iTo.getLeft()) and
-      not predictableInstruction(iTo.getRight()) and
-      // propagate taint from either the pointer or the offset, regardless of predictability
-      not iTo instanceof PointerArithmeticInstruction
-    )
-    or
-    // don't use dataflow through calls to pure functions if two or more operands
-    // are unpredictable
-    exists(Instruction iFrom1, Instruction iFrom2, CallInstruction iTo |
-      iTo = node.asInstruction() and
-      isPureFunction(iTo.getStaticCallTarget().getName()) and
-      iFrom1 = iTo.getAnArgument() and
-      iFrom2 = iTo.getAnArgument() and
-      not predictableInstruction(iFrom1) and
-      not predictableInstruction(iFrom2) and
-      iFrom1 != iFrom2
-    )
-  }
-
-  cached
-  Element adjustedSink(DataFlow::Node sink) {
-    // TODO: is it more appropriate to use asConvertedExpr here and avoid
-    // `getConversion*`? Or will that cause us to miss some cases where there's
-    // flow to a conversion (like a `ReferenceDereferenceExpr`) and we want to
-    // pretend there was flow to the converted `Expr` for the sake of
-    // compatibility.
-    sink.asExpr().getConversion*() = result
-    or
-    // For compatibility, send flow from arguments to parameters, even for
-    // functions with no body.
-    exists(FunctionCall call, int i |
-      sink.asExpr() = call.getArgument(pragma[only_bind_into](i)) and
-      result = resolveCall(call).getParameter(pragma[only_bind_into](i))
-    )
-    or
-    // For compatibility, send flow into a `Variable` if there is flow to any
-    // Load or Store of that variable.
-    exists(CopyInstruction copy |
-      copy.getSourceValue() = sink.asInstruction() and
-      (
-        readsVariable(copy, result) or
-        writesVariable(copy, result)
-      ) and
-      not hasUpperBoundsCheck(result)
-    )
-    or
-    // For compatibility, send flow into a `NotExpr` even if it's part of a
-    // short-circuiting condition and thus might get skipped.
-    result.(NotExpr).getOperand() = sink.asExpr()
-    or
-    // Taint postfix and prefix crement operations when their operand is tainted.
-    result.(CrementOperation).getAnOperand() = sink.asExpr()
-    or
-    // Taint `e1 += e2`, `e &= e2` and friends when `e1` or `e2` is tainted.
-    result.(AssignOperation).getAnOperand() = sink.asExpr()
-    or
-    result =
-      sink.asOperand()
-          .(SideEffectOperand)
-          .getUse()
-          .(ReadSideEffectInstruction)
-          .getArgumentDef()
-          .getUnconvertedResultExpression()
-  }
-
-  /**
-   * Step to return value of a modeled function when an input taints the
-   * dereference of the return value.
-   */
-  cached
-  predicate additionalTaintStep(DataFlow::Node n1, DataFlow::Node n2) {
-    exists(CallInstruction call, Function func, FunctionInput modelIn, FunctionOutput modelOut |
-      n1.asOperand() = callInput(call, modelIn) and
-      (
-        func.(TaintFunction).hasTaintFlow(modelIn, modelOut)
-        or
-        func.(DataFlowFunction).hasDataFlow(modelIn, modelOut)
-      ) and
-      call.getStaticCallTarget() = func and
-      modelOut.isReturnValueDeref() and
-      call = n2.asInstruction()
-    )
-  }
-}
-
-private import Cached
-
-/**
- * Holds if `tainted` may contain taint from `source`.
- *
- * A tainted expression is either directly user input, or is
- * computed from user input in a way that users can probably
- * control the exact output of the computation.
- *
- * This doesn't include data flow through global variables.
- * If you need that you must call `taintedIncludingGlobalVars`.
- */
-cached
-predicate tainted(Expr source, Element tainted) {
-  exists(DefaultTaintTrackingCfg cfg, DataFlow::Node sink |
-    cfg.hasFlow(getNodeForSource(source), sink) and
-    tainted = adjustedSink(sink)
-  )
-}
-
-/**
- * Holds if `tainted` may contain taint from `source`, where the taint passed
- * through a global variable named `globalVar`.
- *
- * A tainted expression is either directly user input, or is
- * computed from user input in a way that users can probably
- * control the exact output of the computation.
- *
- * This version gives the same results as tainted but also includes
- * data flow through global variables.
- *
- * The parameter `globalVar` is the qualified name of the last global variable
- * used to move the value from source to tainted. If the taint did not pass
- * through a global variable, then `globalVar = ""`.
- */
-cached
-predicate taintedIncludingGlobalVars(Expr source, Element tainted, string globalVar) {
-  tainted(source, tainted) and
-  globalVar = ""
-  or
-  exists(
-    ToGlobalVarTaintTrackingCfg toCfg, FromGlobalVarTaintTrackingCfg fromCfg,
-    DataFlow::VariableNode variableNode, GlobalOrNamespaceVariable global, DataFlow::Node sink
-  |
-    global = variableNode.getVariable() and
-    toCfg.hasFlow(getNodeForSource(source), variableNode) and
-    fromCfg.hasFlow(variableNode, sink) and
-    tainted = adjustedSink(sink) and
-    global = globalVarFromId(globalVar)
-  )
-}
-
-/**
- * Gets the global variable whose qualified name is `id`. Use this predicate
- * together with `taintedIncludingGlobalVars`. Example:
- *
- * ```
- * exists(string varName |
- *   taintedIncludingGlobalVars(source, tainted, varName) and
- *   var = globalVarFromId(varName)
- * )
- * ```
- */
-GlobalOrNamespaceVariable globalVarFromId(string id) { id = result.getQualifiedName() }
-
-/**
- * Provides definitions for augmenting source/sink pairs with data-flow paths
- * between them. From a `@kind path-problem` query, import this module in the
- * global scope, extend `TaintTrackingConfiguration`, and use `taintedWithPath`
- * in place of `tainted`.
- *
- * Importing this module will also import the query predicates that contain the
- * taint paths.
- */
-module TaintedWithPath {
-  private newtype TSingleton = MkSingleton()
-
-  /**
-   * A taint-tracking configuration that matches sources and sinks in the same
-   * way as the `tainted` predicate.
-   *
-   * Override `isSink` and `taintThroughGlobals` as needed, but do not provide
-   * a characteristic predicate.
-   */
-  class TaintTrackingConfiguration extends TSingleton {
-    /** Override this to specify which elements are sources in this configuration. */
-    predicate isSource(Expr source) { exists(getNodeForSource(source)) }
-
-    /** Override this to specify which elements are sinks in this configuration. */
-    abstract predicate isSink(Element e);
-
-    /** Override this to specify which expressions are barriers in this configuration. */
-    predicate isBarrier(Expr e) { nodeIsBarrier(getNodeForExpr(e)) }
-
-    /**
-     * Override this predicate to `any()` to allow taint to flow through global
-     * variables.
-     */
-    predicate taintThroughGlobals() { none() }
-
-    /** Gets a textual representation of this element. */
-    string toString() { result = "TaintTrackingConfiguration" }
-  }
-
-  private class AdjustedConfiguration extends TaintTracking3::Configuration {
-    AdjustedConfiguration() { this = "AdjustedConfiguration" }
-
-    override predicate isSource(DataFlow::Node source) {
-      exists(TaintTrackingConfiguration cfg, Expr e |
-        cfg.isSource(e) and source = getNodeForExpr(e)
-      )
-    }
-
-    override predicate isSink(DataFlow::Node sink) {
-      exists(TaintTrackingConfiguration cfg | cfg.isSink(adjustedSink(sink)))
-    }
-
-    override predicate isAdditionalTaintStep(DataFlow::Node n1, DataFlow::Node n2) {
-      // Steps into and out of global variables
-      exists(TaintTrackingConfiguration cfg | cfg.taintThroughGlobals() |
-        writesVariable(n1.asInstruction(), n2.asVariable().(GlobalOrNamespaceVariable))
-        or
-        readsVariable(n2.asInstruction(), n1.asVariable().(GlobalOrNamespaceVariable))
-      )
-      or
-      additionalTaintStep(n1, n2)
-    }
-
-    override predicate isSanitizer(DataFlow::Node node) {
-      exists(TaintTrackingConfiguration cfg, Expr e | cfg.isBarrier(e) and node = getNodeForExpr(e))
-    }
-
-    override predicate isSanitizerIn(DataFlow::Node node) { nodeIsBarrierIn(node) }
-  }
-
-  /*
-   * A sink `Element` may map to multiple `DataFlowX::PathNode`s via (the
-   * inverse of) `adjustedSink`. For example, an `Expr` maps to all its
-   * conversions, and a `Variable` maps to all loads and stores from it. Because
-   * the path node is part of the tuple that constitutes the alert, this leads
-   * to duplicate alerts.
-   *
-   * To avoid showing duplicates, we edit the graph to replace the final node
-   * coming from the data-flow library with a node that matches exactly the
-   * `Element` sink that's requested.
-   *
-   * The same is done for sources.
-   */
-
-  private newtype TPathNode =
-    TWrapPathNode(DataFlow3::PathNode n) or
-    // There's a single newtype constructor for both sources and sinks since
-    // that makes it easiest to deal with the case where source = sink.
-    TEndpointPathNode(Element e) {
-      exists(AdjustedConfiguration cfg, DataFlow3::Node sourceNode, DataFlow3::Node sinkNode |
-        cfg.hasFlow(sourceNode, sinkNode)
-      |
-        sourceNode = getNodeForExpr(e) and
-        exists(TaintTrackingConfiguration ttCfg | ttCfg.isSource(e))
-        or
-        e = adjustedSink(sinkNode) and
-        exists(TaintTrackingConfiguration ttCfg | ttCfg.isSink(e))
-      )
-    }
-
-  /** An opaque type used for the nodes of a data-flow path. */
-  class PathNode extends TPathNode {
-    /** Gets a textual representation of this element. */
-    string toString() { none() }
-
-    /**
-     * Holds if this element is at the specified location.
-     * The location spans column `startcolumn` of line `startline` to
-     * column `endcolumn` of line `endline` in file `filepath`.
-     * For more information, see
-     * [Locations](https://codeql.github.com/docs/writing-codeql-queries/providing-locations-in-codeql-queries/).
-     */
-    predicate hasLocationInfo(
-      string filepath, int startline, int startcolumn, int endline, int endcolumn
-    ) {
-      none()
-    }
-  }
-
-  /**
-   * INTERNAL: Do not use.
-   */
-  module Private {
-    /** Gets a predecessor `PathNode` of `pathNode`, if any. */
-    PathNode getAPredecessor(PathNode pathNode) { edges(result, pathNode) }
-
-    /** Gets the element that `pathNode` wraps, if any. */
-    Element getElementFromPathNode(PathNode pathNode) {
-      exists(DataFlow::Node node | node = pathNode.(WrapPathNode).inner().getNode() |
-        result = node.asInstruction().getAst()
-        or
-        result = node.asOperand().getDef().getAst()
-      )
-      or
-      result = pathNode.(EndpointPathNode).inner()
-    }
-  }
-
-  private class WrapPathNode extends PathNode, TWrapPathNode {
-    DataFlow3::PathNode inner() { this = TWrapPathNode(result) }
-
-    override string toString() { result = this.inner().toString() }
-
-    override predicate hasLocationInfo(
-      string filepath, int startline, int startcolumn, int endline, int endcolumn
-    ) {
-      this.inner().hasLocationInfo(filepath, startline, startcolumn, endline, endcolumn)
-    }
-  }
-
-  private class EndpointPathNode extends PathNode, TEndpointPathNode {
-    Expr inner() { this = TEndpointPathNode(result) }
-
-    override string toString() { result = this.inner().toString() }
-
-    override predicate hasLocationInfo(
-      string filepath, int startline, int startcolumn, int endline, int endcolumn
-    ) {
-      this.inner()
-          .getLocation()
-          .hasLocationInfo(filepath, startline, startcolumn, endline, endcolumn)
-    }
-  }
-
-  /** A PathNode whose `Element` is a source. It may also be a sink. */
-  private class InitialPathNode extends EndpointPathNode {
-    InitialPathNode() { exists(TaintTrackingConfiguration cfg | cfg.isSource(this.inner())) }
-  }
-
-  /** A PathNode whose `Element` is a sink. It may also be a source. */
-  private class FinalPathNode extends EndpointPathNode {
-    FinalPathNode() { exists(TaintTrackingConfiguration cfg | cfg.isSink(this.inner())) }
-  }
-
-  /** Holds if `(a,b)` is an edge in the graph of data flow path explanations. */
-  query predicate edges(PathNode a, PathNode b) {
-    DataFlow3::PathGraph::edges(a.(WrapPathNode).inner(), b.(WrapPathNode).inner())
-    or
-    // To avoid showing trivial-looking steps, we _replace_ the last node instead
-    // of adding an edge out of it.
-    exists(WrapPathNode sinkNode |
-      DataFlow3::PathGraph::edges(a.(WrapPathNode).inner(), sinkNode.inner()) and
-      b.(FinalPathNode).inner() = adjustedSink(sinkNode.inner().getNode())
-    )
-    or
-    // Same for the first node
-    exists(WrapPathNode sourceNode |
-      DataFlow3::PathGraph::edges(sourceNode.inner(), b.(WrapPathNode).inner()) and
-      sourceNode.inner().getNode() = getNodeForExpr(a.(InitialPathNode).inner())
-    )
-    or
-    // Finally, handle the case where the path goes directly from a source to a
-    // sink, meaning that they both need to be translated.
-    exists(WrapPathNode sinkNode, WrapPathNode sourceNode |
-      DataFlow3::PathGraph::edges(sourceNode.inner(), sinkNode.inner()) and
-      sourceNode.inner().getNode() = getNodeForExpr(a.(InitialPathNode).inner()) and
-      b.(FinalPathNode).inner() = adjustedSink(sinkNode.inner().getNode())
-    )
-  }
-
-  /**
-   * Holds if there is flow from `arg` to `out` across a call that can by summarized by the flow
-   * from `par` to `ret` within it, in the graph of data flow path explanations.
-   */
-  query predicate subpaths(PathNode arg, PathNode par, PathNode ret, PathNode out) {
-    DataFlow3::PathGraph::subpaths(arg.(WrapPathNode).inner(), par.(WrapPathNode).inner(),
-      ret.(WrapPathNode).inner(), out.(WrapPathNode).inner())
-    or
-    // To avoid showing trivial-looking steps, we _replace_ the last node instead
-    // of adding an edge out of it.
-    exists(WrapPathNode sinkNode |
-      DataFlow3::PathGraph::subpaths(arg.(WrapPathNode).inner(), par.(WrapPathNode).inner(),
-        ret.(WrapPathNode).inner(), sinkNode.inner()) and
-      out.(FinalPathNode).inner() = adjustedSink(sinkNode.inner().getNode())
-    )
-    or
-    // Same for the first node
-    exists(WrapPathNode sourceNode |
-      DataFlow3::PathGraph::subpaths(sourceNode.inner(), par.(WrapPathNode).inner(),
-        ret.(WrapPathNode).inner(), out.(WrapPathNode).inner()) and
-      sourceNode.inner().getNode() = getNodeForExpr(arg.(InitialPathNode).inner())
-    )
-    or
-    // Finally, handle the case where the path goes directly from a source to a
-    // sink, meaning that they both need to be translated.
-    exists(WrapPathNode sinkNode, WrapPathNode sourceNode |
-      DataFlow3::PathGraph::subpaths(sourceNode.inner(), par.(WrapPathNode).inner(),
-        ret.(WrapPathNode).inner(), sinkNode.inner()) and
-      sourceNode.inner().getNode() = getNodeForExpr(arg.(InitialPathNode).inner()) and
-      out.(FinalPathNode).inner() = adjustedSink(sinkNode.inner().getNode())
-    )
-  }
-
-  /** Holds if `n` is a node in the graph of data flow path explanations. */
-  query predicate nodes(PathNode n, string key, string val) {
-    key = "semmle.label" and val = n.toString()
-  }
-
-  /**
-   * Holds if `tainted` may contain taint from `source`, where `sourceNode` and
-   * `sinkNode` are the corresponding `PathNode`s that can be used in a query
-   * to provide path explanations. Extend `TaintTrackingConfiguration` to use
-   * this predicate.
-   *
-   * A tainted expression is either directly user input, or is computed from
-   * user input in a way that users can probably control the exact output of
-   * the computation.
-   */
-  predicate taintedWithPath(Expr source, Element tainted, PathNode sourceNode, PathNode sinkNode) {
-    exists(AdjustedConfiguration cfg, DataFlow3::Node flowSource, DataFlow3::Node flowSink |
-      source = sourceNode.(InitialPathNode).inner() and
-      flowSource = getNodeForExpr(source) and
-      cfg.hasFlow(flowSource, flowSink) and
-      tainted = adjustedSink(flowSink) and
-      tainted = sinkNode.(FinalPathNode).inner()
-    )
-  }
-
-  private predicate isGlobalVariablePathNode(WrapPathNode n) {
-    n.inner().getNode().asVariable() instanceof GlobalOrNamespaceVariable
-  }
-
-  private predicate edgesWithoutGlobals(PathNode a, PathNode b) {
-    edges(a, b) and
-    not isGlobalVariablePathNode(a) and
-    not isGlobalVariablePathNode(b)
-  }
-
-  /**
-   * Holds if `tainted` can be reached from a taint source without passing
-   * through a global variable.
-   */
-  predicate taintedWithoutGlobals(Element tainted) {
-    exists(AdjustedConfiguration cfg, PathNode sourceNode, FinalPathNode sinkNode |
-      cfg.isSource(sourceNode.(WrapPathNode).inner().getNode()) and
-      edgesWithoutGlobals+(sourceNode, sinkNode) and
-      tainted = sinkNode.inner()
-    )
-  }
-}
+deprecated module TaintedWithPath = DefaultTaintTrackingImpl::TaintedWithPath;
diff --git a/cpp/ql/lib/semmle/code/cpp/ir/dataflow/internal/DefaultTaintTrackingImpl.qll b/cpp/ql/lib/semmle/code/cpp/ir/dataflow/internal/DefaultTaintTrackingImpl.qll
new file mode 100644
index 00000000000..d6a43ed2975
--- /dev/null
+++ b/cpp/ql/lib/semmle/code/cpp/ir/dataflow/internal/DefaultTaintTrackingImpl.qll
@@ -0,0 +1,644 @@
+/**
+ * INTERNAL: Do not use.
+ *
+ * An IR taint tracking library that uses an IR DataFlow configuration to track
+ * taint from user inputs as defined by `semmle.code.cpp.security.Security`.
+ */
+
+import cpp
+import semmle.code.cpp.security.Security
+private import semmle.code.cpp.ir.dataflow.DataFlow
+private import semmle.code.cpp.ir.dataflow.internal.DataFlowUtil
+private import semmle.code.cpp.ir.dataflow.DataFlow3
+private import semmle.code.cpp.ir.IR
+private import semmle.code.cpp.ir.dataflow.ResolveCall
+private import semmle.code.cpp.controlflow.IRGuards
+private import semmle.code.cpp.models.interfaces.Taint
+private import semmle.code.cpp.models.interfaces.DataFlow
+private import semmle.code.cpp.ir.dataflow.TaintTracking
+private import semmle.code.cpp.ir.dataflow.TaintTracking2
+private import semmle.code.cpp.ir.dataflow.TaintTracking3
+private import semmle.code.cpp.ir.dataflow.internal.ModelUtil
+
+/**
+ * A predictable instruction is one where an external user can predict
+ * the value. For example, a literal in the source code is considered
+ * predictable.
+ */
+private predicate predictableInstruction(Instruction instr) {
+  instr instanceof ConstantInstruction
+  or
+  instr instanceof StringConstantInstruction
+  or
+  // This could be a conversion on a string literal
+  predictableInstruction(instr.(UnaryInstruction).getUnary())
+}
+
+/**
+ * Functions that we should only allow taint to flow through (to the return
+ * value) if all but the source argument are 'predictable'.  This is done to
+ * emulate the old security library's implementation rather than due to any
+ * strong belief that this is the right approach.
+ *
+ * Note that the list itself is not very principled; it consists of all the
+ * functions listed in the old security library's [default] `isPureFunction`
+ * that have more than one argument, but are not in the old taint tracking
+ * library's `returnArgument` predicate.
+ */
+predicate predictableOnlyFlow(string name) {
+  name =
+    [
+      "strcasestr", "strchnul", "strchr", "strchrnul", "strcmp", "strcspn", "strncmp", "strndup",
+      "strnlen", "strrchr", "strspn", "strstr", "strtod", "strtof", "strtol", "strtoll", "strtoq",
+      "strtoul"
+    ]
+}
+
+private DataFlow::Node getNodeForSource(Expr source) {
+  isUserInput(source, _) and
+  result = getNodeForExpr(source)
+}
+
+private DataFlow::Node getNodeForExpr(Expr node) {
+  result = DataFlow::exprNode(node)
+  or
+  // Some of the sources in `isUserInput` are intended to match the value of
+  // an expression, while others (those modeled below) are intended to match
+  // the taint that propagates out of an argument, like the `char *` argument
+  // to `gets`. It's impossible here to tell which is which, but the "access
+  // to argv" source is definitely not intended to match an output argument,
+  // and it causes false positives if we let it.
+  //
+  // This case goes together with the similar (but not identical) rule in
+  // `nodeIsBarrierIn`.
+  result = DataFlow::definitionByReferenceNodeFromArgument(node) and
+  not argv(node.(VariableAccess).getTarget())
+}
+
+private class DefaultTaintTrackingCfg extends TaintTracking::Configuration {
+  DefaultTaintTrackingCfg() { this = "DefaultTaintTrackingCfg" }
+
+  override predicate isSource(DataFlow::Node source) { source = getNodeForSource(_) }
+
+  override predicate isSink(DataFlow::Node sink) { exists(adjustedSink(sink)) }
+
+  override predicate isSanitizer(DataFlow::Node node) { nodeIsBarrier(node) }
+
+  override predicate isSanitizerIn(DataFlow::Node node) { nodeIsBarrierIn(node) }
+}
+
+private class ToGlobalVarTaintTrackingCfg extends TaintTracking::Configuration {
+  ToGlobalVarTaintTrackingCfg() { this = "GlobalVarTaintTrackingCfg" }
+
+  override predicate isSource(DataFlow::Node source) { source = getNodeForSource(_) }
+
+  override predicate isSink(DataFlow::Node sink) {
+    sink.asVariable() instanceof GlobalOrNamespaceVariable
+  }
+
+  override predicate isAdditionalTaintStep(DataFlow::Node n1, DataFlow::Node n2) {
+    writesVariable(n1.asInstruction(), n2.asVariable().(GlobalOrNamespaceVariable))
+    or
+    readsVariable(n2.asInstruction(), n1.asVariable().(GlobalOrNamespaceVariable))
+  }
+
+  override predicate isSanitizer(DataFlow::Node node) { nodeIsBarrier(node) }
+
+  override predicate isSanitizerIn(DataFlow::Node node) { nodeIsBarrierIn(node) }
+}
+
+private class FromGlobalVarTaintTrackingCfg extends TaintTracking2::Configuration {
+  FromGlobalVarTaintTrackingCfg() { this = "FromGlobalVarTaintTrackingCfg" }
+
+  override predicate isSource(DataFlow::Node source) {
+    // This set of sources should be reasonably small, which is good for
+    // performance since the set of sinks is very large.
+    exists(ToGlobalVarTaintTrackingCfg otherCfg | otherCfg.hasFlowTo(source))
+  }
+
+  override predicate isSink(DataFlow::Node sink) { exists(adjustedSink(sink)) }
+
+  override predicate isAdditionalTaintStep(DataFlow::Node n1, DataFlow::Node n2) {
+    // Additional step for flow out of variables. There is no flow _into_
+    // variables in this configuration, so this step only serves to take flow
+    // out of a variable that's a source.
+    readsVariable(n2.asInstruction(), n1.asVariable())
+  }
+
+  override predicate isSanitizer(DataFlow::Node node) { nodeIsBarrier(node) }
+
+  override predicate isSanitizerIn(DataFlow::Node node) { nodeIsBarrierIn(node) }
+}
+
+private predicate readsVariable(LoadInstruction load, Variable var) {
+  load.getSourceAddress().(VariableAddressInstruction).getAstVariable() = var
+}
+
+private predicate writesVariable(StoreInstruction store, Variable var) {
+  store.getDestinationAddress().(VariableAddressInstruction).getAstVariable() = var
+}
+
+/**
+ * A variable that has any kind of upper-bound check anywhere in the program.  This is
+ * biased towards being inclusive because there are a lot of valid ways of doing an
+ * upper bounds checks if we don't consider where it occurs, for example:
+ * ```
+ *   if (x < 10) { sink(x); }
+ *
+ *   if (10 > y) { sink(y); }
+ *
+ *   if (z > 10) { z = 10; }
+ *   sink(z);
+ * ```
+ */
+// TODO: This coarse overapproximation, ported from the old taint tracking
+// library, could be replaced with an actual semantic check that a particular
+// variable _access_ is guarded by an upper-bound check. We probably don't want
+// to do this right away since it could expose a lot of FPs that were
+// previously suppressed by this predicate by coincidence.
+private predicate hasUpperBoundsCheck(Variable var) {
+  exists(RelationalOperation oper, VariableAccess access |
+    oper.getAnOperand() = access and
+    access.getTarget() = var and
+    // Comparing to 0 is not an upper bound check
+    not oper.getAnOperand().getValue() = "0"
+  )
+}
+
+private predicate nodeIsBarrierEqualityCandidate(
+  DataFlow::Node node, Operand access, Variable checkedVar
+) {
+  readsVariable(node.asInstruction(), checkedVar) and
+  any(IRGuardCondition guard).ensuresEq(access, _, _, node.asInstruction().getBlock(), true)
+}
+
+cached
+private module Cached {
+  cached
+  predicate nodeIsBarrier(DataFlow::Node node) {
+    exists(Variable checkedVar |
+      readsVariable(node.asInstruction(), checkedVar) and
+      hasUpperBoundsCheck(checkedVar)
+    )
+    or
+    exists(Variable checkedVar, Operand access |
+      /*
+       * This node is guarded by a condition that forces the accessed variable
+       * to equal something else.  For example:
+       * ```
+       * x = taintsource()
+       * if (x == 10) {
+       *   taintsink(x); // not considered tainted
+       * }
+       * ```
+       */
+
+      nodeIsBarrierEqualityCandidate(node, access, checkedVar) and
+      readsVariable(access.getDef(), checkedVar)
+    )
+  }
+
+  cached
+  predicate nodeIsBarrierIn(DataFlow::Node node) {
+    // don't use dataflow into taint sources, as this leads to duplicate results.
+    exists(Expr source | isUserInput(source, _) |
+      node = DataFlow::exprNode(source)
+      or
+      // This case goes together with the similar (but not identical) rule in
+      // `getNodeForSource`.
+      node = DataFlow::definitionByReferenceNodeFromArgument(source)
+    )
+    or
+    // don't use dataflow into binary instructions if both operands are unpredictable
+    exists(BinaryInstruction iTo |
+      iTo = node.asInstruction() and
+      not predictableInstruction(iTo.getLeft()) and
+      not predictableInstruction(iTo.getRight()) and
+      // propagate taint from either the pointer or the offset, regardless of predictability
+      not iTo instanceof PointerArithmeticInstruction
+    )
+    or
+    // don't use dataflow through calls to pure functions if two or more operands
+    // are unpredictable
+    exists(Instruction iFrom1, Instruction iFrom2, CallInstruction iTo |
+      iTo = node.asInstruction() and
+      isPureFunction(iTo.getStaticCallTarget().getName()) and
+      iFrom1 = iTo.getAnArgument() and
+      iFrom2 = iTo.getAnArgument() and
+      not predictableInstruction(iFrom1) and
+      not predictableInstruction(iFrom2) and
+      iFrom1 != iFrom2
+    )
+  }
+
+  cached
+  Element adjustedSink(DataFlow::Node sink) {
+    // TODO: is it more appropriate to use asConvertedExpr here and avoid
+    // `getConversion*`? Or will that cause us to miss some cases where there's
+    // flow to a conversion (like a `ReferenceDereferenceExpr`) and we want to
+    // pretend there was flow to the converted `Expr` for the sake of
+    // compatibility.
+    sink.asExpr().getConversion*() = result
+    or
+    // For compatibility, send flow from arguments to parameters, even for
+    // functions with no body.
+    exists(FunctionCall call, int i |
+      sink.asExpr() = call.getArgument(pragma[only_bind_into](i)) and
+      result = resolveCall(call).getParameter(pragma[only_bind_into](i))
+    )
+    or
+    // For compatibility, send flow into a `Variable` if there is flow to any
+    // Load or Store of that variable.
+    exists(CopyInstruction copy |
+      copy.getSourceValue() = sink.asInstruction() and
+      (
+        readsVariable(copy, result) or
+        writesVariable(copy, result)
+      ) and
+      not hasUpperBoundsCheck(result)
+    )
+    or
+    // For compatibility, send flow into a `NotExpr` even if it's part of a
+    // short-circuiting condition and thus might get skipped.
+    result.(NotExpr).getOperand() = sink.asExpr()
+    or
+    // Taint postfix and prefix crement operations when their operand is tainted.
+    result.(CrementOperation).getAnOperand() = sink.asExpr()
+    or
+    // Taint `e1 += e2`, `e &= e2` and friends when `e1` or `e2` is tainted.
+    result.(AssignOperation).getAnOperand() = sink.asExpr()
+    or
+    result =
+      sink.asOperand()
+          .(SideEffectOperand)
+          .getUse()
+          .(ReadSideEffectInstruction)
+          .getArgumentDef()
+          .getUnconvertedResultExpression()
+  }
+
+  /**
+   * Step to return value of a modeled function when an input taints the
+   * dereference of the return value.
+   */
+  cached
+  predicate additionalTaintStep(DataFlow::Node n1, DataFlow::Node n2) {
+    exists(CallInstruction call, Function func, FunctionInput modelIn, FunctionOutput modelOut |
+      n1.asOperand() = callInput(call, modelIn) and
+      (
+        func.(TaintFunction).hasTaintFlow(modelIn, modelOut)
+        or
+        func.(DataFlowFunction).hasDataFlow(modelIn, modelOut)
+      ) and
+      call.getStaticCallTarget() = func and
+      modelOut.isReturnValueDeref() and
+      call = n2.asInstruction()
+    )
+  }
+}
+
+private import Cached
+
+/**
+ * Holds if `tainted` may contain taint from `source`.
+ *
+ * A tainted expression is either directly user input, or is
+ * computed from user input in a way that users can probably
+ * control the exact output of the computation.
+ *
+ * This doesn't include data flow through global variables.
+ * If you need that you must call `taintedIncludingGlobalVars`.
+ */
+cached
+predicate tainted(Expr source, Element tainted) {
+  exists(DefaultTaintTrackingCfg cfg, DataFlow::Node sink |
+    cfg.hasFlow(getNodeForSource(source), sink) and
+    tainted = adjustedSink(sink)
+  )
+}
+
+/**
+ * Holds if `tainted` may contain taint from `source`, where the taint passed
+ * through a global variable named `globalVar`.
+ *
+ * A tainted expression is either directly user input, or is
+ * computed from user input in a way that users can probably
+ * control the exact output of the computation.
+ *
+ * This version gives the same results as tainted but also includes
+ * data flow through global variables.
+ *
+ * The parameter `globalVar` is the qualified name of the last global variable
+ * used to move the value from source to tainted. If the taint did not pass
+ * through a global variable, then `globalVar = ""`.
+ */
+cached
+predicate taintedIncludingGlobalVars(Expr source, Element tainted, string globalVar) {
+  tainted(source, tainted) and
+  globalVar = ""
+  or
+  exists(
+    ToGlobalVarTaintTrackingCfg toCfg, FromGlobalVarTaintTrackingCfg fromCfg,
+    DataFlow::VariableNode variableNode, GlobalOrNamespaceVariable global, DataFlow::Node sink
+  |
+    global = variableNode.getVariable() and
+    toCfg.hasFlow(getNodeForSource(source), variableNode) and
+    fromCfg.hasFlow(variableNode, sink) and
+    tainted = adjustedSink(sink) and
+    global = globalVarFromId(globalVar)
+  )
+}
+
+/**
+ * Gets the global variable whose qualified name is `id`. Use this predicate
+ * together with `taintedIncludingGlobalVars`. Example:
+ *
+ * ```
+ * exists(string varName |
+ *   taintedIncludingGlobalVars(source, tainted, varName) and
+ *   var = globalVarFromId(varName)
+ * )
+ * ```
+ */
+GlobalOrNamespaceVariable globalVarFromId(string id) { id = result.getQualifiedName() }
+
+/**
+ * Provides definitions for augmenting source/sink pairs with data-flow paths
+ * between them. From a `@kind path-problem` query, import this module in the
+ * global scope, extend `TaintTrackingConfiguration`, and use `taintedWithPath`
+ * in place of `tainted`.
+ *
+ * Importing this module will also import the query predicates that contain the
+ * taint paths.
+ */
+module TaintedWithPath {
+  private newtype TSingleton = MkSingleton()
+
+  /**
+   * A taint-tracking configuration that matches sources and sinks in the same
+   * way as the `tainted` predicate.
+   *
+   * Override `isSink` and `taintThroughGlobals` as needed, but do not provide
+   * a characteristic predicate.
+   */
+  class TaintTrackingConfiguration extends TSingleton {
+    /** Override this to specify which elements are sources in this configuration. */
+    predicate isSource(Expr source) { exists(getNodeForSource(source)) }
+
+    /** Override this to specify which elements are sinks in this configuration. */
+    abstract predicate isSink(Element e);
+
+    /** Override this to specify which expressions are barriers in this configuration. */
+    predicate isBarrier(Expr e) { nodeIsBarrier(getNodeForExpr(e)) }
+
+    /**
+     * Override this predicate to `any()` to allow taint to flow through global
+     * variables.
+     */
+    predicate taintThroughGlobals() { none() }
+
+    /** Gets a textual representation of this element. */
+    string toString() { result = "TaintTrackingConfiguration" }
+  }
+
+  private class AdjustedConfiguration extends TaintTracking3::Configuration {
+    AdjustedConfiguration() { this = "AdjustedConfiguration" }
+
+    override predicate isSource(DataFlow::Node source) {
+      exists(TaintTrackingConfiguration cfg, Expr e |
+        cfg.isSource(e) and source = getNodeForExpr(e)
+      )
+    }
+
+    override predicate isSink(DataFlow::Node sink) {
+      exists(TaintTrackingConfiguration cfg | cfg.isSink(adjustedSink(sink)))
+    }
+
+    override predicate isAdditionalTaintStep(DataFlow::Node n1, DataFlow::Node n2) {
+      // Steps into and out of global variables
+      exists(TaintTrackingConfiguration cfg | cfg.taintThroughGlobals() |
+        writesVariable(n1.asInstruction(), n2.asVariable().(GlobalOrNamespaceVariable))
+        or
+        readsVariable(n2.asInstruction(), n1.asVariable().(GlobalOrNamespaceVariable))
+      )
+      or
+      additionalTaintStep(n1, n2)
+    }
+
+    override predicate isSanitizer(DataFlow::Node node) {
+      exists(TaintTrackingConfiguration cfg, Expr e | cfg.isBarrier(e) and node = getNodeForExpr(e))
+    }
+
+    override predicate isSanitizerIn(DataFlow::Node node) { nodeIsBarrierIn(node) }
+  }
+
+  /*
+   * A sink `Element` may map to multiple `DataFlowX::PathNode`s via (the
+   * inverse of) `adjustedSink`. For example, an `Expr` maps to all its
+   * conversions, and a `Variable` maps to all loads and stores from it. Because
+   * the path node is part of the tuple that constitutes the alert, this leads
+   * to duplicate alerts.
+   *
+   * To avoid showing duplicates, we edit the graph to replace the final node
+   * coming from the data-flow library with a node that matches exactly the
+   * `Element` sink that's requested.
+   *
+   * The same is done for sources.
+   */
+
+  private newtype TPathNode =
+    TWrapPathNode(DataFlow3::PathNode n) or
+    // There's a single newtype constructor for both sources and sinks since
+    // that makes it easiest to deal with the case where source = sink.
+    TEndpointPathNode(Element e) {
+      exists(AdjustedConfiguration cfg, DataFlow3::Node sourceNode, DataFlow3::Node sinkNode |
+        cfg.hasFlow(sourceNode, sinkNode)
+      |
+        sourceNode = getNodeForExpr(e) and
+        exists(TaintTrackingConfiguration ttCfg | ttCfg.isSource(e))
+        or
+        e = adjustedSink(sinkNode) and
+        exists(TaintTrackingConfiguration ttCfg | ttCfg.isSink(e))
+      )
+    }
+
+  /** An opaque type used for the nodes of a data-flow path. */
+  class PathNode extends TPathNode {
+    /** Gets a textual representation of this element. */
+    string toString() { none() }
+
+    /**
+     * Holds if this element is at the specified location.
+     * The location spans column `startcolumn` of line `startline` to
+     * column `endcolumn` of line `endline` in file `filepath`.
+     * For more information, see
+     * [Locations](https://codeql.github.com/docs/writing-codeql-queries/providing-locations-in-codeql-queries/).
+     */
+    predicate hasLocationInfo(
+      string filepath, int startline, int startcolumn, int endline, int endcolumn
+    ) {
+      none()
+    }
+  }
+
+  /**
+   * INTERNAL: Do not use.
+   */
+  module Private {
+    /** Gets a predecessor `PathNode` of `pathNode`, if any. */
+    PathNode getAPredecessor(PathNode pathNode) { edges(result, pathNode) }
+
+    /** Gets the element that `pathNode` wraps, if any. */
+    Element getElementFromPathNode(PathNode pathNode) {
+      exists(DataFlow::Node node | node = pathNode.(WrapPathNode).inner().getNode() |
+        result = node.asInstruction().getAst()
+        or
+        result = node.asOperand().getDef().getAst()
+      )
+      or
+      result = pathNode.(EndpointPathNode).inner()
+    }
+  }
+
+  private class WrapPathNode extends PathNode, TWrapPathNode {
+    DataFlow3::PathNode inner() { this = TWrapPathNode(result) }
+
+    override string toString() { result = this.inner().toString() }
+
+    override predicate hasLocationInfo(
+      string filepath, int startline, int startcolumn, int endline, int endcolumn
+    ) {
+      this.inner().hasLocationInfo(filepath, startline, startcolumn, endline, endcolumn)
+    }
+  }
+
+  private class EndpointPathNode extends PathNode, TEndpointPathNode {
+    Expr inner() { this = TEndpointPathNode(result) }
+
+    override string toString() { result = this.inner().toString() }
+
+    override predicate hasLocationInfo(
+      string filepath, int startline, int startcolumn, int endline, int endcolumn
+    ) {
+      this.inner()
+          .getLocation()
+          .hasLocationInfo(filepath, startline, startcolumn, endline, endcolumn)
+    }
+  }
+
+  /** A PathNode whose `Element` is a source. It may also be a sink. */
+  private class InitialPathNode extends EndpointPathNode {
+    InitialPathNode() { exists(TaintTrackingConfiguration cfg | cfg.isSource(this.inner())) }
+  }
+
+  /** A PathNode whose `Element` is a sink. It may also be a source. */
+  private class FinalPathNode extends EndpointPathNode {
+    FinalPathNode() { exists(TaintTrackingConfiguration cfg | cfg.isSink(this.inner())) }
+  }
+
+  /** Holds if `(a,b)` is an edge in the graph of data flow path explanations. */
+  query predicate edges(PathNode a, PathNode b) {
+    DataFlow3::PathGraph::edges(a.(WrapPathNode).inner(), b.(WrapPathNode).inner())
+    or
+    // To avoid showing trivial-looking steps, we _replace_ the last node instead
+    // of adding an edge out of it.
+    exists(WrapPathNode sinkNode |
+      DataFlow3::PathGraph::edges(a.(WrapPathNode).inner(), sinkNode.inner()) and
+      b.(FinalPathNode).inner() = adjustedSink(sinkNode.inner().getNode())
+    )
+    or
+    // Same for the first node
+    exists(WrapPathNode sourceNode |
+      DataFlow3::PathGraph::edges(sourceNode.inner(), b.(WrapPathNode).inner()) and
+      sourceNode.inner().getNode() = getNodeForExpr(a.(InitialPathNode).inner())
+    )
+    or
+    // Finally, handle the case where the path goes directly from a source to a
+    // sink, meaning that they both need to be translated.
+    exists(WrapPathNode sinkNode, WrapPathNode sourceNode |
+      DataFlow3::PathGraph::edges(sourceNode.inner(), sinkNode.inner()) and
+      sourceNode.inner().getNode() = getNodeForExpr(a.(InitialPathNode).inner()) and
+      b.(FinalPathNode).inner() = adjustedSink(sinkNode.inner().getNode())
+    )
+  }
+
+  /**
+   * Holds if there is flow from `arg` to `out` across a call that can by summarized by the flow
+   * from `par` to `ret` within it, in the graph of data flow path explanations.
+   */
+  query predicate subpaths(PathNode arg, PathNode par, PathNode ret, PathNode out) {
+    DataFlow3::PathGraph::subpaths(arg.(WrapPathNode).inner(), par.(WrapPathNode).inner(),
+      ret.(WrapPathNode).inner(), out.(WrapPathNode).inner())
+    or
+    // To avoid showing trivial-looking steps, we _replace_ the last node instead
+    // of adding an edge out of it.
+    exists(WrapPathNode sinkNode |
+      DataFlow3::PathGraph::subpaths(arg.(WrapPathNode).inner(), par.(WrapPathNode).inner(),
+        ret.(WrapPathNode).inner(), sinkNode.inner()) and
+      out.(FinalPathNode).inner() = adjustedSink(sinkNode.inner().getNode())
+    )
+    or
+    // Same for the first node
+    exists(WrapPathNode sourceNode |
+      DataFlow3::PathGraph::subpaths(sourceNode.inner(), par.(WrapPathNode).inner(),
+        ret.(WrapPathNode).inner(), out.(WrapPathNode).inner()) and
+      sourceNode.inner().getNode() = getNodeForExpr(arg.(InitialPathNode).inner())
+    )
+    or
+    // Finally, handle the case where the path goes directly from a source to a
+    // sink, meaning that they both need to be translated.
+    exists(WrapPathNode sinkNode, WrapPathNode sourceNode |
+      DataFlow3::PathGraph::subpaths(sourceNode.inner(), par.(WrapPathNode).inner(),
+        ret.(WrapPathNode).inner(), sinkNode.inner()) and
+      sourceNode.inner().getNode() = getNodeForExpr(arg.(InitialPathNode).inner()) and
+      out.(FinalPathNode).inner() = adjustedSink(sinkNode.inner().getNode())
+    )
+  }
+
+  /** Holds if `n` is a node in the graph of data flow path explanations. */
+  query predicate nodes(PathNode n, string key, string val) {
+    key = "semmle.label" and val = n.toString()
+  }
+
+  /**
+   * Holds if `tainted` may contain taint from `source`, where `sourceNode` and
+   * `sinkNode` are the corresponding `PathNode`s that can be used in a query
+   * to provide path explanations. Extend `TaintTrackingConfiguration` to use
+   * this predicate.
+   *
+   * A tainted expression is either directly user input, or is computed from
+   * user input in a way that users can probably control the exact output of
+   * the computation.
+   */
+  predicate taintedWithPath(Expr source, Element tainted, PathNode sourceNode, PathNode sinkNode) {
+    exists(AdjustedConfiguration cfg, DataFlow3::Node flowSource, DataFlow3::Node flowSink |
+      source = sourceNode.(InitialPathNode).inner() and
+      flowSource = getNodeForExpr(source) and
+      cfg.hasFlow(flowSource, flowSink) and
+      tainted = adjustedSink(flowSink) and
+      tainted = sinkNode.(FinalPathNode).inner()
+    )
+  }
+
+  private predicate isGlobalVariablePathNode(WrapPathNode n) {
+    n.inner().getNode().asVariable() instanceof GlobalOrNamespaceVariable
+  }
+
+  private predicate edgesWithoutGlobals(PathNode a, PathNode b) {
+    edges(a, b) and
+    not isGlobalVariablePathNode(a) and
+    not isGlobalVariablePathNode(b)
+  }
+
+  /**
+   * Holds if `tainted` can be reached from a taint source without passing
+   * through a global variable.
+   */
+  predicate taintedWithoutGlobals(Element tainted) {
+    exists(AdjustedConfiguration cfg, PathNode sourceNode, FinalPathNode sinkNode |
+      cfg.isSource(sourceNode.(WrapPathNode).inner().getNode()) and
+      edgesWithoutGlobals+(sourceNode, sinkNode) and
+      tainted = sinkNode.inner()
+    )
+  }
+}
diff --git a/cpp/ql/lib/semmle/code/cpp/security/TaintTrackingImpl.qll b/cpp/ql/lib/semmle/code/cpp/security/TaintTrackingImpl.qll
index 532cf53e2d4..4d64edc2670 100644
--- a/cpp/ql/lib/semmle/code/cpp/security/TaintTrackingImpl.qll
+++ b/cpp/ql/lib/semmle/code/cpp/security/TaintTrackingImpl.qll
@@ -121,7 +121,9 @@ private predicate moveToDependingOnSide(Expr src, Expr dest) {
  *   (this is done to avoid false positives). Because of this we need to track if the tainted element came from an argument
  *   or not, and for that we use destFromArg
  */
-private predicate betweenFunctionsValueMoveTo(Element src, Element dest, boolean destFromArg) {
+deprecated private predicate betweenFunctionsValueMoveTo(
+  Element src, Element dest, boolean destFromArg
+) {
   not unreachable(src) and
   not unreachable(dest) and
   (
@@ -162,13 +164,13 @@ private predicate betweenFunctionsValueMoveTo(Element src, Element dest, boolean
 // predicate folding for proper join-order
 // bad magic: pushes down predicate that ruins join-order
 pragma[nomagic]
-private predicate resolveCallWithParam(Call call, Function called, int i, Parameter p) {
+deprecated private predicate resolveCallWithParam(Call call, Function called, int i, Parameter p) {
   called = resolveCall(call) and
   p = called.getParameter(i)
 }
 
 /** A variable for which flow through is allowed. */
-library class FlowVariable extends Variable {
+deprecated library class FlowVariable extends Variable {
   FlowVariable() {
     (
       this instanceof LocalScopeVariable or
@@ -179,11 +181,11 @@ library class FlowVariable extends Variable {
 }
 
 /** A local scope variable for which flow through is allowed. */
-library class FlowLocalScopeVariable extends Variable {
+deprecated library class FlowLocalScopeVariable extends Variable {
   FlowLocalScopeVariable() { this instanceof LocalScopeVariable }
 }
 
-private predicate insideFunctionValueMoveTo(Element src, Element dest) {
+deprecated private predicate insideFunctionValueMoveTo(Element src, Element dest) {
   not unreachable(src) and
   not unreachable(dest) and
   (
@@ -324,7 +326,7 @@ private predicate unionAccess(Variable v, Field f, FieldAccess a) {
   a.getQualifier() = v.getAnAccess()
 }
 
-GlobalOrNamespaceVariable globalVarFromId(string id) {
+deprecated GlobalOrNamespaceVariable globalVarFromId(string id) {
   if result instanceof NamespaceVariable
   then id = result.getNamespace() + "::" + result.getName()
   else id = result.getName()
@@ -353,7 +355,7 @@ private predicate hasUpperBoundsCheck(Variable var) {
 }
 
 cached
-private predicate taintedWithArgsAndGlobalVars(
+deprecated private predicate taintedWithArgsAndGlobalVars(
   Element src, Element dest, boolean destFromArg, string globalVar
 ) {
   isUserInput(src, _) and
@@ -395,7 +397,7 @@ private predicate taintedWithArgsAndGlobalVars(
  * This doesn't include data flow through global variables.
  * If you need that you must call taintedIncludingGlobalVars.
  */
-predicate tainted(Expr source, Element tainted) {
+deprecated predicate tainted(Expr source, Element tainted) {
   taintedWithArgsAndGlobalVars(source, tainted, _, "")
 }
 
@@ -410,7 +412,7 @@ predicate tainted(Expr source, Element tainted) {
  * The parameter `globalVar` is the name of the last global variable used to move the
  * value from source to tainted.
  */
-predicate taintedIncludingGlobalVars(Expr source, Element tainted, string globalVar) {
+deprecated predicate taintedIncludingGlobalVars(Expr source, Element tainted, string globalVar) {
   taintedWithArgsAndGlobalVars(source, tainted, _, globalVar)
 }
 
@@ -541,14 +543,14 @@ private predicate returnArgument(Function f, int sourceArg) {
  * targets a virtual method, simple data flow analysis is performed
  * in order to identify target(s).
  */
-Function resolveCall(Call call) {
+deprecated Function resolveCall(Call call) {
   result = call.getTarget()
   or
   result = call.(DataSensitiveCallExpr).resolve()
 }
 
 /** A data sensitive call expression. */
-abstract library class DataSensitiveCallExpr extends Expr {
+abstract deprecated library class DataSensitiveCallExpr extends Expr {
   DataSensitiveCallExpr() { not unreachable(this) }
 
   abstract Expr getSrc();
@@ -579,7 +581,7 @@ abstract library class DataSensitiveCallExpr extends Expr {
 }
 
 /** Call through a function pointer. */
-library class DataSensitiveExprCall extends DataSensitiveCallExpr, ExprCall {
+deprecated library class DataSensitiveExprCall extends DataSensitiveCallExpr, ExprCall {
   override Expr getSrc() { result = getExpr() }
 
   override Function resolve() {
@@ -588,7 +590,8 @@ library class DataSensitiveExprCall extends DataSensitiveCallExpr, ExprCall {
 }
 
 /** Call to a virtual function. */
-library class DataSensitiveOverriddenFunctionCall extends DataSensitiveCallExpr, FunctionCall {
+deprecated library class DataSensitiveOverriddenFunctionCall extends DataSensitiveCallExpr,
+  FunctionCall {
   DataSensitiveOverriddenFunctionCall() {
     exists(getTarget().(VirtualFunction).getAnOverridingFunction())
   }
diff --git a/cpp/ql/src/Security/CWE/CWE-079/CgiXss.ql b/cpp/ql/src/Security/CWE/CWE-079/CgiXss.ql
index bb38609927e..ffadb381a76 100644
--- a/cpp/ql/src/Security/CWE/CWE-079/CgiXss.ql
+++ b/cpp/ql/src/Security/CWE/CWE-079/CgiXss.ql
@@ -13,7 +13,7 @@
 
 import cpp
 import semmle.code.cpp.commons.Environment
-import semmle.code.cpp.security.TaintTracking
+import semmle.code.cpp.ir.dataflow.internal.DefaultTaintTrackingImpl
 import TaintedWithPath
 
 /** A call that prints its arguments to `stdout`. */
diff --git a/cpp/ql/src/Security/CWE/CWE-089/SqlTainted.ql b/cpp/ql/src/Security/CWE/CWE-089/SqlTainted.ql
index b46314d8454..f3ff16e8f7b 100644
--- a/cpp/ql/src/Security/CWE/CWE-089/SqlTainted.ql
+++ b/cpp/ql/src/Security/CWE/CWE-089/SqlTainted.ql
@@ -15,7 +15,7 @@
 import cpp
 import semmle.code.cpp.security.Security
 import semmle.code.cpp.security.FunctionWithWrappers
-import semmle.code.cpp.security.TaintTracking
+import semmle.code.cpp.ir.dataflow.internal.DefaultTaintTrackingImpl
 import TaintedWithPath
 
 class SqlLikeFunction extends FunctionWithWrappers {
diff --git a/cpp/ql/src/Security/CWE/CWE-114/UncontrolledProcessOperation.ql b/cpp/ql/src/Security/CWE/CWE-114/UncontrolledProcessOperation.ql
index 7cbb0d81d49..883a6b07423 100644
--- a/cpp/ql/src/Security/CWE/CWE-114/UncontrolledProcessOperation.ql
+++ b/cpp/ql/src/Security/CWE/CWE-114/UncontrolledProcessOperation.ql
@@ -14,7 +14,7 @@
 
 import cpp
 import semmle.code.cpp.security.Security
-import semmle.code.cpp.security.TaintTracking
+import semmle.code.cpp.ir.dataflow.internal.DefaultTaintTrackingImpl
 import TaintedWithPath
 
 predicate isProcessOperationExplanation(Expr arg, string processOperation) {
diff --git a/cpp/ql/src/Security/CWE/CWE-120/UnboundedWrite.ql b/cpp/ql/src/Security/CWE/CWE-120/UnboundedWrite.ql
index a2d74e7557a..8f8d98900f2 100644
--- a/cpp/ql/src/Security/CWE/CWE-120/UnboundedWrite.ql
+++ b/cpp/ql/src/Security/CWE/CWE-120/UnboundedWrite.ql
@@ -16,7 +16,7 @@
 
 import semmle.code.cpp.security.BufferWrite
 import semmle.code.cpp.security.Security
-import semmle.code.cpp.security.TaintTracking
+import semmle.code.cpp.ir.dataflow.internal.DefaultTaintTrackingImpl
 import TaintedWithPath
 
 /*
diff --git a/cpp/ql/src/Security/CWE/CWE-134/UncontrolledFormatString.ql b/cpp/ql/src/Security/CWE/CWE-134/UncontrolledFormatString.ql
index 11cbfe16a0d..3a5cb7931b2 100644
--- a/cpp/ql/src/Security/CWE/CWE-134/UncontrolledFormatString.ql
+++ b/cpp/ql/src/Security/CWE/CWE-134/UncontrolledFormatString.ql
@@ -16,7 +16,7 @@
 import cpp
 import semmle.code.cpp.security.Security
 import semmle.code.cpp.security.FunctionWithWrappers
-import semmle.code.cpp.security.TaintTracking
+import semmle.code.cpp.ir.dataflow.internal.DefaultTaintTrackingImpl
 import TaintedWithPath
 
 class Configuration extends TaintTrackingConfiguration {
diff --git a/cpp/ql/src/Security/CWE/CWE-134/UncontrolledFormatStringThroughGlobalVar.ql b/cpp/ql/src/Security/CWE/CWE-134/UncontrolledFormatStringThroughGlobalVar.ql
index a4fd672f518..b37e34c296c 100644
--- a/cpp/ql/src/Security/CWE/CWE-134/UncontrolledFormatStringThroughGlobalVar.ql
+++ b/cpp/ql/src/Security/CWE/CWE-134/UncontrolledFormatStringThroughGlobalVar.ql
@@ -16,7 +16,7 @@
 import cpp
 import semmle.code.cpp.security.FunctionWithWrappers
 import semmle.code.cpp.security.Security
-import semmle.code.cpp.security.TaintTracking
+import semmle.code.cpp.ir.dataflow.internal.DefaultTaintTrackingImpl
 import TaintedWithPath
 
 class Configuration extends TaintTrackingConfiguration {
diff --git a/cpp/ql/src/Security/CWE/CWE-170/ImproperNullTerminationTainted.ql b/cpp/ql/src/Security/CWE/CWE-170/ImproperNullTerminationTainted.ql
index 762fcf573d1..ff2e7e924df 100644
--- a/cpp/ql/src/Security/CWE/CWE-170/ImproperNullTerminationTainted.ql
+++ b/cpp/ql/src/Security/CWE/CWE-170/ImproperNullTerminationTainted.ql
@@ -12,7 +12,7 @@
 
 import cpp
 import semmle.code.cpp.commons.NullTermination
-import semmle.code.cpp.security.TaintTracking
+import semmle.code.cpp.ir.dataflow.internal.DefaultTaintTrackingImpl
 
 /** A user-controlled expression that may not be null terminated. */
 class TaintSource extends VariableAccess {
diff --git a/cpp/ql/src/Security/CWE/CWE-190/ArithmeticTainted.ql b/cpp/ql/src/Security/CWE/CWE-190/ArithmeticTainted.ql
index 350005194ac..07fbdc1ff44 100644
--- a/cpp/ql/src/Security/CWE/CWE-190/ArithmeticTainted.ql
+++ b/cpp/ql/src/Security/CWE/CWE-190/ArithmeticTainted.ql
@@ -15,7 +15,7 @@
 import cpp
 import semmle.code.cpp.security.Overflow
 import semmle.code.cpp.security.Security
-import semmle.code.cpp.security.TaintTracking
+import semmle.code.cpp.ir.dataflow.internal.DefaultTaintTrackingImpl
 import TaintedWithPath
 import Bounded
 
diff --git a/cpp/ql/src/Security/CWE/CWE-190/ArithmeticWithExtremeValues.ql b/cpp/ql/src/Security/CWE/CWE-190/ArithmeticWithExtremeValues.ql
index e54951b33e7..6034b4f5ffd 100644
--- a/cpp/ql/src/Security/CWE/CWE-190/ArithmeticWithExtremeValues.ql
+++ b/cpp/ql/src/Security/CWE/CWE-190/ArithmeticWithExtremeValues.ql
@@ -17,7 +17,7 @@
 import cpp
 import semmle.code.cpp.security.Overflow
 import semmle.code.cpp.security.Security
-import semmle.code.cpp.security.TaintTracking
+import semmle.code.cpp.ir.dataflow.internal.DefaultTaintTrackingImpl
 
 predicate isMaxValue(Expr mie) {
   exists(MacroInvocation mi |
diff --git a/cpp/ql/src/Security/CWE/CWE-190/IntegerOverflowTainted.ql b/cpp/ql/src/Security/CWE/CWE-190/IntegerOverflowTainted.ql
index 7cbd53ebf8a..19fe7df4c44 100644
--- a/cpp/ql/src/Security/CWE/CWE-190/IntegerOverflowTainted.ql
+++ b/cpp/ql/src/Security/CWE/CWE-190/IntegerOverflowTainted.ql
@@ -15,7 +15,7 @@
 
 import cpp
 import semmle.code.cpp.rangeanalysis.SimpleRangeAnalysis
-import semmle.code.cpp.security.TaintTracking
+import semmle.code.cpp.ir.dataflow.internal.DefaultTaintTrackingImpl
 
 /** Holds if `expr` might overflow. */
 predicate outOfBoundsExpr(Expr expr, string kind) {
diff --git a/cpp/ql/src/Security/CWE/CWE-290/AuthenticationBypass.ql b/cpp/ql/src/Security/CWE/CWE-290/AuthenticationBypass.ql
index 814c6aff21b..06c4ee5efe5 100644
--- a/cpp/ql/src/Security/CWE/CWE-290/AuthenticationBypass.ql
+++ b/cpp/ql/src/Security/CWE/CWE-290/AuthenticationBypass.ql
@@ -12,7 +12,7 @@
  *       external/cwe/cwe-290
  */
 
-import semmle.code.cpp.security.TaintTracking
+import semmle.code.cpp.ir.dataflow.internal.DefaultTaintTrackingImpl
 import TaintedWithPath
 
 predicate hardCodedAddressOrIP(StringLiteral txt) {
diff --git a/cpp/ql/src/Security/CWE/CWE-807/TaintedCondition.ql b/cpp/ql/src/Security/CWE/CWE-807/TaintedCondition.ql
index 14cd2a2188a..c5d7f2cbb61 100644
--- a/cpp/ql/src/Security/CWE/CWE-807/TaintedCondition.ql
+++ b/cpp/ql/src/Security/CWE/CWE-807/TaintedCondition.ql
@@ -12,7 +12,7 @@
  *       external/cwe/cwe-807
  */
 
-import semmle.code.cpp.security.TaintTracking
+import semmle.code.cpp.ir.dataflow.internal.DefaultTaintTrackingImpl
 import TaintedWithPath
 
 predicate sensitiveCondition(Expr condition, Expr raise) {
diff --git a/cpp/ql/test/library-tests/dataflow/DefaultTaintTracking/annotate_path_to_sink/tainted.expected b/cpp/ql/test/library-tests/dataflow/DefaultTaintTracking/annotate_path_to_sink/tainted.expected
index e69de29bb2d..6f00f28e455 100644
--- a/cpp/ql/test/library-tests/dataflow/DefaultTaintTracking/annotate_path_to_sink/tainted.expected
+++ b/cpp/ql/test/library-tests/dataflow/DefaultTaintTracking/annotate_path_to_sink/tainted.expected
@@ -0,0 +1,2 @@
+WARNING: Module TaintedWithPath has been deprecated and may be removed in future (tainted.ql:9,8-47)
+WARNING: Predicate tainted has been deprecated and may be removed in future (tainted.ql:20,49-74)
diff --git a/cpp/ql/test/library-tests/dataflow/DefaultTaintTracking/annotate_sinks_only/tainted.expected b/cpp/ql/test/library-tests/dataflow/DefaultTaintTracking/annotate_sinks_only/tainted.expected
index e69de29bb2d..5c235d0802d 100644
--- a/cpp/ql/test/library-tests/dataflow/DefaultTaintTracking/annotate_sinks_only/tainted.expected
+++ b/cpp/ql/test/library-tests/dataflow/DefaultTaintTracking/annotate_sinks_only/tainted.expected
@@ -0,0 +1,2 @@
+WARNING: Module TaintedWithPath has been deprecated and may be removed in future (tainted.ql:10,8-47)
+WARNING: Predicate tainted has been deprecated and may be removed in future (tainted.ql:21,3-28)
diff --git a/cpp/ql/test/library-tests/dataflow/DefaultTaintTracking/globals/global.expected b/cpp/ql/test/library-tests/dataflow/DefaultTaintTracking/globals/global.expected
index e69de29bb2d..b1d79c1079e 100644
--- a/cpp/ql/test/library-tests/dataflow/DefaultTaintTracking/globals/global.expected
+++ b/cpp/ql/test/library-tests/dataflow/DefaultTaintTracking/globals/global.expected
@@ -0,0 +1,2 @@
+WARNING: Predicate taintedIncludingGlobalVars has been deprecated and may be removed in future (global.ql:8,3-47)
+WARNING: Predicate taintedIncludingGlobalVars has been deprecated and may be removed in future (global.ql:12,3-53)
diff --git a/cpp/ql/test/library-tests/dataflow/security-taint/tainted.expected b/cpp/ql/test/library-tests/dataflow/security-taint/tainted.expected
index cdea135e301..b1e0d3635a3 100644
--- a/cpp/ql/test/library-tests/dataflow/security-taint/tainted.expected
+++ b/cpp/ql/test/library-tests/dataflow/security-taint/tainted.expected
@@ -1,3 +1,4 @@
+WARNING: Predicate taintedIncludingGlobalVars has been deprecated and may be removed in future (tainted.ql:5,3-29)
 | test.cpp:23:23:23:28 | call to getenv | test.cpp:8:24:8:25 | s1 |  |
 | test.cpp:23:23:23:28 | call to getenv | test.cpp:23:14:23:19 | envStr |  |
 | test.cpp:23:23:23:28 | call to getenv | test.cpp:23:23:23:28 | call to getenv |  |
diff --git a/cpp/ql/test/library-tests/dataflow/security-taint/tainted_diff.expected b/cpp/ql/test/library-tests/dataflow/security-taint/tainted_diff.expected
index ac95d5659a3..5d732c45866 100644
--- a/cpp/ql/test/library-tests/dataflow/security-taint/tainted_diff.expected
+++ b/cpp/ql/test/library-tests/dataflow/security-taint/tainted_diff.expected
@@ -1,3 +1,8 @@
+WARNING: Module TaintedWithPath has been deprecated and may be removed in future (tainted_diff.ql:5,35-54)
+WARNING: Module TaintedWithPath has been deprecated and may be removed in future (tainted_diff.ql:12,7-26)
+WARNING: Module TaintedWithPath has been deprecated and may be removed in future (tainted_diff.ql:16,3-22)
+WARNING: Predicate taintedIncludingGlobalVars has been deprecated and may be removed in future (tainted_diff.ql:11,3-34)
+WARNING: Predicate taintedIncludingGlobalVars has been deprecated and may be removed in future (tainted_diff.ql:17,7-38)
 | test.cpp:23:23:23:28 | call to getenv | test.cpp:8:24:8:25 | s1 | AST only |
 | test.cpp:23:23:23:28 | call to getenv | test.cpp:23:14:23:19 | envStr | AST only |
 | test.cpp:38:23:38:28 | call to getenv | test.cpp:8:24:8:25 | s1 | AST only |
diff --git a/cpp/ql/test/library-tests/dataflow/security-taint/tainted_ir.expected b/cpp/ql/test/library-tests/dataflow/security-taint/tainted_ir.expected
index 01d8f5092ed..4b439122fa3 100644
--- a/cpp/ql/test/library-tests/dataflow/security-taint/tainted_ir.expected
+++ b/cpp/ql/test/library-tests/dataflow/security-taint/tainted_ir.expected
@@ -1,3 +1,5 @@
+WARNING: Module TaintedWithPath has been deprecated and may be removed in future (tainted_ir.ql:3,35-50)
+WARNING: Module TaintedWithPath has been deprecated and may be removed in future (tainted_ir.ql:9,3-18)
 | test.cpp:23:23:23:28 | call to getenv | test.cpp:23:23:23:28 | call to getenv |
 | test.cpp:23:23:23:28 | call to getenv | test.cpp:23:23:23:40 | (const char *)... |
 | test.cpp:23:23:23:28 | call to getenv | test.cpp:25:6:25:29 | ! ... |

From 574d6d611960ac2f1156bc18e70bae687b626967 Mon Sep 17 00:00:00 2001
From: Ethan Willoner <ethanwilloner@users.noreply.github.com>
Date: Tue, 6 Dec 2022 09:10:22 -0800
Subject: [PATCH 1070/1420] Fix comment.

Co-authored-by: Tom Hvitved <hvitved@github.com>
---
 csharp/ql/lib/semmle/code/csharp/frameworks/microsoft/Owin.qll | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/csharp/ql/lib/semmle/code/csharp/frameworks/microsoft/Owin.qll b/csharp/ql/lib/semmle/code/csharp/frameworks/microsoft/Owin.qll
index 5f55a77d96b..9d9bf11f91c 100644
--- a/csharp/ql/lib/semmle/code/csharp/frameworks/microsoft/Owin.qll
+++ b/csharp/ql/lib/semmle/code/csharp/frameworks/microsoft/Owin.qll
@@ -118,7 +118,7 @@ class MicrosoftOwinIOwinRequestClass extends Class {
     result.hasName("Scheme")
   }
 
-  /** Gets the `URI` property. */
+  /** Gets the `Uri` property. */
   Property getUriProperty() {
     result = this.getAProperty() and
     result.hasName("Uri")

From 64f58061b7bacefdccd95c550b1270715ec5be26 Mon Sep 17 00:00:00 2001
From: Ethan Willoner <ethanwilloner@users.noreply.github.com>
Date: Tue, 6 Dec 2022 09:13:28 -0800
Subject: [PATCH 1071/1420] Rename 2022-12-05-owin-uri-fix.md. to
 2022-12-05-owin-uri-fix.md

---
 .../{2022-12-05-owin-uri-fix.md. => 2022-12-05-owin-uri-fix.md} | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)
 rename csharp/ql/src/change-notes/{2022-12-05-owin-uri-fix.md. => 2022-12-05-owin-uri-fix.md} (63%)

diff --git a/csharp/ql/src/change-notes/2022-12-05-owin-uri-fix.md. b/csharp/ql/src/change-notes/2022-12-05-owin-uri-fix.md
similarity index 63%
rename from csharp/ql/src/change-notes/2022-12-05-owin-uri-fix.md.
rename to csharp/ql/src/change-notes/2022-12-05-owin-uri-fix.md
index 44c50cb1305..e92df82a41c 100644
--- a/csharp/ql/src/change-notes/2022-12-05-owin-uri-fix.md.
+++ b/csharp/ql/src/change-notes/2022-12-05-owin-uri-fix.md
@@ -1,4 +1,4 @@
 ---
 category: fix
 ---
-* Fixes a bug where the Owin.qll framework library will look for "URI" instead of "Uri" in the OwinRequest class.
\ No newline at end of file
+* Fixes a bug where the Owin.qll framework library will look for "URI" instead of "Uri" in the OwinRequest class.

From e34d72aee920aa08a313b67e12066e10011fb9fd Mon Sep 17 00:00:00 2001
From: Chris Smowton <smowton@github.com>
Date: Wed, 30 Nov 2022 18:38:59 +0000
Subject: [PATCH 1072/1420] Kotlin: stub trap .class files when extracting a
 class from Kotlin source

---
 .../src/main/kotlin/ExternalDeclExtractor.kt  | 139 ++++++++++--------
 .../src/main/kotlin/KotlinFileExtractor.kt    |   3 +
 2 files changed, 81 insertions(+), 61 deletions(-)

diff --git a/java/kotlin-extractor/src/main/kotlin/ExternalDeclExtractor.kt b/java/kotlin-extractor/src/main/kotlin/ExternalDeclExtractor.kt
index 12ea05a33c3..3f9ba8f241d 100644
--- a/java/kotlin-extractor/src/main/kotlin/ExternalDeclExtractor.kt
+++ b/java/kotlin-extractor/src/main/kotlin/ExternalDeclExtractor.kt
@@ -11,6 +11,7 @@ import org.jetbrains.kotlin.ir.util.isFileClass
 import org.jetbrains.kotlin.ir.util.packageFqName
 import org.jetbrains.kotlin.ir.util.parentClassOrNull
 import org.jetbrains.kotlin.name.FqName
+import java.io.BufferedWriter
 import java.io.File
 import java.util.ArrayList
 import java.util.HashSet
@@ -25,6 +26,10 @@ class ExternalDeclExtractor(val logger: FileLogger, val invocationTrapFile: Stri
     val propertySignature = ";property"
     val fieldSignature = ";field"
 
+    val output = OdasaOutput(false, logger).also {
+        it.setCurrentSourceFile(File(sourceFilePath))
+    }
+
     fun extractLater(d: IrDeclarationWithName, signature: String): Boolean {
         if (d !is IrClass && !isExternalFileClassMember(d)) {
             logger.errorElement("External declaration is neither a class, nor a top-level declaration", d)
@@ -37,76 +42,88 @@ class ExternalDeclExtractor(val logger: FileLogger, val invocationTrapFile: Stri
     }
     fun extractLater(c: IrClass) = extractLater(c, "")
 
+    fun noteClassSourceExtractedTo(c: IrClass, sourceFile: String) {
+        extractDecl(c, "") { trapFileBW, _, _, _ ->
+            val tw = TrapWriter(logger.loggerBase, TrapLabelManager(), trapFileBW, diagnosticTrapWriter)
+            tw.writeComment(".class trap file stubbed as source is extracted to $sourceFile")
+            tw.writeComment("Part of invocation $invocationTrapFile")
+        }
+    }
+
+    fun extractDecl(irDecl: IrDeclaration, possiblyLongSignature: String, extractorFn: (BufferedWriter, String, String, OdasaOutput.TrapFileManager) -> Unit) {
+        // In order to avoid excessively long signatures which can lead to trap file names longer than the filesystem
+        // limit, we truncate and add a hash to preserve uniqueness if necessary.
+        val signature = if (possiblyLongSignature.length > 100) {
+            possiblyLongSignature.substring(0, 92) + "#" + StringDigestor.digest(possiblyLongSignature).substring(0, 8)
+        } else { possiblyLongSignature }
+        output.getTrapLockerForDecl(irDecl, signature).useAC { locker ->
+            locker.trapFileManager.useAC { manager ->
+                val shortName = when(irDecl) {
+                    is IrDeclarationWithName -> irDecl.name.asString()
+                    else -> "(unknown name)"
+                }
+                if(manager == null) {
+                    logger.info("Skipping extracting external decl $shortName")
+                } else {
+                    val trapFile = manager.file
+                    val trapTmpFile = File.createTempFile("${trapFile.nameWithoutExtension}.", ".${trapFile.extension}.tmp", trapFile.parentFile)
+
+                    val containingClass = getContainingClassOrSelf(irDecl)
+                    if (containingClass == null) {
+                        logger.errorElement("Unable to get containing class", irDecl)
+                        return
+                    }
+                    val binaryPath = getIrClassBinaryPath(containingClass)
+                    try {
+                        GZIPOutputStream(trapTmpFile.outputStream()).bufferedWriter().use {
+                            extractorFn(it, binaryPath, signature, manager)
+                        }
+
+                        if (!trapTmpFile.renameTo(trapFile)) {
+                            logger.error("Failed to rename $trapTmpFile to $trapFile")
+                        }
+                    } catch (e: Exception) {
+                        manager.setHasError()
+                        logger.error("Failed to extract '$shortName'. Partial TRAP file location is $trapTmpFile", e)
+                    }
+                }
+            }
+        }
+    }
+
     fun extractExternalClasses() {
-        val output = OdasaOutput(false, logger)
-        output.setCurrentSourceFile(File(sourceFilePath))
         do {
             val nextBatch = ArrayList(externalDeclWorkList)
             externalDeclWorkList.clear()
             nextBatch.forEach { workPair ->
                 val (irDecl, possiblyLongSignature) = workPair
-                // In order to avoid excessively long signatures which can lead to trap file names longer than the filesystem
-                // limit, we truncate and add a hash to preserve uniqueness if necessary.
-                val signature = if (possiblyLongSignature.length > 100) {
-                    possiblyLongSignature.substring(0, 92) + "#" + StringDigestor.digest(possiblyLongSignature).substring(0, 8)
-                } else { possiblyLongSignature }
-                output.getTrapLockerForDecl(irDecl, signature).useAC { locker ->
-                    locker.trapFileManager.useAC { manager ->
-                        val shortName = when(irDecl) {
-                            is IrDeclarationWithName -> irDecl.name.asString()
-                            else -> "(unknown name)"
-                        }
-                        if(manager == null) {
-                            logger.info("Skipping extracting external decl $shortName")
-                        } else {
-                            val trapFile = manager.file
-                            val trapTmpFile = File.createTempFile("${trapFile.nameWithoutExtension}.", ".${trapFile.extension}.tmp", trapFile.parentFile)
+                extractDecl(irDecl, possiblyLongSignature) { trapFileBW, binaryPath, signature, manager ->
+                    // We want our comments to be the first thing in the file,
+                    // so start off with a mere TrapWriter
+                    val tw = TrapWriter(logger.loggerBase, TrapLabelManager(), trapFileBW, diagnosticTrapWriter)
+                    tw.writeComment("Generated by the CodeQL Kotlin extractor for external dependencies")
+                    tw.writeComment("Part of invocation $invocationTrapFile")
+                    if (signature != possiblyLongSignature) {
+                        tw.writeComment("Function signature abbreviated; full signature is: $possiblyLongSignature")
+                    }
+                    // Now elevate to a SourceFileTrapWriter, and populate the
+                    // file information if needed:
+                    val ftw = tw.makeFileTrapWriter(binaryPath, true)
 
-                            val containingClass = getContainingClassOrSelf(irDecl)
-                            if (containingClass == null) {
-                                logger.errorElement("Unable to get containing class", irDecl)
-                                return
-                            }
-                            val binaryPath = getIrClassBinaryPath(containingClass)
-                            try {
-                                GZIPOutputStream(trapTmpFile.outputStream()).bufferedWriter().use { trapFileBW ->
-                                    // We want our comments to be the first thing in the file,
-                                    // so start off with a mere TrapWriter
-                                    val tw = TrapWriter(logger.loggerBase, TrapLabelManager(), trapFileBW, diagnosticTrapWriter)
-                                    tw.writeComment("Generated by the CodeQL Kotlin extractor for external dependencies")
-                                    tw.writeComment("Part of invocation $invocationTrapFile")
-                                    if (signature != possiblyLongSignature) {
-                                        tw.writeComment("Function signature abbreviated; full signature is: $possiblyLongSignature")
-                                    }
-                                    // Now elevate to a SourceFileTrapWriter, and populate the
-                                    // file information if needed:
-                                    val ftw = tw.makeFileTrapWriter(binaryPath, true)
+                    val fileExtractor = KotlinFileExtractor(logger, ftw, null, binaryPath, manager, this, primitiveTypeMapping, pluginContext, KotlinFileExtractor.DeclarationStack(), globalExtensionState)
 
-                                    val fileExtractor = KotlinFileExtractor(logger, ftw, null, binaryPath, manager, this, primitiveTypeMapping, pluginContext, KotlinFileExtractor.DeclarationStack(), globalExtensionState)
+                    if (irDecl is IrClass) {
+                        // Populate a location and compilation-unit package for the file. This is similar to
+                        // the beginning of `KotlinFileExtractor.extractFileContents` but without an `IrFile`
+                        // to start from.
+                        val pkg = irDecl.packageFqName?.asString() ?: ""
+                        val pkgId = fileExtractor.extractPackage(pkg)
+                        ftw.writeHasLocation(ftw.fileId, ftw.getWholeFileLocation())
+                        ftw.writeCupackage(ftw.fileId, pkgId)
 
-                                    if (irDecl is IrClass) {
-                                        // Populate a location and compilation-unit package for the file. This is similar to
-                                        // the beginning of `KotlinFileExtractor.extractFileContents` but without an `IrFile`
-                                        // to start from.
-                                        val pkg = irDecl.packageFqName?.asString() ?: ""
-                                        val pkgId = fileExtractor.extractPackage(pkg)
-                                        ftw.writeHasLocation(ftw.fileId, ftw.getWholeFileLocation())
-                                        ftw.writeCupackage(ftw.fileId, pkgId)
-
-                                        fileExtractor.extractClassSource(irDecl, extractDeclarations = !irDecl.isFileClass, extractStaticInitializer = false, extractPrivateMembers = false, extractFunctionBodies = false)
-                                    } else {
-                                        fileExtractor.extractDeclaration(irDecl, extractPrivateMembers = false, extractFunctionBodies = false)
-                                    }
-                                }
-
-                                if (!trapTmpFile.renameTo(trapFile)) {
-                                    logger.error("Failed to rename $trapTmpFile to $trapFile")
-                                }
-                            } catch (e: Exception) {
-                                manager.setHasError()
-                                logger.error("Failed to extract '$shortName'. Partial TRAP file location is $trapTmpFile", e)
-                            }
-                        }
+                        fileExtractor.extractClassSource(irDecl, extractDeclarations = !irDecl.isFileClass, extractStaticInitializer = false, extractPrivateMembers = false, extractFunctionBodies = false)
+                    } else {
+                        fileExtractor.extractDeclaration(irDecl, extractPrivateMembers = false, extractFunctionBodies = false)
                     }
                 }
             }
diff --git a/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt b/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt
index e47946c15b7..1904e663e7c 100644
--- a/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt
+++ b/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt
@@ -516,6 +516,9 @@ open class KotlinFileExtractor(
 
                 linesOfCode?.linesOfCodeInDeclaration(c, id)
 
+                if (extractFunctionBodies)
+                    externalClassExtractor.noteClassSourceExtractedTo(c, tw.filePath)
+
                 return id
             }
         }

From 748637c2d88394f62d9f1ce91f5a9f5175b1ec9a Mon Sep 17 00:00:00 2001
From: Chris Smowton <smowton@github.com>
Date: Thu, 1 Dec 2022 10:01:59 +0000
Subject: [PATCH 1073/1420] Tidy and use version 0 for classes extracted from
 source

---
 .../semmle/extractor/java/OdasaOutput.java    | 13 +--
 .../src/main/kotlin/ExternalDeclExtractor.kt  | 81 +++++++++----------
 2 files changed, 48 insertions(+), 46 deletions(-)

diff --git a/java/kotlin-extractor/src/main/java/com/semmle/extractor/java/OdasaOutput.java b/java/kotlin-extractor/src/main/java/com/semmle/extractor/java/OdasaOutput.java
index f238b93e41f..c947627e06a 100644
--- a/java/kotlin-extractor/src/main/java/com/semmle/extractor/java/OdasaOutput.java
+++ b/java/kotlin-extractor/src/main/java/com/semmle/extractor/java/OdasaOutput.java
@@ -422,7 +422,7 @@ public class OdasaOutput {
 	 * previously set by a call to {@link OdasaOutput#setCurrentSourceFile(File)}.
 	 */
 	public TrapLocker getTrapLockerForCurrentSourceFile() {
-		return new TrapLocker((IrClass)null, null);
+		return new TrapLocker((IrClass)null, null, true);
 	}
 
 	/**
@@ -460,8 +460,8 @@ public class OdasaOutput {
 	 *
 	 * @return  a {@link TrapLocker} for the trap file corresponding to the given class symbol.
 	 */
-	public TrapLocker getTrapLockerForDecl(IrDeclaration sym, String signature) {
-		return new TrapLocker(sym, signature);
+	public TrapLocker getTrapLockerForDecl(IrDeclaration sym, String signature, boolean fromSource) {
+		return new TrapLocker(sym, signature, fromSource);
 	}
 
 	public class TrapLocker implements AutoCloseable {
@@ -472,7 +472,7 @@ public class OdasaOutput {
 		private File trapFileBase = null;
 		private TrapClassVersion trapFileVersion = null;
 		private final String signature;
-		private TrapLocker(IrDeclaration decl, String signature) {
+		private TrapLocker(IrDeclaration decl, String signature, boolean fromSource) {
 			this.sym = decl;
 			this.signature = signature;
 			if (sym==null) {
@@ -485,7 +485,10 @@ public class OdasaOutput {
 				} else {
 					// We encode the metadata into the filename, so that the
 					// TRAP filenames for different metadatas don't overlap.
-					trapFileVersion = TrapClassVersion.fromSymbol(sym, log);
+					if (fromSource)
+						trapFileVersion = new TrapClassVersion(0, 0, 0, "kotlin");
+					else
+						trapFileVersion = TrapClassVersion.fromSymbol(sym, log);
 					String baseName = normalTrapFile.getName().replace(".trap.gz", "");
 					// If a class has lots of inner classes, then we get lots of files
 					// in a single directory. This makes our directory listings later slow.
diff --git a/java/kotlin-extractor/src/main/kotlin/ExternalDeclExtractor.kt b/java/kotlin-extractor/src/main/kotlin/ExternalDeclExtractor.kt
index 3f9ba8f241d..6f36852235d 100644
--- a/java/kotlin-extractor/src/main/kotlin/ExternalDeclExtractor.kt
+++ b/java/kotlin-extractor/src/main/kotlin/ExternalDeclExtractor.kt
@@ -43,40 +43,32 @@ class ExternalDeclExtractor(val logger: FileLogger, val invocationTrapFile: Stri
     fun extractLater(c: IrClass) = extractLater(c, "")
 
     fun noteClassSourceExtractedTo(c: IrClass, sourceFile: String) {
-        extractDecl(c, "") { trapFileBW, _, _, _ ->
-            val tw = TrapWriter(logger.loggerBase, TrapLabelManager(), trapFileBW, diagnosticTrapWriter)
-            tw.writeComment(".class trap file stubbed as source is extracted to $sourceFile")
-            tw.writeComment("Part of invocation $invocationTrapFile")
+        extractDecl(c, "", true) { trapFileBW, _, _ ->
+            trapFileBW.write("// .class trap file stubbed because this class was extracted from source in $sourceFile\n")
+            trapFileBW.write("// Part of invocation $invocationTrapFile\n")
         }
     }
 
-    fun extractDecl(irDecl: IrDeclaration, possiblyLongSignature: String, extractorFn: (BufferedWriter, String, String, OdasaOutput.TrapFileManager) -> Unit) {
+    private fun extractDecl(irDecl: IrDeclaration, possiblyLongSignature: String, fromSource: Boolean, extractorFn: (BufferedWriter, String, OdasaOutput.TrapFileManager) -> Unit) {
         // In order to avoid excessively long signatures which can lead to trap file names longer than the filesystem
         // limit, we truncate and add a hash to preserve uniqueness if necessary.
         val signature = if (possiblyLongSignature.length > 100) {
             possiblyLongSignature.substring(0, 92) + "#" + StringDigestor.digest(possiblyLongSignature).substring(0, 8)
         } else { possiblyLongSignature }
-        output.getTrapLockerForDecl(irDecl, signature).useAC { locker ->
+        output.getTrapLockerForDecl(irDecl, signature, fromSource).useAC { locker ->
             locker.trapFileManager.useAC { manager ->
                 val shortName = when(irDecl) {
                     is IrDeclarationWithName -> irDecl.name.asString()
                     else -> "(unknown name)"
                 }
-                if(manager == null) {
+                if (manager == null) {
                     logger.info("Skipping extracting external decl $shortName")
                 } else {
                     val trapFile = manager.file
                     val trapTmpFile = File.createTempFile("${trapFile.nameWithoutExtension}.", ".${trapFile.extension}.tmp", trapFile.parentFile)
-
-                    val containingClass = getContainingClassOrSelf(irDecl)
-                    if (containingClass == null) {
-                        logger.errorElement("Unable to get containing class", irDecl)
-                        return
-                    }
-                    val binaryPath = getIrClassBinaryPath(containingClass)
                     try {
                         GZIPOutputStream(trapTmpFile.outputStream()).bufferedWriter().use {
-                            extractorFn(it, binaryPath, signature, manager)
+                            extractorFn(it, signature, manager)
                         }
 
                         if (!trapTmpFile.renameTo(trapFile)) {
@@ -97,33 +89,40 @@ class ExternalDeclExtractor(val logger: FileLogger, val invocationTrapFile: Stri
             externalDeclWorkList.clear()
             nextBatch.forEach { workPair ->
                 val (irDecl, possiblyLongSignature) = workPair
-                extractDecl(irDecl, possiblyLongSignature) { trapFileBW, binaryPath, signature, manager ->
-                    // We want our comments to be the first thing in the file,
-                    // so start off with a mere TrapWriter
-                    val tw = TrapWriter(logger.loggerBase, TrapLabelManager(), trapFileBW, diagnosticTrapWriter)
-                    tw.writeComment("Generated by the CodeQL Kotlin extractor for external dependencies")
-                    tw.writeComment("Part of invocation $invocationTrapFile")
-                    if (signature != possiblyLongSignature) {
-                        tw.writeComment("Function signature abbreviated; full signature is: $possiblyLongSignature")
-                    }
-                    // Now elevate to a SourceFileTrapWriter, and populate the
-                    // file information if needed:
-                    val ftw = tw.makeFileTrapWriter(binaryPath, true)
-
-                    val fileExtractor = KotlinFileExtractor(logger, ftw, null, binaryPath, manager, this, primitiveTypeMapping, pluginContext, KotlinFileExtractor.DeclarationStack(), globalExtensionState)
-
-                    if (irDecl is IrClass) {
-                        // Populate a location and compilation-unit package for the file. This is similar to
-                        // the beginning of `KotlinFileExtractor.extractFileContents` but without an `IrFile`
-                        // to start from.
-                        val pkg = irDecl.packageFqName?.asString() ?: ""
-                        val pkgId = fileExtractor.extractPackage(pkg)
-                        ftw.writeHasLocation(ftw.fileId, ftw.getWholeFileLocation())
-                        ftw.writeCupackage(ftw.fileId, pkgId)
-
-                        fileExtractor.extractClassSource(irDecl, extractDeclarations = !irDecl.isFileClass, extractStaticInitializer = false, extractPrivateMembers = false, extractFunctionBodies = false)
+                extractDecl(irDecl, possiblyLongSignature, false) { trapFileBW, signature, manager ->
+                    val containingClass = getContainingClassOrSelf(irDecl)
+                    if (containingClass == null) {
+                        logger.errorElement("Unable to get containing class", irDecl)
                     } else {
-                        fileExtractor.extractDeclaration(irDecl, extractPrivateMembers = false, extractFunctionBodies = false)
+                        val binaryPath = getIrClassBinaryPath(containingClass)
+
+                        // We want our comments to be the first thing in the file,
+                        // so start off with a mere TrapWriter
+                        val tw = TrapWriter(logger.loggerBase, TrapLabelManager(), trapFileBW, diagnosticTrapWriter)
+                        tw.writeComment("Generated by the CodeQL Kotlin extractor for external dependencies")
+                        tw.writeComment("Part of invocation $invocationTrapFile")
+                        if (signature != possiblyLongSignature) {
+                            tw.writeComment("Function signature abbreviated; full signature is: $possiblyLongSignature")
+                        }
+                        // Now elevate to a SourceFileTrapWriter, and populate the
+                        // file information if needed:
+                        val ftw = tw.makeFileTrapWriter(binaryPath, true)
+
+                        val fileExtractor = KotlinFileExtractor(logger, ftw, null, binaryPath, manager, this, primitiveTypeMapping, pluginContext, KotlinFileExtractor.DeclarationStack(), globalExtensionState)
+
+                        if (irDecl is IrClass) {
+                            // Populate a location and compilation-unit package for the file. This is similar to
+                            // the beginning of `KotlinFileExtractor.extractFileContents` but without an `IrFile`
+                            // to start from.
+                            val pkg = irDecl.packageFqName?.asString() ?: ""
+                            val pkgId = fileExtractor.extractPackage(pkg)
+                            ftw.writeHasLocation(ftw.fileId, ftw.getWholeFileLocation())
+                            ftw.writeCupackage(ftw.fileId, pkgId)
+
+                            fileExtractor.extractClassSource(irDecl, extractDeclarations = !irDecl.isFileClass, extractStaticInitializer = false, extractPrivateMembers = false, extractFunctionBodies = false)
+                        } else {
+                            fileExtractor.extractDeclaration(irDecl, extractPrivateMembers = false, extractFunctionBodies = false)
+                        }
                     }
                 }
             }

From 08e3431107043269af1565bb20589690d52b6248 Mon Sep 17 00:00:00 2001
From: Chris Smowton <smowton@github.com>
Date: Thu, 1 Dec 2022 18:51:15 +0000
Subject: [PATCH 1074/1420] Also stub class files relating to file classes and
 top-level declarations

---
 .../semmle/extractor/java/OdasaOutput.java    | 49 ++++++++++--------
 .../src/main/kotlin/ExternalDeclExtractor.kt  | 23 ++++-----
 .../src/main/kotlin/KotlinFileExtractor.kt    | 11 +++-
 .../src/main/kotlin/KotlinUsesExtractor.kt    | 41 ++++++++-------
 .../src/main/kotlin/utils/ClassNames.kt       | 51 +++++++++++++------
 5 files changed, 105 insertions(+), 70 deletions(-)

diff --git a/java/kotlin-extractor/src/main/java/com/semmle/extractor/java/OdasaOutput.java b/java/kotlin-extractor/src/main/java/com/semmle/extractor/java/OdasaOutput.java
index c947627e06a..9859fd705b8 100644
--- a/java/kotlin-extractor/src/main/java/com/semmle/extractor/java/OdasaOutput.java
+++ b/java/kotlin-extractor/src/main/java/com/semmle/extractor/java/OdasaOutput.java
@@ -19,9 +19,10 @@ import java.util.zip.ZipEntry;
 import java.util.zip.ZipFile;
 
 import com.github.codeql.Logger;
-import static com.github.codeql.ClassNamesKt.getIrDeclBinaryName;
+import static com.github.codeql.ClassNamesKt.getIrElementBinaryName;
 import static com.github.codeql.ClassNamesKt.getIrClassVirtualFile;
 
+import org.jetbrains.kotlin.ir.IrElement;
 import org.jetbrains.kotlin.ir.declarations.IrClass;
 
 import com.intellij.openapi.vfs.VirtualFile;
@@ -212,20 +213,19 @@ public class OdasaOutput {
 				PathTransformer.std().fileAsDatabaseString(file) + ".trap.gz");
 	}
 
-	private File getTrapFileForDecl(IrDeclaration sym, String signature) {
+	private File getTrapFileForDecl(IrElement sym, String signature) {
 		if (currentSpecFileEntry == null)
 			return null;
 		return trapFileForDecl(sym, signature);
 	}
 
-	private File trapFileForDecl(IrDeclaration sym, String signature) {
+	private File trapFileForDecl(IrElement sym, String signature) {
 		return FileUtil.fileRelativeTo(currentSpecFileEntry.getTrapFolder(),
 				trapFilePathForDecl(sym, signature));
 	}
 
-	private String trapFilePathForDecl(IrDeclaration sym, String signature) {
-		String binaryName = getIrDeclBinaryName(sym);
-		String binaryNameWithSignature = binaryName + signature;
+	private String trapFilePathForDecl(IrElement sym, String signature) {
+		String binaryName = getIrElementBinaryName(sym);
 		// TODO: Reinstate this?
 		//if (getTrackClassOrigins())
 		//  classId += "-" + StringDigestor.digest(sym.getSourceFileId());
@@ -241,7 +241,7 @@ public class OdasaOutput {
 	 * Deletion of existing trap files.
 	 */
 
-	private void deleteTrapFileAndDependencies(IrDeclaration sym, String signature) {
+	private void deleteTrapFileAndDependencies(IrElement sym, String signature) {
 		File trap = trapFileForDecl(sym, signature);
 		if (trap.exists()) {
 			trap.delete();
@@ -269,7 +269,7 @@ public class OdasaOutput {
 	 * 		Any unique suffix needed to distinguish `sym` from other declarations with the same name.
 	 * 		For functions for example, this means its parameter signature.
 	 */
-	private TrapFileManager getMembersWriterForDecl(File trap, File trapFileBase, TrapClassVersion trapFileVersion, IrDeclaration sym, String signature) {
+	private TrapFileManager getMembersWriterForDecl(File trap, File trapFileBase, TrapClassVersion trapFileVersion, IrElement sym, String signature) {
 		if (use_trap_locking) {
 			TrapClassVersion currVersion = TrapClassVersion.fromSymbol(sym, log);
 			String shortName = sym instanceof IrDeclarationWithName ? ((IrDeclarationWithName)sym).getName().asString() : "(name unknown)";
@@ -326,7 +326,7 @@ public class OdasaOutput {
 		return trapWriter(trap, sym, signature);
 	}
 
-	private TrapFileManager trapWriter(File trapFile, IrDeclaration sym, String signature) {
+	private TrapFileManager trapWriter(File trapFile, IrElement sym, String signature) {
 		if (!trapFile.getName().endsWith(".trap.gz"))
 			throw new CatastrophicError("OdasaOutput only supports writing to compressed trap files");
 		String relative = FileUtil.relativePath(trapFile, currentSpecFileEntry.getTrapFolder());
@@ -335,7 +335,7 @@ public class OdasaOutput {
 		return concurrentWriter(trapFile, relative, log, sym, signature);
 	}
 
-	private TrapFileManager concurrentWriter(File trapFile, String relative, Logger log, IrDeclaration sym, String signature) {
+	private TrapFileManager concurrentWriter(File trapFile, String relative, Logger log, IrElement sym, String signature) {
 		if (trapFile.exists())
 			return null;
 		return new TrapFileManager(trapFile, relative, true, log, sym, signature);
@@ -345,11 +345,11 @@ public class OdasaOutput {
 
 		private TrapDependencies trapDependenciesForClass;
 		private File trapFile;
-		private IrDeclaration sym;
+		private IrElement sym;
 		private String signature;
 		private boolean hasError = false;
 
-		private TrapFileManager(File trapFile, String relative, boolean concurrentCreation, Logger log, IrDeclaration sym, String signature) {
+		private TrapFileManager(File trapFile, String relative, boolean concurrentCreation, Logger log, IrElement sym, String signature) {
 			trapDependenciesForClass = new TrapDependencies(relative);
 			this.trapFile = trapFile;
 			this.sym = sym;
@@ -360,7 +360,7 @@ public class OdasaOutput {
 			return trapFile;
 		}
 
-		public void addDependency(IrDeclaration dep, String signature) {
+		public void addDependency(IrElement dep, String signature) {
 			trapDependenciesForClass.addDependency(trapFilePathForDecl(dep, signature));
 		}
 
@@ -460,19 +460,19 @@ public class OdasaOutput {
 	 *
 	 * @return  a {@link TrapLocker} for the trap file corresponding to the given class symbol.
 	 */
-	public TrapLocker getTrapLockerForDecl(IrDeclaration sym, String signature, boolean fromSource) {
+	public TrapLocker getTrapLockerForDecl(IrElement sym, String signature, boolean fromSource) {
 		return new TrapLocker(sym, signature, fromSource);
 	}
 
 	public class TrapLocker implements AutoCloseable {
-		private final IrDeclaration sym;
+		private final IrElement sym;
 		private final File trapFile;
 		// trapFileBase is used when doing lockless TRAP file writing.
 		// It is trapFile without the #metadata.trap.gz suffix.
 		private File trapFileBase = null;
 		private TrapClassVersion trapFileVersion = null;
 		private final String signature;
-		private TrapLocker(IrDeclaration decl, String signature, boolean fromSource) {
+		private TrapLocker(IrElement decl, String signature, boolean fromSource) {
 			this.sym = decl;
 			this.signature = signature;
 			if (sym==null) {
@@ -720,11 +720,18 @@ public class OdasaOutput {
             return vf.getTimeStamp();
         }
 
-		private static TrapClassVersion fromSymbol(IrDeclaration sym, Logger log) {
-			VirtualFile vf = sym instanceof IrClass ? getIrClassVirtualFile((IrClass)sym) :
-					sym.getParent() instanceof IrClass ? getIrClassVirtualFile((IrClass)sym.getParent()) :
-					null;
-			if(vf == null)
+		private static VirtualFile getVirtualFileIfClass(IrElement e) {
+			if (e instanceof IrClass)
+				return getIrClassVirtualFile((IrClass)e);
+			else
+				return null;
+		}
+
+		private static TrapClassVersion fromSymbol(IrElement sym, Logger log) {
+			VirtualFile vf = getVirtualFileIfClass(sym);
+			if (vf == null && sym instanceof IrDeclaration)
+				vf = getVirtualFileIfClass(((IrDeclaration)sym).getParent());
+			if (vf == null)
 				return new TrapClassVersion(-1, 0, 0, null);
 
 			final int[] versionStore = new int[1];
diff --git a/java/kotlin-extractor/src/main/kotlin/ExternalDeclExtractor.kt b/java/kotlin-extractor/src/main/kotlin/ExternalDeclExtractor.kt
index 6f36852235d..2e2e57e4503 100644
--- a/java/kotlin-extractor/src/main/kotlin/ExternalDeclExtractor.kt
+++ b/java/kotlin-extractor/src/main/kotlin/ExternalDeclExtractor.kt
@@ -1,16 +1,13 @@
 package com.github.codeql
 
-import com.github.codeql.utils.isExternalDeclaration
 import com.github.codeql.utils.isExternalFileClassMember
 import com.semmle.extractor.java.OdasaOutput
 import com.semmle.util.data.StringDigestor
 import org.jetbrains.kotlin.backend.common.extensions.IrPluginContext
+import org.jetbrains.kotlin.ir.IrElement
 import org.jetbrains.kotlin.ir.declarations.*
-import org.jetbrains.kotlin.ir.util.fqNameWhenAvailable
 import org.jetbrains.kotlin.ir.util.isFileClass
 import org.jetbrains.kotlin.ir.util.packageFqName
-import org.jetbrains.kotlin.ir.util.parentClassOrNull
-import org.jetbrains.kotlin.name.FqName
 import java.io.BufferedWriter
 import java.io.File
 import java.util.ArrayList
@@ -35,30 +32,30 @@ class ExternalDeclExtractor(val logger: FileLogger, val invocationTrapFile: Stri
             logger.errorElement("External declaration is neither a class, nor a top-level declaration", d)
             return false
         }
-        val declBinaryName = declBinaryNames.getOrPut(d) { getIrDeclBinaryName(d) }
+        val declBinaryName = declBinaryNames.getOrPut(d) { getIrElementBinaryName(d) }
         val ret = externalDeclsDone.add(Pair(declBinaryName, signature))
         if (ret) externalDeclWorkList.add(Pair(d, signature))
         return ret
     }
     fun extractLater(c: IrClass) = extractLater(c, "")
 
-    fun noteClassSourceExtractedTo(c: IrClass, sourceFile: String) {
-        extractDecl(c, "", true) { trapFileBW, _, _ ->
-            trapFileBW.write("// .class trap file stubbed because this class was extracted from source in $sourceFile\n")
+    fun noteElementExtractedFromSource(e: IrElement, signature: String = "") {
+        extractElement(e, signature, true) { trapFileBW, _, _ ->
+            trapFileBW.write("// Trap file stubbed because this declaration was extracted from source in $sourceFilePath\n")
             trapFileBW.write("// Part of invocation $invocationTrapFile\n")
         }
     }
 
-    private fun extractDecl(irDecl: IrDeclaration, possiblyLongSignature: String, fromSource: Boolean, extractorFn: (BufferedWriter, String, OdasaOutput.TrapFileManager) -> Unit) {
+    private fun extractElement(element: IrElement, possiblyLongSignature: String, fromSource: Boolean, extractorFn: (BufferedWriter, String, OdasaOutput.TrapFileManager) -> Unit) {
         // In order to avoid excessively long signatures which can lead to trap file names longer than the filesystem
         // limit, we truncate and add a hash to preserve uniqueness if necessary.
         val signature = if (possiblyLongSignature.length > 100) {
             possiblyLongSignature.substring(0, 92) + "#" + StringDigestor.digest(possiblyLongSignature).substring(0, 8)
         } else { possiblyLongSignature }
-        output.getTrapLockerForDecl(irDecl, signature, fromSource).useAC { locker ->
+        output.getTrapLockerForDecl(element, signature, fromSource).useAC { locker ->
             locker.trapFileManager.useAC { manager ->
-                val shortName = when(irDecl) {
-                    is IrDeclarationWithName -> irDecl.name.asString()
+                val shortName = when(element) {
+                    is IrDeclarationWithName -> element.name.asString()
                     else -> "(unknown name)"
                 }
                 if (manager == null) {
@@ -89,7 +86,7 @@ class ExternalDeclExtractor(val logger: FileLogger, val invocationTrapFile: Stri
             externalDeclWorkList.clear()
             nextBatch.forEach { workPair ->
                 val (irDecl, possiblyLongSignature) = workPair
-                extractDecl(irDecl, possiblyLongSignature, false) { trapFileBW, signature, manager ->
+                extractElement(irDecl, possiblyLongSignature, false) { trapFileBW, signature, manager ->
                     val containingClass = getContainingClassOrSelf(irDecl)
                     if (containingClass == null) {
                         logger.errorElement("Unable to get containing class", irDecl)
diff --git a/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt b/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt
index 1904e663e7c..f1c3ef03764 100644
--- a/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt
+++ b/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt
@@ -90,7 +90,12 @@ open class KotlinFileExtractor(
                 }
             }
 
-            file.declarations.forEach { extractDeclaration(it, extractPrivateMembers = true, extractFunctionBodies = true) }
+            file.declarations.forEach {
+                extractDeclaration(it, extractPrivateMembers = true, extractFunctionBodies = true)
+                if (it !is IrClass) {
+                    externalClassExtractor.noteElementExtractedFromSource(it, getTrapFileSignature(it))
+                }
+            }
             extractStaticInitializer(file, { extractFileClass(file) })
             CommentExtractor(this, file, tw.fileId).extract()
 
@@ -99,6 +104,8 @@ open class KotlinFileExtractor(
             }
 
             linesOfCode?.linesOfCodeInFile(id)
+
+            externalClassExtractor.noteElementExtractedFromSource(file)
         }
     }
 
@@ -517,7 +524,7 @@ open class KotlinFileExtractor(
                 linesOfCode?.linesOfCodeInDeclaration(c, id)
 
                 if (extractFunctionBodies)
-                    externalClassExtractor.noteClassSourceExtractedTo(c, tw.filePath)
+                    externalClassExtractor.noteElementExtractedFromSource(c)
 
                 return id
             }
diff --git a/java/kotlin-extractor/src/main/kotlin/KotlinUsesExtractor.kt b/java/kotlin-extractor/src/main/kotlin/KotlinUsesExtractor.kt
index 6785169ac59..e0c254aed1b 100644
--- a/java/kotlin-extractor/src/main/kotlin/KotlinUsesExtractor.kt
+++ b/java/kotlin-extractor/src/main/kotlin/KotlinUsesExtractor.kt
@@ -69,13 +69,11 @@ open class KotlinUsesExtractor(
 
     @OptIn(kotlin.ExperimentalStdlibApi::class) // Annotation required by kotlin versions < 1.5
     fun extractFileClass(f: IrFile): Label<out DbClass> {
-        val fileName = f.fileEntry.name
         val pkg = f.fqName.asString()
-        val defaultName = fileName.replaceFirst(Regex(""".*[/\\]"""), "").replaceFirst(Regex("""\.kt$"""), "").replaceFirstChar({ it.uppercase() }) + "Kt"
-        var jvmName = getJvmName(f) ?: defaultName
+        val jvmName = getFileClassName(f)
         val qualClassName = if (pkg.isEmpty()) jvmName else "$pkg.$jvmName"
         val label = "@\"class;$qualClassName\""
-        val id: Label<DbClass> = tw.getLabelFor(label, {
+        val id: Label<DbClass> = tw.getLabelFor(label) {
             val fileId = tw.mkFileId(f.path, false)
             val locId = tw.getWholeFileLocation(fileId)
             val pkgId = extractPackage(pkg)
@@ -84,7 +82,7 @@ open class KotlinUsesExtractor(
             tw.writeHasLocation(it, locId)
 
             addModifiers(it, "public", "final")
-        })
+        }
         return id
     }
 
@@ -258,10 +256,26 @@ open class KotlinUsesExtractor(
     private fun propertySignature(p: IrProperty) =
         ((p.getter ?: p.setter)?.extensionReceiverParameter?.let { useType(erase(it.type)).javaResult.signature } ?: "")
 
+    fun getTrapFileSignature(d: IrDeclaration) =
+        when(d) {
+            is IrFunction ->
+                // Note we erase the parameter types before calling useType even though the signature should be the same
+                // in order to prevent an infinite loop through useTypeParameter -> useDeclarationParent -> useFunction
+                // -> extractFunctionLaterIfExternalFileMember, which would result for `fun <T> f(t: T) { ... }` for example.
+                (listOfNotNull(d.extensionReceiverParameter) + d.valueParameters)
+                    .map { useType(erase(it.type)).javaResult.signature }
+                    .joinToString(separator = ",", prefix = "(", postfix = ")")
+            is IrProperty -> propertySignature(d) + externalClassExtractor.propertySignature
+            is IrField -> (d.correspondingPropertySymbol?.let { propertySignature(it.owner) } ?: "") + externalClassExtractor.fieldSignature
+            else -> "unknown signature".also {
+                logger.warn("Trap file signature requested for unexpected element $d")
+            }
+        }
+
     private fun extractPropertyLaterIfExternalFileMember(p: IrProperty) {
         if (isExternalFileClassMember(p)) {
             extractExternalClassLater(p.parentAsClass)
-            val signature = propertySignature(p) + externalClassExtractor.propertySignature
+            val signature = getTrapFileSignature(p)
             dependencyCollector?.addDependency(p, signature)
             externalClassExtractor.extractLater(p, signature)
         }
@@ -270,7 +284,7 @@ open class KotlinUsesExtractor(
     private fun extractFieldLaterIfExternalFileMember(f: IrField) {
         if (isExternalFileClassMember(f)) {
             extractExternalClassLater(f.parentAsClass)
-            val signature = (f.correspondingPropertySymbol?.let { propertySignature(it.owner) } ?: "") + externalClassExtractor.fieldSignature
+            val signature = getTrapFileSignature(f)
             dependencyCollector?.addDependency(f, signature)
             externalClassExtractor.extractLater(f, signature)
         }
@@ -285,18 +299,7 @@ open class KotlinUsesExtractor(
                 // getters and setters are extracted alongside it
                 return
             }
-            // Note we erase the parameter types before calling useType even though the signature should be the same
-            // in order to prevent an infinite loop through useTypeParameter -> useDeclarationParent -> useFunction
-            // -> extractFunctionLaterIfExternalFileMember, which would result for `fun <T> f(t: T) { ... }` for example.
-            val ext = f.extensionReceiverParameter
-            val parameters = if (ext != null) {
-                listOf(ext) + f.valueParameters
-            } else {
-                f.valueParameters
-            }
-
-            val paramSigs = parameters.map { useType(erase(it.type)).javaResult.signature }
-            val signature = paramSigs.joinToString(separator = ",", prefix = "(", postfix = ")")
+            val signature = getTrapFileSignature(f)
             dependencyCollector?.addDependency(f, signature)
             externalClassExtractor.extractLater(f, signature)
         }
diff --git a/java/kotlin-extractor/src/main/kotlin/utils/ClassNames.kt b/java/kotlin-extractor/src/main/kotlin/utils/ClassNames.kt
index 15ca35a1438..e5228a57fe6 100644
--- a/java/kotlin-extractor/src/main/kotlin/utils/ClassNames.kt
+++ b/java/kotlin-extractor/src/main/kotlin/utils/ClassNames.kt
@@ -9,6 +9,7 @@ import org.jetbrains.kotlin.load.kotlin.KotlinJvmBinarySourceElement
 
 import com.intellij.openapi.vfs.VirtualFile
 import org.jetbrains.kotlin.builtins.jvm.JavaToKotlinClassMap
+import org.jetbrains.kotlin.ir.IrElement
 import org.jetbrains.kotlin.ir.declarations.*
 import org.jetbrains.kotlin.ir.util.fqNameWhenAvailable
 import org.jetbrains.kotlin.ir.util.parentClassOrNull
@@ -21,20 +22,40 @@ import org.jetbrains.kotlin.load.kotlin.JvmPackagePartSource
 // for `that`.
 private fun getName(d: IrDeclarationWithName) = (d as? IrAnnotationContainer)?.let { getJvmName(it) } ?: d.name.asString()
 
-fun getIrDeclBinaryName(that: IrDeclaration): String {
-  val shortName = when(that) {
-      is IrDeclarationWithName -> getName(that)
-      else -> "(unknown-name)"
-  }
-  val internalName = StringBuilder(shortName);
-  generateSequence(that.parent) { (it as? IrDeclaration)?.parent }
-      .forEach {
-          when (it) {
-              is IrClass -> internalName.insert(0, getName(it) + "$")
-              is IrPackageFragment -> it.fqName.asString().takeIf { fqName -> fqName.isNotEmpty() }?.let { fqName -> internalName.insert(0, "$fqName.") }
-          }
-      }
-  return internalName.toString()
+fun getFileClassName(f: IrFile) =
+    getJvmName(f) ?:
+        ((f.fileEntry.name.replaceFirst(Regex(""".*[/\\]"""), "")
+        .replaceFirst(Regex("""\.kt$"""), "")
+        .replaceFirstChar { it.uppercase() }) + "Kt")
+
+fun getIrElementBinaryName(that: IrElement): String {
+    if (that is IrFile) {
+        val shortName = getFileClassName(that)
+        val pkg = that.fqName.asString()
+        return if (pkg.isEmpty()) shortName else "$pkg.$shortName"
+    }
+
+    if (that !is IrDeclaration) {
+        return  "(unknown-name)"
+    }
+
+    val shortName = when(that) {
+        is IrDeclarationWithName -> getName(that)
+        else -> "(unknown-name)"
+    }
+    val internalName = StringBuilder(shortName)
+    generateSequence(that.parent) { (it as? IrDeclaration)?.parent }
+        .forEach {
+            if (it is IrFile) {
+                // Note we'll fall through and do the IrPackageFragment case as well, since IrFile <: IrPackageFragment
+                internalName.insert(0, getFileClassName(it) + "$")
+            }
+            when (it) {
+                is IrClass -> internalName.insert(0, getName(it) + "$")
+                is IrPackageFragment -> it.fqName.asString().takeIf { fqName -> fqName.isNotEmpty() }?.let { fqName -> internalName.insert(0, "$fqName.") }
+            }
+        }
+    return internalName.toString()
 }
 
 fun getIrClassVirtualFile(irClass: IrClass): VirtualFile? {
@@ -81,7 +102,7 @@ private fun getRawIrClassBinaryPath(irClass: IrClass) =
 fun getIrClassBinaryPath(irClass: IrClass): String {
   return getRawIrClassBinaryPath(irClass)
   // Otherwise, make up a fake location:
-    ?: "/!unknown-binary-location/${getIrDeclBinaryName(irClass).replace(".", "/")}.class"
+    ?: "/!unknown-binary-location/${getIrElementBinaryName(irClass).replace(".", "/")}.class"
 }
 
 fun getContainingClassOrSelf(decl: IrDeclaration): IrClass? {

From 540a2a623e70a970f0ae7dc2c2b21e9f07cebbb1 Mon Sep 17 00:00:00 2001
From: Chris Smowton <smowton@github.com>
Date: Fri, 2 Dec 2022 17:03:59 +0000
Subject: [PATCH 1075/1420] Don't create stub trap files for anonymous or local
 classes, or unexpected kinds of top-level declaration

---
 java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt b/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt
index f1c3ef03764..9ebcf117530 100644
--- a/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt
+++ b/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt
@@ -92,7 +92,7 @@ open class KotlinFileExtractor(
 
             file.declarations.forEach {
                 extractDeclaration(it, extractPrivateMembers = true, extractFunctionBodies = true)
-                if (it !is IrClass) {
+                if (it is IrProperty || it is IrField || it is IrFunction) {
                     externalClassExtractor.noteElementExtractedFromSource(it, getTrapFileSignature(it))
                 }
             }
@@ -523,7 +523,7 @@ open class KotlinFileExtractor(
 
                 linesOfCode?.linesOfCodeInDeclaration(c, id)
 
-                if (extractFunctionBodies)
+                if (extractFunctionBodies && !c.isAnonymousObject && !c.isLocal)
                     externalClassExtractor.noteElementExtractedFromSource(c)
 
                 return id

From 910a1f872d0cc31c4a40acbedfaa7ca01f123edd Mon Sep 17 00:00:00 2001
From: Chris Smowton <smowton@github.com>
Date: Fri, 2 Dec 2022 17:04:34 +0000
Subject: [PATCH 1076/1420] Adjust opt-in required to use string-manipulation
 functions in Kotlin <= 1.5

---
 java/kotlin-extractor/src/main/kotlin/KotlinUsesExtractor.kt | 1 -
 java/kotlin-extractor/src/main/kotlin/utils/ClassNames.kt    | 1 +
 2 files changed, 1 insertion(+), 1 deletion(-)

diff --git a/java/kotlin-extractor/src/main/kotlin/KotlinUsesExtractor.kt b/java/kotlin-extractor/src/main/kotlin/KotlinUsesExtractor.kt
index e0c254aed1b..0fc33fc2a64 100644
--- a/java/kotlin-extractor/src/main/kotlin/KotlinUsesExtractor.kt
+++ b/java/kotlin-extractor/src/main/kotlin/KotlinUsesExtractor.kt
@@ -67,7 +67,6 @@ open class KotlinUsesExtractor(
         TypeResult(fakeKotlinType(), "", "")
     )
 
-    @OptIn(kotlin.ExperimentalStdlibApi::class) // Annotation required by kotlin versions < 1.5
     fun extractFileClass(f: IrFile): Label<out DbClass> {
         val pkg = f.fqName.asString()
         val jvmName = getFileClassName(f)
diff --git a/java/kotlin-extractor/src/main/kotlin/utils/ClassNames.kt b/java/kotlin-extractor/src/main/kotlin/utils/ClassNames.kt
index e5228a57fe6..fc304380b1a 100644
--- a/java/kotlin-extractor/src/main/kotlin/utils/ClassNames.kt
+++ b/java/kotlin-extractor/src/main/kotlin/utils/ClassNames.kt
@@ -22,6 +22,7 @@ import org.jetbrains.kotlin.load.kotlin.JvmPackagePartSource
 // for `that`.
 private fun getName(d: IrDeclarationWithName) = (d as? IrAnnotationContainer)?.let { getJvmName(it) } ?: d.name.asString()
 
+@OptIn(ExperimentalStdlibApi::class) // Annotation required by kotlin versions < 1.5
 fun getFileClassName(f: IrFile) =
     getJvmName(f) ?:
         ((f.fileEntry.name.replaceFirst(Regex(""".*[/\\]"""), "")

From d9dc8e38f93ed97d19945b772341b3d36c4e4ce3 Mon Sep 17 00:00:00 2001
From: Chris Smowton <smowton@github.com>
Date: Fri, 2 Dec 2022 17:05:04 +0000
Subject: [PATCH 1077/1420] Fix binary names for classes declared from source

Only top-level non-class declarations need the IrFile's expected class name inserting
---
 .../src/main/kotlin/utils/ClassNames.kt             | 13 +++++++++----
 1 file changed, 9 insertions(+), 4 deletions(-)

diff --git a/java/kotlin-extractor/src/main/kotlin/utils/ClassNames.kt b/java/kotlin-extractor/src/main/kotlin/utils/ClassNames.kt
index fc304380b1a..ab4010242a7 100644
--- a/java/kotlin-extractor/src/main/kotlin/utils/ClassNames.kt
+++ b/java/kotlin-extractor/src/main/kotlin/utils/ClassNames.kt
@@ -44,13 +44,18 @@ fun getIrElementBinaryName(that: IrElement): String {
         is IrDeclarationWithName -> getName(that)
         else -> "(unknown-name)"
     }
+
     val internalName = StringBuilder(shortName)
+    if (that !is IrClass) {
+        val parent = that.parent
+        if (parent is IrFile) {
+            // Note we'll fall through and do the IrPackageFragment case as well, since IrFile <: IrPackageFragment
+            internalName.insert(0, getFileClassName(parent) + "$")
+        }
+    }
+
     generateSequence(that.parent) { (it as? IrDeclaration)?.parent }
         .forEach {
-            if (it is IrFile) {
-                // Note we'll fall through and do the IrPackageFragment case as well, since IrFile <: IrPackageFragment
-                internalName.insert(0, getFileClassName(it) + "$")
-            }
             when (it) {
                 is IrClass -> internalName.insert(0, getName(it) + "$")
                 is IrPackageFragment -> it.fqName.asString().takeIf { fqName -> fqName.isNotEmpty() }?.let { fqName -> internalName.insert(0, "$fqName.") }

From 82f3c2f6d55a843ee64479df99e838da9df64935 Mon Sep 17 00:00:00 2001
From: Chris Smowton <smowton@github.com>
Date: Tue, 6 Dec 2022 16:46:26 +0000
Subject: [PATCH 1078/1420] Mark the Companion field as static

---
 java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt b/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt
index 9ebcf117530..33e1fa2fb11 100644
--- a/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt
+++ b/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt
@@ -514,6 +514,9 @@ open class KotlinFileExtractor(
                     addModifiers(instance.id, "public", "static", "final")
                     tw.writeClass_object(id.cast<DbClass>(), instance.id)
                 }
+                if (c.isObject) {
+                    addModifiers(id, "static")
+                }
                 if (extractFunctionBodies && needsObinitFunction(c)) {
                     extractObinitFunction(c, id)
                 }

From 5e023bf6197b438ddf438186b7b8167c71b3d30a Mon Sep 17 00:00:00 2001
From: Chris Smowton <smowton@github.com>
Date: Tue, 6 Dec 2022 17:41:34 +0000
Subject: [PATCH 1079/1420] Remove no-longer-applicable diagnostic matches

These resulted from the Java compiler exploring NotNull and other Kotlin-emitted annotations, which it no longer does because it finds a .class trap file already present and truncates its class-graph walk
---
 .../test/kotlin/library-tests/annotations/jvmName/test.kt   | 6 ------
 .../library-tests/arrays-with-variances/takesArrayList.kt   | 3 ---
 java/ql/test/kotlin/library-tests/extensions/extensions.kt  | 3 ---
 .../test/kotlin/library-tests/jvmoverloads_generics/test.kt | 5 -----
 4 files changed, 17 deletions(-)

diff --git a/java/ql/test/kotlin/library-tests/annotations/jvmName/test.kt b/java/ql/test/kotlin/library-tests/annotations/jvmName/test.kt
index edbca12e011..eea98625d5c 100644
--- a/java/ql/test/kotlin/library-tests/annotations/jvmName/test.kt
+++ b/java/ql/test/kotlin/library-tests/annotations/jvmName/test.kt
@@ -16,9 +16,3 @@ class X {
 annotation class Ann(
     val p: Int,
     @get:JvmName("w") val q: Int)
-
-// Diagnostic Matches: Incomplete annotation: @kotlin.jvm.JvmName(name="changeY")
-// Diagnostic Matches: Incomplete annotation: @kotlin.jvm.JvmName(name="getX_prop")
-// Diagnostic Matches: Incomplete annotation: @kotlin.jvm.JvmName(name="method")
-// Diagnostic Matches: Incomplete annotation: @kotlin.jvm.JvmName(name="y")
-// Diagnostic Matches: Unknown location for kotlin.jvm.JvmName
diff --git a/java/ql/test/kotlin/library-tests/arrays-with-variances/takesArrayList.kt b/java/ql/test/kotlin/library-tests/arrays-with-variances/takesArrayList.kt
index 009b1ae12f4..1278d866d84 100644
--- a/java/ql/test/kotlin/library-tests/arrays-with-variances/takesArrayList.kt
+++ b/java/ql/test/kotlin/library-tests/arrays-with-variances/takesArrayList.kt
@@ -110,6 +110,3 @@ public class TakesArrayList {
   fun inInArrayComparableAny(c: Comparable<Array<in Array<in Any>>>) { }
 
 }
-
-// Diagnostic Matches: Completion failure for type: org.jetbrains.annotations.NotNull
-// Diagnostic Matches: Unknown location for org.jetbrains.annotations.NotNull
diff --git a/java/ql/test/kotlin/library-tests/extensions/extensions.kt b/java/ql/test/kotlin/library-tests/extensions/extensions.kt
index c80841a849b..b5bc5b8c2cb 100644
--- a/java/ql/test/kotlin/library-tests/extensions/extensions.kt
+++ b/java/ql/test/kotlin/library-tests/extensions/extensions.kt
@@ -30,6 +30,3 @@ fun foo() {
     fun String.baz(p1: String): String { return "Baz" }
     "someString".baz("bazParam")
 }
-
-// Diagnostic Matches: Completion failure for type: org.jetbrains.annotations.NotNull
-// Diagnostic Matches: Unknown location for org.jetbrains.annotations.NotNull
diff --git a/java/ql/test/kotlin/library-tests/jvmoverloads_generics/test.kt b/java/ql/test/kotlin/library-tests/jvmoverloads_generics/test.kt
index eaa561d5ccf..3e5ced39c3f 100644
--- a/java/ql/test/kotlin/library-tests/jvmoverloads_generics/test.kt
+++ b/java/ql/test/kotlin/library-tests/jvmoverloads_generics/test.kt
@@ -4,8 +4,3 @@ public class A {
   fun <T> genericFunctionWithOverloads(x: T? = null, y: List<T>? = null, z: T? = null): T? = z
 
 }
-
-// Diagnostic Matches: Completion failure for type: kotlin.jvm.JvmOverloads
-// Diagnostic Matches: Completion failure for type: org.jetbrains.annotations.Nullable
-// Diagnostic Matches: Unknown location for kotlin.jvm.JvmOverloads
-// Diagnostic Matches: Unknown location for org.jetbrains.annotations.Nullable

From f2fded64862a6717ea6ad12b70fe6a67b442c50e Mon Sep 17 00:00:00 2001
From: Chris Smowton <smowton@github.com>
Date: Tue, 6 Dec 2022 17:44:12 +0000
Subject: [PATCH 1080/1420] Accept jvmstatic-annotation changes

These occur because the Companion field is odd, being extracted from source but not having an associated FieldDeclaration, leading to PrintAst enumerating the node differently depending on whether it has a source-file location or not but in either case choosing not to show it.
---
 .../jvmstatic-annotation/PrintAst.expected    | 73 +++++--------------
 .../jvmstatic-annotation/test.kt              |  5 --
 2 files changed, 20 insertions(+), 58 deletions(-)

diff --git a/java/ql/test/kotlin/library-tests/jvmstatic-annotation/PrintAst.expected b/java/ql/test/kotlin/library-tests/jvmstatic-annotation/PrintAst.expected
index 1db0b09adc0..3971afbe12b 100644
--- a/java/ql/test/kotlin/library-tests/jvmstatic-annotation/PrintAst.expected
+++ b/java/ql/test/kotlin/library-tests/jvmstatic-annotation/PrintAst.expected
@@ -141,11 +141,11 @@ test.kt:
 #   65|             0: [MethodAccess] getPropWithStaticGetter(...)
 #   65|               -1: [TypeAccess] NonCompanion
 #    9|   2: [Class] HasCompanion
-#    9|     2: [Constructor] HasCompanion
+#    9|     1: [Constructor] HasCompanion
 #    9|       5: [BlockStmt] { ... }
 #    9|         0: [SuperConstructorInvocationStmt] super(...)
 #    9|         1: [BlockStmt] { ... }
-#   11|     3: [Class] Companion
+#   11|     2: [Class] Companion
 #   11|       1: [Constructor] Companion
 #   11|         5: [BlockStmt] { ... }
 #   11|           0: [SuperConstructorInvocationStmt] super(...)
@@ -157,11 +157,9 @@ test.kt:
 #   17|               0: [KtInitializerAssignExpr] ...=...
 #   17|                 0: [VarAccess] nonStaticProp
 #   13|       2: [Method] staticMethod
-#-----|         1: (Annotations)
 #   13|         3: [TypeAccess] String
 #-----|         4: (Parameters)
 #   13|           0: [Parameter] s
-#-----|             -1: (Annotations)
 #   13|             0: [TypeAccess] String
 #   13|         5: [BlockStmt] { ... }
 #   13|           0: [ReturnStmt] return ...
@@ -169,11 +167,9 @@ test.kt:
 #   13|               -1: [ThisAccess] this
 #   13|               0: [VarAccess] s
 #   14|       3: [Method] nonStaticMethod
-#-----|         1: (Annotations)
 #   14|         3: [TypeAccess] String
 #-----|         4: (Parameters)
 #   14|           0: [Parameter] s
-#-----|             -1: (Annotations)
 #   14|             0: [TypeAccess] String
 #   14|         5: [BlockStmt] { ... }
 #   14|           0: [ReturnStmt] return ...
@@ -184,7 +180,6 @@ test.kt:
 #   16|         -1: [TypeAccess] String
 #   16|         0: [StringLiteral] "a"
 #   16|       5: [Method] getStaticProp
-#-----|         1: (Annotations)
 #   16|         3: [TypeAccess] String
 #   16|         5: [BlockStmt] { ... }
 #   16|           0: [ReturnStmt] return ...
@@ -194,7 +189,6 @@ test.kt:
 #   16|         3: [TypeAccess] Unit
 #-----|         4: (Parameters)
 #   16|           0: [Parameter] <set-?>
-#-----|             -1: (Annotations)
 #   16|             0: [TypeAccess] String
 #   16|         5: [BlockStmt] { ... }
 #   16|           0: [ExprStmt] <Expr>;
@@ -206,7 +200,6 @@ test.kt:
 #   17|         -1: [TypeAccess] String
 #   17|         0: [StringLiteral] "b"
 #   17|       8: [Method] getNonStaticProp
-#-----|         1: (Annotations)
 #   17|         3: [TypeAccess] String
 #   17|         5: [BlockStmt] { ... }
 #   17|           0: [ReturnStmt] return ...
@@ -216,7 +209,6 @@ test.kt:
 #   17|         3: [TypeAccess] Unit
 #-----|         4: (Parameters)
 #   17|           0: [Parameter] <set-?>
-#-----|             -1: (Annotations)
 #   17|             0: [TypeAccess] String
 #   17|         5: [BlockStmt] { ... }
 #   17|           0: [ExprStmt] <Expr>;
@@ -225,7 +217,6 @@ test.kt:
 #   17|                 -1: [ThisAccess] this
 #   17|               1: [VarAccess] <set-?>
 #   20|       10: [Method] getPropWithStaticGetter
-#-----|         1: (Annotations)
 #   20|         3: [TypeAccess] String
 #   20|         5: [BlockStmt] { ... }
 #   20|           0: [ReturnStmt] return ...
@@ -235,7 +226,6 @@ test.kt:
 #   21|         3: [TypeAccess] Unit
 #-----|         4: (Parameters)
 #   21|           0: [Parameter] s
-#-----|             -1: (Annotations)
 #   21|             0: [TypeAccess] String
 #   21|         5: [BlockStmt] { ... }
 #   21|           0: [ExprStmt] <Expr>;
@@ -243,30 +233,25 @@ test.kt:
 #   21|               -1: [ThisAccess] this
 #   21|               0: [VarAccess] s
 #   24|       12: [Method] getPropWithStaticSetter
-#-----|         1: (Annotations)
 #   24|         3: [TypeAccess] String
 #   24|         5: [BlockStmt] { ... }
 #   24|           0: [ReturnStmt] return ...
 #   24|             0: [MethodAccess] getPropWithStaticGetter(...)
 #   24|               -1: [ThisAccess] this
 #   25|       13: [Method] setPropWithStaticSetter
-#-----|         1: (Annotations)
 #   25|         3: [TypeAccess] Unit
 #-----|         4: (Parameters)
 #   25|           0: [Parameter] s
-#-----|             -1: (Annotations)
 #   25|             0: [TypeAccess] String
 #   25|         5: [BlockStmt] { ... }
 #   25|           0: [ExprStmt] <Expr>;
 #   25|             0: [MethodAccess] setPropWithStaticGetter(...)
 #   25|               -1: [ThisAccess] this
 #   25|               0: [VarAccess] s
-#   13|     4: [Method] staticMethod
-#-----|       1: (Annotations)
+#   13|     3: [Method] staticMethod
 #   13|       3: [TypeAccess] String
 #-----|       4: (Parameters)
 #   13|         0: [Parameter] s
-#-----|           -1: (Annotations)
 #   13|           0: [TypeAccess] String
 #   13|       5: [BlockStmt] { ... }
 #   13|         0: [ReturnStmt] return ...
@@ -274,19 +259,17 @@ test.kt:
 #   13|             -1: [VarAccess] HasCompanion.Companion
 #   13|               -1: [TypeAccess] HasCompanion
 #   13|             0: [VarAccess] s
-#   16|     5: [Method] getStaticProp
-#-----|       1: (Annotations)
+#   16|     4: [Method] getStaticProp
 #   16|       3: [TypeAccess] String
 #   16|       5: [BlockStmt] { ... }
 #   16|         0: [ReturnStmt] return ...
 #   16|           0: [MethodAccess] getStaticProp(...)
 #   16|             -1: [VarAccess] HasCompanion.Companion
 #   16|               -1: [TypeAccess] HasCompanion
-#   16|     6: [Method] setStaticProp
+#   16|     5: [Method] setStaticProp
 #   16|       3: [TypeAccess] Unit
 #-----|       4: (Parameters)
 #   16|         0: [Parameter] <set-?>
-#-----|           -1: (Annotations)
 #   16|           0: [TypeAccess] String
 #   16|       5: [BlockStmt] { ... }
 #   16|         0: [ReturnStmt] return ...
@@ -294,20 +277,17 @@ test.kt:
 #   16|             -1: [VarAccess] HasCompanion.Companion
 #   16|               -1: [TypeAccess] HasCompanion
 #   16|             0: [VarAccess] <set-?>
-#   20|     7: [Method] getPropWithStaticGetter
-#-----|       1: (Annotations)
+#   20|     6: [Method] getPropWithStaticGetter
 #   20|       3: [TypeAccess] String
 #   20|       5: [BlockStmt] { ... }
 #   20|         0: [ReturnStmt] return ...
 #   20|           0: [MethodAccess] getPropWithStaticGetter(...)
 #   20|             -1: [VarAccess] HasCompanion.Companion
 #   20|               -1: [TypeAccess] HasCompanion
-#   25|     8: [Method] setPropWithStaticSetter
-#-----|       1: (Annotations)
+#   25|     7: [Method] setPropWithStaticSetter
 #   25|       3: [TypeAccess] Unit
 #-----|       4: (Parameters)
 #   25|         0: [Parameter] s
-#-----|           -1: (Annotations)
 #   25|           0: [TypeAccess] String
 #   25|       5: [BlockStmt] { ... }
 #   25|         0: [ReturnStmt] return ...
@@ -316,7 +296,7 @@ test.kt:
 #   25|               -1: [TypeAccess] HasCompanion
 #   25|             0: [VarAccess] s
 #   31|   3: [Class] NonCompanion
-#   31|     2: [Constructor] NonCompanion
+#   31|     1: [Constructor] NonCompanion
 #   31|       5: [BlockStmt] { ... }
 #   31|         0: [SuperConstructorInvocationStmt] super(...)
 #   31|         1: [BlockStmt] { ... }
@@ -326,12 +306,10 @@ test.kt:
 #   37|           1: [ExprStmt] <Expr>;
 #   37|             0: [KtInitializerAssignExpr] ...=...
 #   37|               0: [VarAccess] nonStaticProp
-#   33|     3: [Method] staticMethod
-#-----|       1: (Annotations)
+#   33|     2: [Method] staticMethod
 #   33|       3: [TypeAccess] String
 #-----|       4: (Parameters)
 #   33|         0: [Parameter] s
-#-----|           -1: (Annotations)
 #   33|           0: [TypeAccess] String
 #   33|       5: [BlockStmt] { ... }
 #   33|         0: [ReturnStmt] return ...
@@ -339,34 +317,30 @@ test.kt:
 #   33|             -1: [VarAccess] NonCompanion.INSTANCE
 #   33|               -1: [TypeAccess] NonCompanion
 #   33|             0: [VarAccess] s
-#   34|     4: [Method] nonStaticMethod
-#-----|       1: (Annotations)
+#   34|     3: [Method] nonStaticMethod
 #   34|       3: [TypeAccess] String
 #-----|       4: (Parameters)
 #   34|         0: [Parameter] s
-#-----|           -1: (Annotations)
 #   34|           0: [TypeAccess] String
 #   34|       5: [BlockStmt] { ... }
 #   34|         0: [ReturnStmt] return ...
 #   34|           0: [MethodAccess] staticMethod(...)
 #   34|             -1: [TypeAccess] NonCompanion
 #   34|             0: [VarAccess] s
-#   36|     5: [FieldDeclaration] String staticProp;
+#   36|     4: [FieldDeclaration] String staticProp;
 #   36|       -1: [TypeAccess] String
 #   36|       0: [StringLiteral] "a"
-#   36|     6: [Method] getStaticProp
-#-----|       1: (Annotations)
+#   36|     5: [Method] getStaticProp
 #   36|       3: [TypeAccess] String
 #   36|       5: [BlockStmt] { ... }
 #   36|         0: [ReturnStmt] return ...
 #   36|           0: [VarAccess] NonCompanion.INSTANCE.staticProp
 #   36|             -1: [VarAccess] NonCompanion.INSTANCE
 #   36|               -1: [TypeAccess] NonCompanion
-#   36|     7: [Method] setStaticProp
+#   36|     6: [Method] setStaticProp
 #   36|       3: [TypeAccess] Unit
 #-----|       4: (Parameters)
 #   36|         0: [Parameter] <set-?>
-#-----|           -1: (Annotations)
 #   36|           0: [TypeAccess] String
 #   36|       5: [BlockStmt] { ... }
 #   36|         0: [ExprStmt] <Expr>;
@@ -375,21 +349,19 @@ test.kt:
 #   36|               -1: [VarAccess] NonCompanion.INSTANCE
 #   36|                 -1: [TypeAccess] NonCompanion
 #   36|             1: [VarAccess] <set-?>
-#   37|     8: [FieldDeclaration] String nonStaticProp;
+#   37|     7: [FieldDeclaration] String nonStaticProp;
 #   37|       -1: [TypeAccess] String
 #   37|       0: [StringLiteral] "b"
-#   37|     9: [Method] getNonStaticProp
-#-----|       1: (Annotations)
+#   37|     8: [Method] getNonStaticProp
 #   37|       3: [TypeAccess] String
 #   37|       5: [BlockStmt] { ... }
 #   37|         0: [ReturnStmt] return ...
 #   37|           0: [VarAccess] this.nonStaticProp
 #   37|             -1: [ThisAccess] this
-#   37|     10: [Method] setNonStaticProp
+#   37|     9: [Method] setNonStaticProp
 #   37|       3: [TypeAccess] Unit
 #-----|       4: (Parameters)
 #   37|         0: [Parameter] <set-?>
-#-----|           -1: (Annotations)
 #   37|           0: [TypeAccess] String
 #   37|       5: [BlockStmt] { ... }
 #   37|         0: [ExprStmt] <Expr>;
@@ -397,38 +369,33 @@ test.kt:
 #   37|             0: [VarAccess] this.nonStaticProp
 #   37|               -1: [ThisAccess] this
 #   37|             1: [VarAccess] <set-?>
-#   40|     11: [Method] getPropWithStaticGetter
-#-----|       1: (Annotations)
+#   40|     10: [Method] getPropWithStaticGetter
 #   40|       3: [TypeAccess] String
 #   40|       5: [BlockStmt] { ... }
 #   40|         0: [ReturnStmt] return ...
 #   40|           0: [MethodAccess] getPropWithStaticSetter(...)
 #   40|             -1: [VarAccess] NonCompanion.INSTANCE
 #   40|               -1: [TypeAccess] NonCompanion
-#   41|     12: [Method] setPropWithStaticGetter
+#   41|     11: [Method] setPropWithStaticGetter
 #   41|       3: [TypeAccess] Unit
 #-----|       4: (Parameters)
 #   41|         0: [Parameter] s
-#-----|           -1: (Annotations)
 #   41|           0: [TypeAccess] String
 #   41|       5: [BlockStmt] { ... }
 #   41|         0: [ExprStmt] <Expr>;
 #   41|           0: [MethodAccess] setPropWithStaticSetter(...)
 #   41|             -1: [TypeAccess] NonCompanion
 #   41|             0: [VarAccess] s
-#   44|     13: [Method] getPropWithStaticSetter
-#-----|       1: (Annotations)
+#   44|     12: [Method] getPropWithStaticSetter
 #   44|       3: [TypeAccess] String
 #   44|       5: [BlockStmt] { ... }
 #   44|         0: [ReturnStmt] return ...
 #   44|           0: [MethodAccess] getPropWithStaticGetter(...)
 #   44|             -1: [TypeAccess] NonCompanion
-#   45|     14: [Method] setPropWithStaticSetter
-#-----|       1: (Annotations)
+#   45|     13: [Method] setPropWithStaticSetter
 #   45|       3: [TypeAccess] Unit
 #-----|       4: (Parameters)
 #   45|         0: [Parameter] s
-#-----|           -1: (Annotations)
 #   45|           0: [TypeAccess] String
 #   45|       5: [BlockStmt] { ... }
 #   45|         0: [ExprStmt] <Expr>;
diff --git a/java/ql/test/kotlin/library-tests/jvmstatic-annotation/test.kt b/java/ql/test/kotlin/library-tests/jvmstatic-annotation/test.kt
index 211fceb0912..cbf553725b4 100644
--- a/java/ql/test/kotlin/library-tests/jvmstatic-annotation/test.kt
+++ b/java/ql/test/kotlin/library-tests/jvmstatic-annotation/test.kt
@@ -65,8 +65,3 @@ fun externalUser() {
   NonCompanion.propWithStaticSetter = NonCompanion.propWithStaticGetter
 
 }
-
-// Diagnostic Matches: Completion failure for type: kotlin.jvm.JvmStatic
-// Diagnostic Matches: Completion failure for type: org.jetbrains.annotations.NotNull
-// Diagnostic Matches: Unknown location for kotlin.jvm.JvmStatic
-// Diagnostic Matches: Unknown location for org.jetbrains.annotations.NotNull

From 9f722a7e12e75f3282e93bd3810f05ac542773c6 Mon Sep 17 00:00:00 2001
From: Chris Smowton <smowton@github.com>
Date: Tue, 6 Dec 2022 17:46:17 +0000
Subject: [PATCH 1081/1420] Disable java_and_kotlin inconsistency test; accept
 changes

This was testing that a signature inconsistency occurs, but this now manifests as a db inconsistency which can't be used as a test expectation because specific tuple numbers are liable to change with the environment.
---
 java/ql/test/kotlin/library-tests/java_and_kotlin/Java.java  | 3 +++
 java/ql/test/kotlin/library-tests/java_and_kotlin/Kotlin.kt  | 5 -----
 .../test/kotlin/library-tests/java_and_kotlin/test.expected  | 4 ----
 3 files changed, 3 insertions(+), 9 deletions(-)

diff --git a/java/ql/test/kotlin/library-tests/java_and_kotlin/Java.java b/java/ql/test/kotlin/library-tests/java_and_kotlin/Java.java
index 6240bced9f2..d1ae03db465 100644
--- a/java/ql/test/kotlin/library-tests/java_and_kotlin/Java.java
+++ b/java/ql/test/kotlin/library-tests/java_and_kotlin/Java.java
@@ -11,9 +11,12 @@ public class Java {
 			return super.fn0(x);
 		}
 
+/*
+// Java interop disabled as it currently doesn't work (no symbol fn1(int, Completion<...>) gets created)
 		@Override
 		public Object fn1(int x, Continuation<? super String> $completion) {
 			return super.fn1(x, $completion);
 		}
+*/
 	}
 }
diff --git a/java/ql/test/kotlin/library-tests/java_and_kotlin/Kotlin.kt b/java/ql/test/kotlin/library-tests/java_and_kotlin/Kotlin.kt
index 61c48cf8a5c..63e5ca99455 100644
--- a/java/ql/test/kotlin/library-tests/java_and_kotlin/Kotlin.kt
+++ b/java/ql/test/kotlin/library-tests/java_and_kotlin/Kotlin.kt
@@ -13,8 +13,3 @@ class Dkotlin : Base() {
     override fun fn0(x: Int): String = super.fn0(x)
     override suspend fun fn1(x: Int): String = super.fn1(x)
 }
-
-// Diagnostic Matches: Completion failure for type: org.jetbrains.annotations.NotNull
-// Diagnostic Matches: Completion failure for type: org.jetbrains.annotations.Nullable
-// Diagnostic Matches: Unknown location for org.jetbrains.annotations.NotNull
-// Diagnostic Matches: Unknown location for org.jetbrains.annotations.Nullable
diff --git a/java/ql/test/kotlin/library-tests/java_and_kotlin/test.expected b/java/ql/test/kotlin/library-tests/java_and_kotlin/test.expected
index 8da3febb040..fa37843355f 100644
--- a/java/ql/test/kotlin/library-tests/java_and_kotlin/test.expected
+++ b/java/ql/test/kotlin/library-tests/java_and_kotlin/test.expected
@@ -1,7 +1,6 @@
 methods
 | Java.java:4:7:4:13 | javaFun | javaFun() |
 | Java.java:10:17:10:19 | fn0 | fn0(int) |
-| Java.java:15:17:15:19 | fn1 | fn1(int,kotlin.coroutines.Continuation) |
 | Kotlin.kt:2:2:4:2 | kotlinFun | kotlinFun() |
 | Kotlin.kt:8:10:8:38 | fn0 | fn0(int) |
 | Kotlin.kt:9:18:9:46 | fn1 | fn1(int) |
@@ -9,15 +8,12 @@ methods
 | Kotlin.kt:14:22:14:59 | fn1 | fn1(int) |
 overrides
 | Java.java:10:17:10:19 | fn0 | Kotlin.kt:8:10:8:38 | fn0 |
-| Java.java:15:17:15:19 | fn1 | java_and_kotlin.testproj/test.class.files/Base.class:0:0:0:0 | fn1 |
 | Kotlin.kt:13:14:13:51 | fn0 | Kotlin.kt:8:10:8:38 | fn0 |
 | Kotlin.kt:14:22:14:59 | fn1 | Kotlin.kt:9:18:9:46 | fn1 |
 signature_mismatch
 | Kotlin.kt:9:18:9:46 | fn1 | fn1(int) |
-| java_and_kotlin.testproj/test.class.files/Base.class:0:0:0:0 | fn1 | fn1(int,kotlin.coroutines.Continuation) |
 #select
 | Java.java:5:3:5:26 | kotlinFun(...) | Kotlin.kt:2:2:4:2 | kotlinFun |
 | Java.java:11:11:11:22 | fn0(...) | Kotlin.kt:8:10:8:38 | fn0 |
-| Java.java:16:11:16:35 | fn1(...) | java_and_kotlin.testproj/test.class.files/Base.class:0:0:0:0 | fn1 |
 | Kotlin.kt:13:40:13:51 | fn0(...) | Kotlin.kt:8:10:8:38 | fn0 |
 | Kotlin.kt:14:48:14:59 | fn1(...) | Kotlin.kt:9:18:9:46 | fn1 |

From f5579d59f8db6e466669420f6ebdb26230b84dea Mon Sep 17 00:00:00 2001
From: Chris Smowton <smowton@github.com>
Date: Tue, 6 Dec 2022 17:48:01 +0000
Subject: [PATCH 1082/1420] Accept test changes: classes no longer getting
 multiple locations

---
 .../kotlin/library-tests/generics-location/locations.expected    | 1 -
 1 file changed, 1 deletion(-)

diff --git a/java/ql/test/kotlin/library-tests/generics-location/locations.expected b/java/ql/test/kotlin/library-tests/generics-location/locations.expected
index bafdc26e216..2cd1f0ead27 100644
--- a/java/ql/test/kotlin/library-tests/generics-location/locations.expected
+++ b/java/ql/test/kotlin/library-tests/generics-location/locations.expected
@@ -5,7 +5,6 @@ classLocations
 | main.A<Object> | file:///!unknown-binary-location/main/A.class:0:0:0:0 | file:///!unknown-binary-location/main/A.class:0:0:0:0 |
 | main.A<String> | A.class:0:0:0:0 | A.class:0:0:0:0 |
 | main.A<String> | file:///!unknown-binary-location/main/A.class:0:0:0:0 | file:///!unknown-binary-location/main/A.class:0:0:0:0 |
-| main.B | generics-location.testproj/test.class.files/main/B.class:0:0:0:0 | generics-location.testproj/test.class.files/main/B.class:0:0:0:0 |
 | main.B | generics.kt:3:1:11:1 | generics.kt:3:1:11:1 |
 | main.B<Integer> | generics-location.testproj/test.class.files/main/B.class:0:0:0:0 | generics-location.testproj/test.class.files/main/B.class:0:0:0:0 |
 | main.B<Object> | file:///!unknown-binary-location/main/B.class:0:0:0:0 | file:///!unknown-binary-location/main/B.class:0:0:0:0 |

From 59eb81b50a37b3c808eaf5629a5c55e24a35fb68 Mon Sep 17 00:00:00 2001
From: Chris Smowton <smowton@github.com>
Date: Tue, 6 Dec 2022 17:48:27 +0000
Subject: [PATCH 1083/1420] Accept test changes: a raw class getting extracted
 solely for use in a signature

We could revert this by allowing useType to avoid triggering class-instance extraction when used just for its signature result
---
 java/ql/test/kotlin/library-tests/instances/classes.expected | 1 +
 1 file changed, 1 insertion(+)

diff --git a/java/ql/test/kotlin/library-tests/instances/classes.expected b/java/ql/test/kotlin/library-tests/instances/classes.expected
index 771d4f32431..72fa8ccccf5 100644
--- a/java/ql/test/kotlin/library-tests/instances/classes.expected
+++ b/java/ql/test/kotlin/library-tests/instances/classes.expected
@@ -1,4 +1,5 @@
 | TestClassA.kt:2:1:3:1 | TestClassA |
+| TestClassA.kt:2:1:3:1 | TestClassA<> |
 | TestClassAUser.kt:0:0:0:0 | TestClassAUserKt |
 | TestClassAUser.kt:15:1:15:24 | TestClassAUser |
 | file:///!unknown-binary-location/TestClassA.class:0:0:0:0 | TestClassA<TestClassAUser> |

From d37a10e4f1bafe701bcc18dddf478f6473bcd578 Mon Sep 17 00:00:00 2001
From: Chris Smowton <smowton@github.com>
Date: Tue, 6 Dec 2022 17:50:16 +0000
Subject: [PATCH 1084/1420] Accept test changes: methods no longer appearing to
 be `final`

This is actually a bug, which we should follow up on subsequently.
---
 .../java_and_kotlin_internal/visibility.expected              | 4 ----
 1 file changed, 4 deletions(-)

diff --git a/java/ql/test/kotlin/library-tests/java_and_kotlin_internal/visibility.expected b/java/ql/test/kotlin/library-tests/java_and_kotlin_internal/visibility.expected
index 378da6dd22f..1f28867110e 100644
--- a/java/ql/test/kotlin/library-tests/java_and_kotlin_internal/visibility.expected
+++ b/java/ql/test/kotlin/library-tests/java_and_kotlin_internal/visibility.expected
@@ -3,14 +3,10 @@ isInternal
 | Kotlin.kt:2:11:3:2 | kotlinFun$main |
 | Kotlin.kt:6:10:6:36 | topLevelKotlinFun |
 modifiers_methods
-| file://:0:0:0:0 | final | Kotlin.kt:2:11:3:2 | kotlinFun$main |
-| file://:0:0:0:0 | final | Kotlin.kt:6:10:6:36 | topLevelKotlinFun |
 | file://:0:0:0:0 | internal | Kotlin.kt:2:11:3:2 | kotlinFun$main |
 | file://:0:0:0:0 | internal | Kotlin.kt:6:10:6:36 | topLevelKotlinFun |
 | file://:0:0:0:0 | static | Kotlin.kt:6:10:6:36 | topLevelKotlinFun |
 #select
-| Kotlin.kt:2:11:3:2 | kotlinFun$main | final |
 | Kotlin.kt:2:11:3:2 | kotlinFun$main | internal |
-| Kotlin.kt:6:10:6:36 | topLevelKotlinFun | final |
 | Kotlin.kt:6:10:6:36 | topLevelKotlinFun | internal |
 | Kotlin.kt:6:10:6:36 | topLevelKotlinFun | static |

From c68ac460c9bd7be7f96cbc87bb14218edd6d9867 Mon Sep 17 00:00:00 2001
From: Chris Smowton <smowton@github.com>
Date: Tue, 6 Dec 2022 17:57:18 +0000
Subject: [PATCH 1085/1420] Accept test changes: again this is a raw class
 extracted just for its signature.

---
 .../kotlin/kotlin_compiler_java_source/jlocs.expected            | 1 +
 1 file changed, 1 insertion(+)

diff --git a/java/ql/integration-tests/all-platforms/kotlin/kotlin_compiler_java_source/jlocs.expected b/java/ql/integration-tests/all-platforms/kotlin/kotlin_compiler_java_source/jlocs.expected
index 5be9218762e..1e32d73cc27 100644
--- a/java/ql/integration-tests/all-platforms/kotlin/kotlin_compiler_java_source/jlocs.expected
+++ b/java/ql/integration-tests/all-platforms/kotlin/kotlin_compiler_java_source/jlocs.expected
@@ -1,3 +1,4 @@
 | J.java:1:14:1:14 | J |
 | build/J.class:0:0:0:0 | J<String> |
+| file:///!unknown-binary-location/J.class:0:0:0:0 | J<> |
 | file:///!unknown-binary-location/J.class:0:0:0:0 | J<Integer> |

From 00f323c8bd75e521a0a1462536fae3ce143967ee Mon Sep 17 00:00:00 2001
From: Chris Smowton <smowton@github.com>
Date: Tue, 6 Dec 2022 18:34:28 +0000
Subject: [PATCH 1086/1420] Fix: extract directly exposed fields with `static`
 modifier

---
 .../src/main/kotlin/KotlinFileExtractor.kt          | 13 ++++++++-----
 .../src/main/kotlin/KotlinUsesExtractor.kt          |  6 ++++--
 2 files changed, 12 insertions(+), 7 deletions(-)

diff --git a/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt b/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt
index 33e1fa2fb11..093967a68c3 100644
--- a/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt
+++ b/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt
@@ -1262,13 +1262,13 @@ open class KotlinFileExtractor(
            DeclarationStackAdjuster(f).use {
                val fNameSuffix = getExtensionReceiverType(f)?.let { it.classFqName?.asString()?.replace(".", "$$") } ?: ""
                val extractType = if (isAnnotationClassField(f)) kClassToJavaClass(f.type) else f.type
-               return extractField(useField(f), "${f.name.asString()}$fNameSuffix", extractType, parentId, tw.getLocation(f), f.visibility, f, isExternalDeclaration(f), f.isFinal)
+               return extractField(useField(f), "${f.name.asString()}$fNameSuffix", extractType, parentId, tw.getLocation(f), f.visibility, f, isExternalDeclaration(f), f.isFinal, isDirectlyExposedCompanionObjectField(f))
            }
         }
     }
 
 
-    private fun extractField(id: Label<out DbField>, name: String, type: IrType, parentId: Label<out DbReftype>, locId: Label<DbLocation>, visibility: DescriptorVisibility, errorElement: IrElement, isExternalDeclaration: Boolean, isFinal: Boolean): Label<out DbField> {
+    private fun extractField(id: Label<out DbField>, name: String, type: IrType, parentId: Label<out DbReftype>, locId: Label<DbLocation>, visibility: DescriptorVisibility, errorElement: IrElement, isExternalDeclaration: Boolean, isFinal: Boolean, isStatic: Boolean): Label<out DbField> {
         val t = useType(type)
         tw.writeFields(id, name, t.javaResult.id, parentId, id)
         tw.writeFieldsKotlinType(id, t.kotlinResult.id)
@@ -1278,6 +1278,9 @@ open class KotlinFileExtractor(
         if (isFinal) {
             addModifiers(id, "final")
         }
+        if (isStatic) {
+            addModifiers(id, "static")
+        }
 
         if (!isExternalDeclaration) {
             val fieldDeclarationId = tw.getFreshIdLabel<DbFielddecl>()
@@ -4209,12 +4212,12 @@ open class KotlinFileExtractor(
             val firstAssignmentStmtIdx = 1
 
             if (dispatchReceiverInfo != null) {
-                extractField(dispatchReceiverInfo.field, "<dispatchReceiver>", dispatchReceiverInfo.type, classId, locId, DescriptorVisibilities.PRIVATE, callableReferenceExpr, isExternalDeclaration = false, isFinal = true)
+                extractField(dispatchReceiverInfo.field, "<dispatchReceiver>", dispatchReceiverInfo.type, classId, locId, DescriptorVisibilities.PRIVATE, callableReferenceExpr, isExternalDeclaration = false, isFinal = true, isStatic = false)
                 extractParameterToFieldAssignmentInConstructor("<dispatchReceiver>", dispatchReceiverInfo.type, dispatchReceiverInfo.field, 0 + dispatchReceiverInfo.indexOffset, firstAssignmentStmtIdx + dispatchReceiverInfo.indexOffset)
             }
 
             if (extensionReceiverInfo != null) {
-                extractField(extensionReceiverInfo.field, "<extensionReceiver>", extensionReceiverInfo.type, classId, locId, DescriptorVisibilities.PRIVATE, callableReferenceExpr, isExternalDeclaration = false, isFinal = true)
+                extractField(extensionReceiverInfo.field, "<extensionReceiver>", extensionReceiverInfo.type, classId, locId, DescriptorVisibilities.PRIVATE, callableReferenceExpr, isExternalDeclaration = false, isFinal = true, isStatic = false)
                 extractParameterToFieldAssignmentInConstructor( "<extensionReceiver>", extensionReceiverInfo.type, extensionReceiverInfo.field, 0 + extensionReceiverInfo.indexOffset, firstAssignmentStmtIdx + extensionReceiverInfo.indexOffset)
             }
         }
@@ -5282,7 +5285,7 @@ open class KotlinFileExtractor(
 
                     // add field
                     val fieldId = tw.getFreshIdLabel<DbField>()
-                    extractField(fieldId, "<fn>", functionType, classId, locId, DescriptorVisibilities.PRIVATE, e, isExternalDeclaration = false, isFinal = true)
+                    extractField(fieldId, "<fn>", functionType, classId, locId, DescriptorVisibilities.PRIVATE, e, isExternalDeclaration = false, isFinal = true, isStatic = false)
 
                     // adjust constructor
                     helper.extractParameterToFieldAssignmentInConstructor("<fn>", functionType, fieldId, 0, 1)
diff --git a/java/kotlin-extractor/src/main/kotlin/KotlinUsesExtractor.kt b/java/kotlin-extractor/src/main/kotlin/KotlinUsesExtractor.kt
index 0fc33fc2a64..dbacf42a192 100644
--- a/java/kotlin-extractor/src/main/kotlin/KotlinUsesExtractor.kt
+++ b/java/kotlin-extractor/src/main/kotlin/KotlinUsesExtractor.kt
@@ -1649,7 +1649,7 @@ open class KotlinUsesExtractor(
     fun useValueParameter(vp: IrValueParameter, parent: Label<out DbCallable>?): Label<out DbParam> =
         tw.getLabelFor(getValueParameterLabel(vp, parent))
 
-    private fun isDirectlyExposedCompanionObjectField(f: IrField) =
+    private fun isDirectlyExposableCompanionObjectField(f: IrField) =
         f.hasAnnotation(FqName("kotlin.jvm.JvmField")) ||
         f.correspondingPropertySymbol?.owner?.let {
             it.isConst || it.isLateinit
@@ -1657,12 +1657,14 @@ open class KotlinUsesExtractor(
 
     fun getFieldParent(f: IrField) =
         f.parentClassOrNull?.let {
-            if (it.isCompanion && isDirectlyExposedCompanionObjectField(f))
+            if (it.isCompanion && isDirectlyExposableCompanionObjectField(f))
                 it.parent
             else
                 null
         } ?: f.parent
 
+    fun isDirectlyExposedCompanionObjectField(f: IrField) = getFieldParent(f) != f.parent
+
     // Gets a field's corresponding property's extension receiver type, if any
     fun getExtensionReceiverType(f: IrField) =
         f.correspondingPropertySymbol?.owner?.let {

From 1c81f8d8d5de291e5949af43e5d2ea6ed6055ea2 Mon Sep 17 00:00:00 2001
From: Ed Minnix <egregius313@github.com>
Date: Tue, 6 Dec 2022 15:32:54 -0500
Subject: [PATCH 1087/1420] Apply suggestion from docs review

---
 .../CWE-079/AndroidWebViewSettingsEnabledJavaScript.qhelp   | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/java/ql/src/Security/CWE/CWE-079/AndroidWebViewSettingsEnabledJavaScript.qhelp b/java/ql/src/Security/CWE/CWE-079/AndroidWebViewSettingsEnabledJavaScript.qhelp
index c464b58045d..a60ec36995b 100644
--- a/java/ql/src/Security/CWE/CWE-079/AndroidWebViewSettingsEnabledJavaScript.qhelp
+++ b/java/ql/src/Security/CWE/CWE-079/AndroidWebViewSettingsEnabledJavaScript.qhelp
@@ -4,9 +4,9 @@
 <qhelp>
   <overview>
     <p>
-      Enabling JavaScript in an Android WebView allows for the running of JavaScript
-      code in the context of the running application. This opens the possibility for
-      cross-site scripting if the attacker can inject arbitrary JavaScript.
+      Enabling JavaScript in an Android WebView allows the execution of
+      JavaScript code in the context of the running application. This creates a
+      cross-site scripting vulnerability.
     </p>
 
     <p>

From d2e7797485537bf6cca948adbfb8d6c73c7e22ca Mon Sep 17 00:00:00 2001
From: Chris Smowton <smowton@github.com>
Date: Tue, 6 Dec 2022 20:39:03 +0000
Subject: [PATCH 1088/1420] Rename to writeStubTrapFile

---
 .../src/main/kotlin/ExternalDeclExtractor.kt                | 2 +-
 .../kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt | 6 +++---
 2 files changed, 4 insertions(+), 4 deletions(-)

diff --git a/java/kotlin-extractor/src/main/kotlin/ExternalDeclExtractor.kt b/java/kotlin-extractor/src/main/kotlin/ExternalDeclExtractor.kt
index 2e2e57e4503..3a5ab3e0fa4 100644
--- a/java/kotlin-extractor/src/main/kotlin/ExternalDeclExtractor.kt
+++ b/java/kotlin-extractor/src/main/kotlin/ExternalDeclExtractor.kt
@@ -39,7 +39,7 @@ class ExternalDeclExtractor(val logger: FileLogger, val invocationTrapFile: Stri
     }
     fun extractLater(c: IrClass) = extractLater(c, "")
 
-    fun noteElementExtractedFromSource(e: IrElement, signature: String = "") {
+    fun writeStubTrapFile(e: IrElement, signature: String = "") {
         extractElement(e, signature, true) { trapFileBW, _, _ ->
             trapFileBW.write("// Trap file stubbed because this declaration was extracted from source in $sourceFilePath\n")
             trapFileBW.write("// Part of invocation $invocationTrapFile\n")
diff --git a/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt b/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt
index 093967a68c3..4683731d8e9 100644
--- a/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt
+++ b/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt
@@ -93,7 +93,7 @@ open class KotlinFileExtractor(
             file.declarations.forEach {
                 extractDeclaration(it, extractPrivateMembers = true, extractFunctionBodies = true)
                 if (it is IrProperty || it is IrField || it is IrFunction) {
-                    externalClassExtractor.noteElementExtractedFromSource(it, getTrapFileSignature(it))
+                    externalClassExtractor.writeStubTrapFile(it, getTrapFileSignature(it))
                 }
             }
             extractStaticInitializer(file, { extractFileClass(file) })
@@ -105,7 +105,7 @@ open class KotlinFileExtractor(
 
             linesOfCode?.linesOfCodeInFile(id)
 
-            externalClassExtractor.noteElementExtractedFromSource(file)
+            externalClassExtractor.writeStubTrapFile(file)
         }
     }
 
@@ -527,7 +527,7 @@ open class KotlinFileExtractor(
                 linesOfCode?.linesOfCodeInDeclaration(c, id)
 
                 if (extractFunctionBodies && !c.isAnonymousObject && !c.isLocal)
-                    externalClassExtractor.noteElementExtractedFromSource(c)
+                    externalClassExtractor.writeStubTrapFile(c)
 
                 return id
             }

From 522a549d613682c86cea8fedc0c2c7bbc2dd55ec Mon Sep 17 00:00:00 2001
From: Chris Smowton <smowton@github.com>
Date: Tue, 6 Dec 2022 20:39:14 +0000
Subject: [PATCH 1089/1420] Improve debug logging when the external decl
 extractor handles an IrFile

---
 java/kotlin-extractor/src/main/kotlin/ExternalDeclExtractor.kt | 1 +
 1 file changed, 1 insertion(+)

diff --git a/java/kotlin-extractor/src/main/kotlin/ExternalDeclExtractor.kt b/java/kotlin-extractor/src/main/kotlin/ExternalDeclExtractor.kt
index 3a5ab3e0fa4..1b65c8e6f2b 100644
--- a/java/kotlin-extractor/src/main/kotlin/ExternalDeclExtractor.kt
+++ b/java/kotlin-extractor/src/main/kotlin/ExternalDeclExtractor.kt
@@ -56,6 +56,7 @@ class ExternalDeclExtractor(val logger: FileLogger, val invocationTrapFile: Stri
             locker.trapFileManager.useAC { manager ->
                 val shortName = when(element) {
                     is IrDeclarationWithName -> element.name.asString()
+                    is IrFile -> element.name
                     else -> "(unknown name)"
                 }
                 if (manager == null) {

From cf29cde2e8377a0d450267831d343b42b72c8b21 Mon Sep 17 00:00:00 2001
From: tiferet <tiferet@github.com>
Date: Tue, 6 Dec 2022 18:05:04 -0800
Subject: [PATCH 1090/1420] Apply suggestions from code review

---
 ...tradictoryEndpointCharacteristics.expected |  2 +
 .../ContradictoryEndpointCharacteristics.ql   | 60 ++++++++++++-------
 2 files changed, 40 insertions(+), 22 deletions(-)

diff --git a/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/ContradictoryEndpointCharacteristics.expected b/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/ContradictoryEndpointCharacteristics.expected
index e69de29bb2d..f35770bad95 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/ContradictoryEndpointCharacteristics.expected
+++ b/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/ContradictoryEndpointCharacteristics.expected
@@ -0,0 +1,2 @@
+erroneousEndpoints
+erroneousConfidences
diff --git a/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/ContradictoryEndpointCharacteristics.ql b/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/ContradictoryEndpointCharacteristics.ql
index c82e7778f4a..9b06257b91f 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/ContradictoryEndpointCharacteristics.ql
+++ b/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/ContradictoryEndpointCharacteristics.ql
@@ -10,6 +10,36 @@ import javascript
 private import experimental.adaptivethreatmodeling.EndpointCharacteristics as EndpointCharacteristics
 private import experimental.adaptivethreatmodeling.EndpointTypes as EndpointTypes
 
+/**
+ * Holds if `characteristic1` and `characteristic2` are among the several pairs of currently known high-confidence
+ * negative characteristics that apply to some known sinks.
+ *
+ * TODO: Experiment with lowering the confidence of `"FileSystemAccess"`, `"DOM"`, `"DatabaseAccess"`, and
+ * `"JQueryArgument"`.
+ */
+private predicate knownContradictoryCharacteristics(
+  EndpointCharacteristics::EndpointCharacteristic characteristic1,
+  EndpointCharacteristics::EndpointCharacteristic characteristic2
+) {
+  characteristic1 != characteristic2 and
+  (
+    characteristic1 = ["TaintedPathSink", "FileSystemAccess"] and
+    characteristic2 = ["TaintedPathSink", "FileSystemAccess"]
+    or
+    characteristic1 = ["DomBasedXssSink", "DOM"] and
+    characteristic2 = ["DomBasedXssSink", "DOM"]
+    or
+    characteristic1 = ["DomBasedXssSink", "JQueryArgument"] and
+    characteristic2 = ["DomBasedXssSink", "JQueryArgument"]
+    or
+    characteristic1 = ["NosqlInjectionSink", "DatabaseAccess"] and
+    characteristic2 = ["NosqlInjectionSink", "DatabaseAccess"]
+    or
+    characteristic1 = ["SqlInjectionSink", "DatabaseAccess"] and
+    characteristic2 = ["SqlInjectionSink", "DatabaseAccess"]
+  )
+}
+
 /**
  * Holds if the given endpoint has a self-contradictory combination of characteristics. Detects errors in our endpoint
  * characteristics. Lists the problematic characterisitics and their implications for all such endpoints, together with
@@ -33,24 +63,7 @@ query predicate erroneousEndpoints(
     confidence > characteristic.mediumConfidence() and
     confidence2 > characteristic2.mediumConfidence() and
     // We currently know of several high-confidence negative characteristics that apply to some known sinks.
-    // TODO: Experiment with lowering the confidence of `"FileSystemAccess"`, `"DOM"`, `"DatabaseAccess"`, and
-    // `"JQueryArgument"`.
-    not (
-      characteristic = ["TaintedPathSink", "FileSystemAccess"] and
-      characteristic2 = ["TaintedPathSink", "FileSystemAccess"]
-      or
-      characteristic = ["DomBasedXssSink", "DOM"] and
-      characteristic2 = ["DomBasedXssSink", "DOM"]
-      or
-      characteristic = ["DomBasedXssSink", "JQueryArgument"] and
-      characteristic2 = ["DomBasedXssSink", "JQueryArgument"]
-      or
-      characteristic = ["NosqlInjectionSink", "DatabaseAccess"] and
-      characteristic2 = ["NosqlInjectionSink", "DatabaseAccess"]
-      or
-      characteristic = ["SqlInjectionSink", "DatabaseAccess"] and
-      characteristic2 = ["SqlInjectionSink", "DatabaseAccess"]
-    )
+    not knownContradictoryCharacteristics(characteristic, characteristic2)
   ) and
   errorMessage = "Endpoint has high-confidence positive indicators for multiple classes"
   or
@@ -65,10 +78,13 @@ query predicate erroneousEndpoints(
     confidence2 > characteristic2.mediumConfidence()
   ) and
   errorMessage = "Endpoint has high-confidence positive and negative indicators for the same class"
-  or
-  // The endpoint's characteristics should not include indicators with confidence outside of [0, 1].
-  characteristic.appliesToEndpoint(endpoint) and
+}
+
+query predicate erroneousConfidences(
+  EndpointCharacteristics::EndpointCharacteristic characteristic, float confidence,
+  string errorMessage
+) {
   characteristic.hasImplications(_, _, confidence) and
   (confidence < 0 or confidence > 1) and
-  errorMessage = "Endpoint has an indicator with confidence outside of [0, 1]"
+  errorMessage = "Characteristic has an indicator with confidence outside of [0, 1]"
 }

From 8ee418405b2aa5c0961e6e854e743cb19a20a2c2 Mon Sep 17 00:00:00 2001
From: retanoj <s919student@gmail.com>
Date: Wed, 7 Dec 2022 10:06:39 +0800
Subject: [PATCH 1091/1420] consider blankspace / comma /dot field

---
 .../Security/CWE/CWE-089/MyBatisCommonLib.qll | 19 +++++++++++--------
 .../MyBatisAnnotationSqlInjection.expected    |  2 +-
 .../CWE-089/src/main/SqlInjectionMapper.java  |  2 +-
 .../CWE-089/src/main/SqlInjectionMapper.xml   |  2 +-
 4 files changed, 14 insertions(+), 11 deletions(-)

diff --git a/java/ql/src/experimental/Security/CWE/CWE-089/MyBatisCommonLib.qll b/java/ql/src/experimental/Security/CWE/CWE-089/MyBatisCommonLib.qll
index b91702cd30e..93831fcdd24 100644
--- a/java/ql/src/experimental/Security/CWE/CWE-089/MyBatisCommonLib.qll
+++ b/java/ql/src/experimental/Security/CWE/CWE-089/MyBatisCommonLib.qll
@@ -86,7 +86,7 @@ bindingset[unsafeExpression]
 predicate isMybatisCollectionTypeSqlInjection(
   DataFlow::Node node, MethodAccess ma, string unsafeExpression
 ) {
-  not unsafeExpression.regexpMatch("\\$\\{" + getAMybatisConfigurationVariableKey() + "\\}") and
+  not unsafeExpression.regexpMatch("\\$\\{\\s*" + getAMybatisConfigurationVariableKey() + "\\s*\\}") and
   // The parameter type of the MyBatis method parameter is Map or List or Array.
   // SQL injection vulnerability caused by improper use of this parameter.
   // e.g.
@@ -120,7 +120,7 @@ bindingset[unsafeExpression]
 predicate isMybatisXmlOrAnnotationSqlInjection(
   DataFlow::Node node, MethodAccess ma, string unsafeExpression
 ) {
-  not unsafeExpression.regexpMatch("\\$\\{" + getAMybatisConfigurationVariableKey() + "\\}") and
+  not unsafeExpression.regexpMatch("\\$\\{\\s*" + getAMybatisConfigurationVariableKey() + "\\s*\\}") and
   (
     // The method parameters use `@Param` annotation. Due to improper use of this parameter, SQL injection vulnerabilities are caused.
     // e.g.
@@ -128,11 +128,14 @@ predicate isMybatisXmlOrAnnotationSqlInjection(
     // ```java
     //    @Select(select id,name from test order by ${orderby,jdbcType=VARCHAR})
     //    void test(@Param("orderby") String name);
+    //    
+    //    @Select(select id,name from test where name = ${ user . name })
+    //    void test(@Param("user") User u);
     // ```
     exists(Annotation annotation |
       unsafeExpression
-          .matches("${" + annotation.getValue("value").(CompileTimeConstantExpr).getStringValue() +
-              "%}") and
+          .regexpMatch("\\$\\{\\s*" + annotation.getValue("value").(CompileTimeConstantExpr).getStringValue() +
+              "\\b[^}]*?\\}") and
       annotation.getType() instanceof TypeParam and
       ma.getAnArgument() = node.asExpr() and
       annotation.getTarget() =
@@ -150,11 +153,11 @@ predicate isMybatisXmlOrAnnotationSqlInjection(
     exists(int i |
       not ma.getMethod().getParameter(i).getAnAnnotation().getType() instanceof TypeParam and
       (
-        unsafeExpression.matches("${param" + (i + 1) + "%}")
+        unsafeExpression.regexpMatch("\\$\\{\\s*param" + (i + 1) + "\\b[^}]*?\\}")
         or
-        unsafeExpression.matches("${arg" + i + "%}")
+        unsafeExpression.regexpMatch("\\$\\{\\s*arg" + i + "\\b[^}]*?\\}")
         or
-        unsafeExpression.regexpMatch("\\$\\{\\s*" + ma.getMethod().getParameter(i).getName() + "\\s*(,.*?)?\\s*\\}")
+        unsafeExpression.regexpMatch("\\$\\{\\s*" + ma.getMethod().getParameter(i).getName() + "\\b[^}]*?\\}")
       ) and
       ma.getArgument(i) = node.asExpr()
     )
@@ -169,7 +172,7 @@ predicate isMybatisXmlOrAnnotationSqlInjection(
     exists(int i, RefType t |
       not ma.getMethod().getParameter(i).getAnAnnotation().getType() instanceof TypeParam and
       ma.getMethod().getParameterType(i).getName() = t.getName() and
-      unsafeExpression.matches("${" + t.getAField().getName() + "%}") and
+      unsafeExpression.regexpMatch("\\$\\{\\s*" + t.getAField().getName() + "\\b[^}]*?\\}") and
       ma.getArgument(i) = node.asExpr()
     )
     or
diff --git a/java/ql/test/experimental/query-tests/security/CWE-089/src/main/MyBatisAnnotationSqlInjection.expected b/java/ql/test/experimental/query-tests/security/CWE-089/src/main/MyBatisAnnotationSqlInjection.expected
index 52ec40f1b92..dd3f886ccb1 100644
--- a/java/ql/test/experimental/query-tests/security/CWE-089/src/main/MyBatisAnnotationSqlInjection.expected
+++ b/java/ql/test/experimental/query-tests/security/CWE-089/src/main/MyBatisAnnotationSqlInjection.expected
@@ -42,4 +42,4 @@ nodes
 subpaths
 #select
 | MybatisSqlInjectionService.java:51:27:51:33 | hashMap | MybatisSqlInjection.java:62:19:62:43 | name : String | MybatisSqlInjectionService.java:51:27:51:33 | hashMap | MyBatis annotation SQL injection might include code from $@ to $@. | MybatisSqlInjection.java:62:19:62:43 | name | this user input | SqlInjectionMapper.java:33:2:33:54 | Select | this SQL operation |
-| MybatisSqlInjectionService.java:55:32:55:35 | name | MybatisSqlInjection.java:67:46:67:70 | name : String | MybatisSqlInjectionService.java:55:32:55:35 | name | MyBatis annotation SQL injection might include code from $@ to $@. | MybatisSqlInjection.java:67:46:67:70 | name | this user input | SqlInjectionMapper.java:36:2:36:70 | Select | this SQL operation |
+| MybatisSqlInjectionService.java:55:32:55:35 | name | MybatisSqlInjection.java:67:46:67:70 | name : String | MybatisSqlInjectionService.java:55:32:55:35 | name | MyBatis annotation SQL injection might include code from $@ to $@. | MybatisSqlInjection.java:67:46:67:70 | name | this user input | SqlInjectionMapper.java:36:2:36:72 | Select | this SQL operation |
diff --git a/java/ql/test/experimental/query-tests/security/CWE-089/src/main/SqlInjectionMapper.java b/java/ql/test/experimental/query-tests/security/CWE-089/src/main/SqlInjectionMapper.java
index 03aa0ee9a50..a8f56b40bc3 100644
--- a/java/ql/test/experimental/query-tests/security/CWE-089/src/main/SqlInjectionMapper.java
+++ b/java/ql/test/experimental/query-tests/security/CWE-089/src/main/SqlInjectionMapper.java
@@ -33,7 +33,7 @@ public interface SqlInjectionMapper {
 	@Select({"select * from test", "where id = ${name}"})
 	public Test bad9(HashMap<String, Object> map);
 
-	@Select({"select * from test where id = #{id} and name = '${name}'"})
+	@Select({"select * from test where id = #{id} and name = '${ name }'"})
 	String bad10(Integer id, String name);
 
 	List<Test> good1(Integer id);
diff --git a/java/ql/test/experimental/query-tests/security/CWE-089/src/main/SqlInjectionMapper.xml b/java/ql/test/experimental/query-tests/security/CWE-089/src/main/SqlInjectionMapper.xml
index 3f3d1f9ba77..a0d8d7a7970 100644
--- a/java/ql/test/experimental/query-tests/security/CWE-089/src/main/SqlInjectionMapper.xml
+++ b/java/ql/test/experimental/query-tests/security/CWE-089/src/main/SqlInjectionMapper.xml
@@ -12,7 +12,7 @@
   <sql id="Update_By_Example_Where_Clause">
     <where>
       <if test="test.name != null">
-        and name = ${test.name,jdbcType=VARCHAR}
+        and name = ${ test . name , jdbcType = VARCHAR }
       </if>
       <if test="test.id != null">
         and id = #{test.id}

From b82f9b1911fa549b21a4ebe439a6a4d8ae1b47c8 Mon Sep 17 00:00:00 2001
From: Jami Cogswell <jcogs33@Jamis-MacBook-Pro.local>
Date: Tue, 6 Dec 2022 22:15:19 -0500
Subject: [PATCH 1092/1420] Java: add draft of generated vs manual MaD metrics
 query

---
 .../dataflow/internal/FlowSummaryImpl.qll     |  32 +++++-
 .../go/dataflow/internal/FlowSummaryImpl.qll  |  32 +++++-
 .../dataflow/internal/FlowSummaryImpl.qll     |  32 +++++-
 .../Summaries/GeneratedVsManualCoverage.ql    | 100 ++++++++++++++++++
 .../dataflow/new/internal/FlowSummaryImpl.qll |  32 +++++-
 .../dataflow/internal/FlowSummaryImpl.qll     |  32 +++++-
 .../dataflow/internal/FlowSummaryImpl.qll     |  32 +++++-
 7 files changed, 286 insertions(+), 6 deletions(-)
 create mode 100644 java/ql/src/Metrics/Summaries/GeneratedVsManualCoverage.ql

diff --git a/csharp/ql/lib/semmle/code/csharp/dataflow/internal/FlowSummaryImpl.qll b/csharp/ql/lib/semmle/code/csharp/dataflow/internal/FlowSummaryImpl.qll
index 6d61d1b4799..8ef3bea0408 100644
--- a/csharp/ql/lib/semmle/code/csharp/dataflow/internal/FlowSummaryImpl.qll
+++ b/csharp/ql/lib/semmle/code/csharp/dataflow/internal/FlowSummaryImpl.qll
@@ -241,9 +241,19 @@ module Public {
     }
 
     /**
-     * Holds if the summary is auto generated.
+     * Holds if the summary is auto generated and not manually generated.
      */
     predicate isAutoGenerated() { none() }
+
+    /**
+     * Holds if the summary is manually generated and not auto generated.
+     */
+    predicate isManuallyGenerated() { none() }
+
+    /**
+     * Holds if the summary is both auto generated and manually generated.
+     */
+    predicate isBothAutoAndManuallyGenerated() { none() }
   }
 
   /** A callable with a flow summary stating there is no flow via the callable. */
@@ -991,6 +1001,20 @@ module Private {
         not summaryElement(this, _, _, _, false)
       }
 
+      private predicate relevantSummaryElementManual(
+        AccessPath inSpec, AccessPath outSpec, string kind
+      ) {
+        summaryElement(this, inSpec, outSpec, kind, false) and
+        not summaryElement(this, _, _, _, true)
+      }
+
+      private predicate relevantSummaryElementBothGeneratedAndManual(
+        AccessPath inSpec, AccessPath outSpec, string kind
+      ) {
+        summaryElement(this, inSpec, outSpec, kind, true) and
+        summaryElement(this, inSpec, outSpec, kind, false)
+      }
+
       private predicate relevantSummaryElement(AccessPath inSpec, AccessPath outSpec, string kind) {
         summaryElement(this, inSpec, outSpec, kind, false)
         or
@@ -1012,6 +1036,12 @@ module Private {
       }
 
       override predicate isAutoGenerated() { this.relevantSummaryElementGenerated(_, _, _) }
+
+      override predicate isManuallyGenerated() { this.relevantSummaryElementManual(_, _, _) }
+
+      override predicate isBothAutoAndManuallyGenerated() {
+        this.relevantSummaryElementBothGeneratedAndManual(_, _, _)
+      }
     }
 
     /** Holds if component `c` of specification `spec` cannot be parsed. */
diff --git a/go/ql/lib/semmle/go/dataflow/internal/FlowSummaryImpl.qll b/go/ql/lib/semmle/go/dataflow/internal/FlowSummaryImpl.qll
index 6d61d1b4799..8ef3bea0408 100644
--- a/go/ql/lib/semmle/go/dataflow/internal/FlowSummaryImpl.qll
+++ b/go/ql/lib/semmle/go/dataflow/internal/FlowSummaryImpl.qll
@@ -241,9 +241,19 @@ module Public {
     }
 
     /**
-     * Holds if the summary is auto generated.
+     * Holds if the summary is auto generated and not manually generated.
      */
     predicate isAutoGenerated() { none() }
+
+    /**
+     * Holds if the summary is manually generated and not auto generated.
+     */
+    predicate isManuallyGenerated() { none() }
+
+    /**
+     * Holds if the summary is both auto generated and manually generated.
+     */
+    predicate isBothAutoAndManuallyGenerated() { none() }
   }
 
   /** A callable with a flow summary stating there is no flow via the callable. */
@@ -991,6 +1001,20 @@ module Private {
         not summaryElement(this, _, _, _, false)
       }
 
+      private predicate relevantSummaryElementManual(
+        AccessPath inSpec, AccessPath outSpec, string kind
+      ) {
+        summaryElement(this, inSpec, outSpec, kind, false) and
+        not summaryElement(this, _, _, _, true)
+      }
+
+      private predicate relevantSummaryElementBothGeneratedAndManual(
+        AccessPath inSpec, AccessPath outSpec, string kind
+      ) {
+        summaryElement(this, inSpec, outSpec, kind, true) and
+        summaryElement(this, inSpec, outSpec, kind, false)
+      }
+
       private predicate relevantSummaryElement(AccessPath inSpec, AccessPath outSpec, string kind) {
         summaryElement(this, inSpec, outSpec, kind, false)
         or
@@ -1012,6 +1036,12 @@ module Private {
       }
 
       override predicate isAutoGenerated() { this.relevantSummaryElementGenerated(_, _, _) }
+
+      override predicate isManuallyGenerated() { this.relevantSummaryElementManual(_, _, _) }
+
+      override predicate isBothAutoAndManuallyGenerated() {
+        this.relevantSummaryElementBothGeneratedAndManual(_, _, _)
+      }
     }
 
     /** Holds if component `c` of specification `spec` cannot be parsed. */
diff --git a/java/ql/lib/semmle/code/java/dataflow/internal/FlowSummaryImpl.qll b/java/ql/lib/semmle/code/java/dataflow/internal/FlowSummaryImpl.qll
index 6d61d1b4799..8ef3bea0408 100644
--- a/java/ql/lib/semmle/code/java/dataflow/internal/FlowSummaryImpl.qll
+++ b/java/ql/lib/semmle/code/java/dataflow/internal/FlowSummaryImpl.qll
@@ -241,9 +241,19 @@ module Public {
     }
 
     /**
-     * Holds if the summary is auto generated.
+     * Holds if the summary is auto generated and not manually generated.
      */
     predicate isAutoGenerated() { none() }
+
+    /**
+     * Holds if the summary is manually generated and not auto generated.
+     */
+    predicate isManuallyGenerated() { none() }
+
+    /**
+     * Holds if the summary is both auto generated and manually generated.
+     */
+    predicate isBothAutoAndManuallyGenerated() { none() }
   }
 
   /** A callable with a flow summary stating there is no flow via the callable. */
@@ -991,6 +1001,20 @@ module Private {
         not summaryElement(this, _, _, _, false)
       }
 
+      private predicate relevantSummaryElementManual(
+        AccessPath inSpec, AccessPath outSpec, string kind
+      ) {
+        summaryElement(this, inSpec, outSpec, kind, false) and
+        not summaryElement(this, _, _, _, true)
+      }
+
+      private predicate relevantSummaryElementBothGeneratedAndManual(
+        AccessPath inSpec, AccessPath outSpec, string kind
+      ) {
+        summaryElement(this, inSpec, outSpec, kind, true) and
+        summaryElement(this, inSpec, outSpec, kind, false)
+      }
+
       private predicate relevantSummaryElement(AccessPath inSpec, AccessPath outSpec, string kind) {
         summaryElement(this, inSpec, outSpec, kind, false)
         or
@@ -1012,6 +1036,12 @@ module Private {
       }
 
       override predicate isAutoGenerated() { this.relevantSummaryElementGenerated(_, _, _) }
+
+      override predicate isManuallyGenerated() { this.relevantSummaryElementManual(_, _, _) }
+
+      override predicate isBothAutoAndManuallyGenerated() {
+        this.relevantSummaryElementBothGeneratedAndManual(_, _, _)
+      }
     }
 
     /** Holds if component `c` of specification `spec` cannot be parsed. */
diff --git a/java/ql/src/Metrics/Summaries/GeneratedVsManualCoverage.ql b/java/ql/src/Metrics/Summaries/GeneratedVsManualCoverage.ql
new file mode 100644
index 00000000000..f8f8cd8a161
--- /dev/null
+++ b/java/ql/src/Metrics/Summaries/GeneratedVsManualCoverage.ql
@@ -0,0 +1,100 @@
+/**
+ * @id java/summary/generated-vs-manual-coverage
+ * @name Metrics of generated versus manual MaD coverage
+ * @description Expose metrics for the number of API endpoints covered by generated versus manual MaD models.
+ * @kind table
+ * @tags summary
+ */
+
+//import java // not needed I guess
+import semmle.code.java.dataflow.FlowSummary // for SummarizedCallable
+import utils.modelgenerator.internal.CaptureModels // for DataFlowTargetApi
+
+// ! improve QLDoc?
+/**
+ * A callable for a given library that is modeled by MaD.
+ * Specifically, this callable is the intersection of
+ * DataFlowTargetApis and SummarizedCallables.
+ */
+class MadModeledCallable extends SummarizedCallableBase {
+  // ! better name for this class?
+  MadModeledCallable() {
+    this instanceof SummarizedCallable and
+    exists(DataFlowTargetApi dataFlowTargApi |
+      this.asCallable() = dataFlowTargApi and
+      not exists(FunctionalExpr funcExpr | dataFlowTargApi = funcExpr.asMethod()) // ! remove this if DataFlowTargetApi itself is adjusted to exclude FunctionalExpr (see static-team slack thread)
+    )
+  }
+}
+
+// ! move to other file
+/**
+ * Returns the number of APIs with MaD models
+ * for a given package and provenance.
+ */
+float getNumMadModels(string package, string provenance) {
+  exists(MadModeledCallable mc |
+    package = mc.asCallable().getDeclaringType().getPackage().toString() and
+    provenance in ["generated", "manual", "both"]
+  |
+    result =
+      count(MadModeledCallable c |
+        package = c.asCallable().getDeclaringType().getPackage().toString() and
+        (
+          c.(SummarizedCallable).isAutoGenerated() and // generated and NOT manual = "auto-only"
+          provenance = "generated"
+          or
+          c.(SummarizedCallable).isManuallyGenerated() and // manual and NOT generated = "manual-only"
+          provenance = "manual"
+          or
+          c.(SummarizedCallable).isBothAutoAndManuallyGenerated() and // BOTH generated and manual = "both"
+          provenance = "both"
+        )
+      )
+  )
+}
+
+// ! move to other file
+/**
+ * Returns the number of APIs without MaD
+ * models for a given package.
+ */
+float getNumApisWithoutMadModel(string package) {
+  exists(DataFlowTargetApi dataFlowTargApi |
+    package = dataFlowTargApi.getDeclaringType().getPackage().toString() and
+    not exists(FunctionalExpr fe | dataFlowTargApi = fe.asMethod()) // remove lambdas // ! remove this if DataFlowTargetApi itself is adjusted to exclude FunctionalExpr (see static-team slack thread)
+  |
+    result =
+      count(DataFlowTargetApi d |
+        package = d.getDeclaringType().getPackage().toString() and
+        not exists(FunctionalExpr funcExpr | d = funcExpr.asMethod()) and // remove lambdas // ! remove this if DataFlowTargetApi itself is adjusted to exclude FunctionalExpr (see static-team slack thread)
+        not exists(SummarizedCallable sc | d = sc.asCallable()) // set minus with SummarizedCallables
+      )
+  )
+}
+
+// ! Note: adjust metric formulas as needed after more discussion with Yorck
+/*
+ * metric1:
+ * Proportion of manual models covered by automation: “both” / (“both” + “manual-only”)
+ * Auto-generated vs all positive manual (percentage of manual models covered by auto-generation)
+ */
+
+/*
+ * metric2:
+ * Coverage relative to total number of APIs: (“auto-only” + “both” + “manual-only”) / “all”
+ * Auto-generated vs specific pos+neg subset (top-N manual, random)
+ */
+
+from
+  string package, float generated, float manual, float both, float notModeled, float all,
+  float metric1, float metric2
+where
+  generated = getNumMadModels(package, "generated") and
+  manual = getNumMadModels(package, "manual") and
+  both = getNumMadModels(package, "both") and
+  notModeled = getNumApisWithoutMadModel(package) and // ! better name for this?, "none" is a reserved keyword :(
+  all = generated + manual + both + notModeled and
+  metric1 = (both / (both + manual)) and
+  metric2 = (generated + both + manual) / all
+select package, generated, manual, both, notModeled, all, metric1, metric2 order by package
diff --git a/python/ql/lib/semmle/python/dataflow/new/internal/FlowSummaryImpl.qll b/python/ql/lib/semmle/python/dataflow/new/internal/FlowSummaryImpl.qll
index 6d61d1b4799..8ef3bea0408 100644
--- a/python/ql/lib/semmle/python/dataflow/new/internal/FlowSummaryImpl.qll
+++ b/python/ql/lib/semmle/python/dataflow/new/internal/FlowSummaryImpl.qll
@@ -241,9 +241,19 @@ module Public {
     }
 
     /**
-     * Holds if the summary is auto generated.
+     * Holds if the summary is auto generated and not manually generated.
      */
     predicate isAutoGenerated() { none() }
+
+    /**
+     * Holds if the summary is manually generated and not auto generated.
+     */
+    predicate isManuallyGenerated() { none() }
+
+    /**
+     * Holds if the summary is both auto generated and manually generated.
+     */
+    predicate isBothAutoAndManuallyGenerated() { none() }
   }
 
   /** A callable with a flow summary stating there is no flow via the callable. */
@@ -991,6 +1001,20 @@ module Private {
         not summaryElement(this, _, _, _, false)
       }
 
+      private predicate relevantSummaryElementManual(
+        AccessPath inSpec, AccessPath outSpec, string kind
+      ) {
+        summaryElement(this, inSpec, outSpec, kind, false) and
+        not summaryElement(this, _, _, _, true)
+      }
+
+      private predicate relevantSummaryElementBothGeneratedAndManual(
+        AccessPath inSpec, AccessPath outSpec, string kind
+      ) {
+        summaryElement(this, inSpec, outSpec, kind, true) and
+        summaryElement(this, inSpec, outSpec, kind, false)
+      }
+
       private predicate relevantSummaryElement(AccessPath inSpec, AccessPath outSpec, string kind) {
         summaryElement(this, inSpec, outSpec, kind, false)
         or
@@ -1012,6 +1036,12 @@ module Private {
       }
 
       override predicate isAutoGenerated() { this.relevantSummaryElementGenerated(_, _, _) }
+
+      override predicate isManuallyGenerated() { this.relevantSummaryElementManual(_, _, _) }
+
+      override predicate isBothAutoAndManuallyGenerated() {
+        this.relevantSummaryElementBothGeneratedAndManual(_, _, _)
+      }
     }
 
     /** Holds if component `c` of specification `spec` cannot be parsed. */
diff --git a/ruby/ql/lib/codeql/ruby/dataflow/internal/FlowSummaryImpl.qll b/ruby/ql/lib/codeql/ruby/dataflow/internal/FlowSummaryImpl.qll
index 6d61d1b4799..8ef3bea0408 100644
--- a/ruby/ql/lib/codeql/ruby/dataflow/internal/FlowSummaryImpl.qll
+++ b/ruby/ql/lib/codeql/ruby/dataflow/internal/FlowSummaryImpl.qll
@@ -241,9 +241,19 @@ module Public {
     }
 
     /**
-     * Holds if the summary is auto generated.
+     * Holds if the summary is auto generated and not manually generated.
      */
     predicate isAutoGenerated() { none() }
+
+    /**
+     * Holds if the summary is manually generated and not auto generated.
+     */
+    predicate isManuallyGenerated() { none() }
+
+    /**
+     * Holds if the summary is both auto generated and manually generated.
+     */
+    predicate isBothAutoAndManuallyGenerated() { none() }
   }
 
   /** A callable with a flow summary stating there is no flow via the callable. */
@@ -991,6 +1001,20 @@ module Private {
         not summaryElement(this, _, _, _, false)
       }
 
+      private predicate relevantSummaryElementManual(
+        AccessPath inSpec, AccessPath outSpec, string kind
+      ) {
+        summaryElement(this, inSpec, outSpec, kind, false) and
+        not summaryElement(this, _, _, _, true)
+      }
+
+      private predicate relevantSummaryElementBothGeneratedAndManual(
+        AccessPath inSpec, AccessPath outSpec, string kind
+      ) {
+        summaryElement(this, inSpec, outSpec, kind, true) and
+        summaryElement(this, inSpec, outSpec, kind, false)
+      }
+
       private predicate relevantSummaryElement(AccessPath inSpec, AccessPath outSpec, string kind) {
         summaryElement(this, inSpec, outSpec, kind, false)
         or
@@ -1012,6 +1036,12 @@ module Private {
       }
 
       override predicate isAutoGenerated() { this.relevantSummaryElementGenerated(_, _, _) }
+
+      override predicate isManuallyGenerated() { this.relevantSummaryElementManual(_, _, _) }
+
+      override predicate isBothAutoAndManuallyGenerated() {
+        this.relevantSummaryElementBothGeneratedAndManual(_, _, _)
+      }
     }
 
     /** Holds if component `c` of specification `spec` cannot be parsed. */
diff --git a/swift/ql/lib/codeql/swift/dataflow/internal/FlowSummaryImpl.qll b/swift/ql/lib/codeql/swift/dataflow/internal/FlowSummaryImpl.qll
index 6d61d1b4799..8ef3bea0408 100644
--- a/swift/ql/lib/codeql/swift/dataflow/internal/FlowSummaryImpl.qll
+++ b/swift/ql/lib/codeql/swift/dataflow/internal/FlowSummaryImpl.qll
@@ -241,9 +241,19 @@ module Public {
     }
 
     /**
-     * Holds if the summary is auto generated.
+     * Holds if the summary is auto generated and not manually generated.
      */
     predicate isAutoGenerated() { none() }
+
+    /**
+     * Holds if the summary is manually generated and not auto generated.
+     */
+    predicate isManuallyGenerated() { none() }
+
+    /**
+     * Holds if the summary is both auto generated and manually generated.
+     */
+    predicate isBothAutoAndManuallyGenerated() { none() }
   }
 
   /** A callable with a flow summary stating there is no flow via the callable. */
@@ -991,6 +1001,20 @@ module Private {
         not summaryElement(this, _, _, _, false)
       }
 
+      private predicate relevantSummaryElementManual(
+        AccessPath inSpec, AccessPath outSpec, string kind
+      ) {
+        summaryElement(this, inSpec, outSpec, kind, false) and
+        not summaryElement(this, _, _, _, true)
+      }
+
+      private predicate relevantSummaryElementBothGeneratedAndManual(
+        AccessPath inSpec, AccessPath outSpec, string kind
+      ) {
+        summaryElement(this, inSpec, outSpec, kind, true) and
+        summaryElement(this, inSpec, outSpec, kind, false)
+      }
+
       private predicate relevantSummaryElement(AccessPath inSpec, AccessPath outSpec, string kind) {
         summaryElement(this, inSpec, outSpec, kind, false)
         or
@@ -1012,6 +1036,12 @@ module Private {
       }
 
       override predicate isAutoGenerated() { this.relevantSummaryElementGenerated(_, _, _) }
+
+      override predicate isManuallyGenerated() { this.relevantSummaryElementManual(_, _, _) }
+
+      override predicate isBothAutoAndManuallyGenerated() {
+        this.relevantSummaryElementBothGeneratedAndManual(_, _, _)
+      }
     }
 
     /** Holds if component `c` of specification `spec` cannot be parsed. */

From cf3e5a0abe5f0a7082b2385dcff38a882575f252 Mon Sep 17 00:00:00 2001
From: Ed Minnix <egregius313@github.com>
Date: Fri, 23 Sep 2022 21:09:23 -0400
Subject: [PATCH 1093/1420] Add class for XML Attributes meant to hold an
 identifier in AndroidManifest

Some Android component attributes hold an identifier (e.g.
`android:name` and `android:targetActivity` for `<activity-alias>`).
---
 java/ql/lib/semmle/code/xml/AndroidManifest.qll | 7 +++++++
 1 file changed, 7 insertions(+)

diff --git a/java/ql/lib/semmle/code/xml/AndroidManifest.qll b/java/ql/lib/semmle/code/xml/AndroidManifest.qll
index c18b32751ed..91e34aa493e 100644
--- a/java/ql/lib/semmle/code/xml/AndroidManifest.qll
+++ b/java/ql/lib/semmle/code/xml/AndroidManifest.qll
@@ -212,6 +212,13 @@ class AndroidPermissionXmlAttribute extends XmlAttribute {
   predicate isWrite() { this.getName() = "writePermission" }
 }
 
+/**
+ * The attribute `android:name` or `android:targetActivity`.
+ */
+class AndroidIdentifierXmlAttribute extends AndroidXmlAttribute {
+  AndroidIdentifierXmlAttribute() { this.getName() = ["name", "targetActivity"] }
+}
+
 /**
  * The `<path-permission`> element of a `<provider>` in an Android manifest file.
  */

From 4c270fca91e81446b61062f66d425b404c8da394 Mon Sep 17 00:00:00 2001
From: Ed Minnix <egregius313@github.com>
Date: Fri, 23 Sep 2022 21:16:11 -0400
Subject: [PATCH 1094/1420] Add generalized identifier resolution for
 AndroidManifest

Since more than one attribute can hold an identifier, refactor
identifier resolution into a separate method.
---
 .../lib/semmle/code/xml/AndroidManifest.qll   | 29 +++++++++++++------
 1 file changed, 20 insertions(+), 9 deletions(-)

diff --git a/java/ql/lib/semmle/code/xml/AndroidManifest.qll b/java/ql/lib/semmle/code/xml/AndroidManifest.qll
index 91e34aa493e..2bcfeafee1b 100644
--- a/java/ql/lib/semmle/code/xml/AndroidManifest.qll
+++ b/java/ql/lib/semmle/code/xml/AndroidManifest.qll
@@ -261,19 +261,30 @@ class AndroidComponentXmlElement extends XmlElement {
     )
   }
 
+  /**
+   * Gets the value of an identifier attribute, and tries to resolve it into a fully qualified identifier.
+   */
+  string getResolvedIdentifier(AndroidIdentifierXmlAttribute identifier) {
+    exists(string name | name = identifier.getValue() |
+      if name.matches(".%")
+      then
+        result =
+          this.getParent()
+                .(XmlElement)
+                .getParent()
+                .(AndroidManifestXmlElement)
+                .getPackageAttributeValue() + name
+      else result = name
+    )
+  }
+
   /**
    * Gets the resolved value of the `android:name` attribute of this component element.
    */
   string getResolvedComponentName() {
-    if this.getComponentName().matches(".%")
-    then
-      result =
-        this.getParent()
-              .(XmlElement)
-              .getParent()
-              .(AndroidManifestXmlElement)
-              .getPackageAttributeValue() + this.getComponentName()
-    else result = this.getComponentName()
+    exists(AndroidXmlAttribute attr | attr = this.getAnAttribute() and attr.getName() = "name" |
+      result = getResolvedIdentifier(attr)
+    )
   }
 
   /**

From b4f08f8b91b2a7bb96e86e40d91bef9daf88e4a1 Mon Sep 17 00:00:00 2001
From: Ed Minnix <egregius313@github.com>
Date: Fri, 23 Sep 2022 21:18:31 -0400
Subject: [PATCH 1095/1420] Add support for Android Manifest `<activity-alias>`
 element

---
 .../lib/semmle/code/xml/AndroidManifest.qll   | 31 ++++++++++++++++++-
 1 file changed, 30 insertions(+), 1 deletion(-)

diff --git a/java/ql/lib/semmle/code/xml/AndroidManifest.qll b/java/ql/lib/semmle/code/xml/AndroidManifest.qll
index 2bcfeafee1b..69c8825019b 100644
--- a/java/ql/lib/semmle/code/xml/AndroidManifest.qll
+++ b/java/ql/lib/semmle/code/xml/AndroidManifest.qll
@@ -131,6 +131,35 @@ class AndroidActivityXmlElement extends AndroidComponentXmlElement {
   AndroidActivityXmlElement() { this.getName() = "activity" }
 }
 
+/**
+ * An `<activity-alias>` element in an Android manifest file.
+ */
+class AndroidActivityAliasXmlElement extends AndroidComponentXmlElement {
+  AndroidActivityAliasXmlElement() { this.getName() = "activity-alias" }
+
+  /**
+   * Get and resolve the name of the target activity from the `android:targetActivity` attribute.
+   */
+  string getResolvedTargetActivityName() {
+    exists(AndroidXmlAttribute attr |
+      attr = this.getAnAttribute() and attr.getName() = "targetActivity"
+    |
+      result = getResolvedIdentifier(attr)
+    )
+  }
+
+  /**
+   * Gets the `<activity>` element referenced by the `android:targetActivity` attribute.
+   */
+  AndroidActivityXmlElement getTarget() {
+    exists(AndroidActivityXmlElement activity |
+      activity.getResolvedComponentName() = this.getResolvedTargetActivityName()
+    |
+      result = activity
+    )
+  }
+}
+
 /**
  * A `<service>` element in an Android manifest file.
  */
@@ -235,7 +264,7 @@ class AndroidPathPermissionXmlElement extends XmlElement {
 class AndroidComponentXmlElement extends XmlElement {
   AndroidComponentXmlElement() {
     this.getParent() instanceof AndroidApplicationXmlElement and
-    this.getName().regexpMatch("(activity|service|receiver|provider)")
+    this.getName().regexpMatch("(activity|activity-alias|service|receiver|provider)")
   }
 
   /**

From 4df926e1487fb192fc243fa3b4c5400730dea8cc Mon Sep 17 00:00:00 2001
From: Ed Minnix <egregius313@github.com>
Date: Fri, 23 Sep 2022 21:19:11 -0400
Subject: [PATCH 1096/1420] Add method for finding aliases to
 `AndroidActivityXmlElement`

---
 java/ql/lib/semmle/code/xml/AndroidManifest.qll | 7 +++++++
 1 file changed, 7 insertions(+)

diff --git a/java/ql/lib/semmle/code/xml/AndroidManifest.qll b/java/ql/lib/semmle/code/xml/AndroidManifest.qll
index 69c8825019b..d800973a2d6 100644
--- a/java/ql/lib/semmle/code/xml/AndroidManifest.qll
+++ b/java/ql/lib/semmle/code/xml/AndroidManifest.qll
@@ -129,6 +129,13 @@ class AndroidApplicationXmlElement extends XmlElement {
  */
 class AndroidActivityXmlElement extends AndroidComponentXmlElement {
   AndroidActivityXmlElement() { this.getName() = "activity" }
+
+  /**
+   * Gets an `<activity-alias>` element aliasing the activity.
+   */
+  AndroidActivityAliasXmlElement getAnAlias() {
+    exists(AndroidActivityAliasXmlElement alias | this = alias.getTarget() | result = alias)
+  }
 }
 
 /**

From f4dbd410361ce34b9d78fe46485bd8f2bad934ec Mon Sep 17 00:00:00 2001
From: Ed Minnix <egregius313@github.com>
Date: Mon, 17 Oct 2022 13:56:54 -0400
Subject: [PATCH 1097/1420] Test files for Activity Alias

---
 .../activity-alias/AndroidManifest.xml        | 58 +++++++++++++++++++
 .../activity-alias/TestActivityAlias.expected |  3 +
 .../activity-alias/TestActivityAlias.ql       |  6 ++
 3 files changed, 67 insertions(+)
 create mode 100644 java/ql/test/library-tests/frameworks/android/activity-alias/AndroidManifest.xml
 create mode 100644 java/ql/test/library-tests/frameworks/android/activity-alias/TestActivityAlias.expected
 create mode 100644 java/ql/test/library-tests/frameworks/android/activity-alias/TestActivityAlias.ql

diff --git a/java/ql/test/library-tests/frameworks/android/activity-alias/AndroidManifest.xml b/java/ql/test/library-tests/frameworks/android/activity-alias/AndroidManifest.xml
new file mode 100644
index 00000000000..334f1558904
--- /dev/null
+++ b/java/ql/test/library-tests/frameworks/android/activity-alias/AndroidManifest.xml
@@ -0,0 +1,58 @@
+<?xml version="1.0" encoding="utf-8"?>
+<manifest xmlns:android="http://schemas.android.com/apk/res/android"
+    xmlns:tools="http://schemas.android.com/tools"
+    package="com.example.myapplication">
+
+    <application
+        android:allowBackup="false"
+        android:dataExtractionRules="@xml/data_extraction_rules"
+        android:fullBackupContent="@xml/backup_rules"
+        android:icon="@mipmap/ic_launcher"
+        android:label="@string/app_name"
+        android:roundIcon="@mipmap/ic_launcher_round"
+        android:supportsRtl="true"
+
+        android:theme="@style/Theme.MyApplication"
+        tools:targetApi="31">
+
+      <activity
+            android:name=".MainActivity"
+            android:exported="true"
+            android:label="@string/app_name"
+            android:theme="@style/Theme.MyApplication.NoActionBar">
+            <intent-filter>
+                <action android:name="android.intent.action.MAIN" />
+
+                <category android:name="android.intent.category.LAUNCHER" />
+            </intent-filter>
+        </activity>
+
+        <activity
+            android:name=".AnotherActivity"
+            android:exported="true"
+            android:label="@string/app_name"
+            android:theme="@style/Theme.MyApplication.NoActionBar">
+        </activity>
+
+
+        <activity-alias
+            android:name=".MainAlias"
+            android:exported="true"
+            android:label="@string/app_name"
+            android:targetActivity=".MainActivity"></activity-alias>
+
+        <activity-alias
+            android:name=".SecondAlias"
+            android:exported="true"
+            android:label="@string/app_name"
+            android:targetActivity=".MainActivity"></activity-alias>
+
+        <activity-alias
+            android:name=".AnotherAlias"
+            android:exported="true"
+            android:label="@string/app_name"
+            android:targetActivity="com.example.myapplication.AnotherActivity"></activity-alias>
+
+    </application>
+
+</manifest>
diff --git a/java/ql/test/library-tests/frameworks/android/activity-alias/TestActivityAlias.expected b/java/ql/test/library-tests/frameworks/android/activity-alias/TestActivityAlias.expected
new file mode 100644
index 00000000000..7be685f8b5f
--- /dev/null
+++ b/java/ql/test/library-tests/frameworks/android/activity-alias/TestActivityAlias.expected
@@ -0,0 +1,3 @@
+| .AnotherAlias | .AnotherActivity |
+| .MainAlias | .MainActivity |
+| .SecondAlias | .MainActivity |
diff --git a/java/ql/test/library-tests/frameworks/android/activity-alias/TestActivityAlias.ql b/java/ql/test/library-tests/frameworks/android/activity-alias/TestActivityAlias.ql
new file mode 100644
index 00000000000..023aec6affe
--- /dev/null
+++ b/java/ql/test/library-tests/frameworks/android/activity-alias/TestActivityAlias.ql
@@ -0,0 +1,6 @@
+import java
+
+import semmle.code.xml.AndroidManifest
+
+from AndroidActivityAliasXmlElement alias
+select alias.getComponentName(), alias.getTarget().getComponentName()

From ec6c421f9144cb306f172337c8ff35cec6b0a863 Mon Sep 17 00:00:00 2001
From: Ed Minnix <egregius313@github.com>
Date: Mon, 17 Oct 2022 15:45:35 -0400
Subject: [PATCH 1098/1420] Added change notes for AndroidManifest.qll

---
 .../lib/change-notes/2022-10-17-android-activity-alias.md | 8 ++++++++
 1 file changed, 8 insertions(+)
 create mode 100644 java/ql/lib/change-notes/2022-10-17-android-activity-alias.md

diff --git a/java/ql/lib/change-notes/2022-10-17-android-activity-alias.md b/java/ql/lib/change-notes/2022-10-17-android-activity-alias.md
new file mode 100644
index 00000000000..907051e05d2
--- /dev/null
+++ b/java/ql/lib/change-notes/2022-10-17-android-activity-alias.md
@@ -0,0 +1,8 @@
+---
+category: minorAnalysis
+---
+* Added the `AndroidActivityAliasXmlElement` class to represent `<activity-alias>` components in Android manifests.
+* Added the `AndroidActivityXmlElement.getAnAlias` method to get the aliases of an `<activity>` element in an Android manifest.
+* Added the `AndroidIdentifierXmlAttribute` class to represent XML attributes representing component identifiers, such as `android:name` and `android:targetActivity`
+* Added the `AndroidComponentXmlElement.getResolvedIdentifier` method, for finding the fully qualified identifier from an identifier.
+* Added the `AndroidComponentXmlElement.getResolvedComponentName` method, for finding the fully qualified identifier of a component.

From 4620db0fe9f3c0a1e08d1c6777d6d157195f8351 Mon Sep 17 00:00:00 2001
From: Ed Minnix <egregius313@github.com>
Date: Tue, 18 Oct 2022 12:02:34 -0400
Subject: [PATCH 1099/1420] Activity alias: formatting changes suggested by
 Actions

---
 java/ql/lib/semmle/code/xml/AndroidManifest.qll               | 4 ++--
 .../frameworks/android/activity-alias/TestActivityAlias.ql    | 1 -
 2 files changed, 2 insertions(+), 3 deletions(-)

diff --git a/java/ql/lib/semmle/code/xml/AndroidManifest.qll b/java/ql/lib/semmle/code/xml/AndroidManifest.qll
index d800973a2d6..44e17f5588a 100644
--- a/java/ql/lib/semmle/code/xml/AndroidManifest.qll
+++ b/java/ql/lib/semmle/code/xml/AndroidManifest.qll
@@ -151,7 +151,7 @@ class AndroidActivityAliasXmlElement extends AndroidComponentXmlElement {
     exists(AndroidXmlAttribute attr |
       attr = this.getAnAttribute() and attr.getName() = "targetActivity"
     |
-      result = getResolvedIdentifier(attr)
+      result = this.getResolvedIdentifier(attr)
     )
   }
 
@@ -319,7 +319,7 @@ class AndroidComponentXmlElement extends XmlElement {
    */
   string getResolvedComponentName() {
     exists(AndroidXmlAttribute attr | attr = this.getAnAttribute() and attr.getName() = "name" |
-      result = getResolvedIdentifier(attr)
+      result = this.getResolvedIdentifier(attr)
     )
   }
 
diff --git a/java/ql/test/library-tests/frameworks/android/activity-alias/TestActivityAlias.ql b/java/ql/test/library-tests/frameworks/android/activity-alias/TestActivityAlias.ql
index 023aec6affe..b7322a55027 100644
--- a/java/ql/test/library-tests/frameworks/android/activity-alias/TestActivityAlias.ql
+++ b/java/ql/test/library-tests/frameworks/android/activity-alias/TestActivityAlias.ql
@@ -1,5 +1,4 @@
 import java
-
 import semmle.code.xml.AndroidManifest
 
 from AndroidActivityAliasXmlElement alias

From 2255b0d96a384317e16433a2637187716ed93bfb Mon Sep 17 00:00:00 2001
From: Ed Minnix <egregius313@github.com>
Date: Thu, 27 Oct 2022 13:24:34 -0400
Subject: [PATCH 1100/1420] Modify `getAndroidComponentXmlElement` to handle
 activity-alias

Since aliases have both the `name` and `targetActivity` attributes, we
should check all identifying attributes in order to add
`<activity-alias>` elements as dataflow sources.
---
 .../ql/lib/semmle/code/java/frameworks/android/Android.qll | 7 ++++++-
 1 file changed, 6 insertions(+), 1 deletion(-)

diff --git a/java/ql/lib/semmle/code/java/frameworks/android/Android.qll b/java/ql/lib/semmle/code/java/frameworks/android/Android.qll
index 5bdfc523b3d..92340df0d50 100644
--- a/java/ql/lib/semmle/code/java/frameworks/android/Android.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/android/Android.qll
@@ -26,7 +26,12 @@ class AndroidComponent extends Class {
 
   /** The XML element corresponding to this Android component. */
   AndroidComponentXmlElement getAndroidComponentXmlElement() {
-    result.getResolvedComponentName() = this.getQualifiedName()
+    // Find an element with an identifier matching the qualified name of the component.
+    // Aliases have two identifiers (name and target), so check both identifiers (if present).
+    exists(AndroidIdentifierXmlAttribute identifier |
+      identifier = result.getAnAttribute() and
+      result.getResolvedIdentifier(identifier) = this.getQualifiedName()
+    )
   }
 
   /** Holds if this Android component is configured as `exported` in an `AndroidManifest.xml` file. */

From 1472335c2e4fc9cb4b0ed45504a601bf92d43487 Mon Sep 17 00:00:00 2001
From: Ed Minnix <egregius313@github.com>
Date: Fri, 28 Oct 2022 16:55:03 -0400
Subject: [PATCH 1101/1420] Abbreviated change note in changelog entry for
 activity-alias

---
 .../lib/change-notes/2022-10-17-android-activity-alias.md   | 6 +-----
 1 file changed, 1 insertion(+), 5 deletions(-)

diff --git a/java/ql/lib/change-notes/2022-10-17-android-activity-alias.md b/java/ql/lib/change-notes/2022-10-17-android-activity-alias.md
index 907051e05d2..c33a1feaaae 100644
--- a/java/ql/lib/change-notes/2022-10-17-android-activity-alias.md
+++ b/java/ql/lib/change-notes/2022-10-17-android-activity-alias.md
@@ -1,8 +1,4 @@
 ---
 category: minorAnalysis
 ---
-* Added the `AndroidActivityAliasXmlElement` class to represent `<activity-alias>` components in Android manifests.
-* Added the `AndroidActivityXmlElement.getAnAlias` method to get the aliases of an `<activity>` element in an Android manifest.
-* Added the `AndroidIdentifierXmlAttribute` class to represent XML attributes representing component identifiers, such as `android:name` and `android:targetActivity`
-* Added the `AndroidComponentXmlElement.getResolvedIdentifier` method, for finding the fully qualified identifier from an identifier.
-* Added the `AndroidComponentXmlElement.getResolvedComponentName` method, for finding the fully qualified identifier of a component.
+* Added support for Android Manifest `<activity-aliases>` elements in data flow sources. 

From b6a59f0885b8cff1d09003bbcc5475fa9dedb03f Mon Sep 17 00:00:00 2001
From: Ed Minnix <egregius313@github.com>
Date: Thu, 17 Nov 2022 13:09:38 -0500
Subject: [PATCH 1102/1420] Java: Add support and tests for implicitly exported
 activity aliases

---
 .../code/java/frameworks/android/Android.qll  |  6 +++++
 .../activity-alias/AndroidManifest.xml        | 27 +++++++++++++++++++
 .../activity-alias/Example2Activity.java      |  7 +++++
 .../activity-alias/ExampleActivity.java       |  7 +++++
 .../activity-alias/TestActivityAlias.expected |  2 ++
 .../TestActivityAliasExports.expected         |  4 +++
 .../TestActivityAliasExports.ql               |  6 +++++
 .../frameworks/android/activity-alias/options |  1 +
 8 files changed, 60 insertions(+)
 create mode 100644 java/ql/test/library-tests/frameworks/android/activity-alias/Example2Activity.java
 create mode 100644 java/ql/test/library-tests/frameworks/android/activity-alias/ExampleActivity.java
 create mode 100644 java/ql/test/library-tests/frameworks/android/activity-alias/TestActivityAliasExports.expected
 create mode 100644 java/ql/test/library-tests/frameworks/android/activity-alias/TestActivityAliasExports.ql
 create mode 100644 java/ql/test/library-tests/frameworks/android/activity-alias/options

diff --git a/java/ql/lib/semmle/code/java/frameworks/android/Android.qll b/java/ql/lib/semmle/code/java/frameworks/android/Android.qll
index 92340df0d50..1a992eb5565 100644
--- a/java/ql/lib/semmle/code/java/frameworks/android/Android.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/android/Android.qll
@@ -57,6 +57,12 @@ class ExportableAndroidComponent extends AndroidComponent {
     or
     this.hasIntentFilter() and
     not this.getAndroidComponentXmlElement().isNotExported()
+    or
+    exists(AndroidActivityAliasXmlElement e |
+      e = this.getAndroidComponentXmlElement() and
+      not e.isNotExported() and
+      e.hasAnIntentFilterElement()
+    )
   }
 }
 
diff --git a/java/ql/test/library-tests/frameworks/android/activity-alias/AndroidManifest.xml b/java/ql/test/library-tests/frameworks/android/activity-alias/AndroidManifest.xml
index 334f1558904..586545a3b6c 100644
--- a/java/ql/test/library-tests/frameworks/android/activity-alias/AndroidManifest.xml
+++ b/java/ql/test/library-tests/frameworks/android/activity-alias/AndroidManifest.xml
@@ -52,7 +52,34 @@
             android:exported="true"
             android:label="@string/app_name"
             android:targetActivity="com.example.myapplication.AnotherActivity"></activity-alias>
+        <activity
+            android:name=".ExampleActivity"
+            android:exported="false"
+            android:label="@string/app_name"
+            ></activity>
 
+        <activity-alias
+            android:name=".ExampleAlias"
+            android:exported="true"
+            android:label="@string/app_name"
+            android:targetActivity=".ExampleActivity">
+        </activity-alias>
+
+        <activity
+            android:name=".Example2Activity"
+            android:exported="false"
+            android:label="@string/app_name">
+        </activity>
+
+        <activity-alias
+            android:name=".Example2Alias"
+            android:label="@string/app_name"
+            android:targetActivity=".Example2Activity">
+            <intent-filter>
+                <action android:name="android.intent.action.MAIN"></action>
+                <action android:name="android.intent.category.LAUNCHER"></action>
+            </intent-filter>
+        </activity-alias>
     </application>
 
 </manifest>
diff --git a/java/ql/test/library-tests/frameworks/android/activity-alias/Example2Activity.java b/java/ql/test/library-tests/frameworks/android/activity-alias/Example2Activity.java
new file mode 100644
index 00000000000..551ed57918f
--- /dev/null
+++ b/java/ql/test/library-tests/frameworks/android/activity-alias/Example2Activity.java
@@ -0,0 +1,7 @@
+package com.example.myapplication;
+
+import android.app.Activity;
+
+public class Example2Activity extends Activity {
+
+}
diff --git a/java/ql/test/library-tests/frameworks/android/activity-alias/ExampleActivity.java b/java/ql/test/library-tests/frameworks/android/activity-alias/ExampleActivity.java
new file mode 100644
index 00000000000..7f0469ff1d1
--- /dev/null
+++ b/java/ql/test/library-tests/frameworks/android/activity-alias/ExampleActivity.java
@@ -0,0 +1,7 @@
+package com.example.myapplication;
+
+import android.app.Activity;
+
+public class ExampleActivity extends Activity {
+
+}
diff --git a/java/ql/test/library-tests/frameworks/android/activity-alias/TestActivityAlias.expected b/java/ql/test/library-tests/frameworks/android/activity-alias/TestActivityAlias.expected
index 7be685f8b5f..7d350358305 100644
--- a/java/ql/test/library-tests/frameworks/android/activity-alias/TestActivityAlias.expected
+++ b/java/ql/test/library-tests/frameworks/android/activity-alias/TestActivityAlias.expected
@@ -1,3 +1,5 @@
 | .AnotherAlias | .AnotherActivity |
+| .Example2Alias | .Example2Activity |
+| .ExampleAlias | .ExampleActivity |
 | .MainAlias | .MainActivity |
 | .SecondAlias | .MainActivity |
diff --git a/java/ql/test/library-tests/frameworks/android/activity-alias/TestActivityAliasExports.expected b/java/ql/test/library-tests/frameworks/android/activity-alias/TestActivityAliasExports.expected
new file mode 100644
index 00000000000..c5993ebf6e4
--- /dev/null
+++ b/java/ql/test/library-tests/frameworks/android/activity-alias/TestActivityAliasExports.expected
@@ -0,0 +1,4 @@
+| Example2Activity.java:5:14:5:29 | Example2Activity | AndroidManifest.xml:68:9:72:20 | activity |
+| Example2Activity.java:5:14:5:29 | Example2Activity | AndroidManifest.xml:74:9:82:26 | activity-alias |
+| ExampleActivity.java:5:14:5:28 | ExampleActivity | AndroidManifest.xml:55:9:59:25 | activity |
+| ExampleActivity.java:5:14:5:28 | ExampleActivity | AndroidManifest.xml:61:9:66:26 | activity-alias |
diff --git a/java/ql/test/library-tests/frameworks/android/activity-alias/TestActivityAliasExports.ql b/java/ql/test/library-tests/frameworks/android/activity-alias/TestActivityAliasExports.ql
new file mode 100644
index 00000000000..beac467fc0a
--- /dev/null
+++ b/java/ql/test/library-tests/frameworks/android/activity-alias/TestActivityAliasExports.ql
@@ -0,0 +1,6 @@
+import java
+import semmle.code.java.frameworks.android.Android
+
+from ExportableAndroidComponent component
+where component.isExported()
+select component, component.getAndroidComponentXmlElement()
diff --git a/java/ql/test/library-tests/frameworks/android/activity-alias/options b/java/ql/test/library-tests/frameworks/android/activity-alias/options
new file mode 100644
index 00000000000..5aa323ada52
--- /dev/null
+++ b/java/ql/test/library-tests/frameworks/android/activity-alias/options
@@ -0,0 +1 @@
+//semmle-extractor-options: --javac-args -cp ${testdir}/../../../../stubs/google-android-9.0.0/

From 85b2642a5e1ffba665aa5e21acf443d335e1da6a Mon Sep 17 00:00:00 2001
From: Tony Torralba <atorralba@users.noreply.github.com>
Date: Wed, 7 Dec 2022 09:57:31 +0100
Subject: [PATCH 1103/1420] Extraction discrepancy fixed in kotlinc 1.7.21

---
 java/ql/test/library-tests/pathsanitizer/TestKt.kt | 4 +---
 1 file changed, 1 insertion(+), 3 deletions(-)

diff --git a/java/ql/test/library-tests/pathsanitizer/TestKt.kt b/java/ql/test/library-tests/pathsanitizer/TestKt.kt
index dc9cf86c8e1..d0a11dac0ee 100644
--- a/java/ql/test/library-tests/pathsanitizer/TestKt.kt
+++ b/java/ql/test/library-tests/pathsanitizer/TestKt.kt
@@ -20,10 +20,8 @@ class TestKt {
     fun exactPathMatchGuard() {
         run {
             val source = source() as String?
-            // This gets extracted as Object.equals, which makes the definitions in exactPathMatchGuard not catch it.
-            // Note that it gets correctly extracted in Java.
             if (source!!.equals("/safe/path"))
-                sink(source) // $SPURIOUS: $ hasTaintFlow
+                sink(source) // Safe
             else
                 sink(source) // $ hasTaintFlow
         }

From 3e92b4c5960544b4d24648e8774e49c60d3172b2 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Alvaro=20Mu=C3=B1oz?= <pwntester@github.com>
Date: Wed, 7 Dec 2022 10:29:29 +0100
Subject: [PATCH 1104/1420] Apply suggestions from code review

Co-authored-by: Erik Krogh Kristensen <erik-krogh@github.com>
---
 .../semmle/javascript/frameworks/Spife.qll    | 22 +++++++++----------
 1 file changed, 11 insertions(+), 11 deletions(-)

diff --git a/javascript/ql/lib/semmle/javascript/frameworks/Spife.qll b/javascript/ql/lib/semmle/javascript/frameworks/Spife.qll
index f2e738d80b6..62cc0f27bfa 100644
--- a/javascript/ql/lib/semmle/javascript/frameworks/Spife.qll
+++ b/javascript/ql/lib/semmle/javascript/frameworks/Spife.qll
@@ -245,14 +245,14 @@ module Spife {
     override predicate definesHeaderValue(string headerName, DataFlow::Node headerValue) {
       // reply.header(RESPONSE, 'Cache-Control', 'no-cache')
       this.getNameNode().mayHaveStringValue(headerName) and
-      headerValue = this.(DataFlow::MethodCallNode).getArgument(2)
+      headerValue = super.getArgument(2)
     }
 
     override DataFlow::Node getNameNode() {
-      result = this.(DataFlow::MethodCallNode).getArgument(1)
+      result = super.getArgument(1)
     }
 
-    override RouteHandler getRouteHandler() { result = this.(ReplyCall).getRouteHandler() }
+    override RouteHandler getRouteHandler() { result = ReplyCall.super.getRouteHandler() }
   }
 
   /**
@@ -274,7 +274,7 @@ module Spife {
      * Gets a reference to the multiple headers object that is to be set.
      */
     DataFlow::ObjectLiteralNode getAHeaderSource() {
-      result = this.(DataFlow::CallNode).getAnArgument().getALocalSource()
+      result = super.getAnArgument().getALocalSource()
     }
 
     override predicate definesHeaderValue(string headerName, DataFlow::Node headerValue) {
@@ -288,7 +288,7 @@ module Spife {
       result = this.getAHeaderSource().getAPropertyWrite().getPropertyNameExpr().flow()
     }
 
-    override RouteHandler getRouteHandler() { result = this.(ReplyCall).getRouteHandler() }
+    override RouteHandler getRouteHandler() { result = super.getRouteHandler() }
   }
 
   /**
@@ -312,11 +312,11 @@ module Spife {
     }
 
     //  this = any(ReplyCall r).ref().getAMethodCall("cookie")
-    override DataFlow::Node getNameArgument() { result = this.(ReplyCall).getArgument(1) }
+    override DataFlow::Node getNameArgument() { result = super.getArgument(1) }
 
-    override DataFlow::Node getValueArgument() { result = this.(ReplyCall).getArgument(2) }
+    override DataFlow::Node getValueArgument() { result = super.getArgument(2) }
 
-    override RouteHandler getRouteHandler() { result = this.(ReplyCall).getRouteHandler() }
+    override RouteHandler getRouteHandler() { result = super.getRouteHandler() }
   }
 
   /**
@@ -371,9 +371,9 @@ module Spife {
 
     override DataFlow::SourceNode getOutput() { result = this }
 
-    override DataFlow::Node getTemplateFileNode() { result = this.(ReplyCall).getArgument(0) }
+    override DataFlow::Node getTemplateFileNode() { result = super.getArgument(0) }
 
-    override DataFlow::Node getTemplateParamsNode() { result = this.(ReplyCall).getArgument(1) }
+    override DataFlow::Node getTemplateParamsNode() { result = super.getArgument(1) }
   }
 
   /**
@@ -410,6 +410,6 @@ module Spife {
 
     override DataFlow::Node getUrlArgument() { result = this.getAnArgument() }
 
-    override RouteHandler getRouteHandler() { result = this.getRouteHandler() }
+    override RouteHandler getRouteHandler() { result = super.getRouteHandler() }
   }
 }

From 2f622ad72c4efd9124d4793231073287466da338 Mon Sep 17 00:00:00 2001
From: Tony Torralba <atorralba@users.noreply.github.com>
Date: Wed, 7 Dec 2022 10:31:54 +0100
Subject: [PATCH 1105/1420] Refactor by introducing helper predicates

---
 .../code/java/security/PathSanitizer.qll      | 146 +++++++++---------
 1 file changed, 75 insertions(+), 71 deletions(-)

diff --git a/java/ql/lib/semmle/code/java/security/PathSanitizer.qll b/java/ql/lib/semmle/code/java/security/PathSanitizer.qll
index ad861ddeb42..a8c58560b03 100644
--- a/java/ql/lib/semmle/code/java/security/PathSanitizer.qll
+++ b/java/ql/lib/semmle/code/java/security/PathSanitizer.qll
@@ -49,25 +49,18 @@ private module ValidationMethod<DataFlow::guardChecksSig/3 validationGuard> {
  */
 private predicate exactPathMatchGuard(Guard g, Expr e, boolean branch) {
   exists(MethodAccess ma, RefType t |
-    (
-      t instanceof TypeString or
-      t instanceof TypeUri or
-      t instanceof TypePath or
-      t instanceof TypeFile or
-      t.hasQualifiedName("android.net", "Uri")
-    ) and
-    e = ma.getQualifier().getUnderlyingExpr()
-    or
-    (
-      ma.getMethod().getDeclaringType() instanceof StringsKt
-      or
-      ma.getMethod().getDeclaringType() instanceof FilesKt
-    ) and
-    e = ma.getArgument(0).getUnderlyingExpr()
+    t instanceof TypeString or
+    t instanceof TypeUri or
+    t instanceof TypePath or
+    t instanceof TypeFile or
+    t.hasQualifiedName("android.net", "Uri") or
+    t instanceof StringsKt or
+    t instanceof FilesKt
   |
+    e = getVisualQualifier(ma).getUnderlyingExpr() and
     ma.getMethod().getDeclaringType() = t and
     ma = g and
-    ma.getMethod().getName() = ["equals", "equalsIgnoreCase"] + ["", "$default"] and
+    getSourceMethod(ma.getMethod()).hasName(["equals", "equalsIgnoreCase"]) and
     branch = true
   )
 }
@@ -224,29 +217,19 @@ private class ConstantOrRegex extends Expr {
 }
 
 private predicate isStringPrefixMatch(MethodAccess ma, Expr checkedExpr) {
-  exists(Method m |
+  exists(Method m, RefType t |
+    m.getDeclaringType() = t and
+    (t instanceof TypeString or t instanceof StringsKt) and
     m = ma.getMethod() and
-    (
-      m.getDeclaringType() instanceof TypeString and
-      checkedExpr = ma.getQualifier().getUnderlyingExpr()
-      or
-      m.getDeclaringType() instanceof StringsKt and
-      checkedExpr = ma.getArgument(0).getUnderlyingExpr()
-    )
+    checkedExpr = getVisualQualifier(ma).getUnderlyingExpr()
   |
-    m.hasName("startsWith" + ["", "$default"])
+    getSourceMethod(m).hasName("startsWith")
     or
-    exists(int argPos |
-      m.getDeclaringType() instanceof TypeString and argPos = 0
-      or
-      m.getDeclaringType() instanceof StringsKt and argPos = 1
-    |
-      m.hasName("regionMatches" + ["", "$default"]) and
-      ma.getArgument(argPos).(CompileTimeConstantExpr).getIntValue() = 0
-      or
-      m.hasName("matches") and
-      not ma.getArgument(argPos).(ConstantOrRegex).getStringValue().matches(".*%")
-    )
+    getSourceMethod(m).hasName("regionMatches") and
+    getVisualArgument(ma, 0).(CompileTimeConstantExpr).getIntValue() = 0
+    or
+    m.hasName("matches") and
+    not getVisualArgument(ma, 0).(ConstantOrRegex).getStringValue().matches(".*%")
   )
 }
 
@@ -256,30 +239,23 @@ private predicate isStringPrefixMatch(MethodAccess ma, Expr checkedExpr) {
 private predicate isStringPartialMatch(MethodAccess ma, Expr checkedExpr) {
   isStringPrefixMatch(ma, checkedExpr)
   or
-  (
-    ma.getMethod().getDeclaringType() instanceof TypeString and
-    checkedExpr = ma.getQualifier().getUnderlyingExpr()
-    or
-    ma.getMethod().getDeclaringType() instanceof StringsKt and
-    checkedExpr = ma.getArgument(0).getUnderlyingExpr()
+  exists(RefType t | t = ma.getMethod().getDeclaringType() |
+    t instanceof TypeString or t instanceof StringsKt
   ) and
-  ma.getMethod()
-      .hasName(["contains", "matches", "regionMatches", "indexOf", "lastIndexOf"] + ["", "$default"])
+  getSourceMethod(ma.getMethod())
+      .hasName(["contains", "matches", "regionMatches", "indexOf", "lastIndexOf"]) and
+  checkedExpr = getVisualQualifier(ma).getUnderlyingExpr()
 }
 
 /**
  * Holds if `ma` is a call to a method that checks whether `checkedExpr` starts with a prefix.
  */
 private predicate isPathPrefixMatch(MethodAccess ma, Expr checkedExpr) {
-  exists(RefType t |
-    t instanceof TypePath and checkedExpr = ma.getQualifier().getUnderlyingExpr()
-    or
-    t instanceof FilesKt and
-    checkedExpr = ma.getArgument(0).getUnderlyingExpr()
-  |
-    t = ma.getMethod().getDeclaringType() and
-    ma.getMethod().hasName("startsWith" + ["", "$default"])
-  )
+  exists(RefType t | t = ma.getMethod().getDeclaringType() |
+    t instanceof TypePath or t instanceof FilesKt
+  ) and
+  getSourceMethod(ma.getMethod()).hasName("startsWith") and
+  checkedExpr = getVisualQualifier(ma)
 }
 
 private predicate isDisallowedWord(ConstantOrRegex word) {
@@ -291,22 +267,19 @@ private class PathTraversalGuard extends PathGuard {
   Expr checkedExpr;
 
   PathTraversalGuard() {
-    exists(MethodAccess ma |
-      (
-        ma.getMethod().getDeclaringType() instanceof TypeString and
-        checkedExpr = ma.getQualifier().getUnderlyingExpr()
-        or
-        ma.getMethod().getDeclaringType() instanceof StringsKt and
-        checkedExpr = ma.getArgument(0).getUnderlyingExpr()
-      ) and
+    exists(MethodAccess ma, Method m, RefType t |
+      m = ma.getMethod() and
+      t = m.getDeclaringType() and
+      (t instanceof TypeString or t instanceof StringsKt) and
+      checkedExpr = getVisualQualifier(ma).getUnderlyingExpr() and
       ma.getAnArgument().(CompileTimeConstantExpr).getStringValue() = ".."
     |
       this = ma and
-      ma.getMethod().hasName("contains" + ["", "$default"])
+      getSourceMethod(m).hasName("contains")
       or
       exists(EqualityTest eq |
         this = eq and
-        ma.getMethod().hasName(["indexOf", "lastIndexOf"] + ["", "$default"]) and
+        getSourceMethod(m).hasName(["indexOf", "lastIndexOf"]) and
         eq.getAnOperand() = ma and
         eq.getAnOperand().(CompileTimeConstantExpr).getIntValue() = -1
       )
@@ -325,15 +298,46 @@ private class PathTraversalGuard extends PathGuard {
 /** A complementary sanitizer that protects against path traversal using path normalization. */
 private class PathNormalizeSanitizer extends MethodAccess {
   PathNormalizeSanitizer() {
-    exists(RefType t |
-      t instanceof TypePath or
-      t instanceof FilesKt
-    |
-      this.getMethod().getDeclaringType() = t and
+    exists(RefType t | this.getMethod().getDeclaringType() = t |
+      (t instanceof TypePath or t instanceof FilesKt) and
       this.getMethod().hasName("normalize")
+      or
+      t instanceof TypeFile and
+      this.getMethod().hasName(["getCanonicalPath", "getCanonicalFile"])
     )
-    or
-    this.getMethod().getDeclaringType() instanceof TypeFile and
-    this.getMethod().hasName(["getCanonicalPath", "getCanonicalFile"])
   }
 }
+
+/**
+ * Gets the qualifier of `ma` as seen in the source code.
+ * This is a helper predicate to solve discrepancies between
+ * what `getQualifier` actually gets in Java and Kotlin.
+ */
+private Expr getVisualQualifier(MethodAccess ma) {
+  if getSourceMethod(ma.getMethod()) instanceof ExtensionMethod
+  then result = ma.getArgument(0)
+  else result = ma.getQualifier()
+}
+
+/**
+ * Gets the argument of `ma` at position `argPos` as seen in the source code.
+ * This is a helper predicate to solve discrepancies between
+ * what `getArgument` actually gets in Java and Kotlin.
+ */
+bindingset[argPos]
+private Argument getVisualArgument(MethodAccess ma, int argPos) {
+  if getSourceMethod(ma.getMethod()) instanceof ExtensionMethod
+  then result = ma.getArgument(argPos + 1)
+  else result = ma.getArgument(argPos)
+}
+
+/**
+ * Gets the proxied method if `m` is a Kotlin proxy that supplies default parameter values,
+ * Otherwise, just gets `m`.
+ */
+private Method getSourceMethod(Method m) {
+  m = result.getKotlinParameterDefaultsProxy()
+  or
+  not exists(Method src | m = src.getKotlinParameterDefaultsProxy()) and
+  result = m
+}

From 407df37a74dbad8fb319db54d645340296fe262e Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Alvaro=20Mu=C3=B1oz?= <pwntester@github.com>
Date: Wed, 7 Dec 2022 10:36:44 +0100
Subject: [PATCH 1106/1420] Add feedback from Code review

---
 .../semmle/javascript/frameworks/Spife.qll    | 27 +++++++++----------
 1 file changed, 12 insertions(+), 15 deletions(-)

diff --git a/javascript/ql/lib/semmle/javascript/frameworks/Spife.qll b/javascript/ql/lib/semmle/javascript/frameworks/Spife.qll
index 62cc0f27bfa..09957eca69a 100644
--- a/javascript/ql/lib/semmle/javascript/frameworks/Spife.qll
+++ b/javascript/ql/lib/semmle/javascript/frameworks/Spife.qll
@@ -209,26 +209,25 @@ module Spife {
    * route handler.
    */
   private class ReplyCall extends API::CallNode {
+    boolean isDirectReplyCall;
+
     ReplyCall() {
       // reply(resp)
-      this = API::moduleImport(["@npm/spife/reply", "spife/reply"]).getACall()
+      this = API::moduleImport(["@npm/spife/reply", "spife/reply"]).getACall() and
+      isDirectReplyCall = true
       or
       // reply.header(resp, 'foo', 'bar')
-      this = API::moduleImport(["@npm/spife/reply", "spife/reply"]).getAMember().getACall()
+      this = API::moduleImport(["@npm/spife/reply", "spife/reply"]).getAMember().getACall() and
+      isDirectReplyCall = false
     }
 
-    predicate isDirectReplyCall() {
-      this = API::moduleImport(["@npm/spife/reply", "spife/reply"]).getACall()
-    }
+    predicate isDirectReplyCall() { isDirectReplyCall = true }
 
     /**
      * Gets the route handler that provides this response.
      */
     RouteHandler getRouteHandler() {
-      exists(RouteHandler handler |
-        handler.getAReturn() = this.getReturn().getAValueReachableFromSource() and
-        result = handler
-      )
+      result.getAReturn() = this.getReturn().getAValueReachableFromSource()
     }
   }
 
@@ -248,9 +247,7 @@ module Spife {
       headerValue = super.getArgument(2)
     }
 
-    override DataFlow::Node getNameNode() {
-      result = super.getArgument(1)
-    }
+    override DataFlow::Node getNameNode() { result = super.getArgument(1) }
 
     override RouteHandler getRouteHandler() { result = ReplyCall.super.getRouteHandler() }
   }
@@ -380,14 +377,14 @@ module Spife {
    * An object passed to the `template` method of the reply object.
    */
   private class TemplateObjectInput extends DataFlow::Node {
-    TemplateCall call;
+    ReplyCall call;
 
-    TemplateObjectInput() { this = call.(ReplyCall).getArgument(1) }
+    TemplateObjectInput() { this = call.getArgument(1) }
 
     /**
      * Gets the route handler that uses this object.
      */
-    RouteHandler getRouteHandler() { result = call.(ReplyCall).getRouteHandler() }
+    RouteHandler getRouteHandler() { result = call.getRouteHandler() }
   }
 
   /**

From ccd465d669881a11b20e837221a22cfb41a32406 Mon Sep 17 00:00:00 2001
From: Tony Torralba <atorralba@users.noreply.github.com>
Date: Wed, 7 Dec 2022 10:38:33 +0100
Subject: [PATCH 1107/1420] Update
 java/ql/lib/semmle/code/java/security/PathSanitizer.qll

---
 java/ql/lib/semmle/code/java/security/PathSanitizer.qll | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/java/ql/lib/semmle/code/java/security/PathSanitizer.qll b/java/ql/lib/semmle/code/java/security/PathSanitizer.qll
index a8c58560b03..77dbf26b8db 100644
--- a/java/ql/lib/semmle/code/java/security/PathSanitizer.qll
+++ b/java/ql/lib/semmle/code/java/security/PathSanitizer.qll
@@ -332,7 +332,7 @@ private Argument getVisualArgument(MethodAccess ma, int argPos) {
 }
 
 /**
- * Gets the proxied method if `m` is a Kotlin proxy that supplies default parameter values,
+ * Gets the proxied method if `m` is a Kotlin proxy that supplies default parameter values.
  * Otherwise, just gets `m`.
  */
 private Method getSourceMethod(Method m) {

From af015d3d309bc0cc1a00f6330f7c90641997f6e6 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Alvaro=20Mu=C3=B1oz?= <pwntester@github.com>
Date: Wed, 7 Dec 2022 10:39:58 +0100
Subject: [PATCH 1108/1420] restoring previous casts to avoid super type
 ambiguity

---
 javascript/ql/lib/semmle/javascript/frameworks/Spife.qll | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/javascript/ql/lib/semmle/javascript/frameworks/Spife.qll b/javascript/ql/lib/semmle/javascript/frameworks/Spife.qll
index 09957eca69a..48ef92a0e0b 100644
--- a/javascript/ql/lib/semmle/javascript/frameworks/Spife.qll
+++ b/javascript/ql/lib/semmle/javascript/frameworks/Spife.qll
@@ -285,7 +285,7 @@ module Spife {
       result = this.getAHeaderSource().getAPropertyWrite().getPropertyNameExpr().flow()
     }
 
-    override RouteHandler getRouteHandler() { result = super.getRouteHandler() }
+    override RouteHandler getRouteHandler() { result = this.(ReplyCall).getRouteHandler() }
   }
 
   /**
@@ -313,7 +313,7 @@ module Spife {
 
     override DataFlow::Node getValueArgument() { result = super.getArgument(2) }
 
-    override RouteHandler getRouteHandler() { result = super.getRouteHandler() }
+    override RouteHandler getRouteHandler() { result = this.(ReplyCall).getRouteHandler() }
   }
 
   /**
@@ -407,6 +407,6 @@ module Spife {
 
     override DataFlow::Node getUrlArgument() { result = this.getAnArgument() }
 
-    override RouteHandler getRouteHandler() { result = super.getRouteHandler() }
+    override RouteHandler getRouteHandler() { result = this.(ReplyCall).getRouteHandler() }
   }
 }

From 6dcc0cc188dd4a0b4a922f81a27fdbdc73a2b96b Mon Sep 17 00:00:00 2001
From: Tony Torralba <atorralba@users.noreply.github.com>
Date: Wed, 7 Dec 2022 10:50:23 +0100
Subject: [PATCH 1109/1420] Further simplification

---
 .../code/java/security/PathSanitizer.qll      | 41 ++++++-------------
 1 file changed, 13 insertions(+), 28 deletions(-)

diff --git a/java/ql/lib/semmle/code/java/security/PathSanitizer.qll b/java/ql/lib/semmle/code/java/security/PathSanitizer.qll
index 77dbf26b8db..76661aa4842 100644
--- a/java/ql/lib/semmle/code/java/security/PathSanitizer.qll
+++ b/java/ql/lib/semmle/code/java/security/PathSanitizer.qll
@@ -86,18 +86,12 @@ private predicate localTaintFlowToPathGuard(Expr e, PathGuard g) {
 }
 
 private class AllowedPrefixGuard extends PathGuard instanceof MethodAccess {
-  Expr checkedExpr;
-
   AllowedPrefixGuard() {
-    (
-      isStringPrefixMatch(this, checkedExpr)
-      or
-      isPathPrefixMatch(this, checkedExpr)
-    ) and
+    (isStringPrefixMatch(this) or isPathPrefixMatch(this)) and
     not isDisallowedWord(super.getAnArgument())
   }
 
-  override Expr getCheckedExpr() { result = checkedExpr }
+  override Expr getCheckedExpr() { result = getVisualQualifier(this).getUnderlyingExpr() }
 }
 
 /**
@@ -159,18 +153,12 @@ private class DotDotCheckSanitizer extends PathInjectionSanitizer {
 }
 
 private class BlockListGuard extends PathGuard instanceof MethodAccess {
-  Expr checkedExpr;
-
   BlockListGuard() {
-    (
-      isStringPartialMatch(this, checkedExpr)
-      or
-      isPathPrefixMatch(this, checkedExpr)
-    ) and
+    (isStringPartialMatch(this) or isPathPrefixMatch(this)) and
     isDisallowedWord(super.getAnArgument())
   }
 
-  override Expr getCheckedExpr() { result = checkedExpr }
+  override Expr getCheckedExpr() { result = getVisualQualifier(this).getUnderlyingExpr() }
 }
 
 /**
@@ -216,12 +204,11 @@ private class ConstantOrRegex extends Expr {
   }
 }
 
-private predicate isStringPrefixMatch(MethodAccess ma, Expr checkedExpr) {
+private predicate isStringPrefixMatch(MethodAccess ma) {
   exists(Method m, RefType t |
     m.getDeclaringType() = t and
     (t instanceof TypeString or t instanceof StringsKt) and
-    m = ma.getMethod() and
-    checkedExpr = getVisualQualifier(ma).getUnderlyingExpr()
+    m = ma.getMethod()
   |
     getSourceMethod(m).hasName("startsWith")
     or
@@ -234,28 +221,26 @@ private predicate isStringPrefixMatch(MethodAccess ma, Expr checkedExpr) {
 }
 
 /**
- * Holds if `ma` is a call to a method that checks a partial string match on `checkedExpr`.
+ * Holds if `ma` is a call to a method that checks a partial string match.
  */
-private predicate isStringPartialMatch(MethodAccess ma, Expr checkedExpr) {
-  isStringPrefixMatch(ma, checkedExpr)
+private predicate isStringPartialMatch(MethodAccess ma) {
+  isStringPrefixMatch(ma)
   or
   exists(RefType t | t = ma.getMethod().getDeclaringType() |
     t instanceof TypeString or t instanceof StringsKt
   ) and
   getSourceMethod(ma.getMethod())
-      .hasName(["contains", "matches", "regionMatches", "indexOf", "lastIndexOf"]) and
-  checkedExpr = getVisualQualifier(ma).getUnderlyingExpr()
+      .hasName(["contains", "matches", "regionMatches", "indexOf", "lastIndexOf"])
 }
 
 /**
- * Holds if `ma` is a call to a method that checks whether `checkedExpr` starts with a prefix.
+ * Holds if `ma` is a call to a method that checks whether a path starts with a prefix.
  */
-private predicate isPathPrefixMatch(MethodAccess ma, Expr checkedExpr) {
+private predicate isPathPrefixMatch(MethodAccess ma) {
   exists(RefType t | t = ma.getMethod().getDeclaringType() |
     t instanceof TypePath or t instanceof FilesKt
   ) and
-  getSourceMethod(ma.getMethod()).hasName("startsWith") and
-  checkedExpr = getVisualQualifier(ma)
+  getSourceMethod(ma.getMethod()).hasName("startsWith")
 }
 
 private predicate isDisallowedWord(ConstantOrRegex word) {

From 5af1b367c79a1e171b98e600c77f55ea4fd1f5cf Mon Sep 17 00:00:00 2001
From: Asger F <asgerf@github.com>
Date: Mon, 10 Oct 2022 14:06:05 +0200
Subject: [PATCH 1110/1420] Support data extensions

---
 config/identical-files.json                   |  5 +++
 javascript/ql/lib/qlpack.yml                  |  2 ++
 .../data/internal/ApiGraphModels.qll          | 11 ++++++
 .../internal/ApiGraphModelsExtensions.qll     | 36 +++++++++++++++++++
 .../frameworks/data/internal/model.yml        | 26 ++++++++++++++
 python/ql/lib/qlpack.yml                      |  4 ++-
 .../data/internal/ApiGraphModels.qll          | 11 ++++++
 .../internal/ApiGraphModelsExtensions.qll     | 36 +++++++++++++++++++
 .../python/frameworks/data/internal/model.yml | 26 ++++++++++++++
 .../data/internal/ApiGraphModels.qll          | 11 ++++++
 .../internal/ApiGraphModelsExtensions.qll     | 36 +++++++++++++++++++
 .../ruby/frameworks/data/internal/model.yml   | 26 ++++++++++++++
 ruby/ql/lib/qlpack.yml                        |  3 ++
 13 files changed, 232 insertions(+), 1 deletion(-)
 create mode 100644 javascript/ql/lib/semmle/javascript/frameworks/data/internal/ApiGraphModelsExtensions.qll
 create mode 100644 javascript/ql/lib/semmle/javascript/frameworks/data/internal/model.yml
 create mode 100644 python/ql/lib/semmle/python/frameworks/data/internal/ApiGraphModelsExtensions.qll
 create mode 100644 python/ql/lib/semmle/python/frameworks/data/internal/model.yml
 create mode 100644 ruby/ql/lib/codeql/ruby/frameworks/data/internal/ApiGraphModelsExtensions.qll
 create mode 100644 ruby/ql/lib/codeql/ruby/frameworks/data/internal/model.yml

diff --git a/config/identical-files.json b/config/identical-files.json
index 0a5d037e226..2e8c081db23 100644
--- a/config/identical-files.json
+++ b/config/identical-files.json
@@ -537,6 +537,11 @@
     "ruby/ql/lib/codeql/ruby/frameworks/data/internal/ApiGraphModels.qll",
     "python/ql/lib/semmle/python/frameworks/data/internal/ApiGraphModels.qll"
   ],
+  "ApiGraphModelsExtensions": [
+    "javascript/ql/lib/semmle/javascript/frameworks/data/internal/ApiGraphModelsExtensions.qll",
+    "ruby/ql/lib/codeql/ruby/frameworks/data/internal/ApiGraphModelsExtensions.qll",
+    "python/ql/lib/semmle/python/frameworks/data/internal/ApiGraphModelsExtensions.qll"
+  ],
   "TaintedFormatStringQuery Ruby/JS": [
     "javascript/ql/lib/semmle/javascript/security/dataflow/TaintedFormatStringQuery.qll",
     "ruby/ql/lib/codeql/ruby/security/TaintedFormatStringQuery.qll"
diff --git a/javascript/ql/lib/qlpack.yml b/javascript/ql/lib/qlpack.yml
index c1f80647830..1fd28343800 100644
--- a/javascript/ql/lib/qlpack.yml
+++ b/javascript/ql/lib/qlpack.yml
@@ -7,3 +7,5 @@ library: true
 upgrades: upgrades
 dependencies:
   codeql/regex: ${workspace}
+dataExtensions:
+  - semmle/javascript/frameworks/**/model.yml
diff --git a/javascript/ql/lib/semmle/javascript/frameworks/data/internal/ApiGraphModels.qll b/javascript/ql/lib/semmle/javascript/frameworks/data/internal/ApiGraphModels.qll
index 0e744ba801a..1b7e8cb326a 100644
--- a/javascript/ql/lib/semmle/javascript/frameworks/data/internal/ApiGraphModels.qll
+++ b/javascript/ql/lib/semmle/javascript/frameworks/data/internal/ApiGraphModels.qll
@@ -72,6 +72,7 @@ private module API = Specific::API;
 private module DataFlow = Specific::DataFlow;
 
 private import Specific::AccessPathSyntax
+private import ApiGraphModelsExtensions as Extensions
 
 /** Module containing hooks for providing input data to be interpreted as a model. */
 module ModelInput {
@@ -236,6 +237,8 @@ predicate sourceModel(string type, string path, string kind) {
     row.splitAt(";", 1) = path and
     row.splitAt(";", 2) = kind
   )
+  or
+  Extensions::sourceModel(type, path, kind)
 }
 
 /** Holds if a sink model exists for the given parameters. */
@@ -246,6 +249,8 @@ private predicate sinkModel(string type, string path, string kind) {
     row.splitAt(";", 1) = path and
     row.splitAt(";", 2) = kind
   )
+  or
+  Extensions::sinkModel(type, path, kind)
 }
 
 /** Holds if a summary model `row` exists for the given parameters. */
@@ -258,6 +263,8 @@ private predicate summaryModel(string type, string path, string input, string ou
     row.splitAt(";", 3) = output and
     row.splitAt(";", 4) = kind
   )
+  or
+  Extensions::summaryModel(type, path, input, output, kind)
 }
 
 /** Holds if a type model exists for the given parameters. */
@@ -268,6 +275,8 @@ private predicate typeModel(string type1, string type2, string path) {
     row.splitAt(";", 1) = type2 and
     row.splitAt(";", 2) = path
   )
+  or
+  Extensions::typeModel(type1, type2, path)
 }
 
 /** Holds if a type variable model exists for the given parameters. */
@@ -277,6 +286,8 @@ private predicate typeVariableModel(string name, string path) {
     row.splitAt(";", 0) = name and
     row.splitAt(";", 1) = path
   )
+  or
+  Extensions::typeVariableModel(name, path)
 }
 
 /**
diff --git a/javascript/ql/lib/semmle/javascript/frameworks/data/internal/ApiGraphModelsExtensions.qll b/javascript/ql/lib/semmle/javascript/frameworks/data/internal/ApiGraphModelsExtensions.qll
new file mode 100644
index 00000000000..11c3bb9657e
--- /dev/null
+++ b/javascript/ql/lib/semmle/javascript/frameworks/data/internal/ApiGraphModelsExtensions.qll
@@ -0,0 +1,36 @@
+/**
+ * Defines extensible predicates for contributing library models from data extensions.
+ */
+
+/**
+ * Holds if the value at `(type, path)` should be seen as a flow
+ * source of the given `kind`.
+ *
+ * The kind `remote` represents a general remote flow source.
+ */
+extensible predicate sourceModel(string type, string path, string kind);
+
+/**
+ * Holds if the value at `(type, path)` should be seen as a sink
+ * of the given `kind`.
+ */
+extensible predicate sinkModel(string type, string path, string kind);
+
+/**
+ * Holds if calls to `(type, path)`, the value referred to by `input`
+ * can flow to the value referred to by `output`.
+ *
+ * `kind` should be either `value` or `taint`, for value-preserving or taint-preserving steps,
+ * respectively.
+ */
+extensible predicate summaryModel(string type, string path, string input, string output, string kind);
+
+/**
+ * Holds if `(type2, path)` should be seen as an instance of `type1`.
+ */
+extensible predicate typeModel(string type1, string type2, string path);
+
+/**
+ * Holds if `path` can be substituted for a token `TypeVar[name]`.
+ */
+extensible predicate typeVariableModel(string name, string path);
diff --git a/javascript/ql/lib/semmle/javascript/frameworks/data/internal/model.yml b/javascript/ql/lib/semmle/javascript/frameworks/data/internal/model.yml
new file mode 100644
index 00000000000..634a1bb3f8b
--- /dev/null
+++ b/javascript/ql/lib/semmle/javascript/frameworks/data/internal/model.yml
@@ -0,0 +1,26 @@
+extensions:
+  # Contribute empty data sets to avoid errors about an undefined extensionals
+  - addsTo:
+      pack: codeql/javascript-all
+      extensible: sourceModel
+    data: []
+
+  - addsTo:
+      pack: codeql/javascript-all
+      extensible: sinkModel
+    data: []
+
+  - addsTo:
+      pack: codeql/javascript-all
+      extensible: summaryModel
+    data: []
+
+  - addsTo:
+      pack: codeql/javascript-all
+      extensible: typeModel
+    data: []
+
+  - addsTo:
+      pack: codeql/javascript-all
+      extensible: typeVariableModel
+    data: []
diff --git a/python/ql/lib/qlpack.yml b/python/ql/lib/qlpack.yml
index 2cc69948b1d..9387312e1ce 100644
--- a/python/ql/lib/qlpack.yml
+++ b/python/ql/lib/qlpack.yml
@@ -6,4 +6,6 @@ extractor: python
 library: true
 upgrades: upgrades
 dependencies:
-  codeql/regex: ${workspace}
\ No newline at end of file
+  codeql/regex: ${workspace}
+dataExtensions:
+  - semmle/python/frameworks/**/model.yml
diff --git a/python/ql/lib/semmle/python/frameworks/data/internal/ApiGraphModels.qll b/python/ql/lib/semmle/python/frameworks/data/internal/ApiGraphModels.qll
index 0e744ba801a..1b7e8cb326a 100644
--- a/python/ql/lib/semmle/python/frameworks/data/internal/ApiGraphModels.qll
+++ b/python/ql/lib/semmle/python/frameworks/data/internal/ApiGraphModels.qll
@@ -72,6 +72,7 @@ private module API = Specific::API;
 private module DataFlow = Specific::DataFlow;
 
 private import Specific::AccessPathSyntax
+private import ApiGraphModelsExtensions as Extensions
 
 /** Module containing hooks for providing input data to be interpreted as a model. */
 module ModelInput {
@@ -236,6 +237,8 @@ predicate sourceModel(string type, string path, string kind) {
     row.splitAt(";", 1) = path and
     row.splitAt(";", 2) = kind
   )
+  or
+  Extensions::sourceModel(type, path, kind)
 }
 
 /** Holds if a sink model exists for the given parameters. */
@@ -246,6 +249,8 @@ private predicate sinkModel(string type, string path, string kind) {
     row.splitAt(";", 1) = path and
     row.splitAt(";", 2) = kind
   )
+  or
+  Extensions::sinkModel(type, path, kind)
 }
 
 /** Holds if a summary model `row` exists for the given parameters. */
@@ -258,6 +263,8 @@ private predicate summaryModel(string type, string path, string input, string ou
     row.splitAt(";", 3) = output and
     row.splitAt(";", 4) = kind
   )
+  or
+  Extensions::summaryModel(type, path, input, output, kind)
 }
 
 /** Holds if a type model exists for the given parameters. */
@@ -268,6 +275,8 @@ private predicate typeModel(string type1, string type2, string path) {
     row.splitAt(";", 1) = type2 and
     row.splitAt(";", 2) = path
   )
+  or
+  Extensions::typeModel(type1, type2, path)
 }
 
 /** Holds if a type variable model exists for the given parameters. */
@@ -277,6 +286,8 @@ private predicate typeVariableModel(string name, string path) {
     row.splitAt(";", 0) = name and
     row.splitAt(";", 1) = path
   )
+  or
+  Extensions::typeVariableModel(name, path)
 }
 
 /**
diff --git a/python/ql/lib/semmle/python/frameworks/data/internal/ApiGraphModelsExtensions.qll b/python/ql/lib/semmle/python/frameworks/data/internal/ApiGraphModelsExtensions.qll
new file mode 100644
index 00000000000..11c3bb9657e
--- /dev/null
+++ b/python/ql/lib/semmle/python/frameworks/data/internal/ApiGraphModelsExtensions.qll
@@ -0,0 +1,36 @@
+/**
+ * Defines extensible predicates for contributing library models from data extensions.
+ */
+
+/**
+ * Holds if the value at `(type, path)` should be seen as a flow
+ * source of the given `kind`.
+ *
+ * The kind `remote` represents a general remote flow source.
+ */
+extensible predicate sourceModel(string type, string path, string kind);
+
+/**
+ * Holds if the value at `(type, path)` should be seen as a sink
+ * of the given `kind`.
+ */
+extensible predicate sinkModel(string type, string path, string kind);
+
+/**
+ * Holds if calls to `(type, path)`, the value referred to by `input`
+ * can flow to the value referred to by `output`.
+ *
+ * `kind` should be either `value` or `taint`, for value-preserving or taint-preserving steps,
+ * respectively.
+ */
+extensible predicate summaryModel(string type, string path, string input, string output, string kind);
+
+/**
+ * Holds if `(type2, path)` should be seen as an instance of `type1`.
+ */
+extensible predicate typeModel(string type1, string type2, string path);
+
+/**
+ * Holds if `path` can be substituted for a token `TypeVar[name]`.
+ */
+extensible predicate typeVariableModel(string name, string path);
diff --git a/python/ql/lib/semmle/python/frameworks/data/internal/model.yml b/python/ql/lib/semmle/python/frameworks/data/internal/model.yml
new file mode 100644
index 00000000000..46fdcfe96bf
--- /dev/null
+++ b/python/ql/lib/semmle/python/frameworks/data/internal/model.yml
@@ -0,0 +1,26 @@
+extensions:
+  # Contribute empty data sets to avoid errors about an undefined extensionals
+  - addsTo:
+      pack: codeql/python-all
+      extensible: sourceModel
+    data: []
+
+  - addsTo:
+      pack: codeql/python-all
+      extensible: sinkModel
+    data: []
+
+  - addsTo:
+      pack: codeql/python-all
+      extensible: summaryModel
+    data: []
+
+  - addsTo:
+      pack: codeql/python-all
+      extensible: typeModel
+    data: []
+
+  - addsTo:
+      pack: codeql/python-all
+      extensible: typeVariableModel
+    data: []
diff --git a/ruby/ql/lib/codeql/ruby/frameworks/data/internal/ApiGraphModels.qll b/ruby/ql/lib/codeql/ruby/frameworks/data/internal/ApiGraphModels.qll
index 0e744ba801a..1b7e8cb326a 100644
--- a/ruby/ql/lib/codeql/ruby/frameworks/data/internal/ApiGraphModels.qll
+++ b/ruby/ql/lib/codeql/ruby/frameworks/data/internal/ApiGraphModels.qll
@@ -72,6 +72,7 @@ private module API = Specific::API;
 private module DataFlow = Specific::DataFlow;
 
 private import Specific::AccessPathSyntax
+private import ApiGraphModelsExtensions as Extensions
 
 /** Module containing hooks for providing input data to be interpreted as a model. */
 module ModelInput {
@@ -236,6 +237,8 @@ predicate sourceModel(string type, string path, string kind) {
     row.splitAt(";", 1) = path and
     row.splitAt(";", 2) = kind
   )
+  or
+  Extensions::sourceModel(type, path, kind)
 }
 
 /** Holds if a sink model exists for the given parameters. */
@@ -246,6 +249,8 @@ private predicate sinkModel(string type, string path, string kind) {
     row.splitAt(";", 1) = path and
     row.splitAt(";", 2) = kind
   )
+  or
+  Extensions::sinkModel(type, path, kind)
 }
 
 /** Holds if a summary model `row` exists for the given parameters. */
@@ -258,6 +263,8 @@ private predicate summaryModel(string type, string path, string input, string ou
     row.splitAt(";", 3) = output and
     row.splitAt(";", 4) = kind
   )
+  or
+  Extensions::summaryModel(type, path, input, output, kind)
 }
 
 /** Holds if a type model exists for the given parameters. */
@@ -268,6 +275,8 @@ private predicate typeModel(string type1, string type2, string path) {
     row.splitAt(";", 1) = type2 and
     row.splitAt(";", 2) = path
   )
+  or
+  Extensions::typeModel(type1, type2, path)
 }
 
 /** Holds if a type variable model exists for the given parameters. */
@@ -277,6 +286,8 @@ private predicate typeVariableModel(string name, string path) {
     row.splitAt(";", 0) = name and
     row.splitAt(";", 1) = path
   )
+  or
+  Extensions::typeVariableModel(name, path)
 }
 
 /**
diff --git a/ruby/ql/lib/codeql/ruby/frameworks/data/internal/ApiGraphModelsExtensions.qll b/ruby/ql/lib/codeql/ruby/frameworks/data/internal/ApiGraphModelsExtensions.qll
new file mode 100644
index 00000000000..11c3bb9657e
--- /dev/null
+++ b/ruby/ql/lib/codeql/ruby/frameworks/data/internal/ApiGraphModelsExtensions.qll
@@ -0,0 +1,36 @@
+/**
+ * Defines extensible predicates for contributing library models from data extensions.
+ */
+
+/**
+ * Holds if the value at `(type, path)` should be seen as a flow
+ * source of the given `kind`.
+ *
+ * The kind `remote` represents a general remote flow source.
+ */
+extensible predicate sourceModel(string type, string path, string kind);
+
+/**
+ * Holds if the value at `(type, path)` should be seen as a sink
+ * of the given `kind`.
+ */
+extensible predicate sinkModel(string type, string path, string kind);
+
+/**
+ * Holds if calls to `(type, path)`, the value referred to by `input`
+ * can flow to the value referred to by `output`.
+ *
+ * `kind` should be either `value` or `taint`, for value-preserving or taint-preserving steps,
+ * respectively.
+ */
+extensible predicate summaryModel(string type, string path, string input, string output, string kind);
+
+/**
+ * Holds if `(type2, path)` should be seen as an instance of `type1`.
+ */
+extensible predicate typeModel(string type1, string type2, string path);
+
+/**
+ * Holds if `path` can be substituted for a token `TypeVar[name]`.
+ */
+extensible predicate typeVariableModel(string name, string path);
diff --git a/ruby/ql/lib/codeql/ruby/frameworks/data/internal/model.yml b/ruby/ql/lib/codeql/ruby/frameworks/data/internal/model.yml
new file mode 100644
index 00000000000..f69da6cc363
--- /dev/null
+++ b/ruby/ql/lib/codeql/ruby/frameworks/data/internal/model.yml
@@ -0,0 +1,26 @@
+extensions:
+  # Contribute empty data sets to avoid errors about an undefined extensionals
+  - addsTo:
+      pack: codeql/ruby-all
+      extensible: sourceModel
+    data: []
+
+  - addsTo:
+      pack: codeql/ruby-all
+      extensible: sinkModel
+    data: []
+
+  - addsTo:
+      pack: codeql/ruby-all
+      extensible: summaryModel
+    data: []
+
+  - addsTo:
+      pack: codeql/ruby-all
+      extensible: typeModel
+    data: []
+
+  - addsTo:
+      pack: codeql/ruby-all
+      extensible: typeVariableModel
+    data: []
diff --git a/ruby/ql/lib/qlpack.yml b/ruby/ql/lib/qlpack.yml
index e203b2c8f5d..ce6a37ca986 100644
--- a/ruby/ql/lib/qlpack.yml
+++ b/ruby/ql/lib/qlpack.yml
@@ -8,3 +8,6 @@ library: true
 dependencies:
   codeql/ssa: ${workspace}
   codeql/regex: ${workspace}
+  codeql/ssa: 0.0.1
+dataExtensions:
+  - codeql/ruby/frameworks/**/model.yml

From d8e566a50eeadb3f62c14888c17ef4c48767694e Mon Sep 17 00:00:00 2001
From: Asger F <asgerf@github.com>
Date: Mon, 5 Dec 2022 11:17:57 +0100
Subject: [PATCH 1111/1420] Add data-extension files

---
 .../javascript/frameworks/minimongo/model.yml |  80 ++
 .../javascript/frameworks/mongodb/model.yml   | 791 ++++++++++++++++++
 .../javascript/frameworks/mssql/model.yml     |  39 +
 .../javascript/frameworks/mysql/model.yml     |  70 ++
 .../semmle/javascript/frameworks/pg/model.yml | 108 +++
 .../javascript/frameworks/sequelize/model.yml | 282 +++++++
 .../javascript/frameworks/spanner/model.yml   | 189 +++++
 .../javascript/frameworks/sqlite3/model.yml   |  28 +
 8 files changed, 1587 insertions(+)
 create mode 100644 javascript/ql/lib/semmle/javascript/frameworks/minimongo/model.yml
 create mode 100644 javascript/ql/lib/semmle/javascript/frameworks/mongodb/model.yml
 create mode 100644 javascript/ql/lib/semmle/javascript/frameworks/mssql/model.yml
 create mode 100644 javascript/ql/lib/semmle/javascript/frameworks/mysql/model.yml
 create mode 100644 javascript/ql/lib/semmle/javascript/frameworks/pg/model.yml
 create mode 100644 javascript/ql/lib/semmle/javascript/frameworks/sequelize/model.yml
 create mode 100644 javascript/ql/lib/semmle/javascript/frameworks/spanner/model.yml
 create mode 100644 javascript/ql/lib/semmle/javascript/frameworks/sqlite3/model.yml

diff --git a/javascript/ql/lib/semmle/javascript/frameworks/minimongo/model.yml b/javascript/ql/lib/semmle/javascript/frameworks/minimongo/model.yml
new file mode 100644
index 00000000000..0c0d443fc3f
--- /dev/null
+++ b/javascript/ql/lib/semmle/javascript/frameworks/minimongo/model.yml
@@ -0,0 +1,80 @@
+extensions:
+  - addsTo: 
+      pack: codeql/javascript-all
+      extensible: typeModel
+    data:
+      - [minimongo.HybridCollection, minimongo.HybridCollectionStatic, Instance]
+      - [minimongo.HybridCollection, "minimongo/lib/HybridDb.HybridCollection", ""]
+      - [minimongo.HybridCollection, "minimongo/lib/HybridDb.default", "Member[collections].AnyMember"]
+      - [minimongo.HybridCollectionStatic, "minimongo/lib/HybridDb.HybridCollectionStatic", ""]
+      - [minimongo.HybridCollectionStatic, "minimongo/lib/HybridDb", "Member[HybridCollection]"]
+      - [minimongo.HybridCollectionStatic, minimongo, "Member[HybridCollection]"]
+      - [minimongo.MinimongoBaseCollection, minimongo.HybridCollection, ""]
+      - [minimongo.MinimongoBaseCollection, minimongo.MinimongoCollection, ""]
+      - [minimongo.MinimongoBaseCollection, minimongo.MinimongoDb, AnyMember]
+      - [minimongo.MinimongoBaseCollection, minimongo.MinimongoLocalCollection, ""]
+      - [minimongo.MinimongoBaseCollection, "minimongo/RemoteDb.Collection", ""]
+      - [minimongo.MinimongoBaseCollection, "minimongo/lib/types.MinimongoBaseCollection", ""]
+      - [minimongo.MinimongoCollection, minimongo.HybridCollection, "Member[remoteCol]"]
+      - [minimongo.MinimongoCollection, minimongo.MinimongoDb, "Member[collections].AnyMember"]
+      - [minimongo.MinimongoCollection, "minimongo/lib/LocalStorageDb.default", "Member[collections].AnyMember"]
+      - [minimongo.MinimongoCollection, "minimongo/lib/WebSQLDb.default", "Member[collections].AnyMember"]
+      - [minimongo.MinimongoCollection, "minimongo/lib/types.MinimongoCollection", ""]
+      - [minimongo.MinimongoDb, minimongo.MinimongoDb, "Member[remoteDb]"]
+      - [minimongo.MinimongoDb, minimongo.MinimongoLocalDb, ""]
+      - [minimongo.MinimongoDb, "minimongo/lib/HybridDb.default", ""]
+      - [minimongo.MinimongoDb, "minimongo/lib/HybridDb.default", "Member[remoteDb]"]
+      - [minimongo.MinimongoDb, "minimongo/lib/LocalStorageDb.default", ""]
+      - [minimongo.MinimongoDb, "minimongo/lib/MemoryDb.default", ""]
+      - [minimongo.MinimongoDb, "minimongo/lib/RemoteDb.default", ""]
+      - [minimongo.MinimongoDb, "minimongo/lib/ReplicatingDb.default", "Member[masterDb,replicaDb]"]
+      - [minimongo.MinimongoDb, "minimongo/lib/WebSQLDb.default", ""]
+      - [minimongo.MinimongoDb, "minimongo/lib/types.MinimongoDb", ""]
+      - [minimongo.MinimongoLocalCollection, minimongo.HybridCollection, "Member[localCol]"]
+      - [minimongo.MinimongoLocalCollection, minimongo.MinimongoCollection, ""]
+      - [minimongo.MinimongoLocalCollection, minimongo.MinimongoLocalDb, "Member[addCollection].Argument[2].Argument[0]"]
+      - [minimongo.MinimongoLocalCollection, minimongo.MinimongoLocalDb, "Member[collections].AnyMember"]
+      - [minimongo.MinimongoLocalCollection, "minimongo/IndexedDb.IndexedDbCollection", ""]
+      - [minimongo.MinimongoLocalCollection, "minimongo/MemoryDb.Collection", ""]
+      - [minimongo.MinimongoLocalCollection, "minimongo/ReplicatingDb.Collection", ""]
+      - [minimongo.MinimongoLocalCollection, "minimongo/ReplicatingDb.Collection", "Member[masterCol,replicaCol]"]
+      - [minimongo.MinimongoLocalCollection, "minimongo/lib/types.MinimongoLocalCollection", ""]
+      - [minimongo.MinimongoLocalDb, minimongo.MinimongoDb, "Member[localDb]"]
+      - [minimongo.MinimongoLocalDb, "minimongo/lib/HybridDb.default", "Member[localDb]"]
+      - [minimongo.MinimongoLocalDb, "minimongo/lib/IndexedDb.default", ""]
+      - [minimongo.MinimongoLocalDb, "minimongo/lib/ReplicatingDb.default", ""]
+      - [minimongo.MinimongoLocalDb, "minimongo/lib/types.MinimongoLocalDb", ""]
+      - ["minimongo/IndexedDb.IndexedDbCollection", "minimongo/IndexedDb.IndexedDbCollectionStatic", Instance]
+      - ["minimongo/IndexedDb.IndexedDbCollection", "minimongo/lib/IndexedDb.default", "Member[collections].AnyMember"]
+      - ["minimongo/MemoryDb.Collection", "minimongo/MemoryDb.CollectionStatic", Instance]
+      - ["minimongo/MemoryDb.Collection", "minimongo/lib/MemoryDb.default", "Member[collections].AnyMember"]
+      - ["minimongo/RemoteDb.Collection", "minimongo/RemoteDb.CollectionStatic", Instance]
+      - ["minimongo/RemoteDb.Collection", "minimongo/lib/RemoteDb.default", "Member[collections].AnyMember"]
+      - ["minimongo/ReplicatingDb.Collection", "minimongo/ReplicatingDb.CollectionStatic", Instance]
+      - ["minimongo/ReplicatingDb.Collection", "minimongo/lib/ReplicatingDb.default", "Member[collections].AnyMember"]
+      - ["minimongo/lib/HybridDb.default", "minimongo/lib/HybridDb.defaultStatic", Instance]
+      - ["minimongo/lib/HybridDb.defaultStatic", "minimongo/lib/HybridDb", "Member[default]"]
+      - ["minimongo/lib/HybridDb.defaultStatic", minimongo, "Member[HybridDb]"]
+      - ["minimongo/lib/IndexedDb.default", "minimongo/lib/IndexedDb.defaultStatic", Instance]
+      - ["minimongo/lib/IndexedDb.default", minimongo, "Member[utils].Member[autoselectLocalDb].ReturnValue"]
+      - ["minimongo/lib/IndexedDb.defaultStatic", "minimongo/lib/IndexedDb", "Member[default]"]
+      - ["minimongo/lib/IndexedDb.defaultStatic", minimongo, "Member[IndexedDb]"]
+      - ["minimongo/lib/LocalStorageDb.default", "minimongo/lib/LocalStorageDb.defaultStatic", Instance]
+      - ["minimongo/lib/LocalStorageDb.default", minimongo, "Member[utils].Member[autoselectLocalDb].ReturnValue"]
+      - ["minimongo/lib/LocalStorageDb.defaultStatic", "minimongo/lib/LocalStorageDb", "Member[default]"]
+      - ["minimongo/lib/LocalStorageDb.defaultStatic", minimongo, "Member[LocalStorageDb]"]
+      - ["minimongo/lib/MemoryDb.default", "minimongo/lib/MemoryDb.defaultStatic", Instance]
+      - ["minimongo/lib/MemoryDb.default", minimongo, "Member[utils].Member[autoselectLocalDb].ReturnValue"]
+      - ["minimongo/lib/MemoryDb.defaultStatic", "minimongo/lib/MemoryDb", "Member[default]"]
+      - ["minimongo/lib/MemoryDb.defaultStatic", minimongo, "Member[MemoryDb]"]
+      - ["minimongo/lib/RemoteDb.default", "minimongo/lib/RemoteDb.defaultStatic", Instance]
+      - ["minimongo/lib/RemoteDb.defaultStatic", "minimongo/lib/RemoteDb", "Member[default]"]
+      - ["minimongo/lib/RemoteDb.defaultStatic", minimongo, "Member[RemoteDb]"]
+      - ["minimongo/lib/ReplicatingDb.default", "minimongo/lib/ReplicatingDb.defaultStatic", Instance]
+      - ["minimongo/lib/ReplicatingDb.defaultStatic", "minimongo/lib/ReplicatingDb", "Member[default]"]
+      - ["minimongo/lib/ReplicatingDb.defaultStatic", minimongo, "Member[ReplicatingDb]"]
+      - ["minimongo/lib/WebSQLDb.default", "minimongo/lib/WebSQLDb.defaultStatic", Instance]
+      - ["minimongo/lib/WebSQLDb.default", minimongo, "Member[utils].Member[autoselectLocalDb].ReturnValue"]
+      - ["minimongo/lib/WebSQLDb.defaultStatic", "minimongo/lib/WebSQLDb", "Member[default]"]
+      - ["minimongo/lib/WebSQLDb.defaultStatic", minimongo, "Member[WebSQLDb]"]
+      - [mongodb.Collection, minimongo.MinimongoBaseCollection, ""]
diff --git a/javascript/ql/lib/semmle/javascript/frameworks/mongodb/model.yml b/javascript/ql/lib/semmle/javascript/frameworks/mongodb/model.yml
new file mode 100644
index 00000000000..e2f3f20ee29
--- /dev/null
+++ b/javascript/ql/lib/semmle/javascript/frameworks/mongodb/model.yml
@@ -0,0 +1,791 @@
+extensions:
+  - addsTo: 
+      pack: codeql/javascript-all
+      extensible: sinkModel
+    data:
+      - [mongodb.Collection, "Member[aggregate,count,countDocuments,deleteMany,deleteOne,find,findOne,findOneAndDelete,findOneAndReplace,remove,replaceOne,watch].Argument[0]", mongodb.sink]
+      - [mongodb.Collection, "Member[distinct].Argument[1]", mongodb.sink]
+      - [mongodb.Collection, "Member[findOneAndUpdate,update,updateMany,updateOne].Argument[0,1]", mongodb.sink]
+      - [mongodb.Db, "Member[aggregate,watch].Argument[0]", mongodb.sink]
+      - [mongodb.DeleteManyModel, "Member[filter]", mongodb.sink]
+      - [mongodb.DeleteOneModel, "Member[filter]", mongodb.sink]
+      - [mongodb.MongoClient, "Member[watch].Argument[0]", mongodb.sink]
+      - [mongodb.UpdateManyModel, "Member[filter,update]", mongodb.sink]
+      - [mongodb.UpdateOneModel, "Member[filter,update]", mongodb.sink]
+      - [mongoose.CollectionBase, "Member[findAndModify].Argument[0]", mongodb.sink]
+      - [mongoose.Connection, "Member[watch].Argument[0]", mongodb.sink]
+      - [mongoose.Document, "Member[update,updateOne].Argument[0]", mongodb.sink]
+      - [mongoose.Model, "Member[$where,aggregate,exists,find,findById,findByIdAndDelete,findByIdAndRemove,findOne,findOneAndDelete,findOneAndRemove,findOneAndReplace,geoSearch,remove,replaceOne,watch].Argument[0]", mongodb.sink]
+      - [mongoose.Model, "Member[count,where].WithArity[1,2].Argument[0]", mongodb.sink]
+      - [mongoose.Model, "Member[countDocuments].WithArity[1,2,3].Argument[0]", mongodb.sink]
+      - [mongoose.Model, "Member[deleteMany,deleteOne].WithArity[0,1,2,3].Argument[0]", mongodb.sink]
+      - [mongoose.Model, "Member[distinct,where].Argument[1]", mongodb.sink]
+      - [mongoose.Model, "Member[findByIdAndUpdate,findOneAndUpdate,update,updateMany,updateOne].Argument[0,1]", mongodb.sink]
+      - [mongoose.Model, "Member[find].WithArity[1,2,3,4].Argument[0]", mongodb.sink]
+      - [mongoose.Query, "Member[$where,and,find,findByIdAndDelete,findOne,findOneAndDelete,findOneAndRemove,nor,or,remove,replaceOne,setUpdate].Argument[0]", mongodb.sink]
+      - [mongoose.Query, "Member[count,where].WithArity[1,2].Argument[0]", mongodb.sink]
+      - [mongoose.Query, "Member[deleteMany,deleteOne].WithArity[0,1,2,3].Argument[0]", mongodb.sink]
+      - [mongoose.Query, "Member[distinct,where].Argument[1]", mongodb.sink]
+      - [mongoose.Query, "Member[findByIdAndUpdate,findOneAndUpdate,update,updateMany,updateOne].Argument[0,1]", mongodb.sink]
+      - [mongoose.Query, "Member[find].WithArity[1,2,3,4].Argument[0]", mongodb.sink]
+      - [mongoose.QueryStatic, "Argument[2]", mongodb.sink]
+
+  - addsTo: 
+      pack: codeql/javascript-all
+      extensible: typeModel
+    data:
+      - [mongodb.AbstractCursor, mongodb.FindCursor, ""]
+      - [mongodb.AbstractCursor, mongodb.ListCollectionsCursor, ""]
+      - [mongodb.AbstractCursor, mongodb.ListIndexesCursor, ""]
+      - [mongodb.AbstractCursorOptions, mongodb.AggregationCursorOptions, ""]
+      - [mongodb.AbstractCursorOptions, "mongodb/mongodb.AbstractCursorOptions", ""]
+      - [mongodb.AbstractCursorOptions, mongoose.mongodb.AbstractCursorOptions, ""]
+      - [mongodb.AddUserOptions, mongodb.Admin, "Member[addUser].Argument[1,2]"]
+      - [mongodb.AddUserOptions, mongodb.Db, "Member[addUser].Argument[1,2]"]
+      - [mongodb.AddUserOptions, "mongodb/mongodb.AddUserOptions", ""]
+      - [mongodb.AddUserOptions, mongoose.mongodb.AddUserOptions, ""]
+      - [mongodb.Admin, mongodb.AdminStatic, Instance]
+      - [mongodb.Admin, mongodb.Db, "Member[admin].ReturnValue"]
+      - [mongodb.Admin, "mongodb/mongodb.Admin", ""]
+      - [mongodb.Admin, mongoose.mongodb.Admin, ""]
+      - [mongodb.AdminStatic, "mongodb/mongodb.AdminStatic", ""]
+      - [mongodb.AdminStatic, mongodb, "Member[Admin]"]
+      - [mongodb.AdminStatic, mongoose.mongodb.AdminStatic, ""]
+      - [mongodb.AggregateOptions, mongodb.AggregationCursorOptions, ""]
+      - [mongodb.AggregateOptions, mongodb.ChangeStreamOptions, ""]
+      - [mongodb.AggregateOptions, mongodb.Collection, "Member[aggregate].Argument[1]"]
+      - [mongodb.AggregateOptions, mongodb.CountDocumentsOptions, ""]
+      - [mongodb.AggregateOptions, mongodb.Db, "Member[aggregate].Argument[1]"]
+      - [mongodb.AggregateOptions, "mongodb/mongodb.AggregateOptions", ""]
+      - [mongodb.AggregateOptions, mongoose.mongodb.AggregateOptions, ""]
+      - [mongodb.AggregationCursorOptions, "mongodb/mongodb.AggregationCursorOptions", ""]
+      - [mongodb.AggregationCursorOptions, mongoose.mongodb.AggregationCursorOptions, ""]
+      - [mongodb.AnyBulkWriteOperation, mongodb.BulkOperationBase, "Member[raw].Argument[0]"]
+      - [mongodb.AnyBulkWriteOperation, mongodb.Collection, "Member[bulkWrite].Argument[0].ArrayElement"]
+      - [mongodb.AnyBulkWriteOperation, "mongodb/mongodb.AnyBulkWriteOperation", ""]
+      - [mongodb.AnyBulkWriteOperation, mongoose.mongodb.AnyBulkWriteOperation, ""]
+      - [mongodb.Auth, mongodb.MongoClientOptions, "Member[auth]"]
+      - [mongodb.Auth, "mongodb/mongodb.Auth", ""]
+      - [mongodb.Auth, mongoose.mongodb.Auth, ""]
+      - [mongodb.AutoEncrypter, mongodb.AutoEncrypter, Instance]
+      - [mongodb.AutoEncrypter, mongodb.ConnectionOptions, "Member[autoEncrypter]"]
+      - [mongodb.AutoEncrypter, mongodb.MongoClient, "Member[autoEncrypter]"]
+      - [mongodb.AutoEncrypter, mongodb.MongoOptions, "Member[autoEncrypter]"]
+      - [mongodb.AutoEncrypter, "mongodb/mongodb.AutoEncrypter", ""]
+      - [mongodb.AutoEncrypter, mongoose.mongodb.AutoEncrypter, ""]
+      - [mongodb.AutoEncryptionOptions, mongodb.AutoEncrypter, "Argument[1]"]
+      - [mongodb.AutoEncryptionOptions, mongodb.MongoClientOptions, "Member[autoEncryption]"]
+      - [mongodb.AutoEncryptionOptions, "mongodb/mongodb.AutoEncryptionOptions", ""]
+      - [mongodb.AutoEncryptionOptions, mongoose.mongodb.AutoEncryptionOptions, ""]
+      - [mongodb.BulkOperationBase, mongodb.BulkOperationBase, "Member[addToOperationsList,insert,raw].ReturnValue"]
+      - [mongodb.BulkOperationBase, mongodb.BulkOperationBaseStatic, Instance]
+      - [mongodb.BulkOperationBase, mongodb.FindOperators, "Member[bulkOperation]"]
+      - [mongodb.BulkOperationBase, mongodb.FindOperators, "Member[delete,deleteOne,replaceOne,update,updateOne].ReturnValue"]
+      - [mongodb.BulkOperationBase, mongodb.OrderedBulkOperation, ""]
+      - [mongodb.BulkOperationBase, mongodb.UnorderedBulkOperation, ""]
+      - [mongodb.BulkOperationBase, "mongodb/mongodb.BulkOperationBase", ""]
+      - [mongodb.BulkOperationBase, mongoose.mongodb.BulkOperationBase, ""]
+      - [mongodb.BulkOperationBaseStatic, "mongodb/mongodb.BulkOperationBaseStatic", ""]
+      - [mongodb.BulkOperationBaseStatic, mongodb, "Member[BulkOperationBase]"]
+      - [mongodb.BulkOperationBaseStatic, mongoose.mongodb.BulkOperationBaseStatic, ""]
+      - [mongodb.BulkWriteOptions, mongodb.BulkOperationBase, "Member[execute].WithArity[0,1,2].Argument[0]"]
+      - [mongodb.BulkWriteOptions, mongodb.Collection, "Member[bulkWrite,insert,insertMany].Argument[1]"]
+      - [mongodb.BulkWriteOptions, mongodb.Collection, "Member[initializeOrderedBulkOp,initializeUnorderedBulkOp].Argument[0]"]
+      - [mongodb.BulkWriteOptions, mongodb.OrderedBulkOperationStatic, "Argument[1]"]
+      - [mongodb.BulkWriteOptions, mongodb.UnorderedBulkOperationStatic, "Argument[1]"]
+      - [mongodb.BulkWriteOptions, "mongodb/mongodb.BulkWriteOptions", ""]
+      - [mongodb.BulkWriteOptions, mongoose.mongodb.BulkWriteOptions, ""]
+      - [mongodb.ChangeStream, mongodb.ChangeStreamStatic, Instance]
+      - [mongodb.ChangeStream, mongodb.Collection, "Member[watch].ReturnValue"]
+      - [mongodb.ChangeStream, mongodb.Db, "Member[watch].ReturnValue"]
+      - [mongodb.ChangeStream, mongodb.MongoClient, "Member[watch].ReturnValue"]
+      - [mongodb.ChangeStream, "mongodb/mongodb.ChangeStream", ""]
+      - [mongodb.ChangeStream, mongoose.mongodb.ChangeStream, ""]
+      - [mongodb.ChangeStreamOptions, mongodb.ChangeStream, "Member[options]"]
+      - [mongodb.ChangeStreamOptions, mongodb.Collection, "Member[watch].Argument[1]"]
+      - [mongodb.ChangeStreamOptions, mongodb.Db, "Member[watch].Argument[1]"]
+      - [mongodb.ChangeStreamOptions, mongodb.MongoClient, "Member[watch].Argument[1]"]
+      - [mongodb.ChangeStreamOptions, "mongodb/mongodb.ChangeStreamOptions", ""]
+      - [mongodb.ChangeStreamOptions, mongoose.mongodb.ChangeStreamOptions, ""]
+      - [mongodb.ChangeStreamStatic, "mongodb/mongodb.ChangeStreamStatic", ""]
+      - [mongodb.ChangeStreamStatic, mongodb, "Member[ChangeStream]"]
+      - [mongodb.ChangeStreamStatic, mongoose.mongodb.ChangeStreamStatic, ""]
+      - [mongodb.ClientSession, mongodb.AbstractCursorOptions, "Member[session]"]
+      - [mongodb.ClientSession, mongodb.ClientSession, "Member[equals].Argument[0]"]
+      - [mongodb.ClientSession, mongodb.ClientSessionEvents, "Member[ended].Argument[0]"]
+      - [mongodb.ClientSession, mongodb.ClientSessionStatic, Instance]
+      - [mongodb.ClientSession, mongodb.IndexInformationOptions, "Member[session]"]
+      - [mongodb.ClientSession, mongodb.MongoClient, "Member[startSession].ReturnValue"]
+      - [mongodb.ClientSession, mongodb.OperationOptions, "Member[session]"]
+      - [mongodb.ClientSession, mongodb.ReadPreferenceFromOptions, "Member[session]"]
+      - [mongodb.ClientSession, mongodb.SelectServerOptions, "Member[session]"]
+      - [mongodb.ClientSession, mongodb.WithSessionCallback, "Argument[0]"]
+      - [mongodb.ClientSession, mongodb.WithTransactionCallback, "Argument[0]"]
+      - [mongodb.ClientSession, "mongodb/mongodb.ClientSession", ""]
+      - [mongodb.ClientSession, mongoose.mongodb.ClientSession, ""]
+      - [mongodb.ClientSessionEvents, "mongodb/mongodb.ClientSessionEvents", ""]
+      - [mongodb.ClientSessionEvents, mongoose.mongodb.ClientSessionEvents, ""]
+      - [mongodb.ClientSessionOptions, mongodb.MongoClient, "Member[startSession].Argument[0]"]
+      - [mongodb.ClientSessionOptions, mongodb.MongoClient, "Member[withSession].WithArity[2].Argument[0]"]
+      - [mongodb.ClientSessionOptions, "mongodb/mongodb.ClientSessionOptions", ""]
+      - [mongodb.ClientSessionOptions, mongoose.mongodb.ClientSessionOptions, ""]
+      - [mongodb.ClientSessionStatic, "mongodb/mongodb.ClientSessionStatic", ""]
+      - [mongodb.ClientSessionStatic, mongodb, "Member[ClientSession]"]
+      - [mongodb.ClientSessionStatic, mongoose.mongodb.ClientSessionStatic, ""]
+      - [mongodb.CollStatsOptions, mongodb.Collection, "Member[stats].Argument[0]"]
+      - [mongodb.CollStatsOptions, "mongodb/mongodb.CollStatsOptions", ""]
+      - [mongodb.CollStatsOptions, mongoose.mongodb.CollStatsOptions, ""]
+      - [mongodb.Collection, mongodb.ChangeStream, "Member[parent]"]
+      - [mongodb.Collection, mongodb.Collection, "Member[rename].Argument[1,2].TypeVar[mongodb.Callback.0]"]
+      - [mongodb.Collection, mongodb.Collection, "Member[rename].WithArity[1,2].ReturnValue.Awaited"]
+      - [mongodb.Collection, mongodb.CollectionStatic, Instance]
+      - [mongodb.Collection, mongodb.Db, "Member[collection].ReturnValue"]
+      - [mongodb.Collection, mongodb.Db, "Member[collections].Argument[0,1].TypeVar[mongodb.Callback.0].ArrayElement"]
+      - [mongodb.Collection, mongodb.Db, "Member[collections].WithArity[0,1].ReturnValue.Awaited.ArrayElement"]
+      - [mongodb.Collection, mongodb.Db, "Member[createCollection].Argument[2].TypeVar[mongodb.Callback.0]"]
+      - [mongodb.Collection, mongodb.Db, "Member[createCollection].WithArity[1,2].ReturnValue.Awaited"]
+      - [mongodb.Collection, mongodb.Db, "Member[createCollection].WithArity[2].Argument[1].TypeVar[mongodb.Callback.0]"]
+      - [mongodb.Collection, mongodb.Db, "Member[renameCollection].Argument[2,3].TypeVar[mongodb.Callback.0]"]
+      - [mongodb.Collection, mongodb.Db, "Member[renameCollection].WithArity[2,3].ReturnValue.Awaited"]
+      - [mongodb.Collection, mongodb.GridFSBucketWriteStream, "Member[chunks,files]"]
+      - [mongodb.Collection, mongodb.ListIndexesCursor, "Member[parent]"]
+      - [mongodb.Collection, mongodb.ListIndexesCursorStatic, "Argument[0]"]
+      - [mongodb.Collection, mongodb.OrderedBulkOperationStatic, "Argument[0]"]
+      - [mongodb.Collection, mongodb.UnorderedBulkOperationStatic, "Argument[0]"]
+      - [mongodb.Collection, "mongodb/mongodb.Collection", ""]
+      - [mongodb.Collection, mongoose.mongodb.Collection, ""]
+      - [mongodb.CollectionStatic, "mongodb/mongodb.CollectionStatic", ""]
+      - [mongodb.CollectionStatic, mongodb, "Member[Collection]"]
+      - [mongodb.CollectionStatic, mongoose.mongodb.CollectionStatic, ""]
+      - [mongodb.CommandOperationOptions, mongodb.AddUserOptions, ""]
+      - [mongodb.CommandOperationOptions, mongodb.Admin, "Member[buildInfo,ping,replSetGetStatus,serverInfo,serverStatus].Argument[0]"]
+      - [mongodb.CommandOperationOptions, mongodb.AggregateOptions, ""]
+      - [mongodb.CommandOperationOptions, mongodb.BulkWriteOptions, ""]
+      - [mongodb.CommandOperationOptions, mongodb.CollStatsOptions, ""]
+      - [mongodb.CommandOperationOptions, mongodb.CountOptions, ""]
+      - [mongodb.CommandOperationOptions, mongodb.CreateCollectionOptions, ""]
+      - [mongodb.CommandOperationOptions, mongodb.CreateIndexesOptions, ""]
+      - [mongodb.CommandOperationOptions, mongodb.DbStatsOptions, ""]
+      - [mongodb.CommandOperationOptions, mongodb.DeleteOptions, ""]
+      - [mongodb.CommandOperationOptions, mongodb.DistinctOptions, ""]
+      - [mongodb.CommandOperationOptions, mongodb.DropCollectionOptions, ""]
+      - [mongodb.CommandOperationOptions, mongodb.DropDatabaseOptions, ""]
+      - [mongodb.CommandOperationOptions, mongodb.DropIndexesOptions, ""]
+      - [mongodb.CommandOperationOptions, mongodb.EstimatedDocumentCountOptions, ""]
+      - [mongodb.CommandOperationOptions, mongodb.EvalOptions, ""]
+      - [mongodb.CommandOperationOptions, mongodb.FindOneAndDeleteOptions, ""]
+      - [mongodb.CommandOperationOptions, mongodb.FindOneAndReplaceOptions, ""]
+      - [mongodb.CommandOperationOptions, mongodb.FindOneAndUpdateOptions, ""]
+      - [mongodb.CommandOperationOptions, mongodb.FindOptions, ""]
+      - [mongodb.CommandOperationOptions, mongodb.InsertOneOptions, ""]
+      - [mongodb.CommandOperationOptions, mongodb.ListCollectionsOptions, ""]
+      - [mongodb.CommandOperationOptions, mongodb.ListDatabasesOptions, ""]
+      - [mongodb.CommandOperationOptions, mongodb.ListIndexesOptions, ""]
+      - [mongodb.CommandOperationOptions, mongodb.MapReduceOptions, ""]
+      - [mongodb.CommandOperationOptions, mongodb.ProfilingLevelOptions, ""]
+      - [mongodb.CommandOperationOptions, mongodb.RemoveUserOptions, ""]
+      - [mongodb.CommandOperationOptions, mongodb.RenameOptions, ""]
+      - [mongodb.CommandOperationOptions, mongodb.ReplaceOptions, ""]
+      - [mongodb.CommandOperationOptions, mongodb.RunCommandOptions, ""]
+      - [mongodb.CommandOperationOptions, mongodb.SetProfilingLevelOptions, ""]
+      - [mongodb.CommandOperationOptions, mongodb.TransactionOptions, ""]
+      - [mongodb.CommandOperationOptions, mongodb.UpdateOptions, ""]
+      - [mongodb.CommandOperationOptions, mongodb.ValidateCollectionOptions, ""]
+      - [mongodb.CommandOperationOptions, "mongodb/mongodb.CommandOperationOptions", ""]
+      - [mongodb.CommandOperationOptions, mongoose.mongodb.CommandOperationOptions, ""]
+      - [mongodb.ConnectionOptions, "mongodb/mongodb.ConnectionOptions", ""]
+      - [mongodb.ConnectionOptions, mongoose.mongodb.ConnectionOptions, ""]
+      - [mongodb.CountDocumentsOptions, mongodb.Collection, "Member[countDocuments].Argument[1]"]
+      - [mongodb.CountDocumentsOptions, "mongodb/mongodb.CountDocumentsOptions", ""]
+      - [mongodb.CountDocumentsOptions, mongoose.mongodb.CountDocumentsOptions, ""]
+      - [mongodb.CountOptions, mongodb.Collection, "Member[count].Argument[1]"]
+      - [mongodb.CountOptions, mongodb.FindCursor, "Member[count].Argument[0]"]
+      - [mongodb.CountOptions, "mongodb/mongodb.CountOptions", ""]
+      - [mongodb.CountOptions, mongoose.mongodb.CountOptions, ""]
+      - [mongodb.CreateCollectionOptions, mongodb.Db, "Member[createCollection].WithArity[1,2,3].Argument[1]"]
+      - [mongodb.CreateCollectionOptions, "mongodb/mongodb.CreateCollectionOptions", ""]
+      - [mongodb.CreateCollectionOptions, mongoose.mongodb.CreateCollectionOptions, ""]
+      - [mongodb.CreateIndexesOptions, mongodb.Collection, "Member[createIndex,createIndexes].Argument[1]"]
+      - [mongodb.CreateIndexesOptions, mongodb.Db, "Member[createIndex].Argument[2]"]
+      - [mongodb.CreateIndexesOptions, "mongodb/mongodb.CreateIndexesOptions", ""]
+      - [mongodb.CreateIndexesOptions, mongoose.mongodb.CreateIndexesOptions, ""]
+      - [mongodb.Db, mongodb.ChangeStream, "Member[parent]"]
+      - [mongodb.Db, mongodb.DbStatic, Instance]
+      - [mongodb.Db, mongodb.GridFSBucketStatic, "Argument[0]"]
+      - [mongodb.Db, mongodb.ListCollectionsCursor, "Member[parent]"]
+      - [mongodb.Db, mongodb.ListCollectionsCursorStatic, "Argument[0]"]
+      - [mongodb.Db, mongodb.MongoClient, "Member[db].ReturnValue"]
+      - [mongodb.Db, "mongodb/mongodb.Db", ""]
+      - [mongodb.Db, mongoose.mongodb.Db, ""]
+      - [mongodb.DbStatic, "mongodb/mongodb.DbStatic", ""]
+      - [mongodb.DbStatic, mongodb, "Member[Db]"]
+      - [mongodb.DbStatic, mongoose.mongodb.DbStatic, ""]
+      - [mongodb.DbStatsOptions, mongodb.Db, "Member[stats].Argument[0]"]
+      - [mongodb.DbStatsOptions, "mongodb/mongodb.DbStatsOptions", ""]
+      - [mongodb.DbStatsOptions, mongoose.mongodb.DbStatsOptions, ""]
+      - [mongodb.DeleteManyModel, mongodb.AnyBulkWriteOperation, "Member[deleteMany]"]
+      - [mongodb.DeleteManyModel, "mongodb/mongodb.DeleteManyModel", ""]
+      - [mongodb.DeleteManyModel, mongoose.mongodb.DeleteManyModel, ""]
+      - [mongodb.DeleteOneModel, mongodb.AnyBulkWriteOperation, "Member[deleteOne]"]
+      - [mongodb.DeleteOneModel, "mongodb/mongodb.DeleteOneModel", ""]
+      - [mongodb.DeleteOneModel, mongoose.mongodb.DeleteOneModel, ""]
+      - [mongodb.DeleteOptions, mongodb.Collection, "Member[deleteMany,deleteOne,remove].Argument[1]"]
+      - [mongodb.DeleteOptions, "mongodb/mongodb.DeleteOptions", ""]
+      - [mongodb.DeleteOptions, mongoose.mongodb.DeleteOptions, ""]
+      - [mongodb.DistinctOptions, mongodb.Collection, "Member[distinct].Argument[2]"]
+      - [mongodb.DistinctOptions, "mongodb/mongodb.DistinctOptions", ""]
+      - [mongodb.DistinctOptions, mongoose.mongodb.DistinctOptions, ""]
+      - [mongodb.DropCollectionOptions, mongodb.Collection, "Member[drop].Argument[0]"]
+      - [mongodb.DropCollectionOptions, mongodb.Db, "Member[dropCollection].Argument[1]"]
+      - [mongodb.DropCollectionOptions, "mongodb/mongodb.DropCollectionOptions", ""]
+      - [mongodb.DropCollectionOptions, mongoose.mongodb.DropCollectionOptions, ""]
+      - [mongodb.DropDatabaseOptions, mongodb.Db, "Member[dropDatabase].Argument[0]"]
+      - [mongodb.DropDatabaseOptions, "mongodb/mongodb.DropDatabaseOptions", ""]
+      - [mongodb.DropDatabaseOptions, mongoose.mongodb.DropDatabaseOptions, ""]
+      - [mongodb.DropIndexesOptions, mongodb.Collection, "Member[dropIndex].Argument[1]"]
+      - [mongodb.DropIndexesOptions, mongodb.Collection, "Member[dropIndexes].Argument[0]"]
+      - [mongodb.DropIndexesOptions, "mongodb/mongodb.DropIndexesOptions", ""]
+      - [mongodb.DropIndexesOptions, mongoose.mongodb.DropIndexesOptions, ""]
+      - [mongodb.EstimatedDocumentCountOptions, mongodb.Collection, "Member[estimatedDocumentCount].Argument[0]"]
+      - [mongodb.EstimatedDocumentCountOptions, "mongodb/mongodb.EstimatedDocumentCountOptions", ""]
+      - [mongodb.EstimatedDocumentCountOptions, mongoose.mongodb.EstimatedDocumentCountOptions, ""]
+      - [mongodb.EvalOptions, "mongodb/mongodb.EvalOptions", ""]
+      - [mongodb.EvalOptions, mongoose.mongodb.EvalOptions, ""]
+      - [mongodb.FindCursor, mongodb.Collection, "Member[find].WithArity[0,1,2].ReturnValue"]
+      - [mongodb.FindCursor, mongodb.FindCursor, "Member[addQueryModifier,allowDiskUse,clone,collation,comment,filter,hint,limit,map,max,maxAwaitTimeMS,maxTimeMS,min,project,returnKey,showRecordId,skip,sort].ReturnValue"]
+      - [mongodb.FindCursor, mongodb.FindCursorStatic, Instance]
+      - [mongodb.FindCursor, mongodb.GridFSBucket, "Member[find].ReturnValue"]
+      - [mongodb.FindCursor, "mongodb/mongodb.FindCursor", ""]
+      - [mongodb.FindCursor, mongoose.mongodb.FindCursor, ""]
+      - [mongodb.FindCursorStatic, "mongodb/mongodb.FindCursorStatic", ""]
+      - [mongodb.FindCursorStatic, mongodb, "Member[FindCursor]"]
+      - [mongodb.FindCursorStatic, mongoose.mongodb.FindCursorStatic, ""]
+      - [mongodb.FindOneAndDeleteOptions, mongodb.Collection, "Member[findOneAndDelete].Argument[1]"]
+      - [mongodb.FindOneAndDeleteOptions, "mongodb/mongodb.FindOneAndDeleteOptions", ""]
+      - [mongodb.FindOneAndDeleteOptions, mongoose.mongodb.FindOneAndDeleteOptions, ""]
+      - [mongodb.FindOneAndReplaceOptions, mongodb.Collection, "Member[findOneAndReplace].Argument[2]"]
+      - [mongodb.FindOneAndReplaceOptions, "mongodb/mongodb.FindOneAndReplaceOptions", ""]
+      - [mongodb.FindOneAndReplaceOptions, mongoose.mongodb.FindOneAndReplaceOptions, ""]
+      - [mongodb.FindOneAndUpdateOptions, mongodb.Collection, "Member[findOneAndUpdate].Argument[2]"]
+      - [mongodb.FindOneAndUpdateOptions, "mongodb/mongodb.FindOneAndUpdateOptions", ""]
+      - [mongodb.FindOneAndUpdateOptions, mongoose.mongodb.FindOneAndUpdateOptions, ""]
+      - [mongodb.FindOperators, mongodb.BulkOperationBase, "Member[find].ReturnValue"]
+      - [mongodb.FindOperators, mongodb.FindOperators, "Member[arrayFilters,collation,upsert].ReturnValue"]
+      - [mongodb.FindOperators, mongodb.FindOperatorsStatic, Instance]
+      - [mongodb.FindOperators, "mongodb/mongodb.FindOperators", ""]
+      - [mongodb.FindOperators, mongoose.mongodb.FindOperators, ""]
+      - [mongodb.FindOperatorsStatic, "mongodb/mongodb.FindOperatorsStatic", ""]
+      - [mongodb.FindOperatorsStatic, mongodb, "Member[FindOperators]"]
+      - [mongodb.FindOperatorsStatic, mongoose.mongodb.FindOperatorsStatic, ""]
+      - [mongodb.FindOptions, mongodb.Collection, "Member[find,findOne].Argument[1]"]
+      - [mongodb.FindOptions, mongodb.GridFSBucket, "Member[find].Argument[1]"]
+      - [mongodb.FindOptions, "mongodb/mongodb.FindOptions", ""]
+      - [mongodb.FindOptions, mongoose.mongodb.FindOptions, ""]
+      - [mongodb.GridFSBucket, mongodb.GridFSBucketStatic, Instance]
+      - [mongodb.GridFSBucket, mongodb.GridFSBucketWriteStream, "Member[bucket]"]
+      - [mongodb.GridFSBucket, "mongodb/mongodb.GridFSBucket", ""]
+      - [mongodb.GridFSBucket, mongoose.mongodb.GridFSBucket, ""]
+      - [mongodb.GridFSBucketStatic, "mongodb/mongodb.GridFSBucketStatic", ""]
+      - [mongodb.GridFSBucketStatic, mongodb, "Member[GridFSBucket]"]
+      - [mongodb.GridFSBucketStatic, mongoose.mongodb.GridFSBucketStatic, ""]
+      - [mongodb.GridFSBucketWriteStream, mongodb.GridFSBucket, "Member[openUploadStream,openUploadStreamWithId].ReturnValue"]
+      - [mongodb.GridFSBucketWriteStream, mongodb.GridFSBucketWriteStream, "Member[end].ReturnValue"]
+      - [mongodb.GridFSBucketWriteStream, mongodb.GridFSBucketWriteStreamStatic, Instance]
+      - [mongodb.GridFSBucketWriteStream, "mongodb/mongodb.GridFSBucketWriteStream", ""]
+      - [mongodb.GridFSBucketWriteStream, mongoose.mongodb.GridFSBucketWriteStream, ""]
+      - [mongodb.GridFSBucketWriteStreamStatic, "mongodb/mongodb.GridFSBucketWriteStreamStatic", ""]
+      - [mongodb.GridFSBucketWriteStreamStatic, mongodb, "Member[GridFSBucketWriteStream]"]
+      - [mongodb.GridFSBucketWriteStreamStatic, mongoose.mongodb.GridFSBucketWriteStreamStatic, ""]
+      - [mongodb.IndexInformationOptions, mongodb.Collection, "Member[indexExists].Argument[1]"]
+      - [mongodb.IndexInformationOptions, mongodb.Collection, "Member[indexInformation,indexes].Argument[0]"]
+      - [mongodb.IndexInformationOptions, mongodb.Db, "Member[indexInformation].Argument[1]"]
+      - [mongodb.IndexInformationOptions, "mongodb/mongodb.IndexInformationOptions", ""]
+      - [mongodb.IndexInformationOptions, mongoose.mongodb.IndexInformationOptions, ""]
+      - [mongodb.InsertOneOptions, mongodb.Collection, "Member[insertOne].Argument[1]"]
+      - [mongodb.InsertOneOptions, "mongodb/mongodb.InsertOneOptions", ""]
+      - [mongodb.InsertOneOptions, mongoose.mongodb.InsertOneOptions, ""]
+      - [mongodb.ListCollectionsCursor, mongodb.Db, "Member[listCollections].WithArity[0,1,2].ReturnValue"]
+      - [mongodb.ListCollectionsCursor, mongodb.ListCollectionsCursor, "Member[clone].ReturnValue"]
+      - [mongodb.ListCollectionsCursor, mongodb.ListCollectionsCursorStatic, Instance]
+      - [mongodb.ListCollectionsCursor, "mongodb/mongodb.ListCollectionsCursor", ""]
+      - [mongodb.ListCollectionsCursor, mongoose.mongodb.ListCollectionsCursor, ""]
+      - [mongodb.ListCollectionsCursorStatic, "mongodb/mongodb.ListCollectionsCursorStatic", ""]
+      - [mongodb.ListCollectionsCursorStatic, mongodb, "Member[ListCollectionsCursor]"]
+      - [mongodb.ListCollectionsCursorStatic, mongoose.mongodb.ListCollectionsCursorStatic, ""]
+      - [mongodb.ListCollectionsOptions, mongodb.Db, "Member[collections].Argument[0]"]
+      - [mongodb.ListCollectionsOptions, mongodb.Db, "Member[listCollections].WithArity[0,1,2].Argument[1]"]
+      - [mongodb.ListCollectionsOptions, mongodb.ListCollectionsCursor, "Member[options]"]
+      - [mongodb.ListCollectionsOptions, mongodb.ListCollectionsCursorStatic, "Argument[2]"]
+      - [mongodb.ListCollectionsOptions, "mongodb/mongodb.ListCollectionsOptions", ""]
+      - [mongodb.ListCollectionsOptions, mongoose.mongodb.ListCollectionsOptions, ""]
+      - [mongodb.ListDatabasesOptions, mongodb.Admin, "Member[listDatabases].Argument[0]"]
+      - [mongodb.ListDatabasesOptions, "mongodb/mongodb.ListDatabasesOptions", ""]
+      - [mongodb.ListDatabasesOptions, mongoose.mongodb.ListDatabasesOptions, ""]
+      - [mongodb.ListIndexesCursor, mongodb.Collection, "Member[listIndexes].ReturnValue"]
+      - [mongodb.ListIndexesCursor, mongodb.ListIndexesCursor, "Member[clone].ReturnValue"]
+      - [mongodb.ListIndexesCursor, mongodb.ListIndexesCursorStatic, Instance]
+      - [mongodb.ListIndexesCursor, "mongodb/mongodb.ListIndexesCursor", ""]
+      - [mongodb.ListIndexesCursor, mongoose.mongodb.ListIndexesCursor, ""]
+      - [mongodb.ListIndexesCursorStatic, "mongodb/mongodb.ListIndexesCursorStatic", ""]
+      - [mongodb.ListIndexesCursorStatic, mongodb, "Member[ListIndexesCursor]"]
+      - [mongodb.ListIndexesCursorStatic, mongoose.mongodb.ListIndexesCursorStatic, ""]
+      - [mongodb.ListIndexesOptions, mongodb.Collection, "Member[listIndexes].Argument[0]"]
+      - [mongodb.ListIndexesOptions, mongodb.ListIndexesCursor, "Member[options]"]
+      - [mongodb.ListIndexesOptions, mongodb.ListIndexesCursorStatic, "Argument[1]"]
+      - [mongodb.ListIndexesOptions, "mongodb/mongodb.ListIndexesOptions", ""]
+      - [mongodb.ListIndexesOptions, mongoose.mongodb.ListIndexesOptions, ""]
+      - [mongodb.MapReduceOptions, mongodb.Collection, "Member[mapReduce].Argument[2]"]
+      - [mongodb.MapReduceOptions, "mongodb/mongodb.MapReduceOptions", ""]
+      - [mongodb.MapReduceOptions, mongoose.mongodb.MapReduceOptions, ""]
+      - [mongodb.MongoClient, mongodb.AutoEncrypter, "Argument[0]"]
+      - [mongodb.MongoClient, mongodb.AutoEncryptionOptions, "Member[keyVaultClient]"]
+      - [mongodb.MongoClient, mongodb.ChangeStream, "Member[parent]"]
+      - [mongodb.MongoClient, mongodb.DbStatic, "Argument[0]"]
+      - [mongodb.MongoClient, mongodb.MongoClient, "Member[connect].Argument[0].TypeVar[mongodb.Callback.0]"]
+      - [mongodb.MongoClient, mongodb.MongoClient, "Member[connect].WithArity[0].ReturnValue.Awaited"]
+      - [mongodb.MongoClient, mongodb.MongoClientEvents, "Member[open].Argument[0]"]
+      - [mongodb.MongoClient, mongodb.MongoClientStatic, Instance]
+      - [mongodb.MongoClient, mongodb.MongoClientStatic, "Member[connect].Argument[1,2].TypeVar[mongodb.Callback.0]"]
+      - [mongodb.MongoClient, mongodb.MongoClientStatic, "Member[connect].WithArity[1,2].ReturnValue.Awaited"]
+      - [mongodb.MongoClient, "mongodb/mongodb.MongoClient", ""]
+      - [mongodb.MongoClient, mongoose.mongodb.MongoClient, ""]
+      - [mongodb.MongoClientEvents, "mongodb/mongodb.MongoClientEvents", ""]
+      - [mongodb.MongoClientEvents, mongoose.mongodb.MongoClientEvents, ""]
+      - [mongodb.MongoClientOptions, mongodb.MongoClientStatic, "Argument[1]"]
+      - [mongodb.MongoClientOptions, mongodb.MongoClientStatic, "Member[connect].Argument[1]"]
+      - [mongodb.MongoClientOptions, "mongodb/mongodb.MongoClientOptions", ""]
+      - [mongodb.MongoClientOptions, mongoose.mongodb.MongoClientOptions, ""]
+      - [mongodb.MongoClientStatic, "mongodb/mongodb.MongoClientStatic", ""]
+      - [mongodb.MongoClientStatic, mongodb, "Member[MongoClient]"]
+      - [mongodb.MongoClientStatic, mongoose.mongodb.MongoClientStatic, ""]
+      - [mongodb.MongoOptions, mongodb.ClientSession, "Member[clientOptions]"]
+      - [mongodb.MongoOptions, mongodb.MongoClient, "Member[options]"]
+      - [mongodb.MongoOptions, "mongodb/mongodb.MongoOptions", ""]
+      - [mongodb.MongoOptions, mongoose.mongodb.MongoOptions, ""]
+      - [mongodb.OperationOptions, mongodb.Collection, "Member[isCapped,options].Argument[0]"]
+      - [mongodb.OperationOptions, mongodb.CommandOperationOptions, ""]
+      - [mongodb.OperationOptions, "mongodb/mongodb.OperationOptions", ""]
+      - [mongodb.OperationOptions, mongoose.mongodb.OperationOptions, ""]
+      - [mongodb.OrderedBulkOperation, mongodb.Collection, "Member[initializeOrderedBulkOp].ReturnValue"]
+      - [mongodb.OrderedBulkOperation, mongodb.OrderedBulkOperation, "Member[addToOperationsList].ReturnValue"]
+      - [mongodb.OrderedBulkOperation, mongodb.OrderedBulkOperationStatic, Instance]
+      - [mongodb.OrderedBulkOperation, "mongodb/mongodb.OrderedBulkOperation", ""]
+      - [mongodb.OrderedBulkOperation, mongoose.mongodb.OrderedBulkOperation, ""]
+      - [mongodb.OrderedBulkOperationStatic, "mongodb/mongodb.OrderedBulkOperationStatic", ""]
+      - [mongodb.OrderedBulkOperationStatic, mongodb, "Member[OrderedBulkOperation]"]
+      - [mongodb.OrderedBulkOperationStatic, mongoose.mongodb.OrderedBulkOperationStatic, ""]
+      - [mongodb.ProfilingLevelOptions, mongodb.Db, "Member[profilingLevel].Argument[0]"]
+      - [mongodb.ProfilingLevelOptions, "mongodb/mongodb.ProfilingLevelOptions", ""]
+      - [mongodb.ProfilingLevelOptions, mongoose.mongodb.ProfilingLevelOptions, ""]
+      - [mongodb.ReadPreferenceFromOptions, mongodb.ReadPreferenceStatic, "Member[fromOptions].Argument[0]"]
+      - [mongodb.ReadPreferenceFromOptions, "mongodb/mongodb.ReadPreferenceFromOptions", ""]
+      - [mongodb.ReadPreferenceFromOptions, mongoose.mongodb.ReadPreferenceFromOptions, ""]
+      - [mongodb.ReadPreferenceStatic, "mongodb/mongodb.ReadPreferenceStatic", ""]
+      - [mongodb.ReadPreferenceStatic, mongodb, "Member[ReadPreference]"]
+      - [mongodb.ReadPreferenceStatic, mongoose.mongodb.ReadPreferenceStatic, ""]
+      - [mongodb.RemoveUserOptions, mongodb.Admin, "Member[removeUser].Argument[1]"]
+      - [mongodb.RemoveUserOptions, mongodb.Db, "Member[removeUser].Argument[1]"]
+      - [mongodb.RemoveUserOptions, "mongodb/mongodb.RemoveUserOptions", ""]
+      - [mongodb.RemoveUserOptions, mongoose.mongodb.RemoveUserOptions, ""]
+      - [mongodb.RenameOptions, mongodb.Collection, "Member[rename].Argument[1]"]
+      - [mongodb.RenameOptions, mongodb.Db, "Member[renameCollection].Argument[2]"]
+      - [mongodb.RenameOptions, "mongodb/mongodb.RenameOptions", ""]
+      - [mongodb.RenameOptions, mongoose.mongodb.RenameOptions, ""]
+      - [mongodb.ReplaceOptions, mongodb.Collection, "Member[replaceOne].Argument[2]"]
+      - [mongodb.ReplaceOptions, "mongodb/mongodb.ReplaceOptions", ""]
+      - [mongodb.ReplaceOptions, mongoose.mongodb.ReplaceOptions, ""]
+      - [mongodb.RunCommandOptions, mongodb.Admin, "Member[command].Argument[1]"]
+      - [mongodb.RunCommandOptions, mongodb.Db, "Member[command].Argument[1]"]
+      - [mongodb.RunCommandOptions, "mongodb/mongodb.RunCommandOptions", ""]
+      - [mongodb.RunCommandOptions, mongoose.mongodb.RunCommandOptions, ""]
+      - [mongodb.SelectServerOptions, "mongodb/mongodb.SelectServerOptions", ""]
+      - [mongodb.SelectServerOptions, mongoose.mongodb.SelectServerOptions, ""]
+      - [mongodb.SetProfilingLevelOptions, mongodb.Db, "Member[setProfilingLevel].Argument[1]"]
+      - [mongodb.SetProfilingLevelOptions, "mongodb/mongodb.SetProfilingLevelOptions", ""]
+      - [mongodb.SetProfilingLevelOptions, mongoose.mongodb.SetProfilingLevelOptions, ""]
+      - [mongodb.Transaction, mongodb.ClientSession, "Member[transaction]"]
+      - [mongodb.Transaction, mongodb.TransactionStatic, Instance]
+      - [mongodb.Transaction, "mongodb/mongodb.Transaction", ""]
+      - [mongodb.Transaction, mongoose.mongodb.Transaction, ""]
+      - [mongodb.TransactionOptions, mongodb.ClientSession, "Member[defaultTransactionOptions]"]
+      - [mongodb.TransactionOptions, mongodb.ClientSession, "Member[startTransaction].Argument[0]"]
+      - [mongodb.TransactionOptions, mongodb.ClientSession, "Member[withTransaction].Argument[1]"]
+      - [mongodb.TransactionOptions, mongodb.ClientSessionOptions, "Member[defaultTransactionOptions]"]
+      - [mongodb.TransactionOptions, mongodb.Transaction, "Member[options]"]
+      - [mongodb.TransactionOptions, "mongodb/mongodb.TransactionOptions", ""]
+      - [mongodb.TransactionOptions, mongoose.mongodb.TransactionOptions, ""]
+      - [mongodb.TransactionStatic, "mongodb/mongodb.TransactionStatic", ""]
+      - [mongodb.TransactionStatic, mongodb, "Member[Transaction]"]
+      - [mongodb.TransactionStatic, mongoose.mongodb.TransactionStatic, ""]
+      - [mongodb.TypedEventEmitter, mongodb.AbstractCursor, ""]
+      - [mongodb.TypedEventEmitter, mongodb.ChangeStream, ""]
+      - [mongodb.TypedEventEmitter, mongodb.ClientSession, ""]
+      - [mongodb.TypedEventEmitter, mongodb.GridFSBucket, ""]
+      - [mongodb.TypedEventEmitter, mongodb.MongoClient, ""]
+      - [mongodb.UnorderedBulkOperation, mongodb.Collection, "Member[initializeUnorderedBulkOp].ReturnValue"]
+      - [mongodb.UnorderedBulkOperation, mongodb.UnorderedBulkOperation, "Member[addToOperationsList].ReturnValue"]
+      - [mongodb.UnorderedBulkOperation, mongodb.UnorderedBulkOperationStatic, Instance]
+      - [mongodb.UnorderedBulkOperation, "mongodb/mongodb.UnorderedBulkOperation", ""]
+      - [mongodb.UnorderedBulkOperation, mongoose.mongodb.UnorderedBulkOperation, ""]
+      - [mongodb.UnorderedBulkOperationStatic, "mongodb/mongodb.UnorderedBulkOperationStatic", ""]
+      - [mongodb.UnorderedBulkOperationStatic, mongodb, "Member[UnorderedBulkOperation]"]
+      - [mongodb.UnorderedBulkOperationStatic, mongoose.mongodb.UnorderedBulkOperationStatic, ""]
+      - [mongodb.UpdateManyModel, mongodb.AnyBulkWriteOperation, "Member[updateMany]"]
+      - [mongodb.UpdateManyModel, "mongodb/mongodb.UpdateManyModel", ""]
+      - [mongodb.UpdateManyModel, mongoose.mongodb.UpdateManyModel, ""]
+      - [mongodb.UpdateOneModel, mongodb.AnyBulkWriteOperation, "Member[updateOne]"]
+      - [mongodb.UpdateOneModel, "mongodb/mongodb.UpdateOneModel", ""]
+      - [mongodb.UpdateOneModel, mongoose.mongodb.UpdateOneModel, ""]
+      - [mongodb.UpdateOptions, mongodb.Collection, "Member[update,updateMany,updateOne].Argument[2]"]
+      - [mongodb.UpdateOptions, "mongodb/mongodb.UpdateOptions", ""]
+      - [mongodb.UpdateOptions, mongoose.mongodb.UpdateOptions, ""]
+      - [mongodb.ValidateCollectionOptions, mongodb.Admin, "Member[validateCollection].Argument[1]"]
+      - [mongodb.ValidateCollectionOptions, "mongodb/mongodb.ValidateCollectionOptions", ""]
+      - [mongodb.ValidateCollectionOptions, mongoose.mongodb.ValidateCollectionOptions, ""]
+      - [mongodb.WithSessionCallback, mongodb.MongoClient, "Member[withSession].Argument[1]"]
+      - [mongodb.WithSessionCallback, mongodb.MongoClient, "Member[withSession].WithArity[1].Argument[0]"]
+      - [mongodb.WithSessionCallback, "mongodb/mongodb.WithSessionCallback", ""]
+      - [mongodb.WithSessionCallback, mongoose.mongodb.WithSessionCallback, ""]
+      - [mongodb.WithTransactionCallback, mongodb.ClientSession, "Member[withTransaction].Argument[0]"]
+      - [mongodb.WithTransactionCallback, "mongodb/mongodb.WithTransactionCallback", ""]
+      - [mongodb.WithTransactionCallback, mongoose.mongodb.WithTransactionCallback, ""]
+      - [mongodb, mongoose, "Member[mongodb]"]
+      - [mongoose.AcceptsDiscriminator, mongoose.Model, ""]
+      - [mongoose.AcceptsDiscriminator, mongoose.Schema.Types.Array, ""]
+      - [mongoose.AcceptsDiscriminator, mongoose.Schema.Types.DocumentArray, ""]
+      - [mongoose.AcceptsDiscriminator, mongoose.Schema.Types.Subdocument, ""]
+      - [mongoose.Aggregate, mongoose.Aggregate, "Member[addCursorFlag,addFields,allowDiskUse,append,collation,count,facet,graphLookup,group,hint,limit,lookup,match,model,near,option,project,read,readConcern,redact,replaceRoot,sample,search,session,skip,sort,sortByCount,unionWith,unwind].ReturnValue"]
+      - [mongoose.Aggregate, mongoose.AggregateStatic, Instance]
+      - [mongoose.Aggregate, mongoose.Model, "Member[aggregate].ReturnValue"]
+      - [mongoose.AggregateStatic, mongoose, "Member[Aggregate]"]
+      - [mongoose.Collection, mongoose.Collection, Instance]
+      - [mongoose.Collection, mongoose.Connection, "Member[collection].ReturnValue"]
+      - [mongoose.Collection, mongoose.Connection, "Member[collections].AnyMember"]
+      - [mongoose.Collection, mongoose.Document, "Member[collection]"]
+      - [mongoose.Collection, mongoose.Model, "Member[collection]"]
+      - [mongoose.Collection, mongoose, "Member[Collection]"]
+      - [mongoose.CollectionBase, mongoose.Collection, ""]
+      - [mongoose.CompileModelOptions, mongoose.Connection, "Member[model].Argument[3]"]
+      - [mongoose.CompileModelOptions, mongoose, "Member[model].Argument[3]"]
+      - [mongoose.ConnectOptions, mongoose.Connection, "Member[openUri].WithArity[1,2,3].Argument[1]"]
+      - [mongoose.ConnectOptions, mongoose, "Member[connect,createConnection].WithArity[1,2,3].Argument[1]"]
+      - [mongoose.Connection, mongoose.Collection, "Argument[1]"]
+      - [mongoose.Connection, mongoose.CollectionBase, "Member[conn]"]
+      - [mongoose.Connection, mongoose.CompileModelOptions, "Member[connection]"]
+      - [mongoose.Connection, mongoose.Connection, "Member[asPromise].ReturnValue.Awaited"]
+      - [mongoose.Connection, mongoose.Connection, "Member[deleteModel,plugin,setClient,useDb].ReturnValue"]
+      - [mongoose.Connection, mongoose.Connection, "Member[openUri].Argument[2].TypeVar[mongoose.Callback.0]"]
+      - [mongoose.Connection, mongoose.Connection, "Member[openUri].WithArity[1,2].ReturnValue.Awaited"]
+      - [mongoose.Connection, mongoose.Connection, "Member[openUri].WithArity[2,3].ReturnValue"]
+      - [mongoose.Connection, mongoose.Connection, "Member[openUri].WithArity[2].Argument[1].TypeVar[mongoose.Callback.0]"]
+      - [mongoose.Connection, mongoose.ConnectionStatic, Instance]
+      - [mongoose.Connection, mongoose.Document, "Member[db]"]
+      - [mongoose.Connection, mongoose.Model, "Member[db]"]
+      - [mongoose.Connection, mongoose, "Member[connection]"]
+      - [mongoose.Connection, mongoose, "Member[connections].ArrayElement"]
+      - [mongoose.Connection, mongoose, "Member[createConnection].Argument[2].TypeVar[mongoose.Callback.0]"]
+      - [mongoose.Connection, mongoose, "Member[createConnection].WithArity[0,1,2].ReturnValue"]
+      - [mongoose.Connection, mongoose, "Member[createConnection].WithArity[2].Argument[1].TypeVar[mongoose.Callback.0]"]
+      - [mongoose.ConnectionStatic, mongoose, "Member[Connection]"]
+      - [mongoose.Cursor, mongoose.Query, "Member[cursor].ReturnValue"]
+      - [mongoose.DiscriminatorModel, mongoose.DiscriminatorSchema, "TypeVar[mongoose.Schema.1]"]
+      - [mongoose.Document, mongoose.Document, "Member[$getAllSubdocs,$getPopulatedDocs].ReturnValue.ArrayElement"]
+      - [mongoose.Document, mongoose.Document, "Member[$inc,$parent,$set,depopulate,increment,init,overwrite,set].ReturnValue"]
+      - [mongoose.Document, mongoose.Document, "Member[delete,deleteOne].WithArity[0,1].ReturnValue.TypeVar[mongoose.QueryWithHelpers.1]"]
+      - [mongoose.Document, mongoose.Document, "Member[equals].Argument[0]"]
+      - [mongoose.Document, mongoose.Document, "Member[init].Argument[2].TypeVar[mongoose.Callback.0]"]
+      - [mongoose.Document, mongoose.Document, "Member[remove,save].WithArity[0,1].ReturnValue.Awaited"]
+      - [mongoose.Document, mongoose.Document, "Member[replaceOne,update,updateOne].ReturnValue.TypeVar[mongoose.Query.1]"]
+      - [mongoose.Document, mongoose.Document, "Member[save].Argument[1].TypeVar[mongoose.Callback.0]"]
+      - [mongoose.Document, mongoose.Document, "Member[save].WithArity[1].Argument[0].TypeVar[mongoose.Callback.0]"]
+      - [mongoose.Document, mongoose.DocumentStatic, Instance]
+      - [mongoose.Document, mongoose.Error.VersionErrorStatic, "Argument[0]"]
+      - [mongoose.Document, mongoose.HydratedDocument, ""]
+      - [mongoose.Document, mongoose.HydratedDocument, "TypeVar[mongoose.Require_id.0]"]
+      - [mongoose.Document, mongoose.Model, "Member[bulkSave].Argument[0].ArrayElement"]
+      - [mongoose.Document, mongoose.TVirtualPathFN, "Argument[2]"]
+      - [mongoose.Document, mongoose.Types.Subdocument, ""]
+      - [mongoose.Document, mongoose.Types.Subdocument, "Member[$parent,ownerDocument,parent].ReturnValue"]
+      - [mongoose.Document, mongoose.VirtualType, "Member[applyGetters,applySetters].Argument[1]"]
+      - [mongoose.DocumentStatic, mongoose, "Member[Document]"]
+      - [mongoose.Error.VersionErrorStatic, mongoose, "Member[Error].Member[VersionError]"]
+      - [mongoose.HydratedDocument, mongoose.Model, Instance]
+      - [mongoose.HydratedDocument, mongoose.Model, "Member[$where,count,countDocuments,deleteMany,deleteOne,distinct,estimatedDocumentCount,find,geoSearch,remove,replaceOne,update,updateMany,updateOne,where].ReturnValue.TypeVar[mongoose.QueryWithHelpers.1]"]
+      - [mongoose.HydratedDocument, mongoose.Model, "Member[$where,find,geoSearch,where].ReturnValue.TypeVar[mongoose.QueryWithHelpers.0].ArrayElement"]
+      - [mongoose.HydratedDocument, mongoose.Model, "Member[create,insertMany].WithArity[2].Argument[1].TypeVar[mongoose.Callback.0].ArrayElement"]
+      - [mongoose.HydratedDocument, mongoose.Model, "Member[create].WithArity[0..,1,2].ReturnValue.Awaited.ArrayElement"]
+      - [mongoose.HydratedDocument, mongoose.Model, "Member[create].WithArity[1].ReturnValue.Awaited"]
+      - [mongoose.HydratedDocument, mongoose.Model, "Member[create].WithArity[2].Argument[1].TypeVar[mongoose.Callback.0]"]
+      - [mongoose.HydratedDocument, mongoose.Model, "Member[exists].WithArity[1,2].ReturnValue.TypeVar[mongoose.QueryWithHelpers.1]"]
+      - [mongoose.HydratedDocument, mongoose.Model, "Member[find,insertMany].WithArity[3].Argument[2].TypeVar[mongoose.Callback.0].ArrayElement"]
+      - [mongoose.HydratedDocument, mongoose.Model, "Member[findById,findByIdAndDelete,findByIdAndRemove,findOne,findOneAndDelete,findOneAndRemove].ReturnValue.TypeVar[mongoose.QueryWithHelpers.0,mongoose.QueryWithHelpers.1]"]
+      - [mongoose.HydratedDocument, mongoose.Model, "Member[findById,findOne].Argument[3].TypeVar[mongoose.Callback.0]"]
+      - [mongoose.HydratedDocument, mongoose.Model, "Member[findByIdAndDelete,findByIdAndRemove,findOneAndDelete,findOneAndRemove].Argument[2].Argument[1]"]
+      - [mongoose.HydratedDocument, mongoose.Model, "Member[findByIdAndUpdate,findOneAndReplace,findOneAndUpdate].WithArity[0,1,2,3,4].ReturnValue.TypeVar[mongoose.QueryWithHelpers.0,mongoose.QueryWithHelpers.1]"]
+      - [mongoose.HydratedDocument, mongoose.Model, "Member[findByIdAndUpdate,findOneAndReplace,findOneAndUpdate].WithArity[3,4].ReturnValue.TypeVar[mongoose.QueryWithHelpers.0].TypeVar[mongoose.ModifyResult.0]"]
+      - [mongoose.HydratedDocument, mongoose.Model, "Member[findByIdAndUpdate].WithArity[0,1,2,4].Argument[3].Argument[1]"]
+      - [mongoose.HydratedDocument, mongoose.Model, "Member[findByIdAndUpdate].WithArity[3].Argument[2,3].Argument[1]"]
+      - [mongoose.HydratedDocument, mongoose.Model, "Member[findById].WithArity[1,2,3].Argument[2].TypeVar[mongoose.Callback.0]"]
+      - [mongoose.HydratedDocument, mongoose.Model, "Member[findOneAndReplace].WithArity[0,1,2,3,4].Argument[3].Argument[1]"]
+      - [mongoose.HydratedDocument, mongoose.Model, "Member[findOneAndUpdate].WithArity[3,4].Argument[3].Argument[1]"]
+      - [mongoose.HydratedDocument, mongoose.Model, "Member[findOne].WithArity[0,1,2].Argument[1,2].TypeVar[mongoose.Callback.0]"]
+      - [mongoose.HydratedDocument, mongoose.Model, "Member[findOne].WithArity[3].Argument[2].TypeVar[mongoose.Callback.0]"]
+      - [mongoose.HydratedDocument, mongoose.Model, "Member[find].Argument[3].TypeVar[mongoose.Callback.0].ArrayElement"]
+      - [mongoose.HydratedDocument, mongoose.Model, "Member[find].WithArity[0].Argument[0].TypeVar[mongoose.Callback.0].ArrayElement"]
+      - [mongoose.HydratedDocument, mongoose.Model, "Member[find].WithArity[1].Argument[0,1,2].TypeVar[mongoose.Callback.0].ArrayElement"]
+      - [mongoose.HydratedDocument, mongoose.Model, "Member[find].WithArity[2].Argument[1,2].TypeVar[mongoose.Callback.0].ArrayElement"]
+      - [mongoose.HydratedDocument, mongoose.Model, "Member[geoSearch].Argument[2].TypeVar[mongoose.Callback.0].ArrayElement"]
+      - [mongoose.HydratedDocument, mongoose.Model, "Member[hydrate].ReturnValue"]
+      - [mongoose.HydratedDocument, mongoose.Model, "Member[init].ReturnValue.Awaited"]
+      - [mongoose.HydratedDocument, mongoose.Model, "Member[insertMany].WithArity[1,2].ReturnValue.Awaited.ArrayElement"]
+      - [mongoose.HydratedDocument, mongoose.Model, "Member[populate].WithArity[2,3].Argument[2].TypeVar[mongoose.Callback.0]"]
+      - [mongoose.HydratedDocument, mongoose.Model, "Member[populate].WithArity[2,3].Argument[2].TypeVar[mongoose.Callback.0].ArrayElement"]
+      - [mongoose.HydratedDocument, mongoose.Model, "Member[populate].WithArity[2,3].ReturnValue.Awaited"]
+      - [mongoose.HydratedDocument, mongoose.Model, "Member[populate].WithArity[2,3].ReturnValue.Awaited.ArrayElement"]
+      - [mongoose.HydratedDocument, mongoose.TVirtualPathFN, "Argument[1].TypeVar[mongoose.VirtualType.0]"]
+      - [mongoose.HydratedDocument, mongoose.VirtualPathFunctions, "Member[options].TypeVar[mongoose.VirtualTypeOptions.0]"]
+      - [mongoose.InsertManyOptions, mongoose.Model, "Member[insertMany].WithArity[2,3].Argument[1]"]
+      - [mongoose.Model, mongoose.AcceptsDiscriminator, "Member[discriminator].WithArity[2,3].ReturnValue"]
+      - [mongoose.Model, mongoose.Aggregate, "Member[model].Argument[0]"]
+      - [mongoose.Model, mongoose.Connection, "Member[model].WithArity[1,2,3,4].ReturnValue"]
+      - [mongoose.Model, mongoose.Connection, "Member[models].AnyMember"]
+      - [mongoose.Model, mongoose.DiscriminatorModel, ""]
+      - [mongoose.Model, mongoose.Document, "Member[$model].ReturnValue"]
+      - [mongoose.Model, mongoose.Document, "Member[populate].Argument[2]"]
+      - [mongoose.Model, mongoose.Model, "Member[discriminators].AnyMember"]
+      - [mongoose.Model, mongoose.Models, AnyMember]
+      - [mongoose.Model, mongoose.PopulateOptions, "Member[model]"]
+      - [mongoose.Model, mongoose.Query, "Member[cast].Argument[0]"]
+      - [mongoose.Model, mongoose.Query, "Member[populate].Argument[2]"]
+      - [mongoose.Model, mongoose.Schema.Types.Array, "Member[discriminator].WithArity[2,3].ReturnValue"]
+      - [mongoose.Model, mongoose.Schema.Types.DocumentArray, "Member[discriminator].WithArity[2,3].ReturnValue"]
+      - [mongoose.Model, mongoose.Schema.Types.Subdocument, "Member[discriminator].WithArity[2,3].ReturnValue"]
+      - [mongoose.Model, mongoose.SchemaStatic, "Instance.TypeVar[mongoose.Schema.1]"]
+      - [mongoose.Model, mongoose, "Member[Model]"]
+      - [mongoose.Model, mongoose, "Member[model].ReturnValue"]
+      - [mongoose.Models, mongoose, "Member[models]"]
+      - [mongoose.PopulateOption, mongoose.InsertManyOptions, ""]
+      - [mongoose.PopulateOption, mongoose.QueryOptions, ""]
+      - [mongoose.PopulateOptions, mongoose.Document, "Member[populate].Argument[4]"]
+      - [mongoose.PopulateOptions, mongoose.Document, "Member[populate].WithArity[1,2].Argument[0]"]
+      - [mongoose.PopulateOptions, mongoose.Document, "Member[populate].WithArity[1,2].Argument[0].ArrayElement"]
+      - [mongoose.PopulateOptions, mongoose.Model, "Member[populate].Argument[1]"]
+      - [mongoose.PopulateOptions, mongoose.Model, "Member[populate].Argument[1].ArrayElement"]
+      - [mongoose.PopulateOptions, mongoose.PopulateOption, "Member[populate]"]
+      - [mongoose.PopulateOptions, mongoose.PopulateOption, "Member[populate].ArrayElement"]
+      - [mongoose.PopulateOptions, mongoose.PopulateOptions, "Member[populate]"]
+      - [mongoose.PopulateOptions, mongoose.PopulateOptions, "Member[populate].ArrayElement"]
+      - [mongoose.PopulateOptions, mongoose.Query, "Member[populate].WithArity[1].Argument[0]"]
+      - [mongoose.PopulateOptions, mongoose.Query, "Member[populate].WithArity[1].Argument[0].ArrayElement"]
+      - [mongoose.Query, mongoose.Document, "Member[replaceOne,update,updateOne].ReturnValue"]
+      - [mongoose.Query, mongoose.HydratedDocument, "TypeVar[mongoose.Require_id.0]"]
+      - [mongoose.Query, mongoose.Query, "Member[all,allowDiskUse,and,batchSize,box,circle,clone,collation,comment,elemMatch,equals,exists,explain,geometry,gt,gte,hint,in,intersects,j,limit,lt,lte,maxDistance,maxScan,maxTimeMS,merge,mod,ne,near,nin,nor,or,polygon,read,readConcern,regex,remove,select,session,set,setOptions,size,skip,slice,snapshot,sort,tailable,w,where,within,wtimeout].ReturnValue"]
+      - [mongoose.Query, mongoose.Query, "Member[error].WithArity[1].ReturnValue"]
+      - [mongoose.Query, mongoose.Query, "Member[merge].Argument[0]"]
+      - [mongoose.Query, mongoose.QueryStatic, Instance]
+      - [mongoose.Query, mongoose.QueryWithHelpers, ""]
+      - [mongoose.QueryOptions, mongoose.Document, "Member[delete,deleteOne,remove].WithArity[0,1,2].Argument[0]"]
+      - [mongoose.QueryOptions, mongoose.Document, "Member[replaceOne,update,updateOne].Argument[1]"]
+      - [mongoose.QueryOptions, mongoose.Model, "Member[countDocuments,findByIdAndDelete,findByIdAndRemove,findOneAndDelete,findOneAndRemove].Argument[1]"]
+      - [mongoose.QueryOptions, mongoose.Model, "Member[deleteMany,deleteOne].WithArity[0,1,2,3].Argument[1]"]
+      - [mongoose.QueryOptions, mongoose.Model, "Member[estimatedDocumentCount].Argument[0]"]
+      - [mongoose.QueryOptions, mongoose.Model, "Member[find,findById].WithArity[1,2,3,4].Argument[2]"]
+      - [mongoose.QueryOptions, mongoose.Model, "Member[findByIdAndUpdate,findOne,findOneAndReplace,findOneAndUpdate].WithArity[0,1,2,3,4].Argument[2]"]
+      - [mongoose.QueryOptions, mongoose.Model, "Member[replaceOne,update,updateMany,updateOne].Argument[2]"]
+      - [mongoose.QueryOptions, mongoose.PopulateOptions, "Member[options]"]
+      - [mongoose.QueryOptions, mongoose.Query, "Member[countDocuments,findByIdAndDelete,findOneAndDelete,findOneAndRemove].Argument[1]"]
+      - [mongoose.QueryOptions, mongoose.Query, "Member[cursor,estimatedDocumentCount,setOptions].Argument[0]"]
+      - [mongoose.QueryOptions, mongoose.Query, "Member[cursor].ReturnValue.TypeVar[mongoose.Cursor.1]"]
+      - [mongoose.QueryOptions, mongoose.Query, "Member[deleteMany,deleteOne].WithArity[0,1,2,3].Argument[1]"]
+      - [mongoose.QueryOptions, mongoose.Query, "Member[findByIdAndUpdate,findOne,findOneAndUpdate].WithArity[0,1,2,3,4].Argument[2]"]
+      - [mongoose.QueryOptions, mongoose.Query, "Member[find].WithArity[1,2,3,4].Argument[2]"]
+      - [mongoose.QueryOptions, mongoose.Query, "Member[getOptions].ReturnValue"]
+      - [mongoose.QueryOptions, mongoose.Query, "Member[replaceOne,update,updateMany,updateOne].Argument[2]"]
+      - [mongoose.QueryOptions, mongoose.VirtualTypeOptions, "Member[options]"]
+      - [mongoose.QueryStatic, mongoose, "Member[Query]"]
+      - [mongoose.QueryWithHelpers, mongoose.Document, "Member[delete,deleteOne].WithArity[0,1].ReturnValue"]
+      - [mongoose.QueryWithHelpers, mongoose.Model, "Member[$where,count,countDocuments,deleteMany,deleteOne,distinct,estimatedDocumentCount,find,findById,findByIdAndDelete,findByIdAndRemove,findOne,findOneAndDelete,findOneAndRemove,geoSearch,remove,replaceOne,update,updateMany,updateOne,where].ReturnValue"]
+      - [mongoose.QueryWithHelpers, mongoose.Model, "Member[exists].WithArity[1,2].ReturnValue"]
+      - [mongoose.QueryWithHelpers, mongoose.Model, "Member[findByIdAndUpdate,findOneAndReplace,findOneAndUpdate].WithArity[0,1,2,3,4].ReturnValue"]
+      - [mongoose.QueryWithHelpers, mongoose.Query, "Member[$where,count,countDocuments,deleteMany,deleteOne,distinct,estimatedDocumentCount,find,findByIdAndDelete,findOne,findOneAndDelete,findOneAndRemove,lean,orFail,populate,replaceOne,transform,update,updateMany,updateOne].ReturnValue"]
+      - [mongoose.QueryWithHelpers, mongoose.Query, "Member[findByIdAndUpdate,findOneAndUpdate].WithArity[0,1,2,3,4].ReturnValue"]
+      - [mongoose.QueryWithHelpers, mongoose.Query, "Member[toConstructor].ReturnValue.Instance"]
+      - [mongoose.Schema.Types.Array, mongoose.Schema.Types.Array, "Member[enum].ReturnValue"]
+      - [mongoose.Schema.Types.Array, mongoose.Schema.Types.ArrayStatic, Instance]
+      - [mongoose.Schema.Types.ArrayStatic, mongoose, "Member[Schema].Member[Types].Member[Array]"]
+      - [mongoose.Schema.Types.DocumentArray, mongoose.Schema.Types.DocumentArrayStatic, Instance]
+      - [mongoose.Schema.Types.DocumentArrayStatic, mongoose, "Member[Schema].Member[Types].Member[DocumentArray]"]
+      - [mongoose.Schema.Types.Subdocument, mongoose.Schema.Types.SubdocumentStatic, Instance]
+      - [mongoose.Schema.Types.SubdocumentStatic, mongoose.Schema.Types.DocumentArray, "Member[caster]"]
+      - [mongoose.Schema.Types.SubdocumentStatic, mongoose, "Member[Schema].Member[Types].Member[Subdocument]"]
+      - [mongoose.SchemaStatic, mongoose, "Member[Schema]"]
+      - [mongoose.SessionOperation, mongoose.Aggregate, ""]
+      - [mongoose.SessionOperation, mongoose.Query, ""]
+      - [mongoose.TVirtualPathFN, mongoose.VirtualPathFunctions, "Member[get,set]"]
+      - [mongoose.Types.Array, mongoose.Types.DocumentArray, ""]
+      - [mongoose.Types.ArraySubdocument, mongoose.Types.ArraySubdocumentStatic, Instance]
+      - [mongoose.Types.ArraySubdocumentStatic, mongoose, "Member[Types].Member[ArraySubdocument]"]
+      - [mongoose.Types.DocumentArray, mongoose.Types.ArraySubdocument, "Member[parentArray].ReturnValue"]
+      - [mongoose.Types.DocumentArray, mongoose.Types.DocumentArrayStatic, Instance]
+      - [mongoose.Types.DocumentArray, "mongoose/inferschematype.ResolvePathType", "TypeVar[mongoose.IfEquals.3]"]
+      - [mongoose.Types.DocumentArrayStatic, mongoose, "Member[Types].Member[DocumentArray]"]
+      - [mongoose.Types.ObjectId, "mongoose/inferschematype.ResolvePathType", ""]
+      - [mongoose.Types.Subdocument, mongoose.Types.ArraySubdocument, ""]
+      - [mongoose.Types.Subdocument, mongoose.Types.DocumentArray, "Member[create,id].ReturnValue"]
+      - [mongoose.Types.Subdocument, mongoose.Types.DocumentArray, "TypeVar[mongoose.Types.Array.0]"]
+      - [mongoose.Types.Subdocument, mongoose.Types.SubdocumentStatic, Instance]
+      - [mongoose.Types.SubdocumentStatic, mongoose, "Member[Types].Member[Subdocument]"]
+      - [mongoose.VirtualType, mongoose.TVirtualPathFN, "Argument[1]"]
+      - [mongoose.VirtualType, mongoose.VirtualType, "Member[get,set].Argument[0].Argument[1]"]
+      - [mongoose.VirtualType, mongoose.VirtualType, "Member[get,set].ReturnValue"]
+      - [mongoose.VirtualType, mongoose.VirtualTypeStatic, Instance]
+      - [mongoose.VirtualTypeOptions, mongoose.VirtualPathFunctions, "Member[options]"]
+      - [mongoose.VirtualTypeStatic, mongoose, "Member[VirtualType]"]
+      - ["mongoose/inferschematype.ResolvePathType", "mongoose/inferschematype.ObtainDocumentPathType", ""]
+      - ["mongoose/inferschematype.ResolvePathType", "mongoose/inferschematype.ResolvePathType", "TypeVar[mongoose.IfEquals.3].ArrayElement"]
+      - ["mongoose/inferschematype.ResolvePathType", "mongoose/inferschematype.ResolvePathType", "TypeVar[mongoose.IfEquals.3].TypeVar[mongoose.Types.DocumentArray.0]"]
+      - [mongoose, mongoose, "Member[mongoose]"]
+
+  - addsTo: 
+      pack: codeql/javascript-all
+      extensible: summaryModel
+    data:
+      - [mongodb.AbstractCursor, "", "", "Member[addCursorFlag,batchSize,maxTimeMS,withReadConcern,withReadPreference].ReturnValue", type]
+      - [mongodb.BulkOperationBase, "", "", "Member[addToOperationsList,raw].ReturnValue", type]
+      - [mongodb.FindCursor, "", "", "Member[addQueryModifier,allowDiskUse,collation,comment,filter,hint,limit,max,maxAwaitTimeMS,maxTimeMS,min,returnKey,showRecordId,skip,sort].ReturnValue", type]
+      - [mongodb.FindOperators, "", "", "Member[arrayFilters,collation,upsert].ReturnValue", type]
+      - [mongodb.GridFSBucketWriteStream, "", "", "Member[end].ReturnValue", type]
+      - [mongodb.MongoClient, "", "", "Member[connect].Argument[0].TypeVar[mongodb.Callback.0]", type]
+      - [mongodb.MongoClient, "", "", "Member[connect].WithArity[0].ReturnValue.Awaited", type]
+      - [mongodb.OrderedBulkOperation, "", "", "Member[addToOperationsList].ReturnValue", type]
+      - [mongodb.TypedEventEmitter, "", "", "Member[addListener,off,on,once,prependListener,prependOnceListener,removeAllListeners,removeListener,setMaxListeners].ReturnValue", type]
+      - [mongodb.UnorderedBulkOperation, "", "", "Member[addToOperationsList].ReturnValue", type]
+      - [mongoose.Aggregate, "", "", "Member[addCursorFlag,addFields,allowDiskUse,append,collation,count,facet,graphLookup,group,hint,limit,lookup,match,model,near,option,project,read,readConcern,redact,replaceRoot,sample,search,session,skip,sort,sortByCount,unionWith,unwind].ReturnValue", type]
+      - [mongoose.Connection, "", "", "Member[asPromise].ReturnValue.Awaited", type]
+      - [mongoose.Connection, "", "", "Member[deleteModel,setClient].ReturnValue", type]
+      - [mongoose.Cursor, "", "", "Member[addCursorFlag].ReturnValue", type]
+      - [mongoose.Document, "", "", "Member[$inc,$set,depopulate,increment,init,overwrite,set].ReturnValue", type]
+      - [mongoose.Document, "", "", "Member[delete,deleteOne].WithArity[0,1].ReturnValue.TypeVar[mongoose.QueryWithHelpers.1]", type]
+      - [mongoose.Document, "", "", "Member[getChanges].ReturnValue.TypeVar[mongoose.UpdateQuery.0]", type]
+      - [mongoose.Document, "", "", "Member[init].Argument[2].TypeVar[mongoose.Callback.0]", type]
+      - [mongoose.Document, "", "", "Member[populate].Argument[1,5].TypeVar[mongoose.Callback.0].TypeVar[mongoose.MergeType.0]", type]
+      - [mongoose.Document, "", "", "Member[populate].WithArity[1,2,3,4,5].ReturnValue.Awaited.TypeVar[mongoose.MergeType.0]", type]
+      - [mongoose.Document, "", "", "Member[remove,save].WithArity[0,1].ReturnValue.Awaited", type]
+      - [mongoose.Document, "", "", "Member[replaceOne,update,updateOne].ReturnValue.TypeVar[mongoose.Query.1]", type]
+      - [mongoose.Document, "", "", "Member[save].Argument[1].TypeVar[mongoose.Callback.0]", type]
+      - [mongoose.Document, "", "", "Member[save].WithArity[1].Argument[0].TypeVar[mongoose.Callback.0]", type]
+      - [mongoose.Document, "", "", "Member[update,updateOne].Argument[0].TypeVar[mongoose.UpdateQuery.0]", type]
+      - [mongoose.Query, "", "", "Member[all,allowDiskUse,and,batchSize,box,circle,clone,collation,comment,elemMatch,equals,exists,explain,geometry,gt,gte,hint,in,intersects,j,limit,lt,lte,maxDistance,maxScan,maxTimeMS,merge,mod,ne,near,nin,nor,or,polygon,read,readConcern,regex,select,session,set,setOptions,size,skip,slice,snapshot,sort,tailable,w,where,within,wtimeout].ReturnValue", type]
+      - [mongoose.Query, "", "", "Member[error].WithArity[1].ReturnValue", type]
+      - [mongoose.Schema.Types.Array, "", "", "Member[enum].ReturnValue", type]
+      - [mongoose.SessionOperation, "", "", "Member[session].ReturnValue", type]
+      - [mongoose.Types.Array, "", "", "Member[pull,remove,set].ReturnValue", type]
+      - [mongoose.Types.ObjectId, "", "", "Member[_id]", type]
+      - [mongoose.VirtualType, "", "", "Member[get,set].ReturnValue", type]
+
+  - addsTo: 
+      pack: codeql/javascript-all
+      extensible: typeVariableModel
+    data:
+      - [mongodb.Callback.0, "Argument[1]"]
+      - [mongoose.Callback.0, "Argument[1]"]
+      - [mongoose.Cursor.0, "Member[eachAsync].WithArity[1,2,3].Argument[0].Argument[0]"]
+      - [mongoose.Cursor.0, "Member[eachAsync].WithArity[2,3].Argument[0].Argument[0].ArrayElement"]
+      - [mongoose.Cursor.0, "Member[map].Argument[0].Argument[0]"]
+      - [mongoose.Cursor.0, "Member[next].Argument[0].TypeVar[mongoose.Callback.0]"]
+      - [mongoose.Cursor.0, "Member[next].WithArity[0].ReturnValue.Awaited"]
+      - [mongoose.Cursor.1, "Member[map].ReturnValue.TypeVar[mongoose.Cursor.1]"]
+      - [mongoose.Cursor.1, "Member[options]"]
+      - [mongoose.DiscriminatorSchema.1, "TypeVar[mongoose.Schema.1]"]
+      - [mongoose.DiscriminatorSchema.1, "TypeVar[mongoose.Schema.1].TypeVar[mongoose.DiscriminatorModel.1]"]
+      - [mongoose.Document.0, "Member[_id]"]
+      - [mongoose.Document.0, "Member[equals].Argument[0].TypeVar[mongoose.Document.0]"]
+      - [mongoose.FilterQuery.0, "TypeVar[mongoose._FilterQuery.0]"]
+      - [mongoose.IfAny.1, ""]
+      - [mongoose.IfAny.2, ""]
+      - [mongoose.IfEquals.3, ""]
+      - [mongoose.LeanDocumentOrArray.0, ""]
+      - [mongoose.LeanDocumentOrArray.0, "TypeVar[mongoose.LeanDocument.0]"]
+      - [mongoose.LeanDocumentOrArrayWithRawType.0, ""]
+      - [mongoose.ModifyResult.0, "Member[value].TypeVar[mongoose.Require_id.0]"]
+      - [mongoose.PluginFunction.1, "Argument[0].TypeVar[mongoose.Schema.1]"]
+      - [mongoose.PostMiddlewareFunction.1, "Argument[0]"]
+      - [mongoose.Query.0, "Member[exec].Argument[0].TypeVar[mongoose.Callback.0]"]
+      - [mongoose.Query.0, "Member[exec].WithArity[0].ReturnValue.Awaited"]
+      - [mongoose.Query.0, "Member[lean].ReturnValue.TypeVar[mongoose.QueryWithHelpers.0].TypeVar[mongoose.LeanDocumentOrArray.0,mongoose.LeanDocumentOrArrayWithRawType.0]"]
+      - [mongoose.Query.0, "Member[orFail].ReturnValue.TypeVar[mongoose.QueryWithHelpers.0]"]
+      - [mongoose.Query.0, "Member[populate].ReturnValue.TypeVar[mongoose.QueryWithHelpers.0].TypeVar[mongoose.UnpackedIntersection.0]"]
+      - [mongoose.Query.0, "Member[then,transform].Argument[0].Argument[0]"]
+      - [mongoose.Query.0, "Member[toConstructor].ReturnValue.Instance.TypeVar[mongoose.QueryWithHelpers.0]"]
+      - [mongoose.Query.1, "Member[$where,count,countDocuments,deleteMany,deleteOne,distinct,estimatedDocumentCount,find,lean,orFail,populate,replaceOne,transform,update,updateMany,updateOne].ReturnValue.TypeVar[mongoose.QueryWithHelpers.1]"]
+      - [mongoose.Query.1, "Member[$where,find].ReturnValue.TypeVar[mongoose.QueryWithHelpers.0].ArrayElement"]
+      - [mongoose.Query.1, "Member[_mongooseOptions].TypeVar[mongoose.MongooseQueryOptions.0]"]
+      - [mongoose.Query.1, "Member[and,nor,or].Argument[0].ArrayElement.TypeVar[mongoose.FilterQuery.0]"]
+      - [mongoose.Query.1, "Member[countDocuments,findByIdAndDelete,findOneAndDelete,findOneAndRemove].Argument[1].TypeVar[mongoose.QueryOptions.0]"]
+      - [mongoose.Query.1, "Member[countDocuments].WithArity[1,2,3].Argument[0].TypeVar[mongoose.FilterQuery.0]"]
+      - [mongoose.Query.1, "Member[count].WithArity[1,2].Argument[0].TypeVar[mongoose.FilterQuery.0]"]
+      - [mongoose.Query.1, "Member[cursor,estimatedDocumentCount,setOptions].Argument[0].TypeVar[mongoose.QueryOptions.0]"]
+      - [mongoose.Query.1, "Member[cursor].ReturnValue.TypeVar[mongoose.Cursor.0]"]
+      - [mongoose.Query.1, "Member[cursor].ReturnValue.TypeVar[mongoose.Cursor.1].TypeVar[mongoose.QueryOptions.0]"]
+      - [mongoose.Query.1, "Member[deleteMany,deleteOne].WithArity[0,1,2,3].Argument[0].TypeVar[mongoose.FilterQuery.0]"]
+      - [mongoose.Query.1, "Member[deleteMany,deleteOne].WithArity[0,1,2,3].Argument[1].TypeVar[mongoose.QueryOptions.0]"]
+      - [mongoose.Query.1, "Member[distinct].Argument[1].TypeVar[mongoose.FilterQuery.0]"]
+      - [mongoose.Query.1, "Member[findByIdAndDelete,findOne,findOneAndDelete,findOneAndRemove].ReturnValue.TypeVar[mongoose.QueryWithHelpers.0,mongoose.QueryWithHelpers.1]"]
+      - [mongoose.Query.1, "Member[findByIdAndDelete,findOneAndDelete,findOneAndRemove].Argument[2].Argument[1]"]
+      - [mongoose.Query.1, "Member[findByIdAndUpdate,findOneAndUpdate,update,updateMany,updateOne].Argument[1].TypeVar[mongoose.UpdateQuery.0]"]
+      - [mongoose.Query.1, "Member[findByIdAndUpdate,findOneAndUpdate].WithArity[0,1,2,3,4].Argument[2].TypeVar[mongoose.QueryOptions.0]"]
+      - [mongoose.Query.1, "Member[findByIdAndUpdate,findOneAndUpdate].WithArity[0,1,2,3,4].ReturnValue.TypeVar[mongoose.QueryWithHelpers.0,mongoose.QueryWithHelpers.1]"]
+      - [mongoose.Query.1, "Member[findByIdAndUpdate].WithArity[0,1,2,4].Argument[3].Argument[1]"]
+      - [mongoose.Query.1, "Member[findByIdAndUpdate].WithArity[3].Argument[2,3].Argument[1]"]
+      - [mongoose.Query.1, "Member[findOne,findOneAndDelete,findOneAndRemove,findOneAndUpdate,merge,remove,replaceOne,setQuery,update,updateMany,updateOne].Argument[0].TypeVar[mongoose.FilterQuery.0]"]
+      - [mongoose.Query.1, "Member[findOneAndUpdate].Argument[3].Argument[1]"]
+      - [mongoose.Query.1, "Member[findOneAndUpdate].Argument[3].Argument[2].TypeVar[mongoose.ModifyResult.0]"]
+      - [mongoose.Query.1, "Member[findOneAndUpdate].WithArity[3,4].ReturnValue.TypeVar[mongoose.QueryWithHelpers.0].TypeVar[mongoose.ModifyResult.0]"]
+      - [mongoose.Query.1, "Member[findOne].Argument[3].TypeVar[mongoose.Callback.0]"]
+      - [mongoose.Query.1, "Member[findOne].WithArity[0,1,2,3].Argument[2].TypeVar[mongoose.Callback.0,mongoose.QueryOptions.0]"]
+      - [mongoose.Query.1, "Member[findOne].WithArity[0,1,2].Argument[1].TypeVar[mongoose.Callback.0,mongoose.ProjectionType.0]"]
+      - [mongoose.Query.1, "Member[findOne].WithArity[3,4].Argument[1].TypeVar[mongoose.ProjectionType.0]"]
+      - [mongoose.Query.1, "Member[findOne].WithArity[4].Argument[2].TypeVar[mongoose.QueryOptions.0]"]
+      - [mongoose.Query.1, "Member[find].Argument[3].TypeVar[mongoose.Callback.0].ArrayElement"]
+      - [mongoose.Query.1, "Member[find].WithArity[0].Argument[0].TypeVar[mongoose.Callback.0].ArrayElement"]
+      - [mongoose.Query.1, "Member[find].WithArity[1,2,3,4].Argument[0].TypeVar[mongoose.FilterQuery.0]"]
+      - [mongoose.Query.1, "Member[find].WithArity[1,2,3,4].Argument[1].TypeVar[mongoose.ProjectionType.0]"]
+      - [mongoose.Query.1, "Member[find].WithArity[1,2,3,4].Argument[2].TypeVar[mongoose.QueryOptions.0]"]
+      - [mongoose.Query.1, "Member[find].WithArity[1].Argument[0,1,2].TypeVar[mongoose.Callback.0].ArrayElement"]
+      - [mongoose.Query.1, "Member[find].WithArity[2].Argument[1,2].TypeVar[mongoose.Callback.0].ArrayElement"]
+      - [mongoose.Query.1, "Member[find].WithArity[3].Argument[2].TypeVar[mongoose.Callback.0].ArrayElement"]
+      - [mongoose.Query.1, "Member[getFilter,getQuery].ReturnValue.TypeVar[mongoose.FilterQuery.0]"]
+      - [mongoose.Query.1, "Member[getOptions].ReturnValue.TypeVar[mongoose.QueryOptions.0]"]
+      - [mongoose.Query.1, "Member[getUpdate].ReturnValue.TypeVar[mongoose.UpdateQuery.0]"]
+      - [mongoose.Query.1, "Member[projection].WithArity[0,1].Argument[0].TypeVar[mongoose.ProjectionFields.0]"]
+      - [mongoose.Query.1, "Member[projection].WithArity[0,1].ReturnValue.TypeVar[mongoose.ProjectionFields.0]"]
+      - [mongoose.Query.1, "Member[remove].ReturnValue.TypeVar[mongoose.Query.1]"]
+      - [mongoose.Query.1, "Member[replaceOne,update,updateMany,updateOne].Argument[2].TypeVar[mongoose.QueryOptions.0]"]
+      - [mongoose.Query.1, "Member[replaceOne].Argument[1]"]
+      - [mongoose.Query.1, "Member[setUpdate].Argument[0].TypeVar[mongoose.UpdateQuery.0]"]
+      - [mongoose.Query.1, "Member[toConstructor].ReturnValue.Instance.TypeVar[mongoose.QueryWithHelpers.1]"]
+      - [mongoose.QueryOptions.0, "Member[projection].TypeVar[mongoose.ProjectionType.0]"]
+      - [mongoose.QueryWithHelpers.0, "TypeVar[mongoose.Query.0]"]
+      - [mongoose.QueryWithHelpers.1, "TypeVar[mongoose.Query.1]"]
+      - [mongoose.Require_id.0, ""]
+      - [mongoose.Require_id.0, "TypeVar[mongoose.IfAny.1,mongoose.IfAny.2]"]
+      - [mongoose.RootQuerySelector.0, "Member[$and,$nor,$or].ArrayElement.TypeVar[mongoose.FilterQuery.0]"]
+      - [mongoose.Schema.1, "Member[discriminator].ReturnValue.TypeVar[mongoose.DiscriminatorSchema.1]"]
+      - [mongoose.Schema.1, "Member[plugin].Argument[0].TypeVar[mongoose.PluginFunction.1]"]
+      - [mongoose.Schema.1, "Member[post].Argument[2].TypeVar[mongoose.ErrorHandlingMiddlewareFunction.0,mongoose.PostMiddlewareFunction.0,mongoose.PostMiddlewareFunction.1]"]
+      - [mongoose.Schema.1, "Member[post].WithArity[2].WithStringArgument[0=insertMany].Argument[1].TypeVar[mongoose.ErrorHandlingMiddlewareFunction.0,mongoose.PostMiddlewareFunction.0,mongoose.PostMiddlewareFunction.1]"]
+      - [mongoose.Types.Array.0, "Member[$pop,$shift,shift].ReturnValue"]
+      - [mongoose.Types.Array.0, "Member[set].Argument[1]"]
+      - [mongoose.Types.DocumentArray.0, "Member[create,id].ReturnValue"]
+      - [mongoose.Types.DocumentArray.0, "Member[create,id].ReturnValue.TypeVar[mongoose.Types.Subdocument.0].TypeVar[mongoose.InferId.0]"]
+      - [mongoose.Types.DocumentArray.0, "Member[push].Argument[0].ArrayElement.TypeVar[mongoose.AnyKeys.0]"]
+      - [mongoose.Types.DocumentArray.0, "TypeVar[mongoose.Types.Array.0]"]
+      - [mongoose.Types.DocumentArray.0, "TypeVar[mongoose.Types.Array.0].TypeVar[mongoose.Types.Subdocument.0].TypeVar[mongoose.InferId.0]"]
+      - [mongoose.Types.Subdocument.0, "TypeVar[mongoose.Document.0]"]
+      - [mongoose.UnpackedIntersection.0, ""]
+      - [mongoose.UpdateQuery.0, "TypeVar[mongoose._UpdateQuery.0].TypeVar[mongoose._UpdateQueryDef.0]"]
+      - [mongoose.VirtualType.0, "Member[get,set].Argument[0].Argument[1].TypeVar[mongoose.VirtualType.0]"]
+      - [mongoose.VirtualType.0, "Member[get,set].Argument[0].Argument[2]"]
+      - [mongoose.VirtualTypeOptions.0, "Member[foreignField,localField].Argument[0]"]
+      - [mongoose._FilterQuery.0, "TypeVar[mongoose.RootQuerySelector.0]"]
+      - [mongoose._UpdateQuery.0, "Member[$currentDate,$inc,$max,$min,$mul,$pop,$pull,$pullAll,$push,$set,$setOnInsert,$unset].TypeVar[mongoose.AnyKeys.0]"]
diff --git a/javascript/ql/lib/semmle/javascript/frameworks/mssql/model.yml b/javascript/ql/lib/semmle/javascript/frameworks/mssql/model.yml
new file mode 100644
index 00000000000..bbc3279b81d
--- /dev/null
+++ b/javascript/ql/lib/semmle/javascript/frameworks/mssql/model.yml
@@ -0,0 +1,39 @@
+extensions:
+  - addsTo: 
+      pack: codeql/javascript-all
+      extensible: typeModel
+    data:
+      - [mssql.ConnectionPool, mssql.ConnectionPool, "Member[connect].WithArity[0].ReturnValue.Awaited"]
+      - [mssql.ConnectionPool, mssql.ConnectionPoolStatic, Instance]
+      - [mssql.ConnectionPool, "mssql/msnodesqlv8", "Member[connect].ReturnValue.Awaited"]
+      - [mssql.ConnectionPool, "mssql/msnodesqlv8", "Member[pool]"]
+      - [mssql.ConnectionPool, mssql, "Member[connect].ReturnValue.Awaited"]
+      - [mssql.ConnectionPool, mssql, "Member[pool]"]
+      - [mssql.ConnectionPoolStatic, "mssql/msnodesqlv8", "Member[ConnectionPool]"]
+      - [mssql.ConnectionPoolStatic, mssql, "Member[ConnectionPool]"]
+      - [mssql.PreparedStatement, mssql.PreparedStatement, "Member[input,output].ReturnValue"]
+      - [mssql.PreparedStatement, mssql.PreparedStatement, "Member[prepare].WithArity[0,1,2].ReturnValue"]
+      - [mssql.PreparedStatement, mssql.PreparedStatement, "Member[unprepare].WithArity[1].ReturnValue"]
+      - [mssql.PreparedStatement, mssql.PreparedStatementStatic, Instance]
+      - [mssql.PreparedStatement, mssql.Request, "Member[pstatement]"]
+      - [mssql.PreparedStatementStatic, "mssql/msnodesqlv8", "Member[PreparedStatement]"]
+      - [mssql.PreparedStatementStatic, mssql, "Member[PreparedStatement]"]
+      - [mssql.Request, mssql.ConnectionPool, "Member[request].ReturnValue"]
+      - [mssql.Request, mssql.PreparedStatement, "Member[execute].WithArity[2].ReturnValue"]
+      - [mssql.Request, mssql.Request, "Member[input,output,replaceInput].ReturnValue"]
+      - [mssql.Request, mssql.Request, "Member[replaceOutput].ReturnValue"]
+      - [mssql.Request, mssql.RequestStatic, Instance]
+      - [mssql.Request, mssql.Transaction, "Member[request].ReturnValue"]
+      - [mssql.RequestStatic, "mssql/msnodesqlv8", "Member[Request]"]
+      - [mssql.RequestStatic, mssql, "Member[Request]"]
+      - [mssql.Transaction, mssql.ConnectionPool, "Member[transaction].ReturnValue"]
+      - [mssql.Transaction, mssql.PreparedStatement, "Member[transaction]"]
+      - [mssql.Transaction, mssql.Request, "Member[transaction]"]
+      - [mssql.Transaction, mssql.Transaction, "Member[begin].WithArity[0,1,2].ReturnValue"]
+      - [mssql.Transaction, mssql.Transaction, "Member[begin].WithArity[0,1].ReturnValue.Awaited"]
+      - [mssql.Transaction, mssql.TransactionStatic, Instance]
+      - [mssql.TransactionStatic, "mssql/msnodesqlv8", "Member[Transaction]"]
+      - [mssql.TransactionStatic, mssql, "Member[Transaction]"]
+      - [mssql.config, mssql.ConnectionPoolStatic, "WithArity[1,2].Argument[0]"]
+      - [mssql.config, "mssql/msnodesqlv8", "Member[connect].Argument[0]"]
+      - [mssql.config, mssql, "Member[connect].Argument[0]"]
diff --git a/javascript/ql/lib/semmle/javascript/frameworks/mysql/model.yml b/javascript/ql/lib/semmle/javascript/frameworks/mysql/model.yml
new file mode 100644
index 00000000000..506dc42b7c3
--- /dev/null
+++ b/javascript/ql/lib/semmle/javascript/frameworks/mysql/model.yml
@@ -0,0 +1,70 @@
+extensions:
+  - addsTo: 
+      pack: codeql/javascript-all
+      extensible: typeModel
+    data:
+      - [mysql.Connection, mysql.Pool, "Member[on,addListener].WithStringArgument[0=acquire,0=connection,0=release].Argument[1].Argument[0]"]
+      - [mysql.Connection, mysql.PoolConnection, ""]
+      - [mysql.Connection, mysql.Query, "Member[RowDataPacket].Argument[2]"]
+      - [mysql.Connection, mysql, "Member[createConnection].ReturnValue"]
+      - [mysql.ConnectionConfig, mysql.Connection, "Member[config]"]
+      - [mysql.ConnectionConfig, mysql.PoolConfig, ""]
+      - [mysql.ConnectionConfig, mysql, "Member[createConnection].Argument[0]"]
+      - [mysql.ConnectionOptions, mysql.Connection, "Member[changeUser].WithArity[1,2].Argument[0]"]
+      - [mysql.ConnectionOptions, mysql.ConnectionConfig, ""]
+      - [mysql.Pool, mysql.PoolCluster, "Member[of].ReturnValue"]
+      - [mysql.Pool, mysql, "Member[createPool].ReturnValue"]
+      - [mysql.PoolCluster, mysql, "Member[createPoolCluster].ReturnValue"]
+      - [mysql.PoolConfig, mysql.PoolCluster, "Member[add].Argument[1]"]
+      - [mysql.PoolConfig, mysql.PoolCluster, "Member[add].WithArity[1].Argument[0]"]
+      - [mysql.PoolConfig, mysql, "Member[createPool].Argument[0]"]
+      - [mysql.PoolConnection, mysql.Pool, "Member[acquireConnection].Argument[0]"]
+      - [mysql.PoolConnection, mysql.Pool, "Member[acquireConnection].Argument[1].Argument[1]"]
+      - [mysql.PoolConnection, mysql.Pool, "Member[getConnection].Argument[0].Argument[1]"]
+      - [mysql.PoolConnection, mysql.PoolCluster, "Member[getConnection].Argument[1,2].Argument[1]"]
+      - [mysql.PoolConnection, mysql.PoolCluster, "Member[getConnection].WithArity[1].Argument[0].Argument[1]"]
+      - [mysql.Query, mysql.Query, "Member[on].ReturnValue"]
+      - [mysql.Query, mysql.QueryFunction, ReturnValue]
+      - [mysql.Query, mysql.QueryFunction, "WithArity[1].Argument[0]"]
+      - [mysql.QueryFunction, mysql.Connection, "Member[createQuery,query]"]
+      - [mysql.QueryFunction, mysql.Pool, "Member[query]"]
+      - [mysql2.Connection, mysql2.PoolConnection, ""]
+      - [mysql2.Connection, mysql2.authPlugins, "Argument[0].Member[connection]"]
+      - [mysql2.Connection, mysql2, "Member[createConnection].ReturnValue"]
+      - [mysql2.ConnectionOptions, mysql2.PoolOptions, ""]
+      - [mysql2.ConnectionOptions, "mysql2/promise.Connection", "Member[changeUser].Argument[0]"]
+      - [mysql2.ConnectionOptions, "mysql2/promise.Connection", "Member[config]"]
+      - [mysql2.ConnectionOptions, "mysql2/promise", "Member[createConnection].Argument[0]"]
+      - [mysql2.ConnectionOptions, mysql2, "Member[createConnection].Argument[0]"]
+      - [mysql2.Pool, mysql2.Pool, "Member[addListener,on,once,prependListener,prependOnceListener].ReturnValue"]
+      - [mysql2.Pool, mysql2, "Member[createPool].ReturnValue"]
+      - [mysql2.PoolConnection, mysql2.Pool, "Member[addListener,on,once,prependListener,prependOnceListener].WithArity[2].WithStringArgument[0=acquire,0=connection,0=release].Argument[1].Argument[0]"]
+      - [mysql2.PoolConnection, mysql2.Pool, "Member[getConnection].Argument[0].Argument[1]"]
+      - [mysql2.PoolOptions, "mysql2/promise", "Member[createPool].Argument[0]"]
+      - [mysql2.PoolOptions, mysql2, "Member[createPool].Argument[0]"]
+      - [mysql2.authPlugins, mysql2.ConnectionOptions, "Member[authPlugins].AnyMember"]
+      - ["mysql2/promise.Connection", mysql2.Connection, "Member[promise].ReturnValue"]
+      - ["mysql2/promise.Connection", "mysql2/promise.PoolConnection", ""]
+      - ["mysql2/promise.Connection", "mysql2/promise", "Member[createConnectionPromise].ReturnValue.Awaited"]
+      - ["mysql2/promise.Connection", "mysql2/promise", "Member[createConnection].ReturnValue.Awaited"]
+      - ["mysql2/promise.Connection", mysql2, "Member[createConnectionPromise].ReturnValue.Awaited"]
+      - ["mysql2/promise.Pool", mysql2.Pool, "Member[promise].ReturnValue"]
+      - ["mysql2/promise.Pool", "mysql2/promise.Pool", "Member[addListener,on,once,prependListener,prependOnceListener].ReturnValue"]
+      - ["mysql2/promise.Pool", "mysql2/promise", "Member[createPool].ReturnValue"]
+      - ["mysql2/promise.PoolConnection", mysql2.PoolConnection, "Member[promise].ReturnValue"]
+      - ["mysql2/promise.PoolConnection", "mysql2/promise.Pool", "Member[addListener,on,once,prependListener,prependOnceListener].WithArity[2].WithStringArgument[0=acquire,0=connection,0=release].Argument[1].Argument[0]"]
+      - ["mysql2/promise.PoolConnection", "mysql2/promise.Pool", "Member[getConnection].ReturnValue.Awaited"]
+      - ["mysql2/typings/mysql.Connection", mysql2.Connection, ""]
+      - ["mysql2/typings/mysql.Connection", mysql2.Pool, ""]
+      - ["mysql2/typings/mysql.PoolConnection", mysql2.PoolConnection, ""]
+      - ["mysql2/typings/mysql/lib/Connection", "mysql2/typings/mysql.Connection", ""]
+      - ["mysql2/typings/mysql/lib/Connection", "mysql2/typings/mysql/lib/PoolConnection", ""]
+      - ["mysql2/typings/mysql/lib/PoolConnection", "mysql2/typings/mysql.PoolConnection", ""]
+
+  - addsTo: 
+      pack: codeql/javascript-all
+      extensible: summaryModel
+    data:
+      - [mysql2.Pool, "", "", "Member[addListener,on,once,prependListener,prependOnceListener].ReturnValue", type]
+      - ["mysql2/promise.Pool", "", "", "Member[addListener,on,once,prependListener,prependOnceListener].ReturnValue", type]
+      - ["mysql2/typings/mysql/lib/Connection", "", "", "Member[addListener,on,once,prependListener,prependOnceListener].ReturnValue", type]
diff --git a/javascript/ql/lib/semmle/javascript/frameworks/pg/model.yml b/javascript/ql/lib/semmle/javascript/frameworks/pg/model.yml
new file mode 100644
index 00000000000..27207b6aff9
--- /dev/null
+++ b/javascript/ql/lib/semmle/javascript/frameworks/pg/model.yml
@@ -0,0 +1,108 @@
+extensions:
+  - addsTo: 
+      pack: codeql/javascript-all
+      extensible: typeModel
+    data:
+      - [events, "pg-cursor", ""]
+      - [events, "pg-promise/pg-subset.pg.IClient", ""]
+      - [events, "pg-promise/pg-subset.pg.IConnection", ""]
+      - [events, "pg-promise/pg-subset.pg.IPool", ""]
+      - [events, pg.ClientBase, ""]
+      - [events, pg.Events, ""]
+      - [events, pg.Pool, ""]
+      - [global.NodeJS.EventEmitter, events, ""]
+      - ["pg-cursor.Static", "pg-cursor", ""]
+      - ["pg-cursor", "pg-cursor.Static", Instance]
+      - ["pg-pool.Static", "pg-pool", ""]
+      - ["pg-pool", "pg-pool.Static", Instance]
+      - ["pg-pool", "pg-pool", "Member[addListener,on,once,prependListener,prependOnceListener].ReturnValue"]
+      - ["pg-promise.IBaseProtocol", "pg-promise.IConnected", ""]
+      - ["pg-promise.IBaseProtocol", "pg-promise.IDatabase", ""]
+      - ["pg-promise.IBaseProtocol", "pg-promise.ITask", ""]
+      - ["pg-promise.IBaseProtocol", "pg-promise/typescript/pg-promise.IBaseProtocol", ""]
+      - ["pg-promise.IConnected", "pg-promise.IDatabase", "Member[connect].ReturnValue.Awaited"]
+      - ["pg-promise.IConnected", "pg-promise/typescript/pg-promise.IConnected", ""]
+      - ["pg-promise.IDatabase", "pg-promise.IInitOptions", "Member[extend].Argument[0]"]
+      - ["pg-promise.IDatabase", "pg-promise.IMain", ReturnValue]
+      - ["pg-promise.IDatabase", "pg-promise/typescript/pg-promise.IDatabase", ""]
+      - ["pg-promise.IInitOptions", "pg-promise.ILibConfig", "Member[options]"]
+      - ["pg-promise.IInitOptions", "pg-promise/typescript/pg-promise.IInitOptions", ""]
+      - ["pg-promise.IInitOptions", "pg-promise", "Argument[0]"]
+      - ["pg-promise.ILibConfig", "pg-promise.IDatabase", "Member[$config]"]
+      - ["pg-promise.ILibConfig", "pg-promise/typescript/pg-promise.ILibConfig", ""]
+      - ["pg-promise.IMain", "pg-promise.ILibConfig", "Member[pgp]"]
+      - ["pg-promise.IMain", "pg-promise/typescript/pg-promise.IMain", ""]
+      - ["pg-promise.IMain", "pg-promise", ReturnValue]
+      - ["pg-promise.ITask", "pg-promise.IBaseProtocol", "Member[task,taskIf,tx,txIf].Argument[1].Argument[0]"]
+      - ["pg-promise.ITask", "pg-promise.IBaseProtocol", "Member[task,taskIf,tx,txIf].WithArity[1].Argument[0].Argument[0]"]
+      - ["pg-promise.ITask", "pg-promise.IBaseProtocol", "Member[taskIf].WithArity[2].Argument[0].Member[cnd].Argument[0]"]
+      - ["pg-promise.ITask", "pg-promise.IBaseProtocol", "Member[txIf].WithArity[2].Argument[0].Member[cnd,reusable].Argument[0]"]
+      - ["pg-promise.ITask", "pg-promise/typescript/pg-promise.ITask", ""]
+      - ["pg-promise/pg-subset.pg.IClient", "pg-promise.IMain", "Argument[0].TypeVar[pg-promise/pg-subset.pg.IConnectionParameters.0]"]
+      - ["pg-promise/pg-subset.pg.IClient", "pg-promise.IMain", "ReturnValue.TypeVar[pg-promise.IDatabase.1]"]
+      - ["pg-promise/pg-subset.pg.IClient", "pg-promise/pg-subset", "Member[Client].Instance"]
+      - ["pg-promise/pg-subset.pg.IClient", "pg-promise", "Argument[0].TypeVar[pg-promise.IInitOptions.1]"]
+      - ["pg-promise/pg-subset.pg.IConnection", "pg-promise/pg-subset.pg.IClient", "Member[connection]"]
+      - ["pg-promise/pg-subset.pg.IPool", "pg-promise.IDatabase", "Member[$pool]"]
+      - [pg.Client, "pg-pool.Static", "Instance.TypeVar[pg-pool.0]"]
+      - [pg.Client, "pg-promise/pg-subset.pg.IClient", ""]
+      - [pg.Client, pg.ClientStatic, Instance]
+      - [pg.Client, pg.Events, "Member[addListener,on,once,prependListener,prependOnceListener].Argument[1].Argument[1]"]
+      - [pg.ClientBase, pg.Client, ""]
+      - [pg.ClientBase, pg.PoolClient, ""]
+      - [pg.ClientStatic, pg, "Member[Client]"]
+      - [pg.Connection, "pg-promise/pg-subset.pg.IConnection", ""]
+      - [pg.Events, pg.Events, "Member[addListener,on,once,prependListener,prependOnceListener].ReturnValue"]
+      - [pg.Events, pg.EventsStatic, Instance]
+      - [pg.EventsStatic, pg, "Member[Events]"]
+      - [pg.Pool, "pg-pool", ""]
+      - [pg.Pool, "pg-promise/pg-subset.pg.IPool", ""]
+      - [pg.Pool, pg.Pool, "Member[addListener,on,once,prependListener,prependOnceListener].ReturnValue"]
+      - [pg.Pool, pg.PoolStatic, Instance]
+      - [pg.PoolClient, "pg-pool", "Member[addListener,on,once,prependListener,prependOnceListener].WithArity[2].WithStringArgument[0=acquire,0=connect,0=remove].Argument[1].Argument[0]"]
+      - [pg.PoolClient, "pg-pool", "Member[addListener,on,once,prependListener,prependOnceListener].WithArity[2].WithStringArgument[0=error].Argument[1].Argument[1]"]
+      - [pg.PoolClient, "pg-pool", "Member[connect].Argument[0].Argument[1]"]
+      - [pg.PoolClient, "pg-pool", "Member[connect].WithArity[0].ReturnValue.Awaited"]
+      - [pg.PoolClient, pg.Pool, "Member[addListener,on,once,prependListener,prependOnceListener].WithArity[2].WithStringArgument[0=acquire,0=connect,0=remove].Argument[1].Argument[0]"]
+      - [pg.PoolClient, pg.Pool, "Member[addListener,on,once,prependListener,prependOnceListener].WithArity[2].WithStringArgument[0=error].Argument[1].Argument[1]"]
+      - [pg.PoolClient, pg.Pool, "Member[connect].Argument[0].Argument[1]"]
+      - [pg.PoolClient, pg.Pool, "Member[connect].WithArity[0].ReturnValue.Awaited"]
+      - [pg.PoolStatic, pg, "Member[Pool]"]
+
+  - addsTo: 
+      pack: codeql/javascript-all
+      extensible: summaryModel
+    data:
+      - [global.NodeJS.EventEmitter, "", "", "Member[addListener,off,on,once,prependListener,prependOnceListener,removeAllListeners,removeListener,setMaxListeners].ReturnValue", type]
+      - ["pg-pool", "", "", "Member[addListener,on,once,prependListener,prependOnceListener].ReturnValue", type]
+      - [pg.ClientBase, "", "", "Member[addListener,on,once,prependListener,prependOnceListener].ReturnValue", type]
+      - [pg.Events, "", "", "Member[addListener,on,once,prependListener,prependOnceListener].ReturnValue", type]
+      - [pg.Pool, "", "", "Member[addListener,on,once,prependListener,prependOnceListener].ReturnValue", type]
+
+  - addsTo: 
+      pack: codeql/javascript-all
+      extensible: typeVariableModel
+    data:
+      - ["pg-pool.0", "Member[Client].TypeVar[pg-pool.ClientLikeCtr.0]"]
+      - ["pg-pool.0", "Member[addListener,on,once,prependListener,prependOnceListener].WithArity[2].WithStringArgument[0=acquire,0=connect,0=remove].Argument[1].Argument[0]"]
+      - ["pg-pool.0", "Member[addListener,on,once,prependListener,prependOnceListener].WithArity[2].WithStringArgument[0=error].Argument[1].Argument[1]"]
+      - ["pg-pool.0", "Member[connect].Argument[0].Argument[1]"]
+      - ["pg-pool.0", "Member[connect].WithArity[0].ReturnValue.Awaited"]
+      - ["pg-pool.ClientLikeCtr.0", Instance]
+      - ["pg-promise.IConnected.1", "Member[client]"]
+      - ["pg-promise.IConnectionOptions.0", "Member[onLost].Argument[1].TypeVar[pg-promise.ILostContext.0]"]
+      - ["pg-promise.IDatabase.1", "Member[$cn].TypeVar[pg-promise/pg-subset.pg.IConnectionParameters.0]"]
+      - ["pg-promise.IDatabase.1", "Member[$config].TypeVar[pg-promise.ILibConfig.1]"]
+      - ["pg-promise.IDatabase.1", "Member[connect].Argument[0].TypeVar[pg-promise.IConnectionOptions.0]"]
+      - ["pg-promise.IDatabase.1", "Member[connect].ReturnValue.Awaited.TypeVar[pg-promise.IConnected.1]"]
+      - ["pg-promise.IEventContext.0", "Member[client]"]
+      - ["pg-promise.IInitOptions.1", "Member[connect,disconnect].Argument[0]"]
+      - ["pg-promise.IInitOptions.1", "Member[error].Argument[1].TypeVar[pg-promise.IEventContext.0]"]
+      - ["pg-promise.IInitOptions.1", "Member[extend].Argument[0].TypeVar[pg-promise.IDatabase.1]"]
+      - ["pg-promise.IInitOptions.1", "Member[query,task,transact].Argument[0].TypeVar[pg-promise.IEventContext.0]"]
+      - ["pg-promise.IInitOptions.1", "Member[receive].Argument[2].TypeVar[pg-promise.IEventContext.0]"]
+      - ["pg-promise.ILibConfig.1", "Member[options].TypeVar[pg-promise.IInitOptions.1]"]
+      - ["pg-promise.ILibConfig.1", "Member[pgp].TypeVar[pg-promise.IMain.1]"]
+      - ["pg-promise.ILostContext.0", "Member[client]"]
+      - ["pg-promise/pg-promise.XPromise.0", Awaited]
+      - ["pg-promise/pg-subset.pg.IConnectionParameters.0", "Member[Client].Instance"]
diff --git a/javascript/ql/lib/semmle/javascript/frameworks/sequelize/model.yml b/javascript/ql/lib/semmle/javascript/frameworks/sequelize/model.yml
new file mode 100644
index 00000000000..41a97e63a76
--- /dev/null
+++ b/javascript/ql/lib/semmle/javascript/frameworks/sequelize/model.yml
@@ -0,0 +1,282 @@
+extensions:
+  - addsTo: 
+      pack: codeql/javascript-all
+      extensible: sinkModel
+    data:
+      - [sequelize.Sequelize, "Member[query].Argument[0].Member[query]", "sql-injection"]
+      - [sequelize.Sequelize, "Member[query].Argument[0]", "sql-injection"]
+      - [sequelize.SequelizeStaticAndInstance, "Member[asIs,literal].Argument[0]", "sql-injection"]
+      - [sequelize, "Argument[0..].Member[password]", "credentials[password]"]
+      - [sequelize, "Argument[0..].Member[username]", "credentials[username]"]
+      - [sequelize, "Argument[1]", "credentials[username]"]
+      - [sequelize, "Argument[2]", "credentials[password]"]
+
+  - addsTo: 
+      pack: codeql/javascript-all
+      extensible: typeModel
+    data:
+      - ["sequelize-typescript.AssociationCountOptions", "sequelize-typescript.Model", "Member[$count].Argument[1]"]
+      - ["sequelize-typescript.AssociationCountOptions", "sequelize-typescript/model/model/association/association-count-options.AssociationCountOptions", ""]
+      - ["sequelize-typescript.AssociationGetOptions", "sequelize-typescript.Model", "Member[$get].Argument[1]"]
+      - ["sequelize-typescript.AssociationGetOptions", "sequelize-typescript.Model", "Member[$has].Argument[2]"]
+      - ["sequelize-typescript.AssociationGetOptions", "sequelize-typescript/model/model/association/association-get-options.AssociationGetOptions", ""]
+      - ["sequelize-typescript.BaseAssociation", "sequelize-typescript.BaseAssociationStatic", Instance]
+      - ["sequelize-typescript.BaseAssociation", "sequelize-typescript.BelongsToAssociation", ""]
+      - ["sequelize-typescript.BaseAssociation", "sequelize-typescript.BelongsToManyAssociation", ""]
+      - ["sequelize-typescript.BaseAssociation", "sequelize-typescript.HasAssociation", ""]
+      - ["sequelize-typescript.BaseAssociation", "sequelize-typescript/associations/shared/association-service", "Member[addAssociation].Argument[1]"]
+      - ["sequelize-typescript.BaseAssociation", "sequelize-typescript/associations/shared/association-service", "Member[getAssociations,getAssociationsByRelation].ReturnValue.ArrayElement"]
+      - ["sequelize-typescript.BaseAssociation", "sequelize-typescript/associations/shared/association-service", "Member[setAssociations].Argument[1].ArrayElement"]
+      - ["sequelize-typescript.BaseAssociation", "sequelize-typescript/associations/shared/base-association.BaseAssociation", ""]
+      - ["sequelize-typescript.BaseAssociation", "sequelize-typescript", "Member[addAssociation].Argument[1]"]
+      - ["sequelize-typescript.BaseAssociation", "sequelize-typescript", "Member[getAssociations,getAssociationsByRelation].ReturnValue.ArrayElement"]
+      - ["sequelize-typescript.BaseAssociation", "sequelize-typescript", "Member[setAssociations].Argument[1].ArrayElement"]
+      - ["sequelize-typescript.BaseAssociationStatic", "sequelize-typescript/associations/shared/base-association.BaseAssociationStatic", ""]
+      - ["sequelize-typescript.BaseAssociationStatic", "sequelize-typescript/associations/shared/base-association", "Member[BaseAssociation]"]
+      - ["sequelize-typescript.BaseAssociationStatic", "sequelize-typescript", "Member[BaseAssociation]"]
+      - ["sequelize-typescript.BelongsToAssociation", "sequelize-typescript.BelongsToAssociationStatic", Instance]
+      - ["sequelize-typescript.BelongsToAssociation", "sequelize-typescript/associations/belongs-to/belongs-to-association.BelongsToAssociation", ""]
+      - ["sequelize-typescript.BelongsToAssociationStatic", "sequelize-typescript/associations/belongs-to/belongs-to-association.BelongsToAssociationStatic", ""]
+      - ["sequelize-typescript.BelongsToAssociationStatic", "sequelize-typescript/associations/belongs-to/belongs-to-association", "Member[BelongsToAssociation]"]
+      - ["sequelize-typescript.BelongsToAssociationStatic", "sequelize-typescript", "Member[BelongsToAssociation]"]
+      - ["sequelize-typescript.BelongsToManyAssociation", "sequelize-typescript.BelongsToManyAssociationStatic", Instance]
+      - ["sequelize-typescript.BelongsToManyAssociation", "sequelize-typescript/associations/belongs-to-many/belongs-to-many-association.BelongsToManyAssociation", ""]
+      - ["sequelize-typescript.BelongsToManyAssociationStatic", "sequelize-typescript/associations/belongs-to-many/belongs-to-many-association.BelongsToManyAssociationStatic", ""]
+      - ["sequelize-typescript.BelongsToManyAssociationStatic", "sequelize-typescript/associations/belongs-to-many/belongs-to-many-association", "Member[BelongsToManyAssociation]"]
+      - ["sequelize-typescript.BelongsToManyAssociationStatic", "sequelize-typescript", "Member[BelongsToManyAssociation]"]
+      - ["sequelize-typescript.DefaultScopeGetter", "sequelize-typescript.ScopeOptionsGetters", "Member[getDefaultScope]"]
+      - ["sequelize-typescript.DefaultScopeGetter", "sequelize-typescript/scopes/default-scope", "Member[DefaultScope].Argument[0]"]
+      - ["sequelize-typescript.DefaultScopeGetter", "sequelize-typescript/scopes/scope-options.DefaultScopeGetter", ""]
+      - ["sequelize-typescript.DefaultScopeGetter", "sequelize-typescript", "Member[DefaultScope].Argument[0]"]
+      - ["sequelize-typescript.HasAssociation", "sequelize-typescript.HasAssociationStatic", Instance]
+      - ["sequelize-typescript.HasAssociation", "sequelize-typescript/associations/has/has-association.HasAssociation", ""]
+      - ["sequelize-typescript.HasAssociationStatic", "sequelize-typescript/associations/has/has-association.HasAssociationStatic", ""]
+      - ["sequelize-typescript.HasAssociationStatic", "sequelize-typescript/associations/has/has-association", "Member[HasAssociation]"]
+      - ["sequelize-typescript.HasAssociationStatic", "sequelize-typescript", "Member[HasAssociation]"]
+      - ["sequelize-typescript.Model", "sequelize-typescript.Model", "Member[$add,$has,$remove,$set].Argument[1]"]
+      - ["sequelize-typescript.Model", "sequelize-typescript.Model", "Member[$add,$has,$remove,$set].Argument[1].ArrayElement"]
+      - ["sequelize-typescript.Model", "sequelize-typescript.Model", "Member[$create,reload].ReturnValue.Awaited"]
+      - ["sequelize-typescript.Model", "sequelize-typescript.ModelStatic~", Instance]
+      - ["sequelize-typescript.Model", "sequelize-typescript.ModelStatic~", "Member[initialize].ReturnValue.TypeVar[sequelize-typescript.ModelStatic.0]"]
+      - ["sequelize-typescript.Model", "sequelize-typescript.ModelType", Instance]
+      - ["sequelize-typescript.Model", "sequelize-typescript.Sequelize", "Member[getRepository].Argument[0].Instance"]
+      - ["sequelize-typescript.Model", "sequelize-typescript.Sequelize", "Member[getRepository].ReturnValue.TypeVar[sequelize-typescript.Repository.0]"]
+      - ["sequelize-typescript.Model", "sequelize-typescript/model/model/model.Model", ""]
+      - ["sequelize-typescript.ModelClassGetter", "sequelize-typescript.BaseAssociationStatic", "Argument[0]"]
+      - ["sequelize-typescript.ModelClassGetter", "sequelize-typescript.BelongsToAssociationStatic", "Argument[0]"]
+      - ["sequelize-typescript.ModelClassGetter", "sequelize-typescript.BelongsToManyAssociationStatic", "Argument[0]"]
+      - ["sequelize-typescript.ModelClassGetter", "sequelize-typescript.HasAssociationStatic", "Argument[0]"]
+      - ["sequelize-typescript.ModelClassGetter", "sequelize-typescript/associations/belongs-to-many/belongs-to-many", "Member[BelongsToMany].Argument[0,1]"]
+      - ["sequelize-typescript.ModelClassGetter", "sequelize-typescript/associations/belongs-to/belongs-to", "Member[BelongsTo].Argument[0]"]
+      - ["sequelize-typescript.ModelClassGetter", "sequelize-typescript/associations/foreign-key/foreign-key-meta.ForeignKeyMeta", "Member[relatedClassGetter]"]
+      - ["sequelize-typescript.ModelClassGetter", "sequelize-typescript/associations/foreign-key/foreign-key-service", "Member[addForeignKey].Argument[1]"]
+      - ["sequelize-typescript.ModelClassGetter", "sequelize-typescript/associations/foreign-key/foreign-key", "Member[ForeignKey].Argument[0]"]
+      - ["sequelize-typescript.ModelClassGetter", "sequelize-typescript/associations/has/has-many", "Member[HasMany].Argument[0]"]
+      - ["sequelize-typescript.ModelClassGetter", "sequelize-typescript/associations/has/has-one", "Member[HasOne].Argument[0]"]
+      - ["sequelize-typescript.ModelClassGetter", "sequelize-typescript/model/shared/model-class-getter.ModelClassGetter", ""]
+      - ["sequelize-typescript.ModelClassGetter", "sequelize-typescript", "Member[BelongsTo,ForeignKey,HasMany,HasOne].Argument[0]"]
+      - ["sequelize-typescript.ModelClassGetter", "sequelize-typescript", "Member[BelongsToMany].Argument[0,1]"]
+      - ["sequelize-typescript.ModelStatic~", "sequelize-typescript/model/model/model.ModelStatic~", ""]
+      - ["sequelize-typescript.ModelStatic~", "sequelize-typescript/model/model/model", "Member[Model]"]
+      - ["sequelize-typescript.ModelStatic~", "sequelize-typescript/model/shared/model-not-initialized-error.ModelNotInitializedErrorStatic", "Argument[0]"]
+      - ["sequelize-typescript.ModelStatic~", "sequelize-typescript", "Member[Model]"]
+      - ["sequelize-typescript.ModelType", "sequelize-typescript.BaseAssociation", "Member[getAssociatedClass].ReturnValue"]
+      - ["sequelize-typescript.ModelType", "sequelize-typescript.BaseAssociation", "Member[getSequelizeOptions].Argument[0]"]
+      - ["sequelize-typescript.ModelType", "sequelize-typescript.BelongsToAssociation", "Member[getSequelizeOptions].Argument[0]"]
+      - ["sequelize-typescript.ModelType", "sequelize-typescript.BelongsToManyAssociation", "Member[getSequelizeOptions].Argument[0]"]
+      - ["sequelize-typescript.ModelType", "sequelize-typescript.HasAssociation", "Member[getSequelizeOptions].Argument[0]"]
+      - ["sequelize-typescript.ModelType", "sequelize-typescript.ModelClassGetter", ReturnValue]
+      - ["sequelize-typescript.ModelType", "sequelize-typescript.Sequelize", "Member[model].Argument[0]"]
+      - ["sequelize-typescript.ModelType", "sequelize-typescript/associations/foreign-key/foreign-key-service", "Member[getForeignKeyOptions].Argument[0,1]"]
+      - ["sequelize-typescript.ModelType", "sequelize-typescript/model/model/model.ModelType", ""]
+      - ["sequelize-typescript.ScopeOptionsGetters", "sequelize-typescript/scopes/scope-options.ScopeOptionsGetters", ""]
+      - ["sequelize-typescript.ScopeOptionsGetters", "sequelize-typescript/scopes/scope-service", "Member[addScopeOptionsGetter,setScopeOptionsGetters].Argument[1]"]
+      - ["sequelize-typescript.ScopeOptionsGetters", "sequelize-typescript/scopes/scope-service", "Member[getScopeOptionsGetters].ReturnValue"]
+      - ["sequelize-typescript.ScopeOptionsGetters", "sequelize-typescript", "Member[addScopeOptionsGetter,setScopeOptionsGetters].Argument[1]"]
+      - ["sequelize-typescript.ScopeOptionsGetters", "sequelize-typescript", "Member[getScopeOptionsGetters].ReturnValue"]
+      - ["sequelize-typescript.ScopesOptions", "sequelize-typescript.ScopesOptionsGetter", ReturnValue.AnyMember]
+      - ["sequelize-typescript.ScopesOptions", "sequelize-typescript/scopes/scope-options.ScopesOptions", ""]
+      - ["sequelize-typescript.ScopesOptions", "sequelize-typescript/scopes/scope-service", "Member[resolveScope].Argument[2]"]
+      - ["sequelize-typescript.ScopesOptions", "sequelize-typescript", "Member[resolveScope].Argument[2]"]
+      - ["sequelize-typescript.ScopesOptionsGetter", "sequelize-typescript.ScopeOptionsGetters", "Member[getScopes]"]
+      - ["sequelize-typescript.ScopesOptionsGetter", "sequelize-typescript/scopes/scope-options.ScopesOptionsGetter", ""]
+      - ["sequelize-typescript.ScopesOptionsGetter", "sequelize-typescript/scopes/scopes", "Member[Scopes].Argument[0]"]
+      - ["sequelize-typescript.ScopesOptionsGetter", "sequelize-typescript", "Member[Scopes].Argument[0]"]
+      - ["sequelize-typescript.Sequelize", "sequelize-typescript.BaseAssociation", "Member[getSequelizeOptions].Argument[1]"]
+      - ["sequelize-typescript.Sequelize", "sequelize-typescript.BelongsToManyAssociation", "Member[getSequelizeOptions].Argument[1]"]
+      - ["sequelize-typescript.Sequelize", "sequelize-typescript.SequelizeStatic", Instance]
+      - ["sequelize-typescript.Sequelize", "sequelize-typescript/sequelize/sequelize/sequelize.Sequelize", ""]
+      - ["sequelize-typescript.SequelizeOptions", "sequelize-typescript.Sequelize", "Member[options]"]
+      - ["sequelize-typescript.SequelizeOptions", "sequelize-typescript.SequelizeStatic", "Argument[3]"]
+      - ["sequelize-typescript.SequelizeOptions", "sequelize-typescript.SequelizeStatic", "WithArity[0].Argument[0]"]
+      - ["sequelize-typescript.SequelizeOptions", "sequelize-typescript.SequelizeStatic", "WithArity[1].Argument[0,1]"]
+      - ["sequelize-typescript.SequelizeOptions", "sequelize-typescript.SequelizeStatic", "WithArity[2].Argument[1,2]"]
+      - ["sequelize-typescript.SequelizeOptions", "sequelize-typescript.SequelizeStatic", "WithArity[3].Argument[2]"]
+      - ["sequelize-typescript.SequelizeOptions", "sequelize-typescript/sequelize/sequelize/sequelize-options.SequelizeOptions", ""]
+      - ["sequelize-typescript.SequelizeOptions", "sequelize-typescript/sequelize/sequelize/sequelize-service", "Member[prepareArgs].ReturnValue.Member[options]"]
+      - ["sequelize-typescript.SequelizeOptions", "sequelize-typescript/sequelize/sequelize/sequelize-service", "Member[prepareOptions].Argument[0]"]
+      - ["sequelize-typescript.SequelizeOptions", "sequelize-typescript/sequelize/sequelize/sequelize-service", "Member[prepareOptions].ReturnValue"]
+      - ["sequelize-typescript.SequelizeOptions", "sequelize-typescript", "Member[prepareArgs].ReturnValue.Member[options]"]
+      - ["sequelize-typescript.SequelizeOptions", "sequelize-typescript", "Member[prepareOptions].Argument[0]"]
+      - ["sequelize-typescript.SequelizeOptions", "sequelize-typescript", "Member[prepareOptions].ReturnValue"]
+      - ["sequelize-typescript.SequelizeStatic", "sequelize-typescript/sequelize/sequelize/sequelize.SequelizeStatic", ""]
+      - ["sequelize-typescript.SequelizeStatic", "sequelize-typescript/sequelize/sequelize/sequelize", "Member[Sequelize]"]
+      - ["sequelize-typescript.SequelizeStatic", "sequelize-typescript", "Member[Sequelize]"]
+      - ["sequelize-typescript/associations/foreign-key/foreign-key-meta.ForeignKeyMeta", "sequelize-typescript/associations/foreign-key/foreign-key-service", "Member[getForeignKeys].ReturnValue.ArrayElement"]
+      - ["sequelize-typescript/model/model/association/association-create-options.AssociationCreateOptions", "sequelize-typescript.Model", "Member[$create].Argument[2]"]
+      - ["sequelize-typescript/model/shared/model-not-initialized-error.ModelNotInitializedErrorStatic", "sequelize-typescript/model/shared/model-not-initialized-error", "Member[ModelNotInitializedError]"]
+      - [sequelize.AnyFindOptions, sequelize.BelongsToManyAddAssociationMixin, "Argument[1]"]
+      - [sequelize.AnyFindOptions, sequelize.BelongsToManyAddAssociationsMixin, "Argument[1]"]
+      - [sequelize.AnyFindOptions, sequelize.BelongsToManySetAssociationsMixin, "Argument[1]"]
+      - [sequelize.AnyFindOptions, sequelize.DefineOptions, "Member[defaultScope]"]
+      - [sequelize.AnyFindOptions, sequelize.DefineScopeOptions, AnyMember]
+      - [sequelize.AnyFindOptions, sequelize.HasManySetAssociationsMixin, "Argument[1]"]
+      - [sequelize.AnyFindOptions, sequelize.Instance, "Member[reload].Argument[0]"]
+      - [sequelize.AnyFindOptions, sequelize.Model, "Member[addScope].Argument[1]"]
+      - [sequelize.AssociationOptionsBelongsToMany, sequelize.Associations, "Member[belongsToMany].Argument[1]"]
+      - [sequelize.Associations, sequelize.Model, ""]
+      - [sequelize.Associations, sequelize.SequelizeStaticAndInstance.Model, ""]
+      - [sequelize.BuildOptions, "sequelize-typescript.ModelStatic~", "Argument[1]"]
+      - [sequelize.BuildOptions, sequelize.CreateOptions, ""]
+      - [sequelize.BuildOptions, sequelize.Model, "Member[build,bulkBuild].Argument[1]"]
+      - [sequelize.CountOptions, sequelize.Model, "Member[count].Argument[0]"]
+      - [sequelize.CreateOptions, "sequelize-typescript/model/model/association/association-create-options.AssociationCreateOptions", ""]
+      - [sequelize.CreateOptions, sequelize.BelongsToCreateAssociationMixin, "Argument[1]"]
+      - [sequelize.CreateOptions, sequelize.BelongsToManyCreateAssociationMixin, "Argument[1]"]
+      - [sequelize.CreateOptions, sequelize.HasManyCreateAssociationMixin, "Argument[1]"]
+      - [sequelize.CreateOptions, sequelize.HasOneCreateAssociationMixin, "Argument[1]"]
+      - [sequelize.CreateOptions, sequelize.Model, "Member[create].Argument[1]"]
+      - [sequelize.DefineAttributeColumnOptions, sequelize.DefineAttributes, AnyMember]
+      - [sequelize.DefineAttributeColumnOptions, sequelize.QueryInterface, "Member[addColumn,changeColumn].Argument[2]"]
+      - [sequelize.DefineAttributeColumnReferencesOptions, sequelize.DefineAttributeColumnOptions, "Member[references]"]
+      - [sequelize.DefineAttributes, sequelize.Hooks, "Member[beforeDefine].Argument[1].Argument[0]"]
+      - [sequelize.DefineAttributes, sequelize.Hooks, "Member[beforeDefine].WithArity[1].Argument[0].Argument[0]"]
+      - [sequelize.DefineAttributes, sequelize.QueryInterface, "Member[createTable].Argument[1]"]
+      - [sequelize.DefineOptions, sequelize.Options, "Member[define]"]
+      - [sequelize.DefineOptions, sequelize.Sequelize, "Member[define].Argument[2]"]
+      - [sequelize.DefineScopeOptions, sequelize.DefineOptions, "Member[scopes]"]
+      - [sequelize.FindCreateFindOptions, sequelize.Model, "Member[findCreateFind].Argument[0]"]
+      - [sequelize.FindOptions, "sequelize-typescript.AssociationCountOptions", ""]
+      - [sequelize.FindOptions, "sequelize-typescript.AssociationGetOptions", ""]
+      - [sequelize.FindOptions, "sequelize-typescript.DefaultScopeGetter", ReturnValue]
+      - [sequelize.FindOptions, "sequelize-typescript.Model", "Member[reload].Argument[0]"]
+      - [sequelize.FindOptions, "sequelize-typescript.ScopesOptions", ""]
+      - [sequelize.FindOptions, "sequelize-typescript.ScopesOptions", ReturnValue]
+      - [sequelize.FindOptions, sequelize.AnyFindOptions, ""]
+      - [sequelize.FindOptions, sequelize.FindCreateFindOptions, ""]
+      - [sequelize.FindOptions, sequelize.FindOrInitializeOptions, ""]
+      - [sequelize.FindOptions, sequelize.Model, "Member[all,find,findAll,findAndCount,findAndCountAll,findOne].Argument[0]"]
+      - [sequelize.FindOptionsOrderArray, sequelize.FindOptions, "Member[order]"]
+      - [sequelize.FindOptionsOrderArray, sequelize.FindOptions, "Member[order].ArrayElement"]
+      - [sequelize.FindOrInitializeOptions, sequelize.Model, "Member[findOrBuild,findOrCreate,findOrInitialize].Argument[0]"]
+      - [sequelize.HasManyGetAssociationsMixinOptions, sequelize.HasManyGetAssociationsMixin, "Argument[0]"]
+      - [sequelize.HasManyGetAssociationsMixinOptions, sequelize.HasManyHasAssociationMixin, "Argument[1]"]
+      - [sequelize.HasManyGetAssociationsMixinOptions, sequelize.HasManyHasAssociationsMixin, "Argument[1]"]
+      - [sequelize.Hooks, sequelize.Hooks, "Member[addHook,hook,removeHook].ReturnValue"]
+      - [sequelize.Hooks, sequelize.Model, ""]
+      - [sequelize.Hooks, sequelize.Sequelize, ""]
+      - [sequelize.Hooks, sequelize.SequelizeStaticAndInstance.Model, ""]
+      - [sequelize.IncludeAssociation, sequelize.Associations, "Member[belongsTo,belongsToMany,hasMany,hasOne].ReturnValue"]
+      - [sequelize.IncludeAssociation, sequelize.IncludeOptions, "Member[association]"]
+      - [sequelize.IncludeOptions, sequelize.BuildOptions, "Member[include].ArrayElement"]
+      - [sequelize.IncludeOptions, sequelize.CountOptions, "Member[include]"]
+      - [sequelize.IncludeOptions, sequelize.CountOptions, "Member[include].ArrayElement"]
+      - [sequelize.IncludeOptions, sequelize.FindOptions, "Member[include]"]
+      - [sequelize.IncludeOptions, sequelize.FindOptions, "Member[include].ArrayElement"]
+      - [sequelize.IncludeOptions, sequelize.HasManyGetAssociationsMixinOptions, "Member[include]"]
+      - [sequelize.IncludeOptions, sequelize.IncludeOptions, "Member[include]"]
+      - [sequelize.IncludeOptions, sequelize.IncludeOptions, "Member[include].ArrayElement"]
+      - [sequelize.Instance, sequelize.Instance, "Member[decrement,increment,reload,save,update,updateAttributes].ReturnValue.Awaited"]
+      - [sequelize.Instance, sequelize.Instance, "Member[equalsOneOf].Argument[0].ArrayElement"]
+      - [sequelize.Instance, sequelize.Instance, "Member[equals].Argument[0]"]
+      - [sequelize.Instance, sequelize.Instance, "Member[set,setAttributes].ReturnValue"]
+      - [sequelize.Instance, sequelize.Model, "Member[Instance,build].ReturnValue"]
+      - [sequelize.Instance, sequelize.Model, "Member[all,bulkCreate,findAll].ReturnValue.Awaited.ArrayElement"]
+      - [sequelize.Instance, sequelize.Model, "Member[bulkBuild].ReturnValue.ArrayElement"]
+      - [sequelize.Instance, sequelize.Model, "Member[create,find,findById,findByPk,findByPrimary,findOne].ReturnValue.Awaited"]
+      - [sequelize.Instance, sequelize.Model, "Member[findAndCount,findAndCountAll].ReturnValue.Awaited.Member[rows].ArrayElement"]
+      - [sequelize.Instance, sequelize.QueryInterface, "Member[delete,increment,insert,update].Argument[0]"]
+      - [sequelize.Instance, sequelize.QueryOptions, "Member[instance]"]
+      - [sequelize.Instance, sequelize.SequelizeStaticAndInstance, "Member[Instance]"]
+      - [sequelize.Model, sequelize.AssociationOptionsBelongsToMany, "Member[through]"]
+      - [sequelize.Model, sequelize.Associations, "Member[belongsTo,belongsToMany,hasMany,hasOne].Argument[0]"]
+      - [sequelize.Model, sequelize.BuildOptions, "Member[include].ArrayElement"]
+      - [sequelize.Model, sequelize.CountOptions, "Member[include]"]
+      - [sequelize.Model, sequelize.CountOptions, "Member[include].ArrayElement"]
+      - [sequelize.Model, sequelize.DefineAttributeColumnReferencesOptions, "Member[model]"]
+      - [sequelize.Model, sequelize.FindOptions, "Member[include]"]
+      - [sequelize.Model, sequelize.FindOptions, "Member[include].ArrayElement"]
+      - [sequelize.Model, sequelize.FindOptions, "Member[lock].Member[of]"]
+      - [sequelize.Model, sequelize.FindOptionsOrderArray, ArrayElement]
+      - [sequelize.Model, sequelize.FindOptionsOrderArray, "ArrayElement.Member[model]"]
+      - [sequelize.Model, sequelize.Hooks, "Member[afterDefine].Argument[1].Argument[0]"]
+      - [sequelize.Model, sequelize.Hooks, "Member[afterDefine].WithArity[1].Argument[0].Argument[0]"]
+      - [sequelize.Model, sequelize.IncludeAssociation, "Member[source,target]"]
+      - [sequelize.Model, sequelize.IncludeOptions, "Member[include,model]"]
+      - [sequelize.Model, sequelize.IncludeOptions, "Member[include].ArrayElement"]
+      - [sequelize.Model, sequelize.Instance, "Member[Model]"]
+      - [sequelize.Model, sequelize.Model, "Member[schema,scope,unscoped].ReturnValue"]
+      - [sequelize.Model, sequelize.Model, "Member[sync].ReturnValue.Awaited"]
+      - [sequelize.Model, sequelize.Models, AnyMember]
+      - [sequelize.Model, sequelize.ModelsHashInterface, AnyMember]
+      - [sequelize.Model, sequelize.QueryInterface, "Member[bulkDelete,rawSelect,upsert].Argument[3]"]
+      - [sequelize.Model, sequelize.QueryInterface, "Member[select].Argument[0]"]
+      - [sequelize.Model, sequelize.QueryOptions, "Member[model]"]
+      - [sequelize.Model, sequelize.Sequelize, "Member[define,import,model].ReturnValue"]
+      - [sequelize.Model, sequelize.Sequelize, "Member[import].Argument[1].ReturnValue"]
+      - [sequelize.Model, sequelize.SequelizeStaticAndInstance, "Member[Model]"]
+      - [sequelize.Model, sequelize.ThroughOptions, "Member[model]"]
+      - [sequelize.Model, sequelize.Utils, "Member[mapOptionFieldNames].Argument[1]"]
+      - [sequelize.Model, sequelize.Utils, "Member[mapValueFieldNames].Argument[2]"]
+      - [sequelize.Models, sequelize.Model, "Member[associate].Argument[0]"]
+      - [sequelize.ModelsHashInterface, sequelize.Sequelize, "Member[models]"]
+      - [sequelize.Options, "sequelize-typescript.SequelizeOptions", ""]
+      - [sequelize.Options, sequelize.Sequelize, "Member[options]"]
+      - [sequelize.Options, sequelize.SequelizeStatic, "Argument[3]"]
+      - [sequelize.Options, sequelize.SequelizeStatic, "WithArity[1].Argument[0,1]"]
+      - [sequelize.Options, sequelize.SequelizeStatic, "WithArity[2].Argument[1,2]"]
+      - [sequelize.Options, sequelize.SequelizeStatic, "WithArity[3].Argument[2]"]
+      - [sequelize.QueryInterface, sequelize.Sequelize, "Member[getQueryInterface].ReturnValue"]
+      - [sequelize.QueryOptions, sequelize.Options, "Member[query]"]
+      - [sequelize.QueryOptions, sequelize.QueryInterface, "Member[bulkDelete,bulkInsert,createTable,select,setAutocommit,setIsolationLevel].Argument[2]"]
+      - [sequelize.QueryOptions, sequelize.QueryInterface, "Member[bulkUpdate,delete,insert].Argument[3]"]
+      - [sequelize.QueryOptions, sequelize.QueryInterface, "Member[commitTransaction,deferConstraints,dropTable,rawSelect,rollbackTransaction,showIndex,startTransaction].Argument[1]"]
+      - [sequelize.QueryOptions, sequelize.QueryInterface, "Member[createFunction].Argument[5]"]
+      - [sequelize.QueryOptions, sequelize.QueryInterface, "Member[dropAllEnums,dropAllTables,showAllSchemas,showAllTables].Argument[0]"]
+      - [sequelize.QueryOptions, sequelize.QueryInterface, "Member[increment,update,upsert].Argument[4]"]
+      - [sequelize.QueryOptions, sequelize.Sequelize, "Member[authenticate,validate].Argument[0]"]
+      - [sequelize.QueryOptions, sequelize.Sequelize, "Member[query].Argument[1]"]
+      - [sequelize.Sequelize, "sequelize-typescript.Sequelize", ""]
+      - [sequelize.Sequelize, sequelize.Hooks, "Member[afterInit].Argument[1].Argument[0]"]
+      - [sequelize.Sequelize, sequelize.Hooks, "Member[afterInit].WithArity[1].Argument[0].Argument[0]"]
+      - [sequelize.Sequelize, sequelize.Instance, "Member[sequelize]"]
+      - [sequelize.Sequelize, sequelize.QueryInterface, "Member[sequelize]"]
+      - [sequelize.Sequelize, sequelize.Sequelize, "Member[import].Argument[1].Argument[0]"]
+      - [sequelize.Sequelize, sequelize.SequelizeStatic, Instance]
+      - [sequelize.Sequelize, sequelize.SequelizeStatic, "Member[useCLS].ReturnValue"]
+      - [sequelize.SequelizeStatic, "sequelize-typescript.Sequelize", ""]
+      - [sequelize.SequelizeStatic, sequelize.Sequelize, "Member[Sequelize]"]
+      - [sequelize.SequelizeStatic, sequelize.SequelizeStatic, "Member[Sequelize,default]"]
+      - [sequelize.SequelizeStatic, sequelize, ""]
+      - [sequelize.SequelizeStaticAndInstance.Model, "sequelize-typescript.Model", ""]
+      - [sequelize.SequelizeStaticAndInstance, sequelize.Sequelize, ""]
+      - [sequelize.SequelizeStaticAndInstance, sequelize.SequelizeStatic, ""]
+      - [sequelize.ThroughOptions, sequelize.AssociationOptionsBelongsToMany, "Member[through]"]
+      - [sequelize.Utils, sequelize.SequelizeStaticAndInstance, "Member[Utils]"]
+
+  - addsTo: 
+      pack: codeql/javascript-all
+      extensible: summaryModel
+    data:
+      - ["sequelize-typescript.Model", "", "", "Member[reload].ReturnValue.Awaited", type]
+      - [sequelize.Instance, "", "", "Member[decrement,increment,reload,save,update,updateAttributes].ReturnValue.Awaited", type]
+      - [sequelize.Instance, "", "", "Member[set,setAttributes].ReturnValue", type]
+      - [sequelize.Model, "", "", "Member[schema,scope,unscoped].ReturnValue", type]
+      - [sequelize.Model, "", "", "Member[sync].ReturnValue.Awaited", type]
+
+  - addsTo: 
+      pack: codeql/javascript-all
+      extensible: typeVariableModel
+    data:
+      - ["sequelize-typescript.ModelStatic.0", Instance]
+      - ["sequelize-typescript.Repository.0", Instance]
diff --git a/javascript/ql/lib/semmle/javascript/frameworks/spanner/model.yml b/javascript/ql/lib/semmle/javascript/frameworks/spanner/model.yml
new file mode 100644
index 00000000000..bf6e3fa4e5a
--- /dev/null
+++ b/javascript/ql/lib/semmle/javascript/frameworks/spanner/model.yml
@@ -0,0 +1,189 @@
+extensions:
+  - addsTo: 
+      pack: codeql/javascript-all
+      extensible: typeModel
+    data:
+      - ["@google-cloud/spanner.BackupStatic", "@google-cloud/spanner/backup.BackupStatic", ""]
+      - ["@google-cloud/spanner.BackupStatic", "@google-cloud/spanner/backup", "Member[Backup]"]
+      - ["@google-cloud/spanner.BackupStatic", "@google-cloud/spanner", "Member[Backup]"]
+      - ["@google-cloud/spanner.BatchTransaction", "@google-cloud/spanner/batch-transaction.BatchTransaction", ""]
+      - ["@google-cloud/spanner.Database", "@google-cloud/spanner.DatabaseStatic", Instance]
+      - ["@google-cloud/spanner.Database", "@google-cloud/spanner.Instance", "Member[database].ReturnValue"]
+      - ["@google-cloud/spanner.Database", "@google-cloud/spanner.SessionPool", "Member[database]"]
+      - ["@google-cloud/spanner.Database", "@google-cloud/spanner.SessionPoolStatic", "Argument[0]"]
+      - ["@google-cloud/spanner.Database", "@google-cloud/spanner.SessionStatic", "Argument[0]"]
+      - ["@google-cloud/spanner.Database", "@google-cloud/spanner.Table", "Member[database]"]
+      - ["@google-cloud/spanner.Database", "@google-cloud/spanner.TableStatic", "Argument[0]"]
+      - ["@google-cloud/spanner.Database", "@google-cloud/spanner/database.Database", ""]
+      - ["@google-cloud/spanner.Database", "@google-cloud/spanner/database.DatabaseCallback", "TypeVar[@google-cloud/spanner/common.ResourceCallback.0]"]
+      - ["@google-cloud/spanner.Database", "@google-cloud/spanner/database.RestoreDatabaseCallback", "TypeVar[@google-cloud/spanner/common.LongRunningCallback.0]"]
+      - ["@google-cloud/spanner.Database", "@google-cloud/spanner/database.SessionPoolConstructor", "Argument[0]"]
+      - ["@google-cloud/spanner.Database", "@google-cloud/spanner/instance.CreateDatabaseCallback", "TypeVar[@google-cloud/spanner/common.LongRunningCallback.0]"]
+      - ["@google-cloud/spanner.Database", "@google-cloud/spanner/instance.GetDatabasesCallback", "TypeVar[@google-cloud/spanner/common.RequestCallback.0]"]
+      - ["@google-cloud/spanner.DatabaseStatic", "@google-cloud/spanner/database.DatabaseStatic", ""]
+      - ["@google-cloud/spanner.DatabaseStatic", "@google-cloud/spanner/database", "Member[Database]"]
+      - ["@google-cloud/spanner.DatabaseStatic", "@google-cloud/spanner", "Member[Database]"]
+      - ["@google-cloud/spanner.GetInstancesCallback", "@google-cloud/spanner.Spanner", "Member[getInstances].Argument[1]"]
+      - ["@google-cloud/spanner.GetInstancesCallback", "@google-cloud/spanner.Spanner", "Member[getInstances].WithArity[1].Argument[0]"]
+      - ["@google-cloud/spanner.GetInstancesCallback", "@google-cloud/spanner/build/src.GetInstancesCallback", ""]
+      - ["@google-cloud/spanner.Instance", "@google-cloud/spanner.BackupStatic", "Argument[0]"]
+      - ["@google-cloud/spanner.Instance", "@google-cloud/spanner.DatabaseStatic", "Argument[0]"]
+      - ["@google-cloud/spanner.Instance", "@google-cloud/spanner.GetInstancesCallback", "TypeVar[@google-cloud/spanner/common.PagedCallback.0]"]
+      - ["@google-cloud/spanner.Instance", "@google-cloud/spanner.InstanceStatic", Instance]
+      - ["@google-cloud/spanner.Instance", "@google-cloud/spanner.Spanner", "Member[instance].ReturnValue"]
+      - ["@google-cloud/spanner.Instance", "@google-cloud/spanner/instance.CreateInstanceCallback", "TypeVar[@google-cloud/spanner/common.LongRunningCallback.0]"]
+      - ["@google-cloud/spanner.Instance", "@google-cloud/spanner/instance.GetInstanceCallback", "TypeVar[@google-cloud/spanner/common.ResourceCallback.0]"]
+      - ["@google-cloud/spanner.Instance", "@google-cloud/spanner/instance.Instance", ""]
+      - ["@google-cloud/spanner.InstanceStatic", "@google-cloud/spanner/instance.InstanceStatic", ""]
+      - ["@google-cloud/spanner.InstanceStatic", "@google-cloud/spanner/instance", "Member[Instance]"]
+      - ["@google-cloud/spanner.InstanceStatic", "@google-cloud/spanner", "Member[Instance]"]
+      - ["@google-cloud/spanner.PartitionedDml", "@google-cloud/spanner.PartitionedDmlStatic", Instance]
+      - ["@google-cloud/spanner.PartitionedDml", "@google-cloud/spanner.Session", "Member[partitionedDml].ReturnValue"]
+      - ["@google-cloud/spanner.PartitionedDml", "@google-cloud/spanner/transaction.PartitionedDml", ""]
+      - ["@google-cloud/spanner.PartitionedDmlStatic", "@google-cloud/spanner/transaction.PartitionedDmlStatic", ""]
+      - ["@google-cloud/spanner.PartitionedDmlStatic", "@google-cloud/spanner/transaction", "Member[PartitionedDml]"]
+      - ["@google-cloud/spanner.PartitionedDmlStatic", "@google-cloud/spanner", "Member[PartitionedDml]"]
+      - ["@google-cloud/spanner.Session", "@google-cloud/spanner.Database", "Member[_runPartitionedUpdate].Argument[0]"]
+      - ["@google-cloud/spanner.Session", "@google-cloud/spanner.Database", "Member[makePooledRequest_].WithArity[1].ReturnValue.Awaited"]
+      - ["@google-cloud/spanner.Session", "@google-cloud/spanner.Database", "Member[session].ReturnValue"]
+      - ["@google-cloud/spanner.Session", "@google-cloud/spanner.SessionPool", "Member[_acquire,_getSession].ReturnValue.Awaited"]
+      - ["@google-cloud/spanner.Session", "@google-cloud/spanner.SessionPool", "Member[_borrow,_destroy,_isValidSession,_ping,_prepareTransaction,_release,release].Argument[0]"]
+      - ["@google-cloud/spanner.Session", "@google-cloud/spanner.SessionPool", "Member[_borrowFrom,_borrowNextAvailableSession].ReturnValue"]
+      - ["@google-cloud/spanner.Session", "@google-cloud/spanner.SessionPool", "Member[_getIdleSessions].ReturnValue.ArrayElement"]
+      - ["@google-cloud/spanner.Session", "@google-cloud/spanner.SessionStatic", Instance]
+      - ["@google-cloud/spanner.Session", "@google-cloud/spanner.Snapshot", "Member[session]"]
+      - ["@google-cloud/spanner.Session", "@google-cloud/spanner/batch-transaction.TransactionIdentifier", "Member[session]"]
+      - ["@google-cloud/spanner.Session", "@google-cloud/spanner/database.BatchCreateSessionsCallback", "TypeVar[@google-cloud/spanner/common.ResourceCallback.0].ArrayElement"]
+      - ["@google-cloud/spanner.Session", "@google-cloud/spanner/database.CreateSessionCallback", "TypeVar[@google-cloud/spanner/common.ResourceCallback.0]"]
+      - ["@google-cloud/spanner.Session", "@google-cloud/spanner/database.GetSessionsCallback", "TypeVar[@google-cloud/spanner/common.RequestCallback.0]"]
+      - ["@google-cloud/spanner.Session", "@google-cloud/spanner/database.PoolRequestCallback", "TypeVar[@google-cloud/spanner/common.RequestCallback.0]"]
+      - ["@google-cloud/spanner.Session", "@google-cloud/spanner/session-pool.GetReadSessionCallback", "TypeVar[@google-cloud/spanner/common.NormalCallback.0]"]
+      - ["@google-cloud/spanner.Session", "@google-cloud/spanner/session-pool.GetWriteSessionCallback", "Argument[1]"]
+      - ["@google-cloud/spanner.Session", "@google-cloud/spanner/session-pool.SessionPoolInterface", "Member[release].Argument[0]"]
+      - ["@google-cloud/spanner.Session", "@google-cloud/spanner/session.Session", ""]
+      - ["@google-cloud/spanner.Session", "@google-cloud/spanner/transaction-runner.Runner", "Member[session]"]
+      - ["@google-cloud/spanner.SessionPool", "@google-cloud/spanner.SessionPoolStatic", Instance]
+      - ["@google-cloud/spanner.SessionPool", "@google-cloud/spanner/instance.CreateDatabaseOptions", "Member[poolCtor]"]
+      - ["@google-cloud/spanner.SessionPool", "@google-cloud/spanner/session-pool.SessionPool", ""]
+      - ["@google-cloud/spanner.SessionPoolStatic", "@google-cloud/spanner/session-pool.SessionPoolStatic", ""]
+      - ["@google-cloud/spanner.SessionPoolStatic", "@google-cloud/spanner/session-pool", "Member[SessionPool]"]
+      - ["@google-cloud/spanner.SessionPoolStatic", "@google-cloud/spanner", "Member[SessionPool]"]
+      - ["@google-cloud/spanner.SessionStatic", "@google-cloud/spanner/session.SessionStatic", ""]
+      - ["@google-cloud/spanner.SessionStatic", "@google-cloud/spanner/session", "Member[Session]"]
+      - ["@google-cloud/spanner.SessionStatic", "@google-cloud/spanner", "Member[Session]"]
+      - ["@google-cloud/spanner.Snapshot", "@google-cloud/spanner.Session", "Member[snapshot].ReturnValue"]
+      - ["@google-cloud/spanner.Snapshot", "@google-cloud/spanner.SnapshotStatic", Instance]
+      - ["@google-cloud/spanner.Snapshot", "@google-cloud/spanner/batch-transaction.BatchTransaction", ""]
+      - ["@google-cloud/spanner.Snapshot", "@google-cloud/spanner/database.GetSnapshotCallback", "TypeVar[@google-cloud/spanner/common.NormalCallback.0]"]
+      - ["@google-cloud/spanner.Snapshot", "@google-cloud/spanner/transaction.Dml", ""]
+      - ["@google-cloud/spanner.Snapshot", "@google-cloud/spanner/transaction.Snapshot", ""]
+      - ["@google-cloud/spanner.SnapshotStatic", "@google-cloud/spanner/transaction.SnapshotStatic", ""]
+      - ["@google-cloud/spanner.SnapshotStatic", "@google-cloud/spanner/transaction", "Member[Snapshot]"]
+      - ["@google-cloud/spanner.SnapshotStatic", "@google-cloud/spanner", "Member[Snapshot]"]
+      - ["@google-cloud/spanner.Spanner", "@google-cloud/spanner.InstanceStatic", "Argument[0]"]
+      - ["@google-cloud/spanner.Spanner", "@google-cloud/spanner.SpannerStatic", Instance]
+      - ["@google-cloud/spanner.SpannerStatic", "@google-cloud/spanner", "Member[Spanner]"]
+      - ["@google-cloud/spanner.Table", "@google-cloud/spanner.Database", "Member[table].ReturnValue"]
+      - ["@google-cloud/spanner.Table", "@google-cloud/spanner.TableStatic", Instance]
+      - ["@google-cloud/spanner.Table", "@google-cloud/spanner/table.CreateTableCallback", "TypeVar[@google-cloud/spanner/common.LongRunningCallback.0]"]
+      - ["@google-cloud/spanner.Table", "@google-cloud/spanner/table.Table", ""]
+      - ["@google-cloud/spanner.TableStatic", "@google-cloud/spanner/table.TableStatic", ""]
+      - ["@google-cloud/spanner.TableStatic", "@google-cloud/spanner/table", "Member[Table]"]
+      - ["@google-cloud/spanner.TableStatic", "@google-cloud/spanner", "Member[Table]"]
+      - ["@google-cloud/spanner.Transaction", "@google-cloud/spanner.Session", "Member[transaction].ReturnValue"]
+      - ["@google-cloud/spanner.Transaction", "@google-cloud/spanner.Session", "Member[txn]"]
+      - ["@google-cloud/spanner.Transaction", "@google-cloud/spanner.TransactionStatic", Instance]
+      - ["@google-cloud/spanner.Transaction", "@google-cloud/spanner/database.GetTransactionCallback", "TypeVar[@google-cloud/spanner/common.NormalCallback.0]"]
+      - ["@google-cloud/spanner.Transaction", "@google-cloud/spanner/session-pool.GetWriteSessionCallback", "Argument[2]"]
+      - ["@google-cloud/spanner.Transaction", "@google-cloud/spanner/transaction-runner.AsyncRunTransactionCallback", "Argument[0]"]
+      - ["@google-cloud/spanner.Transaction", "@google-cloud/spanner/transaction-runner.RunTransactionCallback", "TypeVar[@google-cloud/spanner/common.NormalCallback.0]"]
+      - ["@google-cloud/spanner.Transaction", "@google-cloud/spanner/transaction-runner.Runner", "Member[getTransaction].ReturnValue.Awaited"]
+      - ["@google-cloud/spanner.Transaction", "@google-cloud/spanner/transaction-runner.Runner", "Member[transaction]"]
+      - ["@google-cloud/spanner.Transaction", "@google-cloud/spanner/transaction.Transaction", ""]
+      - ["@google-cloud/spanner.TransactionStatic", "@google-cloud/spanner/transaction.TransactionStatic", ""]
+      - ["@google-cloud/spanner.TransactionStatic", "@google-cloud/spanner/transaction", "Member[Transaction]"]
+      - ["@google-cloud/spanner.TransactionStatic", "@google-cloud/spanner", "Member[Transaction]"]
+      - ["@google-cloud/spanner.v1.SpannerClient", "@google-cloud/spanner.v1.SpannerClientStatic", Instance]
+      - ["@google-cloud/spanner.v1.SpannerClient", "@google-cloud/spanner/v1/spanner_client.SpannerClient", ""]
+      - ["@google-cloud/spanner.v1.SpannerClientStatic", "@google-cloud/spanner/v1/spanner_client.SpannerClientStatic", ""]
+      - ["@google-cloud/spanner.v1.SpannerClientStatic", "@google-cloud/spanner/v1/spanner_client", "Member[SpannerClient]"]
+      - ["@google-cloud/spanner.v1.SpannerClientStatic", "@google-cloud/spanner", "Member[v1].Member[SpannerClient]"]
+      - ["@google-cloud/spanner.~SpannerObject", "@google-cloud/spanner.Database", ""]
+      - ["@google-cloud/spanner.~SpannerObject", "@google-cloud/spanner.Snapshot", ""]
+      - ["@google-cloud/spanner.~SpannerObject", "@google-cloud/spanner.Transaction", ""]
+      - ["@google-cloud/spanner.~SpannerObject", "@google-cloud/spanner.v1.SpannerClient", ""]
+      - ["@google-cloud/spanner.~SqlExecutorDirect", "@google-cloud/spanner.BatchTransaction", "Member[createQueryPartitions]"]
+      - ["@google-cloud/spanner.~SqlExecutorDirect", "@google-cloud/spanner.Database", "Member[run,runPartitionedUpdate,runStream]"]
+      - ["@google-cloud/spanner.~SqlExecutorDirect", "@google-cloud/spanner.PartitionedDml", "Member[runUpdate]"]
+      - ["@google-cloud/spanner.~SqlExecutorDirect", "@google-cloud/spanner.Snapshot", "Member[run,runStream]"]
+      - ["@google-cloud/spanner.~SqlExecutorDirect", "@google-cloud/spanner.Transaction", "Member[run,runStream,runUpdate]"]
+      - ["@google-cloud/spanner.~SqlExecutorDirect", "@google-cloud/spanner.v1.SpannerClient", "Member[executeSql,executeStreamingSql,partitionQuery]"]
+      - ["@google-cloud/spanner/batch-transaction.BatchTransaction", "@google-cloud/spanner.Database", "Member[batchTransaction].ReturnValue"]
+      - ["@google-cloud/spanner/batch-transaction.BatchTransaction", "@google-cloud/spanner/batch-transaction.BatchTransactionStatic", Instance]
+      - ["@google-cloud/spanner/batch-transaction.BatchTransaction", "@google-cloud/spanner/database.CreateBatchTransactionCallback", "TypeVar[@google-cloud/spanner/common.ResourceCallback.0]"]
+      - ["@google-cloud/spanner/batch-transaction.BatchTransactionStatic", "@google-cloud/spanner/batch-transaction", "Member[BatchTransaction]"]
+      - ["@google-cloud/spanner/batch-transaction.TransactionIdentifier", "@google-cloud/spanner.Database", "Member[batchTransaction].Argument[0]"]
+      - ["@google-cloud/spanner/batch-transaction.TransactionIdentifier", "@google-cloud/spanner/batch-transaction.BatchTransaction", "Member[identifier].ReturnValue"]
+      - ["@google-cloud/spanner/database.BatchCreateSessionsCallback", "@google-cloud/spanner.Database", "Member[batchCreateSessions].Argument[1]"]
+      - ["@google-cloud/spanner/database.CreateBatchTransactionCallback", "@google-cloud/spanner.Database", "Member[createBatchTransaction].Argument[1]"]
+      - ["@google-cloud/spanner/database.CreateBatchTransactionCallback", "@google-cloud/spanner.Database", "Member[createBatchTransaction].WithArity[1].Argument[0]"]
+      - ["@google-cloud/spanner/database.CreateSessionCallback", "@google-cloud/spanner.Database", "Member[createSession].Argument[1]"]
+      - ["@google-cloud/spanner/database.CreateSessionCallback", "@google-cloud/spanner.Database", "Member[createSession].WithArity[1].Argument[0]"]
+      - ["@google-cloud/spanner/database.DatabaseCallback", "@google-cloud/spanner.Database", "Member[get].Argument[1]"]
+      - ["@google-cloud/spanner/database.DatabaseCallback", "@google-cloud/spanner.Database", "Member[get].WithArity[1].Argument[0]"]
+      - ["@google-cloud/spanner/database.GetSessionsCallback", "@google-cloud/spanner.Database", "Member[getSessions].Argument[1]"]
+      - ["@google-cloud/spanner/database.GetSessionsCallback", "@google-cloud/spanner.Database", "Member[getSessions].WithArity[1].Argument[0]"]
+      - ["@google-cloud/spanner/database.GetSnapshotCallback", "@google-cloud/spanner.Database", "Member[getSnapshot].Argument[1]"]
+      - ["@google-cloud/spanner/database.GetSnapshotCallback", "@google-cloud/spanner.Database", "Member[getSnapshot].WithArity[1].Argument[0]"]
+      - ["@google-cloud/spanner/database.GetTransactionCallback", "@google-cloud/spanner.Database", "Member[getTransaction].Argument[0]"]
+      - ["@google-cloud/spanner/database.PoolRequestCallback", "@google-cloud/spanner.Database", "Member[makePooledRequest_].Argument[1]"]
+      - ["@google-cloud/spanner/database.RestoreDatabaseCallback", "@google-cloud/spanner.Database", "Member[restore].Argument[1,2]"]
+      - ["@google-cloud/spanner/database.SessionPoolConstructor", "@google-cloud/spanner.DatabaseStatic", "Argument[2]"]
+      - ["@google-cloud/spanner/database.SessionPoolConstructor", "@google-cloud/spanner.Instance", "Member[database].Argument[1]"]
+      - ["@google-cloud/spanner/instance.CreateDatabaseCallback", "@google-cloud/spanner.Instance", "Member[createDatabase].Argument[2]"]
+      - ["@google-cloud/spanner/instance.CreateDatabaseCallback", "@google-cloud/spanner.Instance", "Member[createDatabase].WithArity[2].Argument[1]"]
+      - ["@google-cloud/spanner/instance.CreateDatabaseOptions", "@google-cloud/spanner.Instance", "Member[createDatabase].WithArity[1,2,3].Argument[1]"]
+      - ["@google-cloud/spanner/instance.CreateInstanceCallback", "@google-cloud/spanner.Spanner", "Member[createInstance].Argument[2]"]
+      - ["@google-cloud/spanner/instance.GetDatabasesCallback", "@google-cloud/spanner.Instance", "Member[getDatabases].Argument[1]"]
+      - ["@google-cloud/spanner/instance.GetDatabasesCallback", "@google-cloud/spanner.Instance", "Member[getDatabases].WithArity[1].Argument[0]"]
+      - ["@google-cloud/spanner/instance.GetInstanceCallback", "@google-cloud/spanner.Instance", "Member[get].Argument[1]"]
+      - ["@google-cloud/spanner/instance.GetInstanceCallback", "@google-cloud/spanner.Instance", "Member[get].WithArity[1].Argument[0]"]
+      - ["@google-cloud/spanner/session-pool.GetReadSessionCallback", "@google-cloud/spanner.SessionPool", "Member[getReadSession].Argument[0]"]
+      - ["@google-cloud/spanner/session-pool.GetReadSessionCallback", "@google-cloud/spanner/session-pool.SessionPoolInterface", "Member[getReadSession].Argument[0]"]
+      - ["@google-cloud/spanner/session-pool.GetWriteSessionCallback", "@google-cloud/spanner.SessionPool", "Member[getWriteSession].Argument[0]"]
+      - ["@google-cloud/spanner/session-pool.GetWriteSessionCallback", "@google-cloud/spanner/session-pool.SessionPoolInterface", "Member[getWriteSession].Argument[0]"]
+      - ["@google-cloud/spanner/session-pool.SessionPoolInterface", "@google-cloud/spanner.Database", "Member[pool_]"]
+      - ["@google-cloud/spanner/session-pool.SessionPoolInterface", "@google-cloud/spanner.SessionPool", ""]
+      - ["@google-cloud/spanner/session-pool.SessionPoolInterface", "@google-cloud/spanner/database.SessionPoolConstructor", Instance]
+      - ["@google-cloud/spanner/table.CreateTableCallback", "@google-cloud/spanner.Database", "Member[createTable].Argument[2]"]
+      - ["@google-cloud/spanner/table.CreateTableCallback", "@google-cloud/spanner.Database", "Member[createTable].WithArity[2].Argument[1]"]
+      - ["@google-cloud/spanner/table.CreateTableCallback", "@google-cloud/spanner.Table", "Member[create].Argument[2]"]
+      - ["@google-cloud/spanner/table.CreateTableCallback", "@google-cloud/spanner.Table", "Member[create].WithArity[2].Argument[1]"]
+      - ["@google-cloud/spanner/transaction-runner.AsyncRunTransactionCallback", "@google-cloud/spanner.Database", "Member[runTransactionAsync].Argument[1]"]
+      - ["@google-cloud/spanner/transaction-runner.AsyncRunTransactionCallback", "@google-cloud/spanner.Database", "Member[runTransactionAsync].WithArity[1].Argument[0]"]
+      - ["@google-cloud/spanner/transaction-runner.AsyncRunTransactionCallback", "@google-cloud/spanner/transaction-runner.AsyncTransactionRunnerStatic", "Argument[2]"]
+      - ["@google-cloud/spanner/transaction-runner.AsyncTransactionRunner", "@google-cloud/spanner/transaction-runner.AsyncTransactionRunnerStatic", Instance]
+      - ["@google-cloud/spanner/transaction-runner.AsyncTransactionRunnerStatic", "@google-cloud/spanner/transaction-runner", "Member[AsyncTransactionRunner]"]
+      - ["@google-cloud/spanner/transaction-runner.RunTransactionCallback", "@google-cloud/spanner.Database", "Member[runTransaction].Argument[1]"]
+      - ["@google-cloud/spanner/transaction-runner.RunTransactionCallback", "@google-cloud/spanner.Database", "Member[runTransaction].WithArity[1].Argument[0]"]
+      - ["@google-cloud/spanner/transaction-runner.RunTransactionCallback", "@google-cloud/spanner/transaction-runner.TransactionRunnerStatic", "Argument[2]"]
+      - ["@google-cloud/spanner/transaction-runner.Runner", "@google-cloud/spanner/transaction-runner.AsyncTransactionRunner", ""]
+      - ["@google-cloud/spanner/transaction-runner.Runner", "@google-cloud/spanner/transaction-runner.RunnerStatic", Instance]
+      - ["@google-cloud/spanner/transaction-runner.Runner", "@google-cloud/spanner/transaction-runner.TransactionRunner", ""]
+      - ["@google-cloud/spanner/transaction-runner.RunnerStatic", "@google-cloud/spanner/transaction-runner", "Member[Runner]"]
+      - ["@google-cloud/spanner/transaction-runner.TransactionRunner", "@google-cloud/spanner/transaction-runner.TransactionRunnerStatic", Instance]
+      - ["@google-cloud/spanner/transaction-runner.TransactionRunnerStatic", "@google-cloud/spanner/transaction-runner", "Member[TransactionRunner]"]
+      - ["@google-cloud/spanner/transaction.Dml", "@google-cloud/spanner.PartitionedDml", ""]
+      - ["@google-cloud/spanner/transaction.Dml", "@google-cloud/spanner.Transaction", ""]
+      - ["@google-cloud/spanner/transaction.Dml", "@google-cloud/spanner/transaction.DmlStatic", Instance]
+      - ["@google-cloud/spanner/transaction.DmlStatic", "@google-cloud/spanner/transaction", "Member[Dml]"]
+
+  - addsTo: 
+      pack: codeql/javascript-all
+      extensible: typeVariableModel
+    data:
+      - ["@google-cloud/spanner/common.LongRunningCallback.0", "Argument[1]"]
+      - ["@google-cloud/spanner/common.NormalCallback.0", "Argument[1]"]
+      - ["@google-cloud/spanner/common.PagedCallback.0", "Argument[1].ArrayElement"]
+      - ["@google-cloud/spanner/common.RequestCallback.0", "TypeVar[@google-cloud/spanner/common.NormalCallback.0,@google-cloud/spanner/common.PagedCallback.0]"]
+      - ["@google-cloud/spanner/common.ResourceCallback.0", "Argument[1]"]
diff --git a/javascript/ql/lib/semmle/javascript/frameworks/sqlite3/model.yml b/javascript/ql/lib/semmle/javascript/frameworks/sqlite3/model.yml
new file mode 100644
index 00000000000..643ef4efb25
--- /dev/null
+++ b/javascript/ql/lib/semmle/javascript/frameworks/sqlite3/model.yml
@@ -0,0 +1,28 @@
+extensions:
+  - addsTo: 
+      pack: codeql/javascript-all
+      extensible: typeModel
+    data:
+      - [sqlite3.Database, sqlite3.Database, "Member[addListener,all,each,exec,get,on,once,prependListener,prependOnceListener,run].ReturnValue"]
+      - [sqlite3.Database, sqlite3.DatabaseStatic, Instance]
+      - [sqlite3.Database, sqlite3.Statement, "Member[finalize].ReturnValue"]
+      - [sqlite3.Database, sqlite3, "Member[cached].Member[Database].ReturnValue"]
+      - [sqlite3.DatabaseStatic, sqlite3.sqlite3, "Member[Database]"]
+      - [sqlite3.DatabaseStatic, sqlite3, "Member[Database]"]
+      - [sqlite3.RunResult, sqlite3.sqlite3, "Member[RunResult]"]
+      - [sqlite3.Statement, sqlite3.Database, "Member[prepare].ReturnValue"]
+      - [sqlite3.Statement, sqlite3.RunResult, ""]
+      - [sqlite3.Statement, sqlite3.Statement, "Member[all,bind,each,get,reset,run].ReturnValue"]
+      - [sqlite3.Statement, sqlite3.StatementStatic, Instance]
+      - [sqlite3.StatementStatic, sqlite3.sqlite3, "Member[Statement]"]
+      - [sqlite3.StatementStatic, sqlite3, "Member[Statement]"]
+      - [sqlite3.sqlite3, sqlite3.sqlite3, "Member[verbose].ReturnValue"]
+      - [sqlite3.sqlite3, sqlite3, "Member[verbose].ReturnValue"]
+
+  - addsTo: 
+      pack: codeql/javascript-all
+      extensible: summaryModel
+    data:
+      - [sqlite3.Database, "", "", "Member[addListener,all,each,exec,get,on,once,prependListener,prependOnceListener,run].ReturnValue", type]
+      - [sqlite3.Statement, "", "", "Member[all,bind,each,get,reset,run].ReturnValue", type]
+      - [sqlite3.sqlite3, "", "", "Member[verbose].ReturnValue", type]

From fcdb2fa03f25ceaa175d5fb89dff65f668c9a8b1 Mon Sep 17 00:00:00 2001
From: Asger F <asgerf@github.com>
Date: Mon, 5 Dec 2022 15:16:43 +0100
Subject: [PATCH 1112/1420] JS: Remove MaD models from .qll files

---
 javascript/ql/lib/javascript.qll              |   1 -
 .../frameworks/ImportGeneratedModels.qll      |  12 -
 .../javascript/frameworks/minimongo/Model.qll |  86 --
 .../javascript/frameworks/mongodb/Model.qll   | 806 ------------------
 .../javascript/frameworks/mssql/Model.qll     |  45 -
 .../javascript/frameworks/mysql/Model.qll     |  79 --
 .../semmle/javascript/frameworks/pg/Model.qll | 120 ---
 .../javascript/frameworks/sequelize/Model.qll | 297 -------
 .../javascript/frameworks/spanner/Model.qll   | 198 -----
 .../javascript/frameworks/sqlite3/Model.qll   |  37 -
 10 files changed, 1681 deletions(-)
 delete mode 100644 javascript/ql/lib/semmle/javascript/frameworks/ImportGeneratedModels.qll
 delete mode 100644 javascript/ql/lib/semmle/javascript/frameworks/minimongo/Model.qll
 delete mode 100644 javascript/ql/lib/semmle/javascript/frameworks/mongodb/Model.qll
 delete mode 100644 javascript/ql/lib/semmle/javascript/frameworks/mssql/Model.qll
 delete mode 100644 javascript/ql/lib/semmle/javascript/frameworks/mysql/Model.qll
 delete mode 100644 javascript/ql/lib/semmle/javascript/frameworks/pg/Model.qll
 delete mode 100644 javascript/ql/lib/semmle/javascript/frameworks/sequelize/Model.qll
 delete mode 100644 javascript/ql/lib/semmle/javascript/frameworks/spanner/Model.qll
 delete mode 100644 javascript/ql/lib/semmle/javascript/frameworks/sqlite3/Model.qll

diff --git a/javascript/ql/lib/javascript.qll b/javascript/ql/lib/javascript.qll
index 982ddae9128..53bb91797aa 100644
--- a/javascript/ql/lib/javascript.qll
+++ b/javascript/ql/lib/javascript.qll
@@ -99,7 +99,6 @@ import semmle.javascript.frameworks.JWT
 import semmle.javascript.frameworks.Handlebars
 import semmle.javascript.frameworks.History
 import semmle.javascript.frameworks.Immutable
-import semmle.javascript.frameworks.ImportGeneratedModels
 import semmle.javascript.frameworks.Knex
 import semmle.javascript.frameworks.LazyCache
 import semmle.javascript.frameworks.LdapJS
diff --git a/javascript/ql/lib/semmle/javascript/frameworks/ImportGeneratedModels.qll b/javascript/ql/lib/semmle/javascript/frameworks/ImportGeneratedModels.qll
deleted file mode 100644
index ffb7ab60fba..00000000000
--- a/javascript/ql/lib/semmle/javascript/frameworks/ImportGeneratedModels.qll
+++ /dev/null
@@ -1,12 +0,0 @@
-/**
- * Imports all generated models.
- */
-
-private import minimongo.Model
-private import mongodb.Model
-private import mssql.Model
-private import mysql.Model
-private import pg.Model
-private import sequelize.Model
-private import spanner.Model
-private import sqlite3.Model
diff --git a/javascript/ql/lib/semmle/javascript/frameworks/minimongo/Model.qll b/javascript/ql/lib/semmle/javascript/frameworks/minimongo/Model.qll
deleted file mode 100644
index 56b1470166b..00000000000
--- a/javascript/ql/lib/semmle/javascript/frameworks/minimongo/Model.qll
+++ /dev/null
@@ -1,86 +0,0 @@
-/** Generated model file */
-
-private import javascript
-
-private class Types extends ModelInput::TypeModelCsv {
-  override predicate row(string row) {
-    row =
-      [
-        "minimongo.HybridCollection;minimongo.HybridCollectionStatic;Instance", //
-        "minimongo.HybridCollection;minimongo/lib/HybridDb.HybridCollection;", //
-        "minimongo.HybridCollection;minimongo/lib/HybridDb.default;Member[collections].AnyMember", //
-        "minimongo.HybridCollectionStatic;minimongo/lib/HybridDb.HybridCollectionStatic;", //
-        "minimongo.HybridCollectionStatic;minimongo/lib/HybridDb;Member[HybridCollection]", //
-        "minimongo.HybridCollectionStatic;minimongo;Member[HybridCollection]", //
-        "minimongo.MinimongoBaseCollection;minimongo.HybridCollection;", //
-        "minimongo.MinimongoBaseCollection;minimongo.MinimongoCollection;", //
-        "minimongo.MinimongoBaseCollection;minimongo.MinimongoDb;AnyMember", //
-        "minimongo.MinimongoBaseCollection;minimongo.MinimongoLocalCollection;", //
-        "minimongo.MinimongoBaseCollection;minimongo/RemoteDb.Collection;", //
-        "minimongo.MinimongoBaseCollection;minimongo/lib/types.MinimongoBaseCollection;", //
-        "minimongo.MinimongoCollection;minimongo.HybridCollection;Member[remoteCol]", //
-        "minimongo.MinimongoCollection;minimongo.MinimongoDb;Member[collections].AnyMember", //
-        "minimongo.MinimongoCollection;minimongo/lib/LocalStorageDb.default;Member[collections].AnyMember", //
-        "minimongo.MinimongoCollection;minimongo/lib/WebSQLDb.default;Member[collections].AnyMember", //
-        "minimongo.MinimongoCollection;minimongo/lib/types.MinimongoCollection;", //
-        "minimongo.MinimongoDb;minimongo.MinimongoDb;Member[remoteDb]", //
-        "minimongo.MinimongoDb;minimongo.MinimongoLocalDb;", //
-        "minimongo.MinimongoDb;minimongo/lib/HybridDb.default;", //
-        "minimongo.MinimongoDb;minimongo/lib/HybridDb.default;Member[remoteDb]", //
-        "minimongo.MinimongoDb;minimongo/lib/LocalStorageDb.default;", //
-        "minimongo.MinimongoDb;minimongo/lib/MemoryDb.default;", //
-        "minimongo.MinimongoDb;minimongo/lib/RemoteDb.default;", //
-        "minimongo.MinimongoDb;minimongo/lib/ReplicatingDb.default;Member[masterDb,replicaDb]", //
-        "minimongo.MinimongoDb;minimongo/lib/WebSQLDb.default;", //
-        "minimongo.MinimongoDb;minimongo/lib/types.MinimongoDb;", //
-        "minimongo.MinimongoLocalCollection;minimongo.HybridCollection;Member[localCol]", //
-        "minimongo.MinimongoLocalCollection;minimongo.MinimongoCollection;", //
-        "minimongo.MinimongoLocalCollection;minimongo.MinimongoLocalDb;Member[addCollection].Argument[2].Argument[0]", //
-        "minimongo.MinimongoLocalCollection;minimongo.MinimongoLocalDb;Member[collections].AnyMember", //
-        "minimongo.MinimongoLocalCollection;minimongo/IndexedDb.IndexedDbCollection;", //
-        "minimongo.MinimongoLocalCollection;minimongo/MemoryDb.Collection;", //
-        "minimongo.MinimongoLocalCollection;minimongo/ReplicatingDb.Collection;", //
-        "minimongo.MinimongoLocalCollection;minimongo/ReplicatingDb.Collection;Member[masterCol,replicaCol]", //
-        "minimongo.MinimongoLocalCollection;minimongo/lib/types.MinimongoLocalCollection;", //
-        "minimongo.MinimongoLocalDb;minimongo.MinimongoDb;Member[localDb]", //
-        "minimongo.MinimongoLocalDb;minimongo/lib/HybridDb.default;Member[localDb]", //
-        "minimongo.MinimongoLocalDb;minimongo/lib/IndexedDb.default;", //
-        "minimongo.MinimongoLocalDb;minimongo/lib/ReplicatingDb.default;", //
-        "minimongo.MinimongoLocalDb;minimongo/lib/types.MinimongoLocalDb;", //
-        "minimongo/IndexedDb.IndexedDbCollection;minimongo/IndexedDb.IndexedDbCollectionStatic;Instance", //
-        "minimongo/IndexedDb.IndexedDbCollection;minimongo/lib/IndexedDb.default;Member[collections].AnyMember", //
-        "minimongo/MemoryDb.Collection;minimongo/MemoryDb.CollectionStatic;Instance", //
-        "minimongo/MemoryDb.Collection;minimongo/lib/MemoryDb.default;Member[collections].AnyMember", //
-        "minimongo/RemoteDb.Collection;minimongo/RemoteDb.CollectionStatic;Instance", //
-        "minimongo/RemoteDb.Collection;minimongo/lib/RemoteDb.default;Member[collections].AnyMember", //
-        "minimongo/ReplicatingDb.Collection;minimongo/ReplicatingDb.CollectionStatic;Instance", //
-        "minimongo/ReplicatingDb.Collection;minimongo/lib/ReplicatingDb.default;Member[collections].AnyMember", //
-        "minimongo/lib/HybridDb.default;minimongo/lib/HybridDb.defaultStatic;Instance", //
-        "minimongo/lib/HybridDb.defaultStatic;minimongo/lib/HybridDb;Member[default]", //
-        "minimongo/lib/HybridDb.defaultStatic;minimongo;Member[HybridDb]", //
-        "minimongo/lib/IndexedDb.default;minimongo/lib/IndexedDb.defaultStatic;Instance", //
-        "minimongo/lib/IndexedDb.default;minimongo;Member[utils].Member[autoselectLocalDb].ReturnValue", //
-        "minimongo/lib/IndexedDb.defaultStatic;minimongo/lib/IndexedDb;Member[default]", //
-        "minimongo/lib/IndexedDb.defaultStatic;minimongo;Member[IndexedDb]", //
-        "minimongo/lib/LocalStorageDb.default;minimongo/lib/LocalStorageDb.defaultStatic;Instance", //
-        "minimongo/lib/LocalStorageDb.default;minimongo;Member[utils].Member[autoselectLocalDb].ReturnValue", //
-        "minimongo/lib/LocalStorageDb.defaultStatic;minimongo/lib/LocalStorageDb;Member[default]", //
-        "minimongo/lib/LocalStorageDb.defaultStatic;minimongo;Member[LocalStorageDb]", //
-        "minimongo/lib/MemoryDb.default;minimongo/lib/MemoryDb.defaultStatic;Instance", //
-        "minimongo/lib/MemoryDb.default;minimongo;Member[utils].Member[autoselectLocalDb].ReturnValue", //
-        "minimongo/lib/MemoryDb.defaultStatic;minimongo/lib/MemoryDb;Member[default]", //
-        "minimongo/lib/MemoryDb.defaultStatic;minimongo;Member[MemoryDb]", //
-        "minimongo/lib/RemoteDb.default;minimongo/lib/RemoteDb.defaultStatic;Instance", //
-        "minimongo/lib/RemoteDb.defaultStatic;minimongo/lib/RemoteDb;Member[default]", //
-        "minimongo/lib/RemoteDb.defaultStatic;minimongo;Member[RemoteDb]", //
-        "minimongo/lib/ReplicatingDb.default;minimongo/lib/ReplicatingDb.defaultStatic;Instance", //
-        "minimongo/lib/ReplicatingDb.defaultStatic;minimongo/lib/ReplicatingDb;Member[default]", //
-        "minimongo/lib/ReplicatingDb.defaultStatic;minimongo;Member[ReplicatingDb]", //
-        "minimongo/lib/WebSQLDb.default;minimongo/lib/WebSQLDb.defaultStatic;Instance", //
-        "minimongo/lib/WebSQLDb.default;minimongo;Member[utils].Member[autoselectLocalDb].ReturnValue", //
-        "minimongo/lib/WebSQLDb.defaultStatic;minimongo/lib/WebSQLDb;Member[default]", //
-        "minimongo/lib/WebSQLDb.defaultStatic;minimongo;Member[WebSQLDb]", //
-        "mongodb.Collection;minimongo.MinimongoBaseCollection;", //
-      ]
-  }
-}
diff --git a/javascript/ql/lib/semmle/javascript/frameworks/mongodb/Model.qll b/javascript/ql/lib/semmle/javascript/frameworks/mongodb/Model.qll
deleted file mode 100644
index 4cceff77185..00000000000
--- a/javascript/ql/lib/semmle/javascript/frameworks/mongodb/Model.qll
+++ /dev/null
@@ -1,806 +0,0 @@
-/** Generated model file */
-
-private import javascript
-
-private class Sinks extends ModelInput::SinkModelCsv {
-  override predicate row(string row) {
-    row =
-      [
-        "mongodb.Collection;Member[aggregate,count,countDocuments,deleteMany,deleteOne,find,findOne,findOneAndDelete,findOneAndReplace,remove,replaceOne,watch].Argument[0];mongodb.sink", //
-        "mongodb.Collection;Member[distinct].Argument[1];mongodb.sink", //
-        "mongodb.Collection;Member[findOneAndUpdate,update,updateMany,updateOne].Argument[0,1];mongodb.sink", //
-        "mongodb.Db;Member[aggregate,watch].Argument[0];mongodb.sink", //
-        "mongodb.DeleteManyModel;Member[filter];mongodb.sink", //
-        "mongodb.DeleteOneModel;Member[filter];mongodb.sink", //
-        "mongodb.MongoClient;Member[watch].Argument[0];mongodb.sink", //
-        "mongodb.UpdateManyModel;Member[filter,update];mongodb.sink", //
-        "mongodb.UpdateOneModel;Member[filter,update];mongodb.sink", //
-        "mongoose.CollectionBase;Member[findAndModify].Argument[0];mongodb.sink", //
-        "mongoose.Connection;Member[watch].Argument[0];mongodb.sink", //
-        "mongoose.Document;Member[update,updateOne].Argument[0];mongodb.sink", //
-        "mongoose.Model;Member[$where,aggregate,exists,find,findById,findByIdAndDelete,findByIdAndRemove,findOne,findOneAndDelete,findOneAndRemove,findOneAndReplace,geoSearch,remove,replaceOne,watch].Argument[0];mongodb.sink", //
-        "mongoose.Model;Member[count,where].WithArity[1,2].Argument[0];mongodb.sink", //
-        "mongoose.Model;Member[countDocuments].WithArity[1,2,3].Argument[0];mongodb.sink", //
-        "mongoose.Model;Member[deleteMany,deleteOne].WithArity[0,1,2,3].Argument[0];mongodb.sink", //
-        "mongoose.Model;Member[distinct,where].Argument[1];mongodb.sink", //
-        "mongoose.Model;Member[findByIdAndUpdate,findOneAndUpdate,update,updateMany,updateOne].Argument[0,1];mongodb.sink", //
-        "mongoose.Model;Member[find].WithArity[1,2,3,4].Argument[0];mongodb.sink", //
-        "mongoose.Query;Member[$where,and,find,findByIdAndDelete,findOne,findOneAndDelete,findOneAndRemove,nor,or,remove,replaceOne,setUpdate].Argument[0];mongodb.sink", //
-        "mongoose.Query;Member[count,where].WithArity[1,2].Argument[0];mongodb.sink", //
-        "mongoose.Query;Member[deleteMany,deleteOne].WithArity[0,1,2,3].Argument[0];mongodb.sink", //
-        "mongoose.Query;Member[distinct,where].Argument[1];mongodb.sink", //
-        "mongoose.Query;Member[findByIdAndUpdate,findOneAndUpdate,update,updateMany,updateOne].Argument[0,1];mongodb.sink", //
-        "mongoose.Query;Member[find].WithArity[1,2,3,4].Argument[0];mongodb.sink", //
-        "mongoose.QueryStatic;Argument[2];mongodb.sink", //
-      ]
-  }
-}
-
-private class Types extends ModelInput::TypeModelCsv {
-  override predicate row(string row) {
-    row =
-      [
-        "mongodb.AbstractCursor;mongodb.FindCursor;", //
-        "mongodb.AbstractCursor;mongodb.ListCollectionsCursor;", //
-        "mongodb.AbstractCursor;mongodb.ListIndexesCursor;", //
-        "mongodb.AbstractCursorOptions;mongodb.AggregationCursorOptions;", //
-        "mongodb.AbstractCursorOptions;mongodb/mongodb.AbstractCursorOptions;", //
-        "mongodb.AbstractCursorOptions;mongoose.mongodb.AbstractCursorOptions;", //
-        "mongodb.AddUserOptions;mongodb.Admin;Member[addUser].Argument[1,2]", //
-        "mongodb.AddUserOptions;mongodb.Db;Member[addUser].Argument[1,2]", //
-        "mongodb.AddUserOptions;mongodb/mongodb.AddUserOptions;", //
-        "mongodb.AddUserOptions;mongoose.mongodb.AddUserOptions;", //
-        "mongodb.Admin;mongodb.AdminStatic;Instance", //
-        "mongodb.Admin;mongodb.Db;Member[admin].ReturnValue", //
-        "mongodb.Admin;mongodb/mongodb.Admin;", //
-        "mongodb.Admin;mongoose.mongodb.Admin;", //
-        "mongodb.AdminStatic;mongodb/mongodb.AdminStatic;", //
-        "mongodb.AdminStatic;mongodb;Member[Admin]", //
-        "mongodb.AdminStatic;mongoose.mongodb.AdminStatic;", //
-        "mongodb.AggregateOptions;mongodb.AggregationCursorOptions;", //
-        "mongodb.AggregateOptions;mongodb.ChangeStreamOptions;", //
-        "mongodb.AggregateOptions;mongodb.Collection;Member[aggregate].Argument[1]", //
-        "mongodb.AggregateOptions;mongodb.CountDocumentsOptions;", //
-        "mongodb.AggregateOptions;mongodb.Db;Member[aggregate].Argument[1]", //
-        "mongodb.AggregateOptions;mongodb/mongodb.AggregateOptions;", //
-        "mongodb.AggregateOptions;mongoose.mongodb.AggregateOptions;", //
-        "mongodb.AggregationCursorOptions;mongodb/mongodb.AggregationCursorOptions;", //
-        "mongodb.AggregationCursorOptions;mongoose.mongodb.AggregationCursorOptions;", //
-        "mongodb.AnyBulkWriteOperation;mongodb.BulkOperationBase;Member[raw].Argument[0]", //
-        "mongodb.AnyBulkWriteOperation;mongodb.Collection;Member[bulkWrite].Argument[0].ArrayElement", //
-        "mongodb.AnyBulkWriteOperation;mongodb/mongodb.AnyBulkWriteOperation;", //
-        "mongodb.AnyBulkWriteOperation;mongoose.mongodb.AnyBulkWriteOperation;", //
-        "mongodb.Auth;mongodb.MongoClientOptions;Member[auth]", //
-        "mongodb.Auth;mongodb/mongodb.Auth;", //
-        "mongodb.Auth;mongoose.mongodb.Auth;", //
-        "mongodb.AutoEncrypter;mongodb.AutoEncrypter;Instance", //
-        "mongodb.AutoEncrypter;mongodb.ConnectionOptions;Member[autoEncrypter]", //
-        "mongodb.AutoEncrypter;mongodb.MongoClient;Member[autoEncrypter]", //
-        "mongodb.AutoEncrypter;mongodb.MongoOptions;Member[autoEncrypter]", //
-        "mongodb.AutoEncrypter;mongodb/mongodb.AutoEncrypter;", //
-        "mongodb.AutoEncrypter;mongoose.mongodb.AutoEncrypter;", //
-        "mongodb.AutoEncryptionOptions;mongodb.AutoEncrypter;Argument[1]", //
-        "mongodb.AutoEncryptionOptions;mongodb.MongoClientOptions;Member[autoEncryption]", //
-        "mongodb.AutoEncryptionOptions;mongodb/mongodb.AutoEncryptionOptions;", //
-        "mongodb.AutoEncryptionOptions;mongoose.mongodb.AutoEncryptionOptions;", //
-        "mongodb.BulkOperationBase;mongodb.BulkOperationBase;Member[addToOperationsList,insert,raw].ReturnValue", //
-        "mongodb.BulkOperationBase;mongodb.BulkOperationBaseStatic;Instance", //
-        "mongodb.BulkOperationBase;mongodb.FindOperators;Member[bulkOperation]", //
-        "mongodb.BulkOperationBase;mongodb.FindOperators;Member[delete,deleteOne,replaceOne,update,updateOne].ReturnValue", //
-        "mongodb.BulkOperationBase;mongodb.OrderedBulkOperation;", //
-        "mongodb.BulkOperationBase;mongodb.UnorderedBulkOperation;", //
-        "mongodb.BulkOperationBase;mongodb/mongodb.BulkOperationBase;", //
-        "mongodb.BulkOperationBase;mongoose.mongodb.BulkOperationBase;", //
-        "mongodb.BulkOperationBaseStatic;mongodb/mongodb.BulkOperationBaseStatic;", //
-        "mongodb.BulkOperationBaseStatic;mongodb;Member[BulkOperationBase]", //
-        "mongodb.BulkOperationBaseStatic;mongoose.mongodb.BulkOperationBaseStatic;", //
-        "mongodb.BulkWriteOptions;mongodb.BulkOperationBase;Member[execute].WithArity[0,1,2].Argument[0]", //
-        "mongodb.BulkWriteOptions;mongodb.Collection;Member[bulkWrite,insert,insertMany].Argument[1]", //
-        "mongodb.BulkWriteOptions;mongodb.Collection;Member[initializeOrderedBulkOp,initializeUnorderedBulkOp].Argument[0]", //
-        "mongodb.BulkWriteOptions;mongodb.OrderedBulkOperationStatic;Argument[1]", //
-        "mongodb.BulkWriteOptions;mongodb.UnorderedBulkOperationStatic;Argument[1]", //
-        "mongodb.BulkWriteOptions;mongodb/mongodb.BulkWriteOptions;", //
-        "mongodb.BulkWriteOptions;mongoose.mongodb.BulkWriteOptions;", //
-        "mongodb.ChangeStream;mongodb.ChangeStreamStatic;Instance", //
-        "mongodb.ChangeStream;mongodb.Collection;Member[watch].ReturnValue", //
-        "mongodb.ChangeStream;mongodb.Db;Member[watch].ReturnValue", //
-        "mongodb.ChangeStream;mongodb.MongoClient;Member[watch].ReturnValue", //
-        "mongodb.ChangeStream;mongodb/mongodb.ChangeStream;", //
-        "mongodb.ChangeStream;mongoose.mongodb.ChangeStream;", //
-        "mongodb.ChangeStreamOptions;mongodb.ChangeStream;Member[options]", //
-        "mongodb.ChangeStreamOptions;mongodb.Collection;Member[watch].Argument[1]", //
-        "mongodb.ChangeStreamOptions;mongodb.Db;Member[watch].Argument[1]", //
-        "mongodb.ChangeStreamOptions;mongodb.MongoClient;Member[watch].Argument[1]", //
-        "mongodb.ChangeStreamOptions;mongodb/mongodb.ChangeStreamOptions;", //
-        "mongodb.ChangeStreamOptions;mongoose.mongodb.ChangeStreamOptions;", //
-        "mongodb.ChangeStreamStatic;mongodb/mongodb.ChangeStreamStatic;", //
-        "mongodb.ChangeStreamStatic;mongodb;Member[ChangeStream]", //
-        "mongodb.ChangeStreamStatic;mongoose.mongodb.ChangeStreamStatic;", //
-        "mongodb.ClientSession;mongodb.AbstractCursorOptions;Member[session]", //
-        "mongodb.ClientSession;mongodb.ClientSession;Member[equals].Argument[0]", //
-        "mongodb.ClientSession;mongodb.ClientSessionEvents;Member[ended].Argument[0]", //
-        "mongodb.ClientSession;mongodb.ClientSessionStatic;Instance", //
-        "mongodb.ClientSession;mongodb.IndexInformationOptions;Member[session]", //
-        "mongodb.ClientSession;mongodb.MongoClient;Member[startSession].ReturnValue", //
-        "mongodb.ClientSession;mongodb.OperationOptions;Member[session]", //
-        "mongodb.ClientSession;mongodb.ReadPreferenceFromOptions;Member[session]", //
-        "mongodb.ClientSession;mongodb.SelectServerOptions;Member[session]", //
-        "mongodb.ClientSession;mongodb.WithSessionCallback;Argument[0]", //
-        "mongodb.ClientSession;mongodb.WithTransactionCallback;Argument[0]", //
-        "mongodb.ClientSession;mongodb/mongodb.ClientSession;", //
-        "mongodb.ClientSession;mongoose.mongodb.ClientSession;", //
-        "mongodb.ClientSessionEvents;mongodb/mongodb.ClientSessionEvents;", //
-        "mongodb.ClientSessionEvents;mongoose.mongodb.ClientSessionEvents;", //
-        "mongodb.ClientSessionOptions;mongodb.MongoClient;Member[startSession].Argument[0]", //
-        "mongodb.ClientSessionOptions;mongodb.MongoClient;Member[withSession].WithArity[2].Argument[0]", //
-        "mongodb.ClientSessionOptions;mongodb/mongodb.ClientSessionOptions;", //
-        "mongodb.ClientSessionOptions;mongoose.mongodb.ClientSessionOptions;", //
-        "mongodb.ClientSessionStatic;mongodb/mongodb.ClientSessionStatic;", //
-        "mongodb.ClientSessionStatic;mongodb;Member[ClientSession]", //
-        "mongodb.ClientSessionStatic;mongoose.mongodb.ClientSessionStatic;", //
-        "mongodb.CollStatsOptions;mongodb.Collection;Member[stats].Argument[0]", //
-        "mongodb.CollStatsOptions;mongodb/mongodb.CollStatsOptions;", //
-        "mongodb.CollStatsOptions;mongoose.mongodb.CollStatsOptions;", //
-        "mongodb.Collection;mongodb.ChangeStream;Member[parent]", //
-        "mongodb.Collection;mongodb.Collection;Member[rename].Argument[1,2].TypeVar[mongodb.Callback.0]", //
-        "mongodb.Collection;mongodb.Collection;Member[rename].WithArity[1,2].ReturnValue.Awaited", //
-        "mongodb.Collection;mongodb.CollectionStatic;Instance", //
-        "mongodb.Collection;mongodb.Db;Member[collection].ReturnValue", //
-        "mongodb.Collection;mongodb.Db;Member[collections].Argument[0,1].TypeVar[mongodb.Callback.0].ArrayElement", //
-        "mongodb.Collection;mongodb.Db;Member[collections].WithArity[0,1].ReturnValue.Awaited.ArrayElement", //
-        "mongodb.Collection;mongodb.Db;Member[createCollection].Argument[2].TypeVar[mongodb.Callback.0]", //
-        "mongodb.Collection;mongodb.Db;Member[createCollection].WithArity[1,2].ReturnValue.Awaited", //
-        "mongodb.Collection;mongodb.Db;Member[createCollection].WithArity[2].Argument[1].TypeVar[mongodb.Callback.0]", //
-        "mongodb.Collection;mongodb.Db;Member[renameCollection].Argument[2,3].TypeVar[mongodb.Callback.0]", //
-        "mongodb.Collection;mongodb.Db;Member[renameCollection].WithArity[2,3].ReturnValue.Awaited", //
-        "mongodb.Collection;mongodb.GridFSBucketWriteStream;Member[chunks,files]", //
-        "mongodb.Collection;mongodb.ListIndexesCursor;Member[parent]", //
-        "mongodb.Collection;mongodb.ListIndexesCursorStatic;Argument[0]", //
-        "mongodb.Collection;mongodb.OrderedBulkOperationStatic;Argument[0]", //
-        "mongodb.Collection;mongodb.UnorderedBulkOperationStatic;Argument[0]", //
-        "mongodb.Collection;mongodb/mongodb.Collection;", //
-        "mongodb.Collection;mongoose.mongodb.Collection;", //
-        "mongodb.CollectionStatic;mongodb/mongodb.CollectionStatic;", //
-        "mongodb.CollectionStatic;mongodb;Member[Collection]", //
-        "mongodb.CollectionStatic;mongoose.mongodb.CollectionStatic;", //
-        "mongodb.CommandOperationOptions;mongodb.AddUserOptions;", //
-        "mongodb.CommandOperationOptions;mongodb.Admin;Member[buildInfo,ping,replSetGetStatus,serverInfo,serverStatus].Argument[0]", //
-        "mongodb.CommandOperationOptions;mongodb.AggregateOptions;", //
-        "mongodb.CommandOperationOptions;mongodb.BulkWriteOptions;", //
-        "mongodb.CommandOperationOptions;mongodb.CollStatsOptions;", //
-        "mongodb.CommandOperationOptions;mongodb.CountOptions;", //
-        "mongodb.CommandOperationOptions;mongodb.CreateCollectionOptions;", //
-        "mongodb.CommandOperationOptions;mongodb.CreateIndexesOptions;", //
-        "mongodb.CommandOperationOptions;mongodb.DbStatsOptions;", //
-        "mongodb.CommandOperationOptions;mongodb.DeleteOptions;", //
-        "mongodb.CommandOperationOptions;mongodb.DistinctOptions;", //
-        "mongodb.CommandOperationOptions;mongodb.DropCollectionOptions;", //
-        "mongodb.CommandOperationOptions;mongodb.DropDatabaseOptions;", //
-        "mongodb.CommandOperationOptions;mongodb.DropIndexesOptions;", //
-        "mongodb.CommandOperationOptions;mongodb.EstimatedDocumentCountOptions;", //
-        "mongodb.CommandOperationOptions;mongodb.EvalOptions;", //
-        "mongodb.CommandOperationOptions;mongodb.FindOneAndDeleteOptions;", //
-        "mongodb.CommandOperationOptions;mongodb.FindOneAndReplaceOptions;", //
-        "mongodb.CommandOperationOptions;mongodb.FindOneAndUpdateOptions;", //
-        "mongodb.CommandOperationOptions;mongodb.FindOptions;", //
-        "mongodb.CommandOperationOptions;mongodb.InsertOneOptions;", //
-        "mongodb.CommandOperationOptions;mongodb.ListCollectionsOptions;", //
-        "mongodb.CommandOperationOptions;mongodb.ListDatabasesOptions;", //
-        "mongodb.CommandOperationOptions;mongodb.ListIndexesOptions;", //
-        "mongodb.CommandOperationOptions;mongodb.MapReduceOptions;", //
-        "mongodb.CommandOperationOptions;mongodb.ProfilingLevelOptions;", //
-        "mongodb.CommandOperationOptions;mongodb.RemoveUserOptions;", //
-        "mongodb.CommandOperationOptions;mongodb.RenameOptions;", //
-        "mongodb.CommandOperationOptions;mongodb.ReplaceOptions;", //
-        "mongodb.CommandOperationOptions;mongodb.RunCommandOptions;", //
-        "mongodb.CommandOperationOptions;mongodb.SetProfilingLevelOptions;", //
-        "mongodb.CommandOperationOptions;mongodb.TransactionOptions;", //
-        "mongodb.CommandOperationOptions;mongodb.UpdateOptions;", //
-        "mongodb.CommandOperationOptions;mongodb.ValidateCollectionOptions;", //
-        "mongodb.CommandOperationOptions;mongodb/mongodb.CommandOperationOptions;", //
-        "mongodb.CommandOperationOptions;mongoose.mongodb.CommandOperationOptions;", //
-        "mongodb.ConnectionOptions;mongodb/mongodb.ConnectionOptions;", //
-        "mongodb.ConnectionOptions;mongoose.mongodb.ConnectionOptions;", //
-        "mongodb.CountDocumentsOptions;mongodb.Collection;Member[countDocuments].Argument[1]", //
-        "mongodb.CountDocumentsOptions;mongodb/mongodb.CountDocumentsOptions;", //
-        "mongodb.CountDocumentsOptions;mongoose.mongodb.CountDocumentsOptions;", //
-        "mongodb.CountOptions;mongodb.Collection;Member[count].Argument[1]", //
-        "mongodb.CountOptions;mongodb.FindCursor;Member[count].Argument[0]", //
-        "mongodb.CountOptions;mongodb/mongodb.CountOptions;", //
-        "mongodb.CountOptions;mongoose.mongodb.CountOptions;", //
-        "mongodb.CreateCollectionOptions;mongodb.Db;Member[createCollection].WithArity[1,2,3].Argument[1]", //
-        "mongodb.CreateCollectionOptions;mongodb/mongodb.CreateCollectionOptions;", //
-        "mongodb.CreateCollectionOptions;mongoose.mongodb.CreateCollectionOptions;", //
-        "mongodb.CreateIndexesOptions;mongodb.Collection;Member[createIndex,createIndexes].Argument[1]", //
-        "mongodb.CreateIndexesOptions;mongodb.Db;Member[createIndex].Argument[2]", //
-        "mongodb.CreateIndexesOptions;mongodb/mongodb.CreateIndexesOptions;", //
-        "mongodb.CreateIndexesOptions;mongoose.mongodb.CreateIndexesOptions;", //
-        "mongodb.Db;mongodb.ChangeStream;Member[parent]", //
-        "mongodb.Db;mongodb.DbStatic;Instance", //
-        "mongodb.Db;mongodb.GridFSBucketStatic;Argument[0]", //
-        "mongodb.Db;mongodb.ListCollectionsCursor;Member[parent]", //
-        "mongodb.Db;mongodb.ListCollectionsCursorStatic;Argument[0]", //
-        "mongodb.Db;mongodb.MongoClient;Member[db].ReturnValue", //
-        "mongodb.Db;mongodb/mongodb.Db;", //
-        "mongodb.Db;mongoose.mongodb.Db;", //
-        "mongodb.DbStatic;mongodb/mongodb.DbStatic;", //
-        "mongodb.DbStatic;mongodb;Member[Db]", //
-        "mongodb.DbStatic;mongoose.mongodb.DbStatic;", //
-        "mongodb.DbStatsOptions;mongodb.Db;Member[stats].Argument[0]", //
-        "mongodb.DbStatsOptions;mongodb/mongodb.DbStatsOptions;", //
-        "mongodb.DbStatsOptions;mongoose.mongodb.DbStatsOptions;", //
-        "mongodb.DeleteManyModel;mongodb.AnyBulkWriteOperation;Member[deleteMany]", //
-        "mongodb.DeleteManyModel;mongodb/mongodb.DeleteManyModel;", //
-        "mongodb.DeleteManyModel;mongoose.mongodb.DeleteManyModel;", //
-        "mongodb.DeleteOneModel;mongodb.AnyBulkWriteOperation;Member[deleteOne]", //
-        "mongodb.DeleteOneModel;mongodb/mongodb.DeleteOneModel;", //
-        "mongodb.DeleteOneModel;mongoose.mongodb.DeleteOneModel;", //
-        "mongodb.DeleteOptions;mongodb.Collection;Member[deleteMany,deleteOne,remove].Argument[1]", //
-        "mongodb.DeleteOptions;mongodb/mongodb.DeleteOptions;", //
-        "mongodb.DeleteOptions;mongoose.mongodb.DeleteOptions;", //
-        "mongodb.DistinctOptions;mongodb.Collection;Member[distinct].Argument[2]", //
-        "mongodb.DistinctOptions;mongodb/mongodb.DistinctOptions;", //
-        "mongodb.DistinctOptions;mongoose.mongodb.DistinctOptions;", //
-        "mongodb.DropCollectionOptions;mongodb.Collection;Member[drop].Argument[0]", //
-        "mongodb.DropCollectionOptions;mongodb.Db;Member[dropCollection].Argument[1]", //
-        "mongodb.DropCollectionOptions;mongodb/mongodb.DropCollectionOptions;", //
-        "mongodb.DropCollectionOptions;mongoose.mongodb.DropCollectionOptions;", //
-        "mongodb.DropDatabaseOptions;mongodb.Db;Member[dropDatabase].Argument[0]", //
-        "mongodb.DropDatabaseOptions;mongodb/mongodb.DropDatabaseOptions;", //
-        "mongodb.DropDatabaseOptions;mongoose.mongodb.DropDatabaseOptions;", //
-        "mongodb.DropIndexesOptions;mongodb.Collection;Member[dropIndex].Argument[1]", //
-        "mongodb.DropIndexesOptions;mongodb.Collection;Member[dropIndexes].Argument[0]", //
-        "mongodb.DropIndexesOptions;mongodb/mongodb.DropIndexesOptions;", //
-        "mongodb.DropIndexesOptions;mongoose.mongodb.DropIndexesOptions;", //
-        "mongodb.EstimatedDocumentCountOptions;mongodb.Collection;Member[estimatedDocumentCount].Argument[0]", //
-        "mongodb.EstimatedDocumentCountOptions;mongodb/mongodb.EstimatedDocumentCountOptions;", //
-        "mongodb.EstimatedDocumentCountOptions;mongoose.mongodb.EstimatedDocumentCountOptions;", //
-        "mongodb.EvalOptions;mongodb/mongodb.EvalOptions;", //
-        "mongodb.EvalOptions;mongoose.mongodb.EvalOptions;", //
-        "mongodb.FindCursor;mongodb.Collection;Member[find].WithArity[0,1,2].ReturnValue", //
-        "mongodb.FindCursor;mongodb.FindCursor;Member[addQueryModifier,allowDiskUse,clone,collation,comment,filter,hint,limit,map,max,maxAwaitTimeMS,maxTimeMS,min,project,returnKey,showRecordId,skip,sort].ReturnValue", //
-        "mongodb.FindCursor;mongodb.FindCursorStatic;Instance", //
-        "mongodb.FindCursor;mongodb.GridFSBucket;Member[find].ReturnValue", //
-        "mongodb.FindCursor;mongodb/mongodb.FindCursor;", //
-        "mongodb.FindCursor;mongoose.mongodb.FindCursor;", //
-        "mongodb.FindCursorStatic;mongodb/mongodb.FindCursorStatic;", //
-        "mongodb.FindCursorStatic;mongodb;Member[FindCursor]", //
-        "mongodb.FindCursorStatic;mongoose.mongodb.FindCursorStatic;", //
-        "mongodb.FindOneAndDeleteOptions;mongodb.Collection;Member[findOneAndDelete].Argument[1]", //
-        "mongodb.FindOneAndDeleteOptions;mongodb/mongodb.FindOneAndDeleteOptions;", //
-        "mongodb.FindOneAndDeleteOptions;mongoose.mongodb.FindOneAndDeleteOptions;", //
-        "mongodb.FindOneAndReplaceOptions;mongodb.Collection;Member[findOneAndReplace].Argument[2]", //
-        "mongodb.FindOneAndReplaceOptions;mongodb/mongodb.FindOneAndReplaceOptions;", //
-        "mongodb.FindOneAndReplaceOptions;mongoose.mongodb.FindOneAndReplaceOptions;", //
-        "mongodb.FindOneAndUpdateOptions;mongodb.Collection;Member[findOneAndUpdate].Argument[2]", //
-        "mongodb.FindOneAndUpdateOptions;mongodb/mongodb.FindOneAndUpdateOptions;", //
-        "mongodb.FindOneAndUpdateOptions;mongoose.mongodb.FindOneAndUpdateOptions;", //
-        "mongodb.FindOperators;mongodb.BulkOperationBase;Member[find].ReturnValue", //
-        "mongodb.FindOperators;mongodb.FindOperators;Member[arrayFilters,collation,upsert].ReturnValue", //
-        "mongodb.FindOperators;mongodb.FindOperatorsStatic;Instance", //
-        "mongodb.FindOperators;mongodb/mongodb.FindOperators;", //
-        "mongodb.FindOperators;mongoose.mongodb.FindOperators;", //
-        "mongodb.FindOperatorsStatic;mongodb/mongodb.FindOperatorsStatic;", //
-        "mongodb.FindOperatorsStatic;mongodb;Member[FindOperators]", //
-        "mongodb.FindOperatorsStatic;mongoose.mongodb.FindOperatorsStatic;", //
-        "mongodb.FindOptions;mongodb.Collection;Member[find,findOne].Argument[1]", //
-        "mongodb.FindOptions;mongodb.GridFSBucket;Member[find].Argument[1]", //
-        "mongodb.FindOptions;mongodb/mongodb.FindOptions;", //
-        "mongodb.FindOptions;mongoose.mongodb.FindOptions;", //
-        "mongodb.GridFSBucket;mongodb.GridFSBucketStatic;Instance", //
-        "mongodb.GridFSBucket;mongodb.GridFSBucketWriteStream;Member[bucket]", //
-        "mongodb.GridFSBucket;mongodb/mongodb.GridFSBucket;", //
-        "mongodb.GridFSBucket;mongoose.mongodb.GridFSBucket;", //
-        "mongodb.GridFSBucketStatic;mongodb/mongodb.GridFSBucketStatic;", //
-        "mongodb.GridFSBucketStatic;mongodb;Member[GridFSBucket]", //
-        "mongodb.GridFSBucketStatic;mongoose.mongodb.GridFSBucketStatic;", //
-        "mongodb.GridFSBucketWriteStream;mongodb.GridFSBucket;Member[openUploadStream,openUploadStreamWithId].ReturnValue", //
-        "mongodb.GridFSBucketWriteStream;mongodb.GridFSBucketWriteStream;Member[end].ReturnValue", //
-        "mongodb.GridFSBucketWriteStream;mongodb.GridFSBucketWriteStreamStatic;Instance", //
-        "mongodb.GridFSBucketWriteStream;mongodb/mongodb.GridFSBucketWriteStream;", //
-        "mongodb.GridFSBucketWriteStream;mongoose.mongodb.GridFSBucketWriteStream;", //
-        "mongodb.GridFSBucketWriteStreamStatic;mongodb/mongodb.GridFSBucketWriteStreamStatic;", //
-        "mongodb.GridFSBucketWriteStreamStatic;mongodb;Member[GridFSBucketWriteStream]", //
-        "mongodb.GridFSBucketWriteStreamStatic;mongoose.mongodb.GridFSBucketWriteStreamStatic;", //
-        "mongodb.IndexInformationOptions;mongodb.Collection;Member[indexExists].Argument[1]", //
-        "mongodb.IndexInformationOptions;mongodb.Collection;Member[indexInformation,indexes].Argument[0]", //
-        "mongodb.IndexInformationOptions;mongodb.Db;Member[indexInformation].Argument[1]", //
-        "mongodb.IndexInformationOptions;mongodb/mongodb.IndexInformationOptions;", //
-        "mongodb.IndexInformationOptions;mongoose.mongodb.IndexInformationOptions;", //
-        "mongodb.InsertOneOptions;mongodb.Collection;Member[insertOne].Argument[1]", //
-        "mongodb.InsertOneOptions;mongodb/mongodb.InsertOneOptions;", //
-        "mongodb.InsertOneOptions;mongoose.mongodb.InsertOneOptions;", //
-        "mongodb.ListCollectionsCursor;mongodb.Db;Member[listCollections].WithArity[0,1,2].ReturnValue", //
-        "mongodb.ListCollectionsCursor;mongodb.ListCollectionsCursor;Member[clone].ReturnValue", //
-        "mongodb.ListCollectionsCursor;mongodb.ListCollectionsCursorStatic;Instance", //
-        "mongodb.ListCollectionsCursor;mongodb/mongodb.ListCollectionsCursor;", //
-        "mongodb.ListCollectionsCursor;mongoose.mongodb.ListCollectionsCursor;", //
-        "mongodb.ListCollectionsCursorStatic;mongodb/mongodb.ListCollectionsCursorStatic;", //
-        "mongodb.ListCollectionsCursorStatic;mongodb;Member[ListCollectionsCursor]", //
-        "mongodb.ListCollectionsCursorStatic;mongoose.mongodb.ListCollectionsCursorStatic;", //
-        "mongodb.ListCollectionsOptions;mongodb.Db;Member[collections].Argument[0]", //
-        "mongodb.ListCollectionsOptions;mongodb.Db;Member[listCollections].WithArity[0,1,2].Argument[1]", //
-        "mongodb.ListCollectionsOptions;mongodb.ListCollectionsCursor;Member[options]", //
-        "mongodb.ListCollectionsOptions;mongodb.ListCollectionsCursorStatic;Argument[2]", //
-        "mongodb.ListCollectionsOptions;mongodb/mongodb.ListCollectionsOptions;", //
-        "mongodb.ListCollectionsOptions;mongoose.mongodb.ListCollectionsOptions;", //
-        "mongodb.ListDatabasesOptions;mongodb.Admin;Member[listDatabases].Argument[0]", //
-        "mongodb.ListDatabasesOptions;mongodb/mongodb.ListDatabasesOptions;", //
-        "mongodb.ListDatabasesOptions;mongoose.mongodb.ListDatabasesOptions;", //
-        "mongodb.ListIndexesCursor;mongodb.Collection;Member[listIndexes].ReturnValue", //
-        "mongodb.ListIndexesCursor;mongodb.ListIndexesCursor;Member[clone].ReturnValue", //
-        "mongodb.ListIndexesCursor;mongodb.ListIndexesCursorStatic;Instance", //
-        "mongodb.ListIndexesCursor;mongodb/mongodb.ListIndexesCursor;", //
-        "mongodb.ListIndexesCursor;mongoose.mongodb.ListIndexesCursor;", //
-        "mongodb.ListIndexesCursorStatic;mongodb/mongodb.ListIndexesCursorStatic;", //
-        "mongodb.ListIndexesCursorStatic;mongodb;Member[ListIndexesCursor]", //
-        "mongodb.ListIndexesCursorStatic;mongoose.mongodb.ListIndexesCursorStatic;", //
-        "mongodb.ListIndexesOptions;mongodb.Collection;Member[listIndexes].Argument[0]", //
-        "mongodb.ListIndexesOptions;mongodb.ListIndexesCursor;Member[options]", //
-        "mongodb.ListIndexesOptions;mongodb.ListIndexesCursorStatic;Argument[1]", //
-        "mongodb.ListIndexesOptions;mongodb/mongodb.ListIndexesOptions;", //
-        "mongodb.ListIndexesOptions;mongoose.mongodb.ListIndexesOptions;", //
-        "mongodb.MapReduceOptions;mongodb.Collection;Member[mapReduce].Argument[2]", //
-        "mongodb.MapReduceOptions;mongodb/mongodb.MapReduceOptions;", //
-        "mongodb.MapReduceOptions;mongoose.mongodb.MapReduceOptions;", //
-        "mongodb.MongoClient;mongodb.AutoEncrypter;Argument[0]", //
-        "mongodb.MongoClient;mongodb.AutoEncryptionOptions;Member[keyVaultClient]", //
-        "mongodb.MongoClient;mongodb.ChangeStream;Member[parent]", //
-        "mongodb.MongoClient;mongodb.DbStatic;Argument[0]", //
-        "mongodb.MongoClient;mongodb.MongoClient;Member[connect].Argument[0].TypeVar[mongodb.Callback.0]", //
-        "mongodb.MongoClient;mongodb.MongoClient;Member[connect].WithArity[0].ReturnValue.Awaited", //
-        "mongodb.MongoClient;mongodb.MongoClientEvents;Member[open].Argument[0]", //
-        "mongodb.MongoClient;mongodb.MongoClientStatic;Instance", //
-        "mongodb.MongoClient;mongodb.MongoClientStatic;Member[connect].Argument[1,2].TypeVar[mongodb.Callback.0]", //
-        "mongodb.MongoClient;mongodb.MongoClientStatic;Member[connect].WithArity[1,2].ReturnValue.Awaited", //
-        "mongodb.MongoClient;mongodb/mongodb.MongoClient;", //
-        "mongodb.MongoClient;mongoose.mongodb.MongoClient;", //
-        "mongodb.MongoClientEvents;mongodb/mongodb.MongoClientEvents;", //
-        "mongodb.MongoClientEvents;mongoose.mongodb.MongoClientEvents;", //
-        "mongodb.MongoClientOptions;mongodb.MongoClientStatic;Argument[1]", //
-        "mongodb.MongoClientOptions;mongodb.MongoClientStatic;Member[connect].Argument[1]", //
-        "mongodb.MongoClientOptions;mongodb/mongodb.MongoClientOptions;", //
-        "mongodb.MongoClientOptions;mongoose.mongodb.MongoClientOptions;", //
-        "mongodb.MongoClientStatic;mongodb/mongodb.MongoClientStatic;", //
-        "mongodb.MongoClientStatic;mongodb;Member[MongoClient]", //
-        "mongodb.MongoClientStatic;mongoose.mongodb.MongoClientStatic;", //
-        "mongodb.MongoOptions;mongodb.ClientSession;Member[clientOptions]", //
-        "mongodb.MongoOptions;mongodb.MongoClient;Member[options]", //
-        "mongodb.MongoOptions;mongodb/mongodb.MongoOptions;", //
-        "mongodb.MongoOptions;mongoose.mongodb.MongoOptions;", //
-        "mongodb.OperationOptions;mongodb.Collection;Member[isCapped,options].Argument[0]", //
-        "mongodb.OperationOptions;mongodb.CommandOperationOptions;", //
-        "mongodb.OperationOptions;mongodb/mongodb.OperationOptions;", //
-        "mongodb.OperationOptions;mongoose.mongodb.OperationOptions;", //
-        "mongodb.OrderedBulkOperation;mongodb.Collection;Member[initializeOrderedBulkOp].ReturnValue", //
-        "mongodb.OrderedBulkOperation;mongodb.OrderedBulkOperation;Member[addToOperationsList].ReturnValue", //
-        "mongodb.OrderedBulkOperation;mongodb.OrderedBulkOperationStatic;Instance", //
-        "mongodb.OrderedBulkOperation;mongodb/mongodb.OrderedBulkOperation;", //
-        "mongodb.OrderedBulkOperation;mongoose.mongodb.OrderedBulkOperation;", //
-        "mongodb.OrderedBulkOperationStatic;mongodb/mongodb.OrderedBulkOperationStatic;", //
-        "mongodb.OrderedBulkOperationStatic;mongodb;Member[OrderedBulkOperation]", //
-        "mongodb.OrderedBulkOperationStatic;mongoose.mongodb.OrderedBulkOperationStatic;", //
-        "mongodb.ProfilingLevelOptions;mongodb.Db;Member[profilingLevel].Argument[0]", //
-        "mongodb.ProfilingLevelOptions;mongodb/mongodb.ProfilingLevelOptions;", //
-        "mongodb.ProfilingLevelOptions;mongoose.mongodb.ProfilingLevelOptions;", //
-        "mongodb.ReadPreferenceFromOptions;mongodb.ReadPreferenceStatic;Member[fromOptions].Argument[0]", //
-        "mongodb.ReadPreferenceFromOptions;mongodb/mongodb.ReadPreferenceFromOptions;", //
-        "mongodb.ReadPreferenceFromOptions;mongoose.mongodb.ReadPreferenceFromOptions;", //
-        "mongodb.ReadPreferenceStatic;mongodb/mongodb.ReadPreferenceStatic;", //
-        "mongodb.ReadPreferenceStatic;mongodb;Member[ReadPreference]", //
-        "mongodb.ReadPreferenceStatic;mongoose.mongodb.ReadPreferenceStatic;", //
-        "mongodb.RemoveUserOptions;mongodb.Admin;Member[removeUser].Argument[1]", //
-        "mongodb.RemoveUserOptions;mongodb.Db;Member[removeUser].Argument[1]", //
-        "mongodb.RemoveUserOptions;mongodb/mongodb.RemoveUserOptions;", //
-        "mongodb.RemoveUserOptions;mongoose.mongodb.RemoveUserOptions;", //
-        "mongodb.RenameOptions;mongodb.Collection;Member[rename].Argument[1]", //
-        "mongodb.RenameOptions;mongodb.Db;Member[renameCollection].Argument[2]", //
-        "mongodb.RenameOptions;mongodb/mongodb.RenameOptions;", //
-        "mongodb.RenameOptions;mongoose.mongodb.RenameOptions;", //
-        "mongodb.ReplaceOptions;mongodb.Collection;Member[replaceOne].Argument[2]", //
-        "mongodb.ReplaceOptions;mongodb/mongodb.ReplaceOptions;", //
-        "mongodb.ReplaceOptions;mongoose.mongodb.ReplaceOptions;", //
-        "mongodb.RunCommandOptions;mongodb.Admin;Member[command].Argument[1]", //
-        "mongodb.RunCommandOptions;mongodb.Db;Member[command].Argument[1]", //
-        "mongodb.RunCommandOptions;mongodb/mongodb.RunCommandOptions;", //
-        "mongodb.RunCommandOptions;mongoose.mongodb.RunCommandOptions;", //
-        "mongodb.SelectServerOptions;mongodb/mongodb.SelectServerOptions;", //
-        "mongodb.SelectServerOptions;mongoose.mongodb.SelectServerOptions;", //
-        "mongodb.SetProfilingLevelOptions;mongodb.Db;Member[setProfilingLevel].Argument[1]", //
-        "mongodb.SetProfilingLevelOptions;mongodb/mongodb.SetProfilingLevelOptions;", //
-        "mongodb.SetProfilingLevelOptions;mongoose.mongodb.SetProfilingLevelOptions;", //
-        "mongodb.Transaction;mongodb.ClientSession;Member[transaction]", //
-        "mongodb.Transaction;mongodb.TransactionStatic;Instance", //
-        "mongodb.Transaction;mongodb/mongodb.Transaction;", //
-        "mongodb.Transaction;mongoose.mongodb.Transaction;", //
-        "mongodb.TransactionOptions;mongodb.ClientSession;Member[defaultTransactionOptions]", //
-        "mongodb.TransactionOptions;mongodb.ClientSession;Member[startTransaction].Argument[0]", //
-        "mongodb.TransactionOptions;mongodb.ClientSession;Member[withTransaction].Argument[1]", //
-        "mongodb.TransactionOptions;mongodb.ClientSessionOptions;Member[defaultTransactionOptions]", //
-        "mongodb.TransactionOptions;mongodb.Transaction;Member[options]", //
-        "mongodb.TransactionOptions;mongodb/mongodb.TransactionOptions;", //
-        "mongodb.TransactionOptions;mongoose.mongodb.TransactionOptions;", //
-        "mongodb.TransactionStatic;mongodb/mongodb.TransactionStatic;", //
-        "mongodb.TransactionStatic;mongodb;Member[Transaction]", //
-        "mongodb.TransactionStatic;mongoose.mongodb.TransactionStatic;", //
-        "mongodb.TypedEventEmitter;mongodb.AbstractCursor;", //
-        "mongodb.TypedEventEmitter;mongodb.ChangeStream;", //
-        "mongodb.TypedEventEmitter;mongodb.ClientSession;", //
-        "mongodb.TypedEventEmitter;mongodb.GridFSBucket;", //
-        "mongodb.TypedEventEmitter;mongodb.MongoClient;", //
-        "mongodb.UnorderedBulkOperation;mongodb.Collection;Member[initializeUnorderedBulkOp].ReturnValue", //
-        "mongodb.UnorderedBulkOperation;mongodb.UnorderedBulkOperation;Member[addToOperationsList].ReturnValue", //
-        "mongodb.UnorderedBulkOperation;mongodb.UnorderedBulkOperationStatic;Instance", //
-        "mongodb.UnorderedBulkOperation;mongodb/mongodb.UnorderedBulkOperation;", //
-        "mongodb.UnorderedBulkOperation;mongoose.mongodb.UnorderedBulkOperation;", //
-        "mongodb.UnorderedBulkOperationStatic;mongodb/mongodb.UnorderedBulkOperationStatic;", //
-        "mongodb.UnorderedBulkOperationStatic;mongodb;Member[UnorderedBulkOperation]", //
-        "mongodb.UnorderedBulkOperationStatic;mongoose.mongodb.UnorderedBulkOperationStatic;", //
-        "mongodb.UpdateManyModel;mongodb.AnyBulkWriteOperation;Member[updateMany]", //
-        "mongodb.UpdateManyModel;mongodb/mongodb.UpdateManyModel;", //
-        "mongodb.UpdateManyModel;mongoose.mongodb.UpdateManyModel;", //
-        "mongodb.UpdateOneModel;mongodb.AnyBulkWriteOperation;Member[updateOne]", //
-        "mongodb.UpdateOneModel;mongodb/mongodb.UpdateOneModel;", //
-        "mongodb.UpdateOneModel;mongoose.mongodb.UpdateOneModel;", //
-        "mongodb.UpdateOptions;mongodb.Collection;Member[update,updateMany,updateOne].Argument[2]", //
-        "mongodb.UpdateOptions;mongodb/mongodb.UpdateOptions;", //
-        "mongodb.UpdateOptions;mongoose.mongodb.UpdateOptions;", //
-        "mongodb.ValidateCollectionOptions;mongodb.Admin;Member[validateCollection].Argument[1]", //
-        "mongodb.ValidateCollectionOptions;mongodb/mongodb.ValidateCollectionOptions;", //
-        "mongodb.ValidateCollectionOptions;mongoose.mongodb.ValidateCollectionOptions;", //
-        "mongodb.WithSessionCallback;mongodb.MongoClient;Member[withSession].Argument[1]", //
-        "mongodb.WithSessionCallback;mongodb.MongoClient;Member[withSession].WithArity[1].Argument[0]", //
-        "mongodb.WithSessionCallback;mongodb/mongodb.WithSessionCallback;", //
-        "mongodb.WithSessionCallback;mongoose.mongodb.WithSessionCallback;", //
-        "mongodb.WithTransactionCallback;mongodb.ClientSession;Member[withTransaction].Argument[0]", //
-        "mongodb.WithTransactionCallback;mongodb/mongodb.WithTransactionCallback;", //
-        "mongodb.WithTransactionCallback;mongoose.mongodb.WithTransactionCallback;", //
-        "mongodb;mongoose;Member[mongodb]", //
-        "mongoose.AcceptsDiscriminator;mongoose.Model;", //
-        "mongoose.AcceptsDiscriminator;mongoose.Schema.Types.Array;", //
-        "mongoose.AcceptsDiscriminator;mongoose.Schema.Types.DocumentArray;", //
-        "mongoose.AcceptsDiscriminator;mongoose.Schema.Types.Subdocument;", //
-        "mongoose.Aggregate;mongoose.Aggregate;Member[addCursorFlag,addFields,allowDiskUse,append,collation,count,facet,graphLookup,group,hint,limit,lookup,match,model,near,option,project,read,readConcern,redact,replaceRoot,sample,search,session,skip,sort,sortByCount,unionWith,unwind].ReturnValue", //
-        "mongoose.Aggregate;mongoose.AggregateStatic;Instance", //
-        "mongoose.Aggregate;mongoose.Model;Member[aggregate].ReturnValue", //
-        "mongoose.AggregateStatic;mongoose;Member[Aggregate]", //
-        "mongoose.Collection;mongoose.Collection;Instance", //
-        "mongoose.Collection;mongoose.Connection;Member[collection].ReturnValue", //
-        "mongoose.Collection;mongoose.Connection;Member[collections].AnyMember", //
-        "mongoose.Collection;mongoose.Document;Member[collection]", //
-        "mongoose.Collection;mongoose.Model;Member[collection]", //
-        "mongoose.Collection;mongoose;Member[Collection]", //
-        "mongoose.CollectionBase;mongoose.Collection;", //
-        "mongoose.CompileModelOptions;mongoose.Connection;Member[model].Argument[3]", //
-        "mongoose.CompileModelOptions;mongoose;Member[model].Argument[3]", //
-        "mongoose.ConnectOptions;mongoose.Connection;Member[openUri].WithArity[1,2,3].Argument[1]", //
-        "mongoose.ConnectOptions;mongoose;Member[connect,createConnection].WithArity[1,2,3].Argument[1]", //
-        "mongoose.Connection;mongoose.Collection;Argument[1]", //
-        "mongoose.Connection;mongoose.CollectionBase;Member[conn]", //
-        "mongoose.Connection;mongoose.CompileModelOptions;Member[connection]", //
-        "mongoose.Connection;mongoose.Connection;Member[asPromise].ReturnValue.Awaited", //
-        "mongoose.Connection;mongoose.Connection;Member[deleteModel,plugin,setClient,useDb].ReturnValue", //
-        "mongoose.Connection;mongoose.Connection;Member[openUri].Argument[2].TypeVar[mongoose.Callback.0]", //
-        "mongoose.Connection;mongoose.Connection;Member[openUri].WithArity[1,2].ReturnValue.Awaited", //
-        "mongoose.Connection;mongoose.Connection;Member[openUri].WithArity[2,3].ReturnValue", //
-        "mongoose.Connection;mongoose.Connection;Member[openUri].WithArity[2].Argument[1].TypeVar[mongoose.Callback.0]", //
-        "mongoose.Connection;mongoose.ConnectionStatic;Instance", //
-        "mongoose.Connection;mongoose.Document;Member[db]", //
-        "mongoose.Connection;mongoose.Model;Member[db]", //
-        "mongoose.Connection;mongoose;Member[connection]", //
-        "mongoose.Connection;mongoose;Member[connections].ArrayElement", //
-        "mongoose.Connection;mongoose;Member[createConnection].Argument[2].TypeVar[mongoose.Callback.0]", //
-        "mongoose.Connection;mongoose;Member[createConnection].WithArity[0,1,2].ReturnValue", //
-        "mongoose.Connection;mongoose;Member[createConnection].WithArity[2].Argument[1].TypeVar[mongoose.Callback.0]", //
-        "mongoose.ConnectionStatic;mongoose;Member[Connection]", //
-        "mongoose.Cursor;mongoose.Query;Member[cursor].ReturnValue", //
-        "mongoose.DiscriminatorModel;mongoose.DiscriminatorSchema;TypeVar[mongoose.Schema.1]", //
-        "mongoose.Document;mongoose.Document;Member[$getAllSubdocs,$getPopulatedDocs].ReturnValue.ArrayElement", //
-        "mongoose.Document;mongoose.Document;Member[$inc,$parent,$set,depopulate,increment,init,overwrite,set].ReturnValue", //
-        "mongoose.Document;mongoose.Document;Member[delete,deleteOne].WithArity[0,1].ReturnValue.TypeVar[mongoose.QueryWithHelpers.1]", //
-        "mongoose.Document;mongoose.Document;Member[equals].Argument[0]", //
-        "mongoose.Document;mongoose.Document;Member[init].Argument[2].TypeVar[mongoose.Callback.0]", //
-        "mongoose.Document;mongoose.Document;Member[remove,save].WithArity[0,1].ReturnValue.Awaited", //
-        "mongoose.Document;mongoose.Document;Member[replaceOne,update,updateOne].ReturnValue.TypeVar[mongoose.Query.1]", //
-        "mongoose.Document;mongoose.Document;Member[save].Argument[1].TypeVar[mongoose.Callback.0]", //
-        "mongoose.Document;mongoose.Document;Member[save].WithArity[1].Argument[0].TypeVar[mongoose.Callback.0]", //
-        "mongoose.Document;mongoose.DocumentStatic;Instance", //
-        "mongoose.Document;mongoose.Error.VersionErrorStatic;Argument[0]", //
-        "mongoose.Document;mongoose.HydratedDocument;", //
-        "mongoose.Document;mongoose.HydratedDocument;TypeVar[mongoose.Require_id.0]", //
-        "mongoose.Document;mongoose.Model;Member[bulkSave].Argument[0].ArrayElement", //
-        "mongoose.Document;mongoose.TVirtualPathFN;Argument[2]", //
-        "mongoose.Document;mongoose.Types.Subdocument;", //
-        "mongoose.Document;mongoose.Types.Subdocument;Member[$parent,ownerDocument,parent].ReturnValue", //
-        "mongoose.Document;mongoose.VirtualType;Member[applyGetters,applySetters].Argument[1]", //
-        "mongoose.DocumentStatic;mongoose;Member[Document]", //
-        "mongoose.Error.VersionErrorStatic;mongoose;Member[Error].Member[VersionError]", //
-        "mongoose.HydratedDocument;mongoose.Model;Instance", //
-        "mongoose.HydratedDocument;mongoose.Model;Member[$where,count,countDocuments,deleteMany,deleteOne,distinct,estimatedDocumentCount,find,geoSearch,remove,replaceOne,update,updateMany,updateOne,where].ReturnValue.TypeVar[mongoose.QueryWithHelpers.1]", //
-        "mongoose.HydratedDocument;mongoose.Model;Member[$where,find,geoSearch,where].ReturnValue.TypeVar[mongoose.QueryWithHelpers.0].ArrayElement", //
-        "mongoose.HydratedDocument;mongoose.Model;Member[create,insertMany].WithArity[2].Argument[1].TypeVar[mongoose.Callback.0].ArrayElement", //
-        "mongoose.HydratedDocument;mongoose.Model;Member[create].WithArity[0..,1,2].ReturnValue.Awaited.ArrayElement", //
-        "mongoose.HydratedDocument;mongoose.Model;Member[create].WithArity[1].ReturnValue.Awaited", //
-        "mongoose.HydratedDocument;mongoose.Model;Member[create].WithArity[2].Argument[1].TypeVar[mongoose.Callback.0]", //
-        "mongoose.HydratedDocument;mongoose.Model;Member[exists].WithArity[1,2].ReturnValue.TypeVar[mongoose.QueryWithHelpers.1]", //
-        "mongoose.HydratedDocument;mongoose.Model;Member[find,insertMany].WithArity[3].Argument[2].TypeVar[mongoose.Callback.0].ArrayElement", //
-        "mongoose.HydratedDocument;mongoose.Model;Member[findById,findByIdAndDelete,findByIdAndRemove,findOne,findOneAndDelete,findOneAndRemove].ReturnValue.TypeVar[mongoose.QueryWithHelpers.0,mongoose.QueryWithHelpers.1]", //
-        "mongoose.HydratedDocument;mongoose.Model;Member[findById,findOne].Argument[3].TypeVar[mongoose.Callback.0]", //
-        "mongoose.HydratedDocument;mongoose.Model;Member[findByIdAndDelete,findByIdAndRemove,findOneAndDelete,findOneAndRemove].Argument[2].Argument[1]", //
-        "mongoose.HydratedDocument;mongoose.Model;Member[findByIdAndUpdate,findOneAndReplace,findOneAndUpdate].WithArity[0,1,2,3,4].ReturnValue.TypeVar[mongoose.QueryWithHelpers.0,mongoose.QueryWithHelpers.1]", //
-        "mongoose.HydratedDocument;mongoose.Model;Member[findByIdAndUpdate,findOneAndReplace,findOneAndUpdate].WithArity[3,4].ReturnValue.TypeVar[mongoose.QueryWithHelpers.0].TypeVar[mongoose.ModifyResult.0]", //
-        "mongoose.HydratedDocument;mongoose.Model;Member[findByIdAndUpdate].WithArity[0,1,2,4].Argument[3].Argument[1]", //
-        "mongoose.HydratedDocument;mongoose.Model;Member[findByIdAndUpdate].WithArity[3].Argument[2,3].Argument[1]", //
-        "mongoose.HydratedDocument;mongoose.Model;Member[findById].WithArity[1,2,3].Argument[2].TypeVar[mongoose.Callback.0]", //
-        "mongoose.HydratedDocument;mongoose.Model;Member[findOneAndReplace].WithArity[0,1,2,3,4].Argument[3].Argument[1]", //
-        "mongoose.HydratedDocument;mongoose.Model;Member[findOneAndUpdate].WithArity[3,4].Argument[3].Argument[1]", //
-        "mongoose.HydratedDocument;mongoose.Model;Member[findOne].WithArity[0,1,2].Argument[1,2].TypeVar[mongoose.Callback.0]", //
-        "mongoose.HydratedDocument;mongoose.Model;Member[findOne].WithArity[3].Argument[2].TypeVar[mongoose.Callback.0]", //
-        "mongoose.HydratedDocument;mongoose.Model;Member[find].Argument[3].TypeVar[mongoose.Callback.0].ArrayElement", //
-        "mongoose.HydratedDocument;mongoose.Model;Member[find].WithArity[0].Argument[0].TypeVar[mongoose.Callback.0].ArrayElement", //
-        "mongoose.HydratedDocument;mongoose.Model;Member[find].WithArity[1].Argument[0,1,2].TypeVar[mongoose.Callback.0].ArrayElement", //
-        "mongoose.HydratedDocument;mongoose.Model;Member[find].WithArity[2].Argument[1,2].TypeVar[mongoose.Callback.0].ArrayElement", //
-        "mongoose.HydratedDocument;mongoose.Model;Member[geoSearch].Argument[2].TypeVar[mongoose.Callback.0].ArrayElement", //
-        "mongoose.HydratedDocument;mongoose.Model;Member[hydrate].ReturnValue", //
-        "mongoose.HydratedDocument;mongoose.Model;Member[init].ReturnValue.Awaited", //
-        "mongoose.HydratedDocument;mongoose.Model;Member[insertMany].WithArity[1,2].ReturnValue.Awaited.ArrayElement", //
-        "mongoose.HydratedDocument;mongoose.Model;Member[populate].WithArity[2,3].Argument[2].TypeVar[mongoose.Callback.0]", //
-        "mongoose.HydratedDocument;mongoose.Model;Member[populate].WithArity[2,3].Argument[2].TypeVar[mongoose.Callback.0].ArrayElement", //
-        "mongoose.HydratedDocument;mongoose.Model;Member[populate].WithArity[2,3].ReturnValue.Awaited", //
-        "mongoose.HydratedDocument;mongoose.Model;Member[populate].WithArity[2,3].ReturnValue.Awaited.ArrayElement", //
-        "mongoose.HydratedDocument;mongoose.TVirtualPathFN;Argument[1].TypeVar[mongoose.VirtualType.0]", //
-        "mongoose.HydratedDocument;mongoose.VirtualPathFunctions;Member[options].TypeVar[mongoose.VirtualTypeOptions.0]", //
-        "mongoose.InsertManyOptions;mongoose.Model;Member[insertMany].WithArity[2,3].Argument[1]", //
-        "mongoose.Model;mongoose.AcceptsDiscriminator;Member[discriminator].WithArity[2,3].ReturnValue", //
-        "mongoose.Model;mongoose.Aggregate;Member[model].Argument[0]", //
-        "mongoose.Model;mongoose.Connection;Member[model].WithArity[1,2,3,4].ReturnValue", //
-        "mongoose.Model;mongoose.Connection;Member[models].AnyMember", //
-        "mongoose.Model;mongoose.DiscriminatorModel;", //
-        "mongoose.Model;mongoose.Document;Member[$model].ReturnValue", //
-        "mongoose.Model;mongoose.Document;Member[populate].Argument[2]", //
-        "mongoose.Model;mongoose.Model;Member[discriminators].AnyMember", //
-        "mongoose.Model;mongoose.Models;AnyMember", //
-        "mongoose.Model;mongoose.PopulateOptions;Member[model]", //
-        "mongoose.Model;mongoose.Query;Member[cast].Argument[0]", //
-        "mongoose.Model;mongoose.Query;Member[populate].Argument[2]", //
-        "mongoose.Model;mongoose.Schema.Types.Array;Member[discriminator].WithArity[2,3].ReturnValue", //
-        "mongoose.Model;mongoose.Schema.Types.DocumentArray;Member[discriminator].WithArity[2,3].ReturnValue", //
-        "mongoose.Model;mongoose.Schema.Types.Subdocument;Member[discriminator].WithArity[2,3].ReturnValue", //
-        "mongoose.Model;mongoose.SchemaStatic;Instance.TypeVar[mongoose.Schema.1]", //
-        "mongoose.Model;mongoose;Member[Model]", //
-        "mongoose.Model;mongoose;Member[model].ReturnValue", //
-        "mongoose.Models;mongoose;Member[models]", //
-        "mongoose.PopulateOption;mongoose.InsertManyOptions;", //
-        "mongoose.PopulateOption;mongoose.QueryOptions;", //
-        "mongoose.PopulateOptions;mongoose.Document;Member[populate].Argument[4]", //
-        "mongoose.PopulateOptions;mongoose.Document;Member[populate].WithArity[1,2].Argument[0]", //
-        "mongoose.PopulateOptions;mongoose.Document;Member[populate].WithArity[1,2].Argument[0].ArrayElement", //
-        "mongoose.PopulateOptions;mongoose.Model;Member[populate].Argument[1]", //
-        "mongoose.PopulateOptions;mongoose.Model;Member[populate].Argument[1].ArrayElement", //
-        "mongoose.PopulateOptions;mongoose.PopulateOption;Member[populate]", //
-        "mongoose.PopulateOptions;mongoose.PopulateOption;Member[populate].ArrayElement", //
-        "mongoose.PopulateOptions;mongoose.PopulateOptions;Member[populate]", //
-        "mongoose.PopulateOptions;mongoose.PopulateOptions;Member[populate].ArrayElement", //
-        "mongoose.PopulateOptions;mongoose.Query;Member[populate].WithArity[1].Argument[0]", //
-        "mongoose.PopulateOptions;mongoose.Query;Member[populate].WithArity[1].Argument[0].ArrayElement", //
-        "mongoose.Query;mongoose.Document;Member[replaceOne,update,updateOne].ReturnValue", //
-        "mongoose.Query;mongoose.HydratedDocument;TypeVar[mongoose.Require_id.0]", //
-        "mongoose.Query;mongoose.Query;Member[all,allowDiskUse,and,batchSize,box,circle,clone,collation,comment,elemMatch,equals,exists,explain,geometry,gt,gte,hint,in,intersects,j,limit,lt,lte,maxDistance,maxScan,maxTimeMS,merge,mod,ne,near,nin,nor,or,polygon,read,readConcern,regex,remove,select,session,set,setOptions,size,skip,slice,snapshot,sort,tailable,w,where,within,wtimeout].ReturnValue", //
-        "mongoose.Query;mongoose.Query;Member[error].WithArity[1].ReturnValue", //
-        "mongoose.Query;mongoose.Query;Member[merge].Argument[0]", //
-        "mongoose.Query;mongoose.QueryStatic;Instance", //
-        "mongoose.Query;mongoose.QueryWithHelpers;", //
-        "mongoose.QueryOptions;mongoose.Document;Member[delete,deleteOne,remove].WithArity[0,1,2].Argument[0]", //
-        "mongoose.QueryOptions;mongoose.Document;Member[replaceOne,update,updateOne].Argument[1]", //
-        "mongoose.QueryOptions;mongoose.Model;Member[countDocuments,findByIdAndDelete,findByIdAndRemove,findOneAndDelete,findOneAndRemove].Argument[1]", //
-        "mongoose.QueryOptions;mongoose.Model;Member[deleteMany,deleteOne].WithArity[0,1,2,3].Argument[1]", //
-        "mongoose.QueryOptions;mongoose.Model;Member[estimatedDocumentCount].Argument[0]", //
-        "mongoose.QueryOptions;mongoose.Model;Member[find,findById].WithArity[1,2,3,4].Argument[2]", //
-        "mongoose.QueryOptions;mongoose.Model;Member[findByIdAndUpdate,findOne,findOneAndReplace,findOneAndUpdate].WithArity[0,1,2,3,4].Argument[2]", //
-        "mongoose.QueryOptions;mongoose.Model;Member[replaceOne,update,updateMany,updateOne].Argument[2]", //
-        "mongoose.QueryOptions;mongoose.PopulateOptions;Member[options]", //
-        "mongoose.QueryOptions;mongoose.Query;Member[countDocuments,findByIdAndDelete,findOneAndDelete,findOneAndRemove].Argument[1]", //
-        "mongoose.QueryOptions;mongoose.Query;Member[cursor,estimatedDocumentCount,setOptions].Argument[0]", //
-        "mongoose.QueryOptions;mongoose.Query;Member[cursor].ReturnValue.TypeVar[mongoose.Cursor.1]", //
-        "mongoose.QueryOptions;mongoose.Query;Member[deleteMany,deleteOne].WithArity[0,1,2,3].Argument[1]", //
-        "mongoose.QueryOptions;mongoose.Query;Member[findByIdAndUpdate,findOne,findOneAndUpdate].WithArity[0,1,2,3,4].Argument[2]", //
-        "mongoose.QueryOptions;mongoose.Query;Member[find].WithArity[1,2,3,4].Argument[2]", //
-        "mongoose.QueryOptions;mongoose.Query;Member[getOptions].ReturnValue", //
-        "mongoose.QueryOptions;mongoose.Query;Member[replaceOne,update,updateMany,updateOne].Argument[2]", //
-        "mongoose.QueryOptions;mongoose.VirtualTypeOptions;Member[options]", //
-        "mongoose.QueryStatic;mongoose;Member[Query]", //
-        "mongoose.QueryWithHelpers;mongoose.Document;Member[delete,deleteOne].WithArity[0,1].ReturnValue", //
-        "mongoose.QueryWithHelpers;mongoose.Model;Member[$where,count,countDocuments,deleteMany,deleteOne,distinct,estimatedDocumentCount,find,findById,findByIdAndDelete,findByIdAndRemove,findOne,findOneAndDelete,findOneAndRemove,geoSearch,remove,replaceOne,update,updateMany,updateOne,where].ReturnValue", //
-        "mongoose.QueryWithHelpers;mongoose.Model;Member[exists].WithArity[1,2].ReturnValue", //
-        "mongoose.QueryWithHelpers;mongoose.Model;Member[findByIdAndUpdate,findOneAndReplace,findOneAndUpdate].WithArity[0,1,2,3,4].ReturnValue", //
-        "mongoose.QueryWithHelpers;mongoose.Query;Member[$where,count,countDocuments,deleteMany,deleteOne,distinct,estimatedDocumentCount,find,findByIdAndDelete,findOne,findOneAndDelete,findOneAndRemove,lean,orFail,populate,replaceOne,transform,update,updateMany,updateOne].ReturnValue", //
-        "mongoose.QueryWithHelpers;mongoose.Query;Member[findByIdAndUpdate,findOneAndUpdate].WithArity[0,1,2,3,4].ReturnValue", //
-        "mongoose.QueryWithHelpers;mongoose.Query;Member[toConstructor].ReturnValue.Instance", //
-        "mongoose.Schema.Types.Array;mongoose.Schema.Types.Array;Member[enum].ReturnValue", //
-        "mongoose.Schema.Types.Array;mongoose.Schema.Types.ArrayStatic;Instance", //
-        "mongoose.Schema.Types.ArrayStatic;mongoose;Member[Schema].Member[Types].Member[Array]", //
-        "mongoose.Schema.Types.DocumentArray;mongoose.Schema.Types.DocumentArrayStatic;Instance", //
-        "mongoose.Schema.Types.DocumentArrayStatic;mongoose;Member[Schema].Member[Types].Member[DocumentArray]", //
-        "mongoose.Schema.Types.Subdocument;mongoose.Schema.Types.SubdocumentStatic;Instance", //
-        "mongoose.Schema.Types.SubdocumentStatic;mongoose.Schema.Types.DocumentArray;Member[caster]", //
-        "mongoose.Schema.Types.SubdocumentStatic;mongoose;Member[Schema].Member[Types].Member[Subdocument]", //
-        "mongoose.SchemaStatic;mongoose;Member[Schema]", //
-        "mongoose.SessionOperation;mongoose.Aggregate;", //
-        "mongoose.SessionOperation;mongoose.Query;", //
-        "mongoose.TVirtualPathFN;mongoose.VirtualPathFunctions;Member[get,set]", //
-        "mongoose.Types.Array;mongoose.Types.DocumentArray;", //
-        "mongoose.Types.ArraySubdocument;mongoose.Types.ArraySubdocumentStatic;Instance", //
-        "mongoose.Types.ArraySubdocumentStatic;mongoose;Member[Types].Member[ArraySubdocument]", //
-        "mongoose.Types.DocumentArray;mongoose.Types.ArraySubdocument;Member[parentArray].ReturnValue", //
-        "mongoose.Types.DocumentArray;mongoose.Types.DocumentArrayStatic;Instance", //
-        "mongoose.Types.DocumentArray;mongoose/inferschematype.ResolvePathType;TypeVar[mongoose.IfEquals.3]", //
-        "mongoose.Types.DocumentArrayStatic;mongoose;Member[Types].Member[DocumentArray]", //
-        "mongoose.Types.ObjectId;mongoose/inferschematype.ResolvePathType;", //
-        "mongoose.Types.Subdocument;mongoose.Types.ArraySubdocument;", //
-        "mongoose.Types.Subdocument;mongoose.Types.DocumentArray;Member[create,id].ReturnValue", //
-        "mongoose.Types.Subdocument;mongoose.Types.DocumentArray;TypeVar[mongoose.Types.Array.0]", //
-        "mongoose.Types.Subdocument;mongoose.Types.SubdocumentStatic;Instance", //
-        "mongoose.Types.SubdocumentStatic;mongoose;Member[Types].Member[Subdocument]", //
-        "mongoose.VirtualType;mongoose.TVirtualPathFN;Argument[1]", //
-        "mongoose.VirtualType;mongoose.VirtualType;Member[get,set].Argument[0].Argument[1]", //
-        "mongoose.VirtualType;mongoose.VirtualType;Member[get,set].ReturnValue", //
-        "mongoose.VirtualType;mongoose.VirtualTypeStatic;Instance", //
-        "mongoose.VirtualTypeOptions;mongoose.VirtualPathFunctions;Member[options]", //
-        "mongoose.VirtualTypeStatic;mongoose;Member[VirtualType]", //
-        "mongoose/inferschematype.ResolvePathType;mongoose/inferschematype.ObtainDocumentPathType;", //
-        "mongoose/inferschematype.ResolvePathType;mongoose/inferschematype.ResolvePathType;TypeVar[mongoose.IfEquals.3].ArrayElement", //
-        "mongoose/inferschematype.ResolvePathType;mongoose/inferschematype.ResolvePathType;TypeVar[mongoose.IfEquals.3].TypeVar[mongoose.Types.DocumentArray.0]", //
-        "mongoose;mongoose;Member[mongoose]", //
-      ]
-  }
-}
-
-private class Summaries extends ModelInput::SummaryModelCsv {
-  override predicate row(string row) {
-    row =
-      [
-        "mongodb.AbstractCursor;;;Member[addCursorFlag,batchSize,maxTimeMS,withReadConcern,withReadPreference].ReturnValue;type", //
-        "mongodb.BulkOperationBase;;;Member[addToOperationsList,raw].ReturnValue;type", //
-        "mongodb.FindCursor;;;Member[addQueryModifier,allowDiskUse,collation,comment,filter,hint,limit,max,maxAwaitTimeMS,maxTimeMS,min,returnKey,showRecordId,skip,sort].ReturnValue;type", //
-        "mongodb.FindOperators;;;Member[arrayFilters,collation,upsert].ReturnValue;type", //
-        "mongodb.GridFSBucketWriteStream;;;Member[end].ReturnValue;type", //
-        "mongodb.MongoClient;;;Member[connect].Argument[0].TypeVar[mongodb.Callback.0];type", //
-        "mongodb.MongoClient;;;Member[connect].WithArity[0].ReturnValue.Awaited;type", //
-        "mongodb.OrderedBulkOperation;;;Member[addToOperationsList].ReturnValue;type", //
-        "mongodb.TypedEventEmitter;;;Member[addListener,off,on,once,prependListener,prependOnceListener,removeAllListeners,removeListener,setMaxListeners].ReturnValue;type", //
-        "mongodb.UnorderedBulkOperation;;;Member[addToOperationsList].ReturnValue;type", //
-        "mongoose.Aggregate;;;Member[addCursorFlag,addFields,allowDiskUse,append,collation,count,facet,graphLookup,group,hint,limit,lookup,match,model,near,option,project,read,readConcern,redact,replaceRoot,sample,search,session,skip,sort,sortByCount,unionWith,unwind].ReturnValue;type", //
-        "mongoose.Connection;;;Member[asPromise].ReturnValue.Awaited;type", //
-        "mongoose.Connection;;;Member[deleteModel,setClient].ReturnValue;type", //
-        "mongoose.Cursor;;;Member[addCursorFlag].ReturnValue;type", //
-        "mongoose.Document;;;Member[$inc,$set,depopulate,increment,init,overwrite,set].ReturnValue;type", //
-        "mongoose.Document;;;Member[delete,deleteOne].WithArity[0,1].ReturnValue.TypeVar[mongoose.QueryWithHelpers.1];type", //
-        "mongoose.Document;;;Member[getChanges].ReturnValue.TypeVar[mongoose.UpdateQuery.0];type", //
-        "mongoose.Document;;;Member[init].Argument[2].TypeVar[mongoose.Callback.0];type", //
-        "mongoose.Document;;;Member[populate].Argument[1,5].TypeVar[mongoose.Callback.0].TypeVar[mongoose.MergeType.0];type", //
-        "mongoose.Document;;;Member[populate].WithArity[1,2,3,4,5].ReturnValue.Awaited.TypeVar[mongoose.MergeType.0];type", //
-        "mongoose.Document;;;Member[remove,save].WithArity[0,1].ReturnValue.Awaited;type", //
-        "mongoose.Document;;;Member[replaceOne,update,updateOne].ReturnValue.TypeVar[mongoose.Query.1];type", //
-        "mongoose.Document;;;Member[save].Argument[1].TypeVar[mongoose.Callback.0];type", //
-        "mongoose.Document;;;Member[save].WithArity[1].Argument[0].TypeVar[mongoose.Callback.0];type", //
-        "mongoose.Document;;;Member[update,updateOne].Argument[0].TypeVar[mongoose.UpdateQuery.0];type", //
-        "mongoose.Query;;;Member[all,allowDiskUse,and,batchSize,box,circle,clone,collation,comment,elemMatch,equals,exists,explain,geometry,gt,gte,hint,in,intersects,j,limit,lt,lte,maxDistance,maxScan,maxTimeMS,merge,mod,ne,near,nin,nor,or,polygon,read,readConcern,regex,select,session,set,setOptions,size,skip,slice,snapshot,sort,tailable,w,where,within,wtimeout].ReturnValue;type", //
-        "mongoose.Query;;;Member[error].WithArity[1].ReturnValue;type", //
-        "mongoose.Schema.Types.Array;;;Member[enum].ReturnValue;type", //
-        "mongoose.SessionOperation;;;Member[session].ReturnValue;type", //
-        "mongoose.Types.Array;;;Member[pull,remove,set].ReturnValue;type", //
-        "mongoose.Types.ObjectId;;;Member[_id];type", //
-        "mongoose.VirtualType;;;Member[get,set].ReturnValue;type", //
-      ]
-  }
-}
-
-private class TypeVariables extends ModelInput::TypeVariableModelCsv {
-  override predicate row(string row) {
-    row =
-      [
-        "mongodb.Callback.0;Argument[1]", //
-        "mongoose.Callback.0;Argument[1]", //
-        "mongoose.Cursor.0;Member[eachAsync].WithArity[1,2,3].Argument[0].Argument[0]", //
-        "mongoose.Cursor.0;Member[eachAsync].WithArity[2,3].Argument[0].Argument[0].ArrayElement", //
-        "mongoose.Cursor.0;Member[map].Argument[0].Argument[0]", //
-        "mongoose.Cursor.0;Member[next].Argument[0].TypeVar[mongoose.Callback.0]", //
-        "mongoose.Cursor.0;Member[next].WithArity[0].ReturnValue.Awaited", //
-        "mongoose.Cursor.1;Member[map].ReturnValue.TypeVar[mongoose.Cursor.1]", //
-        "mongoose.Cursor.1;Member[options]", //
-        "mongoose.DiscriminatorSchema.1;TypeVar[mongoose.Schema.1]", //
-        "mongoose.DiscriminatorSchema.1;TypeVar[mongoose.Schema.1].TypeVar[mongoose.DiscriminatorModel.1]", //
-        "mongoose.Document.0;Member[_id]", //
-        "mongoose.Document.0;Member[equals].Argument[0].TypeVar[mongoose.Document.0]", //
-        "mongoose.FilterQuery.0;TypeVar[mongoose._FilterQuery.0]", //
-        "mongoose.IfAny.1;", //
-        "mongoose.IfAny.2;", //
-        "mongoose.IfEquals.3;", //
-        "mongoose.LeanDocumentOrArray.0;", //
-        "mongoose.LeanDocumentOrArray.0;TypeVar[mongoose.LeanDocument.0]", //
-        "mongoose.LeanDocumentOrArrayWithRawType.0;", //
-        "mongoose.ModifyResult.0;Member[value].TypeVar[mongoose.Require_id.0]", //
-        "mongoose.PluginFunction.1;Argument[0].TypeVar[mongoose.Schema.1]", //
-        "mongoose.PostMiddlewareFunction.1;Argument[0]", //
-        "mongoose.Query.0;Member[exec].Argument[0].TypeVar[mongoose.Callback.0]", //
-        "mongoose.Query.0;Member[exec].WithArity[0].ReturnValue.Awaited", //
-        "mongoose.Query.0;Member[lean].ReturnValue.TypeVar[mongoose.QueryWithHelpers.0].TypeVar[mongoose.LeanDocumentOrArray.0,mongoose.LeanDocumentOrArrayWithRawType.0]", //
-        "mongoose.Query.0;Member[orFail].ReturnValue.TypeVar[mongoose.QueryWithHelpers.0]", //
-        "mongoose.Query.0;Member[populate].ReturnValue.TypeVar[mongoose.QueryWithHelpers.0].TypeVar[mongoose.UnpackedIntersection.0]", //
-        "mongoose.Query.0;Member[then,transform].Argument[0].Argument[0]", //
-        "mongoose.Query.0;Member[toConstructor].ReturnValue.Instance.TypeVar[mongoose.QueryWithHelpers.0]", //
-        "mongoose.Query.1;Member[$where,count,countDocuments,deleteMany,deleteOne,distinct,estimatedDocumentCount,find,lean,orFail,populate,replaceOne,transform,update,updateMany,updateOne].ReturnValue.TypeVar[mongoose.QueryWithHelpers.1]", //
-        "mongoose.Query.1;Member[$where,find].ReturnValue.TypeVar[mongoose.QueryWithHelpers.0].ArrayElement", //
-        "mongoose.Query.1;Member[_mongooseOptions].TypeVar[mongoose.MongooseQueryOptions.0]", //
-        "mongoose.Query.1;Member[and,nor,or].Argument[0].ArrayElement.TypeVar[mongoose.FilterQuery.0]", //
-        "mongoose.Query.1;Member[countDocuments,findByIdAndDelete,findOneAndDelete,findOneAndRemove].Argument[1].TypeVar[mongoose.QueryOptions.0]", //
-        "mongoose.Query.1;Member[countDocuments].WithArity[1,2,3].Argument[0].TypeVar[mongoose.FilterQuery.0]", //
-        "mongoose.Query.1;Member[count].WithArity[1,2].Argument[0].TypeVar[mongoose.FilterQuery.0]", //
-        "mongoose.Query.1;Member[cursor,estimatedDocumentCount,setOptions].Argument[0].TypeVar[mongoose.QueryOptions.0]", //
-        "mongoose.Query.1;Member[cursor].ReturnValue.TypeVar[mongoose.Cursor.0]", //
-        "mongoose.Query.1;Member[cursor].ReturnValue.TypeVar[mongoose.Cursor.1].TypeVar[mongoose.QueryOptions.0]", //
-        "mongoose.Query.1;Member[deleteMany,deleteOne].WithArity[0,1,2,3].Argument[0].TypeVar[mongoose.FilterQuery.0]", //
-        "mongoose.Query.1;Member[deleteMany,deleteOne].WithArity[0,1,2,3].Argument[1].TypeVar[mongoose.QueryOptions.0]", //
-        "mongoose.Query.1;Member[distinct].Argument[1].TypeVar[mongoose.FilterQuery.0]", //
-        "mongoose.Query.1;Member[findByIdAndDelete,findOne,findOneAndDelete,findOneAndRemove].ReturnValue.TypeVar[mongoose.QueryWithHelpers.0,mongoose.QueryWithHelpers.1]", //
-        "mongoose.Query.1;Member[findByIdAndDelete,findOneAndDelete,findOneAndRemove].Argument[2].Argument[1]", //
-        "mongoose.Query.1;Member[findByIdAndUpdate,findOneAndUpdate,update,updateMany,updateOne].Argument[1].TypeVar[mongoose.UpdateQuery.0]", //
-        "mongoose.Query.1;Member[findByIdAndUpdate,findOneAndUpdate].WithArity[0,1,2,3,4].Argument[2].TypeVar[mongoose.QueryOptions.0]", //
-        "mongoose.Query.1;Member[findByIdAndUpdate,findOneAndUpdate].WithArity[0,1,2,3,4].ReturnValue.TypeVar[mongoose.QueryWithHelpers.0,mongoose.QueryWithHelpers.1]", //
-        "mongoose.Query.1;Member[findByIdAndUpdate].WithArity[0,1,2,4].Argument[3].Argument[1]", //
-        "mongoose.Query.1;Member[findByIdAndUpdate].WithArity[3].Argument[2,3].Argument[1]", //
-        "mongoose.Query.1;Member[findOne,findOneAndDelete,findOneAndRemove,findOneAndUpdate,merge,remove,replaceOne,setQuery,update,updateMany,updateOne].Argument[0].TypeVar[mongoose.FilterQuery.0]", //
-        "mongoose.Query.1;Member[findOneAndUpdate].Argument[3].Argument[1]", //
-        "mongoose.Query.1;Member[findOneAndUpdate].Argument[3].Argument[2].TypeVar[mongoose.ModifyResult.0]", //
-        "mongoose.Query.1;Member[findOneAndUpdate].WithArity[3,4].ReturnValue.TypeVar[mongoose.QueryWithHelpers.0].TypeVar[mongoose.ModifyResult.0]", //
-        "mongoose.Query.1;Member[findOne].Argument[3].TypeVar[mongoose.Callback.0]", //
-        "mongoose.Query.1;Member[findOne].WithArity[0,1,2,3].Argument[2].TypeVar[mongoose.Callback.0,mongoose.QueryOptions.0]", //
-        "mongoose.Query.1;Member[findOne].WithArity[0,1,2].Argument[1].TypeVar[mongoose.Callback.0,mongoose.ProjectionType.0]", //
-        "mongoose.Query.1;Member[findOne].WithArity[3,4].Argument[1].TypeVar[mongoose.ProjectionType.0]", //
-        "mongoose.Query.1;Member[findOne].WithArity[4].Argument[2].TypeVar[mongoose.QueryOptions.0]", //
-        "mongoose.Query.1;Member[find].Argument[3].TypeVar[mongoose.Callback.0].ArrayElement", //
-        "mongoose.Query.1;Member[find].WithArity[0].Argument[0].TypeVar[mongoose.Callback.0].ArrayElement", //
-        "mongoose.Query.1;Member[find].WithArity[1,2,3,4].Argument[0].TypeVar[mongoose.FilterQuery.0]", //
-        "mongoose.Query.1;Member[find].WithArity[1,2,3,4].Argument[1].TypeVar[mongoose.ProjectionType.0]", //
-        "mongoose.Query.1;Member[find].WithArity[1,2,3,4].Argument[2].TypeVar[mongoose.QueryOptions.0]", //
-        "mongoose.Query.1;Member[find].WithArity[1].Argument[0,1,2].TypeVar[mongoose.Callback.0].ArrayElement", //
-        "mongoose.Query.1;Member[find].WithArity[2].Argument[1,2].TypeVar[mongoose.Callback.0].ArrayElement", //
-        "mongoose.Query.1;Member[find].WithArity[3].Argument[2].TypeVar[mongoose.Callback.0].ArrayElement", //
-        "mongoose.Query.1;Member[getFilter,getQuery].ReturnValue.TypeVar[mongoose.FilterQuery.0]", //
-        "mongoose.Query.1;Member[getOptions].ReturnValue.TypeVar[mongoose.QueryOptions.0]", //
-        "mongoose.Query.1;Member[getUpdate].ReturnValue.TypeVar[mongoose.UpdateQuery.0]", //
-        "mongoose.Query.1;Member[projection].WithArity[0,1].Argument[0].TypeVar[mongoose.ProjectionFields.0]", //
-        "mongoose.Query.1;Member[projection].WithArity[0,1].ReturnValue.TypeVar[mongoose.ProjectionFields.0]", //
-        "mongoose.Query.1;Member[remove].ReturnValue.TypeVar[mongoose.Query.1]", //
-        "mongoose.Query.1;Member[replaceOne,update,updateMany,updateOne].Argument[2].TypeVar[mongoose.QueryOptions.0]", //
-        "mongoose.Query.1;Member[replaceOne].Argument[1]", //
-        "mongoose.Query.1;Member[setUpdate].Argument[0].TypeVar[mongoose.UpdateQuery.0]", //
-        "mongoose.Query.1;Member[toConstructor].ReturnValue.Instance.TypeVar[mongoose.QueryWithHelpers.1]", //
-        "mongoose.QueryOptions.0;Member[projection].TypeVar[mongoose.ProjectionType.0]", //
-        "mongoose.QueryWithHelpers.0;TypeVar[mongoose.Query.0]", //
-        "mongoose.QueryWithHelpers.1;TypeVar[mongoose.Query.1]", //
-        "mongoose.Require_id.0;", //
-        "mongoose.Require_id.0;TypeVar[mongoose.IfAny.1,mongoose.IfAny.2]", //
-        "mongoose.RootQuerySelector.0;Member[$and,$nor,$or].ArrayElement.TypeVar[mongoose.FilterQuery.0]", //
-        "mongoose.Schema.1;Member[discriminator].ReturnValue.TypeVar[mongoose.DiscriminatorSchema.1]", //
-        "mongoose.Schema.1;Member[plugin].Argument[0].TypeVar[mongoose.PluginFunction.1]", //
-        "mongoose.Schema.1;Member[post].Argument[2].TypeVar[mongoose.ErrorHandlingMiddlewareFunction.0,mongoose.PostMiddlewareFunction.0,mongoose.PostMiddlewareFunction.1]", //
-        "mongoose.Schema.1;Member[post].WithArity[2].WithStringArgument[0=insertMany].Argument[1].TypeVar[mongoose.ErrorHandlingMiddlewareFunction.0,mongoose.PostMiddlewareFunction.0,mongoose.PostMiddlewareFunction.1]", //
-        "mongoose.Types.Array.0;Member[$pop,$shift,shift].ReturnValue", //
-        "mongoose.Types.Array.0;Member[set].Argument[1]", //
-        "mongoose.Types.DocumentArray.0;Member[create,id].ReturnValue", //
-        "mongoose.Types.DocumentArray.0;Member[create,id].ReturnValue.TypeVar[mongoose.Types.Subdocument.0].TypeVar[mongoose.InferId.0]", //
-        "mongoose.Types.DocumentArray.0;Member[push].Argument[0].ArrayElement.TypeVar[mongoose.AnyKeys.0]", //
-        "mongoose.Types.DocumentArray.0;TypeVar[mongoose.Types.Array.0]", //
-        "mongoose.Types.DocumentArray.0;TypeVar[mongoose.Types.Array.0].TypeVar[mongoose.Types.Subdocument.0].TypeVar[mongoose.InferId.0]", //
-        "mongoose.Types.Subdocument.0;TypeVar[mongoose.Document.0]", //
-        "mongoose.UnpackedIntersection.0;", //
-        "mongoose.UpdateQuery.0;TypeVar[mongoose._UpdateQuery.0].TypeVar[mongoose._UpdateQueryDef.0]", //
-        "mongoose.VirtualType.0;Member[get,set].Argument[0].Argument[1].TypeVar[mongoose.VirtualType.0]", //
-        "mongoose.VirtualType.0;Member[get,set].Argument[0].Argument[2]", //
-        "mongoose.VirtualTypeOptions.0;Member[foreignField,localField].Argument[0]", //
-        "mongoose._FilterQuery.0;TypeVar[mongoose.RootQuerySelector.0]", //
-        "mongoose._UpdateQuery.0;Member[$currentDate,$inc,$max,$min,$mul,$pop,$pull,$pullAll,$push,$set,$setOnInsert,$unset].TypeVar[mongoose.AnyKeys.0]", //
-      ]
-  }
-}
diff --git a/javascript/ql/lib/semmle/javascript/frameworks/mssql/Model.qll b/javascript/ql/lib/semmle/javascript/frameworks/mssql/Model.qll
deleted file mode 100644
index 7d119ebfc02..00000000000
--- a/javascript/ql/lib/semmle/javascript/frameworks/mssql/Model.qll
+++ /dev/null
@@ -1,45 +0,0 @@
-/** Generated model file */
-
-private import javascript
-
-private class Types extends ModelInput::TypeModelCsv {
-  override predicate row(string row) {
-    row =
-      [
-        "mssql.ConnectionPool;mssql.ConnectionPool;Member[connect].WithArity[0].ReturnValue.Awaited", //
-        "mssql.ConnectionPool;mssql.ConnectionPoolStatic;Instance", //
-        "mssql.ConnectionPool;mssql/msnodesqlv8;Member[connect].ReturnValue.Awaited", //
-        "mssql.ConnectionPool;mssql/msnodesqlv8;Member[pool]", //
-        "mssql.ConnectionPool;mssql;Member[connect].ReturnValue.Awaited", //
-        "mssql.ConnectionPool;mssql;Member[pool]", //
-        "mssql.ConnectionPoolStatic;mssql/msnodesqlv8;Member[ConnectionPool]", //
-        "mssql.ConnectionPoolStatic;mssql;Member[ConnectionPool]", //
-        "mssql.PreparedStatement;mssql.PreparedStatement;Member[input,output].ReturnValue", //
-        "mssql.PreparedStatement;mssql.PreparedStatement;Member[prepare].WithArity[0,1,2].ReturnValue", //
-        "mssql.PreparedStatement;mssql.PreparedStatement;Member[unprepare].WithArity[1].ReturnValue", //
-        "mssql.PreparedStatement;mssql.PreparedStatementStatic;Instance", //
-        "mssql.PreparedStatement;mssql.Request;Member[pstatement]", //
-        "mssql.PreparedStatementStatic;mssql/msnodesqlv8;Member[PreparedStatement]", //
-        "mssql.PreparedStatementStatic;mssql;Member[PreparedStatement]", //
-        "mssql.Request;mssql.ConnectionPool;Member[request].ReturnValue", //
-        "mssql.Request;mssql.PreparedStatement;Member[execute].WithArity[2].ReturnValue", //
-        "mssql.Request;mssql.Request;Member[input,output,replaceInput].ReturnValue", //
-        "mssql.Request;mssql.Request;Member[replaceOutput].ReturnValue", //
-        "mssql.Request;mssql.RequestStatic;Instance", //
-        "mssql.Request;mssql.Transaction;Member[request].ReturnValue", //
-        "mssql.RequestStatic;mssql/msnodesqlv8;Member[Request]", //
-        "mssql.RequestStatic;mssql;Member[Request]", //
-        "mssql.Transaction;mssql.ConnectionPool;Member[transaction].ReturnValue", //
-        "mssql.Transaction;mssql.PreparedStatement;Member[transaction]", //
-        "mssql.Transaction;mssql.Request;Member[transaction]", //
-        "mssql.Transaction;mssql.Transaction;Member[begin].WithArity[0,1,2].ReturnValue", //
-        "mssql.Transaction;mssql.Transaction;Member[begin].WithArity[0,1].ReturnValue.Awaited", //
-        "mssql.Transaction;mssql.TransactionStatic;Instance", //
-        "mssql.TransactionStatic;mssql/msnodesqlv8;Member[Transaction]", //
-        "mssql.TransactionStatic;mssql;Member[Transaction]", //
-        "mssql.config;mssql.ConnectionPoolStatic;WithArity[1,2].Argument[0]", //
-        "mssql.config;mssql/msnodesqlv8;Member[connect].Argument[0]", //
-        "mssql.config;mssql;Member[connect].Argument[0]", //
-      ]
-  }
-}
diff --git a/javascript/ql/lib/semmle/javascript/frameworks/mysql/Model.qll b/javascript/ql/lib/semmle/javascript/frameworks/mysql/Model.qll
deleted file mode 100644
index 34ea14abb0b..00000000000
--- a/javascript/ql/lib/semmle/javascript/frameworks/mysql/Model.qll
+++ /dev/null
@@ -1,79 +0,0 @@
-/** Generated model file */
-
-private import javascript
-
-private class Types extends ModelInput::TypeModelCsv {
-  override predicate row(string row) {
-    row =
-      [
-        "mysql.Connection;mysql.Pool;Member[on,addListener].WithStringArgument[0=acquire,0=connection,0=release].Argument[1].Argument[0]", //
-        "mysql.Connection;mysql.PoolConnection;", //
-        "mysql.Connection;mysql.Query;Member[RowDataPacket].Argument[2]", //
-        "mysql.Connection;mysql;Member[createConnection].ReturnValue", //
-        "mysql.ConnectionConfig;mysql.Connection;Member[config]", //
-        "mysql.ConnectionConfig;mysql.PoolConfig;", //
-        "mysql.ConnectionConfig;mysql;Member[createConnection].Argument[0]", //
-        "mysql.ConnectionOptions;mysql.Connection;Member[changeUser].WithArity[1,2].Argument[0]", //
-        "mysql.ConnectionOptions;mysql.ConnectionConfig;", //
-        "mysql.Pool;mysql.PoolCluster;Member[of].ReturnValue", //
-        "mysql.Pool;mysql;Member[createPool].ReturnValue", //
-        "mysql.PoolCluster;mysql;Member[createPoolCluster].ReturnValue", //
-        "mysql.PoolConfig;mysql.PoolCluster;Member[add].Argument[1]", //
-        "mysql.PoolConfig;mysql.PoolCluster;Member[add].WithArity[1].Argument[0]", //
-        "mysql.PoolConfig;mysql;Member[createPool].Argument[0]", //
-        "mysql.PoolConnection;mysql.Pool;Member[acquireConnection].Argument[0]", //
-        "mysql.PoolConnection;mysql.Pool;Member[acquireConnection].Argument[1].Argument[1]", //
-        "mysql.PoolConnection;mysql.Pool;Member[getConnection].Argument[0].Argument[1]", //
-        "mysql.PoolConnection;mysql.PoolCluster;Member[getConnection].Argument[1,2].Argument[1]", //
-        "mysql.PoolConnection;mysql.PoolCluster;Member[getConnection].WithArity[1].Argument[0].Argument[1]", //
-        "mysql.Query;mysql.Query;Member[on].ReturnValue", //
-        "mysql.Query;mysql.QueryFunction;ReturnValue", //
-        "mysql.Query;mysql.QueryFunction;WithArity[1].Argument[0]", //
-        "mysql.QueryFunction;mysql.Connection;Member[createQuery,query]", //
-        "mysql.QueryFunction;mysql.Pool;Member[query]", //
-        "mysql2.Connection;mysql2.PoolConnection;", //
-        "mysql2.Connection;mysql2.authPlugins;Argument[0].Member[connection]", //
-        "mysql2.Connection;mysql2;Member[createConnection].ReturnValue", //
-        "mysql2.ConnectionOptions;mysql2.PoolOptions;", //
-        "mysql2.ConnectionOptions;mysql2/promise.Connection;Member[changeUser].Argument[0]", //
-        "mysql2.ConnectionOptions;mysql2/promise.Connection;Member[config]", //
-        "mysql2.ConnectionOptions;mysql2/promise;Member[createConnection].Argument[0]", //
-        "mysql2.ConnectionOptions;mysql2;Member[createConnection].Argument[0]", //
-        "mysql2.Pool;mysql2.Pool;Member[addListener,on,once,prependListener,prependOnceListener].ReturnValue", //
-        "mysql2.Pool;mysql2;Member[createPool].ReturnValue", //
-        "mysql2.PoolConnection;mysql2.Pool;Member[addListener,on,once,prependListener,prependOnceListener].WithArity[2].WithStringArgument[0=acquire,0=connection,0=release].Argument[1].Argument[0]", //
-        "mysql2.PoolConnection;mysql2.Pool;Member[getConnection].Argument[0].Argument[1]", //
-        "mysql2.PoolOptions;mysql2/promise;Member[createPool].Argument[0]", //
-        "mysql2.PoolOptions;mysql2;Member[createPool].Argument[0]", //
-        "mysql2.authPlugins;mysql2.ConnectionOptions;Member[authPlugins].AnyMember", //
-        "mysql2/promise.Connection;mysql2.Connection;Member[promise].ReturnValue", //
-        "mysql2/promise.Connection;mysql2/promise.PoolConnection;", //
-        "mysql2/promise.Connection;mysql2/promise;Member[createConnectionPromise].ReturnValue.Awaited", //
-        "mysql2/promise.Connection;mysql2/promise;Member[createConnection].ReturnValue.Awaited", //
-        "mysql2/promise.Connection;mysql2;Member[createConnectionPromise].ReturnValue.Awaited", //
-        "mysql2/promise.Pool;mysql2.Pool;Member[promise].ReturnValue", //
-        "mysql2/promise.Pool;mysql2/promise.Pool;Member[addListener,on,once,prependListener,prependOnceListener].ReturnValue", //
-        "mysql2/promise.Pool;mysql2/promise;Member[createPool].ReturnValue", //
-        "mysql2/promise.PoolConnection;mysql2.PoolConnection;Member[promise].ReturnValue", //
-        "mysql2/promise.PoolConnection;mysql2/promise.Pool;Member[addListener,on,once,prependListener,prependOnceListener].WithArity[2].WithStringArgument[0=acquire,0=connection,0=release].Argument[1].Argument[0]", //
-        "mysql2/promise.PoolConnection;mysql2/promise.Pool;Member[getConnection].ReturnValue.Awaited", //
-        "mysql2/typings/mysql.Connection;mysql2.Connection;", //
-        "mysql2/typings/mysql.Connection;mysql2.Pool;", //
-        "mysql2/typings/mysql.PoolConnection;mysql2.PoolConnection;", //
-        "mysql2/typings/mysql/lib/Connection;mysql2/typings/mysql.Connection;", //
-        "mysql2/typings/mysql/lib/Connection;mysql2/typings/mysql/lib/PoolConnection;", //
-        "mysql2/typings/mysql/lib/PoolConnection;mysql2/typings/mysql.PoolConnection;", //
-      ]
-  }
-}
-
-private class Summaries extends ModelInput::SummaryModelCsv {
-  override predicate row(string row) {
-    row =
-      [
-        "mysql2.Pool;;;Member[addListener,on,once,prependListener,prependOnceListener].ReturnValue;type", //
-        "mysql2/promise.Pool;;;Member[addListener,on,once,prependListener,prependOnceListener].ReturnValue;type", //
-        "mysql2/typings/mysql/lib/Connection;;;Member[addListener,on,once,prependListener,prependOnceListener].ReturnValue;type", //
-      ]
-  }
-}
diff --git a/javascript/ql/lib/semmle/javascript/frameworks/pg/Model.qll b/javascript/ql/lib/semmle/javascript/frameworks/pg/Model.qll
deleted file mode 100644
index 979b98bd0c5..00000000000
--- a/javascript/ql/lib/semmle/javascript/frameworks/pg/Model.qll
+++ /dev/null
@@ -1,120 +0,0 @@
-/** Generated model file */
-
-private import javascript
-
-private class Types extends ModelInput::TypeModelCsv {
-  override predicate row(string row) {
-    row =
-      [
-        "events;pg-cursor;", //
-        "events;pg-promise/pg-subset.pg.IClient;", //
-        "events;pg-promise/pg-subset.pg.IConnection;", //
-        "events;pg-promise/pg-subset.pg.IPool;", //
-        "events;pg.ClientBase;", //
-        "events;pg.Events;", //
-        "events;pg.Pool;", //
-        "global.NodeJS.EventEmitter;events;", //
-        "pg-cursor.Static;pg-cursor;", //
-        "pg-cursor;pg-cursor.Static;Instance", //
-        "pg-pool.Static;pg-pool;", //
-        "pg-pool;pg-pool.Static;Instance", //
-        "pg-pool;pg-pool;Member[addListener,on,once,prependListener,prependOnceListener].ReturnValue", //
-        "pg-promise.IBaseProtocol;pg-promise.IConnected;", //
-        "pg-promise.IBaseProtocol;pg-promise.IDatabase;", //
-        "pg-promise.IBaseProtocol;pg-promise.ITask;", //
-        "pg-promise.IBaseProtocol;pg-promise/typescript/pg-promise.IBaseProtocol;", //
-        "pg-promise.IConnected;pg-promise.IDatabase;Member[connect].ReturnValue.Awaited", //
-        "pg-promise.IConnected;pg-promise/typescript/pg-promise.IConnected;", //
-        "pg-promise.IDatabase;pg-promise.IInitOptions;Member[extend].Argument[0]", //
-        "pg-promise.IDatabase;pg-promise.IMain;ReturnValue", //
-        "pg-promise.IDatabase;pg-promise/typescript/pg-promise.IDatabase;", //
-        "pg-promise.IInitOptions;pg-promise.ILibConfig;Member[options]", //
-        "pg-promise.IInitOptions;pg-promise/typescript/pg-promise.IInitOptions;", //
-        "pg-promise.IInitOptions;pg-promise;Argument[0]", //
-        "pg-promise.ILibConfig;pg-promise.IDatabase;Member[$config]", //
-        "pg-promise.ILibConfig;pg-promise/typescript/pg-promise.ILibConfig;", //
-        "pg-promise.IMain;pg-promise.ILibConfig;Member[pgp]", //
-        "pg-promise.IMain;pg-promise/typescript/pg-promise.IMain;", //
-        "pg-promise.IMain;pg-promise;ReturnValue", //
-        "pg-promise.ITask;pg-promise.IBaseProtocol;Member[task,taskIf,tx,txIf].Argument[1].Argument[0]", //
-        "pg-promise.ITask;pg-promise.IBaseProtocol;Member[task,taskIf,tx,txIf].WithArity[1].Argument[0].Argument[0]", //
-        "pg-promise.ITask;pg-promise.IBaseProtocol;Member[taskIf].WithArity[2].Argument[0].Member[cnd].Argument[0]", //
-        "pg-promise.ITask;pg-promise.IBaseProtocol;Member[txIf].WithArity[2].Argument[0].Member[cnd,reusable].Argument[0]", //
-        "pg-promise.ITask;pg-promise/typescript/pg-promise.ITask;", //
-        "pg-promise/pg-subset.pg.IClient;pg-promise.IMain;Argument[0].TypeVar[pg-promise/pg-subset.pg.IConnectionParameters.0]", //
-        "pg-promise/pg-subset.pg.IClient;pg-promise.IMain;ReturnValue.TypeVar[pg-promise.IDatabase.1]", //
-        "pg-promise/pg-subset.pg.IClient;pg-promise/pg-subset;Member[Client].Instance", //
-        "pg-promise/pg-subset.pg.IClient;pg-promise;Argument[0].TypeVar[pg-promise.IInitOptions.1]", //
-        "pg-promise/pg-subset.pg.IConnection;pg-promise/pg-subset.pg.IClient;Member[connection]", //
-        "pg-promise/pg-subset.pg.IPool;pg-promise.IDatabase;Member[$pool]", //
-        "pg.Client;pg-pool.Static;Instance.TypeVar[pg-pool.0]", //
-        "pg.Client;pg-promise/pg-subset.pg.IClient;", //
-        "pg.Client;pg.ClientStatic;Instance", //
-        "pg.Client;pg.Events;Member[addListener,on,once,prependListener,prependOnceListener].Argument[1].Argument[1]", //
-        "pg.ClientBase;pg.Client;", //
-        "pg.ClientBase;pg.PoolClient;", //
-        "pg.ClientStatic;pg;Member[Client]", //
-        "pg.Connection;pg-promise/pg-subset.pg.IConnection;", //
-        "pg.Events;pg.Events;Member[addListener,on,once,prependListener,prependOnceListener].ReturnValue", //
-        "pg.Events;pg.EventsStatic;Instance", //
-        "pg.EventsStatic;pg;Member[Events]", //
-        "pg.Pool;pg-pool;", //
-        "pg.Pool;pg-promise/pg-subset.pg.IPool;", //
-        "pg.Pool;pg.Pool;Member[addListener,on,once,prependListener,prependOnceListener].ReturnValue", //
-        "pg.Pool;pg.PoolStatic;Instance", //
-        "pg.PoolClient;pg-pool;Member[addListener,on,once,prependListener,prependOnceListener].WithArity[2].WithStringArgument[0=acquire,0=connect,0=remove].Argument[1].Argument[0]", //
-        "pg.PoolClient;pg-pool;Member[addListener,on,once,prependListener,prependOnceListener].WithArity[2].WithStringArgument[0=error].Argument[1].Argument[1]", //
-        "pg.PoolClient;pg-pool;Member[connect].Argument[0].Argument[1]", //
-        "pg.PoolClient;pg-pool;Member[connect].WithArity[0].ReturnValue.Awaited", //
-        "pg.PoolClient;pg.Pool;Member[addListener,on,once,prependListener,prependOnceListener].WithArity[2].WithStringArgument[0=acquire,0=connect,0=remove].Argument[1].Argument[0]", //
-        "pg.PoolClient;pg.Pool;Member[addListener,on,once,prependListener,prependOnceListener].WithArity[2].WithStringArgument[0=error].Argument[1].Argument[1]", //
-        "pg.PoolClient;pg.Pool;Member[connect].Argument[0].Argument[1]", //
-        "pg.PoolClient;pg.Pool;Member[connect].WithArity[0].ReturnValue.Awaited", //
-        "pg.PoolStatic;pg;Member[Pool]", //
-      ]
-  }
-}
-
-private class Summaries extends ModelInput::SummaryModelCsv {
-  override predicate row(string row) {
-    row =
-      [
-        "global.NodeJS.EventEmitter;;;Member[addListener,off,on,once,prependListener,prependOnceListener,removeAllListeners,removeListener,setMaxListeners].ReturnValue;type", //
-        "pg-pool;;;Member[addListener,on,once,prependListener,prependOnceListener].ReturnValue;type", //
-        "pg.ClientBase;;;Member[addListener,on,once,prependListener,prependOnceListener].ReturnValue;type", //
-        "pg.Events;;;Member[addListener,on,once,prependListener,prependOnceListener].ReturnValue;type", //
-        "pg.Pool;;;Member[addListener,on,once,prependListener,prependOnceListener].ReturnValue;type", //
-      ]
-  }
-}
-
-private class TypeVariables extends ModelInput::TypeVariableModelCsv {
-  override predicate row(string row) {
-    row =
-      [
-        "pg-pool.0;Member[Client].TypeVar[pg-pool.ClientLikeCtr.0]", //
-        "pg-pool.0;Member[addListener,on,once,prependListener,prependOnceListener].WithArity[2].WithStringArgument[0=acquire,0=connect,0=remove].Argument[1].Argument[0]", //
-        "pg-pool.0;Member[addListener,on,once,prependListener,prependOnceListener].WithArity[2].WithStringArgument[0=error].Argument[1].Argument[1]", //
-        "pg-pool.0;Member[connect].Argument[0].Argument[1]", //
-        "pg-pool.0;Member[connect].WithArity[0].ReturnValue.Awaited", //
-        "pg-pool.ClientLikeCtr.0;Instance", //
-        "pg-promise.IConnected.1;Member[client]", //
-        "pg-promise.IConnectionOptions.0;Member[onLost].Argument[1].TypeVar[pg-promise.ILostContext.0]", //
-        "pg-promise.IDatabase.1;Member[$cn].TypeVar[pg-promise/pg-subset.pg.IConnectionParameters.0]", //
-        "pg-promise.IDatabase.1;Member[$config].TypeVar[pg-promise.ILibConfig.1]", //
-        "pg-promise.IDatabase.1;Member[connect].Argument[0].TypeVar[pg-promise.IConnectionOptions.0]", //
-        "pg-promise.IDatabase.1;Member[connect].ReturnValue.Awaited.TypeVar[pg-promise.IConnected.1]", //
-        "pg-promise.IEventContext.0;Member[client]", //
-        "pg-promise.IInitOptions.1;Member[connect,disconnect].Argument[0]", //
-        "pg-promise.IInitOptions.1;Member[error].Argument[1].TypeVar[pg-promise.IEventContext.0]", //
-        "pg-promise.IInitOptions.1;Member[extend].Argument[0].TypeVar[pg-promise.IDatabase.1]", //
-        "pg-promise.IInitOptions.1;Member[query,task,transact].Argument[0].TypeVar[pg-promise.IEventContext.0]", //
-        "pg-promise.IInitOptions.1;Member[receive].Argument[2].TypeVar[pg-promise.IEventContext.0]", //
-        "pg-promise.ILibConfig.1;Member[options].TypeVar[pg-promise.IInitOptions.1]", //
-        "pg-promise.ILibConfig.1;Member[pgp].TypeVar[pg-promise.IMain.1]", //
-        "pg-promise.ILostContext.0;Member[client]", //
-        "pg-promise/pg-promise.XPromise.0;Awaited", //
-        "pg-promise/pg-subset.pg.IConnectionParameters.0;Member[Client].Instance", //
-      ]
-  }
-}
diff --git a/javascript/ql/lib/semmle/javascript/frameworks/sequelize/Model.qll b/javascript/ql/lib/semmle/javascript/frameworks/sequelize/Model.qll
deleted file mode 100644
index ba4d9669661..00000000000
--- a/javascript/ql/lib/semmle/javascript/frameworks/sequelize/Model.qll
+++ /dev/null
@@ -1,297 +0,0 @@
-/** Generated model file */
-
-private import javascript
-
-private class Sinks extends ModelInput::SinkModelCsv {
-  override predicate row(string row) {
-    row =
-      [
-        "sequelize.Sequelize;Member[query].Argument[0].Member[query];sql-injection", //
-        "sequelize.Sequelize;Member[query].Argument[0];sql-injection", //
-        "sequelize.SequelizeStaticAndInstance;Member[asIs,literal].Argument[0];sql-injection", //
-        "sequelize;Argument[0..].Member[password];credentials[password]", //
-        "sequelize;Argument[0..].Member[username];credentials[username]", //
-        "sequelize;Argument[1];credentials[username]", //
-        "sequelize;Argument[2];credentials[password]", //
-      ]
-  }
-}
-
-private class Types extends ModelInput::TypeModelCsv {
-  override predicate row(string row) {
-    row =
-      [
-        "sequelize-typescript.AssociationCountOptions;sequelize-typescript.Model;Member[$count].Argument[1]", //
-        "sequelize-typescript.AssociationCountOptions;sequelize-typescript/model/model/association/association-count-options.AssociationCountOptions;", //
-        "sequelize-typescript.AssociationGetOptions;sequelize-typescript.Model;Member[$get].Argument[1]", //
-        "sequelize-typescript.AssociationGetOptions;sequelize-typescript.Model;Member[$has].Argument[2]", //
-        "sequelize-typescript.AssociationGetOptions;sequelize-typescript/model/model/association/association-get-options.AssociationGetOptions;", //
-        "sequelize-typescript.BaseAssociation;sequelize-typescript.BaseAssociationStatic;Instance", //
-        "sequelize-typescript.BaseAssociation;sequelize-typescript.BelongsToAssociation;", //
-        "sequelize-typescript.BaseAssociation;sequelize-typescript.BelongsToManyAssociation;", //
-        "sequelize-typescript.BaseAssociation;sequelize-typescript.HasAssociation;", //
-        "sequelize-typescript.BaseAssociation;sequelize-typescript/associations/shared/association-service;Member[addAssociation].Argument[1]", //
-        "sequelize-typescript.BaseAssociation;sequelize-typescript/associations/shared/association-service;Member[getAssociations,getAssociationsByRelation].ReturnValue.ArrayElement", //
-        "sequelize-typescript.BaseAssociation;sequelize-typescript/associations/shared/association-service;Member[setAssociations].Argument[1].ArrayElement", //
-        "sequelize-typescript.BaseAssociation;sequelize-typescript/associations/shared/base-association.BaseAssociation;", //
-        "sequelize-typescript.BaseAssociation;sequelize-typescript;Member[addAssociation].Argument[1]", //
-        "sequelize-typescript.BaseAssociation;sequelize-typescript;Member[getAssociations,getAssociationsByRelation].ReturnValue.ArrayElement", //
-        "sequelize-typescript.BaseAssociation;sequelize-typescript;Member[setAssociations].Argument[1].ArrayElement", //
-        "sequelize-typescript.BaseAssociationStatic;sequelize-typescript/associations/shared/base-association.BaseAssociationStatic;", //
-        "sequelize-typescript.BaseAssociationStatic;sequelize-typescript/associations/shared/base-association;Member[BaseAssociation]", //
-        "sequelize-typescript.BaseAssociationStatic;sequelize-typescript;Member[BaseAssociation]", //
-        "sequelize-typescript.BelongsToAssociation;sequelize-typescript.BelongsToAssociationStatic;Instance", //
-        "sequelize-typescript.BelongsToAssociation;sequelize-typescript/associations/belongs-to/belongs-to-association.BelongsToAssociation;", //
-        "sequelize-typescript.BelongsToAssociationStatic;sequelize-typescript/associations/belongs-to/belongs-to-association.BelongsToAssociationStatic;", //
-        "sequelize-typescript.BelongsToAssociationStatic;sequelize-typescript/associations/belongs-to/belongs-to-association;Member[BelongsToAssociation]", //
-        "sequelize-typescript.BelongsToAssociationStatic;sequelize-typescript;Member[BelongsToAssociation]", //
-        "sequelize-typescript.BelongsToManyAssociation;sequelize-typescript.BelongsToManyAssociationStatic;Instance", //
-        "sequelize-typescript.BelongsToManyAssociation;sequelize-typescript/associations/belongs-to-many/belongs-to-many-association.BelongsToManyAssociation;", //
-        "sequelize-typescript.BelongsToManyAssociationStatic;sequelize-typescript/associations/belongs-to-many/belongs-to-many-association.BelongsToManyAssociationStatic;", //
-        "sequelize-typescript.BelongsToManyAssociationStatic;sequelize-typescript/associations/belongs-to-many/belongs-to-many-association;Member[BelongsToManyAssociation]", //
-        "sequelize-typescript.BelongsToManyAssociationStatic;sequelize-typescript;Member[BelongsToManyAssociation]", //
-        "sequelize-typescript.DefaultScopeGetter;sequelize-typescript.ScopeOptionsGetters;Member[getDefaultScope]", //
-        "sequelize-typescript.DefaultScopeGetter;sequelize-typescript/scopes/default-scope;Member[DefaultScope].Argument[0]", //
-        "sequelize-typescript.DefaultScopeGetter;sequelize-typescript/scopes/scope-options.DefaultScopeGetter;", //
-        "sequelize-typescript.DefaultScopeGetter;sequelize-typescript;Member[DefaultScope].Argument[0]", //
-        "sequelize-typescript.HasAssociation;sequelize-typescript.HasAssociationStatic;Instance", //
-        "sequelize-typescript.HasAssociation;sequelize-typescript/associations/has/has-association.HasAssociation;", //
-        "sequelize-typescript.HasAssociationStatic;sequelize-typescript/associations/has/has-association.HasAssociationStatic;", //
-        "sequelize-typescript.HasAssociationStatic;sequelize-typescript/associations/has/has-association;Member[HasAssociation]", //
-        "sequelize-typescript.HasAssociationStatic;sequelize-typescript;Member[HasAssociation]", //
-        "sequelize-typescript.Model;sequelize-typescript.Model;Member[$add,$has,$remove,$set].Argument[1]", //
-        "sequelize-typescript.Model;sequelize-typescript.Model;Member[$add,$has,$remove,$set].Argument[1].ArrayElement", //
-        "sequelize-typescript.Model;sequelize-typescript.Model;Member[$create,reload].ReturnValue.Awaited", //
-        "sequelize-typescript.Model;sequelize-typescript.ModelStatic~;Instance", //
-        "sequelize-typescript.Model;sequelize-typescript.ModelStatic~;Member[initialize].ReturnValue.TypeVar[sequelize-typescript.ModelStatic.0]", //
-        "sequelize-typescript.Model;sequelize-typescript.ModelType;Instance", //
-        "sequelize-typescript.Model;sequelize-typescript.Sequelize;Member[getRepository].Argument[0].Instance", //
-        "sequelize-typescript.Model;sequelize-typescript.Sequelize;Member[getRepository].ReturnValue.TypeVar[sequelize-typescript.Repository.0]", //
-        "sequelize-typescript.Model;sequelize-typescript/model/model/model.Model;", //
-        "sequelize-typescript.ModelClassGetter;sequelize-typescript.BaseAssociationStatic;Argument[0]", //
-        "sequelize-typescript.ModelClassGetter;sequelize-typescript.BelongsToAssociationStatic;Argument[0]", //
-        "sequelize-typescript.ModelClassGetter;sequelize-typescript.BelongsToManyAssociationStatic;Argument[0]", //
-        "sequelize-typescript.ModelClassGetter;sequelize-typescript.HasAssociationStatic;Argument[0]", //
-        "sequelize-typescript.ModelClassGetter;sequelize-typescript/associations/belongs-to-many/belongs-to-many;Member[BelongsToMany].Argument[0,1]", //
-        "sequelize-typescript.ModelClassGetter;sequelize-typescript/associations/belongs-to/belongs-to;Member[BelongsTo].Argument[0]", //
-        "sequelize-typescript.ModelClassGetter;sequelize-typescript/associations/foreign-key/foreign-key-meta.ForeignKeyMeta;Member[relatedClassGetter]", //
-        "sequelize-typescript.ModelClassGetter;sequelize-typescript/associations/foreign-key/foreign-key-service;Member[addForeignKey].Argument[1]", //
-        "sequelize-typescript.ModelClassGetter;sequelize-typescript/associations/foreign-key/foreign-key;Member[ForeignKey].Argument[0]", //
-        "sequelize-typescript.ModelClassGetter;sequelize-typescript/associations/has/has-many;Member[HasMany].Argument[0]", //
-        "sequelize-typescript.ModelClassGetter;sequelize-typescript/associations/has/has-one;Member[HasOne].Argument[0]", //
-        "sequelize-typescript.ModelClassGetter;sequelize-typescript/model/shared/model-class-getter.ModelClassGetter;", //
-        "sequelize-typescript.ModelClassGetter;sequelize-typescript;Member[BelongsTo,ForeignKey,HasMany,HasOne].Argument[0]", //
-        "sequelize-typescript.ModelClassGetter;sequelize-typescript;Member[BelongsToMany].Argument[0,1]", //
-        "sequelize-typescript.ModelStatic~;sequelize-typescript/model/model/model.ModelStatic~;", //
-        "sequelize-typescript.ModelStatic~;sequelize-typescript/model/model/model;Member[Model]", //
-        "sequelize-typescript.ModelStatic~;sequelize-typescript/model/shared/model-not-initialized-error.ModelNotInitializedErrorStatic;Argument[0]", //
-        "sequelize-typescript.ModelStatic~;sequelize-typescript;Member[Model]", //
-        "sequelize-typescript.ModelType;sequelize-typescript.BaseAssociation;Member[getAssociatedClass].ReturnValue", //
-        "sequelize-typescript.ModelType;sequelize-typescript.BaseAssociation;Member[getSequelizeOptions].Argument[0]", //
-        "sequelize-typescript.ModelType;sequelize-typescript.BelongsToAssociation;Member[getSequelizeOptions].Argument[0]", //
-        "sequelize-typescript.ModelType;sequelize-typescript.BelongsToManyAssociation;Member[getSequelizeOptions].Argument[0]", //
-        "sequelize-typescript.ModelType;sequelize-typescript.HasAssociation;Member[getSequelizeOptions].Argument[0]", //
-        "sequelize-typescript.ModelType;sequelize-typescript.ModelClassGetter;ReturnValue", //
-        "sequelize-typescript.ModelType;sequelize-typescript.Sequelize;Member[model].Argument[0]", //
-        "sequelize-typescript.ModelType;sequelize-typescript/associations/foreign-key/foreign-key-service;Member[getForeignKeyOptions].Argument[0,1]", //
-        "sequelize-typescript.ModelType;sequelize-typescript/model/model/model.ModelType;", //
-        "sequelize-typescript.ScopeOptionsGetters;sequelize-typescript/scopes/scope-options.ScopeOptionsGetters;", //
-        "sequelize-typescript.ScopeOptionsGetters;sequelize-typescript/scopes/scope-service;Member[addScopeOptionsGetter,setScopeOptionsGetters].Argument[1]", //
-        "sequelize-typescript.ScopeOptionsGetters;sequelize-typescript/scopes/scope-service;Member[getScopeOptionsGetters].ReturnValue", //
-        "sequelize-typescript.ScopeOptionsGetters;sequelize-typescript;Member[addScopeOptionsGetter,setScopeOptionsGetters].Argument[1]", //
-        "sequelize-typescript.ScopeOptionsGetters;sequelize-typescript;Member[getScopeOptionsGetters].ReturnValue", //
-        "sequelize-typescript.ScopesOptions;sequelize-typescript.ScopesOptionsGetter;ReturnValue.AnyMember", //
-        "sequelize-typescript.ScopesOptions;sequelize-typescript/scopes/scope-options.ScopesOptions;", //
-        "sequelize-typescript.ScopesOptions;sequelize-typescript/scopes/scope-service;Member[resolveScope].Argument[2]", //
-        "sequelize-typescript.ScopesOptions;sequelize-typescript;Member[resolveScope].Argument[2]", //
-        "sequelize-typescript.ScopesOptionsGetter;sequelize-typescript.ScopeOptionsGetters;Member[getScopes]", //
-        "sequelize-typescript.ScopesOptionsGetter;sequelize-typescript/scopes/scope-options.ScopesOptionsGetter;", //
-        "sequelize-typescript.ScopesOptionsGetter;sequelize-typescript/scopes/scopes;Member[Scopes].Argument[0]", //
-        "sequelize-typescript.ScopesOptionsGetter;sequelize-typescript;Member[Scopes].Argument[0]", //
-        "sequelize-typescript.Sequelize;sequelize-typescript.BaseAssociation;Member[getSequelizeOptions].Argument[1]", //
-        "sequelize-typescript.Sequelize;sequelize-typescript.BelongsToManyAssociation;Member[getSequelizeOptions].Argument[1]", //
-        "sequelize-typescript.Sequelize;sequelize-typescript.SequelizeStatic;Instance", //
-        "sequelize-typescript.Sequelize;sequelize-typescript/sequelize/sequelize/sequelize.Sequelize;", //
-        "sequelize-typescript.SequelizeOptions;sequelize-typescript.Sequelize;Member[options]", //
-        "sequelize-typescript.SequelizeOptions;sequelize-typescript.SequelizeStatic;Argument[3]", //
-        "sequelize-typescript.SequelizeOptions;sequelize-typescript.SequelizeStatic;WithArity[0].Argument[0]", //
-        "sequelize-typescript.SequelizeOptions;sequelize-typescript.SequelizeStatic;WithArity[1].Argument[0,1]", //
-        "sequelize-typescript.SequelizeOptions;sequelize-typescript.SequelizeStatic;WithArity[2].Argument[1,2]", //
-        "sequelize-typescript.SequelizeOptions;sequelize-typescript.SequelizeStatic;WithArity[3].Argument[2]", //
-        "sequelize-typescript.SequelizeOptions;sequelize-typescript/sequelize/sequelize/sequelize-options.SequelizeOptions;", //
-        "sequelize-typescript.SequelizeOptions;sequelize-typescript/sequelize/sequelize/sequelize-service;Member[prepareArgs].ReturnValue.Member[options]", //
-        "sequelize-typescript.SequelizeOptions;sequelize-typescript/sequelize/sequelize/sequelize-service;Member[prepareOptions].Argument[0]", //
-        "sequelize-typescript.SequelizeOptions;sequelize-typescript/sequelize/sequelize/sequelize-service;Member[prepareOptions].ReturnValue", //
-        "sequelize-typescript.SequelizeOptions;sequelize-typescript;Member[prepareArgs].ReturnValue.Member[options]", //
-        "sequelize-typescript.SequelizeOptions;sequelize-typescript;Member[prepareOptions].Argument[0]", //
-        "sequelize-typescript.SequelizeOptions;sequelize-typescript;Member[prepareOptions].ReturnValue", //
-        "sequelize-typescript.SequelizeStatic;sequelize-typescript/sequelize/sequelize/sequelize.SequelizeStatic;", //
-        "sequelize-typescript.SequelizeStatic;sequelize-typescript/sequelize/sequelize/sequelize;Member[Sequelize]", //
-        "sequelize-typescript.SequelizeStatic;sequelize-typescript;Member[Sequelize]", //
-        "sequelize-typescript/associations/foreign-key/foreign-key-meta.ForeignKeyMeta;sequelize-typescript/associations/foreign-key/foreign-key-service;Member[getForeignKeys].ReturnValue.ArrayElement", //
-        "sequelize-typescript/model/model/association/association-create-options.AssociationCreateOptions;sequelize-typescript.Model;Member[$create].Argument[2]", //
-        "sequelize-typescript/model/shared/model-not-initialized-error.ModelNotInitializedErrorStatic;sequelize-typescript/model/shared/model-not-initialized-error;Member[ModelNotInitializedError]", //
-        "sequelize.AnyFindOptions;sequelize.BelongsToManyAddAssociationMixin;Argument[1]", //
-        "sequelize.AnyFindOptions;sequelize.BelongsToManyAddAssociationsMixin;Argument[1]", //
-        "sequelize.AnyFindOptions;sequelize.BelongsToManySetAssociationsMixin;Argument[1]", //
-        "sequelize.AnyFindOptions;sequelize.DefineOptions;Member[defaultScope]", //
-        "sequelize.AnyFindOptions;sequelize.DefineScopeOptions;AnyMember", //
-        "sequelize.AnyFindOptions;sequelize.HasManySetAssociationsMixin;Argument[1]", //
-        "sequelize.AnyFindOptions;sequelize.Instance;Member[reload].Argument[0]", //
-        "sequelize.AnyFindOptions;sequelize.Model;Member[addScope].Argument[1]", //
-        "sequelize.AssociationOptionsBelongsToMany;sequelize.Associations;Member[belongsToMany].Argument[1]", //
-        "sequelize.Associations;sequelize.Model;", //
-        "sequelize.Associations;sequelize.SequelizeStaticAndInstance.Model;", //
-        "sequelize.BuildOptions;sequelize-typescript.ModelStatic~;Argument[1]", //
-        "sequelize.BuildOptions;sequelize.CreateOptions;", //
-        "sequelize.BuildOptions;sequelize.Model;Member[build,bulkBuild].Argument[1]", //
-        "sequelize.CountOptions;sequelize.Model;Member[count].Argument[0]", //
-        "sequelize.CreateOptions;sequelize-typescript/model/model/association/association-create-options.AssociationCreateOptions;", //
-        "sequelize.CreateOptions;sequelize.BelongsToCreateAssociationMixin;Argument[1]", //
-        "sequelize.CreateOptions;sequelize.BelongsToManyCreateAssociationMixin;Argument[1]", //
-        "sequelize.CreateOptions;sequelize.HasManyCreateAssociationMixin;Argument[1]", //
-        "sequelize.CreateOptions;sequelize.HasOneCreateAssociationMixin;Argument[1]", //
-        "sequelize.CreateOptions;sequelize.Model;Member[create].Argument[1]", //
-        "sequelize.DefineAttributeColumnOptions;sequelize.DefineAttributes;AnyMember", //
-        "sequelize.DefineAttributeColumnOptions;sequelize.QueryInterface;Member[addColumn,changeColumn].Argument[2]", //
-        "sequelize.DefineAttributeColumnReferencesOptions;sequelize.DefineAttributeColumnOptions;Member[references]", //
-        "sequelize.DefineAttributes;sequelize.Hooks;Member[beforeDefine].Argument[1].Argument[0]", //
-        "sequelize.DefineAttributes;sequelize.Hooks;Member[beforeDefine].WithArity[1].Argument[0].Argument[0]", //
-        "sequelize.DefineAttributes;sequelize.QueryInterface;Member[createTable].Argument[1]", //
-        "sequelize.DefineOptions;sequelize.Options;Member[define]", //
-        "sequelize.DefineOptions;sequelize.Sequelize;Member[define].Argument[2]", //
-        "sequelize.DefineScopeOptions;sequelize.DefineOptions;Member[scopes]", //
-        "sequelize.FindCreateFindOptions;sequelize.Model;Member[findCreateFind].Argument[0]", //
-        "sequelize.FindOptions;sequelize-typescript.AssociationCountOptions;", //
-        "sequelize.FindOptions;sequelize-typescript.AssociationGetOptions;", //
-        "sequelize.FindOptions;sequelize-typescript.DefaultScopeGetter;ReturnValue", //
-        "sequelize.FindOptions;sequelize-typescript.Model;Member[reload].Argument[0]", //
-        "sequelize.FindOptions;sequelize-typescript.ScopesOptions;", //
-        "sequelize.FindOptions;sequelize-typescript.ScopesOptions;ReturnValue", //
-        "sequelize.FindOptions;sequelize.AnyFindOptions;", //
-        "sequelize.FindOptions;sequelize.FindCreateFindOptions;", //
-        "sequelize.FindOptions;sequelize.FindOrInitializeOptions;", //
-        "sequelize.FindOptions;sequelize.Model;Member[all,find,findAll,findAndCount,findAndCountAll,findOne].Argument[0]", //
-        "sequelize.FindOptionsOrderArray;sequelize.FindOptions;Member[order]", //
-        "sequelize.FindOptionsOrderArray;sequelize.FindOptions;Member[order].ArrayElement", //
-        "sequelize.FindOrInitializeOptions;sequelize.Model;Member[findOrBuild,findOrCreate,findOrInitialize].Argument[0]", //
-        "sequelize.HasManyGetAssociationsMixinOptions;sequelize.HasManyGetAssociationsMixin;Argument[0]", //
-        "sequelize.HasManyGetAssociationsMixinOptions;sequelize.HasManyHasAssociationMixin;Argument[1]", //
-        "sequelize.HasManyGetAssociationsMixinOptions;sequelize.HasManyHasAssociationsMixin;Argument[1]", //
-        "sequelize.Hooks;sequelize.Hooks;Member[addHook,hook,removeHook].ReturnValue", //
-        "sequelize.Hooks;sequelize.Model;", //
-        "sequelize.Hooks;sequelize.Sequelize;", //
-        "sequelize.Hooks;sequelize.SequelizeStaticAndInstance.Model;", //
-        "sequelize.IncludeAssociation;sequelize.Associations;Member[belongsTo,belongsToMany,hasMany,hasOne].ReturnValue", //
-        "sequelize.IncludeAssociation;sequelize.IncludeOptions;Member[association]", //
-        "sequelize.IncludeOptions;sequelize.BuildOptions;Member[include].ArrayElement", //
-        "sequelize.IncludeOptions;sequelize.CountOptions;Member[include]", //
-        "sequelize.IncludeOptions;sequelize.CountOptions;Member[include].ArrayElement", //
-        "sequelize.IncludeOptions;sequelize.FindOptions;Member[include]", //
-        "sequelize.IncludeOptions;sequelize.FindOptions;Member[include].ArrayElement", //
-        "sequelize.IncludeOptions;sequelize.HasManyGetAssociationsMixinOptions;Member[include]", //
-        "sequelize.IncludeOptions;sequelize.IncludeOptions;Member[include]", //
-        "sequelize.IncludeOptions;sequelize.IncludeOptions;Member[include].ArrayElement", //
-        "sequelize.Instance;sequelize.Instance;Member[decrement,increment,reload,save,update,updateAttributes].ReturnValue.Awaited", //
-        "sequelize.Instance;sequelize.Instance;Member[equalsOneOf].Argument[0].ArrayElement", //
-        "sequelize.Instance;sequelize.Instance;Member[equals].Argument[0]", //
-        "sequelize.Instance;sequelize.Instance;Member[set,setAttributes].ReturnValue", //
-        "sequelize.Instance;sequelize.Model;Member[Instance,build].ReturnValue", //
-        "sequelize.Instance;sequelize.Model;Member[all,bulkCreate,findAll].ReturnValue.Awaited.ArrayElement", //
-        "sequelize.Instance;sequelize.Model;Member[bulkBuild].ReturnValue.ArrayElement", //
-        "sequelize.Instance;sequelize.Model;Member[create,find,findById,findByPk,findByPrimary,findOne].ReturnValue.Awaited", //
-        "sequelize.Instance;sequelize.Model;Member[findAndCount,findAndCountAll].ReturnValue.Awaited.Member[rows].ArrayElement", //
-        "sequelize.Instance;sequelize.QueryInterface;Member[delete,increment,insert,update].Argument[0]", //
-        "sequelize.Instance;sequelize.QueryOptions;Member[instance]", //
-        "sequelize.Instance;sequelize.SequelizeStaticAndInstance;Member[Instance]", //
-        "sequelize.Model;sequelize.AssociationOptionsBelongsToMany;Member[through]", //
-        "sequelize.Model;sequelize.Associations;Member[belongsTo,belongsToMany,hasMany,hasOne].Argument[0]", //
-        "sequelize.Model;sequelize.BuildOptions;Member[include].ArrayElement", //
-        "sequelize.Model;sequelize.CountOptions;Member[include]", //
-        "sequelize.Model;sequelize.CountOptions;Member[include].ArrayElement", //
-        "sequelize.Model;sequelize.DefineAttributeColumnReferencesOptions;Member[model]", //
-        "sequelize.Model;sequelize.FindOptions;Member[include]", //
-        "sequelize.Model;sequelize.FindOptions;Member[include].ArrayElement", //
-        "sequelize.Model;sequelize.FindOptions;Member[lock].Member[of]", //
-        "sequelize.Model;sequelize.FindOptionsOrderArray;ArrayElement", //
-        "sequelize.Model;sequelize.FindOptionsOrderArray;ArrayElement.Member[model]", //
-        "sequelize.Model;sequelize.Hooks;Member[afterDefine].Argument[1].Argument[0]", //
-        "sequelize.Model;sequelize.Hooks;Member[afterDefine].WithArity[1].Argument[0].Argument[0]", //
-        "sequelize.Model;sequelize.IncludeAssociation;Member[source,target]", //
-        "sequelize.Model;sequelize.IncludeOptions;Member[include,model]", //
-        "sequelize.Model;sequelize.IncludeOptions;Member[include].ArrayElement", //
-        "sequelize.Model;sequelize.Instance;Member[Model]", //
-        "sequelize.Model;sequelize.Model;Member[schema,scope,unscoped].ReturnValue", //
-        "sequelize.Model;sequelize.Model;Member[sync].ReturnValue.Awaited", //
-        "sequelize.Model;sequelize.Models;AnyMember", //
-        "sequelize.Model;sequelize.ModelsHashInterface;AnyMember", //
-        "sequelize.Model;sequelize.QueryInterface;Member[bulkDelete,rawSelect,upsert].Argument[3]", //
-        "sequelize.Model;sequelize.QueryInterface;Member[select].Argument[0]", //
-        "sequelize.Model;sequelize.QueryOptions;Member[model]", //
-        "sequelize.Model;sequelize.Sequelize;Member[define,import,model].ReturnValue", //
-        "sequelize.Model;sequelize.Sequelize;Member[import].Argument[1].ReturnValue", //
-        "sequelize.Model;sequelize.SequelizeStaticAndInstance;Member[Model]", //
-        "sequelize.Model;sequelize.ThroughOptions;Member[model]", //
-        "sequelize.Model;sequelize.Utils;Member[mapOptionFieldNames].Argument[1]", //
-        "sequelize.Model;sequelize.Utils;Member[mapValueFieldNames].Argument[2]", //
-        "sequelize.Models;sequelize.Model;Member[associate].Argument[0]", //
-        "sequelize.ModelsHashInterface;sequelize.Sequelize;Member[models]", //
-        "sequelize.Options;sequelize-typescript.SequelizeOptions;", //
-        "sequelize.Options;sequelize.Sequelize;Member[options]", //
-        "sequelize.Options;sequelize.SequelizeStatic;Argument[3]", //
-        "sequelize.Options;sequelize.SequelizeStatic;WithArity[1].Argument[0,1]", //
-        "sequelize.Options;sequelize.SequelizeStatic;WithArity[2].Argument[1,2]", //
-        "sequelize.Options;sequelize.SequelizeStatic;WithArity[3].Argument[2]", //
-        "sequelize.QueryInterface;sequelize.Sequelize;Member[getQueryInterface].ReturnValue", //
-        "sequelize.QueryOptions;sequelize.Options;Member[query]", //
-        "sequelize.QueryOptions;sequelize.QueryInterface;Member[bulkDelete,bulkInsert,createTable,select,setAutocommit,setIsolationLevel].Argument[2]", //
-        "sequelize.QueryOptions;sequelize.QueryInterface;Member[bulkUpdate,delete,insert].Argument[3]", //
-        "sequelize.QueryOptions;sequelize.QueryInterface;Member[commitTransaction,deferConstraints,dropTable,rawSelect,rollbackTransaction,showIndex,startTransaction].Argument[1]", //
-        "sequelize.QueryOptions;sequelize.QueryInterface;Member[createFunction].Argument[5]", //
-        "sequelize.QueryOptions;sequelize.QueryInterface;Member[dropAllEnums,dropAllTables,showAllSchemas,showAllTables].Argument[0]", //
-        "sequelize.QueryOptions;sequelize.QueryInterface;Member[increment,update,upsert].Argument[4]", //
-        "sequelize.QueryOptions;sequelize.Sequelize;Member[authenticate,validate].Argument[0]", //
-        "sequelize.QueryOptions;sequelize.Sequelize;Member[query].Argument[1]", //
-        "sequelize.Sequelize;sequelize-typescript.Sequelize;", //
-        "sequelize.Sequelize;sequelize.Hooks;Member[afterInit].Argument[1].Argument[0]", //
-        "sequelize.Sequelize;sequelize.Hooks;Member[afterInit].WithArity[1].Argument[0].Argument[0]", //
-        "sequelize.Sequelize;sequelize.Instance;Member[sequelize]", //
-        "sequelize.Sequelize;sequelize.QueryInterface;Member[sequelize]", //
-        "sequelize.Sequelize;sequelize.Sequelize;Member[import].Argument[1].Argument[0]", //
-        "sequelize.Sequelize;sequelize.SequelizeStatic;Instance", //
-        "sequelize.Sequelize;sequelize.SequelizeStatic;Member[useCLS].ReturnValue", //
-        "sequelize.SequelizeStatic;sequelize-typescript.Sequelize;", //
-        "sequelize.SequelizeStatic;sequelize.Sequelize;Member[Sequelize]", //
-        "sequelize.SequelizeStatic;sequelize.SequelizeStatic;Member[Sequelize,default]", //
-        "sequelize.SequelizeStatic;sequelize;", //
-        "sequelize.SequelizeStaticAndInstance.Model;sequelize-typescript.Model;", //
-        "sequelize.SequelizeStaticAndInstance;sequelize.Sequelize;", //
-        "sequelize.SequelizeStaticAndInstance;sequelize.SequelizeStatic;", //
-        "sequelize.ThroughOptions;sequelize.AssociationOptionsBelongsToMany;Member[through]", //
-        "sequelize.Utils;sequelize.SequelizeStaticAndInstance;Member[Utils]", //
-      ]
-  }
-}
-
-private class Summaries extends ModelInput::SummaryModelCsv {
-  override predicate row(string row) {
-    row =
-      [
-        "sequelize-typescript.Model;;;Member[reload].ReturnValue.Awaited;type", //
-        "sequelize.Instance;;;Member[decrement,increment,reload,save,update,updateAttributes].ReturnValue.Awaited;type", //
-        "sequelize.Instance;;;Member[set,setAttributes].ReturnValue;type", //
-        "sequelize.Model;;;Member[schema,scope,unscoped].ReturnValue;type", //
-        "sequelize.Model;;;Member[sync].ReturnValue.Awaited;type", //
-      ]
-  }
-}
-
-private class TypeVariables extends ModelInput::TypeVariableModelCsv {
-  override predicate row(string row) {
-    row =
-      [
-        "sequelize-typescript.ModelStatic.0;Instance", //
-        "sequelize-typescript.Repository.0;Instance", //
-      ]
-  }
-}
diff --git a/javascript/ql/lib/semmle/javascript/frameworks/spanner/Model.qll b/javascript/ql/lib/semmle/javascript/frameworks/spanner/Model.qll
deleted file mode 100644
index 630fa5ea8c9..00000000000
--- a/javascript/ql/lib/semmle/javascript/frameworks/spanner/Model.qll
+++ /dev/null
@@ -1,198 +0,0 @@
-/** Generated model file */
-
-private import javascript
-
-private class Types extends ModelInput::TypeModelCsv {
-  override predicate row(string row) {
-    row =
-      [
-        "@google-cloud/spanner.BackupStatic;@google-cloud/spanner/backup.BackupStatic;", //
-        "@google-cloud/spanner.BackupStatic;@google-cloud/spanner/backup;Member[Backup]", //
-        "@google-cloud/spanner.BackupStatic;@google-cloud/spanner;Member[Backup]", //
-        "@google-cloud/spanner.BatchTransaction;@google-cloud/spanner/batch-transaction.BatchTransaction;", //
-        "@google-cloud/spanner.Database;@google-cloud/spanner.DatabaseStatic;Instance", //
-        "@google-cloud/spanner.Database;@google-cloud/spanner.Instance;Member[database].ReturnValue", //
-        "@google-cloud/spanner.Database;@google-cloud/spanner.SessionPool;Member[database]", //
-        "@google-cloud/spanner.Database;@google-cloud/spanner.SessionPoolStatic;Argument[0]", //
-        "@google-cloud/spanner.Database;@google-cloud/spanner.SessionStatic;Argument[0]", //
-        "@google-cloud/spanner.Database;@google-cloud/spanner.Table;Member[database]", //
-        "@google-cloud/spanner.Database;@google-cloud/spanner.TableStatic;Argument[0]", //
-        "@google-cloud/spanner.Database;@google-cloud/spanner/database.Database;", //
-        "@google-cloud/spanner.Database;@google-cloud/spanner/database.DatabaseCallback;TypeVar[@google-cloud/spanner/common.ResourceCallback.0]", //
-        "@google-cloud/spanner.Database;@google-cloud/spanner/database.RestoreDatabaseCallback;TypeVar[@google-cloud/spanner/common.LongRunningCallback.0]", //
-        "@google-cloud/spanner.Database;@google-cloud/spanner/database.SessionPoolConstructor;Argument[0]", //
-        "@google-cloud/spanner.Database;@google-cloud/spanner/instance.CreateDatabaseCallback;TypeVar[@google-cloud/spanner/common.LongRunningCallback.0]", //
-        "@google-cloud/spanner.Database;@google-cloud/spanner/instance.GetDatabasesCallback;TypeVar[@google-cloud/spanner/common.RequestCallback.0]", //
-        "@google-cloud/spanner.DatabaseStatic;@google-cloud/spanner/database.DatabaseStatic;", //
-        "@google-cloud/spanner.DatabaseStatic;@google-cloud/spanner/database;Member[Database]", //
-        "@google-cloud/spanner.DatabaseStatic;@google-cloud/spanner;Member[Database]", //
-        "@google-cloud/spanner.GetInstancesCallback;@google-cloud/spanner.Spanner;Member[getInstances].Argument[1]", //
-        "@google-cloud/spanner.GetInstancesCallback;@google-cloud/spanner.Spanner;Member[getInstances].WithArity[1].Argument[0]", //
-        "@google-cloud/spanner.GetInstancesCallback;@google-cloud/spanner/build/src.GetInstancesCallback;", //
-        "@google-cloud/spanner.Instance;@google-cloud/spanner.BackupStatic;Argument[0]", //
-        "@google-cloud/spanner.Instance;@google-cloud/spanner.DatabaseStatic;Argument[0]", //
-        "@google-cloud/spanner.Instance;@google-cloud/spanner.GetInstancesCallback;TypeVar[@google-cloud/spanner/common.PagedCallback.0]", //
-        "@google-cloud/spanner.Instance;@google-cloud/spanner.InstanceStatic;Instance", //
-        "@google-cloud/spanner.Instance;@google-cloud/spanner.Spanner;Member[instance].ReturnValue", //
-        "@google-cloud/spanner.Instance;@google-cloud/spanner/instance.CreateInstanceCallback;TypeVar[@google-cloud/spanner/common.LongRunningCallback.0]", //
-        "@google-cloud/spanner.Instance;@google-cloud/spanner/instance.GetInstanceCallback;TypeVar[@google-cloud/spanner/common.ResourceCallback.0]", //
-        "@google-cloud/spanner.Instance;@google-cloud/spanner/instance.Instance;", //
-        "@google-cloud/spanner.InstanceStatic;@google-cloud/spanner/instance.InstanceStatic;", //
-        "@google-cloud/spanner.InstanceStatic;@google-cloud/spanner/instance;Member[Instance]", //
-        "@google-cloud/spanner.InstanceStatic;@google-cloud/spanner;Member[Instance]", //
-        "@google-cloud/spanner.PartitionedDml;@google-cloud/spanner.PartitionedDmlStatic;Instance", //
-        "@google-cloud/spanner.PartitionedDml;@google-cloud/spanner.Session;Member[partitionedDml].ReturnValue", //
-        "@google-cloud/spanner.PartitionedDml;@google-cloud/spanner/transaction.PartitionedDml;", //
-        "@google-cloud/spanner.PartitionedDmlStatic;@google-cloud/spanner/transaction.PartitionedDmlStatic;", //
-        "@google-cloud/spanner.PartitionedDmlStatic;@google-cloud/spanner/transaction;Member[PartitionedDml]", //
-        "@google-cloud/spanner.PartitionedDmlStatic;@google-cloud/spanner;Member[PartitionedDml]", //
-        "@google-cloud/spanner.Session;@google-cloud/spanner.Database;Member[_runPartitionedUpdate].Argument[0]", //
-        "@google-cloud/spanner.Session;@google-cloud/spanner.Database;Member[makePooledRequest_].WithArity[1].ReturnValue.Awaited", //
-        "@google-cloud/spanner.Session;@google-cloud/spanner.Database;Member[session].ReturnValue", //
-        "@google-cloud/spanner.Session;@google-cloud/spanner.SessionPool;Member[_acquire,_getSession].ReturnValue.Awaited", //
-        "@google-cloud/spanner.Session;@google-cloud/spanner.SessionPool;Member[_borrow,_destroy,_isValidSession,_ping,_prepareTransaction,_release,release].Argument[0]", //
-        "@google-cloud/spanner.Session;@google-cloud/spanner.SessionPool;Member[_borrowFrom,_borrowNextAvailableSession].ReturnValue", //
-        "@google-cloud/spanner.Session;@google-cloud/spanner.SessionPool;Member[_getIdleSessions].ReturnValue.ArrayElement", //
-        "@google-cloud/spanner.Session;@google-cloud/spanner.SessionStatic;Instance", //
-        "@google-cloud/spanner.Session;@google-cloud/spanner.Snapshot;Member[session]", //
-        "@google-cloud/spanner.Session;@google-cloud/spanner/batch-transaction.TransactionIdentifier;Member[session]", //
-        "@google-cloud/spanner.Session;@google-cloud/spanner/database.BatchCreateSessionsCallback;TypeVar[@google-cloud/spanner/common.ResourceCallback.0].ArrayElement", //
-        "@google-cloud/spanner.Session;@google-cloud/spanner/database.CreateSessionCallback;TypeVar[@google-cloud/spanner/common.ResourceCallback.0]", //
-        "@google-cloud/spanner.Session;@google-cloud/spanner/database.GetSessionsCallback;TypeVar[@google-cloud/spanner/common.RequestCallback.0]", //
-        "@google-cloud/spanner.Session;@google-cloud/spanner/database.PoolRequestCallback;TypeVar[@google-cloud/spanner/common.RequestCallback.0]", //
-        "@google-cloud/spanner.Session;@google-cloud/spanner/session-pool.GetReadSessionCallback;TypeVar[@google-cloud/spanner/common.NormalCallback.0]", //
-        "@google-cloud/spanner.Session;@google-cloud/spanner/session-pool.GetWriteSessionCallback;Argument[1]", //
-        "@google-cloud/spanner.Session;@google-cloud/spanner/session-pool.SessionPoolInterface;Member[release].Argument[0]", //
-        "@google-cloud/spanner.Session;@google-cloud/spanner/session.Session;", //
-        "@google-cloud/spanner.Session;@google-cloud/spanner/transaction-runner.Runner;Member[session]", //
-        "@google-cloud/spanner.SessionPool;@google-cloud/spanner.SessionPoolStatic;Instance", //
-        "@google-cloud/spanner.SessionPool;@google-cloud/spanner/instance.CreateDatabaseOptions;Member[poolCtor]", //
-        "@google-cloud/spanner.SessionPool;@google-cloud/spanner/session-pool.SessionPool;", //
-        "@google-cloud/spanner.SessionPoolStatic;@google-cloud/spanner/session-pool.SessionPoolStatic;", //
-        "@google-cloud/spanner.SessionPoolStatic;@google-cloud/spanner/session-pool;Member[SessionPool]", //
-        "@google-cloud/spanner.SessionPoolStatic;@google-cloud/spanner;Member[SessionPool]", //
-        "@google-cloud/spanner.SessionStatic;@google-cloud/spanner/session.SessionStatic;", //
-        "@google-cloud/spanner.SessionStatic;@google-cloud/spanner/session;Member[Session]", //
-        "@google-cloud/spanner.SessionStatic;@google-cloud/spanner;Member[Session]", //
-        "@google-cloud/spanner.Snapshot;@google-cloud/spanner.Session;Member[snapshot].ReturnValue", //
-        "@google-cloud/spanner.Snapshot;@google-cloud/spanner.SnapshotStatic;Instance", //
-        "@google-cloud/spanner.Snapshot;@google-cloud/spanner/batch-transaction.BatchTransaction;", //
-        "@google-cloud/spanner.Snapshot;@google-cloud/spanner/database.GetSnapshotCallback;TypeVar[@google-cloud/spanner/common.NormalCallback.0]", //
-        "@google-cloud/spanner.Snapshot;@google-cloud/spanner/transaction.Dml;", //
-        "@google-cloud/spanner.Snapshot;@google-cloud/spanner/transaction.Snapshot;", //
-        "@google-cloud/spanner.SnapshotStatic;@google-cloud/spanner/transaction.SnapshotStatic;", //
-        "@google-cloud/spanner.SnapshotStatic;@google-cloud/spanner/transaction;Member[Snapshot]", //
-        "@google-cloud/spanner.SnapshotStatic;@google-cloud/spanner;Member[Snapshot]", //
-        "@google-cloud/spanner.Spanner;@google-cloud/spanner.InstanceStatic;Argument[0]", //
-        "@google-cloud/spanner.Spanner;@google-cloud/spanner.SpannerStatic;Instance", //
-        "@google-cloud/spanner.SpannerStatic;@google-cloud/spanner;Member[Spanner]", //
-        "@google-cloud/spanner.Table;@google-cloud/spanner.Database;Member[table].ReturnValue", //
-        "@google-cloud/spanner.Table;@google-cloud/spanner.TableStatic;Instance", //
-        "@google-cloud/spanner.Table;@google-cloud/spanner/table.CreateTableCallback;TypeVar[@google-cloud/spanner/common.LongRunningCallback.0]", //
-        "@google-cloud/spanner.Table;@google-cloud/spanner/table.Table;", //
-        "@google-cloud/spanner.TableStatic;@google-cloud/spanner/table.TableStatic;", //
-        "@google-cloud/spanner.TableStatic;@google-cloud/spanner/table;Member[Table]", //
-        "@google-cloud/spanner.TableStatic;@google-cloud/spanner;Member[Table]", //
-        "@google-cloud/spanner.Transaction;@google-cloud/spanner.Session;Member[transaction].ReturnValue", //
-        "@google-cloud/spanner.Transaction;@google-cloud/spanner.Session;Member[txn]", //
-        "@google-cloud/spanner.Transaction;@google-cloud/spanner.TransactionStatic;Instance", //
-        "@google-cloud/spanner.Transaction;@google-cloud/spanner/database.GetTransactionCallback;TypeVar[@google-cloud/spanner/common.NormalCallback.0]", //
-        "@google-cloud/spanner.Transaction;@google-cloud/spanner/session-pool.GetWriteSessionCallback;Argument[2]", //
-        "@google-cloud/spanner.Transaction;@google-cloud/spanner/transaction-runner.AsyncRunTransactionCallback;Argument[0]", //
-        "@google-cloud/spanner.Transaction;@google-cloud/spanner/transaction-runner.RunTransactionCallback;TypeVar[@google-cloud/spanner/common.NormalCallback.0]", //
-        "@google-cloud/spanner.Transaction;@google-cloud/spanner/transaction-runner.Runner;Member[getTransaction].ReturnValue.Awaited", //
-        "@google-cloud/spanner.Transaction;@google-cloud/spanner/transaction-runner.Runner;Member[transaction]", //
-        "@google-cloud/spanner.Transaction;@google-cloud/spanner/transaction.Transaction;", //
-        "@google-cloud/spanner.TransactionStatic;@google-cloud/spanner/transaction.TransactionStatic;", //
-        "@google-cloud/spanner.TransactionStatic;@google-cloud/spanner/transaction;Member[Transaction]", //
-        "@google-cloud/spanner.TransactionStatic;@google-cloud/spanner;Member[Transaction]", //
-        "@google-cloud/spanner.v1.SpannerClient;@google-cloud/spanner.v1.SpannerClientStatic;Instance", //
-        "@google-cloud/spanner.v1.SpannerClient;@google-cloud/spanner/v1/spanner_client.SpannerClient;", //
-        "@google-cloud/spanner.v1.SpannerClientStatic;@google-cloud/spanner/v1/spanner_client.SpannerClientStatic;", //
-        "@google-cloud/spanner.v1.SpannerClientStatic;@google-cloud/spanner/v1/spanner_client;Member[SpannerClient]", //
-        "@google-cloud/spanner.v1.SpannerClientStatic;@google-cloud/spanner;Member[v1].Member[SpannerClient]", //
-        "@google-cloud/spanner.~SpannerObject;@google-cloud/spanner.Database;", //
-        "@google-cloud/spanner.~SpannerObject;@google-cloud/spanner.Snapshot;", //
-        "@google-cloud/spanner.~SpannerObject;@google-cloud/spanner.Transaction;", //
-        "@google-cloud/spanner.~SpannerObject;@google-cloud/spanner.v1.SpannerClient;", //
-        "@google-cloud/spanner.~SqlExecutorDirect;@google-cloud/spanner.BatchTransaction;Member[createQueryPartitions]", //
-        "@google-cloud/spanner.~SqlExecutorDirect;@google-cloud/spanner.Database;Member[run,runPartitionedUpdate,runStream]", //
-        "@google-cloud/spanner.~SqlExecutorDirect;@google-cloud/spanner.PartitionedDml;Member[runUpdate]", //
-        "@google-cloud/spanner.~SqlExecutorDirect;@google-cloud/spanner.Snapshot;Member[run,runStream]", //
-        "@google-cloud/spanner.~SqlExecutorDirect;@google-cloud/spanner.Transaction;Member[run,runStream,runUpdate]", //
-        "@google-cloud/spanner.~SqlExecutorDirect;@google-cloud/spanner.v1.SpannerClient;Member[executeSql,executeStreamingSql,partitionQuery]", //
-        "@google-cloud/spanner/batch-transaction.BatchTransaction;@google-cloud/spanner.Database;Member[batchTransaction].ReturnValue", //
-        "@google-cloud/spanner/batch-transaction.BatchTransaction;@google-cloud/spanner/batch-transaction.BatchTransactionStatic;Instance", //
-        "@google-cloud/spanner/batch-transaction.BatchTransaction;@google-cloud/spanner/database.CreateBatchTransactionCallback;TypeVar[@google-cloud/spanner/common.ResourceCallback.0]", //
-        "@google-cloud/spanner/batch-transaction.BatchTransactionStatic;@google-cloud/spanner/batch-transaction;Member[BatchTransaction]", //
-        "@google-cloud/spanner/batch-transaction.TransactionIdentifier;@google-cloud/spanner.Database;Member[batchTransaction].Argument[0]", //
-        "@google-cloud/spanner/batch-transaction.TransactionIdentifier;@google-cloud/spanner/batch-transaction.BatchTransaction;Member[identifier].ReturnValue", //
-        "@google-cloud/spanner/database.BatchCreateSessionsCallback;@google-cloud/spanner.Database;Member[batchCreateSessions].Argument[1]", //
-        "@google-cloud/spanner/database.CreateBatchTransactionCallback;@google-cloud/spanner.Database;Member[createBatchTransaction].Argument[1]", //
-        "@google-cloud/spanner/database.CreateBatchTransactionCallback;@google-cloud/spanner.Database;Member[createBatchTransaction].WithArity[1].Argument[0]", //
-        "@google-cloud/spanner/database.CreateSessionCallback;@google-cloud/spanner.Database;Member[createSession].Argument[1]", //
-        "@google-cloud/spanner/database.CreateSessionCallback;@google-cloud/spanner.Database;Member[createSession].WithArity[1].Argument[0]", //
-        "@google-cloud/spanner/database.DatabaseCallback;@google-cloud/spanner.Database;Member[get].Argument[1]", //
-        "@google-cloud/spanner/database.DatabaseCallback;@google-cloud/spanner.Database;Member[get].WithArity[1].Argument[0]", //
-        "@google-cloud/spanner/database.GetSessionsCallback;@google-cloud/spanner.Database;Member[getSessions].Argument[1]", //
-        "@google-cloud/spanner/database.GetSessionsCallback;@google-cloud/spanner.Database;Member[getSessions].WithArity[1].Argument[0]", //
-        "@google-cloud/spanner/database.GetSnapshotCallback;@google-cloud/spanner.Database;Member[getSnapshot].Argument[1]", //
-        "@google-cloud/spanner/database.GetSnapshotCallback;@google-cloud/spanner.Database;Member[getSnapshot].WithArity[1].Argument[0]", //
-        "@google-cloud/spanner/database.GetTransactionCallback;@google-cloud/spanner.Database;Member[getTransaction].Argument[0]", //
-        "@google-cloud/spanner/database.PoolRequestCallback;@google-cloud/spanner.Database;Member[makePooledRequest_].Argument[1]", //
-        "@google-cloud/spanner/database.RestoreDatabaseCallback;@google-cloud/spanner.Database;Member[restore].Argument[1,2]", //
-        "@google-cloud/spanner/database.SessionPoolConstructor;@google-cloud/spanner.DatabaseStatic;Argument[2]", //
-        "@google-cloud/spanner/database.SessionPoolConstructor;@google-cloud/spanner.Instance;Member[database].Argument[1]", //
-        "@google-cloud/spanner/instance.CreateDatabaseCallback;@google-cloud/spanner.Instance;Member[createDatabase].Argument[2]", //
-        "@google-cloud/spanner/instance.CreateDatabaseCallback;@google-cloud/spanner.Instance;Member[createDatabase].WithArity[2].Argument[1]", //
-        "@google-cloud/spanner/instance.CreateDatabaseOptions;@google-cloud/spanner.Instance;Member[createDatabase].WithArity[1,2,3].Argument[1]", //
-        "@google-cloud/spanner/instance.CreateInstanceCallback;@google-cloud/spanner.Spanner;Member[createInstance].Argument[2]", //
-        "@google-cloud/spanner/instance.GetDatabasesCallback;@google-cloud/spanner.Instance;Member[getDatabases].Argument[1]", //
-        "@google-cloud/spanner/instance.GetDatabasesCallback;@google-cloud/spanner.Instance;Member[getDatabases].WithArity[1].Argument[0]", //
-        "@google-cloud/spanner/instance.GetInstanceCallback;@google-cloud/spanner.Instance;Member[get].Argument[1]", //
-        "@google-cloud/spanner/instance.GetInstanceCallback;@google-cloud/spanner.Instance;Member[get].WithArity[1].Argument[0]", //
-        "@google-cloud/spanner/session-pool.GetReadSessionCallback;@google-cloud/spanner.SessionPool;Member[getReadSession].Argument[0]", //
-        "@google-cloud/spanner/session-pool.GetReadSessionCallback;@google-cloud/spanner/session-pool.SessionPoolInterface;Member[getReadSession].Argument[0]", //
-        "@google-cloud/spanner/session-pool.GetWriteSessionCallback;@google-cloud/spanner.SessionPool;Member[getWriteSession].Argument[0]", //
-        "@google-cloud/spanner/session-pool.GetWriteSessionCallback;@google-cloud/spanner/session-pool.SessionPoolInterface;Member[getWriteSession].Argument[0]", //
-        "@google-cloud/spanner/session-pool.SessionPoolInterface;@google-cloud/spanner.Database;Member[pool_]", //
-        "@google-cloud/spanner/session-pool.SessionPoolInterface;@google-cloud/spanner.SessionPool;", //
-        "@google-cloud/spanner/session-pool.SessionPoolInterface;@google-cloud/spanner/database.SessionPoolConstructor;Instance", //
-        "@google-cloud/spanner/table.CreateTableCallback;@google-cloud/spanner.Database;Member[createTable].Argument[2]", //
-        "@google-cloud/spanner/table.CreateTableCallback;@google-cloud/spanner.Database;Member[createTable].WithArity[2].Argument[1]", //
-        "@google-cloud/spanner/table.CreateTableCallback;@google-cloud/spanner.Table;Member[create].Argument[2]", //
-        "@google-cloud/spanner/table.CreateTableCallback;@google-cloud/spanner.Table;Member[create].WithArity[2].Argument[1]", //
-        "@google-cloud/spanner/transaction-runner.AsyncRunTransactionCallback;@google-cloud/spanner.Database;Member[runTransactionAsync].Argument[1]", //
-        "@google-cloud/spanner/transaction-runner.AsyncRunTransactionCallback;@google-cloud/spanner.Database;Member[runTransactionAsync].WithArity[1].Argument[0]", //
-        "@google-cloud/spanner/transaction-runner.AsyncRunTransactionCallback;@google-cloud/spanner/transaction-runner.AsyncTransactionRunnerStatic;Argument[2]", //
-        "@google-cloud/spanner/transaction-runner.AsyncTransactionRunner;@google-cloud/spanner/transaction-runner.AsyncTransactionRunnerStatic;Instance", //
-        "@google-cloud/spanner/transaction-runner.AsyncTransactionRunnerStatic;@google-cloud/spanner/transaction-runner;Member[AsyncTransactionRunner]", //
-        "@google-cloud/spanner/transaction-runner.RunTransactionCallback;@google-cloud/spanner.Database;Member[runTransaction].Argument[1]", //
-        "@google-cloud/spanner/transaction-runner.RunTransactionCallback;@google-cloud/spanner.Database;Member[runTransaction].WithArity[1].Argument[0]", //
-        "@google-cloud/spanner/transaction-runner.RunTransactionCallback;@google-cloud/spanner/transaction-runner.TransactionRunnerStatic;Argument[2]", //
-        "@google-cloud/spanner/transaction-runner.Runner;@google-cloud/spanner/transaction-runner.AsyncTransactionRunner;", //
-        "@google-cloud/spanner/transaction-runner.Runner;@google-cloud/spanner/transaction-runner.RunnerStatic;Instance", //
-        "@google-cloud/spanner/transaction-runner.Runner;@google-cloud/spanner/transaction-runner.TransactionRunner;", //
-        "@google-cloud/spanner/transaction-runner.RunnerStatic;@google-cloud/spanner/transaction-runner;Member[Runner]", //
-        "@google-cloud/spanner/transaction-runner.TransactionRunner;@google-cloud/spanner/transaction-runner.TransactionRunnerStatic;Instance", //
-        "@google-cloud/spanner/transaction-runner.TransactionRunnerStatic;@google-cloud/spanner/transaction-runner;Member[TransactionRunner]", //
-        "@google-cloud/spanner/transaction.Dml;@google-cloud/spanner.PartitionedDml;", //
-        "@google-cloud/spanner/transaction.Dml;@google-cloud/spanner.Transaction;", //
-        "@google-cloud/spanner/transaction.Dml;@google-cloud/spanner/transaction.DmlStatic;Instance", //
-        "@google-cloud/spanner/transaction.DmlStatic;@google-cloud/spanner/transaction;Member[Dml]", //
-      ]
-  }
-}
-
-private class TypeVariables extends ModelInput::TypeVariableModelCsv {
-  override predicate row(string row) {
-    row =
-      [
-        "@google-cloud/spanner/common.LongRunningCallback.0;Argument[1]", //
-        "@google-cloud/spanner/common.NormalCallback.0;Argument[1]", //
-        "@google-cloud/spanner/common.PagedCallback.0;Argument[1].ArrayElement", //
-        "@google-cloud/spanner/common.RequestCallback.0;TypeVar[@google-cloud/spanner/common.NormalCallback.0,@google-cloud/spanner/common.PagedCallback.0]", //
-        "@google-cloud/spanner/common.ResourceCallback.0;Argument[1]", //
-      ]
-  }
-}
diff --git a/javascript/ql/lib/semmle/javascript/frameworks/sqlite3/Model.qll b/javascript/ql/lib/semmle/javascript/frameworks/sqlite3/Model.qll
deleted file mode 100644
index 86bc0efd72b..00000000000
--- a/javascript/ql/lib/semmle/javascript/frameworks/sqlite3/Model.qll
+++ /dev/null
@@ -1,37 +0,0 @@
-/** Generated model file */
-
-private import javascript
-
-private class Types extends ModelInput::TypeModelCsv {
-  override predicate row(string row) {
-    row =
-      [
-        "sqlite3.Database;sqlite3.Database;Member[addListener,all,each,exec,get,on,once,prependListener,prependOnceListener,run].ReturnValue", //
-        "sqlite3.Database;sqlite3.DatabaseStatic;Instance", //
-        "sqlite3.Database;sqlite3.Statement;Member[finalize].ReturnValue", //
-        "sqlite3.Database;sqlite3;Member[cached].Member[Database].ReturnValue", //
-        "sqlite3.DatabaseStatic;sqlite3.sqlite3;Member[Database]", //
-        "sqlite3.DatabaseStatic;sqlite3;Member[Database]", //
-        "sqlite3.RunResult;sqlite3.sqlite3;Member[RunResult]", //
-        "sqlite3.Statement;sqlite3.Database;Member[prepare].ReturnValue", //
-        "sqlite3.Statement;sqlite3.RunResult;", //
-        "sqlite3.Statement;sqlite3.Statement;Member[all,bind,each,get,reset,run].ReturnValue", //
-        "sqlite3.Statement;sqlite3.StatementStatic;Instance", //
-        "sqlite3.StatementStatic;sqlite3.sqlite3;Member[Statement]", //
-        "sqlite3.StatementStatic;sqlite3;Member[Statement]", //
-        "sqlite3.sqlite3;sqlite3.sqlite3;Member[verbose].ReturnValue", //
-        "sqlite3.sqlite3;sqlite3;Member[verbose].ReturnValue", //
-      ]
-  }
-}
-
-private class Summaries extends ModelInput::SummaryModelCsv {
-  override predicate row(string row) {
-    row =
-      [
-        "sqlite3.Database;;;Member[addListener,all,each,exec,get,on,once,prependListener,prependOnceListener,run].ReturnValue;type", //
-        "sqlite3.Statement;;;Member[all,bind,each,get,reset,run].ReturnValue;type", //
-        "sqlite3.sqlite3;;;Member[verbose].ReturnValue;type", //
-      ]
-  }
-}

From f17f19c821dd9d38b003773c15173460592669e5 Mon Sep 17 00:00:00 2001
From: Anders Schack-Mulligen <aschackmull@github.com>
Date: Wed, 7 Dec 2022 11:41:32 +0100
Subject: [PATCH 1113/1420] Java: Switch to qualified imports.

---
 .../code/java/dispatch/DispatchFlow.qll       | 45 ++++++++++---------
 1 file changed, 25 insertions(+), 20 deletions(-)

diff --git a/java/ql/lib/semmle/code/java/dispatch/DispatchFlow.qll b/java/ql/lib/semmle/code/java/dispatch/DispatchFlow.qll
index 2087f076fa9..0346ac3f485 100644
--- a/java/ql/lib/semmle/code/java/dispatch/DispatchFlow.qll
+++ b/java/ql/lib/semmle/code/java/dispatch/DispatchFlow.qll
@@ -9,8 +9,8 @@
 import java
 private import VirtualDispatch
 private import semmle.code.java.dataflow.internal.BaseSSA
-private import semmle.code.java.dataflow.internal.DataFlowUtil
-private import semmle.code.java.dataflow.internal.DataFlowPrivate
+private import semmle.code.java.dataflow.internal.DataFlowUtil as DataFlow
+private import semmle.code.java.dataflow.internal.DataFlowPrivate as DataFlowPrivate
 private import semmle.code.java.dataflow.InstanceAccess
 private import semmle.code.java.Collections
 private import semmle.code.java.Maps
@@ -122,7 +122,7 @@ private predicate relevant(RefType t) {
 }
 
 /** A node with a type that is relevant for dispatch flow. */
-private class RelevantNode extends Node {
+private class RelevantNode extends DataFlow::Node {
   RelevantNode() { relevant(this.getType()) }
 }
 
@@ -131,8 +131,8 @@ private class RelevantNode extends Node {
  * The instance parameter is considered to have index `-1`.
  */
 pragma[nomagic]
-private predicate viableParamCand(Call call, int i, ParameterNode p) {
-  exists(DataFlowCallable callable |
+private predicate viableParamCand(Call call, int i, DataFlow::ParameterNode p) {
+  exists(DataFlowPrivate::DataFlowCallable callable |
     callable.asCallable() = dispatchCand(call) and
     p.isParameterOf(callable, i) and
     p instanceof RelevantNode
@@ -142,8 +142,8 @@ private predicate viableParamCand(Call call, int i, ParameterNode p) {
 /**
  * Holds if `arg` is a possible argument to `p` taking virtual dispatch into account.
  */
-private predicate viableArgParamCand(ArgumentNode arg, ParameterNode p) {
-  exists(int i, DataFlowCall call |
+private predicate viableArgParamCand(DataFlowPrivate::ArgumentNode arg, DataFlow::ParameterNode p) {
+  exists(int i, DataFlowPrivate::DataFlowCall call |
     viableParamCand(call.asCall(), i, p) and
     arg.argumentOf(call, i)
   )
@@ -182,17 +182,20 @@ private predicate flowStep(RelevantNode n1, RelevantNode n2) {
     v.getAUse() = n2.asExpr()
   )
   or
-  exists(Callable c | n1.(InstanceParameterNode).getCallable() = c |
+  exists(Callable c | n1.(DataFlow::InstanceParameterNode).getCallable() = c |
     exists(InstanceAccess ia |
       ia = n2.asExpr() and ia.getEnclosingCallable() = c and ia.isOwnInstanceAccess()
     )
     or
-    n2.(ImplicitInstanceAccess).getInstanceAccess().(OwnInstanceAccess).getEnclosingCallable() = c
+    n2.(DataFlow::ImplicitInstanceAccess)
+        .getInstanceAccess()
+        .(OwnInstanceAccess)
+        .getEnclosingCallable() = c
   )
   or
-  n2.(FieldValueNode).getField().getAnAssignedValue() = n1.asExpr()
+  n2.(DataFlow::FieldValueNode).getField().getAnAssignedValue() = n1.asExpr()
   or
-  n2.asExpr().(FieldRead).getField() = n1.(FieldValueNode).getField()
+  n2.asExpr().(FieldRead).getField() = n1.(DataFlow::FieldValueNode).getField()
   or
   exists(EnumType enum, Method getValue |
     enum.getAnEnumConstant().getAnAssignedValue() = n1.asExpr() and
@@ -214,7 +217,9 @@ private predicate flowStep(RelevantNode n1, RelevantNode n2) {
   n2.asExpr().(ArrayAccess).getArray() = n1.asExpr()
   or
   exists(Argument arg |
-    n1.asExpr() = arg and arg.isVararg() and n2.(ImplicitVarargsArray).getCall() = arg.getCall()
+    n1.asExpr() = arg and
+    arg.isVararg() and
+    n2.(DataFlow::ImplicitVarargsArray).getCall() = arg.getCall()
   )
   or
   exists(AssignExpr a, Variable v |
@@ -255,37 +260,37 @@ private predicate flowStep(RelevantNode n1, RelevantNode n2) {
 /**
  * Holds if `n` is forward-reachable from a relevant `ClassInstanceExpr`.
  */
-private predicate nodeCandFwd(Node n) {
+private predicate nodeCandFwd(DataFlow::Node n) {
   dispatchOrigin(n.asExpr(), _, _)
   or
-  exists(Node mid | nodeCandFwd(mid) | flowStep(mid, n) or callFlowStepCand(mid, n))
+  exists(DataFlow::Node mid | nodeCandFwd(mid) | flowStep(mid, n) or callFlowStepCand(mid, n))
 }
 
 /**
  * Holds if `n` may occur on a dispatch flow path. That is, a path from a
  * relevant `ClassInstanceExpr` to a qualifier of a relevant `MethodAccess`.
  */
-private predicate nodeCand(Node n) {
+private predicate nodeCand(DataFlow::Node n) {
   exists(MethodAccess ma |
     dispatchOrigin(_, ma, _) and
-    n = getInstanceArgument(ma) and
+    n = DataFlow::getInstanceArgument(ma) and
     nodeCandFwd(n)
   )
   or
-  exists(Node mid | nodeCand(mid) | flowStep(n, mid) or callFlowStepCand(n, mid)) and
+  exists(DataFlow::Node mid | nodeCand(mid) | flowStep(n, mid) or callFlowStepCand(n, mid)) and
   nodeCandFwd(n)
 }
 
 /**
  * Holds if `n1 -> n2` is a relevant dispatch flow step.
  */
-private predicate step(Node n1, Node n2) {
+private predicate step(DataFlow::Node n1, DataFlow::Node n2) {
   (flowStep(n1, n2) or callFlowStepCand(n1, n2)) and
   nodeCand(n1) and
   nodeCand(n2)
 }
 
-private predicate stepPlus(Node n1, Node n2) = fastTC(step/2)(n1, n2)
+private predicate stepPlus(DataFlow::Node n1, DataFlow::Node n2) = fastTC(step/2)(n1, n2)
 
 /**
  * Holds if there is flow from a `ClassInstanceExpr` instantiating a type that
@@ -296,7 +301,7 @@ pragma[inline]
 private predicate hasDispatchFlow(MethodAccess ma, Method m) {
   exists(ClassInstanceExpr cie |
     dispatchOrigin(cie, ma, m) and
-    stepPlus(exprNode(cie), getInstanceArgument(ma))
+    stepPlus(DataFlow::exprNode(cie), DataFlow::getInstanceArgument(ma))
   )
 }
 

From ecbb96ffc14486f96fad9acf442df2a1b82e44b9 Mon Sep 17 00:00:00 2001
From: Chris Smowton <smowton@github.com>
Date: Wed, 7 Dec 2022 11:50:21 +0000
Subject: [PATCH 1114/1420] Remove no-longer-needed diagnostic expectations

---
 .../test/kotlin/library-tests/jvmoverloads_flow/test.kt  | 9 ---------
 1 file changed, 9 deletions(-)

diff --git a/java/ql/test/kotlin/library-tests/jvmoverloads_flow/test.kt b/java/ql/test/kotlin/library-tests/jvmoverloads_flow/test.kt
index fcd8e669425..ff5879ebb93 100644
--- a/java/ql/test/kotlin/library-tests/jvmoverloads_flow/test.kt
+++ b/java/ql/test/kotlin/library-tests/jvmoverloads_flow/test.kt
@@ -85,12 +85,3 @@ public class TestDefaultParameterReference {
   }
 
 }
-
-// Diagnostic Matches: Completion failure for type: org.jetbrains.annotations.NotNull
-// Diagnostic Matches: Unknown location for org.jetbrains.annotations.NotNull
-// Diagnostic Matches: Completion failure for type: kotlin.jvm.JvmOverloads
-// Diagnostic Matches: Completion failure for type: kotlin.jvm.JvmStatic
-// Diagnostic Matches: Completion failure for type: org.jetbrains.annotations.Nullable
-// Diagnostic Matches: Unknown location for kotlin.jvm.JvmOverloads
-// Diagnostic Matches: Unknown location for kotlin.jvm.JvmStatic
-// Diagnostic Matches: Unknown location for org.jetbrains.annotations.Nullable

From c526020fd413af89d26f09d6361cfb47f2478c0f Mon Sep 17 00:00:00 2001
From: Chris Smowton <smowton@github.com>
Date: Wed, 7 Dec 2022 11:51:48 +0000
Subject: [PATCH 1115/1420] Note TODO re: re-enabling suspend function Java
 interop testing

---
 java/ql/test/kotlin/library-tests/java_and_kotlin/Java.java | 1 +
 1 file changed, 1 insertion(+)

diff --git a/java/ql/test/kotlin/library-tests/java_and_kotlin/Java.java b/java/ql/test/kotlin/library-tests/java_and_kotlin/Java.java
index d1ae03db465..8e9d4895605 100644
--- a/java/ql/test/kotlin/library-tests/java_and_kotlin/Java.java
+++ b/java/ql/test/kotlin/library-tests/java_and_kotlin/Java.java
@@ -13,6 +13,7 @@ public class Java {
 
 /*
 // Java interop disabled as it currently doesn't work (no symbol fn1(int, Completion<...>) gets created)
+// TODO: re-enable this test once a correct function signature is extracted
 		@Override
 		public Object fn1(int x, Continuation<? super String> $completion) {
 			return super.fn1(x, $completion);

From 01d8ad98f6cf74e6c9f9f503653c5584947823f7 Mon Sep 17 00:00:00 2001
From: Jeroen Ketema <jketema@github.com>
Date: Wed, 7 Dec 2022 13:37:12 +0100
Subject: [PATCH 1116/1420] C++: Model `secure_getenv` and `_wgetenv` as local
 flow sources

---
 .../semmle/code/cpp/models/implementations/Getenv.qll  | 10 +++++++---
 1 file changed, 7 insertions(+), 3 deletions(-)

diff --git a/cpp/ql/lib/semmle/code/cpp/models/implementations/Getenv.qll b/cpp/ql/lib/semmle/code/cpp/models/implementations/Getenv.qll
index 87e191241d2..256b1a86ed5 100644
--- a/cpp/ql/lib/semmle/code/cpp/models/implementations/Getenv.qll
+++ b/cpp/ql/lib/semmle/code/cpp/models/implementations/Getenv.qll
@@ -1,15 +1,19 @@
 /**
- * Provides an implementation class modeling the POSIX function `getenv`.
+ * Provides an implementation class modeling the POSIX function `getenv` and
+ * various similar functions.
  */
 
 import cpp
 import semmle.code.cpp.models.interfaces.FlowSource
 
 /**
- * The POSIX function `getenv`.
+ * The POSIX function `getenv`, the GNU function `secure_getenv`, and the
+ * Windows function `_wgetenv`.
  */
 class Getenv extends LocalFlowSourceFunction {
-  Getenv() { this.hasGlobalOrStdOrBslName("getenv") }
+  Getenv() {
+    this.hasGlobalOrStdOrBslName("getenv") or this.hasGlobalName(["secure_getenv", "_wgetenv"])
+  }
 
   override predicate hasLocalFlowSource(FunctionOutput output, string description) {
     (

From 2d9975d73ff89c70f16c8a9bad834809695e09e4 Mon Sep 17 00:00:00 2001
From: Michael Nebel <michaelnebel@github.com>
Date: Wed, 7 Dec 2022 13:15:43 +0100
Subject: [PATCH 1117/1420] C#: nint/System.IntPtr and nuint/System.UIntPtr are
 indistinguishable by the extractor.

---
 csharp/ql/test/library-tests/csharp11/NativeInt.cs   | 11 +++++++++++
 .../test/library-tests/csharp11/nativeInt.expected   |  4 ++++
 csharp/ql/test/library-tests/csharp11/nativeInt.ql   | 12 ++++++++++++
 3 files changed, 27 insertions(+)
 create mode 100644 csharp/ql/test/library-tests/csharp11/NativeInt.cs
 create mode 100644 csharp/ql/test/library-tests/csharp11/nativeInt.expected
 create mode 100644 csharp/ql/test/library-tests/csharp11/nativeInt.ql

diff --git a/csharp/ql/test/library-tests/csharp11/NativeInt.cs b/csharp/ql/test/library-tests/csharp11/NativeInt.cs
new file mode 100644
index 00000000000..5bee8213bdf
--- /dev/null
+++ b/csharp/ql/test/library-tests/csharp11/NativeInt.cs
@@ -0,0 +1,11 @@
+public class NativeInt
+{
+    public void M1()
+    {
+        nint x1 = 0;
+        System.IntPtr x2 = (System.IntPtr)0;
+
+        nuint y1 = 0;
+        System.UIntPtr y2 = (System.UIntPtr)0;
+    }
+}
\ No newline at end of file
diff --git a/csharp/ql/test/library-tests/csharp11/nativeInt.expected b/csharp/ql/test/library-tests/csharp11/nativeInt.expected
new file mode 100644
index 00000000000..d376204b945
--- /dev/null
+++ b/csharp/ql/test/library-tests/csharp11/nativeInt.expected
@@ -0,0 +1,4 @@
+| NativeInt.cs:5:14:5:15 | x1 | NativeInt.cs:6:23:6:24 | x2 | System.IntPtr |
+| NativeInt.cs:6:23:6:24 | x2 | NativeInt.cs:5:14:5:15 | x1 | System.IntPtr |
+| NativeInt.cs:8:15:8:16 | y1 | NativeInt.cs:9:24:9:25 | y2 | System.UIntPtr |
+| NativeInt.cs:9:24:9:25 | y2 | NativeInt.cs:8:15:8:16 | y1 | System.UIntPtr |
diff --git a/csharp/ql/test/library-tests/csharp11/nativeInt.ql b/csharp/ql/test/library-tests/csharp11/nativeInt.ql
new file mode 100644
index 00000000000..c865833a452
--- /dev/null
+++ b/csharp/ql/test/library-tests/csharp11/nativeInt.ql
@@ -0,0 +1,12 @@
+import csharp
+import semmle.code.csharp.commons.QualifiedName
+
+from LocalVariable v1, LocalVariable v2, Type t, string qualifier, string name
+where
+  v1.getFile().getStem() = "NativeInt" and
+  v2.getFile().getStem() = "NativeInt" and
+  t = v1.getType() and
+  t = v2.getType() and
+  t.hasQualifiedName(qualifier, name) and
+  v1 != v2
+select v1, v2, getQualifiedName(qualifier, name)

From d39f37540eb5c9d4d1ed993fd5f0556836d1a29d Mon Sep 17 00:00:00 2001
From: Paolo Tranquilli <redsun82@github.com>
Date: Wed, 7 Dec 2022 13:18:01 +0100
Subject: [PATCH 1118/1420] Swift: add `has` and `getNumberOf` properties to
 generated tests

---
 swift/codegen/generators/qlgen.py             |  9 ++-
 swift/codegen/lib/ql.py                       |  3 +-
 .../codegen/templates/ql_test_class.mustache  | 10 +--
 swift/codegen/test/test_qlgen.py              | 75 ++++++++++++-------
 swift/ql/.generated.list                      | 56 +++++++-------
 .../decl/AccessorDecl/AccessorDecl.ql         | 20 +++--
 .../AssociatedTypeDecl/AssociatedTypeDecl.ql  | 10 ++-
 .../generated/decl/ClassDecl/ClassDecl.ql     | 12 ++-
 .../decl/ConcreteFuncDecl/ConcreteFuncDecl.ql | 12 ++-
 .../decl/ConcreteVarDecl/ConcreteVarDecl.ql   | 46 +++++++++++-
 .../generated/decl/EnumDecl/EnumDecl.ql       | 12 ++-
 .../decl/IfConfigDecl/IfConfigDecl.ql         |  7 +-
 .../generated/decl/ImportDecl/ImportDecl.ql   | 11 ++-
 .../generated/decl/ModuleDecl/ModuleDecl.ql   | 14 +++-
 .../decl/OpaqueTypeDecl/OpaqueTypeDecl.ql     | 16 ++--
 .../generated/decl/ParamDecl/ParamDecl.ql     | 58 ++++++++++++--
 .../AppliedPropertyWrapperExpr.ql             |  5 +-
 .../ConstructorRefCallExpr.ql                 |  8 +-
 .../DotSyntaxCallExpr/DotSyntaxCallExpr.ql    |  7 +-
 .../DynamicLookupExpr/DynamicLookupExpr.ql    |  8 +-
 .../expr/EnumIsCaseExpr/EnumIsCaseExpr.ql     |  5 +-
 .../expr/IdentityExpr/IdentityExpr.ql         |  5 +-
 .../ImplicitConversionExpr.ql                 |  5 +-
 .../expr/MethodRefExpr/MethodRefExpr.ql       |  8 +-
 .../ObjectLiteralExpr/ObjectLiteralExpr.ql    |  8 +-
 .../expr/PostfixUnaryExpr/PostfixUnaryExpr.ql |  9 ++-
 .../PropertyWrapperValuePlaceholderExpr.ql    |  9 ++-
 .../BuiltinIntegerType/BuiltinIntegerType.ql  |  7 +-
 .../OpaqueTypeArchetypeType.ql                |  7 +-
 .../OpenedArchetypeType.ql                    | 10 ++-
 .../ParameterizedProtocolType.ql              | 10 ++-
 .../PrimaryArchetypeType.ql                   | 10 ++-
 .../ProtocolCompositionType.ql                |  8 +-
 33 files changed, 351 insertions(+), 149 deletions(-)

diff --git a/swift/codegen/generators/qlgen.py b/swift/codegen/generators/qlgen.py
index b6b50498028..de38984caa7 100755
--- a/swift/codegen/generators/qlgen.py
+++ b/swift/codegen/generators/qlgen.py
@@ -248,7 +248,12 @@ def _get_all_properties_to_be_tested(cls: schema.Class, lookup: typing.Dict[str,
         if not ("qltest_skip" in c.pragmas or "qltest_skip" in p.pragmas):
             # TODO here operations are duplicated, but should be better if we split ql and qltest generation
             p = get_ql_property(c, p)
-            yield ql.PropertyForTest(p.getter, p.type, p.is_single, p.is_predicate, p.is_repeated)
+            yield ql.PropertyForTest(p.getter, is_total=p.is_single or p.is_predicate,
+                                     type=p.type if not p.is_predicate else None, is_repeated=p.is_repeated)
+            if p.is_repeated and not p.is_optional:
+                yield ql.PropertyForTest(f"getNumberOf{p.plural}", type="int")
+            elif p.is_optional and not p.is_repeated:
+                yield ql.PropertyForTest(f"has{p.singular}")
 
 
 def _partition_iter(x, pred):
@@ -337,7 +342,7 @@ def generate(opts, renderer):
                                 test_dir / missing_test_source_filename)
                 continue
             total_props, partial_props = _partition(_get_all_properties_to_be_tested(c, data.classes),
-                                                    lambda p: p.is_single or p.is_predicate)
+                                                    lambda p: p.is_total)
             renderer.render(ql.ClassTester(class_name=c.name,
                                            properties=total_props,
                                            # in case of collapsed hierarchies we want to see the actual QL class in results
diff --git a/swift/codegen/lib/ql.py b/swift/codegen/lib/ql.py
index 63c460b901c..db293c8706f 100644
--- a/swift/codegen/lib/ql.py
+++ b/swift/codegen/lib/ql.py
@@ -165,9 +165,8 @@ class GetParentImplementation:
 @dataclass
 class PropertyForTest:
     getter: str
+    is_total: bool = True
     type: Optional[str] = None
-    is_single: bool = False
-    is_predicate: bool = False
     is_repeated: bool = False
 
 
diff --git a/swift/codegen/templates/ql_test_class.mustache b/swift/codegen/templates/ql_test_class.mustache
index 03d8b140525..adaf80de867 100644
--- a/swift/codegen/templates/ql_test_class.mustache
+++ b/swift/codegen/templates/ql_test_class.mustache
@@ -3,14 +3,14 @@
 import codeql.swift.elements
 import TestUtils
 
-from {{class_name}} x{{#properties}}, {{#is_single}}{{type}}{{/is_single}}{{#is_predicate}}string{{/is_predicate}} {{getter}}{{/properties}}
+from {{class_name}} x{{#properties}}, {{#type}}{{.}}{{/type}}{{^type}}string{{/type}} {{getter}}{{/properties}}
 where toBeTested(x) and not x.isUnknown()
 {{#properties}}
-{{#is_single}}
+{{#type}}
 and {{getter}} = x.{{getter}}()
-{{/is_single}}
-{{#is_predicate}}
+{{/type}}
+{{^type}}
 and if x.{{getter}}() then {{getter}} = "yes" else {{getter}} = "no"
-{{/is_predicate}}
+{{/type}}
 {{/properties}}
 select x{{#show_ql_class}}, x.getPrimaryQlClasses(){{/show_ql_class}}{{#properties}}, "{{getter}}:", {{getter}}{{/properties}}
diff --git a/swift/codegen/test/test_qlgen.py b/swift/codegen/test/test_qlgen.py
index 3b2598ed8fd..67a6cf36468 100644
--- a/swift/codegen/test/test_qlgen.py
+++ b/swift/codegen/test/test_qlgen.py
@@ -222,7 +222,8 @@ def test_children(generate_classes):
                          ql.Class(name="MyObject", final=True,
                                   properties=[
                                       ql.Property(singular="A", type="int", tablename="my_objects",
-                                                  tableparams=["this", "result", "_"], doc="a of this my object"),
+                                                  tableparams=["this", "result", "_"],
+                                                  doc="a of this my object"),
                                       ql.Property(singular="Child1", type="int", tablename="my_objects",
                                                   tableparams=["this", "_", "result"], prev_child="",
                                                   doc="child 1 of this my object"),
@@ -233,9 +234,11 @@ def test_children(generate_classes):
                                       ql.Property(singular="Child", plural="Children", type="int",
                                                   tablename="my_object_children",
                                                   tableparams=["this", "index", "result"], prev_child="Child1",
-                                                  doc="child of this my object", doc_plural="children of this my object"),
+                                                  doc="child of this my object",
+                                                  doc_plural="children of this my object"),
                                       ql.Property(singular="C", type="int", tablename="my_object_cs",
-                                                  tableparams=["this", "result"], is_optional=True, doc="c of this my object"),
+                                                  tableparams=["this", "result"], is_optional=True,
+                                                  doc="c of this my object"),
                                       ql.Property(singular="Child3", type="int", tablename="my_object_child_3s",
                                                   tableparams=["this", "result"], is_optional=True,
                                                   prev_child="Child", doc="child 3 of this my object"),
@@ -246,7 +249,8 @@ def test_children(generate_classes):
                                       ql.Property(singular="Child4", plural="Child4s", type="int",
                                                   tablename="my_object_child_4s",
                                                   tableparams=["this", "index", "result"], is_optional=True,
-                                                  prev_child="Child3", doc="child 4 of this my object", doc_plural="child 4s of this my object"),
+                                                  prev_child="Child3", doc="child 4 of this my object",
+                                                  doc_plural="child 4s of this my object"),
                                   ])),
     }
 
@@ -263,11 +267,14 @@ def test_single_properties(generate_classes):
                          ql.Class(name="MyObject", final=True,
                                   properties=[
                                       ql.Property(singular="One", type="x", tablename="my_objects",
-                                                  tableparams=["this", "result", "_", "_"], doc="one of this my object"),
+                                                  tableparams=["this", "result", "_", "_"],
+                                                  doc="one of this my object"),
                                       ql.Property(singular="Two", type="y", tablename="my_objects",
-                                                  tableparams=["this", "_", "result", "_"], doc="two of this my object"),
+                                                  tableparams=["this", "_", "result", "_"],
+                                                  doc="two of this my object"),
                                       ql.Property(singular="Three", type="z", tablename="my_objects",
-                                                  tableparams=["this", "_", "_", "result"], doc="three of this my object"),
+                                                  tableparams=["this", "_", "_", "result"],
+                                                  doc="three of this my object"),
                                   ])),
     }
 
@@ -322,7 +329,8 @@ def test_repeated_optional_property(generate_classes, is_child, prev_child):
                          ql.Class(name="MyObject", final=True, properties=[
                              ql.Property(singular="Foo", plural="Foos", type="bar", tablename="my_object_foos",
                                          tableparams=["this", "index", "result"], is_optional=True,
-                                         prev_child=prev_child, doc="foo of this my object", doc_plural="foos of this my object"),
+                                         prev_child=prev_child, doc="foo of this my object",
+                                         doc_plural="foos of this my object"),
                          ])),
     }
 
@@ -498,10 +506,8 @@ def test_test_total_properties(opts, generate_tests):
         ]),
     ]) == {
         "B/B.ql": ql.ClassTester(class_name="B", properties=[
-            ql.PropertyForTest(
-                getter="getX", is_single=True, type="string"),
-            ql.PropertyForTest(
-                getter="y", is_predicate=True, type="predicate"),
+            ql.PropertyForTest(getter="getX", type="string"),
+            ql.PropertyForTest(getter="y"),
         ])
     }
 
@@ -509,19 +515,29 @@ def test_test_total_properties(opts, generate_tests):
 def test_test_partial_properties(opts, generate_tests):
     write(opts.ql_test_output / "B" / "test.swift")
     assert generate_tests([
-        schema.Class("A", derived={"B"}, properties=[
+        schema.Class("A", derived={"B", "C"}, properties=[
             schema.OptionalProperty("x", "string"),
         ]),
         schema.Class("B", bases=["A"], properties=[
-            schema.RepeatedProperty("y", "int"),
+            schema.RepeatedProperty("y", "bool"),
+            schema.RepeatedOptionalProperty("z", "int"),
         ]),
     ]) == {
-        "B/B.ql": ql.ClassTester(class_name="B"),
+        "B/B.ql": ql.ClassTester(class_name="B", properties=[
+            ql.PropertyForTest(getter="hasX"),
+            ql.PropertyForTest(getter="getNumberOfYs", type="int"),
+        ]),
         "B/B_getX.ql": ql.PropertyTester(class_name="B",
-                                         property=ql.PropertyForTest(getter="getX", type="string")),
+                                         property=ql.PropertyForTest(getter="getX", is_total=False,
+                                                                            type="string")),
         "B/B_getY.ql": ql.PropertyTester(class_name="B",
-                                         property=ql.PropertyForTest(getter="getY", is_repeated=True,
-                                                                            type="int")),
+                                         property=ql.PropertyForTest(getter="getY", is_total=False,
+                                                                     is_repeated=True,
+                                                                     type="bool")),
+        "B/B_getZ.ql": ql.PropertyTester(class_name="B",
+                                         property=ql.PropertyForTest(getter="getZ", is_total=False,
+                                                                     is_repeated=True,
+                                                                     type="int")),
     }
 
 
@@ -530,19 +546,20 @@ def test_test_properties_deduplicated(opts, generate_tests):
     assert generate_tests([
         schema.Class("Base", derived={"A", "B"}, properties=[
             schema.SingleProperty("x", "string"),
-            schema.RepeatedProperty("y", "int"),
+            schema.RepeatedProperty("y", "bool"),
         ]),
         schema.Class("A", bases=["Base"], derived={"Final"}),
         schema.Class("B", bases=["Base"], derived={"Final"}),
         schema.Class("Final", bases=["A", "B"]),
     ]) == {
         "Final/Final.ql": ql.ClassTester(class_name="Final", properties=[
-            ql.PropertyForTest(
-                getter="getX", is_single=True, type="string"),
+            ql.PropertyForTest(getter="getX", type="string"),
+            ql.PropertyForTest(getter="getNumberOfYs", type="int"),
         ]),
         "Final/Final_getY.ql": ql.PropertyTester(class_name="Final",
-                                                 property=ql.PropertyForTest(getter="getY", is_repeated=True,
-                                                                                    type="int")),
+                                                 property=ql.PropertyForTest(getter="getY", is_total=False,
+                                                                                    is_repeated=True,
+                                                                                    type="bool")),
     }
 
 
@@ -692,7 +709,8 @@ def test_property_doc_abbreviations(generate_classes, abbr, expected):
         "Object.qll": (ql.Stub(name="Object", base_import=gen_import_prefix + "Object"),
                        ql.Class(name="Object", final=True,
                                 properties=[
-                                    ql.Property(singular=f"Foo{abbr.capitalize()}Bar", type="baz", tablename="objects",
+                                    ql.Property(singular=f"Foo{abbr.capitalize()}Bar", type="baz",
+                                                tablename="objects",
                                                 tableparams=["this", "result"], doc=expected_doc),
                                 ])),
     }
@@ -708,7 +726,8 @@ def test_property_doc_abbreviations_ignored_if_within_word(generate_classes, abb
         "Object.qll": (ql.Stub(name="Object", base_import=gen_import_prefix + "Object"),
                        ql.Class(name="Object", final=True,
                                 properties=[
-                                    ql.Property(singular=f"Foo{abbr.capitalize()}acadabraBar", type="baz", tablename="objects",
+                                    ql.Property(singular=f"Foo{abbr.capitalize()}acadabraBar", type="baz",
+                                                tablename="objects",
                                                 tableparams=["this", "result"], doc=expected_doc),
                                 ])),
     }
@@ -726,11 +745,13 @@ def test_repeated_property_doc_override_with_format(generate_classes):
                                       ql.Property(singular="X", plural="Xes", type="int",
                                                   tablename="my_object_xes",
                                                   tableparams=["this", "index", "result"],
-                                                  doc="special child of this", doc_plural="special children of this"),
+                                                  doc="special child of this",
+                                                  doc_plural="special children of this"),
                                       ql.Property(singular="Y", plural="Ys", type="int",
                                                   tablename="my_object_ies", is_optional=True,
                                                   tableparams=["this", "index", "result"],
-                                                  doc="special child of this", doc_plural="special children of this"),
+                                                  doc="special child of this",
+                                                  doc_plural="special children of this"),
                                   ])),
     }
 
diff --git a/swift/ql/.generated.list b/swift/ql/.generated.list
index e5a221bcb09..e372a2ba34f 100644
--- a/swift/ql/.generated.list
+++ b/swift/ql/.generated.list
@@ -655,23 +655,23 @@ ql/lib/codeql/swift/generated/type/WeakStorageType.qll dda4397a49f537ec44117a86d
 ql/test/extractor-tests/generated/Comment/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
 ql/test/extractor-tests/generated/Diagnostics/Diagnostics.ql 6a4a9480cc929381e0337b181e5ac519a7abc6d597ebe24fb6701acf79ced86f 199c5bf8bd38e161d989e0e4db1ea1d3ddcb4d7cf571afd9112ce3ed8d9b8d2a
 ql/test/extractor-tests/generated/File/File.ql ab0968ae31b749da2b66462bd04e4dfb30604dba405a84594b575abfc4fa4c35 bcc0ff648b28c5ecd567e196e700272883756bbcc65296bbb880a979e3162628
-ql/test/extractor-tests/generated/decl/AccessorDecl/AccessorDecl.ql 45a730bb247735161aa2b04f35d4e815c22a64cffd0ff8f7b1a03ab3a50dafb1 edb1031d59cbde8aa4961a985ce3ba2281f20463f805e154728487d76f826ced
+ql/test/extractor-tests/generated/decl/AccessorDecl/AccessorDecl.ql fcf430b5a4631a56f88ff8e05c97f312244d450745d65f9c312f9fd14ccc917f a6423ef93f4aae97dac13f700cbb5c79aeda4762e4524685ad03686468d2925c
 ql/test/extractor-tests/generated/decl/AccessorDecl/AccessorDecl_getBody.ql 1d42eb1a5b832cfaf1949b61a01a6a11448a6d4369a44f2511bb31d1d7fc10a8 b326a6743121353f8a66410d3d9151ca969939abcbbe5c411872ca290da45123
 ql/test/extractor-tests/generated/decl/AccessorDecl/AccessorDecl_getGenericTypeParam.ql 8648679e9403477c7f97b6df450a0fa623dc9aff0777021ee33f9cc96eef2611 59c384c35804bf205c3c63e8b956e6bc89d3ded7952911c40e7bf156acb56bf8
 ql/test/extractor-tests/generated/decl/AccessorDecl/AccessorDecl_getParam.ql 7c61c15d75f681c5f5817bdc1e0c1e2594afdc43a5a8889bd385b6cd007d6509 7f6111069c3f289fb3bd21933893757a0adbf8be8f21bf5f8960b6fb26840219
 ql/test/extractor-tests/generated/decl/AccessorDecl/AccessorDecl_getSelfParam.ql 0d773ccd4c84a5280f03341cccff8363479b668541d269311215db866a1cfd53 743d584a8d5d85aa11e96ca44151f1239c750bf8a429d60269129696411a0294
-ql/test/extractor-tests/generated/decl/AssociatedTypeDecl/AssociatedTypeDecl.ql 392e439539392e58582b366a5816ea0ec57c665910933ea42a9420d1feb06a0a f9c0720fb174e765385b70d512c894215713a658b442cb387a2658d43686b69c
+ql/test/extractor-tests/generated/decl/AssociatedTypeDecl/AssociatedTypeDecl.ql 74cf30be2fa4f825f0167bde4489b09683858f762bb335db04fe1cc474dafec6 0911e8a9130622da23f3b2747830c7c8e1659f0c062594bd34f82e335b08448e
 ql/test/extractor-tests/generated/decl/AssociatedTypeDecl/AssociatedTypeDecl_getBaseType.ql 39d26252c242eec5aaef23951bd76755a4d3cdceff7349b15067fefb2ece14b3 214fdbaa77d32ee6f21bcccf112d46c9d26006552081cc1f90cbb00a527a9d7f
-ql/test/extractor-tests/generated/decl/ClassDecl/ClassDecl.ql 8a717374e7ba42fb907fbcd013116679375998638056f7b81a1f67305a9e60ca fb4776c0231a6430e5e89f51a70a9627a1af5d3ee91331914220295977444002
+ql/test/extractor-tests/generated/decl/ClassDecl/ClassDecl.ql b65b8bb8def2a79501d9b1379980003e22bb778b1163c73bb6b24de1bfdaef7f 137979d7fbb647ade6141f27daacbae834a556af691793731e9b664f7dbd13c7
 ql/test/extractor-tests/generated/decl/ClassDecl/ClassDecl_getBaseType.ql 5f4fddbb3fb3d003f1485dc4c5a56f7d0d26dfc1d691540085654c4c66e70e69 0b5a5b757ca92e664ef136d26ac682aa5a0e071494d9f09d85f66cd13807e81d
 ql/test/extractor-tests/generated/decl/ClassDecl/ClassDecl_getGenericTypeParam.ql ca0b73a4f31eea47def7a1de017de36b5fdaec96ae98edb03ff00611bfcac572 f9badd62887a30113484496532b3ff9b67ff5047eb5a311aa2ec2e4d91321e0e
 ql/test/extractor-tests/generated/decl/ClassDecl/ClassDecl_getMember.ql f73881b14bb4eaf83dacf60b9e46d440227f90566e2dfb8908a55567626ccdda f78a7261f7ccfe01ca55f7279bd5a1a302fc65ba36b13e779426d173c7465b84
-ql/test/extractor-tests/generated/decl/ConcreteFuncDecl/ConcreteFuncDecl.ql 650ab6b91b39fca2192f739a967edaf8190caa863223c50848a7786bfe0ca367 e5131d099e3aef634aa24cad937347a5f99902f6c7be7d398304485eccbfb95f
+ql/test/extractor-tests/generated/decl/ConcreteFuncDecl/ConcreteFuncDecl.ql 27df755f467c5176cf8f26d3b41ebd321834048ce8120a384746c3deeb73cdc3 d4b8363876172e5a152a5126457443dc9fe9ec83c3f0a9bd86eae54473ac8bd9
 ql/test/extractor-tests/generated/decl/ConcreteFuncDecl/ConcreteFuncDecl_getBody.ql 3c742b9c8d8d8c23d1bef03f559e1b91f0d3848084ba5819f118c323dd1920a2 340d4e4a6312ffaf4c47bbc753828c1e478d84a2d399c66220288c081c8357ca
 ql/test/extractor-tests/generated/decl/ConcreteFuncDecl/ConcreteFuncDecl_getGenericTypeParam.ql b5e64bf02a5991a1549794af0aaab9ae654c88b5d52a3e04b7ac525b3a64af5e 034a7d0bf7500afa952a28d184d1d073e71c3dcec3bc26fcefaed70aef9de3ce
 ql/test/extractor-tests/generated/decl/ConcreteFuncDecl/ConcreteFuncDecl_getParam.ql 392bc906a24a432b0dd65a18248cab53874e1ea018b44fdf07d8acb55939c85d cf272febc8355d7171308c0b35f65ae0469106c022093f87ffd25d5951eef4a3
 ql/test/extractor-tests/generated/decl/ConcreteFuncDecl/ConcreteFuncDecl_getSelfParam.ql c8a593149db6785d9bc7017a3fcee305832ab434955b4c36ac2842e214f0acac b70a7c18085961d2c907631d69811071deb391c45c94ef7165bf7ce700dabaf9
-ql/test/extractor-tests/generated/decl/ConcreteVarDecl/ConcreteVarDecl.ql f736e383b4be2b927ba982ed41d863178a1a48b3fe92938ae59eea8dd348f6f6 fa468b5423243617ca5ad3fe9eea474a60ed045f441ed1fa47e03ec4e82e1f2d
+ql/test/extractor-tests/generated/decl/ConcreteVarDecl/ConcreteVarDecl.ql 5b38d0a84f99a7472a222fe612aa8a04f1ce0f7b804fd95eb75bfb83be5314c0 1a78d482860647c40b85e1119b849268f7d38c41b626d63f6cfa90fa933e9c1a
 ql/test/extractor-tests/generated/decl/ConcreteVarDecl/ConcreteVarDecl_getAccessorDecl.ql 7f1890b891402c7974087bd1621ce7ce2893008a2ab0218396c82e99ce2e6c9d 4d483e18ad2211759e3a57f973679844d28505b84fe2b10b2303a561d0ac7ca5
 ql/test/extractor-tests/generated/decl/ConcreteVarDecl/ConcreteVarDecl_getAttachedPropertyWrapperType.ql 0fd114f752aae89ef80bc80e0532aa4849106f6d1af40b1861e4ba191898b69e fdf28e036a1c4dcb0a3aaaa9fb96dcc755ff530ab6f252270c319df9a1d0d7ac
 ql/test/extractor-tests/generated/decl/ConcreteVarDecl/ConcreteVarDecl_getParentInitializer.ql c90aa3ae4249af7d436f976773e9208b41d784b57c6d73e23e1993f01262f592 3b1391d6b0605011bec7cc6f3f964ed476273bd5ed4bb5d6590f862aa4e7a2a3
@@ -683,28 +683,28 @@ ql/test/extractor-tests/generated/decl/ConcreteVarDecl/ConcreteVarDecl_getProper
 ql/test/extractor-tests/generated/decl/ConstructorDecl/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
 ql/test/extractor-tests/generated/decl/DestructorDecl/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
 ql/test/extractor-tests/generated/decl/EnumCaseDecl/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
-ql/test/extractor-tests/generated/decl/EnumDecl/EnumDecl.ql d735a44938c2ad55a09a135d4e24b47e8e3dad4ae00e3335ea7352d1d7137bbb 8bfd5d4c816fc989f031a85f534c61a55b04f69b678adc579d53f4ddb2f8b6a3
+ql/test/extractor-tests/generated/decl/EnumDecl/EnumDecl.ql cfaa19a5ae44f535f753c8b89d5bacd8f29220a7dc962efa1a3a11a6eb6d6f31 ce21feae120f926a1425c0365de9fda84c3df1057e42f0aadc34d2bcaa7e35d1
 ql/test/extractor-tests/generated/decl/EnumDecl/EnumDecl_getBaseType.ql 4ace6176a57dd4c759356ddbefc28b25481c80bdeddfeb396d91b07db55af22a d0d1337ccbba45a648fe68fefc51006e14506d4fb7211fb2bde45f7761c4dbf1
 ql/test/extractor-tests/generated/decl/EnumDecl/EnumDecl_getGenericTypeParam.ql 3a0927f87a21d69bfc309f5f7faedb3d0cc2956c071b16c38b2b4acd36f24ea9 aafed56a1744579f05b3817adef6a5fd011d1b5cb7da2db230a43b6f55a04649
 ql/test/extractor-tests/generated/decl/EnumDecl/EnumDecl_getMember.ql 621870b7dbeaeefa93cbbfc102e97810b15d39b49db685019c9e3cbf2423ffef e110630f0ba8f588e7f8ebc56a1a31c2ca2f22f2cc763baa76854beb3b3a4ece
 ql/test/extractor-tests/generated/decl/EnumElementDecl/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
 ql/test/extractor-tests/generated/decl/ExtensionDecl/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
 ql/test/extractor-tests/generated/decl/GenericTypeParamDecl/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
-ql/test/extractor-tests/generated/decl/IfConfigDecl/IfConfigDecl.ql d6cb84e2beb3042390b177e8f47a6e030bd439582b698c0a635fb59654b1ca7e 08e06c55de5642be69b4155e400d5fe3a6a2eb51baeea0ba0386d47d8e79d88d
+ql/test/extractor-tests/generated/decl/IfConfigDecl/IfConfigDecl.ql 52e572682b381d6a3c4d38d2902c1fca3a371eec3859c49735fcab8eb5ae23c8 0b5fdf388f887c50ff333f662f6321851e923166ab5916bb07d1613452d495e1
 ql/test/extractor-tests/generated/decl/IfConfigDecl/IfConfigDecl_getActiveElement.ql 914165306a2eb5c8039750e1e03bda156a684946abc8709d786b4144d9c9eb3b 5e87dfd99858ae257506415369bff937a731b6309dac2242b03ea79ead045fc1
-ql/test/extractor-tests/generated/decl/ImportDecl/ImportDecl.ql eb56535b0c351b04fcfdd468c5abe5b0c53b7f84ba2813de9a3a236d2a3589a8 56d894aabbe8275754ee2d420e7400676866538f1befd9a3a2fc846a1966da48
+ql/test/extractor-tests/generated/decl/ImportDecl/ImportDecl.ql 34e45c5675750325ca212c05cdda4158c6bd9cc84d8cbc6672eca530fd8d5ba7 01f3ca092a9f91e0adfa3118162de4679962ba2c57e127642c496aeb91d50b68
 ql/test/extractor-tests/generated/decl/ImportDecl/ImportDecl_getDeclaration.ql a76c6360ed7b423229ec64dc4d03f586204fbf5107408b7d07c06ef43b30526e bc8569ecf097f0e6176da4f42379158137f70dcfb9b6d60f4c16f643b68f9d91
 ql/test/extractor-tests/generated/decl/ImportDecl/ImportDecl_getImportedModule.ql 0339867ca4f414cceba85df20d12eca64a3eea9847bb02829dc28fa95701e987 8c292768f56cecbdfeb92985212e6b39ecada819891921c3ba1532d88d84c43e
 ql/test/extractor-tests/generated/decl/InfixOperatorDecl/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
-ql/test/extractor-tests/generated/decl/ModuleDecl/ModuleDecl.ql e80e0f64d36027d9f064be0147711379a9cd82da8c52517bab39572e934ed1ac ff58e0dc81e399ee95496a4d2cf3f23974698c971dfe323b87d01164fa1de18f
+ql/test/extractor-tests/generated/decl/ModuleDecl/ModuleDecl.ql f2e3f8cf3d1a308460553033de41bf094fd7931ac0f4ae9c6b134940c0247b17 da3ac91991de773f1b914088435f1b7d9821b433b5af9ad8b003f62c15356774
 ql/test/extractor-tests/generated/decl/ModuleDecl/ModuleDecl_getBaseType.ql 54a4bd2cfa666271ae9092285bb7217b082c88483d614066cfb599fc8ab84305 8b24ab8e93efe3922cb192eb5de5f517763058782e83e8732153421adddd68e1
 ql/test/extractor-tests/generated/decl/ModuleDecl/ModuleDecl_getExportedModule.ql cfca012f0951c86560d892ea5eae182d5eda661c9484a0df71ef9c905123e8f6 dfebda4fcad0e2f2a2c944782a7355b3caeac569e5a45621c582bc1bb243b2cc
 ql/test/extractor-tests/generated/decl/ModuleDecl/ModuleDecl_getImportedModule.ql 44018a788205592c59cd10072f8b8d0558100bb15fff4b3e490176e86193e5b1 cc9fe6571713af8a0e844ac5da682c24feb1a2be4535e3feeb4cbbafba91a414
-ql/test/extractor-tests/generated/decl/OpaqueTypeDecl/OpaqueTypeDecl.ql 263d878d5a60ad0b63c9c8fc7a8463e71ad920de9b5e0afa5c657d44f5fcedb3 615435e94f0c55f1bcdf59176dace7c3737ed052e7b2a049e2a0706523de5fa2
+ql/test/extractor-tests/generated/decl/OpaqueTypeDecl/OpaqueTypeDecl.ql 7d91642f55a68928cf1d88c452f14788aa4299321505cc8104d865de4fc4106f 04765f0a4850bde6a8550d337a4a13d1d3a9df24f14de0fe403182a3ff6b78e2
 ql/test/extractor-tests/generated/decl/OpaqueTypeDecl/OpaqueTypeDecl_getBaseType.ql d030fd55ea5a5443c03e8ba1a024c03e3c68c96c948c850131f59fbac6409402 46816c1a75a4cf11db95884733382e46d5573b6c1116d5de0bfe5ae91fed4c3d
 ql/test/extractor-tests/generated/decl/OpaqueTypeDecl/OpaqueTypeDecl_getGenericTypeParam.ql c147420a91c157ee37a900dd7739bdb386fba5eeaadd84e609d2642d3fdbf2e0 cf1c981b6cb7b84944e9430cfe361905dcc396d4356d7f20a0ba993352bd5b02
 ql/test/extractor-tests/generated/decl/OpaqueTypeDecl/OpaqueTypeDecl_getOpaqueGenericParam.ql 2b4264a68817f53ddd73e4fd80e9f7c3a5fcfa4d0692135e2d3b10c8a8379d98 c2efac460b655e726d898b2b80cbfce24820a922e26935804ddd21ae9c474085
-ql/test/extractor-tests/generated/decl/ParamDecl/ParamDecl.ql a02dc34d4f3cfab7d3080413062f320e8ce77162cfc4e61094b5f26a761e4949 e9737a4bec7afc503f7b6cfeb54d0a1753777cbfad03943209431b5387b7850a
+ql/test/extractor-tests/generated/decl/ParamDecl/ParamDecl.ql 70fd778e4d266ecc20180e09dde22107f0503c500d412ab9a5051c23bd8c7103 be5c8daed55d21db35d4a27e9d41038ea066355f7e5f3cb7c54d820545422147
 ql/test/extractor-tests/generated/decl/ParamDecl/ParamDecl_getAccessorDecl.ql bf6bd41b1eedad87a2d86acb4b183ddbd150119a0301ec56c6d7129fe5dee453 247fe28adde08cb86e03f9f21c32ea96b8bdc522b848bb84a592292338cac6b1
 ql/test/extractor-tests/generated/decl/ParamDecl/ParamDecl_getAttachedPropertyWrapperType.ql 3642cfd3ecf47a6b81a1745dc043131df349b898a937445eadfdee9f69aec3fc 97137c6673c45b0743db310b0839426eab71f5bc80ccc7bab99c304b8198159f
 ql/test/extractor-tests/generated/decl/ParamDecl/ParamDecl_getParentInitializer.ql f0ecd0352a7e34e13040f31440a6170b0661b625c65b35d13021731b6db0f441 9fc89925050c9538ba3ba0b8c45278e30dffba64b53002f675e3f7a9ef014539
@@ -725,7 +725,7 @@ ql/test/extractor-tests/generated/decl/StructDecl/MISSING_SOURCE.txt 7e714762ffb
 ql/test/extractor-tests/generated/decl/SubscriptDecl/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
 ql/test/extractor-tests/generated/decl/TopLevelCodeDecl/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
 ql/test/extractor-tests/generated/decl/TypeAliasDecl/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
-ql/test/extractor-tests/generated/expr/AppliedPropertyWrapperExpr/AppliedPropertyWrapperExpr.ql 5fc96795860963e91b1073a18347b81ca60e57e364636b33d452bf721cd33d88 798e5804cf4a7cc53f150d081ca585b20aee66ff3e4f676e96806a84aabf4ba1
+ql/test/extractor-tests/generated/expr/AppliedPropertyWrapperExpr/AppliedPropertyWrapperExpr.ql 88d7539565c64d29ffd99e8201a0b47954d13c6ca7df6141fab6311fc37588f0 2ebaaaa97b492762273516355004a6cbc88d75250d856ed5e21660294e150ca0
 ql/test/extractor-tests/generated/expr/AppliedPropertyWrapperExpr/AppliedPropertyWrapperExpr_getType.ql 1caa0b9c70afc6f63fb1cb05b30499a615a997849d5128006f9c7147b7f1d4a4 64474604bf6d9028bdcbbb8dd2a607c65cb74038e2d6e88e86908f82590ba7a7
 ql/test/extractor-tests/generated/expr/Argument/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
 ql/test/extractor-tests/generated/expr/ArrayExpr/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
@@ -739,7 +739,7 @@ ql/test/extractor-tests/generated/expr/CaptureListExpr/MISSING_SOURCE.txt 7e7147
 ql/test/extractor-tests/generated/expr/ClosureExpr/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
 ql/test/extractor-tests/generated/expr/CoerceExpr/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
 ql/test/extractor-tests/generated/expr/ConditionalCheckedCastExpr/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
-ql/test/extractor-tests/generated/expr/ConstructorRefCallExpr/ConstructorRefCallExpr.ql 1364aaeb8354078d479fc32b389febf5a76d18d86924be8357be5d7c59b68e48 816f5bf8b36e68c63d7849d883f3cf7fe9d19ee55d3244099d3178ae62aef1d3
+ql/test/extractor-tests/generated/expr/ConstructorRefCallExpr/ConstructorRefCallExpr.ql 0214077b52ed4c152c70bbd0347c7340d42e584954fba5242f1380e357ec79a0 f8ce48428247f8616c15d39198bf8b3857f1acca12a800bcc912c34720f5f039
 ql/test/extractor-tests/generated/expr/ConstructorRefCallExpr/ConstructorRefCallExpr_getArgument.ql a3a01f99aa8df3aafed50cc7828829e567e01fed7874854e7a620904f1641fc9 962669b36b9adbc3d75bae79a9a754692c20d6e14ee2b47aca8f3f93b27895da
 ql/test/extractor-tests/generated/expr/ConstructorRefCallExpr/ConstructorRefCallExpr_getType.ql c3504dda8c41ebc386a9011deb06b0f5312538306b5ca10f7c4ff2e0f2c277dd aa6785ac86fe4954ef679fdfa6cd91f964d9281ab0162240b6e4b9eb67b0eda3
 ql/test/extractor-tests/generated/expr/DeclRefExpr/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
@@ -747,23 +747,23 @@ ql/test/extractor-tests/generated/expr/DefaultArgumentExpr/MISSING_SOURCE.txt 7e
 ql/test/extractor-tests/generated/expr/DictionaryExpr/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
 ql/test/extractor-tests/generated/expr/DiscardAssignmentExpr/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
 ql/test/extractor-tests/generated/expr/DotSyntaxBaseIgnoredExpr/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
-ql/test/extractor-tests/generated/expr/DotSyntaxCallExpr/DotSyntaxCallExpr.ql 0065feb0a78820e5905518ed06b41095fead328ed10fa6c7e6318e845f06670f d37a87dd726d27888b0673aac38726f7b190d6522e57c443e1a56f77c15e7bee
+ql/test/extractor-tests/generated/expr/DotSyntaxCallExpr/DotSyntaxCallExpr.ql b161e81b9eee4c3ab66776542559457c02f30da68e59efb98d6388425e66d2e3 d7571dbca05dd36185c0eb2ad4ad9e821433362c10045875fb433fae5264346a
 ql/test/extractor-tests/generated/expr/DotSyntaxCallExpr/DotSyntaxCallExpr_getArgument.ql ab0023396a31a9fad384ac6ab2819fa3b45726d651fee6ee5d84ea4fbdb55992 410afe1ae14ca17bc245c9fa88f84ba1d02e20a7803910746316ddcacc062ace
 ql/test/extractor-tests/generated/expr/DotSyntaxCallExpr/DotSyntaxCallExpr_getType.ql ea3d25737d4c02d6ecd405d23471a587945362dee1160f6346484fffa166835d 3edcaae4cd47839dc716640ac9c098a9c65f365a69fb5442d15eb1955c06dcaa
-ql/test/extractor-tests/generated/expr/DynamicLookupExpr/DynamicLookupExpr.ql 626a984185cb3082e3138740cc44dcd94334340266f8dff4212d1df8b2950a7d 5b3af58bcb8eb2a05677f5e19bbd5dfd77ff340d020869b780329f5e21b985a9
+ql/test/extractor-tests/generated/expr/DynamicLookupExpr/DynamicLookupExpr.ql 3c08d6e00606b76499ba1a04547cba9918f3be5b3baa4b3fc287bd288c467c8d 6685c8133d7c34346a85653589b3ae9cf2dbedaaff5e87f4dd9e94719a31b715
 ql/test/extractor-tests/generated/expr/DynamicLookupExpr/DynamicLookupExpr_getMember.ql ab1669430da9e60e3b5187bd4f45e7a9b501348cd0c66e4d8570c6facc3a82a3 a2e5e9781c9af9c52fe9d5735f146dc4a2e077096f2baee8db75f2a2f82b0037
 ql/test/extractor-tests/generated/expr/DynamicLookupExpr/DynamicLookupExpr_getType.ql 216b9caa3388b85959b19db012c6a7af40981ef92e4749b9cc644caee830041c 32691b624baed5c89fbef438214ecb893f9c1d1a575194133b56d79877e3feec
 ql/test/extractor-tests/generated/expr/DynamicTypeExpr/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
-ql/test/extractor-tests/generated/expr/EnumIsCaseExpr/EnumIsCaseExpr.ql 6828ec28bceddb96c23eaa9b4b2ee6d6223edbca47c9f30219c09093fa7c6465 334b8ecfb0b9fc40b2e1440173e25aeba65905765c35bfbbf68090ad864c10d0
+ql/test/extractor-tests/generated/expr/EnumIsCaseExpr/EnumIsCaseExpr.ql 9a4505f330e014769509be594299bcaa046d0a2c9a8ce4ac3a1d6d6b050af317 92c8392ded3fb26af7434b8aae34b1649b4c808acafc3adbd8ecb60ada5f6e72
 ql/test/extractor-tests/generated/expr/EnumIsCaseExpr/EnumIsCaseExpr_getType.ql edc2e175c971465f5667c4586bc4c77e5c245d267f80009a049b8f657238a5f4 5df26b5bdf975ba910a7c3446705c3ac82a67d05565d860fe58464ee82bafdde
 ql/test/extractor-tests/generated/expr/FloatLiteralExpr/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
 ql/test/extractor-tests/generated/expr/ForceTryExpr/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
 ql/test/extractor-tests/generated/expr/ForceValueExpr/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
 ql/test/extractor-tests/generated/expr/ForcedCheckedCastExpr/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
-ql/test/extractor-tests/generated/expr/IdentityExpr/IdentityExpr.ql 682a734d58a9bc731f4b73b2c54467774243438be7bb8d5c8fe6483c66401332 cbe4c4df1b7163995c76b89eee41eacb1a573c774155323aa8dcf79e404379ed
+ql/test/extractor-tests/generated/expr/IdentityExpr/IdentityExpr.ql f87db45ad56628ce62200e1034d1cfd2ff1c799be5a24681fe939bf80108937a e8484eaab79f3be6b53ecb258eb9a3cd8cdcba8534c0ee7d275b8b67b3d2f538
 ql/test/extractor-tests/generated/expr/IdentityExpr/IdentityExpr_getType.ql 7a8520abbf50642f886a3cdea37530b0577d509f31d76224467ad5d435bb0e39 a6fd63a7964cf778cc4b23ce5112138d7d5a5db96956e9514741ef9789bd1f19
 ql/test/extractor-tests/generated/expr/IfExpr/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
-ql/test/extractor-tests/generated/expr/ImplicitConversionExpr/ImplicitConversionExpr.ql c9e1a3f60f760077b2149c0bd647195628f1969758d885174665b7fb4c0c9b8a a3a9766f976499caaee2739ed5a81b63cf2f556924643713cee59fac4ab07e5d
+ql/test/extractor-tests/generated/expr/ImplicitConversionExpr/ImplicitConversionExpr.ql 7ffb80368c4d80adccaa0267cc76b42b76304d5d485286f82e22ae51776812f3 51b38032cb3d392be56fa8bdf53379a174cf3de39d4bf6b730c611ae3ab7cec8
 ql/test/extractor-tests/generated/expr/ImplicitConversionExpr/ImplicitConversionExpr_getType.ql 184ff1dec5d65024c8a0c2b316706ac58c68c62c715c266211e947168750c89a 486fc8d65c0db86bdada2d540f665278caab43454a69ccc8c2e702729397fef0
 ql/test/extractor-tests/generated/expr/InOutExpr/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
 ql/test/extractor-tests/generated/expr/IntegerLiteralExpr/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
@@ -776,11 +776,11 @@ ql/test/extractor-tests/generated/expr/LazyInitializerExpr/MISSING_SOURCE.txt 7e
 ql/test/extractor-tests/generated/expr/MagicIdentifierLiteralExpr/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
 ql/test/extractor-tests/generated/expr/MakeTemporarilyEscapableExpr/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
 ql/test/extractor-tests/generated/expr/MemberRefExpr/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
-ql/test/extractor-tests/generated/expr/MethodRefExpr/MethodRefExpr.ql a2fd4e761b2425c3055b0035937e0303e1b3555ab48d699f765db91c31bac7ae 6a1c3b2379001592095ae2a48740373cf8cec3a256a308ffad8a1a1c74ae656e
+ql/test/extractor-tests/generated/expr/MethodRefExpr/MethodRefExpr.ql 53b3a01d27336f55ce24eb278b5fb54a00fdacd24fd04e0267541de7fc282009 8d8f42acc84d02166648a6c9857bf988abaff967f130d100b25aae114b99ade0
 ql/test/extractor-tests/generated/expr/MethodRefExpr/MethodRefExpr_getMember.ql 178794928d040a4a5ebbae0cd835936eac0214756fbb5b4bbbe29d4487e86d0c 6efedf486a073a487a45539f097219bb7ac9c11c0ce8d539e950a9e5035d8a61
 ql/test/extractor-tests/generated/expr/MethodRefExpr/MethodRefExpr_getType.ql 991f8855bd8297971aec205aa13d072674739133d4adb8cdaa272c6340848bb4 08810d4640f61ab4ede0ddb0d23c498936ae3b6ee3f40ab7f702b96ad5dba101
 ql/test/extractor-tests/generated/expr/NilLiteralExpr/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
-ql/test/extractor-tests/generated/expr/ObjectLiteralExpr/ObjectLiteralExpr.ql b47984c8a72cc757922beda3a38ec090c9286aa5ccba9b799fc27223f4f85952 9297bd78da12cc7db6d183e6c6de86e259220c44674a21a972a51e2661030d55
+ql/test/extractor-tests/generated/expr/ObjectLiteralExpr/ObjectLiteralExpr.ql 6c6b146537773b4b4bdb0e530bd581f4d9ffee93e784a8fdfcabe35309bdd09e 47b2a275af169a031faee39e73c67a70ec47969b731f1cc80a8f76e68d934402
 ql/test/extractor-tests/generated/expr/ObjectLiteralExpr/ObjectLiteralExpr_getArgument.ql ab308c1fa027136070a6ee9ebe5149c69b34bb9ae910f201f37cecd8b6341ff8 deef69f4a1a94386a32ec964e696972a2c6a91c34d7e99c7e4a3811980f5ecc4
 ql/test/extractor-tests/generated/expr/ObjectLiteralExpr/ObjectLiteralExpr_getType.ql 07d59d9962f3705f8f32302c0d730c179ca980172dd000b724a72e768fbf39db cd146e19249590316bb83efec19dd41234723513025cf9df45313f78f2b364dd
 ql/test/extractor-tests/generated/expr/OneWayExpr/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
@@ -789,11 +789,11 @@ ql/test/extractor-tests/generated/expr/OpenExistentialExpr/MISSING_SOURCE.txt 7e
 ql/test/extractor-tests/generated/expr/OptionalEvaluationExpr/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
 ql/test/extractor-tests/generated/expr/OptionalTryExpr/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
 ql/test/extractor-tests/generated/expr/OtherConstructorDeclRefExpr/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
-ql/test/extractor-tests/generated/expr/PostfixUnaryExpr/PostfixUnaryExpr.ql b6e8de27cc17a1bd3883948af8fb620fd7872b01e63ae3d030dadc09e8eccb18 378588263065a827aef9cca17ceda876cfc6f40295bb7e46d506d59400a86521
+ql/test/extractor-tests/generated/expr/PostfixUnaryExpr/PostfixUnaryExpr.ql 7687a79d05efbbae7ce68780cb946cb500ed79c5e03aa0f3c132d0b98b6efe80 f23082710afb2bc247acab84b669540664461f0ec04a946125f17586640dfba8
 ql/test/extractor-tests/generated/expr/PostfixUnaryExpr/PostfixUnaryExpr_getArgument.ql 3b0e6f81599e5565bb78aff753932776c933fefdc8dc49e57db9f5b4164017f6 43031a3d0baa58f69b89a8a5d69f1a40ffeeaddc8a630d241e107de63ea54532
 ql/test/extractor-tests/generated/expr/PostfixUnaryExpr/PostfixUnaryExpr_getType.ql fa909883140fe89084c289c18ebc681402c38d0f37159d01f043f62de80521fc 4cd748e201e9374e589eaa0e3cc10310a1378bba15272a327d5cf54dbd526e8f
 ql/test/extractor-tests/generated/expr/PrefixUnaryExpr/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
-ql/test/extractor-tests/generated/expr/PropertyWrapperValuePlaceholderExpr/PropertyWrapperValuePlaceholderExpr.ql 3b24e7b4c80d3d2a614be7a9329c45d71691d82ba624b5a4512048a9aa560491 8209c8bcf99ed5b81f212bb8c9fac2c1562cf342b0f596116dc3d5c7c8e4eb83
+ql/test/extractor-tests/generated/expr/PropertyWrapperValuePlaceholderExpr/PropertyWrapperValuePlaceholderExpr.ql 9ac73f157d11e4ee1c47dceaadd2f686893da6557e4e600c62edad90db2eb92d bf353009ee1b6127350d976f2e869b615d54b998e59664bdb25ea8d6ab5b132d
 ql/test/extractor-tests/generated/expr/PropertyWrapperValuePlaceholderExpr/PropertyWrapperValuePlaceholderExpr_getType.ql 0972415a8ac29f460d480990f85c3976ad947e26510da447bbf74ee61d9b3f4e 463b8ce871911b99c495ea84669b4e6f8eafc645df483f6a99413e930bc0275e
 ql/test/extractor-tests/generated/expr/PropertyWrapperValuePlaceholderExpr/PropertyWrapperValuePlaceholderExpr_getWrappedValue.ql 208153f062b04bec13a860b64ea51c1d531597140d81a6d4598294dc9f8649a2 dfaea19e1075c02dfc0366fac8fd2edfae8dde06308730eb462c54be5b571129
 ql/test/extractor-tests/generated/expr/RebindSelfInConstructorExpr/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
@@ -844,7 +844,7 @@ ql/test/extractor-tests/generated/type/ArraySliceType/MISSING_SOURCE.txt 7e71476
 ql/test/extractor-tests/generated/type/BoundGenericClassType/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
 ql/test/extractor-tests/generated/type/BoundGenericEnumType/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
 ql/test/extractor-tests/generated/type/BoundGenericStructType/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
-ql/test/extractor-tests/generated/type/BuiltinIntegerType/BuiltinIntegerType.ql fd632ef56c3586fc9b96bf0553567cce61c9cb33bc6d4b3714a6cbbfd04be58a 7a396b997dfd287bca46c6e6c44a7e609015932370e3fb4fc240b462817d9e34
+ql/test/extractor-tests/generated/type/BuiltinIntegerType/BuiltinIntegerType.ql f85efff665246a0fb345def44cb60ae2415f82c6ef82b9689a61e08e7f1754ae 4c1c50193bfad688a708b4bc0dd08979e561ff764e0786ec37fbb6a654a404d6
 ql/test/extractor-tests/generated/type/BuiltinIntegerType/BuiltinIntegerType_getWidth.ql 61e99a3987c5a4b10d5d105184c60dacc1c08d8106cf41b81d491a7f0ac36ef2 b02395a219768e0f41cbf77e4111da3a271e777bfe448eea1ea5d6f0910ff1e8
 ql/test/extractor-tests/generated/type/BuiltinType/BuiltinType.ql 48f3b997bdb2c37dc22fd3dc2d18bc853888503d0d8d8cb075c6cd18657553e2 278d18e1fae3d8693a4d363b67c6ff111c111464f104d72ccad37793bc425200
 ql/test/extractor-tests/generated/type/ClassType/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
@@ -861,20 +861,20 @@ ql/test/extractor-tests/generated/type/InOutType/InOutType.ql 35b7c048fbd053f682
 ql/test/extractor-tests/generated/type/LValueType/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
 ql/test/extractor-tests/generated/type/MetatypeType/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
 ql/test/extractor-tests/generated/type/ModuleType/ModuleType.ql 8f798fea381d1b502f262b5ee790758b38008cadcdee848d0ddba1bd9f8ff4f9 4c3d623607be1a5f6503500f3331ee3b3e5200e9e78cca8a4ef3d24c83d0e7ba
-ql/test/extractor-tests/generated/type/OpaqueTypeArchetypeType/OpaqueTypeArchetypeType.ql d15e89cbf72f4cf278258df3e6885baefef86960f4c891178ef0dbad69ff1db7 fb6854084970e0da3ae743299a2b0f69bd724ebdd8dfacc777010aaa7f61304c
+ql/test/extractor-tests/generated/type/OpaqueTypeArchetypeType/OpaqueTypeArchetypeType.ql e34e98f70a987fe9a5017c897a507f9de4fffff837e3e2cf6c13287bb6165381 e60a5754173210f3af543bea15eadb2a3349e2f71653249cc421b33266adf344
 ql/test/extractor-tests/generated/type/OpaqueTypeArchetypeType/OpaqueTypeArchetypeType_getProtocol.ql fb9baf55660e0eedf1a387267d170ae066a8d1531156eab5447feca92f05b751 139529998fc2060a46a70cb645a9aa36240ab225bd9fbdb3decc3eaec3aa2261
 ql/test/extractor-tests/generated/type/OpaqueTypeArchetypeType/OpaqueTypeArchetypeType_getSuperclass.ql 3556a07117f10a070638f3049dff85dd41c042ff3d13be275e19b995b3e7af81 5f0f6d66d9852eff45c25451dae087117077aa7b11a7908178769489f3726e11
-ql/test/extractor-tests/generated/type/OpenedArchetypeType/OpenedArchetypeType.ql 0de02f1777f4b9216609a8be67e2c1fe34ab0657ecdd0ab11ca8a78b7a9daa30 ab2d57361e4c11443531100b06dd97ce8ee6871a40f1a99ad395b45ba8b74dd0
+ql/test/extractor-tests/generated/type/OpenedArchetypeType/OpenedArchetypeType.ql d902b873db34a3b7f0bc4da82ecf59b01d283d4ca61be3b090cb47358c8dd6c2 656a938735cfa5bf5ca65a7c0e347fca993e966d568404ac204f60de18faa03f
 ql/test/extractor-tests/generated/type/OpenedArchetypeType/OpenedArchetypeType_getProtocol.ql c208618d6bd7d4759581f06fad2b452077a0d865b4fb4288eff591fc7b16cd67 3bd6b8e1d1bc14bd27144a8356e07520d36ea21b6ea4adb61e84a2013e8701fc
 ql/test/extractor-tests/generated/type/OpenedArchetypeType/OpenedArchetypeType_getSuperclass.ql bb7fc71b2d84e8c5492bb4c61492dabbce898bfb680979aadd88c4de44ea5af7 acae343087222e8eb7e4dfa0e256097d9592a9668afcb5706bcba5548afc0770
 ql/test/extractor-tests/generated/type/OptionalType/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
-ql/test/extractor-tests/generated/type/ParameterizedProtocolType/ParameterizedProtocolType.ql 79da7723c0eb935b061b08aa71d349b36db4a6b46bc7c3274f550c1d7c870a13 0cdb58f4d9a481927187dc5ec4af4847a6cd4882b87b03c25dc0eb96495439f7
+ql/test/extractor-tests/generated/type/ParameterizedProtocolType/ParameterizedProtocolType.ql dad743465b62dca457d64ff04bde24027050edb6d80054738f59e6026fbb00d7 119d085d65930b0b286ccdb8dc3aecb7eb46133e9f4ea18a6733751713b8ae5c
 ql/test/extractor-tests/generated/type/ParameterizedProtocolType/ParameterizedProtocolType_getArg.ql 8d10c3c858dedba47f227ebc92745916a248cd040ad944b80bf0d7a19af229d3 a29e2e0df269034c4f1fbd8f6de6d5898e895ad8b90628d5c869a45b596b53fc
 ql/test/extractor-tests/generated/type/ParenType/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
-ql/test/extractor-tests/generated/type/PrimaryArchetypeType/PrimaryArchetypeType.ql e1c6ffa622b9a5635147311640709bdbf9bb708c5846902c36e1cefe08cf69e7 fcd271f52fc698e5d866da73226ef546aae0fc161a85647426886bbfb510ab48
+ql/test/extractor-tests/generated/type/PrimaryArchetypeType/PrimaryArchetypeType.ql 1d733e0447587d52a3b84ca19480e410c487c02541cd070ac80fcd2dbef5b57d 6ffd1e7ce8ec9b9fea0680805700262e472711b4d9a2b4336e57445e8f1a6d48
 ql/test/extractor-tests/generated/type/PrimaryArchetypeType/PrimaryArchetypeType_getProtocol.ql 8af9b686cb9c3d988aea21cdaca42a0b625985111caa71d3eebaba4aea883e9c beecb31ab8fccb05c853926bccec33e298bed519385a25d6158646c94a019af9
 ql/test/extractor-tests/generated/type/PrimaryArchetypeType/PrimaryArchetypeType_getSuperclass.ql 3b752a38eac8204ae6d902d03da8caeaad4072f30206420c97056e4bf3639eb4 fc5959969d5b229fa5d90dde7d997aa0d1b91bdb9d77cc6811377044eed4a6cb
-ql/test/extractor-tests/generated/type/ProtocolCompositionType/ProtocolCompositionType.ql 724be7f272566bb15acf34b32686df5a2bba7423baed8efcbffc1b6153e8d34c c6eb710b89fcca0410f0e1ac64ba76c12aa72d5b2ebc3889fc5d55c7168b2f0d
+ql/test/extractor-tests/generated/type/ProtocolCompositionType/ProtocolCompositionType.ql 007c64d8ea8f69addc61e8759ce9cf2e32f5e8f73de6e35541a16ea19d4695ab 156ef6560aa5d866e6ed70237cf0335b2df0c75f87d23cc4d1024ee80fe0a543
 ql/test/extractor-tests/generated/type/ProtocolCompositionType/ProtocolCompositionType_getMember.ql 8c1e8e5932cd775f0d0812a64954be5fd5b3eedd8a26eedb0bd6009cbc156e24 5c43ef8000bb67ed0e070bbd9d5fc167dcb7b6334ae34747d27eb8060af1a7e5
 ql/test/extractor-tests/generated/type/ProtocolType/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
 ql/test/extractor-tests/generated/type/StructType/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
diff --git a/swift/ql/test/extractor-tests/generated/decl/AccessorDecl/AccessorDecl.ql b/swift/ql/test/extractor-tests/generated/decl/AccessorDecl/AccessorDecl.ql
index 5fdb7d55297..048c1802317 100644
--- a/swift/ql/test/extractor-tests/generated/decl/AccessorDecl/AccessorDecl.ql
+++ b/swift/ql/test/extractor-tests/generated/decl/AccessorDecl/AccessorDecl.ql
@@ -3,12 +3,17 @@ import codeql.swift.elements
 import TestUtils
 
 from
-  AccessorDecl x, ModuleDecl getModule, Type getInterfaceType, string getName, string isGetter,
-  string isSetter, string isWillSet, string isDidSet, string isRead, string isModify,
-  string isUnsafeAddress, string isUnsafeMutableAddress
+  AccessorDecl x, string hasSelfParam, int getNumberOfParams, string hasBody,
+  int getNumberOfGenericTypeParams, ModuleDecl getModule, Type getInterfaceType, string getName,
+  string isGetter, string isSetter, string isWillSet, string isDidSet, string isRead,
+  string isModify, string isUnsafeAddress, string isUnsafeMutableAddress
 where
   toBeTested(x) and
   not x.isUnknown() and
+  (if x.hasSelfParam() then hasSelfParam = "yes" else hasSelfParam = "no") and
+  getNumberOfParams = x.getNumberOfParams() and
+  (if x.hasBody() then hasBody = "yes" else hasBody = "no") and
+  getNumberOfGenericTypeParams = x.getNumberOfGenericTypeParams() and
   getModule = x.getModule() and
   getInterfaceType = x.getInterfaceType() and
   getName = x.getName() and
@@ -22,7 +27,8 @@ where
   if x.isUnsafeMutableAddress()
   then isUnsafeMutableAddress = "yes"
   else isUnsafeMutableAddress = "no"
-select x, "getModule:", getModule, "getInterfaceType:", getInterfaceType, "getName:", getName,
-  "isGetter:", isGetter, "isSetter:", isSetter, "isWillSet:", isWillSet, "isDidSet:", isDidSet,
-  "isRead:", isRead, "isModify:", isModify, "isUnsafeAddress:", isUnsafeAddress,
-  "isUnsafeMutableAddress:", isUnsafeMutableAddress
+select x, "hasSelfParam:", hasSelfParam, "getNumberOfParams:", getNumberOfParams, "hasBody:",
+  hasBody, "getNumberOfGenericTypeParams:", getNumberOfGenericTypeParams, "getModule:", getModule,
+  "getInterfaceType:", getInterfaceType, "getName:", getName, "isGetter:", isGetter, "isSetter:",
+  isSetter, "isWillSet:", isWillSet, "isDidSet:", isDidSet, "isRead:", isRead, "isModify:",
+  isModify, "isUnsafeAddress:", isUnsafeAddress, "isUnsafeMutableAddress:", isUnsafeMutableAddress
diff --git a/swift/ql/test/extractor-tests/generated/decl/AssociatedTypeDecl/AssociatedTypeDecl.ql b/swift/ql/test/extractor-tests/generated/decl/AssociatedTypeDecl/AssociatedTypeDecl.ql
index 1cad0891f79..707761ef48c 100644
--- a/swift/ql/test/extractor-tests/generated/decl/AssociatedTypeDecl/AssociatedTypeDecl.ql
+++ b/swift/ql/test/extractor-tests/generated/decl/AssociatedTypeDecl/AssociatedTypeDecl.ql
@@ -2,11 +2,15 @@
 import codeql.swift.elements
 import TestUtils
 
-from AssociatedTypeDecl x, ModuleDecl getModule, Type getInterfaceType, string getName
+from
+  AssociatedTypeDecl x, ModuleDecl getModule, Type getInterfaceType, string getName,
+  int getNumberOfBaseTypes
 where
   toBeTested(x) and
   not x.isUnknown() and
   getModule = x.getModule() and
   getInterfaceType = x.getInterfaceType() and
-  getName = x.getName()
-select x, "getModule:", getModule, "getInterfaceType:", getInterfaceType, "getName:", getName
+  getName = x.getName() and
+  getNumberOfBaseTypes = x.getNumberOfBaseTypes()
+select x, "getModule:", getModule, "getInterfaceType:", getInterfaceType, "getName:", getName,
+  "getNumberOfBaseTypes:", getNumberOfBaseTypes
diff --git a/swift/ql/test/extractor-tests/generated/decl/ClassDecl/ClassDecl.ql b/swift/ql/test/extractor-tests/generated/decl/ClassDecl/ClassDecl.ql
index 39aa84b0206..b1f26df88ed 100644
--- a/swift/ql/test/extractor-tests/generated/decl/ClassDecl/ClassDecl.ql
+++ b/swift/ql/test/extractor-tests/generated/decl/ClassDecl/ClassDecl.ql
@@ -2,13 +2,19 @@
 import codeql.swift.elements
 import TestUtils
 
-from ClassDecl x, ModuleDecl getModule, Type getInterfaceType, string getName, Type getType
+from
+  ClassDecl x, int getNumberOfGenericTypeParams, ModuleDecl getModule, Type getInterfaceType,
+  string getName, int getNumberOfBaseTypes, int getNumberOfMembers, Type getType
 where
   toBeTested(x) and
   not x.isUnknown() and
+  getNumberOfGenericTypeParams = x.getNumberOfGenericTypeParams() and
   getModule = x.getModule() and
   getInterfaceType = x.getInterfaceType() and
   getName = x.getName() and
+  getNumberOfBaseTypes = x.getNumberOfBaseTypes() and
+  getNumberOfMembers = x.getNumberOfMembers() and
   getType = x.getType()
-select x, "getModule:", getModule, "getInterfaceType:", getInterfaceType, "getName:", getName,
-  "getType:", getType
+select x, "getNumberOfGenericTypeParams:", getNumberOfGenericTypeParams, "getModule:", getModule,
+  "getInterfaceType:", getInterfaceType, "getName:", getName, "getNumberOfBaseTypes:",
+  getNumberOfBaseTypes, "getNumberOfMembers:", getNumberOfMembers, "getType:", getType
diff --git a/swift/ql/test/extractor-tests/generated/decl/ConcreteFuncDecl/ConcreteFuncDecl.ql b/swift/ql/test/extractor-tests/generated/decl/ConcreteFuncDecl/ConcreteFuncDecl.ql
index e58783d3ce4..272cdeee348 100644
--- a/swift/ql/test/extractor-tests/generated/decl/ConcreteFuncDecl/ConcreteFuncDecl.ql
+++ b/swift/ql/test/extractor-tests/generated/decl/ConcreteFuncDecl/ConcreteFuncDecl.ql
@@ -2,11 +2,19 @@
 import codeql.swift.elements
 import TestUtils
 
-from ConcreteFuncDecl x, ModuleDecl getModule, Type getInterfaceType, string getName
+from
+  ConcreteFuncDecl x, string hasSelfParam, int getNumberOfParams, string hasBody,
+  int getNumberOfGenericTypeParams, ModuleDecl getModule, Type getInterfaceType, string getName
 where
   toBeTested(x) and
   not x.isUnknown() and
+  (if x.hasSelfParam() then hasSelfParam = "yes" else hasSelfParam = "no") and
+  getNumberOfParams = x.getNumberOfParams() and
+  (if x.hasBody() then hasBody = "yes" else hasBody = "no") and
+  getNumberOfGenericTypeParams = x.getNumberOfGenericTypeParams() and
   getModule = x.getModule() and
   getInterfaceType = x.getInterfaceType() and
   getName = x.getName()
-select x, "getModule:", getModule, "getInterfaceType:", getInterfaceType, "getName:", getName
+select x, "hasSelfParam:", hasSelfParam, "getNumberOfParams:", getNumberOfParams, "hasBody:",
+  hasBody, "getNumberOfGenericTypeParams:", getNumberOfGenericTypeParams, "getModule:", getModule,
+  "getInterfaceType:", getInterfaceType, "getName:", getName
diff --git a/swift/ql/test/extractor-tests/generated/decl/ConcreteVarDecl/ConcreteVarDecl.ql b/swift/ql/test/extractor-tests/generated/decl/ConcreteVarDecl/ConcreteVarDecl.ql
index fc5b7c3289e..a757c9bda13 100644
--- a/swift/ql/test/extractor-tests/generated/decl/ConcreteVarDecl/ConcreteVarDecl.ql
+++ b/swift/ql/test/extractor-tests/generated/decl/ConcreteVarDecl/ConcreteVarDecl.ql
@@ -3,15 +3,53 @@ import codeql.swift.elements
 import TestUtils
 
 from
-  ConcreteVarDecl x, ModuleDecl getModule, Type getInterfaceType, string getName, Type getType,
-  int getIntroducerInt
+  ConcreteVarDecl x, ModuleDecl getModule, Type getInterfaceType, int getNumberOfAccessorDecls,
+  string getName, Type getType, string hasAttachedPropertyWrapperType, string hasParentPattern,
+  string hasParentInitializer, string hasPropertyWrapperBackingVarBinding,
+  string hasPropertyWrapperBackingVar, string hasPropertyWrapperProjectionVarBinding,
+  string hasPropertyWrapperProjectionVar, int getIntroducerInt
 where
   toBeTested(x) and
   not x.isUnknown() and
   getModule = x.getModule() and
   getInterfaceType = x.getInterfaceType() and
+  getNumberOfAccessorDecls = x.getNumberOfAccessorDecls() and
   getName = x.getName() and
   getType = x.getType() and
+  (
+    if x.hasAttachedPropertyWrapperType()
+    then hasAttachedPropertyWrapperType = "yes"
+    else hasAttachedPropertyWrapperType = "no"
+  ) and
+  (if x.hasParentPattern() then hasParentPattern = "yes" else hasParentPattern = "no") and
+  (if x.hasParentInitializer() then hasParentInitializer = "yes" else hasParentInitializer = "no") and
+  (
+    if x.hasPropertyWrapperBackingVarBinding()
+    then hasPropertyWrapperBackingVarBinding = "yes"
+    else hasPropertyWrapperBackingVarBinding = "no"
+  ) and
+  (
+    if x.hasPropertyWrapperBackingVar()
+    then hasPropertyWrapperBackingVar = "yes"
+    else hasPropertyWrapperBackingVar = "no"
+  ) and
+  (
+    if x.hasPropertyWrapperProjectionVarBinding()
+    then hasPropertyWrapperProjectionVarBinding = "yes"
+    else hasPropertyWrapperProjectionVarBinding = "no"
+  ) and
+  (
+    if x.hasPropertyWrapperProjectionVar()
+    then hasPropertyWrapperProjectionVar = "yes"
+    else hasPropertyWrapperProjectionVar = "no"
+  ) and
   getIntroducerInt = x.getIntroducerInt()
-select x, "getModule:", getModule, "getInterfaceType:", getInterfaceType, "getName:", getName,
-  "getType:", getType, "getIntroducerInt:", getIntroducerInt
+select x, "getModule:", getModule, "getInterfaceType:", getInterfaceType,
+  "getNumberOfAccessorDecls:", getNumberOfAccessorDecls, "getName:", getName, "getType:", getType,
+  "hasAttachedPropertyWrapperType:", hasAttachedPropertyWrapperType, "hasParentPattern:",
+  hasParentPattern, "hasParentInitializer:", hasParentInitializer,
+  "hasPropertyWrapperBackingVarBinding:", hasPropertyWrapperBackingVarBinding,
+  "hasPropertyWrapperBackingVar:", hasPropertyWrapperBackingVar,
+  "hasPropertyWrapperProjectionVarBinding:", hasPropertyWrapperProjectionVarBinding,
+  "hasPropertyWrapperProjectionVar:", hasPropertyWrapperProjectionVar, "getIntroducerInt:",
+  getIntroducerInt
diff --git a/swift/ql/test/extractor-tests/generated/decl/EnumDecl/EnumDecl.ql b/swift/ql/test/extractor-tests/generated/decl/EnumDecl/EnumDecl.ql
index 59e49fb9bbc..5d69df7665a 100644
--- a/swift/ql/test/extractor-tests/generated/decl/EnumDecl/EnumDecl.ql
+++ b/swift/ql/test/extractor-tests/generated/decl/EnumDecl/EnumDecl.ql
@@ -2,13 +2,19 @@
 import codeql.swift.elements
 import TestUtils
 
-from EnumDecl x, ModuleDecl getModule, Type getInterfaceType, string getName, Type getType
+from
+  EnumDecl x, int getNumberOfGenericTypeParams, ModuleDecl getModule, Type getInterfaceType,
+  string getName, int getNumberOfBaseTypes, int getNumberOfMembers, Type getType
 where
   toBeTested(x) and
   not x.isUnknown() and
+  getNumberOfGenericTypeParams = x.getNumberOfGenericTypeParams() and
   getModule = x.getModule() and
   getInterfaceType = x.getInterfaceType() and
   getName = x.getName() and
+  getNumberOfBaseTypes = x.getNumberOfBaseTypes() and
+  getNumberOfMembers = x.getNumberOfMembers() and
   getType = x.getType()
-select x, "getModule:", getModule, "getInterfaceType:", getInterfaceType, "getName:", getName,
-  "getType:", getType
+select x, "getNumberOfGenericTypeParams:", getNumberOfGenericTypeParams, "getModule:", getModule,
+  "getInterfaceType:", getInterfaceType, "getName:", getName, "getNumberOfBaseTypes:",
+  getNumberOfBaseTypes, "getNumberOfMembers:", getNumberOfMembers, "getType:", getType
diff --git a/swift/ql/test/extractor-tests/generated/decl/IfConfigDecl/IfConfigDecl.ql b/swift/ql/test/extractor-tests/generated/decl/IfConfigDecl/IfConfigDecl.ql
index b4502028b41..35ba16755ae 100644
--- a/swift/ql/test/extractor-tests/generated/decl/IfConfigDecl/IfConfigDecl.ql
+++ b/swift/ql/test/extractor-tests/generated/decl/IfConfigDecl/IfConfigDecl.ql
@@ -2,9 +2,10 @@
 import codeql.swift.elements
 import TestUtils
 
-from IfConfigDecl x, ModuleDecl getModule
+from IfConfigDecl x, ModuleDecl getModule, int getNumberOfActiveElements
 where
   toBeTested(x) and
   not x.isUnknown() and
-  getModule = x.getModule()
-select x, "getModule:", getModule
+  getModule = x.getModule() and
+  getNumberOfActiveElements = x.getNumberOfActiveElements()
+select x, "getModule:", getModule, "getNumberOfActiveElements:", getNumberOfActiveElements
diff --git a/swift/ql/test/extractor-tests/generated/decl/ImportDecl/ImportDecl.ql b/swift/ql/test/extractor-tests/generated/decl/ImportDecl/ImportDecl.ql
index d4651de1b39..7802bde60f1 100644
--- a/swift/ql/test/extractor-tests/generated/decl/ImportDecl/ImportDecl.ql
+++ b/swift/ql/test/extractor-tests/generated/decl/ImportDecl/ImportDecl.ql
@@ -2,10 +2,15 @@
 import codeql.swift.elements
 import TestUtils
 
-from ImportDecl x, ModuleDecl getModule, string isExported
+from
+  ImportDecl x, ModuleDecl getModule, string isExported, string hasImportedModule,
+  int getNumberOfDeclarations
 where
   toBeTested(x) and
   not x.isUnknown() and
   getModule = x.getModule() and
-  if x.isExported() then isExported = "yes" else isExported = "no"
-select x, "getModule:", getModule, "isExported:", isExported
+  (if x.isExported() then isExported = "yes" else isExported = "no") and
+  (if x.hasImportedModule() then hasImportedModule = "yes" else hasImportedModule = "no") and
+  getNumberOfDeclarations = x.getNumberOfDeclarations()
+select x, "getModule:", getModule, "isExported:", isExported, "hasImportedModule:",
+  hasImportedModule, "getNumberOfDeclarations:", getNumberOfDeclarations
diff --git a/swift/ql/test/extractor-tests/generated/decl/ModuleDecl/ModuleDecl.ql b/swift/ql/test/extractor-tests/generated/decl/ModuleDecl/ModuleDecl.ql
index 59aa8ec01e5..ccb46feb9ec 100644
--- a/swift/ql/test/extractor-tests/generated/decl/ModuleDecl/ModuleDecl.ql
+++ b/swift/ql/test/extractor-tests/generated/decl/ModuleDecl/ModuleDecl.ql
@@ -3,15 +3,21 @@ import codeql.swift.elements
 import TestUtils
 
 from
-  ModuleDecl x, ModuleDecl getModule, Type getInterfaceType, string getName, string isBuiltinModule,
-  string isSystemModule
+  ModuleDecl x, ModuleDecl getModule, Type getInterfaceType, string getName,
+  int getNumberOfBaseTypes, string isBuiltinModule, string isSystemModule,
+  int getNumberOfImportedModules, int getNumberOfExportedModules
 where
   toBeTested(x) and
   not x.isUnknown() and
   getModule = x.getModule() and
   getInterfaceType = x.getInterfaceType() and
   getName = x.getName() and
+  getNumberOfBaseTypes = x.getNumberOfBaseTypes() and
   (if x.isBuiltinModule() then isBuiltinModule = "yes" else isBuiltinModule = "no") and
-  if x.isSystemModule() then isSystemModule = "yes" else isSystemModule = "no"
+  (if x.isSystemModule() then isSystemModule = "yes" else isSystemModule = "no") and
+  getNumberOfImportedModules = x.getNumberOfImportedModules() and
+  getNumberOfExportedModules = x.getNumberOfExportedModules()
 select x, "getModule:", getModule, "getInterfaceType:", getInterfaceType, "getName:", getName,
-  "isBuiltinModule:", isBuiltinModule, "isSystemModule:", isSystemModule
+  "getNumberOfBaseTypes:", getNumberOfBaseTypes, "isBuiltinModule:", isBuiltinModule,
+  "isSystemModule:", isSystemModule, "getNumberOfImportedModules:", getNumberOfImportedModules,
+  "getNumberOfExportedModules:", getNumberOfExportedModules
diff --git a/swift/ql/test/extractor-tests/generated/decl/OpaqueTypeDecl/OpaqueTypeDecl.ql b/swift/ql/test/extractor-tests/generated/decl/OpaqueTypeDecl/OpaqueTypeDecl.ql
index a393ce61aeb..53bd74b470f 100644
--- a/swift/ql/test/extractor-tests/generated/decl/OpaqueTypeDecl/OpaqueTypeDecl.ql
+++ b/swift/ql/test/extractor-tests/generated/decl/OpaqueTypeDecl/OpaqueTypeDecl.ql
@@ -3,14 +3,20 @@ import codeql.swift.elements
 import TestUtils
 
 from
-  OpaqueTypeDecl x, ModuleDecl getModule, Type getInterfaceType, string getName,
-  ValueDecl getNamingDeclaration
+  OpaqueTypeDecl x, int getNumberOfGenericTypeParams, ModuleDecl getModule, Type getInterfaceType,
+  string getName, int getNumberOfBaseTypes, ValueDecl getNamingDeclaration,
+  int getNumberOfOpaqueGenericParams
 where
   toBeTested(x) and
   not x.isUnknown() and
+  getNumberOfGenericTypeParams = x.getNumberOfGenericTypeParams() and
   getModule = x.getModule() and
   getInterfaceType = x.getInterfaceType() and
   getName = x.getName() and
-  getNamingDeclaration = x.getNamingDeclaration()
-select x, "getModule:", getModule, "getInterfaceType:", getInterfaceType, "getName:", getName,
-  "getNamingDeclaration:", getNamingDeclaration
+  getNumberOfBaseTypes = x.getNumberOfBaseTypes() and
+  getNamingDeclaration = x.getNamingDeclaration() and
+  getNumberOfOpaqueGenericParams = x.getNumberOfOpaqueGenericParams()
+select x, "getNumberOfGenericTypeParams:", getNumberOfGenericTypeParams, "getModule:", getModule,
+  "getInterfaceType:", getInterfaceType, "getName:", getName, "getNumberOfBaseTypes:",
+  getNumberOfBaseTypes, "getNamingDeclaration:", getNamingDeclaration,
+  "getNumberOfOpaqueGenericParams:", getNumberOfOpaqueGenericParams
diff --git a/swift/ql/test/extractor-tests/generated/decl/ParamDecl/ParamDecl.ql b/swift/ql/test/extractor-tests/generated/decl/ParamDecl/ParamDecl.ql
index ff2d11741c5..7d3fb4e5b40 100644
--- a/swift/ql/test/extractor-tests/generated/decl/ParamDecl/ParamDecl.ql
+++ b/swift/ql/test/extractor-tests/generated/decl/ParamDecl/ParamDecl.ql
@@ -3,15 +3,63 @@ import codeql.swift.elements
 import TestUtils
 
 from
-  ParamDecl x, ModuleDecl getModule, Type getInterfaceType, string getName, Type getType,
-  string isInout
+  ParamDecl x, ModuleDecl getModule, Type getInterfaceType, int getNumberOfAccessorDecls,
+  string getName, Type getType, string hasAttachedPropertyWrapperType, string hasParentPattern,
+  string hasParentInitializer, string hasPropertyWrapperBackingVarBinding,
+  string hasPropertyWrapperBackingVar, string hasPropertyWrapperProjectionVarBinding,
+  string hasPropertyWrapperProjectionVar, string isInout,
+  string hasPropertyWrapperLocalWrappedVarBinding, string hasPropertyWrapperLocalWrappedVar
 where
   toBeTested(x) and
   not x.isUnknown() and
   getModule = x.getModule() and
   getInterfaceType = x.getInterfaceType() and
+  getNumberOfAccessorDecls = x.getNumberOfAccessorDecls() and
   getName = x.getName() and
   getType = x.getType() and
-  if x.isInout() then isInout = "yes" else isInout = "no"
-select x, "getModule:", getModule, "getInterfaceType:", getInterfaceType, "getName:", getName,
-  "getType:", getType, "isInout:", isInout
+  (
+    if x.hasAttachedPropertyWrapperType()
+    then hasAttachedPropertyWrapperType = "yes"
+    else hasAttachedPropertyWrapperType = "no"
+  ) and
+  (if x.hasParentPattern() then hasParentPattern = "yes" else hasParentPattern = "no") and
+  (if x.hasParentInitializer() then hasParentInitializer = "yes" else hasParentInitializer = "no") and
+  (
+    if x.hasPropertyWrapperBackingVarBinding()
+    then hasPropertyWrapperBackingVarBinding = "yes"
+    else hasPropertyWrapperBackingVarBinding = "no"
+  ) and
+  (
+    if x.hasPropertyWrapperBackingVar()
+    then hasPropertyWrapperBackingVar = "yes"
+    else hasPropertyWrapperBackingVar = "no"
+  ) and
+  (
+    if x.hasPropertyWrapperProjectionVarBinding()
+    then hasPropertyWrapperProjectionVarBinding = "yes"
+    else hasPropertyWrapperProjectionVarBinding = "no"
+  ) and
+  (
+    if x.hasPropertyWrapperProjectionVar()
+    then hasPropertyWrapperProjectionVar = "yes"
+    else hasPropertyWrapperProjectionVar = "no"
+  ) and
+  (if x.isInout() then isInout = "yes" else isInout = "no") and
+  (
+    if x.hasPropertyWrapperLocalWrappedVarBinding()
+    then hasPropertyWrapperLocalWrappedVarBinding = "yes"
+    else hasPropertyWrapperLocalWrappedVarBinding = "no"
+  ) and
+  if x.hasPropertyWrapperLocalWrappedVar()
+  then hasPropertyWrapperLocalWrappedVar = "yes"
+  else hasPropertyWrapperLocalWrappedVar = "no"
+select x, "getModule:", getModule, "getInterfaceType:", getInterfaceType,
+  "getNumberOfAccessorDecls:", getNumberOfAccessorDecls, "getName:", getName, "getType:", getType,
+  "hasAttachedPropertyWrapperType:", hasAttachedPropertyWrapperType, "hasParentPattern:",
+  hasParentPattern, "hasParentInitializer:", hasParentInitializer,
+  "hasPropertyWrapperBackingVarBinding:", hasPropertyWrapperBackingVarBinding,
+  "hasPropertyWrapperBackingVar:", hasPropertyWrapperBackingVar,
+  "hasPropertyWrapperProjectionVarBinding:", hasPropertyWrapperProjectionVarBinding,
+  "hasPropertyWrapperProjectionVar:", hasPropertyWrapperProjectionVar, "isInout:", isInout,
+  "hasPropertyWrapperLocalWrappedVarBinding:", hasPropertyWrapperLocalWrappedVarBinding,
+  "hasPropertyWrapperLocalWrappedVar:", hasPropertyWrapperLocalWrappedVar
diff --git a/swift/ql/test/extractor-tests/generated/expr/AppliedPropertyWrapperExpr/AppliedPropertyWrapperExpr.ql b/swift/ql/test/extractor-tests/generated/expr/AppliedPropertyWrapperExpr/AppliedPropertyWrapperExpr.ql
index ffeb6db9923..6c73b2336ab 100644
--- a/swift/ql/test/extractor-tests/generated/expr/AppliedPropertyWrapperExpr/AppliedPropertyWrapperExpr.ql
+++ b/swift/ql/test/extractor-tests/generated/expr/AppliedPropertyWrapperExpr/AppliedPropertyWrapperExpr.ql
@@ -2,11 +2,12 @@
 import codeql.swift.elements
 import TestUtils
 
-from AppliedPropertyWrapperExpr x, int getKind, Expr getValue, ParamDecl getParam
+from AppliedPropertyWrapperExpr x, string hasType, int getKind, Expr getValue, ParamDecl getParam
 where
   toBeTested(x) and
   not x.isUnknown() and
+  (if x.hasType() then hasType = "yes" else hasType = "no") and
   getKind = x.getKind() and
   getValue = x.getValue() and
   getParam = x.getParam()
-select x, "getKind:", getKind, "getValue:", getValue, "getParam:", getParam
+select x, "hasType:", hasType, "getKind:", getKind, "getValue:", getValue, "getParam:", getParam
diff --git a/swift/ql/test/extractor-tests/generated/expr/ConstructorRefCallExpr/ConstructorRefCallExpr.ql b/swift/ql/test/extractor-tests/generated/expr/ConstructorRefCallExpr/ConstructorRefCallExpr.ql
index 0b88c75f62f..90162a53909 100644
--- a/swift/ql/test/extractor-tests/generated/expr/ConstructorRefCallExpr/ConstructorRefCallExpr.ql
+++ b/swift/ql/test/extractor-tests/generated/expr/ConstructorRefCallExpr/ConstructorRefCallExpr.ql
@@ -2,10 +2,14 @@
 import codeql.swift.elements
 import TestUtils
 
-from ConstructorRefCallExpr x, Expr getFunction, Expr getBase
+from
+  ConstructorRefCallExpr x, string hasType, Expr getFunction, int getNumberOfArguments, Expr getBase
 where
   toBeTested(x) and
   not x.isUnknown() and
+  (if x.hasType() then hasType = "yes" else hasType = "no") and
   getFunction = x.getFunction() and
+  getNumberOfArguments = x.getNumberOfArguments() and
   getBase = x.getBase()
-select x, "getFunction:", getFunction, "getBase:", getBase
+select x, "hasType:", hasType, "getFunction:", getFunction, "getNumberOfArguments:",
+  getNumberOfArguments, "getBase:", getBase
diff --git a/swift/ql/test/extractor-tests/generated/expr/DotSyntaxCallExpr/DotSyntaxCallExpr.ql b/swift/ql/test/extractor-tests/generated/expr/DotSyntaxCallExpr/DotSyntaxCallExpr.ql
index 775b6f0f34f..f7ab2739e2d 100644
--- a/swift/ql/test/extractor-tests/generated/expr/DotSyntaxCallExpr/DotSyntaxCallExpr.ql
+++ b/swift/ql/test/extractor-tests/generated/expr/DotSyntaxCallExpr/DotSyntaxCallExpr.ql
@@ -2,10 +2,13 @@
 import codeql.swift.elements
 import TestUtils
 
-from DotSyntaxCallExpr x, Expr getFunction, Expr getBase
+from DotSyntaxCallExpr x, string hasType, Expr getFunction, int getNumberOfArguments, Expr getBase
 where
   toBeTested(x) and
   not x.isUnknown() and
+  (if x.hasType() then hasType = "yes" else hasType = "no") and
   getFunction = x.getFunction() and
+  getNumberOfArguments = x.getNumberOfArguments() and
   getBase = x.getBase()
-select x, "getFunction:", getFunction, "getBase:", getBase
+select x, "hasType:", hasType, "getFunction:", getFunction, "getNumberOfArguments:",
+  getNumberOfArguments, "getBase:", getBase
diff --git a/swift/ql/test/extractor-tests/generated/expr/DynamicLookupExpr/DynamicLookupExpr.ql b/swift/ql/test/extractor-tests/generated/expr/DynamicLookupExpr/DynamicLookupExpr.ql
index efb14e96487..dbec1291ff0 100644
--- a/swift/ql/test/extractor-tests/generated/expr/DynamicLookupExpr/DynamicLookupExpr.ql
+++ b/swift/ql/test/extractor-tests/generated/expr/DynamicLookupExpr/DynamicLookupExpr.ql
@@ -2,9 +2,11 @@
 import codeql.swift.elements
 import TestUtils
 
-from DynamicLookupExpr x, Expr getBase
+from DynamicLookupExpr x, string hasType, Expr getBase, string hasMember
 where
   toBeTested(x) and
   not x.isUnknown() and
-  getBase = x.getBase()
-select x, x.getPrimaryQlClasses(), "getBase:", getBase
+  (if x.hasType() then hasType = "yes" else hasType = "no") and
+  getBase = x.getBase() and
+  if x.hasMember() then hasMember = "yes" else hasMember = "no"
+select x, x.getPrimaryQlClasses(), "hasType:", hasType, "getBase:", getBase, "hasMember:", hasMember
diff --git a/swift/ql/test/extractor-tests/generated/expr/EnumIsCaseExpr/EnumIsCaseExpr.ql b/swift/ql/test/extractor-tests/generated/expr/EnumIsCaseExpr/EnumIsCaseExpr.ql
index 9c3340d4ff5..7dfff901eef 100644
--- a/swift/ql/test/extractor-tests/generated/expr/EnumIsCaseExpr/EnumIsCaseExpr.ql
+++ b/swift/ql/test/extractor-tests/generated/expr/EnumIsCaseExpr/EnumIsCaseExpr.ql
@@ -2,10 +2,11 @@
 import codeql.swift.elements
 import TestUtils
 
-from EnumIsCaseExpr x, Expr getSubExpr, EnumElementDecl getElement
+from EnumIsCaseExpr x, string hasType, Expr getSubExpr, EnumElementDecl getElement
 where
   toBeTested(x) and
   not x.isUnknown() and
+  (if x.hasType() then hasType = "yes" else hasType = "no") and
   getSubExpr = x.getSubExpr() and
   getElement = x.getElement()
-select x, "getSubExpr:", getSubExpr, "getElement:", getElement
+select x, "hasType:", hasType, "getSubExpr:", getSubExpr, "getElement:", getElement
diff --git a/swift/ql/test/extractor-tests/generated/expr/IdentityExpr/IdentityExpr.ql b/swift/ql/test/extractor-tests/generated/expr/IdentityExpr/IdentityExpr.ql
index 919dd1e50d8..c4888e45367 100644
--- a/swift/ql/test/extractor-tests/generated/expr/IdentityExpr/IdentityExpr.ql
+++ b/swift/ql/test/extractor-tests/generated/expr/IdentityExpr/IdentityExpr.ql
@@ -2,9 +2,10 @@
 import codeql.swift.elements
 import TestUtils
 
-from IdentityExpr x, Expr getSubExpr
+from IdentityExpr x, string hasType, Expr getSubExpr
 where
   toBeTested(x) and
   not x.isUnknown() and
+  (if x.hasType() then hasType = "yes" else hasType = "no") and
   getSubExpr = x.getSubExpr()
-select x, x.getPrimaryQlClasses(), "getSubExpr:", getSubExpr
+select x, x.getPrimaryQlClasses(), "hasType:", hasType, "getSubExpr:", getSubExpr
diff --git a/swift/ql/test/extractor-tests/generated/expr/ImplicitConversionExpr/ImplicitConversionExpr.ql b/swift/ql/test/extractor-tests/generated/expr/ImplicitConversionExpr/ImplicitConversionExpr.ql
index 61fbedd343a..5cd395b6278 100644
--- a/swift/ql/test/extractor-tests/generated/expr/ImplicitConversionExpr/ImplicitConversionExpr.ql
+++ b/swift/ql/test/extractor-tests/generated/expr/ImplicitConversionExpr/ImplicitConversionExpr.ql
@@ -2,9 +2,10 @@
 import codeql.swift.elements
 import TestUtils
 
-from ImplicitConversionExpr x, Expr getSubExpr
+from ImplicitConversionExpr x, string hasType, Expr getSubExpr
 where
   toBeTested(x) and
   not x.isUnknown() and
+  (if x.hasType() then hasType = "yes" else hasType = "no") and
   getSubExpr = x.getSubExpr()
-select x, x.getPrimaryQlClasses(), "getSubExpr:", getSubExpr
+select x, x.getPrimaryQlClasses(), "hasType:", hasType, "getSubExpr:", getSubExpr
diff --git a/swift/ql/test/extractor-tests/generated/expr/MethodRefExpr/MethodRefExpr.ql b/swift/ql/test/extractor-tests/generated/expr/MethodRefExpr/MethodRefExpr.ql
index b8f9243c3b7..dcbba30fb5f 100644
--- a/swift/ql/test/extractor-tests/generated/expr/MethodRefExpr/MethodRefExpr.ql
+++ b/swift/ql/test/extractor-tests/generated/expr/MethodRefExpr/MethodRefExpr.ql
@@ -2,9 +2,11 @@
 import codeql.swift.elements
 import TestUtils
 
-from MethodRefExpr x, Expr getBase
+from MethodRefExpr x, string hasType, Expr getBase, string hasMember
 where
   toBeTested(x) and
   not x.isUnknown() and
-  getBase = x.getBase()
-select x, "getBase:", getBase
+  (if x.hasType() then hasType = "yes" else hasType = "no") and
+  getBase = x.getBase() and
+  if x.hasMember() then hasMember = "yes" else hasMember = "no"
+select x, "hasType:", hasType, "getBase:", getBase, "hasMember:", hasMember
diff --git a/swift/ql/test/extractor-tests/generated/expr/ObjectLiteralExpr/ObjectLiteralExpr.ql b/swift/ql/test/extractor-tests/generated/expr/ObjectLiteralExpr/ObjectLiteralExpr.ql
index 461b4588263..161c455ae29 100644
--- a/swift/ql/test/extractor-tests/generated/expr/ObjectLiteralExpr/ObjectLiteralExpr.ql
+++ b/swift/ql/test/extractor-tests/generated/expr/ObjectLiteralExpr/ObjectLiteralExpr.ql
@@ -2,9 +2,11 @@
 import codeql.swift.elements
 import TestUtils
 
-from ObjectLiteralExpr x, int getKind
+from ObjectLiteralExpr x, string hasType, int getKind, int getNumberOfArguments
 where
   toBeTested(x) and
   not x.isUnknown() and
-  getKind = x.getKind()
-select x, "getKind:", getKind
+  (if x.hasType() then hasType = "yes" else hasType = "no") and
+  getKind = x.getKind() and
+  getNumberOfArguments = x.getNumberOfArguments()
+select x, "hasType:", hasType, "getKind:", getKind, "getNumberOfArguments:", getNumberOfArguments
diff --git a/swift/ql/test/extractor-tests/generated/expr/PostfixUnaryExpr/PostfixUnaryExpr.ql b/swift/ql/test/extractor-tests/generated/expr/PostfixUnaryExpr/PostfixUnaryExpr.ql
index 9f9e0fc6042..6e7cf71b9a2 100644
--- a/swift/ql/test/extractor-tests/generated/expr/PostfixUnaryExpr/PostfixUnaryExpr.ql
+++ b/swift/ql/test/extractor-tests/generated/expr/PostfixUnaryExpr/PostfixUnaryExpr.ql
@@ -2,9 +2,12 @@
 import codeql.swift.elements
 import TestUtils
 
-from PostfixUnaryExpr x, Expr getFunction
+from PostfixUnaryExpr x, string hasType, Expr getFunction, int getNumberOfArguments
 where
   toBeTested(x) and
   not x.isUnknown() and
-  getFunction = x.getFunction()
-select x, "getFunction:", getFunction
+  (if x.hasType() then hasType = "yes" else hasType = "no") and
+  getFunction = x.getFunction() and
+  getNumberOfArguments = x.getNumberOfArguments()
+select x, "hasType:", hasType, "getFunction:", getFunction, "getNumberOfArguments:",
+  getNumberOfArguments
diff --git a/swift/ql/test/extractor-tests/generated/expr/PropertyWrapperValuePlaceholderExpr/PropertyWrapperValuePlaceholderExpr.ql b/swift/ql/test/extractor-tests/generated/expr/PropertyWrapperValuePlaceholderExpr/PropertyWrapperValuePlaceholderExpr.ql
index a9a61510ecc..2ca1ad98642 100644
--- a/swift/ql/test/extractor-tests/generated/expr/PropertyWrapperValuePlaceholderExpr/PropertyWrapperValuePlaceholderExpr.ql
+++ b/swift/ql/test/extractor-tests/generated/expr/PropertyWrapperValuePlaceholderExpr/PropertyWrapperValuePlaceholderExpr.ql
@@ -2,9 +2,14 @@
 import codeql.swift.elements
 import TestUtils
 
-from PropertyWrapperValuePlaceholderExpr x, OpaqueValueExpr getPlaceholder
+from
+  PropertyWrapperValuePlaceholderExpr x, string hasType, string hasWrappedValue,
+  OpaqueValueExpr getPlaceholder
 where
   toBeTested(x) and
   not x.isUnknown() and
+  (if x.hasType() then hasType = "yes" else hasType = "no") and
+  (if x.hasWrappedValue() then hasWrappedValue = "yes" else hasWrappedValue = "no") and
   getPlaceholder = x.getPlaceholder()
-select x, "getPlaceholder:", getPlaceholder
+select x, "hasType:", hasType, "hasWrappedValue:", hasWrappedValue, "getPlaceholder:",
+  getPlaceholder
diff --git a/swift/ql/test/extractor-tests/generated/type/BuiltinIntegerType/BuiltinIntegerType.ql b/swift/ql/test/extractor-tests/generated/type/BuiltinIntegerType/BuiltinIntegerType.ql
index 05131e5b9fd..fbb68b0f238 100644
--- a/swift/ql/test/extractor-tests/generated/type/BuiltinIntegerType/BuiltinIntegerType.ql
+++ b/swift/ql/test/extractor-tests/generated/type/BuiltinIntegerType/BuiltinIntegerType.ql
@@ -2,10 +2,11 @@
 import codeql.swift.elements
 import TestUtils
 
-from BuiltinIntegerType x, string getName, Type getCanonicalType
+from BuiltinIntegerType x, string getName, Type getCanonicalType, string hasWidth
 where
   toBeTested(x) and
   not x.isUnknown() and
   getName = x.getName() and
-  getCanonicalType = x.getCanonicalType()
-select x, "getName:", getName, "getCanonicalType:", getCanonicalType
+  getCanonicalType = x.getCanonicalType() and
+  if x.hasWidth() then hasWidth = "yes" else hasWidth = "no"
+select x, "getName:", getName, "getCanonicalType:", getCanonicalType, "hasWidth:", hasWidth
diff --git a/swift/ql/test/extractor-tests/generated/type/OpaqueTypeArchetypeType/OpaqueTypeArchetypeType.ql b/swift/ql/test/extractor-tests/generated/type/OpaqueTypeArchetypeType/OpaqueTypeArchetypeType.ql
index 5979099c9da..0b7c4aaed84 100644
--- a/swift/ql/test/extractor-tests/generated/type/OpaqueTypeArchetypeType/OpaqueTypeArchetypeType.ql
+++ b/swift/ql/test/extractor-tests/generated/type/OpaqueTypeArchetypeType/OpaqueTypeArchetypeType.ql
@@ -4,13 +4,16 @@ import TestUtils
 
 from
   OpaqueTypeArchetypeType x, string getName, Type getCanonicalType, Type getInterfaceType,
-  OpaqueTypeDecl getDeclaration
+  string hasSuperclass, int getNumberOfProtocols, OpaqueTypeDecl getDeclaration
 where
   toBeTested(x) and
   not x.isUnknown() and
   getName = x.getName() and
   getCanonicalType = x.getCanonicalType() and
   getInterfaceType = x.getInterfaceType() and
+  (if x.hasSuperclass() then hasSuperclass = "yes" else hasSuperclass = "no") and
+  getNumberOfProtocols = x.getNumberOfProtocols() and
   getDeclaration = x.getDeclaration()
 select x, "getName:", getName, "getCanonicalType:", getCanonicalType, "getInterfaceType:",
-  getInterfaceType, "getDeclaration:", getDeclaration
+  getInterfaceType, "hasSuperclass:", hasSuperclass, "getNumberOfProtocols:", getNumberOfProtocols,
+  "getDeclaration:", getDeclaration
diff --git a/swift/ql/test/extractor-tests/generated/type/OpenedArchetypeType/OpenedArchetypeType.ql b/swift/ql/test/extractor-tests/generated/type/OpenedArchetypeType/OpenedArchetypeType.ql
index b558c08f666..a5d633e900e 100644
--- a/swift/ql/test/extractor-tests/generated/type/OpenedArchetypeType/OpenedArchetypeType.ql
+++ b/swift/ql/test/extractor-tests/generated/type/OpenedArchetypeType/OpenedArchetypeType.ql
@@ -2,12 +2,16 @@
 import codeql.swift.elements
 import TestUtils
 
-from OpenedArchetypeType x, string getName, Type getCanonicalType, Type getInterfaceType
+from
+  OpenedArchetypeType x, string getName, Type getCanonicalType, Type getInterfaceType,
+  string hasSuperclass, int getNumberOfProtocols
 where
   toBeTested(x) and
   not x.isUnknown() and
   getName = x.getName() and
   getCanonicalType = x.getCanonicalType() and
-  getInterfaceType = x.getInterfaceType()
+  getInterfaceType = x.getInterfaceType() and
+  (if x.hasSuperclass() then hasSuperclass = "yes" else hasSuperclass = "no") and
+  getNumberOfProtocols = x.getNumberOfProtocols()
 select x, "getName:", getName, "getCanonicalType:", getCanonicalType, "getInterfaceType:",
-  getInterfaceType
+  getInterfaceType, "hasSuperclass:", hasSuperclass, "getNumberOfProtocols:", getNumberOfProtocols
diff --git a/swift/ql/test/extractor-tests/generated/type/ParameterizedProtocolType/ParameterizedProtocolType.ql b/swift/ql/test/extractor-tests/generated/type/ParameterizedProtocolType/ParameterizedProtocolType.ql
index 113af23a9f3..94640251813 100644
--- a/swift/ql/test/extractor-tests/generated/type/ParameterizedProtocolType/ParameterizedProtocolType.ql
+++ b/swift/ql/test/extractor-tests/generated/type/ParameterizedProtocolType/ParameterizedProtocolType.ql
@@ -2,11 +2,15 @@
 import codeql.swift.elements
 import TestUtils
 
-from ParameterizedProtocolType x, string getName, Type getCanonicalType, ProtocolType getBase
+from
+  ParameterizedProtocolType x, string getName, Type getCanonicalType, ProtocolType getBase,
+  int getNumberOfArgs
 where
   toBeTested(x) and
   not x.isUnknown() and
   getName = x.getName() and
   getCanonicalType = x.getCanonicalType() and
-  getBase = x.getBase()
-select x, "getName:", getName, "getCanonicalType:", getCanonicalType, "getBase:", getBase
+  getBase = x.getBase() and
+  getNumberOfArgs = x.getNumberOfArgs()
+select x, "getName:", getName, "getCanonicalType:", getCanonicalType, "getBase:", getBase,
+  "getNumberOfArgs:", getNumberOfArgs
diff --git a/swift/ql/test/extractor-tests/generated/type/PrimaryArchetypeType/PrimaryArchetypeType.ql b/swift/ql/test/extractor-tests/generated/type/PrimaryArchetypeType/PrimaryArchetypeType.ql
index 32cb2204418..84dc9d132c0 100644
--- a/swift/ql/test/extractor-tests/generated/type/PrimaryArchetypeType/PrimaryArchetypeType.ql
+++ b/swift/ql/test/extractor-tests/generated/type/PrimaryArchetypeType/PrimaryArchetypeType.ql
@@ -2,12 +2,16 @@
 import codeql.swift.elements
 import TestUtils
 
-from PrimaryArchetypeType x, string getName, Type getCanonicalType, Type getInterfaceType
+from
+  PrimaryArchetypeType x, string getName, Type getCanonicalType, Type getInterfaceType,
+  string hasSuperclass, int getNumberOfProtocols
 where
   toBeTested(x) and
   not x.isUnknown() and
   getName = x.getName() and
   getCanonicalType = x.getCanonicalType() and
-  getInterfaceType = x.getInterfaceType()
+  getInterfaceType = x.getInterfaceType() and
+  (if x.hasSuperclass() then hasSuperclass = "yes" else hasSuperclass = "no") and
+  getNumberOfProtocols = x.getNumberOfProtocols()
 select x, "getName:", getName, "getCanonicalType:", getCanonicalType, "getInterfaceType:",
-  getInterfaceType
+  getInterfaceType, "hasSuperclass:", hasSuperclass, "getNumberOfProtocols:", getNumberOfProtocols
diff --git a/swift/ql/test/extractor-tests/generated/type/ProtocolCompositionType/ProtocolCompositionType.ql b/swift/ql/test/extractor-tests/generated/type/ProtocolCompositionType/ProtocolCompositionType.ql
index 8d3b769eff5..5530b437811 100644
--- a/swift/ql/test/extractor-tests/generated/type/ProtocolCompositionType/ProtocolCompositionType.ql
+++ b/swift/ql/test/extractor-tests/generated/type/ProtocolCompositionType/ProtocolCompositionType.ql
@@ -2,10 +2,12 @@
 import codeql.swift.elements
 import TestUtils
 
-from ProtocolCompositionType x, string getName, Type getCanonicalType
+from ProtocolCompositionType x, string getName, Type getCanonicalType, int getNumberOfMembers
 where
   toBeTested(x) and
   not x.isUnknown() and
   getName = x.getName() and
-  getCanonicalType = x.getCanonicalType()
-select x, "getName:", getName, "getCanonicalType:", getCanonicalType
+  getCanonicalType = x.getCanonicalType() and
+  getNumberOfMembers = x.getNumberOfMembers()
+select x, "getName:", getName, "getCanonicalType:", getCanonicalType, "getNumberOfMembers:",
+  getNumberOfMembers

From 9b89ded908dcba64f573a20996d870c4bf08691a Mon Sep 17 00:00:00 2001
From: Paolo Tranquilli <redsun82@github.com>
Date: Wed, 7 Dec 2022 13:22:55 +0100
Subject: [PATCH 1119/1420] Swift: accept test changes

---
 .../decl/AccessorDecl/AccessorDecl.expected   |  72 +++++-----
 .../AssociatedTypeDecl.expected               |   4 +-
 .../decl/ClassDecl/ClassDecl.expected         |   6 +-
 .../ConcreteFuncDecl.expected                 |  10 +-
 .../ConcreteVarDecl/ConcreteVarDecl.expected  |  44 +++---
 .../generated/decl/EnumDecl/EnumDecl.expected |   8 +-
 .../decl/IfConfigDecl/IfConfigDecl.expected   |   2 +-
 .../decl/ImportDecl/ImportDecl.expected       |  10 +-
 .../decl/ModuleDecl/ModuleDecl.expected       |   6 +-
 .../OpaqueTypeDecl/OpaqueTypeDecl.expected    |   8 +-
 .../decl/ParamDecl/ParamDecl.expected         | 126 +++++++++---------
 .../AppliedPropertyWrapperExpr.expected       |   6 +-
 .../ConstructorRefCallExpr.expected           |   6 +-
 .../DotSyntaxCallExpr.expected                |   6 +-
 .../DynamicLookupExpr.expected                |   4 +-
 .../EnumIsCaseExpr/EnumIsCaseExpr.expected    |  20 +--
 .../expr/IdentityExpr/IdentityExpr.expected   |  16 +--
 .../ImplicitConversionExpr.expected           |  10 +-
 .../expr/MethodRefExpr/MethodRefExpr.expected |  12 +-
 .../ObjectLiteralExpr.expected                |   6 +-
 .../PostfixUnaryExpr.expected                 |   4 +-
 ...opertyWrapperValuePlaceholderExpr.expected |   2 +-
 .../BuiltinIntegerType.expected               |  10 +-
 .../OpaqueTypeArchetypeType.expected          |   8 +-
 .../OpenedArchetypeType.expected              |   2 +-
 .../ParameterizedProtocolType.expected        |   2 +-
 .../PrimaryArchetypeType.expected             |   8 +-
 .../ProtocolCompositionType.expected          |   8 +-
 28 files changed, 213 insertions(+), 213 deletions(-)

diff --git a/swift/ql/test/extractor-tests/generated/decl/AccessorDecl/AccessorDecl.expected b/swift/ql/test/extractor-tests/generated/decl/AccessorDecl/AccessorDecl.expected
index a93757f0e0c..e6d7e2ccee4 100644
--- a/swift/ql/test/extractor-tests/generated/decl/AccessorDecl/AccessorDecl.expected
+++ b/swift/ql/test/extractor-tests/generated/decl/AccessorDecl/AccessorDecl.expected
@@ -1,36 +1,36 @@
-| accessors.swift:2:9:2:9 | _modify | getModule: | file://:0:0:0:0 | accessors | getInterfaceType: | (inout Foo) -> () -> () | getName: | (unnamed function decl) | isGetter: | no | isSetter: | no | isWillSet: | no | isDidSet: | no | isRead: | no | isModify: | yes | isUnsafeAddress: | no | isUnsafeMutableAddress: | no |
-| accessors.swift:2:9:2:9 | get | getModule: | file://:0:0:0:0 | accessors | getInterfaceType: | (Foo) -> () -> Int | getName: | (unnamed function decl) | isGetter: | yes | isSetter: | no | isWillSet: | no | isDidSet: | no | isRead: | no | isModify: | no | isUnsafeAddress: | no | isUnsafeMutableAddress: | no |
-| accessors.swift:2:9:2:9 | set | getModule: | file://:0:0:0:0 | accessors | getInterfaceType: | (inout Foo) -> (Int) -> () | getName: | (unnamed function decl) | isGetter: | no | isSetter: | yes | isWillSet: | no | isDidSet: | no | isRead: | no | isModify: | no | isUnsafeAddress: | no | isUnsafeMutableAddress: | no |
-| accessors.swift:3:9:3:9 | _modify | getModule: | file://:0:0:0:0 | accessors | getInterfaceType: | (inout Foo) -> () -> () | getName: | (unnamed function decl) | isGetter: | no | isSetter: | no | isWillSet: | no | isDidSet: | no | isRead: | no | isModify: | yes | isUnsafeAddress: | no | isUnsafeMutableAddress: | no |
-| accessors.swift:4:9:4:28 | get | getModule: | file://:0:0:0:0 | accessors | getInterfaceType: | (Foo) -> () -> Int | getName: | (unnamed function decl) | isGetter: | yes | isSetter: | no | isWillSet: | no | isDidSet: | no | isRead: | no | isModify: | no | isUnsafeAddress: | no | isUnsafeMutableAddress: | no |
-| accessors.swift:5:9:5:42 | set | getModule: | file://:0:0:0:0 | accessors | getInterfaceType: | (inout Foo) -> (Int) -> () | getName: | (unnamed function decl) | isGetter: | no | isSetter: | yes | isWillSet: | no | isDidSet: | no | isRead: | no | isModify: | no | isUnsafeAddress: | no | isUnsafeMutableAddress: | no |
-| accessors.swift:7:9:7:9 | _modify | getModule: | file://:0:0:0:0 | accessors | getInterfaceType: | (inout Foo) -> () -> () | getName: | (unnamed function decl) | isGetter: | no | isSetter: | no | isWillSet: | no | isDidSet: | no | isRead: | no | isModify: | yes | isUnsafeAddress: | no | isUnsafeMutableAddress: | no |
-| accessors.swift:7:9:7:9 | get | getModule: | file://:0:0:0:0 | accessors | getInterfaceType: | (Foo) -> () -> Int | getName: | (unnamed function decl) | isGetter: | yes | isSetter: | no | isWillSet: | no | isDidSet: | no | isRead: | no | isModify: | no | isUnsafeAddress: | no | isUnsafeMutableAddress: | no |
-| accessors.swift:7:9:7:9 | set | getModule: | file://:0:0:0:0 | accessors | getInterfaceType: | (inout Foo) -> (Int) -> () | getName: | (unnamed function decl) | isGetter: | no | isSetter: | yes | isWillSet: | no | isDidSet: | no | isRead: | no | isModify: | no | isUnsafeAddress: | no | isUnsafeMutableAddress: | no |
-| accessors.swift:8:9:8:29 | willSet | getModule: | file://:0:0:0:0 | accessors | getInterfaceType: | (inout Foo) -> (Int) -> () | getName: | (unnamed function decl) | isGetter: | no | isSetter: | no | isWillSet: | yes | isDidSet: | no | isRead: | no | isModify: | no | isUnsafeAddress: | no | isUnsafeMutableAddress: | no |
-| accessors.swift:11:9:11:9 | _modify | getModule: | file://:0:0:0:0 | accessors | getInterfaceType: | (inout Foo) -> () -> () | getName: | (unnamed function decl) | isGetter: | no | isSetter: | no | isWillSet: | no | isDidSet: | no | isRead: | no | isModify: | yes | isUnsafeAddress: | no | isUnsafeMutableAddress: | no |
-| accessors.swift:11:9:11:9 | get | getModule: | file://:0:0:0:0 | accessors | getInterfaceType: | (Foo) -> () -> Int | getName: | (unnamed function decl) | isGetter: | yes | isSetter: | no | isWillSet: | no | isDidSet: | no | isRead: | no | isModify: | no | isUnsafeAddress: | no | isUnsafeMutableAddress: | no |
-| accessors.swift:11:9:11:9 | set | getModule: | file://:0:0:0:0 | accessors | getInterfaceType: | (inout Foo) -> (Int) -> () | getName: | (unnamed function decl) | isGetter: | no | isSetter: | yes | isWillSet: | no | isDidSet: | no | isRead: | no | isModify: | no | isUnsafeAddress: | no | isUnsafeMutableAddress: | no |
-| accessors.swift:12:9:12:19 | willSet | getModule: | file://:0:0:0:0 | accessors | getInterfaceType: | (inout Foo) -> (Int) -> () | getName: | (unnamed function decl) | isGetter: | no | isSetter: | no | isWillSet: | yes | isDidSet: | no | isRead: | no | isModify: | no | isUnsafeAddress: | no | isUnsafeMutableAddress: | no |
-| accessors.swift:15:9:15:9 | _modify | getModule: | file://:0:0:0:0 | accessors | getInterfaceType: | (inout Foo) -> () -> () | getName: | (unnamed function decl) | isGetter: | no | isSetter: | no | isWillSet: | no | isDidSet: | no | isRead: | no | isModify: | yes | isUnsafeAddress: | no | isUnsafeMutableAddress: | no |
-| accessors.swift:15:9:15:9 | get | getModule: | file://:0:0:0:0 | accessors | getInterfaceType: | (Foo) -> () -> Int | getName: | (unnamed function decl) | isGetter: | yes | isSetter: | no | isWillSet: | no | isDidSet: | no | isRead: | no | isModify: | no | isUnsafeAddress: | no | isUnsafeMutableAddress: | no |
-| accessors.swift:15:9:15:9 | set | getModule: | file://:0:0:0:0 | accessors | getInterfaceType: | (inout Foo) -> (Int) -> () | getName: | (unnamed function decl) | isGetter: | no | isSetter: | yes | isWillSet: | no | isDidSet: | no | isRead: | no | isModify: | no | isUnsafeAddress: | no | isUnsafeMutableAddress: | no |
-| accessors.swift:16:9:16:28 | didSet | getModule: | file://:0:0:0:0 | accessors | getInterfaceType: | (inout Foo) -> (Int) -> () | getName: | (unnamed function decl) | isGetter: | no | isSetter: | no | isWillSet: | no | isDidSet: | yes | isRead: | no | isModify: | no | isUnsafeAddress: | no | isUnsafeMutableAddress: | no |
-| accessors.swift:19:9:19:9 | _modify | getModule: | file://:0:0:0:0 | accessors | getInterfaceType: | (inout Foo) -> () -> () | getName: | (unnamed function decl) | isGetter: | no | isSetter: | no | isWillSet: | no | isDidSet: | no | isRead: | no | isModify: | yes | isUnsafeAddress: | no | isUnsafeMutableAddress: | no |
-| accessors.swift:19:9:19:9 | get | getModule: | file://:0:0:0:0 | accessors | getInterfaceType: | (Foo) -> () -> Int | getName: | (unnamed function decl) | isGetter: | yes | isSetter: | no | isWillSet: | no | isDidSet: | no | isRead: | no | isModify: | no | isUnsafeAddress: | no | isUnsafeMutableAddress: | no |
-| accessors.swift:19:9:19:9 | set | getModule: | file://:0:0:0:0 | accessors | getInterfaceType: | (inout Foo) -> (Int) -> () | getName: | (unnamed function decl) | isGetter: | no | isSetter: | yes | isWillSet: | no | isDidSet: | no | isRead: | no | isModify: | no | isUnsafeAddress: | no | isUnsafeMutableAddress: | no |
-| accessors.swift:20:9:20:18 | didSet | getModule: | file://:0:0:0:0 | accessors | getInterfaceType: | (inout Foo) -> () -> () | getName: | (unnamed function decl) | isGetter: | no | isSetter: | no | isWillSet: | no | isDidSet: | yes | isRead: | no | isModify: | no | isUnsafeAddress: | no | isUnsafeMutableAddress: | no |
-| accessors.swift:23:9:23:9 | _modify | getModule: | file://:0:0:0:0 | accessors | getInterfaceType: | (inout Foo) -> () -> () | getName: | (unnamed function decl) | isGetter: | no | isSetter: | no | isWillSet: | no | isDidSet: | no | isRead: | no | isModify: | yes | isUnsafeAddress: | no | isUnsafeMutableAddress: | no |
-| accessors.swift:23:9:23:9 | get | getModule: | file://:0:0:0:0 | accessors | getInterfaceType: | (Foo) -> () -> Int | getName: | (unnamed function decl) | isGetter: | yes | isSetter: | no | isWillSet: | no | isDidSet: | no | isRead: | no | isModify: | no | isUnsafeAddress: | no | isUnsafeMutableAddress: | no |
-| accessors.swift:23:9:23:9 | set | getModule: | file://:0:0:0:0 | accessors | getInterfaceType: | (inout Foo) -> (Int) -> () | getName: | (unnamed function decl) | isGetter: | no | isSetter: | yes | isWillSet: | no | isDidSet: | no | isRead: | no | isModify: | no | isUnsafeAddress: | no | isUnsafeMutableAddress: | no |
-| accessors.swift:24:9:24:19 | willSet | getModule: | file://:0:0:0:0 | accessors | getInterfaceType: | (inout Foo) -> (Int) -> () | getName: | (unnamed function decl) | isGetter: | no | isSetter: | no | isWillSet: | yes | isDidSet: | no | isRead: | no | isModify: | no | isUnsafeAddress: | no | isUnsafeMutableAddress: | no |
-| accessors.swift:26:9:26:18 | didSet | getModule: | file://:0:0:0:0 | accessors | getInterfaceType: | (inout Foo) -> () -> () | getName: | (unnamed function decl) | isGetter: | no | isSetter: | no | isWillSet: | no | isDidSet: | yes | isRead: | no | isModify: | no | isUnsafeAddress: | no | isUnsafeMutableAddress: | no |
-| accessors.swift:29:9:29:9 | get | getModule: | file://:0:0:0:0 | accessors | getInterfaceType: | (Foo) -> () -> Int | getName: | (unnamed function decl) | isGetter: | yes | isSetter: | no | isWillSet: | no | isDidSet: | no | isRead: | no | isModify: | no | isUnsafeAddress: | no | isUnsafeMutableAddress: | no |
-| accessors.swift:29:9:29:9 | set | getModule: | file://:0:0:0:0 | accessors | getInterfaceType: | (inout Foo) -> (Int) -> () | getName: | (unnamed function decl) | isGetter: | no | isSetter: | yes | isWillSet: | no | isDidSet: | no | isRead: | no | isModify: | no | isUnsafeAddress: | no | isUnsafeMutableAddress: | no |
-| accessors.swift:30:9:32:9 | _read | getModule: | file://:0:0:0:0 | accessors | getInterfaceType: | (Foo) -> () -> () | getName: | (unnamed function decl) | isGetter: | no | isSetter: | no | isWillSet: | no | isDidSet: | no | isRead: | yes | isModify: | no | isUnsafeAddress: | no | isUnsafeMutableAddress: | no |
-| accessors.swift:33:9:35:9 | _modify | getModule: | file://:0:0:0:0 | accessors | getInterfaceType: | (inout Foo) -> () -> () | getName: | (unnamed function decl) | isGetter: | no | isSetter: | no | isWillSet: | no | isDidSet: | no | isRead: | no | isModify: | yes | isUnsafeAddress: | no | isUnsafeMutableAddress: | no |
-| accessors.swift:38:9:38:9 | _modify | getModule: | file://:0:0:0:0 | accessors | getInterfaceType: | (inout Foo) -> () -> () | getName: | (unnamed function decl) | isGetter: | no | isSetter: | no | isWillSet: | no | isDidSet: | no | isRead: | no | isModify: | yes | isUnsafeAddress: | no | isUnsafeMutableAddress: | no |
-| accessors.swift:38:9:38:9 | get | getModule: | file://:0:0:0:0 | accessors | getInterfaceType: | (Foo) -> () -> Int | getName: | (unnamed function decl) | isGetter: | yes | isSetter: | no | isWillSet: | no | isDidSet: | no | isRead: | no | isModify: | no | isUnsafeAddress: | no | isUnsafeMutableAddress: | no |
-| accessors.swift:38:9:38:9 | set | getModule: | file://:0:0:0:0 | accessors | getInterfaceType: | (inout Foo) -> (Int) -> () | getName: | (unnamed function decl) | isGetter: | no | isSetter: | yes | isWillSet: | no | isDidSet: | no | isRead: | no | isModify: | no | isUnsafeAddress: | no | isUnsafeMutableAddress: | no |
-| accessors.swift:39:9:41:9 | unsafeAddress | getModule: | file://:0:0:0:0 | accessors | getInterfaceType: | (Foo) -> () -> UnsafePointer<Int> | getName: | (unnamed function decl) | isGetter: | no | isSetter: | no | isWillSet: | no | isDidSet: | no | isRead: | no | isModify: | no | isUnsafeAddress: | yes | isUnsafeMutableAddress: | no |
-| accessors.swift:42:9:44:9 | unsafeMutableAddress | getModule: | file://:0:0:0:0 | accessors | getInterfaceType: | (inout Foo) -> () -> UnsafeMutablePointer<Int> | getName: | (unnamed function decl) | isGetter: | no | isSetter: | no | isWillSet: | no | isDidSet: | no | isRead: | no | isModify: | no | isUnsafeAddress: | no | isUnsafeMutableAddress: | yes |
+| accessors.swift:2:9:2:9 | _modify | hasSelfParam: | yes | getNumberOfParams: | 0 | hasBody: | yes | getNumberOfGenericTypeParams: | 0 | getModule: | file://:0:0:0:0 | accessors | getInterfaceType: | (inout Foo) -> () -> () | getName: | (unnamed function decl) | isGetter: | no | isSetter: | no | isWillSet: | no | isDidSet: | no | isRead: | no | isModify: | yes | isUnsafeAddress: | no | isUnsafeMutableAddress: | no |
+| accessors.swift:2:9:2:9 | get | hasSelfParam: | yes | getNumberOfParams: | 0 | hasBody: | yes | getNumberOfGenericTypeParams: | 0 | getModule: | file://:0:0:0:0 | accessors | getInterfaceType: | (Foo) -> () -> Int | getName: | (unnamed function decl) | isGetter: | yes | isSetter: | no | isWillSet: | no | isDidSet: | no | isRead: | no | isModify: | no | isUnsafeAddress: | no | isUnsafeMutableAddress: | no |
+| accessors.swift:2:9:2:9 | set | hasSelfParam: | yes | getNumberOfParams: | 1 | hasBody: | yes | getNumberOfGenericTypeParams: | 0 | getModule: | file://:0:0:0:0 | accessors | getInterfaceType: | (inout Foo) -> (Int) -> () | getName: | (unnamed function decl) | isGetter: | no | isSetter: | yes | isWillSet: | no | isDidSet: | no | isRead: | no | isModify: | no | isUnsafeAddress: | no | isUnsafeMutableAddress: | no |
+| accessors.swift:3:9:3:9 | _modify | hasSelfParam: | yes | getNumberOfParams: | 0 | hasBody: | yes | getNumberOfGenericTypeParams: | 0 | getModule: | file://:0:0:0:0 | accessors | getInterfaceType: | (inout Foo) -> () -> () | getName: | (unnamed function decl) | isGetter: | no | isSetter: | no | isWillSet: | no | isDidSet: | no | isRead: | no | isModify: | yes | isUnsafeAddress: | no | isUnsafeMutableAddress: | no |
+| accessors.swift:4:9:4:28 | get | hasSelfParam: | yes | getNumberOfParams: | 0 | hasBody: | yes | getNumberOfGenericTypeParams: | 0 | getModule: | file://:0:0:0:0 | accessors | getInterfaceType: | (Foo) -> () -> Int | getName: | (unnamed function decl) | isGetter: | yes | isSetter: | no | isWillSet: | no | isDidSet: | no | isRead: | no | isModify: | no | isUnsafeAddress: | no | isUnsafeMutableAddress: | no |
+| accessors.swift:5:9:5:42 | set | hasSelfParam: | yes | getNumberOfParams: | 1 | hasBody: | yes | getNumberOfGenericTypeParams: | 0 | getModule: | file://:0:0:0:0 | accessors | getInterfaceType: | (inout Foo) -> (Int) -> () | getName: | (unnamed function decl) | isGetter: | no | isSetter: | yes | isWillSet: | no | isDidSet: | no | isRead: | no | isModify: | no | isUnsafeAddress: | no | isUnsafeMutableAddress: | no |
+| accessors.swift:7:9:7:9 | _modify | hasSelfParam: | yes | getNumberOfParams: | 0 | hasBody: | yes | getNumberOfGenericTypeParams: | 0 | getModule: | file://:0:0:0:0 | accessors | getInterfaceType: | (inout Foo) -> () -> () | getName: | (unnamed function decl) | isGetter: | no | isSetter: | no | isWillSet: | no | isDidSet: | no | isRead: | no | isModify: | yes | isUnsafeAddress: | no | isUnsafeMutableAddress: | no |
+| accessors.swift:7:9:7:9 | get | hasSelfParam: | yes | getNumberOfParams: | 0 | hasBody: | yes | getNumberOfGenericTypeParams: | 0 | getModule: | file://:0:0:0:0 | accessors | getInterfaceType: | (Foo) -> () -> Int | getName: | (unnamed function decl) | isGetter: | yes | isSetter: | no | isWillSet: | no | isDidSet: | no | isRead: | no | isModify: | no | isUnsafeAddress: | no | isUnsafeMutableAddress: | no |
+| accessors.swift:7:9:7:9 | set | hasSelfParam: | yes | getNumberOfParams: | 1 | hasBody: | yes | getNumberOfGenericTypeParams: | 0 | getModule: | file://:0:0:0:0 | accessors | getInterfaceType: | (inout Foo) -> (Int) -> () | getName: | (unnamed function decl) | isGetter: | no | isSetter: | yes | isWillSet: | no | isDidSet: | no | isRead: | no | isModify: | no | isUnsafeAddress: | no | isUnsafeMutableAddress: | no |
+| accessors.swift:8:9:8:29 | willSet | hasSelfParam: | yes | getNumberOfParams: | 1 | hasBody: | yes | getNumberOfGenericTypeParams: | 0 | getModule: | file://:0:0:0:0 | accessors | getInterfaceType: | (inout Foo) -> (Int) -> () | getName: | (unnamed function decl) | isGetter: | no | isSetter: | no | isWillSet: | yes | isDidSet: | no | isRead: | no | isModify: | no | isUnsafeAddress: | no | isUnsafeMutableAddress: | no |
+| accessors.swift:11:9:11:9 | _modify | hasSelfParam: | yes | getNumberOfParams: | 0 | hasBody: | yes | getNumberOfGenericTypeParams: | 0 | getModule: | file://:0:0:0:0 | accessors | getInterfaceType: | (inout Foo) -> () -> () | getName: | (unnamed function decl) | isGetter: | no | isSetter: | no | isWillSet: | no | isDidSet: | no | isRead: | no | isModify: | yes | isUnsafeAddress: | no | isUnsafeMutableAddress: | no |
+| accessors.swift:11:9:11:9 | get | hasSelfParam: | yes | getNumberOfParams: | 0 | hasBody: | yes | getNumberOfGenericTypeParams: | 0 | getModule: | file://:0:0:0:0 | accessors | getInterfaceType: | (Foo) -> () -> Int | getName: | (unnamed function decl) | isGetter: | yes | isSetter: | no | isWillSet: | no | isDidSet: | no | isRead: | no | isModify: | no | isUnsafeAddress: | no | isUnsafeMutableAddress: | no |
+| accessors.swift:11:9:11:9 | set | hasSelfParam: | yes | getNumberOfParams: | 1 | hasBody: | yes | getNumberOfGenericTypeParams: | 0 | getModule: | file://:0:0:0:0 | accessors | getInterfaceType: | (inout Foo) -> (Int) -> () | getName: | (unnamed function decl) | isGetter: | no | isSetter: | yes | isWillSet: | no | isDidSet: | no | isRead: | no | isModify: | no | isUnsafeAddress: | no | isUnsafeMutableAddress: | no |
+| accessors.swift:12:9:12:19 | willSet | hasSelfParam: | yes | getNumberOfParams: | 1 | hasBody: | yes | getNumberOfGenericTypeParams: | 0 | getModule: | file://:0:0:0:0 | accessors | getInterfaceType: | (inout Foo) -> (Int) -> () | getName: | (unnamed function decl) | isGetter: | no | isSetter: | no | isWillSet: | yes | isDidSet: | no | isRead: | no | isModify: | no | isUnsafeAddress: | no | isUnsafeMutableAddress: | no |
+| accessors.swift:15:9:15:9 | _modify | hasSelfParam: | yes | getNumberOfParams: | 0 | hasBody: | yes | getNumberOfGenericTypeParams: | 0 | getModule: | file://:0:0:0:0 | accessors | getInterfaceType: | (inout Foo) -> () -> () | getName: | (unnamed function decl) | isGetter: | no | isSetter: | no | isWillSet: | no | isDidSet: | no | isRead: | no | isModify: | yes | isUnsafeAddress: | no | isUnsafeMutableAddress: | no |
+| accessors.swift:15:9:15:9 | get | hasSelfParam: | yes | getNumberOfParams: | 0 | hasBody: | yes | getNumberOfGenericTypeParams: | 0 | getModule: | file://:0:0:0:0 | accessors | getInterfaceType: | (Foo) -> () -> Int | getName: | (unnamed function decl) | isGetter: | yes | isSetter: | no | isWillSet: | no | isDidSet: | no | isRead: | no | isModify: | no | isUnsafeAddress: | no | isUnsafeMutableAddress: | no |
+| accessors.swift:15:9:15:9 | set | hasSelfParam: | yes | getNumberOfParams: | 1 | hasBody: | yes | getNumberOfGenericTypeParams: | 0 | getModule: | file://:0:0:0:0 | accessors | getInterfaceType: | (inout Foo) -> (Int) -> () | getName: | (unnamed function decl) | isGetter: | no | isSetter: | yes | isWillSet: | no | isDidSet: | no | isRead: | no | isModify: | no | isUnsafeAddress: | no | isUnsafeMutableAddress: | no |
+| accessors.swift:16:9:16:28 | didSet | hasSelfParam: | yes | getNumberOfParams: | 1 | hasBody: | yes | getNumberOfGenericTypeParams: | 0 | getModule: | file://:0:0:0:0 | accessors | getInterfaceType: | (inout Foo) -> (Int) -> () | getName: | (unnamed function decl) | isGetter: | no | isSetter: | no | isWillSet: | no | isDidSet: | yes | isRead: | no | isModify: | no | isUnsafeAddress: | no | isUnsafeMutableAddress: | no |
+| accessors.swift:19:9:19:9 | _modify | hasSelfParam: | yes | getNumberOfParams: | 0 | hasBody: | yes | getNumberOfGenericTypeParams: | 0 | getModule: | file://:0:0:0:0 | accessors | getInterfaceType: | (inout Foo) -> () -> () | getName: | (unnamed function decl) | isGetter: | no | isSetter: | no | isWillSet: | no | isDidSet: | no | isRead: | no | isModify: | yes | isUnsafeAddress: | no | isUnsafeMutableAddress: | no |
+| accessors.swift:19:9:19:9 | get | hasSelfParam: | yes | getNumberOfParams: | 0 | hasBody: | yes | getNumberOfGenericTypeParams: | 0 | getModule: | file://:0:0:0:0 | accessors | getInterfaceType: | (Foo) -> () -> Int | getName: | (unnamed function decl) | isGetter: | yes | isSetter: | no | isWillSet: | no | isDidSet: | no | isRead: | no | isModify: | no | isUnsafeAddress: | no | isUnsafeMutableAddress: | no |
+| accessors.swift:19:9:19:9 | set | hasSelfParam: | yes | getNumberOfParams: | 1 | hasBody: | yes | getNumberOfGenericTypeParams: | 0 | getModule: | file://:0:0:0:0 | accessors | getInterfaceType: | (inout Foo) -> (Int) -> () | getName: | (unnamed function decl) | isGetter: | no | isSetter: | yes | isWillSet: | no | isDidSet: | no | isRead: | no | isModify: | no | isUnsafeAddress: | no | isUnsafeMutableAddress: | no |
+| accessors.swift:20:9:20:18 | didSet | hasSelfParam: | yes | getNumberOfParams: | 0 | hasBody: | yes | getNumberOfGenericTypeParams: | 0 | getModule: | file://:0:0:0:0 | accessors | getInterfaceType: | (inout Foo) -> () -> () | getName: | (unnamed function decl) | isGetter: | no | isSetter: | no | isWillSet: | no | isDidSet: | yes | isRead: | no | isModify: | no | isUnsafeAddress: | no | isUnsafeMutableAddress: | no |
+| accessors.swift:23:9:23:9 | _modify | hasSelfParam: | yes | getNumberOfParams: | 0 | hasBody: | yes | getNumberOfGenericTypeParams: | 0 | getModule: | file://:0:0:0:0 | accessors | getInterfaceType: | (inout Foo) -> () -> () | getName: | (unnamed function decl) | isGetter: | no | isSetter: | no | isWillSet: | no | isDidSet: | no | isRead: | no | isModify: | yes | isUnsafeAddress: | no | isUnsafeMutableAddress: | no |
+| accessors.swift:23:9:23:9 | get | hasSelfParam: | yes | getNumberOfParams: | 0 | hasBody: | yes | getNumberOfGenericTypeParams: | 0 | getModule: | file://:0:0:0:0 | accessors | getInterfaceType: | (Foo) -> () -> Int | getName: | (unnamed function decl) | isGetter: | yes | isSetter: | no | isWillSet: | no | isDidSet: | no | isRead: | no | isModify: | no | isUnsafeAddress: | no | isUnsafeMutableAddress: | no |
+| accessors.swift:23:9:23:9 | set | hasSelfParam: | yes | getNumberOfParams: | 1 | hasBody: | yes | getNumberOfGenericTypeParams: | 0 | getModule: | file://:0:0:0:0 | accessors | getInterfaceType: | (inout Foo) -> (Int) -> () | getName: | (unnamed function decl) | isGetter: | no | isSetter: | yes | isWillSet: | no | isDidSet: | no | isRead: | no | isModify: | no | isUnsafeAddress: | no | isUnsafeMutableAddress: | no |
+| accessors.swift:24:9:24:19 | willSet | hasSelfParam: | yes | getNumberOfParams: | 1 | hasBody: | yes | getNumberOfGenericTypeParams: | 0 | getModule: | file://:0:0:0:0 | accessors | getInterfaceType: | (inout Foo) -> (Int) -> () | getName: | (unnamed function decl) | isGetter: | no | isSetter: | no | isWillSet: | yes | isDidSet: | no | isRead: | no | isModify: | no | isUnsafeAddress: | no | isUnsafeMutableAddress: | no |
+| accessors.swift:26:9:26:18 | didSet | hasSelfParam: | yes | getNumberOfParams: | 0 | hasBody: | yes | getNumberOfGenericTypeParams: | 0 | getModule: | file://:0:0:0:0 | accessors | getInterfaceType: | (inout Foo) -> () -> () | getName: | (unnamed function decl) | isGetter: | no | isSetter: | no | isWillSet: | no | isDidSet: | yes | isRead: | no | isModify: | no | isUnsafeAddress: | no | isUnsafeMutableAddress: | no |
+| accessors.swift:29:9:29:9 | get | hasSelfParam: | yes | getNumberOfParams: | 0 | hasBody: | yes | getNumberOfGenericTypeParams: | 0 | getModule: | file://:0:0:0:0 | accessors | getInterfaceType: | (Foo) -> () -> Int | getName: | (unnamed function decl) | isGetter: | yes | isSetter: | no | isWillSet: | no | isDidSet: | no | isRead: | no | isModify: | no | isUnsafeAddress: | no | isUnsafeMutableAddress: | no |
+| accessors.swift:29:9:29:9 | set | hasSelfParam: | yes | getNumberOfParams: | 1 | hasBody: | yes | getNumberOfGenericTypeParams: | 0 | getModule: | file://:0:0:0:0 | accessors | getInterfaceType: | (inout Foo) -> (Int) -> () | getName: | (unnamed function decl) | isGetter: | no | isSetter: | yes | isWillSet: | no | isDidSet: | no | isRead: | no | isModify: | no | isUnsafeAddress: | no | isUnsafeMutableAddress: | no |
+| accessors.swift:30:9:32:9 | _read | hasSelfParam: | yes | getNumberOfParams: | 0 | hasBody: | yes | getNumberOfGenericTypeParams: | 0 | getModule: | file://:0:0:0:0 | accessors | getInterfaceType: | (Foo) -> () -> () | getName: | (unnamed function decl) | isGetter: | no | isSetter: | no | isWillSet: | no | isDidSet: | no | isRead: | yes | isModify: | no | isUnsafeAddress: | no | isUnsafeMutableAddress: | no |
+| accessors.swift:33:9:35:9 | _modify | hasSelfParam: | yes | getNumberOfParams: | 0 | hasBody: | yes | getNumberOfGenericTypeParams: | 0 | getModule: | file://:0:0:0:0 | accessors | getInterfaceType: | (inout Foo) -> () -> () | getName: | (unnamed function decl) | isGetter: | no | isSetter: | no | isWillSet: | no | isDidSet: | no | isRead: | no | isModify: | yes | isUnsafeAddress: | no | isUnsafeMutableAddress: | no |
+| accessors.swift:38:9:38:9 | _modify | hasSelfParam: | yes | getNumberOfParams: | 0 | hasBody: | yes | getNumberOfGenericTypeParams: | 0 | getModule: | file://:0:0:0:0 | accessors | getInterfaceType: | (inout Foo) -> () -> () | getName: | (unnamed function decl) | isGetter: | no | isSetter: | no | isWillSet: | no | isDidSet: | no | isRead: | no | isModify: | yes | isUnsafeAddress: | no | isUnsafeMutableAddress: | no |
+| accessors.swift:38:9:38:9 | get | hasSelfParam: | yes | getNumberOfParams: | 0 | hasBody: | yes | getNumberOfGenericTypeParams: | 0 | getModule: | file://:0:0:0:0 | accessors | getInterfaceType: | (Foo) -> () -> Int | getName: | (unnamed function decl) | isGetter: | yes | isSetter: | no | isWillSet: | no | isDidSet: | no | isRead: | no | isModify: | no | isUnsafeAddress: | no | isUnsafeMutableAddress: | no |
+| accessors.swift:38:9:38:9 | set | hasSelfParam: | yes | getNumberOfParams: | 1 | hasBody: | yes | getNumberOfGenericTypeParams: | 0 | getModule: | file://:0:0:0:0 | accessors | getInterfaceType: | (inout Foo) -> (Int) -> () | getName: | (unnamed function decl) | isGetter: | no | isSetter: | yes | isWillSet: | no | isDidSet: | no | isRead: | no | isModify: | no | isUnsafeAddress: | no | isUnsafeMutableAddress: | no |
+| accessors.swift:39:9:41:9 | unsafeAddress | hasSelfParam: | yes | getNumberOfParams: | 0 | hasBody: | yes | getNumberOfGenericTypeParams: | 0 | getModule: | file://:0:0:0:0 | accessors | getInterfaceType: | (Foo) -> () -> UnsafePointer<Int> | getName: | (unnamed function decl) | isGetter: | no | isSetter: | no | isWillSet: | no | isDidSet: | no | isRead: | no | isModify: | no | isUnsafeAddress: | yes | isUnsafeMutableAddress: | no |
+| accessors.swift:42:9:44:9 | unsafeMutableAddress | hasSelfParam: | yes | getNumberOfParams: | 0 | hasBody: | yes | getNumberOfGenericTypeParams: | 0 | getModule: | file://:0:0:0:0 | accessors | getInterfaceType: | (inout Foo) -> () -> UnsafeMutablePointer<Int> | getName: | (unnamed function decl) | isGetter: | no | isSetter: | no | isWillSet: | no | isDidSet: | no | isRead: | no | isModify: | no | isUnsafeAddress: | no | isUnsafeMutableAddress: | yes |
diff --git a/swift/ql/test/extractor-tests/generated/decl/AssociatedTypeDecl/AssociatedTypeDecl.expected b/swift/ql/test/extractor-tests/generated/decl/AssociatedTypeDecl/AssociatedTypeDecl.expected
index c94866db877..7eb9613a29b 100644
--- a/swift/ql/test/extractor-tests/generated/decl/AssociatedTypeDecl/AssociatedTypeDecl.expected
+++ b/swift/ql/test/extractor-tests/generated/decl/AssociatedTypeDecl/AssociatedTypeDecl.expected
@@ -1,2 +1,2 @@
-| associated_type.swift:2:5:2:20 | Bar | getModule: | file://:0:0:0:0 | associated_type | getInterfaceType: | Self.Bar.Type | getName: | Bar |
-| associated_type.swift:3:5:3:25 | Baz | getModule: | file://:0:0:0:0 | associated_type | getInterfaceType: | Self.Baz.Type | getName: | Baz |
+| associated_type.swift:2:5:2:20 | Bar | getModule: | file://:0:0:0:0 | associated_type | getInterfaceType: | Self.Bar.Type | getName: | Bar | getNumberOfBaseTypes: | 0 |
+| associated_type.swift:3:5:3:25 | Baz | getModule: | file://:0:0:0:0 | associated_type | getInterfaceType: | Self.Baz.Type | getName: | Baz | getNumberOfBaseTypes: | 1 |
diff --git a/swift/ql/test/extractor-tests/generated/decl/ClassDecl/ClassDecl.expected b/swift/ql/test/extractor-tests/generated/decl/ClassDecl/ClassDecl.expected
index bec427ff494..dd277ec706b 100644
--- a/swift/ql/test/extractor-tests/generated/decl/ClassDecl/ClassDecl.expected
+++ b/swift/ql/test/extractor-tests/generated/decl/ClassDecl/ClassDecl.expected
@@ -1,3 +1,3 @@
-| class.swift:1:1:7:1 | Foo | getModule: | file://:0:0:0:0 | class | getInterfaceType: | Foo.Type | getName: | Foo | getType: | Foo |
-| class.swift:11:1:14:1 | Generic | getModule: | file://:0:0:0:0 | class | getInterfaceType: | Generic<X, Y>.Type | getName: | Generic | getType: | Generic |
-| class.swift:16:1:17:1 | Baz | getModule: | file://:0:0:0:0 | class | getInterfaceType: | Baz.Type | getName: | Baz | getType: | Baz |
+| class.swift:1:1:7:1 | Foo | getNumberOfGenericTypeParams: | 0 | getModule: | file://:0:0:0:0 | class | getInterfaceType: | Foo.Type | getName: | Foo | getNumberOfBaseTypes: | 0 | getNumberOfMembers: | 4 | getType: | Foo |
+| class.swift:11:1:14:1 | Generic | getNumberOfGenericTypeParams: | 2 | getModule: | file://:0:0:0:0 | class | getInterfaceType: | Generic<X, Y>.Type | getName: | Generic | getNumberOfBaseTypes: | 0 | getNumberOfMembers: | 6 | getType: | Generic |
+| class.swift:16:1:17:1 | Baz | getNumberOfGenericTypeParams: | 0 | getModule: | file://:0:0:0:0 | class | getInterfaceType: | Baz.Type | getName: | Baz | getNumberOfBaseTypes: | 2 | getNumberOfMembers: | 2 | getType: | Baz |
diff --git a/swift/ql/test/extractor-tests/generated/decl/ConcreteFuncDecl/ConcreteFuncDecl.expected b/swift/ql/test/extractor-tests/generated/decl/ConcreteFuncDecl/ConcreteFuncDecl.expected
index 118e3b9eec8..d1972c299a2 100644
--- a/swift/ql/test/extractor-tests/generated/decl/ConcreteFuncDecl/ConcreteFuncDecl.expected
+++ b/swift/ql/test/extractor-tests/generated/decl/ConcreteFuncDecl/ConcreteFuncDecl.expected
@@ -1,5 +1,5 @@
-| functions.swift:1:1:3:1 | foo() | getModule: | file://:0:0:0:0 | functions | getInterfaceType: | () -> Int | getName: | foo() |
-| functions.swift:5:1:7:1 | bar(_:d:) | getModule: | file://:0:0:0:0 | functions | getInterfaceType: | (Int, Double) -> Int | getName: | bar(_:d:) |
-| functions.swift:10:5:10:28 | noBody(x:) | getModule: | file://:0:0:0:0 | functions | getInterfaceType: | <Self where Self : Beep> (Self) -> (Int) -> Int | getName: | noBody(x:) |
-| functions.swift:13:1:15:1 | variadic(_:) | getModule: | file://:0:0:0:0 | functions | getInterfaceType: | (Int...) -> () | getName: | variadic(_:) |
-| functions.swift:17:1:19:1 | generic(x:y:) | getModule: | file://:0:0:0:0 | functions | getInterfaceType: | <X, Y> (x: X, y: Y) -> () | getName: | generic(x:y:) |
+| functions.swift:1:1:3:1 | foo() | hasSelfParam: | no | getNumberOfParams: | 0 | hasBody: | yes | getNumberOfGenericTypeParams: | 0 | getModule: | file://:0:0:0:0 | functions | getInterfaceType: | () -> Int | getName: | foo() |
+| functions.swift:5:1:7:1 | bar(_:d:) | hasSelfParam: | no | getNumberOfParams: | 2 | hasBody: | yes | getNumberOfGenericTypeParams: | 0 | getModule: | file://:0:0:0:0 | functions | getInterfaceType: | (Int, Double) -> Int | getName: | bar(_:d:) |
+| functions.swift:10:5:10:28 | noBody(x:) | hasSelfParam: | yes | getNumberOfParams: | 1 | hasBody: | no | getNumberOfGenericTypeParams: | 0 | getModule: | file://:0:0:0:0 | functions | getInterfaceType: | <Self where Self : Beep> (Self) -> (Int) -> Int | getName: | noBody(x:) |
+| functions.swift:13:1:15:1 | variadic(_:) | hasSelfParam: | no | getNumberOfParams: | 1 | hasBody: | yes | getNumberOfGenericTypeParams: | 0 | getModule: | file://:0:0:0:0 | functions | getInterfaceType: | (Int...) -> () | getName: | variadic(_:) |
+| functions.swift:17:1:19:1 | generic(x:y:) | hasSelfParam: | no | getNumberOfParams: | 2 | hasBody: | yes | getNumberOfGenericTypeParams: | 2 | getModule: | file://:0:0:0:0 | functions | getInterfaceType: | <X, Y> (x: X, y: Y) -> () | getName: | generic(x:y:) |
diff --git a/swift/ql/test/extractor-tests/generated/decl/ConcreteVarDecl/ConcreteVarDecl.expected b/swift/ql/test/extractor-tests/generated/decl/ConcreteVarDecl/ConcreteVarDecl.expected
index 80ea4e75e95..b011437b59f 100644
--- a/swift/ql/test/extractor-tests/generated/decl/ConcreteVarDecl/ConcreteVarDecl.expected
+++ b/swift/ql/test/extractor-tests/generated/decl/ConcreteVarDecl/ConcreteVarDecl.expected
@@ -1,22 +1,22 @@
-| var_decls.swift:4:7:4:7 | i | getModule: | file://:0:0:0:0 | var_decls | getInterfaceType: | Int | getName: | i | getType: | Int | getIntroducerInt: | 1 |
-| var_decls.swift:7:5:7:5 | numbers | getModule: | file://:0:0:0:0 | var_decls | getInterfaceType: | [Int] | getName: | numbers | getType: | [Int] | getIntroducerInt: | 1 |
-| var_decls.swift:10:12:10:12 | numbers | getModule: | file://:0:0:0:0 | var_decls | getInterfaceType: | [Int] | getName: | numbers | getType: | [Int] | getIntroducerInt: | 0 |
-| var_decls.swift:15:7:15:7 | wrappedValue | getModule: | file://:0:0:0:0 | var_decls | getInterfaceType: | T | getName: | wrappedValue | getType: | T | getIntroducerInt: | 1 |
-| var_decls.swift:20:7:20:7 | wrappedValue | getModule: | file://:0:0:0:0 | var_decls | getInterfaceType: | Int | getName: | wrappedValue | getType: | Int | getIntroducerInt: | 1 |
-| var_decls.swift:24:15:24:15 | _wrapped | getModule: | file://:0:0:0:0 | var_decls | getInterfaceType: | X<Y> | getName: | _wrapped | getType: | X<Y> | getIntroducerInt: | 1 |
-| var_decls.swift:24:15:24:15 | wrapped | getModule: | file://:0:0:0:0 | var_decls | getInterfaceType: | Int | getName: | wrapped | getType: | Int | getIntroducerInt: | 1 |
-| var_decls.swift:28:7:28:7 | wrappedValue | getModule: | file://:0:0:0:0 | var_decls | getInterfaceType: | Int | getName: | wrappedValue | getType: | Int | getIntroducerInt: | 1 |
-| var_decls.swift:34:7:34:7 | wrappedValue | getModule: | file://:0:0:0:0 | var_decls | getInterfaceType: | Int | getName: | wrappedValue | getType: | Int | getIntroducerInt: | 1 |
-| var_decls.swift:35:7:35:7 | projectedValue | getModule: | file://:0:0:0:0 | var_decls | getInterfaceType: | Bool | getName: | projectedValue | getType: | Bool | getIntroducerInt: | 1 |
-| var_decls.swift:39:7:39:7 | wrappedValue | getModule: | file://:0:0:0:0 | var_decls | getInterfaceType: | Int | getName: | wrappedValue | getType: | Int | getIntroducerInt: | 1 |
-| var_decls.swift:40:7:40:7 | projectedValue | getModule: | file://:0:0:0:0 | var_decls | getInterfaceType: | Bool | getName: | projectedValue | getType: | Bool | getIntroducerInt: | 1 |
-| var_decls.swift:54:10:54:10 | _w1 | getModule: | file://:0:0:0:0 | var_decls | getInterfaceType: | X<Int> | getName: | _w1 | getType: | X<Int> | getIntroducerInt: | 1 |
-| var_decls.swift:54:10:54:10 | w1 | getModule: | file://:0:0:0:0 | var_decls | getInterfaceType: | Int | getName: | w1 | getType: | Int | getIntroducerInt: | 1 |
-| var_decls.swift:55:24:55:24 | _w2 | getModule: | file://:0:0:0:0 | var_decls | getInterfaceType: | WrapperWithInit | getName: | _w2 | getType: | WrapperWithInit | getIntroducerInt: | 1 |
-| var_decls.swift:55:24:55:24 | w2 | getModule: | file://:0:0:0:0 | var_decls | getInterfaceType: | Int | getName: | w2 | getType: | Int | getIntroducerInt: | 1 |
-| var_decls.swift:56:29:56:29 | $w3 | getModule: | file://:0:0:0:0 | var_decls | getInterfaceType: | Bool | getName: | $w3 | getType: | Bool | getIntroducerInt: | 1 |
-| var_decls.swift:56:29:56:29 | _w3 | getModule: | file://:0:0:0:0 | var_decls | getInterfaceType: | WrapperWithProjected | getName: | _w3 | getType: | WrapperWithProjected | getIntroducerInt: | 1 |
-| var_decls.swift:56:29:56:29 | w3 | getModule: | file://:0:0:0:0 | var_decls | getInterfaceType: | Int | getName: | w3 | getType: | Int | getIntroducerInt: | 1 |
-| var_decls.swift:57:36:57:36 | $w4 | getModule: | file://:0:0:0:0 | var_decls | getInterfaceType: | Bool | getName: | $w4 | getType: | Bool | getIntroducerInt: | 1 |
-| var_decls.swift:57:36:57:36 | _w4 | getModule: | file://:0:0:0:0 | var_decls | getInterfaceType: | WrapperWithProjectedAndInit | getName: | _w4 | getType: | WrapperWithProjectedAndInit | getIntroducerInt: | 1 |
-| var_decls.swift:57:36:57:36 | w4 | getModule: | file://:0:0:0:0 | var_decls | getInterfaceType: | Int | getName: | w4 | getType: | Int | getIntroducerInt: | 1 |
+| var_decls.swift:4:7:4:7 | i | getModule: | file://:0:0:0:0 | var_decls | getInterfaceType: | Int | getNumberOfAccessorDecls: | 0 | getName: | i | getType: | Int | hasAttachedPropertyWrapperType: | no | hasParentPattern: | yes | hasParentInitializer: | yes | hasPropertyWrapperBackingVarBinding: | no | hasPropertyWrapperBackingVar: | no | hasPropertyWrapperProjectionVarBinding: | no | hasPropertyWrapperProjectionVar: | no | getIntroducerInt: | 1 |
+| var_decls.swift:7:5:7:5 | numbers | getModule: | file://:0:0:0:0 | var_decls | getInterfaceType: | [Int] | getNumberOfAccessorDecls: | 0 | getName: | numbers | getType: | [Int] | hasAttachedPropertyWrapperType: | no | hasParentPattern: | yes | hasParentInitializer: | yes | hasPropertyWrapperBackingVarBinding: | no | hasPropertyWrapperBackingVar: | no | hasPropertyWrapperProjectionVarBinding: | no | hasPropertyWrapperProjectionVar: | no | getIntroducerInt: | 1 |
+| var_decls.swift:10:12:10:12 | numbers | getModule: | file://:0:0:0:0 | var_decls | getInterfaceType: | [Int] | getNumberOfAccessorDecls: | 1 | getName: | numbers | getType: | [Int] | hasAttachedPropertyWrapperType: | no | hasParentPattern: | yes | hasParentInitializer: | yes | hasPropertyWrapperBackingVarBinding: | no | hasPropertyWrapperBackingVar: | no | hasPropertyWrapperProjectionVarBinding: | no | hasPropertyWrapperProjectionVar: | no | getIntroducerInt: | 0 |
+| var_decls.swift:15:7:15:7 | wrappedValue | getModule: | file://:0:0:0:0 | var_decls | getInterfaceType: | T | getNumberOfAccessorDecls: | 3 | getName: | wrappedValue | getType: | T | hasAttachedPropertyWrapperType: | no | hasParentPattern: | yes | hasParentInitializer: | no | hasPropertyWrapperBackingVarBinding: | no | hasPropertyWrapperBackingVar: | no | hasPropertyWrapperProjectionVarBinding: | no | hasPropertyWrapperProjectionVar: | no | getIntroducerInt: | 1 |
+| var_decls.swift:20:7:20:7 | wrappedValue | getModule: | file://:0:0:0:0 | var_decls | getInterfaceType: | Int | getNumberOfAccessorDecls: | 3 | getName: | wrappedValue | getType: | Int | hasAttachedPropertyWrapperType: | no | hasParentPattern: | yes | hasParentInitializer: | no | hasPropertyWrapperBackingVarBinding: | no | hasPropertyWrapperBackingVar: | no | hasPropertyWrapperProjectionVarBinding: | no | hasPropertyWrapperProjectionVar: | no | getIntroducerInt: | 1 |
+| var_decls.swift:24:15:24:15 | _wrapped | getModule: | file://:0:0:0:0 | var_decls | getInterfaceType: | X<Y> | getNumberOfAccessorDecls: | 3 | getName: | _wrapped | getType: | X<Y> | hasAttachedPropertyWrapperType: | no | hasParentPattern: | yes | hasParentInitializer: | no | hasPropertyWrapperBackingVarBinding: | no | hasPropertyWrapperBackingVar: | no | hasPropertyWrapperProjectionVarBinding: | no | hasPropertyWrapperProjectionVar: | no | getIntroducerInt: | 1 |
+| var_decls.swift:24:15:24:15 | wrapped | getModule: | file://:0:0:0:0 | var_decls | getInterfaceType: | Int | getNumberOfAccessorDecls: | 3 | getName: | wrapped | getType: | Int | hasAttachedPropertyWrapperType: | yes | hasParentPattern: | yes | hasParentInitializer: | no | hasPropertyWrapperBackingVarBinding: | yes | hasPropertyWrapperBackingVar: | yes | hasPropertyWrapperProjectionVarBinding: | no | hasPropertyWrapperProjectionVar: | no | getIntroducerInt: | 1 |
+| var_decls.swift:28:7:28:7 | wrappedValue | getModule: | file://:0:0:0:0 | var_decls | getInterfaceType: | Int | getNumberOfAccessorDecls: | 3 | getName: | wrappedValue | getType: | Int | hasAttachedPropertyWrapperType: | no | hasParentPattern: | yes | hasParentInitializer: | no | hasPropertyWrapperBackingVarBinding: | no | hasPropertyWrapperBackingVar: | no | hasPropertyWrapperProjectionVarBinding: | no | hasPropertyWrapperProjectionVar: | no | getIntroducerInt: | 1 |
+| var_decls.swift:34:7:34:7 | wrappedValue | getModule: | file://:0:0:0:0 | var_decls | getInterfaceType: | Int | getNumberOfAccessorDecls: | 3 | getName: | wrappedValue | getType: | Int | hasAttachedPropertyWrapperType: | no | hasParentPattern: | yes | hasParentInitializer: | yes | hasPropertyWrapperBackingVarBinding: | no | hasPropertyWrapperBackingVar: | no | hasPropertyWrapperProjectionVarBinding: | no | hasPropertyWrapperProjectionVar: | no | getIntroducerInt: | 1 |
+| var_decls.swift:35:7:35:7 | projectedValue | getModule: | file://:0:0:0:0 | var_decls | getInterfaceType: | Bool | getNumberOfAccessorDecls: | 3 | getName: | projectedValue | getType: | Bool | hasAttachedPropertyWrapperType: | no | hasParentPattern: | yes | hasParentInitializer: | yes | hasPropertyWrapperBackingVarBinding: | no | hasPropertyWrapperBackingVar: | no | hasPropertyWrapperProjectionVarBinding: | no | hasPropertyWrapperProjectionVar: | no | getIntroducerInt: | 1 |
+| var_decls.swift:39:7:39:7 | wrappedValue | getModule: | file://:0:0:0:0 | var_decls | getInterfaceType: | Int | getNumberOfAccessorDecls: | 3 | getName: | wrappedValue | getType: | Int | hasAttachedPropertyWrapperType: | no | hasParentPattern: | yes | hasParentInitializer: | no | hasPropertyWrapperBackingVarBinding: | no | hasPropertyWrapperBackingVar: | no | hasPropertyWrapperProjectionVarBinding: | no | hasPropertyWrapperProjectionVar: | no | getIntroducerInt: | 1 |
+| var_decls.swift:40:7:40:7 | projectedValue | getModule: | file://:0:0:0:0 | var_decls | getInterfaceType: | Bool | getNumberOfAccessorDecls: | 3 | getName: | projectedValue | getType: | Bool | hasAttachedPropertyWrapperType: | no | hasParentPattern: | yes | hasParentInitializer: | no | hasPropertyWrapperBackingVarBinding: | no | hasPropertyWrapperBackingVar: | no | hasPropertyWrapperProjectionVarBinding: | no | hasPropertyWrapperProjectionVar: | no | getIntroducerInt: | 1 |
+| var_decls.swift:54:10:54:10 | _w1 | getModule: | file://:0:0:0:0 | var_decls | getInterfaceType: | X<Int> | getNumberOfAccessorDecls: | 0 | getName: | _w1 | getType: | X<Int> | hasAttachedPropertyWrapperType: | no | hasParentPattern: | yes | hasParentInitializer: | yes | hasPropertyWrapperBackingVarBinding: | no | hasPropertyWrapperBackingVar: | no | hasPropertyWrapperProjectionVarBinding: | no | hasPropertyWrapperProjectionVar: | no | getIntroducerInt: | 1 |
+| var_decls.swift:54:10:54:10 | w1 | getModule: | file://:0:0:0:0 | var_decls | getInterfaceType: | Int | getNumberOfAccessorDecls: | 2 | getName: | w1 | getType: | Int | hasAttachedPropertyWrapperType: | yes | hasParentPattern: | yes | hasParentInitializer: | yes | hasPropertyWrapperBackingVarBinding: | yes | hasPropertyWrapperBackingVar: | yes | hasPropertyWrapperProjectionVarBinding: | no | hasPropertyWrapperProjectionVar: | no | getIntroducerInt: | 1 |
+| var_decls.swift:55:24:55:24 | _w2 | getModule: | file://:0:0:0:0 | var_decls | getInterfaceType: | WrapperWithInit | getNumberOfAccessorDecls: | 0 | getName: | _w2 | getType: | WrapperWithInit | hasAttachedPropertyWrapperType: | no | hasParentPattern: | yes | hasParentInitializer: | yes | hasPropertyWrapperBackingVarBinding: | no | hasPropertyWrapperBackingVar: | no | hasPropertyWrapperProjectionVarBinding: | no | hasPropertyWrapperProjectionVar: | no | getIntroducerInt: | 1 |
+| var_decls.swift:55:24:55:24 | w2 | getModule: | file://:0:0:0:0 | var_decls | getInterfaceType: | Int | getNumberOfAccessorDecls: | 2 | getName: | w2 | getType: | Int | hasAttachedPropertyWrapperType: | yes | hasParentPattern: | yes | hasParentInitializer: | yes | hasPropertyWrapperBackingVarBinding: | yes | hasPropertyWrapperBackingVar: | yes | hasPropertyWrapperProjectionVarBinding: | no | hasPropertyWrapperProjectionVar: | no | getIntroducerInt: | 1 |
+| var_decls.swift:56:29:56:29 | $w3 | getModule: | file://:0:0:0:0 | var_decls | getInterfaceType: | Bool | getNumberOfAccessorDecls: | 2 | getName: | $w3 | getType: | Bool | hasAttachedPropertyWrapperType: | no | hasParentPattern: | yes | hasParentInitializer: | no | hasPropertyWrapperBackingVarBinding: | no | hasPropertyWrapperBackingVar: | no | hasPropertyWrapperProjectionVarBinding: | no | hasPropertyWrapperProjectionVar: | no | getIntroducerInt: | 1 |
+| var_decls.swift:56:29:56:29 | _w3 | getModule: | file://:0:0:0:0 | var_decls | getInterfaceType: | WrapperWithProjected | getNumberOfAccessorDecls: | 0 | getName: | _w3 | getType: | WrapperWithProjected | hasAttachedPropertyWrapperType: | no | hasParentPattern: | yes | hasParentInitializer: | yes | hasPropertyWrapperBackingVarBinding: | no | hasPropertyWrapperBackingVar: | no | hasPropertyWrapperProjectionVarBinding: | no | hasPropertyWrapperProjectionVar: | no | getIntroducerInt: | 1 |
+| var_decls.swift:56:29:56:29 | w3 | getModule: | file://:0:0:0:0 | var_decls | getInterfaceType: | Int | getNumberOfAccessorDecls: | 2 | getName: | w3 | getType: | Int | hasAttachedPropertyWrapperType: | yes | hasParentPattern: | yes | hasParentInitializer: | yes | hasPropertyWrapperBackingVarBinding: | yes | hasPropertyWrapperBackingVar: | yes | hasPropertyWrapperProjectionVarBinding: | yes | hasPropertyWrapperProjectionVar: | yes | getIntroducerInt: | 1 |
+| var_decls.swift:57:36:57:36 | $w4 | getModule: | file://:0:0:0:0 | var_decls | getInterfaceType: | Bool | getNumberOfAccessorDecls: | 2 | getName: | $w4 | getType: | Bool | hasAttachedPropertyWrapperType: | no | hasParentPattern: | yes | hasParentInitializer: | no | hasPropertyWrapperBackingVarBinding: | no | hasPropertyWrapperBackingVar: | no | hasPropertyWrapperProjectionVarBinding: | no | hasPropertyWrapperProjectionVar: | no | getIntroducerInt: | 1 |
+| var_decls.swift:57:36:57:36 | _w4 | getModule: | file://:0:0:0:0 | var_decls | getInterfaceType: | WrapperWithProjectedAndInit | getNumberOfAccessorDecls: | 0 | getName: | _w4 | getType: | WrapperWithProjectedAndInit | hasAttachedPropertyWrapperType: | no | hasParentPattern: | yes | hasParentInitializer: | yes | hasPropertyWrapperBackingVarBinding: | no | hasPropertyWrapperBackingVar: | no | hasPropertyWrapperProjectionVarBinding: | no | hasPropertyWrapperProjectionVar: | no | getIntroducerInt: | 1 |
+| var_decls.swift:57:36:57:36 | w4 | getModule: | file://:0:0:0:0 | var_decls | getInterfaceType: | Int | getNumberOfAccessorDecls: | 2 | getName: | w4 | getType: | Int | hasAttachedPropertyWrapperType: | yes | hasParentPattern: | yes | hasParentInitializer: | yes | hasPropertyWrapperBackingVarBinding: | yes | hasPropertyWrapperBackingVar: | yes | hasPropertyWrapperProjectionVarBinding: | yes | hasPropertyWrapperProjectionVar: | yes | getIntroducerInt: | 1 |
diff --git a/swift/ql/test/extractor-tests/generated/decl/EnumDecl/EnumDecl.expected b/swift/ql/test/extractor-tests/generated/decl/EnumDecl/EnumDecl.expected
index f7d69b7d1cd..2c813018f22 100644
--- a/swift/ql/test/extractor-tests/generated/decl/EnumDecl/EnumDecl.expected
+++ b/swift/ql/test/extractor-tests/generated/decl/EnumDecl/EnumDecl.expected
@@ -1,4 +1,4 @@
-| enums.swift:1:1:4:1 | EnumValues | getModule: | file://:0:0:0:0 | enums | getInterfaceType: | EnumValues.Type | getName: | EnumValues | getType: | EnumValues |
-| enums.swift:7:1:10:1 | EnumValuesWithBase | getModule: | file://:0:0:0:0 | enums | getInterfaceType: | EnumValuesWithBase.Type | getName: | EnumValuesWithBase | getType: | EnumValuesWithBase |
-| enums.swift:12:1:16:1 | EnumWithParams | getModule: | file://:0:0:0:0 | enums | getInterfaceType: | EnumWithParams.Type | getName: | EnumWithParams | getType: | EnumWithParams |
-| enums.swift:18:1:21:1 | GenericEnum | getModule: | file://:0:0:0:0 | enums | getInterfaceType: | GenericEnum<T>.Type | getName: | GenericEnum | getType: | GenericEnum |
+| enums.swift:1:1:4:1 | EnumValues | getNumberOfGenericTypeParams: | 0 | getModule: | file://:0:0:0:0 | enums | getInterfaceType: | EnumValues.Type | getName: | EnumValues | getNumberOfBaseTypes: | 0 | getNumberOfMembers: | 11 | getType: | EnumValues |
+| enums.swift:7:1:10:1 | EnumValuesWithBase | getNumberOfGenericTypeParams: | 0 | getModule: | file://:0:0:0:0 | enums | getInterfaceType: | EnumValuesWithBase.Type | getName: | EnumValuesWithBase | getNumberOfBaseTypes: | 1 | getNumberOfMembers: | 11 | getType: | EnumValuesWithBase |
+| enums.swift:12:1:16:1 | EnumWithParams | getNumberOfGenericTypeParams: | 0 | getModule: | file://:0:0:0:0 | enums | getInterfaceType: | EnumWithParams.Type | getName: | EnumWithParams | getNumberOfBaseTypes: | 0 | getNumberOfMembers: | 6 | getType: | EnumWithParams |
+| enums.swift:18:1:21:1 | GenericEnum | getNumberOfGenericTypeParams: | 1 | getModule: | file://:0:0:0:0 | enums | getInterfaceType: | GenericEnum<T>.Type | getName: | GenericEnum | getNumberOfBaseTypes: | 0 | getNumberOfMembers: | 4 | getType: | GenericEnum |
diff --git a/swift/ql/test/extractor-tests/generated/decl/IfConfigDecl/IfConfigDecl.expected b/swift/ql/test/extractor-tests/generated/decl/IfConfigDecl/IfConfigDecl.expected
index e3e6da93082..5fb473d56ec 100644
--- a/swift/ql/test/extractor-tests/generated/decl/IfConfigDecl/IfConfigDecl.expected
+++ b/swift/ql/test/extractor-tests/generated/decl/IfConfigDecl/IfConfigDecl.expected
@@ -1 +1 @@
-| if_config.swift:1:1:10:1 | #if ... | getModule: | file://:0:0:0:0 | if_config |
+| if_config.swift:1:1:10:1 | #if ... | getModule: | file://:0:0:0:0 | if_config | getNumberOfActiveElements: | 3 |
diff --git a/swift/ql/test/extractor-tests/generated/decl/ImportDecl/ImportDecl.expected b/swift/ql/test/extractor-tests/generated/decl/ImportDecl/ImportDecl.expected
index 17bd119059b..27a12648593 100644
--- a/swift/ql/test/extractor-tests/generated/decl/ImportDecl/ImportDecl.expected
+++ b/swift/ql/test/extractor-tests/generated/decl/ImportDecl/ImportDecl.expected
@@ -1,5 +1,5 @@
-| import.swift:1:1:1:8 | import ... | getModule: | file://:0:0:0:0 | import | isExported: | no |
-| import.swift:2:1:2:24 | import ... | getModule: | file://:0:0:0:0 | import | isExported: | no |
-| import.swift:3:12:3:32 | import ... | getModule: | file://:0:0:0:0 | import | isExported: | yes |
-| import.swift:4:1:4:19 | import ... | getModule: | file://:0:0:0:0 | import | isExported: | no |
-| import.swift:5:1:5:23 | import ... | getModule: | file://:0:0:0:0 | import | isExported: | no |
+| import.swift:1:1:1:8 | import ... | getModule: | file://:0:0:0:0 | import | isExported: | no | hasImportedModule: | yes | getNumberOfDeclarations: | 0 |
+| import.swift:2:1:2:24 | import ... | getModule: | file://:0:0:0:0 | import | isExported: | no | hasImportedModule: | yes | getNumberOfDeclarations: | 1 |
+| import.swift:3:12:3:32 | import ... | getModule: | file://:0:0:0:0 | import | isExported: | yes | hasImportedModule: | yes | getNumberOfDeclarations: | 1 |
+| import.swift:4:1:4:19 | import ... | getModule: | file://:0:0:0:0 | import | isExported: | no | hasImportedModule: | yes | getNumberOfDeclarations: | 2 |
+| import.swift:5:1:5:23 | import ... | getModule: | file://:0:0:0:0 | import | isExported: | no | hasImportedModule: | yes | getNumberOfDeclarations: | 1 |
diff --git a/swift/ql/test/extractor-tests/generated/decl/ModuleDecl/ModuleDecl.expected b/swift/ql/test/extractor-tests/generated/decl/ModuleDecl/ModuleDecl.expected
index 068e959b885..e73a1739f4c 100644
--- a/swift/ql/test/extractor-tests/generated/decl/ModuleDecl/ModuleDecl.expected
+++ b/swift/ql/test/extractor-tests/generated/decl/ModuleDecl/ModuleDecl.expected
@@ -1,3 +1,3 @@
-| file://:0:0:0:0 | Foo | getModule: | file://:0:0:0:0 | Foo | getInterfaceType: | module<Foo> | getName: | Foo | isBuiltinModule: | no | isSystemModule: | no |
-| file://:0:0:0:0 | __ObjC | getModule: | file://:0:0:0:0 | __ObjC | getInterfaceType: | module<__ObjC> | getName: | __ObjC | isBuiltinModule: | no | isSystemModule: | no |
-| file://:0:0:0:0 | default_module_name | getModule: | file://:0:0:0:0 | default_module_name | getInterfaceType: | module<default_module_name> | getName: | default_module_name | isBuiltinModule: | no | isSystemModule: | no |
+| file://:0:0:0:0 | Foo | getModule: | file://:0:0:0:0 | Foo | getInterfaceType: | module<Foo> | getName: | Foo | getNumberOfBaseTypes: | 0 | isBuiltinModule: | no | isSystemModule: | no | getNumberOfImportedModules: | 4 | getNumberOfExportedModules: | 1 |
+| file://:0:0:0:0 | __ObjC | getModule: | file://:0:0:0:0 | __ObjC | getInterfaceType: | module<__ObjC> | getName: | __ObjC | getNumberOfBaseTypes: | 0 | isBuiltinModule: | no | isSystemModule: | no | getNumberOfImportedModules: | 1 | getNumberOfExportedModules: | 0 |
+| file://:0:0:0:0 | default_module_name | getModule: | file://:0:0:0:0 | default_module_name | getInterfaceType: | module<default_module_name> | getName: | default_module_name | getNumberOfBaseTypes: | 0 | isBuiltinModule: | no | isSystemModule: | no | getNumberOfImportedModules: | 4 | getNumberOfExportedModules: | 0 |
diff --git a/swift/ql/test/extractor-tests/generated/decl/OpaqueTypeDecl/OpaqueTypeDecl.expected b/swift/ql/test/extractor-tests/generated/decl/OpaqueTypeDecl/OpaqueTypeDecl.expected
index 2c9015cd7ef..752629add37 100644
--- a/swift/ql/test/extractor-tests/generated/decl/OpaqueTypeDecl/OpaqueTypeDecl.expected
+++ b/swift/ql/test/extractor-tests/generated/decl/OpaqueTypeDecl/OpaqueTypeDecl.expected
@@ -1,4 +1,4 @@
-| file://:0:0:0:0 | _ | getModule: | file://:0:0:0:0 | opaque_types | getInterfaceType: | (some Base).Type | getName: | _ | getNamingDeclaration: | opaque_types.swift:9:1:9:51 | baz(_:) |
-| file://:0:0:0:0 | _ | getModule: | file://:0:0:0:0 | opaque_types | getInterfaceType: | (some P).Type | getName: | _ | getNamingDeclaration: | opaque_types.swift:5:1:5:45 | bar(_:) |
-| file://:0:0:0:0 | _ | getModule: | file://:0:0:0:0 | opaque_types | getInterfaceType: | (some P).Type | getName: | _ | getNamingDeclaration: | opaque_types.swift:13:1:13:59 | bazz() |
-| file://:0:0:0:0 | _ | getModule: | file://:0:0:0:0 | opaque_types | getInterfaceType: | (some SignedInteger).Type | getName: | _ | getNamingDeclaration: | opaque_types.swift:1:1:1:45 | foo() |
+| file://:0:0:0:0 | _ | getNumberOfGenericTypeParams: | 0 | getModule: | file://:0:0:0:0 | opaque_types | getInterfaceType: | (some Base).Type | getName: | _ | getNumberOfBaseTypes: | 0 | getNamingDeclaration: | opaque_types.swift:9:1:9:51 | baz(_:) | getNumberOfOpaqueGenericParams: | 1 |
+| file://:0:0:0:0 | _ | getNumberOfGenericTypeParams: | 0 | getModule: | file://:0:0:0:0 | opaque_types | getInterfaceType: | (some P).Type | getName: | _ | getNumberOfBaseTypes: | 0 | getNamingDeclaration: | opaque_types.swift:5:1:5:45 | bar(_:) | getNumberOfOpaqueGenericParams: | 1 |
+| file://:0:0:0:0 | _ | getNumberOfGenericTypeParams: | 0 | getModule: | file://:0:0:0:0 | opaque_types | getInterfaceType: | (some P).Type | getName: | _ | getNumberOfBaseTypes: | 0 | getNamingDeclaration: | opaque_types.swift:13:1:13:59 | bazz() | getNumberOfOpaqueGenericParams: | 1 |
+| file://:0:0:0:0 | _ | getNumberOfGenericTypeParams: | 0 | getModule: | file://:0:0:0:0 | opaque_types | getInterfaceType: | (some SignedInteger).Type | getName: | _ | getNumberOfBaseTypes: | 0 | getNamingDeclaration: | opaque_types.swift:1:1:1:45 | foo() | getNumberOfOpaqueGenericParams: | 1 |
diff --git a/swift/ql/test/extractor-tests/generated/decl/ParamDecl/ParamDecl.expected b/swift/ql/test/extractor-tests/generated/decl/ParamDecl/ParamDecl.expected
index d59229fc961..9aa8d8c3916 100644
--- a/swift/ql/test/extractor-tests/generated/decl/ParamDecl/ParamDecl.expected
+++ b/swift/ql/test/extractor-tests/generated/decl/ParamDecl/ParamDecl.expected
@@ -1,63 +1,63 @@
-| file://:0:0:0:0 | x | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | Int | getName: | x | getType: | Int | isInout: | no |
-| file://:0:0:0:0 | y | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | Int | getName: | y | getType: | Int | isInout: | no |
-| param_decls.swift:1:10:1:13 | _ | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | Int | getName: | _ | getType: | Int | isInout: | no |
-| param_decls.swift:1:18:1:29 | y | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | Double | getName: | y | getType: | Double | isInout: | yes |
-| param_decls.swift:2:10:2:13 | _ | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | Int | getName: | _ | getType: | Int | isInout: | no |
-| param_decls.swift:2:18:2:29 | y | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | Double | getName: | y | getType: | Double | isInout: | yes |
-| param_decls.swift:4:8:4:8 | self | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | S | getName: | self | getType: | S | isInout: | yes |
-| param_decls.swift:5:5:5:5 | self | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | S | getName: | self | getType: | S | isInout: | yes |
-| param_decls.swift:5:15:5:15 | x | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | Int | getName: | x | getType: | Int | isInout: | no |
-| param_decls.swift:5:15:5:15 | x | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | Int | getName: | x | getType: | Int | isInout: | no |
-| param_decls.swift:5:15:5:18 | x | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | Int | getName: | x | getType: | Int | isInout: | no |
-| param_decls.swift:5:23:5:23 | y | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | Int | getName: | y | getType: | Int | isInout: | no |
-| param_decls.swift:5:23:5:23 | y | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | Int | getName: | y | getType: | Int | isInout: | no |
-| param_decls.swift:5:23:5:26 | y | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | Int | getName: | y | getType: | Int | isInout: | no |
-| param_decls.swift:6:9:6:9 | self | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | S | getName: | self | getType: | S | isInout: | no |
-| param_decls.swift:7:9:7:9 | newValue | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | Int? | getName: | newValue | getType: | Int? | isInout: | no |
-| param_decls.swift:7:9:7:9 | self | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | S | getName: | self | getType: | S | isInout: | yes |
-| param_decls.swift:12:13:12:22 | s | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | String | getName: | s | getType: | String | isInout: | yes |
-| param_decls.swift:13:13:13:22 | s | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | String | getName: | s | getType: | String | isInout: | yes |
-| param_decls.swift:14:26:14:26 | $0 | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | Int | getName: | $0 | getType: | Int | isInout: | no |
-| param_decls.swift:17:25:17:25 | self | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | Wrapper | getName: | self | getType: | Wrapper | isInout: | yes |
-| param_decls.swift:17:25:17:25 | self | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | Wrapper | getName: | self | getType: | Wrapper | isInout: | yes |
-| param_decls.swift:17:25:17:25 | wrappedValue | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | Int | getName: | wrappedValue | getType: | Int | isInout: | no |
-| param_decls.swift:18:9:18:9 | self | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | Wrapper | getName: | self | getType: | Wrapper | isInout: | no |
-| param_decls.swift:18:9:18:9 | self | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | Wrapper | getName: | self | getType: | Wrapper | isInout: | yes |
-| param_decls.swift:18:9:18:9 | self | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | Wrapper | getName: | self | getType: | Wrapper | isInout: | yes |
-| param_decls.swift:18:9:18:9 | value | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | Int | getName: | value | getType: | Int | isInout: | no |
-| param_decls.swift:22:9:22:9 | self | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | WrapperWithInit | getName: | self | getType: | WrapperWithInit | isInout: | no |
-| param_decls.swift:22:9:22:9 | self | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | WrapperWithInit | getName: | self | getType: | WrapperWithInit | isInout: | yes |
-| param_decls.swift:22:9:22:9 | self | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | WrapperWithInit | getName: | self | getType: | WrapperWithInit | isInout: | yes |
-| param_decls.swift:22:9:22:9 | value | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | Int | getName: | value | getType: | Int | isInout: | no |
-| param_decls.swift:24:5:24:5 | self | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | WrapperWithInit | getName: | self | getType: | WrapperWithInit | isInout: | yes |
-| param_decls.swift:24:10:24:24 | wrappedValue | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | Int | getName: | wrappedValue | getType: | Int | isInout: | no |
-| param_decls.swift:27:25:27:25 | projectedValue | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | Bool | getName: | projectedValue | getType: | Bool | isInout: | no |
-| param_decls.swift:27:25:27:25 | self | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | WrapperWithProjected | getName: | self | getType: | WrapperWithProjected | isInout: | yes |
-| param_decls.swift:27:25:27:25 | self | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | WrapperWithProjected | getName: | self | getType: | WrapperWithProjected | isInout: | yes |
-| param_decls.swift:27:25:27:25 | wrappedValue | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | Int | getName: | wrappedValue | getType: | Int | isInout: | no |
-| param_decls.swift:28:9:28:9 | self | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | WrapperWithProjected | getName: | self | getType: | WrapperWithProjected | isInout: | no |
-| param_decls.swift:28:9:28:9 | self | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | WrapperWithProjected | getName: | self | getType: | WrapperWithProjected | isInout: | yes |
-| param_decls.swift:28:9:28:9 | self | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | WrapperWithProjected | getName: | self | getType: | WrapperWithProjected | isInout: | yes |
-| param_decls.swift:28:9:28:9 | value | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | Int | getName: | value | getType: | Int | isInout: | no |
-| param_decls.swift:29:9:29:9 | self | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | WrapperWithProjected | getName: | self | getType: | WrapperWithProjected | isInout: | no |
-| param_decls.swift:29:9:29:9 | self | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | WrapperWithProjected | getName: | self | getType: | WrapperWithProjected | isInout: | yes |
-| param_decls.swift:29:9:29:9 | self | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | WrapperWithProjected | getName: | self | getType: | WrapperWithProjected | isInout: | yes |
-| param_decls.swift:29:9:29:9 | value | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | Bool | getName: | value | getType: | Bool | isInout: | no |
-| param_decls.swift:33:9:33:9 | self | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | WrapperWithProjectedAndInit | getName: | self | getType: | WrapperWithProjectedAndInit | isInout: | no |
-| param_decls.swift:33:9:33:9 | self | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | WrapperWithProjectedAndInit | getName: | self | getType: | WrapperWithProjectedAndInit | isInout: | yes |
-| param_decls.swift:33:9:33:9 | self | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | WrapperWithProjectedAndInit | getName: | self | getType: | WrapperWithProjectedAndInit | isInout: | yes |
-| param_decls.swift:33:9:33:9 | value | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | Int | getName: | value | getType: | Int | isInout: | no |
-| param_decls.swift:34:9:34:9 | self | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | WrapperWithProjectedAndInit | getName: | self | getType: | WrapperWithProjectedAndInit | isInout: | no |
-| param_decls.swift:34:9:34:9 | self | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | WrapperWithProjectedAndInit | getName: | self | getType: | WrapperWithProjectedAndInit | isInout: | yes |
-| param_decls.swift:34:9:34:9 | self | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | WrapperWithProjectedAndInit | getName: | self | getType: | WrapperWithProjectedAndInit | isInout: | yes |
-| param_decls.swift:34:9:34:9 | value | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | Bool | getName: | value | getType: | Bool | isInout: | no |
-| param_decls.swift:36:5:36:5 | self | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | WrapperWithProjectedAndInit | getName: | self | getType: | WrapperWithProjectedAndInit | isInout: | yes |
-| param_decls.swift:36:10:36:24 | wrappedValue | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | Int | getName: | wrappedValue | getType: | Int | isInout: | no |
-| param_decls.swift:41:5:41:5 | self | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | WrapperWithProjectedAndInit | getName: | self | getType: | WrapperWithProjectedAndInit | isInout: | yes |
-| param_decls.swift:41:10:41:26 | projectedValue | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | Bool | getName: | projectedValue | getType: | Bool | isInout: | no |
-| param_decls.swift:48:18:48:22 | p1 | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | Int | getName: | p1 | getType: | Int | isInout: | no |
-| param_decls.swift:49:26:49:30 | p2 | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | Int | getName: | p2 | getType: | Int | isInout: | no |
-| param_decls.swift:50:31:50:31 | value | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | Bool | getName: | value | getType: | Bool | isInout: | no |
-| param_decls.swift:50:31:50:35 | p3 | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | Int | getName: | p3 | getType: | Int | isInout: | no |
-| param_decls.swift:51:38:51:38 | value | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | Bool | getName: | value | getType: | Bool | isInout: | no |
-| param_decls.swift:51:38:51:42 | p4 | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | Int | getName: | p4 | getType: | Int | isInout: | no |
+| file://:0:0:0:0 | x | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | Int | getNumberOfAccessorDecls: | 0 | getName: | x | getType: | Int | hasAttachedPropertyWrapperType: | no | hasParentPattern: | no | hasParentInitializer: | no | hasPropertyWrapperBackingVarBinding: | no | hasPropertyWrapperBackingVar: | no | hasPropertyWrapperProjectionVarBinding: | no | hasPropertyWrapperProjectionVar: | no | isInout: | no | hasPropertyWrapperLocalWrappedVarBinding: | no | hasPropertyWrapperLocalWrappedVar: | no |
+| file://:0:0:0:0 | y | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | Int | getNumberOfAccessorDecls: | 0 | getName: | y | getType: | Int | hasAttachedPropertyWrapperType: | no | hasParentPattern: | no | hasParentInitializer: | no | hasPropertyWrapperBackingVarBinding: | no | hasPropertyWrapperBackingVar: | no | hasPropertyWrapperProjectionVarBinding: | no | hasPropertyWrapperProjectionVar: | no | isInout: | no | hasPropertyWrapperLocalWrappedVarBinding: | no | hasPropertyWrapperLocalWrappedVar: | no |
+| param_decls.swift:1:10:1:13 | _ | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | Int | getNumberOfAccessorDecls: | 0 | getName: | _ | getType: | Int | hasAttachedPropertyWrapperType: | no | hasParentPattern: | no | hasParentInitializer: | no | hasPropertyWrapperBackingVarBinding: | no | hasPropertyWrapperBackingVar: | no | hasPropertyWrapperProjectionVarBinding: | no | hasPropertyWrapperProjectionVar: | no | isInout: | no | hasPropertyWrapperLocalWrappedVarBinding: | no | hasPropertyWrapperLocalWrappedVar: | no |
+| param_decls.swift:1:18:1:29 | y | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | Double | getNumberOfAccessorDecls: | 0 | getName: | y | getType: | Double | hasAttachedPropertyWrapperType: | no | hasParentPattern: | no | hasParentInitializer: | no | hasPropertyWrapperBackingVarBinding: | no | hasPropertyWrapperBackingVar: | no | hasPropertyWrapperProjectionVarBinding: | no | hasPropertyWrapperProjectionVar: | no | isInout: | yes | hasPropertyWrapperLocalWrappedVarBinding: | no | hasPropertyWrapperLocalWrappedVar: | no |
+| param_decls.swift:2:10:2:13 | _ | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | Int | getNumberOfAccessorDecls: | 0 | getName: | _ | getType: | Int | hasAttachedPropertyWrapperType: | no | hasParentPattern: | no | hasParentInitializer: | no | hasPropertyWrapperBackingVarBinding: | no | hasPropertyWrapperBackingVar: | no | hasPropertyWrapperProjectionVarBinding: | no | hasPropertyWrapperProjectionVar: | no | isInout: | no | hasPropertyWrapperLocalWrappedVarBinding: | no | hasPropertyWrapperLocalWrappedVar: | no |
+| param_decls.swift:2:18:2:29 | y | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | Double | getNumberOfAccessorDecls: | 0 | getName: | y | getType: | Double | hasAttachedPropertyWrapperType: | no | hasParentPattern: | no | hasParentInitializer: | no | hasPropertyWrapperBackingVarBinding: | no | hasPropertyWrapperBackingVar: | no | hasPropertyWrapperProjectionVarBinding: | no | hasPropertyWrapperProjectionVar: | no | isInout: | yes | hasPropertyWrapperLocalWrappedVarBinding: | no | hasPropertyWrapperLocalWrappedVar: | no |
+| param_decls.swift:4:8:4:8 | self | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | S | getNumberOfAccessorDecls: | 0 | getName: | self | getType: | S | hasAttachedPropertyWrapperType: | no | hasParentPattern: | no | hasParentInitializer: | no | hasPropertyWrapperBackingVarBinding: | no | hasPropertyWrapperBackingVar: | no | hasPropertyWrapperProjectionVarBinding: | no | hasPropertyWrapperProjectionVar: | no | isInout: | yes | hasPropertyWrapperLocalWrappedVarBinding: | no | hasPropertyWrapperLocalWrappedVar: | no |
+| param_decls.swift:5:5:5:5 | self | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | S | getNumberOfAccessorDecls: | 0 | getName: | self | getType: | S | hasAttachedPropertyWrapperType: | no | hasParentPattern: | no | hasParentInitializer: | no | hasPropertyWrapperBackingVarBinding: | no | hasPropertyWrapperBackingVar: | no | hasPropertyWrapperProjectionVarBinding: | no | hasPropertyWrapperProjectionVar: | no | isInout: | yes | hasPropertyWrapperLocalWrappedVarBinding: | no | hasPropertyWrapperLocalWrappedVar: | no |
+| param_decls.swift:5:15:5:15 | x | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | Int | getNumberOfAccessorDecls: | 0 | getName: | x | getType: | Int | hasAttachedPropertyWrapperType: | no | hasParentPattern: | no | hasParentInitializer: | no | hasPropertyWrapperBackingVarBinding: | no | hasPropertyWrapperBackingVar: | no | hasPropertyWrapperProjectionVarBinding: | no | hasPropertyWrapperProjectionVar: | no | isInout: | no | hasPropertyWrapperLocalWrappedVarBinding: | no | hasPropertyWrapperLocalWrappedVar: | no |
+| param_decls.swift:5:15:5:15 | x | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | Int | getNumberOfAccessorDecls: | 0 | getName: | x | getType: | Int | hasAttachedPropertyWrapperType: | no | hasParentPattern: | no | hasParentInitializer: | no | hasPropertyWrapperBackingVarBinding: | no | hasPropertyWrapperBackingVar: | no | hasPropertyWrapperProjectionVarBinding: | no | hasPropertyWrapperProjectionVar: | no | isInout: | no | hasPropertyWrapperLocalWrappedVarBinding: | no | hasPropertyWrapperLocalWrappedVar: | no |
+| param_decls.swift:5:15:5:18 | x | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | Int | getNumberOfAccessorDecls: | 0 | getName: | x | getType: | Int | hasAttachedPropertyWrapperType: | no | hasParentPattern: | no | hasParentInitializer: | no | hasPropertyWrapperBackingVarBinding: | no | hasPropertyWrapperBackingVar: | no | hasPropertyWrapperProjectionVarBinding: | no | hasPropertyWrapperProjectionVar: | no | isInout: | no | hasPropertyWrapperLocalWrappedVarBinding: | no | hasPropertyWrapperLocalWrappedVar: | no |
+| param_decls.swift:5:23:5:23 | y | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | Int | getNumberOfAccessorDecls: | 0 | getName: | y | getType: | Int | hasAttachedPropertyWrapperType: | no | hasParentPattern: | no | hasParentInitializer: | no | hasPropertyWrapperBackingVarBinding: | no | hasPropertyWrapperBackingVar: | no | hasPropertyWrapperProjectionVarBinding: | no | hasPropertyWrapperProjectionVar: | no | isInout: | no | hasPropertyWrapperLocalWrappedVarBinding: | no | hasPropertyWrapperLocalWrappedVar: | no |
+| param_decls.swift:5:23:5:23 | y | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | Int | getNumberOfAccessorDecls: | 0 | getName: | y | getType: | Int | hasAttachedPropertyWrapperType: | no | hasParentPattern: | no | hasParentInitializer: | no | hasPropertyWrapperBackingVarBinding: | no | hasPropertyWrapperBackingVar: | no | hasPropertyWrapperProjectionVarBinding: | no | hasPropertyWrapperProjectionVar: | no | isInout: | no | hasPropertyWrapperLocalWrappedVarBinding: | no | hasPropertyWrapperLocalWrappedVar: | no |
+| param_decls.swift:5:23:5:26 | y | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | Int | getNumberOfAccessorDecls: | 0 | getName: | y | getType: | Int | hasAttachedPropertyWrapperType: | no | hasParentPattern: | no | hasParentInitializer: | no | hasPropertyWrapperBackingVarBinding: | no | hasPropertyWrapperBackingVar: | no | hasPropertyWrapperProjectionVarBinding: | no | hasPropertyWrapperProjectionVar: | no | isInout: | no | hasPropertyWrapperLocalWrappedVarBinding: | no | hasPropertyWrapperLocalWrappedVar: | no |
+| param_decls.swift:6:9:6:9 | self | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | S | getNumberOfAccessorDecls: | 0 | getName: | self | getType: | S | hasAttachedPropertyWrapperType: | no | hasParentPattern: | no | hasParentInitializer: | no | hasPropertyWrapperBackingVarBinding: | no | hasPropertyWrapperBackingVar: | no | hasPropertyWrapperProjectionVarBinding: | no | hasPropertyWrapperProjectionVar: | no | isInout: | no | hasPropertyWrapperLocalWrappedVarBinding: | no | hasPropertyWrapperLocalWrappedVar: | no |
+| param_decls.swift:7:9:7:9 | newValue | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | Int? | getNumberOfAccessorDecls: | 0 | getName: | newValue | getType: | Int? | hasAttachedPropertyWrapperType: | no | hasParentPattern: | no | hasParentInitializer: | no | hasPropertyWrapperBackingVarBinding: | no | hasPropertyWrapperBackingVar: | no | hasPropertyWrapperProjectionVarBinding: | no | hasPropertyWrapperProjectionVar: | no | isInout: | no | hasPropertyWrapperLocalWrappedVarBinding: | no | hasPropertyWrapperLocalWrappedVar: | no |
+| param_decls.swift:7:9:7:9 | self | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | S | getNumberOfAccessorDecls: | 0 | getName: | self | getType: | S | hasAttachedPropertyWrapperType: | no | hasParentPattern: | no | hasParentInitializer: | no | hasPropertyWrapperBackingVarBinding: | no | hasPropertyWrapperBackingVar: | no | hasPropertyWrapperProjectionVarBinding: | no | hasPropertyWrapperProjectionVar: | no | isInout: | yes | hasPropertyWrapperLocalWrappedVarBinding: | no | hasPropertyWrapperLocalWrappedVar: | no |
+| param_decls.swift:12:13:12:22 | s | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | String | getNumberOfAccessorDecls: | 0 | getName: | s | getType: | String | hasAttachedPropertyWrapperType: | no | hasParentPattern: | no | hasParentInitializer: | no | hasPropertyWrapperBackingVarBinding: | no | hasPropertyWrapperBackingVar: | no | hasPropertyWrapperProjectionVarBinding: | no | hasPropertyWrapperProjectionVar: | no | isInout: | yes | hasPropertyWrapperLocalWrappedVarBinding: | no | hasPropertyWrapperLocalWrappedVar: | no |
+| param_decls.swift:13:13:13:22 | s | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | String | getNumberOfAccessorDecls: | 0 | getName: | s | getType: | String | hasAttachedPropertyWrapperType: | no | hasParentPattern: | no | hasParentInitializer: | no | hasPropertyWrapperBackingVarBinding: | no | hasPropertyWrapperBackingVar: | no | hasPropertyWrapperProjectionVarBinding: | no | hasPropertyWrapperProjectionVar: | no | isInout: | yes | hasPropertyWrapperLocalWrappedVarBinding: | no | hasPropertyWrapperLocalWrappedVar: | no |
+| param_decls.swift:14:26:14:26 | $0 | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | Int | getNumberOfAccessorDecls: | 0 | getName: | $0 | getType: | Int | hasAttachedPropertyWrapperType: | no | hasParentPattern: | no | hasParentInitializer: | no | hasPropertyWrapperBackingVarBinding: | no | hasPropertyWrapperBackingVar: | no | hasPropertyWrapperProjectionVarBinding: | no | hasPropertyWrapperProjectionVar: | no | isInout: | no | hasPropertyWrapperLocalWrappedVarBinding: | no | hasPropertyWrapperLocalWrappedVar: | no |
+| param_decls.swift:17:25:17:25 | self | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | Wrapper | getNumberOfAccessorDecls: | 0 | getName: | self | getType: | Wrapper | hasAttachedPropertyWrapperType: | no | hasParentPattern: | no | hasParentInitializer: | no | hasPropertyWrapperBackingVarBinding: | no | hasPropertyWrapperBackingVar: | no | hasPropertyWrapperProjectionVarBinding: | no | hasPropertyWrapperProjectionVar: | no | isInout: | yes | hasPropertyWrapperLocalWrappedVarBinding: | no | hasPropertyWrapperLocalWrappedVar: | no |
+| param_decls.swift:17:25:17:25 | self | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | Wrapper | getNumberOfAccessorDecls: | 0 | getName: | self | getType: | Wrapper | hasAttachedPropertyWrapperType: | no | hasParentPattern: | no | hasParentInitializer: | no | hasPropertyWrapperBackingVarBinding: | no | hasPropertyWrapperBackingVar: | no | hasPropertyWrapperProjectionVarBinding: | no | hasPropertyWrapperProjectionVar: | no | isInout: | yes | hasPropertyWrapperLocalWrappedVarBinding: | no | hasPropertyWrapperLocalWrappedVar: | no |
+| param_decls.swift:17:25:17:25 | wrappedValue | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | Int | getNumberOfAccessorDecls: | 0 | getName: | wrappedValue | getType: | Int | hasAttachedPropertyWrapperType: | no | hasParentPattern: | no | hasParentInitializer: | no | hasPropertyWrapperBackingVarBinding: | no | hasPropertyWrapperBackingVar: | no | hasPropertyWrapperProjectionVarBinding: | no | hasPropertyWrapperProjectionVar: | no | isInout: | no | hasPropertyWrapperLocalWrappedVarBinding: | no | hasPropertyWrapperLocalWrappedVar: | no |
+| param_decls.swift:18:9:18:9 | self | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | Wrapper | getNumberOfAccessorDecls: | 0 | getName: | self | getType: | Wrapper | hasAttachedPropertyWrapperType: | no | hasParentPattern: | no | hasParentInitializer: | no | hasPropertyWrapperBackingVarBinding: | no | hasPropertyWrapperBackingVar: | no | hasPropertyWrapperProjectionVarBinding: | no | hasPropertyWrapperProjectionVar: | no | isInout: | no | hasPropertyWrapperLocalWrappedVarBinding: | no | hasPropertyWrapperLocalWrappedVar: | no |
+| param_decls.swift:18:9:18:9 | self | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | Wrapper | getNumberOfAccessorDecls: | 0 | getName: | self | getType: | Wrapper | hasAttachedPropertyWrapperType: | no | hasParentPattern: | no | hasParentInitializer: | no | hasPropertyWrapperBackingVarBinding: | no | hasPropertyWrapperBackingVar: | no | hasPropertyWrapperProjectionVarBinding: | no | hasPropertyWrapperProjectionVar: | no | isInout: | yes | hasPropertyWrapperLocalWrappedVarBinding: | no | hasPropertyWrapperLocalWrappedVar: | no |
+| param_decls.swift:18:9:18:9 | self | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | Wrapper | getNumberOfAccessorDecls: | 0 | getName: | self | getType: | Wrapper | hasAttachedPropertyWrapperType: | no | hasParentPattern: | no | hasParentInitializer: | no | hasPropertyWrapperBackingVarBinding: | no | hasPropertyWrapperBackingVar: | no | hasPropertyWrapperProjectionVarBinding: | no | hasPropertyWrapperProjectionVar: | no | isInout: | yes | hasPropertyWrapperLocalWrappedVarBinding: | no | hasPropertyWrapperLocalWrappedVar: | no |
+| param_decls.swift:18:9:18:9 | value | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | Int | getNumberOfAccessorDecls: | 0 | getName: | value | getType: | Int | hasAttachedPropertyWrapperType: | no | hasParentPattern: | no | hasParentInitializer: | no | hasPropertyWrapperBackingVarBinding: | no | hasPropertyWrapperBackingVar: | no | hasPropertyWrapperProjectionVarBinding: | no | hasPropertyWrapperProjectionVar: | no | isInout: | no | hasPropertyWrapperLocalWrappedVarBinding: | no | hasPropertyWrapperLocalWrappedVar: | no |
+| param_decls.swift:22:9:22:9 | self | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | WrapperWithInit | getNumberOfAccessorDecls: | 0 | getName: | self | getType: | WrapperWithInit | hasAttachedPropertyWrapperType: | no | hasParentPattern: | no | hasParentInitializer: | no | hasPropertyWrapperBackingVarBinding: | no | hasPropertyWrapperBackingVar: | no | hasPropertyWrapperProjectionVarBinding: | no | hasPropertyWrapperProjectionVar: | no | isInout: | no | hasPropertyWrapperLocalWrappedVarBinding: | no | hasPropertyWrapperLocalWrappedVar: | no |
+| param_decls.swift:22:9:22:9 | self | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | WrapperWithInit | getNumberOfAccessorDecls: | 0 | getName: | self | getType: | WrapperWithInit | hasAttachedPropertyWrapperType: | no | hasParentPattern: | no | hasParentInitializer: | no | hasPropertyWrapperBackingVarBinding: | no | hasPropertyWrapperBackingVar: | no | hasPropertyWrapperProjectionVarBinding: | no | hasPropertyWrapperProjectionVar: | no | isInout: | yes | hasPropertyWrapperLocalWrappedVarBinding: | no | hasPropertyWrapperLocalWrappedVar: | no |
+| param_decls.swift:22:9:22:9 | self | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | WrapperWithInit | getNumberOfAccessorDecls: | 0 | getName: | self | getType: | WrapperWithInit | hasAttachedPropertyWrapperType: | no | hasParentPattern: | no | hasParentInitializer: | no | hasPropertyWrapperBackingVarBinding: | no | hasPropertyWrapperBackingVar: | no | hasPropertyWrapperProjectionVarBinding: | no | hasPropertyWrapperProjectionVar: | no | isInout: | yes | hasPropertyWrapperLocalWrappedVarBinding: | no | hasPropertyWrapperLocalWrappedVar: | no |
+| param_decls.swift:22:9:22:9 | value | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | Int | getNumberOfAccessorDecls: | 0 | getName: | value | getType: | Int | hasAttachedPropertyWrapperType: | no | hasParentPattern: | no | hasParentInitializer: | no | hasPropertyWrapperBackingVarBinding: | no | hasPropertyWrapperBackingVar: | no | hasPropertyWrapperProjectionVarBinding: | no | hasPropertyWrapperProjectionVar: | no | isInout: | no | hasPropertyWrapperLocalWrappedVarBinding: | no | hasPropertyWrapperLocalWrappedVar: | no |
+| param_decls.swift:24:5:24:5 | self | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | WrapperWithInit | getNumberOfAccessorDecls: | 0 | getName: | self | getType: | WrapperWithInit | hasAttachedPropertyWrapperType: | no | hasParentPattern: | no | hasParentInitializer: | no | hasPropertyWrapperBackingVarBinding: | no | hasPropertyWrapperBackingVar: | no | hasPropertyWrapperProjectionVarBinding: | no | hasPropertyWrapperProjectionVar: | no | isInout: | yes | hasPropertyWrapperLocalWrappedVarBinding: | no | hasPropertyWrapperLocalWrappedVar: | no |
+| param_decls.swift:24:10:24:24 | wrappedValue | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | Int | getNumberOfAccessorDecls: | 0 | getName: | wrappedValue | getType: | Int | hasAttachedPropertyWrapperType: | no | hasParentPattern: | no | hasParentInitializer: | no | hasPropertyWrapperBackingVarBinding: | no | hasPropertyWrapperBackingVar: | no | hasPropertyWrapperProjectionVarBinding: | no | hasPropertyWrapperProjectionVar: | no | isInout: | no | hasPropertyWrapperLocalWrappedVarBinding: | no | hasPropertyWrapperLocalWrappedVar: | no |
+| param_decls.swift:27:25:27:25 | projectedValue | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | Bool | getNumberOfAccessorDecls: | 0 | getName: | projectedValue | getType: | Bool | hasAttachedPropertyWrapperType: | no | hasParentPattern: | no | hasParentInitializer: | no | hasPropertyWrapperBackingVarBinding: | no | hasPropertyWrapperBackingVar: | no | hasPropertyWrapperProjectionVarBinding: | no | hasPropertyWrapperProjectionVar: | no | isInout: | no | hasPropertyWrapperLocalWrappedVarBinding: | no | hasPropertyWrapperLocalWrappedVar: | no |
+| param_decls.swift:27:25:27:25 | self | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | WrapperWithProjected | getNumberOfAccessorDecls: | 0 | getName: | self | getType: | WrapperWithProjected | hasAttachedPropertyWrapperType: | no | hasParentPattern: | no | hasParentInitializer: | no | hasPropertyWrapperBackingVarBinding: | no | hasPropertyWrapperBackingVar: | no | hasPropertyWrapperProjectionVarBinding: | no | hasPropertyWrapperProjectionVar: | no | isInout: | yes | hasPropertyWrapperLocalWrappedVarBinding: | no | hasPropertyWrapperLocalWrappedVar: | no |
+| param_decls.swift:27:25:27:25 | self | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | WrapperWithProjected | getNumberOfAccessorDecls: | 0 | getName: | self | getType: | WrapperWithProjected | hasAttachedPropertyWrapperType: | no | hasParentPattern: | no | hasParentInitializer: | no | hasPropertyWrapperBackingVarBinding: | no | hasPropertyWrapperBackingVar: | no | hasPropertyWrapperProjectionVarBinding: | no | hasPropertyWrapperProjectionVar: | no | isInout: | yes | hasPropertyWrapperLocalWrappedVarBinding: | no | hasPropertyWrapperLocalWrappedVar: | no |
+| param_decls.swift:27:25:27:25 | wrappedValue | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | Int | getNumberOfAccessorDecls: | 0 | getName: | wrappedValue | getType: | Int | hasAttachedPropertyWrapperType: | no | hasParentPattern: | no | hasParentInitializer: | no | hasPropertyWrapperBackingVarBinding: | no | hasPropertyWrapperBackingVar: | no | hasPropertyWrapperProjectionVarBinding: | no | hasPropertyWrapperProjectionVar: | no | isInout: | no | hasPropertyWrapperLocalWrappedVarBinding: | no | hasPropertyWrapperLocalWrappedVar: | no |
+| param_decls.swift:28:9:28:9 | self | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | WrapperWithProjected | getNumberOfAccessorDecls: | 0 | getName: | self | getType: | WrapperWithProjected | hasAttachedPropertyWrapperType: | no | hasParentPattern: | no | hasParentInitializer: | no | hasPropertyWrapperBackingVarBinding: | no | hasPropertyWrapperBackingVar: | no | hasPropertyWrapperProjectionVarBinding: | no | hasPropertyWrapperProjectionVar: | no | isInout: | no | hasPropertyWrapperLocalWrappedVarBinding: | no | hasPropertyWrapperLocalWrappedVar: | no |
+| param_decls.swift:28:9:28:9 | self | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | WrapperWithProjected | getNumberOfAccessorDecls: | 0 | getName: | self | getType: | WrapperWithProjected | hasAttachedPropertyWrapperType: | no | hasParentPattern: | no | hasParentInitializer: | no | hasPropertyWrapperBackingVarBinding: | no | hasPropertyWrapperBackingVar: | no | hasPropertyWrapperProjectionVarBinding: | no | hasPropertyWrapperProjectionVar: | no | isInout: | yes | hasPropertyWrapperLocalWrappedVarBinding: | no | hasPropertyWrapperLocalWrappedVar: | no |
+| param_decls.swift:28:9:28:9 | self | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | WrapperWithProjected | getNumberOfAccessorDecls: | 0 | getName: | self | getType: | WrapperWithProjected | hasAttachedPropertyWrapperType: | no | hasParentPattern: | no | hasParentInitializer: | no | hasPropertyWrapperBackingVarBinding: | no | hasPropertyWrapperBackingVar: | no | hasPropertyWrapperProjectionVarBinding: | no | hasPropertyWrapperProjectionVar: | no | isInout: | yes | hasPropertyWrapperLocalWrappedVarBinding: | no | hasPropertyWrapperLocalWrappedVar: | no |
+| param_decls.swift:28:9:28:9 | value | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | Int | getNumberOfAccessorDecls: | 0 | getName: | value | getType: | Int | hasAttachedPropertyWrapperType: | no | hasParentPattern: | no | hasParentInitializer: | no | hasPropertyWrapperBackingVarBinding: | no | hasPropertyWrapperBackingVar: | no | hasPropertyWrapperProjectionVarBinding: | no | hasPropertyWrapperProjectionVar: | no | isInout: | no | hasPropertyWrapperLocalWrappedVarBinding: | no | hasPropertyWrapperLocalWrappedVar: | no |
+| param_decls.swift:29:9:29:9 | self | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | WrapperWithProjected | getNumberOfAccessorDecls: | 0 | getName: | self | getType: | WrapperWithProjected | hasAttachedPropertyWrapperType: | no | hasParentPattern: | no | hasParentInitializer: | no | hasPropertyWrapperBackingVarBinding: | no | hasPropertyWrapperBackingVar: | no | hasPropertyWrapperProjectionVarBinding: | no | hasPropertyWrapperProjectionVar: | no | isInout: | no | hasPropertyWrapperLocalWrappedVarBinding: | no | hasPropertyWrapperLocalWrappedVar: | no |
+| param_decls.swift:29:9:29:9 | self | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | WrapperWithProjected | getNumberOfAccessorDecls: | 0 | getName: | self | getType: | WrapperWithProjected | hasAttachedPropertyWrapperType: | no | hasParentPattern: | no | hasParentInitializer: | no | hasPropertyWrapperBackingVarBinding: | no | hasPropertyWrapperBackingVar: | no | hasPropertyWrapperProjectionVarBinding: | no | hasPropertyWrapperProjectionVar: | no | isInout: | yes | hasPropertyWrapperLocalWrappedVarBinding: | no | hasPropertyWrapperLocalWrappedVar: | no |
+| param_decls.swift:29:9:29:9 | self | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | WrapperWithProjected | getNumberOfAccessorDecls: | 0 | getName: | self | getType: | WrapperWithProjected | hasAttachedPropertyWrapperType: | no | hasParentPattern: | no | hasParentInitializer: | no | hasPropertyWrapperBackingVarBinding: | no | hasPropertyWrapperBackingVar: | no | hasPropertyWrapperProjectionVarBinding: | no | hasPropertyWrapperProjectionVar: | no | isInout: | yes | hasPropertyWrapperLocalWrappedVarBinding: | no | hasPropertyWrapperLocalWrappedVar: | no |
+| param_decls.swift:29:9:29:9 | value | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | Bool | getNumberOfAccessorDecls: | 0 | getName: | value | getType: | Bool | hasAttachedPropertyWrapperType: | no | hasParentPattern: | no | hasParentInitializer: | no | hasPropertyWrapperBackingVarBinding: | no | hasPropertyWrapperBackingVar: | no | hasPropertyWrapperProjectionVarBinding: | no | hasPropertyWrapperProjectionVar: | no | isInout: | no | hasPropertyWrapperLocalWrappedVarBinding: | no | hasPropertyWrapperLocalWrappedVar: | no |
+| param_decls.swift:33:9:33:9 | self | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | WrapperWithProjectedAndInit | getNumberOfAccessorDecls: | 0 | getName: | self | getType: | WrapperWithProjectedAndInit | hasAttachedPropertyWrapperType: | no | hasParentPattern: | no | hasParentInitializer: | no | hasPropertyWrapperBackingVarBinding: | no | hasPropertyWrapperBackingVar: | no | hasPropertyWrapperProjectionVarBinding: | no | hasPropertyWrapperProjectionVar: | no | isInout: | no | hasPropertyWrapperLocalWrappedVarBinding: | no | hasPropertyWrapperLocalWrappedVar: | no |
+| param_decls.swift:33:9:33:9 | self | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | WrapperWithProjectedAndInit | getNumberOfAccessorDecls: | 0 | getName: | self | getType: | WrapperWithProjectedAndInit | hasAttachedPropertyWrapperType: | no | hasParentPattern: | no | hasParentInitializer: | no | hasPropertyWrapperBackingVarBinding: | no | hasPropertyWrapperBackingVar: | no | hasPropertyWrapperProjectionVarBinding: | no | hasPropertyWrapperProjectionVar: | no | isInout: | yes | hasPropertyWrapperLocalWrappedVarBinding: | no | hasPropertyWrapperLocalWrappedVar: | no |
+| param_decls.swift:33:9:33:9 | self | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | WrapperWithProjectedAndInit | getNumberOfAccessorDecls: | 0 | getName: | self | getType: | WrapperWithProjectedAndInit | hasAttachedPropertyWrapperType: | no | hasParentPattern: | no | hasParentInitializer: | no | hasPropertyWrapperBackingVarBinding: | no | hasPropertyWrapperBackingVar: | no | hasPropertyWrapperProjectionVarBinding: | no | hasPropertyWrapperProjectionVar: | no | isInout: | yes | hasPropertyWrapperLocalWrappedVarBinding: | no | hasPropertyWrapperLocalWrappedVar: | no |
+| param_decls.swift:33:9:33:9 | value | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | Int | getNumberOfAccessorDecls: | 0 | getName: | value | getType: | Int | hasAttachedPropertyWrapperType: | no | hasParentPattern: | no | hasParentInitializer: | no | hasPropertyWrapperBackingVarBinding: | no | hasPropertyWrapperBackingVar: | no | hasPropertyWrapperProjectionVarBinding: | no | hasPropertyWrapperProjectionVar: | no | isInout: | no | hasPropertyWrapperLocalWrappedVarBinding: | no | hasPropertyWrapperLocalWrappedVar: | no |
+| param_decls.swift:34:9:34:9 | self | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | WrapperWithProjectedAndInit | getNumberOfAccessorDecls: | 0 | getName: | self | getType: | WrapperWithProjectedAndInit | hasAttachedPropertyWrapperType: | no | hasParentPattern: | no | hasParentInitializer: | no | hasPropertyWrapperBackingVarBinding: | no | hasPropertyWrapperBackingVar: | no | hasPropertyWrapperProjectionVarBinding: | no | hasPropertyWrapperProjectionVar: | no | isInout: | no | hasPropertyWrapperLocalWrappedVarBinding: | no | hasPropertyWrapperLocalWrappedVar: | no |
+| param_decls.swift:34:9:34:9 | self | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | WrapperWithProjectedAndInit | getNumberOfAccessorDecls: | 0 | getName: | self | getType: | WrapperWithProjectedAndInit | hasAttachedPropertyWrapperType: | no | hasParentPattern: | no | hasParentInitializer: | no | hasPropertyWrapperBackingVarBinding: | no | hasPropertyWrapperBackingVar: | no | hasPropertyWrapperProjectionVarBinding: | no | hasPropertyWrapperProjectionVar: | no | isInout: | yes | hasPropertyWrapperLocalWrappedVarBinding: | no | hasPropertyWrapperLocalWrappedVar: | no |
+| param_decls.swift:34:9:34:9 | self | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | WrapperWithProjectedAndInit | getNumberOfAccessorDecls: | 0 | getName: | self | getType: | WrapperWithProjectedAndInit | hasAttachedPropertyWrapperType: | no | hasParentPattern: | no | hasParentInitializer: | no | hasPropertyWrapperBackingVarBinding: | no | hasPropertyWrapperBackingVar: | no | hasPropertyWrapperProjectionVarBinding: | no | hasPropertyWrapperProjectionVar: | no | isInout: | yes | hasPropertyWrapperLocalWrappedVarBinding: | no | hasPropertyWrapperLocalWrappedVar: | no |
+| param_decls.swift:34:9:34:9 | value | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | Bool | getNumberOfAccessorDecls: | 0 | getName: | value | getType: | Bool | hasAttachedPropertyWrapperType: | no | hasParentPattern: | no | hasParentInitializer: | no | hasPropertyWrapperBackingVarBinding: | no | hasPropertyWrapperBackingVar: | no | hasPropertyWrapperProjectionVarBinding: | no | hasPropertyWrapperProjectionVar: | no | isInout: | no | hasPropertyWrapperLocalWrappedVarBinding: | no | hasPropertyWrapperLocalWrappedVar: | no |
+| param_decls.swift:36:5:36:5 | self | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | WrapperWithProjectedAndInit | getNumberOfAccessorDecls: | 0 | getName: | self | getType: | WrapperWithProjectedAndInit | hasAttachedPropertyWrapperType: | no | hasParentPattern: | no | hasParentInitializer: | no | hasPropertyWrapperBackingVarBinding: | no | hasPropertyWrapperBackingVar: | no | hasPropertyWrapperProjectionVarBinding: | no | hasPropertyWrapperProjectionVar: | no | isInout: | yes | hasPropertyWrapperLocalWrappedVarBinding: | no | hasPropertyWrapperLocalWrappedVar: | no |
+| param_decls.swift:36:10:36:24 | wrappedValue | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | Int | getNumberOfAccessorDecls: | 0 | getName: | wrappedValue | getType: | Int | hasAttachedPropertyWrapperType: | no | hasParentPattern: | no | hasParentInitializer: | no | hasPropertyWrapperBackingVarBinding: | no | hasPropertyWrapperBackingVar: | no | hasPropertyWrapperProjectionVarBinding: | no | hasPropertyWrapperProjectionVar: | no | isInout: | no | hasPropertyWrapperLocalWrappedVarBinding: | no | hasPropertyWrapperLocalWrappedVar: | no |
+| param_decls.swift:41:5:41:5 | self | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | WrapperWithProjectedAndInit | getNumberOfAccessorDecls: | 0 | getName: | self | getType: | WrapperWithProjectedAndInit | hasAttachedPropertyWrapperType: | no | hasParentPattern: | no | hasParentInitializer: | no | hasPropertyWrapperBackingVarBinding: | no | hasPropertyWrapperBackingVar: | no | hasPropertyWrapperProjectionVarBinding: | no | hasPropertyWrapperProjectionVar: | no | isInout: | yes | hasPropertyWrapperLocalWrappedVarBinding: | no | hasPropertyWrapperLocalWrappedVar: | no |
+| param_decls.swift:41:10:41:26 | projectedValue | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | Bool | getNumberOfAccessorDecls: | 0 | getName: | projectedValue | getType: | Bool | hasAttachedPropertyWrapperType: | no | hasParentPattern: | no | hasParentInitializer: | no | hasPropertyWrapperBackingVarBinding: | no | hasPropertyWrapperBackingVar: | no | hasPropertyWrapperProjectionVarBinding: | no | hasPropertyWrapperProjectionVar: | no | isInout: | no | hasPropertyWrapperLocalWrappedVarBinding: | no | hasPropertyWrapperLocalWrappedVar: | no |
+| param_decls.swift:48:18:48:22 | p1 | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | Int | getNumberOfAccessorDecls: | 0 | getName: | p1 | getType: | Int | hasAttachedPropertyWrapperType: | yes | hasParentPattern: | no | hasParentInitializer: | no | hasPropertyWrapperBackingVarBinding: | yes | hasPropertyWrapperBackingVar: | yes | hasPropertyWrapperProjectionVarBinding: | no | hasPropertyWrapperProjectionVar: | no | isInout: | no | hasPropertyWrapperLocalWrappedVarBinding: | no | hasPropertyWrapperLocalWrappedVar: | yes |
+| param_decls.swift:49:26:49:30 | p2 | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | Int | getNumberOfAccessorDecls: | 0 | getName: | p2 | getType: | Int | hasAttachedPropertyWrapperType: | yes | hasParentPattern: | no | hasParentInitializer: | no | hasPropertyWrapperBackingVarBinding: | yes | hasPropertyWrapperBackingVar: | yes | hasPropertyWrapperProjectionVarBinding: | no | hasPropertyWrapperProjectionVar: | no | isInout: | no | hasPropertyWrapperLocalWrappedVarBinding: | no | hasPropertyWrapperLocalWrappedVar: | yes |
+| param_decls.swift:50:31:50:31 | value | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | Bool | getNumberOfAccessorDecls: | 0 | getName: | value | getType: | Bool | hasAttachedPropertyWrapperType: | no | hasParentPattern: | no | hasParentInitializer: | no | hasPropertyWrapperBackingVarBinding: | no | hasPropertyWrapperBackingVar: | no | hasPropertyWrapperProjectionVarBinding: | no | hasPropertyWrapperProjectionVar: | no | isInout: | no | hasPropertyWrapperLocalWrappedVarBinding: | no | hasPropertyWrapperLocalWrappedVar: | no |
+| param_decls.swift:50:31:50:35 | p3 | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | Int | getNumberOfAccessorDecls: | 0 | getName: | p3 | getType: | Int | hasAttachedPropertyWrapperType: | yes | hasParentPattern: | no | hasParentInitializer: | no | hasPropertyWrapperBackingVarBinding: | no | hasPropertyWrapperBackingVar: | yes | hasPropertyWrapperProjectionVarBinding: | yes | hasPropertyWrapperProjectionVar: | yes | isInout: | no | hasPropertyWrapperLocalWrappedVarBinding: | no | hasPropertyWrapperLocalWrappedVar: | yes |
+| param_decls.swift:51:38:51:38 | value | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | Bool | getNumberOfAccessorDecls: | 0 | getName: | value | getType: | Bool | hasAttachedPropertyWrapperType: | no | hasParentPattern: | no | hasParentInitializer: | no | hasPropertyWrapperBackingVarBinding: | no | hasPropertyWrapperBackingVar: | no | hasPropertyWrapperProjectionVarBinding: | no | hasPropertyWrapperProjectionVar: | no | isInout: | no | hasPropertyWrapperLocalWrappedVarBinding: | no | hasPropertyWrapperLocalWrappedVar: | no |
+| param_decls.swift:51:38:51:42 | p4 | getModule: | file://:0:0:0:0 | param_decls | getInterfaceType: | Int | getNumberOfAccessorDecls: | 0 | getName: | p4 | getType: | Int | hasAttachedPropertyWrapperType: | yes | hasParentPattern: | no | hasParentInitializer: | no | hasPropertyWrapperBackingVarBinding: | no | hasPropertyWrapperBackingVar: | yes | hasPropertyWrapperProjectionVarBinding: | yes | hasPropertyWrapperProjectionVar: | yes | isInout: | no | hasPropertyWrapperLocalWrappedVarBinding: | no | hasPropertyWrapperLocalWrappedVar: | yes |
diff --git a/swift/ql/test/extractor-tests/generated/expr/AppliedPropertyWrapperExpr/AppliedPropertyWrapperExpr.expected b/swift/ql/test/extractor-tests/generated/expr/AppliedPropertyWrapperExpr/AppliedPropertyWrapperExpr.expected
index 5defaa92b15..d8f0d8f98c3 100644
--- a/swift/ql/test/extractor-tests/generated/expr/AppliedPropertyWrapperExpr/AppliedPropertyWrapperExpr.expected
+++ b/swift/ql/test/extractor-tests/generated/expr/AppliedPropertyWrapperExpr/AppliedPropertyWrapperExpr.expected
@@ -1,3 +1,3 @@
-| applied_property_wrapper.swift:14:8:14:8 | AppliedPropertyWrapperExpr | getKind: | 1 | getValue: | applied_property_wrapper.swift:14:8:14:8 | 42 | getParam: | applied_property_wrapper.swift:12:19:12:22 | x |
-| applied_property_wrapper.swift:15:9:15:9 | AppliedPropertyWrapperExpr | getKind: | 2 | getValue: | applied_property_wrapper.swift:15:9:15:9 | true | getParam: | applied_property_wrapper.swift:12:19:12:22 | x |
-| file://:0:0:0:0 | AppliedPropertyWrapperExpr | getKind: | 1 | getValue: | file://:0:0:0:0 | y | getParam: | applied_property_wrapper.swift:17:26:17:29 | y |
+| applied_property_wrapper.swift:14:8:14:8 | AppliedPropertyWrapperExpr | hasType: | yes | getKind: | 1 | getValue: | applied_property_wrapper.swift:14:8:14:8 | 42 | getParam: | applied_property_wrapper.swift:12:19:12:22 | x |
+| applied_property_wrapper.swift:15:9:15:9 | AppliedPropertyWrapperExpr | hasType: | yes | getKind: | 2 | getValue: | applied_property_wrapper.swift:15:9:15:9 | true | getParam: | applied_property_wrapper.swift:12:19:12:22 | x |
+| file://:0:0:0:0 | AppliedPropertyWrapperExpr | hasType: | yes | getKind: | 1 | getValue: | file://:0:0:0:0 | y | getParam: | applied_property_wrapper.swift:17:26:17:29 | y |
diff --git a/swift/ql/test/extractor-tests/generated/expr/ConstructorRefCallExpr/ConstructorRefCallExpr.expected b/swift/ql/test/extractor-tests/generated/expr/ConstructorRefCallExpr/ConstructorRefCallExpr.expected
index 262953a26f5..20ea789bc5c 100644
--- a/swift/ql/test/extractor-tests/generated/expr/ConstructorRefCallExpr/ConstructorRefCallExpr.expected
+++ b/swift/ql/test/extractor-tests/generated/expr/ConstructorRefCallExpr/ConstructorRefCallExpr.expected
@@ -1,3 +1,3 @@
-| constructor_ref_calls.swift:7:9:7:9 | call to init() | getFunction: | constructor_ref_calls.swift:7:9:7:9 | init() | getBase: | constructor_ref_calls.swift:7:9:7:9 | X.Type |
-| constructor_ref_calls.swift:8:10:8:10 | call to init(_:) | getFunction: | constructor_ref_calls.swift:8:10:8:10 | init(_:) | getBase: | constructor_ref_calls.swift:8:10:8:10 | Y.Type |
-| constructor_ref_calls.swift:9:10:9:10 | call to init() | getFunction: | constructor_ref_calls.swift:9:10:9:10 | init() | getBase: | constructor_ref_calls.swift:9:10:9:10 | Y.Type |
+| constructor_ref_calls.swift:7:9:7:9 | call to init() | hasType: | yes | getFunction: | constructor_ref_calls.swift:7:9:7:9 | init() | getNumberOfArguments: | 1 | getBase: | constructor_ref_calls.swift:7:9:7:9 | X.Type |
+| constructor_ref_calls.swift:8:10:8:10 | call to init(_:) | hasType: | yes | getFunction: | constructor_ref_calls.swift:8:10:8:10 | init(_:) | getNumberOfArguments: | 1 | getBase: | constructor_ref_calls.swift:8:10:8:10 | Y.Type |
+| constructor_ref_calls.swift:9:10:9:10 | call to init() | hasType: | yes | getFunction: | constructor_ref_calls.swift:9:10:9:10 | init() | getNumberOfArguments: | 1 | getBase: | constructor_ref_calls.swift:9:10:9:10 | Y.Type |
diff --git a/swift/ql/test/extractor-tests/generated/expr/DotSyntaxCallExpr/DotSyntaxCallExpr.expected b/swift/ql/test/extractor-tests/generated/expr/DotSyntaxCallExpr/DotSyntaxCallExpr.expected
index 757b781a0da..a404a20b16d 100644
--- a/swift/ql/test/extractor-tests/generated/expr/DotSyntaxCallExpr/DotSyntaxCallExpr.expected
+++ b/swift/ql/test/extractor-tests/generated/expr/DotSyntaxCallExpr/DotSyntaxCallExpr.expected
@@ -1,3 +1,3 @@
-| dot_syntax_call.swift:7:13:7:13 | call to ... | getFunction: | dot_syntax_call.swift:7:13:7:13 | { ... } | getBase: | dot_syntax_call.swift:7:13:7:13 | self |
-| dot_syntax_call.swift:15:9:15:11 | call to ... | getFunction: | dot_syntax_call.swift:15:11:15:11 | { ... } | getBase: | dot_syntax_call.swift:15:9:15:9 | X.Type |
-| dot_syntax_call.swift:16:9:16:13 | call to ... | getFunction: | dot_syntax_call.swift:16:13:16:13 | { ... } | getBase: | dot_syntax_call.swift:16:9:16:11 | call to init() |
+| dot_syntax_call.swift:7:13:7:13 | call to ... | hasType: | yes | getFunction: | dot_syntax_call.swift:7:13:7:13 | { ... } | getNumberOfArguments: | 1 | getBase: | dot_syntax_call.swift:7:13:7:13 | self |
+| dot_syntax_call.swift:15:9:15:11 | call to ... | hasType: | yes | getFunction: | dot_syntax_call.swift:15:11:15:11 | { ... } | getNumberOfArguments: | 1 | getBase: | dot_syntax_call.swift:15:9:15:9 | X.Type |
+| dot_syntax_call.swift:16:9:16:13 | call to ... | hasType: | yes | getFunction: | dot_syntax_call.swift:16:13:16:13 | { ... } | getNumberOfArguments: | 1 | getBase: | dot_syntax_call.swift:16:9:16:11 | call to init() |
diff --git a/swift/ql/test/extractor-tests/generated/expr/DynamicLookupExpr/DynamicLookupExpr.expected b/swift/ql/test/extractor-tests/generated/expr/DynamicLookupExpr/DynamicLookupExpr.expected
index 06d128d943d..e188be2275f 100644
--- a/swift/ql/test/extractor-tests/generated/expr/DynamicLookupExpr/DynamicLookupExpr.expected
+++ b/swift/ql/test/extractor-tests/generated/expr/DynamicLookupExpr/DynamicLookupExpr.expected
@@ -1,2 +1,2 @@
-| dynamic_lookup.swift:15:1:15:3 | .foo(_:) | DynamicMemberRefExpr | getBase: | dynamic_lookup.swift:15:1:15:1 | OpaqueValueExpr |
-| dynamic_lookup.swift:16:5:16:9 | subscript ...[...] | DynamicSubscriptExpr | getBase: | dynamic_lookup.swift:16:5:16:5 | OpaqueValueExpr |
+| dynamic_lookup.swift:15:1:15:3 | .foo(_:) | DynamicMemberRefExpr | hasType: | yes | getBase: | dynamic_lookup.swift:15:1:15:1 | OpaqueValueExpr | hasMember: | yes |
+| dynamic_lookup.swift:16:5:16:9 | subscript ...[...] | DynamicSubscriptExpr | hasType: | yes | getBase: | dynamic_lookup.swift:16:5:16:5 | OpaqueValueExpr | hasMember: | yes |
diff --git a/swift/ql/test/extractor-tests/generated/expr/EnumIsCaseExpr/EnumIsCaseExpr.expected b/swift/ql/test/extractor-tests/generated/expr/EnumIsCaseExpr/EnumIsCaseExpr.expected
index e18f2328244..fab1dc0e1ae 100644
--- a/swift/ql/test/extractor-tests/generated/expr/EnumIsCaseExpr/EnumIsCaseExpr.expected
+++ b/swift/ql/test/extractor-tests/generated/expr/EnumIsCaseExpr/EnumIsCaseExpr.expected
@@ -1,10 +1,10 @@
-| enum_is_case.swift:4:1:4:17 | ... is some | getSubExpr: | enum_is_case.swift:4:1:4:17 | OptionalEvaluationExpr | getElement: | file://:0:0:0:0 | some |
-| enum_is_case.swift:5:1:5:32 | ... is some | getSubExpr: | enum_is_case.swift:5:1:5:32 | OptionalEvaluationExpr | getElement: | file://:0:0:0:0 | some |
-| enum_is_case.swift:6:1:6:1 | ... is some | getSubExpr: | enum_is_case.swift:6:1:6:1 | 42 | getElement: | file://:0:0:0:0 | some |
-| enum_is_case.swift:7:1:7:1 | ... is some | getSubExpr: | enum_is_case.swift:7:1:7:1 | 42 | getElement: | file://:0:0:0:0 | some |
-| enum_is_case.swift:9:1:9:19 | ... is some | getSubExpr: | enum_is_case.swift:9:1:9:19 | [...] | getElement: | file://:0:0:0:0 | some |
-| enum_is_case.swift:19:1:19:18 | ... is some | getSubExpr: | enum_is_case.swift:19:1:19:18 | OptionalEvaluationExpr | getElement: | file://:0:0:0:0 | some |
-| enum_is_case.swift:21:1:21:5 | ... is some | getSubExpr: | enum_is_case.swift:21:1:21:5 | [...] | getElement: | file://:0:0:0:0 | some |
-| enum_is_case.swift:22:1:22:10 | ... is some | getSubExpr: | enum_is_case.swift:22:1:22:10 | [...] | getElement: | file://:0:0:0:0 | some |
-| enum_is_case.swift:23:1:23:10 | ... is some | getSubExpr: | enum_is_case.swift:23:1:23:10 | [...] | getElement: | file://:0:0:0:0 | some |
-| enum_is_case.swift:24:1:24:8 | ... is some | getSubExpr: | enum_is_case.swift:24:1:24:8 | call to init() | getElement: | file://:0:0:0:0 | some |
+| enum_is_case.swift:4:1:4:17 | ... is some | hasType: | yes | getSubExpr: | enum_is_case.swift:4:1:4:17 | OptionalEvaluationExpr | getElement: | file://:0:0:0:0 | some |
+| enum_is_case.swift:5:1:5:32 | ... is some | hasType: | yes | getSubExpr: | enum_is_case.swift:5:1:5:32 | OptionalEvaluationExpr | getElement: | file://:0:0:0:0 | some |
+| enum_is_case.swift:6:1:6:1 | ... is some | hasType: | yes | getSubExpr: | enum_is_case.swift:6:1:6:1 | 42 | getElement: | file://:0:0:0:0 | some |
+| enum_is_case.swift:7:1:7:1 | ... is some | hasType: | yes | getSubExpr: | enum_is_case.swift:7:1:7:1 | 42 | getElement: | file://:0:0:0:0 | some |
+| enum_is_case.swift:9:1:9:19 | ... is some | hasType: | yes | getSubExpr: | enum_is_case.swift:9:1:9:19 | [...] | getElement: | file://:0:0:0:0 | some |
+| enum_is_case.swift:19:1:19:18 | ... is some | hasType: | yes | getSubExpr: | enum_is_case.swift:19:1:19:18 | OptionalEvaluationExpr | getElement: | file://:0:0:0:0 | some |
+| enum_is_case.swift:21:1:21:5 | ... is some | hasType: | yes | getSubExpr: | enum_is_case.swift:21:1:21:5 | [...] | getElement: | file://:0:0:0:0 | some |
+| enum_is_case.swift:22:1:22:10 | ... is some | hasType: | yes | getSubExpr: | enum_is_case.swift:22:1:22:10 | [...] | getElement: | file://:0:0:0:0 | some |
+| enum_is_case.swift:23:1:23:10 | ... is some | hasType: | yes | getSubExpr: | enum_is_case.swift:23:1:23:10 | [...] | getElement: | file://:0:0:0:0 | some |
+| enum_is_case.swift:24:1:24:8 | ... is some | hasType: | yes | getSubExpr: | enum_is_case.swift:24:1:24:8 | call to init() | getElement: | file://:0:0:0:0 | some |
diff --git a/swift/ql/test/extractor-tests/generated/expr/IdentityExpr/IdentityExpr.expected b/swift/ql/test/extractor-tests/generated/expr/IdentityExpr/IdentityExpr.expected
index 0b250d710ea..dc62de6f590 100644
--- a/swift/ql/test/extractor-tests/generated/expr/IdentityExpr/IdentityExpr.expected
+++ b/swift/ql/test/extractor-tests/generated/expr/IdentityExpr/IdentityExpr.expected
@@ -1,8 +1,8 @@
-| identity_expressions.swift:4:9:4:14 | .self | DotSelfExpr | getSubExpr: | identity_expressions.swift:4:9:4:9 | self |
-| identity_expressions.swift:4:9:4:21 | .self | DotSelfExpr | getSubExpr: | identity_expressions.swift:4:9:4:19 | .x |
-| identity_expressions.swift:4:28:4:31 | (...) | ParenExpr | getSubExpr: | identity_expressions.swift:4:29:4:29 | 42 |
-| identity_expressions.swift:8:5:8:9 | (...) | ParenExpr | getSubExpr: | identity_expressions.swift:8:6:8:8 | call to init() |
-| identity_expressions.swift:11:28:11:43 | (...) | ParenExpr | getSubExpr: | identity_expressions.swift:11:35:11:42 | call to create() |
-| identity_expressions.swift:11:29:11:42 | await ... | AwaitExpr | getSubExpr: | identity_expressions.swift:11:35:11:42 | call to create() |
-| identity_expressions.swift:14:5:14:21 | await ... | AwaitExpr | getSubExpr: | identity_expressions.swift:14:11:14:21 | call to process() |
-| identity_expressions.swift:14:11:14:19 | (...) | ParenExpr | getSubExpr: | identity_expressions.swift:14:12:14:12 | process() |
+| identity_expressions.swift:4:9:4:14 | .self | DotSelfExpr | hasType: | yes | getSubExpr: | identity_expressions.swift:4:9:4:9 | self |
+| identity_expressions.swift:4:9:4:21 | .self | DotSelfExpr | hasType: | yes | getSubExpr: | identity_expressions.swift:4:9:4:19 | .x |
+| identity_expressions.swift:4:28:4:31 | (...) | ParenExpr | hasType: | yes | getSubExpr: | identity_expressions.swift:4:29:4:29 | 42 |
+| identity_expressions.swift:8:5:8:9 | (...) | ParenExpr | hasType: | yes | getSubExpr: | identity_expressions.swift:8:6:8:8 | call to init() |
+| identity_expressions.swift:11:28:11:43 | (...) | ParenExpr | hasType: | yes | getSubExpr: | identity_expressions.swift:11:35:11:42 | call to create() |
+| identity_expressions.swift:11:29:11:42 | await ... | AwaitExpr | hasType: | yes | getSubExpr: | identity_expressions.swift:11:35:11:42 | call to create() |
+| identity_expressions.swift:14:5:14:21 | await ... | AwaitExpr | hasType: | yes | getSubExpr: | identity_expressions.swift:14:11:14:21 | call to process() |
+| identity_expressions.swift:14:11:14:19 | (...) | ParenExpr | hasType: | yes | getSubExpr: | identity_expressions.swift:14:12:14:12 | process() |
diff --git a/swift/ql/test/extractor-tests/generated/expr/ImplicitConversionExpr/ImplicitConversionExpr.expected b/swift/ql/test/extractor-tests/generated/expr/ImplicitConversionExpr/ImplicitConversionExpr.expected
index fcc62b36775..90e2af39d30 100644
--- a/swift/ql/test/extractor-tests/generated/expr/ImplicitConversionExpr/ImplicitConversionExpr.expected
+++ b/swift/ql/test/extractor-tests/generated/expr/ImplicitConversionExpr/ImplicitConversionExpr.expected
@@ -1,5 +1,5 @@
-| implicit_conversions.swift:2:3:2:3 | (UnsafePointer<CChar>) ... | StringToPointerExpr | getSubExpr: | implicit_conversions.swift:2:3:2:3 | Hello |
-| implicit_conversions.swift:4:16:4:16 | (Int?) ... | InjectIntoOptionalExpr | getSubExpr: | implicit_conversions.swift:4:16:4:16 | 42 |
-| implicit_conversions.swift:5:25:5:25 | (Equatable) ... | ErasureExpr | getSubExpr: | implicit_conversions.swift:5:25:5:25 | 42 |
-| implicit_conversions.swift:12:3:12:5 | (@lvalue (() -> Void)?) ... | AbiSafeConversionExpr | getSubExpr: | implicit_conversions.swift:12:3:12:5 | .b |
-| implicit_conversions.swift:12:9:12:10 | ((() -> Void)?) ... | InjectIntoOptionalExpr | getSubExpr: | implicit_conversions.swift:12:9:12:10 | { ... } |
+| implicit_conversions.swift:2:3:2:3 | (UnsafePointer<CChar>) ... | StringToPointerExpr | hasType: | yes | getSubExpr: | implicit_conversions.swift:2:3:2:3 | Hello |
+| implicit_conversions.swift:4:16:4:16 | (Int?) ... | InjectIntoOptionalExpr | hasType: | yes | getSubExpr: | implicit_conversions.swift:4:16:4:16 | 42 |
+| implicit_conversions.swift:5:25:5:25 | (Equatable) ... | ErasureExpr | hasType: | yes | getSubExpr: | implicit_conversions.swift:5:25:5:25 | 42 |
+| implicit_conversions.swift:12:3:12:5 | (@lvalue (() -> Void)?) ... | AbiSafeConversionExpr | hasType: | yes | getSubExpr: | implicit_conversions.swift:12:3:12:5 | .b |
+| implicit_conversions.swift:12:9:12:10 | ((() -> Void)?) ... | InjectIntoOptionalExpr | hasType: | yes | getSubExpr: | implicit_conversions.swift:12:9:12:10 | { ... } |
diff --git a/swift/ql/test/extractor-tests/generated/expr/MethodRefExpr/MethodRefExpr.expected b/swift/ql/test/extractor-tests/generated/expr/MethodRefExpr/MethodRefExpr.expected
index e13de1855fa..98c3ca081da 100644
--- a/swift/ql/test/extractor-tests/generated/expr/MethodRefExpr/MethodRefExpr.expected
+++ b/swift/ql/test/extractor-tests/generated/expr/MethodRefExpr/MethodRefExpr.expected
@@ -1,6 +1,6 @@
-| method_refs.swift:7:13:7:13 | .baz(_:) | getBase: | file://:0:0:0:0 | self |
-| method_refs.swift:11:1:11:3 | .foo(_:_:) | getBase: | method_refs.swift:11:1:11:1 | X.Type |
-| method_refs.swift:12:1:12:3 | .bar() | getBase: | method_refs.swift:12:1:12:1 | X.Type |
-| method_refs.swift:13:1:13:5 | .baz(_:) | getBase: | method_refs.swift:13:1:13:3 | call to init() |
-| method_refs.swift:15:11:15:11 | .bar() | getBase: | file://:0:0:0:0 | self |
-| method_refs.swift:16:13:16:13 | .baz(_:) | getBase: | file://:0:0:0:0 | self |
+| method_refs.swift:7:13:7:13 | .baz(_:) | hasType: | yes | getBase: | file://:0:0:0:0 | self | hasMember: | yes |
+| method_refs.swift:11:1:11:3 | .foo(_:_:) | hasType: | yes | getBase: | method_refs.swift:11:1:11:1 | X.Type | hasMember: | yes |
+| method_refs.swift:12:1:12:3 | .bar() | hasType: | yes | getBase: | method_refs.swift:12:1:12:1 | X.Type | hasMember: | yes |
+| method_refs.swift:13:1:13:5 | .baz(_:) | hasType: | yes | getBase: | method_refs.swift:13:1:13:3 | call to init() | hasMember: | yes |
+| method_refs.swift:15:11:15:11 | .bar() | hasType: | yes | getBase: | file://:0:0:0:0 | self | hasMember: | yes |
+| method_refs.swift:16:13:16:13 | .baz(_:) | hasType: | yes | getBase: | file://:0:0:0:0 | self | hasMember: | yes |
diff --git a/swift/ql/test/extractor-tests/generated/expr/ObjectLiteralExpr/ObjectLiteralExpr.expected b/swift/ql/test/extractor-tests/generated/expr/ObjectLiteralExpr/ObjectLiteralExpr.expected
index 5865346ac85..d303c7a2f76 100644
--- a/swift/ql/test/extractor-tests/generated/expr/ObjectLiteralExpr/ObjectLiteralExpr.expected
+++ b/swift/ql/test/extractor-tests/generated/expr/ObjectLiteralExpr/ObjectLiteralExpr.expected
@@ -1,3 +1,3 @@
-| object_literals.swift:5:5:5:42 | #fileLiteral(...) | getKind: | 0 |
-| object_literals.swift:6:5:6:61 | #colorLiteral(...) | getKind: | 2 |
-| object_literals.swift:7:5:7:44 | #imageLiteral(...) | getKind: | 1 |
+| object_literals.swift:5:5:5:42 | #fileLiteral(...) | hasType: | no | getKind: | 0 | getNumberOfArguments: | 1 |
+| object_literals.swift:6:5:6:61 | #colorLiteral(...) | hasType: | no | getKind: | 2 | getNumberOfArguments: | 4 |
+| object_literals.swift:7:5:7:44 | #imageLiteral(...) | hasType: | no | getKind: | 1 | getNumberOfArguments: | 1 |
diff --git a/swift/ql/test/extractor-tests/generated/expr/PostfixUnaryExpr/PostfixUnaryExpr.expected b/swift/ql/test/extractor-tests/generated/expr/PostfixUnaryExpr/PostfixUnaryExpr.expected
index 56a26d5eb72..4207559e85e 100644
--- a/swift/ql/test/extractor-tests/generated/expr/PostfixUnaryExpr/PostfixUnaryExpr.expected
+++ b/swift/ql/test/extractor-tests/generated/expr/PostfixUnaryExpr/PostfixUnaryExpr.expected
@@ -1,2 +1,2 @@
-| postfix.swift:1:5:1:6 | call to ...(_:) | getFunction: | postfix.swift:1:6:1:6 | ....(_:) |
-| postfix.swift:7:1:7:2 | call to **(_:) | getFunction: | postfix.swift:7:2:7:2 | **(_:) |
+| postfix.swift:1:5:1:6 | call to ...(_:) | hasType: | yes | getFunction: | postfix.swift:1:6:1:6 | ....(_:) | getNumberOfArguments: | 1 |
+| postfix.swift:7:1:7:2 | call to **(_:) | hasType: | yes | getFunction: | postfix.swift:7:2:7:2 | **(_:) | getNumberOfArguments: | 1 |
diff --git a/swift/ql/test/extractor-tests/generated/expr/PropertyWrapperValuePlaceholderExpr/PropertyWrapperValuePlaceholderExpr.expected b/swift/ql/test/extractor-tests/generated/expr/PropertyWrapperValuePlaceholderExpr/PropertyWrapperValuePlaceholderExpr.expected
index 04f75e99e12..9fda9feadaf 100644
--- a/swift/ql/test/extractor-tests/generated/expr/PropertyWrapperValuePlaceholderExpr/PropertyWrapperValuePlaceholderExpr.expected
+++ b/swift/ql/test/extractor-tests/generated/expr/PropertyWrapperValuePlaceholderExpr/PropertyWrapperValuePlaceholderExpr.expected
@@ -1 +1 @@
-| property_wrapper_value_placeholder.swift:12:26:12:26 | PropertyWrapperValuePlaceholderExpr | getPlaceholder: | property_wrapper_value_placeholder.swift:12:26:12:26 | OpaqueValueExpr |
+| property_wrapper_value_placeholder.swift:12:26:12:26 | PropertyWrapperValuePlaceholderExpr | hasType: | yes | hasWrappedValue: | yes | getPlaceholder: | property_wrapper_value_placeholder.swift:12:26:12:26 | OpaqueValueExpr |
diff --git a/swift/ql/test/extractor-tests/generated/type/BuiltinIntegerType/BuiltinIntegerType.expected b/swift/ql/test/extractor-tests/generated/type/BuiltinIntegerType/BuiltinIntegerType.expected
index 410b13be428..507407ef6ae 100644
--- a/swift/ql/test/extractor-tests/generated/type/BuiltinIntegerType/BuiltinIntegerType.expected
+++ b/swift/ql/test/extractor-tests/generated/type/BuiltinIntegerType/BuiltinIntegerType.expected
@@ -1,5 +1,5 @@
-| Builtin.Int8 | getName: | Builtin.Int8 | getCanonicalType: | Builtin.Int8 |
-| Builtin.Int16 | getName: | Builtin.Int16 | getCanonicalType: | Builtin.Int16 |
-| Builtin.Int32 | getName: | Builtin.Int32 | getCanonicalType: | Builtin.Int32 |
-| Builtin.Int64 | getName: | Builtin.Int64 | getCanonicalType: | Builtin.Int64 |
-| Builtin.Word | getName: | Builtin.Word | getCanonicalType: | Builtin.Word |
+| Builtin.Int8 | getName: | Builtin.Int8 | getCanonicalType: | Builtin.Int8 | hasWidth: | yes |
+| Builtin.Int16 | getName: | Builtin.Int16 | getCanonicalType: | Builtin.Int16 | hasWidth: | yes |
+| Builtin.Int32 | getName: | Builtin.Int32 | getCanonicalType: | Builtin.Int32 | hasWidth: | yes |
+| Builtin.Int64 | getName: | Builtin.Int64 | getCanonicalType: | Builtin.Int64 | hasWidth: | yes |
+| Builtin.Word | getName: | Builtin.Word | getCanonicalType: | Builtin.Word | hasWidth: | no |
diff --git a/swift/ql/test/extractor-tests/generated/type/OpaqueTypeArchetypeType/OpaqueTypeArchetypeType.expected b/swift/ql/test/extractor-tests/generated/type/OpaqueTypeArchetypeType/OpaqueTypeArchetypeType.expected
index 3b6f1f62ae2..37921db705d 100644
--- a/swift/ql/test/extractor-tests/generated/type/OpaqueTypeArchetypeType/OpaqueTypeArchetypeType.expected
+++ b/swift/ql/test/extractor-tests/generated/type/OpaqueTypeArchetypeType/OpaqueTypeArchetypeType.expected
@@ -1,4 +1,4 @@
-| some Base | getName: | some Base | getCanonicalType: | some Base | getInterfaceType: | \u03c4_1_0 | getDeclaration: | file://:0:0:0:0 | _ |
-| some P | getName: | some P | getCanonicalType: | some P | getInterfaceType: | \u03c4_1_0 | getDeclaration: | file://:0:0:0:0 | _ |
-| some P | getName: | some P | getCanonicalType: | some P | getInterfaceType: | \u03c4_1_0 | getDeclaration: | file://:0:0:0:0 | _ |
-| some SignedInteger | getName: | some SignedInteger | getCanonicalType: | some SignedInteger | getInterfaceType: | \u03c4_0_0 | getDeclaration: | file://:0:0:0:0 | _ |
+| some Base | getName: | some Base | getCanonicalType: | some Base | getInterfaceType: | \u03c4_1_0 | hasSuperclass: | yes | getNumberOfProtocols: | 0 | getDeclaration: | file://:0:0:0:0 | _ |
+| some P | getName: | some P | getCanonicalType: | some P | getInterfaceType: | \u03c4_1_0 | hasSuperclass: | no | getNumberOfProtocols: | 1 | getDeclaration: | file://:0:0:0:0 | _ |
+| some P | getName: | some P | getCanonicalType: | some P | getInterfaceType: | \u03c4_1_0 | hasSuperclass: | no | getNumberOfProtocols: | 1 | getDeclaration: | file://:0:0:0:0 | _ |
+| some SignedInteger | getName: | some SignedInteger | getCanonicalType: | some SignedInteger | getInterfaceType: | \u03c4_0_0 | hasSuperclass: | no | getNumberOfProtocols: | 11 | getDeclaration: | file://:0:0:0:0 | _ |
diff --git a/swift/ql/test/extractor-tests/generated/type/OpenedArchetypeType/OpenedArchetypeType.expected b/swift/ql/test/extractor-tests/generated/type/OpenedArchetypeType/OpenedArchetypeType.expected
index f6c15bca419..05697f352ba 100644
--- a/swift/ql/test/extractor-tests/generated/type/OpenedArchetypeType/OpenedArchetypeType.expected
+++ b/swift/ql/test/extractor-tests/generated/type/OpenedArchetypeType/OpenedArchetypeType.expected
@@ -1 +1 @@
-| C & P1 & P2 | getName: | C & P1 & P2 | getCanonicalType: | C & P1 & P2 | getInterfaceType: | \u03c4_0_0 |
+| C & P1 & P2 | getName: | C & P1 & P2 | getCanonicalType: | C & P1 & P2 | getInterfaceType: | \u03c4_0_0 | hasSuperclass: | yes | getNumberOfProtocols: | 2 |
diff --git a/swift/ql/test/extractor-tests/generated/type/ParameterizedProtocolType/ParameterizedProtocolType.expected b/swift/ql/test/extractor-tests/generated/type/ParameterizedProtocolType/ParameterizedProtocolType.expected
index cb63fdef0c4..85c426e9c28 100644
--- a/swift/ql/test/extractor-tests/generated/type/ParameterizedProtocolType/ParameterizedProtocolType.expected
+++ b/swift/ql/test/extractor-tests/generated/type/ParameterizedProtocolType/ParameterizedProtocolType.expected
@@ -1 +1 @@
-| P<Int, String> | getName: | P<Int, String> | getCanonicalType: | P<Int, String> | getBase: | P |
+| P<Int, String> | getName: | P<Int, String> | getCanonicalType: | P<Int, String> | getBase: | P | getNumberOfArgs: | 2 |
diff --git a/swift/ql/test/extractor-tests/generated/type/PrimaryArchetypeType/PrimaryArchetypeType.expected b/swift/ql/test/extractor-tests/generated/type/PrimaryArchetypeType/PrimaryArchetypeType.expected
index c29242f0b27..ba9b94ff4b4 100644
--- a/swift/ql/test/extractor-tests/generated/type/PrimaryArchetypeType/PrimaryArchetypeType.expected
+++ b/swift/ql/test/extractor-tests/generated/type/PrimaryArchetypeType/PrimaryArchetypeType.expected
@@ -1,4 +1,4 @@
-| Param | getName: | Param | getCanonicalType: | Param | getInterfaceType: | Param |
-| ParamWithProtocols | getName: | ParamWithProtocols | getCanonicalType: | ParamWithProtocols | getInterfaceType: | ParamWithProtocols |
-| ParamWithSuperclass | getName: | ParamWithSuperclass | getCanonicalType: | ParamWithSuperclass | getInterfaceType: | ParamWithSuperclass |
-| ParamWithSuperclassAndProtocols | getName: | ParamWithSuperclassAndProtocols | getCanonicalType: | ParamWithSuperclassAndProtocols | getInterfaceType: | ParamWithSuperclassAndProtocols |
+| Param | getName: | Param | getCanonicalType: | Param | getInterfaceType: | Param | hasSuperclass: | no | getNumberOfProtocols: | 0 |
+| ParamWithProtocols | getName: | ParamWithProtocols | getCanonicalType: | ParamWithProtocols | getInterfaceType: | ParamWithProtocols | hasSuperclass: | no | getNumberOfProtocols: | 2 |
+| ParamWithSuperclass | getName: | ParamWithSuperclass | getCanonicalType: | ParamWithSuperclass | getInterfaceType: | ParamWithSuperclass | hasSuperclass: | yes | getNumberOfProtocols: | 0 |
+| ParamWithSuperclassAndProtocols | getName: | ParamWithSuperclassAndProtocols | getCanonicalType: | ParamWithSuperclassAndProtocols | getInterfaceType: | ParamWithSuperclassAndProtocols | hasSuperclass: | yes | getNumberOfProtocols: | 2 |
diff --git a/swift/ql/test/extractor-tests/generated/type/ProtocolCompositionType/ProtocolCompositionType.expected b/swift/ql/test/extractor-tests/generated/type/ProtocolCompositionType/ProtocolCompositionType.expected
index 7be629a81ca..5cda96eb6fe 100644
--- a/swift/ql/test/extractor-tests/generated/type/ProtocolCompositionType/ProtocolCompositionType.expected
+++ b/swift/ql/test/extractor-tests/generated/type/ProtocolCompositionType/ProtocolCompositionType.expected
@@ -1,4 +1,4 @@
-| P1 & (P2 & P3) | getName: | P1 & (P2 & P3) | getCanonicalType: | P1 & P2 & P3 |
-| P1 & P2 & P3 | getName: | P1 & P2 & P3 | getCanonicalType: | P1 & P2 & P3 |
-| P1 & P23 | getName: | P1 & P23 | getCanonicalType: | P1 & P2 & P3 |
-| P2 & P4 | getName: | P2 & P4 | getCanonicalType: | P2 & P4 |
+| P1 & (P2 & P3) | getName: | P1 & (P2 & P3) | getCanonicalType: | P1 & P2 & P3 | getNumberOfMembers: | 2 |
+| P1 & P2 & P3 | getName: | P1 & P2 & P3 | getCanonicalType: | P1 & P2 & P3 | getNumberOfMembers: | 3 |
+| P1 & P23 | getName: | P1 & P23 | getCanonicalType: | P1 & P2 & P3 | getNumberOfMembers: | 2 |
+| P2 & P4 | getName: | P2 & P4 | getCanonicalType: | P2 & P4 | getNumberOfMembers: | 2 |

From 23626f2c6948e7cc184338f5f112830d2783b198 Mon Sep 17 00:00:00 2001
From: Paolo Tranquilli <redsun82@github.com>
Date: Wed, 7 Dec 2022 13:40:33 +0100
Subject: [PATCH 1120/1420] Swift: add `TupleType` test

---
 swift/ql/.generated.list                            |  4 +++-
 .../generated/type/TupleType/MISSING_SOURCE.txt     |  4 ----
 .../generated/type/TupleType/TupleType.expected     |  4 ++++
 .../generated/type/TupleType/TupleType.ql           | 13 +++++++++++++
 .../type/TupleType/TupleType_getName.expected       |  3 +++
 .../generated/type/TupleType/TupleType_getName.ql   |  7 +++++++
 .../type/TupleType/TupleType_getType.expected       | 13 +++++++++++++
 .../generated/type/TupleType/TupleType_getType.ql   |  7 +++++++
 .../generated/type/TupleType/tuples.swift           |  6 ++++++
 9 files changed, 56 insertions(+), 5 deletions(-)
 delete mode 100644 swift/ql/test/extractor-tests/generated/type/TupleType/MISSING_SOURCE.txt
 create mode 100644 swift/ql/test/extractor-tests/generated/type/TupleType/TupleType.expected
 create mode 100644 swift/ql/test/extractor-tests/generated/type/TupleType/TupleType.ql
 create mode 100644 swift/ql/test/extractor-tests/generated/type/TupleType/TupleType_getName.expected
 create mode 100644 swift/ql/test/extractor-tests/generated/type/TupleType/TupleType_getName.ql
 create mode 100644 swift/ql/test/extractor-tests/generated/type/TupleType/TupleType_getType.expected
 create mode 100644 swift/ql/test/extractor-tests/generated/type/TupleType/TupleType_getType.ql
 create mode 100644 swift/ql/test/extractor-tests/generated/type/TupleType/tuples.swift

diff --git a/swift/ql/.generated.list b/swift/ql/.generated.list
index e372a2ba34f..ff004e46881 100644
--- a/swift/ql/.generated.list
+++ b/swift/ql/.generated.list
@@ -878,7 +878,9 @@ ql/test/extractor-tests/generated/type/ProtocolCompositionType/ProtocolCompositi
 ql/test/extractor-tests/generated/type/ProtocolCompositionType/ProtocolCompositionType_getMember.ql 8c1e8e5932cd775f0d0812a64954be5fd5b3eedd8a26eedb0bd6009cbc156e24 5c43ef8000bb67ed0e070bbd9d5fc167dcb7b6334ae34747d27eb8060af1a7e5
 ql/test/extractor-tests/generated/type/ProtocolType/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
 ql/test/extractor-tests/generated/type/StructType/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
-ql/test/extractor-tests/generated/type/TupleType/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
+ql/test/extractor-tests/generated/type/TupleType/TupleType.ql 3ef454f940299726c035f0472ae4362d4b34fbe18a9af2a7d3581b1c734fad66 b5756e68f4eef3a02e7f1d2a7e16e41dc90d53fc631e0bd0c91ad015d63b77ca
+ql/test/extractor-tests/generated/type/TupleType/TupleType_getName.ql ab5c578f6e257960aa43b84dd5d4a66e17f2312b5f9955af0953aaecbe9e093a 1ff62da991b35e946446ecee706ac0e07a80059f35654c022ffe06bf7ae32cfe
+ql/test/extractor-tests/generated/type/TupleType/TupleType_getType.ql 3f861729c996b37e170adab56200e0671415663ff319bbf87c7c46ec8532d575 96a9735d69f250f3d67716d6a1552909d2aaa9b7758275b1b9002dca19000d22
 ql/test/extractor-tests/generated/type/TypeAliasType/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
 ql/test/extractor-tests/generated/type/TypeRepr/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
 ql/test/extractor-tests/generated/type/UnboundGenericType/MISSING_SOURCE.txt 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd 7e714762ffb48c436102027d560fb5addc1f7dc6dd6936b06e0d3cca031d67fd
diff --git a/swift/ql/test/extractor-tests/generated/type/TupleType/MISSING_SOURCE.txt b/swift/ql/test/extractor-tests/generated/type/TupleType/MISSING_SOURCE.txt
deleted file mode 100644
index 0d319d9a669..00000000000
--- a/swift/ql/test/extractor-tests/generated/type/TupleType/MISSING_SOURCE.txt
+++ /dev/null
@@ -1,4 +0,0 @@
-// generated by codegen/codegen.py
-
-After a swift source file is added in this directory and codegen/codegen.py is run again, test queries
-will appear and this file will be deleted
diff --git a/swift/ql/test/extractor-tests/generated/type/TupleType/TupleType.expected b/swift/ql/test/extractor-tests/generated/type/TupleType/TupleType.expected
new file mode 100644
index 00000000000..8d200724094
--- /dev/null
+++ b/swift/ql/test/extractor-tests/generated/type/TupleType/TupleType.expected
@@ -0,0 +1,4 @@
+| (Int, Int, Int, Int, Int) | getName: | (Int, Int, Int, Int, Int) | getCanonicalType: | (Int, Int, Int, Int, Int) | getNumberOfTypes: | 1 |
+| (Int, String, Double) | getName: | (Int, String, Double) | getCanonicalType: | (Int, String, Double) | getNumberOfTypes: | 3 |
+| (Int, s: String, Double) | getName: | (Int, s: String, Double) | getCanonicalType: | (Int, s: String, Double) | getNumberOfTypes: | 3 |
+| (x: Int, y: Int) | getName: | (x: Int, y: Int) | getCanonicalType: | (x: Int, y: Int) | getNumberOfTypes: | 1 |
diff --git a/swift/ql/test/extractor-tests/generated/type/TupleType/TupleType.ql b/swift/ql/test/extractor-tests/generated/type/TupleType/TupleType.ql
new file mode 100644
index 00000000000..bdb09c80061
--- /dev/null
+++ b/swift/ql/test/extractor-tests/generated/type/TupleType/TupleType.ql
@@ -0,0 +1,13 @@
+// generated by codegen/codegen.py
+import codeql.swift.elements
+import TestUtils
+
+from TupleType x, string getName, Type getCanonicalType, int getNumberOfTypes
+where
+  toBeTested(x) and
+  not x.isUnknown() and
+  getName = x.getName() and
+  getCanonicalType = x.getCanonicalType() and
+  getNumberOfTypes = x.getNumberOfTypes()
+select x, "getName:", getName, "getCanonicalType:", getCanonicalType, "getNumberOfTypes:",
+  getNumberOfTypes
diff --git a/swift/ql/test/extractor-tests/generated/type/TupleType/TupleType_getName.expected b/swift/ql/test/extractor-tests/generated/type/TupleType/TupleType_getName.expected
new file mode 100644
index 00000000000..327e8795d7f
--- /dev/null
+++ b/swift/ql/test/extractor-tests/generated/type/TupleType/TupleType_getName.expected
@@ -0,0 +1,3 @@
+| (Int, s: String, Double) | 1 | s |
+| (x: Int, y: Int) | 0 | x |
+| (x: Int, y: Int) | 1 | y |
diff --git a/swift/ql/test/extractor-tests/generated/type/TupleType/TupleType_getName.ql b/swift/ql/test/extractor-tests/generated/type/TupleType/TupleType_getName.ql
new file mode 100644
index 00000000000..4e24405d210
--- /dev/null
+++ b/swift/ql/test/extractor-tests/generated/type/TupleType/TupleType_getName.ql
@@ -0,0 +1,7 @@
+// generated by codegen/codegen.py
+import codeql.swift.elements
+import TestUtils
+
+from TupleType x, int index
+where toBeTested(x) and not x.isUnknown()
+select x, index, x.getName(index)
diff --git a/swift/ql/test/extractor-tests/generated/type/TupleType/TupleType_getType.expected b/swift/ql/test/extractor-tests/generated/type/TupleType/TupleType_getType.expected
new file mode 100644
index 00000000000..70bea6c2aa4
--- /dev/null
+++ b/swift/ql/test/extractor-tests/generated/type/TupleType/TupleType_getType.expected
@@ -0,0 +1,13 @@
+| (Int, Int, Int, Int, Int) | 0 | Int |
+| (Int, Int, Int, Int, Int) | 1 | Int |
+| (Int, Int, Int, Int, Int) | 2 | Int |
+| (Int, Int, Int, Int, Int) | 3 | Int |
+| (Int, Int, Int, Int, Int) | 4 | Int |
+| (Int, String, Double) | 0 | Int |
+| (Int, String, Double) | 1 | String |
+| (Int, String, Double) | 2 | Double |
+| (Int, s: String, Double) | 0 | Int |
+| (Int, s: String, Double) | 1 | String |
+| (Int, s: String, Double) | 2 | Double |
+| (x: Int, y: Int) | 0 | Int |
+| (x: Int, y: Int) | 1 | Int |
diff --git a/swift/ql/test/extractor-tests/generated/type/TupleType/TupleType_getType.ql b/swift/ql/test/extractor-tests/generated/type/TupleType/TupleType_getType.ql
new file mode 100644
index 00000000000..3b01875dfb8
--- /dev/null
+++ b/swift/ql/test/extractor-tests/generated/type/TupleType/TupleType_getType.ql
@@ -0,0 +1,7 @@
+// generated by codegen/codegen.py
+import codeql.swift.elements
+import TestUtils
+
+from TupleType x, int index
+where toBeTested(x) and not x.isUnknown()
+select x, index, x.getType(index)
diff --git a/swift/ql/test/extractor-tests/generated/type/TupleType/tuples.swift b/swift/ql/test/extractor-tests/generated/type/TupleType/tuples.swift
new file mode 100644
index 00000000000..8a8055da455
--- /dev/null
+++ b/swift/ql/test/extractor-tests/generated/type/TupleType/tuples.swift
@@ -0,0 +1,6 @@
+func foo(
+  _: (Int, String, Double),
+  _: (Int, Int, Int, Int, Int),
+  _: (x: Int, y: Int),
+  _: (Int, s: String, _: Double)
+) {}

From 194c99c51315ed5d1d31b283e395c4e57b0daf66 Mon Sep 17 00:00:00 2001
From: Paolo Tranquilli <redsun82@github.com>
Date: Wed, 7 Dec 2022 13:41:49 +0100
Subject: [PATCH 1121/1420] Swift: fix `getNumberOf` predicate

---
 swift/codegen/templates/ql_class.mustache     |  2 +-
 swift/ql/.generated.list                      | 74 +++++++++----------
 .../lib/codeql/swift/generated/Callable.qll   |  2 +-
 .../generated/decl/AbstractStorageDecl.qll    |  2 +-
 .../swift/generated/decl/EnumCaseDecl.qll     |  2 +-
 .../swift/generated/decl/EnumElementDecl.qll  |  2 +-
 .../swift/generated/decl/GenericContext.qll   |  4 +-
 .../swift/generated/decl/IfConfigDecl.qll     |  2 +-
 .../swift/generated/decl/ImportDecl.qll       |  2 +-
 .../generated/decl/IterableDeclContext.qll    |  2 +-
 .../swift/generated/decl/ModuleDecl.qll       |  4 +-
 .../swift/generated/decl/OpaqueTypeDecl.qll   |  4 +-
 .../generated/decl/PatternBindingDecl.qll     |  2 +-
 .../swift/generated/decl/SubscriptDecl.qll    |  2 +-
 .../codeql/swift/generated/decl/TypeDecl.qll  |  2 +-
 .../codeql/swift/generated/expr/ApplyExpr.qll |  2 +-
 .../codeql/swift/generated/expr/ArrayExpr.qll |  2 +-
 .../swift/generated/expr/CaptureListExpr.qll  |  2 +-
 .../swift/generated/expr/DeclRefExpr.qll      |  4 +-
 .../swift/generated/expr/DictionaryExpr.qll   |  2 +-
 .../generated/expr/ObjectLiteralExpr.qll      |  2 +-
 .../generated/expr/OverloadedDeclRefExpr.qll  |  4 +-
 .../swift/generated/expr/SequenceExpr.qll     |  2 +-
 .../swift/generated/expr/SubscriptExpr.qll    |  2 +-
 .../codeql/swift/generated/expr/TupleExpr.qll |  2 +-
 .../swift/generated/pattern/TuplePattern.qll  |  2 +-
 .../codeql/swift/generated/stmt/BraceStmt.qll |  2 +-
 .../codeql/swift/generated/stmt/CaseStmt.qll  |  4 +-
 .../swift/generated/stmt/DoCatchStmt.qll      |  2 +-
 .../swift/generated/stmt/StmtCondition.qll    |  2 +-
 .../swift/generated/stmt/SwitchStmt.qll       |  2 +-
 .../codeql/swift/generated/stmt/YieldStmt.qll |  2 +-
 .../swift/generated/type/AnyFunctionType.qll  |  2 +-
 .../swift/generated/type/ArchetypeType.qll    |  2 +-
 .../swift/generated/type/BoundGenericType.qll |  2 +-
 .../generated/type/GenericFunctionType.qll    |  2 +-
 .../type/ParameterizedProtocolType.qll        |  2 +-
 .../type/ProtocolCompositionType.qll          |  2 +-
 .../codeql/swift/generated/type/TupleType.qll |  2 +-
 39 files changed, 85 insertions(+), 77 deletions(-)

diff --git a/swift/codegen/templates/ql_class.mustache b/swift/codegen/templates/ql_class.mustache
index fa503d36b7d..2d7a6f247c0 100644
--- a/swift/codegen/templates/ql_class.mustache
+++ b/swift/codegen/templates/ql_class.mustache
@@ -126,7 +126,7 @@ module Generated {
      * Gets the number of {{doc_plural}}.
      */
     final int getNumberOf{{plural}}() {
-      result = count({{indefinite_getter}}())
+      result = count(int i | exists({{getter}}(i)))
     }
     {{/is_optional}}
     {{/is_repeated}}
diff --git a/swift/ql/.generated.list b/swift/ql/.generated.list
index ff004e46881..d16abb776b3 100644
--- a/swift/ql/.generated.list
+++ b/swift/ql/.generated.list
@@ -368,7 +368,7 @@ ql/lib/codeql/swift/elements/type/WeakStorageType.qll 87a28616eea3600fb0156fffcd
 ql/lib/codeql/swift/elements/type/WeakStorageTypeConstructor.qll d88b031ef44d6de14b3ddcff2eb47b53dbd11550c37250ff2edb42e5d21ec3e9 26d855c33492cf7a118e439f7baeed0e5425cfaf058b1dcc007eca7ed765c897
 ql/lib/codeql/swift/elements.qll 954945d6d4939b28e024b85f77c58ab5b4fab2c931aa5650e22d8ded97a7eda9 954945d6d4939b28e024b85f77c58ab5b4fab2c931aa5650e22d8ded97a7eda9
 ql/lib/codeql/swift/generated/AstNode.qll 02ca56d82801f942ae6265c6079d92ccafdf6b532f6bcebd98a04029ddf696e4 6216fda240e45bd4302fa0cf0f08f5f945418b144659264cdda84622b0420aa2
-ql/lib/codeql/swift/generated/Callable.qll f4050fac68d745fe0fc4d7bd6cff7c326d6c19a5820a780e1d7e589328b1e550 b6540534acc0b583481a18918264b95a129f13ad26256abe667bf4f72c4432d2
+ql/lib/codeql/swift/generated/Callable.qll f67df00043a3d7100d1438a5bc9cda18390db89d05047c47650b85ac4eaf3cb5 aab5400c5e31d9175a60c62483609aa7b11bb1dbdb652cba59025d077996c322
 ql/lib/codeql/swift/generated/Comment.qll f58b49f6e68c21f87c51e2ff84c8a64b09286d733e86f70d67d3a98fe6260bd6 975bbb599a2a7adc35179f6ae06d9cbc56ea8a03b972ef2ee87604834bc6deb1
 ql/lib/codeql/swift/generated/DbFile.qll a49b2a2cb2788cb49c861ebcd458b8daead7b15adb19c3a9f4db3bf39a0051fc a49b2a2cb2788cb49c861ebcd458b8daead7b15adb19c3a9f4db3bf39a0051fc
 ql/lib/codeql/swift/generated/DbLocation.qll b9baea963d9fa82068986512c0649d1050897654eee3df51dba17cf6b1170873 b9baea963d9fa82068986512c0649d1050897654eee3df51dba17cf6b1170873
@@ -387,7 +387,7 @@ ql/lib/codeql/swift/generated/UnknownFile.qll 0fcf9beb8de79440bcdfff4bb6ab3dd139
 ql/lib/codeql/swift/generated/UnknownLocation.qll e50efefa02a0ec1ff635a00951b5924602fc8cab57e5756e4a039382c69d3882 e50efefa02a0ec1ff635a00951b5924602fc8cab57e5756e4a039382c69d3882
 ql/lib/codeql/swift/generated/UnspecifiedElement.qll dbc6ca4018012977b26ca184a88044c55b0661e3998cd14d46295b62a8d69625 184c9a0ce18c2ac881943b0fb400613d1401ed1d5564f90716b6c310ba5afe71
 ql/lib/codeql/swift/generated/decl/AbstractFunctionDecl.qll 8255b24dddda83e8a7dee9d69a4cf9883b5a7ae43676d7242b5aab5169f68982 407c7d63681fb03ad6cb4ea3c2b04be7ccb5ddbe655a8aec4219eb3799bc36e8
-ql/lib/codeql/swift/generated/decl/AbstractStorageDecl.qll 66147ad36cefce974b4ae0f3e84569bd6742ea2f3e842c3c04e6e5cbd17e7928 ce7c2347e2dfe0b141db103ccb8e56a61d286476c201aebe6a275edd7fca2c0f
+ql/lib/codeql/swift/generated/decl/AbstractStorageDecl.qll 882e95e6887741c0cdac4dcafb9efb5182f18484c6d29e84bab0a8f65c9e70a2 0c5c6739484ce3913cfbff68307a5c1cf63639e5ba9043f1f305197fc06b8de9
 ql/lib/codeql/swift/generated/decl/AbstractTypeParamDecl.qll 1e268b00d0f2dbbd85aa70ac206c5e4a4612f06ba0091e5253483635f486ccf9 5479e13e99f68f1f347283535f8098964f7fd4a34326ff36ad5711b2de1ab0d0
 ql/lib/codeql/swift/generated/decl/AccessorDecl.qll 443cb9888dbdbaee680bf24469ce097a8292806dc53f0b109d492db621fa00aa 0dbe38cbbd3f3cd880c1569d9d42165e7cf0358da0cc7cb63e89890310ad40a0
 ql/lib/codeql/swift/generated/decl/AssociatedTypeDecl.qll 4169d083104f9c089223ed3c5968f757b8cd6c726887bbb6fbaf21f5ed7ee144 4169d083104f9c089223ed3c5968f757b8cd6c726887bbb6fbaf21f5ed7ee144
@@ -397,35 +397,35 @@ ql/lib/codeql/swift/generated/decl/ConcreteVarDecl.qll 4801ccc477480c4bc4fc11797
 ql/lib/codeql/swift/generated/decl/ConstructorDecl.qll 20e3a37809eacfc43828fa61248ad19b0ff610faad3a12b82b3cf5ed2bcce13c 20e3a37809eacfc43828fa61248ad19b0ff610faad3a12b82b3cf5ed2bcce13c
 ql/lib/codeql/swift/generated/decl/Decl.qll b850ab1b909c1b555f3847ce9dca0e2f075db87e7b40f460b8774220bf87a1e6 a3496437246cb10eafaa9d6d45f57f830b6a1c88f15bbcffa3c5dae476004140
 ql/lib/codeql/swift/generated/decl/DestructorDecl.qll 8767e3ddabdf05ea5ee99867e9b77e67f7926c305b2fba1ca3abf94e31d836b9 8767e3ddabdf05ea5ee99867e9b77e67f7926c305b2fba1ca3abf94e31d836b9
-ql/lib/codeql/swift/generated/decl/EnumCaseDecl.qll b25413c29fa814f5cd594004e5abdeeb420f75fd86d3ab483dc04fd5d4ec8135 9ef8a30873476ace498d78b91a902e3bb600e9e3a9defc4bea42ea9d3ac7b2f7
+ql/lib/codeql/swift/generated/decl/EnumCaseDecl.qll f71c9d96db8260462c34e5d2bd86dda9b977aeeda087c235b873128b63633b9c e12ff7c0173e3cf9e2b64de66d8a7f2246bc0b2cb721d25b813d7a922212b35a
 ql/lib/codeql/swift/generated/decl/EnumDecl.qll fa4490d511ee537751a4fab2478e65250ff3deba43c74db5341184c9ba25b534 fa4490d511ee537751a4fab2478e65250ff3deba43c74db5341184c9ba25b534
-ql/lib/codeql/swift/generated/decl/EnumElementDecl.qll d56a4d26ed209de4836fe324415a3a1e545af52ab47af607827a6f0ef7d309fd c0672aad1c9b688bb9367850005bf5f595ce628041a02d666aa0a2403338df61
+ql/lib/codeql/swift/generated/decl/EnumElementDecl.qll 5ef4f6839f4f19f29fabd04b653e89484fa68a7e7ec94101a5201aa13d89e9eb 78006fa52b79248302db04348bc40f2f77edf101b6e429613f3089f70750fc11
 ql/lib/codeql/swift/generated/decl/ExtensionDecl.qll c6c057adadf3682d5d9e58154eaf2a28f769f7df3c2e48f9d2f5bae017917e5f 8aa2d7f20f7452ec25d2a8e1e00a7d3f4465c9c3c21326bfb3fe416c6fe83057
 ql/lib/codeql/swift/generated/decl/FuncDecl.qll 11ebe386dd06937c84fdb283a73be806763d939c163d3c0fd0c4c3eb1caeda41 6a5b6854818cb3d2bc76f0abdee4933ca839c182abd07fb4d271400f5267f6e2
-ql/lib/codeql/swift/generated/decl/GenericContext.qll 948ed5af71b3247a8e252b3691864d6a6b769c68088c60f00521d87de3a5349b 51f3f1a2b2c8b4e1f5bf549ac5864bf6f87e7c6e480c673210eccda4daca9846
+ql/lib/codeql/swift/generated/decl/GenericContext.qll 4c7bd7fd372c0c981b706de3a57988b92c65c8a0d83ea419066452244e6880de 332f8a65a6ae1cad4aa913f2d0a763d07393d68d81b61fb8ff9912b987c181bb
 ql/lib/codeql/swift/generated/decl/GenericTypeDecl.qll 71f5c9c6078567dda0a3ac17e2d2d590454776b2459267e31fed975724f84aec 669c5dbd8fad8daf007598e719ac0b2dbcb4f9fad698bffb6f1d0bcd2cee9102
 ql/lib/codeql/swift/generated/decl/GenericTypeParamDecl.qll bc41a9d854e65b1e0da86350870a8fe050eb1dc031cd17ded11c15b5ad8ad183 bc41a9d854e65b1e0da86350870a8fe050eb1dc031cd17ded11c15b5ad8ad183
-ql/lib/codeql/swift/generated/decl/IfConfigDecl.qll 4923f062fe485d2e10a628df6d34fdb019eaf35431aea2a314f76534b28156ff 8fc67cde1a0b061bfc0532375088a12681ebf64ff5ebfd8368ba86875795514c
-ql/lib/codeql/swift/generated/decl/ImportDecl.qll 46c927960d563dd229cb4305babc95f14c9fb08fbf3ffb5a145ea1d902bdfdcb c6a04e12c3be1af134d321d01337dd114bacc1afe615ed8053a90a5fed1d0a0f
+ql/lib/codeql/swift/generated/decl/IfConfigDecl.qll 58c1a02a3867105c61d29e2d9bc68165ba88a5571aac0f91f918104938178c1e f74ef097848dd5a89a3427e3d008e2299bde11f1c0143837a8182572ac26f6c9
+ql/lib/codeql/swift/generated/decl/ImportDecl.qll 8892cd34d182c6747e266e213f0239fd3402004370a9be6e52b9747d91a7b61b 2c07217ab1b7ebc39dc2cb20d45a2b1b899150cabd3b1a15cd8b1479bab64578
 ql/lib/codeql/swift/generated/decl/InfixOperatorDecl.qll d98168fdf180f28582bae8ec0242c1220559235230a9c94e9f479708c561ea21 aad805aa74d63116b19f435983d6df6df31cef6a5bbd30d7c2944280b470dee6
-ql/lib/codeql/swift/generated/decl/IterableDeclContext.qll 1594024f03130e8b1b86376131abdfa7612915cd1ed6fff19a2879613a2df400 029134916cf708839263b28e3cd0e822c9455a65cbb272d015f7ea1d05062780
+ql/lib/codeql/swift/generated/decl/IterableDeclContext.qll 26a5bd5d4c485ee03bf39bdcef5bc4ba8771e2839f5afcc953fa3beef60f8985 36c6aea5dabe7cc508707a56923fbdb54877fbc1a90c987f7ac7c89a731896ad
 ql/lib/codeql/swift/generated/decl/MissingMemberDecl.qll eaf8989eda461ec886a2e25c1e5e80fc4a409f079c8d28671e6e2127e3167479 d74b31b5dfa54ca5411cd5d41c58f1f76cfccc1e12b4f1fdeed398b4faae5355
-ql/lib/codeql/swift/generated/decl/ModuleDecl.qll 2d99174fe4e0684a1b184e8fb5b78974a0c5b49bf50b944710ba497278dceb5d 56c28abf63bd691add7d4768652989b03722b2fd3b8a027521fd7af30505b2e9
+ql/lib/codeql/swift/generated/decl/ModuleDecl.qll 675135d140d273cd83e290cf433bcaebc48065d433e2cf8e570612b686d2fb53 d8cd5418205e05598800bf13e8aa01e6018b5c6727075381afd4c83136c29366
 ql/lib/codeql/swift/generated/decl/NominalTypeDecl.qll 1ff6cc5226206b6ce08c7206ef574ac36110403e97bd9a7ab3aef49c3966f2c5 50d25a5356b3b0863ef175afefed1d8159ee1b1a354f374b99de9c04f2146bde
-ql/lib/codeql/swift/generated/decl/OpaqueTypeDecl.qll b07f9bc85897e420016f681731fcb54a6ef737c1146053e8904e4114a21817e7 c02b02f619dfa381db8c1beb96d1392c274db7115e34af34d6419caeaddb23c4
+ql/lib/codeql/swift/generated/decl/OpaqueTypeDecl.qll f2cdbc238b9ea67d5bc2defd8ec0455efafd7fdaeca5b2f72d0bbb16a8006d17 041724a6ec61b60291d2a68d228d5f106c02e1ba6bf3c1d3d0a6dda25777a0e5
 ql/lib/codeql/swift/generated/decl/OperatorDecl.qll 3ffdc7ab780ee94a975f0ce3ae4252b52762ca8dbea6f0eb95f951e404c36a5b 25e39ccd868fa2d1fbce0eb7cbf8e9c2aca67d6fd42f76e247fb0fa74a51b230
 ql/lib/codeql/swift/generated/decl/ParamDecl.qll f182ebac3c54a57a291d695b87ff3dbc1499ea699747b800dc4a8c1a5a4524b1 979e27a6ce2bc932a45b968ee2f556afe1071888f1de8dd8ead60fb11acf300c
-ql/lib/codeql/swift/generated/decl/PatternBindingDecl.qll 914c711b4dcf3bd386571215fae55262e095911a65b26571e635d84064baf62d 0fccb9434f9c3c99b1707835b9a5fc247d6700e864f2c02cb2253fcf2818e851
+ql/lib/codeql/swift/generated/decl/PatternBindingDecl.qll 15a43e1b80fc6ef571e726ab13c7cd3f308d6be1d28bcb175e8b5971d646da7c 1b2e19d6fdd5a89ce9be9489fef5dc6ba4390249195fe41f53848be733c62a39
 ql/lib/codeql/swift/generated/decl/PostfixOperatorDecl.qll 5aa85fa325020b39769fdb18ef97ef63bd28e0d46f26c1383138221a63065083 5aa85fa325020b39769fdb18ef97ef63bd28e0d46f26c1383138221a63065083
 ql/lib/codeql/swift/generated/decl/PoundDiagnosticDecl.qll c5a646d7b82c97b97d8c79855fc68d36ca494d81dfc83582131d0551187a9b77 a2c567589a89bda3de916d9c5111b123136f03239bb40ac71ac5e949f9b527ce
 ql/lib/codeql/swift/generated/decl/PrecedenceGroupDecl.qll d0918f238484052a0af902624b671c04eb8d018ee71ef4931c2fdbb74fa5c5d4 d0918f238484052a0af902624b671c04eb8d018ee71ef4931c2fdbb74fa5c5d4
 ql/lib/codeql/swift/generated/decl/PrefixOperatorDecl.qll 18f2a1f83ea880775344fbc57ed332e17edba97a56594da64580baeb45e95a5d 18f2a1f83ea880775344fbc57ed332e17edba97a56594da64580baeb45e95a5d
 ql/lib/codeql/swift/generated/decl/ProtocolDecl.qll 4b03e3c2a7af66e66e8abc40bd2ea35e71959f471669e551f4c42af7f0fd4566 4b03e3c2a7af66e66e8abc40bd2ea35e71959f471669e551f4c42af7f0fd4566
 ql/lib/codeql/swift/generated/decl/StructDecl.qll 9343b001dfeec83a6b41e88dc1ec75744d39c397e8e48441aa4d01493f10026a 9343b001dfeec83a6b41e88dc1ec75744d39c397e8e48441aa4d01493f10026a
-ql/lib/codeql/swift/generated/decl/SubscriptDecl.qll d08bc4dbeecafe0d758234e0e3487c2d67b3453aa6b9671b4947518276348a2f 89eaf1b579d41eb66069a75352f385e12e15e15e17583e05349c573586c10e8d
+ql/lib/codeql/swift/generated/decl/SubscriptDecl.qll 31cb1f90d4c60060f64c432850821969953f1a46e36ce772456c67dfff375ff5 1d0098518c56aed96039b0b660b2cce5ea0db7ac4c9a550af07d758e282d4f61
 ql/lib/codeql/swift/generated/decl/TopLevelCodeDecl.qll aececf62fda517bd90b1c56bb112bb3ee2eecac3bb2358a889dc8c4de898346e d8c69935ac88f0343a03f17ea155653b97e9b9feff40586cfa8452ac5232700d
 ql/lib/codeql/swift/generated/decl/TypeAliasDecl.qll 15cb5bdbe9d722c403874f744bfb3da85f532e33638a64a593acbbdee2f6095e 15cb5bdbe9d722c403874f744bfb3da85f532e33638a64a593acbbdee2f6095e
-ql/lib/codeql/swift/generated/decl/TypeDecl.qll 3fb055ab433ec40186f822c5711e3d47f9084fb12a1faee550e1e3e2507cfb45 1f46f7ae90c414c5d00bc2e33c86aa80f5ffddfd6be1853d8d6d4222b8e3f584
+ql/lib/codeql/swift/generated/decl/TypeDecl.qll 74bb5f0fe2648d95c84fdce804740f2bba5c7671e15cbea671d8509456bf5c2b 32bc7154c8585c25f27a3587bb4ba039c8d69f09d945725e45d730de44f7a5ae
 ql/lib/codeql/swift/generated/decl/ValueDecl.qll 7b4e4c9334be676f242857c77099306d8a0a4357b253f8bc68f71328cedf1f58 f18938c47f670f2e0c27ffd7e31e55f291f88fb50d8e576fcea116d5f9e5c66d
 ql/lib/codeql/swift/generated/decl/VarDecl.qll 2fca00ba8b535d7cefc2fa863246a0821437ca29b885c4c30362e8a63f284479 5ba623001e071c16267e94d050bfd973addf2436152c7726945b5d87aa521af8
 ql/lib/codeql/swift/generated/expr/AbiSafeConversionExpr.qll f4c913df3f1c139a0533f9a3a2f2e07aee96ab723c957fc7153d68564e4fdd6d f4c913df3f1c139a0533f9a3a2f2e07aee96ab723c957fc7153d68564e4fdd6d
@@ -433,10 +433,10 @@ ql/lib/codeql/swift/generated/expr/AbstractClosureExpr.qll f0060c2972d2e1f9818d8
 ql/lib/codeql/swift/generated/expr/AnyHashableErasureExpr.qll f450ac8e316def1cd64dcb61411bae191144079df7f313a5973e59dc89fe367f f450ac8e316def1cd64dcb61411bae191144079df7f313a5973e59dc89fe367f
 ql/lib/codeql/swift/generated/expr/AnyTryExpr.qll f2929f39407e1717b91fc41f593bd52f1ae14c619d61598bd0668a478a04a91e 62693c2c18678af1ff9ce5393f0dd87c5381e567b340f1a8a9ecf91a92e2e666
 ql/lib/codeql/swift/generated/expr/AppliedPropertyWrapperExpr.qll 191612ec26b3f0d5a61301789a34d9e349b4c9754618760d1c0614f71712e828 cc212df0068ec318c997a83dc6e95bdda5135bccc12d1076b0aebf245da78a4b
-ql/lib/codeql/swift/generated/expr/ApplyExpr.qll 478467da16196b55805b5a1746352384b998c211f29d4423ffeacbb95da20080 daf7a0579663245ff32c3813f00dd65d8e5c93e1ae9fdce35067f44f32f96ca8
+ql/lib/codeql/swift/generated/expr/ApplyExpr.qll d62b5e5d9f1ecf39d28f0a423d89b9d986274b72d0685dd34ec0b0b4c442b78f a94ccf54770939e591fe60d1c7e5e93aefd61a6ab5179fe6b6633a8e4181d0f8
 ql/lib/codeql/swift/generated/expr/ArchetypeToSuperExpr.qll e0b665b7389e5d0cb736426b9fd56abfec3b52f57178a12d55073f0776d8e5b7 e0b665b7389e5d0cb736426b9fd56abfec3b52f57178a12d55073f0776d8e5b7
 ql/lib/codeql/swift/generated/expr/Argument.qll fe3cf5660e46df1447eac88c97da79b2d9e3530210978831f6e915d4930534ba 814e107498892203bac688198792eefa83afc3472f3c321ba2592579d3093310
-ql/lib/codeql/swift/generated/expr/ArrayExpr.qll d4239a0260189cdfa7b841bcaa4134a035900e511b22b6552cfd61f4d47ab535 dc490a2b3c94c69dbd6340d7bf71e0aaccd5ed4d1050b5149b6e4f9cf496d428
+ql/lib/codeql/swift/generated/expr/ArrayExpr.qll 48f9dce31e99466ae3944558584737ea1acd9ce8bf5dc7f366a37de464f5570f ea13647597d7dbc62f93ddbeb4df33ee7b0bd1d9629ced1fc41091bbbe74db9c
 ql/lib/codeql/swift/generated/expr/ArrayToPointerExpr.qll afa9d62eb0f2044d8b2f5768c728558fe7d8f7be26de48261086752f57c70539 afa9d62eb0f2044d8b2f5768c728558fe7d8f7be26de48261086752f57c70539
 ql/lib/codeql/swift/generated/expr/AssignExpr.qll b9cbe998daccc6b8646b754e903667de171fefe6845d73a952ae9b4e84f0ae13 14f1972f704f0b31e88cca317157e6e185692f871ba3e4548c9384bcf1387163
 ql/lib/codeql/swift/generated/expr/AutoClosureExpr.qll 26f2ef81e6e66541da75316f894498e74525c0703076cf67398c73a7cbd9736e 26f2ef81e6e66541da75316f894498e74525c0703076cf67398c73a7cbd9736e
@@ -448,7 +448,7 @@ ql/lib/codeql/swift/generated/expr/BridgeFromObjCExpr.qll b9a6520d01613dfb8c7606
 ql/lib/codeql/swift/generated/expr/BridgeToObjCExpr.qll 31ca13762aee9a6a17746f40ec4e1e929811c81fdadb27c48e0e7ce6a3a6222d 31ca13762aee9a6a17746f40ec4e1e929811c81fdadb27c48e0e7ce6a3a6222d
 ql/lib/codeql/swift/generated/expr/BuiltinLiteralExpr.qll 052f8d0e9109a0d4496da1ae2b461417951614c88dbc9d80220908734b3f70c6 536fa290bb75deae0517d53528237eab74664958bf7fdbf8041283415dda2142
 ql/lib/codeql/swift/generated/expr/CallExpr.qll c7dc105fcb6c0956e20d40f736db35bd7f38f41c3d872858972c2ca120110d36 c7dc105fcb6c0956e20d40f736db35bd7f38f41c3d872858972c2ca120110d36
-ql/lib/codeql/swift/generated/expr/CaptureListExpr.qll d6eacfd06c99be3fbe563854856d8b6838f5e63230e1db80824685c8c627aec6 e6116de199aa7ddd549f205476e6ebe7edddb1f53f43ea4efcfa41d0a31586cd
+ql/lib/codeql/swift/generated/expr/CaptureListExpr.qll dc669082d0c123af7b3aa9f46c2eea3e339b2dd094cb8cab1aa0c8981567580f 3ffc0f61f7ca1333496d81df868cf1dcad004c70901b96144d5af64928027619
 ql/lib/codeql/swift/generated/expr/CheckedCastExpr.qll 146c24e72cda519676321d3bdb89d1953dfe1810d2710f04cfdc4210ace24c40 91093e0ba88ec3621b538d98454573b5eea6d43075a2ab0a08f80f9b9be336d3
 ql/lib/codeql/swift/generated/expr/ClassMetatypeToObjectExpr.qll 076c0f7369af3fffc8860429bd8e290962bf7fc8cf53bbba061de534e99cc8bf 076c0f7369af3fffc8860429bd8e290962bf7fc8cf53bbba061de534e99cc8bf
 ql/lib/codeql/swift/generated/expr/ClosureExpr.qll 4c20a922fc4c1f2a0f77026436282d056d0d188cc038443cca0d033dc57cf5a9 4c20a922fc4c1f2a0f77026436282d056d0d188cc038443cca0d033dc57cf5a9
@@ -460,11 +460,11 @@ ql/lib/codeql/swift/generated/expr/ConditionalCheckedCastExpr.qll 92a999dd1dcc1f
 ql/lib/codeql/swift/generated/expr/ConstructorRefCallExpr.qll d0662d960b78c3cf7e81cf5b619aa9e2a906d35c094ae32702da96720354fe4f d0662d960b78c3cf7e81cf5b619aa9e2a906d35c094ae32702da96720354fe4f
 ql/lib/codeql/swift/generated/expr/CovariantFunctionConversionExpr.qll b749118590163eafbd538e71e4c903668451f52ae0dabbb13e504e7b1fefa9e1 d3af8e3beb6e395f537348d875978dfae119243dc3495c48a7c83b056aff2f6c
 ql/lib/codeql/swift/generated/expr/CovariantReturnConversionExpr.qll f1b409f0bf54b149deb1a40fbe337579a0f6eb2498ef176ef5f64bc53e94e2fe a32992597057657c7bbf13c809db67844b834668e8d2804adabcf6187d81c244
-ql/lib/codeql/swift/generated/expr/DeclRefExpr.qll 441f0cba088ce3845a0d55500cccc94947da440d9f4ce879aed3e5bf5471d48e d54b4d0ca11d85a403fa470407e915472cd51116a633499bdfb293ac5f4a3b77
+ql/lib/codeql/swift/generated/expr/DeclRefExpr.qll 454d351282678580791ddb567193518822d9b44fa1f94f53a99c279a984c1b1f e75a7fbcc39c3d62b9f5929777240f78e227bef0a3f5ab819b9f860537339889
 ql/lib/codeql/swift/generated/expr/DefaultArgumentExpr.qll b38015d25ef840298a284b3f4e20cd444987474545544dc451dd5e12c3783f20 afc581e2127983faae125fd58b24d346bfee34d9a474e6d499e4606b672fe5f0
 ql/lib/codeql/swift/generated/expr/DerivedToBaseExpr.qll 5f371b5b82262efb416af1a54073079dcf857f7a744010294f79a631c76c0e68 5f371b5b82262efb416af1a54073079dcf857f7a744010294f79a631c76c0e68
 ql/lib/codeql/swift/generated/expr/DestructureTupleExpr.qll 1214d25d0fa6a7c2f183d9b12c97c679e9b92420ca1970d802ea1fe84b42ccc8 1214d25d0fa6a7c2f183d9b12c97c679e9b92420ca1970d802ea1fe84b42ccc8
-ql/lib/codeql/swift/generated/expr/DictionaryExpr.qll 72a103889a7dfe9c2e25ef3336aabddad168d5573f3b19670f198e79e20f3bca aac250a0b831d632adaaa4484f85e55e04f9e95fe5ae152bd68758d9a3116f21
+ql/lib/codeql/swift/generated/expr/DictionaryExpr.qll b5051ac76b4780b5174b1a515d1e6e647239a46efe94305653e45be9c09840dc 65130effc0878883bfaa1aa6b01a44893889e8cfab4c349a079349ef4ef249bf
 ql/lib/codeql/swift/generated/expr/DifferentiableFunctionExpr.qll 9143e12dfe0b3b4cc2d1fe27d893498f5bd6725c31bee217ab9fa1ca5efeca7b 8af001026d4b1a08d787af5146affb2df57c0432b1dfcdb557cd4de2cebe51a5
 ql/lib/codeql/swift/generated/expr/DifferentiableFunctionExtractOriginalExpr.qll d90266387d6eecf2bacb2d0f5f05a2132a018f1ccf723664e314dcfd8972772d 878ea62a077e8cda87490bbf770ca0df68d94cbafd2576ff7b725311d73ffef7
 ql/lib/codeql/swift/generated/expr/DiscardAssignmentExpr.qll f2cb4a5295855bcfe47a223e0ab9b915c22081fe7dddda801b360aa365604efd f2cb4a5295855bcfe47a223e0ab9b915c22081fe7dddda801b360aa365604efd
@@ -514,14 +514,14 @@ ql/lib/codeql/swift/generated/expr/MethodRefExpr.qll 014f976ce55cfc07a18a86c379f
 ql/lib/codeql/swift/generated/expr/NilLiteralExpr.qll 6f44106bc5396c87681676fc3e1239fe052d1a481d0a854afa8b66369668b058 6f44106bc5396c87681676fc3e1239fe052d1a481d0a854afa8b66369668b058
 ql/lib/codeql/swift/generated/expr/NumberLiteralExpr.qll 8acc7df8fe83b7d36d66b2feed0b8859bfde873c6a88dd676c9ebed32f39bd04 4bbafc8996b2e95522d8167417668b536b2651817f732554de3083c4857af96a
 ql/lib/codeql/swift/generated/expr/ObjCSelectorExpr.qll 8b4f7a9668d1cae4058ba460673b3e0b79f05f2fe871fd992ca1b7ea85f7c09d 629a3057c0ff3ede3a18ea8ea1aa29b24bc780d0dc60b51f99793a6001432a4e
-ql/lib/codeql/swift/generated/expr/ObjectLiteralExpr.qll 1eb11648e4ffc2d49b8bdfc332092787972c60394df1827b4c3317e1a4985323 80e767bd0f02a23c32af061e37c5847cb76406be1d848a3411ac78b05ac07aab
+ql/lib/codeql/swift/generated/expr/ObjectLiteralExpr.qll 541bd1d9efd110a9e3334cd6849ad04f0e8408f1a72456a79d110f2473a8f87c 3c51d651e8d511b177b21c9ecb0189e4e7311c50abe7f57569be6b2fef5bc0d7
 ql/lib/codeql/swift/generated/expr/OneWayExpr.qll bf6dbe9429634a59e831624dde3fe6d32842a543d25a8a5e5026899b7a608a54 dd2d844f3e4b190dfba123cf470a2c2fcfdcc0e02944468742abe816db13f6ba
 ql/lib/codeql/swift/generated/expr/OpaqueValueExpr.qll 354f23d00d5ea2e734fd192130620d26c76c14d5bb7b0a1aa69f17ffb5289793 354f23d00d5ea2e734fd192130620d26c76c14d5bb7b0a1aa69f17ffb5289793
 ql/lib/codeql/swift/generated/expr/OpenExistentialExpr.qll 55cfe105f217a4bdb15d1392705030f1d7dec8c082cafa875301f81440ec0b7b 168389014cddb8fd738e2e84ddd22983e5c620c3c843de51976171038d95adc0
 ql/lib/codeql/swift/generated/expr/OptionalEvaluationExpr.qll 000b00afe1dcdec43f756f699fd3e38212884eab14bf90e3c276d4ca9cb444a6 177bd4bfbb44e9f5aeaaf283b6537f3146900c1376854607827d224a81456f59
 ql/lib/codeql/swift/generated/expr/OptionalTryExpr.qll f0c8dff90faee4fbf07772efda53afe1acc1fd148c16ee4d85a1502a36178e71 f0c8dff90faee4fbf07772efda53afe1acc1fd148c16ee4d85a1502a36178e71
 ql/lib/codeql/swift/generated/expr/OtherConstructorDeclRefExpr.qll b40c18df25bdb08f159eb34d685d2e27fbba2c5e518b7d8b236f9913d76029cb 30f743385b8a47c36ec54c2c13b42fc6937568aa3cace5f075b51c02a64ca506
-ql/lib/codeql/swift/generated/expr/OverloadedDeclRefExpr.qll 364d63e962d8a741e1fde33e743217cdda176cc58d7da365d4af1ad5401575d8 ac798b3bd5e7f166b6647dbf5fcee04e3bb38d4cd214c6b0141c6b91af1c277f
+ql/lib/codeql/swift/generated/expr/OverloadedDeclRefExpr.qll 3748583ec8eca5251002f09b0e9f0e6dea8d12ab3caad9a5d959a25f93b0642b 93190bcadc2d6d4d5890db633b20b5968367f003a612a17ee489003fbda2c3d6
 ql/lib/codeql/swift/generated/expr/ParenExpr.qll f3fb35017423ee7360cab737249c01623cafc5affe8845f3898697d3bd2ef9d7 f3fb35017423ee7360cab737249c01623cafc5affe8845f3898697d3bd2ef9d7
 ql/lib/codeql/swift/generated/expr/PointerToPointerExpr.qll 7d6fa806bba09804705f9cef5be66e09cbbbbda9a4c5eae75d4380f1527bb1bd 7d6fa806bba09804705f9cef5be66e09cbbbbda9a4c5eae75d4380f1527bb1bd
 ql/lib/codeql/swift/generated/expr/PostfixUnaryExpr.qll d1094c42aa03158bf89bace09b0a92b3056d560ebf69ddbf286accce7940d3ab d1094c42aa03158bf89bace09b0a92b3056d560ebf69ddbf286accce7940d3ab
@@ -531,15 +531,15 @@ ql/lib/codeql/swift/generated/expr/ProtocolMetatypeToObjectExpr.qll b692be6e5b24
 ql/lib/codeql/swift/generated/expr/RebindSelfInConstructorExpr.qll 7796a88c1635b3bd2492563880c995f1a7a0c68f69bad33b8bd77086eb1ce404 aee11e030ba21115931cbc1e34ac001eaafe4460fb3724a078aa4cbda84e4642
 ql/lib/codeql/swift/generated/expr/RegexLiteralExpr.qll ed7eccdf051b18a6388c47986b68e755edfae5d81d83e58772effb72c0e9d75e ed7eccdf051b18a6388c47986b68e755edfae5d81d83e58772effb72c0e9d75e
 ql/lib/codeql/swift/generated/expr/SelfApplyExpr.qll c676c551bcb528512dad6422cce39be8391d03f517df2d5dc4d6ac7ab4f23897 64b3ddb7e2b093acca289d5e81d4662560d8aef20d4dd07fcd41771d54fb3f5c
-ql/lib/codeql/swift/generated/expr/SequenceExpr.qll 044581c933d44ecf153a22724985d0c9d3b1bb0ca2614ba60db962ee126a293a 3ae93804ece0fa386099be2344dc7cb8b5d8091ce53980a265973c0faacad1c7
+ql/lib/codeql/swift/generated/expr/SequenceExpr.qll 45f976cbc3ce6b3278955a76a55cd0769e69f9bd16e84b40888cd8ebda6be917 ebb090897e4cc4371383aa6771163f73fa2c28f91e6b5f4eed42d7ad018267f3
 ql/lib/codeql/swift/generated/expr/StringLiteralExpr.qll f420c5cd51a223b6f98177147967266e0094a5718ba2d57ae2d3acbb64bbb4b6 30d6dab2a93fd95e652a700902c4d106fecfce13880c2ece565de29f2504bedf
 ql/lib/codeql/swift/generated/expr/StringToPointerExpr.qll ef69b570aa90697d438f5787a86797955b4b2f985960b5859a7bd13b9ecb9cd3 ef69b570aa90697d438f5787a86797955b4b2f985960b5859a7bd13b9ecb9cd3
-ql/lib/codeql/swift/generated/expr/SubscriptExpr.qll 68523f3704985400e879903c365ece3910742a7d97368f6b3466efb25a23bd0f 3b5ea472a03958b6705d00041b4b354a6e691418c9d526bc70553b9b82698cda
+ql/lib/codeql/swift/generated/expr/SubscriptExpr.qll 6d8717acbdbb0d53a6dedd98809e17baa42c88e62fab3b6d4da9d1ce477d15c3 6d568c6adb2b676b1945aa3c0964b26e825c9464156f296f3ec0d5b7ece90521
 ql/lib/codeql/swift/generated/expr/SuperRefExpr.qll 3cc44a550ecab7d11b591082a3ad1ac88207d55cd694942ce44a90c576517482 d1712eed916f83d3e1b21c6af944ef56df2b82d163b9b3cb8dc793d48305fa6c
 ql/lib/codeql/swift/generated/expr/TapExpr.qll 0a2cbaaec596fa5aabb7acc3cab23bbf1bb1173ea4f240634698d5a89686d014 2267243198f67bb879d639f566e9729cfa9e3a3e205ffe6ff3782b7017a8bf7f
 ql/lib/codeql/swift/generated/expr/TryExpr.qll e6619905d9b2e06708c3bf41dace8c4e6332903f7111b3a59609d2bb7a6483ee e6619905d9b2e06708c3bf41dace8c4e6332903f7111b3a59609d2bb7a6483ee
 ql/lib/codeql/swift/generated/expr/TupleElementExpr.qll 764371c3b6189f21dcdc8d87f9e6f6ba24e3f2ef0b8c35b8ce8c3b7d4feb7370 25f4f2b747b3887edd82d5eb3fa9ba1b45e7921d2745bfee06300db22a35c291
-ql/lib/codeql/swift/generated/expr/TupleExpr.qll e01ce2dea15839076f32a0b6ebbb4f76a1d1428d4c93cf275ac271140edea91b b3a062055a45cac48e0ae0b0b57b58471827ea47675379f6411ba1cec2a24eab
+ql/lib/codeql/swift/generated/expr/TupleExpr.qll f271bdfca86c65d93851f8467a3ebbbb09071c7550767b3db44ad565bb30ef02 1de9f0c1f13649ec622e8ae761db9f68be1cb147b63fd3a69d1b732cdb20703d
 ql/lib/codeql/swift/generated/expr/TypeExpr.qll 132096079d0da05ac0e06616e4165c32c5f7e3bc338e37930bb81f4d26d7caea edd58d31ce921a8f7d09c49de3683d5170dfed636184bafc862bbfd78c474ca6
 ql/lib/codeql/swift/generated/expr/UnderlyingToOpaqueExpr.qll 13d6c7a16ec0c4c92d12e052437dfa84274394ee8a4ca9b2c9e59514564dc683 13d6c7a16ec0c4c92d12e052437dfa84274394ee8a4ca9b2c9e59514564dc683
 ql/lib/codeql/swift/generated/expr/UnevaluatedInstanceExpr.qll 21dedc617838eed25a8d3a011296fda78f99aee0e8ae2c06789484da6886cfea 21dedc617838eed25a8d3a011296fda78f99aee0e8ae2c06789484da6886cfea
@@ -561,16 +561,16 @@ ql/lib/codeql/swift/generated/pattern/NamedPattern.qll 5d25e51eb83e86363b95a6531
 ql/lib/codeql/swift/generated/pattern/OptionalSomePattern.qll 4230ba4adaac68868c7c5bd2bf30d1f8284f1025acb3ae9c47b6a87f09ccdcd9 449568950700d21854ec65f9751506fc4dc4e490a4744fb67ca421fc2956fc6a
 ql/lib/codeql/swift/generated/pattern/ParenPattern.qll 4e5e2968ffdf07a68f5d5a49f4ecc1a2e7ff389c4fd498cc272e7afd7af7bea5 a143af906ab0cef8cbe3ed8ae06cb4dcb520ded3d70dbb800dab2227b9bf8d3c
 ql/lib/codeql/swift/generated/pattern/Pattern.qll 0e96528a8dd87185f4fb23ba33ea418932762127e99739d7e56e5c8988e024d1 ba1e010c9f7f891048fb8c4ff8ea5a6c664c09e43d74b860d559f6459f82554a
-ql/lib/codeql/swift/generated/pattern/TuplePattern.qll 4df0d495ac82b3bb4d1a4288218b6cd0394620c1452fbdc9b444e061c70da412 4ca0edab4e2c39166830f2a7951e36f95157c523326272c148af84bd0b87c60e
+ql/lib/codeql/swift/generated/pattern/TuplePattern.qll d658653bdbe5e1a730e462c4bad7e2c468413b1f333c0a816a0e165ad8601a45 d0c4b5a4c04ad8a1ebf181313937e4e1d57fb8a98806f1161c289f9f5818961a
 ql/lib/codeql/swift/generated/pattern/TypedPattern.qll e46078cd90a30379011f565fefb71d42b92b34b1d7fd4be915aad2bafbdbeaf3 aedf0e4a931f868cc2a171f791e96732c6e931a979b2f03e37907a9b2b776cad
-ql/lib/codeql/swift/generated/stmt/BraceStmt.qll 7bfad90b392b7ac6b84af948ad0ff76192da22a916bb8cae8254ee1374d3f4c4 c35a36d1d32f046d914a543aad3acf8efbe75f69485157050d6a64dd36fd57ab
+ql/lib/codeql/swift/generated/stmt/BraceStmt.qll 121c669fc98bf5ed1f17e98fdfc36ae5f42e31436c14c16b53c13fd64bdaada8 c8eb7eed650586c2b71683096ea42461a9e811e63fe90aaa7da307b6cd63bc03
 ql/lib/codeql/swift/generated/stmt/BreakStmt.qll 31d6b2969a919062c46e7bf0203f91c3489ee3c364e73fc2788f0e06ac109b25 7fca57698a821e81903204f271d0a220adfdd50ff144eafd6868286aa6aefa33
 ql/lib/codeql/swift/generated/stmt/CaseLabelItem.qll 0755fabf3ca7a5ee9a553dec0a6d8af3c8abdc99015c229ce1c4b154a3af80d9 b3c9b88610a3dc729a5eb4f9667710d84a5ac0f3acddcda3031e744309265c68
-ql/lib/codeql/swift/generated/stmt/CaseStmt.qll 32fdcdb193ec523a12b283bade57606dcde4f320f5d760be622782ac011ba908 2adfdff2d3105818c29dbf9571bc0e531fe758f11e85deea27f6e32bf190aabd
+ql/lib/codeql/swift/generated/stmt/CaseStmt.qll 3cbb4e5e1e04931489adf252d809e0f153bfd32fb32cf05917ded5c418e78695 c80f22ce4915073e787634e015f7461b4b64cf100ad7705f4b1507cef1e88ea7
 ql/lib/codeql/swift/generated/stmt/ConditionElement.qll fd53a99d1af1e16412424c0c48eae7c866db4fd491f2de6d5a5271f227a96275 599db45ed78be3943b76c1ff4ae24cd8a9ff8d1f875d1718ab884e4507843995
 ql/lib/codeql/swift/generated/stmt/ContinueStmt.qll 3213c4ede9c8240bcb1d1c02ee6171821cdfbf89056f1e5c607428dcfaf464f6 00756c533dfd9ee5402e739f360dfe5203ee2043e20fc1982d7782ca7a249f9a
 ql/lib/codeql/swift/generated/stmt/DeferStmt.qll 69a8e04618569b61ce680bae1d20cda299eea6064f50433fa8a5787114a6cf5e 12c4f66fc74803f276bbb65e8a696f9bd47cc2a8edfebb286f5c3b2a5b6efce7
-ql/lib/codeql/swift/generated/stmt/DoCatchStmt.qll 92f095ee43b1637269a4c3ba7db4743011f6a10a92012cd02b972f41d3b2668f f90c5d82805e1d7b1f9799c440f82c772b167f68cd7df0967b2f02486b407766
+ql/lib/codeql/swift/generated/stmt/DoCatchStmt.qll f8d2e7366524518933bd59eb66f0ac13266c4483ec4e71c6c4e4e890374787a1 31529884d5c49f119491f8add3bc06dd47ca0a094c4db6b3d84693db6a9cc489
 ql/lib/codeql/swift/generated/stmt/DoStmt.qll dfa2879944e9b6879be7b47ba7e2be3cbb066322a891453891c4719bf0eb4a43 581c57de1a60084f8122fc698934894bbb8848825cb759fa62ff4e07002840cb
 ql/lib/codeql/swift/generated/stmt/FailStmt.qll d8f5816c51c5027fd6dacc8d9f5ddd21f691c138dfc80c6c79e250402a1fe165 d8f5816c51c5027fd6dacc8d9f5ddd21f691c138dfc80c6c79e250402a1fe165
 ql/lib/codeql/swift/generated/stmt/FallthroughStmt.qll 7574c3b0d4e7901509b64c4a1d0355a06c02a09fc1282c0c5e86fa7566359c2e 54e85e2fd57313a20dfc196ded519422e4adee5ae4b17f4cc47d47b89650bf47
@@ -583,21 +583,21 @@ ql/lib/codeql/swift/generated/stmt/PoundAssertStmt.qll a03dc4a5ef847d74a3cbae652
 ql/lib/codeql/swift/generated/stmt/RepeatWhileStmt.qll adfebcb8a804842866c5f363c39856298de06fd538cca9ffe9c9cd4f59ddc6a7 19d74a05cb01fb586b08d3842a258de82721b1c709d556373e4a75c408e3c891
 ql/lib/codeql/swift/generated/stmt/ReturnStmt.qll 464dc2a4060ffdee4db3d405c344543c4d4e20b969ab536b47f0057b13ff0ce9 8d02dc871965db4947ee895f120ae6fe4c999d8d47e658a970990ea1bf76dd4c
 ql/lib/codeql/swift/generated/stmt/Stmt.qll b2a4f3712e3575321a4bc65d31b9eb8ddcd2d20af9863f3b9240e78e4b32ccff e0fc13b3af867aa53b21f58a5be1b7d1333b3e8543a4d214a346468f783dbf40
-ql/lib/codeql/swift/generated/stmt/StmtCondition.qll 2275318cf6cc58deb57b81f3120ef3b3694ad1cd1e5fa8a21c84b9ff65fd53e9 266fc4e5daf8140cb1da5f354fa2033b2fe6b7bc422585cf7fafaad0007b8473
-ql/lib/codeql/swift/generated/stmt/SwitchStmt.qll 5bfa39b4e4a5fae1d7268f15e1c00059e888199a22615011cd18d4ad0aadc873 57eecf592b6cedf97f77e0016e789a6b314fcf3bf97a941f6d93a10ea58b2c60
+ql/lib/codeql/swift/generated/stmt/StmtCondition.qll 21ff34296584a5a0acf0f466c8aa83690f8f9761efa1208e65bb6ed120af5541 23b12b6db6f7ab7b2a951083a9a06ec702407c2a0c79cc9c479a24213d0753a9
+ql/lib/codeql/swift/generated/stmt/SwitchStmt.qll 1fce725cb70bfc20d373c4798731da0394b726653887d9c1fe27852253b06393 805d8383b3168e218c1d45c93d3f0c40a1d779208dbbbe45423ea1af64a98e1d
 ql/lib/codeql/swift/generated/stmt/ThrowStmt.qll 480553a18c58c2fa594ee3c7bc6b69f8aafb1c209e27379b711681652cbe6dd3 23829747c8b8428d7a2eea6017bb01536df01d7346c136bd6b654ebdd04342de
 ql/lib/codeql/swift/generated/stmt/WhileStmt.qll 1ac3c3638899386a953905f98f432b7ba5c89e23e28ca55def478ce726127f50 4ac6f0f62082a2a5c1a0119addbb6e4cdebe468a7f972c682c114a70a58c1e80
-ql/lib/codeql/swift/generated/stmt/YieldStmt.qll 442e6c7ef71a45eddb2aef9eb879dad7e3a8fe3ff09605c4bcca11d9279bd42a fc745260bc8783792a735464ef6b9d5083492de56c37a172b11cef878316ec9e
+ql/lib/codeql/swift/generated/stmt/YieldStmt.qll 8b1e8b7b19f94232eb877e1f8956033f6ca51db30d2542642bf3892a20eb1069 87355acc75a95a08e4f2894609c3093321904f62b9033620700ccd4427a9ca70
 ql/lib/codeql/swift/generated/type/AnyBuiltinIntegerType.qll a263451163e027c4c4223ec288e090b7e0d399cc46eb962013342bfeac5f6b86 d850ec1ee1902945b172ddd0ecd8884e399e963f939c04bc8bfaadacebdf55a9
-ql/lib/codeql/swift/generated/type/AnyFunctionType.qll 4381225f3d267eca8bd2ecab8eaca93afe8860b59d3cc733c76e180995ace6c8 a96ac57a7737d584100d445d99b2e0ffedbc9a8ea827bf3f3a0f53052f5835b6
+ql/lib/codeql/swift/generated/type/AnyFunctionType.qll 28f01d61d199ae6b28800151a923c2c74983aebec6951e6945973292a7d774b1 473b5e0067c5809c7927acf3670acc1e4b9f5fdfcda070954b6c108c7efd409a
 ql/lib/codeql/swift/generated/type/AnyGenericType.qll af3e8060bec6128f3135960da1703a72c51c461e85737b9a336d72910fd33e7a 470e51991d606170482dba555bf4067a442e8fec25706a481ef38bdedb1531b1
 ql/lib/codeql/swift/generated/type/AnyMetatypeType.qll 6805a6895e748e02502105d844b66fab5111dbb0d727534d305a0396dacc9465 58e0794b8d6dccd9809f5b83bf64b162e69f3f84b5f3161b88aed10f16a8ede8
-ql/lib/codeql/swift/generated/type/ArchetypeType.qll 6c1590b59683ebd5b632bb77acf9a6f6fb20c3862a3d6c796e897f7aff72a32e ce7f20a8c20aff5d770216c939bae3d110ae70a9180a2203c5066430691566d9
+ql/lib/codeql/swift/generated/type/ArchetypeType.qll 3c3d88c43a746b54cd09562756768538675ee1bae31c58fca4b8c6af7ccc8656 6dd41b2a89176342a27d3ffa7abc60dc9e53f2a6c132941fb7c79f9aa1b189db
 ql/lib/codeql/swift/generated/type/ArraySliceType.qll 72d0409e2704e89ebca364ae28d55c874152f55dd1deaac6c954617f6566f3c2 72d0409e2704e89ebca364ae28d55c874152f55dd1deaac6c954617f6566f3c2
 ql/lib/codeql/swift/generated/type/BoundGenericClassType.qll c82971dcd306a4cbc6bb885ae300556717eb2d068066b7752a36480e5eb14b5f c82971dcd306a4cbc6bb885ae300556717eb2d068066b7752a36480e5eb14b5f
 ql/lib/codeql/swift/generated/type/BoundGenericEnumType.qll 89fcee52adbe6c9b130eae45cf43b2a2c302e8812f8519ea885e5d41dec3ec56 89fcee52adbe6c9b130eae45cf43b2a2c302e8812f8519ea885e5d41dec3ec56
 ql/lib/codeql/swift/generated/type/BoundGenericStructType.qll ff24933889dcc9579fe9a52bd5992b6ecd7b7a7b59c4b1005734e5cd367c8ed6 ff24933889dcc9579fe9a52bd5992b6ecd7b7a7b59c4b1005734e5cd367c8ed6
-ql/lib/codeql/swift/generated/type/BoundGenericType.qll 22451d348947604932c9c560bfade72c06264a53a378ad7553ef3e160e5f769a 64d848e4237febf3e693752478f4f8e4218a6d546c200536a270b4db809a1ee6
+ql/lib/codeql/swift/generated/type/BoundGenericType.qll 6c252df4623344c89072fefa82879b05a195b53dd78ea7b95e9eb862b9c9c64c 91b172eea501ef3d0710bbbeee7b8270c20a6667d2cf169e058804b12ff2166d
 ql/lib/codeql/swift/generated/type/BuiltinBridgeObjectType.qll 848291382ac6bd7cf5dd6707418d4881ec9750ca8e345f7eff9e358715c11264 848291382ac6bd7cf5dd6707418d4881ec9750ca8e345f7eff9e358715c11264
 ql/lib/codeql/swift/generated/type/BuiltinDefaultActorStorageType.qll 54e981860527a18660c9c76da60b14fa6dd3dae0441490ed7eb47d36f1190d8b 54e981860527a18660c9c76da60b14fa6dd3dae0441490ed7eb47d36f1190d8b
 ql/lib/codeql/swift/generated/type/BuiltinExecutorType.qll 149642b70b123bcffb0a235ca0fca21a667939fe17cdae62fee09a54dca3e6be 149642b70b123bcffb0a235ca0fca21a667939fe17cdae62fee09a54dca3e6be
@@ -620,7 +620,7 @@ ql/lib/codeql/swift/generated/type/ErrorType.qll cbc17f4d9977268b2ff0f8a517ca898
 ql/lib/codeql/swift/generated/type/ExistentialMetatypeType.qll 3a7fd0829381fe4d3768d4c6b0b1257f8386be6c59a73458f68387f66ea23e05 3a7fd0829381fe4d3768d4c6b0b1257f8386be6c59a73458f68387f66ea23e05
 ql/lib/codeql/swift/generated/type/ExistentialType.qll 974537bfafdd509743ccd5173770c31d29aaa311acb07bb9808c62b7fa63f67a c6fbbfb8dacf78087828d68bc94db5d18db75f6c6183ab4425dfa13fccb6b220
 ql/lib/codeql/swift/generated/type/FunctionType.qll 36e1de86e127d2fb1b0a3a7abce68422bdf55a3ab207e2df03ea0a861ab5ccb4 36e1de86e127d2fb1b0a3a7abce68422bdf55a3ab207e2df03ea0a861ab5ccb4
-ql/lib/codeql/swift/generated/type/GenericFunctionType.qll 2465d7729e6b8950d04e9dbdf9018b1f651dba3716387d874de1a1175eb1bc42 a458be5441cd9d29d204c39ccd3e39c347f92c32d8ac2a75ad16fbe698545062
+ql/lib/codeql/swift/generated/type/GenericFunctionType.qll 299c06f01579161b1a22104b91947b9e24c399e66fca91415c2125bf02876631 b4a6bd09a4f28edf58681f8e1f71c955089484535e22fa50d9bae71fd52192fb
 ql/lib/codeql/swift/generated/type/GenericTypeParamType.qll f515debe8b21f3ea6551e4f8513cda14c3a5ed0cebd4cbfd3b533ff6f0e8b0bf f515debe8b21f3ea6551e4f8513cda14c3a5ed0cebd4cbfd3b533ff6f0e8b0bf
 ql/lib/codeql/swift/generated/type/InOutType.qll c69d0f3c3f3d82c6300e052366709760c12f91a6580865ff8718f29057925235 2a9e1d66bec636a727f5ebc60827d90afcdbee69aabe8ae7501f0e089c6dbd5e
 ql/lib/codeql/swift/generated/type/LValueType.qll 5159f8cf7004e497db76130d2bfd10228f60864f0e6e9e809fc9a2765eafa978 fc238183b7bf54632fa003e9e91a1c49fb9167170fe60c22358dc3a651acbf98
@@ -631,17 +631,17 @@ ql/lib/codeql/swift/generated/type/NominalType.qll f7e85d544eaaa259c727b8b4ba691
 ql/lib/codeql/swift/generated/type/OpaqueTypeArchetypeType.qll 74c840ae210fff84636fbfb75d8fce2c2e0bc5bda1489c57f312d2195fdfeda3 0c9986107dcf497798dc69842a277045dcaacfe8eec0ed1f5fc7244dd213ff56
 ql/lib/codeql/swift/generated/type/OpenedArchetypeType.qll ed97d3fb8810424643953a0d5ebd93e58d1b2e397ea01ccde0dcd8e68c41adb2 ed97d3fb8810424643953a0d5ebd93e58d1b2e397ea01ccde0dcd8e68c41adb2
 ql/lib/codeql/swift/generated/type/OptionalType.qll d99dd5ec5636cc6c3e0e52bf27d0d8bf8dfcff25739cd7e1b845f5d96b1a5ac9 d99dd5ec5636cc6c3e0e52bf27d0d8bf8dfcff25739cd7e1b845f5d96b1a5ac9
-ql/lib/codeql/swift/generated/type/ParameterizedProtocolType.qll 73308e43fc3db3218d5970505ddf698d4082fe38c9241077f5356f75cf422015 33508199a580da52644d1d592cc1ffc2065384e8bc22787cbf4ab9a45d2400bd
+ql/lib/codeql/swift/generated/type/ParameterizedProtocolType.qll cdbbb98eea4d8e9bf0437abcca34884f7ff56eedad74316838bdbfb9c3492b4b 2cf32174c8431c69690f5b34f0c4b4156c3496da49f85886ce91bf368e4fc346
 ql/lib/codeql/swift/generated/type/ParenType.qll 4c8db82abce7b0a1e9a77d2cf799a3e897348fc48f098488bad4ca46890b2646 9ae88f83b4d09a8b59b27f6272533c1aebf04517264804e1cecd42d55e236aa3
 ql/lib/codeql/swift/generated/type/PrimaryArchetypeType.qll 87279ab9a04415fcbcf825af0145b4fc7f118fc8ce57727b840cb18f7d203b59 87279ab9a04415fcbcf825af0145b4fc7f118fc8ce57727b840cb18f7d203b59
-ql/lib/codeql/swift/generated/type/ProtocolCompositionType.qll 644a0618321838b5762424673b040352607745119c45aa0f5dd1022966970f3c 2344abae4c1f5ebece0d62078d0cea10513a80acbb22a0cb1024a2743a49af80
+ql/lib/codeql/swift/generated/type/ProtocolCompositionType.qll 36a4f7e74eb917a84d4be18084ba5727c3fbc78368f2022da136cd4cf5a76ecc 779e75d2e2bf8050dcd859f2da870fbc937dfcaa834fc75e1d6dba01d1502fbc
 ql/lib/codeql/swift/generated/type/ProtocolType.qll 07eb08216ca978c9565a7907ab3a932aa915041b6e7520bc421450b32070dbcf 07eb08216ca978c9565a7907ab3a932aa915041b6e7520bc421450b32070dbcf
 ql/lib/codeql/swift/generated/type/ReferenceStorageType.qll f565055bb52939ebb38eae4ec2fb9a70ee3045c1c7c9d604037ecf0557cce481 4d5b884f3947a1c0cb9673dc61b8735c9aeec19c9f0a87aa9b7fbe01f49fc957
 ql/lib/codeql/swift/generated/type/StructType.qll 5681060ec1cb83be082c4d5d521cdfc1c48a4095b56415efc03de7f960d1fa04 5681060ec1cb83be082c4d5d521cdfc1c48a4095b56415efc03de7f960d1fa04
 ql/lib/codeql/swift/generated/type/SubstitutableType.qll 9e74ec2d281cd3dedbc5791d66a820a56e0387260f7b2d30a5875dc3f5883389 619f0e4d509bdd9e8cfc061e5627762e9cbae8779bec998564556894a475f9d8
 ql/lib/codeql/swift/generated/type/SugarType.qll 4ea82201ae20e769c0c3e6e158bae86493e1b16bbd3ef6495e2a3760baa1fc6b 6c78df86db6f9c70398484819a9b9ecc8ee337b0a4ac2d84e17294951a6fd788
 ql/lib/codeql/swift/generated/type/SyntaxSugarType.qll 253e036452e0ba8ae3bb60d6ed22f4efb8436f4ef19f158f1114a6f9a14df42c 743fe4dede40ca173b19d5757d14e0f606fe36f51119445503e8eea7cf6df3b0
-ql/lib/codeql/swift/generated/type/TupleType.qll 036318b5e527c28d9bfc234e74ea60d8f0560737ed8c73d26e46b4d21cf49d78 8a50c7308cf91bc057bdce3e695bcb57d83831a7423cf8e946b005aaee36d5c2
+ql/lib/codeql/swift/generated/type/TupleType.qll e94b6173b195cab14c8b48081e0e5f47787a64fe251fd9af0465e726ffa55ffb cd6c354e872012888014d627be93f415c55ddde0691390fe5e46df96ddebf63f
 ql/lib/codeql/swift/generated/type/Type.qll 2bd40fd723b2feca4728efe1941ae4b7d830b1021b2de304e6d52c16d744f5a1 c9e44bc375a4dede3f5f1d5bcc8a2f667db0f1919f2549c8c2bb1af5eee899cf
 ql/lib/codeql/swift/generated/type/TypeAliasType.qll 081916a36657d4e7df02d6c034715e674cdc980e7067d5317785f7f5bd1b6acb 47b1b7502f8e0792bbe31f03b9df0302cc3d7332b84e104d83304e09f425a06b
 ql/lib/codeql/swift/generated/type/TypeRepr.qll 10febbf304b45c9c15f158ccc7f52aa4f4da0f7ca8856c082ef19823d9a1d114 89dcafe7b9939cf6915215ef2906becf5658a3fd2c7b20968b3fc72c3f5155ec
diff --git a/swift/ql/lib/codeql/swift/generated/Callable.qll b/swift/ql/lib/codeql/swift/generated/Callable.qll
index a1564db6f4a..7732626e10b 100644
--- a/swift/ql/lib/codeql/swift/generated/Callable.qll
+++ b/swift/ql/lib/codeql/swift/generated/Callable.qll
@@ -56,7 +56,7 @@ module Generated {
     /**
      * Gets the number of parameters of this callable.
      */
-    final int getNumberOfParams() { result = count(getAParam()) }
+    final int getNumberOfParams() { result = count(int i | exists(getParam(i))) }
 
     /**
      * Gets the body of this callable, if it exists.
diff --git a/swift/ql/lib/codeql/swift/generated/decl/AbstractStorageDecl.qll b/swift/ql/lib/codeql/swift/generated/decl/AbstractStorageDecl.qll
index 05d5b9b2a63..2e5ad34c6b7 100644
--- a/swift/ql/lib/codeql/swift/generated/decl/AbstractStorageDecl.qll
+++ b/swift/ql/lib/codeql/swift/generated/decl/AbstractStorageDecl.qll
@@ -34,6 +34,6 @@ module Generated {
     /**
      * Gets the number of accessor declarations of this abstract storage declaration.
      */
-    final int getNumberOfAccessorDecls() { result = count(getAnAccessorDecl()) }
+    final int getNumberOfAccessorDecls() { result = count(int i | exists(getAccessorDecl(i))) }
   }
 }
diff --git a/swift/ql/lib/codeql/swift/generated/decl/EnumCaseDecl.qll b/swift/ql/lib/codeql/swift/generated/decl/EnumCaseDecl.qll
index dbd0029cb4d..c7e37aa2d46 100644
--- a/swift/ql/lib/codeql/swift/generated/decl/EnumCaseDecl.qll
+++ b/swift/ql/lib/codeql/swift/generated/decl/EnumCaseDecl.qll
@@ -34,6 +34,6 @@ module Generated {
     /**
      * Gets the number of elements of this enum case declaration.
      */
-    final int getNumberOfElements() { result = count(getAnElement()) }
+    final int getNumberOfElements() { result = count(int i | exists(getElement(i))) }
   }
 }
diff --git a/swift/ql/lib/codeql/swift/generated/decl/EnumElementDecl.qll b/swift/ql/lib/codeql/swift/generated/decl/EnumElementDecl.qll
index 43e99500ddc..9de09b1d663 100644
--- a/swift/ql/lib/codeql/swift/generated/decl/EnumElementDecl.qll
+++ b/swift/ql/lib/codeql/swift/generated/decl/EnumElementDecl.qll
@@ -41,6 +41,6 @@ module Generated {
     /**
      * Gets the number of parameters of this enum element declaration.
      */
-    final int getNumberOfParams() { result = count(getAParam()) }
+    final int getNumberOfParams() { result = count(int i | exists(getParam(i))) }
   }
 }
diff --git a/swift/ql/lib/codeql/swift/generated/decl/GenericContext.qll b/swift/ql/lib/codeql/swift/generated/decl/GenericContext.qll
index 90c6f5457bb..095870c1657 100644
--- a/swift/ql/lib/codeql/swift/generated/decl/GenericContext.qll
+++ b/swift/ql/lib/codeql/swift/generated/decl/GenericContext.qll
@@ -34,6 +34,8 @@ module Generated {
     /**
      * Gets the number of generic type parameters of this generic context.
      */
-    final int getNumberOfGenericTypeParams() { result = count(getAGenericTypeParam()) }
+    final int getNumberOfGenericTypeParams() {
+      result = count(int i | exists(getGenericTypeParam(i)))
+    }
   }
 }
diff --git a/swift/ql/lib/codeql/swift/generated/decl/IfConfigDecl.qll b/swift/ql/lib/codeql/swift/generated/decl/IfConfigDecl.qll
index 5cbe08b6ee1..ab48661cb37 100644
--- a/swift/ql/lib/codeql/swift/generated/decl/IfConfigDecl.qll
+++ b/swift/ql/lib/codeql/swift/generated/decl/IfConfigDecl.qll
@@ -36,6 +36,6 @@ module Generated {
     /**
      * Gets the number of active elements of this if config declaration.
      */
-    final int getNumberOfActiveElements() { result = count(getAnActiveElement()) }
+    final int getNumberOfActiveElements() { result = count(int i | exists(getActiveElement(i))) }
   }
 }
diff --git a/swift/ql/lib/codeql/swift/generated/decl/ImportDecl.qll b/swift/ql/lib/codeql/swift/generated/decl/ImportDecl.qll
index 1067e3a2fa4..2c3952de14a 100644
--- a/swift/ql/lib/codeql/swift/generated/decl/ImportDecl.qll
+++ b/swift/ql/lib/codeql/swift/generated/decl/ImportDecl.qll
@@ -63,6 +63,6 @@ module Generated {
     /**
      * Gets the number of declarations of this import declaration.
      */
-    final int getNumberOfDeclarations() { result = count(getADeclaration()) }
+    final int getNumberOfDeclarations() { result = count(int i | exists(getDeclaration(i))) }
   }
 }
diff --git a/swift/ql/lib/codeql/swift/generated/decl/IterableDeclContext.qll b/swift/ql/lib/codeql/swift/generated/decl/IterableDeclContext.qll
index 35fc93aa9e9..4ae2e88bd74 100644
--- a/swift/ql/lib/codeql/swift/generated/decl/IterableDeclContext.qll
+++ b/swift/ql/lib/codeql/swift/generated/decl/IterableDeclContext.qll
@@ -32,6 +32,6 @@ module Generated {
     /**
      * Gets the number of members of this iterable declaration context.
      */
-    final int getNumberOfMembers() { result = count(getAMember()) }
+    final int getNumberOfMembers() { result = count(int i | exists(getMember(i))) }
   }
 }
diff --git a/swift/ql/lib/codeql/swift/generated/decl/ModuleDecl.qll b/swift/ql/lib/codeql/swift/generated/decl/ModuleDecl.qll
index 0f4ffd9c616..4b10570ef7b 100644
--- a/swift/ql/lib/codeql/swift/generated/decl/ModuleDecl.qll
+++ b/swift/ql/lib/codeql/swift/generated/decl/ModuleDecl.qll
@@ -49,7 +49,7 @@ module Generated {
     /**
      * Gets the number of imported modules of this module declaration.
      */
-    final int getNumberOfImportedModules() { result = count(getAnImportedModule()) }
+    final int getNumberOfImportedModules() { result = count(int i | exists(getImportedModule(i))) }
 
     /**
      * Gets the `index`th exported module of this module declaration (0-based).
@@ -79,6 +79,6 @@ module Generated {
     /**
      * Gets the number of exported modules of this module declaration.
      */
-    final int getNumberOfExportedModules() { result = count(getAnExportedModule()) }
+    final int getNumberOfExportedModules() { result = count(int i | exists(getExportedModule(i))) }
   }
 }
diff --git a/swift/ql/lib/codeql/swift/generated/decl/OpaqueTypeDecl.qll b/swift/ql/lib/codeql/swift/generated/decl/OpaqueTypeDecl.qll
index e3ad8fe72a2..78cc23c82cb 100644
--- a/swift/ql/lib/codeql/swift/generated/decl/OpaqueTypeDecl.qll
+++ b/swift/ql/lib/codeql/swift/generated/decl/OpaqueTypeDecl.qll
@@ -66,6 +66,8 @@ module Generated {
     /**
      * Gets the number of opaque generic parameters of this opaque type declaration.
      */
-    final int getNumberOfOpaqueGenericParams() { result = count(getAnOpaqueGenericParam()) }
+    final int getNumberOfOpaqueGenericParams() {
+      result = count(int i | exists(getOpaqueGenericParam(i)))
+    }
   }
 }
diff --git a/swift/ql/lib/codeql/swift/generated/decl/PatternBindingDecl.qll b/swift/ql/lib/codeql/swift/generated/decl/PatternBindingDecl.qll
index dd454ea0e24..301efcd3df3 100644
--- a/swift/ql/lib/codeql/swift/generated/decl/PatternBindingDecl.qll
+++ b/swift/ql/lib/codeql/swift/generated/decl/PatternBindingDecl.qll
@@ -63,6 +63,6 @@ module Generated {
     /**
      * Gets the number of patterns of this pattern binding declaration.
      */
-    final int getNumberOfPatterns() { result = count(getAPattern()) }
+    final int getNumberOfPatterns() { result = count(int i | exists(getPattern(i))) }
   }
 }
diff --git a/swift/ql/lib/codeql/swift/generated/decl/SubscriptDecl.qll b/swift/ql/lib/codeql/swift/generated/decl/SubscriptDecl.qll
index d752aae3b58..ddf8508db30 100644
--- a/swift/ql/lib/codeql/swift/generated/decl/SubscriptDecl.qll
+++ b/swift/ql/lib/codeql/swift/generated/decl/SubscriptDecl.qll
@@ -36,7 +36,7 @@ module Generated {
     /**
      * Gets the number of parameters of this subscript declaration.
      */
-    final int getNumberOfParams() { result = count(getAParam()) }
+    final int getNumberOfParams() { result = count(int i | exists(getParam(i))) }
 
     /**
      * Gets the element type of this subscript declaration.
diff --git a/swift/ql/lib/codeql/swift/generated/decl/TypeDecl.qll b/swift/ql/lib/codeql/swift/generated/decl/TypeDecl.qll
index 8efc443721a..85d19e61b07 100644
--- a/swift/ql/lib/codeql/swift/generated/decl/TypeDecl.qll
+++ b/swift/ql/lib/codeql/swift/generated/decl/TypeDecl.qll
@@ -37,6 +37,6 @@ module Generated {
     /**
      * Gets the number of base types of this type declaration.
      */
-    final int getNumberOfBaseTypes() { result = count(getABaseType()) }
+    final int getNumberOfBaseTypes() { result = count(int i | exists(getBaseType(i))) }
   }
 }
diff --git a/swift/ql/lib/codeql/swift/generated/expr/ApplyExpr.qll b/swift/ql/lib/codeql/swift/generated/expr/ApplyExpr.qll
index 1beaf334682..b39b3f694bd 100644
--- a/swift/ql/lib/codeql/swift/generated/expr/ApplyExpr.qll
+++ b/swift/ql/lib/codeql/swift/generated/expr/ApplyExpr.qll
@@ -48,6 +48,6 @@ module Generated {
     /**
      * Gets the number of arguments passed to the applied function.
      */
-    final int getNumberOfArguments() { result = count(getAnArgument()) }
+    final int getNumberOfArguments() { result = count(int i | exists(getArgument(i))) }
   }
 }
diff --git a/swift/ql/lib/codeql/swift/generated/expr/ArrayExpr.qll b/swift/ql/lib/codeql/swift/generated/expr/ArrayExpr.qll
index df3ea361d68..8d0218f0824 100644
--- a/swift/ql/lib/codeql/swift/generated/expr/ArrayExpr.qll
+++ b/swift/ql/lib/codeql/swift/generated/expr/ArrayExpr.qll
@@ -34,6 +34,6 @@ module Generated {
     /**
      * Gets the number of elements of this array expression.
      */
-    final int getNumberOfElements() { result = count(getAnElement()) }
+    final int getNumberOfElements() { result = count(int i | exists(getElement(i))) }
   }
 }
diff --git a/swift/ql/lib/codeql/swift/generated/expr/CaptureListExpr.qll b/swift/ql/lib/codeql/swift/generated/expr/CaptureListExpr.qll
index 364c60ea5b0..e971caa1b5b 100644
--- a/swift/ql/lib/codeql/swift/generated/expr/CaptureListExpr.qll
+++ b/swift/ql/lib/codeql/swift/generated/expr/CaptureListExpr.qll
@@ -37,7 +37,7 @@ module Generated {
     /**
      * Gets the number of binding declarations of this capture list expression.
      */
-    final int getNumberOfBindingDecls() { result = count(getABindingDecl()) }
+    final int getNumberOfBindingDecls() { result = count(int i | exists(getBindingDecl(i))) }
 
     /**
      * Gets the closure body of this capture list expression.
diff --git a/swift/ql/lib/codeql/swift/generated/expr/DeclRefExpr.qll b/swift/ql/lib/codeql/swift/generated/expr/DeclRefExpr.qll
index cb95cd82a27..1c95bbb9555 100644
--- a/swift/ql/lib/codeql/swift/generated/expr/DeclRefExpr.qll
+++ b/swift/ql/lib/codeql/swift/generated/expr/DeclRefExpr.qll
@@ -53,7 +53,9 @@ module Generated {
     /**
      * Gets the number of replacement types of this declaration ref expression.
      */
-    final int getNumberOfReplacementTypes() { result = count(getAReplacementType()) }
+    final int getNumberOfReplacementTypes() {
+      result = count(int i | exists(getReplacementType(i)))
+    }
 
     /**
      * Holds if this declaration ref expression has direct to storage semantics.
diff --git a/swift/ql/lib/codeql/swift/generated/expr/DictionaryExpr.qll b/swift/ql/lib/codeql/swift/generated/expr/DictionaryExpr.qll
index 8d9fd0589c4..95821ef674b 100644
--- a/swift/ql/lib/codeql/swift/generated/expr/DictionaryExpr.qll
+++ b/swift/ql/lib/codeql/swift/generated/expr/DictionaryExpr.qll
@@ -34,6 +34,6 @@ module Generated {
     /**
      * Gets the number of elements of this dictionary expression.
      */
-    final int getNumberOfElements() { result = count(getAnElement()) }
+    final int getNumberOfElements() { result = count(int i | exists(getElement(i))) }
   }
 }
diff --git a/swift/ql/lib/codeql/swift/generated/expr/ObjectLiteralExpr.qll b/swift/ql/lib/codeql/swift/generated/expr/ObjectLiteralExpr.qll
index 0d145bfbb04..602478ed726 100644
--- a/swift/ql/lib/codeql/swift/generated/expr/ObjectLiteralExpr.qll
+++ b/swift/ql/lib/codeql/swift/generated/expr/ObjectLiteralExpr.qll
@@ -46,6 +46,6 @@ module Generated {
     /**
      * Gets the number of arguments of this object literal expression.
      */
-    final int getNumberOfArguments() { result = count(getAnArgument()) }
+    final int getNumberOfArguments() { result = count(int i | exists(getArgument(i))) }
   }
 }
diff --git a/swift/ql/lib/codeql/swift/generated/expr/OverloadedDeclRefExpr.qll b/swift/ql/lib/codeql/swift/generated/expr/OverloadedDeclRefExpr.qll
index 8347c6daa1b..02010bf0af2 100644
--- a/swift/ql/lib/codeql/swift/generated/expr/OverloadedDeclRefExpr.qll
+++ b/swift/ql/lib/codeql/swift/generated/expr/OverloadedDeclRefExpr.qll
@@ -41,6 +41,8 @@ module Generated {
     /**
      * Gets the number of possible declarations of this overloaded declaration ref expression.
      */
-    final int getNumberOfPossibleDeclarations() { result = count(getAPossibleDeclaration()) }
+    final int getNumberOfPossibleDeclarations() {
+      result = count(int i | exists(getPossibleDeclaration(i)))
+    }
   }
 }
diff --git a/swift/ql/lib/codeql/swift/generated/expr/SequenceExpr.qll b/swift/ql/lib/codeql/swift/generated/expr/SequenceExpr.qll
index 6cbeb816a25..5a4ca1b9650 100644
--- a/swift/ql/lib/codeql/swift/generated/expr/SequenceExpr.qll
+++ b/swift/ql/lib/codeql/swift/generated/expr/SequenceExpr.qll
@@ -33,6 +33,6 @@ module Generated {
     /**
      * Gets the number of elements of this sequence expression.
      */
-    final int getNumberOfElements() { result = count(getAnElement()) }
+    final int getNumberOfElements() { result = count(int i | exists(getElement(i))) }
   }
 }
diff --git a/swift/ql/lib/codeql/swift/generated/expr/SubscriptExpr.qll b/swift/ql/lib/codeql/swift/generated/expr/SubscriptExpr.qll
index 456fda265f0..c5bdfb0207d 100644
--- a/swift/ql/lib/codeql/swift/generated/expr/SubscriptExpr.qll
+++ b/swift/ql/lib/codeql/swift/generated/expr/SubscriptExpr.qll
@@ -34,7 +34,7 @@ module Generated {
     /**
      * Gets the number of arguments of this subscript expression.
      */
-    final int getNumberOfArguments() { result = count(getAnArgument()) }
+    final int getNumberOfArguments() { result = count(int i | exists(getArgument(i))) }
 
     /**
      * Holds if this subscript expression has direct to storage semantics.
diff --git a/swift/ql/lib/codeql/swift/generated/expr/TupleExpr.qll b/swift/ql/lib/codeql/swift/generated/expr/TupleExpr.qll
index 36a62ee0313..5db9ee900ba 100644
--- a/swift/ql/lib/codeql/swift/generated/expr/TupleExpr.qll
+++ b/swift/ql/lib/codeql/swift/generated/expr/TupleExpr.qll
@@ -33,6 +33,6 @@ module Generated {
     /**
      * Gets the number of elements of this tuple expression.
      */
-    final int getNumberOfElements() { result = count(getAnElement()) }
+    final int getNumberOfElements() { result = count(int i | exists(getElement(i))) }
   }
 }
diff --git a/swift/ql/lib/codeql/swift/generated/pattern/TuplePattern.qll b/swift/ql/lib/codeql/swift/generated/pattern/TuplePattern.qll
index 7a2d3f86583..31c0cf593a5 100644
--- a/swift/ql/lib/codeql/swift/generated/pattern/TuplePattern.qll
+++ b/swift/ql/lib/codeql/swift/generated/pattern/TuplePattern.qll
@@ -33,6 +33,6 @@ module Generated {
     /**
      * Gets the number of elements of this tuple pattern.
      */
-    final int getNumberOfElements() { result = count(getAnElement()) }
+    final int getNumberOfElements() { result = count(int i | exists(getElement(i))) }
   }
 }
diff --git a/swift/ql/lib/codeql/swift/generated/stmt/BraceStmt.qll b/swift/ql/lib/codeql/swift/generated/stmt/BraceStmt.qll
index 4aef40c0ea5..5f2245f991d 100644
--- a/swift/ql/lib/codeql/swift/generated/stmt/BraceStmt.qll
+++ b/swift/ql/lib/codeql/swift/generated/stmt/BraceStmt.qll
@@ -34,6 +34,6 @@ module Generated {
     /**
      * Gets the number of elements of this brace statement.
      */
-    final int getNumberOfElements() { result = count(getAnElement()) }
+    final int getNumberOfElements() { result = count(int i | exists(getElement(i))) }
   }
 }
diff --git a/swift/ql/lib/codeql/swift/generated/stmt/CaseStmt.qll b/swift/ql/lib/codeql/swift/generated/stmt/CaseStmt.qll
index a320d56194a..a6246070415 100644
--- a/swift/ql/lib/codeql/swift/generated/stmt/CaseStmt.qll
+++ b/swift/ql/lib/codeql/swift/generated/stmt/CaseStmt.qll
@@ -51,7 +51,7 @@ module Generated {
     /**
      * Gets the number of labels of this case statement.
      */
-    final int getNumberOfLabels() { result = count(getALabel()) }
+    final int getNumberOfLabels() { result = count(int i | exists(getLabel(i))) }
 
     /**
      * Gets the `index`th variable of this case statement (0-based).
@@ -79,6 +79,6 @@ module Generated {
     /**
      * Gets the number of variables of this case statement.
      */
-    final int getNumberOfVariables() { result = count(getAVariable()) }
+    final int getNumberOfVariables() { result = count(int i | exists(getVariable(i))) }
   }
 }
diff --git a/swift/ql/lib/codeql/swift/generated/stmt/DoCatchStmt.qll b/swift/ql/lib/codeql/swift/generated/stmt/DoCatchStmt.qll
index 341446dd921..642da76726a 100644
--- a/swift/ql/lib/codeql/swift/generated/stmt/DoCatchStmt.qll
+++ b/swift/ql/lib/codeql/swift/generated/stmt/DoCatchStmt.qll
@@ -51,6 +51,6 @@ module Generated {
     /**
      * Gets the number of catches of this do catch statement.
      */
-    final int getNumberOfCatches() { result = count(getACatch()) }
+    final int getNumberOfCatches() { result = count(int i | exists(getCatch(i))) }
   }
 }
diff --git a/swift/ql/lib/codeql/swift/generated/stmt/StmtCondition.qll b/swift/ql/lib/codeql/swift/generated/stmt/StmtCondition.qll
index a7376dd0ca1..45b93f32177 100644
--- a/swift/ql/lib/codeql/swift/generated/stmt/StmtCondition.qll
+++ b/swift/ql/lib/codeql/swift/generated/stmt/StmtCondition.qll
@@ -34,6 +34,6 @@ module Generated {
     /**
      * Gets the number of elements of this statement condition.
      */
-    final int getNumberOfElements() { result = count(getAnElement()) }
+    final int getNumberOfElements() { result = count(int i | exists(getElement(i))) }
   }
 }
diff --git a/swift/ql/lib/codeql/swift/generated/stmt/SwitchStmt.qll b/swift/ql/lib/codeql/swift/generated/stmt/SwitchStmt.qll
index 6113c36e5f4..e1921751d22 100644
--- a/swift/ql/lib/codeql/swift/generated/stmt/SwitchStmt.qll
+++ b/swift/ql/lib/codeql/swift/generated/stmt/SwitchStmt.qll
@@ -51,6 +51,6 @@ module Generated {
     /**
      * Gets the number of cases of this switch statement.
      */
-    final int getNumberOfCases() { result = count(getACase()) }
+    final int getNumberOfCases() { result = count(int i | exists(getCase(i))) }
   }
 }
diff --git a/swift/ql/lib/codeql/swift/generated/stmt/YieldStmt.qll b/swift/ql/lib/codeql/swift/generated/stmt/YieldStmt.qll
index 84d73eaa6aa..42d91340d95 100644
--- a/swift/ql/lib/codeql/swift/generated/stmt/YieldStmt.qll
+++ b/swift/ql/lib/codeql/swift/generated/stmt/YieldStmt.qll
@@ -34,6 +34,6 @@ module Generated {
     /**
      * Gets the number of results of this yield statement.
      */
-    final int getNumberOfResults() { result = count(getAResult()) }
+    final int getNumberOfResults() { result = count(int i | exists(getResult(i))) }
   }
 }
diff --git a/swift/ql/lib/codeql/swift/generated/type/AnyFunctionType.qll b/swift/ql/lib/codeql/swift/generated/type/AnyFunctionType.qll
index 8e89e21f0ae..58a98860700 100644
--- a/swift/ql/lib/codeql/swift/generated/type/AnyFunctionType.qll
+++ b/swift/ql/lib/codeql/swift/generated/type/AnyFunctionType.qll
@@ -49,7 +49,7 @@ module Generated {
     /**
      * Gets the number of parameter types of this function type.
      */
-    final int getNumberOfParamTypes() { result = count(getAParamType()) }
+    final int getNumberOfParamTypes() { result = count(int i | exists(getParamType(i))) }
 
     /**
      * Gets the `index`th parameter label of this function type (0-based), if it exists.
diff --git a/swift/ql/lib/codeql/swift/generated/type/ArchetypeType.qll b/swift/ql/lib/codeql/swift/generated/type/ArchetypeType.qll
index d466a20c132..55c53181e4b 100644
--- a/swift/ql/lib/codeql/swift/generated/type/ArchetypeType.qll
+++ b/swift/ql/lib/codeql/swift/generated/type/ArchetypeType.qll
@@ -74,6 +74,6 @@ module Generated {
     /**
      * Gets the number of protocols of this archetype type.
      */
-    final int getNumberOfProtocols() { result = count(getAProtocol()) }
+    final int getNumberOfProtocols() { result = count(int i | exists(getProtocol(i))) }
   }
 }
diff --git a/swift/ql/lib/codeql/swift/generated/type/BoundGenericType.qll b/swift/ql/lib/codeql/swift/generated/type/BoundGenericType.qll
index 3438b682f3e..5128c6273a8 100644
--- a/swift/ql/lib/codeql/swift/generated/type/BoundGenericType.qll
+++ b/swift/ql/lib/codeql/swift/generated/type/BoundGenericType.qll
@@ -32,6 +32,6 @@ module Generated {
     /**
      * Gets the number of argument types of this bound generic type.
      */
-    final int getNumberOfArgTypes() { result = count(getAnArgType()) }
+    final int getNumberOfArgTypes() { result = count(int i | exists(getArgType(i))) }
   }
 }
diff --git a/swift/ql/lib/codeql/swift/generated/type/GenericFunctionType.qll b/swift/ql/lib/codeql/swift/generated/type/GenericFunctionType.qll
index c127af996c0..0a42fa105b5 100644
--- a/swift/ql/lib/codeql/swift/generated/type/GenericFunctionType.qll
+++ b/swift/ql/lib/codeql/swift/generated/type/GenericFunctionType.qll
@@ -39,6 +39,6 @@ module Generated {
     /**
      * Gets the number of type parameters of this generic type.
      */
-    final int getNumberOfGenericParams() { result = count(getAGenericParam()) }
+    final int getNumberOfGenericParams() { result = count(int i | exists(getGenericParam(i))) }
   }
 }
diff --git a/swift/ql/lib/codeql/swift/generated/type/ParameterizedProtocolType.qll b/swift/ql/lib/codeql/swift/generated/type/ParameterizedProtocolType.qll
index 9f09046d424..2f16a859f22 100644
--- a/swift/ql/lib/codeql/swift/generated/type/ParameterizedProtocolType.qll
+++ b/swift/ql/lib/codeql/swift/generated/type/ParameterizedProtocolType.qll
@@ -57,6 +57,6 @@ module Generated {
     /**
      * Gets the number of arguments of this parameterized protocol type.
      */
-    final int getNumberOfArgs() { result = count(getAnArg()) }
+    final int getNumberOfArgs() { result = count(int i | exists(getArg(i))) }
   }
 }
diff --git a/swift/ql/lib/codeql/swift/generated/type/ProtocolCompositionType.qll b/swift/ql/lib/codeql/swift/generated/type/ProtocolCompositionType.qll
index c653cc6c78f..7082b96ff40 100644
--- a/swift/ql/lib/codeql/swift/generated/type/ProtocolCompositionType.qll
+++ b/swift/ql/lib/codeql/swift/generated/type/ProtocolCompositionType.qll
@@ -33,6 +33,6 @@ module Generated {
     /**
      * Gets the number of members of this protocol composition type.
      */
-    final int getNumberOfMembers() { result = count(getAMember()) }
+    final int getNumberOfMembers() { result = count(int i | exists(getMember(i))) }
   }
 }
diff --git a/swift/ql/lib/codeql/swift/generated/type/TupleType.qll b/swift/ql/lib/codeql/swift/generated/type/TupleType.qll
index d21c704b4d3..e595a63d242 100644
--- a/swift/ql/lib/codeql/swift/generated/type/TupleType.qll
+++ b/swift/ql/lib/codeql/swift/generated/type/TupleType.qll
@@ -31,7 +31,7 @@ module Generated {
     /**
      * Gets the number of types of this tuple type.
      */
-    final int getNumberOfTypes() { result = count(getAType()) }
+    final int getNumberOfTypes() { result = count(int i | exists(getType(i))) }
 
     /**
      * Gets the `index`th name of this tuple type (0-based), if it exists.

From ef348453fef52d4f980fb98d81640bedb6b082e8 Mon Sep 17 00:00:00 2001
From: Paolo Tranquilli <redsun82@github.com>
Date: Wed, 7 Dec 2022 13:44:28 +0100
Subject: [PATCH 1122/1420] Swift: accept new, correct test result on
 `TypeTuple::getNumberOfTypes`

---
 .../generated/type/TupleType/TupleType.expected               | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/swift/ql/test/extractor-tests/generated/type/TupleType/TupleType.expected b/swift/ql/test/extractor-tests/generated/type/TupleType/TupleType.expected
index 8d200724094..462de128d02 100644
--- a/swift/ql/test/extractor-tests/generated/type/TupleType/TupleType.expected
+++ b/swift/ql/test/extractor-tests/generated/type/TupleType/TupleType.expected
@@ -1,4 +1,4 @@
-| (Int, Int, Int, Int, Int) | getName: | (Int, Int, Int, Int, Int) | getCanonicalType: | (Int, Int, Int, Int, Int) | getNumberOfTypes: | 1 |
+| (Int, Int, Int, Int, Int) | getName: | (Int, Int, Int, Int, Int) | getCanonicalType: | (Int, Int, Int, Int, Int) | getNumberOfTypes: | 5 |
 | (Int, String, Double) | getName: | (Int, String, Double) | getCanonicalType: | (Int, String, Double) | getNumberOfTypes: | 3 |
 | (Int, s: String, Double) | getName: | (Int, s: String, Double) | getCanonicalType: | (Int, s: String, Double) | getNumberOfTypes: | 3 |
-| (x: Int, y: Int) | getName: | (x: Int, y: Int) | getCanonicalType: | (x: Int, y: Int) | getNumberOfTypes: | 1 |
+| (x: Int, y: Int) | getName: | (x: Int, y: Int) | getCanonicalType: | (x: Int, y: Int) | getNumberOfTypes: | 2 |

From 468b05ccda6b52149af58f23136255f786989954 Mon Sep 17 00:00:00 2001
From: Michael Nebel <michaelnebel@github.com>
Date: Wed, 7 Dec 2022 14:31:51 +0100
Subject: [PATCH 1123/1420] C#: Expressions of type Span<char> and
 ReadOnlySpan<char> can be matched against constant strings.

---
 .../csharp11/PatternMatchSpan.cs              | 19 +++++++++++++++++++
 .../csharp11/patternMatchSpan.expected        |  2 ++
 .../csharp11/patternMatchSpan.ql              |  5 +++++
 3 files changed, 26 insertions(+)
 create mode 100644 csharp/ql/test/library-tests/csharp11/PatternMatchSpan.cs
 create mode 100644 csharp/ql/test/library-tests/csharp11/patternMatchSpan.expected
 create mode 100644 csharp/ql/test/library-tests/csharp11/patternMatchSpan.ql

diff --git a/csharp/ql/test/library-tests/csharp11/PatternMatchSpan.cs b/csharp/ql/test/library-tests/csharp11/PatternMatchSpan.cs
new file mode 100644
index 00000000000..18a15f49f35
--- /dev/null
+++ b/csharp/ql/test/library-tests/csharp11/PatternMatchSpan.cs
@@ -0,0 +1,19 @@
+using System;
+
+class PatternMatchSpan
+{
+
+    public void M1(ReadOnlySpan<char> x1)
+    {
+        if (x1 is "ABC") { }
+    }
+
+    public void M2(Span<char> x2)
+    {
+        switch (x2)
+        {
+            case "DEF": { break; }
+            default: { break; }
+        }
+    }
+}
\ No newline at end of file
diff --git a/csharp/ql/test/library-tests/csharp11/patternMatchSpan.expected b/csharp/ql/test/library-tests/csharp11/patternMatchSpan.expected
new file mode 100644
index 00000000000..9b105349fca
--- /dev/null
+++ b/csharp/ql/test/library-tests/csharp11/patternMatchSpan.expected
@@ -0,0 +1,2 @@
+| ReadOnlySpan<Char> | PatternMatchSpan.cs:8:19:8:23 | "ABC" | String |
+| Span<Char> | PatternMatchSpan.cs:15:18:15:22 | "DEF" | String |
diff --git a/csharp/ql/test/library-tests/csharp11/patternMatchSpan.ql b/csharp/ql/test/library-tests/csharp11/patternMatchSpan.ql
new file mode 100644
index 00000000000..5f4d202c6f5
--- /dev/null
+++ b/csharp/ql/test/library-tests/csharp11/patternMatchSpan.ql
@@ -0,0 +1,5 @@
+import csharp
+
+from PatternMatch pm
+where pm.getFile().getStem() = "PatternMatchSpan"
+select pm.getExpr().getType().getName(), pm.getPattern(), pm.getPattern().getType().getName()

From 2131b0f116b89cd2f8d29849e747691117ae8220 Mon Sep 17 00:00:00 2001
From: Arthur Baars <aibaars@github.com>
Date: Thu, 1 Dec 2022 13:06:24 +0100
Subject: [PATCH 1124/1420] Ruby: Include SSA "phi reads" in DataFlow::Node

---
 .../dataflow/internal/DataFlowDispatch.qll    | 10 +-
 .../dataflow/internal/DataFlowPrivate.qll     | 92 ++++++++++---------
 .../ruby/dataflow/internal/DataFlowPublic.qll |  4 +-
 .../codeql/ruby/dataflow/internal/SsaImpl.qll | 88 +++++++++++++++---
 .../internal/TaintTrackingPrivate.qll         |  3 +-
 5 files changed, 133 insertions(+), 64 deletions(-)

diff --git a/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowDispatch.qll b/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowDispatch.qll
index f30f2a020b6..d97b8c77bb8 100644
--- a/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowDispatch.qll
+++ b/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowDispatch.qll
@@ -240,10 +240,10 @@ private predicate selfInToplevel(SelfVariable self, Module m) {
  *
  * the SSA definition for `c` is introduced by matching on `C`.
  */
-private predicate asModulePattern(SsaDefinitionNode def, Module m) {
+private predicate asModulePattern(SsaDefinitionExtNode def, Module m) {
   exists(AsPattern ap |
     m = resolveConstantReadAccess(ap.getPattern()) and
-    def.getDefinition().(Ssa::WriteDefinition).getWriteAccess() = ap.getVariableAccess()
+    def.getDefinitionExt().(Ssa::WriteDefinition).getWriteAccess() = ap.getVariableAccess()
   )
 }
 
@@ -985,15 +985,15 @@ private DataFlow::Node trackSingletonMethodOnInstance(MethodBase method, string
  */
 pragma[nomagic]
 private predicate argMustFlowToReceiver(
-  RelevantCall ctx, DataFlow::LocalSourceNode source, ArgumentNode arg, SsaDefinitionNode paramDef,
-  RelevantCall call, Callable encl, string name
+  RelevantCall ctx, DataFlow::LocalSourceNode source, ArgumentNode arg,
+  SsaDefinitionExtNode paramDef, RelevantCall call, Callable encl, string name
 ) {
   exists(ParameterNodeImpl p, ParameterPosition ppos, ArgumentPosition apos |
     // the receiver of `call` references `p`
     exists(DataFlow::Node receiver |
       LocalFlow::localFlowSsaParamInput(p, paramDef) and
       methodCall(pragma[only_bind_into](call), receiver, pragma[only_bind_into](name)) and
-      receiver.asExpr() = paramDef.getDefinition().getARead()
+      receiver.asExpr() = paramDef.getDefinitionExt().(Ssa::Definition).getARead()
     ) and
     // `p` is a parameter of `encl`,
     encl = call.getScope() and
diff --git a/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowPrivate.qll b/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowPrivate.qll
index ba7f72502b9..b16a045739e 100644
--- a/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowPrivate.qll
+++ b/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowPrivate.qll
@@ -75,16 +75,26 @@ CfgNodes::ExprCfgNode getAPostUpdateNodeForArg(Argument arg) {
 module LocalFlow {
   private import codeql.ruby.dataflow.internal.SsaImpl
 
+  /** An SSA definition into which another SSA definition may flow. */
+  private class SsaInputDefinitionExtNode extends SsaDefinitionExtNode {
+    SsaInputDefinitionExtNode() {
+      def instanceof Ssa::PhiNode
+      or
+      def instanceof SsaImpl::PhiReadNode
+      //TODO: or def instanceof LocalFlow::UncertainExplicitSsaDefinition
+    }
+  }
+
   /**
    * Holds if `nodeFrom` is a node for SSA definition `def`, which can reach `next`.
    */
   private predicate localFlowSsaInputFromDef(
-    SsaDefinitionNode nodeFrom, Ssa::Definition def, Ssa::Definition next
+    SsaDefinitionExtNode nodeFrom, SsaImpl::DefinitionExt def, SsaInputDefinitionExtNode next
   ) {
     exists(BasicBlock bb, int i |
-      lastRefBeforeRedef(def, bb, i, next) and
-      def = nodeFrom.getDefinition() and
-      def.definesAt(_, bb, i)
+      lastRefBeforeRedefExt(def, bb, i, next.getDefinitionExt()) and
+      def = nodeFrom.getDefinitionExt() and
+      def.definesAt(_, bb, i, _)
     )
   }
 
@@ -92,27 +102,27 @@ module LocalFlow {
    * Holds if `exprFrom` is a last read of SSA definition `def`, which
    * can reach `next`.
    */
-  predicate localFlowSsaInputFromExpr(
-    CfgNodes::ExprCfgNode exprFrom, Ssa::Definition def, Ssa::Definition next
+  predicate localFlowSsaInputFromRead(
+    CfgNodes::ExprCfgNode exprFrom, SsaImpl::DefinitionExt def, SsaInputDefinitionExtNode next
   ) {
     exists(BasicBlock bb, int i |
-      lastRefBeforeRedef(def, bb, i, next) and
+      SsaImpl::lastRefBeforeRedefExt(def, bb, i, next.getDefinitionExt()) and
       exprFrom = bb.getNode(i) and
       exprFrom.getExpr() instanceof VariableReadAccess
     )
   }
 
   /** Gets the SSA definition node corresponding to parameter `p`. */
-  SsaDefinitionNode getParameterDefNode(NamedParameter p) {
+  SsaDefinitionExtNode getParameterDefNode(NamedParameter p) {
     exists(BasicBlock bb, int i |
       bb.getNode(i).getNode() = p.getDefiningAccess() and
-      result.getDefinition().definesAt(_, bb, i)
+      result.getDefinitionExt().definesAt(_, bb, i, _)
     )
   }
 
   /** Gets the SSA definition node corresponding to the implicit `self` parameter for `m`. */
-  private SsaDefinitionNode getSelfParameterDefNode(MethodBase m) {
-    result.getDefinition().(Ssa::SelfDefinition).getSourceVariable().getDeclaringScope() = m
+  private SsaDefinitionExtNode getSelfParameterDefNode(MethodBase m) {
+    result.getDefinitionExt().(Ssa::SelfDefinition).getSourceVariable().getDeclaringScope() = m
   }
 
   /**
@@ -136,7 +146,7 @@ module LocalFlow {
       or
       nodeFrom.(SelfParameterNode).getSelfVariable() = def.getSourceVariable()
     |
-      nodeTo.(SsaDefinitionNode).getDefinition() = def
+      nodeTo.(SsaDefinitionExtNode).getDefinitionExt() = def
     )
   }
 
@@ -144,8 +154,8 @@ module LocalFlow {
    * Holds if there is a local use-use flow step from `nodeFrom` to `nodeTo`
    * involving SSA definition `def`.
    */
-  predicate localSsaFlowStepUseUse(Ssa::Definition def, Node nodeFrom, Node nodeTo) {
-    def.hasAdjacentReads(nodeFrom.asExpr(), nodeTo.asExpr())
+  predicate localSsaFlowStepUseUse(SsaImpl::DefinitionExt def, Node nodeFrom, Node nodeTo) {
+    SsaImpl::adjacentReadPairExt(def, nodeFrom.asExpr(), nodeTo.asExpr())
   }
 
   /**
@@ -153,24 +163,20 @@ module LocalFlow {
    * SSA definition `def`.
    */
   private predicate localSsaFlowStep(Node nodeFrom, Node nodeTo) {
-    exists(Ssa::Definition def |
+    exists(SsaImpl::DefinitionExt def |
       // Flow from assignment into SSA definition
       def.(Ssa::WriteDefinition).assigns(nodeFrom.asExpr()) and
-      nodeTo.(SsaDefinitionNode).getDefinition() = def
+      nodeTo.(SsaDefinitionExtNode).getDefinitionExt() = def
       or
       // Flow from SSA definition to first read
-      def = nodeFrom.(SsaDefinitionNode).getDefinition() and
-      nodeTo.asExpr() = def.getAFirstRead()
+      def = nodeFrom.(SsaDefinitionExtNode).getDefinitionExt() and
+      firstReadExt(def, nodeTo.asExpr())
       or
       // Flow from read to next read
       localSsaFlowStepUseUse(def, nodeFrom.(PostUpdateNode).getPreUpdateNode(), nodeTo)
       or
-      // Flow into phi node from definition
-      exists(Ssa::PhiNode phi |
-        localFlowSsaInputFromDef(nodeFrom, def, phi) and
-        phi = nodeTo.(SsaDefinitionNode).getDefinition() and
-        def = phi.getAnInput()
-      )
+      // Flow into phi (read) SSA definition node from def
+      localFlowSsaInputFromDef(nodeFrom, def, nodeTo)
     )
     // TODO
     // or
@@ -287,7 +293,7 @@ private module Cached {
         ret.getKind() = kind
       )
     } or
-    TSsaDefinitionNode(Ssa::Definition def) or
+    TSsaDefinitionExtNode(SsaImpl::DefinitionExt def) or
     TNormalParameterNode(Parameter p) {
       p instanceof SimpleParameter or
       p instanceof OptionalParameter or
@@ -352,10 +358,8 @@ private module Cached {
     not FlowSummaryImpl::Private::Steps::prohibitsUseUseFlow(nodeFrom, _)
     or
     // Flow into phi node from read
-    exists(Ssa::Definition def, Ssa::PhiNode phi, CfgNodes::ExprCfgNode exprFrom |
-      LocalFlow::localFlowSsaInputFromExpr(exprFrom, def, phi) and
-      phi = nodeTo.(SsaDefinitionNode).getDefinition() and
-      def = phi.getAnInput()
+    exists(SsaImpl::DefinitionExt def, CfgNodes::ExprCfgNode exprFrom |
+      LocalFlow::localFlowSsaInputFromRead(exprFrom, def, nodeTo)
     |
       exprFrom = nodeFrom.asExpr() and
       not FlowSummaryImpl::Private::Steps::prohibitsUseUseFlow(nodeFrom, _)
@@ -400,18 +404,16 @@ private module Cached {
     LocalFlow::localSsaFlowStepUseUse(_, nodeFrom, nodeTo)
     or
     // Flow into phi node from read
-    exists(Ssa::Definition def, Ssa::PhiNode phi, CfgNodes::ExprCfgNode exprFrom |
-      LocalFlow::localFlowSsaInputFromExpr(exprFrom, def, phi) and
-      phi = nodeTo.(SsaDefinitionNode).getDefinition() and
-      def = phi.getAnInput() and
+    exists(SsaImpl::DefinitionExt def, CfgNodes::ExprCfgNode exprFrom |
+      LocalFlow::localFlowSsaInputFromRead(exprFrom, def, nodeTo) and
       exprFrom = [nodeFrom.asExpr(), nodeFrom.(PostUpdateNode).getPreUpdateNode().asExpr()]
     )
   }
 
-  private predicate entrySsaDefinition(SsaDefinitionNode n) {
+  private predicate entrySsaDefinition(SsaDefinitionExtNode n) {
     n = LocalFlow::getParameterDefNode(_)
     or
-    exists(Ssa::Definition def | def = n.getDefinition() |
+    exists(SsaImpl::DefinitionExt def | def = n.getDefinitionExt() |
       def instanceof Ssa::SelfDefinition
       or
       def instanceof Ssa::CapturedEntryDefinition
@@ -520,7 +522,7 @@ import Cached
 
 /** Holds if `n` should be hidden from path explanations. */
 predicate nodeIsHidden(Node n) {
-  exists(Ssa::Definition def | def = n.(SsaDefinitionNode).getDefinition() |
+  exists(SsaImpl::DefinitionExt def | def = n.(SsaDefinitionExtNode).getDefinitionExt() |
     def instanceof Ssa::PhiNode or
     def instanceof Ssa::CapturedEntryDefinition or
     def instanceof Ssa::CapturedCallDefinition
@@ -542,13 +544,13 @@ predicate nodeIsHidden(Node n) {
 }
 
 /** An SSA definition, viewed as a node in a data flow graph. */
-class SsaDefinitionNode extends NodeImpl, TSsaDefinitionNode {
-  Ssa::Definition def;
+class SsaDefinitionExtNode extends NodeImpl, TSsaDefinitionExtNode {
+  SsaImpl::DefinitionExt def;
 
-  SsaDefinitionNode() { this = TSsaDefinitionNode(def) }
+  SsaDefinitionExtNode() { this = TSsaDefinitionExtNode(def) }
 
   /** Gets the underlying SSA definition. */
-  Ssa::Definition getDefinition() { result = def }
+  SsaImpl::DefinitionExt getDefinitionExt() { result = def }
 
   /** Gets the underlying variable. */
   Variable getVariable() { result = def.getSourceVariable() }
@@ -561,7 +563,7 @@ class SsaDefinitionNode extends NodeImpl, TSsaDefinitionNode {
 }
 
 /** An SSA definition for a `self` variable. */
-class SsaSelfDefinitionNode extends LocalSourceNode, SsaDefinitionNode {
+class SsaSelfDefinitionNode extends LocalSourceNode, SsaDefinitionExtNode {
   private SelfVariable self;
 
   SsaSelfDefinitionNode() { self = def.getSourceVariable() }
@@ -1078,11 +1080,11 @@ private module OutNodes {
 import OutNodes
 
 predicate jumpStep(Node pred, Node succ) {
-  SsaImpl::captureFlowIn(_, pred.(SsaDefinitionNode).getDefinition(),
-    succ.(SsaDefinitionNode).getDefinition())
+  SsaImpl::captureFlowIn(_, pred.(SsaDefinitionExtNode).getDefinitionExt(),
+    succ.(SsaDefinitionExtNode).getDefinitionExt())
   or
-  SsaImpl::captureFlowOut(_, pred.(SsaDefinitionNode).getDefinition(),
-    succ.(SsaDefinitionNode).getDefinition())
+  SsaImpl::captureFlowOut(_, pred.(SsaDefinitionExtNode).getDefinitionExt(),
+    succ.(SsaDefinitionExtNode).getDefinitionExt())
   or
   succ.asExpr().getExpr().(ConstantReadAccess).getValue() = pred.asExpr().getExpr()
   or
diff --git a/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowPublic.qll b/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowPublic.qll
index c2123089251..ca79e8fb30b 100644
--- a/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowPublic.qll
+++ b/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowPublic.qll
@@ -373,7 +373,7 @@ private module Cached {
   LocalSourceNode getConstantAccessNode(ConstantAccess access) {
     // Namespaces don't evaluate to the constant being accessed, they return the value of their last statement.
     // Use the definition of 'self' in the namespace as the representative in this case.
-    result.(SsaDefinitionNode).getDefinition().(Ssa::SelfDefinition).getSourceVariable() =
+    result.(SsaDefinitionExtNode).getDefinitionExt().(Ssa::SelfDefinition).getSourceVariable() =
       access.(Namespace).getModuleSelfVariable()
     or
     not access instanceof Namespace and
@@ -819,7 +819,7 @@ class ModuleNode instanceof Module {
    * This only gets `self` at the module level, not inside any (singleton) method.
    */
   LocalSourceNode getModuleLevelSelf() {
-    result.(SsaDefinitionNode).getVariable() = super.getADeclaration().getModuleSelfVariable()
+    result.(SsaDefinitionExtNode).getVariable() = super.getADeclaration().getModuleSelfVariable()
   }
 
   /**
diff --git a/ruby/ql/lib/codeql/ruby/dataflow/internal/SsaImpl.qll b/ruby/ql/lib/codeql/ruby/dataflow/internal/SsaImpl.qll
index 2f3b1e085b0..4ec23705b44 100644
--- a/ruby/ql/lib/codeql/ruby/dataflow/internal/SsaImpl.qll
+++ b/ruby/ql/lib/codeql/ruby/dataflow/internal/SsaImpl.qll
@@ -225,6 +225,15 @@ private predicate adjacentDefRead(
   v = def.getSourceVariable()
 }
 
+pragma[noinline]
+private predicate adjacentDefReadExt(
+  DefinitionExt def, SsaInput::BasicBlock bb1, int i1, SsaInput::BasicBlock bb2, int i2,
+  SsaInput::SourceVariable v
+) {
+  Impl::adjacentDefReadExt(def, _, bb1, i1, bb2, i2) and
+  v = def.getSourceVariable()
+}
+
 private predicate adjacentDefReachesRead(
   Definition def, SsaInput::BasicBlock bb1, int i1, SsaInput::BasicBlock bb2, int i2
 ) {
@@ -241,6 +250,22 @@ private predicate adjacentDefReachesRead(
   )
 }
 
+private predicate adjacentDefReachesReadExt(
+  DefinitionExt def, SsaInput::BasicBlock bb1, int i1, SsaInput::BasicBlock bb2, int i2
+) {
+  exists(SsaInput::SourceVariable v | adjacentDefReadExt(def, bb1, i1, bb2, i2, v) |
+    def.definesAt(v, bb1, i1, _)
+    or
+    SsaInput::variableRead(bb1, i1, v, true)
+  )
+  or
+  exists(SsaInput::BasicBlock bb3, int i3 |
+    adjacentDefReachesReadExt(def, bb1, i1, bb3, i3) and
+    SsaInput::variableRead(bb3, i3, _, false) and
+    Impl::adjacentDefReadExt(def, _, bb3, i3, bb2, i2)
+  )
+}
+
 /** Same as `adjacentDefRead`, but skips uncertain reads. */
 pragma[nomagic]
 private predicate adjacentDefSkipUncertainReads(
@@ -250,22 +275,31 @@ private predicate adjacentDefSkipUncertainReads(
   SsaInput::variableRead(bb2, i2, _, true)
 }
 
-private predicate adjacentDefReachesUncertainRead(
-  Definition def, SsaInput::BasicBlock bb1, int i1, SsaInput::BasicBlock bb2, int i2
+/** Same as `adjacentDefReadExt`, but skips uncertain reads. */
+pragma[nomagic]
+private predicate adjacentDefSkipUncertainReadsExt(
+  DefinitionExt def, SsaInput::BasicBlock bb1, int i1, SsaInput::BasicBlock bb2, int i2
 ) {
-  adjacentDefReachesRead(def, bb1, i1, bb2, i2) and
+  adjacentDefReachesReadExt(def, bb1, i1, bb2, i2) and
+  SsaInput::variableRead(bb2, i2, _, true)
+}
+
+private predicate adjacentDefReachesUncertainReadExt(
+  DefinitionExt def, SsaInput::BasicBlock bb1, int i1, SsaInput::BasicBlock bb2, int i2
+) {
+  adjacentDefReachesReadExt(def, bb1, i1, bb2, i2) and
   SsaInput::variableRead(bb2, i2, _, false)
 }
 
 /** Same as `lastRefRedef`, but skips uncertain reads. */
 pragma[nomagic]
-private predicate lastRefSkipUncertainReads(Definition def, SsaInput::BasicBlock bb, int i) {
+private predicate lastRefSkipUncertainReadsExt(DefinitionExt def, SsaInput::BasicBlock bb, int i) {
   Impl::lastRef(def, bb, i) and
   not SsaInput::variableRead(bb, i, def.getSourceVariable(), false)
   or
   exists(SsaInput::BasicBlock bb0, int i0 |
     Impl::lastRef(def, bb0, i0) and
-    adjacentDefReachesUncertainRead(def, bb, i, bb0, i0)
+    adjacentDefReachesUncertainReadExt(def, bb, i, bb0, i0)
   )
 }
 
@@ -436,6 +470,19 @@ private module Cached {
     )
   }
 
+  /**
+   * Holds if the value defined at SSA definition `def` can reach a read at `read`,
+   * without passing through any other non-pseudo read.
+   */
+  cached
+  predicate firstReadExt(DefinitionExt def, VariableReadAccessCfgNode read) {
+    exists(Cfg::BasicBlock bb1, int i1, Cfg::BasicBlock bb2, int i2 |
+      def.definesAt(_, bb1, i1, _) and
+      adjacentDefSkipUncertainReadsExt(def, bb1, i1, bb2, i2) and
+      read = bb2.getNode(i2)
+    )
+  }
+
   /**
    * Holds if the read at `read2` is a read of the same SSA definition `def`
    * as the read at `read1`, and `read2` can be reached from `read1` without
@@ -453,6 +500,23 @@ private module Cached {
     )
   }
 
+  /**
+   * Holds if the read at `read2` is a read of the same SSA definition `def`
+   * as the read at `read1`, and `read2` can be reached from `read1` without
+   * passing through another non-pseudo read.
+   */
+  cached
+  predicate adjacentReadPairExt(
+    DefinitionExt def, VariableReadAccessCfgNode read1, VariableReadAccessCfgNode read2
+  ) {
+    exists(Cfg::BasicBlock bb1, int i1, Cfg::BasicBlock bb2, int i2 |
+      read1 = bb1.getNode(i1) and
+      variableReadActual(bb1, i1, _) and
+      adjacentDefSkipUncertainReadsExt(def, bb1, i1, bb2, i2) and
+      read2 = bb2.getNode(i2)
+    )
+  }
+
   /**
    * Holds if the read of `def` at `read` may be a last read. That is, `read`
    * can either reach another definition of the underlying source variable or
@@ -461,7 +525,7 @@ private module Cached {
   cached
   predicate lastRead(Definition def, VariableReadAccessCfgNode read) {
     exists(Cfg::BasicBlock bb, int i |
-      lastRefSkipUncertainReads(def, bb, i) and
+      lastRefSkipUncertainReadsExt(def, bb, i) and
       variableReadActual(bb, i, _) and
       read = bb.getNode(i)
     )
@@ -475,13 +539,15 @@ private module Cached {
    * The reference is either a read of `def` or `def` itself.
    */
   cached
-  predicate lastRefBeforeRedef(Definition def, Cfg::BasicBlock bb, int i, Definition next) {
-    Impl::lastRefRedef(def, bb, i, next) and
-    not SsaInput::variableRead(bb, i, def.getSourceVariable(), false)
+  predicate lastRefBeforeRedefExt(DefinitionExt def, Cfg::BasicBlock bb, int i, DefinitionExt next) {
+    exists(LocalVariable v |
+      Impl::lastRefRedefExt(def, v, bb, i, next) and
+      not SsaInput::variableRead(bb, i, v, false)
+    )
     or
     exists(SsaInput::BasicBlock bb0, int i0 |
-      Impl::lastRefRedef(def, bb0, i0, next) and
-      adjacentDefReachesUncertainRead(def, bb, i, bb0, i0)
+      Impl::lastRefRedefExt(def, _, bb0, i0, next) and
+      adjacentDefReachesUncertainReadExt(def, bb, i, bb0, i0)
     )
   }
 
diff --git a/ruby/ql/lib/codeql/ruby/dataflow/internal/TaintTrackingPrivate.qll b/ruby/ql/lib/codeql/ruby/dataflow/internal/TaintTrackingPrivate.qll
index deeab6f1138..c89a629e198 100644
--- a/ruby/ql/lib/codeql/ruby/dataflow/internal/TaintTrackingPrivate.qll
+++ b/ruby/ql/lib/codeql/ruby/dataflow/internal/TaintTrackingPrivate.qll
@@ -4,6 +4,7 @@ private import TaintTrackingPublic
 private import codeql.ruby.CFG
 private import codeql.ruby.DataFlow
 private import FlowSummaryImpl as FlowSummaryImpl
+private import codeql.ruby.dataflow.SSA
 
 /**
  * Holds if `node` should be a sanitizer in all global taint flow configurations
@@ -77,7 +78,7 @@ private module Cached {
     exists(CfgNodes::ExprNodes::CaseExprCfgNode case, CfgNodes::ExprNodes::InClauseCfgNode clause |
       nodeFrom.asExpr() = case.getValue() and
       clause = case.getBranch(_) and
-      nodeTo.(SsaDefinitionNode).getDefinition().getControlFlowNode() =
+      nodeTo.(SsaDefinitionExtNode).getDefinitionExt().(Ssa::Definition).getControlFlowNode() =
         variablesInPattern(clause.getPattern())
     )
     or

From f11f2cb1a0e50de9d14c0f919e4ff5da93c95588 Mon Sep 17 00:00:00 2001
From: Arthur Baars <aibaars@github.com>
Date: Thu, 1 Dec 2022 14:15:16 +0100
Subject: [PATCH 1125/1420] Ruby: Update tests

---
 .../dataflow/local/DataflowStep.expected      | 105 +++++-------------
 .../dataflow/local/TaintStep.expected         | 105 +++++-------------
 2 files changed, 52 insertions(+), 158 deletions(-)

diff --git a/ruby/ql/test/library-tests/dataflow/local/DataflowStep.expected b/ruby/ql/test/library-tests/dataflow/local/DataflowStep.expected
index db3bc7b7296..67e0156ec5d 100644
--- a/ruby/ql/test/library-tests/dataflow/local/DataflowStep.expected
+++ b/ruby/ql/test/library-tests/dataflow/local/DataflowStep.expected
@@ -74,22 +74,19 @@
 | local_dataflow.rb:60:1:90:3 | self in test_case | local_dataflow.rb:60:1:90:3 | self (test_case) |
 | local_dataflow.rb:60:15:60:15 | x | local_dataflow.rb:60:15:60:15 | x |
 | local_dataflow.rb:60:15:60:15 | x | local_dataflow.rb:61:12:61:12 | x |
+| local_dataflow.rb:61:7:68:5 | SSA phi read(x) | local_dataflow.rb:69:12:69:12 | x |
 | local_dataflow.rb:61:7:68:5 | case ... | local_dataflow.rb:61:3:68:5 | ... = ... |
 | local_dataflow.rb:61:12:61:12 | x | local_dataflow.rb:63:15:63:15 | x |
 | local_dataflow.rb:61:12:61:12 | x | local_dataflow.rb:65:6:65:6 | x |
 | local_dataflow.rb:61:12:61:12 | x | local_dataflow.rb:67:5:67:5 | x |
-| local_dataflow.rb:61:12:61:12 | x | local_dataflow.rb:69:12:69:12 | x |
 | local_dataflow.rb:62:10:62:15 | then ... | local_dataflow.rb:61:7:68:5 | case ... |
 | local_dataflow.rb:62:15:62:15 | 3 | local_dataflow.rb:62:10:62:15 | then ... |
 | local_dataflow.rb:63:10:63:15 | then ... | local_dataflow.rb:61:7:68:5 | case ... |
 | local_dataflow.rb:63:15:63:15 | x | local_dataflow.rb:63:10:63:15 | then ... |
-| local_dataflow.rb:63:15:63:15 | x | local_dataflow.rb:69:12:69:12 | x |
 | local_dataflow.rb:64:9:65:6 | then ... | local_dataflow.rb:61:7:68:5 | case ... |
 | local_dataflow.rb:65:6:65:6 | x | local_dataflow.rb:64:9:65:6 | then ... |
-| local_dataflow.rb:65:6:65:6 | x | local_dataflow.rb:69:12:69:12 | x |
 | local_dataflow.rb:66:3:67:5 | else ... | local_dataflow.rb:61:7:68:5 | case ... |
 | local_dataflow.rb:67:5:67:5 | x | local_dataflow.rb:66:3:67:5 | else ... |
-| local_dataflow.rb:67:5:67:5 | x | local_dataflow.rb:69:12:69:12 | x |
 | local_dataflow.rb:69:7:76:5 | case ... | local_dataflow.rb:69:3:76:5 | ... = ... |
 | local_dataflow.rb:69:12:69:12 | x | local_dataflow.rb:71:13:71:13 | x |
 | local_dataflow.rb:69:12:69:12 | x | local_dataflow.rb:73:7:73:7 | x |
@@ -103,6 +100,7 @@
 | local_dataflow.rb:74:3:75:6 | else ... | local_dataflow.rb:69:7:76:5 | case ... |
 | local_dataflow.rb:75:6:75:6 | x | local_dataflow.rb:74:3:75:6 | else ... |
 | local_dataflow.rb:78:3:88:5 | ... = ... | local_dataflow.rb:89:8:89:8 | z |
+| local_dataflow.rb:78:7:88:5 | SSA phi read(self) | local_dataflow.rb:89:3:89:9 | self |
 | local_dataflow.rb:78:7:88:5 | case ... | local_dataflow.rb:78:3:88:5 | ... = ... |
 | local_dataflow.rb:78:7:88:5 | case ... | local_dataflow.rb:78:3:88:5 | ... = ... |
 | local_dataflow.rb:78:12:78:20 | [post] self | local_dataflow.rb:79:20:79:26 | self |
@@ -119,16 +117,12 @@
 | local_dataflow.rb:78:12:78:20 | self | local_dataflow.rb:87:20:87:26 | self |
 | local_dataflow.rb:79:13:79:13 | b | local_dataflow.rb:79:25:79:25 | b |
 | local_dataflow.rb:79:15:79:45 | then ... | local_dataflow.rb:78:7:88:5 | case ... |
-| local_dataflow.rb:79:20:79:26 | [post] self | local_dataflow.rb:89:3:89:9 | self |
 | local_dataflow.rb:79:20:79:26 | call to sink | local_dataflow.rb:79:15:79:45 | then ... |
-| local_dataflow.rb:79:20:79:26 | self | local_dataflow.rb:89:3:89:9 | self |
 | local_dataflow.rb:80:8:80:8 | a | local_dataflow.rb:80:13:80:13 | a |
 | local_dataflow.rb:80:13:80:13 | [post] a | local_dataflow.rb:80:29:80:29 | a |
 | local_dataflow.rb:80:13:80:13 | a | local_dataflow.rb:80:29:80:29 | a |
 | local_dataflow.rb:80:19:80:49 | then ... | local_dataflow.rb:78:7:88:5 | case ... |
-| local_dataflow.rb:80:24:80:30 | [post] self | local_dataflow.rb:89:3:89:9 | self |
 | local_dataflow.rb:80:24:80:30 | call to sink | local_dataflow.rb:80:19:80:49 | then ... |
-| local_dataflow.rb:80:24:80:30 | self | local_dataflow.rb:89:3:89:9 | self |
 | local_dataflow.rb:81:9:81:9 | c | local_dataflow.rb:82:12:82:12 | c |
 | local_dataflow.rb:81:13:81:13 | d | local_dataflow.rb:83:12:83:12 | d |
 | local_dataflow.rb:81:16:81:16 | e | local_dataflow.rb:84:12:84:12 | e |
@@ -138,22 +132,14 @@
 | local_dataflow.rb:82:7:82:13 | self | local_dataflow.rb:83:7:83:13 | self |
 | local_dataflow.rb:83:7:83:13 | [post] self | local_dataflow.rb:84:7:84:13 | self |
 | local_dataflow.rb:83:7:83:13 | self | local_dataflow.rb:84:7:84:13 | self |
-| local_dataflow.rb:84:7:84:13 | [post] self | local_dataflow.rb:89:3:89:9 | self |
-| local_dataflow.rb:84:7:84:13 | self | local_dataflow.rb:89:3:89:9 | self |
 | local_dataflow.rb:85:13:85:13 | f | local_dataflow.rb:85:27:85:27 | f |
 | local_dataflow.rb:85:17:85:47 | then ... | local_dataflow.rb:78:7:88:5 | case ... |
-| local_dataflow.rb:85:22:85:28 | [post] self | local_dataflow.rb:89:3:89:9 | self |
 | local_dataflow.rb:85:22:85:28 | call to sink | local_dataflow.rb:85:17:85:47 | then ... |
-| local_dataflow.rb:85:22:85:28 | self | local_dataflow.rb:89:3:89:9 | self |
 | local_dataflow.rb:86:18:86:18 | g | local_dataflow.rb:86:33:86:33 | g |
 | local_dataflow.rb:86:23:86:53 | then ... | local_dataflow.rb:78:7:88:5 | case ... |
-| local_dataflow.rb:86:28:86:34 | [post] self | local_dataflow.rb:89:3:89:9 | self |
 | local_dataflow.rb:86:28:86:34 | call to sink | local_dataflow.rb:86:23:86:53 | then ... |
-| local_dataflow.rb:86:28:86:34 | self | local_dataflow.rb:89:3:89:9 | self |
 | local_dataflow.rb:87:10:87:10 | x | local_dataflow.rb:87:25:87:25 | x |
 | local_dataflow.rb:87:15:87:48 | then ... | local_dataflow.rb:78:7:88:5 | case ... |
-| local_dataflow.rb:87:20:87:26 | [post] self | local_dataflow.rb:89:3:89:9 | self |
-| local_dataflow.rb:87:20:87:26 | self | local_dataflow.rb:89:3:89:9 | self |
 | local_dataflow.rb:87:25:87:25 | [post] x | local_dataflow.rb:87:29:87:29 | x |
 | local_dataflow.rb:87:25:87:25 | x | local_dataflow.rb:87:29:87:29 | x |
 | local_dataflow.rb:87:29:87:29 | x | local_dataflow.rb:87:15:87:48 | then ... |
@@ -161,88 +147,70 @@
 | local_dataflow.rb:92:1:109:3 | self in and_or | local_dataflow.rb:92:1:109:3 | self (and_or) |
 | local_dataflow.rb:93:3:93:28 | ... = ... | local_dataflow.rb:94:8:94:8 | a |
 | local_dataflow.rb:93:7:93:15 | [post] self | local_dataflow.rb:93:20:93:28 | self |
-| local_dataflow.rb:93:7:93:15 | [post] self | local_dataflow.rb:94:3:94:9 | self |
 | local_dataflow.rb:93:7:93:15 | call to source | local_dataflow.rb:93:7:93:28 | ... \|\| ... |
 | local_dataflow.rb:93:7:93:15 | self | local_dataflow.rb:93:20:93:28 | self |
-| local_dataflow.rb:93:7:93:15 | self | local_dataflow.rb:94:3:94:9 | self |
 | local_dataflow.rb:93:7:93:28 | ... \|\| ... | local_dataflow.rb:93:3:93:28 | ... = ... |
 | local_dataflow.rb:93:7:93:28 | ... \|\| ... | local_dataflow.rb:93:3:93:28 | ... = ... |
-| local_dataflow.rb:93:20:93:28 | [post] self | local_dataflow.rb:94:3:94:9 | self |
+| local_dataflow.rb:93:7:93:28 | SSA phi read(self) | local_dataflow.rb:94:3:94:9 | self |
 | local_dataflow.rb:93:20:93:28 | call to source | local_dataflow.rb:93:7:93:28 | ... \|\| ... |
-| local_dataflow.rb:93:20:93:28 | self | local_dataflow.rb:94:3:94:9 | self |
 | local_dataflow.rb:94:3:94:9 | [post] self | local_dataflow.rb:95:8:95:16 | self |
 | local_dataflow.rb:94:3:94:9 | self | local_dataflow.rb:95:8:95:16 | self |
 | local_dataflow.rb:95:3:95:30 | ... = ... | local_dataflow.rb:96:8:96:8 | b |
 | local_dataflow.rb:95:7:95:30 | ( ... ) | local_dataflow.rb:95:3:95:30 | ... = ... |
 | local_dataflow.rb:95:7:95:30 | ( ... ) | local_dataflow.rb:95:3:95:30 | ... = ... |
 | local_dataflow.rb:95:8:95:16 | [post] self | local_dataflow.rb:95:21:95:29 | self |
-| local_dataflow.rb:95:8:95:16 | [post] self | local_dataflow.rb:96:3:96:9 | self |
 | local_dataflow.rb:95:8:95:16 | call to source | local_dataflow.rb:95:8:95:29 | ... or ... |
 | local_dataflow.rb:95:8:95:16 | self | local_dataflow.rb:95:21:95:29 | self |
-| local_dataflow.rb:95:8:95:16 | self | local_dataflow.rb:96:3:96:9 | self |
 | local_dataflow.rb:95:8:95:29 | ... or ... | local_dataflow.rb:95:7:95:30 | ( ... ) |
-| local_dataflow.rb:95:21:95:29 | [post] self | local_dataflow.rb:96:3:96:9 | self |
+| local_dataflow.rb:95:8:95:29 | SSA phi read(self) | local_dataflow.rb:96:3:96:9 | self |
 | local_dataflow.rb:95:21:95:29 | call to source | local_dataflow.rb:95:8:95:29 | ... or ... |
-| local_dataflow.rb:95:21:95:29 | self | local_dataflow.rb:96:3:96:9 | self |
 | local_dataflow.rb:96:3:96:9 | [post] self | local_dataflow.rb:98:7:98:15 | self |
 | local_dataflow.rb:96:3:96:9 | self | local_dataflow.rb:98:7:98:15 | self |
 | local_dataflow.rb:98:3:98:28 | ... = ... | local_dataflow.rb:99:8:99:8 | a |
 | local_dataflow.rb:98:7:98:15 | [post] self | local_dataflow.rb:98:20:98:28 | self |
-| local_dataflow.rb:98:7:98:15 | [post] self | local_dataflow.rb:99:3:99:9 | self |
 | local_dataflow.rb:98:7:98:15 | call to source | local_dataflow.rb:98:7:98:28 | ... && ... |
 | local_dataflow.rb:98:7:98:15 | self | local_dataflow.rb:98:20:98:28 | self |
-| local_dataflow.rb:98:7:98:15 | self | local_dataflow.rb:99:3:99:9 | self |
 | local_dataflow.rb:98:7:98:28 | ... && ... | local_dataflow.rb:98:3:98:28 | ... = ... |
 | local_dataflow.rb:98:7:98:28 | ... && ... | local_dataflow.rb:98:3:98:28 | ... = ... |
-| local_dataflow.rb:98:20:98:28 | [post] self | local_dataflow.rb:99:3:99:9 | self |
+| local_dataflow.rb:98:7:98:28 | SSA phi read(self) | local_dataflow.rb:99:3:99:9 | self |
 | local_dataflow.rb:98:20:98:28 | call to source | local_dataflow.rb:98:7:98:28 | ... && ... |
-| local_dataflow.rb:98:20:98:28 | self | local_dataflow.rb:99:3:99:9 | self |
 | local_dataflow.rb:99:3:99:9 | [post] self | local_dataflow.rb:100:8:100:16 | self |
 | local_dataflow.rb:99:3:99:9 | self | local_dataflow.rb:100:8:100:16 | self |
 | local_dataflow.rb:100:3:100:31 | ... = ... | local_dataflow.rb:101:8:101:8 | b |
 | local_dataflow.rb:100:7:100:31 | ( ... ) | local_dataflow.rb:100:3:100:31 | ... = ... |
 | local_dataflow.rb:100:7:100:31 | ( ... ) | local_dataflow.rb:100:3:100:31 | ... = ... |
 | local_dataflow.rb:100:8:100:16 | [post] self | local_dataflow.rb:100:22:100:30 | self |
-| local_dataflow.rb:100:8:100:16 | [post] self | local_dataflow.rb:101:3:101:9 | self |
 | local_dataflow.rb:100:8:100:16 | call to source | local_dataflow.rb:100:8:100:30 | ... and ... |
 | local_dataflow.rb:100:8:100:16 | self | local_dataflow.rb:100:22:100:30 | self |
-| local_dataflow.rb:100:8:100:16 | self | local_dataflow.rb:101:3:101:9 | self |
 | local_dataflow.rb:100:8:100:30 | ... and ... | local_dataflow.rb:100:7:100:31 | ( ... ) |
-| local_dataflow.rb:100:22:100:30 | [post] self | local_dataflow.rb:101:3:101:9 | self |
+| local_dataflow.rb:100:8:100:30 | SSA phi read(self) | local_dataflow.rb:101:3:101:9 | self |
 | local_dataflow.rb:100:22:100:30 | call to source | local_dataflow.rb:100:8:100:30 | ... and ... |
-| local_dataflow.rb:100:22:100:30 | self | local_dataflow.rb:101:3:101:9 | self |
 | local_dataflow.rb:101:3:101:9 | [post] self | local_dataflow.rb:103:7:103:15 | self |
 | local_dataflow.rb:101:3:101:9 | self | local_dataflow.rb:103:7:103:15 | self |
 | local_dataflow.rb:103:3:103:15 | ... = ... | local_dataflow.rb:104:3:104:3 | a |
 | local_dataflow.rb:103:7:103:15 | [post] self | local_dataflow.rb:104:9:104:17 | self |
-| local_dataflow.rb:103:7:103:15 | [post] self | local_dataflow.rb:105:3:105:9 | self |
 | local_dataflow.rb:103:7:103:15 | call to source | local_dataflow.rb:103:3:103:15 | ... = ... |
 | local_dataflow.rb:103:7:103:15 | call to source | local_dataflow.rb:103:3:103:15 | ... = ... |
 | local_dataflow.rb:103:7:103:15 | self | local_dataflow.rb:104:9:104:17 | self |
-| local_dataflow.rb:103:7:103:15 | self | local_dataflow.rb:105:3:105:9 | self |
 | local_dataflow.rb:104:3:104:3 | a | local_dataflow.rb:104:5:104:7 | ... \|\| ... |
 | local_dataflow.rb:104:3:104:17 | ... = ... | local_dataflow.rb:105:8:105:8 | a |
 | local_dataflow.rb:104:5:104:7 | ... \|\| ... | local_dataflow.rb:104:3:104:17 | ... = ... |
 | local_dataflow.rb:104:5:104:7 | ... \|\| ... | local_dataflow.rb:104:3:104:17 | ... = ... |
-| local_dataflow.rb:104:9:104:17 | [post] self | local_dataflow.rb:105:3:105:9 | self |
+| local_dataflow.rb:104:5:104:7 | SSA phi read(self) | local_dataflow.rb:105:3:105:9 | self |
 | local_dataflow.rb:104:9:104:17 | call to source | local_dataflow.rb:104:5:104:7 | ... \|\| ... |
-| local_dataflow.rb:104:9:104:17 | self | local_dataflow.rb:105:3:105:9 | self |
 | local_dataflow.rb:105:3:105:9 | [post] self | local_dataflow.rb:106:7:106:15 | self |
 | local_dataflow.rb:105:3:105:9 | self | local_dataflow.rb:106:7:106:15 | self |
 | local_dataflow.rb:106:3:106:15 | ... = ... | local_dataflow.rb:107:3:107:3 | b |
 | local_dataflow.rb:106:7:106:15 | [post] self | local_dataflow.rb:107:9:107:17 | self |
-| local_dataflow.rb:106:7:106:15 | [post] self | local_dataflow.rb:108:3:108:9 | self |
 | local_dataflow.rb:106:7:106:15 | call to source | local_dataflow.rb:106:3:106:15 | ... = ... |
 | local_dataflow.rb:106:7:106:15 | call to source | local_dataflow.rb:106:3:106:15 | ... = ... |
 | local_dataflow.rb:106:7:106:15 | self | local_dataflow.rb:107:9:107:17 | self |
-| local_dataflow.rb:106:7:106:15 | self | local_dataflow.rb:108:3:108:9 | self |
 | local_dataflow.rb:107:3:107:3 | b | local_dataflow.rb:107:5:107:7 | ... && ... |
 | local_dataflow.rb:107:3:107:17 | ... = ... | local_dataflow.rb:108:8:108:8 | b |
 | local_dataflow.rb:107:5:107:7 | ... && ... | local_dataflow.rb:107:3:107:17 | ... = ... |
 | local_dataflow.rb:107:5:107:7 | ... && ... | local_dataflow.rb:107:3:107:17 | ... = ... |
-| local_dataflow.rb:107:9:107:17 | [post] self | local_dataflow.rb:108:3:108:9 | self |
+| local_dataflow.rb:107:5:107:7 | SSA phi read(self) | local_dataflow.rb:108:3:108:9 | self |
 | local_dataflow.rb:107:9:107:17 | call to source | local_dataflow.rb:107:5:107:7 | ... && ... |
-| local_dataflow.rb:107:9:107:17 | self | local_dataflow.rb:108:3:108:9 | self |
 | local_dataflow.rb:111:1:114:3 | self (object_dup) | local_dataflow.rb:112:3:112:21 | self |
 | local_dataflow.rb:111:1:114:3 | self in object_dup | local_dataflow.rb:111:1:114:3 | self (object_dup) |
 | local_dataflow.rb:112:3:112:21 | [post] self | local_dataflow.rb:112:8:112:16 | self |
@@ -290,98 +258,77 @@
 | local_dataflow.rb:132:6:132:11 | self | local_dataflow.rb:133:8:133:13 | self |
 | local_dataflow.rb:132:10:132:10 | x | local_dataflow.rb:133:12:133:12 | x |
 | local_dataflow.rb:132:12:148:10 | then ... | local_dataflow.rb:132:3:149:5 | if ... |
+| local_dataflow.rb:133:5:139:7 | SSA phi read(self) | local_dataflow.rb:141:9:141:14 | self |
+| local_dataflow.rb:133:5:139:7 | SSA phi read(x) | local_dataflow.rb:141:13:141:13 | x |
 | local_dataflow.rb:133:8:133:13 | [post] self | local_dataflow.rb:133:18:133:23 | self |
-| local_dataflow.rb:133:8:133:13 | [post] self | local_dataflow.rb:134:7:134:12 | self |
 | local_dataflow.rb:133:8:133:13 | call to use | local_dataflow.rb:133:8:133:23 | [false] ... \|\| ... |
 | local_dataflow.rb:133:8:133:13 | call to use | local_dataflow.rb:133:8:133:23 | [true] ... \|\| ... |
 | local_dataflow.rb:133:8:133:13 | self | local_dataflow.rb:133:18:133:23 | self |
-| local_dataflow.rb:133:8:133:13 | self | local_dataflow.rb:134:7:134:12 | self |
+| local_dataflow.rb:133:8:133:23 | SSA phi read(self) | local_dataflow.rb:134:7:134:12 | self |
+| local_dataflow.rb:133:8:133:23 | SSA phi read(x) | local_dataflow.rb:134:11:134:11 | x |
 | local_dataflow.rb:133:12:133:12 | x | local_dataflow.rb:133:22:133:22 | x |
-| local_dataflow.rb:133:12:133:12 | x | local_dataflow.rb:134:11:134:11 | x |
-| local_dataflow.rb:133:18:133:23 | [post] self | local_dataflow.rb:134:7:134:12 | self |
 | local_dataflow.rb:133:18:133:23 | [post] self | local_dataflow.rb:136:7:136:12 | self |
 | local_dataflow.rb:133:18:133:23 | call to use | local_dataflow.rb:133:8:133:23 | [false] ... \|\| ... |
 | local_dataflow.rb:133:18:133:23 | call to use | local_dataflow.rb:133:8:133:23 | [true] ... \|\| ... |
-| local_dataflow.rb:133:18:133:23 | self | local_dataflow.rb:134:7:134:12 | self |
 | local_dataflow.rb:133:18:133:23 | self | local_dataflow.rb:136:7:136:12 | self |
-| local_dataflow.rb:133:22:133:22 | x | local_dataflow.rb:134:11:134:11 | x |
 | local_dataflow.rb:133:22:133:22 | x | local_dataflow.rb:136:11:136:11 | x |
 | local_dataflow.rb:133:24:134:12 | then ... | local_dataflow.rb:133:5:139:7 | if ... |
-| local_dataflow.rb:134:7:134:12 | [post] self | local_dataflow.rb:141:9:141:14 | self |
 | local_dataflow.rb:134:7:134:12 | call to use | local_dataflow.rb:133:24:134:12 | then ... |
-| local_dataflow.rb:134:7:134:12 | self | local_dataflow.rb:141:9:141:14 | self |
-| local_dataflow.rb:134:11:134:11 | x | local_dataflow.rb:141:13:141:13 | x |
 | local_dataflow.rb:135:5:138:9 | else ... | local_dataflow.rb:133:5:139:7 | if ... |
 | local_dataflow.rb:136:7:136:12 | [post] self | local_dataflow.rb:137:10:137:15 | self |
 | local_dataflow.rb:136:7:136:12 | self | local_dataflow.rb:137:10:137:15 | self |
 | local_dataflow.rb:136:11:136:11 | x | local_dataflow.rb:137:14:137:14 | x |
+| local_dataflow.rb:137:7:138:9 | SSA phi read(self) | local_dataflow.rb:133:5:139:7 | SSA phi read(self) |
+| local_dataflow.rb:137:7:138:9 | SSA phi read(x) | local_dataflow.rb:133:5:139:7 | SSA phi read(x) |
 | local_dataflow.rb:137:7:138:9 | if ... | local_dataflow.rb:135:5:138:9 | else ... |
 | local_dataflow.rb:137:10:137:15 | [post] self | local_dataflow.rb:137:21:137:26 | self |
-| local_dataflow.rb:137:10:137:15 | [post] self | local_dataflow.rb:141:9:141:14 | self |
 | local_dataflow.rb:137:10:137:15 | call to use | local_dataflow.rb:137:10:137:26 | [false] ... && ... |
 | local_dataflow.rb:137:10:137:15 | call to use | local_dataflow.rb:137:10:137:26 | [true] ... && ... |
 | local_dataflow.rb:137:10:137:15 | self | local_dataflow.rb:137:21:137:26 | self |
-| local_dataflow.rb:137:10:137:15 | self | local_dataflow.rb:141:9:141:14 | self |
+| local_dataflow.rb:137:10:137:26 | SSA phi read(self) | local_dataflow.rb:137:7:138:9 | SSA phi read(self) |
+| local_dataflow.rb:137:10:137:26 | SSA phi read(x) | local_dataflow.rb:137:7:138:9 | SSA phi read(x) |
 | local_dataflow.rb:137:14:137:14 | x | local_dataflow.rb:137:25:137:25 | x |
-| local_dataflow.rb:137:14:137:14 | x | local_dataflow.rb:141:13:141:13 | x |
 | local_dataflow.rb:137:20:137:26 | [false] ! ... | local_dataflow.rb:137:10:137:26 | [false] ... && ... |
 | local_dataflow.rb:137:20:137:26 | [true] ! ... | local_dataflow.rb:137:10:137:26 | [true] ... && ... |
-| local_dataflow.rb:137:21:137:26 | [post] self | local_dataflow.rb:141:9:141:14 | self |
-| local_dataflow.rb:137:21:137:26 | self | local_dataflow.rb:141:9:141:14 | self |
-| local_dataflow.rb:137:25:137:25 | x | local_dataflow.rb:141:13:141:13 | x |
+| local_dataflow.rb:141:5:145:7 | SSA phi read(self) | local_dataflow.rb:147:5:147:10 | self |
+| local_dataflow.rb:141:5:145:7 | SSA phi read(x) | local_dataflow.rb:147:9:147:9 | x |
 | local_dataflow.rb:141:8:141:14 | [false] ! ... | local_dataflow.rb:141:8:141:37 | [false] ... \|\| ... |
 | local_dataflow.rb:141:8:141:14 | [false] ! ... | local_dataflow.rb:141:8:141:37 | [true] ... \|\| ... |
 | local_dataflow.rb:141:8:141:14 | [true] ! ... | local_dataflow.rb:141:8:141:37 | [true] ... \|\| ... |
+| local_dataflow.rb:141:8:141:37 | SSA phi read(self) | local_dataflow.rb:141:5:145:7 | SSA phi read(self) |
+| local_dataflow.rb:141:8:141:37 | SSA phi read(x) | local_dataflow.rb:141:5:145:7 | SSA phi read(x) |
 | local_dataflow.rb:141:9:141:14 | [post] self | local_dataflow.rb:141:20:141:25 | self |
-| local_dataflow.rb:141:9:141:14 | [post] self | local_dataflow.rb:147:5:147:10 | self |
 | local_dataflow.rb:141:9:141:14 | self | local_dataflow.rb:141:20:141:25 | self |
-| local_dataflow.rb:141:9:141:14 | self | local_dataflow.rb:147:5:147:10 | self |
 | local_dataflow.rb:141:13:141:13 | x | local_dataflow.rb:141:24:141:24 | x |
-| local_dataflow.rb:141:13:141:13 | x | local_dataflow.rb:147:9:147:9 | x |
 | local_dataflow.rb:141:19:141:37 | [false] ( ... ) | local_dataflow.rb:141:8:141:37 | [false] ... \|\| ... |
 | local_dataflow.rb:141:19:141:37 | [true] ( ... ) | local_dataflow.rb:141:8:141:37 | [true] ... \|\| ... |
 | local_dataflow.rb:141:20:141:25 | [post] self | local_dataflow.rb:141:31:141:36 | self |
-| local_dataflow.rb:141:20:141:25 | [post] self | local_dataflow.rb:143:11:143:16 | self |
 | local_dataflow.rb:141:20:141:25 | call to use | local_dataflow.rb:141:20:141:36 | [false] ... && ... |
 | local_dataflow.rb:141:20:141:25 | call to use | local_dataflow.rb:141:20:141:36 | [true] ... && ... |
 | local_dataflow.rb:141:20:141:25 | self | local_dataflow.rb:141:31:141:36 | self |
-| local_dataflow.rb:141:20:141:25 | self | local_dataflow.rb:143:11:143:16 | self |
+| local_dataflow.rb:141:20:141:36 | SSA phi read(self) | local_dataflow.rb:143:11:143:16 | self |
+| local_dataflow.rb:141:20:141:36 | SSA phi read(x) | local_dataflow.rb:143:15:143:15 | x |
 | local_dataflow.rb:141:20:141:36 | [false] ... && ... | local_dataflow.rb:141:19:141:37 | [false] ( ... ) |
 | local_dataflow.rb:141:20:141:36 | [true] ... && ... | local_dataflow.rb:141:19:141:37 | [true] ( ... ) |
 | local_dataflow.rb:141:24:141:24 | x | local_dataflow.rb:141:35:141:35 | x |
-| local_dataflow.rb:141:24:141:24 | x | local_dataflow.rb:143:15:143:15 | x |
 | local_dataflow.rb:141:30:141:36 | [false] ! ... | local_dataflow.rb:141:20:141:36 | [false] ... && ... |
 | local_dataflow.rb:141:30:141:36 | [true] ! ... | local_dataflow.rb:141:20:141:36 | [true] ... && ... |
-| local_dataflow.rb:141:31:141:36 | [post] self | local_dataflow.rb:143:11:143:16 | self |
-| local_dataflow.rb:141:31:141:36 | [post] self | local_dataflow.rb:147:5:147:10 | self |
-| local_dataflow.rb:141:31:141:36 | self | local_dataflow.rb:143:11:143:16 | self |
-| local_dataflow.rb:141:31:141:36 | self | local_dataflow.rb:147:5:147:10 | self |
-| local_dataflow.rb:141:35:141:35 | x | local_dataflow.rb:143:15:143:15 | x |
-| local_dataflow.rb:141:35:141:35 | x | local_dataflow.rb:147:9:147:9 | x |
 | local_dataflow.rb:141:38:142:9 | then ... | local_dataflow.rb:141:5:145:7 | if ... |
 | local_dataflow.rb:142:7:142:9 | nil | local_dataflow.rb:141:38:142:9 | then ... |
+| local_dataflow.rb:143:5:144:16 | SSA phi read(self) | local_dataflow.rb:141:5:145:7 | SSA phi read(self) |
+| local_dataflow.rb:143:5:144:16 | SSA phi read(x) | local_dataflow.rb:141:5:145:7 | SSA phi read(x) |
 | local_dataflow.rb:143:5:144:16 | elsif ... | local_dataflow.rb:141:5:145:7 | if ... |
 | local_dataflow.rb:143:11:143:16 | [post] self | local_dataflow.rb:143:21:143:26 | self |
-| local_dataflow.rb:143:11:143:16 | [post] self | local_dataflow.rb:144:11:144:16 | self |
 | local_dataflow.rb:143:11:143:16 | call to use | local_dataflow.rb:143:11:143:26 | [false] ... \|\| ... |
 | local_dataflow.rb:143:11:143:16 | call to use | local_dataflow.rb:143:11:143:26 | [true] ... \|\| ... |
 | local_dataflow.rb:143:11:143:16 | self | local_dataflow.rb:143:21:143:26 | self |
-| local_dataflow.rb:143:11:143:16 | self | local_dataflow.rb:144:11:144:16 | self |
+| local_dataflow.rb:143:11:143:26 | SSA phi read(self) | local_dataflow.rb:144:11:144:16 | self |
+| local_dataflow.rb:143:11:143:26 | SSA phi read(x) | local_dataflow.rb:144:15:144:15 | x |
 | local_dataflow.rb:143:15:143:15 | x | local_dataflow.rb:143:25:143:25 | x |
-| local_dataflow.rb:143:15:143:15 | x | local_dataflow.rb:144:15:144:15 | x |
-| local_dataflow.rb:143:21:143:26 | [post] self | local_dataflow.rb:144:11:144:16 | self |
-| local_dataflow.rb:143:21:143:26 | [post] self | local_dataflow.rb:147:5:147:10 | self |
 | local_dataflow.rb:143:21:143:26 | call to use | local_dataflow.rb:143:11:143:26 | [false] ... \|\| ... |
 | local_dataflow.rb:143:21:143:26 | call to use | local_dataflow.rb:143:11:143:26 | [true] ... \|\| ... |
-| local_dataflow.rb:143:21:143:26 | self | local_dataflow.rb:144:11:144:16 | self |
-| local_dataflow.rb:143:21:143:26 | self | local_dataflow.rb:147:5:147:10 | self |
-| local_dataflow.rb:143:25:143:25 | x | local_dataflow.rb:144:15:144:15 | x |
-| local_dataflow.rb:143:25:143:25 | x | local_dataflow.rb:147:9:147:9 | x |
 | local_dataflow.rb:143:27:144:16 | then ... | local_dataflow.rb:143:5:144:16 | elsif ... |
-| local_dataflow.rb:144:11:144:16 | [post] self | local_dataflow.rb:147:5:147:10 | self |
 | local_dataflow.rb:144:11:144:16 | call to use | local_dataflow.rb:143:27:144:16 | then ... |
-| local_dataflow.rb:144:11:144:16 | self | local_dataflow.rb:147:5:147:10 | self |
-| local_dataflow.rb:144:15:144:15 | x | local_dataflow.rb:147:9:147:9 | x |
 | local_dataflow.rb:147:5:147:10 | [post] self | local_dataflow.rb:148:5:148:10 | self |
 | local_dataflow.rb:147:5:147:10 | self | local_dataflow.rb:148:5:148:10 | self |
 | local_dataflow.rb:147:9:147:9 | x | local_dataflow.rb:148:9:148:9 | x |
diff --git a/ruby/ql/test/library-tests/dataflow/local/TaintStep.expected b/ruby/ql/test/library-tests/dataflow/local/TaintStep.expected
index 34947d0005d..7d55d82800b 100644
--- a/ruby/ql/test/library-tests/dataflow/local/TaintStep.expected
+++ b/ruby/ql/test/library-tests/dataflow/local/TaintStep.expected
@@ -116,22 +116,19 @@
 | local_dataflow.rb:60:1:90:3 | self in test_case | local_dataflow.rb:60:1:90:3 | self (test_case) |
 | local_dataflow.rb:60:15:60:15 | x | local_dataflow.rb:60:15:60:15 | x |
 | local_dataflow.rb:60:15:60:15 | x | local_dataflow.rb:61:12:61:12 | x |
+| local_dataflow.rb:61:7:68:5 | SSA phi read(x) | local_dataflow.rb:69:12:69:12 | x |
 | local_dataflow.rb:61:7:68:5 | case ... | local_dataflow.rb:61:3:68:5 | ... = ... |
 | local_dataflow.rb:61:12:61:12 | x | local_dataflow.rb:63:15:63:15 | x |
 | local_dataflow.rb:61:12:61:12 | x | local_dataflow.rb:65:6:65:6 | x |
 | local_dataflow.rb:61:12:61:12 | x | local_dataflow.rb:67:5:67:5 | x |
-| local_dataflow.rb:61:12:61:12 | x | local_dataflow.rb:69:12:69:12 | x |
 | local_dataflow.rb:62:10:62:15 | then ... | local_dataflow.rb:61:7:68:5 | case ... |
 | local_dataflow.rb:62:15:62:15 | 3 | local_dataflow.rb:62:10:62:15 | then ... |
 | local_dataflow.rb:63:10:63:15 | then ... | local_dataflow.rb:61:7:68:5 | case ... |
 | local_dataflow.rb:63:15:63:15 | x | local_dataflow.rb:63:10:63:15 | then ... |
-| local_dataflow.rb:63:15:63:15 | x | local_dataflow.rb:69:12:69:12 | x |
 | local_dataflow.rb:64:9:65:6 | then ... | local_dataflow.rb:61:7:68:5 | case ... |
 | local_dataflow.rb:65:6:65:6 | x | local_dataflow.rb:64:9:65:6 | then ... |
-| local_dataflow.rb:65:6:65:6 | x | local_dataflow.rb:69:12:69:12 | x |
 | local_dataflow.rb:66:3:67:5 | else ... | local_dataflow.rb:61:7:68:5 | case ... |
 | local_dataflow.rb:67:5:67:5 | x | local_dataflow.rb:66:3:67:5 | else ... |
-| local_dataflow.rb:67:5:67:5 | x | local_dataflow.rb:69:12:69:12 | x |
 | local_dataflow.rb:69:7:76:5 | case ... | local_dataflow.rb:69:3:76:5 | ... = ... |
 | local_dataflow.rb:69:12:69:12 | x | local_dataflow.rb:71:13:71:13 | x |
 | local_dataflow.rb:69:12:69:12 | x | local_dataflow.rb:73:7:73:7 | x |
@@ -145,6 +142,7 @@
 | local_dataflow.rb:74:3:75:6 | else ... | local_dataflow.rb:69:7:76:5 | case ... |
 | local_dataflow.rb:75:6:75:6 | x | local_dataflow.rb:74:3:75:6 | else ... |
 | local_dataflow.rb:78:3:88:5 | ... = ... | local_dataflow.rb:89:8:89:8 | z |
+| local_dataflow.rb:78:7:88:5 | SSA phi read(self) | local_dataflow.rb:89:3:89:9 | self |
 | local_dataflow.rb:78:7:88:5 | case ... | local_dataflow.rb:78:3:88:5 | ... = ... |
 | local_dataflow.rb:78:7:88:5 | case ... | local_dataflow.rb:78:3:88:5 | ... = ... |
 | local_dataflow.rb:78:12:78:20 | [post] self | local_dataflow.rb:79:20:79:26 | self |
@@ -169,18 +167,14 @@
 | local_dataflow.rb:78:12:78:20 | self | local_dataflow.rb:87:20:87:26 | self |
 | local_dataflow.rb:79:13:79:13 | b | local_dataflow.rb:79:25:79:25 | b |
 | local_dataflow.rb:79:15:79:45 | then ... | local_dataflow.rb:78:7:88:5 | case ... |
-| local_dataflow.rb:79:20:79:26 | [post] self | local_dataflow.rb:89:3:89:9 | self |
 | local_dataflow.rb:79:20:79:26 | call to sink | local_dataflow.rb:79:15:79:45 | then ... |
-| local_dataflow.rb:79:20:79:26 | self | local_dataflow.rb:89:3:89:9 | self |
 | local_dataflow.rb:80:8:80:8 | a | local_dataflow.rb:80:13:80:13 | a |
 | local_dataflow.rb:80:13:80:13 | [post] a | local_dataflow.rb:80:29:80:29 | a |
 | local_dataflow.rb:80:13:80:13 | a | local_dataflow.rb:80:13:80:17 | ... > ... |
 | local_dataflow.rb:80:13:80:13 | a | local_dataflow.rb:80:29:80:29 | a |
 | local_dataflow.rb:80:17:80:17 | 0 | local_dataflow.rb:80:13:80:17 | ... > ... |
 | local_dataflow.rb:80:19:80:49 | then ... | local_dataflow.rb:78:7:88:5 | case ... |
-| local_dataflow.rb:80:24:80:30 | [post] self | local_dataflow.rb:89:3:89:9 | self |
 | local_dataflow.rb:80:24:80:30 | call to sink | local_dataflow.rb:80:19:80:49 | then ... |
-| local_dataflow.rb:80:24:80:30 | self | local_dataflow.rb:89:3:89:9 | self |
 | local_dataflow.rb:81:9:81:9 | c | local_dataflow.rb:82:12:82:12 | c |
 | local_dataflow.rb:81:13:81:13 | d | local_dataflow.rb:83:12:83:12 | d |
 | local_dataflow.rb:81:16:81:16 | e | local_dataflow.rb:84:12:84:12 | e |
@@ -191,22 +185,14 @@
 | local_dataflow.rb:82:7:82:13 | self | local_dataflow.rb:83:7:83:13 | self |
 | local_dataflow.rb:83:7:83:13 | [post] self | local_dataflow.rb:84:7:84:13 | self |
 | local_dataflow.rb:83:7:83:13 | self | local_dataflow.rb:84:7:84:13 | self |
-| local_dataflow.rb:84:7:84:13 | [post] self | local_dataflow.rb:89:3:89:9 | self |
-| local_dataflow.rb:84:7:84:13 | self | local_dataflow.rb:89:3:89:9 | self |
 | local_dataflow.rb:85:13:85:13 | f | local_dataflow.rb:85:27:85:27 | f |
 | local_dataflow.rb:85:17:85:47 | then ... | local_dataflow.rb:78:7:88:5 | case ... |
-| local_dataflow.rb:85:22:85:28 | [post] self | local_dataflow.rb:89:3:89:9 | self |
 | local_dataflow.rb:85:22:85:28 | call to sink | local_dataflow.rb:85:17:85:47 | then ... |
-| local_dataflow.rb:85:22:85:28 | self | local_dataflow.rb:89:3:89:9 | self |
 | local_dataflow.rb:86:18:86:18 | g | local_dataflow.rb:86:33:86:33 | g |
 | local_dataflow.rb:86:23:86:53 | then ... | local_dataflow.rb:78:7:88:5 | case ... |
-| local_dataflow.rb:86:28:86:34 | [post] self | local_dataflow.rb:89:3:89:9 | self |
 | local_dataflow.rb:86:28:86:34 | call to sink | local_dataflow.rb:86:23:86:53 | then ... |
-| local_dataflow.rb:86:28:86:34 | self | local_dataflow.rb:89:3:89:9 | self |
 | local_dataflow.rb:87:10:87:10 | x | local_dataflow.rb:87:25:87:25 | x |
 | local_dataflow.rb:87:15:87:48 | then ... | local_dataflow.rb:78:7:88:5 | case ... |
-| local_dataflow.rb:87:20:87:26 | [post] self | local_dataflow.rb:89:3:89:9 | self |
-| local_dataflow.rb:87:20:87:26 | self | local_dataflow.rb:89:3:89:9 | self |
 | local_dataflow.rb:87:25:87:25 | [post] x | local_dataflow.rb:87:29:87:29 | x |
 | local_dataflow.rb:87:25:87:25 | x | local_dataflow.rb:87:29:87:29 | x |
 | local_dataflow.rb:87:29:87:29 | x | local_dataflow.rb:87:15:87:48 | then ... |
@@ -214,88 +200,70 @@
 | local_dataflow.rb:92:1:109:3 | self in and_or | local_dataflow.rb:92:1:109:3 | self (and_or) |
 | local_dataflow.rb:93:3:93:28 | ... = ... | local_dataflow.rb:94:8:94:8 | a |
 | local_dataflow.rb:93:7:93:15 | [post] self | local_dataflow.rb:93:20:93:28 | self |
-| local_dataflow.rb:93:7:93:15 | [post] self | local_dataflow.rb:94:3:94:9 | self |
 | local_dataflow.rb:93:7:93:15 | call to source | local_dataflow.rb:93:7:93:28 | ... \|\| ... |
 | local_dataflow.rb:93:7:93:15 | self | local_dataflow.rb:93:20:93:28 | self |
-| local_dataflow.rb:93:7:93:15 | self | local_dataflow.rb:94:3:94:9 | self |
 | local_dataflow.rb:93:7:93:28 | ... \|\| ... | local_dataflow.rb:93:3:93:28 | ... = ... |
 | local_dataflow.rb:93:7:93:28 | ... \|\| ... | local_dataflow.rb:93:3:93:28 | ... = ... |
-| local_dataflow.rb:93:20:93:28 | [post] self | local_dataflow.rb:94:3:94:9 | self |
+| local_dataflow.rb:93:7:93:28 | SSA phi read(self) | local_dataflow.rb:94:3:94:9 | self |
 | local_dataflow.rb:93:20:93:28 | call to source | local_dataflow.rb:93:7:93:28 | ... \|\| ... |
-| local_dataflow.rb:93:20:93:28 | self | local_dataflow.rb:94:3:94:9 | self |
 | local_dataflow.rb:94:3:94:9 | [post] self | local_dataflow.rb:95:8:95:16 | self |
 | local_dataflow.rb:94:3:94:9 | self | local_dataflow.rb:95:8:95:16 | self |
 | local_dataflow.rb:95:3:95:30 | ... = ... | local_dataflow.rb:96:8:96:8 | b |
 | local_dataflow.rb:95:7:95:30 | ( ... ) | local_dataflow.rb:95:3:95:30 | ... = ... |
 | local_dataflow.rb:95:7:95:30 | ( ... ) | local_dataflow.rb:95:3:95:30 | ... = ... |
 | local_dataflow.rb:95:8:95:16 | [post] self | local_dataflow.rb:95:21:95:29 | self |
-| local_dataflow.rb:95:8:95:16 | [post] self | local_dataflow.rb:96:3:96:9 | self |
 | local_dataflow.rb:95:8:95:16 | call to source | local_dataflow.rb:95:8:95:29 | ... or ... |
 | local_dataflow.rb:95:8:95:16 | self | local_dataflow.rb:95:21:95:29 | self |
-| local_dataflow.rb:95:8:95:16 | self | local_dataflow.rb:96:3:96:9 | self |
 | local_dataflow.rb:95:8:95:29 | ... or ... | local_dataflow.rb:95:7:95:30 | ( ... ) |
-| local_dataflow.rb:95:21:95:29 | [post] self | local_dataflow.rb:96:3:96:9 | self |
+| local_dataflow.rb:95:8:95:29 | SSA phi read(self) | local_dataflow.rb:96:3:96:9 | self |
 | local_dataflow.rb:95:21:95:29 | call to source | local_dataflow.rb:95:8:95:29 | ... or ... |
-| local_dataflow.rb:95:21:95:29 | self | local_dataflow.rb:96:3:96:9 | self |
 | local_dataflow.rb:96:3:96:9 | [post] self | local_dataflow.rb:98:7:98:15 | self |
 | local_dataflow.rb:96:3:96:9 | self | local_dataflow.rb:98:7:98:15 | self |
 | local_dataflow.rb:98:3:98:28 | ... = ... | local_dataflow.rb:99:8:99:8 | a |
 | local_dataflow.rb:98:7:98:15 | [post] self | local_dataflow.rb:98:20:98:28 | self |
-| local_dataflow.rb:98:7:98:15 | [post] self | local_dataflow.rb:99:3:99:9 | self |
 | local_dataflow.rb:98:7:98:15 | call to source | local_dataflow.rb:98:7:98:28 | ... && ... |
 | local_dataflow.rb:98:7:98:15 | self | local_dataflow.rb:98:20:98:28 | self |
-| local_dataflow.rb:98:7:98:15 | self | local_dataflow.rb:99:3:99:9 | self |
 | local_dataflow.rb:98:7:98:28 | ... && ... | local_dataflow.rb:98:3:98:28 | ... = ... |
 | local_dataflow.rb:98:7:98:28 | ... && ... | local_dataflow.rb:98:3:98:28 | ... = ... |
-| local_dataflow.rb:98:20:98:28 | [post] self | local_dataflow.rb:99:3:99:9 | self |
+| local_dataflow.rb:98:7:98:28 | SSA phi read(self) | local_dataflow.rb:99:3:99:9 | self |
 | local_dataflow.rb:98:20:98:28 | call to source | local_dataflow.rb:98:7:98:28 | ... && ... |
-| local_dataflow.rb:98:20:98:28 | self | local_dataflow.rb:99:3:99:9 | self |
 | local_dataflow.rb:99:3:99:9 | [post] self | local_dataflow.rb:100:8:100:16 | self |
 | local_dataflow.rb:99:3:99:9 | self | local_dataflow.rb:100:8:100:16 | self |
 | local_dataflow.rb:100:3:100:31 | ... = ... | local_dataflow.rb:101:8:101:8 | b |
 | local_dataflow.rb:100:7:100:31 | ( ... ) | local_dataflow.rb:100:3:100:31 | ... = ... |
 | local_dataflow.rb:100:7:100:31 | ( ... ) | local_dataflow.rb:100:3:100:31 | ... = ... |
 | local_dataflow.rb:100:8:100:16 | [post] self | local_dataflow.rb:100:22:100:30 | self |
-| local_dataflow.rb:100:8:100:16 | [post] self | local_dataflow.rb:101:3:101:9 | self |
 | local_dataflow.rb:100:8:100:16 | call to source | local_dataflow.rb:100:8:100:30 | ... and ... |
 | local_dataflow.rb:100:8:100:16 | self | local_dataflow.rb:100:22:100:30 | self |
-| local_dataflow.rb:100:8:100:16 | self | local_dataflow.rb:101:3:101:9 | self |
 | local_dataflow.rb:100:8:100:30 | ... and ... | local_dataflow.rb:100:7:100:31 | ( ... ) |
-| local_dataflow.rb:100:22:100:30 | [post] self | local_dataflow.rb:101:3:101:9 | self |
+| local_dataflow.rb:100:8:100:30 | SSA phi read(self) | local_dataflow.rb:101:3:101:9 | self |
 | local_dataflow.rb:100:22:100:30 | call to source | local_dataflow.rb:100:8:100:30 | ... and ... |
-| local_dataflow.rb:100:22:100:30 | self | local_dataflow.rb:101:3:101:9 | self |
 | local_dataflow.rb:101:3:101:9 | [post] self | local_dataflow.rb:103:7:103:15 | self |
 | local_dataflow.rb:101:3:101:9 | self | local_dataflow.rb:103:7:103:15 | self |
 | local_dataflow.rb:103:3:103:15 | ... = ... | local_dataflow.rb:104:3:104:3 | a |
 | local_dataflow.rb:103:7:103:15 | [post] self | local_dataflow.rb:104:9:104:17 | self |
-| local_dataflow.rb:103:7:103:15 | [post] self | local_dataflow.rb:105:3:105:9 | self |
 | local_dataflow.rb:103:7:103:15 | call to source | local_dataflow.rb:103:3:103:15 | ... = ... |
 | local_dataflow.rb:103:7:103:15 | call to source | local_dataflow.rb:103:3:103:15 | ... = ... |
 | local_dataflow.rb:103:7:103:15 | self | local_dataflow.rb:104:9:104:17 | self |
-| local_dataflow.rb:103:7:103:15 | self | local_dataflow.rb:105:3:105:9 | self |
 | local_dataflow.rb:104:3:104:3 | a | local_dataflow.rb:104:5:104:7 | ... \|\| ... |
 | local_dataflow.rb:104:3:104:17 | ... = ... | local_dataflow.rb:105:8:105:8 | a |
 | local_dataflow.rb:104:5:104:7 | ... \|\| ... | local_dataflow.rb:104:3:104:17 | ... = ... |
 | local_dataflow.rb:104:5:104:7 | ... \|\| ... | local_dataflow.rb:104:3:104:17 | ... = ... |
-| local_dataflow.rb:104:9:104:17 | [post] self | local_dataflow.rb:105:3:105:9 | self |
+| local_dataflow.rb:104:5:104:7 | SSA phi read(self) | local_dataflow.rb:105:3:105:9 | self |
 | local_dataflow.rb:104:9:104:17 | call to source | local_dataflow.rb:104:5:104:7 | ... \|\| ... |
-| local_dataflow.rb:104:9:104:17 | self | local_dataflow.rb:105:3:105:9 | self |
 | local_dataflow.rb:105:3:105:9 | [post] self | local_dataflow.rb:106:7:106:15 | self |
 | local_dataflow.rb:105:3:105:9 | self | local_dataflow.rb:106:7:106:15 | self |
 | local_dataflow.rb:106:3:106:15 | ... = ... | local_dataflow.rb:107:3:107:3 | b |
 | local_dataflow.rb:106:7:106:15 | [post] self | local_dataflow.rb:107:9:107:17 | self |
-| local_dataflow.rb:106:7:106:15 | [post] self | local_dataflow.rb:108:3:108:9 | self |
 | local_dataflow.rb:106:7:106:15 | call to source | local_dataflow.rb:106:3:106:15 | ... = ... |
 | local_dataflow.rb:106:7:106:15 | call to source | local_dataflow.rb:106:3:106:15 | ... = ... |
 | local_dataflow.rb:106:7:106:15 | self | local_dataflow.rb:107:9:107:17 | self |
-| local_dataflow.rb:106:7:106:15 | self | local_dataflow.rb:108:3:108:9 | self |
 | local_dataflow.rb:107:3:107:3 | b | local_dataflow.rb:107:5:107:7 | ... && ... |
 | local_dataflow.rb:107:3:107:17 | ... = ... | local_dataflow.rb:108:8:108:8 | b |
 | local_dataflow.rb:107:5:107:7 | ... && ... | local_dataflow.rb:107:3:107:17 | ... = ... |
 | local_dataflow.rb:107:5:107:7 | ... && ... | local_dataflow.rb:107:3:107:17 | ... = ... |
-| local_dataflow.rb:107:9:107:17 | [post] self | local_dataflow.rb:108:3:108:9 | self |
+| local_dataflow.rb:107:5:107:7 | SSA phi read(self) | local_dataflow.rb:108:3:108:9 | self |
 | local_dataflow.rb:107:9:107:17 | call to source | local_dataflow.rb:107:5:107:7 | ... && ... |
-| local_dataflow.rb:107:9:107:17 | self | local_dataflow.rb:108:3:108:9 | self |
 | local_dataflow.rb:111:1:114:3 | self (object_dup) | local_dataflow.rb:112:3:112:21 | self |
 | local_dataflow.rb:111:1:114:3 | self in object_dup | local_dataflow.rb:111:1:114:3 | self (object_dup) |
 | local_dataflow.rb:112:3:112:21 | [post] self | local_dataflow.rb:112:8:112:16 | self |
@@ -343,104 +311,83 @@
 | local_dataflow.rb:132:6:132:11 | self | local_dataflow.rb:133:8:133:13 | self |
 | local_dataflow.rb:132:10:132:10 | x | local_dataflow.rb:133:12:133:12 | x |
 | local_dataflow.rb:132:12:148:10 | then ... | local_dataflow.rb:132:3:149:5 | if ... |
+| local_dataflow.rb:133:5:139:7 | SSA phi read(self) | local_dataflow.rb:141:9:141:14 | self |
+| local_dataflow.rb:133:5:139:7 | SSA phi read(x) | local_dataflow.rb:141:13:141:13 | x |
 | local_dataflow.rb:133:8:133:13 | [post] self | local_dataflow.rb:133:18:133:23 | self |
-| local_dataflow.rb:133:8:133:13 | [post] self | local_dataflow.rb:134:7:134:12 | self |
 | local_dataflow.rb:133:8:133:13 | call to use | local_dataflow.rb:133:8:133:23 | [false] ... \|\| ... |
 | local_dataflow.rb:133:8:133:13 | call to use | local_dataflow.rb:133:8:133:23 | [true] ... \|\| ... |
 | local_dataflow.rb:133:8:133:13 | self | local_dataflow.rb:133:18:133:23 | self |
-| local_dataflow.rb:133:8:133:13 | self | local_dataflow.rb:134:7:134:12 | self |
+| local_dataflow.rb:133:8:133:23 | SSA phi read(self) | local_dataflow.rb:134:7:134:12 | self |
+| local_dataflow.rb:133:8:133:23 | SSA phi read(x) | local_dataflow.rb:134:11:134:11 | x |
 | local_dataflow.rb:133:12:133:12 | x | local_dataflow.rb:133:22:133:22 | x |
-| local_dataflow.rb:133:12:133:12 | x | local_dataflow.rb:134:11:134:11 | x |
-| local_dataflow.rb:133:18:133:23 | [post] self | local_dataflow.rb:134:7:134:12 | self |
 | local_dataflow.rb:133:18:133:23 | [post] self | local_dataflow.rb:136:7:136:12 | self |
 | local_dataflow.rb:133:18:133:23 | call to use | local_dataflow.rb:133:8:133:23 | [false] ... \|\| ... |
 | local_dataflow.rb:133:18:133:23 | call to use | local_dataflow.rb:133:8:133:23 | [true] ... \|\| ... |
-| local_dataflow.rb:133:18:133:23 | self | local_dataflow.rb:134:7:134:12 | self |
 | local_dataflow.rb:133:18:133:23 | self | local_dataflow.rb:136:7:136:12 | self |
-| local_dataflow.rb:133:22:133:22 | x | local_dataflow.rb:134:11:134:11 | x |
 | local_dataflow.rb:133:22:133:22 | x | local_dataflow.rb:136:11:136:11 | x |
 | local_dataflow.rb:133:24:134:12 | then ... | local_dataflow.rb:133:5:139:7 | if ... |
-| local_dataflow.rb:134:7:134:12 | [post] self | local_dataflow.rb:141:9:141:14 | self |
 | local_dataflow.rb:134:7:134:12 | call to use | local_dataflow.rb:133:24:134:12 | then ... |
-| local_dataflow.rb:134:7:134:12 | self | local_dataflow.rb:141:9:141:14 | self |
-| local_dataflow.rb:134:11:134:11 | x | local_dataflow.rb:141:13:141:13 | x |
 | local_dataflow.rb:135:5:138:9 | else ... | local_dataflow.rb:133:5:139:7 | if ... |
 | local_dataflow.rb:136:7:136:12 | [post] self | local_dataflow.rb:137:10:137:15 | self |
 | local_dataflow.rb:136:7:136:12 | self | local_dataflow.rb:137:10:137:15 | self |
 | local_dataflow.rb:136:11:136:11 | x | local_dataflow.rb:137:14:137:14 | x |
+| local_dataflow.rb:137:7:138:9 | SSA phi read(self) | local_dataflow.rb:133:5:139:7 | SSA phi read(self) |
+| local_dataflow.rb:137:7:138:9 | SSA phi read(x) | local_dataflow.rb:133:5:139:7 | SSA phi read(x) |
 | local_dataflow.rb:137:7:138:9 | if ... | local_dataflow.rb:135:5:138:9 | else ... |
 | local_dataflow.rb:137:10:137:15 | [post] self | local_dataflow.rb:137:21:137:26 | self |
-| local_dataflow.rb:137:10:137:15 | [post] self | local_dataflow.rb:141:9:141:14 | self |
 | local_dataflow.rb:137:10:137:15 | call to use | local_dataflow.rb:137:10:137:26 | [false] ... && ... |
 | local_dataflow.rb:137:10:137:15 | call to use | local_dataflow.rb:137:10:137:26 | [true] ... && ... |
 | local_dataflow.rb:137:10:137:15 | self | local_dataflow.rb:137:21:137:26 | self |
-| local_dataflow.rb:137:10:137:15 | self | local_dataflow.rb:141:9:141:14 | self |
+| local_dataflow.rb:137:10:137:26 | SSA phi read(self) | local_dataflow.rb:137:7:138:9 | SSA phi read(self) |
+| local_dataflow.rb:137:10:137:26 | SSA phi read(x) | local_dataflow.rb:137:7:138:9 | SSA phi read(x) |
 | local_dataflow.rb:137:14:137:14 | x | local_dataflow.rb:137:25:137:25 | x |
-| local_dataflow.rb:137:14:137:14 | x | local_dataflow.rb:141:13:141:13 | x |
 | local_dataflow.rb:137:20:137:26 | [false] ! ... | local_dataflow.rb:137:10:137:26 | [false] ... && ... |
 | local_dataflow.rb:137:20:137:26 | [true] ! ... | local_dataflow.rb:137:10:137:26 | [true] ... && ... |
-| local_dataflow.rb:137:21:137:26 | [post] self | local_dataflow.rb:141:9:141:14 | self |
 | local_dataflow.rb:137:21:137:26 | call to use | local_dataflow.rb:137:20:137:26 | [false] ! ... |
 | local_dataflow.rb:137:21:137:26 | call to use | local_dataflow.rb:137:20:137:26 | [true] ! ... |
-| local_dataflow.rb:137:21:137:26 | self | local_dataflow.rb:141:9:141:14 | self |
-| local_dataflow.rb:137:25:137:25 | x | local_dataflow.rb:141:13:141:13 | x |
+| local_dataflow.rb:141:5:145:7 | SSA phi read(self) | local_dataflow.rb:147:5:147:10 | self |
+| local_dataflow.rb:141:5:145:7 | SSA phi read(x) | local_dataflow.rb:147:9:147:9 | x |
 | local_dataflow.rb:141:8:141:14 | [false] ! ... | local_dataflow.rb:141:8:141:37 | [false] ... \|\| ... |
 | local_dataflow.rb:141:8:141:14 | [false] ! ... | local_dataflow.rb:141:8:141:37 | [true] ... \|\| ... |
 | local_dataflow.rb:141:8:141:14 | [true] ! ... | local_dataflow.rb:141:8:141:37 | [true] ... \|\| ... |
+| local_dataflow.rb:141:8:141:37 | SSA phi read(self) | local_dataflow.rb:141:5:145:7 | SSA phi read(self) |
+| local_dataflow.rb:141:8:141:37 | SSA phi read(x) | local_dataflow.rb:141:5:145:7 | SSA phi read(x) |
 | local_dataflow.rb:141:9:141:14 | [post] self | local_dataflow.rb:141:20:141:25 | self |
-| local_dataflow.rb:141:9:141:14 | [post] self | local_dataflow.rb:147:5:147:10 | self |
 | local_dataflow.rb:141:9:141:14 | call to use | local_dataflow.rb:141:8:141:14 | [false] ! ... |
 | local_dataflow.rb:141:9:141:14 | call to use | local_dataflow.rb:141:8:141:14 | [true] ! ... |
 | local_dataflow.rb:141:9:141:14 | self | local_dataflow.rb:141:20:141:25 | self |
-| local_dataflow.rb:141:9:141:14 | self | local_dataflow.rb:147:5:147:10 | self |
 | local_dataflow.rb:141:13:141:13 | x | local_dataflow.rb:141:24:141:24 | x |
-| local_dataflow.rb:141:13:141:13 | x | local_dataflow.rb:147:9:147:9 | x |
 | local_dataflow.rb:141:19:141:37 | [false] ( ... ) | local_dataflow.rb:141:8:141:37 | [false] ... \|\| ... |
 | local_dataflow.rb:141:19:141:37 | [true] ( ... ) | local_dataflow.rb:141:8:141:37 | [true] ... \|\| ... |
 | local_dataflow.rb:141:20:141:25 | [post] self | local_dataflow.rb:141:31:141:36 | self |
-| local_dataflow.rb:141:20:141:25 | [post] self | local_dataflow.rb:143:11:143:16 | self |
 | local_dataflow.rb:141:20:141:25 | call to use | local_dataflow.rb:141:20:141:36 | [false] ... && ... |
 | local_dataflow.rb:141:20:141:25 | call to use | local_dataflow.rb:141:20:141:36 | [true] ... && ... |
 | local_dataflow.rb:141:20:141:25 | self | local_dataflow.rb:141:31:141:36 | self |
-| local_dataflow.rb:141:20:141:25 | self | local_dataflow.rb:143:11:143:16 | self |
+| local_dataflow.rb:141:20:141:36 | SSA phi read(self) | local_dataflow.rb:143:11:143:16 | self |
+| local_dataflow.rb:141:20:141:36 | SSA phi read(x) | local_dataflow.rb:143:15:143:15 | x |
 | local_dataflow.rb:141:20:141:36 | [false] ... && ... | local_dataflow.rb:141:19:141:37 | [false] ( ... ) |
 | local_dataflow.rb:141:20:141:36 | [true] ... && ... | local_dataflow.rb:141:19:141:37 | [true] ( ... ) |
 | local_dataflow.rb:141:24:141:24 | x | local_dataflow.rb:141:35:141:35 | x |
-| local_dataflow.rb:141:24:141:24 | x | local_dataflow.rb:143:15:143:15 | x |
 | local_dataflow.rb:141:30:141:36 | [false] ! ... | local_dataflow.rb:141:20:141:36 | [false] ... && ... |
 | local_dataflow.rb:141:30:141:36 | [true] ! ... | local_dataflow.rb:141:20:141:36 | [true] ... && ... |
-| local_dataflow.rb:141:31:141:36 | [post] self | local_dataflow.rb:143:11:143:16 | self |
-| local_dataflow.rb:141:31:141:36 | [post] self | local_dataflow.rb:147:5:147:10 | self |
 | local_dataflow.rb:141:31:141:36 | call to use | local_dataflow.rb:141:30:141:36 | [false] ! ... |
 | local_dataflow.rb:141:31:141:36 | call to use | local_dataflow.rb:141:30:141:36 | [true] ! ... |
-| local_dataflow.rb:141:31:141:36 | self | local_dataflow.rb:143:11:143:16 | self |
-| local_dataflow.rb:141:31:141:36 | self | local_dataflow.rb:147:5:147:10 | self |
-| local_dataflow.rb:141:35:141:35 | x | local_dataflow.rb:143:15:143:15 | x |
-| local_dataflow.rb:141:35:141:35 | x | local_dataflow.rb:147:9:147:9 | x |
 | local_dataflow.rb:141:38:142:9 | then ... | local_dataflow.rb:141:5:145:7 | if ... |
 | local_dataflow.rb:142:7:142:9 | nil | local_dataflow.rb:141:38:142:9 | then ... |
+| local_dataflow.rb:143:5:144:16 | SSA phi read(self) | local_dataflow.rb:141:5:145:7 | SSA phi read(self) |
+| local_dataflow.rb:143:5:144:16 | SSA phi read(x) | local_dataflow.rb:141:5:145:7 | SSA phi read(x) |
 | local_dataflow.rb:143:5:144:16 | elsif ... | local_dataflow.rb:141:5:145:7 | if ... |
 | local_dataflow.rb:143:11:143:16 | [post] self | local_dataflow.rb:143:21:143:26 | self |
-| local_dataflow.rb:143:11:143:16 | [post] self | local_dataflow.rb:144:11:144:16 | self |
 | local_dataflow.rb:143:11:143:16 | call to use | local_dataflow.rb:143:11:143:26 | [false] ... \|\| ... |
 | local_dataflow.rb:143:11:143:16 | call to use | local_dataflow.rb:143:11:143:26 | [true] ... \|\| ... |
 | local_dataflow.rb:143:11:143:16 | self | local_dataflow.rb:143:21:143:26 | self |
-| local_dataflow.rb:143:11:143:16 | self | local_dataflow.rb:144:11:144:16 | self |
+| local_dataflow.rb:143:11:143:26 | SSA phi read(self) | local_dataflow.rb:144:11:144:16 | self |
+| local_dataflow.rb:143:11:143:26 | SSA phi read(x) | local_dataflow.rb:144:15:144:15 | x |
 | local_dataflow.rb:143:15:143:15 | x | local_dataflow.rb:143:25:143:25 | x |
-| local_dataflow.rb:143:15:143:15 | x | local_dataflow.rb:144:15:144:15 | x |
-| local_dataflow.rb:143:21:143:26 | [post] self | local_dataflow.rb:144:11:144:16 | self |
-| local_dataflow.rb:143:21:143:26 | [post] self | local_dataflow.rb:147:5:147:10 | self |
 | local_dataflow.rb:143:21:143:26 | call to use | local_dataflow.rb:143:11:143:26 | [false] ... \|\| ... |
 | local_dataflow.rb:143:21:143:26 | call to use | local_dataflow.rb:143:11:143:26 | [true] ... \|\| ... |
-| local_dataflow.rb:143:21:143:26 | self | local_dataflow.rb:144:11:144:16 | self |
-| local_dataflow.rb:143:21:143:26 | self | local_dataflow.rb:147:5:147:10 | self |
-| local_dataflow.rb:143:25:143:25 | x | local_dataflow.rb:144:15:144:15 | x |
-| local_dataflow.rb:143:25:143:25 | x | local_dataflow.rb:147:9:147:9 | x |
 | local_dataflow.rb:143:27:144:16 | then ... | local_dataflow.rb:143:5:144:16 | elsif ... |
-| local_dataflow.rb:144:11:144:16 | [post] self | local_dataflow.rb:147:5:147:10 | self |
 | local_dataflow.rb:144:11:144:16 | call to use | local_dataflow.rb:143:27:144:16 | then ... |
-| local_dataflow.rb:144:11:144:16 | self | local_dataflow.rb:147:5:147:10 | self |
-| local_dataflow.rb:144:15:144:15 | x | local_dataflow.rb:147:9:147:9 | x |
 | local_dataflow.rb:147:5:147:10 | [post] self | local_dataflow.rb:148:5:148:10 | self |
 | local_dataflow.rb:147:5:147:10 | self | local_dataflow.rb:148:5:148:10 | self |
 | local_dataflow.rb:147:9:147:9 | x | local_dataflow.rb:148:9:148:9 | x |

From d5f4340cf5d23af191c33a12a42594db599776eb Mon Sep 17 00:00:00 2001
From: Arthur Baars <aibaars@github.com>
Date: Mon, 5 Dec 2022 17:22:12 +0100
Subject: [PATCH 1126/1420] Ruby: address comment

---
 ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowPrivate.qll | 1 +
 1 file changed, 1 insertion(+)

diff --git a/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowPrivate.qll b/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowPrivate.qll
index b16a045739e..b3b79903625 100644
--- a/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowPrivate.qll
+++ b/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowPrivate.qll
@@ -524,6 +524,7 @@ import Cached
 predicate nodeIsHidden(Node n) {
   exists(SsaImpl::DefinitionExt def | def = n.(SsaDefinitionExtNode).getDefinitionExt() |
     def instanceof Ssa::PhiNode or
+    def instanceof SsaImpl::PhiReadNode or
     def instanceof Ssa::CapturedEntryDefinition or
     def instanceof Ssa::CapturedCallDefinition
   )

From d862972d5e2c4d88fbc474115d9d4a2925f76ed4 Mon Sep 17 00:00:00 2001
From: Arthur Baars <aibaars@github.com>
Date: Mon, 5 Dec 2022 17:52:26 +0100
Subject: [PATCH 1127/1420] Ruby: Add use-use stress test

---
 .../dataflow/local/DataflowStep.expected      | 2399 ++++++++++++++
 .../dataflow/local/Nodes.expected             |  801 +++++
 .../dataflow/local/TaintStep.expected         | 2799 +++++++++++++++++
 .../dataflow/local/UseUseExplosion.rb         |   26 +
 4 files changed, 6025 insertions(+)
 create mode 100644 ruby/ql/test/library-tests/dataflow/local/UseUseExplosion.rb

diff --git a/ruby/ql/test/library-tests/dataflow/local/DataflowStep.expected b/ruby/ql/test/library-tests/dataflow/local/DataflowStep.expected
index 67e0156ec5d..63381fd0624 100644
--- a/ruby/ql/test/library-tests/dataflow/local/DataflowStep.expected
+++ b/ruby/ql/test/library-tests/dataflow/local/DataflowStep.expected
@@ -1,3 +1,2402 @@
+| UseUseExplosion.rb:18:5:22:7 | self (m) | UseUseExplosion.rb:20:13:20:17 | self |
+| UseUseExplosion.rb:18:5:22:7 | self in m | UseUseExplosion.rb:18:5:22:7 | self (m) |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:2081:20:2116 | SSA phi read(x) |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:2111:20:2111 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:2127:20:2127 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:2143:20:2143 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:2159:20:2159 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:2175:20:2175 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:2191:20:2191 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:2207:20:2207 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:2223:20:2223 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:2239:20:2239 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:2255:20:2255 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:2271:20:2271 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:2287:20:2287 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:2303:20:2303 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:2319:20:2319 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:2335:20:2335 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:2351:20:2351 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:2367:20:2367 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:2383:20:2383 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:2399:20:2399 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:2415:20:2415 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:2431:20:2431 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:2447:20:2447 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:2463:20:2463 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:2479:20:2479 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:2495:20:2495 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:2511:20:2511 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:2527:20:2527 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:2543:20:2543 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:2559:20:2559 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:2575:20:2575 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:2591:20:2591 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:2607:20:2607 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:2623:20:2623 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:2639:20:2639 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:2655:20:2655 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:2671:20:2671 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:2687:20:2687 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:2703:20:2703 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:2719:20:2719 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:2735:20:2735 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:2751:20:2751 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:2767:20:2767 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:2783:20:2783 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:2799:20:2799 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:2815:20:2815 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:2831:20:2831 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:2847:20:2847 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:2863:20:2863 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:2879:20:2879 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:2895:20:2895 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:2911:20:2911 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:2927:20:2927 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:2943:20:2943 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:2959:20:2959 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:2975:20:2975 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:2991:20:2991 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:3007:20:3007 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:3023:20:3023 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:3039:20:3039 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:3055:20:3055 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:3071:20:3071 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:3087:20:3087 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:3103:20:3103 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:3119:20:3119 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:3135:20:3135 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:3151:20:3151 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:3167:20:3167 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:3183:20:3183 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:3199:20:3199 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:3215:20:3215 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:3231:20:3231 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:3247:20:3247 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:3263:20:3263 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:3279:20:3279 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:3295:20:3295 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:3311:20:3311 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:3327:20:3327 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:3343:20:3343 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:3359:20:3359 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:3375:20:3375 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:3391:20:3391 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:3407:20:3407 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:3423:20:3423 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:3439:20:3439 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:3455:20:3455 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:3471:20:3471 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:3487:20:3487 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:3503:20:3503 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:3519:20:3519 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:3535:20:3535 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:3551:20:3551 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:3567:20:3567 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:3583:20:3583 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:3599:20:3599 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:3615:20:3615 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:3631:20:3631 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:3647:20:3647 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:3663:20:3663 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:3679:20:3679 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:3695:20:3695 | x |
+| UseUseExplosion.rb:19:13:19:13 | 0 | UseUseExplosion.rb:19:9:19:13 | ... = ... |
+| UseUseExplosion.rb:19:13:19:13 | 0 | UseUseExplosion.rb:19:9:19:13 | ... = ... |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(self) | UseUseExplosion.rb:21:13:21:17 | self |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:2111:21:2111 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:2127:21:2127 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:2143:21:2143 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:2159:21:2159 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:2175:21:2175 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:2191:21:2191 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:2207:21:2207 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:2223:21:2223 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:2239:21:2239 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:2255:21:2255 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:2271:21:2271 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:2287:21:2287 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:2303:21:2303 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:2319:21:2319 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:2335:21:2335 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:2351:21:2351 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:2367:21:2367 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:2383:21:2383 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:2399:21:2399 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:2415:21:2415 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:2431:21:2431 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:2447:21:2447 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:2463:21:2463 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:2479:21:2479 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:2495:21:2495 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:2511:21:2511 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:2527:21:2527 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:2543:21:2543 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:2559:21:2559 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:2575:21:2575 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:2591:21:2591 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:2607:21:2607 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:2623:21:2623 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:2639:21:2639 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:2655:21:2655 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:2671:21:2671 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:2687:21:2687 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:2703:21:2703 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:2719:21:2719 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:2735:21:2735 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:2751:21:2751 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:2767:21:2767 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:2783:21:2783 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:2799:21:2799 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:2815:21:2815 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:2831:21:2831 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:2847:21:2847 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:2863:21:2863 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:2879:21:2879 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:2895:21:2895 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:2911:21:2911 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:2927:21:2927 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:2943:21:2943 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:2959:21:2959 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:2975:21:2975 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:2991:21:2991 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:3007:21:3007 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:3023:21:3023 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:3039:21:3039 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:3055:21:3055 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:3071:21:3071 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:3087:21:3087 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:3103:21:3103 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:3119:21:3119 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:3135:21:3135 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:3151:21:3151 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:3167:21:3167 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:3183:21:3183 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:3199:21:3199 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:3215:21:3215 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:3231:21:3231 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:3247:21:3247 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:3263:21:3263 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:3279:21:3279 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:3295:21:3295 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:3311:21:3311 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:3327:21:3327 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:3343:21:3343 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:3359:21:3359 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:3375:21:3375 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:3391:21:3391 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:3407:21:3407 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:3423:21:3423 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:3439:21:3439 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:3455:21:3455 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:3471:21:3471 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:3487:21:3487 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:3503:21:3503 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:3519:21:3519 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:3535:21:3535 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:3551:21:3551 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:3567:21:3567 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:3583:21:3583 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:3599:21:3599 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:3615:21:3615 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:3631:21:3631 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:3647:21:3647 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:3663:21:3663 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:3679:21:3679 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:3695:21:3695 | x |
+| UseUseExplosion.rb:20:13:20:17 | [post] self | UseUseExplosion.rb:20:35:20:39 | self |
+| UseUseExplosion.rb:20:13:20:17 | [post] self | UseUseExplosion.rb:20:3691:20:3696 | self |
+| UseUseExplosion.rb:20:13:20:17 | self | UseUseExplosion.rb:20:35:20:39 | self |
+| UseUseExplosion.rb:20:13:20:17 | self | UseUseExplosion.rb:20:3691:20:3696 | self |
+| UseUseExplosion.rb:20:13:20:23 | ... > ... | UseUseExplosion.rb:20:12:20:24 | [false] ( ... ) |
+| UseUseExplosion.rb:20:13:20:23 | ... > ... | UseUseExplosion.rb:20:12:20:24 | [true] ( ... ) |
+| UseUseExplosion.rb:20:26:20:3684 | then ... | UseUseExplosion.rb:20:9:20:3700 | if ... |
+| UseUseExplosion.rb:20:31:20:3684 | SSA phi read(self) | UseUseExplosion.rb:20:9:20:3700 | SSA phi read(self) |
+| UseUseExplosion.rb:20:31:20:3684 | SSA phi read(x) | UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) |
+| UseUseExplosion.rb:20:31:20:3684 | if ... | UseUseExplosion.rb:20:26:20:3684 | then ... |
+| UseUseExplosion.rb:20:35:20:39 | [post] self | UseUseExplosion.rb:20:56:20:60 | self |
+| UseUseExplosion.rb:20:35:20:39 | [post] self | UseUseExplosion.rb:20:3675:20:3680 | self |
+| UseUseExplosion.rb:20:35:20:39 | self | UseUseExplosion.rb:20:56:20:60 | self |
+| UseUseExplosion.rb:20:35:20:39 | self | UseUseExplosion.rb:20:3675:20:3680 | self |
+| UseUseExplosion.rb:20:35:20:44 | ... > ... | UseUseExplosion.rb:20:34:20:45 | [false] ( ... ) |
+| UseUseExplosion.rb:20:35:20:44 | ... > ... | UseUseExplosion.rb:20:34:20:45 | [true] ( ... ) |
+| UseUseExplosion.rb:20:47:20:3668 | then ... | UseUseExplosion.rb:20:31:20:3684 | if ... |
+| UseUseExplosion.rb:20:52:20:3668 | SSA phi read(self) | UseUseExplosion.rb:20:31:20:3684 | SSA phi read(self) |
+| UseUseExplosion.rb:20:52:20:3668 | SSA phi read(x) | UseUseExplosion.rb:20:31:20:3684 | SSA phi read(x) |
+| UseUseExplosion.rb:20:52:20:3668 | if ... | UseUseExplosion.rb:20:47:20:3668 | then ... |
+| UseUseExplosion.rb:20:56:20:60 | [post] self | UseUseExplosion.rb:20:77:20:81 | self |
+| UseUseExplosion.rb:20:56:20:60 | [post] self | UseUseExplosion.rb:20:3659:20:3664 | self |
+| UseUseExplosion.rb:20:56:20:60 | self | UseUseExplosion.rb:20:77:20:81 | self |
+| UseUseExplosion.rb:20:56:20:60 | self | UseUseExplosion.rb:20:3659:20:3664 | self |
+| UseUseExplosion.rb:20:56:20:65 | ... > ... | UseUseExplosion.rb:20:55:20:66 | [false] ( ... ) |
+| UseUseExplosion.rb:20:56:20:65 | ... > ... | UseUseExplosion.rb:20:55:20:66 | [true] ( ... ) |
+| UseUseExplosion.rb:20:68:20:3652 | then ... | UseUseExplosion.rb:20:52:20:3668 | if ... |
+| UseUseExplosion.rb:20:73:20:3652 | SSA phi read(self) | UseUseExplosion.rb:20:52:20:3668 | SSA phi read(self) |
+| UseUseExplosion.rb:20:73:20:3652 | SSA phi read(x) | UseUseExplosion.rb:20:52:20:3668 | SSA phi read(x) |
+| UseUseExplosion.rb:20:73:20:3652 | if ... | UseUseExplosion.rb:20:68:20:3652 | then ... |
+| UseUseExplosion.rb:20:77:20:81 | [post] self | UseUseExplosion.rb:20:98:20:102 | self |
+| UseUseExplosion.rb:20:77:20:81 | [post] self | UseUseExplosion.rb:20:3643:20:3648 | self |
+| UseUseExplosion.rb:20:77:20:81 | self | UseUseExplosion.rb:20:98:20:102 | self |
+| UseUseExplosion.rb:20:77:20:81 | self | UseUseExplosion.rb:20:3643:20:3648 | self |
+| UseUseExplosion.rb:20:77:20:86 | ... > ... | UseUseExplosion.rb:20:76:20:87 | [false] ( ... ) |
+| UseUseExplosion.rb:20:77:20:86 | ... > ... | UseUseExplosion.rb:20:76:20:87 | [true] ( ... ) |
+| UseUseExplosion.rb:20:89:20:3636 | then ... | UseUseExplosion.rb:20:73:20:3652 | if ... |
+| UseUseExplosion.rb:20:94:20:3636 | SSA phi read(self) | UseUseExplosion.rb:20:73:20:3652 | SSA phi read(self) |
+| UseUseExplosion.rb:20:94:20:3636 | SSA phi read(x) | UseUseExplosion.rb:20:73:20:3652 | SSA phi read(x) |
+| UseUseExplosion.rb:20:94:20:3636 | if ... | UseUseExplosion.rb:20:89:20:3636 | then ... |
+| UseUseExplosion.rb:20:98:20:102 | [post] self | UseUseExplosion.rb:20:119:20:123 | self |
+| UseUseExplosion.rb:20:98:20:102 | [post] self | UseUseExplosion.rb:20:3627:20:3632 | self |
+| UseUseExplosion.rb:20:98:20:102 | self | UseUseExplosion.rb:20:119:20:123 | self |
+| UseUseExplosion.rb:20:98:20:102 | self | UseUseExplosion.rb:20:3627:20:3632 | self |
+| UseUseExplosion.rb:20:98:20:107 | ... > ... | UseUseExplosion.rb:20:97:20:108 | [false] ( ... ) |
+| UseUseExplosion.rb:20:98:20:107 | ... > ... | UseUseExplosion.rb:20:97:20:108 | [true] ( ... ) |
+| UseUseExplosion.rb:20:110:20:3620 | then ... | UseUseExplosion.rb:20:94:20:3636 | if ... |
+| UseUseExplosion.rb:20:115:20:3620 | SSA phi read(self) | UseUseExplosion.rb:20:94:20:3636 | SSA phi read(self) |
+| UseUseExplosion.rb:20:115:20:3620 | SSA phi read(x) | UseUseExplosion.rb:20:94:20:3636 | SSA phi read(x) |
+| UseUseExplosion.rb:20:115:20:3620 | if ... | UseUseExplosion.rb:20:110:20:3620 | then ... |
+| UseUseExplosion.rb:20:119:20:123 | [post] self | UseUseExplosion.rb:20:140:20:144 | self |
+| UseUseExplosion.rb:20:119:20:123 | [post] self | UseUseExplosion.rb:20:3611:20:3616 | self |
+| UseUseExplosion.rb:20:119:20:123 | self | UseUseExplosion.rb:20:140:20:144 | self |
+| UseUseExplosion.rb:20:119:20:123 | self | UseUseExplosion.rb:20:3611:20:3616 | self |
+| UseUseExplosion.rb:20:119:20:128 | ... > ... | UseUseExplosion.rb:20:118:20:129 | [false] ( ... ) |
+| UseUseExplosion.rb:20:119:20:128 | ... > ... | UseUseExplosion.rb:20:118:20:129 | [true] ( ... ) |
+| UseUseExplosion.rb:20:131:20:3604 | then ... | UseUseExplosion.rb:20:115:20:3620 | if ... |
+| UseUseExplosion.rb:20:136:20:3604 | SSA phi read(self) | UseUseExplosion.rb:20:115:20:3620 | SSA phi read(self) |
+| UseUseExplosion.rb:20:136:20:3604 | SSA phi read(x) | UseUseExplosion.rb:20:115:20:3620 | SSA phi read(x) |
+| UseUseExplosion.rb:20:136:20:3604 | if ... | UseUseExplosion.rb:20:131:20:3604 | then ... |
+| UseUseExplosion.rb:20:140:20:144 | [post] self | UseUseExplosion.rb:20:161:20:165 | self |
+| UseUseExplosion.rb:20:140:20:144 | [post] self | UseUseExplosion.rb:20:3595:20:3600 | self |
+| UseUseExplosion.rb:20:140:20:144 | self | UseUseExplosion.rb:20:161:20:165 | self |
+| UseUseExplosion.rb:20:140:20:144 | self | UseUseExplosion.rb:20:3595:20:3600 | self |
+| UseUseExplosion.rb:20:140:20:149 | ... > ... | UseUseExplosion.rb:20:139:20:150 | [false] ( ... ) |
+| UseUseExplosion.rb:20:140:20:149 | ... > ... | UseUseExplosion.rb:20:139:20:150 | [true] ( ... ) |
+| UseUseExplosion.rb:20:152:20:3588 | then ... | UseUseExplosion.rb:20:136:20:3604 | if ... |
+| UseUseExplosion.rb:20:157:20:3588 | SSA phi read(self) | UseUseExplosion.rb:20:136:20:3604 | SSA phi read(self) |
+| UseUseExplosion.rb:20:157:20:3588 | SSA phi read(x) | UseUseExplosion.rb:20:136:20:3604 | SSA phi read(x) |
+| UseUseExplosion.rb:20:157:20:3588 | if ... | UseUseExplosion.rb:20:152:20:3588 | then ... |
+| UseUseExplosion.rb:20:161:20:165 | [post] self | UseUseExplosion.rb:20:182:20:186 | self |
+| UseUseExplosion.rb:20:161:20:165 | [post] self | UseUseExplosion.rb:20:3579:20:3584 | self |
+| UseUseExplosion.rb:20:161:20:165 | self | UseUseExplosion.rb:20:182:20:186 | self |
+| UseUseExplosion.rb:20:161:20:165 | self | UseUseExplosion.rb:20:3579:20:3584 | self |
+| UseUseExplosion.rb:20:161:20:170 | ... > ... | UseUseExplosion.rb:20:160:20:171 | [false] ( ... ) |
+| UseUseExplosion.rb:20:161:20:170 | ... > ... | UseUseExplosion.rb:20:160:20:171 | [true] ( ... ) |
+| UseUseExplosion.rb:20:173:20:3572 | then ... | UseUseExplosion.rb:20:157:20:3588 | if ... |
+| UseUseExplosion.rb:20:178:20:3572 | SSA phi read(self) | UseUseExplosion.rb:20:157:20:3588 | SSA phi read(self) |
+| UseUseExplosion.rb:20:178:20:3572 | SSA phi read(x) | UseUseExplosion.rb:20:157:20:3588 | SSA phi read(x) |
+| UseUseExplosion.rb:20:178:20:3572 | if ... | UseUseExplosion.rb:20:173:20:3572 | then ... |
+| UseUseExplosion.rb:20:182:20:186 | [post] self | UseUseExplosion.rb:20:203:20:207 | self |
+| UseUseExplosion.rb:20:182:20:186 | [post] self | UseUseExplosion.rb:20:3563:20:3568 | self |
+| UseUseExplosion.rb:20:182:20:186 | self | UseUseExplosion.rb:20:203:20:207 | self |
+| UseUseExplosion.rb:20:182:20:186 | self | UseUseExplosion.rb:20:3563:20:3568 | self |
+| UseUseExplosion.rb:20:182:20:191 | ... > ... | UseUseExplosion.rb:20:181:20:192 | [false] ( ... ) |
+| UseUseExplosion.rb:20:182:20:191 | ... > ... | UseUseExplosion.rb:20:181:20:192 | [true] ( ... ) |
+| UseUseExplosion.rb:20:194:20:3556 | then ... | UseUseExplosion.rb:20:178:20:3572 | if ... |
+| UseUseExplosion.rb:20:199:20:3556 | SSA phi read(self) | UseUseExplosion.rb:20:178:20:3572 | SSA phi read(self) |
+| UseUseExplosion.rb:20:199:20:3556 | SSA phi read(x) | UseUseExplosion.rb:20:178:20:3572 | SSA phi read(x) |
+| UseUseExplosion.rb:20:199:20:3556 | if ... | UseUseExplosion.rb:20:194:20:3556 | then ... |
+| UseUseExplosion.rb:20:203:20:207 | [post] self | UseUseExplosion.rb:20:224:20:228 | self |
+| UseUseExplosion.rb:20:203:20:207 | [post] self | UseUseExplosion.rb:20:3547:20:3552 | self |
+| UseUseExplosion.rb:20:203:20:207 | self | UseUseExplosion.rb:20:224:20:228 | self |
+| UseUseExplosion.rb:20:203:20:207 | self | UseUseExplosion.rb:20:3547:20:3552 | self |
+| UseUseExplosion.rb:20:203:20:212 | ... > ... | UseUseExplosion.rb:20:202:20:213 | [false] ( ... ) |
+| UseUseExplosion.rb:20:203:20:212 | ... > ... | UseUseExplosion.rb:20:202:20:213 | [true] ( ... ) |
+| UseUseExplosion.rb:20:215:20:3540 | then ... | UseUseExplosion.rb:20:199:20:3556 | if ... |
+| UseUseExplosion.rb:20:220:20:3540 | SSA phi read(self) | UseUseExplosion.rb:20:199:20:3556 | SSA phi read(self) |
+| UseUseExplosion.rb:20:220:20:3540 | SSA phi read(x) | UseUseExplosion.rb:20:199:20:3556 | SSA phi read(x) |
+| UseUseExplosion.rb:20:220:20:3540 | if ... | UseUseExplosion.rb:20:215:20:3540 | then ... |
+| UseUseExplosion.rb:20:224:20:228 | [post] self | UseUseExplosion.rb:20:245:20:249 | self |
+| UseUseExplosion.rb:20:224:20:228 | [post] self | UseUseExplosion.rb:20:3531:20:3536 | self |
+| UseUseExplosion.rb:20:224:20:228 | self | UseUseExplosion.rb:20:245:20:249 | self |
+| UseUseExplosion.rb:20:224:20:228 | self | UseUseExplosion.rb:20:3531:20:3536 | self |
+| UseUseExplosion.rb:20:224:20:233 | ... > ... | UseUseExplosion.rb:20:223:20:234 | [false] ( ... ) |
+| UseUseExplosion.rb:20:224:20:233 | ... > ... | UseUseExplosion.rb:20:223:20:234 | [true] ( ... ) |
+| UseUseExplosion.rb:20:236:20:3524 | then ... | UseUseExplosion.rb:20:220:20:3540 | if ... |
+| UseUseExplosion.rb:20:241:20:3524 | SSA phi read(self) | UseUseExplosion.rb:20:220:20:3540 | SSA phi read(self) |
+| UseUseExplosion.rb:20:241:20:3524 | SSA phi read(x) | UseUseExplosion.rb:20:220:20:3540 | SSA phi read(x) |
+| UseUseExplosion.rb:20:241:20:3524 | if ... | UseUseExplosion.rb:20:236:20:3524 | then ... |
+| UseUseExplosion.rb:20:245:20:249 | [post] self | UseUseExplosion.rb:20:266:20:270 | self |
+| UseUseExplosion.rb:20:245:20:249 | [post] self | UseUseExplosion.rb:20:3515:20:3520 | self |
+| UseUseExplosion.rb:20:245:20:249 | self | UseUseExplosion.rb:20:266:20:270 | self |
+| UseUseExplosion.rb:20:245:20:249 | self | UseUseExplosion.rb:20:3515:20:3520 | self |
+| UseUseExplosion.rb:20:245:20:254 | ... > ... | UseUseExplosion.rb:20:244:20:255 | [false] ( ... ) |
+| UseUseExplosion.rb:20:245:20:254 | ... > ... | UseUseExplosion.rb:20:244:20:255 | [true] ( ... ) |
+| UseUseExplosion.rb:20:257:20:3508 | then ... | UseUseExplosion.rb:20:241:20:3524 | if ... |
+| UseUseExplosion.rb:20:262:20:3508 | SSA phi read(self) | UseUseExplosion.rb:20:241:20:3524 | SSA phi read(self) |
+| UseUseExplosion.rb:20:262:20:3508 | SSA phi read(x) | UseUseExplosion.rb:20:241:20:3524 | SSA phi read(x) |
+| UseUseExplosion.rb:20:262:20:3508 | if ... | UseUseExplosion.rb:20:257:20:3508 | then ... |
+| UseUseExplosion.rb:20:266:20:270 | [post] self | UseUseExplosion.rb:20:287:20:291 | self |
+| UseUseExplosion.rb:20:266:20:270 | [post] self | UseUseExplosion.rb:20:3499:20:3504 | self |
+| UseUseExplosion.rb:20:266:20:270 | self | UseUseExplosion.rb:20:287:20:291 | self |
+| UseUseExplosion.rb:20:266:20:270 | self | UseUseExplosion.rb:20:3499:20:3504 | self |
+| UseUseExplosion.rb:20:266:20:275 | ... > ... | UseUseExplosion.rb:20:265:20:276 | [false] ( ... ) |
+| UseUseExplosion.rb:20:266:20:275 | ... > ... | UseUseExplosion.rb:20:265:20:276 | [true] ( ... ) |
+| UseUseExplosion.rb:20:278:20:3492 | then ... | UseUseExplosion.rb:20:262:20:3508 | if ... |
+| UseUseExplosion.rb:20:283:20:3492 | SSA phi read(self) | UseUseExplosion.rb:20:262:20:3508 | SSA phi read(self) |
+| UseUseExplosion.rb:20:283:20:3492 | SSA phi read(x) | UseUseExplosion.rb:20:262:20:3508 | SSA phi read(x) |
+| UseUseExplosion.rb:20:283:20:3492 | if ... | UseUseExplosion.rb:20:278:20:3492 | then ... |
+| UseUseExplosion.rb:20:287:20:291 | [post] self | UseUseExplosion.rb:20:308:20:312 | self |
+| UseUseExplosion.rb:20:287:20:291 | [post] self | UseUseExplosion.rb:20:3483:20:3488 | self |
+| UseUseExplosion.rb:20:287:20:291 | self | UseUseExplosion.rb:20:308:20:312 | self |
+| UseUseExplosion.rb:20:287:20:291 | self | UseUseExplosion.rb:20:3483:20:3488 | self |
+| UseUseExplosion.rb:20:287:20:296 | ... > ... | UseUseExplosion.rb:20:286:20:297 | [false] ( ... ) |
+| UseUseExplosion.rb:20:287:20:296 | ... > ... | UseUseExplosion.rb:20:286:20:297 | [true] ( ... ) |
+| UseUseExplosion.rb:20:299:20:3476 | then ... | UseUseExplosion.rb:20:283:20:3492 | if ... |
+| UseUseExplosion.rb:20:304:20:3476 | SSA phi read(self) | UseUseExplosion.rb:20:283:20:3492 | SSA phi read(self) |
+| UseUseExplosion.rb:20:304:20:3476 | SSA phi read(x) | UseUseExplosion.rb:20:283:20:3492 | SSA phi read(x) |
+| UseUseExplosion.rb:20:304:20:3476 | if ... | UseUseExplosion.rb:20:299:20:3476 | then ... |
+| UseUseExplosion.rb:20:308:20:312 | [post] self | UseUseExplosion.rb:20:329:20:333 | self |
+| UseUseExplosion.rb:20:308:20:312 | [post] self | UseUseExplosion.rb:20:3467:20:3472 | self |
+| UseUseExplosion.rb:20:308:20:312 | self | UseUseExplosion.rb:20:329:20:333 | self |
+| UseUseExplosion.rb:20:308:20:312 | self | UseUseExplosion.rb:20:3467:20:3472 | self |
+| UseUseExplosion.rb:20:308:20:317 | ... > ... | UseUseExplosion.rb:20:307:20:318 | [false] ( ... ) |
+| UseUseExplosion.rb:20:308:20:317 | ... > ... | UseUseExplosion.rb:20:307:20:318 | [true] ( ... ) |
+| UseUseExplosion.rb:20:320:20:3460 | then ... | UseUseExplosion.rb:20:304:20:3476 | if ... |
+| UseUseExplosion.rb:20:325:20:3460 | SSA phi read(self) | UseUseExplosion.rb:20:304:20:3476 | SSA phi read(self) |
+| UseUseExplosion.rb:20:325:20:3460 | SSA phi read(x) | UseUseExplosion.rb:20:304:20:3476 | SSA phi read(x) |
+| UseUseExplosion.rb:20:325:20:3460 | if ... | UseUseExplosion.rb:20:320:20:3460 | then ... |
+| UseUseExplosion.rb:20:329:20:333 | [post] self | UseUseExplosion.rb:20:350:20:354 | self |
+| UseUseExplosion.rb:20:329:20:333 | [post] self | UseUseExplosion.rb:20:3451:20:3456 | self |
+| UseUseExplosion.rb:20:329:20:333 | self | UseUseExplosion.rb:20:350:20:354 | self |
+| UseUseExplosion.rb:20:329:20:333 | self | UseUseExplosion.rb:20:3451:20:3456 | self |
+| UseUseExplosion.rb:20:329:20:338 | ... > ... | UseUseExplosion.rb:20:328:20:339 | [false] ( ... ) |
+| UseUseExplosion.rb:20:329:20:338 | ... > ... | UseUseExplosion.rb:20:328:20:339 | [true] ( ... ) |
+| UseUseExplosion.rb:20:341:20:3444 | then ... | UseUseExplosion.rb:20:325:20:3460 | if ... |
+| UseUseExplosion.rb:20:346:20:3444 | SSA phi read(self) | UseUseExplosion.rb:20:325:20:3460 | SSA phi read(self) |
+| UseUseExplosion.rb:20:346:20:3444 | SSA phi read(x) | UseUseExplosion.rb:20:325:20:3460 | SSA phi read(x) |
+| UseUseExplosion.rb:20:346:20:3444 | if ... | UseUseExplosion.rb:20:341:20:3444 | then ... |
+| UseUseExplosion.rb:20:350:20:354 | [post] self | UseUseExplosion.rb:20:371:20:375 | self |
+| UseUseExplosion.rb:20:350:20:354 | [post] self | UseUseExplosion.rb:20:3435:20:3440 | self |
+| UseUseExplosion.rb:20:350:20:354 | self | UseUseExplosion.rb:20:371:20:375 | self |
+| UseUseExplosion.rb:20:350:20:354 | self | UseUseExplosion.rb:20:3435:20:3440 | self |
+| UseUseExplosion.rb:20:350:20:359 | ... > ... | UseUseExplosion.rb:20:349:20:360 | [false] ( ... ) |
+| UseUseExplosion.rb:20:350:20:359 | ... > ... | UseUseExplosion.rb:20:349:20:360 | [true] ( ... ) |
+| UseUseExplosion.rb:20:362:20:3428 | then ... | UseUseExplosion.rb:20:346:20:3444 | if ... |
+| UseUseExplosion.rb:20:367:20:3428 | SSA phi read(self) | UseUseExplosion.rb:20:346:20:3444 | SSA phi read(self) |
+| UseUseExplosion.rb:20:367:20:3428 | SSA phi read(x) | UseUseExplosion.rb:20:346:20:3444 | SSA phi read(x) |
+| UseUseExplosion.rb:20:367:20:3428 | if ... | UseUseExplosion.rb:20:362:20:3428 | then ... |
+| UseUseExplosion.rb:20:371:20:375 | [post] self | UseUseExplosion.rb:20:392:20:396 | self |
+| UseUseExplosion.rb:20:371:20:375 | [post] self | UseUseExplosion.rb:20:3419:20:3424 | self |
+| UseUseExplosion.rb:20:371:20:375 | self | UseUseExplosion.rb:20:392:20:396 | self |
+| UseUseExplosion.rb:20:371:20:375 | self | UseUseExplosion.rb:20:3419:20:3424 | self |
+| UseUseExplosion.rb:20:371:20:380 | ... > ... | UseUseExplosion.rb:20:370:20:381 | [false] ( ... ) |
+| UseUseExplosion.rb:20:371:20:380 | ... > ... | UseUseExplosion.rb:20:370:20:381 | [true] ( ... ) |
+| UseUseExplosion.rb:20:383:20:3412 | then ... | UseUseExplosion.rb:20:367:20:3428 | if ... |
+| UseUseExplosion.rb:20:388:20:3412 | SSA phi read(self) | UseUseExplosion.rb:20:367:20:3428 | SSA phi read(self) |
+| UseUseExplosion.rb:20:388:20:3412 | SSA phi read(x) | UseUseExplosion.rb:20:367:20:3428 | SSA phi read(x) |
+| UseUseExplosion.rb:20:388:20:3412 | if ... | UseUseExplosion.rb:20:383:20:3412 | then ... |
+| UseUseExplosion.rb:20:392:20:396 | [post] self | UseUseExplosion.rb:20:413:20:417 | self |
+| UseUseExplosion.rb:20:392:20:396 | [post] self | UseUseExplosion.rb:20:3403:20:3408 | self |
+| UseUseExplosion.rb:20:392:20:396 | self | UseUseExplosion.rb:20:413:20:417 | self |
+| UseUseExplosion.rb:20:392:20:396 | self | UseUseExplosion.rb:20:3403:20:3408 | self |
+| UseUseExplosion.rb:20:392:20:401 | ... > ... | UseUseExplosion.rb:20:391:20:402 | [false] ( ... ) |
+| UseUseExplosion.rb:20:392:20:401 | ... > ... | UseUseExplosion.rb:20:391:20:402 | [true] ( ... ) |
+| UseUseExplosion.rb:20:404:20:3396 | then ... | UseUseExplosion.rb:20:388:20:3412 | if ... |
+| UseUseExplosion.rb:20:409:20:3396 | SSA phi read(self) | UseUseExplosion.rb:20:388:20:3412 | SSA phi read(self) |
+| UseUseExplosion.rb:20:409:20:3396 | SSA phi read(x) | UseUseExplosion.rb:20:388:20:3412 | SSA phi read(x) |
+| UseUseExplosion.rb:20:409:20:3396 | if ... | UseUseExplosion.rb:20:404:20:3396 | then ... |
+| UseUseExplosion.rb:20:413:20:417 | [post] self | UseUseExplosion.rb:20:434:20:438 | self |
+| UseUseExplosion.rb:20:413:20:417 | [post] self | UseUseExplosion.rb:20:3387:20:3392 | self |
+| UseUseExplosion.rb:20:413:20:417 | self | UseUseExplosion.rb:20:434:20:438 | self |
+| UseUseExplosion.rb:20:413:20:417 | self | UseUseExplosion.rb:20:3387:20:3392 | self |
+| UseUseExplosion.rb:20:413:20:422 | ... > ... | UseUseExplosion.rb:20:412:20:423 | [false] ( ... ) |
+| UseUseExplosion.rb:20:413:20:422 | ... > ... | UseUseExplosion.rb:20:412:20:423 | [true] ( ... ) |
+| UseUseExplosion.rb:20:425:20:3380 | then ... | UseUseExplosion.rb:20:409:20:3396 | if ... |
+| UseUseExplosion.rb:20:430:20:3380 | SSA phi read(self) | UseUseExplosion.rb:20:409:20:3396 | SSA phi read(self) |
+| UseUseExplosion.rb:20:430:20:3380 | SSA phi read(x) | UseUseExplosion.rb:20:409:20:3396 | SSA phi read(x) |
+| UseUseExplosion.rb:20:430:20:3380 | if ... | UseUseExplosion.rb:20:425:20:3380 | then ... |
+| UseUseExplosion.rb:20:434:20:438 | [post] self | UseUseExplosion.rb:20:455:20:459 | self |
+| UseUseExplosion.rb:20:434:20:438 | [post] self | UseUseExplosion.rb:20:3371:20:3376 | self |
+| UseUseExplosion.rb:20:434:20:438 | self | UseUseExplosion.rb:20:455:20:459 | self |
+| UseUseExplosion.rb:20:434:20:438 | self | UseUseExplosion.rb:20:3371:20:3376 | self |
+| UseUseExplosion.rb:20:434:20:443 | ... > ... | UseUseExplosion.rb:20:433:20:444 | [false] ( ... ) |
+| UseUseExplosion.rb:20:434:20:443 | ... > ... | UseUseExplosion.rb:20:433:20:444 | [true] ( ... ) |
+| UseUseExplosion.rb:20:446:20:3364 | then ... | UseUseExplosion.rb:20:430:20:3380 | if ... |
+| UseUseExplosion.rb:20:451:20:3364 | SSA phi read(self) | UseUseExplosion.rb:20:430:20:3380 | SSA phi read(self) |
+| UseUseExplosion.rb:20:451:20:3364 | SSA phi read(x) | UseUseExplosion.rb:20:430:20:3380 | SSA phi read(x) |
+| UseUseExplosion.rb:20:451:20:3364 | if ... | UseUseExplosion.rb:20:446:20:3364 | then ... |
+| UseUseExplosion.rb:20:455:20:459 | [post] self | UseUseExplosion.rb:20:476:20:480 | self |
+| UseUseExplosion.rb:20:455:20:459 | [post] self | UseUseExplosion.rb:20:3355:20:3360 | self |
+| UseUseExplosion.rb:20:455:20:459 | self | UseUseExplosion.rb:20:476:20:480 | self |
+| UseUseExplosion.rb:20:455:20:459 | self | UseUseExplosion.rb:20:3355:20:3360 | self |
+| UseUseExplosion.rb:20:455:20:464 | ... > ... | UseUseExplosion.rb:20:454:20:465 | [false] ( ... ) |
+| UseUseExplosion.rb:20:455:20:464 | ... > ... | UseUseExplosion.rb:20:454:20:465 | [true] ( ... ) |
+| UseUseExplosion.rb:20:467:20:3348 | then ... | UseUseExplosion.rb:20:451:20:3364 | if ... |
+| UseUseExplosion.rb:20:472:20:3348 | SSA phi read(self) | UseUseExplosion.rb:20:451:20:3364 | SSA phi read(self) |
+| UseUseExplosion.rb:20:472:20:3348 | SSA phi read(x) | UseUseExplosion.rb:20:451:20:3364 | SSA phi read(x) |
+| UseUseExplosion.rb:20:472:20:3348 | if ... | UseUseExplosion.rb:20:467:20:3348 | then ... |
+| UseUseExplosion.rb:20:476:20:480 | [post] self | UseUseExplosion.rb:20:497:20:501 | self |
+| UseUseExplosion.rb:20:476:20:480 | [post] self | UseUseExplosion.rb:20:3339:20:3344 | self |
+| UseUseExplosion.rb:20:476:20:480 | self | UseUseExplosion.rb:20:497:20:501 | self |
+| UseUseExplosion.rb:20:476:20:480 | self | UseUseExplosion.rb:20:3339:20:3344 | self |
+| UseUseExplosion.rb:20:476:20:485 | ... > ... | UseUseExplosion.rb:20:475:20:486 | [false] ( ... ) |
+| UseUseExplosion.rb:20:476:20:485 | ... > ... | UseUseExplosion.rb:20:475:20:486 | [true] ( ... ) |
+| UseUseExplosion.rb:20:488:20:3332 | then ... | UseUseExplosion.rb:20:472:20:3348 | if ... |
+| UseUseExplosion.rb:20:493:20:3332 | SSA phi read(self) | UseUseExplosion.rb:20:472:20:3348 | SSA phi read(self) |
+| UseUseExplosion.rb:20:493:20:3332 | SSA phi read(x) | UseUseExplosion.rb:20:472:20:3348 | SSA phi read(x) |
+| UseUseExplosion.rb:20:493:20:3332 | if ... | UseUseExplosion.rb:20:488:20:3332 | then ... |
+| UseUseExplosion.rb:20:497:20:501 | [post] self | UseUseExplosion.rb:20:518:20:522 | self |
+| UseUseExplosion.rb:20:497:20:501 | [post] self | UseUseExplosion.rb:20:3323:20:3328 | self |
+| UseUseExplosion.rb:20:497:20:501 | self | UseUseExplosion.rb:20:518:20:522 | self |
+| UseUseExplosion.rb:20:497:20:501 | self | UseUseExplosion.rb:20:3323:20:3328 | self |
+| UseUseExplosion.rb:20:497:20:506 | ... > ... | UseUseExplosion.rb:20:496:20:507 | [false] ( ... ) |
+| UseUseExplosion.rb:20:497:20:506 | ... > ... | UseUseExplosion.rb:20:496:20:507 | [true] ( ... ) |
+| UseUseExplosion.rb:20:509:20:3316 | then ... | UseUseExplosion.rb:20:493:20:3332 | if ... |
+| UseUseExplosion.rb:20:514:20:3316 | SSA phi read(self) | UseUseExplosion.rb:20:493:20:3332 | SSA phi read(self) |
+| UseUseExplosion.rb:20:514:20:3316 | SSA phi read(x) | UseUseExplosion.rb:20:493:20:3332 | SSA phi read(x) |
+| UseUseExplosion.rb:20:514:20:3316 | if ... | UseUseExplosion.rb:20:509:20:3316 | then ... |
+| UseUseExplosion.rb:20:518:20:522 | [post] self | UseUseExplosion.rb:20:539:20:543 | self |
+| UseUseExplosion.rb:20:518:20:522 | [post] self | UseUseExplosion.rb:20:3307:20:3312 | self |
+| UseUseExplosion.rb:20:518:20:522 | self | UseUseExplosion.rb:20:539:20:543 | self |
+| UseUseExplosion.rb:20:518:20:522 | self | UseUseExplosion.rb:20:3307:20:3312 | self |
+| UseUseExplosion.rb:20:518:20:527 | ... > ... | UseUseExplosion.rb:20:517:20:528 | [false] ( ... ) |
+| UseUseExplosion.rb:20:518:20:527 | ... > ... | UseUseExplosion.rb:20:517:20:528 | [true] ( ... ) |
+| UseUseExplosion.rb:20:530:20:3300 | then ... | UseUseExplosion.rb:20:514:20:3316 | if ... |
+| UseUseExplosion.rb:20:535:20:3300 | SSA phi read(self) | UseUseExplosion.rb:20:514:20:3316 | SSA phi read(self) |
+| UseUseExplosion.rb:20:535:20:3300 | SSA phi read(x) | UseUseExplosion.rb:20:514:20:3316 | SSA phi read(x) |
+| UseUseExplosion.rb:20:535:20:3300 | if ... | UseUseExplosion.rb:20:530:20:3300 | then ... |
+| UseUseExplosion.rb:20:539:20:543 | [post] self | UseUseExplosion.rb:20:560:20:564 | self |
+| UseUseExplosion.rb:20:539:20:543 | [post] self | UseUseExplosion.rb:20:3291:20:3296 | self |
+| UseUseExplosion.rb:20:539:20:543 | self | UseUseExplosion.rb:20:560:20:564 | self |
+| UseUseExplosion.rb:20:539:20:543 | self | UseUseExplosion.rb:20:3291:20:3296 | self |
+| UseUseExplosion.rb:20:539:20:548 | ... > ... | UseUseExplosion.rb:20:538:20:549 | [false] ( ... ) |
+| UseUseExplosion.rb:20:539:20:548 | ... > ... | UseUseExplosion.rb:20:538:20:549 | [true] ( ... ) |
+| UseUseExplosion.rb:20:551:20:3284 | then ... | UseUseExplosion.rb:20:535:20:3300 | if ... |
+| UseUseExplosion.rb:20:556:20:3284 | SSA phi read(self) | UseUseExplosion.rb:20:535:20:3300 | SSA phi read(self) |
+| UseUseExplosion.rb:20:556:20:3284 | SSA phi read(x) | UseUseExplosion.rb:20:535:20:3300 | SSA phi read(x) |
+| UseUseExplosion.rb:20:556:20:3284 | if ... | UseUseExplosion.rb:20:551:20:3284 | then ... |
+| UseUseExplosion.rb:20:560:20:564 | [post] self | UseUseExplosion.rb:20:581:20:585 | self |
+| UseUseExplosion.rb:20:560:20:564 | [post] self | UseUseExplosion.rb:20:3275:20:3280 | self |
+| UseUseExplosion.rb:20:560:20:564 | self | UseUseExplosion.rb:20:581:20:585 | self |
+| UseUseExplosion.rb:20:560:20:564 | self | UseUseExplosion.rb:20:3275:20:3280 | self |
+| UseUseExplosion.rb:20:560:20:569 | ... > ... | UseUseExplosion.rb:20:559:20:570 | [false] ( ... ) |
+| UseUseExplosion.rb:20:560:20:569 | ... > ... | UseUseExplosion.rb:20:559:20:570 | [true] ( ... ) |
+| UseUseExplosion.rb:20:572:20:3268 | then ... | UseUseExplosion.rb:20:556:20:3284 | if ... |
+| UseUseExplosion.rb:20:577:20:3268 | SSA phi read(self) | UseUseExplosion.rb:20:556:20:3284 | SSA phi read(self) |
+| UseUseExplosion.rb:20:577:20:3268 | SSA phi read(x) | UseUseExplosion.rb:20:556:20:3284 | SSA phi read(x) |
+| UseUseExplosion.rb:20:577:20:3268 | if ... | UseUseExplosion.rb:20:572:20:3268 | then ... |
+| UseUseExplosion.rb:20:581:20:585 | [post] self | UseUseExplosion.rb:20:602:20:606 | self |
+| UseUseExplosion.rb:20:581:20:585 | [post] self | UseUseExplosion.rb:20:3259:20:3264 | self |
+| UseUseExplosion.rb:20:581:20:585 | self | UseUseExplosion.rb:20:602:20:606 | self |
+| UseUseExplosion.rb:20:581:20:585 | self | UseUseExplosion.rb:20:3259:20:3264 | self |
+| UseUseExplosion.rb:20:581:20:590 | ... > ... | UseUseExplosion.rb:20:580:20:591 | [false] ( ... ) |
+| UseUseExplosion.rb:20:581:20:590 | ... > ... | UseUseExplosion.rb:20:580:20:591 | [true] ( ... ) |
+| UseUseExplosion.rb:20:593:20:3252 | then ... | UseUseExplosion.rb:20:577:20:3268 | if ... |
+| UseUseExplosion.rb:20:598:20:3252 | SSA phi read(self) | UseUseExplosion.rb:20:577:20:3268 | SSA phi read(self) |
+| UseUseExplosion.rb:20:598:20:3252 | SSA phi read(x) | UseUseExplosion.rb:20:577:20:3268 | SSA phi read(x) |
+| UseUseExplosion.rb:20:598:20:3252 | if ... | UseUseExplosion.rb:20:593:20:3252 | then ... |
+| UseUseExplosion.rb:20:602:20:606 | [post] self | UseUseExplosion.rb:20:623:20:627 | self |
+| UseUseExplosion.rb:20:602:20:606 | [post] self | UseUseExplosion.rb:20:3243:20:3248 | self |
+| UseUseExplosion.rb:20:602:20:606 | self | UseUseExplosion.rb:20:623:20:627 | self |
+| UseUseExplosion.rb:20:602:20:606 | self | UseUseExplosion.rb:20:3243:20:3248 | self |
+| UseUseExplosion.rb:20:602:20:611 | ... > ... | UseUseExplosion.rb:20:601:20:612 | [false] ( ... ) |
+| UseUseExplosion.rb:20:602:20:611 | ... > ... | UseUseExplosion.rb:20:601:20:612 | [true] ( ... ) |
+| UseUseExplosion.rb:20:614:20:3236 | then ... | UseUseExplosion.rb:20:598:20:3252 | if ... |
+| UseUseExplosion.rb:20:619:20:3236 | SSA phi read(self) | UseUseExplosion.rb:20:598:20:3252 | SSA phi read(self) |
+| UseUseExplosion.rb:20:619:20:3236 | SSA phi read(x) | UseUseExplosion.rb:20:598:20:3252 | SSA phi read(x) |
+| UseUseExplosion.rb:20:619:20:3236 | if ... | UseUseExplosion.rb:20:614:20:3236 | then ... |
+| UseUseExplosion.rb:20:623:20:627 | [post] self | UseUseExplosion.rb:20:644:20:648 | self |
+| UseUseExplosion.rb:20:623:20:627 | [post] self | UseUseExplosion.rb:20:3227:20:3232 | self |
+| UseUseExplosion.rb:20:623:20:627 | self | UseUseExplosion.rb:20:644:20:648 | self |
+| UseUseExplosion.rb:20:623:20:627 | self | UseUseExplosion.rb:20:3227:20:3232 | self |
+| UseUseExplosion.rb:20:623:20:632 | ... > ... | UseUseExplosion.rb:20:622:20:633 | [false] ( ... ) |
+| UseUseExplosion.rb:20:623:20:632 | ... > ... | UseUseExplosion.rb:20:622:20:633 | [true] ( ... ) |
+| UseUseExplosion.rb:20:635:20:3220 | then ... | UseUseExplosion.rb:20:619:20:3236 | if ... |
+| UseUseExplosion.rb:20:640:20:3220 | SSA phi read(self) | UseUseExplosion.rb:20:619:20:3236 | SSA phi read(self) |
+| UseUseExplosion.rb:20:640:20:3220 | SSA phi read(x) | UseUseExplosion.rb:20:619:20:3236 | SSA phi read(x) |
+| UseUseExplosion.rb:20:640:20:3220 | if ... | UseUseExplosion.rb:20:635:20:3220 | then ... |
+| UseUseExplosion.rb:20:644:20:648 | [post] self | UseUseExplosion.rb:20:665:20:669 | self |
+| UseUseExplosion.rb:20:644:20:648 | [post] self | UseUseExplosion.rb:20:3211:20:3216 | self |
+| UseUseExplosion.rb:20:644:20:648 | self | UseUseExplosion.rb:20:665:20:669 | self |
+| UseUseExplosion.rb:20:644:20:648 | self | UseUseExplosion.rb:20:3211:20:3216 | self |
+| UseUseExplosion.rb:20:644:20:653 | ... > ... | UseUseExplosion.rb:20:643:20:654 | [false] ( ... ) |
+| UseUseExplosion.rb:20:644:20:653 | ... > ... | UseUseExplosion.rb:20:643:20:654 | [true] ( ... ) |
+| UseUseExplosion.rb:20:656:20:3204 | then ... | UseUseExplosion.rb:20:640:20:3220 | if ... |
+| UseUseExplosion.rb:20:661:20:3204 | SSA phi read(self) | UseUseExplosion.rb:20:640:20:3220 | SSA phi read(self) |
+| UseUseExplosion.rb:20:661:20:3204 | SSA phi read(x) | UseUseExplosion.rb:20:640:20:3220 | SSA phi read(x) |
+| UseUseExplosion.rb:20:661:20:3204 | if ... | UseUseExplosion.rb:20:656:20:3204 | then ... |
+| UseUseExplosion.rb:20:665:20:669 | [post] self | UseUseExplosion.rb:20:686:20:690 | self |
+| UseUseExplosion.rb:20:665:20:669 | [post] self | UseUseExplosion.rb:20:3195:20:3200 | self |
+| UseUseExplosion.rb:20:665:20:669 | self | UseUseExplosion.rb:20:686:20:690 | self |
+| UseUseExplosion.rb:20:665:20:669 | self | UseUseExplosion.rb:20:3195:20:3200 | self |
+| UseUseExplosion.rb:20:665:20:674 | ... > ... | UseUseExplosion.rb:20:664:20:675 | [false] ( ... ) |
+| UseUseExplosion.rb:20:665:20:674 | ... > ... | UseUseExplosion.rb:20:664:20:675 | [true] ( ... ) |
+| UseUseExplosion.rb:20:677:20:3188 | then ... | UseUseExplosion.rb:20:661:20:3204 | if ... |
+| UseUseExplosion.rb:20:682:20:3188 | SSA phi read(self) | UseUseExplosion.rb:20:661:20:3204 | SSA phi read(self) |
+| UseUseExplosion.rb:20:682:20:3188 | SSA phi read(x) | UseUseExplosion.rb:20:661:20:3204 | SSA phi read(x) |
+| UseUseExplosion.rb:20:682:20:3188 | if ... | UseUseExplosion.rb:20:677:20:3188 | then ... |
+| UseUseExplosion.rb:20:686:20:690 | [post] self | UseUseExplosion.rb:20:707:20:711 | self |
+| UseUseExplosion.rb:20:686:20:690 | [post] self | UseUseExplosion.rb:20:3179:20:3184 | self |
+| UseUseExplosion.rb:20:686:20:690 | self | UseUseExplosion.rb:20:707:20:711 | self |
+| UseUseExplosion.rb:20:686:20:690 | self | UseUseExplosion.rb:20:3179:20:3184 | self |
+| UseUseExplosion.rb:20:686:20:695 | ... > ... | UseUseExplosion.rb:20:685:20:696 | [false] ( ... ) |
+| UseUseExplosion.rb:20:686:20:695 | ... > ... | UseUseExplosion.rb:20:685:20:696 | [true] ( ... ) |
+| UseUseExplosion.rb:20:698:20:3172 | then ... | UseUseExplosion.rb:20:682:20:3188 | if ... |
+| UseUseExplosion.rb:20:703:20:3172 | SSA phi read(self) | UseUseExplosion.rb:20:682:20:3188 | SSA phi read(self) |
+| UseUseExplosion.rb:20:703:20:3172 | SSA phi read(x) | UseUseExplosion.rb:20:682:20:3188 | SSA phi read(x) |
+| UseUseExplosion.rb:20:703:20:3172 | if ... | UseUseExplosion.rb:20:698:20:3172 | then ... |
+| UseUseExplosion.rb:20:707:20:711 | [post] self | UseUseExplosion.rb:20:728:20:732 | self |
+| UseUseExplosion.rb:20:707:20:711 | [post] self | UseUseExplosion.rb:20:3163:20:3168 | self |
+| UseUseExplosion.rb:20:707:20:711 | self | UseUseExplosion.rb:20:728:20:732 | self |
+| UseUseExplosion.rb:20:707:20:711 | self | UseUseExplosion.rb:20:3163:20:3168 | self |
+| UseUseExplosion.rb:20:707:20:716 | ... > ... | UseUseExplosion.rb:20:706:20:717 | [false] ( ... ) |
+| UseUseExplosion.rb:20:707:20:716 | ... > ... | UseUseExplosion.rb:20:706:20:717 | [true] ( ... ) |
+| UseUseExplosion.rb:20:719:20:3156 | then ... | UseUseExplosion.rb:20:703:20:3172 | if ... |
+| UseUseExplosion.rb:20:724:20:3156 | SSA phi read(self) | UseUseExplosion.rb:20:703:20:3172 | SSA phi read(self) |
+| UseUseExplosion.rb:20:724:20:3156 | SSA phi read(x) | UseUseExplosion.rb:20:703:20:3172 | SSA phi read(x) |
+| UseUseExplosion.rb:20:724:20:3156 | if ... | UseUseExplosion.rb:20:719:20:3156 | then ... |
+| UseUseExplosion.rb:20:728:20:732 | [post] self | UseUseExplosion.rb:20:749:20:753 | self |
+| UseUseExplosion.rb:20:728:20:732 | [post] self | UseUseExplosion.rb:20:3147:20:3152 | self |
+| UseUseExplosion.rb:20:728:20:732 | self | UseUseExplosion.rb:20:749:20:753 | self |
+| UseUseExplosion.rb:20:728:20:732 | self | UseUseExplosion.rb:20:3147:20:3152 | self |
+| UseUseExplosion.rb:20:728:20:737 | ... > ... | UseUseExplosion.rb:20:727:20:738 | [false] ( ... ) |
+| UseUseExplosion.rb:20:728:20:737 | ... > ... | UseUseExplosion.rb:20:727:20:738 | [true] ( ... ) |
+| UseUseExplosion.rb:20:740:20:3140 | then ... | UseUseExplosion.rb:20:724:20:3156 | if ... |
+| UseUseExplosion.rb:20:745:20:3140 | SSA phi read(self) | UseUseExplosion.rb:20:724:20:3156 | SSA phi read(self) |
+| UseUseExplosion.rb:20:745:20:3140 | SSA phi read(x) | UseUseExplosion.rb:20:724:20:3156 | SSA phi read(x) |
+| UseUseExplosion.rb:20:745:20:3140 | if ... | UseUseExplosion.rb:20:740:20:3140 | then ... |
+| UseUseExplosion.rb:20:749:20:753 | [post] self | UseUseExplosion.rb:20:770:20:774 | self |
+| UseUseExplosion.rb:20:749:20:753 | [post] self | UseUseExplosion.rb:20:3131:20:3136 | self |
+| UseUseExplosion.rb:20:749:20:753 | self | UseUseExplosion.rb:20:770:20:774 | self |
+| UseUseExplosion.rb:20:749:20:753 | self | UseUseExplosion.rb:20:3131:20:3136 | self |
+| UseUseExplosion.rb:20:749:20:758 | ... > ... | UseUseExplosion.rb:20:748:20:759 | [false] ( ... ) |
+| UseUseExplosion.rb:20:749:20:758 | ... > ... | UseUseExplosion.rb:20:748:20:759 | [true] ( ... ) |
+| UseUseExplosion.rb:20:761:20:3124 | then ... | UseUseExplosion.rb:20:745:20:3140 | if ... |
+| UseUseExplosion.rb:20:766:20:3124 | SSA phi read(self) | UseUseExplosion.rb:20:745:20:3140 | SSA phi read(self) |
+| UseUseExplosion.rb:20:766:20:3124 | SSA phi read(x) | UseUseExplosion.rb:20:745:20:3140 | SSA phi read(x) |
+| UseUseExplosion.rb:20:766:20:3124 | if ... | UseUseExplosion.rb:20:761:20:3124 | then ... |
+| UseUseExplosion.rb:20:770:20:774 | [post] self | UseUseExplosion.rb:20:791:20:795 | self |
+| UseUseExplosion.rb:20:770:20:774 | [post] self | UseUseExplosion.rb:20:3115:20:3120 | self |
+| UseUseExplosion.rb:20:770:20:774 | self | UseUseExplosion.rb:20:791:20:795 | self |
+| UseUseExplosion.rb:20:770:20:774 | self | UseUseExplosion.rb:20:3115:20:3120 | self |
+| UseUseExplosion.rb:20:770:20:779 | ... > ... | UseUseExplosion.rb:20:769:20:780 | [false] ( ... ) |
+| UseUseExplosion.rb:20:770:20:779 | ... > ... | UseUseExplosion.rb:20:769:20:780 | [true] ( ... ) |
+| UseUseExplosion.rb:20:782:20:3108 | then ... | UseUseExplosion.rb:20:766:20:3124 | if ... |
+| UseUseExplosion.rb:20:787:20:3108 | SSA phi read(self) | UseUseExplosion.rb:20:766:20:3124 | SSA phi read(self) |
+| UseUseExplosion.rb:20:787:20:3108 | SSA phi read(x) | UseUseExplosion.rb:20:766:20:3124 | SSA phi read(x) |
+| UseUseExplosion.rb:20:787:20:3108 | if ... | UseUseExplosion.rb:20:782:20:3108 | then ... |
+| UseUseExplosion.rb:20:791:20:795 | [post] self | UseUseExplosion.rb:20:812:20:816 | self |
+| UseUseExplosion.rb:20:791:20:795 | [post] self | UseUseExplosion.rb:20:3099:20:3104 | self |
+| UseUseExplosion.rb:20:791:20:795 | self | UseUseExplosion.rb:20:812:20:816 | self |
+| UseUseExplosion.rb:20:791:20:795 | self | UseUseExplosion.rb:20:3099:20:3104 | self |
+| UseUseExplosion.rb:20:791:20:800 | ... > ... | UseUseExplosion.rb:20:790:20:801 | [false] ( ... ) |
+| UseUseExplosion.rb:20:791:20:800 | ... > ... | UseUseExplosion.rb:20:790:20:801 | [true] ( ... ) |
+| UseUseExplosion.rb:20:803:20:3092 | then ... | UseUseExplosion.rb:20:787:20:3108 | if ... |
+| UseUseExplosion.rb:20:808:20:3092 | SSA phi read(self) | UseUseExplosion.rb:20:787:20:3108 | SSA phi read(self) |
+| UseUseExplosion.rb:20:808:20:3092 | SSA phi read(x) | UseUseExplosion.rb:20:787:20:3108 | SSA phi read(x) |
+| UseUseExplosion.rb:20:808:20:3092 | if ... | UseUseExplosion.rb:20:803:20:3092 | then ... |
+| UseUseExplosion.rb:20:812:20:816 | [post] self | UseUseExplosion.rb:20:833:20:837 | self |
+| UseUseExplosion.rb:20:812:20:816 | [post] self | UseUseExplosion.rb:20:3083:20:3088 | self |
+| UseUseExplosion.rb:20:812:20:816 | self | UseUseExplosion.rb:20:833:20:837 | self |
+| UseUseExplosion.rb:20:812:20:816 | self | UseUseExplosion.rb:20:3083:20:3088 | self |
+| UseUseExplosion.rb:20:812:20:821 | ... > ... | UseUseExplosion.rb:20:811:20:822 | [false] ( ... ) |
+| UseUseExplosion.rb:20:812:20:821 | ... > ... | UseUseExplosion.rb:20:811:20:822 | [true] ( ... ) |
+| UseUseExplosion.rb:20:824:20:3076 | then ... | UseUseExplosion.rb:20:808:20:3092 | if ... |
+| UseUseExplosion.rb:20:829:20:3076 | SSA phi read(self) | UseUseExplosion.rb:20:808:20:3092 | SSA phi read(self) |
+| UseUseExplosion.rb:20:829:20:3076 | SSA phi read(x) | UseUseExplosion.rb:20:808:20:3092 | SSA phi read(x) |
+| UseUseExplosion.rb:20:829:20:3076 | if ... | UseUseExplosion.rb:20:824:20:3076 | then ... |
+| UseUseExplosion.rb:20:833:20:837 | [post] self | UseUseExplosion.rb:20:854:20:858 | self |
+| UseUseExplosion.rb:20:833:20:837 | [post] self | UseUseExplosion.rb:20:3067:20:3072 | self |
+| UseUseExplosion.rb:20:833:20:837 | self | UseUseExplosion.rb:20:854:20:858 | self |
+| UseUseExplosion.rb:20:833:20:837 | self | UseUseExplosion.rb:20:3067:20:3072 | self |
+| UseUseExplosion.rb:20:833:20:842 | ... > ... | UseUseExplosion.rb:20:832:20:843 | [false] ( ... ) |
+| UseUseExplosion.rb:20:833:20:842 | ... > ... | UseUseExplosion.rb:20:832:20:843 | [true] ( ... ) |
+| UseUseExplosion.rb:20:845:20:3060 | then ... | UseUseExplosion.rb:20:829:20:3076 | if ... |
+| UseUseExplosion.rb:20:850:20:3060 | SSA phi read(self) | UseUseExplosion.rb:20:829:20:3076 | SSA phi read(self) |
+| UseUseExplosion.rb:20:850:20:3060 | SSA phi read(x) | UseUseExplosion.rb:20:829:20:3076 | SSA phi read(x) |
+| UseUseExplosion.rb:20:850:20:3060 | if ... | UseUseExplosion.rb:20:845:20:3060 | then ... |
+| UseUseExplosion.rb:20:854:20:858 | [post] self | UseUseExplosion.rb:20:875:20:879 | self |
+| UseUseExplosion.rb:20:854:20:858 | [post] self | UseUseExplosion.rb:20:3051:20:3056 | self |
+| UseUseExplosion.rb:20:854:20:858 | self | UseUseExplosion.rb:20:875:20:879 | self |
+| UseUseExplosion.rb:20:854:20:858 | self | UseUseExplosion.rb:20:3051:20:3056 | self |
+| UseUseExplosion.rb:20:854:20:863 | ... > ... | UseUseExplosion.rb:20:853:20:864 | [false] ( ... ) |
+| UseUseExplosion.rb:20:854:20:863 | ... > ... | UseUseExplosion.rb:20:853:20:864 | [true] ( ... ) |
+| UseUseExplosion.rb:20:866:20:3044 | then ... | UseUseExplosion.rb:20:850:20:3060 | if ... |
+| UseUseExplosion.rb:20:871:20:3044 | SSA phi read(self) | UseUseExplosion.rb:20:850:20:3060 | SSA phi read(self) |
+| UseUseExplosion.rb:20:871:20:3044 | SSA phi read(x) | UseUseExplosion.rb:20:850:20:3060 | SSA phi read(x) |
+| UseUseExplosion.rb:20:871:20:3044 | if ... | UseUseExplosion.rb:20:866:20:3044 | then ... |
+| UseUseExplosion.rb:20:875:20:879 | [post] self | UseUseExplosion.rb:20:896:20:900 | self |
+| UseUseExplosion.rb:20:875:20:879 | [post] self | UseUseExplosion.rb:20:3035:20:3040 | self |
+| UseUseExplosion.rb:20:875:20:879 | self | UseUseExplosion.rb:20:896:20:900 | self |
+| UseUseExplosion.rb:20:875:20:879 | self | UseUseExplosion.rb:20:3035:20:3040 | self |
+| UseUseExplosion.rb:20:875:20:884 | ... > ... | UseUseExplosion.rb:20:874:20:885 | [false] ( ... ) |
+| UseUseExplosion.rb:20:875:20:884 | ... > ... | UseUseExplosion.rb:20:874:20:885 | [true] ( ... ) |
+| UseUseExplosion.rb:20:887:20:3028 | then ... | UseUseExplosion.rb:20:871:20:3044 | if ... |
+| UseUseExplosion.rb:20:892:20:3028 | SSA phi read(self) | UseUseExplosion.rb:20:871:20:3044 | SSA phi read(self) |
+| UseUseExplosion.rb:20:892:20:3028 | SSA phi read(x) | UseUseExplosion.rb:20:871:20:3044 | SSA phi read(x) |
+| UseUseExplosion.rb:20:892:20:3028 | if ... | UseUseExplosion.rb:20:887:20:3028 | then ... |
+| UseUseExplosion.rb:20:896:20:900 | [post] self | UseUseExplosion.rb:20:917:20:921 | self |
+| UseUseExplosion.rb:20:896:20:900 | [post] self | UseUseExplosion.rb:20:3019:20:3024 | self |
+| UseUseExplosion.rb:20:896:20:900 | self | UseUseExplosion.rb:20:917:20:921 | self |
+| UseUseExplosion.rb:20:896:20:900 | self | UseUseExplosion.rb:20:3019:20:3024 | self |
+| UseUseExplosion.rb:20:896:20:905 | ... > ... | UseUseExplosion.rb:20:895:20:906 | [false] ( ... ) |
+| UseUseExplosion.rb:20:896:20:905 | ... > ... | UseUseExplosion.rb:20:895:20:906 | [true] ( ... ) |
+| UseUseExplosion.rb:20:908:20:3012 | then ... | UseUseExplosion.rb:20:892:20:3028 | if ... |
+| UseUseExplosion.rb:20:913:20:3012 | SSA phi read(self) | UseUseExplosion.rb:20:892:20:3028 | SSA phi read(self) |
+| UseUseExplosion.rb:20:913:20:3012 | SSA phi read(x) | UseUseExplosion.rb:20:892:20:3028 | SSA phi read(x) |
+| UseUseExplosion.rb:20:913:20:3012 | if ... | UseUseExplosion.rb:20:908:20:3012 | then ... |
+| UseUseExplosion.rb:20:917:20:921 | [post] self | UseUseExplosion.rb:20:938:20:942 | self |
+| UseUseExplosion.rb:20:917:20:921 | [post] self | UseUseExplosion.rb:20:3003:20:3008 | self |
+| UseUseExplosion.rb:20:917:20:921 | self | UseUseExplosion.rb:20:938:20:942 | self |
+| UseUseExplosion.rb:20:917:20:921 | self | UseUseExplosion.rb:20:3003:20:3008 | self |
+| UseUseExplosion.rb:20:917:20:926 | ... > ... | UseUseExplosion.rb:20:916:20:927 | [false] ( ... ) |
+| UseUseExplosion.rb:20:917:20:926 | ... > ... | UseUseExplosion.rb:20:916:20:927 | [true] ( ... ) |
+| UseUseExplosion.rb:20:929:20:2996 | then ... | UseUseExplosion.rb:20:913:20:3012 | if ... |
+| UseUseExplosion.rb:20:934:20:2996 | SSA phi read(self) | UseUseExplosion.rb:20:913:20:3012 | SSA phi read(self) |
+| UseUseExplosion.rb:20:934:20:2996 | SSA phi read(x) | UseUseExplosion.rb:20:913:20:3012 | SSA phi read(x) |
+| UseUseExplosion.rb:20:934:20:2996 | if ... | UseUseExplosion.rb:20:929:20:2996 | then ... |
+| UseUseExplosion.rb:20:938:20:942 | [post] self | UseUseExplosion.rb:20:959:20:963 | self |
+| UseUseExplosion.rb:20:938:20:942 | [post] self | UseUseExplosion.rb:20:2987:20:2992 | self |
+| UseUseExplosion.rb:20:938:20:942 | self | UseUseExplosion.rb:20:959:20:963 | self |
+| UseUseExplosion.rb:20:938:20:942 | self | UseUseExplosion.rb:20:2987:20:2992 | self |
+| UseUseExplosion.rb:20:938:20:947 | ... > ... | UseUseExplosion.rb:20:937:20:948 | [false] ( ... ) |
+| UseUseExplosion.rb:20:938:20:947 | ... > ... | UseUseExplosion.rb:20:937:20:948 | [true] ( ... ) |
+| UseUseExplosion.rb:20:950:20:2980 | then ... | UseUseExplosion.rb:20:934:20:2996 | if ... |
+| UseUseExplosion.rb:20:955:20:2980 | SSA phi read(self) | UseUseExplosion.rb:20:934:20:2996 | SSA phi read(self) |
+| UseUseExplosion.rb:20:955:20:2980 | SSA phi read(x) | UseUseExplosion.rb:20:934:20:2996 | SSA phi read(x) |
+| UseUseExplosion.rb:20:955:20:2980 | if ... | UseUseExplosion.rb:20:950:20:2980 | then ... |
+| UseUseExplosion.rb:20:959:20:963 | [post] self | UseUseExplosion.rb:20:980:20:984 | self |
+| UseUseExplosion.rb:20:959:20:963 | [post] self | UseUseExplosion.rb:20:2971:20:2976 | self |
+| UseUseExplosion.rb:20:959:20:963 | self | UseUseExplosion.rb:20:980:20:984 | self |
+| UseUseExplosion.rb:20:959:20:963 | self | UseUseExplosion.rb:20:2971:20:2976 | self |
+| UseUseExplosion.rb:20:959:20:968 | ... > ... | UseUseExplosion.rb:20:958:20:969 | [false] ( ... ) |
+| UseUseExplosion.rb:20:959:20:968 | ... > ... | UseUseExplosion.rb:20:958:20:969 | [true] ( ... ) |
+| UseUseExplosion.rb:20:971:20:2964 | then ... | UseUseExplosion.rb:20:955:20:2980 | if ... |
+| UseUseExplosion.rb:20:976:20:2964 | SSA phi read(self) | UseUseExplosion.rb:20:955:20:2980 | SSA phi read(self) |
+| UseUseExplosion.rb:20:976:20:2964 | SSA phi read(x) | UseUseExplosion.rb:20:955:20:2980 | SSA phi read(x) |
+| UseUseExplosion.rb:20:976:20:2964 | if ... | UseUseExplosion.rb:20:971:20:2964 | then ... |
+| UseUseExplosion.rb:20:980:20:984 | [post] self | UseUseExplosion.rb:20:1001:20:1005 | self |
+| UseUseExplosion.rb:20:980:20:984 | [post] self | UseUseExplosion.rb:20:2955:20:2960 | self |
+| UseUseExplosion.rb:20:980:20:984 | self | UseUseExplosion.rb:20:1001:20:1005 | self |
+| UseUseExplosion.rb:20:980:20:984 | self | UseUseExplosion.rb:20:2955:20:2960 | self |
+| UseUseExplosion.rb:20:980:20:989 | ... > ... | UseUseExplosion.rb:20:979:20:990 | [false] ( ... ) |
+| UseUseExplosion.rb:20:980:20:989 | ... > ... | UseUseExplosion.rb:20:979:20:990 | [true] ( ... ) |
+| UseUseExplosion.rb:20:992:20:2948 | then ... | UseUseExplosion.rb:20:976:20:2964 | if ... |
+| UseUseExplosion.rb:20:997:20:2948 | SSA phi read(self) | UseUseExplosion.rb:20:976:20:2964 | SSA phi read(self) |
+| UseUseExplosion.rb:20:997:20:2948 | SSA phi read(x) | UseUseExplosion.rb:20:976:20:2964 | SSA phi read(x) |
+| UseUseExplosion.rb:20:997:20:2948 | if ... | UseUseExplosion.rb:20:992:20:2948 | then ... |
+| UseUseExplosion.rb:20:1001:20:1005 | [post] self | UseUseExplosion.rb:20:1022:20:1026 | self |
+| UseUseExplosion.rb:20:1001:20:1005 | [post] self | UseUseExplosion.rb:20:2939:20:2944 | self |
+| UseUseExplosion.rb:20:1001:20:1005 | self | UseUseExplosion.rb:20:1022:20:1026 | self |
+| UseUseExplosion.rb:20:1001:20:1005 | self | UseUseExplosion.rb:20:2939:20:2944 | self |
+| UseUseExplosion.rb:20:1001:20:1010 | ... > ... | UseUseExplosion.rb:20:1000:20:1011 | [false] ( ... ) |
+| UseUseExplosion.rb:20:1001:20:1010 | ... > ... | UseUseExplosion.rb:20:1000:20:1011 | [true] ( ... ) |
+| UseUseExplosion.rb:20:1013:20:2932 | then ... | UseUseExplosion.rb:20:997:20:2948 | if ... |
+| UseUseExplosion.rb:20:1018:20:2932 | SSA phi read(self) | UseUseExplosion.rb:20:997:20:2948 | SSA phi read(self) |
+| UseUseExplosion.rb:20:1018:20:2932 | SSA phi read(x) | UseUseExplosion.rb:20:997:20:2948 | SSA phi read(x) |
+| UseUseExplosion.rb:20:1018:20:2932 | if ... | UseUseExplosion.rb:20:1013:20:2932 | then ... |
+| UseUseExplosion.rb:20:1022:20:1026 | [post] self | UseUseExplosion.rb:20:1043:20:1047 | self |
+| UseUseExplosion.rb:20:1022:20:1026 | [post] self | UseUseExplosion.rb:20:2923:20:2928 | self |
+| UseUseExplosion.rb:20:1022:20:1026 | self | UseUseExplosion.rb:20:1043:20:1047 | self |
+| UseUseExplosion.rb:20:1022:20:1026 | self | UseUseExplosion.rb:20:2923:20:2928 | self |
+| UseUseExplosion.rb:20:1022:20:1031 | ... > ... | UseUseExplosion.rb:20:1021:20:1032 | [false] ( ... ) |
+| UseUseExplosion.rb:20:1022:20:1031 | ... > ... | UseUseExplosion.rb:20:1021:20:1032 | [true] ( ... ) |
+| UseUseExplosion.rb:20:1034:20:2916 | then ... | UseUseExplosion.rb:20:1018:20:2932 | if ... |
+| UseUseExplosion.rb:20:1039:20:2916 | SSA phi read(self) | UseUseExplosion.rb:20:1018:20:2932 | SSA phi read(self) |
+| UseUseExplosion.rb:20:1039:20:2916 | SSA phi read(x) | UseUseExplosion.rb:20:1018:20:2932 | SSA phi read(x) |
+| UseUseExplosion.rb:20:1039:20:2916 | if ... | UseUseExplosion.rb:20:1034:20:2916 | then ... |
+| UseUseExplosion.rb:20:1043:20:1047 | [post] self | UseUseExplosion.rb:20:1064:20:1068 | self |
+| UseUseExplosion.rb:20:1043:20:1047 | [post] self | UseUseExplosion.rb:20:2907:20:2912 | self |
+| UseUseExplosion.rb:20:1043:20:1047 | self | UseUseExplosion.rb:20:1064:20:1068 | self |
+| UseUseExplosion.rb:20:1043:20:1047 | self | UseUseExplosion.rb:20:2907:20:2912 | self |
+| UseUseExplosion.rb:20:1043:20:1052 | ... > ... | UseUseExplosion.rb:20:1042:20:1053 | [false] ( ... ) |
+| UseUseExplosion.rb:20:1043:20:1052 | ... > ... | UseUseExplosion.rb:20:1042:20:1053 | [true] ( ... ) |
+| UseUseExplosion.rb:20:1055:20:2900 | then ... | UseUseExplosion.rb:20:1039:20:2916 | if ... |
+| UseUseExplosion.rb:20:1060:20:2900 | SSA phi read(self) | UseUseExplosion.rb:20:1039:20:2916 | SSA phi read(self) |
+| UseUseExplosion.rb:20:1060:20:2900 | SSA phi read(x) | UseUseExplosion.rb:20:1039:20:2916 | SSA phi read(x) |
+| UseUseExplosion.rb:20:1060:20:2900 | if ... | UseUseExplosion.rb:20:1055:20:2900 | then ... |
+| UseUseExplosion.rb:20:1064:20:1068 | [post] self | UseUseExplosion.rb:20:1085:20:1089 | self |
+| UseUseExplosion.rb:20:1064:20:1068 | [post] self | UseUseExplosion.rb:20:2891:20:2896 | self |
+| UseUseExplosion.rb:20:1064:20:1068 | self | UseUseExplosion.rb:20:1085:20:1089 | self |
+| UseUseExplosion.rb:20:1064:20:1068 | self | UseUseExplosion.rb:20:2891:20:2896 | self |
+| UseUseExplosion.rb:20:1064:20:1073 | ... > ... | UseUseExplosion.rb:20:1063:20:1074 | [false] ( ... ) |
+| UseUseExplosion.rb:20:1064:20:1073 | ... > ... | UseUseExplosion.rb:20:1063:20:1074 | [true] ( ... ) |
+| UseUseExplosion.rb:20:1076:20:2884 | then ... | UseUseExplosion.rb:20:1060:20:2900 | if ... |
+| UseUseExplosion.rb:20:1081:20:2884 | SSA phi read(self) | UseUseExplosion.rb:20:1060:20:2900 | SSA phi read(self) |
+| UseUseExplosion.rb:20:1081:20:2884 | SSA phi read(x) | UseUseExplosion.rb:20:1060:20:2900 | SSA phi read(x) |
+| UseUseExplosion.rb:20:1081:20:2884 | if ... | UseUseExplosion.rb:20:1076:20:2884 | then ... |
+| UseUseExplosion.rb:20:1085:20:1089 | [post] self | UseUseExplosion.rb:20:1106:20:1110 | self |
+| UseUseExplosion.rb:20:1085:20:1089 | [post] self | UseUseExplosion.rb:20:2875:20:2880 | self |
+| UseUseExplosion.rb:20:1085:20:1089 | self | UseUseExplosion.rb:20:1106:20:1110 | self |
+| UseUseExplosion.rb:20:1085:20:1089 | self | UseUseExplosion.rb:20:2875:20:2880 | self |
+| UseUseExplosion.rb:20:1085:20:1094 | ... > ... | UseUseExplosion.rb:20:1084:20:1095 | [false] ( ... ) |
+| UseUseExplosion.rb:20:1085:20:1094 | ... > ... | UseUseExplosion.rb:20:1084:20:1095 | [true] ( ... ) |
+| UseUseExplosion.rb:20:1097:20:2868 | then ... | UseUseExplosion.rb:20:1081:20:2884 | if ... |
+| UseUseExplosion.rb:20:1102:20:2868 | SSA phi read(self) | UseUseExplosion.rb:20:1081:20:2884 | SSA phi read(self) |
+| UseUseExplosion.rb:20:1102:20:2868 | SSA phi read(x) | UseUseExplosion.rb:20:1081:20:2884 | SSA phi read(x) |
+| UseUseExplosion.rb:20:1102:20:2868 | if ... | UseUseExplosion.rb:20:1097:20:2868 | then ... |
+| UseUseExplosion.rb:20:1106:20:1110 | [post] self | UseUseExplosion.rb:20:1127:20:1131 | self |
+| UseUseExplosion.rb:20:1106:20:1110 | [post] self | UseUseExplosion.rb:20:2859:20:2864 | self |
+| UseUseExplosion.rb:20:1106:20:1110 | self | UseUseExplosion.rb:20:1127:20:1131 | self |
+| UseUseExplosion.rb:20:1106:20:1110 | self | UseUseExplosion.rb:20:2859:20:2864 | self |
+| UseUseExplosion.rb:20:1106:20:1115 | ... > ... | UseUseExplosion.rb:20:1105:20:1116 | [false] ( ... ) |
+| UseUseExplosion.rb:20:1106:20:1115 | ... > ... | UseUseExplosion.rb:20:1105:20:1116 | [true] ( ... ) |
+| UseUseExplosion.rb:20:1118:20:2852 | then ... | UseUseExplosion.rb:20:1102:20:2868 | if ... |
+| UseUseExplosion.rb:20:1123:20:2852 | SSA phi read(self) | UseUseExplosion.rb:20:1102:20:2868 | SSA phi read(self) |
+| UseUseExplosion.rb:20:1123:20:2852 | SSA phi read(x) | UseUseExplosion.rb:20:1102:20:2868 | SSA phi read(x) |
+| UseUseExplosion.rb:20:1123:20:2852 | if ... | UseUseExplosion.rb:20:1118:20:2852 | then ... |
+| UseUseExplosion.rb:20:1127:20:1131 | [post] self | UseUseExplosion.rb:20:1148:20:1152 | self |
+| UseUseExplosion.rb:20:1127:20:1131 | [post] self | UseUseExplosion.rb:20:2843:20:2848 | self |
+| UseUseExplosion.rb:20:1127:20:1131 | self | UseUseExplosion.rb:20:1148:20:1152 | self |
+| UseUseExplosion.rb:20:1127:20:1131 | self | UseUseExplosion.rb:20:2843:20:2848 | self |
+| UseUseExplosion.rb:20:1127:20:1136 | ... > ... | UseUseExplosion.rb:20:1126:20:1137 | [false] ( ... ) |
+| UseUseExplosion.rb:20:1127:20:1136 | ... > ... | UseUseExplosion.rb:20:1126:20:1137 | [true] ( ... ) |
+| UseUseExplosion.rb:20:1139:20:2836 | then ... | UseUseExplosion.rb:20:1123:20:2852 | if ... |
+| UseUseExplosion.rb:20:1144:20:2836 | SSA phi read(self) | UseUseExplosion.rb:20:1123:20:2852 | SSA phi read(self) |
+| UseUseExplosion.rb:20:1144:20:2836 | SSA phi read(x) | UseUseExplosion.rb:20:1123:20:2852 | SSA phi read(x) |
+| UseUseExplosion.rb:20:1144:20:2836 | if ... | UseUseExplosion.rb:20:1139:20:2836 | then ... |
+| UseUseExplosion.rb:20:1148:20:1152 | [post] self | UseUseExplosion.rb:20:1169:20:1173 | self |
+| UseUseExplosion.rb:20:1148:20:1152 | [post] self | UseUseExplosion.rb:20:2827:20:2832 | self |
+| UseUseExplosion.rb:20:1148:20:1152 | self | UseUseExplosion.rb:20:1169:20:1173 | self |
+| UseUseExplosion.rb:20:1148:20:1152 | self | UseUseExplosion.rb:20:2827:20:2832 | self |
+| UseUseExplosion.rb:20:1148:20:1157 | ... > ... | UseUseExplosion.rb:20:1147:20:1158 | [false] ( ... ) |
+| UseUseExplosion.rb:20:1148:20:1157 | ... > ... | UseUseExplosion.rb:20:1147:20:1158 | [true] ( ... ) |
+| UseUseExplosion.rb:20:1160:20:2820 | then ... | UseUseExplosion.rb:20:1144:20:2836 | if ... |
+| UseUseExplosion.rb:20:1165:20:2820 | SSA phi read(self) | UseUseExplosion.rb:20:1144:20:2836 | SSA phi read(self) |
+| UseUseExplosion.rb:20:1165:20:2820 | SSA phi read(x) | UseUseExplosion.rb:20:1144:20:2836 | SSA phi read(x) |
+| UseUseExplosion.rb:20:1165:20:2820 | if ... | UseUseExplosion.rb:20:1160:20:2820 | then ... |
+| UseUseExplosion.rb:20:1169:20:1173 | [post] self | UseUseExplosion.rb:20:1190:20:1194 | self |
+| UseUseExplosion.rb:20:1169:20:1173 | [post] self | UseUseExplosion.rb:20:2811:20:2816 | self |
+| UseUseExplosion.rb:20:1169:20:1173 | self | UseUseExplosion.rb:20:1190:20:1194 | self |
+| UseUseExplosion.rb:20:1169:20:1173 | self | UseUseExplosion.rb:20:2811:20:2816 | self |
+| UseUseExplosion.rb:20:1169:20:1178 | ... > ... | UseUseExplosion.rb:20:1168:20:1179 | [false] ( ... ) |
+| UseUseExplosion.rb:20:1169:20:1178 | ... > ... | UseUseExplosion.rb:20:1168:20:1179 | [true] ( ... ) |
+| UseUseExplosion.rb:20:1181:20:2804 | then ... | UseUseExplosion.rb:20:1165:20:2820 | if ... |
+| UseUseExplosion.rb:20:1186:20:2804 | SSA phi read(self) | UseUseExplosion.rb:20:1165:20:2820 | SSA phi read(self) |
+| UseUseExplosion.rb:20:1186:20:2804 | SSA phi read(x) | UseUseExplosion.rb:20:1165:20:2820 | SSA phi read(x) |
+| UseUseExplosion.rb:20:1186:20:2804 | if ... | UseUseExplosion.rb:20:1181:20:2804 | then ... |
+| UseUseExplosion.rb:20:1190:20:1194 | [post] self | UseUseExplosion.rb:20:1211:20:1215 | self |
+| UseUseExplosion.rb:20:1190:20:1194 | [post] self | UseUseExplosion.rb:20:2795:20:2800 | self |
+| UseUseExplosion.rb:20:1190:20:1194 | self | UseUseExplosion.rb:20:1211:20:1215 | self |
+| UseUseExplosion.rb:20:1190:20:1194 | self | UseUseExplosion.rb:20:2795:20:2800 | self |
+| UseUseExplosion.rb:20:1190:20:1199 | ... > ... | UseUseExplosion.rb:20:1189:20:1200 | [false] ( ... ) |
+| UseUseExplosion.rb:20:1190:20:1199 | ... > ... | UseUseExplosion.rb:20:1189:20:1200 | [true] ( ... ) |
+| UseUseExplosion.rb:20:1202:20:2788 | then ... | UseUseExplosion.rb:20:1186:20:2804 | if ... |
+| UseUseExplosion.rb:20:1207:20:2788 | SSA phi read(self) | UseUseExplosion.rb:20:1186:20:2804 | SSA phi read(self) |
+| UseUseExplosion.rb:20:1207:20:2788 | SSA phi read(x) | UseUseExplosion.rb:20:1186:20:2804 | SSA phi read(x) |
+| UseUseExplosion.rb:20:1207:20:2788 | if ... | UseUseExplosion.rb:20:1202:20:2788 | then ... |
+| UseUseExplosion.rb:20:1211:20:1215 | [post] self | UseUseExplosion.rb:20:1232:20:1236 | self |
+| UseUseExplosion.rb:20:1211:20:1215 | [post] self | UseUseExplosion.rb:20:2779:20:2784 | self |
+| UseUseExplosion.rb:20:1211:20:1215 | self | UseUseExplosion.rb:20:1232:20:1236 | self |
+| UseUseExplosion.rb:20:1211:20:1215 | self | UseUseExplosion.rb:20:2779:20:2784 | self |
+| UseUseExplosion.rb:20:1211:20:1220 | ... > ... | UseUseExplosion.rb:20:1210:20:1221 | [false] ( ... ) |
+| UseUseExplosion.rb:20:1211:20:1220 | ... > ... | UseUseExplosion.rb:20:1210:20:1221 | [true] ( ... ) |
+| UseUseExplosion.rb:20:1223:20:2772 | then ... | UseUseExplosion.rb:20:1207:20:2788 | if ... |
+| UseUseExplosion.rb:20:1228:20:2772 | SSA phi read(self) | UseUseExplosion.rb:20:1207:20:2788 | SSA phi read(self) |
+| UseUseExplosion.rb:20:1228:20:2772 | SSA phi read(x) | UseUseExplosion.rb:20:1207:20:2788 | SSA phi read(x) |
+| UseUseExplosion.rb:20:1228:20:2772 | if ... | UseUseExplosion.rb:20:1223:20:2772 | then ... |
+| UseUseExplosion.rb:20:1232:20:1236 | [post] self | UseUseExplosion.rb:20:1253:20:1257 | self |
+| UseUseExplosion.rb:20:1232:20:1236 | [post] self | UseUseExplosion.rb:20:2763:20:2768 | self |
+| UseUseExplosion.rb:20:1232:20:1236 | self | UseUseExplosion.rb:20:1253:20:1257 | self |
+| UseUseExplosion.rb:20:1232:20:1236 | self | UseUseExplosion.rb:20:2763:20:2768 | self |
+| UseUseExplosion.rb:20:1232:20:1241 | ... > ... | UseUseExplosion.rb:20:1231:20:1242 | [false] ( ... ) |
+| UseUseExplosion.rb:20:1232:20:1241 | ... > ... | UseUseExplosion.rb:20:1231:20:1242 | [true] ( ... ) |
+| UseUseExplosion.rb:20:1244:20:2756 | then ... | UseUseExplosion.rb:20:1228:20:2772 | if ... |
+| UseUseExplosion.rb:20:1249:20:2756 | SSA phi read(self) | UseUseExplosion.rb:20:1228:20:2772 | SSA phi read(self) |
+| UseUseExplosion.rb:20:1249:20:2756 | SSA phi read(x) | UseUseExplosion.rb:20:1228:20:2772 | SSA phi read(x) |
+| UseUseExplosion.rb:20:1249:20:2756 | if ... | UseUseExplosion.rb:20:1244:20:2756 | then ... |
+| UseUseExplosion.rb:20:1253:20:1257 | [post] self | UseUseExplosion.rb:20:1274:20:1278 | self |
+| UseUseExplosion.rb:20:1253:20:1257 | [post] self | UseUseExplosion.rb:20:2747:20:2752 | self |
+| UseUseExplosion.rb:20:1253:20:1257 | self | UseUseExplosion.rb:20:1274:20:1278 | self |
+| UseUseExplosion.rb:20:1253:20:1257 | self | UseUseExplosion.rb:20:2747:20:2752 | self |
+| UseUseExplosion.rb:20:1253:20:1262 | ... > ... | UseUseExplosion.rb:20:1252:20:1263 | [false] ( ... ) |
+| UseUseExplosion.rb:20:1253:20:1262 | ... > ... | UseUseExplosion.rb:20:1252:20:1263 | [true] ( ... ) |
+| UseUseExplosion.rb:20:1265:20:2740 | then ... | UseUseExplosion.rb:20:1249:20:2756 | if ... |
+| UseUseExplosion.rb:20:1270:20:2740 | SSA phi read(self) | UseUseExplosion.rb:20:1249:20:2756 | SSA phi read(self) |
+| UseUseExplosion.rb:20:1270:20:2740 | SSA phi read(x) | UseUseExplosion.rb:20:1249:20:2756 | SSA phi read(x) |
+| UseUseExplosion.rb:20:1270:20:2740 | if ... | UseUseExplosion.rb:20:1265:20:2740 | then ... |
+| UseUseExplosion.rb:20:1274:20:1278 | [post] self | UseUseExplosion.rb:20:1295:20:1299 | self |
+| UseUseExplosion.rb:20:1274:20:1278 | [post] self | UseUseExplosion.rb:20:2731:20:2736 | self |
+| UseUseExplosion.rb:20:1274:20:1278 | self | UseUseExplosion.rb:20:1295:20:1299 | self |
+| UseUseExplosion.rb:20:1274:20:1278 | self | UseUseExplosion.rb:20:2731:20:2736 | self |
+| UseUseExplosion.rb:20:1274:20:1283 | ... > ... | UseUseExplosion.rb:20:1273:20:1284 | [false] ( ... ) |
+| UseUseExplosion.rb:20:1274:20:1283 | ... > ... | UseUseExplosion.rb:20:1273:20:1284 | [true] ( ... ) |
+| UseUseExplosion.rb:20:1286:20:2724 | then ... | UseUseExplosion.rb:20:1270:20:2740 | if ... |
+| UseUseExplosion.rb:20:1291:20:2724 | SSA phi read(self) | UseUseExplosion.rb:20:1270:20:2740 | SSA phi read(self) |
+| UseUseExplosion.rb:20:1291:20:2724 | SSA phi read(x) | UseUseExplosion.rb:20:1270:20:2740 | SSA phi read(x) |
+| UseUseExplosion.rb:20:1291:20:2724 | if ... | UseUseExplosion.rb:20:1286:20:2724 | then ... |
+| UseUseExplosion.rb:20:1295:20:1299 | [post] self | UseUseExplosion.rb:20:1316:20:1320 | self |
+| UseUseExplosion.rb:20:1295:20:1299 | [post] self | UseUseExplosion.rb:20:2715:20:2720 | self |
+| UseUseExplosion.rb:20:1295:20:1299 | self | UseUseExplosion.rb:20:1316:20:1320 | self |
+| UseUseExplosion.rb:20:1295:20:1299 | self | UseUseExplosion.rb:20:2715:20:2720 | self |
+| UseUseExplosion.rb:20:1295:20:1304 | ... > ... | UseUseExplosion.rb:20:1294:20:1305 | [false] ( ... ) |
+| UseUseExplosion.rb:20:1295:20:1304 | ... > ... | UseUseExplosion.rb:20:1294:20:1305 | [true] ( ... ) |
+| UseUseExplosion.rb:20:1307:20:2708 | then ... | UseUseExplosion.rb:20:1291:20:2724 | if ... |
+| UseUseExplosion.rb:20:1312:20:2708 | SSA phi read(self) | UseUseExplosion.rb:20:1291:20:2724 | SSA phi read(self) |
+| UseUseExplosion.rb:20:1312:20:2708 | SSA phi read(x) | UseUseExplosion.rb:20:1291:20:2724 | SSA phi read(x) |
+| UseUseExplosion.rb:20:1312:20:2708 | if ... | UseUseExplosion.rb:20:1307:20:2708 | then ... |
+| UseUseExplosion.rb:20:1316:20:1320 | [post] self | UseUseExplosion.rb:20:1337:20:1341 | self |
+| UseUseExplosion.rb:20:1316:20:1320 | [post] self | UseUseExplosion.rb:20:2699:20:2704 | self |
+| UseUseExplosion.rb:20:1316:20:1320 | self | UseUseExplosion.rb:20:1337:20:1341 | self |
+| UseUseExplosion.rb:20:1316:20:1320 | self | UseUseExplosion.rb:20:2699:20:2704 | self |
+| UseUseExplosion.rb:20:1316:20:1325 | ... > ... | UseUseExplosion.rb:20:1315:20:1326 | [false] ( ... ) |
+| UseUseExplosion.rb:20:1316:20:1325 | ... > ... | UseUseExplosion.rb:20:1315:20:1326 | [true] ( ... ) |
+| UseUseExplosion.rb:20:1328:20:2692 | then ... | UseUseExplosion.rb:20:1312:20:2708 | if ... |
+| UseUseExplosion.rb:20:1333:20:2692 | SSA phi read(self) | UseUseExplosion.rb:20:1312:20:2708 | SSA phi read(self) |
+| UseUseExplosion.rb:20:1333:20:2692 | SSA phi read(x) | UseUseExplosion.rb:20:1312:20:2708 | SSA phi read(x) |
+| UseUseExplosion.rb:20:1333:20:2692 | if ... | UseUseExplosion.rb:20:1328:20:2692 | then ... |
+| UseUseExplosion.rb:20:1337:20:1341 | [post] self | UseUseExplosion.rb:20:1358:20:1362 | self |
+| UseUseExplosion.rb:20:1337:20:1341 | [post] self | UseUseExplosion.rb:20:2683:20:2688 | self |
+| UseUseExplosion.rb:20:1337:20:1341 | self | UseUseExplosion.rb:20:1358:20:1362 | self |
+| UseUseExplosion.rb:20:1337:20:1341 | self | UseUseExplosion.rb:20:2683:20:2688 | self |
+| UseUseExplosion.rb:20:1337:20:1346 | ... > ... | UseUseExplosion.rb:20:1336:20:1347 | [false] ( ... ) |
+| UseUseExplosion.rb:20:1337:20:1346 | ... > ... | UseUseExplosion.rb:20:1336:20:1347 | [true] ( ... ) |
+| UseUseExplosion.rb:20:1349:20:2676 | then ... | UseUseExplosion.rb:20:1333:20:2692 | if ... |
+| UseUseExplosion.rb:20:1354:20:2676 | SSA phi read(self) | UseUseExplosion.rb:20:1333:20:2692 | SSA phi read(self) |
+| UseUseExplosion.rb:20:1354:20:2676 | SSA phi read(x) | UseUseExplosion.rb:20:1333:20:2692 | SSA phi read(x) |
+| UseUseExplosion.rb:20:1354:20:2676 | if ... | UseUseExplosion.rb:20:1349:20:2676 | then ... |
+| UseUseExplosion.rb:20:1358:20:1362 | [post] self | UseUseExplosion.rb:20:1379:20:1383 | self |
+| UseUseExplosion.rb:20:1358:20:1362 | [post] self | UseUseExplosion.rb:20:2667:20:2672 | self |
+| UseUseExplosion.rb:20:1358:20:1362 | self | UseUseExplosion.rb:20:1379:20:1383 | self |
+| UseUseExplosion.rb:20:1358:20:1362 | self | UseUseExplosion.rb:20:2667:20:2672 | self |
+| UseUseExplosion.rb:20:1358:20:1367 | ... > ... | UseUseExplosion.rb:20:1357:20:1368 | [false] ( ... ) |
+| UseUseExplosion.rb:20:1358:20:1367 | ... > ... | UseUseExplosion.rb:20:1357:20:1368 | [true] ( ... ) |
+| UseUseExplosion.rb:20:1370:20:2660 | then ... | UseUseExplosion.rb:20:1354:20:2676 | if ... |
+| UseUseExplosion.rb:20:1375:20:2660 | SSA phi read(self) | UseUseExplosion.rb:20:1354:20:2676 | SSA phi read(self) |
+| UseUseExplosion.rb:20:1375:20:2660 | SSA phi read(x) | UseUseExplosion.rb:20:1354:20:2676 | SSA phi read(x) |
+| UseUseExplosion.rb:20:1375:20:2660 | if ... | UseUseExplosion.rb:20:1370:20:2660 | then ... |
+| UseUseExplosion.rb:20:1379:20:1383 | [post] self | UseUseExplosion.rb:20:1400:20:1404 | self |
+| UseUseExplosion.rb:20:1379:20:1383 | [post] self | UseUseExplosion.rb:20:2651:20:2656 | self |
+| UseUseExplosion.rb:20:1379:20:1383 | self | UseUseExplosion.rb:20:1400:20:1404 | self |
+| UseUseExplosion.rb:20:1379:20:1383 | self | UseUseExplosion.rb:20:2651:20:2656 | self |
+| UseUseExplosion.rb:20:1379:20:1388 | ... > ... | UseUseExplosion.rb:20:1378:20:1389 | [false] ( ... ) |
+| UseUseExplosion.rb:20:1379:20:1388 | ... > ... | UseUseExplosion.rb:20:1378:20:1389 | [true] ( ... ) |
+| UseUseExplosion.rb:20:1391:20:2644 | then ... | UseUseExplosion.rb:20:1375:20:2660 | if ... |
+| UseUseExplosion.rb:20:1396:20:2644 | SSA phi read(self) | UseUseExplosion.rb:20:1375:20:2660 | SSA phi read(self) |
+| UseUseExplosion.rb:20:1396:20:2644 | SSA phi read(x) | UseUseExplosion.rb:20:1375:20:2660 | SSA phi read(x) |
+| UseUseExplosion.rb:20:1396:20:2644 | if ... | UseUseExplosion.rb:20:1391:20:2644 | then ... |
+| UseUseExplosion.rb:20:1400:20:1404 | [post] self | UseUseExplosion.rb:20:1421:20:1425 | self |
+| UseUseExplosion.rb:20:1400:20:1404 | [post] self | UseUseExplosion.rb:20:2635:20:2640 | self |
+| UseUseExplosion.rb:20:1400:20:1404 | self | UseUseExplosion.rb:20:1421:20:1425 | self |
+| UseUseExplosion.rb:20:1400:20:1404 | self | UseUseExplosion.rb:20:2635:20:2640 | self |
+| UseUseExplosion.rb:20:1400:20:1409 | ... > ... | UseUseExplosion.rb:20:1399:20:1410 | [false] ( ... ) |
+| UseUseExplosion.rb:20:1400:20:1409 | ... > ... | UseUseExplosion.rb:20:1399:20:1410 | [true] ( ... ) |
+| UseUseExplosion.rb:20:1412:20:2628 | then ... | UseUseExplosion.rb:20:1396:20:2644 | if ... |
+| UseUseExplosion.rb:20:1417:20:2628 | SSA phi read(self) | UseUseExplosion.rb:20:1396:20:2644 | SSA phi read(self) |
+| UseUseExplosion.rb:20:1417:20:2628 | SSA phi read(x) | UseUseExplosion.rb:20:1396:20:2644 | SSA phi read(x) |
+| UseUseExplosion.rb:20:1417:20:2628 | if ... | UseUseExplosion.rb:20:1412:20:2628 | then ... |
+| UseUseExplosion.rb:20:1421:20:1425 | [post] self | UseUseExplosion.rb:20:1442:20:1446 | self |
+| UseUseExplosion.rb:20:1421:20:1425 | [post] self | UseUseExplosion.rb:20:2619:20:2624 | self |
+| UseUseExplosion.rb:20:1421:20:1425 | self | UseUseExplosion.rb:20:1442:20:1446 | self |
+| UseUseExplosion.rb:20:1421:20:1425 | self | UseUseExplosion.rb:20:2619:20:2624 | self |
+| UseUseExplosion.rb:20:1421:20:1430 | ... > ... | UseUseExplosion.rb:20:1420:20:1431 | [false] ( ... ) |
+| UseUseExplosion.rb:20:1421:20:1430 | ... > ... | UseUseExplosion.rb:20:1420:20:1431 | [true] ( ... ) |
+| UseUseExplosion.rb:20:1433:20:2612 | then ... | UseUseExplosion.rb:20:1417:20:2628 | if ... |
+| UseUseExplosion.rb:20:1438:20:2612 | SSA phi read(self) | UseUseExplosion.rb:20:1417:20:2628 | SSA phi read(self) |
+| UseUseExplosion.rb:20:1438:20:2612 | SSA phi read(x) | UseUseExplosion.rb:20:1417:20:2628 | SSA phi read(x) |
+| UseUseExplosion.rb:20:1438:20:2612 | if ... | UseUseExplosion.rb:20:1433:20:2612 | then ... |
+| UseUseExplosion.rb:20:1442:20:1446 | [post] self | UseUseExplosion.rb:20:1463:20:1467 | self |
+| UseUseExplosion.rb:20:1442:20:1446 | [post] self | UseUseExplosion.rb:20:2603:20:2608 | self |
+| UseUseExplosion.rb:20:1442:20:1446 | self | UseUseExplosion.rb:20:1463:20:1467 | self |
+| UseUseExplosion.rb:20:1442:20:1446 | self | UseUseExplosion.rb:20:2603:20:2608 | self |
+| UseUseExplosion.rb:20:1442:20:1451 | ... > ... | UseUseExplosion.rb:20:1441:20:1452 | [false] ( ... ) |
+| UseUseExplosion.rb:20:1442:20:1451 | ... > ... | UseUseExplosion.rb:20:1441:20:1452 | [true] ( ... ) |
+| UseUseExplosion.rb:20:1454:20:2596 | then ... | UseUseExplosion.rb:20:1438:20:2612 | if ... |
+| UseUseExplosion.rb:20:1459:20:2596 | SSA phi read(self) | UseUseExplosion.rb:20:1438:20:2612 | SSA phi read(self) |
+| UseUseExplosion.rb:20:1459:20:2596 | SSA phi read(x) | UseUseExplosion.rb:20:1438:20:2612 | SSA phi read(x) |
+| UseUseExplosion.rb:20:1459:20:2596 | if ... | UseUseExplosion.rb:20:1454:20:2596 | then ... |
+| UseUseExplosion.rb:20:1463:20:1467 | [post] self | UseUseExplosion.rb:20:1484:20:1488 | self |
+| UseUseExplosion.rb:20:1463:20:1467 | [post] self | UseUseExplosion.rb:20:2587:20:2592 | self |
+| UseUseExplosion.rb:20:1463:20:1467 | self | UseUseExplosion.rb:20:1484:20:1488 | self |
+| UseUseExplosion.rb:20:1463:20:1467 | self | UseUseExplosion.rb:20:2587:20:2592 | self |
+| UseUseExplosion.rb:20:1463:20:1472 | ... > ... | UseUseExplosion.rb:20:1462:20:1473 | [false] ( ... ) |
+| UseUseExplosion.rb:20:1463:20:1472 | ... > ... | UseUseExplosion.rb:20:1462:20:1473 | [true] ( ... ) |
+| UseUseExplosion.rb:20:1475:20:2580 | then ... | UseUseExplosion.rb:20:1459:20:2596 | if ... |
+| UseUseExplosion.rb:20:1480:20:2580 | SSA phi read(self) | UseUseExplosion.rb:20:1459:20:2596 | SSA phi read(self) |
+| UseUseExplosion.rb:20:1480:20:2580 | SSA phi read(x) | UseUseExplosion.rb:20:1459:20:2596 | SSA phi read(x) |
+| UseUseExplosion.rb:20:1480:20:2580 | if ... | UseUseExplosion.rb:20:1475:20:2580 | then ... |
+| UseUseExplosion.rb:20:1484:20:1488 | [post] self | UseUseExplosion.rb:20:1505:20:1509 | self |
+| UseUseExplosion.rb:20:1484:20:1488 | [post] self | UseUseExplosion.rb:20:2571:20:2576 | self |
+| UseUseExplosion.rb:20:1484:20:1488 | self | UseUseExplosion.rb:20:1505:20:1509 | self |
+| UseUseExplosion.rb:20:1484:20:1488 | self | UseUseExplosion.rb:20:2571:20:2576 | self |
+| UseUseExplosion.rb:20:1484:20:1493 | ... > ... | UseUseExplosion.rb:20:1483:20:1494 | [false] ( ... ) |
+| UseUseExplosion.rb:20:1484:20:1493 | ... > ... | UseUseExplosion.rb:20:1483:20:1494 | [true] ( ... ) |
+| UseUseExplosion.rb:20:1496:20:2564 | then ... | UseUseExplosion.rb:20:1480:20:2580 | if ... |
+| UseUseExplosion.rb:20:1501:20:2564 | SSA phi read(self) | UseUseExplosion.rb:20:1480:20:2580 | SSA phi read(self) |
+| UseUseExplosion.rb:20:1501:20:2564 | SSA phi read(x) | UseUseExplosion.rb:20:1480:20:2580 | SSA phi read(x) |
+| UseUseExplosion.rb:20:1501:20:2564 | if ... | UseUseExplosion.rb:20:1496:20:2564 | then ... |
+| UseUseExplosion.rb:20:1505:20:1509 | [post] self | UseUseExplosion.rb:20:1526:20:1530 | self |
+| UseUseExplosion.rb:20:1505:20:1509 | [post] self | UseUseExplosion.rb:20:2555:20:2560 | self |
+| UseUseExplosion.rb:20:1505:20:1509 | self | UseUseExplosion.rb:20:1526:20:1530 | self |
+| UseUseExplosion.rb:20:1505:20:1509 | self | UseUseExplosion.rb:20:2555:20:2560 | self |
+| UseUseExplosion.rb:20:1505:20:1514 | ... > ... | UseUseExplosion.rb:20:1504:20:1515 | [false] ( ... ) |
+| UseUseExplosion.rb:20:1505:20:1514 | ... > ... | UseUseExplosion.rb:20:1504:20:1515 | [true] ( ... ) |
+| UseUseExplosion.rb:20:1517:20:2548 | then ... | UseUseExplosion.rb:20:1501:20:2564 | if ... |
+| UseUseExplosion.rb:20:1522:20:2548 | SSA phi read(self) | UseUseExplosion.rb:20:1501:20:2564 | SSA phi read(self) |
+| UseUseExplosion.rb:20:1522:20:2548 | SSA phi read(x) | UseUseExplosion.rb:20:1501:20:2564 | SSA phi read(x) |
+| UseUseExplosion.rb:20:1522:20:2548 | if ... | UseUseExplosion.rb:20:1517:20:2548 | then ... |
+| UseUseExplosion.rb:20:1526:20:1530 | [post] self | UseUseExplosion.rb:20:1547:20:1551 | self |
+| UseUseExplosion.rb:20:1526:20:1530 | [post] self | UseUseExplosion.rb:20:2539:20:2544 | self |
+| UseUseExplosion.rb:20:1526:20:1530 | self | UseUseExplosion.rb:20:1547:20:1551 | self |
+| UseUseExplosion.rb:20:1526:20:1530 | self | UseUseExplosion.rb:20:2539:20:2544 | self |
+| UseUseExplosion.rb:20:1526:20:1535 | ... > ... | UseUseExplosion.rb:20:1525:20:1536 | [false] ( ... ) |
+| UseUseExplosion.rb:20:1526:20:1535 | ... > ... | UseUseExplosion.rb:20:1525:20:1536 | [true] ( ... ) |
+| UseUseExplosion.rb:20:1538:20:2532 | then ... | UseUseExplosion.rb:20:1522:20:2548 | if ... |
+| UseUseExplosion.rb:20:1543:20:2532 | SSA phi read(self) | UseUseExplosion.rb:20:1522:20:2548 | SSA phi read(self) |
+| UseUseExplosion.rb:20:1543:20:2532 | SSA phi read(x) | UseUseExplosion.rb:20:1522:20:2548 | SSA phi read(x) |
+| UseUseExplosion.rb:20:1543:20:2532 | if ... | UseUseExplosion.rb:20:1538:20:2532 | then ... |
+| UseUseExplosion.rb:20:1547:20:1551 | [post] self | UseUseExplosion.rb:20:1568:20:1572 | self |
+| UseUseExplosion.rb:20:1547:20:1551 | [post] self | UseUseExplosion.rb:20:2523:20:2528 | self |
+| UseUseExplosion.rb:20:1547:20:1551 | self | UseUseExplosion.rb:20:1568:20:1572 | self |
+| UseUseExplosion.rb:20:1547:20:1551 | self | UseUseExplosion.rb:20:2523:20:2528 | self |
+| UseUseExplosion.rb:20:1547:20:1556 | ... > ... | UseUseExplosion.rb:20:1546:20:1557 | [false] ( ... ) |
+| UseUseExplosion.rb:20:1547:20:1556 | ... > ... | UseUseExplosion.rb:20:1546:20:1557 | [true] ( ... ) |
+| UseUseExplosion.rb:20:1559:20:2516 | then ... | UseUseExplosion.rb:20:1543:20:2532 | if ... |
+| UseUseExplosion.rb:20:1564:20:2516 | SSA phi read(self) | UseUseExplosion.rb:20:1543:20:2532 | SSA phi read(self) |
+| UseUseExplosion.rb:20:1564:20:2516 | SSA phi read(x) | UseUseExplosion.rb:20:1543:20:2532 | SSA phi read(x) |
+| UseUseExplosion.rb:20:1564:20:2516 | if ... | UseUseExplosion.rb:20:1559:20:2516 | then ... |
+| UseUseExplosion.rb:20:1568:20:1572 | [post] self | UseUseExplosion.rb:20:1589:20:1593 | self |
+| UseUseExplosion.rb:20:1568:20:1572 | [post] self | UseUseExplosion.rb:20:2507:20:2512 | self |
+| UseUseExplosion.rb:20:1568:20:1572 | self | UseUseExplosion.rb:20:1589:20:1593 | self |
+| UseUseExplosion.rb:20:1568:20:1572 | self | UseUseExplosion.rb:20:2507:20:2512 | self |
+| UseUseExplosion.rb:20:1568:20:1577 | ... > ... | UseUseExplosion.rb:20:1567:20:1578 | [false] ( ... ) |
+| UseUseExplosion.rb:20:1568:20:1577 | ... > ... | UseUseExplosion.rb:20:1567:20:1578 | [true] ( ... ) |
+| UseUseExplosion.rb:20:1580:20:2500 | then ... | UseUseExplosion.rb:20:1564:20:2516 | if ... |
+| UseUseExplosion.rb:20:1585:20:2500 | SSA phi read(self) | UseUseExplosion.rb:20:1564:20:2516 | SSA phi read(self) |
+| UseUseExplosion.rb:20:1585:20:2500 | SSA phi read(x) | UseUseExplosion.rb:20:1564:20:2516 | SSA phi read(x) |
+| UseUseExplosion.rb:20:1585:20:2500 | if ... | UseUseExplosion.rb:20:1580:20:2500 | then ... |
+| UseUseExplosion.rb:20:1589:20:1593 | [post] self | UseUseExplosion.rb:20:1610:20:1614 | self |
+| UseUseExplosion.rb:20:1589:20:1593 | [post] self | UseUseExplosion.rb:20:2491:20:2496 | self |
+| UseUseExplosion.rb:20:1589:20:1593 | self | UseUseExplosion.rb:20:1610:20:1614 | self |
+| UseUseExplosion.rb:20:1589:20:1593 | self | UseUseExplosion.rb:20:2491:20:2496 | self |
+| UseUseExplosion.rb:20:1589:20:1598 | ... > ... | UseUseExplosion.rb:20:1588:20:1599 | [false] ( ... ) |
+| UseUseExplosion.rb:20:1589:20:1598 | ... > ... | UseUseExplosion.rb:20:1588:20:1599 | [true] ( ... ) |
+| UseUseExplosion.rb:20:1601:20:2484 | then ... | UseUseExplosion.rb:20:1585:20:2500 | if ... |
+| UseUseExplosion.rb:20:1606:20:2484 | SSA phi read(self) | UseUseExplosion.rb:20:1585:20:2500 | SSA phi read(self) |
+| UseUseExplosion.rb:20:1606:20:2484 | SSA phi read(x) | UseUseExplosion.rb:20:1585:20:2500 | SSA phi read(x) |
+| UseUseExplosion.rb:20:1606:20:2484 | if ... | UseUseExplosion.rb:20:1601:20:2484 | then ... |
+| UseUseExplosion.rb:20:1610:20:1614 | [post] self | UseUseExplosion.rb:20:1631:20:1635 | self |
+| UseUseExplosion.rb:20:1610:20:1614 | [post] self | UseUseExplosion.rb:20:2475:20:2480 | self |
+| UseUseExplosion.rb:20:1610:20:1614 | self | UseUseExplosion.rb:20:1631:20:1635 | self |
+| UseUseExplosion.rb:20:1610:20:1614 | self | UseUseExplosion.rb:20:2475:20:2480 | self |
+| UseUseExplosion.rb:20:1610:20:1619 | ... > ... | UseUseExplosion.rb:20:1609:20:1620 | [false] ( ... ) |
+| UseUseExplosion.rb:20:1610:20:1619 | ... > ... | UseUseExplosion.rb:20:1609:20:1620 | [true] ( ... ) |
+| UseUseExplosion.rb:20:1622:20:2468 | then ... | UseUseExplosion.rb:20:1606:20:2484 | if ... |
+| UseUseExplosion.rb:20:1627:20:2468 | SSA phi read(self) | UseUseExplosion.rb:20:1606:20:2484 | SSA phi read(self) |
+| UseUseExplosion.rb:20:1627:20:2468 | SSA phi read(x) | UseUseExplosion.rb:20:1606:20:2484 | SSA phi read(x) |
+| UseUseExplosion.rb:20:1627:20:2468 | if ... | UseUseExplosion.rb:20:1622:20:2468 | then ... |
+| UseUseExplosion.rb:20:1631:20:1635 | [post] self | UseUseExplosion.rb:20:1652:20:1656 | self |
+| UseUseExplosion.rb:20:1631:20:1635 | [post] self | UseUseExplosion.rb:20:2459:20:2464 | self |
+| UseUseExplosion.rb:20:1631:20:1635 | self | UseUseExplosion.rb:20:1652:20:1656 | self |
+| UseUseExplosion.rb:20:1631:20:1635 | self | UseUseExplosion.rb:20:2459:20:2464 | self |
+| UseUseExplosion.rb:20:1631:20:1640 | ... > ... | UseUseExplosion.rb:20:1630:20:1641 | [false] ( ... ) |
+| UseUseExplosion.rb:20:1631:20:1640 | ... > ... | UseUseExplosion.rb:20:1630:20:1641 | [true] ( ... ) |
+| UseUseExplosion.rb:20:1643:20:2452 | then ... | UseUseExplosion.rb:20:1627:20:2468 | if ... |
+| UseUseExplosion.rb:20:1648:20:2452 | SSA phi read(self) | UseUseExplosion.rb:20:1627:20:2468 | SSA phi read(self) |
+| UseUseExplosion.rb:20:1648:20:2452 | SSA phi read(x) | UseUseExplosion.rb:20:1627:20:2468 | SSA phi read(x) |
+| UseUseExplosion.rb:20:1648:20:2452 | if ... | UseUseExplosion.rb:20:1643:20:2452 | then ... |
+| UseUseExplosion.rb:20:1652:20:1656 | [post] self | UseUseExplosion.rb:20:1673:20:1677 | self |
+| UseUseExplosion.rb:20:1652:20:1656 | [post] self | UseUseExplosion.rb:20:2443:20:2448 | self |
+| UseUseExplosion.rb:20:1652:20:1656 | self | UseUseExplosion.rb:20:1673:20:1677 | self |
+| UseUseExplosion.rb:20:1652:20:1656 | self | UseUseExplosion.rb:20:2443:20:2448 | self |
+| UseUseExplosion.rb:20:1652:20:1661 | ... > ... | UseUseExplosion.rb:20:1651:20:1662 | [false] ( ... ) |
+| UseUseExplosion.rb:20:1652:20:1661 | ... > ... | UseUseExplosion.rb:20:1651:20:1662 | [true] ( ... ) |
+| UseUseExplosion.rb:20:1664:20:2436 | then ... | UseUseExplosion.rb:20:1648:20:2452 | if ... |
+| UseUseExplosion.rb:20:1669:20:2436 | SSA phi read(self) | UseUseExplosion.rb:20:1648:20:2452 | SSA phi read(self) |
+| UseUseExplosion.rb:20:1669:20:2436 | SSA phi read(x) | UseUseExplosion.rb:20:1648:20:2452 | SSA phi read(x) |
+| UseUseExplosion.rb:20:1669:20:2436 | if ... | UseUseExplosion.rb:20:1664:20:2436 | then ... |
+| UseUseExplosion.rb:20:1673:20:1677 | [post] self | UseUseExplosion.rb:20:1694:20:1698 | self |
+| UseUseExplosion.rb:20:1673:20:1677 | [post] self | UseUseExplosion.rb:20:2427:20:2432 | self |
+| UseUseExplosion.rb:20:1673:20:1677 | self | UseUseExplosion.rb:20:1694:20:1698 | self |
+| UseUseExplosion.rb:20:1673:20:1677 | self | UseUseExplosion.rb:20:2427:20:2432 | self |
+| UseUseExplosion.rb:20:1673:20:1682 | ... > ... | UseUseExplosion.rb:20:1672:20:1683 | [false] ( ... ) |
+| UseUseExplosion.rb:20:1673:20:1682 | ... > ... | UseUseExplosion.rb:20:1672:20:1683 | [true] ( ... ) |
+| UseUseExplosion.rb:20:1685:20:2420 | then ... | UseUseExplosion.rb:20:1669:20:2436 | if ... |
+| UseUseExplosion.rb:20:1690:20:2420 | SSA phi read(self) | UseUseExplosion.rb:20:1669:20:2436 | SSA phi read(self) |
+| UseUseExplosion.rb:20:1690:20:2420 | SSA phi read(x) | UseUseExplosion.rb:20:1669:20:2436 | SSA phi read(x) |
+| UseUseExplosion.rb:20:1690:20:2420 | if ... | UseUseExplosion.rb:20:1685:20:2420 | then ... |
+| UseUseExplosion.rb:20:1694:20:1698 | [post] self | UseUseExplosion.rb:20:1715:20:1719 | self |
+| UseUseExplosion.rb:20:1694:20:1698 | [post] self | UseUseExplosion.rb:20:2411:20:2416 | self |
+| UseUseExplosion.rb:20:1694:20:1698 | self | UseUseExplosion.rb:20:1715:20:1719 | self |
+| UseUseExplosion.rb:20:1694:20:1698 | self | UseUseExplosion.rb:20:2411:20:2416 | self |
+| UseUseExplosion.rb:20:1694:20:1703 | ... > ... | UseUseExplosion.rb:20:1693:20:1704 | [false] ( ... ) |
+| UseUseExplosion.rb:20:1694:20:1703 | ... > ... | UseUseExplosion.rb:20:1693:20:1704 | [true] ( ... ) |
+| UseUseExplosion.rb:20:1706:20:2404 | then ... | UseUseExplosion.rb:20:1690:20:2420 | if ... |
+| UseUseExplosion.rb:20:1711:20:2404 | SSA phi read(self) | UseUseExplosion.rb:20:1690:20:2420 | SSA phi read(self) |
+| UseUseExplosion.rb:20:1711:20:2404 | SSA phi read(x) | UseUseExplosion.rb:20:1690:20:2420 | SSA phi read(x) |
+| UseUseExplosion.rb:20:1711:20:2404 | if ... | UseUseExplosion.rb:20:1706:20:2404 | then ... |
+| UseUseExplosion.rb:20:1715:20:1719 | [post] self | UseUseExplosion.rb:20:1736:20:1740 | self |
+| UseUseExplosion.rb:20:1715:20:1719 | [post] self | UseUseExplosion.rb:20:2395:20:2400 | self |
+| UseUseExplosion.rb:20:1715:20:1719 | self | UseUseExplosion.rb:20:1736:20:1740 | self |
+| UseUseExplosion.rb:20:1715:20:1719 | self | UseUseExplosion.rb:20:2395:20:2400 | self |
+| UseUseExplosion.rb:20:1715:20:1724 | ... > ... | UseUseExplosion.rb:20:1714:20:1725 | [false] ( ... ) |
+| UseUseExplosion.rb:20:1715:20:1724 | ... > ... | UseUseExplosion.rb:20:1714:20:1725 | [true] ( ... ) |
+| UseUseExplosion.rb:20:1727:20:2388 | then ... | UseUseExplosion.rb:20:1711:20:2404 | if ... |
+| UseUseExplosion.rb:20:1732:20:2388 | SSA phi read(self) | UseUseExplosion.rb:20:1711:20:2404 | SSA phi read(self) |
+| UseUseExplosion.rb:20:1732:20:2388 | SSA phi read(x) | UseUseExplosion.rb:20:1711:20:2404 | SSA phi read(x) |
+| UseUseExplosion.rb:20:1732:20:2388 | if ... | UseUseExplosion.rb:20:1727:20:2388 | then ... |
+| UseUseExplosion.rb:20:1736:20:1740 | [post] self | UseUseExplosion.rb:20:1757:20:1761 | self |
+| UseUseExplosion.rb:20:1736:20:1740 | [post] self | UseUseExplosion.rb:20:2379:20:2384 | self |
+| UseUseExplosion.rb:20:1736:20:1740 | self | UseUseExplosion.rb:20:1757:20:1761 | self |
+| UseUseExplosion.rb:20:1736:20:1740 | self | UseUseExplosion.rb:20:2379:20:2384 | self |
+| UseUseExplosion.rb:20:1736:20:1745 | ... > ... | UseUseExplosion.rb:20:1735:20:1746 | [false] ( ... ) |
+| UseUseExplosion.rb:20:1736:20:1745 | ... > ... | UseUseExplosion.rb:20:1735:20:1746 | [true] ( ... ) |
+| UseUseExplosion.rb:20:1748:20:2372 | then ... | UseUseExplosion.rb:20:1732:20:2388 | if ... |
+| UseUseExplosion.rb:20:1753:20:2372 | SSA phi read(self) | UseUseExplosion.rb:20:1732:20:2388 | SSA phi read(self) |
+| UseUseExplosion.rb:20:1753:20:2372 | SSA phi read(x) | UseUseExplosion.rb:20:1732:20:2388 | SSA phi read(x) |
+| UseUseExplosion.rb:20:1753:20:2372 | if ... | UseUseExplosion.rb:20:1748:20:2372 | then ... |
+| UseUseExplosion.rb:20:1757:20:1761 | [post] self | UseUseExplosion.rb:20:1778:20:1782 | self |
+| UseUseExplosion.rb:20:1757:20:1761 | [post] self | UseUseExplosion.rb:20:2363:20:2368 | self |
+| UseUseExplosion.rb:20:1757:20:1761 | self | UseUseExplosion.rb:20:1778:20:1782 | self |
+| UseUseExplosion.rb:20:1757:20:1761 | self | UseUseExplosion.rb:20:2363:20:2368 | self |
+| UseUseExplosion.rb:20:1757:20:1766 | ... > ... | UseUseExplosion.rb:20:1756:20:1767 | [false] ( ... ) |
+| UseUseExplosion.rb:20:1757:20:1766 | ... > ... | UseUseExplosion.rb:20:1756:20:1767 | [true] ( ... ) |
+| UseUseExplosion.rb:20:1769:20:2356 | then ... | UseUseExplosion.rb:20:1753:20:2372 | if ... |
+| UseUseExplosion.rb:20:1774:20:2356 | SSA phi read(self) | UseUseExplosion.rb:20:1753:20:2372 | SSA phi read(self) |
+| UseUseExplosion.rb:20:1774:20:2356 | SSA phi read(x) | UseUseExplosion.rb:20:1753:20:2372 | SSA phi read(x) |
+| UseUseExplosion.rb:20:1774:20:2356 | if ... | UseUseExplosion.rb:20:1769:20:2356 | then ... |
+| UseUseExplosion.rb:20:1778:20:1782 | [post] self | UseUseExplosion.rb:20:1799:20:1803 | self |
+| UseUseExplosion.rb:20:1778:20:1782 | [post] self | UseUseExplosion.rb:20:2347:20:2352 | self |
+| UseUseExplosion.rb:20:1778:20:1782 | self | UseUseExplosion.rb:20:1799:20:1803 | self |
+| UseUseExplosion.rb:20:1778:20:1782 | self | UseUseExplosion.rb:20:2347:20:2352 | self |
+| UseUseExplosion.rb:20:1778:20:1787 | ... > ... | UseUseExplosion.rb:20:1777:20:1788 | [false] ( ... ) |
+| UseUseExplosion.rb:20:1778:20:1787 | ... > ... | UseUseExplosion.rb:20:1777:20:1788 | [true] ( ... ) |
+| UseUseExplosion.rb:20:1790:20:2340 | then ... | UseUseExplosion.rb:20:1774:20:2356 | if ... |
+| UseUseExplosion.rb:20:1795:20:2340 | SSA phi read(self) | UseUseExplosion.rb:20:1774:20:2356 | SSA phi read(self) |
+| UseUseExplosion.rb:20:1795:20:2340 | SSA phi read(x) | UseUseExplosion.rb:20:1774:20:2356 | SSA phi read(x) |
+| UseUseExplosion.rb:20:1795:20:2340 | if ... | UseUseExplosion.rb:20:1790:20:2340 | then ... |
+| UseUseExplosion.rb:20:1799:20:1803 | [post] self | UseUseExplosion.rb:20:1820:20:1824 | self |
+| UseUseExplosion.rb:20:1799:20:1803 | [post] self | UseUseExplosion.rb:20:2331:20:2336 | self |
+| UseUseExplosion.rb:20:1799:20:1803 | self | UseUseExplosion.rb:20:1820:20:1824 | self |
+| UseUseExplosion.rb:20:1799:20:1803 | self | UseUseExplosion.rb:20:2331:20:2336 | self |
+| UseUseExplosion.rb:20:1799:20:1808 | ... > ... | UseUseExplosion.rb:20:1798:20:1809 | [false] ( ... ) |
+| UseUseExplosion.rb:20:1799:20:1808 | ... > ... | UseUseExplosion.rb:20:1798:20:1809 | [true] ( ... ) |
+| UseUseExplosion.rb:20:1811:20:2324 | then ... | UseUseExplosion.rb:20:1795:20:2340 | if ... |
+| UseUseExplosion.rb:20:1816:20:2324 | SSA phi read(self) | UseUseExplosion.rb:20:1795:20:2340 | SSA phi read(self) |
+| UseUseExplosion.rb:20:1816:20:2324 | SSA phi read(x) | UseUseExplosion.rb:20:1795:20:2340 | SSA phi read(x) |
+| UseUseExplosion.rb:20:1816:20:2324 | if ... | UseUseExplosion.rb:20:1811:20:2324 | then ... |
+| UseUseExplosion.rb:20:1820:20:1824 | [post] self | UseUseExplosion.rb:20:1841:20:1845 | self |
+| UseUseExplosion.rb:20:1820:20:1824 | [post] self | UseUseExplosion.rb:20:2315:20:2320 | self |
+| UseUseExplosion.rb:20:1820:20:1824 | self | UseUseExplosion.rb:20:1841:20:1845 | self |
+| UseUseExplosion.rb:20:1820:20:1824 | self | UseUseExplosion.rb:20:2315:20:2320 | self |
+| UseUseExplosion.rb:20:1820:20:1829 | ... > ... | UseUseExplosion.rb:20:1819:20:1830 | [false] ( ... ) |
+| UseUseExplosion.rb:20:1820:20:1829 | ... > ... | UseUseExplosion.rb:20:1819:20:1830 | [true] ( ... ) |
+| UseUseExplosion.rb:20:1832:20:2308 | then ... | UseUseExplosion.rb:20:1816:20:2324 | if ... |
+| UseUseExplosion.rb:20:1837:20:2308 | SSA phi read(self) | UseUseExplosion.rb:20:1816:20:2324 | SSA phi read(self) |
+| UseUseExplosion.rb:20:1837:20:2308 | SSA phi read(x) | UseUseExplosion.rb:20:1816:20:2324 | SSA phi read(x) |
+| UseUseExplosion.rb:20:1837:20:2308 | if ... | UseUseExplosion.rb:20:1832:20:2308 | then ... |
+| UseUseExplosion.rb:20:1841:20:1845 | [post] self | UseUseExplosion.rb:20:1862:20:1866 | self |
+| UseUseExplosion.rb:20:1841:20:1845 | [post] self | UseUseExplosion.rb:20:2299:20:2304 | self |
+| UseUseExplosion.rb:20:1841:20:1845 | self | UseUseExplosion.rb:20:1862:20:1866 | self |
+| UseUseExplosion.rb:20:1841:20:1845 | self | UseUseExplosion.rb:20:2299:20:2304 | self |
+| UseUseExplosion.rb:20:1841:20:1850 | ... > ... | UseUseExplosion.rb:20:1840:20:1851 | [false] ( ... ) |
+| UseUseExplosion.rb:20:1841:20:1850 | ... > ... | UseUseExplosion.rb:20:1840:20:1851 | [true] ( ... ) |
+| UseUseExplosion.rb:20:1853:20:2292 | then ... | UseUseExplosion.rb:20:1837:20:2308 | if ... |
+| UseUseExplosion.rb:20:1858:20:2292 | SSA phi read(self) | UseUseExplosion.rb:20:1837:20:2308 | SSA phi read(self) |
+| UseUseExplosion.rb:20:1858:20:2292 | SSA phi read(x) | UseUseExplosion.rb:20:1837:20:2308 | SSA phi read(x) |
+| UseUseExplosion.rb:20:1858:20:2292 | if ... | UseUseExplosion.rb:20:1853:20:2292 | then ... |
+| UseUseExplosion.rb:20:1862:20:1866 | [post] self | UseUseExplosion.rb:20:1883:20:1887 | self |
+| UseUseExplosion.rb:20:1862:20:1866 | [post] self | UseUseExplosion.rb:20:2283:20:2288 | self |
+| UseUseExplosion.rb:20:1862:20:1866 | self | UseUseExplosion.rb:20:1883:20:1887 | self |
+| UseUseExplosion.rb:20:1862:20:1866 | self | UseUseExplosion.rb:20:2283:20:2288 | self |
+| UseUseExplosion.rb:20:1862:20:1871 | ... > ... | UseUseExplosion.rb:20:1861:20:1872 | [false] ( ... ) |
+| UseUseExplosion.rb:20:1862:20:1871 | ... > ... | UseUseExplosion.rb:20:1861:20:1872 | [true] ( ... ) |
+| UseUseExplosion.rb:20:1874:20:2276 | then ... | UseUseExplosion.rb:20:1858:20:2292 | if ... |
+| UseUseExplosion.rb:20:1879:20:2276 | SSA phi read(self) | UseUseExplosion.rb:20:1858:20:2292 | SSA phi read(self) |
+| UseUseExplosion.rb:20:1879:20:2276 | SSA phi read(x) | UseUseExplosion.rb:20:1858:20:2292 | SSA phi read(x) |
+| UseUseExplosion.rb:20:1879:20:2276 | if ... | UseUseExplosion.rb:20:1874:20:2276 | then ... |
+| UseUseExplosion.rb:20:1883:20:1887 | [post] self | UseUseExplosion.rb:20:1904:20:1908 | self |
+| UseUseExplosion.rb:20:1883:20:1887 | [post] self | UseUseExplosion.rb:20:2267:20:2272 | self |
+| UseUseExplosion.rb:20:1883:20:1887 | self | UseUseExplosion.rb:20:1904:20:1908 | self |
+| UseUseExplosion.rb:20:1883:20:1887 | self | UseUseExplosion.rb:20:2267:20:2272 | self |
+| UseUseExplosion.rb:20:1883:20:1892 | ... > ... | UseUseExplosion.rb:20:1882:20:1893 | [false] ( ... ) |
+| UseUseExplosion.rb:20:1883:20:1892 | ... > ... | UseUseExplosion.rb:20:1882:20:1893 | [true] ( ... ) |
+| UseUseExplosion.rb:20:1895:20:2260 | then ... | UseUseExplosion.rb:20:1879:20:2276 | if ... |
+| UseUseExplosion.rb:20:1900:20:2260 | SSA phi read(self) | UseUseExplosion.rb:20:1879:20:2276 | SSA phi read(self) |
+| UseUseExplosion.rb:20:1900:20:2260 | SSA phi read(x) | UseUseExplosion.rb:20:1879:20:2276 | SSA phi read(x) |
+| UseUseExplosion.rb:20:1900:20:2260 | if ... | UseUseExplosion.rb:20:1895:20:2260 | then ... |
+| UseUseExplosion.rb:20:1904:20:1908 | [post] self | UseUseExplosion.rb:20:1925:20:1929 | self |
+| UseUseExplosion.rb:20:1904:20:1908 | [post] self | UseUseExplosion.rb:20:2251:20:2256 | self |
+| UseUseExplosion.rb:20:1904:20:1908 | self | UseUseExplosion.rb:20:1925:20:1929 | self |
+| UseUseExplosion.rb:20:1904:20:1908 | self | UseUseExplosion.rb:20:2251:20:2256 | self |
+| UseUseExplosion.rb:20:1904:20:1913 | ... > ... | UseUseExplosion.rb:20:1903:20:1914 | [false] ( ... ) |
+| UseUseExplosion.rb:20:1904:20:1913 | ... > ... | UseUseExplosion.rb:20:1903:20:1914 | [true] ( ... ) |
+| UseUseExplosion.rb:20:1916:20:2244 | then ... | UseUseExplosion.rb:20:1900:20:2260 | if ... |
+| UseUseExplosion.rb:20:1921:20:2244 | SSA phi read(self) | UseUseExplosion.rb:20:1900:20:2260 | SSA phi read(self) |
+| UseUseExplosion.rb:20:1921:20:2244 | SSA phi read(x) | UseUseExplosion.rb:20:1900:20:2260 | SSA phi read(x) |
+| UseUseExplosion.rb:20:1921:20:2244 | if ... | UseUseExplosion.rb:20:1916:20:2244 | then ... |
+| UseUseExplosion.rb:20:1925:20:1929 | [post] self | UseUseExplosion.rb:20:1945:20:1949 | self |
+| UseUseExplosion.rb:20:1925:20:1929 | [post] self | UseUseExplosion.rb:20:2235:20:2240 | self |
+| UseUseExplosion.rb:20:1925:20:1929 | self | UseUseExplosion.rb:20:1945:20:1949 | self |
+| UseUseExplosion.rb:20:1925:20:1929 | self | UseUseExplosion.rb:20:2235:20:2240 | self |
+| UseUseExplosion.rb:20:1925:20:1933 | ... > ... | UseUseExplosion.rb:20:1924:20:1934 | [false] ( ... ) |
+| UseUseExplosion.rb:20:1925:20:1933 | ... > ... | UseUseExplosion.rb:20:1924:20:1934 | [true] ( ... ) |
+| UseUseExplosion.rb:20:1936:20:2228 | then ... | UseUseExplosion.rb:20:1921:20:2244 | if ... |
+| UseUseExplosion.rb:20:1941:20:2228 | SSA phi read(self) | UseUseExplosion.rb:20:1921:20:2244 | SSA phi read(self) |
+| UseUseExplosion.rb:20:1941:20:2228 | SSA phi read(x) | UseUseExplosion.rb:20:1921:20:2244 | SSA phi read(x) |
+| UseUseExplosion.rb:20:1941:20:2228 | if ... | UseUseExplosion.rb:20:1936:20:2228 | then ... |
+| UseUseExplosion.rb:20:1945:20:1949 | [post] self | UseUseExplosion.rb:20:1965:20:1969 | self |
+| UseUseExplosion.rb:20:1945:20:1949 | [post] self | UseUseExplosion.rb:20:2219:20:2224 | self |
+| UseUseExplosion.rb:20:1945:20:1949 | self | UseUseExplosion.rb:20:1965:20:1969 | self |
+| UseUseExplosion.rb:20:1945:20:1949 | self | UseUseExplosion.rb:20:2219:20:2224 | self |
+| UseUseExplosion.rb:20:1945:20:1953 | ... > ... | UseUseExplosion.rb:20:1944:20:1954 | [false] ( ... ) |
+| UseUseExplosion.rb:20:1945:20:1953 | ... > ... | UseUseExplosion.rb:20:1944:20:1954 | [true] ( ... ) |
+| UseUseExplosion.rb:20:1956:20:2212 | then ... | UseUseExplosion.rb:20:1941:20:2228 | if ... |
+| UseUseExplosion.rb:20:1961:20:2212 | SSA phi read(self) | UseUseExplosion.rb:20:1941:20:2228 | SSA phi read(self) |
+| UseUseExplosion.rb:20:1961:20:2212 | SSA phi read(x) | UseUseExplosion.rb:20:1941:20:2228 | SSA phi read(x) |
+| UseUseExplosion.rb:20:1961:20:2212 | if ... | UseUseExplosion.rb:20:1956:20:2212 | then ... |
+| UseUseExplosion.rb:20:1965:20:1969 | [post] self | UseUseExplosion.rb:20:1985:20:1989 | self |
+| UseUseExplosion.rb:20:1965:20:1969 | [post] self | UseUseExplosion.rb:20:2203:20:2208 | self |
+| UseUseExplosion.rb:20:1965:20:1969 | self | UseUseExplosion.rb:20:1985:20:1989 | self |
+| UseUseExplosion.rb:20:1965:20:1969 | self | UseUseExplosion.rb:20:2203:20:2208 | self |
+| UseUseExplosion.rb:20:1965:20:1973 | ... > ... | UseUseExplosion.rb:20:1964:20:1974 | [false] ( ... ) |
+| UseUseExplosion.rb:20:1965:20:1973 | ... > ... | UseUseExplosion.rb:20:1964:20:1974 | [true] ( ... ) |
+| UseUseExplosion.rb:20:1976:20:2196 | then ... | UseUseExplosion.rb:20:1961:20:2212 | if ... |
+| UseUseExplosion.rb:20:1981:20:2196 | SSA phi read(self) | UseUseExplosion.rb:20:1961:20:2212 | SSA phi read(self) |
+| UseUseExplosion.rb:20:1981:20:2196 | SSA phi read(x) | UseUseExplosion.rb:20:1961:20:2212 | SSA phi read(x) |
+| UseUseExplosion.rb:20:1981:20:2196 | if ... | UseUseExplosion.rb:20:1976:20:2196 | then ... |
+| UseUseExplosion.rb:20:1985:20:1989 | [post] self | UseUseExplosion.rb:20:2005:20:2009 | self |
+| UseUseExplosion.rb:20:1985:20:1989 | [post] self | UseUseExplosion.rb:20:2187:20:2192 | self |
+| UseUseExplosion.rb:20:1985:20:1989 | self | UseUseExplosion.rb:20:2005:20:2009 | self |
+| UseUseExplosion.rb:20:1985:20:1989 | self | UseUseExplosion.rb:20:2187:20:2192 | self |
+| UseUseExplosion.rb:20:1985:20:1993 | ... > ... | UseUseExplosion.rb:20:1984:20:1994 | [false] ( ... ) |
+| UseUseExplosion.rb:20:1985:20:1993 | ... > ... | UseUseExplosion.rb:20:1984:20:1994 | [true] ( ... ) |
+| UseUseExplosion.rb:20:1996:20:2180 | then ... | UseUseExplosion.rb:20:1981:20:2196 | if ... |
+| UseUseExplosion.rb:20:2001:20:2180 | SSA phi read(self) | UseUseExplosion.rb:20:1981:20:2196 | SSA phi read(self) |
+| UseUseExplosion.rb:20:2001:20:2180 | SSA phi read(x) | UseUseExplosion.rb:20:1981:20:2196 | SSA phi read(x) |
+| UseUseExplosion.rb:20:2001:20:2180 | if ... | UseUseExplosion.rb:20:1996:20:2180 | then ... |
+| UseUseExplosion.rb:20:2005:20:2009 | [post] self | UseUseExplosion.rb:20:2025:20:2029 | self |
+| UseUseExplosion.rb:20:2005:20:2009 | [post] self | UseUseExplosion.rb:20:2171:20:2176 | self |
+| UseUseExplosion.rb:20:2005:20:2009 | self | UseUseExplosion.rb:20:2025:20:2029 | self |
+| UseUseExplosion.rb:20:2005:20:2009 | self | UseUseExplosion.rb:20:2171:20:2176 | self |
+| UseUseExplosion.rb:20:2005:20:2013 | ... > ... | UseUseExplosion.rb:20:2004:20:2014 | [false] ( ... ) |
+| UseUseExplosion.rb:20:2005:20:2013 | ... > ... | UseUseExplosion.rb:20:2004:20:2014 | [true] ( ... ) |
+| UseUseExplosion.rb:20:2016:20:2164 | then ... | UseUseExplosion.rb:20:2001:20:2180 | if ... |
+| UseUseExplosion.rb:20:2021:20:2164 | SSA phi read(self) | UseUseExplosion.rb:20:2001:20:2180 | SSA phi read(self) |
+| UseUseExplosion.rb:20:2021:20:2164 | SSA phi read(x) | UseUseExplosion.rb:20:2001:20:2180 | SSA phi read(x) |
+| UseUseExplosion.rb:20:2021:20:2164 | if ... | UseUseExplosion.rb:20:2016:20:2164 | then ... |
+| UseUseExplosion.rb:20:2025:20:2029 | [post] self | UseUseExplosion.rb:20:2045:20:2049 | self |
+| UseUseExplosion.rb:20:2025:20:2029 | [post] self | UseUseExplosion.rb:20:2155:20:2160 | self |
+| UseUseExplosion.rb:20:2025:20:2029 | self | UseUseExplosion.rb:20:2045:20:2049 | self |
+| UseUseExplosion.rb:20:2025:20:2029 | self | UseUseExplosion.rb:20:2155:20:2160 | self |
+| UseUseExplosion.rb:20:2025:20:2033 | ... > ... | UseUseExplosion.rb:20:2024:20:2034 | [false] ( ... ) |
+| UseUseExplosion.rb:20:2025:20:2033 | ... > ... | UseUseExplosion.rb:20:2024:20:2034 | [true] ( ... ) |
+| UseUseExplosion.rb:20:2036:20:2148 | then ... | UseUseExplosion.rb:20:2021:20:2164 | if ... |
+| UseUseExplosion.rb:20:2041:20:2148 | SSA phi read(self) | UseUseExplosion.rb:20:2021:20:2164 | SSA phi read(self) |
+| UseUseExplosion.rb:20:2041:20:2148 | SSA phi read(x) | UseUseExplosion.rb:20:2021:20:2164 | SSA phi read(x) |
+| UseUseExplosion.rb:20:2041:20:2148 | if ... | UseUseExplosion.rb:20:2036:20:2148 | then ... |
+| UseUseExplosion.rb:20:2045:20:2049 | [post] self | UseUseExplosion.rb:20:2065:20:2069 | self |
+| UseUseExplosion.rb:20:2045:20:2049 | [post] self | UseUseExplosion.rb:20:2139:20:2144 | self |
+| UseUseExplosion.rb:20:2045:20:2049 | self | UseUseExplosion.rb:20:2065:20:2069 | self |
+| UseUseExplosion.rb:20:2045:20:2049 | self | UseUseExplosion.rb:20:2139:20:2144 | self |
+| UseUseExplosion.rb:20:2045:20:2053 | ... > ... | UseUseExplosion.rb:20:2044:20:2054 | [false] ( ... ) |
+| UseUseExplosion.rb:20:2045:20:2053 | ... > ... | UseUseExplosion.rb:20:2044:20:2054 | [true] ( ... ) |
+| UseUseExplosion.rb:20:2056:20:2132 | then ... | UseUseExplosion.rb:20:2041:20:2148 | if ... |
+| UseUseExplosion.rb:20:2061:20:2132 | SSA phi read(self) | UseUseExplosion.rb:20:2041:20:2148 | SSA phi read(self) |
+| UseUseExplosion.rb:20:2061:20:2132 | SSA phi read(x) | UseUseExplosion.rb:20:2041:20:2148 | SSA phi read(x) |
+| UseUseExplosion.rb:20:2061:20:2132 | if ... | UseUseExplosion.rb:20:2056:20:2132 | then ... |
+| UseUseExplosion.rb:20:2065:20:2069 | [post] self | UseUseExplosion.rb:20:2085:20:2089 | self |
+| UseUseExplosion.rb:20:2065:20:2069 | [post] self | UseUseExplosion.rb:20:2123:20:2128 | self |
+| UseUseExplosion.rb:20:2065:20:2069 | self | UseUseExplosion.rb:20:2085:20:2089 | self |
+| UseUseExplosion.rb:20:2065:20:2069 | self | UseUseExplosion.rb:20:2123:20:2128 | self |
+| UseUseExplosion.rb:20:2065:20:2073 | ... > ... | UseUseExplosion.rb:20:2064:20:2074 | [false] ( ... ) |
+| UseUseExplosion.rb:20:2065:20:2073 | ... > ... | UseUseExplosion.rb:20:2064:20:2074 | [true] ( ... ) |
+| UseUseExplosion.rb:20:2076:20:2116 | then ... | UseUseExplosion.rb:20:2061:20:2132 | if ... |
+| UseUseExplosion.rb:20:2081:20:2116 | SSA phi read(self) | UseUseExplosion.rb:20:2061:20:2132 | SSA phi read(self) |
+| UseUseExplosion.rb:20:2081:20:2116 | SSA phi read(x) | UseUseExplosion.rb:20:2061:20:2132 | SSA phi read(x) |
+| UseUseExplosion.rb:20:2081:20:2116 | if ... | UseUseExplosion.rb:20:2076:20:2116 | then ... |
+| UseUseExplosion.rb:20:2085:20:2089 | [post] self | UseUseExplosion.rb:20:2107:20:2112 | self |
+| UseUseExplosion.rb:20:2085:20:2089 | self | UseUseExplosion.rb:20:2107:20:2112 | self |
+| UseUseExplosion.rb:20:2085:20:2093 | ... > ... | UseUseExplosion.rb:20:2084:20:2094 | [false] ( ... ) |
+| UseUseExplosion.rb:20:2085:20:2093 | ... > ... | UseUseExplosion.rb:20:2084:20:2094 | [true] ( ... ) |
+| UseUseExplosion.rb:20:2096:20:2099 | then ... | UseUseExplosion.rb:20:2081:20:2116 | if ... |
+| UseUseExplosion.rb:20:2102:20:2112 | else ... | UseUseExplosion.rb:20:2081:20:2116 | if ... |
+| UseUseExplosion.rb:20:2107:20:2112 | call to use | UseUseExplosion.rb:20:2102:20:2112 | else ... |
+| UseUseExplosion.rb:20:2118:20:2128 | else ... | UseUseExplosion.rb:20:2061:20:2132 | if ... |
+| UseUseExplosion.rb:20:2123:20:2128 | call to use | UseUseExplosion.rb:20:2118:20:2128 | else ... |
+| UseUseExplosion.rb:20:2134:20:2144 | else ... | UseUseExplosion.rb:20:2041:20:2148 | if ... |
+| UseUseExplosion.rb:20:2139:20:2144 | call to use | UseUseExplosion.rb:20:2134:20:2144 | else ... |
+| UseUseExplosion.rb:20:2150:20:2160 | else ... | UseUseExplosion.rb:20:2021:20:2164 | if ... |
+| UseUseExplosion.rb:20:2155:20:2160 | call to use | UseUseExplosion.rb:20:2150:20:2160 | else ... |
+| UseUseExplosion.rb:20:2166:20:2176 | else ... | UseUseExplosion.rb:20:2001:20:2180 | if ... |
+| UseUseExplosion.rb:20:2171:20:2176 | call to use | UseUseExplosion.rb:20:2166:20:2176 | else ... |
+| UseUseExplosion.rb:20:2182:20:2192 | else ... | UseUseExplosion.rb:20:1981:20:2196 | if ... |
+| UseUseExplosion.rb:20:2187:20:2192 | call to use | UseUseExplosion.rb:20:2182:20:2192 | else ... |
+| UseUseExplosion.rb:20:2198:20:2208 | else ... | UseUseExplosion.rb:20:1961:20:2212 | if ... |
+| UseUseExplosion.rb:20:2203:20:2208 | call to use | UseUseExplosion.rb:20:2198:20:2208 | else ... |
+| UseUseExplosion.rb:20:2214:20:2224 | else ... | UseUseExplosion.rb:20:1941:20:2228 | if ... |
+| UseUseExplosion.rb:20:2219:20:2224 | call to use | UseUseExplosion.rb:20:2214:20:2224 | else ... |
+| UseUseExplosion.rb:20:2230:20:2240 | else ... | UseUseExplosion.rb:20:1921:20:2244 | if ... |
+| UseUseExplosion.rb:20:2235:20:2240 | call to use | UseUseExplosion.rb:20:2230:20:2240 | else ... |
+| UseUseExplosion.rb:20:2246:20:2256 | else ... | UseUseExplosion.rb:20:1900:20:2260 | if ... |
+| UseUseExplosion.rb:20:2251:20:2256 | call to use | UseUseExplosion.rb:20:2246:20:2256 | else ... |
+| UseUseExplosion.rb:20:2262:20:2272 | else ... | UseUseExplosion.rb:20:1879:20:2276 | if ... |
+| UseUseExplosion.rb:20:2267:20:2272 | call to use | UseUseExplosion.rb:20:2262:20:2272 | else ... |
+| UseUseExplosion.rb:20:2278:20:2288 | else ... | UseUseExplosion.rb:20:1858:20:2292 | if ... |
+| UseUseExplosion.rb:20:2283:20:2288 | call to use | UseUseExplosion.rb:20:2278:20:2288 | else ... |
+| UseUseExplosion.rb:20:2294:20:2304 | else ... | UseUseExplosion.rb:20:1837:20:2308 | if ... |
+| UseUseExplosion.rb:20:2299:20:2304 | call to use | UseUseExplosion.rb:20:2294:20:2304 | else ... |
+| UseUseExplosion.rb:20:2310:20:2320 | else ... | UseUseExplosion.rb:20:1816:20:2324 | if ... |
+| UseUseExplosion.rb:20:2315:20:2320 | call to use | UseUseExplosion.rb:20:2310:20:2320 | else ... |
+| UseUseExplosion.rb:20:2326:20:2336 | else ... | UseUseExplosion.rb:20:1795:20:2340 | if ... |
+| UseUseExplosion.rb:20:2331:20:2336 | call to use | UseUseExplosion.rb:20:2326:20:2336 | else ... |
+| UseUseExplosion.rb:20:2342:20:2352 | else ... | UseUseExplosion.rb:20:1774:20:2356 | if ... |
+| UseUseExplosion.rb:20:2347:20:2352 | call to use | UseUseExplosion.rb:20:2342:20:2352 | else ... |
+| UseUseExplosion.rb:20:2358:20:2368 | else ... | UseUseExplosion.rb:20:1753:20:2372 | if ... |
+| UseUseExplosion.rb:20:2363:20:2368 | call to use | UseUseExplosion.rb:20:2358:20:2368 | else ... |
+| UseUseExplosion.rb:20:2374:20:2384 | else ... | UseUseExplosion.rb:20:1732:20:2388 | if ... |
+| UseUseExplosion.rb:20:2379:20:2384 | call to use | UseUseExplosion.rb:20:2374:20:2384 | else ... |
+| UseUseExplosion.rb:20:2390:20:2400 | else ... | UseUseExplosion.rb:20:1711:20:2404 | if ... |
+| UseUseExplosion.rb:20:2395:20:2400 | call to use | UseUseExplosion.rb:20:2390:20:2400 | else ... |
+| UseUseExplosion.rb:20:2406:20:2416 | else ... | UseUseExplosion.rb:20:1690:20:2420 | if ... |
+| UseUseExplosion.rb:20:2411:20:2416 | call to use | UseUseExplosion.rb:20:2406:20:2416 | else ... |
+| UseUseExplosion.rb:20:2422:20:2432 | else ... | UseUseExplosion.rb:20:1669:20:2436 | if ... |
+| UseUseExplosion.rb:20:2427:20:2432 | call to use | UseUseExplosion.rb:20:2422:20:2432 | else ... |
+| UseUseExplosion.rb:20:2438:20:2448 | else ... | UseUseExplosion.rb:20:1648:20:2452 | if ... |
+| UseUseExplosion.rb:20:2443:20:2448 | call to use | UseUseExplosion.rb:20:2438:20:2448 | else ... |
+| UseUseExplosion.rb:20:2454:20:2464 | else ... | UseUseExplosion.rb:20:1627:20:2468 | if ... |
+| UseUseExplosion.rb:20:2459:20:2464 | call to use | UseUseExplosion.rb:20:2454:20:2464 | else ... |
+| UseUseExplosion.rb:20:2470:20:2480 | else ... | UseUseExplosion.rb:20:1606:20:2484 | if ... |
+| UseUseExplosion.rb:20:2475:20:2480 | call to use | UseUseExplosion.rb:20:2470:20:2480 | else ... |
+| UseUseExplosion.rb:20:2486:20:2496 | else ... | UseUseExplosion.rb:20:1585:20:2500 | if ... |
+| UseUseExplosion.rb:20:2491:20:2496 | call to use | UseUseExplosion.rb:20:2486:20:2496 | else ... |
+| UseUseExplosion.rb:20:2502:20:2512 | else ... | UseUseExplosion.rb:20:1564:20:2516 | if ... |
+| UseUseExplosion.rb:20:2507:20:2512 | call to use | UseUseExplosion.rb:20:2502:20:2512 | else ... |
+| UseUseExplosion.rb:20:2518:20:2528 | else ... | UseUseExplosion.rb:20:1543:20:2532 | if ... |
+| UseUseExplosion.rb:20:2523:20:2528 | call to use | UseUseExplosion.rb:20:2518:20:2528 | else ... |
+| UseUseExplosion.rb:20:2534:20:2544 | else ... | UseUseExplosion.rb:20:1522:20:2548 | if ... |
+| UseUseExplosion.rb:20:2539:20:2544 | call to use | UseUseExplosion.rb:20:2534:20:2544 | else ... |
+| UseUseExplosion.rb:20:2550:20:2560 | else ... | UseUseExplosion.rb:20:1501:20:2564 | if ... |
+| UseUseExplosion.rb:20:2555:20:2560 | call to use | UseUseExplosion.rb:20:2550:20:2560 | else ... |
+| UseUseExplosion.rb:20:2566:20:2576 | else ... | UseUseExplosion.rb:20:1480:20:2580 | if ... |
+| UseUseExplosion.rb:20:2571:20:2576 | call to use | UseUseExplosion.rb:20:2566:20:2576 | else ... |
+| UseUseExplosion.rb:20:2582:20:2592 | else ... | UseUseExplosion.rb:20:1459:20:2596 | if ... |
+| UseUseExplosion.rb:20:2587:20:2592 | call to use | UseUseExplosion.rb:20:2582:20:2592 | else ... |
+| UseUseExplosion.rb:20:2598:20:2608 | else ... | UseUseExplosion.rb:20:1438:20:2612 | if ... |
+| UseUseExplosion.rb:20:2603:20:2608 | call to use | UseUseExplosion.rb:20:2598:20:2608 | else ... |
+| UseUseExplosion.rb:20:2614:20:2624 | else ... | UseUseExplosion.rb:20:1417:20:2628 | if ... |
+| UseUseExplosion.rb:20:2619:20:2624 | call to use | UseUseExplosion.rb:20:2614:20:2624 | else ... |
+| UseUseExplosion.rb:20:2630:20:2640 | else ... | UseUseExplosion.rb:20:1396:20:2644 | if ... |
+| UseUseExplosion.rb:20:2635:20:2640 | call to use | UseUseExplosion.rb:20:2630:20:2640 | else ... |
+| UseUseExplosion.rb:20:2646:20:2656 | else ... | UseUseExplosion.rb:20:1375:20:2660 | if ... |
+| UseUseExplosion.rb:20:2651:20:2656 | call to use | UseUseExplosion.rb:20:2646:20:2656 | else ... |
+| UseUseExplosion.rb:20:2662:20:2672 | else ... | UseUseExplosion.rb:20:1354:20:2676 | if ... |
+| UseUseExplosion.rb:20:2667:20:2672 | call to use | UseUseExplosion.rb:20:2662:20:2672 | else ... |
+| UseUseExplosion.rb:20:2678:20:2688 | else ... | UseUseExplosion.rb:20:1333:20:2692 | if ... |
+| UseUseExplosion.rb:20:2683:20:2688 | call to use | UseUseExplosion.rb:20:2678:20:2688 | else ... |
+| UseUseExplosion.rb:20:2694:20:2704 | else ... | UseUseExplosion.rb:20:1312:20:2708 | if ... |
+| UseUseExplosion.rb:20:2699:20:2704 | call to use | UseUseExplosion.rb:20:2694:20:2704 | else ... |
+| UseUseExplosion.rb:20:2710:20:2720 | else ... | UseUseExplosion.rb:20:1291:20:2724 | if ... |
+| UseUseExplosion.rb:20:2715:20:2720 | call to use | UseUseExplosion.rb:20:2710:20:2720 | else ... |
+| UseUseExplosion.rb:20:2726:20:2736 | else ... | UseUseExplosion.rb:20:1270:20:2740 | if ... |
+| UseUseExplosion.rb:20:2731:20:2736 | call to use | UseUseExplosion.rb:20:2726:20:2736 | else ... |
+| UseUseExplosion.rb:20:2742:20:2752 | else ... | UseUseExplosion.rb:20:1249:20:2756 | if ... |
+| UseUseExplosion.rb:20:2747:20:2752 | call to use | UseUseExplosion.rb:20:2742:20:2752 | else ... |
+| UseUseExplosion.rb:20:2758:20:2768 | else ... | UseUseExplosion.rb:20:1228:20:2772 | if ... |
+| UseUseExplosion.rb:20:2763:20:2768 | call to use | UseUseExplosion.rb:20:2758:20:2768 | else ... |
+| UseUseExplosion.rb:20:2774:20:2784 | else ... | UseUseExplosion.rb:20:1207:20:2788 | if ... |
+| UseUseExplosion.rb:20:2779:20:2784 | call to use | UseUseExplosion.rb:20:2774:20:2784 | else ... |
+| UseUseExplosion.rb:20:2790:20:2800 | else ... | UseUseExplosion.rb:20:1186:20:2804 | if ... |
+| UseUseExplosion.rb:20:2795:20:2800 | call to use | UseUseExplosion.rb:20:2790:20:2800 | else ... |
+| UseUseExplosion.rb:20:2806:20:2816 | else ... | UseUseExplosion.rb:20:1165:20:2820 | if ... |
+| UseUseExplosion.rb:20:2811:20:2816 | call to use | UseUseExplosion.rb:20:2806:20:2816 | else ... |
+| UseUseExplosion.rb:20:2822:20:2832 | else ... | UseUseExplosion.rb:20:1144:20:2836 | if ... |
+| UseUseExplosion.rb:20:2827:20:2832 | call to use | UseUseExplosion.rb:20:2822:20:2832 | else ... |
+| UseUseExplosion.rb:20:2838:20:2848 | else ... | UseUseExplosion.rb:20:1123:20:2852 | if ... |
+| UseUseExplosion.rb:20:2843:20:2848 | call to use | UseUseExplosion.rb:20:2838:20:2848 | else ... |
+| UseUseExplosion.rb:20:2854:20:2864 | else ... | UseUseExplosion.rb:20:1102:20:2868 | if ... |
+| UseUseExplosion.rb:20:2859:20:2864 | call to use | UseUseExplosion.rb:20:2854:20:2864 | else ... |
+| UseUseExplosion.rb:20:2870:20:2880 | else ... | UseUseExplosion.rb:20:1081:20:2884 | if ... |
+| UseUseExplosion.rb:20:2875:20:2880 | call to use | UseUseExplosion.rb:20:2870:20:2880 | else ... |
+| UseUseExplosion.rb:20:2886:20:2896 | else ... | UseUseExplosion.rb:20:1060:20:2900 | if ... |
+| UseUseExplosion.rb:20:2891:20:2896 | call to use | UseUseExplosion.rb:20:2886:20:2896 | else ... |
+| UseUseExplosion.rb:20:2902:20:2912 | else ... | UseUseExplosion.rb:20:1039:20:2916 | if ... |
+| UseUseExplosion.rb:20:2907:20:2912 | call to use | UseUseExplosion.rb:20:2902:20:2912 | else ... |
+| UseUseExplosion.rb:20:2918:20:2928 | else ... | UseUseExplosion.rb:20:1018:20:2932 | if ... |
+| UseUseExplosion.rb:20:2923:20:2928 | call to use | UseUseExplosion.rb:20:2918:20:2928 | else ... |
+| UseUseExplosion.rb:20:2934:20:2944 | else ... | UseUseExplosion.rb:20:997:20:2948 | if ... |
+| UseUseExplosion.rb:20:2939:20:2944 | call to use | UseUseExplosion.rb:20:2934:20:2944 | else ... |
+| UseUseExplosion.rb:20:2950:20:2960 | else ... | UseUseExplosion.rb:20:976:20:2964 | if ... |
+| UseUseExplosion.rb:20:2955:20:2960 | call to use | UseUseExplosion.rb:20:2950:20:2960 | else ... |
+| UseUseExplosion.rb:20:2966:20:2976 | else ... | UseUseExplosion.rb:20:955:20:2980 | if ... |
+| UseUseExplosion.rb:20:2971:20:2976 | call to use | UseUseExplosion.rb:20:2966:20:2976 | else ... |
+| UseUseExplosion.rb:20:2982:20:2992 | else ... | UseUseExplosion.rb:20:934:20:2996 | if ... |
+| UseUseExplosion.rb:20:2987:20:2992 | call to use | UseUseExplosion.rb:20:2982:20:2992 | else ... |
+| UseUseExplosion.rb:20:2998:20:3008 | else ... | UseUseExplosion.rb:20:913:20:3012 | if ... |
+| UseUseExplosion.rb:20:3003:20:3008 | call to use | UseUseExplosion.rb:20:2998:20:3008 | else ... |
+| UseUseExplosion.rb:20:3014:20:3024 | else ... | UseUseExplosion.rb:20:892:20:3028 | if ... |
+| UseUseExplosion.rb:20:3019:20:3024 | call to use | UseUseExplosion.rb:20:3014:20:3024 | else ... |
+| UseUseExplosion.rb:20:3030:20:3040 | else ... | UseUseExplosion.rb:20:871:20:3044 | if ... |
+| UseUseExplosion.rb:20:3035:20:3040 | call to use | UseUseExplosion.rb:20:3030:20:3040 | else ... |
+| UseUseExplosion.rb:20:3046:20:3056 | else ... | UseUseExplosion.rb:20:850:20:3060 | if ... |
+| UseUseExplosion.rb:20:3051:20:3056 | call to use | UseUseExplosion.rb:20:3046:20:3056 | else ... |
+| UseUseExplosion.rb:20:3062:20:3072 | else ... | UseUseExplosion.rb:20:829:20:3076 | if ... |
+| UseUseExplosion.rb:20:3067:20:3072 | call to use | UseUseExplosion.rb:20:3062:20:3072 | else ... |
+| UseUseExplosion.rb:20:3078:20:3088 | else ... | UseUseExplosion.rb:20:808:20:3092 | if ... |
+| UseUseExplosion.rb:20:3083:20:3088 | call to use | UseUseExplosion.rb:20:3078:20:3088 | else ... |
+| UseUseExplosion.rb:20:3094:20:3104 | else ... | UseUseExplosion.rb:20:787:20:3108 | if ... |
+| UseUseExplosion.rb:20:3099:20:3104 | call to use | UseUseExplosion.rb:20:3094:20:3104 | else ... |
+| UseUseExplosion.rb:20:3110:20:3120 | else ... | UseUseExplosion.rb:20:766:20:3124 | if ... |
+| UseUseExplosion.rb:20:3115:20:3120 | call to use | UseUseExplosion.rb:20:3110:20:3120 | else ... |
+| UseUseExplosion.rb:20:3126:20:3136 | else ... | UseUseExplosion.rb:20:745:20:3140 | if ... |
+| UseUseExplosion.rb:20:3131:20:3136 | call to use | UseUseExplosion.rb:20:3126:20:3136 | else ... |
+| UseUseExplosion.rb:20:3142:20:3152 | else ... | UseUseExplosion.rb:20:724:20:3156 | if ... |
+| UseUseExplosion.rb:20:3147:20:3152 | call to use | UseUseExplosion.rb:20:3142:20:3152 | else ... |
+| UseUseExplosion.rb:20:3158:20:3168 | else ... | UseUseExplosion.rb:20:703:20:3172 | if ... |
+| UseUseExplosion.rb:20:3163:20:3168 | call to use | UseUseExplosion.rb:20:3158:20:3168 | else ... |
+| UseUseExplosion.rb:20:3174:20:3184 | else ... | UseUseExplosion.rb:20:682:20:3188 | if ... |
+| UseUseExplosion.rb:20:3179:20:3184 | call to use | UseUseExplosion.rb:20:3174:20:3184 | else ... |
+| UseUseExplosion.rb:20:3190:20:3200 | else ... | UseUseExplosion.rb:20:661:20:3204 | if ... |
+| UseUseExplosion.rb:20:3195:20:3200 | call to use | UseUseExplosion.rb:20:3190:20:3200 | else ... |
+| UseUseExplosion.rb:20:3206:20:3216 | else ... | UseUseExplosion.rb:20:640:20:3220 | if ... |
+| UseUseExplosion.rb:20:3211:20:3216 | call to use | UseUseExplosion.rb:20:3206:20:3216 | else ... |
+| UseUseExplosion.rb:20:3222:20:3232 | else ... | UseUseExplosion.rb:20:619:20:3236 | if ... |
+| UseUseExplosion.rb:20:3227:20:3232 | call to use | UseUseExplosion.rb:20:3222:20:3232 | else ... |
+| UseUseExplosion.rb:20:3238:20:3248 | else ... | UseUseExplosion.rb:20:598:20:3252 | if ... |
+| UseUseExplosion.rb:20:3243:20:3248 | call to use | UseUseExplosion.rb:20:3238:20:3248 | else ... |
+| UseUseExplosion.rb:20:3254:20:3264 | else ... | UseUseExplosion.rb:20:577:20:3268 | if ... |
+| UseUseExplosion.rb:20:3259:20:3264 | call to use | UseUseExplosion.rb:20:3254:20:3264 | else ... |
+| UseUseExplosion.rb:20:3270:20:3280 | else ... | UseUseExplosion.rb:20:556:20:3284 | if ... |
+| UseUseExplosion.rb:20:3275:20:3280 | call to use | UseUseExplosion.rb:20:3270:20:3280 | else ... |
+| UseUseExplosion.rb:20:3286:20:3296 | else ... | UseUseExplosion.rb:20:535:20:3300 | if ... |
+| UseUseExplosion.rb:20:3291:20:3296 | call to use | UseUseExplosion.rb:20:3286:20:3296 | else ... |
+| UseUseExplosion.rb:20:3302:20:3312 | else ... | UseUseExplosion.rb:20:514:20:3316 | if ... |
+| UseUseExplosion.rb:20:3307:20:3312 | call to use | UseUseExplosion.rb:20:3302:20:3312 | else ... |
+| UseUseExplosion.rb:20:3318:20:3328 | else ... | UseUseExplosion.rb:20:493:20:3332 | if ... |
+| UseUseExplosion.rb:20:3323:20:3328 | call to use | UseUseExplosion.rb:20:3318:20:3328 | else ... |
+| UseUseExplosion.rb:20:3334:20:3344 | else ... | UseUseExplosion.rb:20:472:20:3348 | if ... |
+| UseUseExplosion.rb:20:3339:20:3344 | call to use | UseUseExplosion.rb:20:3334:20:3344 | else ... |
+| UseUseExplosion.rb:20:3350:20:3360 | else ... | UseUseExplosion.rb:20:451:20:3364 | if ... |
+| UseUseExplosion.rb:20:3355:20:3360 | call to use | UseUseExplosion.rb:20:3350:20:3360 | else ... |
+| UseUseExplosion.rb:20:3366:20:3376 | else ... | UseUseExplosion.rb:20:430:20:3380 | if ... |
+| UseUseExplosion.rb:20:3371:20:3376 | call to use | UseUseExplosion.rb:20:3366:20:3376 | else ... |
+| UseUseExplosion.rb:20:3382:20:3392 | else ... | UseUseExplosion.rb:20:409:20:3396 | if ... |
+| UseUseExplosion.rb:20:3387:20:3392 | call to use | UseUseExplosion.rb:20:3382:20:3392 | else ... |
+| UseUseExplosion.rb:20:3398:20:3408 | else ... | UseUseExplosion.rb:20:388:20:3412 | if ... |
+| UseUseExplosion.rb:20:3403:20:3408 | call to use | UseUseExplosion.rb:20:3398:20:3408 | else ... |
+| UseUseExplosion.rb:20:3414:20:3424 | else ... | UseUseExplosion.rb:20:367:20:3428 | if ... |
+| UseUseExplosion.rb:20:3419:20:3424 | call to use | UseUseExplosion.rb:20:3414:20:3424 | else ... |
+| UseUseExplosion.rb:20:3430:20:3440 | else ... | UseUseExplosion.rb:20:346:20:3444 | if ... |
+| UseUseExplosion.rb:20:3435:20:3440 | call to use | UseUseExplosion.rb:20:3430:20:3440 | else ... |
+| UseUseExplosion.rb:20:3446:20:3456 | else ... | UseUseExplosion.rb:20:325:20:3460 | if ... |
+| UseUseExplosion.rb:20:3451:20:3456 | call to use | UseUseExplosion.rb:20:3446:20:3456 | else ... |
+| UseUseExplosion.rb:20:3462:20:3472 | else ... | UseUseExplosion.rb:20:304:20:3476 | if ... |
+| UseUseExplosion.rb:20:3467:20:3472 | call to use | UseUseExplosion.rb:20:3462:20:3472 | else ... |
+| UseUseExplosion.rb:20:3478:20:3488 | else ... | UseUseExplosion.rb:20:283:20:3492 | if ... |
+| UseUseExplosion.rb:20:3483:20:3488 | call to use | UseUseExplosion.rb:20:3478:20:3488 | else ... |
+| UseUseExplosion.rb:20:3494:20:3504 | else ... | UseUseExplosion.rb:20:262:20:3508 | if ... |
+| UseUseExplosion.rb:20:3499:20:3504 | call to use | UseUseExplosion.rb:20:3494:20:3504 | else ... |
+| UseUseExplosion.rb:20:3510:20:3520 | else ... | UseUseExplosion.rb:20:241:20:3524 | if ... |
+| UseUseExplosion.rb:20:3515:20:3520 | call to use | UseUseExplosion.rb:20:3510:20:3520 | else ... |
+| UseUseExplosion.rb:20:3526:20:3536 | else ... | UseUseExplosion.rb:20:220:20:3540 | if ... |
+| UseUseExplosion.rb:20:3531:20:3536 | call to use | UseUseExplosion.rb:20:3526:20:3536 | else ... |
+| UseUseExplosion.rb:20:3542:20:3552 | else ... | UseUseExplosion.rb:20:199:20:3556 | if ... |
+| UseUseExplosion.rb:20:3547:20:3552 | call to use | UseUseExplosion.rb:20:3542:20:3552 | else ... |
+| UseUseExplosion.rb:20:3558:20:3568 | else ... | UseUseExplosion.rb:20:178:20:3572 | if ... |
+| UseUseExplosion.rb:20:3563:20:3568 | call to use | UseUseExplosion.rb:20:3558:20:3568 | else ... |
+| UseUseExplosion.rb:20:3574:20:3584 | else ... | UseUseExplosion.rb:20:157:20:3588 | if ... |
+| UseUseExplosion.rb:20:3579:20:3584 | call to use | UseUseExplosion.rb:20:3574:20:3584 | else ... |
+| UseUseExplosion.rb:20:3590:20:3600 | else ... | UseUseExplosion.rb:20:136:20:3604 | if ... |
+| UseUseExplosion.rb:20:3595:20:3600 | call to use | UseUseExplosion.rb:20:3590:20:3600 | else ... |
+| UseUseExplosion.rb:20:3606:20:3616 | else ... | UseUseExplosion.rb:20:115:20:3620 | if ... |
+| UseUseExplosion.rb:20:3611:20:3616 | call to use | UseUseExplosion.rb:20:3606:20:3616 | else ... |
+| UseUseExplosion.rb:20:3622:20:3632 | else ... | UseUseExplosion.rb:20:94:20:3636 | if ... |
+| UseUseExplosion.rb:20:3627:20:3632 | call to use | UseUseExplosion.rb:20:3622:20:3632 | else ... |
+| UseUseExplosion.rb:20:3638:20:3648 | else ... | UseUseExplosion.rb:20:73:20:3652 | if ... |
+| UseUseExplosion.rb:20:3643:20:3648 | call to use | UseUseExplosion.rb:20:3638:20:3648 | else ... |
+| UseUseExplosion.rb:20:3654:20:3664 | else ... | UseUseExplosion.rb:20:52:20:3668 | if ... |
+| UseUseExplosion.rb:20:3659:20:3664 | call to use | UseUseExplosion.rb:20:3654:20:3664 | else ... |
+| UseUseExplosion.rb:20:3670:20:3680 | else ... | UseUseExplosion.rb:20:31:20:3684 | if ... |
+| UseUseExplosion.rb:20:3675:20:3680 | call to use | UseUseExplosion.rb:20:3670:20:3680 | else ... |
+| UseUseExplosion.rb:20:3686:20:3696 | else ... | UseUseExplosion.rb:20:9:20:3700 | if ... |
+| UseUseExplosion.rb:20:3691:20:3696 | call to use | UseUseExplosion.rb:20:3686:20:3696 | else ... |
+| UseUseExplosion.rb:21:13:21:17 | [post] self | UseUseExplosion.rb:21:35:21:39 | self |
+| UseUseExplosion.rb:21:13:21:17 | [post] self | UseUseExplosion.rb:21:3691:21:3696 | self |
+| UseUseExplosion.rb:21:13:21:17 | self | UseUseExplosion.rb:21:35:21:39 | self |
+| UseUseExplosion.rb:21:13:21:17 | self | UseUseExplosion.rb:21:3691:21:3696 | self |
+| UseUseExplosion.rb:21:13:21:23 | ... > ... | UseUseExplosion.rb:21:12:21:24 | [false] ( ... ) |
+| UseUseExplosion.rb:21:13:21:23 | ... > ... | UseUseExplosion.rb:21:12:21:24 | [true] ( ... ) |
+| UseUseExplosion.rb:21:26:21:3684 | then ... | UseUseExplosion.rb:21:9:21:3700 | if ... |
+| UseUseExplosion.rb:21:31:21:3684 | if ... | UseUseExplosion.rb:21:26:21:3684 | then ... |
+| UseUseExplosion.rb:21:35:21:39 | [post] self | UseUseExplosion.rb:21:56:21:60 | self |
+| UseUseExplosion.rb:21:35:21:39 | [post] self | UseUseExplosion.rb:21:3675:21:3680 | self |
+| UseUseExplosion.rb:21:35:21:39 | self | UseUseExplosion.rb:21:56:21:60 | self |
+| UseUseExplosion.rb:21:35:21:39 | self | UseUseExplosion.rb:21:3675:21:3680 | self |
+| UseUseExplosion.rb:21:35:21:44 | ... > ... | UseUseExplosion.rb:21:34:21:45 | [false] ( ... ) |
+| UseUseExplosion.rb:21:35:21:44 | ... > ... | UseUseExplosion.rb:21:34:21:45 | [true] ( ... ) |
+| UseUseExplosion.rb:21:47:21:3668 | then ... | UseUseExplosion.rb:21:31:21:3684 | if ... |
+| UseUseExplosion.rb:21:52:21:3668 | if ... | UseUseExplosion.rb:21:47:21:3668 | then ... |
+| UseUseExplosion.rb:21:56:21:60 | [post] self | UseUseExplosion.rb:21:77:21:81 | self |
+| UseUseExplosion.rb:21:56:21:60 | [post] self | UseUseExplosion.rb:21:3659:21:3664 | self |
+| UseUseExplosion.rb:21:56:21:60 | self | UseUseExplosion.rb:21:77:21:81 | self |
+| UseUseExplosion.rb:21:56:21:60 | self | UseUseExplosion.rb:21:3659:21:3664 | self |
+| UseUseExplosion.rb:21:56:21:65 | ... > ... | UseUseExplosion.rb:21:55:21:66 | [false] ( ... ) |
+| UseUseExplosion.rb:21:56:21:65 | ... > ... | UseUseExplosion.rb:21:55:21:66 | [true] ( ... ) |
+| UseUseExplosion.rb:21:68:21:3652 | then ... | UseUseExplosion.rb:21:52:21:3668 | if ... |
+| UseUseExplosion.rb:21:73:21:3652 | if ... | UseUseExplosion.rb:21:68:21:3652 | then ... |
+| UseUseExplosion.rb:21:77:21:81 | [post] self | UseUseExplosion.rb:21:98:21:102 | self |
+| UseUseExplosion.rb:21:77:21:81 | [post] self | UseUseExplosion.rb:21:3643:21:3648 | self |
+| UseUseExplosion.rb:21:77:21:81 | self | UseUseExplosion.rb:21:98:21:102 | self |
+| UseUseExplosion.rb:21:77:21:81 | self | UseUseExplosion.rb:21:3643:21:3648 | self |
+| UseUseExplosion.rb:21:77:21:86 | ... > ... | UseUseExplosion.rb:21:76:21:87 | [false] ( ... ) |
+| UseUseExplosion.rb:21:77:21:86 | ... > ... | UseUseExplosion.rb:21:76:21:87 | [true] ( ... ) |
+| UseUseExplosion.rb:21:89:21:3636 | then ... | UseUseExplosion.rb:21:73:21:3652 | if ... |
+| UseUseExplosion.rb:21:94:21:3636 | if ... | UseUseExplosion.rb:21:89:21:3636 | then ... |
+| UseUseExplosion.rb:21:98:21:102 | [post] self | UseUseExplosion.rb:21:119:21:123 | self |
+| UseUseExplosion.rb:21:98:21:102 | [post] self | UseUseExplosion.rb:21:3627:21:3632 | self |
+| UseUseExplosion.rb:21:98:21:102 | self | UseUseExplosion.rb:21:119:21:123 | self |
+| UseUseExplosion.rb:21:98:21:102 | self | UseUseExplosion.rb:21:3627:21:3632 | self |
+| UseUseExplosion.rb:21:98:21:107 | ... > ... | UseUseExplosion.rb:21:97:21:108 | [false] ( ... ) |
+| UseUseExplosion.rb:21:98:21:107 | ... > ... | UseUseExplosion.rb:21:97:21:108 | [true] ( ... ) |
+| UseUseExplosion.rb:21:110:21:3620 | then ... | UseUseExplosion.rb:21:94:21:3636 | if ... |
+| UseUseExplosion.rb:21:115:21:3620 | if ... | UseUseExplosion.rb:21:110:21:3620 | then ... |
+| UseUseExplosion.rb:21:119:21:123 | [post] self | UseUseExplosion.rb:21:140:21:144 | self |
+| UseUseExplosion.rb:21:119:21:123 | [post] self | UseUseExplosion.rb:21:3611:21:3616 | self |
+| UseUseExplosion.rb:21:119:21:123 | self | UseUseExplosion.rb:21:140:21:144 | self |
+| UseUseExplosion.rb:21:119:21:123 | self | UseUseExplosion.rb:21:3611:21:3616 | self |
+| UseUseExplosion.rb:21:119:21:128 | ... > ... | UseUseExplosion.rb:21:118:21:129 | [false] ( ... ) |
+| UseUseExplosion.rb:21:119:21:128 | ... > ... | UseUseExplosion.rb:21:118:21:129 | [true] ( ... ) |
+| UseUseExplosion.rb:21:131:21:3604 | then ... | UseUseExplosion.rb:21:115:21:3620 | if ... |
+| UseUseExplosion.rb:21:136:21:3604 | if ... | UseUseExplosion.rb:21:131:21:3604 | then ... |
+| UseUseExplosion.rb:21:140:21:144 | [post] self | UseUseExplosion.rb:21:161:21:165 | self |
+| UseUseExplosion.rb:21:140:21:144 | [post] self | UseUseExplosion.rb:21:3595:21:3600 | self |
+| UseUseExplosion.rb:21:140:21:144 | self | UseUseExplosion.rb:21:161:21:165 | self |
+| UseUseExplosion.rb:21:140:21:144 | self | UseUseExplosion.rb:21:3595:21:3600 | self |
+| UseUseExplosion.rb:21:140:21:149 | ... > ... | UseUseExplosion.rb:21:139:21:150 | [false] ( ... ) |
+| UseUseExplosion.rb:21:140:21:149 | ... > ... | UseUseExplosion.rb:21:139:21:150 | [true] ( ... ) |
+| UseUseExplosion.rb:21:152:21:3588 | then ... | UseUseExplosion.rb:21:136:21:3604 | if ... |
+| UseUseExplosion.rb:21:157:21:3588 | if ... | UseUseExplosion.rb:21:152:21:3588 | then ... |
+| UseUseExplosion.rb:21:161:21:165 | [post] self | UseUseExplosion.rb:21:182:21:186 | self |
+| UseUseExplosion.rb:21:161:21:165 | [post] self | UseUseExplosion.rb:21:3579:21:3584 | self |
+| UseUseExplosion.rb:21:161:21:165 | self | UseUseExplosion.rb:21:182:21:186 | self |
+| UseUseExplosion.rb:21:161:21:165 | self | UseUseExplosion.rb:21:3579:21:3584 | self |
+| UseUseExplosion.rb:21:161:21:170 | ... > ... | UseUseExplosion.rb:21:160:21:171 | [false] ( ... ) |
+| UseUseExplosion.rb:21:161:21:170 | ... > ... | UseUseExplosion.rb:21:160:21:171 | [true] ( ... ) |
+| UseUseExplosion.rb:21:173:21:3572 | then ... | UseUseExplosion.rb:21:157:21:3588 | if ... |
+| UseUseExplosion.rb:21:178:21:3572 | if ... | UseUseExplosion.rb:21:173:21:3572 | then ... |
+| UseUseExplosion.rb:21:182:21:186 | [post] self | UseUseExplosion.rb:21:203:21:207 | self |
+| UseUseExplosion.rb:21:182:21:186 | [post] self | UseUseExplosion.rb:21:3563:21:3568 | self |
+| UseUseExplosion.rb:21:182:21:186 | self | UseUseExplosion.rb:21:203:21:207 | self |
+| UseUseExplosion.rb:21:182:21:186 | self | UseUseExplosion.rb:21:3563:21:3568 | self |
+| UseUseExplosion.rb:21:182:21:191 | ... > ... | UseUseExplosion.rb:21:181:21:192 | [false] ( ... ) |
+| UseUseExplosion.rb:21:182:21:191 | ... > ... | UseUseExplosion.rb:21:181:21:192 | [true] ( ... ) |
+| UseUseExplosion.rb:21:194:21:3556 | then ... | UseUseExplosion.rb:21:178:21:3572 | if ... |
+| UseUseExplosion.rb:21:199:21:3556 | if ... | UseUseExplosion.rb:21:194:21:3556 | then ... |
+| UseUseExplosion.rb:21:203:21:207 | [post] self | UseUseExplosion.rb:21:224:21:228 | self |
+| UseUseExplosion.rb:21:203:21:207 | [post] self | UseUseExplosion.rb:21:3547:21:3552 | self |
+| UseUseExplosion.rb:21:203:21:207 | self | UseUseExplosion.rb:21:224:21:228 | self |
+| UseUseExplosion.rb:21:203:21:207 | self | UseUseExplosion.rb:21:3547:21:3552 | self |
+| UseUseExplosion.rb:21:203:21:212 | ... > ... | UseUseExplosion.rb:21:202:21:213 | [false] ( ... ) |
+| UseUseExplosion.rb:21:203:21:212 | ... > ... | UseUseExplosion.rb:21:202:21:213 | [true] ( ... ) |
+| UseUseExplosion.rb:21:215:21:3540 | then ... | UseUseExplosion.rb:21:199:21:3556 | if ... |
+| UseUseExplosion.rb:21:220:21:3540 | if ... | UseUseExplosion.rb:21:215:21:3540 | then ... |
+| UseUseExplosion.rb:21:224:21:228 | [post] self | UseUseExplosion.rb:21:245:21:249 | self |
+| UseUseExplosion.rb:21:224:21:228 | [post] self | UseUseExplosion.rb:21:3531:21:3536 | self |
+| UseUseExplosion.rb:21:224:21:228 | self | UseUseExplosion.rb:21:245:21:249 | self |
+| UseUseExplosion.rb:21:224:21:228 | self | UseUseExplosion.rb:21:3531:21:3536 | self |
+| UseUseExplosion.rb:21:224:21:233 | ... > ... | UseUseExplosion.rb:21:223:21:234 | [false] ( ... ) |
+| UseUseExplosion.rb:21:224:21:233 | ... > ... | UseUseExplosion.rb:21:223:21:234 | [true] ( ... ) |
+| UseUseExplosion.rb:21:236:21:3524 | then ... | UseUseExplosion.rb:21:220:21:3540 | if ... |
+| UseUseExplosion.rb:21:241:21:3524 | if ... | UseUseExplosion.rb:21:236:21:3524 | then ... |
+| UseUseExplosion.rb:21:245:21:249 | [post] self | UseUseExplosion.rb:21:266:21:270 | self |
+| UseUseExplosion.rb:21:245:21:249 | [post] self | UseUseExplosion.rb:21:3515:21:3520 | self |
+| UseUseExplosion.rb:21:245:21:249 | self | UseUseExplosion.rb:21:266:21:270 | self |
+| UseUseExplosion.rb:21:245:21:249 | self | UseUseExplosion.rb:21:3515:21:3520 | self |
+| UseUseExplosion.rb:21:245:21:254 | ... > ... | UseUseExplosion.rb:21:244:21:255 | [false] ( ... ) |
+| UseUseExplosion.rb:21:245:21:254 | ... > ... | UseUseExplosion.rb:21:244:21:255 | [true] ( ... ) |
+| UseUseExplosion.rb:21:257:21:3508 | then ... | UseUseExplosion.rb:21:241:21:3524 | if ... |
+| UseUseExplosion.rb:21:262:21:3508 | if ... | UseUseExplosion.rb:21:257:21:3508 | then ... |
+| UseUseExplosion.rb:21:266:21:270 | [post] self | UseUseExplosion.rb:21:287:21:291 | self |
+| UseUseExplosion.rb:21:266:21:270 | [post] self | UseUseExplosion.rb:21:3499:21:3504 | self |
+| UseUseExplosion.rb:21:266:21:270 | self | UseUseExplosion.rb:21:287:21:291 | self |
+| UseUseExplosion.rb:21:266:21:270 | self | UseUseExplosion.rb:21:3499:21:3504 | self |
+| UseUseExplosion.rb:21:266:21:275 | ... > ... | UseUseExplosion.rb:21:265:21:276 | [false] ( ... ) |
+| UseUseExplosion.rb:21:266:21:275 | ... > ... | UseUseExplosion.rb:21:265:21:276 | [true] ( ... ) |
+| UseUseExplosion.rb:21:278:21:3492 | then ... | UseUseExplosion.rb:21:262:21:3508 | if ... |
+| UseUseExplosion.rb:21:283:21:3492 | if ... | UseUseExplosion.rb:21:278:21:3492 | then ... |
+| UseUseExplosion.rb:21:287:21:291 | [post] self | UseUseExplosion.rb:21:308:21:312 | self |
+| UseUseExplosion.rb:21:287:21:291 | [post] self | UseUseExplosion.rb:21:3483:21:3488 | self |
+| UseUseExplosion.rb:21:287:21:291 | self | UseUseExplosion.rb:21:308:21:312 | self |
+| UseUseExplosion.rb:21:287:21:291 | self | UseUseExplosion.rb:21:3483:21:3488 | self |
+| UseUseExplosion.rb:21:287:21:296 | ... > ... | UseUseExplosion.rb:21:286:21:297 | [false] ( ... ) |
+| UseUseExplosion.rb:21:287:21:296 | ... > ... | UseUseExplosion.rb:21:286:21:297 | [true] ( ... ) |
+| UseUseExplosion.rb:21:299:21:3476 | then ... | UseUseExplosion.rb:21:283:21:3492 | if ... |
+| UseUseExplosion.rb:21:304:21:3476 | if ... | UseUseExplosion.rb:21:299:21:3476 | then ... |
+| UseUseExplosion.rb:21:308:21:312 | [post] self | UseUseExplosion.rb:21:329:21:333 | self |
+| UseUseExplosion.rb:21:308:21:312 | [post] self | UseUseExplosion.rb:21:3467:21:3472 | self |
+| UseUseExplosion.rb:21:308:21:312 | self | UseUseExplosion.rb:21:329:21:333 | self |
+| UseUseExplosion.rb:21:308:21:312 | self | UseUseExplosion.rb:21:3467:21:3472 | self |
+| UseUseExplosion.rb:21:308:21:317 | ... > ... | UseUseExplosion.rb:21:307:21:318 | [false] ( ... ) |
+| UseUseExplosion.rb:21:308:21:317 | ... > ... | UseUseExplosion.rb:21:307:21:318 | [true] ( ... ) |
+| UseUseExplosion.rb:21:320:21:3460 | then ... | UseUseExplosion.rb:21:304:21:3476 | if ... |
+| UseUseExplosion.rb:21:325:21:3460 | if ... | UseUseExplosion.rb:21:320:21:3460 | then ... |
+| UseUseExplosion.rb:21:329:21:333 | [post] self | UseUseExplosion.rb:21:350:21:354 | self |
+| UseUseExplosion.rb:21:329:21:333 | [post] self | UseUseExplosion.rb:21:3451:21:3456 | self |
+| UseUseExplosion.rb:21:329:21:333 | self | UseUseExplosion.rb:21:350:21:354 | self |
+| UseUseExplosion.rb:21:329:21:333 | self | UseUseExplosion.rb:21:3451:21:3456 | self |
+| UseUseExplosion.rb:21:329:21:338 | ... > ... | UseUseExplosion.rb:21:328:21:339 | [false] ( ... ) |
+| UseUseExplosion.rb:21:329:21:338 | ... > ... | UseUseExplosion.rb:21:328:21:339 | [true] ( ... ) |
+| UseUseExplosion.rb:21:341:21:3444 | then ... | UseUseExplosion.rb:21:325:21:3460 | if ... |
+| UseUseExplosion.rb:21:346:21:3444 | if ... | UseUseExplosion.rb:21:341:21:3444 | then ... |
+| UseUseExplosion.rb:21:350:21:354 | [post] self | UseUseExplosion.rb:21:371:21:375 | self |
+| UseUseExplosion.rb:21:350:21:354 | [post] self | UseUseExplosion.rb:21:3435:21:3440 | self |
+| UseUseExplosion.rb:21:350:21:354 | self | UseUseExplosion.rb:21:371:21:375 | self |
+| UseUseExplosion.rb:21:350:21:354 | self | UseUseExplosion.rb:21:3435:21:3440 | self |
+| UseUseExplosion.rb:21:350:21:359 | ... > ... | UseUseExplosion.rb:21:349:21:360 | [false] ( ... ) |
+| UseUseExplosion.rb:21:350:21:359 | ... > ... | UseUseExplosion.rb:21:349:21:360 | [true] ( ... ) |
+| UseUseExplosion.rb:21:362:21:3428 | then ... | UseUseExplosion.rb:21:346:21:3444 | if ... |
+| UseUseExplosion.rb:21:367:21:3428 | if ... | UseUseExplosion.rb:21:362:21:3428 | then ... |
+| UseUseExplosion.rb:21:371:21:375 | [post] self | UseUseExplosion.rb:21:392:21:396 | self |
+| UseUseExplosion.rb:21:371:21:375 | [post] self | UseUseExplosion.rb:21:3419:21:3424 | self |
+| UseUseExplosion.rb:21:371:21:375 | self | UseUseExplosion.rb:21:392:21:396 | self |
+| UseUseExplosion.rb:21:371:21:375 | self | UseUseExplosion.rb:21:3419:21:3424 | self |
+| UseUseExplosion.rb:21:371:21:380 | ... > ... | UseUseExplosion.rb:21:370:21:381 | [false] ( ... ) |
+| UseUseExplosion.rb:21:371:21:380 | ... > ... | UseUseExplosion.rb:21:370:21:381 | [true] ( ... ) |
+| UseUseExplosion.rb:21:383:21:3412 | then ... | UseUseExplosion.rb:21:367:21:3428 | if ... |
+| UseUseExplosion.rb:21:388:21:3412 | if ... | UseUseExplosion.rb:21:383:21:3412 | then ... |
+| UseUseExplosion.rb:21:392:21:396 | [post] self | UseUseExplosion.rb:21:413:21:417 | self |
+| UseUseExplosion.rb:21:392:21:396 | [post] self | UseUseExplosion.rb:21:3403:21:3408 | self |
+| UseUseExplosion.rb:21:392:21:396 | self | UseUseExplosion.rb:21:413:21:417 | self |
+| UseUseExplosion.rb:21:392:21:396 | self | UseUseExplosion.rb:21:3403:21:3408 | self |
+| UseUseExplosion.rb:21:392:21:401 | ... > ... | UseUseExplosion.rb:21:391:21:402 | [false] ( ... ) |
+| UseUseExplosion.rb:21:392:21:401 | ... > ... | UseUseExplosion.rb:21:391:21:402 | [true] ( ... ) |
+| UseUseExplosion.rb:21:404:21:3396 | then ... | UseUseExplosion.rb:21:388:21:3412 | if ... |
+| UseUseExplosion.rb:21:409:21:3396 | if ... | UseUseExplosion.rb:21:404:21:3396 | then ... |
+| UseUseExplosion.rb:21:413:21:417 | [post] self | UseUseExplosion.rb:21:434:21:438 | self |
+| UseUseExplosion.rb:21:413:21:417 | [post] self | UseUseExplosion.rb:21:3387:21:3392 | self |
+| UseUseExplosion.rb:21:413:21:417 | self | UseUseExplosion.rb:21:434:21:438 | self |
+| UseUseExplosion.rb:21:413:21:417 | self | UseUseExplosion.rb:21:3387:21:3392 | self |
+| UseUseExplosion.rb:21:413:21:422 | ... > ... | UseUseExplosion.rb:21:412:21:423 | [false] ( ... ) |
+| UseUseExplosion.rb:21:413:21:422 | ... > ... | UseUseExplosion.rb:21:412:21:423 | [true] ( ... ) |
+| UseUseExplosion.rb:21:425:21:3380 | then ... | UseUseExplosion.rb:21:409:21:3396 | if ... |
+| UseUseExplosion.rb:21:430:21:3380 | if ... | UseUseExplosion.rb:21:425:21:3380 | then ... |
+| UseUseExplosion.rb:21:434:21:438 | [post] self | UseUseExplosion.rb:21:455:21:459 | self |
+| UseUseExplosion.rb:21:434:21:438 | [post] self | UseUseExplosion.rb:21:3371:21:3376 | self |
+| UseUseExplosion.rb:21:434:21:438 | self | UseUseExplosion.rb:21:455:21:459 | self |
+| UseUseExplosion.rb:21:434:21:438 | self | UseUseExplosion.rb:21:3371:21:3376 | self |
+| UseUseExplosion.rb:21:434:21:443 | ... > ... | UseUseExplosion.rb:21:433:21:444 | [false] ( ... ) |
+| UseUseExplosion.rb:21:434:21:443 | ... > ... | UseUseExplosion.rb:21:433:21:444 | [true] ( ... ) |
+| UseUseExplosion.rb:21:446:21:3364 | then ... | UseUseExplosion.rb:21:430:21:3380 | if ... |
+| UseUseExplosion.rb:21:451:21:3364 | if ... | UseUseExplosion.rb:21:446:21:3364 | then ... |
+| UseUseExplosion.rb:21:455:21:459 | [post] self | UseUseExplosion.rb:21:476:21:480 | self |
+| UseUseExplosion.rb:21:455:21:459 | [post] self | UseUseExplosion.rb:21:3355:21:3360 | self |
+| UseUseExplosion.rb:21:455:21:459 | self | UseUseExplosion.rb:21:476:21:480 | self |
+| UseUseExplosion.rb:21:455:21:459 | self | UseUseExplosion.rb:21:3355:21:3360 | self |
+| UseUseExplosion.rb:21:455:21:464 | ... > ... | UseUseExplosion.rb:21:454:21:465 | [false] ( ... ) |
+| UseUseExplosion.rb:21:455:21:464 | ... > ... | UseUseExplosion.rb:21:454:21:465 | [true] ( ... ) |
+| UseUseExplosion.rb:21:467:21:3348 | then ... | UseUseExplosion.rb:21:451:21:3364 | if ... |
+| UseUseExplosion.rb:21:472:21:3348 | if ... | UseUseExplosion.rb:21:467:21:3348 | then ... |
+| UseUseExplosion.rb:21:476:21:480 | [post] self | UseUseExplosion.rb:21:497:21:501 | self |
+| UseUseExplosion.rb:21:476:21:480 | [post] self | UseUseExplosion.rb:21:3339:21:3344 | self |
+| UseUseExplosion.rb:21:476:21:480 | self | UseUseExplosion.rb:21:497:21:501 | self |
+| UseUseExplosion.rb:21:476:21:480 | self | UseUseExplosion.rb:21:3339:21:3344 | self |
+| UseUseExplosion.rb:21:476:21:485 | ... > ... | UseUseExplosion.rb:21:475:21:486 | [false] ( ... ) |
+| UseUseExplosion.rb:21:476:21:485 | ... > ... | UseUseExplosion.rb:21:475:21:486 | [true] ( ... ) |
+| UseUseExplosion.rb:21:488:21:3332 | then ... | UseUseExplosion.rb:21:472:21:3348 | if ... |
+| UseUseExplosion.rb:21:493:21:3332 | if ... | UseUseExplosion.rb:21:488:21:3332 | then ... |
+| UseUseExplosion.rb:21:497:21:501 | [post] self | UseUseExplosion.rb:21:518:21:522 | self |
+| UseUseExplosion.rb:21:497:21:501 | [post] self | UseUseExplosion.rb:21:3323:21:3328 | self |
+| UseUseExplosion.rb:21:497:21:501 | self | UseUseExplosion.rb:21:518:21:522 | self |
+| UseUseExplosion.rb:21:497:21:501 | self | UseUseExplosion.rb:21:3323:21:3328 | self |
+| UseUseExplosion.rb:21:497:21:506 | ... > ... | UseUseExplosion.rb:21:496:21:507 | [false] ( ... ) |
+| UseUseExplosion.rb:21:497:21:506 | ... > ... | UseUseExplosion.rb:21:496:21:507 | [true] ( ... ) |
+| UseUseExplosion.rb:21:509:21:3316 | then ... | UseUseExplosion.rb:21:493:21:3332 | if ... |
+| UseUseExplosion.rb:21:514:21:3316 | if ... | UseUseExplosion.rb:21:509:21:3316 | then ... |
+| UseUseExplosion.rb:21:518:21:522 | [post] self | UseUseExplosion.rb:21:539:21:543 | self |
+| UseUseExplosion.rb:21:518:21:522 | [post] self | UseUseExplosion.rb:21:3307:21:3312 | self |
+| UseUseExplosion.rb:21:518:21:522 | self | UseUseExplosion.rb:21:539:21:543 | self |
+| UseUseExplosion.rb:21:518:21:522 | self | UseUseExplosion.rb:21:3307:21:3312 | self |
+| UseUseExplosion.rb:21:518:21:527 | ... > ... | UseUseExplosion.rb:21:517:21:528 | [false] ( ... ) |
+| UseUseExplosion.rb:21:518:21:527 | ... > ... | UseUseExplosion.rb:21:517:21:528 | [true] ( ... ) |
+| UseUseExplosion.rb:21:530:21:3300 | then ... | UseUseExplosion.rb:21:514:21:3316 | if ... |
+| UseUseExplosion.rb:21:535:21:3300 | if ... | UseUseExplosion.rb:21:530:21:3300 | then ... |
+| UseUseExplosion.rb:21:539:21:543 | [post] self | UseUseExplosion.rb:21:560:21:564 | self |
+| UseUseExplosion.rb:21:539:21:543 | [post] self | UseUseExplosion.rb:21:3291:21:3296 | self |
+| UseUseExplosion.rb:21:539:21:543 | self | UseUseExplosion.rb:21:560:21:564 | self |
+| UseUseExplosion.rb:21:539:21:543 | self | UseUseExplosion.rb:21:3291:21:3296 | self |
+| UseUseExplosion.rb:21:539:21:548 | ... > ... | UseUseExplosion.rb:21:538:21:549 | [false] ( ... ) |
+| UseUseExplosion.rb:21:539:21:548 | ... > ... | UseUseExplosion.rb:21:538:21:549 | [true] ( ... ) |
+| UseUseExplosion.rb:21:551:21:3284 | then ... | UseUseExplosion.rb:21:535:21:3300 | if ... |
+| UseUseExplosion.rb:21:556:21:3284 | if ... | UseUseExplosion.rb:21:551:21:3284 | then ... |
+| UseUseExplosion.rb:21:560:21:564 | [post] self | UseUseExplosion.rb:21:581:21:585 | self |
+| UseUseExplosion.rb:21:560:21:564 | [post] self | UseUseExplosion.rb:21:3275:21:3280 | self |
+| UseUseExplosion.rb:21:560:21:564 | self | UseUseExplosion.rb:21:581:21:585 | self |
+| UseUseExplosion.rb:21:560:21:564 | self | UseUseExplosion.rb:21:3275:21:3280 | self |
+| UseUseExplosion.rb:21:560:21:569 | ... > ... | UseUseExplosion.rb:21:559:21:570 | [false] ( ... ) |
+| UseUseExplosion.rb:21:560:21:569 | ... > ... | UseUseExplosion.rb:21:559:21:570 | [true] ( ... ) |
+| UseUseExplosion.rb:21:572:21:3268 | then ... | UseUseExplosion.rb:21:556:21:3284 | if ... |
+| UseUseExplosion.rb:21:577:21:3268 | if ... | UseUseExplosion.rb:21:572:21:3268 | then ... |
+| UseUseExplosion.rb:21:581:21:585 | [post] self | UseUseExplosion.rb:21:602:21:606 | self |
+| UseUseExplosion.rb:21:581:21:585 | [post] self | UseUseExplosion.rb:21:3259:21:3264 | self |
+| UseUseExplosion.rb:21:581:21:585 | self | UseUseExplosion.rb:21:602:21:606 | self |
+| UseUseExplosion.rb:21:581:21:585 | self | UseUseExplosion.rb:21:3259:21:3264 | self |
+| UseUseExplosion.rb:21:581:21:590 | ... > ... | UseUseExplosion.rb:21:580:21:591 | [false] ( ... ) |
+| UseUseExplosion.rb:21:581:21:590 | ... > ... | UseUseExplosion.rb:21:580:21:591 | [true] ( ... ) |
+| UseUseExplosion.rb:21:593:21:3252 | then ... | UseUseExplosion.rb:21:577:21:3268 | if ... |
+| UseUseExplosion.rb:21:598:21:3252 | if ... | UseUseExplosion.rb:21:593:21:3252 | then ... |
+| UseUseExplosion.rb:21:602:21:606 | [post] self | UseUseExplosion.rb:21:623:21:627 | self |
+| UseUseExplosion.rb:21:602:21:606 | [post] self | UseUseExplosion.rb:21:3243:21:3248 | self |
+| UseUseExplosion.rb:21:602:21:606 | self | UseUseExplosion.rb:21:623:21:627 | self |
+| UseUseExplosion.rb:21:602:21:606 | self | UseUseExplosion.rb:21:3243:21:3248 | self |
+| UseUseExplosion.rb:21:602:21:611 | ... > ... | UseUseExplosion.rb:21:601:21:612 | [false] ( ... ) |
+| UseUseExplosion.rb:21:602:21:611 | ... > ... | UseUseExplosion.rb:21:601:21:612 | [true] ( ... ) |
+| UseUseExplosion.rb:21:614:21:3236 | then ... | UseUseExplosion.rb:21:598:21:3252 | if ... |
+| UseUseExplosion.rb:21:619:21:3236 | if ... | UseUseExplosion.rb:21:614:21:3236 | then ... |
+| UseUseExplosion.rb:21:623:21:627 | [post] self | UseUseExplosion.rb:21:644:21:648 | self |
+| UseUseExplosion.rb:21:623:21:627 | [post] self | UseUseExplosion.rb:21:3227:21:3232 | self |
+| UseUseExplosion.rb:21:623:21:627 | self | UseUseExplosion.rb:21:644:21:648 | self |
+| UseUseExplosion.rb:21:623:21:627 | self | UseUseExplosion.rb:21:3227:21:3232 | self |
+| UseUseExplosion.rb:21:623:21:632 | ... > ... | UseUseExplosion.rb:21:622:21:633 | [false] ( ... ) |
+| UseUseExplosion.rb:21:623:21:632 | ... > ... | UseUseExplosion.rb:21:622:21:633 | [true] ( ... ) |
+| UseUseExplosion.rb:21:635:21:3220 | then ... | UseUseExplosion.rb:21:619:21:3236 | if ... |
+| UseUseExplosion.rb:21:640:21:3220 | if ... | UseUseExplosion.rb:21:635:21:3220 | then ... |
+| UseUseExplosion.rb:21:644:21:648 | [post] self | UseUseExplosion.rb:21:665:21:669 | self |
+| UseUseExplosion.rb:21:644:21:648 | [post] self | UseUseExplosion.rb:21:3211:21:3216 | self |
+| UseUseExplosion.rb:21:644:21:648 | self | UseUseExplosion.rb:21:665:21:669 | self |
+| UseUseExplosion.rb:21:644:21:648 | self | UseUseExplosion.rb:21:3211:21:3216 | self |
+| UseUseExplosion.rb:21:644:21:653 | ... > ... | UseUseExplosion.rb:21:643:21:654 | [false] ( ... ) |
+| UseUseExplosion.rb:21:644:21:653 | ... > ... | UseUseExplosion.rb:21:643:21:654 | [true] ( ... ) |
+| UseUseExplosion.rb:21:656:21:3204 | then ... | UseUseExplosion.rb:21:640:21:3220 | if ... |
+| UseUseExplosion.rb:21:661:21:3204 | if ... | UseUseExplosion.rb:21:656:21:3204 | then ... |
+| UseUseExplosion.rb:21:665:21:669 | [post] self | UseUseExplosion.rb:21:686:21:690 | self |
+| UseUseExplosion.rb:21:665:21:669 | [post] self | UseUseExplosion.rb:21:3195:21:3200 | self |
+| UseUseExplosion.rb:21:665:21:669 | self | UseUseExplosion.rb:21:686:21:690 | self |
+| UseUseExplosion.rb:21:665:21:669 | self | UseUseExplosion.rb:21:3195:21:3200 | self |
+| UseUseExplosion.rb:21:665:21:674 | ... > ... | UseUseExplosion.rb:21:664:21:675 | [false] ( ... ) |
+| UseUseExplosion.rb:21:665:21:674 | ... > ... | UseUseExplosion.rb:21:664:21:675 | [true] ( ... ) |
+| UseUseExplosion.rb:21:677:21:3188 | then ... | UseUseExplosion.rb:21:661:21:3204 | if ... |
+| UseUseExplosion.rb:21:682:21:3188 | if ... | UseUseExplosion.rb:21:677:21:3188 | then ... |
+| UseUseExplosion.rb:21:686:21:690 | [post] self | UseUseExplosion.rb:21:707:21:711 | self |
+| UseUseExplosion.rb:21:686:21:690 | [post] self | UseUseExplosion.rb:21:3179:21:3184 | self |
+| UseUseExplosion.rb:21:686:21:690 | self | UseUseExplosion.rb:21:707:21:711 | self |
+| UseUseExplosion.rb:21:686:21:690 | self | UseUseExplosion.rb:21:3179:21:3184 | self |
+| UseUseExplosion.rb:21:686:21:695 | ... > ... | UseUseExplosion.rb:21:685:21:696 | [false] ( ... ) |
+| UseUseExplosion.rb:21:686:21:695 | ... > ... | UseUseExplosion.rb:21:685:21:696 | [true] ( ... ) |
+| UseUseExplosion.rb:21:698:21:3172 | then ... | UseUseExplosion.rb:21:682:21:3188 | if ... |
+| UseUseExplosion.rb:21:703:21:3172 | if ... | UseUseExplosion.rb:21:698:21:3172 | then ... |
+| UseUseExplosion.rb:21:707:21:711 | [post] self | UseUseExplosion.rb:21:728:21:732 | self |
+| UseUseExplosion.rb:21:707:21:711 | [post] self | UseUseExplosion.rb:21:3163:21:3168 | self |
+| UseUseExplosion.rb:21:707:21:711 | self | UseUseExplosion.rb:21:728:21:732 | self |
+| UseUseExplosion.rb:21:707:21:711 | self | UseUseExplosion.rb:21:3163:21:3168 | self |
+| UseUseExplosion.rb:21:707:21:716 | ... > ... | UseUseExplosion.rb:21:706:21:717 | [false] ( ... ) |
+| UseUseExplosion.rb:21:707:21:716 | ... > ... | UseUseExplosion.rb:21:706:21:717 | [true] ( ... ) |
+| UseUseExplosion.rb:21:719:21:3156 | then ... | UseUseExplosion.rb:21:703:21:3172 | if ... |
+| UseUseExplosion.rb:21:724:21:3156 | if ... | UseUseExplosion.rb:21:719:21:3156 | then ... |
+| UseUseExplosion.rb:21:728:21:732 | [post] self | UseUseExplosion.rb:21:749:21:753 | self |
+| UseUseExplosion.rb:21:728:21:732 | [post] self | UseUseExplosion.rb:21:3147:21:3152 | self |
+| UseUseExplosion.rb:21:728:21:732 | self | UseUseExplosion.rb:21:749:21:753 | self |
+| UseUseExplosion.rb:21:728:21:732 | self | UseUseExplosion.rb:21:3147:21:3152 | self |
+| UseUseExplosion.rb:21:728:21:737 | ... > ... | UseUseExplosion.rb:21:727:21:738 | [false] ( ... ) |
+| UseUseExplosion.rb:21:728:21:737 | ... > ... | UseUseExplosion.rb:21:727:21:738 | [true] ( ... ) |
+| UseUseExplosion.rb:21:740:21:3140 | then ... | UseUseExplosion.rb:21:724:21:3156 | if ... |
+| UseUseExplosion.rb:21:745:21:3140 | if ... | UseUseExplosion.rb:21:740:21:3140 | then ... |
+| UseUseExplosion.rb:21:749:21:753 | [post] self | UseUseExplosion.rb:21:770:21:774 | self |
+| UseUseExplosion.rb:21:749:21:753 | [post] self | UseUseExplosion.rb:21:3131:21:3136 | self |
+| UseUseExplosion.rb:21:749:21:753 | self | UseUseExplosion.rb:21:770:21:774 | self |
+| UseUseExplosion.rb:21:749:21:753 | self | UseUseExplosion.rb:21:3131:21:3136 | self |
+| UseUseExplosion.rb:21:749:21:758 | ... > ... | UseUseExplosion.rb:21:748:21:759 | [false] ( ... ) |
+| UseUseExplosion.rb:21:749:21:758 | ... > ... | UseUseExplosion.rb:21:748:21:759 | [true] ( ... ) |
+| UseUseExplosion.rb:21:761:21:3124 | then ... | UseUseExplosion.rb:21:745:21:3140 | if ... |
+| UseUseExplosion.rb:21:766:21:3124 | if ... | UseUseExplosion.rb:21:761:21:3124 | then ... |
+| UseUseExplosion.rb:21:770:21:774 | [post] self | UseUseExplosion.rb:21:791:21:795 | self |
+| UseUseExplosion.rb:21:770:21:774 | [post] self | UseUseExplosion.rb:21:3115:21:3120 | self |
+| UseUseExplosion.rb:21:770:21:774 | self | UseUseExplosion.rb:21:791:21:795 | self |
+| UseUseExplosion.rb:21:770:21:774 | self | UseUseExplosion.rb:21:3115:21:3120 | self |
+| UseUseExplosion.rb:21:770:21:779 | ... > ... | UseUseExplosion.rb:21:769:21:780 | [false] ( ... ) |
+| UseUseExplosion.rb:21:770:21:779 | ... > ... | UseUseExplosion.rb:21:769:21:780 | [true] ( ... ) |
+| UseUseExplosion.rb:21:782:21:3108 | then ... | UseUseExplosion.rb:21:766:21:3124 | if ... |
+| UseUseExplosion.rb:21:787:21:3108 | if ... | UseUseExplosion.rb:21:782:21:3108 | then ... |
+| UseUseExplosion.rb:21:791:21:795 | [post] self | UseUseExplosion.rb:21:812:21:816 | self |
+| UseUseExplosion.rb:21:791:21:795 | [post] self | UseUseExplosion.rb:21:3099:21:3104 | self |
+| UseUseExplosion.rb:21:791:21:795 | self | UseUseExplosion.rb:21:812:21:816 | self |
+| UseUseExplosion.rb:21:791:21:795 | self | UseUseExplosion.rb:21:3099:21:3104 | self |
+| UseUseExplosion.rb:21:791:21:800 | ... > ... | UseUseExplosion.rb:21:790:21:801 | [false] ( ... ) |
+| UseUseExplosion.rb:21:791:21:800 | ... > ... | UseUseExplosion.rb:21:790:21:801 | [true] ( ... ) |
+| UseUseExplosion.rb:21:803:21:3092 | then ... | UseUseExplosion.rb:21:787:21:3108 | if ... |
+| UseUseExplosion.rb:21:808:21:3092 | if ... | UseUseExplosion.rb:21:803:21:3092 | then ... |
+| UseUseExplosion.rb:21:812:21:816 | [post] self | UseUseExplosion.rb:21:833:21:837 | self |
+| UseUseExplosion.rb:21:812:21:816 | [post] self | UseUseExplosion.rb:21:3083:21:3088 | self |
+| UseUseExplosion.rb:21:812:21:816 | self | UseUseExplosion.rb:21:833:21:837 | self |
+| UseUseExplosion.rb:21:812:21:816 | self | UseUseExplosion.rb:21:3083:21:3088 | self |
+| UseUseExplosion.rb:21:812:21:821 | ... > ... | UseUseExplosion.rb:21:811:21:822 | [false] ( ... ) |
+| UseUseExplosion.rb:21:812:21:821 | ... > ... | UseUseExplosion.rb:21:811:21:822 | [true] ( ... ) |
+| UseUseExplosion.rb:21:824:21:3076 | then ... | UseUseExplosion.rb:21:808:21:3092 | if ... |
+| UseUseExplosion.rb:21:829:21:3076 | if ... | UseUseExplosion.rb:21:824:21:3076 | then ... |
+| UseUseExplosion.rb:21:833:21:837 | [post] self | UseUseExplosion.rb:21:854:21:858 | self |
+| UseUseExplosion.rb:21:833:21:837 | [post] self | UseUseExplosion.rb:21:3067:21:3072 | self |
+| UseUseExplosion.rb:21:833:21:837 | self | UseUseExplosion.rb:21:854:21:858 | self |
+| UseUseExplosion.rb:21:833:21:837 | self | UseUseExplosion.rb:21:3067:21:3072 | self |
+| UseUseExplosion.rb:21:833:21:842 | ... > ... | UseUseExplosion.rb:21:832:21:843 | [false] ( ... ) |
+| UseUseExplosion.rb:21:833:21:842 | ... > ... | UseUseExplosion.rb:21:832:21:843 | [true] ( ... ) |
+| UseUseExplosion.rb:21:845:21:3060 | then ... | UseUseExplosion.rb:21:829:21:3076 | if ... |
+| UseUseExplosion.rb:21:850:21:3060 | if ... | UseUseExplosion.rb:21:845:21:3060 | then ... |
+| UseUseExplosion.rb:21:854:21:858 | [post] self | UseUseExplosion.rb:21:875:21:879 | self |
+| UseUseExplosion.rb:21:854:21:858 | [post] self | UseUseExplosion.rb:21:3051:21:3056 | self |
+| UseUseExplosion.rb:21:854:21:858 | self | UseUseExplosion.rb:21:875:21:879 | self |
+| UseUseExplosion.rb:21:854:21:858 | self | UseUseExplosion.rb:21:3051:21:3056 | self |
+| UseUseExplosion.rb:21:854:21:863 | ... > ... | UseUseExplosion.rb:21:853:21:864 | [false] ( ... ) |
+| UseUseExplosion.rb:21:854:21:863 | ... > ... | UseUseExplosion.rb:21:853:21:864 | [true] ( ... ) |
+| UseUseExplosion.rb:21:866:21:3044 | then ... | UseUseExplosion.rb:21:850:21:3060 | if ... |
+| UseUseExplosion.rb:21:871:21:3044 | if ... | UseUseExplosion.rb:21:866:21:3044 | then ... |
+| UseUseExplosion.rb:21:875:21:879 | [post] self | UseUseExplosion.rb:21:896:21:900 | self |
+| UseUseExplosion.rb:21:875:21:879 | [post] self | UseUseExplosion.rb:21:3035:21:3040 | self |
+| UseUseExplosion.rb:21:875:21:879 | self | UseUseExplosion.rb:21:896:21:900 | self |
+| UseUseExplosion.rb:21:875:21:879 | self | UseUseExplosion.rb:21:3035:21:3040 | self |
+| UseUseExplosion.rb:21:875:21:884 | ... > ... | UseUseExplosion.rb:21:874:21:885 | [false] ( ... ) |
+| UseUseExplosion.rb:21:875:21:884 | ... > ... | UseUseExplosion.rb:21:874:21:885 | [true] ( ... ) |
+| UseUseExplosion.rb:21:887:21:3028 | then ... | UseUseExplosion.rb:21:871:21:3044 | if ... |
+| UseUseExplosion.rb:21:892:21:3028 | if ... | UseUseExplosion.rb:21:887:21:3028 | then ... |
+| UseUseExplosion.rb:21:896:21:900 | [post] self | UseUseExplosion.rb:21:917:21:921 | self |
+| UseUseExplosion.rb:21:896:21:900 | [post] self | UseUseExplosion.rb:21:3019:21:3024 | self |
+| UseUseExplosion.rb:21:896:21:900 | self | UseUseExplosion.rb:21:917:21:921 | self |
+| UseUseExplosion.rb:21:896:21:900 | self | UseUseExplosion.rb:21:3019:21:3024 | self |
+| UseUseExplosion.rb:21:896:21:905 | ... > ... | UseUseExplosion.rb:21:895:21:906 | [false] ( ... ) |
+| UseUseExplosion.rb:21:896:21:905 | ... > ... | UseUseExplosion.rb:21:895:21:906 | [true] ( ... ) |
+| UseUseExplosion.rb:21:908:21:3012 | then ... | UseUseExplosion.rb:21:892:21:3028 | if ... |
+| UseUseExplosion.rb:21:913:21:3012 | if ... | UseUseExplosion.rb:21:908:21:3012 | then ... |
+| UseUseExplosion.rb:21:917:21:921 | [post] self | UseUseExplosion.rb:21:938:21:942 | self |
+| UseUseExplosion.rb:21:917:21:921 | [post] self | UseUseExplosion.rb:21:3003:21:3008 | self |
+| UseUseExplosion.rb:21:917:21:921 | self | UseUseExplosion.rb:21:938:21:942 | self |
+| UseUseExplosion.rb:21:917:21:921 | self | UseUseExplosion.rb:21:3003:21:3008 | self |
+| UseUseExplosion.rb:21:917:21:926 | ... > ... | UseUseExplosion.rb:21:916:21:927 | [false] ( ... ) |
+| UseUseExplosion.rb:21:917:21:926 | ... > ... | UseUseExplosion.rb:21:916:21:927 | [true] ( ... ) |
+| UseUseExplosion.rb:21:929:21:2996 | then ... | UseUseExplosion.rb:21:913:21:3012 | if ... |
+| UseUseExplosion.rb:21:934:21:2996 | if ... | UseUseExplosion.rb:21:929:21:2996 | then ... |
+| UseUseExplosion.rb:21:938:21:942 | [post] self | UseUseExplosion.rb:21:959:21:963 | self |
+| UseUseExplosion.rb:21:938:21:942 | [post] self | UseUseExplosion.rb:21:2987:21:2992 | self |
+| UseUseExplosion.rb:21:938:21:942 | self | UseUseExplosion.rb:21:959:21:963 | self |
+| UseUseExplosion.rb:21:938:21:942 | self | UseUseExplosion.rb:21:2987:21:2992 | self |
+| UseUseExplosion.rb:21:938:21:947 | ... > ... | UseUseExplosion.rb:21:937:21:948 | [false] ( ... ) |
+| UseUseExplosion.rb:21:938:21:947 | ... > ... | UseUseExplosion.rb:21:937:21:948 | [true] ( ... ) |
+| UseUseExplosion.rb:21:950:21:2980 | then ... | UseUseExplosion.rb:21:934:21:2996 | if ... |
+| UseUseExplosion.rb:21:955:21:2980 | if ... | UseUseExplosion.rb:21:950:21:2980 | then ... |
+| UseUseExplosion.rb:21:959:21:963 | [post] self | UseUseExplosion.rb:21:980:21:984 | self |
+| UseUseExplosion.rb:21:959:21:963 | [post] self | UseUseExplosion.rb:21:2971:21:2976 | self |
+| UseUseExplosion.rb:21:959:21:963 | self | UseUseExplosion.rb:21:980:21:984 | self |
+| UseUseExplosion.rb:21:959:21:963 | self | UseUseExplosion.rb:21:2971:21:2976 | self |
+| UseUseExplosion.rb:21:959:21:968 | ... > ... | UseUseExplosion.rb:21:958:21:969 | [false] ( ... ) |
+| UseUseExplosion.rb:21:959:21:968 | ... > ... | UseUseExplosion.rb:21:958:21:969 | [true] ( ... ) |
+| UseUseExplosion.rb:21:971:21:2964 | then ... | UseUseExplosion.rb:21:955:21:2980 | if ... |
+| UseUseExplosion.rb:21:976:21:2964 | if ... | UseUseExplosion.rb:21:971:21:2964 | then ... |
+| UseUseExplosion.rb:21:980:21:984 | [post] self | UseUseExplosion.rb:21:1001:21:1005 | self |
+| UseUseExplosion.rb:21:980:21:984 | [post] self | UseUseExplosion.rb:21:2955:21:2960 | self |
+| UseUseExplosion.rb:21:980:21:984 | self | UseUseExplosion.rb:21:1001:21:1005 | self |
+| UseUseExplosion.rb:21:980:21:984 | self | UseUseExplosion.rb:21:2955:21:2960 | self |
+| UseUseExplosion.rb:21:980:21:989 | ... > ... | UseUseExplosion.rb:21:979:21:990 | [false] ( ... ) |
+| UseUseExplosion.rb:21:980:21:989 | ... > ... | UseUseExplosion.rb:21:979:21:990 | [true] ( ... ) |
+| UseUseExplosion.rb:21:992:21:2948 | then ... | UseUseExplosion.rb:21:976:21:2964 | if ... |
+| UseUseExplosion.rb:21:997:21:2948 | if ... | UseUseExplosion.rb:21:992:21:2948 | then ... |
+| UseUseExplosion.rb:21:1001:21:1005 | [post] self | UseUseExplosion.rb:21:1022:21:1026 | self |
+| UseUseExplosion.rb:21:1001:21:1005 | [post] self | UseUseExplosion.rb:21:2939:21:2944 | self |
+| UseUseExplosion.rb:21:1001:21:1005 | self | UseUseExplosion.rb:21:1022:21:1026 | self |
+| UseUseExplosion.rb:21:1001:21:1005 | self | UseUseExplosion.rb:21:2939:21:2944 | self |
+| UseUseExplosion.rb:21:1001:21:1010 | ... > ... | UseUseExplosion.rb:21:1000:21:1011 | [false] ( ... ) |
+| UseUseExplosion.rb:21:1001:21:1010 | ... > ... | UseUseExplosion.rb:21:1000:21:1011 | [true] ( ... ) |
+| UseUseExplosion.rb:21:1013:21:2932 | then ... | UseUseExplosion.rb:21:997:21:2948 | if ... |
+| UseUseExplosion.rb:21:1018:21:2932 | if ... | UseUseExplosion.rb:21:1013:21:2932 | then ... |
+| UseUseExplosion.rb:21:1022:21:1026 | [post] self | UseUseExplosion.rb:21:1043:21:1047 | self |
+| UseUseExplosion.rb:21:1022:21:1026 | [post] self | UseUseExplosion.rb:21:2923:21:2928 | self |
+| UseUseExplosion.rb:21:1022:21:1026 | self | UseUseExplosion.rb:21:1043:21:1047 | self |
+| UseUseExplosion.rb:21:1022:21:1026 | self | UseUseExplosion.rb:21:2923:21:2928 | self |
+| UseUseExplosion.rb:21:1022:21:1031 | ... > ... | UseUseExplosion.rb:21:1021:21:1032 | [false] ( ... ) |
+| UseUseExplosion.rb:21:1022:21:1031 | ... > ... | UseUseExplosion.rb:21:1021:21:1032 | [true] ( ... ) |
+| UseUseExplosion.rb:21:1034:21:2916 | then ... | UseUseExplosion.rb:21:1018:21:2932 | if ... |
+| UseUseExplosion.rb:21:1039:21:2916 | if ... | UseUseExplosion.rb:21:1034:21:2916 | then ... |
+| UseUseExplosion.rb:21:1043:21:1047 | [post] self | UseUseExplosion.rb:21:1064:21:1068 | self |
+| UseUseExplosion.rb:21:1043:21:1047 | [post] self | UseUseExplosion.rb:21:2907:21:2912 | self |
+| UseUseExplosion.rb:21:1043:21:1047 | self | UseUseExplosion.rb:21:1064:21:1068 | self |
+| UseUseExplosion.rb:21:1043:21:1047 | self | UseUseExplosion.rb:21:2907:21:2912 | self |
+| UseUseExplosion.rb:21:1043:21:1052 | ... > ... | UseUseExplosion.rb:21:1042:21:1053 | [false] ( ... ) |
+| UseUseExplosion.rb:21:1043:21:1052 | ... > ... | UseUseExplosion.rb:21:1042:21:1053 | [true] ( ... ) |
+| UseUseExplosion.rb:21:1055:21:2900 | then ... | UseUseExplosion.rb:21:1039:21:2916 | if ... |
+| UseUseExplosion.rb:21:1060:21:2900 | if ... | UseUseExplosion.rb:21:1055:21:2900 | then ... |
+| UseUseExplosion.rb:21:1064:21:1068 | [post] self | UseUseExplosion.rb:21:1085:21:1089 | self |
+| UseUseExplosion.rb:21:1064:21:1068 | [post] self | UseUseExplosion.rb:21:2891:21:2896 | self |
+| UseUseExplosion.rb:21:1064:21:1068 | self | UseUseExplosion.rb:21:1085:21:1089 | self |
+| UseUseExplosion.rb:21:1064:21:1068 | self | UseUseExplosion.rb:21:2891:21:2896 | self |
+| UseUseExplosion.rb:21:1064:21:1073 | ... > ... | UseUseExplosion.rb:21:1063:21:1074 | [false] ( ... ) |
+| UseUseExplosion.rb:21:1064:21:1073 | ... > ... | UseUseExplosion.rb:21:1063:21:1074 | [true] ( ... ) |
+| UseUseExplosion.rb:21:1076:21:2884 | then ... | UseUseExplosion.rb:21:1060:21:2900 | if ... |
+| UseUseExplosion.rb:21:1081:21:2884 | if ... | UseUseExplosion.rb:21:1076:21:2884 | then ... |
+| UseUseExplosion.rb:21:1085:21:1089 | [post] self | UseUseExplosion.rb:21:1106:21:1110 | self |
+| UseUseExplosion.rb:21:1085:21:1089 | [post] self | UseUseExplosion.rb:21:2875:21:2880 | self |
+| UseUseExplosion.rb:21:1085:21:1089 | self | UseUseExplosion.rb:21:1106:21:1110 | self |
+| UseUseExplosion.rb:21:1085:21:1089 | self | UseUseExplosion.rb:21:2875:21:2880 | self |
+| UseUseExplosion.rb:21:1085:21:1094 | ... > ... | UseUseExplosion.rb:21:1084:21:1095 | [false] ( ... ) |
+| UseUseExplosion.rb:21:1085:21:1094 | ... > ... | UseUseExplosion.rb:21:1084:21:1095 | [true] ( ... ) |
+| UseUseExplosion.rb:21:1097:21:2868 | then ... | UseUseExplosion.rb:21:1081:21:2884 | if ... |
+| UseUseExplosion.rb:21:1102:21:2868 | if ... | UseUseExplosion.rb:21:1097:21:2868 | then ... |
+| UseUseExplosion.rb:21:1106:21:1110 | [post] self | UseUseExplosion.rb:21:1127:21:1131 | self |
+| UseUseExplosion.rb:21:1106:21:1110 | [post] self | UseUseExplosion.rb:21:2859:21:2864 | self |
+| UseUseExplosion.rb:21:1106:21:1110 | self | UseUseExplosion.rb:21:1127:21:1131 | self |
+| UseUseExplosion.rb:21:1106:21:1110 | self | UseUseExplosion.rb:21:2859:21:2864 | self |
+| UseUseExplosion.rb:21:1106:21:1115 | ... > ... | UseUseExplosion.rb:21:1105:21:1116 | [false] ( ... ) |
+| UseUseExplosion.rb:21:1106:21:1115 | ... > ... | UseUseExplosion.rb:21:1105:21:1116 | [true] ( ... ) |
+| UseUseExplosion.rb:21:1118:21:2852 | then ... | UseUseExplosion.rb:21:1102:21:2868 | if ... |
+| UseUseExplosion.rb:21:1123:21:2852 | if ... | UseUseExplosion.rb:21:1118:21:2852 | then ... |
+| UseUseExplosion.rb:21:1127:21:1131 | [post] self | UseUseExplosion.rb:21:1148:21:1152 | self |
+| UseUseExplosion.rb:21:1127:21:1131 | [post] self | UseUseExplosion.rb:21:2843:21:2848 | self |
+| UseUseExplosion.rb:21:1127:21:1131 | self | UseUseExplosion.rb:21:1148:21:1152 | self |
+| UseUseExplosion.rb:21:1127:21:1131 | self | UseUseExplosion.rb:21:2843:21:2848 | self |
+| UseUseExplosion.rb:21:1127:21:1136 | ... > ... | UseUseExplosion.rb:21:1126:21:1137 | [false] ( ... ) |
+| UseUseExplosion.rb:21:1127:21:1136 | ... > ... | UseUseExplosion.rb:21:1126:21:1137 | [true] ( ... ) |
+| UseUseExplosion.rb:21:1139:21:2836 | then ... | UseUseExplosion.rb:21:1123:21:2852 | if ... |
+| UseUseExplosion.rb:21:1144:21:2836 | if ... | UseUseExplosion.rb:21:1139:21:2836 | then ... |
+| UseUseExplosion.rb:21:1148:21:1152 | [post] self | UseUseExplosion.rb:21:1169:21:1173 | self |
+| UseUseExplosion.rb:21:1148:21:1152 | [post] self | UseUseExplosion.rb:21:2827:21:2832 | self |
+| UseUseExplosion.rb:21:1148:21:1152 | self | UseUseExplosion.rb:21:1169:21:1173 | self |
+| UseUseExplosion.rb:21:1148:21:1152 | self | UseUseExplosion.rb:21:2827:21:2832 | self |
+| UseUseExplosion.rb:21:1148:21:1157 | ... > ... | UseUseExplosion.rb:21:1147:21:1158 | [false] ( ... ) |
+| UseUseExplosion.rb:21:1148:21:1157 | ... > ... | UseUseExplosion.rb:21:1147:21:1158 | [true] ( ... ) |
+| UseUseExplosion.rb:21:1160:21:2820 | then ... | UseUseExplosion.rb:21:1144:21:2836 | if ... |
+| UseUseExplosion.rb:21:1165:21:2820 | if ... | UseUseExplosion.rb:21:1160:21:2820 | then ... |
+| UseUseExplosion.rb:21:1169:21:1173 | [post] self | UseUseExplosion.rb:21:1190:21:1194 | self |
+| UseUseExplosion.rb:21:1169:21:1173 | [post] self | UseUseExplosion.rb:21:2811:21:2816 | self |
+| UseUseExplosion.rb:21:1169:21:1173 | self | UseUseExplosion.rb:21:1190:21:1194 | self |
+| UseUseExplosion.rb:21:1169:21:1173 | self | UseUseExplosion.rb:21:2811:21:2816 | self |
+| UseUseExplosion.rb:21:1169:21:1178 | ... > ... | UseUseExplosion.rb:21:1168:21:1179 | [false] ( ... ) |
+| UseUseExplosion.rb:21:1169:21:1178 | ... > ... | UseUseExplosion.rb:21:1168:21:1179 | [true] ( ... ) |
+| UseUseExplosion.rb:21:1181:21:2804 | then ... | UseUseExplosion.rb:21:1165:21:2820 | if ... |
+| UseUseExplosion.rb:21:1186:21:2804 | if ... | UseUseExplosion.rb:21:1181:21:2804 | then ... |
+| UseUseExplosion.rb:21:1190:21:1194 | [post] self | UseUseExplosion.rb:21:1211:21:1215 | self |
+| UseUseExplosion.rb:21:1190:21:1194 | [post] self | UseUseExplosion.rb:21:2795:21:2800 | self |
+| UseUseExplosion.rb:21:1190:21:1194 | self | UseUseExplosion.rb:21:1211:21:1215 | self |
+| UseUseExplosion.rb:21:1190:21:1194 | self | UseUseExplosion.rb:21:2795:21:2800 | self |
+| UseUseExplosion.rb:21:1190:21:1199 | ... > ... | UseUseExplosion.rb:21:1189:21:1200 | [false] ( ... ) |
+| UseUseExplosion.rb:21:1190:21:1199 | ... > ... | UseUseExplosion.rb:21:1189:21:1200 | [true] ( ... ) |
+| UseUseExplosion.rb:21:1202:21:2788 | then ... | UseUseExplosion.rb:21:1186:21:2804 | if ... |
+| UseUseExplosion.rb:21:1207:21:2788 | if ... | UseUseExplosion.rb:21:1202:21:2788 | then ... |
+| UseUseExplosion.rb:21:1211:21:1215 | [post] self | UseUseExplosion.rb:21:1232:21:1236 | self |
+| UseUseExplosion.rb:21:1211:21:1215 | [post] self | UseUseExplosion.rb:21:2779:21:2784 | self |
+| UseUseExplosion.rb:21:1211:21:1215 | self | UseUseExplosion.rb:21:1232:21:1236 | self |
+| UseUseExplosion.rb:21:1211:21:1215 | self | UseUseExplosion.rb:21:2779:21:2784 | self |
+| UseUseExplosion.rb:21:1211:21:1220 | ... > ... | UseUseExplosion.rb:21:1210:21:1221 | [false] ( ... ) |
+| UseUseExplosion.rb:21:1211:21:1220 | ... > ... | UseUseExplosion.rb:21:1210:21:1221 | [true] ( ... ) |
+| UseUseExplosion.rb:21:1223:21:2772 | then ... | UseUseExplosion.rb:21:1207:21:2788 | if ... |
+| UseUseExplosion.rb:21:1228:21:2772 | if ... | UseUseExplosion.rb:21:1223:21:2772 | then ... |
+| UseUseExplosion.rb:21:1232:21:1236 | [post] self | UseUseExplosion.rb:21:1253:21:1257 | self |
+| UseUseExplosion.rb:21:1232:21:1236 | [post] self | UseUseExplosion.rb:21:2763:21:2768 | self |
+| UseUseExplosion.rb:21:1232:21:1236 | self | UseUseExplosion.rb:21:1253:21:1257 | self |
+| UseUseExplosion.rb:21:1232:21:1236 | self | UseUseExplosion.rb:21:2763:21:2768 | self |
+| UseUseExplosion.rb:21:1232:21:1241 | ... > ... | UseUseExplosion.rb:21:1231:21:1242 | [false] ( ... ) |
+| UseUseExplosion.rb:21:1232:21:1241 | ... > ... | UseUseExplosion.rb:21:1231:21:1242 | [true] ( ... ) |
+| UseUseExplosion.rb:21:1244:21:2756 | then ... | UseUseExplosion.rb:21:1228:21:2772 | if ... |
+| UseUseExplosion.rb:21:1249:21:2756 | if ... | UseUseExplosion.rb:21:1244:21:2756 | then ... |
+| UseUseExplosion.rb:21:1253:21:1257 | [post] self | UseUseExplosion.rb:21:1274:21:1278 | self |
+| UseUseExplosion.rb:21:1253:21:1257 | [post] self | UseUseExplosion.rb:21:2747:21:2752 | self |
+| UseUseExplosion.rb:21:1253:21:1257 | self | UseUseExplosion.rb:21:1274:21:1278 | self |
+| UseUseExplosion.rb:21:1253:21:1257 | self | UseUseExplosion.rb:21:2747:21:2752 | self |
+| UseUseExplosion.rb:21:1253:21:1262 | ... > ... | UseUseExplosion.rb:21:1252:21:1263 | [false] ( ... ) |
+| UseUseExplosion.rb:21:1253:21:1262 | ... > ... | UseUseExplosion.rb:21:1252:21:1263 | [true] ( ... ) |
+| UseUseExplosion.rb:21:1265:21:2740 | then ... | UseUseExplosion.rb:21:1249:21:2756 | if ... |
+| UseUseExplosion.rb:21:1270:21:2740 | if ... | UseUseExplosion.rb:21:1265:21:2740 | then ... |
+| UseUseExplosion.rb:21:1274:21:1278 | [post] self | UseUseExplosion.rb:21:1295:21:1299 | self |
+| UseUseExplosion.rb:21:1274:21:1278 | [post] self | UseUseExplosion.rb:21:2731:21:2736 | self |
+| UseUseExplosion.rb:21:1274:21:1278 | self | UseUseExplosion.rb:21:1295:21:1299 | self |
+| UseUseExplosion.rb:21:1274:21:1278 | self | UseUseExplosion.rb:21:2731:21:2736 | self |
+| UseUseExplosion.rb:21:1274:21:1283 | ... > ... | UseUseExplosion.rb:21:1273:21:1284 | [false] ( ... ) |
+| UseUseExplosion.rb:21:1274:21:1283 | ... > ... | UseUseExplosion.rb:21:1273:21:1284 | [true] ( ... ) |
+| UseUseExplosion.rb:21:1286:21:2724 | then ... | UseUseExplosion.rb:21:1270:21:2740 | if ... |
+| UseUseExplosion.rb:21:1291:21:2724 | if ... | UseUseExplosion.rb:21:1286:21:2724 | then ... |
+| UseUseExplosion.rb:21:1295:21:1299 | [post] self | UseUseExplosion.rb:21:1316:21:1320 | self |
+| UseUseExplosion.rb:21:1295:21:1299 | [post] self | UseUseExplosion.rb:21:2715:21:2720 | self |
+| UseUseExplosion.rb:21:1295:21:1299 | self | UseUseExplosion.rb:21:1316:21:1320 | self |
+| UseUseExplosion.rb:21:1295:21:1299 | self | UseUseExplosion.rb:21:2715:21:2720 | self |
+| UseUseExplosion.rb:21:1295:21:1304 | ... > ... | UseUseExplosion.rb:21:1294:21:1305 | [false] ( ... ) |
+| UseUseExplosion.rb:21:1295:21:1304 | ... > ... | UseUseExplosion.rb:21:1294:21:1305 | [true] ( ... ) |
+| UseUseExplosion.rb:21:1307:21:2708 | then ... | UseUseExplosion.rb:21:1291:21:2724 | if ... |
+| UseUseExplosion.rb:21:1312:21:2708 | if ... | UseUseExplosion.rb:21:1307:21:2708 | then ... |
+| UseUseExplosion.rb:21:1316:21:1320 | [post] self | UseUseExplosion.rb:21:1337:21:1341 | self |
+| UseUseExplosion.rb:21:1316:21:1320 | [post] self | UseUseExplosion.rb:21:2699:21:2704 | self |
+| UseUseExplosion.rb:21:1316:21:1320 | self | UseUseExplosion.rb:21:1337:21:1341 | self |
+| UseUseExplosion.rb:21:1316:21:1320 | self | UseUseExplosion.rb:21:2699:21:2704 | self |
+| UseUseExplosion.rb:21:1316:21:1325 | ... > ... | UseUseExplosion.rb:21:1315:21:1326 | [false] ( ... ) |
+| UseUseExplosion.rb:21:1316:21:1325 | ... > ... | UseUseExplosion.rb:21:1315:21:1326 | [true] ( ... ) |
+| UseUseExplosion.rb:21:1328:21:2692 | then ... | UseUseExplosion.rb:21:1312:21:2708 | if ... |
+| UseUseExplosion.rb:21:1333:21:2692 | if ... | UseUseExplosion.rb:21:1328:21:2692 | then ... |
+| UseUseExplosion.rb:21:1337:21:1341 | [post] self | UseUseExplosion.rb:21:1358:21:1362 | self |
+| UseUseExplosion.rb:21:1337:21:1341 | [post] self | UseUseExplosion.rb:21:2683:21:2688 | self |
+| UseUseExplosion.rb:21:1337:21:1341 | self | UseUseExplosion.rb:21:1358:21:1362 | self |
+| UseUseExplosion.rb:21:1337:21:1341 | self | UseUseExplosion.rb:21:2683:21:2688 | self |
+| UseUseExplosion.rb:21:1337:21:1346 | ... > ... | UseUseExplosion.rb:21:1336:21:1347 | [false] ( ... ) |
+| UseUseExplosion.rb:21:1337:21:1346 | ... > ... | UseUseExplosion.rb:21:1336:21:1347 | [true] ( ... ) |
+| UseUseExplosion.rb:21:1349:21:2676 | then ... | UseUseExplosion.rb:21:1333:21:2692 | if ... |
+| UseUseExplosion.rb:21:1354:21:2676 | if ... | UseUseExplosion.rb:21:1349:21:2676 | then ... |
+| UseUseExplosion.rb:21:1358:21:1362 | [post] self | UseUseExplosion.rb:21:1379:21:1383 | self |
+| UseUseExplosion.rb:21:1358:21:1362 | [post] self | UseUseExplosion.rb:21:2667:21:2672 | self |
+| UseUseExplosion.rb:21:1358:21:1362 | self | UseUseExplosion.rb:21:1379:21:1383 | self |
+| UseUseExplosion.rb:21:1358:21:1362 | self | UseUseExplosion.rb:21:2667:21:2672 | self |
+| UseUseExplosion.rb:21:1358:21:1367 | ... > ... | UseUseExplosion.rb:21:1357:21:1368 | [false] ( ... ) |
+| UseUseExplosion.rb:21:1358:21:1367 | ... > ... | UseUseExplosion.rb:21:1357:21:1368 | [true] ( ... ) |
+| UseUseExplosion.rb:21:1370:21:2660 | then ... | UseUseExplosion.rb:21:1354:21:2676 | if ... |
+| UseUseExplosion.rb:21:1375:21:2660 | if ... | UseUseExplosion.rb:21:1370:21:2660 | then ... |
+| UseUseExplosion.rb:21:1379:21:1383 | [post] self | UseUseExplosion.rb:21:1400:21:1404 | self |
+| UseUseExplosion.rb:21:1379:21:1383 | [post] self | UseUseExplosion.rb:21:2651:21:2656 | self |
+| UseUseExplosion.rb:21:1379:21:1383 | self | UseUseExplosion.rb:21:1400:21:1404 | self |
+| UseUseExplosion.rb:21:1379:21:1383 | self | UseUseExplosion.rb:21:2651:21:2656 | self |
+| UseUseExplosion.rb:21:1379:21:1388 | ... > ... | UseUseExplosion.rb:21:1378:21:1389 | [false] ( ... ) |
+| UseUseExplosion.rb:21:1379:21:1388 | ... > ... | UseUseExplosion.rb:21:1378:21:1389 | [true] ( ... ) |
+| UseUseExplosion.rb:21:1391:21:2644 | then ... | UseUseExplosion.rb:21:1375:21:2660 | if ... |
+| UseUseExplosion.rb:21:1396:21:2644 | if ... | UseUseExplosion.rb:21:1391:21:2644 | then ... |
+| UseUseExplosion.rb:21:1400:21:1404 | [post] self | UseUseExplosion.rb:21:1421:21:1425 | self |
+| UseUseExplosion.rb:21:1400:21:1404 | [post] self | UseUseExplosion.rb:21:2635:21:2640 | self |
+| UseUseExplosion.rb:21:1400:21:1404 | self | UseUseExplosion.rb:21:1421:21:1425 | self |
+| UseUseExplosion.rb:21:1400:21:1404 | self | UseUseExplosion.rb:21:2635:21:2640 | self |
+| UseUseExplosion.rb:21:1400:21:1409 | ... > ... | UseUseExplosion.rb:21:1399:21:1410 | [false] ( ... ) |
+| UseUseExplosion.rb:21:1400:21:1409 | ... > ... | UseUseExplosion.rb:21:1399:21:1410 | [true] ( ... ) |
+| UseUseExplosion.rb:21:1412:21:2628 | then ... | UseUseExplosion.rb:21:1396:21:2644 | if ... |
+| UseUseExplosion.rb:21:1417:21:2628 | if ... | UseUseExplosion.rb:21:1412:21:2628 | then ... |
+| UseUseExplosion.rb:21:1421:21:1425 | [post] self | UseUseExplosion.rb:21:1442:21:1446 | self |
+| UseUseExplosion.rb:21:1421:21:1425 | [post] self | UseUseExplosion.rb:21:2619:21:2624 | self |
+| UseUseExplosion.rb:21:1421:21:1425 | self | UseUseExplosion.rb:21:1442:21:1446 | self |
+| UseUseExplosion.rb:21:1421:21:1425 | self | UseUseExplosion.rb:21:2619:21:2624 | self |
+| UseUseExplosion.rb:21:1421:21:1430 | ... > ... | UseUseExplosion.rb:21:1420:21:1431 | [false] ( ... ) |
+| UseUseExplosion.rb:21:1421:21:1430 | ... > ... | UseUseExplosion.rb:21:1420:21:1431 | [true] ( ... ) |
+| UseUseExplosion.rb:21:1433:21:2612 | then ... | UseUseExplosion.rb:21:1417:21:2628 | if ... |
+| UseUseExplosion.rb:21:1438:21:2612 | if ... | UseUseExplosion.rb:21:1433:21:2612 | then ... |
+| UseUseExplosion.rb:21:1442:21:1446 | [post] self | UseUseExplosion.rb:21:1463:21:1467 | self |
+| UseUseExplosion.rb:21:1442:21:1446 | [post] self | UseUseExplosion.rb:21:2603:21:2608 | self |
+| UseUseExplosion.rb:21:1442:21:1446 | self | UseUseExplosion.rb:21:1463:21:1467 | self |
+| UseUseExplosion.rb:21:1442:21:1446 | self | UseUseExplosion.rb:21:2603:21:2608 | self |
+| UseUseExplosion.rb:21:1442:21:1451 | ... > ... | UseUseExplosion.rb:21:1441:21:1452 | [false] ( ... ) |
+| UseUseExplosion.rb:21:1442:21:1451 | ... > ... | UseUseExplosion.rb:21:1441:21:1452 | [true] ( ... ) |
+| UseUseExplosion.rb:21:1454:21:2596 | then ... | UseUseExplosion.rb:21:1438:21:2612 | if ... |
+| UseUseExplosion.rb:21:1459:21:2596 | if ... | UseUseExplosion.rb:21:1454:21:2596 | then ... |
+| UseUseExplosion.rb:21:1463:21:1467 | [post] self | UseUseExplosion.rb:21:1484:21:1488 | self |
+| UseUseExplosion.rb:21:1463:21:1467 | [post] self | UseUseExplosion.rb:21:2587:21:2592 | self |
+| UseUseExplosion.rb:21:1463:21:1467 | self | UseUseExplosion.rb:21:1484:21:1488 | self |
+| UseUseExplosion.rb:21:1463:21:1467 | self | UseUseExplosion.rb:21:2587:21:2592 | self |
+| UseUseExplosion.rb:21:1463:21:1472 | ... > ... | UseUseExplosion.rb:21:1462:21:1473 | [false] ( ... ) |
+| UseUseExplosion.rb:21:1463:21:1472 | ... > ... | UseUseExplosion.rb:21:1462:21:1473 | [true] ( ... ) |
+| UseUseExplosion.rb:21:1475:21:2580 | then ... | UseUseExplosion.rb:21:1459:21:2596 | if ... |
+| UseUseExplosion.rb:21:1480:21:2580 | if ... | UseUseExplosion.rb:21:1475:21:2580 | then ... |
+| UseUseExplosion.rb:21:1484:21:1488 | [post] self | UseUseExplosion.rb:21:1505:21:1509 | self |
+| UseUseExplosion.rb:21:1484:21:1488 | [post] self | UseUseExplosion.rb:21:2571:21:2576 | self |
+| UseUseExplosion.rb:21:1484:21:1488 | self | UseUseExplosion.rb:21:1505:21:1509 | self |
+| UseUseExplosion.rb:21:1484:21:1488 | self | UseUseExplosion.rb:21:2571:21:2576 | self |
+| UseUseExplosion.rb:21:1484:21:1493 | ... > ... | UseUseExplosion.rb:21:1483:21:1494 | [false] ( ... ) |
+| UseUseExplosion.rb:21:1484:21:1493 | ... > ... | UseUseExplosion.rb:21:1483:21:1494 | [true] ( ... ) |
+| UseUseExplosion.rb:21:1496:21:2564 | then ... | UseUseExplosion.rb:21:1480:21:2580 | if ... |
+| UseUseExplosion.rb:21:1501:21:2564 | if ... | UseUseExplosion.rb:21:1496:21:2564 | then ... |
+| UseUseExplosion.rb:21:1505:21:1509 | [post] self | UseUseExplosion.rb:21:1526:21:1530 | self |
+| UseUseExplosion.rb:21:1505:21:1509 | [post] self | UseUseExplosion.rb:21:2555:21:2560 | self |
+| UseUseExplosion.rb:21:1505:21:1509 | self | UseUseExplosion.rb:21:1526:21:1530 | self |
+| UseUseExplosion.rb:21:1505:21:1509 | self | UseUseExplosion.rb:21:2555:21:2560 | self |
+| UseUseExplosion.rb:21:1505:21:1514 | ... > ... | UseUseExplosion.rb:21:1504:21:1515 | [false] ( ... ) |
+| UseUseExplosion.rb:21:1505:21:1514 | ... > ... | UseUseExplosion.rb:21:1504:21:1515 | [true] ( ... ) |
+| UseUseExplosion.rb:21:1517:21:2548 | then ... | UseUseExplosion.rb:21:1501:21:2564 | if ... |
+| UseUseExplosion.rb:21:1522:21:2548 | if ... | UseUseExplosion.rb:21:1517:21:2548 | then ... |
+| UseUseExplosion.rb:21:1526:21:1530 | [post] self | UseUseExplosion.rb:21:1547:21:1551 | self |
+| UseUseExplosion.rb:21:1526:21:1530 | [post] self | UseUseExplosion.rb:21:2539:21:2544 | self |
+| UseUseExplosion.rb:21:1526:21:1530 | self | UseUseExplosion.rb:21:1547:21:1551 | self |
+| UseUseExplosion.rb:21:1526:21:1530 | self | UseUseExplosion.rb:21:2539:21:2544 | self |
+| UseUseExplosion.rb:21:1526:21:1535 | ... > ... | UseUseExplosion.rb:21:1525:21:1536 | [false] ( ... ) |
+| UseUseExplosion.rb:21:1526:21:1535 | ... > ... | UseUseExplosion.rb:21:1525:21:1536 | [true] ( ... ) |
+| UseUseExplosion.rb:21:1538:21:2532 | then ... | UseUseExplosion.rb:21:1522:21:2548 | if ... |
+| UseUseExplosion.rb:21:1543:21:2532 | if ... | UseUseExplosion.rb:21:1538:21:2532 | then ... |
+| UseUseExplosion.rb:21:1547:21:1551 | [post] self | UseUseExplosion.rb:21:1568:21:1572 | self |
+| UseUseExplosion.rb:21:1547:21:1551 | [post] self | UseUseExplosion.rb:21:2523:21:2528 | self |
+| UseUseExplosion.rb:21:1547:21:1551 | self | UseUseExplosion.rb:21:1568:21:1572 | self |
+| UseUseExplosion.rb:21:1547:21:1551 | self | UseUseExplosion.rb:21:2523:21:2528 | self |
+| UseUseExplosion.rb:21:1547:21:1556 | ... > ... | UseUseExplosion.rb:21:1546:21:1557 | [false] ( ... ) |
+| UseUseExplosion.rb:21:1547:21:1556 | ... > ... | UseUseExplosion.rb:21:1546:21:1557 | [true] ( ... ) |
+| UseUseExplosion.rb:21:1559:21:2516 | then ... | UseUseExplosion.rb:21:1543:21:2532 | if ... |
+| UseUseExplosion.rb:21:1564:21:2516 | if ... | UseUseExplosion.rb:21:1559:21:2516 | then ... |
+| UseUseExplosion.rb:21:1568:21:1572 | [post] self | UseUseExplosion.rb:21:1589:21:1593 | self |
+| UseUseExplosion.rb:21:1568:21:1572 | [post] self | UseUseExplosion.rb:21:2507:21:2512 | self |
+| UseUseExplosion.rb:21:1568:21:1572 | self | UseUseExplosion.rb:21:1589:21:1593 | self |
+| UseUseExplosion.rb:21:1568:21:1572 | self | UseUseExplosion.rb:21:2507:21:2512 | self |
+| UseUseExplosion.rb:21:1568:21:1577 | ... > ... | UseUseExplosion.rb:21:1567:21:1578 | [false] ( ... ) |
+| UseUseExplosion.rb:21:1568:21:1577 | ... > ... | UseUseExplosion.rb:21:1567:21:1578 | [true] ( ... ) |
+| UseUseExplosion.rb:21:1580:21:2500 | then ... | UseUseExplosion.rb:21:1564:21:2516 | if ... |
+| UseUseExplosion.rb:21:1585:21:2500 | if ... | UseUseExplosion.rb:21:1580:21:2500 | then ... |
+| UseUseExplosion.rb:21:1589:21:1593 | [post] self | UseUseExplosion.rb:21:1610:21:1614 | self |
+| UseUseExplosion.rb:21:1589:21:1593 | [post] self | UseUseExplosion.rb:21:2491:21:2496 | self |
+| UseUseExplosion.rb:21:1589:21:1593 | self | UseUseExplosion.rb:21:1610:21:1614 | self |
+| UseUseExplosion.rb:21:1589:21:1593 | self | UseUseExplosion.rb:21:2491:21:2496 | self |
+| UseUseExplosion.rb:21:1589:21:1598 | ... > ... | UseUseExplosion.rb:21:1588:21:1599 | [false] ( ... ) |
+| UseUseExplosion.rb:21:1589:21:1598 | ... > ... | UseUseExplosion.rb:21:1588:21:1599 | [true] ( ... ) |
+| UseUseExplosion.rb:21:1601:21:2484 | then ... | UseUseExplosion.rb:21:1585:21:2500 | if ... |
+| UseUseExplosion.rb:21:1606:21:2484 | if ... | UseUseExplosion.rb:21:1601:21:2484 | then ... |
+| UseUseExplosion.rb:21:1610:21:1614 | [post] self | UseUseExplosion.rb:21:1631:21:1635 | self |
+| UseUseExplosion.rb:21:1610:21:1614 | [post] self | UseUseExplosion.rb:21:2475:21:2480 | self |
+| UseUseExplosion.rb:21:1610:21:1614 | self | UseUseExplosion.rb:21:1631:21:1635 | self |
+| UseUseExplosion.rb:21:1610:21:1614 | self | UseUseExplosion.rb:21:2475:21:2480 | self |
+| UseUseExplosion.rb:21:1610:21:1619 | ... > ... | UseUseExplosion.rb:21:1609:21:1620 | [false] ( ... ) |
+| UseUseExplosion.rb:21:1610:21:1619 | ... > ... | UseUseExplosion.rb:21:1609:21:1620 | [true] ( ... ) |
+| UseUseExplosion.rb:21:1622:21:2468 | then ... | UseUseExplosion.rb:21:1606:21:2484 | if ... |
+| UseUseExplosion.rb:21:1627:21:2468 | if ... | UseUseExplosion.rb:21:1622:21:2468 | then ... |
+| UseUseExplosion.rb:21:1631:21:1635 | [post] self | UseUseExplosion.rb:21:1652:21:1656 | self |
+| UseUseExplosion.rb:21:1631:21:1635 | [post] self | UseUseExplosion.rb:21:2459:21:2464 | self |
+| UseUseExplosion.rb:21:1631:21:1635 | self | UseUseExplosion.rb:21:1652:21:1656 | self |
+| UseUseExplosion.rb:21:1631:21:1635 | self | UseUseExplosion.rb:21:2459:21:2464 | self |
+| UseUseExplosion.rb:21:1631:21:1640 | ... > ... | UseUseExplosion.rb:21:1630:21:1641 | [false] ( ... ) |
+| UseUseExplosion.rb:21:1631:21:1640 | ... > ... | UseUseExplosion.rb:21:1630:21:1641 | [true] ( ... ) |
+| UseUseExplosion.rb:21:1643:21:2452 | then ... | UseUseExplosion.rb:21:1627:21:2468 | if ... |
+| UseUseExplosion.rb:21:1648:21:2452 | if ... | UseUseExplosion.rb:21:1643:21:2452 | then ... |
+| UseUseExplosion.rb:21:1652:21:1656 | [post] self | UseUseExplosion.rb:21:1673:21:1677 | self |
+| UseUseExplosion.rb:21:1652:21:1656 | [post] self | UseUseExplosion.rb:21:2443:21:2448 | self |
+| UseUseExplosion.rb:21:1652:21:1656 | self | UseUseExplosion.rb:21:1673:21:1677 | self |
+| UseUseExplosion.rb:21:1652:21:1656 | self | UseUseExplosion.rb:21:2443:21:2448 | self |
+| UseUseExplosion.rb:21:1652:21:1661 | ... > ... | UseUseExplosion.rb:21:1651:21:1662 | [false] ( ... ) |
+| UseUseExplosion.rb:21:1652:21:1661 | ... > ... | UseUseExplosion.rb:21:1651:21:1662 | [true] ( ... ) |
+| UseUseExplosion.rb:21:1664:21:2436 | then ... | UseUseExplosion.rb:21:1648:21:2452 | if ... |
+| UseUseExplosion.rb:21:1669:21:2436 | if ... | UseUseExplosion.rb:21:1664:21:2436 | then ... |
+| UseUseExplosion.rb:21:1673:21:1677 | [post] self | UseUseExplosion.rb:21:1694:21:1698 | self |
+| UseUseExplosion.rb:21:1673:21:1677 | [post] self | UseUseExplosion.rb:21:2427:21:2432 | self |
+| UseUseExplosion.rb:21:1673:21:1677 | self | UseUseExplosion.rb:21:1694:21:1698 | self |
+| UseUseExplosion.rb:21:1673:21:1677 | self | UseUseExplosion.rb:21:2427:21:2432 | self |
+| UseUseExplosion.rb:21:1673:21:1682 | ... > ... | UseUseExplosion.rb:21:1672:21:1683 | [false] ( ... ) |
+| UseUseExplosion.rb:21:1673:21:1682 | ... > ... | UseUseExplosion.rb:21:1672:21:1683 | [true] ( ... ) |
+| UseUseExplosion.rb:21:1685:21:2420 | then ... | UseUseExplosion.rb:21:1669:21:2436 | if ... |
+| UseUseExplosion.rb:21:1690:21:2420 | if ... | UseUseExplosion.rb:21:1685:21:2420 | then ... |
+| UseUseExplosion.rb:21:1694:21:1698 | [post] self | UseUseExplosion.rb:21:1715:21:1719 | self |
+| UseUseExplosion.rb:21:1694:21:1698 | [post] self | UseUseExplosion.rb:21:2411:21:2416 | self |
+| UseUseExplosion.rb:21:1694:21:1698 | self | UseUseExplosion.rb:21:1715:21:1719 | self |
+| UseUseExplosion.rb:21:1694:21:1698 | self | UseUseExplosion.rb:21:2411:21:2416 | self |
+| UseUseExplosion.rb:21:1694:21:1703 | ... > ... | UseUseExplosion.rb:21:1693:21:1704 | [false] ( ... ) |
+| UseUseExplosion.rb:21:1694:21:1703 | ... > ... | UseUseExplosion.rb:21:1693:21:1704 | [true] ( ... ) |
+| UseUseExplosion.rb:21:1706:21:2404 | then ... | UseUseExplosion.rb:21:1690:21:2420 | if ... |
+| UseUseExplosion.rb:21:1711:21:2404 | if ... | UseUseExplosion.rb:21:1706:21:2404 | then ... |
+| UseUseExplosion.rb:21:1715:21:1719 | [post] self | UseUseExplosion.rb:21:1736:21:1740 | self |
+| UseUseExplosion.rb:21:1715:21:1719 | [post] self | UseUseExplosion.rb:21:2395:21:2400 | self |
+| UseUseExplosion.rb:21:1715:21:1719 | self | UseUseExplosion.rb:21:1736:21:1740 | self |
+| UseUseExplosion.rb:21:1715:21:1719 | self | UseUseExplosion.rb:21:2395:21:2400 | self |
+| UseUseExplosion.rb:21:1715:21:1724 | ... > ... | UseUseExplosion.rb:21:1714:21:1725 | [false] ( ... ) |
+| UseUseExplosion.rb:21:1715:21:1724 | ... > ... | UseUseExplosion.rb:21:1714:21:1725 | [true] ( ... ) |
+| UseUseExplosion.rb:21:1727:21:2388 | then ... | UseUseExplosion.rb:21:1711:21:2404 | if ... |
+| UseUseExplosion.rb:21:1732:21:2388 | if ... | UseUseExplosion.rb:21:1727:21:2388 | then ... |
+| UseUseExplosion.rb:21:1736:21:1740 | [post] self | UseUseExplosion.rb:21:1757:21:1761 | self |
+| UseUseExplosion.rb:21:1736:21:1740 | [post] self | UseUseExplosion.rb:21:2379:21:2384 | self |
+| UseUseExplosion.rb:21:1736:21:1740 | self | UseUseExplosion.rb:21:1757:21:1761 | self |
+| UseUseExplosion.rb:21:1736:21:1740 | self | UseUseExplosion.rb:21:2379:21:2384 | self |
+| UseUseExplosion.rb:21:1736:21:1745 | ... > ... | UseUseExplosion.rb:21:1735:21:1746 | [false] ( ... ) |
+| UseUseExplosion.rb:21:1736:21:1745 | ... > ... | UseUseExplosion.rb:21:1735:21:1746 | [true] ( ... ) |
+| UseUseExplosion.rb:21:1748:21:2372 | then ... | UseUseExplosion.rb:21:1732:21:2388 | if ... |
+| UseUseExplosion.rb:21:1753:21:2372 | if ... | UseUseExplosion.rb:21:1748:21:2372 | then ... |
+| UseUseExplosion.rb:21:1757:21:1761 | [post] self | UseUseExplosion.rb:21:1778:21:1782 | self |
+| UseUseExplosion.rb:21:1757:21:1761 | [post] self | UseUseExplosion.rb:21:2363:21:2368 | self |
+| UseUseExplosion.rb:21:1757:21:1761 | self | UseUseExplosion.rb:21:1778:21:1782 | self |
+| UseUseExplosion.rb:21:1757:21:1761 | self | UseUseExplosion.rb:21:2363:21:2368 | self |
+| UseUseExplosion.rb:21:1757:21:1766 | ... > ... | UseUseExplosion.rb:21:1756:21:1767 | [false] ( ... ) |
+| UseUseExplosion.rb:21:1757:21:1766 | ... > ... | UseUseExplosion.rb:21:1756:21:1767 | [true] ( ... ) |
+| UseUseExplosion.rb:21:1769:21:2356 | then ... | UseUseExplosion.rb:21:1753:21:2372 | if ... |
+| UseUseExplosion.rb:21:1774:21:2356 | if ... | UseUseExplosion.rb:21:1769:21:2356 | then ... |
+| UseUseExplosion.rb:21:1778:21:1782 | [post] self | UseUseExplosion.rb:21:1799:21:1803 | self |
+| UseUseExplosion.rb:21:1778:21:1782 | [post] self | UseUseExplosion.rb:21:2347:21:2352 | self |
+| UseUseExplosion.rb:21:1778:21:1782 | self | UseUseExplosion.rb:21:1799:21:1803 | self |
+| UseUseExplosion.rb:21:1778:21:1782 | self | UseUseExplosion.rb:21:2347:21:2352 | self |
+| UseUseExplosion.rb:21:1778:21:1787 | ... > ... | UseUseExplosion.rb:21:1777:21:1788 | [false] ( ... ) |
+| UseUseExplosion.rb:21:1778:21:1787 | ... > ... | UseUseExplosion.rb:21:1777:21:1788 | [true] ( ... ) |
+| UseUseExplosion.rb:21:1790:21:2340 | then ... | UseUseExplosion.rb:21:1774:21:2356 | if ... |
+| UseUseExplosion.rb:21:1795:21:2340 | if ... | UseUseExplosion.rb:21:1790:21:2340 | then ... |
+| UseUseExplosion.rb:21:1799:21:1803 | [post] self | UseUseExplosion.rb:21:1820:21:1824 | self |
+| UseUseExplosion.rb:21:1799:21:1803 | [post] self | UseUseExplosion.rb:21:2331:21:2336 | self |
+| UseUseExplosion.rb:21:1799:21:1803 | self | UseUseExplosion.rb:21:1820:21:1824 | self |
+| UseUseExplosion.rb:21:1799:21:1803 | self | UseUseExplosion.rb:21:2331:21:2336 | self |
+| UseUseExplosion.rb:21:1799:21:1808 | ... > ... | UseUseExplosion.rb:21:1798:21:1809 | [false] ( ... ) |
+| UseUseExplosion.rb:21:1799:21:1808 | ... > ... | UseUseExplosion.rb:21:1798:21:1809 | [true] ( ... ) |
+| UseUseExplosion.rb:21:1811:21:2324 | then ... | UseUseExplosion.rb:21:1795:21:2340 | if ... |
+| UseUseExplosion.rb:21:1816:21:2324 | if ... | UseUseExplosion.rb:21:1811:21:2324 | then ... |
+| UseUseExplosion.rb:21:1820:21:1824 | [post] self | UseUseExplosion.rb:21:1841:21:1845 | self |
+| UseUseExplosion.rb:21:1820:21:1824 | [post] self | UseUseExplosion.rb:21:2315:21:2320 | self |
+| UseUseExplosion.rb:21:1820:21:1824 | self | UseUseExplosion.rb:21:1841:21:1845 | self |
+| UseUseExplosion.rb:21:1820:21:1824 | self | UseUseExplosion.rb:21:2315:21:2320 | self |
+| UseUseExplosion.rb:21:1820:21:1829 | ... > ... | UseUseExplosion.rb:21:1819:21:1830 | [false] ( ... ) |
+| UseUseExplosion.rb:21:1820:21:1829 | ... > ... | UseUseExplosion.rb:21:1819:21:1830 | [true] ( ... ) |
+| UseUseExplosion.rb:21:1832:21:2308 | then ... | UseUseExplosion.rb:21:1816:21:2324 | if ... |
+| UseUseExplosion.rb:21:1837:21:2308 | if ... | UseUseExplosion.rb:21:1832:21:2308 | then ... |
+| UseUseExplosion.rb:21:1841:21:1845 | [post] self | UseUseExplosion.rb:21:1862:21:1866 | self |
+| UseUseExplosion.rb:21:1841:21:1845 | [post] self | UseUseExplosion.rb:21:2299:21:2304 | self |
+| UseUseExplosion.rb:21:1841:21:1845 | self | UseUseExplosion.rb:21:1862:21:1866 | self |
+| UseUseExplosion.rb:21:1841:21:1845 | self | UseUseExplosion.rb:21:2299:21:2304 | self |
+| UseUseExplosion.rb:21:1841:21:1850 | ... > ... | UseUseExplosion.rb:21:1840:21:1851 | [false] ( ... ) |
+| UseUseExplosion.rb:21:1841:21:1850 | ... > ... | UseUseExplosion.rb:21:1840:21:1851 | [true] ( ... ) |
+| UseUseExplosion.rb:21:1853:21:2292 | then ... | UseUseExplosion.rb:21:1837:21:2308 | if ... |
+| UseUseExplosion.rb:21:1858:21:2292 | if ... | UseUseExplosion.rb:21:1853:21:2292 | then ... |
+| UseUseExplosion.rb:21:1862:21:1866 | [post] self | UseUseExplosion.rb:21:1883:21:1887 | self |
+| UseUseExplosion.rb:21:1862:21:1866 | [post] self | UseUseExplosion.rb:21:2283:21:2288 | self |
+| UseUseExplosion.rb:21:1862:21:1866 | self | UseUseExplosion.rb:21:1883:21:1887 | self |
+| UseUseExplosion.rb:21:1862:21:1866 | self | UseUseExplosion.rb:21:2283:21:2288 | self |
+| UseUseExplosion.rb:21:1862:21:1871 | ... > ... | UseUseExplosion.rb:21:1861:21:1872 | [false] ( ... ) |
+| UseUseExplosion.rb:21:1862:21:1871 | ... > ... | UseUseExplosion.rb:21:1861:21:1872 | [true] ( ... ) |
+| UseUseExplosion.rb:21:1874:21:2276 | then ... | UseUseExplosion.rb:21:1858:21:2292 | if ... |
+| UseUseExplosion.rb:21:1879:21:2276 | if ... | UseUseExplosion.rb:21:1874:21:2276 | then ... |
+| UseUseExplosion.rb:21:1883:21:1887 | [post] self | UseUseExplosion.rb:21:1904:21:1908 | self |
+| UseUseExplosion.rb:21:1883:21:1887 | [post] self | UseUseExplosion.rb:21:2267:21:2272 | self |
+| UseUseExplosion.rb:21:1883:21:1887 | self | UseUseExplosion.rb:21:1904:21:1908 | self |
+| UseUseExplosion.rb:21:1883:21:1887 | self | UseUseExplosion.rb:21:2267:21:2272 | self |
+| UseUseExplosion.rb:21:1883:21:1892 | ... > ... | UseUseExplosion.rb:21:1882:21:1893 | [false] ( ... ) |
+| UseUseExplosion.rb:21:1883:21:1892 | ... > ... | UseUseExplosion.rb:21:1882:21:1893 | [true] ( ... ) |
+| UseUseExplosion.rb:21:1895:21:2260 | then ... | UseUseExplosion.rb:21:1879:21:2276 | if ... |
+| UseUseExplosion.rb:21:1900:21:2260 | if ... | UseUseExplosion.rb:21:1895:21:2260 | then ... |
+| UseUseExplosion.rb:21:1904:21:1908 | [post] self | UseUseExplosion.rb:21:1925:21:1929 | self |
+| UseUseExplosion.rb:21:1904:21:1908 | [post] self | UseUseExplosion.rb:21:2251:21:2256 | self |
+| UseUseExplosion.rb:21:1904:21:1908 | self | UseUseExplosion.rb:21:1925:21:1929 | self |
+| UseUseExplosion.rb:21:1904:21:1908 | self | UseUseExplosion.rb:21:2251:21:2256 | self |
+| UseUseExplosion.rb:21:1904:21:1913 | ... > ... | UseUseExplosion.rb:21:1903:21:1914 | [false] ( ... ) |
+| UseUseExplosion.rb:21:1904:21:1913 | ... > ... | UseUseExplosion.rb:21:1903:21:1914 | [true] ( ... ) |
+| UseUseExplosion.rb:21:1916:21:2244 | then ... | UseUseExplosion.rb:21:1900:21:2260 | if ... |
+| UseUseExplosion.rb:21:1921:21:2244 | if ... | UseUseExplosion.rb:21:1916:21:2244 | then ... |
+| UseUseExplosion.rb:21:1925:21:1929 | [post] self | UseUseExplosion.rb:21:1945:21:1949 | self |
+| UseUseExplosion.rb:21:1925:21:1929 | [post] self | UseUseExplosion.rb:21:2235:21:2240 | self |
+| UseUseExplosion.rb:21:1925:21:1929 | self | UseUseExplosion.rb:21:1945:21:1949 | self |
+| UseUseExplosion.rb:21:1925:21:1929 | self | UseUseExplosion.rb:21:2235:21:2240 | self |
+| UseUseExplosion.rb:21:1925:21:1933 | ... > ... | UseUseExplosion.rb:21:1924:21:1934 | [false] ( ... ) |
+| UseUseExplosion.rb:21:1925:21:1933 | ... > ... | UseUseExplosion.rb:21:1924:21:1934 | [true] ( ... ) |
+| UseUseExplosion.rb:21:1936:21:2228 | then ... | UseUseExplosion.rb:21:1921:21:2244 | if ... |
+| UseUseExplosion.rb:21:1941:21:2228 | if ... | UseUseExplosion.rb:21:1936:21:2228 | then ... |
+| UseUseExplosion.rb:21:1945:21:1949 | [post] self | UseUseExplosion.rb:21:1965:21:1969 | self |
+| UseUseExplosion.rb:21:1945:21:1949 | [post] self | UseUseExplosion.rb:21:2219:21:2224 | self |
+| UseUseExplosion.rb:21:1945:21:1949 | self | UseUseExplosion.rb:21:1965:21:1969 | self |
+| UseUseExplosion.rb:21:1945:21:1949 | self | UseUseExplosion.rb:21:2219:21:2224 | self |
+| UseUseExplosion.rb:21:1945:21:1953 | ... > ... | UseUseExplosion.rb:21:1944:21:1954 | [false] ( ... ) |
+| UseUseExplosion.rb:21:1945:21:1953 | ... > ... | UseUseExplosion.rb:21:1944:21:1954 | [true] ( ... ) |
+| UseUseExplosion.rb:21:1956:21:2212 | then ... | UseUseExplosion.rb:21:1941:21:2228 | if ... |
+| UseUseExplosion.rb:21:1961:21:2212 | if ... | UseUseExplosion.rb:21:1956:21:2212 | then ... |
+| UseUseExplosion.rb:21:1965:21:1969 | [post] self | UseUseExplosion.rb:21:1985:21:1989 | self |
+| UseUseExplosion.rb:21:1965:21:1969 | [post] self | UseUseExplosion.rb:21:2203:21:2208 | self |
+| UseUseExplosion.rb:21:1965:21:1969 | self | UseUseExplosion.rb:21:1985:21:1989 | self |
+| UseUseExplosion.rb:21:1965:21:1969 | self | UseUseExplosion.rb:21:2203:21:2208 | self |
+| UseUseExplosion.rb:21:1965:21:1973 | ... > ... | UseUseExplosion.rb:21:1964:21:1974 | [false] ( ... ) |
+| UseUseExplosion.rb:21:1965:21:1973 | ... > ... | UseUseExplosion.rb:21:1964:21:1974 | [true] ( ... ) |
+| UseUseExplosion.rb:21:1976:21:2196 | then ... | UseUseExplosion.rb:21:1961:21:2212 | if ... |
+| UseUseExplosion.rb:21:1981:21:2196 | if ... | UseUseExplosion.rb:21:1976:21:2196 | then ... |
+| UseUseExplosion.rb:21:1985:21:1989 | [post] self | UseUseExplosion.rb:21:2005:21:2009 | self |
+| UseUseExplosion.rb:21:1985:21:1989 | [post] self | UseUseExplosion.rb:21:2187:21:2192 | self |
+| UseUseExplosion.rb:21:1985:21:1989 | self | UseUseExplosion.rb:21:2005:21:2009 | self |
+| UseUseExplosion.rb:21:1985:21:1989 | self | UseUseExplosion.rb:21:2187:21:2192 | self |
+| UseUseExplosion.rb:21:1985:21:1993 | ... > ... | UseUseExplosion.rb:21:1984:21:1994 | [false] ( ... ) |
+| UseUseExplosion.rb:21:1985:21:1993 | ... > ... | UseUseExplosion.rb:21:1984:21:1994 | [true] ( ... ) |
+| UseUseExplosion.rb:21:1996:21:2180 | then ... | UseUseExplosion.rb:21:1981:21:2196 | if ... |
+| UseUseExplosion.rb:21:2001:21:2180 | if ... | UseUseExplosion.rb:21:1996:21:2180 | then ... |
+| UseUseExplosion.rb:21:2005:21:2009 | [post] self | UseUseExplosion.rb:21:2025:21:2029 | self |
+| UseUseExplosion.rb:21:2005:21:2009 | [post] self | UseUseExplosion.rb:21:2171:21:2176 | self |
+| UseUseExplosion.rb:21:2005:21:2009 | self | UseUseExplosion.rb:21:2025:21:2029 | self |
+| UseUseExplosion.rb:21:2005:21:2009 | self | UseUseExplosion.rb:21:2171:21:2176 | self |
+| UseUseExplosion.rb:21:2005:21:2013 | ... > ... | UseUseExplosion.rb:21:2004:21:2014 | [false] ( ... ) |
+| UseUseExplosion.rb:21:2005:21:2013 | ... > ... | UseUseExplosion.rb:21:2004:21:2014 | [true] ( ... ) |
+| UseUseExplosion.rb:21:2016:21:2164 | then ... | UseUseExplosion.rb:21:2001:21:2180 | if ... |
+| UseUseExplosion.rb:21:2021:21:2164 | if ... | UseUseExplosion.rb:21:2016:21:2164 | then ... |
+| UseUseExplosion.rb:21:2025:21:2029 | [post] self | UseUseExplosion.rb:21:2045:21:2049 | self |
+| UseUseExplosion.rb:21:2025:21:2029 | [post] self | UseUseExplosion.rb:21:2155:21:2160 | self |
+| UseUseExplosion.rb:21:2025:21:2029 | self | UseUseExplosion.rb:21:2045:21:2049 | self |
+| UseUseExplosion.rb:21:2025:21:2029 | self | UseUseExplosion.rb:21:2155:21:2160 | self |
+| UseUseExplosion.rb:21:2025:21:2033 | ... > ... | UseUseExplosion.rb:21:2024:21:2034 | [false] ( ... ) |
+| UseUseExplosion.rb:21:2025:21:2033 | ... > ... | UseUseExplosion.rb:21:2024:21:2034 | [true] ( ... ) |
+| UseUseExplosion.rb:21:2036:21:2148 | then ... | UseUseExplosion.rb:21:2021:21:2164 | if ... |
+| UseUseExplosion.rb:21:2041:21:2148 | if ... | UseUseExplosion.rb:21:2036:21:2148 | then ... |
+| UseUseExplosion.rb:21:2045:21:2049 | [post] self | UseUseExplosion.rb:21:2065:21:2069 | self |
+| UseUseExplosion.rb:21:2045:21:2049 | [post] self | UseUseExplosion.rb:21:2139:21:2144 | self |
+| UseUseExplosion.rb:21:2045:21:2049 | self | UseUseExplosion.rb:21:2065:21:2069 | self |
+| UseUseExplosion.rb:21:2045:21:2049 | self | UseUseExplosion.rb:21:2139:21:2144 | self |
+| UseUseExplosion.rb:21:2045:21:2053 | ... > ... | UseUseExplosion.rb:21:2044:21:2054 | [false] ( ... ) |
+| UseUseExplosion.rb:21:2045:21:2053 | ... > ... | UseUseExplosion.rb:21:2044:21:2054 | [true] ( ... ) |
+| UseUseExplosion.rb:21:2056:21:2132 | then ... | UseUseExplosion.rb:21:2041:21:2148 | if ... |
+| UseUseExplosion.rb:21:2061:21:2132 | if ... | UseUseExplosion.rb:21:2056:21:2132 | then ... |
+| UseUseExplosion.rb:21:2065:21:2069 | [post] self | UseUseExplosion.rb:21:2085:21:2089 | self |
+| UseUseExplosion.rb:21:2065:21:2069 | [post] self | UseUseExplosion.rb:21:2123:21:2128 | self |
+| UseUseExplosion.rb:21:2065:21:2069 | self | UseUseExplosion.rb:21:2085:21:2089 | self |
+| UseUseExplosion.rb:21:2065:21:2069 | self | UseUseExplosion.rb:21:2123:21:2128 | self |
+| UseUseExplosion.rb:21:2065:21:2073 | ... > ... | UseUseExplosion.rb:21:2064:21:2074 | [false] ( ... ) |
+| UseUseExplosion.rb:21:2065:21:2073 | ... > ... | UseUseExplosion.rb:21:2064:21:2074 | [true] ( ... ) |
+| UseUseExplosion.rb:21:2076:21:2116 | then ... | UseUseExplosion.rb:21:2061:21:2132 | if ... |
+| UseUseExplosion.rb:21:2081:21:2116 | if ... | UseUseExplosion.rb:21:2076:21:2116 | then ... |
+| UseUseExplosion.rb:21:2085:21:2089 | [post] self | UseUseExplosion.rb:21:2107:21:2112 | self |
+| UseUseExplosion.rb:21:2085:21:2089 | self | UseUseExplosion.rb:21:2107:21:2112 | self |
+| UseUseExplosion.rb:21:2085:21:2093 | ... > ... | UseUseExplosion.rb:21:2084:21:2094 | [false] ( ... ) |
+| UseUseExplosion.rb:21:2085:21:2093 | ... > ... | UseUseExplosion.rb:21:2084:21:2094 | [true] ( ... ) |
+| UseUseExplosion.rb:21:2096:21:2099 | then ... | UseUseExplosion.rb:21:2081:21:2116 | if ... |
+| UseUseExplosion.rb:21:2102:21:2112 | else ... | UseUseExplosion.rb:21:2081:21:2116 | if ... |
+| UseUseExplosion.rb:21:2107:21:2112 | call to use | UseUseExplosion.rb:21:2102:21:2112 | else ... |
+| UseUseExplosion.rb:21:2118:21:2128 | else ... | UseUseExplosion.rb:21:2061:21:2132 | if ... |
+| UseUseExplosion.rb:21:2123:21:2128 | call to use | UseUseExplosion.rb:21:2118:21:2128 | else ... |
+| UseUseExplosion.rb:21:2134:21:2144 | else ... | UseUseExplosion.rb:21:2041:21:2148 | if ... |
+| UseUseExplosion.rb:21:2139:21:2144 | call to use | UseUseExplosion.rb:21:2134:21:2144 | else ... |
+| UseUseExplosion.rb:21:2150:21:2160 | else ... | UseUseExplosion.rb:21:2021:21:2164 | if ... |
+| UseUseExplosion.rb:21:2155:21:2160 | call to use | UseUseExplosion.rb:21:2150:21:2160 | else ... |
+| UseUseExplosion.rb:21:2166:21:2176 | else ... | UseUseExplosion.rb:21:2001:21:2180 | if ... |
+| UseUseExplosion.rb:21:2171:21:2176 | call to use | UseUseExplosion.rb:21:2166:21:2176 | else ... |
+| UseUseExplosion.rb:21:2182:21:2192 | else ... | UseUseExplosion.rb:21:1981:21:2196 | if ... |
+| UseUseExplosion.rb:21:2187:21:2192 | call to use | UseUseExplosion.rb:21:2182:21:2192 | else ... |
+| UseUseExplosion.rb:21:2198:21:2208 | else ... | UseUseExplosion.rb:21:1961:21:2212 | if ... |
+| UseUseExplosion.rb:21:2203:21:2208 | call to use | UseUseExplosion.rb:21:2198:21:2208 | else ... |
+| UseUseExplosion.rb:21:2214:21:2224 | else ... | UseUseExplosion.rb:21:1941:21:2228 | if ... |
+| UseUseExplosion.rb:21:2219:21:2224 | call to use | UseUseExplosion.rb:21:2214:21:2224 | else ... |
+| UseUseExplosion.rb:21:2230:21:2240 | else ... | UseUseExplosion.rb:21:1921:21:2244 | if ... |
+| UseUseExplosion.rb:21:2235:21:2240 | call to use | UseUseExplosion.rb:21:2230:21:2240 | else ... |
+| UseUseExplosion.rb:21:2246:21:2256 | else ... | UseUseExplosion.rb:21:1900:21:2260 | if ... |
+| UseUseExplosion.rb:21:2251:21:2256 | call to use | UseUseExplosion.rb:21:2246:21:2256 | else ... |
+| UseUseExplosion.rb:21:2262:21:2272 | else ... | UseUseExplosion.rb:21:1879:21:2276 | if ... |
+| UseUseExplosion.rb:21:2267:21:2272 | call to use | UseUseExplosion.rb:21:2262:21:2272 | else ... |
+| UseUseExplosion.rb:21:2278:21:2288 | else ... | UseUseExplosion.rb:21:1858:21:2292 | if ... |
+| UseUseExplosion.rb:21:2283:21:2288 | call to use | UseUseExplosion.rb:21:2278:21:2288 | else ... |
+| UseUseExplosion.rb:21:2294:21:2304 | else ... | UseUseExplosion.rb:21:1837:21:2308 | if ... |
+| UseUseExplosion.rb:21:2299:21:2304 | call to use | UseUseExplosion.rb:21:2294:21:2304 | else ... |
+| UseUseExplosion.rb:21:2310:21:2320 | else ... | UseUseExplosion.rb:21:1816:21:2324 | if ... |
+| UseUseExplosion.rb:21:2315:21:2320 | call to use | UseUseExplosion.rb:21:2310:21:2320 | else ... |
+| UseUseExplosion.rb:21:2326:21:2336 | else ... | UseUseExplosion.rb:21:1795:21:2340 | if ... |
+| UseUseExplosion.rb:21:2331:21:2336 | call to use | UseUseExplosion.rb:21:2326:21:2336 | else ... |
+| UseUseExplosion.rb:21:2342:21:2352 | else ... | UseUseExplosion.rb:21:1774:21:2356 | if ... |
+| UseUseExplosion.rb:21:2347:21:2352 | call to use | UseUseExplosion.rb:21:2342:21:2352 | else ... |
+| UseUseExplosion.rb:21:2358:21:2368 | else ... | UseUseExplosion.rb:21:1753:21:2372 | if ... |
+| UseUseExplosion.rb:21:2363:21:2368 | call to use | UseUseExplosion.rb:21:2358:21:2368 | else ... |
+| UseUseExplosion.rb:21:2374:21:2384 | else ... | UseUseExplosion.rb:21:1732:21:2388 | if ... |
+| UseUseExplosion.rb:21:2379:21:2384 | call to use | UseUseExplosion.rb:21:2374:21:2384 | else ... |
+| UseUseExplosion.rb:21:2390:21:2400 | else ... | UseUseExplosion.rb:21:1711:21:2404 | if ... |
+| UseUseExplosion.rb:21:2395:21:2400 | call to use | UseUseExplosion.rb:21:2390:21:2400 | else ... |
+| UseUseExplosion.rb:21:2406:21:2416 | else ... | UseUseExplosion.rb:21:1690:21:2420 | if ... |
+| UseUseExplosion.rb:21:2411:21:2416 | call to use | UseUseExplosion.rb:21:2406:21:2416 | else ... |
+| UseUseExplosion.rb:21:2422:21:2432 | else ... | UseUseExplosion.rb:21:1669:21:2436 | if ... |
+| UseUseExplosion.rb:21:2427:21:2432 | call to use | UseUseExplosion.rb:21:2422:21:2432 | else ... |
+| UseUseExplosion.rb:21:2438:21:2448 | else ... | UseUseExplosion.rb:21:1648:21:2452 | if ... |
+| UseUseExplosion.rb:21:2443:21:2448 | call to use | UseUseExplosion.rb:21:2438:21:2448 | else ... |
+| UseUseExplosion.rb:21:2454:21:2464 | else ... | UseUseExplosion.rb:21:1627:21:2468 | if ... |
+| UseUseExplosion.rb:21:2459:21:2464 | call to use | UseUseExplosion.rb:21:2454:21:2464 | else ... |
+| UseUseExplosion.rb:21:2470:21:2480 | else ... | UseUseExplosion.rb:21:1606:21:2484 | if ... |
+| UseUseExplosion.rb:21:2475:21:2480 | call to use | UseUseExplosion.rb:21:2470:21:2480 | else ... |
+| UseUseExplosion.rb:21:2486:21:2496 | else ... | UseUseExplosion.rb:21:1585:21:2500 | if ... |
+| UseUseExplosion.rb:21:2491:21:2496 | call to use | UseUseExplosion.rb:21:2486:21:2496 | else ... |
+| UseUseExplosion.rb:21:2502:21:2512 | else ... | UseUseExplosion.rb:21:1564:21:2516 | if ... |
+| UseUseExplosion.rb:21:2507:21:2512 | call to use | UseUseExplosion.rb:21:2502:21:2512 | else ... |
+| UseUseExplosion.rb:21:2518:21:2528 | else ... | UseUseExplosion.rb:21:1543:21:2532 | if ... |
+| UseUseExplosion.rb:21:2523:21:2528 | call to use | UseUseExplosion.rb:21:2518:21:2528 | else ... |
+| UseUseExplosion.rb:21:2534:21:2544 | else ... | UseUseExplosion.rb:21:1522:21:2548 | if ... |
+| UseUseExplosion.rb:21:2539:21:2544 | call to use | UseUseExplosion.rb:21:2534:21:2544 | else ... |
+| UseUseExplosion.rb:21:2550:21:2560 | else ... | UseUseExplosion.rb:21:1501:21:2564 | if ... |
+| UseUseExplosion.rb:21:2555:21:2560 | call to use | UseUseExplosion.rb:21:2550:21:2560 | else ... |
+| UseUseExplosion.rb:21:2566:21:2576 | else ... | UseUseExplosion.rb:21:1480:21:2580 | if ... |
+| UseUseExplosion.rb:21:2571:21:2576 | call to use | UseUseExplosion.rb:21:2566:21:2576 | else ... |
+| UseUseExplosion.rb:21:2582:21:2592 | else ... | UseUseExplosion.rb:21:1459:21:2596 | if ... |
+| UseUseExplosion.rb:21:2587:21:2592 | call to use | UseUseExplosion.rb:21:2582:21:2592 | else ... |
+| UseUseExplosion.rb:21:2598:21:2608 | else ... | UseUseExplosion.rb:21:1438:21:2612 | if ... |
+| UseUseExplosion.rb:21:2603:21:2608 | call to use | UseUseExplosion.rb:21:2598:21:2608 | else ... |
+| UseUseExplosion.rb:21:2614:21:2624 | else ... | UseUseExplosion.rb:21:1417:21:2628 | if ... |
+| UseUseExplosion.rb:21:2619:21:2624 | call to use | UseUseExplosion.rb:21:2614:21:2624 | else ... |
+| UseUseExplosion.rb:21:2630:21:2640 | else ... | UseUseExplosion.rb:21:1396:21:2644 | if ... |
+| UseUseExplosion.rb:21:2635:21:2640 | call to use | UseUseExplosion.rb:21:2630:21:2640 | else ... |
+| UseUseExplosion.rb:21:2646:21:2656 | else ... | UseUseExplosion.rb:21:1375:21:2660 | if ... |
+| UseUseExplosion.rb:21:2651:21:2656 | call to use | UseUseExplosion.rb:21:2646:21:2656 | else ... |
+| UseUseExplosion.rb:21:2662:21:2672 | else ... | UseUseExplosion.rb:21:1354:21:2676 | if ... |
+| UseUseExplosion.rb:21:2667:21:2672 | call to use | UseUseExplosion.rb:21:2662:21:2672 | else ... |
+| UseUseExplosion.rb:21:2678:21:2688 | else ... | UseUseExplosion.rb:21:1333:21:2692 | if ... |
+| UseUseExplosion.rb:21:2683:21:2688 | call to use | UseUseExplosion.rb:21:2678:21:2688 | else ... |
+| UseUseExplosion.rb:21:2694:21:2704 | else ... | UseUseExplosion.rb:21:1312:21:2708 | if ... |
+| UseUseExplosion.rb:21:2699:21:2704 | call to use | UseUseExplosion.rb:21:2694:21:2704 | else ... |
+| UseUseExplosion.rb:21:2710:21:2720 | else ... | UseUseExplosion.rb:21:1291:21:2724 | if ... |
+| UseUseExplosion.rb:21:2715:21:2720 | call to use | UseUseExplosion.rb:21:2710:21:2720 | else ... |
+| UseUseExplosion.rb:21:2726:21:2736 | else ... | UseUseExplosion.rb:21:1270:21:2740 | if ... |
+| UseUseExplosion.rb:21:2731:21:2736 | call to use | UseUseExplosion.rb:21:2726:21:2736 | else ... |
+| UseUseExplosion.rb:21:2742:21:2752 | else ... | UseUseExplosion.rb:21:1249:21:2756 | if ... |
+| UseUseExplosion.rb:21:2747:21:2752 | call to use | UseUseExplosion.rb:21:2742:21:2752 | else ... |
+| UseUseExplosion.rb:21:2758:21:2768 | else ... | UseUseExplosion.rb:21:1228:21:2772 | if ... |
+| UseUseExplosion.rb:21:2763:21:2768 | call to use | UseUseExplosion.rb:21:2758:21:2768 | else ... |
+| UseUseExplosion.rb:21:2774:21:2784 | else ... | UseUseExplosion.rb:21:1207:21:2788 | if ... |
+| UseUseExplosion.rb:21:2779:21:2784 | call to use | UseUseExplosion.rb:21:2774:21:2784 | else ... |
+| UseUseExplosion.rb:21:2790:21:2800 | else ... | UseUseExplosion.rb:21:1186:21:2804 | if ... |
+| UseUseExplosion.rb:21:2795:21:2800 | call to use | UseUseExplosion.rb:21:2790:21:2800 | else ... |
+| UseUseExplosion.rb:21:2806:21:2816 | else ... | UseUseExplosion.rb:21:1165:21:2820 | if ... |
+| UseUseExplosion.rb:21:2811:21:2816 | call to use | UseUseExplosion.rb:21:2806:21:2816 | else ... |
+| UseUseExplosion.rb:21:2822:21:2832 | else ... | UseUseExplosion.rb:21:1144:21:2836 | if ... |
+| UseUseExplosion.rb:21:2827:21:2832 | call to use | UseUseExplosion.rb:21:2822:21:2832 | else ... |
+| UseUseExplosion.rb:21:2838:21:2848 | else ... | UseUseExplosion.rb:21:1123:21:2852 | if ... |
+| UseUseExplosion.rb:21:2843:21:2848 | call to use | UseUseExplosion.rb:21:2838:21:2848 | else ... |
+| UseUseExplosion.rb:21:2854:21:2864 | else ... | UseUseExplosion.rb:21:1102:21:2868 | if ... |
+| UseUseExplosion.rb:21:2859:21:2864 | call to use | UseUseExplosion.rb:21:2854:21:2864 | else ... |
+| UseUseExplosion.rb:21:2870:21:2880 | else ... | UseUseExplosion.rb:21:1081:21:2884 | if ... |
+| UseUseExplosion.rb:21:2875:21:2880 | call to use | UseUseExplosion.rb:21:2870:21:2880 | else ... |
+| UseUseExplosion.rb:21:2886:21:2896 | else ... | UseUseExplosion.rb:21:1060:21:2900 | if ... |
+| UseUseExplosion.rb:21:2891:21:2896 | call to use | UseUseExplosion.rb:21:2886:21:2896 | else ... |
+| UseUseExplosion.rb:21:2902:21:2912 | else ... | UseUseExplosion.rb:21:1039:21:2916 | if ... |
+| UseUseExplosion.rb:21:2907:21:2912 | call to use | UseUseExplosion.rb:21:2902:21:2912 | else ... |
+| UseUseExplosion.rb:21:2918:21:2928 | else ... | UseUseExplosion.rb:21:1018:21:2932 | if ... |
+| UseUseExplosion.rb:21:2923:21:2928 | call to use | UseUseExplosion.rb:21:2918:21:2928 | else ... |
+| UseUseExplosion.rb:21:2934:21:2944 | else ... | UseUseExplosion.rb:21:997:21:2948 | if ... |
+| UseUseExplosion.rb:21:2939:21:2944 | call to use | UseUseExplosion.rb:21:2934:21:2944 | else ... |
+| UseUseExplosion.rb:21:2950:21:2960 | else ... | UseUseExplosion.rb:21:976:21:2964 | if ... |
+| UseUseExplosion.rb:21:2955:21:2960 | call to use | UseUseExplosion.rb:21:2950:21:2960 | else ... |
+| UseUseExplosion.rb:21:2966:21:2976 | else ... | UseUseExplosion.rb:21:955:21:2980 | if ... |
+| UseUseExplosion.rb:21:2971:21:2976 | call to use | UseUseExplosion.rb:21:2966:21:2976 | else ... |
+| UseUseExplosion.rb:21:2982:21:2992 | else ... | UseUseExplosion.rb:21:934:21:2996 | if ... |
+| UseUseExplosion.rb:21:2987:21:2992 | call to use | UseUseExplosion.rb:21:2982:21:2992 | else ... |
+| UseUseExplosion.rb:21:2998:21:3008 | else ... | UseUseExplosion.rb:21:913:21:3012 | if ... |
+| UseUseExplosion.rb:21:3003:21:3008 | call to use | UseUseExplosion.rb:21:2998:21:3008 | else ... |
+| UseUseExplosion.rb:21:3014:21:3024 | else ... | UseUseExplosion.rb:21:892:21:3028 | if ... |
+| UseUseExplosion.rb:21:3019:21:3024 | call to use | UseUseExplosion.rb:21:3014:21:3024 | else ... |
+| UseUseExplosion.rb:21:3030:21:3040 | else ... | UseUseExplosion.rb:21:871:21:3044 | if ... |
+| UseUseExplosion.rb:21:3035:21:3040 | call to use | UseUseExplosion.rb:21:3030:21:3040 | else ... |
+| UseUseExplosion.rb:21:3046:21:3056 | else ... | UseUseExplosion.rb:21:850:21:3060 | if ... |
+| UseUseExplosion.rb:21:3051:21:3056 | call to use | UseUseExplosion.rb:21:3046:21:3056 | else ... |
+| UseUseExplosion.rb:21:3062:21:3072 | else ... | UseUseExplosion.rb:21:829:21:3076 | if ... |
+| UseUseExplosion.rb:21:3067:21:3072 | call to use | UseUseExplosion.rb:21:3062:21:3072 | else ... |
+| UseUseExplosion.rb:21:3078:21:3088 | else ... | UseUseExplosion.rb:21:808:21:3092 | if ... |
+| UseUseExplosion.rb:21:3083:21:3088 | call to use | UseUseExplosion.rb:21:3078:21:3088 | else ... |
+| UseUseExplosion.rb:21:3094:21:3104 | else ... | UseUseExplosion.rb:21:787:21:3108 | if ... |
+| UseUseExplosion.rb:21:3099:21:3104 | call to use | UseUseExplosion.rb:21:3094:21:3104 | else ... |
+| UseUseExplosion.rb:21:3110:21:3120 | else ... | UseUseExplosion.rb:21:766:21:3124 | if ... |
+| UseUseExplosion.rb:21:3115:21:3120 | call to use | UseUseExplosion.rb:21:3110:21:3120 | else ... |
+| UseUseExplosion.rb:21:3126:21:3136 | else ... | UseUseExplosion.rb:21:745:21:3140 | if ... |
+| UseUseExplosion.rb:21:3131:21:3136 | call to use | UseUseExplosion.rb:21:3126:21:3136 | else ... |
+| UseUseExplosion.rb:21:3142:21:3152 | else ... | UseUseExplosion.rb:21:724:21:3156 | if ... |
+| UseUseExplosion.rb:21:3147:21:3152 | call to use | UseUseExplosion.rb:21:3142:21:3152 | else ... |
+| UseUseExplosion.rb:21:3158:21:3168 | else ... | UseUseExplosion.rb:21:703:21:3172 | if ... |
+| UseUseExplosion.rb:21:3163:21:3168 | call to use | UseUseExplosion.rb:21:3158:21:3168 | else ... |
+| UseUseExplosion.rb:21:3174:21:3184 | else ... | UseUseExplosion.rb:21:682:21:3188 | if ... |
+| UseUseExplosion.rb:21:3179:21:3184 | call to use | UseUseExplosion.rb:21:3174:21:3184 | else ... |
+| UseUseExplosion.rb:21:3190:21:3200 | else ... | UseUseExplosion.rb:21:661:21:3204 | if ... |
+| UseUseExplosion.rb:21:3195:21:3200 | call to use | UseUseExplosion.rb:21:3190:21:3200 | else ... |
+| UseUseExplosion.rb:21:3206:21:3216 | else ... | UseUseExplosion.rb:21:640:21:3220 | if ... |
+| UseUseExplosion.rb:21:3211:21:3216 | call to use | UseUseExplosion.rb:21:3206:21:3216 | else ... |
+| UseUseExplosion.rb:21:3222:21:3232 | else ... | UseUseExplosion.rb:21:619:21:3236 | if ... |
+| UseUseExplosion.rb:21:3227:21:3232 | call to use | UseUseExplosion.rb:21:3222:21:3232 | else ... |
+| UseUseExplosion.rb:21:3238:21:3248 | else ... | UseUseExplosion.rb:21:598:21:3252 | if ... |
+| UseUseExplosion.rb:21:3243:21:3248 | call to use | UseUseExplosion.rb:21:3238:21:3248 | else ... |
+| UseUseExplosion.rb:21:3254:21:3264 | else ... | UseUseExplosion.rb:21:577:21:3268 | if ... |
+| UseUseExplosion.rb:21:3259:21:3264 | call to use | UseUseExplosion.rb:21:3254:21:3264 | else ... |
+| UseUseExplosion.rb:21:3270:21:3280 | else ... | UseUseExplosion.rb:21:556:21:3284 | if ... |
+| UseUseExplosion.rb:21:3275:21:3280 | call to use | UseUseExplosion.rb:21:3270:21:3280 | else ... |
+| UseUseExplosion.rb:21:3286:21:3296 | else ... | UseUseExplosion.rb:21:535:21:3300 | if ... |
+| UseUseExplosion.rb:21:3291:21:3296 | call to use | UseUseExplosion.rb:21:3286:21:3296 | else ... |
+| UseUseExplosion.rb:21:3302:21:3312 | else ... | UseUseExplosion.rb:21:514:21:3316 | if ... |
+| UseUseExplosion.rb:21:3307:21:3312 | call to use | UseUseExplosion.rb:21:3302:21:3312 | else ... |
+| UseUseExplosion.rb:21:3318:21:3328 | else ... | UseUseExplosion.rb:21:493:21:3332 | if ... |
+| UseUseExplosion.rb:21:3323:21:3328 | call to use | UseUseExplosion.rb:21:3318:21:3328 | else ... |
+| UseUseExplosion.rb:21:3334:21:3344 | else ... | UseUseExplosion.rb:21:472:21:3348 | if ... |
+| UseUseExplosion.rb:21:3339:21:3344 | call to use | UseUseExplosion.rb:21:3334:21:3344 | else ... |
+| UseUseExplosion.rb:21:3350:21:3360 | else ... | UseUseExplosion.rb:21:451:21:3364 | if ... |
+| UseUseExplosion.rb:21:3355:21:3360 | call to use | UseUseExplosion.rb:21:3350:21:3360 | else ... |
+| UseUseExplosion.rb:21:3366:21:3376 | else ... | UseUseExplosion.rb:21:430:21:3380 | if ... |
+| UseUseExplosion.rb:21:3371:21:3376 | call to use | UseUseExplosion.rb:21:3366:21:3376 | else ... |
+| UseUseExplosion.rb:21:3382:21:3392 | else ... | UseUseExplosion.rb:21:409:21:3396 | if ... |
+| UseUseExplosion.rb:21:3387:21:3392 | call to use | UseUseExplosion.rb:21:3382:21:3392 | else ... |
+| UseUseExplosion.rb:21:3398:21:3408 | else ... | UseUseExplosion.rb:21:388:21:3412 | if ... |
+| UseUseExplosion.rb:21:3403:21:3408 | call to use | UseUseExplosion.rb:21:3398:21:3408 | else ... |
+| UseUseExplosion.rb:21:3414:21:3424 | else ... | UseUseExplosion.rb:21:367:21:3428 | if ... |
+| UseUseExplosion.rb:21:3419:21:3424 | call to use | UseUseExplosion.rb:21:3414:21:3424 | else ... |
+| UseUseExplosion.rb:21:3430:21:3440 | else ... | UseUseExplosion.rb:21:346:21:3444 | if ... |
+| UseUseExplosion.rb:21:3435:21:3440 | call to use | UseUseExplosion.rb:21:3430:21:3440 | else ... |
+| UseUseExplosion.rb:21:3446:21:3456 | else ... | UseUseExplosion.rb:21:325:21:3460 | if ... |
+| UseUseExplosion.rb:21:3451:21:3456 | call to use | UseUseExplosion.rb:21:3446:21:3456 | else ... |
+| UseUseExplosion.rb:21:3462:21:3472 | else ... | UseUseExplosion.rb:21:304:21:3476 | if ... |
+| UseUseExplosion.rb:21:3467:21:3472 | call to use | UseUseExplosion.rb:21:3462:21:3472 | else ... |
+| UseUseExplosion.rb:21:3478:21:3488 | else ... | UseUseExplosion.rb:21:283:21:3492 | if ... |
+| UseUseExplosion.rb:21:3483:21:3488 | call to use | UseUseExplosion.rb:21:3478:21:3488 | else ... |
+| UseUseExplosion.rb:21:3494:21:3504 | else ... | UseUseExplosion.rb:21:262:21:3508 | if ... |
+| UseUseExplosion.rb:21:3499:21:3504 | call to use | UseUseExplosion.rb:21:3494:21:3504 | else ... |
+| UseUseExplosion.rb:21:3510:21:3520 | else ... | UseUseExplosion.rb:21:241:21:3524 | if ... |
+| UseUseExplosion.rb:21:3515:21:3520 | call to use | UseUseExplosion.rb:21:3510:21:3520 | else ... |
+| UseUseExplosion.rb:21:3526:21:3536 | else ... | UseUseExplosion.rb:21:220:21:3540 | if ... |
+| UseUseExplosion.rb:21:3531:21:3536 | call to use | UseUseExplosion.rb:21:3526:21:3536 | else ... |
+| UseUseExplosion.rb:21:3542:21:3552 | else ... | UseUseExplosion.rb:21:199:21:3556 | if ... |
+| UseUseExplosion.rb:21:3547:21:3552 | call to use | UseUseExplosion.rb:21:3542:21:3552 | else ... |
+| UseUseExplosion.rb:21:3558:21:3568 | else ... | UseUseExplosion.rb:21:178:21:3572 | if ... |
+| UseUseExplosion.rb:21:3563:21:3568 | call to use | UseUseExplosion.rb:21:3558:21:3568 | else ... |
+| UseUseExplosion.rb:21:3574:21:3584 | else ... | UseUseExplosion.rb:21:157:21:3588 | if ... |
+| UseUseExplosion.rb:21:3579:21:3584 | call to use | UseUseExplosion.rb:21:3574:21:3584 | else ... |
+| UseUseExplosion.rb:21:3590:21:3600 | else ... | UseUseExplosion.rb:21:136:21:3604 | if ... |
+| UseUseExplosion.rb:21:3595:21:3600 | call to use | UseUseExplosion.rb:21:3590:21:3600 | else ... |
+| UseUseExplosion.rb:21:3606:21:3616 | else ... | UseUseExplosion.rb:21:115:21:3620 | if ... |
+| UseUseExplosion.rb:21:3611:21:3616 | call to use | UseUseExplosion.rb:21:3606:21:3616 | else ... |
+| UseUseExplosion.rb:21:3622:21:3632 | else ... | UseUseExplosion.rb:21:94:21:3636 | if ... |
+| UseUseExplosion.rb:21:3627:21:3632 | call to use | UseUseExplosion.rb:21:3622:21:3632 | else ... |
+| UseUseExplosion.rb:21:3638:21:3648 | else ... | UseUseExplosion.rb:21:73:21:3652 | if ... |
+| UseUseExplosion.rb:21:3643:21:3648 | call to use | UseUseExplosion.rb:21:3638:21:3648 | else ... |
+| UseUseExplosion.rb:21:3654:21:3664 | else ... | UseUseExplosion.rb:21:52:21:3668 | if ... |
+| UseUseExplosion.rb:21:3659:21:3664 | call to use | UseUseExplosion.rb:21:3654:21:3664 | else ... |
+| UseUseExplosion.rb:21:3670:21:3680 | else ... | UseUseExplosion.rb:21:31:21:3684 | if ... |
+| UseUseExplosion.rb:21:3675:21:3680 | call to use | UseUseExplosion.rb:21:3670:21:3680 | else ... |
+| UseUseExplosion.rb:21:3686:21:3696 | else ... | UseUseExplosion.rb:21:9:21:3700 | if ... |
+| UseUseExplosion.rb:21:3691:21:3696 | call to use | UseUseExplosion.rb:21:3686:21:3696 | else ... |
+| UseUseExplosion.rb:24:5:25:7 | use | UseUseExplosion.rb:1:1:26:3 | C |
 | local_dataflow.rb:1:1:7:3 | self (foo) | local_dataflow.rb:3:8:3:10 | self |
 | local_dataflow.rb:1:1:7:3 | self in foo | local_dataflow.rb:1:1:7:3 | self (foo) |
 | local_dataflow.rb:1:1:150:3 | self (local_dataflow.rb) | local_dataflow.rb:49:1:53:3 | self |
diff --git a/ruby/ql/test/library-tests/dataflow/local/Nodes.expected b/ruby/ql/test/library-tests/dataflow/local/Nodes.expected
index fcb55f6ada7..2ac17e470d7 100644
--- a/ruby/ql/test/library-tests/dataflow/local/Nodes.expected
+++ b/ruby/ql/test/library-tests/dataflow/local/Nodes.expected
@@ -1,4 +1,5 @@
 ret
+| UseUseExplosion.rb:21:9:21:3700 | if ... |
 | local_dataflow.rb:6:3:6:14 | ... = ... |
 | local_dataflow.rb:12:3:12:5 | call to p |
 | local_dataflow.rb:16:3:16:10 | break |
@@ -22,6 +23,806 @@ ret
 | local_dataflow.rb:127:3:127:8 | call to rand |
 | local_dataflow.rb:132:3:149:5 | if ... |
 arg
+| UseUseExplosion.rb:20:13:20:17 | @prop | UseUseExplosion.rb:20:13:20:23 | ... > ... | self |
+| UseUseExplosion.rb:20:21:20:23 | 100 | UseUseExplosion.rb:20:13:20:23 | ... > ... | position 0 |
+| UseUseExplosion.rb:20:35:20:39 | @prop | UseUseExplosion.rb:20:35:20:44 | ... > ... | self |
+| UseUseExplosion.rb:20:43:20:44 | 99 | UseUseExplosion.rb:20:35:20:44 | ... > ... | position 0 |
+| UseUseExplosion.rb:20:56:20:60 | @prop | UseUseExplosion.rb:20:56:20:65 | ... > ... | self |
+| UseUseExplosion.rb:20:64:20:65 | 98 | UseUseExplosion.rb:20:56:20:65 | ... > ... | position 0 |
+| UseUseExplosion.rb:20:77:20:81 | @prop | UseUseExplosion.rb:20:77:20:86 | ... > ... | self |
+| UseUseExplosion.rb:20:85:20:86 | 97 | UseUseExplosion.rb:20:77:20:86 | ... > ... | position 0 |
+| UseUseExplosion.rb:20:98:20:102 | @prop | UseUseExplosion.rb:20:98:20:107 | ... > ... | self |
+| UseUseExplosion.rb:20:106:20:107 | 96 | UseUseExplosion.rb:20:98:20:107 | ... > ... | position 0 |
+| UseUseExplosion.rb:20:119:20:123 | @prop | UseUseExplosion.rb:20:119:20:128 | ... > ... | self |
+| UseUseExplosion.rb:20:127:20:128 | 95 | UseUseExplosion.rb:20:119:20:128 | ... > ... | position 0 |
+| UseUseExplosion.rb:20:140:20:144 | @prop | UseUseExplosion.rb:20:140:20:149 | ... > ... | self |
+| UseUseExplosion.rb:20:148:20:149 | 94 | UseUseExplosion.rb:20:140:20:149 | ... > ... | position 0 |
+| UseUseExplosion.rb:20:161:20:165 | @prop | UseUseExplosion.rb:20:161:20:170 | ... > ... | self |
+| UseUseExplosion.rb:20:169:20:170 | 93 | UseUseExplosion.rb:20:161:20:170 | ... > ... | position 0 |
+| UseUseExplosion.rb:20:182:20:186 | @prop | UseUseExplosion.rb:20:182:20:191 | ... > ... | self |
+| UseUseExplosion.rb:20:190:20:191 | 92 | UseUseExplosion.rb:20:182:20:191 | ... > ... | position 0 |
+| UseUseExplosion.rb:20:203:20:207 | @prop | UseUseExplosion.rb:20:203:20:212 | ... > ... | self |
+| UseUseExplosion.rb:20:211:20:212 | 91 | UseUseExplosion.rb:20:203:20:212 | ... > ... | position 0 |
+| UseUseExplosion.rb:20:224:20:228 | @prop | UseUseExplosion.rb:20:224:20:233 | ... > ... | self |
+| UseUseExplosion.rb:20:232:20:233 | 90 | UseUseExplosion.rb:20:224:20:233 | ... > ... | position 0 |
+| UseUseExplosion.rb:20:245:20:249 | @prop | UseUseExplosion.rb:20:245:20:254 | ... > ... | self |
+| UseUseExplosion.rb:20:253:20:254 | 89 | UseUseExplosion.rb:20:245:20:254 | ... > ... | position 0 |
+| UseUseExplosion.rb:20:266:20:270 | @prop | UseUseExplosion.rb:20:266:20:275 | ... > ... | self |
+| UseUseExplosion.rb:20:274:20:275 | 88 | UseUseExplosion.rb:20:266:20:275 | ... > ... | position 0 |
+| UseUseExplosion.rb:20:287:20:291 | @prop | UseUseExplosion.rb:20:287:20:296 | ... > ... | self |
+| UseUseExplosion.rb:20:295:20:296 | 87 | UseUseExplosion.rb:20:287:20:296 | ... > ... | position 0 |
+| UseUseExplosion.rb:20:308:20:312 | @prop | UseUseExplosion.rb:20:308:20:317 | ... > ... | self |
+| UseUseExplosion.rb:20:316:20:317 | 86 | UseUseExplosion.rb:20:308:20:317 | ... > ... | position 0 |
+| UseUseExplosion.rb:20:329:20:333 | @prop | UseUseExplosion.rb:20:329:20:338 | ... > ... | self |
+| UseUseExplosion.rb:20:337:20:338 | 85 | UseUseExplosion.rb:20:329:20:338 | ... > ... | position 0 |
+| UseUseExplosion.rb:20:350:20:354 | @prop | UseUseExplosion.rb:20:350:20:359 | ... > ... | self |
+| UseUseExplosion.rb:20:358:20:359 | 84 | UseUseExplosion.rb:20:350:20:359 | ... > ... | position 0 |
+| UseUseExplosion.rb:20:371:20:375 | @prop | UseUseExplosion.rb:20:371:20:380 | ... > ... | self |
+| UseUseExplosion.rb:20:379:20:380 | 83 | UseUseExplosion.rb:20:371:20:380 | ... > ... | position 0 |
+| UseUseExplosion.rb:20:392:20:396 | @prop | UseUseExplosion.rb:20:392:20:401 | ... > ... | self |
+| UseUseExplosion.rb:20:400:20:401 | 82 | UseUseExplosion.rb:20:392:20:401 | ... > ... | position 0 |
+| UseUseExplosion.rb:20:413:20:417 | @prop | UseUseExplosion.rb:20:413:20:422 | ... > ... | self |
+| UseUseExplosion.rb:20:421:20:422 | 81 | UseUseExplosion.rb:20:413:20:422 | ... > ... | position 0 |
+| UseUseExplosion.rb:20:434:20:438 | @prop | UseUseExplosion.rb:20:434:20:443 | ... > ... | self |
+| UseUseExplosion.rb:20:442:20:443 | 80 | UseUseExplosion.rb:20:434:20:443 | ... > ... | position 0 |
+| UseUseExplosion.rb:20:455:20:459 | @prop | UseUseExplosion.rb:20:455:20:464 | ... > ... | self |
+| UseUseExplosion.rb:20:463:20:464 | 79 | UseUseExplosion.rb:20:455:20:464 | ... > ... | position 0 |
+| UseUseExplosion.rb:20:476:20:480 | @prop | UseUseExplosion.rb:20:476:20:485 | ... > ... | self |
+| UseUseExplosion.rb:20:484:20:485 | 78 | UseUseExplosion.rb:20:476:20:485 | ... > ... | position 0 |
+| UseUseExplosion.rb:20:497:20:501 | @prop | UseUseExplosion.rb:20:497:20:506 | ... > ... | self |
+| UseUseExplosion.rb:20:505:20:506 | 77 | UseUseExplosion.rb:20:497:20:506 | ... > ... | position 0 |
+| UseUseExplosion.rb:20:518:20:522 | @prop | UseUseExplosion.rb:20:518:20:527 | ... > ... | self |
+| UseUseExplosion.rb:20:526:20:527 | 76 | UseUseExplosion.rb:20:518:20:527 | ... > ... | position 0 |
+| UseUseExplosion.rb:20:539:20:543 | @prop | UseUseExplosion.rb:20:539:20:548 | ... > ... | self |
+| UseUseExplosion.rb:20:547:20:548 | 75 | UseUseExplosion.rb:20:539:20:548 | ... > ... | position 0 |
+| UseUseExplosion.rb:20:560:20:564 | @prop | UseUseExplosion.rb:20:560:20:569 | ... > ... | self |
+| UseUseExplosion.rb:20:568:20:569 | 74 | UseUseExplosion.rb:20:560:20:569 | ... > ... | position 0 |
+| UseUseExplosion.rb:20:581:20:585 | @prop | UseUseExplosion.rb:20:581:20:590 | ... > ... | self |
+| UseUseExplosion.rb:20:589:20:590 | 73 | UseUseExplosion.rb:20:581:20:590 | ... > ... | position 0 |
+| UseUseExplosion.rb:20:602:20:606 | @prop | UseUseExplosion.rb:20:602:20:611 | ... > ... | self |
+| UseUseExplosion.rb:20:610:20:611 | 72 | UseUseExplosion.rb:20:602:20:611 | ... > ... | position 0 |
+| UseUseExplosion.rb:20:623:20:627 | @prop | UseUseExplosion.rb:20:623:20:632 | ... > ... | self |
+| UseUseExplosion.rb:20:631:20:632 | 71 | UseUseExplosion.rb:20:623:20:632 | ... > ... | position 0 |
+| UseUseExplosion.rb:20:644:20:648 | @prop | UseUseExplosion.rb:20:644:20:653 | ... > ... | self |
+| UseUseExplosion.rb:20:652:20:653 | 70 | UseUseExplosion.rb:20:644:20:653 | ... > ... | position 0 |
+| UseUseExplosion.rb:20:665:20:669 | @prop | UseUseExplosion.rb:20:665:20:674 | ... > ... | self |
+| UseUseExplosion.rb:20:673:20:674 | 69 | UseUseExplosion.rb:20:665:20:674 | ... > ... | position 0 |
+| UseUseExplosion.rb:20:686:20:690 | @prop | UseUseExplosion.rb:20:686:20:695 | ... > ... | self |
+| UseUseExplosion.rb:20:694:20:695 | 68 | UseUseExplosion.rb:20:686:20:695 | ... > ... | position 0 |
+| UseUseExplosion.rb:20:707:20:711 | @prop | UseUseExplosion.rb:20:707:20:716 | ... > ... | self |
+| UseUseExplosion.rb:20:715:20:716 | 67 | UseUseExplosion.rb:20:707:20:716 | ... > ... | position 0 |
+| UseUseExplosion.rb:20:728:20:732 | @prop | UseUseExplosion.rb:20:728:20:737 | ... > ... | self |
+| UseUseExplosion.rb:20:736:20:737 | 66 | UseUseExplosion.rb:20:728:20:737 | ... > ... | position 0 |
+| UseUseExplosion.rb:20:749:20:753 | @prop | UseUseExplosion.rb:20:749:20:758 | ... > ... | self |
+| UseUseExplosion.rb:20:757:20:758 | 65 | UseUseExplosion.rb:20:749:20:758 | ... > ... | position 0 |
+| UseUseExplosion.rb:20:770:20:774 | @prop | UseUseExplosion.rb:20:770:20:779 | ... > ... | self |
+| UseUseExplosion.rb:20:778:20:779 | 64 | UseUseExplosion.rb:20:770:20:779 | ... > ... | position 0 |
+| UseUseExplosion.rb:20:791:20:795 | @prop | UseUseExplosion.rb:20:791:20:800 | ... > ... | self |
+| UseUseExplosion.rb:20:799:20:800 | 63 | UseUseExplosion.rb:20:791:20:800 | ... > ... | position 0 |
+| UseUseExplosion.rb:20:812:20:816 | @prop | UseUseExplosion.rb:20:812:20:821 | ... > ... | self |
+| UseUseExplosion.rb:20:820:20:821 | 62 | UseUseExplosion.rb:20:812:20:821 | ... > ... | position 0 |
+| UseUseExplosion.rb:20:833:20:837 | @prop | UseUseExplosion.rb:20:833:20:842 | ... > ... | self |
+| UseUseExplosion.rb:20:841:20:842 | 61 | UseUseExplosion.rb:20:833:20:842 | ... > ... | position 0 |
+| UseUseExplosion.rb:20:854:20:858 | @prop | UseUseExplosion.rb:20:854:20:863 | ... > ... | self |
+| UseUseExplosion.rb:20:862:20:863 | 60 | UseUseExplosion.rb:20:854:20:863 | ... > ... | position 0 |
+| UseUseExplosion.rb:20:875:20:879 | @prop | UseUseExplosion.rb:20:875:20:884 | ... > ... | self |
+| UseUseExplosion.rb:20:883:20:884 | 59 | UseUseExplosion.rb:20:875:20:884 | ... > ... | position 0 |
+| UseUseExplosion.rb:20:896:20:900 | @prop | UseUseExplosion.rb:20:896:20:905 | ... > ... | self |
+| UseUseExplosion.rb:20:904:20:905 | 58 | UseUseExplosion.rb:20:896:20:905 | ... > ... | position 0 |
+| UseUseExplosion.rb:20:917:20:921 | @prop | UseUseExplosion.rb:20:917:20:926 | ... > ... | self |
+| UseUseExplosion.rb:20:925:20:926 | 57 | UseUseExplosion.rb:20:917:20:926 | ... > ... | position 0 |
+| UseUseExplosion.rb:20:938:20:942 | @prop | UseUseExplosion.rb:20:938:20:947 | ... > ... | self |
+| UseUseExplosion.rb:20:946:20:947 | 56 | UseUseExplosion.rb:20:938:20:947 | ... > ... | position 0 |
+| UseUseExplosion.rb:20:959:20:963 | @prop | UseUseExplosion.rb:20:959:20:968 | ... > ... | self |
+| UseUseExplosion.rb:20:967:20:968 | 55 | UseUseExplosion.rb:20:959:20:968 | ... > ... | position 0 |
+| UseUseExplosion.rb:20:980:20:984 | @prop | UseUseExplosion.rb:20:980:20:989 | ... > ... | self |
+| UseUseExplosion.rb:20:988:20:989 | 54 | UseUseExplosion.rb:20:980:20:989 | ... > ... | position 0 |
+| UseUseExplosion.rb:20:1001:20:1005 | @prop | UseUseExplosion.rb:20:1001:20:1010 | ... > ... | self |
+| UseUseExplosion.rb:20:1009:20:1010 | 53 | UseUseExplosion.rb:20:1001:20:1010 | ... > ... | position 0 |
+| UseUseExplosion.rb:20:1022:20:1026 | @prop | UseUseExplosion.rb:20:1022:20:1031 | ... > ... | self |
+| UseUseExplosion.rb:20:1030:20:1031 | 52 | UseUseExplosion.rb:20:1022:20:1031 | ... > ... | position 0 |
+| UseUseExplosion.rb:20:1043:20:1047 | @prop | UseUseExplosion.rb:20:1043:20:1052 | ... > ... | self |
+| UseUseExplosion.rb:20:1051:20:1052 | 51 | UseUseExplosion.rb:20:1043:20:1052 | ... > ... | position 0 |
+| UseUseExplosion.rb:20:1064:20:1068 | @prop | UseUseExplosion.rb:20:1064:20:1073 | ... > ... | self |
+| UseUseExplosion.rb:20:1072:20:1073 | 50 | UseUseExplosion.rb:20:1064:20:1073 | ... > ... | position 0 |
+| UseUseExplosion.rb:20:1085:20:1089 | @prop | UseUseExplosion.rb:20:1085:20:1094 | ... > ... | self |
+| UseUseExplosion.rb:20:1093:20:1094 | 49 | UseUseExplosion.rb:20:1085:20:1094 | ... > ... | position 0 |
+| UseUseExplosion.rb:20:1106:20:1110 | @prop | UseUseExplosion.rb:20:1106:20:1115 | ... > ... | self |
+| UseUseExplosion.rb:20:1114:20:1115 | 48 | UseUseExplosion.rb:20:1106:20:1115 | ... > ... | position 0 |
+| UseUseExplosion.rb:20:1127:20:1131 | @prop | UseUseExplosion.rb:20:1127:20:1136 | ... > ... | self |
+| UseUseExplosion.rb:20:1135:20:1136 | 47 | UseUseExplosion.rb:20:1127:20:1136 | ... > ... | position 0 |
+| UseUseExplosion.rb:20:1148:20:1152 | @prop | UseUseExplosion.rb:20:1148:20:1157 | ... > ... | self |
+| UseUseExplosion.rb:20:1156:20:1157 | 46 | UseUseExplosion.rb:20:1148:20:1157 | ... > ... | position 0 |
+| UseUseExplosion.rb:20:1169:20:1173 | @prop | UseUseExplosion.rb:20:1169:20:1178 | ... > ... | self |
+| UseUseExplosion.rb:20:1177:20:1178 | 45 | UseUseExplosion.rb:20:1169:20:1178 | ... > ... | position 0 |
+| UseUseExplosion.rb:20:1190:20:1194 | @prop | UseUseExplosion.rb:20:1190:20:1199 | ... > ... | self |
+| UseUseExplosion.rb:20:1198:20:1199 | 44 | UseUseExplosion.rb:20:1190:20:1199 | ... > ... | position 0 |
+| UseUseExplosion.rb:20:1211:20:1215 | @prop | UseUseExplosion.rb:20:1211:20:1220 | ... > ... | self |
+| UseUseExplosion.rb:20:1219:20:1220 | 43 | UseUseExplosion.rb:20:1211:20:1220 | ... > ... | position 0 |
+| UseUseExplosion.rb:20:1232:20:1236 | @prop | UseUseExplosion.rb:20:1232:20:1241 | ... > ... | self |
+| UseUseExplosion.rb:20:1240:20:1241 | 42 | UseUseExplosion.rb:20:1232:20:1241 | ... > ... | position 0 |
+| UseUseExplosion.rb:20:1253:20:1257 | @prop | UseUseExplosion.rb:20:1253:20:1262 | ... > ... | self |
+| UseUseExplosion.rb:20:1261:20:1262 | 41 | UseUseExplosion.rb:20:1253:20:1262 | ... > ... | position 0 |
+| UseUseExplosion.rb:20:1274:20:1278 | @prop | UseUseExplosion.rb:20:1274:20:1283 | ... > ... | self |
+| UseUseExplosion.rb:20:1282:20:1283 | 40 | UseUseExplosion.rb:20:1274:20:1283 | ... > ... | position 0 |
+| UseUseExplosion.rb:20:1295:20:1299 | @prop | UseUseExplosion.rb:20:1295:20:1304 | ... > ... | self |
+| UseUseExplosion.rb:20:1303:20:1304 | 39 | UseUseExplosion.rb:20:1295:20:1304 | ... > ... | position 0 |
+| UseUseExplosion.rb:20:1316:20:1320 | @prop | UseUseExplosion.rb:20:1316:20:1325 | ... > ... | self |
+| UseUseExplosion.rb:20:1324:20:1325 | 38 | UseUseExplosion.rb:20:1316:20:1325 | ... > ... | position 0 |
+| UseUseExplosion.rb:20:1337:20:1341 | @prop | UseUseExplosion.rb:20:1337:20:1346 | ... > ... | self |
+| UseUseExplosion.rb:20:1345:20:1346 | 37 | UseUseExplosion.rb:20:1337:20:1346 | ... > ... | position 0 |
+| UseUseExplosion.rb:20:1358:20:1362 | @prop | UseUseExplosion.rb:20:1358:20:1367 | ... > ... | self |
+| UseUseExplosion.rb:20:1366:20:1367 | 36 | UseUseExplosion.rb:20:1358:20:1367 | ... > ... | position 0 |
+| UseUseExplosion.rb:20:1379:20:1383 | @prop | UseUseExplosion.rb:20:1379:20:1388 | ... > ... | self |
+| UseUseExplosion.rb:20:1387:20:1388 | 35 | UseUseExplosion.rb:20:1379:20:1388 | ... > ... | position 0 |
+| UseUseExplosion.rb:20:1400:20:1404 | @prop | UseUseExplosion.rb:20:1400:20:1409 | ... > ... | self |
+| UseUseExplosion.rb:20:1408:20:1409 | 34 | UseUseExplosion.rb:20:1400:20:1409 | ... > ... | position 0 |
+| UseUseExplosion.rb:20:1421:20:1425 | @prop | UseUseExplosion.rb:20:1421:20:1430 | ... > ... | self |
+| UseUseExplosion.rb:20:1429:20:1430 | 33 | UseUseExplosion.rb:20:1421:20:1430 | ... > ... | position 0 |
+| UseUseExplosion.rb:20:1442:20:1446 | @prop | UseUseExplosion.rb:20:1442:20:1451 | ... > ... | self |
+| UseUseExplosion.rb:20:1450:20:1451 | 32 | UseUseExplosion.rb:20:1442:20:1451 | ... > ... | position 0 |
+| UseUseExplosion.rb:20:1463:20:1467 | @prop | UseUseExplosion.rb:20:1463:20:1472 | ... > ... | self |
+| UseUseExplosion.rb:20:1471:20:1472 | 31 | UseUseExplosion.rb:20:1463:20:1472 | ... > ... | position 0 |
+| UseUseExplosion.rb:20:1484:20:1488 | @prop | UseUseExplosion.rb:20:1484:20:1493 | ... > ... | self |
+| UseUseExplosion.rb:20:1492:20:1493 | 30 | UseUseExplosion.rb:20:1484:20:1493 | ... > ... | position 0 |
+| UseUseExplosion.rb:20:1505:20:1509 | @prop | UseUseExplosion.rb:20:1505:20:1514 | ... > ... | self |
+| UseUseExplosion.rb:20:1513:20:1514 | 29 | UseUseExplosion.rb:20:1505:20:1514 | ... > ... | position 0 |
+| UseUseExplosion.rb:20:1526:20:1530 | @prop | UseUseExplosion.rb:20:1526:20:1535 | ... > ... | self |
+| UseUseExplosion.rb:20:1534:20:1535 | 28 | UseUseExplosion.rb:20:1526:20:1535 | ... > ... | position 0 |
+| UseUseExplosion.rb:20:1547:20:1551 | @prop | UseUseExplosion.rb:20:1547:20:1556 | ... > ... | self |
+| UseUseExplosion.rb:20:1555:20:1556 | 27 | UseUseExplosion.rb:20:1547:20:1556 | ... > ... | position 0 |
+| UseUseExplosion.rb:20:1568:20:1572 | @prop | UseUseExplosion.rb:20:1568:20:1577 | ... > ... | self |
+| UseUseExplosion.rb:20:1576:20:1577 | 26 | UseUseExplosion.rb:20:1568:20:1577 | ... > ... | position 0 |
+| UseUseExplosion.rb:20:1589:20:1593 | @prop | UseUseExplosion.rb:20:1589:20:1598 | ... > ... | self |
+| UseUseExplosion.rb:20:1597:20:1598 | 25 | UseUseExplosion.rb:20:1589:20:1598 | ... > ... | position 0 |
+| UseUseExplosion.rb:20:1610:20:1614 | @prop | UseUseExplosion.rb:20:1610:20:1619 | ... > ... | self |
+| UseUseExplosion.rb:20:1618:20:1619 | 24 | UseUseExplosion.rb:20:1610:20:1619 | ... > ... | position 0 |
+| UseUseExplosion.rb:20:1631:20:1635 | @prop | UseUseExplosion.rb:20:1631:20:1640 | ... > ... | self |
+| UseUseExplosion.rb:20:1639:20:1640 | 23 | UseUseExplosion.rb:20:1631:20:1640 | ... > ... | position 0 |
+| UseUseExplosion.rb:20:1652:20:1656 | @prop | UseUseExplosion.rb:20:1652:20:1661 | ... > ... | self |
+| UseUseExplosion.rb:20:1660:20:1661 | 22 | UseUseExplosion.rb:20:1652:20:1661 | ... > ... | position 0 |
+| UseUseExplosion.rb:20:1673:20:1677 | @prop | UseUseExplosion.rb:20:1673:20:1682 | ... > ... | self |
+| UseUseExplosion.rb:20:1681:20:1682 | 21 | UseUseExplosion.rb:20:1673:20:1682 | ... > ... | position 0 |
+| UseUseExplosion.rb:20:1694:20:1698 | @prop | UseUseExplosion.rb:20:1694:20:1703 | ... > ... | self |
+| UseUseExplosion.rb:20:1702:20:1703 | 20 | UseUseExplosion.rb:20:1694:20:1703 | ... > ... | position 0 |
+| UseUseExplosion.rb:20:1715:20:1719 | @prop | UseUseExplosion.rb:20:1715:20:1724 | ... > ... | self |
+| UseUseExplosion.rb:20:1723:20:1724 | 19 | UseUseExplosion.rb:20:1715:20:1724 | ... > ... | position 0 |
+| UseUseExplosion.rb:20:1736:20:1740 | @prop | UseUseExplosion.rb:20:1736:20:1745 | ... > ... | self |
+| UseUseExplosion.rb:20:1744:20:1745 | 18 | UseUseExplosion.rb:20:1736:20:1745 | ... > ... | position 0 |
+| UseUseExplosion.rb:20:1757:20:1761 | @prop | UseUseExplosion.rb:20:1757:20:1766 | ... > ... | self |
+| UseUseExplosion.rb:20:1765:20:1766 | 17 | UseUseExplosion.rb:20:1757:20:1766 | ... > ... | position 0 |
+| UseUseExplosion.rb:20:1778:20:1782 | @prop | UseUseExplosion.rb:20:1778:20:1787 | ... > ... | self |
+| UseUseExplosion.rb:20:1786:20:1787 | 16 | UseUseExplosion.rb:20:1778:20:1787 | ... > ... | position 0 |
+| UseUseExplosion.rb:20:1799:20:1803 | @prop | UseUseExplosion.rb:20:1799:20:1808 | ... > ... | self |
+| UseUseExplosion.rb:20:1807:20:1808 | 15 | UseUseExplosion.rb:20:1799:20:1808 | ... > ... | position 0 |
+| UseUseExplosion.rb:20:1820:20:1824 | @prop | UseUseExplosion.rb:20:1820:20:1829 | ... > ... | self |
+| UseUseExplosion.rb:20:1828:20:1829 | 14 | UseUseExplosion.rb:20:1820:20:1829 | ... > ... | position 0 |
+| UseUseExplosion.rb:20:1841:20:1845 | @prop | UseUseExplosion.rb:20:1841:20:1850 | ... > ... | self |
+| UseUseExplosion.rb:20:1849:20:1850 | 13 | UseUseExplosion.rb:20:1841:20:1850 | ... > ... | position 0 |
+| UseUseExplosion.rb:20:1862:20:1866 | @prop | UseUseExplosion.rb:20:1862:20:1871 | ... > ... | self |
+| UseUseExplosion.rb:20:1870:20:1871 | 12 | UseUseExplosion.rb:20:1862:20:1871 | ... > ... | position 0 |
+| UseUseExplosion.rb:20:1883:20:1887 | @prop | UseUseExplosion.rb:20:1883:20:1892 | ... > ... | self |
+| UseUseExplosion.rb:20:1891:20:1892 | 11 | UseUseExplosion.rb:20:1883:20:1892 | ... > ... | position 0 |
+| UseUseExplosion.rb:20:1904:20:1908 | @prop | UseUseExplosion.rb:20:1904:20:1913 | ... > ... | self |
+| UseUseExplosion.rb:20:1912:20:1913 | 10 | UseUseExplosion.rb:20:1904:20:1913 | ... > ... | position 0 |
+| UseUseExplosion.rb:20:1925:20:1929 | @prop | UseUseExplosion.rb:20:1925:20:1933 | ... > ... | self |
+| UseUseExplosion.rb:20:1933:20:1933 | 9 | UseUseExplosion.rb:20:1925:20:1933 | ... > ... | position 0 |
+| UseUseExplosion.rb:20:1945:20:1949 | @prop | UseUseExplosion.rb:20:1945:20:1953 | ... > ... | self |
+| UseUseExplosion.rb:20:1953:20:1953 | 8 | UseUseExplosion.rb:20:1945:20:1953 | ... > ... | position 0 |
+| UseUseExplosion.rb:20:1965:20:1969 | @prop | UseUseExplosion.rb:20:1965:20:1973 | ... > ... | self |
+| UseUseExplosion.rb:20:1973:20:1973 | 7 | UseUseExplosion.rb:20:1965:20:1973 | ... > ... | position 0 |
+| UseUseExplosion.rb:20:1985:20:1989 | @prop | UseUseExplosion.rb:20:1985:20:1993 | ... > ... | self |
+| UseUseExplosion.rb:20:1993:20:1993 | 6 | UseUseExplosion.rb:20:1985:20:1993 | ... > ... | position 0 |
+| UseUseExplosion.rb:20:2005:20:2009 | @prop | UseUseExplosion.rb:20:2005:20:2013 | ... > ... | self |
+| UseUseExplosion.rb:20:2013:20:2013 | 5 | UseUseExplosion.rb:20:2005:20:2013 | ... > ... | position 0 |
+| UseUseExplosion.rb:20:2025:20:2029 | @prop | UseUseExplosion.rb:20:2025:20:2033 | ... > ... | self |
+| UseUseExplosion.rb:20:2033:20:2033 | 4 | UseUseExplosion.rb:20:2025:20:2033 | ... > ... | position 0 |
+| UseUseExplosion.rb:20:2045:20:2049 | @prop | UseUseExplosion.rb:20:2045:20:2053 | ... > ... | self |
+| UseUseExplosion.rb:20:2053:20:2053 | 3 | UseUseExplosion.rb:20:2045:20:2053 | ... > ... | position 0 |
+| UseUseExplosion.rb:20:2065:20:2069 | @prop | UseUseExplosion.rb:20:2065:20:2073 | ... > ... | self |
+| UseUseExplosion.rb:20:2073:20:2073 | 2 | UseUseExplosion.rb:20:2065:20:2073 | ... > ... | position 0 |
+| UseUseExplosion.rb:20:2085:20:2089 | @prop | UseUseExplosion.rb:20:2085:20:2093 | ... > ... | self |
+| UseUseExplosion.rb:20:2093:20:2093 | 1 | UseUseExplosion.rb:20:2085:20:2093 | ... > ... | position 0 |
+| UseUseExplosion.rb:20:2107:20:2112 | self | UseUseExplosion.rb:20:2107:20:2112 | call to use | self |
+| UseUseExplosion.rb:20:2111:20:2111 | x | UseUseExplosion.rb:20:2107:20:2112 | call to use | position 0 |
+| UseUseExplosion.rb:20:2123:20:2128 | self | UseUseExplosion.rb:20:2123:20:2128 | call to use | self |
+| UseUseExplosion.rb:20:2127:20:2127 | x | UseUseExplosion.rb:20:2123:20:2128 | call to use | position 0 |
+| UseUseExplosion.rb:20:2139:20:2144 | self | UseUseExplosion.rb:20:2139:20:2144 | call to use | self |
+| UseUseExplosion.rb:20:2143:20:2143 | x | UseUseExplosion.rb:20:2139:20:2144 | call to use | position 0 |
+| UseUseExplosion.rb:20:2155:20:2160 | self | UseUseExplosion.rb:20:2155:20:2160 | call to use | self |
+| UseUseExplosion.rb:20:2159:20:2159 | x | UseUseExplosion.rb:20:2155:20:2160 | call to use | position 0 |
+| UseUseExplosion.rb:20:2171:20:2176 | self | UseUseExplosion.rb:20:2171:20:2176 | call to use | self |
+| UseUseExplosion.rb:20:2175:20:2175 | x | UseUseExplosion.rb:20:2171:20:2176 | call to use | position 0 |
+| UseUseExplosion.rb:20:2187:20:2192 | self | UseUseExplosion.rb:20:2187:20:2192 | call to use | self |
+| UseUseExplosion.rb:20:2191:20:2191 | x | UseUseExplosion.rb:20:2187:20:2192 | call to use | position 0 |
+| UseUseExplosion.rb:20:2203:20:2208 | self | UseUseExplosion.rb:20:2203:20:2208 | call to use | self |
+| UseUseExplosion.rb:20:2207:20:2207 | x | UseUseExplosion.rb:20:2203:20:2208 | call to use | position 0 |
+| UseUseExplosion.rb:20:2219:20:2224 | self | UseUseExplosion.rb:20:2219:20:2224 | call to use | self |
+| UseUseExplosion.rb:20:2223:20:2223 | x | UseUseExplosion.rb:20:2219:20:2224 | call to use | position 0 |
+| UseUseExplosion.rb:20:2235:20:2240 | self | UseUseExplosion.rb:20:2235:20:2240 | call to use | self |
+| UseUseExplosion.rb:20:2239:20:2239 | x | UseUseExplosion.rb:20:2235:20:2240 | call to use | position 0 |
+| UseUseExplosion.rb:20:2251:20:2256 | self | UseUseExplosion.rb:20:2251:20:2256 | call to use | self |
+| UseUseExplosion.rb:20:2255:20:2255 | x | UseUseExplosion.rb:20:2251:20:2256 | call to use | position 0 |
+| UseUseExplosion.rb:20:2267:20:2272 | self | UseUseExplosion.rb:20:2267:20:2272 | call to use | self |
+| UseUseExplosion.rb:20:2271:20:2271 | x | UseUseExplosion.rb:20:2267:20:2272 | call to use | position 0 |
+| UseUseExplosion.rb:20:2283:20:2288 | self | UseUseExplosion.rb:20:2283:20:2288 | call to use | self |
+| UseUseExplosion.rb:20:2287:20:2287 | x | UseUseExplosion.rb:20:2283:20:2288 | call to use | position 0 |
+| UseUseExplosion.rb:20:2299:20:2304 | self | UseUseExplosion.rb:20:2299:20:2304 | call to use | self |
+| UseUseExplosion.rb:20:2303:20:2303 | x | UseUseExplosion.rb:20:2299:20:2304 | call to use | position 0 |
+| UseUseExplosion.rb:20:2315:20:2320 | self | UseUseExplosion.rb:20:2315:20:2320 | call to use | self |
+| UseUseExplosion.rb:20:2319:20:2319 | x | UseUseExplosion.rb:20:2315:20:2320 | call to use | position 0 |
+| UseUseExplosion.rb:20:2331:20:2336 | self | UseUseExplosion.rb:20:2331:20:2336 | call to use | self |
+| UseUseExplosion.rb:20:2335:20:2335 | x | UseUseExplosion.rb:20:2331:20:2336 | call to use | position 0 |
+| UseUseExplosion.rb:20:2347:20:2352 | self | UseUseExplosion.rb:20:2347:20:2352 | call to use | self |
+| UseUseExplosion.rb:20:2351:20:2351 | x | UseUseExplosion.rb:20:2347:20:2352 | call to use | position 0 |
+| UseUseExplosion.rb:20:2363:20:2368 | self | UseUseExplosion.rb:20:2363:20:2368 | call to use | self |
+| UseUseExplosion.rb:20:2367:20:2367 | x | UseUseExplosion.rb:20:2363:20:2368 | call to use | position 0 |
+| UseUseExplosion.rb:20:2379:20:2384 | self | UseUseExplosion.rb:20:2379:20:2384 | call to use | self |
+| UseUseExplosion.rb:20:2383:20:2383 | x | UseUseExplosion.rb:20:2379:20:2384 | call to use | position 0 |
+| UseUseExplosion.rb:20:2395:20:2400 | self | UseUseExplosion.rb:20:2395:20:2400 | call to use | self |
+| UseUseExplosion.rb:20:2399:20:2399 | x | UseUseExplosion.rb:20:2395:20:2400 | call to use | position 0 |
+| UseUseExplosion.rb:20:2411:20:2416 | self | UseUseExplosion.rb:20:2411:20:2416 | call to use | self |
+| UseUseExplosion.rb:20:2415:20:2415 | x | UseUseExplosion.rb:20:2411:20:2416 | call to use | position 0 |
+| UseUseExplosion.rb:20:2427:20:2432 | self | UseUseExplosion.rb:20:2427:20:2432 | call to use | self |
+| UseUseExplosion.rb:20:2431:20:2431 | x | UseUseExplosion.rb:20:2427:20:2432 | call to use | position 0 |
+| UseUseExplosion.rb:20:2443:20:2448 | self | UseUseExplosion.rb:20:2443:20:2448 | call to use | self |
+| UseUseExplosion.rb:20:2447:20:2447 | x | UseUseExplosion.rb:20:2443:20:2448 | call to use | position 0 |
+| UseUseExplosion.rb:20:2459:20:2464 | self | UseUseExplosion.rb:20:2459:20:2464 | call to use | self |
+| UseUseExplosion.rb:20:2463:20:2463 | x | UseUseExplosion.rb:20:2459:20:2464 | call to use | position 0 |
+| UseUseExplosion.rb:20:2475:20:2480 | self | UseUseExplosion.rb:20:2475:20:2480 | call to use | self |
+| UseUseExplosion.rb:20:2479:20:2479 | x | UseUseExplosion.rb:20:2475:20:2480 | call to use | position 0 |
+| UseUseExplosion.rb:20:2491:20:2496 | self | UseUseExplosion.rb:20:2491:20:2496 | call to use | self |
+| UseUseExplosion.rb:20:2495:20:2495 | x | UseUseExplosion.rb:20:2491:20:2496 | call to use | position 0 |
+| UseUseExplosion.rb:20:2507:20:2512 | self | UseUseExplosion.rb:20:2507:20:2512 | call to use | self |
+| UseUseExplosion.rb:20:2511:20:2511 | x | UseUseExplosion.rb:20:2507:20:2512 | call to use | position 0 |
+| UseUseExplosion.rb:20:2523:20:2528 | self | UseUseExplosion.rb:20:2523:20:2528 | call to use | self |
+| UseUseExplosion.rb:20:2527:20:2527 | x | UseUseExplosion.rb:20:2523:20:2528 | call to use | position 0 |
+| UseUseExplosion.rb:20:2539:20:2544 | self | UseUseExplosion.rb:20:2539:20:2544 | call to use | self |
+| UseUseExplosion.rb:20:2543:20:2543 | x | UseUseExplosion.rb:20:2539:20:2544 | call to use | position 0 |
+| UseUseExplosion.rb:20:2555:20:2560 | self | UseUseExplosion.rb:20:2555:20:2560 | call to use | self |
+| UseUseExplosion.rb:20:2559:20:2559 | x | UseUseExplosion.rb:20:2555:20:2560 | call to use | position 0 |
+| UseUseExplosion.rb:20:2571:20:2576 | self | UseUseExplosion.rb:20:2571:20:2576 | call to use | self |
+| UseUseExplosion.rb:20:2575:20:2575 | x | UseUseExplosion.rb:20:2571:20:2576 | call to use | position 0 |
+| UseUseExplosion.rb:20:2587:20:2592 | self | UseUseExplosion.rb:20:2587:20:2592 | call to use | self |
+| UseUseExplosion.rb:20:2591:20:2591 | x | UseUseExplosion.rb:20:2587:20:2592 | call to use | position 0 |
+| UseUseExplosion.rb:20:2603:20:2608 | self | UseUseExplosion.rb:20:2603:20:2608 | call to use | self |
+| UseUseExplosion.rb:20:2607:20:2607 | x | UseUseExplosion.rb:20:2603:20:2608 | call to use | position 0 |
+| UseUseExplosion.rb:20:2619:20:2624 | self | UseUseExplosion.rb:20:2619:20:2624 | call to use | self |
+| UseUseExplosion.rb:20:2623:20:2623 | x | UseUseExplosion.rb:20:2619:20:2624 | call to use | position 0 |
+| UseUseExplosion.rb:20:2635:20:2640 | self | UseUseExplosion.rb:20:2635:20:2640 | call to use | self |
+| UseUseExplosion.rb:20:2639:20:2639 | x | UseUseExplosion.rb:20:2635:20:2640 | call to use | position 0 |
+| UseUseExplosion.rb:20:2651:20:2656 | self | UseUseExplosion.rb:20:2651:20:2656 | call to use | self |
+| UseUseExplosion.rb:20:2655:20:2655 | x | UseUseExplosion.rb:20:2651:20:2656 | call to use | position 0 |
+| UseUseExplosion.rb:20:2667:20:2672 | self | UseUseExplosion.rb:20:2667:20:2672 | call to use | self |
+| UseUseExplosion.rb:20:2671:20:2671 | x | UseUseExplosion.rb:20:2667:20:2672 | call to use | position 0 |
+| UseUseExplosion.rb:20:2683:20:2688 | self | UseUseExplosion.rb:20:2683:20:2688 | call to use | self |
+| UseUseExplosion.rb:20:2687:20:2687 | x | UseUseExplosion.rb:20:2683:20:2688 | call to use | position 0 |
+| UseUseExplosion.rb:20:2699:20:2704 | self | UseUseExplosion.rb:20:2699:20:2704 | call to use | self |
+| UseUseExplosion.rb:20:2703:20:2703 | x | UseUseExplosion.rb:20:2699:20:2704 | call to use | position 0 |
+| UseUseExplosion.rb:20:2715:20:2720 | self | UseUseExplosion.rb:20:2715:20:2720 | call to use | self |
+| UseUseExplosion.rb:20:2719:20:2719 | x | UseUseExplosion.rb:20:2715:20:2720 | call to use | position 0 |
+| UseUseExplosion.rb:20:2731:20:2736 | self | UseUseExplosion.rb:20:2731:20:2736 | call to use | self |
+| UseUseExplosion.rb:20:2735:20:2735 | x | UseUseExplosion.rb:20:2731:20:2736 | call to use | position 0 |
+| UseUseExplosion.rb:20:2747:20:2752 | self | UseUseExplosion.rb:20:2747:20:2752 | call to use | self |
+| UseUseExplosion.rb:20:2751:20:2751 | x | UseUseExplosion.rb:20:2747:20:2752 | call to use | position 0 |
+| UseUseExplosion.rb:20:2763:20:2768 | self | UseUseExplosion.rb:20:2763:20:2768 | call to use | self |
+| UseUseExplosion.rb:20:2767:20:2767 | x | UseUseExplosion.rb:20:2763:20:2768 | call to use | position 0 |
+| UseUseExplosion.rb:20:2779:20:2784 | self | UseUseExplosion.rb:20:2779:20:2784 | call to use | self |
+| UseUseExplosion.rb:20:2783:20:2783 | x | UseUseExplosion.rb:20:2779:20:2784 | call to use | position 0 |
+| UseUseExplosion.rb:20:2795:20:2800 | self | UseUseExplosion.rb:20:2795:20:2800 | call to use | self |
+| UseUseExplosion.rb:20:2799:20:2799 | x | UseUseExplosion.rb:20:2795:20:2800 | call to use | position 0 |
+| UseUseExplosion.rb:20:2811:20:2816 | self | UseUseExplosion.rb:20:2811:20:2816 | call to use | self |
+| UseUseExplosion.rb:20:2815:20:2815 | x | UseUseExplosion.rb:20:2811:20:2816 | call to use | position 0 |
+| UseUseExplosion.rb:20:2827:20:2832 | self | UseUseExplosion.rb:20:2827:20:2832 | call to use | self |
+| UseUseExplosion.rb:20:2831:20:2831 | x | UseUseExplosion.rb:20:2827:20:2832 | call to use | position 0 |
+| UseUseExplosion.rb:20:2843:20:2848 | self | UseUseExplosion.rb:20:2843:20:2848 | call to use | self |
+| UseUseExplosion.rb:20:2847:20:2847 | x | UseUseExplosion.rb:20:2843:20:2848 | call to use | position 0 |
+| UseUseExplosion.rb:20:2859:20:2864 | self | UseUseExplosion.rb:20:2859:20:2864 | call to use | self |
+| UseUseExplosion.rb:20:2863:20:2863 | x | UseUseExplosion.rb:20:2859:20:2864 | call to use | position 0 |
+| UseUseExplosion.rb:20:2875:20:2880 | self | UseUseExplosion.rb:20:2875:20:2880 | call to use | self |
+| UseUseExplosion.rb:20:2879:20:2879 | x | UseUseExplosion.rb:20:2875:20:2880 | call to use | position 0 |
+| UseUseExplosion.rb:20:2891:20:2896 | self | UseUseExplosion.rb:20:2891:20:2896 | call to use | self |
+| UseUseExplosion.rb:20:2895:20:2895 | x | UseUseExplosion.rb:20:2891:20:2896 | call to use | position 0 |
+| UseUseExplosion.rb:20:2907:20:2912 | self | UseUseExplosion.rb:20:2907:20:2912 | call to use | self |
+| UseUseExplosion.rb:20:2911:20:2911 | x | UseUseExplosion.rb:20:2907:20:2912 | call to use | position 0 |
+| UseUseExplosion.rb:20:2923:20:2928 | self | UseUseExplosion.rb:20:2923:20:2928 | call to use | self |
+| UseUseExplosion.rb:20:2927:20:2927 | x | UseUseExplosion.rb:20:2923:20:2928 | call to use | position 0 |
+| UseUseExplosion.rb:20:2939:20:2944 | self | UseUseExplosion.rb:20:2939:20:2944 | call to use | self |
+| UseUseExplosion.rb:20:2943:20:2943 | x | UseUseExplosion.rb:20:2939:20:2944 | call to use | position 0 |
+| UseUseExplosion.rb:20:2955:20:2960 | self | UseUseExplosion.rb:20:2955:20:2960 | call to use | self |
+| UseUseExplosion.rb:20:2959:20:2959 | x | UseUseExplosion.rb:20:2955:20:2960 | call to use | position 0 |
+| UseUseExplosion.rb:20:2971:20:2976 | self | UseUseExplosion.rb:20:2971:20:2976 | call to use | self |
+| UseUseExplosion.rb:20:2975:20:2975 | x | UseUseExplosion.rb:20:2971:20:2976 | call to use | position 0 |
+| UseUseExplosion.rb:20:2987:20:2992 | self | UseUseExplosion.rb:20:2987:20:2992 | call to use | self |
+| UseUseExplosion.rb:20:2991:20:2991 | x | UseUseExplosion.rb:20:2987:20:2992 | call to use | position 0 |
+| UseUseExplosion.rb:20:3003:20:3008 | self | UseUseExplosion.rb:20:3003:20:3008 | call to use | self |
+| UseUseExplosion.rb:20:3007:20:3007 | x | UseUseExplosion.rb:20:3003:20:3008 | call to use | position 0 |
+| UseUseExplosion.rb:20:3019:20:3024 | self | UseUseExplosion.rb:20:3019:20:3024 | call to use | self |
+| UseUseExplosion.rb:20:3023:20:3023 | x | UseUseExplosion.rb:20:3019:20:3024 | call to use | position 0 |
+| UseUseExplosion.rb:20:3035:20:3040 | self | UseUseExplosion.rb:20:3035:20:3040 | call to use | self |
+| UseUseExplosion.rb:20:3039:20:3039 | x | UseUseExplosion.rb:20:3035:20:3040 | call to use | position 0 |
+| UseUseExplosion.rb:20:3051:20:3056 | self | UseUseExplosion.rb:20:3051:20:3056 | call to use | self |
+| UseUseExplosion.rb:20:3055:20:3055 | x | UseUseExplosion.rb:20:3051:20:3056 | call to use | position 0 |
+| UseUseExplosion.rb:20:3067:20:3072 | self | UseUseExplosion.rb:20:3067:20:3072 | call to use | self |
+| UseUseExplosion.rb:20:3071:20:3071 | x | UseUseExplosion.rb:20:3067:20:3072 | call to use | position 0 |
+| UseUseExplosion.rb:20:3083:20:3088 | self | UseUseExplosion.rb:20:3083:20:3088 | call to use | self |
+| UseUseExplosion.rb:20:3087:20:3087 | x | UseUseExplosion.rb:20:3083:20:3088 | call to use | position 0 |
+| UseUseExplosion.rb:20:3099:20:3104 | self | UseUseExplosion.rb:20:3099:20:3104 | call to use | self |
+| UseUseExplosion.rb:20:3103:20:3103 | x | UseUseExplosion.rb:20:3099:20:3104 | call to use | position 0 |
+| UseUseExplosion.rb:20:3115:20:3120 | self | UseUseExplosion.rb:20:3115:20:3120 | call to use | self |
+| UseUseExplosion.rb:20:3119:20:3119 | x | UseUseExplosion.rb:20:3115:20:3120 | call to use | position 0 |
+| UseUseExplosion.rb:20:3131:20:3136 | self | UseUseExplosion.rb:20:3131:20:3136 | call to use | self |
+| UseUseExplosion.rb:20:3135:20:3135 | x | UseUseExplosion.rb:20:3131:20:3136 | call to use | position 0 |
+| UseUseExplosion.rb:20:3147:20:3152 | self | UseUseExplosion.rb:20:3147:20:3152 | call to use | self |
+| UseUseExplosion.rb:20:3151:20:3151 | x | UseUseExplosion.rb:20:3147:20:3152 | call to use | position 0 |
+| UseUseExplosion.rb:20:3163:20:3168 | self | UseUseExplosion.rb:20:3163:20:3168 | call to use | self |
+| UseUseExplosion.rb:20:3167:20:3167 | x | UseUseExplosion.rb:20:3163:20:3168 | call to use | position 0 |
+| UseUseExplosion.rb:20:3179:20:3184 | self | UseUseExplosion.rb:20:3179:20:3184 | call to use | self |
+| UseUseExplosion.rb:20:3183:20:3183 | x | UseUseExplosion.rb:20:3179:20:3184 | call to use | position 0 |
+| UseUseExplosion.rb:20:3195:20:3200 | self | UseUseExplosion.rb:20:3195:20:3200 | call to use | self |
+| UseUseExplosion.rb:20:3199:20:3199 | x | UseUseExplosion.rb:20:3195:20:3200 | call to use | position 0 |
+| UseUseExplosion.rb:20:3211:20:3216 | self | UseUseExplosion.rb:20:3211:20:3216 | call to use | self |
+| UseUseExplosion.rb:20:3215:20:3215 | x | UseUseExplosion.rb:20:3211:20:3216 | call to use | position 0 |
+| UseUseExplosion.rb:20:3227:20:3232 | self | UseUseExplosion.rb:20:3227:20:3232 | call to use | self |
+| UseUseExplosion.rb:20:3231:20:3231 | x | UseUseExplosion.rb:20:3227:20:3232 | call to use | position 0 |
+| UseUseExplosion.rb:20:3243:20:3248 | self | UseUseExplosion.rb:20:3243:20:3248 | call to use | self |
+| UseUseExplosion.rb:20:3247:20:3247 | x | UseUseExplosion.rb:20:3243:20:3248 | call to use | position 0 |
+| UseUseExplosion.rb:20:3259:20:3264 | self | UseUseExplosion.rb:20:3259:20:3264 | call to use | self |
+| UseUseExplosion.rb:20:3263:20:3263 | x | UseUseExplosion.rb:20:3259:20:3264 | call to use | position 0 |
+| UseUseExplosion.rb:20:3275:20:3280 | self | UseUseExplosion.rb:20:3275:20:3280 | call to use | self |
+| UseUseExplosion.rb:20:3279:20:3279 | x | UseUseExplosion.rb:20:3275:20:3280 | call to use | position 0 |
+| UseUseExplosion.rb:20:3291:20:3296 | self | UseUseExplosion.rb:20:3291:20:3296 | call to use | self |
+| UseUseExplosion.rb:20:3295:20:3295 | x | UseUseExplosion.rb:20:3291:20:3296 | call to use | position 0 |
+| UseUseExplosion.rb:20:3307:20:3312 | self | UseUseExplosion.rb:20:3307:20:3312 | call to use | self |
+| UseUseExplosion.rb:20:3311:20:3311 | x | UseUseExplosion.rb:20:3307:20:3312 | call to use | position 0 |
+| UseUseExplosion.rb:20:3323:20:3328 | self | UseUseExplosion.rb:20:3323:20:3328 | call to use | self |
+| UseUseExplosion.rb:20:3327:20:3327 | x | UseUseExplosion.rb:20:3323:20:3328 | call to use | position 0 |
+| UseUseExplosion.rb:20:3339:20:3344 | self | UseUseExplosion.rb:20:3339:20:3344 | call to use | self |
+| UseUseExplosion.rb:20:3343:20:3343 | x | UseUseExplosion.rb:20:3339:20:3344 | call to use | position 0 |
+| UseUseExplosion.rb:20:3355:20:3360 | self | UseUseExplosion.rb:20:3355:20:3360 | call to use | self |
+| UseUseExplosion.rb:20:3359:20:3359 | x | UseUseExplosion.rb:20:3355:20:3360 | call to use | position 0 |
+| UseUseExplosion.rb:20:3371:20:3376 | self | UseUseExplosion.rb:20:3371:20:3376 | call to use | self |
+| UseUseExplosion.rb:20:3375:20:3375 | x | UseUseExplosion.rb:20:3371:20:3376 | call to use | position 0 |
+| UseUseExplosion.rb:20:3387:20:3392 | self | UseUseExplosion.rb:20:3387:20:3392 | call to use | self |
+| UseUseExplosion.rb:20:3391:20:3391 | x | UseUseExplosion.rb:20:3387:20:3392 | call to use | position 0 |
+| UseUseExplosion.rb:20:3403:20:3408 | self | UseUseExplosion.rb:20:3403:20:3408 | call to use | self |
+| UseUseExplosion.rb:20:3407:20:3407 | x | UseUseExplosion.rb:20:3403:20:3408 | call to use | position 0 |
+| UseUseExplosion.rb:20:3419:20:3424 | self | UseUseExplosion.rb:20:3419:20:3424 | call to use | self |
+| UseUseExplosion.rb:20:3423:20:3423 | x | UseUseExplosion.rb:20:3419:20:3424 | call to use | position 0 |
+| UseUseExplosion.rb:20:3435:20:3440 | self | UseUseExplosion.rb:20:3435:20:3440 | call to use | self |
+| UseUseExplosion.rb:20:3439:20:3439 | x | UseUseExplosion.rb:20:3435:20:3440 | call to use | position 0 |
+| UseUseExplosion.rb:20:3451:20:3456 | self | UseUseExplosion.rb:20:3451:20:3456 | call to use | self |
+| UseUseExplosion.rb:20:3455:20:3455 | x | UseUseExplosion.rb:20:3451:20:3456 | call to use | position 0 |
+| UseUseExplosion.rb:20:3467:20:3472 | self | UseUseExplosion.rb:20:3467:20:3472 | call to use | self |
+| UseUseExplosion.rb:20:3471:20:3471 | x | UseUseExplosion.rb:20:3467:20:3472 | call to use | position 0 |
+| UseUseExplosion.rb:20:3483:20:3488 | self | UseUseExplosion.rb:20:3483:20:3488 | call to use | self |
+| UseUseExplosion.rb:20:3487:20:3487 | x | UseUseExplosion.rb:20:3483:20:3488 | call to use | position 0 |
+| UseUseExplosion.rb:20:3499:20:3504 | self | UseUseExplosion.rb:20:3499:20:3504 | call to use | self |
+| UseUseExplosion.rb:20:3503:20:3503 | x | UseUseExplosion.rb:20:3499:20:3504 | call to use | position 0 |
+| UseUseExplosion.rb:20:3515:20:3520 | self | UseUseExplosion.rb:20:3515:20:3520 | call to use | self |
+| UseUseExplosion.rb:20:3519:20:3519 | x | UseUseExplosion.rb:20:3515:20:3520 | call to use | position 0 |
+| UseUseExplosion.rb:20:3531:20:3536 | self | UseUseExplosion.rb:20:3531:20:3536 | call to use | self |
+| UseUseExplosion.rb:20:3535:20:3535 | x | UseUseExplosion.rb:20:3531:20:3536 | call to use | position 0 |
+| UseUseExplosion.rb:20:3547:20:3552 | self | UseUseExplosion.rb:20:3547:20:3552 | call to use | self |
+| UseUseExplosion.rb:20:3551:20:3551 | x | UseUseExplosion.rb:20:3547:20:3552 | call to use | position 0 |
+| UseUseExplosion.rb:20:3563:20:3568 | self | UseUseExplosion.rb:20:3563:20:3568 | call to use | self |
+| UseUseExplosion.rb:20:3567:20:3567 | x | UseUseExplosion.rb:20:3563:20:3568 | call to use | position 0 |
+| UseUseExplosion.rb:20:3579:20:3584 | self | UseUseExplosion.rb:20:3579:20:3584 | call to use | self |
+| UseUseExplosion.rb:20:3583:20:3583 | x | UseUseExplosion.rb:20:3579:20:3584 | call to use | position 0 |
+| UseUseExplosion.rb:20:3595:20:3600 | self | UseUseExplosion.rb:20:3595:20:3600 | call to use | self |
+| UseUseExplosion.rb:20:3599:20:3599 | x | UseUseExplosion.rb:20:3595:20:3600 | call to use | position 0 |
+| UseUseExplosion.rb:20:3611:20:3616 | self | UseUseExplosion.rb:20:3611:20:3616 | call to use | self |
+| UseUseExplosion.rb:20:3615:20:3615 | x | UseUseExplosion.rb:20:3611:20:3616 | call to use | position 0 |
+| UseUseExplosion.rb:20:3627:20:3632 | self | UseUseExplosion.rb:20:3627:20:3632 | call to use | self |
+| UseUseExplosion.rb:20:3631:20:3631 | x | UseUseExplosion.rb:20:3627:20:3632 | call to use | position 0 |
+| UseUseExplosion.rb:20:3643:20:3648 | self | UseUseExplosion.rb:20:3643:20:3648 | call to use | self |
+| UseUseExplosion.rb:20:3647:20:3647 | x | UseUseExplosion.rb:20:3643:20:3648 | call to use | position 0 |
+| UseUseExplosion.rb:20:3659:20:3664 | self | UseUseExplosion.rb:20:3659:20:3664 | call to use | self |
+| UseUseExplosion.rb:20:3663:20:3663 | x | UseUseExplosion.rb:20:3659:20:3664 | call to use | position 0 |
+| UseUseExplosion.rb:20:3675:20:3680 | self | UseUseExplosion.rb:20:3675:20:3680 | call to use | self |
+| UseUseExplosion.rb:20:3679:20:3679 | x | UseUseExplosion.rb:20:3675:20:3680 | call to use | position 0 |
+| UseUseExplosion.rb:20:3691:20:3696 | self | UseUseExplosion.rb:20:3691:20:3696 | call to use | self |
+| UseUseExplosion.rb:20:3695:20:3695 | x | UseUseExplosion.rb:20:3691:20:3696 | call to use | position 0 |
+| UseUseExplosion.rb:21:13:21:17 | @prop | UseUseExplosion.rb:21:13:21:23 | ... > ... | self |
+| UseUseExplosion.rb:21:21:21:23 | 100 | UseUseExplosion.rb:21:13:21:23 | ... > ... | position 0 |
+| UseUseExplosion.rb:21:35:21:39 | @prop | UseUseExplosion.rb:21:35:21:44 | ... > ... | self |
+| UseUseExplosion.rb:21:43:21:44 | 99 | UseUseExplosion.rb:21:35:21:44 | ... > ... | position 0 |
+| UseUseExplosion.rb:21:56:21:60 | @prop | UseUseExplosion.rb:21:56:21:65 | ... > ... | self |
+| UseUseExplosion.rb:21:64:21:65 | 98 | UseUseExplosion.rb:21:56:21:65 | ... > ... | position 0 |
+| UseUseExplosion.rb:21:77:21:81 | @prop | UseUseExplosion.rb:21:77:21:86 | ... > ... | self |
+| UseUseExplosion.rb:21:85:21:86 | 97 | UseUseExplosion.rb:21:77:21:86 | ... > ... | position 0 |
+| UseUseExplosion.rb:21:98:21:102 | @prop | UseUseExplosion.rb:21:98:21:107 | ... > ... | self |
+| UseUseExplosion.rb:21:106:21:107 | 96 | UseUseExplosion.rb:21:98:21:107 | ... > ... | position 0 |
+| UseUseExplosion.rb:21:119:21:123 | @prop | UseUseExplosion.rb:21:119:21:128 | ... > ... | self |
+| UseUseExplosion.rb:21:127:21:128 | 95 | UseUseExplosion.rb:21:119:21:128 | ... > ... | position 0 |
+| UseUseExplosion.rb:21:140:21:144 | @prop | UseUseExplosion.rb:21:140:21:149 | ... > ... | self |
+| UseUseExplosion.rb:21:148:21:149 | 94 | UseUseExplosion.rb:21:140:21:149 | ... > ... | position 0 |
+| UseUseExplosion.rb:21:161:21:165 | @prop | UseUseExplosion.rb:21:161:21:170 | ... > ... | self |
+| UseUseExplosion.rb:21:169:21:170 | 93 | UseUseExplosion.rb:21:161:21:170 | ... > ... | position 0 |
+| UseUseExplosion.rb:21:182:21:186 | @prop | UseUseExplosion.rb:21:182:21:191 | ... > ... | self |
+| UseUseExplosion.rb:21:190:21:191 | 92 | UseUseExplosion.rb:21:182:21:191 | ... > ... | position 0 |
+| UseUseExplosion.rb:21:203:21:207 | @prop | UseUseExplosion.rb:21:203:21:212 | ... > ... | self |
+| UseUseExplosion.rb:21:211:21:212 | 91 | UseUseExplosion.rb:21:203:21:212 | ... > ... | position 0 |
+| UseUseExplosion.rb:21:224:21:228 | @prop | UseUseExplosion.rb:21:224:21:233 | ... > ... | self |
+| UseUseExplosion.rb:21:232:21:233 | 90 | UseUseExplosion.rb:21:224:21:233 | ... > ... | position 0 |
+| UseUseExplosion.rb:21:245:21:249 | @prop | UseUseExplosion.rb:21:245:21:254 | ... > ... | self |
+| UseUseExplosion.rb:21:253:21:254 | 89 | UseUseExplosion.rb:21:245:21:254 | ... > ... | position 0 |
+| UseUseExplosion.rb:21:266:21:270 | @prop | UseUseExplosion.rb:21:266:21:275 | ... > ... | self |
+| UseUseExplosion.rb:21:274:21:275 | 88 | UseUseExplosion.rb:21:266:21:275 | ... > ... | position 0 |
+| UseUseExplosion.rb:21:287:21:291 | @prop | UseUseExplosion.rb:21:287:21:296 | ... > ... | self |
+| UseUseExplosion.rb:21:295:21:296 | 87 | UseUseExplosion.rb:21:287:21:296 | ... > ... | position 0 |
+| UseUseExplosion.rb:21:308:21:312 | @prop | UseUseExplosion.rb:21:308:21:317 | ... > ... | self |
+| UseUseExplosion.rb:21:316:21:317 | 86 | UseUseExplosion.rb:21:308:21:317 | ... > ... | position 0 |
+| UseUseExplosion.rb:21:329:21:333 | @prop | UseUseExplosion.rb:21:329:21:338 | ... > ... | self |
+| UseUseExplosion.rb:21:337:21:338 | 85 | UseUseExplosion.rb:21:329:21:338 | ... > ... | position 0 |
+| UseUseExplosion.rb:21:350:21:354 | @prop | UseUseExplosion.rb:21:350:21:359 | ... > ... | self |
+| UseUseExplosion.rb:21:358:21:359 | 84 | UseUseExplosion.rb:21:350:21:359 | ... > ... | position 0 |
+| UseUseExplosion.rb:21:371:21:375 | @prop | UseUseExplosion.rb:21:371:21:380 | ... > ... | self |
+| UseUseExplosion.rb:21:379:21:380 | 83 | UseUseExplosion.rb:21:371:21:380 | ... > ... | position 0 |
+| UseUseExplosion.rb:21:392:21:396 | @prop | UseUseExplosion.rb:21:392:21:401 | ... > ... | self |
+| UseUseExplosion.rb:21:400:21:401 | 82 | UseUseExplosion.rb:21:392:21:401 | ... > ... | position 0 |
+| UseUseExplosion.rb:21:413:21:417 | @prop | UseUseExplosion.rb:21:413:21:422 | ... > ... | self |
+| UseUseExplosion.rb:21:421:21:422 | 81 | UseUseExplosion.rb:21:413:21:422 | ... > ... | position 0 |
+| UseUseExplosion.rb:21:434:21:438 | @prop | UseUseExplosion.rb:21:434:21:443 | ... > ... | self |
+| UseUseExplosion.rb:21:442:21:443 | 80 | UseUseExplosion.rb:21:434:21:443 | ... > ... | position 0 |
+| UseUseExplosion.rb:21:455:21:459 | @prop | UseUseExplosion.rb:21:455:21:464 | ... > ... | self |
+| UseUseExplosion.rb:21:463:21:464 | 79 | UseUseExplosion.rb:21:455:21:464 | ... > ... | position 0 |
+| UseUseExplosion.rb:21:476:21:480 | @prop | UseUseExplosion.rb:21:476:21:485 | ... > ... | self |
+| UseUseExplosion.rb:21:484:21:485 | 78 | UseUseExplosion.rb:21:476:21:485 | ... > ... | position 0 |
+| UseUseExplosion.rb:21:497:21:501 | @prop | UseUseExplosion.rb:21:497:21:506 | ... > ... | self |
+| UseUseExplosion.rb:21:505:21:506 | 77 | UseUseExplosion.rb:21:497:21:506 | ... > ... | position 0 |
+| UseUseExplosion.rb:21:518:21:522 | @prop | UseUseExplosion.rb:21:518:21:527 | ... > ... | self |
+| UseUseExplosion.rb:21:526:21:527 | 76 | UseUseExplosion.rb:21:518:21:527 | ... > ... | position 0 |
+| UseUseExplosion.rb:21:539:21:543 | @prop | UseUseExplosion.rb:21:539:21:548 | ... > ... | self |
+| UseUseExplosion.rb:21:547:21:548 | 75 | UseUseExplosion.rb:21:539:21:548 | ... > ... | position 0 |
+| UseUseExplosion.rb:21:560:21:564 | @prop | UseUseExplosion.rb:21:560:21:569 | ... > ... | self |
+| UseUseExplosion.rb:21:568:21:569 | 74 | UseUseExplosion.rb:21:560:21:569 | ... > ... | position 0 |
+| UseUseExplosion.rb:21:581:21:585 | @prop | UseUseExplosion.rb:21:581:21:590 | ... > ... | self |
+| UseUseExplosion.rb:21:589:21:590 | 73 | UseUseExplosion.rb:21:581:21:590 | ... > ... | position 0 |
+| UseUseExplosion.rb:21:602:21:606 | @prop | UseUseExplosion.rb:21:602:21:611 | ... > ... | self |
+| UseUseExplosion.rb:21:610:21:611 | 72 | UseUseExplosion.rb:21:602:21:611 | ... > ... | position 0 |
+| UseUseExplosion.rb:21:623:21:627 | @prop | UseUseExplosion.rb:21:623:21:632 | ... > ... | self |
+| UseUseExplosion.rb:21:631:21:632 | 71 | UseUseExplosion.rb:21:623:21:632 | ... > ... | position 0 |
+| UseUseExplosion.rb:21:644:21:648 | @prop | UseUseExplosion.rb:21:644:21:653 | ... > ... | self |
+| UseUseExplosion.rb:21:652:21:653 | 70 | UseUseExplosion.rb:21:644:21:653 | ... > ... | position 0 |
+| UseUseExplosion.rb:21:665:21:669 | @prop | UseUseExplosion.rb:21:665:21:674 | ... > ... | self |
+| UseUseExplosion.rb:21:673:21:674 | 69 | UseUseExplosion.rb:21:665:21:674 | ... > ... | position 0 |
+| UseUseExplosion.rb:21:686:21:690 | @prop | UseUseExplosion.rb:21:686:21:695 | ... > ... | self |
+| UseUseExplosion.rb:21:694:21:695 | 68 | UseUseExplosion.rb:21:686:21:695 | ... > ... | position 0 |
+| UseUseExplosion.rb:21:707:21:711 | @prop | UseUseExplosion.rb:21:707:21:716 | ... > ... | self |
+| UseUseExplosion.rb:21:715:21:716 | 67 | UseUseExplosion.rb:21:707:21:716 | ... > ... | position 0 |
+| UseUseExplosion.rb:21:728:21:732 | @prop | UseUseExplosion.rb:21:728:21:737 | ... > ... | self |
+| UseUseExplosion.rb:21:736:21:737 | 66 | UseUseExplosion.rb:21:728:21:737 | ... > ... | position 0 |
+| UseUseExplosion.rb:21:749:21:753 | @prop | UseUseExplosion.rb:21:749:21:758 | ... > ... | self |
+| UseUseExplosion.rb:21:757:21:758 | 65 | UseUseExplosion.rb:21:749:21:758 | ... > ... | position 0 |
+| UseUseExplosion.rb:21:770:21:774 | @prop | UseUseExplosion.rb:21:770:21:779 | ... > ... | self |
+| UseUseExplosion.rb:21:778:21:779 | 64 | UseUseExplosion.rb:21:770:21:779 | ... > ... | position 0 |
+| UseUseExplosion.rb:21:791:21:795 | @prop | UseUseExplosion.rb:21:791:21:800 | ... > ... | self |
+| UseUseExplosion.rb:21:799:21:800 | 63 | UseUseExplosion.rb:21:791:21:800 | ... > ... | position 0 |
+| UseUseExplosion.rb:21:812:21:816 | @prop | UseUseExplosion.rb:21:812:21:821 | ... > ... | self |
+| UseUseExplosion.rb:21:820:21:821 | 62 | UseUseExplosion.rb:21:812:21:821 | ... > ... | position 0 |
+| UseUseExplosion.rb:21:833:21:837 | @prop | UseUseExplosion.rb:21:833:21:842 | ... > ... | self |
+| UseUseExplosion.rb:21:841:21:842 | 61 | UseUseExplosion.rb:21:833:21:842 | ... > ... | position 0 |
+| UseUseExplosion.rb:21:854:21:858 | @prop | UseUseExplosion.rb:21:854:21:863 | ... > ... | self |
+| UseUseExplosion.rb:21:862:21:863 | 60 | UseUseExplosion.rb:21:854:21:863 | ... > ... | position 0 |
+| UseUseExplosion.rb:21:875:21:879 | @prop | UseUseExplosion.rb:21:875:21:884 | ... > ... | self |
+| UseUseExplosion.rb:21:883:21:884 | 59 | UseUseExplosion.rb:21:875:21:884 | ... > ... | position 0 |
+| UseUseExplosion.rb:21:896:21:900 | @prop | UseUseExplosion.rb:21:896:21:905 | ... > ... | self |
+| UseUseExplosion.rb:21:904:21:905 | 58 | UseUseExplosion.rb:21:896:21:905 | ... > ... | position 0 |
+| UseUseExplosion.rb:21:917:21:921 | @prop | UseUseExplosion.rb:21:917:21:926 | ... > ... | self |
+| UseUseExplosion.rb:21:925:21:926 | 57 | UseUseExplosion.rb:21:917:21:926 | ... > ... | position 0 |
+| UseUseExplosion.rb:21:938:21:942 | @prop | UseUseExplosion.rb:21:938:21:947 | ... > ... | self |
+| UseUseExplosion.rb:21:946:21:947 | 56 | UseUseExplosion.rb:21:938:21:947 | ... > ... | position 0 |
+| UseUseExplosion.rb:21:959:21:963 | @prop | UseUseExplosion.rb:21:959:21:968 | ... > ... | self |
+| UseUseExplosion.rb:21:967:21:968 | 55 | UseUseExplosion.rb:21:959:21:968 | ... > ... | position 0 |
+| UseUseExplosion.rb:21:980:21:984 | @prop | UseUseExplosion.rb:21:980:21:989 | ... > ... | self |
+| UseUseExplosion.rb:21:988:21:989 | 54 | UseUseExplosion.rb:21:980:21:989 | ... > ... | position 0 |
+| UseUseExplosion.rb:21:1001:21:1005 | @prop | UseUseExplosion.rb:21:1001:21:1010 | ... > ... | self |
+| UseUseExplosion.rb:21:1009:21:1010 | 53 | UseUseExplosion.rb:21:1001:21:1010 | ... > ... | position 0 |
+| UseUseExplosion.rb:21:1022:21:1026 | @prop | UseUseExplosion.rb:21:1022:21:1031 | ... > ... | self |
+| UseUseExplosion.rb:21:1030:21:1031 | 52 | UseUseExplosion.rb:21:1022:21:1031 | ... > ... | position 0 |
+| UseUseExplosion.rb:21:1043:21:1047 | @prop | UseUseExplosion.rb:21:1043:21:1052 | ... > ... | self |
+| UseUseExplosion.rb:21:1051:21:1052 | 51 | UseUseExplosion.rb:21:1043:21:1052 | ... > ... | position 0 |
+| UseUseExplosion.rb:21:1064:21:1068 | @prop | UseUseExplosion.rb:21:1064:21:1073 | ... > ... | self |
+| UseUseExplosion.rb:21:1072:21:1073 | 50 | UseUseExplosion.rb:21:1064:21:1073 | ... > ... | position 0 |
+| UseUseExplosion.rb:21:1085:21:1089 | @prop | UseUseExplosion.rb:21:1085:21:1094 | ... > ... | self |
+| UseUseExplosion.rb:21:1093:21:1094 | 49 | UseUseExplosion.rb:21:1085:21:1094 | ... > ... | position 0 |
+| UseUseExplosion.rb:21:1106:21:1110 | @prop | UseUseExplosion.rb:21:1106:21:1115 | ... > ... | self |
+| UseUseExplosion.rb:21:1114:21:1115 | 48 | UseUseExplosion.rb:21:1106:21:1115 | ... > ... | position 0 |
+| UseUseExplosion.rb:21:1127:21:1131 | @prop | UseUseExplosion.rb:21:1127:21:1136 | ... > ... | self |
+| UseUseExplosion.rb:21:1135:21:1136 | 47 | UseUseExplosion.rb:21:1127:21:1136 | ... > ... | position 0 |
+| UseUseExplosion.rb:21:1148:21:1152 | @prop | UseUseExplosion.rb:21:1148:21:1157 | ... > ... | self |
+| UseUseExplosion.rb:21:1156:21:1157 | 46 | UseUseExplosion.rb:21:1148:21:1157 | ... > ... | position 0 |
+| UseUseExplosion.rb:21:1169:21:1173 | @prop | UseUseExplosion.rb:21:1169:21:1178 | ... > ... | self |
+| UseUseExplosion.rb:21:1177:21:1178 | 45 | UseUseExplosion.rb:21:1169:21:1178 | ... > ... | position 0 |
+| UseUseExplosion.rb:21:1190:21:1194 | @prop | UseUseExplosion.rb:21:1190:21:1199 | ... > ... | self |
+| UseUseExplosion.rb:21:1198:21:1199 | 44 | UseUseExplosion.rb:21:1190:21:1199 | ... > ... | position 0 |
+| UseUseExplosion.rb:21:1211:21:1215 | @prop | UseUseExplosion.rb:21:1211:21:1220 | ... > ... | self |
+| UseUseExplosion.rb:21:1219:21:1220 | 43 | UseUseExplosion.rb:21:1211:21:1220 | ... > ... | position 0 |
+| UseUseExplosion.rb:21:1232:21:1236 | @prop | UseUseExplosion.rb:21:1232:21:1241 | ... > ... | self |
+| UseUseExplosion.rb:21:1240:21:1241 | 42 | UseUseExplosion.rb:21:1232:21:1241 | ... > ... | position 0 |
+| UseUseExplosion.rb:21:1253:21:1257 | @prop | UseUseExplosion.rb:21:1253:21:1262 | ... > ... | self |
+| UseUseExplosion.rb:21:1261:21:1262 | 41 | UseUseExplosion.rb:21:1253:21:1262 | ... > ... | position 0 |
+| UseUseExplosion.rb:21:1274:21:1278 | @prop | UseUseExplosion.rb:21:1274:21:1283 | ... > ... | self |
+| UseUseExplosion.rb:21:1282:21:1283 | 40 | UseUseExplosion.rb:21:1274:21:1283 | ... > ... | position 0 |
+| UseUseExplosion.rb:21:1295:21:1299 | @prop | UseUseExplosion.rb:21:1295:21:1304 | ... > ... | self |
+| UseUseExplosion.rb:21:1303:21:1304 | 39 | UseUseExplosion.rb:21:1295:21:1304 | ... > ... | position 0 |
+| UseUseExplosion.rb:21:1316:21:1320 | @prop | UseUseExplosion.rb:21:1316:21:1325 | ... > ... | self |
+| UseUseExplosion.rb:21:1324:21:1325 | 38 | UseUseExplosion.rb:21:1316:21:1325 | ... > ... | position 0 |
+| UseUseExplosion.rb:21:1337:21:1341 | @prop | UseUseExplosion.rb:21:1337:21:1346 | ... > ... | self |
+| UseUseExplosion.rb:21:1345:21:1346 | 37 | UseUseExplosion.rb:21:1337:21:1346 | ... > ... | position 0 |
+| UseUseExplosion.rb:21:1358:21:1362 | @prop | UseUseExplosion.rb:21:1358:21:1367 | ... > ... | self |
+| UseUseExplosion.rb:21:1366:21:1367 | 36 | UseUseExplosion.rb:21:1358:21:1367 | ... > ... | position 0 |
+| UseUseExplosion.rb:21:1379:21:1383 | @prop | UseUseExplosion.rb:21:1379:21:1388 | ... > ... | self |
+| UseUseExplosion.rb:21:1387:21:1388 | 35 | UseUseExplosion.rb:21:1379:21:1388 | ... > ... | position 0 |
+| UseUseExplosion.rb:21:1400:21:1404 | @prop | UseUseExplosion.rb:21:1400:21:1409 | ... > ... | self |
+| UseUseExplosion.rb:21:1408:21:1409 | 34 | UseUseExplosion.rb:21:1400:21:1409 | ... > ... | position 0 |
+| UseUseExplosion.rb:21:1421:21:1425 | @prop | UseUseExplosion.rb:21:1421:21:1430 | ... > ... | self |
+| UseUseExplosion.rb:21:1429:21:1430 | 33 | UseUseExplosion.rb:21:1421:21:1430 | ... > ... | position 0 |
+| UseUseExplosion.rb:21:1442:21:1446 | @prop | UseUseExplosion.rb:21:1442:21:1451 | ... > ... | self |
+| UseUseExplosion.rb:21:1450:21:1451 | 32 | UseUseExplosion.rb:21:1442:21:1451 | ... > ... | position 0 |
+| UseUseExplosion.rb:21:1463:21:1467 | @prop | UseUseExplosion.rb:21:1463:21:1472 | ... > ... | self |
+| UseUseExplosion.rb:21:1471:21:1472 | 31 | UseUseExplosion.rb:21:1463:21:1472 | ... > ... | position 0 |
+| UseUseExplosion.rb:21:1484:21:1488 | @prop | UseUseExplosion.rb:21:1484:21:1493 | ... > ... | self |
+| UseUseExplosion.rb:21:1492:21:1493 | 30 | UseUseExplosion.rb:21:1484:21:1493 | ... > ... | position 0 |
+| UseUseExplosion.rb:21:1505:21:1509 | @prop | UseUseExplosion.rb:21:1505:21:1514 | ... > ... | self |
+| UseUseExplosion.rb:21:1513:21:1514 | 29 | UseUseExplosion.rb:21:1505:21:1514 | ... > ... | position 0 |
+| UseUseExplosion.rb:21:1526:21:1530 | @prop | UseUseExplosion.rb:21:1526:21:1535 | ... > ... | self |
+| UseUseExplosion.rb:21:1534:21:1535 | 28 | UseUseExplosion.rb:21:1526:21:1535 | ... > ... | position 0 |
+| UseUseExplosion.rb:21:1547:21:1551 | @prop | UseUseExplosion.rb:21:1547:21:1556 | ... > ... | self |
+| UseUseExplosion.rb:21:1555:21:1556 | 27 | UseUseExplosion.rb:21:1547:21:1556 | ... > ... | position 0 |
+| UseUseExplosion.rb:21:1568:21:1572 | @prop | UseUseExplosion.rb:21:1568:21:1577 | ... > ... | self |
+| UseUseExplosion.rb:21:1576:21:1577 | 26 | UseUseExplosion.rb:21:1568:21:1577 | ... > ... | position 0 |
+| UseUseExplosion.rb:21:1589:21:1593 | @prop | UseUseExplosion.rb:21:1589:21:1598 | ... > ... | self |
+| UseUseExplosion.rb:21:1597:21:1598 | 25 | UseUseExplosion.rb:21:1589:21:1598 | ... > ... | position 0 |
+| UseUseExplosion.rb:21:1610:21:1614 | @prop | UseUseExplosion.rb:21:1610:21:1619 | ... > ... | self |
+| UseUseExplosion.rb:21:1618:21:1619 | 24 | UseUseExplosion.rb:21:1610:21:1619 | ... > ... | position 0 |
+| UseUseExplosion.rb:21:1631:21:1635 | @prop | UseUseExplosion.rb:21:1631:21:1640 | ... > ... | self |
+| UseUseExplosion.rb:21:1639:21:1640 | 23 | UseUseExplosion.rb:21:1631:21:1640 | ... > ... | position 0 |
+| UseUseExplosion.rb:21:1652:21:1656 | @prop | UseUseExplosion.rb:21:1652:21:1661 | ... > ... | self |
+| UseUseExplosion.rb:21:1660:21:1661 | 22 | UseUseExplosion.rb:21:1652:21:1661 | ... > ... | position 0 |
+| UseUseExplosion.rb:21:1673:21:1677 | @prop | UseUseExplosion.rb:21:1673:21:1682 | ... > ... | self |
+| UseUseExplosion.rb:21:1681:21:1682 | 21 | UseUseExplosion.rb:21:1673:21:1682 | ... > ... | position 0 |
+| UseUseExplosion.rb:21:1694:21:1698 | @prop | UseUseExplosion.rb:21:1694:21:1703 | ... > ... | self |
+| UseUseExplosion.rb:21:1702:21:1703 | 20 | UseUseExplosion.rb:21:1694:21:1703 | ... > ... | position 0 |
+| UseUseExplosion.rb:21:1715:21:1719 | @prop | UseUseExplosion.rb:21:1715:21:1724 | ... > ... | self |
+| UseUseExplosion.rb:21:1723:21:1724 | 19 | UseUseExplosion.rb:21:1715:21:1724 | ... > ... | position 0 |
+| UseUseExplosion.rb:21:1736:21:1740 | @prop | UseUseExplosion.rb:21:1736:21:1745 | ... > ... | self |
+| UseUseExplosion.rb:21:1744:21:1745 | 18 | UseUseExplosion.rb:21:1736:21:1745 | ... > ... | position 0 |
+| UseUseExplosion.rb:21:1757:21:1761 | @prop | UseUseExplosion.rb:21:1757:21:1766 | ... > ... | self |
+| UseUseExplosion.rb:21:1765:21:1766 | 17 | UseUseExplosion.rb:21:1757:21:1766 | ... > ... | position 0 |
+| UseUseExplosion.rb:21:1778:21:1782 | @prop | UseUseExplosion.rb:21:1778:21:1787 | ... > ... | self |
+| UseUseExplosion.rb:21:1786:21:1787 | 16 | UseUseExplosion.rb:21:1778:21:1787 | ... > ... | position 0 |
+| UseUseExplosion.rb:21:1799:21:1803 | @prop | UseUseExplosion.rb:21:1799:21:1808 | ... > ... | self |
+| UseUseExplosion.rb:21:1807:21:1808 | 15 | UseUseExplosion.rb:21:1799:21:1808 | ... > ... | position 0 |
+| UseUseExplosion.rb:21:1820:21:1824 | @prop | UseUseExplosion.rb:21:1820:21:1829 | ... > ... | self |
+| UseUseExplosion.rb:21:1828:21:1829 | 14 | UseUseExplosion.rb:21:1820:21:1829 | ... > ... | position 0 |
+| UseUseExplosion.rb:21:1841:21:1845 | @prop | UseUseExplosion.rb:21:1841:21:1850 | ... > ... | self |
+| UseUseExplosion.rb:21:1849:21:1850 | 13 | UseUseExplosion.rb:21:1841:21:1850 | ... > ... | position 0 |
+| UseUseExplosion.rb:21:1862:21:1866 | @prop | UseUseExplosion.rb:21:1862:21:1871 | ... > ... | self |
+| UseUseExplosion.rb:21:1870:21:1871 | 12 | UseUseExplosion.rb:21:1862:21:1871 | ... > ... | position 0 |
+| UseUseExplosion.rb:21:1883:21:1887 | @prop | UseUseExplosion.rb:21:1883:21:1892 | ... > ... | self |
+| UseUseExplosion.rb:21:1891:21:1892 | 11 | UseUseExplosion.rb:21:1883:21:1892 | ... > ... | position 0 |
+| UseUseExplosion.rb:21:1904:21:1908 | @prop | UseUseExplosion.rb:21:1904:21:1913 | ... > ... | self |
+| UseUseExplosion.rb:21:1912:21:1913 | 10 | UseUseExplosion.rb:21:1904:21:1913 | ... > ... | position 0 |
+| UseUseExplosion.rb:21:1925:21:1929 | @prop | UseUseExplosion.rb:21:1925:21:1933 | ... > ... | self |
+| UseUseExplosion.rb:21:1933:21:1933 | 9 | UseUseExplosion.rb:21:1925:21:1933 | ... > ... | position 0 |
+| UseUseExplosion.rb:21:1945:21:1949 | @prop | UseUseExplosion.rb:21:1945:21:1953 | ... > ... | self |
+| UseUseExplosion.rb:21:1953:21:1953 | 8 | UseUseExplosion.rb:21:1945:21:1953 | ... > ... | position 0 |
+| UseUseExplosion.rb:21:1965:21:1969 | @prop | UseUseExplosion.rb:21:1965:21:1973 | ... > ... | self |
+| UseUseExplosion.rb:21:1973:21:1973 | 7 | UseUseExplosion.rb:21:1965:21:1973 | ... > ... | position 0 |
+| UseUseExplosion.rb:21:1985:21:1989 | @prop | UseUseExplosion.rb:21:1985:21:1993 | ... > ... | self |
+| UseUseExplosion.rb:21:1993:21:1993 | 6 | UseUseExplosion.rb:21:1985:21:1993 | ... > ... | position 0 |
+| UseUseExplosion.rb:21:2005:21:2009 | @prop | UseUseExplosion.rb:21:2005:21:2013 | ... > ... | self |
+| UseUseExplosion.rb:21:2013:21:2013 | 5 | UseUseExplosion.rb:21:2005:21:2013 | ... > ... | position 0 |
+| UseUseExplosion.rb:21:2025:21:2029 | @prop | UseUseExplosion.rb:21:2025:21:2033 | ... > ... | self |
+| UseUseExplosion.rb:21:2033:21:2033 | 4 | UseUseExplosion.rb:21:2025:21:2033 | ... > ... | position 0 |
+| UseUseExplosion.rb:21:2045:21:2049 | @prop | UseUseExplosion.rb:21:2045:21:2053 | ... > ... | self |
+| UseUseExplosion.rb:21:2053:21:2053 | 3 | UseUseExplosion.rb:21:2045:21:2053 | ... > ... | position 0 |
+| UseUseExplosion.rb:21:2065:21:2069 | @prop | UseUseExplosion.rb:21:2065:21:2073 | ... > ... | self |
+| UseUseExplosion.rb:21:2073:21:2073 | 2 | UseUseExplosion.rb:21:2065:21:2073 | ... > ... | position 0 |
+| UseUseExplosion.rb:21:2085:21:2089 | @prop | UseUseExplosion.rb:21:2085:21:2093 | ... > ... | self |
+| UseUseExplosion.rb:21:2093:21:2093 | 1 | UseUseExplosion.rb:21:2085:21:2093 | ... > ... | position 0 |
+| UseUseExplosion.rb:21:2107:21:2112 | self | UseUseExplosion.rb:21:2107:21:2112 | call to use | self |
+| UseUseExplosion.rb:21:2111:21:2111 | x | UseUseExplosion.rb:21:2107:21:2112 | call to use | position 0 |
+| UseUseExplosion.rb:21:2123:21:2128 | self | UseUseExplosion.rb:21:2123:21:2128 | call to use | self |
+| UseUseExplosion.rb:21:2127:21:2127 | x | UseUseExplosion.rb:21:2123:21:2128 | call to use | position 0 |
+| UseUseExplosion.rb:21:2139:21:2144 | self | UseUseExplosion.rb:21:2139:21:2144 | call to use | self |
+| UseUseExplosion.rb:21:2143:21:2143 | x | UseUseExplosion.rb:21:2139:21:2144 | call to use | position 0 |
+| UseUseExplosion.rb:21:2155:21:2160 | self | UseUseExplosion.rb:21:2155:21:2160 | call to use | self |
+| UseUseExplosion.rb:21:2159:21:2159 | x | UseUseExplosion.rb:21:2155:21:2160 | call to use | position 0 |
+| UseUseExplosion.rb:21:2171:21:2176 | self | UseUseExplosion.rb:21:2171:21:2176 | call to use | self |
+| UseUseExplosion.rb:21:2175:21:2175 | x | UseUseExplosion.rb:21:2171:21:2176 | call to use | position 0 |
+| UseUseExplosion.rb:21:2187:21:2192 | self | UseUseExplosion.rb:21:2187:21:2192 | call to use | self |
+| UseUseExplosion.rb:21:2191:21:2191 | x | UseUseExplosion.rb:21:2187:21:2192 | call to use | position 0 |
+| UseUseExplosion.rb:21:2203:21:2208 | self | UseUseExplosion.rb:21:2203:21:2208 | call to use | self |
+| UseUseExplosion.rb:21:2207:21:2207 | x | UseUseExplosion.rb:21:2203:21:2208 | call to use | position 0 |
+| UseUseExplosion.rb:21:2219:21:2224 | self | UseUseExplosion.rb:21:2219:21:2224 | call to use | self |
+| UseUseExplosion.rb:21:2223:21:2223 | x | UseUseExplosion.rb:21:2219:21:2224 | call to use | position 0 |
+| UseUseExplosion.rb:21:2235:21:2240 | self | UseUseExplosion.rb:21:2235:21:2240 | call to use | self |
+| UseUseExplosion.rb:21:2239:21:2239 | x | UseUseExplosion.rb:21:2235:21:2240 | call to use | position 0 |
+| UseUseExplosion.rb:21:2251:21:2256 | self | UseUseExplosion.rb:21:2251:21:2256 | call to use | self |
+| UseUseExplosion.rb:21:2255:21:2255 | x | UseUseExplosion.rb:21:2251:21:2256 | call to use | position 0 |
+| UseUseExplosion.rb:21:2267:21:2272 | self | UseUseExplosion.rb:21:2267:21:2272 | call to use | self |
+| UseUseExplosion.rb:21:2271:21:2271 | x | UseUseExplosion.rb:21:2267:21:2272 | call to use | position 0 |
+| UseUseExplosion.rb:21:2283:21:2288 | self | UseUseExplosion.rb:21:2283:21:2288 | call to use | self |
+| UseUseExplosion.rb:21:2287:21:2287 | x | UseUseExplosion.rb:21:2283:21:2288 | call to use | position 0 |
+| UseUseExplosion.rb:21:2299:21:2304 | self | UseUseExplosion.rb:21:2299:21:2304 | call to use | self |
+| UseUseExplosion.rb:21:2303:21:2303 | x | UseUseExplosion.rb:21:2299:21:2304 | call to use | position 0 |
+| UseUseExplosion.rb:21:2315:21:2320 | self | UseUseExplosion.rb:21:2315:21:2320 | call to use | self |
+| UseUseExplosion.rb:21:2319:21:2319 | x | UseUseExplosion.rb:21:2315:21:2320 | call to use | position 0 |
+| UseUseExplosion.rb:21:2331:21:2336 | self | UseUseExplosion.rb:21:2331:21:2336 | call to use | self |
+| UseUseExplosion.rb:21:2335:21:2335 | x | UseUseExplosion.rb:21:2331:21:2336 | call to use | position 0 |
+| UseUseExplosion.rb:21:2347:21:2352 | self | UseUseExplosion.rb:21:2347:21:2352 | call to use | self |
+| UseUseExplosion.rb:21:2351:21:2351 | x | UseUseExplosion.rb:21:2347:21:2352 | call to use | position 0 |
+| UseUseExplosion.rb:21:2363:21:2368 | self | UseUseExplosion.rb:21:2363:21:2368 | call to use | self |
+| UseUseExplosion.rb:21:2367:21:2367 | x | UseUseExplosion.rb:21:2363:21:2368 | call to use | position 0 |
+| UseUseExplosion.rb:21:2379:21:2384 | self | UseUseExplosion.rb:21:2379:21:2384 | call to use | self |
+| UseUseExplosion.rb:21:2383:21:2383 | x | UseUseExplosion.rb:21:2379:21:2384 | call to use | position 0 |
+| UseUseExplosion.rb:21:2395:21:2400 | self | UseUseExplosion.rb:21:2395:21:2400 | call to use | self |
+| UseUseExplosion.rb:21:2399:21:2399 | x | UseUseExplosion.rb:21:2395:21:2400 | call to use | position 0 |
+| UseUseExplosion.rb:21:2411:21:2416 | self | UseUseExplosion.rb:21:2411:21:2416 | call to use | self |
+| UseUseExplosion.rb:21:2415:21:2415 | x | UseUseExplosion.rb:21:2411:21:2416 | call to use | position 0 |
+| UseUseExplosion.rb:21:2427:21:2432 | self | UseUseExplosion.rb:21:2427:21:2432 | call to use | self |
+| UseUseExplosion.rb:21:2431:21:2431 | x | UseUseExplosion.rb:21:2427:21:2432 | call to use | position 0 |
+| UseUseExplosion.rb:21:2443:21:2448 | self | UseUseExplosion.rb:21:2443:21:2448 | call to use | self |
+| UseUseExplosion.rb:21:2447:21:2447 | x | UseUseExplosion.rb:21:2443:21:2448 | call to use | position 0 |
+| UseUseExplosion.rb:21:2459:21:2464 | self | UseUseExplosion.rb:21:2459:21:2464 | call to use | self |
+| UseUseExplosion.rb:21:2463:21:2463 | x | UseUseExplosion.rb:21:2459:21:2464 | call to use | position 0 |
+| UseUseExplosion.rb:21:2475:21:2480 | self | UseUseExplosion.rb:21:2475:21:2480 | call to use | self |
+| UseUseExplosion.rb:21:2479:21:2479 | x | UseUseExplosion.rb:21:2475:21:2480 | call to use | position 0 |
+| UseUseExplosion.rb:21:2491:21:2496 | self | UseUseExplosion.rb:21:2491:21:2496 | call to use | self |
+| UseUseExplosion.rb:21:2495:21:2495 | x | UseUseExplosion.rb:21:2491:21:2496 | call to use | position 0 |
+| UseUseExplosion.rb:21:2507:21:2512 | self | UseUseExplosion.rb:21:2507:21:2512 | call to use | self |
+| UseUseExplosion.rb:21:2511:21:2511 | x | UseUseExplosion.rb:21:2507:21:2512 | call to use | position 0 |
+| UseUseExplosion.rb:21:2523:21:2528 | self | UseUseExplosion.rb:21:2523:21:2528 | call to use | self |
+| UseUseExplosion.rb:21:2527:21:2527 | x | UseUseExplosion.rb:21:2523:21:2528 | call to use | position 0 |
+| UseUseExplosion.rb:21:2539:21:2544 | self | UseUseExplosion.rb:21:2539:21:2544 | call to use | self |
+| UseUseExplosion.rb:21:2543:21:2543 | x | UseUseExplosion.rb:21:2539:21:2544 | call to use | position 0 |
+| UseUseExplosion.rb:21:2555:21:2560 | self | UseUseExplosion.rb:21:2555:21:2560 | call to use | self |
+| UseUseExplosion.rb:21:2559:21:2559 | x | UseUseExplosion.rb:21:2555:21:2560 | call to use | position 0 |
+| UseUseExplosion.rb:21:2571:21:2576 | self | UseUseExplosion.rb:21:2571:21:2576 | call to use | self |
+| UseUseExplosion.rb:21:2575:21:2575 | x | UseUseExplosion.rb:21:2571:21:2576 | call to use | position 0 |
+| UseUseExplosion.rb:21:2587:21:2592 | self | UseUseExplosion.rb:21:2587:21:2592 | call to use | self |
+| UseUseExplosion.rb:21:2591:21:2591 | x | UseUseExplosion.rb:21:2587:21:2592 | call to use | position 0 |
+| UseUseExplosion.rb:21:2603:21:2608 | self | UseUseExplosion.rb:21:2603:21:2608 | call to use | self |
+| UseUseExplosion.rb:21:2607:21:2607 | x | UseUseExplosion.rb:21:2603:21:2608 | call to use | position 0 |
+| UseUseExplosion.rb:21:2619:21:2624 | self | UseUseExplosion.rb:21:2619:21:2624 | call to use | self |
+| UseUseExplosion.rb:21:2623:21:2623 | x | UseUseExplosion.rb:21:2619:21:2624 | call to use | position 0 |
+| UseUseExplosion.rb:21:2635:21:2640 | self | UseUseExplosion.rb:21:2635:21:2640 | call to use | self |
+| UseUseExplosion.rb:21:2639:21:2639 | x | UseUseExplosion.rb:21:2635:21:2640 | call to use | position 0 |
+| UseUseExplosion.rb:21:2651:21:2656 | self | UseUseExplosion.rb:21:2651:21:2656 | call to use | self |
+| UseUseExplosion.rb:21:2655:21:2655 | x | UseUseExplosion.rb:21:2651:21:2656 | call to use | position 0 |
+| UseUseExplosion.rb:21:2667:21:2672 | self | UseUseExplosion.rb:21:2667:21:2672 | call to use | self |
+| UseUseExplosion.rb:21:2671:21:2671 | x | UseUseExplosion.rb:21:2667:21:2672 | call to use | position 0 |
+| UseUseExplosion.rb:21:2683:21:2688 | self | UseUseExplosion.rb:21:2683:21:2688 | call to use | self |
+| UseUseExplosion.rb:21:2687:21:2687 | x | UseUseExplosion.rb:21:2683:21:2688 | call to use | position 0 |
+| UseUseExplosion.rb:21:2699:21:2704 | self | UseUseExplosion.rb:21:2699:21:2704 | call to use | self |
+| UseUseExplosion.rb:21:2703:21:2703 | x | UseUseExplosion.rb:21:2699:21:2704 | call to use | position 0 |
+| UseUseExplosion.rb:21:2715:21:2720 | self | UseUseExplosion.rb:21:2715:21:2720 | call to use | self |
+| UseUseExplosion.rb:21:2719:21:2719 | x | UseUseExplosion.rb:21:2715:21:2720 | call to use | position 0 |
+| UseUseExplosion.rb:21:2731:21:2736 | self | UseUseExplosion.rb:21:2731:21:2736 | call to use | self |
+| UseUseExplosion.rb:21:2735:21:2735 | x | UseUseExplosion.rb:21:2731:21:2736 | call to use | position 0 |
+| UseUseExplosion.rb:21:2747:21:2752 | self | UseUseExplosion.rb:21:2747:21:2752 | call to use | self |
+| UseUseExplosion.rb:21:2751:21:2751 | x | UseUseExplosion.rb:21:2747:21:2752 | call to use | position 0 |
+| UseUseExplosion.rb:21:2763:21:2768 | self | UseUseExplosion.rb:21:2763:21:2768 | call to use | self |
+| UseUseExplosion.rb:21:2767:21:2767 | x | UseUseExplosion.rb:21:2763:21:2768 | call to use | position 0 |
+| UseUseExplosion.rb:21:2779:21:2784 | self | UseUseExplosion.rb:21:2779:21:2784 | call to use | self |
+| UseUseExplosion.rb:21:2783:21:2783 | x | UseUseExplosion.rb:21:2779:21:2784 | call to use | position 0 |
+| UseUseExplosion.rb:21:2795:21:2800 | self | UseUseExplosion.rb:21:2795:21:2800 | call to use | self |
+| UseUseExplosion.rb:21:2799:21:2799 | x | UseUseExplosion.rb:21:2795:21:2800 | call to use | position 0 |
+| UseUseExplosion.rb:21:2811:21:2816 | self | UseUseExplosion.rb:21:2811:21:2816 | call to use | self |
+| UseUseExplosion.rb:21:2815:21:2815 | x | UseUseExplosion.rb:21:2811:21:2816 | call to use | position 0 |
+| UseUseExplosion.rb:21:2827:21:2832 | self | UseUseExplosion.rb:21:2827:21:2832 | call to use | self |
+| UseUseExplosion.rb:21:2831:21:2831 | x | UseUseExplosion.rb:21:2827:21:2832 | call to use | position 0 |
+| UseUseExplosion.rb:21:2843:21:2848 | self | UseUseExplosion.rb:21:2843:21:2848 | call to use | self |
+| UseUseExplosion.rb:21:2847:21:2847 | x | UseUseExplosion.rb:21:2843:21:2848 | call to use | position 0 |
+| UseUseExplosion.rb:21:2859:21:2864 | self | UseUseExplosion.rb:21:2859:21:2864 | call to use | self |
+| UseUseExplosion.rb:21:2863:21:2863 | x | UseUseExplosion.rb:21:2859:21:2864 | call to use | position 0 |
+| UseUseExplosion.rb:21:2875:21:2880 | self | UseUseExplosion.rb:21:2875:21:2880 | call to use | self |
+| UseUseExplosion.rb:21:2879:21:2879 | x | UseUseExplosion.rb:21:2875:21:2880 | call to use | position 0 |
+| UseUseExplosion.rb:21:2891:21:2896 | self | UseUseExplosion.rb:21:2891:21:2896 | call to use | self |
+| UseUseExplosion.rb:21:2895:21:2895 | x | UseUseExplosion.rb:21:2891:21:2896 | call to use | position 0 |
+| UseUseExplosion.rb:21:2907:21:2912 | self | UseUseExplosion.rb:21:2907:21:2912 | call to use | self |
+| UseUseExplosion.rb:21:2911:21:2911 | x | UseUseExplosion.rb:21:2907:21:2912 | call to use | position 0 |
+| UseUseExplosion.rb:21:2923:21:2928 | self | UseUseExplosion.rb:21:2923:21:2928 | call to use | self |
+| UseUseExplosion.rb:21:2927:21:2927 | x | UseUseExplosion.rb:21:2923:21:2928 | call to use | position 0 |
+| UseUseExplosion.rb:21:2939:21:2944 | self | UseUseExplosion.rb:21:2939:21:2944 | call to use | self |
+| UseUseExplosion.rb:21:2943:21:2943 | x | UseUseExplosion.rb:21:2939:21:2944 | call to use | position 0 |
+| UseUseExplosion.rb:21:2955:21:2960 | self | UseUseExplosion.rb:21:2955:21:2960 | call to use | self |
+| UseUseExplosion.rb:21:2959:21:2959 | x | UseUseExplosion.rb:21:2955:21:2960 | call to use | position 0 |
+| UseUseExplosion.rb:21:2971:21:2976 | self | UseUseExplosion.rb:21:2971:21:2976 | call to use | self |
+| UseUseExplosion.rb:21:2975:21:2975 | x | UseUseExplosion.rb:21:2971:21:2976 | call to use | position 0 |
+| UseUseExplosion.rb:21:2987:21:2992 | self | UseUseExplosion.rb:21:2987:21:2992 | call to use | self |
+| UseUseExplosion.rb:21:2991:21:2991 | x | UseUseExplosion.rb:21:2987:21:2992 | call to use | position 0 |
+| UseUseExplosion.rb:21:3003:21:3008 | self | UseUseExplosion.rb:21:3003:21:3008 | call to use | self |
+| UseUseExplosion.rb:21:3007:21:3007 | x | UseUseExplosion.rb:21:3003:21:3008 | call to use | position 0 |
+| UseUseExplosion.rb:21:3019:21:3024 | self | UseUseExplosion.rb:21:3019:21:3024 | call to use | self |
+| UseUseExplosion.rb:21:3023:21:3023 | x | UseUseExplosion.rb:21:3019:21:3024 | call to use | position 0 |
+| UseUseExplosion.rb:21:3035:21:3040 | self | UseUseExplosion.rb:21:3035:21:3040 | call to use | self |
+| UseUseExplosion.rb:21:3039:21:3039 | x | UseUseExplosion.rb:21:3035:21:3040 | call to use | position 0 |
+| UseUseExplosion.rb:21:3051:21:3056 | self | UseUseExplosion.rb:21:3051:21:3056 | call to use | self |
+| UseUseExplosion.rb:21:3055:21:3055 | x | UseUseExplosion.rb:21:3051:21:3056 | call to use | position 0 |
+| UseUseExplosion.rb:21:3067:21:3072 | self | UseUseExplosion.rb:21:3067:21:3072 | call to use | self |
+| UseUseExplosion.rb:21:3071:21:3071 | x | UseUseExplosion.rb:21:3067:21:3072 | call to use | position 0 |
+| UseUseExplosion.rb:21:3083:21:3088 | self | UseUseExplosion.rb:21:3083:21:3088 | call to use | self |
+| UseUseExplosion.rb:21:3087:21:3087 | x | UseUseExplosion.rb:21:3083:21:3088 | call to use | position 0 |
+| UseUseExplosion.rb:21:3099:21:3104 | self | UseUseExplosion.rb:21:3099:21:3104 | call to use | self |
+| UseUseExplosion.rb:21:3103:21:3103 | x | UseUseExplosion.rb:21:3099:21:3104 | call to use | position 0 |
+| UseUseExplosion.rb:21:3115:21:3120 | self | UseUseExplosion.rb:21:3115:21:3120 | call to use | self |
+| UseUseExplosion.rb:21:3119:21:3119 | x | UseUseExplosion.rb:21:3115:21:3120 | call to use | position 0 |
+| UseUseExplosion.rb:21:3131:21:3136 | self | UseUseExplosion.rb:21:3131:21:3136 | call to use | self |
+| UseUseExplosion.rb:21:3135:21:3135 | x | UseUseExplosion.rb:21:3131:21:3136 | call to use | position 0 |
+| UseUseExplosion.rb:21:3147:21:3152 | self | UseUseExplosion.rb:21:3147:21:3152 | call to use | self |
+| UseUseExplosion.rb:21:3151:21:3151 | x | UseUseExplosion.rb:21:3147:21:3152 | call to use | position 0 |
+| UseUseExplosion.rb:21:3163:21:3168 | self | UseUseExplosion.rb:21:3163:21:3168 | call to use | self |
+| UseUseExplosion.rb:21:3167:21:3167 | x | UseUseExplosion.rb:21:3163:21:3168 | call to use | position 0 |
+| UseUseExplosion.rb:21:3179:21:3184 | self | UseUseExplosion.rb:21:3179:21:3184 | call to use | self |
+| UseUseExplosion.rb:21:3183:21:3183 | x | UseUseExplosion.rb:21:3179:21:3184 | call to use | position 0 |
+| UseUseExplosion.rb:21:3195:21:3200 | self | UseUseExplosion.rb:21:3195:21:3200 | call to use | self |
+| UseUseExplosion.rb:21:3199:21:3199 | x | UseUseExplosion.rb:21:3195:21:3200 | call to use | position 0 |
+| UseUseExplosion.rb:21:3211:21:3216 | self | UseUseExplosion.rb:21:3211:21:3216 | call to use | self |
+| UseUseExplosion.rb:21:3215:21:3215 | x | UseUseExplosion.rb:21:3211:21:3216 | call to use | position 0 |
+| UseUseExplosion.rb:21:3227:21:3232 | self | UseUseExplosion.rb:21:3227:21:3232 | call to use | self |
+| UseUseExplosion.rb:21:3231:21:3231 | x | UseUseExplosion.rb:21:3227:21:3232 | call to use | position 0 |
+| UseUseExplosion.rb:21:3243:21:3248 | self | UseUseExplosion.rb:21:3243:21:3248 | call to use | self |
+| UseUseExplosion.rb:21:3247:21:3247 | x | UseUseExplosion.rb:21:3243:21:3248 | call to use | position 0 |
+| UseUseExplosion.rb:21:3259:21:3264 | self | UseUseExplosion.rb:21:3259:21:3264 | call to use | self |
+| UseUseExplosion.rb:21:3263:21:3263 | x | UseUseExplosion.rb:21:3259:21:3264 | call to use | position 0 |
+| UseUseExplosion.rb:21:3275:21:3280 | self | UseUseExplosion.rb:21:3275:21:3280 | call to use | self |
+| UseUseExplosion.rb:21:3279:21:3279 | x | UseUseExplosion.rb:21:3275:21:3280 | call to use | position 0 |
+| UseUseExplosion.rb:21:3291:21:3296 | self | UseUseExplosion.rb:21:3291:21:3296 | call to use | self |
+| UseUseExplosion.rb:21:3295:21:3295 | x | UseUseExplosion.rb:21:3291:21:3296 | call to use | position 0 |
+| UseUseExplosion.rb:21:3307:21:3312 | self | UseUseExplosion.rb:21:3307:21:3312 | call to use | self |
+| UseUseExplosion.rb:21:3311:21:3311 | x | UseUseExplosion.rb:21:3307:21:3312 | call to use | position 0 |
+| UseUseExplosion.rb:21:3323:21:3328 | self | UseUseExplosion.rb:21:3323:21:3328 | call to use | self |
+| UseUseExplosion.rb:21:3327:21:3327 | x | UseUseExplosion.rb:21:3323:21:3328 | call to use | position 0 |
+| UseUseExplosion.rb:21:3339:21:3344 | self | UseUseExplosion.rb:21:3339:21:3344 | call to use | self |
+| UseUseExplosion.rb:21:3343:21:3343 | x | UseUseExplosion.rb:21:3339:21:3344 | call to use | position 0 |
+| UseUseExplosion.rb:21:3355:21:3360 | self | UseUseExplosion.rb:21:3355:21:3360 | call to use | self |
+| UseUseExplosion.rb:21:3359:21:3359 | x | UseUseExplosion.rb:21:3355:21:3360 | call to use | position 0 |
+| UseUseExplosion.rb:21:3371:21:3376 | self | UseUseExplosion.rb:21:3371:21:3376 | call to use | self |
+| UseUseExplosion.rb:21:3375:21:3375 | x | UseUseExplosion.rb:21:3371:21:3376 | call to use | position 0 |
+| UseUseExplosion.rb:21:3387:21:3392 | self | UseUseExplosion.rb:21:3387:21:3392 | call to use | self |
+| UseUseExplosion.rb:21:3391:21:3391 | x | UseUseExplosion.rb:21:3387:21:3392 | call to use | position 0 |
+| UseUseExplosion.rb:21:3403:21:3408 | self | UseUseExplosion.rb:21:3403:21:3408 | call to use | self |
+| UseUseExplosion.rb:21:3407:21:3407 | x | UseUseExplosion.rb:21:3403:21:3408 | call to use | position 0 |
+| UseUseExplosion.rb:21:3419:21:3424 | self | UseUseExplosion.rb:21:3419:21:3424 | call to use | self |
+| UseUseExplosion.rb:21:3423:21:3423 | x | UseUseExplosion.rb:21:3419:21:3424 | call to use | position 0 |
+| UseUseExplosion.rb:21:3435:21:3440 | self | UseUseExplosion.rb:21:3435:21:3440 | call to use | self |
+| UseUseExplosion.rb:21:3439:21:3439 | x | UseUseExplosion.rb:21:3435:21:3440 | call to use | position 0 |
+| UseUseExplosion.rb:21:3451:21:3456 | self | UseUseExplosion.rb:21:3451:21:3456 | call to use | self |
+| UseUseExplosion.rb:21:3455:21:3455 | x | UseUseExplosion.rb:21:3451:21:3456 | call to use | position 0 |
+| UseUseExplosion.rb:21:3467:21:3472 | self | UseUseExplosion.rb:21:3467:21:3472 | call to use | self |
+| UseUseExplosion.rb:21:3471:21:3471 | x | UseUseExplosion.rb:21:3467:21:3472 | call to use | position 0 |
+| UseUseExplosion.rb:21:3483:21:3488 | self | UseUseExplosion.rb:21:3483:21:3488 | call to use | self |
+| UseUseExplosion.rb:21:3487:21:3487 | x | UseUseExplosion.rb:21:3483:21:3488 | call to use | position 0 |
+| UseUseExplosion.rb:21:3499:21:3504 | self | UseUseExplosion.rb:21:3499:21:3504 | call to use | self |
+| UseUseExplosion.rb:21:3503:21:3503 | x | UseUseExplosion.rb:21:3499:21:3504 | call to use | position 0 |
+| UseUseExplosion.rb:21:3515:21:3520 | self | UseUseExplosion.rb:21:3515:21:3520 | call to use | self |
+| UseUseExplosion.rb:21:3519:21:3519 | x | UseUseExplosion.rb:21:3515:21:3520 | call to use | position 0 |
+| UseUseExplosion.rb:21:3531:21:3536 | self | UseUseExplosion.rb:21:3531:21:3536 | call to use | self |
+| UseUseExplosion.rb:21:3535:21:3535 | x | UseUseExplosion.rb:21:3531:21:3536 | call to use | position 0 |
+| UseUseExplosion.rb:21:3547:21:3552 | self | UseUseExplosion.rb:21:3547:21:3552 | call to use | self |
+| UseUseExplosion.rb:21:3551:21:3551 | x | UseUseExplosion.rb:21:3547:21:3552 | call to use | position 0 |
+| UseUseExplosion.rb:21:3563:21:3568 | self | UseUseExplosion.rb:21:3563:21:3568 | call to use | self |
+| UseUseExplosion.rb:21:3567:21:3567 | x | UseUseExplosion.rb:21:3563:21:3568 | call to use | position 0 |
+| UseUseExplosion.rb:21:3579:21:3584 | self | UseUseExplosion.rb:21:3579:21:3584 | call to use | self |
+| UseUseExplosion.rb:21:3583:21:3583 | x | UseUseExplosion.rb:21:3579:21:3584 | call to use | position 0 |
+| UseUseExplosion.rb:21:3595:21:3600 | self | UseUseExplosion.rb:21:3595:21:3600 | call to use | self |
+| UseUseExplosion.rb:21:3599:21:3599 | x | UseUseExplosion.rb:21:3595:21:3600 | call to use | position 0 |
+| UseUseExplosion.rb:21:3611:21:3616 | self | UseUseExplosion.rb:21:3611:21:3616 | call to use | self |
+| UseUseExplosion.rb:21:3615:21:3615 | x | UseUseExplosion.rb:21:3611:21:3616 | call to use | position 0 |
+| UseUseExplosion.rb:21:3627:21:3632 | self | UseUseExplosion.rb:21:3627:21:3632 | call to use | self |
+| UseUseExplosion.rb:21:3631:21:3631 | x | UseUseExplosion.rb:21:3627:21:3632 | call to use | position 0 |
+| UseUseExplosion.rb:21:3643:21:3648 | self | UseUseExplosion.rb:21:3643:21:3648 | call to use | self |
+| UseUseExplosion.rb:21:3647:21:3647 | x | UseUseExplosion.rb:21:3643:21:3648 | call to use | position 0 |
+| UseUseExplosion.rb:21:3659:21:3664 | self | UseUseExplosion.rb:21:3659:21:3664 | call to use | self |
+| UseUseExplosion.rb:21:3663:21:3663 | x | UseUseExplosion.rb:21:3659:21:3664 | call to use | position 0 |
+| UseUseExplosion.rb:21:3675:21:3680 | self | UseUseExplosion.rb:21:3675:21:3680 | call to use | self |
+| UseUseExplosion.rb:21:3679:21:3679 | x | UseUseExplosion.rb:21:3675:21:3680 | call to use | position 0 |
+| UseUseExplosion.rb:21:3691:21:3696 | self | UseUseExplosion.rb:21:3691:21:3696 | call to use | self |
+| UseUseExplosion.rb:21:3695:21:3695 | x | UseUseExplosion.rb:21:3691:21:3696 | call to use | position 0 |
 | local_dataflow.rb:3:8:3:10 | self | local_dataflow.rb:3:8:3:10 | call to p | self |
 | local_dataflow.rb:3:10:3:10 | a | local_dataflow.rb:3:8:3:10 | call to p | position 0 |
 | local_dataflow.rb:6:8:6:8 | a | local_dataflow.rb:6:10:6:11 | ... + ... | self |
diff --git a/ruby/ql/test/library-tests/dataflow/local/TaintStep.expected b/ruby/ql/test/library-tests/dataflow/local/TaintStep.expected
index 7d55d82800b..c66f1eaea4e 100644
--- a/ruby/ql/test/library-tests/dataflow/local/TaintStep.expected
+++ b/ruby/ql/test/library-tests/dataflow/local/TaintStep.expected
@@ -1,3 +1,2802 @@
+| UseUseExplosion.rb:18:5:22:7 | self (m) | UseUseExplosion.rb:20:13:20:17 | self |
+| UseUseExplosion.rb:18:5:22:7 | self in m | UseUseExplosion.rb:18:5:22:7 | self (m) |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:2081:20:2116 | SSA phi read(x) |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:2111:20:2111 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:2127:20:2127 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:2143:20:2143 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:2159:20:2159 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:2175:20:2175 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:2191:20:2191 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:2207:20:2207 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:2223:20:2223 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:2239:20:2239 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:2255:20:2255 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:2271:20:2271 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:2287:20:2287 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:2303:20:2303 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:2319:20:2319 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:2335:20:2335 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:2351:20:2351 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:2367:20:2367 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:2383:20:2383 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:2399:20:2399 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:2415:20:2415 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:2431:20:2431 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:2447:20:2447 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:2463:20:2463 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:2479:20:2479 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:2495:20:2495 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:2511:20:2511 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:2527:20:2527 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:2543:20:2543 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:2559:20:2559 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:2575:20:2575 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:2591:20:2591 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:2607:20:2607 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:2623:20:2623 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:2639:20:2639 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:2655:20:2655 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:2671:20:2671 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:2687:20:2687 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:2703:20:2703 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:2719:20:2719 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:2735:20:2735 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:2751:20:2751 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:2767:20:2767 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:2783:20:2783 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:2799:20:2799 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:2815:20:2815 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:2831:20:2831 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:2847:20:2847 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:2863:20:2863 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:2879:20:2879 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:2895:20:2895 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:2911:20:2911 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:2927:20:2927 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:2943:20:2943 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:2959:20:2959 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:2975:20:2975 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:2991:20:2991 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:3007:20:3007 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:3023:20:3023 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:3039:20:3039 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:3055:20:3055 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:3071:20:3071 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:3087:20:3087 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:3103:20:3103 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:3119:20:3119 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:3135:20:3135 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:3151:20:3151 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:3167:20:3167 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:3183:20:3183 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:3199:20:3199 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:3215:20:3215 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:3231:20:3231 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:3247:20:3247 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:3263:20:3263 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:3279:20:3279 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:3295:20:3295 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:3311:20:3311 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:3327:20:3327 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:3343:20:3343 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:3359:20:3359 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:3375:20:3375 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:3391:20:3391 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:3407:20:3407 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:3423:20:3423 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:3439:20:3439 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:3455:20:3455 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:3471:20:3471 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:3487:20:3487 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:3503:20:3503 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:3519:20:3519 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:3535:20:3535 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:3551:20:3551 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:3567:20:3567 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:3583:20:3583 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:3599:20:3599 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:3615:20:3615 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:3631:20:3631 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:3647:20:3647 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:3663:20:3663 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:3679:20:3679 | x |
+| UseUseExplosion.rb:19:9:19:13 | ... = ... | UseUseExplosion.rb:20:3695:20:3695 | x |
+| UseUseExplosion.rb:19:13:19:13 | 0 | UseUseExplosion.rb:19:9:19:13 | ... = ... |
+| UseUseExplosion.rb:19:13:19:13 | 0 | UseUseExplosion.rb:19:9:19:13 | ... = ... |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(self) | UseUseExplosion.rb:21:13:21:17 | self |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:2111:21:2111 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:2127:21:2127 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:2143:21:2143 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:2159:21:2159 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:2175:21:2175 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:2191:21:2191 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:2207:21:2207 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:2223:21:2223 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:2239:21:2239 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:2255:21:2255 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:2271:21:2271 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:2287:21:2287 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:2303:21:2303 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:2319:21:2319 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:2335:21:2335 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:2351:21:2351 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:2367:21:2367 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:2383:21:2383 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:2399:21:2399 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:2415:21:2415 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:2431:21:2431 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:2447:21:2447 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:2463:21:2463 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:2479:21:2479 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:2495:21:2495 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:2511:21:2511 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:2527:21:2527 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:2543:21:2543 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:2559:21:2559 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:2575:21:2575 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:2591:21:2591 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:2607:21:2607 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:2623:21:2623 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:2639:21:2639 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:2655:21:2655 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:2671:21:2671 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:2687:21:2687 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:2703:21:2703 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:2719:21:2719 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:2735:21:2735 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:2751:21:2751 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:2767:21:2767 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:2783:21:2783 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:2799:21:2799 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:2815:21:2815 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:2831:21:2831 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:2847:21:2847 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:2863:21:2863 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:2879:21:2879 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:2895:21:2895 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:2911:21:2911 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:2927:21:2927 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:2943:21:2943 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:2959:21:2959 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:2975:21:2975 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:2991:21:2991 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:3007:21:3007 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:3023:21:3023 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:3039:21:3039 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:3055:21:3055 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:3071:21:3071 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:3087:21:3087 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:3103:21:3103 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:3119:21:3119 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:3135:21:3135 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:3151:21:3151 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:3167:21:3167 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:3183:21:3183 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:3199:21:3199 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:3215:21:3215 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:3231:21:3231 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:3247:21:3247 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:3263:21:3263 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:3279:21:3279 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:3295:21:3295 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:3311:21:3311 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:3327:21:3327 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:3343:21:3343 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:3359:21:3359 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:3375:21:3375 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:3391:21:3391 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:3407:21:3407 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:3423:21:3423 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:3439:21:3439 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:3455:21:3455 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:3471:21:3471 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:3487:21:3487 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:3503:21:3503 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:3519:21:3519 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:3535:21:3535 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:3551:21:3551 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:3567:21:3567 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:3583:21:3583 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:3599:21:3599 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:3615:21:3615 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:3631:21:3631 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:3647:21:3647 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:3663:21:3663 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:3679:21:3679 | x |
+| UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) | UseUseExplosion.rb:21:3695:21:3695 | x |
+| UseUseExplosion.rb:20:13:20:17 | @prop | UseUseExplosion.rb:20:13:20:23 | ... > ... |
+| UseUseExplosion.rb:20:13:20:17 | [post] self | UseUseExplosion.rb:20:35:20:39 | self |
+| UseUseExplosion.rb:20:13:20:17 | [post] self | UseUseExplosion.rb:20:3691:20:3696 | self |
+| UseUseExplosion.rb:20:13:20:17 | self | UseUseExplosion.rb:20:35:20:39 | self |
+| UseUseExplosion.rb:20:13:20:17 | self | UseUseExplosion.rb:20:3691:20:3696 | self |
+| UseUseExplosion.rb:20:13:20:23 | ... > ... | UseUseExplosion.rb:20:12:20:24 | [false] ( ... ) |
+| UseUseExplosion.rb:20:13:20:23 | ... > ... | UseUseExplosion.rb:20:12:20:24 | [true] ( ... ) |
+| UseUseExplosion.rb:20:21:20:23 | 100 | UseUseExplosion.rb:20:13:20:23 | ... > ... |
+| UseUseExplosion.rb:20:26:20:3684 | then ... | UseUseExplosion.rb:20:9:20:3700 | if ... |
+| UseUseExplosion.rb:20:31:20:3684 | SSA phi read(self) | UseUseExplosion.rb:20:9:20:3700 | SSA phi read(self) |
+| UseUseExplosion.rb:20:31:20:3684 | SSA phi read(x) | UseUseExplosion.rb:20:9:20:3700 | SSA phi read(x) |
+| UseUseExplosion.rb:20:31:20:3684 | if ... | UseUseExplosion.rb:20:26:20:3684 | then ... |
+| UseUseExplosion.rb:20:35:20:39 | @prop | UseUseExplosion.rb:20:35:20:44 | ... > ... |
+| UseUseExplosion.rb:20:35:20:39 | [post] self | UseUseExplosion.rb:20:56:20:60 | self |
+| UseUseExplosion.rb:20:35:20:39 | [post] self | UseUseExplosion.rb:20:3675:20:3680 | self |
+| UseUseExplosion.rb:20:35:20:39 | self | UseUseExplosion.rb:20:56:20:60 | self |
+| UseUseExplosion.rb:20:35:20:39 | self | UseUseExplosion.rb:20:3675:20:3680 | self |
+| UseUseExplosion.rb:20:35:20:44 | ... > ... | UseUseExplosion.rb:20:34:20:45 | [false] ( ... ) |
+| UseUseExplosion.rb:20:35:20:44 | ... > ... | UseUseExplosion.rb:20:34:20:45 | [true] ( ... ) |
+| UseUseExplosion.rb:20:43:20:44 | 99 | UseUseExplosion.rb:20:35:20:44 | ... > ... |
+| UseUseExplosion.rb:20:47:20:3668 | then ... | UseUseExplosion.rb:20:31:20:3684 | if ... |
+| UseUseExplosion.rb:20:52:20:3668 | SSA phi read(self) | UseUseExplosion.rb:20:31:20:3684 | SSA phi read(self) |
+| UseUseExplosion.rb:20:52:20:3668 | SSA phi read(x) | UseUseExplosion.rb:20:31:20:3684 | SSA phi read(x) |
+| UseUseExplosion.rb:20:52:20:3668 | if ... | UseUseExplosion.rb:20:47:20:3668 | then ... |
+| UseUseExplosion.rb:20:56:20:60 | @prop | UseUseExplosion.rb:20:56:20:65 | ... > ... |
+| UseUseExplosion.rb:20:56:20:60 | [post] self | UseUseExplosion.rb:20:77:20:81 | self |
+| UseUseExplosion.rb:20:56:20:60 | [post] self | UseUseExplosion.rb:20:3659:20:3664 | self |
+| UseUseExplosion.rb:20:56:20:60 | self | UseUseExplosion.rb:20:77:20:81 | self |
+| UseUseExplosion.rb:20:56:20:60 | self | UseUseExplosion.rb:20:3659:20:3664 | self |
+| UseUseExplosion.rb:20:56:20:65 | ... > ... | UseUseExplosion.rb:20:55:20:66 | [false] ( ... ) |
+| UseUseExplosion.rb:20:56:20:65 | ... > ... | UseUseExplosion.rb:20:55:20:66 | [true] ( ... ) |
+| UseUseExplosion.rb:20:64:20:65 | 98 | UseUseExplosion.rb:20:56:20:65 | ... > ... |
+| UseUseExplosion.rb:20:68:20:3652 | then ... | UseUseExplosion.rb:20:52:20:3668 | if ... |
+| UseUseExplosion.rb:20:73:20:3652 | SSA phi read(self) | UseUseExplosion.rb:20:52:20:3668 | SSA phi read(self) |
+| UseUseExplosion.rb:20:73:20:3652 | SSA phi read(x) | UseUseExplosion.rb:20:52:20:3668 | SSA phi read(x) |
+| UseUseExplosion.rb:20:73:20:3652 | if ... | UseUseExplosion.rb:20:68:20:3652 | then ... |
+| UseUseExplosion.rb:20:77:20:81 | @prop | UseUseExplosion.rb:20:77:20:86 | ... > ... |
+| UseUseExplosion.rb:20:77:20:81 | [post] self | UseUseExplosion.rb:20:98:20:102 | self |
+| UseUseExplosion.rb:20:77:20:81 | [post] self | UseUseExplosion.rb:20:3643:20:3648 | self |
+| UseUseExplosion.rb:20:77:20:81 | self | UseUseExplosion.rb:20:98:20:102 | self |
+| UseUseExplosion.rb:20:77:20:81 | self | UseUseExplosion.rb:20:3643:20:3648 | self |
+| UseUseExplosion.rb:20:77:20:86 | ... > ... | UseUseExplosion.rb:20:76:20:87 | [false] ( ... ) |
+| UseUseExplosion.rb:20:77:20:86 | ... > ... | UseUseExplosion.rb:20:76:20:87 | [true] ( ... ) |
+| UseUseExplosion.rb:20:85:20:86 | 97 | UseUseExplosion.rb:20:77:20:86 | ... > ... |
+| UseUseExplosion.rb:20:89:20:3636 | then ... | UseUseExplosion.rb:20:73:20:3652 | if ... |
+| UseUseExplosion.rb:20:94:20:3636 | SSA phi read(self) | UseUseExplosion.rb:20:73:20:3652 | SSA phi read(self) |
+| UseUseExplosion.rb:20:94:20:3636 | SSA phi read(x) | UseUseExplosion.rb:20:73:20:3652 | SSA phi read(x) |
+| UseUseExplosion.rb:20:94:20:3636 | if ... | UseUseExplosion.rb:20:89:20:3636 | then ... |
+| UseUseExplosion.rb:20:98:20:102 | @prop | UseUseExplosion.rb:20:98:20:107 | ... > ... |
+| UseUseExplosion.rb:20:98:20:102 | [post] self | UseUseExplosion.rb:20:119:20:123 | self |
+| UseUseExplosion.rb:20:98:20:102 | [post] self | UseUseExplosion.rb:20:3627:20:3632 | self |
+| UseUseExplosion.rb:20:98:20:102 | self | UseUseExplosion.rb:20:119:20:123 | self |
+| UseUseExplosion.rb:20:98:20:102 | self | UseUseExplosion.rb:20:3627:20:3632 | self |
+| UseUseExplosion.rb:20:98:20:107 | ... > ... | UseUseExplosion.rb:20:97:20:108 | [false] ( ... ) |
+| UseUseExplosion.rb:20:98:20:107 | ... > ... | UseUseExplosion.rb:20:97:20:108 | [true] ( ... ) |
+| UseUseExplosion.rb:20:106:20:107 | 96 | UseUseExplosion.rb:20:98:20:107 | ... > ... |
+| UseUseExplosion.rb:20:110:20:3620 | then ... | UseUseExplosion.rb:20:94:20:3636 | if ... |
+| UseUseExplosion.rb:20:115:20:3620 | SSA phi read(self) | UseUseExplosion.rb:20:94:20:3636 | SSA phi read(self) |
+| UseUseExplosion.rb:20:115:20:3620 | SSA phi read(x) | UseUseExplosion.rb:20:94:20:3636 | SSA phi read(x) |
+| UseUseExplosion.rb:20:115:20:3620 | if ... | UseUseExplosion.rb:20:110:20:3620 | then ... |
+| UseUseExplosion.rb:20:119:20:123 | @prop | UseUseExplosion.rb:20:119:20:128 | ... > ... |
+| UseUseExplosion.rb:20:119:20:123 | [post] self | UseUseExplosion.rb:20:140:20:144 | self |
+| UseUseExplosion.rb:20:119:20:123 | [post] self | UseUseExplosion.rb:20:3611:20:3616 | self |
+| UseUseExplosion.rb:20:119:20:123 | self | UseUseExplosion.rb:20:140:20:144 | self |
+| UseUseExplosion.rb:20:119:20:123 | self | UseUseExplosion.rb:20:3611:20:3616 | self |
+| UseUseExplosion.rb:20:119:20:128 | ... > ... | UseUseExplosion.rb:20:118:20:129 | [false] ( ... ) |
+| UseUseExplosion.rb:20:119:20:128 | ... > ... | UseUseExplosion.rb:20:118:20:129 | [true] ( ... ) |
+| UseUseExplosion.rb:20:127:20:128 | 95 | UseUseExplosion.rb:20:119:20:128 | ... > ... |
+| UseUseExplosion.rb:20:131:20:3604 | then ... | UseUseExplosion.rb:20:115:20:3620 | if ... |
+| UseUseExplosion.rb:20:136:20:3604 | SSA phi read(self) | UseUseExplosion.rb:20:115:20:3620 | SSA phi read(self) |
+| UseUseExplosion.rb:20:136:20:3604 | SSA phi read(x) | UseUseExplosion.rb:20:115:20:3620 | SSA phi read(x) |
+| UseUseExplosion.rb:20:136:20:3604 | if ... | UseUseExplosion.rb:20:131:20:3604 | then ... |
+| UseUseExplosion.rb:20:140:20:144 | @prop | UseUseExplosion.rb:20:140:20:149 | ... > ... |
+| UseUseExplosion.rb:20:140:20:144 | [post] self | UseUseExplosion.rb:20:161:20:165 | self |
+| UseUseExplosion.rb:20:140:20:144 | [post] self | UseUseExplosion.rb:20:3595:20:3600 | self |
+| UseUseExplosion.rb:20:140:20:144 | self | UseUseExplosion.rb:20:161:20:165 | self |
+| UseUseExplosion.rb:20:140:20:144 | self | UseUseExplosion.rb:20:3595:20:3600 | self |
+| UseUseExplosion.rb:20:140:20:149 | ... > ... | UseUseExplosion.rb:20:139:20:150 | [false] ( ... ) |
+| UseUseExplosion.rb:20:140:20:149 | ... > ... | UseUseExplosion.rb:20:139:20:150 | [true] ( ... ) |
+| UseUseExplosion.rb:20:148:20:149 | 94 | UseUseExplosion.rb:20:140:20:149 | ... > ... |
+| UseUseExplosion.rb:20:152:20:3588 | then ... | UseUseExplosion.rb:20:136:20:3604 | if ... |
+| UseUseExplosion.rb:20:157:20:3588 | SSA phi read(self) | UseUseExplosion.rb:20:136:20:3604 | SSA phi read(self) |
+| UseUseExplosion.rb:20:157:20:3588 | SSA phi read(x) | UseUseExplosion.rb:20:136:20:3604 | SSA phi read(x) |
+| UseUseExplosion.rb:20:157:20:3588 | if ... | UseUseExplosion.rb:20:152:20:3588 | then ... |
+| UseUseExplosion.rb:20:161:20:165 | @prop | UseUseExplosion.rb:20:161:20:170 | ... > ... |
+| UseUseExplosion.rb:20:161:20:165 | [post] self | UseUseExplosion.rb:20:182:20:186 | self |
+| UseUseExplosion.rb:20:161:20:165 | [post] self | UseUseExplosion.rb:20:3579:20:3584 | self |
+| UseUseExplosion.rb:20:161:20:165 | self | UseUseExplosion.rb:20:182:20:186 | self |
+| UseUseExplosion.rb:20:161:20:165 | self | UseUseExplosion.rb:20:3579:20:3584 | self |
+| UseUseExplosion.rb:20:161:20:170 | ... > ... | UseUseExplosion.rb:20:160:20:171 | [false] ( ... ) |
+| UseUseExplosion.rb:20:161:20:170 | ... > ... | UseUseExplosion.rb:20:160:20:171 | [true] ( ... ) |
+| UseUseExplosion.rb:20:169:20:170 | 93 | UseUseExplosion.rb:20:161:20:170 | ... > ... |
+| UseUseExplosion.rb:20:173:20:3572 | then ... | UseUseExplosion.rb:20:157:20:3588 | if ... |
+| UseUseExplosion.rb:20:178:20:3572 | SSA phi read(self) | UseUseExplosion.rb:20:157:20:3588 | SSA phi read(self) |
+| UseUseExplosion.rb:20:178:20:3572 | SSA phi read(x) | UseUseExplosion.rb:20:157:20:3588 | SSA phi read(x) |
+| UseUseExplosion.rb:20:178:20:3572 | if ... | UseUseExplosion.rb:20:173:20:3572 | then ... |
+| UseUseExplosion.rb:20:182:20:186 | @prop | UseUseExplosion.rb:20:182:20:191 | ... > ... |
+| UseUseExplosion.rb:20:182:20:186 | [post] self | UseUseExplosion.rb:20:203:20:207 | self |
+| UseUseExplosion.rb:20:182:20:186 | [post] self | UseUseExplosion.rb:20:3563:20:3568 | self |
+| UseUseExplosion.rb:20:182:20:186 | self | UseUseExplosion.rb:20:203:20:207 | self |
+| UseUseExplosion.rb:20:182:20:186 | self | UseUseExplosion.rb:20:3563:20:3568 | self |
+| UseUseExplosion.rb:20:182:20:191 | ... > ... | UseUseExplosion.rb:20:181:20:192 | [false] ( ... ) |
+| UseUseExplosion.rb:20:182:20:191 | ... > ... | UseUseExplosion.rb:20:181:20:192 | [true] ( ... ) |
+| UseUseExplosion.rb:20:190:20:191 | 92 | UseUseExplosion.rb:20:182:20:191 | ... > ... |
+| UseUseExplosion.rb:20:194:20:3556 | then ... | UseUseExplosion.rb:20:178:20:3572 | if ... |
+| UseUseExplosion.rb:20:199:20:3556 | SSA phi read(self) | UseUseExplosion.rb:20:178:20:3572 | SSA phi read(self) |
+| UseUseExplosion.rb:20:199:20:3556 | SSA phi read(x) | UseUseExplosion.rb:20:178:20:3572 | SSA phi read(x) |
+| UseUseExplosion.rb:20:199:20:3556 | if ... | UseUseExplosion.rb:20:194:20:3556 | then ... |
+| UseUseExplosion.rb:20:203:20:207 | @prop | UseUseExplosion.rb:20:203:20:212 | ... > ... |
+| UseUseExplosion.rb:20:203:20:207 | [post] self | UseUseExplosion.rb:20:224:20:228 | self |
+| UseUseExplosion.rb:20:203:20:207 | [post] self | UseUseExplosion.rb:20:3547:20:3552 | self |
+| UseUseExplosion.rb:20:203:20:207 | self | UseUseExplosion.rb:20:224:20:228 | self |
+| UseUseExplosion.rb:20:203:20:207 | self | UseUseExplosion.rb:20:3547:20:3552 | self |
+| UseUseExplosion.rb:20:203:20:212 | ... > ... | UseUseExplosion.rb:20:202:20:213 | [false] ( ... ) |
+| UseUseExplosion.rb:20:203:20:212 | ... > ... | UseUseExplosion.rb:20:202:20:213 | [true] ( ... ) |
+| UseUseExplosion.rb:20:211:20:212 | 91 | UseUseExplosion.rb:20:203:20:212 | ... > ... |
+| UseUseExplosion.rb:20:215:20:3540 | then ... | UseUseExplosion.rb:20:199:20:3556 | if ... |
+| UseUseExplosion.rb:20:220:20:3540 | SSA phi read(self) | UseUseExplosion.rb:20:199:20:3556 | SSA phi read(self) |
+| UseUseExplosion.rb:20:220:20:3540 | SSA phi read(x) | UseUseExplosion.rb:20:199:20:3556 | SSA phi read(x) |
+| UseUseExplosion.rb:20:220:20:3540 | if ... | UseUseExplosion.rb:20:215:20:3540 | then ... |
+| UseUseExplosion.rb:20:224:20:228 | @prop | UseUseExplosion.rb:20:224:20:233 | ... > ... |
+| UseUseExplosion.rb:20:224:20:228 | [post] self | UseUseExplosion.rb:20:245:20:249 | self |
+| UseUseExplosion.rb:20:224:20:228 | [post] self | UseUseExplosion.rb:20:3531:20:3536 | self |
+| UseUseExplosion.rb:20:224:20:228 | self | UseUseExplosion.rb:20:245:20:249 | self |
+| UseUseExplosion.rb:20:224:20:228 | self | UseUseExplosion.rb:20:3531:20:3536 | self |
+| UseUseExplosion.rb:20:224:20:233 | ... > ... | UseUseExplosion.rb:20:223:20:234 | [false] ( ... ) |
+| UseUseExplosion.rb:20:224:20:233 | ... > ... | UseUseExplosion.rb:20:223:20:234 | [true] ( ... ) |
+| UseUseExplosion.rb:20:232:20:233 | 90 | UseUseExplosion.rb:20:224:20:233 | ... > ... |
+| UseUseExplosion.rb:20:236:20:3524 | then ... | UseUseExplosion.rb:20:220:20:3540 | if ... |
+| UseUseExplosion.rb:20:241:20:3524 | SSA phi read(self) | UseUseExplosion.rb:20:220:20:3540 | SSA phi read(self) |
+| UseUseExplosion.rb:20:241:20:3524 | SSA phi read(x) | UseUseExplosion.rb:20:220:20:3540 | SSA phi read(x) |
+| UseUseExplosion.rb:20:241:20:3524 | if ... | UseUseExplosion.rb:20:236:20:3524 | then ... |
+| UseUseExplosion.rb:20:245:20:249 | @prop | UseUseExplosion.rb:20:245:20:254 | ... > ... |
+| UseUseExplosion.rb:20:245:20:249 | [post] self | UseUseExplosion.rb:20:266:20:270 | self |
+| UseUseExplosion.rb:20:245:20:249 | [post] self | UseUseExplosion.rb:20:3515:20:3520 | self |
+| UseUseExplosion.rb:20:245:20:249 | self | UseUseExplosion.rb:20:266:20:270 | self |
+| UseUseExplosion.rb:20:245:20:249 | self | UseUseExplosion.rb:20:3515:20:3520 | self |
+| UseUseExplosion.rb:20:245:20:254 | ... > ... | UseUseExplosion.rb:20:244:20:255 | [false] ( ... ) |
+| UseUseExplosion.rb:20:245:20:254 | ... > ... | UseUseExplosion.rb:20:244:20:255 | [true] ( ... ) |
+| UseUseExplosion.rb:20:253:20:254 | 89 | UseUseExplosion.rb:20:245:20:254 | ... > ... |
+| UseUseExplosion.rb:20:257:20:3508 | then ... | UseUseExplosion.rb:20:241:20:3524 | if ... |
+| UseUseExplosion.rb:20:262:20:3508 | SSA phi read(self) | UseUseExplosion.rb:20:241:20:3524 | SSA phi read(self) |
+| UseUseExplosion.rb:20:262:20:3508 | SSA phi read(x) | UseUseExplosion.rb:20:241:20:3524 | SSA phi read(x) |
+| UseUseExplosion.rb:20:262:20:3508 | if ... | UseUseExplosion.rb:20:257:20:3508 | then ... |
+| UseUseExplosion.rb:20:266:20:270 | @prop | UseUseExplosion.rb:20:266:20:275 | ... > ... |
+| UseUseExplosion.rb:20:266:20:270 | [post] self | UseUseExplosion.rb:20:287:20:291 | self |
+| UseUseExplosion.rb:20:266:20:270 | [post] self | UseUseExplosion.rb:20:3499:20:3504 | self |
+| UseUseExplosion.rb:20:266:20:270 | self | UseUseExplosion.rb:20:287:20:291 | self |
+| UseUseExplosion.rb:20:266:20:270 | self | UseUseExplosion.rb:20:3499:20:3504 | self |
+| UseUseExplosion.rb:20:266:20:275 | ... > ... | UseUseExplosion.rb:20:265:20:276 | [false] ( ... ) |
+| UseUseExplosion.rb:20:266:20:275 | ... > ... | UseUseExplosion.rb:20:265:20:276 | [true] ( ... ) |
+| UseUseExplosion.rb:20:274:20:275 | 88 | UseUseExplosion.rb:20:266:20:275 | ... > ... |
+| UseUseExplosion.rb:20:278:20:3492 | then ... | UseUseExplosion.rb:20:262:20:3508 | if ... |
+| UseUseExplosion.rb:20:283:20:3492 | SSA phi read(self) | UseUseExplosion.rb:20:262:20:3508 | SSA phi read(self) |
+| UseUseExplosion.rb:20:283:20:3492 | SSA phi read(x) | UseUseExplosion.rb:20:262:20:3508 | SSA phi read(x) |
+| UseUseExplosion.rb:20:283:20:3492 | if ... | UseUseExplosion.rb:20:278:20:3492 | then ... |
+| UseUseExplosion.rb:20:287:20:291 | @prop | UseUseExplosion.rb:20:287:20:296 | ... > ... |
+| UseUseExplosion.rb:20:287:20:291 | [post] self | UseUseExplosion.rb:20:308:20:312 | self |
+| UseUseExplosion.rb:20:287:20:291 | [post] self | UseUseExplosion.rb:20:3483:20:3488 | self |
+| UseUseExplosion.rb:20:287:20:291 | self | UseUseExplosion.rb:20:308:20:312 | self |
+| UseUseExplosion.rb:20:287:20:291 | self | UseUseExplosion.rb:20:3483:20:3488 | self |
+| UseUseExplosion.rb:20:287:20:296 | ... > ... | UseUseExplosion.rb:20:286:20:297 | [false] ( ... ) |
+| UseUseExplosion.rb:20:287:20:296 | ... > ... | UseUseExplosion.rb:20:286:20:297 | [true] ( ... ) |
+| UseUseExplosion.rb:20:295:20:296 | 87 | UseUseExplosion.rb:20:287:20:296 | ... > ... |
+| UseUseExplosion.rb:20:299:20:3476 | then ... | UseUseExplosion.rb:20:283:20:3492 | if ... |
+| UseUseExplosion.rb:20:304:20:3476 | SSA phi read(self) | UseUseExplosion.rb:20:283:20:3492 | SSA phi read(self) |
+| UseUseExplosion.rb:20:304:20:3476 | SSA phi read(x) | UseUseExplosion.rb:20:283:20:3492 | SSA phi read(x) |
+| UseUseExplosion.rb:20:304:20:3476 | if ... | UseUseExplosion.rb:20:299:20:3476 | then ... |
+| UseUseExplosion.rb:20:308:20:312 | @prop | UseUseExplosion.rb:20:308:20:317 | ... > ... |
+| UseUseExplosion.rb:20:308:20:312 | [post] self | UseUseExplosion.rb:20:329:20:333 | self |
+| UseUseExplosion.rb:20:308:20:312 | [post] self | UseUseExplosion.rb:20:3467:20:3472 | self |
+| UseUseExplosion.rb:20:308:20:312 | self | UseUseExplosion.rb:20:329:20:333 | self |
+| UseUseExplosion.rb:20:308:20:312 | self | UseUseExplosion.rb:20:3467:20:3472 | self |
+| UseUseExplosion.rb:20:308:20:317 | ... > ... | UseUseExplosion.rb:20:307:20:318 | [false] ( ... ) |
+| UseUseExplosion.rb:20:308:20:317 | ... > ... | UseUseExplosion.rb:20:307:20:318 | [true] ( ... ) |
+| UseUseExplosion.rb:20:316:20:317 | 86 | UseUseExplosion.rb:20:308:20:317 | ... > ... |
+| UseUseExplosion.rb:20:320:20:3460 | then ... | UseUseExplosion.rb:20:304:20:3476 | if ... |
+| UseUseExplosion.rb:20:325:20:3460 | SSA phi read(self) | UseUseExplosion.rb:20:304:20:3476 | SSA phi read(self) |
+| UseUseExplosion.rb:20:325:20:3460 | SSA phi read(x) | UseUseExplosion.rb:20:304:20:3476 | SSA phi read(x) |
+| UseUseExplosion.rb:20:325:20:3460 | if ... | UseUseExplosion.rb:20:320:20:3460 | then ... |
+| UseUseExplosion.rb:20:329:20:333 | @prop | UseUseExplosion.rb:20:329:20:338 | ... > ... |
+| UseUseExplosion.rb:20:329:20:333 | [post] self | UseUseExplosion.rb:20:350:20:354 | self |
+| UseUseExplosion.rb:20:329:20:333 | [post] self | UseUseExplosion.rb:20:3451:20:3456 | self |
+| UseUseExplosion.rb:20:329:20:333 | self | UseUseExplosion.rb:20:350:20:354 | self |
+| UseUseExplosion.rb:20:329:20:333 | self | UseUseExplosion.rb:20:3451:20:3456 | self |
+| UseUseExplosion.rb:20:329:20:338 | ... > ... | UseUseExplosion.rb:20:328:20:339 | [false] ( ... ) |
+| UseUseExplosion.rb:20:329:20:338 | ... > ... | UseUseExplosion.rb:20:328:20:339 | [true] ( ... ) |
+| UseUseExplosion.rb:20:337:20:338 | 85 | UseUseExplosion.rb:20:329:20:338 | ... > ... |
+| UseUseExplosion.rb:20:341:20:3444 | then ... | UseUseExplosion.rb:20:325:20:3460 | if ... |
+| UseUseExplosion.rb:20:346:20:3444 | SSA phi read(self) | UseUseExplosion.rb:20:325:20:3460 | SSA phi read(self) |
+| UseUseExplosion.rb:20:346:20:3444 | SSA phi read(x) | UseUseExplosion.rb:20:325:20:3460 | SSA phi read(x) |
+| UseUseExplosion.rb:20:346:20:3444 | if ... | UseUseExplosion.rb:20:341:20:3444 | then ... |
+| UseUseExplosion.rb:20:350:20:354 | @prop | UseUseExplosion.rb:20:350:20:359 | ... > ... |
+| UseUseExplosion.rb:20:350:20:354 | [post] self | UseUseExplosion.rb:20:371:20:375 | self |
+| UseUseExplosion.rb:20:350:20:354 | [post] self | UseUseExplosion.rb:20:3435:20:3440 | self |
+| UseUseExplosion.rb:20:350:20:354 | self | UseUseExplosion.rb:20:371:20:375 | self |
+| UseUseExplosion.rb:20:350:20:354 | self | UseUseExplosion.rb:20:3435:20:3440 | self |
+| UseUseExplosion.rb:20:350:20:359 | ... > ... | UseUseExplosion.rb:20:349:20:360 | [false] ( ... ) |
+| UseUseExplosion.rb:20:350:20:359 | ... > ... | UseUseExplosion.rb:20:349:20:360 | [true] ( ... ) |
+| UseUseExplosion.rb:20:358:20:359 | 84 | UseUseExplosion.rb:20:350:20:359 | ... > ... |
+| UseUseExplosion.rb:20:362:20:3428 | then ... | UseUseExplosion.rb:20:346:20:3444 | if ... |
+| UseUseExplosion.rb:20:367:20:3428 | SSA phi read(self) | UseUseExplosion.rb:20:346:20:3444 | SSA phi read(self) |
+| UseUseExplosion.rb:20:367:20:3428 | SSA phi read(x) | UseUseExplosion.rb:20:346:20:3444 | SSA phi read(x) |
+| UseUseExplosion.rb:20:367:20:3428 | if ... | UseUseExplosion.rb:20:362:20:3428 | then ... |
+| UseUseExplosion.rb:20:371:20:375 | @prop | UseUseExplosion.rb:20:371:20:380 | ... > ... |
+| UseUseExplosion.rb:20:371:20:375 | [post] self | UseUseExplosion.rb:20:392:20:396 | self |
+| UseUseExplosion.rb:20:371:20:375 | [post] self | UseUseExplosion.rb:20:3419:20:3424 | self |
+| UseUseExplosion.rb:20:371:20:375 | self | UseUseExplosion.rb:20:392:20:396 | self |
+| UseUseExplosion.rb:20:371:20:375 | self | UseUseExplosion.rb:20:3419:20:3424 | self |
+| UseUseExplosion.rb:20:371:20:380 | ... > ... | UseUseExplosion.rb:20:370:20:381 | [false] ( ... ) |
+| UseUseExplosion.rb:20:371:20:380 | ... > ... | UseUseExplosion.rb:20:370:20:381 | [true] ( ... ) |
+| UseUseExplosion.rb:20:379:20:380 | 83 | UseUseExplosion.rb:20:371:20:380 | ... > ... |
+| UseUseExplosion.rb:20:383:20:3412 | then ... | UseUseExplosion.rb:20:367:20:3428 | if ... |
+| UseUseExplosion.rb:20:388:20:3412 | SSA phi read(self) | UseUseExplosion.rb:20:367:20:3428 | SSA phi read(self) |
+| UseUseExplosion.rb:20:388:20:3412 | SSA phi read(x) | UseUseExplosion.rb:20:367:20:3428 | SSA phi read(x) |
+| UseUseExplosion.rb:20:388:20:3412 | if ... | UseUseExplosion.rb:20:383:20:3412 | then ... |
+| UseUseExplosion.rb:20:392:20:396 | @prop | UseUseExplosion.rb:20:392:20:401 | ... > ... |
+| UseUseExplosion.rb:20:392:20:396 | [post] self | UseUseExplosion.rb:20:413:20:417 | self |
+| UseUseExplosion.rb:20:392:20:396 | [post] self | UseUseExplosion.rb:20:3403:20:3408 | self |
+| UseUseExplosion.rb:20:392:20:396 | self | UseUseExplosion.rb:20:413:20:417 | self |
+| UseUseExplosion.rb:20:392:20:396 | self | UseUseExplosion.rb:20:3403:20:3408 | self |
+| UseUseExplosion.rb:20:392:20:401 | ... > ... | UseUseExplosion.rb:20:391:20:402 | [false] ( ... ) |
+| UseUseExplosion.rb:20:392:20:401 | ... > ... | UseUseExplosion.rb:20:391:20:402 | [true] ( ... ) |
+| UseUseExplosion.rb:20:400:20:401 | 82 | UseUseExplosion.rb:20:392:20:401 | ... > ... |
+| UseUseExplosion.rb:20:404:20:3396 | then ... | UseUseExplosion.rb:20:388:20:3412 | if ... |
+| UseUseExplosion.rb:20:409:20:3396 | SSA phi read(self) | UseUseExplosion.rb:20:388:20:3412 | SSA phi read(self) |
+| UseUseExplosion.rb:20:409:20:3396 | SSA phi read(x) | UseUseExplosion.rb:20:388:20:3412 | SSA phi read(x) |
+| UseUseExplosion.rb:20:409:20:3396 | if ... | UseUseExplosion.rb:20:404:20:3396 | then ... |
+| UseUseExplosion.rb:20:413:20:417 | @prop | UseUseExplosion.rb:20:413:20:422 | ... > ... |
+| UseUseExplosion.rb:20:413:20:417 | [post] self | UseUseExplosion.rb:20:434:20:438 | self |
+| UseUseExplosion.rb:20:413:20:417 | [post] self | UseUseExplosion.rb:20:3387:20:3392 | self |
+| UseUseExplosion.rb:20:413:20:417 | self | UseUseExplosion.rb:20:434:20:438 | self |
+| UseUseExplosion.rb:20:413:20:417 | self | UseUseExplosion.rb:20:3387:20:3392 | self |
+| UseUseExplosion.rb:20:413:20:422 | ... > ... | UseUseExplosion.rb:20:412:20:423 | [false] ( ... ) |
+| UseUseExplosion.rb:20:413:20:422 | ... > ... | UseUseExplosion.rb:20:412:20:423 | [true] ( ... ) |
+| UseUseExplosion.rb:20:421:20:422 | 81 | UseUseExplosion.rb:20:413:20:422 | ... > ... |
+| UseUseExplosion.rb:20:425:20:3380 | then ... | UseUseExplosion.rb:20:409:20:3396 | if ... |
+| UseUseExplosion.rb:20:430:20:3380 | SSA phi read(self) | UseUseExplosion.rb:20:409:20:3396 | SSA phi read(self) |
+| UseUseExplosion.rb:20:430:20:3380 | SSA phi read(x) | UseUseExplosion.rb:20:409:20:3396 | SSA phi read(x) |
+| UseUseExplosion.rb:20:430:20:3380 | if ... | UseUseExplosion.rb:20:425:20:3380 | then ... |
+| UseUseExplosion.rb:20:434:20:438 | @prop | UseUseExplosion.rb:20:434:20:443 | ... > ... |
+| UseUseExplosion.rb:20:434:20:438 | [post] self | UseUseExplosion.rb:20:455:20:459 | self |
+| UseUseExplosion.rb:20:434:20:438 | [post] self | UseUseExplosion.rb:20:3371:20:3376 | self |
+| UseUseExplosion.rb:20:434:20:438 | self | UseUseExplosion.rb:20:455:20:459 | self |
+| UseUseExplosion.rb:20:434:20:438 | self | UseUseExplosion.rb:20:3371:20:3376 | self |
+| UseUseExplosion.rb:20:434:20:443 | ... > ... | UseUseExplosion.rb:20:433:20:444 | [false] ( ... ) |
+| UseUseExplosion.rb:20:434:20:443 | ... > ... | UseUseExplosion.rb:20:433:20:444 | [true] ( ... ) |
+| UseUseExplosion.rb:20:442:20:443 | 80 | UseUseExplosion.rb:20:434:20:443 | ... > ... |
+| UseUseExplosion.rb:20:446:20:3364 | then ... | UseUseExplosion.rb:20:430:20:3380 | if ... |
+| UseUseExplosion.rb:20:451:20:3364 | SSA phi read(self) | UseUseExplosion.rb:20:430:20:3380 | SSA phi read(self) |
+| UseUseExplosion.rb:20:451:20:3364 | SSA phi read(x) | UseUseExplosion.rb:20:430:20:3380 | SSA phi read(x) |
+| UseUseExplosion.rb:20:451:20:3364 | if ... | UseUseExplosion.rb:20:446:20:3364 | then ... |
+| UseUseExplosion.rb:20:455:20:459 | @prop | UseUseExplosion.rb:20:455:20:464 | ... > ... |
+| UseUseExplosion.rb:20:455:20:459 | [post] self | UseUseExplosion.rb:20:476:20:480 | self |
+| UseUseExplosion.rb:20:455:20:459 | [post] self | UseUseExplosion.rb:20:3355:20:3360 | self |
+| UseUseExplosion.rb:20:455:20:459 | self | UseUseExplosion.rb:20:476:20:480 | self |
+| UseUseExplosion.rb:20:455:20:459 | self | UseUseExplosion.rb:20:3355:20:3360 | self |
+| UseUseExplosion.rb:20:455:20:464 | ... > ... | UseUseExplosion.rb:20:454:20:465 | [false] ( ... ) |
+| UseUseExplosion.rb:20:455:20:464 | ... > ... | UseUseExplosion.rb:20:454:20:465 | [true] ( ... ) |
+| UseUseExplosion.rb:20:463:20:464 | 79 | UseUseExplosion.rb:20:455:20:464 | ... > ... |
+| UseUseExplosion.rb:20:467:20:3348 | then ... | UseUseExplosion.rb:20:451:20:3364 | if ... |
+| UseUseExplosion.rb:20:472:20:3348 | SSA phi read(self) | UseUseExplosion.rb:20:451:20:3364 | SSA phi read(self) |
+| UseUseExplosion.rb:20:472:20:3348 | SSA phi read(x) | UseUseExplosion.rb:20:451:20:3364 | SSA phi read(x) |
+| UseUseExplosion.rb:20:472:20:3348 | if ... | UseUseExplosion.rb:20:467:20:3348 | then ... |
+| UseUseExplosion.rb:20:476:20:480 | @prop | UseUseExplosion.rb:20:476:20:485 | ... > ... |
+| UseUseExplosion.rb:20:476:20:480 | [post] self | UseUseExplosion.rb:20:497:20:501 | self |
+| UseUseExplosion.rb:20:476:20:480 | [post] self | UseUseExplosion.rb:20:3339:20:3344 | self |
+| UseUseExplosion.rb:20:476:20:480 | self | UseUseExplosion.rb:20:497:20:501 | self |
+| UseUseExplosion.rb:20:476:20:480 | self | UseUseExplosion.rb:20:3339:20:3344 | self |
+| UseUseExplosion.rb:20:476:20:485 | ... > ... | UseUseExplosion.rb:20:475:20:486 | [false] ( ... ) |
+| UseUseExplosion.rb:20:476:20:485 | ... > ... | UseUseExplosion.rb:20:475:20:486 | [true] ( ... ) |
+| UseUseExplosion.rb:20:484:20:485 | 78 | UseUseExplosion.rb:20:476:20:485 | ... > ... |
+| UseUseExplosion.rb:20:488:20:3332 | then ... | UseUseExplosion.rb:20:472:20:3348 | if ... |
+| UseUseExplosion.rb:20:493:20:3332 | SSA phi read(self) | UseUseExplosion.rb:20:472:20:3348 | SSA phi read(self) |
+| UseUseExplosion.rb:20:493:20:3332 | SSA phi read(x) | UseUseExplosion.rb:20:472:20:3348 | SSA phi read(x) |
+| UseUseExplosion.rb:20:493:20:3332 | if ... | UseUseExplosion.rb:20:488:20:3332 | then ... |
+| UseUseExplosion.rb:20:497:20:501 | @prop | UseUseExplosion.rb:20:497:20:506 | ... > ... |
+| UseUseExplosion.rb:20:497:20:501 | [post] self | UseUseExplosion.rb:20:518:20:522 | self |
+| UseUseExplosion.rb:20:497:20:501 | [post] self | UseUseExplosion.rb:20:3323:20:3328 | self |
+| UseUseExplosion.rb:20:497:20:501 | self | UseUseExplosion.rb:20:518:20:522 | self |
+| UseUseExplosion.rb:20:497:20:501 | self | UseUseExplosion.rb:20:3323:20:3328 | self |
+| UseUseExplosion.rb:20:497:20:506 | ... > ... | UseUseExplosion.rb:20:496:20:507 | [false] ( ... ) |
+| UseUseExplosion.rb:20:497:20:506 | ... > ... | UseUseExplosion.rb:20:496:20:507 | [true] ( ... ) |
+| UseUseExplosion.rb:20:505:20:506 | 77 | UseUseExplosion.rb:20:497:20:506 | ... > ... |
+| UseUseExplosion.rb:20:509:20:3316 | then ... | UseUseExplosion.rb:20:493:20:3332 | if ... |
+| UseUseExplosion.rb:20:514:20:3316 | SSA phi read(self) | UseUseExplosion.rb:20:493:20:3332 | SSA phi read(self) |
+| UseUseExplosion.rb:20:514:20:3316 | SSA phi read(x) | UseUseExplosion.rb:20:493:20:3332 | SSA phi read(x) |
+| UseUseExplosion.rb:20:514:20:3316 | if ... | UseUseExplosion.rb:20:509:20:3316 | then ... |
+| UseUseExplosion.rb:20:518:20:522 | @prop | UseUseExplosion.rb:20:518:20:527 | ... > ... |
+| UseUseExplosion.rb:20:518:20:522 | [post] self | UseUseExplosion.rb:20:539:20:543 | self |
+| UseUseExplosion.rb:20:518:20:522 | [post] self | UseUseExplosion.rb:20:3307:20:3312 | self |
+| UseUseExplosion.rb:20:518:20:522 | self | UseUseExplosion.rb:20:539:20:543 | self |
+| UseUseExplosion.rb:20:518:20:522 | self | UseUseExplosion.rb:20:3307:20:3312 | self |
+| UseUseExplosion.rb:20:518:20:527 | ... > ... | UseUseExplosion.rb:20:517:20:528 | [false] ( ... ) |
+| UseUseExplosion.rb:20:518:20:527 | ... > ... | UseUseExplosion.rb:20:517:20:528 | [true] ( ... ) |
+| UseUseExplosion.rb:20:526:20:527 | 76 | UseUseExplosion.rb:20:518:20:527 | ... > ... |
+| UseUseExplosion.rb:20:530:20:3300 | then ... | UseUseExplosion.rb:20:514:20:3316 | if ... |
+| UseUseExplosion.rb:20:535:20:3300 | SSA phi read(self) | UseUseExplosion.rb:20:514:20:3316 | SSA phi read(self) |
+| UseUseExplosion.rb:20:535:20:3300 | SSA phi read(x) | UseUseExplosion.rb:20:514:20:3316 | SSA phi read(x) |
+| UseUseExplosion.rb:20:535:20:3300 | if ... | UseUseExplosion.rb:20:530:20:3300 | then ... |
+| UseUseExplosion.rb:20:539:20:543 | @prop | UseUseExplosion.rb:20:539:20:548 | ... > ... |
+| UseUseExplosion.rb:20:539:20:543 | [post] self | UseUseExplosion.rb:20:560:20:564 | self |
+| UseUseExplosion.rb:20:539:20:543 | [post] self | UseUseExplosion.rb:20:3291:20:3296 | self |
+| UseUseExplosion.rb:20:539:20:543 | self | UseUseExplosion.rb:20:560:20:564 | self |
+| UseUseExplosion.rb:20:539:20:543 | self | UseUseExplosion.rb:20:3291:20:3296 | self |
+| UseUseExplosion.rb:20:539:20:548 | ... > ... | UseUseExplosion.rb:20:538:20:549 | [false] ( ... ) |
+| UseUseExplosion.rb:20:539:20:548 | ... > ... | UseUseExplosion.rb:20:538:20:549 | [true] ( ... ) |
+| UseUseExplosion.rb:20:547:20:548 | 75 | UseUseExplosion.rb:20:539:20:548 | ... > ... |
+| UseUseExplosion.rb:20:551:20:3284 | then ... | UseUseExplosion.rb:20:535:20:3300 | if ... |
+| UseUseExplosion.rb:20:556:20:3284 | SSA phi read(self) | UseUseExplosion.rb:20:535:20:3300 | SSA phi read(self) |
+| UseUseExplosion.rb:20:556:20:3284 | SSA phi read(x) | UseUseExplosion.rb:20:535:20:3300 | SSA phi read(x) |
+| UseUseExplosion.rb:20:556:20:3284 | if ... | UseUseExplosion.rb:20:551:20:3284 | then ... |
+| UseUseExplosion.rb:20:560:20:564 | @prop | UseUseExplosion.rb:20:560:20:569 | ... > ... |
+| UseUseExplosion.rb:20:560:20:564 | [post] self | UseUseExplosion.rb:20:581:20:585 | self |
+| UseUseExplosion.rb:20:560:20:564 | [post] self | UseUseExplosion.rb:20:3275:20:3280 | self |
+| UseUseExplosion.rb:20:560:20:564 | self | UseUseExplosion.rb:20:581:20:585 | self |
+| UseUseExplosion.rb:20:560:20:564 | self | UseUseExplosion.rb:20:3275:20:3280 | self |
+| UseUseExplosion.rb:20:560:20:569 | ... > ... | UseUseExplosion.rb:20:559:20:570 | [false] ( ... ) |
+| UseUseExplosion.rb:20:560:20:569 | ... > ... | UseUseExplosion.rb:20:559:20:570 | [true] ( ... ) |
+| UseUseExplosion.rb:20:568:20:569 | 74 | UseUseExplosion.rb:20:560:20:569 | ... > ... |
+| UseUseExplosion.rb:20:572:20:3268 | then ... | UseUseExplosion.rb:20:556:20:3284 | if ... |
+| UseUseExplosion.rb:20:577:20:3268 | SSA phi read(self) | UseUseExplosion.rb:20:556:20:3284 | SSA phi read(self) |
+| UseUseExplosion.rb:20:577:20:3268 | SSA phi read(x) | UseUseExplosion.rb:20:556:20:3284 | SSA phi read(x) |
+| UseUseExplosion.rb:20:577:20:3268 | if ... | UseUseExplosion.rb:20:572:20:3268 | then ... |
+| UseUseExplosion.rb:20:581:20:585 | @prop | UseUseExplosion.rb:20:581:20:590 | ... > ... |
+| UseUseExplosion.rb:20:581:20:585 | [post] self | UseUseExplosion.rb:20:602:20:606 | self |
+| UseUseExplosion.rb:20:581:20:585 | [post] self | UseUseExplosion.rb:20:3259:20:3264 | self |
+| UseUseExplosion.rb:20:581:20:585 | self | UseUseExplosion.rb:20:602:20:606 | self |
+| UseUseExplosion.rb:20:581:20:585 | self | UseUseExplosion.rb:20:3259:20:3264 | self |
+| UseUseExplosion.rb:20:581:20:590 | ... > ... | UseUseExplosion.rb:20:580:20:591 | [false] ( ... ) |
+| UseUseExplosion.rb:20:581:20:590 | ... > ... | UseUseExplosion.rb:20:580:20:591 | [true] ( ... ) |
+| UseUseExplosion.rb:20:589:20:590 | 73 | UseUseExplosion.rb:20:581:20:590 | ... > ... |
+| UseUseExplosion.rb:20:593:20:3252 | then ... | UseUseExplosion.rb:20:577:20:3268 | if ... |
+| UseUseExplosion.rb:20:598:20:3252 | SSA phi read(self) | UseUseExplosion.rb:20:577:20:3268 | SSA phi read(self) |
+| UseUseExplosion.rb:20:598:20:3252 | SSA phi read(x) | UseUseExplosion.rb:20:577:20:3268 | SSA phi read(x) |
+| UseUseExplosion.rb:20:598:20:3252 | if ... | UseUseExplosion.rb:20:593:20:3252 | then ... |
+| UseUseExplosion.rb:20:602:20:606 | @prop | UseUseExplosion.rb:20:602:20:611 | ... > ... |
+| UseUseExplosion.rb:20:602:20:606 | [post] self | UseUseExplosion.rb:20:623:20:627 | self |
+| UseUseExplosion.rb:20:602:20:606 | [post] self | UseUseExplosion.rb:20:3243:20:3248 | self |
+| UseUseExplosion.rb:20:602:20:606 | self | UseUseExplosion.rb:20:623:20:627 | self |
+| UseUseExplosion.rb:20:602:20:606 | self | UseUseExplosion.rb:20:3243:20:3248 | self |
+| UseUseExplosion.rb:20:602:20:611 | ... > ... | UseUseExplosion.rb:20:601:20:612 | [false] ( ... ) |
+| UseUseExplosion.rb:20:602:20:611 | ... > ... | UseUseExplosion.rb:20:601:20:612 | [true] ( ... ) |
+| UseUseExplosion.rb:20:610:20:611 | 72 | UseUseExplosion.rb:20:602:20:611 | ... > ... |
+| UseUseExplosion.rb:20:614:20:3236 | then ... | UseUseExplosion.rb:20:598:20:3252 | if ... |
+| UseUseExplosion.rb:20:619:20:3236 | SSA phi read(self) | UseUseExplosion.rb:20:598:20:3252 | SSA phi read(self) |
+| UseUseExplosion.rb:20:619:20:3236 | SSA phi read(x) | UseUseExplosion.rb:20:598:20:3252 | SSA phi read(x) |
+| UseUseExplosion.rb:20:619:20:3236 | if ... | UseUseExplosion.rb:20:614:20:3236 | then ... |
+| UseUseExplosion.rb:20:623:20:627 | @prop | UseUseExplosion.rb:20:623:20:632 | ... > ... |
+| UseUseExplosion.rb:20:623:20:627 | [post] self | UseUseExplosion.rb:20:644:20:648 | self |
+| UseUseExplosion.rb:20:623:20:627 | [post] self | UseUseExplosion.rb:20:3227:20:3232 | self |
+| UseUseExplosion.rb:20:623:20:627 | self | UseUseExplosion.rb:20:644:20:648 | self |
+| UseUseExplosion.rb:20:623:20:627 | self | UseUseExplosion.rb:20:3227:20:3232 | self |
+| UseUseExplosion.rb:20:623:20:632 | ... > ... | UseUseExplosion.rb:20:622:20:633 | [false] ( ... ) |
+| UseUseExplosion.rb:20:623:20:632 | ... > ... | UseUseExplosion.rb:20:622:20:633 | [true] ( ... ) |
+| UseUseExplosion.rb:20:631:20:632 | 71 | UseUseExplosion.rb:20:623:20:632 | ... > ... |
+| UseUseExplosion.rb:20:635:20:3220 | then ... | UseUseExplosion.rb:20:619:20:3236 | if ... |
+| UseUseExplosion.rb:20:640:20:3220 | SSA phi read(self) | UseUseExplosion.rb:20:619:20:3236 | SSA phi read(self) |
+| UseUseExplosion.rb:20:640:20:3220 | SSA phi read(x) | UseUseExplosion.rb:20:619:20:3236 | SSA phi read(x) |
+| UseUseExplosion.rb:20:640:20:3220 | if ... | UseUseExplosion.rb:20:635:20:3220 | then ... |
+| UseUseExplosion.rb:20:644:20:648 | @prop | UseUseExplosion.rb:20:644:20:653 | ... > ... |
+| UseUseExplosion.rb:20:644:20:648 | [post] self | UseUseExplosion.rb:20:665:20:669 | self |
+| UseUseExplosion.rb:20:644:20:648 | [post] self | UseUseExplosion.rb:20:3211:20:3216 | self |
+| UseUseExplosion.rb:20:644:20:648 | self | UseUseExplosion.rb:20:665:20:669 | self |
+| UseUseExplosion.rb:20:644:20:648 | self | UseUseExplosion.rb:20:3211:20:3216 | self |
+| UseUseExplosion.rb:20:644:20:653 | ... > ... | UseUseExplosion.rb:20:643:20:654 | [false] ( ... ) |
+| UseUseExplosion.rb:20:644:20:653 | ... > ... | UseUseExplosion.rb:20:643:20:654 | [true] ( ... ) |
+| UseUseExplosion.rb:20:652:20:653 | 70 | UseUseExplosion.rb:20:644:20:653 | ... > ... |
+| UseUseExplosion.rb:20:656:20:3204 | then ... | UseUseExplosion.rb:20:640:20:3220 | if ... |
+| UseUseExplosion.rb:20:661:20:3204 | SSA phi read(self) | UseUseExplosion.rb:20:640:20:3220 | SSA phi read(self) |
+| UseUseExplosion.rb:20:661:20:3204 | SSA phi read(x) | UseUseExplosion.rb:20:640:20:3220 | SSA phi read(x) |
+| UseUseExplosion.rb:20:661:20:3204 | if ... | UseUseExplosion.rb:20:656:20:3204 | then ... |
+| UseUseExplosion.rb:20:665:20:669 | @prop | UseUseExplosion.rb:20:665:20:674 | ... > ... |
+| UseUseExplosion.rb:20:665:20:669 | [post] self | UseUseExplosion.rb:20:686:20:690 | self |
+| UseUseExplosion.rb:20:665:20:669 | [post] self | UseUseExplosion.rb:20:3195:20:3200 | self |
+| UseUseExplosion.rb:20:665:20:669 | self | UseUseExplosion.rb:20:686:20:690 | self |
+| UseUseExplosion.rb:20:665:20:669 | self | UseUseExplosion.rb:20:3195:20:3200 | self |
+| UseUseExplosion.rb:20:665:20:674 | ... > ... | UseUseExplosion.rb:20:664:20:675 | [false] ( ... ) |
+| UseUseExplosion.rb:20:665:20:674 | ... > ... | UseUseExplosion.rb:20:664:20:675 | [true] ( ... ) |
+| UseUseExplosion.rb:20:673:20:674 | 69 | UseUseExplosion.rb:20:665:20:674 | ... > ... |
+| UseUseExplosion.rb:20:677:20:3188 | then ... | UseUseExplosion.rb:20:661:20:3204 | if ... |
+| UseUseExplosion.rb:20:682:20:3188 | SSA phi read(self) | UseUseExplosion.rb:20:661:20:3204 | SSA phi read(self) |
+| UseUseExplosion.rb:20:682:20:3188 | SSA phi read(x) | UseUseExplosion.rb:20:661:20:3204 | SSA phi read(x) |
+| UseUseExplosion.rb:20:682:20:3188 | if ... | UseUseExplosion.rb:20:677:20:3188 | then ... |
+| UseUseExplosion.rb:20:686:20:690 | @prop | UseUseExplosion.rb:20:686:20:695 | ... > ... |
+| UseUseExplosion.rb:20:686:20:690 | [post] self | UseUseExplosion.rb:20:707:20:711 | self |
+| UseUseExplosion.rb:20:686:20:690 | [post] self | UseUseExplosion.rb:20:3179:20:3184 | self |
+| UseUseExplosion.rb:20:686:20:690 | self | UseUseExplosion.rb:20:707:20:711 | self |
+| UseUseExplosion.rb:20:686:20:690 | self | UseUseExplosion.rb:20:3179:20:3184 | self |
+| UseUseExplosion.rb:20:686:20:695 | ... > ... | UseUseExplosion.rb:20:685:20:696 | [false] ( ... ) |
+| UseUseExplosion.rb:20:686:20:695 | ... > ... | UseUseExplosion.rb:20:685:20:696 | [true] ( ... ) |
+| UseUseExplosion.rb:20:694:20:695 | 68 | UseUseExplosion.rb:20:686:20:695 | ... > ... |
+| UseUseExplosion.rb:20:698:20:3172 | then ... | UseUseExplosion.rb:20:682:20:3188 | if ... |
+| UseUseExplosion.rb:20:703:20:3172 | SSA phi read(self) | UseUseExplosion.rb:20:682:20:3188 | SSA phi read(self) |
+| UseUseExplosion.rb:20:703:20:3172 | SSA phi read(x) | UseUseExplosion.rb:20:682:20:3188 | SSA phi read(x) |
+| UseUseExplosion.rb:20:703:20:3172 | if ... | UseUseExplosion.rb:20:698:20:3172 | then ... |
+| UseUseExplosion.rb:20:707:20:711 | @prop | UseUseExplosion.rb:20:707:20:716 | ... > ... |
+| UseUseExplosion.rb:20:707:20:711 | [post] self | UseUseExplosion.rb:20:728:20:732 | self |
+| UseUseExplosion.rb:20:707:20:711 | [post] self | UseUseExplosion.rb:20:3163:20:3168 | self |
+| UseUseExplosion.rb:20:707:20:711 | self | UseUseExplosion.rb:20:728:20:732 | self |
+| UseUseExplosion.rb:20:707:20:711 | self | UseUseExplosion.rb:20:3163:20:3168 | self |
+| UseUseExplosion.rb:20:707:20:716 | ... > ... | UseUseExplosion.rb:20:706:20:717 | [false] ( ... ) |
+| UseUseExplosion.rb:20:707:20:716 | ... > ... | UseUseExplosion.rb:20:706:20:717 | [true] ( ... ) |
+| UseUseExplosion.rb:20:715:20:716 | 67 | UseUseExplosion.rb:20:707:20:716 | ... > ... |
+| UseUseExplosion.rb:20:719:20:3156 | then ... | UseUseExplosion.rb:20:703:20:3172 | if ... |
+| UseUseExplosion.rb:20:724:20:3156 | SSA phi read(self) | UseUseExplosion.rb:20:703:20:3172 | SSA phi read(self) |
+| UseUseExplosion.rb:20:724:20:3156 | SSA phi read(x) | UseUseExplosion.rb:20:703:20:3172 | SSA phi read(x) |
+| UseUseExplosion.rb:20:724:20:3156 | if ... | UseUseExplosion.rb:20:719:20:3156 | then ... |
+| UseUseExplosion.rb:20:728:20:732 | @prop | UseUseExplosion.rb:20:728:20:737 | ... > ... |
+| UseUseExplosion.rb:20:728:20:732 | [post] self | UseUseExplosion.rb:20:749:20:753 | self |
+| UseUseExplosion.rb:20:728:20:732 | [post] self | UseUseExplosion.rb:20:3147:20:3152 | self |
+| UseUseExplosion.rb:20:728:20:732 | self | UseUseExplosion.rb:20:749:20:753 | self |
+| UseUseExplosion.rb:20:728:20:732 | self | UseUseExplosion.rb:20:3147:20:3152 | self |
+| UseUseExplosion.rb:20:728:20:737 | ... > ... | UseUseExplosion.rb:20:727:20:738 | [false] ( ... ) |
+| UseUseExplosion.rb:20:728:20:737 | ... > ... | UseUseExplosion.rb:20:727:20:738 | [true] ( ... ) |
+| UseUseExplosion.rb:20:736:20:737 | 66 | UseUseExplosion.rb:20:728:20:737 | ... > ... |
+| UseUseExplosion.rb:20:740:20:3140 | then ... | UseUseExplosion.rb:20:724:20:3156 | if ... |
+| UseUseExplosion.rb:20:745:20:3140 | SSA phi read(self) | UseUseExplosion.rb:20:724:20:3156 | SSA phi read(self) |
+| UseUseExplosion.rb:20:745:20:3140 | SSA phi read(x) | UseUseExplosion.rb:20:724:20:3156 | SSA phi read(x) |
+| UseUseExplosion.rb:20:745:20:3140 | if ... | UseUseExplosion.rb:20:740:20:3140 | then ... |
+| UseUseExplosion.rb:20:749:20:753 | @prop | UseUseExplosion.rb:20:749:20:758 | ... > ... |
+| UseUseExplosion.rb:20:749:20:753 | [post] self | UseUseExplosion.rb:20:770:20:774 | self |
+| UseUseExplosion.rb:20:749:20:753 | [post] self | UseUseExplosion.rb:20:3131:20:3136 | self |
+| UseUseExplosion.rb:20:749:20:753 | self | UseUseExplosion.rb:20:770:20:774 | self |
+| UseUseExplosion.rb:20:749:20:753 | self | UseUseExplosion.rb:20:3131:20:3136 | self |
+| UseUseExplosion.rb:20:749:20:758 | ... > ... | UseUseExplosion.rb:20:748:20:759 | [false] ( ... ) |
+| UseUseExplosion.rb:20:749:20:758 | ... > ... | UseUseExplosion.rb:20:748:20:759 | [true] ( ... ) |
+| UseUseExplosion.rb:20:757:20:758 | 65 | UseUseExplosion.rb:20:749:20:758 | ... > ... |
+| UseUseExplosion.rb:20:761:20:3124 | then ... | UseUseExplosion.rb:20:745:20:3140 | if ... |
+| UseUseExplosion.rb:20:766:20:3124 | SSA phi read(self) | UseUseExplosion.rb:20:745:20:3140 | SSA phi read(self) |
+| UseUseExplosion.rb:20:766:20:3124 | SSA phi read(x) | UseUseExplosion.rb:20:745:20:3140 | SSA phi read(x) |
+| UseUseExplosion.rb:20:766:20:3124 | if ... | UseUseExplosion.rb:20:761:20:3124 | then ... |
+| UseUseExplosion.rb:20:770:20:774 | @prop | UseUseExplosion.rb:20:770:20:779 | ... > ... |
+| UseUseExplosion.rb:20:770:20:774 | [post] self | UseUseExplosion.rb:20:791:20:795 | self |
+| UseUseExplosion.rb:20:770:20:774 | [post] self | UseUseExplosion.rb:20:3115:20:3120 | self |
+| UseUseExplosion.rb:20:770:20:774 | self | UseUseExplosion.rb:20:791:20:795 | self |
+| UseUseExplosion.rb:20:770:20:774 | self | UseUseExplosion.rb:20:3115:20:3120 | self |
+| UseUseExplosion.rb:20:770:20:779 | ... > ... | UseUseExplosion.rb:20:769:20:780 | [false] ( ... ) |
+| UseUseExplosion.rb:20:770:20:779 | ... > ... | UseUseExplosion.rb:20:769:20:780 | [true] ( ... ) |
+| UseUseExplosion.rb:20:778:20:779 | 64 | UseUseExplosion.rb:20:770:20:779 | ... > ... |
+| UseUseExplosion.rb:20:782:20:3108 | then ... | UseUseExplosion.rb:20:766:20:3124 | if ... |
+| UseUseExplosion.rb:20:787:20:3108 | SSA phi read(self) | UseUseExplosion.rb:20:766:20:3124 | SSA phi read(self) |
+| UseUseExplosion.rb:20:787:20:3108 | SSA phi read(x) | UseUseExplosion.rb:20:766:20:3124 | SSA phi read(x) |
+| UseUseExplosion.rb:20:787:20:3108 | if ... | UseUseExplosion.rb:20:782:20:3108 | then ... |
+| UseUseExplosion.rb:20:791:20:795 | @prop | UseUseExplosion.rb:20:791:20:800 | ... > ... |
+| UseUseExplosion.rb:20:791:20:795 | [post] self | UseUseExplosion.rb:20:812:20:816 | self |
+| UseUseExplosion.rb:20:791:20:795 | [post] self | UseUseExplosion.rb:20:3099:20:3104 | self |
+| UseUseExplosion.rb:20:791:20:795 | self | UseUseExplosion.rb:20:812:20:816 | self |
+| UseUseExplosion.rb:20:791:20:795 | self | UseUseExplosion.rb:20:3099:20:3104 | self |
+| UseUseExplosion.rb:20:791:20:800 | ... > ... | UseUseExplosion.rb:20:790:20:801 | [false] ( ... ) |
+| UseUseExplosion.rb:20:791:20:800 | ... > ... | UseUseExplosion.rb:20:790:20:801 | [true] ( ... ) |
+| UseUseExplosion.rb:20:799:20:800 | 63 | UseUseExplosion.rb:20:791:20:800 | ... > ... |
+| UseUseExplosion.rb:20:803:20:3092 | then ... | UseUseExplosion.rb:20:787:20:3108 | if ... |
+| UseUseExplosion.rb:20:808:20:3092 | SSA phi read(self) | UseUseExplosion.rb:20:787:20:3108 | SSA phi read(self) |
+| UseUseExplosion.rb:20:808:20:3092 | SSA phi read(x) | UseUseExplosion.rb:20:787:20:3108 | SSA phi read(x) |
+| UseUseExplosion.rb:20:808:20:3092 | if ... | UseUseExplosion.rb:20:803:20:3092 | then ... |
+| UseUseExplosion.rb:20:812:20:816 | @prop | UseUseExplosion.rb:20:812:20:821 | ... > ... |
+| UseUseExplosion.rb:20:812:20:816 | [post] self | UseUseExplosion.rb:20:833:20:837 | self |
+| UseUseExplosion.rb:20:812:20:816 | [post] self | UseUseExplosion.rb:20:3083:20:3088 | self |
+| UseUseExplosion.rb:20:812:20:816 | self | UseUseExplosion.rb:20:833:20:837 | self |
+| UseUseExplosion.rb:20:812:20:816 | self | UseUseExplosion.rb:20:3083:20:3088 | self |
+| UseUseExplosion.rb:20:812:20:821 | ... > ... | UseUseExplosion.rb:20:811:20:822 | [false] ( ... ) |
+| UseUseExplosion.rb:20:812:20:821 | ... > ... | UseUseExplosion.rb:20:811:20:822 | [true] ( ... ) |
+| UseUseExplosion.rb:20:820:20:821 | 62 | UseUseExplosion.rb:20:812:20:821 | ... > ... |
+| UseUseExplosion.rb:20:824:20:3076 | then ... | UseUseExplosion.rb:20:808:20:3092 | if ... |
+| UseUseExplosion.rb:20:829:20:3076 | SSA phi read(self) | UseUseExplosion.rb:20:808:20:3092 | SSA phi read(self) |
+| UseUseExplosion.rb:20:829:20:3076 | SSA phi read(x) | UseUseExplosion.rb:20:808:20:3092 | SSA phi read(x) |
+| UseUseExplosion.rb:20:829:20:3076 | if ... | UseUseExplosion.rb:20:824:20:3076 | then ... |
+| UseUseExplosion.rb:20:833:20:837 | @prop | UseUseExplosion.rb:20:833:20:842 | ... > ... |
+| UseUseExplosion.rb:20:833:20:837 | [post] self | UseUseExplosion.rb:20:854:20:858 | self |
+| UseUseExplosion.rb:20:833:20:837 | [post] self | UseUseExplosion.rb:20:3067:20:3072 | self |
+| UseUseExplosion.rb:20:833:20:837 | self | UseUseExplosion.rb:20:854:20:858 | self |
+| UseUseExplosion.rb:20:833:20:837 | self | UseUseExplosion.rb:20:3067:20:3072 | self |
+| UseUseExplosion.rb:20:833:20:842 | ... > ... | UseUseExplosion.rb:20:832:20:843 | [false] ( ... ) |
+| UseUseExplosion.rb:20:833:20:842 | ... > ... | UseUseExplosion.rb:20:832:20:843 | [true] ( ... ) |
+| UseUseExplosion.rb:20:841:20:842 | 61 | UseUseExplosion.rb:20:833:20:842 | ... > ... |
+| UseUseExplosion.rb:20:845:20:3060 | then ... | UseUseExplosion.rb:20:829:20:3076 | if ... |
+| UseUseExplosion.rb:20:850:20:3060 | SSA phi read(self) | UseUseExplosion.rb:20:829:20:3076 | SSA phi read(self) |
+| UseUseExplosion.rb:20:850:20:3060 | SSA phi read(x) | UseUseExplosion.rb:20:829:20:3076 | SSA phi read(x) |
+| UseUseExplosion.rb:20:850:20:3060 | if ... | UseUseExplosion.rb:20:845:20:3060 | then ... |
+| UseUseExplosion.rb:20:854:20:858 | @prop | UseUseExplosion.rb:20:854:20:863 | ... > ... |
+| UseUseExplosion.rb:20:854:20:858 | [post] self | UseUseExplosion.rb:20:875:20:879 | self |
+| UseUseExplosion.rb:20:854:20:858 | [post] self | UseUseExplosion.rb:20:3051:20:3056 | self |
+| UseUseExplosion.rb:20:854:20:858 | self | UseUseExplosion.rb:20:875:20:879 | self |
+| UseUseExplosion.rb:20:854:20:858 | self | UseUseExplosion.rb:20:3051:20:3056 | self |
+| UseUseExplosion.rb:20:854:20:863 | ... > ... | UseUseExplosion.rb:20:853:20:864 | [false] ( ... ) |
+| UseUseExplosion.rb:20:854:20:863 | ... > ... | UseUseExplosion.rb:20:853:20:864 | [true] ( ... ) |
+| UseUseExplosion.rb:20:862:20:863 | 60 | UseUseExplosion.rb:20:854:20:863 | ... > ... |
+| UseUseExplosion.rb:20:866:20:3044 | then ... | UseUseExplosion.rb:20:850:20:3060 | if ... |
+| UseUseExplosion.rb:20:871:20:3044 | SSA phi read(self) | UseUseExplosion.rb:20:850:20:3060 | SSA phi read(self) |
+| UseUseExplosion.rb:20:871:20:3044 | SSA phi read(x) | UseUseExplosion.rb:20:850:20:3060 | SSA phi read(x) |
+| UseUseExplosion.rb:20:871:20:3044 | if ... | UseUseExplosion.rb:20:866:20:3044 | then ... |
+| UseUseExplosion.rb:20:875:20:879 | @prop | UseUseExplosion.rb:20:875:20:884 | ... > ... |
+| UseUseExplosion.rb:20:875:20:879 | [post] self | UseUseExplosion.rb:20:896:20:900 | self |
+| UseUseExplosion.rb:20:875:20:879 | [post] self | UseUseExplosion.rb:20:3035:20:3040 | self |
+| UseUseExplosion.rb:20:875:20:879 | self | UseUseExplosion.rb:20:896:20:900 | self |
+| UseUseExplosion.rb:20:875:20:879 | self | UseUseExplosion.rb:20:3035:20:3040 | self |
+| UseUseExplosion.rb:20:875:20:884 | ... > ... | UseUseExplosion.rb:20:874:20:885 | [false] ( ... ) |
+| UseUseExplosion.rb:20:875:20:884 | ... > ... | UseUseExplosion.rb:20:874:20:885 | [true] ( ... ) |
+| UseUseExplosion.rb:20:883:20:884 | 59 | UseUseExplosion.rb:20:875:20:884 | ... > ... |
+| UseUseExplosion.rb:20:887:20:3028 | then ... | UseUseExplosion.rb:20:871:20:3044 | if ... |
+| UseUseExplosion.rb:20:892:20:3028 | SSA phi read(self) | UseUseExplosion.rb:20:871:20:3044 | SSA phi read(self) |
+| UseUseExplosion.rb:20:892:20:3028 | SSA phi read(x) | UseUseExplosion.rb:20:871:20:3044 | SSA phi read(x) |
+| UseUseExplosion.rb:20:892:20:3028 | if ... | UseUseExplosion.rb:20:887:20:3028 | then ... |
+| UseUseExplosion.rb:20:896:20:900 | @prop | UseUseExplosion.rb:20:896:20:905 | ... > ... |
+| UseUseExplosion.rb:20:896:20:900 | [post] self | UseUseExplosion.rb:20:917:20:921 | self |
+| UseUseExplosion.rb:20:896:20:900 | [post] self | UseUseExplosion.rb:20:3019:20:3024 | self |
+| UseUseExplosion.rb:20:896:20:900 | self | UseUseExplosion.rb:20:917:20:921 | self |
+| UseUseExplosion.rb:20:896:20:900 | self | UseUseExplosion.rb:20:3019:20:3024 | self |
+| UseUseExplosion.rb:20:896:20:905 | ... > ... | UseUseExplosion.rb:20:895:20:906 | [false] ( ... ) |
+| UseUseExplosion.rb:20:896:20:905 | ... > ... | UseUseExplosion.rb:20:895:20:906 | [true] ( ... ) |
+| UseUseExplosion.rb:20:904:20:905 | 58 | UseUseExplosion.rb:20:896:20:905 | ... > ... |
+| UseUseExplosion.rb:20:908:20:3012 | then ... | UseUseExplosion.rb:20:892:20:3028 | if ... |
+| UseUseExplosion.rb:20:913:20:3012 | SSA phi read(self) | UseUseExplosion.rb:20:892:20:3028 | SSA phi read(self) |
+| UseUseExplosion.rb:20:913:20:3012 | SSA phi read(x) | UseUseExplosion.rb:20:892:20:3028 | SSA phi read(x) |
+| UseUseExplosion.rb:20:913:20:3012 | if ... | UseUseExplosion.rb:20:908:20:3012 | then ... |
+| UseUseExplosion.rb:20:917:20:921 | @prop | UseUseExplosion.rb:20:917:20:926 | ... > ... |
+| UseUseExplosion.rb:20:917:20:921 | [post] self | UseUseExplosion.rb:20:938:20:942 | self |
+| UseUseExplosion.rb:20:917:20:921 | [post] self | UseUseExplosion.rb:20:3003:20:3008 | self |
+| UseUseExplosion.rb:20:917:20:921 | self | UseUseExplosion.rb:20:938:20:942 | self |
+| UseUseExplosion.rb:20:917:20:921 | self | UseUseExplosion.rb:20:3003:20:3008 | self |
+| UseUseExplosion.rb:20:917:20:926 | ... > ... | UseUseExplosion.rb:20:916:20:927 | [false] ( ... ) |
+| UseUseExplosion.rb:20:917:20:926 | ... > ... | UseUseExplosion.rb:20:916:20:927 | [true] ( ... ) |
+| UseUseExplosion.rb:20:925:20:926 | 57 | UseUseExplosion.rb:20:917:20:926 | ... > ... |
+| UseUseExplosion.rb:20:929:20:2996 | then ... | UseUseExplosion.rb:20:913:20:3012 | if ... |
+| UseUseExplosion.rb:20:934:20:2996 | SSA phi read(self) | UseUseExplosion.rb:20:913:20:3012 | SSA phi read(self) |
+| UseUseExplosion.rb:20:934:20:2996 | SSA phi read(x) | UseUseExplosion.rb:20:913:20:3012 | SSA phi read(x) |
+| UseUseExplosion.rb:20:934:20:2996 | if ... | UseUseExplosion.rb:20:929:20:2996 | then ... |
+| UseUseExplosion.rb:20:938:20:942 | @prop | UseUseExplosion.rb:20:938:20:947 | ... > ... |
+| UseUseExplosion.rb:20:938:20:942 | [post] self | UseUseExplosion.rb:20:959:20:963 | self |
+| UseUseExplosion.rb:20:938:20:942 | [post] self | UseUseExplosion.rb:20:2987:20:2992 | self |
+| UseUseExplosion.rb:20:938:20:942 | self | UseUseExplosion.rb:20:959:20:963 | self |
+| UseUseExplosion.rb:20:938:20:942 | self | UseUseExplosion.rb:20:2987:20:2992 | self |
+| UseUseExplosion.rb:20:938:20:947 | ... > ... | UseUseExplosion.rb:20:937:20:948 | [false] ( ... ) |
+| UseUseExplosion.rb:20:938:20:947 | ... > ... | UseUseExplosion.rb:20:937:20:948 | [true] ( ... ) |
+| UseUseExplosion.rb:20:946:20:947 | 56 | UseUseExplosion.rb:20:938:20:947 | ... > ... |
+| UseUseExplosion.rb:20:950:20:2980 | then ... | UseUseExplosion.rb:20:934:20:2996 | if ... |
+| UseUseExplosion.rb:20:955:20:2980 | SSA phi read(self) | UseUseExplosion.rb:20:934:20:2996 | SSA phi read(self) |
+| UseUseExplosion.rb:20:955:20:2980 | SSA phi read(x) | UseUseExplosion.rb:20:934:20:2996 | SSA phi read(x) |
+| UseUseExplosion.rb:20:955:20:2980 | if ... | UseUseExplosion.rb:20:950:20:2980 | then ... |
+| UseUseExplosion.rb:20:959:20:963 | @prop | UseUseExplosion.rb:20:959:20:968 | ... > ... |
+| UseUseExplosion.rb:20:959:20:963 | [post] self | UseUseExplosion.rb:20:980:20:984 | self |
+| UseUseExplosion.rb:20:959:20:963 | [post] self | UseUseExplosion.rb:20:2971:20:2976 | self |
+| UseUseExplosion.rb:20:959:20:963 | self | UseUseExplosion.rb:20:980:20:984 | self |
+| UseUseExplosion.rb:20:959:20:963 | self | UseUseExplosion.rb:20:2971:20:2976 | self |
+| UseUseExplosion.rb:20:959:20:968 | ... > ... | UseUseExplosion.rb:20:958:20:969 | [false] ( ... ) |
+| UseUseExplosion.rb:20:959:20:968 | ... > ... | UseUseExplosion.rb:20:958:20:969 | [true] ( ... ) |
+| UseUseExplosion.rb:20:967:20:968 | 55 | UseUseExplosion.rb:20:959:20:968 | ... > ... |
+| UseUseExplosion.rb:20:971:20:2964 | then ... | UseUseExplosion.rb:20:955:20:2980 | if ... |
+| UseUseExplosion.rb:20:976:20:2964 | SSA phi read(self) | UseUseExplosion.rb:20:955:20:2980 | SSA phi read(self) |
+| UseUseExplosion.rb:20:976:20:2964 | SSA phi read(x) | UseUseExplosion.rb:20:955:20:2980 | SSA phi read(x) |
+| UseUseExplosion.rb:20:976:20:2964 | if ... | UseUseExplosion.rb:20:971:20:2964 | then ... |
+| UseUseExplosion.rb:20:980:20:984 | @prop | UseUseExplosion.rb:20:980:20:989 | ... > ... |
+| UseUseExplosion.rb:20:980:20:984 | [post] self | UseUseExplosion.rb:20:1001:20:1005 | self |
+| UseUseExplosion.rb:20:980:20:984 | [post] self | UseUseExplosion.rb:20:2955:20:2960 | self |
+| UseUseExplosion.rb:20:980:20:984 | self | UseUseExplosion.rb:20:1001:20:1005 | self |
+| UseUseExplosion.rb:20:980:20:984 | self | UseUseExplosion.rb:20:2955:20:2960 | self |
+| UseUseExplosion.rb:20:980:20:989 | ... > ... | UseUseExplosion.rb:20:979:20:990 | [false] ( ... ) |
+| UseUseExplosion.rb:20:980:20:989 | ... > ... | UseUseExplosion.rb:20:979:20:990 | [true] ( ... ) |
+| UseUseExplosion.rb:20:988:20:989 | 54 | UseUseExplosion.rb:20:980:20:989 | ... > ... |
+| UseUseExplosion.rb:20:992:20:2948 | then ... | UseUseExplosion.rb:20:976:20:2964 | if ... |
+| UseUseExplosion.rb:20:997:20:2948 | SSA phi read(self) | UseUseExplosion.rb:20:976:20:2964 | SSA phi read(self) |
+| UseUseExplosion.rb:20:997:20:2948 | SSA phi read(x) | UseUseExplosion.rb:20:976:20:2964 | SSA phi read(x) |
+| UseUseExplosion.rb:20:997:20:2948 | if ... | UseUseExplosion.rb:20:992:20:2948 | then ... |
+| UseUseExplosion.rb:20:1001:20:1005 | @prop | UseUseExplosion.rb:20:1001:20:1010 | ... > ... |
+| UseUseExplosion.rb:20:1001:20:1005 | [post] self | UseUseExplosion.rb:20:1022:20:1026 | self |
+| UseUseExplosion.rb:20:1001:20:1005 | [post] self | UseUseExplosion.rb:20:2939:20:2944 | self |
+| UseUseExplosion.rb:20:1001:20:1005 | self | UseUseExplosion.rb:20:1022:20:1026 | self |
+| UseUseExplosion.rb:20:1001:20:1005 | self | UseUseExplosion.rb:20:2939:20:2944 | self |
+| UseUseExplosion.rb:20:1001:20:1010 | ... > ... | UseUseExplosion.rb:20:1000:20:1011 | [false] ( ... ) |
+| UseUseExplosion.rb:20:1001:20:1010 | ... > ... | UseUseExplosion.rb:20:1000:20:1011 | [true] ( ... ) |
+| UseUseExplosion.rb:20:1009:20:1010 | 53 | UseUseExplosion.rb:20:1001:20:1010 | ... > ... |
+| UseUseExplosion.rb:20:1013:20:2932 | then ... | UseUseExplosion.rb:20:997:20:2948 | if ... |
+| UseUseExplosion.rb:20:1018:20:2932 | SSA phi read(self) | UseUseExplosion.rb:20:997:20:2948 | SSA phi read(self) |
+| UseUseExplosion.rb:20:1018:20:2932 | SSA phi read(x) | UseUseExplosion.rb:20:997:20:2948 | SSA phi read(x) |
+| UseUseExplosion.rb:20:1018:20:2932 | if ... | UseUseExplosion.rb:20:1013:20:2932 | then ... |
+| UseUseExplosion.rb:20:1022:20:1026 | @prop | UseUseExplosion.rb:20:1022:20:1031 | ... > ... |
+| UseUseExplosion.rb:20:1022:20:1026 | [post] self | UseUseExplosion.rb:20:1043:20:1047 | self |
+| UseUseExplosion.rb:20:1022:20:1026 | [post] self | UseUseExplosion.rb:20:2923:20:2928 | self |
+| UseUseExplosion.rb:20:1022:20:1026 | self | UseUseExplosion.rb:20:1043:20:1047 | self |
+| UseUseExplosion.rb:20:1022:20:1026 | self | UseUseExplosion.rb:20:2923:20:2928 | self |
+| UseUseExplosion.rb:20:1022:20:1031 | ... > ... | UseUseExplosion.rb:20:1021:20:1032 | [false] ( ... ) |
+| UseUseExplosion.rb:20:1022:20:1031 | ... > ... | UseUseExplosion.rb:20:1021:20:1032 | [true] ( ... ) |
+| UseUseExplosion.rb:20:1030:20:1031 | 52 | UseUseExplosion.rb:20:1022:20:1031 | ... > ... |
+| UseUseExplosion.rb:20:1034:20:2916 | then ... | UseUseExplosion.rb:20:1018:20:2932 | if ... |
+| UseUseExplosion.rb:20:1039:20:2916 | SSA phi read(self) | UseUseExplosion.rb:20:1018:20:2932 | SSA phi read(self) |
+| UseUseExplosion.rb:20:1039:20:2916 | SSA phi read(x) | UseUseExplosion.rb:20:1018:20:2932 | SSA phi read(x) |
+| UseUseExplosion.rb:20:1039:20:2916 | if ... | UseUseExplosion.rb:20:1034:20:2916 | then ... |
+| UseUseExplosion.rb:20:1043:20:1047 | @prop | UseUseExplosion.rb:20:1043:20:1052 | ... > ... |
+| UseUseExplosion.rb:20:1043:20:1047 | [post] self | UseUseExplosion.rb:20:1064:20:1068 | self |
+| UseUseExplosion.rb:20:1043:20:1047 | [post] self | UseUseExplosion.rb:20:2907:20:2912 | self |
+| UseUseExplosion.rb:20:1043:20:1047 | self | UseUseExplosion.rb:20:1064:20:1068 | self |
+| UseUseExplosion.rb:20:1043:20:1047 | self | UseUseExplosion.rb:20:2907:20:2912 | self |
+| UseUseExplosion.rb:20:1043:20:1052 | ... > ... | UseUseExplosion.rb:20:1042:20:1053 | [false] ( ... ) |
+| UseUseExplosion.rb:20:1043:20:1052 | ... > ... | UseUseExplosion.rb:20:1042:20:1053 | [true] ( ... ) |
+| UseUseExplosion.rb:20:1051:20:1052 | 51 | UseUseExplosion.rb:20:1043:20:1052 | ... > ... |
+| UseUseExplosion.rb:20:1055:20:2900 | then ... | UseUseExplosion.rb:20:1039:20:2916 | if ... |
+| UseUseExplosion.rb:20:1060:20:2900 | SSA phi read(self) | UseUseExplosion.rb:20:1039:20:2916 | SSA phi read(self) |
+| UseUseExplosion.rb:20:1060:20:2900 | SSA phi read(x) | UseUseExplosion.rb:20:1039:20:2916 | SSA phi read(x) |
+| UseUseExplosion.rb:20:1060:20:2900 | if ... | UseUseExplosion.rb:20:1055:20:2900 | then ... |
+| UseUseExplosion.rb:20:1064:20:1068 | @prop | UseUseExplosion.rb:20:1064:20:1073 | ... > ... |
+| UseUseExplosion.rb:20:1064:20:1068 | [post] self | UseUseExplosion.rb:20:1085:20:1089 | self |
+| UseUseExplosion.rb:20:1064:20:1068 | [post] self | UseUseExplosion.rb:20:2891:20:2896 | self |
+| UseUseExplosion.rb:20:1064:20:1068 | self | UseUseExplosion.rb:20:1085:20:1089 | self |
+| UseUseExplosion.rb:20:1064:20:1068 | self | UseUseExplosion.rb:20:2891:20:2896 | self |
+| UseUseExplosion.rb:20:1064:20:1073 | ... > ... | UseUseExplosion.rb:20:1063:20:1074 | [false] ( ... ) |
+| UseUseExplosion.rb:20:1064:20:1073 | ... > ... | UseUseExplosion.rb:20:1063:20:1074 | [true] ( ... ) |
+| UseUseExplosion.rb:20:1072:20:1073 | 50 | UseUseExplosion.rb:20:1064:20:1073 | ... > ... |
+| UseUseExplosion.rb:20:1076:20:2884 | then ... | UseUseExplosion.rb:20:1060:20:2900 | if ... |
+| UseUseExplosion.rb:20:1081:20:2884 | SSA phi read(self) | UseUseExplosion.rb:20:1060:20:2900 | SSA phi read(self) |
+| UseUseExplosion.rb:20:1081:20:2884 | SSA phi read(x) | UseUseExplosion.rb:20:1060:20:2900 | SSA phi read(x) |
+| UseUseExplosion.rb:20:1081:20:2884 | if ... | UseUseExplosion.rb:20:1076:20:2884 | then ... |
+| UseUseExplosion.rb:20:1085:20:1089 | @prop | UseUseExplosion.rb:20:1085:20:1094 | ... > ... |
+| UseUseExplosion.rb:20:1085:20:1089 | [post] self | UseUseExplosion.rb:20:1106:20:1110 | self |
+| UseUseExplosion.rb:20:1085:20:1089 | [post] self | UseUseExplosion.rb:20:2875:20:2880 | self |
+| UseUseExplosion.rb:20:1085:20:1089 | self | UseUseExplosion.rb:20:1106:20:1110 | self |
+| UseUseExplosion.rb:20:1085:20:1089 | self | UseUseExplosion.rb:20:2875:20:2880 | self |
+| UseUseExplosion.rb:20:1085:20:1094 | ... > ... | UseUseExplosion.rb:20:1084:20:1095 | [false] ( ... ) |
+| UseUseExplosion.rb:20:1085:20:1094 | ... > ... | UseUseExplosion.rb:20:1084:20:1095 | [true] ( ... ) |
+| UseUseExplosion.rb:20:1093:20:1094 | 49 | UseUseExplosion.rb:20:1085:20:1094 | ... > ... |
+| UseUseExplosion.rb:20:1097:20:2868 | then ... | UseUseExplosion.rb:20:1081:20:2884 | if ... |
+| UseUseExplosion.rb:20:1102:20:2868 | SSA phi read(self) | UseUseExplosion.rb:20:1081:20:2884 | SSA phi read(self) |
+| UseUseExplosion.rb:20:1102:20:2868 | SSA phi read(x) | UseUseExplosion.rb:20:1081:20:2884 | SSA phi read(x) |
+| UseUseExplosion.rb:20:1102:20:2868 | if ... | UseUseExplosion.rb:20:1097:20:2868 | then ... |
+| UseUseExplosion.rb:20:1106:20:1110 | @prop | UseUseExplosion.rb:20:1106:20:1115 | ... > ... |
+| UseUseExplosion.rb:20:1106:20:1110 | [post] self | UseUseExplosion.rb:20:1127:20:1131 | self |
+| UseUseExplosion.rb:20:1106:20:1110 | [post] self | UseUseExplosion.rb:20:2859:20:2864 | self |
+| UseUseExplosion.rb:20:1106:20:1110 | self | UseUseExplosion.rb:20:1127:20:1131 | self |
+| UseUseExplosion.rb:20:1106:20:1110 | self | UseUseExplosion.rb:20:2859:20:2864 | self |
+| UseUseExplosion.rb:20:1106:20:1115 | ... > ... | UseUseExplosion.rb:20:1105:20:1116 | [false] ( ... ) |
+| UseUseExplosion.rb:20:1106:20:1115 | ... > ... | UseUseExplosion.rb:20:1105:20:1116 | [true] ( ... ) |
+| UseUseExplosion.rb:20:1114:20:1115 | 48 | UseUseExplosion.rb:20:1106:20:1115 | ... > ... |
+| UseUseExplosion.rb:20:1118:20:2852 | then ... | UseUseExplosion.rb:20:1102:20:2868 | if ... |
+| UseUseExplosion.rb:20:1123:20:2852 | SSA phi read(self) | UseUseExplosion.rb:20:1102:20:2868 | SSA phi read(self) |
+| UseUseExplosion.rb:20:1123:20:2852 | SSA phi read(x) | UseUseExplosion.rb:20:1102:20:2868 | SSA phi read(x) |
+| UseUseExplosion.rb:20:1123:20:2852 | if ... | UseUseExplosion.rb:20:1118:20:2852 | then ... |
+| UseUseExplosion.rb:20:1127:20:1131 | @prop | UseUseExplosion.rb:20:1127:20:1136 | ... > ... |
+| UseUseExplosion.rb:20:1127:20:1131 | [post] self | UseUseExplosion.rb:20:1148:20:1152 | self |
+| UseUseExplosion.rb:20:1127:20:1131 | [post] self | UseUseExplosion.rb:20:2843:20:2848 | self |
+| UseUseExplosion.rb:20:1127:20:1131 | self | UseUseExplosion.rb:20:1148:20:1152 | self |
+| UseUseExplosion.rb:20:1127:20:1131 | self | UseUseExplosion.rb:20:2843:20:2848 | self |
+| UseUseExplosion.rb:20:1127:20:1136 | ... > ... | UseUseExplosion.rb:20:1126:20:1137 | [false] ( ... ) |
+| UseUseExplosion.rb:20:1127:20:1136 | ... > ... | UseUseExplosion.rb:20:1126:20:1137 | [true] ( ... ) |
+| UseUseExplosion.rb:20:1135:20:1136 | 47 | UseUseExplosion.rb:20:1127:20:1136 | ... > ... |
+| UseUseExplosion.rb:20:1139:20:2836 | then ... | UseUseExplosion.rb:20:1123:20:2852 | if ... |
+| UseUseExplosion.rb:20:1144:20:2836 | SSA phi read(self) | UseUseExplosion.rb:20:1123:20:2852 | SSA phi read(self) |
+| UseUseExplosion.rb:20:1144:20:2836 | SSA phi read(x) | UseUseExplosion.rb:20:1123:20:2852 | SSA phi read(x) |
+| UseUseExplosion.rb:20:1144:20:2836 | if ... | UseUseExplosion.rb:20:1139:20:2836 | then ... |
+| UseUseExplosion.rb:20:1148:20:1152 | @prop | UseUseExplosion.rb:20:1148:20:1157 | ... > ... |
+| UseUseExplosion.rb:20:1148:20:1152 | [post] self | UseUseExplosion.rb:20:1169:20:1173 | self |
+| UseUseExplosion.rb:20:1148:20:1152 | [post] self | UseUseExplosion.rb:20:2827:20:2832 | self |
+| UseUseExplosion.rb:20:1148:20:1152 | self | UseUseExplosion.rb:20:1169:20:1173 | self |
+| UseUseExplosion.rb:20:1148:20:1152 | self | UseUseExplosion.rb:20:2827:20:2832 | self |
+| UseUseExplosion.rb:20:1148:20:1157 | ... > ... | UseUseExplosion.rb:20:1147:20:1158 | [false] ( ... ) |
+| UseUseExplosion.rb:20:1148:20:1157 | ... > ... | UseUseExplosion.rb:20:1147:20:1158 | [true] ( ... ) |
+| UseUseExplosion.rb:20:1156:20:1157 | 46 | UseUseExplosion.rb:20:1148:20:1157 | ... > ... |
+| UseUseExplosion.rb:20:1160:20:2820 | then ... | UseUseExplosion.rb:20:1144:20:2836 | if ... |
+| UseUseExplosion.rb:20:1165:20:2820 | SSA phi read(self) | UseUseExplosion.rb:20:1144:20:2836 | SSA phi read(self) |
+| UseUseExplosion.rb:20:1165:20:2820 | SSA phi read(x) | UseUseExplosion.rb:20:1144:20:2836 | SSA phi read(x) |
+| UseUseExplosion.rb:20:1165:20:2820 | if ... | UseUseExplosion.rb:20:1160:20:2820 | then ... |
+| UseUseExplosion.rb:20:1169:20:1173 | @prop | UseUseExplosion.rb:20:1169:20:1178 | ... > ... |
+| UseUseExplosion.rb:20:1169:20:1173 | [post] self | UseUseExplosion.rb:20:1190:20:1194 | self |
+| UseUseExplosion.rb:20:1169:20:1173 | [post] self | UseUseExplosion.rb:20:2811:20:2816 | self |
+| UseUseExplosion.rb:20:1169:20:1173 | self | UseUseExplosion.rb:20:1190:20:1194 | self |
+| UseUseExplosion.rb:20:1169:20:1173 | self | UseUseExplosion.rb:20:2811:20:2816 | self |
+| UseUseExplosion.rb:20:1169:20:1178 | ... > ... | UseUseExplosion.rb:20:1168:20:1179 | [false] ( ... ) |
+| UseUseExplosion.rb:20:1169:20:1178 | ... > ... | UseUseExplosion.rb:20:1168:20:1179 | [true] ( ... ) |
+| UseUseExplosion.rb:20:1177:20:1178 | 45 | UseUseExplosion.rb:20:1169:20:1178 | ... > ... |
+| UseUseExplosion.rb:20:1181:20:2804 | then ... | UseUseExplosion.rb:20:1165:20:2820 | if ... |
+| UseUseExplosion.rb:20:1186:20:2804 | SSA phi read(self) | UseUseExplosion.rb:20:1165:20:2820 | SSA phi read(self) |
+| UseUseExplosion.rb:20:1186:20:2804 | SSA phi read(x) | UseUseExplosion.rb:20:1165:20:2820 | SSA phi read(x) |
+| UseUseExplosion.rb:20:1186:20:2804 | if ... | UseUseExplosion.rb:20:1181:20:2804 | then ... |
+| UseUseExplosion.rb:20:1190:20:1194 | @prop | UseUseExplosion.rb:20:1190:20:1199 | ... > ... |
+| UseUseExplosion.rb:20:1190:20:1194 | [post] self | UseUseExplosion.rb:20:1211:20:1215 | self |
+| UseUseExplosion.rb:20:1190:20:1194 | [post] self | UseUseExplosion.rb:20:2795:20:2800 | self |
+| UseUseExplosion.rb:20:1190:20:1194 | self | UseUseExplosion.rb:20:1211:20:1215 | self |
+| UseUseExplosion.rb:20:1190:20:1194 | self | UseUseExplosion.rb:20:2795:20:2800 | self |
+| UseUseExplosion.rb:20:1190:20:1199 | ... > ... | UseUseExplosion.rb:20:1189:20:1200 | [false] ( ... ) |
+| UseUseExplosion.rb:20:1190:20:1199 | ... > ... | UseUseExplosion.rb:20:1189:20:1200 | [true] ( ... ) |
+| UseUseExplosion.rb:20:1198:20:1199 | 44 | UseUseExplosion.rb:20:1190:20:1199 | ... > ... |
+| UseUseExplosion.rb:20:1202:20:2788 | then ... | UseUseExplosion.rb:20:1186:20:2804 | if ... |
+| UseUseExplosion.rb:20:1207:20:2788 | SSA phi read(self) | UseUseExplosion.rb:20:1186:20:2804 | SSA phi read(self) |
+| UseUseExplosion.rb:20:1207:20:2788 | SSA phi read(x) | UseUseExplosion.rb:20:1186:20:2804 | SSA phi read(x) |
+| UseUseExplosion.rb:20:1207:20:2788 | if ... | UseUseExplosion.rb:20:1202:20:2788 | then ... |
+| UseUseExplosion.rb:20:1211:20:1215 | @prop | UseUseExplosion.rb:20:1211:20:1220 | ... > ... |
+| UseUseExplosion.rb:20:1211:20:1215 | [post] self | UseUseExplosion.rb:20:1232:20:1236 | self |
+| UseUseExplosion.rb:20:1211:20:1215 | [post] self | UseUseExplosion.rb:20:2779:20:2784 | self |
+| UseUseExplosion.rb:20:1211:20:1215 | self | UseUseExplosion.rb:20:1232:20:1236 | self |
+| UseUseExplosion.rb:20:1211:20:1215 | self | UseUseExplosion.rb:20:2779:20:2784 | self |
+| UseUseExplosion.rb:20:1211:20:1220 | ... > ... | UseUseExplosion.rb:20:1210:20:1221 | [false] ( ... ) |
+| UseUseExplosion.rb:20:1211:20:1220 | ... > ... | UseUseExplosion.rb:20:1210:20:1221 | [true] ( ... ) |
+| UseUseExplosion.rb:20:1219:20:1220 | 43 | UseUseExplosion.rb:20:1211:20:1220 | ... > ... |
+| UseUseExplosion.rb:20:1223:20:2772 | then ... | UseUseExplosion.rb:20:1207:20:2788 | if ... |
+| UseUseExplosion.rb:20:1228:20:2772 | SSA phi read(self) | UseUseExplosion.rb:20:1207:20:2788 | SSA phi read(self) |
+| UseUseExplosion.rb:20:1228:20:2772 | SSA phi read(x) | UseUseExplosion.rb:20:1207:20:2788 | SSA phi read(x) |
+| UseUseExplosion.rb:20:1228:20:2772 | if ... | UseUseExplosion.rb:20:1223:20:2772 | then ... |
+| UseUseExplosion.rb:20:1232:20:1236 | @prop | UseUseExplosion.rb:20:1232:20:1241 | ... > ... |
+| UseUseExplosion.rb:20:1232:20:1236 | [post] self | UseUseExplosion.rb:20:1253:20:1257 | self |
+| UseUseExplosion.rb:20:1232:20:1236 | [post] self | UseUseExplosion.rb:20:2763:20:2768 | self |
+| UseUseExplosion.rb:20:1232:20:1236 | self | UseUseExplosion.rb:20:1253:20:1257 | self |
+| UseUseExplosion.rb:20:1232:20:1236 | self | UseUseExplosion.rb:20:2763:20:2768 | self |
+| UseUseExplosion.rb:20:1232:20:1241 | ... > ... | UseUseExplosion.rb:20:1231:20:1242 | [false] ( ... ) |
+| UseUseExplosion.rb:20:1232:20:1241 | ... > ... | UseUseExplosion.rb:20:1231:20:1242 | [true] ( ... ) |
+| UseUseExplosion.rb:20:1240:20:1241 | 42 | UseUseExplosion.rb:20:1232:20:1241 | ... > ... |
+| UseUseExplosion.rb:20:1244:20:2756 | then ... | UseUseExplosion.rb:20:1228:20:2772 | if ... |
+| UseUseExplosion.rb:20:1249:20:2756 | SSA phi read(self) | UseUseExplosion.rb:20:1228:20:2772 | SSA phi read(self) |
+| UseUseExplosion.rb:20:1249:20:2756 | SSA phi read(x) | UseUseExplosion.rb:20:1228:20:2772 | SSA phi read(x) |
+| UseUseExplosion.rb:20:1249:20:2756 | if ... | UseUseExplosion.rb:20:1244:20:2756 | then ... |
+| UseUseExplosion.rb:20:1253:20:1257 | @prop | UseUseExplosion.rb:20:1253:20:1262 | ... > ... |
+| UseUseExplosion.rb:20:1253:20:1257 | [post] self | UseUseExplosion.rb:20:1274:20:1278 | self |
+| UseUseExplosion.rb:20:1253:20:1257 | [post] self | UseUseExplosion.rb:20:2747:20:2752 | self |
+| UseUseExplosion.rb:20:1253:20:1257 | self | UseUseExplosion.rb:20:1274:20:1278 | self |
+| UseUseExplosion.rb:20:1253:20:1257 | self | UseUseExplosion.rb:20:2747:20:2752 | self |
+| UseUseExplosion.rb:20:1253:20:1262 | ... > ... | UseUseExplosion.rb:20:1252:20:1263 | [false] ( ... ) |
+| UseUseExplosion.rb:20:1253:20:1262 | ... > ... | UseUseExplosion.rb:20:1252:20:1263 | [true] ( ... ) |
+| UseUseExplosion.rb:20:1261:20:1262 | 41 | UseUseExplosion.rb:20:1253:20:1262 | ... > ... |
+| UseUseExplosion.rb:20:1265:20:2740 | then ... | UseUseExplosion.rb:20:1249:20:2756 | if ... |
+| UseUseExplosion.rb:20:1270:20:2740 | SSA phi read(self) | UseUseExplosion.rb:20:1249:20:2756 | SSA phi read(self) |
+| UseUseExplosion.rb:20:1270:20:2740 | SSA phi read(x) | UseUseExplosion.rb:20:1249:20:2756 | SSA phi read(x) |
+| UseUseExplosion.rb:20:1270:20:2740 | if ... | UseUseExplosion.rb:20:1265:20:2740 | then ... |
+| UseUseExplosion.rb:20:1274:20:1278 | @prop | UseUseExplosion.rb:20:1274:20:1283 | ... > ... |
+| UseUseExplosion.rb:20:1274:20:1278 | [post] self | UseUseExplosion.rb:20:1295:20:1299 | self |
+| UseUseExplosion.rb:20:1274:20:1278 | [post] self | UseUseExplosion.rb:20:2731:20:2736 | self |
+| UseUseExplosion.rb:20:1274:20:1278 | self | UseUseExplosion.rb:20:1295:20:1299 | self |
+| UseUseExplosion.rb:20:1274:20:1278 | self | UseUseExplosion.rb:20:2731:20:2736 | self |
+| UseUseExplosion.rb:20:1274:20:1283 | ... > ... | UseUseExplosion.rb:20:1273:20:1284 | [false] ( ... ) |
+| UseUseExplosion.rb:20:1274:20:1283 | ... > ... | UseUseExplosion.rb:20:1273:20:1284 | [true] ( ... ) |
+| UseUseExplosion.rb:20:1282:20:1283 | 40 | UseUseExplosion.rb:20:1274:20:1283 | ... > ... |
+| UseUseExplosion.rb:20:1286:20:2724 | then ... | UseUseExplosion.rb:20:1270:20:2740 | if ... |
+| UseUseExplosion.rb:20:1291:20:2724 | SSA phi read(self) | UseUseExplosion.rb:20:1270:20:2740 | SSA phi read(self) |
+| UseUseExplosion.rb:20:1291:20:2724 | SSA phi read(x) | UseUseExplosion.rb:20:1270:20:2740 | SSA phi read(x) |
+| UseUseExplosion.rb:20:1291:20:2724 | if ... | UseUseExplosion.rb:20:1286:20:2724 | then ... |
+| UseUseExplosion.rb:20:1295:20:1299 | @prop | UseUseExplosion.rb:20:1295:20:1304 | ... > ... |
+| UseUseExplosion.rb:20:1295:20:1299 | [post] self | UseUseExplosion.rb:20:1316:20:1320 | self |
+| UseUseExplosion.rb:20:1295:20:1299 | [post] self | UseUseExplosion.rb:20:2715:20:2720 | self |
+| UseUseExplosion.rb:20:1295:20:1299 | self | UseUseExplosion.rb:20:1316:20:1320 | self |
+| UseUseExplosion.rb:20:1295:20:1299 | self | UseUseExplosion.rb:20:2715:20:2720 | self |
+| UseUseExplosion.rb:20:1295:20:1304 | ... > ... | UseUseExplosion.rb:20:1294:20:1305 | [false] ( ... ) |
+| UseUseExplosion.rb:20:1295:20:1304 | ... > ... | UseUseExplosion.rb:20:1294:20:1305 | [true] ( ... ) |
+| UseUseExplosion.rb:20:1303:20:1304 | 39 | UseUseExplosion.rb:20:1295:20:1304 | ... > ... |
+| UseUseExplosion.rb:20:1307:20:2708 | then ... | UseUseExplosion.rb:20:1291:20:2724 | if ... |
+| UseUseExplosion.rb:20:1312:20:2708 | SSA phi read(self) | UseUseExplosion.rb:20:1291:20:2724 | SSA phi read(self) |
+| UseUseExplosion.rb:20:1312:20:2708 | SSA phi read(x) | UseUseExplosion.rb:20:1291:20:2724 | SSA phi read(x) |
+| UseUseExplosion.rb:20:1312:20:2708 | if ... | UseUseExplosion.rb:20:1307:20:2708 | then ... |
+| UseUseExplosion.rb:20:1316:20:1320 | @prop | UseUseExplosion.rb:20:1316:20:1325 | ... > ... |
+| UseUseExplosion.rb:20:1316:20:1320 | [post] self | UseUseExplosion.rb:20:1337:20:1341 | self |
+| UseUseExplosion.rb:20:1316:20:1320 | [post] self | UseUseExplosion.rb:20:2699:20:2704 | self |
+| UseUseExplosion.rb:20:1316:20:1320 | self | UseUseExplosion.rb:20:1337:20:1341 | self |
+| UseUseExplosion.rb:20:1316:20:1320 | self | UseUseExplosion.rb:20:2699:20:2704 | self |
+| UseUseExplosion.rb:20:1316:20:1325 | ... > ... | UseUseExplosion.rb:20:1315:20:1326 | [false] ( ... ) |
+| UseUseExplosion.rb:20:1316:20:1325 | ... > ... | UseUseExplosion.rb:20:1315:20:1326 | [true] ( ... ) |
+| UseUseExplosion.rb:20:1324:20:1325 | 38 | UseUseExplosion.rb:20:1316:20:1325 | ... > ... |
+| UseUseExplosion.rb:20:1328:20:2692 | then ... | UseUseExplosion.rb:20:1312:20:2708 | if ... |
+| UseUseExplosion.rb:20:1333:20:2692 | SSA phi read(self) | UseUseExplosion.rb:20:1312:20:2708 | SSA phi read(self) |
+| UseUseExplosion.rb:20:1333:20:2692 | SSA phi read(x) | UseUseExplosion.rb:20:1312:20:2708 | SSA phi read(x) |
+| UseUseExplosion.rb:20:1333:20:2692 | if ... | UseUseExplosion.rb:20:1328:20:2692 | then ... |
+| UseUseExplosion.rb:20:1337:20:1341 | @prop | UseUseExplosion.rb:20:1337:20:1346 | ... > ... |
+| UseUseExplosion.rb:20:1337:20:1341 | [post] self | UseUseExplosion.rb:20:1358:20:1362 | self |
+| UseUseExplosion.rb:20:1337:20:1341 | [post] self | UseUseExplosion.rb:20:2683:20:2688 | self |
+| UseUseExplosion.rb:20:1337:20:1341 | self | UseUseExplosion.rb:20:1358:20:1362 | self |
+| UseUseExplosion.rb:20:1337:20:1341 | self | UseUseExplosion.rb:20:2683:20:2688 | self |
+| UseUseExplosion.rb:20:1337:20:1346 | ... > ... | UseUseExplosion.rb:20:1336:20:1347 | [false] ( ... ) |
+| UseUseExplosion.rb:20:1337:20:1346 | ... > ... | UseUseExplosion.rb:20:1336:20:1347 | [true] ( ... ) |
+| UseUseExplosion.rb:20:1345:20:1346 | 37 | UseUseExplosion.rb:20:1337:20:1346 | ... > ... |
+| UseUseExplosion.rb:20:1349:20:2676 | then ... | UseUseExplosion.rb:20:1333:20:2692 | if ... |
+| UseUseExplosion.rb:20:1354:20:2676 | SSA phi read(self) | UseUseExplosion.rb:20:1333:20:2692 | SSA phi read(self) |
+| UseUseExplosion.rb:20:1354:20:2676 | SSA phi read(x) | UseUseExplosion.rb:20:1333:20:2692 | SSA phi read(x) |
+| UseUseExplosion.rb:20:1354:20:2676 | if ... | UseUseExplosion.rb:20:1349:20:2676 | then ... |
+| UseUseExplosion.rb:20:1358:20:1362 | @prop | UseUseExplosion.rb:20:1358:20:1367 | ... > ... |
+| UseUseExplosion.rb:20:1358:20:1362 | [post] self | UseUseExplosion.rb:20:1379:20:1383 | self |
+| UseUseExplosion.rb:20:1358:20:1362 | [post] self | UseUseExplosion.rb:20:2667:20:2672 | self |
+| UseUseExplosion.rb:20:1358:20:1362 | self | UseUseExplosion.rb:20:1379:20:1383 | self |
+| UseUseExplosion.rb:20:1358:20:1362 | self | UseUseExplosion.rb:20:2667:20:2672 | self |
+| UseUseExplosion.rb:20:1358:20:1367 | ... > ... | UseUseExplosion.rb:20:1357:20:1368 | [false] ( ... ) |
+| UseUseExplosion.rb:20:1358:20:1367 | ... > ... | UseUseExplosion.rb:20:1357:20:1368 | [true] ( ... ) |
+| UseUseExplosion.rb:20:1366:20:1367 | 36 | UseUseExplosion.rb:20:1358:20:1367 | ... > ... |
+| UseUseExplosion.rb:20:1370:20:2660 | then ... | UseUseExplosion.rb:20:1354:20:2676 | if ... |
+| UseUseExplosion.rb:20:1375:20:2660 | SSA phi read(self) | UseUseExplosion.rb:20:1354:20:2676 | SSA phi read(self) |
+| UseUseExplosion.rb:20:1375:20:2660 | SSA phi read(x) | UseUseExplosion.rb:20:1354:20:2676 | SSA phi read(x) |
+| UseUseExplosion.rb:20:1375:20:2660 | if ... | UseUseExplosion.rb:20:1370:20:2660 | then ... |
+| UseUseExplosion.rb:20:1379:20:1383 | @prop | UseUseExplosion.rb:20:1379:20:1388 | ... > ... |
+| UseUseExplosion.rb:20:1379:20:1383 | [post] self | UseUseExplosion.rb:20:1400:20:1404 | self |
+| UseUseExplosion.rb:20:1379:20:1383 | [post] self | UseUseExplosion.rb:20:2651:20:2656 | self |
+| UseUseExplosion.rb:20:1379:20:1383 | self | UseUseExplosion.rb:20:1400:20:1404 | self |
+| UseUseExplosion.rb:20:1379:20:1383 | self | UseUseExplosion.rb:20:2651:20:2656 | self |
+| UseUseExplosion.rb:20:1379:20:1388 | ... > ... | UseUseExplosion.rb:20:1378:20:1389 | [false] ( ... ) |
+| UseUseExplosion.rb:20:1379:20:1388 | ... > ... | UseUseExplosion.rb:20:1378:20:1389 | [true] ( ... ) |
+| UseUseExplosion.rb:20:1387:20:1388 | 35 | UseUseExplosion.rb:20:1379:20:1388 | ... > ... |
+| UseUseExplosion.rb:20:1391:20:2644 | then ... | UseUseExplosion.rb:20:1375:20:2660 | if ... |
+| UseUseExplosion.rb:20:1396:20:2644 | SSA phi read(self) | UseUseExplosion.rb:20:1375:20:2660 | SSA phi read(self) |
+| UseUseExplosion.rb:20:1396:20:2644 | SSA phi read(x) | UseUseExplosion.rb:20:1375:20:2660 | SSA phi read(x) |
+| UseUseExplosion.rb:20:1396:20:2644 | if ... | UseUseExplosion.rb:20:1391:20:2644 | then ... |
+| UseUseExplosion.rb:20:1400:20:1404 | @prop | UseUseExplosion.rb:20:1400:20:1409 | ... > ... |
+| UseUseExplosion.rb:20:1400:20:1404 | [post] self | UseUseExplosion.rb:20:1421:20:1425 | self |
+| UseUseExplosion.rb:20:1400:20:1404 | [post] self | UseUseExplosion.rb:20:2635:20:2640 | self |
+| UseUseExplosion.rb:20:1400:20:1404 | self | UseUseExplosion.rb:20:1421:20:1425 | self |
+| UseUseExplosion.rb:20:1400:20:1404 | self | UseUseExplosion.rb:20:2635:20:2640 | self |
+| UseUseExplosion.rb:20:1400:20:1409 | ... > ... | UseUseExplosion.rb:20:1399:20:1410 | [false] ( ... ) |
+| UseUseExplosion.rb:20:1400:20:1409 | ... > ... | UseUseExplosion.rb:20:1399:20:1410 | [true] ( ... ) |
+| UseUseExplosion.rb:20:1408:20:1409 | 34 | UseUseExplosion.rb:20:1400:20:1409 | ... > ... |
+| UseUseExplosion.rb:20:1412:20:2628 | then ... | UseUseExplosion.rb:20:1396:20:2644 | if ... |
+| UseUseExplosion.rb:20:1417:20:2628 | SSA phi read(self) | UseUseExplosion.rb:20:1396:20:2644 | SSA phi read(self) |
+| UseUseExplosion.rb:20:1417:20:2628 | SSA phi read(x) | UseUseExplosion.rb:20:1396:20:2644 | SSA phi read(x) |
+| UseUseExplosion.rb:20:1417:20:2628 | if ... | UseUseExplosion.rb:20:1412:20:2628 | then ... |
+| UseUseExplosion.rb:20:1421:20:1425 | @prop | UseUseExplosion.rb:20:1421:20:1430 | ... > ... |
+| UseUseExplosion.rb:20:1421:20:1425 | [post] self | UseUseExplosion.rb:20:1442:20:1446 | self |
+| UseUseExplosion.rb:20:1421:20:1425 | [post] self | UseUseExplosion.rb:20:2619:20:2624 | self |
+| UseUseExplosion.rb:20:1421:20:1425 | self | UseUseExplosion.rb:20:1442:20:1446 | self |
+| UseUseExplosion.rb:20:1421:20:1425 | self | UseUseExplosion.rb:20:2619:20:2624 | self |
+| UseUseExplosion.rb:20:1421:20:1430 | ... > ... | UseUseExplosion.rb:20:1420:20:1431 | [false] ( ... ) |
+| UseUseExplosion.rb:20:1421:20:1430 | ... > ... | UseUseExplosion.rb:20:1420:20:1431 | [true] ( ... ) |
+| UseUseExplosion.rb:20:1429:20:1430 | 33 | UseUseExplosion.rb:20:1421:20:1430 | ... > ... |
+| UseUseExplosion.rb:20:1433:20:2612 | then ... | UseUseExplosion.rb:20:1417:20:2628 | if ... |
+| UseUseExplosion.rb:20:1438:20:2612 | SSA phi read(self) | UseUseExplosion.rb:20:1417:20:2628 | SSA phi read(self) |
+| UseUseExplosion.rb:20:1438:20:2612 | SSA phi read(x) | UseUseExplosion.rb:20:1417:20:2628 | SSA phi read(x) |
+| UseUseExplosion.rb:20:1438:20:2612 | if ... | UseUseExplosion.rb:20:1433:20:2612 | then ... |
+| UseUseExplosion.rb:20:1442:20:1446 | @prop | UseUseExplosion.rb:20:1442:20:1451 | ... > ... |
+| UseUseExplosion.rb:20:1442:20:1446 | [post] self | UseUseExplosion.rb:20:1463:20:1467 | self |
+| UseUseExplosion.rb:20:1442:20:1446 | [post] self | UseUseExplosion.rb:20:2603:20:2608 | self |
+| UseUseExplosion.rb:20:1442:20:1446 | self | UseUseExplosion.rb:20:1463:20:1467 | self |
+| UseUseExplosion.rb:20:1442:20:1446 | self | UseUseExplosion.rb:20:2603:20:2608 | self |
+| UseUseExplosion.rb:20:1442:20:1451 | ... > ... | UseUseExplosion.rb:20:1441:20:1452 | [false] ( ... ) |
+| UseUseExplosion.rb:20:1442:20:1451 | ... > ... | UseUseExplosion.rb:20:1441:20:1452 | [true] ( ... ) |
+| UseUseExplosion.rb:20:1450:20:1451 | 32 | UseUseExplosion.rb:20:1442:20:1451 | ... > ... |
+| UseUseExplosion.rb:20:1454:20:2596 | then ... | UseUseExplosion.rb:20:1438:20:2612 | if ... |
+| UseUseExplosion.rb:20:1459:20:2596 | SSA phi read(self) | UseUseExplosion.rb:20:1438:20:2612 | SSA phi read(self) |
+| UseUseExplosion.rb:20:1459:20:2596 | SSA phi read(x) | UseUseExplosion.rb:20:1438:20:2612 | SSA phi read(x) |
+| UseUseExplosion.rb:20:1459:20:2596 | if ... | UseUseExplosion.rb:20:1454:20:2596 | then ... |
+| UseUseExplosion.rb:20:1463:20:1467 | @prop | UseUseExplosion.rb:20:1463:20:1472 | ... > ... |
+| UseUseExplosion.rb:20:1463:20:1467 | [post] self | UseUseExplosion.rb:20:1484:20:1488 | self |
+| UseUseExplosion.rb:20:1463:20:1467 | [post] self | UseUseExplosion.rb:20:2587:20:2592 | self |
+| UseUseExplosion.rb:20:1463:20:1467 | self | UseUseExplosion.rb:20:1484:20:1488 | self |
+| UseUseExplosion.rb:20:1463:20:1467 | self | UseUseExplosion.rb:20:2587:20:2592 | self |
+| UseUseExplosion.rb:20:1463:20:1472 | ... > ... | UseUseExplosion.rb:20:1462:20:1473 | [false] ( ... ) |
+| UseUseExplosion.rb:20:1463:20:1472 | ... > ... | UseUseExplosion.rb:20:1462:20:1473 | [true] ( ... ) |
+| UseUseExplosion.rb:20:1471:20:1472 | 31 | UseUseExplosion.rb:20:1463:20:1472 | ... > ... |
+| UseUseExplosion.rb:20:1475:20:2580 | then ... | UseUseExplosion.rb:20:1459:20:2596 | if ... |
+| UseUseExplosion.rb:20:1480:20:2580 | SSA phi read(self) | UseUseExplosion.rb:20:1459:20:2596 | SSA phi read(self) |
+| UseUseExplosion.rb:20:1480:20:2580 | SSA phi read(x) | UseUseExplosion.rb:20:1459:20:2596 | SSA phi read(x) |
+| UseUseExplosion.rb:20:1480:20:2580 | if ... | UseUseExplosion.rb:20:1475:20:2580 | then ... |
+| UseUseExplosion.rb:20:1484:20:1488 | @prop | UseUseExplosion.rb:20:1484:20:1493 | ... > ... |
+| UseUseExplosion.rb:20:1484:20:1488 | [post] self | UseUseExplosion.rb:20:1505:20:1509 | self |
+| UseUseExplosion.rb:20:1484:20:1488 | [post] self | UseUseExplosion.rb:20:2571:20:2576 | self |
+| UseUseExplosion.rb:20:1484:20:1488 | self | UseUseExplosion.rb:20:1505:20:1509 | self |
+| UseUseExplosion.rb:20:1484:20:1488 | self | UseUseExplosion.rb:20:2571:20:2576 | self |
+| UseUseExplosion.rb:20:1484:20:1493 | ... > ... | UseUseExplosion.rb:20:1483:20:1494 | [false] ( ... ) |
+| UseUseExplosion.rb:20:1484:20:1493 | ... > ... | UseUseExplosion.rb:20:1483:20:1494 | [true] ( ... ) |
+| UseUseExplosion.rb:20:1492:20:1493 | 30 | UseUseExplosion.rb:20:1484:20:1493 | ... > ... |
+| UseUseExplosion.rb:20:1496:20:2564 | then ... | UseUseExplosion.rb:20:1480:20:2580 | if ... |
+| UseUseExplosion.rb:20:1501:20:2564 | SSA phi read(self) | UseUseExplosion.rb:20:1480:20:2580 | SSA phi read(self) |
+| UseUseExplosion.rb:20:1501:20:2564 | SSA phi read(x) | UseUseExplosion.rb:20:1480:20:2580 | SSA phi read(x) |
+| UseUseExplosion.rb:20:1501:20:2564 | if ... | UseUseExplosion.rb:20:1496:20:2564 | then ... |
+| UseUseExplosion.rb:20:1505:20:1509 | @prop | UseUseExplosion.rb:20:1505:20:1514 | ... > ... |
+| UseUseExplosion.rb:20:1505:20:1509 | [post] self | UseUseExplosion.rb:20:1526:20:1530 | self |
+| UseUseExplosion.rb:20:1505:20:1509 | [post] self | UseUseExplosion.rb:20:2555:20:2560 | self |
+| UseUseExplosion.rb:20:1505:20:1509 | self | UseUseExplosion.rb:20:1526:20:1530 | self |
+| UseUseExplosion.rb:20:1505:20:1509 | self | UseUseExplosion.rb:20:2555:20:2560 | self |
+| UseUseExplosion.rb:20:1505:20:1514 | ... > ... | UseUseExplosion.rb:20:1504:20:1515 | [false] ( ... ) |
+| UseUseExplosion.rb:20:1505:20:1514 | ... > ... | UseUseExplosion.rb:20:1504:20:1515 | [true] ( ... ) |
+| UseUseExplosion.rb:20:1513:20:1514 | 29 | UseUseExplosion.rb:20:1505:20:1514 | ... > ... |
+| UseUseExplosion.rb:20:1517:20:2548 | then ... | UseUseExplosion.rb:20:1501:20:2564 | if ... |
+| UseUseExplosion.rb:20:1522:20:2548 | SSA phi read(self) | UseUseExplosion.rb:20:1501:20:2564 | SSA phi read(self) |
+| UseUseExplosion.rb:20:1522:20:2548 | SSA phi read(x) | UseUseExplosion.rb:20:1501:20:2564 | SSA phi read(x) |
+| UseUseExplosion.rb:20:1522:20:2548 | if ... | UseUseExplosion.rb:20:1517:20:2548 | then ... |
+| UseUseExplosion.rb:20:1526:20:1530 | @prop | UseUseExplosion.rb:20:1526:20:1535 | ... > ... |
+| UseUseExplosion.rb:20:1526:20:1530 | [post] self | UseUseExplosion.rb:20:1547:20:1551 | self |
+| UseUseExplosion.rb:20:1526:20:1530 | [post] self | UseUseExplosion.rb:20:2539:20:2544 | self |
+| UseUseExplosion.rb:20:1526:20:1530 | self | UseUseExplosion.rb:20:1547:20:1551 | self |
+| UseUseExplosion.rb:20:1526:20:1530 | self | UseUseExplosion.rb:20:2539:20:2544 | self |
+| UseUseExplosion.rb:20:1526:20:1535 | ... > ... | UseUseExplosion.rb:20:1525:20:1536 | [false] ( ... ) |
+| UseUseExplosion.rb:20:1526:20:1535 | ... > ... | UseUseExplosion.rb:20:1525:20:1536 | [true] ( ... ) |
+| UseUseExplosion.rb:20:1534:20:1535 | 28 | UseUseExplosion.rb:20:1526:20:1535 | ... > ... |
+| UseUseExplosion.rb:20:1538:20:2532 | then ... | UseUseExplosion.rb:20:1522:20:2548 | if ... |
+| UseUseExplosion.rb:20:1543:20:2532 | SSA phi read(self) | UseUseExplosion.rb:20:1522:20:2548 | SSA phi read(self) |
+| UseUseExplosion.rb:20:1543:20:2532 | SSA phi read(x) | UseUseExplosion.rb:20:1522:20:2548 | SSA phi read(x) |
+| UseUseExplosion.rb:20:1543:20:2532 | if ... | UseUseExplosion.rb:20:1538:20:2532 | then ... |
+| UseUseExplosion.rb:20:1547:20:1551 | @prop | UseUseExplosion.rb:20:1547:20:1556 | ... > ... |
+| UseUseExplosion.rb:20:1547:20:1551 | [post] self | UseUseExplosion.rb:20:1568:20:1572 | self |
+| UseUseExplosion.rb:20:1547:20:1551 | [post] self | UseUseExplosion.rb:20:2523:20:2528 | self |
+| UseUseExplosion.rb:20:1547:20:1551 | self | UseUseExplosion.rb:20:1568:20:1572 | self |
+| UseUseExplosion.rb:20:1547:20:1551 | self | UseUseExplosion.rb:20:2523:20:2528 | self |
+| UseUseExplosion.rb:20:1547:20:1556 | ... > ... | UseUseExplosion.rb:20:1546:20:1557 | [false] ( ... ) |
+| UseUseExplosion.rb:20:1547:20:1556 | ... > ... | UseUseExplosion.rb:20:1546:20:1557 | [true] ( ... ) |
+| UseUseExplosion.rb:20:1555:20:1556 | 27 | UseUseExplosion.rb:20:1547:20:1556 | ... > ... |
+| UseUseExplosion.rb:20:1559:20:2516 | then ... | UseUseExplosion.rb:20:1543:20:2532 | if ... |
+| UseUseExplosion.rb:20:1564:20:2516 | SSA phi read(self) | UseUseExplosion.rb:20:1543:20:2532 | SSA phi read(self) |
+| UseUseExplosion.rb:20:1564:20:2516 | SSA phi read(x) | UseUseExplosion.rb:20:1543:20:2532 | SSA phi read(x) |
+| UseUseExplosion.rb:20:1564:20:2516 | if ... | UseUseExplosion.rb:20:1559:20:2516 | then ... |
+| UseUseExplosion.rb:20:1568:20:1572 | @prop | UseUseExplosion.rb:20:1568:20:1577 | ... > ... |
+| UseUseExplosion.rb:20:1568:20:1572 | [post] self | UseUseExplosion.rb:20:1589:20:1593 | self |
+| UseUseExplosion.rb:20:1568:20:1572 | [post] self | UseUseExplosion.rb:20:2507:20:2512 | self |
+| UseUseExplosion.rb:20:1568:20:1572 | self | UseUseExplosion.rb:20:1589:20:1593 | self |
+| UseUseExplosion.rb:20:1568:20:1572 | self | UseUseExplosion.rb:20:2507:20:2512 | self |
+| UseUseExplosion.rb:20:1568:20:1577 | ... > ... | UseUseExplosion.rb:20:1567:20:1578 | [false] ( ... ) |
+| UseUseExplosion.rb:20:1568:20:1577 | ... > ... | UseUseExplosion.rb:20:1567:20:1578 | [true] ( ... ) |
+| UseUseExplosion.rb:20:1576:20:1577 | 26 | UseUseExplosion.rb:20:1568:20:1577 | ... > ... |
+| UseUseExplosion.rb:20:1580:20:2500 | then ... | UseUseExplosion.rb:20:1564:20:2516 | if ... |
+| UseUseExplosion.rb:20:1585:20:2500 | SSA phi read(self) | UseUseExplosion.rb:20:1564:20:2516 | SSA phi read(self) |
+| UseUseExplosion.rb:20:1585:20:2500 | SSA phi read(x) | UseUseExplosion.rb:20:1564:20:2516 | SSA phi read(x) |
+| UseUseExplosion.rb:20:1585:20:2500 | if ... | UseUseExplosion.rb:20:1580:20:2500 | then ... |
+| UseUseExplosion.rb:20:1589:20:1593 | @prop | UseUseExplosion.rb:20:1589:20:1598 | ... > ... |
+| UseUseExplosion.rb:20:1589:20:1593 | [post] self | UseUseExplosion.rb:20:1610:20:1614 | self |
+| UseUseExplosion.rb:20:1589:20:1593 | [post] self | UseUseExplosion.rb:20:2491:20:2496 | self |
+| UseUseExplosion.rb:20:1589:20:1593 | self | UseUseExplosion.rb:20:1610:20:1614 | self |
+| UseUseExplosion.rb:20:1589:20:1593 | self | UseUseExplosion.rb:20:2491:20:2496 | self |
+| UseUseExplosion.rb:20:1589:20:1598 | ... > ... | UseUseExplosion.rb:20:1588:20:1599 | [false] ( ... ) |
+| UseUseExplosion.rb:20:1589:20:1598 | ... > ... | UseUseExplosion.rb:20:1588:20:1599 | [true] ( ... ) |
+| UseUseExplosion.rb:20:1597:20:1598 | 25 | UseUseExplosion.rb:20:1589:20:1598 | ... > ... |
+| UseUseExplosion.rb:20:1601:20:2484 | then ... | UseUseExplosion.rb:20:1585:20:2500 | if ... |
+| UseUseExplosion.rb:20:1606:20:2484 | SSA phi read(self) | UseUseExplosion.rb:20:1585:20:2500 | SSA phi read(self) |
+| UseUseExplosion.rb:20:1606:20:2484 | SSA phi read(x) | UseUseExplosion.rb:20:1585:20:2500 | SSA phi read(x) |
+| UseUseExplosion.rb:20:1606:20:2484 | if ... | UseUseExplosion.rb:20:1601:20:2484 | then ... |
+| UseUseExplosion.rb:20:1610:20:1614 | @prop | UseUseExplosion.rb:20:1610:20:1619 | ... > ... |
+| UseUseExplosion.rb:20:1610:20:1614 | [post] self | UseUseExplosion.rb:20:1631:20:1635 | self |
+| UseUseExplosion.rb:20:1610:20:1614 | [post] self | UseUseExplosion.rb:20:2475:20:2480 | self |
+| UseUseExplosion.rb:20:1610:20:1614 | self | UseUseExplosion.rb:20:1631:20:1635 | self |
+| UseUseExplosion.rb:20:1610:20:1614 | self | UseUseExplosion.rb:20:2475:20:2480 | self |
+| UseUseExplosion.rb:20:1610:20:1619 | ... > ... | UseUseExplosion.rb:20:1609:20:1620 | [false] ( ... ) |
+| UseUseExplosion.rb:20:1610:20:1619 | ... > ... | UseUseExplosion.rb:20:1609:20:1620 | [true] ( ... ) |
+| UseUseExplosion.rb:20:1618:20:1619 | 24 | UseUseExplosion.rb:20:1610:20:1619 | ... > ... |
+| UseUseExplosion.rb:20:1622:20:2468 | then ... | UseUseExplosion.rb:20:1606:20:2484 | if ... |
+| UseUseExplosion.rb:20:1627:20:2468 | SSA phi read(self) | UseUseExplosion.rb:20:1606:20:2484 | SSA phi read(self) |
+| UseUseExplosion.rb:20:1627:20:2468 | SSA phi read(x) | UseUseExplosion.rb:20:1606:20:2484 | SSA phi read(x) |
+| UseUseExplosion.rb:20:1627:20:2468 | if ... | UseUseExplosion.rb:20:1622:20:2468 | then ... |
+| UseUseExplosion.rb:20:1631:20:1635 | @prop | UseUseExplosion.rb:20:1631:20:1640 | ... > ... |
+| UseUseExplosion.rb:20:1631:20:1635 | [post] self | UseUseExplosion.rb:20:1652:20:1656 | self |
+| UseUseExplosion.rb:20:1631:20:1635 | [post] self | UseUseExplosion.rb:20:2459:20:2464 | self |
+| UseUseExplosion.rb:20:1631:20:1635 | self | UseUseExplosion.rb:20:1652:20:1656 | self |
+| UseUseExplosion.rb:20:1631:20:1635 | self | UseUseExplosion.rb:20:2459:20:2464 | self |
+| UseUseExplosion.rb:20:1631:20:1640 | ... > ... | UseUseExplosion.rb:20:1630:20:1641 | [false] ( ... ) |
+| UseUseExplosion.rb:20:1631:20:1640 | ... > ... | UseUseExplosion.rb:20:1630:20:1641 | [true] ( ... ) |
+| UseUseExplosion.rb:20:1639:20:1640 | 23 | UseUseExplosion.rb:20:1631:20:1640 | ... > ... |
+| UseUseExplosion.rb:20:1643:20:2452 | then ... | UseUseExplosion.rb:20:1627:20:2468 | if ... |
+| UseUseExplosion.rb:20:1648:20:2452 | SSA phi read(self) | UseUseExplosion.rb:20:1627:20:2468 | SSA phi read(self) |
+| UseUseExplosion.rb:20:1648:20:2452 | SSA phi read(x) | UseUseExplosion.rb:20:1627:20:2468 | SSA phi read(x) |
+| UseUseExplosion.rb:20:1648:20:2452 | if ... | UseUseExplosion.rb:20:1643:20:2452 | then ... |
+| UseUseExplosion.rb:20:1652:20:1656 | @prop | UseUseExplosion.rb:20:1652:20:1661 | ... > ... |
+| UseUseExplosion.rb:20:1652:20:1656 | [post] self | UseUseExplosion.rb:20:1673:20:1677 | self |
+| UseUseExplosion.rb:20:1652:20:1656 | [post] self | UseUseExplosion.rb:20:2443:20:2448 | self |
+| UseUseExplosion.rb:20:1652:20:1656 | self | UseUseExplosion.rb:20:1673:20:1677 | self |
+| UseUseExplosion.rb:20:1652:20:1656 | self | UseUseExplosion.rb:20:2443:20:2448 | self |
+| UseUseExplosion.rb:20:1652:20:1661 | ... > ... | UseUseExplosion.rb:20:1651:20:1662 | [false] ( ... ) |
+| UseUseExplosion.rb:20:1652:20:1661 | ... > ... | UseUseExplosion.rb:20:1651:20:1662 | [true] ( ... ) |
+| UseUseExplosion.rb:20:1660:20:1661 | 22 | UseUseExplosion.rb:20:1652:20:1661 | ... > ... |
+| UseUseExplosion.rb:20:1664:20:2436 | then ... | UseUseExplosion.rb:20:1648:20:2452 | if ... |
+| UseUseExplosion.rb:20:1669:20:2436 | SSA phi read(self) | UseUseExplosion.rb:20:1648:20:2452 | SSA phi read(self) |
+| UseUseExplosion.rb:20:1669:20:2436 | SSA phi read(x) | UseUseExplosion.rb:20:1648:20:2452 | SSA phi read(x) |
+| UseUseExplosion.rb:20:1669:20:2436 | if ... | UseUseExplosion.rb:20:1664:20:2436 | then ... |
+| UseUseExplosion.rb:20:1673:20:1677 | @prop | UseUseExplosion.rb:20:1673:20:1682 | ... > ... |
+| UseUseExplosion.rb:20:1673:20:1677 | [post] self | UseUseExplosion.rb:20:1694:20:1698 | self |
+| UseUseExplosion.rb:20:1673:20:1677 | [post] self | UseUseExplosion.rb:20:2427:20:2432 | self |
+| UseUseExplosion.rb:20:1673:20:1677 | self | UseUseExplosion.rb:20:1694:20:1698 | self |
+| UseUseExplosion.rb:20:1673:20:1677 | self | UseUseExplosion.rb:20:2427:20:2432 | self |
+| UseUseExplosion.rb:20:1673:20:1682 | ... > ... | UseUseExplosion.rb:20:1672:20:1683 | [false] ( ... ) |
+| UseUseExplosion.rb:20:1673:20:1682 | ... > ... | UseUseExplosion.rb:20:1672:20:1683 | [true] ( ... ) |
+| UseUseExplosion.rb:20:1681:20:1682 | 21 | UseUseExplosion.rb:20:1673:20:1682 | ... > ... |
+| UseUseExplosion.rb:20:1685:20:2420 | then ... | UseUseExplosion.rb:20:1669:20:2436 | if ... |
+| UseUseExplosion.rb:20:1690:20:2420 | SSA phi read(self) | UseUseExplosion.rb:20:1669:20:2436 | SSA phi read(self) |
+| UseUseExplosion.rb:20:1690:20:2420 | SSA phi read(x) | UseUseExplosion.rb:20:1669:20:2436 | SSA phi read(x) |
+| UseUseExplosion.rb:20:1690:20:2420 | if ... | UseUseExplosion.rb:20:1685:20:2420 | then ... |
+| UseUseExplosion.rb:20:1694:20:1698 | @prop | UseUseExplosion.rb:20:1694:20:1703 | ... > ... |
+| UseUseExplosion.rb:20:1694:20:1698 | [post] self | UseUseExplosion.rb:20:1715:20:1719 | self |
+| UseUseExplosion.rb:20:1694:20:1698 | [post] self | UseUseExplosion.rb:20:2411:20:2416 | self |
+| UseUseExplosion.rb:20:1694:20:1698 | self | UseUseExplosion.rb:20:1715:20:1719 | self |
+| UseUseExplosion.rb:20:1694:20:1698 | self | UseUseExplosion.rb:20:2411:20:2416 | self |
+| UseUseExplosion.rb:20:1694:20:1703 | ... > ... | UseUseExplosion.rb:20:1693:20:1704 | [false] ( ... ) |
+| UseUseExplosion.rb:20:1694:20:1703 | ... > ... | UseUseExplosion.rb:20:1693:20:1704 | [true] ( ... ) |
+| UseUseExplosion.rb:20:1702:20:1703 | 20 | UseUseExplosion.rb:20:1694:20:1703 | ... > ... |
+| UseUseExplosion.rb:20:1706:20:2404 | then ... | UseUseExplosion.rb:20:1690:20:2420 | if ... |
+| UseUseExplosion.rb:20:1711:20:2404 | SSA phi read(self) | UseUseExplosion.rb:20:1690:20:2420 | SSA phi read(self) |
+| UseUseExplosion.rb:20:1711:20:2404 | SSA phi read(x) | UseUseExplosion.rb:20:1690:20:2420 | SSA phi read(x) |
+| UseUseExplosion.rb:20:1711:20:2404 | if ... | UseUseExplosion.rb:20:1706:20:2404 | then ... |
+| UseUseExplosion.rb:20:1715:20:1719 | @prop | UseUseExplosion.rb:20:1715:20:1724 | ... > ... |
+| UseUseExplosion.rb:20:1715:20:1719 | [post] self | UseUseExplosion.rb:20:1736:20:1740 | self |
+| UseUseExplosion.rb:20:1715:20:1719 | [post] self | UseUseExplosion.rb:20:2395:20:2400 | self |
+| UseUseExplosion.rb:20:1715:20:1719 | self | UseUseExplosion.rb:20:1736:20:1740 | self |
+| UseUseExplosion.rb:20:1715:20:1719 | self | UseUseExplosion.rb:20:2395:20:2400 | self |
+| UseUseExplosion.rb:20:1715:20:1724 | ... > ... | UseUseExplosion.rb:20:1714:20:1725 | [false] ( ... ) |
+| UseUseExplosion.rb:20:1715:20:1724 | ... > ... | UseUseExplosion.rb:20:1714:20:1725 | [true] ( ... ) |
+| UseUseExplosion.rb:20:1723:20:1724 | 19 | UseUseExplosion.rb:20:1715:20:1724 | ... > ... |
+| UseUseExplosion.rb:20:1727:20:2388 | then ... | UseUseExplosion.rb:20:1711:20:2404 | if ... |
+| UseUseExplosion.rb:20:1732:20:2388 | SSA phi read(self) | UseUseExplosion.rb:20:1711:20:2404 | SSA phi read(self) |
+| UseUseExplosion.rb:20:1732:20:2388 | SSA phi read(x) | UseUseExplosion.rb:20:1711:20:2404 | SSA phi read(x) |
+| UseUseExplosion.rb:20:1732:20:2388 | if ... | UseUseExplosion.rb:20:1727:20:2388 | then ... |
+| UseUseExplosion.rb:20:1736:20:1740 | @prop | UseUseExplosion.rb:20:1736:20:1745 | ... > ... |
+| UseUseExplosion.rb:20:1736:20:1740 | [post] self | UseUseExplosion.rb:20:1757:20:1761 | self |
+| UseUseExplosion.rb:20:1736:20:1740 | [post] self | UseUseExplosion.rb:20:2379:20:2384 | self |
+| UseUseExplosion.rb:20:1736:20:1740 | self | UseUseExplosion.rb:20:1757:20:1761 | self |
+| UseUseExplosion.rb:20:1736:20:1740 | self | UseUseExplosion.rb:20:2379:20:2384 | self |
+| UseUseExplosion.rb:20:1736:20:1745 | ... > ... | UseUseExplosion.rb:20:1735:20:1746 | [false] ( ... ) |
+| UseUseExplosion.rb:20:1736:20:1745 | ... > ... | UseUseExplosion.rb:20:1735:20:1746 | [true] ( ... ) |
+| UseUseExplosion.rb:20:1744:20:1745 | 18 | UseUseExplosion.rb:20:1736:20:1745 | ... > ... |
+| UseUseExplosion.rb:20:1748:20:2372 | then ... | UseUseExplosion.rb:20:1732:20:2388 | if ... |
+| UseUseExplosion.rb:20:1753:20:2372 | SSA phi read(self) | UseUseExplosion.rb:20:1732:20:2388 | SSA phi read(self) |
+| UseUseExplosion.rb:20:1753:20:2372 | SSA phi read(x) | UseUseExplosion.rb:20:1732:20:2388 | SSA phi read(x) |
+| UseUseExplosion.rb:20:1753:20:2372 | if ... | UseUseExplosion.rb:20:1748:20:2372 | then ... |
+| UseUseExplosion.rb:20:1757:20:1761 | @prop | UseUseExplosion.rb:20:1757:20:1766 | ... > ... |
+| UseUseExplosion.rb:20:1757:20:1761 | [post] self | UseUseExplosion.rb:20:1778:20:1782 | self |
+| UseUseExplosion.rb:20:1757:20:1761 | [post] self | UseUseExplosion.rb:20:2363:20:2368 | self |
+| UseUseExplosion.rb:20:1757:20:1761 | self | UseUseExplosion.rb:20:1778:20:1782 | self |
+| UseUseExplosion.rb:20:1757:20:1761 | self | UseUseExplosion.rb:20:2363:20:2368 | self |
+| UseUseExplosion.rb:20:1757:20:1766 | ... > ... | UseUseExplosion.rb:20:1756:20:1767 | [false] ( ... ) |
+| UseUseExplosion.rb:20:1757:20:1766 | ... > ... | UseUseExplosion.rb:20:1756:20:1767 | [true] ( ... ) |
+| UseUseExplosion.rb:20:1765:20:1766 | 17 | UseUseExplosion.rb:20:1757:20:1766 | ... > ... |
+| UseUseExplosion.rb:20:1769:20:2356 | then ... | UseUseExplosion.rb:20:1753:20:2372 | if ... |
+| UseUseExplosion.rb:20:1774:20:2356 | SSA phi read(self) | UseUseExplosion.rb:20:1753:20:2372 | SSA phi read(self) |
+| UseUseExplosion.rb:20:1774:20:2356 | SSA phi read(x) | UseUseExplosion.rb:20:1753:20:2372 | SSA phi read(x) |
+| UseUseExplosion.rb:20:1774:20:2356 | if ... | UseUseExplosion.rb:20:1769:20:2356 | then ... |
+| UseUseExplosion.rb:20:1778:20:1782 | @prop | UseUseExplosion.rb:20:1778:20:1787 | ... > ... |
+| UseUseExplosion.rb:20:1778:20:1782 | [post] self | UseUseExplosion.rb:20:1799:20:1803 | self |
+| UseUseExplosion.rb:20:1778:20:1782 | [post] self | UseUseExplosion.rb:20:2347:20:2352 | self |
+| UseUseExplosion.rb:20:1778:20:1782 | self | UseUseExplosion.rb:20:1799:20:1803 | self |
+| UseUseExplosion.rb:20:1778:20:1782 | self | UseUseExplosion.rb:20:2347:20:2352 | self |
+| UseUseExplosion.rb:20:1778:20:1787 | ... > ... | UseUseExplosion.rb:20:1777:20:1788 | [false] ( ... ) |
+| UseUseExplosion.rb:20:1778:20:1787 | ... > ... | UseUseExplosion.rb:20:1777:20:1788 | [true] ( ... ) |
+| UseUseExplosion.rb:20:1786:20:1787 | 16 | UseUseExplosion.rb:20:1778:20:1787 | ... > ... |
+| UseUseExplosion.rb:20:1790:20:2340 | then ... | UseUseExplosion.rb:20:1774:20:2356 | if ... |
+| UseUseExplosion.rb:20:1795:20:2340 | SSA phi read(self) | UseUseExplosion.rb:20:1774:20:2356 | SSA phi read(self) |
+| UseUseExplosion.rb:20:1795:20:2340 | SSA phi read(x) | UseUseExplosion.rb:20:1774:20:2356 | SSA phi read(x) |
+| UseUseExplosion.rb:20:1795:20:2340 | if ... | UseUseExplosion.rb:20:1790:20:2340 | then ... |
+| UseUseExplosion.rb:20:1799:20:1803 | @prop | UseUseExplosion.rb:20:1799:20:1808 | ... > ... |
+| UseUseExplosion.rb:20:1799:20:1803 | [post] self | UseUseExplosion.rb:20:1820:20:1824 | self |
+| UseUseExplosion.rb:20:1799:20:1803 | [post] self | UseUseExplosion.rb:20:2331:20:2336 | self |
+| UseUseExplosion.rb:20:1799:20:1803 | self | UseUseExplosion.rb:20:1820:20:1824 | self |
+| UseUseExplosion.rb:20:1799:20:1803 | self | UseUseExplosion.rb:20:2331:20:2336 | self |
+| UseUseExplosion.rb:20:1799:20:1808 | ... > ... | UseUseExplosion.rb:20:1798:20:1809 | [false] ( ... ) |
+| UseUseExplosion.rb:20:1799:20:1808 | ... > ... | UseUseExplosion.rb:20:1798:20:1809 | [true] ( ... ) |
+| UseUseExplosion.rb:20:1807:20:1808 | 15 | UseUseExplosion.rb:20:1799:20:1808 | ... > ... |
+| UseUseExplosion.rb:20:1811:20:2324 | then ... | UseUseExplosion.rb:20:1795:20:2340 | if ... |
+| UseUseExplosion.rb:20:1816:20:2324 | SSA phi read(self) | UseUseExplosion.rb:20:1795:20:2340 | SSA phi read(self) |
+| UseUseExplosion.rb:20:1816:20:2324 | SSA phi read(x) | UseUseExplosion.rb:20:1795:20:2340 | SSA phi read(x) |
+| UseUseExplosion.rb:20:1816:20:2324 | if ... | UseUseExplosion.rb:20:1811:20:2324 | then ... |
+| UseUseExplosion.rb:20:1820:20:1824 | @prop | UseUseExplosion.rb:20:1820:20:1829 | ... > ... |
+| UseUseExplosion.rb:20:1820:20:1824 | [post] self | UseUseExplosion.rb:20:1841:20:1845 | self |
+| UseUseExplosion.rb:20:1820:20:1824 | [post] self | UseUseExplosion.rb:20:2315:20:2320 | self |
+| UseUseExplosion.rb:20:1820:20:1824 | self | UseUseExplosion.rb:20:1841:20:1845 | self |
+| UseUseExplosion.rb:20:1820:20:1824 | self | UseUseExplosion.rb:20:2315:20:2320 | self |
+| UseUseExplosion.rb:20:1820:20:1829 | ... > ... | UseUseExplosion.rb:20:1819:20:1830 | [false] ( ... ) |
+| UseUseExplosion.rb:20:1820:20:1829 | ... > ... | UseUseExplosion.rb:20:1819:20:1830 | [true] ( ... ) |
+| UseUseExplosion.rb:20:1828:20:1829 | 14 | UseUseExplosion.rb:20:1820:20:1829 | ... > ... |
+| UseUseExplosion.rb:20:1832:20:2308 | then ... | UseUseExplosion.rb:20:1816:20:2324 | if ... |
+| UseUseExplosion.rb:20:1837:20:2308 | SSA phi read(self) | UseUseExplosion.rb:20:1816:20:2324 | SSA phi read(self) |
+| UseUseExplosion.rb:20:1837:20:2308 | SSA phi read(x) | UseUseExplosion.rb:20:1816:20:2324 | SSA phi read(x) |
+| UseUseExplosion.rb:20:1837:20:2308 | if ... | UseUseExplosion.rb:20:1832:20:2308 | then ... |
+| UseUseExplosion.rb:20:1841:20:1845 | @prop | UseUseExplosion.rb:20:1841:20:1850 | ... > ... |
+| UseUseExplosion.rb:20:1841:20:1845 | [post] self | UseUseExplosion.rb:20:1862:20:1866 | self |
+| UseUseExplosion.rb:20:1841:20:1845 | [post] self | UseUseExplosion.rb:20:2299:20:2304 | self |
+| UseUseExplosion.rb:20:1841:20:1845 | self | UseUseExplosion.rb:20:1862:20:1866 | self |
+| UseUseExplosion.rb:20:1841:20:1845 | self | UseUseExplosion.rb:20:2299:20:2304 | self |
+| UseUseExplosion.rb:20:1841:20:1850 | ... > ... | UseUseExplosion.rb:20:1840:20:1851 | [false] ( ... ) |
+| UseUseExplosion.rb:20:1841:20:1850 | ... > ... | UseUseExplosion.rb:20:1840:20:1851 | [true] ( ... ) |
+| UseUseExplosion.rb:20:1849:20:1850 | 13 | UseUseExplosion.rb:20:1841:20:1850 | ... > ... |
+| UseUseExplosion.rb:20:1853:20:2292 | then ... | UseUseExplosion.rb:20:1837:20:2308 | if ... |
+| UseUseExplosion.rb:20:1858:20:2292 | SSA phi read(self) | UseUseExplosion.rb:20:1837:20:2308 | SSA phi read(self) |
+| UseUseExplosion.rb:20:1858:20:2292 | SSA phi read(x) | UseUseExplosion.rb:20:1837:20:2308 | SSA phi read(x) |
+| UseUseExplosion.rb:20:1858:20:2292 | if ... | UseUseExplosion.rb:20:1853:20:2292 | then ... |
+| UseUseExplosion.rb:20:1862:20:1866 | @prop | UseUseExplosion.rb:20:1862:20:1871 | ... > ... |
+| UseUseExplosion.rb:20:1862:20:1866 | [post] self | UseUseExplosion.rb:20:1883:20:1887 | self |
+| UseUseExplosion.rb:20:1862:20:1866 | [post] self | UseUseExplosion.rb:20:2283:20:2288 | self |
+| UseUseExplosion.rb:20:1862:20:1866 | self | UseUseExplosion.rb:20:1883:20:1887 | self |
+| UseUseExplosion.rb:20:1862:20:1866 | self | UseUseExplosion.rb:20:2283:20:2288 | self |
+| UseUseExplosion.rb:20:1862:20:1871 | ... > ... | UseUseExplosion.rb:20:1861:20:1872 | [false] ( ... ) |
+| UseUseExplosion.rb:20:1862:20:1871 | ... > ... | UseUseExplosion.rb:20:1861:20:1872 | [true] ( ... ) |
+| UseUseExplosion.rb:20:1870:20:1871 | 12 | UseUseExplosion.rb:20:1862:20:1871 | ... > ... |
+| UseUseExplosion.rb:20:1874:20:2276 | then ... | UseUseExplosion.rb:20:1858:20:2292 | if ... |
+| UseUseExplosion.rb:20:1879:20:2276 | SSA phi read(self) | UseUseExplosion.rb:20:1858:20:2292 | SSA phi read(self) |
+| UseUseExplosion.rb:20:1879:20:2276 | SSA phi read(x) | UseUseExplosion.rb:20:1858:20:2292 | SSA phi read(x) |
+| UseUseExplosion.rb:20:1879:20:2276 | if ... | UseUseExplosion.rb:20:1874:20:2276 | then ... |
+| UseUseExplosion.rb:20:1883:20:1887 | @prop | UseUseExplosion.rb:20:1883:20:1892 | ... > ... |
+| UseUseExplosion.rb:20:1883:20:1887 | [post] self | UseUseExplosion.rb:20:1904:20:1908 | self |
+| UseUseExplosion.rb:20:1883:20:1887 | [post] self | UseUseExplosion.rb:20:2267:20:2272 | self |
+| UseUseExplosion.rb:20:1883:20:1887 | self | UseUseExplosion.rb:20:1904:20:1908 | self |
+| UseUseExplosion.rb:20:1883:20:1887 | self | UseUseExplosion.rb:20:2267:20:2272 | self |
+| UseUseExplosion.rb:20:1883:20:1892 | ... > ... | UseUseExplosion.rb:20:1882:20:1893 | [false] ( ... ) |
+| UseUseExplosion.rb:20:1883:20:1892 | ... > ... | UseUseExplosion.rb:20:1882:20:1893 | [true] ( ... ) |
+| UseUseExplosion.rb:20:1891:20:1892 | 11 | UseUseExplosion.rb:20:1883:20:1892 | ... > ... |
+| UseUseExplosion.rb:20:1895:20:2260 | then ... | UseUseExplosion.rb:20:1879:20:2276 | if ... |
+| UseUseExplosion.rb:20:1900:20:2260 | SSA phi read(self) | UseUseExplosion.rb:20:1879:20:2276 | SSA phi read(self) |
+| UseUseExplosion.rb:20:1900:20:2260 | SSA phi read(x) | UseUseExplosion.rb:20:1879:20:2276 | SSA phi read(x) |
+| UseUseExplosion.rb:20:1900:20:2260 | if ... | UseUseExplosion.rb:20:1895:20:2260 | then ... |
+| UseUseExplosion.rb:20:1904:20:1908 | @prop | UseUseExplosion.rb:20:1904:20:1913 | ... > ... |
+| UseUseExplosion.rb:20:1904:20:1908 | [post] self | UseUseExplosion.rb:20:1925:20:1929 | self |
+| UseUseExplosion.rb:20:1904:20:1908 | [post] self | UseUseExplosion.rb:20:2251:20:2256 | self |
+| UseUseExplosion.rb:20:1904:20:1908 | self | UseUseExplosion.rb:20:1925:20:1929 | self |
+| UseUseExplosion.rb:20:1904:20:1908 | self | UseUseExplosion.rb:20:2251:20:2256 | self |
+| UseUseExplosion.rb:20:1904:20:1913 | ... > ... | UseUseExplosion.rb:20:1903:20:1914 | [false] ( ... ) |
+| UseUseExplosion.rb:20:1904:20:1913 | ... > ... | UseUseExplosion.rb:20:1903:20:1914 | [true] ( ... ) |
+| UseUseExplosion.rb:20:1912:20:1913 | 10 | UseUseExplosion.rb:20:1904:20:1913 | ... > ... |
+| UseUseExplosion.rb:20:1916:20:2244 | then ... | UseUseExplosion.rb:20:1900:20:2260 | if ... |
+| UseUseExplosion.rb:20:1921:20:2244 | SSA phi read(self) | UseUseExplosion.rb:20:1900:20:2260 | SSA phi read(self) |
+| UseUseExplosion.rb:20:1921:20:2244 | SSA phi read(x) | UseUseExplosion.rb:20:1900:20:2260 | SSA phi read(x) |
+| UseUseExplosion.rb:20:1921:20:2244 | if ... | UseUseExplosion.rb:20:1916:20:2244 | then ... |
+| UseUseExplosion.rb:20:1925:20:1929 | @prop | UseUseExplosion.rb:20:1925:20:1933 | ... > ... |
+| UseUseExplosion.rb:20:1925:20:1929 | [post] self | UseUseExplosion.rb:20:1945:20:1949 | self |
+| UseUseExplosion.rb:20:1925:20:1929 | [post] self | UseUseExplosion.rb:20:2235:20:2240 | self |
+| UseUseExplosion.rb:20:1925:20:1929 | self | UseUseExplosion.rb:20:1945:20:1949 | self |
+| UseUseExplosion.rb:20:1925:20:1929 | self | UseUseExplosion.rb:20:2235:20:2240 | self |
+| UseUseExplosion.rb:20:1925:20:1933 | ... > ... | UseUseExplosion.rb:20:1924:20:1934 | [false] ( ... ) |
+| UseUseExplosion.rb:20:1925:20:1933 | ... > ... | UseUseExplosion.rb:20:1924:20:1934 | [true] ( ... ) |
+| UseUseExplosion.rb:20:1933:20:1933 | 9 | UseUseExplosion.rb:20:1925:20:1933 | ... > ... |
+| UseUseExplosion.rb:20:1936:20:2228 | then ... | UseUseExplosion.rb:20:1921:20:2244 | if ... |
+| UseUseExplosion.rb:20:1941:20:2228 | SSA phi read(self) | UseUseExplosion.rb:20:1921:20:2244 | SSA phi read(self) |
+| UseUseExplosion.rb:20:1941:20:2228 | SSA phi read(x) | UseUseExplosion.rb:20:1921:20:2244 | SSA phi read(x) |
+| UseUseExplosion.rb:20:1941:20:2228 | if ... | UseUseExplosion.rb:20:1936:20:2228 | then ... |
+| UseUseExplosion.rb:20:1945:20:1949 | @prop | UseUseExplosion.rb:20:1945:20:1953 | ... > ... |
+| UseUseExplosion.rb:20:1945:20:1949 | [post] self | UseUseExplosion.rb:20:1965:20:1969 | self |
+| UseUseExplosion.rb:20:1945:20:1949 | [post] self | UseUseExplosion.rb:20:2219:20:2224 | self |
+| UseUseExplosion.rb:20:1945:20:1949 | self | UseUseExplosion.rb:20:1965:20:1969 | self |
+| UseUseExplosion.rb:20:1945:20:1949 | self | UseUseExplosion.rb:20:2219:20:2224 | self |
+| UseUseExplosion.rb:20:1945:20:1953 | ... > ... | UseUseExplosion.rb:20:1944:20:1954 | [false] ( ... ) |
+| UseUseExplosion.rb:20:1945:20:1953 | ... > ... | UseUseExplosion.rb:20:1944:20:1954 | [true] ( ... ) |
+| UseUseExplosion.rb:20:1953:20:1953 | 8 | UseUseExplosion.rb:20:1945:20:1953 | ... > ... |
+| UseUseExplosion.rb:20:1956:20:2212 | then ... | UseUseExplosion.rb:20:1941:20:2228 | if ... |
+| UseUseExplosion.rb:20:1961:20:2212 | SSA phi read(self) | UseUseExplosion.rb:20:1941:20:2228 | SSA phi read(self) |
+| UseUseExplosion.rb:20:1961:20:2212 | SSA phi read(x) | UseUseExplosion.rb:20:1941:20:2228 | SSA phi read(x) |
+| UseUseExplosion.rb:20:1961:20:2212 | if ... | UseUseExplosion.rb:20:1956:20:2212 | then ... |
+| UseUseExplosion.rb:20:1965:20:1969 | @prop | UseUseExplosion.rb:20:1965:20:1973 | ... > ... |
+| UseUseExplosion.rb:20:1965:20:1969 | [post] self | UseUseExplosion.rb:20:1985:20:1989 | self |
+| UseUseExplosion.rb:20:1965:20:1969 | [post] self | UseUseExplosion.rb:20:2203:20:2208 | self |
+| UseUseExplosion.rb:20:1965:20:1969 | self | UseUseExplosion.rb:20:1985:20:1989 | self |
+| UseUseExplosion.rb:20:1965:20:1969 | self | UseUseExplosion.rb:20:2203:20:2208 | self |
+| UseUseExplosion.rb:20:1965:20:1973 | ... > ... | UseUseExplosion.rb:20:1964:20:1974 | [false] ( ... ) |
+| UseUseExplosion.rb:20:1965:20:1973 | ... > ... | UseUseExplosion.rb:20:1964:20:1974 | [true] ( ... ) |
+| UseUseExplosion.rb:20:1973:20:1973 | 7 | UseUseExplosion.rb:20:1965:20:1973 | ... > ... |
+| UseUseExplosion.rb:20:1976:20:2196 | then ... | UseUseExplosion.rb:20:1961:20:2212 | if ... |
+| UseUseExplosion.rb:20:1981:20:2196 | SSA phi read(self) | UseUseExplosion.rb:20:1961:20:2212 | SSA phi read(self) |
+| UseUseExplosion.rb:20:1981:20:2196 | SSA phi read(x) | UseUseExplosion.rb:20:1961:20:2212 | SSA phi read(x) |
+| UseUseExplosion.rb:20:1981:20:2196 | if ... | UseUseExplosion.rb:20:1976:20:2196 | then ... |
+| UseUseExplosion.rb:20:1985:20:1989 | @prop | UseUseExplosion.rb:20:1985:20:1993 | ... > ... |
+| UseUseExplosion.rb:20:1985:20:1989 | [post] self | UseUseExplosion.rb:20:2005:20:2009 | self |
+| UseUseExplosion.rb:20:1985:20:1989 | [post] self | UseUseExplosion.rb:20:2187:20:2192 | self |
+| UseUseExplosion.rb:20:1985:20:1989 | self | UseUseExplosion.rb:20:2005:20:2009 | self |
+| UseUseExplosion.rb:20:1985:20:1989 | self | UseUseExplosion.rb:20:2187:20:2192 | self |
+| UseUseExplosion.rb:20:1985:20:1993 | ... > ... | UseUseExplosion.rb:20:1984:20:1994 | [false] ( ... ) |
+| UseUseExplosion.rb:20:1985:20:1993 | ... > ... | UseUseExplosion.rb:20:1984:20:1994 | [true] ( ... ) |
+| UseUseExplosion.rb:20:1993:20:1993 | 6 | UseUseExplosion.rb:20:1985:20:1993 | ... > ... |
+| UseUseExplosion.rb:20:1996:20:2180 | then ... | UseUseExplosion.rb:20:1981:20:2196 | if ... |
+| UseUseExplosion.rb:20:2001:20:2180 | SSA phi read(self) | UseUseExplosion.rb:20:1981:20:2196 | SSA phi read(self) |
+| UseUseExplosion.rb:20:2001:20:2180 | SSA phi read(x) | UseUseExplosion.rb:20:1981:20:2196 | SSA phi read(x) |
+| UseUseExplosion.rb:20:2001:20:2180 | if ... | UseUseExplosion.rb:20:1996:20:2180 | then ... |
+| UseUseExplosion.rb:20:2005:20:2009 | @prop | UseUseExplosion.rb:20:2005:20:2013 | ... > ... |
+| UseUseExplosion.rb:20:2005:20:2009 | [post] self | UseUseExplosion.rb:20:2025:20:2029 | self |
+| UseUseExplosion.rb:20:2005:20:2009 | [post] self | UseUseExplosion.rb:20:2171:20:2176 | self |
+| UseUseExplosion.rb:20:2005:20:2009 | self | UseUseExplosion.rb:20:2025:20:2029 | self |
+| UseUseExplosion.rb:20:2005:20:2009 | self | UseUseExplosion.rb:20:2171:20:2176 | self |
+| UseUseExplosion.rb:20:2005:20:2013 | ... > ... | UseUseExplosion.rb:20:2004:20:2014 | [false] ( ... ) |
+| UseUseExplosion.rb:20:2005:20:2013 | ... > ... | UseUseExplosion.rb:20:2004:20:2014 | [true] ( ... ) |
+| UseUseExplosion.rb:20:2013:20:2013 | 5 | UseUseExplosion.rb:20:2005:20:2013 | ... > ... |
+| UseUseExplosion.rb:20:2016:20:2164 | then ... | UseUseExplosion.rb:20:2001:20:2180 | if ... |
+| UseUseExplosion.rb:20:2021:20:2164 | SSA phi read(self) | UseUseExplosion.rb:20:2001:20:2180 | SSA phi read(self) |
+| UseUseExplosion.rb:20:2021:20:2164 | SSA phi read(x) | UseUseExplosion.rb:20:2001:20:2180 | SSA phi read(x) |
+| UseUseExplosion.rb:20:2021:20:2164 | if ... | UseUseExplosion.rb:20:2016:20:2164 | then ... |
+| UseUseExplosion.rb:20:2025:20:2029 | @prop | UseUseExplosion.rb:20:2025:20:2033 | ... > ... |
+| UseUseExplosion.rb:20:2025:20:2029 | [post] self | UseUseExplosion.rb:20:2045:20:2049 | self |
+| UseUseExplosion.rb:20:2025:20:2029 | [post] self | UseUseExplosion.rb:20:2155:20:2160 | self |
+| UseUseExplosion.rb:20:2025:20:2029 | self | UseUseExplosion.rb:20:2045:20:2049 | self |
+| UseUseExplosion.rb:20:2025:20:2029 | self | UseUseExplosion.rb:20:2155:20:2160 | self |
+| UseUseExplosion.rb:20:2025:20:2033 | ... > ... | UseUseExplosion.rb:20:2024:20:2034 | [false] ( ... ) |
+| UseUseExplosion.rb:20:2025:20:2033 | ... > ... | UseUseExplosion.rb:20:2024:20:2034 | [true] ( ... ) |
+| UseUseExplosion.rb:20:2033:20:2033 | 4 | UseUseExplosion.rb:20:2025:20:2033 | ... > ... |
+| UseUseExplosion.rb:20:2036:20:2148 | then ... | UseUseExplosion.rb:20:2021:20:2164 | if ... |
+| UseUseExplosion.rb:20:2041:20:2148 | SSA phi read(self) | UseUseExplosion.rb:20:2021:20:2164 | SSA phi read(self) |
+| UseUseExplosion.rb:20:2041:20:2148 | SSA phi read(x) | UseUseExplosion.rb:20:2021:20:2164 | SSA phi read(x) |
+| UseUseExplosion.rb:20:2041:20:2148 | if ... | UseUseExplosion.rb:20:2036:20:2148 | then ... |
+| UseUseExplosion.rb:20:2045:20:2049 | @prop | UseUseExplosion.rb:20:2045:20:2053 | ... > ... |
+| UseUseExplosion.rb:20:2045:20:2049 | [post] self | UseUseExplosion.rb:20:2065:20:2069 | self |
+| UseUseExplosion.rb:20:2045:20:2049 | [post] self | UseUseExplosion.rb:20:2139:20:2144 | self |
+| UseUseExplosion.rb:20:2045:20:2049 | self | UseUseExplosion.rb:20:2065:20:2069 | self |
+| UseUseExplosion.rb:20:2045:20:2049 | self | UseUseExplosion.rb:20:2139:20:2144 | self |
+| UseUseExplosion.rb:20:2045:20:2053 | ... > ... | UseUseExplosion.rb:20:2044:20:2054 | [false] ( ... ) |
+| UseUseExplosion.rb:20:2045:20:2053 | ... > ... | UseUseExplosion.rb:20:2044:20:2054 | [true] ( ... ) |
+| UseUseExplosion.rb:20:2053:20:2053 | 3 | UseUseExplosion.rb:20:2045:20:2053 | ... > ... |
+| UseUseExplosion.rb:20:2056:20:2132 | then ... | UseUseExplosion.rb:20:2041:20:2148 | if ... |
+| UseUseExplosion.rb:20:2061:20:2132 | SSA phi read(self) | UseUseExplosion.rb:20:2041:20:2148 | SSA phi read(self) |
+| UseUseExplosion.rb:20:2061:20:2132 | SSA phi read(x) | UseUseExplosion.rb:20:2041:20:2148 | SSA phi read(x) |
+| UseUseExplosion.rb:20:2061:20:2132 | if ... | UseUseExplosion.rb:20:2056:20:2132 | then ... |
+| UseUseExplosion.rb:20:2065:20:2069 | @prop | UseUseExplosion.rb:20:2065:20:2073 | ... > ... |
+| UseUseExplosion.rb:20:2065:20:2069 | [post] self | UseUseExplosion.rb:20:2085:20:2089 | self |
+| UseUseExplosion.rb:20:2065:20:2069 | [post] self | UseUseExplosion.rb:20:2123:20:2128 | self |
+| UseUseExplosion.rb:20:2065:20:2069 | self | UseUseExplosion.rb:20:2085:20:2089 | self |
+| UseUseExplosion.rb:20:2065:20:2069 | self | UseUseExplosion.rb:20:2123:20:2128 | self |
+| UseUseExplosion.rb:20:2065:20:2073 | ... > ... | UseUseExplosion.rb:20:2064:20:2074 | [false] ( ... ) |
+| UseUseExplosion.rb:20:2065:20:2073 | ... > ... | UseUseExplosion.rb:20:2064:20:2074 | [true] ( ... ) |
+| UseUseExplosion.rb:20:2073:20:2073 | 2 | UseUseExplosion.rb:20:2065:20:2073 | ... > ... |
+| UseUseExplosion.rb:20:2076:20:2116 | then ... | UseUseExplosion.rb:20:2061:20:2132 | if ... |
+| UseUseExplosion.rb:20:2081:20:2116 | SSA phi read(self) | UseUseExplosion.rb:20:2061:20:2132 | SSA phi read(self) |
+| UseUseExplosion.rb:20:2081:20:2116 | SSA phi read(x) | UseUseExplosion.rb:20:2061:20:2132 | SSA phi read(x) |
+| UseUseExplosion.rb:20:2081:20:2116 | if ... | UseUseExplosion.rb:20:2076:20:2116 | then ... |
+| UseUseExplosion.rb:20:2085:20:2089 | @prop | UseUseExplosion.rb:20:2085:20:2093 | ... > ... |
+| UseUseExplosion.rb:20:2085:20:2089 | [post] self | UseUseExplosion.rb:20:2107:20:2112 | self |
+| UseUseExplosion.rb:20:2085:20:2089 | self | UseUseExplosion.rb:20:2107:20:2112 | self |
+| UseUseExplosion.rb:20:2085:20:2093 | ... > ... | UseUseExplosion.rb:20:2084:20:2094 | [false] ( ... ) |
+| UseUseExplosion.rb:20:2085:20:2093 | ... > ... | UseUseExplosion.rb:20:2084:20:2094 | [true] ( ... ) |
+| UseUseExplosion.rb:20:2093:20:2093 | 1 | UseUseExplosion.rb:20:2085:20:2093 | ... > ... |
+| UseUseExplosion.rb:20:2096:20:2099 | then ... | UseUseExplosion.rb:20:2081:20:2116 | if ... |
+| UseUseExplosion.rb:20:2102:20:2112 | else ... | UseUseExplosion.rb:20:2081:20:2116 | if ... |
+| UseUseExplosion.rb:20:2107:20:2112 | call to use | UseUseExplosion.rb:20:2102:20:2112 | else ... |
+| UseUseExplosion.rb:20:2118:20:2128 | else ... | UseUseExplosion.rb:20:2061:20:2132 | if ... |
+| UseUseExplosion.rb:20:2123:20:2128 | call to use | UseUseExplosion.rb:20:2118:20:2128 | else ... |
+| UseUseExplosion.rb:20:2134:20:2144 | else ... | UseUseExplosion.rb:20:2041:20:2148 | if ... |
+| UseUseExplosion.rb:20:2139:20:2144 | call to use | UseUseExplosion.rb:20:2134:20:2144 | else ... |
+| UseUseExplosion.rb:20:2150:20:2160 | else ... | UseUseExplosion.rb:20:2021:20:2164 | if ... |
+| UseUseExplosion.rb:20:2155:20:2160 | call to use | UseUseExplosion.rb:20:2150:20:2160 | else ... |
+| UseUseExplosion.rb:20:2166:20:2176 | else ... | UseUseExplosion.rb:20:2001:20:2180 | if ... |
+| UseUseExplosion.rb:20:2171:20:2176 | call to use | UseUseExplosion.rb:20:2166:20:2176 | else ... |
+| UseUseExplosion.rb:20:2182:20:2192 | else ... | UseUseExplosion.rb:20:1981:20:2196 | if ... |
+| UseUseExplosion.rb:20:2187:20:2192 | call to use | UseUseExplosion.rb:20:2182:20:2192 | else ... |
+| UseUseExplosion.rb:20:2198:20:2208 | else ... | UseUseExplosion.rb:20:1961:20:2212 | if ... |
+| UseUseExplosion.rb:20:2203:20:2208 | call to use | UseUseExplosion.rb:20:2198:20:2208 | else ... |
+| UseUseExplosion.rb:20:2214:20:2224 | else ... | UseUseExplosion.rb:20:1941:20:2228 | if ... |
+| UseUseExplosion.rb:20:2219:20:2224 | call to use | UseUseExplosion.rb:20:2214:20:2224 | else ... |
+| UseUseExplosion.rb:20:2230:20:2240 | else ... | UseUseExplosion.rb:20:1921:20:2244 | if ... |
+| UseUseExplosion.rb:20:2235:20:2240 | call to use | UseUseExplosion.rb:20:2230:20:2240 | else ... |
+| UseUseExplosion.rb:20:2246:20:2256 | else ... | UseUseExplosion.rb:20:1900:20:2260 | if ... |
+| UseUseExplosion.rb:20:2251:20:2256 | call to use | UseUseExplosion.rb:20:2246:20:2256 | else ... |
+| UseUseExplosion.rb:20:2262:20:2272 | else ... | UseUseExplosion.rb:20:1879:20:2276 | if ... |
+| UseUseExplosion.rb:20:2267:20:2272 | call to use | UseUseExplosion.rb:20:2262:20:2272 | else ... |
+| UseUseExplosion.rb:20:2278:20:2288 | else ... | UseUseExplosion.rb:20:1858:20:2292 | if ... |
+| UseUseExplosion.rb:20:2283:20:2288 | call to use | UseUseExplosion.rb:20:2278:20:2288 | else ... |
+| UseUseExplosion.rb:20:2294:20:2304 | else ... | UseUseExplosion.rb:20:1837:20:2308 | if ... |
+| UseUseExplosion.rb:20:2299:20:2304 | call to use | UseUseExplosion.rb:20:2294:20:2304 | else ... |
+| UseUseExplosion.rb:20:2310:20:2320 | else ... | UseUseExplosion.rb:20:1816:20:2324 | if ... |
+| UseUseExplosion.rb:20:2315:20:2320 | call to use | UseUseExplosion.rb:20:2310:20:2320 | else ... |
+| UseUseExplosion.rb:20:2326:20:2336 | else ... | UseUseExplosion.rb:20:1795:20:2340 | if ... |
+| UseUseExplosion.rb:20:2331:20:2336 | call to use | UseUseExplosion.rb:20:2326:20:2336 | else ... |
+| UseUseExplosion.rb:20:2342:20:2352 | else ... | UseUseExplosion.rb:20:1774:20:2356 | if ... |
+| UseUseExplosion.rb:20:2347:20:2352 | call to use | UseUseExplosion.rb:20:2342:20:2352 | else ... |
+| UseUseExplosion.rb:20:2358:20:2368 | else ... | UseUseExplosion.rb:20:1753:20:2372 | if ... |
+| UseUseExplosion.rb:20:2363:20:2368 | call to use | UseUseExplosion.rb:20:2358:20:2368 | else ... |
+| UseUseExplosion.rb:20:2374:20:2384 | else ... | UseUseExplosion.rb:20:1732:20:2388 | if ... |
+| UseUseExplosion.rb:20:2379:20:2384 | call to use | UseUseExplosion.rb:20:2374:20:2384 | else ... |
+| UseUseExplosion.rb:20:2390:20:2400 | else ... | UseUseExplosion.rb:20:1711:20:2404 | if ... |
+| UseUseExplosion.rb:20:2395:20:2400 | call to use | UseUseExplosion.rb:20:2390:20:2400 | else ... |
+| UseUseExplosion.rb:20:2406:20:2416 | else ... | UseUseExplosion.rb:20:1690:20:2420 | if ... |
+| UseUseExplosion.rb:20:2411:20:2416 | call to use | UseUseExplosion.rb:20:2406:20:2416 | else ... |
+| UseUseExplosion.rb:20:2422:20:2432 | else ... | UseUseExplosion.rb:20:1669:20:2436 | if ... |
+| UseUseExplosion.rb:20:2427:20:2432 | call to use | UseUseExplosion.rb:20:2422:20:2432 | else ... |
+| UseUseExplosion.rb:20:2438:20:2448 | else ... | UseUseExplosion.rb:20:1648:20:2452 | if ... |
+| UseUseExplosion.rb:20:2443:20:2448 | call to use | UseUseExplosion.rb:20:2438:20:2448 | else ... |
+| UseUseExplosion.rb:20:2454:20:2464 | else ... | UseUseExplosion.rb:20:1627:20:2468 | if ... |
+| UseUseExplosion.rb:20:2459:20:2464 | call to use | UseUseExplosion.rb:20:2454:20:2464 | else ... |
+| UseUseExplosion.rb:20:2470:20:2480 | else ... | UseUseExplosion.rb:20:1606:20:2484 | if ... |
+| UseUseExplosion.rb:20:2475:20:2480 | call to use | UseUseExplosion.rb:20:2470:20:2480 | else ... |
+| UseUseExplosion.rb:20:2486:20:2496 | else ... | UseUseExplosion.rb:20:1585:20:2500 | if ... |
+| UseUseExplosion.rb:20:2491:20:2496 | call to use | UseUseExplosion.rb:20:2486:20:2496 | else ... |
+| UseUseExplosion.rb:20:2502:20:2512 | else ... | UseUseExplosion.rb:20:1564:20:2516 | if ... |
+| UseUseExplosion.rb:20:2507:20:2512 | call to use | UseUseExplosion.rb:20:2502:20:2512 | else ... |
+| UseUseExplosion.rb:20:2518:20:2528 | else ... | UseUseExplosion.rb:20:1543:20:2532 | if ... |
+| UseUseExplosion.rb:20:2523:20:2528 | call to use | UseUseExplosion.rb:20:2518:20:2528 | else ... |
+| UseUseExplosion.rb:20:2534:20:2544 | else ... | UseUseExplosion.rb:20:1522:20:2548 | if ... |
+| UseUseExplosion.rb:20:2539:20:2544 | call to use | UseUseExplosion.rb:20:2534:20:2544 | else ... |
+| UseUseExplosion.rb:20:2550:20:2560 | else ... | UseUseExplosion.rb:20:1501:20:2564 | if ... |
+| UseUseExplosion.rb:20:2555:20:2560 | call to use | UseUseExplosion.rb:20:2550:20:2560 | else ... |
+| UseUseExplosion.rb:20:2566:20:2576 | else ... | UseUseExplosion.rb:20:1480:20:2580 | if ... |
+| UseUseExplosion.rb:20:2571:20:2576 | call to use | UseUseExplosion.rb:20:2566:20:2576 | else ... |
+| UseUseExplosion.rb:20:2582:20:2592 | else ... | UseUseExplosion.rb:20:1459:20:2596 | if ... |
+| UseUseExplosion.rb:20:2587:20:2592 | call to use | UseUseExplosion.rb:20:2582:20:2592 | else ... |
+| UseUseExplosion.rb:20:2598:20:2608 | else ... | UseUseExplosion.rb:20:1438:20:2612 | if ... |
+| UseUseExplosion.rb:20:2603:20:2608 | call to use | UseUseExplosion.rb:20:2598:20:2608 | else ... |
+| UseUseExplosion.rb:20:2614:20:2624 | else ... | UseUseExplosion.rb:20:1417:20:2628 | if ... |
+| UseUseExplosion.rb:20:2619:20:2624 | call to use | UseUseExplosion.rb:20:2614:20:2624 | else ... |
+| UseUseExplosion.rb:20:2630:20:2640 | else ... | UseUseExplosion.rb:20:1396:20:2644 | if ... |
+| UseUseExplosion.rb:20:2635:20:2640 | call to use | UseUseExplosion.rb:20:2630:20:2640 | else ... |
+| UseUseExplosion.rb:20:2646:20:2656 | else ... | UseUseExplosion.rb:20:1375:20:2660 | if ... |
+| UseUseExplosion.rb:20:2651:20:2656 | call to use | UseUseExplosion.rb:20:2646:20:2656 | else ... |
+| UseUseExplosion.rb:20:2662:20:2672 | else ... | UseUseExplosion.rb:20:1354:20:2676 | if ... |
+| UseUseExplosion.rb:20:2667:20:2672 | call to use | UseUseExplosion.rb:20:2662:20:2672 | else ... |
+| UseUseExplosion.rb:20:2678:20:2688 | else ... | UseUseExplosion.rb:20:1333:20:2692 | if ... |
+| UseUseExplosion.rb:20:2683:20:2688 | call to use | UseUseExplosion.rb:20:2678:20:2688 | else ... |
+| UseUseExplosion.rb:20:2694:20:2704 | else ... | UseUseExplosion.rb:20:1312:20:2708 | if ... |
+| UseUseExplosion.rb:20:2699:20:2704 | call to use | UseUseExplosion.rb:20:2694:20:2704 | else ... |
+| UseUseExplosion.rb:20:2710:20:2720 | else ... | UseUseExplosion.rb:20:1291:20:2724 | if ... |
+| UseUseExplosion.rb:20:2715:20:2720 | call to use | UseUseExplosion.rb:20:2710:20:2720 | else ... |
+| UseUseExplosion.rb:20:2726:20:2736 | else ... | UseUseExplosion.rb:20:1270:20:2740 | if ... |
+| UseUseExplosion.rb:20:2731:20:2736 | call to use | UseUseExplosion.rb:20:2726:20:2736 | else ... |
+| UseUseExplosion.rb:20:2742:20:2752 | else ... | UseUseExplosion.rb:20:1249:20:2756 | if ... |
+| UseUseExplosion.rb:20:2747:20:2752 | call to use | UseUseExplosion.rb:20:2742:20:2752 | else ... |
+| UseUseExplosion.rb:20:2758:20:2768 | else ... | UseUseExplosion.rb:20:1228:20:2772 | if ... |
+| UseUseExplosion.rb:20:2763:20:2768 | call to use | UseUseExplosion.rb:20:2758:20:2768 | else ... |
+| UseUseExplosion.rb:20:2774:20:2784 | else ... | UseUseExplosion.rb:20:1207:20:2788 | if ... |
+| UseUseExplosion.rb:20:2779:20:2784 | call to use | UseUseExplosion.rb:20:2774:20:2784 | else ... |
+| UseUseExplosion.rb:20:2790:20:2800 | else ... | UseUseExplosion.rb:20:1186:20:2804 | if ... |
+| UseUseExplosion.rb:20:2795:20:2800 | call to use | UseUseExplosion.rb:20:2790:20:2800 | else ... |
+| UseUseExplosion.rb:20:2806:20:2816 | else ... | UseUseExplosion.rb:20:1165:20:2820 | if ... |
+| UseUseExplosion.rb:20:2811:20:2816 | call to use | UseUseExplosion.rb:20:2806:20:2816 | else ... |
+| UseUseExplosion.rb:20:2822:20:2832 | else ... | UseUseExplosion.rb:20:1144:20:2836 | if ... |
+| UseUseExplosion.rb:20:2827:20:2832 | call to use | UseUseExplosion.rb:20:2822:20:2832 | else ... |
+| UseUseExplosion.rb:20:2838:20:2848 | else ... | UseUseExplosion.rb:20:1123:20:2852 | if ... |
+| UseUseExplosion.rb:20:2843:20:2848 | call to use | UseUseExplosion.rb:20:2838:20:2848 | else ... |
+| UseUseExplosion.rb:20:2854:20:2864 | else ... | UseUseExplosion.rb:20:1102:20:2868 | if ... |
+| UseUseExplosion.rb:20:2859:20:2864 | call to use | UseUseExplosion.rb:20:2854:20:2864 | else ... |
+| UseUseExplosion.rb:20:2870:20:2880 | else ... | UseUseExplosion.rb:20:1081:20:2884 | if ... |
+| UseUseExplosion.rb:20:2875:20:2880 | call to use | UseUseExplosion.rb:20:2870:20:2880 | else ... |
+| UseUseExplosion.rb:20:2886:20:2896 | else ... | UseUseExplosion.rb:20:1060:20:2900 | if ... |
+| UseUseExplosion.rb:20:2891:20:2896 | call to use | UseUseExplosion.rb:20:2886:20:2896 | else ... |
+| UseUseExplosion.rb:20:2902:20:2912 | else ... | UseUseExplosion.rb:20:1039:20:2916 | if ... |
+| UseUseExplosion.rb:20:2907:20:2912 | call to use | UseUseExplosion.rb:20:2902:20:2912 | else ... |
+| UseUseExplosion.rb:20:2918:20:2928 | else ... | UseUseExplosion.rb:20:1018:20:2932 | if ... |
+| UseUseExplosion.rb:20:2923:20:2928 | call to use | UseUseExplosion.rb:20:2918:20:2928 | else ... |
+| UseUseExplosion.rb:20:2934:20:2944 | else ... | UseUseExplosion.rb:20:997:20:2948 | if ... |
+| UseUseExplosion.rb:20:2939:20:2944 | call to use | UseUseExplosion.rb:20:2934:20:2944 | else ... |
+| UseUseExplosion.rb:20:2950:20:2960 | else ... | UseUseExplosion.rb:20:976:20:2964 | if ... |
+| UseUseExplosion.rb:20:2955:20:2960 | call to use | UseUseExplosion.rb:20:2950:20:2960 | else ... |
+| UseUseExplosion.rb:20:2966:20:2976 | else ... | UseUseExplosion.rb:20:955:20:2980 | if ... |
+| UseUseExplosion.rb:20:2971:20:2976 | call to use | UseUseExplosion.rb:20:2966:20:2976 | else ... |
+| UseUseExplosion.rb:20:2982:20:2992 | else ... | UseUseExplosion.rb:20:934:20:2996 | if ... |
+| UseUseExplosion.rb:20:2987:20:2992 | call to use | UseUseExplosion.rb:20:2982:20:2992 | else ... |
+| UseUseExplosion.rb:20:2998:20:3008 | else ... | UseUseExplosion.rb:20:913:20:3012 | if ... |
+| UseUseExplosion.rb:20:3003:20:3008 | call to use | UseUseExplosion.rb:20:2998:20:3008 | else ... |
+| UseUseExplosion.rb:20:3014:20:3024 | else ... | UseUseExplosion.rb:20:892:20:3028 | if ... |
+| UseUseExplosion.rb:20:3019:20:3024 | call to use | UseUseExplosion.rb:20:3014:20:3024 | else ... |
+| UseUseExplosion.rb:20:3030:20:3040 | else ... | UseUseExplosion.rb:20:871:20:3044 | if ... |
+| UseUseExplosion.rb:20:3035:20:3040 | call to use | UseUseExplosion.rb:20:3030:20:3040 | else ... |
+| UseUseExplosion.rb:20:3046:20:3056 | else ... | UseUseExplosion.rb:20:850:20:3060 | if ... |
+| UseUseExplosion.rb:20:3051:20:3056 | call to use | UseUseExplosion.rb:20:3046:20:3056 | else ... |
+| UseUseExplosion.rb:20:3062:20:3072 | else ... | UseUseExplosion.rb:20:829:20:3076 | if ... |
+| UseUseExplosion.rb:20:3067:20:3072 | call to use | UseUseExplosion.rb:20:3062:20:3072 | else ... |
+| UseUseExplosion.rb:20:3078:20:3088 | else ... | UseUseExplosion.rb:20:808:20:3092 | if ... |
+| UseUseExplosion.rb:20:3083:20:3088 | call to use | UseUseExplosion.rb:20:3078:20:3088 | else ... |
+| UseUseExplosion.rb:20:3094:20:3104 | else ... | UseUseExplosion.rb:20:787:20:3108 | if ... |
+| UseUseExplosion.rb:20:3099:20:3104 | call to use | UseUseExplosion.rb:20:3094:20:3104 | else ... |
+| UseUseExplosion.rb:20:3110:20:3120 | else ... | UseUseExplosion.rb:20:766:20:3124 | if ... |
+| UseUseExplosion.rb:20:3115:20:3120 | call to use | UseUseExplosion.rb:20:3110:20:3120 | else ... |
+| UseUseExplosion.rb:20:3126:20:3136 | else ... | UseUseExplosion.rb:20:745:20:3140 | if ... |
+| UseUseExplosion.rb:20:3131:20:3136 | call to use | UseUseExplosion.rb:20:3126:20:3136 | else ... |
+| UseUseExplosion.rb:20:3142:20:3152 | else ... | UseUseExplosion.rb:20:724:20:3156 | if ... |
+| UseUseExplosion.rb:20:3147:20:3152 | call to use | UseUseExplosion.rb:20:3142:20:3152 | else ... |
+| UseUseExplosion.rb:20:3158:20:3168 | else ... | UseUseExplosion.rb:20:703:20:3172 | if ... |
+| UseUseExplosion.rb:20:3163:20:3168 | call to use | UseUseExplosion.rb:20:3158:20:3168 | else ... |
+| UseUseExplosion.rb:20:3174:20:3184 | else ... | UseUseExplosion.rb:20:682:20:3188 | if ... |
+| UseUseExplosion.rb:20:3179:20:3184 | call to use | UseUseExplosion.rb:20:3174:20:3184 | else ... |
+| UseUseExplosion.rb:20:3190:20:3200 | else ... | UseUseExplosion.rb:20:661:20:3204 | if ... |
+| UseUseExplosion.rb:20:3195:20:3200 | call to use | UseUseExplosion.rb:20:3190:20:3200 | else ... |
+| UseUseExplosion.rb:20:3206:20:3216 | else ... | UseUseExplosion.rb:20:640:20:3220 | if ... |
+| UseUseExplosion.rb:20:3211:20:3216 | call to use | UseUseExplosion.rb:20:3206:20:3216 | else ... |
+| UseUseExplosion.rb:20:3222:20:3232 | else ... | UseUseExplosion.rb:20:619:20:3236 | if ... |
+| UseUseExplosion.rb:20:3227:20:3232 | call to use | UseUseExplosion.rb:20:3222:20:3232 | else ... |
+| UseUseExplosion.rb:20:3238:20:3248 | else ... | UseUseExplosion.rb:20:598:20:3252 | if ... |
+| UseUseExplosion.rb:20:3243:20:3248 | call to use | UseUseExplosion.rb:20:3238:20:3248 | else ... |
+| UseUseExplosion.rb:20:3254:20:3264 | else ... | UseUseExplosion.rb:20:577:20:3268 | if ... |
+| UseUseExplosion.rb:20:3259:20:3264 | call to use | UseUseExplosion.rb:20:3254:20:3264 | else ... |
+| UseUseExplosion.rb:20:3270:20:3280 | else ... | UseUseExplosion.rb:20:556:20:3284 | if ... |
+| UseUseExplosion.rb:20:3275:20:3280 | call to use | UseUseExplosion.rb:20:3270:20:3280 | else ... |
+| UseUseExplosion.rb:20:3286:20:3296 | else ... | UseUseExplosion.rb:20:535:20:3300 | if ... |
+| UseUseExplosion.rb:20:3291:20:3296 | call to use | UseUseExplosion.rb:20:3286:20:3296 | else ... |
+| UseUseExplosion.rb:20:3302:20:3312 | else ... | UseUseExplosion.rb:20:514:20:3316 | if ... |
+| UseUseExplosion.rb:20:3307:20:3312 | call to use | UseUseExplosion.rb:20:3302:20:3312 | else ... |
+| UseUseExplosion.rb:20:3318:20:3328 | else ... | UseUseExplosion.rb:20:493:20:3332 | if ... |
+| UseUseExplosion.rb:20:3323:20:3328 | call to use | UseUseExplosion.rb:20:3318:20:3328 | else ... |
+| UseUseExplosion.rb:20:3334:20:3344 | else ... | UseUseExplosion.rb:20:472:20:3348 | if ... |
+| UseUseExplosion.rb:20:3339:20:3344 | call to use | UseUseExplosion.rb:20:3334:20:3344 | else ... |
+| UseUseExplosion.rb:20:3350:20:3360 | else ... | UseUseExplosion.rb:20:451:20:3364 | if ... |
+| UseUseExplosion.rb:20:3355:20:3360 | call to use | UseUseExplosion.rb:20:3350:20:3360 | else ... |
+| UseUseExplosion.rb:20:3366:20:3376 | else ... | UseUseExplosion.rb:20:430:20:3380 | if ... |
+| UseUseExplosion.rb:20:3371:20:3376 | call to use | UseUseExplosion.rb:20:3366:20:3376 | else ... |
+| UseUseExplosion.rb:20:3382:20:3392 | else ... | UseUseExplosion.rb:20:409:20:3396 | if ... |
+| UseUseExplosion.rb:20:3387:20:3392 | call to use | UseUseExplosion.rb:20:3382:20:3392 | else ... |
+| UseUseExplosion.rb:20:3398:20:3408 | else ... | UseUseExplosion.rb:20:388:20:3412 | if ... |
+| UseUseExplosion.rb:20:3403:20:3408 | call to use | UseUseExplosion.rb:20:3398:20:3408 | else ... |
+| UseUseExplosion.rb:20:3414:20:3424 | else ... | UseUseExplosion.rb:20:367:20:3428 | if ... |
+| UseUseExplosion.rb:20:3419:20:3424 | call to use | UseUseExplosion.rb:20:3414:20:3424 | else ... |
+| UseUseExplosion.rb:20:3430:20:3440 | else ... | UseUseExplosion.rb:20:346:20:3444 | if ... |
+| UseUseExplosion.rb:20:3435:20:3440 | call to use | UseUseExplosion.rb:20:3430:20:3440 | else ... |
+| UseUseExplosion.rb:20:3446:20:3456 | else ... | UseUseExplosion.rb:20:325:20:3460 | if ... |
+| UseUseExplosion.rb:20:3451:20:3456 | call to use | UseUseExplosion.rb:20:3446:20:3456 | else ... |
+| UseUseExplosion.rb:20:3462:20:3472 | else ... | UseUseExplosion.rb:20:304:20:3476 | if ... |
+| UseUseExplosion.rb:20:3467:20:3472 | call to use | UseUseExplosion.rb:20:3462:20:3472 | else ... |
+| UseUseExplosion.rb:20:3478:20:3488 | else ... | UseUseExplosion.rb:20:283:20:3492 | if ... |
+| UseUseExplosion.rb:20:3483:20:3488 | call to use | UseUseExplosion.rb:20:3478:20:3488 | else ... |
+| UseUseExplosion.rb:20:3494:20:3504 | else ... | UseUseExplosion.rb:20:262:20:3508 | if ... |
+| UseUseExplosion.rb:20:3499:20:3504 | call to use | UseUseExplosion.rb:20:3494:20:3504 | else ... |
+| UseUseExplosion.rb:20:3510:20:3520 | else ... | UseUseExplosion.rb:20:241:20:3524 | if ... |
+| UseUseExplosion.rb:20:3515:20:3520 | call to use | UseUseExplosion.rb:20:3510:20:3520 | else ... |
+| UseUseExplosion.rb:20:3526:20:3536 | else ... | UseUseExplosion.rb:20:220:20:3540 | if ... |
+| UseUseExplosion.rb:20:3531:20:3536 | call to use | UseUseExplosion.rb:20:3526:20:3536 | else ... |
+| UseUseExplosion.rb:20:3542:20:3552 | else ... | UseUseExplosion.rb:20:199:20:3556 | if ... |
+| UseUseExplosion.rb:20:3547:20:3552 | call to use | UseUseExplosion.rb:20:3542:20:3552 | else ... |
+| UseUseExplosion.rb:20:3558:20:3568 | else ... | UseUseExplosion.rb:20:178:20:3572 | if ... |
+| UseUseExplosion.rb:20:3563:20:3568 | call to use | UseUseExplosion.rb:20:3558:20:3568 | else ... |
+| UseUseExplosion.rb:20:3574:20:3584 | else ... | UseUseExplosion.rb:20:157:20:3588 | if ... |
+| UseUseExplosion.rb:20:3579:20:3584 | call to use | UseUseExplosion.rb:20:3574:20:3584 | else ... |
+| UseUseExplosion.rb:20:3590:20:3600 | else ... | UseUseExplosion.rb:20:136:20:3604 | if ... |
+| UseUseExplosion.rb:20:3595:20:3600 | call to use | UseUseExplosion.rb:20:3590:20:3600 | else ... |
+| UseUseExplosion.rb:20:3606:20:3616 | else ... | UseUseExplosion.rb:20:115:20:3620 | if ... |
+| UseUseExplosion.rb:20:3611:20:3616 | call to use | UseUseExplosion.rb:20:3606:20:3616 | else ... |
+| UseUseExplosion.rb:20:3622:20:3632 | else ... | UseUseExplosion.rb:20:94:20:3636 | if ... |
+| UseUseExplosion.rb:20:3627:20:3632 | call to use | UseUseExplosion.rb:20:3622:20:3632 | else ... |
+| UseUseExplosion.rb:20:3638:20:3648 | else ... | UseUseExplosion.rb:20:73:20:3652 | if ... |
+| UseUseExplosion.rb:20:3643:20:3648 | call to use | UseUseExplosion.rb:20:3638:20:3648 | else ... |
+| UseUseExplosion.rb:20:3654:20:3664 | else ... | UseUseExplosion.rb:20:52:20:3668 | if ... |
+| UseUseExplosion.rb:20:3659:20:3664 | call to use | UseUseExplosion.rb:20:3654:20:3664 | else ... |
+| UseUseExplosion.rb:20:3670:20:3680 | else ... | UseUseExplosion.rb:20:31:20:3684 | if ... |
+| UseUseExplosion.rb:20:3675:20:3680 | call to use | UseUseExplosion.rb:20:3670:20:3680 | else ... |
+| UseUseExplosion.rb:20:3686:20:3696 | else ... | UseUseExplosion.rb:20:9:20:3700 | if ... |
+| UseUseExplosion.rb:20:3691:20:3696 | call to use | UseUseExplosion.rb:20:3686:20:3696 | else ... |
+| UseUseExplosion.rb:21:13:21:17 | @prop | UseUseExplosion.rb:21:13:21:23 | ... > ... |
+| UseUseExplosion.rb:21:13:21:17 | [post] self | UseUseExplosion.rb:21:35:21:39 | self |
+| UseUseExplosion.rb:21:13:21:17 | [post] self | UseUseExplosion.rb:21:3691:21:3696 | self |
+| UseUseExplosion.rb:21:13:21:17 | self | UseUseExplosion.rb:21:35:21:39 | self |
+| UseUseExplosion.rb:21:13:21:17 | self | UseUseExplosion.rb:21:3691:21:3696 | self |
+| UseUseExplosion.rb:21:13:21:23 | ... > ... | UseUseExplosion.rb:21:12:21:24 | [false] ( ... ) |
+| UseUseExplosion.rb:21:13:21:23 | ... > ... | UseUseExplosion.rb:21:12:21:24 | [true] ( ... ) |
+| UseUseExplosion.rb:21:21:21:23 | 100 | UseUseExplosion.rb:21:13:21:23 | ... > ... |
+| UseUseExplosion.rb:21:26:21:3684 | then ... | UseUseExplosion.rb:21:9:21:3700 | if ... |
+| UseUseExplosion.rb:21:31:21:3684 | if ... | UseUseExplosion.rb:21:26:21:3684 | then ... |
+| UseUseExplosion.rb:21:35:21:39 | @prop | UseUseExplosion.rb:21:35:21:44 | ... > ... |
+| UseUseExplosion.rb:21:35:21:39 | [post] self | UseUseExplosion.rb:21:56:21:60 | self |
+| UseUseExplosion.rb:21:35:21:39 | [post] self | UseUseExplosion.rb:21:3675:21:3680 | self |
+| UseUseExplosion.rb:21:35:21:39 | self | UseUseExplosion.rb:21:56:21:60 | self |
+| UseUseExplosion.rb:21:35:21:39 | self | UseUseExplosion.rb:21:3675:21:3680 | self |
+| UseUseExplosion.rb:21:35:21:44 | ... > ... | UseUseExplosion.rb:21:34:21:45 | [false] ( ... ) |
+| UseUseExplosion.rb:21:35:21:44 | ... > ... | UseUseExplosion.rb:21:34:21:45 | [true] ( ... ) |
+| UseUseExplosion.rb:21:43:21:44 | 99 | UseUseExplosion.rb:21:35:21:44 | ... > ... |
+| UseUseExplosion.rb:21:47:21:3668 | then ... | UseUseExplosion.rb:21:31:21:3684 | if ... |
+| UseUseExplosion.rb:21:52:21:3668 | if ... | UseUseExplosion.rb:21:47:21:3668 | then ... |
+| UseUseExplosion.rb:21:56:21:60 | @prop | UseUseExplosion.rb:21:56:21:65 | ... > ... |
+| UseUseExplosion.rb:21:56:21:60 | [post] self | UseUseExplosion.rb:21:77:21:81 | self |
+| UseUseExplosion.rb:21:56:21:60 | [post] self | UseUseExplosion.rb:21:3659:21:3664 | self |
+| UseUseExplosion.rb:21:56:21:60 | self | UseUseExplosion.rb:21:77:21:81 | self |
+| UseUseExplosion.rb:21:56:21:60 | self | UseUseExplosion.rb:21:3659:21:3664 | self |
+| UseUseExplosion.rb:21:56:21:65 | ... > ... | UseUseExplosion.rb:21:55:21:66 | [false] ( ... ) |
+| UseUseExplosion.rb:21:56:21:65 | ... > ... | UseUseExplosion.rb:21:55:21:66 | [true] ( ... ) |
+| UseUseExplosion.rb:21:64:21:65 | 98 | UseUseExplosion.rb:21:56:21:65 | ... > ... |
+| UseUseExplosion.rb:21:68:21:3652 | then ... | UseUseExplosion.rb:21:52:21:3668 | if ... |
+| UseUseExplosion.rb:21:73:21:3652 | if ... | UseUseExplosion.rb:21:68:21:3652 | then ... |
+| UseUseExplosion.rb:21:77:21:81 | @prop | UseUseExplosion.rb:21:77:21:86 | ... > ... |
+| UseUseExplosion.rb:21:77:21:81 | [post] self | UseUseExplosion.rb:21:98:21:102 | self |
+| UseUseExplosion.rb:21:77:21:81 | [post] self | UseUseExplosion.rb:21:3643:21:3648 | self |
+| UseUseExplosion.rb:21:77:21:81 | self | UseUseExplosion.rb:21:98:21:102 | self |
+| UseUseExplosion.rb:21:77:21:81 | self | UseUseExplosion.rb:21:3643:21:3648 | self |
+| UseUseExplosion.rb:21:77:21:86 | ... > ... | UseUseExplosion.rb:21:76:21:87 | [false] ( ... ) |
+| UseUseExplosion.rb:21:77:21:86 | ... > ... | UseUseExplosion.rb:21:76:21:87 | [true] ( ... ) |
+| UseUseExplosion.rb:21:85:21:86 | 97 | UseUseExplosion.rb:21:77:21:86 | ... > ... |
+| UseUseExplosion.rb:21:89:21:3636 | then ... | UseUseExplosion.rb:21:73:21:3652 | if ... |
+| UseUseExplosion.rb:21:94:21:3636 | if ... | UseUseExplosion.rb:21:89:21:3636 | then ... |
+| UseUseExplosion.rb:21:98:21:102 | @prop | UseUseExplosion.rb:21:98:21:107 | ... > ... |
+| UseUseExplosion.rb:21:98:21:102 | [post] self | UseUseExplosion.rb:21:119:21:123 | self |
+| UseUseExplosion.rb:21:98:21:102 | [post] self | UseUseExplosion.rb:21:3627:21:3632 | self |
+| UseUseExplosion.rb:21:98:21:102 | self | UseUseExplosion.rb:21:119:21:123 | self |
+| UseUseExplosion.rb:21:98:21:102 | self | UseUseExplosion.rb:21:3627:21:3632 | self |
+| UseUseExplosion.rb:21:98:21:107 | ... > ... | UseUseExplosion.rb:21:97:21:108 | [false] ( ... ) |
+| UseUseExplosion.rb:21:98:21:107 | ... > ... | UseUseExplosion.rb:21:97:21:108 | [true] ( ... ) |
+| UseUseExplosion.rb:21:106:21:107 | 96 | UseUseExplosion.rb:21:98:21:107 | ... > ... |
+| UseUseExplosion.rb:21:110:21:3620 | then ... | UseUseExplosion.rb:21:94:21:3636 | if ... |
+| UseUseExplosion.rb:21:115:21:3620 | if ... | UseUseExplosion.rb:21:110:21:3620 | then ... |
+| UseUseExplosion.rb:21:119:21:123 | @prop | UseUseExplosion.rb:21:119:21:128 | ... > ... |
+| UseUseExplosion.rb:21:119:21:123 | [post] self | UseUseExplosion.rb:21:140:21:144 | self |
+| UseUseExplosion.rb:21:119:21:123 | [post] self | UseUseExplosion.rb:21:3611:21:3616 | self |
+| UseUseExplosion.rb:21:119:21:123 | self | UseUseExplosion.rb:21:140:21:144 | self |
+| UseUseExplosion.rb:21:119:21:123 | self | UseUseExplosion.rb:21:3611:21:3616 | self |
+| UseUseExplosion.rb:21:119:21:128 | ... > ... | UseUseExplosion.rb:21:118:21:129 | [false] ( ... ) |
+| UseUseExplosion.rb:21:119:21:128 | ... > ... | UseUseExplosion.rb:21:118:21:129 | [true] ( ... ) |
+| UseUseExplosion.rb:21:127:21:128 | 95 | UseUseExplosion.rb:21:119:21:128 | ... > ... |
+| UseUseExplosion.rb:21:131:21:3604 | then ... | UseUseExplosion.rb:21:115:21:3620 | if ... |
+| UseUseExplosion.rb:21:136:21:3604 | if ... | UseUseExplosion.rb:21:131:21:3604 | then ... |
+| UseUseExplosion.rb:21:140:21:144 | @prop | UseUseExplosion.rb:21:140:21:149 | ... > ... |
+| UseUseExplosion.rb:21:140:21:144 | [post] self | UseUseExplosion.rb:21:161:21:165 | self |
+| UseUseExplosion.rb:21:140:21:144 | [post] self | UseUseExplosion.rb:21:3595:21:3600 | self |
+| UseUseExplosion.rb:21:140:21:144 | self | UseUseExplosion.rb:21:161:21:165 | self |
+| UseUseExplosion.rb:21:140:21:144 | self | UseUseExplosion.rb:21:3595:21:3600 | self |
+| UseUseExplosion.rb:21:140:21:149 | ... > ... | UseUseExplosion.rb:21:139:21:150 | [false] ( ... ) |
+| UseUseExplosion.rb:21:140:21:149 | ... > ... | UseUseExplosion.rb:21:139:21:150 | [true] ( ... ) |
+| UseUseExplosion.rb:21:148:21:149 | 94 | UseUseExplosion.rb:21:140:21:149 | ... > ... |
+| UseUseExplosion.rb:21:152:21:3588 | then ... | UseUseExplosion.rb:21:136:21:3604 | if ... |
+| UseUseExplosion.rb:21:157:21:3588 | if ... | UseUseExplosion.rb:21:152:21:3588 | then ... |
+| UseUseExplosion.rb:21:161:21:165 | @prop | UseUseExplosion.rb:21:161:21:170 | ... > ... |
+| UseUseExplosion.rb:21:161:21:165 | [post] self | UseUseExplosion.rb:21:182:21:186 | self |
+| UseUseExplosion.rb:21:161:21:165 | [post] self | UseUseExplosion.rb:21:3579:21:3584 | self |
+| UseUseExplosion.rb:21:161:21:165 | self | UseUseExplosion.rb:21:182:21:186 | self |
+| UseUseExplosion.rb:21:161:21:165 | self | UseUseExplosion.rb:21:3579:21:3584 | self |
+| UseUseExplosion.rb:21:161:21:170 | ... > ... | UseUseExplosion.rb:21:160:21:171 | [false] ( ... ) |
+| UseUseExplosion.rb:21:161:21:170 | ... > ... | UseUseExplosion.rb:21:160:21:171 | [true] ( ... ) |
+| UseUseExplosion.rb:21:169:21:170 | 93 | UseUseExplosion.rb:21:161:21:170 | ... > ... |
+| UseUseExplosion.rb:21:173:21:3572 | then ... | UseUseExplosion.rb:21:157:21:3588 | if ... |
+| UseUseExplosion.rb:21:178:21:3572 | if ... | UseUseExplosion.rb:21:173:21:3572 | then ... |
+| UseUseExplosion.rb:21:182:21:186 | @prop | UseUseExplosion.rb:21:182:21:191 | ... > ... |
+| UseUseExplosion.rb:21:182:21:186 | [post] self | UseUseExplosion.rb:21:203:21:207 | self |
+| UseUseExplosion.rb:21:182:21:186 | [post] self | UseUseExplosion.rb:21:3563:21:3568 | self |
+| UseUseExplosion.rb:21:182:21:186 | self | UseUseExplosion.rb:21:203:21:207 | self |
+| UseUseExplosion.rb:21:182:21:186 | self | UseUseExplosion.rb:21:3563:21:3568 | self |
+| UseUseExplosion.rb:21:182:21:191 | ... > ... | UseUseExplosion.rb:21:181:21:192 | [false] ( ... ) |
+| UseUseExplosion.rb:21:182:21:191 | ... > ... | UseUseExplosion.rb:21:181:21:192 | [true] ( ... ) |
+| UseUseExplosion.rb:21:190:21:191 | 92 | UseUseExplosion.rb:21:182:21:191 | ... > ... |
+| UseUseExplosion.rb:21:194:21:3556 | then ... | UseUseExplosion.rb:21:178:21:3572 | if ... |
+| UseUseExplosion.rb:21:199:21:3556 | if ... | UseUseExplosion.rb:21:194:21:3556 | then ... |
+| UseUseExplosion.rb:21:203:21:207 | @prop | UseUseExplosion.rb:21:203:21:212 | ... > ... |
+| UseUseExplosion.rb:21:203:21:207 | [post] self | UseUseExplosion.rb:21:224:21:228 | self |
+| UseUseExplosion.rb:21:203:21:207 | [post] self | UseUseExplosion.rb:21:3547:21:3552 | self |
+| UseUseExplosion.rb:21:203:21:207 | self | UseUseExplosion.rb:21:224:21:228 | self |
+| UseUseExplosion.rb:21:203:21:207 | self | UseUseExplosion.rb:21:3547:21:3552 | self |
+| UseUseExplosion.rb:21:203:21:212 | ... > ... | UseUseExplosion.rb:21:202:21:213 | [false] ( ... ) |
+| UseUseExplosion.rb:21:203:21:212 | ... > ... | UseUseExplosion.rb:21:202:21:213 | [true] ( ... ) |
+| UseUseExplosion.rb:21:211:21:212 | 91 | UseUseExplosion.rb:21:203:21:212 | ... > ... |
+| UseUseExplosion.rb:21:215:21:3540 | then ... | UseUseExplosion.rb:21:199:21:3556 | if ... |
+| UseUseExplosion.rb:21:220:21:3540 | if ... | UseUseExplosion.rb:21:215:21:3540 | then ... |
+| UseUseExplosion.rb:21:224:21:228 | @prop | UseUseExplosion.rb:21:224:21:233 | ... > ... |
+| UseUseExplosion.rb:21:224:21:228 | [post] self | UseUseExplosion.rb:21:245:21:249 | self |
+| UseUseExplosion.rb:21:224:21:228 | [post] self | UseUseExplosion.rb:21:3531:21:3536 | self |
+| UseUseExplosion.rb:21:224:21:228 | self | UseUseExplosion.rb:21:245:21:249 | self |
+| UseUseExplosion.rb:21:224:21:228 | self | UseUseExplosion.rb:21:3531:21:3536 | self |
+| UseUseExplosion.rb:21:224:21:233 | ... > ... | UseUseExplosion.rb:21:223:21:234 | [false] ( ... ) |
+| UseUseExplosion.rb:21:224:21:233 | ... > ... | UseUseExplosion.rb:21:223:21:234 | [true] ( ... ) |
+| UseUseExplosion.rb:21:232:21:233 | 90 | UseUseExplosion.rb:21:224:21:233 | ... > ... |
+| UseUseExplosion.rb:21:236:21:3524 | then ... | UseUseExplosion.rb:21:220:21:3540 | if ... |
+| UseUseExplosion.rb:21:241:21:3524 | if ... | UseUseExplosion.rb:21:236:21:3524 | then ... |
+| UseUseExplosion.rb:21:245:21:249 | @prop | UseUseExplosion.rb:21:245:21:254 | ... > ... |
+| UseUseExplosion.rb:21:245:21:249 | [post] self | UseUseExplosion.rb:21:266:21:270 | self |
+| UseUseExplosion.rb:21:245:21:249 | [post] self | UseUseExplosion.rb:21:3515:21:3520 | self |
+| UseUseExplosion.rb:21:245:21:249 | self | UseUseExplosion.rb:21:266:21:270 | self |
+| UseUseExplosion.rb:21:245:21:249 | self | UseUseExplosion.rb:21:3515:21:3520 | self |
+| UseUseExplosion.rb:21:245:21:254 | ... > ... | UseUseExplosion.rb:21:244:21:255 | [false] ( ... ) |
+| UseUseExplosion.rb:21:245:21:254 | ... > ... | UseUseExplosion.rb:21:244:21:255 | [true] ( ... ) |
+| UseUseExplosion.rb:21:253:21:254 | 89 | UseUseExplosion.rb:21:245:21:254 | ... > ... |
+| UseUseExplosion.rb:21:257:21:3508 | then ... | UseUseExplosion.rb:21:241:21:3524 | if ... |
+| UseUseExplosion.rb:21:262:21:3508 | if ... | UseUseExplosion.rb:21:257:21:3508 | then ... |
+| UseUseExplosion.rb:21:266:21:270 | @prop | UseUseExplosion.rb:21:266:21:275 | ... > ... |
+| UseUseExplosion.rb:21:266:21:270 | [post] self | UseUseExplosion.rb:21:287:21:291 | self |
+| UseUseExplosion.rb:21:266:21:270 | [post] self | UseUseExplosion.rb:21:3499:21:3504 | self |
+| UseUseExplosion.rb:21:266:21:270 | self | UseUseExplosion.rb:21:287:21:291 | self |
+| UseUseExplosion.rb:21:266:21:270 | self | UseUseExplosion.rb:21:3499:21:3504 | self |
+| UseUseExplosion.rb:21:266:21:275 | ... > ... | UseUseExplosion.rb:21:265:21:276 | [false] ( ... ) |
+| UseUseExplosion.rb:21:266:21:275 | ... > ... | UseUseExplosion.rb:21:265:21:276 | [true] ( ... ) |
+| UseUseExplosion.rb:21:274:21:275 | 88 | UseUseExplosion.rb:21:266:21:275 | ... > ... |
+| UseUseExplosion.rb:21:278:21:3492 | then ... | UseUseExplosion.rb:21:262:21:3508 | if ... |
+| UseUseExplosion.rb:21:283:21:3492 | if ... | UseUseExplosion.rb:21:278:21:3492 | then ... |
+| UseUseExplosion.rb:21:287:21:291 | @prop | UseUseExplosion.rb:21:287:21:296 | ... > ... |
+| UseUseExplosion.rb:21:287:21:291 | [post] self | UseUseExplosion.rb:21:308:21:312 | self |
+| UseUseExplosion.rb:21:287:21:291 | [post] self | UseUseExplosion.rb:21:3483:21:3488 | self |
+| UseUseExplosion.rb:21:287:21:291 | self | UseUseExplosion.rb:21:308:21:312 | self |
+| UseUseExplosion.rb:21:287:21:291 | self | UseUseExplosion.rb:21:3483:21:3488 | self |
+| UseUseExplosion.rb:21:287:21:296 | ... > ... | UseUseExplosion.rb:21:286:21:297 | [false] ( ... ) |
+| UseUseExplosion.rb:21:287:21:296 | ... > ... | UseUseExplosion.rb:21:286:21:297 | [true] ( ... ) |
+| UseUseExplosion.rb:21:295:21:296 | 87 | UseUseExplosion.rb:21:287:21:296 | ... > ... |
+| UseUseExplosion.rb:21:299:21:3476 | then ... | UseUseExplosion.rb:21:283:21:3492 | if ... |
+| UseUseExplosion.rb:21:304:21:3476 | if ... | UseUseExplosion.rb:21:299:21:3476 | then ... |
+| UseUseExplosion.rb:21:308:21:312 | @prop | UseUseExplosion.rb:21:308:21:317 | ... > ... |
+| UseUseExplosion.rb:21:308:21:312 | [post] self | UseUseExplosion.rb:21:329:21:333 | self |
+| UseUseExplosion.rb:21:308:21:312 | [post] self | UseUseExplosion.rb:21:3467:21:3472 | self |
+| UseUseExplosion.rb:21:308:21:312 | self | UseUseExplosion.rb:21:329:21:333 | self |
+| UseUseExplosion.rb:21:308:21:312 | self | UseUseExplosion.rb:21:3467:21:3472 | self |
+| UseUseExplosion.rb:21:308:21:317 | ... > ... | UseUseExplosion.rb:21:307:21:318 | [false] ( ... ) |
+| UseUseExplosion.rb:21:308:21:317 | ... > ... | UseUseExplosion.rb:21:307:21:318 | [true] ( ... ) |
+| UseUseExplosion.rb:21:316:21:317 | 86 | UseUseExplosion.rb:21:308:21:317 | ... > ... |
+| UseUseExplosion.rb:21:320:21:3460 | then ... | UseUseExplosion.rb:21:304:21:3476 | if ... |
+| UseUseExplosion.rb:21:325:21:3460 | if ... | UseUseExplosion.rb:21:320:21:3460 | then ... |
+| UseUseExplosion.rb:21:329:21:333 | @prop | UseUseExplosion.rb:21:329:21:338 | ... > ... |
+| UseUseExplosion.rb:21:329:21:333 | [post] self | UseUseExplosion.rb:21:350:21:354 | self |
+| UseUseExplosion.rb:21:329:21:333 | [post] self | UseUseExplosion.rb:21:3451:21:3456 | self |
+| UseUseExplosion.rb:21:329:21:333 | self | UseUseExplosion.rb:21:350:21:354 | self |
+| UseUseExplosion.rb:21:329:21:333 | self | UseUseExplosion.rb:21:3451:21:3456 | self |
+| UseUseExplosion.rb:21:329:21:338 | ... > ... | UseUseExplosion.rb:21:328:21:339 | [false] ( ... ) |
+| UseUseExplosion.rb:21:329:21:338 | ... > ... | UseUseExplosion.rb:21:328:21:339 | [true] ( ... ) |
+| UseUseExplosion.rb:21:337:21:338 | 85 | UseUseExplosion.rb:21:329:21:338 | ... > ... |
+| UseUseExplosion.rb:21:341:21:3444 | then ... | UseUseExplosion.rb:21:325:21:3460 | if ... |
+| UseUseExplosion.rb:21:346:21:3444 | if ... | UseUseExplosion.rb:21:341:21:3444 | then ... |
+| UseUseExplosion.rb:21:350:21:354 | @prop | UseUseExplosion.rb:21:350:21:359 | ... > ... |
+| UseUseExplosion.rb:21:350:21:354 | [post] self | UseUseExplosion.rb:21:371:21:375 | self |
+| UseUseExplosion.rb:21:350:21:354 | [post] self | UseUseExplosion.rb:21:3435:21:3440 | self |
+| UseUseExplosion.rb:21:350:21:354 | self | UseUseExplosion.rb:21:371:21:375 | self |
+| UseUseExplosion.rb:21:350:21:354 | self | UseUseExplosion.rb:21:3435:21:3440 | self |
+| UseUseExplosion.rb:21:350:21:359 | ... > ... | UseUseExplosion.rb:21:349:21:360 | [false] ( ... ) |
+| UseUseExplosion.rb:21:350:21:359 | ... > ... | UseUseExplosion.rb:21:349:21:360 | [true] ( ... ) |
+| UseUseExplosion.rb:21:358:21:359 | 84 | UseUseExplosion.rb:21:350:21:359 | ... > ... |
+| UseUseExplosion.rb:21:362:21:3428 | then ... | UseUseExplosion.rb:21:346:21:3444 | if ... |
+| UseUseExplosion.rb:21:367:21:3428 | if ... | UseUseExplosion.rb:21:362:21:3428 | then ... |
+| UseUseExplosion.rb:21:371:21:375 | @prop | UseUseExplosion.rb:21:371:21:380 | ... > ... |
+| UseUseExplosion.rb:21:371:21:375 | [post] self | UseUseExplosion.rb:21:392:21:396 | self |
+| UseUseExplosion.rb:21:371:21:375 | [post] self | UseUseExplosion.rb:21:3419:21:3424 | self |
+| UseUseExplosion.rb:21:371:21:375 | self | UseUseExplosion.rb:21:392:21:396 | self |
+| UseUseExplosion.rb:21:371:21:375 | self | UseUseExplosion.rb:21:3419:21:3424 | self |
+| UseUseExplosion.rb:21:371:21:380 | ... > ... | UseUseExplosion.rb:21:370:21:381 | [false] ( ... ) |
+| UseUseExplosion.rb:21:371:21:380 | ... > ... | UseUseExplosion.rb:21:370:21:381 | [true] ( ... ) |
+| UseUseExplosion.rb:21:379:21:380 | 83 | UseUseExplosion.rb:21:371:21:380 | ... > ... |
+| UseUseExplosion.rb:21:383:21:3412 | then ... | UseUseExplosion.rb:21:367:21:3428 | if ... |
+| UseUseExplosion.rb:21:388:21:3412 | if ... | UseUseExplosion.rb:21:383:21:3412 | then ... |
+| UseUseExplosion.rb:21:392:21:396 | @prop | UseUseExplosion.rb:21:392:21:401 | ... > ... |
+| UseUseExplosion.rb:21:392:21:396 | [post] self | UseUseExplosion.rb:21:413:21:417 | self |
+| UseUseExplosion.rb:21:392:21:396 | [post] self | UseUseExplosion.rb:21:3403:21:3408 | self |
+| UseUseExplosion.rb:21:392:21:396 | self | UseUseExplosion.rb:21:413:21:417 | self |
+| UseUseExplosion.rb:21:392:21:396 | self | UseUseExplosion.rb:21:3403:21:3408 | self |
+| UseUseExplosion.rb:21:392:21:401 | ... > ... | UseUseExplosion.rb:21:391:21:402 | [false] ( ... ) |
+| UseUseExplosion.rb:21:392:21:401 | ... > ... | UseUseExplosion.rb:21:391:21:402 | [true] ( ... ) |
+| UseUseExplosion.rb:21:400:21:401 | 82 | UseUseExplosion.rb:21:392:21:401 | ... > ... |
+| UseUseExplosion.rb:21:404:21:3396 | then ... | UseUseExplosion.rb:21:388:21:3412 | if ... |
+| UseUseExplosion.rb:21:409:21:3396 | if ... | UseUseExplosion.rb:21:404:21:3396 | then ... |
+| UseUseExplosion.rb:21:413:21:417 | @prop | UseUseExplosion.rb:21:413:21:422 | ... > ... |
+| UseUseExplosion.rb:21:413:21:417 | [post] self | UseUseExplosion.rb:21:434:21:438 | self |
+| UseUseExplosion.rb:21:413:21:417 | [post] self | UseUseExplosion.rb:21:3387:21:3392 | self |
+| UseUseExplosion.rb:21:413:21:417 | self | UseUseExplosion.rb:21:434:21:438 | self |
+| UseUseExplosion.rb:21:413:21:417 | self | UseUseExplosion.rb:21:3387:21:3392 | self |
+| UseUseExplosion.rb:21:413:21:422 | ... > ... | UseUseExplosion.rb:21:412:21:423 | [false] ( ... ) |
+| UseUseExplosion.rb:21:413:21:422 | ... > ... | UseUseExplosion.rb:21:412:21:423 | [true] ( ... ) |
+| UseUseExplosion.rb:21:421:21:422 | 81 | UseUseExplosion.rb:21:413:21:422 | ... > ... |
+| UseUseExplosion.rb:21:425:21:3380 | then ... | UseUseExplosion.rb:21:409:21:3396 | if ... |
+| UseUseExplosion.rb:21:430:21:3380 | if ... | UseUseExplosion.rb:21:425:21:3380 | then ... |
+| UseUseExplosion.rb:21:434:21:438 | @prop | UseUseExplosion.rb:21:434:21:443 | ... > ... |
+| UseUseExplosion.rb:21:434:21:438 | [post] self | UseUseExplosion.rb:21:455:21:459 | self |
+| UseUseExplosion.rb:21:434:21:438 | [post] self | UseUseExplosion.rb:21:3371:21:3376 | self |
+| UseUseExplosion.rb:21:434:21:438 | self | UseUseExplosion.rb:21:455:21:459 | self |
+| UseUseExplosion.rb:21:434:21:438 | self | UseUseExplosion.rb:21:3371:21:3376 | self |
+| UseUseExplosion.rb:21:434:21:443 | ... > ... | UseUseExplosion.rb:21:433:21:444 | [false] ( ... ) |
+| UseUseExplosion.rb:21:434:21:443 | ... > ... | UseUseExplosion.rb:21:433:21:444 | [true] ( ... ) |
+| UseUseExplosion.rb:21:442:21:443 | 80 | UseUseExplosion.rb:21:434:21:443 | ... > ... |
+| UseUseExplosion.rb:21:446:21:3364 | then ... | UseUseExplosion.rb:21:430:21:3380 | if ... |
+| UseUseExplosion.rb:21:451:21:3364 | if ... | UseUseExplosion.rb:21:446:21:3364 | then ... |
+| UseUseExplosion.rb:21:455:21:459 | @prop | UseUseExplosion.rb:21:455:21:464 | ... > ... |
+| UseUseExplosion.rb:21:455:21:459 | [post] self | UseUseExplosion.rb:21:476:21:480 | self |
+| UseUseExplosion.rb:21:455:21:459 | [post] self | UseUseExplosion.rb:21:3355:21:3360 | self |
+| UseUseExplosion.rb:21:455:21:459 | self | UseUseExplosion.rb:21:476:21:480 | self |
+| UseUseExplosion.rb:21:455:21:459 | self | UseUseExplosion.rb:21:3355:21:3360 | self |
+| UseUseExplosion.rb:21:455:21:464 | ... > ... | UseUseExplosion.rb:21:454:21:465 | [false] ( ... ) |
+| UseUseExplosion.rb:21:455:21:464 | ... > ... | UseUseExplosion.rb:21:454:21:465 | [true] ( ... ) |
+| UseUseExplosion.rb:21:463:21:464 | 79 | UseUseExplosion.rb:21:455:21:464 | ... > ... |
+| UseUseExplosion.rb:21:467:21:3348 | then ... | UseUseExplosion.rb:21:451:21:3364 | if ... |
+| UseUseExplosion.rb:21:472:21:3348 | if ... | UseUseExplosion.rb:21:467:21:3348 | then ... |
+| UseUseExplosion.rb:21:476:21:480 | @prop | UseUseExplosion.rb:21:476:21:485 | ... > ... |
+| UseUseExplosion.rb:21:476:21:480 | [post] self | UseUseExplosion.rb:21:497:21:501 | self |
+| UseUseExplosion.rb:21:476:21:480 | [post] self | UseUseExplosion.rb:21:3339:21:3344 | self |
+| UseUseExplosion.rb:21:476:21:480 | self | UseUseExplosion.rb:21:497:21:501 | self |
+| UseUseExplosion.rb:21:476:21:480 | self | UseUseExplosion.rb:21:3339:21:3344 | self |
+| UseUseExplosion.rb:21:476:21:485 | ... > ... | UseUseExplosion.rb:21:475:21:486 | [false] ( ... ) |
+| UseUseExplosion.rb:21:476:21:485 | ... > ... | UseUseExplosion.rb:21:475:21:486 | [true] ( ... ) |
+| UseUseExplosion.rb:21:484:21:485 | 78 | UseUseExplosion.rb:21:476:21:485 | ... > ... |
+| UseUseExplosion.rb:21:488:21:3332 | then ... | UseUseExplosion.rb:21:472:21:3348 | if ... |
+| UseUseExplosion.rb:21:493:21:3332 | if ... | UseUseExplosion.rb:21:488:21:3332 | then ... |
+| UseUseExplosion.rb:21:497:21:501 | @prop | UseUseExplosion.rb:21:497:21:506 | ... > ... |
+| UseUseExplosion.rb:21:497:21:501 | [post] self | UseUseExplosion.rb:21:518:21:522 | self |
+| UseUseExplosion.rb:21:497:21:501 | [post] self | UseUseExplosion.rb:21:3323:21:3328 | self |
+| UseUseExplosion.rb:21:497:21:501 | self | UseUseExplosion.rb:21:518:21:522 | self |
+| UseUseExplosion.rb:21:497:21:501 | self | UseUseExplosion.rb:21:3323:21:3328 | self |
+| UseUseExplosion.rb:21:497:21:506 | ... > ... | UseUseExplosion.rb:21:496:21:507 | [false] ( ... ) |
+| UseUseExplosion.rb:21:497:21:506 | ... > ... | UseUseExplosion.rb:21:496:21:507 | [true] ( ... ) |
+| UseUseExplosion.rb:21:505:21:506 | 77 | UseUseExplosion.rb:21:497:21:506 | ... > ... |
+| UseUseExplosion.rb:21:509:21:3316 | then ... | UseUseExplosion.rb:21:493:21:3332 | if ... |
+| UseUseExplosion.rb:21:514:21:3316 | if ... | UseUseExplosion.rb:21:509:21:3316 | then ... |
+| UseUseExplosion.rb:21:518:21:522 | @prop | UseUseExplosion.rb:21:518:21:527 | ... > ... |
+| UseUseExplosion.rb:21:518:21:522 | [post] self | UseUseExplosion.rb:21:539:21:543 | self |
+| UseUseExplosion.rb:21:518:21:522 | [post] self | UseUseExplosion.rb:21:3307:21:3312 | self |
+| UseUseExplosion.rb:21:518:21:522 | self | UseUseExplosion.rb:21:539:21:543 | self |
+| UseUseExplosion.rb:21:518:21:522 | self | UseUseExplosion.rb:21:3307:21:3312 | self |
+| UseUseExplosion.rb:21:518:21:527 | ... > ... | UseUseExplosion.rb:21:517:21:528 | [false] ( ... ) |
+| UseUseExplosion.rb:21:518:21:527 | ... > ... | UseUseExplosion.rb:21:517:21:528 | [true] ( ... ) |
+| UseUseExplosion.rb:21:526:21:527 | 76 | UseUseExplosion.rb:21:518:21:527 | ... > ... |
+| UseUseExplosion.rb:21:530:21:3300 | then ... | UseUseExplosion.rb:21:514:21:3316 | if ... |
+| UseUseExplosion.rb:21:535:21:3300 | if ... | UseUseExplosion.rb:21:530:21:3300 | then ... |
+| UseUseExplosion.rb:21:539:21:543 | @prop | UseUseExplosion.rb:21:539:21:548 | ... > ... |
+| UseUseExplosion.rb:21:539:21:543 | [post] self | UseUseExplosion.rb:21:560:21:564 | self |
+| UseUseExplosion.rb:21:539:21:543 | [post] self | UseUseExplosion.rb:21:3291:21:3296 | self |
+| UseUseExplosion.rb:21:539:21:543 | self | UseUseExplosion.rb:21:560:21:564 | self |
+| UseUseExplosion.rb:21:539:21:543 | self | UseUseExplosion.rb:21:3291:21:3296 | self |
+| UseUseExplosion.rb:21:539:21:548 | ... > ... | UseUseExplosion.rb:21:538:21:549 | [false] ( ... ) |
+| UseUseExplosion.rb:21:539:21:548 | ... > ... | UseUseExplosion.rb:21:538:21:549 | [true] ( ... ) |
+| UseUseExplosion.rb:21:547:21:548 | 75 | UseUseExplosion.rb:21:539:21:548 | ... > ... |
+| UseUseExplosion.rb:21:551:21:3284 | then ... | UseUseExplosion.rb:21:535:21:3300 | if ... |
+| UseUseExplosion.rb:21:556:21:3284 | if ... | UseUseExplosion.rb:21:551:21:3284 | then ... |
+| UseUseExplosion.rb:21:560:21:564 | @prop | UseUseExplosion.rb:21:560:21:569 | ... > ... |
+| UseUseExplosion.rb:21:560:21:564 | [post] self | UseUseExplosion.rb:21:581:21:585 | self |
+| UseUseExplosion.rb:21:560:21:564 | [post] self | UseUseExplosion.rb:21:3275:21:3280 | self |
+| UseUseExplosion.rb:21:560:21:564 | self | UseUseExplosion.rb:21:581:21:585 | self |
+| UseUseExplosion.rb:21:560:21:564 | self | UseUseExplosion.rb:21:3275:21:3280 | self |
+| UseUseExplosion.rb:21:560:21:569 | ... > ... | UseUseExplosion.rb:21:559:21:570 | [false] ( ... ) |
+| UseUseExplosion.rb:21:560:21:569 | ... > ... | UseUseExplosion.rb:21:559:21:570 | [true] ( ... ) |
+| UseUseExplosion.rb:21:568:21:569 | 74 | UseUseExplosion.rb:21:560:21:569 | ... > ... |
+| UseUseExplosion.rb:21:572:21:3268 | then ... | UseUseExplosion.rb:21:556:21:3284 | if ... |
+| UseUseExplosion.rb:21:577:21:3268 | if ... | UseUseExplosion.rb:21:572:21:3268 | then ... |
+| UseUseExplosion.rb:21:581:21:585 | @prop | UseUseExplosion.rb:21:581:21:590 | ... > ... |
+| UseUseExplosion.rb:21:581:21:585 | [post] self | UseUseExplosion.rb:21:602:21:606 | self |
+| UseUseExplosion.rb:21:581:21:585 | [post] self | UseUseExplosion.rb:21:3259:21:3264 | self |
+| UseUseExplosion.rb:21:581:21:585 | self | UseUseExplosion.rb:21:602:21:606 | self |
+| UseUseExplosion.rb:21:581:21:585 | self | UseUseExplosion.rb:21:3259:21:3264 | self |
+| UseUseExplosion.rb:21:581:21:590 | ... > ... | UseUseExplosion.rb:21:580:21:591 | [false] ( ... ) |
+| UseUseExplosion.rb:21:581:21:590 | ... > ... | UseUseExplosion.rb:21:580:21:591 | [true] ( ... ) |
+| UseUseExplosion.rb:21:589:21:590 | 73 | UseUseExplosion.rb:21:581:21:590 | ... > ... |
+| UseUseExplosion.rb:21:593:21:3252 | then ... | UseUseExplosion.rb:21:577:21:3268 | if ... |
+| UseUseExplosion.rb:21:598:21:3252 | if ... | UseUseExplosion.rb:21:593:21:3252 | then ... |
+| UseUseExplosion.rb:21:602:21:606 | @prop | UseUseExplosion.rb:21:602:21:611 | ... > ... |
+| UseUseExplosion.rb:21:602:21:606 | [post] self | UseUseExplosion.rb:21:623:21:627 | self |
+| UseUseExplosion.rb:21:602:21:606 | [post] self | UseUseExplosion.rb:21:3243:21:3248 | self |
+| UseUseExplosion.rb:21:602:21:606 | self | UseUseExplosion.rb:21:623:21:627 | self |
+| UseUseExplosion.rb:21:602:21:606 | self | UseUseExplosion.rb:21:3243:21:3248 | self |
+| UseUseExplosion.rb:21:602:21:611 | ... > ... | UseUseExplosion.rb:21:601:21:612 | [false] ( ... ) |
+| UseUseExplosion.rb:21:602:21:611 | ... > ... | UseUseExplosion.rb:21:601:21:612 | [true] ( ... ) |
+| UseUseExplosion.rb:21:610:21:611 | 72 | UseUseExplosion.rb:21:602:21:611 | ... > ... |
+| UseUseExplosion.rb:21:614:21:3236 | then ... | UseUseExplosion.rb:21:598:21:3252 | if ... |
+| UseUseExplosion.rb:21:619:21:3236 | if ... | UseUseExplosion.rb:21:614:21:3236 | then ... |
+| UseUseExplosion.rb:21:623:21:627 | @prop | UseUseExplosion.rb:21:623:21:632 | ... > ... |
+| UseUseExplosion.rb:21:623:21:627 | [post] self | UseUseExplosion.rb:21:644:21:648 | self |
+| UseUseExplosion.rb:21:623:21:627 | [post] self | UseUseExplosion.rb:21:3227:21:3232 | self |
+| UseUseExplosion.rb:21:623:21:627 | self | UseUseExplosion.rb:21:644:21:648 | self |
+| UseUseExplosion.rb:21:623:21:627 | self | UseUseExplosion.rb:21:3227:21:3232 | self |
+| UseUseExplosion.rb:21:623:21:632 | ... > ... | UseUseExplosion.rb:21:622:21:633 | [false] ( ... ) |
+| UseUseExplosion.rb:21:623:21:632 | ... > ... | UseUseExplosion.rb:21:622:21:633 | [true] ( ... ) |
+| UseUseExplosion.rb:21:631:21:632 | 71 | UseUseExplosion.rb:21:623:21:632 | ... > ... |
+| UseUseExplosion.rb:21:635:21:3220 | then ... | UseUseExplosion.rb:21:619:21:3236 | if ... |
+| UseUseExplosion.rb:21:640:21:3220 | if ... | UseUseExplosion.rb:21:635:21:3220 | then ... |
+| UseUseExplosion.rb:21:644:21:648 | @prop | UseUseExplosion.rb:21:644:21:653 | ... > ... |
+| UseUseExplosion.rb:21:644:21:648 | [post] self | UseUseExplosion.rb:21:665:21:669 | self |
+| UseUseExplosion.rb:21:644:21:648 | [post] self | UseUseExplosion.rb:21:3211:21:3216 | self |
+| UseUseExplosion.rb:21:644:21:648 | self | UseUseExplosion.rb:21:665:21:669 | self |
+| UseUseExplosion.rb:21:644:21:648 | self | UseUseExplosion.rb:21:3211:21:3216 | self |
+| UseUseExplosion.rb:21:644:21:653 | ... > ... | UseUseExplosion.rb:21:643:21:654 | [false] ( ... ) |
+| UseUseExplosion.rb:21:644:21:653 | ... > ... | UseUseExplosion.rb:21:643:21:654 | [true] ( ... ) |
+| UseUseExplosion.rb:21:652:21:653 | 70 | UseUseExplosion.rb:21:644:21:653 | ... > ... |
+| UseUseExplosion.rb:21:656:21:3204 | then ... | UseUseExplosion.rb:21:640:21:3220 | if ... |
+| UseUseExplosion.rb:21:661:21:3204 | if ... | UseUseExplosion.rb:21:656:21:3204 | then ... |
+| UseUseExplosion.rb:21:665:21:669 | @prop | UseUseExplosion.rb:21:665:21:674 | ... > ... |
+| UseUseExplosion.rb:21:665:21:669 | [post] self | UseUseExplosion.rb:21:686:21:690 | self |
+| UseUseExplosion.rb:21:665:21:669 | [post] self | UseUseExplosion.rb:21:3195:21:3200 | self |
+| UseUseExplosion.rb:21:665:21:669 | self | UseUseExplosion.rb:21:686:21:690 | self |
+| UseUseExplosion.rb:21:665:21:669 | self | UseUseExplosion.rb:21:3195:21:3200 | self |
+| UseUseExplosion.rb:21:665:21:674 | ... > ... | UseUseExplosion.rb:21:664:21:675 | [false] ( ... ) |
+| UseUseExplosion.rb:21:665:21:674 | ... > ... | UseUseExplosion.rb:21:664:21:675 | [true] ( ... ) |
+| UseUseExplosion.rb:21:673:21:674 | 69 | UseUseExplosion.rb:21:665:21:674 | ... > ... |
+| UseUseExplosion.rb:21:677:21:3188 | then ... | UseUseExplosion.rb:21:661:21:3204 | if ... |
+| UseUseExplosion.rb:21:682:21:3188 | if ... | UseUseExplosion.rb:21:677:21:3188 | then ... |
+| UseUseExplosion.rb:21:686:21:690 | @prop | UseUseExplosion.rb:21:686:21:695 | ... > ... |
+| UseUseExplosion.rb:21:686:21:690 | [post] self | UseUseExplosion.rb:21:707:21:711 | self |
+| UseUseExplosion.rb:21:686:21:690 | [post] self | UseUseExplosion.rb:21:3179:21:3184 | self |
+| UseUseExplosion.rb:21:686:21:690 | self | UseUseExplosion.rb:21:707:21:711 | self |
+| UseUseExplosion.rb:21:686:21:690 | self | UseUseExplosion.rb:21:3179:21:3184 | self |
+| UseUseExplosion.rb:21:686:21:695 | ... > ... | UseUseExplosion.rb:21:685:21:696 | [false] ( ... ) |
+| UseUseExplosion.rb:21:686:21:695 | ... > ... | UseUseExplosion.rb:21:685:21:696 | [true] ( ... ) |
+| UseUseExplosion.rb:21:694:21:695 | 68 | UseUseExplosion.rb:21:686:21:695 | ... > ... |
+| UseUseExplosion.rb:21:698:21:3172 | then ... | UseUseExplosion.rb:21:682:21:3188 | if ... |
+| UseUseExplosion.rb:21:703:21:3172 | if ... | UseUseExplosion.rb:21:698:21:3172 | then ... |
+| UseUseExplosion.rb:21:707:21:711 | @prop | UseUseExplosion.rb:21:707:21:716 | ... > ... |
+| UseUseExplosion.rb:21:707:21:711 | [post] self | UseUseExplosion.rb:21:728:21:732 | self |
+| UseUseExplosion.rb:21:707:21:711 | [post] self | UseUseExplosion.rb:21:3163:21:3168 | self |
+| UseUseExplosion.rb:21:707:21:711 | self | UseUseExplosion.rb:21:728:21:732 | self |
+| UseUseExplosion.rb:21:707:21:711 | self | UseUseExplosion.rb:21:3163:21:3168 | self |
+| UseUseExplosion.rb:21:707:21:716 | ... > ... | UseUseExplosion.rb:21:706:21:717 | [false] ( ... ) |
+| UseUseExplosion.rb:21:707:21:716 | ... > ... | UseUseExplosion.rb:21:706:21:717 | [true] ( ... ) |
+| UseUseExplosion.rb:21:715:21:716 | 67 | UseUseExplosion.rb:21:707:21:716 | ... > ... |
+| UseUseExplosion.rb:21:719:21:3156 | then ... | UseUseExplosion.rb:21:703:21:3172 | if ... |
+| UseUseExplosion.rb:21:724:21:3156 | if ... | UseUseExplosion.rb:21:719:21:3156 | then ... |
+| UseUseExplosion.rb:21:728:21:732 | @prop | UseUseExplosion.rb:21:728:21:737 | ... > ... |
+| UseUseExplosion.rb:21:728:21:732 | [post] self | UseUseExplosion.rb:21:749:21:753 | self |
+| UseUseExplosion.rb:21:728:21:732 | [post] self | UseUseExplosion.rb:21:3147:21:3152 | self |
+| UseUseExplosion.rb:21:728:21:732 | self | UseUseExplosion.rb:21:749:21:753 | self |
+| UseUseExplosion.rb:21:728:21:732 | self | UseUseExplosion.rb:21:3147:21:3152 | self |
+| UseUseExplosion.rb:21:728:21:737 | ... > ... | UseUseExplosion.rb:21:727:21:738 | [false] ( ... ) |
+| UseUseExplosion.rb:21:728:21:737 | ... > ... | UseUseExplosion.rb:21:727:21:738 | [true] ( ... ) |
+| UseUseExplosion.rb:21:736:21:737 | 66 | UseUseExplosion.rb:21:728:21:737 | ... > ... |
+| UseUseExplosion.rb:21:740:21:3140 | then ... | UseUseExplosion.rb:21:724:21:3156 | if ... |
+| UseUseExplosion.rb:21:745:21:3140 | if ... | UseUseExplosion.rb:21:740:21:3140 | then ... |
+| UseUseExplosion.rb:21:749:21:753 | @prop | UseUseExplosion.rb:21:749:21:758 | ... > ... |
+| UseUseExplosion.rb:21:749:21:753 | [post] self | UseUseExplosion.rb:21:770:21:774 | self |
+| UseUseExplosion.rb:21:749:21:753 | [post] self | UseUseExplosion.rb:21:3131:21:3136 | self |
+| UseUseExplosion.rb:21:749:21:753 | self | UseUseExplosion.rb:21:770:21:774 | self |
+| UseUseExplosion.rb:21:749:21:753 | self | UseUseExplosion.rb:21:3131:21:3136 | self |
+| UseUseExplosion.rb:21:749:21:758 | ... > ... | UseUseExplosion.rb:21:748:21:759 | [false] ( ... ) |
+| UseUseExplosion.rb:21:749:21:758 | ... > ... | UseUseExplosion.rb:21:748:21:759 | [true] ( ... ) |
+| UseUseExplosion.rb:21:757:21:758 | 65 | UseUseExplosion.rb:21:749:21:758 | ... > ... |
+| UseUseExplosion.rb:21:761:21:3124 | then ... | UseUseExplosion.rb:21:745:21:3140 | if ... |
+| UseUseExplosion.rb:21:766:21:3124 | if ... | UseUseExplosion.rb:21:761:21:3124 | then ... |
+| UseUseExplosion.rb:21:770:21:774 | @prop | UseUseExplosion.rb:21:770:21:779 | ... > ... |
+| UseUseExplosion.rb:21:770:21:774 | [post] self | UseUseExplosion.rb:21:791:21:795 | self |
+| UseUseExplosion.rb:21:770:21:774 | [post] self | UseUseExplosion.rb:21:3115:21:3120 | self |
+| UseUseExplosion.rb:21:770:21:774 | self | UseUseExplosion.rb:21:791:21:795 | self |
+| UseUseExplosion.rb:21:770:21:774 | self | UseUseExplosion.rb:21:3115:21:3120 | self |
+| UseUseExplosion.rb:21:770:21:779 | ... > ... | UseUseExplosion.rb:21:769:21:780 | [false] ( ... ) |
+| UseUseExplosion.rb:21:770:21:779 | ... > ... | UseUseExplosion.rb:21:769:21:780 | [true] ( ... ) |
+| UseUseExplosion.rb:21:778:21:779 | 64 | UseUseExplosion.rb:21:770:21:779 | ... > ... |
+| UseUseExplosion.rb:21:782:21:3108 | then ... | UseUseExplosion.rb:21:766:21:3124 | if ... |
+| UseUseExplosion.rb:21:787:21:3108 | if ... | UseUseExplosion.rb:21:782:21:3108 | then ... |
+| UseUseExplosion.rb:21:791:21:795 | @prop | UseUseExplosion.rb:21:791:21:800 | ... > ... |
+| UseUseExplosion.rb:21:791:21:795 | [post] self | UseUseExplosion.rb:21:812:21:816 | self |
+| UseUseExplosion.rb:21:791:21:795 | [post] self | UseUseExplosion.rb:21:3099:21:3104 | self |
+| UseUseExplosion.rb:21:791:21:795 | self | UseUseExplosion.rb:21:812:21:816 | self |
+| UseUseExplosion.rb:21:791:21:795 | self | UseUseExplosion.rb:21:3099:21:3104 | self |
+| UseUseExplosion.rb:21:791:21:800 | ... > ... | UseUseExplosion.rb:21:790:21:801 | [false] ( ... ) |
+| UseUseExplosion.rb:21:791:21:800 | ... > ... | UseUseExplosion.rb:21:790:21:801 | [true] ( ... ) |
+| UseUseExplosion.rb:21:799:21:800 | 63 | UseUseExplosion.rb:21:791:21:800 | ... > ... |
+| UseUseExplosion.rb:21:803:21:3092 | then ... | UseUseExplosion.rb:21:787:21:3108 | if ... |
+| UseUseExplosion.rb:21:808:21:3092 | if ... | UseUseExplosion.rb:21:803:21:3092 | then ... |
+| UseUseExplosion.rb:21:812:21:816 | @prop | UseUseExplosion.rb:21:812:21:821 | ... > ... |
+| UseUseExplosion.rb:21:812:21:816 | [post] self | UseUseExplosion.rb:21:833:21:837 | self |
+| UseUseExplosion.rb:21:812:21:816 | [post] self | UseUseExplosion.rb:21:3083:21:3088 | self |
+| UseUseExplosion.rb:21:812:21:816 | self | UseUseExplosion.rb:21:833:21:837 | self |
+| UseUseExplosion.rb:21:812:21:816 | self | UseUseExplosion.rb:21:3083:21:3088 | self |
+| UseUseExplosion.rb:21:812:21:821 | ... > ... | UseUseExplosion.rb:21:811:21:822 | [false] ( ... ) |
+| UseUseExplosion.rb:21:812:21:821 | ... > ... | UseUseExplosion.rb:21:811:21:822 | [true] ( ... ) |
+| UseUseExplosion.rb:21:820:21:821 | 62 | UseUseExplosion.rb:21:812:21:821 | ... > ... |
+| UseUseExplosion.rb:21:824:21:3076 | then ... | UseUseExplosion.rb:21:808:21:3092 | if ... |
+| UseUseExplosion.rb:21:829:21:3076 | if ... | UseUseExplosion.rb:21:824:21:3076 | then ... |
+| UseUseExplosion.rb:21:833:21:837 | @prop | UseUseExplosion.rb:21:833:21:842 | ... > ... |
+| UseUseExplosion.rb:21:833:21:837 | [post] self | UseUseExplosion.rb:21:854:21:858 | self |
+| UseUseExplosion.rb:21:833:21:837 | [post] self | UseUseExplosion.rb:21:3067:21:3072 | self |
+| UseUseExplosion.rb:21:833:21:837 | self | UseUseExplosion.rb:21:854:21:858 | self |
+| UseUseExplosion.rb:21:833:21:837 | self | UseUseExplosion.rb:21:3067:21:3072 | self |
+| UseUseExplosion.rb:21:833:21:842 | ... > ... | UseUseExplosion.rb:21:832:21:843 | [false] ( ... ) |
+| UseUseExplosion.rb:21:833:21:842 | ... > ... | UseUseExplosion.rb:21:832:21:843 | [true] ( ... ) |
+| UseUseExplosion.rb:21:841:21:842 | 61 | UseUseExplosion.rb:21:833:21:842 | ... > ... |
+| UseUseExplosion.rb:21:845:21:3060 | then ... | UseUseExplosion.rb:21:829:21:3076 | if ... |
+| UseUseExplosion.rb:21:850:21:3060 | if ... | UseUseExplosion.rb:21:845:21:3060 | then ... |
+| UseUseExplosion.rb:21:854:21:858 | @prop | UseUseExplosion.rb:21:854:21:863 | ... > ... |
+| UseUseExplosion.rb:21:854:21:858 | [post] self | UseUseExplosion.rb:21:875:21:879 | self |
+| UseUseExplosion.rb:21:854:21:858 | [post] self | UseUseExplosion.rb:21:3051:21:3056 | self |
+| UseUseExplosion.rb:21:854:21:858 | self | UseUseExplosion.rb:21:875:21:879 | self |
+| UseUseExplosion.rb:21:854:21:858 | self | UseUseExplosion.rb:21:3051:21:3056 | self |
+| UseUseExplosion.rb:21:854:21:863 | ... > ... | UseUseExplosion.rb:21:853:21:864 | [false] ( ... ) |
+| UseUseExplosion.rb:21:854:21:863 | ... > ... | UseUseExplosion.rb:21:853:21:864 | [true] ( ... ) |
+| UseUseExplosion.rb:21:862:21:863 | 60 | UseUseExplosion.rb:21:854:21:863 | ... > ... |
+| UseUseExplosion.rb:21:866:21:3044 | then ... | UseUseExplosion.rb:21:850:21:3060 | if ... |
+| UseUseExplosion.rb:21:871:21:3044 | if ... | UseUseExplosion.rb:21:866:21:3044 | then ... |
+| UseUseExplosion.rb:21:875:21:879 | @prop | UseUseExplosion.rb:21:875:21:884 | ... > ... |
+| UseUseExplosion.rb:21:875:21:879 | [post] self | UseUseExplosion.rb:21:896:21:900 | self |
+| UseUseExplosion.rb:21:875:21:879 | [post] self | UseUseExplosion.rb:21:3035:21:3040 | self |
+| UseUseExplosion.rb:21:875:21:879 | self | UseUseExplosion.rb:21:896:21:900 | self |
+| UseUseExplosion.rb:21:875:21:879 | self | UseUseExplosion.rb:21:3035:21:3040 | self |
+| UseUseExplosion.rb:21:875:21:884 | ... > ... | UseUseExplosion.rb:21:874:21:885 | [false] ( ... ) |
+| UseUseExplosion.rb:21:875:21:884 | ... > ... | UseUseExplosion.rb:21:874:21:885 | [true] ( ... ) |
+| UseUseExplosion.rb:21:883:21:884 | 59 | UseUseExplosion.rb:21:875:21:884 | ... > ... |
+| UseUseExplosion.rb:21:887:21:3028 | then ... | UseUseExplosion.rb:21:871:21:3044 | if ... |
+| UseUseExplosion.rb:21:892:21:3028 | if ... | UseUseExplosion.rb:21:887:21:3028 | then ... |
+| UseUseExplosion.rb:21:896:21:900 | @prop | UseUseExplosion.rb:21:896:21:905 | ... > ... |
+| UseUseExplosion.rb:21:896:21:900 | [post] self | UseUseExplosion.rb:21:917:21:921 | self |
+| UseUseExplosion.rb:21:896:21:900 | [post] self | UseUseExplosion.rb:21:3019:21:3024 | self |
+| UseUseExplosion.rb:21:896:21:900 | self | UseUseExplosion.rb:21:917:21:921 | self |
+| UseUseExplosion.rb:21:896:21:900 | self | UseUseExplosion.rb:21:3019:21:3024 | self |
+| UseUseExplosion.rb:21:896:21:905 | ... > ... | UseUseExplosion.rb:21:895:21:906 | [false] ( ... ) |
+| UseUseExplosion.rb:21:896:21:905 | ... > ... | UseUseExplosion.rb:21:895:21:906 | [true] ( ... ) |
+| UseUseExplosion.rb:21:904:21:905 | 58 | UseUseExplosion.rb:21:896:21:905 | ... > ... |
+| UseUseExplosion.rb:21:908:21:3012 | then ... | UseUseExplosion.rb:21:892:21:3028 | if ... |
+| UseUseExplosion.rb:21:913:21:3012 | if ... | UseUseExplosion.rb:21:908:21:3012 | then ... |
+| UseUseExplosion.rb:21:917:21:921 | @prop | UseUseExplosion.rb:21:917:21:926 | ... > ... |
+| UseUseExplosion.rb:21:917:21:921 | [post] self | UseUseExplosion.rb:21:938:21:942 | self |
+| UseUseExplosion.rb:21:917:21:921 | [post] self | UseUseExplosion.rb:21:3003:21:3008 | self |
+| UseUseExplosion.rb:21:917:21:921 | self | UseUseExplosion.rb:21:938:21:942 | self |
+| UseUseExplosion.rb:21:917:21:921 | self | UseUseExplosion.rb:21:3003:21:3008 | self |
+| UseUseExplosion.rb:21:917:21:926 | ... > ... | UseUseExplosion.rb:21:916:21:927 | [false] ( ... ) |
+| UseUseExplosion.rb:21:917:21:926 | ... > ... | UseUseExplosion.rb:21:916:21:927 | [true] ( ... ) |
+| UseUseExplosion.rb:21:925:21:926 | 57 | UseUseExplosion.rb:21:917:21:926 | ... > ... |
+| UseUseExplosion.rb:21:929:21:2996 | then ... | UseUseExplosion.rb:21:913:21:3012 | if ... |
+| UseUseExplosion.rb:21:934:21:2996 | if ... | UseUseExplosion.rb:21:929:21:2996 | then ... |
+| UseUseExplosion.rb:21:938:21:942 | @prop | UseUseExplosion.rb:21:938:21:947 | ... > ... |
+| UseUseExplosion.rb:21:938:21:942 | [post] self | UseUseExplosion.rb:21:959:21:963 | self |
+| UseUseExplosion.rb:21:938:21:942 | [post] self | UseUseExplosion.rb:21:2987:21:2992 | self |
+| UseUseExplosion.rb:21:938:21:942 | self | UseUseExplosion.rb:21:959:21:963 | self |
+| UseUseExplosion.rb:21:938:21:942 | self | UseUseExplosion.rb:21:2987:21:2992 | self |
+| UseUseExplosion.rb:21:938:21:947 | ... > ... | UseUseExplosion.rb:21:937:21:948 | [false] ( ... ) |
+| UseUseExplosion.rb:21:938:21:947 | ... > ... | UseUseExplosion.rb:21:937:21:948 | [true] ( ... ) |
+| UseUseExplosion.rb:21:946:21:947 | 56 | UseUseExplosion.rb:21:938:21:947 | ... > ... |
+| UseUseExplosion.rb:21:950:21:2980 | then ... | UseUseExplosion.rb:21:934:21:2996 | if ... |
+| UseUseExplosion.rb:21:955:21:2980 | if ... | UseUseExplosion.rb:21:950:21:2980 | then ... |
+| UseUseExplosion.rb:21:959:21:963 | @prop | UseUseExplosion.rb:21:959:21:968 | ... > ... |
+| UseUseExplosion.rb:21:959:21:963 | [post] self | UseUseExplosion.rb:21:980:21:984 | self |
+| UseUseExplosion.rb:21:959:21:963 | [post] self | UseUseExplosion.rb:21:2971:21:2976 | self |
+| UseUseExplosion.rb:21:959:21:963 | self | UseUseExplosion.rb:21:980:21:984 | self |
+| UseUseExplosion.rb:21:959:21:963 | self | UseUseExplosion.rb:21:2971:21:2976 | self |
+| UseUseExplosion.rb:21:959:21:968 | ... > ... | UseUseExplosion.rb:21:958:21:969 | [false] ( ... ) |
+| UseUseExplosion.rb:21:959:21:968 | ... > ... | UseUseExplosion.rb:21:958:21:969 | [true] ( ... ) |
+| UseUseExplosion.rb:21:967:21:968 | 55 | UseUseExplosion.rb:21:959:21:968 | ... > ... |
+| UseUseExplosion.rb:21:971:21:2964 | then ... | UseUseExplosion.rb:21:955:21:2980 | if ... |
+| UseUseExplosion.rb:21:976:21:2964 | if ... | UseUseExplosion.rb:21:971:21:2964 | then ... |
+| UseUseExplosion.rb:21:980:21:984 | @prop | UseUseExplosion.rb:21:980:21:989 | ... > ... |
+| UseUseExplosion.rb:21:980:21:984 | [post] self | UseUseExplosion.rb:21:1001:21:1005 | self |
+| UseUseExplosion.rb:21:980:21:984 | [post] self | UseUseExplosion.rb:21:2955:21:2960 | self |
+| UseUseExplosion.rb:21:980:21:984 | self | UseUseExplosion.rb:21:1001:21:1005 | self |
+| UseUseExplosion.rb:21:980:21:984 | self | UseUseExplosion.rb:21:2955:21:2960 | self |
+| UseUseExplosion.rb:21:980:21:989 | ... > ... | UseUseExplosion.rb:21:979:21:990 | [false] ( ... ) |
+| UseUseExplosion.rb:21:980:21:989 | ... > ... | UseUseExplosion.rb:21:979:21:990 | [true] ( ... ) |
+| UseUseExplosion.rb:21:988:21:989 | 54 | UseUseExplosion.rb:21:980:21:989 | ... > ... |
+| UseUseExplosion.rb:21:992:21:2948 | then ... | UseUseExplosion.rb:21:976:21:2964 | if ... |
+| UseUseExplosion.rb:21:997:21:2948 | if ... | UseUseExplosion.rb:21:992:21:2948 | then ... |
+| UseUseExplosion.rb:21:1001:21:1005 | @prop | UseUseExplosion.rb:21:1001:21:1010 | ... > ... |
+| UseUseExplosion.rb:21:1001:21:1005 | [post] self | UseUseExplosion.rb:21:1022:21:1026 | self |
+| UseUseExplosion.rb:21:1001:21:1005 | [post] self | UseUseExplosion.rb:21:2939:21:2944 | self |
+| UseUseExplosion.rb:21:1001:21:1005 | self | UseUseExplosion.rb:21:1022:21:1026 | self |
+| UseUseExplosion.rb:21:1001:21:1005 | self | UseUseExplosion.rb:21:2939:21:2944 | self |
+| UseUseExplosion.rb:21:1001:21:1010 | ... > ... | UseUseExplosion.rb:21:1000:21:1011 | [false] ( ... ) |
+| UseUseExplosion.rb:21:1001:21:1010 | ... > ... | UseUseExplosion.rb:21:1000:21:1011 | [true] ( ... ) |
+| UseUseExplosion.rb:21:1009:21:1010 | 53 | UseUseExplosion.rb:21:1001:21:1010 | ... > ... |
+| UseUseExplosion.rb:21:1013:21:2932 | then ... | UseUseExplosion.rb:21:997:21:2948 | if ... |
+| UseUseExplosion.rb:21:1018:21:2932 | if ... | UseUseExplosion.rb:21:1013:21:2932 | then ... |
+| UseUseExplosion.rb:21:1022:21:1026 | @prop | UseUseExplosion.rb:21:1022:21:1031 | ... > ... |
+| UseUseExplosion.rb:21:1022:21:1026 | [post] self | UseUseExplosion.rb:21:1043:21:1047 | self |
+| UseUseExplosion.rb:21:1022:21:1026 | [post] self | UseUseExplosion.rb:21:2923:21:2928 | self |
+| UseUseExplosion.rb:21:1022:21:1026 | self | UseUseExplosion.rb:21:1043:21:1047 | self |
+| UseUseExplosion.rb:21:1022:21:1026 | self | UseUseExplosion.rb:21:2923:21:2928 | self |
+| UseUseExplosion.rb:21:1022:21:1031 | ... > ... | UseUseExplosion.rb:21:1021:21:1032 | [false] ( ... ) |
+| UseUseExplosion.rb:21:1022:21:1031 | ... > ... | UseUseExplosion.rb:21:1021:21:1032 | [true] ( ... ) |
+| UseUseExplosion.rb:21:1030:21:1031 | 52 | UseUseExplosion.rb:21:1022:21:1031 | ... > ... |
+| UseUseExplosion.rb:21:1034:21:2916 | then ... | UseUseExplosion.rb:21:1018:21:2932 | if ... |
+| UseUseExplosion.rb:21:1039:21:2916 | if ... | UseUseExplosion.rb:21:1034:21:2916 | then ... |
+| UseUseExplosion.rb:21:1043:21:1047 | @prop | UseUseExplosion.rb:21:1043:21:1052 | ... > ... |
+| UseUseExplosion.rb:21:1043:21:1047 | [post] self | UseUseExplosion.rb:21:1064:21:1068 | self |
+| UseUseExplosion.rb:21:1043:21:1047 | [post] self | UseUseExplosion.rb:21:2907:21:2912 | self |
+| UseUseExplosion.rb:21:1043:21:1047 | self | UseUseExplosion.rb:21:1064:21:1068 | self |
+| UseUseExplosion.rb:21:1043:21:1047 | self | UseUseExplosion.rb:21:2907:21:2912 | self |
+| UseUseExplosion.rb:21:1043:21:1052 | ... > ... | UseUseExplosion.rb:21:1042:21:1053 | [false] ( ... ) |
+| UseUseExplosion.rb:21:1043:21:1052 | ... > ... | UseUseExplosion.rb:21:1042:21:1053 | [true] ( ... ) |
+| UseUseExplosion.rb:21:1051:21:1052 | 51 | UseUseExplosion.rb:21:1043:21:1052 | ... > ... |
+| UseUseExplosion.rb:21:1055:21:2900 | then ... | UseUseExplosion.rb:21:1039:21:2916 | if ... |
+| UseUseExplosion.rb:21:1060:21:2900 | if ... | UseUseExplosion.rb:21:1055:21:2900 | then ... |
+| UseUseExplosion.rb:21:1064:21:1068 | @prop | UseUseExplosion.rb:21:1064:21:1073 | ... > ... |
+| UseUseExplosion.rb:21:1064:21:1068 | [post] self | UseUseExplosion.rb:21:1085:21:1089 | self |
+| UseUseExplosion.rb:21:1064:21:1068 | [post] self | UseUseExplosion.rb:21:2891:21:2896 | self |
+| UseUseExplosion.rb:21:1064:21:1068 | self | UseUseExplosion.rb:21:1085:21:1089 | self |
+| UseUseExplosion.rb:21:1064:21:1068 | self | UseUseExplosion.rb:21:2891:21:2896 | self |
+| UseUseExplosion.rb:21:1064:21:1073 | ... > ... | UseUseExplosion.rb:21:1063:21:1074 | [false] ( ... ) |
+| UseUseExplosion.rb:21:1064:21:1073 | ... > ... | UseUseExplosion.rb:21:1063:21:1074 | [true] ( ... ) |
+| UseUseExplosion.rb:21:1072:21:1073 | 50 | UseUseExplosion.rb:21:1064:21:1073 | ... > ... |
+| UseUseExplosion.rb:21:1076:21:2884 | then ... | UseUseExplosion.rb:21:1060:21:2900 | if ... |
+| UseUseExplosion.rb:21:1081:21:2884 | if ... | UseUseExplosion.rb:21:1076:21:2884 | then ... |
+| UseUseExplosion.rb:21:1085:21:1089 | @prop | UseUseExplosion.rb:21:1085:21:1094 | ... > ... |
+| UseUseExplosion.rb:21:1085:21:1089 | [post] self | UseUseExplosion.rb:21:1106:21:1110 | self |
+| UseUseExplosion.rb:21:1085:21:1089 | [post] self | UseUseExplosion.rb:21:2875:21:2880 | self |
+| UseUseExplosion.rb:21:1085:21:1089 | self | UseUseExplosion.rb:21:1106:21:1110 | self |
+| UseUseExplosion.rb:21:1085:21:1089 | self | UseUseExplosion.rb:21:2875:21:2880 | self |
+| UseUseExplosion.rb:21:1085:21:1094 | ... > ... | UseUseExplosion.rb:21:1084:21:1095 | [false] ( ... ) |
+| UseUseExplosion.rb:21:1085:21:1094 | ... > ... | UseUseExplosion.rb:21:1084:21:1095 | [true] ( ... ) |
+| UseUseExplosion.rb:21:1093:21:1094 | 49 | UseUseExplosion.rb:21:1085:21:1094 | ... > ... |
+| UseUseExplosion.rb:21:1097:21:2868 | then ... | UseUseExplosion.rb:21:1081:21:2884 | if ... |
+| UseUseExplosion.rb:21:1102:21:2868 | if ... | UseUseExplosion.rb:21:1097:21:2868 | then ... |
+| UseUseExplosion.rb:21:1106:21:1110 | @prop | UseUseExplosion.rb:21:1106:21:1115 | ... > ... |
+| UseUseExplosion.rb:21:1106:21:1110 | [post] self | UseUseExplosion.rb:21:1127:21:1131 | self |
+| UseUseExplosion.rb:21:1106:21:1110 | [post] self | UseUseExplosion.rb:21:2859:21:2864 | self |
+| UseUseExplosion.rb:21:1106:21:1110 | self | UseUseExplosion.rb:21:1127:21:1131 | self |
+| UseUseExplosion.rb:21:1106:21:1110 | self | UseUseExplosion.rb:21:2859:21:2864 | self |
+| UseUseExplosion.rb:21:1106:21:1115 | ... > ... | UseUseExplosion.rb:21:1105:21:1116 | [false] ( ... ) |
+| UseUseExplosion.rb:21:1106:21:1115 | ... > ... | UseUseExplosion.rb:21:1105:21:1116 | [true] ( ... ) |
+| UseUseExplosion.rb:21:1114:21:1115 | 48 | UseUseExplosion.rb:21:1106:21:1115 | ... > ... |
+| UseUseExplosion.rb:21:1118:21:2852 | then ... | UseUseExplosion.rb:21:1102:21:2868 | if ... |
+| UseUseExplosion.rb:21:1123:21:2852 | if ... | UseUseExplosion.rb:21:1118:21:2852 | then ... |
+| UseUseExplosion.rb:21:1127:21:1131 | @prop | UseUseExplosion.rb:21:1127:21:1136 | ... > ... |
+| UseUseExplosion.rb:21:1127:21:1131 | [post] self | UseUseExplosion.rb:21:1148:21:1152 | self |
+| UseUseExplosion.rb:21:1127:21:1131 | [post] self | UseUseExplosion.rb:21:2843:21:2848 | self |
+| UseUseExplosion.rb:21:1127:21:1131 | self | UseUseExplosion.rb:21:1148:21:1152 | self |
+| UseUseExplosion.rb:21:1127:21:1131 | self | UseUseExplosion.rb:21:2843:21:2848 | self |
+| UseUseExplosion.rb:21:1127:21:1136 | ... > ... | UseUseExplosion.rb:21:1126:21:1137 | [false] ( ... ) |
+| UseUseExplosion.rb:21:1127:21:1136 | ... > ... | UseUseExplosion.rb:21:1126:21:1137 | [true] ( ... ) |
+| UseUseExplosion.rb:21:1135:21:1136 | 47 | UseUseExplosion.rb:21:1127:21:1136 | ... > ... |
+| UseUseExplosion.rb:21:1139:21:2836 | then ... | UseUseExplosion.rb:21:1123:21:2852 | if ... |
+| UseUseExplosion.rb:21:1144:21:2836 | if ... | UseUseExplosion.rb:21:1139:21:2836 | then ... |
+| UseUseExplosion.rb:21:1148:21:1152 | @prop | UseUseExplosion.rb:21:1148:21:1157 | ... > ... |
+| UseUseExplosion.rb:21:1148:21:1152 | [post] self | UseUseExplosion.rb:21:1169:21:1173 | self |
+| UseUseExplosion.rb:21:1148:21:1152 | [post] self | UseUseExplosion.rb:21:2827:21:2832 | self |
+| UseUseExplosion.rb:21:1148:21:1152 | self | UseUseExplosion.rb:21:1169:21:1173 | self |
+| UseUseExplosion.rb:21:1148:21:1152 | self | UseUseExplosion.rb:21:2827:21:2832 | self |
+| UseUseExplosion.rb:21:1148:21:1157 | ... > ... | UseUseExplosion.rb:21:1147:21:1158 | [false] ( ... ) |
+| UseUseExplosion.rb:21:1148:21:1157 | ... > ... | UseUseExplosion.rb:21:1147:21:1158 | [true] ( ... ) |
+| UseUseExplosion.rb:21:1156:21:1157 | 46 | UseUseExplosion.rb:21:1148:21:1157 | ... > ... |
+| UseUseExplosion.rb:21:1160:21:2820 | then ... | UseUseExplosion.rb:21:1144:21:2836 | if ... |
+| UseUseExplosion.rb:21:1165:21:2820 | if ... | UseUseExplosion.rb:21:1160:21:2820 | then ... |
+| UseUseExplosion.rb:21:1169:21:1173 | @prop | UseUseExplosion.rb:21:1169:21:1178 | ... > ... |
+| UseUseExplosion.rb:21:1169:21:1173 | [post] self | UseUseExplosion.rb:21:1190:21:1194 | self |
+| UseUseExplosion.rb:21:1169:21:1173 | [post] self | UseUseExplosion.rb:21:2811:21:2816 | self |
+| UseUseExplosion.rb:21:1169:21:1173 | self | UseUseExplosion.rb:21:1190:21:1194 | self |
+| UseUseExplosion.rb:21:1169:21:1173 | self | UseUseExplosion.rb:21:2811:21:2816 | self |
+| UseUseExplosion.rb:21:1169:21:1178 | ... > ... | UseUseExplosion.rb:21:1168:21:1179 | [false] ( ... ) |
+| UseUseExplosion.rb:21:1169:21:1178 | ... > ... | UseUseExplosion.rb:21:1168:21:1179 | [true] ( ... ) |
+| UseUseExplosion.rb:21:1177:21:1178 | 45 | UseUseExplosion.rb:21:1169:21:1178 | ... > ... |
+| UseUseExplosion.rb:21:1181:21:2804 | then ... | UseUseExplosion.rb:21:1165:21:2820 | if ... |
+| UseUseExplosion.rb:21:1186:21:2804 | if ... | UseUseExplosion.rb:21:1181:21:2804 | then ... |
+| UseUseExplosion.rb:21:1190:21:1194 | @prop | UseUseExplosion.rb:21:1190:21:1199 | ... > ... |
+| UseUseExplosion.rb:21:1190:21:1194 | [post] self | UseUseExplosion.rb:21:1211:21:1215 | self |
+| UseUseExplosion.rb:21:1190:21:1194 | [post] self | UseUseExplosion.rb:21:2795:21:2800 | self |
+| UseUseExplosion.rb:21:1190:21:1194 | self | UseUseExplosion.rb:21:1211:21:1215 | self |
+| UseUseExplosion.rb:21:1190:21:1194 | self | UseUseExplosion.rb:21:2795:21:2800 | self |
+| UseUseExplosion.rb:21:1190:21:1199 | ... > ... | UseUseExplosion.rb:21:1189:21:1200 | [false] ( ... ) |
+| UseUseExplosion.rb:21:1190:21:1199 | ... > ... | UseUseExplosion.rb:21:1189:21:1200 | [true] ( ... ) |
+| UseUseExplosion.rb:21:1198:21:1199 | 44 | UseUseExplosion.rb:21:1190:21:1199 | ... > ... |
+| UseUseExplosion.rb:21:1202:21:2788 | then ... | UseUseExplosion.rb:21:1186:21:2804 | if ... |
+| UseUseExplosion.rb:21:1207:21:2788 | if ... | UseUseExplosion.rb:21:1202:21:2788 | then ... |
+| UseUseExplosion.rb:21:1211:21:1215 | @prop | UseUseExplosion.rb:21:1211:21:1220 | ... > ... |
+| UseUseExplosion.rb:21:1211:21:1215 | [post] self | UseUseExplosion.rb:21:1232:21:1236 | self |
+| UseUseExplosion.rb:21:1211:21:1215 | [post] self | UseUseExplosion.rb:21:2779:21:2784 | self |
+| UseUseExplosion.rb:21:1211:21:1215 | self | UseUseExplosion.rb:21:1232:21:1236 | self |
+| UseUseExplosion.rb:21:1211:21:1215 | self | UseUseExplosion.rb:21:2779:21:2784 | self |
+| UseUseExplosion.rb:21:1211:21:1220 | ... > ... | UseUseExplosion.rb:21:1210:21:1221 | [false] ( ... ) |
+| UseUseExplosion.rb:21:1211:21:1220 | ... > ... | UseUseExplosion.rb:21:1210:21:1221 | [true] ( ... ) |
+| UseUseExplosion.rb:21:1219:21:1220 | 43 | UseUseExplosion.rb:21:1211:21:1220 | ... > ... |
+| UseUseExplosion.rb:21:1223:21:2772 | then ... | UseUseExplosion.rb:21:1207:21:2788 | if ... |
+| UseUseExplosion.rb:21:1228:21:2772 | if ... | UseUseExplosion.rb:21:1223:21:2772 | then ... |
+| UseUseExplosion.rb:21:1232:21:1236 | @prop | UseUseExplosion.rb:21:1232:21:1241 | ... > ... |
+| UseUseExplosion.rb:21:1232:21:1236 | [post] self | UseUseExplosion.rb:21:1253:21:1257 | self |
+| UseUseExplosion.rb:21:1232:21:1236 | [post] self | UseUseExplosion.rb:21:2763:21:2768 | self |
+| UseUseExplosion.rb:21:1232:21:1236 | self | UseUseExplosion.rb:21:1253:21:1257 | self |
+| UseUseExplosion.rb:21:1232:21:1236 | self | UseUseExplosion.rb:21:2763:21:2768 | self |
+| UseUseExplosion.rb:21:1232:21:1241 | ... > ... | UseUseExplosion.rb:21:1231:21:1242 | [false] ( ... ) |
+| UseUseExplosion.rb:21:1232:21:1241 | ... > ... | UseUseExplosion.rb:21:1231:21:1242 | [true] ( ... ) |
+| UseUseExplosion.rb:21:1240:21:1241 | 42 | UseUseExplosion.rb:21:1232:21:1241 | ... > ... |
+| UseUseExplosion.rb:21:1244:21:2756 | then ... | UseUseExplosion.rb:21:1228:21:2772 | if ... |
+| UseUseExplosion.rb:21:1249:21:2756 | if ... | UseUseExplosion.rb:21:1244:21:2756 | then ... |
+| UseUseExplosion.rb:21:1253:21:1257 | @prop | UseUseExplosion.rb:21:1253:21:1262 | ... > ... |
+| UseUseExplosion.rb:21:1253:21:1257 | [post] self | UseUseExplosion.rb:21:1274:21:1278 | self |
+| UseUseExplosion.rb:21:1253:21:1257 | [post] self | UseUseExplosion.rb:21:2747:21:2752 | self |
+| UseUseExplosion.rb:21:1253:21:1257 | self | UseUseExplosion.rb:21:1274:21:1278 | self |
+| UseUseExplosion.rb:21:1253:21:1257 | self | UseUseExplosion.rb:21:2747:21:2752 | self |
+| UseUseExplosion.rb:21:1253:21:1262 | ... > ... | UseUseExplosion.rb:21:1252:21:1263 | [false] ( ... ) |
+| UseUseExplosion.rb:21:1253:21:1262 | ... > ... | UseUseExplosion.rb:21:1252:21:1263 | [true] ( ... ) |
+| UseUseExplosion.rb:21:1261:21:1262 | 41 | UseUseExplosion.rb:21:1253:21:1262 | ... > ... |
+| UseUseExplosion.rb:21:1265:21:2740 | then ... | UseUseExplosion.rb:21:1249:21:2756 | if ... |
+| UseUseExplosion.rb:21:1270:21:2740 | if ... | UseUseExplosion.rb:21:1265:21:2740 | then ... |
+| UseUseExplosion.rb:21:1274:21:1278 | @prop | UseUseExplosion.rb:21:1274:21:1283 | ... > ... |
+| UseUseExplosion.rb:21:1274:21:1278 | [post] self | UseUseExplosion.rb:21:1295:21:1299 | self |
+| UseUseExplosion.rb:21:1274:21:1278 | [post] self | UseUseExplosion.rb:21:2731:21:2736 | self |
+| UseUseExplosion.rb:21:1274:21:1278 | self | UseUseExplosion.rb:21:1295:21:1299 | self |
+| UseUseExplosion.rb:21:1274:21:1278 | self | UseUseExplosion.rb:21:2731:21:2736 | self |
+| UseUseExplosion.rb:21:1274:21:1283 | ... > ... | UseUseExplosion.rb:21:1273:21:1284 | [false] ( ... ) |
+| UseUseExplosion.rb:21:1274:21:1283 | ... > ... | UseUseExplosion.rb:21:1273:21:1284 | [true] ( ... ) |
+| UseUseExplosion.rb:21:1282:21:1283 | 40 | UseUseExplosion.rb:21:1274:21:1283 | ... > ... |
+| UseUseExplosion.rb:21:1286:21:2724 | then ... | UseUseExplosion.rb:21:1270:21:2740 | if ... |
+| UseUseExplosion.rb:21:1291:21:2724 | if ... | UseUseExplosion.rb:21:1286:21:2724 | then ... |
+| UseUseExplosion.rb:21:1295:21:1299 | @prop | UseUseExplosion.rb:21:1295:21:1304 | ... > ... |
+| UseUseExplosion.rb:21:1295:21:1299 | [post] self | UseUseExplosion.rb:21:1316:21:1320 | self |
+| UseUseExplosion.rb:21:1295:21:1299 | [post] self | UseUseExplosion.rb:21:2715:21:2720 | self |
+| UseUseExplosion.rb:21:1295:21:1299 | self | UseUseExplosion.rb:21:1316:21:1320 | self |
+| UseUseExplosion.rb:21:1295:21:1299 | self | UseUseExplosion.rb:21:2715:21:2720 | self |
+| UseUseExplosion.rb:21:1295:21:1304 | ... > ... | UseUseExplosion.rb:21:1294:21:1305 | [false] ( ... ) |
+| UseUseExplosion.rb:21:1295:21:1304 | ... > ... | UseUseExplosion.rb:21:1294:21:1305 | [true] ( ... ) |
+| UseUseExplosion.rb:21:1303:21:1304 | 39 | UseUseExplosion.rb:21:1295:21:1304 | ... > ... |
+| UseUseExplosion.rb:21:1307:21:2708 | then ... | UseUseExplosion.rb:21:1291:21:2724 | if ... |
+| UseUseExplosion.rb:21:1312:21:2708 | if ... | UseUseExplosion.rb:21:1307:21:2708 | then ... |
+| UseUseExplosion.rb:21:1316:21:1320 | @prop | UseUseExplosion.rb:21:1316:21:1325 | ... > ... |
+| UseUseExplosion.rb:21:1316:21:1320 | [post] self | UseUseExplosion.rb:21:1337:21:1341 | self |
+| UseUseExplosion.rb:21:1316:21:1320 | [post] self | UseUseExplosion.rb:21:2699:21:2704 | self |
+| UseUseExplosion.rb:21:1316:21:1320 | self | UseUseExplosion.rb:21:1337:21:1341 | self |
+| UseUseExplosion.rb:21:1316:21:1320 | self | UseUseExplosion.rb:21:2699:21:2704 | self |
+| UseUseExplosion.rb:21:1316:21:1325 | ... > ... | UseUseExplosion.rb:21:1315:21:1326 | [false] ( ... ) |
+| UseUseExplosion.rb:21:1316:21:1325 | ... > ... | UseUseExplosion.rb:21:1315:21:1326 | [true] ( ... ) |
+| UseUseExplosion.rb:21:1324:21:1325 | 38 | UseUseExplosion.rb:21:1316:21:1325 | ... > ... |
+| UseUseExplosion.rb:21:1328:21:2692 | then ... | UseUseExplosion.rb:21:1312:21:2708 | if ... |
+| UseUseExplosion.rb:21:1333:21:2692 | if ... | UseUseExplosion.rb:21:1328:21:2692 | then ... |
+| UseUseExplosion.rb:21:1337:21:1341 | @prop | UseUseExplosion.rb:21:1337:21:1346 | ... > ... |
+| UseUseExplosion.rb:21:1337:21:1341 | [post] self | UseUseExplosion.rb:21:1358:21:1362 | self |
+| UseUseExplosion.rb:21:1337:21:1341 | [post] self | UseUseExplosion.rb:21:2683:21:2688 | self |
+| UseUseExplosion.rb:21:1337:21:1341 | self | UseUseExplosion.rb:21:1358:21:1362 | self |
+| UseUseExplosion.rb:21:1337:21:1341 | self | UseUseExplosion.rb:21:2683:21:2688 | self |
+| UseUseExplosion.rb:21:1337:21:1346 | ... > ... | UseUseExplosion.rb:21:1336:21:1347 | [false] ( ... ) |
+| UseUseExplosion.rb:21:1337:21:1346 | ... > ... | UseUseExplosion.rb:21:1336:21:1347 | [true] ( ... ) |
+| UseUseExplosion.rb:21:1345:21:1346 | 37 | UseUseExplosion.rb:21:1337:21:1346 | ... > ... |
+| UseUseExplosion.rb:21:1349:21:2676 | then ... | UseUseExplosion.rb:21:1333:21:2692 | if ... |
+| UseUseExplosion.rb:21:1354:21:2676 | if ... | UseUseExplosion.rb:21:1349:21:2676 | then ... |
+| UseUseExplosion.rb:21:1358:21:1362 | @prop | UseUseExplosion.rb:21:1358:21:1367 | ... > ... |
+| UseUseExplosion.rb:21:1358:21:1362 | [post] self | UseUseExplosion.rb:21:1379:21:1383 | self |
+| UseUseExplosion.rb:21:1358:21:1362 | [post] self | UseUseExplosion.rb:21:2667:21:2672 | self |
+| UseUseExplosion.rb:21:1358:21:1362 | self | UseUseExplosion.rb:21:1379:21:1383 | self |
+| UseUseExplosion.rb:21:1358:21:1362 | self | UseUseExplosion.rb:21:2667:21:2672 | self |
+| UseUseExplosion.rb:21:1358:21:1367 | ... > ... | UseUseExplosion.rb:21:1357:21:1368 | [false] ( ... ) |
+| UseUseExplosion.rb:21:1358:21:1367 | ... > ... | UseUseExplosion.rb:21:1357:21:1368 | [true] ( ... ) |
+| UseUseExplosion.rb:21:1366:21:1367 | 36 | UseUseExplosion.rb:21:1358:21:1367 | ... > ... |
+| UseUseExplosion.rb:21:1370:21:2660 | then ... | UseUseExplosion.rb:21:1354:21:2676 | if ... |
+| UseUseExplosion.rb:21:1375:21:2660 | if ... | UseUseExplosion.rb:21:1370:21:2660 | then ... |
+| UseUseExplosion.rb:21:1379:21:1383 | @prop | UseUseExplosion.rb:21:1379:21:1388 | ... > ... |
+| UseUseExplosion.rb:21:1379:21:1383 | [post] self | UseUseExplosion.rb:21:1400:21:1404 | self |
+| UseUseExplosion.rb:21:1379:21:1383 | [post] self | UseUseExplosion.rb:21:2651:21:2656 | self |
+| UseUseExplosion.rb:21:1379:21:1383 | self | UseUseExplosion.rb:21:1400:21:1404 | self |
+| UseUseExplosion.rb:21:1379:21:1383 | self | UseUseExplosion.rb:21:2651:21:2656 | self |
+| UseUseExplosion.rb:21:1379:21:1388 | ... > ... | UseUseExplosion.rb:21:1378:21:1389 | [false] ( ... ) |
+| UseUseExplosion.rb:21:1379:21:1388 | ... > ... | UseUseExplosion.rb:21:1378:21:1389 | [true] ( ... ) |
+| UseUseExplosion.rb:21:1387:21:1388 | 35 | UseUseExplosion.rb:21:1379:21:1388 | ... > ... |
+| UseUseExplosion.rb:21:1391:21:2644 | then ... | UseUseExplosion.rb:21:1375:21:2660 | if ... |
+| UseUseExplosion.rb:21:1396:21:2644 | if ... | UseUseExplosion.rb:21:1391:21:2644 | then ... |
+| UseUseExplosion.rb:21:1400:21:1404 | @prop | UseUseExplosion.rb:21:1400:21:1409 | ... > ... |
+| UseUseExplosion.rb:21:1400:21:1404 | [post] self | UseUseExplosion.rb:21:1421:21:1425 | self |
+| UseUseExplosion.rb:21:1400:21:1404 | [post] self | UseUseExplosion.rb:21:2635:21:2640 | self |
+| UseUseExplosion.rb:21:1400:21:1404 | self | UseUseExplosion.rb:21:1421:21:1425 | self |
+| UseUseExplosion.rb:21:1400:21:1404 | self | UseUseExplosion.rb:21:2635:21:2640 | self |
+| UseUseExplosion.rb:21:1400:21:1409 | ... > ... | UseUseExplosion.rb:21:1399:21:1410 | [false] ( ... ) |
+| UseUseExplosion.rb:21:1400:21:1409 | ... > ... | UseUseExplosion.rb:21:1399:21:1410 | [true] ( ... ) |
+| UseUseExplosion.rb:21:1408:21:1409 | 34 | UseUseExplosion.rb:21:1400:21:1409 | ... > ... |
+| UseUseExplosion.rb:21:1412:21:2628 | then ... | UseUseExplosion.rb:21:1396:21:2644 | if ... |
+| UseUseExplosion.rb:21:1417:21:2628 | if ... | UseUseExplosion.rb:21:1412:21:2628 | then ... |
+| UseUseExplosion.rb:21:1421:21:1425 | @prop | UseUseExplosion.rb:21:1421:21:1430 | ... > ... |
+| UseUseExplosion.rb:21:1421:21:1425 | [post] self | UseUseExplosion.rb:21:1442:21:1446 | self |
+| UseUseExplosion.rb:21:1421:21:1425 | [post] self | UseUseExplosion.rb:21:2619:21:2624 | self |
+| UseUseExplosion.rb:21:1421:21:1425 | self | UseUseExplosion.rb:21:1442:21:1446 | self |
+| UseUseExplosion.rb:21:1421:21:1425 | self | UseUseExplosion.rb:21:2619:21:2624 | self |
+| UseUseExplosion.rb:21:1421:21:1430 | ... > ... | UseUseExplosion.rb:21:1420:21:1431 | [false] ( ... ) |
+| UseUseExplosion.rb:21:1421:21:1430 | ... > ... | UseUseExplosion.rb:21:1420:21:1431 | [true] ( ... ) |
+| UseUseExplosion.rb:21:1429:21:1430 | 33 | UseUseExplosion.rb:21:1421:21:1430 | ... > ... |
+| UseUseExplosion.rb:21:1433:21:2612 | then ... | UseUseExplosion.rb:21:1417:21:2628 | if ... |
+| UseUseExplosion.rb:21:1438:21:2612 | if ... | UseUseExplosion.rb:21:1433:21:2612 | then ... |
+| UseUseExplosion.rb:21:1442:21:1446 | @prop | UseUseExplosion.rb:21:1442:21:1451 | ... > ... |
+| UseUseExplosion.rb:21:1442:21:1446 | [post] self | UseUseExplosion.rb:21:1463:21:1467 | self |
+| UseUseExplosion.rb:21:1442:21:1446 | [post] self | UseUseExplosion.rb:21:2603:21:2608 | self |
+| UseUseExplosion.rb:21:1442:21:1446 | self | UseUseExplosion.rb:21:1463:21:1467 | self |
+| UseUseExplosion.rb:21:1442:21:1446 | self | UseUseExplosion.rb:21:2603:21:2608 | self |
+| UseUseExplosion.rb:21:1442:21:1451 | ... > ... | UseUseExplosion.rb:21:1441:21:1452 | [false] ( ... ) |
+| UseUseExplosion.rb:21:1442:21:1451 | ... > ... | UseUseExplosion.rb:21:1441:21:1452 | [true] ( ... ) |
+| UseUseExplosion.rb:21:1450:21:1451 | 32 | UseUseExplosion.rb:21:1442:21:1451 | ... > ... |
+| UseUseExplosion.rb:21:1454:21:2596 | then ... | UseUseExplosion.rb:21:1438:21:2612 | if ... |
+| UseUseExplosion.rb:21:1459:21:2596 | if ... | UseUseExplosion.rb:21:1454:21:2596 | then ... |
+| UseUseExplosion.rb:21:1463:21:1467 | @prop | UseUseExplosion.rb:21:1463:21:1472 | ... > ... |
+| UseUseExplosion.rb:21:1463:21:1467 | [post] self | UseUseExplosion.rb:21:1484:21:1488 | self |
+| UseUseExplosion.rb:21:1463:21:1467 | [post] self | UseUseExplosion.rb:21:2587:21:2592 | self |
+| UseUseExplosion.rb:21:1463:21:1467 | self | UseUseExplosion.rb:21:1484:21:1488 | self |
+| UseUseExplosion.rb:21:1463:21:1467 | self | UseUseExplosion.rb:21:2587:21:2592 | self |
+| UseUseExplosion.rb:21:1463:21:1472 | ... > ... | UseUseExplosion.rb:21:1462:21:1473 | [false] ( ... ) |
+| UseUseExplosion.rb:21:1463:21:1472 | ... > ... | UseUseExplosion.rb:21:1462:21:1473 | [true] ( ... ) |
+| UseUseExplosion.rb:21:1471:21:1472 | 31 | UseUseExplosion.rb:21:1463:21:1472 | ... > ... |
+| UseUseExplosion.rb:21:1475:21:2580 | then ... | UseUseExplosion.rb:21:1459:21:2596 | if ... |
+| UseUseExplosion.rb:21:1480:21:2580 | if ... | UseUseExplosion.rb:21:1475:21:2580 | then ... |
+| UseUseExplosion.rb:21:1484:21:1488 | @prop | UseUseExplosion.rb:21:1484:21:1493 | ... > ... |
+| UseUseExplosion.rb:21:1484:21:1488 | [post] self | UseUseExplosion.rb:21:1505:21:1509 | self |
+| UseUseExplosion.rb:21:1484:21:1488 | [post] self | UseUseExplosion.rb:21:2571:21:2576 | self |
+| UseUseExplosion.rb:21:1484:21:1488 | self | UseUseExplosion.rb:21:1505:21:1509 | self |
+| UseUseExplosion.rb:21:1484:21:1488 | self | UseUseExplosion.rb:21:2571:21:2576 | self |
+| UseUseExplosion.rb:21:1484:21:1493 | ... > ... | UseUseExplosion.rb:21:1483:21:1494 | [false] ( ... ) |
+| UseUseExplosion.rb:21:1484:21:1493 | ... > ... | UseUseExplosion.rb:21:1483:21:1494 | [true] ( ... ) |
+| UseUseExplosion.rb:21:1492:21:1493 | 30 | UseUseExplosion.rb:21:1484:21:1493 | ... > ... |
+| UseUseExplosion.rb:21:1496:21:2564 | then ... | UseUseExplosion.rb:21:1480:21:2580 | if ... |
+| UseUseExplosion.rb:21:1501:21:2564 | if ... | UseUseExplosion.rb:21:1496:21:2564 | then ... |
+| UseUseExplosion.rb:21:1505:21:1509 | @prop | UseUseExplosion.rb:21:1505:21:1514 | ... > ... |
+| UseUseExplosion.rb:21:1505:21:1509 | [post] self | UseUseExplosion.rb:21:1526:21:1530 | self |
+| UseUseExplosion.rb:21:1505:21:1509 | [post] self | UseUseExplosion.rb:21:2555:21:2560 | self |
+| UseUseExplosion.rb:21:1505:21:1509 | self | UseUseExplosion.rb:21:1526:21:1530 | self |
+| UseUseExplosion.rb:21:1505:21:1509 | self | UseUseExplosion.rb:21:2555:21:2560 | self |
+| UseUseExplosion.rb:21:1505:21:1514 | ... > ... | UseUseExplosion.rb:21:1504:21:1515 | [false] ( ... ) |
+| UseUseExplosion.rb:21:1505:21:1514 | ... > ... | UseUseExplosion.rb:21:1504:21:1515 | [true] ( ... ) |
+| UseUseExplosion.rb:21:1513:21:1514 | 29 | UseUseExplosion.rb:21:1505:21:1514 | ... > ... |
+| UseUseExplosion.rb:21:1517:21:2548 | then ... | UseUseExplosion.rb:21:1501:21:2564 | if ... |
+| UseUseExplosion.rb:21:1522:21:2548 | if ... | UseUseExplosion.rb:21:1517:21:2548 | then ... |
+| UseUseExplosion.rb:21:1526:21:1530 | @prop | UseUseExplosion.rb:21:1526:21:1535 | ... > ... |
+| UseUseExplosion.rb:21:1526:21:1530 | [post] self | UseUseExplosion.rb:21:1547:21:1551 | self |
+| UseUseExplosion.rb:21:1526:21:1530 | [post] self | UseUseExplosion.rb:21:2539:21:2544 | self |
+| UseUseExplosion.rb:21:1526:21:1530 | self | UseUseExplosion.rb:21:1547:21:1551 | self |
+| UseUseExplosion.rb:21:1526:21:1530 | self | UseUseExplosion.rb:21:2539:21:2544 | self |
+| UseUseExplosion.rb:21:1526:21:1535 | ... > ... | UseUseExplosion.rb:21:1525:21:1536 | [false] ( ... ) |
+| UseUseExplosion.rb:21:1526:21:1535 | ... > ... | UseUseExplosion.rb:21:1525:21:1536 | [true] ( ... ) |
+| UseUseExplosion.rb:21:1534:21:1535 | 28 | UseUseExplosion.rb:21:1526:21:1535 | ... > ... |
+| UseUseExplosion.rb:21:1538:21:2532 | then ... | UseUseExplosion.rb:21:1522:21:2548 | if ... |
+| UseUseExplosion.rb:21:1543:21:2532 | if ... | UseUseExplosion.rb:21:1538:21:2532 | then ... |
+| UseUseExplosion.rb:21:1547:21:1551 | @prop | UseUseExplosion.rb:21:1547:21:1556 | ... > ... |
+| UseUseExplosion.rb:21:1547:21:1551 | [post] self | UseUseExplosion.rb:21:1568:21:1572 | self |
+| UseUseExplosion.rb:21:1547:21:1551 | [post] self | UseUseExplosion.rb:21:2523:21:2528 | self |
+| UseUseExplosion.rb:21:1547:21:1551 | self | UseUseExplosion.rb:21:1568:21:1572 | self |
+| UseUseExplosion.rb:21:1547:21:1551 | self | UseUseExplosion.rb:21:2523:21:2528 | self |
+| UseUseExplosion.rb:21:1547:21:1556 | ... > ... | UseUseExplosion.rb:21:1546:21:1557 | [false] ( ... ) |
+| UseUseExplosion.rb:21:1547:21:1556 | ... > ... | UseUseExplosion.rb:21:1546:21:1557 | [true] ( ... ) |
+| UseUseExplosion.rb:21:1555:21:1556 | 27 | UseUseExplosion.rb:21:1547:21:1556 | ... > ... |
+| UseUseExplosion.rb:21:1559:21:2516 | then ... | UseUseExplosion.rb:21:1543:21:2532 | if ... |
+| UseUseExplosion.rb:21:1564:21:2516 | if ... | UseUseExplosion.rb:21:1559:21:2516 | then ... |
+| UseUseExplosion.rb:21:1568:21:1572 | @prop | UseUseExplosion.rb:21:1568:21:1577 | ... > ... |
+| UseUseExplosion.rb:21:1568:21:1572 | [post] self | UseUseExplosion.rb:21:1589:21:1593 | self |
+| UseUseExplosion.rb:21:1568:21:1572 | [post] self | UseUseExplosion.rb:21:2507:21:2512 | self |
+| UseUseExplosion.rb:21:1568:21:1572 | self | UseUseExplosion.rb:21:1589:21:1593 | self |
+| UseUseExplosion.rb:21:1568:21:1572 | self | UseUseExplosion.rb:21:2507:21:2512 | self |
+| UseUseExplosion.rb:21:1568:21:1577 | ... > ... | UseUseExplosion.rb:21:1567:21:1578 | [false] ( ... ) |
+| UseUseExplosion.rb:21:1568:21:1577 | ... > ... | UseUseExplosion.rb:21:1567:21:1578 | [true] ( ... ) |
+| UseUseExplosion.rb:21:1576:21:1577 | 26 | UseUseExplosion.rb:21:1568:21:1577 | ... > ... |
+| UseUseExplosion.rb:21:1580:21:2500 | then ... | UseUseExplosion.rb:21:1564:21:2516 | if ... |
+| UseUseExplosion.rb:21:1585:21:2500 | if ... | UseUseExplosion.rb:21:1580:21:2500 | then ... |
+| UseUseExplosion.rb:21:1589:21:1593 | @prop | UseUseExplosion.rb:21:1589:21:1598 | ... > ... |
+| UseUseExplosion.rb:21:1589:21:1593 | [post] self | UseUseExplosion.rb:21:1610:21:1614 | self |
+| UseUseExplosion.rb:21:1589:21:1593 | [post] self | UseUseExplosion.rb:21:2491:21:2496 | self |
+| UseUseExplosion.rb:21:1589:21:1593 | self | UseUseExplosion.rb:21:1610:21:1614 | self |
+| UseUseExplosion.rb:21:1589:21:1593 | self | UseUseExplosion.rb:21:2491:21:2496 | self |
+| UseUseExplosion.rb:21:1589:21:1598 | ... > ... | UseUseExplosion.rb:21:1588:21:1599 | [false] ( ... ) |
+| UseUseExplosion.rb:21:1589:21:1598 | ... > ... | UseUseExplosion.rb:21:1588:21:1599 | [true] ( ... ) |
+| UseUseExplosion.rb:21:1597:21:1598 | 25 | UseUseExplosion.rb:21:1589:21:1598 | ... > ... |
+| UseUseExplosion.rb:21:1601:21:2484 | then ... | UseUseExplosion.rb:21:1585:21:2500 | if ... |
+| UseUseExplosion.rb:21:1606:21:2484 | if ... | UseUseExplosion.rb:21:1601:21:2484 | then ... |
+| UseUseExplosion.rb:21:1610:21:1614 | @prop | UseUseExplosion.rb:21:1610:21:1619 | ... > ... |
+| UseUseExplosion.rb:21:1610:21:1614 | [post] self | UseUseExplosion.rb:21:1631:21:1635 | self |
+| UseUseExplosion.rb:21:1610:21:1614 | [post] self | UseUseExplosion.rb:21:2475:21:2480 | self |
+| UseUseExplosion.rb:21:1610:21:1614 | self | UseUseExplosion.rb:21:1631:21:1635 | self |
+| UseUseExplosion.rb:21:1610:21:1614 | self | UseUseExplosion.rb:21:2475:21:2480 | self |
+| UseUseExplosion.rb:21:1610:21:1619 | ... > ... | UseUseExplosion.rb:21:1609:21:1620 | [false] ( ... ) |
+| UseUseExplosion.rb:21:1610:21:1619 | ... > ... | UseUseExplosion.rb:21:1609:21:1620 | [true] ( ... ) |
+| UseUseExplosion.rb:21:1618:21:1619 | 24 | UseUseExplosion.rb:21:1610:21:1619 | ... > ... |
+| UseUseExplosion.rb:21:1622:21:2468 | then ... | UseUseExplosion.rb:21:1606:21:2484 | if ... |
+| UseUseExplosion.rb:21:1627:21:2468 | if ... | UseUseExplosion.rb:21:1622:21:2468 | then ... |
+| UseUseExplosion.rb:21:1631:21:1635 | @prop | UseUseExplosion.rb:21:1631:21:1640 | ... > ... |
+| UseUseExplosion.rb:21:1631:21:1635 | [post] self | UseUseExplosion.rb:21:1652:21:1656 | self |
+| UseUseExplosion.rb:21:1631:21:1635 | [post] self | UseUseExplosion.rb:21:2459:21:2464 | self |
+| UseUseExplosion.rb:21:1631:21:1635 | self | UseUseExplosion.rb:21:1652:21:1656 | self |
+| UseUseExplosion.rb:21:1631:21:1635 | self | UseUseExplosion.rb:21:2459:21:2464 | self |
+| UseUseExplosion.rb:21:1631:21:1640 | ... > ... | UseUseExplosion.rb:21:1630:21:1641 | [false] ( ... ) |
+| UseUseExplosion.rb:21:1631:21:1640 | ... > ... | UseUseExplosion.rb:21:1630:21:1641 | [true] ( ... ) |
+| UseUseExplosion.rb:21:1639:21:1640 | 23 | UseUseExplosion.rb:21:1631:21:1640 | ... > ... |
+| UseUseExplosion.rb:21:1643:21:2452 | then ... | UseUseExplosion.rb:21:1627:21:2468 | if ... |
+| UseUseExplosion.rb:21:1648:21:2452 | if ... | UseUseExplosion.rb:21:1643:21:2452 | then ... |
+| UseUseExplosion.rb:21:1652:21:1656 | @prop | UseUseExplosion.rb:21:1652:21:1661 | ... > ... |
+| UseUseExplosion.rb:21:1652:21:1656 | [post] self | UseUseExplosion.rb:21:1673:21:1677 | self |
+| UseUseExplosion.rb:21:1652:21:1656 | [post] self | UseUseExplosion.rb:21:2443:21:2448 | self |
+| UseUseExplosion.rb:21:1652:21:1656 | self | UseUseExplosion.rb:21:1673:21:1677 | self |
+| UseUseExplosion.rb:21:1652:21:1656 | self | UseUseExplosion.rb:21:2443:21:2448 | self |
+| UseUseExplosion.rb:21:1652:21:1661 | ... > ... | UseUseExplosion.rb:21:1651:21:1662 | [false] ( ... ) |
+| UseUseExplosion.rb:21:1652:21:1661 | ... > ... | UseUseExplosion.rb:21:1651:21:1662 | [true] ( ... ) |
+| UseUseExplosion.rb:21:1660:21:1661 | 22 | UseUseExplosion.rb:21:1652:21:1661 | ... > ... |
+| UseUseExplosion.rb:21:1664:21:2436 | then ... | UseUseExplosion.rb:21:1648:21:2452 | if ... |
+| UseUseExplosion.rb:21:1669:21:2436 | if ... | UseUseExplosion.rb:21:1664:21:2436 | then ... |
+| UseUseExplosion.rb:21:1673:21:1677 | @prop | UseUseExplosion.rb:21:1673:21:1682 | ... > ... |
+| UseUseExplosion.rb:21:1673:21:1677 | [post] self | UseUseExplosion.rb:21:1694:21:1698 | self |
+| UseUseExplosion.rb:21:1673:21:1677 | [post] self | UseUseExplosion.rb:21:2427:21:2432 | self |
+| UseUseExplosion.rb:21:1673:21:1677 | self | UseUseExplosion.rb:21:1694:21:1698 | self |
+| UseUseExplosion.rb:21:1673:21:1677 | self | UseUseExplosion.rb:21:2427:21:2432 | self |
+| UseUseExplosion.rb:21:1673:21:1682 | ... > ... | UseUseExplosion.rb:21:1672:21:1683 | [false] ( ... ) |
+| UseUseExplosion.rb:21:1673:21:1682 | ... > ... | UseUseExplosion.rb:21:1672:21:1683 | [true] ( ... ) |
+| UseUseExplosion.rb:21:1681:21:1682 | 21 | UseUseExplosion.rb:21:1673:21:1682 | ... > ... |
+| UseUseExplosion.rb:21:1685:21:2420 | then ... | UseUseExplosion.rb:21:1669:21:2436 | if ... |
+| UseUseExplosion.rb:21:1690:21:2420 | if ... | UseUseExplosion.rb:21:1685:21:2420 | then ... |
+| UseUseExplosion.rb:21:1694:21:1698 | @prop | UseUseExplosion.rb:21:1694:21:1703 | ... > ... |
+| UseUseExplosion.rb:21:1694:21:1698 | [post] self | UseUseExplosion.rb:21:1715:21:1719 | self |
+| UseUseExplosion.rb:21:1694:21:1698 | [post] self | UseUseExplosion.rb:21:2411:21:2416 | self |
+| UseUseExplosion.rb:21:1694:21:1698 | self | UseUseExplosion.rb:21:1715:21:1719 | self |
+| UseUseExplosion.rb:21:1694:21:1698 | self | UseUseExplosion.rb:21:2411:21:2416 | self |
+| UseUseExplosion.rb:21:1694:21:1703 | ... > ... | UseUseExplosion.rb:21:1693:21:1704 | [false] ( ... ) |
+| UseUseExplosion.rb:21:1694:21:1703 | ... > ... | UseUseExplosion.rb:21:1693:21:1704 | [true] ( ... ) |
+| UseUseExplosion.rb:21:1702:21:1703 | 20 | UseUseExplosion.rb:21:1694:21:1703 | ... > ... |
+| UseUseExplosion.rb:21:1706:21:2404 | then ... | UseUseExplosion.rb:21:1690:21:2420 | if ... |
+| UseUseExplosion.rb:21:1711:21:2404 | if ... | UseUseExplosion.rb:21:1706:21:2404 | then ... |
+| UseUseExplosion.rb:21:1715:21:1719 | @prop | UseUseExplosion.rb:21:1715:21:1724 | ... > ... |
+| UseUseExplosion.rb:21:1715:21:1719 | [post] self | UseUseExplosion.rb:21:1736:21:1740 | self |
+| UseUseExplosion.rb:21:1715:21:1719 | [post] self | UseUseExplosion.rb:21:2395:21:2400 | self |
+| UseUseExplosion.rb:21:1715:21:1719 | self | UseUseExplosion.rb:21:1736:21:1740 | self |
+| UseUseExplosion.rb:21:1715:21:1719 | self | UseUseExplosion.rb:21:2395:21:2400 | self |
+| UseUseExplosion.rb:21:1715:21:1724 | ... > ... | UseUseExplosion.rb:21:1714:21:1725 | [false] ( ... ) |
+| UseUseExplosion.rb:21:1715:21:1724 | ... > ... | UseUseExplosion.rb:21:1714:21:1725 | [true] ( ... ) |
+| UseUseExplosion.rb:21:1723:21:1724 | 19 | UseUseExplosion.rb:21:1715:21:1724 | ... > ... |
+| UseUseExplosion.rb:21:1727:21:2388 | then ... | UseUseExplosion.rb:21:1711:21:2404 | if ... |
+| UseUseExplosion.rb:21:1732:21:2388 | if ... | UseUseExplosion.rb:21:1727:21:2388 | then ... |
+| UseUseExplosion.rb:21:1736:21:1740 | @prop | UseUseExplosion.rb:21:1736:21:1745 | ... > ... |
+| UseUseExplosion.rb:21:1736:21:1740 | [post] self | UseUseExplosion.rb:21:1757:21:1761 | self |
+| UseUseExplosion.rb:21:1736:21:1740 | [post] self | UseUseExplosion.rb:21:2379:21:2384 | self |
+| UseUseExplosion.rb:21:1736:21:1740 | self | UseUseExplosion.rb:21:1757:21:1761 | self |
+| UseUseExplosion.rb:21:1736:21:1740 | self | UseUseExplosion.rb:21:2379:21:2384 | self |
+| UseUseExplosion.rb:21:1736:21:1745 | ... > ... | UseUseExplosion.rb:21:1735:21:1746 | [false] ( ... ) |
+| UseUseExplosion.rb:21:1736:21:1745 | ... > ... | UseUseExplosion.rb:21:1735:21:1746 | [true] ( ... ) |
+| UseUseExplosion.rb:21:1744:21:1745 | 18 | UseUseExplosion.rb:21:1736:21:1745 | ... > ... |
+| UseUseExplosion.rb:21:1748:21:2372 | then ... | UseUseExplosion.rb:21:1732:21:2388 | if ... |
+| UseUseExplosion.rb:21:1753:21:2372 | if ... | UseUseExplosion.rb:21:1748:21:2372 | then ... |
+| UseUseExplosion.rb:21:1757:21:1761 | @prop | UseUseExplosion.rb:21:1757:21:1766 | ... > ... |
+| UseUseExplosion.rb:21:1757:21:1761 | [post] self | UseUseExplosion.rb:21:1778:21:1782 | self |
+| UseUseExplosion.rb:21:1757:21:1761 | [post] self | UseUseExplosion.rb:21:2363:21:2368 | self |
+| UseUseExplosion.rb:21:1757:21:1761 | self | UseUseExplosion.rb:21:1778:21:1782 | self |
+| UseUseExplosion.rb:21:1757:21:1761 | self | UseUseExplosion.rb:21:2363:21:2368 | self |
+| UseUseExplosion.rb:21:1757:21:1766 | ... > ... | UseUseExplosion.rb:21:1756:21:1767 | [false] ( ... ) |
+| UseUseExplosion.rb:21:1757:21:1766 | ... > ... | UseUseExplosion.rb:21:1756:21:1767 | [true] ( ... ) |
+| UseUseExplosion.rb:21:1765:21:1766 | 17 | UseUseExplosion.rb:21:1757:21:1766 | ... > ... |
+| UseUseExplosion.rb:21:1769:21:2356 | then ... | UseUseExplosion.rb:21:1753:21:2372 | if ... |
+| UseUseExplosion.rb:21:1774:21:2356 | if ... | UseUseExplosion.rb:21:1769:21:2356 | then ... |
+| UseUseExplosion.rb:21:1778:21:1782 | @prop | UseUseExplosion.rb:21:1778:21:1787 | ... > ... |
+| UseUseExplosion.rb:21:1778:21:1782 | [post] self | UseUseExplosion.rb:21:1799:21:1803 | self |
+| UseUseExplosion.rb:21:1778:21:1782 | [post] self | UseUseExplosion.rb:21:2347:21:2352 | self |
+| UseUseExplosion.rb:21:1778:21:1782 | self | UseUseExplosion.rb:21:1799:21:1803 | self |
+| UseUseExplosion.rb:21:1778:21:1782 | self | UseUseExplosion.rb:21:2347:21:2352 | self |
+| UseUseExplosion.rb:21:1778:21:1787 | ... > ... | UseUseExplosion.rb:21:1777:21:1788 | [false] ( ... ) |
+| UseUseExplosion.rb:21:1778:21:1787 | ... > ... | UseUseExplosion.rb:21:1777:21:1788 | [true] ( ... ) |
+| UseUseExplosion.rb:21:1786:21:1787 | 16 | UseUseExplosion.rb:21:1778:21:1787 | ... > ... |
+| UseUseExplosion.rb:21:1790:21:2340 | then ... | UseUseExplosion.rb:21:1774:21:2356 | if ... |
+| UseUseExplosion.rb:21:1795:21:2340 | if ... | UseUseExplosion.rb:21:1790:21:2340 | then ... |
+| UseUseExplosion.rb:21:1799:21:1803 | @prop | UseUseExplosion.rb:21:1799:21:1808 | ... > ... |
+| UseUseExplosion.rb:21:1799:21:1803 | [post] self | UseUseExplosion.rb:21:1820:21:1824 | self |
+| UseUseExplosion.rb:21:1799:21:1803 | [post] self | UseUseExplosion.rb:21:2331:21:2336 | self |
+| UseUseExplosion.rb:21:1799:21:1803 | self | UseUseExplosion.rb:21:1820:21:1824 | self |
+| UseUseExplosion.rb:21:1799:21:1803 | self | UseUseExplosion.rb:21:2331:21:2336 | self |
+| UseUseExplosion.rb:21:1799:21:1808 | ... > ... | UseUseExplosion.rb:21:1798:21:1809 | [false] ( ... ) |
+| UseUseExplosion.rb:21:1799:21:1808 | ... > ... | UseUseExplosion.rb:21:1798:21:1809 | [true] ( ... ) |
+| UseUseExplosion.rb:21:1807:21:1808 | 15 | UseUseExplosion.rb:21:1799:21:1808 | ... > ... |
+| UseUseExplosion.rb:21:1811:21:2324 | then ... | UseUseExplosion.rb:21:1795:21:2340 | if ... |
+| UseUseExplosion.rb:21:1816:21:2324 | if ... | UseUseExplosion.rb:21:1811:21:2324 | then ... |
+| UseUseExplosion.rb:21:1820:21:1824 | @prop | UseUseExplosion.rb:21:1820:21:1829 | ... > ... |
+| UseUseExplosion.rb:21:1820:21:1824 | [post] self | UseUseExplosion.rb:21:1841:21:1845 | self |
+| UseUseExplosion.rb:21:1820:21:1824 | [post] self | UseUseExplosion.rb:21:2315:21:2320 | self |
+| UseUseExplosion.rb:21:1820:21:1824 | self | UseUseExplosion.rb:21:1841:21:1845 | self |
+| UseUseExplosion.rb:21:1820:21:1824 | self | UseUseExplosion.rb:21:2315:21:2320 | self |
+| UseUseExplosion.rb:21:1820:21:1829 | ... > ... | UseUseExplosion.rb:21:1819:21:1830 | [false] ( ... ) |
+| UseUseExplosion.rb:21:1820:21:1829 | ... > ... | UseUseExplosion.rb:21:1819:21:1830 | [true] ( ... ) |
+| UseUseExplosion.rb:21:1828:21:1829 | 14 | UseUseExplosion.rb:21:1820:21:1829 | ... > ... |
+| UseUseExplosion.rb:21:1832:21:2308 | then ... | UseUseExplosion.rb:21:1816:21:2324 | if ... |
+| UseUseExplosion.rb:21:1837:21:2308 | if ... | UseUseExplosion.rb:21:1832:21:2308 | then ... |
+| UseUseExplosion.rb:21:1841:21:1845 | @prop | UseUseExplosion.rb:21:1841:21:1850 | ... > ... |
+| UseUseExplosion.rb:21:1841:21:1845 | [post] self | UseUseExplosion.rb:21:1862:21:1866 | self |
+| UseUseExplosion.rb:21:1841:21:1845 | [post] self | UseUseExplosion.rb:21:2299:21:2304 | self |
+| UseUseExplosion.rb:21:1841:21:1845 | self | UseUseExplosion.rb:21:1862:21:1866 | self |
+| UseUseExplosion.rb:21:1841:21:1845 | self | UseUseExplosion.rb:21:2299:21:2304 | self |
+| UseUseExplosion.rb:21:1841:21:1850 | ... > ... | UseUseExplosion.rb:21:1840:21:1851 | [false] ( ... ) |
+| UseUseExplosion.rb:21:1841:21:1850 | ... > ... | UseUseExplosion.rb:21:1840:21:1851 | [true] ( ... ) |
+| UseUseExplosion.rb:21:1849:21:1850 | 13 | UseUseExplosion.rb:21:1841:21:1850 | ... > ... |
+| UseUseExplosion.rb:21:1853:21:2292 | then ... | UseUseExplosion.rb:21:1837:21:2308 | if ... |
+| UseUseExplosion.rb:21:1858:21:2292 | if ... | UseUseExplosion.rb:21:1853:21:2292 | then ... |
+| UseUseExplosion.rb:21:1862:21:1866 | @prop | UseUseExplosion.rb:21:1862:21:1871 | ... > ... |
+| UseUseExplosion.rb:21:1862:21:1866 | [post] self | UseUseExplosion.rb:21:1883:21:1887 | self |
+| UseUseExplosion.rb:21:1862:21:1866 | [post] self | UseUseExplosion.rb:21:2283:21:2288 | self |
+| UseUseExplosion.rb:21:1862:21:1866 | self | UseUseExplosion.rb:21:1883:21:1887 | self |
+| UseUseExplosion.rb:21:1862:21:1866 | self | UseUseExplosion.rb:21:2283:21:2288 | self |
+| UseUseExplosion.rb:21:1862:21:1871 | ... > ... | UseUseExplosion.rb:21:1861:21:1872 | [false] ( ... ) |
+| UseUseExplosion.rb:21:1862:21:1871 | ... > ... | UseUseExplosion.rb:21:1861:21:1872 | [true] ( ... ) |
+| UseUseExplosion.rb:21:1870:21:1871 | 12 | UseUseExplosion.rb:21:1862:21:1871 | ... > ... |
+| UseUseExplosion.rb:21:1874:21:2276 | then ... | UseUseExplosion.rb:21:1858:21:2292 | if ... |
+| UseUseExplosion.rb:21:1879:21:2276 | if ... | UseUseExplosion.rb:21:1874:21:2276 | then ... |
+| UseUseExplosion.rb:21:1883:21:1887 | @prop | UseUseExplosion.rb:21:1883:21:1892 | ... > ... |
+| UseUseExplosion.rb:21:1883:21:1887 | [post] self | UseUseExplosion.rb:21:1904:21:1908 | self |
+| UseUseExplosion.rb:21:1883:21:1887 | [post] self | UseUseExplosion.rb:21:2267:21:2272 | self |
+| UseUseExplosion.rb:21:1883:21:1887 | self | UseUseExplosion.rb:21:1904:21:1908 | self |
+| UseUseExplosion.rb:21:1883:21:1887 | self | UseUseExplosion.rb:21:2267:21:2272 | self |
+| UseUseExplosion.rb:21:1883:21:1892 | ... > ... | UseUseExplosion.rb:21:1882:21:1893 | [false] ( ... ) |
+| UseUseExplosion.rb:21:1883:21:1892 | ... > ... | UseUseExplosion.rb:21:1882:21:1893 | [true] ( ... ) |
+| UseUseExplosion.rb:21:1891:21:1892 | 11 | UseUseExplosion.rb:21:1883:21:1892 | ... > ... |
+| UseUseExplosion.rb:21:1895:21:2260 | then ... | UseUseExplosion.rb:21:1879:21:2276 | if ... |
+| UseUseExplosion.rb:21:1900:21:2260 | if ... | UseUseExplosion.rb:21:1895:21:2260 | then ... |
+| UseUseExplosion.rb:21:1904:21:1908 | @prop | UseUseExplosion.rb:21:1904:21:1913 | ... > ... |
+| UseUseExplosion.rb:21:1904:21:1908 | [post] self | UseUseExplosion.rb:21:1925:21:1929 | self |
+| UseUseExplosion.rb:21:1904:21:1908 | [post] self | UseUseExplosion.rb:21:2251:21:2256 | self |
+| UseUseExplosion.rb:21:1904:21:1908 | self | UseUseExplosion.rb:21:1925:21:1929 | self |
+| UseUseExplosion.rb:21:1904:21:1908 | self | UseUseExplosion.rb:21:2251:21:2256 | self |
+| UseUseExplosion.rb:21:1904:21:1913 | ... > ... | UseUseExplosion.rb:21:1903:21:1914 | [false] ( ... ) |
+| UseUseExplosion.rb:21:1904:21:1913 | ... > ... | UseUseExplosion.rb:21:1903:21:1914 | [true] ( ... ) |
+| UseUseExplosion.rb:21:1912:21:1913 | 10 | UseUseExplosion.rb:21:1904:21:1913 | ... > ... |
+| UseUseExplosion.rb:21:1916:21:2244 | then ... | UseUseExplosion.rb:21:1900:21:2260 | if ... |
+| UseUseExplosion.rb:21:1921:21:2244 | if ... | UseUseExplosion.rb:21:1916:21:2244 | then ... |
+| UseUseExplosion.rb:21:1925:21:1929 | @prop | UseUseExplosion.rb:21:1925:21:1933 | ... > ... |
+| UseUseExplosion.rb:21:1925:21:1929 | [post] self | UseUseExplosion.rb:21:1945:21:1949 | self |
+| UseUseExplosion.rb:21:1925:21:1929 | [post] self | UseUseExplosion.rb:21:2235:21:2240 | self |
+| UseUseExplosion.rb:21:1925:21:1929 | self | UseUseExplosion.rb:21:1945:21:1949 | self |
+| UseUseExplosion.rb:21:1925:21:1929 | self | UseUseExplosion.rb:21:2235:21:2240 | self |
+| UseUseExplosion.rb:21:1925:21:1933 | ... > ... | UseUseExplosion.rb:21:1924:21:1934 | [false] ( ... ) |
+| UseUseExplosion.rb:21:1925:21:1933 | ... > ... | UseUseExplosion.rb:21:1924:21:1934 | [true] ( ... ) |
+| UseUseExplosion.rb:21:1933:21:1933 | 9 | UseUseExplosion.rb:21:1925:21:1933 | ... > ... |
+| UseUseExplosion.rb:21:1936:21:2228 | then ... | UseUseExplosion.rb:21:1921:21:2244 | if ... |
+| UseUseExplosion.rb:21:1941:21:2228 | if ... | UseUseExplosion.rb:21:1936:21:2228 | then ... |
+| UseUseExplosion.rb:21:1945:21:1949 | @prop | UseUseExplosion.rb:21:1945:21:1953 | ... > ... |
+| UseUseExplosion.rb:21:1945:21:1949 | [post] self | UseUseExplosion.rb:21:1965:21:1969 | self |
+| UseUseExplosion.rb:21:1945:21:1949 | [post] self | UseUseExplosion.rb:21:2219:21:2224 | self |
+| UseUseExplosion.rb:21:1945:21:1949 | self | UseUseExplosion.rb:21:1965:21:1969 | self |
+| UseUseExplosion.rb:21:1945:21:1949 | self | UseUseExplosion.rb:21:2219:21:2224 | self |
+| UseUseExplosion.rb:21:1945:21:1953 | ... > ... | UseUseExplosion.rb:21:1944:21:1954 | [false] ( ... ) |
+| UseUseExplosion.rb:21:1945:21:1953 | ... > ... | UseUseExplosion.rb:21:1944:21:1954 | [true] ( ... ) |
+| UseUseExplosion.rb:21:1953:21:1953 | 8 | UseUseExplosion.rb:21:1945:21:1953 | ... > ... |
+| UseUseExplosion.rb:21:1956:21:2212 | then ... | UseUseExplosion.rb:21:1941:21:2228 | if ... |
+| UseUseExplosion.rb:21:1961:21:2212 | if ... | UseUseExplosion.rb:21:1956:21:2212 | then ... |
+| UseUseExplosion.rb:21:1965:21:1969 | @prop | UseUseExplosion.rb:21:1965:21:1973 | ... > ... |
+| UseUseExplosion.rb:21:1965:21:1969 | [post] self | UseUseExplosion.rb:21:1985:21:1989 | self |
+| UseUseExplosion.rb:21:1965:21:1969 | [post] self | UseUseExplosion.rb:21:2203:21:2208 | self |
+| UseUseExplosion.rb:21:1965:21:1969 | self | UseUseExplosion.rb:21:1985:21:1989 | self |
+| UseUseExplosion.rb:21:1965:21:1969 | self | UseUseExplosion.rb:21:2203:21:2208 | self |
+| UseUseExplosion.rb:21:1965:21:1973 | ... > ... | UseUseExplosion.rb:21:1964:21:1974 | [false] ( ... ) |
+| UseUseExplosion.rb:21:1965:21:1973 | ... > ... | UseUseExplosion.rb:21:1964:21:1974 | [true] ( ... ) |
+| UseUseExplosion.rb:21:1973:21:1973 | 7 | UseUseExplosion.rb:21:1965:21:1973 | ... > ... |
+| UseUseExplosion.rb:21:1976:21:2196 | then ... | UseUseExplosion.rb:21:1961:21:2212 | if ... |
+| UseUseExplosion.rb:21:1981:21:2196 | if ... | UseUseExplosion.rb:21:1976:21:2196 | then ... |
+| UseUseExplosion.rb:21:1985:21:1989 | @prop | UseUseExplosion.rb:21:1985:21:1993 | ... > ... |
+| UseUseExplosion.rb:21:1985:21:1989 | [post] self | UseUseExplosion.rb:21:2005:21:2009 | self |
+| UseUseExplosion.rb:21:1985:21:1989 | [post] self | UseUseExplosion.rb:21:2187:21:2192 | self |
+| UseUseExplosion.rb:21:1985:21:1989 | self | UseUseExplosion.rb:21:2005:21:2009 | self |
+| UseUseExplosion.rb:21:1985:21:1989 | self | UseUseExplosion.rb:21:2187:21:2192 | self |
+| UseUseExplosion.rb:21:1985:21:1993 | ... > ... | UseUseExplosion.rb:21:1984:21:1994 | [false] ( ... ) |
+| UseUseExplosion.rb:21:1985:21:1993 | ... > ... | UseUseExplosion.rb:21:1984:21:1994 | [true] ( ... ) |
+| UseUseExplosion.rb:21:1993:21:1993 | 6 | UseUseExplosion.rb:21:1985:21:1993 | ... > ... |
+| UseUseExplosion.rb:21:1996:21:2180 | then ... | UseUseExplosion.rb:21:1981:21:2196 | if ... |
+| UseUseExplosion.rb:21:2001:21:2180 | if ... | UseUseExplosion.rb:21:1996:21:2180 | then ... |
+| UseUseExplosion.rb:21:2005:21:2009 | @prop | UseUseExplosion.rb:21:2005:21:2013 | ... > ... |
+| UseUseExplosion.rb:21:2005:21:2009 | [post] self | UseUseExplosion.rb:21:2025:21:2029 | self |
+| UseUseExplosion.rb:21:2005:21:2009 | [post] self | UseUseExplosion.rb:21:2171:21:2176 | self |
+| UseUseExplosion.rb:21:2005:21:2009 | self | UseUseExplosion.rb:21:2025:21:2029 | self |
+| UseUseExplosion.rb:21:2005:21:2009 | self | UseUseExplosion.rb:21:2171:21:2176 | self |
+| UseUseExplosion.rb:21:2005:21:2013 | ... > ... | UseUseExplosion.rb:21:2004:21:2014 | [false] ( ... ) |
+| UseUseExplosion.rb:21:2005:21:2013 | ... > ... | UseUseExplosion.rb:21:2004:21:2014 | [true] ( ... ) |
+| UseUseExplosion.rb:21:2013:21:2013 | 5 | UseUseExplosion.rb:21:2005:21:2013 | ... > ... |
+| UseUseExplosion.rb:21:2016:21:2164 | then ... | UseUseExplosion.rb:21:2001:21:2180 | if ... |
+| UseUseExplosion.rb:21:2021:21:2164 | if ... | UseUseExplosion.rb:21:2016:21:2164 | then ... |
+| UseUseExplosion.rb:21:2025:21:2029 | @prop | UseUseExplosion.rb:21:2025:21:2033 | ... > ... |
+| UseUseExplosion.rb:21:2025:21:2029 | [post] self | UseUseExplosion.rb:21:2045:21:2049 | self |
+| UseUseExplosion.rb:21:2025:21:2029 | [post] self | UseUseExplosion.rb:21:2155:21:2160 | self |
+| UseUseExplosion.rb:21:2025:21:2029 | self | UseUseExplosion.rb:21:2045:21:2049 | self |
+| UseUseExplosion.rb:21:2025:21:2029 | self | UseUseExplosion.rb:21:2155:21:2160 | self |
+| UseUseExplosion.rb:21:2025:21:2033 | ... > ... | UseUseExplosion.rb:21:2024:21:2034 | [false] ( ... ) |
+| UseUseExplosion.rb:21:2025:21:2033 | ... > ... | UseUseExplosion.rb:21:2024:21:2034 | [true] ( ... ) |
+| UseUseExplosion.rb:21:2033:21:2033 | 4 | UseUseExplosion.rb:21:2025:21:2033 | ... > ... |
+| UseUseExplosion.rb:21:2036:21:2148 | then ... | UseUseExplosion.rb:21:2021:21:2164 | if ... |
+| UseUseExplosion.rb:21:2041:21:2148 | if ... | UseUseExplosion.rb:21:2036:21:2148 | then ... |
+| UseUseExplosion.rb:21:2045:21:2049 | @prop | UseUseExplosion.rb:21:2045:21:2053 | ... > ... |
+| UseUseExplosion.rb:21:2045:21:2049 | [post] self | UseUseExplosion.rb:21:2065:21:2069 | self |
+| UseUseExplosion.rb:21:2045:21:2049 | [post] self | UseUseExplosion.rb:21:2139:21:2144 | self |
+| UseUseExplosion.rb:21:2045:21:2049 | self | UseUseExplosion.rb:21:2065:21:2069 | self |
+| UseUseExplosion.rb:21:2045:21:2049 | self | UseUseExplosion.rb:21:2139:21:2144 | self |
+| UseUseExplosion.rb:21:2045:21:2053 | ... > ... | UseUseExplosion.rb:21:2044:21:2054 | [false] ( ... ) |
+| UseUseExplosion.rb:21:2045:21:2053 | ... > ... | UseUseExplosion.rb:21:2044:21:2054 | [true] ( ... ) |
+| UseUseExplosion.rb:21:2053:21:2053 | 3 | UseUseExplosion.rb:21:2045:21:2053 | ... > ... |
+| UseUseExplosion.rb:21:2056:21:2132 | then ... | UseUseExplosion.rb:21:2041:21:2148 | if ... |
+| UseUseExplosion.rb:21:2061:21:2132 | if ... | UseUseExplosion.rb:21:2056:21:2132 | then ... |
+| UseUseExplosion.rb:21:2065:21:2069 | @prop | UseUseExplosion.rb:21:2065:21:2073 | ... > ... |
+| UseUseExplosion.rb:21:2065:21:2069 | [post] self | UseUseExplosion.rb:21:2085:21:2089 | self |
+| UseUseExplosion.rb:21:2065:21:2069 | [post] self | UseUseExplosion.rb:21:2123:21:2128 | self |
+| UseUseExplosion.rb:21:2065:21:2069 | self | UseUseExplosion.rb:21:2085:21:2089 | self |
+| UseUseExplosion.rb:21:2065:21:2069 | self | UseUseExplosion.rb:21:2123:21:2128 | self |
+| UseUseExplosion.rb:21:2065:21:2073 | ... > ... | UseUseExplosion.rb:21:2064:21:2074 | [false] ( ... ) |
+| UseUseExplosion.rb:21:2065:21:2073 | ... > ... | UseUseExplosion.rb:21:2064:21:2074 | [true] ( ... ) |
+| UseUseExplosion.rb:21:2073:21:2073 | 2 | UseUseExplosion.rb:21:2065:21:2073 | ... > ... |
+| UseUseExplosion.rb:21:2076:21:2116 | then ... | UseUseExplosion.rb:21:2061:21:2132 | if ... |
+| UseUseExplosion.rb:21:2081:21:2116 | if ... | UseUseExplosion.rb:21:2076:21:2116 | then ... |
+| UseUseExplosion.rb:21:2085:21:2089 | @prop | UseUseExplosion.rb:21:2085:21:2093 | ... > ... |
+| UseUseExplosion.rb:21:2085:21:2089 | [post] self | UseUseExplosion.rb:21:2107:21:2112 | self |
+| UseUseExplosion.rb:21:2085:21:2089 | self | UseUseExplosion.rb:21:2107:21:2112 | self |
+| UseUseExplosion.rb:21:2085:21:2093 | ... > ... | UseUseExplosion.rb:21:2084:21:2094 | [false] ( ... ) |
+| UseUseExplosion.rb:21:2085:21:2093 | ... > ... | UseUseExplosion.rb:21:2084:21:2094 | [true] ( ... ) |
+| UseUseExplosion.rb:21:2093:21:2093 | 1 | UseUseExplosion.rb:21:2085:21:2093 | ... > ... |
+| UseUseExplosion.rb:21:2096:21:2099 | then ... | UseUseExplosion.rb:21:2081:21:2116 | if ... |
+| UseUseExplosion.rb:21:2102:21:2112 | else ... | UseUseExplosion.rb:21:2081:21:2116 | if ... |
+| UseUseExplosion.rb:21:2107:21:2112 | call to use | UseUseExplosion.rb:21:2102:21:2112 | else ... |
+| UseUseExplosion.rb:21:2118:21:2128 | else ... | UseUseExplosion.rb:21:2061:21:2132 | if ... |
+| UseUseExplosion.rb:21:2123:21:2128 | call to use | UseUseExplosion.rb:21:2118:21:2128 | else ... |
+| UseUseExplosion.rb:21:2134:21:2144 | else ... | UseUseExplosion.rb:21:2041:21:2148 | if ... |
+| UseUseExplosion.rb:21:2139:21:2144 | call to use | UseUseExplosion.rb:21:2134:21:2144 | else ... |
+| UseUseExplosion.rb:21:2150:21:2160 | else ... | UseUseExplosion.rb:21:2021:21:2164 | if ... |
+| UseUseExplosion.rb:21:2155:21:2160 | call to use | UseUseExplosion.rb:21:2150:21:2160 | else ... |
+| UseUseExplosion.rb:21:2166:21:2176 | else ... | UseUseExplosion.rb:21:2001:21:2180 | if ... |
+| UseUseExplosion.rb:21:2171:21:2176 | call to use | UseUseExplosion.rb:21:2166:21:2176 | else ... |
+| UseUseExplosion.rb:21:2182:21:2192 | else ... | UseUseExplosion.rb:21:1981:21:2196 | if ... |
+| UseUseExplosion.rb:21:2187:21:2192 | call to use | UseUseExplosion.rb:21:2182:21:2192 | else ... |
+| UseUseExplosion.rb:21:2198:21:2208 | else ... | UseUseExplosion.rb:21:1961:21:2212 | if ... |
+| UseUseExplosion.rb:21:2203:21:2208 | call to use | UseUseExplosion.rb:21:2198:21:2208 | else ... |
+| UseUseExplosion.rb:21:2214:21:2224 | else ... | UseUseExplosion.rb:21:1941:21:2228 | if ... |
+| UseUseExplosion.rb:21:2219:21:2224 | call to use | UseUseExplosion.rb:21:2214:21:2224 | else ... |
+| UseUseExplosion.rb:21:2230:21:2240 | else ... | UseUseExplosion.rb:21:1921:21:2244 | if ... |
+| UseUseExplosion.rb:21:2235:21:2240 | call to use | UseUseExplosion.rb:21:2230:21:2240 | else ... |
+| UseUseExplosion.rb:21:2246:21:2256 | else ... | UseUseExplosion.rb:21:1900:21:2260 | if ... |
+| UseUseExplosion.rb:21:2251:21:2256 | call to use | UseUseExplosion.rb:21:2246:21:2256 | else ... |
+| UseUseExplosion.rb:21:2262:21:2272 | else ... | UseUseExplosion.rb:21:1879:21:2276 | if ... |
+| UseUseExplosion.rb:21:2267:21:2272 | call to use | UseUseExplosion.rb:21:2262:21:2272 | else ... |
+| UseUseExplosion.rb:21:2278:21:2288 | else ... | UseUseExplosion.rb:21:1858:21:2292 | if ... |
+| UseUseExplosion.rb:21:2283:21:2288 | call to use | UseUseExplosion.rb:21:2278:21:2288 | else ... |
+| UseUseExplosion.rb:21:2294:21:2304 | else ... | UseUseExplosion.rb:21:1837:21:2308 | if ... |
+| UseUseExplosion.rb:21:2299:21:2304 | call to use | UseUseExplosion.rb:21:2294:21:2304 | else ... |
+| UseUseExplosion.rb:21:2310:21:2320 | else ... | UseUseExplosion.rb:21:1816:21:2324 | if ... |
+| UseUseExplosion.rb:21:2315:21:2320 | call to use | UseUseExplosion.rb:21:2310:21:2320 | else ... |
+| UseUseExplosion.rb:21:2326:21:2336 | else ... | UseUseExplosion.rb:21:1795:21:2340 | if ... |
+| UseUseExplosion.rb:21:2331:21:2336 | call to use | UseUseExplosion.rb:21:2326:21:2336 | else ... |
+| UseUseExplosion.rb:21:2342:21:2352 | else ... | UseUseExplosion.rb:21:1774:21:2356 | if ... |
+| UseUseExplosion.rb:21:2347:21:2352 | call to use | UseUseExplosion.rb:21:2342:21:2352 | else ... |
+| UseUseExplosion.rb:21:2358:21:2368 | else ... | UseUseExplosion.rb:21:1753:21:2372 | if ... |
+| UseUseExplosion.rb:21:2363:21:2368 | call to use | UseUseExplosion.rb:21:2358:21:2368 | else ... |
+| UseUseExplosion.rb:21:2374:21:2384 | else ... | UseUseExplosion.rb:21:1732:21:2388 | if ... |
+| UseUseExplosion.rb:21:2379:21:2384 | call to use | UseUseExplosion.rb:21:2374:21:2384 | else ... |
+| UseUseExplosion.rb:21:2390:21:2400 | else ... | UseUseExplosion.rb:21:1711:21:2404 | if ... |
+| UseUseExplosion.rb:21:2395:21:2400 | call to use | UseUseExplosion.rb:21:2390:21:2400 | else ... |
+| UseUseExplosion.rb:21:2406:21:2416 | else ... | UseUseExplosion.rb:21:1690:21:2420 | if ... |
+| UseUseExplosion.rb:21:2411:21:2416 | call to use | UseUseExplosion.rb:21:2406:21:2416 | else ... |
+| UseUseExplosion.rb:21:2422:21:2432 | else ... | UseUseExplosion.rb:21:1669:21:2436 | if ... |
+| UseUseExplosion.rb:21:2427:21:2432 | call to use | UseUseExplosion.rb:21:2422:21:2432 | else ... |
+| UseUseExplosion.rb:21:2438:21:2448 | else ... | UseUseExplosion.rb:21:1648:21:2452 | if ... |
+| UseUseExplosion.rb:21:2443:21:2448 | call to use | UseUseExplosion.rb:21:2438:21:2448 | else ... |
+| UseUseExplosion.rb:21:2454:21:2464 | else ... | UseUseExplosion.rb:21:1627:21:2468 | if ... |
+| UseUseExplosion.rb:21:2459:21:2464 | call to use | UseUseExplosion.rb:21:2454:21:2464 | else ... |
+| UseUseExplosion.rb:21:2470:21:2480 | else ... | UseUseExplosion.rb:21:1606:21:2484 | if ... |
+| UseUseExplosion.rb:21:2475:21:2480 | call to use | UseUseExplosion.rb:21:2470:21:2480 | else ... |
+| UseUseExplosion.rb:21:2486:21:2496 | else ... | UseUseExplosion.rb:21:1585:21:2500 | if ... |
+| UseUseExplosion.rb:21:2491:21:2496 | call to use | UseUseExplosion.rb:21:2486:21:2496 | else ... |
+| UseUseExplosion.rb:21:2502:21:2512 | else ... | UseUseExplosion.rb:21:1564:21:2516 | if ... |
+| UseUseExplosion.rb:21:2507:21:2512 | call to use | UseUseExplosion.rb:21:2502:21:2512 | else ... |
+| UseUseExplosion.rb:21:2518:21:2528 | else ... | UseUseExplosion.rb:21:1543:21:2532 | if ... |
+| UseUseExplosion.rb:21:2523:21:2528 | call to use | UseUseExplosion.rb:21:2518:21:2528 | else ... |
+| UseUseExplosion.rb:21:2534:21:2544 | else ... | UseUseExplosion.rb:21:1522:21:2548 | if ... |
+| UseUseExplosion.rb:21:2539:21:2544 | call to use | UseUseExplosion.rb:21:2534:21:2544 | else ... |
+| UseUseExplosion.rb:21:2550:21:2560 | else ... | UseUseExplosion.rb:21:1501:21:2564 | if ... |
+| UseUseExplosion.rb:21:2555:21:2560 | call to use | UseUseExplosion.rb:21:2550:21:2560 | else ... |
+| UseUseExplosion.rb:21:2566:21:2576 | else ... | UseUseExplosion.rb:21:1480:21:2580 | if ... |
+| UseUseExplosion.rb:21:2571:21:2576 | call to use | UseUseExplosion.rb:21:2566:21:2576 | else ... |
+| UseUseExplosion.rb:21:2582:21:2592 | else ... | UseUseExplosion.rb:21:1459:21:2596 | if ... |
+| UseUseExplosion.rb:21:2587:21:2592 | call to use | UseUseExplosion.rb:21:2582:21:2592 | else ... |
+| UseUseExplosion.rb:21:2598:21:2608 | else ... | UseUseExplosion.rb:21:1438:21:2612 | if ... |
+| UseUseExplosion.rb:21:2603:21:2608 | call to use | UseUseExplosion.rb:21:2598:21:2608 | else ... |
+| UseUseExplosion.rb:21:2614:21:2624 | else ... | UseUseExplosion.rb:21:1417:21:2628 | if ... |
+| UseUseExplosion.rb:21:2619:21:2624 | call to use | UseUseExplosion.rb:21:2614:21:2624 | else ... |
+| UseUseExplosion.rb:21:2630:21:2640 | else ... | UseUseExplosion.rb:21:1396:21:2644 | if ... |
+| UseUseExplosion.rb:21:2635:21:2640 | call to use | UseUseExplosion.rb:21:2630:21:2640 | else ... |
+| UseUseExplosion.rb:21:2646:21:2656 | else ... | UseUseExplosion.rb:21:1375:21:2660 | if ... |
+| UseUseExplosion.rb:21:2651:21:2656 | call to use | UseUseExplosion.rb:21:2646:21:2656 | else ... |
+| UseUseExplosion.rb:21:2662:21:2672 | else ... | UseUseExplosion.rb:21:1354:21:2676 | if ... |
+| UseUseExplosion.rb:21:2667:21:2672 | call to use | UseUseExplosion.rb:21:2662:21:2672 | else ... |
+| UseUseExplosion.rb:21:2678:21:2688 | else ... | UseUseExplosion.rb:21:1333:21:2692 | if ... |
+| UseUseExplosion.rb:21:2683:21:2688 | call to use | UseUseExplosion.rb:21:2678:21:2688 | else ... |
+| UseUseExplosion.rb:21:2694:21:2704 | else ... | UseUseExplosion.rb:21:1312:21:2708 | if ... |
+| UseUseExplosion.rb:21:2699:21:2704 | call to use | UseUseExplosion.rb:21:2694:21:2704 | else ... |
+| UseUseExplosion.rb:21:2710:21:2720 | else ... | UseUseExplosion.rb:21:1291:21:2724 | if ... |
+| UseUseExplosion.rb:21:2715:21:2720 | call to use | UseUseExplosion.rb:21:2710:21:2720 | else ... |
+| UseUseExplosion.rb:21:2726:21:2736 | else ... | UseUseExplosion.rb:21:1270:21:2740 | if ... |
+| UseUseExplosion.rb:21:2731:21:2736 | call to use | UseUseExplosion.rb:21:2726:21:2736 | else ... |
+| UseUseExplosion.rb:21:2742:21:2752 | else ... | UseUseExplosion.rb:21:1249:21:2756 | if ... |
+| UseUseExplosion.rb:21:2747:21:2752 | call to use | UseUseExplosion.rb:21:2742:21:2752 | else ... |
+| UseUseExplosion.rb:21:2758:21:2768 | else ... | UseUseExplosion.rb:21:1228:21:2772 | if ... |
+| UseUseExplosion.rb:21:2763:21:2768 | call to use | UseUseExplosion.rb:21:2758:21:2768 | else ... |
+| UseUseExplosion.rb:21:2774:21:2784 | else ... | UseUseExplosion.rb:21:1207:21:2788 | if ... |
+| UseUseExplosion.rb:21:2779:21:2784 | call to use | UseUseExplosion.rb:21:2774:21:2784 | else ... |
+| UseUseExplosion.rb:21:2790:21:2800 | else ... | UseUseExplosion.rb:21:1186:21:2804 | if ... |
+| UseUseExplosion.rb:21:2795:21:2800 | call to use | UseUseExplosion.rb:21:2790:21:2800 | else ... |
+| UseUseExplosion.rb:21:2806:21:2816 | else ... | UseUseExplosion.rb:21:1165:21:2820 | if ... |
+| UseUseExplosion.rb:21:2811:21:2816 | call to use | UseUseExplosion.rb:21:2806:21:2816 | else ... |
+| UseUseExplosion.rb:21:2822:21:2832 | else ... | UseUseExplosion.rb:21:1144:21:2836 | if ... |
+| UseUseExplosion.rb:21:2827:21:2832 | call to use | UseUseExplosion.rb:21:2822:21:2832 | else ... |
+| UseUseExplosion.rb:21:2838:21:2848 | else ... | UseUseExplosion.rb:21:1123:21:2852 | if ... |
+| UseUseExplosion.rb:21:2843:21:2848 | call to use | UseUseExplosion.rb:21:2838:21:2848 | else ... |
+| UseUseExplosion.rb:21:2854:21:2864 | else ... | UseUseExplosion.rb:21:1102:21:2868 | if ... |
+| UseUseExplosion.rb:21:2859:21:2864 | call to use | UseUseExplosion.rb:21:2854:21:2864 | else ... |
+| UseUseExplosion.rb:21:2870:21:2880 | else ... | UseUseExplosion.rb:21:1081:21:2884 | if ... |
+| UseUseExplosion.rb:21:2875:21:2880 | call to use | UseUseExplosion.rb:21:2870:21:2880 | else ... |
+| UseUseExplosion.rb:21:2886:21:2896 | else ... | UseUseExplosion.rb:21:1060:21:2900 | if ... |
+| UseUseExplosion.rb:21:2891:21:2896 | call to use | UseUseExplosion.rb:21:2886:21:2896 | else ... |
+| UseUseExplosion.rb:21:2902:21:2912 | else ... | UseUseExplosion.rb:21:1039:21:2916 | if ... |
+| UseUseExplosion.rb:21:2907:21:2912 | call to use | UseUseExplosion.rb:21:2902:21:2912 | else ... |
+| UseUseExplosion.rb:21:2918:21:2928 | else ... | UseUseExplosion.rb:21:1018:21:2932 | if ... |
+| UseUseExplosion.rb:21:2923:21:2928 | call to use | UseUseExplosion.rb:21:2918:21:2928 | else ... |
+| UseUseExplosion.rb:21:2934:21:2944 | else ... | UseUseExplosion.rb:21:997:21:2948 | if ... |
+| UseUseExplosion.rb:21:2939:21:2944 | call to use | UseUseExplosion.rb:21:2934:21:2944 | else ... |
+| UseUseExplosion.rb:21:2950:21:2960 | else ... | UseUseExplosion.rb:21:976:21:2964 | if ... |
+| UseUseExplosion.rb:21:2955:21:2960 | call to use | UseUseExplosion.rb:21:2950:21:2960 | else ... |
+| UseUseExplosion.rb:21:2966:21:2976 | else ... | UseUseExplosion.rb:21:955:21:2980 | if ... |
+| UseUseExplosion.rb:21:2971:21:2976 | call to use | UseUseExplosion.rb:21:2966:21:2976 | else ... |
+| UseUseExplosion.rb:21:2982:21:2992 | else ... | UseUseExplosion.rb:21:934:21:2996 | if ... |
+| UseUseExplosion.rb:21:2987:21:2992 | call to use | UseUseExplosion.rb:21:2982:21:2992 | else ... |
+| UseUseExplosion.rb:21:2998:21:3008 | else ... | UseUseExplosion.rb:21:913:21:3012 | if ... |
+| UseUseExplosion.rb:21:3003:21:3008 | call to use | UseUseExplosion.rb:21:2998:21:3008 | else ... |
+| UseUseExplosion.rb:21:3014:21:3024 | else ... | UseUseExplosion.rb:21:892:21:3028 | if ... |
+| UseUseExplosion.rb:21:3019:21:3024 | call to use | UseUseExplosion.rb:21:3014:21:3024 | else ... |
+| UseUseExplosion.rb:21:3030:21:3040 | else ... | UseUseExplosion.rb:21:871:21:3044 | if ... |
+| UseUseExplosion.rb:21:3035:21:3040 | call to use | UseUseExplosion.rb:21:3030:21:3040 | else ... |
+| UseUseExplosion.rb:21:3046:21:3056 | else ... | UseUseExplosion.rb:21:850:21:3060 | if ... |
+| UseUseExplosion.rb:21:3051:21:3056 | call to use | UseUseExplosion.rb:21:3046:21:3056 | else ... |
+| UseUseExplosion.rb:21:3062:21:3072 | else ... | UseUseExplosion.rb:21:829:21:3076 | if ... |
+| UseUseExplosion.rb:21:3067:21:3072 | call to use | UseUseExplosion.rb:21:3062:21:3072 | else ... |
+| UseUseExplosion.rb:21:3078:21:3088 | else ... | UseUseExplosion.rb:21:808:21:3092 | if ... |
+| UseUseExplosion.rb:21:3083:21:3088 | call to use | UseUseExplosion.rb:21:3078:21:3088 | else ... |
+| UseUseExplosion.rb:21:3094:21:3104 | else ... | UseUseExplosion.rb:21:787:21:3108 | if ... |
+| UseUseExplosion.rb:21:3099:21:3104 | call to use | UseUseExplosion.rb:21:3094:21:3104 | else ... |
+| UseUseExplosion.rb:21:3110:21:3120 | else ... | UseUseExplosion.rb:21:766:21:3124 | if ... |
+| UseUseExplosion.rb:21:3115:21:3120 | call to use | UseUseExplosion.rb:21:3110:21:3120 | else ... |
+| UseUseExplosion.rb:21:3126:21:3136 | else ... | UseUseExplosion.rb:21:745:21:3140 | if ... |
+| UseUseExplosion.rb:21:3131:21:3136 | call to use | UseUseExplosion.rb:21:3126:21:3136 | else ... |
+| UseUseExplosion.rb:21:3142:21:3152 | else ... | UseUseExplosion.rb:21:724:21:3156 | if ... |
+| UseUseExplosion.rb:21:3147:21:3152 | call to use | UseUseExplosion.rb:21:3142:21:3152 | else ... |
+| UseUseExplosion.rb:21:3158:21:3168 | else ... | UseUseExplosion.rb:21:703:21:3172 | if ... |
+| UseUseExplosion.rb:21:3163:21:3168 | call to use | UseUseExplosion.rb:21:3158:21:3168 | else ... |
+| UseUseExplosion.rb:21:3174:21:3184 | else ... | UseUseExplosion.rb:21:682:21:3188 | if ... |
+| UseUseExplosion.rb:21:3179:21:3184 | call to use | UseUseExplosion.rb:21:3174:21:3184 | else ... |
+| UseUseExplosion.rb:21:3190:21:3200 | else ... | UseUseExplosion.rb:21:661:21:3204 | if ... |
+| UseUseExplosion.rb:21:3195:21:3200 | call to use | UseUseExplosion.rb:21:3190:21:3200 | else ... |
+| UseUseExplosion.rb:21:3206:21:3216 | else ... | UseUseExplosion.rb:21:640:21:3220 | if ... |
+| UseUseExplosion.rb:21:3211:21:3216 | call to use | UseUseExplosion.rb:21:3206:21:3216 | else ... |
+| UseUseExplosion.rb:21:3222:21:3232 | else ... | UseUseExplosion.rb:21:619:21:3236 | if ... |
+| UseUseExplosion.rb:21:3227:21:3232 | call to use | UseUseExplosion.rb:21:3222:21:3232 | else ... |
+| UseUseExplosion.rb:21:3238:21:3248 | else ... | UseUseExplosion.rb:21:598:21:3252 | if ... |
+| UseUseExplosion.rb:21:3243:21:3248 | call to use | UseUseExplosion.rb:21:3238:21:3248 | else ... |
+| UseUseExplosion.rb:21:3254:21:3264 | else ... | UseUseExplosion.rb:21:577:21:3268 | if ... |
+| UseUseExplosion.rb:21:3259:21:3264 | call to use | UseUseExplosion.rb:21:3254:21:3264 | else ... |
+| UseUseExplosion.rb:21:3270:21:3280 | else ... | UseUseExplosion.rb:21:556:21:3284 | if ... |
+| UseUseExplosion.rb:21:3275:21:3280 | call to use | UseUseExplosion.rb:21:3270:21:3280 | else ... |
+| UseUseExplosion.rb:21:3286:21:3296 | else ... | UseUseExplosion.rb:21:535:21:3300 | if ... |
+| UseUseExplosion.rb:21:3291:21:3296 | call to use | UseUseExplosion.rb:21:3286:21:3296 | else ... |
+| UseUseExplosion.rb:21:3302:21:3312 | else ... | UseUseExplosion.rb:21:514:21:3316 | if ... |
+| UseUseExplosion.rb:21:3307:21:3312 | call to use | UseUseExplosion.rb:21:3302:21:3312 | else ... |
+| UseUseExplosion.rb:21:3318:21:3328 | else ... | UseUseExplosion.rb:21:493:21:3332 | if ... |
+| UseUseExplosion.rb:21:3323:21:3328 | call to use | UseUseExplosion.rb:21:3318:21:3328 | else ... |
+| UseUseExplosion.rb:21:3334:21:3344 | else ... | UseUseExplosion.rb:21:472:21:3348 | if ... |
+| UseUseExplosion.rb:21:3339:21:3344 | call to use | UseUseExplosion.rb:21:3334:21:3344 | else ... |
+| UseUseExplosion.rb:21:3350:21:3360 | else ... | UseUseExplosion.rb:21:451:21:3364 | if ... |
+| UseUseExplosion.rb:21:3355:21:3360 | call to use | UseUseExplosion.rb:21:3350:21:3360 | else ... |
+| UseUseExplosion.rb:21:3366:21:3376 | else ... | UseUseExplosion.rb:21:430:21:3380 | if ... |
+| UseUseExplosion.rb:21:3371:21:3376 | call to use | UseUseExplosion.rb:21:3366:21:3376 | else ... |
+| UseUseExplosion.rb:21:3382:21:3392 | else ... | UseUseExplosion.rb:21:409:21:3396 | if ... |
+| UseUseExplosion.rb:21:3387:21:3392 | call to use | UseUseExplosion.rb:21:3382:21:3392 | else ... |
+| UseUseExplosion.rb:21:3398:21:3408 | else ... | UseUseExplosion.rb:21:388:21:3412 | if ... |
+| UseUseExplosion.rb:21:3403:21:3408 | call to use | UseUseExplosion.rb:21:3398:21:3408 | else ... |
+| UseUseExplosion.rb:21:3414:21:3424 | else ... | UseUseExplosion.rb:21:367:21:3428 | if ... |
+| UseUseExplosion.rb:21:3419:21:3424 | call to use | UseUseExplosion.rb:21:3414:21:3424 | else ... |
+| UseUseExplosion.rb:21:3430:21:3440 | else ... | UseUseExplosion.rb:21:346:21:3444 | if ... |
+| UseUseExplosion.rb:21:3435:21:3440 | call to use | UseUseExplosion.rb:21:3430:21:3440 | else ... |
+| UseUseExplosion.rb:21:3446:21:3456 | else ... | UseUseExplosion.rb:21:325:21:3460 | if ... |
+| UseUseExplosion.rb:21:3451:21:3456 | call to use | UseUseExplosion.rb:21:3446:21:3456 | else ... |
+| UseUseExplosion.rb:21:3462:21:3472 | else ... | UseUseExplosion.rb:21:304:21:3476 | if ... |
+| UseUseExplosion.rb:21:3467:21:3472 | call to use | UseUseExplosion.rb:21:3462:21:3472 | else ... |
+| UseUseExplosion.rb:21:3478:21:3488 | else ... | UseUseExplosion.rb:21:283:21:3492 | if ... |
+| UseUseExplosion.rb:21:3483:21:3488 | call to use | UseUseExplosion.rb:21:3478:21:3488 | else ... |
+| UseUseExplosion.rb:21:3494:21:3504 | else ... | UseUseExplosion.rb:21:262:21:3508 | if ... |
+| UseUseExplosion.rb:21:3499:21:3504 | call to use | UseUseExplosion.rb:21:3494:21:3504 | else ... |
+| UseUseExplosion.rb:21:3510:21:3520 | else ... | UseUseExplosion.rb:21:241:21:3524 | if ... |
+| UseUseExplosion.rb:21:3515:21:3520 | call to use | UseUseExplosion.rb:21:3510:21:3520 | else ... |
+| UseUseExplosion.rb:21:3526:21:3536 | else ... | UseUseExplosion.rb:21:220:21:3540 | if ... |
+| UseUseExplosion.rb:21:3531:21:3536 | call to use | UseUseExplosion.rb:21:3526:21:3536 | else ... |
+| UseUseExplosion.rb:21:3542:21:3552 | else ... | UseUseExplosion.rb:21:199:21:3556 | if ... |
+| UseUseExplosion.rb:21:3547:21:3552 | call to use | UseUseExplosion.rb:21:3542:21:3552 | else ... |
+| UseUseExplosion.rb:21:3558:21:3568 | else ... | UseUseExplosion.rb:21:178:21:3572 | if ... |
+| UseUseExplosion.rb:21:3563:21:3568 | call to use | UseUseExplosion.rb:21:3558:21:3568 | else ... |
+| UseUseExplosion.rb:21:3574:21:3584 | else ... | UseUseExplosion.rb:21:157:21:3588 | if ... |
+| UseUseExplosion.rb:21:3579:21:3584 | call to use | UseUseExplosion.rb:21:3574:21:3584 | else ... |
+| UseUseExplosion.rb:21:3590:21:3600 | else ... | UseUseExplosion.rb:21:136:21:3604 | if ... |
+| UseUseExplosion.rb:21:3595:21:3600 | call to use | UseUseExplosion.rb:21:3590:21:3600 | else ... |
+| UseUseExplosion.rb:21:3606:21:3616 | else ... | UseUseExplosion.rb:21:115:21:3620 | if ... |
+| UseUseExplosion.rb:21:3611:21:3616 | call to use | UseUseExplosion.rb:21:3606:21:3616 | else ... |
+| UseUseExplosion.rb:21:3622:21:3632 | else ... | UseUseExplosion.rb:21:94:21:3636 | if ... |
+| UseUseExplosion.rb:21:3627:21:3632 | call to use | UseUseExplosion.rb:21:3622:21:3632 | else ... |
+| UseUseExplosion.rb:21:3638:21:3648 | else ... | UseUseExplosion.rb:21:73:21:3652 | if ... |
+| UseUseExplosion.rb:21:3643:21:3648 | call to use | UseUseExplosion.rb:21:3638:21:3648 | else ... |
+| UseUseExplosion.rb:21:3654:21:3664 | else ... | UseUseExplosion.rb:21:52:21:3668 | if ... |
+| UseUseExplosion.rb:21:3659:21:3664 | call to use | UseUseExplosion.rb:21:3654:21:3664 | else ... |
+| UseUseExplosion.rb:21:3670:21:3680 | else ... | UseUseExplosion.rb:21:31:21:3684 | if ... |
+| UseUseExplosion.rb:21:3675:21:3680 | call to use | UseUseExplosion.rb:21:3670:21:3680 | else ... |
+| UseUseExplosion.rb:21:3686:21:3696 | else ... | UseUseExplosion.rb:21:9:21:3700 | if ... |
+| UseUseExplosion.rb:21:3691:21:3696 | call to use | UseUseExplosion.rb:21:3686:21:3696 | else ... |
+| UseUseExplosion.rb:24:5:25:7 | use | UseUseExplosion.rb:1:1:26:3 | C |
 | file://:0:0:0:0 | [summary] read: argument position 0.any element in Hash[] | file://:0:0:0:0 | [summary] read: argument position 0.any element.element 1 or unknown in Hash[] |
 | file://:0:0:0:0 | parameter position 0 of & | file://:0:0:0:0 | [summary] read: argument position 0.any element in & |
 | file://:0:0:0:0 | parameter position 0 of + | file://:0:0:0:0 | [summary] read: argument position 0.any element in + |
diff --git a/ruby/ql/test/library-tests/dataflow/local/UseUseExplosion.rb b/ruby/ql/test/library-tests/dataflow/local/UseUseExplosion.rb
new file mode 100644
index 00000000000..022ecae6eeb
--- /dev/null
+++ b/ruby/ql/test/library-tests/dataflow/local/UseUseExplosion.rb
@@ -0,0 +1,26 @@
+class C
+    # Should generate 100 + 100 local use-use flow steps for `x`, and not 100 * 100
+    #
+    # Generated by quick-evaling `gen/0` below:
+    #
+    # ```ql
+    # string gen(int depth) {
+    #   depth in [0 .. 100] and
+    #   (
+    #     if depth = 0
+    #     then result = ""
+    #     else result = "if (@prop > " + depth + ") then " + gen(depth - 1) + " else use(x) end"
+    #   )
+    # }
+    #
+    # string gen() { result = "x = 0\n" + gen(100) + "\n" + gen(100) }
+    # ```
+    def m()
+        x = 0
+        if (@prop > 100) then if (@prop > 99) then if (@prop > 98) then if (@prop > 97) then if (@prop > 96) then if (@prop > 95) then if (@prop > 94) then if (@prop > 93) then if (@prop > 92) then if (@prop > 91) then if (@prop > 90) then if (@prop > 89) then if (@prop > 88) then if (@prop > 87) then if (@prop > 86) then if (@prop > 85) then if (@prop > 84) then if (@prop > 83) then if (@prop > 82) then if (@prop > 81) then if (@prop > 80) then if (@prop > 79) then if (@prop > 78) then if (@prop > 77) then if (@prop > 76) then if (@prop > 75) then if (@prop > 74) then if (@prop > 73) then if (@prop > 72) then if (@prop > 71) then if (@prop > 70) then if (@prop > 69) then if (@prop > 68) then if (@prop > 67) then if (@prop > 66) then if (@prop > 65) then if (@prop > 64) then if (@prop > 63) then if (@prop > 62) then if (@prop > 61) then if (@prop > 60) then if (@prop > 59) then if (@prop > 58) then if (@prop > 57) then if (@prop > 56) then if (@prop > 55) then if (@prop > 54) then if (@prop > 53) then if (@prop > 52) then if (@prop > 51) then if (@prop > 50) then if (@prop > 49) then if (@prop > 48) then if (@prop > 47) then if (@prop > 46) then if (@prop > 45) then if (@prop > 44) then if (@prop > 43) then if (@prop > 42) then if (@prop > 41) then if (@prop > 40) then if (@prop > 39) then if (@prop > 38) then if (@prop > 37) then if (@prop > 36) then if (@prop > 35) then if (@prop > 34) then if (@prop > 33) then if (@prop > 32) then if (@prop > 31) then if (@prop > 30) then if (@prop > 29) then if (@prop > 28) then if (@prop > 27) then if (@prop > 26) then if (@prop > 25) then if (@prop > 24) then if (@prop > 23) then if (@prop > 22) then if (@prop > 21) then if (@prop > 20) then if (@prop > 19) then if (@prop > 18) then if (@prop > 17) then if (@prop > 16) then if (@prop > 15) then if (@prop > 14) then if (@prop > 13) then if (@prop > 12) then if (@prop > 11) then if (@prop > 10) then if (@prop > 9) then if (@prop > 8) then if (@prop > 7) then if (@prop > 6) then if (@prop > 5) then if (@prop > 4) then if (@prop > 3) then if (@prop > 2) then if (@prop > 1) then  else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end
+        if (@prop > 100) then if (@prop > 99) then if (@prop > 98) then if (@prop > 97) then if (@prop > 96) then if (@prop > 95) then if (@prop > 94) then if (@prop > 93) then if (@prop > 92) then if (@prop > 91) then if (@prop > 90) then if (@prop > 89) then if (@prop > 88) then if (@prop > 87) then if (@prop > 86) then if (@prop > 85) then if (@prop > 84) then if (@prop > 83) then if (@prop > 82) then if (@prop > 81) then if (@prop > 80) then if (@prop > 79) then if (@prop > 78) then if (@prop > 77) then if (@prop > 76) then if (@prop > 75) then if (@prop > 74) then if (@prop > 73) then if (@prop > 72) then if (@prop > 71) then if (@prop > 70) then if (@prop > 69) then if (@prop > 68) then if (@prop > 67) then if (@prop > 66) then if (@prop > 65) then if (@prop > 64) then if (@prop > 63) then if (@prop > 62) then if (@prop > 61) then if (@prop > 60) then if (@prop > 59) then if (@prop > 58) then if (@prop > 57) then if (@prop > 56) then if (@prop > 55) then if (@prop > 54) then if (@prop > 53) then if (@prop > 52) then if (@prop > 51) then if (@prop > 50) then if (@prop > 49) then if (@prop > 48) then if (@prop > 47) then if (@prop > 46) then if (@prop > 45) then if (@prop > 44) then if (@prop > 43) then if (@prop > 42) then if (@prop > 41) then if (@prop > 40) then if (@prop > 39) then if (@prop > 38) then if (@prop > 37) then if (@prop > 36) then if (@prop > 35) then if (@prop > 34) then if (@prop > 33) then if (@prop > 32) then if (@prop > 31) then if (@prop > 30) then if (@prop > 29) then if (@prop > 28) then if (@prop > 27) then if (@prop > 26) then if (@prop > 25) then if (@prop > 24) then if (@prop > 23) then if (@prop > 22) then if (@prop > 21) then if (@prop > 20) then if (@prop > 19) then if (@prop > 18) then if (@prop > 17) then if (@prop > 16) then if (@prop > 15) then if (@prop > 14) then if (@prop > 13) then if (@prop > 12) then if (@prop > 11) then if (@prop > 10) then if (@prop > 9) then if (@prop > 8) then if (@prop > 7) then if (@prop > 6) then if (@prop > 5) then if (@prop > 4) then if (@prop > 3) then if (@prop > 2) then if (@prop > 1) then  else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end else use(x) end
+    end
+
+    def use(i)
+    end
+end

From b3d838d678d49d60c6f9a3aa08ae09e17b30e628 Mon Sep 17 00:00:00 2001
From: Geoffrey White <40627776+geoffw0@users.noreply.github.com>
Date: Wed, 7 Dec 2022 14:45:36 +0000
Subject: [PATCH 1128/1420] C++: Define the sources more clearly and
 consistently (fixes performance issue).

---
 .../CWE/CWE-311/CleartextBufferWrite.ql       | 29 +++++++++++++++++--
 1 file changed, 26 insertions(+), 3 deletions(-)

diff --git a/cpp/ql/src/Security/CWE/CWE-311/CleartextBufferWrite.ql b/cpp/ql/src/Security/CWE/CWE-311/CleartextBufferWrite.ql
index ec78e6b63fb..d1f54ba0968 100644
--- a/cpp/ql/src/Security/CWE/CWE-311/CleartextBufferWrite.ql
+++ b/cpp/ql/src/Security/CWE/CWE-311/CleartextBufferWrite.ql
@@ -19,7 +19,30 @@ import semmle.code.cpp.ir.dataflow.TaintTracking
 import DataFlow::PathGraph
 
 /**
- * A taint flow configuration for flow from user input to a buffer write.
+ * A buffer write into a sensitive expression.
+ */
+class SensitiveBufferWrite extends Expr {
+  BufferWrite::BufferWrite write;
+
+  SensitiveBufferWrite() {
+    this = write and
+    write.getDest() instanceof SensitiveExpr
+  }
+
+  /**
+   * Gets a data source of this operation.
+   */
+  Expr getASource() { result = write.getASource() }
+
+  /**
+   * Gets the destination buffer of this operation.
+   */
+  Expr getDest() { result = write.getDest() }
+}
+
+/**
+ * A taint flow configuration for flow from user input to a buffer write
+ * into a sensitive expression.
  */
 class ToBufferConfiguration extends TaintTracking::Configuration {
   ToBufferConfiguration() { this = "ToBufferConfiguration" }
@@ -31,12 +54,12 @@ class ToBufferConfiguration extends TaintTracking::Configuration {
   }
 
   override predicate isSink(DataFlow::Node sink) {
-    exists(BufferWrite::BufferWrite w | w.getASource() = sink.asExpr())
+    exists(SensitiveBufferWrite w | w.getASource() = sink.asExpr())
   }
 }
 
 from
-  ToBufferConfiguration config, BufferWrite::BufferWrite w, DataFlow::PathNode sourceNode,
+  ToBufferConfiguration config, SensitiveBufferWrite w, DataFlow::PathNode sourceNode,
   DataFlow::PathNode sinkNode, FlowSource source, SensitiveExpr dest
 where
   config.hasFlowPath(sourceNode, sinkNode) and

From 4b8575bfc3ee6c15b5ee8fb050e91945442b28a5 Mon Sep 17 00:00:00 2001
From: Geoffrey White <40627776+geoffw0@users.noreply.github.com>
Date: Wed, 7 Dec 2022 15:35:45 +0000
Subject: [PATCH 1129/1420] C++: Simplify the query slightly.

---
 cpp/ql/src/Security/CWE/CWE-311/CleartextBufferWrite.ql | 9 ++++-----
 1 file changed, 4 insertions(+), 5 deletions(-)

diff --git a/cpp/ql/src/Security/CWE/CWE-311/CleartextBufferWrite.ql b/cpp/ql/src/Security/CWE/CWE-311/CleartextBufferWrite.ql
index d1f54ba0968..1c0320f2576 100644
--- a/cpp/ql/src/Security/CWE/CWE-311/CleartextBufferWrite.ql
+++ b/cpp/ql/src/Security/CWE/CWE-311/CleartextBufferWrite.ql
@@ -60,12 +60,11 @@ class ToBufferConfiguration extends TaintTracking::Configuration {
 
 from
   ToBufferConfiguration config, SensitiveBufferWrite w, DataFlow::PathNode sourceNode,
-  DataFlow::PathNode sinkNode, FlowSource source, SensitiveExpr dest
+  DataFlow::PathNode sinkNode, FlowSource source
 where
   config.hasFlowPath(sourceNode, sinkNode) and
   sourceNode.getNode() = source and
-  w.getASource() = sinkNode.getNode().asExpr() and
-  dest = w.getDest()
+  w.getASource() = sinkNode.getNode().asExpr()
 select w, sourceNode, sinkNode,
-  "This write into buffer '" + dest.toString() + "' may contain unencrypted data from $@.", source,
-  "user input (" + source.getSourceType() + ")"
+  "This write into buffer '" + w.getDest().toString() + "' may contain unencrypted data from $@.",
+  source, "user input (" + source.getSourceType() + ")"

From 38b2f537d4b207ed84bc138ee777981c3f6f4d49 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Alvaro=20Mu=C3=B1oz?= <pwntester@github.com>
Date: Wed, 7 Dec 2022 16:39:07 +0100
Subject: [PATCH 1130/1420] Use ReplyCall.super syntax instead of
 this.(ReplyCall)

---
 javascript/ql/lib/semmle/javascript/frameworks/Spife.qll | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/javascript/ql/lib/semmle/javascript/frameworks/Spife.qll b/javascript/ql/lib/semmle/javascript/frameworks/Spife.qll
index 48ef92a0e0b..9531b03d6d1 100644
--- a/javascript/ql/lib/semmle/javascript/frameworks/Spife.qll
+++ b/javascript/ql/lib/semmle/javascript/frameworks/Spife.qll
@@ -285,7 +285,7 @@ module Spife {
       result = this.getAHeaderSource().getAPropertyWrite().getPropertyNameExpr().flow()
     }
 
-    override RouteHandler getRouteHandler() { result = this.(ReplyCall).getRouteHandler() }
+    override RouteHandler getRouteHandler() { result = ReplyCall.super.getRouteHandler() }
   }
 
   /**
@@ -313,7 +313,7 @@ module Spife {
 
     override DataFlow::Node getValueArgument() { result = super.getArgument(2) }
 
-    override RouteHandler getRouteHandler() { result = this.(ReplyCall).getRouteHandler() }
+    override RouteHandler getRouteHandler() { result = ReplyCall.super.getRouteHandler() }
   }
 
   /**
@@ -407,6 +407,6 @@ module Spife {
 
     override DataFlow::Node getUrlArgument() { result = this.getAnArgument() }
 
-    override RouteHandler getRouteHandler() { result = this.(ReplyCall).getRouteHandler() }
+    override RouteHandler getRouteHandler() { result = ReplyCall.super.getRouteHandler() }
   }
 }

From 80cd994e362202269be8111255a6f20c9c545819 Mon Sep 17 00:00:00 2001
From: Geoffrey White <40627776+geoffw0@users.noreply.github.com>
Date: Mon, 7 Nov 2022 10:32:24 +0000
Subject: [PATCH 1131/1420] Swift: Add taint reach to SummaryStats.ql.

---
 swift/ql/src/queries/Summary/SummaryStats.ql | 45 +++++++++++++++-----
 1 file changed, 34 insertions(+), 11 deletions(-)

diff --git a/swift/ql/src/queries/Summary/SummaryStats.ql b/swift/ql/src/queries/Summary/SummaryStats.ql
index 0408bead921..e313a96ad29 100644
--- a/swift/ql/src/queries/Summary/SummaryStats.ql
+++ b/swift/ql/src/queries/Summary/SummaryStats.ql
@@ -9,19 +9,42 @@
 import swift
 import codeql.swift.dataflow.FlowSources
 import codeql.swift.security.SensitiveExprs
+import codeql.swift.dataflow.DataFlow
+import codeql.swift.dataflow.TaintTracking
 
-predicate statistic(string what, int value) {
-  what = "Files" and value = count(File f)
-  or
-  what = "Expressions" and value = count(Expr e | not e.getFile() instanceof UnknownFile)
-  or
-  what = "Local flow sources" and value = count(LocalFlowSource s)
-  or
-  what = "Remote flow sources" and value = count(RemoteFlowSource s)
-  or
-  what = "Sensitive expressions" and value = count(SensitiveExpr e)
+/**
+ * A taint configuration for tainted data reaching any node.
+ */
+class TaintReachConfig extends TaintTracking::Configuration {
+  TaintReachConfig() { this = "TaintReachConfig" }
+
+  override predicate isSource(DataFlow::Node node) { node instanceof FlowSource }
+
+  override predicate isSink(DataFlow::Node node) { any() }
 }
 
-from string what, int value
+float taintReach() {
+  exists(TaintReachConfig config, int tainted, int total |
+    tainted = count(DataFlow::Node n | config.hasFlow(_, n)) and
+    total = count(DataFlow::Node n) and
+    result = (tainted * 1000000.0) / total
+  )
+}
+
+predicate statistic(string what, string value) {
+  what = "Files" and value = count(File f).toString()
+  or
+  what = "Expressions" and value = count(Expr e | not e.getFile() instanceof UnknownFile).toString()
+  or
+  what = "Local flow sources" and value = count(LocalFlowSource s).toString()
+  or
+  what = "Remote flow sources" and value = count(RemoteFlowSource s).toString()
+  or
+  what = "Sensitive expressions" and value = count(SensitiveExpr e).toString()
+  or
+  what = "Taint reach (per million nodes)" and value = taintReach().toString()
+}
+
+from string what, string value
 where statistic(what, value)
 select what, value

From a8b8b54f8de7891673bab4407ac561f93e94475c Mon Sep 17 00:00:00 2001
From: Geoffrey White <40627776+geoffw0@users.noreply.github.com>
Date: Wed, 7 Dec 2022 16:44:33 +0000
Subject: [PATCH 1132/1420] Update
 cpp/ql/src/Security/CWE/CWE-311/CleartextBufferWrite.ql

Co-authored-by: Mathias Vorreiter Pedersen <mathiasvp@github.com>
---
 .../Security/CWE/CWE-311/CleartextBufferWrite.ql    | 13 ++++---------
 1 file changed, 4 insertions(+), 9 deletions(-)

diff --git a/cpp/ql/src/Security/CWE/CWE-311/CleartextBufferWrite.ql b/cpp/ql/src/Security/CWE/CWE-311/CleartextBufferWrite.ql
index 1c0320f2576..6858dffbfa8 100644
--- a/cpp/ql/src/Security/CWE/CWE-311/CleartextBufferWrite.ql
+++ b/cpp/ql/src/Security/CWE/CWE-311/CleartextBufferWrite.ql
@@ -21,23 +21,18 @@ import DataFlow::PathGraph
 /**
  * A buffer write into a sensitive expression.
  */
-class SensitiveBufferWrite extends Expr {
-  BufferWrite::BufferWrite write;
-
-  SensitiveBufferWrite() {
-    this = write and
-    write.getDest() instanceof SensitiveExpr
-  }
+class SensitiveBufferWrite extends Expr instanceof BufferWrite::BufferWrite {
+  SensitiveBufferWrite() { super.getDest() instanceof SensitiveExpr }
 
   /**
    * Gets a data source of this operation.
    */
-  Expr getASource() { result = write.getASource() }
+  Expr getASource() { result = super.getASource() }
 
   /**
    * Gets the destination buffer of this operation.
    */
-  Expr getDest() { result = write.getDest() }
+  Expr getDest() { result = super.getDest() }
 }
 
 /**

From e6c3bcec63788a71da778d2432a4804ae50067a2 Mon Sep 17 00:00:00 2001
From: Ian Lynagh <igfoo@github.com>
Date: Wed, 7 Dec 2022 17:14:51 +0000
Subject: [PATCH 1133/1420] Java/Kotlin: Update the diagnostic severity
 documentation

---
 java/ql/lib/semmle/code/java/Diagnostics.qll | 14 ++++++++++++--
 1 file changed, 12 insertions(+), 2 deletions(-)

diff --git a/java/ql/lib/semmle/code/java/Diagnostics.qll b/java/ql/lib/semmle/code/java/Diagnostics.qll
index 086998691bd..e6e16b4e07c 100644
--- a/java/ql/lib/semmle/code/java/Diagnostics.qll
+++ b/java/ql/lib/semmle/code/java/Diagnostics.qll
@@ -15,8 +15,18 @@ class Diagnostic extends @diagnostic {
   string getGeneratedBy() { diagnostics(this, result, _, _, _, _, _) }
 
   /**
-   * Gets the severity of the message, on a range from 1 to 5: 1=remark,
-   * 2=warning, 3=discretionary error, 4=error, 5=catastrophic error.
+   * Gets the severity of the message.
+   *
+   * For Java, this ranges from 1 to 8:
+   * 1=warning(low)
+   * 2=warning(normal)
+   * 3=warning(high)
+   * 4=error(low)    Minor extractor errors, with minimal impact on analysis
+   * 5=error(normal) Most extractor errors, with local impact on analysis
+   * 6=error(high)   Errors from the frontend
+   * 7=error(severe) Severe extractor errors affecting a single source file
+   * 8=error(global) Severe extractor errors likely to affect multiple source files
+   * For Kotlin, only the "normal" warning and error severities are used.
    */
   int getSeverity() { diagnostics(this, _, result, _, _, _, _) }
 

From 627162b343d05298375586d50dfa9bb586ce2348 Mon Sep 17 00:00:00 2001
From: Geoffrey White <40627776+geoffw0@users.noreply.github.com>
Date: Wed, 7 Dec 2022 17:32:36 +0000
Subject: [PATCH 1134/1420] C++: Fix cpp/offset-use-before-range-check
 performance.

---
 .../Best Practices/Likely Errors/OffsetUseBeforeRangeCheck.ql   | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/cpp/ql/src/Best Practices/Likely Errors/OffsetUseBeforeRangeCheck.ql b/cpp/ql/src/Best Practices/Likely Errors/OffsetUseBeforeRangeCheck.ql
index c8bf3842773..13b89a55d34 100644
--- a/cpp/ql/src/Best Practices/Likely Errors/OffsetUseBeforeRangeCheck.ql	
+++ b/cpp/ql/src/Best Practices/Likely Errors/OffsetUseBeforeRangeCheck.ql	
@@ -15,6 +15,7 @@
 
 import cpp
 
+bindingset[v, before]
 predicate beforeArrayAccess(Variable v, ArrayExpr access, Expr before) {
   exists(LogicalAndExpr andexpr |
     access.getArrayOffset() = v.getAnAccess() and
@@ -23,6 +24,7 @@ predicate beforeArrayAccess(Variable v, ArrayExpr access, Expr before) {
   )
 }
 
+bindingset[v, after]
 predicate afterArrayAccess(Variable v, ArrayExpr access, Expr after) {
   exists(LogicalAndExpr andexpr |
     access.getArrayOffset() = v.getAnAccess() and

From 1d4631e231dd93c73f351293cb461b357400b9d3 Mon Sep 17 00:00:00 2001
From: Geoffrey White <40627776+geoffw0@users.noreply.github.com>
Date: Wed, 7 Dec 2022 18:00:38 +0000
Subject: [PATCH 1135/1420] C++: Better solution.

---
 .../Best Practices/Likely Errors/OffsetUseBeforeRangeCheck.ql | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/cpp/ql/src/Best Practices/Likely Errors/OffsetUseBeforeRangeCheck.ql b/cpp/ql/src/Best Practices/Likely Errors/OffsetUseBeforeRangeCheck.ql
index 13b89a55d34..b0ce7fcce6d 100644
--- a/cpp/ql/src/Best Practices/Likely Errors/OffsetUseBeforeRangeCheck.ql	
+++ b/cpp/ql/src/Best Practices/Likely Errors/OffsetUseBeforeRangeCheck.ql	
@@ -15,7 +15,7 @@
 
 import cpp
 
-bindingset[v, before]
+pragma[nomagic]
 predicate beforeArrayAccess(Variable v, ArrayExpr access, Expr before) {
   exists(LogicalAndExpr andexpr |
     access.getArrayOffset() = v.getAnAccess() and
@@ -24,7 +24,7 @@ predicate beforeArrayAccess(Variable v, ArrayExpr access, Expr before) {
   )
 }
 
-bindingset[v, after]
+pragma[nomagic]
 predicate afterArrayAccess(Variable v, ArrayExpr access, Expr after) {
   exists(LogicalAndExpr andexpr |
     access.getArrayOffset() = v.getAnAccess() and

From 54c12cd715230ca6936cc483fe4a4fcb06403f34 Mon Sep 17 00:00:00 2001
From: Mathias Vorreiter Pedersen <mathiasvp@github.com>
Date: Wed, 7 Dec 2022 18:21:52 +0000
Subject: [PATCH 1136/1420] C++: Reintroduce 'StdBasicStringIterator'.

---
 .../cpp/models/implementations/StdString.qll   | 18 ++++++++++++++++++
 1 file changed, 18 insertions(+)

diff --git a/cpp/ql/lib/semmle/code/cpp/models/implementations/StdString.qll b/cpp/ql/lib/semmle/code/cpp/models/implementations/StdString.qll
index cf3ecb5e892..b1534a585a1 100644
--- a/cpp/ql/lib/semmle/code/cpp/models/implementations/StdString.qll
+++ b/cpp/ql/lib/semmle/code/cpp/models/implementations/StdString.qll
@@ -15,6 +15,24 @@ private class StdBasicString extends ClassTemplateInstantiation {
   StdBasicString() { this.hasQualifiedName(["std", "bsl"], "basic_string") }
 }
 
+/**
+ * The `std::basic_string::iterator` declaration.
+ *
+ * Intuitively, this class shouldn't be necessary as it's already captured
+ * by the `StdIterator` class. However, this class ensures that the typedef inside the
+ * body of the `std::string` class is also seen as an iterator.
+ *
+ * Eventually, we should be consistent about which of the following should be recognized as iterators:
+ * 1. The typedef type.
+ * 2. The template class of the resolved type.
+ * 3. Any instantiation of the resolved type.
+ */
+private class StdBasicStringIterator extends Iterator, Type {
+  StdBasicStringIterator() {
+    this.getEnclosingElement() instanceof StdBasicString and this.hasName("iterator")
+  }
+}
+
 /**
  * A `std::string` function for which taint should be propagated.
  */

From 6267da44ae6b5cbfada9835bc2e49db4d16afbf5 Mon Sep 17 00:00:00 2001
From: Ian Lynagh <igfoo@github.com>
Date: Wed, 7 Dec 2022 18:33:35 +0000
Subject: [PATCH 1137/1420] Kotlin: Improve diagnostic limit message

The message saying that the limit was exceeded is now given at the same
severity as the original message.
---
 .../src/main/kotlin/utils/Logger.kt           | 27 ++++++++++++++-----
 1 file changed, 20 insertions(+), 7 deletions(-)

diff --git a/java/kotlin-extractor/src/main/kotlin/utils/Logger.kt b/java/kotlin-extractor/src/main/kotlin/utils/Logger.kt
index 36ebda9dd1c..3b66e527429 100644
--- a/java/kotlin-extractor/src/main/kotlin/utils/Logger.kt
+++ b/java/kotlin-extractor/src/main/kotlin/utils/Logger.kt
@@ -10,7 +10,7 @@ import java.util.Stack
 import org.jetbrains.kotlin.ir.IrElement
 
 class LogCounter() {
-    public val diagnosticCounts = mutableMapOf<String, Int>()
+    public val diagnosticInfo = mutableMapOf<String, Pair<Severity, Int>>()
     public val diagnosticLimit: Int
     init {
         diagnosticLimit = System.getenv("CODEQL_EXTRACTOR_KOTLIN_DIAGNOSTIC_LIMIT")?.toIntOrNull() ?: 100
@@ -114,12 +114,23 @@ open class LoggerBase(val logCounter: LogCounter) {
             if(diagnosticLoc == null) {
                 "    Missing caller information.\n"
             } else {
-                val count = logCounter.diagnosticCounts.getOrDefault(diagnosticLoc, 0) + 1
-                logCounter.diagnosticCounts[diagnosticLoc] = count
+                val oldInfo = logCounter.diagnosticInfo.getOrDefault(diagnosticLoc, Pair(severity, 0))
+                if(severity != oldInfo.first) {
+                    // We don't want to get in a loop, so just emit this
+                    // directly without going through the diagnostic
+                    // counting machinery
+                    if (verbosity >= 1) {
+                        val message = "Severity mismatch ($severity vs ${oldInfo.first}) at $diagnosticLoc"
+                        emitDiagnostic(tw, Severity.Error, "Inconsistency", message, message)
+                    }
+                }
+                val newCount = oldInfo.second + 1
+                val newInfo = Pair(severity, newCount)
+                logCounter.diagnosticInfo[diagnosticLoc] = newInfo
                 when {
                     logCounter.diagnosticLimit <= 0 -> ""
-                    count == logCounter.diagnosticLimit -> "    Limit reached for diagnostics from $diagnosticLoc.\n"
-                    count > logCounter.diagnosticLimit -> return
+                    newCount == logCounter.diagnosticLimit -> "    Limit reached for diagnostics from $diagnosticLoc.\n"
+                    newCount > logCounter.diagnosticLimit -> return
                     else -> ""
                 }
             }
@@ -189,14 +200,16 @@ open class LoggerBase(val logCounter: LogCounter) {
     }
 
     fun printLimitedDiagnosticCounts(tw: TrapWriter) {
-        for((caller, count) in logCounter.diagnosticCounts) {
+        for((caller, info) in logCounter.diagnosticInfo) {
+            val severity = info.first
+            val count = info.second
             if(count >= logCounter.diagnosticLimit) {
                 // We don't know if this location relates to an error
                 // or a warning, so we just declare hitting the limit
                 // to be an error regardless.
                 val message = "Total of $count diagnostics (reached limit of ${logCounter.diagnosticLimit}) from $caller."
                 if (verbosity >= 1) {
-                    emitDiagnostic(tw, Severity.Error, "Limit", message, message)
+                    emitDiagnostic(tw, severity, "Limit", message, message)
                 }
             }
         }

From 9702ea02fb9d8f6d3cb026c5bc5c3cbb196368de Mon Sep 17 00:00:00 2001
From: "github-actions[bot]"
 <41898282+github-actions[bot]@users.noreply.github.com>
Date: Wed, 7 Dec 2022 20:01:33 +0000
Subject: [PATCH 1138/1420] JS: Bump patch version of ML-powered library and
 query packs

---
 .../ql/experimental/adaptivethreatmodeling/lib/qlpack.yml       | 2 +-
 .../ql/experimental/adaptivethreatmodeling/src/qlpack.yml       | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/javascript/ql/experimental/adaptivethreatmodeling/lib/qlpack.yml b/javascript/ql/experimental/adaptivethreatmodeling/lib/qlpack.yml
index fb53f54ded7..22249f4b960 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/lib/qlpack.yml
+++ b/javascript/ql/experimental/adaptivethreatmodeling/lib/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/javascript-experimental-atm-lib
-version: 0.4.2
+version: 0.4.3
 extractor: javascript
 library: true
 groups:
diff --git a/javascript/ql/experimental/adaptivethreatmodeling/src/qlpack.yml b/javascript/ql/experimental/adaptivethreatmodeling/src/qlpack.yml
index 725beadcb0e..875283e0b63 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/src/qlpack.yml
+++ b/javascript/ql/experimental/adaptivethreatmodeling/src/qlpack.yml
@@ -1,6 +1,6 @@
 name: codeql/javascript-experimental-atm-queries
 language: javascript
-version: 0.4.2
+version: 0.4.3
 suites: codeql-suites
 defaultSuiteFile: codeql-suites/javascript-atm-code-scanning.qls
 groups:

From d577eeeea8233b47c70ba36fd9b3c977a224f0c9 Mon Sep 17 00:00:00 2001
From: "github-actions[bot]"
 <41898282+github-actions[bot]@users.noreply.github.com>
Date: Wed, 7 Dec 2022 20:05:30 +0000
Subject: [PATCH 1139/1420] JS: Bump version of ML-powered library and query
 packs to 0.4.4

---
 .../ql/experimental/adaptivethreatmodeling/lib/qlpack.yml       | 2 +-
 .../ql/experimental/adaptivethreatmodeling/src/qlpack.yml       | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/javascript/ql/experimental/adaptivethreatmodeling/lib/qlpack.yml b/javascript/ql/experimental/adaptivethreatmodeling/lib/qlpack.yml
index 22249f4b960..3cf9c6bb727 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/lib/qlpack.yml
+++ b/javascript/ql/experimental/adaptivethreatmodeling/lib/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/javascript-experimental-atm-lib
-version: 0.4.3
+version: 0.4.4
 extractor: javascript
 library: true
 groups:
diff --git a/javascript/ql/experimental/adaptivethreatmodeling/src/qlpack.yml b/javascript/ql/experimental/adaptivethreatmodeling/src/qlpack.yml
index 875283e0b63..bded7e9f770 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/src/qlpack.yml
+++ b/javascript/ql/experimental/adaptivethreatmodeling/src/qlpack.yml
@@ -1,6 +1,6 @@
 name: codeql/javascript-experimental-atm-queries
 language: javascript
-version: 0.4.3
+version: 0.4.4
 suites: codeql-suites
 defaultSuiteFile: codeql-suites/javascript-atm-code-scanning.qls
 groups:

From aa7e6d78117d4b5038d269fb4875f3b65db87a6c Mon Sep 17 00:00:00 2001
From: Jami Cogswell <jcogs33@Jamis-MacBook-Pro.local>
Date: Wed, 7 Dec 2022 17:17:35 -0500
Subject: [PATCH 1140/1420] Java: add negative numbers

---
 .../dataflow/internal/FlowSummaryImpl.qll     | 23 +++++-
 .../go/dataflow/internal/FlowSummaryImpl.qll  | 23 +++++-
 .../dataflow/internal/FlowSummaryImpl.qll     | 23 +++++-
 .../Summaries/GeneratedVsManualCoverage.ql    | 79 +++++++++++++------
 .../dataflow/new/internal/FlowSummaryImpl.qll | 23 +++++-
 .../dataflow/internal/FlowSummaryImpl.qll     | 23 +++++-
 .../dataflow/internal/FlowSummaryImpl.qll     | 23 +++++-
 7 files changed, 179 insertions(+), 38 deletions(-)

diff --git a/csharp/ql/lib/semmle/code/csharp/dataflow/internal/FlowSummaryImpl.qll b/csharp/ql/lib/semmle/code/csharp/dataflow/internal/FlowSummaryImpl.qll
index 8ef3bea0408..5c9e6827f7e 100644
--- a/csharp/ql/lib/semmle/code/csharp/dataflow/internal/FlowSummaryImpl.qll
+++ b/csharp/ql/lib/semmle/code/csharp/dataflow/internal/FlowSummaryImpl.qll
@@ -261,9 +261,28 @@ module Public {
     NegativeSummarizedCallable() { negativeSummaryElement(this, _) }
 
     /**
-     *  Holds if the negative summary is auto generated.
+     *  Holds if the negative summary is auto generated and not manually generated.
      */
-    predicate isAutoGenerated() { negativeSummaryElement(this, true) }
+    predicate isAutoGenerated() {
+      negativeSummaryElement(this, true) and
+      not negativeSummaryElement(this, false)
+    } // ! okay to adjust this to "and not manually generated"? Will that mess up anything that currently uses this?
+
+    /**
+     * Holds if the summary is manually generated and not auto generated.
+     */
+    predicate isManuallyGenerated() {
+      negativeSummaryElement(this, false) and
+      not negativeSummaryElement(this, true)
+    }
+
+    /**
+     * Holds if the summary is both auto generated and manually generated.
+     */
+    predicate isBothAutoAndManuallyGenerated() {
+      negativeSummaryElement(this, true) and
+      negativeSummaryElement(this, false)
+    }
   }
 }
 
diff --git a/go/ql/lib/semmle/go/dataflow/internal/FlowSummaryImpl.qll b/go/ql/lib/semmle/go/dataflow/internal/FlowSummaryImpl.qll
index 8ef3bea0408..5c9e6827f7e 100644
--- a/go/ql/lib/semmle/go/dataflow/internal/FlowSummaryImpl.qll
+++ b/go/ql/lib/semmle/go/dataflow/internal/FlowSummaryImpl.qll
@@ -261,9 +261,28 @@ module Public {
     NegativeSummarizedCallable() { negativeSummaryElement(this, _) }
 
     /**
-     *  Holds if the negative summary is auto generated.
+     *  Holds if the negative summary is auto generated and not manually generated.
      */
-    predicate isAutoGenerated() { negativeSummaryElement(this, true) }
+    predicate isAutoGenerated() {
+      negativeSummaryElement(this, true) and
+      not negativeSummaryElement(this, false)
+    } // ! okay to adjust this to "and not manually generated"? Will that mess up anything that currently uses this?
+
+    /**
+     * Holds if the summary is manually generated and not auto generated.
+     */
+    predicate isManuallyGenerated() {
+      negativeSummaryElement(this, false) and
+      not negativeSummaryElement(this, true)
+    }
+
+    /**
+     * Holds if the summary is both auto generated and manually generated.
+     */
+    predicate isBothAutoAndManuallyGenerated() {
+      negativeSummaryElement(this, true) and
+      negativeSummaryElement(this, false)
+    }
   }
 }
 
diff --git a/java/ql/lib/semmle/code/java/dataflow/internal/FlowSummaryImpl.qll b/java/ql/lib/semmle/code/java/dataflow/internal/FlowSummaryImpl.qll
index 8ef3bea0408..5c9e6827f7e 100644
--- a/java/ql/lib/semmle/code/java/dataflow/internal/FlowSummaryImpl.qll
+++ b/java/ql/lib/semmle/code/java/dataflow/internal/FlowSummaryImpl.qll
@@ -261,9 +261,28 @@ module Public {
     NegativeSummarizedCallable() { negativeSummaryElement(this, _) }
 
     /**
-     *  Holds if the negative summary is auto generated.
+     *  Holds if the negative summary is auto generated and not manually generated.
      */
-    predicate isAutoGenerated() { negativeSummaryElement(this, true) }
+    predicate isAutoGenerated() {
+      negativeSummaryElement(this, true) and
+      not negativeSummaryElement(this, false)
+    } // ! okay to adjust this to "and not manually generated"? Will that mess up anything that currently uses this?
+
+    /**
+     * Holds if the summary is manually generated and not auto generated.
+     */
+    predicate isManuallyGenerated() {
+      negativeSummaryElement(this, false) and
+      not negativeSummaryElement(this, true)
+    }
+
+    /**
+     * Holds if the summary is both auto generated and manually generated.
+     */
+    predicate isBothAutoAndManuallyGenerated() {
+      negativeSummaryElement(this, true) and
+      negativeSummaryElement(this, false)
+    }
   }
 }
 
diff --git a/java/ql/src/Metrics/Summaries/GeneratedVsManualCoverage.ql b/java/ql/src/Metrics/Summaries/GeneratedVsManualCoverage.ql
index f8f8cd8a161..c460bbcea77 100644
--- a/java/ql/src/Metrics/Summaries/GeneratedVsManualCoverage.ql
+++ b/java/ql/src/Metrics/Summaries/GeneratedVsManualCoverage.ql
@@ -9,6 +9,7 @@
 //import java // not needed I guess
 import semmle.code.java.dataflow.FlowSummary // for SummarizedCallable
 import utils.modelgenerator.internal.CaptureModels // for DataFlowTargetApi
+import semmle.code.java.dataflow.internal.FlowSummaryImpl as FlowSummaryImpl // for NegativeSummarizedCallable
 
 // ! improve QLDoc?
 /**
@@ -19,7 +20,10 @@ import utils.modelgenerator.internal.CaptureModels // for DataFlowTargetApi
 class MadModeledCallable extends SummarizedCallableBase {
   // ! better name for this class?
   MadModeledCallable() {
-    this instanceof SummarizedCallable and
+    (
+      this instanceof SummarizedCallable or
+      this instanceof FlowSummaryImpl::Public::NegativeSummarizedCallable
+    ) and
     exists(DataFlowTargetApi dataFlowTargApi |
       this.asCallable() = dataFlowTargApi and
       not exists(FunctionalExpr funcExpr | dataFlowTargApi = funcExpr.asMethod()) // ! remove this if DataFlowTargetApi itself is adjusted to exclude FunctionalExpr (see static-team slack thread)
@@ -28,29 +32,48 @@ class MadModeledCallable extends SummarizedCallableBase {
 }
 
 // ! move to other file
+// ! separate this into pos and neg predicates instead of using `posOrNeg` flag?
 /**
  * Returns the number of APIs with MaD models
  * for a given package and provenance.
  */
-float getNumMadModels(string package, string provenance) {
+float getNumMadModels(string package, string provenance, string posOrNeg) {
   exists(MadModeledCallable mc |
     package = mc.asCallable().getDeclaringType().getPackage().toString() and
-    provenance in ["generated", "manual", "both"]
+    provenance in ["generated", "manual", "both"] and
+    posOrNeg in ["positive", "negative"]
   |
-    result =
-      count(MadModeledCallable c |
-        package = c.asCallable().getDeclaringType().getPackage().toString() and
-        (
-          c.(SummarizedCallable).isAutoGenerated() and // generated and NOT manual = "auto-only"
-          provenance = "generated"
-          or
-          c.(SummarizedCallable).isManuallyGenerated() and // manual and NOT generated = "manual-only"
-          provenance = "manual"
-          or
-          c.(SummarizedCallable).isBothAutoAndManuallyGenerated() and // BOTH generated and manual = "both"
-          provenance = "both"
+    if posOrNeg = "positive"
+    then
+      result =
+        count(MadModeledCallable c |
+          package = c.asCallable().getDeclaringType().getPackage().toString() and
+          (
+            c.(SummarizedCallable).isAutoGenerated() and // generated and NOT manual = "auto-only"
+            provenance = "generated"
+            or
+            c.(SummarizedCallable).isManuallyGenerated() and // manual and NOT generated = "manual-only"
+            provenance = "manual"
+            or
+            c.(SummarizedCallable).isBothAutoAndManuallyGenerated() and // BOTH generated and manual = "both"
+            provenance = "both"
+          )
+        )
+    else
+      result =
+        count(MadModeledCallable c |
+          package = c.asCallable().getDeclaringType().getPackage().toString() and
+          (
+            c.(FlowSummaryImpl::Public::NegativeSummarizedCallable).isAutoGenerated() and // generated and NOT manual = "auto-only"
+            provenance = "generated"
+            or
+            c.(FlowSummaryImpl::Public::NegativeSummarizedCallable).isManuallyGenerated() and // manual and NOT generated = "manual-only"
+            provenance = "manual"
+            or
+            c.(FlowSummaryImpl::Public::NegativeSummarizedCallable).isBothAutoAndManuallyGenerated() and // BOTH generated and manual = "both"
+            provenance = "both"
+          )
         )
-      )
   )
 }
 
@@ -87,14 +110,18 @@ float getNumApisWithoutMadModel(string package) {
  */
 
 from
-  string package, float generated, float manual, float both, float notModeled, float all,
-  float metric1, float metric2
+  string package, float generatedPos, float manualPos, float bothPos, float generatedNeg,
+  float manualNeg, float bothNeg, float notModeled, float all, float metric1, float metric2
 where
-  generated = getNumMadModels(package, "generated") and
-  manual = getNumMadModels(package, "manual") and
-  both = getNumMadModels(package, "both") and
-  notModeled = getNumApisWithoutMadModel(package) and // ! better name for this?, "none" is a reserved keyword :(
-  all = generated + manual + both + notModeled and
-  metric1 = (both / (both + manual)) and
-  metric2 = (generated + both + manual) / all
-select package, generated, manual, both, notModeled, all, metric1, metric2 order by package
+  generatedPos = getNumMadModels(package, "generated", "positive") and
+  manualPos = getNumMadModels(package, "manual", "positive") and
+  bothPos = getNumMadModels(package, "both", "positive") and
+  generatedNeg = getNumMadModels(package, "generated", "negative") and
+  manualNeg = getNumMadModels(package, "manual", "negative") and
+  bothNeg = getNumMadModels(package, "both", "negative") and
+  notModeled = getNumApisWithoutMadModel(package) and
+  all = generatedPos + manualPos + bothPos + generatedNeg + manualNeg + bothNeg + notModeled and
+  metric1 = (bothPos / (bothPos + manualPos)) and // ! I believe this metric was intended to be only on the positive ones?
+  metric2 = (generatedPos + generatedNeg + bothPos + bothNeg + manualPos + manualNeg) / all
+select package, generatedPos, manualPos, bothPos, generatedNeg, manualNeg, bothNeg, notModeled, all,
+  metric1, metric2 order by package
diff --git a/python/ql/lib/semmle/python/dataflow/new/internal/FlowSummaryImpl.qll b/python/ql/lib/semmle/python/dataflow/new/internal/FlowSummaryImpl.qll
index 8ef3bea0408..5c9e6827f7e 100644
--- a/python/ql/lib/semmle/python/dataflow/new/internal/FlowSummaryImpl.qll
+++ b/python/ql/lib/semmle/python/dataflow/new/internal/FlowSummaryImpl.qll
@@ -261,9 +261,28 @@ module Public {
     NegativeSummarizedCallable() { negativeSummaryElement(this, _) }
 
     /**
-     *  Holds if the negative summary is auto generated.
+     *  Holds if the negative summary is auto generated and not manually generated.
      */
-    predicate isAutoGenerated() { negativeSummaryElement(this, true) }
+    predicate isAutoGenerated() {
+      negativeSummaryElement(this, true) and
+      not negativeSummaryElement(this, false)
+    } // ! okay to adjust this to "and not manually generated"? Will that mess up anything that currently uses this?
+
+    /**
+     * Holds if the summary is manually generated and not auto generated.
+     */
+    predicate isManuallyGenerated() {
+      negativeSummaryElement(this, false) and
+      not negativeSummaryElement(this, true)
+    }
+
+    /**
+     * Holds if the summary is both auto generated and manually generated.
+     */
+    predicate isBothAutoAndManuallyGenerated() {
+      negativeSummaryElement(this, true) and
+      negativeSummaryElement(this, false)
+    }
   }
 }
 
diff --git a/ruby/ql/lib/codeql/ruby/dataflow/internal/FlowSummaryImpl.qll b/ruby/ql/lib/codeql/ruby/dataflow/internal/FlowSummaryImpl.qll
index 8ef3bea0408..5c9e6827f7e 100644
--- a/ruby/ql/lib/codeql/ruby/dataflow/internal/FlowSummaryImpl.qll
+++ b/ruby/ql/lib/codeql/ruby/dataflow/internal/FlowSummaryImpl.qll
@@ -261,9 +261,28 @@ module Public {
     NegativeSummarizedCallable() { negativeSummaryElement(this, _) }
 
     /**
-     *  Holds if the negative summary is auto generated.
+     *  Holds if the negative summary is auto generated and not manually generated.
      */
-    predicate isAutoGenerated() { negativeSummaryElement(this, true) }
+    predicate isAutoGenerated() {
+      negativeSummaryElement(this, true) and
+      not negativeSummaryElement(this, false)
+    } // ! okay to adjust this to "and not manually generated"? Will that mess up anything that currently uses this?
+
+    /**
+     * Holds if the summary is manually generated and not auto generated.
+     */
+    predicate isManuallyGenerated() {
+      negativeSummaryElement(this, false) and
+      not negativeSummaryElement(this, true)
+    }
+
+    /**
+     * Holds if the summary is both auto generated and manually generated.
+     */
+    predicate isBothAutoAndManuallyGenerated() {
+      negativeSummaryElement(this, true) and
+      negativeSummaryElement(this, false)
+    }
   }
 }
 
diff --git a/swift/ql/lib/codeql/swift/dataflow/internal/FlowSummaryImpl.qll b/swift/ql/lib/codeql/swift/dataflow/internal/FlowSummaryImpl.qll
index 8ef3bea0408..5c9e6827f7e 100644
--- a/swift/ql/lib/codeql/swift/dataflow/internal/FlowSummaryImpl.qll
+++ b/swift/ql/lib/codeql/swift/dataflow/internal/FlowSummaryImpl.qll
@@ -261,9 +261,28 @@ module Public {
     NegativeSummarizedCallable() { negativeSummaryElement(this, _) }
 
     /**
-     *  Holds if the negative summary is auto generated.
+     *  Holds if the negative summary is auto generated and not manually generated.
      */
-    predicate isAutoGenerated() { negativeSummaryElement(this, true) }
+    predicate isAutoGenerated() {
+      negativeSummaryElement(this, true) and
+      not negativeSummaryElement(this, false)
+    } // ! okay to adjust this to "and not manually generated"? Will that mess up anything that currently uses this?
+
+    /**
+     * Holds if the summary is manually generated and not auto generated.
+     */
+    predicate isManuallyGenerated() {
+      negativeSummaryElement(this, false) and
+      not negativeSummaryElement(this, true)
+    }
+
+    /**
+     * Holds if the summary is both auto generated and manually generated.
+     */
+    predicate isBothAutoAndManuallyGenerated() {
+      negativeSummaryElement(this, true) and
+      negativeSummaryElement(this, false)
+    }
   }
 }
 

From 0edfc6e01e8e37da6d8bdadb2551291456906a95 Mon Sep 17 00:00:00 2001
From: retanoj <s919student@gmail.com>
Date: Thu, 8 Dec 2022 09:23:24 +0800
Subject: [PATCH 1141/1420] greedy matching

---
 .../Security/CWE/CWE-089/MyBatisCommonLib.qll          | 10 +++++-----
 1 file changed, 5 insertions(+), 5 deletions(-)

diff --git a/java/ql/src/experimental/Security/CWE/CWE-089/MyBatisCommonLib.qll b/java/ql/src/experimental/Security/CWE/CWE-089/MyBatisCommonLib.qll
index 93831fcdd24..8a7cf318e00 100644
--- a/java/ql/src/experimental/Security/CWE/CWE-089/MyBatisCommonLib.qll
+++ b/java/ql/src/experimental/Security/CWE/CWE-089/MyBatisCommonLib.qll
@@ -135,7 +135,7 @@ predicate isMybatisXmlOrAnnotationSqlInjection(
     exists(Annotation annotation |
       unsafeExpression
           .regexpMatch("\\$\\{\\s*" + annotation.getValue("value").(CompileTimeConstantExpr).getStringValue() +
-              "\\b[^}]*?\\}") and
+              "\\b[^}]*\\}") and
       annotation.getType() instanceof TypeParam and
       ma.getAnArgument() = node.asExpr() and
       annotation.getTarget() =
@@ -153,11 +153,11 @@ predicate isMybatisXmlOrAnnotationSqlInjection(
     exists(int i |
       not ma.getMethod().getParameter(i).getAnAnnotation().getType() instanceof TypeParam and
       (
-        unsafeExpression.regexpMatch("\\$\\{\\s*param" + (i + 1) + "\\b[^}]*?\\}")
+        unsafeExpression.regexpMatch("\\$\\{\\s*param" + (i + 1) + "\\b[^}]*\\}")
         or
-        unsafeExpression.regexpMatch("\\$\\{\\s*arg" + i + "\\b[^}]*?\\}")
+        unsafeExpression.regexpMatch("\\$\\{\\s*arg" + i + "\\b[^}]*\\}")
         or
-        unsafeExpression.regexpMatch("\\$\\{\\s*" + ma.getMethod().getParameter(i).getName() + "\\b[^}]*?\\}")
+        unsafeExpression.regexpMatch("\\$\\{\\s*" + ma.getMethod().getParameter(i).getName() + "\\b[^}]*\\}")
       ) and
       ma.getArgument(i) = node.asExpr()
     )
@@ -172,7 +172,7 @@ predicate isMybatisXmlOrAnnotationSqlInjection(
     exists(int i, RefType t |
       not ma.getMethod().getParameter(i).getAnAnnotation().getType() instanceof TypeParam and
       ma.getMethod().getParameterType(i).getName() = t.getName() and
-      unsafeExpression.regexpMatch("\\$\\{\\s*" + t.getAField().getName() + "\\b[^}]*?\\}") and
+      unsafeExpression.regexpMatch("\\$\\{\\s*" + t.getAField().getName() + "\\b[^}]*\\}") and
       ma.getArgument(i) = node.asExpr()
     )
     or

From e9e5f926031184abcc8b2d62ec65e9c2841f51d4 Mon Sep 17 00:00:00 2001
From: Jami Cogswell <jcogs33@Jamis-MacBook-Pro.local>
Date: Wed, 7 Dec 2022 21:46:52 -0500
Subject: [PATCH 1142/1420] Java: update notModeled for negative numbers

---
 java/ql/src/Metrics/Summaries/GeneratedVsManualCoverage.ql | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/java/ql/src/Metrics/Summaries/GeneratedVsManualCoverage.ql b/java/ql/src/Metrics/Summaries/GeneratedVsManualCoverage.ql
index c460bbcea77..2803396a141 100644
--- a/java/ql/src/Metrics/Summaries/GeneratedVsManualCoverage.ql
+++ b/java/ql/src/Metrics/Summaries/GeneratedVsManualCoverage.ql
@@ -91,7 +91,8 @@ float getNumApisWithoutMadModel(string package) {
       count(DataFlowTargetApi d |
         package = d.getDeclaringType().getPackage().toString() and
         not exists(FunctionalExpr funcExpr | d = funcExpr.asMethod()) and // remove lambdas // ! remove this if DataFlowTargetApi itself is adjusted to exclude FunctionalExpr (see static-team slack thread)
-        not exists(SummarizedCallable sc | d = sc.asCallable()) // set minus with SummarizedCallables
+        not exists(SummarizedCallable sc | d = sc.asCallable()) and
+        not exists(FlowSummaryImpl::Public::NegativeSummarizedCallable nc | d = nc.asCallable())
       )
   )
 }

From 0058bf4443f6e5145e00dc9a884f82bc45ebf4cc Mon Sep 17 00:00:00 2001
From: Paolo Tranquilli <redsun82@github.com>
Date: Thu, 8 Dec 2022 08:44:29 +0100
Subject: [PATCH 1143/1420] Swift: add timeout to inetgration tests on macOS

---
 .github/workflows/swift.yml | 1 +
 1 file changed, 1 insertion(+)

diff --git a/.github/workflows/swift.yml b/.github/workflows/swift.yml
index 47a2d2bf6ae..de0f11f0521 100644
--- a/.github/workflows/swift.yml
+++ b/.github/workflows/swift.yml
@@ -65,6 +65,7 @@ jobs:
     if : ${{ github.event_name == 'pull_request' }}
     needs: build-and-test-macos
     runs-on: macos-12-xl
+    timeout-minutes: 60
     steps:
       - uses: actions/checkout@v3
       - uses: ./swift/actions/run-integration-tests

From a2dac3a41ef0e79a00bf4e030f5764114e4f5b66 Mon Sep 17 00:00:00 2001
From: Jeroen Ketema <jketema@github.com>
Date: Thu, 8 Dec 2022 09:36:19 +0100
Subject: [PATCH 1144/1420] C++: Move remote flow sink test and also handle
 local and remote sinks

---
 .../defaulttainttracking.cpp                  | 26 +-------------
 .../annotate_sinks_only/remote-flow-sink.ql   | 20 -----------
 .../local-flow.expected}                      |  0
 .../dataflow/source-sink-tests/local-flow.ql  | 20 +++++++++++
 .../source-sink-tests/remote-flow.expected    |  0
 .../dataflow/source-sink-tests/remote-flow.ql | 35 +++++++++++++++++++
 .../source-sink-tests/sources-and-sinks.cpp   | 28 +++++++++++++++
 7 files changed, 84 insertions(+), 45 deletions(-)
 delete mode 100644 cpp/ql/test/library-tests/dataflow/DefaultTaintTracking/annotate_sinks_only/remote-flow-sink.ql
 rename cpp/ql/test/library-tests/dataflow/{DefaultTaintTracking/annotate_sinks_only/remote-flow-sink.expected => source-sink-tests/local-flow.expected} (100%)
 create mode 100644 cpp/ql/test/library-tests/dataflow/source-sink-tests/local-flow.ql
 create mode 100644 cpp/ql/test/library-tests/dataflow/source-sink-tests/remote-flow.expected
 create mode 100644 cpp/ql/test/library-tests/dataflow/source-sink-tests/remote-flow.ql
 create mode 100644 cpp/ql/test/library-tests/dataflow/source-sink-tests/sources-and-sinks.cpp

diff --git a/cpp/ql/test/library-tests/dataflow/DefaultTaintTracking/annotate_sinks_only/defaulttainttracking.cpp b/cpp/ql/test/library-tests/dataflow/DefaultTaintTracking/annotate_sinks_only/defaulttainttracking.cpp
index ce758af691b..e80991d4fb3 100644
--- a/cpp/ql/test/library-tests/dataflow/DefaultTaintTracking/annotate_sinks_only/defaulttainttracking.cpp
+++ b/cpp/ql/test/library-tests/dataflow/DefaultTaintTracking/annotate_sinks_only/defaulttainttracking.cpp
@@ -1,18 +1,6 @@
 #include "../shared.h"
 
-
-
-
-
-
-
-
-
-
 int main() {
-
-
-
   sink(_strdup(getenv("VAR"))); // $ ir MISSING: ast
   sink(strdup(getenv("VAR"))); // $ ast,ir
   sink(unmodeled_function(getenv("VAR"))); // clean by assumption
@@ -59,9 +47,6 @@ void test_outparams() {
     sink(p2); // $ ir MISSING: ast
 }
 
-
-
-
 struct XY {
   int x;
   int y;
@@ -230,24 +215,17 @@ void test_recv() {
 
 // --- send and related functions ---
 
-int send(int, const void*, int, int);
-
-void test_send(char* buffer, int length) {
-  send(0, buffer, length, 0); // $ remote
-}
-
 struct iovec {
   void  *iov_base;
   unsigned iov_len;
 };
 
 int readv(int, const struct iovec*, int);
-int writev(int, const struct iovec*, int);
 
 void sink(const iovec* iovs);
 void sink(iovec);
 
-int test_readv_and_writev(iovec* iovs) {
+void test_readv_and_writev(iovec* iovs) {
   readv(0, iovs, 16);
   sink(iovs); // $ast,ir
   sink(iovs[0]); // $ast,ir
@@ -256,6 +234,4 @@ int test_readv_and_writev(iovec* iovs) {
   char* p = (char*)iovs[1].iov_base;
   sink(p); // $ MISSING: ast,ir
   sink(*p); // $ MISSING: ast,ir
-
-  writev(0, iovs, 16); // $ remote
 }
diff --git a/cpp/ql/test/library-tests/dataflow/DefaultTaintTracking/annotate_sinks_only/remote-flow-sink.ql b/cpp/ql/test/library-tests/dataflow/DefaultTaintTracking/annotate_sinks_only/remote-flow-sink.ql
deleted file mode 100644
index 4fbbe8fa3bf..00000000000
--- a/cpp/ql/test/library-tests/dataflow/DefaultTaintTracking/annotate_sinks_only/remote-flow-sink.ql
+++ /dev/null
@@ -1,20 +0,0 @@
-/** This tests that we are able to detect remote flow sinks. */
-
-import cpp
-import TestUtilities.InlineExpectationsTest
-import semmle.code.cpp.security.FlowSources
-
-class RemoteFlowSinkTest extends InlineExpectationsTest {
-  RemoteFlowSinkTest() { this = "RemoteFlowSinkTest" }
-
-  override string getARelevantTag() { result = "remote" }
-
-  override predicate hasActualResult(Location location, string element, string tag, string value) {
-    tag = "remote" and
-    value = "" and
-    exists(RemoteFlowSink node |
-      location = node.getLocation() and
-      element = node.toString()
-    )
-  }
-}
diff --git a/cpp/ql/test/library-tests/dataflow/DefaultTaintTracking/annotate_sinks_only/remote-flow-sink.expected b/cpp/ql/test/library-tests/dataflow/source-sink-tests/local-flow.expected
similarity index 100%
rename from cpp/ql/test/library-tests/dataflow/DefaultTaintTracking/annotate_sinks_only/remote-flow-sink.expected
rename to cpp/ql/test/library-tests/dataflow/source-sink-tests/local-flow.expected
diff --git a/cpp/ql/test/library-tests/dataflow/source-sink-tests/local-flow.ql b/cpp/ql/test/library-tests/dataflow/source-sink-tests/local-flow.ql
new file mode 100644
index 00000000000..c5e2acfae1e
--- /dev/null
+++ b/cpp/ql/test/library-tests/dataflow/source-sink-tests/local-flow.ql
@@ -0,0 +1,20 @@
+/** This tests that we are able to detect local flow sources. */
+
+import cpp
+import TestUtilities.InlineExpectationsTest
+import semmle.code.cpp.security.FlowSources
+
+class LocalFlowSourceTest extends InlineExpectationsTest {
+  LocalFlowSourceTest() { this = "LocalFlowSourceTest" }
+
+  override string getARelevantTag() { result = "local_source" }
+
+  override predicate hasActualResult(Location location, string element, string tag, string value) {
+    tag = "local_source" and
+    value = "" and
+    exists(LocalFlowSource node |
+      location = node.getLocation() and
+      element = node.toString()
+    )
+  }
+}
diff --git a/cpp/ql/test/library-tests/dataflow/source-sink-tests/remote-flow.expected b/cpp/ql/test/library-tests/dataflow/source-sink-tests/remote-flow.expected
new file mode 100644
index 00000000000..e69de29bb2d
diff --git a/cpp/ql/test/library-tests/dataflow/source-sink-tests/remote-flow.ql b/cpp/ql/test/library-tests/dataflow/source-sink-tests/remote-flow.ql
new file mode 100644
index 00000000000..08cca02f397
--- /dev/null
+++ b/cpp/ql/test/library-tests/dataflow/source-sink-tests/remote-flow.ql
@@ -0,0 +1,35 @@
+/** This tests that we are able to detect remote flow sources and sinks. */
+
+import cpp
+import TestUtilities.InlineExpectationsTest
+import semmle.code.cpp.security.FlowSources
+
+class RemoteFlowSourceTest extends InlineExpectationsTest {
+  RemoteFlowSourceTest() { this = "RemoteFlowSourceTest" }
+
+  override string getARelevantTag() { result = "remote_source" }
+
+  override predicate hasActualResult(Location location, string element, string tag, string value) {
+    tag = "remote_source" and
+    value = "" and
+    exists(RemoteFlowSource node |
+      location = node.getLocation() and
+      element = node.toString()
+    )
+  }
+}
+
+class RemoteFlowSinkTest extends InlineExpectationsTest {
+  RemoteFlowSinkTest() { this = "RemoteFlowSinkTest" }
+
+  override string getARelevantTag() { result = "remote_sink" }
+
+  override predicate hasActualResult(Location location, string element, string tag, string value) {
+    tag = "remote_sink" and
+    value = "" and
+    exists(RemoteFlowSink node |
+      location = node.getLocation() and
+      element = node.toString()
+    )
+  }
+}
diff --git a/cpp/ql/test/library-tests/dataflow/source-sink-tests/sources-and-sinks.cpp b/cpp/ql/test/library-tests/dataflow/source-sink-tests/sources-and-sinks.cpp
new file mode 100644
index 00000000000..11283473802
--- /dev/null
+++ b/cpp/ql/test/library-tests/dataflow/source-sink-tests/sources-and-sinks.cpp
@@ -0,0 +1,28 @@
+char *getenv(const char *name);
+char *secure_getenv(const char *name);
+wchar_t *_wgetenv(const wchar_t *name);
+
+void test_getenv() {
+    void *var1 = getenv("VAR"); // $ local_source
+    void *var2 = secure_getenv("VAR"); // $ local_source
+    void *var3 = _wgetenv(L"VAR"); // $ local_source
+}
+
+int send(int, const void*, int, int);
+
+void test_send(char* buffer, int length) {
+  send(0, buffer, length, 0); // $ remote_sink
+}
+
+struct iovec {
+  void  *iov_base;
+  unsigned iov_len;
+};
+
+int readv(int, const struct iovec*, int);
+int writev(int, const struct iovec*, int);
+
+void test_readv_and_writev(iovec* iovs) {
+  readv(0, iovs, 16); // $ remote_source
+  writev(0, iovs, 16); // $ remote_sink
+}

From fc49ede33d921de492ee8c45a0431e1575036eaa Mon Sep 17 00:00:00 2001
From: Jeroen Ketema <jketema@github.com>
Date: Thu, 8 Dec 2022 09:44:23 +0100
Subject: [PATCH 1145/1420] C++: Add change note

---
 cpp/ql/lib/change-notes/2022-12-08-support-getenv-variants.md | 4 ++++
 1 file changed, 4 insertions(+)
 create mode 100644 cpp/ql/lib/change-notes/2022-12-08-support-getenv-variants.md

diff --git a/cpp/ql/lib/change-notes/2022-12-08-support-getenv-variants.md b/cpp/ql/lib/change-notes/2022-12-08-support-getenv-variants.md
new file mode 100644
index 00000000000..c91d549ec8a
--- /dev/null
+++ b/cpp/ql/lib/change-notes/2022-12-08-support-getenv-variants.md
@@ -0,0 +1,4 @@
+---
+category: minorAnalysis
+---
+* The `secure_getenv` and `_wgetenv` functions are now recognized as local flow sources.

From f2b99c5fff980c3b00a42cdb73de2a72e9859a88 Mon Sep 17 00:00:00 2001
From: Asger F <asgerf@github.com>
Date: Wed, 7 Dec 2022 20:24:40 +0100
Subject: [PATCH 1146/1420] Docs: Update README to mention Python 2 requirement

---
 docs/codeql/README.rst | 7 ++++---
 1 file changed, 4 insertions(+), 3 deletions(-)

diff --git a/docs/codeql/README.rst b/docs/codeql/README.rst
index d27fe2189d2..a07d15c27e1 100644
--- a/docs/codeql/README.rst
+++ b/docs/codeql/README.rst
@@ -42,9 +42,10 @@ For more information, see
 Building and previewing the CodeQL documentation
 ************************************************
 
-To build and preview the documentation and training presentations locally, you need to 
-install Sphinx 1.7.9. More recent versions of Sphinx do not work with hieroglyph, 
-the Sphinx extension that we use to generate HTML slides, as explained below. 
+To build and preview the documentation and training presentations locally, you need to
+install Sphinx 1.7.9 using Python 2 (for example: `pip install sphinx==1.7.9`).
+More recent versions of Sphinx do not work with hieroglyph,
+the Sphinx extension that we use to generate HTML slides, as explained below.
 For installation options, see https://github.com/sphinx-doc/sphinx.
 
 

From 0d2474bd555cd932e13d9a3e55ec6287b58c8b3a Mon Sep 17 00:00:00 2001
From: Chris Smowton <smowton@github.com>
Date: Thu, 8 Dec 2022 11:30:53 +0000
Subject: [PATCH 1147/1420] Autoformat

---
 .../Security/CWE/CWE-089/MyBatisCommonLib.qll             | 8 +++++---
 1 file changed, 5 insertions(+), 3 deletions(-)

diff --git a/java/ql/src/experimental/Security/CWE/CWE-089/MyBatisCommonLib.qll b/java/ql/src/experimental/Security/CWE/CWE-089/MyBatisCommonLib.qll
index 8a7cf318e00..b6bc910484b 100644
--- a/java/ql/src/experimental/Security/CWE/CWE-089/MyBatisCommonLib.qll
+++ b/java/ql/src/experimental/Security/CWE/CWE-089/MyBatisCommonLib.qll
@@ -128,13 +128,14 @@ predicate isMybatisXmlOrAnnotationSqlInjection(
     // ```java
     //    @Select(select id,name from test order by ${orderby,jdbcType=VARCHAR})
     //    void test(@Param("orderby") String name);
-    //    
+    //
     //    @Select(select id,name from test where name = ${ user . name })
     //    void test(@Param("user") User u);
     // ```
     exists(Annotation annotation |
       unsafeExpression
-          .regexpMatch("\\$\\{\\s*" + annotation.getValue("value").(CompileTimeConstantExpr).getStringValue() +
+          .regexpMatch("\\$\\{\\s*" +
+              annotation.getValue("value").(CompileTimeConstantExpr).getStringValue() +
               "\\b[^}]*\\}") and
       annotation.getType() instanceof TypeParam and
       ma.getAnArgument() = node.asExpr() and
@@ -157,7 +158,8 @@ predicate isMybatisXmlOrAnnotationSqlInjection(
         or
         unsafeExpression.regexpMatch("\\$\\{\\s*arg" + i + "\\b[^}]*\\}")
         or
-        unsafeExpression.regexpMatch("\\$\\{\\s*" + ma.getMethod().getParameter(i).getName() + "\\b[^}]*\\}")
+        unsafeExpression
+            .regexpMatch("\\$\\{\\s*" + ma.getMethod().getParameter(i).getName() + "\\b[^}]*\\}")
       ) and
       ma.getArgument(i) = node.asExpr()
     )

From 045e3a2cf39f39682dab8e5a20e4220ee3f04476 Mon Sep 17 00:00:00 2001
From: Chris Smowton <smowton@github.com>
Date: Thu, 8 Dec 2022 12:22:50 +0000
Subject: [PATCH 1148/1420] Kotlin: extract callable modality

---
 .../src/main/kotlin/KotlinFileExtractor.kt                 | 7 +++++++
 1 file changed, 7 insertions(+)

diff --git a/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt b/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt
index 4683731d8e9..1d5720f8c44 100644
--- a/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt
+++ b/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt
@@ -1243,6 +1243,13 @@ open class KotlinFileExtractor(
                 if (f.isSuspend) {
                     addModifiers(id, "suspend")
                 }
+                if (f.symbol !is IrConstructorSymbol) {
+                    when((f as? IrSimpleFunction)?.modality) {
+                        Modality.ABSTRACT -> addModifiers(id, "abstract")
+                        Modality.FINAL -> addModifiers(id, "final")
+                        else -> Unit
+                    }
+                }
 
                 linesOfCode?.linesOfCodeInDeclaration(f, id)
 

From 8789dfb655d562ee22c6231f351d2832ab3a6640 Mon Sep 17 00:00:00 2001
From: Chris Smowton <smowton@github.com>
Date: Thu, 8 Dec 2022 12:33:42 +0000
Subject: [PATCH 1149/1420] Make river-crossing example comply with the CodeQL
 style guide

---
 docs/codeql/writing-codeql-queries/river-answer-1-path.ql     | 4 ++--
 .../writing-codeql-queries/river-answer-2-abstract-class.ql   | 4 ++--
 .../codeql/writing-codeql-queries/river-answer-3-datatypes.ql | 4 ++--
 3 files changed, 6 insertions(+), 6 deletions(-)

diff --git a/docs/codeql/writing-codeql-queries/river-answer-1-path.ql b/docs/codeql/writing-codeql-queries/river-answer-1-path.ql
index a951f65ab04..3406e416858 100644
--- a/docs/codeql/writing-codeql-queries/river-answer-1-path.ql
+++ b/docs/codeql/writing-codeql-queries/river-answer-1-path.ql
@@ -13,7 +13,7 @@ class Cargo extends string {
     }
   }
   
-  /** One of two shores. */
+  /** A shore, named either `Left` or `Right`. */
   class Shore extends string {
     Shore() {
       this = "Left" or
@@ -93,7 +93,7 @@ class Cargo extends string {
       // Reachable by first following pathSoFar and then ferrying cargo
       exists(string pathSoFar, string visitedStatesSoFar, Cargo cargo |
         result = this.reachesVia(pathSoFar, visitedStatesSoFar).safeFerry(cargo) and
-        not exists(int i | i = visitedStatesSoFar.indexOf(result)) and // resulting state is not visited yet
+        not exists(visitedStatesSoFar.indexOf(result)) and // resulting state is not visited yet
         visitedStates = visitedStatesSoFar + "_" + result and
         path = pathSoFar + ",\nthen " + cargo + " is ferried " + result.towards()
       )
diff --git a/docs/codeql/writing-codeql-queries/river-answer-2-abstract-class.ql b/docs/codeql/writing-codeql-queries/river-answer-2-abstract-class.ql
index 78676101180..02ae9c9bb69 100644
--- a/docs/codeql/writing-codeql-queries/river-answer-2-abstract-class.ql
+++ b/docs/codeql/writing-codeql-queries/river-answer-2-abstract-class.ql
@@ -154,7 +154,7 @@ class Shore extends string {
     State reachesVia(string path) {
       exists(string pathSoFar |
         result = this.reachesVia(pathSoFar).transition() and
-        not exists(int i | i = pathSoFar.indexOf(result.toString())) and
+        not exists(pathSoFar.indexOf(result.toString())) and
         path = pathSoFar + "\n↓\n" + result
       )
     }
@@ -169,7 +169,7 @@ class Shore extends string {
     }
   
     override State reachesVia(string path) {
-      path = this + "\n↓\n" + result and result = transition()
+      path = this + "\n↓\n" + result and result = this.transition()
       or
       result = super.reachesVia(path)
     }
diff --git a/docs/codeql/writing-codeql-queries/river-answer-3-datatypes.ql b/docs/codeql/writing-codeql-queries/river-answer-3-datatypes.ql
index e17d46f1aba..6200da9ebc2 100644
--- a/docs/codeql/writing-codeql-queries/river-answer-3-datatypes.ql
+++ b/docs/codeql/writing-codeql-queries/river-answer-3-datatypes.ql
@@ -118,7 +118,7 @@ class State extends TState {
   State reachesVia(string path) {
     exists(string pathSoFar |
       result = this.reachesVia(pathSoFar).transition() and
-      not exists(int i | i = pathSoFar.indexOf(result.toString())) and
+      not exists(pathSoFar.indexOf(result.toString())) and
       path = pathSoFar + "\n" + result
     )
   }
@@ -133,7 +133,7 @@ class InitialState extends State {
   }
 
   override State reachesVia(string path) {
-    path = this + "\n" + result and result = transition()
+    path = this + "\n" + result and result = this.transition()
     or
     result = super.reachesVia(path)
   }

From e288b07099a8d52ede156f32d06da3cad7ffa72b Mon Sep 17 00:00:00 2001
From: Geoffrey White <40627776+geoffw0@users.noreply.github.com>
Date: Thu, 8 Dec 2022 13:02:58 +0000
Subject: [PATCH 1150/1420] Update swift/ql/src/queries/Summary/SummaryStats.ql

Co-authored-by: Mathias Vorreiter Pedersen <mathiasvp@github.com>
---
 swift/ql/src/queries/Summary/SummaryStats.ql | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/swift/ql/src/queries/Summary/SummaryStats.ql b/swift/ql/src/queries/Summary/SummaryStats.ql
index e313a96ad29..d8a5d6d7f6d 100644
--- a/swift/ql/src/queries/Summary/SummaryStats.ql
+++ b/swift/ql/src/queries/Summary/SummaryStats.ql
@@ -25,7 +25,7 @@ class TaintReachConfig extends TaintTracking::Configuration {
 
 float taintReach() {
   exists(TaintReachConfig config, int tainted, int total |
-    tainted = count(DataFlow::Node n | config.hasFlow(_, n)) and
+    tainted = count(DataFlow::Node n | config.hasFlowTo(n)) and
     total = count(DataFlow::Node n) and
     result = (tainted * 1000000.0) / total
   )

From 5674251839c0e00127541f8d9c34b1d227e2f83c Mon Sep 17 00:00:00 2001
From: Henry Mercer <henrymercer@github.com>
Date: Thu, 8 Dec 2022 13:03:31 +0000
Subject: [PATCH 1151/1420] Python: Disable `TarSlipImprov` qhelp

---
 .../{TarSlipImprov.qhelp => TarSlipImprov.qhelp.disabled}        | 1 +
 1 file changed, 1 insertion(+)
 rename python/ql/src/experimental/Security/CWE-022bis/{TarSlipImprov.qhelp => TarSlipImprov.qhelp.disabled} (97%)

diff --git a/python/ql/src/experimental/Security/CWE-022bis/TarSlipImprov.qhelp b/python/ql/src/experimental/Security/CWE-022bis/TarSlipImprov.qhelp.disabled
similarity index 97%
rename from python/ql/src/experimental/Security/CWE-022bis/TarSlipImprov.qhelp
rename to python/ql/src/experimental/Security/CWE-022bis/TarSlipImprov.qhelp.disabled
index 75ba15abf42..ce3ec17c362 100644
--- a/python/ql/src/experimental/Security/CWE-022bis/TarSlipImprov.qhelp
+++ b/python/ql/src/experimental/Security/CWE-022bis/TarSlipImprov.qhelp.disabled
@@ -1,6 +1,7 @@
 <!DOCTYPE qhelp PUBLIC
   "-//Semmle//qhelp//EN"
   "qhelp.dtd">
+<!-- Disabled since it refers to examples which do not exist. -->
 <qhelp>
 
 <overview>

From 37b2b0a1285081430fca61c11eea3e4e12666016 Mon Sep 17 00:00:00 2001
From: Chris Smowton <smowton@github.com>
Date: Thu, 8 Dec 2022 13:49:53 +0000
Subject: [PATCH 1152/1420] Use set literal instead of disjunction

---
 docs/codeql/writing-codeql-queries/river-answer-1-path.ql | 5 +----
 1 file changed, 1 insertion(+), 4 deletions(-)

diff --git a/docs/codeql/writing-codeql-queries/river-answer-1-path.ql b/docs/codeql/writing-codeql-queries/river-answer-1-path.ql
index 3406e416858..0a90c85faf2 100644
--- a/docs/codeql/writing-codeql-queries/river-answer-1-path.ql
+++ b/docs/codeql/writing-codeql-queries/river-answer-1-path.ql
@@ -6,10 +6,7 @@
 /** A possible cargo item. */
 class Cargo extends string {
     Cargo() {
-      this = "Nothing" or
-      this = "Goat" or
-      this = "Cabbage" or
-      this = "Wolf"
+      this = ["Nothing", "Goat", "Cabbage", "Wolf"]
     }
   }
   

From ae1373c2d67768d86d406965fa56bafdf928f322 Mon Sep 17 00:00:00 2001
From: Anders Schack-Mulligen <aschackmull@github.com>
Date: Thu, 8 Dec 2022 14:58:05 +0100
Subject: [PATCH 1153/1420] Shared: Bugfix typetracking source-sink hasFlow.

---
 .../codeql/typetracking/TypeTracking.qll      | 28 ++++++++++++++-----
 1 file changed, 21 insertions(+), 7 deletions(-)

diff --git a/shared/typetracking/codeql/typetracking/TypeTracking.qll b/shared/typetracking/codeql/typetracking/TypeTracking.qll
index 4125f25129a..7dac43f2e77 100644
--- a/shared/typetracking/codeql/typetracking/TypeTracking.qll
+++ b/shared/typetracking/codeql/typetracking/TypeTracking.qll
@@ -764,18 +764,20 @@ module TypeTracking<TypeTrackingInput I> {
      * in a source-sink path and calculates the set of source-sink pairs.
      */
     module Graph<endpoint/1 sink> {
-      private newtype TPathNode = MkPathNode(Node node, TypeTracker tt) { node = flow(tt) }
+      private newtype TPathNode =
+        TPathNodeMid(Node node, TypeTracker tt) { node = flow(tt) } or
+        TPathNodeSink(Node node) { sink(node) and flowsTo(node) }
 
       /**
        * A node on a path that is reachable from a source. This is a pair of a
-       * `Node` and a `TypeTracker`.
+       * `Node` and a `TypeTracker` except at sinks for which there is no `TypeTracker`.
        */
       class PathNodeFwd extends TPathNode {
         /** Gets the node of this `PathNode`. */
-        Node getNode() { this = MkPathNode(result, _) }
+        Node getNode() { this = TPathNodeMid(result, _) or this = TPathNodeSink(result) }
 
-        /** Gets the typetracker of this `PathNode`. */
-        TypeTracker getTypeTracker() { this = MkPathNode(_, result) }
+        /** Gets the typetracker of this `PathNode`, if any. */
+        TypeTracker getTypeTracker() { this = TPathNodeMid(_, result) }
 
         private string ppContent() {
           exists(ContentOption c | this.getTypeTracker() = MkTypeTracker(_, c) |
@@ -784,6 +786,8 @@ module TypeTracking<TypeTrackingInput I> {
             c instanceof ContentOption::None and
             result = ""
           )
+          or
+          result = "" and this instanceof TPathNodeSink
         }
 
         /** Gets a textual representation of this node. */
@@ -793,7 +797,7 @@ module TypeTracking<TypeTrackingInput I> {
         predicate isSource() { source(this.getNode()) and this.getTypeTracker().start() }
 
         /** Holds if this is a sink. */
-        predicate isSink() { sink(this.getNode()) and this.getTypeTracker().end() }
+        predicate isSink() { this instanceof TPathNodeSink }
       }
 
       private predicate edgeCand(Node n1, TypeTracker tt1, Node n2, TypeTracker tt2) {
@@ -802,7 +806,17 @@ module TypeTracking<TypeTrackingInput I> {
       }
 
       private predicate edgeCand(PathNodeFwd n1, PathNodeFwd n2) {
-        edgeCand(n1.getNode(), n1.getTypeTracker(), n2.getNode(), n2.getTypeTracker())
+        exists(PathNodeFwd tgt |
+          edgeCand(n1.getNode(), n1.getTypeTracker(), tgt.getNode(), tgt.getTypeTracker())
+        |
+          n2 = tgt
+          or
+          n2 = TPathNodeSink(tgt.getNode()) and tgt.getTypeTracker().end()
+        )
+        or
+        n1.getTypeTracker().end() and
+        flowsTo(n1.getNode(), n2.getNode()) and
+        n2 instanceof TPathNodeSink
       }
 
       private predicate reachRev(PathNodeFwd n) {

From d157e13318665cbd7f3b4e5eca63f2591b702481 Mon Sep 17 00:00:00 2001
From: Anders Schack-Mulligen <aschackmull@github.com>
Date: Thu, 8 Dec 2022 14:58:44 +0100
Subject: [PATCH 1154/1420] Java: Switch DispatchFlow to typetracking.

---
 java/ql/lib/qlpack.yml                        |   2 +
 .../code/java/dispatch/DispatchFlow.qll       | 419 +++++++++++-------
 2 files changed, 257 insertions(+), 164 deletions(-)

diff --git a/java/ql/lib/qlpack.yml b/java/ql/lib/qlpack.yml
index 3dd389eb958..066c36021e5 100644
--- a/java/ql/lib/qlpack.yml
+++ b/java/ql/lib/qlpack.yml
@@ -7,6 +7,8 @@ library: true
 upgrades: upgrades
 dependencies:
   codeql/regex: ${workspace}
+  codeql/typetracking: ${workspace}
+  codeql/util: ${workspace}
 dataExtensions:
   - ext/*.model.yml
   - ext/generated/*.model.yml
diff --git a/java/ql/lib/semmle/code/java/dispatch/DispatchFlow.qll b/java/ql/lib/semmle/code/java/dispatch/DispatchFlow.qll
index 0346ac3f485..c6419f4c26b 100644
--- a/java/ql/lib/semmle/code/java/dispatch/DispatchFlow.qll
+++ b/java/ql/lib/semmle/code/java/dispatch/DispatchFlow.qll
@@ -14,6 +14,7 @@ private import semmle.code.java.dataflow.internal.DataFlowPrivate as DataFlowPri
 private import semmle.code.java.dataflow.InstanceAccess
 private import semmle.code.java.Collections
 private import semmle.code.java.Maps
+private import codeql.typetracking.TypeTracking
 
 /**
  * Gets a viable dispatch target for `ma`. This is the input dispatch relation.
@@ -23,7 +24,8 @@ private Method viableImpl_inp(MethodAccess ma) { result = viableImpl_v2(ma) }
 private Callable dispatchCand(Call c) {
   c instanceof ConstructorCall and result = c.getCallee().getSourceDeclaration()
   or
-  result = viableImpl_inp(c)
+  result = viableImpl_inp(c) and
+  not dispatchOrigin(_, c, result)
 }
 
 /**
@@ -56,7 +58,7 @@ private predicate publicStaticFieldInit(ClassInstanceExpr cie) {
  */
 private predicate publicThroughField(RefType t) {
   exists(ClassInstanceExpr cie |
-    cie.getConstructedType() = t and
+    cie.getConstructedType().getSourceDeclaration() = t and
     publicStaticFieldInit(cie)
   )
 }
@@ -64,7 +66,7 @@ private predicate publicThroughField(RefType t) {
 /**
  * Holds if `t` and its subtypes are private or anonymous.
  */
-private predicate privateConstruction(RefType t) {
+private predicate privateConstruction(SrcRefType t) {
   (t.isPrivate() or t instanceof AnonymousClass) and
   not publicThroughField(t) and
   forall(SrcRefType sub | sub.getASourceSupertype+() = t.getSourceDeclaration() |
@@ -126,189 +128,278 @@ private class RelevantNode extends DataFlow::Node {
   RelevantNode() { relevant(this.getType()) }
 }
 
-/**
- * Holds if `p` is the `i`th parameter of a viable dispatch target of `call`.
- * The instance parameter is considered to have index `-1`.
- */
-pragma[nomagic]
-private predicate viableParamCand(Call call, int i, DataFlow::ParameterNode p) {
-  exists(DataFlowPrivate::DataFlowCallable callable |
-    callable.asCallable() = dispatchCand(call) and
-    p.isParameterOf(callable, i) and
-    p instanceof RelevantNode
-  )
-}
+private module TypeTrackingSteps {
+  class Node = RelevantNode;
 
-/**
- * Holds if `arg` is a possible argument to `p` taking virtual dispatch into account.
- */
-private predicate viableArgParamCand(DataFlowPrivate::ArgumentNode arg, DataFlow::ParameterNode p) {
-  exists(int i, DataFlowPrivate::DataFlowCall call |
-    viableParamCand(call.asCall(), i, p) and
-    arg.argumentOf(call, i)
-  )
-}
+  class LocalSourceNode extends RelevantNode {
+    LocalSourceNode() {
+      this.asExpr() instanceof Call or
+      this.asExpr() instanceof RValue or
+      this instanceof DataFlow::ParameterNode or
+      this instanceof DataFlow::ImplicitVarargsArray or
+      this.asExpr() instanceof ArrayInit or
+      this.asExpr() instanceof ArrayAccess or
+      this instanceof DataFlow::FieldValueNode
+    }
+  }
 
-/**
- * Holds if data may flow from `n1` to `n2` in a single step through a call or a return.
- */
-private predicate callFlowStepCand(RelevantNode n1, RelevantNode n2) {
-  exists(ReturnStmt ret, Method m |
-    ret.getEnclosingCallable() = m and
-    ret.getResult() = n1.asExpr() and
-    m = dispatchCand(n2.asExpr())
-  )
-  or
-  viableArgParamCand(n1, n2)
-}
+  private newtype TContent =
+    ContentArray() or
+    ContentArrayArray()
 
-/**
- * Holds if data may flow from `n1` to `n2` in a single step that does not go
- * through a call or a return.
- */
-private predicate flowStep(RelevantNode n1, RelevantNode n2) {
-  exists(BaseSsaVariable v, BaseSsaVariable def |
-    def.(BaseSsaUpdate).getDefiningExpr().(VariableAssign).getSource() = n1.asExpr()
-    or
-    def.(BaseSsaImplicitInit).isParameterDefinition(n1.asParameter())
-    or
-    exists(EnhancedForStmt for |
-      for.getVariable() = def.(BaseSsaUpdate).getDefiningExpr() and
-      for.getExpr() = n1.asExpr() and
-      n1.getType() instanceof Array
-    )
-  |
-    v.getAnUltimateDefinition() = def and
-    v.getAUse() = n2.asExpr()
-  )
-  or
-  exists(Callable c | n1.(DataFlow::InstanceParameterNode).getCallable() = c |
-    exists(InstanceAccess ia |
-      ia = n2.asExpr() and ia.getEnclosingCallable() = c and ia.isOwnInstanceAccess()
+  class Content extends TContent {
+    string toString() {
+      this = ContentArray() and result = "array"
+      or
+      this = ContentArrayArray() and result = "array array"
+    }
+  }
+
+  class ContentFilter extends Content {
+    Content getAMatchingContent() { result = this }
+  }
+
+  predicate compatibleContents(Content storeContents, Content loadContents) {
+    storeContents = loadContents
+  }
+
+  predicate simpleLocalSmallStep(Node n1, Node n2) {
+    exists(BaseSsaVariable v, BaseSsaVariable def |
+      def.(BaseSsaUpdate).getDefiningExpr().(VariableAssign).getSource() = n1.asExpr()
+      or
+      def.(BaseSsaImplicitInit).isParameterDefinition(n1.asParameter())
+    |
+      v.getAnUltimateDefinition() = def and
+      v.getAUse() = n2.asExpr()
     )
     or
-    n2.(DataFlow::ImplicitInstanceAccess)
-        .getInstanceAccess()
-        .(OwnInstanceAccess)
-        .getEnclosingCallable() = c
-  )
-  or
-  n2.(DataFlow::FieldValueNode).getField().getAnAssignedValue() = n1.asExpr()
-  or
-  n2.asExpr().(FieldRead).getField() = n1.(DataFlow::FieldValueNode).getField()
-  or
-  exists(EnumType enum, Method getValue |
-    enum.getAnEnumConstant().getAnAssignedValue() = n1.asExpr() and
-    getValue.getDeclaringType() = enum and
-    (getValue.hasName("values") or getValue.hasName("valueOf")) and
-    n2.asExpr().(MethodAccess).getMethod() = getValue
-  )
-  or
-  n2.asExpr().(CastingExpr).getExpr() = n1.asExpr()
-  or
-  n2.asExpr().(ChooseExpr).getAResultExpr() = n1.asExpr()
-  or
-  n2.asExpr().(AssignExpr).getSource() = n1.asExpr()
-  or
-  n2.asExpr().(ArrayInit).getAnInit() = n1.asExpr()
-  or
-  n2.asExpr().(ArrayCreationExpr).getInit() = n1.asExpr()
-  or
-  n2.asExpr().(ArrayAccess).getArray() = n1.asExpr()
-  or
-  exists(Argument arg |
-    n1.asExpr() = arg and
-    arg.isVararg() and
-    n2.(DataFlow::ImplicitVarargsArray).getCall() = arg.getCall()
-  )
-  or
-  exists(AssignExpr a, Variable v |
-    a.getSource() = n1.asExpr() and
-    a.getDest().(ArrayAccess).getArray() = v.getAnAccess() and
-    n2.asExpr() = v.getAnAccess().(RValue)
-  )
-  or
-  exists(Variable v, MethodAccess put, MethodAccess get |
-    put.getArgument(1) = n1.asExpr() and
-    put.getMethod().(MapMethod).hasName("put") and
-    put.getQualifier() = v.getAnAccess() and
-    get.getQualifier() = v.getAnAccess() and
-    get.getMethod().(MapMethod).hasName("get") and
-    n2.asExpr() = get
-  )
-  or
-  exists(Variable v, MethodAccess add |
-    add.getAnArgument() = n1.asExpr() and
-    add.getMethod().(CollectionMethod).hasName("add") and
-    add.getQualifier() = v.getAnAccess()
-  |
-    exists(MethodAccess get |
+    exists(Callable c | n1.(DataFlow::InstanceParameterNode).getCallable() = c |
+      exists(InstanceAccess ia |
+        ia = n2.asExpr() and ia.getEnclosingCallable() = c and ia.isOwnInstanceAccess()
+      )
+      or
+      n2.(DataFlow::ImplicitInstanceAccess)
+          .getInstanceAccess()
+          .(OwnInstanceAccess)
+          .getEnclosingCallable() = c
+    )
+    or
+    n2.asExpr().(CastingExpr).getExpr() = n1.asExpr()
+    or
+    n2.asExpr().(ChooseExpr).getAResultExpr() = n1.asExpr()
+    or
+    n2.asExpr().(AssignExpr).getSource() = n1.asExpr()
+    or
+    n2.asExpr().(ArrayCreationExpr).getInit() = n1.asExpr()
+  }
+
+  predicate levelStepNoCall(Node n1, LocalSourceNode n2) {
+    exists(EnumType enum, Method getValue |
+      enum.getAnEnumConstant().getAnAssignedValue() = n1.asExpr() and
+      getValue.getDeclaringType() = enum and
+      getValue.hasName("valueOf") and
+      n2.asExpr().(MethodAccess).getMethod() = getValue
+    )
+    or
+    exists(Variable v, MethodAccess put, MethodAccess get |
+      put.getArgument(1) = n1.asExpr() and
+      put.getMethod().(MapMethod).hasName("put") and
+      put.getQualifier() = v.getAnAccess() and
       get.getQualifier() = v.getAnAccess() and
-      get.getMethod().(CollectionMethod).hasName("get") and
+      get.getMethod().(MapMethod).hasName("get") and
       n2.asExpr() = get
     )
     or
-    exists(EnhancedForStmt for, BaseSsaVariable ssa, BaseSsaVariable def |
-      for.getVariable() = def.(BaseSsaUpdate).getDefiningExpr() and
-      for.getExpr() = v.getAnAccess() and
-      ssa.getAnUltimateDefinition() = def and
-      ssa.getAUse() = n2.asExpr()
+    exists(Variable v, MethodAccess add |
+      add.getAnArgument() = n1.asExpr() and
+      add.getMethod().(CollectionMethod).hasName("add") and
+      add.getQualifier() = v.getAnAccess()
+    |
+      exists(MethodAccess get |
+        get.getQualifier() = v.getAnAccess() and
+        get.getMethod().(CollectionMethod).hasName("get") and
+        n2.asExpr() = get
+      )
+      or
+      exists(EnhancedForStmt for, BaseSsaVariable ssa, BaseSsaVariable def |
+        for.getVariable() = def.(BaseSsaUpdate).getDefiningExpr() and
+        for.getExpr() = v.getAnAccess() and
+        ssa.getAnUltimateDefinition() = def and
+        ssa.getAUse() = n2.asExpr()
+      )
     )
-  )
+  }
+
+  predicate levelStepCall(Node n1, LocalSourceNode n2) { none() }
+
+  predicate storeStep(Node n1, Node n2, Content f) {
+    exists(EnumType enum, Method getValue |
+      enum.getAnEnumConstant().getAnAssignedValue() = n1.asExpr() and
+      getValue.getDeclaringType() = enum and
+      getValue.hasName("values") and
+      n2.asExpr().(MethodAccess).getMethod() = getValue and
+      f = ContentArray()
+    )
+    or
+    n2.asExpr().(ArrayInit).getAnInit() = n1.asExpr() and
+    f = ContentArray()
+    or
+    exists(Argument arg |
+      n1.asExpr() = arg and
+      arg.isVararg() and
+      n2.(DataFlow::ImplicitVarargsArray).getCall() = arg.getCall() and
+      f = ContentArray()
+    )
+    or
+    exists(AssignExpr a, Variable v |
+      a.getSource() = n1.asExpr() and
+      a.getDest().(ArrayAccess).getArray() = v.getAnAccess() and
+      n2.asExpr() = v.getAnAccess().(RValue) and
+      f = ContentArray()
+    )
+  }
+
+  predicate loadStep(Node n1, LocalSourceNode n2, Content f) {
+    exists(BaseSsaVariable v, BaseSsaVariable def |
+      exists(EnhancedForStmt for |
+        for.getVariable() = def.(BaseSsaUpdate).getDefiningExpr() and
+        for.getExpr() = n1.asExpr() and
+        n1.getType() instanceof Array and
+        f = ContentArray()
+      )
+    |
+      v.getAnUltimateDefinition() = def and
+      v.getAUse() = n2.asExpr()
+    )
+    or
+    n2.asExpr().(ArrayAccess).getArray() = n1.asExpr()
+  }
+
+  predicate loadStoreStep(Node nodeFrom, Node nodeTo, Content f1, Content f2) {
+    loadStep(nodeFrom, nodeTo, ContentArray()) and
+    f1 = ContentArrayArray() and
+    f2 = ContentArray()
+    or
+    storeStep(nodeFrom, nodeTo, ContentArray()) and
+    f1 = ContentArray() and
+    f2 = ContentArrayArray()
+  }
+
+  predicate withContentStep(Node nodeFrom, LocalSourceNode nodeTo, ContentFilter f) { none() }
+
+  predicate withoutContentStep(Node nodeFrom, LocalSourceNode nodeTo, ContentFilter f) { none() }
+
+  predicate jumpStep(Node n1, LocalSourceNode n2) {
+    n2.(DataFlow::FieldValueNode).getField().getAnAssignedValue() = n1.asExpr()
+    or
+    n2.asExpr().(FieldRead).getField() = n1.(DataFlow::FieldValueNode).getField()
+  }
+
+  predicate hasFeatureBacktrackStoreTarget() { none() }
 }
 
-/**
- * Holds if `n` is forward-reachable from a relevant `ClassInstanceExpr`.
- */
-private predicate nodeCandFwd(DataFlow::Node n) {
-  dispatchOrigin(n.asExpr(), _, _)
-  or
-  exists(DataFlow::Node mid | nodeCandFwd(mid) | flowStep(mid, n) or callFlowStepCand(mid, n))
+private predicate lambdaSource(RelevantNode n) { dispatchOrigin(n.asExpr(), _, _) }
+
+private predicate lambdaSink(RelevantNode n) {
+  exists(MethodAccess ma | dispatchOrigin(_, ma, _) | n = DataFlow::getInstanceArgument(ma))
 }
 
-/**
- * Holds if `n` may occur on a dispatch flow path. That is, a path from a
- * relevant `ClassInstanceExpr` to a qualifier of a relevant `MethodAccess`.
- */
-private predicate nodeCand(DataFlow::Node n) {
-  exists(MethodAccess ma |
-    dispatchOrigin(_, ma, _) and
-    n = DataFlow::getInstanceArgument(ma) and
-    nodeCandFwd(n)
-  )
-  or
-  exists(DataFlow::Node mid | nodeCand(mid) | flowStep(n, mid) or callFlowStepCand(n, mid)) and
-  nodeCandFwd(n)
+private signature Method methodDispatchSig(MethodAccess ma);
+
+private module TrackLambda<methodDispatchSig/1 lambdaDispatch0> {
+  private Callable dispatch(Call c) {
+    result = dispatchCand(c) or
+    result = lambdaDispatch0(c)
+  }
+
+  /**
+   * Holds if `p` is the `i`th parameter of a viable dispatch target of `call`.
+   * The instance parameter is considered to have index `-1`.
+   */
+  pragma[nomagic]
+  private predicate paramCand(Call call, int i, DataFlow::ParameterNode p) {
+    exists(DataFlowPrivate::DataFlowCallable callable |
+      callable.asCallable() = dispatch(call) and
+      p.isParameterOf(callable, i) and
+      p instanceof RelevantNode
+    )
+  }
+
+  /**
+   * Holds if `arg` is a possible argument to `p` taking virtual dispatch into account.
+   */
+  private predicate argParamCand(DataFlowPrivate::ArgumentNode arg, DataFlow::ParameterNode p) {
+    exists(int i, DataFlowPrivate::DataFlowCall call |
+      paramCand(call.asCall(), i, p) and
+      arg.argumentOf(call, i)
+    )
+  }
+
+  private module TtInput implements TypeTrackingInput {
+    import TypeTrackingSteps
+
+    predicate callStep(Node n1, LocalSourceNode n2) { argParamCand(n1, n2) }
+
+    predicate returnStep(Node n1, LocalSourceNode n2) {
+      exists(ReturnStmt ret, Method m |
+        ret.getEnclosingCallable() = m and
+        ret.getResult() = n1.asExpr() and
+        m = dispatch(n2.asExpr())
+      )
+    }
+  }
+
+  private import TypeTracking<TtInput>::TypeTrack<lambdaSource/1>::Graph<lambdaSink/1>
+
+  private predicate edgePlus(PathNode n1, PathNode n2) = fastTC(edges/2)(n1, n2)
+
+  private predicate pairCand(PathNode p1, PathNode p2, Method m, MethodAccess ma) {
+    exists(ClassInstanceExpr cie |
+      dispatchOrigin(cie, ma, m) and
+      p1.getNode() = DataFlow::exprNode(cie) and
+      p2.getNode() = DataFlow::getInstanceArgument(ma) and
+      p1.isSource() and
+      p2.isSink()
+    )
+  }
+
+  /**
+   * Holds if there is flow from a `ClassInstanceExpr` instantiating a type that
+   * declares or inherits the tracked method `result` to the qualifier of `ma` such
+   * that `ma` may dispatch to `result`.
+   */
+  Method lambdaDispatch(MethodAccess ma) {
+    exists(PathNode p1, PathNode p2 |
+      (p1 = p2 or edgePlus(p1, p2)) and
+      pairCand(p1, p2, result, ma)
+    )
+  }
 }
 
-/**
- * Holds if `n1 -> n2` is a relevant dispatch flow step.
- */
-private predicate step(DataFlow::Node n1, DataFlow::Node n2) {
-  (flowStep(n1, n2) or callFlowStepCand(n1, n2)) and
-  nodeCand(n1) and
-  nodeCand(n2)
-}
+private Method noDisp(MethodAccess ma) { none() }
 
-private predicate stepPlus(DataFlow::Node n1, DataFlow::Node n2) = fastTC(step/2)(n1, n2)
+pragma[nomagic]
+private Method d1(MethodAccess ma) { result = TrackLambda<noDisp/1>::lambdaDispatch(ma) }
 
-/**
- * Holds if there is flow from a `ClassInstanceExpr` instantiating a type that
- * declares or inherits the tracked method `m` to the qualifier of `ma` such
- * that `ma` may dispatch to `m`.
- */
-pragma[inline]
-private predicate hasDispatchFlow(MethodAccess ma, Method m) {
-  exists(ClassInstanceExpr cie |
-    dispatchOrigin(cie, ma, m) and
-    stepPlus(DataFlow::exprNode(cie), DataFlow::getInstanceArgument(ma))
-  )
-}
+pragma[nomagic]
+private Method d2(MethodAccess ma) { result = TrackLambda<d1/1>::lambdaDispatch(ma) }
+
+pragma[nomagic]
+private Method d3(MethodAccess ma) { result = TrackLambda<d2/1>::lambdaDispatch(ma) }
+
+pragma[nomagic]
+private Method d4(MethodAccess ma) { result = TrackLambda<d3/1>::lambdaDispatch(ma) }
+
+pragma[nomagic]
+private Method d5(MethodAccess ma) { result = TrackLambda<d4/1>::lambdaDispatch(ma) }
+
+pragma[nomagic]
+private Method d6(MethodAccess ma) { result = TrackLambda<d5/1>::lambdaDispatch(ma) }
 
 /**
  * Gets a viable dispatch target for `ma`. This is the output dispatch relation.
  */
 Method viableImpl_out(MethodAccess ma) {
   result = viableImpl_inp(ma) and
-  (hasDispatchFlow(ma, result) or not dispatchOrigin(_, ma, result))
+  (result = d6(ma) or not dispatchOrigin(_, ma, result))
 }

From f35b7f8fe88a1ce43dd1f7a737b0a33a95dd38dc Mon Sep 17 00:00:00 2001
From: Jeroen Ketema <jketema@github.com>
Date: Thu, 8 Dec 2022 12:05:52 +0100
Subject: [PATCH 1155/1420] C++: Model `scanf` and `fscanf` as flow sources

---
 cpp/ql/lib/semmle/code/cpp/models/Models.qll  |  2 +-
 .../implementations/{Sscanf.qll => Scanf.qll} | 54 +++++++++++++++----
 .../dataflow/source-sink-tests/local-flow.ql  | 16 +++++-
 .../dataflow/source-sink-tests/remote-flow.ql | 32 +++++++++--
 .../source-sink-tests/sources-and-sinks.cpp   | 14 +++++
 5 files changed, 101 insertions(+), 17 deletions(-)
 rename cpp/ql/lib/semmle/code/cpp/models/implementations/{Sscanf.qll => Scanf.qll} (56%)

diff --git a/cpp/ql/lib/semmle/code/cpp/models/Models.qll b/cpp/ql/lib/semmle/code/cpp/models/Models.qll
index 3eed4341cce..1318fd37b7f 100644
--- a/cpp/ql/lib/semmle/code/cpp/models/Models.qll
+++ b/cpp/ql/lib/semmle/code/cpp/models/Models.qll
@@ -27,7 +27,7 @@ private import implementations.StdString
 private import implementations.Swap
 private import implementations.GetDelim
 private import implementations.SmartPointer
-private import implementations.Sscanf
+private import implementations.Scanf
 private import implementations.Send
 private import implementations.Recv
 private import implementations.Accept
diff --git a/cpp/ql/lib/semmle/code/cpp/models/implementations/Sscanf.qll b/cpp/ql/lib/semmle/code/cpp/models/implementations/Scanf.qll
similarity index 56%
rename from cpp/ql/lib/semmle/code/cpp/models/implementations/Sscanf.qll
rename to cpp/ql/lib/semmle/code/cpp/models/implementations/Scanf.qll
index 42166ae9baa..6773f1bb519 100644
--- a/cpp/ql/lib/semmle/code/cpp/models/implementations/Sscanf.qll
+++ b/cpp/ql/lib/semmle/code/cpp/models/implementations/Scanf.qll
@@ -1,6 +1,6 @@
 /**
- * Provides implementation classes modeling `sscanf`, `fscanf` and various similar
- * functions. See `semmle.code.cpp.models.Models` for usage information.
+ * Provides implementation classes modeling the `scanf` family of functions.
+ * See `semmle.code.cpp.models.Models` for usage information.
  */
 
 import semmle.code.cpp.Function
@@ -9,18 +9,15 @@ import semmle.code.cpp.models.interfaces.ArrayFunction
 import semmle.code.cpp.models.interfaces.Taint
 import semmle.code.cpp.models.interfaces.Alias
 import semmle.code.cpp.models.interfaces.SideEffect
+import semmle.code.cpp.models.interfaces.FlowSource
 
 /**
- * The standard function `sscanf`, `fscanf` and its assorted variants
+ * The `scanf` family of functions.
  */
-private class SscanfModel extends ArrayFunction, TaintFunction, AliasFunction, SideEffectFunction {
-  SscanfModel() { this instanceof Sscanf or this instanceof Fscanf or this instanceof Snscanf }
-
+abstract private class ScanfFunctionModel extends ArrayFunction, TaintFunction, AliasFunction,
+  SideEffectFunction {
   override predicate hasArrayWithNullTerminator(int bufParam) {
     bufParam = this.(ScanfFunction).getFormatParameterIndex()
-    or
-    not this instanceof Fscanf and
-    bufParam = this.(ScanfFunction).getInputParameterIndex()
   }
 
   override predicate hasArrayInput(int bufParam) { this.hasArrayWithNullTerminator(bufParam) }
@@ -36,7 +33,7 @@ private class SscanfModel extends ArrayFunction, TaintFunction, AliasFunction, S
     )
   }
 
-  private int getArgsStartPosition() { result = this.getNumberOfParameters() }
+  int getArgsStartPosition() { result = this.getNumberOfParameters() }
 
   override predicate hasTaintFlow(FunctionInput input, FunctionOutput output) {
     input.isParameterDeref(this.(ScanfFunction).getInputParameterIndex()) and
@@ -70,3 +67,40 @@ private class SscanfModel extends ArrayFunction, TaintFunction, AliasFunction, S
       ]
   }
 }
+
+/**
+ * The standard function `scanf` and its assorted variants
+ */
+private class ScanfModel extends ScanfFunctionModel, LocalFlowSourceFunction {
+  ScanfModel() { this instanceof Scanf }
+
+  override predicate hasLocalFlowSource(FunctionOutput output, string description) {
+    output.isParameterDeref(any(int i | i >= this.getArgsStartPosition())) and
+    description = "Value read by " + this.getName()
+  }
+}
+
+/**
+ * The standard function `fscanf` and its assorted variants
+ */
+private class FscanfModel extends ScanfFunctionModel, RemoteFlowSourceFunction {
+  FscanfModel() { this instanceof Fscanf }
+
+  override predicate hasRemoteFlowSource(FunctionOutput output, string description) {
+    output.isParameterDeref(any(int i | i >= this.getArgsStartPosition())) and
+    description = "Value read by " + this.getName()
+  }
+}
+
+/**
+ * The standard function `sscanf` and its assorted variants
+ */
+private class SscanfModel extends ScanfFunctionModel {
+  SscanfModel() { this instanceof Sscanf or this instanceof Snscanf }
+
+  override predicate hasArrayWithNullTerminator(int bufParam) {
+    super.hasArrayWithNullTerminator(bufParam)
+    or
+    bufParam = this.(ScanfFunction).getInputParameterIndex()
+  }
+}
diff --git a/cpp/ql/test/library-tests/dataflow/source-sink-tests/local-flow.ql b/cpp/ql/test/library-tests/dataflow/source-sink-tests/local-flow.ql
index c5e2acfae1e..cb687f1d3bf 100644
--- a/cpp/ql/test/library-tests/dataflow/source-sink-tests/local-flow.ql
+++ b/cpp/ql/test/library-tests/dataflow/source-sink-tests/local-flow.ql
@@ -11,8 +11,20 @@ class LocalFlowSourceTest extends InlineExpectationsTest {
 
   override predicate hasActualResult(Location location, string element, string tag, string value) {
     tag = "local_source" and
-    value = "" and
-    exists(LocalFlowSource node |
+    exists(LocalFlowSource node, int n |
+      n =
+        strictcount(LocalFlowSource otherNode |
+          node.getLocation().getStartLine() = otherNode.getLocation().getStartLine()
+        ) and
+      (
+        n = 1 and value = ""
+        or
+        // If there is more than one node on this line
+        // we specify the location explicitly.
+        n > 1 and
+        value =
+          node.getLocation().getStartLine().toString() + ":" + node.getLocation().getStartColumn()
+      ) and
       location = node.getLocation() and
       element = node.toString()
     )
diff --git a/cpp/ql/test/library-tests/dataflow/source-sink-tests/remote-flow.ql b/cpp/ql/test/library-tests/dataflow/source-sink-tests/remote-flow.ql
index 08cca02f397..703b62b9ffc 100644
--- a/cpp/ql/test/library-tests/dataflow/source-sink-tests/remote-flow.ql
+++ b/cpp/ql/test/library-tests/dataflow/source-sink-tests/remote-flow.ql
@@ -11,8 +11,20 @@ class RemoteFlowSourceTest extends InlineExpectationsTest {
 
   override predicate hasActualResult(Location location, string element, string tag, string value) {
     tag = "remote_source" and
-    value = "" and
-    exists(RemoteFlowSource node |
+    exists(RemoteFlowSource node, int n |
+      n =
+        strictcount(RemoteFlowSource otherNode |
+          node.getLocation().getStartLine() = otherNode.getLocation().getStartLine()
+        ) and
+      (
+        n = 1 and value = ""
+        or
+        // If there is more than one node on this line
+        // we specify the location explicitly.
+        n > 1 and
+        value =
+          node.getLocation().getStartLine().toString() + ":" + node.getLocation().getStartColumn()
+      ) and
       location = node.getLocation() and
       element = node.toString()
     )
@@ -26,8 +38,20 @@ class RemoteFlowSinkTest extends InlineExpectationsTest {
 
   override predicate hasActualResult(Location location, string element, string tag, string value) {
     tag = "remote_sink" and
-    value = "" and
-    exists(RemoteFlowSink node |
+    exists(RemoteFlowSink node, int n |
+      n =
+        strictcount(RemoteFlowSink otherNode |
+          node.getLocation().getStartLine() = otherNode.getLocation().getStartLine()
+        ) and
+      (
+        n = 1 and value = ""
+        or
+        // If there is more than one node on this line
+        // we specify the location explicitly.
+        n > 1 and
+        value =
+          node.getLocation().getStartLine().toString() + ":" + node.getLocation().getStartColumn()
+      ) and
       location = node.getLocation() and
       element = node.toString()
     )
diff --git a/cpp/ql/test/library-tests/dataflow/source-sink-tests/sources-and-sinks.cpp b/cpp/ql/test/library-tests/dataflow/source-sink-tests/sources-and-sinks.cpp
index 11283473802..6968a7738e9 100644
--- a/cpp/ql/test/library-tests/dataflow/source-sink-tests/sources-and-sinks.cpp
+++ b/cpp/ql/test/library-tests/dataflow/source-sink-tests/sources-and-sinks.cpp
@@ -26,3 +26,17 @@ void test_readv_and_writev(iovec* iovs) {
   readv(0, iovs, 16); // $ remote_source
   writev(0, iovs, 16); // $ remote_sink
 }
+
+struct FILE;
+
+int fscanf(FILE *stream, const char *format, ...);
+int scanf(const char *format, ...);
+
+void test_scanf(FILE *stream, int *d, char *buf) {
+  scanf(""); // Not a local source, as there are no output arguments
+  fscanf(stream, ""); // Not a remote source, as there are no output arguments
+  scanf("%d", d); // $ local_source
+  fscanf(stream, "%d", d);  // $ remote_source
+  scanf("%d %s", d, buf); // $ local_source=40:18 local_source=40:21
+  fscanf(stream, "%d %s", d, buf);  // $ remote_source=41:27 remote_source=41:30
+}

From b216c79992c0675ffe98d0db5613ff646237a899 Mon Sep 17 00:00:00 2001
From: Jeroen Ketema <jketema@github.com>
Date: Thu, 8 Dec 2022 15:18:42 +0100
Subject: [PATCH 1156/1420] C++: Accept test changes

---
 .../CWE-022/semmle/tests/TaintedPath.expected |  4 +-
 .../semmle/tests/UnboundedWrite.expected      | 40 -------------------
 2 files changed, 1 insertion(+), 43 deletions(-)

diff --git a/cpp/ql/test/query-tests/Security/CWE/CWE-022/semmle/tests/TaintedPath.expected b/cpp/ql/test/query-tests/Security/CWE/CWE-022/semmle/tests/TaintedPath.expected
index 2306a3dc384..45ca662513d 100644
--- a/cpp/ql/test/query-tests/Security/CWE/CWE-022/semmle/tests/TaintedPath.expected
+++ b/cpp/ql/test/query-tests/Security/CWE/CWE-022/semmle/tests/TaintedPath.expected
@@ -1,7 +1,6 @@
 edges
 | test.c:9:23:9:26 | argv | test.c:17:11:17:18 | fileName indirection |
 | test.c:31:22:31:25 | argv | test.c:32:11:32:18 | fileName indirection |
-| test.c:37:17:37:24 | fileName | test.c:38:11:38:18 | fileName indirection |
 | test.c:37:17:37:24 | scanf output argument | test.c:38:11:38:18 | fileName indirection |
 | test.c:43:17:43:24 | fileName | test.c:44:11:44:18 | fileName indirection |
 | test.c:43:17:43:24 | scanf output argument | test.c:44:11:44:18 | fileName indirection |
@@ -10,7 +9,6 @@ nodes
 | test.c:17:11:17:18 | fileName indirection | semmle.label | fileName indirection |
 | test.c:31:22:31:25 | argv | semmle.label | argv |
 | test.c:32:11:32:18 | fileName indirection | semmle.label | fileName indirection |
-| test.c:37:17:37:24 | fileName | semmle.label | fileName |
 | test.c:37:17:37:24 | scanf output argument | semmle.label | scanf output argument |
 | test.c:38:11:38:18 | fileName indirection | semmle.label | fileName indirection |
 | test.c:43:17:43:24 | fileName | semmle.label | fileName |
@@ -20,5 +18,5 @@ subpaths
 #select
 | test.c:17:11:17:18 | fileName | test.c:9:23:9:26 | argv | test.c:17:11:17:18 | fileName indirection | This argument to a file access function is derived from $@ and then passed to fopen(filename). | test.c:9:23:9:26 | argv | user input (argv) |
 | test.c:32:11:32:18 | fileName | test.c:31:22:31:25 | argv | test.c:32:11:32:18 | fileName indirection | This argument to a file access function is derived from $@ and then passed to fopen(filename). | test.c:31:22:31:25 | argv | user input (argv) |
-| test.c:38:11:38:18 | fileName | test.c:37:17:37:24 | fileName | test.c:38:11:38:18 | fileName indirection | This argument to a file access function is derived from $@ and then passed to fopen(filename). | test.c:37:17:37:24 | fileName | user input (scanf) |
+| test.c:38:11:38:18 | fileName | test.c:37:17:37:24 | scanf output argument | test.c:38:11:38:18 | fileName indirection | This argument to a file access function is derived from $@ and then passed to fopen(filename). | test.c:37:17:37:24 | fileName | user input (scanf) |
 | test.c:44:11:44:18 | fileName | test.c:43:17:43:24 | fileName | test.c:44:11:44:18 | fileName indirection | This argument to a file access function is derived from $@ and then passed to fopen(filename). | test.c:43:17:43:24 | fileName | user input (scanf) |
diff --git a/cpp/ql/test/query-tests/Security/CWE/CWE-120/semmle/tests/UnboundedWrite.expected b/cpp/ql/test/query-tests/Security/CWE/CWE-120/semmle/tests/UnboundedWrite.expected
index 2c3e9243cf1..170593664f2 100644
--- a/cpp/ql/test/query-tests/Security/CWE/CWE-120/semmle/tests/UnboundedWrite.expected
+++ b/cpp/ql/test/query-tests/Security/CWE/CWE-120/semmle/tests/UnboundedWrite.expected
@@ -7,42 +7,12 @@ edges
 | tests.c:28:22:28:25 | argv | tests.c:28:22:28:28 | access to array |
 | tests.c:28:22:28:25 | argv | tests.c:28:22:28:28 | access to array indirection |
 | tests.c:28:22:28:25 | argv | tests.c:28:22:28:28 | access to array indirection |
-| tests.c:28:22:28:25 | argv | tests.c:31:15:31:23 | buffer100 |
-| tests.c:28:22:28:25 | argv | tests.c:31:15:31:23 | buffer100 |
-| tests.c:28:22:28:25 | argv | tests.c:31:15:31:23 | buffer100 indirection |
-| tests.c:28:22:28:25 | argv | tests.c:31:15:31:23 | buffer100 indirection |
-| tests.c:28:22:28:25 | argv | tests.c:33:21:33:29 | buffer100 |
-| tests.c:28:22:28:25 | argv | tests.c:33:21:33:29 | buffer100 |
-| tests.c:28:22:28:25 | argv | tests.c:33:21:33:29 | buffer100 indirection |
-| tests.c:28:22:28:25 | argv | tests.c:33:21:33:29 | buffer100 indirection |
 | tests.c:29:28:29:31 | argv | tests.c:29:28:29:34 | access to array |
 | tests.c:29:28:29:31 | argv | tests.c:29:28:29:34 | access to array |
 | tests.c:29:28:29:31 | argv | tests.c:29:28:29:34 | access to array |
 | tests.c:29:28:29:31 | argv | tests.c:29:28:29:34 | access to array |
 | tests.c:29:28:29:31 | argv | tests.c:29:28:29:34 | access to array indirection |
 | tests.c:29:28:29:31 | argv | tests.c:29:28:29:34 | access to array indirection |
-| tests.c:29:28:29:31 | argv | tests.c:31:15:31:23 | buffer100 |
-| tests.c:29:28:29:31 | argv | tests.c:31:15:31:23 | buffer100 |
-| tests.c:29:28:29:31 | argv | tests.c:31:15:31:23 | buffer100 indirection |
-| tests.c:29:28:29:31 | argv | tests.c:31:15:31:23 | buffer100 indirection |
-| tests.c:29:28:29:31 | argv | tests.c:33:21:33:29 | buffer100 |
-| tests.c:29:28:29:31 | argv | tests.c:33:21:33:29 | buffer100 |
-| tests.c:29:28:29:31 | argv | tests.c:33:21:33:29 | buffer100 indirection |
-| tests.c:29:28:29:31 | argv | tests.c:33:21:33:29 | buffer100 indirection |
-| tests.c:31:15:31:23 | array to pointer conversion | tests.c:31:15:31:23 | buffer100 |
-| tests.c:31:15:31:23 | array to pointer conversion | tests.c:31:15:31:23 | buffer100 indirection |
-| tests.c:31:15:31:23 | array to pointer conversion | tests.c:33:21:33:29 | buffer100 |
-| tests.c:31:15:31:23 | array to pointer conversion | tests.c:33:21:33:29 | buffer100 indirection |
-| tests.c:31:15:31:23 | buffer100 | tests.c:31:15:31:23 | buffer100 |
-| tests.c:31:15:31:23 | buffer100 | tests.c:31:15:31:23 | buffer100 indirection |
-| tests.c:31:15:31:23 | buffer100 | tests.c:33:21:33:29 | buffer100 |
-| tests.c:31:15:31:23 | buffer100 | tests.c:33:21:33:29 | buffer100 indirection |
-| tests.c:31:15:31:23 | scanf output argument | tests.c:33:21:33:29 | buffer100 |
-| tests.c:31:15:31:23 | scanf output argument | tests.c:33:21:33:29 | buffer100 indirection |
-| tests.c:33:21:33:29 | array to pointer conversion | tests.c:33:21:33:29 | buffer100 |
-| tests.c:33:21:33:29 | array to pointer conversion | tests.c:33:21:33:29 | buffer100 indirection |
-| tests.c:33:21:33:29 | buffer100 | tests.c:33:21:33:29 | buffer100 |
-| tests.c:33:21:33:29 | buffer100 | tests.c:33:21:33:29 | buffer100 indirection |
 | tests.c:34:10:34:13 | argv | tests.c:34:10:34:16 | (const char *)... |
 | tests.c:34:10:34:13 | argv | tests.c:34:10:34:16 | (const char *)... |
 | tests.c:34:10:34:13 | argv | tests.c:34:10:34:16 | access to array |
@@ -65,16 +35,11 @@ nodes
 | tests.c:29:28:29:34 | access to array | semmle.label | access to array |
 | tests.c:29:28:29:34 | access to array indirection | semmle.label | access to array indirection |
 | tests.c:31:15:31:23 | array to pointer conversion | semmle.label | array to pointer conversion |
-| tests.c:31:15:31:23 | array to pointer conversion | semmle.label | array to pointer conversion |
 | tests.c:31:15:31:23 | buffer100 | semmle.label | buffer100 |
 | tests.c:31:15:31:23 | buffer100 | semmle.label | buffer100 |
-| tests.c:31:15:31:23 | buffer100 indirection | semmle.label | buffer100 indirection |
-| tests.c:31:15:31:23 | scanf output argument | semmle.label | scanf output argument |
-| tests.c:33:21:33:29 | array to pointer conversion | semmle.label | array to pointer conversion |
 | tests.c:33:21:33:29 | array to pointer conversion | semmle.label | array to pointer conversion |
 | tests.c:33:21:33:29 | buffer100 | semmle.label | buffer100 |
 | tests.c:33:21:33:29 | buffer100 | semmle.label | buffer100 |
-| tests.c:33:21:33:29 | buffer100 indirection | semmle.label | buffer100 indirection |
 | tests.c:34:10:34:13 | argv | semmle.label | argv |
 | tests.c:34:10:34:13 | argv | semmle.label | argv |
 | tests.c:34:10:34:16 | (const char *)... | semmle.label | (const char *)... |
@@ -84,11 +49,6 @@ nodes
 #select
 | tests.c:28:3:28:9 | call to sprintf | tests.c:28:22:28:25 | argv | tests.c:28:22:28:28 | access to array | This 'call to sprintf' with input from $@ may overflow the destination. | tests.c:28:22:28:25 | argv | argv |
 | tests.c:29:3:29:9 | call to sprintf | tests.c:29:28:29:31 | argv | tests.c:29:28:29:34 | access to array | This 'call to sprintf' with input from $@ may overflow the destination. | tests.c:29:28:29:31 | argv | argv |
-| tests.c:31:15:31:23 | buffer100 | tests.c:28:22:28:25 | argv | tests.c:31:15:31:23 | buffer100 | This 'scanf string argument' with input from $@ may overflow the destination. | tests.c:28:22:28:25 | argv | argv |
-| tests.c:31:15:31:23 | buffer100 | tests.c:29:28:29:31 | argv | tests.c:31:15:31:23 | buffer100 | This 'scanf string argument' with input from $@ may overflow the destination. | tests.c:29:28:29:31 | argv | argv |
 | tests.c:31:15:31:23 | buffer100 | tests.c:31:15:31:23 | buffer100 | tests.c:31:15:31:23 | buffer100 | This 'scanf string argument' with input from $@ may overflow the destination. | tests.c:31:15:31:23 | buffer100 | buffer100 |
-| tests.c:33:21:33:29 | buffer100 | tests.c:28:22:28:25 | argv | tests.c:33:21:33:29 | buffer100 | This 'scanf string argument' with input from $@ may overflow the destination. | tests.c:28:22:28:25 | argv | argv |
-| tests.c:33:21:33:29 | buffer100 | tests.c:29:28:29:31 | argv | tests.c:33:21:33:29 | buffer100 | This 'scanf string argument' with input from $@ may overflow the destination. | tests.c:29:28:29:31 | argv | argv |
-| tests.c:33:21:33:29 | buffer100 | tests.c:31:15:31:23 | buffer100 | tests.c:33:21:33:29 | buffer100 | This 'scanf string argument' with input from $@ may overflow the destination. | tests.c:31:15:31:23 | buffer100 | buffer100 |
 | tests.c:33:21:33:29 | buffer100 | tests.c:33:21:33:29 | buffer100 | tests.c:33:21:33:29 | buffer100 | This 'scanf string argument' with input from $@ may overflow the destination. | tests.c:33:21:33:29 | buffer100 | buffer100 |
 | tests.c:34:25:34:33 | buffer100 | tests.c:34:10:34:13 | argv | tests.c:34:10:34:16 | access to array | This 'sscanf string argument' with input from $@ may overflow the destination. | tests.c:34:10:34:13 | argv | argv |

From 33fa76f91122fd9a811be4d11ba0046acd0aa366 Mon Sep 17 00:00:00 2001
From: Jeroen Ketema <jketema@github.com>
Date: Thu, 8 Dec 2022 15:20:54 +0100
Subject: [PATCH 1157/1420] C++: Add change note

---
 cpp/ql/lib/change-notes/2022-12-08-support-scanf-dataflow.md | 4 ++++
 1 file changed, 4 insertions(+)
 create mode 100644 cpp/ql/lib/change-notes/2022-12-08-support-scanf-dataflow.md

diff --git a/cpp/ql/lib/change-notes/2022-12-08-support-scanf-dataflow.md b/cpp/ql/lib/change-notes/2022-12-08-support-scanf-dataflow.md
new file mode 100644
index 00000000000..f8382f84c0f
--- /dev/null
+++ b/cpp/ql/lib/change-notes/2022-12-08-support-scanf-dataflow.md
@@ -0,0 +1,4 @@
+---
+category: minorAnalysis
+---
+* The `scanf` and `fscanf` functions and their variants are now recognized as flow sources.

From a79126268ca3710480ae7ac3643a7fb87c0d8c53 Mon Sep 17 00:00:00 2001
From: Chris Smowton <smowton@github.com>
Date: Thu, 8 Dec 2022 14:39:57 +0000
Subject: [PATCH 1158/1420] Override modality when needed

In particular when generating an implementation based on an abstract prototype, the result is final, and an interface forwarder is open / Java's default modality.
---
 .../src/main/kotlin/KotlinFileExtractor.kt                 | 7 ++++---
 1 file changed, 4 insertions(+), 3 deletions(-)

diff --git a/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt b/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt
index 1d5720f8c44..10d1db8787a 100644
--- a/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt
+++ b/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt
@@ -891,7 +891,7 @@ open class KotlinFileExtractor(
                 f.realOverrideTarget.let { it != f && (it as? IrSimpleFunction)?.modality != Modality.ABSTRACT && isKotlinDefinedInterface(it.parentClassOrNull) }
 
     private fun makeInterfaceForwarder(f: IrFunction, parentId: Label<out DbReftype>, extractBody: Boolean, extractMethodAndParameterTypeAccesses: Boolean, typeSubstitution: TypeSubstitution?, classTypeArgsIncludingOuterClasses: List<IrTypeArgument>?) =
-        forceExtractFunction(f, parentId, extractBody = false, extractMethodAndParameterTypeAccesses, typeSubstitution, classTypeArgsIncludingOuterClasses, overriddenAttributes = OverriddenFunctionAttributes(visibility = DescriptorVisibilities.PUBLIC)).also { functionId ->
+        forceExtractFunction(f, parentId, extractBody = false, extractMethodAndParameterTypeAccesses, typeSubstitution, classTypeArgsIncludingOuterClasses, overriddenAttributes = OverriddenFunctionAttributes(visibility = DescriptorVisibilities.PUBLIC, modality = Modality.OPEN)).also { functionId ->
             tw.writeCompiler_generated(functionId, CompilerGeneratedKinds.INTERFACE_FORWARDER.kind)
             if (extractBody) {
                 val realFunctionLocId = tw.getLocation(f)
@@ -1244,7 +1244,7 @@ open class KotlinFileExtractor(
                     addModifiers(id, "suspend")
                 }
                 if (f.symbol !is IrConstructorSymbol) {
-                    when((f as? IrSimpleFunction)?.modality) {
+                    when(overriddenAttributes?.modality ?: (f as? IrSimpleFunction)?.modality) {
                         Modality.ABSTRACT -> addModifiers(id, "abstract")
                         Modality.FINAL -> addModifiers(id, "final")
                         else -> Unit
@@ -5311,7 +5311,7 @@ open class KotlinFileExtractor(
                     // we would need to compose generic type substitutions -- for example, if we're implementing
                     // T UnaryOperator<T>.apply(T t) here, we would need to compose substitutions so we can implement
                     // the real underlying R Function<T, R>.apply(T t).
-                    forceExtractFunction(samMember, classId, extractBody = false, extractMethodAndParameterTypeAccesses = true, typeSub, classTypeArgs, overriddenAttributes = OverriddenFunctionAttributes(id = ids.function, sourceLoc = tw.getLocation(e)))
+                    forceExtractFunction(samMember, classId, extractBody = false, extractMethodAndParameterTypeAccesses = true, typeSub, classTypeArgs, overriddenAttributes = OverriddenFunctionAttributes(id = ids.function, sourceLoc = tw.getLocation(e), modality = Modality.FINAL))
 
                     addModifiers(ids.function, "override")
                     if (st.isSuspendFunctionOrKFunction()) {
@@ -5536,6 +5536,7 @@ open class KotlinFileExtractor(
         val typeParameters: List<IrTypeParameter>? = null,
         val isStatic: Boolean? = null,
         val visibility: DescriptorVisibility? = null,
+        val modality: Modality? = null,
     )
 
     private fun peekDeclStackAsDeclarationParent(elementToReportOn: IrElement): IrDeclarationParent? {

From d0a2c1c9b6ab5d2947c8af9c7856593f21da6c46 Mon Sep 17 00:00:00 2001
From: Chris Smowton <smowton@github.com>
Date: Thu, 8 Dec 2022 14:44:43 +0000
Subject: [PATCH 1159/1420] Accept test changes

---
 .../library-tests/exprs/funcExprs.expected    | 140 +++++++++---------
 .../visibility.expected                       |   4 +
 .../library-tests/methods/methods.expected    |  76 +++++-----
 3 files changed, 112 insertions(+), 108 deletions(-)

diff --git a/java/ql/test/kotlin/library-tests/exprs/funcExprs.expected b/java/ql/test/kotlin/library-tests/exprs/funcExprs.expected
index 81ea4c51841..b79725a80e3 100644
--- a/java/ql/test/kotlin/library-tests/exprs/funcExprs.expected
+++ b/java/ql/test/kotlin/library-tests/exprs/funcExprs.expected
@@ -43,41 +43,41 @@ memberRefExprs
 | samConversion.kt:5:27:5:31 | ...::... | samConversion.kt:5:27:5:31 | invoke | invoke(int,int) | samConversion.kt:5:27:5:31 | new Function2<Integer,Integer,Unit>(...) { ... } |
 | samConversion.kt:41:13:41:16 | ...::... | samConversion.kt:41:13:41:16 | invoke | invoke(java.lang.Object[]) | samConversion.kt:41:13:41:16 | new FunctionN<Boolean>(...) { ... } |
 lambda_modifiers
-| delegatedProperties.kt:6:32:9:9 | ...->... | delegatedProperties.kt:6:32:9:9 | invoke | override, public |
-| funcExprs.kt:22:26:22:33 | ...->... | funcExprs.kt:22:26:22:33 | invoke | override, public |
-| funcExprs.kt:23:26:23:33 | ...->... | funcExprs.kt:23:26:23:33 | invoke | override, public |
-| funcExprs.kt:24:26:24:33 | ...->... | funcExprs.kt:24:26:24:33 | invoke | override, public |
-| funcExprs.kt:25:29:25:38 | ...->... | funcExprs.kt:25:29:25:38 | invoke | override, public |
-| funcExprs.kt:26:29:26:34 | ...->... | funcExprs.kt:26:29:26:34 | invoke | override, public |
-| funcExprs.kt:27:29:27:42 | ...->... | funcExprs.kt:27:29:27:42 | invoke | override, public |
-| funcExprs.kt:29:29:29:37 | ...->... | funcExprs.kt:29:29:29:37 | invoke | override, public |
-| funcExprs.kt:30:28:30:50 | ...->... | funcExprs.kt:30:28:30:50 | invoke | override, public |
-| funcExprs.kt:31:28:31:40 | ...->... | funcExprs.kt:31:28:31:40 | invoke | override, public |
-| funcExprs.kt:32:28:32:44 | ...->... | funcExprs.kt:32:28:32:44 | invoke | override, public |
-| funcExprs.kt:33:28:33:51 | ...->... | funcExprs.kt:33:28:33:51 | invoke | override, public |
-| funcExprs.kt:33:37:33:47 | ...->... | funcExprs.kt:33:37:33:47 | invoke | override, public |
-| funcExprs.kt:35:29:35:112 | ...->... | funcExprs.kt:35:29:35:112 | invoke | override, public |
+| delegatedProperties.kt:6:32:9:9 | ...->... | delegatedProperties.kt:6:32:9:9 | invoke | final, override, public |
+| funcExprs.kt:22:26:22:33 | ...->... | funcExprs.kt:22:26:22:33 | invoke | final, override, public |
+| funcExprs.kt:23:26:23:33 | ...->... | funcExprs.kt:23:26:23:33 | invoke | final, override, public |
+| funcExprs.kt:24:26:24:33 | ...->... | funcExprs.kt:24:26:24:33 | invoke | final, override, public |
+| funcExprs.kt:25:29:25:38 | ...->... | funcExprs.kt:25:29:25:38 | invoke | final, override, public |
+| funcExprs.kt:26:29:26:34 | ...->... | funcExprs.kt:26:29:26:34 | invoke | final, override, public |
+| funcExprs.kt:27:29:27:42 | ...->... | funcExprs.kt:27:29:27:42 | invoke | final, override, public |
+| funcExprs.kt:29:29:29:37 | ...->... | funcExprs.kt:29:29:29:37 | invoke | final, override, public |
+| funcExprs.kt:30:28:30:50 | ...->... | funcExprs.kt:30:28:30:50 | invoke | final, override, public |
+| funcExprs.kt:31:28:31:40 | ...->... | funcExprs.kt:31:28:31:40 | invoke | final, override, public |
+| funcExprs.kt:32:28:32:44 | ...->... | funcExprs.kt:32:28:32:44 | invoke | final, override, public |
+| funcExprs.kt:33:28:33:51 | ...->... | funcExprs.kt:33:28:33:51 | invoke | final, override, public |
+| funcExprs.kt:33:37:33:47 | ...->... | funcExprs.kt:33:37:33:47 | invoke | final, override, public |
+| funcExprs.kt:35:29:35:112 | ...->... | funcExprs.kt:35:29:35:112 | invoke | final, override, public |
+| funcExprs.kt:36:29:36:117 | ...->... | funcExprs.kt:36:29:36:117 | invoke | final, public |
 | funcExprs.kt:36:29:36:117 | ...->... | funcExprs.kt:36:29:36:117 | invoke | override, public |
-| funcExprs.kt:36:29:36:117 | ...->... | funcExprs.kt:36:29:36:117 | invoke | public |
-| funcExprs.kt:75:12:75:22 | ...->... | funcExprs.kt:75:12:75:22 | invoke | override, public |
-| funcExprs.kt:83:31:83:51 | ...->... | funcExprs.kt:83:31:83:51 | invoke | override, public |
-| funcExprs.kt:86:39:86:59 | ...->... | funcExprs.kt:86:39:86:59 | invoke | override, public, suspend |
+| funcExprs.kt:75:12:75:22 | ...->... | funcExprs.kt:75:12:75:22 | invoke | final, override, public |
+| funcExprs.kt:83:31:83:51 | ...->... | funcExprs.kt:83:31:83:51 | invoke | final, override, public |
+| funcExprs.kt:86:39:86:59 | ...->... | funcExprs.kt:86:39:86:59 | invoke | final, override, public, suspend |
+| funcExprs.kt:90:15:90:69 | ...->... | funcExprs.kt:90:15:90:69 | invoke | final, public |
 | funcExprs.kt:90:15:90:69 | ...->... | funcExprs.kt:90:15:90:69 | invoke | override, public |
-| funcExprs.kt:90:15:90:69 | ...->... | funcExprs.kt:90:15:90:69 | invoke | public |
-| funcExprs.kt:94:15:94:67 | ...->... | funcExprs.kt:94:15:94:67 | invoke | override, public, suspend |
-| samConversion.kt:2:31:2:45 | ...->... | samConversion.kt:2:31:2:45 | invoke | override, public |
-| samConversion.kt:4:27:4:42 | ...->... | samConversion.kt:4:27:4:42 | invoke | override, public |
-| samConversion.kt:7:29:7:46 | ...->... | samConversion.kt:7:29:7:46 | invoke | override, public |
-| samConversion.kt:9:33:11:5 | ...->... | samConversion.kt:9:33:11:5 | invoke | override, public |
-| samConversion.kt:11:12:13:5 | ...->... | samConversion.kt:11:12:13:5 | invoke | override, public |
+| funcExprs.kt:94:15:94:67 | ...->... | funcExprs.kt:94:15:94:67 | invoke | final, override, public, suspend |
+| samConversion.kt:2:31:2:45 | ...->... | samConversion.kt:2:31:2:45 | invoke | final, override, public |
+| samConversion.kt:4:27:4:42 | ...->... | samConversion.kt:4:27:4:42 | invoke | final, override, public |
+| samConversion.kt:7:29:7:46 | ...->... | samConversion.kt:7:29:7:46 | invoke | final, override, public |
+| samConversion.kt:9:33:11:5 | ...->... | samConversion.kt:9:33:11:5 | invoke | final, override, public |
+| samConversion.kt:11:12:13:5 | ...->... | samConversion.kt:11:12:13:5 | invoke | final, override, public |
+| samConversion.kt:43:31:45:68 | ...->... | samConversion.kt:43:31:45:68 | invoke | final, public |
 | samConversion.kt:43:31:45:68 | ...->... | samConversion.kt:43:31:45:68 | invoke | override, public |
-| samConversion.kt:43:31:45:68 | ...->... | samConversion.kt:43:31:45:68 | invoke | public |
-| samConversion.kt:46:32:46:44 | ...->... | samConversion.kt:46:32:46:44 | invoke | override, public |
-| samConversion.kt:58:30:58:45 | ...->... | samConversion.kt:58:30:58:45 | invoke | override, public, suspend |
+| samConversion.kt:46:32:46:44 | ...->... | samConversion.kt:46:32:46:44 | invoke | final, override, public |
+| samConversion.kt:58:30:58:45 | ...->... | samConversion.kt:58:30:58:45 | invoke | final, override, public, suspend |
 anon_class_member_modifiers
 | delegatedProperties.kt:6:24:9:9 | new KProperty0<Integer>(...) { ... } | delegatedProperties.kt:6:24:9:9 | get | override, public |
 | delegatedProperties.kt:6:24:9:9 | new KProperty0<Integer>(...) { ... } | delegatedProperties.kt:6:24:9:9 | invoke | override, public |
-| delegatedProperties.kt:6:32:9:9 | new Function0<Integer>(...) { ... } | delegatedProperties.kt:6:32:9:9 | invoke | override, public |
+| delegatedProperties.kt:6:32:9:9 | new Function0<Integer>(...) { ... } | delegatedProperties.kt:6:32:9:9 | invoke | final, override, public |
 | delegatedProperties.kt:19:31:19:51 | new KMutableProperty0<Integer>(...) { ... } | delegatedProperties.kt:19:31:19:51 | get | override, public |
 | delegatedProperties.kt:19:31:19:51 | new KMutableProperty0<Integer>(...) { ... } | delegatedProperties.kt:19:31:19:51 | get | override, public |
 | delegatedProperties.kt:19:31:19:51 | new KMutableProperty0<Integer>(...) { ... } | delegatedProperties.kt:19:31:19:51 | invoke | override, public |
@@ -86,8 +86,8 @@ anon_class_member_modifiers
 | delegatedProperties.kt:19:31:19:51 | new KMutableProperty0<Integer>(...) { ... } | delegatedProperties.kt:19:31:19:51 | set | override, public |
 | delegatedProperties.kt:23:26:23:31 | new KProperty0<String>(...) { ... } | delegatedProperties.kt:23:26:23:31 | get | override, public |
 | delegatedProperties.kt:23:26:23:31 | new KProperty0<String>(...) { ... } | delegatedProperties.kt:23:26:23:31 | invoke | override, public |
-| delegatedProperties.kt:25:64:31:9 | new ReadWriteProperty<Object,Integer>(...) { ... } | delegatedProperties.kt:26:13:26:28 | getCurValue | public |
-| delegatedProperties.kt:25:64:31:9 | new ReadWriteProperty<Object,Integer>(...) { ... } | delegatedProperties.kt:26:13:26:28 | setCurValue | public |
+| delegatedProperties.kt:25:64:31:9 | new ReadWriteProperty<Object,Integer>(...) { ... } | delegatedProperties.kt:26:13:26:28 | getCurValue | final, public |
+| delegatedProperties.kt:25:64:31:9 | new ReadWriteProperty<Object,Integer>(...) { ... } | delegatedProperties.kt:26:13:26:28 | setCurValue | final, public |
 | delegatedProperties.kt:25:64:31:9 | new ReadWriteProperty<Object,Integer>(...) { ... } | delegatedProperties.kt:27:22:27:88 | getValue | override, public |
 | delegatedProperties.kt:25:64:31:9 | new ReadWriteProperty<Object,Integer>(...) { ... } | delegatedProperties.kt:28:22:30:13 | setValue | override, public |
 | delegatedProperties.kt:33:27:33:47 | new KProperty0<Integer>(...) { ... } | delegatedProperties.kt:33:27:33:47 | get | override, public |
@@ -187,22 +187,22 @@ anon_class_member_modifiers
 | delegatedProperties.kt:87:34:87:46 | new KMutableProperty0<Integer>(...) { ... } | delegatedProperties.kt:87:34:87:46 | get | override, public |
 | delegatedProperties.kt:87:34:87:46 | new KMutableProperty0<Integer>(...) { ... } | delegatedProperties.kt:87:34:87:46 | invoke | override, public |
 | delegatedProperties.kt:87:34:87:46 | new KMutableProperty0<Integer>(...) { ... } | delegatedProperties.kt:87:34:87:46 | set | override, public |
-| exprs.kt:195:16:197:9 | new Interface1(...) { ... } | exprs.kt:196:13:196:49 | getA3 | public |
-| funcExprs.kt:22:26:22:33 | new Function0<Integer>(...) { ... } | funcExprs.kt:22:26:22:33 | invoke | override, public |
-| funcExprs.kt:23:26:23:33 | new Function0<Object>(...) { ... } | funcExprs.kt:23:26:23:33 | invoke | override, public |
-| funcExprs.kt:24:26:24:33 | new Function0<Object>(...) { ... } | funcExprs.kt:24:26:24:33 | invoke | override, public |
-| funcExprs.kt:25:29:25:38 | new Function1<Integer,Integer>(...) { ... } | funcExprs.kt:25:29:25:38 | invoke | override, public |
-| funcExprs.kt:26:29:26:34 | new Function1<Integer,Integer>(...) { ... } | funcExprs.kt:26:29:26:34 | invoke | override, public |
-| funcExprs.kt:27:29:27:42 | new Function1<Integer,Integer>(...) { ... } | funcExprs.kt:27:29:27:42 | invoke | override, public |
-| funcExprs.kt:29:29:29:37 | new Function1<Object,Object>(...) { ... } | funcExprs.kt:29:29:29:37 | invoke | override, public |
-| funcExprs.kt:30:28:30:50 | new Function2<Integer,Integer,Integer>(...) { ... } | funcExprs.kt:30:28:30:50 | invoke | override, public |
-| funcExprs.kt:31:28:31:40 | new Function2<Integer,Integer,Integer>(...) { ... } | funcExprs.kt:31:28:31:40 | invoke | override, public |
-| funcExprs.kt:32:28:32:44 | new Function2<Integer,Integer,Integer>(...) { ... } | funcExprs.kt:32:28:32:44 | invoke | override, public |
-| funcExprs.kt:33:28:33:51 | new Function1<Integer,Function1<Integer,Double>>(...) { ... } | funcExprs.kt:33:28:33:51 | invoke | override, public |
-| funcExprs.kt:33:37:33:47 | new Function1<Integer,Double>(...) { ... } | funcExprs.kt:33:37:33:47 | invoke | override, public |
-| funcExprs.kt:35:29:35:112 | new Function22<Integer,Integer,Integer,Integer,Integer,Integer,Integer,Integer,Integer,Integer,Integer,Integer,Integer,Integer,Integer,Integer,Integer,Integer,Integer,Integer,Integer,Integer,Unit>(...) { ... } | funcExprs.kt:35:29:35:112 | invoke | override, public |
+| exprs.kt:195:16:197:9 | new Interface1(...) { ... } | exprs.kt:196:13:196:49 | getA3 | final, public |
+| funcExprs.kt:22:26:22:33 | new Function0<Integer>(...) { ... } | funcExprs.kt:22:26:22:33 | invoke | final, override, public |
+| funcExprs.kt:23:26:23:33 | new Function0<Object>(...) { ... } | funcExprs.kt:23:26:23:33 | invoke | final, override, public |
+| funcExprs.kt:24:26:24:33 | new Function0<Object>(...) { ... } | funcExprs.kt:24:26:24:33 | invoke | final, override, public |
+| funcExprs.kt:25:29:25:38 | new Function1<Integer,Integer>(...) { ... } | funcExprs.kt:25:29:25:38 | invoke | final, override, public |
+| funcExprs.kt:26:29:26:34 | new Function1<Integer,Integer>(...) { ... } | funcExprs.kt:26:29:26:34 | invoke | final, override, public |
+| funcExprs.kt:27:29:27:42 | new Function1<Integer,Integer>(...) { ... } | funcExprs.kt:27:29:27:42 | invoke | final, override, public |
+| funcExprs.kt:29:29:29:37 | new Function1<Object,Object>(...) { ... } | funcExprs.kt:29:29:29:37 | invoke | final, override, public |
+| funcExprs.kt:30:28:30:50 | new Function2<Integer,Integer,Integer>(...) { ... } | funcExprs.kt:30:28:30:50 | invoke | final, override, public |
+| funcExprs.kt:31:28:31:40 | new Function2<Integer,Integer,Integer>(...) { ... } | funcExprs.kt:31:28:31:40 | invoke | final, override, public |
+| funcExprs.kt:32:28:32:44 | new Function2<Integer,Integer,Integer>(...) { ... } | funcExprs.kt:32:28:32:44 | invoke | final, override, public |
+| funcExprs.kt:33:28:33:51 | new Function1<Integer,Function1<Integer,Double>>(...) { ... } | funcExprs.kt:33:28:33:51 | invoke | final, override, public |
+| funcExprs.kt:33:37:33:47 | new Function1<Integer,Double>(...) { ... } | funcExprs.kt:33:37:33:47 | invoke | final, override, public |
+| funcExprs.kt:35:29:35:112 | new Function22<Integer,Integer,Integer,Integer,Integer,Integer,Integer,Integer,Integer,Integer,Integer,Integer,Integer,Integer,Integer,Integer,Integer,Integer,Integer,Integer,Integer,Integer,Unit>(...) { ... } | funcExprs.kt:35:29:35:112 | invoke | final, override, public |
+| funcExprs.kt:36:29:36:117 | new FunctionN<String>(...) { ... } | funcExprs.kt:36:29:36:117 | invoke | final, public |
 | funcExprs.kt:36:29:36:117 | new FunctionN<String>(...) { ... } | funcExprs.kt:36:29:36:117 | invoke | override, public |
-| funcExprs.kt:36:29:36:117 | new FunctionN<String>(...) { ... } | funcExprs.kt:36:29:36:117 | invoke | public |
 | funcExprs.kt:38:26:38:38 | new Function0<Integer>(...) { ... } | funcExprs.kt:38:26:38:38 | invoke | override, public |
 | funcExprs.kt:39:26:39:36 | new Function0<Integer>(...) { ... } | funcExprs.kt:39:26:39:36 | invoke | override, public |
 | funcExprs.kt:40:29:40:41 | new Function1<Integer,Integer>(...) { ... } | funcExprs.kt:40:29:40:41 | invoke | override, public |
@@ -214,37 +214,37 @@ anon_class_member_modifiers
 | funcExprs.kt:46:30:46:41 | new FunctionN<String>(...) { ... } | funcExprs.kt:46:30:46:41 | invoke | override, public |
 | funcExprs.kt:49:26:49:32 | new Function0<Integer>(...) { ... } | funcExprs.kt:49:26:49:32 | invoke | override, public |
 | funcExprs.kt:51:8:51:16 | new Function0<FuncRef>(...) { ... } | funcExprs.kt:51:8:51:16 | invoke | override, public |
-| funcExprs.kt:75:12:75:22 | new Function1<Generic<Generic<Integer>>,String>(...) { ... } | funcExprs.kt:75:12:75:22 | invoke | override, public |
-| funcExprs.kt:83:31:83:51 | new Function1<Integer,String>(...) { ... } | funcExprs.kt:83:31:83:51 | invoke | override, public |
-| funcExprs.kt:86:39:86:59 | new Function1<Integer,String>(...) { ... } | funcExprs.kt:86:39:86:59 | invoke | override, public, suspend |
+| funcExprs.kt:75:12:75:22 | new Function1<Generic<Generic<Integer>>,String>(...) { ... } | funcExprs.kt:75:12:75:22 | invoke | final, override, public |
+| funcExprs.kt:83:31:83:51 | new Function1<Integer,String>(...) { ... } | funcExprs.kt:83:31:83:51 | invoke | final, override, public |
+| funcExprs.kt:86:39:86:59 | new Function1<Integer,String>(...) { ... } | funcExprs.kt:86:39:86:59 | invoke | final, override, public, suspend |
+| funcExprs.kt:90:15:90:69 | new FunctionN<String>(...) { ... } | funcExprs.kt:90:15:90:69 | invoke | final, public |
 | funcExprs.kt:90:15:90:69 | new FunctionN<String>(...) { ... } | funcExprs.kt:90:15:90:69 | invoke | override, public |
-| funcExprs.kt:90:15:90:69 | new FunctionN<String>(...) { ... } | funcExprs.kt:90:15:90:69 | invoke | public |
-| funcExprs.kt:94:15:94:67 | new Function22<Integer,Integer,Integer,Integer,Integer,Integer,Integer,Integer,Integer,Integer,Integer,Integer,Integer,Integer,Integer,Integer,Integer,Integer,Integer,Integer,Integer,Integer,String>(...) { ... } | funcExprs.kt:94:15:94:67 | invoke | override, public, suspend |
+| funcExprs.kt:94:15:94:67 | new Function22<Integer,Integer,Integer,Integer,Integer,Integer,Integer,Integer,Integer,Integer,Integer,Integer,Integer,Integer,Integer,Integer,Integer,Integer,Integer,Integer,Integer,Integer,String>(...) { ... } | funcExprs.kt:94:15:94:67 | invoke | final, override, public, suspend |
 | kFunctionInvoke.kt:8:44:8:47 | new Function1<String,Unit>(...) { ... } | kFunctionInvoke.kt:8:44:8:47 | invoke | override, public |
-| samConversion.kt:2:18:2:45 | new IntPredicate(...) { ... } | samConversion.kt:2:18:2:45 | accept | override, public |
-| samConversion.kt:2:31:2:45 | new Function1<Integer,Boolean>(...) { ... } | samConversion.kt:2:31:2:45 | invoke | override, public |
-| samConversion.kt:4:14:4:42 | new InterfaceFn1(...) { ... } | samConversion.kt:4:14:4:42 | fn1 | override, public |
-| samConversion.kt:4:27:4:42 | new Function2<Integer,Integer,Unit>(...) { ... } | samConversion.kt:4:27:4:42 | invoke | override, public |
-| samConversion.kt:5:14:5:32 | new InterfaceFn1(...) { ... } | samConversion.kt:5:14:5:32 | fn1 | override, public |
+| samConversion.kt:2:18:2:45 | new IntPredicate(...) { ... } | samConversion.kt:2:18:2:45 | accept | final, override, public |
+| samConversion.kt:2:31:2:45 | new Function1<Integer,Boolean>(...) { ... } | samConversion.kt:2:31:2:45 | invoke | final, override, public |
+| samConversion.kt:4:14:4:42 | new InterfaceFn1(...) { ... } | samConversion.kt:4:14:4:42 | fn1 | final, override, public |
+| samConversion.kt:4:27:4:42 | new Function2<Integer,Integer,Unit>(...) { ... } | samConversion.kt:4:27:4:42 | invoke | final, override, public |
+| samConversion.kt:5:14:5:32 | new InterfaceFn1(...) { ... } | samConversion.kt:5:14:5:32 | fn1 | final, override, public |
 | samConversion.kt:5:27:5:31 | new Function2<Integer,Integer,Unit>(...) { ... } | samConversion.kt:5:27:5:31 | invoke | override, public |
-| samConversion.kt:7:13:7:46 | new InterfaceFnExt1(...) { ... } | samConversion.kt:7:13:7:46 | ext | override, public |
-| samConversion.kt:7:29:7:46 | new Function2<String,Integer,Boolean>(...) { ... } | samConversion.kt:7:29:7:46 | invoke | override, public |
-| samConversion.kt:9:13:13:6 | new IntPredicate(...) { ... } | samConversion.kt:9:13:13:6 | accept | override, public |
-| samConversion.kt:9:33:11:5 | new Function1<Integer,Boolean>(...) { ... } | samConversion.kt:9:33:11:5 | invoke | override, public |
-| samConversion.kt:11:12:13:5 | new Function1<Integer,Boolean>(...) { ... } | samConversion.kt:11:12:13:5 | invoke | override, public |
+| samConversion.kt:7:13:7:46 | new InterfaceFnExt1(...) { ... } | samConversion.kt:7:13:7:46 | ext | final, override, public |
+| samConversion.kt:7:29:7:46 | new Function2<String,Integer,Boolean>(...) { ... } | samConversion.kt:7:29:7:46 | invoke | final, override, public |
+| samConversion.kt:9:13:13:6 | new IntPredicate(...) { ... } | samConversion.kt:9:13:13:6 | accept | final, override, public |
+| samConversion.kt:9:33:11:5 | new Function1<Integer,Boolean>(...) { ... } | samConversion.kt:9:33:11:5 | invoke | final, override, public |
+| samConversion.kt:11:12:13:5 | new Function1<Integer,Boolean>(...) { ... } | samConversion.kt:11:12:13:5 | invoke | final, override, public |
 | samConversion.kt:41:13:41:16 | new FunctionN<Boolean>(...) { ... } | samConversion.kt:41:13:41:16 | invoke | override, public |
-| samConversion.kt:42:13:42:32 | new BigArityPredicate(...) { ... } | samConversion.kt:42:13:42:32 | accept | override, public |
-| samConversion.kt:43:13:45:68 | new BigArityPredicate(...) { ... } | samConversion.kt:43:13:45:68 | accept | override, public |
+| samConversion.kt:42:13:42:32 | new BigArityPredicate(...) { ... } | samConversion.kt:42:13:42:32 | accept | final, override, public |
+| samConversion.kt:43:13:45:68 | new BigArityPredicate(...) { ... } | samConversion.kt:43:13:45:68 | accept | final, override, public |
+| samConversion.kt:43:31:45:68 | new FunctionN<Boolean>(...) { ... } | samConversion.kt:43:31:45:68 | invoke | final, public |
 | samConversion.kt:43:31:45:68 | new FunctionN<Boolean>(...) { ... } | samConversion.kt:43:31:45:68 | invoke | override, public |
-| samConversion.kt:43:31:45:68 | new FunctionN<Boolean>(...) { ... } | samConversion.kt:43:31:45:68 | invoke | public |
-| samConversion.kt:46:13:46:44 | new SomePredicate<Integer>(...) { ... } | samConversion.kt:46:13:46:44 | fn | override, public |
-| samConversion.kt:46:32:46:44 | new Function1<Integer,Boolean>(...) { ... } | samConversion.kt:46:32:46:44 | invoke | override, public |
-| samConversion.kt:58:14:58:45 | new InterfaceFn1Sus(...) { ... } | samConversion.kt:58:14:58:45 | fn1 | override, public, suspend |
-| samConversion.kt:58:30:58:45 | new Function2<Integer,Integer,Unit>(...) { ... } | samConversion.kt:58:30:58:45 | invoke | override, public, suspend |
-| samConversion.kt:75:17:75:33 | new IntGetter(...) { ... } | samConversion.kt:75:17:75:33 | f | override, public |
+| samConversion.kt:46:13:46:44 | new SomePredicate<Integer>(...) { ... } | samConversion.kt:46:13:46:44 | fn | final, override, public |
+| samConversion.kt:46:32:46:44 | new Function1<Integer,Boolean>(...) { ... } | samConversion.kt:46:32:46:44 | invoke | final, override, public |
+| samConversion.kt:58:14:58:45 | new InterfaceFn1Sus(...) { ... } | samConversion.kt:58:14:58:45 | fn1 | final, override, public, suspend |
+| samConversion.kt:58:30:58:45 | new Function2<Integer,Integer,Unit>(...) { ... } | samConversion.kt:58:30:58:45 | invoke | final, override, public, suspend |
+| samConversion.kt:75:17:75:33 | new IntGetter(...) { ... } | samConversion.kt:75:17:75:33 | f | final, override, public |
 | samConversion.kt:75:27:75:32 | new KProperty0<Integer>(...) { ... } | samConversion.kt:75:27:75:32 | get | override, public |
 | samConversion.kt:75:27:75:32 | new KProperty0<Integer>(...) { ... } | samConversion.kt:75:27:75:32 | invoke | override, public |
-| samConversion.kt:76:17:76:55 | new PropertyRefsGetter(...) { ... } | samConversion.kt:76:17:76:55 | f | override, public |
+| samConversion.kt:76:17:76:55 | new PropertyRefsGetter(...) { ... } | samConversion.kt:76:17:76:55 | f | final, override, public |
 | samConversion.kt:76:36:76:54 | new KProperty1<PropertyRefsTest,Integer>(...) { ... } | samConversion.kt:76:36:76:54 | get | override, public |
 | samConversion.kt:76:36:76:54 | new KProperty1<PropertyRefsTest,Integer>(...) { ... } | samConversion.kt:76:36:76:54 | invoke | override, public |
 nonOverrideInvoke
diff --git a/java/ql/test/kotlin/library-tests/java_and_kotlin_internal/visibility.expected b/java/ql/test/kotlin/library-tests/java_and_kotlin_internal/visibility.expected
index 1f28867110e..378da6dd22f 100644
--- a/java/ql/test/kotlin/library-tests/java_and_kotlin_internal/visibility.expected
+++ b/java/ql/test/kotlin/library-tests/java_and_kotlin_internal/visibility.expected
@@ -3,10 +3,14 @@ isInternal
 | Kotlin.kt:2:11:3:2 | kotlinFun$main |
 | Kotlin.kt:6:10:6:36 | topLevelKotlinFun |
 modifiers_methods
+| file://:0:0:0:0 | final | Kotlin.kt:2:11:3:2 | kotlinFun$main |
+| file://:0:0:0:0 | final | Kotlin.kt:6:10:6:36 | topLevelKotlinFun |
 | file://:0:0:0:0 | internal | Kotlin.kt:2:11:3:2 | kotlinFun$main |
 | file://:0:0:0:0 | internal | Kotlin.kt:6:10:6:36 | topLevelKotlinFun |
 | file://:0:0:0:0 | static | Kotlin.kt:6:10:6:36 | topLevelKotlinFun |
 #select
+| Kotlin.kt:2:11:3:2 | kotlinFun$main | final |
 | Kotlin.kt:2:11:3:2 | kotlinFun$main | internal |
+| Kotlin.kt:6:10:6:36 | topLevelKotlinFun | final |
 | Kotlin.kt:6:10:6:36 | topLevelKotlinFun | internal |
 | Kotlin.kt:6:10:6:36 | topLevelKotlinFun | static |
diff --git a/java/ql/test/kotlin/library-tests/methods/methods.expected b/java/ql/test/kotlin/library-tests/methods/methods.expected
index 6a86ea6bf5b..a4d394362fc 100644
--- a/java/ql/test/kotlin/library-tests/methods/methods.expected
+++ b/java/ql/test/kotlin/library-tests/methods/methods.expected
@@ -1,59 +1,59 @@
 methods
 | clinit.kt:0:0:0:0 | ClinitKt | clinit.kt:0:0:0:0 | <clinit> | <clinit>() | static | Compiler generated |
-| clinit.kt:0:0:0:0 | ClinitKt | clinit.kt:3:1:3:24 | getTopLevelInt | getTopLevelInt() | public, static | Compiler generated |
-| clinit.kt:0:0:0:0 | ClinitKt | clinit.kt:3:1:3:24 | setTopLevelInt | setTopLevelInt(int) | public, static | Compiler generated |
-| dataClass.kt:1:1:1:47 | DataClass | dataClass.kt:0:0:0:0 | component1 | component1() | public | Compiler generated |
-| dataClass.kt:1:1:1:47 | DataClass | dataClass.kt:0:0:0:0 | component2 | component2() | public | Compiler generated |
-| dataClass.kt:1:1:1:47 | DataClass | dataClass.kt:0:0:0:0 | copy | copy(int,java.lang.String) | public | Compiler generated |
+| clinit.kt:0:0:0:0 | ClinitKt | clinit.kt:3:1:3:24 | getTopLevelInt | getTopLevelInt() | final, public, static | Compiler generated |
+| clinit.kt:0:0:0:0 | ClinitKt | clinit.kt:3:1:3:24 | setTopLevelInt | setTopLevelInt(int) | final, public, static | Compiler generated |
+| dataClass.kt:1:1:1:47 | DataClass | dataClass.kt:0:0:0:0 | component1 | component1() | final, public | Compiler generated |
+| dataClass.kt:1:1:1:47 | DataClass | dataClass.kt:0:0:0:0 | component2 | component2() | final, public | Compiler generated |
+| dataClass.kt:1:1:1:47 | DataClass | dataClass.kt:0:0:0:0 | copy | copy(int,java.lang.String) | final, public | Compiler generated |
 | dataClass.kt:1:1:1:47 | DataClass | dataClass.kt:0:0:0:0 | copy$default | copy$default(DataClass,int,java.lang.String,int,java.lang.Object) | public, static | Compiler generated |
 | dataClass.kt:1:1:1:47 | DataClass | dataClass.kt:0:0:0:0 | equals | equals(java.lang.Object) | override, public | Compiler generated |
 | dataClass.kt:1:1:1:47 | DataClass | dataClass.kt:0:0:0:0 | hashCode | hashCode() | override, public | Compiler generated |
 | dataClass.kt:1:1:1:47 | DataClass | dataClass.kt:0:0:0:0 | toString | toString() | override, public | Compiler generated |
-| dataClass.kt:1:1:1:47 | DataClass | dataClass.kt:1:22:1:31 | getX | getX() | public | Compiler generated |
-| dataClass.kt:1:1:1:47 | DataClass | dataClass.kt:1:34:1:46 | getY | getY() | public | Compiler generated |
-| dataClass.kt:1:1:1:47 | DataClass | dataClass.kt:1:34:1:46 | setY | setY(java.lang.String) | public | Compiler generated |
-| delegates.kt:3:1:12:1 | MyClass | delegates.kt:4:18:6:5 | getLazyProp | getLazyProp() | public | Compiler generated |
-| delegates.kt:3:1:12:1 | MyClass | delegates.kt:8:32:11:5 | getObservableProp | getObservableProp() | public | Compiler generated |
-| delegates.kt:3:1:12:1 | MyClass | delegates.kt:8:32:11:5 | setObservableProp | setObservableProp(java.lang.String) | public | Compiler generated |
+| dataClass.kt:1:1:1:47 | DataClass | dataClass.kt:1:22:1:31 | getX | getX() | final, public | Compiler generated |
+| dataClass.kt:1:1:1:47 | DataClass | dataClass.kt:1:34:1:46 | getY | getY() | final, public | Compiler generated |
+| dataClass.kt:1:1:1:47 | DataClass | dataClass.kt:1:34:1:46 | setY | setY(java.lang.String) | final, public | Compiler generated |
+| delegates.kt:3:1:12:1 | MyClass | delegates.kt:4:18:6:5 | getLazyProp | getLazyProp() | final, public | Compiler generated |
+| delegates.kt:3:1:12:1 | MyClass | delegates.kt:8:32:11:5 | getObservableProp | getObservableProp() | final, public | Compiler generated |
+| delegates.kt:3:1:12:1 | MyClass | delegates.kt:8:32:11:5 | setObservableProp | setObservableProp(java.lang.String) | final, public | Compiler generated |
 | delegates.kt:4:18:6:5 | new KProperty1<MyClass,Integer>(...) { ... } | delegates.kt:4:18:6:5 | get | get(MyClass) | override, public |  |
 | delegates.kt:4:18:6:5 | new KProperty1<MyClass,Integer>(...) { ... } | delegates.kt:4:18:6:5 | invoke | invoke(MyClass) | override, public |  |
-| delegates.kt:4:26:6:5 | new Function0<Integer>(...) { ... } | delegates.kt:4:26:6:5 | invoke | invoke() | override, public |  |
+| delegates.kt:4:26:6:5 | new Function0<Integer>(...) { ... } | delegates.kt:4:26:6:5 | invoke | invoke() | final, override, public |  |
 | delegates.kt:8:32:11:5 | new KMutableProperty1<MyClass,String>(...) { ... } | delegates.kt:8:32:11:5 | get | get(MyClass) | override, public |  |
 | delegates.kt:8:32:11:5 | new KMutableProperty1<MyClass,String>(...) { ... } | delegates.kt:8:32:11:5 | get | get(MyClass) | override, public |  |
 | delegates.kt:8:32:11:5 | new KMutableProperty1<MyClass,String>(...) { ... } | delegates.kt:8:32:11:5 | invoke | invoke(MyClass) | override, public |  |
 | delegates.kt:8:32:11:5 | new KMutableProperty1<MyClass,String>(...) { ... } | delegates.kt:8:32:11:5 | invoke | invoke(MyClass) | override, public |  |
 | delegates.kt:8:32:11:5 | new KMutableProperty1<MyClass,String>(...) { ... } | delegates.kt:8:32:11:5 | set | set(MyClass,java.lang.String) | override, public |  |
 | delegates.kt:8:32:11:5 | new KMutableProperty1<MyClass,String>(...) { ... } | delegates.kt:8:32:11:5 | set | set(MyClass,java.lang.String) | override, public |  |
-| delegates.kt:8:66:11:5 | new Function3<KProperty<?>,String,String,Unit>(...) { ... } | delegates.kt:8:66:11:5 | invoke | invoke(kotlin.reflect.KProperty,java.lang.String,java.lang.String) | override, public |  |
+| delegates.kt:8:66:11:5 | new Function3<KProperty<?>,String,String,Unit>(...) { ... } | delegates.kt:8:66:11:5 | invoke | invoke(kotlin.reflect.KProperty,java.lang.String,java.lang.String) | final, override, public |  |
 | enumClass.kt:1:1:4:1 | EnumClass | enumClass.kt:0:0:0:0 | <clinit> | <clinit>() | static | Compiler generated |
-| enumClass.kt:1:1:4:1 | EnumClass | enumClass.kt:0:0:0:0 | valueOf | valueOf(java.lang.String) | public, static | Compiler generated |
-| enumClass.kt:1:1:4:1 | EnumClass | enumClass.kt:0:0:0:0 | values | values() | public, static | Compiler generated |
-| enumClass.kt:1:1:4:1 | EnumClass | enumClass.kt:1:22:1:31 | getV | getV() | public | Compiler generated |
+| enumClass.kt:1:1:4:1 | EnumClass | enumClass.kt:0:0:0:0 | valueOf | valueOf(java.lang.String) | final, public, static | Compiler generated |
+| enumClass.kt:1:1:4:1 | EnumClass | enumClass.kt:0:0:0:0 | values | values() | final, public, static | Compiler generated |
+| enumClass.kt:1:1:4:1 | EnumClass | enumClass.kt:1:22:1:31 | getV | getV() | final, public | Compiler generated |
 | enumClass.kt:6:1:16:1 | EnumWithFunctions | enumClass.kt:0:0:0:0 | <clinit> | <clinit>() | static | Compiler generated |
-| enumClass.kt:6:1:16:1 | EnumWithFunctions | enumClass.kt:0:0:0:0 | valueOf | valueOf(java.lang.String) | public, static | Compiler generated |
-| enumClass.kt:6:1:16:1 | EnumWithFunctions | enumClass.kt:0:0:0:0 | values | values() | public, static | Compiler generated |
-| enumClass.kt:6:1:16:1 | EnumWithFunctions | enumClass.kt:13:12:13:29 | f | f(int) | public |  |
-| enumClass.kt:6:1:16:1 | EnumWithFunctions | enumClass.kt:14:12:14:29 | g | g(int) | public |  |
+| enumClass.kt:6:1:16:1 | EnumWithFunctions | enumClass.kt:0:0:0:0 | valueOf | valueOf(java.lang.String) | final, public, static | Compiler generated |
+| enumClass.kt:6:1:16:1 | EnumWithFunctions | enumClass.kt:0:0:0:0 | values | values() | final, public, static | Compiler generated |
+| enumClass.kt:6:1:16:1 | EnumWithFunctions | enumClass.kt:13:12:13:29 | f | f(int) | abstract, public |  |
+| enumClass.kt:6:1:16:1 | EnumWithFunctions | enumClass.kt:14:12:14:29 | g | g(int) | abstract, public |  |
 | enumClass.kt:8:3:11:4 | VAL | enumClass.kt:9:14:9:30 | f | f(int) | override, public |  |
 | enumClass.kt:8:3:11:4 | VAL | enumClass.kt:10:14:10:42 | g | g(int) | override, public |  |
-| methods2.kt:0:0:0:0 | Methods2Kt | methods2.kt:4:1:5:1 | fooBarTopLevelMethod | fooBarTopLevelMethod(int,int) | public, static |  |
-| methods2.kt:7:1:10:1 | Class2 | methods2.kt:8:5:9:5 | fooBarClassMethod | fooBarClassMethod(int,int) | public |  |
-| methods3.kt:0:0:0:0 | Methods3Kt | methods3.kt:3:1:3:42 | fooBarTopLevelMethodExt | fooBarTopLevelMethodExt(int,int) | public, static |  |
-| methods3.kt:5:1:7:1 | Class3 | methods3.kt:6:5:6:46 | fooBarTopLevelMethodExt | fooBarTopLevelMethodExt(int,int) | public |  |
-| methods4.kt:5:3:9:3 | InsideNestedTest | methods4.kt:7:5:7:34 | m | m(foo.bar.NestedTest.InsideNestedTest) | public |  |
-| methods5.kt:0:0:0:0 | Methods5Kt | methods5.kt:3:1:11:1 | x | x() | public, static |  |
-| methods5.kt:5:3:5:27 |  | methods5.kt:5:3:5:27 | a | a(int) | public |  |
-| methods5.kt:9:3:9:32 |  | methods5.kt:9:3:9:32 | f1 | f1(foo.bar.C1,int) | public |  |
-| methods6.kt:0:0:0:0 | Methods6Kt | methods6.kt:3:9:4:1 | s | s() | public, static, suspend |  |
-| methods.kt:0:0:0:0 | MethodsKt | methods.kt:2:1:3:1 | topLevelMethod | topLevelMethod(int,int) | public, static |  |
-| methods.kt:5:1:20:1 | Class | methods.kt:6:5:7:5 | classMethod | classMethod(int,int) | public |  |
-| methods.kt:5:1:20:1 | Class | methods.kt:9:5:12:5 | anotherClassMethod | anotherClassMethod(int,int) | public |  |
-| methods.kt:5:1:20:1 | Class | methods.kt:14:12:14:29 | publicFun | publicFun() | public |  |
-| methods.kt:5:1:20:1 | Class | methods.kt:15:15:15:35 | protectedFun | protectedFun() | protected |  |
-| methods.kt:5:1:20:1 | Class | methods.kt:16:13:16:31 | privateFun | privateFun() | private |  |
-| methods.kt:5:1:20:1 | Class | methods.kt:17:14:17:33 | internalFun$main | internalFun$main() | internal |  |
-| methods.kt:5:1:20:1 | Class | methods.kt:18:5:18:36 | noExplicitVisibilityFun | noExplicitVisibilityFun() | public |  |
-| methods.kt:5:1:20:1 | Class | methods.kt:19:12:19:29 | inlineFun | inlineFun() | inline, public |  |
+| methods2.kt:0:0:0:0 | Methods2Kt | methods2.kt:4:1:5:1 | fooBarTopLevelMethod | fooBarTopLevelMethod(int,int) | final, public, static |  |
+| methods2.kt:7:1:10:1 | Class2 | methods2.kt:8:5:9:5 | fooBarClassMethod | fooBarClassMethod(int,int) | final, public |  |
+| methods3.kt:0:0:0:0 | Methods3Kt | methods3.kt:3:1:3:42 | fooBarTopLevelMethodExt | fooBarTopLevelMethodExt(int,int) | final, public, static |  |
+| methods3.kt:5:1:7:1 | Class3 | methods3.kt:6:5:6:46 | fooBarTopLevelMethodExt | fooBarTopLevelMethodExt(int,int) | final, public |  |
+| methods4.kt:5:3:9:3 | InsideNestedTest | methods4.kt:7:5:7:34 | m | m(foo.bar.NestedTest.InsideNestedTest) | final, public |  |
+| methods5.kt:0:0:0:0 | Methods5Kt | methods5.kt:3:1:11:1 | x | x() | final, public, static |  |
+| methods5.kt:5:3:5:27 |  | methods5.kt:5:3:5:27 | a | a(int) | final, public |  |
+| methods5.kt:9:3:9:32 |  | methods5.kt:9:3:9:32 | f1 | f1(foo.bar.C1,int) | final, public |  |
+| methods6.kt:0:0:0:0 | Methods6Kt | methods6.kt:3:9:4:1 | s | s() | final, public, static, suspend |  |
+| methods.kt:0:0:0:0 | MethodsKt | methods.kt:2:1:3:1 | topLevelMethod | topLevelMethod(int,int) | final, public, static |  |
+| methods.kt:5:1:20:1 | Class | methods.kt:6:5:7:5 | classMethod | classMethod(int,int) | final, public |  |
+| methods.kt:5:1:20:1 | Class | methods.kt:9:5:12:5 | anotherClassMethod | anotherClassMethod(int,int) | final, public |  |
+| methods.kt:5:1:20:1 | Class | methods.kt:14:12:14:29 | publicFun | publicFun() | final, public |  |
+| methods.kt:5:1:20:1 | Class | methods.kt:15:15:15:35 | protectedFun | protectedFun() | final, protected |  |
+| methods.kt:5:1:20:1 | Class | methods.kt:16:13:16:31 | privateFun | privateFun() | final, private |  |
+| methods.kt:5:1:20:1 | Class | methods.kt:17:14:17:33 | internalFun$main | internalFun$main() | final, internal |  |
+| methods.kt:5:1:20:1 | Class | methods.kt:18:5:18:36 | noExplicitVisibilityFun | noExplicitVisibilityFun() | final, public |  |
+| methods.kt:5:1:20:1 | Class | methods.kt:19:12:19:29 | inlineFun | inlineFun() | final, inline, public |  |
 constructors
 | dataClass.kt:1:1:1:47 | DataClass | dataClass.kt:1:6:1:47 | DataClass | DataClass(int,java.lang.String) |
 | delegates.kt:3:1:12:1 | MyClass | delegates.kt:3:1:12:1 | MyClass | MyClass() |

From 1ba8b6d35a7ae480c4a91c099dd52f02199fab54 Mon Sep 17 00:00:00 2001
From: Paolo Tranquilli <redsun82@github.com>
Date: Thu, 8 Dec 2022 15:57:57 +0100
Subject: [PATCH 1160/1420] Swift: fix extraction of sources from `..`

---
 swift/extractor/SwiftExtractor.cpp            | 24 ++++++++-----------
 swift/extractor/infra/Path.h                  |  7 ------
 .../infra/SwiftLocationExtractor.cpp          |  6 ++---
 swift/extractor/infra/{ => file}/Path.cpp     |  6 ++---
 swift/extractor/infra/file/Path.h             |  7 ++++++
 .../frontend-invocations/Files.expected       |  1 +
 .../posix-only/frontend-invocations/G.swift   |  0
 .../posix-only/frontend-invocations/build.sh  |  1 +
 8 files changed, 25 insertions(+), 27 deletions(-)
 delete mode 100644 swift/extractor/infra/Path.h
 rename swift/extractor/infra/{ => file}/Path.cpp (87%)
 create mode 100644 swift/extractor/infra/file/Path.h
 create mode 100644 swift/integration-tests/posix-only/frontend-invocations/G.swift

diff --git a/swift/extractor/SwiftExtractor.cpp b/swift/extractor/SwiftExtractor.cpp
index c9410d2f1f3..2cee41cb0e3 100644
--- a/swift/extractor/SwiftExtractor.cpp
+++ b/swift/extractor/SwiftExtractor.cpp
@@ -12,7 +12,7 @@
 #include "swift/extractor/translators/SwiftVisitor.h"
 #include "swift/extractor/TargetTrapFile.h"
 #include "swift/extractor/SwiftBuiltinSymbols.h"
-#include "swift/extractor/infra/Path.h"
+#include "swift/extractor/infra/file/Path.h"
 
 using namespace codeql;
 using namespace std::string_literals;
@@ -28,27 +28,23 @@ static void ensureDirectory(const char* label, const fs::path& dir) {
 }
 
 static void archiveFile(const SwiftExtractorConfiguration& config, swift::SourceFile& file) {
-  ensureDirectory("TRAP", config.trapDir);
-  ensureDirectory("source archive", config.sourceArchiveDir);
+  auto source = codeql::resolvePath(file.getFilename());
+  auto destination = config.sourceArchiveDir / source.relative_path();
 
-  fs::path srcFilePath = codeql::getCodeQLPath(file.getFilename());
-  auto dstFilePath = config.sourceArchiveDir;
-  dstFilePath += srcFilePath;
-
-  ensureDirectory("source archive destination", dstFilePath.parent_path());
+  ensureDirectory("source archive destination", destination.parent_path());
 
   std::error_code ec;
-  fs::copy(srcFilePath, dstFilePath, fs::copy_options::overwrite_existing, ec);
+  fs::copy(source, destination, fs::copy_options::overwrite_existing, ec);
 
   if (ec) {
-    std::cerr << "Cannot archive source file " << srcFilePath << " -> " << dstFilePath << ": "
+    std::cerr << "Cannot archive source file " << source << " -> " << destination << ": "
               << ec.message() << "\n";
   }
 }
 
 static fs::path getFilename(swift::ModuleDecl& module, swift::SourceFile* primaryFile) {
   if (primaryFile) {
-    return primaryFile->getFilename().str();
+    return resolvePath(primaryFile->getFilename());
   }
   // PCM clang module
   if (module.isNonSwiftModule()) {
@@ -57,7 +53,7 @@ static fs::path getFilename(swift::ModuleDecl& module, swift::SourceFile* primar
     // Moreover, pcm files may come from caches located in different directories, but are
     // unambiguously identified by the base file name, so we can discard the absolute directory
     fs::path filename = "/pcms";
-    filename /= getCodeQLPath(module.getModuleFilename()).filename();
+    filename /= fs::path{std::string_view{module.getModuleFilename()}}.filename();
     filename += "-";
     filename += module.getName().str();
     return filename;
@@ -66,13 +62,13 @@ static fs::path getFilename(swift::ModuleDecl& module, swift::SourceFile* primar
     // The Builtin module has an empty filename, let's fix that
     return "/__Builtin__";
   }
-  auto filename = getCodeQLPath(module.getModuleFilename());
+  std::string_view filename = module.getModuleFilename();
   // there is a special case of a module without an actual filename reporting `<imports>`: in this
   // case we want to avoid the `<>` characters, in case a dirty DB is imported on Windows
   if (filename == "<imports>") {
     return "/__imports__";
   }
-  return filename;
+  return resolvePath(filename);
 }
 
 /* The builtin module is special, as it does not publish any top-level declaration
diff --git a/swift/extractor/infra/Path.h b/swift/extractor/infra/Path.h
deleted file mode 100644
index 09ab7ed1773..00000000000
--- a/swift/extractor/infra/Path.h
+++ /dev/null
@@ -1,7 +0,0 @@
-#pragma once
-
-#include <filesystem>
-
-namespace codeql {
-std::filesystem::path getCodeQLPath(std::string_view path);
-}
diff --git a/swift/extractor/infra/SwiftLocationExtractor.cpp b/swift/extractor/infra/SwiftLocationExtractor.cpp
index a003519f4ce..7c98294804a 100644
--- a/swift/extractor/infra/SwiftLocationExtractor.cpp
+++ b/swift/extractor/infra/SwiftLocationExtractor.cpp
@@ -5,7 +5,7 @@
 #include "swift/extractor/trap/generated/TrapEntries.h"
 #include "swift/extractor/trap/generated/TrapClasses.h"
 #include "swift/extractor/infra/SwiftLocationExtractor.h"
-#include "swift/extractor/infra/Path.h"
+#include "swift/extractor/infra/file/Path.h"
 
 using namespace codeql;
 
@@ -17,7 +17,7 @@ void SwiftLocationExtractor::attachLocation(const swift::SourceManager& sourceMa
     // invalid locations seem to come from entities synthesized by the compiler
     return;
   }
-  auto file = getCodeQLPath(sourceManager.getDisplayNameForLoc(start));
+  auto file = resolvePath(sourceManager.getDisplayNameForLoc(start));
   DbLocation entry{{}};
   entry.file = fetchFileLabel(file);
   std::tie(entry.start_line, entry.start_column) = sourceManager.getLineAndColumnInBuffer(start);
@@ -30,7 +30,7 @@ void SwiftLocationExtractor::attachLocation(const swift::SourceManager& sourceMa
 }
 
 void SwiftLocationExtractor::emitFile(llvm::StringRef path) {
-  fetchFileLabel(getCodeQLPath(path));
+  fetchFileLabel(resolvePath(path));
 }
 
 TrapLabel<FileTag> SwiftLocationExtractor::fetchFileLabel(const std::filesystem::path& file) {
diff --git a/swift/extractor/infra/Path.cpp b/swift/extractor/infra/file/Path.cpp
similarity index 87%
rename from swift/extractor/infra/Path.cpp
rename to swift/extractor/infra/file/Path.cpp
index 37b4d13fd0c..f114bfdd41b 100644
--- a/swift/extractor/infra/Path.cpp
+++ b/swift/extractor/infra/file/Path.cpp
@@ -1,4 +1,4 @@
-#include "swift/extractor/infra/Path.h"
+#include "swift/extractor/infra/file/Path.h"
 #include <iostream>
 #include <unistd.h>
 
@@ -16,7 +16,7 @@ static bool shouldCanonicalize() {
   return true;
 }
 
-std::filesystem::path getCodeQLPath(std::string_view path) {
+std::filesystem::path resolvePath(std::string_view path) {
   std::error_code ec;
   std::filesystem::path ret = {};
   static const auto canonicalize = shouldCanonicalize();
@@ -28,7 +28,7 @@ std::filesystem::path getCodeQLPath(std::string_view path) {
   if (ec) {
     std::cerr << "Cannot get " << (canonicalize ? "canonical" : "absolute")
               << " path: " << std::quoted(path) << ": " << ec.message() << "\n";
-    return {};
+    return path;
   }
   return ret;
 }
diff --git a/swift/extractor/infra/file/Path.h b/swift/extractor/infra/file/Path.h
new file mode 100644
index 00000000000..c1a31786454
--- /dev/null
+++ b/swift/extractor/infra/file/Path.h
@@ -0,0 +1,7 @@
+#pragma once
+
+#include <filesystem>
+
+namespace codeql {
+std::filesystem::path resolvePath(std::string_view path);
+}
diff --git a/swift/integration-tests/posix-only/frontend-invocations/Files.expected b/swift/integration-tests/posix-only/frontend-invocations/Files.expected
index f13e45d89a5..3bc0826c1f2 100644
--- a/swift/integration-tests/posix-only/frontend-invocations/Files.expected
+++ b/swift/integration-tests/posix-only/frontend-invocations/Files.expected
@@ -5,4 +5,5 @@
 | E.swift:0:0:0:0 | E.swift |
 | F1.swift:0:0:0:0 | F1.swift |
 | F2.swift:0:0:0:0 | F2.swift |
+| G.swift:0:0:0:0 | G.swift |
 | file://:0:0:0:0 |  |
diff --git a/swift/integration-tests/posix-only/frontend-invocations/G.swift b/swift/integration-tests/posix-only/frontend-invocations/G.swift
new file mode 100644
index 00000000000..e69de29bb2d
diff --git a/swift/integration-tests/posix-only/frontend-invocations/build.sh b/swift/integration-tests/posix-only/frontend-invocations/build.sh
index 03f1148ca05..31cf6e39969 100755
--- a/swift/integration-tests/posix-only/frontend-invocations/build.sh
+++ b/swift/integration-tests/posix-only/frontend-invocations/build.sh
@@ -16,3 +16,4 @@ $FRONTEND -frontend -c -primary-file E.swift Esup.swift -o E.o $SDK
 $FRONTEND -frontend -emit-module -primary-file F1.swift F2.swift -module-name F -o F1.swiftmodule $SDK
 $FRONTEND -frontend -emit-module F1.swift -primary-file F2.swift -module-name F -o F2.swiftmodule $SDK
 $FRONTEND -merge-modules F1.swiftmodule F2.swiftmodule -o F.swiftmodule $SDK
+( cd dir; $FRONTEND -frontend -c ../G.swift $SDK )

From cbf722dad0931bf5b32f74af3c9db39b46b0f6e1 Mon Sep 17 00:00:00 2001
From: Tom Hvitved <hvitved@github.com>
Date: Thu, 8 Dec 2022 15:59:41 +0100
Subject: [PATCH 1161/1420] Ruby: Add `SummarizedCallable::getParameter`

---
 .../lib/codeql/ruby/dataflow/FlowSummary.qll  | 13 ++++++++++++
 .../internal/FlowSummaryImplSpecific.qll      | 21 +++++++++++++++----
 2 files changed, 30 insertions(+), 4 deletions(-)

diff --git a/ruby/ql/lib/codeql/ruby/dataflow/FlowSummary.qll b/ruby/ql/lib/codeql/ruby/dataflow/FlowSummary.qll
index 5f3e11d2703..e2cff3d4878 100644
--- a/ruby/ql/lib/codeql/ruby/dataflow/FlowSummary.qll
+++ b/ruby/ql/lib/codeql/ruby/dataflow/FlowSummary.qll
@@ -4,7 +4,9 @@ import codeql.ruby.AST
 import codeql.ruby.DataFlow
 private import internal.FlowSummaryImpl as Impl
 private import internal.DataFlowDispatch
+private import internal.DataFlowImplCommon as DataFlowImplCommon
 private import internal.DataFlowPrivate
+private import internal.FlowSummaryImplSpecific
 
 // import all instances below
 private module Summaries {
@@ -127,6 +129,17 @@ abstract class SummarizedCallable extends LibraryCallable, Impl::Public::Summari
    */
   pragma[nomagic]
   predicate propagatesFlowExt(string input, string output, boolean preservesValue) { none() }
+
+  /**
+   * Gets the synthesized parameter that results from an input specification
+   * that starts with `Argument[s]` for this library callable.
+   */
+  DataFlow::ParameterNode getParameter(string s) {
+    exists(ParameterPosition pos |
+      DataFlowImplCommon::parameterNode(result, TLibraryCallable(this), pos) and
+      s = getParameterPositionCsv(pos)
+    )
+  }
 }
 
 /**
diff --git a/ruby/ql/lib/codeql/ruby/dataflow/internal/FlowSummaryImplSpecific.qll b/ruby/ql/lib/codeql/ruby/dataflow/internal/FlowSummaryImplSpecific.qll
index 0fde6438872..615578f8891 100644
--- a/ruby/ql/lib/codeql/ruby/dataflow/internal/FlowSummaryImplSpecific.qll
+++ b/ruby/ql/lib/codeql/ruby/dataflow/internal/FlowSummaryImplSpecific.qll
@@ -145,19 +145,32 @@ string getComponentSpecificCsv(SummaryComponent sc) { none() }
 
 /** Gets the textual representation of a parameter position in the format used for flow summaries. */
 string getParameterPositionCsv(ParameterPosition pos) {
-  pos.isSelf() and result = "self"
-  or
-  pos.isBlock() and result = "block"
-  or
   exists(int i |
     pos.isPositional(i) and
     result = i.toString()
   )
   or
+  exists(int i |
+    pos.isPositionalLowerBound(i) and
+    result = i + ".."
+  )
+  or
   exists(string name |
     pos.isKeyword(name) and
     result = name + ":"
   )
+  or
+  pos.isSelf() and
+  result = "self"
+  or
+  pos.isBlock() and
+  result = "block"
+  or
+  pos.isAny() and
+  result = "any"
+  or
+  pos.isAnyNamed() and
+  result = "any-named"
 }
 
 /** Gets the textual representation of an argument position in the format used for flow summaries. */

From 8600d2d12decc85a053cbb7c2ac3e79d2fc5e1e8 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Thu, 8 Dec 2022 15:01:05 +0000
Subject: [PATCH 1162/1420] Bump Newtonsoft.Json in
 /csharp/autobuilder/Semmle.Autobuild.CSharp

Bumps [Newtonsoft.Json](https://github.com/JamesNK/Newtonsoft.Json) from 13.0.1 to 13.0.2.
- [Release notes](https://github.com/JamesNK/Newtonsoft.Json/releases)
- [Commits](https://github.com/JamesNK/Newtonsoft.Json/compare/13.0.1...13.0.2)

---
updated-dependencies:
- dependency-name: Newtonsoft.Json
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
---
 .../Semmle.Autobuild.CSharp/Semmle.Autobuild.CSharp.csproj      | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/csharp/autobuilder/Semmle.Autobuild.CSharp/Semmle.Autobuild.CSharp.csproj b/csharp/autobuilder/Semmle.Autobuild.CSharp/Semmle.Autobuild.CSharp.csproj
index ec2aae685e8..981ea925b77 100644
--- a/csharp/autobuilder/Semmle.Autobuild.CSharp/Semmle.Autobuild.CSharp.csproj
+++ b/csharp/autobuilder/Semmle.Autobuild.CSharp/Semmle.Autobuild.CSharp.csproj
@@ -15,7 +15,7 @@
 	</ItemGroup>
 	<ItemGroup>
 		<PackageReference Include="Microsoft.Build" Version="17.3.2" />
-		<PackageReference Include="Newtonsoft.Json" Version="13.0.1" />
+		<PackageReference Include="Newtonsoft.Json" Version="13.0.2" />
 	</ItemGroup>
 	<ItemGroup>
 		<ProjectReference Include="..\..\extractor\Semmle.Util\Semmle.Util.csproj" />

From 8f9a73ee097aee409678f552358a09084c55242f Mon Sep 17 00:00:00 2001
From: Jeroen Ketema <jketema@github.com>
Date: Thu, 8 Dec 2022 16:14:12 +0100
Subject: [PATCH 1163/1420] C++: Address review comments

---
 .../lib/semmle/code/cpp/models/implementations/Scanf.qll  | 8 ++------
 1 file changed, 2 insertions(+), 6 deletions(-)

diff --git a/cpp/ql/lib/semmle/code/cpp/models/implementations/Scanf.qll b/cpp/ql/lib/semmle/code/cpp/models/implementations/Scanf.qll
index 6773f1bb519..079a231a913 100644
--- a/cpp/ql/lib/semmle/code/cpp/models/implementations/Scanf.qll
+++ b/cpp/ql/lib/semmle/code/cpp/models/implementations/Scanf.qll
@@ -71,9 +71,7 @@ abstract private class ScanfFunctionModel extends ArrayFunction, TaintFunction,
 /**
  * The standard function `scanf` and its assorted variants
  */
-private class ScanfModel extends ScanfFunctionModel, LocalFlowSourceFunction {
-  ScanfModel() { this instanceof Scanf }
-
+private class ScanfModel extends ScanfFunctionModel, LocalFlowSourceFunction instanceof Scanf {
   override predicate hasLocalFlowSource(FunctionOutput output, string description) {
     output.isParameterDeref(any(int i | i >= this.getArgsStartPosition())) and
     description = "Value read by " + this.getName()
@@ -83,9 +81,7 @@ private class ScanfModel extends ScanfFunctionModel, LocalFlowSourceFunction {
 /**
  * The standard function `fscanf` and its assorted variants
  */
-private class FscanfModel extends ScanfFunctionModel, RemoteFlowSourceFunction {
-  FscanfModel() { this instanceof Fscanf }
-
+private class FscanfModel extends ScanfFunctionModel, RemoteFlowSourceFunction instanceof Fscanf {
   override predicate hasRemoteFlowSource(FunctionOutput output, string description) {
     output.isParameterDeref(any(int i | i >= this.getArgsStartPosition())) and
     description = "Value read by " + this.getName()

From 935e264f2472cbc6a58aee4c35821d0456d66a48 Mon Sep 17 00:00:00 2001
From: Paolo Tranquilli <redsun82@github.com>
Date: Thu, 8 Dec 2022 17:04:32 +0100
Subject: [PATCH 1164/1420] Swift: add empty directory marker

---
 .../integration-tests/posix-only/frontend-invocations/dir/.empty  | 0
 1 file changed, 0 insertions(+), 0 deletions(-)
 create mode 100644 swift/integration-tests/posix-only/frontend-invocations/dir/.empty

diff --git a/swift/integration-tests/posix-only/frontend-invocations/dir/.empty b/swift/integration-tests/posix-only/frontend-invocations/dir/.empty
new file mode 100644
index 00000000000..e69de29bb2d

From 7645d4d92802b38f7614fc5f3270aee88c03c431 Mon Sep 17 00:00:00 2001
From: Paolo Tranquilli <redsun82@github.com>
Date: Thu, 8 Dec 2022 17:31:48 +0100
Subject: [PATCH 1165/1420] Swift: remove `ModuleDecl` from `PrintAst` test

---
 swift/ql/test/library-tests/ast/PrintAst.expected | 6 ------
 swift/ql/test/library-tests/ast/PrintAst.ql       | 4 +++-
 2 files changed, 3 insertions(+), 7 deletions(-)

diff --git a/swift/ql/test/library-tests/ast/PrintAst.expected b/swift/ql/test/library-tests/ast/PrintAst.expected
index 2ec81962d30..570065b9db1 100644
--- a/swift/ql/test/library-tests/ast/PrintAst.expected
+++ b/swift/ql/test/library-tests/ast/PrintAst.expected
@@ -1,9 +1,3 @@
-#-----| [ModuleDecl] __ObjC
-#-----| [ModuleDecl] cfg
-#-----| [ModuleDecl] declarations
-#-----| [ModuleDecl] expressions
-#-----| [ModuleDecl] patterns
-#-----| [ModuleDecl] statements
 cfg.swift:
 #    1| [TopLevelCodeDecl] { ... }
 #    1|   getBody(): [BraceStmt] { ... }
diff --git a/swift/ql/test/library-tests/ast/PrintAst.ql b/swift/ql/test/library-tests/ast/PrintAst.ql
index 245e9ebdb12..05b5fec5a17 100644
--- a/swift/ql/test/library-tests/ast/PrintAst.ql
+++ b/swift/ql/test/library-tests/ast/PrintAst.ql
@@ -10,5 +10,7 @@ import TestUtils
  * The hook to customize the entities printed by this query.
  */
 class PrintAstConfigurationOverride extends PrintAstConfiguration {
-  override predicate shouldPrint(Locatable e) { super.shouldPrint(e) and toBeTested(e) }
+  override predicate shouldPrint(Locatable e) {
+    super.shouldPrint(e) and toBeTested(e) and not e instanceof ModuleDecl
+  }
 }

From 29046e796091a98a50755d059583a84193988124 Mon Sep 17 00:00:00 2001
From: Jami Cogswell <jcogs33@Jamis-MacBook-Pro.local>
Date: Thu, 8 Dec 2022 12:31:46 -0500
Subject: [PATCH 1166/1420] Java: update ExternalApi characteristic predicate
 to include not isUninteresting

---
 java/ql/src/Telemetry/ExternalApi.qll | 25 ++++++++++++-------------
 1 file changed, 12 insertions(+), 13 deletions(-)

diff --git a/java/ql/src/Telemetry/ExternalApi.qll b/java/ql/src/Telemetry/ExternalApi.qll
index c3e11d4b9bc..39e9c86e2ab 100644
--- a/java/ql/src/Telemetry/ExternalApi.qll
+++ b/java/ql/src/Telemetry/ExternalApi.qll
@@ -31,11 +31,22 @@ private string containerAsJar(Container container) {
   if container instanceof JarFile then result = container.getBaseName() else result = "rt.jar"
 }
 
+/** Holds if the given callable is a constructor without parameters. */
+private predicate isParameterlessConstructor(Callable c) {
+  c instanceof Constructor and c.getNumberOfParameters() = 0
+}
+
+/** Holds if the given callable is part of a common testing library or framework. */
+private predicate isTestLibrary(Callable c) { c.getDeclaringType() instanceof TestLibrary }
+
+/** Holds if the given callable is not worth supporting. */
+private predicate isUninteresting(Callable c) { isTestLibrary(c) or isParameterlessConstructor(c) }
+
 /**
  * An external API from either the Standard Library or a 3rd party library.
  */
 class ExternalApi extends Callable {
-  ExternalApi() { not this.fromSource() }
+  ExternalApi() { not this.fromSource() and not isUninteresting(this) }
 
   /**
    * Gets information about the external API in the form expected by the CSV modeling framework.
@@ -73,18 +84,6 @@ class ExternalApi extends Callable {
     TaintTracking::localAdditionalTaintStep(this.getAnInput(), _)
   }
 
-  /** Holds if this API is a constructor without parameters. */
-  private predicate isParameterlessConstructor() {
-    this instanceof Constructor and this.getNumberOfParameters() = 0
-  }
-
-  /** Holds if this API is part of a common testing library or framework. */
-  private predicate isTestLibrary() { this.getDeclaringType() instanceof TestLibrary }
-
-  /** Holds if this API is not worth supporting. */
-  predicate isUninteresting() { this.isTestLibrary() or this.isParameterlessConstructor() }
-
-  /** Holds if this API is a known source. */
   predicate isSource() {
     this.getAnOutput() instanceof RemoteFlowSource or sourceNode(this.getAnOutput(), _)
   }

From f4f4de392fd2d35bc13f0a5e5ee768d05028663c Mon Sep 17 00:00:00 2001
From: Chris Smowton <smowton@github.com>
Date: Thu, 8 Dec 2022 17:33:42 +0000
Subject: [PATCH 1167/1420] Outdent river answer files

---
 .../river-answer-1-path.ql                    | 198 ++++-----
 .../river-answer-2-abstract-class.ql          | 383 +++++++++---------
 2 files changed, 290 insertions(+), 291 deletions(-)

diff --git a/docs/codeql/writing-codeql-queries/river-answer-1-path.ql b/docs/codeql/writing-codeql-queries/river-answer-1-path.ql
index 0a90c85faf2..1799765e8f7 100644
--- a/docs/codeql/writing-codeql-queries/river-answer-1-path.ql
+++ b/docs/codeql/writing-codeql-queries/river-answer-1-path.ql
@@ -5,108 +5,108 @@
 
 /** A possible cargo item. */
 class Cargo extends string {
-    Cargo() {
-      this = ["Nothing", "Goat", "Cabbage", "Wolf"]
-    }
+  Cargo() {
+    this = ["Nothing", "Goat", "Cabbage", "Wolf"]
   }
-  
-  /** A shore, named either `Left` or `Right`. */
-  class Shore extends string {
-    Shore() {
-      this = "Left" or
-      this = "Right"
-    }
-  
-    /** Returns the other shore. */
-    Shore other() {
-      this = "Left" and result = "Right"
-      or
-      this = "Right" and result = "Left"
-    }
+}
+
+/** A shore, named either `Left` or `Right`. */
+class Shore extends string {
+  Shore() {
+    this = "Left" or
+    this = "Right"
   }
-  
-  /** Renders the state as a string. */
-  string renderState(Shore manShore, Shore goatShore, Shore cabbageShore, Shore wolfShore) {
-    result = manShore + "," + goatShore + "," + cabbageShore + "," + wolfShore
+
+  /** Returns the other shore. */
+  Shore other() {
+    this = "Left" and result = "Right"
+    or
+    this = "Right" and result = "Left"
   }
-  
-  /** A record of where everything is. */
-  class State extends string {
-    Shore manShore;
-    Shore goatShore;
-    Shore cabbageShore;
-    Shore wolfShore;
-  
-    State() { this = renderState(manShore, goatShore, cabbageShore, wolfShore) }
-  
-    /** Returns the state that is reached after ferrying a particular cargo item. */
-    State ferry(Cargo cargo) {
-      cargo = "Nothing" and
-      result = renderState(manShore.other(), goatShore, cabbageShore, wolfShore)
-      or
-      cargo = "Goat" and
-      result = renderState(manShore.other(), goatShore.other(), cabbageShore, wolfShore)
-      or
-      cargo = "Cabbage" and
-      result = renderState(manShore.other(), goatShore, cabbageShore.other(), wolfShore)
-      or
-      cargo = "Wolf" and
-      result = renderState(manShore.other(), goatShore, cabbageShore, wolfShore.other())
-    }
-  
-    /**
-     * Holds if the state is safe. This occurs when neither the goat nor the cabbage
-     * can get eaten.
-     */
-    predicate isSafe() {
-      // The goat can't eat the cabbage.
-      (goatShore != cabbageShore or goatShore = manShore) and
-      // The wolf can't eat the goat.
-      (wolfShore != goatShore or wolfShore = manShore)
-    }
-  
-    /** Returns the state that is reached after safely ferrying a cargo item. */
-    State safeFerry(Cargo cargo) { result = this.ferry(cargo) and result.isSafe() }
-  
-    string towards() {
-      manShore = "Left" and result = "to the left"
-      or
-      manShore = "Right" and result = "to the right"
-    }
-  
-    /**
-     * Returns all states that are reachable via safe ferrying.
-     * `path` keeps track of how it is achieved.
-     * `visitedStates` keeps track of previously visited states and is used to avoid loops.
-     */
-    State reachesVia(string path, string visitedStates) {
-      // Reachable in 1 step by ferrying a specific cargo
-      exists(Cargo cargo |
-        result = this.safeFerry(cargo) and
-        visitedStates = result and
-        path = "First " + cargo + " is ferried " + result.towards()
-      )
-      or
-      // Reachable by first following pathSoFar and then ferrying cargo
-      exists(string pathSoFar, string visitedStatesSoFar, Cargo cargo |
-        result = this.reachesVia(pathSoFar, visitedStatesSoFar).safeFerry(cargo) and
-        not exists(visitedStatesSoFar.indexOf(result)) and // resulting state is not visited yet
-        visitedStates = visitedStatesSoFar + "_" + result and
-        path = pathSoFar + ",\nthen " + cargo + " is ferried " + result.towards()
-      )
-    }
+}
+
+/** Renders the state as a string. */
+string renderState(Shore manShore, Shore goatShore, Shore cabbageShore, Shore wolfShore) {
+  result = manShore + "," + goatShore + "," + cabbageShore + "," + wolfShore
+}
+
+/** A record of where everything is. */
+class State extends string {
+  Shore manShore;
+  Shore goatShore;
+  Shore cabbageShore;
+  Shore wolfShore;
+
+  State() { this = renderState(manShore, goatShore, cabbageShore, wolfShore) }
+
+  /** Returns the state that is reached after ferrying a particular cargo item. */
+  State ferry(Cargo cargo) {
+    cargo = "Nothing" and
+    result = renderState(manShore.other(), goatShore, cabbageShore, wolfShore)
+    or
+    cargo = "Goat" and
+    result = renderState(manShore.other(), goatShore.other(), cabbageShore, wolfShore)
+    or
+    cargo = "Cabbage" and
+    result = renderState(manShore.other(), goatShore, cabbageShore.other(), wolfShore)
+    or
+    cargo = "Wolf" and
+    result = renderState(manShore.other(), goatShore, cabbageShore, wolfShore.other())
   }
-  
-  /** The initial state, where everything is on the left shore. */
-  class InitialState extends State {
-    InitialState() { this = renderState("Left", "Left", "Left", "Left") }
+
+  /**
+   * Holds if the state is safe. This occurs when neither the goat nor the cabbage
+   * can get eaten.
+   */
+  predicate isSafe() {
+    // The goat can't eat the cabbage.
+    (goatShore != cabbageShore or goatShore = manShore) and
+    // The wolf can't eat the goat.
+    (wolfShore != goatShore or wolfShore = manShore)
   }
-  
-  /** The goal state, where everything is on the right shore. */
-  class GoalState extends State {
-    GoalState() { this = renderState("Right", "Right", "Right", "Right") }
+
+  /** Returns the state that is reached after safely ferrying a cargo item. */
+  State safeFerry(Cargo cargo) { result = this.ferry(cargo) and result.isSafe() }
+
+  string towards() {
+    manShore = "Left" and result = "to the left"
+    or
+    manShore = "Right" and result = "to the right"
   }
-  
-  from string path
-  where any(InitialState i).reachesVia(path, _) = any(GoalState g)
-  select path + "."
+
+  /**
+   * Returns all states that are reachable via safe ferrying.
+   * `path` keeps track of how it is achieved.
+   * `visitedStates` keeps track of previously visited states and is used to avoid loops.
+   */
+  State reachesVia(string path, string visitedStates) {
+    // Reachable in 1 step by ferrying a specific cargo
+    exists(Cargo cargo |
+      result = this.safeFerry(cargo) and
+      visitedStates = result and
+      path = "First " + cargo + " is ferried " + result.towards()
+    )
+    or
+    // Reachable by first following pathSoFar and then ferrying cargo
+    exists(string pathSoFar, string visitedStatesSoFar, Cargo cargo |
+      result = this.reachesVia(pathSoFar, visitedStatesSoFar).safeFerry(cargo) and
+      not exists(visitedStatesSoFar.indexOf(result)) and // resulting state is not visited yet
+      visitedStates = visitedStatesSoFar + "_" + result and
+      path = pathSoFar + ",\nthen " + cargo + " is ferried " + result.towards()
+    )
+  }
+}
+
+/** The initial state, where everything is on the left shore. */
+class InitialState extends State {
+  InitialState() { this = renderState("Left", "Left", "Left", "Left") }
+}
+
+/** The goal state, where everything is on the right shore. */
+class GoalState extends State {
+  GoalState() { this = renderState("Right", "Right", "Right", "Right") }
+}
+
+from string path
+where any(InitialState i).reachesVia(path, _) = any(GoalState g)
+select path + "."
diff --git a/docs/codeql/writing-codeql-queries/river-answer-2-abstract-class.ql b/docs/codeql/writing-codeql-queries/river-answer-2-abstract-class.ql
index 02ae9c9bb69..df17e638419 100644
--- a/docs/codeql/writing-codeql-queries/river-answer-2-abstract-class.ql
+++ b/docs/codeql/writing-codeql-queries/river-answer-2-abstract-class.ql
@@ -6,200 +6,199 @@
 
 /** One of two shores. */
 class Shore extends string {
-    Shore() { this = "left" or this = "right" }
+  Shore() { this = "left" or this = "right" }
+}
+
+/** Models the behavior of the man. */
+class Man extends string {
+  Shore s;
+
+  Man() { this = "man " + s }
+
+  /** Holds if the man is on a particular shore. */
+  predicate isOn(Shore shore) { s = shore }
+
+  /** Returns the other shore, after the man crosses the river. */
+  Man cross() { result != this }
+
+  /** Returns a cargo and its position after being ferried. */
+  Cargo ferry(Cargo c) {
+    result = c.cross() and
+    c.isOn(s)
   }
-  
-  /** Models the behavior of the man. */
-  class Man extends string {
-    Shore s;
-  
-    Man() { this = "man " + s }
-  
-    /** Holds if the man is on a particular shore. */
-    predicate isOn(Shore shore) { s = shore }
-  
-    /** Returns the other shore, after the man crosses the river. */
-    Man cross() { result != this }
-  
-    /** Returns a cargo and its position after being ferried. */
-    Cargo ferry(Cargo c) {
-      result = c.cross() and
-      c.isOn(s)
-    }
-  }
-  
-  /** One of three possible cargo items, with their position. */
-  abstract class Cargo extends string {
-    Shore s;
-  
-    bindingset[this]
-    Cargo() { any() }
-  
-    /** Holds if the cargo is on a particular shore. */
-    predicate isOn(Shore shore) { s = shore }
-  
-    /** Returns the other shore, after the cargo crosses the river. */
-    abstract Cargo cross();
-  }
-  
-  /** Models the position of the goat. */
-  class Goat extends Cargo {
-    Goat() { this = "goat " + s }
-  
-    override Goat cross() { result != this }
-  }
-  
-  /** Models the position of the wolf. */
-  class Wolf extends Cargo {
-    Wolf() { this = "wolf " + s }
-  
-    override Wolf cross() { result != this }
-  }
-  
-  /** Models the position of the cabbage. */
-  class Cabbage extends Cargo {
-    Cabbage() { this = "cabbage " + s }
-  
-    override Cabbage cross() { result != this }
-  }
-  
-  /** Returns a unicode representation of everything on the left shore. */
-  string onLeft(Man man, Goat goat, Cabbage cabbage, Wolf wolf) {
-    exists(string manOnLeft, string goatOnLeft, string cabbageOnLeft, string wolfOnLeft |
-      (
-        man.isOn("left") and manOnLeft = "🕴"
-        or
-        man.isOn("right") and manOnLeft = "____"
-      ) and
-      (
-        goat.isOn("left") and goatOnLeft = "🐐"
-        or
-        goat.isOn("right") and goatOnLeft = "___"
-      ) and
-      (
-        cabbage.isOn("left") and cabbageOnLeft = "🥬"
-        or
-        cabbage.isOn("right") and cabbageOnLeft = "___"
-      ) and
-      (
-        wolf.isOn("left") and wolfOnLeft = "🐺"
-        or
-        wolf.isOn("right") and wolfOnLeft = "___"
-      ) and
-      result = manOnLeft + "__" + goatOnLeft + "__" + cabbageOnLeft + "__" + wolfOnLeft
-    )
-  }
-  
-  /** Returns a unicode representation of everything on the right shore. */
-  string onRight(Man man, Goat goat, Cabbage cabbage, Wolf wolf) {
-    exists(string manOnLeft, string goatOnLeft, string cabbageOnLeft, string wolfOnLeft |
-      (
-        man.isOn("right") and manOnLeft = "🕴"
-        or
-        man.isOn("left") and manOnLeft = "_"
-      ) and
-      (
-        goat.isOn("right") and goatOnLeft = "🐐"
-        or
-        goat.isOn("left") and goatOnLeft = "__"
-      ) and
-      (
-        cabbage.isOn("right") and cabbageOnLeft = "🥬"
-        or
-        cabbage.isOn("left") and cabbageOnLeft = "__"
-      ) and
-      (
-        wolf.isOn("right") and wolfOnLeft = "🐺"
-        or
-        wolf.isOn("left") and wolfOnLeft = "__"
-      ) and
-      result = manOnLeft + "__" + goatOnLeft + "__" + cabbageOnLeft + "__" + wolfOnLeft
-    )
-  }
-  
-  /** Renders the state as a string, using unicode symbols. */
-  string render(Man man, Goat goat, Cabbage cabbage, Wolf wolf) {
-    result = onLeft(man, goat, cabbage, wolf) + "___🌊🌊🌊🌊🌊🌊🌊🌊🌊🌊___" +
-        onRight(man, goat, cabbage, wolf)
-  }
-  
-  /** A record of where everything is. */
-  class State extends string {
-    Man man;
-  
-    Goat goat;
-  
-    Cabbage cabbage;
-  
-    Wolf wolf;
-  
-    State() { this = render(man, goat, cabbage, wolf) }
-  
-    /**
-     * Returns the possible states that you can transition to
-     * by ferrying one or zero cargo items.
-     */
-    State transition() {
-      result = render(man.cross(), man.ferry(goat), cabbage, wolf) or
-      result = render(man.cross(), goat, man.ferry(cabbage), wolf) or
-      result = render(man.cross(), goat, cabbage, man.ferry(wolf)) or
-      result = render(man.cross(), goat, cabbage, wolf)
-    }
-  
-    /**
-     * Returns all states that are reachable via a transition
-     * and have not yet been visited.
-     * `path` keeps track of how it is achieved.
-     */
-    State reachesVia(string path) {
-      exists(string pathSoFar |
-        result = this.reachesVia(pathSoFar).transition() and
-        not exists(pathSoFar.indexOf(result.toString())) and
-        path = pathSoFar + "\n↓\n" + result
-      )
-    }
-  }
-  
-  /** The initial state, where everything is on the left shore. */
-  class InitialState extends State {
-    InitialState() {
-      exists(Shore left | left = "left" |
-        man.isOn(left) and goat.isOn(left) and cabbage.isOn(left) and wolf.isOn(left)
-      )
-    }
-  
-    override State reachesVia(string path) {
-      path = this + "\n↓\n" + result and result = this.transition()
+}
+
+/** One of three possible cargo items, with their position. */
+abstract class Cargo extends string {
+  Shore s;
+
+  bindingset[this]
+  Cargo() { any() }
+
+  /** Holds if the cargo is on a particular shore. */
+  predicate isOn(Shore shore) { s = shore }
+
+  /** Returns the other shore, after the cargo crosses the river. */
+  abstract Cargo cross();
+}
+
+/** Models the position of the goat. */
+class Goat extends Cargo {
+  Goat() { this = "goat " + s }
+
+  override Goat cross() { result != this }
+}
+
+/** Models the position of the wolf. */
+class Wolf extends Cargo {
+  Wolf() { this = "wolf " + s }
+
+  override Wolf cross() { result != this }
+}
+
+/** Models the position of the cabbage. */
+class Cabbage extends Cargo {
+  Cabbage() { this = "cabbage " + s }
+
+  override Cabbage cross() { result != this }
+}
+
+/** Returns a unicode representation of everything on the left shore. */
+string onLeft(Man man, Goat goat, Cabbage cabbage, Wolf wolf) {
+  exists(string manOnLeft, string goatOnLeft, string cabbageOnLeft, string wolfOnLeft |
+    (
+      man.isOn("left") and manOnLeft = "🕴"
       or
-      result = super.reachesVia(path)
-    }
+      man.isOn("right") and manOnLeft = "____"
+    ) and
+    (
+      goat.isOn("left") and goatOnLeft = "🐐"
+      or
+      goat.isOn("right") and goatOnLeft = "___"
+    ) and
+    (
+      cabbage.isOn("left") and cabbageOnLeft = "🥬"
+      or
+      cabbage.isOn("right") and cabbageOnLeft = "___"
+    ) and
+    (
+      wolf.isOn("left") and wolfOnLeft = "🐺"
+      or
+      wolf.isOn("right") and wolfOnLeft = "___"
+    ) and
+    result = manOnLeft + "__" + goatOnLeft + "__" + cabbageOnLeft + "__" + wolfOnLeft
+  )
+}
+
+/** Returns a unicode representation of everything on the right shore. */
+string onRight(Man man, Goat goat, Cabbage cabbage, Wolf wolf) {
+  exists(string manOnLeft, string goatOnLeft, string cabbageOnLeft, string wolfOnLeft |
+    (
+      man.isOn("right") and manOnLeft = "🕴"
+      or
+      man.isOn("left") and manOnLeft = "_"
+    ) and
+    (
+      goat.isOn("right") and goatOnLeft = "🐐"
+      or
+      goat.isOn("left") and goatOnLeft = "__"
+    ) and
+    (
+      cabbage.isOn("right") and cabbageOnLeft = "🥬"
+      or
+      cabbage.isOn("left") and cabbageOnLeft = "__"
+    ) and
+    (
+      wolf.isOn("right") and wolfOnLeft = "🐺"
+      or
+      wolf.isOn("left") and wolfOnLeft = "__"
+    ) and
+    result = manOnLeft + "__" + goatOnLeft + "__" + cabbageOnLeft + "__" + wolfOnLeft
+  )
+}
+
+/** Renders the state as a string, using unicode symbols. */
+string render(Man man, Goat goat, Cabbage cabbage, Wolf wolf) {
+  result = onLeft(man, goat, cabbage, wolf) + "___🌊🌊🌊🌊🌊🌊🌊🌊🌊🌊___" +
+      onRight(man, goat, cabbage, wolf)
+}
+
+/** A record of where everything is. */
+class State extends string {
+  Man man;
+
+  Goat goat;
+
+  Cabbage cabbage;
+
+  Wolf wolf;
+
+  State() { this = render(man, goat, cabbage, wolf) }
+
+  /**
+   * Returns the possible states that you can transition to
+   * by ferrying one or zero cargo items.
+   */
+  State transition() {
+    result = render(man.cross(), man.ferry(goat), cabbage, wolf) or
+    result = render(man.cross(), goat, man.ferry(cabbage), wolf) or
+    result = render(man.cross(), goat, cabbage, man.ferry(wolf)) or
+    result = render(man.cross(), goat, cabbage, wolf)
   }
-  
-  /** The goal state, where everything is on the right shore. */
-  class GoalState extends State {
-    GoalState() {
-      exists(Shore right | right = "right" |
-        man.isOn(right) and goat.isOn(right) and cabbage.isOn(right) and wolf.isOn(right)
-      )
-    }
-  
-    override State transition() { none() }
+
+  /**
+   * Returns all states that are reachable via a transition
+   * and have not yet been visited.
+   * `path` keeps track of how it is achieved.
+   */
+  State reachesVia(string path) {
+    exists(string pathSoFar |
+      result = this.reachesVia(pathSoFar).transition() and
+      not exists(pathSoFar.indexOf(result.toString())) and
+      path = pathSoFar + "\n↓\n" + result
+    )
   }
-  
-  /** An unsafe state, where something gets eaten. */
-  class IllegalState extends State {
-    IllegalState() {
-      exists(Shore s |
-        goat.isOn(s) and cabbage.isOn(s) and not man.isOn(s)
-        or
-        wolf.isOn(s) and goat.isOn(s) and not man.isOn(s)
-      )
-    }
-  
-    override State transition() { none() }
+}
+
+/** The initial state, where everything is on the left shore. */
+class InitialState extends State {
+  InitialState() {
+    exists(Shore left | left = "left" |
+      man.isOn(left) and goat.isOn(left) and cabbage.isOn(left) and wolf.isOn(left)
+    )
   }
-  
-  from string path
-  where any(InitialState i).reachesVia(path) = any(GoalState g)
-  select path
-  
\ No newline at end of file
+
+  override State reachesVia(string path) {
+    path = this + "\n↓\n" + result and result = this.transition()
+    or
+    result = super.reachesVia(path)
+  }
+}
+
+/** The goal state, where everything is on the right shore. */
+class GoalState extends State {
+  GoalState() {
+    exists(Shore right | right = "right" |
+      man.isOn(right) and goat.isOn(right) and cabbage.isOn(right) and wolf.isOn(right)
+    )
+  }
+
+  override State transition() { none() }
+}
+
+/** An unsafe state, where something gets eaten. */
+class IllegalState extends State {
+  IllegalState() {
+    exists(Shore s |
+      goat.isOn(s) and cabbage.isOn(s) and not man.isOn(s)
+      or
+      wolf.isOn(s) and goat.isOn(s) and not man.isOn(s)
+    )
+  }
+
+  override State transition() { none() }
+}
+
+from string path
+where any(InitialState i).reachesVia(path) = any(GoalState g)
+select path

From 4ea795baf475359f70724a0c77b8f6b4c7c237b8 Mon Sep 17 00:00:00 2001
From: Chris Smowton <smowton@github.com>
Date: Thu, 8 Dec 2022 17:26:32 +0000
Subject: [PATCH 1168/1420] Autoformat docs ql files

---
 .../query-examples/cpp/bad-overflow-guard-1.ql   |  2 +-
 .../query-examples/cpp/bad-overflow-guard-2.ql   |  2 +-
 .../query-examples/cpp/bad-overflow-guard-3.ql   |  2 +-
 .../query-examples/cpp/control-flow-cpp-1.ql     | 11 ++++++-----
 .../query-examples/cpp/control-flow-cpp-2.ql     | 13 +++++++------
 .../query-examples/cpp/control-flow-cpp-3.ql     |  2 +-
 .../query-examples/cpp/control-flow-cpp-4.ql     |  2 +-
 .../query-examples/cpp/control-flow-cpp-5.ql     | 16 ++++++++--------
 .../query-examples/cpp/data-flow-cpp-1.ql        |  9 +++++----
 .../query-examples/cpp/data-flow-cpp-2.ql        |  9 +++++----
 .../query-examples/cpp/empty-if-cpp-class.ql     |  6 ++----
 .../query-examples/cpp/empty-if-cpp-model.ql     |  2 +-
 .../query-examples/cpp/empty-if-cpp-predicate.ql |  6 ++----
 .../query-examples/cpp/empty-if-cpp.ql           |  6 +++---
 .../query-examples/cpp/global-data-flow-cpp-1.ql |  5 +++--
 .../ql-training/query-examples/cpp/snprintf-1.ql |  2 +-
 .../query-examples/java/data-flow-java-1.ql      |  2 +-
 .../query-examples/java/data-flow-java-2.ql      |  2 +-
 .../query-examples/java/empty-if-java-class.ql   |  7 ++-----
 .../query-examples/java/empty-if-java-model.ql   |  2 +-
 .../java/empty-if-java-predicate.ql              |  6 ++----
 .../query-examples/java/empty-if-java.ql         |  2 +-
 .../java/global-data-flow-java-1.ql              |  6 +++---
 .../java/query-injection-java-1.ql               |  2 +-
 .../java/query-injection-java-2.ql               |  2 +-
 .../java/query-injection-java-3.ql               |  6 ++----
 .../river-answer-1-path.ql                       |  4 +---
 .../river-answer-2-abstract-class.ql             |  6 ++----
 .../river-answer-3-datatypes.ql                  |  3 ---
 .../writing-codeql-queries/river-crossing-1.ql   |  1 -
 30 files changed, 66 insertions(+), 80 deletions(-)

diff --git a/docs/codeql/ql-training/query-examples/cpp/bad-overflow-guard-1.ql b/docs/codeql/ql-training/query-examples/cpp/bad-overflow-guard-1.ql
index 41cd8c9017b..870849d024b 100644
--- a/docs/codeql/ql-training/query-examples/cpp/bad-overflow-guard-1.ql
+++ b/docs/codeql/ql-training/query-examples/cpp/bad-overflow-guard-1.ql
@@ -5,4 +5,4 @@ where
   a.getAnOperand() = v.getAnAccess() and
   cmp.getAnOperand() = a and
   cmp.getAnOperand() = v.getAnAccess()
-select cmp, "Overflow check."
\ No newline at end of file
+select cmp, "Overflow check."
diff --git a/docs/codeql/ql-training/query-examples/cpp/bad-overflow-guard-2.ql b/docs/codeql/ql-training/query-examples/cpp/bad-overflow-guard-2.ql
index 12f3ad2f306..3e7be6fe635 100644
--- a/docs/codeql/ql-training/query-examples/cpp/bad-overflow-guard-2.ql
+++ b/docs/codeql/ql-training/query-examples/cpp/bad-overflow-guard-2.ql
@@ -6,4 +6,4 @@ where
   cmp.getAnOperand() = a and
   cmp.getAnOperand() = v.getAnAccess() and
   forall(Expr op | op = a.getAnOperand() | isSmall(op))
-select cmp, "Bad overflow check."
\ No newline at end of file
+select cmp, "Bad overflow check."
diff --git a/docs/codeql/ql-training/query-examples/cpp/bad-overflow-guard-3.ql b/docs/codeql/ql-training/query-examples/cpp/bad-overflow-guard-3.ql
index 693a54ed6ac..84495382386 100644
--- a/docs/codeql/ql-training/query-examples/cpp/bad-overflow-guard-3.ql
+++ b/docs/codeql/ql-training/query-examples/cpp/bad-overflow-guard-3.ql
@@ -9,4 +9,4 @@ where
   cmp.getAnOperand() = v.getAnAccess() and
   forall(Expr op | op = a.getAnOperand() | isSmall(op)) and
   not isSmall(a.getExplicitlyConverted())
-select cmp, "Bad overflow check"
\ No newline at end of file
+select cmp, "Bad overflow check"
diff --git a/docs/codeql/ql-training/query-examples/cpp/control-flow-cpp-1.ql b/docs/codeql/ql-training/query-examples/cpp/control-flow-cpp-1.ql
index b56d1386e13..533863f87e7 100644
--- a/docs/codeql/ql-training/query-examples/cpp/control-flow-cpp-1.ql
+++ b/docs/codeql/ql-training/query-examples/cpp/control-flow-cpp-1.ql
@@ -1,8 +1,9 @@
 import cpp
-  
+
 from FunctionCall alloc, FunctionCall free, LocalScopeVariable v
-where allocationCall(alloc)
-  and alloc = v.getAnAssignedValue()
-  and freeCall(free, v.getAnAccess())
-  and alloc.getASuccessor+() = free
+where
+  allocationCall(alloc) and
+  alloc = v.getAnAssignedValue() and
+  freeCall(free, v.getAnAccess()) and
+  alloc.getASuccessor+() = free
 select alloc, free
diff --git a/docs/codeql/ql-training/query-examples/cpp/control-flow-cpp-2.ql b/docs/codeql/ql-training/query-examples/cpp/control-flow-cpp-2.ql
index 264b5543219..c4acb9287ec 100644
--- a/docs/codeql/ql-training/query-examples/cpp/control-flow-cpp-2.ql
+++ b/docs/codeql/ql-training/query-examples/cpp/control-flow-cpp-2.ql
@@ -1,8 +1,9 @@
 import cpp
-  
+
 from FunctionCall free, LocalScopeVariable v, VariableAccess u
-where freeCall(free, v.getAnAccess())
-  and u = v.getAnAccess()
-  and u.isRValue()
-  and free.getASuccessor+() = u
-select free, u
\ No newline at end of file
+where
+  freeCall(free, v.getAnAccess()) and
+  u = v.getAnAccess() and
+  u.isRValue() and
+  free.getASuccessor+() = u
+select free, u
diff --git a/docs/codeql/ql-training/query-examples/cpp/control-flow-cpp-3.ql b/docs/codeql/ql-training/query-examples/cpp/control-flow-cpp-3.ql
index e8a897d49f8..04ff31ad42a 100644
--- a/docs/codeql/ql-training/query-examples/cpp/control-flow-cpp-3.ql
+++ b/docs/codeql/ql-training/query-examples/cpp/control-flow-cpp-3.ql
@@ -7,4 +7,4 @@ where
     use = lv.getAnAccess() and
     use = def.getASuccessor+()
   )
-select lv, def
\ No newline at end of file
+select lv, def
diff --git a/docs/codeql/ql-training/query-examples/cpp/control-flow-cpp-4.ql b/docs/codeql/ql-training/query-examples/cpp/control-flow-cpp-4.ql
index 72799902481..03503804ee9 100644
--- a/docs/codeql/ql-training/query-examples/cpp/control-flow-cpp-4.ql
+++ b/docs/codeql/ql-training/query-examples/cpp/control-flow-cpp-4.ql
@@ -7,4 +7,4 @@ predicate isReachable(BasicBlock bb) {
 
 from BasicBlock bb
 where not isReachable(bb)
-select bb
\ No newline at end of file
+select bb
diff --git a/docs/codeql/ql-training/query-examples/cpp/control-flow-cpp-5.ql b/docs/codeql/ql-training/query-examples/cpp/control-flow-cpp-5.ql
index da642b22fba..6b8d368daa2 100644
--- a/docs/codeql/ql-training/query-examples/cpp/control-flow-cpp-5.ql
+++ b/docs/codeql/ql-training/query-examples/cpp/control-flow-cpp-5.ql
@@ -1,10 +1,10 @@
 import cpp
 
-from ExprCall c, PointerDereferenceExpr deref, VariableAccess va,
-     Access fnacc
-where c.getLocation().getFile().getBaseName() = "cjpeg.c" and
-      c.getLocation().getStartLine() = 640 and
-      deref = c.getExpr() and
-      va = deref.getOperand() and
-      fnacc = va.getTarget().getAnAssignedValue()
-select c, fnacc.getTarget()
\ No newline at end of file
+from ExprCall c, PointerDereferenceExpr deref, VariableAccess va, Access fnacc
+where
+  c.getLocation().getFile().getBaseName() = "cjpeg.c" and
+  c.getLocation().getStartLine() = 640 and
+  deref = c.getExpr() and
+  va = deref.getOperand() and
+  fnacc = va.getTarget().getAnAssignedValue()
+select c, fnacc.getTarget()
diff --git a/docs/codeql/ql-training/query-examples/cpp/data-flow-cpp-1.ql b/docs/codeql/ql-training/query-examples/cpp/data-flow-cpp-1.ql
index 07dfe382ac8..9af37a5b7da 100644
--- a/docs/codeql/ql-training/query-examples/cpp/data-flow-cpp-1.ql
+++ b/docs/codeql/ql-training/query-examples/cpp/data-flow-cpp-1.ql
@@ -2,7 +2,8 @@ import cpp
 import semmle.code.cpp.commons.Printf
 
 from Call c, FormattingFunction ff, Expr format
-where c.getTarget() = ff and
-      format = c.getArgument(ff.getFormatParameterIndex()) and
-      not format instanceof StringLiteral
-select format, "Non-constant format string."
\ No newline at end of file
+where
+  c.getTarget() = ff and
+  format = c.getArgument(ff.getFormatParameterIndex()) and
+  not format instanceof StringLiteral
+select format, "Non-constant format string."
diff --git a/docs/codeql/ql-training/query-examples/cpp/data-flow-cpp-2.ql b/docs/codeql/ql-training/query-examples/cpp/data-flow-cpp-2.ql
index fadc74f5e6f..41ad66a8e05 100644
--- a/docs/codeql/ql-training/query-examples/cpp/data-flow-cpp-2.ql
+++ b/docs/codeql/ql-training/query-examples/cpp/data-flow-cpp-2.ql
@@ -5,8 +5,9 @@ import semmle.code.cpp.commons.Printf
 class SourceNode extends DataFlow::Node { /* ... */ }
 
 from FormattingFunction f, Call c, SourceNode src, DataFlow::Node arg
-where c.getTarget() = f and
-      arg.asExpr() = c.getArgument(f.getFormatParameterIndex()) and
-      DataFlow::localFlow(src, arg) and
-      not src.asExpr() instanceof StringLiteral
+where
+  c.getTarget() = f and
+  arg.asExpr() = c.getArgument(f.getFormatParameterIndex()) and
+  DataFlow::localFlow(src, arg) and
+  not src.asExpr() instanceof StringLiteral
 select arg, "Non-constant format string."
diff --git a/docs/codeql/ql-training/query-examples/cpp/empty-if-cpp-class.ql b/docs/codeql/ql-training/query-examples/cpp/empty-if-cpp-class.ql
index c68cfbb63e1..d5a47b259ff 100644
--- a/docs/codeql/ql-training/query-examples/cpp/empty-if-cpp-class.ql
+++ b/docs/codeql/ql-training/query-examples/cpp/empty-if-cpp-class.ql
@@ -1,11 +1,9 @@
 import cpp
 
 class EmptyBlock extends Block {
-  EmptyBlock() {
-    this.isEmpty()
-  }
+  EmptyBlock() { this.isEmpty() }
 }
 
 from IfStmt ifStmt
 where ifstmt.getThen() instanceof EmptyBlock
-select ifstmt
\ No newline at end of file
+select ifstmt
diff --git a/docs/codeql/ql-training/query-examples/cpp/empty-if-cpp-model.ql b/docs/codeql/ql-training/query-examples/cpp/empty-if-cpp-model.ql
index c9491ffb458..47ea0c1a735 100644
--- a/docs/codeql/ql-training/query-examples/cpp/empty-if-cpp-model.ql
+++ b/docs/codeql/ql-training/query-examples/cpp/empty-if-cpp-model.ql
@@ -8,4 +8,4 @@ from IfStmt ifstmt
 where
   ifstmt.getThen() instanceof EmptyBlock and
   not exists(ifstmt.getElse())
-select ifstmt, "This if-statement is redundant."
\ No newline at end of file
+select ifstmt, "This if-statement is redundant."
diff --git a/docs/codeql/ql-training/query-examples/cpp/empty-if-cpp-predicate.ql b/docs/codeql/ql-training/query-examples/cpp/empty-if-cpp-predicate.ql
index 46a8feb7981..a4ba381e02d 100644
--- a/docs/codeql/ql-training/query-examples/cpp/empty-if-cpp-predicate.ql
+++ b/docs/codeql/ql-training/query-examples/cpp/empty-if-cpp-predicate.ql
@@ -1,9 +1,7 @@
 import cpp
 
-predicate isEmpty(Block block) {
-  block.isEmpty()
-}
+predicate isEmpty(Block block) { block.isEmpty() }
 
 from IfStmt ifstmt
 where isEmpty(ifstmt.getThen())
-select ifstmt, "This if-statement is redundant."
\ No newline at end of file
+select ifstmt, "This if-statement is redundant."
diff --git a/docs/codeql/ql-training/query-examples/cpp/empty-if-cpp.ql b/docs/codeql/ql-training/query-examples/cpp/empty-if-cpp.ql
index 9779512ac9c..ee0dc38663c 100644
--- a/docs/codeql/ql-training/query-examples/cpp/empty-if-cpp.ql
+++ b/docs/codeql/ql-training/query-examples/cpp/empty-if-cpp.ql
@@ -1,7 +1,7 @@
-import cpp  
-   
+import cpp
+
 from IfStmt ifstmt, Block block
 where
   block = ifstmt.getThen() and
   block.isEmpty()
-select ifstmt, "This if-statement is redundant."
\ No newline at end of file
+select ifstmt, "This if-statement is redundant."
diff --git a/docs/codeql/ql-training/query-examples/cpp/global-data-flow-cpp-1.ql b/docs/codeql/ql-training/query-examples/cpp/global-data-flow-cpp-1.ql
index a151dcec83e..9020da5ea2c 100644
--- a/docs/codeql/ql-training/query-examples/cpp/global-data-flow-cpp-1.ql
+++ b/docs/codeql/ql-training/query-examples/cpp/global-data-flow-cpp-1.ql
@@ -3,11 +3,12 @@ import semmle.code.cpp.dataflow.TaintTracking
 
 class TaintedFormatConfig extends TaintTracking::Configuration {
   TaintedFormatConfig() { this = "TaintedFormatConfig" }
+
   override predicate isSource(DataFlow::Node source) { /* TBD */ }
+
   override predicate isSink(DataFlow::Node sink) { /* TBD */ }
 }
 
 from TaintedFormatConfig cfg, DataFlow::Node source, DataFlow::Node sink
 where cfg.hasFlow(source, sink)
-select sink, "This format string may be derived from a $@.",
-              source, "user-controlled value"
+select sink, "This format string may be derived from a $@.", source, "user-controlled value"
diff --git a/docs/codeql/ql-training/query-examples/cpp/snprintf-1.ql b/docs/codeql/ql-training/query-examples/cpp/snprintf-1.ql
index 89daeb86fcd..aa9ca7fc4af 100644
--- a/docs/codeql/ql-training/query-examples/cpp/snprintf-1.ql
+++ b/docs/codeql/ql-training/query-examples/cpp/snprintf-1.ql
@@ -8,4 +8,4 @@ where
   TaintTracking::localTaint(source, sink) and
   source.asExpr() = call and
   sink.asExpr() = call.getArgument(1)
-select call
\ No newline at end of file
+select call
diff --git a/docs/codeql/ql-training/query-examples/java/data-flow-java-1.ql b/docs/codeql/ql-training/query-examples/java/data-flow-java-1.ql
index efc8793b794..ca14242c10a 100644
--- a/docs/codeql/ql-training/query-examples/java/data-flow-java-1.ql
+++ b/docs/codeql/ql-training/query-examples/java/data-flow-java-1.ql
@@ -8,4 +8,4 @@ from MethodAccess ma
 where
   ma.getMethod().getName().matches("sparql%Query") and
   ma.getArgument(0) instanceof StringConcat
-select ma, "SPARQL query vulnerable to injection."
\ No newline at end of file
+select ma, "SPARQL query vulnerable to injection."
diff --git a/docs/codeql/ql-training/query-examples/java/data-flow-java-2.ql b/docs/codeql/ql-training/query-examples/java/data-flow-java-2.ql
index 14020c1dc22..87f41f59fe2 100644
--- a/docs/codeql/ql-training/query-examples/java/data-flow-java-2.ql
+++ b/docs/codeql/ql-training/query-examples/java/data-flow-java-2.ql
@@ -5,4 +5,4 @@ from MethodAccess ma, StringConcat stringConcat
 where
   ma.getMethod().getName().matches("sparql%Query") and
   localFlow(exprNode(stringConcat), exprNode(ma.getArgument(0)))
-select ma, "SPARQL query vulnerable to injection."
\ No newline at end of file
+select ma, "SPARQL query vulnerable to injection."
diff --git a/docs/codeql/ql-training/query-examples/java/empty-if-java-class.ql b/docs/codeql/ql-training/query-examples/java/empty-if-java-class.ql
index e5069678158..da7e118436b 100644
--- a/docs/codeql/ql-training/query-examples/java/empty-if-java-class.ql
+++ b/docs/codeql/ql-training/query-examples/java/empty-if-java-class.ql
@@ -1,12 +1,9 @@
 import java
 
 class EmptyBlock extends Block {
-  EmptyBlock() {
-    this.getNumStmt() = 0
-  }
+  EmptyBlock() { this.getNumStmt() = 0 }
 }
 
 from IfStmt ifstmt
-where ifstmt.getThen() instanceof
-      EmptyBlock
+where ifstmt.getThen() instanceof EmptyBlock
 select ifstmt
diff --git a/docs/codeql/ql-training/query-examples/java/empty-if-java-model.ql b/docs/codeql/ql-training/query-examples/java/empty-if-java-model.ql
index e5928274b1c..390980dc2ca 100644
--- a/docs/codeql/ql-training/query-examples/java/empty-if-java-model.ql
+++ b/docs/codeql/ql-training/query-examples/java/empty-if-java-model.ql
@@ -8,4 +8,4 @@ from IfStmt ifstmt
 where
   ifstmt.getThen() instanceof EmptyBlock and
   not exists(ifstmt.getElse())
-select ifstmt, "This if-statement is redundant."
\ No newline at end of file
+select ifstmt, "This if-statement is redundant."
diff --git a/docs/codeql/ql-training/query-examples/java/empty-if-java-predicate.ql b/docs/codeql/ql-training/query-examples/java/empty-if-java-predicate.ql
index c993d7f3cab..99a9bccfafc 100644
--- a/docs/codeql/ql-training/query-examples/java/empty-if-java-predicate.ql
+++ b/docs/codeql/ql-training/query-examples/java/empty-if-java-predicate.ql
@@ -1,9 +1,7 @@
 import java
 
-predicate isEmpty(Block block) {
-  block.getNumStmt() = 0
-}
+predicate isEmpty(Block block) { block.getNumStmt() = 0 }
 
 from IfStmt ifstmt
 where isEmpty(ifstmt.getThen())
-select ifstmt
\ No newline at end of file
+select ifstmt
diff --git a/docs/codeql/ql-training/query-examples/java/empty-if-java.ql b/docs/codeql/ql-training/query-examples/java/empty-if-java.ql
index 9cd9ca69279..714ad4f4202 100644
--- a/docs/codeql/ql-training/query-examples/java/empty-if-java.ql
+++ b/docs/codeql/ql-training/query-examples/java/empty-if-java.ql
@@ -4,4 +4,4 @@ from IfStmt ifstmt, Block block
 where
   block = ifstmt.getThen() and
   block.getNumStmt() = 0
-select ifstmt, "This if-statement is redundant."
\ No newline at end of file
+select ifstmt, "This if-statement is redundant."
diff --git a/docs/codeql/ql-training/query-examples/java/global-data-flow-java-1.ql b/docs/codeql/ql-training/query-examples/java/global-data-flow-java-1.ql
index f30e4c20d68..7604b20eb95 100644
--- a/docs/codeql/ql-training/query-examples/java/global-data-flow-java-1.ql
+++ b/docs/codeql/ql-training/query-examples/java/global-data-flow-java-1.ql
@@ -3,12 +3,12 @@ import semmle.code.java.dataflow.TaintTracking
 
 class TaintedOGNLConfig extends TaintTracking::Configuration {
   TaintedOGNLConfig() { this = "TaintedOGNLConfig" }
+
   override predicate isSource(DataFlow::Node source) { /* TBD */ }
+
   override predicate isSink(DataFlow::Node sink) { /* TBD */ }
 }
 
 from TaintedOGNLConfig cfg, DataFlow::Node source, DataFlow::Node sink
 where cfg.hasFlow(source, sink)
-select source,
-       "This untrusted input is evaluated as an OGNL expression $@.",
-       sink, "here"
\ No newline at end of file
+select source, "This untrusted input is evaluated as an OGNL expression $@.", sink, "here"
diff --git a/docs/codeql/ql-training/query-examples/java/query-injection-java-1.ql b/docs/codeql/ql-training/query-examples/java/query-injection-java-1.ql
index af007406057..e9ad5a7113e 100644
--- a/docs/codeql/ql-training/query-examples/java/query-injection-java-1.ql
+++ b/docs/codeql/ql-training/query-examples/java/query-injection-java-1.ql
@@ -4,4 +4,4 @@ from Method m, MethodAccess ma
 where
   m.getName().matches("sparql%Query") and
   ma.getMethod() = m
-select ma, m
\ No newline at end of file
+select ma, m
diff --git a/docs/codeql/ql-training/query-examples/java/query-injection-java-2.ql b/docs/codeql/ql-training/query-examples/java/query-injection-java-2.ql
index 84f8fde6363..bb2e76d168a 100644
--- a/docs/codeql/ql-training/query-examples/java/query-injection-java-2.ql
+++ b/docs/codeql/ql-training/query-examples/java/query-injection-java-2.ql
@@ -5,4 +5,4 @@ where
   m.getName().matches("sparql%Query") and
   ma.getMethod() = m and
   isStringConcat(ma.getArgument(0))
-select ma, m
\ No newline at end of file
+select ma, m
diff --git a/docs/codeql/ql-training/query-examples/java/query-injection-java-3.ql b/docs/codeql/ql-training/query-examples/java/query-injection-java-3.ql
index 923c65294f1..9c7186ce4bf 100644
--- a/docs/codeql/ql-training/query-examples/java/query-injection-java-3.ql
+++ b/docs/codeql/ql-training/query-examples/java/query-injection-java-3.ql
@@ -1,12 +1,10 @@
 import java
 
-predicate isStringConcat(AddExpr ae) {
-  ae.getType() instanceof TypeString
-}
+predicate isStringConcat(AddExpr ae) { ae.getType() instanceof TypeString }
 
 from Method m, MethodAccess ma
 where
   m.getName().matches("sparql%Query") and
   ma.getMethod() = m and
   isStringConcat(ma.getArgument(0))
-select ma, "SPARQL query vulnerable to injection."
\ No newline at end of file
+select ma, "SPARQL query vulnerable to injection."
diff --git a/docs/codeql/writing-codeql-queries/river-answer-1-path.ql b/docs/codeql/writing-codeql-queries/river-answer-1-path.ql
index 1799765e8f7..49b1b95856f 100644
--- a/docs/codeql/writing-codeql-queries/river-answer-1-path.ql
+++ b/docs/codeql/writing-codeql-queries/river-answer-1-path.ql
@@ -5,9 +5,7 @@
 
 /** A possible cargo item. */
 class Cargo extends string {
-  Cargo() {
-    this = ["Nothing", "Goat", "Cabbage", "Wolf"]
-  }
+  Cargo() { this = ["Nothing", "Goat", "Cabbage", "Wolf"] }
 }
 
 /** A shore, named either `Left` or `Right`. */
diff --git a/docs/codeql/writing-codeql-queries/river-answer-2-abstract-class.ql b/docs/codeql/writing-codeql-queries/river-answer-2-abstract-class.ql
index df17e638419..55614f7e856 100644
--- a/docs/codeql/writing-codeql-queries/river-answer-2-abstract-class.ql
+++ b/docs/codeql/writing-codeql-queries/river-answer-2-abstract-class.ql
@@ -119,18 +119,16 @@ string onRight(Man man, Goat goat, Cabbage cabbage, Wolf wolf) {
 
 /** Renders the state as a string, using unicode symbols. */
 string render(Man man, Goat goat, Cabbage cabbage, Wolf wolf) {
-  result = onLeft(man, goat, cabbage, wolf) + "___🌊🌊🌊🌊🌊🌊🌊🌊🌊🌊___" +
+  result =
+    onLeft(man, goat, cabbage, wolf) + "___🌊🌊🌊🌊🌊🌊🌊🌊🌊🌊___" +
       onRight(man, goat, cabbage, wolf)
 }
 
 /** A record of where everything is. */
 class State extends string {
   Man man;
-
   Goat goat;
-
   Cabbage cabbage;
-
   Wolf wolf;
 
   State() { this = render(man, goat, cabbage, wolf) }
diff --git a/docs/codeql/writing-codeql-queries/river-answer-3-datatypes.ql b/docs/codeql/writing-codeql-queries/river-answer-3-datatypes.ql
index 6200da9ebc2..bb74a0321b9 100644
--- a/docs/codeql/writing-codeql-queries/river-answer-3-datatypes.ql
+++ b/docs/codeql/writing-codeql-queries/river-answer-3-datatypes.ql
@@ -90,11 +90,8 @@ newtype TState = Currently(Man man, Goat goat, Cabbage cabbage, Wolf wolf)
 /** A record of where everything is. */
 class State extends TState {
   Man man;
-
   Goat goat;
-
   Cabbage cabbage;
-
   Wolf wolf;
 
   State() { this = Currently(man, goat, cabbage, wolf) }
diff --git a/docs/codeql/writing-codeql-queries/river-crossing-1.ql b/docs/codeql/writing-codeql-queries/river-crossing-1.ql
index 80d828c7389..b9774404a5a 100644
--- a/docs/codeql/writing-codeql-queries/river-crossing-1.ql
+++ b/docs/codeql/writing-codeql-queries/river-crossing-1.ql
@@ -99,4 +99,3 @@ class GoalState extends State {
 from string path
 where any(InitialState i).reachesVia(path, _) = any(GoalState g)
 select path
-

From ec0ce56269ef879e56face2f0e01d8419d1fdeac Mon Sep 17 00:00:00 2001
From: Jeroen Ketema <jketema@github.com>
Date: Thu, 8 Dec 2022 19:20:11 +0100
Subject: [PATCH 1169/1420] C++: Model `getaddrinfo` as flow source

---
 .../code/cpp/models/implementations/Inet.qll  | 19 +++++++++++++++++++
 .../source-sink-tests/sources-and-sinks.cpp   | 10 ++++++++++
 2 files changed, 29 insertions(+)

diff --git a/cpp/ql/lib/semmle/code/cpp/models/implementations/Inet.qll b/cpp/ql/lib/semmle/code/cpp/models/implementations/Inet.qll
index 397dca69fed..5e42d96ca33 100644
--- a/cpp/ql/lib/semmle/code/cpp/models/implementations/Inet.qll
+++ b/cpp/ql/lib/semmle/code/cpp/models/implementations/Inet.qll
@@ -1,6 +1,7 @@
 import semmle.code.cpp.models.interfaces.Taint
 import semmle.code.cpp.models.interfaces.Alias
 import semmle.code.cpp.models.interfaces.ArrayFunction
+import semmle.code.cpp.models.interfaces.FlowSource
 
 private class InetNtoa extends TaintFunction {
   InetNtoa() { hasGlobalName("inet_ntoa") }
@@ -142,3 +143,21 @@ private class Gethostbyaddr extends TaintFunction, ArrayFunction {
 
   override predicate hasArrayWithNullTerminator(int bufParam) { bufParam = 0 }
 }
+
+private class Getaddrinfo extends TaintFunction, ArrayFunction, RemoteFlowSourceFunction {
+  Getaddrinfo() { hasGlobalName("getaddrinfo") }
+
+  override predicate hasTaintFlow(FunctionInput input, FunctionOutput output) {
+    input.isParameterDeref([0 .. 2]) and
+    output.isParameterDeref(3)
+  }
+
+  override predicate hasArrayInput(int bufParam) { bufParam in [0, 1] }
+
+  override predicate hasArrayWithNullTerminator(int bufParam) { bufParam in [0, 1] }
+
+  override predicate hasRemoteFlowSource(FunctionOutput output, string description) {
+    output.isParameterDeref(3) and
+    description = "Address returned by " + this.getName()
+  }
+}
diff --git a/cpp/ql/test/library-tests/dataflow/source-sink-tests/sources-and-sinks.cpp b/cpp/ql/test/library-tests/dataflow/source-sink-tests/sources-and-sinks.cpp
index 6968a7738e9..fcc4ee0a315 100644
--- a/cpp/ql/test/library-tests/dataflow/source-sink-tests/sources-and-sinks.cpp
+++ b/cpp/ql/test/library-tests/dataflow/source-sink-tests/sources-and-sinks.cpp
@@ -40,3 +40,13 @@ void test_scanf(FILE *stream, int *d, char *buf) {
   scanf("%d %s", d, buf); // $ local_source=40:18 local_source=40:21
   fscanf(stream, "%d %s", d, buf);  // $ remote_source=41:27 remote_source=41:30
 }
+
+struct addrinfo;
+
+int getaddrinfo(const char *hostname, const char *servname,
+                const struct addrinfo *hints, struct addrinfo **res);
+
+void test_inet(char *hostname, char *servname, struct addrinfo *hints) {
+  addrinfo *res;
+  int ret = getaddrinfo(hostname, servname, hints, &res); // $ remote_source
+}

From aabbafd2bf5ee3bc03362f89ef32271c9700efdb Mon Sep 17 00:00:00 2001
From: Jeroen Ketema <jketema@github.com>
Date: Thu, 8 Dec 2022 19:33:11 +0100
Subject: [PATCH 1170/1420] C++: Fix QL-for-QL warning

---
 .../code/cpp/models/implementations/Inet.qll  | 22 +++++++++----------
 1 file changed, 11 insertions(+), 11 deletions(-)

diff --git a/cpp/ql/lib/semmle/code/cpp/models/implementations/Inet.qll b/cpp/ql/lib/semmle/code/cpp/models/implementations/Inet.qll
index 5e42d96ca33..2589c6f46a4 100644
--- a/cpp/ql/lib/semmle/code/cpp/models/implementations/Inet.qll
+++ b/cpp/ql/lib/semmle/code/cpp/models/implementations/Inet.qll
@@ -4,7 +4,7 @@ import semmle.code.cpp.models.interfaces.ArrayFunction
 import semmle.code.cpp.models.interfaces.FlowSource
 
 private class InetNtoa extends TaintFunction {
-  InetNtoa() { hasGlobalName("inet_ntoa") }
+  InetNtoa() { this.hasGlobalName("inet_ntoa") }
 
   override predicate hasTaintFlow(FunctionInput input, FunctionOutput output) {
     input.isParameter(0) and
@@ -13,7 +13,7 @@ private class InetNtoa extends TaintFunction {
 }
 
 private class InetAton extends TaintFunction, ArrayFunction {
-  InetAton() { hasGlobalName("inet_aton") }
+  InetAton() { this.hasGlobalName("inet_aton") }
 
   override predicate hasTaintFlow(FunctionInput input, FunctionOutput output) {
     input.isParameterDeref(0) and
@@ -33,7 +33,7 @@ private class InetAton extends TaintFunction, ArrayFunction {
 }
 
 private class InetAddr extends TaintFunction, ArrayFunction, AliasFunction {
-  InetAddr() { hasGlobalName("inet_addr") }
+  InetAddr() { this.hasGlobalName("inet_addr") }
 
   override predicate hasTaintFlow(FunctionInput input, FunctionOutput output) {
     input.isParameterDeref(0) and
@@ -52,7 +52,7 @@ private class InetAddr extends TaintFunction, ArrayFunction, AliasFunction {
 }
 
 private class InetNetwork extends TaintFunction, ArrayFunction {
-  InetNetwork() { hasGlobalName("inet_network") }
+  InetNetwork() { this.hasGlobalName("inet_network") }
 
   override predicate hasTaintFlow(FunctionInput input, FunctionOutput output) {
     input.isParameterDeref(0) and
@@ -65,7 +65,7 @@ private class InetNetwork extends TaintFunction, ArrayFunction {
 }
 
 private class InetMakeaddr extends TaintFunction {
-  InetMakeaddr() { hasGlobalName("inet_makeaddr") }
+  InetMakeaddr() { this.hasGlobalName("inet_makeaddr") }
 
   override predicate hasTaintFlow(FunctionInput input, FunctionOutput output) {
     (
@@ -77,7 +77,7 @@ private class InetMakeaddr extends TaintFunction {
 }
 
 private class InetLnaof extends TaintFunction {
-  InetLnaof() { hasGlobalName("inet_lnaof") }
+  InetLnaof() { this.hasGlobalName("inet_lnaof") }
 
   override predicate hasTaintFlow(FunctionInput input, FunctionOutput output) {
     input.isParameter(0) and
@@ -86,7 +86,7 @@ private class InetLnaof extends TaintFunction {
 }
 
 private class InetNetof extends TaintFunction {
-  InetNetof() { hasGlobalName("inet_netof") }
+  InetNetof() { this.hasGlobalName("inet_netof") }
 
   override predicate hasTaintFlow(FunctionInput input, FunctionOutput output) {
     input.isParameter(0) and
@@ -95,7 +95,7 @@ private class InetNetof extends TaintFunction {
 }
 
 private class InetPton extends TaintFunction, ArrayFunction {
-  InetPton() { hasGlobalName("inet_pton") }
+  InetPton() { this.hasGlobalName("inet_pton") }
 
   override predicate hasTaintFlow(FunctionInput input, FunctionOutput output) {
     (
@@ -115,7 +115,7 @@ private class InetPton extends TaintFunction, ArrayFunction {
 }
 
 private class Gethostbyname extends TaintFunction, ArrayFunction {
-  Gethostbyname() { hasGlobalName("gethostbyname") }
+  Gethostbyname() { this.hasGlobalName("gethostbyname") }
 
   override predicate hasTaintFlow(FunctionInput input, FunctionOutput output) {
     input.isParameterDeref(0) and
@@ -128,7 +128,7 @@ private class Gethostbyname extends TaintFunction, ArrayFunction {
 }
 
 private class Gethostbyaddr extends TaintFunction, ArrayFunction {
-  Gethostbyaddr() { hasGlobalName("gethostbyaddr") }
+  Gethostbyaddr() { this.hasGlobalName("gethostbyaddr") }
 
   override predicate hasTaintFlow(FunctionInput input, FunctionOutput output) {
     (
@@ -145,7 +145,7 @@ private class Gethostbyaddr extends TaintFunction, ArrayFunction {
 }
 
 private class Getaddrinfo extends TaintFunction, ArrayFunction, RemoteFlowSourceFunction {
-  Getaddrinfo() { hasGlobalName("getaddrinfo") }
+  Getaddrinfo() { this.hasGlobalName("getaddrinfo") }
 
   override predicate hasTaintFlow(FunctionInput input, FunctionOutput output) {
     input.isParameterDeref([0 .. 2]) and

From f48cc9f40e1e9677e688d06b620cb5970c2de3a7 Mon Sep 17 00:00:00 2001
From: Jami Cogswell <jcogs33@Jamis-MacBook-Pro.local>
Date: Thu, 8 Dec 2022 16:56:43 -0500
Subject: [PATCH 1171/1420] Java: remove previous uses of isUninteresting

---
 java/ql/src/Telemetry/ExternalLibraryUsage.ql     | 3 +--
 java/ql/src/Telemetry/SupportedExternalApis.ql    | 7 ++-----
 java/ql/src/Telemetry/SupportedExternalSinks.ql   | 5 +----
 java/ql/src/Telemetry/SupportedExternalSources.ql | 5 +----
 java/ql/src/Telemetry/SupportedExternalTaint.ql   | 5 +----
 java/ql/src/Telemetry/UnsupportedExternalAPIs.ql  | 1 -
 6 files changed, 6 insertions(+), 20 deletions(-)

diff --git a/java/ql/src/Telemetry/ExternalLibraryUsage.ql b/java/ql/src/Telemetry/ExternalLibraryUsage.ql
index bf63b91d02a..6fe9e3e0915 100644
--- a/java/ql/src/Telemetry/ExternalLibraryUsage.ql
+++ b/java/ql/src/Telemetry/ExternalLibraryUsage.ql
@@ -14,8 +14,7 @@ private predicate getRelevantUsages(string jarname, int usages) {
     strictcount(Call c, ExternalApi a |
       c.getCallee().getSourceDeclaration() = a and
       not c.getFile() instanceof GeneratedFile and
-      a.jarContainer() = jarname and
-      not a.isUninteresting()
+      a.jarContainer() = jarname
     )
 }
 
diff --git a/java/ql/src/Telemetry/SupportedExternalApis.ql b/java/ql/src/Telemetry/SupportedExternalApis.ql
index 13c6473b580..632d5ab4b70 100644
--- a/java/ql/src/Telemetry/SupportedExternalApis.ql
+++ b/java/ql/src/Telemetry/SupportedExternalApis.ql
@@ -11,11 +11,8 @@ import semmle.code.java.dataflow.internal.FlowSummaryImpl as FlowSummaryImpl
 import ExternalApi
 
 private predicate relevant(ExternalApi api) {
-  not api.isUninteresting() and
-  (
-    api.isSupported() or
-    api = any(FlowSummaryImpl::Public::NegativeSummarizedCallable nsc).asCallable()
-  )
+  api.isSupported() or
+  api = any(FlowSummaryImpl::Public::NegativeSummarizedCallable nsc).asCallable()
 }
 
 from string apiName, int usages
diff --git a/java/ql/src/Telemetry/SupportedExternalSinks.ql b/java/ql/src/Telemetry/SupportedExternalSinks.ql
index 7593adeed2a..6456b7e296c 100644
--- a/java/ql/src/Telemetry/SupportedExternalSinks.ql
+++ b/java/ql/src/Telemetry/SupportedExternalSinks.ql
@@ -9,10 +9,7 @@
 import java
 import ExternalApi
 
-private predicate relevant(ExternalApi api) {
-  not api.isUninteresting() and
-  api.isSink()
-}
+private predicate relevant(ExternalApi api) { api.isSink() }
 
 from string apiName, int usages
 where Results<relevant/1>::restrict(apiName, usages)
diff --git a/java/ql/src/Telemetry/SupportedExternalSources.ql b/java/ql/src/Telemetry/SupportedExternalSources.ql
index 89f9b37cb55..9bb0f1202c1 100644
--- a/java/ql/src/Telemetry/SupportedExternalSources.ql
+++ b/java/ql/src/Telemetry/SupportedExternalSources.ql
@@ -9,10 +9,7 @@
 import java
 import ExternalApi
 
-private predicate relevant(ExternalApi api) {
-  not api.isUninteresting() and
-  api.isSource()
-}
+private predicate relevant(ExternalApi api) { api.isSource() }
 
 from string apiName, int usages
 where Results<relevant/1>::restrict(apiName, usages)
diff --git a/java/ql/src/Telemetry/SupportedExternalTaint.ql b/java/ql/src/Telemetry/SupportedExternalTaint.ql
index 3f995138812..52792b2bbd2 100644
--- a/java/ql/src/Telemetry/SupportedExternalTaint.ql
+++ b/java/ql/src/Telemetry/SupportedExternalTaint.ql
@@ -9,10 +9,7 @@
 import java
 import ExternalApi
 
-private predicate relevant(ExternalApi api) {
-  not api.isUninteresting() and
-  api.hasSummary()
-}
+private predicate relevant(ExternalApi api) { api.hasSummary() }
 
 from string apiName, int usages
 where Results<relevant/1>::restrict(apiName, usages)
diff --git a/java/ql/src/Telemetry/UnsupportedExternalAPIs.ql b/java/ql/src/Telemetry/UnsupportedExternalAPIs.ql
index b1721972dd3..8c69b62a4b8 100644
--- a/java/ql/src/Telemetry/UnsupportedExternalAPIs.ql
+++ b/java/ql/src/Telemetry/UnsupportedExternalAPIs.ql
@@ -11,7 +11,6 @@ import semmle.code.java.dataflow.internal.FlowSummaryImpl as FlowSummaryImpl
 import ExternalApi
 
 private predicate relevant(ExternalApi api) {
-  not api.isUninteresting() and
   not api.isSupported() and
   not api = any(FlowSummaryImpl::Public::NegativeSummarizedCallable nsc).asCallable()
 }

From ff85e2f9f21c600791dac048a8568284ea969dd5 Mon Sep 17 00:00:00 2001
From: Jami Cogswell <jcogs33@Jamis-MacBook-Pro.local>
Date: Thu, 8 Dec 2022 17:07:24 -0500
Subject: [PATCH 1172/1420] C#: update ExternalApi characteristic predicate to
 include not isUninteresting

---
 csharp/ql/src/Telemetry/ExternalApi.qll | 25 +++++++++++++------------
 1 file changed, 13 insertions(+), 12 deletions(-)

diff --git a/csharp/ql/src/Telemetry/ExternalApi.qll b/csharp/ql/src/Telemetry/ExternalApi.qll
index 244e3e1dc3d..b22d8350f77 100644
--- a/csharp/ql/src/Telemetry/ExternalApi.qll
+++ b/csharp/ql/src/Telemetry/ExternalApi.qll
@@ -24,6 +24,17 @@ class TestLibrary extends RefType {
   }
 }
 
+/** Holds if the given callable is a constructor without parameters. */
+private predicate isParameterlessConstructor(DotNet::Callable c) {
+  c instanceof Constructor and c.getNumberOfParameters() = 0
+}
+
+/** Holds if this API is part of a common testing library or framework. */
+private predicate isTestLibrary(DotNet::Callable c) { c.getDeclaringType() instanceof TestLibrary }
+
+/** Holds if this API is not worth supporting. */
+predicate isUninteresting(DotNet::Callable c) { isTestLibrary(c) or isParameterlessConstructor(c) }
+
 /**
  * An external API from either the C# Standard Library or a 3rd party library.
  */
@@ -31,7 +42,8 @@ class ExternalApi extends DotNet::Callable {
   ExternalApi() {
     this.isUnboundDeclaration() and
     this.fromLibrary() and
-    this.(Modifiable).isEffectivelyPublic()
+    this.(Modifiable).isEffectivelyPublic() and
+    not isUninteresting(this)
   }
 
   /**
@@ -84,17 +96,6 @@ class ExternalApi extends DotNet::Callable {
     defaultAdditionalTaintStep(this.getAnInput(), _)
   }
 
-  /** Holds if this API is a constructor without parameters. */
-  private predicate isParameterlessConstructor() {
-    this instanceof Constructor and this.getNumberOfParameters() = 0
-  }
-
-  /** Holds if this API is part of a common testing library or framework. */
-  private predicate isTestLibrary() { this.getDeclaringType() instanceof TestLibrary }
-
-  /** Holds if this API is not worth supporting. */
-  predicate isUninteresting() { this.isTestLibrary() or this.isParameterlessConstructor() }
-
   /** Holds if this API is a known source. */
   predicate isSource() {
     this.getAnOutput() instanceof RemoteFlowSource or sourceNode(this.getAnOutput(), _)

From a1908be16587b7aa52353af20605c958947d33d8 Mon Sep 17 00:00:00 2001
From: Jami Cogswell <jcogs33@Jamis-MacBook-Pro.local>
Date: Thu, 8 Dec 2022 17:12:26 -0500
Subject: [PATCH 1173/1420] C#: remove previous uses of isUninteresting

---
 csharp/ql/src/Telemetry/ExternalLibraryUsage.ql          | 3 +--
 csharp/ql/src/Telemetry/SupportedExternalApis.ql         | 7 ++-----
 csharp/ql/src/Telemetry/SupportedExternalSinks.ql        | 5 +----
 csharp/ql/src/Telemetry/SupportedExternalSources.ql      | 5 +----
 csharp/ql/src/Telemetry/SupportedExternalTaint.ql        | 5 +----
 csharp/ql/src/Telemetry/UnsupportedExternalAPIs.ql       | 1 -
 csharp/ql/src/meta/frameworks/UnsupportedExternalAPIs.ql | 1 -
 7 files changed, 6 insertions(+), 21 deletions(-)

diff --git a/csharp/ql/src/Telemetry/ExternalLibraryUsage.ql b/csharp/ql/src/Telemetry/ExternalLibraryUsage.ql
index f06a18054dc..f28fa1c76fb 100644
--- a/csharp/ql/src/Telemetry/ExternalLibraryUsage.ql
+++ b/csharp/ql/src/Telemetry/ExternalLibraryUsage.ql
@@ -14,8 +14,7 @@ private predicate getRelevantUsages(string namespace, int usages) {
   usages =
     strictcount(Call c, ExternalApi api |
       c.getTarget().getUnboundDeclaration() = api and
-      api.getNamespace() = namespace and
-      not api.isUninteresting()
+      api.getNamespace() = namespace
     )
 }
 
diff --git a/csharp/ql/src/Telemetry/SupportedExternalApis.ql b/csharp/ql/src/Telemetry/SupportedExternalApis.ql
index 039f2a24677..cf0c1868a97 100644
--- a/csharp/ql/src/Telemetry/SupportedExternalApis.ql
+++ b/csharp/ql/src/Telemetry/SupportedExternalApis.ql
@@ -12,11 +12,8 @@ private import semmle.code.csharp.dataflow.internal.FlowSummaryImpl as FlowSumma
 private import ExternalApi
 
 private predicate relevant(ExternalApi api) {
-  not api.isUninteresting() and
-  (
-    api.isSupported() or
-    api instanceof FlowSummaryImpl::Public::NegativeSummarizedCallable
-  )
+  api.isSupported() or
+  api instanceof FlowSummaryImpl::Public::NegativeSummarizedCallable
 }
 
 from string info, int usages
diff --git a/csharp/ql/src/Telemetry/SupportedExternalSinks.ql b/csharp/ql/src/Telemetry/SupportedExternalSinks.ql
index 4eb42c4628f..542834bc057 100644
--- a/csharp/ql/src/Telemetry/SupportedExternalSinks.ql
+++ b/csharp/ql/src/Telemetry/SupportedExternalSinks.ql
@@ -10,10 +10,7 @@ private import csharp
 private import semmle.code.csharp.dispatch.Dispatch
 private import ExternalApi
 
-private predicate relevant(ExternalApi api) {
-  not api.isUninteresting() and
-  api.isSink()
-}
+private predicate relevant(ExternalApi api) { api.isSink() }
 
 from string info, int usages
 where Results<relevant/1>::restrict(info, usages)
diff --git a/csharp/ql/src/Telemetry/SupportedExternalSources.ql b/csharp/ql/src/Telemetry/SupportedExternalSources.ql
index 0d0b38a4754..d2293b2d3cf 100644
--- a/csharp/ql/src/Telemetry/SupportedExternalSources.ql
+++ b/csharp/ql/src/Telemetry/SupportedExternalSources.ql
@@ -10,10 +10,7 @@ private import csharp
 private import semmle.code.csharp.dispatch.Dispatch
 private import ExternalApi
 
-private predicate relevant(ExternalApi api) {
-  not api.isUninteresting() and
-  api.isSource()
-}
+private predicate relevant(ExternalApi api) { api.isSource() }
 
 from string info, int usages
 where Results<relevant/1>::restrict(info, usages)
diff --git a/csharp/ql/src/Telemetry/SupportedExternalTaint.ql b/csharp/ql/src/Telemetry/SupportedExternalTaint.ql
index 3eccf73b58b..a76467f0142 100644
--- a/csharp/ql/src/Telemetry/SupportedExternalTaint.ql
+++ b/csharp/ql/src/Telemetry/SupportedExternalTaint.ql
@@ -10,10 +10,7 @@ private import csharp
 private import semmle.code.csharp.dispatch.Dispatch
 private import ExternalApi
 
-private predicate relevant(ExternalApi api) {
-  not api.isUninteresting() and
-  api.hasSummary()
-}
+private predicate relevant(ExternalApi api) { api.hasSummary() }
 
 from string info, int usages
 where Results<relevant/1>::restrict(info, usages)
diff --git a/csharp/ql/src/Telemetry/UnsupportedExternalAPIs.ql b/csharp/ql/src/Telemetry/UnsupportedExternalAPIs.ql
index 618f26e6636..b9adafe4b2a 100644
--- a/csharp/ql/src/Telemetry/UnsupportedExternalAPIs.ql
+++ b/csharp/ql/src/Telemetry/UnsupportedExternalAPIs.ql
@@ -12,7 +12,6 @@ private import semmle.code.csharp.dataflow.internal.FlowSummaryImpl as FlowSumma
 private import ExternalApi
 
 private predicate relevant(ExternalApi api) {
-  not api.isUninteresting() and
   not api.isSupported() and
   not api instanceof FlowSummaryImpl::Public::NegativeSummarizedCallable
 }
diff --git a/csharp/ql/src/meta/frameworks/UnsupportedExternalAPIs.ql b/csharp/ql/src/meta/frameworks/UnsupportedExternalAPIs.ql
index 4eef46ef86b..7ad5f66eece 100644
--- a/csharp/ql/src/meta/frameworks/UnsupportedExternalAPIs.ql
+++ b/csharp/ql/src/meta/frameworks/UnsupportedExternalAPIs.ql
@@ -16,7 +16,6 @@ private import Telemetry.ExternalApi
 from Call c, ExternalApi api
 where
   c.getTarget().getUnboundDeclaration() = api and
-  not api.isUninteresting() and
   not api.isSupported() and
   not api instanceof FlowSummaryImpl::Public::NegativeSummarizedCallable
 select c, "Call to unsupported external API $@.", api, api.toString()

From dc51226a56570e84eb9cf982addea4335efb68fd Mon Sep 17 00:00:00 2001
From: Jami Cogswell <jcogs33@Jamis-MacBook-Pro.local>
Date: Thu, 8 Dec 2022 17:24:50 -0500
Subject: [PATCH 1174/1420] C#: update qldocs

---
 csharp/ql/src/Telemetry/ExternalApi.qll | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/csharp/ql/src/Telemetry/ExternalApi.qll b/csharp/ql/src/Telemetry/ExternalApi.qll
index b22d8350f77..05786b000d2 100644
--- a/csharp/ql/src/Telemetry/ExternalApi.qll
+++ b/csharp/ql/src/Telemetry/ExternalApi.qll
@@ -29,10 +29,10 @@ private predicate isParameterlessConstructor(DotNet::Callable c) {
   c instanceof Constructor and c.getNumberOfParameters() = 0
 }
 
-/** Holds if this API is part of a common testing library or framework. */
+/** Holds if the given callable is part of a common testing library or framework. */
 private predicate isTestLibrary(DotNet::Callable c) { c.getDeclaringType() instanceof TestLibrary }
 
-/** Holds if this API is not worth supporting. */
+/** Holds if the given callable is not worth supporting. */
 predicate isUninteresting(DotNet::Callable c) { isTestLibrary(c) or isParameterlessConstructor(c) }
 
 /**

From 2095f11b8cece2c7440c9a06740e148260530c61 Mon Sep 17 00:00:00 2001
From: Jeroen Ketema <jketema@github.com>
Date: Thu, 8 Dec 2022 23:35:32 +0100
Subject: [PATCH 1175/1420] C++: Add change note

---
 .../change-notes/2022-12-08-support-getaddrinfo-dataflow.md   | 4 ++++
 1 file changed, 4 insertions(+)
 create mode 100644 cpp/ql/lib/change-notes/2022-12-08-support-getaddrinfo-dataflow.md

diff --git a/cpp/ql/lib/change-notes/2022-12-08-support-getaddrinfo-dataflow.md b/cpp/ql/lib/change-notes/2022-12-08-support-getaddrinfo-dataflow.md
new file mode 100644
index 00000000000..6d1a6499ee9
--- /dev/null
+++ b/cpp/ql/lib/change-notes/2022-12-08-support-getaddrinfo-dataflow.md
@@ -0,0 +1,4 @@
+---
+category: minorAnalysis
+---
+* The `getaddrinfo` function is now recognized as a flow source.

From 1d209d1bcd5f815a15e8acd66e791c38c24805a8 Mon Sep 17 00:00:00 2001
From: Chris Smowton <smowton@github.com>
Date: Thu, 8 Dec 2022 22:52:40 +0000
Subject: [PATCH 1176/1420] Accept modifiers test changes

---
 .../library-tests/modifiers/modifiers.expected  | 17 +++++++++++++++++
 1 file changed, 17 insertions(+)

diff --git a/java/ql/test/kotlin/library-tests/modifiers/modifiers.expected b/java/ql/test/kotlin/library-tests/modifiers/modifiers.expected
index 1a8613b00cc..045fdb6d21c 100644
--- a/java/ql/test/kotlin/library-tests/modifiers/modifiers.expected
+++ b/java/ql/test/kotlin/library-tests/modifiers/modifiers.expected
@@ -3,18 +3,22 @@
 | modifiers.kt:2:5:2:21 | a | Field | final |
 | modifiers.kt:2:5:2:21 | a | Field | private |
 | modifiers.kt:2:5:2:21 | a | Property | private |
+| modifiers.kt:2:13:2:21 | getA$private | Method | final |
 | modifiers.kt:2:13:2:21 | getA$private | Method | private |
 | modifiers.kt:3:5:3:23 | b | Field | final |
 | modifiers.kt:3:5:3:23 | b | Field | private |
 | modifiers.kt:3:5:3:23 | b | Property | protected |
+| modifiers.kt:3:15:3:23 | getB | Method | final |
 | modifiers.kt:3:15:3:23 | getB | Method | protected |
 | modifiers.kt:4:5:4:22 | c | Field | final |
 | modifiers.kt:4:5:4:22 | c | Field | private |
 | modifiers.kt:4:5:4:22 | c | Property | internal |
+| modifiers.kt:4:14:4:22 | getC$main | Method | final |
 | modifiers.kt:4:14:4:22 | getC$main | Method | internal |
 | modifiers.kt:5:5:5:34 | d | Field | final |
 | modifiers.kt:5:5:5:34 | d | Field | private |
 | modifiers.kt:5:5:5:34 | d | Property | public |
+| modifiers.kt:5:5:5:34 | getD | Method | final |
 | modifiers.kt:5:5:5:34 | getD | Method | public |
 | modifiers.kt:7:5:9:5 | Nested | Class | final |
 | modifiers.kt:7:5:9:5 | Nested | Class | protected |
@@ -22,29 +26,38 @@
 | modifiers.kt:8:9:8:29 | e | Field | final |
 | modifiers.kt:8:9:8:29 | e | Field | private |
 | modifiers.kt:8:9:8:29 | e | Property | public |
+| modifiers.kt:8:16:8:29 | getE | Method | final |
 | modifiers.kt:8:16:8:29 | getE | Method | public |
+| modifiers.kt:11:5:15:5 | fn1 | Method | final |
 | modifiers.kt:11:5:15:5 | fn1 | Method | public |
 | modifiers.kt:12:16:14:9 |  | Constructor | public |
 | modifiers.kt:12:16:14:9 | new Object(...) { ... } | AnonymousClass | final |
 | modifiers.kt:12:16:14:9 | new Object(...) { ... } | AnonymousClass | private |
 | modifiers.kt:12:16:14:9 | new Object(...) { ... } | LocalClass | final |
 | modifiers.kt:12:16:14:9 | new Object(...) { ... } | LocalClass | private |
+| modifiers.kt:13:13:13:23 | fn | Method | final |
 | modifiers.kt:13:13:13:23 | fn | Method | public |
+| modifiers.kt:17:5:20:5 | fn2 | Method | final |
 | modifiers.kt:17:5:20:5 | fn2 | Method | public |
 | modifiers.kt:18:9:18:24 |  | Constructor | public |
 | modifiers.kt:18:9:18:24 |  | LocalClass | final |
 | modifiers.kt:18:9:18:24 |  | LocalClass | private |
+| modifiers.kt:18:9:18:24 | fnLocal | Method | final |
 | modifiers.kt:18:9:18:24 | fnLocal | Method | public |
+| modifiers.kt:22:5:24:5 | fn3 | Method | final |
 | modifiers.kt:22:5:24:5 | fn3 | Method | public |
 | modifiers.kt:23:9:23:27 | localClass | Constructor | public |
 | modifiers.kt:23:9:23:27 | localClass | LocalClass | final |
 | modifiers.kt:23:9:23:27 | localClass | LocalClass | private |
+| modifiers.kt:26:12:26:46 | fn4 | Method | final |
 | modifiers.kt:26:12:26:46 | fn4 | Method | inline |
 | modifiers.kt:26:12:26:46 | fn4 | Method | public |
 | modifiers.kt:26:20:26:41 | f | Parameter | noinline |
+| modifiers.kt:27:12:27:49 | fn5 | Method | final |
 | modifiers.kt:27:12:27:49 | fn5 | Method | inline |
 | modifiers.kt:27:12:27:49 | fn5 | Method | public |
 | modifiers.kt:27:20:27:44 | f | Parameter | crossinline |
+| modifiers.kt:28:12:28:39 | fn6 | Method | final |
 | modifiers.kt:28:12:28:39 | fn6 | Method | inline |
 | modifiers.kt:28:12:28:39 | fn6 | Method | public |
 | modifiers.kt:28:17:28:25 | T | TypeVariable | reified |
@@ -57,6 +70,7 @@
 | modifiers.kt:31:1:33:1 | Y | ParameterizedType | public |
 | modifiers.kt:31:9:31:13 | T1 | TypeVariable | in |
 | modifiers.kt:31:16:31:21 | T2 | TypeVariable | out |
+| modifiers.kt:32:5:32:32 | foo | Method | final |
 | modifiers.kt:32:5:32:32 | foo | Method | public |
 | modifiers.kt:35:1:41:1 | LateInit | Class | final |
 | modifiers.kt:35:1:41:1 | LateInit | Class | public |
@@ -64,7 +78,10 @@
 | modifiers.kt:36:5:36:40 | test0 | Field | private |
 | modifiers.kt:36:5:36:40 | test0 | Property | lateinit |
 | modifiers.kt:36:5:36:40 | test0 | Property | private |
+| modifiers.kt:36:22:36:40 | getTest0$private | Method | final |
 | modifiers.kt:36:22:36:40 | getTest0$private | Method | private |
+| modifiers.kt:36:22:36:40 | setTest0$private | Method | final |
 | modifiers.kt:36:22:36:40 | setTest0$private | Method | private |
+| modifiers.kt:38:5:40:5 | fn | Method | final |
 | modifiers.kt:38:5:40:5 | fn | Method | public |
 | modifiers.kt:39:22:39:26 | LateInit test1 | LocalVariableDecl | lateinit |

From 083b8d1de60a4a9f407bc8a521d5f23e01305eee Mon Sep 17 00:00:00 2001
From: Jami Cogswell <jcogs33@Jamis-MacBook-Pro.local>
Date: Thu, 8 Dec 2022 20:17:28 -0500
Subject: [PATCH 1177/1420] C#: make predicate private

---
 csharp/ql/src/Telemetry/ExternalApi.qll | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

diff --git a/csharp/ql/src/Telemetry/ExternalApi.qll b/csharp/ql/src/Telemetry/ExternalApi.qll
index 05786b000d2..736acacf2af 100644
--- a/csharp/ql/src/Telemetry/ExternalApi.qll
+++ b/csharp/ql/src/Telemetry/ExternalApi.qll
@@ -33,7 +33,9 @@ private predicate isParameterlessConstructor(DotNet::Callable c) {
 private predicate isTestLibrary(DotNet::Callable c) { c.getDeclaringType() instanceof TestLibrary }
 
 /** Holds if the given callable is not worth supporting. */
-predicate isUninteresting(DotNet::Callable c) { isTestLibrary(c) or isParameterlessConstructor(c) }
+private predicate isUninteresting(DotNet::Callable c) {
+  isTestLibrary(c) or isParameterlessConstructor(c)
+}
 
 /**
  * An external API from either the C# Standard Library or a 3rd party library.

From d558f939722184baa842db294855997e1af21b37 Mon Sep 17 00:00:00 2001
From: Jami Cogswell <jcogs33@Jamis-MacBook-Pro.local>
Date: Thu, 8 Dec 2022 20:51:40 -0500
Subject: [PATCH 1178/1420] Java: update DataFlowTargetApi for funcexpr and
 paramless constructor exclusions

---
 .../src/Metrics/Summaries/GeneratedVsManualCoverage.ql   | 9 ++-------
 .../modelgenerator/internal/CaptureModelsSpecific.qll    | 9 ++++++++-
 2 files changed, 10 insertions(+), 8 deletions(-)

diff --git a/java/ql/src/Metrics/Summaries/GeneratedVsManualCoverage.ql b/java/ql/src/Metrics/Summaries/GeneratedVsManualCoverage.ql
index 2803396a141..d1115c43c53 100644
--- a/java/ql/src/Metrics/Summaries/GeneratedVsManualCoverage.ql
+++ b/java/ql/src/Metrics/Summaries/GeneratedVsManualCoverage.ql
@@ -24,10 +24,7 @@ class MadModeledCallable extends SummarizedCallableBase {
       this instanceof SummarizedCallable or
       this instanceof FlowSummaryImpl::Public::NegativeSummarizedCallable
     ) and
-    exists(DataFlowTargetApi dataFlowTargApi |
-      this.asCallable() = dataFlowTargApi and
-      not exists(FunctionalExpr funcExpr | dataFlowTargApi = funcExpr.asMethod()) // ! remove this if DataFlowTargetApi itself is adjusted to exclude FunctionalExpr (see static-team slack thread)
-    )
+    exists(DataFlowTargetApi dataFlowTargApi | this.asCallable() = dataFlowTargApi)
   }
 }
 
@@ -84,13 +81,11 @@ float getNumMadModels(string package, string provenance, string posOrNeg) {
  */
 float getNumApisWithoutMadModel(string package) {
   exists(DataFlowTargetApi dataFlowTargApi |
-    package = dataFlowTargApi.getDeclaringType().getPackage().toString() and
-    not exists(FunctionalExpr fe | dataFlowTargApi = fe.asMethod()) // remove lambdas // ! remove this if DataFlowTargetApi itself is adjusted to exclude FunctionalExpr (see static-team slack thread)
+    package = dataFlowTargApi.getDeclaringType().getPackage().toString()
   |
     result =
       count(DataFlowTargetApi d |
         package = d.getDeclaringType().getPackage().toString() and
-        not exists(FunctionalExpr funcExpr | d = funcExpr.asMethod()) and // remove lambdas // ! remove this if DataFlowTargetApi itself is adjusted to exclude FunctionalExpr (see static-team slack thread)
         not exists(SummarizedCallable sc | d = sc.asCallable()) and
         not exists(FlowSummaryImpl::Public::NegativeSummarizedCallable nc | d = nc.asCallable())
       )
diff --git a/java/ql/src/utils/modelgenerator/internal/CaptureModelsSpecific.qll b/java/ql/src/utils/modelgenerator/internal/CaptureModelsSpecific.qll
index 6e9fe7c29b2..56a30dde58a 100644
--- a/java/ql/src/utils/modelgenerator/internal/CaptureModelsSpecific.qll
+++ b/java/ql/src/utils/modelgenerator/internal/CaptureModelsSpecific.qll
@@ -52,6 +52,11 @@ private predicate isJdkInternal(J::CompilationUnit cu) {
   cu.getPackage().getName() = ""
 }
 
+/** Holds if the given API is a constructor without parameters. */
+private predicate isParameterlessConstructor(J::Callable api) {
+  api instanceof J::Constructor and api.getNumberOfParameters() = 0
+} // ! merge with PR #11624
+
 /**
  * Holds if it is relevant to generate models for `api`.
  */
@@ -59,7 +64,9 @@ private predicate isRelevantForModels(J::Callable api) {
   not isInTestFile(api.getCompilationUnit().getFile()) and
   not isJdkInternal(api.getCompilationUnit()) and
   not api instanceof J::MainMethod and
-  not api instanceof J::StaticInitializer
+  not api instanceof J::StaticInitializer and
+  not exists(J::FunctionalExpr funcExpr | api = funcExpr.asMethod()) and // ! merge with PR #11623
+  not isParameterlessConstructor(api) // ! merge with PR #11624
 }
 
 /**

From 9e0027cf5b1f44cef9d3c60029ecc3cf15d846c0 Mon Sep 17 00:00:00 2001
From: Jami Cogswell <jcogs33@Jamis-MacBook-Pro.local>
Date: Thu, 8 Dec 2022 20:58:37 -0500
Subject: [PATCH 1179/1420] Java: remove negative models

---
 .../Summaries/GeneratedVsManualCoverage.ql    | 78 ++++++-------------
 1 file changed, 25 insertions(+), 53 deletions(-)

diff --git a/java/ql/src/Metrics/Summaries/GeneratedVsManualCoverage.ql b/java/ql/src/Metrics/Summaries/GeneratedVsManualCoverage.ql
index d1115c43c53..b393d493dcd 100644
--- a/java/ql/src/Metrics/Summaries/GeneratedVsManualCoverage.ql
+++ b/java/ql/src/Metrics/Summaries/GeneratedVsManualCoverage.ql
@@ -9,7 +9,6 @@
 //import java // not needed I guess
 import semmle.code.java.dataflow.FlowSummary // for SummarizedCallable
 import utils.modelgenerator.internal.CaptureModels // for DataFlowTargetApi
-import semmle.code.java.dataflow.internal.FlowSummaryImpl as FlowSummaryImpl // for NegativeSummarizedCallable
 
 // ! improve QLDoc?
 /**
@@ -20,57 +19,35 @@ import semmle.code.java.dataflow.internal.FlowSummaryImpl as FlowSummaryImpl //
 class MadModeledCallable extends SummarizedCallableBase {
   // ! better name for this class?
   MadModeledCallable() {
-    (
-      this instanceof SummarizedCallable or
-      this instanceof FlowSummaryImpl::Public::NegativeSummarizedCallable
-    ) and
+    this instanceof SummarizedCallable and
     exists(DataFlowTargetApi dataFlowTargApi | this.asCallable() = dataFlowTargApi)
   }
 }
 
 // ! move to other file
-// ! separate this into pos and neg predicates instead of using `posOrNeg` flag?
 /**
  * Returns the number of APIs with MaD models
  * for a given package and provenance.
  */
-float getNumMadModels(string package, string provenance, string posOrNeg) {
+float getNumMadModels(string package, string provenance) {
   exists(MadModeledCallable mc |
     package = mc.asCallable().getDeclaringType().getPackage().toString() and
-    provenance in ["generated", "manual", "both"] and
-    posOrNeg in ["positive", "negative"]
+    provenance in ["generated", "manual", "both"]
   |
-    if posOrNeg = "positive"
-    then
-      result =
-        count(MadModeledCallable c |
-          package = c.asCallable().getDeclaringType().getPackage().toString() and
-          (
-            c.(SummarizedCallable).isAutoGenerated() and // generated and NOT manual = "auto-only"
-            provenance = "generated"
-            or
-            c.(SummarizedCallable).isManuallyGenerated() and // manual and NOT generated = "manual-only"
-            provenance = "manual"
-            or
-            c.(SummarizedCallable).isBothAutoAndManuallyGenerated() and // BOTH generated and manual = "both"
-            provenance = "both"
-          )
-        )
-    else
-      result =
-        count(MadModeledCallable c |
-          package = c.asCallable().getDeclaringType().getPackage().toString() and
-          (
-            c.(FlowSummaryImpl::Public::NegativeSummarizedCallable).isAutoGenerated() and // generated and NOT manual = "auto-only"
-            provenance = "generated"
-            or
-            c.(FlowSummaryImpl::Public::NegativeSummarizedCallable).isManuallyGenerated() and // manual and NOT generated = "manual-only"
-            provenance = "manual"
-            or
-            c.(FlowSummaryImpl::Public::NegativeSummarizedCallable).isBothAutoAndManuallyGenerated() and // BOTH generated and manual = "both"
-            provenance = "both"
-          )
+    result =
+      count(MadModeledCallable c |
+        package = c.asCallable().getDeclaringType().getPackage().toString() and
+        (
+          c.(SummarizedCallable).isAutoGenerated() and // generated and NOT manual = "auto-only"
+          provenance = "generated"
+          or
+          c.(SummarizedCallable).isManuallyGenerated() and // manual and NOT generated = "manual-only"
+          provenance = "manual"
+          or
+          c.(SummarizedCallable).isBothAutoAndManuallyGenerated() and // BOTH generated and manual = "both"
+          provenance = "both"
         )
+      )
   )
 }
 
@@ -86,8 +63,7 @@ float getNumApisWithoutMadModel(string package) {
     result =
       count(DataFlowTargetApi d |
         package = d.getDeclaringType().getPackage().toString() and
-        not exists(SummarizedCallable sc | d = sc.asCallable()) and
-        not exists(FlowSummaryImpl::Public::NegativeSummarizedCallable nc | d = nc.asCallable())
+        not exists(SummarizedCallable sc | d = sc.asCallable())
       )
   )
 }
@@ -106,18 +82,14 @@ float getNumApisWithoutMadModel(string package) {
  */
 
 from
-  string package, float generatedPos, float manualPos, float bothPos, float generatedNeg,
-  float manualNeg, float bothNeg, float notModeled, float all, float metric1, float metric2
+  string package, float generatedPos, float manualPos, float bothPos, float notModeled, float all,
+  float metric1, float metric2
 where
-  generatedPos = getNumMadModels(package, "generated", "positive") and
-  manualPos = getNumMadModels(package, "manual", "positive") and
-  bothPos = getNumMadModels(package, "both", "positive") and
-  generatedNeg = getNumMadModels(package, "generated", "negative") and
-  manualNeg = getNumMadModels(package, "manual", "negative") and
-  bothNeg = getNumMadModels(package, "both", "negative") and
+  generatedPos = getNumMadModels(package, "generated") and
+  manualPos = getNumMadModels(package, "manual") and
+  bothPos = getNumMadModels(package, "both") and
   notModeled = getNumApisWithoutMadModel(package) and
-  all = generatedPos + manualPos + bothPos + generatedNeg + manualNeg + bothNeg + notModeled and
+  all = generatedPos + manualPos + bothPos + notModeled and
   metric1 = (bothPos / (bothPos + manualPos)) and // ! I believe this metric was intended to be only on the positive ones?
-  metric2 = (generatedPos + generatedNeg + bothPos + bothNeg + manualPos + manualNeg) / all
-select package, generatedPos, manualPos, bothPos, generatedNeg, manualNeg, bothNeg, notModeled, all,
-  metric1, metric2 order by package
+  metric2 = (generatedPos + bothPos + manualPos) / all
+select package, generatedPos, manualPos, bothPos, notModeled, all, metric1, metric2 order by package

From 6248efd3945d519b493358e249cb2f9501431f9c Mon Sep 17 00:00:00 2001
From: Jami Cogswell <jcogs33@Jamis-MacBook-Pro.local>
Date: Thu, 8 Dec 2022 21:13:52 -0500
Subject: [PATCH 1180/1420] Java: adjust column names and metric formulas

---
 .../Summaries/GeneratedVsManualCoverage.ql    | 34 ++++++-------------
 1 file changed, 11 insertions(+), 23 deletions(-)

diff --git a/java/ql/src/Metrics/Summaries/GeneratedVsManualCoverage.ql b/java/ql/src/Metrics/Summaries/GeneratedVsManualCoverage.ql
index b393d493dcd..504a91d3f73 100644
--- a/java/ql/src/Metrics/Summaries/GeneratedVsManualCoverage.ql
+++ b/java/ql/src/Metrics/Summaries/GeneratedVsManualCoverage.ql
@@ -68,28 +68,16 @@ float getNumApisWithoutMadModel(string package) {
   )
 }
 
-// ! Note: adjust metric formulas as needed after more discussion with Yorck
-/*
- * metric1:
- * Proportion of manual models covered by automation: “both” / (“both” + “manual-only”)
- * Auto-generated vs all positive manual (percentage of manual models covered by auto-generation)
- */
-
-/*
- * metric2:
- * Coverage relative to total number of APIs: (“auto-only” + “both” + “manual-only”) / “all”
- * Auto-generated vs specific pos+neg subset (top-N manual, random)
- */
-
 from
-  string package, float generatedPos, float manualPos, float bothPos, float notModeled, float all,
-  float metric1, float metric2
+  string package, float generatedOnly, float both, float manualOnly, float non, float all,
+  float generatedCoverage, float manualCoverage
 where
-  generatedPos = getNumMadModels(package, "generated") and
-  manualPos = getNumMadModels(package, "manual") and
-  bothPos = getNumMadModels(package, "both") and
-  notModeled = getNumApisWithoutMadModel(package) and
-  all = generatedPos + manualPos + bothPos + notModeled and
-  metric1 = (bothPos / (bothPos + manualPos)) and // ! I believe this metric was intended to be only on the positive ones?
-  metric2 = (generatedPos + bothPos + manualPos) / all
-select package, generatedPos, manualPos, bothPos, notModeled, all, metric1, metric2 order by package
+  generatedOnly = getNumMadModels(package, "generated") and
+  manualOnly = getNumMadModels(package, "manual") and
+  both = getNumMadModels(package, "both") and
+  non = getNumApisWithoutMadModel(package) and // ! edit this
+  all = generatedOnly + both + manualOnly + non and
+  generatedCoverage = (both / (both + manualOnly)) and // Proportion of manual models covered by generated ones
+  manualCoverage = (both / (both + generatedOnly)) // Proportion of generated models covered by manual ones
+select package, generatedOnly, both, manualOnly, non, all, generatedCoverage, manualCoverage
+  order by package

From ca00e0ab9ed7897aa6e66a25be5fe86dd731e177 Mon Sep 17 00:00:00 2001
From: Jami Cogswell <jcogs33@Jamis-MacBook-Pro.local>
Date: Thu, 8 Dec 2022 22:14:28 -0500
Subject: [PATCH 1181/1420] Java: adjust none and all calculations

---
 .../Summaries/GeneratedVsManualCoverage.ql    | 30 +++++++++++++++----
 1 file changed, 25 insertions(+), 5 deletions(-)

diff --git a/java/ql/src/Metrics/Summaries/GeneratedVsManualCoverage.ql b/java/ql/src/Metrics/Summaries/GeneratedVsManualCoverage.ql
index 504a91d3f73..17a332298f9 100644
--- a/java/ql/src/Metrics/Summaries/GeneratedVsManualCoverage.ql
+++ b/java/ql/src/Metrics/Summaries/GeneratedVsManualCoverage.ql
@@ -9,6 +9,7 @@
 //import java // not needed I guess
 import semmle.code.java.dataflow.FlowSummary // for SummarizedCallable
 import utils.modelgenerator.internal.CaptureModels // for DataFlowTargetApi
+import semmle.code.java.dataflow.internal.FlowSummaryImpl as FlowSummaryImpl // for NegativeSummarizedCallable
 
 // ! improve QLDoc?
 /**
@@ -53,8 +54,8 @@ float getNumMadModels(string package, string provenance) {
 
 // ! move to other file
 /**
- * Returns the number of APIs without MaD
- * models for a given package.
+ * Returns the number of APIs without SummarizedCallables
+ * (MaD models) for a given package.
  */
 float getNumApisWithoutMadModel(string package) {
   exists(DataFlowTargetApi dataFlowTargApi |
@@ -63,11 +64,22 @@ float getNumApisWithoutMadModel(string package) {
     result =
       count(DataFlowTargetApi d |
         package = d.getDeclaringType().getPackage().toString() and
-        not exists(SummarizedCallable sc | d = sc.asCallable())
+        not exists(MadModeledCallable sc | d = sc.asCallable())
       )
   )
 }
 
+/**
+ * Returns the total number of APIs for a given package.
+ */
+float getNumApis(string package) {
+  exists(DataFlowTargetApi dataFlowTargApi |
+    package = dataFlowTargApi.getDeclaringType().getPackage().toString()
+  |
+    result = count(DataFlowTargetApi d | package = d.getDeclaringType().getPackage().toString())
+  )
+}
+
 from
   string package, float generatedOnly, float both, float manualOnly, float non, float all,
   float generatedCoverage, float manualCoverage
@@ -75,9 +87,17 @@ where
   generatedOnly = getNumMadModels(package, "generated") and
   manualOnly = getNumMadModels(package, "manual") and
   both = getNumMadModels(package, "both") and
-  non = getNumApisWithoutMadModel(package) and // ! edit this
-  all = generatedOnly + both + manualOnly + non and
+  // non = getNumApisWithoutMadModel(package) and
+  // all = generatedOnly + both + manualOnly + non and
+  all = getNumApis(package) and
+  non = all - (generatedOnly + both + manualOnly) and
   generatedCoverage = (both / (both + manualOnly)) and // Proportion of manual models covered by generated ones
   manualCoverage = (both / (both + generatedOnly)) // Proportion of generated models covered by manual ones
 select package, generatedOnly, both, manualOnly, non, all, generatedCoverage, manualCoverage
   order by package
+// * "all" and "none" tests
+// from string package, float num
+// where num = getNumApis(package) // allY2 = DFTAs
+// // where num = getNumModeledApis(package) // allY1 = api that has either a positive or negative model
+// // where num = getNumApisWithoutMadModel(package) // noneY2 = DFTAs \ SCs
+// select package, num order by package

From a32ed214800f40c8345aa69de0dee3330853990e Mon Sep 17 00:00:00 2001
From: Jami Cogswell <jcogs33@Jamis-MacBook-Pro.local>
Date: Thu, 8 Dec 2022 23:09:09 -0500
Subject: [PATCH 1182/1420] Java: clean up comments and predicates

---
 .../Summaries/GeneratedVsManualCoverage.ql    | 67 +++++--------------
 1 file changed, 16 insertions(+), 51 deletions(-)

diff --git a/java/ql/src/Metrics/Summaries/GeneratedVsManualCoverage.ql b/java/ql/src/Metrics/Summaries/GeneratedVsManualCoverage.ql
index 17a332298f9..893da2e6262 100644
--- a/java/ql/src/Metrics/Summaries/GeneratedVsManualCoverage.ql
+++ b/java/ql/src/Metrics/Summaries/GeneratedVsManualCoverage.ql
@@ -6,31 +6,23 @@
  * @tags summary
  */
 
-//import java // not needed I guess
-import semmle.code.java.dataflow.FlowSummary // for SummarizedCallable
-import utils.modelgenerator.internal.CaptureModels // for DataFlowTargetApi
-import semmle.code.java.dataflow.internal.FlowSummaryImpl as FlowSummaryImpl // for NegativeSummarizedCallable
+import java
+import semmle.code.java.dataflow.FlowSummary
+import utils.modelgenerator.internal.CaptureModels
 
-// ! improve QLDoc?
 /**
- * A callable for a given library that is modeled by MaD.
- * Specifically, this callable is the intersection of
- * DataFlowTargetApis and SummarizedCallables.
+ * A callable with a Summary MaD model. Specifically, this callable is
+ * the intersection of DataFlowTargetApis and SummarizedCallables.
  */
-class MadModeledCallable extends SummarizedCallableBase {
-  // ! better name for this class?
+private class MadModeledCallable extends SummarizedCallableBase {
   MadModeledCallable() {
     this instanceof SummarizedCallable and
     exists(DataFlowTargetApi dataFlowTargApi | this.asCallable() = dataFlowTargApi)
   }
 }
 
-// ! move to other file
-/**
- * Returns the number of APIs with MaD models
- * for a given package and provenance.
- */
-float getNumMadModels(string package, string provenance) {
+/** Returns the number of APIs with Summary MaD models for a given package and provenance. */
+private float getNumApisWithMadModels(string package, string provenance) {
   exists(MadModeledCallable mc |
     package = mc.asCallable().getDeclaringType().getPackage().toString() and
     provenance in ["generated", "manual", "both"]
@@ -39,40 +31,21 @@ float getNumMadModels(string package, string provenance) {
       count(MadModeledCallable c |
         package = c.asCallable().getDeclaringType().getPackage().toString() and
         (
-          c.(SummarizedCallable).isAutoGenerated() and // generated and NOT manual = "auto-only"
+          c.(SummarizedCallable).isAutoGenerated() and // "auto-only"
           provenance = "generated"
           or
-          c.(SummarizedCallable).isManuallyGenerated() and // manual and NOT generated = "manual-only"
+          c.(SummarizedCallable).isManuallyGenerated() and // "manual-only"
           provenance = "manual"
           or
-          c.(SummarizedCallable).isBothAutoAndManuallyGenerated() and // BOTH generated and manual = "both"
+          c.(SummarizedCallable).isBothAutoAndManuallyGenerated() and // "both"
           provenance = "both"
         )
       )
   )
 }
 
-// ! move to other file
-/**
- * Returns the number of APIs without SummarizedCallables
- * (MaD models) for a given package.
- */
-float getNumApisWithoutMadModel(string package) {
-  exists(DataFlowTargetApi dataFlowTargApi |
-    package = dataFlowTargApi.getDeclaringType().getPackage().toString()
-  |
-    result =
-      count(DataFlowTargetApi d |
-        package = d.getDeclaringType().getPackage().toString() and
-        not exists(MadModeledCallable sc | d = sc.asCallable())
-      )
-  )
-}
-
-/**
- * Returns the total number of APIs for a given package.
- */
-float getNumApis(string package) {
+/** Returns the total number of `DataFlowTargetApi`s for a given package. */
+private float getNumApis(string package) {
   exists(DataFlowTargetApi dataFlowTargApi |
     package = dataFlowTargApi.getDeclaringType().getPackage().toString()
   |
@@ -84,20 +57,12 @@ from
   string package, float generatedOnly, float both, float manualOnly, float non, float all,
   float generatedCoverage, float manualCoverage
 where
-  generatedOnly = getNumMadModels(package, "generated") and
-  manualOnly = getNumMadModels(package, "manual") and
-  both = getNumMadModels(package, "both") and
-  // non = getNumApisWithoutMadModel(package) and
-  // all = generatedOnly + both + manualOnly + non and
+  generatedOnly = getNumApisWithMadModels(package, "generated") and
+  manualOnly = getNumApisWithMadModels(package, "manual") and
+  both = getNumApisWithMadModels(package, "both") and
   all = getNumApis(package) and
   non = all - (generatedOnly + both + manualOnly) and
   generatedCoverage = (both / (both + manualOnly)) and // Proportion of manual models covered by generated ones
   manualCoverage = (both / (both + generatedOnly)) // Proportion of generated models covered by manual ones
 select package, generatedOnly, both, manualOnly, non, all, generatedCoverage, manualCoverage
   order by package
-// * "all" and "none" tests
-// from string package, float num
-// where num = getNumApis(package) // allY2 = DFTAs
-// // where num = getNumModeledApis(package) // allY1 = api that has either a positive or negative model
-// // where num = getNumApisWithoutMadModel(package) // noneY2 = DFTAs \ SCs
-// select package, num order by package

From 974c000b65c7f907c334b16438569380dd35cc5a Mon Sep 17 00:00:00 2001
From: Jami Cogswell <jcogs33@Jamis-MacBook-Pro.local>
Date: Thu, 8 Dec 2022 23:17:53 -0500
Subject: [PATCH 1183/1420] Java: add bindingset for package

---
 .../Summaries/GeneratedVsManualCoverage.ql    | 48 +++++++++----------
 1 file changed, 23 insertions(+), 25 deletions(-)

diff --git a/java/ql/src/Metrics/Summaries/GeneratedVsManualCoverage.ql b/java/ql/src/Metrics/Summaries/GeneratedVsManualCoverage.ql
index 893da2e6262..6134816568e 100644
--- a/java/ql/src/Metrics/Summaries/GeneratedVsManualCoverage.ql
+++ b/java/ql/src/Metrics/Summaries/GeneratedVsManualCoverage.ql
@@ -22,41 +22,39 @@ private class MadModeledCallable extends SummarizedCallableBase {
 }
 
 /** Returns the number of APIs with Summary MaD models for a given package and provenance. */
+bindingset[package]
 private float getNumApisWithMadModels(string package, string provenance) {
-  exists(MadModeledCallable mc |
-    package = mc.asCallable().getDeclaringType().getPackage().toString() and
-    provenance in ["generated", "manual", "both"]
-  |
-    result =
-      count(MadModeledCallable c |
-        package = c.asCallable().getDeclaringType().getPackage().toString() and
-        (
-          c.(SummarizedCallable).isAutoGenerated() and // "auto-only"
-          provenance = "generated"
-          or
-          c.(SummarizedCallable).isManuallyGenerated() and // "manual-only"
-          provenance = "manual"
-          or
-          c.(SummarizedCallable).isBothAutoAndManuallyGenerated() and // "both"
-          provenance = "both"
-        )
+  provenance in ["generated", "manual", "both"] and
+  result =
+    count(MadModeledCallable mc |
+      package = mc.asCallable().getDeclaringType().getPackage().toString() and
+      (
+        mc.(SummarizedCallable).isAutoGenerated() and // "auto-only"
+        provenance = "generated"
+        or
+        mc.(SummarizedCallable).isManuallyGenerated() and // "manual-only"
+        provenance = "manual"
+        or
+        mc.(SummarizedCallable).isBothAutoAndManuallyGenerated() and // "both"
+        provenance = "both"
       )
-  )
+    )
 }
 
 /** Returns the total number of `DataFlowTargetApi`s for a given package. */
+bindingset[package]
 private float getNumApis(string package) {
-  exists(DataFlowTargetApi dataFlowTargApi |
-    package = dataFlowTargApi.getDeclaringType().getPackage().toString()
-  |
-    result = count(DataFlowTargetApi d | package = d.getDeclaringType().getPackage().toString())
-  )
+  result =
+    count(DataFlowTargetApi dataFlowTargApi |
+      package = dataFlowTargApi.getDeclaringType().getPackage().toString()
+    )
 }
 
 from
-  string package, float generatedOnly, float both, float manualOnly, float non, float all,
-  float generatedCoverage, float manualCoverage
+  DataFlowTargetApi dataFlowTargApi, string package, float generatedOnly, float both,
+  float manualOnly, float non, float all, float generatedCoverage, float manualCoverage
 where
+  package = dataFlowTargApi.getDeclaringType().getPackage().toString() and
   generatedOnly = getNumApisWithMadModels(package, "generated") and
   manualOnly = getNumApisWithMadModels(package, "manual") and
   both = getNumApisWithMadModels(package, "both") and

From 2c3adb769b846aa6a6d6658d959b2e577e06c206 Mon Sep 17 00:00:00 2001
From: Jami Cogswell <jcogs33@Jamis-MacBook-Pro.local>
Date: Thu, 8 Dec 2022 23:32:07 -0500
Subject: [PATCH 1184/1420] Java: remove MadModeledCallable class and update
 predicate names

---
 .../Summaries/GeneratedVsManualCoverage.ql    | 31 +++++++------------
 1 file changed, 12 insertions(+), 19 deletions(-)

diff --git a/java/ql/src/Metrics/Summaries/GeneratedVsManualCoverage.ql b/java/ql/src/Metrics/Summaries/GeneratedVsManualCoverage.ql
index 6134816568e..c923dfaee43 100644
--- a/java/ql/src/Metrics/Summaries/GeneratedVsManualCoverage.ql
+++ b/java/ql/src/Metrics/Summaries/GeneratedVsManualCoverage.ql
@@ -11,31 +11,24 @@ import semmle.code.java.dataflow.FlowSummary
 import utils.modelgenerator.internal.CaptureModels
 
 /**
- * A callable with a Summary MaD model. Specifically, this callable is
- * the intersection of DataFlowTargetApis and SummarizedCallables.
+ * Returns the number of `DataFlowTargetApi`s with Summary MaD models
+ * for a given package and provenance.
  */
-private class MadModeledCallable extends SummarizedCallableBase {
-  MadModeledCallable() {
-    this instanceof SummarizedCallable and
-    exists(DataFlowTargetApi dataFlowTargApi | this.asCallable() = dataFlowTargApi)
-  }
-}
-
-/** Returns the number of APIs with Summary MaD models for a given package and provenance. */
 bindingset[package]
-private float getNumApisWithMadModels(string package, string provenance) {
+private float getNumMadModeledApis(string package, string provenance) {
   provenance in ["generated", "manual", "both"] and
   result =
-    count(MadModeledCallable mc |
-      package = mc.asCallable().getDeclaringType().getPackage().toString() and
+    count(SummarizedCallable sc |
+      package = sc.asCallable().getDeclaringType().getPackage().toString() and
+      exists(DataFlowTargetApi dataFlowTargApi | sc.asCallable() = dataFlowTargApi) and
       (
-        mc.(SummarizedCallable).isAutoGenerated() and // "auto-only"
+        sc.isAutoGenerated() and // "auto-only"
         provenance = "generated"
         or
-        mc.(SummarizedCallable).isManuallyGenerated() and // "manual-only"
+        sc.isManuallyGenerated() and // "manual-only"
         provenance = "manual"
         or
-        mc.(SummarizedCallable).isBothAutoAndManuallyGenerated() and // "both"
+        sc.isBothAutoAndManuallyGenerated() and // "both"
         provenance = "both"
       )
     )
@@ -55,9 +48,9 @@ from
   float manualOnly, float non, float all, float generatedCoverage, float manualCoverage
 where
   package = dataFlowTargApi.getDeclaringType().getPackage().toString() and
-  generatedOnly = getNumApisWithMadModels(package, "generated") and
-  manualOnly = getNumApisWithMadModels(package, "manual") and
-  both = getNumApisWithMadModels(package, "both") and
+  generatedOnly = getNumMadModeledApis(package, "generated") and
+  manualOnly = getNumMadModeledApis(package, "manual") and
+  both = getNumMadModeledApis(package, "both") and
   all = getNumApis(package) and
   non = all - (generatedOnly + both + manualOnly) and
   generatedCoverage = (both / (both + manualOnly)) and // Proportion of manual models covered by generated ones

From 0b2f2a3f888945450152853916d6c6f4e9bbaea1 Mon Sep 17 00:00:00 2001
From: Jami Cogswell <jcogs33@Jamis-MacBook-Pro.local>
Date: Thu, 8 Dec 2022 23:46:55 -0500
Subject: [PATCH 1185/1420] Java: remove predicates from
 NegativeSummarizedCallable

---
 .../dataflow/internal/FlowSummaryImpl.qll     | 23 ++-----------------
 .../go/dataflow/internal/FlowSummaryImpl.qll  | 23 ++-----------------
 .../dataflow/internal/FlowSummaryImpl.qll     | 23 ++-----------------
 .../dataflow/new/internal/FlowSummaryImpl.qll | 23 ++-----------------
 .../dataflow/internal/FlowSummaryImpl.qll     | 23 ++-----------------
 .../dataflow/internal/FlowSummaryImpl.qll     | 23 ++-----------------
 6 files changed, 12 insertions(+), 126 deletions(-)

diff --git a/csharp/ql/lib/semmle/code/csharp/dataflow/internal/FlowSummaryImpl.qll b/csharp/ql/lib/semmle/code/csharp/dataflow/internal/FlowSummaryImpl.qll
index 5c9e6827f7e..8ef3bea0408 100644
--- a/csharp/ql/lib/semmle/code/csharp/dataflow/internal/FlowSummaryImpl.qll
+++ b/csharp/ql/lib/semmle/code/csharp/dataflow/internal/FlowSummaryImpl.qll
@@ -261,28 +261,9 @@ module Public {
     NegativeSummarizedCallable() { negativeSummaryElement(this, _) }
 
     /**
-     *  Holds if the negative summary is auto generated and not manually generated.
+     *  Holds if the negative summary is auto generated.
      */
-    predicate isAutoGenerated() {
-      negativeSummaryElement(this, true) and
-      not negativeSummaryElement(this, false)
-    } // ! okay to adjust this to "and not manually generated"? Will that mess up anything that currently uses this?
-
-    /**
-     * Holds if the summary is manually generated and not auto generated.
-     */
-    predicate isManuallyGenerated() {
-      negativeSummaryElement(this, false) and
-      not negativeSummaryElement(this, true)
-    }
-
-    /**
-     * Holds if the summary is both auto generated and manually generated.
-     */
-    predicate isBothAutoAndManuallyGenerated() {
-      negativeSummaryElement(this, true) and
-      negativeSummaryElement(this, false)
-    }
+    predicate isAutoGenerated() { negativeSummaryElement(this, true) }
   }
 }
 
diff --git a/go/ql/lib/semmle/go/dataflow/internal/FlowSummaryImpl.qll b/go/ql/lib/semmle/go/dataflow/internal/FlowSummaryImpl.qll
index 5c9e6827f7e..8ef3bea0408 100644
--- a/go/ql/lib/semmle/go/dataflow/internal/FlowSummaryImpl.qll
+++ b/go/ql/lib/semmle/go/dataflow/internal/FlowSummaryImpl.qll
@@ -261,28 +261,9 @@ module Public {
     NegativeSummarizedCallable() { negativeSummaryElement(this, _) }
 
     /**
-     *  Holds if the negative summary is auto generated and not manually generated.
+     *  Holds if the negative summary is auto generated.
      */
-    predicate isAutoGenerated() {
-      negativeSummaryElement(this, true) and
-      not negativeSummaryElement(this, false)
-    } // ! okay to adjust this to "and not manually generated"? Will that mess up anything that currently uses this?
-
-    /**
-     * Holds if the summary is manually generated and not auto generated.
-     */
-    predicate isManuallyGenerated() {
-      negativeSummaryElement(this, false) and
-      not negativeSummaryElement(this, true)
-    }
-
-    /**
-     * Holds if the summary is both auto generated and manually generated.
-     */
-    predicate isBothAutoAndManuallyGenerated() {
-      negativeSummaryElement(this, true) and
-      negativeSummaryElement(this, false)
-    }
+    predicate isAutoGenerated() { negativeSummaryElement(this, true) }
   }
 }
 
diff --git a/java/ql/lib/semmle/code/java/dataflow/internal/FlowSummaryImpl.qll b/java/ql/lib/semmle/code/java/dataflow/internal/FlowSummaryImpl.qll
index 5c9e6827f7e..8ef3bea0408 100644
--- a/java/ql/lib/semmle/code/java/dataflow/internal/FlowSummaryImpl.qll
+++ b/java/ql/lib/semmle/code/java/dataflow/internal/FlowSummaryImpl.qll
@@ -261,28 +261,9 @@ module Public {
     NegativeSummarizedCallable() { negativeSummaryElement(this, _) }
 
     /**
-     *  Holds if the negative summary is auto generated and not manually generated.
+     *  Holds if the negative summary is auto generated.
      */
-    predicate isAutoGenerated() {
-      negativeSummaryElement(this, true) and
-      not negativeSummaryElement(this, false)
-    } // ! okay to adjust this to "and not manually generated"? Will that mess up anything that currently uses this?
-
-    /**
-     * Holds if the summary is manually generated and not auto generated.
-     */
-    predicate isManuallyGenerated() {
-      negativeSummaryElement(this, false) and
-      not negativeSummaryElement(this, true)
-    }
-
-    /**
-     * Holds if the summary is both auto generated and manually generated.
-     */
-    predicate isBothAutoAndManuallyGenerated() {
-      negativeSummaryElement(this, true) and
-      negativeSummaryElement(this, false)
-    }
+    predicate isAutoGenerated() { negativeSummaryElement(this, true) }
   }
 }
 
diff --git a/python/ql/lib/semmle/python/dataflow/new/internal/FlowSummaryImpl.qll b/python/ql/lib/semmle/python/dataflow/new/internal/FlowSummaryImpl.qll
index 5c9e6827f7e..8ef3bea0408 100644
--- a/python/ql/lib/semmle/python/dataflow/new/internal/FlowSummaryImpl.qll
+++ b/python/ql/lib/semmle/python/dataflow/new/internal/FlowSummaryImpl.qll
@@ -261,28 +261,9 @@ module Public {
     NegativeSummarizedCallable() { negativeSummaryElement(this, _) }
 
     /**
-     *  Holds if the negative summary is auto generated and not manually generated.
+     *  Holds if the negative summary is auto generated.
      */
-    predicate isAutoGenerated() {
-      negativeSummaryElement(this, true) and
-      not negativeSummaryElement(this, false)
-    } // ! okay to adjust this to "and not manually generated"? Will that mess up anything that currently uses this?
-
-    /**
-     * Holds if the summary is manually generated and not auto generated.
-     */
-    predicate isManuallyGenerated() {
-      negativeSummaryElement(this, false) and
-      not negativeSummaryElement(this, true)
-    }
-
-    /**
-     * Holds if the summary is both auto generated and manually generated.
-     */
-    predicate isBothAutoAndManuallyGenerated() {
-      negativeSummaryElement(this, true) and
-      negativeSummaryElement(this, false)
-    }
+    predicate isAutoGenerated() { negativeSummaryElement(this, true) }
   }
 }
 
diff --git a/ruby/ql/lib/codeql/ruby/dataflow/internal/FlowSummaryImpl.qll b/ruby/ql/lib/codeql/ruby/dataflow/internal/FlowSummaryImpl.qll
index 5c9e6827f7e..8ef3bea0408 100644
--- a/ruby/ql/lib/codeql/ruby/dataflow/internal/FlowSummaryImpl.qll
+++ b/ruby/ql/lib/codeql/ruby/dataflow/internal/FlowSummaryImpl.qll
@@ -261,28 +261,9 @@ module Public {
     NegativeSummarizedCallable() { negativeSummaryElement(this, _) }
 
     /**
-     *  Holds if the negative summary is auto generated and not manually generated.
+     *  Holds if the negative summary is auto generated.
      */
-    predicate isAutoGenerated() {
-      negativeSummaryElement(this, true) and
-      not negativeSummaryElement(this, false)
-    } // ! okay to adjust this to "and not manually generated"? Will that mess up anything that currently uses this?
-
-    /**
-     * Holds if the summary is manually generated and not auto generated.
-     */
-    predicate isManuallyGenerated() {
-      negativeSummaryElement(this, false) and
-      not negativeSummaryElement(this, true)
-    }
-
-    /**
-     * Holds if the summary is both auto generated and manually generated.
-     */
-    predicate isBothAutoAndManuallyGenerated() {
-      negativeSummaryElement(this, true) and
-      negativeSummaryElement(this, false)
-    }
+    predicate isAutoGenerated() { negativeSummaryElement(this, true) }
   }
 }
 
diff --git a/swift/ql/lib/codeql/swift/dataflow/internal/FlowSummaryImpl.qll b/swift/ql/lib/codeql/swift/dataflow/internal/FlowSummaryImpl.qll
index 5c9e6827f7e..8ef3bea0408 100644
--- a/swift/ql/lib/codeql/swift/dataflow/internal/FlowSummaryImpl.qll
+++ b/swift/ql/lib/codeql/swift/dataflow/internal/FlowSummaryImpl.qll
@@ -261,28 +261,9 @@ module Public {
     NegativeSummarizedCallable() { negativeSummaryElement(this, _) }
 
     /**
-     *  Holds if the negative summary is auto generated and not manually generated.
+     *  Holds if the negative summary is auto generated.
      */
-    predicate isAutoGenerated() {
-      negativeSummaryElement(this, true) and
-      not negativeSummaryElement(this, false)
-    } // ! okay to adjust this to "and not manually generated"? Will that mess up anything that currently uses this?
-
-    /**
-     * Holds if the summary is manually generated and not auto generated.
-     */
-    predicate isManuallyGenerated() {
-      negativeSummaryElement(this, false) and
-      not negativeSummaryElement(this, true)
-    }
-
-    /**
-     * Holds if the summary is both auto generated and manually generated.
-     */
-    predicate isBothAutoAndManuallyGenerated() {
-      negativeSummaryElement(this, true) and
-      negativeSummaryElement(this, false)
-    }
+    predicate isAutoGenerated() { negativeSummaryElement(this, true) }
   }
 }
 

From 6822399dbba8db89e701c35a010abc4cba763880 Mon Sep 17 00:00:00 2001
From: Tony Torralba <atorralba@users.noreply.github.com>
Date: Fri, 9 Dec 2022 09:17:00 +0100
Subject: [PATCH 1186/1420] Swift: Rename NSData.qll to NsData.qll

---
 swift/ql/lib/codeql/swift/dataflow/ExternalFlow.qll             | 2 +-
 .../swift/frameworks/StandardLibrary/{NSData.qll => NsData.qll} | 0
 2 files changed, 1 insertion(+), 1 deletion(-)
 rename swift/ql/lib/codeql/swift/frameworks/StandardLibrary/{NSData.qll => NsData.qll} (100%)

diff --git a/swift/ql/lib/codeql/swift/dataflow/ExternalFlow.qll b/swift/ql/lib/codeql/swift/dataflow/ExternalFlow.qll
index dd0b172a91d..c87d2973783 100644
--- a/swift/ql/lib/codeql/swift/dataflow/ExternalFlow.qll
+++ b/swift/ql/lib/codeql/swift/dataflow/ExternalFlow.qll
@@ -82,7 +82,7 @@ private module Frameworks {
   private import codeql.swift.frameworks.StandardLibrary.Data
   private import codeql.swift.frameworks.StandardLibrary.FilePath
   private import codeql.swift.frameworks.StandardLibrary.InputStream
-  private import codeql.swift.frameworks.StandardLibrary.NSData
+  private import codeql.swift.frameworks.StandardLibrary.NsData
   private import codeql.swift.frameworks.StandardLibrary.NsUrl
   private import codeql.swift.frameworks.StandardLibrary.String
   private import codeql.swift.frameworks.StandardLibrary.Url
diff --git a/swift/ql/lib/codeql/swift/frameworks/StandardLibrary/NSData.qll b/swift/ql/lib/codeql/swift/frameworks/StandardLibrary/NsData.qll
similarity index 100%
rename from swift/ql/lib/codeql/swift/frameworks/StandardLibrary/NSData.qll
rename to swift/ql/lib/codeql/swift/frameworks/StandardLibrary/NsData.qll

From 03fff2709be8607051c5f61ac65f1a191478f1ad Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Peter=20St=C3=B6ckli?= <p-@github.com>
Date: Fri, 9 Dec 2022 09:42:44 +0100
Subject: [PATCH 1187/1420] Add suggestions to fix FileJoinSanitizer

---
 ruby/ql/lib/codeql/ruby/frameworks/Files.qll  |  2 +-
 .../codeql/ruby/security/KernelOpenQuery.qll  | 32 ++++++-------------
 .../cwe-078/KernelOpen/KernelOpen.expected    |  3 ++
 .../security/cwe-078/KernelOpen/KernelOpen.rb |  4 ++-
 .../NonConstantKernelOpen.expected            |  1 +
 .../NonConstantKernelOpen.rb                  |  2 ++
 6 files changed, 20 insertions(+), 24 deletions(-)

diff --git a/ruby/ql/lib/codeql/ruby/frameworks/Files.qll b/ruby/ql/lib/codeql/ruby/frameworks/Files.qll
index cf2018d39c9..2da8accc190 100644
--- a/ruby/ql/lib/codeql/ruby/frameworks/Files.qll
+++ b/ruby/ql/lib/codeql/ruby/frameworks/Files.qll
@@ -133,7 +133,7 @@ module File {
     }
 
     override predicate propagatesFlowExt(string input, string output, boolean preservesValue) {
-      input = "Argument[0..]" and
+      input = "Argument[0,1..]" and
       output = "ReturnValue" and
       preservesValue = false
     }
diff --git a/ruby/ql/lib/codeql/ruby/security/KernelOpenQuery.qll b/ruby/ql/lib/codeql/ruby/security/KernelOpenQuery.qll
index e0a595accf6..31c9055d7cc 100644
--- a/ruby/ql/lib/codeql/ruby/security/KernelOpenQuery.qll
+++ b/ruby/ql/lib/codeql/ruby/security/KernelOpenQuery.qll
@@ -7,6 +7,7 @@ private import codeql.ruby.DataFlow
 private import codeql.ruby.AST
 private import codeql.ruby.ApiGraphs
 private import codeql.ruby.frameworks.core.Kernel::Kernel
+private import codeql.ruby.frameworks.Files
 
 /** A call to a method that might access a file or start a process. */
 class AmbiguousPathCall extends DataFlow::CallNode {
@@ -16,23 +17,12 @@ class AmbiguousPathCall extends DataFlow::CallNode {
     this.(KernelMethodCall).getMethodName() = "open" and
     name = "Kernel.open"
     or
-    methodCallOnlyOnIO(this, "read") and
-    name = "IO.read"
-    or
-    methodCallOnlyOnIO(this, "write") and
-    name = "IO.write"
-    or
-    methodCallOnlyOnIO(this, "binread") and
-    name = "IO.binread"
-    or
-    methodCallOnlyOnIO(this, "binwrite") and
-    name = "IO.binwrite"
-    or
-    methodCallOnlyOnIO(this, "foreach") and
-    name = "IO.foreach"
-    or
-    methodCallOnlyOnIO(this, "readlines") and
-    name = "IO.readlines"
+    exists(string methodName |
+      methodName = ["read", "write", "binread", "binwrite", "foreach", "readlines"]
+    |
+      methodCallOnlyOnIO(this, methodName) and
+      name = "IO." + methodName
+    )
     or
     this = API::getTopLevelMember("URI").getAMethodCall("open") and
     name = "URI.open"
@@ -75,11 +65,9 @@ private predicate methodCallOnlyOnIO(DataFlow::CallNode node, string methodName)
 abstract class Sanitizer extends DataFlow::Node { }
 
 /**
- * If a File.join is performed the resulting string will not start with a pipe |
+ * If a `File.join` is performed the resulting string will not start with a pipe `|`.
  * This is true as long the tainted data doesn't flow into the first argument.
  */
-private class FileJoinCall extends Sanitizer, DataFlow::ExprNode {
-  FileJoinCall() {
-    this = API::getTopLevelMember("File").getAMethodCall("join").getArgument(any(int i | i > 0))
-  }
+private class FileJoinSanitizer extends Sanitizer {
+  FileJoinSanitizer() { this = any(File::FileJoinSummary s).getParameter("1..") }
 }
diff --git a/ruby/ql/test/query-tests/security/cwe-078/KernelOpen/KernelOpen.expected b/ruby/ql/test/query-tests/security/cwe-078/KernelOpen/KernelOpen.expected
index 8ade991204a..1a7088fcbe8 100644
--- a/ruby/ql/test/query-tests/security/cwe-078/KernelOpen/KernelOpen.expected
+++ b/ruby/ql/test/query-tests/security/cwe-078/KernelOpen/KernelOpen.expected
@@ -9,6 +9,7 @@ edges
 | KernelOpen.rb:3:12:3:24 | ...[...] :  | KernelOpen.rb:10:18:10:21 | file |
 | KernelOpen.rb:3:12:3:24 | ...[...] :  | KernelOpen.rb:11:14:11:17 | file |
 | KernelOpen.rb:3:12:3:24 | ...[...] :  | KernelOpen.rb:13:23:13:26 | file :  |
+| KernelOpen.rb:3:12:3:24 | ...[...] :  | KernelOpen.rb:26:10:26:13 | file |
 | KernelOpen.rb:13:23:13:26 | file :  | KernelOpen.rb:13:13:13:31 | call to join |
 nodes
 | KernelOpen.rb:3:12:3:17 | call to params :  | semmle.label | call to params :  |
@@ -23,6 +24,7 @@ nodes
 | KernelOpen.rb:11:14:11:17 | file | semmle.label | file |
 | KernelOpen.rb:13:13:13:31 | call to join | semmle.label | call to join |
 | KernelOpen.rb:13:23:13:26 | file :  | semmle.label | file :  |
+| KernelOpen.rb:26:10:26:13 | file | semmle.label | file |
 subpaths
 #select
 | KernelOpen.rb:4:10:4:13 | file | KernelOpen.rb:3:12:3:17 | call to params :  | KernelOpen.rb:4:10:4:13 | file | This call to Kernel.open depends on a $@. Consider replacing it with File.open. | KernelOpen.rb:3:12:3:17 | call to params | user-provided value |
@@ -34,3 +36,4 @@ subpaths
 | KernelOpen.rb:10:18:10:21 | file | KernelOpen.rb:3:12:3:17 | call to params :  | KernelOpen.rb:10:18:10:21 | file | This call to IO.readlines depends on a $@. Consider replacing it with File.readlines. | KernelOpen.rb:3:12:3:17 | call to params | user-provided value |
 | KernelOpen.rb:11:14:11:17 | file | KernelOpen.rb:3:12:3:17 | call to params :  | KernelOpen.rb:11:14:11:17 | file | This call to URI.open depends on a $@. Consider replacing it with URI(<uri>).open. | KernelOpen.rb:3:12:3:17 | call to params | user-provided value |
 | KernelOpen.rb:13:13:13:31 | call to join | KernelOpen.rb:3:12:3:17 | call to params :  | KernelOpen.rb:13:13:13:31 | call to join | This call to IO.read depends on a $@. Consider replacing it with File.read. | KernelOpen.rb:3:12:3:17 | call to params | user-provided value |
+| KernelOpen.rb:26:10:26:13 | file | KernelOpen.rb:3:12:3:17 | call to params :  | KernelOpen.rb:26:10:26:13 | file | This call to Kernel.open depends on a $@. Consider replacing it with File.open. | KernelOpen.rb:3:12:3:17 | call to params | user-provided value |
diff --git a/ruby/ql/test/query-tests/security/cwe-078/KernelOpen/KernelOpen.rb b/ruby/ql/test/query-tests/security/cwe-078/KernelOpen/KernelOpen.rb
index 37c79fb6739..412e2c50ead 100644
--- a/ruby/ql/test/query-tests/security/cwe-078/KernelOpen/KernelOpen.rb
+++ b/ruby/ql/test/query-tests/security/cwe-078/KernelOpen/KernelOpen.rb
@@ -10,7 +10,7 @@ class UsersController < ActionController::Base
     IO.readlines(file) # BAD
     URI.open(file) # BAD
 
-    IO.read(File.join(file, "")) # BAD - file as first argument to File.join
+    IO.read(File.join(file, "")) # BAD - file as first argument to File.join 
     IO.read(File.join("", file)) # GOOD - file path is sanitised by guard
 
     File.open(file).read # GOOD
@@ -22,5 +22,7 @@ class UsersController < ActionController::Base
     if %w(some/const/1.txt some/const/2.txt).include? file
       IO.read(file) # GOOD - file path is sanitised by guard
     end
+
+    open(file) # BAD - sanity check to verify that file was not mistakenly marked as sanitized
   end
 end
diff --git a/ruby/ql/test/query-tests/security/cwe-078/NonConstantKernelOpen/NonConstantKernelOpen.expected b/ruby/ql/test/query-tests/security/cwe-078/NonConstantKernelOpen/NonConstantKernelOpen.expected
index 6361bc7daa5..dc299353e42 100644
--- a/ruby/ql/test/query-tests/security/cwe-078/NonConstantKernelOpen/NonConstantKernelOpen.expected
+++ b/ruby/ql/test/query-tests/security/cwe-078/NonConstantKernelOpen/NonConstantKernelOpen.expected
@@ -8,3 +8,4 @@
 | NonConstantKernelOpen.rb:11:5:11:18 | call to open | Call to URI.open with a non-constant value. Consider replacing it with URI(<uri>).open. |
 | NonConstantKernelOpen.rb:15:5:15:21 | call to open | Call to Kernel.open with a non-constant value. Consider replacing it with File.open. |
 | NonConstantKernelOpen.rb:25:5:25:33 | call to open | Call to Kernel.open with a non-constant value. Consider replacing it with File.open. |
+| NonConstantKernelOpen.rb:33:5:33:14 | call to open | Call to Kernel.open with a non-constant value. Consider replacing it with File.open. |
diff --git a/ruby/ql/test/query-tests/security/cwe-078/NonConstantKernelOpen/NonConstantKernelOpen.rb b/ruby/ql/test/query-tests/security/cwe-078/NonConstantKernelOpen/NonConstantKernelOpen.rb
index c51704eb383..9cd6ccf689f 100644
--- a/ruby/ql/test/query-tests/security/cwe-078/NonConstantKernelOpen/NonConstantKernelOpen.rb
+++ b/ruby/ql/test/query-tests/security/cwe-078/NonConstantKernelOpen/NonConstantKernelOpen.rb
@@ -29,5 +29,7 @@ class UsersController < ActionController::Base
     IO.foreach("|" + EnvUtil.rubybin + " -e 'puts :foo; puts :bar; puts :baz'") {|x| a << x } # GOOD
 
     IO.write(File.join("foo", "bar.txt"), "bar") # GOOD
+
+    open(file) # BAD - sanity check to verify that file was not mistakenly marked as sanitized
   end
 end

From d2c8e70be167f48f3a57d30fdafe4a0345995327 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Peter=20St=C3=B6ckli?= <p-@github.com>
Date: Fri, 9 Dec 2022 09:57:19 +0100
Subject: [PATCH 1188/1420] Adjust expected file for TaintStep (due to changes
 to File.join)

---
 ruby/ql/test/library-tests/dataflow/local/TaintStep.expected | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/ruby/ql/test/library-tests/dataflow/local/TaintStep.expected b/ruby/ql/test/library-tests/dataflow/local/TaintStep.expected
index c66f1eaea4e..b6d33bb4476 100644
--- a/ruby/ql/test/library-tests/dataflow/local/TaintStep.expected
+++ b/ruby/ql/test/library-tests/dataflow/local/TaintStep.expected
@@ -2807,13 +2807,14 @@
 | file://:0:0:0:0 | parameter position 0 of File.absolute_path | file://:0:0:0:0 | [summary] to write: return (return) in File.absolute_path |
 | file://:0:0:0:0 | parameter position 0 of File.dirname | file://:0:0:0:0 | [summary] to write: return (return) in File.dirname |
 | file://:0:0:0:0 | parameter position 0 of File.expand_path | file://:0:0:0:0 | [summary] to write: return (return) in File.expand_path |
+| file://:0:0:0:0 | parameter position 0 of File.join | file://:0:0:0:0 | [summary] to write: return (return) in File.join |
 | file://:0:0:0:0 | parameter position 0 of File.path | file://:0:0:0:0 | [summary] to write: return (return) in File.path |
 | file://:0:0:0:0 | parameter position 0 of File.realdirpath | file://:0:0:0:0 | [summary] to write: return (return) in File.realdirpath |
 | file://:0:0:0:0 | parameter position 0 of File.realpath | file://:0:0:0:0 | [summary] to write: return (return) in File.realpath |
 | file://:0:0:0:0 | parameter position 0 of Hash[] | file://:0:0:0:0 | [summary] read: argument position 0.any element in Hash[] |
 | file://:0:0:0:0 | parameter position 0 of String.try_convert | file://:0:0:0:0 | [summary] to write: return (return) in String.try_convert |
 | file://:0:0:0:0 | parameter position 0 of \| | file://:0:0:0:0 | [summary] read: argument position 0.any element in \| |
-| file://:0:0:0:0 | parameter position 0.. of File.join | file://:0:0:0:0 | [summary] to write: return (return) in File.join |
+| file://:0:0:0:0 | parameter position 1.. of File.join | file://:0:0:0:0 | [summary] to write: return (return) in File.join |
 | file://:0:0:0:0 | parameter self of & | file://:0:0:0:0 | [summary] read: argument self.any element in & |
 | file://:0:0:0:0 | parameter self of * | file://:0:0:0:0 | [summary] read: argument self.any element in * |
 | file://:0:0:0:0 | parameter self of - | file://:0:0:0:0 | [summary] read: argument self.any element in - |

From 43f23801f563423358e4065af20324078088bffb Mon Sep 17 00:00:00 2001
From: Tamas Vajk <tamasvajk@github.com>
Date: Wed, 7 Dec 2022 10:08:01 +0100
Subject: [PATCH 1189/1420] Kotlin: Add test for extension `$default` functions

---
 .../library-tests/methods/exprs.expected      | 47 ++++++++++++++++---
 .../library-tests/methods/methods.expected    | 13 +++--
 .../kotlin/library-tests/methods/methods.ql   |  9 ++++
 .../kotlin/library-tests/methods/methods3.kt  |  4 +-
 .../library-tests/methods/parameters.expected | 17 +++++--
 5 files changed, 74 insertions(+), 16 deletions(-)

diff --git a/java/ql/test/kotlin/library-tests/methods/exprs.expected b/java/ql/test/kotlin/library-tests/methods/exprs.expected
index 99315e33359..95e970fce23 100644
--- a/java/ql/test/kotlin/library-tests/methods/exprs.expected
+++ b/java/ql/test/kotlin/library-tests/methods/exprs.expected
@@ -293,12 +293,47 @@
 | methods2.kt:8:5:9:5 | Unit | TypeAccess |
 | methods2.kt:8:27:8:32 | int | TypeAccess |
 | methods2.kt:8:35:8:40 | int | TypeAccess |
-| methods3.kt:3:1:3:42 | Unit | TypeAccess |
-| methods3.kt:3:5:3:7 | int | TypeAccess |
-| methods3.kt:3:33:3:38 | int | TypeAccess |
-| methods3.kt:6:5:6:46 | Unit | TypeAccess |
-| methods3.kt:6:9:6:11 | int | TypeAccess |
-| methods3.kt:6:37:6:42 | int | TypeAccess |
+| methods3.kt:3:1:3:49 | 0 | IntegerLiteral |
+| methods3.kt:3:1:3:49 | 1 | IntegerLiteral |
+| methods3.kt:3:1:3:49 | ... & ... | AndBitwiseExpr |
+| methods3.kt:3:1:3:49 | ... == ... | EQExpr |
+| methods3.kt:3:1:3:49 | ...=... | AssignExpr |
+| methods3.kt:3:1:3:49 | Methods3Kt | TypeAccess |
+| methods3.kt:3:1:3:49 | Object | TypeAccess |
+| methods3.kt:3:1:3:49 | String | TypeAccess |
+| methods3.kt:3:1:3:49 | Unit | TypeAccess |
+| methods3.kt:3:1:3:49 | Unit | TypeAccess |
+| methods3.kt:3:1:3:49 | fooBarTopLevelMethodExt(...) | MethodAccess |
+| methods3.kt:3:1:3:49 | int | TypeAccess |
+| methods3.kt:3:1:3:49 | int | TypeAccess |
+| methods3.kt:3:1:3:49 | p0 | VarAccess |
+| methods3.kt:3:1:3:49 | p1 | VarAccess |
+| methods3.kt:3:1:3:49 | p1 | VarAccess |
+| methods3.kt:3:1:3:49 | p2 | VarAccess |
+| methods3.kt:3:5:3:10 | String | TypeAccess |
+| methods3.kt:3:36:3:45 | int | TypeAccess |
+| methods3.kt:3:45:3:45 | 1 | IntegerLiteral |
+| methods3.kt:6:5:6:45 | 0 | IntegerLiteral |
+| methods3.kt:6:5:6:45 | 1 | IntegerLiteral |
+| methods3.kt:6:5:6:45 | ... & ... | AndBitwiseExpr |
+| methods3.kt:6:5:6:45 | ... == ... | EQExpr |
+| methods3.kt:6:5:6:45 | ...=... | AssignExpr |
+| methods3.kt:6:5:6:45 | Class3 | TypeAccess |
+| methods3.kt:6:5:6:45 | Object | TypeAccess |
+| methods3.kt:6:5:6:45 | String | TypeAccess |
+| methods3.kt:6:5:6:45 | Unit | TypeAccess |
+| methods3.kt:6:5:6:45 | Unit | TypeAccess |
+| methods3.kt:6:5:6:45 | fooBarMethodExt(...) | MethodAccess |
+| methods3.kt:6:5:6:45 | int | TypeAccess |
+| methods3.kt:6:5:6:45 | int | TypeAccess |
+| methods3.kt:6:5:6:45 | p0 | VarAccess |
+| methods3.kt:6:5:6:45 | p1 | VarAccess |
+| methods3.kt:6:5:6:45 | p2 | VarAccess |
+| methods3.kt:6:5:6:45 | p2 | VarAccess |
+| methods3.kt:6:5:6:45 | p3 | VarAccess |
+| methods3.kt:6:9:6:14 | String | TypeAccess |
+| methods3.kt:6:32:6:41 | int | TypeAccess |
+| methods3.kt:6:41:6:41 | 1 | IntegerLiteral |
 | methods4.kt:7:5:7:34 | Unit | TypeAccess |
 | methods4.kt:7:11:7:29 | InsideNestedTest | TypeAccess |
 | methods5.kt:3:1:11:1 | Unit | TypeAccess |
diff --git a/java/ql/test/kotlin/library-tests/methods/methods.expected b/java/ql/test/kotlin/library-tests/methods/methods.expected
index a4d394362fc..bd7d00a8671 100644
--- a/java/ql/test/kotlin/library-tests/methods/methods.expected
+++ b/java/ql/test/kotlin/library-tests/methods/methods.expected
@@ -38,8 +38,10 @@ methods
 | enumClass.kt:8:3:11:4 | VAL | enumClass.kt:10:14:10:42 | g | g(int) | override, public |  |
 | methods2.kt:0:0:0:0 | Methods2Kt | methods2.kt:4:1:5:1 | fooBarTopLevelMethod | fooBarTopLevelMethod(int,int) | final, public, static |  |
 | methods2.kt:7:1:10:1 | Class2 | methods2.kt:8:5:9:5 | fooBarClassMethod | fooBarClassMethod(int,int) | final, public |  |
-| methods3.kt:0:0:0:0 | Methods3Kt | methods3.kt:3:1:3:42 | fooBarTopLevelMethodExt | fooBarTopLevelMethodExt(int,int) | final, public, static |  |
-| methods3.kt:5:1:7:1 | Class3 | methods3.kt:6:5:6:46 | fooBarTopLevelMethodExt | fooBarTopLevelMethodExt(int,int) | final, public |  |
+| methods3.kt:0:0:0:0 | Methods3Kt | methods3.kt:3:1:3:49 | fooBarTopLevelMethodExt | fooBarTopLevelMethodExt(java.lang.String,int) | final, public, static |  |
+| methods3.kt:0:0:0:0 | Methods3Kt | methods3.kt:3:1:3:49 | fooBarTopLevelMethodExt$default | fooBarTopLevelMethodExt$default(java.lang.String,int,int,java.lang.Object) | public, static | Compiler generated |
+| methods3.kt:5:1:7:1 | Class3 | methods3.kt:6:5:6:45 | fooBarMethodExt | fooBarMethodExt(java.lang.String,int) | final, public |  |
+| methods3.kt:5:1:7:1 | Class3 | methods3.kt:6:5:6:45 | fooBarMethodExt$default | fooBarMethodExt$default(java.lang.String,foo.bar.Class3,int,int,java.lang.Object) | public, static | Compiler generated |
 | methods4.kt:5:3:9:3 | InsideNestedTest | methods4.kt:7:5:7:34 | m | m(foo.bar.NestedTest.InsideNestedTest) | final, public |  |
 | methods5.kt:0:0:0:0 | Methods5Kt | methods5.kt:3:1:11:1 | x | x() | final, public, static |  |
 | methods5.kt:5:3:5:27 |  | methods5.kt:5:3:5:27 | a | a(int) | final, public |  |
@@ -74,6 +76,9 @@ constructors
 | methods5.kt:13:1:13:14 | C1 | methods5.kt:13:1:13:14 | C1 | C1() |
 | methods.kt:5:1:20:1 | Class | methods.kt:5:1:20:1 | Class | Class() |
 extensions
-| methods3.kt:3:1:3:42 | fooBarTopLevelMethodExt | file://:0:0:0:0 | int |
-| methods3.kt:6:5:6:46 | fooBarTopLevelMethodExt | file://:0:0:0:0 | int |
+| methods3.kt:3:1:3:49 | fooBarTopLevelMethodExt | file:///modules/java.base/java/lang/String.class:0:0:0:0 | String |
+| methods3.kt:6:5:6:45 | fooBarMethodExt | file:///modules/java.base/java/lang/String.class:0:0:0:0 | String |
 | methods5.kt:9:3:9:32 | f1 | file:///!unknown-binary-location/foo/bar/C1.class:0:0:0:0 | C1<T1> |
+extensionsMismatch
+| methods3.kt:3:1:3:49 | fooBarTopLevelMethodExt | methods3.kt:3:1:3:49 | fooBarTopLevelMethodExt$default |
+| methods3.kt:6:5:6:45 | fooBarMethodExt | methods3.kt:6:5:6:45 | fooBarMethodExt$default |
diff --git a/java/ql/test/kotlin/library-tests/methods/methods.ql b/java/ql/test/kotlin/library-tests/methods/methods.ql
index 365d41ff1ee..bbde7bfc6e6 100644
--- a/java/ql/test/kotlin/library-tests/methods/methods.ql
+++ b/java/ql/test/kotlin/library-tests/methods/methods.ql
@@ -17,3 +17,12 @@ query predicate constructors(RefType declType, Constructor c, string signature)
 }
 
 query predicate extensions(ExtensionMethod m, Type t) { m.getExtendedType() = t and m.fromSource() }
+
+query predicate extensionsMismatch(Method src, Method def) {
+  src.getKotlinParameterDefaultsProxy() = def and
+  (
+    src instanceof ExtensionMethod and not def instanceof ExtensionMethod
+    or
+    def instanceof ExtensionMethod and not src instanceof ExtensionMethod
+  )
+}
diff --git a/java/ql/test/kotlin/library-tests/methods/methods3.kt b/java/ql/test/kotlin/library-tests/methods/methods3.kt
index fdd759a7840..120a5339a5a 100644
--- a/java/ql/test/kotlin/library-tests/methods/methods3.kt
+++ b/java/ql/test/kotlin/library-tests/methods/methods3.kt
@@ -1,7 +1,7 @@
 package foo.bar
 
-fun Int.fooBarTopLevelMethodExt(x: Int) {}
+fun String.fooBarTopLevelMethodExt(x: Int = 1) {}
 
 class Class3 {
-    fun Int.fooBarTopLevelMethodExt(x: Int) {}
+    fun String.fooBarMethodExt(x: Int = 1) {}
 }
diff --git a/java/ql/test/kotlin/library-tests/methods/parameters.expected b/java/ql/test/kotlin/library-tests/methods/parameters.expected
index 4475aeba459..d4b3a2e2411 100644
--- a/java/ql/test/kotlin/library-tests/methods/parameters.expected
+++ b/java/ql/test/kotlin/library-tests/methods/parameters.expected
@@ -32,10 +32,19 @@
 | methods2.kt:4:1:5:1 | fooBarTopLevelMethod | methods2.kt:4:34:4:39 | y | 1 |
 | methods2.kt:8:5:9:5 | fooBarClassMethod | methods2.kt:8:27:8:32 | x | 0 |
 | methods2.kt:8:5:9:5 | fooBarClassMethod | methods2.kt:8:35:8:40 | y | 1 |
-| methods3.kt:3:1:3:42 | fooBarTopLevelMethodExt | methods3.kt:3:5:3:7 | <this> | 0 |
-| methods3.kt:3:1:3:42 | fooBarTopLevelMethodExt | methods3.kt:3:33:3:38 | x | 1 |
-| methods3.kt:6:5:6:46 | fooBarTopLevelMethodExt | methods3.kt:6:9:6:11 | <this> | 0 |
-| methods3.kt:6:5:6:46 | fooBarTopLevelMethodExt | methods3.kt:6:37:6:42 | x | 1 |
+| methods3.kt:3:1:3:49 | fooBarTopLevelMethodExt | methods3.kt:3:5:3:10 | <this> | 0 |
+| methods3.kt:3:1:3:49 | fooBarTopLevelMethodExt | methods3.kt:3:36:3:45 | x | 1 |
+| methods3.kt:3:1:3:49 | fooBarTopLevelMethodExt$default | methods3.kt:3:1:3:49 | p0 | 0 |
+| methods3.kt:3:1:3:49 | fooBarTopLevelMethodExt$default | methods3.kt:3:1:3:49 | p1 | 1 |
+| methods3.kt:3:1:3:49 | fooBarTopLevelMethodExt$default | methods3.kt:3:1:3:49 | p2 | 2 |
+| methods3.kt:3:1:3:49 | fooBarTopLevelMethodExt$default | methods3.kt:3:1:3:49 | p3 | 3 |
+| methods3.kt:6:5:6:45 | fooBarMethodExt | methods3.kt:6:9:6:14 | <this> | 0 |
+| methods3.kt:6:5:6:45 | fooBarMethodExt | methods3.kt:6:32:6:41 | x | 1 |
+| methods3.kt:6:5:6:45 | fooBarMethodExt$default | methods3.kt:6:5:6:45 | p0 | 0 |
+| methods3.kt:6:5:6:45 | fooBarMethodExt$default | methods3.kt:6:5:6:45 | p1 | 1 |
+| methods3.kt:6:5:6:45 | fooBarMethodExt$default | methods3.kt:6:5:6:45 | p2 | 2 |
+| methods3.kt:6:5:6:45 | fooBarMethodExt$default | methods3.kt:6:5:6:45 | p3 | 3 |
+| methods3.kt:6:5:6:45 | fooBarMethodExt$default | methods3.kt:6:5:6:45 | p4 | 4 |
 | methods4.kt:7:5:7:34 | m | methods4.kt:7:11:7:29 | x | 0 |
 | methods5.kt:5:3:5:27 | a | methods5.kt:5:13:5:18 | i | 0 |
 | methods5.kt:9:3:9:32 | f1 | methods5.kt:9:12:9:17 | <this> | 0 |

From 6457e059f5051d9a068b8892dbfcce83899c6ae6 Mon Sep 17 00:00:00 2001
From: Tamas Vajk <tamasvajk@github.com>
Date: Wed, 7 Dec 2022 10:09:37 +0100
Subject: [PATCH 1190/1420] Kotlin: Fix extraction of `$default` extension
 functions

---
 java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt | 4 ++++
 java/ql/test/kotlin/library-tests/methods/exprs.expected     | 4 ++--
 java/ql/test/kotlin/library-tests/methods/methods.expected   | 4 ++--
 3 files changed, 8 insertions(+), 4 deletions(-)

diff --git a/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt b/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt
index 10d1db8787a..c1357feca37 100644
--- a/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt
+++ b/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt
@@ -975,6 +975,10 @@ open class KotlinFileExtractor(
             val methodId = id.cast<DbMethod>()
             extractMethod(methodId, locId, shortName, erase(f.returnType), paramsSignature, parentId, methodId, origin = null, extractTypeAccess = extractMethodAndParameterTypeAccesses)
             addModifiers(id, "static")
+            if (extReceiver != null) {
+                val extendedType = allParamTypeResults[0] // TODO: this is not correct for member extension methods, where the dispatch receiver is the first parameter
+                tw.writeKtExtensionFunctions(methodId, extendedType.javaResult.id, extendedType.kotlinResult.id)
+            }
         }
         tw.writeHasLocation(id, locId)
         if (f.visibility != DescriptorVisibilities.PRIVATE && f.visibility != DescriptorVisibilities.PRIVATE_TO_THIS) {
diff --git a/java/ql/test/kotlin/library-tests/methods/exprs.expected b/java/ql/test/kotlin/library-tests/methods/exprs.expected
index 95e970fce23..215c0e7d7e3 100644
--- a/java/ql/test/kotlin/library-tests/methods/exprs.expected
+++ b/java/ql/test/kotlin/library-tests/methods/exprs.expected
@@ -306,10 +306,10 @@
 | methods3.kt:3:1:3:49 | fooBarTopLevelMethodExt(...) | MethodAccess |
 | methods3.kt:3:1:3:49 | int | TypeAccess |
 | methods3.kt:3:1:3:49 | int | TypeAccess |
-| methods3.kt:3:1:3:49 | p0 | VarAccess |
 | methods3.kt:3:1:3:49 | p1 | VarAccess |
 | methods3.kt:3:1:3:49 | p1 | VarAccess |
 | methods3.kt:3:1:3:49 | p2 | VarAccess |
+| methods3.kt:3:1:3:49 | this | ExtensionReceiverAccess |
 | methods3.kt:3:5:3:10 | String | TypeAccess |
 | methods3.kt:3:36:3:45 | int | TypeAccess |
 | methods3.kt:3:45:3:45 | 1 | IntegerLiteral |
@@ -326,11 +326,11 @@
 | methods3.kt:6:5:6:45 | fooBarMethodExt(...) | MethodAccess |
 | methods3.kt:6:5:6:45 | int | TypeAccess |
 | methods3.kt:6:5:6:45 | int | TypeAccess |
-| methods3.kt:6:5:6:45 | p0 | VarAccess |
 | methods3.kt:6:5:6:45 | p1 | VarAccess |
 | methods3.kt:6:5:6:45 | p2 | VarAccess |
 | methods3.kt:6:5:6:45 | p2 | VarAccess |
 | methods3.kt:6:5:6:45 | p3 | VarAccess |
+| methods3.kt:6:5:6:45 | this | ExtensionReceiverAccess |
 | methods3.kt:6:9:6:14 | String | TypeAccess |
 | methods3.kt:6:32:6:41 | int | TypeAccess |
 | methods3.kt:6:41:6:41 | 1 | IntegerLiteral |
diff --git a/java/ql/test/kotlin/library-tests/methods/methods.expected b/java/ql/test/kotlin/library-tests/methods/methods.expected
index bd7d00a8671..7cd7e92c37d 100644
--- a/java/ql/test/kotlin/library-tests/methods/methods.expected
+++ b/java/ql/test/kotlin/library-tests/methods/methods.expected
@@ -77,8 +77,8 @@ constructors
 | methods.kt:5:1:20:1 | Class | methods.kt:5:1:20:1 | Class | Class() |
 extensions
 | methods3.kt:3:1:3:49 | fooBarTopLevelMethodExt | file:///modules/java.base/java/lang/String.class:0:0:0:0 | String |
+| methods3.kt:3:1:3:49 | fooBarTopLevelMethodExt$default | file:///modules/java.base/java/lang/String.class:0:0:0:0 | String |
 | methods3.kt:6:5:6:45 | fooBarMethodExt | file:///modules/java.base/java/lang/String.class:0:0:0:0 | String |
+| methods3.kt:6:5:6:45 | fooBarMethodExt$default | file:///modules/java.base/java/lang/String.class:0:0:0:0 | String |
 | methods5.kt:9:3:9:32 | f1 | file:///!unknown-binary-location/foo/bar/C1.class:0:0:0:0 | C1<T1> |
 extensionsMismatch
-| methods3.kt:3:1:3:49 | fooBarTopLevelMethodExt | methods3.kt:3:1:3:49 | fooBarTopLevelMethodExt$default |
-| methods3.kt:6:5:6:45 | fooBarMethodExt | methods3.kt:6:5:6:45 | fooBarMethodExt$default |

From d93dce0fa9fd99a8aa3ebe6fa13240f00e81d1cb Mon Sep 17 00:00:00 2001
From: Tamas Vajk <tamasvajk@github.com>
Date: Wed, 7 Dec 2022 12:24:41 +0100
Subject: [PATCH 1191/1420] Kotlin: Fix extension and dispatch parameter order
 in `$default` functions

---
 .../src/main/kotlin/KotlinFileExtractor.kt    | 32 ++++++++--------
 java/ql/lib/semmle/code/java/Expr.qll         |  3 +-
 java/ql/lib/semmle/code/java/Member.qll       | 29 ++++++++------
 java/ql/lib/semmle/code/java/Variable.qll     |  2 +-
 .../library-tests/methods/exprs.expected      |  2 +-
 .../library-tests/methods/methods.expected    |  8 +++-
 .../kotlin/library-tests/methods/methods.ql   |  7 ++++
 .../parameter-defaults/PrintAst.expected      | 38 +++++++++----------
 8 files changed, 71 insertions(+), 50 deletions(-)

diff --git a/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt b/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt
index c1357feca37..d397c9b5022 100644
--- a/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt
+++ b/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt
@@ -957,7 +957,7 @@ open class KotlinFileExtractor(
         val locId = getLocation(f, null)
         val extReceiver = f.extensionReceiverParameter
         val dispatchReceiver = if (f.shouldExtractAsStatic) null else f.dispatchReceiverParameter
-        val parameterTypes = listOfNotNull(extReceiver?.let { erase(it.type) }) + getDefaultsMethodArgTypes(f)
+        val parameterTypes = getDefaultsMethodArgTypes(f)
         val allParamTypeResults = parameterTypes.mapIndexed { i, paramType ->
             val paramId = tw.getLabelFor<DbParam>(getValueParameterLabel(id, i))
             extractValueParameter(paramId, paramType, "p$i", locId, id, i, paramId, isVararg = false, syntheticParameterNames = true, isCrossinline = false, isNoinline = false).also {
@@ -976,7 +976,8 @@ open class KotlinFileExtractor(
             extractMethod(methodId, locId, shortName, erase(f.returnType), paramsSignature, parentId, methodId, origin = null, extractTypeAccess = extractMethodAndParameterTypeAccesses)
             addModifiers(id, "static")
             if (extReceiver != null) {
-                val extendedType = allParamTypeResults[0] // TODO: this is not correct for member extension methods, where the dispatch receiver is the first parameter
+                val idx = if (dispatchReceiver != null) 1 else 0
+                val extendedType = allParamTypeResults[idx]
                 tw.writeKtExtensionFunctions(methodId, extendedType.javaResult.id, extendedType.kotlinResult.id)
             }
         }
@@ -1044,8 +1045,8 @@ open class KotlinFileExtractor(
                                 val realFnIdxOffset = if (f.extensionReceiverParameter != null) 1 else 0
                                 val paramMappings = f.valueParameters.mapIndexed { idx, param -> Triple(param.type, idx + paramIdxOffset, idx + realFnIdxOffset) } +
                                     listOfNotNull(
-                                        dispatchReceiver?.let { Triple(it.type, realFnIdxOffset, -1) },
-                                        extReceiver?.let { Triple(it.type, 0, 0) }
+                                        dispatchReceiver?.let { Triple(it.type, 0, -1) },
+                                        extReceiver?.let { Triple(it.type, if (dispatchReceiver != null) 1 else 0, 0) }
                                     )
                                 paramMappings.forEach { (type, fromIdx, toIdx) ->
                                     extractVariableAccess(tw.getLabelFor<DbParam>(getValueParameterLabel(id, fromIdx)), type, locId, thisCallId, toIdx, id, returnId)
@@ -1188,6 +1189,7 @@ open class KotlinFileExtractor(
                             id
 
                 val extReceiver = f.extensionReceiverParameter
+                // The following parameter order is correct, because member $default methods (where the order would be [dispatchParam], [extensionParam], normalParams) are not extracted here
                 val fParameters = listOfNotNull(extReceiver) + (overriddenAttributes?.valueParameters ?: f.valueParameters)
                 val paramTypes = fParameters.mapIndexed { i, vp ->
                     extractValueParameter(vp, id, i, typeSubstitution, sourceDeclaration, classTypeArgsIncludingOuterClasses, extractTypeAccess = extractMethodAndParameterTypeAccesses, overriddenAttributes?.sourceLoc)
@@ -1797,11 +1799,12 @@ open class KotlinFileExtractor(
         ) ?: pluginContext.irBuiltIns.anyType
 
     private fun getDefaultsMethodArgTypes(f: IrFunction) =
-        // The $default method has type ([extensionReceiver], [dispatchReceiver], paramTypes..., int, Object)
+        // The $default method has type ([dispatchReceiver], [extensionReceiver], paramTypes..., int, Object)
         // All parameter types are erased. The trailing int is a mask indicating which parameter values are real
         // and which should be replaced by defaults. The final Object parameter is apparently always null.
         (
             listOfNotNull(if (f.shouldExtractAsStatic) null else f.dispatchReceiverParameter?.type) +
+            listOfNotNull(f.extensionReceiverParameter?.type) +
             f.valueParameters.map { it.type } +
             listOf(pluginContext.irBuiltIns.intType, getDefaultsMethodLastArgType(f))
         ).map { erase(it) }
@@ -1820,17 +1823,16 @@ open class KotlinFileExtractor(
 
     private fun getDefaultsMethodLabel(f: IrFunction): Label<out DbCallable> {
         val defaultsMethodName = if (f is IrConstructor) "<init>" else getDefaultsMethodName(f)
-        val normalArgTypes = getDefaultsMethodArgTypes(f)
-        val extensionParamType = f.extensionReceiverParameter?.let { erase(it.type) }
+        val argTypes = getDefaultsMethodArgTypes(f)
 
         val defaultMethodLabelStr = getFunctionLabel(
             f.parent,
             maybeParentId = null,
             defaultsMethodName,
-            normalArgTypes,
+            argTypes,
             erase(f.returnType),
-            extensionParamType,
-            listOf(),
+            extensionParamType = null, // if there's any, that's included already in argTypes
+            functionTypeParameters = listOf(),
             classTypeArgsIncludingOuterClasses = null,
             overridesCollectionsMethod = false,
             javaSignature = null,
@@ -1890,13 +1892,14 @@ open class KotlinFileExtractor(
         extensionReceiver: IrExpression?
     ) {
         var nextIdx = 0
-        if (extensionReceiver != null) {
-            extractExpressionExpr(extensionReceiver, enclosingCallable, id, nextIdx++, enclosingStmt)
-        }
         if (dispatchReceiver != null && !callTarget.shouldExtractAsStatic) {
             extractExpressionExpr(dispatchReceiver, enclosingCallable, id, nextIdx++, enclosingStmt)
         }
 
+        if (extensionReceiver != null) {
+            extractExpressionExpr(extensionReceiver, enclosingCallable, id, nextIdx++, enclosingStmt)
+        }
+
         val valueArgsWithDummies = valueArguments.zip(callTarget.valueParameters).map {
                 (expr, param) -> expr ?: IrConstImpl.defaultValueForType(0, 0, param.type)
         }
@@ -4050,8 +4053,7 @@ open class KotlinFileExtractor(
                     // Use of 'this' in a function where the dispatch receiver is passed like an ordinary parameter,
                     // such as a `$default` static function that substitutes in default arguments as needed.
                     val paramDeclarerId = overriddenAttributes.id ?: useDeclarationParent(thisParamParent, false)
-                    val extensionParamOffset = if (thisParamParent.extensionReceiverParameter != null) 1 else 0
-                    val replacementParamId = tw.getLabelFor<DbParam>(getValueParameterLabel(paramDeclarerId, replaceWithParamIdx + extensionParamOffset))
+                    val replacementParamId = tw.getLabelFor<DbParam>(getValueParameterLabel(paramDeclarerId, replaceWithParamIdx))
                     extractVariableAccess(replacementParamId, e.type, locId, exprParent.parent, exprParent.idx, callable, exprParent.enclosingStmt)
                     return
                 }
diff --git a/java/ql/lib/semmle/code/java/Expr.qll b/java/ql/lib/semmle/code/java/Expr.qll
index fedcfc8ecbb..a10da9ecc9f 100644
--- a/java/ql/lib/semmle/code/java/Expr.qll
+++ b/java/ql/lib/semmle/code/java/Expr.qll
@@ -1896,7 +1896,8 @@ class VarAccess extends Expr, @varaccess {
 class ExtensionReceiverAccess extends VarAccess {
   ExtensionReceiverAccess() {
     exists(Parameter p |
-      this.getVariable() = p and p.getPosition() = 0 and p.getCallable() instanceof ExtensionMethod
+      this.getVariable() = p and
+      p.isExtensionParameter()
     )
   }
 
diff --git a/java/ql/lib/semmle/code/java/Member.qll b/java/ql/lib/semmle/code/java/Member.qll
index 102006b3213..d0e7de8a9ac 100644
--- a/java/ql/lib/semmle/code/java/Member.qll
+++ b/java/ql/lib/semmle/code/java/Member.qll
@@ -327,18 +327,8 @@ class Callable extends StmtParent, Member, @callable {
         this instanceof Method and
         result instanceof Method and
         this.getName() + "$default" = result.getName() and
-        extraLeadingParams <= 1 and
-        (
-          if ktExtensionFunctions(this, _, _)
-          then
-            // Both extension receivers are expected to occur at arg0, with any
-            // dispatch receiver inserted afterwards in the $default proxy's parameter list.
-            // Check the extension receiver matches here, and note regular args
-            // are bumped one position to the right.
-            regularParamsStartIdx = extraLeadingParams + 1 and
-            this.getParameterType(0).getErasure() = eraseRaw(result.getParameterType(0))
-          else regularParamsStartIdx = extraLeadingParams
-        ) and
+        extraLeadingParams <= 1 and // 0 for static methods, 1 for instance methods
+        regularParamsStartIdx = extraLeadingParams and
         lastParamType instanceof TypeObject
       )
     |
@@ -824,4 +814,19 @@ class ExtensionMethod extends Method {
   KotlinType getExtendedKotlinType() { result = extendedKotlinType }
 
   override string getAPrimaryQlClass() { result = "ExtensionMethod" }
+
+  /**
+   * Gets the index of the parameter that is the extension receiver. This is typically index 0. In case of `$default`
+   * extension methods that are defined as members, the index is 1. Index 0 is the dispatch receiver of the `$default`
+   * method.
+   */
+  int getExtensionParameterIndex() {
+    if
+      exists(Method src |
+        this = src.getKotlinParameterDefaultsProxy() and
+        src.getNumberOfParameters() = this.getNumberOfParameters() - 3 // 2 extra parameters + 1 dispatch receiver
+      )
+    then result = 1
+    else result = 0
+  }
 }
diff --git a/java/ql/lib/semmle/code/java/Variable.qll b/java/ql/lib/semmle/code/java/Variable.qll
index 7be49acf546..75c7501c8a7 100644
--- a/java/ql/lib/semmle/code/java/Variable.qll
+++ b/java/ql/lib/semmle/code/java/Variable.qll
@@ -91,7 +91,7 @@ class Parameter extends Element, @param, LocalScopeVariable {
 
   /** Holds if this formal parameter is a parameter representing the dispatch receiver in an extension method. */
   predicate isExtensionParameter() {
-    this.getPosition() = 0 and this.getCallable() instanceof ExtensionMethod
+    this.getPosition() = this.getCallable().(ExtensionMethod).getExtensionParameterIndex()
   }
 
   /**
diff --git a/java/ql/test/kotlin/library-tests/methods/exprs.expected b/java/ql/test/kotlin/library-tests/methods/exprs.expected
index 215c0e7d7e3..5de17a12bf9 100644
--- a/java/ql/test/kotlin/library-tests/methods/exprs.expected
+++ b/java/ql/test/kotlin/library-tests/methods/exprs.expected
@@ -326,7 +326,7 @@
 | methods3.kt:6:5:6:45 | fooBarMethodExt(...) | MethodAccess |
 | methods3.kt:6:5:6:45 | int | TypeAccess |
 | methods3.kt:6:5:6:45 | int | TypeAccess |
-| methods3.kt:6:5:6:45 | p1 | VarAccess |
+| methods3.kt:6:5:6:45 | p0 | VarAccess |
 | methods3.kt:6:5:6:45 | p2 | VarAccess |
 | methods3.kt:6:5:6:45 | p2 | VarAccess |
 | methods3.kt:6:5:6:45 | p3 | VarAccess |
diff --git a/java/ql/test/kotlin/library-tests/methods/methods.expected b/java/ql/test/kotlin/library-tests/methods/methods.expected
index 7cd7e92c37d..89cdd03f303 100644
--- a/java/ql/test/kotlin/library-tests/methods/methods.expected
+++ b/java/ql/test/kotlin/library-tests/methods/methods.expected
@@ -41,7 +41,7 @@ methods
 | methods3.kt:0:0:0:0 | Methods3Kt | methods3.kt:3:1:3:49 | fooBarTopLevelMethodExt | fooBarTopLevelMethodExt(java.lang.String,int) | final, public, static |  |
 | methods3.kt:0:0:0:0 | Methods3Kt | methods3.kt:3:1:3:49 | fooBarTopLevelMethodExt$default | fooBarTopLevelMethodExt$default(java.lang.String,int,int,java.lang.Object) | public, static | Compiler generated |
 | methods3.kt:5:1:7:1 | Class3 | methods3.kt:6:5:6:45 | fooBarMethodExt | fooBarMethodExt(java.lang.String,int) | final, public |  |
-| methods3.kt:5:1:7:1 | Class3 | methods3.kt:6:5:6:45 | fooBarMethodExt$default | fooBarMethodExt$default(java.lang.String,foo.bar.Class3,int,int,java.lang.Object) | public, static | Compiler generated |
+| methods3.kt:5:1:7:1 | Class3 | methods3.kt:6:5:6:45 | fooBarMethodExt$default | fooBarMethodExt$default(foo.bar.Class3,java.lang.String,int,int,java.lang.Object) | public, static | Compiler generated |
 | methods4.kt:5:3:9:3 | InsideNestedTest | methods4.kt:7:5:7:34 | m | m(foo.bar.NestedTest.InsideNestedTest) | final, public |  |
 | methods5.kt:0:0:0:0 | Methods5Kt | methods5.kt:3:1:11:1 | x | x() | final, public, static |  |
 | methods5.kt:5:3:5:27 |  | methods5.kt:5:3:5:27 | a | a(int) | final, public |  |
@@ -82,3 +82,9 @@ extensions
 | methods3.kt:6:5:6:45 | fooBarMethodExt$default | file:///modules/java.base/java/lang/String.class:0:0:0:0 | String |
 | methods5.kt:9:3:9:32 | f1 | file:///!unknown-binary-location/foo/bar/C1.class:0:0:0:0 | C1<T1> |
 extensionsMismatch
+extensionIndex
+| methods3.kt:3:1:3:49 | fooBarTopLevelMethodExt | 0 | file:///modules/java.base/java/lang/String.class:0:0:0:0 | String |
+| methods3.kt:3:1:3:49 | fooBarTopLevelMethodExt$default | 0 | file:///modules/java.base/java/lang/String.class:0:0:0:0 | String |
+| methods3.kt:6:5:6:45 | fooBarMethodExt | 0 | file:///modules/java.base/java/lang/String.class:0:0:0:0 | String |
+| methods3.kt:6:5:6:45 | fooBarMethodExt$default | 1 | file:///modules/java.base/java/lang/String.class:0:0:0:0 | String |
+| methods5.kt:9:3:9:32 | f1 | 0 | file:///!unknown-binary-location/foo/bar/C1.class:0:0:0:0 | C1<T1> |
diff --git a/java/ql/test/kotlin/library-tests/methods/methods.ql b/java/ql/test/kotlin/library-tests/methods/methods.ql
index bbde7bfc6e6..7042cfd48cf 100644
--- a/java/ql/test/kotlin/library-tests/methods/methods.ql
+++ b/java/ql/test/kotlin/library-tests/methods/methods.ql
@@ -26,3 +26,10 @@ query predicate extensionsMismatch(Method src, Method def) {
     def instanceof ExtensionMethod and not src instanceof ExtensionMethod
   )
 }
+
+query predicate extensionIndex(ExtensionMethod m, int i, Type t) {
+  m.fromSource() and
+  m.getExtensionParameterIndex() = i and
+  m.getExtendedType() = t and
+  m.getParameter(i).getType() = t
+}
diff --git a/java/ql/test/kotlin/library-tests/parameter-defaults/PrintAst.expected b/java/ql/test/kotlin/library-tests/parameter-defaults/PrintAst.expected
index 972e826cdca..0fe95582369 100644
--- a/java/ql/test/kotlin/library-tests/parameter-defaults/PrintAst.expected
+++ b/java/ql/test/kotlin/library-tests/parameter-defaults/PrintAst.expected
@@ -525,13 +525,13 @@ test.kt:
 #   21|           0: [MethodAccess] sink(...)
 #   21|             -1: [TypeAccess] TestKt
 #   21|             0: [VarAccess] y
-#   19|     3: [Method] f$default
+#   19|     3: [ExtensionMethod] f$default
 #   19|       3: [TypeAccess] Unit
 #-----|       4: (Parameters)
 #   19|         0: [Parameter] p0
-#   19|           0: [TypeAccess] String
-#   19|         1: [Parameter] p1
 #   19|           0: [TypeAccess] TestExtensionMember
+#   19|         1: [Parameter] p1
+#   19|           0: [TypeAccess] String
 #   19|         2: [Parameter] p2
 #   19|           0: [TypeAccess] String
 #   19|         3: [Parameter] p3
@@ -565,8 +565,8 @@ test.kt:
 #   19|               1: [StringLiteral] "hello world"
 #   19|         2: [ReturnStmt] return ...
 #   19|           0: [MethodAccess] f(...)
-#   19|             -1: [VarAccess] p1
-#   19|             0: [VarAccess] p0
+#   19|             -1: [VarAccess] p0
+#   19|             0: [ExtensionReceiverAccess] this
 #   19|             1: [VarAccess] p2
 #   19|             2: [VarAccess] p3
 #   19|             3: [VarAccess] p4
@@ -579,8 +579,8 @@ test.kt:
 #   25|         0: [ExprStmt] <Expr>;
 #   25|           0: [MethodAccess] f$default(...)
 #   25|             -1: [TypeAccess] TestExtensionMember
-#   25|             0: [VarAccess] sunk
-#   25|             1: [ThisAccess] this
+#   25|             0: [ThisAccess] this
+#   25|             1: [VarAccess] sunk
 #   25|             2: [StringLiteral] "extension sunk"
 #    1|             3: [NullLiteral] null
 #    1|             4: [NullLiteral] null
@@ -589,8 +589,8 @@ test.kt:
 #   26|         1: [ExprStmt] <Expr>;
 #   26|           0: [MethodAccess] f$default(...)
 #   26|             -1: [TypeAccess] TestExtensionMember
-#   26|             0: [VarAccess] sunk
-#   26|             1: [ThisAccess] this
+#   26|             0: [ThisAccess] this
+#   26|             1: [VarAccess] sunk
 #   26|             2: [StringLiteral] "extension sunk fp"
 #   26|             3: [StringLiteral] "extension sunk 2"
 #    1|             4: [NullLiteral] null
@@ -729,13 +729,13 @@ test.kt:
 #   57|           0: [MethodAccess] sink(...)
 #   57|             -1: [TypeAccess] TestKt
 #   57|             0: [VarAccess] y
-#   56|     4: [Method] test$default
+#   56|     4: [ExtensionMethod] test$default
 #   56|       3: [TypeAccess] Unit
 #-----|       4: (Parameters)
 #   56|         0: [Parameter] p0
-#   56|           0: [TypeAccess] ExtendMe
-#   56|         1: [Parameter] p1
 #   56|           0: [TypeAccess] TestReceiverReferences
+#   56|         1: [Parameter] p1
+#   56|           0: [TypeAccess] ExtendMe
 #   56|         2: [Parameter] p2
 #   56|           0: [TypeAccess] String
 #   56|         3: [Parameter] p3
@@ -759,7 +759,7 @@ test.kt:
 #   56|               1: [MethodAccess] f(...)
 #   56|                 -1: [VarAccess] p0
 #   56|                 0: [MethodAccess] g(...)
-#   56|                   -1: [VarAccess] p1
+#   56|                   -1: [VarAccess] p0
 #   56|                   0: [VarAccess] p2
 #   56|         1: [IfStmt] if (...)
 #   56|           0: [EQExpr] ... == ...
@@ -773,8 +773,8 @@ test.kt:
 #   56|               1: [StringLiteral] "hello world"
 #   56|         2: [ReturnStmt] return ...
 #   56|           0: [MethodAccess] test(...)
-#   56|             -1: [VarAccess] p1
-#   56|             0: [VarAccess] p0
+#   56|             -1: [VarAccess] p0
+#   56|             0: [ExtensionReceiverAccess] this
 #   56|             1: [VarAccess] p2
 #   56|             2: [VarAccess] p3
 #   56|             3: [VarAccess] p4
@@ -787,8 +787,8 @@ test.kt:
 #   61|         0: [ExprStmt] <Expr>;
 #   61|           0: [MethodAccess] test$default(...)
 #   61|             -1: [TypeAccess] TestReceiverReferences
-#   61|             0: [VarAccess] t
-#   61|             1: [ThisAccess] this
+#   61|             0: [ThisAccess] this
+#   61|             1: [VarAccess] t
 #   61|             2: [StringLiteral] "receiver refs sunk"
 #    1|             3: [NullLiteral] null
 #    1|             4: [NullLiteral] null
@@ -797,8 +797,8 @@ test.kt:
 #   62|         1: [ExprStmt] <Expr>;
 #   62|           0: [MethodAccess] test$default(...)
 #   62|             -1: [TypeAccess] TestReceiverReferences
-#   62|             0: [VarAccess] t
-#   62|             1: [ThisAccess] this
+#   62|             0: [ThisAccess] this
+#   62|             1: [VarAccess] t
 #   62|             2: [StringLiteral] "receiver refs sunk fp"
 #   62|             3: [StringLiteral] "receiver refs sunk 2"
 #    1|             4: [NullLiteral] null

From ac5219fc7af1e94b69aa9290cc9adf55c0c16c14 Mon Sep 17 00:00:00 2001
From: Tamas Vajk <tamasvajk@github.com>
Date: Wed, 7 Dec 2022 12:34:44 +0100
Subject: [PATCH 1192/1420] Kotlin: Adjust `ExtensionReceiverAccess.toString`
 to not return hard coded `this` value

---
 java/ql/lib/semmle/code/java/Expr.qll                | 12 +++++++-----
 .../test/kotlin/library-tests/methods/exprs.expected |  4 ++--
 .../parameter-defaults/PrintAst.expected             |  4 ++--
 3 files changed, 11 insertions(+), 9 deletions(-)

diff --git a/java/ql/lib/semmle/code/java/Expr.qll b/java/ql/lib/semmle/code/java/Expr.qll
index a10da9ecc9f..0e1b88a3a83 100644
--- a/java/ql/lib/semmle/code/java/Expr.qll
+++ b/java/ql/lib/semmle/code/java/Expr.qll
@@ -1894,16 +1894,18 @@ class VarAccess extends Expr, @varaccess {
  * An access to an extension receiver parameter. This is a parameter access that takes the form of `this` in Kotlin.
  */
 class ExtensionReceiverAccess extends VarAccess {
+  Parameter p;
+
   ExtensionReceiverAccess() {
-    exists(Parameter p |
-      this.getVariable() = p and
-      p.isExtensionParameter()
-    )
+    this.getVariable() = p and
+    p.isExtensionParameter()
   }
 
   override string getAPrimaryQlClass() { result = "ExtensionReceiverAccess" }
 
-  override string toString() { result = "this" }
+  override string toString() {
+    if p.getName() = "<this>" then result = "this" else result = p.getName()
+  }
 }
 
 /**
diff --git a/java/ql/test/kotlin/library-tests/methods/exprs.expected b/java/ql/test/kotlin/library-tests/methods/exprs.expected
index 5de17a12bf9..f0474cd40fd 100644
--- a/java/ql/test/kotlin/library-tests/methods/exprs.expected
+++ b/java/ql/test/kotlin/library-tests/methods/exprs.expected
@@ -306,10 +306,10 @@
 | methods3.kt:3:1:3:49 | fooBarTopLevelMethodExt(...) | MethodAccess |
 | methods3.kt:3:1:3:49 | int | TypeAccess |
 | methods3.kt:3:1:3:49 | int | TypeAccess |
+| methods3.kt:3:1:3:49 | p0 | ExtensionReceiverAccess |
 | methods3.kt:3:1:3:49 | p1 | VarAccess |
 | methods3.kt:3:1:3:49 | p1 | VarAccess |
 | methods3.kt:3:1:3:49 | p2 | VarAccess |
-| methods3.kt:3:1:3:49 | this | ExtensionReceiverAccess |
 | methods3.kt:3:5:3:10 | String | TypeAccess |
 | methods3.kt:3:36:3:45 | int | TypeAccess |
 | methods3.kt:3:45:3:45 | 1 | IntegerLiteral |
@@ -327,10 +327,10 @@
 | methods3.kt:6:5:6:45 | int | TypeAccess |
 | methods3.kt:6:5:6:45 | int | TypeAccess |
 | methods3.kt:6:5:6:45 | p0 | VarAccess |
+| methods3.kt:6:5:6:45 | p1 | ExtensionReceiverAccess |
 | methods3.kt:6:5:6:45 | p2 | VarAccess |
 | methods3.kt:6:5:6:45 | p2 | VarAccess |
 | methods3.kt:6:5:6:45 | p3 | VarAccess |
-| methods3.kt:6:5:6:45 | this | ExtensionReceiverAccess |
 | methods3.kt:6:9:6:14 | String | TypeAccess |
 | methods3.kt:6:32:6:41 | int | TypeAccess |
 | methods3.kt:6:41:6:41 | 1 | IntegerLiteral |
diff --git a/java/ql/test/kotlin/library-tests/parameter-defaults/PrintAst.expected b/java/ql/test/kotlin/library-tests/parameter-defaults/PrintAst.expected
index 0fe95582369..ae6e420be31 100644
--- a/java/ql/test/kotlin/library-tests/parameter-defaults/PrintAst.expected
+++ b/java/ql/test/kotlin/library-tests/parameter-defaults/PrintAst.expected
@@ -566,7 +566,7 @@ test.kt:
 #   19|         2: [ReturnStmt] return ...
 #   19|           0: [MethodAccess] f(...)
 #   19|             -1: [VarAccess] p0
-#   19|             0: [ExtensionReceiverAccess] this
+#   19|             0: [ExtensionReceiverAccess] p1
 #   19|             1: [VarAccess] p2
 #   19|             2: [VarAccess] p3
 #   19|             3: [VarAccess] p4
@@ -774,7 +774,7 @@ test.kt:
 #   56|         2: [ReturnStmt] return ...
 #   56|           0: [MethodAccess] test(...)
 #   56|             -1: [VarAccess] p0
-#   56|             0: [ExtensionReceiverAccess] this
+#   56|             0: [ExtensionReceiverAccess] p1
 #   56|             1: [VarAccess] p2
 #   56|             2: [VarAccess] p3
 #   56|             3: [VarAccess] p4

From f646938d919668b633d29103abf65c43d504f822 Mon Sep 17 00:00:00 2001
From: Tamas Vajk <tamasvajk@github.com>
Date: Wed, 7 Dec 2022 13:15:25 +0100
Subject: [PATCH 1193/1420] Revert "Kotlin: Adjust
 `ExtensionReceiverAccess.toString` to not return hard coded `this` value"

This reverts commit 9649a8f64aa47d860d3ce2d005a939df75ee0e41.
---
 java/ql/lib/semmle/code/java/Expr.qll                | 12 +++++-------
 .../test/kotlin/library-tests/methods/exprs.expected |  4 ++--
 .../parameter-defaults/PrintAst.expected             |  4 ++--
 3 files changed, 9 insertions(+), 11 deletions(-)

diff --git a/java/ql/lib/semmle/code/java/Expr.qll b/java/ql/lib/semmle/code/java/Expr.qll
index 0e1b88a3a83..a10da9ecc9f 100644
--- a/java/ql/lib/semmle/code/java/Expr.qll
+++ b/java/ql/lib/semmle/code/java/Expr.qll
@@ -1894,18 +1894,16 @@ class VarAccess extends Expr, @varaccess {
  * An access to an extension receiver parameter. This is a parameter access that takes the form of `this` in Kotlin.
  */
 class ExtensionReceiverAccess extends VarAccess {
-  Parameter p;
-
   ExtensionReceiverAccess() {
-    this.getVariable() = p and
-    p.isExtensionParameter()
+    exists(Parameter p |
+      this.getVariable() = p and
+      p.isExtensionParameter()
+    )
   }
 
   override string getAPrimaryQlClass() { result = "ExtensionReceiverAccess" }
 
-  override string toString() {
-    if p.getName() = "<this>" then result = "this" else result = p.getName()
-  }
+  override string toString() { result = "this" }
 }
 
 /**
diff --git a/java/ql/test/kotlin/library-tests/methods/exprs.expected b/java/ql/test/kotlin/library-tests/methods/exprs.expected
index f0474cd40fd..5de17a12bf9 100644
--- a/java/ql/test/kotlin/library-tests/methods/exprs.expected
+++ b/java/ql/test/kotlin/library-tests/methods/exprs.expected
@@ -306,10 +306,10 @@
 | methods3.kt:3:1:3:49 | fooBarTopLevelMethodExt(...) | MethodAccess |
 | methods3.kt:3:1:3:49 | int | TypeAccess |
 | methods3.kt:3:1:3:49 | int | TypeAccess |
-| methods3.kt:3:1:3:49 | p0 | ExtensionReceiverAccess |
 | methods3.kt:3:1:3:49 | p1 | VarAccess |
 | methods3.kt:3:1:3:49 | p1 | VarAccess |
 | methods3.kt:3:1:3:49 | p2 | VarAccess |
+| methods3.kt:3:1:3:49 | this | ExtensionReceiverAccess |
 | methods3.kt:3:5:3:10 | String | TypeAccess |
 | methods3.kt:3:36:3:45 | int | TypeAccess |
 | methods3.kt:3:45:3:45 | 1 | IntegerLiteral |
@@ -327,10 +327,10 @@
 | methods3.kt:6:5:6:45 | int | TypeAccess |
 | methods3.kt:6:5:6:45 | int | TypeAccess |
 | methods3.kt:6:5:6:45 | p0 | VarAccess |
-| methods3.kt:6:5:6:45 | p1 | ExtensionReceiverAccess |
 | methods3.kt:6:5:6:45 | p2 | VarAccess |
 | methods3.kt:6:5:6:45 | p2 | VarAccess |
 | methods3.kt:6:5:6:45 | p3 | VarAccess |
+| methods3.kt:6:5:6:45 | this | ExtensionReceiverAccess |
 | methods3.kt:6:9:6:14 | String | TypeAccess |
 | methods3.kt:6:32:6:41 | int | TypeAccess |
 | methods3.kt:6:41:6:41 | 1 | IntegerLiteral |
diff --git a/java/ql/test/kotlin/library-tests/parameter-defaults/PrintAst.expected b/java/ql/test/kotlin/library-tests/parameter-defaults/PrintAst.expected
index ae6e420be31..0fe95582369 100644
--- a/java/ql/test/kotlin/library-tests/parameter-defaults/PrintAst.expected
+++ b/java/ql/test/kotlin/library-tests/parameter-defaults/PrintAst.expected
@@ -566,7 +566,7 @@ test.kt:
 #   19|         2: [ReturnStmt] return ...
 #   19|           0: [MethodAccess] f(...)
 #   19|             -1: [VarAccess] p0
-#   19|             0: [ExtensionReceiverAccess] p1
+#   19|             0: [ExtensionReceiverAccess] this
 #   19|             1: [VarAccess] p2
 #   19|             2: [VarAccess] p3
 #   19|             3: [VarAccess] p4
@@ -774,7 +774,7 @@ test.kt:
 #   56|         2: [ReturnStmt] return ...
 #   56|           0: [MethodAccess] test(...)
 #   56|             -1: [VarAccess] p0
-#   56|             0: [ExtensionReceiverAccess] p1
+#   56|             0: [ExtensionReceiverAccess] this
 #   56|             1: [VarAccess] p2
 #   56|             2: [VarAccess] p3
 #   56|             3: [VarAccess] p4

From 81c35c8b278b4729ebe80fa2a64dcadefec40298 Mon Sep 17 00:00:00 2001
From: Tamas Vajk <tamasvajk@github.com>
Date: Wed, 7 Dec 2022 13:28:10 +0100
Subject: [PATCH 1194/1420] Adjust `PathSanitizer` to use fixed `$default`
 extension method functionality

---
 .../ql/lib/semmle/code/java/security/PathSanitizer.qll | 10 ++++++----
 1 file changed, 6 insertions(+), 4 deletions(-)

diff --git a/java/ql/lib/semmle/code/java/security/PathSanitizer.qll b/java/ql/lib/semmle/code/java/security/PathSanitizer.qll
index 061ec5dc68c..775b3828a67 100644
--- a/java/ql/lib/semmle/code/java/security/PathSanitizer.qll
+++ b/java/ql/lib/semmle/code/java/security/PathSanitizer.qll
@@ -298,8 +298,8 @@ private class PathNormalizeSanitizer extends MethodAccess {
  * what `getQualifier` actually gets in Java and Kotlin.
  */
 private Expr getVisualQualifier(MethodAccess ma) {
-  if getSourceMethod(ma.getMethod()) instanceof ExtensionMethod
-  then result = ma.getArgument(0)
+  if ma.getMethod() instanceof ExtensionMethod
+  then result = ma.getArgument(ma.getMethod().(ExtensionMethod).getExtensionParameterIndex())
   else result = ma.getQualifier()
 }
 
@@ -310,8 +310,10 @@ private Expr getVisualQualifier(MethodAccess ma) {
  */
 bindingset[argPos]
 private Argument getVisualArgument(MethodAccess ma, int argPos) {
-  if getSourceMethod(ma.getMethod()) instanceof ExtensionMethod
-  then result = ma.getArgument(argPos + 1)
+  if ma.getMethod() instanceof ExtensionMethod
+  then
+    result =
+      ma.getArgument(argPos + ma.getMethod().(ExtensionMethod).getExtensionParameterIndex() + 1)
   else result = ma.getArgument(argPos)
 }
 

From 243c311b3d6240095461aa0b9a10dd09b8be6260 Mon Sep 17 00:00:00 2001
From: Tamas Vajk <tamasvajk@github.com>
Date: Wed, 7 Dec 2022 15:18:57 +0100
Subject: [PATCH 1195/1420] Accept unit test changes

---
 .../jvmoverloads-annotation/PrintAst.expected | 22 +++++++++----------
 .../jvmoverloads-annotation/test.expected     |  2 +-
 .../reflection/PrintAst.expected              |  4 ++--
 3 files changed, 14 insertions(+), 14 deletions(-)

diff --git a/java/ql/test/kotlin/library-tests/jvmoverloads-annotation/PrintAst.expected b/java/ql/test/kotlin/library-tests/jvmoverloads-annotation/PrintAst.expected
index a1d0808d7a9..439613f6dd4 100644
--- a/java/ql/test/kotlin/library-tests/jvmoverloads-annotation/PrintAst.expected
+++ b/java/ql/test/kotlin/library-tests/jvmoverloads-annotation/PrintAst.expected
@@ -72,7 +72,7 @@ test.kt:
 #   45|       5: [BlockStmt] { ... }
 #   45|         0: [ReturnStmt] return ...
 #   45|           0: [VarAccess] a
-#   45|     5: [Method] testExtensionFunction$default
+#   45|     5: [ExtensionMethod] testExtensionFunction$default
 #   45|       3: [TypeAccess] int
 #-----|       4: (Parameters)
 #   45|         0: [Parameter] p0
@@ -116,7 +116,7 @@ test.kt:
 #   45|         2: [ReturnStmt] return ...
 #   45|           0: [MethodAccess] testExtensionFunction(...)
 #   45|             -1: [TypeAccess] TestKt
-#   45|             0: [VarAccess] p0
+#   45|             0: [ExtensionReceiverAccess] this
 #   45|             1: [VarAccess] p1
 #   45|             2: [VarAccess] p2
 #   45|             3: [VarAccess] p3
@@ -356,9 +356,9 @@ test.kt:
 #   12|         0: [ReturnStmt] return ...
 #   12|           0: [MethodAccess] testMemberExtensionFunction$default(...)
 #   12|             -1: [TypeAccess] Test
-#    0|             0: [ExtensionReceiverAccess] this
-#    0|             1: [ThisAccess] Test.this
+#    0|             0: [ThisAccess] Test.this
 #    0|               0: [TypeAccess] Test
+#    0|             1: [ExtensionReceiverAccess] this
 #    0|             2: [VarAccess] a
 #    1|             3: [NullLiteral] null
 #    0|             4: [VarAccess] c
@@ -383,9 +383,9 @@ test.kt:
 #   12|         0: [ReturnStmt] return ...
 #   12|           0: [MethodAccess] testMemberExtensionFunction$default(...)
 #   12|             -1: [TypeAccess] Test
-#    0|             0: [ExtensionReceiverAccess] this
-#    0|             1: [ThisAccess] Test.this
+#    0|             0: [ThisAccess] Test.this
 #    0|               0: [TypeAccess] Test
+#    0|             1: [ExtensionReceiverAccess] this
 #    0|             2: [VarAccess] a
 #    0|             3: [VarAccess] b
 #    0|             4: [VarAccess] c
@@ -411,13 +411,13 @@ test.kt:
 #   12|       5: [BlockStmt] { ... }
 #   12|         0: [ReturnStmt] return ...
 #   12|           0: [VarAccess] a
-#   12|     13: [Method] testMemberExtensionFunction$default
+#   12|     13: [ExtensionMethod] testMemberExtensionFunction$default
 #   12|       3: [TypeAccess] int
 #-----|       4: (Parameters)
 #   12|         0: [Parameter] p0
-#   12|           0: [TypeAccess] Test2
-#   12|         1: [Parameter] p1
 #   12|           0: [TypeAccess] Test
+#   12|         1: [Parameter] p1
+#   12|           0: [TypeAccess] Test2
 #   12|         2: [Parameter] p2
 #   12|           0: [TypeAccess] int
 #   12|         3: [Parameter] p3
@@ -456,8 +456,8 @@ test.kt:
 #   12|               1: [FloatLiteral] 1.0
 #   12|         2: [ReturnStmt] return ...
 #   12|           0: [MethodAccess] testMemberExtensionFunction(...)
-#   12|             -1: [VarAccess] p1
-#   12|             0: [VarAccess] p0
+#   12|             -1: [VarAccess] p0
+#   12|             0: [ExtensionReceiverAccess] this
 #   12|             1: [VarAccess] p2
 #   12|             2: [VarAccess] p3
 #   12|             3: [VarAccess] p4
diff --git a/java/ql/test/kotlin/library-tests/jvmoverloads-annotation/test.expected b/java/ql/test/kotlin/library-tests/jvmoverloads-annotation/test.expected
index 00654e8929f..5fcccaca991 100644
--- a/java/ql/test/kotlin/library-tests/jvmoverloads-annotation/test.expected
+++ b/java/ql/test/kotlin/library-tests/jvmoverloads-annotation/test.expected
@@ -29,7 +29,7 @@
 | test.kt:3:1:14:1 | Test | test.kt:12:3:12:121 | testMemberExtensionFunction | testMemberExtensionFunction(Test2,int,double,boolean) |
 | test.kt:3:1:14:1 | Test | test.kt:12:3:12:121 | testMemberExtensionFunction | testMemberExtensionFunction(Test2,int,java.lang.String,double,boolean) |
 | test.kt:3:1:14:1 | Test | test.kt:12:3:12:121 | testMemberExtensionFunction | testMemberExtensionFunction(Test2,int,java.lang.String,double,float,boolean) |
-| test.kt:3:1:14:1 | Test | test.kt:12:3:12:121 | testMemberExtensionFunction$default | testMemberExtensionFunction$default(Test2,Test,int,java.lang.String,double,float,boolean,int,java.lang.Object) |
+| test.kt:3:1:14:1 | Test | test.kt:12:3:12:121 | testMemberExtensionFunction$default | testMemberExtensionFunction$default(Test,Test2,int,java.lang.String,double,float,boolean,int,java.lang.Object) |
 | test.kt:16:1:28:1 | Test2 | test.kt:16:34:28:1 | Test2 | Test2(int,double,boolean) |
 | test.kt:16:1:28:1 | Test2 | test.kt:16:34:28:1 | Test2 | Test2(int,java.lang.String,double,boolean) |
 | test.kt:16:1:28:1 | Test2 | test.kt:16:34:28:1 | Test2 | Test2(int,java.lang.String,double,float,boolean) |
diff --git a/java/ql/test/kotlin/library-tests/reflection/PrintAst.expected b/java/ql/test/kotlin/library-tests/reflection/PrintAst.expected
index c46be5c7900..9f4ece3d033 100644
--- a/java/ql/test/kotlin/library-tests/reflection/PrintAst.expected
+++ b/java/ql/test/kotlin/library-tests/reflection/PrintAst.expected
@@ -534,7 +534,7 @@ reflection.kt:
 #  150|           0: [AddExpr] ... + ...
 #  150|             0: [VarAccess] x
 #  150|             1: [VarAccess] y
-#  150|     20: [Method] extTakesOptionalParam$default
+#  150|     20: [ExtensionMethod] extTakesOptionalParam$default
 #  150|       3: [TypeAccess] int
 #-----|       4: (Parameters)
 #  150|         0: [Parameter] p0
@@ -561,7 +561,7 @@ reflection.kt:
 #  150|         1: [ReturnStmt] return ...
 #  150|           0: [MethodAccess] extTakesOptionalParam(...)
 #  150|             -1: [TypeAccess] ReflectionKt
-#  150|             0: [VarAccess] p0
+#  150|             0: [ExtensionReceiverAccess] this
 #  150|             1: [VarAccess] p1
 #  150|             2: [VarAccess] p2
 #  152|     21: [Method] extensionAdaptedParams

From ce5509a080339f9f23ddfe5920a53f249ccca7b6 Mon Sep 17 00:00:00 2001
From: Tamas Vajk <tamasvajk@github.com>
Date: Wed, 7 Dec 2022 15:57:47 +0100
Subject: [PATCH 1196/1420] Kotlin: Adjust MaD argument shifting for `$default`
 method

---
 .../java/dataflow/internal/FlowSummaryImplSpecific.qll     | 7 +++++--
 1 file changed, 5 insertions(+), 2 deletions(-)

diff --git a/java/ql/lib/semmle/code/java/dataflow/internal/FlowSummaryImplSpecific.qll b/java/ql/lib/semmle/code/java/dataflow/internal/FlowSummaryImplSpecific.qll
index c3366436d27..3f44d635a68 100644
--- a/java/ql/lib/semmle/code/java/dataflow/internal/FlowSummaryImplSpecific.qll
+++ b/java/ql/lib/semmle/code/java/dataflow/internal/FlowSummaryImplSpecific.qll
@@ -120,8 +120,11 @@ private predicate correspondingKotlinParameterDefaultsArgSpec(
           exists(int oldArgParsed |
             oldArgParsed = AccessPathSyntax::AccessPath::parseInt(oldArgNumber.splitAt(",").trim())
           |
-            if ktExtensionFunctions(originalCallable, _, _) and oldArgParsed = 0
-            then defaultsArgSpec = "Argument[0]"
+            if
+              ktExtensionFunctions(originalCallable, _, _) and
+              ktExtensionFunctions(defaultsCallable, _, _) and
+              oldArgParsed = 0
+            then defaultsArgSpec = "Argument[" + paramOffset + "]" // 1 if dispatch receiver is present, 0 otherwise.
             else defaultsArgSpec = "Argument[" + (oldArgParsed + paramOffset) + "]" + rest
           )
         )

From e410e2744bdefd7751585ce69cd082847cf3991e Mon Sep 17 00:00:00 2001
From: Tamas Vajk <tamasvajk@github.com>
Date: Fri, 9 Dec 2022 08:46:08 +0100
Subject: [PATCH 1197/1420] Add change note

---
 .../lib/change-notes/2022-12-09-default-extension-methods.md  | 4 ++++
 1 file changed, 4 insertions(+)
 create mode 100644 java/ql/lib/change-notes/2022-12-09-default-extension-methods.md

diff --git a/java/ql/lib/change-notes/2022-12-09-default-extension-methods.md b/java/ql/lib/change-notes/2022-12-09-default-extension-methods.md
new file mode 100644
index 00000000000..f9335b2670d
--- /dev/null
+++ b/java/ql/lib/change-notes/2022-12-09-default-extension-methods.md
@@ -0,0 +1,4 @@
+---
+category: minorAnalysis
+---
+* The extraction of extension methods have been improved when default parameter values are present. The dispatch and extension receiver parameters are extracted in the correct order. The `ExtensionMethod::getExtensionParameterIndex` predicate has been introduced to facilitate getting the correct extension parameter index.

From 6bcfdfca88409b9c1d12d293da4f3edb1ce4820d Mon Sep 17 00:00:00 2001
From: Tamas Vajk <tamasvajk@github.com>
Date: Fri, 9 Dec 2022 10:23:54 +0100
Subject: [PATCH 1198/1420] Adjust `getExtensionReceiverParameterIndex`
 predicate name and change note

---
 .../change-notes/2022-12-09-default-extension-methods.md    | 2 +-
 java/ql/lib/semmle/code/java/Member.qll                     | 2 +-
 java/ql/lib/semmle/code/java/Variable.qll                   | 2 +-
 java/ql/lib/semmle/code/java/security/PathSanitizer.qll     | 6 ++++--
 java/ql/test/kotlin/library-tests/methods/methods.ql        | 2 +-
 5 files changed, 8 insertions(+), 6 deletions(-)

diff --git a/java/ql/lib/change-notes/2022-12-09-default-extension-methods.md b/java/ql/lib/change-notes/2022-12-09-default-extension-methods.md
index f9335b2670d..df9d23503da 100644
--- a/java/ql/lib/change-notes/2022-12-09-default-extension-methods.md
+++ b/java/ql/lib/change-notes/2022-12-09-default-extension-methods.md
@@ -1,4 +1,4 @@
 ---
 category: minorAnalysis
 ---
-* The extraction of extension methods have been improved when default parameter values are present. The dispatch and extension receiver parameters are extracted in the correct order. The `ExtensionMethod::getExtensionParameterIndex` predicate has been introduced to facilitate getting the correct extension parameter index.
+* The extraction of Kotlin extension methods has been improved when default parameter values are present. The dispatch and extension receiver parameters are extracted in the correct order. The `ExtensionMethod::getExtensionReceiverParameterIndex` predicate has been introduced to facilitate getting the correct extension parameter index.
diff --git a/java/ql/lib/semmle/code/java/Member.qll b/java/ql/lib/semmle/code/java/Member.qll
index d0e7de8a9ac..d55a0eefdec 100644
--- a/java/ql/lib/semmle/code/java/Member.qll
+++ b/java/ql/lib/semmle/code/java/Member.qll
@@ -820,7 +820,7 @@ class ExtensionMethod extends Method {
    * extension methods that are defined as members, the index is 1. Index 0 is the dispatch receiver of the `$default`
    * method.
    */
-  int getExtensionParameterIndex() {
+  int getExtensionReceiverParameterIndex() {
     if
       exists(Method src |
         this = src.getKotlinParameterDefaultsProxy() and
diff --git a/java/ql/lib/semmle/code/java/Variable.qll b/java/ql/lib/semmle/code/java/Variable.qll
index 75c7501c8a7..82314824395 100644
--- a/java/ql/lib/semmle/code/java/Variable.qll
+++ b/java/ql/lib/semmle/code/java/Variable.qll
@@ -91,7 +91,7 @@ class Parameter extends Element, @param, LocalScopeVariable {
 
   /** Holds if this formal parameter is a parameter representing the dispatch receiver in an extension method. */
   predicate isExtensionParameter() {
-    this.getPosition() = this.getCallable().(ExtensionMethod).getExtensionParameterIndex()
+    this.getPosition() = this.getCallable().(ExtensionMethod).getExtensionReceiverParameterIndex()
   }
 
   /**
diff --git a/java/ql/lib/semmle/code/java/security/PathSanitizer.qll b/java/ql/lib/semmle/code/java/security/PathSanitizer.qll
index 775b3828a67..14445971b47 100644
--- a/java/ql/lib/semmle/code/java/security/PathSanitizer.qll
+++ b/java/ql/lib/semmle/code/java/security/PathSanitizer.qll
@@ -299,7 +299,8 @@ private class PathNormalizeSanitizer extends MethodAccess {
  */
 private Expr getVisualQualifier(MethodAccess ma) {
   if ma.getMethod() instanceof ExtensionMethod
-  then result = ma.getArgument(ma.getMethod().(ExtensionMethod).getExtensionParameterIndex())
+  then
+    result = ma.getArgument(ma.getMethod().(ExtensionMethod).getExtensionReceiverParameterIndex())
   else result = ma.getQualifier()
 }
 
@@ -313,7 +314,8 @@ private Argument getVisualArgument(MethodAccess ma, int argPos) {
   if ma.getMethod() instanceof ExtensionMethod
   then
     result =
-      ma.getArgument(argPos + ma.getMethod().(ExtensionMethod).getExtensionParameterIndex() + 1)
+      ma.getArgument(argPos + ma.getMethod().(ExtensionMethod).getExtensionReceiverParameterIndex() +
+          1)
   else result = ma.getArgument(argPos)
 }
 
diff --git a/java/ql/test/kotlin/library-tests/methods/methods.ql b/java/ql/test/kotlin/library-tests/methods/methods.ql
index 7042cfd48cf..0f0b43f4e4b 100644
--- a/java/ql/test/kotlin/library-tests/methods/methods.ql
+++ b/java/ql/test/kotlin/library-tests/methods/methods.ql
@@ -29,7 +29,7 @@ query predicate extensionsMismatch(Method src, Method def) {
 
 query predicate extensionIndex(ExtensionMethod m, int i, Type t) {
   m.fromSource() and
-  m.getExtensionParameterIndex() = i and
+  m.getExtensionReceiverParameterIndex() = i and
   m.getExtendedType() = t and
   m.getParameter(i).getType() = t
 }

From 9fa840106fd9fda143e131782086e017669fc4d3 Mon Sep 17 00:00:00 2001
From: Tamas Vajk <tamasvajk@github.com>
Date: Mon, 11 Apr 2022 15:30:36 +0200
Subject: [PATCH 1199/1420] Extract annotation declarations

---
 .../src/main/kotlin/KotlinFileExtractor.kt    | 22 ++++++--
 .../annotation_classes/PrintAst.expected      | 55 +++++++++++++++++++
 .../annotation_classes/PrintAst.qlref         |  1 +
 .../annotation_classes/classes.expected       | 17 +++++-
 .../annotation_classes/classes.ql             |  4 ++
 .../library-tests/annotation_classes/def.kt   | 15 ++++-
 .../library-tests/annotation_classes/use.java | 11 +++-
 7 files changed, 117 insertions(+), 8 deletions(-)
 create mode 100644 java/ql/test/kotlin/library-tests/annotation_classes/PrintAst.expected
 create mode 100644 java/ql/test/kotlin/library-tests/annotation_classes/PrintAst.qlref

diff --git a/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt b/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt
index 10d1db8787a..e5648bf9965 100644
--- a/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt
+++ b/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt
@@ -470,6 +470,10 @@ open class KotlinFileExtractor(
                 if (c.isInterfaceLike) {
                     val interfaceId = id.cast<DbInterface>()
                     tw.writeInterfaces(interfaceId, cls, pkgId, interfaceId)
+
+                    if (kind == ClassKind.ANNOTATION_CLASS) {
+                        tw.writeIsAnnotType(interfaceId)
+                    }
                 } else {
                     val classId = id.cast<DbClass>()
                     tw.writeClasses(classId, cls, pkgId, classId)
@@ -495,10 +499,20 @@ open class KotlinFileExtractor(
 
                 c.typeParameters.mapIndexed { idx, param -> extractTypeParameter(param, idx, javaClass?.typeParameters?.getOrNull(idx)) }
                 if (extractDeclarations) {
-                    c.declarations.forEach { extractDeclaration(it, extractPrivateMembers = extractPrivateMembers, extractFunctionBodies = extractFunctionBodies) }
-                    if (extractStaticInitializer)
-                        extractStaticInitializer(c, { id })
-                    extractJvmStaticProxyMethods(c, id, extractPrivateMembers, extractFunctionBodies)
+                    if (kind == ClassKind.ANNOTATION_CLASS) {
+                        c.declarations
+                            .filterIsInstance<IrProperty>()
+                            .map {
+                                val getter = it.getter!!
+                                val label = extractFunction(getter, id, false, null, listOf())
+                                tw.writeIsAnnotElem(label!!.cast<DbMethod>())
+                            }
+                    } else {
+                        c.declarations.forEach { extractDeclaration(it, extractPrivateMembers = extractPrivateMembers, extractFunctionBodies = extractFunctionBodies) }
+                        if (extractStaticInitializer)
+                            extractStaticInitializer(c, { id })
+                        extractJvmStaticProxyMethods(c, id, extractPrivateMembers, extractFunctionBodies)
+                    }
                 }
                 if (c.isNonCompanionObject) {
                     // For `object MyObject { ... }`, the .class has an
diff --git a/java/ql/test/kotlin/library-tests/annotation_classes/PrintAst.expected b/java/ql/test/kotlin/library-tests/annotation_classes/PrintAst.expected
new file mode 100644
index 00000000000..321512a036f
--- /dev/null
+++ b/java/ql/test/kotlin/library-tests/annotation_classes/PrintAst.expected
@@ -0,0 +1,55 @@
+def.kt:
+#    0| [CompilationUnit] def
+#    0|   1: [Class] DefKt
+#   13|     1: [Method] fn
+#-----|       4: (Parameters)
+#   13|         0: [Parameter] a
+#   13|       5: [BlockStmt] { ... }
+#   14|         0: [ExprStmt] <Expr>;
+#   14|           0: [MethodAccess] println(...)
+#   14|             -1: [TypeAccess] ConsoleKt
+#   14|             0: [MethodAccess] abc(...)
+#   14|               -1: [VarAccess] a
+#    1|   2: [Interface] SomeAnnotation
+#-----|     -3: (Annotations)
+#    1|     1: [Method] abc
+#-----|       1: (Annotations)
+#    1|     2: [Method] y
+#    3|   3: [Interface] ReplaceWith
+#    3|     1: [Method] expression
+#    5|   4: [Interface] Deprecated
+#    6|     1: [Method] message
+#    7|     2: [Method] replaceWith
+#    9|   5: [Class] X
+#   11|     1: [Constructor] X
+#    9|       5: [BlockStmt] { ... }
+#    9|         0: [SuperConstructorInvocationStmt] super(...)
+#   11|         1: [BlockStmt] { ... }
+use.java:
+#    0| [CompilationUnit] use
+#    2|   1: [Class] use
+#-----|     -1: (Base Types)
+#    2|       0: [TypeAccess] SomeAnnotation
+#    4|     2: [Method] abc
+#-----|       1: (Annotations)
+#    3|         1: [Annotation] Override
+#    4|       3: [TypeAccess] int
+#    4|       5: [BlockStmt] { ... }
+#    4|         0: [ReturnStmt] return ...
+#    4|           0: [IntegerLiteral] 1
+#    6|     3: [Method] y
+#-----|       1: (Annotations)
+#    5|         1: [Annotation] Override
+#    6|       3: [TypeAccess] String
+#    6|       5: [BlockStmt] { ... }
+#    6|         0: [ReturnStmt] return ...
+#    6|           0: [StringLiteral] ""
+#    9|     4: [Method] annotationType
+#-----|       1: (Annotations)
+#    8|         1: [Annotation] Override
+#    9|       3: [TypeAccess] Class<? extends Annotation>
+#    9|         0: [WildcardTypeAccess] ? ...
+#    9|           0: [TypeAccess] Annotation
+#    9|       5: [BlockStmt] { ... }
+#   10|         0: [ReturnStmt] return ...
+#   10|           0: [NullLiteral] null
diff --git a/java/ql/test/kotlin/library-tests/annotation_classes/PrintAst.qlref b/java/ql/test/kotlin/library-tests/annotation_classes/PrintAst.qlref
new file mode 100644
index 00000000000..c7fd5faf239
--- /dev/null
+++ b/java/ql/test/kotlin/library-tests/annotation_classes/PrintAst.qlref
@@ -0,0 +1 @@
+semmle/code/java/PrintAst.ql
\ No newline at end of file
diff --git a/java/ql/test/kotlin/library-tests/annotation_classes/classes.expected b/java/ql/test/kotlin/library-tests/annotation_classes/classes.expected
index 240c4bb055b..e31fd25502f 100644
--- a/java/ql/test/kotlin/library-tests/annotation_classes/classes.expected
+++ b/java/ql/test/kotlin/library-tests/annotation_classes/classes.expected
@@ -1,2 +1,15 @@
-| def.kt:2:1:2:31 | SomeAnnotation | Interface |
-| use.java:2:23:2:25 | use | Class |
+annotation
+| def.kt:1:1:1:87 | SomeAnnotation | def.kt:1:53:1:66 | abc |
+| def.kt:1:1:1:87 | SomeAnnotation | def.kt:1:69:1:86 | y |
+| def.kt:3:1:3:52 | ReplaceWith | def.kt:3:30:3:51 | expression |
+| def.kt:5:1:7:51 | Deprecated | def.kt:6:5:6:23 | message |
+| def.kt:5:1:7:51 | Deprecated | def.kt:7:5:7:50 | replaceWith |
+| file:///modules/java.base/java/lang/annotation/Retention.class:0:0:0:0 | Retention | file:///modules/java.base/java/lang/annotation/Retention.class:0:0:0:0 | value |
+| file:///modules/java.base/java/lang/annotation/Target.class:0:0:0:0 | Target | file:///modules/java.base/java/lang/annotation/Target.class:0:0:0:0 | value |
+#select
+| def.kt:0:0:0:0 | DefKt | Class |
+| def.kt:1:1:1:87 | SomeAnnotation | Interface |
+| def.kt:3:1:3:52 | ReplaceWith | Interface |
+| def.kt:5:1:7:51 | Deprecated | Interface |
+| def.kt:9:1:11:7 | X | Class |
+| use.java:2:14:2:16 | use | Class |
diff --git a/java/ql/test/kotlin/library-tests/annotation_classes/classes.ql b/java/ql/test/kotlin/library-tests/annotation_classes/classes.ql
index 652ab21520f..44582d74e53 100644
--- a/java/ql/test/kotlin/library-tests/annotation_classes/classes.ql
+++ b/java/ql/test/kotlin/library-tests/annotation_classes/classes.ql
@@ -3,3 +3,7 @@ import java
 from ClassOrInterface x
 where x.fromSource()
 select x, x.getPrimaryQlClasses()
+
+query predicate annotation(AnnotationType at, AnnotationElement ae) {
+  at.getAnAnnotationElement() = ae
+}
diff --git a/java/ql/test/kotlin/library-tests/annotation_classes/def.kt b/java/ql/test/kotlin/library-tests/annotation_classes/def.kt
index 556973c4728..132fceb4244 100644
--- a/java/ql/test/kotlin/library-tests/annotation_classes/def.kt
+++ b/java/ql/test/kotlin/library-tests/annotation_classes/def.kt
@@ -1,3 +1,16 @@
+annotation class SomeAnnotation(@get:JvmName("abc") val x: Int = 5, val y: String = "")
 
-annotation class SomeAnnotation
+annotation class ReplaceWith(val expression: String)
+
+annotation class Deprecated(
+    val message: String,
+    val replaceWith: ReplaceWith = ReplaceWith(""))
+
+@Deprecated("This class is deprecated", ReplaceWith("Y"))
+@SomeAnnotation(y = "a")
+class X
+
+fun fn(a: SomeAnnotation) {
+    println(a.x)
+}
 
diff --git a/java/ql/test/kotlin/library-tests/annotation_classes/use.java b/java/ql/test/kotlin/library-tests/annotation_classes/use.java
index b848298e1ff..9b9191b849f 100644
--- a/java/ql/test/kotlin/library-tests/annotation_classes/use.java
+++ b/java/ql/test/kotlin/library-tests/annotation_classes/use.java
@@ -1,3 +1,12 @@
 
-public abstract class use implements SomeAnnotation {}
+public class use implements SomeAnnotation {
+    @Override
+    public int abc() { return 1; }
+    @Override
+    public String y() { return ""; }
 
+    @Override
+    public Class<? extends java.lang.annotation.Annotation> annotationType() {
+        return null;
+    }
+}

From 7b075c21903aa8dfa0a23b6898c77ec9a9f88266 Mon Sep 17 00:00:00 2001
From: Tamas Vajk <tamasvajk@github.com>
Date: Tue, 12 Apr 2022 08:43:58 +0200
Subject: [PATCH 1200/1420] WIP: extract annotations on classes, with constant
 values

---
 .../src/main/kotlin/KotlinFileExtractor.kt    | 209 ++++++++++++------
 java/ql/lib/semmle/code/java/Annotation.qll   |   2 +-
 .../lib/semmle/code/java/DependencyCounts.qll |   2 +-
 .../CONSISTENCY/children.expected             |   1 +
 .../annotation_classes/PrintAst.expected      |   6 +
 .../annotation_classes/classes.expected       |  11 +-
 .../annotation_classes/classes.ql             |  13 +-
 7 files changed, 165 insertions(+), 79 deletions(-)
 create mode 100644 java/ql/test/kotlin/library-tests/annotation_classes/CONSISTENCY/children.expected

diff --git a/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt b/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt
index e5648bf9965..abed6dc7b7a 100644
--- a/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt
+++ b/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt
@@ -457,7 +457,54 @@ open class KotlinFileExtractor(
         extractDeclInitializers(c.declarations, false) { Pair(blockId, obinitId) }
     }
 
-    val jvmStaticFqName = FqName("kotlin.jvm.JvmStatic")
+    fun extractAnnotations(c: IrClass): Int {
+        var count = 0
+        for (constructorCall: IrConstructorCall in c.annotations) {
+
+            // todo: do not extract JvmName, what else?
+
+            val t = useType(constructorCall.type)
+            val annotated = useClassSource(c)
+
+            val id = tw.getLabelFor<DbDeclannotation>("@\"annotation;{$annotated};{${t.javaResult.id}}\"")
+            tw.writeExprs_declannotation(id, t.javaResult.id, annotated, count++)
+            tw.writeExprsKotlinType(id, t.kotlinResult.id)
+
+            val locId = tw.getLocation(constructorCall)
+            tw.writeHasLocation(id, locId)
+
+            for (i in 0 until constructorCall.valueArgumentsCount) {
+                val param = constructorCall.symbol.owner.valueParameters[i]
+                val prop = constructorCall.symbol.owner.parentAsClass.declarations.filterIsInstance<IrProperty>().firstOrNull { it.name == param.name }
+                if (prop == null) {
+                    continue
+                }
+
+                val v = constructorCall.getValueArgument(i) ?: param.defaultValue?.expression
+
+                when (v) {
+                    is IrConst<*> -> {
+                        val exprId = extractConstant(v, id, i)
+                        if (exprId != null) {
+
+                            tw.writeAnnotValue(id, useFunction<DbMethod>(prop.getter!!), exprId)
+                        }
+                    }
+                    /*
+                    Integer types;
+                    Enum types;
+                    String type;
+                    Classes;
+                    Other annotation types;
+                    Arrays of any type listed above.
+                     */
+
+                }
+            }
+        }
+
+        return count
+    }
 
     fun extractClassSource(c: IrClass, extractDeclarations: Boolean, extractStaticInitializer: Boolean, extractPrivateMembers: Boolean, extractFunctionBodies: Boolean): Label<out DbClassorinterface> {
         with("class source", c) {
@@ -540,6 +587,8 @@ open class KotlinFileExtractor(
 
                 linesOfCode?.linesOfCodeInDeclaration(c, id)
 
+                extractAnnotations(c)
+
                 if (extractFunctionBodies && !c.isAnonymousObject && !c.isLocal)
                     externalClassExtractor.writeStubTrapFile(c)
 
@@ -548,6 +597,8 @@ open class KotlinFileExtractor(
         }
     }
 
+    val jvmStaticFqName = FqName("kotlin.jvm.JvmStatic")
+
     private fun extractJvmStaticProxyMethods(c: IrClass, classId: Label<out DbClassorinterface>, extractPrivateMembers: Boolean, extractFunctionBodies: Boolean) {
 
         // Add synthetic forwarders for any JvmStatic methods or properties:
@@ -3457,13 +3508,6 @@ open class KotlinFileExtractor(
             else -> c.toString()
         }
 
-    // Render a string literal as it might occur in Kotlin source. Note this is a reasonable guess; the real source
-    // could use other escape sequences to describe the same String. Importantly, this is the same guess the Java
-    // extractor makes regarding string literals occurring within annotations, which we need to coincide with to ensure
-    // database consistency.
-    private fun toQuotedLiteral(s: String) =
-        s.toCharArray().joinToString(separator = "", prefix = "\"", postfix = "\"") { c -> escapeCharForQuotedLiteral(c) }
-
     private fun extractExpression(e: IrExpression, callable: Label<out DbCallable>, parent: StmtExprParent) {
         with("expression", e) {
             when(e) {
@@ -3614,71 +3658,10 @@ open class KotlinFileExtractor(
                 }
                 is IrConst<*> -> {
                     val exprParent = parent.expr(e, callable)
-                    val v = e.value
-                    when {
-                        v is Number && (v is Int || v is Short || v is Byte) -> {
-                            extractConstantInteger(v, tw.getLocation(e), exprParent.parent, exprParent.idx, callable, exprParent.enclosingStmt)
-                        }
-                        v is Long -> {
-                            val id = tw.getFreshIdLabel<DbLongliteral>()
-                            val type = useType(e.type)
-                            val locId = tw.getLocation(e)
-                            tw.writeExprs_longliteral(id, type.javaResult.id, exprParent.parent, exprParent.idx)
-                            tw.writeExprsKotlinType(id, type.kotlinResult.id)
-                            extractExprContext(id, locId, callable, exprParent.enclosingStmt)
-                            tw.writeNamestrings(v.toString(), v.toString(), id)
-                        }
-                        v is Float -> {
-                            val id = tw.getFreshIdLabel<DbFloatingpointliteral>()
-                            val type = useType(e.type)
-                            val locId = tw.getLocation(e)
-                            tw.writeExprs_floatingpointliteral(id, type.javaResult.id, exprParent.parent, exprParent.idx)
-                            tw.writeExprsKotlinType(id, type.kotlinResult.id)
-                            extractExprContext(id, locId, callable, exprParent.enclosingStmt)
-                            tw.writeNamestrings(v.toString(), v.toString(), id)
-                        }
-                        v is Double -> {
-                            val id = tw.getFreshIdLabel<DbDoubleliteral>()
-                            val type = useType(e.type)
-                            val locId = tw.getLocation(e)
-                            tw.writeExprs_doubleliteral(id, type.javaResult.id, exprParent.parent, exprParent.idx)
-                            tw.writeExprsKotlinType(id, type.kotlinResult.id)
-                            extractExprContext(id, locId, callable, exprParent.enclosingStmt)
-                            tw.writeNamestrings(v.toString(), v.toString(), id)
-                        }
-                        v is Boolean -> {
-                            val id = tw.getFreshIdLabel<DbBooleanliteral>()
-                            val type = useType(e.type)
-                            val locId = tw.getLocation(e)
-                            tw.writeExprs_booleanliteral(id, type.javaResult.id, exprParent.parent, exprParent.idx)
-                            tw.writeExprsKotlinType(id, type.kotlinResult.id)
-                            extractExprContext(id, locId, callable, exprParent.enclosingStmt)
-                            tw.writeNamestrings(v.toString(), v.toString(), id)
-                        }
-                        v is Char -> {
-                            val id = tw.getFreshIdLabel<DbCharacterliteral>()
-                            val type = useType(e.type)
-                            val locId = tw.getLocation(e)
-                            tw.writeExprs_characterliteral(id, type.javaResult.id, exprParent.parent, exprParent.idx)
-                            tw.writeExprsKotlinType(id, type.kotlinResult.id)
-                            extractExprContext(id, locId, callable, exprParent.enclosingStmt)
-                            tw.writeNamestrings(v.toString(), v.toString(), id)
-                        }
-                        v is String -> {
-                            val id = tw.getFreshIdLabel<DbStringliteral>()
-                            val type = useType(e.type)
-                            val locId = tw.getLocation(e)
-                            tw.writeExprs_stringliteral(id, type.javaResult.id, exprParent.parent, exprParent.idx)
-                            tw.writeExprsKotlinType(id, type.kotlinResult.id)
-                            extractExprContext(id, locId, callable, exprParent.enclosingStmt)
-                            tw.writeNamestrings(toQuotedLiteral(v.toString()), v.toString(), id)
-                        }
-                        v == null -> {
-                            extractNull(e.type, tw.getLocation(e), exprParent.parent, exprParent.idx, callable, exprParent.enclosingStmt)
-                        }
-                        else -> {
-                            logger.errorElement("Unrecognised IrConst: " + v.javaClass, e)
-                        }
+                    val id = extractConstant(e, exprParent.parent, exprParent.idx)
+                    if (id != null) {
+                        tw.writeCallableEnclosingExpr(id, callable)
+                        tw.writeStatementEnclosingExpr(id, exprParent.enclosingStmt)
                     }
                 }
                 is IrGetValue -> {
@@ -4170,6 +4153,86 @@ open class KotlinFileExtractor(
         extractExpressionExpr(loop.condition, callable, id, 0, id)
     }
 
+    // Render a string literal as it might occur in Kotlin source. Note this is a reasonable guess; the real source
+    // could use other escape sequences to describe the same String. Importantly, this is the same guess the Java
+    // extractor makes regarding string literals occurring within annotations, which we need to coincide with to ensure
+    // database consistency.
+    private fun toQuotedLiteral(s: String) =
+        s.toCharArray().joinToString(separator = "", prefix = "\"", postfix = "\"") { c -> escapeCharForQuotedLiteral(c) }
+
+    private fun extractConstant(
+        e: IrConst<*>,
+        parent: Label<out DbExprparent>,
+        idx: Int
+    ): Label<out DbExpr>? {
+        val v = e.value
+        when {
+            v is Number && (v is Int || v is Short || v is Byte) -> {
+                extractConstantInteger(v, tw.getLocation(e), exprParent.parent, exprParent.idx, callable, exprParent.enclosingStmt)
+            }
+            v is Long -> {
+                val id = tw.getFreshIdLabel<DbLongliteral>()
+                val type = useType(e.type)
+                val locId = tw.getLocation(e)
+                tw.writeExprs_longliteral(id, type.javaResult.id, exprParent.parent, exprParent.idx)
+                tw.writeExprsKotlinType(id, type.kotlinResult.id)
+                extractExprContext(id, locId, callable, exprParent.enclosingStmt)
+                tw.writeNamestrings(v.toString(), v.toString(), id)
+            }
+            v is Float -> {
+                val id = tw.getFreshIdLabel<DbFloatingpointliteral>()
+                val type = useType(e.type)
+                val locId = tw.getLocation(e)
+                tw.writeExprs_floatingpointliteral(id, type.javaResult.id, exprParent.parent, exprParent.idx)
+                tw.writeExprsKotlinType(id, type.kotlinResult.id)
+                extractExprContext(id, locId, callable, exprParent.enclosingStmt)
+                tw.writeNamestrings(v.toString(), v.toString(), id)
+            }
+            v is Double -> {
+                val id = tw.getFreshIdLabel<DbDoubleliteral>()
+                val type = useType(e.type)
+                val locId = tw.getLocation(e)
+                tw.writeExprs_doubleliteral(id, type.javaResult.id, exprParent.parent, exprParent.idx)
+                tw.writeExprsKotlinType(id, type.kotlinResult.id)
+                extractExprContext(id, locId, callable, exprParent.enclosingStmt)
+                tw.writeNamestrings(v.toString(), v.toString(), id)
+            }
+            v is Boolean -> {
+                val id = tw.getFreshIdLabel<DbBooleanliteral>()
+                val type = useType(e.type)
+                val locId = tw.getLocation(e)
+                tw.writeExprs_booleanliteral(id, type.javaResult.id, exprParent.parent, exprParent.idx)
+                tw.writeExprsKotlinType(id, type.kotlinResult.id)
+                extractExprContext(id, locId, callable, exprParent.enclosingStmt)
+                tw.writeNamestrings(v.toString(), v.toString(), id)
+            }
+            v is Char -> {
+                val id = tw.getFreshIdLabel<DbCharacterliteral>()
+                val type = useType(e.type)
+                val locId = tw.getLocation(e)
+                tw.writeExprs_characterliteral(id, type.javaResult.id, exprParent.parent, exprParent.idx)
+                tw.writeExprsKotlinType(id, type.kotlinResult.id)
+                extractExprContext(id, locId, callable, exprParent.enclosingStmt)
+                tw.writeNamestrings(v.toString(), v.toString(), id)
+            }
+            v is String -> {
+                val id = tw.getFreshIdLabel<DbStringliteral>()
+                val type = useType(e.type)
+                val locId = tw.getLocation(e)
+                tw.writeExprs_stringliteral(id, type.javaResult.id, exprParent.parent, exprParent.idx)
+                tw.writeExprsKotlinType(id, type.kotlinResult.id)
+                extractExprContext(id, locId, callable, exprParent.enclosingStmt)
+                tw.writeNamestrings(toQuotedLiteral(v.toString()), v.toString(), id)
+            }
+            v == null -> {
+                extractNull(e.type, tw.getLocation(e), exprParent.parent, exprParent.idx, callable, exprParent.enclosingStmt)
+            }
+            else -> {
+                logger.errorElement("Unrecognised IrConst: " + v.javaClass, e)
+            }
+        }
+    }
+
     private fun IrValueParameter.isExtensionReceiver(): Boolean {
         val parentFun = parent as? IrFunction ?: return false
         return parentFun.extensionReceiverParameter == this
diff --git a/java/ql/lib/semmle/code/java/Annotation.qll b/java/ql/lib/semmle/code/java/Annotation.qll
index 28f994053a2..dd6762776c6 100644
--- a/java/ql/lib/semmle/code/java/Annotation.qll
+++ b/java/ql/lib/semmle/code/java/Annotation.qll
@@ -249,7 +249,7 @@ private predicate filteredAnnotValue(Annotation a, Method m, Expr val) {
 
 private predicate sourceAnnotValue(Annotation a, Method m, Expr val) {
   annotValue(a, m, val) and
-  val.getFile().getExtension() = "java"
+  val.getFile().isSourceFile()
 }
 
 /** An abstract representation of language elements that can be annotated. */
diff --git a/java/ql/lib/semmle/code/java/DependencyCounts.qll b/java/ql/lib/semmle/code/java/DependencyCounts.qll
index 1010be48055..b34e774f1e1 100644
--- a/java/ql/lib/semmle/code/java/DependencyCounts.qll
+++ b/java/ql/lib/semmle/code/java/DependencyCounts.qll
@@ -91,7 +91,7 @@ predicate numDepends(RefType t, RefType dep, int value) {
         elem = a and usesType(a.getType(), dep)
         or
         elem = [a.getValue(_), a.getAnArrayValue(_)] and
-        elem.getFile().getExtension() = "java" and
+        elem.getFile().isSourceFile() and
         usesType(elem.(Expr).getType(), dep)
       )
       or
diff --git a/java/ql/test/kotlin/library-tests/annotation_classes/CONSISTENCY/children.expected b/java/ql/test/kotlin/library-tests/annotation_classes/CONSISTENCY/children.expected
new file mode 100644
index 00000000000..28e24b18b44
--- /dev/null
+++ b/java/ql/test/kotlin/library-tests/annotation_classes/CONSISTENCY/children.expected
@@ -0,0 +1 @@
+| file:///modules/java.base/java/util/Random.class:0:0:0:0 | RandomGeneratorProperties | Annotation | 1 | gap | 0, 2, 3, 4, 5 |
diff --git a/java/ql/test/kotlin/library-tests/annotation_classes/PrintAst.expected b/java/ql/test/kotlin/library-tests/annotation_classes/PrintAst.expected
index 321512a036f..2d34788a76e 100644
--- a/java/ql/test/kotlin/library-tests/annotation_classes/PrintAst.expected
+++ b/java/ql/test/kotlin/library-tests/annotation_classes/PrintAst.expected
@@ -21,6 +21,12 @@ def.kt:
 #    6|     1: [Method] message
 #    7|     2: [Method] replaceWith
 #    9|   5: [Class] X
+#-----|     -3: (Annotations)
+#    9|       1: [Annotation] Deprecated
+#    0|         1: [StringLiteral] This class is deprecated
+#   10|       2: [Annotation] SomeAnnotation
+#    0|         1: [IntegerLiteral] 5
+#    0|         1: [StringLiteral] a
 #   11|     1: [Constructor] X
 #    9|       5: [BlockStmt] { ... }
 #    9|         0: [SuperConstructorInvocationStmt] super(...)
diff --git a/java/ql/test/kotlin/library-tests/annotation_classes/classes.expected b/java/ql/test/kotlin/library-tests/annotation_classes/classes.expected
index e31fd25502f..824dd2d6d21 100644
--- a/java/ql/test/kotlin/library-tests/annotation_classes/classes.expected
+++ b/java/ql/test/kotlin/library-tests/annotation_classes/classes.expected
@@ -1,11 +1,16 @@
-annotation
+annotationDeclarations
 | def.kt:1:1:1:87 | SomeAnnotation | def.kt:1:53:1:66 | abc |
 | def.kt:1:1:1:87 | SomeAnnotation | def.kt:1:69:1:86 | y |
 | def.kt:3:1:3:52 | ReplaceWith | def.kt:3:30:3:51 | expression |
 | def.kt:5:1:7:51 | Deprecated | def.kt:6:5:6:23 | message |
 | def.kt:5:1:7:51 | Deprecated | def.kt:7:5:7:50 | replaceWith |
-| file:///modules/java.base/java/lang/annotation/Retention.class:0:0:0:0 | Retention | file:///modules/java.base/java/lang/annotation/Retention.class:0:0:0:0 | value |
-| file:///modules/java.base/java/lang/annotation/Target.class:0:0:0:0 | Target | file:///modules/java.base/java/lang/annotation/Target.class:0:0:0:0 | value |
+annotations
+| def.kt:9:1:9:57 | Deprecated | def.kt:9:1:11:7 | X | def.kt:5:1:7:51 | Deprecated |
+| def.kt:10:1:10:24 | SomeAnnotation | def.kt:9:1:11:7 | X | def.kt:1:1:1:87 | SomeAnnotation |
+annotationValues
+| def.kt:9:1:9:57 | Deprecated | def.kt:0:0:0:0 | This class is deprecated |
+| def.kt:10:1:10:24 | SomeAnnotation | def.kt:0:0:0:0 | 5 |
+| def.kt:10:1:10:24 | SomeAnnotation | def.kt:0:0:0:0 | a |
 #select
 | def.kt:0:0:0:0 | DefKt | Class |
 | def.kt:1:1:1:87 | SomeAnnotation | Interface |
diff --git a/java/ql/test/kotlin/library-tests/annotation_classes/classes.ql b/java/ql/test/kotlin/library-tests/annotation_classes/classes.ql
index 44582d74e53..fc3db6f0c02 100644
--- a/java/ql/test/kotlin/library-tests/annotation_classes/classes.ql
+++ b/java/ql/test/kotlin/library-tests/annotation_classes/classes.ql
@@ -4,6 +4,17 @@ from ClassOrInterface x
 where x.fromSource()
 select x, x.getPrimaryQlClasses()
 
-query predicate annotation(AnnotationType at, AnnotationElement ae) {
+query predicate annotationDeclarations(AnnotationType at, AnnotationElement ae) {
+  at.fromSource() and
   at.getAnAnnotationElement() = ae
 }
+
+query predicate annotations(Annotation a, Element e, AnnotationType at) {
+  at.fromSource() and
+  a.getAnnotatedElement() = e and
+  at = a.getType()
+}
+
+query predicate annotationValues(Annotation a, Expr v) {
+  a.getAValue() = v and v.getFile().isSourceFile()
+}

From 3b09cb2224fba186f8b5ca8731b9d979121ebbcb Mon Sep 17 00:00:00 2001
From: Tamas Vajk <tamasvajk@github.com>
Date: Tue, 12 Apr 2022 16:03:21 +0200
Subject: [PATCH 1201/1420] WIP: Extract annotation values (tests are missing)

---
 .../src/main/kotlin/KotlinFileExtractor.kt    | 210 ++++++++++++------
 java/ql/consistency-queries/cfgDeadEnds.ql    |   2 +
 .../CONSISTENCY/children.expected             |   1 -
 .../annotation_classes/PrintAst.expected      |  55 +++--
 .../annotation_classes/classes.expected       |  12 +-
 .../library-tests/annotation_classes/use.java |   4 +
 6 files changed, 191 insertions(+), 93 deletions(-)
 delete mode 100644 java/ql/test/kotlin/library-tests/annotation_classes/CONSISTENCY/children.expected

diff --git a/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt b/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt
index abed6dc7b7a..e366eace280 100644
--- a/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt
+++ b/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt
@@ -457,53 +457,93 @@ open class KotlinFileExtractor(
         extractDeclInitializers(c.declarations, false) { Pair(blockId, obinitId) }
     }
 
-    fun extractAnnotations(c: IrClass): Int {
-        var count = 0
-        for (constructorCall: IrConstructorCall in c.annotations) {
+    private fun extractAnnotations(c: IrClass) {
+        for ((idx, constructorCall: IrConstructorCall) in c.annotations.withIndex()) {
+            extractAnnotation(constructorCall, useClassSource(c), idx)
+        }
+    }
 
-            // todo: do not extract JvmName, what else?
+    private fun extractAnnotation(
+        constructorCall: IrConstructorCall,
+        parent: Label<out DbExprparent>,
+        idx: Int
+    ): Label<out DbExpr> {
+        val t = useType(constructorCall.type)
 
-            val t = useType(constructorCall.type)
-            val annotated = useClassSource(c)
+        val id = tw.getLabelFor<DbDeclannotation>("@\"annotation;{$parent};{${t.javaResult.id}}\"")
+        tw.writeExprs_declannotation(id, t.javaResult.id, parent, idx)
+        tw.writeExprsKotlinType(id, t.kotlinResult.id)
 
-            val id = tw.getLabelFor<DbDeclannotation>("@\"annotation;{$annotated};{${t.javaResult.id}}\"")
-            tw.writeExprs_declannotation(id, t.javaResult.id, annotated, count++)
-            tw.writeExprsKotlinType(id, t.kotlinResult.id)
+        val locId = tw.getLocation(constructorCall)
+        tw.writeHasLocation(id, locId)
 
-            val locId = tw.getLocation(constructorCall)
-            tw.writeHasLocation(id, locId)
-
-            for (i in 0 until constructorCall.valueArgumentsCount) {
-                val param = constructorCall.symbol.owner.valueParameters[i]
-                val prop = constructorCall.symbol.owner.parentAsClass.declarations.filterIsInstance<IrProperty>().firstOrNull { it.name == param.name }
-                if (prop == null) {
-                    continue
-                }
-
-                val v = constructorCall.getValueArgument(i) ?: param.defaultValue?.expression
-
-                when (v) {
-                    is IrConst<*> -> {
-                        val exprId = extractConstant(v, id, i)
-                        if (exprId != null) {
-
-                            tw.writeAnnotValue(id, useFunction<DbMethod>(prop.getter!!), exprId)
-                        }
-                    }
-                    /*
-                    Integer types;
-                    Enum types;
-                    String type;
-                    Classes;
-                    Other annotation types;
-                    Arrays of any type listed above.
-                     */
-
-                }
+        for (i in 0 until constructorCall.valueArgumentsCount) {
+            val param = constructorCall.symbol.owner.valueParameters[i]
+            val prop = constructorCall.symbol.owner.parentAsClass.declarations
+                .filterIsInstance<IrProperty>()
+                .first { it.name == param.name }
+            val v = constructorCall.getValueArgument(i) ?: param.defaultValue?.expression
+            val exprId = extractAnnotationValueExpression(v, id, i)
+            if (exprId != null) {
+                tw.writeAnnotValue(id, useFunction(prop.getter!!), exprId)
             }
         }
+        return id
+    }
 
-        return count
+    private fun extractAnnotationValueExpression(
+        v: IrExpression?,
+        parent: Label<out DbExprparent>,
+        idx: Int): Label<out DbExpr>? {
+
+        return when (v) {
+            is IrConst<*> -> {
+                extractConstant(v, parent, idx)
+            }
+            is IrGetEnumValue -> {
+                extractEnumValue(v, parent, idx, null, null)
+            }
+            is IrClassReference -> {
+                extractClassReference(v, parent, idx, null, null)
+            }
+            is IrConstructorCall -> {
+                extractAnnotation(v, parent, idx)
+            }
+            is IrVararg -> {
+                val eId = tw.getFreshIdLabel<DbArrayinit>()
+                val type = useType(v.type)
+                tw.writeExprs_arrayinit(eId, type.javaResult.id, parent, idx)
+                tw.writeExprsKotlinType(eId, type.kotlinResult.id)
+                tw.writeHasLocation(eId, tw.getLocation(v))
+
+                v.elements.forEachIndexed { index, irVarargElement -> run {
+                    val argExpr = when(irVarargElement) {
+                        is IrExpression -> irVarargElement
+                        is IrSpreadElement -> irVarargElement.expression
+                        else -> {
+                            logger.errorElement("Unrecognised IrVarargElement: " + irVarargElement.javaClass, irVarargElement)
+                            null
+                        }
+                    }
+                    extractAnnotationValueExpression(argExpr, eId, index)
+                } }
+
+                eId
+            }
+            // is IrErrorExpression
+            // null
+            else -> {
+                val eId = tw.getFreshIdLabel<DbErrorexpr>()
+                val type = useType(v?.type ?: pluginContext.irBuiltIns.unitType)
+                tw.writeExprs_errorexpr(eId, type.javaResult.id, parent, idx)
+                tw.writeExprsKotlinType(eId, type.kotlinResult.id)
+
+                if (v != null) {
+                    tw.writeHasLocation(eId, tw.getLocation(v))
+                }
+                eId
+            }
+        }
     }
 
     fun extractClassSource(c: IrClass, extractDeclarations: Boolean, extractStaticInitializer: Boolean, extractPrivateMembers: Boolean, extractFunctionBodies: Boolean): Label<out DbClassorinterface> {
@@ -2160,7 +2200,7 @@ open class KotlinFileExtractor(
         extractValueArguments(argParent, idxOffset)
     }
 
-    private fun extractStaticTypeAccessQualifierUnchecked(parent: IrDeclarationParent, parentExpr: Label<out DbExprparent>, locId: Label<DbLocation>, enclosingCallable: Label<out DbCallable>, enclosingStmt: Label<out DbStmt>) {
+    private fun extractStaticTypeAccessQualifierUnchecked(parent: IrDeclarationParent, parentExpr: Label<out DbExprparent>, locId: Label<DbLocation>, enclosingCallable: Label<out DbCallable>?, enclosingStmt: Label<out DbStmt>?) {
         if (parent is IrClass) {
             extractTypeAccessRecursive(parent.toRawType(), locId, parentExpr, -1, enclosingCallable, enclosingStmt)
         } else if (parent is IrFile) {
@@ -2170,7 +2210,7 @@ open class KotlinFileExtractor(
         }
     }
 
-    private fun extractStaticTypeAccessQualifier(target: IrDeclaration, parentExpr: Label<out DbExprparent>, locId: Label<DbLocation>, enclosingCallable: Label<out DbCallable>, enclosingStmt: Label<out DbStmt>) {
+    private fun extractStaticTypeAccessQualifier(target: IrDeclaration, parentExpr: Label<out DbExprparent>, locId: Label<DbLocation>, enclosingCallable: Label<out DbCallable>?, enclosingStmt: Label<out DbStmt>?) {
         if (target.shouldExtractAsStatic) {
             extractStaticTypeAccessQualifierUnchecked(target.parent, parentExpr, locId, enclosingCallable, enclosingStmt)
         }
@@ -3691,19 +3731,7 @@ open class KotlinFileExtractor(
                 }
                 is IrGetEnumValue -> {
                     val exprParent = parent.expr(e, callable)
-                    val id = tw.getFreshIdLabel<DbVaraccess>()
-                    val type = useType(e.type)
-                    val locId = tw.getLocation(e)
-                    tw.writeExprs_varaccess(id, type.javaResult.id, exprParent.parent, exprParent.idx)
-                    tw.writeExprsKotlinType(id, type.kotlinResult.id)
-                    extractExprContext(id, locId, callable, exprParent.enclosingStmt)
-
-                    val owner = getBoundSymbolOwner(e.symbol, e) ?: return
-
-                    val vId = useEnumEntry(owner)
-                    tw.writeVariableBinding(id, vId)
-
-                    extractStaticTypeAccessQualifier(owner, id, locId, callable, exprParent.enclosingStmt)
+                    val id = extractEnumValue(e, exprParent.parent, exprParent.idx, callable, exprParent.enclosingStmt)
                 }
                 is IrSetValue,
                 is IrSetField -> {
@@ -3947,14 +3975,7 @@ open class KotlinFileExtractor(
                 }
                 is IrClassReference -> {
                     val exprParent = parent.expr(e, callable)
-                    val id = tw.getFreshIdLabel<DbTypeliteral>()
-                    val locId = tw.getLocation(e)
-                    val type = useType(e.type)
-                    tw.writeExprs_typeliteral(id, type.javaResult.id, exprParent.parent, exprParent.idx)
-                    tw.writeExprsKotlinType(id, type.kotlinResult.id)
-                    extractExprContext(id, locId, callable, exprParent.enclosingStmt)
-
-                    extractTypeAccessRecursive(e.classType, locId, id, 0, callable, exprParent.enclosingStmt)
+                    extractClassReference(e, exprParent.parent, exprParent.idx, callable, exprParent.enclosingStmt)
                 }
                 is IrPropertyReference -> {
                     extractPropertyReference("property reference", e, e.getter, e.setter, e.field, parent, callable)
@@ -4153,6 +4174,53 @@ open class KotlinFileExtractor(
         extractExpressionExpr(loop.condition, callable, id, 0, id)
     }
 
+    private fun extractClassReference(
+        e: IrClassReference,
+        parent: Label<out DbExprparent>,
+        idx: Int,
+        enclosingCallable: Label<out DbCallable>?,
+        enclosingStmt: Label<out DbStmt>?
+    ): Label<out DbExpr> {
+        val id = tw.getFreshIdLabel<DbTypeliteral>()
+        val locId = tw.getLocation(e)
+        val type = useType(e.type)
+        tw.writeExprs_typeliteral(id, type.javaResult.id, parent, idx)
+        tw.writeExprsKotlinType(id, type.kotlinResult.id)
+        tw.writeHasLocation(id, locId)
+
+        enclosingCallable?.let { tw.writeCallableEnclosingExpr(id, it) }
+        enclosingStmt?.let { tw.writeStatementEnclosingExpr(id, it) }
+
+        extractTypeAccessRecursive(e.classType, locId, id, 0, enclosingCallable, enclosingStmt)
+        return id
+    }
+
+    private fun extractEnumValue(
+        e: IrGetEnumValue,
+        parent: Label<out DbExprparent>,
+        idx: Int,
+        enclosingCallable: Label<out DbCallable>?,
+        enclosingStmt: Label<out DbStmt>?
+    ): Label<out DbExpr> {
+        val id = tw.getFreshIdLabel<DbVaraccess>()
+        val type = useType(e.type)
+        val locId = tw.getLocation(e)
+        tw.writeExprs_varaccess(id, type.javaResult.id, parent, idx)
+        tw.writeExprsKotlinType(id, type.kotlinResult.id)
+        tw.writeHasLocation(id, locId)
+
+        enclosingCallable?.let { tw.writeCallableEnclosingExpr(id, it) }
+        enclosingStmt?.let { tw.writeStatementEnclosingExpr(id, it) }
+
+        val owner = getBoundSymbolOwner(e.symbol, e) ?: return id
+
+        val vId = useEnumEntry(owner)
+        tw.writeVariableBinding(id, vId)
+
+        extractStaticTypeAccessQualifier(owner, id, locId, enclosingCallable, enclosingStmt)
+        return id
+    }
+
     // Render a string literal as it might occur in Kotlin source. Note this is a reasonable guess; the real source
     // could use other escape sequences to describe the same String. Importantly, this is the same guess the Java
     // extractor makes regarding string literals occurring within annotations, which we need to coincide with to ensure
@@ -5091,10 +5159,14 @@ open class KotlinFileExtractor(
     /**
      * Extracts a single type access expression with enclosing callable and statement.
      */
-    private fun extractTypeAccess(type: TypeResults, location: Label<DbLocation>, parent: Label<out DbExprparent>, idx: Int, enclosingCallable: Label<out DbCallable>, enclosingStmt: Label<out DbStmt>): Label<out DbExpr> {
+    private fun extractTypeAccess(type: TypeResults, location: Label<DbLocation>, parent: Label<out DbExprparent>, idx: Int, enclosingCallable: Label<out DbCallable>?, enclosingStmt: Label<out DbStmt>?): Label<out DbExpr> {
         val id = extractTypeAccess(type, location, parent, idx)
-        tw.writeCallableEnclosingExpr(id, enclosingCallable)
-        tw.writeStatementEnclosingExpr(id, enclosingStmt)
+        if (enclosingCallable != null) {
+            tw.writeCallableEnclosingExpr(id, enclosingCallable)
+        }
+        if (enclosingStmt != null) {
+            tw.writeStatementEnclosingExpr(id, enclosingStmt)
+        }
         return id
     }
 
@@ -5136,7 +5208,7 @@ open class KotlinFileExtractor(
     /**
      * Extracts a type access expression and its child type access expressions in case of a generic type. Nested generics are also handled.
      */
-    private fun extractTypeAccessRecursive(t: IrType, location: Label<DbLocation>, parent: Label<out DbExprparent>, idx: Int, enclosingCallable: Label<out DbCallable>, enclosingStmt: Label<out DbStmt>, typeContext: TypeContext = TypeContext.OTHER): Label<out DbExpr> {
+    private fun extractTypeAccessRecursive(t: IrType, location: Label<DbLocation>, parent: Label<out DbExprparent>, idx: Int, enclosingCallable: Label<out DbCallable>?, enclosingStmt: Label<out DbStmt>?, typeContext: TypeContext = TypeContext.OTHER): Label<out DbExpr> {
         // TODO: `useType` substitutes types to their java equivalent, and sometimes that also means changing the number of type arguments. The below logic doesn't take this into account.
         // For example `KFunction2<Int,Double,String>` becomes `KFunction<String>` with three child type access expressions: `Int`, `Double`, `String`.
         val typeAccessId = extractTypeAccess(useType(t, typeContext), location, parent, idx, enclosingCallable, enclosingStmt)
@@ -5154,8 +5226,8 @@ open class KotlinFileExtractor(
         typeArgs: List<IrType>,
         location: Label<DbLocation>,
         parentExpr: Label<out DbExprparent>,
-        enclosingCallable: Label<out DbCallable>,
-        enclosingStmt: Label<out DbStmt>,
+        enclosingCallable: Label<out DbCallable>?,
+        enclosingStmt: Label<out DbStmt>?,
         startIndex: Int = 0,
         reverse: Boolean = false
     ) {
diff --git a/java/ql/consistency-queries/cfgDeadEnds.ql b/java/ql/consistency-queries/cfgDeadEnds.ql
index c0f2e6cfe1f..b2ad4b08f6b 100644
--- a/java/ql/consistency-queries/cfgDeadEnds.ql
+++ b/java/ql/consistency-queries/cfgDeadEnds.ql
@@ -53,6 +53,8 @@ predicate shouldBeDeadEnd(ControlFlowNode n) {
   not exists(n.getFile().getRelativePath()) // TODO
   or
   n = any(ConstCase c).getValue(_) // TODO
+  or
+  n instanceof ErrorExpr // TODO
 }
 
 from ControlFlowNode n, string s
diff --git a/java/ql/test/kotlin/library-tests/annotation_classes/CONSISTENCY/children.expected b/java/ql/test/kotlin/library-tests/annotation_classes/CONSISTENCY/children.expected
deleted file mode 100644
index 28e24b18b44..00000000000
--- a/java/ql/test/kotlin/library-tests/annotation_classes/CONSISTENCY/children.expected
+++ /dev/null
@@ -1 +0,0 @@
-| file:///modules/java.base/java/util/Random.class:0:0:0:0 | RandomGeneratorProperties | Annotation | 1 | gap | 0, 2, 3, 4, 5 |
diff --git a/java/ql/test/kotlin/library-tests/annotation_classes/PrintAst.expected b/java/ql/test/kotlin/library-tests/annotation_classes/PrintAst.expected
index 2d34788a76e..57a8b571306 100644
--- a/java/ql/test/kotlin/library-tests/annotation_classes/PrintAst.expected
+++ b/java/ql/test/kotlin/library-tests/annotation_classes/PrintAst.expected
@@ -16,14 +16,18 @@ def.kt:
 #-----|       1: (Annotations)
 #    1|     2: [Method] y
 #    3|   3: [Interface] ReplaceWith
+#-----|     -3: (Annotations)
 #    3|     1: [Method] expression
 #    5|   4: [Interface] Deprecated
+#-----|     -3: (Annotations)
 #    6|     1: [Method] message
 #    7|     2: [Method] replaceWith
 #    9|   5: [Class] X
 #-----|     -3: (Annotations)
 #    9|       1: [Annotation] Deprecated
 #    0|         1: [StringLiteral] This class is deprecated
+#    0|         1: [Annotation] ReplaceWith
+#    0|           1: [StringLiteral] Y
 #   10|       2: [Annotation] SomeAnnotation
 #    0|         1: [IntegerLiteral] 5
 #    0|         1: [StringLiteral] a
@@ -33,29 +37,36 @@ def.kt:
 #   11|         1: [BlockStmt] { ... }
 use.java:
 #    0| [CompilationUnit] use
-#    2|   1: [Class] use
+#    6|   1: [Class] use
+#-----|     -3: (Annotations)
+#    2|       1: [Annotation] Deprecated
+#    3|         1: [StringLiteral] "This class is deprecated"
+#    4|         2: [Annotation] ReplaceWith
+#    4|           1: [StringLiteral] "Y"
+#    5|       2: [Annotation] SomeAnnotation
+#    5|         2: [StringLiteral] "b"
 #-----|     -1: (Base Types)
-#    2|       0: [TypeAccess] SomeAnnotation
-#    4|     2: [Method] abc
+#    6|       0: [TypeAccess] SomeAnnotation
+#    8|     2: [Method] abc
 #-----|       1: (Annotations)
-#    3|         1: [Annotation] Override
-#    4|       3: [TypeAccess] int
-#    4|       5: [BlockStmt] { ... }
-#    4|         0: [ReturnStmt] return ...
-#    4|           0: [IntegerLiteral] 1
-#    6|     3: [Method] y
+#    7|         1: [Annotation] Override
+#    8|       3: [TypeAccess] int
+#    8|       5: [BlockStmt] { ... }
+#    8|         0: [ReturnStmt] return ...
+#    8|           0: [IntegerLiteral] 1
+#   10|     3: [Method] y
 #-----|       1: (Annotations)
-#    5|         1: [Annotation] Override
-#    6|       3: [TypeAccess] String
-#    6|       5: [BlockStmt] { ... }
-#    6|         0: [ReturnStmt] return ...
-#    6|           0: [StringLiteral] ""
-#    9|     4: [Method] annotationType
-#-----|       1: (Annotations)
-#    8|         1: [Annotation] Override
-#    9|       3: [TypeAccess] Class<? extends Annotation>
-#    9|         0: [WildcardTypeAccess] ? ...
-#    9|           0: [TypeAccess] Annotation
-#    9|       5: [BlockStmt] { ... }
+#    9|         1: [Annotation] Override
+#   10|       3: [TypeAccess] String
+#   10|       5: [BlockStmt] { ... }
 #   10|         0: [ReturnStmt] return ...
-#   10|           0: [NullLiteral] null
+#   10|           0: [StringLiteral] ""
+#   13|     4: [Method] annotationType
+#-----|       1: (Annotations)
+#   12|         1: [Annotation] Override
+#   13|       3: [TypeAccess] Class<? extends Annotation>
+#   13|         0: [WildcardTypeAccess] ? ...
+#   13|           0: [TypeAccess] Annotation
+#   13|       5: [BlockStmt] { ... }
+#   14|         0: [ReturnStmt] return ...
+#   14|           0: [NullLiteral] null
diff --git a/java/ql/test/kotlin/library-tests/annotation_classes/classes.expected b/java/ql/test/kotlin/library-tests/annotation_classes/classes.expected
index 824dd2d6d21..c131b3ed5bc 100644
--- a/java/ql/test/kotlin/library-tests/annotation_classes/classes.expected
+++ b/java/ql/test/kotlin/library-tests/annotation_classes/classes.expected
@@ -5,16 +5,26 @@ annotationDeclarations
 | def.kt:5:1:7:51 | Deprecated | def.kt:6:5:6:23 | message |
 | def.kt:5:1:7:51 | Deprecated | def.kt:7:5:7:50 | replaceWith |
 annotations
+| def.kt:0:0:0:0 | ReplaceWith | def.kt:9:1:9:57 | Deprecated | def.kt:3:1:3:52 | ReplaceWith |
 | def.kt:9:1:9:57 | Deprecated | def.kt:9:1:11:7 | X | def.kt:5:1:7:51 | Deprecated |
 | def.kt:10:1:10:24 | SomeAnnotation | def.kt:9:1:11:7 | X | def.kt:1:1:1:87 | SomeAnnotation |
+| use.java:2:1:4:48 | Deprecated | use.java:6:14:6:16 | use | def.kt:5:1:7:51 | Deprecated |
+| use.java:4:18:4:47 | ReplaceWith | use.java:2:1:4:48 | Deprecated | def.kt:3:1:3:52 | ReplaceWith |
+| use.java:5:1:5:24 | SomeAnnotation | use.java:6:14:6:16 | use | def.kt:1:1:1:87 | SomeAnnotation |
 annotationValues
+| def.kt:0:0:0:0 | ReplaceWith | def.kt:0:0:0:0 | Y |
+| def.kt:9:1:9:57 | Deprecated | def.kt:0:0:0:0 | ReplaceWith |
 | def.kt:9:1:9:57 | Deprecated | def.kt:0:0:0:0 | This class is deprecated |
 | def.kt:10:1:10:24 | SomeAnnotation | def.kt:0:0:0:0 | 5 |
 | def.kt:10:1:10:24 | SomeAnnotation | def.kt:0:0:0:0 | a |
+| use.java:2:1:4:48 | Deprecated | use.java:3:14:3:39 | "This class is deprecated" |
+| use.java:2:1:4:48 | Deprecated | use.java:4:18:4:47 | ReplaceWith |
+| use.java:4:18:4:47 | ReplaceWith | use.java:4:44:4:46 | "Y" |
+| use.java:5:1:5:24 | SomeAnnotation | use.java:5:21:5:23 | "b" |
 #select
 | def.kt:0:0:0:0 | DefKt | Class |
 | def.kt:1:1:1:87 | SomeAnnotation | Interface |
 | def.kt:3:1:3:52 | ReplaceWith | Interface |
 | def.kt:5:1:7:51 | Deprecated | Interface |
 | def.kt:9:1:11:7 | X | Class |
-| use.java:2:14:2:16 | use | Class |
+| use.java:6:14:6:16 | use | Class |
diff --git a/java/ql/test/kotlin/library-tests/annotation_classes/use.java b/java/ql/test/kotlin/library-tests/annotation_classes/use.java
index 9b9191b849f..56307b9180b 100644
--- a/java/ql/test/kotlin/library-tests/annotation_classes/use.java
+++ b/java/ql/test/kotlin/library-tests/annotation_classes/use.java
@@ -1,4 +1,8 @@
 
+@Deprecated(
+   message = "This class is deprecated",
+   replaceWith = @ReplaceWith(expression = "Y"))
+@SomeAnnotation(y = "b")
 public class use implements SomeAnnotation {
     @Override
     public int abc() { return 1; }

From b5ae43a8872cb2dba733cf8507bb2eb35d4bf6af Mon Sep 17 00:00:00 2001
From: Tamas Vajk <tamasvajk@github.com>
Date: Tue, 12 Apr 2022 16:04:29 +0200
Subject: [PATCH 1202/1420] Remove empty annotations node from PrintAST

---
 java/ql/lib/semmle/code/java/PrintAst.qll                  | 7 ++++++-
 .../library-tests/annotation_classes/PrintAst.expected     | 4 ----
 2 files changed, 6 insertions(+), 5 deletions(-)

diff --git a/java/ql/lib/semmle/code/java/PrintAst.qll b/java/ql/lib/semmle/code/java/PrintAst.qll
index d6420f2e4ca..3093c9b2643 100644
--- a/java/ql/lib/semmle/code/java/PrintAst.qll
+++ b/java/ql/lib/semmle/code/java/PrintAst.qll
@@ -120,7 +120,12 @@ private newtype TPrintAstNode =
     shouldPrint(lvde, _) and lvde.getParent() instanceof SingleLocalVarDeclParent
   } or
   TAnnotationsNode(Annotatable ann) {
-    shouldPrint(ann, _) and ann.hasDeclaredAnnotation() and not partOfAnnotation(ann)
+    shouldPrint(ann, _) and
+    ann.hasDeclaredAnnotation() and
+    not partOfAnnotation(ann) and
+    // The Kotlin compiler might add annotations that are only present in byte code, although the annotatable element is
+    // present in source code.
+    exists(Annotation a | a.getAnnotatedElement() = ann and shouldPrint(a, _))
   } or
   TParametersNode(Callable c) { shouldPrint(c, _) and not c.hasNoParameters() } or
   TBaseTypesNode(ClassOrInterface ty) { shouldPrint(ty, _) } or
diff --git a/java/ql/test/kotlin/library-tests/annotation_classes/PrintAst.expected b/java/ql/test/kotlin/library-tests/annotation_classes/PrintAst.expected
index 57a8b571306..36ab7c99887 100644
--- a/java/ql/test/kotlin/library-tests/annotation_classes/PrintAst.expected
+++ b/java/ql/test/kotlin/library-tests/annotation_classes/PrintAst.expected
@@ -11,15 +11,11 @@ def.kt:
 #   14|             0: [MethodAccess] abc(...)
 #   14|               -1: [VarAccess] a
 #    1|   2: [Interface] SomeAnnotation
-#-----|     -3: (Annotations)
 #    1|     1: [Method] abc
-#-----|       1: (Annotations)
 #    1|     2: [Method] y
 #    3|   3: [Interface] ReplaceWith
-#-----|     -3: (Annotations)
 #    3|     1: [Method] expression
 #    5|   4: [Interface] Deprecated
-#-----|     -3: (Annotations)
 #    6|     1: [Method] message
 #    7|     2: [Method] replaceWith
 #    9|   5: [Class] X

From 1898f94472c1a46c34d29e307555bf609261125e Mon Sep 17 00:00:00 2001
From: Tamas Vajk <tamasvajk@github.com>
Date: Tue, 12 Apr 2022 16:44:44 +0200
Subject: [PATCH 1203/1420] Filter expressions to source files in tests

---
 java/ql/test/kotlin/library-tests/exprs/exprs.ql                | 1 +
 java/ql/test/kotlin/library-tests/literals/literals.ql          | 1 +
 java/ql/test/kotlin/library-tests/stmts/exprs.ql                | 1 +
 java/ql/test/kotlin/library-tests/variables/variableAccesses.ql | 2 +-
 4 files changed, 4 insertions(+), 1 deletion(-)

diff --git a/java/ql/test/kotlin/library-tests/exprs/exprs.ql b/java/ql/test/kotlin/library-tests/exprs/exprs.ql
index 89eb09fc368..b39528a55e4 100644
--- a/java/ql/test/kotlin/library-tests/exprs/exprs.ql
+++ b/java/ql/test/kotlin/library-tests/exprs/exprs.ql
@@ -35,4 +35,5 @@ MaybeElement enclosingCallable(Expr e) {
 }
 
 from Expr e
+where e.getFile().isSourceFile()
 select e, enclosingCallable(e), e.getPrimaryQlClasses()
diff --git a/java/ql/test/kotlin/library-tests/literals/literals.ql b/java/ql/test/kotlin/library-tests/literals/literals.ql
index db19beff30b..587a71f3dc7 100644
--- a/java/ql/test/kotlin/library-tests/literals/literals.ql
+++ b/java/ql/test/kotlin/library-tests/literals/literals.ql
@@ -1,4 +1,5 @@
 import java
 
 from Literal l
+where l.getFile().isSourceFile()
 select l, l.getPrimaryQlClasses()
diff --git a/java/ql/test/kotlin/library-tests/stmts/exprs.ql b/java/ql/test/kotlin/library-tests/stmts/exprs.ql
index 6ded7c0026d..c2ae4f55ac7 100644
--- a/java/ql/test/kotlin/library-tests/stmts/exprs.ql
+++ b/java/ql/test/kotlin/library-tests/stmts/exprs.ql
@@ -1,4 +1,5 @@
 import java
 
 from Expr e
+where e.getFile().isSourceFile()
 select e, e.getPrimaryQlClasses()
diff --git a/java/ql/test/kotlin/library-tests/variables/variableAccesses.ql b/java/ql/test/kotlin/library-tests/variables/variableAccesses.ql
index 0fa6d19d142..2d6622d032c 100644
--- a/java/ql/test/kotlin/library-tests/variables/variableAccesses.ql
+++ b/java/ql/test/kotlin/library-tests/variables/variableAccesses.ql
@@ -1,6 +1,6 @@
 import java
 
-query predicate varAcc(VarAccess va) { any() }
+query predicate varAcc(VarAccess va) { va.getFile().isSourceFile() }
 
 query predicate extensionReceiverAcc(ExtensionReceiverAccess va) { any() }
 

From b73bfd61339466da9e0971700ef4093c52888248 Mon Sep 17 00:00:00 2001
From: Tamas Vajk <tamasvajk@github.com>
Date: Tue, 12 Apr 2022 16:53:00 +0200
Subject: [PATCH 1204/1420] Compilation fixup

---
 .../src/main/kotlin/KotlinFileExtractor.kt    | 180 +++++++++---------
 1 file changed, 90 insertions(+), 90 deletions(-)

diff --git a/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt b/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt
index e366eace280..1b3abd847d9 100644
--- a/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt
+++ b/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt
@@ -498,7 +498,7 @@ open class KotlinFileExtractor(
 
         return when (v) {
             is IrConst<*> -> {
-                extractConstant(v, parent, idx)
+                extractConstant(v, parent, idx, null, null)
             }
             is IrGetEnumValue -> {
                 extractEnumValue(v, parent, idx, null, null)
@@ -558,7 +558,7 @@ open class KotlinFileExtractor(
                     val interfaceId = id.cast<DbInterface>()
                     tw.writeInterfaces(interfaceId, cls, pkgId, interfaceId)
 
-                    if (kind == ClassKind.ANNOTATION_CLASS) {
+                    if (c.kind == ClassKind.ANNOTATION_CLASS) {
                         tw.writeIsAnnotType(interfaceId)
                     }
                 } else {
@@ -586,12 +586,12 @@ open class KotlinFileExtractor(
 
                 c.typeParameters.mapIndexed { idx, param -> extractTypeParameter(param, idx, javaClass?.typeParameters?.getOrNull(idx)) }
                 if (extractDeclarations) {
-                    if (kind == ClassKind.ANNOTATION_CLASS) {
+                    if (c.kind == ClassKind.ANNOTATION_CLASS) {
                         c.declarations
                             .filterIsInstance<IrProperty>()
                             .map {
                                 val getter = it.getter!!
-                                val label = extractFunction(getter, id, false, null, listOf())
+                                val label = extractFunction(getter, id, extractBody = false, extractMethodAndParameterTypeAccesses = false, null, listOf())
                                 tw.writeIsAnnotElem(label!!.cast<DbMethod>())
                             }
                     } else {
@@ -3491,10 +3491,10 @@ open class KotlinFileExtractor(
         extractExpression(e, callable, ExprParent(parent, idx, enclosingStmt))
     }
 
-    private fun extractExprContext(id: Label<out DbExpr>, locId: Label<DbLocation>, callable: Label<out DbCallable>, enclosingStmt: Label<out DbStmt>) {
+    private fun extractExprContext(id: Label<out DbExpr>, locId: Label<DbLocation>, callable: Label<out DbCallable>?, enclosingStmt: Label<out DbStmt>?) {
         tw.writeHasLocation(id, locId)
-        tw.writeCallableEnclosingExpr(id, callable)
-        tw.writeStatementEnclosingExpr(id, enclosingStmt)
+        callable?.let { tw.writeCallableEnclosingExpr(id, it) }
+        enclosingStmt?.let { tw.writeStatementEnclosingExpr(id, it) }
     }
 
     private fun extractEqualsExpression(locId: Label<DbLocation>, parent: Label<out DbExprparent>, idx: Int, callable: Label<out DbCallable>, enclosingStmt: Label<out DbStmt>) =
@@ -3513,7 +3513,7 @@ open class KotlinFileExtractor(
             extractExprContext(it, locId, callable, enclosingStmt)
         }
 
-    private fun extractConstantInteger(v: Number, locId: Label<DbLocation>, parent: Label<out DbExprparent>, idx: Int, callable: Label<out DbCallable>, enclosingStmt: Label<out DbStmt>) =
+    private fun extractConstantInteger(v: Number, locId: Label<DbLocation>, parent: Label<out DbExprparent>, idx: Int, callable: Label<out DbCallable>?, enclosingStmt: Label<out DbStmt>?) =
         tw.getFreshIdLabel<DbIntegerliteral>().also {
             val type = useType(pluginContext.irBuiltIns.intType)
             tw.writeExprs_integerliteral(it, type.javaResult.id, parent, idx)
@@ -3522,7 +3522,7 @@ open class KotlinFileExtractor(
             extractExprContext(it, locId, callable, enclosingStmt)
         }
 
-    private fun extractNull(t: IrType, locId: Label<DbLocation>, parent: Label<out DbExprparent>, idx: Int, callable: Label<out DbCallable>, enclosingStmt: Label<out DbStmt>) =
+    private fun extractNull(t: IrType, locId: Label<DbLocation>, parent: Label<out DbExprparent>, idx: Int, callable: Label<out DbCallable>?, enclosingStmt: Label<out DbStmt>?) =
         tw.getFreshIdLabel<DbNullliteral>().also {
             val type = useType(t)
             tw.writeExprs_nullliteral(it, type.javaResult.id, parent, idx)
@@ -3698,11 +3698,7 @@ open class KotlinFileExtractor(
                 }
                 is IrConst<*> -> {
                     val exprParent = parent.expr(e, callable)
-                    val id = extractConstant(e, exprParent.parent, exprParent.idx)
-                    if (id != null) {
-                        tw.writeCallableEnclosingExpr(id, callable)
-                        tw.writeStatementEnclosingExpr(id, exprParent.enclosingStmt)
-                    }
+                    extractConstant(e, exprParent.parent, exprParent.idx, callable, exprParent.enclosingStmt)
                 }
                 is IrGetValue -> {
                     val exprParent = parent.expr(e, callable)
@@ -3731,7 +3727,7 @@ open class KotlinFileExtractor(
                 }
                 is IrGetEnumValue -> {
                     val exprParent = parent.expr(e, callable)
-                    val id = extractEnumValue(e, exprParent.parent, exprParent.idx, callable, exprParent.enclosingStmt)
+                    extractEnumValue(e, exprParent.parent, exprParent.idx, callable, exprParent.enclosingStmt)
                 }
                 is IrSetValue,
                 is IrSetField -> {
@@ -4180,20 +4176,16 @@ open class KotlinFileExtractor(
         idx: Int,
         enclosingCallable: Label<out DbCallable>?,
         enclosingStmt: Label<out DbStmt>?
-    ): Label<out DbExpr> {
-        val id = tw.getFreshIdLabel<DbTypeliteral>()
-        val locId = tw.getLocation(e)
-        val type = useType(e.type)
-        tw.writeExprs_typeliteral(id, type.javaResult.id, parent, idx)
-        tw.writeExprsKotlinType(id, type.kotlinResult.id)
-        tw.writeHasLocation(id, locId)
+    ) =
+        tw.getFreshIdLabel<DbTypeliteral>().also { id ->
+            val locId = tw.getLocation(e)
+            val type = useType(e.type)
+            tw.writeExprs_typeliteral(id, type.javaResult.id, parent, idx)
+            tw.writeExprsKotlinType(id, type.kotlinResult.id)
+            extractExprContext(id, locId, enclosingCallable, enclosingStmt)
 
-        enclosingCallable?.let { tw.writeCallableEnclosingExpr(id, it) }
-        enclosingStmt?.let { tw.writeStatementEnclosingExpr(id, it) }
-
-        extractTypeAccessRecursive(e.classType, locId, id, 0, enclosingCallable, enclosingStmt)
-        return id
-    }
+            extractTypeAccessRecursive(e.classType, locId, id, 0, enclosingCallable, enclosingStmt)
+        }
 
     private fun extractEnumValue(
         e: IrGetEnumValue,
@@ -4201,25 +4193,23 @@ open class KotlinFileExtractor(
         idx: Int,
         enclosingCallable: Label<out DbCallable>?,
         enclosingStmt: Label<out DbStmt>?
-    ): Label<out DbExpr> {
-        val id = tw.getFreshIdLabel<DbVaraccess>()
-        val type = useType(e.type)
-        val locId = tw.getLocation(e)
-        tw.writeExprs_varaccess(id, type.javaResult.id, parent, idx)
-        tw.writeExprsKotlinType(id, type.kotlinResult.id)
-        tw.writeHasLocation(id, locId)
+    ) =
+        tw.getFreshIdLabel<DbVaraccess>().also { id ->
+            val type = useType(e.type)
+            val locId = tw.getLocation(e)
+            tw.writeExprs_varaccess(id, type.javaResult.id, parent, idx)
+            tw.writeExprsKotlinType(id, type.kotlinResult.id)
+            extractExprContext(id, locId, enclosingCallable, enclosingStmt)
 
-        enclosingCallable?.let { tw.writeCallableEnclosingExpr(id, it) }
-        enclosingStmt?.let { tw.writeStatementEnclosingExpr(id, it) }
+            getBoundSymbolOwner(e.symbol, e)?.let { owner ->
 
-        val owner = getBoundSymbolOwner(e.symbol, e) ?: return id
+                val vId = useEnumEntry(owner)
+                tw.writeVariableBinding(id, vId)
 
-        val vId = useEnumEntry(owner)
-        tw.writeVariableBinding(id, vId)
+                extractStaticTypeAccessQualifier(owner, id, locId, enclosingCallable, enclosingStmt)
 
-        extractStaticTypeAccessQualifier(owner, id, locId, enclosingCallable, enclosingStmt)
-        return id
-    }
+            }
+        }
 
     // Render a string literal as it might occur in Kotlin source. Note this is a reasonable guess; the real source
     // could use other escape sequences to describe the same String. Importantly, this is the same guess the Java
@@ -4231,72 +4221,82 @@ open class KotlinFileExtractor(
     private fun extractConstant(
         e: IrConst<*>,
         parent: Label<out DbExprparent>,
-        idx: Int
+        idx: Int,
+        enclosingCallable: Label<out DbCallable>?,
+        enclosingStmt: Label<out DbStmt>?
     ): Label<out DbExpr>? {
         val v = e.value
-        when {
+        return when {
             v is Number && (v is Int || v is Short || v is Byte) -> {
-                extractConstantInteger(v, tw.getLocation(e), exprParent.parent, exprParent.idx, callable, exprParent.enclosingStmt)
+                extractConstantInteger(v, tw.getLocation(e), parent, idx, enclosingCallable, enclosingStmt)
             }
             v is Long -> {
-                val id = tw.getFreshIdLabel<DbLongliteral>()
-                val type = useType(e.type)
-                val locId = tw.getLocation(e)
-                tw.writeExprs_longliteral(id, type.javaResult.id, exprParent.parent, exprParent.idx)
-                tw.writeExprsKotlinType(id, type.kotlinResult.id)
-                extractExprContext(id, locId, callable, exprParent.enclosingStmt)
-                tw.writeNamestrings(v.toString(), v.toString(), id)
+                tw.getFreshIdLabel<DbLongliteral>().also { id ->
+                    val type = useType(e.type)
+                    val locId = tw.getLocation(e)
+                    tw.writeExprs_longliteral(id, type.javaResult.id, parent, idx)
+                    tw.writeExprsKotlinType(id, type.kotlinResult.id)
+                    extractExprContext(id, locId, enclosingCallable, enclosingStmt)
+                    tw.writeNamestrings(v.toString(), v.toString(), id)
+                }
             }
             v is Float -> {
-                val id = tw.getFreshIdLabel<DbFloatingpointliteral>()
-                val type = useType(e.type)
-                val locId = tw.getLocation(e)
-                tw.writeExprs_floatingpointliteral(id, type.javaResult.id, exprParent.parent, exprParent.idx)
-                tw.writeExprsKotlinType(id, type.kotlinResult.id)
-                extractExprContext(id, locId, callable, exprParent.enclosingStmt)
-                tw.writeNamestrings(v.toString(), v.toString(), id)
+                tw.getFreshIdLabel<DbFloatingpointliteral>().also { id ->
+                    val type = useType(e.type)
+                    val locId = tw.getLocation(e)
+                    tw.writeExprs_floatingpointliteral(id, type.javaResult.id, parent, idx)
+                    tw.writeExprsKotlinType(id, type.kotlinResult.id)
+                    extractExprContext(id, locId, enclosingCallable, enclosingStmt)
+                    tw.writeNamestrings(v.toString(), v.toString(), id)
+                }
             }
             v is Double -> {
-                val id = tw.getFreshIdLabel<DbDoubleliteral>()
-                val type = useType(e.type)
-                val locId = tw.getLocation(e)
-                tw.writeExprs_doubleliteral(id, type.javaResult.id, exprParent.parent, exprParent.idx)
-                tw.writeExprsKotlinType(id, type.kotlinResult.id)
-                extractExprContext(id, locId, callable, exprParent.enclosingStmt)
-                tw.writeNamestrings(v.toString(), v.toString(), id)
+                tw.getFreshIdLabel<DbDoubleliteral>().also { id ->
+                    val type = useType(e.type)
+                    val locId = tw.getLocation(e)
+                    tw.writeExprs_doubleliteral(id, type.javaResult.id, parent, idx)
+                    tw.writeExprsKotlinType(id, type.kotlinResult.id)
+                    extractExprContext(id, locId, enclosingCallable, enclosingStmt)
+                    tw.writeNamestrings(v.toString(), v.toString(), id)
+                }
             }
             v is Boolean -> {
-                val id = tw.getFreshIdLabel<DbBooleanliteral>()
-                val type = useType(e.type)
-                val locId = tw.getLocation(e)
-                tw.writeExprs_booleanliteral(id, type.javaResult.id, exprParent.parent, exprParent.idx)
-                tw.writeExprsKotlinType(id, type.kotlinResult.id)
-                extractExprContext(id, locId, callable, exprParent.enclosingStmt)
-                tw.writeNamestrings(v.toString(), v.toString(), id)
+                tw.getFreshIdLabel<DbBooleanliteral>().also { id ->
+                    val type = useType(e.type)
+                    val locId = tw.getLocation(e)
+                    tw.writeExprs_booleanliteral(id, type.javaResult.id, parent, idx)
+                    tw.writeExprsKotlinType(id, type.kotlinResult.id)
+                    extractExprContext(id, locId, enclosingCallable, enclosingStmt)
+                    tw.writeNamestrings(v.toString(), v.toString(), id)
+                }
             }
             v is Char -> {
-                val id = tw.getFreshIdLabel<DbCharacterliteral>()
-                val type = useType(e.type)
-                val locId = tw.getLocation(e)
-                tw.writeExprs_characterliteral(id, type.javaResult.id, exprParent.parent, exprParent.idx)
-                tw.writeExprsKotlinType(id, type.kotlinResult.id)
-                extractExprContext(id, locId, callable, exprParent.enclosingStmt)
-                tw.writeNamestrings(v.toString(), v.toString(), id)
+                tw.getFreshIdLabel<DbCharacterliteral>().also { id ->
+                    val type = useType(e.type)
+                    val locId = tw.getLocation(e)
+                    tw.writeExprs_characterliteral(id, type.javaResult.id, parent, idx)
+                    tw.writeExprsKotlinType(id, type.kotlinResult.id)
+                    extractExprContext(id, locId, enclosingCallable, enclosingStmt)
+                    tw.writeNamestrings(v.toString(), v.toString(), id)
+                }
             }
             v is String -> {
-                val id = tw.getFreshIdLabel<DbStringliteral>()
-                val type = useType(e.type)
-                val locId = tw.getLocation(e)
-                tw.writeExprs_stringliteral(id, type.javaResult.id, exprParent.parent, exprParent.idx)
-                tw.writeExprsKotlinType(id, type.kotlinResult.id)
-                extractExprContext(id, locId, callable, exprParent.enclosingStmt)
-                tw.writeNamestrings(toQuotedLiteral(v.toString()), v.toString(), id)
+                tw.getFreshIdLabel<DbStringliteral>().also { id ->
+                    val type = useType(e.type)
+                    val locId = tw.getLocation(e)
+                    tw.writeExprs_stringliteral(id, type.javaResult.id, parent, idx)
+                    tw.writeExprsKotlinType(id, type.kotlinResult.id)
+                    extractExprContext(id, locId, enclosingCallable, enclosingStmt)
+                    tw.writeNamestrings(toQuotedLiteral(v.toString()), v.toString(), id)
+                }
             }
             v == null -> {
-                extractNull(e.type, tw.getLocation(e), exprParent.parent, exprParent.idx, callable, exprParent.enclosingStmt)
+                extractNull(e.type, tw.getLocation(e), parent, idx, enclosingCallable, enclosingStmt)
             }
             else -> {
-                logger.errorElement("Unrecognised IrConst: " + v.javaClass, e)
+                null.also {
+                    logger.errorElement("Unrecognised IrConst: " + v.javaClass, e)
+                }
             }
         }
     }

From a0cd9fea3439523266183ad8c07965d01c62a766 Mon Sep 17 00:00:00 2001
From: Tamas Vajk <tamasvajk@github.com>
Date: Wed, 13 Apr 2022 08:48:17 +0200
Subject: [PATCH 1205/1420] Fix more not from source expressions in tests

---
 java/ql/test/kotlin/library-tests/methods/exprs.ql | 1 +
 1 file changed, 1 insertion(+)

diff --git a/java/ql/test/kotlin/library-tests/methods/exprs.ql b/java/ql/test/kotlin/library-tests/methods/exprs.ql
index 6ded7c0026d..c2ae4f55ac7 100644
--- a/java/ql/test/kotlin/library-tests/methods/exprs.ql
+++ b/java/ql/test/kotlin/library-tests/methods/exprs.ql
@@ -1,4 +1,5 @@
 import java
 
 from Expr e
+where e.getFile().isSourceFile()
 select e, e.getPrimaryQlClasses()

From f465dd536218fb60cd30746c3dbb53fef68996ee Mon Sep 17 00:00:00 2001
From: Tamas Vajk <tamasvajk@github.com>
Date: Wed, 13 Apr 2022 09:58:45 +0200
Subject: [PATCH 1206/1420] Add more annotation tests

---
 .../annotation_classes/Annot0j.java           |   3 +
 .../annotation_classes/Annot1j.java           |  15 ++
 .../annotation_classes/PrintAst.expected      | 165 ++++++++++++------
 .../annotation_classes/classes.expected       |  70 +++++---
 .../library-tests/annotation_classes/def.kt   |  32 ++--
 .../library-tests/annotation_classes/use.java |  15 +-
 6 files changed, 197 insertions(+), 103 deletions(-)
 create mode 100644 java/ql/test/kotlin/library-tests/annotation_classes/Annot0j.java
 create mode 100644 java/ql/test/kotlin/library-tests/annotation_classes/Annot1j.java

diff --git a/java/ql/test/kotlin/library-tests/annotation_classes/Annot0j.java b/java/ql/test/kotlin/library-tests/annotation_classes/Annot0j.java
new file mode 100644
index 00000000000..acadc19cc97
--- /dev/null
+++ b/java/ql/test/kotlin/library-tests/annotation_classes/Annot0j.java
@@ -0,0 +1,3 @@
+public @interface Annot0j {
+    int abc() default 0;
+}
\ No newline at end of file
diff --git a/java/ql/test/kotlin/library-tests/annotation_classes/Annot1j.java b/java/ql/test/kotlin/library-tests/annotation_classes/Annot1j.java
new file mode 100644
index 00000000000..b3b1f072eee
--- /dev/null
+++ b/java/ql/test/kotlin/library-tests/annotation_classes/Annot1j.java
@@ -0,0 +1,15 @@
+public @interface Annot1j {
+    int a() default 2;
+
+    String b() default "ab";
+
+    Class c() default X.class;
+
+    Y d() default Y.A;
+
+    Y[] e() default { Y.A, Y.B };
+
+    Annot0j f() default @Annot0j(
+            abc = 1
+    );
+}
\ No newline at end of file
diff --git a/java/ql/test/kotlin/library-tests/annotation_classes/PrintAst.expected b/java/ql/test/kotlin/library-tests/annotation_classes/PrintAst.expected
index 36ab7c99887..221082cafd9 100644
--- a/java/ql/test/kotlin/library-tests/annotation_classes/PrintAst.expected
+++ b/java/ql/test/kotlin/library-tests/annotation_classes/PrintAst.expected
@@ -1,68 +1,117 @@
+Annot0j.java:
+#    0| [CompilationUnit] Annot0j
+#    1|   1: [Interface] Annot0j
+#    2|     1: [Method] abc
+#    2|       3: [TypeAccess] int
+Annot1j.java:
+#    0| [CompilationUnit] Annot1j
+#    1|   1: [Interface] Annot1j
+#    2|     1: [Method] a
+#    2|       3: [TypeAccess] int
+#    4|     2: [Method] b
+#    4|       3: [TypeAccess] String
+#    6|     3: [Method] c
+#    6|       3: [TypeAccess] Class<>
+#    8|     4: [Method] d
+#    8|       3: [TypeAccess] Y
+#   10|     5: [Method] e
+#   10|       3: [ArrayTypeAccess] ...[]
+#   10|         0: [TypeAccess] Y
+#   12|     6: [Method] f
+#   12|       3: [TypeAccess] Annot0j
 def.kt:
 #    0| [CompilationUnit] def
 #    0|   1: [Class] DefKt
-#   13|     1: [Method] fn
+#   23|     1: [Method] fn
 #-----|       4: (Parameters)
-#   13|         0: [Parameter] a
-#   13|       5: [BlockStmt] { ... }
-#   14|         0: [ExprStmt] <Expr>;
-#   14|           0: [MethodAccess] println(...)
-#   14|             -1: [TypeAccess] ConsoleKt
-#   14|             0: [MethodAccess] abc(...)
-#   14|               -1: [VarAccess] a
-#    1|   2: [Interface] SomeAnnotation
-#    1|     1: [Method] abc
-#    1|     2: [Method] y
-#    3|   3: [Interface] ReplaceWith
-#    3|     1: [Method] expression
-#    5|   4: [Interface] Deprecated
-#    6|     1: [Method] message
-#    7|     2: [Method] replaceWith
-#    9|   5: [Class] X
+#   23|         0: [Parameter] a
+#   23|       5: [BlockStmt] { ... }
+#   24|         0: [ExprStmt] <Expr>;
+#   24|           0: [MethodAccess] println(...)
+#   24|             -1: [TypeAccess] ConsoleKt
+#   24|             0: [MethodAccess] a(...)
+#   24|               -1: [VarAccess] a
+#    3|   2: [Interface] Annot0k
+#    3|     1: [Method] a
+#    5|   3: [Interface] Annot1k
+#    6|     1: [Method] a
+#    7|     2: [Method] b
+#    8|     3: [Method] c
+#    9|     4: [Method] d
+#   10|     5: [Method] e
+#   11|     6: [Method] f
+#   14|   4: [Class] X
+#   14|     1: [Constructor] X
+#   14|       5: [BlockStmt] { ... }
+#   14|         0: [SuperConstructorInvocationStmt] super(...)
+#   14|         1: [BlockStmt] { ... }
+#   15|   5: [Class] Y
+#    0|     2: [Method] values
+#    0|     2: [Method] valueOf
+#-----|       4: (Parameters)
+#    0|         0: [Parameter] value
+#   15|     4: [Constructor] Y
+#   15|       5: [BlockStmt] { ... }
+#   15|         0: [ExprStmt] <Expr>;
+#   15|           0: [ClassInstanceExpr] new Enum(...)
+#   15|             -3: [TypeAccess] Unit
+#   15|               0: [TypeAccess] Y
+#   15|         1: [BlockStmt] { ... }
+#   19|   6: [Class] Z
 #-----|     -3: (Annotations)
-#    9|       1: [Annotation] Deprecated
-#    0|         1: [StringLiteral] This class is deprecated
-#    0|         1: [Annotation] ReplaceWith
-#    0|           1: [StringLiteral] Y
-#   10|       2: [Annotation] SomeAnnotation
-#    0|         1: [IntegerLiteral] 5
-#    0|         1: [StringLiteral] a
-#   11|     1: [Constructor] X
-#    9|       5: [BlockStmt] { ... }
-#    9|         0: [SuperConstructorInvocationStmt] super(...)
-#   11|         1: [BlockStmt] { ... }
+#   19|       1: [Annotation] Annot0k
+#    0|         1: [IntegerLiteral] 1
+#   20|       2: [Annotation] Annot1k
+#    0|         1: [IntegerLiteral] 2
+#    0|         1: [StringLiteral] ab
+#    0|         1: [TypeLiteral] X.class
+#    0|           0: [TypeAccess] X
+#    0|         1: [VarAccess] B
+#    0|         1: [ArrayInit] {...}
+#    0|           1: [VarAccess] C
+#    0|           1: [VarAccess] A
+#    0|         1: [Annotation] Annot0k
+#    0|           1: [IntegerLiteral] 1
+#   21|     1: [Constructor] Z
+#   19|       5: [BlockStmt] { ... }
+#   19|         0: [SuperConstructorInvocationStmt] super(...)
+#   21|         1: [BlockStmt] { ... }
 use.java:
 #    0| [CompilationUnit] use
-#    6|   1: [Class] use
-#-----|     -3: (Annotations)
-#    2|       1: [Annotation] Deprecated
-#    3|         1: [StringLiteral] "This class is deprecated"
-#    4|         2: [Annotation] ReplaceWith
-#    4|           1: [StringLiteral] "Y"
-#    5|       2: [Annotation] SomeAnnotation
-#    5|         2: [StringLiteral] "b"
+#    1|   1: [Class] use
 #-----|     -1: (Base Types)
-#    6|       0: [TypeAccess] SomeAnnotation
-#    8|     2: [Method] abc
+#    1|       0: [TypeAccess] Annot0k
+#    3|     2: [Method] a
 #-----|       1: (Annotations)
-#    7|         1: [Annotation] Override
-#    8|       3: [TypeAccess] int
-#    8|       5: [BlockStmt] { ... }
-#    8|         0: [ReturnStmt] return ...
-#    8|           0: [IntegerLiteral] 1
-#   10|     3: [Method] y
+#    2|         1: [Annotation] Override
+#    3|       3: [TypeAccess] int
+#    3|       5: [BlockStmt] { ... }
+#    3|         0: [ReturnStmt] return ...
+#    3|           0: [IntegerLiteral] 1
+#    6|     3: [Method] annotationType
 #-----|       1: (Annotations)
-#    9|         1: [Annotation] Override
-#   10|       3: [TypeAccess] String
-#   10|       5: [BlockStmt] { ... }
-#   10|         0: [ReturnStmt] return ...
-#   10|           0: [StringLiteral] ""
-#   13|     4: [Method] annotationType
-#-----|       1: (Annotations)
-#   12|         1: [Annotation] Override
-#   13|       3: [TypeAccess] Class<? extends Annotation>
-#   13|         0: [WildcardTypeAccess] ? ...
-#   13|           0: [TypeAccess] Annotation
-#   13|       5: [BlockStmt] { ... }
-#   14|         0: [ReturnStmt] return ...
-#   14|           0: [NullLiteral] null
+#    5|         1: [Annotation] Override
+#    6|       3: [TypeAccess] Class<? extends Annotation>
+#    6|         0: [WildcardTypeAccess] ? ...
+#    6|           0: [TypeAccess] Annotation
+#    6|       5: [BlockStmt] { ... }
+#    7|         0: [ReturnStmt] return ...
+#    7|           0: [NullLiteral] null
+#   12|     4: [Class] Z
+#-----|       -3: (Annotations)
+#   10|         1: [Annotation] Annot0j
+#   10|           1: [IntegerLiteral] 1
+#   11|         2: [Annotation] Annot1j
+#   11|           1: [IntegerLiteral] 1
+#   11|           2: [StringLiteral] "ac"
+#   11|           3: [TypeLiteral] X.class
+#   11|             0: [TypeAccess] X
+#   11|           4: [VarAccess] Y.B
+#   11|             -1: [TypeAccess] Y
+#   11|           5: [ArrayInit] {...}
+#   11|             3: [VarAccess] Y.C
+#   11|               -1: [TypeAccess] Y
+#   11|             4: [VarAccess] Y.A
+#   11|               -1: [TypeAccess] Y
+#   11|           6: [Annotation] Annot0j
+#   11|             1: [IntegerLiteral] 2
diff --git a/java/ql/test/kotlin/library-tests/annotation_classes/classes.expected b/java/ql/test/kotlin/library-tests/annotation_classes/classes.expected
index c131b3ed5bc..1482615c42a 100644
--- a/java/ql/test/kotlin/library-tests/annotation_classes/classes.expected
+++ b/java/ql/test/kotlin/library-tests/annotation_classes/classes.expected
@@ -1,30 +1,50 @@
 annotationDeclarations
-| def.kt:1:1:1:87 | SomeAnnotation | def.kt:1:53:1:66 | abc |
-| def.kt:1:1:1:87 | SomeAnnotation | def.kt:1:69:1:86 | y |
-| def.kt:3:1:3:52 | ReplaceWith | def.kt:3:30:3:51 | expression |
-| def.kt:5:1:7:51 | Deprecated | def.kt:6:5:6:23 | message |
-| def.kt:5:1:7:51 | Deprecated | def.kt:7:5:7:50 | replaceWith |
+| Annot0j.java:1:19:1:25 | Annot0j | Annot0j.java:2:9:2:11 | abc |
+| Annot1j.java:1:19:1:25 | Annot1j | Annot1j.java:2:9:2:9 | a |
+| Annot1j.java:1:19:1:25 | Annot1j | Annot1j.java:4:12:4:12 | b |
+| Annot1j.java:1:19:1:25 | Annot1j | Annot1j.java:6:11:6:11 | c |
+| Annot1j.java:1:19:1:25 | Annot1j | Annot1j.java:8:7:8:7 | d |
+| Annot1j.java:1:19:1:25 | Annot1j | Annot1j.java:10:9:10:9 | e |
+| Annot1j.java:1:19:1:25 | Annot1j | Annot1j.java:12:13:12:13 | f |
+| def.kt:3:1:3:60 | Annot0k | def.kt:3:44:3:59 | a |
+| def.kt:5:1:12:1 | Annot1k | def.kt:6:5:6:18 | a |
+| def.kt:5:1:12:1 | Annot1k | def.kt:7:5:7:24 | b |
+| def.kt:5:1:12:1 | Annot1k | def.kt:8:5:8:31 | c |
+| def.kt:5:1:12:1 | Annot1k | def.kt:9:5:9:18 | d |
+| def.kt:5:1:12:1 | Annot1k | def.kt:10:5:10:32 | e |
+| def.kt:5:1:12:1 | Annot1k | def.kt:11:5:11:31 | f |
 annotations
-| def.kt:0:0:0:0 | ReplaceWith | def.kt:9:1:9:57 | Deprecated | def.kt:3:1:3:52 | ReplaceWith |
-| def.kt:9:1:9:57 | Deprecated | def.kt:9:1:11:7 | X | def.kt:5:1:7:51 | Deprecated |
-| def.kt:10:1:10:24 | SomeAnnotation | def.kt:9:1:11:7 | X | def.kt:1:1:1:87 | SomeAnnotation |
-| use.java:2:1:4:48 | Deprecated | use.java:6:14:6:16 | use | def.kt:5:1:7:51 | Deprecated |
-| use.java:4:18:4:47 | ReplaceWith | use.java:2:1:4:48 | Deprecated | def.kt:3:1:3:52 | ReplaceWith |
-| use.java:5:1:5:24 | SomeAnnotation | use.java:6:14:6:16 | use | def.kt:1:1:1:87 | SomeAnnotation |
+| def.kt:0:0:0:0 | Annot0k | def.kt:20:1:20:40 | Annot1k | def.kt:3:1:3:60 | Annot0k |
+| def.kt:19:1:19:17 | Annot0k | def.kt:19:1:21:10 | Z | def.kt:3:1:3:60 | Annot0k |
+| def.kt:20:1:20:40 | Annot1k | def.kt:19:1:21:10 | Z | def.kt:5:1:12:1 | Annot1k |
+| use.java:10:5:10:21 | Annot0j | use.java:12:18:12:18 | Z | Annot0j.java:1:19:1:25 | Annot0j |
+| use.java:11:5:11:90 | Annot1j | use.java:12:18:12:18 | Z | Annot1j.java:1:19:1:25 | Annot1j |
+| use.java:11:73:11:89 | Annot0j | use.java:11:5:11:90 | Annot1j | Annot0j.java:1:19:1:25 | Annot0j |
 annotationValues
-| def.kt:0:0:0:0 | ReplaceWith | def.kt:0:0:0:0 | Y |
-| def.kt:9:1:9:57 | Deprecated | def.kt:0:0:0:0 | ReplaceWith |
-| def.kt:9:1:9:57 | Deprecated | def.kt:0:0:0:0 | This class is deprecated |
-| def.kt:10:1:10:24 | SomeAnnotation | def.kt:0:0:0:0 | 5 |
-| def.kt:10:1:10:24 | SomeAnnotation | def.kt:0:0:0:0 | a |
-| use.java:2:1:4:48 | Deprecated | use.java:3:14:3:39 | "This class is deprecated" |
-| use.java:2:1:4:48 | Deprecated | use.java:4:18:4:47 | ReplaceWith |
-| use.java:4:18:4:47 | ReplaceWith | use.java:4:44:4:46 | "Y" |
-| use.java:5:1:5:24 | SomeAnnotation | use.java:5:21:5:23 | "b" |
+| def.kt:0:0:0:0 | Annot0k | def.kt:0:0:0:0 | 1 |
+| def.kt:19:1:19:17 | Annot0k | def.kt:0:0:0:0 | 1 |
+| def.kt:20:1:20:40 | Annot1k | def.kt:0:0:0:0 | 2 |
+| def.kt:20:1:20:40 | Annot1k | def.kt:0:0:0:0 | Annot0k |
+| def.kt:20:1:20:40 | Annot1k | def.kt:0:0:0:0 | B |
+| def.kt:20:1:20:40 | Annot1k | def.kt:0:0:0:0 | X.class |
+| def.kt:20:1:20:40 | Annot1k | def.kt:0:0:0:0 | ab |
+| def.kt:20:1:20:40 | Annot1k | def.kt:0:0:0:0 | {...} |
+| use.java:10:5:10:21 | Annot0j | use.java:10:20:10:20 | 1 |
+| use.java:11:5:11:90 | Annot1j | use.java:11:18:11:18 | 1 |
+| use.java:11:5:11:90 | Annot1j | use.java:11:25:11:28 | "ac" |
+| use.java:11:5:11:90 | Annot1j | use.java:11:35:11:41 | X.class |
+| use.java:11:5:11:90 | Annot1j | use.java:11:48:11:50 | Y.B |
+| use.java:11:5:11:90 | Annot1j | use.java:11:57:11:66 | {...} |
+| use.java:11:5:11:90 | Annot1j | use.java:11:73:11:89 | Annot0j |
+| use.java:11:73:11:89 | Annot0j | use.java:11:88:11:88 | 2 |
 #select
+| Annot0j.java:1:19:1:25 | Annot0j | Interface |
+| Annot1j.java:1:19:1:25 | Annot1j | Interface |
 | def.kt:0:0:0:0 | DefKt | Class |
-| def.kt:1:1:1:87 | SomeAnnotation | Interface |
-| def.kt:3:1:3:52 | ReplaceWith | Interface |
-| def.kt:5:1:7:51 | Deprecated | Interface |
-| def.kt:9:1:11:7 | X | Class |
-| use.java:6:14:6:16 | use | Class |
+| def.kt:3:1:3:60 | Annot0k | Interface |
+| def.kt:5:1:12:1 | Annot1k | Interface |
+| def.kt:14:1:14:10 | X | Class |
+| def.kt:15:1:17:1 | Y | Class |
+| def.kt:19:1:21:10 | Z | Class |
+| use.java:1:14:1:16 | use | Class |
+| use.java:12:18:12:18 | Z | Class |
diff --git a/java/ql/test/kotlin/library-tests/annotation_classes/def.kt b/java/ql/test/kotlin/library-tests/annotation_classes/def.kt
index 132fceb4244..47e8c3ae755 100644
--- a/java/ql/test/kotlin/library-tests/annotation_classes/def.kt
+++ b/java/ql/test/kotlin/library-tests/annotation_classes/def.kt
@@ -1,16 +1,26 @@
-annotation class SomeAnnotation(@get:JvmName("abc") val x: Int = 5, val y: String = "")
+import kotlin.reflect.KClass
 
-annotation class ReplaceWith(val expression: String)
+annotation class Annot0k(@get:JvmName("a") val abc: Int = 0)
 
-annotation class Deprecated(
-    val message: String,
-    val replaceWith: ReplaceWith = ReplaceWith(""))
+annotation class Annot1k(
+    val a: Int = 2,
+    val b: String = "ab",
+    val c: KClass<*> = X::class,
+    val d: Y = Y.A,
+    val e: Array<Y> = [Y.A, Y.B],
+    val f: Annot0k = Annot0k(1)
+)
 
-@Deprecated("This class is deprecated", ReplaceWith("Y"))
-@SomeAnnotation(y = "a")
-class X
-
-fun fn(a: SomeAnnotation) {
-    println(a.x)
+class X {}
+enum class Y {
+    A,B,C
+}
+
+@Annot0k(abc = 1)
+@Annot1k(d = Y.B, e = arrayOf(Y.C, Y.A))
+class Z {}
+
+fun fn(a: Annot0k) {
+    println(a.abc)
 }
 
diff --git a/java/ql/test/kotlin/library-tests/annotation_classes/use.java b/java/ql/test/kotlin/library-tests/annotation_classes/use.java
index 56307b9180b..60d0c9162c4 100644
--- a/java/ql/test/kotlin/library-tests/annotation_classes/use.java
+++ b/java/ql/test/kotlin/library-tests/annotation_classes/use.java
@@ -1,16 +1,13 @@
-
-@Deprecated(
-   message = "This class is deprecated",
-   replaceWith = @ReplaceWith(expression = "Y"))
-@SomeAnnotation(y = "b")
-public class use implements SomeAnnotation {
+public class use implements Annot0k {
     @Override
-    public int abc() { return 1; }
-    @Override
-    public String y() { return ""; }
+    public int a() { return 1; }
 
     @Override
     public Class<? extends java.lang.annotation.Annotation> annotationType() {
         return null;
     }
+
+    @Annot0j(abc = 1)
+    @Annot1j(a = 1, b = "ac", c = X.class, d = Y.B, e = {Y.C, Y.A}, f = @Annot0j(abc = 2))
+    public class Z { }
 }

From 3e1d4a7400efd63e616984480cb7b68be591f9df Mon Sep 17 00:00:00 2001
From: Tamas Vajk <tamasvajk@github.com>
Date: Wed, 13 Apr 2022 09:59:26 +0200
Subject: [PATCH 1207/1420] Add more annotation tests, add `KClass` to `Class`
 substitution

---
 .../src/main/kotlin/utils/ClassNames.kt       |  9 +++-
 .../annotation_classes/PrintAst.expected      | 49 ++++++++++++++-----
 .../annotation_classes/classes.expected       | 32 +++++++++---
 .../library-tests/annotation_classes/def.kt   |  2 +
 .../library-tests/annotation_classes/use.java |  2 +
 5 files changed, 76 insertions(+), 18 deletions(-)

diff --git a/java/kotlin-extractor/src/main/kotlin/utils/ClassNames.kt b/java/kotlin-extractor/src/main/kotlin/utils/ClassNames.kt
index ab4010242a7..ccb649e9561 100644
--- a/java/kotlin-extractor/src/main/kotlin/utils/ClassNames.kt
+++ b/java/kotlin-extractor/src/main/kotlin/utils/ClassNames.kt
@@ -14,6 +14,7 @@ import org.jetbrains.kotlin.ir.declarations.*
 import org.jetbrains.kotlin.ir.util.fqNameWhenAvailable
 import org.jetbrains.kotlin.ir.util.parentClassOrNull
 import org.jetbrains.kotlin.load.kotlin.JvmPackagePartSource
+import org.jetbrains.kotlin.name.ClassId
 
 // Adapted from Kotlin's interpreter/Utils.kt function 'internalName'
 // Translates class names into their JLS section 13.1 binary name,
@@ -119,4 +120,10 @@ fun getContainingClassOrSelf(decl: IrDeclaration): IrClass? {
 }
 
 fun getJavaEquivalentClassId(c: IrClass) =
-    c.fqNameWhenAvailable?.toUnsafe()?.let { JavaToKotlinClassMap.mapKotlinToJava(it) }
+    c.fqNameWhenAvailable?.toUnsafe()?.let {
+        if (it.asString() == "kotlin.reflect.KClass") {
+            ClassId.fromString("java.lang.Class")
+        } else {
+            JavaToKotlinClassMap.mapKotlinToJava(it)
+        }
+    }
diff --git a/java/ql/test/kotlin/library-tests/annotation_classes/PrintAst.expected b/java/ql/test/kotlin/library-tests/annotation_classes/PrintAst.expected
index 221082cafd9..bd8bced3744 100644
--- a/java/ql/test/kotlin/library-tests/annotation_classes/PrintAst.expected
+++ b/java/ql/test/kotlin/library-tests/annotation_classes/PrintAst.expected
@@ -22,15 +22,15 @@ Annot1j.java:
 def.kt:
 #    0| [CompilationUnit] def
 #    0|   1: [Class] DefKt
-#   23|     1: [Method] fn
+#   25|     1: [Method] fn
 #-----|       4: (Parameters)
-#   23|         0: [Parameter] a
-#   23|       5: [BlockStmt] { ... }
-#   24|         0: [ExprStmt] <Expr>;
-#   24|           0: [MethodAccess] println(...)
-#   24|             -1: [TypeAccess] ConsoleKt
-#   24|             0: [MethodAccess] a(...)
-#   24|               -1: [VarAccess] a
+#   25|         0: [Parameter] a
+#   25|       5: [BlockStmt] { ... }
+#   26|         0: [ExprStmt] <Expr>;
+#   26|           0: [MethodAccess] println(...)
+#   26|             -1: [TypeAccess] ConsoleKt
+#   26|             0: [MethodAccess] a(...)
+#   26|               -1: [VarAccess] a
 #    3|   2: [Interface] Annot0k
 #    3|     1: [Method] a
 #    5|   3: [Interface] Annot1k
@@ -72,10 +72,21 @@ def.kt:
 #    0|           1: [VarAccess] A
 #    0|         1: [Annotation] Annot0k
 #    0|           1: [IntegerLiteral] 1
-#   21|     1: [Constructor] Z
+#   21|       3: [Annotation] Annot0j
+#    0|         1: [IntegerLiteral] 1
+#   22|       4: [Annotation] Annot1j
+#    0|         1: [ErrorExpr] <error expr>
+#    0|         1: [ErrorExpr] <error expr>
+#    0|         1: [ErrorExpr] <error expr>
+#    0|         1: [VarAccess] B
+#    0|         1: [ArrayInit] {...}
+#    0|           1: [VarAccess] C
+#    0|           1: [VarAccess] A
+#    0|         1: [ErrorExpr] <error expr>
+#   23|     1: [Constructor] Z
 #   19|       5: [BlockStmt] { ... }
 #   19|         0: [SuperConstructorInvocationStmt] super(...)
-#   21|         1: [BlockStmt] { ... }
+#   23|         1: [BlockStmt] { ... }
 use.java:
 #    0| [CompilationUnit] use
 #    1|   1: [Class] use
@@ -97,7 +108,7 @@ use.java:
 #    6|       5: [BlockStmt] { ... }
 #    7|         0: [ReturnStmt] return ...
 #    7|           0: [NullLiteral] null
-#   12|     4: [Class] Z
+#   14|     4: [Class] Z
 #-----|       -3: (Annotations)
 #   10|         1: [Annotation] Annot0j
 #   10|           1: [IntegerLiteral] 1
@@ -115,3 +126,19 @@ use.java:
 #   11|               -1: [TypeAccess] Y
 #   11|           6: [Annotation] Annot0j
 #   11|             1: [IntegerLiteral] 2
+#   12|         3: [Annotation] Annot0k
+#   12|           1: [IntegerLiteral] 1
+#   13|         4: [Annotation] Annot1k
+#   13|           1: [IntegerLiteral] 1
+#   13|           2: [StringLiteral] "ac"
+#   13|           3: [TypeLiteral] X.class
+#   13|             0: [TypeAccess] X
+#   13|           4: [VarAccess] Y.B
+#   13|             -1: [TypeAccess] Y
+#   13|           5: [ArrayInit] {...}
+#   13|             3: [VarAccess] Y.C
+#   13|               -1: [TypeAccess] Y
+#   13|             4: [VarAccess] Y.A
+#   13|               -1: [TypeAccess] Y
+#   13|           6: [Annotation] Annot0k
+#   13|             1: [IntegerLiteral] 2
diff --git a/java/ql/test/kotlin/library-tests/annotation_classes/classes.expected b/java/ql/test/kotlin/library-tests/annotation_classes/classes.expected
index 1482615c42a..9928a6f1243 100644
--- a/java/ql/test/kotlin/library-tests/annotation_classes/classes.expected
+++ b/java/ql/test/kotlin/library-tests/annotation_classes/classes.expected
@@ -15,11 +15,16 @@ annotationDeclarations
 | def.kt:5:1:12:1 | Annot1k | def.kt:11:5:11:31 | f |
 annotations
 | def.kt:0:0:0:0 | Annot0k | def.kt:20:1:20:40 | Annot1k | def.kt:3:1:3:60 | Annot0k |
-| def.kt:19:1:19:17 | Annot0k | def.kt:19:1:21:10 | Z | def.kt:3:1:3:60 | Annot0k |
-| def.kt:20:1:20:40 | Annot1k | def.kt:19:1:21:10 | Z | def.kt:5:1:12:1 | Annot1k |
-| use.java:10:5:10:21 | Annot0j | use.java:12:18:12:18 | Z | Annot0j.java:1:19:1:25 | Annot0j |
-| use.java:11:5:11:90 | Annot1j | use.java:12:18:12:18 | Z | Annot1j.java:1:19:1:25 | Annot1j |
+| def.kt:19:1:19:17 | Annot0k | def.kt:19:1:23:10 | Z | def.kt:3:1:3:60 | Annot0k |
+| def.kt:20:1:20:40 | Annot1k | def.kt:19:1:23:10 | Z | def.kt:5:1:12:1 | Annot1k |
+| def.kt:21:1:21:17 | Annot0j | def.kt:19:1:23:10 | Z | Annot0j.java:1:19:1:25 | Annot0j |
+| def.kt:22:1:22:40 | Annot1j | def.kt:19:1:23:10 | Z | Annot1j.java:1:19:1:25 | Annot1j |
+| use.java:10:5:10:21 | Annot0j | use.java:14:18:14:18 | Z | Annot0j.java:1:19:1:25 | Annot0j |
+| use.java:11:5:11:90 | Annot1j | use.java:14:18:14:18 | Z | Annot1j.java:1:19:1:25 | Annot1j |
 | use.java:11:73:11:89 | Annot0j | use.java:11:5:11:90 | Annot1j | Annot0j.java:1:19:1:25 | Annot0j |
+| use.java:12:5:12:19 | Annot0k | use.java:14:18:14:18 | Z | def.kt:3:1:3:60 | Annot0k |
+| use.java:13:5:13:88 | Annot1k | use.java:14:18:14:18 | Z | def.kt:5:1:12:1 | Annot1k |
+| use.java:13:73:13:87 | Annot0k | use.java:13:5:13:88 | Annot1k | def.kt:3:1:3:60 | Annot0k |
 annotationValues
 | def.kt:0:0:0:0 | Annot0k | def.kt:0:0:0:0 | 1 |
 | def.kt:19:1:19:17 | Annot0k | def.kt:0:0:0:0 | 1 |
@@ -29,6 +34,13 @@ annotationValues
 | def.kt:20:1:20:40 | Annot1k | def.kt:0:0:0:0 | X.class |
 | def.kt:20:1:20:40 | Annot1k | def.kt:0:0:0:0 | ab |
 | def.kt:20:1:20:40 | Annot1k | def.kt:0:0:0:0 | {...} |
+| def.kt:21:1:21:17 | Annot0j | def.kt:0:0:0:0 | 1 |
+| def.kt:22:1:22:40 | Annot1j | def.kt:0:0:0:0 | <error expr> |
+| def.kt:22:1:22:40 | Annot1j | def.kt:0:0:0:0 | <error expr> |
+| def.kt:22:1:22:40 | Annot1j | def.kt:0:0:0:0 | <error expr> |
+| def.kt:22:1:22:40 | Annot1j | def.kt:0:0:0:0 | <error expr> |
+| def.kt:22:1:22:40 | Annot1j | def.kt:0:0:0:0 | B |
+| def.kt:22:1:22:40 | Annot1j | def.kt:0:0:0:0 | {...} |
 | use.java:10:5:10:21 | Annot0j | use.java:10:20:10:20 | 1 |
 | use.java:11:5:11:90 | Annot1j | use.java:11:18:11:18 | 1 |
 | use.java:11:5:11:90 | Annot1j | use.java:11:25:11:28 | "ac" |
@@ -37,6 +49,14 @@ annotationValues
 | use.java:11:5:11:90 | Annot1j | use.java:11:57:11:66 | {...} |
 | use.java:11:5:11:90 | Annot1j | use.java:11:73:11:89 | Annot0j |
 | use.java:11:73:11:89 | Annot0j | use.java:11:88:11:88 | 2 |
+| use.java:12:5:12:19 | Annot0k | use.java:12:18:12:18 | 1 |
+| use.java:13:5:13:88 | Annot1k | use.java:13:18:13:18 | 1 |
+| use.java:13:5:13:88 | Annot1k | use.java:13:25:13:28 | "ac" |
+| use.java:13:5:13:88 | Annot1k | use.java:13:35:13:41 | X.class |
+| use.java:13:5:13:88 | Annot1k | use.java:13:48:13:50 | Y.B |
+| use.java:13:5:13:88 | Annot1k | use.java:13:57:13:66 | {...} |
+| use.java:13:5:13:88 | Annot1k | use.java:13:73:13:87 | Annot0k |
+| use.java:13:73:13:87 | Annot0k | use.java:13:86:13:86 | 2 |
 #select
 | Annot0j.java:1:19:1:25 | Annot0j | Interface |
 | Annot1j.java:1:19:1:25 | Annot1j | Interface |
@@ -45,6 +65,6 @@ annotationValues
 | def.kt:5:1:12:1 | Annot1k | Interface |
 | def.kt:14:1:14:10 | X | Class |
 | def.kt:15:1:17:1 | Y | Class |
-| def.kt:19:1:21:10 | Z | Class |
+| def.kt:19:1:23:10 | Z | Class |
 | use.java:1:14:1:16 | use | Class |
-| use.java:12:18:12:18 | Z | Class |
+| use.java:14:18:14:18 | Z | Class |
diff --git a/java/ql/test/kotlin/library-tests/annotation_classes/def.kt b/java/ql/test/kotlin/library-tests/annotation_classes/def.kt
index 47e8c3ae755..6398e3962d1 100644
--- a/java/ql/test/kotlin/library-tests/annotation_classes/def.kt
+++ b/java/ql/test/kotlin/library-tests/annotation_classes/def.kt
@@ -18,6 +18,8 @@ enum class Y {
 
 @Annot0k(abc = 1)
 @Annot1k(d = Y.B, e = arrayOf(Y.C, Y.A))
+@Annot0j(abc = 1)
+@Annot1j(d = Y.B, e = arrayOf(Y.C, Y.A))
 class Z {}
 
 fun fn(a: Annot0k) {
diff --git a/java/ql/test/kotlin/library-tests/annotation_classes/use.java b/java/ql/test/kotlin/library-tests/annotation_classes/use.java
index 60d0c9162c4..ec0dd0fa447 100644
--- a/java/ql/test/kotlin/library-tests/annotation_classes/use.java
+++ b/java/ql/test/kotlin/library-tests/annotation_classes/use.java
@@ -9,5 +9,7 @@ public class use implements Annot0k {
 
     @Annot0j(abc = 1)
     @Annot1j(a = 1, b = "ac", c = X.class, d = Y.B, e = {Y.C, Y.A}, f = @Annot0j(abc = 2))
+    @Annot0k(a = 1)
+    @Annot1k(a = 1, b = "ac", c = X.class, d = Y.B, e = {Y.C, Y.A}, f = @Annot0k(a = 2))
     public class Z { }
 }

From 96a407c9c54f989689a5b605efed57d3f4bf7fef Mon Sep 17 00:00:00 2001
From: Tamas Vajk <tamasvajk@github.com>
Date: Wed, 13 Apr 2022 11:18:43 +0200
Subject: [PATCH 1208/1420] WIP: extract annotations for all declarations

---
 .../src/main/kotlin/KotlinFileExtractor.kt    |  20 +-
 .../CONSISTENCY/children.expected             |   2 +
 .../annotation_classes/DB-CHECK.expected      |  36 +
 .../annotation_classes/PrintAst.expected      | 733 ++++++++++++++----
 .../annotation_classes/classes.expected       |  79 +-
 .../library-tests/annotation_classes/def.kt   |  46 +-
 6 files changed, 736 insertions(+), 180 deletions(-)
 create mode 100644 java/ql/test/kotlin/library-tests/annotation_classes/CONSISTENCY/children.expected
 create mode 100644 java/ql/test/kotlin/library-tests/annotation_classes/DB-CHECK.expected

diff --git a/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt b/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt
index 1b3abd847d9..303561e64e0 100644
--- a/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt
+++ b/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt
@@ -238,6 +238,7 @@ open class KotlinFileExtractor(
                 addModifiers(id, "out")
             }
 
+            extractAnnotations(tp, id)
             return id
         }
     }
@@ -457,9 +458,9 @@ open class KotlinFileExtractor(
         extractDeclInitializers(c.declarations, false) { Pair(blockId, obinitId) }
     }
 
-    private fun extractAnnotations(c: IrClass) {
+    private fun extractAnnotations(c: IrAnnotationContainer, parent: Label<out DbExprparent>) {
         for ((idx, constructorCall: IrConstructorCall) in c.annotations.withIndex()) {
-            extractAnnotation(constructorCall, useClassSource(c), idx)
+            extractAnnotation(constructorCall, parent, idx)
         }
     }
 
@@ -627,7 +628,7 @@ open class KotlinFileExtractor(
 
                 linesOfCode?.linesOfCodeInDeclaration(c, id)
 
-                extractAnnotations(c)
+                extractAnnotations(c, id)
 
                 if (extractFunctionBodies && !c.isAnonymousObject && !c.isLocal)
                     externalClassExtractor.writeStubTrapFile(c)
@@ -819,6 +820,7 @@ open class KotlinFileExtractor(
                 extractTypeAccessRecursive(substitutedType, location, id, -1)
             }
             val syntheticParameterNames = isUnderscoreParameter(vp) || ((vp.parent as? IrFunction)?.let { hasSynthesizedParameterNames(it) } ?: true)
+            extractAnnotations(vp, id)
             return extractValueParameter(id, substitutedType, vp.name.asString(), location, parent, idx, useValueParameter(vp, parentSourceDeclaration), syntheticParameterNames, vp.isVararg, vp.isNoinline, vp.isCrossinline)
         }
     }
@@ -1358,6 +1360,8 @@ open class KotlinFileExtractor(
 
                 linesOfCode?.linesOfCodeInDeclaration(f, id)
 
+                extractAnnotations(f, id)
+
                 return id
             }
         }
@@ -1374,7 +1378,9 @@ open class KotlinFileExtractor(
            DeclarationStackAdjuster(f).use {
                val fNameSuffix = getExtensionReceiverType(f)?.let { it.classFqName?.asString()?.replace(".", "$$") } ?: ""
                val extractType = if (isAnnotationClassField(f)) kClassToJavaClass(f.type) else f.type
-               return extractField(useField(f), "${f.name.asString()}$fNameSuffix", extractType, parentId, tw.getLocation(f), f.visibility, f, isExternalDeclaration(f), f.isFinal, isDirectlyExposedCompanionObjectField(f))
+               val id = useField(f)
+               extractAnnotations(f, id)
+               return extractField(id, "${f.name.asString()}$fNameSuffix", extractType, parentId, tw.getLocation(f), f.visibility, f, isExternalDeclaration(f), f.isFinal, isDirectlyExposedCompanionObjectField(f))
            }
         }
     }
@@ -1467,6 +1473,8 @@ open class KotlinFileExtractor(
 
                 extractVisibility(p, id, p.visibility)
 
+                // TODO: extract annotations
+
                 if (p.isLateinit) {
                     addModifiers(id, "lateinit")
                 }
@@ -1510,6 +1518,8 @@ open class KotlinFileExtractor(
                 ee.correspondingClass?.let {
                     extractDeclaration(it, extractPrivateMembers, extractFunctionBodies)
                 }
+
+                extractAnnotations(ee, id)
             }
         }
     }
@@ -1526,6 +1536,8 @@ open class KotlinFileExtractor(
             val type = useType(ta.expandedType)
             tw.writeKt_type_alias(id, ta.name.asString(), type.kotlinResult.id)
             tw.writeHasLocation(id, locId)
+
+            // TODO: extract annotations
         }
     }
 
diff --git a/java/ql/test/kotlin/library-tests/annotation_classes/CONSISTENCY/children.expected b/java/ql/test/kotlin/library-tests/annotation_classes/CONSISTENCY/children.expected
new file mode 100644
index 00000000000..0ea0953c90a
--- /dev/null
+++ b/java/ql/test/kotlin/library-tests/annotation_classes/CONSISTENCY/children.expected
@@ -0,0 +1,2 @@
+| def.kt:5:1:21:60 | Annot0k | Interface | 0 | duplicate | 0, 1, 2, 3 |
+| def.kt:23:1:23:8 | Annot0k | Annotation | 0 | duplicate | 0 |
diff --git a/java/ql/test/kotlin/library-tests/annotation_classes/DB-CHECK.expected b/java/ql/test/kotlin/library-tests/annotation_classes/DB-CHECK.expected
new file mode 100644
index 00000000000..742cc876428
--- /dev/null
+++ b/java/ql/test/kotlin/library-tests/annotation_classes/DB-CHECK.expected
@@ -0,0 +1,36 @@
+[INVALID_KEY_SET] predicate exprs(@expr id, int kind, @type typeid, @exprparent parent, int idx): The key set {parent, idx} does not functionally determine all fields.
+Here is a pair of tuples that agree on the key set but differ at index 0:
+Tuple 1 in row 10: (103,66,102,88,0)
+Tuple 2 in row 116: (521,66,520,88,0)
+	Relevant element: Tuple 1: id=103
+		Full ID for 103: @"annotation;(88);(102)". The ID may expand to @"annotation;{@"class;Annot0k"};{@"class;kotlin.annotation.Target"}"
+	Relevant element: Tuple 2: id=521
+		Full ID for 521: @"annotation;(88);(520)". The ID may expand to @"annotation;{@"class;Annot0k"};{@"class;java.lang.annotation.Retention"}"
+	Relevant element: Tuple 1: typeid=102
+		Full ID for 102: @"class;kotlin.annotation.Target"
+	Relevant element: Tuple 2: typeid=520
+		Full ID for 520: @"class;java.lang.annotation.Retention"
+	Relevant element: parent=88
+		Full ID for 88: @"class;Annot0k"
+[INVALID_KEY_SET] predicate exprs(@expr id, int kind, @type typeid, @exprparent parent, int idx): The key set {parent, idx} does not functionally determine all fields.
+Here is a pair of tuples that agree on the key set but differ at index 0:
+Tuple 1 in row 28: (172,17,17,170,0)
+Tuple 2 in row 130: (558,17,17,170,0)
+	Relevant element: Tuple 2: id=558
+		Full ID for 558: @"annotationExpr;(170);0". The ID may expand to @"annotationExpr;{@"annotation;{@"class;Annot1k"};{@"class;Annot0k"}"};0"
+	Relevant element: typeid=17
+		Full ID for 17: @"type;int"
+	Relevant element: Tuple 1: parent=170
+		Full ID for 170: @"annotation;(151);(88)". The ID may expand to @"annotation;{@"class;Annot1k"};{@"class;Annot0k"}"
+	Relevant element: Tuple 2: parent=170
+		Full ID for 170: @"annotation;(151);(88)". The ID may expand to @"annotation;{@"class;Annot1k"};{@"class;Annot0k"}"
+[INVALID_KEY] predicate exprs(@expr id, int kind, @type typeid, @exprparent parent, int idx): The key set {id} does not functionally determine all fields.
+Here is a pair of tuples that agree on the key set but differ at index 4:
+Tuple 1 in row 10: (103,66,102,88,0)
+Tuple 2 in row 11: (103,66,102,88,3)
+	Relevant element: id=103
+		Full ID for 103: @"annotation;(88);(102)". The ID may expand to @"annotation;{@"class;Annot0k"};{@"class;kotlin.annotation.Target"}"
+	Relevant element: typeid=102
+		Full ID for 102: @"class;kotlin.annotation.Target"
+	Relevant element: parent=88
+		Full ID for 88: @"class;Annot0k"
diff --git a/java/ql/test/kotlin/library-tests/annotation_classes/PrintAst.expected b/java/ql/test/kotlin/library-tests/annotation_classes/PrintAst.expected
index bd8bced3744..ebfd0bcf81f 100644
--- a/java/ql/test/kotlin/library-tests/annotation_classes/PrintAst.expected
+++ b/java/ql/test/kotlin/library-tests/annotation_classes/PrintAst.expected
@@ -1,144 +1,605 @@
+Annot0j.java:
+#    1| [Interface] Annot0j
+#-----| 1 -> [Method] abc
+
+#    2| [Method] abc
+#-----| 3 -> [TypeAccess] int
+
+#    2| [TypeAccess] int
+
+Annot1j.java:
+#    1| [Interface] Annot1j
+#-----| 1 -> [Method] a
+#-----| 2 -> [Method] b
+#-----| 3 -> [Method] c
+#-----| 4 -> [Method] d
+#-----| 5 -> [Method] e
+#-----| 6 -> [Method] f
+
+#    2| [Method] a
+#-----| 3 -> [TypeAccess] int
+
+#    2| [TypeAccess] int
+
+#    4| [Method] b
+#-----| 3 -> [TypeAccess] String
+
+#    4| [TypeAccess] String
+
+#    6| [Method] c
+#-----| 3 -> [TypeAccess] Class<>
+
+#    6| [TypeAccess] Class<>
+
+def.kt:
+#   34| [Class] Y
+#-----| 2 -> [Method] values
+#-----| 2 -> [Method] valueOf
+#-----| 4 -> [Constructor] Y
+
+Annot1j.java:
+#    8| [Method] d
+#-----| 3 -> [TypeAccess] Y
+
+#    8| [TypeAccess] Y
+
+#   10| [Method] e
+#-----| 3 -> [ArrayTypeAccess] ...[]
+
+#   10| [ArrayTypeAccess] ...[]
+#-----| 0 -> [TypeAccess] Y
+
+#   10| [TypeAccess] Y
+
+#   12| [Method] f
+#-----| 3 -> [TypeAccess] Annot0j
+
+#   12| [TypeAccess] Annot0j
+
+def.kt:
+#    5| [Interface] Annot0k
+#-----| -3 -> (Annotations)
+#-----| 1 -> [Method] a
+
+#   21| [Method] a
+#-----| 1 -> (Annotations)
+
+#   21| [Annotation] JvmName
+#-----| 1 -> [StringLiteral] a
+
+#    0| [StringLiteral] a
+
+#    5| [Annotation] Target
+#-----| 1 -> [ArrayInit] {...}
+
+#    0| [ArrayInit] {...}
+#-----| 1 -> [VarAccess] CLASS
+#-----| 1 -> [VarAccess] ANNOTATION_CLASS
+#-----| 1 -> [VarAccess] TYPE_PARAMETER
+#-----| 1 -> [VarAccess] PROPERTY
+#-----| 1 -> [VarAccess] FIELD
+#-----| 1 -> [VarAccess] LOCAL_VARIABLE
+#-----| 1 -> [VarAccess] VALUE_PARAMETER
+#-----| 1 -> [VarAccess] CONSTRUCTOR
+#-----| 1 -> [VarAccess] FUNCTION
+#-----| 1 -> [VarAccess] PROPERTY_GETTER
+#-----| 1 -> [VarAccess] PROPERTY_SETTER
+#-----| 1 -> [VarAccess] TYPE
+#-----| 1 -> [VarAccess] FILE
+#-----| 1 -> [VarAccess] TYPEALIAS
+
+#    0| [VarAccess] CLASS
+
+#    0| [VarAccess] ANNOTATION_CLASS
+
+#    0| [VarAccess] TYPE_PARAMETER
+
+#    0| [VarAccess] PROPERTY
+
+#    0| [VarAccess] FIELD
+
+#    0| [VarAccess] LOCAL_VARIABLE
+
+#    0| [VarAccess] VALUE_PARAMETER
+
+#    0| [VarAccess] CONSTRUCTOR
+
+#    0| [VarAccess] FUNCTION
+
+#    0| [VarAccess] PROPERTY_GETTER
+
+#    0| [VarAccess] PROPERTY_SETTER
+
+#    0| [VarAccess] TYPE
+
+#    0| [VarAccess] FILE
+
+#    0| [VarAccess] TYPEALIAS
+
+#   23| [Interface] Annot1k
+#-----| -3 -> (Annotations)
+#-----| 1 -> [Method] a
+#-----| 2 -> [Method] b
+#-----| 3 -> [Method] c
+#-----| 4 -> [Method] d
+#-----| 5 -> [Method] e
+#-----| 6 -> [Method] f
+
+#   25| [Method] a
+
+#   26| [Method] b
+
+#   27| [Method] c
+
+#   28| [Method] d
+
+#   29| [Method] e
+
+#   30| [Method] f
+
+#   23| [Annotation] Annot0k
+#-----| 1 -> [IntegerLiteral] 0
+
+#    0| [IntegerLiteral] 0
+
+#   33| [Class] X
+#-----| 1 -> [Constructor] X
+
+#   33| [Constructor] X
+#-----| 5 -> [BlockStmt] { ... }
+
+#   33| [BlockStmt] { ... }
+#-----| 0 -> [SuperConstructorInvocationStmt] super(...)
+#-----| 1 -> [BlockStmt] { ... }
+
+#   33| [SuperConstructorInvocationStmt] super(...)
+
+#   33| [BlockStmt] { ... }
+
+#   34| [Constructor] Y
+#-----| 5 -> [BlockStmt] { ... }
+
+#   34| [BlockStmt] { ... }
+#-----| 0 -> [ExprStmt] <Expr>;
+#-----| 1 -> [BlockStmt] { ... }
+
+#   34| [ExprStmt] <Expr>;
+#-----| 0 -> [ClassInstanceExpr] new Enum(...)
+
+#   34| [ClassInstanceExpr] new Enum(...)
+#-----| -3 -> [TypeAccess] Unit
+
+#   34| [TypeAccess] Unit
+#-----| 0 -> [TypeAccess] Y
+
+#   34| [TypeAccess] Y
+
+#   34| [BlockStmt] { ... }
+
+#    0| [Method] values
+
+#    0| [Method] valueOf
+#-----| 4 -> (Parameters)
+
+#    0| [Parameter] value
+
+#   38| [Class] Z
+#-----| -3 -> (Annotations)
+#-----| 1 -> [Constructor] Z
+
+#   42| [Constructor] Z
+#-----| 1 -> (Annotations)
+#-----| 5 -> [BlockStmt] { ... }
+
+#   41| [BlockStmt] { ... }
+#-----| 0 -> [SuperConstructorInvocationStmt] super(...)
+#-----| 1 -> [BlockStmt] { ... }
+
+#   42| [SuperConstructorInvocationStmt] super(...)
+
+#   42| [BlockStmt] { ... }
+
+#   41| [Annotation] Annot0k
+#-----| 1 -> [IntegerLiteral] 0
+
+#    0| [IntegerLiteral] 0
+
+#   38| [Annotation] Annot0k
+#-----| 1 -> [IntegerLiteral] 1
+
+#    0| [IntegerLiteral] 1
+
+#   39| [Annotation] Annot1k
+#-----| 1 -> [IntegerLiteral] 2
+#-----| 1 -> [StringLiteral] ab
+#-----| 1 -> [TypeLiteral] X.class
+#-----| 1 -> [VarAccess] B
+#-----| 1 -> [ArrayInit] {...}
+#-----| 1 -> [Annotation] Annot0k
+
+#    0| [IntegerLiteral] 2
+
+#    0| [StringLiteral] ab
+
+#    0| [TypeLiteral] X.class
+#-----| 0 -> [TypeAccess] X
+
+#    0| [TypeAccess] X
+
+#    0| [VarAccess] B
+
+#    0| [ArrayInit] {...}
+#-----| 1 -> [VarAccess] C
+#-----| 1 -> [VarAccess] A
+
+#    0| [VarAccess] C
+
+#    0| [VarAccess] A
+
+#    0| [Annotation] Annot0k
+#-----| 1 -> [IntegerLiteral] 1
+
+#    0| [IntegerLiteral] 1
+
+#    0| [Class] DefKt
+#-----| 2 -> [Method] fn
+#-----| 3 -> [FieldDeclaration] int p;
+#-----| 4 -> [Method] getP
+#-----| 4 -> [Method] setP
+#-----| 6 -> [ExtensionMethod] myExtension
+
+#   46| [Method] fn
+#-----| 1 -> (Annotations)
+#-----| 2 -> (Generic Parameters)
+#-----| 4 -> (Parameters)
+#-----| 5 -> [BlockStmt] { ... }
+
+#   46| [TypeVariable] T
+#-----| 0 -> [Annotation] Annot0k
+
+#   46| [Annotation] Annot0k
+#-----| 1 -> [IntegerLiteral] 0
+
+#    0| [IntegerLiteral] 0
+
+#   46| [Parameter] a
+#-----| -1 -> (Annotations)
+
+#   46| [Annotation] Annot0k
+#-----| 1 -> [IntegerLiteral] 0
+
+#    0| [IntegerLiteral] 0
+
+#   46| [BlockStmt] { ... }
+#-----| 0 -> [ExprStmt] <Expr>;
+#-----| 1 -> [LocalVariableDeclStmt] var ...;
+
+#   47| [ExprStmt] <Expr>;
+#-----| 0 -> [MethodAccess] println(...)
+
+#   47| [MethodAccess] println(...)
+#-----| -1 -> [TypeAccess] ConsoleKt
+#-----| 0 -> [MethodAccess] a(...)
+
+#   47| [TypeAccess] ConsoleKt
+
+#   47| [MethodAccess] a(...)
+#-----| -1 -> [VarAccess] a
+
+#   47| [VarAccess] a
+
+#   49| [LocalVariableDeclStmt] var ...;
+#-----| 1 -> [LocalVariableDeclExpr] x
+
+#   49| [LocalVariableDeclExpr] x
+#-----| 0 -> [IntegerLiteral] 10
+
+#   50| [IntegerLiteral] 10
+
+#   45| [Annotation] Annot0k
+#-----| 1 -> [IntegerLiteral] 0
+
+#    0| [IntegerLiteral] 0
+
+#   57| [Method] getP
+#-----| 1 -> (Annotations)
+#-----| 5 -> [BlockStmt] { ... }
+
+#   57| [BlockStmt] { ... }
+#-----| 0 -> [ReturnStmt] return ...
+
+#   57| [ReturnStmt] return ...
+#-----| 0 -> [VarAccess] p
+
+#   57| [VarAccess] p
+
+#   54| [Annotation] Annot0k
+#-----| 1 -> [IntegerLiteral] 0
+
+#    0| [IntegerLiteral] 0
+
+#   57| [Method] setP
+#-----| 1 -> (Annotations)
+#-----| 4 -> (Parameters)
+#-----| 5 -> [BlockStmt] { ... }
+
+#   57| [Parameter] <set-?>
+
+#   57| [BlockStmt] { ... }
+#-----| 0 -> [ExprStmt] <Expr>;
+
+#   57| [ExprStmt] <Expr>;
+#-----| 0 -> [AssignExpr] ...=...
+
+#   57| [AssignExpr] ...=...
+#-----| 0 -> [VarAccess] p
+#-----| 1 -> [VarAccess] <set-?>
+
+#   57| [VarAccess] p
+
+#   57| [VarAccess] <set-?>
+
+#   55| [Annotation] Annot0k
+#-----| 1 -> [IntegerLiteral] 0
+
+#    0| [IntegerLiteral] 0
+
+#   56| [Annotation] Annot0k
+#-----| 1 -> [IntegerLiteral] 0
+
+#    0| [IntegerLiteral] 0
+
+#   53| [FieldDeclaration] int p;
+#-----| -2 -> (Annotations)
+#-----| -1 -> [TypeAccess] int
+#-----| 0 -> [IntegerLiteral] 5
+
+#   53| [TypeAccess] int
+
+#   59| [ExtensionMethod] myExtension
+#-----| 4 -> (Parameters)
+#-----| 5 -> [BlockStmt] { ... }
+
+#   59| [Parameter] <this>
+#-----| -1 -> (Annotations)
+
+#   59| [Annotation] Annot0k
+#-----| 1 -> [IntegerLiteral] 0
+
+#    0| [IntegerLiteral] 0
+
+#   59| [BlockStmt] { ... }
+
+#   57| [IntegerLiteral] 5
+
+use.java:
+#    1| [Class] use
+#-----| -1 -> (Base Types)
+#-----| 2 -> [Method] a
+#-----| 3 -> [Method] annotationType
+#-----| 4 -> [Class] Z
+
+#    1| [TypeAccess] Annot0k
+
+#    3| [Method] a
+#-----| 1 -> (Annotations)
+#-----| 3 -> [TypeAccess] int
+#-----| 5 -> [BlockStmt] { ... }
+
+#    2| [Annotation] Override
+
+#    3| [BlockStmt] { ... }
+#-----| 0 -> [ReturnStmt] return ...
+
+#    3| [TypeAccess] int
+
+#    3| [ReturnStmt] return ...
+#-----| 0 -> [IntegerLiteral] 1
+
+#    3| [IntegerLiteral] 1
+
+#    6| [Method] annotationType
+#-----| 1 -> (Annotations)
+#-----| 3 -> [TypeAccess] Class<? extends Annotation>
+#-----| 5 -> [BlockStmt] { ... }
+
+#    5| [Annotation] Override
+
+#    6| [BlockStmt] { ... }
+#-----| 0 -> [ReturnStmt] return ...
+
+#    6| [TypeAccess] Class<? extends Annotation>
+#-----| 0 -> [WildcardTypeAccess] ? ...
+
+#    6| [WildcardTypeAccess] ? ...
+#-----| 0 -> [TypeAccess] Annotation
+
+#    6| [TypeAccess] Annotation
+
+#    7| [ReturnStmt] return ...
+#-----| 0 -> [NullLiteral] null
+
+#    7| [NullLiteral] null
+
+#   14| [Class] Z
+#-----| -3 -> (Annotations)
+
+#   10| [Annotation] Annot0j
+#-----| 1 -> [IntegerLiteral] 1
+
+#   10| [IntegerLiteral] 1
+
+#   12| [Annotation] Annot0k
+#-----| 1 -> [IntegerLiteral] 1
+
+#   12| [IntegerLiteral] 1
+
+#   11| [Annotation] Annot1j
+#-----| 1 -> [IntegerLiteral] 1
+#-----| 2 -> [StringLiteral] "ac"
+#-----| 3 -> [TypeLiteral] X.class
+#-----| 4 -> [VarAccess] Y.B
+#-----| 5 -> [ArrayInit] {...}
+#-----| 6 -> [Annotation] Annot0j
+
+#   11| [IntegerLiteral] 1
+
+#   11| [StringLiteral] "ac"
+
+#   11| [TypeLiteral] X.class
+#-----| 0 -> [TypeAccess] X
+
+#   11| [TypeAccess] X
+
+#   11| [VarAccess] Y.B
+#-----| -1 -> [TypeAccess] Y
+
+#   11| [TypeAccess] Y
+
+#   11| [ArrayInit] {...}
+#-----| 3 -> [VarAccess] Y.C
+#-----| 4 -> [VarAccess] Y.A
+
+#   11| [VarAccess] Y.C
+#-----| -1 -> [TypeAccess] Y
+
+#   11| [TypeAccess] Y
+
+#   11| [VarAccess] Y.A
+#-----| -1 -> [TypeAccess] Y
+
+#   11| [TypeAccess] Y
+
+#   11| [Annotation] Annot0j
+#-----| 1 -> [IntegerLiteral] 2
+
+#   11| [IntegerLiteral] 2
+
+#   13| [Annotation] Annot1k
+#-----| 1 -> [IntegerLiteral] 1
+#-----| 2 -> [StringLiteral] "ac"
+#-----| 3 -> [TypeLiteral] X.class
+#-----| 4 -> [VarAccess] Y.B
+#-----| 5 -> [ArrayInit] {...}
+#-----| 6 -> [Annotation] Annot0k
+
+#   13| [IntegerLiteral] 1
+
+#   13| [StringLiteral] "ac"
+
+#   13| [TypeLiteral] X.class
+#-----| 0 -> [TypeAccess] X
+
+#   13| [TypeAccess] X
+
+#   13| [VarAccess] Y.B
+#-----| -1 -> [TypeAccess] Y
+
+#   13| [TypeAccess] Y
+
+#   13| [ArrayInit] {...}
+#-----| 3 -> [VarAccess] Y.C
+#-----| 4 -> [VarAccess] Y.A
+
+#   13| [VarAccess] Y.C
+#-----| -1 -> [TypeAccess] Y
+
+#   13| [TypeAccess] Y
+
+#   13| [VarAccess] Y.A
+#-----| -1 -> [TypeAccess] Y
+
+#   13| [TypeAccess] Y
+
+#   13| [Annotation] Annot0k
+#-----| 1 -> [IntegerLiteral] 2
+
+#   13| [IntegerLiteral] 2
+
+#-----| (Base Types)
+#-----| 0 -> [TypeAccess] Annot0k
+
+#-----| (Annotations)
+#-----| 4 -> [Annotation] Target
+
+#-----| (Annotations)
+#-----| 1 -> [Annotation] JvmName
+
+#-----| (Annotations)
+#-----| 3 -> [Annotation] Annot0k
+
+#-----| (Annotations)
+#-----| 1 -> [Annotation] Annot0k
+#-----| 2 -> [Annotation] Annot1k
+
+#-----| (Annotations)
+#-----| 1 -> [Annotation] Annot0k
+
+#-----| (Annotations)
+#-----| 1 -> [Annotation] Annot0k
+
+#-----| (Annotations)
+#-----| 1 -> [Annotation] Annot0k
+
+#-----| (Annotations)
+#-----| 1 -> [Annotation] Annot0k
+
+#-----| (Annotations)
+#-----| 1 -> [Annotation] Annot0k
+
+#-----| (Annotations)
+#-----| 1 -> [Annotation] Annot0k
+
+#-----| (Annotations)
+#-----| 1 -> [Annotation] Annot0k
+
+#-----| (Annotations)
+#-----| 1 -> [Annotation] Annot0k
+
+#-----| (Annotations)
+#-----| 1 -> [Annotation] Override
+
+#-----| (Annotations)
+#-----| 1 -> [Annotation] Override
+
+#-----| (Annotations)
+#-----| 1 -> [Annotation] Annot0j
+#-----| 2 -> [Annotation] Annot1j
+#-----| 3 -> [Annotation] Annot0k
+#-----| 4 -> [Annotation] Annot1k
+
+#-----| (Parameters)
+#-----| 0 -> [Parameter] value
+
+#-----| (Parameters)
+#-----| 0 -> [Parameter] a
+
+#-----| (Parameters)
+#-----| 0 -> [Parameter] <set-?>
+
+#-----| (Parameters)
+#-----| 0 -> [Parameter] <this>
+
+#-----| (Generic Parameters)
+#-----| 0 -> [TypeVariable] T
+
 Annot0j.java:
 #    0| [CompilationUnit] Annot0j
-#    1|   1: [Interface] Annot0j
-#    2|     1: [Method] abc
-#    2|       3: [TypeAccess] int
+#-----| 1 -> [Interface] Annot0j
+
 Annot1j.java:
 #    0| [CompilationUnit] Annot1j
-#    1|   1: [Interface] Annot1j
-#    2|     1: [Method] a
-#    2|       3: [TypeAccess] int
-#    4|     2: [Method] b
-#    4|       3: [TypeAccess] String
-#    6|     3: [Method] c
-#    6|       3: [TypeAccess] Class<>
-#    8|     4: [Method] d
-#    8|       3: [TypeAccess] Y
-#   10|     5: [Method] e
-#   10|       3: [ArrayTypeAccess] ...[]
-#   10|         0: [TypeAccess] Y
-#   12|     6: [Method] f
-#   12|       3: [TypeAccess] Annot0j
+#-----| 1 -> [Interface] Annot1j
+
 def.kt:
 #    0| [CompilationUnit] def
-#    0|   1: [Class] DefKt
-#   25|     1: [Method] fn
-#-----|       4: (Parameters)
-#   25|         0: [Parameter] a
-#   25|       5: [BlockStmt] { ... }
-#   26|         0: [ExprStmt] <Expr>;
-#   26|           0: [MethodAccess] println(...)
-#   26|             -1: [TypeAccess] ConsoleKt
-#   26|             0: [MethodAccess] a(...)
-#   26|               -1: [VarAccess] a
-#    3|   2: [Interface] Annot0k
-#    3|     1: [Method] a
-#    5|   3: [Interface] Annot1k
-#    6|     1: [Method] a
-#    7|     2: [Method] b
-#    8|     3: [Method] c
-#    9|     4: [Method] d
-#   10|     5: [Method] e
-#   11|     6: [Method] f
-#   14|   4: [Class] X
-#   14|     1: [Constructor] X
-#   14|       5: [BlockStmt] { ... }
-#   14|         0: [SuperConstructorInvocationStmt] super(...)
-#   14|         1: [BlockStmt] { ... }
-#   15|   5: [Class] Y
-#    0|     2: [Method] values
-#    0|     2: [Method] valueOf
-#-----|       4: (Parameters)
-#    0|         0: [Parameter] value
-#   15|     4: [Constructor] Y
-#   15|       5: [BlockStmt] { ... }
-#   15|         0: [ExprStmt] <Expr>;
-#   15|           0: [ClassInstanceExpr] new Enum(...)
-#   15|             -3: [TypeAccess] Unit
-#   15|               0: [TypeAccess] Y
-#   15|         1: [BlockStmt] { ... }
-#   19|   6: [Class] Z
-#-----|     -3: (Annotations)
-#   19|       1: [Annotation] Annot0k
-#    0|         1: [IntegerLiteral] 1
-#   20|       2: [Annotation] Annot1k
-#    0|         1: [IntegerLiteral] 2
-#    0|         1: [StringLiteral] ab
-#    0|         1: [TypeLiteral] X.class
-#    0|           0: [TypeAccess] X
-#    0|         1: [VarAccess] B
-#    0|         1: [ArrayInit] {...}
-#    0|           1: [VarAccess] C
-#    0|           1: [VarAccess] A
-#    0|         1: [Annotation] Annot0k
-#    0|           1: [IntegerLiteral] 1
-#   21|       3: [Annotation] Annot0j
-#    0|         1: [IntegerLiteral] 1
-#   22|       4: [Annotation] Annot1j
-#    0|         1: [ErrorExpr] <error expr>
-#    0|         1: [ErrorExpr] <error expr>
-#    0|         1: [ErrorExpr] <error expr>
-#    0|         1: [VarAccess] B
-#    0|         1: [ArrayInit] {...}
-#    0|           1: [VarAccess] C
-#    0|           1: [VarAccess] A
-#    0|         1: [ErrorExpr] <error expr>
-#   23|     1: [Constructor] Z
-#   19|       5: [BlockStmt] { ... }
-#   19|         0: [SuperConstructorInvocationStmt] super(...)
-#   23|         1: [BlockStmt] { ... }
+#-----| 1 -> [Class] DefKt
+#-----| 2 -> [Interface] Annot0k
+#-----| 3 -> [Interface] Annot1k
+#-----| 4 -> [Class] X
+#-----| 5 -> [Class] Y
+#-----| 6 -> [Class] Z
+
 use.java:
 #    0| [CompilationUnit] use
-#    1|   1: [Class] use
-#-----|     -1: (Base Types)
-#    1|       0: [TypeAccess] Annot0k
-#    3|     2: [Method] a
-#-----|       1: (Annotations)
-#    2|         1: [Annotation] Override
-#    3|       3: [TypeAccess] int
-#    3|       5: [BlockStmt] { ... }
-#    3|         0: [ReturnStmt] return ...
-#    3|           0: [IntegerLiteral] 1
-#    6|     3: [Method] annotationType
-#-----|       1: (Annotations)
-#    5|         1: [Annotation] Override
-#    6|       3: [TypeAccess] Class<? extends Annotation>
-#    6|         0: [WildcardTypeAccess] ? ...
-#    6|           0: [TypeAccess] Annotation
-#    6|       5: [BlockStmt] { ... }
-#    7|         0: [ReturnStmt] return ...
-#    7|           0: [NullLiteral] null
-#   14|     4: [Class] Z
-#-----|       -3: (Annotations)
-#   10|         1: [Annotation] Annot0j
-#   10|           1: [IntegerLiteral] 1
-#   11|         2: [Annotation] Annot1j
-#   11|           1: [IntegerLiteral] 1
-#   11|           2: [StringLiteral] "ac"
-#   11|           3: [TypeLiteral] X.class
-#   11|             0: [TypeAccess] X
-#   11|           4: [VarAccess] Y.B
-#   11|             -1: [TypeAccess] Y
-#   11|           5: [ArrayInit] {...}
-#   11|             3: [VarAccess] Y.C
-#   11|               -1: [TypeAccess] Y
-#   11|             4: [VarAccess] Y.A
-#   11|               -1: [TypeAccess] Y
-#   11|           6: [Annotation] Annot0j
-#   11|             1: [IntegerLiteral] 2
-#   12|         3: [Annotation] Annot0k
-#   12|           1: [IntegerLiteral] 1
-#   13|         4: [Annotation] Annot1k
-#   13|           1: [IntegerLiteral] 1
-#   13|           2: [StringLiteral] "ac"
-#   13|           3: [TypeLiteral] X.class
-#   13|             0: [TypeAccess] X
-#   13|           4: [VarAccess] Y.B
-#   13|             -1: [TypeAccess] Y
-#   13|           5: [ArrayInit] {...}
-#   13|             3: [VarAccess] Y.C
-#   13|               -1: [TypeAccess] Y
-#   13|             4: [VarAccess] Y.A
-#   13|               -1: [TypeAccess] Y
-#   13|           6: [Annotation] Annot0k
-#   13|             1: [IntegerLiteral] 2
+#-----| 1 -> [Class] use
diff --git a/java/ql/test/kotlin/library-tests/annotation_classes/classes.expected b/java/ql/test/kotlin/library-tests/annotation_classes/classes.expected
index 9928a6f1243..917bacb6337 100644
--- a/java/ql/test/kotlin/library-tests/annotation_classes/classes.expected
+++ b/java/ql/test/kotlin/library-tests/annotation_classes/classes.expected
@@ -6,41 +6,52 @@ annotationDeclarations
 | Annot1j.java:1:19:1:25 | Annot1j | Annot1j.java:8:7:8:7 | d |
 | Annot1j.java:1:19:1:25 | Annot1j | Annot1j.java:10:9:10:9 | e |
 | Annot1j.java:1:19:1:25 | Annot1j | Annot1j.java:12:13:12:13 | f |
-| def.kt:3:1:3:60 | Annot0k | def.kt:3:44:3:59 | a |
-| def.kt:5:1:12:1 | Annot1k | def.kt:6:5:6:18 | a |
-| def.kt:5:1:12:1 | Annot1k | def.kt:7:5:7:24 | b |
-| def.kt:5:1:12:1 | Annot1k | def.kt:8:5:8:31 | c |
-| def.kt:5:1:12:1 | Annot1k | def.kt:9:5:9:18 | d |
-| def.kt:5:1:12:1 | Annot1k | def.kt:10:5:10:32 | e |
-| def.kt:5:1:12:1 | Annot1k | def.kt:11:5:11:31 | f |
+| def.kt:5:1:21:60 | Annot0k | def.kt:21:44:21:59 | a |
+| def.kt:23:1:31:1 | Annot1k | def.kt:25:5:25:18 | a |
+| def.kt:23:1:31:1 | Annot1k | def.kt:26:5:26:24 | b |
+| def.kt:23:1:31:1 | Annot1k | def.kt:27:5:27:31 | c |
+| def.kt:23:1:31:1 | Annot1k | def.kt:28:5:28:18 | d |
+| def.kt:23:1:31:1 | Annot1k | def.kt:29:5:29:32 | e |
+| def.kt:23:1:31:1 | Annot1k | def.kt:30:5:30:31 | f |
 annotations
-| def.kt:0:0:0:0 | Annot0k | def.kt:20:1:20:40 | Annot1k | def.kt:3:1:3:60 | Annot0k |
-| def.kt:19:1:19:17 | Annot0k | def.kt:19:1:23:10 | Z | def.kt:3:1:3:60 | Annot0k |
-| def.kt:20:1:20:40 | Annot1k | def.kt:19:1:23:10 | Z | def.kt:5:1:12:1 | Annot1k |
-| def.kt:21:1:21:17 | Annot0j | def.kt:19:1:23:10 | Z | Annot0j.java:1:19:1:25 | Annot0j |
-| def.kt:22:1:22:40 | Annot1j | def.kt:19:1:23:10 | Z | Annot1j.java:1:19:1:25 | Annot1j |
+| def.kt:0:0:0:0 | Annot0k | def.kt:39:1:39:40 | Annot1k | def.kt:5:1:21:60 | Annot0k |
+| def.kt:23:1:23:8 | Annot0k | def.kt:23:1:31:1 | Annot1k | def.kt:5:1:21:60 | Annot0k |
+| def.kt:38:1:38:17 | Annot0k | def.kt:38:1:43:1 | Z | def.kt:5:1:21:60 | Annot0k |
+| def.kt:39:1:39:40 | Annot1k | def.kt:38:1:43:1 | Z | def.kt:23:1:31:1 | Annot1k |
+| def.kt:41:5:41:12 | Annot0k | def.kt:42:5:42:19 | Z | def.kt:5:1:21:60 | Annot0k |
+| def.kt:45:1:45:8 | Annot0k | def.kt:46:1:51:1 | fn | def.kt:5:1:21:60 | Annot0k |
+| def.kt:46:6:46:13 | Annot0k | def.kt:46:6:46:15 | T | def.kt:5:1:21:60 | Annot0k |
+| def.kt:46:21:46:28 | Annot0k | def.kt:46:21:46:39 | a | def.kt:5:1:21:60 | Annot0k |
+| def.kt:54:1:54:12 | Annot0k | def.kt:57:1:57:23 | getP | def.kt:5:1:21:60 | Annot0k |
+| def.kt:55:1:55:12 | Annot0k | def.kt:57:1:57:23 | setP | def.kt:5:1:21:60 | Annot0k |
+| def.kt:56:1:56:14 | Annot0k | def.kt:53:1:57:23 | p | def.kt:5:1:21:60 | Annot0k |
+| def.kt:59:5:59:21 | Annot0k | def.kt:59:5:59:28 | <this> | def.kt:5:1:21:60 | Annot0k |
 | use.java:10:5:10:21 | Annot0j | use.java:14:18:14:18 | Z | Annot0j.java:1:19:1:25 | Annot0j |
 | use.java:11:5:11:90 | Annot1j | use.java:14:18:14:18 | Z | Annot1j.java:1:19:1:25 | Annot1j |
 | use.java:11:73:11:89 | Annot0j | use.java:11:5:11:90 | Annot1j | Annot0j.java:1:19:1:25 | Annot0j |
-| use.java:12:5:12:19 | Annot0k | use.java:14:18:14:18 | Z | def.kt:3:1:3:60 | Annot0k |
-| use.java:13:5:13:88 | Annot1k | use.java:14:18:14:18 | Z | def.kt:5:1:12:1 | Annot1k |
-| use.java:13:73:13:87 | Annot0k | use.java:13:5:13:88 | Annot1k | def.kt:3:1:3:60 | Annot0k |
+| use.java:12:5:12:19 | Annot0k | use.java:14:18:14:18 | Z | def.kt:5:1:21:60 | Annot0k |
+| use.java:13:5:13:88 | Annot1k | use.java:14:18:14:18 | Z | def.kt:23:1:31:1 | Annot1k |
+| use.java:13:73:13:87 | Annot0k | use.java:13:5:13:88 | Annot1k | def.kt:5:1:21:60 | Annot0k |
 annotationValues
 | def.kt:0:0:0:0 | Annot0k | def.kt:0:0:0:0 | 1 |
-| def.kt:19:1:19:17 | Annot0k | def.kt:0:0:0:0 | 1 |
-| def.kt:20:1:20:40 | Annot1k | def.kt:0:0:0:0 | 2 |
-| def.kt:20:1:20:40 | Annot1k | def.kt:0:0:0:0 | Annot0k |
-| def.kt:20:1:20:40 | Annot1k | def.kt:0:0:0:0 | B |
-| def.kt:20:1:20:40 | Annot1k | def.kt:0:0:0:0 | X.class |
-| def.kt:20:1:20:40 | Annot1k | def.kt:0:0:0:0 | ab |
-| def.kt:20:1:20:40 | Annot1k | def.kt:0:0:0:0 | {...} |
-| def.kt:21:1:21:17 | Annot0j | def.kt:0:0:0:0 | 1 |
-| def.kt:22:1:22:40 | Annot1j | def.kt:0:0:0:0 | <error expr> |
-| def.kt:22:1:22:40 | Annot1j | def.kt:0:0:0:0 | <error expr> |
-| def.kt:22:1:22:40 | Annot1j | def.kt:0:0:0:0 | <error expr> |
-| def.kt:22:1:22:40 | Annot1j | def.kt:0:0:0:0 | <error expr> |
-| def.kt:22:1:22:40 | Annot1j | def.kt:0:0:0:0 | B |
-| def.kt:22:1:22:40 | Annot1j | def.kt:0:0:0:0 | {...} |
+| def.kt:5:1:20:1 | Target | def.kt:0:0:0:0 | {...} |
+| def.kt:21:26:21:42 | JvmName | def.kt:0:0:0:0 | a |
+| def.kt:23:1:23:8 | Annot0k | def.kt:0:0:0:0 | 0 |
+| def.kt:38:1:38:17 | Annot0k | def.kt:0:0:0:0 | 1 |
+| def.kt:39:1:39:40 | Annot1k | def.kt:0:0:0:0 | 2 |
+| def.kt:39:1:39:40 | Annot1k | def.kt:0:0:0:0 | Annot0k |
+| def.kt:39:1:39:40 | Annot1k | def.kt:0:0:0:0 | B |
+| def.kt:39:1:39:40 | Annot1k | def.kt:0:0:0:0 | X.class |
+| def.kt:39:1:39:40 | Annot1k | def.kt:0:0:0:0 | ab |
+| def.kt:39:1:39:40 | Annot1k | def.kt:0:0:0:0 | {...} |
+| def.kt:41:5:41:12 | Annot0k | def.kt:0:0:0:0 | 0 |
+| def.kt:45:1:45:8 | Annot0k | def.kt:0:0:0:0 | 0 |
+| def.kt:46:6:46:13 | Annot0k | def.kt:0:0:0:0 | 0 |
+| def.kt:46:21:46:28 | Annot0k | def.kt:0:0:0:0 | 0 |
+| def.kt:54:1:54:12 | Annot0k | def.kt:0:0:0:0 | 0 |
+| def.kt:55:1:55:12 | Annot0k | def.kt:0:0:0:0 | 0 |
+| def.kt:56:1:56:14 | Annot0k | def.kt:0:0:0:0 | 0 |
+| def.kt:59:5:59:21 | Annot0k | def.kt:0:0:0:0 | 0 |
 | use.java:10:5:10:21 | Annot0j | use.java:10:20:10:20 | 1 |
 | use.java:11:5:11:90 | Annot1j | use.java:11:18:11:18 | 1 |
 | use.java:11:5:11:90 | Annot1j | use.java:11:25:11:28 | "ac" |
@@ -61,10 +72,10 @@ annotationValues
 | Annot0j.java:1:19:1:25 | Annot0j | Interface |
 | Annot1j.java:1:19:1:25 | Annot1j | Interface |
 | def.kt:0:0:0:0 | DefKt | Class |
-| def.kt:3:1:3:60 | Annot0k | Interface |
-| def.kt:5:1:12:1 | Annot1k | Interface |
-| def.kt:14:1:14:10 | X | Class |
-| def.kt:15:1:17:1 | Y | Class |
-| def.kt:19:1:23:10 | Z | Class |
+| def.kt:5:1:21:60 | Annot0k | Interface |
+| def.kt:23:1:31:1 | Annot1k | Interface |
+| def.kt:33:1:33:10 | X | Class |
+| def.kt:34:1:36:1 | Y | Class |
+| def.kt:38:1:43:1 | Z | Class |
 | use.java:1:14:1:16 | use | Class |
 | use.java:14:18:14:18 | Z | Class |
diff --git a/java/ql/test/kotlin/library-tests/annotation_classes/def.kt b/java/ql/test/kotlin/library-tests/annotation_classes/def.kt
index 6398e3962d1..f499d1026fc 100644
--- a/java/ql/test/kotlin/library-tests/annotation_classes/def.kt
+++ b/java/ql/test/kotlin/library-tests/annotation_classes/def.kt
@@ -1,7 +1,26 @@
+@file:Annot0k
+
 import kotlin.reflect.KClass
 
+@Target(AnnotationTarget.CLASS,
+    AnnotationTarget.ANNOTATION_CLASS,
+    AnnotationTarget.TYPE_PARAMETER,
+    AnnotationTarget.PROPERTY,
+    AnnotationTarget.FIELD,
+    AnnotationTarget.LOCAL_VARIABLE,    // TODO
+    AnnotationTarget.VALUE_PARAMETER,
+    AnnotationTarget.CONSTRUCTOR,
+    AnnotationTarget.FUNCTION,
+    AnnotationTarget.PROPERTY_GETTER,
+    AnnotationTarget.PROPERTY_SETTER,
+    AnnotationTarget.TYPE,              // TODO
+    //AnnotationTarget.EXPRESSION,      // TODO
+    AnnotationTarget.FILE,              // TODO
+    AnnotationTarget.TYPEALIAS          // TODO
+)
 annotation class Annot0k(@get:JvmName("a") val abc: Int = 0)
 
+@Annot0k
 annotation class Annot1k(
     val a: Int = 2,
     val b: String = "ab",
@@ -18,11 +37,26 @@ enum class Y {
 
 @Annot0k(abc = 1)
 @Annot1k(d = Y.B, e = arrayOf(Y.C, Y.A))
-@Annot0j(abc = 1)
-@Annot1j(d = Y.B, e = arrayOf(Y.C, Y.A))
-class Z {}
-
-fun fn(a: Annot0k) {
-    println(a.abc)
+class Z {
+    @Annot0k
+    constructor(){}
 }
 
+@Annot0k
+fun <@Annot0k T> fn(@Annot0k a: Annot0k) {
+    println(a.abc)
+
+    @Annot0k
+    var x = 10
+}
+
+@Annot0k
+@get:Annot0k
+@set:Annot0k
+@field:Annot0k
+var p: @Annot0k Int = 5
+
+fun @receiver:Annot0k String.myExtension() { }
+
+@Annot0k
+typealias AAA = Z

From fed770fcd1ca9de661ef2141228762e2564f6913 Mon Sep 17 00:00:00 2001
From: Tamas Vajk <tamasvajk@github.com>
Date: Wed, 13 Apr 2022 11:48:46 +0200
Subject: [PATCH 1209/1420] Move kotlin annotations to negative child index

---
 .../src/main/kotlin/KotlinFileExtractor.kt    |  4 +--
 .../CONSISTENCY/children.expected             |  2 --
 .../annotation_classes/DB-CHECK.expected      | 36 -------------------
 .../annotation_classes/PrintAst.expected      | 15 +++++---
 .../annotation_classes/classes.expected       |  1 +
 5 files changed, 14 insertions(+), 44 deletions(-)
 delete mode 100644 java/ql/test/kotlin/library-tests/annotation_classes/CONSISTENCY/children.expected
 delete mode 100644 java/ql/test/kotlin/library-tests/annotation_classes/DB-CHECK.expected

diff --git a/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt b/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt
index 303561e64e0..3c7b716bbcc 100644
--- a/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt
+++ b/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt
@@ -460,7 +460,7 @@ open class KotlinFileExtractor(
 
     private fun extractAnnotations(c: IrAnnotationContainer, parent: Label<out DbExprparent>) {
         for ((idx, constructorCall: IrConstructorCall) in c.annotations.withIndex()) {
-            extractAnnotation(constructorCall, parent, idx)
+            extractAnnotation(constructorCall, parent, -1 - idx)
         }
     }
 
@@ -471,7 +471,7 @@ open class KotlinFileExtractor(
     ): Label<out DbExpr> {
         val t = useType(constructorCall.type)
 
-        val id = tw.getLabelFor<DbDeclannotation>("@\"annotation;{$parent};{${t.javaResult.id}}\"")
+        val id = tw.getLabelFor<DbDeclannotation>("@\"annotation_kotlin;{$parent};{${t.javaResult.id}}\"")
         tw.writeExprs_declannotation(id, t.javaResult.id, parent, idx)
         tw.writeExprsKotlinType(id, t.kotlinResult.id)
 
diff --git a/java/ql/test/kotlin/library-tests/annotation_classes/CONSISTENCY/children.expected b/java/ql/test/kotlin/library-tests/annotation_classes/CONSISTENCY/children.expected
deleted file mode 100644
index 0ea0953c90a..00000000000
--- a/java/ql/test/kotlin/library-tests/annotation_classes/CONSISTENCY/children.expected
+++ /dev/null
@@ -1,2 +0,0 @@
-| def.kt:5:1:21:60 | Annot0k | Interface | 0 | duplicate | 0, 1, 2, 3 |
-| def.kt:23:1:23:8 | Annot0k | Annotation | 0 | duplicate | 0 |
diff --git a/java/ql/test/kotlin/library-tests/annotation_classes/DB-CHECK.expected b/java/ql/test/kotlin/library-tests/annotation_classes/DB-CHECK.expected
deleted file mode 100644
index 742cc876428..00000000000
--- a/java/ql/test/kotlin/library-tests/annotation_classes/DB-CHECK.expected
+++ /dev/null
@@ -1,36 +0,0 @@
-[INVALID_KEY_SET] predicate exprs(@expr id, int kind, @type typeid, @exprparent parent, int idx): The key set {parent, idx} does not functionally determine all fields.
-Here is a pair of tuples that agree on the key set but differ at index 0:
-Tuple 1 in row 10: (103,66,102,88,0)
-Tuple 2 in row 116: (521,66,520,88,0)
-	Relevant element: Tuple 1: id=103
-		Full ID for 103: @"annotation;(88);(102)". The ID may expand to @"annotation;{@"class;Annot0k"};{@"class;kotlin.annotation.Target"}"
-	Relevant element: Tuple 2: id=521
-		Full ID for 521: @"annotation;(88);(520)". The ID may expand to @"annotation;{@"class;Annot0k"};{@"class;java.lang.annotation.Retention"}"
-	Relevant element: Tuple 1: typeid=102
-		Full ID for 102: @"class;kotlin.annotation.Target"
-	Relevant element: Tuple 2: typeid=520
-		Full ID for 520: @"class;java.lang.annotation.Retention"
-	Relevant element: parent=88
-		Full ID for 88: @"class;Annot0k"
-[INVALID_KEY_SET] predicate exprs(@expr id, int kind, @type typeid, @exprparent parent, int idx): The key set {parent, idx} does not functionally determine all fields.
-Here is a pair of tuples that agree on the key set but differ at index 0:
-Tuple 1 in row 28: (172,17,17,170,0)
-Tuple 2 in row 130: (558,17,17,170,0)
-	Relevant element: Tuple 2: id=558
-		Full ID for 558: @"annotationExpr;(170);0". The ID may expand to @"annotationExpr;{@"annotation;{@"class;Annot1k"};{@"class;Annot0k"}"};0"
-	Relevant element: typeid=17
-		Full ID for 17: @"type;int"
-	Relevant element: Tuple 1: parent=170
-		Full ID for 170: @"annotation;(151);(88)". The ID may expand to @"annotation;{@"class;Annot1k"};{@"class;Annot0k"}"
-	Relevant element: Tuple 2: parent=170
-		Full ID for 170: @"annotation;(151);(88)". The ID may expand to @"annotation;{@"class;Annot1k"};{@"class;Annot0k"}"
-[INVALID_KEY] predicate exprs(@expr id, int kind, @type typeid, @exprparent parent, int idx): The key set {id} does not functionally determine all fields.
-Here is a pair of tuples that agree on the key set but differ at index 4:
-Tuple 1 in row 10: (103,66,102,88,0)
-Tuple 2 in row 11: (103,66,102,88,3)
-	Relevant element: id=103
-		Full ID for 103: @"annotation;(88);(102)". The ID may expand to @"annotation;{@"class;Annot0k"};{@"class;kotlin.annotation.Target"}"
-	Relevant element: typeid=102
-		Full ID for 102: @"class;kotlin.annotation.Target"
-	Relevant element: parent=88
-		Full ID for 88: @"class;Annot0k"
diff --git a/java/ql/test/kotlin/library-tests/annotation_classes/PrintAst.expected b/java/ql/test/kotlin/library-tests/annotation_classes/PrintAst.expected
index ebfd0bcf81f..554a9837c28 100644
--- a/java/ql/test/kotlin/library-tests/annotation_classes/PrintAst.expected
+++ b/java/ql/test/kotlin/library-tests/annotation_classes/PrintAst.expected
@@ -63,6 +63,7 @@ def.kt:
 
 #   21| [Method] a
 #-----| 1 -> (Annotations)
+#-----| 3 -> [Annotation] JvmName
 
 #   21| [Annotation] JvmName
 #-----| 1 -> [StringLiteral] a
@@ -189,6 +190,7 @@ def.kt:
 
 #   42| [Constructor] Z
 #-----| 1 -> (Annotations)
+#-----| 3 -> [Annotation] Annot0k
 #-----| 5 -> [BlockStmt] { ... }
 
 #   41| [BlockStmt] { ... }
@@ -251,11 +253,12 @@ def.kt:
 #   46| [Method] fn
 #-----| 1 -> (Annotations)
 #-----| 2 -> (Generic Parameters)
+#-----| 3 -> [Annotation] Annot0k
 #-----| 4 -> (Parameters)
 #-----| 5 -> [BlockStmt] { ... }
 
 #   46| [TypeVariable] T
-#-----| 0 -> [Annotation] Annot0k
+#-----| -1 -> [Annotation] Annot0k
 
 #   46| [Annotation] Annot0k
 #-----| 1 -> [IntegerLiteral] 0
@@ -264,6 +267,7 @@ def.kt:
 
 #   46| [Parameter] a
 #-----| -1 -> (Annotations)
+#-----| 0 -> [Annotation] Annot0k
 
 #   46| [Annotation] Annot0k
 #-----| 1 -> [IntegerLiteral] 0
@@ -303,6 +307,7 @@ def.kt:
 
 #   57| [Method] getP
 #-----| 1 -> (Annotations)
+#-----| 3 -> [Annotation] Annot0k
 #-----| 5 -> [BlockStmt] { ... }
 
 #   57| [BlockStmt] { ... }
@@ -320,6 +325,7 @@ def.kt:
 
 #   57| [Method] setP
 #-----| 1 -> (Annotations)
+#-----| 3 -> [Annotation] Annot0k
 #-----| 4 -> (Parameters)
 #-----| 5 -> [BlockStmt] { ... }
 
@@ -362,6 +368,7 @@ def.kt:
 
 #   59| [Parameter] <this>
 #-----| -1 -> (Annotations)
+#-----| 0 -> [Annotation] Annot0k
 
 #   59| [Annotation] Annot0k
 #-----| 1 -> [IntegerLiteral] 0
@@ -520,13 +527,13 @@ use.java:
 #-----| 0 -> [TypeAccess] Annot0k
 
 #-----| (Annotations)
-#-----| 4 -> [Annotation] Target
+#-----| 5 -> [Annotation] Target
 
 #-----| (Annotations)
-#-----| 1 -> [Annotation] JvmName
+#-----| 2 -> [Annotation] JvmName
 
 #-----| (Annotations)
-#-----| 3 -> [Annotation] Annot0k
+#-----| 4 -> [Annotation] Annot0k
 
 #-----| (Annotations)
 #-----| 1 -> [Annotation] Annot0k
diff --git a/java/ql/test/kotlin/library-tests/annotation_classes/classes.expected b/java/ql/test/kotlin/library-tests/annotation_classes/classes.expected
index 917bacb6337..6a60e04dd6f 100644
--- a/java/ql/test/kotlin/library-tests/annotation_classes/classes.expected
+++ b/java/ql/test/kotlin/library-tests/annotation_classes/classes.expected
@@ -14,6 +14,7 @@ annotationDeclarations
 | def.kt:23:1:31:1 | Annot1k | def.kt:29:5:29:32 | e |
 | def.kt:23:1:31:1 | Annot1k | def.kt:30:5:30:31 | f |
 annotations
+| annotation_classes.testproj/test.class.files/Annot1k.class:0:0:0:0 | Annot0k | def.kt:23:1:31:1 | Annot1k | def.kt:5:1:21:60 | Annot0k |
 | def.kt:0:0:0:0 | Annot0k | def.kt:39:1:39:40 | Annot1k | def.kt:5:1:21:60 | Annot0k |
 | def.kt:23:1:23:8 | Annot0k | def.kt:23:1:31:1 | Annot1k | def.kt:5:1:21:60 | Annot0k |
 | def.kt:38:1:38:17 | Annot0k | def.kt:38:1:43:1 | Z | def.kt:5:1:21:60 | Annot0k |

From df595c05f21d40a6378298681532aa58be6a122e Mon Sep 17 00:00:00 2001
From: Tamas Vajk <tamasvajk@github.com>
Date: Thu, 14 Apr 2022 09:22:18 +0200
Subject: [PATCH 1210/1420] WIP: revert some annotation extraction to get
 proper tree in printast

---
 .../src/main/kotlin/KotlinFileExtractor.kt    |   6 +-
 .../annotation_classes/PrintAst.expected      | 776 ++++--------------
 .../annotation_classes/classes.expected       |  15 -
 3 files changed, 175 insertions(+), 622 deletions(-)

diff --git a/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt b/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt
index 3c7b716bbcc..af8228856bc 100644
--- a/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt
+++ b/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt
@@ -238,7 +238,7 @@ open class KotlinFileExtractor(
                 addModifiers(id, "out")
             }
 
-            extractAnnotations(tp, id)
+            //extractAnnotations(tp, id)
             return id
         }
     }
@@ -820,7 +820,7 @@ open class KotlinFileExtractor(
                 extractTypeAccessRecursive(substitutedType, location, id, -1)
             }
             val syntheticParameterNames = isUnderscoreParameter(vp) || ((vp.parent as? IrFunction)?.let { hasSynthesizedParameterNames(it) } ?: true)
-            extractAnnotations(vp, id)
+            //extractAnnotations(vp, id)
             return extractValueParameter(id, substitutedType, vp.name.asString(), location, parent, idx, useValueParameter(vp, parentSourceDeclaration), syntheticParameterNames, vp.isVararg, vp.isNoinline, vp.isCrossinline)
         }
     }
@@ -1360,7 +1360,7 @@ open class KotlinFileExtractor(
 
                 linesOfCode?.linesOfCodeInDeclaration(f, id)
 
-                extractAnnotations(f, id)
+                //extractAnnotations(f, id)
 
                 return id
             }
diff --git a/java/ql/test/kotlin/library-tests/annotation_classes/PrintAst.expected b/java/ql/test/kotlin/library-tests/annotation_classes/PrintAst.expected
index 554a9837c28..18c14a30a4f 100644
--- a/java/ql/test/kotlin/library-tests/annotation_classes/PrintAst.expected
+++ b/java/ql/test/kotlin/library-tests/annotation_classes/PrintAst.expected
@@ -1,612 +1,180 @@
-Annot0j.java:
-#    1| [Interface] Annot0j
-#-----| 1 -> [Method] abc
-
-#    2| [Method] abc
-#-----| 3 -> [TypeAccess] int
-
-#    2| [TypeAccess] int
-
-Annot1j.java:
-#    1| [Interface] Annot1j
-#-----| 1 -> [Method] a
-#-----| 2 -> [Method] b
-#-----| 3 -> [Method] c
-#-----| 4 -> [Method] d
-#-----| 5 -> [Method] e
-#-----| 6 -> [Method] f
-
-#    2| [Method] a
-#-----| 3 -> [TypeAccess] int
-
-#    2| [TypeAccess] int
-
-#    4| [Method] b
-#-----| 3 -> [TypeAccess] String
-
-#    4| [TypeAccess] String
-
-#    6| [Method] c
-#-----| 3 -> [TypeAccess] Class<>
-
-#    6| [TypeAccess] Class<>
-
-def.kt:
-#   34| [Class] Y
-#-----| 2 -> [Method] values
-#-----| 2 -> [Method] valueOf
-#-----| 4 -> [Constructor] Y
-
-Annot1j.java:
-#    8| [Method] d
-#-----| 3 -> [TypeAccess] Y
-
-#    8| [TypeAccess] Y
-
-#   10| [Method] e
-#-----| 3 -> [ArrayTypeAccess] ...[]
-
-#   10| [ArrayTypeAccess] ...[]
-#-----| 0 -> [TypeAccess] Y
-
-#   10| [TypeAccess] Y
-
-#   12| [Method] f
-#-----| 3 -> [TypeAccess] Annot0j
-
-#   12| [TypeAccess] Annot0j
-
-def.kt:
-#    5| [Interface] Annot0k
-#-----| -3 -> (Annotations)
-#-----| 1 -> [Method] a
-
-#   21| [Method] a
-#-----| 1 -> (Annotations)
-#-----| 3 -> [Annotation] JvmName
-
-#   21| [Annotation] JvmName
-#-----| 1 -> [StringLiteral] a
-
-#    0| [StringLiteral] a
-
-#    5| [Annotation] Target
-#-----| 1 -> [ArrayInit] {...}
-
-#    0| [ArrayInit] {...}
-#-----| 1 -> [VarAccess] CLASS
-#-----| 1 -> [VarAccess] ANNOTATION_CLASS
-#-----| 1 -> [VarAccess] TYPE_PARAMETER
-#-----| 1 -> [VarAccess] PROPERTY
-#-----| 1 -> [VarAccess] FIELD
-#-----| 1 -> [VarAccess] LOCAL_VARIABLE
-#-----| 1 -> [VarAccess] VALUE_PARAMETER
-#-----| 1 -> [VarAccess] CONSTRUCTOR
-#-----| 1 -> [VarAccess] FUNCTION
-#-----| 1 -> [VarAccess] PROPERTY_GETTER
-#-----| 1 -> [VarAccess] PROPERTY_SETTER
-#-----| 1 -> [VarAccess] TYPE
-#-----| 1 -> [VarAccess] FILE
-#-----| 1 -> [VarAccess] TYPEALIAS
-
-#    0| [VarAccess] CLASS
-
-#    0| [VarAccess] ANNOTATION_CLASS
-
-#    0| [VarAccess] TYPE_PARAMETER
-
-#    0| [VarAccess] PROPERTY
-
-#    0| [VarAccess] FIELD
-
-#    0| [VarAccess] LOCAL_VARIABLE
-
-#    0| [VarAccess] VALUE_PARAMETER
-
-#    0| [VarAccess] CONSTRUCTOR
-
-#    0| [VarAccess] FUNCTION
-
-#    0| [VarAccess] PROPERTY_GETTER
-
-#    0| [VarAccess] PROPERTY_SETTER
-
-#    0| [VarAccess] TYPE
-
-#    0| [VarAccess] FILE
-
-#    0| [VarAccess] TYPEALIAS
-
-#   23| [Interface] Annot1k
-#-----| -3 -> (Annotations)
-#-----| 1 -> [Method] a
-#-----| 2 -> [Method] b
-#-----| 3 -> [Method] c
-#-----| 4 -> [Method] d
-#-----| 5 -> [Method] e
-#-----| 6 -> [Method] f
-
-#   25| [Method] a
-
-#   26| [Method] b
-
-#   27| [Method] c
-
-#   28| [Method] d
-
-#   29| [Method] e
-
-#   30| [Method] f
-
-#   23| [Annotation] Annot0k
-#-----| 1 -> [IntegerLiteral] 0
-
-#    0| [IntegerLiteral] 0
-
-#   33| [Class] X
-#-----| 1 -> [Constructor] X
-
-#   33| [Constructor] X
-#-----| 5 -> [BlockStmt] { ... }
-
-#   33| [BlockStmt] { ... }
-#-----| 0 -> [SuperConstructorInvocationStmt] super(...)
-#-----| 1 -> [BlockStmt] { ... }
-
-#   33| [SuperConstructorInvocationStmt] super(...)
-
-#   33| [BlockStmt] { ... }
-
-#   34| [Constructor] Y
-#-----| 5 -> [BlockStmt] { ... }
-
-#   34| [BlockStmt] { ... }
-#-----| 0 -> [ExprStmt] <Expr>;
-#-----| 1 -> [BlockStmt] { ... }
-
-#   34| [ExprStmt] <Expr>;
-#-----| 0 -> [ClassInstanceExpr] new Enum(...)
-
-#   34| [ClassInstanceExpr] new Enum(...)
-#-----| -3 -> [TypeAccess] Unit
-
-#   34| [TypeAccess] Unit
-#-----| 0 -> [TypeAccess] Y
-
-#   34| [TypeAccess] Y
-
-#   34| [BlockStmt] { ... }
-
-#    0| [Method] values
-
-#    0| [Method] valueOf
-#-----| 4 -> (Parameters)
-
-#    0| [Parameter] value
-
-#   38| [Class] Z
-#-----| -3 -> (Annotations)
-#-----| 1 -> [Constructor] Z
-
-#   42| [Constructor] Z
-#-----| 1 -> (Annotations)
-#-----| 3 -> [Annotation] Annot0k
-#-----| 5 -> [BlockStmt] { ... }
-
-#   41| [BlockStmt] { ... }
-#-----| 0 -> [SuperConstructorInvocationStmt] super(...)
-#-----| 1 -> [BlockStmt] { ... }
-
-#   42| [SuperConstructorInvocationStmt] super(...)
-
-#   42| [BlockStmt] { ... }
-
-#   41| [Annotation] Annot0k
-#-----| 1 -> [IntegerLiteral] 0
-
-#    0| [IntegerLiteral] 0
-
-#   38| [Annotation] Annot0k
-#-----| 1 -> [IntegerLiteral] 1
-
-#    0| [IntegerLiteral] 1
-
-#   39| [Annotation] Annot1k
-#-----| 1 -> [IntegerLiteral] 2
-#-----| 1 -> [StringLiteral] ab
-#-----| 1 -> [TypeLiteral] X.class
-#-----| 1 -> [VarAccess] B
-#-----| 1 -> [ArrayInit] {...}
-#-----| 1 -> [Annotation] Annot0k
-
-#    0| [IntegerLiteral] 2
-
-#    0| [StringLiteral] ab
-
-#    0| [TypeLiteral] X.class
-#-----| 0 -> [TypeAccess] X
-
-#    0| [TypeAccess] X
-
-#    0| [VarAccess] B
-
-#    0| [ArrayInit] {...}
-#-----| 1 -> [VarAccess] C
-#-----| 1 -> [VarAccess] A
-
-#    0| [VarAccess] C
-
-#    0| [VarAccess] A
-
-#    0| [Annotation] Annot0k
-#-----| 1 -> [IntegerLiteral] 1
-
-#    0| [IntegerLiteral] 1
-
-#    0| [Class] DefKt
-#-----| 2 -> [Method] fn
-#-----| 3 -> [FieldDeclaration] int p;
-#-----| 4 -> [Method] getP
-#-----| 4 -> [Method] setP
-#-----| 6 -> [ExtensionMethod] myExtension
-
-#   46| [Method] fn
-#-----| 1 -> (Annotations)
-#-----| 2 -> (Generic Parameters)
-#-----| 3 -> [Annotation] Annot0k
-#-----| 4 -> (Parameters)
-#-----| 5 -> [BlockStmt] { ... }
-
-#   46| [TypeVariable] T
-#-----| -1 -> [Annotation] Annot0k
-
-#   46| [Annotation] Annot0k
-#-----| 1 -> [IntegerLiteral] 0
-
-#    0| [IntegerLiteral] 0
-
-#   46| [Parameter] a
-#-----| -1 -> (Annotations)
-#-----| 0 -> [Annotation] Annot0k
-
-#   46| [Annotation] Annot0k
-#-----| 1 -> [IntegerLiteral] 0
-
-#    0| [IntegerLiteral] 0
-
-#   46| [BlockStmt] { ... }
-#-----| 0 -> [ExprStmt] <Expr>;
-#-----| 1 -> [LocalVariableDeclStmt] var ...;
-
-#   47| [ExprStmt] <Expr>;
-#-----| 0 -> [MethodAccess] println(...)
-
-#   47| [MethodAccess] println(...)
-#-----| -1 -> [TypeAccess] ConsoleKt
-#-----| 0 -> [MethodAccess] a(...)
-
-#   47| [TypeAccess] ConsoleKt
-
-#   47| [MethodAccess] a(...)
-#-----| -1 -> [VarAccess] a
-
-#   47| [VarAccess] a
-
-#   49| [LocalVariableDeclStmt] var ...;
-#-----| 1 -> [LocalVariableDeclExpr] x
-
-#   49| [LocalVariableDeclExpr] x
-#-----| 0 -> [IntegerLiteral] 10
-
-#   50| [IntegerLiteral] 10
-
-#   45| [Annotation] Annot0k
-#-----| 1 -> [IntegerLiteral] 0
-
-#    0| [IntegerLiteral] 0
-
-#   57| [Method] getP
-#-----| 1 -> (Annotations)
-#-----| 3 -> [Annotation] Annot0k
-#-----| 5 -> [BlockStmt] { ... }
-
-#   57| [BlockStmt] { ... }
-#-----| 0 -> [ReturnStmt] return ...
-
-#   57| [ReturnStmt] return ...
-#-----| 0 -> [VarAccess] p
-
-#   57| [VarAccess] p
-
-#   54| [Annotation] Annot0k
-#-----| 1 -> [IntegerLiteral] 0
-
-#    0| [IntegerLiteral] 0
-
-#   57| [Method] setP
-#-----| 1 -> (Annotations)
-#-----| 3 -> [Annotation] Annot0k
-#-----| 4 -> (Parameters)
-#-----| 5 -> [BlockStmt] { ... }
-
-#   57| [Parameter] <set-?>
-
-#   57| [BlockStmt] { ... }
-#-----| 0 -> [ExprStmt] <Expr>;
-
-#   57| [ExprStmt] <Expr>;
-#-----| 0 -> [AssignExpr] ...=...
-
-#   57| [AssignExpr] ...=...
-#-----| 0 -> [VarAccess] p
-#-----| 1 -> [VarAccess] <set-?>
-
-#   57| [VarAccess] p
-
-#   57| [VarAccess] <set-?>
-
-#   55| [Annotation] Annot0k
-#-----| 1 -> [IntegerLiteral] 0
-
-#    0| [IntegerLiteral] 0
-
-#   56| [Annotation] Annot0k
-#-----| 1 -> [IntegerLiteral] 0
-
-#    0| [IntegerLiteral] 0
-
-#   53| [FieldDeclaration] int p;
-#-----| -2 -> (Annotations)
-#-----| -1 -> [TypeAccess] int
-#-----| 0 -> [IntegerLiteral] 5
-
-#   53| [TypeAccess] int
-
-#   59| [ExtensionMethod] myExtension
-#-----| 4 -> (Parameters)
-#-----| 5 -> [BlockStmt] { ... }
-
-#   59| [Parameter] <this>
-#-----| -1 -> (Annotations)
-#-----| 0 -> [Annotation] Annot0k
-
-#   59| [Annotation] Annot0k
-#-----| 1 -> [IntegerLiteral] 0
-
-#    0| [IntegerLiteral] 0
-
-#   59| [BlockStmt] { ... }
-
-#   57| [IntegerLiteral] 5
-
-use.java:
-#    1| [Class] use
-#-----| -1 -> (Base Types)
-#-----| 2 -> [Method] a
-#-----| 3 -> [Method] annotationType
-#-----| 4 -> [Class] Z
-
-#    1| [TypeAccess] Annot0k
-
-#    3| [Method] a
-#-----| 1 -> (Annotations)
-#-----| 3 -> [TypeAccess] int
-#-----| 5 -> [BlockStmt] { ... }
-
-#    2| [Annotation] Override
-
-#    3| [BlockStmt] { ... }
-#-----| 0 -> [ReturnStmt] return ...
-
-#    3| [TypeAccess] int
-
-#    3| [ReturnStmt] return ...
-#-----| 0 -> [IntegerLiteral] 1
-
-#    3| [IntegerLiteral] 1
-
-#    6| [Method] annotationType
-#-----| 1 -> (Annotations)
-#-----| 3 -> [TypeAccess] Class<? extends Annotation>
-#-----| 5 -> [BlockStmt] { ... }
-
-#    5| [Annotation] Override
-
-#    6| [BlockStmt] { ... }
-#-----| 0 -> [ReturnStmt] return ...
-
-#    6| [TypeAccess] Class<? extends Annotation>
-#-----| 0 -> [WildcardTypeAccess] ? ...
-
-#    6| [WildcardTypeAccess] ? ...
-#-----| 0 -> [TypeAccess] Annotation
-
-#    6| [TypeAccess] Annotation
-
-#    7| [ReturnStmt] return ...
-#-----| 0 -> [NullLiteral] null
-
-#    7| [NullLiteral] null
-
-#   14| [Class] Z
-#-----| -3 -> (Annotations)
-
-#   10| [Annotation] Annot0j
-#-----| 1 -> [IntegerLiteral] 1
-
-#   10| [IntegerLiteral] 1
-
-#   12| [Annotation] Annot0k
-#-----| 1 -> [IntegerLiteral] 1
-
-#   12| [IntegerLiteral] 1
-
-#   11| [Annotation] Annot1j
-#-----| 1 -> [IntegerLiteral] 1
-#-----| 2 -> [StringLiteral] "ac"
-#-----| 3 -> [TypeLiteral] X.class
-#-----| 4 -> [VarAccess] Y.B
-#-----| 5 -> [ArrayInit] {...}
-#-----| 6 -> [Annotation] Annot0j
-
-#   11| [IntegerLiteral] 1
-
-#   11| [StringLiteral] "ac"
-
-#   11| [TypeLiteral] X.class
-#-----| 0 -> [TypeAccess] X
-
-#   11| [TypeAccess] X
-
-#   11| [VarAccess] Y.B
-#-----| -1 -> [TypeAccess] Y
-
-#   11| [TypeAccess] Y
-
-#   11| [ArrayInit] {...}
-#-----| 3 -> [VarAccess] Y.C
-#-----| 4 -> [VarAccess] Y.A
-
-#   11| [VarAccess] Y.C
-#-----| -1 -> [TypeAccess] Y
-
-#   11| [TypeAccess] Y
-
-#   11| [VarAccess] Y.A
-#-----| -1 -> [TypeAccess] Y
-
-#   11| [TypeAccess] Y
-
-#   11| [Annotation] Annot0j
-#-----| 1 -> [IntegerLiteral] 2
-
-#   11| [IntegerLiteral] 2
-
-#   13| [Annotation] Annot1k
-#-----| 1 -> [IntegerLiteral] 1
-#-----| 2 -> [StringLiteral] "ac"
-#-----| 3 -> [TypeLiteral] X.class
-#-----| 4 -> [VarAccess] Y.B
-#-----| 5 -> [ArrayInit] {...}
-#-----| 6 -> [Annotation] Annot0k
-
-#   13| [IntegerLiteral] 1
-
-#   13| [StringLiteral] "ac"
-
-#   13| [TypeLiteral] X.class
-#-----| 0 -> [TypeAccess] X
-
-#   13| [TypeAccess] X
-
-#   13| [VarAccess] Y.B
-#-----| -1 -> [TypeAccess] Y
-
-#   13| [TypeAccess] Y
-
-#   13| [ArrayInit] {...}
-#-----| 3 -> [VarAccess] Y.C
-#-----| 4 -> [VarAccess] Y.A
-
-#   13| [VarAccess] Y.C
-#-----| -1 -> [TypeAccess] Y
-
-#   13| [TypeAccess] Y
-
-#   13| [VarAccess] Y.A
-#-----| -1 -> [TypeAccess] Y
-
-#   13| [TypeAccess] Y
-
-#   13| [Annotation] Annot0k
-#-----| 1 -> [IntegerLiteral] 2
-
-#   13| [IntegerLiteral] 2
-
-#-----| (Base Types)
-#-----| 0 -> [TypeAccess] Annot0k
-
-#-----| (Annotations)
-#-----| 5 -> [Annotation] Target
-
-#-----| (Annotations)
-#-----| 2 -> [Annotation] JvmName
-
-#-----| (Annotations)
-#-----| 4 -> [Annotation] Annot0k
-
-#-----| (Annotations)
-#-----| 1 -> [Annotation] Annot0k
-#-----| 2 -> [Annotation] Annot1k
-
-#-----| (Annotations)
-#-----| 1 -> [Annotation] Annot0k
-
-#-----| (Annotations)
-#-----| 1 -> [Annotation] Annot0k
-
-#-----| (Annotations)
-#-----| 1 -> [Annotation] Annot0k
-
-#-----| (Annotations)
-#-----| 1 -> [Annotation] Annot0k
-
-#-----| (Annotations)
-#-----| 1 -> [Annotation] Annot0k
-
-#-----| (Annotations)
-#-----| 1 -> [Annotation] Annot0k
-
-#-----| (Annotations)
-#-----| 1 -> [Annotation] Annot0k
-
-#-----| (Annotations)
-#-----| 1 -> [Annotation] Annot0k
-
-#-----| (Annotations)
-#-----| 1 -> [Annotation] Override
-
-#-----| (Annotations)
-#-----| 1 -> [Annotation] Override
-
-#-----| (Annotations)
-#-----| 1 -> [Annotation] Annot0j
-#-----| 2 -> [Annotation] Annot1j
-#-----| 3 -> [Annotation] Annot0k
-#-----| 4 -> [Annotation] Annot1k
-
-#-----| (Parameters)
-#-----| 0 -> [Parameter] value
-
-#-----| (Parameters)
-#-----| 0 -> [Parameter] a
-
-#-----| (Parameters)
-#-----| 0 -> [Parameter] <set-?>
-
-#-----| (Parameters)
-#-----| 0 -> [Parameter] <this>
-
-#-----| (Generic Parameters)
-#-----| 0 -> [TypeVariable] T
-
 Annot0j.java:
 #    0| [CompilationUnit] Annot0j
-#-----| 1 -> [Interface] Annot0j
-
+#    1|   1: [Interface] Annot0j
+#    2|     1: [Method] abc
+#    2|       3: [TypeAccess] int
 Annot1j.java:
 #    0| [CompilationUnit] Annot1j
-#-----| 1 -> [Interface] Annot1j
-
+#    1|   1: [Interface] Annot1j
+#    2|     1: [Method] a
+#    2|       3: [TypeAccess] int
+#    4|     2: [Method] b
+#    4|       3: [TypeAccess] String
+#    6|     3: [Method] c
+#    6|       3: [TypeAccess] Class<>
+#    8|     4: [Method] d
+#    8|       3: [TypeAccess] Y
+#   10|     5: [Method] e
+#   10|       3: [ArrayTypeAccess] ...[]
+#   10|         0: [TypeAccess] Y
+#   12|     6: [Method] f
+#   12|       3: [TypeAccess] Annot0j
 def.kt:
 #    0| [CompilationUnit] def
-#-----| 1 -> [Class] DefKt
-#-----| 2 -> [Interface] Annot0k
-#-----| 3 -> [Interface] Annot1k
-#-----| 4 -> [Class] X
-#-----| 5 -> [Class] Y
-#-----| 6 -> [Class] Z
-
+#    0|   1: [Class] DefKt
+#   46|     2: [Method] fn
+#-----|       2: (Generic Parameters)
+#   46|         0: [TypeVariable] T
+#-----|       4: (Parameters)
+#   46|         0: [Parameter] a
+#   46|       5: [BlockStmt] { ... }
+#   47|         0: [ExprStmt] <Expr>;
+#   47|           0: [MethodAccess] println(...)
+#   47|             -1: [TypeAccess] ConsoleKt
+#   47|             0: [MethodAccess] a(...)
+#   47|               -1: [VarAccess] a
+#   49|         1: [LocalVariableDeclStmt] var ...;
+#   49|           1: [LocalVariableDeclExpr] x
+#   50|             0: [IntegerLiteral] 10
+#   53|     3: [FieldDeclaration] int p;
+#-----|       -2: (Annotations)
+#   56|         1: [Annotation] Annot0k
+#    0|           1: [IntegerLiteral] 0
+#   53|       -1: [TypeAccess] int
+#   57|       0: [IntegerLiteral] 5
+#   57|     4: [Method] getP
+#   57|       5: [BlockStmt] { ... }
+#   57|         0: [ReturnStmt] return ...
+#   57|           0: [VarAccess] p
+#   57|     4: [Method] setP
+#-----|       4: (Parameters)
+#   57|         0: [Parameter] <set-?>
+#   57|       5: [BlockStmt] { ... }
+#   57|         0: [ExprStmt] <Expr>;
+#   57|           0: [AssignExpr] ...=...
+#   57|             0: [VarAccess] p
+#   57|             1: [VarAccess] <set-?>
+#   59|     6: [ExtensionMethod] myExtension
+#-----|       4: (Parameters)
+#   59|         0: [Parameter] <this>
+#   59|       5: [BlockStmt] { ... }
+#    5|   2: [Interface] Annot0k
+#-----|     -3: (Annotations)
+#    5|       5: [Annotation] Target
+#    0|         1: [ArrayInit] {...}
+#    0|           1: [VarAccess] CLASS
+#    0|           1: [VarAccess] ANNOTATION_CLASS
+#    0|           1: [VarAccess] TYPE_PARAMETER
+#    0|           1: [VarAccess] PROPERTY
+#    0|           1: [VarAccess] FIELD
+#    0|           1: [VarAccess] LOCAL_VARIABLE
+#    0|           1: [VarAccess] VALUE_PARAMETER
+#    0|           1: [VarAccess] CONSTRUCTOR
+#    0|           1: [VarAccess] FUNCTION
+#    0|           1: [VarAccess] PROPERTY_GETTER
+#    0|           1: [VarAccess] PROPERTY_SETTER
+#    0|           1: [VarAccess] TYPE
+#    0|           1: [VarAccess] FILE
+#    0|           1: [VarAccess] TYPEALIAS
+#   21|     1: [Method] a
+#   23|   3: [Interface] Annot1k
+#-----|     -3: (Annotations)
+#   23|       4: [Annotation] Annot0k
+#    0|         1: [IntegerLiteral] 0
+#   25|     1: [Method] a
+#   26|     2: [Method] b
+#   27|     3: [Method] c
+#   28|     4: [Method] d
+#   29|     5: [Method] e
+#   30|     6: [Method] f
+#   33|   4: [Class] X
+#   33|     1: [Constructor] X
+#   33|       5: [BlockStmt] { ... }
+#   33|         0: [SuperConstructorInvocationStmt] super(...)
+#   33|         1: [BlockStmt] { ... }
+#   34|   5: [Class] Y
+#    0|     2: [Method] values
+#    0|     2: [Method] valueOf
+#-----|       4: (Parameters)
+#    0|         0: [Parameter] value
+#   34|     4: [Constructor] Y
+#   34|       5: [BlockStmt] { ... }
+#   34|         0: [ExprStmt] <Expr>;
+#   34|           0: [ClassInstanceExpr] new Enum(...)
+#   34|             -3: [TypeAccess] Unit
+#   34|               0: [TypeAccess] Y
+#   34|         1: [BlockStmt] { ... }
+#   38|   6: [Class] Z
+#-----|     -3: (Annotations)
+#   38|       1: [Annotation] Annot0k
+#    0|         1: [IntegerLiteral] 1
+#   39|       2: [Annotation] Annot1k
+#    0|         1: [IntegerLiteral] 2
+#    0|         1: [StringLiteral] ab
+#    0|         1: [TypeLiteral] X.class
+#    0|           0: [TypeAccess] X
+#    0|         1: [VarAccess] B
+#    0|         1: [ArrayInit] {...}
+#    0|           1: [VarAccess] C
+#    0|           1: [VarAccess] A
+#    0|         1: [Annotation] Annot0k
+#    0|           1: [IntegerLiteral] 1
+#   42|     1: [Constructor] Z
+#   41|       5: [BlockStmt] { ... }
+#   42|         0: [SuperConstructorInvocationStmt] super(...)
+#   42|         1: [BlockStmt] { ... }
 use.java:
 #    0| [CompilationUnit] use
-#-----| 1 -> [Class] use
+#    1|   1: [Class] use
+#-----|     -1: (Base Types)
+#    1|       0: [TypeAccess] Annot0k
+#    3|     2: [Method] a
+#-----|       1: (Annotations)
+#    2|         1: [Annotation] Override
+#    3|       3: [TypeAccess] int
+#    3|       5: [BlockStmt] { ... }
+#    3|         0: [ReturnStmt] return ...
+#    3|           0: [IntegerLiteral] 1
+#    6|     3: [Method] annotationType
+#-----|       1: (Annotations)
+#    5|         1: [Annotation] Override
+#    6|       3: [TypeAccess] Class<? extends Annotation>
+#    6|         0: [WildcardTypeAccess] ? ...
+#    6|           0: [TypeAccess] Annotation
+#    6|       5: [BlockStmt] { ... }
+#    7|         0: [ReturnStmt] return ...
+#    7|           0: [NullLiteral] null
+#   14|     4: [Class] Z
+#-----|       -3: (Annotations)
+#   10|         1: [Annotation] Annot0j
+#   10|           1: [IntegerLiteral] 1
+#   11|         2: [Annotation] Annot1j
+#   11|           1: [IntegerLiteral] 1
+#   11|           2: [StringLiteral] "ac"
+#   11|           3: [TypeLiteral] X.class
+#   11|             0: [TypeAccess] X
+#   11|           4: [VarAccess] Y.B
+#   11|             -1: [TypeAccess] Y
+#   11|           5: [ArrayInit] {...}
+#   11|             3: [VarAccess] Y.C
+#   11|               -1: [TypeAccess] Y
+#   11|             4: [VarAccess] Y.A
+#   11|               -1: [TypeAccess] Y
+#   11|           6: [Annotation] Annot0j
+#   11|             1: [IntegerLiteral] 2
+#   12|         3: [Annotation] Annot0k
+#   12|           1: [IntegerLiteral] 1
+#   13|         4: [Annotation] Annot1k
+#   13|           1: [IntegerLiteral] 1
+#   13|           2: [StringLiteral] "ac"
+#   13|           3: [TypeLiteral] X.class
+#   13|             0: [TypeAccess] X
+#   13|           4: [VarAccess] Y.B
+#   13|             -1: [TypeAccess] Y
+#   13|           5: [ArrayInit] {...}
+#   13|             3: [VarAccess] Y.C
+#   13|               -1: [TypeAccess] Y
+#   13|             4: [VarAccess] Y.A
+#   13|               -1: [TypeAccess] Y
+#   13|           6: [Annotation] Annot0k
+#   13|             1: [IntegerLiteral] 2
diff --git a/java/ql/test/kotlin/library-tests/annotation_classes/classes.expected b/java/ql/test/kotlin/library-tests/annotation_classes/classes.expected
index 6a60e04dd6f..9ef212e7840 100644
--- a/java/ql/test/kotlin/library-tests/annotation_classes/classes.expected
+++ b/java/ql/test/kotlin/library-tests/annotation_classes/classes.expected
@@ -19,14 +19,7 @@ annotations
 | def.kt:23:1:23:8 | Annot0k | def.kt:23:1:31:1 | Annot1k | def.kt:5:1:21:60 | Annot0k |
 | def.kt:38:1:38:17 | Annot0k | def.kt:38:1:43:1 | Z | def.kt:5:1:21:60 | Annot0k |
 | def.kt:39:1:39:40 | Annot1k | def.kt:38:1:43:1 | Z | def.kt:23:1:31:1 | Annot1k |
-| def.kt:41:5:41:12 | Annot0k | def.kt:42:5:42:19 | Z | def.kt:5:1:21:60 | Annot0k |
-| def.kt:45:1:45:8 | Annot0k | def.kt:46:1:51:1 | fn | def.kt:5:1:21:60 | Annot0k |
-| def.kt:46:6:46:13 | Annot0k | def.kt:46:6:46:15 | T | def.kt:5:1:21:60 | Annot0k |
-| def.kt:46:21:46:28 | Annot0k | def.kt:46:21:46:39 | a | def.kt:5:1:21:60 | Annot0k |
-| def.kt:54:1:54:12 | Annot0k | def.kt:57:1:57:23 | getP | def.kt:5:1:21:60 | Annot0k |
-| def.kt:55:1:55:12 | Annot0k | def.kt:57:1:57:23 | setP | def.kt:5:1:21:60 | Annot0k |
 | def.kt:56:1:56:14 | Annot0k | def.kt:53:1:57:23 | p | def.kt:5:1:21:60 | Annot0k |
-| def.kt:59:5:59:21 | Annot0k | def.kt:59:5:59:28 | <this> | def.kt:5:1:21:60 | Annot0k |
 | use.java:10:5:10:21 | Annot0j | use.java:14:18:14:18 | Z | Annot0j.java:1:19:1:25 | Annot0j |
 | use.java:11:5:11:90 | Annot1j | use.java:14:18:14:18 | Z | Annot1j.java:1:19:1:25 | Annot1j |
 | use.java:11:73:11:89 | Annot0j | use.java:11:5:11:90 | Annot1j | Annot0j.java:1:19:1:25 | Annot0j |
@@ -36,7 +29,6 @@ annotations
 annotationValues
 | def.kt:0:0:0:0 | Annot0k | def.kt:0:0:0:0 | 1 |
 | def.kt:5:1:20:1 | Target | def.kt:0:0:0:0 | {...} |
-| def.kt:21:26:21:42 | JvmName | def.kt:0:0:0:0 | a |
 | def.kt:23:1:23:8 | Annot0k | def.kt:0:0:0:0 | 0 |
 | def.kt:38:1:38:17 | Annot0k | def.kt:0:0:0:0 | 1 |
 | def.kt:39:1:39:40 | Annot1k | def.kt:0:0:0:0 | 2 |
@@ -45,14 +37,7 @@ annotationValues
 | def.kt:39:1:39:40 | Annot1k | def.kt:0:0:0:0 | X.class |
 | def.kt:39:1:39:40 | Annot1k | def.kt:0:0:0:0 | ab |
 | def.kt:39:1:39:40 | Annot1k | def.kt:0:0:0:0 | {...} |
-| def.kt:41:5:41:12 | Annot0k | def.kt:0:0:0:0 | 0 |
-| def.kt:45:1:45:8 | Annot0k | def.kt:0:0:0:0 | 0 |
-| def.kt:46:6:46:13 | Annot0k | def.kt:0:0:0:0 | 0 |
-| def.kt:46:21:46:28 | Annot0k | def.kt:0:0:0:0 | 0 |
-| def.kt:54:1:54:12 | Annot0k | def.kt:0:0:0:0 | 0 |
-| def.kt:55:1:55:12 | Annot0k | def.kt:0:0:0:0 | 0 |
 | def.kt:56:1:56:14 | Annot0k | def.kt:0:0:0:0 | 0 |
-| def.kt:59:5:59:21 | Annot0k | def.kt:0:0:0:0 | 0 |
 | use.java:10:5:10:21 | Annot0j | use.java:10:20:10:20 | 1 |
 | use.java:11:5:11:90 | Annot1j | use.java:11:18:11:18 | 1 |
 | use.java:11:5:11:90 | Annot1j | use.java:11:25:11:28 | "ac" |

From 24434ed0ffa505fd2c82da908439e8ed9e0f0bca Mon Sep 17 00:00:00 2001
From: Chris Smowton <smowton@github.com>
Date: Wed, 9 Nov 2022 16:49:16 +0000
Subject: [PATCH 1211/1420] Make annotation labelling consistent between Java
 and Kotlin

This gives all annotations and expressions derived from them globally-significant and stable names, enabling the Kotlin and Java extractors to see the same annotation without introducing database conflicts.
---
 .../src/main/kotlin/KotlinFileExtractor.kt    | 152 ++++++++++--------
 1 file changed, 88 insertions(+), 64 deletions(-)

diff --git a/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt b/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt
index af8228856bc..0f44e2a30ef 100644
--- a/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt
+++ b/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt
@@ -459,19 +459,20 @@ open class KotlinFileExtractor(
     }
 
     private fun extractAnnotations(c: IrAnnotationContainer, parent: Label<out DbExprparent>) {
-        for ((idx, constructorCall: IrConstructorCall) in c.annotations.withIndex()) {
-            extractAnnotation(constructorCall, parent, -1 - idx)
+        for ((idx, constructorCall: IrConstructorCall) in c.annotations.sortedBy { v -> v.type.classFqName?.asString() }.withIndex()) {
+            extractAnnotation(constructorCall, parent, idx)
         }
     }
 
     private fun extractAnnotation(
         constructorCall: IrConstructorCall,
         parent: Label<out DbExprparent>,
-        idx: Int
+        idx: Int,
+        contextLabel: String? = null
     ): Label<out DbExpr> {
         val t = useType(constructorCall.type)
-
-        val id = tw.getLabelFor<DbDeclannotation>("@\"annotation_kotlin;{$parent};{${t.javaResult.id}}\"")
+        val annotationContextLabel = contextLabel ?: "{${t.javaResult.id}}"
+        val id = tw.getLabelFor<DbDeclannotation>("@\"annotation;{$parent};$annotationContextLabel\"")
         tw.writeExprs_declannotation(id, t.javaResult.id, parent, idx)
         tw.writeExprsKotlinType(id, t.kotlinResult.id)
 
@@ -484,9 +485,10 @@ open class KotlinFileExtractor(
                 .filterIsInstance<IrProperty>()
                 .first { it.name == param.name }
             val v = constructorCall.getValueArgument(i) ?: param.defaultValue?.expression
-            val exprId = extractAnnotationValueExpression(v, id, i)
+            val getterId = useFunction<DbMethod>(prop.getter!!)
+            val exprId = extractAnnotationValueExpression(v, id, i, "{${getterId}}")
             if (exprId != null) {
-                tw.writeAnnotValue(id, useFunction(prop.getter!!), exprId)
+                tw.writeAnnotValue(id, getterId, exprId)
             }
         }
         return id
@@ -495,41 +497,45 @@ open class KotlinFileExtractor(
     private fun extractAnnotationValueExpression(
         v: IrExpression?,
         parent: Label<out DbExprparent>,
-        idx: Int): Label<out DbExpr>? {
+        idx: Int,
+        contextLabel: String): Label<out DbExpr>? {
+
+        fun exprId() = tw.getLabelFor<DbExpr>("@\"annotationExpr;{$parent};$idx\"")
 
         return when (v) {
             is IrConst<*> -> {
-                extractConstant(v, parent, idx, null, null)
+                extractConstant(v, parent, idx, null, null, overrideId = exprId())
             }
             is IrGetEnumValue -> {
-                extractEnumValue(v, parent, idx, null, null)
+                extractEnumValue(v, parent, idx, null, null, overrideId = exprId())
             }
             is IrClassReference -> {
-                extractClassReference(v, parent, idx, null, null)
+                val classRefId = exprId()
+                val typeAccessId = tw.getLabelFor<DbUnannotatedtypeaccess>("@\"annotationExpr;{$classRefId};0\"")
+                extractClassReference(v, parent, idx, null, null, overrideId = classRefId, typeAccessOverrideId = typeAccessId, useUnboundType = true)
             }
             is IrConstructorCall -> {
-                extractAnnotation(v, parent, idx)
+                extractAnnotation(v, parent, idx, contextLabel)
             }
             is IrVararg -> {
-                val eId = tw.getFreshIdLabel<DbArrayinit>()
-                val type = useType(v.type)
-                tw.writeExprs_arrayinit(eId, type.javaResult.id, parent, idx)
-                tw.writeExprsKotlinType(eId, type.kotlinResult.id)
-                tw.writeHasLocation(eId, tw.getLocation(v))
+                tw.getLabelFor<DbArrayinit>("@\"annotationarray;{${parent}};$contextLabel\"").also { arrayId ->
+                    val type = useType(v.type)
+                    tw.writeExprs_arrayinit(arrayId, type.javaResult.id, parent, idx)
+                    tw.writeExprsKotlinType(arrayId, type.kotlinResult.id)
+                    tw.writeHasLocation(arrayId, tw.getLocation(v))
 
-                v.elements.forEachIndexed { index, irVarargElement -> run {
-                    val argExpr = when(irVarargElement) {
-                        is IrExpression -> irVarargElement
-                        is IrSpreadElement -> irVarargElement.expression
-                        else -> {
-                            logger.errorElement("Unrecognised IrVarargElement: " + irVarargElement.javaClass, irVarargElement)
-                            null
+                    v.elements.forEachIndexed { index, irVarargElement -> run {
+                        val argExpr = when (irVarargElement) {
+                            is IrExpression -> irVarargElement
+                            is IrSpreadElement -> irVarargElement.expression
+                            else -> {
+                                logger.errorElement("Unrecognised IrVarargElement: " + irVarargElement.javaClass, irVarargElement)
+                                null
+                            }
                         }
-                    }
-                    extractAnnotationValueExpression(argExpr, eId, index)
-                } }
-
-                eId
+                        extractAnnotationValueExpression(argExpr, arrayId, index, "child;$index")
+                    } }
+                }
             }
             // is IrErrorExpression
             // null
@@ -3525,8 +3531,8 @@ open class KotlinFileExtractor(
             extractExprContext(it, locId, callable, enclosingStmt)
         }
 
-    private fun extractConstantInteger(v: Number, locId: Label<DbLocation>, parent: Label<out DbExprparent>, idx: Int, callable: Label<out DbCallable>?, enclosingStmt: Label<out DbStmt>?) =
-        tw.getFreshIdLabel<DbIntegerliteral>().also {
+    private fun extractConstantInteger(v: Number, locId: Label<DbLocation>, parent: Label<out DbExprparent>, idx: Int, callable: Label<out DbCallable>?, enclosingStmt: Label<out DbStmt>?, overrideId: Label<out DbExpr>? = null) =
+        exprIdOrFresh<DbIntegerliteral>(overrideId).also {
             val type = useType(pluginContext.irBuiltIns.intType)
             tw.writeExprs_integerliteral(it, type.javaResult.id, parent, idx)
             tw.writeExprsKotlinType(it, type.kotlinResult.id)
@@ -3534,8 +3540,8 @@ open class KotlinFileExtractor(
             extractExprContext(it, locId, callable, enclosingStmt)
         }
 
-    private fun extractNull(t: IrType, locId: Label<DbLocation>, parent: Label<out DbExprparent>, idx: Int, callable: Label<out DbCallable>?, enclosingStmt: Label<out DbStmt>?) =
-        tw.getFreshIdLabel<DbNullliteral>().also {
+    private fun extractNull(t: IrType, locId: Label<DbLocation>, parent: Label<out DbExprparent>, idx: Int, callable: Label<out DbCallable>?, enclosingStmt: Label<out DbStmt>?, overrideId: Label<out DbExpr>? = null) =
+        exprIdOrFresh<DbNullliteral>(overrideId).also {
             val type = useType(t)
             tw.writeExprs_nullliteral(it, type.javaResult.id, parent, idx)
             tw.writeExprsKotlinType(it, type.kotlinResult.id)
@@ -3550,16 +3556,6 @@ open class KotlinFileExtractor(
             extractExprContext(it, locId, callable, enclosingStmt)
         }
 
-    private fun escapeCharForQuotedLiteral(c: Char) =
-        when (c) {
-            '\r' -> "\\r"
-            '\n' -> "\\n"
-            '\t' -> "\\t"
-            '\\' -> "\\\\"
-            '"' -> "\\\""
-            else -> c.toString()
-        }
-
     private fun extractExpression(e: IrExpression, callable: Label<out DbCallable>, parent: StmtExprParent) {
         with("expression", e) {
             when(e) {
@@ -4182,21 +4178,33 @@ open class KotlinFileExtractor(
         extractExpressionExpr(loop.condition, callable, id, 0, id)
     }
 
+    @Suppress("UNCHECKED_CAST")
+    private fun <T : DbExpr> exprIdOrFresh(id: Label<out DbExpr>?) = id as? Label<T> ?: tw.getFreshIdLabel()
+
+    private fun toUnbound(t: IrType) =
+        when(t) {
+            is IrSimpleType -> t.classifier.typeWith()
+            else -> t
+        }
+
     private fun extractClassReference(
         e: IrClassReference,
         parent: Label<out DbExprparent>,
         idx: Int,
         enclosingCallable: Label<out DbCallable>?,
-        enclosingStmt: Label<out DbStmt>?
+        enclosingStmt: Label<out DbStmt>?,
+        overrideId: Label<out DbExpr>? = null,
+        typeAccessOverrideId: Label<out DbExpr>? = null,
+        useUnboundType: Boolean = false
     ) =
-        tw.getFreshIdLabel<DbTypeliteral>().also { id ->
+        exprIdOrFresh<DbTypeliteral>(overrideId).also { id ->
             val locId = tw.getLocation(e)
-            val type = useType(e.type)
+            val type = useType(if (useUnboundType) toUnbound(e.type) else e.type)
             tw.writeExprs_typeliteral(id, type.javaResult.id, parent, idx)
             tw.writeExprsKotlinType(id, type.kotlinResult.id)
             extractExprContext(id, locId, enclosingCallable, enclosingStmt)
 
-            extractTypeAccessRecursive(e.classType, locId, id, 0, enclosingCallable, enclosingStmt)
+            extractTypeAccessRecursive(e.classType, locId, id, 0, enclosingCallable, enclosingStmt, overrideId = typeAccessOverrideId)
         }
 
     private fun extractEnumValue(
@@ -4204,9 +4212,10 @@ open class KotlinFileExtractor(
         parent: Label<out DbExprparent>,
         idx: Int,
         enclosingCallable: Label<out DbCallable>?,
-        enclosingStmt: Label<out DbStmt>?
+        enclosingStmt: Label<out DbStmt>?,
+        overrideId: Label<out DbExpr>? = null
     ) =
-        tw.getFreshIdLabel<DbVaraccess>().also { id ->
+        exprIdOrFresh<DbVaraccess>(overrideId).also { id ->
             val type = useType(e.type)
             val locId = tw.getLocation(e)
             tw.writeExprs_varaccess(id, type.javaResult.id, parent, idx)
@@ -4223,6 +4232,16 @@ open class KotlinFileExtractor(
             }
         }
 
+    private fun escapeCharForQuotedLiteral(c: Char) =
+        when(c) {
+            '\r' -> "\\r"
+            '\n' -> "\\n"
+            '\t' -> "\\t"
+            '\\' -> "\\\\"
+            '"' -> "\\\""
+            else -> c.toString()
+        }
+
     // Render a string literal as it might occur in Kotlin source. Note this is a reasonable guess; the real source
     // could use other escape sequences to describe the same String. Importantly, this is the same guess the Java
     // extractor makes regarding string literals occurring within annotations, which we need to coincide with to ensure
@@ -4235,15 +4254,17 @@ open class KotlinFileExtractor(
         parent: Label<out DbExprparent>,
         idx: Int,
         enclosingCallable: Label<out DbCallable>?,
-        enclosingStmt: Label<out DbStmt>?
+        enclosingStmt: Label<out DbStmt>?,
+        overrideId: Label<out DbExpr>? = null
     ): Label<out DbExpr>? {
+
         val v = e.value
         return when {
             v is Number && (v is Int || v is Short || v is Byte) -> {
-                extractConstantInteger(v, tw.getLocation(e), parent, idx, enclosingCallable, enclosingStmt)
+                extractConstantInteger(v, tw.getLocation(e), parent, idx, enclosingCallable, enclosingStmt, overrideId = overrideId)
             }
             v is Long -> {
-                tw.getFreshIdLabel<DbLongliteral>().also { id ->
+                exprIdOrFresh<DbLongliteral>(overrideId).also { id ->
                     val type = useType(e.type)
                     val locId = tw.getLocation(e)
                     tw.writeExprs_longliteral(id, type.javaResult.id, parent, idx)
@@ -4253,7 +4274,7 @@ open class KotlinFileExtractor(
                 }
             }
             v is Float -> {
-                tw.getFreshIdLabel<DbFloatingpointliteral>().also { id ->
+                exprIdOrFresh<DbFloatingpointliteral>(overrideId).also { id ->
                     val type = useType(e.type)
                     val locId = tw.getLocation(e)
                     tw.writeExprs_floatingpointliteral(id, type.javaResult.id, parent, idx)
@@ -4263,7 +4284,7 @@ open class KotlinFileExtractor(
                 }
             }
             v is Double -> {
-                tw.getFreshIdLabel<DbDoubleliteral>().also { id ->
+                exprIdOrFresh<DbDoubleliteral>(overrideId).also { id ->
                     val type = useType(e.type)
                     val locId = tw.getLocation(e)
                     tw.writeExprs_doubleliteral(id, type.javaResult.id, parent, idx)
@@ -4273,7 +4294,7 @@ open class KotlinFileExtractor(
                 }
             }
             v is Boolean -> {
-                tw.getFreshIdLabel<DbBooleanliteral>().also { id ->
+                exprIdOrFresh<DbBooleanliteral>(overrideId).also { id ->
                     val type = useType(e.type)
                     val locId = tw.getLocation(e)
                     tw.writeExprs_booleanliteral(id, type.javaResult.id, parent, idx)
@@ -4283,7 +4304,7 @@ open class KotlinFileExtractor(
                 }
             }
             v is Char -> {
-                tw.getFreshIdLabel<DbCharacterliteral>().also { id ->
+                exprIdOrFresh<DbCharacterliteral>(overrideId).also { id ->
                     val type = useType(e.type)
                     val locId = tw.getLocation(e)
                     tw.writeExprs_characterliteral(id, type.javaResult.id, parent, idx)
@@ -4293,7 +4314,7 @@ open class KotlinFileExtractor(
                 }
             }
             v is String -> {
-                tw.getFreshIdLabel<DbStringliteral>().also { id ->
+                exprIdOrFresh<DbStringliteral>(overrideId).also { id ->
                     val type = useType(e.type)
                     val locId = tw.getLocation(e)
                     tw.writeExprs_stringliteral(id, type.javaResult.id, parent, idx)
@@ -4303,7 +4324,7 @@ open class KotlinFileExtractor(
                 }
             }
             v == null -> {
-                extractNull(e.type, tw.getLocation(e), parent, idx, enclosingCallable, enclosingStmt)
+                extractNull(e.type, tw.getLocation(e), parent, idx, enclosingCallable, enclosingStmt, overrideId = overrideId)
             }
             else -> {
                 null.also {
@@ -5157,11 +5178,11 @@ open class KotlinFileExtractor(
     /**
      * Extracts a single type access expression with no enclosing callable and statement.
      */
-    private fun extractTypeAccess(type: TypeResults, location: Label<out DbLocation>, parent: Label<out DbExprparent>, idx: Int): Label<out DbExpr> {
+    private fun extractTypeAccess(type: TypeResults, location: Label<out DbLocation>, parent: Label<out DbExprparent>, idx: Int, overrideId: Label<out DbExpr>? = null): Label<out DbExpr> {
         // TODO: elementForLocation allows us to give some sort of
         //   location, but a proper location for the type access will
         //   require upstream changes
-        val id = tw.getFreshIdLabel<DbUnannotatedtypeaccess>()
+        val id = exprIdOrFresh<DbUnannotatedtypeaccess>(overrideId)
         tw.writeExprs_unannotatedtypeaccess(id, type.javaResult.id, parent, idx)
         tw.writeExprsKotlinType(id, type.kotlinResult.id)
         tw.writeHasLocation(id, location)
@@ -5171,8 +5192,8 @@ open class KotlinFileExtractor(
     /**
      * Extracts a single type access expression with enclosing callable and statement.
      */
-    private fun extractTypeAccess(type: TypeResults, location: Label<DbLocation>, parent: Label<out DbExprparent>, idx: Int, enclosingCallable: Label<out DbCallable>?, enclosingStmt: Label<out DbStmt>?): Label<out DbExpr> {
-        val id = extractTypeAccess(type, location, parent, idx)
+    private fun extractTypeAccess(type: TypeResults, location: Label<DbLocation>, parent: Label<out DbExprparent>, idx: Int, enclosingCallable: Label<out DbCallable>?, enclosingStmt: Label<out DbStmt>?, overrideId: Label<out DbExpr>? = null): Label<out DbExpr> {
+        val id = extractTypeAccess(type, location, parent, idx, overrideId = overrideId)
         if (enclosingCallable != null) {
             tw.writeCallableEnclosingExpr(id, enclosingCallable)
         }
@@ -5220,11 +5241,14 @@ open class KotlinFileExtractor(
     /**
      * Extracts a type access expression and its child type access expressions in case of a generic type. Nested generics are also handled.
      */
-    private fun extractTypeAccessRecursive(t: IrType, location: Label<DbLocation>, parent: Label<out DbExprparent>, idx: Int, enclosingCallable: Label<out DbCallable>?, enclosingStmt: Label<out DbStmt>?, typeContext: TypeContext = TypeContext.OTHER): Label<out DbExpr> {
+    private fun extractTypeAccessRecursive(t: IrType, location: Label<DbLocation>, parent: Label<out DbExprparent>, idx: Int, enclosingCallable: Label<out DbCallable>?, enclosingStmt: Label<out DbStmt>?, typeContext: TypeContext = TypeContext.OTHER, overrideId: Label<out DbExpr>? = null): Label<out DbExpr> {
         // TODO: `useType` substitutes types to their java equivalent, and sometimes that also means changing the number of type arguments. The below logic doesn't take this into account.
         // For example `KFunction2<Int,Double,String>` becomes `KFunction<String>` with three child type access expressions: `Int`, `Double`, `String`.
-        val typeAccessId = extractTypeAccess(useType(t, typeContext), location, parent, idx, enclosingCallable, enclosingStmt)
+        val typeAccessId = extractTypeAccess(useType(t, typeContext), location, parent, idx, enclosingCallable, enclosingStmt, overrideId = overrideId)
         if (t is IrSimpleType) {
+            if (t.arguments.isNotEmpty() && overrideId != null) {
+                logger.error("Unexpected parameterized type with an overridden expression ID; children will be assigned fresh IDs")
+            }
             extractTypeArguments(t.arguments.filterIsInstance<IrType>(), location, typeAccessId, enclosingCallable, enclosingStmt)
         }
         return typeAccessId

From 2fd8e61fe29a77216d421e263926b351629a3825 Mon Sep 17 00:00:00 2001
From: Chris Smowton <smowton@github.com>
Date: Wed, 9 Nov 2022 16:57:39 +0000
Subject: [PATCH 1212/1420] Add test of Java/Kotlin annotation naming
 consistency

---
 .../PrintAst.expected                         | 53 +++++++++++++++++++
 .../annotation-id-consistency/PrintAst.qlref  |  1 +
 .../annotation-id-consistency/User.java       |  7 +++
 .../kotlin/annotation-id-consistency/test.kt  | 10 ++++
 .../kotlin/annotation-id-consistency/test.py  |  5 ++
 .../kotlin/annotation-id-consistency/x.kt     |  3 ++
 6 files changed, 79 insertions(+)
 create mode 100644 java/ql/integration-tests/all-platforms/kotlin/annotation-id-consistency/PrintAst.expected
 create mode 100644 java/ql/integration-tests/all-platforms/kotlin/annotation-id-consistency/PrintAst.qlref
 create mode 100644 java/ql/integration-tests/all-platforms/kotlin/annotation-id-consistency/User.java
 create mode 100644 java/ql/integration-tests/all-platforms/kotlin/annotation-id-consistency/test.kt
 create mode 100644 java/ql/integration-tests/all-platforms/kotlin/annotation-id-consistency/test.py
 create mode 100644 java/ql/integration-tests/all-platforms/kotlin/annotation-id-consistency/x.kt

diff --git a/java/ql/integration-tests/all-platforms/kotlin/annotation-id-consistency/PrintAst.expected b/java/ql/integration-tests/all-platforms/kotlin/annotation-id-consistency/PrintAst.expected
new file mode 100644
index 00000000000..da7d61a4ee3
--- /dev/null
+++ b/java/ql/integration-tests/all-platforms/kotlin/annotation-id-consistency/PrintAst.expected
@@ -0,0 +1,53 @@
+User.java:
+#    0| [CompilationUnit] User
+#    1|   1: [Class] User
+#    3|     2: [Method] user
+#    3|       3: [TypeAccess] void
+#-----|       4: (Parameters)
+#    3|         0: [Parameter] a1
+#    3|           0: [TypeAccess] Ann1
+#    3|         1: [Parameter] a2
+#    3|           0: [TypeAccess] Ann2
+#    3|       5: [BlockStmt] { ... }
+#    4|         0: [ExprStmt] <Expr>;
+#    4|           0: [MethodAccess] x(...)
+#    4|             -1: [VarAccess] a1
+#    4|         1: [ExprStmt] <Expr>;
+#    4|           0: [MethodAccess] z(...)
+#    4|             -1: [VarAccess] a2
+#    4|         2: [ExprStmt] <Expr>;
+#    4|           0: [ClassInstanceExpr] new Annotated(...)
+#    4|             -3: [TypeAccess] Annotated
+test.kt:
+#    0| [CompilationUnit] test
+#    3|   1: [Interface] Ann1
+#    3|     1: [Method] x
+#    3|     2: [Method] y
+#    5|   2: [Interface] Ann2
+#    5|     1: [Method] z
+#    5|     2: [Method] w
+#    5|     3: [Method] v
+#    5|     4: [Method] u
+#    7|   3: [Interface] Ann3
+#    7|     1: [Method] a
+#    9|   4: [Class] Annotated
+#-----|     -3: (Annotations)
+#    9|       2: [Annotation] Ann1
+#    0|         1: [IntegerLiteral] 1
+#    0|         1: [Annotation] Ann2
+#    0|           1: [StringLiteral] "Hello"
+#    0|           1: [TypeLiteral] String.class
+#    0|             0: [TypeAccess] String
+#    0|           1: [ArrayInit] {...}
+#    0|             1: [IntegerLiteral] 1
+#    0|             1: [IntegerLiteral] 2
+#    0|             1: [IntegerLiteral] 3
+#    0|           1: [ArrayInit] {...}
+#    0|             1: [Annotation] Ann3
+#    0|               1: [IntegerLiteral] 1
+#    0|             1: [Annotation] Ann3
+#    0|               1: [IntegerLiteral] 2
+#   10|     1: [Constructor] Annotated
+#    9|       5: [BlockStmt] { ... }
+#    9|         0: [SuperConstructorInvocationStmt] super(...)
+#   10|         1: [BlockStmt] { ... }
diff --git a/java/ql/integration-tests/all-platforms/kotlin/annotation-id-consistency/PrintAst.qlref b/java/ql/integration-tests/all-platforms/kotlin/annotation-id-consistency/PrintAst.qlref
new file mode 100644
index 00000000000..c7fd5faf239
--- /dev/null
+++ b/java/ql/integration-tests/all-platforms/kotlin/annotation-id-consistency/PrintAst.qlref
@@ -0,0 +1 @@
+semmle/code/java/PrintAst.ql
\ No newline at end of file
diff --git a/java/ql/integration-tests/all-platforms/kotlin/annotation-id-consistency/User.java b/java/ql/integration-tests/all-platforms/kotlin/annotation-id-consistency/User.java
new file mode 100644
index 00000000000..7061beedb93
--- /dev/null
+++ b/java/ql/integration-tests/all-platforms/kotlin/annotation-id-consistency/User.java
@@ -0,0 +1,7 @@
+public class User {
+
+  public static void user(Ann1 a1, Ann2 a2) {
+    a1.x(); a2.z(); new Annotated();
+  }
+
+}
diff --git a/java/ql/integration-tests/all-platforms/kotlin/annotation-id-consistency/test.kt b/java/ql/integration-tests/all-platforms/kotlin/annotation-id-consistency/test.kt
new file mode 100644
index 00000000000..daef571e62d
--- /dev/null
+++ b/java/ql/integration-tests/all-platforms/kotlin/annotation-id-consistency/test.kt
@@ -0,0 +1,10 @@
+import kotlin.reflect.KClass
+
+annotation class Ann1(val x: Int, val y: Ann2) { }
+
+annotation class Ann2(val z: String, val w: KClass<*>, val v: IntArray, val u: Array<Ann3>) { }
+
+annotation class Ann3(val a: Int) { }
+
+@Ann1(1, Ann2("Hello", String::class, intArrayOf(1, 2, 3), arrayOf(Ann3(1), Ann3(2))))
+class Annotated { }
diff --git a/java/ql/integration-tests/all-platforms/kotlin/annotation-id-consistency/test.py b/java/ql/integration-tests/all-platforms/kotlin/annotation-id-consistency/test.py
new file mode 100644
index 00000000000..8ceac659f1d
--- /dev/null
+++ b/java/ql/integration-tests/all-platforms/kotlin/annotation-id-consistency/test.py
@@ -0,0 +1,5 @@
+from create_database_utils import *
+
+os.mkdir('out')
+os.mkdir('out2')
+run_codeql_database_create(["kotlinc test.kt -d out", "javac User.java -cp out -d out2"], lang="java")
diff --git a/java/ql/integration-tests/all-platforms/kotlin/annotation-id-consistency/x.kt b/java/ql/integration-tests/all-platforms/kotlin/annotation-id-consistency/x.kt
new file mode 100644
index 00000000000..5ca8afcf8e7
--- /dev/null
+++ b/java/ql/integration-tests/all-platforms/kotlin/annotation-id-consistency/x.kt
@@ -0,0 +1,3 @@
+import kotlin.reflect.KClass
+
+fun f(x: KClass<*>) = x

From d7213d2d82188da7377bad924c02839797e5e85c Mon Sep 17 00:00:00 2001
From: Chris Smowton <smowton@github.com>
Date: Wed, 9 Nov 2022 17:24:40 +0000
Subject: [PATCH 1213/1420] Only convert KClass -> Class in annotation context

---
 .../src/main/kotlin/KotlinFileExtractor.kt               | 9 +++++----
 .../kotlin-extractor/src/main/kotlin/utils/ClassNames.kt | 8 +-------
 .../kotlin/annotation-id-consistency/PrintAst.expected   | 6 ++++++
 .../kotlin/annotation-id-consistency/test.kt             | 4 ++--
 4 files changed, 14 insertions(+), 13 deletions(-)

diff --git a/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt b/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt
index 0f44e2a30ef..84c5c721ed0 100644
--- a/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt
+++ b/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt
@@ -512,14 +512,14 @@ open class KotlinFileExtractor(
             is IrClassReference -> {
                 val classRefId = exprId()
                 val typeAccessId = tw.getLabelFor<DbUnannotatedtypeaccess>("@\"annotationExpr;{$classRefId};0\"")
-                extractClassReference(v, parent, idx, null, null, overrideId = classRefId, typeAccessOverrideId = typeAccessId, useUnboundType = true)
+                extractClassReference(v, parent, idx, null, null, overrideId = classRefId, typeAccessOverrideId = typeAccessId, useJavaLangClassType = true)
             }
             is IrConstructorCall -> {
                 extractAnnotation(v, parent, idx, contextLabel)
             }
             is IrVararg -> {
                 tw.getLabelFor<DbArrayinit>("@\"annotationarray;{${parent}};$contextLabel\"").also { arrayId ->
-                    val type = useType(v.type)
+                    val type = useType(kClassToJavaClass(v.type))
                     tw.writeExprs_arrayinit(arrayId, type.javaResult.id, parent, idx)
                     tw.writeExprsKotlinType(arrayId, type.kotlinResult.id)
                     tw.writeHasLocation(arrayId, tw.getLocation(v))
@@ -4195,11 +4195,12 @@ open class KotlinFileExtractor(
         enclosingStmt: Label<out DbStmt>?,
         overrideId: Label<out DbExpr>? = null,
         typeAccessOverrideId: Label<out DbExpr>? = null,
-        useUnboundType: Boolean = false
+        useJavaLangClassType: Boolean = false
     ) =
         exprIdOrFresh<DbTypeliteral>(overrideId).also { id ->
             val locId = tw.getLocation(e)
-            val type = useType(if (useUnboundType) toUnbound(e.type) else e.type)
+            val jlcType = if (useJavaLangClassType) this.javaLangClass?.let { it.typeWith() } else null
+            val type = useType(jlcType ?: e.type)
             tw.writeExprs_typeliteral(id, type.javaResult.id, parent, idx)
             tw.writeExprsKotlinType(id, type.kotlinResult.id)
             extractExprContext(id, locId, enclosingCallable, enclosingStmt)
diff --git a/java/kotlin-extractor/src/main/kotlin/utils/ClassNames.kt b/java/kotlin-extractor/src/main/kotlin/utils/ClassNames.kt
index ccb649e9561..0bfed4a23c3 100644
--- a/java/kotlin-extractor/src/main/kotlin/utils/ClassNames.kt
+++ b/java/kotlin-extractor/src/main/kotlin/utils/ClassNames.kt
@@ -120,10 +120,4 @@ fun getContainingClassOrSelf(decl: IrDeclaration): IrClass? {
 }
 
 fun getJavaEquivalentClassId(c: IrClass) =
-    c.fqNameWhenAvailable?.toUnsafe()?.let {
-        if (it.asString() == "kotlin.reflect.KClass") {
-            ClassId.fromString("java.lang.Class")
-        } else {
-            JavaToKotlinClassMap.mapKotlinToJava(it)
-        }
-    }
+    c.fqNameWhenAvailable?.toUnsafe()?.let { JavaToKotlinClassMap.mapKotlinToJava(it) }
diff --git a/java/ql/integration-tests/all-platforms/kotlin/annotation-id-consistency/PrintAst.expected b/java/ql/integration-tests/all-platforms/kotlin/annotation-id-consistency/PrintAst.expected
index da7d61a4ee3..89d9523db96 100644
--- a/java/ql/integration-tests/all-platforms/kotlin/annotation-id-consistency/PrintAst.expected
+++ b/java/ql/integration-tests/all-platforms/kotlin/annotation-id-consistency/PrintAst.expected
@@ -28,6 +28,7 @@ test.kt:
 #    5|     2: [Method] w
 #    5|     3: [Method] v
 #    5|     4: [Method] u
+#    5|     5: [Method] t
 #    7|   3: [Interface] Ann3
 #    7|     1: [Method] a
 #    9|   4: [Class] Annotated
@@ -47,6 +48,11 @@ test.kt:
 #    0|               1: [IntegerLiteral] 1
 #    0|             1: [Annotation] Ann3
 #    0|               1: [IntegerLiteral] 2
+#    0|           1: [ArrayInit] {...}
+#    0|             1: [TypeLiteral] String.class
+#    0|               0: [TypeAccess] String
+#    0|             1: [TypeLiteral] int.class
+#    0|               0: [TypeAccess] int
 #   10|     1: [Constructor] Annotated
 #    9|       5: [BlockStmt] { ... }
 #    9|         0: [SuperConstructorInvocationStmt] super(...)
diff --git a/java/ql/integration-tests/all-platforms/kotlin/annotation-id-consistency/test.kt b/java/ql/integration-tests/all-platforms/kotlin/annotation-id-consistency/test.kt
index daef571e62d..c897d8faf15 100644
--- a/java/ql/integration-tests/all-platforms/kotlin/annotation-id-consistency/test.kt
+++ b/java/ql/integration-tests/all-platforms/kotlin/annotation-id-consistency/test.kt
@@ -2,9 +2,9 @@ import kotlin.reflect.KClass
 
 annotation class Ann1(val x: Int, val y: Ann2) { }
 
-annotation class Ann2(val z: String, val w: KClass<*>, val v: IntArray, val u: Array<Ann3>) { }
+annotation class Ann2(val z: String, val w: KClass<*>, val v: IntArray, val u: Array<Ann3>, val t: Array<KClass<*>>) { }
 
 annotation class Ann3(val a: Int) { }
 
-@Ann1(1, Ann2("Hello", String::class, intArrayOf(1, 2, 3), arrayOf(Ann3(1), Ann3(2))))
+@Ann1(1, Ann2("Hello", String::class, intArrayOf(1, 2, 3), arrayOf(Ann3(1), Ann3(2)), arrayOf(String::class, Int::class)))
 class Annotated { }

From 14a47f628ceca43bcecc855d333bb70d9fb3ed98 Mon Sep 17 00:00:00 2001
From: Chris Smowton <smowton@github.com>
Date: Wed, 9 Nov 2022 18:42:23 +0000
Subject: [PATCH 1214/1420] Fixup: remove unneeded test file

---
 .../all-platforms/kotlin/annotation-id-consistency/x.kt        | 3 ---
 1 file changed, 3 deletions(-)
 delete mode 100644 java/ql/integration-tests/all-platforms/kotlin/annotation-id-consistency/x.kt

diff --git a/java/ql/integration-tests/all-platforms/kotlin/annotation-id-consistency/x.kt b/java/ql/integration-tests/all-platforms/kotlin/annotation-id-consistency/x.kt
deleted file mode 100644
index 5ca8afcf8e7..00000000000
--- a/java/ql/integration-tests/all-platforms/kotlin/annotation-id-consistency/x.kt
+++ /dev/null
@@ -1,3 +0,0 @@
-import kotlin.reflect.KClass
-
-fun f(x: KClass<*>) = x

From 06133e74a553df545b7f21aebb85af3bf5804be4 Mon Sep 17 00:00:00 2001
From: Chris Smowton <smowton@github.com>
Date: Wed, 9 Nov 2022 19:07:27 +0000
Subject: [PATCH 1215/1420] Handle generic annotations

---
 .../src/main/kotlin/KotlinFileExtractor.kt    | 18 ++++++++-----
 .../PrintAst.expected                         | 25 ++++++++++++++-----
 .../kotlin/annotation-id-consistency/test.kt  |  3 +++
 3 files changed, 34 insertions(+), 12 deletions(-)

diff --git a/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt b/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt
index 84c5c721ed0..b1784547889 100644
--- a/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt
+++ b/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt
@@ -470,7 +470,8 @@ open class KotlinFileExtractor(
         idx: Int,
         contextLabel: String? = null
     ): Label<out DbExpr> {
-        val t = useType(constructorCall.type)
+        // Erase the type here because the JVM lowering erases the annotation type, and so the Java extractor will see it in erased form.
+        val t = useType(erase(constructorCall.type))
         val annotationContextLabel = contextLabel ?: "{${t.javaResult.id}}"
         val id = tw.getLabelFor<DbDeclannotation>("@\"annotation;{$parent};$annotationContextLabel\"")
         tw.writeExprs_declannotation(id, t.javaResult.id, parent, idx)
@@ -485,8 +486,9 @@ open class KotlinFileExtractor(
                 .filterIsInstance<IrProperty>()
                 .first { it.name == param.name }
             val v = constructorCall.getValueArgument(i) ?: param.defaultValue?.expression
-            val getterId = useFunction<DbMethod>(prop.getter!!)
-            val exprId = extractAnnotationValueExpression(v, id, i, "{${getterId}}")
+            val getter = prop.getter!!
+            val getterId = useFunction<DbMethod>(getter)
+            val exprId = extractAnnotationValueExpression(v, id, i, "{${getterId}}", getter.returnType)
             if (exprId != null) {
                 tw.writeAnnotValue(id, getterId, exprId)
             }
@@ -498,7 +500,8 @@ open class KotlinFileExtractor(
         v: IrExpression?,
         parent: Label<out DbExprparent>,
         idx: Int,
-        contextLabel: String): Label<out DbExpr>? {
+        contextLabel: String,
+        contextType: IrType?): Label<out DbExpr>? {
 
         fun exprId() = tw.getLabelFor<DbExpr>("@\"annotationExpr;{$parent};$idx\"")
 
@@ -519,7 +522,10 @@ open class KotlinFileExtractor(
             }
             is IrVararg -> {
                 tw.getLabelFor<DbArrayinit>("@\"annotationarray;{${parent}};$contextLabel\"").also { arrayId ->
-                    val type = useType(kClassToJavaClass(v.type))
+                    // Use the context type (i.e., the type the annotation expects, not the actual type of the array)
+                    // because the Java extractor fills in array types using the same technique. These should only
+                    // differ for generic annotations.
+                    val type = useType(kClassToJavaClass(contextType!!))
                     tw.writeExprs_arrayinit(arrayId, type.javaResult.id, parent, idx)
                     tw.writeExprsKotlinType(arrayId, type.kotlinResult.id)
                     tw.writeHasLocation(arrayId, tw.getLocation(v))
@@ -533,7 +539,7 @@ open class KotlinFileExtractor(
                                 null
                             }
                         }
-                        extractAnnotationValueExpression(argExpr, arrayId, index, "child;$index")
+                        extractAnnotationValueExpression(argExpr, arrayId, index, "child;$index", null)
                     } }
                 }
             }
diff --git a/java/ql/integration-tests/all-platforms/kotlin/annotation-id-consistency/PrintAst.expected b/java/ql/integration-tests/all-platforms/kotlin/annotation-id-consistency/PrintAst.expected
index 89d9523db96..d1e11f8611b 100644
--- a/java/ql/integration-tests/all-platforms/kotlin/annotation-id-consistency/PrintAst.expected
+++ b/java/ql/integration-tests/all-platforms/kotlin/annotation-id-consistency/PrintAst.expected
@@ -31,9 +31,14 @@ test.kt:
 #    5|     5: [Method] t
 #    7|   3: [Interface] Ann3
 #    7|     1: [Method] a
-#    9|   4: [Class] Annotated
+#    9|   4: [GenericType,Interface,ParameterizedType] GenericAnnotation
+#-----|     -2: (Generic Parameters)
+#    9|       0: [TypeVariable] T
+#    9|     1: [Method] x
+#    9|     2: [Method] y
+#   11|   6: [Class] Annotated
 #-----|     -3: (Annotations)
-#    9|       2: [Annotation] Ann1
+#   11|       2: [Annotation] Ann1
 #    0|         1: [IntegerLiteral] 1
 #    0|         1: [Annotation] Ann2
 #    0|           1: [StringLiteral] "Hello"
@@ -53,7 +58,15 @@ test.kt:
 #    0|               0: [TypeAccess] String
 #    0|             1: [TypeLiteral] int.class
 #    0|               0: [TypeAccess] int
-#   10|     1: [Constructor] Annotated
-#    9|       5: [BlockStmt] { ... }
-#    9|         0: [SuperConstructorInvocationStmt] super(...)
-#   10|         1: [BlockStmt] { ... }
+#   12|       3: [Annotation] GenericAnnotation<>
+#   13|     1: [Constructor] Annotated
+#   11|       5: [BlockStmt] { ... }
+#   11|         0: [SuperConstructorInvocationStmt] super(...)
+#   13|         1: [BlockStmt] { ... }
+#    0| [TypeLiteral] String.class
+#    0|   0: [TypeAccess] String
+#    0| [ArrayInit] {...}
+#    0|   1: [TypeLiteral] String.class
+#    0|     0: [TypeAccess] String
+#    0|   1: [TypeLiteral] String.class
+#    0|     0: [TypeAccess] String
diff --git a/java/ql/integration-tests/all-platforms/kotlin/annotation-id-consistency/test.kt b/java/ql/integration-tests/all-platforms/kotlin/annotation-id-consistency/test.kt
index c897d8faf15..fe5dd9b1b76 100644
--- a/java/ql/integration-tests/all-platforms/kotlin/annotation-id-consistency/test.kt
+++ b/java/ql/integration-tests/all-platforms/kotlin/annotation-id-consistency/test.kt
@@ -6,5 +6,8 @@ annotation class Ann2(val z: String, val w: KClass<*>, val v: IntArray, val u: A
 
 annotation class Ann3(val a: Int) { }
 
+annotation class GenericAnnotation<T : Any>(val x: KClass<T>, val y: Array<KClass<T>>) { }
+
 @Ann1(1, Ann2("Hello", String::class, intArrayOf(1, 2, 3), arrayOf(Ann3(1), Ann3(2)), arrayOf(String::class, Int::class)))
+@GenericAnnotation<String>(String::class, arrayOf(String::class, String::class))
 class Annotated { }

From 8781366fbe78524acf6d0db4d8da2b186a485508 Mon Sep 17 00:00:00 2001
From: Chris Smowton <smowton@github.com>
Date: Fri, 11 Nov 2022 11:27:21 +0000
Subject: [PATCH 1216/1420] Only extract function annotations for unbound types

Note however this includes extracting annotations for external types, unlike the situation for function bodies.
---
 .../src/main/kotlin/ExternalDeclExtractor.kt  |  2 +-
 .../src/main/kotlin/KotlinFileExtractor.kt    | 40 +++++++++----------
 2 files changed, 21 insertions(+), 21 deletions(-)

diff --git a/java/kotlin-extractor/src/main/kotlin/ExternalDeclExtractor.kt b/java/kotlin-extractor/src/main/kotlin/ExternalDeclExtractor.kt
index 1b65c8e6f2b..c45e0a454b7 100644
--- a/java/kotlin-extractor/src/main/kotlin/ExternalDeclExtractor.kt
+++ b/java/kotlin-extractor/src/main/kotlin/ExternalDeclExtractor.kt
@@ -119,7 +119,7 @@ class ExternalDeclExtractor(val logger: FileLogger, val invocationTrapFile: Stri
 
                             fileExtractor.extractClassSource(irDecl, extractDeclarations = !irDecl.isFileClass, extractStaticInitializer = false, extractPrivateMembers = false, extractFunctionBodies = false)
                         } else {
-                            fileExtractor.extractDeclaration(irDecl, extractPrivateMembers = false, extractFunctionBodies = false)
+                            fileExtractor.extractDeclaration(irDecl, extractPrivateMembers = false, extractFunctionBodies = false, extractAnnotations = true)
                         }
                     }
                 }
diff --git a/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt b/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt
index b1784547889..9cf9b5790a8 100644
--- a/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt
+++ b/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt
@@ -91,7 +91,7 @@ open class KotlinFileExtractor(
             }
 
             file.declarations.forEach {
-                extractDeclaration(it, extractPrivateMembers = true, extractFunctionBodies = true)
+                extractDeclaration(it, extractPrivateMembers = true, extractFunctionBodies = true, extractAnnotations = true)
                 if (it is IrProperty || it is IrField || it is IrFunction) {
                     externalClassExtractor.writeStubTrapFile(it, getTrapFileSignature(it))
                 }
@@ -148,7 +148,7 @@ open class KotlinFileExtractor(
     private fun shouldExtractDecl(declaration: IrDeclaration, extractPrivateMembers: Boolean) =
         extractPrivateMembers || !isPrivate(declaration)
 
-    fun extractDeclaration(declaration: IrDeclaration, extractPrivateMembers: Boolean, extractFunctionBodies: Boolean) {
+    fun extractDeclaration(declaration: IrDeclaration, extractPrivateMembers: Boolean, extractFunctionBodies: Boolean, extractAnnotations: Boolean) {
         with("declaration", declaration) {
             if (!shouldExtractDecl(declaration, extractPrivateMembers))
                 return
@@ -163,7 +163,7 @@ open class KotlinFileExtractor(
                 is IrFunction -> {
                     val parentId = useDeclarationParent(declaration.parent, false)?.cast<DbReftype>()
                     if (parentId != null) {
-                        extractFunction(declaration, parentId, extractBody = extractFunctionBodies, extractMethodAndParameterTypeAccesses = extractFunctionBodies, null, listOf())
+                        extractFunction(declaration, parentId, extractBody = extractFunctionBodies, extractMethodAndParameterTypeAccesses = extractFunctionBodies, extractAnnotations = extractAnnotations, null, listOf())
                     }
                     Unit
                 }
@@ -173,7 +173,7 @@ open class KotlinFileExtractor(
                 is IrProperty -> {
                     val parentId = useDeclarationParent(declaration.parent, false)?.cast<DbReftype>()
                     if (parentId != null) {
-                        extractProperty(declaration, parentId, extractBackingField = true, extractFunctionBodies = extractFunctionBodies, extractPrivateMembers = extractPrivateMembers, null, listOf())
+                        extractProperty(declaration, parentId, extractBackingField = true, extractFunctionBodies = extractFunctionBodies, extractPrivateMembers = extractPrivateMembers, extractAnnotations = extractAnnotations, null, listOf())
                     }
                     Unit
                 }
@@ -406,8 +406,8 @@ open class KotlinFileExtractor(
                 }
             }
         when (d) {
-            is IrFunction -> extractFunction(d, parentId, extractBody = false, extractMethodAndParameterTypeAccesses = false, typeParamSubstitution, argsIncludingOuterClasses)
-            is IrProperty -> extractProperty(d, parentId, extractBackingField = false, extractFunctionBodies = false, extractPrivateMembers = false, typeParamSubstitution, argsIncludingOuterClasses)
+            is IrFunction -> extractFunction(d, parentId, extractBody = false, extractMethodAndParameterTypeAccesses = false, extractAnnotations = false, typeParamSubstitution, argsIncludingOuterClasses)
+            is IrProperty -> extractProperty(d, parentId, extractBackingField = false, extractFunctionBodies = false, extractPrivateMembers = false, extractAnnotations = false, typeParamSubstitution, argsIncludingOuterClasses)
             else -> {}
         }
     }
@@ -604,11 +604,11 @@ open class KotlinFileExtractor(
                             .filterIsInstance<IrProperty>()
                             .map {
                                 val getter = it.getter!!
-                                val label = extractFunction(getter, id, extractBody = false, extractMethodAndParameterTypeAccesses = false, null, listOf())
+                                val label = extractFunction(getter, id, extractBody = false, extractMethodAndParameterTypeAccesses = false, extractAnnotations = true, null, listOf())
                                 tw.writeIsAnnotElem(label!!.cast<DbMethod>())
                             }
                     } else {
-                        c.declarations.forEach { extractDeclaration(it, extractPrivateMembers = extractPrivateMembers, extractFunctionBodies = extractFunctionBodies) }
+                        c.declarations.forEach { extractDeclaration(it, extractPrivateMembers = extractPrivateMembers, extractFunctionBodies = extractFunctionBodies, extractAnnotations = true) }
                         if (extractStaticInitializer)
                             extractStaticInitializer(c, { id })
                         extractJvmStaticProxyMethods(c, id, extractPrivateMembers, extractFunctionBodies)
@@ -665,7 +665,7 @@ open class KotlinFileExtractor(
             val proxyFunctionId = tw.getLabelFor<DbMethod>(getFunctionLabel(f, classId, listOf()))
             // We extract the function prototype with its ID overridden to belong to `c` not the companion object,
             // but suppress outputting the body, which we will replace with a delegating call below.
-            forceExtractFunction(f, classId, extractBody = false, extractMethodAndParameterTypeAccesses = extractFunctionBodies, typeSubstitution = null, classTypeArgsIncludingOuterClasses = listOf(), extractOrigin = false, OverriddenFunctionAttributes(id = proxyFunctionId))
+            forceExtractFunction(f, classId, extractBody = false, extractMethodAndParameterTypeAccesses = extractFunctionBodies, extractAnnotations = false, typeSubstitution = null, classTypeArgsIncludingOuterClasses = listOf(), extractOrigin = false, OverriddenFunctionAttributes(id = proxyFunctionId))
             addModifiers(proxyFunctionId, "static")
             tw.writeCompiler_generated(proxyFunctionId, CompilerGeneratedKinds.JVMSTATIC_PROXY_METHOD.kind)
             if (extractFunctionBodies) {
@@ -1010,7 +1010,7 @@ open class KotlinFileExtractor(
                 f.realOverrideTarget.let { it != f && (it as? IrSimpleFunction)?.modality != Modality.ABSTRACT && isKotlinDefinedInterface(it.parentClassOrNull) }
 
     private fun makeInterfaceForwarder(f: IrFunction, parentId: Label<out DbReftype>, extractBody: Boolean, extractMethodAndParameterTypeAccesses: Boolean, typeSubstitution: TypeSubstitution?, classTypeArgsIncludingOuterClasses: List<IrTypeArgument>?) =
-        forceExtractFunction(f, parentId, extractBody = false, extractMethodAndParameterTypeAccesses, typeSubstitution, classTypeArgsIncludingOuterClasses, overriddenAttributes = OverriddenFunctionAttributes(visibility = DescriptorVisibilities.PUBLIC, modality = Modality.OPEN)).also { functionId ->
+        forceExtractFunction(f, parentId, extractBody = false, extractMethodAndParameterTypeAccesses, extractAnnotations = false, typeSubstitution, classTypeArgsIncludingOuterClasses, overriddenAttributes = OverriddenFunctionAttributes(visibility = DescriptorVisibilities.PUBLIC, modality = Modality.OPEN)).also { functionId ->
             tw.writeCompiler_generated(functionId, CompilerGeneratedKinds.INTERFACE_FORWARDER.kind)
             if (extractBody) {
                 val realFunctionLocId = tw.getLocation(f)
@@ -1051,7 +1051,7 @@ open class KotlinFileExtractor(
             }
         }
 
-    private fun extractFunction(f: IrFunction, parentId: Label<out DbReftype>, extractBody: Boolean, extractMethodAndParameterTypeAccesses: Boolean, typeSubstitution: TypeSubstitution?, classTypeArgsIncludingOuterClasses: List<IrTypeArgument>?) =
+    private fun extractFunction(f: IrFunction, parentId: Label<out DbReftype>, extractBody: Boolean, extractMethodAndParameterTypeAccesses: Boolean, extractAnnotations: Boolean, typeSubstitution: TypeSubstitution?, classTypeArgsIncludingOuterClasses: List<IrTypeArgument>?) =
         if (isFake(f)) {
             if (needsInterfaceForwarder(f))
                 makeInterfaceForwarder(f, parentId, extractBody, extractMethodAndParameterTypeAccesses, typeSubstitution, classTypeArgsIncludingOuterClasses)
@@ -1060,7 +1060,7 @@ open class KotlinFileExtractor(
         } else {
             // Work around an apparent bug causing redeclarations of `fun toString(): String` specifically in interfaces loaded from Java classes show up like fake overrides.
             val overriddenVisibility = if (f.isFakeOverride && isJavaBinaryObjectMethodRedeclaration(f)) OverriddenFunctionAttributes(visibility = DescriptorVisibilities.PUBLIC) else null
-            forceExtractFunction(f, parentId, extractBody, extractMethodAndParameterTypeAccesses, typeSubstitution, classTypeArgsIncludingOuterClasses, overriddenAttributes = overriddenVisibility).also {
+            forceExtractFunction(f, parentId, extractBody, extractMethodAndParameterTypeAccesses, extractAnnotations, typeSubstitution, classTypeArgsIncludingOuterClasses, overriddenAttributes = overriddenVisibility).also {
                 // The defaults-forwarder function is a static utility, not a member, so we only need to extract this for the unspecialised instance of this class.
                 if (classTypeArgsIncludingOuterClasses.isNullOrEmpty())
                     extractDefaultsFunction(f, parentId, extractBody, extractMethodAndParameterTypeAccesses)
@@ -1196,7 +1196,7 @@ open class KotlinFileExtractor(
                         parentId
             val sourceDeclId = tw.getLabelFor<DbCallable>(getFunctionLabel(f, sourceParentId, listOf(), overloadParameters))
             val overriddenAttributes = OverriddenFunctionAttributes(id = overloadId, sourceDeclarationId = sourceDeclId, valueParameters = overloadParameters)
-            forceExtractFunction(f, parentId, extractBody = false, extractMethodAndParameterTypeAccesses, typeSubstitution, classTypeArgsIncludingOuterClasses, overriddenAttributes = overriddenAttributes)
+            forceExtractFunction(f, parentId, extractBody = false, extractMethodAndParameterTypeAccesses, extractAnnotations = false, typeSubstitution, classTypeArgsIncludingOuterClasses, overriddenAttributes = overriddenAttributes)
             tw.writeCompiler_generated(overloadId, CompilerGeneratedKinds.JVMOVERLOADS_METHOD.kind)
             val realFunctionLocId = tw.getLocation(f)
             if (extractBody) {
@@ -1282,7 +1282,7 @@ open class KotlinFileExtractor(
                 logger.warn("Needed a signature for a type that doesn't have one")
         }
 
-    private fun forceExtractFunction(f: IrFunction, parentId: Label<out DbReftype>, extractBody: Boolean, extractMethodAndParameterTypeAccesses: Boolean, typeSubstitution: TypeSubstitution?, classTypeArgsIncludingOuterClasses: List<IrTypeArgument>?, extractOrigin: Boolean = true, overriddenAttributes: OverriddenFunctionAttributes? = null): Label<out DbCallable>  {
+    private fun forceExtractFunction(f: IrFunction, parentId: Label<out DbReftype>, extractBody: Boolean, extractMethodAndParameterTypeAccesses: Boolean, extractAnnotations: Boolean, typeSubstitution: TypeSubstitution?, classTypeArgsIncludingOuterClasses: List<IrTypeArgument>?, extractOrigin: Boolean = true, overriddenAttributes: OverriddenFunctionAttributes? = null): Label<out DbCallable>  {
         with("function", f) {
             DeclarationStackAdjuster(f, overriddenAttributes).use {
 
@@ -1424,7 +1424,7 @@ open class KotlinFileExtractor(
         return id
     }
 
-    private fun extractProperty(p: IrProperty, parentId: Label<out DbReftype>, extractBackingField: Boolean, extractFunctionBodies: Boolean, extractPrivateMembers: Boolean, typeSubstitution: TypeSubstitution?, classTypeArgsIncludingOuterClasses: List<IrTypeArgument>?) {
+    private fun extractProperty(p: IrProperty, parentId: Label<out DbReftype>, extractBackingField: Boolean, extractFunctionBodies: Boolean, extractPrivateMembers: Boolean, extractAnnotations: Boolean, typeSubstitution: TypeSubstitution?, classTypeArgsIncludingOuterClasses: List<IrTypeArgument>?) {
         with("property", p) {
             fun needsInterfaceForwarderQ(f: IrFunction?) = f?.let { needsInterfaceForwarder(f) } ?: false
 
@@ -1446,7 +1446,7 @@ open class KotlinFileExtractor(
                         logger.warnElement("IrProperty without a getter", p)
                     }
                 } else if (shouldExtractDecl(getter, extractPrivateMembers)) {
-                    val getterId = extractFunction(getter, parentId, extractBody = extractFunctionBodies, extractMethodAndParameterTypeAccesses = extractFunctionBodies, typeSubstitution, classTypeArgsIncludingOuterClasses)?.cast<DbMethod>()
+                    val getterId = extractFunction(getter, parentId, extractBody = extractFunctionBodies, extractMethodAndParameterTypeAccesses = extractFunctionBodies, extractAnnotations = extractAnnotations, typeSubstitution, classTypeArgsIncludingOuterClasses)?.cast<DbMethod>()
                     if (getterId != null) {
                         tw.writeKtPropertyGetters(id, getterId)
                         if (getter.origin == IrDeclarationOrigin.DELEGATED_PROPERTY_ACCESSOR) {
@@ -1463,7 +1463,7 @@ open class KotlinFileExtractor(
                     if (!p.isVar) {
                         logger.warnElement("!isVar property with a setter", p)
                     }
-                    val setterId = extractFunction(setter, parentId, extractBody = extractFunctionBodies, extractMethodAndParameterTypeAccesses = extractFunctionBodies, typeSubstitution, classTypeArgsIncludingOuterClasses)?.cast<DbMethod>()
+                    val setterId = extractFunction(setter, parentId, extractBody = extractFunctionBodies, extractMethodAndParameterTypeAccesses = extractFunctionBodies, extractAnnotations = extractAnnotations, typeSubstitution, classTypeArgsIncludingOuterClasses)?.cast<DbMethod>()
                     if (setterId != null) {
                         tw.writeKtPropertySetters(id, setterId)
                         if (setter.origin == IrDeclarationOrigin.DELEGATED_PROPERTY_ACCESSOR) {
@@ -1528,7 +1528,7 @@ open class KotlinFileExtractor(
                 }
 
                 ee.correspondingClass?.let {
-                    extractDeclaration(it, extractPrivateMembers, extractFunctionBodies)
+                    extractDeclaration(it, extractPrivateMembers, extractFunctionBodies, extractAnnotations = true)
                 }
 
                 extractAnnotations(ee, id)
@@ -5503,7 +5503,7 @@ open class KotlinFileExtractor(
                     // we would need to compose generic type substitutions -- for example, if we're implementing
                     // T UnaryOperator<T>.apply(T t) here, we would need to compose substitutions so we can implement
                     // the real underlying R Function<T, R>.apply(T t).
-                    forceExtractFunction(samMember, classId, extractBody = false, extractMethodAndParameterTypeAccesses = true, typeSub, classTypeArgs, overriddenAttributes = OverriddenFunctionAttributes(id = ids.function, sourceLoc = tw.getLocation(e), modality = Modality.FINAL))
+                    forceExtractFunction(samMember, classId, extractBody = false, extractMethodAndParameterTypeAccesses = true, extractAnnotations = false, typeSub, classTypeArgs, overriddenAttributes = OverriddenFunctionAttributes(id = ids.function, sourceLoc = tw.getLocation(e), modality = Modality.FINAL))
 
                     addModifiers(ids.function, "override")
                     if (st.isSuspendFunctionOrKFunction()) {
@@ -5685,7 +5685,7 @@ open class KotlinFileExtractor(
             val id = extractGeneratedClass(ids, superTypes, tw.getLocation(localFunction), localFunction, localFunction.parent, compilerGeneratedKindOverride = compilerGeneratedKindOverride)
 
             // Extract local function as a member
-            extractFunction(localFunction, id, extractBody = true, extractMethodAndParameterTypeAccesses = true, null, listOf())
+            extractFunction(localFunction, id, extractBody = true, extractMethodAndParameterTypeAccesses = true, extractAnnotations = false, null, listOf())
 
             return id
         }

From 26540111ce95b89fcf5897aa689b3acb5c094c4c Mon Sep 17 00:00:00 2001
From: Chris Smowton <smowton@github.com>
Date: Fri, 11 Nov 2022 11:29:04 +0000
Subject: [PATCH 1217/1420] Factor out common code for referencing an external
 type

---
 .../src/main/kotlin/KotlinFileExtractor.kt    | 72 +++++--------------
 .../src/main/kotlin/KotlinUsesExtractor.kt    | 26 +++----
 2 files changed, 28 insertions(+), 70 deletions(-)

diff --git a/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt b/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt
index 9cf9b5790a8..3d73460ad43 100644
--- a/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt
+++ b/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt
@@ -1903,11 +1903,7 @@ open class KotlinFileExtractor(
             tw.writeCallableBinding(id, methodLabel)
     }
 
-    private val defaultConstructorMarkerClass by lazy {
-        val result = pluginContext.referenceClass(FqName("kotlin.jvm.internal.DefaultConstructorMarker"))?.owner
-        result?.let { extractExternalClassLater(it) }
-        result
-    }
+    private val defaultConstructorMarkerClass by lazy { referenceExternalClass("kotlin.jvm.internal.DefaultConstructorMarker") }
 
     private val defaultConstructorMarkerType by lazy {
         defaultConstructorMarkerClass?.typeWith()
@@ -2269,11 +2265,7 @@ open class KotlinFileExtractor(
 
     private fun findFunction(cls: IrClass, name: String): IrFunction? = cls.declarations.findSubType<IrFunction> { it.name.asString() == name }
 
-    val jvmIntrinsicsClass by lazy {
-        val result = pluginContext.referenceClass(FqName("kotlin.jvm.internal.Intrinsics"))?.owner
-        result?.let { extractExternalClassLater(it) }
-        result
-    }
+    val jvmIntrinsicsClass by lazy { referenceExternalClass("kotlin.jvm.internal.Intrinsics") }
 
     private fun findJdkIntrinsicOrWarn(name: String, warnAgainstElement: IrElement): IrFunction? {
         val result = jvmIntrinsicsClass?.let { findFunction(it, name) }
@@ -2319,11 +2311,7 @@ open class KotlinFileExtractor(
         return prop
     }
 
-    val javaLangString by lazy {
-        val result = pluginContext.referenceClass(FqName("java.lang.String"))?.owner
-        result?.let { extractExternalClassLater(it) }
-        result
-    }
+    val javaLangString by lazy { referenceExternalClass("java.lang.String") }
 
     val stringValueOfObjectMethod by lazy {
         val result = javaLangString?.declarations?.findSubType<IrFunction> {
@@ -2347,11 +2335,7 @@ open class KotlinFileExtractor(
         result
     }
 
-    val kotlinNoWhenBranchMatchedExn by lazy {
-        val result = pluginContext.referenceClass(FqName("kotlin.NoWhenBranchMatchedException"))?.owner
-        result?.let { extractExternalClassLater(it) }
-        result
-    }
+    val kotlinNoWhenBranchMatchedExn by lazy {referenceExternalClass("kotlin.NoWhenBranchMatchedException") }
 
     val kotlinNoWhenBranchMatchedConstructor by lazy {
         val result = kotlinNoWhenBranchMatchedExn?.declarations?.findSubType<IrConstructor> {
@@ -2363,11 +2347,7 @@ open class KotlinFileExtractor(
         result
     }
 
-    val javaUtilArrays by lazy {
-        val result = pluginContext.referenceClass(FqName("java.util.Arrays"))?.owner
-        result?.let { extractExternalClassLater(it) }
-        result
-    }
+    val javaUtilArrays by lazy { referenceExternalClass("java.util.Arrays") }
 
     private fun isFunction(target: IrFunction, pkgName: String, classNameLogged: String, classNamePredicate: (String) -> Boolean, vararg fNames: String, isNullable: Boolean? = false) =
         fNames.any { isFunction(target, pkgName, classNameLogged, classNamePredicate, it, isNullable) }
@@ -4633,6 +4613,8 @@ open class KotlinFileExtractor(
         }
     }
 
+    private val propertyRefType by lazy { referenceExternalClass("kotlin.jvm.internal.PropertyReference")?.typeWith() }
+
     private fun extractPropertyReference(
         exprKind: String,
         propertyReferenceExpr: IrCallableReference<out IrSymbol>,
@@ -4696,8 +4678,7 @@ open class KotlinFileExtractor(
 
             val declarationParent = peekDeclStackAsDeclarationParent(propertyReferenceExpr) ?: return
             // The base class could be `Any`. `PropertyReference` is used to keep symmetry with function references.
-            val baseClass = pluginContext.referenceClass(FqName("kotlin.jvm.internal.PropertyReference"))?.owner?.typeWith()
-                ?: pluginContext.irBuiltIns.anyType
+            val baseClass = propertyRefType ?: pluginContext.irBuiltIns.anyType
 
             val classId = extractGeneratedClass(ids, listOf(baseClass, kPropertyType), locId, propertyReferenceExpr, declarationParent)
 
@@ -4791,6 +4772,8 @@ open class KotlinFileExtractor(
         }
     }
 
+    private val functionRefType by lazy { referenceExternalClass("kotlin.jvm.internal.FunctionReference")?.typeWith() }
+
     private fun extractFunctionReference(
         functionReferenceExpr: IrFunctionReference,
         parent: StmtExprParent,
@@ -4905,8 +4888,7 @@ open class KotlinFileExtractor(
             } else {
                 val declarationParent = peekDeclStackAsDeclarationParent(functionReferenceExpr) ?: return
                 // `FunctionReference` base class is required, because that's implementing `KFunction`.
-                val baseClass = pluginContext.referenceClass(FqName("kotlin.jvm.internal.FunctionReference"))?.owner?.typeWith()
-                    ?: pluginContext.irBuiltIns.anyType
+                val baseClass = functionRefType ?: pluginContext.irBuiltIns.anyType
 
                 val classId = extractGeneratedClass(ids, listOf(baseClass, fnInterfaceType), locId, functionReferenceExpr, declarationParent, null, { it.valueParameters.size == 1 }) {
                     // The argument to FunctionReference's constructor is the function arity.
@@ -4952,34 +4934,14 @@ open class KotlinFileExtractor(
         }
     }
 
-    private fun getFunctionalInterfaceType(functionNTypeArguments: List<IrType>): IrSimpleType? {
-        if (functionNTypeArguments.size > BuiltInFunctionArity.BIG_ARITY) {
-            val funName = "kotlin.jvm.functions.FunctionN"
-            val theFun = pluginContext.referenceClass(FqName(funName))
-            if (theFun == null) {
-                logger.warn("Cannot find $funName for getFunctionalInterfaceType")
-                return null
-            } else {
-                return theFun.typeWith(functionNTypeArguments.last())
-            }
-        } else {
-            return functionN(pluginContext)(functionNTypeArguments.size - 1).typeWith(functionNTypeArguments)
-        }
-    }
+    private fun getFunctionalInterfaceType(functionNTypeArguments: List<IrType>) =
+        getFunctionalInterfaceTypeWithTypeArgs(functionNTypeArguments.map { makeTypeProjection(it, Variance.INVARIANT) })
 
-    private fun getFunctionalInterfaceTypeWithTypeArgs(functionNTypeArguments: List<IrTypeArgument>): IrSimpleType? =
-        if (functionNTypeArguments.size > BuiltInFunctionArity.BIG_ARITY) {
-            val funName = "kotlin.jvm.functions.FunctionN"
-            val theFun = pluginContext.referenceClass(FqName(funName))
-            if (theFun == null) {
-                logger.warn("Cannot find $funName for getFunctionalInterfaceTypeWithTypeArgs")
-                null
-            } else {
-                theFun.typeWithArguments(listOf(functionNTypeArguments.last()))
-            }
-        } else {
+    private fun getFunctionalInterfaceTypeWithTypeArgs(functionNTypeArguments: List<IrTypeArgument>) =
+        if (functionNTypeArguments.size > BuiltInFunctionArity.BIG_ARITY)
+            referenceExternalClass("kotlin.jvm.functions.FunctionN")?.symbol?.typeWithArguments(listOf(functionNTypeArguments.last()))
+        else
             functionN(pluginContext)(functionNTypeArguments.size - 1).symbol.typeWithArguments(functionNTypeArguments)
-        }
 
     private data class FunctionLabels(
         val methodId: Label<DbMethod>,
diff --git a/java/kotlin-extractor/src/main/kotlin/KotlinUsesExtractor.kt b/java/kotlin-extractor/src/main/kotlin/KotlinUsesExtractor.kt
index dbacf42a192..cc335d3f8cb 100644
--- a/java/kotlin-extractor/src/main/kotlin/KotlinUsesExtractor.kt
+++ b/java/kotlin-extractor/src/main/kotlin/KotlinUsesExtractor.kt
@@ -40,11 +40,15 @@ open class KotlinUsesExtractor(
     val pluginContext: IrPluginContext,
     val globalExtensionState: KotlinExtractorGlobalState
 ) {
-    val javaLangObject by lazy {
-        val result = pluginContext.referenceClass(FqName("java.lang.Object"))?.owner
-        result?.let { extractExternalClassLater(it) }
-        result
-    }
+    fun referenceExternalClass(name: String) =
+        pluginContext.referenceClass(FqName(name))?.owner.also {
+            if (it == null)
+                logger.warn("Unable to resolve external class $name")
+            else
+                extractExternalClassLater(it)
+        }
+
+    val javaLangObject by lazy { referenceExternalClass("java.lang.Object") }
 
     val javaLangObjectType by lazy {
         javaLangObject?.typeWith()
@@ -885,11 +889,7 @@ open class KotlinUsesExtractor(
             else -> null
         }
 
-    val javaUtilCollection by lazy {
-        val result = pluginContext.referenceClass(FqName("java.util.Collection"))?.owner
-        result?.let { extractExternalClassLater(it) }
-        result
-    }
+    val javaUtilCollection by lazy { referenceExternalClass("java.util.Collection") }
 
     val wildcardCollectionType by lazy {
         javaUtilCollection?.let {
@@ -1152,11 +1152,7 @@ open class KotlinUsesExtractor(
         return "@\"$prefix;{$parentId}.$name($paramTypeIds){$returnTypeId}${typeArgSuffix}\""
     }
 
-    val javaLangClass by lazy {
-        val result = pluginContext.referenceClass(FqName("java.lang.Class"))?.owner
-        result?.let { extractExternalClassLater(it) }
-        result
-    }
+    val javaLangClass by lazy { referenceExternalClass("java.lang.Class") }
 
     fun kClassToJavaClass(t: IrType): IrType {
         when(t) {

From f7d2644d74cce4373f77f13a1e168e27a48b6ba7 Mon Sep 17 00:00:00 2001
From: Chris Smowton <smowton@github.com>
Date: Fri, 11 Nov 2022 11:30:36 +0000
Subject: [PATCH 1218/1420] Re-enable extracting most annotations

---
 .../src/main/kotlin/KotlinFileExtractor.kt                 | 7 ++++---
 1 file changed, 4 insertions(+), 3 deletions(-)

diff --git a/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt b/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt
index 3d73460ad43..2ed9aaf534c 100644
--- a/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt
+++ b/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt
@@ -238,7 +238,7 @@ open class KotlinFileExtractor(
                 addModifiers(id, "out")
             }
 
-            //extractAnnotations(tp, id)
+            extractAnnotations(tp, id)
             return id
         }
     }
@@ -832,7 +832,7 @@ open class KotlinFileExtractor(
                 extractTypeAccessRecursive(substitutedType, location, id, -1)
             }
             val syntheticParameterNames = isUnderscoreParameter(vp) || ((vp.parent as? IrFunction)?.let { hasSynthesizedParameterNames(it) } ?: true)
-            //extractAnnotations(vp, id)
+            extractAnnotations(vp, id)
             return extractValueParameter(id, substitutedType, vp.name.asString(), location, parent, idx, useValueParameter(vp, parentSourceDeclaration), syntheticParameterNames, vp.isVararg, vp.isNoinline, vp.isCrossinline)
         }
     }
@@ -1372,7 +1372,8 @@ open class KotlinFileExtractor(
 
                 linesOfCode?.linesOfCodeInDeclaration(f, id)
 
-                //extractAnnotations(f, id)
+                if (extractAnnotations)
+                    extractAnnotations(f, id)
 
                 return id
             }

From 9b3c07c32b9ef5d4f155680c0cd7c8171dbb8b90 Mon Sep 17 00:00:00 2001
From: Chris Smowton <smowton@github.com>
Date: Fri, 11 Nov 2022 11:30:59 +0000
Subject: [PATCH 1219/1420] Add annotation class meta-annotations per classes'
 expected JVM lowering

---
 .../src/main/kotlin/KotlinFileExtractor.kt    | 198 +++++++++++++++++-
 1 file changed, 193 insertions(+), 5 deletions(-)

diff --git a/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt b/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt
index 2ed9aaf534c..37e997dbdef 100644
--- a/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt
+++ b/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt
@@ -9,22 +9,29 @@ import com.semmle.extractor.java.OdasaOutput
 import org.jetbrains.kotlin.backend.common.extensions.IrPluginContext
 import org.jetbrains.kotlin.backend.common.lower.parents
 import org.jetbrains.kotlin.backend.common.pop
+import org.jetbrains.kotlin.backend.jvm.ir.getAnnotationRetention
+import org.jetbrains.kotlin.builtins.StandardNames
 import org.jetbrains.kotlin.builtins.functions.BuiltInFunctionArity
 import org.jetbrains.kotlin.config.JvmAnalysisFlags
 import org.jetbrains.kotlin.descriptors.*
+import org.jetbrains.kotlin.descriptors.annotations.KotlinRetention
+import org.jetbrains.kotlin.descriptors.annotations.KotlinTarget
 import org.jetbrains.kotlin.descriptors.java.JavaVisibilities
 import org.jetbrains.kotlin.ir.IrElement
 import org.jetbrains.kotlin.ir.IrStatement
 import org.jetbrains.kotlin.ir.ObsoleteDescriptorBasedAPI
+import org.jetbrains.kotlin.ir.UNDEFINED_OFFSET
 import org.jetbrains.kotlin.ir.backend.js.utils.realOverrideTarget
 import org.jetbrains.kotlin.ir.declarations.*
 import org.jetbrains.kotlin.ir.declarations.lazy.IrLazyFunction
 import org.jetbrains.kotlin.ir.expressions.*
-import org.jetbrains.kotlin.ir.expressions.impl.IrConstImpl
-import org.jetbrains.kotlin.ir.expressions.impl.IrGetValueImpl
+import org.jetbrains.kotlin.ir.expressions.impl.*
 import org.jetbrains.kotlin.ir.symbols.*
 import org.jetbrains.kotlin.ir.types.*
+import org.jetbrains.kotlin.ir.types.impl.makeTypeProjection
 import org.jetbrains.kotlin.ir.util.*
+import org.jetbrains.kotlin.load.java.JvmAbi
+import org.jetbrains.kotlin.load.java.JvmAnnotationNames
 import org.jetbrains.kotlin.load.java.sources.JavaSourceElement
 import org.jetbrains.kotlin.load.java.structure.JavaClass
 import org.jetbrains.kotlin.load.java.structure.JavaMethod
@@ -34,7 +41,9 @@ import org.jetbrains.kotlin.load.java.structure.impl.classFiles.BinaryJavaClass
 import org.jetbrains.kotlin.name.FqName
 import org.jetbrains.kotlin.types.Variance
 import org.jetbrains.kotlin.util.OperatorNameConventions
+import org.jetbrains.kotlin.utils.addToStdlib.firstIsInstanceOrNull
 import java.io.Closeable
+import java.lang.annotation.ElementType
 import java.util.*
 import kotlin.collections.ArrayList
 
@@ -458,12 +467,16 @@ open class KotlinFileExtractor(
         extractDeclInitializers(c.declarations, false) { Pair(blockId, obinitId) }
     }
 
-    private fun extractAnnotations(c: IrAnnotationContainer, parent: Label<out DbExprparent>) {
-        for ((idx, constructorCall: IrConstructorCall) in c.annotations.sortedBy { v -> v.type.classFqName?.asString() }.withIndex()) {
+    private fun extractAnnotations(annotations: List<IrConstructorCall>, parent: Label<out DbExprparent>) {
+        for ((idx, constructorCall: IrConstructorCall) in annotations.sortedBy { v -> v.type.classFqName?.asString() }.withIndex()) {
             extractAnnotation(constructorCall, parent, idx)
         }
     }
 
+    private fun extractAnnotations(c: IrAnnotationContainer, parent: Label<out DbExprparent>) {
+        extractAnnotations(c.annotations, parent)
+    }
+
     private fun extractAnnotation(
         constructorCall: IrConstructorCall,
         parent: Label<out DbExprparent>,
@@ -559,6 +572,175 @@ open class KotlinFileExtractor(
         }
     }
 
+    private val javaAnnotationTargetElementType by lazy { referenceExternalClass("java.lang.annotation.ElementType") }
+
+    private val javaAnnotationTarget by lazy { referenceExternalClass("java.lang.annotation.Target") }
+
+    // Taken from AdditionalClassAnnotationLowering.kt
+    private fun getApplicableTargetSet(c: IrClass): Set<KotlinTarget>? {
+        val targetEntry = c.getAnnotation(StandardNames.FqNames.target) ?: return null
+        return loadAnnotationTargets(targetEntry)
+    }
+
+    // Taken from AdditionalClassAnnotationLowering.kt
+    private fun loadAnnotationTargets(targetEntry: IrConstructorCall): Set<KotlinTarget>? {
+        val valueArgument = targetEntry.getValueArgument(0) as? IrVararg ?: return null
+        return valueArgument.elements.filterIsInstance<IrGetEnumValue>().mapNotNull {
+            KotlinTarget.valueOrNull(it.symbol.owner.name.asString())
+        }.toSet()
+    }
+
+
+    private fun findEnumEntry(c: IrClass, name: String) =
+        c.declarations.filterIsInstance<IrEnumEntry>().find { it.name.asString() == name }
+
+    // Adapted from JvmSymbols.kt
+    private val jvm6TargetMap by lazy {
+        javaAnnotationTargetElementType?.let {
+            val etMethod = findEnumEntry(it, "METHOD")
+            mapOf(
+                KotlinTarget.CLASS to findEnumEntry(it, "TYPE"),
+                KotlinTarget.ANNOTATION_CLASS to findEnumEntry(it, "ANNOTATION_TYPE"),
+                KotlinTarget.CONSTRUCTOR to findEnumEntry(it, "CONSTRUCTOR"),
+                KotlinTarget.LOCAL_VARIABLE to findEnumEntry(it, "LOCAL_VARIABLE"),
+                KotlinTarget.FUNCTION to etMethod,
+                KotlinTarget.PROPERTY_GETTER to etMethod,
+                KotlinTarget.PROPERTY_SETTER to etMethod,
+                KotlinTarget.FIELD to findEnumEntry(it, "FIELD"),
+                KotlinTarget.VALUE_PARAMETER to findEnumEntry(it, "PARAMETER")
+            )
+        }
+    }
+
+    // Adapted from JvmSymbols.kt
+    private val jvm8TargetMap by lazy {
+        javaAnnotationTargetElementType?.let {
+            jvm6TargetMap?.let { j6Map ->
+                j6Map + mapOf(
+                    KotlinTarget.TYPE_PARAMETER to findEnumEntry(it, "TYPE_PARAMETER"),
+                    KotlinTarget.TYPE to findEnumEntry(it, "TYPE_USE")
+                )
+            }
+        }
+    }
+
+    // TODO: find out if we can spot when we're building for JVM <= 7 and omit the Java 8-only targets in that case.
+    private fun getAnnotationTargetMap() = jvm8TargetMap
+
+    // Adapted from AdditionalClassAnnotationLowering.kt
+    private fun generateTargetAnnotation(c: IrClass): IrConstructorCall? {
+        if (c.hasAnnotation(JvmAnnotationNames.TARGET_ANNOTATION))
+            return null
+        val elementType = javaAnnotationTargetElementType ?: return null
+        val targetType = javaAnnotationTarget ?: return null
+        val targetConstructor = targetType.declarations.firstIsInstanceOrNull<IrConstructor>() ?: return null
+        val targets = getApplicableTargetSet(c) ?: return null
+        val annotationTargetMap = getAnnotationTargetMap() ?: return null
+
+        val javaTargets = targets.mapNotNullTo(HashSet()) { annotationTargetMap[it] }.sortedBy {
+            ElementType.valueOf(it.symbol.owner.name.asString())
+        }
+        val vararg = IrVarargImpl(
+            UNDEFINED_OFFSET, UNDEFINED_OFFSET,
+            type = pluginContext.irBuiltIns.arrayClass.typeWith(elementType.defaultType),
+            varargElementType = elementType.defaultType
+        )
+        for (target in javaTargets) {
+            vararg.elements.add(
+                IrGetEnumValueImpl(
+                    UNDEFINED_OFFSET, UNDEFINED_OFFSET, elementType.defaultType, target.symbol
+                )
+            )
+        }
+
+        return IrConstructorCallImpl.fromSymbolOwner(
+            UNDEFINED_OFFSET, UNDEFINED_OFFSET, targetConstructor.returnType, targetConstructor.symbol, 0
+        ).apply {
+            putValueArgument(0, vararg)
+        }
+    }
+
+    private val javaAnnotationRetention by lazy { referenceExternalClass("java.lang.annotation.Retention") }
+    private val javaAnnotationRetentionPolicy by lazy { referenceExternalClass("java.lang.annotation.RetentionPolicy") }
+    private val javaAnnotationRetentionPolicyRuntime by lazy { javaAnnotationRetentionPolicy?.let { findEnumEntry(it, "RUNTIME") } }
+
+    private val annotationRetentionMap by lazy {
+        javaAnnotationRetentionPolicy?.let {
+            mapOf(
+                KotlinRetention.SOURCE to findEnumEntry(it, "SOURCE"),
+                KotlinRetention.BINARY to findEnumEntry(it, "CLASS"),
+                KotlinRetention.RUNTIME to javaAnnotationRetentionPolicyRuntime
+            )
+        }
+    }
+
+    // Taken from AdditionalClassAnnotationLowering.kt
+    private fun generateRetentionAnnotation(irClass: IrClass): IrConstructorCall? {
+        if (irClass.hasAnnotation(JvmAnnotationNames.RETENTION_ANNOTATION))
+            return null
+        val retentionMap = annotationRetentionMap ?: return null
+        val kotlinRetentionPolicy = irClass.getAnnotationRetention()
+        val javaRetentionPolicy = kotlinRetentionPolicy?.let { retentionMap[it] } ?: javaAnnotationRetentionPolicyRuntime ?: return null
+        val retentionPolicyType = javaAnnotationRetentionPolicy ?: return null
+        val retentionType = javaAnnotationRetention ?: return null
+        val targetConstructor = retentionType.declarations.firstIsInstanceOrNull<IrConstructor>() ?: return null
+
+        return IrConstructorCallImpl.fromSymbolOwner(
+            UNDEFINED_OFFSET, UNDEFINED_OFFSET, targetConstructor.returnType, targetConstructor.symbol, 0
+        ).apply {
+            putValueArgument(
+                0,
+                IrGetEnumValueImpl(
+                    UNDEFINED_OFFSET, UNDEFINED_OFFSET, retentionPolicyType.defaultType, javaRetentionPolicy.symbol
+                )
+            )
+        }
+    }
+
+    private val javaAnnotationRepeatable by lazy { referenceExternalClass("java.lang.annotation.Repeatable") }
+
+    // Taken from AdditionalClassAnnotationLowering.kt
+    private fun generateRepeatableAnnotation(irClass: IrClass): IrConstructorCall? {
+        if (!irClass.hasAnnotation(StandardNames.FqNames.repeatable) ||
+            irClass.hasAnnotation(JvmAnnotationNames.REPEATABLE_ANNOTATION)
+        ) return null
+
+        val repeatableConstructor = javaAnnotationRepeatable?.declarations?.firstIsInstanceOrNull<IrConstructor>() ?: return null
+
+        val containerClass =
+            irClass.declarations.singleOrNull {
+                it is IrClass && it.name.asString() == JvmAbi.REPEATABLE_ANNOTATION_CONTAINER_NAME
+            } as IrClass? ?: return null
+        val containerReference = IrClassReferenceImpl(
+            UNDEFINED_OFFSET, UNDEFINED_OFFSET, pluginContext.irBuiltIns.kClassClass.typeWith(containerClass.defaultType),
+            containerClass.symbol, containerClass.defaultType
+        )
+        return IrConstructorCallImpl.fromSymbolOwner(
+            UNDEFINED_OFFSET, UNDEFINED_OFFSET, repeatableConstructor.returnType, repeatableConstructor.symbol, 0
+        ).apply {
+            putValueArgument(0, containerReference)
+        }
+    }
+
+    private val javaAnnotationDocumented by lazy { referenceExternalClass("java.lang.annotation.Documented") }
+
+    // Taken from AdditionalClassAnnotationLowering.kt
+    private fun generateDocumentedAnnotation(irClass: IrClass): IrConstructorCall? {
+        if (!irClass.hasAnnotation(StandardNames.FqNames.mustBeDocumented) ||
+            irClass.hasAnnotation(JvmAnnotationNames.DOCUMENTED_ANNOTATION)
+        ) return null
+
+        val documentedConstructor = javaAnnotationDocumented?.declarations?.firstIsInstanceOrNull<IrConstructor>() ?: return null
+
+        return IrConstructorCallImpl.fromSymbolOwner(
+            UNDEFINED_OFFSET, UNDEFINED_OFFSET, documentedConstructor.returnType, documentedConstructor.symbol, 0
+        )
+    }
+
+    private fun generateJavaMetaAnnotations(c: IrClass) =
+        // This is essentially AdditionalClassAnnotationLowering adapted to run outside the backend.
+        listOfNotNull(generateTargetAnnotation(c), generateRetentionAnnotation(c), generateRepeatableAnnotation(c), generateDocumentedAnnotation(c))
+
     fun extractClassSource(c: IrClass, extractDeclarations: Boolean, extractStaticInitializer: Boolean, extractPrivateMembers: Boolean, extractFunctionBodies: Boolean): Label<out DbClassorinterface> {
         with("class source", c) {
             DeclarationStackAdjuster(c).use {
@@ -640,7 +822,13 @@ open class KotlinFileExtractor(
 
                 linesOfCode?.linesOfCodeInDeclaration(c, id)
 
-                extractAnnotations(c, id)
+                val additionalAnnotations =
+                    if (c.kind == ClassKind.ANNOTATION_CLASS && c.origin != IrDeclarationOrigin.IR_EXTERNAL_JAVA_DECLARATION_STUB)
+                        generateJavaMetaAnnotations(c)
+                    else
+                        listOf()
+
+                extractAnnotations(c.annotations + additionalAnnotations, id)
 
                 if (extractFunctionBodies && !c.isAnonymousObject && !c.isLocal)
                     externalClassExtractor.writeStubTrapFile(c)

From df90fc1a80f242546d7a1071bfe57bf5cf1cabf8 Mon Sep 17 00:00:00 2001
From: Chris Smowton <smowton@github.com>
Date: Fri, 11 Nov 2022 14:01:40 +0000
Subject: [PATCH 1220/1420] Disable type parameter annotation extraction
 pending a database change

---
 java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt b/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt
index 37e997dbdef..5deb44ff278 100644
--- a/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt
+++ b/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt
@@ -247,7 +247,8 @@ open class KotlinFileExtractor(
                 addModifiers(id, "out")
             }
 
-            extractAnnotations(tp, id)
+            // extractAnnotations(tp, id)
+            // TODO: introduce annotations once they can be disambiguated from bounds, which are also child expressions.
             return id
         }
     }

From d530817afc8f8fc984566bdb7fd798eba7206691 Mon Sep 17 00:00:00 2001
From: Chris Smowton <smowton@github.com>
Date: Fri, 11 Nov 2022 14:02:15 +0000
Subject: [PATCH 1221/1420] Accept annotation_classes test changes

---
 java/ql/lib/semmle/code/java/PrintAst.qll     |   6 +-
 .../annotation_classes/PrintAst.expected      | 141 ++++++++++++++----
 .../annotation_classes/classes.expected       |  21 ++-
 .../annotation_classes/classes.ql             |   2 +-
 .../library-tests/annotation_classes/def.kt   |   3 +
 5 files changed, 141 insertions(+), 32 deletions(-)

diff --git a/java/ql/lib/semmle/code/java/PrintAst.qll b/java/ql/lib/semmle/code/java/PrintAst.qll
index 3093c9b2643..802ba19030b 100644
--- a/java/ql/lib/semmle/code/java/PrintAst.qll
+++ b/java/ql/lib/semmle/code/java/PrintAst.qll
@@ -677,10 +677,10 @@ final class AnnotationsNode extends PrintAstNode, TAnnotationsNode {
 
   override ElementNode getChild(int childIndex) {
     result.getElement() =
-      rank[childIndex](Element e, string file, int line, int column |
-        e = ann.getAnAnnotation() and locationSortKeys(e, file, line, column)
+      rank[childIndex](Element e, string file, int line, int column, string s |
+        e = ann.getAnAnnotation() and locationSortKeys(e, file, line, column) and s = e.toString()
       |
-        e order by file, line, column
+        e order by file, line, column, s
       )
   }
 
diff --git a/java/ql/test/kotlin/library-tests/annotation_classes/PrintAst.expected b/java/ql/test/kotlin/library-tests/annotation_classes/PrintAst.expected
index 18c14a30a4f..fc1d83bdc2b 100644
--- a/java/ql/test/kotlin/library-tests/annotation_classes/PrintAst.expected
+++ b/java/ql/test/kotlin/library-tests/annotation_classes/PrintAst.expected
@@ -23,10 +23,18 @@ def.kt:
 #    0| [CompilationUnit] def
 #    0|   1: [Class] DefKt
 #   46|     2: [Method] fn
+#-----|       1: (Annotations)
+#   45|         1: [Annotation] Annot0k
+#    0|           1: [IntegerLiteral] 0
 #-----|       2: (Generic Parameters)
 #   46|         0: [TypeVariable] T
+#   46|       3: [TypeAccess] Unit
 #-----|       4: (Parameters)
 #   46|         0: [Parameter] a
+#-----|           -1: (Annotations)
+#   46|             1: [Annotation] Annot0k
+#    0|               1: [IntegerLiteral] 0
+#   46|           0: [TypeAccess] Annot0k
 #   46|       5: [BlockStmt] { ... }
 #   47|         0: [ExprStmt] <Expr>;
 #   47|           0: [MethodAccess] println(...)
@@ -43,43 +51,102 @@ def.kt:
 #   53|       -1: [TypeAccess] int
 #   57|       0: [IntegerLiteral] 5
 #   57|     4: [Method] getP
+#-----|       1: (Annotations)
+#   54|         1: [Annotation] Annot0k
+#    0|           1: [IntegerLiteral] 0
+#   57|       3: [TypeAccess] int
 #   57|       5: [BlockStmt] { ... }
 #   57|         0: [ReturnStmt] return ...
-#   57|           0: [VarAccess] p
-#   57|     4: [Method] setP
+#   57|           0: [VarAccess] DefKt.p
+#   57|             -1: [TypeAccess] DefKt
+#   57|     5: [Method] setP
+#-----|       1: (Annotations)
+#   55|         1: [Annotation] Annot0k
+#    0|           1: [IntegerLiteral] 0
+#   57|       3: [TypeAccess] Unit
 #-----|       4: (Parameters)
 #   57|         0: [Parameter] <set-?>
+#   57|           0: [TypeAccess] int
 #   57|       5: [BlockStmt] { ... }
 #   57|         0: [ExprStmt] <Expr>;
 #   57|           0: [AssignExpr] ...=...
-#   57|             0: [VarAccess] p
+#   57|             0: [VarAccess] DefKt.p
+#   57|               -1: [TypeAccess] DefKt
 #   57|             1: [VarAccess] <set-?>
 #   59|     6: [ExtensionMethod] myExtension
+#   59|       3: [TypeAccess] Unit
 #-----|       4: (Parameters)
 #   59|         0: [Parameter] <this>
+#-----|           -1: (Annotations)
+#   59|             1: [Annotation] Annot0k
+#    0|               1: [IntegerLiteral] 0
+#   59|           0: [TypeAccess] String
 #   59|       5: [BlockStmt] { ... }
 #    5|   2: [Interface] Annot0k
 #-----|     -3: (Annotations)
-#    5|       5: [Annotation] Target
+#    0|       1: [Annotation] Retention
+#    0|         1: [VarAccess] RetentionPolicy.RUNTIME
+#    0|           -1: [TypeAccess] RetentionPolicy
+#    0|       2: [Annotation] Target
 #    0|         1: [ArrayInit] {...}
-#    0|           1: [VarAccess] CLASS
-#    0|           1: [VarAccess] ANNOTATION_CLASS
-#    0|           1: [VarAccess] TYPE_PARAMETER
-#    0|           1: [VarAccess] PROPERTY
-#    0|           1: [VarAccess] FIELD
-#    0|           1: [VarAccess] LOCAL_VARIABLE
-#    0|           1: [VarAccess] VALUE_PARAMETER
-#    0|           1: [VarAccess] CONSTRUCTOR
-#    0|           1: [VarAccess] FUNCTION
-#    0|           1: [VarAccess] PROPERTY_GETTER
-#    0|           1: [VarAccess] PROPERTY_SETTER
-#    0|           1: [VarAccess] TYPE
-#    0|           1: [VarAccess] FILE
-#    0|           1: [VarAccess] TYPEALIAS
+#    0|           1: [VarAccess] ElementType.TYPE
+#    0|             -1: [TypeAccess] ElementType
+#    0|           1: [VarAccess] ElementType.FIELD
+#    0|             -1: [TypeAccess] ElementType
+#    0|           1: [VarAccess] ElementType.METHOD
+#    0|             -1: [TypeAccess] ElementType
+#    0|           1: [VarAccess] ElementType.PARAMETER
+#    0|             -1: [TypeAccess] ElementType
+#    0|           1: [VarAccess] ElementType.CONSTRUCTOR
+#    0|             -1: [TypeAccess] ElementType
+#    0|           1: [VarAccess] ElementType.LOCAL_VARIABLE
+#    0|             -1: [TypeAccess] ElementType
+#    0|           1: [VarAccess] ElementType.ANNOTATION_TYPE
+#    0|             -1: [TypeAccess] ElementType
+#    0|           1: [VarAccess] ElementType.TYPE_PARAMETER
+#    0|             -1: [TypeAccess] ElementType
+#    0|           1: [VarAccess] ElementType.TYPE_USE
+#    0|             -1: [TypeAccess] ElementType
+#    5|       3: [Annotation] Target
+#    0|         1: [ArrayInit] {...}
+#    0|           1: [VarAccess] AnnotationTarget.CLASS
+#    0|             -1: [TypeAccess] AnnotationTarget
+#    0|           1: [VarAccess] AnnotationTarget.ANNOTATION_CLASS
+#    0|             -1: [TypeAccess] AnnotationTarget
+#    0|           1: [VarAccess] AnnotationTarget.TYPE_PARAMETER
+#    0|             -1: [TypeAccess] AnnotationTarget
+#    0|           1: [VarAccess] AnnotationTarget.PROPERTY
+#    0|             -1: [TypeAccess] AnnotationTarget
+#    0|           1: [VarAccess] AnnotationTarget.FIELD
+#    0|             -1: [TypeAccess] AnnotationTarget
+#    0|           1: [VarAccess] AnnotationTarget.LOCAL_VARIABLE
+#    0|             -1: [TypeAccess] AnnotationTarget
+#    0|           1: [VarAccess] AnnotationTarget.VALUE_PARAMETER
+#    0|             -1: [TypeAccess] AnnotationTarget
+#    0|           1: [VarAccess] AnnotationTarget.CONSTRUCTOR
+#    0|             -1: [TypeAccess] AnnotationTarget
+#    0|           1: [VarAccess] AnnotationTarget.FUNCTION
+#    0|             -1: [TypeAccess] AnnotationTarget
+#    0|           1: [VarAccess] AnnotationTarget.PROPERTY_GETTER
+#    0|             -1: [TypeAccess] AnnotationTarget
+#    0|           1: [VarAccess] AnnotationTarget.PROPERTY_SETTER
+#    0|             -1: [TypeAccess] AnnotationTarget
+#    0|           1: [VarAccess] AnnotationTarget.TYPE
+#    0|             -1: [TypeAccess] AnnotationTarget
+#    0|           1: [VarAccess] AnnotationTarget.FILE
+#    0|             -1: [TypeAccess] AnnotationTarget
+#    0|           1: [VarAccess] AnnotationTarget.TYPEALIAS
+#    0|             -1: [TypeAccess] AnnotationTarget
 #   21|     1: [Method] a
+#-----|       1: (Annotations)
+#   21|         1: [Annotation] JvmName
+#    0|           1: [StringLiteral] "a"
 #   23|   3: [Interface] Annot1k
 #-----|     -3: (Annotations)
-#   23|       4: [Annotation] Annot0k
+#    0|       1: [Annotation] Retention
+#    0|         1: [VarAccess] RetentionPolicy.RUNTIME
+#    0|           -1: [TypeAccess] RetentionPolicy
+#   23|       2: [Annotation] Annot0k
 #    0|         1: [IntegerLiteral] 0
 #   25|     1: [Method] a
 #   26|     2: [Method] b
@@ -93,33 +160,57 @@ def.kt:
 #   33|         0: [SuperConstructorInvocationStmt] super(...)
 #   33|         1: [BlockStmt] { ... }
 #   34|   5: [Class] Y
-#    0|     2: [Method] values
 #    0|     2: [Method] valueOf
+#    0|       3: [TypeAccess] Y
 #-----|       4: (Parameters)
 #    0|         0: [Parameter] value
+#    0|           0: [TypeAccess] String
+#    0|     3: [Method] values
+#    0|       3: [TypeAccess] Y[]
+#    0|         0: [TypeAccess] Y
 #   34|     4: [Constructor] Y
 #   34|       5: [BlockStmt] { ... }
 #   34|         0: [ExprStmt] <Expr>;
 #   34|           0: [ClassInstanceExpr] new Enum(...)
-#   34|             -3: [TypeAccess] Unit
+#   34|             -3: [TypeAccess] Enum<Y>
 #   34|               0: [TypeAccess] Y
+#   34|             0: [NullLiteral] null
+#   34|             1: [IntegerLiteral] 0
 #   34|         1: [BlockStmt] { ... }
+#   35|     5: [FieldDeclaration] Y A;
+#   35|       -1: [TypeAccess] Y
+#   35|       0: [ClassInstanceExpr] new Y(...)
+#   35|         -3: [TypeAccess] Y
+#   35|     6: [FieldDeclaration] Y B;
+#   35|       -1: [TypeAccess] Y
+#   35|       0: [ClassInstanceExpr] new Y(...)
+#   35|         -3: [TypeAccess] Y
+#   35|     7: [FieldDeclaration] Y C;
+#   35|       -1: [TypeAccess] Y
+#   35|       0: [ClassInstanceExpr] new Y(...)
+#   35|         -3: [TypeAccess] Y
 #   38|   6: [Class] Z
 #-----|     -3: (Annotations)
 #   38|       1: [Annotation] Annot0k
 #    0|         1: [IntegerLiteral] 1
 #   39|       2: [Annotation] Annot1k
 #    0|         1: [IntegerLiteral] 2
-#    0|         1: [StringLiteral] ab
+#    0|         1: [StringLiteral] "ab"
 #    0|         1: [TypeLiteral] X.class
 #    0|           0: [TypeAccess] X
-#    0|         1: [VarAccess] B
+#    0|         1: [VarAccess] Y.B
+#    0|           -1: [TypeAccess] Y
 #    0|         1: [ArrayInit] {...}
-#    0|           1: [VarAccess] C
-#    0|           1: [VarAccess] A
+#    0|           1: [VarAccess] Y.C
+#    0|             -1: [TypeAccess] Y
+#    0|           1: [VarAccess] Y.A
+#    0|             -1: [TypeAccess] Y
 #    0|         1: [Annotation] Annot0k
 #    0|           1: [IntegerLiteral] 1
 #   42|     1: [Constructor] Z
+#-----|       1: (Annotations)
+#   41|         1: [Annotation] Annot0k
+#    0|           1: [IntegerLiteral] 0
 #   41|       5: [BlockStmt] { ... }
 #   42|         0: [SuperConstructorInvocationStmt] super(...)
 #   42|         1: [BlockStmt] { ... }
diff --git a/java/ql/test/kotlin/library-tests/annotation_classes/classes.expected b/java/ql/test/kotlin/library-tests/annotation_classes/classes.expected
index 9ef212e7840..b04dd33d2e7 100644
--- a/java/ql/test/kotlin/library-tests/annotation_classes/classes.expected
+++ b/java/ql/test/kotlin/library-tests/annotation_classes/classes.expected
@@ -14,12 +14,17 @@ annotationDeclarations
 | def.kt:23:1:31:1 | Annot1k | def.kt:29:5:29:32 | e |
 | def.kt:23:1:31:1 | Annot1k | def.kt:30:5:30:31 | f |
 annotations
-| annotation_classes.testproj/test.class.files/Annot1k.class:0:0:0:0 | Annot0k | def.kt:23:1:31:1 | Annot1k | def.kt:5:1:21:60 | Annot0k |
 | def.kt:0:0:0:0 | Annot0k | def.kt:39:1:39:40 | Annot1k | def.kt:5:1:21:60 | Annot0k |
 | def.kt:23:1:23:8 | Annot0k | def.kt:23:1:31:1 | Annot1k | def.kt:5:1:21:60 | Annot0k |
 | def.kt:38:1:38:17 | Annot0k | def.kt:38:1:43:1 | Z | def.kt:5:1:21:60 | Annot0k |
 | def.kt:39:1:39:40 | Annot1k | def.kt:38:1:43:1 | Z | def.kt:23:1:31:1 | Annot1k |
+| def.kt:41:5:41:12 | Annot0k | def.kt:42:5:42:19 | Z | def.kt:5:1:21:60 | Annot0k |
+| def.kt:45:1:45:8 | Annot0k | def.kt:46:1:51:1 | fn | def.kt:5:1:21:60 | Annot0k |
+| def.kt:46:21:46:28 | Annot0k | def.kt:46:21:46:39 | a | def.kt:5:1:21:60 | Annot0k |
+| def.kt:54:1:54:12 | Annot0k | def.kt:57:1:57:23 | getP | def.kt:5:1:21:60 | Annot0k |
+| def.kt:55:1:55:12 | Annot0k | def.kt:57:1:57:23 | setP | def.kt:5:1:21:60 | Annot0k |
 | def.kt:56:1:56:14 | Annot0k | def.kt:53:1:57:23 | p | def.kt:5:1:21:60 | Annot0k |
+| def.kt:59:5:59:21 | Annot0k | def.kt:59:5:59:28 | <this> | def.kt:5:1:21:60 | Annot0k |
 | use.java:10:5:10:21 | Annot0j | use.java:14:18:14:18 | Z | Annot0j.java:1:19:1:25 | Annot0j |
 | use.java:11:5:11:90 | Annot1j | use.java:14:18:14:18 | Z | Annot1j.java:1:19:1:25 | Annot1j |
 | use.java:11:73:11:89 | Annot0j | use.java:11:5:11:90 | Annot1j | Annot0j.java:1:19:1:25 | Annot0j |
@@ -28,16 +33,26 @@ annotations
 | use.java:13:73:13:87 | Annot0k | use.java:13:5:13:88 | Annot1k | def.kt:5:1:21:60 | Annot0k |
 annotationValues
 | def.kt:0:0:0:0 | Annot0k | def.kt:0:0:0:0 | 1 |
+| def.kt:0:0:0:0 | Retention | def.kt:0:0:0:0 | RetentionPolicy.RUNTIME |
+| def.kt:0:0:0:0 | Retention | def.kt:0:0:0:0 | RetentionPolicy.RUNTIME |
+| def.kt:0:0:0:0 | Target | def.kt:0:0:0:0 | {...} |
 | def.kt:5:1:20:1 | Target | def.kt:0:0:0:0 | {...} |
+| def.kt:21:26:21:42 | JvmName | def.kt:0:0:0:0 | "a" |
 | def.kt:23:1:23:8 | Annot0k | def.kt:0:0:0:0 | 0 |
 | def.kt:38:1:38:17 | Annot0k | def.kt:0:0:0:0 | 1 |
 | def.kt:39:1:39:40 | Annot1k | def.kt:0:0:0:0 | 2 |
+| def.kt:39:1:39:40 | Annot1k | def.kt:0:0:0:0 | "ab" |
 | def.kt:39:1:39:40 | Annot1k | def.kt:0:0:0:0 | Annot0k |
-| def.kt:39:1:39:40 | Annot1k | def.kt:0:0:0:0 | B |
 | def.kt:39:1:39:40 | Annot1k | def.kt:0:0:0:0 | X.class |
-| def.kt:39:1:39:40 | Annot1k | def.kt:0:0:0:0 | ab |
+| def.kt:39:1:39:40 | Annot1k | def.kt:0:0:0:0 | Y.B |
 | def.kt:39:1:39:40 | Annot1k | def.kt:0:0:0:0 | {...} |
+| def.kt:41:5:41:12 | Annot0k | def.kt:0:0:0:0 | 0 |
+| def.kt:45:1:45:8 | Annot0k | def.kt:0:0:0:0 | 0 |
+| def.kt:46:21:46:28 | Annot0k | def.kt:0:0:0:0 | 0 |
+| def.kt:54:1:54:12 | Annot0k | def.kt:0:0:0:0 | 0 |
+| def.kt:55:1:55:12 | Annot0k | def.kt:0:0:0:0 | 0 |
 | def.kt:56:1:56:14 | Annot0k | def.kt:0:0:0:0 | 0 |
+| def.kt:59:5:59:21 | Annot0k | def.kt:0:0:0:0 | 0 |
 | use.java:10:5:10:21 | Annot0j | use.java:10:20:10:20 | 1 |
 | use.java:11:5:11:90 | Annot1j | use.java:11:18:11:18 | 1 |
 | use.java:11:5:11:90 | Annot1j | use.java:11:25:11:28 | "ac" |
diff --git a/java/ql/test/kotlin/library-tests/annotation_classes/classes.ql b/java/ql/test/kotlin/library-tests/annotation_classes/classes.ql
index fc3db6f0c02..936165cf023 100644
--- a/java/ql/test/kotlin/library-tests/annotation_classes/classes.ql
+++ b/java/ql/test/kotlin/library-tests/annotation_classes/classes.ql
@@ -16,5 +16,5 @@ query predicate annotations(Annotation a, Element e, AnnotationType at) {
 }
 
 query predicate annotationValues(Annotation a, Expr v) {
-  a.getAValue() = v and v.getFile().isSourceFile()
+  a.getValue(_) = v and v.getFile().isSourceFile()
 }
diff --git a/java/ql/test/kotlin/library-tests/annotation_classes/def.kt b/java/ql/test/kotlin/library-tests/annotation_classes/def.kt
index f499d1026fc..2fb107c1263 100644
--- a/java/ql/test/kotlin/library-tests/annotation_classes/def.kt
+++ b/java/ql/test/kotlin/library-tests/annotation_classes/def.kt
@@ -60,3 +60,6 @@ fun @receiver:Annot0k String.myExtension() { }
 
 @Annot0k
 typealias AAA = Z
+
+// Diagnostic Matches: Incomplete annotation: @kotlin.annotation.Target(%)
+// Diagnostic Matches: Incomplete annotation: @kotlin.jvm.JvmName(%)

From 0446145a675ed337bce54865ced3dc5f85931214 Mon Sep 17 00:00:00 2001
From: Chris Smowton <smowton@github.com>
Date: Wed, 7 Dec 2022 18:25:39 +0000
Subject: [PATCH 1222/1420] Accept test changes

These are due to changing string literal representation, omitting empty annotations blocks, and changes to how annotation classes are represented in the database.
---
 .../collection-literals/PrintAst.expected     | 87 ++-----------------
 .../exprs/CONSISTENCY/cfgDeadEnds.expected    |  1 -
 .../jvmoverloads-annotation/PrintAst.expected | 20 +++++
 .../jvmstatic-annotation/PrintAst.expected    | 12 +++
 .../parameter-defaults/PrintAst.expected      |  2 +
 5 files changed, 40 insertions(+), 82 deletions(-)

diff --git a/java/ql/test/kotlin/library-tests/collection-literals/PrintAst.expected b/java/ql/test/kotlin/library-tests/collection-literals/PrintAst.expected
index 5a81043964b..ea5abd8c6e8 100644
--- a/java/ql/test/kotlin/library-tests/collection-literals/PrintAst.expected
+++ b/java/ql/test/kotlin/library-tests/collection-literals/PrintAst.expected
@@ -1,84 +1,9 @@
 test.kt:
 #    0| [CompilationUnit] test
 #    1|   1: [Interface] Ann
-#    1|     1: [Constructor] Ann
-#-----|       4: (Parameters)
-#    1|         0: [Parameter] arr1
-#    1|           0: [TypeAccess] String[]
-#    1|             0: [TypeAccess] String
-#    1|         1: [Parameter] arr2
-#    1|           0: [TypeAccess] int[]
-#    1|       5: [BlockStmt] { ... }
-#    1|         0: [SuperConstructorInvocationStmt] super(...)
-#    1|         1: [BlockStmt] { ... }
-#    1|           0: [ExprStmt] <Expr>;
-#    1|             0: [KtInitializerAssignExpr] ...=...
-#    1|               0: [VarAccess] arr1
-#    1|           1: [ExprStmt] <Expr>;
-#    1|             0: [KtInitializerAssignExpr] ...=...
-#    1|               0: [VarAccess] arr2
-#    1|     2: [Constructor] Ann
-#-----|       4: (Parameters)
-#    1|         0: [Parameter] p0
-#    1|           0: [TypeAccess] String[]
-#    1|         1: [Parameter] p1
-#    1|           0: [TypeAccess] int[]
-#    1|         2: [Parameter] p2
-#    1|           0: [TypeAccess] int
-#    1|         3: [Parameter] p3
-#    1|           0: [TypeAccess] DefaultConstructorMarker
-#    1|       5: [BlockStmt] { ... }
-#    1|         0: [IfStmt] if (...)
-#    1|           0: [EQExpr] ... == ...
-#    1|             0: [AndBitwiseExpr] ... & ...
-#    1|               0: [IntegerLiteral] 1
-#    1|               1: [VarAccess] p2
-#    1|             1: [IntegerLiteral] 0
-#    1|           1: [ExprStmt] <Expr>;
-#    1|             0: [AssignExpr] ...=...
-#    1|               0: [VarAccess] p0
-#    0|               1: [ArrayCreationExpr] new String[]
-#    0|                 -2: [ArrayInit] {...}
-#    0|                   0: [StringLiteral] "hello"
-#    0|                   1: [StringLiteral] "world"
-#    0|                 -1: [TypeAccess] String
-#    0|                 0: [IntegerLiteral] 2
-#    1|         1: [IfStmt] if (...)
-#    1|           0: [EQExpr] ... == ...
-#    1|             0: [AndBitwiseExpr] ... & ...
-#    1|               0: [IntegerLiteral] 2
-#    1|               1: [VarAccess] p2
-#    1|             1: [IntegerLiteral] 0
-#    1|           1: [ExprStmt] <Expr>;
-#    1|             0: [AssignExpr] ...=...
-#    1|               0: [VarAccess] p1
-#    0|               1: [ArrayCreationExpr] new int[]
-#    0|                 -2: [ArrayInit] {...}
-#    0|                   0: [IntegerLiteral] 1
-#    0|                   1: [IntegerLiteral] 2
-#    0|                   2: [IntegerLiteral] 3
-#    0|                 -1: [TypeAccess] int
-#    0|                 0: [IntegerLiteral] 3
-#    1|         2: [ThisConstructorInvocationStmt] this(...)
-#    1|           0: [VarAccess] p0
-#    1|           1: [VarAccess] p1
-#    1|     3: [FieldDeclaration] String[] arr1;
-#    1|       -1: [TypeAccess] String[]
-#    1|         0: [TypeAccess] String
-#    1|       0: [VarAccess] arr1
-#    1|     4: [Method] arr1
-#    1|       3: [TypeAccess] String[]
-#    1|         0: [TypeAccess] String
-#    1|       5: [BlockStmt] { ... }
-#    1|         0: [ReturnStmt] return ...
-#    1|           0: [VarAccess] this.arr1
-#    1|             -1: [ThisAccess] this
-#    1|     5: [Method] arr2
-#    1|       3: [TypeAccess] int[]
-#    1|       5: [BlockStmt] { ... }
-#    1|         0: [ReturnStmt] return ...
-#    1|           0: [VarAccess] this.arr2
-#    1|             -1: [ThisAccess] this
-#    1|     6: [FieldDeclaration] int[] arr2;
-#    1|       -1: [TypeAccess] int[]
-#    1|       0: [VarAccess] arr2
+#-----|     -3: (Annotations)
+#    0|       1: [Annotation] Retention
+#    0|         1: [VarAccess] RetentionPolicy.RUNTIME
+#    0|           -1: [TypeAccess] RetentionPolicy
+#    1|     1: [Method] arr1
+#    1|     2: [Method] arr2
diff --git a/java/ql/test/kotlin/library-tests/exprs/CONSISTENCY/cfgDeadEnds.expected b/java/ql/test/kotlin/library-tests/exprs/CONSISTENCY/cfgDeadEnds.expected
index d7025aaef88..19cabccd05b 100644
--- a/java/ql/test/kotlin/library-tests/exprs/CONSISTENCY/cfgDeadEnds.expected
+++ b/java/ql/test/kotlin/library-tests/exprs/CONSISTENCY/cfgDeadEnds.expected
@@ -1,2 +1 @@
-| exprs.kt:278:52:278:66 | <error expr> | ErrorExpr | unexpected dead end |
 | exprs.kt:278:52:278:66 | { ... } | BlockStmt | unexpected dead end |
diff --git a/java/ql/test/kotlin/library-tests/jvmoverloads-annotation/PrintAst.expected b/java/ql/test/kotlin/library-tests/jvmoverloads-annotation/PrintAst.expected
index a1d0808d7a9..f169bb49418 100644
--- a/java/ql/test/kotlin/library-tests/jvmoverloads-annotation/PrintAst.expected
+++ b/java/ql/test/kotlin/library-tests/jvmoverloads-annotation/PrintAst.expected
@@ -55,6 +55,8 @@ test.kt:
 #    1|             6: [IntegerLiteral] 23
 #    1|             7: [NullLiteral] null
 #   45|     4: [ExtensionMethod] testExtensionFunction
+#-----|       1: (Annotations)
+#   44|         1: [Annotation] JvmOverloads
 #   45|       3: [TypeAccess] int
 #-----|       4: (Parameters)
 #   45|         0: [Parameter] <this>
@@ -170,6 +172,9 @@ test.kt:
 #    1|             5: [IntegerLiteral] 23
 #    1|             6: [NullLiteral] null
 #    6|     4: [Method] testStaticFunction
+#-----|       1: (Annotations)
+#    5|         1: [Annotation] JvmOverloads
+#    5|         2: [Annotation] JvmStatic
 #    6|       3: [TypeAccess] int
 #-----|       4: (Parameters)
 #    6|         0: [Parameter] a
@@ -277,6 +282,8 @@ test.kt:
 #    1|             6: [IntegerLiteral] 23
 #    1|             7: [NullLiteral] null
 #    9|     8: [Method] testMemberFunction
+#-----|       1: (Annotations)
+#    8|         1: [Annotation] JvmOverloads
 #    9|       3: [TypeAccess] int
 #-----|       4: (Parameters)
 #    9|         0: [Parameter] a
@@ -394,6 +401,8 @@ test.kt:
 #    1|             7: [IntegerLiteral] 23
 #    1|             8: [NullLiteral] null
 #   12|     12: [ExtensionMethod] testMemberExtensionFunction
+#-----|       1: (Annotations)
+#   11|         1: [Annotation] JvmOverloads
 #   12|       3: [TypeAccess] int
 #-----|       4: (Parameters)
 #   12|         0: [Parameter] <this>
@@ -501,6 +510,8 @@ test.kt:
 #    1|           5: [IntegerLiteral] 23
 #    1|           6: [NullLiteral] null
 #   16|     3: [Constructor] Test2
+#-----|       1: (Annotations)
+#   16|         1: [Annotation] JvmOverloads
 #-----|       4: (Parameters)
 #   16|         0: [Parameter] a
 #   16|           0: [TypeAccess] int
@@ -609,6 +620,8 @@ test.kt:
 #    1|               6: [IntegerLiteral] 23
 #    1|               7: [NullLiteral] null
 #   21|       4: [Method] testCompanionFunction
+#-----|         1: (Annotations)
+#   20|           1: [Annotation] JvmOverloads
 #   21|         3: [TypeAccess] int
 #-----|         4: (Parameters)
 #   21|           0: [Parameter] a
@@ -718,6 +731,9 @@ test.kt:
 #    1|               6: [IntegerLiteral] 23
 #    1|               7: [NullLiteral] null
 #   24|       8: [Method] testStaticCompanionFunction
+#-----|         1: (Annotations)
+#   23|           1: [Annotation] JvmOverloads
+#   23|           2: [Annotation] JvmStatic
 #   24|         3: [TypeAccess] int
 #-----|         4: (Parameters)
 #   24|           0: [Parameter] a
@@ -883,6 +899,8 @@ test.kt:
 #    1|           4: [IntegerLiteral] 11
 #    1|           5: [NullLiteral] null
 #   30|     3: [Constructor] GenericTest
+#-----|       1: (Annotations)
+#   30|         1: [Annotation] JvmOverloads
 #-----|       4: (Parameters)
 #   30|         0: [Parameter] a
 #   30|           0: [TypeAccess] int
@@ -974,6 +992,8 @@ test.kt:
 #    1|             5: [IntegerLiteral] 11
 #    1|             6: [NullLiteral] null
 #   33|     7: [Method] testMemberFunction
+#-----|       1: (Annotations)
+#   32|         1: [Annotation] JvmOverloads
 #   33|       3: [TypeAccess] int
 #-----|       4: (Parameters)
 #   33|         0: [Parameter] a
diff --git a/java/ql/test/kotlin/library-tests/jvmstatic-annotation/PrintAst.expected b/java/ql/test/kotlin/library-tests/jvmstatic-annotation/PrintAst.expected
index 3971afbe12b..338e67a33b0 100644
--- a/java/ql/test/kotlin/library-tests/jvmstatic-annotation/PrintAst.expected
+++ b/java/ql/test/kotlin/library-tests/jvmstatic-annotation/PrintAst.expected
@@ -157,6 +157,8 @@ test.kt:
 #   17|               0: [KtInitializerAssignExpr] ...=...
 #   17|                 0: [VarAccess] nonStaticProp
 #   13|       2: [Method] staticMethod
+#-----|         1: (Annotations)
+#   13|           1: [Annotation] JvmStatic
 #   13|         3: [TypeAccess] String
 #-----|         4: (Parameters)
 #   13|           0: [Parameter] s
@@ -217,6 +219,8 @@ test.kt:
 #   17|                 -1: [ThisAccess] this
 #   17|               1: [VarAccess] <set-?>
 #   20|       10: [Method] getPropWithStaticGetter
+#-----|         1: (Annotations)
+#   20|           1: [Annotation] JvmStatic
 #   20|         3: [TypeAccess] String
 #   20|         5: [BlockStmt] { ... }
 #   20|           0: [ReturnStmt] return ...
@@ -239,6 +243,8 @@ test.kt:
 #   24|             0: [MethodAccess] getPropWithStaticGetter(...)
 #   24|               -1: [ThisAccess] this
 #   25|       13: [Method] setPropWithStaticSetter
+#-----|         1: (Annotations)
+#   25|           1: [Annotation] JvmStatic
 #   25|         3: [TypeAccess] Unit
 #-----|         4: (Parameters)
 #   25|           0: [Parameter] s
@@ -307,6 +313,8 @@ test.kt:
 #   37|             0: [KtInitializerAssignExpr] ...=...
 #   37|               0: [VarAccess] nonStaticProp
 #   33|     2: [Method] staticMethod
+#-----|       1: (Annotations)
+#   33|         1: [Annotation] JvmStatic
 #   33|       3: [TypeAccess] String
 #-----|       4: (Parameters)
 #   33|         0: [Parameter] s
@@ -370,6 +378,8 @@ test.kt:
 #   37|               -1: [ThisAccess] this
 #   37|             1: [VarAccess] <set-?>
 #   40|     10: [Method] getPropWithStaticGetter
+#-----|       1: (Annotations)
+#   40|         1: [Annotation] JvmStatic
 #   40|       3: [TypeAccess] String
 #   40|       5: [BlockStmt] { ... }
 #   40|         0: [ReturnStmt] return ...
@@ -393,6 +403,8 @@ test.kt:
 #   44|           0: [MethodAccess] getPropWithStaticGetter(...)
 #   44|             -1: [TypeAccess] NonCompanion
 #   45|     13: [Method] setPropWithStaticSetter
+#-----|       1: (Annotations)
+#   45|         1: [Annotation] JvmStatic
 #   45|       3: [TypeAccess] Unit
 #-----|       4: (Parameters)
 #   45|         0: [Parameter] s
diff --git a/java/ql/test/kotlin/library-tests/parameter-defaults/PrintAst.expected b/java/ql/test/kotlin/library-tests/parameter-defaults/PrintAst.expected
index 972e826cdca..4f0b6e30c98 100644
--- a/java/ql/test/kotlin/library-tests/parameter-defaults/PrintAst.expected
+++ b/java/ql/test/kotlin/library-tests/parameter-defaults/PrintAst.expected
@@ -609,6 +609,8 @@ test.kt:
 #   32|         0: [SuperConstructorInvocationStmt] super(...)
 #   32|         1: [BlockStmt] { ... }
 #   34|     2: [Method] f
+#-----|       1: (Annotations)
+#   34|         1: [Annotation] JvmStatic
 #   34|       3: [TypeAccess] Unit
 #-----|       4: (Parameters)
 #   34|         0: [Parameter] x

From 0146d8229a92d6d7aab80cbc617bd6ad1dcd6f36 Mon Sep 17 00:00:00 2001
From: Chris Smowton <smowton@github.com>
Date: Fri, 11 Nov 2022 18:21:19 +0000
Subject: [PATCH 1223/1420] Accept more test changes due to string quoting and
 the Java extractor ignoring the Metadata annotation

---
 java/ql/test/kotlin/library-tests/generics-location/generics.kt  | 1 -
 .../library-tests/internal-constructor-called-from-java/test.kt  | 1 -
 java/ql/test/kotlin/library-tests/internal-public-alias/test.kt  | 1 -
 3 files changed, 3 deletions(-)

diff --git a/java/ql/test/kotlin/library-tests/generics-location/generics.kt b/java/ql/test/kotlin/library-tests/generics-location/generics.kt
index 05ff48bc323..c269ceffea3 100644
--- a/java/ql/test/kotlin/library-tests/generics-location/generics.kt
+++ b/java/ql/test/kotlin/library-tests/generics-location/generics.kt
@@ -9,4 +9,3 @@ class B<T> {
         val b1 = B<Any>()
     }
 }
-
diff --git a/java/ql/test/kotlin/library-tests/internal-constructor-called-from-java/test.kt b/java/ql/test/kotlin/library-tests/internal-constructor-called-from-java/test.kt
index 905d9852632..65c8b43c44c 100644
--- a/java/ql/test/kotlin/library-tests/internal-constructor-called-from-java/test.kt
+++ b/java/ql/test/kotlin/library-tests/internal-constructor-called-from-java/test.kt
@@ -3,4 +3,3 @@ public class Test() {
   internal constructor(x: Int, y: Int) : this() { }
 
 }
-
diff --git a/java/ql/test/kotlin/library-tests/internal-public-alias/test.kt b/java/ql/test/kotlin/library-tests/internal-public-alias/test.kt
index 216d3b3450d..e79e6d2f907 100644
--- a/java/ql/test/kotlin/library-tests/internal-public-alias/test.kt
+++ b/java/ql/test/kotlin/library-tests/internal-public-alias/test.kt
@@ -10,4 +10,3 @@ public class Test {
   internal fun internalFun() = 3
 
 }
-

From 9e0eb56d775b73e0b154dc3cc9bbfee834ca0ea9 Mon Sep 17 00:00:00 2001
From: Chris Smowton <smowton@github.com>
Date: Mon, 14 Nov 2022 12:28:48 +0000
Subject: [PATCH 1224/1420] Extract repeatable annotation container types,
 including synthetic containers

---
 .../main/kotlin/KotlinExtractorExtension.kt   |   1 +
 .../src/main/kotlin/KotlinFileExtractor.kt    | 126 +++++++++++++++++-
 2 files changed, 121 insertions(+), 6 deletions(-)

diff --git a/java/kotlin-extractor/src/main/kotlin/KotlinExtractorExtension.kt b/java/kotlin-extractor/src/main/kotlin/KotlinExtractorExtension.kt
index 71e1862a22e..9bfcabd20fb 100644
--- a/java/kotlin-extractor/src/main/kotlin/KotlinExtractorExtension.kt
+++ b/java/kotlin-extractor/src/main/kotlin/KotlinExtractorExtension.kt
@@ -207,6 +207,7 @@ class KotlinExtractorGlobalState {
     val syntheticToRealClassMap = HashMap<IrClass, IrClass?>()
     val syntheticToRealFunctionMap = HashMap<IrFunction, IrFunction?>()
     val syntheticToRealFieldMap = HashMap<IrField, IrField?>()
+    val syntheticRepeatableAnnotationContainers = HashMap<IrClass, IrClass>()
 }
 
 /*
diff --git a/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt b/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt
index 5deb44ff278..5adaa26a132 100644
--- a/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt
+++ b/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt
@@ -7,6 +7,7 @@ import com.github.codeql.utils.versions.functionN
 import com.github.codeql.utils.versions.isUnderscoreParameter
 import com.semmle.extractor.java.OdasaOutput
 import org.jetbrains.kotlin.backend.common.extensions.IrPluginContext
+import org.jetbrains.kotlin.backend.common.ir.createImplicitParameterDeclarationWithWrappedDescriptor
 import org.jetbrains.kotlin.backend.common.lower.parents
 import org.jetbrains.kotlin.backend.common.pop
 import org.jetbrains.kotlin.backend.jvm.ir.getAnnotationRetention
@@ -22,6 +23,7 @@ import org.jetbrains.kotlin.ir.IrStatement
 import org.jetbrains.kotlin.ir.ObsoleteDescriptorBasedAPI
 import org.jetbrains.kotlin.ir.UNDEFINED_OFFSET
 import org.jetbrains.kotlin.ir.backend.js.utils.realOverrideTarget
+import org.jetbrains.kotlin.ir.builders.declarations.*
 import org.jetbrains.kotlin.ir.declarations.*
 import org.jetbrains.kotlin.ir.declarations.lazy.IrLazyFunction
 import org.jetbrains.kotlin.ir.expressions.*
@@ -39,6 +41,7 @@ import org.jetbrains.kotlin.load.java.structure.JavaTypeParameter
 import org.jetbrains.kotlin.load.java.structure.JavaTypeParameterListOwner
 import org.jetbrains.kotlin.load.java.structure.impl.classFiles.BinaryJavaClass
 import org.jetbrains.kotlin.name.FqName
+import org.jetbrains.kotlin.name.Name
 import org.jetbrains.kotlin.types.Variance
 import org.jetbrains.kotlin.util.OperatorNameConventions
 import org.jetbrains.kotlin.utils.addToStdlib.firstIsInstanceOrNull
@@ -468,8 +471,65 @@ open class KotlinFileExtractor(
         extractDeclInitializers(c.declarations, false) { Pair(blockId, obinitId) }
     }
 
+    // Adapted from RepeatedAnnotationLowering.kt
+    private fun groupRepeatableAnnotations(annotations: List<IrConstructorCall>): List<IrConstructorCall> {
+        if (annotations.size < 2) return annotations
+
+        val annotationsByClass = annotations.groupByTo(mutableMapOf()) { it.symbol.owner.constructedClass }
+        if (annotationsByClass.values.none { it.size > 1 }) return annotations
+
+        val result = mutableListOf<IrConstructorCall>()
+        for (annotation in annotations) {
+            val annotationClass = annotation.symbol.owner.constructedClass
+            val grouped = annotationsByClass.remove(annotationClass) ?: continue
+            if (grouped.size < 2) {
+                result.add(grouped.single())
+                continue
+            }
+
+            val containerClass = getOrCreateContainerClass(annotationClass)
+            if (containerClass != null)
+                result.add(wrapAnnotationEntriesInContainer(annotationClass, containerClass, grouped))
+            else
+                logger.warnElement("Failed to find an annotation container class", annotationClass)
+        }
+        return result
+    }
+
+    // Adapted from RepeatedAnnotationLowering.kt
+    private fun getOrCreateContainerClass(annotationClass: IrClass): IrClass? {
+        val metaAnnotations = annotationClass.annotations
+        val jvmRepeatable = metaAnnotations.find { it.isAnnotation(JvmAnnotationNames.REPEATABLE_ANNOTATION) }
+        return if (jvmRepeatable != null) {
+            ((jvmRepeatable.getValueArgument(0) as? IrClassReference)?.symbol as? IrClassSymbol)?.owner
+        } else {
+            getOrCreateSyntheticRepeatableAnnotationContainer(annotationClass)
+        }
+    }
+
+    // Adapted from RepeatedAnnotationLowering.kt
+    private fun wrapAnnotationEntriesInContainer(
+        annotationClass: IrClass,
+        containerClass: IrClass,
+        entries: List<IrConstructorCall>,
+    ): IrConstructorCall {
+        val annotationType = annotationClass.typeWith()
+        return IrConstructorCallImpl.fromSymbolOwner(containerClass.defaultType, containerClass.primaryConstructor!!.symbol).apply {
+            putValueArgument(
+                0,
+                IrVarargImpl(
+                    UNDEFINED_OFFSET, UNDEFINED_OFFSET,
+                    pluginContext.irBuiltIns.arrayClass.typeWith(annotationType),
+                    annotationType,
+                    entries
+                )
+            )
+        }
+    }
+
     private fun extractAnnotations(annotations: List<IrConstructorCall>, parent: Label<out DbExprparent>) {
-        for ((idx, constructorCall: IrConstructorCall) in annotations.sortedBy { v -> v.type.classFqName?.asString() }.withIndex()) {
+        val groupedAnnotations = groupRepeatableAnnotations(annotations)
+        for ((idx, constructorCall: IrConstructorCall) in groupedAnnotations.sortedBy { v -> v.type.classFqName?.asString() }.withIndex()) {
             extractAnnotation(constructorCall, parent, idx)
         }
     }
@@ -699,8 +759,62 @@ open class KotlinFileExtractor(
     }
 
     private val javaAnnotationRepeatable by lazy { referenceExternalClass("java.lang.annotation.Repeatable") }
+    private val kotlinAnnotationRepeatableContainer by lazy { referenceExternalClass("kotlin.jvm.internal.RepeatableContainer") }
 
-    // Taken from AdditionalClassAnnotationLowering.kt
+    // Taken from JvmCachedDeclarations.kt
+    private fun getOrCreateSyntheticRepeatableAnnotationContainer(annotationClass: IrClass) =
+        globalExtensionState.syntheticRepeatableAnnotationContainers.getOrPut(annotationClass) {
+            val containerClass = pluginContext.irFactory.buildClass {
+                kind = ClassKind.ANNOTATION_CLASS
+                name = Name.identifier(JvmAbi.REPEATABLE_ANNOTATION_CONTAINER_NAME)
+            }.apply {
+                createImplicitParameterDeclarationWithWrappedDescriptor()
+                parent = annotationClass
+                superTypes = listOf(pluginContext.irBuiltIns.annotationType)
+            }
+
+            val propertyName = Name.identifier("value")
+            val propertyType = pluginContext.irBuiltIns.arrayClass.typeWith(annotationClass.typeWith())
+
+            containerClass.addConstructor {
+                isPrimary = true
+            }.apply {
+                addValueParameter(propertyName, propertyType)
+            }
+
+            containerClass.addProperty {
+                name = propertyName
+            }.apply property@{
+                backingField = pluginContext.irFactory.buildField {
+                    name = propertyName
+                    type = propertyType
+                }.apply {
+                    parent = containerClass
+                    correspondingPropertySymbol = this@property.symbol
+                }
+                addDefaultGetter(containerClass, pluginContext.irBuiltIns)
+            }
+
+            val repeatableContainerAnnotation = kotlinAnnotationRepeatableContainer?.let { it.constructors.single() }
+
+            containerClass.annotations = annotationClass.annotations
+                .filter {
+                    it.isAnnotationWithEqualFqName(StandardNames.FqNames.retention) ||
+                            it.isAnnotationWithEqualFqName(StandardNames.FqNames.target)
+                }
+                .map { it.deepCopyWithSymbols(containerClass) } +
+                    listOfNotNull(
+                        repeatableContainerAnnotation?.let {
+                            IrConstructorCallImpl.fromSymbolOwner(
+                                UNDEFINED_OFFSET, UNDEFINED_OFFSET, it.returnType, it.symbol, 0
+                            )
+                        }
+                    )
+
+            containerClass
+        }
+
+    // Adapted from AdditionalClassAnnotationLowering.kt
     private fun generateRepeatableAnnotation(irClass: IrClass): IrConstructorCall? {
         if (!irClass.hasAnnotation(StandardNames.FqNames.repeatable) ||
             irClass.hasAnnotation(JvmAnnotationNames.REPEATABLE_ANNOTATION)
@@ -708,10 +822,10 @@ open class KotlinFileExtractor(
 
         val repeatableConstructor = javaAnnotationRepeatable?.declarations?.firstIsInstanceOrNull<IrConstructor>() ?: return null
 
-        val containerClass =
-            irClass.declarations.singleOrNull {
-                it is IrClass && it.name.asString() == JvmAbi.REPEATABLE_ANNOTATION_CONTAINER_NAME
-            } as IrClass? ?: return null
+        val containerClass = getOrCreateSyntheticRepeatableAnnotationContainer(irClass)
+        // Whenever a repeatable annotation with a Kotlin-synthesised container is extracted, extract the synthetic container to the same trap file.
+        extractClassSource(containerClass, extractDeclarations = true, extractStaticInitializer = true, extractPrivateMembers = true, extractFunctionBodies = true)
+
         val containerReference = IrClassReferenceImpl(
             UNDEFINED_OFFSET, UNDEFINED_OFFSET, pluginContext.irBuiltIns.kClassClass.typeWith(containerClass.defaultType),
             containerClass.symbol, containerClass.defaultType

From eaa9595ea2e684f6e85e0f629a0dbdc483d36657 Mon Sep 17 00:00:00 2001
From: Chris Smowton <smowton@github.com>
Date: Mon, 14 Nov 2022 12:37:20 +0000
Subject: [PATCH 1225/1420] Restore type-accesses to annotation methods; accept
 test changes.

---
 .../src/main/kotlin/KotlinFileExtractor.kt    |  2 +-
 .../PrintAst.expected                         | 77 ++-----------------
 .../test.expected                             | 26 -------
 3 files changed, 9 insertions(+), 96 deletions(-)

diff --git a/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt b/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt
index 5adaa26a132..821ae798c6c 100644
--- a/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt
+++ b/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt
@@ -901,7 +901,7 @@ open class KotlinFileExtractor(
                             .filterIsInstance<IrProperty>()
                             .map {
                                 val getter = it.getter!!
-                                val label = extractFunction(getter, id, extractBody = false, extractMethodAndParameterTypeAccesses = false, extractAnnotations = true, null, listOf())
+                                val label = extractFunction(getter, id, extractBody = false, extractMethodAndParameterTypeAccesses = true, extractAnnotations = true, null, listOf())
                                 tw.writeIsAnnotElem(label!!.cast<DbMethod>())
                             }
                     } else {
diff --git a/java/ql/test/kotlin/library-tests/annotation-accessor-result-type/PrintAst.expected b/java/ql/test/kotlin/library-tests/annotation-accessor-result-type/PrintAst.expected
index 816b559db7f..3f91fe4f141 100644
--- a/java/ql/test/kotlin/library-tests/annotation-accessor-result-type/PrintAst.expected
+++ b/java/ql/test/kotlin/library-tests/annotation-accessor-result-type/PrintAst.expected
@@ -1,82 +1,21 @@
 test.kt:
 #    0| [CompilationUnit] test
 #    3|   1: [Interface] A
-#    3|     1: [Constructor] A
-#-----|       4: (Parameters)
-#    3|         0: [Parameter] c1
-#    3|           0: [TypeAccess] Class<?>
-#    3|             0: [WildcardTypeAccess] ? ...
-#    3|         1: [Parameter] c2
-#    3|           0: [TypeAccess] Class<? extends CharSequence>
-#    3|             0: [WildcardTypeAccess] ? ...
-#    3|               0: [TypeAccess] CharSequence
-#    3|         2: [Parameter] c3
-#    3|           0: [TypeAccess] Class<String>
-#    3|             0: [TypeAccess] String
-#    3|         3: [Parameter] c4
-#    3|           0: [TypeAccess] Class<?>[]
-#    3|             0: [TypeAccess] Class<?>
-#    3|               0: [WildcardTypeAccess] ? ...
-#    3|       5: [BlockStmt] { ... }
-#    3|         0: [SuperConstructorInvocationStmt] super(...)
-#    3|         1: [BlockStmt] { ... }
-#    3|           0: [ExprStmt] <Expr>;
-#    3|             0: [KtInitializerAssignExpr] ...=...
-#    3|               0: [VarAccess] c1
-#    3|           1: [ExprStmt] <Expr>;
-#    3|             0: [KtInitializerAssignExpr] ...=...
-#    3|               0: [VarAccess] c2
-#    3|           2: [ExprStmt] <Expr>;
-#    3|             0: [KtInitializerAssignExpr] ...=...
-#    3|               0: [VarAccess] c3
-#    3|           3: [ExprStmt] <Expr>;
-#    3|             0: [KtInitializerAssignExpr] ...=...
-#    3|               0: [VarAccess] c4
-#    3|     2: [FieldDeclaration] Class<?> c1;
-#    3|       -1: [TypeAccess] Class<?>
-#    3|         0: [WildcardTypeAccess] ? ...
-#    3|       0: [VarAccess] c1
-#    3|     3: [Method] c1
+#-----|     -3: (Annotations)
+#    0|       1: [Annotation] Retention
+#    0|         1: [VarAccess] RetentionPolicy.RUNTIME
+#    0|           -1: [TypeAccess] RetentionPolicy
+#    3|     1: [Method] c1
 #    3|       3: [TypeAccess] Class<?>
 #    3|         0: [WildcardTypeAccess] ? ...
-#    3|       5: [BlockStmt] { ... }
-#    3|         0: [ReturnStmt] return ...
-#    3|           0: [VarAccess] this.c1
-#    3|             -1: [ThisAccess] this
-#    3|     4: [FieldDeclaration] Class<? extends CharSequence> c2;
-#    3|       -1: [TypeAccess] Class<? extends CharSequence>
-#    3|         0: [WildcardTypeAccess] ? ...
-#    3|           0: [TypeAccess] CharSequence
-#    3|       0: [VarAccess] c2
-#    3|     5: [Method] c2
+#    3|     2: [Method] c2
 #    3|       3: [TypeAccess] Class<? extends CharSequence>
 #    3|         0: [WildcardTypeAccess] ? ...
 #    3|           0: [TypeAccess] CharSequence
-#    3|       5: [BlockStmt] { ... }
-#    3|         0: [ReturnStmt] return ...
-#    3|           0: [VarAccess] this.c2
-#    3|             -1: [ThisAccess] this
-#    3|     6: [FieldDeclaration] Class<String> c3;
-#    3|       -1: [TypeAccess] Class<String>
-#    3|         0: [TypeAccess] String
-#    3|       0: [VarAccess] c3
-#    3|     7: [Method] c3
+#    3|     3: [Method] c3
 #    3|       3: [TypeAccess] Class<String>
 #    3|         0: [TypeAccess] String
-#    3|       5: [BlockStmt] { ... }
-#    3|         0: [ReturnStmt] return ...
-#    3|           0: [VarAccess] this.c3
-#    3|             -1: [ThisAccess] this
-#    3|     8: [FieldDeclaration] Class<?>[] c4;
-#    3|       -1: [TypeAccess] Class<?>[]
-#    3|         0: [TypeAccess] Class<?>
-#    3|           0: [WildcardTypeAccess] ? ...
-#    3|       0: [VarAccess] c4
-#    3|     9: [Method] c4
+#    3|     4: [Method] c4
 #    3|       3: [TypeAccess] Class<?>[]
 #    3|         0: [TypeAccess] Class<?>
 #    3|           0: [WildcardTypeAccess] ? ...
-#    3|       5: [BlockStmt] { ... }
-#    3|         0: [ReturnStmt] return ...
-#    3|           0: [VarAccess] this.c4
-#    3|             -1: [ThisAccess] this
diff --git a/java/ql/test/kotlin/library-tests/annotation-accessor-result-type/test.expected b/java/ql/test/kotlin/library-tests/annotation-accessor-result-type/test.expected
index ce28362cbca..0391e2d9b86 100644
--- a/java/ql/test/kotlin/library-tests/annotation-accessor-result-type/test.expected
+++ b/java/ql/test/kotlin/library-tests/annotation-accessor-result-type/test.expected
@@ -1,35 +1,9 @@
 classExprs
-| test.kt:3:20:3:36 | ...=... | Class<?> |
 | test.kt:3:20:3:36 | Class<?> | Class<?> |
-| test.kt:3:20:3:36 | Class<?> | Class<?> |
-| test.kt:3:20:3:36 | Class<?> | Class<?> |
-| test.kt:3:20:3:36 | c1 | Class<?> |
-| test.kt:3:20:3:36 | c1 | Class<?> |
-| test.kt:3:20:3:36 | this.c1 | Class<?> |
-| test.kt:3:39:3:70 | ...=... | Class<? extends CharSequence> |
 | test.kt:3:39:3:70 | Class<? extends CharSequence> | Class<? extends CharSequence> |
-| test.kt:3:39:3:70 | Class<? extends CharSequence> | Class<? extends CharSequence> |
-| test.kt:3:39:3:70 | Class<? extends CharSequence> | Class<? extends CharSequence> |
-| test.kt:3:39:3:70 | c2 | Class<? extends CharSequence> |
-| test.kt:3:39:3:70 | c2 | Class<? extends CharSequence> |
-| test.kt:3:39:3:70 | this.c2 | Class<? extends CharSequence> |
-| test.kt:3:73:3:94 | ...=... | Class<String> |
 | test.kt:3:73:3:94 | Class<String> | Class<String> |
-| test.kt:3:73:3:94 | Class<String> | Class<String> |
-| test.kt:3:73:3:94 | Class<String> | Class<String> |
-| test.kt:3:73:3:94 | c3 | Class<String> |
-| test.kt:3:73:3:94 | c3 | Class<String> |
-| test.kt:3:73:3:94 | this.c3 | Class<String> |
-| test.kt:3:97:3:120 | ...=... | Class<?>[] |
-| test.kt:3:97:3:120 | Class<?> | Class<?> |
-| test.kt:3:97:3:120 | Class<?> | Class<?> |
 | test.kt:3:97:3:120 | Class<?> | Class<?> |
 | test.kt:3:97:3:120 | Class<?>[] | Class<?>[] |
-| test.kt:3:97:3:120 | Class<?>[] | Class<?>[] |
-| test.kt:3:97:3:120 | Class<?>[] | Class<?>[] |
-| test.kt:3:97:3:120 | c4 | Class<?>[] |
-| test.kt:3:97:3:120 | c4 | Class<?>[] |
-| test.kt:3:97:3:120 | this.c4 | Class<?>[] |
 #select
 | test.kt:3:20:3:36 | c1 | Class<?> |
 | test.kt:3:39:3:70 | c2 | Class<? extends CharSequence> |

From d96bca071d7371e30b58c6d9ffd33483c9a1f5ce Mon Sep 17 00:00:00 2001
From: Chris Smowton <smowton@github.com>
Date: Mon, 14 Nov 2022 15:15:28 +0000
Subject: [PATCH 1226/1420] Add test for repeatable annotations

---
 .../JavaDefinedContainer.java                     |  5 +++++
 .../JavaDefinedRepeatable.java                    |  3 +++
 .../kotlin/repeatable-annotations/JavaUser.java   |  7 +++++++
 .../kotlin/repeatable-annotations/lib.kt          |  7 +++++++
 .../kotlin/repeatable-annotations/test.expected   | 15 +++++++++++++++
 .../kotlin/repeatable-annotations/test.kt         | 12 ++++++++++++
 .../kotlin/repeatable-annotations/test.py         |  7 +++++++
 .../kotlin/repeatable-annotations/test.ql         | 11 +++++++++++
 8 files changed, 67 insertions(+)
 create mode 100644 java/ql/integration-tests/all-platforms/kotlin/repeatable-annotations/JavaDefinedContainer.java
 create mode 100644 java/ql/integration-tests/all-platforms/kotlin/repeatable-annotations/JavaDefinedRepeatable.java
 create mode 100644 java/ql/integration-tests/all-platforms/kotlin/repeatable-annotations/JavaUser.java
 create mode 100644 java/ql/integration-tests/all-platforms/kotlin/repeatable-annotations/lib.kt
 create mode 100644 java/ql/integration-tests/all-platforms/kotlin/repeatable-annotations/test.expected
 create mode 100644 java/ql/integration-tests/all-platforms/kotlin/repeatable-annotations/test.kt
 create mode 100644 java/ql/integration-tests/all-platforms/kotlin/repeatable-annotations/test.py
 create mode 100644 java/ql/integration-tests/all-platforms/kotlin/repeatable-annotations/test.ql

diff --git a/java/ql/integration-tests/all-platforms/kotlin/repeatable-annotations/JavaDefinedContainer.java b/java/ql/integration-tests/all-platforms/kotlin/repeatable-annotations/JavaDefinedContainer.java
new file mode 100644
index 00000000000..13d1135669e
--- /dev/null
+++ b/java/ql/integration-tests/all-platforms/kotlin/repeatable-annotations/JavaDefinedContainer.java
@@ -0,0 +1,5 @@
+public @interface JavaDefinedContainer {
+
+  public JavaDefinedRepeatable[] value();
+
+}
diff --git a/java/ql/integration-tests/all-platforms/kotlin/repeatable-annotations/JavaDefinedRepeatable.java b/java/ql/integration-tests/all-platforms/kotlin/repeatable-annotations/JavaDefinedRepeatable.java
new file mode 100644
index 00000000000..5eaaf1e2ab2
--- /dev/null
+++ b/java/ql/integration-tests/all-platforms/kotlin/repeatable-annotations/JavaDefinedRepeatable.java
@@ -0,0 +1,3 @@
+@java.lang.annotation.Repeatable(JavaDefinedContainer.class)
+public @interface JavaDefinedRepeatable { }
+
diff --git a/java/ql/integration-tests/all-platforms/kotlin/repeatable-annotations/JavaUser.java b/java/ql/integration-tests/all-platforms/kotlin/repeatable-annotations/JavaUser.java
new file mode 100644
index 00000000000..959becd2682
--- /dev/null
+++ b/java/ql/integration-tests/all-platforms/kotlin/repeatable-annotations/JavaUser.java
@@ -0,0 +1,7 @@
+@LibRepeatable
+@LibRepeatable
+@ExplicitContainerRepeatable
+@ExplicitContainerRepeatable
+@JavaDefinedRepeatable
+@JavaDefinedRepeatable
+public class JavaUser { }
diff --git a/java/ql/integration-tests/all-platforms/kotlin/repeatable-annotations/lib.kt b/java/ql/integration-tests/all-platforms/kotlin/repeatable-annotations/lib.kt
new file mode 100644
index 00000000000..3133d3d9e70
--- /dev/null
+++ b/java/ql/integration-tests/all-platforms/kotlin/repeatable-annotations/lib.kt
@@ -0,0 +1,7 @@
+@Repeatable
+public annotation class LibRepeatable { }
+
+annotation class KtDefinedContainer(val value: Array<ExplicitContainerRepeatable>) { }
+
+@java.lang.annotation.Repeatable(KtDefinedContainer::class)
+annotation class ExplicitContainerRepeatable() { }
diff --git a/java/ql/integration-tests/all-platforms/kotlin/repeatable-annotations/test.expected b/java/ql/integration-tests/all-platforms/kotlin/repeatable-annotations/test.expected
new file mode 100644
index 00000000000..ff9e747cac5
--- /dev/null
+++ b/java/ql/integration-tests/all-platforms/kotlin/repeatable-annotations/test.expected
@@ -0,0 +1,15 @@
+| JavaUser.java:7:14:7:21 | JavaUser | out2/JavaUser.class:0:0:0:0 | Container | value | out2/JavaUser.class:0:0:0:0 | {...} |
+| JavaUser.java:7:14:7:21 | JavaUser | out2/JavaUser.class:0:0:0:0 | JavaDefinedContainer | value | out2/JavaUser.class:0:0:0:0 | {...} |
+| JavaUser.java:7:14:7:21 | JavaUser | out2/JavaUser.class:0:0:0:0 | KtDefinedContainer | value | out2/JavaUser.class:0:0:0:0 | {...} |
+| out/ExplicitContainerRepeatable.class:0:0:0:0 | ExplicitContainerRepeatable | out/ExplicitContainerRepeatable.class:0:0:0:0 | Repeatable | value | out/ExplicitContainerRepeatable.class:0:0:0:0 | KtDefinedContainer.class |
+| out/ExplicitContainerRepeatable.class:0:0:0:0 | ExplicitContainerRepeatable | out/ExplicitContainerRepeatable.class:0:0:0:0 | Retention | value | out/ExplicitContainerRepeatable.class:0:0:0:0 | RetentionPolicy.RUNTIME |
+| out/JavaDefinedRepeatable.class:0:0:0:0 | JavaDefinedRepeatable | out/JavaDefinedRepeatable.class:0:0:0:0 | Repeatable | value | out/JavaDefinedRepeatable.class:0:0:0:0 | JavaDefinedContainer.class |
+| out/KtDefinedContainer.class:0:0:0:0 | KtDefinedContainer | out/KtDefinedContainer.class:0:0:0:0 | Retention | value | out/KtDefinedContainer.class:0:0:0:0 | RetentionPolicy.RUNTIME |
+| out/LibRepeatable.class:0:0:0:0 | LibRepeatable | out/LibRepeatable.class:0:0:0:0 | Repeatable | value | out/LibRepeatable.class:0:0:0:0 | Container.class |
+| out/LibRepeatable.class:0:0:0:0 | LibRepeatable | out/LibRepeatable.class:0:0:0:0 | Retention | value | out/LibRepeatable.class:0:0:0:0 | RetentionPolicy.RUNTIME |
+| test.kt:1:1:2:43 | LocalRepeatable | test.kt:0:0:0:0 | Repeatable | value | test.kt:0:0:0:0 | Container.class |
+| test.kt:1:1:2:43 | LocalRepeatable | test.kt:0:0:0:0 | Retention | value | test.kt:0:0:0:0 | RetentionPolicy.RUNTIME |
+| test.kt:4:1:12:21 | User | test.kt:0:0:0:0 | Container | value | test.kt:0:0:0:0 | {...} |
+| test.kt:4:1:12:21 | User | test.kt:0:0:0:0 | Container | value | test.kt:0:0:0:0 | {...} |
+| test.kt:4:1:12:21 | User | test.kt:0:0:0:0 | JavaDefinedContainer | value | test.kt:0:0:0:0 | {...} |
+| test.kt:4:1:12:21 | User | test.kt:0:0:0:0 | KtDefinedContainer | value | test.kt:0:0:0:0 | {...} |
diff --git a/java/ql/integration-tests/all-platforms/kotlin/repeatable-annotations/test.kt b/java/ql/integration-tests/all-platforms/kotlin/repeatable-annotations/test.kt
new file mode 100644
index 00000000000..16a54a3e630
--- /dev/null
+++ b/java/ql/integration-tests/all-platforms/kotlin/repeatable-annotations/test.kt
@@ -0,0 +1,12 @@
+@Repeatable
+public annotation class LocalRepeatable { }
+
+@LocalRepeatable
+@LocalRepeatable
+@LibRepeatable
+@LibRepeatable
+@ExplicitContainerRepeatable
+@ExplicitContainerRepeatable
+@JavaDefinedRepeatable
+@JavaDefinedRepeatable
+public class User { }
diff --git a/java/ql/integration-tests/all-platforms/kotlin/repeatable-annotations/test.py b/java/ql/integration-tests/all-platforms/kotlin/repeatable-annotations/test.py
new file mode 100644
index 00000000000..fa0700cea28
--- /dev/null
+++ b/java/ql/integration-tests/all-platforms/kotlin/repeatable-annotations/test.py
@@ -0,0 +1,7 @@
+from create_database_utils import *
+
+os.mkdir('out')
+os.mkdir('out2')
+runSuccessfully([get_cmd("kotlinc"), "lib.kt", "-d", "out"])
+runSuccessfully([get_cmd("javac"), "JavaDefinedContainer.java", "JavaDefinedRepeatable.java", "-d", "out"])
+run_codeql_database_create(["javac JavaUser.java -cp out -d out2", "kotlinc test.kt -cp out -d out2"], lang="java")
diff --git a/java/ql/integration-tests/all-platforms/kotlin/repeatable-annotations/test.ql b/java/ql/integration-tests/all-platforms/kotlin/repeatable-annotations/test.ql
new file mode 100644
index 00000000000..701f6aed1ab
--- /dev/null
+++ b/java/ql/integration-tests/all-platforms/kotlin/repeatable-annotations/test.ql
@@ -0,0 +1,11 @@
+import java
+
+from ClassOrInterface annotated, Annotation a, string valName, Expr val
+where
+  a.getValue(valName) = val and
+  annotated = a.getAnnotatedElement() and
+  annotated.getName() in [
+      "JavaDefinedRepeatable", "JavaDefinedContainer", "KtDefinedContainer", "LibRepeatable",
+      "ExplicitContainerRepeatable", "LocalRepeatable", "User", "JavaUser"
+    ]
+select a.getAnnotatedElement(), a, valName, val

From 6d5f962c56d823fe9f561325dba494bca0086f7a Mon Sep 17 00:00:00 2001
From: Chris Smowton <smowton@github.com>
Date: Mon, 14 Nov 2022 15:45:51 +0000
Subject: [PATCH 1227/1420] Accept test changes (implicit annotations,
 restoration of annotation type accesses)

---
 .../PrintAst.expected                         | 37 ++++++++++++++++++-
 .../annotation_classes/PrintAst.expected      |  9 +++++
 .../collection-literals/PrintAst.expected     |  3 ++
 3 files changed, 47 insertions(+), 2 deletions(-)

diff --git a/java/ql/integration-tests/all-platforms/kotlin/annotation-id-consistency/PrintAst.expected b/java/ql/integration-tests/all-platforms/kotlin/annotation-id-consistency/PrintAst.expected
index d1e11f8611b..bf14cd7523e 100644
--- a/java/ql/integration-tests/all-platforms/kotlin/annotation-id-consistency/PrintAst.expected
+++ b/java/ql/integration-tests/all-platforms/kotlin/annotation-id-consistency/PrintAst.expected
@@ -21,24 +21,57 @@ User.java:
 test.kt:
 #    0| [CompilationUnit] test
 #    3|   1: [Interface] Ann1
+#-----|     -3: (Annotations)
+#    0|       1: [Annotation] Retention
+#    0|         1: [VarAccess] RetentionPolicy.RUNTIME
+#    0|           -1: [TypeAccess] RetentionPolicy
 #    3|     1: [Method] x
+#    3|       3: [TypeAccess] int
 #    3|     2: [Method] y
+#    3|       3: [TypeAccess] Ann2
 #    5|   2: [Interface] Ann2
+#-----|     -3: (Annotations)
+#    0|       1: [Annotation] Retention
+#    0|         1: [VarAccess] RetentionPolicy.RUNTIME
+#    0|           -1: [TypeAccess] RetentionPolicy
 #    5|     1: [Method] z
+#    5|       3: [TypeAccess] String
 #    5|     2: [Method] w
+#    5|       3: [TypeAccess] Class<?>
+#    5|         0: [WildcardTypeAccess] ? ...
 #    5|     3: [Method] v
+#    5|       3: [TypeAccess] int[]
 #    5|     4: [Method] u
+#    5|       3: [TypeAccess] Ann3[]
+#    5|         0: [TypeAccess] Ann3
 #    5|     5: [Method] t
+#    5|       3: [TypeAccess] Class<?>[]
+#    5|         0: [TypeAccess] Class<?>
+#    5|           0: [WildcardTypeAccess] ? ...
 #    7|   3: [Interface] Ann3
+#-----|     -3: (Annotations)
+#    0|       1: [Annotation] Retention
+#    0|         1: [VarAccess] RetentionPolicy.RUNTIME
+#    0|           -1: [TypeAccess] RetentionPolicy
 #    7|     1: [Method] a
+#    7|       3: [TypeAccess] int
 #    9|   4: [GenericType,Interface,ParameterizedType] GenericAnnotation
+#-----|     -3: (Annotations)
+#    0|       1: [Annotation] Retention
+#    0|         1: [VarAccess] RetentionPolicy.RUNTIME
+#    0|           -1: [TypeAccess] RetentionPolicy
 #-----|     -2: (Generic Parameters)
 #    9|       0: [TypeVariable] T
 #    9|     1: [Method] x
+#    9|       3: [TypeAccess] Class<T>
+#    9|         0: [TypeAccess] T
 #    9|     2: [Method] y
+#    9|       3: [TypeAccess] Class<T>[]
+#    9|         0: [TypeAccess] Class<T>
+#    9|           0: [TypeAccess] T
 #   11|   6: [Class] Annotated
 #-----|     -3: (Annotations)
-#   11|       2: [Annotation] Ann1
+#   11|       1: [Annotation] Ann1
 #    0|         1: [IntegerLiteral] 1
 #    0|         1: [Annotation] Ann2
 #    0|           1: [StringLiteral] "Hello"
@@ -58,7 +91,7 @@ test.kt:
 #    0|               0: [TypeAccess] String
 #    0|             1: [TypeLiteral] int.class
 #    0|               0: [TypeAccess] int
-#   12|       3: [Annotation] GenericAnnotation<>
+#   12|       2: [Annotation] GenericAnnotation<>
 #   13|     1: [Constructor] Annotated
 #   11|       5: [BlockStmt] { ... }
 #   11|         0: [SuperConstructorInvocationStmt] super(...)
diff --git a/java/ql/test/kotlin/library-tests/annotation_classes/PrintAst.expected b/java/ql/test/kotlin/library-tests/annotation_classes/PrintAst.expected
index fc1d83bdc2b..79bc39c4392 100644
--- a/java/ql/test/kotlin/library-tests/annotation_classes/PrintAst.expected
+++ b/java/ql/test/kotlin/library-tests/annotation_classes/PrintAst.expected
@@ -141,6 +141,7 @@ def.kt:
 #-----|       1: (Annotations)
 #   21|         1: [Annotation] JvmName
 #    0|           1: [StringLiteral] "a"
+#   21|       3: [TypeAccess] int
 #   23|   3: [Interface] Annot1k
 #-----|     -3: (Annotations)
 #    0|       1: [Annotation] Retention
@@ -149,11 +150,19 @@ def.kt:
 #   23|       2: [Annotation] Annot0k
 #    0|         1: [IntegerLiteral] 0
 #   25|     1: [Method] a
+#   25|       3: [TypeAccess] int
 #   26|     2: [Method] b
+#   26|       3: [TypeAccess] String
 #   27|     3: [Method] c
+#   27|       3: [TypeAccess] Class<?>
+#   27|         0: [WildcardTypeAccess] ? ...
 #   28|     4: [Method] d
+#   28|       3: [TypeAccess] Y
 #   29|     5: [Method] e
+#   29|       3: [TypeAccess] Y[]
+#   29|         0: [TypeAccess] Y
 #   30|     6: [Method] f
+#   30|       3: [TypeAccess] Annot0k
 #   33|   4: [Class] X
 #   33|     1: [Constructor] X
 #   33|       5: [BlockStmt] { ... }
diff --git a/java/ql/test/kotlin/library-tests/collection-literals/PrintAst.expected b/java/ql/test/kotlin/library-tests/collection-literals/PrintAst.expected
index ea5abd8c6e8..cbcabc82bd5 100644
--- a/java/ql/test/kotlin/library-tests/collection-literals/PrintAst.expected
+++ b/java/ql/test/kotlin/library-tests/collection-literals/PrintAst.expected
@@ -6,4 +6,7 @@ test.kt:
 #    0|         1: [VarAccess] RetentionPolicy.RUNTIME
 #    0|           -1: [TypeAccess] RetentionPolicy
 #    1|     1: [Method] arr1
+#    1|       3: [TypeAccess] String[]
+#    1|         0: [TypeAccess] String
 #    1|     2: [Method] arr2
+#    1|       3: [TypeAccess] int[]

From 73df3166ebd8ba172409c3dc2d2fb1d58d73aac3 Mon Sep 17 00:00:00 2001
From: Chris Smowton <smowton@github.com>
Date: Mon, 14 Nov 2022 15:49:45 +0000
Subject: [PATCH 1228/1420] Test varargs annotation

---
 .../PrintAst.expected                         | 55 ++++++++++++++++---
 .../kotlin/annotation-id-consistency/test.kt  |  9 +++
 2 files changed, 57 insertions(+), 7 deletions(-)

diff --git a/java/ql/integration-tests/all-platforms/kotlin/annotation-id-consistency/PrintAst.expected b/java/ql/integration-tests/all-platforms/kotlin/annotation-id-consistency/PrintAst.expected
index bf14cd7523e..fa380ef7b00 100644
--- a/java/ql/integration-tests/all-platforms/kotlin/annotation-id-consistency/PrintAst.expected
+++ b/java/ql/integration-tests/all-platforms/kotlin/annotation-id-consistency/PrintAst.expected
@@ -69,9 +69,50 @@ test.kt:
 #    9|       3: [TypeAccess] Class<T>[]
 #    9|         0: [TypeAccess] Class<T>
 #    9|           0: [TypeAccess] T
-#   11|   6: [Class] Annotated
+#   11|   6: [Interface] VarargAnnotation
 #-----|     -3: (Annotations)
-#   11|       1: [Annotation] Ann1
+#    0|       1: [Annotation] Repeatable
+#    0|         1: [TypeLiteral] Container.class
+#    0|           0: [TypeAccess] Container
+#    0|       2: [Annotation] Retention
+#    0|         1: [VarAccess] RetentionPolicy.RUNTIME
+#    0|           -1: [TypeAccess] RetentionPolicy
+#   11|       3: [Annotation] Repeatable
+#    0|     1: [Interface] Container
+#-----|       -3: (Annotations)
+#    0|         1: [Annotation] RepeatableContainer
+#    0|         2: [Annotation] Retention
+#    0|           1: [VarAccess] RetentionPolicy.RUNTIME
+#    0|             -1: [TypeAccess] RetentionPolicy
+#    0|       1: [Method] value
+#    0|         3: [TypeAccess] VarargAnnotation[]
+#    0|           0: [TypeAccess] VarargAnnotation
+#   12|     2: [Method] x
+#   12|       3: [TypeAccess] int[]
+#   14|   7: [Class] Annotated
+#-----|     -3: (Annotations)
+#    0|       1: [Annotation] Container
+#    0|         1: [ArrayInit] {...}
+#   16|           1: [Annotation] VarargAnnotation
+#    0|             1: [ArrayInit] {...}
+#   17|           2: [Annotation] VarargAnnotation
+#    0|             1: [ArrayInit] {...}
+#    0|               1: [IntegerLiteral] 1
+#   18|           3: [Annotation] VarargAnnotation
+#    0|             1: [ArrayInit] {...}
+#    0|               1: [IntegerLiteral] 1
+#    0|               1: [IntegerLiteral] 2
+#   19|           4: [Annotation] VarargAnnotation
+#    0|             1: [ArrayInit] {...}
+#    0|               1: [IntegerLiteral] 1
+#    0|               1: [IntegerLiteral] 2
+#    0|               1: [IntegerLiteral] 3
+#   20|           5: [Annotation] VarargAnnotation
+#    0|             1: [ArrayInit] {...}
+#    0|               1: [IntegerLiteral] 1
+#    0|               1: [IntegerLiteral] 2
+#    0|               1: [IntegerLiteral] 3
+#   14|       2: [Annotation] Ann1
 #    0|         1: [IntegerLiteral] 1
 #    0|         1: [Annotation] Ann2
 #    0|           1: [StringLiteral] "Hello"
@@ -91,11 +132,11 @@ test.kt:
 #    0|               0: [TypeAccess] String
 #    0|             1: [TypeLiteral] int.class
 #    0|               0: [TypeAccess] int
-#   12|       2: [Annotation] GenericAnnotation<>
-#   13|     1: [Constructor] Annotated
-#   11|       5: [BlockStmt] { ... }
-#   11|         0: [SuperConstructorInvocationStmt] super(...)
-#   13|         1: [BlockStmt] { ... }
+#   15|       3: [Annotation] GenericAnnotation<>
+#   21|     1: [Constructor] Annotated
+#   14|       5: [BlockStmt] { ... }
+#   14|         0: [SuperConstructorInvocationStmt] super(...)
+#   21|         1: [BlockStmt] { ... }
 #    0| [TypeLiteral] String.class
 #    0|   0: [TypeAccess] String
 #    0| [ArrayInit] {...}
diff --git a/java/ql/integration-tests/all-platforms/kotlin/annotation-id-consistency/test.kt b/java/ql/integration-tests/all-platforms/kotlin/annotation-id-consistency/test.kt
index fe5dd9b1b76..50b87181a6f 100644
--- a/java/ql/integration-tests/all-platforms/kotlin/annotation-id-consistency/test.kt
+++ b/java/ql/integration-tests/all-platforms/kotlin/annotation-id-consistency/test.kt
@@ -8,6 +8,15 @@ annotation class Ann3(val a: Int) { }
 
 annotation class GenericAnnotation<T : Any>(val x: KClass<T>, val y: Array<KClass<T>>) { }
 
+@Repeatable
+annotation class VarargAnnotation(vararg val x: Int) { }
+
 @Ann1(1, Ann2("Hello", String::class, intArrayOf(1, 2, 3), arrayOf(Ann3(1), Ann3(2)), arrayOf(String::class, Int::class)))
 @GenericAnnotation<String>(String::class, arrayOf(String::class, String::class))
+@VarargAnnotation
+@VarargAnnotation(1)
+@VarargAnnotation(1, 2)
+@VarargAnnotation(*[1, 2, 3])
+@VarargAnnotation(*intArrayOf(1, 2, 3))
 class Annotated { }
+

From ca27f9516adce6277cb090c3671030571a9970f4 Mon Sep 17 00:00:00 2001
From: Chris Smowton <smowton@github.com>
Date: Mon, 14 Nov 2022 16:19:21 +0000
Subject: [PATCH 1229/1420] Replace uses of !! operator

---
 .../src/main/kotlin/KotlinFileExtractor.kt    | 83 ++++++++++++-------
 1 file changed, 51 insertions(+), 32 deletions(-)

diff --git a/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt b/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt
index 821ae798c6c..0783c7fdf1e 100644
--- a/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt
+++ b/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt
@@ -512,18 +512,24 @@ open class KotlinFileExtractor(
         annotationClass: IrClass,
         containerClass: IrClass,
         entries: List<IrConstructorCall>,
-    ): IrConstructorCall {
+    ): IrConstructorCall? {
         val annotationType = annotationClass.typeWith()
-        return IrConstructorCallImpl.fromSymbolOwner(containerClass.defaultType, containerClass.primaryConstructor!!.symbol).apply {
-            putValueArgument(
-                0,
-                IrVarargImpl(
-                    UNDEFINED_OFFSET, UNDEFINED_OFFSET,
-                    pluginContext.irBuiltIns.arrayClass.typeWith(annotationType),
-                    annotationType,
-                    entries
+        val containerConstructor = containerClass.primaryConstructor
+        if (containerConstructor == null) {
+            logger.warnElement("Expected container class to have a primary constructor", containerClass)
+            return null
+        } else {
+            return IrConstructorCallImpl.fromSymbolOwner(containerClass.defaultType, containerConstructor.symbol).apply {
+                putValueArgument(
+                    0,
+                    IrVarargImpl(
+                        UNDEFINED_OFFSET, UNDEFINED_OFFSET,
+                        pluginContext.irBuiltIns.arrayClass.typeWith(annotationType),
+                        annotationType,
+                        entries
+                    )
                 )
-            )
+            }
         }
     }
 
@@ -560,11 +566,15 @@ open class KotlinFileExtractor(
                 .filterIsInstance<IrProperty>()
                 .first { it.name == param.name }
             val v = constructorCall.getValueArgument(i) ?: param.defaultValue?.expression
-            val getter = prop.getter!!
-            val getterId = useFunction<DbMethod>(getter)
-            val exprId = extractAnnotationValueExpression(v, id, i, "{${getterId}}", getter.returnType)
-            if (exprId != null) {
-                tw.writeAnnotValue(id, getterId, exprId)
+            val getter = prop.getter
+            if (getter == null) {
+                logger.warnElement("Expected annotation property to define a getter", prop)
+            } else {
+                val getterId = useFunction<DbMethod>(getter)
+                val exprId = extractAnnotationValueExpression(v, id, i, "{${getterId}}", getter.returnType)
+                if (exprId != null) {
+                    tw.writeAnnotValue(id, getterId, exprId)
+                }
             }
         }
         return id
@@ -599,22 +609,26 @@ open class KotlinFileExtractor(
                     // Use the context type (i.e., the type the annotation expects, not the actual type of the array)
                     // because the Java extractor fills in array types using the same technique. These should only
                     // differ for generic annotations.
-                    val type = useType(kClassToJavaClass(contextType!!))
-                    tw.writeExprs_arrayinit(arrayId, type.javaResult.id, parent, idx)
-                    tw.writeExprsKotlinType(arrayId, type.kotlinResult.id)
-                    tw.writeHasLocation(arrayId, tw.getLocation(v))
+                    if (contextType == null) {
+                        logger.warnElement("Expected an annotation array to have an enclosing context", v)
+                    } else {
+                        val type = useType(kClassToJavaClass(contextType))
+                        tw.writeExprs_arrayinit(arrayId, type.javaResult.id, parent, idx)
+                        tw.writeExprsKotlinType(arrayId, type.kotlinResult.id)
+                        tw.writeHasLocation(arrayId, tw.getLocation(v))
 
-                    v.elements.forEachIndexed { index, irVarargElement -> run {
-                        val argExpr = when (irVarargElement) {
-                            is IrExpression -> irVarargElement
-                            is IrSpreadElement -> irVarargElement.expression
-                            else -> {
-                                logger.errorElement("Unrecognised IrVarargElement: " + irVarargElement.javaClass, irVarargElement)
-                                null
+                        v.elements.forEachIndexed { index, irVarargElement -> run {
+                            val argExpr = when (irVarargElement) {
+                                is IrExpression -> irVarargElement
+                                is IrSpreadElement -> irVarargElement.expression
+                                else -> {
+                                    logger.errorElement("Unrecognised IrVarargElement: " + irVarargElement.javaClass, irVarargElement)
+                                    null
+                                }
                             }
-                        }
-                        extractAnnotationValueExpression(argExpr, arrayId, index, "child;$index", null)
-                    } }
+                            extractAnnotationValueExpression(argExpr, arrayId, index, "child;$index", null)
+                        } }
+                    }
                 }
             }
             // is IrErrorExpression
@@ -900,9 +914,14 @@ open class KotlinFileExtractor(
                         c.declarations
                             .filterIsInstance<IrProperty>()
                             .map {
-                                val getter = it.getter!!
-                                val label = extractFunction(getter, id, extractBody = false, extractMethodAndParameterTypeAccesses = true, extractAnnotations = true, null, listOf())
-                                tw.writeIsAnnotElem(label!!.cast<DbMethod>())
+                                val getter = it.getter
+                                if (getter == null) {
+                                    logger.warnElement("Expected an annotation property to have a getter", it)
+                                } else {
+                                    extractFunction(getter, id, extractBody = false, extractMethodAndParameterTypeAccesses = true, extractAnnotations = true, null, listOf())?.also { functionLabel ->
+                                        tw.writeIsAnnotElem(functionLabel.cast())
+                                    }
+                                }
                             }
                     } else {
                         c.declarations.forEach { extractDeclaration(it, extractPrivateMembers = extractPrivateMembers, extractFunctionBodies = extractFunctionBodies, extractAnnotations = true) }

From 5c019940dbc25966b1bc63312120a67fbc144f3c Mon Sep 17 00:00:00 2001
From: Chris Smowton <smowton@github.com>
Date: Mon, 14 Nov 2022 16:39:00 +0000
Subject: [PATCH 1230/1420] Fix missing !! removal

---
 java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

diff --git a/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt b/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt
index 0783c7fdf1e..8cf78173b1d 100644
--- a/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt
+++ b/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt
@@ -489,7 +489,9 @@ open class KotlinFileExtractor(
 
             val containerClass = getOrCreateContainerClass(annotationClass)
             if (containerClass != null)
-                result.add(wrapAnnotationEntriesInContainer(annotationClass, containerClass, grouped))
+                wrapAnnotationEntriesInContainer(annotationClass, containerClass, grouped)?.let {
+                    result.add(it)
+                }
             else
                 logger.warnElement("Failed to find an annotation container class", annotationClass)
         }

From f9b878fe98a042899f57e61307371afc629dc6b8 Mon Sep 17 00:00:00 2001
From: Chris Smowton <smowton@github.com>
Date: Mon, 14 Nov 2022 16:39:21 +0000
Subject: [PATCH 1231/1420] Add test for .kt defined, Java used repeatable
 annotation

---
 .../kotlin/repeatable-annotations/JavaUser.java            | 2 ++
 .../kotlin/repeatable-annotations/test.expected            | 7 ++++---
 .../all-platforms/kotlin/repeatable-annotations/test.py    | 2 +-
 3 files changed, 7 insertions(+), 4 deletions(-)

diff --git a/java/ql/integration-tests/all-platforms/kotlin/repeatable-annotations/JavaUser.java b/java/ql/integration-tests/all-platforms/kotlin/repeatable-annotations/JavaUser.java
index 959becd2682..610c373cb0f 100644
--- a/java/ql/integration-tests/all-platforms/kotlin/repeatable-annotations/JavaUser.java
+++ b/java/ql/integration-tests/all-platforms/kotlin/repeatable-annotations/JavaUser.java
@@ -1,3 +1,5 @@
+@LocalRepeatable
+@LocalRepeatable
 @LibRepeatable
 @LibRepeatable
 @ExplicitContainerRepeatable
diff --git a/java/ql/integration-tests/all-platforms/kotlin/repeatable-annotations/test.expected b/java/ql/integration-tests/all-platforms/kotlin/repeatable-annotations/test.expected
index ff9e747cac5..7bda6ceff16 100644
--- a/java/ql/integration-tests/all-platforms/kotlin/repeatable-annotations/test.expected
+++ b/java/ql/integration-tests/all-platforms/kotlin/repeatable-annotations/test.expected
@@ -1,6 +1,7 @@
-| JavaUser.java:7:14:7:21 | JavaUser | out2/JavaUser.class:0:0:0:0 | Container | value | out2/JavaUser.class:0:0:0:0 | {...} |
-| JavaUser.java:7:14:7:21 | JavaUser | out2/JavaUser.class:0:0:0:0 | JavaDefinedContainer | value | out2/JavaUser.class:0:0:0:0 | {...} |
-| JavaUser.java:7:14:7:21 | JavaUser | out2/JavaUser.class:0:0:0:0 | KtDefinedContainer | value | out2/JavaUser.class:0:0:0:0 | {...} |
+| JavaUser.java:9:14:9:21 | JavaUser | out2/JavaUser.class:0:0:0:0 | Container | value | out2/JavaUser.class:0:0:0:0 | {...} |
+| JavaUser.java:9:14:9:21 | JavaUser | out2/JavaUser.class:0:0:0:0 | Container | value | out2/JavaUser.class:0:0:0:0 | {...} |
+| JavaUser.java:9:14:9:21 | JavaUser | out2/JavaUser.class:0:0:0:0 | JavaDefinedContainer | value | out2/JavaUser.class:0:0:0:0 | {...} |
+| JavaUser.java:9:14:9:21 | JavaUser | out2/JavaUser.class:0:0:0:0 | KtDefinedContainer | value | out2/JavaUser.class:0:0:0:0 | {...} |
 | out/ExplicitContainerRepeatable.class:0:0:0:0 | ExplicitContainerRepeatable | out/ExplicitContainerRepeatable.class:0:0:0:0 | Repeatable | value | out/ExplicitContainerRepeatable.class:0:0:0:0 | KtDefinedContainer.class |
 | out/ExplicitContainerRepeatable.class:0:0:0:0 | ExplicitContainerRepeatable | out/ExplicitContainerRepeatable.class:0:0:0:0 | Retention | value | out/ExplicitContainerRepeatable.class:0:0:0:0 | RetentionPolicy.RUNTIME |
 | out/JavaDefinedRepeatable.class:0:0:0:0 | JavaDefinedRepeatable | out/JavaDefinedRepeatable.class:0:0:0:0 | Repeatable | value | out/JavaDefinedRepeatable.class:0:0:0:0 | JavaDefinedContainer.class |
diff --git a/java/ql/integration-tests/all-platforms/kotlin/repeatable-annotations/test.py b/java/ql/integration-tests/all-platforms/kotlin/repeatable-annotations/test.py
index fa0700cea28..e0b7c69cb05 100644
--- a/java/ql/integration-tests/all-platforms/kotlin/repeatable-annotations/test.py
+++ b/java/ql/integration-tests/all-platforms/kotlin/repeatable-annotations/test.py
@@ -4,4 +4,4 @@ os.mkdir('out')
 os.mkdir('out2')
 runSuccessfully([get_cmd("kotlinc"), "lib.kt", "-d", "out"])
 runSuccessfully([get_cmd("javac"), "JavaDefinedContainer.java", "JavaDefinedRepeatable.java", "-d", "out"])
-run_codeql_database_create(["javac JavaUser.java -cp out -d out2", "kotlinc test.kt -cp out -d out2"], lang="java")
+run_codeql_database_create(["kotlinc test.kt -cp out -d out", "javac JavaUser.java -cp out -d out2"], lang="java")

From 757fa60a468e13468e301bc70de2200fe8360ed6 Mon Sep 17 00:00:00 2001
From: Chris Smowton <smowton@github.com>
Date: Mon, 14 Nov 2022 16:40:23 +0000
Subject: [PATCH 1232/1420] Remove unused import

---
 java/kotlin-extractor/src/main/kotlin/utils/ClassNames.kt | 1 -
 1 file changed, 1 deletion(-)

diff --git a/java/kotlin-extractor/src/main/kotlin/utils/ClassNames.kt b/java/kotlin-extractor/src/main/kotlin/utils/ClassNames.kt
index 0bfed4a23c3..ab4010242a7 100644
--- a/java/kotlin-extractor/src/main/kotlin/utils/ClassNames.kt
+++ b/java/kotlin-extractor/src/main/kotlin/utils/ClassNames.kt
@@ -14,7 +14,6 @@ import org.jetbrains.kotlin.ir.declarations.*
 import org.jetbrains.kotlin.ir.util.fqNameWhenAvailable
 import org.jetbrains.kotlin.ir.util.parentClassOrNull
 import org.jetbrains.kotlin.load.kotlin.JvmPackagePartSource
-import org.jetbrains.kotlin.name.ClassId
 
 // Adapted from Kotlin's interpreter/Utils.kt function 'internalName'
 // Translates class names into their JLS section 13.1 binary name,

From 81353f865459aeb904b6170b2163316bd80e40dc Mon Sep 17 00:00:00 2001
From: Chris Smowton <smowton@github.com>
Date: Tue, 15 Nov 2022 18:20:03 +0000
Subject: [PATCH 1233/1420] Make annotation extraction compatible with all
 supported Kotlin versions

---
 .../src/main/kotlin/KotlinFileExtractor.kt    | 103 +++++++++++++++---
 .../utils/versions/v_1_4_32/annotationType.kt |   8 ++
 .../kotlin/utils/versions/v_1_4_32/copyTo.kt  |   7 ++
 .../utils/versions/v_1_6_0/annotationType.kt  |   6 +
 .../kotlin/utils/versions/v_1_7_20/copyTo.kt  |   7 ++
 5 files changed, 115 insertions(+), 16 deletions(-)
 create mode 100644 java/kotlin-extractor/src/main/kotlin/utils/versions/v_1_4_32/annotationType.kt
 create mode 100644 java/kotlin-extractor/src/main/kotlin/utils/versions/v_1_4_32/copyTo.kt
 create mode 100644 java/kotlin-extractor/src/main/kotlin/utils/versions/v_1_6_0/annotationType.kt
 create mode 100644 java/kotlin-extractor/src/main/kotlin/utils/versions/v_1_7_20/copyTo.kt

diff --git a/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt b/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt
index 8cf78173b1d..25667221fd4 100644
--- a/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt
+++ b/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt
@@ -2,18 +2,15 @@ package com.github.codeql
 
 import com.github.codeql.comments.CommentExtractor
 import com.github.codeql.utils.*
-import com.github.codeql.utils.versions.allOverriddenIncludingSelf
-import com.github.codeql.utils.versions.functionN
-import com.github.codeql.utils.versions.isUnderscoreParameter
+import com.github.codeql.utils.versions.*
 import com.semmle.extractor.java.OdasaOutput
 import org.jetbrains.kotlin.backend.common.extensions.IrPluginContext
-import org.jetbrains.kotlin.backend.common.ir.createImplicitParameterDeclarationWithWrappedDescriptor
 import org.jetbrains.kotlin.backend.common.lower.parents
 import org.jetbrains.kotlin.backend.common.pop
-import org.jetbrains.kotlin.backend.jvm.ir.getAnnotationRetention
 import org.jetbrains.kotlin.builtins.StandardNames
 import org.jetbrains.kotlin.builtins.functions.BuiltInFunctionArity
 import org.jetbrains.kotlin.config.JvmAnalysisFlags
+import org.jetbrains.kotlin.config.JvmTarget
 import org.jetbrains.kotlin.descriptors.*
 import org.jetbrains.kotlin.descriptors.annotations.KotlinRetention
 import org.jetbrains.kotlin.descriptors.annotations.KotlinTarget
@@ -31,8 +28,32 @@ import org.jetbrains.kotlin.ir.expressions.impl.*
 import org.jetbrains.kotlin.ir.symbols.*
 import org.jetbrains.kotlin.ir.types.*
 import org.jetbrains.kotlin.ir.types.impl.makeTypeProjection
-import org.jetbrains.kotlin.ir.util.*
-import org.jetbrains.kotlin.load.java.JvmAbi
+import org.jetbrains.kotlin.ir.util.companionObject
+import org.jetbrains.kotlin.ir.util.constructedClass
+import org.jetbrains.kotlin.ir.util.constructors
+import org.jetbrains.kotlin.ir.util.deepCopyWithSymbols
+import org.jetbrains.kotlin.ir.util.defaultType
+import org.jetbrains.kotlin.ir.util.fqNameWhenAvailable
+import org.jetbrains.kotlin.ir.util.getAnnotation
+import org.jetbrains.kotlin.ir.util.hasAnnotation
+import org.jetbrains.kotlin.ir.util.hasEqualFqName
+import org.jetbrains.kotlin.ir.util.hasInterfaceParent
+import org.jetbrains.kotlin.ir.util.isAnonymousObject
+import org.jetbrains.kotlin.ir.util.isFakeOverride
+import org.jetbrains.kotlin.ir.util.isFunctionOrKFunction
+import org.jetbrains.kotlin.ir.util.isInterface
+import org.jetbrains.kotlin.ir.util.isLocal
+import org.jetbrains.kotlin.ir.util.isNonCompanionObject
+import org.jetbrains.kotlin.ir.util.isSuspend
+import org.jetbrains.kotlin.ir.util.isSuspendFunctionOrKFunction
+import org.jetbrains.kotlin.ir.util.isVararg
+import org.jetbrains.kotlin.ir.util.kotlinFqName
+import org.jetbrains.kotlin.ir.util.packageFqName
+import org.jetbrains.kotlin.ir.util.parentAsClass
+import org.jetbrains.kotlin.ir.util.parentClassOrNull
+import org.jetbrains.kotlin.ir.util.primaryConstructor
+import org.jetbrains.kotlin.ir.util.render
+import org.jetbrains.kotlin.ir.util.target
 import org.jetbrains.kotlin.load.java.JvmAnnotationNames
 import org.jetbrains.kotlin.load.java.sources.JavaSourceElement
 import org.jetbrains.kotlin.load.java.structure.JavaClass
@@ -471,16 +492,24 @@ open class KotlinFileExtractor(
         extractDeclInitializers(c.declarations, false) { Pair(blockId, obinitId) }
     }
 
+    // Taken from AdditionalIrUtils.kt (not available in Kotlin < 1.6)
+    private val IrConstructorCall.annotationClass
+        get() = this.symbol.owner.constructedClass
+
+    // Taken from AdditionalIrUtils.kt (not available in Kotlin < 1.6)
+    private fun IrConstructorCall.isAnnotationWithEqualFqName(fqName: FqName): Boolean =
+        annotationClass.hasEqualFqName(fqName)
+
     // Adapted from RepeatedAnnotationLowering.kt
     private fun groupRepeatableAnnotations(annotations: List<IrConstructorCall>): List<IrConstructorCall> {
         if (annotations.size < 2) return annotations
 
-        val annotationsByClass = annotations.groupByTo(mutableMapOf()) { it.symbol.owner.constructedClass }
+        val annotationsByClass = annotations.groupByTo(mutableMapOf()) { it.annotationClass }
         if (annotationsByClass.values.none { it.size > 1 }) return annotations
 
         val result = mutableListOf<IrConstructorCall>()
         for (annotation in annotations) {
-            val annotationClass = annotation.symbol.owner.constructedClass
+            val annotationClass = annotation.annotationClass
             val grouped = annotationsByClass.remove(annotationClass) ?: continue
             if (grouped.size < 2) {
                 result.add(grouped.single())
@@ -501,7 +530,7 @@ open class KotlinFileExtractor(
     // Adapted from RepeatedAnnotationLowering.kt
     private fun getOrCreateContainerClass(annotationClass: IrClass): IrClass? {
         val metaAnnotations = annotationClass.annotations
-        val jvmRepeatable = metaAnnotations.find { it.isAnnotation(JvmAnnotationNames.REPEATABLE_ANNOTATION) }
+        val jvmRepeatable = metaAnnotations.find { it.symbol.owner.parentAsClass.fqNameWhenAvailable == JvmAnnotationNames.REPEATABLE_ANNOTATION }
         return if (jvmRepeatable != null) {
             ((jvmRepeatable.getValueArgument(0) as? IrClassReference)?.symbol as? IrClassSymbol)?.owner
         } else {
@@ -701,8 +730,11 @@ open class KotlinFileExtractor(
         }
     }
 
-    // TODO: find out if we can spot when we're building for JVM <= 7 and omit the Java 8-only targets in that case.
-    private fun getAnnotationTargetMap() = jvm8TargetMap
+    private fun getAnnotationTargetMap() =
+        if (pluginContext.platform?.any { it.targetPlatformVersion == JvmTarget.JVM_1_6 } == true)
+            jvm6TargetMap
+        else
+            jvm8TargetMap
 
     // Adapted from AdditionalClassAnnotationLowering.kt
     private fun generateTargetAnnotation(c: IrClass): IrConstructorCall? {
@@ -751,6 +783,15 @@ open class KotlinFileExtractor(
         }
     }
 
+    // Taken from AnnotationCodegen.kt (not available in Kotlin < 1.6.20)
+    private fun IrClass.getAnnotationRetention(): KotlinRetention? {
+        val retentionArgument =
+            getAnnotation(StandardNames.FqNames.retention)?.getValueArgument(0)
+                    as? IrGetEnumValue ?: return null
+        val retentionArgumentValue = retentionArgument.symbol.owner
+        return KotlinRetention.valueOf(retentionArgumentValue.name.asString())
+    }
+
     // Taken from AdditionalClassAnnotationLowering.kt
     private fun generateRetentionAnnotation(irClass: IrClass): IrConstructorCall? {
         if (irClass.hasAnnotation(JvmAnnotationNames.RETENTION_ANNOTATION))
@@ -777,16 +818,46 @@ open class KotlinFileExtractor(
     private val javaAnnotationRepeatable by lazy { referenceExternalClass("java.lang.annotation.Repeatable") }
     private val kotlinAnnotationRepeatableContainer by lazy { referenceExternalClass("kotlin.jvm.internal.RepeatableContainer") }
 
+    // Taken from declarationBuilders.kt (not available in Kotlin < 1.6):
+    private fun addDefaultGetter(p: IrProperty, parentClass: IrClass) {
+        val field = p.backingField!!
+        p.addGetter {
+            origin = IrDeclarationOrigin.DEFAULT_PROPERTY_ACCESSOR
+            returnType = field.type
+        }.apply {
+            dispatchReceiverParameter = copyParameterToFunction(parentClass.thisReceiver!!, this)
+            body = factory.createBlockBody(
+                UNDEFINED_OFFSET, UNDEFINED_OFFSET, listOf(
+                    IrReturnImpl(
+                        UNDEFINED_OFFSET, UNDEFINED_OFFSET,
+                        pluginContext.irBuiltIns.nothingType,
+                        symbol,
+                        IrGetFieldImpl(
+                            UNDEFINED_OFFSET, UNDEFINED_OFFSET,
+                            field.symbol,
+                            field.type,
+                            IrGetValueImpl(
+                                UNDEFINED_OFFSET, UNDEFINED_OFFSET,
+                                dispatchReceiverParameter!!.type,
+                                dispatchReceiverParameter!!.symbol
+                            )
+                        )
+                    )
+                )
+            )
+        }
+    }
+
     // Taken from JvmCachedDeclarations.kt
     private fun getOrCreateSyntheticRepeatableAnnotationContainer(annotationClass: IrClass) =
         globalExtensionState.syntheticRepeatableAnnotationContainers.getOrPut(annotationClass) {
             val containerClass = pluginContext.irFactory.buildClass {
                 kind = ClassKind.ANNOTATION_CLASS
-                name = Name.identifier(JvmAbi.REPEATABLE_ANNOTATION_CONTAINER_NAME)
+                name = Name.identifier("Container")
             }.apply {
                 createImplicitParameterDeclarationWithWrappedDescriptor()
                 parent = annotationClass
-                superTypes = listOf(pluginContext.irBuiltIns.annotationType)
+                superTypes = listOf(getAnnotationType(pluginContext))
             }
 
             val propertyName = Name.identifier("value")
@@ -795,7 +866,7 @@ open class KotlinFileExtractor(
             containerClass.addConstructor {
                 isPrimary = true
             }.apply {
-                addValueParameter(propertyName, propertyType)
+                addValueParameter(propertyName.identifier, propertyType)
             }
 
             containerClass.addProperty {
@@ -808,7 +879,7 @@ open class KotlinFileExtractor(
                     parent = containerClass
                     correspondingPropertySymbol = this@property.symbol
                 }
-                addDefaultGetter(containerClass, pluginContext.irBuiltIns)
+                addDefaultGetter(this, containerClass)
             }
 
             val repeatableContainerAnnotation = kotlinAnnotationRepeatableContainer?.let { it.constructors.single() }
diff --git a/java/kotlin-extractor/src/main/kotlin/utils/versions/v_1_4_32/annotationType.kt b/java/kotlin-extractor/src/main/kotlin/utils/versions/v_1_4_32/annotationType.kt
new file mode 100644
index 00000000000..08fd0315f7c
--- /dev/null
+++ b/java/kotlin-extractor/src/main/kotlin/utils/versions/v_1_4_32/annotationType.kt
@@ -0,0 +1,8 @@
+package com.github.codeql.utils.versions
+
+import org.jetbrains.kotlin.backend.common.extensions.IrPluginContext
+import org.jetbrains.kotlin.ir.ObsoleteDescriptorBasedAPI
+
+@OptIn(ObsoleteDescriptorBasedAPI::class)
+fun getAnnotationType(context: IrPluginContext) =
+    context.typeTranslator.translateType(context.builtIns.annotationType)
\ No newline at end of file
diff --git a/java/kotlin-extractor/src/main/kotlin/utils/versions/v_1_4_32/copyTo.kt b/java/kotlin-extractor/src/main/kotlin/utils/versions/v_1_4_32/copyTo.kt
new file mode 100644
index 00000000000..4147daa340f
--- /dev/null
+++ b/java/kotlin-extractor/src/main/kotlin/utils/versions/v_1_4_32/copyTo.kt
@@ -0,0 +1,7 @@
+package com.github.codeql.utils.versions
+
+import org.jetbrains.kotlin.ir.declarations.IrFunction
+import org.jetbrains.kotlin.ir.declarations.IrValueParameter
+import org.jetbrains.kotlin.backend.common.ir.copyTo
+
+fun copyParameterToFunction(p: IrValueParameter, f: IrFunction) = p.copyTo(f)
diff --git a/java/kotlin-extractor/src/main/kotlin/utils/versions/v_1_6_0/annotationType.kt b/java/kotlin-extractor/src/main/kotlin/utils/versions/v_1_6_0/annotationType.kt
new file mode 100644
index 00000000000..3ce3cad89ec
--- /dev/null
+++ b/java/kotlin-extractor/src/main/kotlin/utils/versions/v_1_6_0/annotationType.kt
@@ -0,0 +1,6 @@
+package com.github.codeql.utils.versions
+
+import org.jetbrains.kotlin.backend.common.extensions.IrPluginContext
+
+fun getAnnotationType(context: IrPluginContext) =
+    context.irBuiltIns.annotationType
\ No newline at end of file
diff --git a/java/kotlin-extractor/src/main/kotlin/utils/versions/v_1_7_20/copyTo.kt b/java/kotlin-extractor/src/main/kotlin/utils/versions/v_1_7_20/copyTo.kt
new file mode 100644
index 00000000000..701bd21036e
--- /dev/null
+++ b/java/kotlin-extractor/src/main/kotlin/utils/versions/v_1_7_20/copyTo.kt
@@ -0,0 +1,7 @@
+package com.github.codeql.utils.versions
+
+import org.jetbrains.kotlin.ir.declarations.IrFunction
+import org.jetbrains.kotlin.ir.declarations.IrValueParameter
+import org.jetbrains.kotlin.ir.util.copyTo
+
+fun copyParameterToFunction(p: IrValueParameter, f: IrFunction) = p.copyTo(f)
\ No newline at end of file

From f9fc08bd4015531fbfeb4bfc21911991ddea1b67 Mon Sep 17 00:00:00 2001
From: Chris Smowton <smowton@github.com>
Date: Tue, 15 Nov 2022 18:32:31 +0000
Subject: [PATCH 1234/1420] Replace uses of the !! operator in borrowed code

---
 .../src/main/kotlin/KotlinFileExtractor.kt           | 12 ++++++++----
 1 file changed, 8 insertions(+), 4 deletions(-)

diff --git a/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt b/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt
index 25667221fd4..548a8436e0f 100644
--- a/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt
+++ b/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt
@@ -820,12 +820,16 @@ open class KotlinFileExtractor(
 
     // Taken from declarationBuilders.kt (not available in Kotlin < 1.6):
     private fun addDefaultGetter(p: IrProperty, parentClass: IrClass) {
-        val field = p.backingField!!
+        val field = p.backingField ?:
+            run { logger.warnElement("Expected property to have a backing field", p); return }
         p.addGetter {
             origin = IrDeclarationOrigin.DEFAULT_PROPERTY_ACCESSOR
             returnType = field.type
         }.apply {
-            dispatchReceiverParameter = copyParameterToFunction(parentClass.thisReceiver!!, this)
+            val thisReceiever = parentClass.thisReceiver ?:
+                run { logger.warnElement("Expected property's parent class to have a receiver parameter", parentClass); return }
+            val newParam = copyParameterToFunction(thisReceiever, this)
+            dispatchReceiverParameter = newParam
             body = factory.createBlockBody(
                 UNDEFINED_OFFSET, UNDEFINED_OFFSET, listOf(
                     IrReturnImpl(
@@ -838,8 +842,8 @@ open class KotlinFileExtractor(
                             field.type,
                             IrGetValueImpl(
                                 UNDEFINED_OFFSET, UNDEFINED_OFFSET,
-                                dispatchReceiverParameter!!.type,
-                                dispatchReceiverParameter!!.symbol
+                                newParam.type,
+                                newParam.symbol
                             )
                         )
                     )

From 3dc9c2e57ba2912da7c688ee671ecad629a324fa Mon Sep 17 00:00:00 2001
From: Chris Smowton <smowton@github.com>
Date: Tue, 15 Nov 2022 18:36:03 +0000
Subject: [PATCH 1235/1420] Remove unnecessary unchecked cast

---
 java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt | 3 +--
 1 file changed, 1 insertion(+), 2 deletions(-)

diff --git a/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt b/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt
index 548a8436e0f..76483479d3d 100644
--- a/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt
+++ b/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt
@@ -4564,8 +4564,7 @@ open class KotlinFileExtractor(
         extractExpressionExpr(loop.condition, callable, id, 0, id)
     }
 
-    @Suppress("UNCHECKED_CAST")
-    private fun <T : DbExpr> exprIdOrFresh(id: Label<out DbExpr>?) = id as? Label<T> ?: tw.getFreshIdLabel()
+    private fun <T : DbExpr> exprIdOrFresh(id: Label<out DbExpr>?) = id?.cast<T>() ?: tw.getFreshIdLabel()
 
     private fun toUnbound(t: IrType) =
         when(t) {

From c4ded5b4a7f855d54454270524dde4610d9756d7 Mon Sep 17 00:00:00 2001
From: Chris Smowton <smowton@github.com>
Date: Tue, 15 Nov 2022 18:37:57 +0000
Subject: [PATCH 1236/1420] Remove unused function

---
 .../kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt | 6 ------
 1 file changed, 6 deletions(-)

diff --git a/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt b/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt
index 76483479d3d..089b4de5ee6 100644
--- a/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt
+++ b/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt
@@ -4566,12 +4566,6 @@ open class KotlinFileExtractor(
 
     private fun <T : DbExpr> exprIdOrFresh(id: Label<out DbExpr>?) = id?.cast<T>() ?: tw.getFreshIdLabel()
 
-    private fun toUnbound(t: IrType) =
-        when(t) {
-            is IrSimpleType -> t.classifier.typeWith()
-            else -> t
-        }
-
     private fun extractClassReference(
         e: IrClassReference,
         parent: Label<out DbExprparent>,

From 80ef3a52908106534420dba493f824c9457f30dd Mon Sep 17 00:00:00 2001
From: Chris Smowton <smowton@github.com>
Date: Tue, 15 Nov 2022 19:08:02 +0000
Subject: [PATCH 1237/1420] Move meta-annotation support code out into its own
 class

---
 .../src/main/kotlin/KotlinFileExtractor.kt    | 361 +---------------
 .../src/main/kotlin/MetaAnnotationSupport.kt  | 396 ++++++++++++++++++
 2 files changed, 400 insertions(+), 357 deletions(-)
 create mode 100644 java/kotlin-extractor/src/main/kotlin/MetaAnnotationSupport.kt

diff --git a/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt b/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt
index 089b4de5ee6..f12a36c4310 100644
--- a/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt
+++ b/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt
@@ -7,18 +7,13 @@ import com.semmle.extractor.java.OdasaOutput
 import org.jetbrains.kotlin.backend.common.extensions.IrPluginContext
 import org.jetbrains.kotlin.backend.common.lower.parents
 import org.jetbrains.kotlin.backend.common.pop
-import org.jetbrains.kotlin.builtins.StandardNames
 import org.jetbrains.kotlin.builtins.functions.BuiltInFunctionArity
 import org.jetbrains.kotlin.config.JvmAnalysisFlags
-import org.jetbrains.kotlin.config.JvmTarget
 import org.jetbrains.kotlin.descriptors.*
-import org.jetbrains.kotlin.descriptors.annotations.KotlinRetention
-import org.jetbrains.kotlin.descriptors.annotations.KotlinTarget
 import org.jetbrains.kotlin.descriptors.java.JavaVisibilities
 import org.jetbrains.kotlin.ir.IrElement
 import org.jetbrains.kotlin.ir.IrStatement
 import org.jetbrains.kotlin.ir.ObsoleteDescriptorBasedAPI
-import org.jetbrains.kotlin.ir.UNDEFINED_OFFSET
 import org.jetbrains.kotlin.ir.backend.js.utils.realOverrideTarget
 import org.jetbrains.kotlin.ir.builders.declarations.*
 import org.jetbrains.kotlin.ir.declarations.*
@@ -29,14 +24,9 @@ import org.jetbrains.kotlin.ir.symbols.*
 import org.jetbrains.kotlin.ir.types.*
 import org.jetbrains.kotlin.ir.types.impl.makeTypeProjection
 import org.jetbrains.kotlin.ir.util.companionObject
-import org.jetbrains.kotlin.ir.util.constructedClass
 import org.jetbrains.kotlin.ir.util.constructors
-import org.jetbrains.kotlin.ir.util.deepCopyWithSymbols
-import org.jetbrains.kotlin.ir.util.defaultType
 import org.jetbrains.kotlin.ir.util.fqNameWhenAvailable
-import org.jetbrains.kotlin.ir.util.getAnnotation
 import org.jetbrains.kotlin.ir.util.hasAnnotation
-import org.jetbrains.kotlin.ir.util.hasEqualFqName
 import org.jetbrains.kotlin.ir.util.hasInterfaceParent
 import org.jetbrains.kotlin.ir.util.isAnonymousObject
 import org.jetbrains.kotlin.ir.util.isFakeOverride
@@ -54,7 +44,6 @@ import org.jetbrains.kotlin.ir.util.parentClassOrNull
 import org.jetbrains.kotlin.ir.util.primaryConstructor
 import org.jetbrains.kotlin.ir.util.render
 import org.jetbrains.kotlin.ir.util.target
-import org.jetbrains.kotlin.load.java.JvmAnnotationNames
 import org.jetbrains.kotlin.load.java.sources.JavaSourceElement
 import org.jetbrains.kotlin.load.java.structure.JavaClass
 import org.jetbrains.kotlin.load.java.structure.JavaMethod
@@ -62,12 +51,9 @@ import org.jetbrains.kotlin.load.java.structure.JavaTypeParameter
 import org.jetbrains.kotlin.load.java.structure.JavaTypeParameterListOwner
 import org.jetbrains.kotlin.load.java.structure.impl.classFiles.BinaryJavaClass
 import org.jetbrains.kotlin.name.FqName
-import org.jetbrains.kotlin.name.Name
 import org.jetbrains.kotlin.types.Variance
 import org.jetbrains.kotlin.util.OperatorNameConventions
-import org.jetbrains.kotlin.utils.addToStdlib.firstIsInstanceOrNull
 import java.io.Closeable
-import java.lang.annotation.ElementType
 import java.util.*
 import kotlin.collections.ArrayList
 
@@ -84,6 +70,8 @@ open class KotlinFileExtractor(
     globalExtensionState: KotlinExtractorGlobalState,
 ): KotlinUsesExtractor(logger, tw, dependencyCollector, externalClassExtractor, primitiveTypeMapping, pluginContext, globalExtensionState) {
 
+    val metaAnnotationSupport = MetaAnnotationSupport(logger, pluginContext, this)
+
     private inline fun <T> with(kind: String, element: IrElement, f: () -> T): T {
         val name = when (element) {
             is IrFile -> element.name
@@ -492,80 +480,8 @@ open class KotlinFileExtractor(
         extractDeclInitializers(c.declarations, false) { Pair(blockId, obinitId) }
     }
 
-    // Taken from AdditionalIrUtils.kt (not available in Kotlin < 1.6)
-    private val IrConstructorCall.annotationClass
-        get() = this.symbol.owner.constructedClass
-
-    // Taken from AdditionalIrUtils.kt (not available in Kotlin < 1.6)
-    private fun IrConstructorCall.isAnnotationWithEqualFqName(fqName: FqName): Boolean =
-        annotationClass.hasEqualFqName(fqName)
-
-    // Adapted from RepeatedAnnotationLowering.kt
-    private fun groupRepeatableAnnotations(annotations: List<IrConstructorCall>): List<IrConstructorCall> {
-        if (annotations.size < 2) return annotations
-
-        val annotationsByClass = annotations.groupByTo(mutableMapOf()) { it.annotationClass }
-        if (annotationsByClass.values.none { it.size > 1 }) return annotations
-
-        val result = mutableListOf<IrConstructorCall>()
-        for (annotation in annotations) {
-            val annotationClass = annotation.annotationClass
-            val grouped = annotationsByClass.remove(annotationClass) ?: continue
-            if (grouped.size < 2) {
-                result.add(grouped.single())
-                continue
-            }
-
-            val containerClass = getOrCreateContainerClass(annotationClass)
-            if (containerClass != null)
-                wrapAnnotationEntriesInContainer(annotationClass, containerClass, grouped)?.let {
-                    result.add(it)
-                }
-            else
-                logger.warnElement("Failed to find an annotation container class", annotationClass)
-        }
-        return result
-    }
-
-    // Adapted from RepeatedAnnotationLowering.kt
-    private fun getOrCreateContainerClass(annotationClass: IrClass): IrClass? {
-        val metaAnnotations = annotationClass.annotations
-        val jvmRepeatable = metaAnnotations.find { it.symbol.owner.parentAsClass.fqNameWhenAvailable == JvmAnnotationNames.REPEATABLE_ANNOTATION }
-        return if (jvmRepeatable != null) {
-            ((jvmRepeatable.getValueArgument(0) as? IrClassReference)?.symbol as? IrClassSymbol)?.owner
-        } else {
-            getOrCreateSyntheticRepeatableAnnotationContainer(annotationClass)
-        }
-    }
-
-    // Adapted from RepeatedAnnotationLowering.kt
-    private fun wrapAnnotationEntriesInContainer(
-        annotationClass: IrClass,
-        containerClass: IrClass,
-        entries: List<IrConstructorCall>,
-    ): IrConstructorCall? {
-        val annotationType = annotationClass.typeWith()
-        val containerConstructor = containerClass.primaryConstructor
-        if (containerConstructor == null) {
-            logger.warnElement("Expected container class to have a primary constructor", containerClass)
-            return null
-        } else {
-            return IrConstructorCallImpl.fromSymbolOwner(containerClass.defaultType, containerConstructor.symbol).apply {
-                putValueArgument(
-                    0,
-                    IrVarargImpl(
-                        UNDEFINED_OFFSET, UNDEFINED_OFFSET,
-                        pluginContext.irBuiltIns.arrayClass.typeWith(annotationType),
-                        annotationType,
-                        entries
-                    )
-                )
-            }
-        }
-    }
-
     private fun extractAnnotations(annotations: List<IrConstructorCall>, parent: Label<out DbExprparent>) {
-        val groupedAnnotations = groupRepeatableAnnotations(annotations)
+        val groupedAnnotations = metaAnnotationSupport.groupRepeatableAnnotations(annotations)
         for ((idx, constructorCall: IrConstructorCall) in groupedAnnotations.sortedBy { v -> v.type.classFqName?.asString() }.withIndex()) {
             extractAnnotation(constructorCall, parent, idx)
         }
@@ -678,275 +594,6 @@ open class KotlinFileExtractor(
         }
     }
 
-    private val javaAnnotationTargetElementType by lazy { referenceExternalClass("java.lang.annotation.ElementType") }
-
-    private val javaAnnotationTarget by lazy { referenceExternalClass("java.lang.annotation.Target") }
-
-    // Taken from AdditionalClassAnnotationLowering.kt
-    private fun getApplicableTargetSet(c: IrClass): Set<KotlinTarget>? {
-        val targetEntry = c.getAnnotation(StandardNames.FqNames.target) ?: return null
-        return loadAnnotationTargets(targetEntry)
-    }
-
-    // Taken from AdditionalClassAnnotationLowering.kt
-    private fun loadAnnotationTargets(targetEntry: IrConstructorCall): Set<KotlinTarget>? {
-        val valueArgument = targetEntry.getValueArgument(0) as? IrVararg ?: return null
-        return valueArgument.elements.filterIsInstance<IrGetEnumValue>().mapNotNull {
-            KotlinTarget.valueOrNull(it.symbol.owner.name.asString())
-        }.toSet()
-    }
-
-
-    private fun findEnumEntry(c: IrClass, name: String) =
-        c.declarations.filterIsInstance<IrEnumEntry>().find { it.name.asString() == name }
-
-    // Adapted from JvmSymbols.kt
-    private val jvm6TargetMap by lazy {
-        javaAnnotationTargetElementType?.let {
-            val etMethod = findEnumEntry(it, "METHOD")
-            mapOf(
-                KotlinTarget.CLASS to findEnumEntry(it, "TYPE"),
-                KotlinTarget.ANNOTATION_CLASS to findEnumEntry(it, "ANNOTATION_TYPE"),
-                KotlinTarget.CONSTRUCTOR to findEnumEntry(it, "CONSTRUCTOR"),
-                KotlinTarget.LOCAL_VARIABLE to findEnumEntry(it, "LOCAL_VARIABLE"),
-                KotlinTarget.FUNCTION to etMethod,
-                KotlinTarget.PROPERTY_GETTER to etMethod,
-                KotlinTarget.PROPERTY_SETTER to etMethod,
-                KotlinTarget.FIELD to findEnumEntry(it, "FIELD"),
-                KotlinTarget.VALUE_PARAMETER to findEnumEntry(it, "PARAMETER")
-            )
-        }
-    }
-
-    // Adapted from JvmSymbols.kt
-    private val jvm8TargetMap by lazy {
-        javaAnnotationTargetElementType?.let {
-            jvm6TargetMap?.let { j6Map ->
-                j6Map + mapOf(
-                    KotlinTarget.TYPE_PARAMETER to findEnumEntry(it, "TYPE_PARAMETER"),
-                    KotlinTarget.TYPE to findEnumEntry(it, "TYPE_USE")
-                )
-            }
-        }
-    }
-
-    private fun getAnnotationTargetMap() =
-        if (pluginContext.platform?.any { it.targetPlatformVersion == JvmTarget.JVM_1_6 } == true)
-            jvm6TargetMap
-        else
-            jvm8TargetMap
-
-    // Adapted from AdditionalClassAnnotationLowering.kt
-    private fun generateTargetAnnotation(c: IrClass): IrConstructorCall? {
-        if (c.hasAnnotation(JvmAnnotationNames.TARGET_ANNOTATION))
-            return null
-        val elementType = javaAnnotationTargetElementType ?: return null
-        val targetType = javaAnnotationTarget ?: return null
-        val targetConstructor = targetType.declarations.firstIsInstanceOrNull<IrConstructor>() ?: return null
-        val targets = getApplicableTargetSet(c) ?: return null
-        val annotationTargetMap = getAnnotationTargetMap() ?: return null
-
-        val javaTargets = targets.mapNotNullTo(HashSet()) { annotationTargetMap[it] }.sortedBy {
-            ElementType.valueOf(it.symbol.owner.name.asString())
-        }
-        val vararg = IrVarargImpl(
-            UNDEFINED_OFFSET, UNDEFINED_OFFSET,
-            type = pluginContext.irBuiltIns.arrayClass.typeWith(elementType.defaultType),
-            varargElementType = elementType.defaultType
-        )
-        for (target in javaTargets) {
-            vararg.elements.add(
-                IrGetEnumValueImpl(
-                    UNDEFINED_OFFSET, UNDEFINED_OFFSET, elementType.defaultType, target.symbol
-                )
-            )
-        }
-
-        return IrConstructorCallImpl.fromSymbolOwner(
-            UNDEFINED_OFFSET, UNDEFINED_OFFSET, targetConstructor.returnType, targetConstructor.symbol, 0
-        ).apply {
-            putValueArgument(0, vararg)
-        }
-    }
-
-    private val javaAnnotationRetention by lazy { referenceExternalClass("java.lang.annotation.Retention") }
-    private val javaAnnotationRetentionPolicy by lazy { referenceExternalClass("java.lang.annotation.RetentionPolicy") }
-    private val javaAnnotationRetentionPolicyRuntime by lazy { javaAnnotationRetentionPolicy?.let { findEnumEntry(it, "RUNTIME") } }
-
-    private val annotationRetentionMap by lazy {
-        javaAnnotationRetentionPolicy?.let {
-            mapOf(
-                KotlinRetention.SOURCE to findEnumEntry(it, "SOURCE"),
-                KotlinRetention.BINARY to findEnumEntry(it, "CLASS"),
-                KotlinRetention.RUNTIME to javaAnnotationRetentionPolicyRuntime
-            )
-        }
-    }
-
-    // Taken from AnnotationCodegen.kt (not available in Kotlin < 1.6.20)
-    private fun IrClass.getAnnotationRetention(): KotlinRetention? {
-        val retentionArgument =
-            getAnnotation(StandardNames.FqNames.retention)?.getValueArgument(0)
-                    as? IrGetEnumValue ?: return null
-        val retentionArgumentValue = retentionArgument.symbol.owner
-        return KotlinRetention.valueOf(retentionArgumentValue.name.asString())
-    }
-
-    // Taken from AdditionalClassAnnotationLowering.kt
-    private fun generateRetentionAnnotation(irClass: IrClass): IrConstructorCall? {
-        if (irClass.hasAnnotation(JvmAnnotationNames.RETENTION_ANNOTATION))
-            return null
-        val retentionMap = annotationRetentionMap ?: return null
-        val kotlinRetentionPolicy = irClass.getAnnotationRetention()
-        val javaRetentionPolicy = kotlinRetentionPolicy?.let { retentionMap[it] } ?: javaAnnotationRetentionPolicyRuntime ?: return null
-        val retentionPolicyType = javaAnnotationRetentionPolicy ?: return null
-        val retentionType = javaAnnotationRetention ?: return null
-        val targetConstructor = retentionType.declarations.firstIsInstanceOrNull<IrConstructor>() ?: return null
-
-        return IrConstructorCallImpl.fromSymbolOwner(
-            UNDEFINED_OFFSET, UNDEFINED_OFFSET, targetConstructor.returnType, targetConstructor.symbol, 0
-        ).apply {
-            putValueArgument(
-                0,
-                IrGetEnumValueImpl(
-                    UNDEFINED_OFFSET, UNDEFINED_OFFSET, retentionPolicyType.defaultType, javaRetentionPolicy.symbol
-                )
-            )
-        }
-    }
-
-    private val javaAnnotationRepeatable by lazy { referenceExternalClass("java.lang.annotation.Repeatable") }
-    private val kotlinAnnotationRepeatableContainer by lazy { referenceExternalClass("kotlin.jvm.internal.RepeatableContainer") }
-
-    // Taken from declarationBuilders.kt (not available in Kotlin < 1.6):
-    private fun addDefaultGetter(p: IrProperty, parentClass: IrClass) {
-        val field = p.backingField ?:
-            run { logger.warnElement("Expected property to have a backing field", p); return }
-        p.addGetter {
-            origin = IrDeclarationOrigin.DEFAULT_PROPERTY_ACCESSOR
-            returnType = field.type
-        }.apply {
-            val thisReceiever = parentClass.thisReceiver ?:
-                run { logger.warnElement("Expected property's parent class to have a receiver parameter", parentClass); return }
-            val newParam = copyParameterToFunction(thisReceiever, this)
-            dispatchReceiverParameter = newParam
-            body = factory.createBlockBody(
-                UNDEFINED_OFFSET, UNDEFINED_OFFSET, listOf(
-                    IrReturnImpl(
-                        UNDEFINED_OFFSET, UNDEFINED_OFFSET,
-                        pluginContext.irBuiltIns.nothingType,
-                        symbol,
-                        IrGetFieldImpl(
-                            UNDEFINED_OFFSET, UNDEFINED_OFFSET,
-                            field.symbol,
-                            field.type,
-                            IrGetValueImpl(
-                                UNDEFINED_OFFSET, UNDEFINED_OFFSET,
-                                newParam.type,
-                                newParam.symbol
-                            )
-                        )
-                    )
-                )
-            )
-        }
-    }
-
-    // Taken from JvmCachedDeclarations.kt
-    private fun getOrCreateSyntheticRepeatableAnnotationContainer(annotationClass: IrClass) =
-        globalExtensionState.syntheticRepeatableAnnotationContainers.getOrPut(annotationClass) {
-            val containerClass = pluginContext.irFactory.buildClass {
-                kind = ClassKind.ANNOTATION_CLASS
-                name = Name.identifier("Container")
-            }.apply {
-                createImplicitParameterDeclarationWithWrappedDescriptor()
-                parent = annotationClass
-                superTypes = listOf(getAnnotationType(pluginContext))
-            }
-
-            val propertyName = Name.identifier("value")
-            val propertyType = pluginContext.irBuiltIns.arrayClass.typeWith(annotationClass.typeWith())
-
-            containerClass.addConstructor {
-                isPrimary = true
-            }.apply {
-                addValueParameter(propertyName.identifier, propertyType)
-            }
-
-            containerClass.addProperty {
-                name = propertyName
-            }.apply property@{
-                backingField = pluginContext.irFactory.buildField {
-                    name = propertyName
-                    type = propertyType
-                }.apply {
-                    parent = containerClass
-                    correspondingPropertySymbol = this@property.symbol
-                }
-                addDefaultGetter(this, containerClass)
-            }
-
-            val repeatableContainerAnnotation = kotlinAnnotationRepeatableContainer?.let { it.constructors.single() }
-
-            containerClass.annotations = annotationClass.annotations
-                .filter {
-                    it.isAnnotationWithEqualFqName(StandardNames.FqNames.retention) ||
-                            it.isAnnotationWithEqualFqName(StandardNames.FqNames.target)
-                }
-                .map { it.deepCopyWithSymbols(containerClass) } +
-                    listOfNotNull(
-                        repeatableContainerAnnotation?.let {
-                            IrConstructorCallImpl.fromSymbolOwner(
-                                UNDEFINED_OFFSET, UNDEFINED_OFFSET, it.returnType, it.symbol, 0
-                            )
-                        }
-                    )
-
-            containerClass
-        }
-
-    // Adapted from AdditionalClassAnnotationLowering.kt
-    private fun generateRepeatableAnnotation(irClass: IrClass): IrConstructorCall? {
-        if (!irClass.hasAnnotation(StandardNames.FqNames.repeatable) ||
-            irClass.hasAnnotation(JvmAnnotationNames.REPEATABLE_ANNOTATION)
-        ) return null
-
-        val repeatableConstructor = javaAnnotationRepeatable?.declarations?.firstIsInstanceOrNull<IrConstructor>() ?: return null
-
-        val containerClass = getOrCreateSyntheticRepeatableAnnotationContainer(irClass)
-        // Whenever a repeatable annotation with a Kotlin-synthesised container is extracted, extract the synthetic container to the same trap file.
-        extractClassSource(containerClass, extractDeclarations = true, extractStaticInitializer = true, extractPrivateMembers = true, extractFunctionBodies = true)
-
-        val containerReference = IrClassReferenceImpl(
-            UNDEFINED_OFFSET, UNDEFINED_OFFSET, pluginContext.irBuiltIns.kClassClass.typeWith(containerClass.defaultType),
-            containerClass.symbol, containerClass.defaultType
-        )
-        return IrConstructorCallImpl.fromSymbolOwner(
-            UNDEFINED_OFFSET, UNDEFINED_OFFSET, repeatableConstructor.returnType, repeatableConstructor.symbol, 0
-        ).apply {
-            putValueArgument(0, containerReference)
-        }
-    }
-
-    private val javaAnnotationDocumented by lazy { referenceExternalClass("java.lang.annotation.Documented") }
-
-    // Taken from AdditionalClassAnnotationLowering.kt
-    private fun generateDocumentedAnnotation(irClass: IrClass): IrConstructorCall? {
-        if (!irClass.hasAnnotation(StandardNames.FqNames.mustBeDocumented) ||
-            irClass.hasAnnotation(JvmAnnotationNames.DOCUMENTED_ANNOTATION)
-        ) return null
-
-        val documentedConstructor = javaAnnotationDocumented?.declarations?.firstIsInstanceOrNull<IrConstructor>() ?: return null
-
-        return IrConstructorCallImpl.fromSymbolOwner(
-            UNDEFINED_OFFSET, UNDEFINED_OFFSET, documentedConstructor.returnType, documentedConstructor.symbol, 0
-        )
-    }
-
-    private fun generateJavaMetaAnnotations(c: IrClass) =
-        // This is essentially AdditionalClassAnnotationLowering adapted to run outside the backend.
-        listOfNotNull(generateTargetAnnotation(c), generateRetentionAnnotation(c), generateRepeatableAnnotation(c), generateDocumentedAnnotation(c))
-
     fun extractClassSource(c: IrClass, extractDeclarations: Boolean, extractStaticInitializer: Boolean, extractPrivateMembers: Boolean, extractFunctionBodies: Boolean): Label<out DbClassorinterface> {
         with("class source", c) {
             DeclarationStackAdjuster(c).use {
@@ -1035,7 +682,7 @@ open class KotlinFileExtractor(
 
                 val additionalAnnotations =
                     if (c.kind == ClassKind.ANNOTATION_CLASS && c.origin != IrDeclarationOrigin.IR_EXTERNAL_JAVA_DECLARATION_STUB)
-                        generateJavaMetaAnnotations(c)
+                        metaAnnotationSupport.generateJavaMetaAnnotations(c)
                     else
                         listOf()
 
diff --git a/java/kotlin-extractor/src/main/kotlin/MetaAnnotationSupport.kt b/java/kotlin-extractor/src/main/kotlin/MetaAnnotationSupport.kt
new file mode 100644
index 00000000000..e2713783382
--- /dev/null
+++ b/java/kotlin-extractor/src/main/kotlin/MetaAnnotationSupport.kt
@@ -0,0 +1,396 @@
+package com.github.codeql
+
+import com.github.codeql.utils.versions.copyParameterToFunction
+import com.github.codeql.utils.versions.createImplicitParameterDeclarationWithWrappedDescriptor
+import com.github.codeql.utils.versions.getAnnotationType
+import org.jetbrains.kotlin.backend.common.extensions.IrPluginContext
+import org.jetbrains.kotlin.builtins.StandardNames
+import org.jetbrains.kotlin.config.JvmTarget
+import org.jetbrains.kotlin.descriptors.ClassKind
+import org.jetbrains.kotlin.descriptors.annotations.KotlinRetention
+import org.jetbrains.kotlin.descriptors.annotations.KotlinTarget
+import org.jetbrains.kotlin.ir.UNDEFINED_OFFSET
+import org.jetbrains.kotlin.ir.builders.declarations.addConstructor
+import org.jetbrains.kotlin.ir.builders.declarations.addGetter
+import org.jetbrains.kotlin.ir.builders.declarations.addProperty
+import org.jetbrains.kotlin.ir.builders.declarations.addValueParameter
+import org.jetbrains.kotlin.ir.builders.declarations.buildClass
+import org.jetbrains.kotlin.ir.builders.declarations.buildField
+import org.jetbrains.kotlin.ir.declarations.IrClass
+import org.jetbrains.kotlin.ir.declarations.IrConstructor
+import org.jetbrains.kotlin.ir.declarations.IrDeclarationOrigin
+import org.jetbrains.kotlin.ir.declarations.IrEnumEntry
+import org.jetbrains.kotlin.ir.declarations.IrProperty
+import org.jetbrains.kotlin.ir.expressions.IrClassReference
+import org.jetbrains.kotlin.ir.expressions.IrConstructorCall
+import org.jetbrains.kotlin.ir.expressions.IrGetEnumValue
+import org.jetbrains.kotlin.ir.expressions.IrVararg
+import org.jetbrains.kotlin.ir.expressions.impl.IrClassReferenceImpl
+import org.jetbrains.kotlin.ir.expressions.impl.IrConstructorCallImpl
+import org.jetbrains.kotlin.ir.expressions.impl.IrGetEnumValueImpl
+import org.jetbrains.kotlin.ir.expressions.impl.IrGetFieldImpl
+import org.jetbrains.kotlin.ir.expressions.impl.IrGetValueImpl
+import org.jetbrains.kotlin.ir.expressions.impl.IrReturnImpl
+import org.jetbrains.kotlin.ir.expressions.impl.IrVarargImpl
+import org.jetbrains.kotlin.ir.symbols.IrClassSymbol
+import org.jetbrains.kotlin.ir.types.typeWith
+import org.jetbrains.kotlin.ir.util.constructedClass
+import org.jetbrains.kotlin.ir.util.constructors
+import org.jetbrains.kotlin.ir.util.deepCopyWithSymbols
+import org.jetbrains.kotlin.ir.util.defaultType
+import org.jetbrains.kotlin.ir.util.fqNameWhenAvailable
+import org.jetbrains.kotlin.ir.util.getAnnotation
+import org.jetbrains.kotlin.ir.util.hasAnnotation
+import org.jetbrains.kotlin.ir.util.hasEqualFqName
+import org.jetbrains.kotlin.ir.util.parentAsClass
+import org.jetbrains.kotlin.ir.util.primaryConstructor
+import org.jetbrains.kotlin.load.java.JvmAnnotationNames
+import org.jetbrains.kotlin.name.FqName
+import org.jetbrains.kotlin.name.Name
+import org.jetbrains.kotlin.utils.addToStdlib.firstIsInstanceOrNull
+import java.lang.annotation.ElementType
+import java.util.HashSet
+
+class MetaAnnotationSupport(private val logger: FileLogger, private val pluginContext: IrPluginContext, private val extractor: KotlinFileExtractor) {
+
+    // Taken from AdditionalIrUtils.kt (not available in Kotlin < 1.6)
+    private val IrConstructorCall.annotationClass
+        get() = this.symbol.owner.constructedClass
+
+    // Taken from AdditionalIrUtils.kt (not available in Kotlin < 1.6)
+    private fun IrConstructorCall.isAnnotationWithEqualFqName(fqName: FqName): Boolean =
+        annotationClass.hasEqualFqName(fqName)
+
+    // Adapted from RepeatedAnnotationLowering.kt
+    fun groupRepeatableAnnotations(annotations: List<IrConstructorCall>): List<IrConstructorCall> {
+        if (annotations.size < 2) return annotations
+
+        val annotationsByClass = annotations.groupByTo(mutableMapOf()) { it.annotationClass }
+        if (annotationsByClass.values.none { it.size > 1 }) return annotations
+
+        val result = mutableListOf<IrConstructorCall>()
+        for (annotation in annotations) {
+            val annotationClass = annotation.annotationClass
+            val grouped = annotationsByClass.remove(annotationClass) ?: continue
+            if (grouped.size < 2) {
+                result.add(grouped.single())
+                continue
+            }
+
+            val containerClass = getOrCreateContainerClass(annotationClass)
+            if (containerClass != null)
+                wrapAnnotationEntriesInContainer(annotationClass, containerClass, grouped)?.let {
+                    result.add(it)
+                }
+            else
+                logger.warnElement("Failed to find an annotation container class", annotationClass)
+        }
+        return result
+    }
+
+    // Adapted from RepeatedAnnotationLowering.kt
+    private fun getOrCreateContainerClass(annotationClass: IrClass): IrClass? {
+        val metaAnnotations = annotationClass.annotations
+        val jvmRepeatable = metaAnnotations.find { it.symbol.owner.parentAsClass.fqNameWhenAvailable == JvmAnnotationNames.REPEATABLE_ANNOTATION }
+        return if (jvmRepeatable != null) {
+            ((jvmRepeatable.getValueArgument(0) as? IrClassReference)?.symbol as? IrClassSymbol)?.owner
+        } else {
+            getOrCreateSyntheticRepeatableAnnotationContainer(annotationClass)
+        }
+    }
+
+    // Adapted from RepeatedAnnotationLowering.kt
+    private fun wrapAnnotationEntriesInContainer(
+        annotationClass: IrClass,
+        containerClass: IrClass,
+        entries: List<IrConstructorCall>
+    ): IrConstructorCall? {
+        val annotationType = annotationClass.typeWith()
+        val containerConstructor = containerClass.primaryConstructor
+        if (containerConstructor == null) {
+            logger.warnElement("Expected container class to have a primary constructor", containerClass)
+            return null
+        } else {
+            return IrConstructorCallImpl.fromSymbolOwner(containerClass.defaultType, containerConstructor.symbol).apply {
+                putValueArgument(
+                    0,
+                    IrVarargImpl(
+                        UNDEFINED_OFFSET, UNDEFINED_OFFSET,
+                        pluginContext.irBuiltIns.arrayClass.typeWith(annotationType),
+                        annotationType,
+                        entries
+                    )
+                )
+            }
+        }
+    }
+
+    // Taken from AdditionalClassAnnotationLowering.kt
+    private fun getApplicableTargetSet(c: IrClass): Set<KotlinTarget>? {
+        val targetEntry = c.getAnnotation(StandardNames.FqNames.target) ?: return null
+        return loadAnnotationTargets(targetEntry)
+    }
+
+    // Taken from AdditionalClassAnnotationLowering.kt
+    private fun loadAnnotationTargets(targetEntry: IrConstructorCall): Set<KotlinTarget>? {
+        val valueArgument = targetEntry.getValueArgument(0) as? IrVararg ?: return null
+        return valueArgument.elements.filterIsInstance<IrGetEnumValue>().mapNotNull {
+            KotlinTarget.valueOrNull(it.symbol.owner.name.asString())
+        }.toSet()
+    }
+
+    private val javaAnnotationTargetElementType by lazy { extractor.referenceExternalClass("java.lang.annotation.ElementType") }
+
+    private val javaAnnotationTarget by lazy { extractor.referenceExternalClass("java.lang.annotation.Target") }
+
+    private fun findEnumEntry(c: IrClass, name: String) =
+        c.declarations.filterIsInstance<IrEnumEntry>().find { it.name.asString() == name }
+
+    // Adapted from JvmSymbols.kt
+    private val jvm6TargetMap by lazy {
+        javaAnnotationTargetElementType?.let {
+            val etMethod = findEnumEntry(it, "METHOD")
+            mapOf(
+                KotlinTarget.CLASS to findEnumEntry(it, "TYPE"),
+                KotlinTarget.ANNOTATION_CLASS to findEnumEntry(it, "ANNOTATION_TYPE"),
+                KotlinTarget.CONSTRUCTOR to findEnumEntry(it, "CONSTRUCTOR"),
+                KotlinTarget.LOCAL_VARIABLE to findEnumEntry(it, "LOCAL_VARIABLE"),
+                KotlinTarget.FUNCTION to etMethod,
+                KotlinTarget.PROPERTY_GETTER to etMethod,
+                KotlinTarget.PROPERTY_SETTER to etMethod,
+                KotlinTarget.FIELD to findEnumEntry(it, "FIELD"),
+                KotlinTarget.VALUE_PARAMETER to findEnumEntry(it, "PARAMETER")
+            )
+        }
+    }
+
+    // Adapted from JvmSymbols.kt
+    private val jvm8TargetMap by lazy {
+        javaAnnotationTargetElementType?.let {
+            jvm6TargetMap?.let { j6Map ->
+                j6Map + mapOf(
+                    KotlinTarget.TYPE_PARAMETER to findEnumEntry(it, "TYPE_PARAMETER"),
+                    KotlinTarget.TYPE to findEnumEntry(it, "TYPE_USE")
+                )
+            }
+        }
+    }
+
+    private fun getAnnotationTargetMap() =
+        if (pluginContext.platform?.any { it.targetPlatformVersion == JvmTarget.JVM_1_6 } == true)
+            jvm6TargetMap
+        else
+            jvm8TargetMap
+
+    // Adapted from AdditionalClassAnnotationLowering.kt
+    private fun generateTargetAnnotation(c: IrClass): IrConstructorCall? {
+        if (c.hasAnnotation(JvmAnnotationNames.TARGET_ANNOTATION))
+            return null
+        val elementType = javaAnnotationTargetElementType ?: return null
+        val targetType = javaAnnotationTarget ?: return null
+        val targetConstructor = targetType.declarations.firstIsInstanceOrNull<IrConstructor>() ?: return null
+        val targets = getApplicableTargetSet(c) ?: return null
+        val annotationTargetMap = getAnnotationTargetMap() ?: return null
+
+        val javaTargets = targets.mapNotNullTo(HashSet()) { annotationTargetMap[it] }.sortedBy {
+            ElementType.valueOf(it.symbol.owner.name.asString())
+        }
+        val vararg = IrVarargImpl(
+            UNDEFINED_OFFSET, UNDEFINED_OFFSET,
+            type = pluginContext.irBuiltIns.arrayClass.typeWith(elementType.defaultType),
+            varargElementType = elementType.defaultType
+        )
+        for (target in javaTargets) {
+            vararg.elements.add(
+                IrGetEnumValueImpl(
+                    UNDEFINED_OFFSET, UNDEFINED_OFFSET, elementType.defaultType, target.symbol
+                )
+            )
+        }
+
+        return IrConstructorCallImpl.fromSymbolOwner(
+            UNDEFINED_OFFSET, UNDEFINED_OFFSET, targetConstructor.returnType, targetConstructor.symbol, 0
+        ).apply {
+            putValueArgument(0, vararg)
+        }
+    }
+
+    private val javaAnnotationRetention by lazy { extractor.referenceExternalClass("java.lang.annotation.Retention") }
+    private val javaAnnotationRetentionPolicy by lazy { extractor.referenceExternalClass("java.lang.annotation.RetentionPolicy") }
+    private val javaAnnotationRetentionPolicyRuntime by lazy { javaAnnotationRetentionPolicy?.let { findEnumEntry(it, "RUNTIME") } }
+
+    private val annotationRetentionMap by lazy {
+        javaAnnotationRetentionPolicy?.let {
+            mapOf(
+                KotlinRetention.SOURCE to findEnumEntry(it, "SOURCE"),
+                KotlinRetention.BINARY to findEnumEntry(it, "CLASS"),
+                KotlinRetention.RUNTIME to javaAnnotationRetentionPolicyRuntime
+            )
+        }
+    }
+
+    // Taken from AnnotationCodegen.kt (not available in Kotlin < 1.6.20)
+    private fun IrClass.getAnnotationRetention(): KotlinRetention? {
+        val retentionArgument =
+            getAnnotation(StandardNames.FqNames.retention)?.getValueArgument(0)
+                    as? IrGetEnumValue ?: return null
+        val retentionArgumentValue = retentionArgument.symbol.owner
+        return KotlinRetention.valueOf(retentionArgumentValue.name.asString())
+    }
+
+    // Taken from AdditionalClassAnnotationLowering.kt
+    private fun generateRetentionAnnotation(irClass: IrClass): IrConstructorCall? {
+        if (irClass.hasAnnotation(JvmAnnotationNames.RETENTION_ANNOTATION))
+            return null
+        val retentionMap = annotationRetentionMap ?: return null
+        val kotlinRetentionPolicy = irClass.getAnnotationRetention()
+        val javaRetentionPolicy = kotlinRetentionPolicy?.let { retentionMap[it] } ?: javaAnnotationRetentionPolicyRuntime ?: return null
+        val retentionPolicyType = javaAnnotationRetentionPolicy ?: return null
+        val retentionType = javaAnnotationRetention ?: return null
+        val targetConstructor = retentionType.declarations.firstIsInstanceOrNull<IrConstructor>() ?: return null
+
+        return IrConstructorCallImpl.fromSymbolOwner(
+            UNDEFINED_OFFSET, UNDEFINED_OFFSET, targetConstructor.returnType, targetConstructor.symbol, 0
+        ).apply {
+            putValueArgument(
+                0,
+                IrGetEnumValueImpl(
+                    UNDEFINED_OFFSET, UNDEFINED_OFFSET, retentionPolicyType.defaultType, javaRetentionPolicy.symbol
+                )
+            )
+        }
+    }
+
+    private val javaAnnotationRepeatable by lazy { extractor.referenceExternalClass("java.lang.annotation.Repeatable") }
+    private val kotlinAnnotationRepeatableContainer by lazy { extractor.referenceExternalClass("kotlin.jvm.internal.RepeatableContainer") }
+
+    // Taken from declarationBuilders.kt (not available in Kotlin < 1.6):
+    private fun addDefaultGetter(p: IrProperty, parentClass: IrClass) {
+        val field = p.backingField ?:
+        run { logger.warnElement("Expected property to have a backing field", p); return }
+        p.addGetter {
+            origin = IrDeclarationOrigin.DEFAULT_PROPERTY_ACCESSOR
+            returnType = field.type
+        }.apply {
+            val thisReceiever = parentClass.thisReceiver ?:
+            run { logger.warnElement("Expected property's parent class to have a receiver parameter", parentClass); return }
+            val newParam = copyParameterToFunction(thisReceiever, this)
+            dispatchReceiverParameter = newParam
+            body = factory.createBlockBody(
+                UNDEFINED_OFFSET, UNDEFINED_OFFSET, listOf(
+                    IrReturnImpl(
+                        UNDEFINED_OFFSET, UNDEFINED_OFFSET,
+                        pluginContext.irBuiltIns.nothingType,
+                        symbol,
+                        IrGetFieldImpl(
+                            UNDEFINED_OFFSET, UNDEFINED_OFFSET,
+                            field.symbol,
+                            field.type,
+                            IrGetValueImpl(
+                                UNDEFINED_OFFSET, UNDEFINED_OFFSET,
+                                newParam.type,
+                                newParam.symbol
+                            )
+                        )
+                    )
+                )
+            )
+        }
+    }
+
+    // Taken from JvmCachedDeclarations.kt
+    private fun getOrCreateSyntheticRepeatableAnnotationContainer(annotationClass: IrClass) =
+        extractor.globalExtensionState.syntheticRepeatableAnnotationContainers.getOrPut(annotationClass) {
+            val containerClass = pluginContext.irFactory.buildClass {
+                kind = ClassKind.ANNOTATION_CLASS
+                name = Name.identifier("Container")
+            }.apply {
+                createImplicitParameterDeclarationWithWrappedDescriptor()
+                parent = annotationClass
+                superTypes = listOf(getAnnotationType(pluginContext))
+            }
+
+            val propertyName = Name.identifier("value")
+            val propertyType = pluginContext.irBuiltIns.arrayClass.typeWith(annotationClass.typeWith())
+
+            containerClass.addConstructor {
+                isPrimary = true
+            }.apply {
+                addValueParameter(propertyName.identifier, propertyType)
+            }
+
+            containerClass.addProperty {
+                name = propertyName
+            }.apply property@{
+                backingField = pluginContext.irFactory.buildField {
+                    name = propertyName
+                    type = propertyType
+                }.apply {
+                    parent = containerClass
+                    correspondingPropertySymbol = this@property.symbol
+                }
+                addDefaultGetter(this, containerClass)
+            }
+
+            val repeatableContainerAnnotation = kotlinAnnotationRepeatableContainer?.constructors?.single()
+
+            containerClass.annotations = annotationClass.annotations
+                .filter {
+                    it.isAnnotationWithEqualFqName(StandardNames.FqNames.retention) ||
+                            it.isAnnotationWithEqualFqName(StandardNames.FqNames.target)
+                }
+                .map { it.deepCopyWithSymbols(containerClass) } +
+                    listOfNotNull(
+                        repeatableContainerAnnotation?.let {
+                            IrConstructorCallImpl.fromSymbolOwner(
+                                UNDEFINED_OFFSET, UNDEFINED_OFFSET, it.returnType, it.symbol, 0
+                            )
+                        }
+                    )
+
+            containerClass
+        }
+
+    // Adapted from AdditionalClassAnnotationLowering.kt
+    private fun generateRepeatableAnnotation(irClass: IrClass): IrConstructorCall? {
+        if (!irClass.hasAnnotation(StandardNames.FqNames.repeatable) ||
+            irClass.hasAnnotation(JvmAnnotationNames.REPEATABLE_ANNOTATION)
+        ) return null
+
+        val repeatableConstructor = javaAnnotationRepeatable?.declarations?.firstIsInstanceOrNull<IrConstructor>() ?: return null
+
+        val containerClass = getOrCreateSyntheticRepeatableAnnotationContainer(irClass)
+        // Whenever a repeatable annotation with a Kotlin-synthesised container is extracted, extract the synthetic container to the same trap file.
+        extractor.extractClassSource(containerClass, extractDeclarations = true, extractStaticInitializer = true, extractPrivateMembers = true, extractFunctionBodies = true)
+
+        val containerReference = IrClassReferenceImpl(
+            UNDEFINED_OFFSET, UNDEFINED_OFFSET, pluginContext.irBuiltIns.kClassClass.typeWith(containerClass.defaultType),
+            containerClass.symbol, containerClass.defaultType
+        )
+        return IrConstructorCallImpl.fromSymbolOwner(
+            UNDEFINED_OFFSET, UNDEFINED_OFFSET, repeatableConstructor.returnType, repeatableConstructor.symbol, 0
+        ).apply {
+            putValueArgument(0, containerReference)
+        }
+    }
+
+    private val javaAnnotationDocumented by lazy { extractor.referenceExternalClass("java.lang.annotation.Documented") }
+
+    // Taken from AdditionalClassAnnotationLowering.kt
+    private fun generateDocumentedAnnotation(irClass: IrClass): IrConstructorCall? {
+        if (!irClass.hasAnnotation(StandardNames.FqNames.mustBeDocumented) ||
+            irClass.hasAnnotation(JvmAnnotationNames.DOCUMENTED_ANNOTATION)
+        ) return null
+
+        val documentedConstructor = javaAnnotationDocumented?.declarations?.firstIsInstanceOrNull<IrConstructor>() ?: return null
+
+        return IrConstructorCallImpl.fromSymbolOwner(
+            UNDEFINED_OFFSET, UNDEFINED_OFFSET, documentedConstructor.returnType, documentedConstructor.symbol, 0
+        )
+    }
+
+    fun generateJavaMetaAnnotations(c: IrClass) =
+        // This is essentially AdditionalClassAnnotationLowering adapted to run outside the backend.
+        listOfNotNull(generateTargetAnnotation(c), generateRetentionAnnotation(c), generateRepeatableAnnotation(c), generateDocumentedAnnotation(c))
+}
+

From 225913c49e15e3a9f2676e5b03cc99f095b0e0b6 Mon Sep 17 00:00:00 2001
From: Chris Smowton <smowton@github.com>
Date: Wed, 16 Nov 2022 11:28:05 +0000
Subject: [PATCH 1238/1420] Replace needless `map` call

---
 java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt b/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt
index f12a36c4310..96053ac238b 100644
--- a/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt
+++ b/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt
@@ -637,7 +637,7 @@ open class KotlinFileExtractor(
                     if (c.kind == ClassKind.ANNOTATION_CLASS) {
                         c.declarations
                             .filterIsInstance<IrProperty>()
-                            .map {
+                            .forEach {
                                 val getter = it.getter
                                 if (getter == null) {
                                     logger.warnElement("Expected an annotation property to have a getter", it)

From 0a788bcbc13e5926d5db59ce556c5a5c1d880fbb Mon Sep 17 00:00:00 2001
From: Chris Smowton <smowton@github.com>
Date: Mon, 21 Nov 2022 17:54:12 +0000
Subject: [PATCH 1239/1420] Don't extract return value type accesses for
 external annotations

This would cause inconsistencies when both the source and external view of the class are in scope, since the type access has a fresh id.
---
 java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt b/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt
index 96053ac238b..9314d2391b6 100644
--- a/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt
+++ b/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt
@@ -642,7 +642,7 @@ open class KotlinFileExtractor(
                                 if (getter == null) {
                                     logger.warnElement("Expected an annotation property to have a getter", it)
                                 } else {
-                                    extractFunction(getter, id, extractBody = false, extractMethodAndParameterTypeAccesses = true, extractAnnotations = true, null, listOf())?.also { functionLabel ->
+                                    extractFunction(getter, id, extractBody = false, extractMethodAndParameterTypeAccesses = extractFunctionBodies, extractAnnotations = true, null, listOf())?.also { functionLabel ->
                                         tw.writeIsAnnotElem(functionLabel.cast())
                                     }
                                 }

From 5b2834c83321297e1a8b5c2b40961be617d018d7 Mon Sep 17 00:00:00 2001
From: Chris Smowton <smowton@github.com>
Date: Mon, 21 Nov 2022 18:52:49 +0000
Subject: [PATCH 1240/1420] Restrict type access extraction to classes
 extracted from source

Type accesses have anonymous IDs, so we mimic the Java extractor and extract them only when seeing a class in a .kt source file.
---
 .../src/main/kotlin/KotlinFileExtractor.kt    |  42 +++--
 .../src/main/kotlin/MetaAnnotationSupport.kt  |   8 +-
 .../PrintAst.expected                         | 171 +++++++++++++-----
 .../annotation-id-consistency/ktUser.kt       |   7 +
 .../kotlin/annotation-id-consistency/test.kt  |  14 +-
 .../kotlin/annotation-id-consistency/test.py  |   2 +-
 6 files changed, 170 insertions(+), 74 deletions(-)
 create mode 100644 java/ql/integration-tests/all-platforms/kotlin/annotation-id-consistency/ktUser.kt

diff --git a/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt b/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt
index 9314d2391b6..153032e5b68 100644
--- a/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt
+++ b/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt
@@ -208,7 +208,7 @@ open class KotlinFileExtractor(
                 is IrField -> {
                     val parentId = useDeclarationParent(getFieldParent(declaration), false)?.cast<DbReftype>()
                     if (parentId != null) {
-                        extractField(declaration, parentId)
+                        extractField(declaration, parentId, extractFunctionBodies)
                     }
                     Unit
                 }
@@ -480,21 +480,22 @@ open class KotlinFileExtractor(
         extractDeclInitializers(c.declarations, false) { Pair(blockId, obinitId) }
     }
 
-    private fun extractAnnotations(annotations: List<IrConstructorCall>, parent: Label<out DbExprparent>) {
+    private fun extractAnnotations(annotations: List<IrConstructorCall>, parent: Label<out DbExprparent>, extractEnumTypeAccesses: Boolean) {
         val groupedAnnotations = metaAnnotationSupport.groupRepeatableAnnotations(annotations)
         for ((idx, constructorCall: IrConstructorCall) in groupedAnnotations.sortedBy { v -> v.type.classFqName?.asString() }.withIndex()) {
-            extractAnnotation(constructorCall, parent, idx)
+            extractAnnotation(constructorCall, parent, idx, extractEnumTypeAccesses)
         }
     }
 
-    private fun extractAnnotations(c: IrAnnotationContainer, parent: Label<out DbExprparent>) {
-        extractAnnotations(c.annotations, parent)
+    private fun extractAnnotations(c: IrAnnotationContainer, parent: Label<out DbExprparent>, extractEnumTypeAccesses: Boolean) {
+        extractAnnotations(c.annotations, parent, extractEnumTypeAccesses)
     }
 
     private fun extractAnnotation(
         constructorCall: IrConstructorCall,
         parent: Label<out DbExprparent>,
         idx: Int,
+        extractEnumTypeAccesses: Boolean,
         contextLabel: String? = null
     ): Label<out DbExpr> {
         // Erase the type here because the JVM lowering erases the annotation type, and so the Java extractor will see it in erased form.
@@ -518,7 +519,7 @@ open class KotlinFileExtractor(
                 logger.warnElement("Expected annotation property to define a getter", prop)
             } else {
                 val getterId = useFunction<DbMethod>(getter)
-                val exprId = extractAnnotationValueExpression(v, id, i, "{${getterId}}", getter.returnType)
+                val exprId = extractAnnotationValueExpression(v, id, i, "{${getterId}}", getter.returnType, extractEnumTypeAccesses)
                 if (exprId != null) {
                     tw.writeAnnotValue(id, getterId, exprId)
                 }
@@ -532,7 +533,8 @@ open class KotlinFileExtractor(
         parent: Label<out DbExprparent>,
         idx: Int,
         contextLabel: String,
-        contextType: IrType?): Label<out DbExpr>? {
+        contextType: IrType?,
+        extractEnumTypeAccesses: Boolean): Label<out DbExpr>? {
 
         fun exprId() = tw.getLabelFor<DbExpr>("@\"annotationExpr;{$parent};$idx\"")
 
@@ -541,7 +543,7 @@ open class KotlinFileExtractor(
                 extractConstant(v, parent, idx, null, null, overrideId = exprId())
             }
             is IrGetEnumValue -> {
-                extractEnumValue(v, parent, idx, null, null, overrideId = exprId())
+                extractEnumValue(v, parent, idx, null, null, extractTypeAccess = extractEnumTypeAccesses, overrideId = exprId())
             }
             is IrClassReference -> {
                 val classRefId = exprId()
@@ -549,7 +551,7 @@ open class KotlinFileExtractor(
                 extractClassReference(v, parent, idx, null, null, overrideId = classRefId, typeAccessOverrideId = typeAccessId, useJavaLangClassType = true)
             }
             is IrConstructorCall -> {
-                extractAnnotation(v, parent, idx, contextLabel)
+                extractAnnotation(v, parent, idx, extractEnumTypeAccesses, contextLabel)
             }
             is IrVararg -> {
                 tw.getLabelFor<DbArrayinit>("@\"annotationarray;{${parent}};$contextLabel\"").also { arrayId ->
@@ -573,7 +575,7 @@ open class KotlinFileExtractor(
                                     null
                                 }
                             }
-                            extractAnnotationValueExpression(argExpr, arrayId, index, "child;$index", null)
+                            extractAnnotationValueExpression(argExpr, arrayId, index, "child;$index", null, extractEnumTypeAccesses)
                         } }
                     }
                 }
@@ -682,11 +684,11 @@ open class KotlinFileExtractor(
 
                 val additionalAnnotations =
                     if (c.kind == ClassKind.ANNOTATION_CLASS && c.origin != IrDeclarationOrigin.IR_EXTERNAL_JAVA_DECLARATION_STUB)
-                        metaAnnotationSupport.generateJavaMetaAnnotations(c)
+                        metaAnnotationSupport.generateJavaMetaAnnotations(c, extractFunctionBodies)
                     else
                         listOf()
 
-                extractAnnotations(c.annotations + additionalAnnotations, id)
+                extractAnnotations(c.annotations + additionalAnnotations, id, extractFunctionBodies)
 
                 if (extractFunctionBodies && !c.isAnonymousObject && !c.isLocal)
                     externalClassExtractor.writeStubTrapFile(c)
@@ -878,7 +880,7 @@ open class KotlinFileExtractor(
                 extractTypeAccessRecursive(substitutedType, location, id, -1)
             }
             val syntheticParameterNames = isUnderscoreParameter(vp) || ((vp.parent as? IrFunction)?.let { hasSynthesizedParameterNames(it) } ?: true)
-            extractAnnotations(vp, id)
+            extractAnnotations(vp, id, extractTypeAccess)
             return extractValueParameter(id, substitutedType, vp.name.asString(), location, parent, idx, useValueParameter(vp, parentSourceDeclaration), syntheticParameterNames, vp.isVararg, vp.isNoinline, vp.isCrossinline)
         }
     }
@@ -1419,7 +1421,7 @@ open class KotlinFileExtractor(
                 linesOfCode?.linesOfCodeInDeclaration(f, id)
 
                 if (extractAnnotations)
-                    extractAnnotations(f, id)
+                    extractAnnotations(f, id, extractMethodAndParameterTypeAccesses)
 
                 return id
             }
@@ -1432,13 +1434,13 @@ open class KotlinFileExtractor(
                 && f.symbol !is IrConstructorSymbol     // not a constructor
     }
 
-    private fun extractField(f: IrField, parentId: Label<out DbReftype>): Label<out DbField> {
+    private fun extractField(f: IrField, parentId: Label<out DbReftype>, extractAnnotationEnumTypeAccesses: Boolean): Label<out DbField> {
         with("field", f) {
            DeclarationStackAdjuster(f).use {
                val fNameSuffix = getExtensionReceiverType(f)?.let { it.classFqName?.asString()?.replace(".", "$$") } ?: ""
                val extractType = if (isAnnotationClassField(f)) kClassToJavaClass(f.type) else f.type
                val id = useField(f)
-               extractAnnotations(f, id)
+               extractAnnotations(f, id, extractAnnotationEnumTypeAccesses)
                return extractField(id, "${f.name.asString()}$fNameSuffix", extractType, parentId, tw.getLocation(f), f.visibility, f, isExternalDeclaration(f), f.isFinal, isDirectlyExposedCompanionObjectField(f))
            }
         }
@@ -1522,7 +1524,7 @@ open class KotlinFileExtractor(
                 if (bf != null && extractBackingField) {
                     val fieldParentId = useDeclarationParent(getFieldParent(bf), false)
                     if (fieldParentId != null) {
-                        val fieldId = extractField(bf, fieldParentId.cast())
+                        val fieldId = extractField(bf, fieldParentId.cast(), extractFunctionBodies)
                         tw.writeKtPropertyBackingFields(id, fieldId)
                         if (p.isDelegated) {
                             tw.writeKtPropertyDelegates(id, fieldId)
@@ -1578,7 +1580,7 @@ open class KotlinFileExtractor(
                     extractDeclaration(it, extractPrivateMembers, extractFunctionBodies, extractAnnotations = true)
                 }
 
-                extractAnnotations(ee, id)
+                extractAnnotations(ee, id, extractFunctionBodies)
             }
         }
     }
@@ -4240,6 +4242,7 @@ open class KotlinFileExtractor(
         idx: Int,
         enclosingCallable: Label<out DbCallable>?,
         enclosingStmt: Label<out DbStmt>?,
+        extractTypeAccess: Boolean = true,
         overrideId: Label<out DbExpr>? = null
     ) =
         exprIdOrFresh<DbVaraccess>(overrideId).also { id ->
@@ -4254,7 +4257,8 @@ open class KotlinFileExtractor(
                 val vId = useEnumEntry(owner)
                 tw.writeVariableBinding(id, vId)
 
-                extractStaticTypeAccessQualifier(owner, id, locId, enclosingCallable, enclosingStmt)
+                if (extractTypeAccess)
+                    extractStaticTypeAccessQualifier(owner, id, locId, enclosingCallable, enclosingStmt)
 
             }
         }
diff --git a/java/kotlin-extractor/src/main/kotlin/MetaAnnotationSupport.kt b/java/kotlin-extractor/src/main/kotlin/MetaAnnotationSupport.kt
index e2713783382..5fdf073813d 100644
--- a/java/kotlin-extractor/src/main/kotlin/MetaAnnotationSupport.kt
+++ b/java/kotlin-extractor/src/main/kotlin/MetaAnnotationSupport.kt
@@ -352,7 +352,7 @@ class MetaAnnotationSupport(private val logger: FileLogger, private val pluginCo
         }
 
     // Adapted from AdditionalClassAnnotationLowering.kt
-    private fun generateRepeatableAnnotation(irClass: IrClass): IrConstructorCall? {
+    private fun generateRepeatableAnnotation(irClass: IrClass, extractAnnotationTypeAccesses: Boolean): IrConstructorCall? {
         if (!irClass.hasAnnotation(StandardNames.FqNames.repeatable) ||
             irClass.hasAnnotation(JvmAnnotationNames.REPEATABLE_ANNOTATION)
         ) return null
@@ -361,7 +361,7 @@ class MetaAnnotationSupport(private val logger: FileLogger, private val pluginCo
 
         val containerClass = getOrCreateSyntheticRepeatableAnnotationContainer(irClass)
         // Whenever a repeatable annotation with a Kotlin-synthesised container is extracted, extract the synthetic container to the same trap file.
-        extractor.extractClassSource(containerClass, extractDeclarations = true, extractStaticInitializer = true, extractPrivateMembers = true, extractFunctionBodies = true)
+        extractor.extractClassSource(containerClass, extractDeclarations = true, extractStaticInitializer = true, extractPrivateMembers = true, extractFunctionBodies = extractAnnotationTypeAccesses)
 
         val containerReference = IrClassReferenceImpl(
             UNDEFINED_OFFSET, UNDEFINED_OFFSET, pluginContext.irBuiltIns.kClassClass.typeWith(containerClass.defaultType),
@@ -389,8 +389,8 @@ class MetaAnnotationSupport(private val logger: FileLogger, private val pluginCo
         )
     }
 
-    fun generateJavaMetaAnnotations(c: IrClass) =
+    fun generateJavaMetaAnnotations(c: IrClass, extractAnnotationTypeAccesses: Boolean) =
         // This is essentially AdditionalClassAnnotationLowering adapted to run outside the backend.
-        listOfNotNull(generateTargetAnnotation(c), generateRetentionAnnotation(c), generateRepeatableAnnotation(c), generateDocumentedAnnotation(c))
+        listOfNotNull(generateTargetAnnotation(c), generateRetentionAnnotation(c), generateRepeatableAnnotation(c, extractAnnotationTypeAccesses), generateDocumentedAnnotation(c))
 }
 
diff --git a/java/ql/integration-tests/all-platforms/kotlin/annotation-id-consistency/PrintAst.expected b/java/ql/integration-tests/all-platforms/kotlin/annotation-id-consistency/PrintAst.expected
index fa380ef7b00..dc889143ce4 100644
--- a/java/ql/integration-tests/all-platforms/kotlin/annotation-id-consistency/PrintAst.expected
+++ b/java/ql/integration-tests/all-platforms/kotlin/annotation-id-consistency/PrintAst.expected
@@ -18,58 +18,74 @@ User.java:
 #    4|         2: [ExprStmt] <Expr>;
 #    4|           0: [ClassInstanceExpr] new Annotated(...)
 #    4|             -3: [TypeAccess] Annotated
+ktUser.kt:
+#    0| [CompilationUnit] ktUser
+#    1|   1: [Class] KtUser
+#    1|     1: [Constructor] KtUser
+#    1|       5: [BlockStmt] { ... }
+#    1|         0: [SuperConstructorInvocationStmt] super(...)
+#    1|         1: [BlockStmt] { ... }
+#    3|     2: [Method] user
+#    3|       3: [TypeAccess] Unit
+#    3|       5: [BlockStmt] { ... }
+#    4|         0: [LocalVariableDeclStmt] var ...;
+#    4|           1: [LocalVariableDeclExpr] a
+#    4|             0: [ClassInstanceExpr] new AnnotatedUsedByKotlin(...)
+#    4|               -3: [TypeAccess] AnnotatedUsedByKotlin
 test.kt:
 #    0| [CompilationUnit] test
-#    3|   1: [Interface] Ann1
+#    4|   1: [Interface] Ann1
 #-----|     -3: (Annotations)
 #    0|       1: [Annotation] Retention
 #    0|         1: [VarAccess] RetentionPolicy.RUNTIME
 #    0|           -1: [TypeAccess] RetentionPolicy
-#    3|     1: [Method] x
-#    3|       3: [TypeAccess] int
-#    3|     2: [Method] y
-#    3|       3: [TypeAccess] Ann2
-#    5|   2: [Interface] Ann2
+#    4|     1: [Method] x
+#    4|       3: [TypeAccess] int
+#    4|     2: [Method] y
+#    4|       3: [TypeAccess] Ann2
+#    4|     3: [Method] z
+#    4|       3: [TypeAccess] DayOfWeek
+#    6|   2: [Interface] Ann2
 #-----|     -3: (Annotations)
 #    0|       1: [Annotation] Retention
 #    0|         1: [VarAccess] RetentionPolicy.RUNTIME
 #    0|           -1: [TypeAccess] RetentionPolicy
-#    5|     1: [Method] z
-#    5|       3: [TypeAccess] String
-#    5|     2: [Method] w
-#    5|       3: [TypeAccess] Class<?>
-#    5|         0: [WildcardTypeAccess] ? ...
-#    5|     3: [Method] v
-#    5|       3: [TypeAccess] int[]
-#    5|     4: [Method] u
-#    5|       3: [TypeAccess] Ann3[]
-#    5|         0: [TypeAccess] Ann3
-#    5|     5: [Method] t
-#    5|       3: [TypeAccess] Class<?>[]
-#    5|         0: [TypeAccess] Class<?>
-#    5|           0: [WildcardTypeAccess] ? ...
-#    7|   3: [Interface] Ann3
+#    6|     1: [Method] z
+#    6|       3: [TypeAccess] String
+#    6|     2: [Method] w
+#    6|       3: [TypeAccess] Class<?>
+#    6|         0: [WildcardTypeAccess] ? ...
+#    6|     3: [Method] v
+#    6|       3: [TypeAccess] int[]
+#    6|     4: [Method] u
+#    6|       3: [TypeAccess] Ann3[]
+#    6|         0: [TypeAccess] Ann3
+#    6|     5: [Method] t
+#    6|       3: [TypeAccess] Class<?>[]
+#    6|         0: [TypeAccess] Class<?>
+#    6|           0: [WildcardTypeAccess] ? ...
+#    8|   3: [Interface] Ann3
 #-----|     -3: (Annotations)
 #    0|       1: [Annotation] Retention
 #    0|         1: [VarAccess] RetentionPolicy.RUNTIME
 #    0|           -1: [TypeAccess] RetentionPolicy
-#    7|     1: [Method] a
-#    7|       3: [TypeAccess] int
-#    9|   4: [GenericType,Interface,ParameterizedType] GenericAnnotation
+#    8|     1: [Method] a
+#    8|       3: [TypeAccess] int
+#   10|   4: [GenericType,Interface,ParameterizedType] GenericAnnotation
 #-----|     -3: (Annotations)
 #    0|       1: [Annotation] Retention
 #    0|         1: [VarAccess] RetentionPolicy.RUNTIME
 #    0|           -1: [TypeAccess] RetentionPolicy
 #-----|     -2: (Generic Parameters)
-#    9|       0: [TypeVariable] T
-#    9|     1: [Method] x
-#    9|       3: [TypeAccess] Class<T>
-#    9|         0: [TypeAccess] T
-#    9|     2: [Method] y
-#    9|       3: [TypeAccess] Class<T>[]
-#    9|         0: [TypeAccess] Class<T>
-#    9|           0: [TypeAccess] T
-#   11|   6: [Interface] VarargAnnotation
+#   10|       0: [TypeVariable] T
+#   10|     1: [Method] x
+#   10|       3: [TypeAccess] Class<T>
+#   10|         0: [TypeAccess] T
+#   10|     2: [Method] y
+#   10|       3: [TypeAccess] Class<T>[]
+#   10|         0: [TypeAccess] Class<T>
+#   10|           0: [TypeAccess] T
+#   12|   6: [Interface] VarargAnnotation
 #-----|     -3: (Annotations)
 #    0|       1: [Annotation] Repeatable
 #    0|         1: [TypeLiteral] Container.class
@@ -77,7 +93,7 @@ test.kt:
 #    0|       2: [Annotation] Retention
 #    0|         1: [VarAccess] RetentionPolicy.RUNTIME
 #    0|           -1: [TypeAccess] RetentionPolicy
-#   11|       3: [Annotation] Repeatable
+#   12|       3: [Annotation] Repeatable
 #    0|     1: [Interface] Container
 #-----|       -3: (Annotations)
 #    0|         1: [Annotation] RepeatableContainer
@@ -87,32 +103,32 @@ test.kt:
 #    0|       1: [Method] value
 #    0|         3: [TypeAccess] VarargAnnotation[]
 #    0|           0: [TypeAccess] VarargAnnotation
-#   12|     2: [Method] x
-#   12|       3: [TypeAccess] int[]
-#   14|   7: [Class] Annotated
+#   13|     2: [Method] x
+#   13|       3: [TypeAccess] int[]
+#   15|   7: [Class] Annotated
 #-----|     -3: (Annotations)
 #    0|       1: [Annotation] Container
 #    0|         1: [ArrayInit] {...}
-#   16|           1: [Annotation] VarargAnnotation
+#   17|           1: [Annotation] VarargAnnotation
 #    0|             1: [ArrayInit] {...}
-#   17|           2: [Annotation] VarargAnnotation
+#   18|           2: [Annotation] VarargAnnotation
 #    0|             1: [ArrayInit] {...}
 #    0|               1: [IntegerLiteral] 1
-#   18|           3: [Annotation] VarargAnnotation
+#   19|           3: [Annotation] VarargAnnotation
 #    0|             1: [ArrayInit] {...}
 #    0|               1: [IntegerLiteral] 1
 #    0|               1: [IntegerLiteral] 2
-#   19|           4: [Annotation] VarargAnnotation
+#   20|           4: [Annotation] VarargAnnotation
 #    0|             1: [ArrayInit] {...}
 #    0|               1: [IntegerLiteral] 1
 #    0|               1: [IntegerLiteral] 2
 #    0|               1: [IntegerLiteral] 3
-#   20|           5: [Annotation] VarargAnnotation
+#   21|           5: [Annotation] VarargAnnotation
 #    0|             1: [ArrayInit] {...}
 #    0|               1: [IntegerLiteral] 1
 #    0|               1: [IntegerLiteral] 2
 #    0|               1: [IntegerLiteral] 3
-#   14|       2: [Annotation] Ann1
+#   15|       2: [Annotation] Ann1
 #    0|         1: [IntegerLiteral] 1
 #    0|         1: [Annotation] Ann2
 #    0|           1: [StringLiteral] "Hello"
@@ -132,11 +148,70 @@ test.kt:
 #    0|               0: [TypeAccess] String
 #    0|             1: [TypeLiteral] int.class
 #    0|               0: [TypeAccess] int
-#   15|       3: [Annotation] GenericAnnotation<>
-#   21|     1: [Constructor] Annotated
-#   14|       5: [BlockStmt] { ... }
-#   14|         0: [SuperConstructorInvocationStmt] super(...)
-#   21|         1: [BlockStmt] { ... }
+#    0|         1: [VarAccess] DayOfWeek.MONDAY
+#    0|           -1: [TypeAccess] DayOfWeek
+#   16|       3: [Annotation] GenericAnnotation<>
+#   22|     1: [Constructor] Annotated
+#   15|       5: [BlockStmt] { ... }
+#   15|         0: [SuperConstructorInvocationStmt] super(...)
+#   22|         1: [BlockStmt] { ... }
+#   24|   8: [Class] AnnotatedUsedByKotlin
+#-----|     -3: (Annotations)
+#    0|       1: [Annotation] Container
+#    0|         1: [ArrayInit] {...}
+#   26|           1: [Annotation] VarargAnnotation
+#    0|             1: [ArrayInit] {...}
+#   27|           2: [Annotation] VarargAnnotation
+#    0|             1: [ArrayInit] {...}
+#    0|               1: [IntegerLiteral] 1
+#   28|           3: [Annotation] VarargAnnotation
+#    0|             1: [ArrayInit] {...}
+#    0|               1: [IntegerLiteral] 1
+#    0|               1: [IntegerLiteral] 2
+#   29|           4: [Annotation] VarargAnnotation
+#    0|             1: [ArrayInit] {...}
+#    0|               1: [IntegerLiteral] 1
+#    0|               1: [IntegerLiteral] 2
+#    0|               1: [IntegerLiteral] 3
+#   30|           5: [Annotation] VarargAnnotation
+#    0|             1: [ArrayInit] {...}
+#    0|               1: [IntegerLiteral] 1
+#    0|               1: [IntegerLiteral] 2
+#    0|               1: [IntegerLiteral] 3
+#   24|       2: [Annotation] Ann1
+#    0|         1: [IntegerLiteral] 1
+#    0|         1: [Annotation] Ann2
+#    0|           1: [StringLiteral] "Hello"
+#    0|           1: [TypeLiteral] String.class
+#    0|             0: [TypeAccess] String
+#    0|           1: [ArrayInit] {...}
+#    0|             1: [IntegerLiteral] 1
+#    0|             1: [IntegerLiteral] 2
+#    0|             1: [IntegerLiteral] 3
+#    0|           1: [ArrayInit] {...}
+#    0|             1: [Annotation] Ann3
+#    0|               1: [IntegerLiteral] 1
+#    0|             1: [Annotation] Ann3
+#    0|               1: [IntegerLiteral] 2
+#    0|           1: [ArrayInit] {...}
+#    0|             1: [TypeLiteral] String.class
+#    0|               0: [TypeAccess] String
+#    0|             1: [TypeLiteral] int.class
+#    0|               0: [TypeAccess] int
+#    0|         1: [VarAccess] DayOfWeek.MONDAY
+#    0|           -1: [TypeAccess] DayOfWeek
+#   25|       3: [Annotation] GenericAnnotation<>
+#   31|     1: [Constructor] AnnotatedUsedByKotlin
+#   24|       5: [BlockStmt] { ... }
+#   24|         0: [SuperConstructorInvocationStmt] super(...)
+#   31|         1: [BlockStmt] { ... }
+#    0| [TypeLiteral] String.class
+#    0|   0: [TypeAccess] String
+#    0| [ArrayInit] {...}
+#    0|   1: [TypeLiteral] String.class
+#    0|     0: [TypeAccess] String
+#    0|   1: [TypeLiteral] String.class
+#    0|     0: [TypeAccess] String
 #    0| [TypeLiteral] String.class
 #    0|   0: [TypeAccess] String
 #    0| [ArrayInit] {...}
diff --git a/java/ql/integration-tests/all-platforms/kotlin/annotation-id-consistency/ktUser.kt b/java/ql/integration-tests/all-platforms/kotlin/annotation-id-consistency/ktUser.kt
new file mode 100644
index 00000000000..c7b2ce4fb56
--- /dev/null
+++ b/java/ql/integration-tests/all-platforms/kotlin/annotation-id-consistency/ktUser.kt
@@ -0,0 +1,7 @@
+public class KtUser {
+
+  fun user() {
+    val a = AnnotatedUsedByKotlin()
+  }
+
+}
diff --git a/java/ql/integration-tests/all-platforms/kotlin/annotation-id-consistency/test.kt b/java/ql/integration-tests/all-platforms/kotlin/annotation-id-consistency/test.kt
index 50b87181a6f..304a9e006a0 100644
--- a/java/ql/integration-tests/all-platforms/kotlin/annotation-id-consistency/test.kt
+++ b/java/ql/integration-tests/all-platforms/kotlin/annotation-id-consistency/test.kt
@@ -1,6 +1,7 @@
 import kotlin.reflect.KClass
+import java.time.DayOfWeek
 
-annotation class Ann1(val x: Int, val y: Ann2) { }
+annotation class Ann1(val x: Int, val y: Ann2, val z: DayOfWeek) { }
 
 annotation class Ann2(val z: String, val w: KClass<*>, val v: IntArray, val u: Array<Ann3>, val t: Array<KClass<*>>) { }
 
@@ -11,7 +12,7 @@ annotation class GenericAnnotation<T : Any>(val x: KClass<T>, val y: Array<KClas
 @Repeatable
 annotation class VarargAnnotation(vararg val x: Int) { }
 
-@Ann1(1, Ann2("Hello", String::class, intArrayOf(1, 2, 3), arrayOf(Ann3(1), Ann3(2)), arrayOf(String::class, Int::class)))
+@Ann1(1, Ann2("Hello", String::class, intArrayOf(1, 2, 3), arrayOf(Ann3(1), Ann3(2)), arrayOf(String::class, Int::class)), DayOfWeek.MONDAY)
 @GenericAnnotation<String>(String::class, arrayOf(String::class, String::class))
 @VarargAnnotation
 @VarargAnnotation(1)
@@ -20,3 +21,12 @@ annotation class VarargAnnotation(vararg val x: Int) { }
 @VarargAnnotation(*intArrayOf(1, 2, 3))
 class Annotated { }
 
+@Ann1(1, Ann2("Hello", String::class, intArrayOf(1, 2, 3), arrayOf(Ann3(1), Ann3(2)), arrayOf(String::class, Int::class)), DayOfWeek.MONDAY)
+@GenericAnnotation<String>(String::class, arrayOf(String::class, String::class))
+@VarargAnnotation
+@VarargAnnotation(1)
+@VarargAnnotation(1, 2)
+@VarargAnnotation(*[1, 2, 3])
+@VarargAnnotation(*intArrayOf(1, 2, 3))
+class AnnotatedUsedByKotlin { }
+
diff --git a/java/ql/integration-tests/all-platforms/kotlin/annotation-id-consistency/test.py b/java/ql/integration-tests/all-platforms/kotlin/annotation-id-consistency/test.py
index 8ceac659f1d..49584531332 100644
--- a/java/ql/integration-tests/all-platforms/kotlin/annotation-id-consistency/test.py
+++ b/java/ql/integration-tests/all-platforms/kotlin/annotation-id-consistency/test.py
@@ -2,4 +2,4 @@ from create_database_utils import *
 
 os.mkdir('out')
 os.mkdir('out2')
-run_codeql_database_create(["kotlinc test.kt -d out", "javac User.java -cp out -d out2"], lang="java")
+run_codeql_database_create(["kotlinc test.kt -d out", "javac User.java -cp out -d out2", "kotlinc ktUser.kt -cp out -d out2"], lang="java")

From 658c7a20cfb88572a4f2dde29ddbe6fd0f3d17b1 Mon Sep 17 00:00:00 2001
From: Chris Smowton <smowton@github.com>
Date: Tue, 22 Nov 2022 15:11:36 +0000
Subject: [PATCH 1241/1420] Don't extract error expressions when a default
 value is missing

This is a shortcoming of the Kotlin extractor, but at least this way we don't introduce an inconsistency if the annotation is later seen from .kt source or by the Java extractor
---
 .../src/main/kotlin/KotlinFileExtractor.kt    | 14 +---
 .../PrintAst.expected                         | 78 +++++++++++++------
 .../kotlin/annotation-id-consistency/test.kt  |  4 +
 3 files changed, 61 insertions(+), 35 deletions(-)

diff --git a/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt b/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt
index 153032e5b68..bd58a446f9d 100644
--- a/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt
+++ b/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt
@@ -582,17 +582,9 @@ open class KotlinFileExtractor(
             }
             // is IrErrorExpression
             // null
-            else -> {
-                val eId = tw.getFreshIdLabel<DbErrorexpr>()
-                val type = useType(v?.type ?: pluginContext.irBuiltIns.unitType)
-                tw.writeExprs_errorexpr(eId, type.javaResult.id, parent, idx)
-                tw.writeExprsKotlinType(eId, type.kotlinResult.id)
-
-                if (v != null) {
-                    tw.writeHasLocation(eId, tw.getLocation(v))
-                }
-                eId
-            }
+            // Note: emitting an ErrorExpr here would induce an inconsistency if this annotation is later seen from source or by the Java extractor,
+            // in both of which cases the real value will get extracted.
+            else -> null
         }
     }
 
diff --git a/java/ql/integration-tests/all-platforms/kotlin/annotation-id-consistency/PrintAst.expected b/java/ql/integration-tests/all-platforms/kotlin/annotation-id-consistency/PrintAst.expected
index dc889143ce4..646291dc565 100644
--- a/java/ql/integration-tests/all-platforms/kotlin/annotation-id-consistency/PrintAst.expected
+++ b/java/ql/integration-tests/all-platforms/kotlin/annotation-id-consistency/PrintAst.expected
@@ -105,30 +105,44 @@ test.kt:
 #    0|           0: [TypeAccess] VarargAnnotation
 #   13|     2: [Method] x
 #   13|       3: [TypeAccess] int[]
-#   15|   7: [Class] Annotated
+#   15|   7: [Interface] AnnWithDefaults
+#-----|     -3: (Annotations)
+#    0|       1: [Annotation] Retention
+#    0|         1: [VarAccess] RetentionPolicy.RUNTIME
+#    0|           -1: [TypeAccess] RetentionPolicy
+#   15|     1: [Method] x
+#   15|       3: [TypeAccess] int
+#   15|     2: [Method] y
+#   15|       3: [TypeAccess] String
+#   15|     3: [Method] z
+#   15|       3: [TypeAccess] DayOfWeek
+#   15|     4: [Method] w
+#   15|       3: [TypeAccess] Ann3[]
+#   15|         0: [TypeAccess] Ann3
+#   17|   8: [Class] Annotated
 #-----|     -3: (Annotations)
 #    0|       1: [Annotation] Container
 #    0|         1: [ArrayInit] {...}
-#   17|           1: [Annotation] VarargAnnotation
+#   19|           1: [Annotation] VarargAnnotation
 #    0|             1: [ArrayInit] {...}
-#   18|           2: [Annotation] VarargAnnotation
+#   20|           2: [Annotation] VarargAnnotation
 #    0|             1: [ArrayInit] {...}
 #    0|               1: [IntegerLiteral] 1
-#   19|           3: [Annotation] VarargAnnotation
+#   21|           3: [Annotation] VarargAnnotation
 #    0|             1: [ArrayInit] {...}
 #    0|               1: [IntegerLiteral] 1
 #    0|               1: [IntegerLiteral] 2
-#   20|           4: [Annotation] VarargAnnotation
+#   22|           4: [Annotation] VarargAnnotation
 #    0|             1: [ArrayInit] {...}
 #    0|               1: [IntegerLiteral] 1
 #    0|               1: [IntegerLiteral] 2
 #    0|               1: [IntegerLiteral] 3
-#   21|           5: [Annotation] VarargAnnotation
+#   23|           5: [Annotation] VarargAnnotation
 #    0|             1: [ArrayInit] {...}
 #    0|               1: [IntegerLiteral] 1
 #    0|               1: [IntegerLiteral] 2
 #    0|               1: [IntegerLiteral] 3
-#   15|       2: [Annotation] Ann1
+#   17|       2: [Annotation] Ann1
 #    0|         1: [IntegerLiteral] 1
 #    0|         1: [Annotation] Ann2
 #    0|           1: [StringLiteral] "Hello"
@@ -150,35 +164,43 @@ test.kt:
 #    0|               0: [TypeAccess] int
 #    0|         1: [VarAccess] DayOfWeek.MONDAY
 #    0|           -1: [TypeAccess] DayOfWeek
-#   16|       3: [Annotation] GenericAnnotation<>
-#   22|     1: [Constructor] Annotated
-#   15|       5: [BlockStmt] { ... }
-#   15|         0: [SuperConstructorInvocationStmt] super(...)
-#   22|         1: [BlockStmt] { ... }
-#   24|   8: [Class] AnnotatedUsedByKotlin
+#   18|       3: [Annotation] GenericAnnotation<>
+#   24|       4: [Annotation] AnnWithDefaults
+#    0|         1: [IntegerLiteral] 1
+#    0|         1: [StringLiteral] "hello"
+#    0|         1: [VarAccess] DayOfWeek.TUESDAY
+#    0|           -1: [TypeAccess] DayOfWeek
+#    0|         1: [ArrayInit] {...}
+#    0|           1: [Annotation] Ann3
+#    0|             1: [IntegerLiteral] 1
+#   25|     1: [Constructor] Annotated
+#   17|       5: [BlockStmt] { ... }
+#   17|         0: [SuperConstructorInvocationStmt] super(...)
+#   25|         1: [BlockStmt] { ... }
+#   27|   9: [Class] AnnotatedUsedByKotlin
 #-----|     -3: (Annotations)
 #    0|       1: [Annotation] Container
 #    0|         1: [ArrayInit] {...}
-#   26|           1: [Annotation] VarargAnnotation
+#   29|           1: [Annotation] VarargAnnotation
 #    0|             1: [ArrayInit] {...}
-#   27|           2: [Annotation] VarargAnnotation
+#   30|           2: [Annotation] VarargAnnotation
 #    0|             1: [ArrayInit] {...}
 #    0|               1: [IntegerLiteral] 1
-#   28|           3: [Annotation] VarargAnnotation
+#   31|           3: [Annotation] VarargAnnotation
 #    0|             1: [ArrayInit] {...}
 #    0|               1: [IntegerLiteral] 1
 #    0|               1: [IntegerLiteral] 2
-#   29|           4: [Annotation] VarargAnnotation
+#   32|           4: [Annotation] VarargAnnotation
 #    0|             1: [ArrayInit] {...}
 #    0|               1: [IntegerLiteral] 1
 #    0|               1: [IntegerLiteral] 2
 #    0|               1: [IntegerLiteral] 3
-#   30|           5: [Annotation] VarargAnnotation
+#   33|           5: [Annotation] VarargAnnotation
 #    0|             1: [ArrayInit] {...}
 #    0|               1: [IntegerLiteral] 1
 #    0|               1: [IntegerLiteral] 2
 #    0|               1: [IntegerLiteral] 3
-#   24|       2: [Annotation] Ann1
+#   27|       2: [Annotation] Ann1
 #    0|         1: [IntegerLiteral] 1
 #    0|         1: [Annotation] Ann2
 #    0|           1: [StringLiteral] "Hello"
@@ -200,11 +222,19 @@ test.kt:
 #    0|               0: [TypeAccess] int
 #    0|         1: [VarAccess] DayOfWeek.MONDAY
 #    0|           -1: [TypeAccess] DayOfWeek
-#   25|       3: [Annotation] GenericAnnotation<>
-#   31|     1: [Constructor] AnnotatedUsedByKotlin
-#   24|       5: [BlockStmt] { ... }
-#   24|         0: [SuperConstructorInvocationStmt] super(...)
-#   31|         1: [BlockStmt] { ... }
+#   28|       3: [Annotation] GenericAnnotation<>
+#   34|       4: [Annotation] AnnWithDefaults
+#    0|         1: [IntegerLiteral] 1
+#    0|         1: [StringLiteral] "hello"
+#    0|         1: [VarAccess] DayOfWeek.TUESDAY
+#    0|           -1: [TypeAccess] DayOfWeek
+#    0|         1: [ArrayInit] {...}
+#    0|           1: [Annotation] Ann3
+#    0|             1: [IntegerLiteral] 1
+#   35|     1: [Constructor] AnnotatedUsedByKotlin
+#   27|       5: [BlockStmt] { ... }
+#   27|         0: [SuperConstructorInvocationStmt] super(...)
+#   35|         1: [BlockStmt] { ... }
 #    0| [TypeLiteral] String.class
 #    0|   0: [TypeAccess] String
 #    0| [ArrayInit] {...}
diff --git a/java/ql/integration-tests/all-platforms/kotlin/annotation-id-consistency/test.kt b/java/ql/integration-tests/all-platforms/kotlin/annotation-id-consistency/test.kt
index 304a9e006a0..de53d808df6 100644
--- a/java/ql/integration-tests/all-platforms/kotlin/annotation-id-consistency/test.kt
+++ b/java/ql/integration-tests/all-platforms/kotlin/annotation-id-consistency/test.kt
@@ -12,6 +12,8 @@ annotation class GenericAnnotation<T : Any>(val x: KClass<T>, val y: Array<KClas
 @Repeatable
 annotation class VarargAnnotation(vararg val x: Int) { }
 
+annotation class AnnWithDefaults(val x: Int = 1, val y: String = "hello", val z: DayOfWeek = DayOfWeek.TUESDAY, val w: Array<Ann3> = [Ann3(1)]) { }
+
 @Ann1(1, Ann2("Hello", String::class, intArrayOf(1, 2, 3), arrayOf(Ann3(1), Ann3(2)), arrayOf(String::class, Int::class)), DayOfWeek.MONDAY)
 @GenericAnnotation<String>(String::class, arrayOf(String::class, String::class))
 @VarargAnnotation
@@ -19,6 +21,7 @@ annotation class VarargAnnotation(vararg val x: Int) { }
 @VarargAnnotation(1, 2)
 @VarargAnnotation(*[1, 2, 3])
 @VarargAnnotation(*intArrayOf(1, 2, 3))
+@AnnWithDefaults
 class Annotated { }
 
 @Ann1(1, Ann2("Hello", String::class, intArrayOf(1, 2, 3), arrayOf(Ann3(1), Ann3(2)), arrayOf(String::class, Int::class)), DayOfWeek.MONDAY)
@@ -28,5 +31,6 @@ class Annotated { }
 @VarargAnnotation(1, 2)
 @VarargAnnotation(*[1, 2, 3])
 @VarargAnnotation(*intArrayOf(1, 2, 3))
+@AnnWithDefaults
 class AnnotatedUsedByKotlin { }
 

From 8bbb34a498f7c93c7397cf58933f6815738ae35e Mon Sep 17 00:00:00 2001
From: Chris Smowton <smowton@github.com>
Date: Tue, 22 Nov 2022 16:19:41 +0000
Subject: [PATCH 1242/1420] Convert kotlin.Deprecated back into a no-arg
 java.lang.Deprecated if applicable

This at least maintains consistency with the Java extractor, although we lose its arguments if any were supplied Java-side.
---
 .../src/main/kotlin/KotlinFileExtractor.kt    | 19 ++++++-
 .../PrintAst.expected                         | 50 +++++++++++++++++++
 .../annotation-id-consistency/User.java       |  2 +-
 .../deprecatedAnnotationTypes.expected        |  5 ++
 .../deprecatedAnnotationTypes.ql              | 11 ++++
 .../annotation-id-consistency/ktUser.kt       |  4 ++
 .../kotlin/annotation-id-consistency/test.kt  | 11 ++++
 7 files changed, 99 insertions(+), 3 deletions(-)
 create mode 100644 java/ql/integration-tests/all-platforms/kotlin/annotation-id-consistency/deprecatedAnnotationTypes.expected
 create mode 100644 java/ql/integration-tests/all-platforms/kotlin/annotation-id-consistency/deprecatedAnnotationTypes.ql

diff --git a/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt b/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt
index bd58a446f9d..452aa5b0c50 100644
--- a/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt
+++ b/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt
@@ -498,8 +498,19 @@ open class KotlinFileExtractor(
         extractEnumTypeAccesses: Boolean,
         contextLabel: String? = null
     ): Label<out DbExpr> {
+        val isConvertedJavaDeprecatedAnnotation = (constructorCall.type as? IrSimpleType)?.classFqName?.asString() == "kotlin.Deprecated" &&
+                constructorCall.source is JavaSourceElement
+
+        val extractType =
+            (
+                if (isConvertedJavaDeprecatedAnnotation)
+                    pluginContext.referenceClass(FqName("java.lang.Deprecated"))?.defaultType
+                else
+                    null
+            ) ?: erase(constructorCall.type)
+
         // Erase the type here because the JVM lowering erases the annotation type, and so the Java extractor will see it in erased form.
-        val t = useType(erase(constructorCall.type))
+        val t = useType(extractType)
         val annotationContextLabel = contextLabel ?: "{${t.javaResult.id}}"
         val id = tw.getLabelFor<DbDeclannotation>("@\"annotation;{$parent};$annotationContextLabel\"")
         tw.writeExprs_declannotation(id, t.javaResult.id, parent, idx)
@@ -508,7 +519,11 @@ open class KotlinFileExtractor(
         val locId = tw.getLocation(constructorCall)
         tw.writeHasLocation(id, locId)
 
-        for (i in 0 until constructorCall.valueArgumentsCount) {
+        // If this is `java.lang.Deprecated`, extract an annotation without parameters -- whatever the original source
+        // may have supplied has been lost.
+        val paramCount = if (isConvertedJavaDeprecatedAnnotation) 0 else constructorCall.valueArgumentsCount
+
+        for (i in 0 until paramCount) {
             val param = constructorCall.symbol.owner.valueParameters[i]
             val prop = constructorCall.symbol.owner.parentAsClass.declarations
                 .filterIsInstance<IrProperty>()
diff --git a/java/ql/integration-tests/all-platforms/kotlin/annotation-id-consistency/PrintAst.expected b/java/ql/integration-tests/all-platforms/kotlin/annotation-id-consistency/PrintAst.expected
index 646291dc565..89fde9ad673 100644
--- a/java/ql/integration-tests/all-platforms/kotlin/annotation-id-consistency/PrintAst.expected
+++ b/java/ql/integration-tests/all-platforms/kotlin/annotation-id-consistency/PrintAst.expected
@@ -18,6 +18,12 @@ User.java:
 #    4|         2: [ExprStmt] <Expr>;
 #    4|           0: [ClassInstanceExpr] new Annotated(...)
 #    4|             -3: [TypeAccess] Annotated
+#    4|         3: [ExprStmt] <Expr>;
+#    4|           0: [ClassInstanceExpr] new HasJavaDeprecatedAnnotationUsedByJava(...)
+#    4|             -3: [TypeAccess] HasJavaDeprecatedAnnotationUsedByJava
+#    4|         4: [ExprStmt] <Expr>;
+#    4|           0: [ClassInstanceExpr] new HasKotlinDeprecatedAnnotationUsedByJava(...)
+#    4|             -3: [TypeAccess] HasKotlinDeprecatedAnnotationUsedByJava
 ktUser.kt:
 #    0| [CompilationUnit] ktUser
 #    1|   1: [Class] KtUser
@@ -32,6 +38,20 @@ ktUser.kt:
 #    4|           1: [LocalVariableDeclExpr] a
 #    4|             0: [ClassInstanceExpr] new AnnotatedUsedByKotlin(...)
 #    4|               -3: [TypeAccess] AnnotatedUsedByKotlin
+#    5|         1: [LocalVariableDeclStmt] var ...;
+#    5|           1: [LocalVariableDeclExpr] b
+#    5|             0: [ClassInstanceExpr] new HasJavaDeprecatedAnnotationUsedByKotlin(...)
+#    5|               -3: [TypeAccess] HasJavaDeprecatedAnnotationUsedByKotlin
+#    6|         2: [LocalVariableDeclStmt] var ...;
+#    6|           1: [LocalVariableDeclExpr] c
+#    6|             0: [ClassInstanceExpr] new HasKotlinDeprecatedAnnotationUsedByKotlin(...)
+#    6|               -3: [TypeAccess] HasKotlinDeprecatedAnnotationUsedByKotlin
+#    8|         3: [ExprStmt] <Expr>;
+#    8|           0: [ImplicitCoercionToUnitExpr] <implicit coercion to unit>
+#    8|             0: [TypeAccess] Unit
+#    8|             1: [MethodAccess] isJavaLetter(...)
+#    8|               -1: [TypeAccess] Character
+#    8|               0: [CharacterLiteral] a
 test.kt:
 #    0| [CompilationUnit] test
 #    4|   1: [Interface] Ann1
@@ -235,6 +255,36 @@ test.kt:
 #   27|       5: [BlockStmt] { ... }
 #   27|         0: [SuperConstructorInvocationStmt] super(...)
 #   35|         1: [BlockStmt] { ... }
+#   37|   10: [Class] HasJavaDeprecatedAnnotationUsedByJava
+#-----|     -3: (Annotations)
+#   37|       1: [Annotation] Deprecated
+#   38|     1: [Constructor] HasJavaDeprecatedAnnotationUsedByJava
+#   37|       5: [BlockStmt] { ... }
+#   37|         0: [SuperConstructorInvocationStmt] super(...)
+#   38|         1: [BlockStmt] { ... }
+#   40|   11: [Class] HasKotlinDeprecatedAnnotationUsedByJava
+#-----|     -3: (Annotations)
+#   40|       1: [Annotation] Deprecated
+#    0|         1: [StringLiteral] "Kotlin deprecation message 1"
+#   41|     1: [Constructor] HasKotlinDeprecatedAnnotationUsedByJava
+#   40|       5: [BlockStmt] { ... }
+#   40|         0: [SuperConstructorInvocationStmt] super(...)
+#   41|         1: [BlockStmt] { ... }
+#   43|   12: [Class] HasJavaDeprecatedAnnotationUsedByKotlin
+#-----|     -3: (Annotations)
+#   43|       1: [Annotation] Deprecated
+#   44|     1: [Constructor] HasJavaDeprecatedAnnotationUsedByKotlin
+#   43|       5: [BlockStmt] { ... }
+#   43|         0: [SuperConstructorInvocationStmt] super(...)
+#   44|         1: [BlockStmt] { ... }
+#   46|   13: [Class] HasKotlinDeprecatedAnnotationUsedByKotlin
+#-----|     -3: (Annotations)
+#   46|       1: [Annotation] Deprecated
+#    0|         1: [StringLiteral] "Kotlin deprecation message 2"
+#   47|     1: [Constructor] HasKotlinDeprecatedAnnotationUsedByKotlin
+#   46|       5: [BlockStmt] { ... }
+#   46|         0: [SuperConstructorInvocationStmt] super(...)
+#   47|         1: [BlockStmt] { ... }
 #    0| [TypeLiteral] String.class
 #    0|   0: [TypeAccess] String
 #    0| [ArrayInit] {...}
diff --git a/java/ql/integration-tests/all-platforms/kotlin/annotation-id-consistency/User.java b/java/ql/integration-tests/all-platforms/kotlin/annotation-id-consistency/User.java
index 7061beedb93..004e770ba96 100644
--- a/java/ql/integration-tests/all-platforms/kotlin/annotation-id-consistency/User.java
+++ b/java/ql/integration-tests/all-platforms/kotlin/annotation-id-consistency/User.java
@@ -1,7 +1,7 @@
 public class User {
 
   public static void user(Ann1 a1, Ann2 a2) {
-    a1.x(); a2.z(); new Annotated();
+    a1.x(); a2.z(); new Annotated(); new HasJavaDeprecatedAnnotationUsedByJava(); new HasKotlinDeprecatedAnnotationUsedByJava();
   }
 
 }
diff --git a/java/ql/integration-tests/all-platforms/kotlin/annotation-id-consistency/deprecatedAnnotationTypes.expected b/java/ql/integration-tests/all-platforms/kotlin/annotation-id-consistency/deprecatedAnnotationTypes.expected
new file mode 100644
index 00000000000..76685549259
--- /dev/null
+++ b/java/ql/integration-tests/all-platforms/kotlin/annotation-id-consistency/deprecatedAnnotationTypes.expected
@@ -0,0 +1,5 @@
+| HasJavaDeprecatedAnnotationUsedByJava | java.lang.Deprecated |
+| HasJavaDeprecatedAnnotationUsedByKotlin | java.lang.Deprecated |
+| HasKotlinDeprecatedAnnotationUsedByJava | kotlin.Deprecated |
+| HasKotlinDeprecatedAnnotationUsedByKotlin | kotlin.Deprecated |
+| isJavaLetter | java.lang.Deprecated |
diff --git a/java/ql/integration-tests/all-platforms/kotlin/annotation-id-consistency/deprecatedAnnotationTypes.ql b/java/ql/integration-tests/all-platforms/kotlin/annotation-id-consistency/deprecatedAnnotationTypes.ql
new file mode 100644
index 00000000000..d8face48b56
--- /dev/null
+++ b/java/ql/integration-tests/all-platforms/kotlin/annotation-id-consistency/deprecatedAnnotationTypes.ql
@@ -0,0 +1,11 @@
+import java
+
+from Annotatable a, Annotation ann
+where
+  (
+    a.(Method).hasQualifiedName("java.lang", "Character", "isJavaLetter") or
+    a.(ClassOrInterface).fromSource()
+  ) and
+  ann = a.getAnAnnotation() and
+  ann.getType().getName() = "Deprecated"
+select a.toString(), a.getAnAnnotation().getType().getQualifiedName()
diff --git a/java/ql/integration-tests/all-platforms/kotlin/annotation-id-consistency/ktUser.kt b/java/ql/integration-tests/all-platforms/kotlin/annotation-id-consistency/ktUser.kt
index c7b2ce4fb56..cb593ce11f1 100644
--- a/java/ql/integration-tests/all-platforms/kotlin/annotation-id-consistency/ktUser.kt
+++ b/java/ql/integration-tests/all-platforms/kotlin/annotation-id-consistency/ktUser.kt
@@ -2,6 +2,10 @@ public class KtUser {
 
   fun user() {
     val a = AnnotatedUsedByKotlin()
+    val b = HasJavaDeprecatedAnnotationUsedByKotlin()
+    val c = HasKotlinDeprecatedAnnotationUsedByKotlin()
+    // Use a Java-defined function carrying a java.lang.Deprecated annotation:
+    java.lang.Character.isJavaLetter('a')
   }
 
 }
diff --git a/java/ql/integration-tests/all-platforms/kotlin/annotation-id-consistency/test.kt b/java/ql/integration-tests/all-platforms/kotlin/annotation-id-consistency/test.kt
index de53d808df6..44746342ae6 100644
--- a/java/ql/integration-tests/all-platforms/kotlin/annotation-id-consistency/test.kt
+++ b/java/ql/integration-tests/all-platforms/kotlin/annotation-id-consistency/test.kt
@@ -34,3 +34,14 @@ class Annotated { }
 @AnnWithDefaults
 class AnnotatedUsedByKotlin { }
 
+@java.lang.Deprecated
+class HasJavaDeprecatedAnnotationUsedByJava
+
+@kotlin.Deprecated("Kotlin deprecation message 1")
+class HasKotlinDeprecatedAnnotationUsedByJava
+
+@java.lang.Deprecated
+class HasJavaDeprecatedAnnotationUsedByKotlin
+
+@kotlin.Deprecated("Kotlin deprecation message 2")
+class HasKotlinDeprecatedAnnotationUsedByKotlin

From 70ebb41d67541d109783d89441125a5e2352a97b Mon Sep 17 00:00:00 2001
From: Chris Smowton <smowton@github.com>
Date: Thu, 24 Nov 2022 18:05:33 +0000
Subject: [PATCH 1243/1420] Restore nullability annotations

This is imperfect since arguments to those annotations will be missing, but at least the common case of a plain `@NotNull` or `@Nullable` will be right, and the `@NotNull`s introduced by the Kotlin compiler will be present as expected.
---
 .../src/main/kotlin/KotlinFileExtractor.kt    | 47 +++++++++++++++++--
 .../AnnotatedMethods.java                     | 10 ++++
 .../nullability-annotations/JavaUser.java     |  7 +++
 .../kotlin/nullability-annotations/ktUser.kt  |  7 +++
 .../org/jetbrains/annotations/NotNull.java    |  6 +++
 .../org/jetbrains/annotations/Nullable.java   |  5 ++
 .../nullability-annotations/test.expected     | 12 +++++
 .../kotlin/nullability-annotations/test.py    |  6 +++
 .../kotlin/nullability-annotations/test.ql    | 11 +++++
 .../nullability-annotations/zpkg/A.java       |  3 ++
 10 files changed, 111 insertions(+), 3 deletions(-)
 create mode 100644 java/ql/integration-tests/all-platforms/kotlin/nullability-annotations/AnnotatedMethods.java
 create mode 100644 java/ql/integration-tests/all-platforms/kotlin/nullability-annotations/JavaUser.java
 create mode 100644 java/ql/integration-tests/all-platforms/kotlin/nullability-annotations/ktUser.kt
 create mode 100644 java/ql/integration-tests/all-platforms/kotlin/nullability-annotations/org/jetbrains/annotations/NotNull.java
 create mode 100644 java/ql/integration-tests/all-platforms/kotlin/nullability-annotations/org/jetbrains/annotations/Nullable.java
 create mode 100644 java/ql/integration-tests/all-platforms/kotlin/nullability-annotations/test.expected
 create mode 100644 java/ql/integration-tests/all-platforms/kotlin/nullability-annotations/test.py
 create mode 100644 java/ql/integration-tests/all-platforms/kotlin/nullability-annotations/test.ql
 create mode 100644 java/ql/integration-tests/all-platforms/kotlin/nullability-annotations/zpkg/A.java

diff --git a/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt b/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt
index 452aa5b0c50..233cc588c95 100644
--- a/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt
+++ b/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt
@@ -14,6 +14,7 @@ import org.jetbrains.kotlin.descriptors.java.JavaVisibilities
 import org.jetbrains.kotlin.ir.IrElement
 import org.jetbrains.kotlin.ir.IrStatement
 import org.jetbrains.kotlin.ir.ObsoleteDescriptorBasedAPI
+import org.jetbrains.kotlin.ir.UNDEFINED_OFFSET
 import org.jetbrains.kotlin.ir.backend.js.utils.realOverrideTarget
 import org.jetbrains.kotlin.ir.builders.declarations.*
 import org.jetbrains.kotlin.ir.declarations.*
@@ -44,8 +45,13 @@ import org.jetbrains.kotlin.ir.util.parentClassOrNull
 import org.jetbrains.kotlin.ir.util.primaryConstructor
 import org.jetbrains.kotlin.ir.util.render
 import org.jetbrains.kotlin.ir.util.target
+import org.jetbrains.kotlin.load.java.JvmAnnotationNames
+import org.jetbrains.kotlin.load.java.NOT_NULL_ANNOTATIONS
+import org.jetbrains.kotlin.load.java.NULLABLE_ANNOTATIONS
 import org.jetbrains.kotlin.load.java.sources.JavaSourceElement
+import org.jetbrains.kotlin.load.java.structure.JavaAnnotation
 import org.jetbrains.kotlin.load.java.structure.JavaClass
+import org.jetbrains.kotlin.load.java.structure.JavaConstructor
 import org.jetbrains.kotlin.load.java.structure.JavaMethod
 import org.jetbrains.kotlin.load.java.structure.JavaTypeParameter
 import org.jetbrains.kotlin.load.java.structure.JavaTypeParameterListOwner
@@ -53,6 +59,7 @@ import org.jetbrains.kotlin.load.java.structure.impl.classFiles.BinaryJavaClass
 import org.jetbrains.kotlin.name.FqName
 import org.jetbrains.kotlin.types.Variance
 import org.jetbrains.kotlin.util.OperatorNameConventions
+import org.jetbrains.kotlin.utils.addToStdlib.firstIsInstanceOrNull
 import java.io.Closeable
 import java.util.*
 import kotlin.collections.ArrayList
@@ -887,7 +894,13 @@ open class KotlinFileExtractor(
                 extractTypeAccessRecursive(substitutedType, location, id, -1)
             }
             val syntheticParameterNames = isUnderscoreParameter(vp) || ((vp.parent as? IrFunction)?.let { hasSynthesizedParameterNames(it) } ?: true)
-            extractAnnotations(vp, id, extractTypeAccess)
+            val javaParameter = when(val callable = (vp.parent as? IrFunction)?.let { getJavaCallable(it) }) {
+                is JavaConstructor -> callable.valueParameters.getOrNull(idx)
+                is JavaMethod -> callable.valueParameters.getOrNull(idx)
+                else -> null
+            }
+            val extraAnnotations = listOfNotNull(getNullabilityAnnotation(vp.type, vp.origin, vp.annotations, javaParameter?.annotations))
+            extractAnnotations(vp.annotations + extraAnnotations, id, extractTypeAccess)
             return extractValueParameter(id, substitutedType, vp.name.asString(), location, parent, idx, useValueParameter(vp, parentSourceDeclaration), syntheticParameterNames, vp.isVararg, vp.isNoinline, vp.isCrossinline)
         }
     }
@@ -1337,6 +1350,32 @@ open class KotlinFileExtractor(
                 logger.warn("Needed a signature for a type that doesn't have one")
         }
 
+    private fun getNullabilityAnnotationName(t: IrType, declOrigin: IrDeclarationOrigin, existingAnnotations: List<IrConstructorCall>, javaAnnotations: Collection<JavaAnnotation>?): FqName? {
+        if (t !is IrSimpleType)
+            return null
+
+        return if (declOrigin == IrDeclarationOrigin.IR_EXTERNAL_JAVA_DECLARATION_STUB) {
+            // Java declaration: restore a NotNull or Nullable annotation if the original Java member had one but the Kotlin compiler removed it.
+            javaAnnotations?.mapNotNull { it.classId?.asSingleFqName() }
+            ?.singleOrNull { NOT_NULL_ANNOTATIONS.contains(it) || NULLABLE_ANNOTATIONS.contains(it) }
+            ?.takeUnless { existingAnnotations.any { existing -> existing.type.classFqName == it } }
+        } else {
+            // Kotlin declaration: add a NotNull annotation to a non-nullable non-primitive type.
+            JvmAnnotationNames.JETBRAINS_NOT_NULL_ANNOTATION.takeUnless { t.isNullable() || primitiveTypeMapping.getPrimitiveInfo(t) != null }
+        }
+    }
+
+    private fun getNullabilityAnnotation(t: IrType, declOrigin: IrDeclarationOrigin, existingAnnotations: List<IrConstructorCall>, javaAnnotations: Collection<JavaAnnotation>?) =
+        getNullabilityAnnotationName(t, declOrigin, existingAnnotations, javaAnnotations)?.let {
+            pluginContext.referenceClass(it)?.let { annotationClass ->
+                annotationClass.owner.declarations.firstIsInstanceOrNull<IrConstructor>()?.let { annotationConstructor ->
+                    IrConstructorCallImpl.fromSymbolOwner(
+                        UNDEFINED_OFFSET, UNDEFINED_OFFSET, annotationConstructor.returnType, annotationConstructor.symbol, 0
+                    )
+                }
+            }
+        }
+
     private fun forceExtractFunction(f: IrFunction, parentId: Label<out DbReftype>, extractBody: Boolean, extractMethodAndParameterTypeAccesses: Boolean, extractAnnotations: Boolean, typeSubstitution: TypeSubstitution?, classTypeArgsIncludingOuterClasses: List<IrTypeArgument>?, extractOrigin: Boolean = true, overriddenAttributes: OverriddenFunctionAttributes? = null): Label<out DbCallable>  {
         with("function", f) {
             DeclarationStackAdjuster(f, overriddenAttributes).use {
@@ -1427,8 +1466,10 @@ open class KotlinFileExtractor(
 
                 linesOfCode?.linesOfCodeInDeclaration(f, id)
 
-                if (extractAnnotations)
-                    extractAnnotations(f, id, extractMethodAndParameterTypeAccesses)
+                if (extractAnnotations) {
+                    val extraAnnotations = listOfNotNull(getNullabilityAnnotation(f.returnType, f.origin, f.annotations, getJavaCallable(f)?.annotations))
+                    extractAnnotations(f.annotations + extraAnnotations, id, extractMethodAndParameterTypeAccesses)
+                }
 
                 return id
             }
diff --git a/java/ql/integration-tests/all-platforms/kotlin/nullability-annotations/AnnotatedMethods.java b/java/ql/integration-tests/all-platforms/kotlin/nullability-annotations/AnnotatedMethods.java
new file mode 100644
index 00000000000..fddcf0972b0
--- /dev/null
+++ b/java/ql/integration-tests/all-platforms/kotlin/nullability-annotations/AnnotatedMethods.java
@@ -0,0 +1,10 @@
+import org.jetbrains.annotations.*;
+import zpkg.A;
+
+public class AnnotatedMethods {
+
+  public @A @NotNull String notNullAnnotated(@A @NotNull String param) { return param; }
+
+  public @A @Nullable String nullableAnnotated(@A @Nullable String param) { return param; }
+
+}
diff --git a/java/ql/integration-tests/all-platforms/kotlin/nullability-annotations/JavaUser.java b/java/ql/integration-tests/all-platforms/kotlin/nullability-annotations/JavaUser.java
new file mode 100644
index 00000000000..a6f9b8b1053
--- /dev/null
+++ b/java/ql/integration-tests/all-platforms/kotlin/nullability-annotations/JavaUser.java
@@ -0,0 +1,7 @@
+public class JavaUser {
+
+  public static void test(KotlinAnnotatedMethods km) {
+    km.f(null);
+  }
+
+}
diff --git a/java/ql/integration-tests/all-platforms/kotlin/nullability-annotations/ktUser.kt b/java/ql/integration-tests/all-platforms/kotlin/nullability-annotations/ktUser.kt
new file mode 100644
index 00000000000..37c38850757
--- /dev/null
+++ b/java/ql/integration-tests/all-platforms/kotlin/nullability-annotations/ktUser.kt
@@ -0,0 +1,7 @@
+import zpkg.A
+
+class KotlinAnnotatedMethods {
+
+  @A fun f(@A m: AnnotatedMethods): String = m.notNullAnnotated("hello") + m.nullableAnnotated("world")!!
+
+}
diff --git a/java/ql/integration-tests/all-platforms/kotlin/nullability-annotations/org/jetbrains/annotations/NotNull.java b/java/ql/integration-tests/all-platforms/kotlin/nullability-annotations/org/jetbrains/annotations/NotNull.java
new file mode 100644
index 00000000000..60fc85ea9b8
--- /dev/null
+++ b/java/ql/integration-tests/all-platforms/kotlin/nullability-annotations/org/jetbrains/annotations/NotNull.java
@@ -0,0 +1,6 @@
+package org.jetbrains.annotations;
+
+public @interface NotNull {
+  String value() default "";
+  Class<? extends Exception> exception() default Exception.class;
+}
diff --git a/java/ql/integration-tests/all-platforms/kotlin/nullability-annotations/org/jetbrains/annotations/Nullable.java b/java/ql/integration-tests/all-platforms/kotlin/nullability-annotations/org/jetbrains/annotations/Nullable.java
new file mode 100644
index 00000000000..6cf82f2db31
--- /dev/null
+++ b/java/ql/integration-tests/all-platforms/kotlin/nullability-annotations/org/jetbrains/annotations/Nullable.java
@@ -0,0 +1,5 @@
+package org.jetbrains.annotations;
+
+public @interface Nullable {
+  String value() default "";
+}
diff --git a/java/ql/integration-tests/all-platforms/kotlin/nullability-annotations/test.expected b/java/ql/integration-tests/all-platforms/kotlin/nullability-annotations/test.expected
new file mode 100644
index 00000000000..0776438cca7
--- /dev/null
+++ b/java/ql/integration-tests/all-platforms/kotlin/nullability-annotations/test.expected
@@ -0,0 +1,12 @@
+| AnnotatedMethods.java:6:29:6:44 | notNullAnnotated | parameter | AnnotatedMethods.java:6:46:6:47 | A |
+| AnnotatedMethods.java:6:29:6:44 | notNullAnnotated | parameter | AnnotatedMethods.java:6:49:6:56 | NotNull |
+| AnnotatedMethods.java:6:29:6:44 | notNullAnnotated | return value | AnnotatedMethods.java:6:10:6:11 | A |
+| AnnotatedMethods.java:6:29:6:44 | notNullAnnotated | return value | AnnotatedMethods.java:6:13:6:20 | NotNull |
+| AnnotatedMethods.java:8:30:8:46 | nullableAnnotated | parameter | AnnotatedMethods.java:8:48:8:49 | A |
+| AnnotatedMethods.java:8:30:8:46 | nullableAnnotated | parameter | AnnotatedMethods.java:8:51:8:59 | Nullable |
+| AnnotatedMethods.java:8:30:8:46 | nullableAnnotated | return value | AnnotatedMethods.java:8:10:8:11 | A |
+| AnnotatedMethods.java:8:30:8:46 | nullableAnnotated | return value | AnnotatedMethods.java:8:13:8:21 | Nullable |
+| ktUser.kt:5:6:5:105 | f | parameter | ktUser.kt:0:0:0:0 | NotNull |
+| ktUser.kt:5:6:5:105 | f | parameter | ktUser.kt:5:12:5:13 | A |
+| ktUser.kt:5:6:5:105 | f | return value | ktUser.kt:0:0:0:0 | NotNull |
+| ktUser.kt:5:6:5:105 | f | return value | ktUser.kt:5:3:5:4 | A |
diff --git a/java/ql/integration-tests/all-platforms/kotlin/nullability-annotations/test.py b/java/ql/integration-tests/all-platforms/kotlin/nullability-annotations/test.py
new file mode 100644
index 00000000000..02ba32b6675
--- /dev/null
+++ b/java/ql/integration-tests/all-platforms/kotlin/nullability-annotations/test.py
@@ -0,0 +1,6 @@
+from create_database_utils import *
+
+os.mkdir('out')
+os.mkdir('out2')
+os.mkdir('out3')
+run_codeql_database_create(["javac AnnotatedMethods.java zpkg/A.java org/jetbrains/annotations/NotNull.java org/jetbrains/annotations/Nullable.java -d out", "kotlinc ktUser.kt -cp out -d out2", "javac JavaUser.java -cp out:out2 -d out3"], lang="java")
diff --git a/java/ql/integration-tests/all-platforms/kotlin/nullability-annotations/test.ql b/java/ql/integration-tests/all-platforms/kotlin/nullability-annotations/test.ql
new file mode 100644
index 00000000000..def0233a5a0
--- /dev/null
+++ b/java/ql/integration-tests/all-platforms/kotlin/nullability-annotations/test.ql
@@ -0,0 +1,11 @@
+import java
+
+from Method m, string origin, Annotation a
+where
+  m.fromSource() and
+  (
+    origin = "return value" and a = m.getAnAnnotation()
+    or
+    origin = "parameter" and a = m.getAParameter().getAnAnnotation()
+  )
+select m, origin, a
diff --git a/java/ql/integration-tests/all-platforms/kotlin/nullability-annotations/zpkg/A.java b/java/ql/integration-tests/all-platforms/kotlin/nullability-annotations/zpkg/A.java
new file mode 100644
index 00000000000..93a36f72500
--- /dev/null
+++ b/java/ql/integration-tests/all-platforms/kotlin/nullability-annotations/zpkg/A.java
@@ -0,0 +1,3 @@
+package zpkg;
+
+public @interface A { }

From 8ca05d8fef3b56bcff3d42dbb6bb43c32c86ccec Mon Sep 17 00:00:00 2001
From: Chris Smowton <smowton@github.com>
Date: Fri, 25 Nov 2022 11:26:29 +0000
Subject: [PATCH 1244/1420] Exclude annotations from consistency check due to
 intentionally missing children

---
 java/ql/consistency-queries/children.ql | 14 ++++++++++++--
 1 file changed, 12 insertions(+), 2 deletions(-)

diff --git a/java/ql/consistency-queries/children.ql b/java/ql/consistency-queries/children.ql
index 9401c8785e4..b22fd56d044 100644
--- a/java/ql/consistency-queries/children.ql
+++ b/java/ql/consistency-queries/children.ql
@@ -41,7 +41,12 @@ predicate gapInChildren(Element e, int i) {
   // -1 can be skipped (type arguments from -2 down, no qualifier at -1,
   // then arguments from 0).
   // Can we also skip arguments, e.g. due to defaults for parameters?
-  not (e instanceof MethodAccess and e.getFile().isKotlinSourceFile())
+  not (e instanceof MethodAccess and e.getFile().isKotlinSourceFile()) and
+  // Kotlin-extracted annotations can have missing children where a default
+  // value should be, because kotlinc doesn't load annotation defaults and we
+  // want to leave a space for another extractor to fill in the default if it
+  // is able.
+  not e instanceof Annotation
 }
 
 predicate lateFirstChild(Element e, int i) {
@@ -59,7 +64,12 @@ predicate lateFirstChild(Element e, int i) {
   not (e instanceof LocalVariableDeclStmt and i = 1 and not exists(nthChildOf(e, 2))) and
   // For statements may or may not declare a new variable (child 0), or
   // have a condition (child 1).
-  not (e instanceof ForStmt and i = [1, 2])
+  not (e instanceof ForStmt and i = [1, 2]) and
+  // Kotlin-extracted annotations can have missing children where a default
+  // value should be, because kotlinc doesn't load annotation defaults and we
+  // want to leave a space for another extractor to fill in the default if it
+  // is able.
+  not e instanceof Annotation
 }
 
 from Element e, int i, string problem

From 01a534566003bc87d757d2cff31707eab5281cb9 Mon Sep 17 00:00:00 2001
From: Chris Smowton <smowton@github.com>
Date: Fri, 25 Nov 2022 17:53:58 +0000
Subject: [PATCH 1245/1420] Reimplement Deprecated annotation conversion
 suitable for older Kotlin versions

---
 .../src/main/kotlin/KotlinFileExtractor.kt    | 58 +++++++++++--------
 1 file changed, 35 insertions(+), 23 deletions(-)

diff --git a/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt b/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt
index 233cc588c95..d0609ec3ab7 100644
--- a/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt
+++ b/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt
@@ -487,15 +487,42 @@ open class KotlinFileExtractor(
         extractDeclInitializers(c.declarations, false) { Pair(blockId, obinitId) }
     }
 
-    private fun extractAnnotations(annotations: List<IrConstructorCall>, parent: Label<out DbExprparent>, extractEnumTypeAccesses: Boolean) {
-        val groupedAnnotations = metaAnnotationSupport.groupRepeatableAnnotations(annotations)
+    private val javaLangDeprecated by lazy { referenceExternalClass("java.lang.Deprecated") }
+
+    private val javaLangDeprecatedConstructor by lazy { javaLangDeprecated?.constructors?.singleOrNull() }
+
+    private fun replaceKotlinDeprecatedAnnotation(annotations: List<IrConstructorCall>): List<IrConstructorCall> {
+        val shouldReplace =
+            annotations.any { (it.type as? IrSimpleType)?.classFqName?.asString() == "kotlin.Deprecated" } &&
+                    annotations.none { (it.type as? IrSimpleType)?.classFqName?.asString() == "java.lang.Deprecated" }
+        val jldConstructor = javaLangDeprecatedConstructor
+        if (!shouldReplace || jldConstructor == null)
+            return annotations
+        return annotations.filter { (it.type as? IrSimpleType)?.classFqName?.asString() != "kotlin.Deprecated" } +
+                // Note we lose any arguments to @java.lang.Deprecated that were written in source.
+                IrConstructorCallImpl.fromSymbolOwner(
+                    UNDEFINED_OFFSET, UNDEFINED_OFFSET, jldConstructor.returnType, jldConstructor.symbol, 0
+                )
+    }
+
+    private fun extractAnnotations(c: IrAnnotationContainer, annotations: List<IrConstructorCall>, parent: Label<out DbExprparent>, extractEnumTypeAccesses: Boolean) {
+        val origin = when(c) {
+            is IrDeclaration -> c.origin
+            else -> null
+        }
+        val replacedAnnotations =
+            if (origin == IrDeclarationOrigin.IR_EXTERNAL_JAVA_DECLARATION_STUB)
+                replaceKotlinDeprecatedAnnotation(annotations)
+            else
+                annotations
+        val groupedAnnotations = metaAnnotationSupport.groupRepeatableAnnotations(replacedAnnotations)
         for ((idx, constructorCall: IrConstructorCall) in groupedAnnotations.sortedBy { v -> v.type.classFqName?.asString() }.withIndex()) {
             extractAnnotation(constructorCall, parent, idx, extractEnumTypeAccesses)
         }
     }
 
     private fun extractAnnotations(c: IrAnnotationContainer, parent: Label<out DbExprparent>, extractEnumTypeAccesses: Boolean) {
-        extractAnnotations(c.annotations, parent, extractEnumTypeAccesses)
+        extractAnnotations(c, c.annotations, parent, extractEnumTypeAccesses)
     }
 
     private fun extractAnnotation(
@@ -505,19 +532,8 @@ open class KotlinFileExtractor(
         extractEnumTypeAccesses: Boolean,
         contextLabel: String? = null
     ): Label<out DbExpr> {
-        val isConvertedJavaDeprecatedAnnotation = (constructorCall.type as? IrSimpleType)?.classFqName?.asString() == "kotlin.Deprecated" &&
-                constructorCall.source is JavaSourceElement
-
-        val extractType =
-            (
-                if (isConvertedJavaDeprecatedAnnotation)
-                    pluginContext.referenceClass(FqName("java.lang.Deprecated"))?.defaultType
-                else
-                    null
-            ) ?: erase(constructorCall.type)
-
         // Erase the type here because the JVM lowering erases the annotation type, and so the Java extractor will see it in erased form.
-        val t = useType(extractType)
+        val t = useType(erase(constructorCall.type))
         val annotationContextLabel = contextLabel ?: "{${t.javaResult.id}}"
         val id = tw.getLabelFor<DbDeclannotation>("@\"annotation;{$parent};$annotationContextLabel\"")
         tw.writeExprs_declannotation(id, t.javaResult.id, parent, idx)
@@ -526,11 +542,7 @@ open class KotlinFileExtractor(
         val locId = tw.getLocation(constructorCall)
         tw.writeHasLocation(id, locId)
 
-        // If this is `java.lang.Deprecated`, extract an annotation without parameters -- whatever the original source
-        // may have supplied has been lost.
-        val paramCount = if (isConvertedJavaDeprecatedAnnotation) 0 else constructorCall.valueArgumentsCount
-
-        for (i in 0 until paramCount) {
+        for (i in 0 until constructorCall.valueArgumentsCount) {
             val param = constructorCall.symbol.owner.valueParameters[i]
             val prop = constructorCall.symbol.owner.parentAsClass.declarations
                 .filterIsInstance<IrProperty>()
@@ -702,7 +714,7 @@ open class KotlinFileExtractor(
                     else
                         listOf()
 
-                extractAnnotations(c.annotations + additionalAnnotations, id, extractFunctionBodies)
+                extractAnnotations(c, c.annotations + additionalAnnotations, id, extractFunctionBodies)
 
                 if (extractFunctionBodies && !c.isAnonymousObject && !c.isLocal)
                     externalClassExtractor.writeStubTrapFile(c)
@@ -900,7 +912,7 @@ open class KotlinFileExtractor(
                 else -> null
             }
             val extraAnnotations = listOfNotNull(getNullabilityAnnotation(vp.type, vp.origin, vp.annotations, javaParameter?.annotations))
-            extractAnnotations(vp.annotations + extraAnnotations, id, extractTypeAccess)
+            extractAnnotations(vp, vp.annotations + extraAnnotations, id, extractTypeAccess)
             return extractValueParameter(id, substitutedType, vp.name.asString(), location, parent, idx, useValueParameter(vp, parentSourceDeclaration), syntheticParameterNames, vp.isVararg, vp.isNoinline, vp.isCrossinline)
         }
     }
@@ -1468,7 +1480,7 @@ open class KotlinFileExtractor(
 
                 if (extractAnnotations) {
                     val extraAnnotations = listOfNotNull(getNullabilityAnnotation(f.returnType, f.origin, f.annotations, getJavaCallable(f)?.annotations))
-                    extractAnnotations(f.annotations + extraAnnotations, id, extractMethodAndParameterTypeAccesses)
+                    extractAnnotations(f, f.annotations + extraAnnotations, id, extractMethodAndParameterTypeAccesses)
                 }
 
                 return id

From f6888c727f1ab3f8473cd5d5674713f0fbdcf423 Mon Sep 17 00:00:00 2001
From: Chris Smowton <smowton@github.com>
Date: Mon, 28 Nov 2022 12:57:16 +0000
Subject: [PATCH 1246/1420] PrintAst: Assign indices to annotation children
 that don't have source locations

This avoids them all tying at rank 1 as before.
---
 .../PrintAst.expected                         | 76 +++++++++----------
 java/ql/lib/semmle/code/java/PrintAst.qll     | 18 +++--
 .../annotation_classes/PrintAst.expected      | 58 +++++++-------
 3 files changed, 77 insertions(+), 75 deletions(-)

diff --git a/java/ql/integration-tests/all-platforms/kotlin/annotation-id-consistency/PrintAst.expected b/java/ql/integration-tests/all-platforms/kotlin/annotation-id-consistency/PrintAst.expected
index 89fde9ad673..5710e0a8ef1 100644
--- a/java/ql/integration-tests/all-platforms/kotlin/annotation-id-consistency/PrintAst.expected
+++ b/java/ql/integration-tests/all-platforms/kotlin/annotation-id-consistency/PrintAst.expected
@@ -151,46 +151,46 @@ test.kt:
 #   21|           3: [Annotation] VarargAnnotation
 #    0|             1: [ArrayInit] {...}
 #    0|               1: [IntegerLiteral] 1
-#    0|               1: [IntegerLiteral] 2
+#    0|               2: [IntegerLiteral] 2
 #   22|           4: [Annotation] VarargAnnotation
 #    0|             1: [ArrayInit] {...}
 #    0|               1: [IntegerLiteral] 1
-#    0|               1: [IntegerLiteral] 2
-#    0|               1: [IntegerLiteral] 3
+#    0|               2: [IntegerLiteral] 2
+#    0|               3: [IntegerLiteral] 3
 #   23|           5: [Annotation] VarargAnnotation
 #    0|             1: [ArrayInit] {...}
 #    0|               1: [IntegerLiteral] 1
-#    0|               1: [IntegerLiteral] 2
-#    0|               1: [IntegerLiteral] 3
+#    0|               2: [IntegerLiteral] 2
+#    0|               3: [IntegerLiteral] 3
 #   17|       2: [Annotation] Ann1
 #    0|         1: [IntegerLiteral] 1
-#    0|         1: [Annotation] Ann2
+#    0|         2: [Annotation] Ann2
 #    0|           1: [StringLiteral] "Hello"
-#    0|           1: [TypeLiteral] String.class
+#    0|           2: [TypeLiteral] String.class
 #    0|             0: [TypeAccess] String
-#    0|           1: [ArrayInit] {...}
+#    0|           3: [ArrayInit] {...}
 #    0|             1: [IntegerLiteral] 1
-#    0|             1: [IntegerLiteral] 2
-#    0|             1: [IntegerLiteral] 3
-#    0|           1: [ArrayInit] {...}
+#    0|             2: [IntegerLiteral] 2
+#    0|             3: [IntegerLiteral] 3
+#    0|           4: [ArrayInit] {...}
 #    0|             1: [Annotation] Ann3
 #    0|               1: [IntegerLiteral] 1
-#    0|             1: [Annotation] Ann3
+#    0|             2: [Annotation] Ann3
 #    0|               1: [IntegerLiteral] 2
-#    0|           1: [ArrayInit] {...}
+#    0|           5: [ArrayInit] {...}
 #    0|             1: [TypeLiteral] String.class
 #    0|               0: [TypeAccess] String
-#    0|             1: [TypeLiteral] int.class
+#    0|             2: [TypeLiteral] int.class
 #    0|               0: [TypeAccess] int
-#    0|         1: [VarAccess] DayOfWeek.MONDAY
+#    0|         3: [VarAccess] DayOfWeek.MONDAY
 #    0|           -1: [TypeAccess] DayOfWeek
 #   18|       3: [Annotation] GenericAnnotation<>
 #   24|       4: [Annotation] AnnWithDefaults
 #    0|         1: [IntegerLiteral] 1
-#    0|         1: [StringLiteral] "hello"
-#    0|         1: [VarAccess] DayOfWeek.TUESDAY
+#    0|         2: [StringLiteral] "hello"
+#    0|         3: [VarAccess] DayOfWeek.TUESDAY
 #    0|           -1: [TypeAccess] DayOfWeek
-#    0|         1: [ArrayInit] {...}
+#    0|         4: [ArrayInit] {...}
 #    0|           1: [Annotation] Ann3
 #    0|             1: [IntegerLiteral] 1
 #   25|     1: [Constructor] Annotated
@@ -209,46 +209,46 @@ test.kt:
 #   31|           3: [Annotation] VarargAnnotation
 #    0|             1: [ArrayInit] {...}
 #    0|               1: [IntegerLiteral] 1
-#    0|               1: [IntegerLiteral] 2
+#    0|               2: [IntegerLiteral] 2
 #   32|           4: [Annotation] VarargAnnotation
 #    0|             1: [ArrayInit] {...}
 #    0|               1: [IntegerLiteral] 1
-#    0|               1: [IntegerLiteral] 2
-#    0|               1: [IntegerLiteral] 3
+#    0|               2: [IntegerLiteral] 2
+#    0|               3: [IntegerLiteral] 3
 #   33|           5: [Annotation] VarargAnnotation
 #    0|             1: [ArrayInit] {...}
 #    0|               1: [IntegerLiteral] 1
-#    0|               1: [IntegerLiteral] 2
-#    0|               1: [IntegerLiteral] 3
+#    0|               2: [IntegerLiteral] 2
+#    0|               3: [IntegerLiteral] 3
 #   27|       2: [Annotation] Ann1
 #    0|         1: [IntegerLiteral] 1
-#    0|         1: [Annotation] Ann2
+#    0|         2: [Annotation] Ann2
 #    0|           1: [StringLiteral] "Hello"
-#    0|           1: [TypeLiteral] String.class
+#    0|           2: [TypeLiteral] String.class
 #    0|             0: [TypeAccess] String
-#    0|           1: [ArrayInit] {...}
+#    0|           3: [ArrayInit] {...}
 #    0|             1: [IntegerLiteral] 1
-#    0|             1: [IntegerLiteral] 2
-#    0|             1: [IntegerLiteral] 3
-#    0|           1: [ArrayInit] {...}
+#    0|             2: [IntegerLiteral] 2
+#    0|             3: [IntegerLiteral] 3
+#    0|           4: [ArrayInit] {...}
 #    0|             1: [Annotation] Ann3
 #    0|               1: [IntegerLiteral] 1
-#    0|             1: [Annotation] Ann3
+#    0|             2: [Annotation] Ann3
 #    0|               1: [IntegerLiteral] 2
-#    0|           1: [ArrayInit] {...}
+#    0|           5: [ArrayInit] {...}
 #    0|             1: [TypeLiteral] String.class
 #    0|               0: [TypeAccess] String
-#    0|             1: [TypeLiteral] int.class
+#    0|             2: [TypeLiteral] int.class
 #    0|               0: [TypeAccess] int
-#    0|         1: [VarAccess] DayOfWeek.MONDAY
+#    0|         3: [VarAccess] DayOfWeek.MONDAY
 #    0|           -1: [TypeAccess] DayOfWeek
 #   28|       3: [Annotation] GenericAnnotation<>
 #   34|       4: [Annotation] AnnWithDefaults
 #    0|         1: [IntegerLiteral] 1
-#    0|         1: [StringLiteral] "hello"
-#    0|         1: [VarAccess] DayOfWeek.TUESDAY
+#    0|         2: [StringLiteral] "hello"
+#    0|         3: [VarAccess] DayOfWeek.TUESDAY
 #    0|           -1: [TypeAccess] DayOfWeek
-#    0|         1: [ArrayInit] {...}
+#    0|         4: [ArrayInit] {...}
 #    0|           1: [Annotation] Ann3
 #    0|             1: [IntegerLiteral] 1
 #   35|     1: [Constructor] AnnotatedUsedByKotlin
@@ -290,12 +290,12 @@ test.kt:
 #    0| [ArrayInit] {...}
 #    0|   1: [TypeLiteral] String.class
 #    0|     0: [TypeAccess] String
-#    0|   1: [TypeLiteral] String.class
+#    0|   2: [TypeLiteral] String.class
 #    0|     0: [TypeAccess] String
 #    0| [TypeLiteral] String.class
 #    0|   0: [TypeAccess] String
 #    0| [ArrayInit] {...}
 #    0|   1: [TypeLiteral] String.class
 #    0|     0: [TypeAccess] String
-#    0|   1: [TypeLiteral] String.class
+#    0|   2: [TypeLiteral] String.class
 #    0|     0: [TypeAccess] String
diff --git a/java/ql/lib/semmle/code/java/PrintAst.qll b/java/ql/lib/semmle/code/java/PrintAst.qll
index 802ba19030b..0e52be33149 100644
--- a/java/ql/lib/semmle/code/java/PrintAst.qll
+++ b/java/ql/lib/semmle/code/java/PrintAst.qll
@@ -298,19 +298,21 @@ final class AnnotationPartNode extends ExprStmtNode {
 
   override ElementNode getChild(int childIndex) {
     result.getElement() =
-      rank[childIndex](Element ch, string file, int line, int column |
-        ch = this.getAnAnnotationChild() and locationSortKeys(ch, file, line, column)
+      rank[childIndex](Element ch, string file, int line, int column, int idx |
+        ch = this.getAnnotationChild(idx) and locationSortKeys(ch, file, line, column)
       |
-        ch order by file, line, column
+        ch order by file, line, column, idx
       )
   }
 
-  private Expr getAnAnnotationChild() {
-    result = element.(Annotation).getValue(_)
+  private Expr getAnnotationChild(int index) {
+    result = element.(Annotation).getValue(_) and
+    index >= 0 and
+    if exists(int x | x >= 0 | result.isNthChildOf(element, x))
+    then result.isNthChildOf(element, index)
+    else result.isNthChildOf(element, -(index + 1))
     or
-    result = element.(ArrayInit).getAnInit()
-    or
-    result = element.(ArrayInit).(Annotatable).getAnAnnotation()
+    result = element.(ArrayInit).getInit(index)
   }
 }
 
diff --git a/java/ql/test/kotlin/library-tests/annotation_classes/PrintAst.expected b/java/ql/test/kotlin/library-tests/annotation_classes/PrintAst.expected
index 79bc39c4392..c457b0811dd 100644
--- a/java/ql/test/kotlin/library-tests/annotation_classes/PrintAst.expected
+++ b/java/ql/test/kotlin/library-tests/annotation_classes/PrintAst.expected
@@ -41,8 +41,8 @@ def.kt:
 #   47|             -1: [TypeAccess] ConsoleKt
 #   47|             0: [MethodAccess] a(...)
 #   47|               -1: [VarAccess] a
-#   49|         1: [LocalVariableDeclStmt] var ...;
-#   49|           1: [LocalVariableDeclExpr] x
+#   50|         1: [LocalVariableDeclStmt] var ...;
+#   50|           1: [LocalVariableDeclExpr] x
 #   50|             0: [IntegerLiteral] 10
 #   53|     3: [FieldDeclaration] int p;
 #-----|       -2: (Annotations)
@@ -91,51 +91,51 @@ def.kt:
 #    0|         1: [ArrayInit] {...}
 #    0|           1: [VarAccess] ElementType.TYPE
 #    0|             -1: [TypeAccess] ElementType
-#    0|           1: [VarAccess] ElementType.FIELD
+#    0|           2: [VarAccess] ElementType.FIELD
 #    0|             -1: [TypeAccess] ElementType
-#    0|           1: [VarAccess] ElementType.METHOD
+#    0|           3: [VarAccess] ElementType.METHOD
 #    0|             -1: [TypeAccess] ElementType
-#    0|           1: [VarAccess] ElementType.PARAMETER
+#    0|           4: [VarAccess] ElementType.PARAMETER
 #    0|             -1: [TypeAccess] ElementType
-#    0|           1: [VarAccess] ElementType.CONSTRUCTOR
+#    0|           5: [VarAccess] ElementType.CONSTRUCTOR
 #    0|             -1: [TypeAccess] ElementType
-#    0|           1: [VarAccess] ElementType.LOCAL_VARIABLE
+#    0|           6: [VarAccess] ElementType.LOCAL_VARIABLE
 #    0|             -1: [TypeAccess] ElementType
-#    0|           1: [VarAccess] ElementType.ANNOTATION_TYPE
+#    0|           7: [VarAccess] ElementType.ANNOTATION_TYPE
 #    0|             -1: [TypeAccess] ElementType
-#    0|           1: [VarAccess] ElementType.TYPE_PARAMETER
+#    0|           8: [VarAccess] ElementType.TYPE_PARAMETER
 #    0|             -1: [TypeAccess] ElementType
-#    0|           1: [VarAccess] ElementType.TYPE_USE
+#    0|           9: [VarAccess] ElementType.TYPE_USE
 #    0|             -1: [TypeAccess] ElementType
 #    5|       3: [Annotation] Target
 #    0|         1: [ArrayInit] {...}
 #    0|           1: [VarAccess] AnnotationTarget.CLASS
 #    0|             -1: [TypeAccess] AnnotationTarget
-#    0|           1: [VarAccess] AnnotationTarget.ANNOTATION_CLASS
+#    0|           2: [VarAccess] AnnotationTarget.ANNOTATION_CLASS
 #    0|             -1: [TypeAccess] AnnotationTarget
-#    0|           1: [VarAccess] AnnotationTarget.TYPE_PARAMETER
+#    0|           3: [VarAccess] AnnotationTarget.TYPE_PARAMETER
 #    0|             -1: [TypeAccess] AnnotationTarget
-#    0|           1: [VarAccess] AnnotationTarget.PROPERTY
+#    0|           4: [VarAccess] AnnotationTarget.PROPERTY
 #    0|             -1: [TypeAccess] AnnotationTarget
-#    0|           1: [VarAccess] AnnotationTarget.FIELD
+#    0|           5: [VarAccess] AnnotationTarget.FIELD
 #    0|             -1: [TypeAccess] AnnotationTarget
-#    0|           1: [VarAccess] AnnotationTarget.LOCAL_VARIABLE
+#    0|           6: [VarAccess] AnnotationTarget.LOCAL_VARIABLE
 #    0|             -1: [TypeAccess] AnnotationTarget
-#    0|           1: [VarAccess] AnnotationTarget.VALUE_PARAMETER
+#    0|           7: [VarAccess] AnnotationTarget.VALUE_PARAMETER
 #    0|             -1: [TypeAccess] AnnotationTarget
-#    0|           1: [VarAccess] AnnotationTarget.CONSTRUCTOR
+#    0|           8: [VarAccess] AnnotationTarget.CONSTRUCTOR
 #    0|             -1: [TypeAccess] AnnotationTarget
-#    0|           1: [VarAccess] AnnotationTarget.FUNCTION
+#    0|           9: [VarAccess] AnnotationTarget.FUNCTION
 #    0|             -1: [TypeAccess] AnnotationTarget
-#    0|           1: [VarAccess] AnnotationTarget.PROPERTY_GETTER
+#    0|           10: [VarAccess] AnnotationTarget.PROPERTY_GETTER
 #    0|             -1: [TypeAccess] AnnotationTarget
-#    0|           1: [VarAccess] AnnotationTarget.PROPERTY_SETTER
+#    0|           11: [VarAccess] AnnotationTarget.PROPERTY_SETTER
 #    0|             -1: [TypeAccess] AnnotationTarget
-#    0|           1: [VarAccess] AnnotationTarget.TYPE
+#    0|           12: [VarAccess] AnnotationTarget.TYPE
 #    0|             -1: [TypeAccess] AnnotationTarget
-#    0|           1: [VarAccess] AnnotationTarget.FILE
+#    0|           13: [VarAccess] AnnotationTarget.FILE
 #    0|             -1: [TypeAccess] AnnotationTarget
-#    0|           1: [VarAccess] AnnotationTarget.TYPEALIAS
+#    0|           14: [VarAccess] AnnotationTarget.TYPEALIAS
 #    0|             -1: [TypeAccess] AnnotationTarget
 #   21|     1: [Method] a
 #-----|       1: (Annotations)
@@ -204,17 +204,17 @@ def.kt:
 #    0|         1: [IntegerLiteral] 1
 #   39|       2: [Annotation] Annot1k
 #    0|         1: [IntegerLiteral] 2
-#    0|         1: [StringLiteral] "ab"
-#    0|         1: [TypeLiteral] X.class
+#    0|         2: [StringLiteral] "ab"
+#    0|         3: [TypeLiteral] X.class
 #    0|           0: [TypeAccess] X
-#    0|         1: [VarAccess] Y.B
+#    0|         4: [VarAccess] Y.B
 #    0|           -1: [TypeAccess] Y
-#    0|         1: [ArrayInit] {...}
+#    0|         5: [ArrayInit] {...}
 #    0|           1: [VarAccess] Y.C
 #    0|             -1: [TypeAccess] Y
-#    0|           1: [VarAccess] Y.A
+#    0|           2: [VarAccess] Y.A
 #    0|             -1: [TypeAccess] Y
-#    0|         1: [Annotation] Annot0k
+#    0|         6: [Annotation] Annot0k
 #    0|           1: [IntegerLiteral] 1
 #   42|     1: [Constructor] Z
 #-----|       1: (Annotations)

From 7a7c08b185f0005f31bcad6a1d392b92ab07b072 Mon Sep 17 00:00:00 2001
From: Chris Smowton <smowton@github.com>
Date: Wed, 30 Nov 2022 13:01:52 +0000
Subject: [PATCH 1247/1420] Tolerate generic annotations

This causes them to render properly in PrintAst output due to `getAnnotationElement` working as expected, and will hide the fact that they are represented by raw types in bytecode.
---
 .../PrintAst.expected                         | 32 +++++++++----------
 java/ql/lib/semmle/code/java/Annotation.qll   |  2 +-
 2 files changed, 17 insertions(+), 17 deletions(-)

diff --git a/java/ql/integration-tests/all-platforms/kotlin/annotation-id-consistency/PrintAst.expected b/java/ql/integration-tests/all-platforms/kotlin/annotation-id-consistency/PrintAst.expected
index 5710e0a8ef1..751777f3748 100644
--- a/java/ql/integration-tests/all-platforms/kotlin/annotation-id-consistency/PrintAst.expected
+++ b/java/ql/integration-tests/all-platforms/kotlin/annotation-id-consistency/PrintAst.expected
@@ -184,7 +184,14 @@ test.kt:
 #    0|               0: [TypeAccess] int
 #    0|         3: [VarAccess] DayOfWeek.MONDAY
 #    0|           -1: [TypeAccess] DayOfWeek
-#   18|       3: [Annotation] GenericAnnotation<>
+#   18|       3: [Annotation] GenericAnnotation
+#    0|         1: [TypeLiteral] String.class
+#    0|           0: [TypeAccess] String
+#    0|         2: [ArrayInit] {...}
+#    0|           1: [TypeLiteral] String.class
+#    0|             0: [TypeAccess] String
+#    0|           2: [TypeLiteral] String.class
+#    0|             0: [TypeAccess] String
 #   24|       4: [Annotation] AnnWithDefaults
 #    0|         1: [IntegerLiteral] 1
 #    0|         2: [StringLiteral] "hello"
@@ -242,7 +249,14 @@ test.kt:
 #    0|               0: [TypeAccess] int
 #    0|         3: [VarAccess] DayOfWeek.MONDAY
 #    0|           -1: [TypeAccess] DayOfWeek
-#   28|       3: [Annotation] GenericAnnotation<>
+#   28|       3: [Annotation] GenericAnnotation
+#    0|         1: [TypeLiteral] String.class
+#    0|           0: [TypeAccess] String
+#    0|         2: [ArrayInit] {...}
+#    0|           1: [TypeLiteral] String.class
+#    0|             0: [TypeAccess] String
+#    0|           2: [TypeLiteral] String.class
+#    0|             0: [TypeAccess] String
 #   34|       4: [Annotation] AnnWithDefaults
 #    0|         1: [IntegerLiteral] 1
 #    0|         2: [StringLiteral] "hello"
@@ -285,17 +299,3 @@ test.kt:
 #   46|       5: [BlockStmt] { ... }
 #   46|         0: [SuperConstructorInvocationStmt] super(...)
 #   47|         1: [BlockStmt] { ... }
-#    0| [TypeLiteral] String.class
-#    0|   0: [TypeAccess] String
-#    0| [ArrayInit] {...}
-#    0|   1: [TypeLiteral] String.class
-#    0|     0: [TypeAccess] String
-#    0|   2: [TypeLiteral] String.class
-#    0|     0: [TypeAccess] String
-#    0| [TypeLiteral] String.class
-#    0|   0: [TypeAccess] String
-#    0| [ArrayInit] {...}
-#    0|   1: [TypeLiteral] String.class
-#    0|     0: [TypeAccess] String
-#    0|   2: [TypeLiteral] String.class
-#    0|     0: [TypeAccess] String
diff --git a/java/ql/lib/semmle/code/java/Annotation.qll b/java/ql/lib/semmle/code/java/Annotation.qll
index dd6762776c6..7e495c4ee2d 100644
--- a/java/ql/lib/semmle/code/java/Annotation.qll
+++ b/java/ql/lib/semmle/code/java/Annotation.qll
@@ -37,7 +37,7 @@ class Annotation extends @annotation, Expr {
   }
 
   /** Gets the annotation type declaration for this annotation. */
-  override AnnotationType getType() { result = Expr.super.getType() }
+  override AnnotationType getType() { result = Expr.super.getType().(AnnotationType).getSourceDeclaration() }
 
   /** Gets the annotation element with the specified `name`. */
   AnnotationElement getAnnotationElement(string name) {

From c8e2ae8563af0923e905f80be5843fe27ac274d9 Mon Sep 17 00:00:00 2001
From: Chris Smowton <smowton@github.com>
Date: Wed, 30 Nov 2022 16:29:47 +0000
Subject: [PATCH 1248/1420] Accept integration test changes

These introduce newly-extracted annotations, and note that enum constants no longer get type-access expressions in some circumstances
---
 .../PrintAst.expected                         | 110 ++++++++++++++++++
 .../repeatable-annotations/test.expected      |   6 +-
 2 files changed, 113 insertions(+), 3 deletions(-)

diff --git a/java/ql/integration-tests/all-platforms/kotlin/gradle_kotlinx_serialization/PrintAst.expected b/java/ql/integration-tests/all-platforms/kotlin/gradle_kotlinx_serialization/PrintAst.expected
index 4f056c3c4fb..9ca1980904d 100644
--- a/java/ql/integration-tests/all-platforms/kotlin/gradle_kotlinx_serialization/PrintAst.expected
+++ b/java/ql/integration-tests/all-platforms/kotlin/gradle_kotlinx_serialization/PrintAst.expected
@@ -1,7 +1,18 @@
 app/src/main/kotlin/testProject/App.kt:
 #    0| [CompilationUnit] App
 #    7|   1: [Class] Project
+#-----|     -3: (Annotations)
+#    7|       1: [Annotation] Serializable
 #    0|     1: [Constructor] Project
+#-----|       1: (Annotations)
+#    0|         1: [Annotation] Deprecated
+#    0|           1: [StringLiteral] "This synthesized declaration should not be used directly"
+#    0|           2: [Annotation] ReplaceWith
+#    0|             1: [StringLiteral] ""
+#    0|             2: [ArrayInit] {...}
+#    0|           3: [VarAccess] DeprecationLevel.HIDDEN
+#    0|             -1: [TypeAccess] DeprecationLevel
+#    0|         2: [Annotation] NotNull
 #-----|       4: (Parameters)
 #    0|         0: [Parameter] seen1
 #    0|           0: [TypeAccess] int
@@ -41,6 +52,8 @@ app/src/main/kotlin/testProject/App.kt:
 #    7|                 0: [TypeAccess] Project
 #    7|             1: [VarAccess] language
 #    0|     2: [Method] component1
+#-----|       1: (Annotations)
+#    0|         1: [Annotation] NotNull
 #    0|       3: [TypeAccess] String
 #    0|       5: [BlockStmt] { ... }
 #    0|         0: [ReturnStmt] return ...
@@ -53,9 +66,13 @@ app/src/main/kotlin/testProject/App.kt:
 #    0|           0: [VarAccess] this.language
 #    0|             -1: [ThisAccess] this
 #    0|     4: [Method] copy
+#-----|       1: (Annotations)
+#    0|         1: [Annotation] NotNull
 #    0|       3: [TypeAccess] Project
 #-----|       4: (Parameters)
 #    8|         0: [Parameter] name
+#-----|           -1: (Annotations)
+#    0|             1: [Annotation] NotNull
 #    8|           0: [TypeAccess] String
 #    8|         1: [Parameter] language
 #    8|           0: [TypeAccess] int
@@ -176,6 +193,8 @@ app/src/main/kotlin/testProject/App.kt:
 #    0|         2: [ReturnStmt] return ...
 #    0|           0: [VarAccess] result
 #    0|     8: [Method] toString
+#-----|       1: (Annotations)
+#    0|         1: [Annotation] NotNull
 #    0|       3: [TypeAccess] String
 #    0|       5: [BlockStmt] { ... }
 #    0|         0: [ReturnStmt] return ...
@@ -190,13 +209,21 @@ app/src/main/kotlin/testProject/App.kt:
 #    0|               -1: [ThisAccess] this
 #    0|             6: [StringLiteral] ")"
 #    0|     9: [Method] write$Self
+#-----|       1: (Annotations)
+#    0|         1: [Annotation] JvmStatic
 #    0|       3: [TypeAccess] Unit
 #-----|       4: (Parameters)
 #    0|         0: [Parameter] self
+#-----|           -1: (Annotations)
+#    0|             1: [Annotation] NotNull
 #    0|           0: [TypeAccess] Project
 #    0|         1: [Parameter] output
+#-----|           -1: (Annotations)
+#    0|             1: [Annotation] NotNull
 #    0|           0: [TypeAccess] CompositeEncoder
 #    0|         2: [Parameter] serialDesc
+#-----|           -1: (Annotations)
+#    0|             1: [Annotation] NotNull
 #    0|           0: [TypeAccess] SerialDescriptor
 #    7|       5: [BlockStmt] { ... }
 #    7|         0: [ExprStmt] <Expr>;
@@ -214,9 +241,19 @@ app/src/main/kotlin/testProject/App.kt:
 #    7|             2: [MethodAccess] getLanguage(...)
 #    7|               -1: [VarAccess] self
 #    7|     10: [Class] $serializer
+#-----|       -3: (Annotations)
+#    0|         1: [Annotation] Deprecated
+#    0|           1: [StringLiteral] "This synthesized declaration should not be used directly"
+#    0|           2: [Annotation] ReplaceWith
+#    0|             1: [StringLiteral] ""
+#    0|             2: [ArrayInit] {...}
+#    0|           3: [VarAccess] DeprecationLevel.HIDDEN
+#    0|             -1: [TypeAccess] DeprecationLevel
 #    0|       1: [FieldDeclaration] SerialDescriptor descriptor;
 #    0|         -1: [TypeAccess] SerialDescriptor
 #    0|       2: [Method] childSerializers
+#-----|         1: (Annotations)
+#    0|           1: [Annotation] NotNull
 #    0|         3: [TypeAccess] KSerializer<?>[]
 #    0|           0: [TypeAccess] KSerializer<?>
 #    0|             0: [WildcardTypeAccess] ? ...
@@ -227,9 +264,13 @@ app/src/main/kotlin/testProject/App.kt:
 #    7|               -1: [TypeAccess] KSerializer<?>
 #    7|               0: [IntegerLiteral] 2
 #    0|       3: [Method] deserialize
+#-----|         1: (Annotations)
+#    0|           1: [Annotation] NotNull
 #    0|         3: [TypeAccess] Project
 #-----|         4: (Parameters)
 #    0|           0: [Parameter] decoder
+#-----|             -1: (Annotations)
+#    0|               1: [Annotation] NotNull
 #    0|             0: [TypeAccess] Decoder
 #    7|         5: [BlockStmt] { ... }
 #    7|           0: [LocalVariableDeclStmt] var ...;
@@ -365,6 +406,8 @@ app/src/main/kotlin/testProject/App.kt:
 #    7|               2: [VarAccess] tmp5_local1
 #    7|               3: [NullLiteral] null
 #    0|       4: [Method] getDescriptor
+#-----|         1: (Annotations)
+#    0|           1: [Annotation] NotNull
 #    0|         3: [TypeAccess] SerialDescriptor
 #    0|         5: [BlockStmt] { ... }
 #    0|           0: [ReturnStmt] return ...
@@ -374,8 +417,12 @@ app/src/main/kotlin/testProject/App.kt:
 #    0|         3: [TypeAccess] Unit
 #-----|         4: (Parameters)
 #    0|           0: [Parameter] encoder
+#-----|             -1: (Annotations)
+#    0|               1: [Annotation] NotNull
 #    0|             0: [TypeAccess] Encoder
 #    0|           1: [Parameter] value
+#-----|             -1: (Annotations)
+#    0|               1: [Annotation] NotNull
 #    0|             0: [TypeAccess] Project
 #    7|         5: [BlockStmt] { ... }
 #    7|           0: [LocalVariableDeclStmt] var ...;
@@ -398,6 +445,8 @@ app/src/main/kotlin/testProject/App.kt:
 #    7|               -1: [VarAccess] tmp1_output
 #    7|               0: [VarAccess] tmp0_desc
 #    7|       6: [Constructor] $serializer
+#-----|         1: (Annotations)
+#    0|           1: [Annotation] NotNull
 #    7|         5: [BlockStmt] { ... }
 #    7|           0: [SuperConstructorInvocationStmt] super(...)
 #    7|           1: [BlockStmt] { ... }
@@ -436,18 +485,26 @@ app/src/main/kotlin/testProject/App.kt:
 #    7|                 0: [TypeAccess] GeneratedSerializer
 #    7|     11: [Class] Companion
 #    0|       1: [Method] serializer
+#-----|         1: (Annotations)
+#    0|           1: [Annotation] NotNull
 #    0|         3: [TypeAccess] KSerializer<Project>
 #    0|           0: [TypeAccess] Project
 #    7|         5: [BlockStmt] { ... }
 #    7|           0: [ReturnStmt] return ...
 #    7|             0: [VarAccess] INSTANCE
 #    7|       2: [Constructor] Companion
+#-----|         1: (Annotations)
+#    0|           1: [Annotation] NotNull
 #    7|         5: [BlockStmt] { ... }
 #    7|           0: [SuperConstructorInvocationStmt] super(...)
 #    7|           1: [BlockStmt] { ... }
 #    8|     12: [Constructor] Project
+#-----|       1: (Annotations)
+#    0|         1: [Annotation] NotNull
 #-----|       4: (Parameters)
 #    8|         0: [Parameter] name
+#-----|           -1: (Annotations)
+#    0|             1: [Annotation] NotNull
 #    8|           0: [TypeAccess] String
 #    8|         1: [Parameter] language
 #    8|           0: [TypeAccess] int
@@ -464,6 +521,8 @@ app/src/main/kotlin/testProject/App.kt:
 #    8|       -1: [TypeAccess] String
 #    8|       0: [VarAccess] name
 #    8|     14: [Method] getName
+#-----|       1: (Annotations)
+#    0|         1: [Annotation] NotNull
 #    8|       3: [TypeAccess] String
 #    8|       5: [BlockStmt] { ... }
 #    8|         0: [ReturnStmt] return ...
@@ -480,9 +539,22 @@ app/src/main/kotlin/testProject/App.kt:
 #    8|       0: [VarAccess] language
 #   10|   2: [Interface] Base
 #   11|     1: [Method] getId
+#-----|       1: (Annotations)
+#    0|         1: [Annotation] NotNull
 #   11|       3: [TypeAccess] String
 #   14|   3: [Class] X
+#-----|     -3: (Annotations)
+#   14|       1: [Annotation] Serializable
 #    0|     1: [Constructor] X
+#-----|       1: (Annotations)
+#    0|         1: [Annotation] Deprecated
+#    0|           1: [StringLiteral] "This synthesized declaration should not be used directly"
+#    0|           2: [Annotation] ReplaceWith
+#    0|             1: [StringLiteral] ""
+#    0|             2: [ArrayInit] {...}
+#    0|           3: [VarAccess] DeprecationLevel.HIDDEN
+#    0|             -1: [TypeAccess] DeprecationLevel
+#    0|         2: [Annotation] NotNull
 #-----|       4: (Parameters)
 #    0|         0: [Parameter] seen1
 #    0|           0: [TypeAccess] int
@@ -530,13 +602,21 @@ app/src/main/kotlin/testProject/App.kt:
 #   14|                       0: [TypeAccess] X
 #   14|                   1: [VarAccess] id
 #    0|     2: [Method] write$Self
+#-----|       1: (Annotations)
+#    0|         1: [Annotation] JvmStatic
 #    0|       3: [TypeAccess] Unit
 #-----|       4: (Parameters)
 #    0|         0: [Parameter] self
+#-----|           -1: (Annotations)
+#    0|             1: [Annotation] NotNull
 #    0|           0: [TypeAccess] X
 #    0|         1: [Parameter] output
+#-----|           -1: (Annotations)
+#    0|             1: [Annotation] NotNull
 #    0|           0: [TypeAccess] CompositeEncoder
 #    0|         2: [Parameter] serialDesc
+#-----|           -1: (Annotations)
+#    0|             1: [Annotation] NotNull
 #    0|           0: [TypeAccess] SerialDescriptor
 #   14|       5: [BlockStmt] { ... }
 #   14|         0: [ExprStmt] <Expr>;
@@ -565,9 +645,19 @@ app/src/main/kotlin/testProject/App.kt:
 #   14|                   2: [MethodAccess] getId(...)
 #   14|                     -1: [VarAccess] self
 #   14|     3: [Class] $serializer
+#-----|       -3: (Annotations)
+#    0|         1: [Annotation] Deprecated
+#    0|           1: [StringLiteral] "This synthesized declaration should not be used directly"
+#    0|           2: [Annotation] ReplaceWith
+#    0|             1: [StringLiteral] ""
+#    0|             2: [ArrayInit] {...}
+#    0|           3: [VarAccess] DeprecationLevel.HIDDEN
+#    0|             -1: [TypeAccess] DeprecationLevel
 #    0|       1: [FieldDeclaration] SerialDescriptor descriptor;
 #    0|         -1: [TypeAccess] SerialDescriptor
 #    0|       2: [Method] childSerializers
+#-----|         1: (Annotations)
+#    0|           1: [Annotation] NotNull
 #    0|         3: [TypeAccess] KSerializer<?>[]
 #    0|           0: [TypeAccess] KSerializer<?>
 #    0|             0: [WildcardTypeAccess] ? ...
@@ -578,9 +668,13 @@ app/src/main/kotlin/testProject/App.kt:
 #   14|               -1: [TypeAccess] KSerializer<?>
 #   14|               0: [IntegerLiteral] 1
 #    0|       3: [Method] deserialize
+#-----|         1: (Annotations)
+#    0|           1: [Annotation] NotNull
 #    0|         3: [TypeAccess] X
 #-----|         4: (Parameters)
 #    0|           0: [Parameter] decoder
+#-----|             -1: (Annotations)
+#    0|               1: [Annotation] NotNull
 #    0|             0: [TypeAccess] Decoder
 #   14|         5: [BlockStmt] { ... }
 #   14|           0: [LocalVariableDeclStmt] var ...;
@@ -680,6 +774,8 @@ app/src/main/kotlin/testProject/App.kt:
 #   14|               1: [VarAccess] tmp4_local0
 #   14|               2: [NullLiteral] null
 #    0|       4: [Method] getDescriptor
+#-----|         1: (Annotations)
+#    0|           1: [Annotation] NotNull
 #    0|         3: [TypeAccess] SerialDescriptor
 #    0|         5: [BlockStmt] { ... }
 #    0|           0: [ReturnStmt] return ...
@@ -689,8 +785,12 @@ app/src/main/kotlin/testProject/App.kt:
 #    0|         3: [TypeAccess] Unit
 #-----|         4: (Parameters)
 #    0|           0: [Parameter] encoder
+#-----|             -1: (Annotations)
+#    0|               1: [Annotation] NotNull
 #    0|             0: [TypeAccess] Encoder
 #    0|           1: [Parameter] value
+#-----|             -1: (Annotations)
+#    0|               1: [Annotation] NotNull
 #    0|             0: [TypeAccess] X
 #   14|         5: [BlockStmt] { ... }
 #   14|           0: [LocalVariableDeclStmt] var ...;
@@ -713,6 +813,8 @@ app/src/main/kotlin/testProject/App.kt:
 #   14|               -1: [VarAccess] tmp1_output
 #   14|               0: [VarAccess] tmp0_desc
 #   14|       6: [Constructor] $serializer
+#-----|         1: (Annotations)
+#    0|           1: [Annotation] NotNull
 #   14|         5: [BlockStmt] { ... }
 #   14|           0: [SuperConstructorInvocationStmt] super(...)
 #   14|           1: [BlockStmt] { ... }
@@ -746,16 +848,22 @@ app/src/main/kotlin/testProject/App.kt:
 #   14|                 0: [TypeAccess] GeneratedSerializer
 #   14|     4: [Class] Companion
 #    0|       1: [Method] serializer
+#-----|         1: (Annotations)
+#    0|           1: [Annotation] NotNull
 #    0|         3: [TypeAccess] KSerializer<X>
 #    0|           0: [TypeAccess] X
 #   14|         5: [BlockStmt] { ... }
 #   14|           0: [ReturnStmt] return ...
 #   14|             0: [VarAccess] INSTANCE
 #   14|       2: [Constructor] Companion
+#-----|         1: (Annotations)
+#    0|           1: [Annotation] NotNull
 #   14|         5: [BlockStmt] { ... }
 #   14|           0: [SuperConstructorInvocationStmt] super(...)
 #   14|           1: [BlockStmt] { ... }
 #   15|     5: [Constructor] X
+#-----|       1: (Annotations)
+#    0|         1: [Annotation] NotNull
 #   14|       5: [BlockStmt] { ... }
 #   14|         0: [SuperConstructorInvocationStmt] super(...)
 #   15|         1: [BlockStmt] { ... }
@@ -766,6 +874,8 @@ app/src/main/kotlin/testProject/App.kt:
 #   16|       -1: [TypeAccess] String
 #   16|       0: [StringLiteral] "X"
 #   16|     7: [Method] getId
+#-----|       1: (Annotations)
+#    0|         1: [Annotation] NotNull
 #   16|       3: [TypeAccess] String
 #   16|       5: [BlockStmt] { ... }
 #   16|         0: [ReturnStmt] return ...
diff --git a/java/ql/integration-tests/all-platforms/kotlin/repeatable-annotations/test.expected b/java/ql/integration-tests/all-platforms/kotlin/repeatable-annotations/test.expected
index 7bda6ceff16..6ae3379e99f 100644
--- a/java/ql/integration-tests/all-platforms/kotlin/repeatable-annotations/test.expected
+++ b/java/ql/integration-tests/all-platforms/kotlin/repeatable-annotations/test.expected
@@ -3,11 +3,11 @@
 | JavaUser.java:9:14:9:21 | JavaUser | out2/JavaUser.class:0:0:0:0 | JavaDefinedContainer | value | out2/JavaUser.class:0:0:0:0 | {...} |
 | JavaUser.java:9:14:9:21 | JavaUser | out2/JavaUser.class:0:0:0:0 | KtDefinedContainer | value | out2/JavaUser.class:0:0:0:0 | {...} |
 | out/ExplicitContainerRepeatable.class:0:0:0:0 | ExplicitContainerRepeatable | out/ExplicitContainerRepeatable.class:0:0:0:0 | Repeatable | value | out/ExplicitContainerRepeatable.class:0:0:0:0 | KtDefinedContainer.class |
-| out/ExplicitContainerRepeatable.class:0:0:0:0 | ExplicitContainerRepeatable | out/ExplicitContainerRepeatable.class:0:0:0:0 | Retention | value | out/ExplicitContainerRepeatable.class:0:0:0:0 | RetentionPolicy.RUNTIME |
+| out/ExplicitContainerRepeatable.class:0:0:0:0 | ExplicitContainerRepeatable | out/ExplicitContainerRepeatable.class:0:0:0:0 | Retention | value | out/ExplicitContainerRepeatable.class:0:0:0:0 | RUNTIME |
 | out/JavaDefinedRepeatable.class:0:0:0:0 | JavaDefinedRepeatable | out/JavaDefinedRepeatable.class:0:0:0:0 | Repeatable | value | out/JavaDefinedRepeatable.class:0:0:0:0 | JavaDefinedContainer.class |
-| out/KtDefinedContainer.class:0:0:0:0 | KtDefinedContainer | out/KtDefinedContainer.class:0:0:0:0 | Retention | value | out/KtDefinedContainer.class:0:0:0:0 | RetentionPolicy.RUNTIME |
+| out/KtDefinedContainer.class:0:0:0:0 | KtDefinedContainer | out/KtDefinedContainer.class:0:0:0:0 | Retention | value | out/KtDefinedContainer.class:0:0:0:0 | RUNTIME |
 | out/LibRepeatable.class:0:0:0:0 | LibRepeatable | out/LibRepeatable.class:0:0:0:0 | Repeatable | value | out/LibRepeatable.class:0:0:0:0 | Container.class |
-| out/LibRepeatable.class:0:0:0:0 | LibRepeatable | out/LibRepeatable.class:0:0:0:0 | Retention | value | out/LibRepeatable.class:0:0:0:0 | RetentionPolicy.RUNTIME |
+| out/LibRepeatable.class:0:0:0:0 | LibRepeatable | out/LibRepeatable.class:0:0:0:0 | Retention | value | out/LibRepeatable.class:0:0:0:0 | RUNTIME |
 | test.kt:1:1:2:43 | LocalRepeatable | test.kt:0:0:0:0 | Repeatable | value | test.kt:0:0:0:0 | Container.class |
 | test.kt:1:1:2:43 | LocalRepeatable | test.kt:0:0:0:0 | Retention | value | test.kt:0:0:0:0 | RetentionPolicy.RUNTIME |
 | test.kt:4:1:12:21 | User | test.kt:0:0:0:0 | Container | value | test.kt:0:0:0:0 | {...} |

From f5dc5155f93209156643f1f770e83e70ccbf1c32 Mon Sep 17 00:00:00 2001
From: Chris Smowton <smowton@github.com>
Date: Wed, 30 Nov 2022 17:40:41 +0000
Subject: [PATCH 1249/1420] Don't introduce @NotNull on Kotlin methods that
 already have that annotation

This usually can't happen, but delegates pointing at Java appear to be synthesised with this normally-hidden annotation
---
 .../src/main/kotlin/KotlinFileExtractor.kt       | 11 ++++++++---
 .../AnnotatedInterface.java                      | 10 ++++++++++
 .../AnnotatedMethods.java                        |  2 +-
 .../kotlin/nullability-annotations/JavaUser.java |  3 ++-
 .../kotlin/nullability-annotations/ktUser.kt     |  2 ++
 .../kotlin/nullability-annotations/test.expected | 16 ++++++++++++++++
 .../kotlin/nullability-annotations/test.py       |  2 +-
 7 files changed, 40 insertions(+), 6 deletions(-)
 create mode 100644 java/ql/integration-tests/all-platforms/kotlin/nullability-annotations/AnnotatedInterface.java

diff --git a/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt b/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt
index d0609ec3ab7..1840014e435 100644
--- a/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt
+++ b/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt
@@ -1366,14 +1366,19 @@ open class KotlinFileExtractor(
         if (t !is IrSimpleType)
             return null
 
+        fun hasExistingAnnotation(name: FqName) =
+            existingAnnotations.any { existing -> existing.type.classFqName == name }
+
         return if (declOrigin == IrDeclarationOrigin.IR_EXTERNAL_JAVA_DECLARATION_STUB) {
             // Java declaration: restore a NotNull or Nullable annotation if the original Java member had one but the Kotlin compiler removed it.
             javaAnnotations?.mapNotNull { it.classId?.asSingleFqName() }
             ?.singleOrNull { NOT_NULL_ANNOTATIONS.contains(it) || NULLABLE_ANNOTATIONS.contains(it) }
-            ?.takeUnless { existingAnnotations.any { existing -> existing.type.classFqName == it } }
+            ?.takeUnless { hasExistingAnnotation(it) }
         } else {
-            // Kotlin declaration: add a NotNull annotation to a non-nullable non-primitive type.
-            JvmAnnotationNames.JETBRAINS_NOT_NULL_ANNOTATION.takeUnless { t.isNullable() || primitiveTypeMapping.getPrimitiveInfo(t) != null }
+            // Kotlin declaration: add a NotNull annotation to a non-nullable non-primitive type, unless one is already present.
+            // Usually Kotlin declarations can't have a manual `@NotNull`, but this happens at least when delegating members are
+            // synthesised and inherit the annotation from the delegate (which given it has @NotNull, is likely written in Java)
+            JvmAnnotationNames.JETBRAINS_NOT_NULL_ANNOTATION.takeUnless { t.isNullable() || primitiveTypeMapping.getPrimitiveInfo(t) != null || hasExistingAnnotation(it) }
         }
     }
 
diff --git a/java/ql/integration-tests/all-platforms/kotlin/nullability-annotations/AnnotatedInterface.java b/java/ql/integration-tests/all-platforms/kotlin/nullability-annotations/AnnotatedInterface.java
new file mode 100644
index 00000000000..db327383a95
--- /dev/null
+++ b/java/ql/integration-tests/all-platforms/kotlin/nullability-annotations/AnnotatedInterface.java
@@ -0,0 +1,10 @@
+import org.jetbrains.annotations.*;
+import zpkg.A;
+
+public interface AnnotatedInterface {
+
+  public @A @NotNull String notNullAnnotated(@A @NotNull String param);
+
+  public @A @Nullable String nullableAnnotated(@A @Nullable String param);
+
+}
diff --git a/java/ql/integration-tests/all-platforms/kotlin/nullability-annotations/AnnotatedMethods.java b/java/ql/integration-tests/all-platforms/kotlin/nullability-annotations/AnnotatedMethods.java
index fddcf0972b0..16671f5468f 100644
--- a/java/ql/integration-tests/all-platforms/kotlin/nullability-annotations/AnnotatedMethods.java
+++ b/java/ql/integration-tests/all-platforms/kotlin/nullability-annotations/AnnotatedMethods.java
@@ -1,7 +1,7 @@
 import org.jetbrains.annotations.*;
 import zpkg.A;
 
-public class AnnotatedMethods {
+public class AnnotatedMethods implements AnnotatedInterface {
 
   public @A @NotNull String notNullAnnotated(@A @NotNull String param) { return param; }
 
diff --git a/java/ql/integration-tests/all-platforms/kotlin/nullability-annotations/JavaUser.java b/java/ql/integration-tests/all-platforms/kotlin/nullability-annotations/JavaUser.java
index a6f9b8b1053..6031901c3a3 100644
--- a/java/ql/integration-tests/all-platforms/kotlin/nullability-annotations/JavaUser.java
+++ b/java/ql/integration-tests/all-platforms/kotlin/nullability-annotations/JavaUser.java
@@ -1,7 +1,8 @@
 public class JavaUser {
 
-  public static void test(KotlinAnnotatedMethods km) {
+  public static void test(KotlinAnnotatedMethods km, KotlinDelegate kd) {
     km.f(null);
+    kd.notNullAnnotated("Hello world");
   }
 
 }
diff --git a/java/ql/integration-tests/all-platforms/kotlin/nullability-annotations/ktUser.kt b/java/ql/integration-tests/all-platforms/kotlin/nullability-annotations/ktUser.kt
index 37c38850757..06c1d580503 100644
--- a/java/ql/integration-tests/all-platforms/kotlin/nullability-annotations/ktUser.kt
+++ b/java/ql/integration-tests/all-platforms/kotlin/nullability-annotations/ktUser.kt
@@ -5,3 +5,5 @@ class KotlinAnnotatedMethods {
   @A fun f(@A m: AnnotatedMethods): String = m.notNullAnnotated("hello") + m.nullableAnnotated("world")!!
 
 }
+
+class KotlinDelegate(c: AnnotatedMethods) : AnnotatedInterface by c { }
diff --git a/java/ql/integration-tests/all-platforms/kotlin/nullability-annotations/test.expected b/java/ql/integration-tests/all-platforms/kotlin/nullability-annotations/test.expected
index 0776438cca7..89eb06d26c3 100644
--- a/java/ql/integration-tests/all-platforms/kotlin/nullability-annotations/test.expected
+++ b/java/ql/integration-tests/all-platforms/kotlin/nullability-annotations/test.expected
@@ -1,3 +1,11 @@
+| AnnotatedInterface.java:6:29:6:44 | notNullAnnotated | parameter | AnnotatedInterface.java:6:46:6:47 | A |
+| AnnotatedInterface.java:6:29:6:44 | notNullAnnotated | parameter | AnnotatedInterface.java:6:49:6:56 | NotNull |
+| AnnotatedInterface.java:6:29:6:44 | notNullAnnotated | return value | AnnotatedInterface.java:6:10:6:11 | A |
+| AnnotatedInterface.java:6:29:6:44 | notNullAnnotated | return value | AnnotatedInterface.java:6:13:6:20 | NotNull |
+| AnnotatedInterface.java:8:30:8:46 | nullableAnnotated | parameter | AnnotatedInterface.java:8:48:8:49 | A |
+| AnnotatedInterface.java:8:30:8:46 | nullableAnnotated | parameter | AnnotatedInterface.java:8:51:8:59 | Nullable |
+| AnnotatedInterface.java:8:30:8:46 | nullableAnnotated | return value | AnnotatedInterface.java:8:10:8:11 | A |
+| AnnotatedInterface.java:8:30:8:46 | nullableAnnotated | return value | AnnotatedInterface.java:8:13:8:21 | Nullable |
 | AnnotatedMethods.java:6:29:6:44 | notNullAnnotated | parameter | AnnotatedMethods.java:6:46:6:47 | A |
 | AnnotatedMethods.java:6:29:6:44 | notNullAnnotated | parameter | AnnotatedMethods.java:6:49:6:56 | NotNull |
 | AnnotatedMethods.java:6:29:6:44 | notNullAnnotated | return value | AnnotatedMethods.java:6:10:6:11 | A |
@@ -6,6 +14,14 @@
 | AnnotatedMethods.java:8:30:8:46 | nullableAnnotated | parameter | AnnotatedMethods.java:8:51:8:59 | Nullable |
 | AnnotatedMethods.java:8:30:8:46 | nullableAnnotated | return value | AnnotatedMethods.java:8:10:8:11 | A |
 | AnnotatedMethods.java:8:30:8:46 | nullableAnnotated | return value | AnnotatedMethods.java:8:13:8:21 | Nullable |
+| ktUser.kt:0:0:0:0 | notNullAnnotated | parameter | ktUser.kt:0:0:0:0 | A |
+| ktUser.kt:0:0:0:0 | notNullAnnotated | parameter | ktUser.kt:0:0:0:0 | NotNull |
+| ktUser.kt:0:0:0:0 | notNullAnnotated | return value | ktUser.kt:0:0:0:0 | A |
+| ktUser.kt:0:0:0:0 | notNullAnnotated | return value | ktUser.kt:0:0:0:0 | NotNull |
+| ktUser.kt:0:0:0:0 | nullableAnnotated | parameter | ktUser.kt:0:0:0:0 | A |
+| ktUser.kt:0:0:0:0 | nullableAnnotated | parameter | ktUser.kt:0:0:0:0 | Nullable |
+| ktUser.kt:0:0:0:0 | nullableAnnotated | return value | ktUser.kt:0:0:0:0 | A |
+| ktUser.kt:0:0:0:0 | nullableAnnotated | return value | ktUser.kt:0:0:0:0 | Nullable |
 | ktUser.kt:5:6:5:105 | f | parameter | ktUser.kt:0:0:0:0 | NotNull |
 | ktUser.kt:5:6:5:105 | f | parameter | ktUser.kt:5:12:5:13 | A |
 | ktUser.kt:5:6:5:105 | f | return value | ktUser.kt:0:0:0:0 | NotNull |
diff --git a/java/ql/integration-tests/all-platforms/kotlin/nullability-annotations/test.py b/java/ql/integration-tests/all-platforms/kotlin/nullability-annotations/test.py
index 02ba32b6675..4072b3d454e 100644
--- a/java/ql/integration-tests/all-platforms/kotlin/nullability-annotations/test.py
+++ b/java/ql/integration-tests/all-platforms/kotlin/nullability-annotations/test.py
@@ -3,4 +3,4 @@ from create_database_utils import *
 os.mkdir('out')
 os.mkdir('out2')
 os.mkdir('out3')
-run_codeql_database_create(["javac AnnotatedMethods.java zpkg/A.java org/jetbrains/annotations/NotNull.java org/jetbrains/annotations/Nullable.java -d out", "kotlinc ktUser.kt -cp out -d out2", "javac JavaUser.java -cp out:out2 -d out3"], lang="java")
+run_codeql_database_create(["javac AnnotatedInterface.java AnnotatedMethods.java zpkg/A.java org/jetbrains/annotations/NotNull.java org/jetbrains/annotations/Nullable.java -d out", "kotlinc ktUser.kt -cp out -d out2", "javac JavaUser.java -cp out:out2 -d out3"], lang="java")

From 78234c52fd9b694b8bafff38e347310a61700ddb Mon Sep 17 00:00:00 2001
From: Chris Smowton <smowton@github.com>
Date: Thu, 1 Dec 2022 10:13:56 +0000
Subject: [PATCH 1250/1420] Ensure constructors don't get nullability
 annotations

---
 .../kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt | 6 +++++-
 1 file changed, 5 insertions(+), 1 deletion(-)

diff --git a/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt b/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt
index 1840014e435..f223a8f66e1 100644
--- a/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt
+++ b/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt
@@ -1484,7 +1484,11 @@ open class KotlinFileExtractor(
                 linesOfCode?.linesOfCodeInDeclaration(f, id)
 
                 if (extractAnnotations) {
-                    val extraAnnotations = listOfNotNull(getNullabilityAnnotation(f.returnType, f.origin, f.annotations, getJavaCallable(f)?.annotations))
+                    val extraAnnotations =
+                        if (f.symbol is IrConstructorSymbol)
+                            listOf()
+                        else
+                            listOfNotNull(getNullabilityAnnotation(f.returnType, f.origin, f.annotations, getJavaCallable(f)?.annotations))
                     extractAnnotations(f, f.annotations + extraAnnotations, id, extractMethodAndParameterTypeAccesses)
                 }
 

From 251513c1d37fbf6ce155420c401c894c6ae439b5 Mon Sep 17 00:00:00 2001
From: Chris Smowton <smowton@github.com>
Date: Thu, 1 Dec 2022 10:33:59 +0000
Subject: [PATCH 1251/1420] Format ql

---
 java/ql/lib/semmle/code/java/Annotation.qll | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

diff --git a/java/ql/lib/semmle/code/java/Annotation.qll b/java/ql/lib/semmle/code/java/Annotation.qll
index 7e495c4ee2d..e61f4693aac 100644
--- a/java/ql/lib/semmle/code/java/Annotation.qll
+++ b/java/ql/lib/semmle/code/java/Annotation.qll
@@ -37,7 +37,9 @@ class Annotation extends @annotation, Expr {
   }
 
   /** Gets the annotation type declaration for this annotation. */
-  override AnnotationType getType() { result = Expr.super.getType().(AnnotationType).getSourceDeclaration() }
+  override AnnotationType getType() {
+    result = Expr.super.getType().(AnnotationType).getSourceDeclaration()
+  }
 
   /** Gets the annotation element with the specified `name`. */
   AnnotationElement getAnnotationElement(string name) {

From 93ea433c49407e1a37ef4e8633cfdbfa180a1e7e Mon Sep 17 00:00:00 2001
From: Chris Smowton <smowton@github.com>
Date: Wed, 7 Dec 2022 18:35:57 +0000
Subject: [PATCH 1252/1420] Add missing imports

---
 java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt b/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt
index f223a8f66e1..252bd97fa33 100644
--- a/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt
+++ b/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt
@@ -29,12 +29,14 @@ import org.jetbrains.kotlin.ir.util.constructors
 import org.jetbrains.kotlin.ir.util.fqNameWhenAvailable
 import org.jetbrains.kotlin.ir.util.hasAnnotation
 import org.jetbrains.kotlin.ir.util.hasInterfaceParent
+import org.jetbrains.kotlin.ir.util.isAnnotationClass
 import org.jetbrains.kotlin.ir.util.isAnonymousObject
 import org.jetbrains.kotlin.ir.util.isFakeOverride
 import org.jetbrains.kotlin.ir.util.isFunctionOrKFunction
 import org.jetbrains.kotlin.ir.util.isInterface
 import org.jetbrains.kotlin.ir.util.isLocal
 import org.jetbrains.kotlin.ir.util.isNonCompanionObject
+import org.jetbrains.kotlin.ir.util.isObject
 import org.jetbrains.kotlin.ir.util.isSuspend
 import org.jetbrains.kotlin.ir.util.isSuspendFunctionOrKFunction
 import org.jetbrains.kotlin.ir.util.isVararg

From a161d79cd84e9dd86c73c4be4e02dda6582b5aaf Mon Sep 17 00:00:00 2001
From: Chris Smowton <smowton@github.com>
Date: Wed, 7 Dec 2022 18:48:01 +0000
Subject: [PATCH 1253/1420] Remove no-longer-needed expected diagnostics

---
 java/ql/test/kotlin/library-tests/annotation_classes/def.kt | 3 ---
 1 file changed, 3 deletions(-)

diff --git a/java/ql/test/kotlin/library-tests/annotation_classes/def.kt b/java/ql/test/kotlin/library-tests/annotation_classes/def.kt
index 2fb107c1263..f499d1026fc 100644
--- a/java/ql/test/kotlin/library-tests/annotation_classes/def.kt
+++ b/java/ql/test/kotlin/library-tests/annotation_classes/def.kt
@@ -60,6 +60,3 @@ fun @receiver:Annot0k String.myExtension() { }
 
 @Annot0k
 typealias AAA = Z
-
-// Diagnostic Matches: Incomplete annotation: @kotlin.annotation.Target(%)
-// Diagnostic Matches: Incomplete annotation: @kotlin.jvm.JvmName(%)

From 65dc0dc326fd04e9684d69ff7c8fb6bba14e5ea8 Mon Sep 17 00:00:00 2001
From: Chris Smowton <smowton@github.com>
Date: Fri, 9 Dec 2022 11:17:37 +0000
Subject: [PATCH 1254/1420] Add dummy extensible predicate definition to
 integration test

---
 .../kotlin/annotation-id-consistency/ext/test.model.yml   | 5 +++++
 .../kotlin/annotation-id-consistency/qlpack.yml           | 8 ++++++++
 2 files changed, 13 insertions(+)
 create mode 100644 java/ql/integration-tests/all-platforms/kotlin/annotation-id-consistency/ext/test.model.yml
 create mode 100644 java/ql/integration-tests/all-platforms/kotlin/annotation-id-consistency/qlpack.yml

diff --git a/java/ql/integration-tests/all-platforms/kotlin/annotation-id-consistency/ext/test.model.yml b/java/ql/integration-tests/all-platforms/kotlin/annotation-id-consistency/ext/test.model.yml
new file mode 100644
index 00000000000..5fb4ebb6c1d
--- /dev/null
+++ b/java/ql/integration-tests/all-platforms/kotlin/annotation-id-consistency/ext/test.model.yml
@@ -0,0 +1,5 @@
+extensions:
+  - addsTo:
+      pack: integrationtest-annotation-id-consistency
+      extensible: extNegativeSummaryModel
+    data: []
diff --git a/java/ql/integration-tests/all-platforms/kotlin/annotation-id-consistency/qlpack.yml b/java/ql/integration-tests/all-platforms/kotlin/annotation-id-consistency/qlpack.yml
new file mode 100644
index 00000000000..a0c9cdc98a3
--- /dev/null
+++ b/java/ql/integration-tests/all-platforms/kotlin/annotation-id-consistency/qlpack.yml
@@ -0,0 +1,8 @@
+name: integrationtest-annotation-id-consistency
+dependencies:
+  codeql/java-all: '*'
+  codeql/java-tests: '*'
+  codeql/java-queries: '*'
+dataExtensions:
+  ext/*.model.yml
+

From 40e902eca948d70f3536bea7a1654e34ebd3135d Mon Sep 17 00:00:00 2001
From: Chris Smowton <smowton@github.com>
Date: Fri, 9 Dec 2022 11:52:28 +0000
Subject: [PATCH 1255/1420] Look through generic annotation types extracted
 from Kotlin

---
 java/ql/lib/semmle/code/java/Annotation.qll | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/java/ql/lib/semmle/code/java/Annotation.qll b/java/ql/lib/semmle/code/java/Annotation.qll
index e61f4693aac..fa010ec88c0 100644
--- a/java/ql/lib/semmle/code/java/Annotation.qll
+++ b/java/ql/lib/semmle/code/java/Annotation.qll
@@ -38,7 +38,7 @@ class Annotation extends @annotation, Expr {
 
   /** Gets the annotation type declaration for this annotation. */
   override AnnotationType getType() {
-    result = Expr.super.getType().(AnnotationType).getSourceDeclaration()
+    result = Expr.super.getType().(Interface).getSourceDeclaration()
   }
 
   /** Gets the annotation element with the specified `name`. */

From b8ed3b7dbf93ed54d7619c5b40a46aa0bb8b0d87 Mon Sep 17 00:00:00 2001
From: Chris Smowton <smowton@github.com>
Date: Fri, 9 Dec 2022 12:57:20 +0000
Subject: [PATCH 1256/1420] Accept annotation test changes

These are notnull annotations that no longer get inappropriately attached to constructors
---
 .../gradle_kotlinx_serialization/PrintAst.expected | 14 --------------
 1 file changed, 14 deletions(-)

diff --git a/java/ql/integration-tests/all-platforms/kotlin/gradle_kotlinx_serialization/PrintAst.expected b/java/ql/integration-tests/all-platforms/kotlin/gradle_kotlinx_serialization/PrintAst.expected
index 9ca1980904d..a81cadccd10 100644
--- a/java/ql/integration-tests/all-platforms/kotlin/gradle_kotlinx_serialization/PrintAst.expected
+++ b/java/ql/integration-tests/all-platforms/kotlin/gradle_kotlinx_serialization/PrintAst.expected
@@ -12,7 +12,6 @@ app/src/main/kotlin/testProject/App.kt:
 #    0|             2: [ArrayInit] {...}
 #    0|           3: [VarAccess] DeprecationLevel.HIDDEN
 #    0|             -1: [TypeAccess] DeprecationLevel
-#    0|         2: [Annotation] NotNull
 #-----|       4: (Parameters)
 #    0|         0: [Parameter] seen1
 #    0|           0: [TypeAccess] int
@@ -445,8 +444,6 @@ app/src/main/kotlin/testProject/App.kt:
 #    7|               -1: [VarAccess] tmp1_output
 #    7|               0: [VarAccess] tmp0_desc
 #    7|       6: [Constructor] $serializer
-#-----|         1: (Annotations)
-#    0|           1: [Annotation] NotNull
 #    7|         5: [BlockStmt] { ... }
 #    7|           0: [SuperConstructorInvocationStmt] super(...)
 #    7|           1: [BlockStmt] { ... }
@@ -493,14 +490,10 @@ app/src/main/kotlin/testProject/App.kt:
 #    7|           0: [ReturnStmt] return ...
 #    7|             0: [VarAccess] INSTANCE
 #    7|       2: [Constructor] Companion
-#-----|         1: (Annotations)
-#    0|           1: [Annotation] NotNull
 #    7|         5: [BlockStmt] { ... }
 #    7|           0: [SuperConstructorInvocationStmt] super(...)
 #    7|           1: [BlockStmt] { ... }
 #    8|     12: [Constructor] Project
-#-----|       1: (Annotations)
-#    0|         1: [Annotation] NotNull
 #-----|       4: (Parameters)
 #    8|         0: [Parameter] name
 #-----|           -1: (Annotations)
@@ -554,7 +547,6 @@ app/src/main/kotlin/testProject/App.kt:
 #    0|             2: [ArrayInit] {...}
 #    0|           3: [VarAccess] DeprecationLevel.HIDDEN
 #    0|             -1: [TypeAccess] DeprecationLevel
-#    0|         2: [Annotation] NotNull
 #-----|       4: (Parameters)
 #    0|         0: [Parameter] seen1
 #    0|           0: [TypeAccess] int
@@ -813,8 +805,6 @@ app/src/main/kotlin/testProject/App.kt:
 #   14|               -1: [VarAccess] tmp1_output
 #   14|               0: [VarAccess] tmp0_desc
 #   14|       6: [Constructor] $serializer
-#-----|         1: (Annotations)
-#    0|           1: [Annotation] NotNull
 #   14|         5: [BlockStmt] { ... }
 #   14|           0: [SuperConstructorInvocationStmt] super(...)
 #   14|           1: [BlockStmt] { ... }
@@ -856,14 +846,10 @@ app/src/main/kotlin/testProject/App.kt:
 #   14|           0: [ReturnStmt] return ...
 #   14|             0: [VarAccess] INSTANCE
 #   14|       2: [Constructor] Companion
-#-----|         1: (Annotations)
-#    0|           1: [Annotation] NotNull
 #   14|         5: [BlockStmt] { ... }
 #   14|           0: [SuperConstructorInvocationStmt] super(...)
 #   14|           1: [BlockStmt] { ... }
 #   15|     5: [Constructor] X
-#-----|       1: (Annotations)
-#    0|         1: [Annotation] NotNull
 #   14|       5: [BlockStmt] { ... }
 #   14|         0: [SuperConstructorInvocationStmt] super(...)
 #   15|         1: [BlockStmt] { ... }

From ad90e58120348c4d681cc7efadbf97666f0eda7e Mon Sep 17 00:00:00 2001
From: Michael Nebel <michaelnebel@github.com>
Date: Tue, 6 Dec 2022 15:20:49 +0100
Subject: [PATCH 1257/1420] C#: Rename Negative Summary Model to Neutral Model.

---
 .../ext/generated/dotnet_runtime.model.yml    |  2 +-
 .../code/csharp/dataflow/ExternalFlow.qll     | 42 +++++++++----------
 .../dataflow/internal/DataFlowPrivate.qll     |  4 +-
 .../dataflow/internal/FlowSummaryImpl.qll     | 28 ++++++-------
 .../internal/FlowSummaryImplSpecific.qll      |  8 ++--
 .../ql/src/Telemetry/SupportedExternalApis.ql |  2 +-
 .../src/Telemetry/UnsupportedExternalAPIs.ql  |  2 +-
 .../frameworks/UnsupportedExternalAPIs.ql     |  2 +-
 .../CaptureNegativeSummaryModels.ql           |  6 +--
 .../ExtractNegativeSummaries.ql               |  8 ++--
 .../modelgenerator/internal/CaptureModels.qll |  4 +-
 .../internal/CaptureModelsSpecific.qll        |  2 +-
 .../internal/CaptureSummaryFlow.qll           |  6 +--
 .../dataflow/library/FlowSummaries.expected   |  2 +-
 .../dataflow/library/FlowSummaries.ql         |  8 ++--
 .../library/FlowSummariesFiltered.expected    |  2 +-
 .../EntityFramework/FlowSummaries.expected    |  2 +-
 17 files changed, 62 insertions(+), 68 deletions(-)

diff --git a/csharp/ql/lib/ext/generated/dotnet_runtime.model.yml b/csharp/ql/lib/ext/generated/dotnet_runtime.model.yml
index 9d4afaacbf7..1bf56eecf70 100644
--- a/csharp/ql/lib/ext/generated/dotnet_runtime.model.yml
+++ b/csharp/ql/lib/ext/generated/dotnet_runtime.model.yml
@@ -10195,7 +10195,7 @@ extensions:
 
   - addsTo:
       pack: codeql/csharp-all
-      extensible: extNegativeSummaryModel
+      extensible: extNeutralModel
     data:
       - ["AssemblyStripper", "AssemblyStripper", "StripAssembly", "(System.String,System.String)", "generated"]
       - ["Generators", "EventSourceGenerator", "Execute", "(Microsoft.CodeAnalysis.GeneratorExecutionContext)", "generated"]
diff --git a/csharp/ql/lib/semmle/code/csharp/dataflow/ExternalFlow.qll b/csharp/ql/lib/semmle/code/csharp/dataflow/ExternalFlow.qll
index f72fa288919..e6e98a9d222 100644
--- a/csharp/ql/lib/semmle/code/csharp/dataflow/ExternalFlow.qll
+++ b/csharp/ql/lib/semmle/code/csharp/dataflow/ExternalFlow.qll
@@ -11,9 +11,9 @@
  *   `namespace; type; subtypes; name; signature; ext; input; kind; provenance`
  * - Summaries:
  *   `namespace; type; subtypes; name; signature; ext; input; output; kind; provenance`
- * - Negative Summaries:
+ * - Neutrals:
  *   `namespace; type; name; signature; provenance`
- *   A negative summary is used to indicate that there is no flow via a callable.
+ *   A neutral is used to indicate that there is no flow via a callable.
  *
  * The interpretation of a row is similar to API-graphs with a left-to-right
  * reading.
@@ -133,16 +133,16 @@ private class SummaryModelCsvInternal extends Unit {
 }
 
 /**
- * DEPRECATED: Define negative summary models as data extensions instead.
+ * DEPRECATED: Define neutral models as data extensions instead.
  *
- * A unit class for adding additional negative summary model rows.
+ * A unit class for adding additional neutral model rows.
  *
- * Extend this class to add additional negative summary definitions.
+ * Extend this class to add additional neutral definitions.
  */
-deprecated class NegativeSummaryModelCsv = NegativeSummaryModelCsvInternal;
+deprecated class NeutralModelCsv = NeutralModelCsvInternal;
 
-private class NegativeSummaryModelCsvInternal extends Unit {
-  /** Holds if `row` specifies a negative summary definition. */
+private class NeutralModelCsvInternal extends Unit {
+  /** Holds if `row` specifies a neutral definition. */
   abstract predicate row(string row);
 }
 
@@ -152,9 +152,7 @@ private predicate summaryModelInternal(string row) { any(SummaryModelCsvInternal
 
 private predicate sinkModelInternal(string row) { any(SinkModelCsvInternal s).row(row) }
 
-private predicate negativeSummaryModelInternal(string row) {
-  any(NegativeSummaryModelCsvInternal s).row(row)
-}
+private predicate neutralModelInternal(string row) { any(NeutralModelCsvInternal s).row(row) }
 
 /**
  * Holds if a source model exists for the given parameters.
@@ -243,17 +241,17 @@ predicate summaryModel(
   extSummaryModel(namespace, type, subtypes, name, signature, ext, input, output, kind, provenance)
 }
 
-/** Holds if a summary model exists indicating there is no flow for the given parameters. */
-extensible predicate extNegativeSummaryModel(
+/** Holds if a model exists indicating there is no flow for the given parameters. */
+extensible predicate extNeutralModel(
   string namespace, string type, string name, string signature, string provenance
 );
 
-/** Holds if a summary model exists indicating there is no flow for the given parameters. */
-predicate negativeSummaryModel(
+/** Holds if a model exists indicating there is no flow for the given parameters. */
+predicate neutralModel(
   string namespace, string type, string name, string signature, string provenance
 ) {
   exists(string row |
-    negativeSummaryModelInternal(row) and
+    neutralModelInternal(row) and
     row.splitAt(";", 0) = namespace and
     row.splitAt(";", 1) = type and
     row.splitAt(";", 2) = name and
@@ -261,7 +259,7 @@ predicate negativeSummaryModel(
     row.splitAt(";", 4) = provenance
   )
   or
-  extNegativeSummaryModel(namespace, type, name, signature, provenance)
+  extNeutralModel(namespace, type, name, signature, provenance)
 }
 
 private predicate relevantNamespace(string namespace) {
@@ -394,7 +392,7 @@ module ModelValidation {
       or
       summaryModelInternal(row) and expect = 10 and pred = "summary"
       or
-      negativeSummaryModelInternal(row) and expect = 5 and pred = "negative summary"
+      neutralModelInternal(row) and expect = 5 and pred = "neutral"
     |
       exists(int cols |
         cols = 1 + max(int n | exists(row.splitAt(";", n))) and
@@ -418,9 +416,9 @@ module ModelValidation {
       summaryModel(namespace, type, _, name, signature, ext, _, _, _, provenance) and
       pred = "summary"
       or
-      negativeSummaryModel(namespace, type, name, signature, provenance) and
+      neutralModel(namespace, type, name, signature, provenance) and
       ext = "" and
-      pred = "negative summary"
+      pred = "neutral"
     |
       not namespace.regexpMatch("[a-zA-Z0-9_\\.]+") and
       result = "Dubious namespace \"" + namespace + "\" in " + pred + " model."
@@ -461,7 +459,7 @@ private predicate elementSpec(
   or
   summaryModel(namespace, type, subtypes, name, signature, ext, _, _, _, _)
   or
-  negativeSummaryModel(namespace, type, name, signature, _) and ext = "" and subtypes = false
+  neutralModel(namespace, type, name, signature, _) and ext = "" and subtypes = false
 }
 
 private predicate elementSpec(
@@ -595,7 +593,7 @@ private Element interpretElement0(
   )
 }
 
-/** Gets the source/sink/summary/negativesummary element corresponding to the supplied parameters. */
+/** Gets the source/sink/summary/neutral element corresponding to the supplied parameters. */
 Element interpretElement(
   string namespace, string type, boolean subtypes, string name, string signature, string ext
 ) {
diff --git a/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowPrivate.qll b/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowPrivate.qll
index 845d5bd378a..12dd22f24ff 100644
--- a/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowPrivate.qll
+++ b/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowPrivate.qll
@@ -2321,8 +2321,8 @@ module Csv {
     )
   }
 
-  /** Computes the first 4 columns for negative CSV rows of `c`. */
-  string asPartialNegativeModel(DotNet::Callable c) {
+  /** Computes the first 4 columns for neutral CSV rows of `c`. */
+  string asPartialNeutralModel(DotNet::Callable c) {
     exists(string namespace, string type, string name, string parameters |
       partialModel(c, namespace, type, name, parameters) and
       result =
diff --git a/csharp/ql/lib/semmle/code/csharp/dataflow/internal/FlowSummaryImpl.qll b/csharp/ql/lib/semmle/code/csharp/dataflow/internal/FlowSummaryImpl.qll
index 6d61d1b4799..61c541d8882 100644
--- a/csharp/ql/lib/semmle/code/csharp/dataflow/internal/FlowSummaryImpl.qll
+++ b/csharp/ql/lib/semmle/code/csharp/dataflow/internal/FlowSummaryImpl.qll
@@ -246,14 +246,14 @@ module Public {
     predicate isAutoGenerated() { none() }
   }
 
-  /** A callable with a flow summary stating there is no flow via the callable. */
-  class NegativeSummarizedCallable extends SummarizedCallableBase {
-    NegativeSummarizedCallable() { negativeSummaryElement(this, _) }
+  /** A callable where there is no flow via the callable. */
+  class NeutralCallable extends SummarizedCallableBase {
+    NeutralCallable() { neutralElement(this, _) }
 
     /**
-     *  Holds if the negative summary is auto generated.
+     *  Holds if the neutral is auto generated.
      */
-    predicate isAutoGenerated() { negativeSummaryElement(this, true) }
+    predicate isAutoGenerated() { neutralElement(this, true) }
   }
 }
 
@@ -1161,9 +1161,9 @@ module Private {
       string toString() { result = super.toString() }
     }
 
-    /** A flow summary to include in the `negativeSummary/1` query predicate. */
-    abstract class RelevantNegativeSummarizedCallable instanceof NegativeSummarizedCallable {
-      /** Gets the string representation of this callable used by `summary/1`. */
+    /** A model to include in the `neutral/1` query predicate. */
+    abstract class RelevantNeutralCallable instanceof NeutralCallable {
+      /** Gets the string representation of this callable used by `neutral/1`. */
       abstract string getCallableCsv();
 
       string toString() { result = super.toString() }
@@ -1180,13 +1180,13 @@ module Private {
       if c.isAutoGenerated() then result = "generated" else result = "manual"
     }
 
-    private string renderProvenanceNegative(NegativeSummarizedCallable c) {
+    private string renderProvenanceNeutral(NeutralCallable c) {
       if c.isAutoGenerated() then result = "generated" else result = "manual"
     }
 
     /**
      * A query predicate for outputting flow summaries in semi-colon separated format in QL tests.
-     * The syntax is: "namespace;type;overrides;name;signature;ext;inputspec;outputspec;kind;provenance"",
+     * The syntax is: "namespace;type;overrides;name;signature;ext;inputspec;outputspec;kind;provenance",
      * ext is hardcoded to empty.
      */
     query predicate summary(string csv) {
@@ -1205,14 +1205,14 @@ module Private {
     }
 
     /**
-     * Holds if a negative flow summary `csv` exists (semi-colon separated format). Used for testing purposes.
+     * Holds if a neutral model `csv` exists (semi-colon separated format). Used for testing purposes.
      * The syntax is: "namespace;type;name;signature;provenance"",
      */
-    query predicate negativeSummary(string csv) {
-      exists(RelevantNegativeSummarizedCallable c |
+    query predicate neutral(string csv) {
+      exists(RelevantNeutralCallable c |
         csv =
           c.getCallableCsv() // Callable information
-            + renderProvenanceNegative(c) // provenance
+            + renderProvenanceNeutral(c) // provenance
       )
     }
   }
diff --git a/csharp/ql/lib/semmle/code/csharp/dataflow/internal/FlowSummaryImplSpecific.qll b/csharp/ql/lib/semmle/code/csharp/dataflow/internal/FlowSummaryImplSpecific.qll
index 93cd70f63c2..44baca91929 100644
--- a/csharp/ql/lib/semmle/code/csharp/dataflow/internal/FlowSummaryImplSpecific.qll
+++ b/csharp/ql/lib/semmle/code/csharp/dataflow/internal/FlowSummaryImplSpecific.qll
@@ -121,12 +121,12 @@ predicate summaryElement(Callable c, string input, string output, string kind, b
 }
 
 /**
- * Holds if a negative flow summary exists for `c`, which means that there is no
- * flow through `c`. The flag `generated` states whether the summary is autogenerated.
+ * Holds if a neutral model exists for `c`, which means that there is no
+ * flow through `c`. The flag `generated` states whether the neutral model is autogenerated.
  */
-predicate negativeSummaryElement(Callable c, boolean generated) {
+predicate neutralElement(Callable c, boolean generated) {
   exists(string namespace, string type, string name, string signature, string provenance |
-    negativeSummaryModel(namespace, type, name, signature, provenance) and
+    neutralModel(namespace, type, name, signature, provenance) and
     generated = isGenerated(provenance) and
     c = interpretElement(namespace, type, false, name, signature, "")
   )
diff --git a/csharp/ql/src/Telemetry/SupportedExternalApis.ql b/csharp/ql/src/Telemetry/SupportedExternalApis.ql
index 039f2a24677..7bf48bfe4a4 100644
--- a/csharp/ql/src/Telemetry/SupportedExternalApis.ql
+++ b/csharp/ql/src/Telemetry/SupportedExternalApis.ql
@@ -15,7 +15,7 @@ private predicate relevant(ExternalApi api) {
   not api.isUninteresting() and
   (
     api.isSupported() or
-    api instanceof FlowSummaryImpl::Public::NegativeSummarizedCallable
+    api instanceof FlowSummaryImpl::Public::NeutralCallable
   )
 }
 
diff --git a/csharp/ql/src/Telemetry/UnsupportedExternalAPIs.ql b/csharp/ql/src/Telemetry/UnsupportedExternalAPIs.ql
index 618f26e6636..9466ed8c1d1 100644
--- a/csharp/ql/src/Telemetry/UnsupportedExternalAPIs.ql
+++ b/csharp/ql/src/Telemetry/UnsupportedExternalAPIs.ql
@@ -14,7 +14,7 @@ private import ExternalApi
 private predicate relevant(ExternalApi api) {
   not api.isUninteresting() and
   not api.isSupported() and
-  not api instanceof FlowSummaryImpl::Public::NegativeSummarizedCallable
+  not api instanceof FlowSummaryImpl::Public::NeutralCallable
 }
 
 from string info, int usages
diff --git a/csharp/ql/src/meta/frameworks/UnsupportedExternalAPIs.ql b/csharp/ql/src/meta/frameworks/UnsupportedExternalAPIs.ql
index 4eef46ef86b..3e9802f60af 100644
--- a/csharp/ql/src/meta/frameworks/UnsupportedExternalAPIs.ql
+++ b/csharp/ql/src/meta/frameworks/UnsupportedExternalAPIs.ql
@@ -18,5 +18,5 @@ where
   c.getTarget().getUnboundDeclaration() = api and
   not api.isUninteresting() and
   not api.isSupported() and
-  not api instanceof FlowSummaryImpl::Public::NegativeSummarizedCallable
+  not api instanceof FlowSummaryImpl::Public::NeutralCallable
 select c, "Call to unsupported external API $@.", api, api.toString()
diff --git a/csharp/ql/src/utils/model-generator/CaptureNegativeSummaryModels.ql b/csharp/ql/src/utils/model-generator/CaptureNegativeSummaryModels.ql
index 9188b54ef40..9cf2b81ba7c 100644
--- a/csharp/ql/src/utils/model-generator/CaptureNegativeSummaryModels.ql
+++ b/csharp/ql/src/utils/model-generator/CaptureNegativeSummaryModels.ql
@@ -1,8 +1,8 @@
 /**
- * @name Capture negative summary models.
- * @description Finds negative summary models to be used by other queries.
+ * @name Capture neutral models.
+ * @description Finds neutral models to be used by other queries.
  * @kind diagnostic
- * @id cs/utils/model-generator/negative-summary-models
+ * @id cs/utils/model-generator/neutral-models
  * @tags model-generator
  */
 
diff --git a/csharp/ql/src/utils/modelconverter/ExtractNegativeSummaries.ql b/csharp/ql/src/utils/modelconverter/ExtractNegativeSummaries.ql
index 53681f5f684..5ca6ef9579c 100644
--- a/csharp/ql/src/utils/modelconverter/ExtractNegativeSummaries.ql
+++ b/csharp/ql/src/utils/modelconverter/ExtractNegativeSummaries.ql
@@ -1,7 +1,7 @@
 /**
- * @name Extract MaD negative summary model rows.
- * @description This extracts the Models as data negative summary model rows.
- * @id csharp/utils/modelconverter/generate-data-extensions-negative-summary
+ * @name Extract MaD neutral model rows.
+ * @description This extracts the Models as data neutral model rows.
+ * @id csharp/utils/modelconverter/generate-data-extensions-neutral
  */
 
 import csharp
@@ -9,6 +9,6 @@ import semmle.code.csharp.dataflow.ExternalFlow
 
 from string package, string type, string name, string signature, string provenance
 where
-  negativeSummaryModel(package, type, name, signature, provenance) and
+  neutralModel(package, type, name, signature, provenance) and
   provenance != "generated"
 select package, type, name, signature, provenance order by package, type, name, signature
diff --git a/csharp/ql/src/utils/modelgenerator/internal/CaptureModels.qll b/csharp/ql/src/utils/modelgenerator/internal/CaptureModels.qll
index f40b028ba6d..893c62191b3 100644
--- a/csharp/ql/src/utils/modelgenerator/internal/CaptureModels.qll
+++ b/csharp/ql/src/utils/modelgenerator/internal/CaptureModels.qll
@@ -58,9 +58,7 @@ private string asSummaryModel(TargetApiSpecific api, string input, string output
       + "generated"
 }
 
-string asNegativeSummaryModel(TargetApiSpecific api) {
-  result = asPartialNegativeModel(api) + "generated"
-}
+string asNeutralModel(TargetApiSpecific api) { result = asPartialNeutralModel(api) + "generated" }
 
 /**
  * Gets the value summary model for `api` with `input` and `output`.
diff --git a/csharp/ql/src/utils/modelgenerator/internal/CaptureModelsSpecific.qll b/csharp/ql/src/utils/modelgenerator/internal/CaptureModelsSpecific.qll
index c3d520154a4..3e1a303d5bb 100644
--- a/csharp/ql/src/utils/modelgenerator/internal/CaptureModelsSpecific.qll
+++ b/csharp/ql/src/utils/modelgenerator/internal/CaptureModelsSpecific.qll
@@ -68,7 +68,7 @@ class TargetApiSpecific extends DotNet::Callable {
 
 predicate asPartialModel = DataFlowPrivate::Csv::asPartialModel/1;
 
-predicate asPartialNegativeModel = DataFlowPrivate::Csv::asPartialNegativeModel/1;
+predicate asPartialNeutralModel = DataFlowPrivate::Csv::asPartialNeutralModel/1;
 
 /**
  * Holds if `t` is a type that is generally used for bulk data in collection types.
diff --git a/csharp/ql/src/utils/modelgenerator/internal/CaptureSummaryFlow.qll b/csharp/ql/src/utils/modelgenerator/internal/CaptureSummaryFlow.qll
index 2f16baec794..1ed6b9a4850 100644
--- a/csharp/ql/src/utils/modelgenerator/internal/CaptureSummaryFlow.qll
+++ b/csharp/ql/src/utils/modelgenerator/internal/CaptureSummaryFlow.qll
@@ -85,10 +85,10 @@ string captureFlow(DataFlowTargetApi api) {
 }
 
 /**
- * Gets the negative summary for `api`, if any.
- * A negative summary is generated, if there does not exist any positive flow.
+ * Gets the neutral model for `api`, if any.
+ * A neutral model is generated, if there does not exist summary model.
  */
 string captureNoFlow(DataFlowTargetApi api) {
   not exists(captureFlow(api)) and
-  result = asNegativeSummaryModel(api)
+  result = asNeutralModel(api)
 }
diff --git a/csharp/ql/test/library-tests/dataflow/library/FlowSummaries.expected b/csharp/ql/test/library-tests/dataflow/library/FlowSummaries.expected
index fcdf91118e1..ad09add3853 100644
--- a/csharp/ql/test/library-tests/dataflow/library/FlowSummaries.expected
+++ b/csharp/ql/test/library-tests/dataflow/library/FlowSummaries.expected
@@ -11928,7 +11928,7 @@ summary
 | System;ValueTuple<>;false;ToString;();;Argument[this];ReturnValue;taint;generated |
 | System;ValueTuple<>;false;ValueTuple;(T1);;Argument[0];Argument[this].Field[System.ValueTuple<>.Item1];value;manual |
 | System;ValueTuple<>;false;get_Item;(System.Int32);;Argument[this].Field[System.ValueTuple<>.Item1];ReturnValue;value;manual |
-negativeSummary
+neutral
 | Microsoft.CSharp.RuntimeBinder;CSharpArgumentInfo;Create;(Microsoft.CSharp.RuntimeBinder.CSharpArgumentInfoFlags,System.String);generated |
 | Microsoft.CSharp.RuntimeBinder;RuntimeBinderException;RuntimeBinderException;();generated |
 | Microsoft.CSharp.RuntimeBinder;RuntimeBinderException;RuntimeBinderException;(System.Runtime.Serialization.SerializationInfo,System.Runtime.Serialization.StreamingContext);generated |
diff --git a/csharp/ql/test/library-tests/dataflow/library/FlowSummaries.ql b/csharp/ql/test/library-tests/dataflow/library/FlowSummaries.ql
index 717c4943f46..679c4bbf0ef 100644
--- a/csharp/ql/test/library-tests/dataflow/library/FlowSummaries.ql
+++ b/csharp/ql/test/library-tests/dataflow/library/FlowSummaries.ql
@@ -6,11 +6,9 @@ private class IncludeAllSummarizedCallable extends IncludeSummarizedCallable {
   IncludeAllSummarizedCallable() { exists(this) }
 }
 
-private class IncludeNegativeSummarizedCallable extends RelevantNegativeSummarizedCallable {
-  IncludeNegativeSummarizedCallable() {
-    this instanceof FlowSummaryImpl::Public::NegativeSummarizedCallable
-  }
+private class IncludeNeutralCallable extends RelevantNeutralCallable {
+  IncludeNeutralCallable() { this instanceof FlowSummaryImpl::Public::NeutralCallable }
 
   /** Gets a string representing the callable in semi-colon separated format for use in flow summaries. */
-  final override string getCallableCsv() { result = Csv::asPartialNegativeModel(this) }
+  final override string getCallableCsv() { result = Csv::asPartialNeutralModel(this) }
 }
diff --git a/csharp/ql/test/library-tests/dataflow/library/FlowSummariesFiltered.expected b/csharp/ql/test/library-tests/dataflow/library/FlowSummariesFiltered.expected
index 7ad542d4668..880a71ca5d0 100644
--- a/csharp/ql/test/library-tests/dataflow/library/FlowSummariesFiltered.expected
+++ b/csharp/ql/test/library-tests/dataflow/library/FlowSummariesFiltered.expected
@@ -10262,4 +10262,4 @@ summary
 | System;ValueTuple<>;false;ToString;();;Argument[this];ReturnValue;taint;generated |
 | System;ValueTuple<>;false;ValueTuple;(T1);;Argument[0];Argument[this].Field[System.ValueTuple<>.Item1];value;manual |
 | System;ValueTuple<>;false;get_Item;(System.Int32);;Argument[this].Field[System.ValueTuple<>.Item1];ReturnValue;value;manual |
-negativeSummary
+neutral
diff --git a/csharp/ql/test/library-tests/frameworks/EntityFramework/FlowSummaries.expected b/csharp/ql/test/library-tests/frameworks/EntityFramework/FlowSummaries.expected
index ae10cc17e9d..2d5a35839fb 100644
--- a/csharp/ql/test/library-tests/frameworks/EntityFramework/FlowSummaries.expected
+++ b/csharp/ql/test/library-tests/frameworks/EntityFramework/FlowSummaries.expected
@@ -131,7 +131,7 @@ summary
 | System.Data.Entity;DbSet<>;false;AttachRange;(System.Collections.Generic.IEnumerable<T>);;Argument[0].Element;Argument[this].Element;value;manual |
 | System.Data.Entity;DbSet<>;false;Update;(T);;Argument[0];Argument[this].Element;value;manual |
 | System.Data.Entity;DbSet<>;false;UpdateRange;(System.Collections.Generic.IEnumerable<T>);;Argument[0].Element;Argument[this].Element;value;manual |
-negativeSummary
+neutral
 sourceNode
 sinkNode
 | EntityFrameworkCore.cs:72:36:72:40 | "sql" | sql |

From 079d48c42a4ead174bdc8fc27a16e3a0c0da54f9 Mon Sep 17 00:00:00 2001
From: Michael Nebel <michaelnebel@github.com>
Date: Tue, 6 Dec 2022 15:21:04 +0100
Subject: [PATCH 1258/1420] Sync files.

---
 .../go/dataflow/internal/FlowSummaryImpl.qll  | 28 +++++++++----------
 .../dataflow/internal/FlowSummaryImpl.qll     | 28 +++++++++----------
 .../modelgenerator/internal/CaptureModels.qll |  4 +--
 .../dataflow/new/internal/FlowSummaryImpl.qll | 28 +++++++++----------
 .../dataflow/internal/FlowSummaryImpl.qll     | 28 +++++++++----------
 .../dataflow/internal/FlowSummaryImpl.qll     | 28 +++++++++----------
 6 files changed, 71 insertions(+), 73 deletions(-)

diff --git a/go/ql/lib/semmle/go/dataflow/internal/FlowSummaryImpl.qll b/go/ql/lib/semmle/go/dataflow/internal/FlowSummaryImpl.qll
index 6d61d1b4799..61c541d8882 100644
--- a/go/ql/lib/semmle/go/dataflow/internal/FlowSummaryImpl.qll
+++ b/go/ql/lib/semmle/go/dataflow/internal/FlowSummaryImpl.qll
@@ -246,14 +246,14 @@ module Public {
     predicate isAutoGenerated() { none() }
   }
 
-  /** A callable with a flow summary stating there is no flow via the callable. */
-  class NegativeSummarizedCallable extends SummarizedCallableBase {
-    NegativeSummarizedCallable() { negativeSummaryElement(this, _) }
+  /** A callable where there is no flow via the callable. */
+  class NeutralCallable extends SummarizedCallableBase {
+    NeutralCallable() { neutralElement(this, _) }
 
     /**
-     *  Holds if the negative summary is auto generated.
+     *  Holds if the neutral is auto generated.
      */
-    predicate isAutoGenerated() { negativeSummaryElement(this, true) }
+    predicate isAutoGenerated() { neutralElement(this, true) }
   }
 }
 
@@ -1161,9 +1161,9 @@ module Private {
       string toString() { result = super.toString() }
     }
 
-    /** A flow summary to include in the `negativeSummary/1` query predicate. */
-    abstract class RelevantNegativeSummarizedCallable instanceof NegativeSummarizedCallable {
-      /** Gets the string representation of this callable used by `summary/1`. */
+    /** A model to include in the `neutral/1` query predicate. */
+    abstract class RelevantNeutralCallable instanceof NeutralCallable {
+      /** Gets the string representation of this callable used by `neutral/1`. */
       abstract string getCallableCsv();
 
       string toString() { result = super.toString() }
@@ -1180,13 +1180,13 @@ module Private {
       if c.isAutoGenerated() then result = "generated" else result = "manual"
     }
 
-    private string renderProvenanceNegative(NegativeSummarizedCallable c) {
+    private string renderProvenanceNeutral(NeutralCallable c) {
       if c.isAutoGenerated() then result = "generated" else result = "manual"
     }
 
     /**
      * A query predicate for outputting flow summaries in semi-colon separated format in QL tests.
-     * The syntax is: "namespace;type;overrides;name;signature;ext;inputspec;outputspec;kind;provenance"",
+     * The syntax is: "namespace;type;overrides;name;signature;ext;inputspec;outputspec;kind;provenance",
      * ext is hardcoded to empty.
      */
     query predicate summary(string csv) {
@@ -1205,14 +1205,14 @@ module Private {
     }
 
     /**
-     * Holds if a negative flow summary `csv` exists (semi-colon separated format). Used for testing purposes.
+     * Holds if a neutral model `csv` exists (semi-colon separated format). Used for testing purposes.
      * The syntax is: "namespace;type;name;signature;provenance"",
      */
-    query predicate negativeSummary(string csv) {
-      exists(RelevantNegativeSummarizedCallable c |
+    query predicate neutral(string csv) {
+      exists(RelevantNeutralCallable c |
         csv =
           c.getCallableCsv() // Callable information
-            + renderProvenanceNegative(c) // provenance
+            + renderProvenanceNeutral(c) // provenance
       )
     }
   }
diff --git a/java/ql/lib/semmle/code/java/dataflow/internal/FlowSummaryImpl.qll b/java/ql/lib/semmle/code/java/dataflow/internal/FlowSummaryImpl.qll
index 6d61d1b4799..61c541d8882 100644
--- a/java/ql/lib/semmle/code/java/dataflow/internal/FlowSummaryImpl.qll
+++ b/java/ql/lib/semmle/code/java/dataflow/internal/FlowSummaryImpl.qll
@@ -246,14 +246,14 @@ module Public {
     predicate isAutoGenerated() { none() }
   }
 
-  /** A callable with a flow summary stating there is no flow via the callable. */
-  class NegativeSummarizedCallable extends SummarizedCallableBase {
-    NegativeSummarizedCallable() { negativeSummaryElement(this, _) }
+  /** A callable where there is no flow via the callable. */
+  class NeutralCallable extends SummarizedCallableBase {
+    NeutralCallable() { neutralElement(this, _) }
 
     /**
-     *  Holds if the negative summary is auto generated.
+     *  Holds if the neutral is auto generated.
      */
-    predicate isAutoGenerated() { negativeSummaryElement(this, true) }
+    predicate isAutoGenerated() { neutralElement(this, true) }
   }
 }
 
@@ -1161,9 +1161,9 @@ module Private {
       string toString() { result = super.toString() }
     }
 
-    /** A flow summary to include in the `negativeSummary/1` query predicate. */
-    abstract class RelevantNegativeSummarizedCallable instanceof NegativeSummarizedCallable {
-      /** Gets the string representation of this callable used by `summary/1`. */
+    /** A model to include in the `neutral/1` query predicate. */
+    abstract class RelevantNeutralCallable instanceof NeutralCallable {
+      /** Gets the string representation of this callable used by `neutral/1`. */
       abstract string getCallableCsv();
 
       string toString() { result = super.toString() }
@@ -1180,13 +1180,13 @@ module Private {
       if c.isAutoGenerated() then result = "generated" else result = "manual"
     }
 
-    private string renderProvenanceNegative(NegativeSummarizedCallable c) {
+    private string renderProvenanceNeutral(NeutralCallable c) {
       if c.isAutoGenerated() then result = "generated" else result = "manual"
     }
 
     /**
      * A query predicate for outputting flow summaries in semi-colon separated format in QL tests.
-     * The syntax is: "namespace;type;overrides;name;signature;ext;inputspec;outputspec;kind;provenance"",
+     * The syntax is: "namespace;type;overrides;name;signature;ext;inputspec;outputspec;kind;provenance",
      * ext is hardcoded to empty.
      */
     query predicate summary(string csv) {
@@ -1205,14 +1205,14 @@ module Private {
     }
 
     /**
-     * Holds if a negative flow summary `csv` exists (semi-colon separated format). Used for testing purposes.
+     * Holds if a neutral model `csv` exists (semi-colon separated format). Used for testing purposes.
      * The syntax is: "namespace;type;name;signature;provenance"",
      */
-    query predicate negativeSummary(string csv) {
-      exists(RelevantNegativeSummarizedCallable c |
+    query predicate neutral(string csv) {
+      exists(RelevantNeutralCallable c |
         csv =
           c.getCallableCsv() // Callable information
-            + renderProvenanceNegative(c) // provenance
+            + renderProvenanceNeutral(c) // provenance
       )
     }
   }
diff --git a/java/ql/src/utils/modelgenerator/internal/CaptureModels.qll b/java/ql/src/utils/modelgenerator/internal/CaptureModels.qll
index f40b028ba6d..893c62191b3 100644
--- a/java/ql/src/utils/modelgenerator/internal/CaptureModels.qll
+++ b/java/ql/src/utils/modelgenerator/internal/CaptureModels.qll
@@ -58,9 +58,7 @@ private string asSummaryModel(TargetApiSpecific api, string input, string output
       + "generated"
 }
 
-string asNegativeSummaryModel(TargetApiSpecific api) {
-  result = asPartialNegativeModel(api) + "generated"
-}
+string asNeutralModel(TargetApiSpecific api) { result = asPartialNeutralModel(api) + "generated" }
 
 /**
  * Gets the value summary model for `api` with `input` and `output`.
diff --git a/python/ql/lib/semmle/python/dataflow/new/internal/FlowSummaryImpl.qll b/python/ql/lib/semmle/python/dataflow/new/internal/FlowSummaryImpl.qll
index 6d61d1b4799..61c541d8882 100644
--- a/python/ql/lib/semmle/python/dataflow/new/internal/FlowSummaryImpl.qll
+++ b/python/ql/lib/semmle/python/dataflow/new/internal/FlowSummaryImpl.qll
@@ -246,14 +246,14 @@ module Public {
     predicate isAutoGenerated() { none() }
   }
 
-  /** A callable with a flow summary stating there is no flow via the callable. */
-  class NegativeSummarizedCallable extends SummarizedCallableBase {
-    NegativeSummarizedCallable() { negativeSummaryElement(this, _) }
+  /** A callable where there is no flow via the callable. */
+  class NeutralCallable extends SummarizedCallableBase {
+    NeutralCallable() { neutralElement(this, _) }
 
     /**
-     *  Holds if the negative summary is auto generated.
+     *  Holds if the neutral is auto generated.
      */
-    predicate isAutoGenerated() { negativeSummaryElement(this, true) }
+    predicate isAutoGenerated() { neutralElement(this, true) }
   }
 }
 
@@ -1161,9 +1161,9 @@ module Private {
       string toString() { result = super.toString() }
     }
 
-    /** A flow summary to include in the `negativeSummary/1` query predicate. */
-    abstract class RelevantNegativeSummarizedCallable instanceof NegativeSummarizedCallable {
-      /** Gets the string representation of this callable used by `summary/1`. */
+    /** A model to include in the `neutral/1` query predicate. */
+    abstract class RelevantNeutralCallable instanceof NeutralCallable {
+      /** Gets the string representation of this callable used by `neutral/1`. */
       abstract string getCallableCsv();
 
       string toString() { result = super.toString() }
@@ -1180,13 +1180,13 @@ module Private {
       if c.isAutoGenerated() then result = "generated" else result = "manual"
     }
 
-    private string renderProvenanceNegative(NegativeSummarizedCallable c) {
+    private string renderProvenanceNeutral(NeutralCallable c) {
       if c.isAutoGenerated() then result = "generated" else result = "manual"
     }
 
     /**
      * A query predicate for outputting flow summaries in semi-colon separated format in QL tests.
-     * The syntax is: "namespace;type;overrides;name;signature;ext;inputspec;outputspec;kind;provenance"",
+     * The syntax is: "namespace;type;overrides;name;signature;ext;inputspec;outputspec;kind;provenance",
      * ext is hardcoded to empty.
      */
     query predicate summary(string csv) {
@@ -1205,14 +1205,14 @@ module Private {
     }
 
     /**
-     * Holds if a negative flow summary `csv` exists (semi-colon separated format). Used for testing purposes.
+     * Holds if a neutral model `csv` exists (semi-colon separated format). Used for testing purposes.
      * The syntax is: "namespace;type;name;signature;provenance"",
      */
-    query predicate negativeSummary(string csv) {
-      exists(RelevantNegativeSummarizedCallable c |
+    query predicate neutral(string csv) {
+      exists(RelevantNeutralCallable c |
         csv =
           c.getCallableCsv() // Callable information
-            + renderProvenanceNegative(c) // provenance
+            + renderProvenanceNeutral(c) // provenance
       )
     }
   }
diff --git a/ruby/ql/lib/codeql/ruby/dataflow/internal/FlowSummaryImpl.qll b/ruby/ql/lib/codeql/ruby/dataflow/internal/FlowSummaryImpl.qll
index 6d61d1b4799..61c541d8882 100644
--- a/ruby/ql/lib/codeql/ruby/dataflow/internal/FlowSummaryImpl.qll
+++ b/ruby/ql/lib/codeql/ruby/dataflow/internal/FlowSummaryImpl.qll
@@ -246,14 +246,14 @@ module Public {
     predicate isAutoGenerated() { none() }
   }
 
-  /** A callable with a flow summary stating there is no flow via the callable. */
-  class NegativeSummarizedCallable extends SummarizedCallableBase {
-    NegativeSummarizedCallable() { negativeSummaryElement(this, _) }
+  /** A callable where there is no flow via the callable. */
+  class NeutralCallable extends SummarizedCallableBase {
+    NeutralCallable() { neutralElement(this, _) }
 
     /**
-     *  Holds if the negative summary is auto generated.
+     *  Holds if the neutral is auto generated.
      */
-    predicate isAutoGenerated() { negativeSummaryElement(this, true) }
+    predicate isAutoGenerated() { neutralElement(this, true) }
   }
 }
 
@@ -1161,9 +1161,9 @@ module Private {
       string toString() { result = super.toString() }
     }
 
-    /** A flow summary to include in the `negativeSummary/1` query predicate. */
-    abstract class RelevantNegativeSummarizedCallable instanceof NegativeSummarizedCallable {
-      /** Gets the string representation of this callable used by `summary/1`. */
+    /** A model to include in the `neutral/1` query predicate. */
+    abstract class RelevantNeutralCallable instanceof NeutralCallable {
+      /** Gets the string representation of this callable used by `neutral/1`. */
       abstract string getCallableCsv();
 
       string toString() { result = super.toString() }
@@ -1180,13 +1180,13 @@ module Private {
       if c.isAutoGenerated() then result = "generated" else result = "manual"
     }
 
-    private string renderProvenanceNegative(NegativeSummarizedCallable c) {
+    private string renderProvenanceNeutral(NeutralCallable c) {
       if c.isAutoGenerated() then result = "generated" else result = "manual"
     }
 
     /**
      * A query predicate for outputting flow summaries in semi-colon separated format in QL tests.
-     * The syntax is: "namespace;type;overrides;name;signature;ext;inputspec;outputspec;kind;provenance"",
+     * The syntax is: "namespace;type;overrides;name;signature;ext;inputspec;outputspec;kind;provenance",
      * ext is hardcoded to empty.
      */
     query predicate summary(string csv) {
@@ -1205,14 +1205,14 @@ module Private {
     }
 
     /**
-     * Holds if a negative flow summary `csv` exists (semi-colon separated format). Used for testing purposes.
+     * Holds if a neutral model `csv` exists (semi-colon separated format). Used for testing purposes.
      * The syntax is: "namespace;type;name;signature;provenance"",
      */
-    query predicate negativeSummary(string csv) {
-      exists(RelevantNegativeSummarizedCallable c |
+    query predicate neutral(string csv) {
+      exists(RelevantNeutralCallable c |
         csv =
           c.getCallableCsv() // Callable information
-            + renderProvenanceNegative(c) // provenance
+            + renderProvenanceNeutral(c) // provenance
       )
     }
   }
diff --git a/swift/ql/lib/codeql/swift/dataflow/internal/FlowSummaryImpl.qll b/swift/ql/lib/codeql/swift/dataflow/internal/FlowSummaryImpl.qll
index 6d61d1b4799..61c541d8882 100644
--- a/swift/ql/lib/codeql/swift/dataflow/internal/FlowSummaryImpl.qll
+++ b/swift/ql/lib/codeql/swift/dataflow/internal/FlowSummaryImpl.qll
@@ -246,14 +246,14 @@ module Public {
     predicate isAutoGenerated() { none() }
   }
 
-  /** A callable with a flow summary stating there is no flow via the callable. */
-  class NegativeSummarizedCallable extends SummarizedCallableBase {
-    NegativeSummarizedCallable() { negativeSummaryElement(this, _) }
+  /** A callable where there is no flow via the callable. */
+  class NeutralCallable extends SummarizedCallableBase {
+    NeutralCallable() { neutralElement(this, _) }
 
     /**
-     *  Holds if the negative summary is auto generated.
+     *  Holds if the neutral is auto generated.
      */
-    predicate isAutoGenerated() { negativeSummaryElement(this, true) }
+    predicate isAutoGenerated() { neutralElement(this, true) }
   }
 }
 
@@ -1161,9 +1161,9 @@ module Private {
       string toString() { result = super.toString() }
     }
 
-    /** A flow summary to include in the `negativeSummary/1` query predicate. */
-    abstract class RelevantNegativeSummarizedCallable instanceof NegativeSummarizedCallable {
-      /** Gets the string representation of this callable used by `summary/1`. */
+    /** A model to include in the `neutral/1` query predicate. */
+    abstract class RelevantNeutralCallable instanceof NeutralCallable {
+      /** Gets the string representation of this callable used by `neutral/1`. */
       abstract string getCallableCsv();
 
       string toString() { result = super.toString() }
@@ -1180,13 +1180,13 @@ module Private {
       if c.isAutoGenerated() then result = "generated" else result = "manual"
     }
 
-    private string renderProvenanceNegative(NegativeSummarizedCallable c) {
+    private string renderProvenanceNeutral(NeutralCallable c) {
       if c.isAutoGenerated() then result = "generated" else result = "manual"
     }
 
     /**
      * A query predicate for outputting flow summaries in semi-colon separated format in QL tests.
-     * The syntax is: "namespace;type;overrides;name;signature;ext;inputspec;outputspec;kind;provenance"",
+     * The syntax is: "namespace;type;overrides;name;signature;ext;inputspec;outputspec;kind;provenance",
      * ext is hardcoded to empty.
      */
     query predicate summary(string csv) {
@@ -1205,14 +1205,14 @@ module Private {
     }
 
     /**
-     * Holds if a negative flow summary `csv` exists (semi-colon separated format). Used for testing purposes.
+     * Holds if a neutral model `csv` exists (semi-colon separated format). Used for testing purposes.
      * The syntax is: "namespace;type;name;signature;provenance"",
      */
-    query predicate negativeSummary(string csv) {
-      exists(RelevantNegativeSummarizedCallable c |
+    query predicate neutral(string csv) {
+      exists(RelevantNeutralCallable c |
         csv =
           c.getCallableCsv() // Callable information
-            + renderProvenanceNegative(c) // provenance
+            + renderProvenanceNeutral(c) // provenance
       )
     }
   }

From 3af00a8f3fb791547feeb927258c797017034cdd Mon Sep 17 00:00:00 2001
From: Michael Nebel <michaelnebel@github.com>
Date: Tue, 6 Dec 2022 16:33:12 +0100
Subject: [PATCH 1259/1420] Java: Rename Negative Summary Model to Neutral
 Model.

---
 java/ql/lib/ext/dummy.model.yml               |  2 +-
 .../lib/ext/generated/kotlinstdlib.model.yml  |  2 +-
 .../generated/org.apache.commons.io.model.yml |  2 +-
 .../code/java/dataflow/ExternalFlow.qll       | 44 +++++++++----------
 .../internal/FlowSummaryImplSpecific.qll      |  8 ++--
 .../ql/src/Telemetry/SupportedExternalApis.ql |  2 +-
 .../src/Telemetry/UnsupportedExternalAPIs.ql  |  2 +-
 .../CaptureNegativeSummaryModels.ql           |  6 +--
 .../ExtractNegativeSummaries.ql               |  8 ++--
 .../internal/CaptureModelsSpecific.qll        |  4 +-
 .../internal/CaptureSummaryFlow.qll           |  6 +--
 11 files changed, 41 insertions(+), 45 deletions(-)

diff --git a/java/ql/lib/ext/dummy.model.yml b/java/ql/lib/ext/dummy.model.yml
index 01642dccae6..e6139faabcf 100644
--- a/java/ql/lib/ext/dummy.model.yml
+++ b/java/ql/lib/ext/dummy.model.yml
@@ -14,5 +14,5 @@ extensions:
     data: []
   - addsTo:
       pack: codeql/java-all
-      extensible: extNegativeSummaryModel
+      extensible: extNeutralModel
     data: []
\ No newline at end of file
diff --git a/java/ql/lib/ext/generated/kotlinstdlib.model.yml b/java/ql/lib/ext/generated/kotlinstdlib.model.yml
index a561d5dd572..4e8a73c048f 100644
--- a/java/ql/lib/ext/generated/kotlinstdlib.model.yml
+++ b/java/ql/lib/ext/generated/kotlinstdlib.model.yml
@@ -1861,7 +1861,7 @@ extensions:
 
   - addsTo:
       pack: codeql/java-all
-      extensible: extNegativeSummaryModel
+      extensible: extNeutralModel
     data:
       - ["kotlin.annotation", "AnnotationRetention", "valueOf", "(String)", "generated"]
       - ["kotlin.annotation", "AnnotationRetention", "values", "()", "generated"]
diff --git a/java/ql/lib/ext/generated/org.apache.commons.io.model.yml b/java/ql/lib/ext/generated/org.apache.commons.io.model.yml
index f18303df59f..72ba13247bf 100644
--- a/java/ql/lib/ext/generated/org.apache.commons.io.model.yml
+++ b/java/ql/lib/ext/generated/org.apache.commons.io.model.yml
@@ -676,7 +676,7 @@ extensions:
 
   - addsTo:
       pack: codeql/java-all
-      extensible: extNegativeSummaryModel
+      extensible: extNeutralModel
     data:
       - ["org.apache.commons.io.charset", "CharsetDecoders", "CharsetDecoders", "()", "generated"]
       - ["org.apache.commons.io.charset", "CharsetEncoders", "CharsetEncoders", "()", "generated"]
diff --git a/java/ql/lib/semmle/code/java/dataflow/ExternalFlow.qll b/java/ql/lib/semmle/code/java/dataflow/ExternalFlow.qll
index 14773872ba0..f3465cad3f9 100644
--- a/java/ql/lib/semmle/code/java/dataflow/ExternalFlow.qll
+++ b/java/ql/lib/semmle/code/java/dataflow/ExternalFlow.qll
@@ -11,9 +11,9 @@
  *   `package; type; subtypes; name; signature; ext; input; kind; provenance`
  * - Summaries:
  *   `package; type; subtypes; name; signature; ext; input; output; kind; provenance`
- * - Negative Summaries:
+ * - Neutrals:
  *   `package; type; name; signature; provenance`
- *   A negative summary is used to indicate that there is no flow via a callable.
+ *   A neutral is used to indicate that there is no flow via a callable.
  *
  * The interpretation of a row is similar to API-graphs with a left-to-right
  * reading.
@@ -123,16 +123,16 @@ private class SummaryModelCsvInternal extends Unit {
 }
 
 /**
- * DEPRECATED: Define negative summary models as data extensions instead.
+ * DEPRECATED: Define neutral models as data extensions instead.
  *
- * A unit class for adding additional negative summary model rows.
+ * A unit class for adding additional neutral model rows.
  *
- * Extend this class to add additional negative summary definitions.
+ * Extend this class to add additional neutral definitions.
  */
-deprecated class NegativeSummaryModelCsv = NegativeSummaryModelCsvInternal;
+deprecated class NeutralModelCsv = NeutralModelCsvInternal;
 
-private class NegativeSummaryModelCsvInternal extends Unit {
-  /** Holds if `row` specifies a negative summary definition. */
+private class NeutralModelCsvInternal extends Unit {
+  /** Holds if `row` specifies a neutral definition. */
   abstract predicate row(string row);
 }
 
@@ -142,9 +142,7 @@ private predicate summaryModelInternal(string row) { any(SummaryModelCsvInternal
 
 private predicate sinkModelInternal(string row) { any(SinkModelCsvInternal s).row(row) }
 
-private predicate negativeSummaryModelInternal(string row) {
-  any(NegativeSummaryModelCsvInternal s).row(row)
-}
+private predicate neutralModelInternal(string row) { any(NeutralModelCsvInternal s).row(row) }
 
 /**
  * Holds if an experimental source model exists for the given parameters.
@@ -313,17 +311,15 @@ predicate summaryModel(
       .summaryModel(package, type, subtypes, name, signature, ext, input, output, kind, provenance)
 }
 
-/** Holds if a summary model exists indicating there is no flow for the given parameters. */
-extensible predicate extNegativeSummaryModel(
+/** Holds if a neutral model exists indicating there is no flow for the given parameters. */
+extensible predicate extNeutralModel(
   string package, string type, string name, string signature, string provenance
 );
 
-/** Holds if a summary model exists indicating there is no flow for the given parameters. */
-predicate negativeSummaryModel(
-  string package, string type, string name, string signature, string provenance
-) {
+/** Holds if a neutral model exists indicating there is no flow for the given parameters. */
+predicate neutralModel(string package, string type, string name, string signature, string provenance) {
   exists(string row |
-    negativeSummaryModelInternal(row) and
+    neutralModelInternal(row) and
     row.splitAt(";", 0) = package and
     row.splitAt(";", 1) = type and
     row.splitAt(";", 2) = name and
@@ -331,7 +327,7 @@ predicate negativeSummaryModel(
     row.splitAt(";", 4) = provenance
   )
   or
-  extNegativeSummaryModel(package, type, name, signature, provenance)
+  extNeutralModel(package, type, name, signature, provenance)
 }
 
 private predicate relevantPackage(string package) {
@@ -473,7 +469,7 @@ module ModelValidation {
       or
       summaryModelInternal(row) and expect = 10 and pred = "summary"
       or
-      negativeSummaryModelInternal(row) and expect = 5 and pred = "negative summary"
+      neutralModelInternal(row) and expect = 5 and pred = "neutral"
     |
       exists(int cols |
         cols = 1 + max(int n | exists(row.splitAt(";", n))) and
@@ -497,9 +493,9 @@ module ModelValidation {
       summaryModel(package, type, _, name, signature, ext, _, _, _, provenance) and
       pred = "summary"
       or
-      negativeSummaryModel(package, type, name, signature, provenance) and
+      neutralModel(package, type, name, signature, provenance) and
       ext = "" and
-      pred = "negative summary"
+      pred = "neutral"
     |
       not package.regexpMatch("[a-zA-Z0-9_\\.]*") and
       result = "Dubious package \"" + package + "\" in " + pred + " model."
@@ -541,7 +537,7 @@ private predicate elementSpec(
   or
   summaryModel(package, type, subtypes, name, signature, ext, _, _, _, _)
   or
-  negativeSummaryModel(package, type, name, signature, _) and ext = "" and subtypes = false
+  neutralModel(package, type, name, signature, _) and ext = "" and subtypes = false
 }
 
 private string paramsStringPart(Callable c, int i) {
@@ -590,7 +586,7 @@ private Element interpretElement0(
   )
 }
 
-/** Gets the source/sink/summary/negativesummary element corresponding to the supplied parameters. */
+/** Gets the source/sink/summary/neutral element corresponding to the supplied parameters. */
 Element interpretElement(
   string package, string type, boolean subtypes, string name, string signature, string ext
 ) {
diff --git a/java/ql/lib/semmle/code/java/dataflow/internal/FlowSummaryImplSpecific.qll b/java/ql/lib/semmle/code/java/dataflow/internal/FlowSummaryImplSpecific.qll
index c3366436d27..179bc0ab38c 100644
--- a/java/ql/lib/semmle/code/java/dataflow/internal/FlowSummaryImplSpecific.qll
+++ b/java/ql/lib/semmle/code/java/dataflow/internal/FlowSummaryImplSpecific.qll
@@ -160,12 +160,12 @@ predicate summaryElement(
 }
 
 /**
- * Holds if a negative flow summary exists for `c`, which means that there is no
- * flow through `c`. The flag `generated` states whether the summary is autogenerated.
+ * Holds if a neutral model exists for `c`, which means that there is no
+ * flow through `c`. The flag `generated` states whether the model is autogenerated.
  */
-predicate negativeSummaryElement(SummarizedCallableBase c, boolean generated) {
+predicate neutralElement(SummarizedCallableBase c, boolean generated) {
   exists(string namespace, string type, string name, string signature, string provenance |
-    negativeSummaryModel(namespace, type, name, signature, provenance) and
+    neutralModel(namespace, type, name, signature, provenance) and
     generated = isGenerated(provenance) and
     c.asCallable() = interpretElement(namespace, type, false, name, signature, "")
   )
diff --git a/java/ql/src/Telemetry/SupportedExternalApis.ql b/java/ql/src/Telemetry/SupportedExternalApis.ql
index 13c6473b580..5e45f8ba7e9 100644
--- a/java/ql/src/Telemetry/SupportedExternalApis.ql
+++ b/java/ql/src/Telemetry/SupportedExternalApis.ql
@@ -14,7 +14,7 @@ private predicate relevant(ExternalApi api) {
   not api.isUninteresting() and
   (
     api.isSupported() or
-    api = any(FlowSummaryImpl::Public::NegativeSummarizedCallable nsc).asCallable()
+    api = any(FlowSummaryImpl::Public::NeutralCallable nsc).asCallable()
   )
 }
 
diff --git a/java/ql/src/Telemetry/UnsupportedExternalAPIs.ql b/java/ql/src/Telemetry/UnsupportedExternalAPIs.ql
index b1721972dd3..9ef469da5b0 100644
--- a/java/ql/src/Telemetry/UnsupportedExternalAPIs.ql
+++ b/java/ql/src/Telemetry/UnsupportedExternalAPIs.ql
@@ -13,7 +13,7 @@ import ExternalApi
 private predicate relevant(ExternalApi api) {
   not api.isUninteresting() and
   not api.isSupported() and
-  not api = any(FlowSummaryImpl::Public::NegativeSummarizedCallable nsc).asCallable()
+  not api = any(FlowSummaryImpl::Public::NeutralCallable nsc).asCallable()
 }
 
 from string apiName, int usages
diff --git a/java/ql/src/utils/model-generator/CaptureNegativeSummaryModels.ql b/java/ql/src/utils/model-generator/CaptureNegativeSummaryModels.ql
index a6f6e5f26e5..96744de89b6 100644
--- a/java/ql/src/utils/model-generator/CaptureNegativeSummaryModels.ql
+++ b/java/ql/src/utils/model-generator/CaptureNegativeSummaryModels.ql
@@ -1,8 +1,8 @@
 /**
- * @name Capture negative summary models.
- * @description Finds negative summary models to be used by other queries.
+ * @name Capture neutral models.
+ * @description Finds neutral models to be used by other queries.
  * @kind diagnostic
- * @id java/utils/model-generator/negative-summary-models
+ * @id java/utils/model-generator/neutral-models
  * @tags model-generator
  */
 
diff --git a/java/ql/src/utils/modelconverter/ExtractNegativeSummaries.ql b/java/ql/src/utils/modelconverter/ExtractNegativeSummaries.ql
index e762b3ee6e5..ad7cef84f04 100644
--- a/java/ql/src/utils/modelconverter/ExtractNegativeSummaries.ql
+++ b/java/ql/src/utils/modelconverter/ExtractNegativeSummaries.ql
@@ -1,7 +1,7 @@
 /**
- * @name Extract MaD negative summary model rows.
- * @description This extracts the Models as data negative summary model rows.
- * @id java/utils/modelconverter/generate-data-extensions-negative-summary
+ * @name Extract MaD neutral model rows.
+ * @description This extracts the Models as data neutral model rows.
+ * @id java/utils/modelconverter/generate-data-extensions-neutral
  */
 
 import java
@@ -9,6 +9,6 @@ import semmle.code.java.dataflow.ExternalFlow
 
 from string package, string type, string name, string signature, string provenance
 where
-  negativeSummaryModel(package, type, name, signature, provenance) and
+  neutralModel(package, type, name, signature, provenance) and
   provenance != "generated"
 select package, type, name, signature, provenance order by package, type, name, signature
diff --git a/java/ql/src/utils/modelgenerator/internal/CaptureModelsSpecific.qll b/java/ql/src/utils/modelgenerator/internal/CaptureModelsSpecific.qll
index 6e9fe7c29b2..af46170f5a3 100644
--- a/java/ql/src/utils/modelgenerator/internal/CaptureModelsSpecific.qll
+++ b/java/ql/src/utils/modelgenerator/internal/CaptureModelsSpecific.qll
@@ -131,9 +131,9 @@ string asPartialModel(TargetApiSpecific api) {
 }
 
 /**
- * Computes the first 4 columns for negative CSV rows.
+ * Computes the first 4 columns for neutral CSV rows.
  */
-string asPartialNegativeModel(TargetApiSpecific api) {
+string asPartialNeutralModel(TargetApiSpecific api) {
   exists(string type, string name, string parameters |
     partialModel(api, type, name, parameters) and
     result =
diff --git a/java/ql/src/utils/modelgenerator/internal/CaptureSummaryFlow.qll b/java/ql/src/utils/modelgenerator/internal/CaptureSummaryFlow.qll
index 4b5293e63cd..04e87d9a385 100644
--- a/java/ql/src/utils/modelgenerator/internal/CaptureSummaryFlow.qll
+++ b/java/ql/src/utils/modelgenerator/internal/CaptureSummaryFlow.qll
@@ -77,10 +77,10 @@ string captureFlow(DataFlowTargetApi api) {
 }
 
 /**
- * Gets the negative summary for `api`, if any.
- * A negative summary is generated, if there does not exist any positive flow.
+ * Gets the neutral summary for `api`, if any.
+ * A neutral model is generated, if there does not exist any summary model.
  */
 string captureNoFlow(DataFlowTargetApi api) {
   not exists(captureFlow(api)) and
-  result = asNegativeSummaryModel(api)
+  result = asNeutralModel(api)
 }

From f4f7d83349dfa10c0ffa6af34ef3b2b14dd4dcc6 Mon Sep 17 00:00:00 2001
From: Michael Nebel <michaelnebel@github.com>
Date: Tue, 6 Dec 2022 16:36:11 +0100
Subject: [PATCH 1260/1420] Python: Rename Negative Summary Model to Neutral
 Model.

---
 .../dataflow/new/internal/FlowSummaryImplSpecific.qll     | 8 ++++----
 1 file changed, 4 insertions(+), 4 deletions(-)

diff --git a/python/ql/lib/semmle/python/dataflow/new/internal/FlowSummaryImplSpecific.qll b/python/ql/lib/semmle/python/dataflow/new/internal/FlowSummaryImplSpecific.qll
index 056ed02a874..c78fe0c857d 100644
--- a/python/ql/lib/semmle/python/dataflow/new/internal/FlowSummaryImplSpecific.qll
+++ b/python/ql/lib/semmle/python/dataflow/new/internal/FlowSummaryImplSpecific.qll
@@ -92,11 +92,11 @@ predicate summaryElement(
 }
 
 /**
- * Holds if a negative flow summary exists for `c`, which means that there is no
- * flow through `c`. The flag `generated` states whether the summary is autogenerated.
- * Note. Negative flow summaries has not been implemented for Python.
+ * Holds if a neutral model exists for `c`, which means that there is no
+ * flow through `c`. The flag `generated` states whether the neutral model is autogenerated.
+ * Note. Neutral models have not been implemented for Python.
  */
-predicate negativeSummaryElement(FlowSummary::SummarizedCallable c, boolean generated) { none() }
+predicate neutralElement(FlowSummary::SummarizedCallable c, boolean generated) { none() }
 
 /**
  * Gets the summary component for specification component `c`, if any.

From a14df1ca618066978c17793236fc7e57a0bdc826 Mon Sep 17 00:00:00 2001
From: Michael Nebel <michaelnebel@github.com>
Date: Tue, 6 Dec 2022 16:38:01 +0100
Subject: [PATCH 1261/1420] Ruby: Rename Negative Summary Model to Neutral
 Model.

---
 .../ruby/dataflow/internal/FlowSummaryImplSpecific.qll    | 8 ++++----
 1 file changed, 4 insertions(+), 4 deletions(-)

diff --git a/ruby/ql/lib/codeql/ruby/dataflow/internal/FlowSummaryImplSpecific.qll b/ruby/ql/lib/codeql/ruby/dataflow/internal/FlowSummaryImplSpecific.qll
index 615578f8891..7e569972bb6 100644
--- a/ruby/ql/lib/codeql/ruby/dataflow/internal/FlowSummaryImplSpecific.qll
+++ b/ruby/ql/lib/codeql/ruby/dataflow/internal/FlowSummaryImplSpecific.qll
@@ -63,11 +63,11 @@ predicate summaryElement(
 }
 
 /**
- * Holds if a negative flow summary exists for `c`, which means that there is no
- * flow through `c`. The flag `generated` states whether the summary is autogenerated.
- * Note. Negative flow summaries has not been implemented for ruby.
+ * Holds if a neutral model exists for `c`, which means that there is no
+ * flow through `c`. The flag `generated` states whether the neutral model is autogenerated.
+ * Note. Neutral models have not been implemented for ruby.
  */
-predicate negativeSummaryElement(FlowSummary::SummarizedCallable c, boolean generated) { none() }
+predicate neutralElement(FlowSummary::SummarizedCallable c, boolean generated) { none() }
 
 bindingset[arg]
 private SummaryComponent interpretElementArg(string arg) {

From d13307e417ab3ae59f84febae4c6cae1f2510777 Mon Sep 17 00:00:00 2001
From: Michael Nebel <michaelnebel@github.com>
Date: Tue, 6 Dec 2022 16:39:34 +0100
Subject: [PATCH 1262/1420] Swift: Rename Negative Summary Model to Neutral
 Model.

---
 .../swift/dataflow/internal/FlowSummaryImplSpecific.qll   | 8 ++++----
 1 file changed, 4 insertions(+), 4 deletions(-)

diff --git a/swift/ql/lib/codeql/swift/dataflow/internal/FlowSummaryImplSpecific.qll b/swift/ql/lib/codeql/swift/dataflow/internal/FlowSummaryImplSpecific.qll
index b49405c5a4d..cdaded55342 100644
--- a/swift/ql/lib/codeql/swift/dataflow/internal/FlowSummaryImplSpecific.qll
+++ b/swift/ql/lib/codeql/swift/dataflow/internal/FlowSummaryImplSpecific.qll
@@ -71,11 +71,11 @@ predicate summaryElement(
 }
 
 /**
- * Holds if a negative flow summary exists for `c`, which means that there is no
- * flow through `c`. The flag `generated` states whether the summary is autogenerated.
- * Note. Negative flow summaries has not been implemented for swift.
+ * Holds if a neutral model exists for `c`, which means that there is no
+ * flow through `c`. The flag `generated` states whether the neutral model is autogenerated.
+ * Note. Neutral models have not been implemented for swift.
  */
-predicate negativeSummaryElement(AbstractFunctionDecl c, boolean generated) { none() }
+predicate neutralElement(AbstractFunctionDecl c, boolean generated) { none() }
 
 /**
  * Holds if an external source specification exists for `e` with output specification

From ac2d55880c114c7673d0d1ad1fa3e7c5eac9ce74 Mon Sep 17 00:00:00 2001
From: Michael Nebel <michaelnebel@github.com>
Date: Tue, 6 Dec 2022 16:40:16 +0100
Subject: [PATCH 1263/1420] Go: Rename Negative Summary Model to Neutral Model.

---
 .../go/dataflow/internal/FlowSummaryImplSpecific.qll      | 8 ++++----
 1 file changed, 4 insertions(+), 4 deletions(-)

diff --git a/go/ql/lib/semmle/go/dataflow/internal/FlowSummaryImplSpecific.qll b/go/ql/lib/semmle/go/dataflow/internal/FlowSummaryImplSpecific.qll
index 5087403f3b4..0797cd7a979 100644
--- a/go/ql/lib/semmle/go/dataflow/internal/FlowSummaryImplSpecific.qll
+++ b/go/ql/lib/semmle/go/dataflow/internal/FlowSummaryImplSpecific.qll
@@ -76,11 +76,11 @@ predicate summaryElement(
 }
 
 /**
- * Holds if a negative flow summary exists for `c`, which means that there is no
- * flow through `c`. The flag `generated` states whether the summary is autogenerated.
- * Note. Negative flow summaries has not been implemented for Go.
+ * Holds if a neutral model exists for `c`, which means that there is no
+ * flow through `c`. The flag `generated` states whether the model is autogenerated.
+ * Note. Neutral models have not been implemented for Go.
  */
-predicate negativeSummaryElement(SummarizedCallable c, boolean generated) { none() }
+predicate neutralElement(SummarizedCallable c, boolean generated) { none() }
 
 /** Gets the summary component for specification component `c`, if any. */
 bindingset[c]

From 2cb88037a4b02eae88901b8b27907caa3e05ab5f Mon Sep 17 00:00:00 2001
From: Michael Nebel <michaelnebel@github.com>
Date: Tue, 6 Dec 2022 16:51:09 +0100
Subject: [PATCH 1264/1420] C#/Java: Rename Negative Summary Model to Neutral
 Model in conversion and generator tooling.

---
 ...mmaryModels.ql => CaptureNeutralModels.ql} |  0
 ...egativeSummaries.ql => ExtractNeutrals.ql} |  0
 ...mmaryModels.ql => CaptureNeutralModels.ql} |  0
 .../utils/model-generator/RegenerateModels.py |  2 +-
 ...egativeSummaries.ql => ExtractNeutrals.ql} |  0
 .../models-as-data/convert_extensions.py      |  4 ++--
 .../models-as-data/generate_flow_model.py     | 22 +++++++++----------
 misc/scripts/models-as-data/helpers.py        |  2 +-
 8 files changed, 15 insertions(+), 15 deletions(-)
 rename csharp/ql/src/utils/model-generator/{CaptureNegativeSummaryModels.ql => CaptureNeutralModels.ql} (100%)
 rename csharp/ql/src/utils/modelconverter/{ExtractNegativeSummaries.ql => ExtractNeutrals.ql} (100%)
 rename java/ql/src/utils/model-generator/{CaptureNegativeSummaryModels.ql => CaptureNeutralModels.ql} (100%)
 rename java/ql/src/utils/modelconverter/{ExtractNegativeSummaries.ql => ExtractNeutrals.ql} (100%)

diff --git a/csharp/ql/src/utils/model-generator/CaptureNegativeSummaryModels.ql b/csharp/ql/src/utils/model-generator/CaptureNeutralModels.ql
similarity index 100%
rename from csharp/ql/src/utils/model-generator/CaptureNegativeSummaryModels.ql
rename to csharp/ql/src/utils/model-generator/CaptureNeutralModels.ql
diff --git a/csharp/ql/src/utils/modelconverter/ExtractNegativeSummaries.ql b/csharp/ql/src/utils/modelconverter/ExtractNeutrals.ql
similarity index 100%
rename from csharp/ql/src/utils/modelconverter/ExtractNegativeSummaries.ql
rename to csharp/ql/src/utils/modelconverter/ExtractNeutrals.ql
diff --git a/java/ql/src/utils/model-generator/CaptureNegativeSummaryModels.ql b/java/ql/src/utils/model-generator/CaptureNeutralModels.ql
similarity index 100%
rename from java/ql/src/utils/model-generator/CaptureNegativeSummaryModels.ql
rename to java/ql/src/utils/model-generator/CaptureNeutralModels.ql
diff --git a/java/ql/src/utils/model-generator/RegenerateModels.py b/java/ql/src/utils/model-generator/RegenerateModels.py
index f89873339f5..a939a1e56eb 100755
--- a/java/ql/src/utils/model-generator/RegenerateModels.py
+++ b/java/ql/src/utils/model-generator/RegenerateModels.py
@@ -37,7 +37,7 @@ def regenerateModel(lgtmSlug, extractedDb):
     modelFile = lgtmSlugToModelFile[lgtmSlug]
     codeQlRoot = findGitRoot()
     subprocess.check_call([codeQlRoot + "/java/ql/src/utils/model-generator/GenerateFlowModel.py",
-                           "--with-summaries", "--with-sinks", "--with-negative-summaries",
+                           "--with-summaries", "--with-sinks", "--with-neutrals",
                            extractedDb, modelFile])
     print("Regenerated " + modelFile)
     shutil.rmtree(tmpDir)
diff --git a/java/ql/src/utils/modelconverter/ExtractNegativeSummaries.ql b/java/ql/src/utils/modelconverter/ExtractNeutrals.ql
similarity index 100%
rename from java/ql/src/utils/modelconverter/ExtractNegativeSummaries.ql
rename to java/ql/src/utils/modelconverter/ExtractNeutrals.ql
diff --git a/misc/scripts/models-as-data/convert_extensions.py b/misc/scripts/models-as-data/convert_extensions.py
index 6a05ba62238..51e1e30f389 100644
--- a/misc/scripts/models-as-data/convert_extensions.py
+++ b/misc/scripts/models-as-data/convert_extensions.py
@@ -74,8 +74,8 @@ class Converter:
         summaries = self.getAddsTo("ExtractSummaries.ql", helpers.summaryModelPredicate)
         sources = self.getAddsTo("ExtractSources.ql", helpers.sourceModelPredicate)
         sinks = self.getAddsTo("ExtractSinks.ql", helpers.sinkModelPredicate)
-        negativeSummaries = self.getAddsTo("ExtractNegativeSummaries.ql", helpers.negativeSummaryModelPredicate)
-        return merge(sources, sinks, summaries, negativeSummaries)
+        neutrals = self.getAddsTo("ExtractNeutrals.ql", helpers.neutralModelPredicate)
+        return merge(sources, sinks, summaries, neutrals)
 
 
     def save(self, extensions):
diff --git a/misc/scripts/models-as-data/generate_flow_model.py b/misc/scripts/models-as-data/generate_flow_model.py
index cc99e627383..0c37c7f8309 100644
--- a/misc/scripts/models-as-data/generate_flow_model.py
+++ b/misc/scripts/models-as-data/generate_flow_model.py
@@ -30,7 +30,7 @@ class Generator:
         self.generateSinks = False
         self.generateSources = False
         self.generateSummaries = False
-        self.generateNegativeSummaries = False
+        self.generateNeutrals = False
         self.generateTypeBasedSummaries = False
         self.dryRun = False
         self.dirname = "model-generator"
@@ -49,7 +49,7 @@ Which models are generated is controlled by the flags:
     --with-sinks
     --with-sources
     --with-summaries
-    --with-negative-summaries
+    --with-neutrals
     --with-typebased-summaries (Experimental)
 If none of these flags are specified, all models are generated except for the type based models.
 
@@ -102,9 +102,9 @@ Requirements: `codeql` should both appear on your path.
             sys.argv.remove("--with-summaries")
             generator.generateSummaries = True
 
-        if "--with-negative-summaries" in sys.argv:
-            sys.argv.remove("--with-negative-summaries")
-            generator.generateNegativeSummaries = True
+        if "--with-neutrals" in sys.argv:
+            sys.argv.remove("--with-neutrals")
+            generator.generateNeutrals = True
 
         if "--with-typebased-summaries" in sys.argv:
             sys.argv.remove("--with-typebased-summaries")
@@ -114,8 +114,8 @@ Requirements: `codeql` should both appear on your path.
             sys.argv.remove("--dry-run")
             generator.dryRun = True
 
-        if not generator.generateSinks and not generator.generateSources and not generator.generateSummaries and not generator.generateNegativeSummaries and not generator.generateTypeBasedSummaries:
-            generator.generateSinks = generator.generateSources = generator.generateSummaries = generator.generateNegativeSummaries = True
+        if not generator.generateSinks and not generator.generateSources and not generator.generateSummaries and not generator.generateNeutrals and not generator.generateTypeBasedSummaries:
+            generator.generateSinks = generator.generateSources = generator.generateSummaries = generator.generateNeutrals = True
 
         if len(sys.argv) < 3 or len(sys.argv) > 4:
             generator.printHelp()
@@ -168,10 +168,10 @@ Requirements: `codeql` should both appear on your path.
         else:
             sourceAddsTo = ""
 
-        if self.generateNegativeSummaries:
-            negativeSummaryAddsTo = self.getAddsTo("CaptureNegativeSummaryModels.ql", "extNegativeSummaryModel")
+        if self.generateNeutrals:
+            neutralAddsTo = self.getAddsTo("CaptureNeutralModels.ql", helpers.neutralModelPredicate)
         else:
-            negativeSummaryAddsTo = ""
+            neutralAddsTo = ""
         
         return f""" 
 # THIS FILE IS AN AUTO-GENERATED MODELS AS DATA FILE. DO NOT EDIT.
@@ -181,7 +181,7 @@ extensions:
 {sinkAddsTo}
 {sourceAddsTo}
 {summaryAddsTo}
-{negativeSummaryAddsTo}
+{neutralAddsTo}
         """
 
     def makeTypeBasedContent(self):
diff --git a/misc/scripts/models-as-data/helpers.py b/misc/scripts/models-as-data/helpers.py
index 94bf16527de..d26514222ef 100644
--- a/misc/scripts/models-as-data/helpers.py
+++ b/misc/scripts/models-as-data/helpers.py
@@ -7,7 +7,7 @@ import subprocess
 summaryModelPredicate = "extSummaryModel"
 sinkModelPredicate = "extSinkModel"
 sourceModelPredicate = "extSourceModel"
-negativeSummaryModelPredicate = "extNegativeSummaryModel"
+neutralModelPredicate = "extNeutralModel"
 addsToTemplate = """  - addsTo:
       pack: {0}
       extensible: {1}

From 1d103f57a0600ee2c4bb9ef7a4abaaa2463d2dc7 Mon Sep 17 00:00:00 2001
From: Michael Nebel <michaelnebel@github.com>
Date: Wed, 7 Dec 2022 09:34:52 +0100
Subject: [PATCH 1265/1420] C#/Java: Rename CaptureNegativeSummaryModels test
 to CaptureNeutralModels.

---
 .../model-generator/dataflow/CaptureNegativeSummaryModels.qlref  | 1 -
 ...ativeSummaryModels.expected => CaptureNeutralModels.expected} | 0
 .../utils/model-generator/dataflow/CaptureNeutralModels.qlref    | 1 +
 .../model-generator/dataflow/CaptureNegativeSummaryModels.qlref  | 1 -
 ...ativeSummaryModels.expected => CaptureNeutralModels.expected} | 0
 .../utils/model-generator/dataflow/CaptureNeutralModels.qlref    | 1 +
 6 files changed, 2 insertions(+), 2 deletions(-)
 delete mode 100644 csharp/ql/test/utils/model-generator/dataflow/CaptureNegativeSummaryModels.qlref
 rename csharp/ql/test/utils/model-generator/dataflow/{CaptureNegativeSummaryModels.expected => CaptureNeutralModels.expected} (100%)
 create mode 100644 csharp/ql/test/utils/model-generator/dataflow/CaptureNeutralModels.qlref
 delete mode 100644 java/ql/test/utils/model-generator/dataflow/CaptureNegativeSummaryModels.qlref
 rename java/ql/test/utils/model-generator/dataflow/{CaptureNegativeSummaryModels.expected => CaptureNeutralModels.expected} (100%)
 create mode 100644 java/ql/test/utils/model-generator/dataflow/CaptureNeutralModels.qlref

diff --git a/csharp/ql/test/utils/model-generator/dataflow/CaptureNegativeSummaryModels.qlref b/csharp/ql/test/utils/model-generator/dataflow/CaptureNegativeSummaryModels.qlref
deleted file mode 100644
index c24d124c0b2..00000000000
--- a/csharp/ql/test/utils/model-generator/dataflow/CaptureNegativeSummaryModels.qlref
+++ /dev/null
@@ -1 +0,0 @@
-utils/model-generator/CaptureNegativeSummaryModels.ql
\ No newline at end of file
diff --git a/csharp/ql/test/utils/model-generator/dataflow/CaptureNegativeSummaryModels.expected b/csharp/ql/test/utils/model-generator/dataflow/CaptureNeutralModels.expected
similarity index 100%
rename from csharp/ql/test/utils/model-generator/dataflow/CaptureNegativeSummaryModels.expected
rename to csharp/ql/test/utils/model-generator/dataflow/CaptureNeutralModels.expected
diff --git a/csharp/ql/test/utils/model-generator/dataflow/CaptureNeutralModels.qlref b/csharp/ql/test/utils/model-generator/dataflow/CaptureNeutralModels.qlref
new file mode 100644
index 00000000000..cb6ef7faa65
--- /dev/null
+++ b/csharp/ql/test/utils/model-generator/dataflow/CaptureNeutralModels.qlref
@@ -0,0 +1 @@
+utils/model-generator/CaptureNeutralModels.ql
\ No newline at end of file
diff --git a/java/ql/test/utils/model-generator/dataflow/CaptureNegativeSummaryModels.qlref b/java/ql/test/utils/model-generator/dataflow/CaptureNegativeSummaryModels.qlref
deleted file mode 100644
index c24d124c0b2..00000000000
--- a/java/ql/test/utils/model-generator/dataflow/CaptureNegativeSummaryModels.qlref
+++ /dev/null
@@ -1 +0,0 @@
-utils/model-generator/CaptureNegativeSummaryModels.ql
\ No newline at end of file
diff --git a/java/ql/test/utils/model-generator/dataflow/CaptureNegativeSummaryModels.expected b/java/ql/test/utils/model-generator/dataflow/CaptureNeutralModels.expected
similarity index 100%
rename from java/ql/test/utils/model-generator/dataflow/CaptureNegativeSummaryModels.expected
rename to java/ql/test/utils/model-generator/dataflow/CaptureNeutralModels.expected
diff --git a/java/ql/test/utils/model-generator/dataflow/CaptureNeutralModels.qlref b/java/ql/test/utils/model-generator/dataflow/CaptureNeutralModels.qlref
new file mode 100644
index 00000000000..cb6ef7faa65
--- /dev/null
+++ b/java/ql/test/utils/model-generator/dataflow/CaptureNeutralModels.qlref
@@ -0,0 +1 @@
+utils/model-generator/CaptureNeutralModels.ql
\ No newline at end of file

From 1a226a15bf383d46512fe6e1322022e5f4a6aca3 Mon Sep 17 00:00:00 2001
From: Michael Nebel <michaelnebel@github.com>
Date: Wed, 7 Dec 2022 10:35:38 +0100
Subject: [PATCH 1266/1420] C#/Java: Cleanup up printing of generated models.

---
 .../models-as-data/generate_flow_model.py     | 19 +++++--------------
 1 file changed, 5 insertions(+), 14 deletions(-)

diff --git a/misc/scripts/models-as-data/generate_flow_model.py b/misc/scripts/models-as-data/generate_flow_model.py
index 0c37c7f8309..30f90000d4c 100644
--- a/misc/scripts/models-as-data/generate_flow_model.py
+++ b/misc/scripts/models-as-data/generate_flow_model.py
@@ -173,16 +173,10 @@ Requirements: `codeql` should both appear on your path.
         else:
             neutralAddsTo = ""
         
-        return f""" 
-# THIS FILE IS AN AUTO-GENERATED MODELS AS DATA FILE. DO NOT EDIT.
-# Definitions of taint steps in the {self.friendlyname} framework.
-
+        return f"""# THIS FILE IS AN AUTO-GENERATED MODELS AS DATA FILE. DO NOT EDIT.
+# Definitions of models for the {self.friendlyname} framework.
 extensions:
-{sinkAddsTo}
-{sourceAddsTo}
-{summaryAddsTo}
-{neutralAddsTo}
-        """
+{sinkAddsTo}{sourceAddsTo}{summaryAddsTo}{neutralAddsTo}"""
 
     def makeTypeBasedContent(self):
         if self.generateTypeBasedSummaries:
@@ -190,13 +184,10 @@ extensions:
         else:
             typeBasedSummaryAddsTo = ""
 
-        return f"""
-# THIS FILE IS AN AUTO-GENERATED MODELS AS DATA FILE. DO NOT EDIT.
+        return f"""# THIS FILE IS AN AUTO-GENERATED MODELS AS DATA FILE. DO NOT EDIT.
 # Definitions of type based summaries in the {self.friendlyname} framework.
-
 extensions:
-{typeBasedSummaryAddsTo}
-        """
+{typeBasedSummaryAddsTo}"""
 
     def save(self, content, target):
         with open(target, "w") as targetYml:

From 67732cbfa056b3d1d5345ee648e86c3a946ba2d7 Mon Sep 17 00:00:00 2001
From: Michael Nebel <michaelnebel@github.com>
Date: Wed, 7 Dec 2022 10:39:26 +0100
Subject: [PATCH 1267/1420] Java: Remove unneeded import for
 RegenerateModels.py.

---
 java/ql/src/utils/model-generator/RegenerateModels.py | 1 -
 1 file changed, 1 deletion(-)

diff --git a/java/ql/src/utils/model-generator/RegenerateModels.py b/java/ql/src/utils/model-generator/RegenerateModels.py
index a939a1e56eb..6bea57793a0 100755
--- a/java/ql/src/utils/model-generator/RegenerateModels.py
+++ b/java/ql/src/utils/model-generator/RegenerateModels.py
@@ -2,7 +2,6 @@
 
 # Tool to regenerate existing framework CSV models.
 
-from pathlib import Path
 import json
 import os
 import shutil

From 4835d148655d776511306a21f642d9bac2821e45 Mon Sep 17 00:00:00 2001
From: Michael Nebel <michaelnebel@github.com>
Date: Fri, 9 Dec 2022 15:11:49 +0100
Subject: [PATCH 1268/1420] Java/C#: Delete the deprecated NeutralModelCsv
 class.

---
 .../code/csharp/dataflow/ExternalFlow.qll     | 27 -------------------
 .../code/java/dataflow/ExternalFlow.qll       | 27 -------------------
 2 files changed, 54 deletions(-)

diff --git a/csharp/ql/lib/semmle/code/csharp/dataflow/ExternalFlow.qll b/csharp/ql/lib/semmle/code/csharp/dataflow/ExternalFlow.qll
index e6e98a9d222..2664c25280b 100644
--- a/csharp/ql/lib/semmle/code/csharp/dataflow/ExternalFlow.qll
+++ b/csharp/ql/lib/semmle/code/csharp/dataflow/ExternalFlow.qll
@@ -132,28 +132,12 @@ private class SummaryModelCsvInternal extends Unit {
   abstract predicate row(string row);
 }
 
-/**
- * DEPRECATED: Define neutral models as data extensions instead.
- *
- * A unit class for adding additional neutral model rows.
- *
- * Extend this class to add additional neutral definitions.
- */
-deprecated class NeutralModelCsv = NeutralModelCsvInternal;
-
-private class NeutralModelCsvInternal extends Unit {
-  /** Holds if `row` specifies a neutral definition. */
-  abstract predicate row(string row);
-}
-
 private predicate sourceModelInternal(string row) { any(SourceModelCsvInternal s).row(row) }
 
 private predicate summaryModelInternal(string row) { any(SummaryModelCsvInternal s).row(row) }
 
 private predicate sinkModelInternal(string row) { any(SinkModelCsvInternal s).row(row) }
 
-private predicate neutralModelInternal(string row) { any(NeutralModelCsvInternal s).row(row) }
-
 /**
  * Holds if a source model exists for the given parameters.
  */
@@ -250,15 +234,6 @@ extensible predicate extNeutralModel(
 predicate neutralModel(
   string namespace, string type, string name, string signature, string provenance
 ) {
-  exists(string row |
-    neutralModelInternal(row) and
-    row.splitAt(";", 0) = namespace and
-    row.splitAt(";", 1) = type and
-    row.splitAt(";", 2) = name and
-    row.splitAt(";", 3) = signature and
-    row.splitAt(";", 4) = provenance
-  )
-  or
   extNeutralModel(namespace, type, name, signature, provenance)
 }
 
@@ -391,8 +366,6 @@ module ModelValidation {
       sinkModelInternal(row) and expect = 9 and pred = "sink"
       or
       summaryModelInternal(row) and expect = 10 and pred = "summary"
-      or
-      neutralModelInternal(row) and expect = 5 and pred = "neutral"
     |
       exists(int cols |
         cols = 1 + max(int n | exists(row.splitAt(";", n))) and
diff --git a/java/ql/lib/semmle/code/java/dataflow/ExternalFlow.qll b/java/ql/lib/semmle/code/java/dataflow/ExternalFlow.qll
index f3465cad3f9..10084c17c8d 100644
--- a/java/ql/lib/semmle/code/java/dataflow/ExternalFlow.qll
+++ b/java/ql/lib/semmle/code/java/dataflow/ExternalFlow.qll
@@ -122,28 +122,12 @@ private class SummaryModelCsvInternal extends Unit {
   abstract predicate row(string row);
 }
 
-/**
- * DEPRECATED: Define neutral models as data extensions instead.
- *
- * A unit class for adding additional neutral model rows.
- *
- * Extend this class to add additional neutral definitions.
- */
-deprecated class NeutralModelCsv = NeutralModelCsvInternal;
-
-private class NeutralModelCsvInternal extends Unit {
-  /** Holds if `row` specifies a neutral definition. */
-  abstract predicate row(string row);
-}
-
 private predicate sourceModelInternal(string row) { any(SourceModelCsvInternal s).row(row) }
 
 private predicate summaryModelInternal(string row) { any(SummaryModelCsvInternal s).row(row) }
 
 private predicate sinkModelInternal(string row) { any(SinkModelCsvInternal s).row(row) }
 
-private predicate neutralModelInternal(string row) { any(NeutralModelCsvInternal s).row(row) }
-
 /**
  * Holds if an experimental source model exists for the given parameters.
  * This is only for experimental queries.
@@ -318,15 +302,6 @@ extensible predicate extNeutralModel(
 
 /** Holds if a neutral model exists indicating there is no flow for the given parameters. */
 predicate neutralModel(string package, string type, string name, string signature, string provenance) {
-  exists(string row |
-    neutralModelInternal(row) and
-    row.splitAt(";", 0) = package and
-    row.splitAt(";", 1) = type and
-    row.splitAt(";", 2) = name and
-    row.splitAt(";", 3) = signature and
-    row.splitAt(";", 4) = provenance
-  )
-  or
   extNeutralModel(package, type, name, signature, provenance)
 }
 
@@ -468,8 +443,6 @@ module ModelValidation {
       sinkModelInternal(row) and expect = 9 and pred = "sink"
       or
       summaryModelInternal(row) and expect = 10 and pred = "summary"
-      or
-      neutralModelInternal(row) and expect = 5 and pred = "neutral"
     |
       exists(int cols |
         cols = 1 + max(int n | exists(row.splitAt(";", n))) and

From 8c8e71dd8203ec2d9548f98de65d966e2954e4dc Mon Sep 17 00:00:00 2001
From: Edward Minnix III <egregius313@github.com>
Date: Fri, 9 Dec 2022 11:35:02 -0500
Subject: [PATCH 1269/1420] Grammar, concision, and style edits

Co-authored-by: Sam Browning <106113886+sabrowning1@users.noreply.github.com>
---
 .../AndroidWebViewSettingsFileAccess.qhelp    | 25 ++++++++++---------
 1 file changed, 13 insertions(+), 12 deletions(-)

diff --git a/java/ql/src/Security/CWE/CWE-200/AndroidWebViewSettingsFileAccess.qhelp b/java/ql/src/Security/CWE/CWE-200/AndroidWebViewSettingsFileAccess.qhelp
index 13ffa6d9c33..44d69f410fb 100644
--- a/java/ql/src/Security/CWE/CWE-200/AndroidWebViewSettingsFileAccess.qhelp
+++ b/java/ql/src/Security/CWE/CWE-200/AndroidWebViewSettingsFileAccess.qhelp
@@ -4,16 +4,16 @@
 <qhelp>
   <overview>
     <p>
-      File access in an Android WebView can expose the device's file system to
-      the JavaScript running in the WebView. If there are vulnerabilities in the
-      JavaScript or untrusted content is loaded in the WebView, file access may
-      allow an attacker to access or steal the user's data.
+      Allowing file access in an Android WebView can expose a device's file system to
+      the JavaScript running in that WebView. If the JavaScript contains
+      vulnerabilities or the WebView loads untrusted content, file access
+      allows an attacker to steal the user's data.
     </p>
   </overview>
 
   <recommendation>
-    <p>When possible, you should not allow file access. The file access settings
-    are disabled by default. You can explicitly disbale them by setting the
+    <p>When possible, do not allow file access. The file access settings
+    are disabled by default. You can explicitly disable file access by setting the
     following settings to <code>false</code>:</p>
 
     <ul>
@@ -23,14 +23,14 @@
     </ul>
 
     <p>If your application requires access to the file system, it is best to
-    avoid using <code>file://</code> urls, and instead use an alternative that
-    allows loading files via https, such
+    avoid using <code>file://</code> URLs. Instead, use an alternative that
+    loads files via HTTPS, such
     as <code>androidx.webkit.WebViewAssetLoader</code>.</p>
   </recommendation>
 
   <example>
-    <p>In the following (bad) example, the WebView is configured with the settings
-    which would allow local file access.</p>
+    <p>In the following (bad) example, the WebView is configured with settings
+    that allow local file access.</p>
 
     <sample src="WebViewFileAccessUnsafe.java"/>
 
@@ -39,8 +39,9 @@
     <sample src="WebViewFileAccessSafe.java"/>
 
     <p>
-      In the following example, an asset loader is configured so that assets can
-      be access over <code>https</code>, and not require file system access.
+      As mentioned previously, asset loaders can load files without file system 
+      access. In the following (good) example, an asset loader is configured to 
+      load assets over HTTPS.
     </p>
 
     <sample src="AssetLoaderExample.java"/>

From 4278997a2c96f7e744175967e55526943f2602c2 Mon Sep 17 00:00:00 2001
From: Edward Minnix III <egregius313@github.com>
Date: Fri, 9 Dec 2022 11:36:09 -0500
Subject: [PATCH 1270/1420] Reword WebView file access query description

Co-authored-by: Sam Browning <106113886+sabrowning1@users.noreply.github.com>
---
 .../Security/CWE/CWE-200/AndroidWebViewSettingsFileAccess.ql    | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/java/ql/src/Security/CWE/CWE-200/AndroidWebViewSettingsFileAccess.ql b/java/ql/src/Security/CWE/CWE-200/AndroidWebViewSettingsFileAccess.ql
index a20ed5a5081..a477fbe9e82 100644
--- a/java/ql/src/Security/CWE/CWE-200/AndroidWebViewSettingsFileAccess.ql
+++ b/java/ql/src/Security/CWE/CWE-200/AndroidWebViewSettingsFileAccess.ql
@@ -1,7 +1,7 @@
 /**
  * @name Android WebSettings file access
  * @kind problem
- * @description Enabling access to the file system in a WebView can enable access to sensitive information.
+ * @description Enabling access to the file system in a WebView allows attackers to view sensitive information.
  * @id java/android-websettings-file-access
  * @problem.severity warning
  * @security-severity 6.5

From 5282c86158d1e0eae1e68618c583d6040f558116 Mon Sep 17 00:00:00 2001
From: Chris Smowton <smowton@github.com>
Date: Fri, 9 Dec 2022 18:07:14 +0000
Subject: [PATCH 1271/1420] Apply review feedback

---
 .../src/main/kotlin/KotlinFileExtractor.kt             | 10 ++++------
 .../kotlin/nullability-annotations/test.py             |  3 ++-
 2 files changed, 6 insertions(+), 7 deletions(-)

diff --git a/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt b/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt
index 252bd97fa33..fcc19ec7fd2 100644
--- a/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt
+++ b/java/kotlin-extractor/src/main/kotlin/KotlinFileExtractor.kt
@@ -217,7 +217,8 @@ open class KotlinFileExtractor(
                 is IrField -> {
                     val parentId = useDeclarationParent(getFieldParent(declaration), false)?.cast<DbReftype>()
                     if (parentId != null) {
-                        extractField(declaration, parentId, extractFunctionBodies)
+                        // For consistency with the Java extractor, enum entries get type accesses only if we're extracting from .kt source (i.e., when `extractFunctionBodies` is set)
+                        extractField(declaration, parentId, extractAnnotationEnumTypeAccesses = extractFunctionBodies)
                     }
                     Unit
                 }
@@ -496,7 +497,7 @@ open class KotlinFileExtractor(
     private fun replaceKotlinDeprecatedAnnotation(annotations: List<IrConstructorCall>): List<IrConstructorCall> {
         val shouldReplace =
             annotations.any { (it.type as? IrSimpleType)?.classFqName?.asString() == "kotlin.Deprecated" } &&
-                    annotations.none { (it.type as? IrSimpleType)?.classFqName?.asString() == "java.lang.Deprecated" }
+                    annotations.none { it.type.classOrNull == javaLangDeprecated?.symbol }
         val jldConstructor = javaLangDeprecatedConstructor
         if (!shouldReplace || jldConstructor == null)
             return annotations
@@ -508,10 +509,7 @@ open class KotlinFileExtractor(
     }
 
     private fun extractAnnotations(c: IrAnnotationContainer, annotations: List<IrConstructorCall>, parent: Label<out DbExprparent>, extractEnumTypeAccesses: Boolean) {
-        val origin = when(c) {
-            is IrDeclaration -> c.origin
-            else -> null
-        }
+        val origin = (c as? IrDeclaration)?.origin ?: run { logger.warn("Unexpected annotation container: $c"); return }
         val replacedAnnotations =
             if (origin == IrDeclarationOrigin.IR_EXTERNAL_JAVA_DECLARATION_STUB)
                 replaceKotlinDeprecatedAnnotation(annotations)
diff --git a/java/ql/integration-tests/all-platforms/kotlin/nullability-annotations/test.py b/java/ql/integration-tests/all-platforms/kotlin/nullability-annotations/test.py
index 4072b3d454e..6a27fa40a40 100644
--- a/java/ql/integration-tests/all-platforms/kotlin/nullability-annotations/test.py
+++ b/java/ql/integration-tests/all-platforms/kotlin/nullability-annotations/test.py
@@ -1,6 +1,7 @@
 from create_database_utils import *
+import os
 
 os.mkdir('out')
 os.mkdir('out2')
 os.mkdir('out3')
-run_codeql_database_create(["javac AnnotatedInterface.java AnnotatedMethods.java zpkg/A.java org/jetbrains/annotations/NotNull.java org/jetbrains/annotations/Nullable.java -d out", "kotlinc ktUser.kt -cp out -d out2", "javac JavaUser.java -cp out:out2 -d out3"], lang="java")
+run_codeql_database_create(["javac AnnotatedInterface.java AnnotatedMethods.java zpkg/A.java org/jetbrains/annotations/NotNull.java org/jetbrains/annotations/Nullable.java -d out", "kotlinc ktUser.kt -cp out -d out2", "javac JavaUser.java -cp out" + os.pathsep + "out2 -d out3"], lang="java")

From cde93a39cd576ed1b907e7d4356a6bd3a4ce480a Mon Sep 17 00:00:00 2001
From: Jami Cogswell <jcogs33@Jamis-MacBook-Pro.local>
Date: Fri, 9 Dec 2022 15:51:40 -0500
Subject: [PATCH 1272/1420] Java: add isParameterless predicate to Constructor
 class

---
 java/ql/lib/semmle/code/java/Member.qll |  3 +++
 java/ql/src/Telemetry/ExternalApi.qll   | 10 ++++------
 2 files changed, 7 insertions(+), 6 deletions(-)

diff --git a/java/ql/lib/semmle/code/java/Member.qll b/java/ql/lib/semmle/code/java/Member.qll
index 102006b3213..5dae6a514fd 100644
--- a/java/ql/lib/semmle/code/java/Member.qll
+++ b/java/ql/lib/semmle/code/java/Member.qll
@@ -638,6 +638,9 @@ class Constructor extends Callable, @constructor {
   /** Holds if this is a default constructor, not explicitly declared in source code. */
   predicate isDefaultConstructor() { isDefConstr(this) }
 
+  /** Holds if this is a constructor without parameters. */
+  predicate isParameterless() { this.getNumberOfParameters() = 0 }
+
   override Constructor getSourceDeclaration() { constrs(this, _, _, _, _, result) }
 
   override string getSignature() { constrs(this, _, result, _, _, _) }
diff --git a/java/ql/src/Telemetry/ExternalApi.qll b/java/ql/src/Telemetry/ExternalApi.qll
index 39e9c86e2ab..0be2b6789fb 100644
--- a/java/ql/src/Telemetry/ExternalApi.qll
+++ b/java/ql/src/Telemetry/ExternalApi.qll
@@ -31,16 +31,14 @@ private string containerAsJar(Container container) {
   if container instanceof JarFile then result = container.getBaseName() else result = "rt.jar"
 }
 
-/** Holds if the given callable is a constructor without parameters. */
-private predicate isParameterlessConstructor(Callable c) {
-  c instanceof Constructor and c.getNumberOfParameters() = 0
-}
-
 /** Holds if the given callable is part of a common testing library or framework. */
 private predicate isTestLibrary(Callable c) { c.getDeclaringType() instanceof TestLibrary }
 
 /** Holds if the given callable is not worth supporting. */
-private predicate isUninteresting(Callable c) { isTestLibrary(c) or isParameterlessConstructor(c) }
+private predicate isUninteresting(Callable c) {
+  isTestLibrary(c) or
+  c.(Constructor).isParameterless()
+}
 
 /**
  * An external API from either the Standard Library or a 3rd party library.

From 123fe5edfe073ffa12242322410a03d51311f98e Mon Sep 17 00:00:00 2001
From: Jami Cogswell <jcogs33@Jamis-MacBook-Pro.local>
Date: Fri, 9 Dec 2022 15:55:32 -0500
Subject: [PATCH 1273/1420] C#: add isParameterless predicate to Constructor
 class

---
 csharp/ql/lib/semmle/code/csharp/Callable.qll | 3 +++
 csharp/ql/src/Telemetry/ExternalApi.qll       | 8 ++------
 2 files changed, 5 insertions(+), 6 deletions(-)

diff --git a/csharp/ql/lib/semmle/code/csharp/Callable.qll b/csharp/ql/lib/semmle/code/csharp/Callable.qll
index 6c66b4e1beb..bc8e1294adb 100644
--- a/csharp/ql/lib/semmle/code/csharp/Callable.qll
+++ b/csharp/ql/lib/semmle/code/csharp/Callable.qll
@@ -358,6 +358,9 @@ class Constructor extends DotNet::Constructor, Callable, Member, Attributable, @
     if this.isStatic() then result = this.getParameter(i) else result = this.getParameter(i - 1)
   }
 
+  /** Holds if this is a constructor without parameters. */
+  predicate isParameterless() { this.getNumberOfParameters() = 0 }
+
   override string getUndecoratedName() { result = ".ctor" }
 }
 
diff --git a/csharp/ql/src/Telemetry/ExternalApi.qll b/csharp/ql/src/Telemetry/ExternalApi.qll
index 736acacf2af..a1065fd4b50 100644
--- a/csharp/ql/src/Telemetry/ExternalApi.qll
+++ b/csharp/ql/src/Telemetry/ExternalApi.qll
@@ -24,17 +24,13 @@ class TestLibrary extends RefType {
   }
 }
 
-/** Holds if the given callable is a constructor without parameters. */
-private predicate isParameterlessConstructor(DotNet::Callable c) {
-  c instanceof Constructor and c.getNumberOfParameters() = 0
-}
-
 /** Holds if the given callable is part of a common testing library or framework. */
 private predicate isTestLibrary(DotNet::Callable c) { c.getDeclaringType() instanceof TestLibrary }
 
 /** Holds if the given callable is not worth supporting. */
 private predicate isUninteresting(DotNet::Callable c) {
-  isTestLibrary(c) or isParameterlessConstructor(c)
+  isTestLibrary(c) or
+  c.(Constructor).isParameterless()
 }
 
 /**

From 331fab5ac0d1239730e0dfddabfdce6b43cfdaa4 Mon Sep 17 00:00:00 2001
From: Jeroen Ketema <jketema@github.com>
Date: Fri, 9 Dec 2022 23:03:36 +0100
Subject: [PATCH 1274/1420] C++: Generalize the `ArgvSource` flow source

This matches `isUserInput` and handles cases where `argv` has a different name,
which is allowed.
---
 cpp/ql/lib/semmle/code/cpp/security/FlowSources.qll | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/cpp/ql/lib/semmle/code/cpp/security/FlowSources.qll b/cpp/ql/lib/semmle/code/cpp/security/FlowSources.qll
index d2c90a38075..8bc059da506 100644
--- a/cpp/ql/lib/semmle/code/cpp/security/FlowSources.qll
+++ b/cpp/ql/lib/semmle/code/cpp/security/FlowSources.qll
@@ -89,9 +89,9 @@ private class LocalParameterSource extends LocalFlowSource {
 
 private class ArgvSource extends LocalFlowSource {
   ArgvSource() {
-    exists(Parameter argv |
-      argv.hasName("argv") and
-      argv.getFunction().hasGlobalName("main") and
+    exists(Function main, Parameter argv |
+      main.hasGlobalName("main") and
+      main.getParameter(1) = argv and
       this.asExpr() = argv.getAnAccess()
     )
   }

From 1e1974c9fbc8e45fa14d9a3495b89e0a2416b387 Mon Sep 17 00:00:00 2001
From: Jeroen Ketema <jketema@github.com>
Date: Fri, 9 Dec 2022 23:17:36 +0100
Subject: [PATCH 1275/1420] C++: Add change note

---
 cpp/ql/lib/change-notes/2022-12-09-generalize-argv-source.md | 4 ++++
 1 file changed, 4 insertions(+)
 create mode 100644 cpp/ql/lib/change-notes/2022-12-09-generalize-argv-source.md

diff --git a/cpp/ql/lib/change-notes/2022-12-09-generalize-argv-source.md b/cpp/ql/lib/change-notes/2022-12-09-generalize-argv-source.md
new file mode 100644
index 00000000000..76fda20ec61
--- /dev/null
+++ b/cpp/ql/lib/change-notes/2022-12-09-generalize-argv-source.md
@@ -0,0 +1,4 @@
+---
+category: minorAnalysis
+---
+* The `ArgvSource` flow source has been generalized to handle cases where the argument vector of `main` is not named `argv`.

From 9dc26140129223bdb094f793213cf018e41fcaae Mon Sep 17 00:00:00 2001
From: Jeroen Ketema <jketema@github.com>
Date: Fri, 9 Dec 2022 23:10:58 +0100
Subject: [PATCH 1276/1420] C++: Make all flow source descriptions start with a
 lower case letter

In every context where we use the description a lower case letter makes more
sense.
---
 .../lib/semmle/code/cpp/models/implementations/Fread.qll  | 2 +-
 .../semmle/code/cpp/models/implementations/GetDelim.qll   | 2 +-
 .../lib/semmle/code/cpp/models/implementations/Gets.qll   | 8 ++++----
 .../lib/semmle/code/cpp/models/implementations/Inet.qll   | 2 +-
 .../lib/semmle/code/cpp/models/implementations/Recv.qll   | 2 +-
 .../lib/semmle/code/cpp/models/implementations/Scanf.qll  | 4 ++--
 .../lib/semmle/code/cpp/models/implementations/Send.qll   | 2 +-
 .../Security/CWE/CWE-129/ImproperArrayIndexValidation.ql  | 6 +-----
 8 files changed, 12 insertions(+), 16 deletions(-)

diff --git a/cpp/ql/lib/semmle/code/cpp/models/implementations/Fread.qll b/cpp/ql/lib/semmle/code/cpp/models/implementations/Fread.qll
index df2d92fbc4f..39733167b81 100644
--- a/cpp/ql/lib/semmle/code/cpp/models/implementations/Fread.qll
+++ b/cpp/ql/lib/semmle/code/cpp/models/implementations/Fread.qll
@@ -15,6 +15,6 @@ private class Fread extends AliasFunction, RemoteFlowSourceFunction {
 
   override predicate hasRemoteFlowSource(FunctionOutput output, string description) {
     output.isParameterDeref(0) and
-    description = "String read by " + this.getName()
+    description = "string read by " + this.getName()
   }
 }
diff --git a/cpp/ql/lib/semmle/code/cpp/models/implementations/GetDelim.qll b/cpp/ql/lib/semmle/code/cpp/models/implementations/GetDelim.qll
index 67950b6e135..6cf642bd4cb 100644
--- a/cpp/ql/lib/semmle/code/cpp/models/implementations/GetDelim.qll
+++ b/cpp/ql/lib/semmle/code/cpp/models/implementations/GetDelim.qll
@@ -36,6 +36,6 @@ private class GetDelimFunction extends TaintFunction, AliasFunction, SideEffectF
 
   override predicate hasRemoteFlowSource(FunctionOutput output, string description) {
     output.isParameterDeref(0) and
-    description = "String read by " + this.getName()
+    description = "string read by " + this.getName()
   }
 }
diff --git a/cpp/ql/lib/semmle/code/cpp/models/implementations/Gets.qll b/cpp/ql/lib/semmle/code/cpp/models/implementations/Gets.qll
index 67b9307bbe1..b89eb2c1f14 100644
--- a/cpp/ql/lib/semmle/code/cpp/models/implementations/Gets.qll
+++ b/cpp/ql/lib/semmle/code/cpp/models/implementations/Gets.qll
@@ -49,10 +49,10 @@ private class FgetsFunction extends DataFlowFunction, TaintFunction, ArrayFuncti
 
   override predicate hasRemoteFlowSource(FunctionOutput output, string description) {
     output.isParameterDeref(0) and
-    description = "String read by " + this.getName()
+    description = "string read by " + this.getName()
     or
     output.isReturnValue() and
-    description = "String read by " + this.getName()
+    description = "string read by " + this.getName()
   }
 
   override predicate hasArrayWithVariableSize(int bufParam, int countParam) {
@@ -98,10 +98,10 @@ private class GetsFunction extends DataFlowFunction, ArrayFunction, AliasFunctio
 
   override predicate hasLocalFlowSource(FunctionOutput output, string description) {
     output.isParameterDeref(0) and
-    description = "String read by " + this.getName()
+    description = "string read by " + this.getName()
     or
     output.isReturnValue() and
-    description = "String read by " + this.getName()
+    description = "string read by " + this.getName()
   }
 
   override predicate hasArrayWithUnknownSize(int bufParam) { bufParam = 0 }
diff --git a/cpp/ql/lib/semmle/code/cpp/models/implementations/Inet.qll b/cpp/ql/lib/semmle/code/cpp/models/implementations/Inet.qll
index 2589c6f46a4..c0c4537b746 100644
--- a/cpp/ql/lib/semmle/code/cpp/models/implementations/Inet.qll
+++ b/cpp/ql/lib/semmle/code/cpp/models/implementations/Inet.qll
@@ -158,6 +158,6 @@ private class Getaddrinfo extends TaintFunction, ArrayFunction, RemoteFlowSource
 
   override predicate hasRemoteFlowSource(FunctionOutput output, string description) {
     output.isParameterDeref(3) and
-    description = "Address returned by " + this.getName()
+    description = "address returned by " + this.getName()
   }
 }
diff --git a/cpp/ql/lib/semmle/code/cpp/models/implementations/Recv.qll b/cpp/ql/lib/semmle/code/cpp/models/implementations/Recv.qll
index 0551185ba14..6a4dd524b86 100644
--- a/cpp/ql/lib/semmle/code/cpp/models/implementations/Recv.qll
+++ b/cpp/ql/lib/semmle/code/cpp/models/implementations/Recv.qll
@@ -83,7 +83,7 @@ private class Recv extends AliasFunction, ArrayFunction, SideEffectFunction,
       or
       this.hasGlobalName("recvfrom") and output.isParameterDeref([4, 5])
     ) and
-    description = "Buffer read by " + this.getName()
+    description = "buffer read by " + this.getName()
   }
 
   override predicate hasSocketInput(FunctionInput input) { input.isParameter(0) }
diff --git a/cpp/ql/lib/semmle/code/cpp/models/implementations/Scanf.qll b/cpp/ql/lib/semmle/code/cpp/models/implementations/Scanf.qll
index 079a231a913..9a9e02611f8 100644
--- a/cpp/ql/lib/semmle/code/cpp/models/implementations/Scanf.qll
+++ b/cpp/ql/lib/semmle/code/cpp/models/implementations/Scanf.qll
@@ -74,7 +74,7 @@ abstract private class ScanfFunctionModel extends ArrayFunction, TaintFunction,
 private class ScanfModel extends ScanfFunctionModel, LocalFlowSourceFunction instanceof Scanf {
   override predicate hasLocalFlowSource(FunctionOutput output, string description) {
     output.isParameterDeref(any(int i | i >= this.getArgsStartPosition())) and
-    description = "Value read by " + this.getName()
+    description = "value read by " + this.getName()
   }
 }
 
@@ -84,7 +84,7 @@ private class ScanfModel extends ScanfFunctionModel, LocalFlowSourceFunction ins
 private class FscanfModel extends ScanfFunctionModel, RemoteFlowSourceFunction instanceof Fscanf {
   override predicate hasRemoteFlowSource(FunctionOutput output, string description) {
     output.isParameterDeref(any(int i | i >= this.getArgsStartPosition())) and
-    description = "Value read by " + this.getName()
+    description = "value read by " + this.getName()
   }
 }
 
diff --git a/cpp/ql/lib/semmle/code/cpp/models/implementations/Send.qll b/cpp/ql/lib/semmle/code/cpp/models/implementations/Send.qll
index d871bad68af..16047b21183 100644
--- a/cpp/ql/lib/semmle/code/cpp/models/implementations/Send.qll
+++ b/cpp/ql/lib/semmle/code/cpp/models/implementations/Send.qll
@@ -58,7 +58,7 @@ private class Send extends AliasFunction, ArrayFunction, SideEffectFunction, Rem
   override ParameterIndex getParameterSizeIndex(ParameterIndex i) { i = 1 and result = 2 }
 
   override predicate hasRemoteFlowSink(FunctionInput input, string description) {
-    input.isParameterDeref(1) and description = "Buffer sent by " + this.getName()
+    input.isParameterDeref(1) and description = "buffer sent by " + this.getName()
   }
 
   override predicate hasSocketInput(FunctionInput input) { input.isParameter(0) }
diff --git a/cpp/ql/src/Security/CWE/CWE-129/ImproperArrayIndexValidation.ql b/cpp/ql/src/Security/CWE/CWE-129/ImproperArrayIndexValidation.ql
index 33a6ee1d5f5..2001b1a308c 100644
--- a/cpp/ql/src/Security/CWE/CWE-129/ImproperArrayIndexValidation.ql
+++ b/cpp/ql/src/Security/CWE/CWE-129/ImproperArrayIndexValidation.ql
@@ -116,10 +116,6 @@ class ImproperArrayIndexValidationConfig extends TaintTracking::Configuration {
   }
 }
 
-/** Gets `str` where the first letter has been lowercased. */
-bindingset[str]
-string lowerFirst(string str) { result = str.prefix(1).toLowerCase() + str.suffix(1) }
-
 from
   ImproperArrayIndexValidationConfig conf, DataFlow::PathNode source, DataFlow::PathNode sink,
   string sourceType
@@ -128,4 +124,4 @@ where
   isFlowSource(source.getNode(), sourceType)
 select sink.getNode(), source, sink,
   "An array indexing expression depends on $@ that might be outside the bounds of the array.",
-  source.getNode(), lowerFirst(sourceType)
+  source.getNode(), sourceType

From ce92ba640a36193ecc680887fb43b0585d8ec4a2 Mon Sep 17 00:00:00 2001
From: Jeroen Ketema <jketema@github.com>
Date: Fri, 9 Dec 2022 23:38:03 +0100
Subject: [PATCH 1277/1420] C++: Accept test changes

---
 .../semmle/ExecTainted/ExecTainted.expected   | 22 +++++++++----------
 .../tests/CleartextBufferWrite.expected       |  2 +-
 2 files changed, 12 insertions(+), 12 deletions(-)

diff --git a/cpp/ql/test/query-tests/Security/CWE/CWE-078/semmle/ExecTainted/ExecTainted.expected b/cpp/ql/test/query-tests/Security/CWE/CWE-078/semmle/ExecTainted/ExecTainted.expected
index 5542eac5d3a..20be1550401 100644
--- a/cpp/ql/test/query-tests/Security/CWE/CWE-078/semmle/ExecTainted/ExecTainted.expected
+++ b/cpp/ql/test/query-tests/Security/CWE/CWE-078/semmle/ExecTainted/ExecTainted.expected
@@ -163,17 +163,17 @@ subpaths
 #select
 | test.cpp:23:12:23:19 | command1 | test.cpp:16:20:16:23 | argv | test.cpp:23:12:23:19 | command1 indirection | This argument to an OS command is derived from $@, dangerously concatenated into $@, and then passed to system(string). | test.cpp:16:20:16:23 | argv | user input (a command-line argument) | test.cpp:22:13:22:20 | sprintf output argument | sprintf output argument |
 | test.cpp:51:10:51:16 | command | test.cpp:47:21:47:26 | call to getenv | test.cpp:51:10:51:16 | command indirection | This argument to an OS command is derived from $@, dangerously concatenated into $@, and then passed to system(string). | test.cpp:47:21:47:26 | call to getenv | user input (an environment variable) | test.cpp:50:11:50:17 | sprintf output argument | sprintf output argument |
-| test.cpp:65:10:65:16 | command | test.cpp:62:9:62:16 | fread output argument | test.cpp:65:10:65:16 | command indirection | This argument to an OS command is derived from $@, dangerously concatenated into $@, and then passed to system(string). | test.cpp:62:9:62:16 | fread output argument | user input (String read by fread) | test.cpp:64:11:64:17 | strncat output argument | strncat output argument |
-| test.cpp:85:32:85:38 | command | test.cpp:82:9:82:16 | fread output argument | test.cpp:85:32:85:38 | command indirection | This argument to an OS command is derived from $@, dangerously concatenated into $@, and then passed to execl. | test.cpp:82:9:82:16 | fread output argument | user input (String read by fread) | test.cpp:84:11:84:17 | strncat output argument | strncat output argument |
-| test.cpp:94:45:94:48 | path | test.cpp:91:9:91:16 | fread output argument | test.cpp:94:45:94:48 | path indirection | This argument to an OS command is derived from $@, dangerously concatenated into $@, and then passed to execl. | test.cpp:91:9:91:16 | fread output argument | user input (String read by fread) | test.cpp:93:11:93:14 | strncat output argument | strncat output argument |
+| test.cpp:65:10:65:16 | command | test.cpp:62:9:62:16 | fread output argument | test.cpp:65:10:65:16 | command indirection | This argument to an OS command is derived from $@, dangerously concatenated into $@, and then passed to system(string). | test.cpp:62:9:62:16 | fread output argument | user input (string read by fread) | test.cpp:64:11:64:17 | strncat output argument | strncat output argument |
+| test.cpp:85:32:85:38 | command | test.cpp:82:9:82:16 | fread output argument | test.cpp:85:32:85:38 | command indirection | This argument to an OS command is derived from $@, dangerously concatenated into $@, and then passed to execl. | test.cpp:82:9:82:16 | fread output argument | user input (string read by fread) | test.cpp:84:11:84:17 | strncat output argument | strncat output argument |
+| test.cpp:94:45:94:48 | path | test.cpp:91:9:91:16 | fread output argument | test.cpp:94:45:94:48 | path indirection | This argument to an OS command is derived from $@, dangerously concatenated into $@, and then passed to execl. | test.cpp:91:9:91:16 | fread output argument | user input (string read by fread) | test.cpp:93:11:93:14 | strncat output argument | strncat output argument |
 | test.cpp:108:18:108:22 | call to c_str | test.cpp:106:20:106:25 | call to getenv | test.cpp:108:18:108:22 | call to c_str indirection | This argument to an OS command is derived from $@, dangerously concatenated into $@, and then passed to system(string). | test.cpp:106:20:106:25 | call to getenv | user input (an environment variable) | test.cpp:107:31:107:31 | call to operator+ | call to operator+ |
 | test.cpp:114:25:114:29 | call to c_str | test.cpp:113:20:113:25 | call to getenv | test.cpp:114:25:114:29 | call to c_str indirection | This argument to an OS command is derived from $@, dangerously concatenated into $@, and then passed to system(string). | test.cpp:113:20:113:25 | call to getenv | user input (an environment variable) | test.cpp:114:17:114:17 | Call | Call |
 | test.cpp:120:25:120:28 | call to data | test.cpp:119:20:119:25 | call to getenv | test.cpp:120:10:120:30 | call to data indirection | This argument to an OS command is derived from $@, dangerously concatenated into $@, and then passed to system(string). | test.cpp:119:20:119:25 | call to getenv | user input (an environment variable) | test.cpp:120:17:120:17 | Call | Call |
-| test.cpp:143:10:143:16 | command | test.cpp:140:9:140:11 | fread output argument | test.cpp:143:10:143:16 | command indirection | This argument to an OS command is derived from $@, dangerously concatenated into $@, and then passed to system(string). | test.cpp:140:9:140:11 | fread output argument | user input (String read by fread) | test.cpp:142:11:142:17 | sprintf output argument | sprintf output argument |
-| test.cpp:183:32:183:38 | command | test.cpp:174:9:174:16 | fread output argument | test.cpp:183:32:183:38 | command indirection | This argument to an OS command is derived from $@, dangerously concatenated into $@, and then passed to execl. | test.cpp:174:9:174:16 | fread output argument | user input (String read by fread) | test.cpp:177:13:177:17 | strncat output argument | strncat output argument |
-| test.cpp:183:32:183:38 | command | test.cpp:174:9:174:16 | fread output argument | test.cpp:183:32:183:38 | command indirection | This argument to an OS command is derived from $@, dangerously concatenated into $@, and then passed to execl. | test.cpp:174:9:174:16 | fread output argument | user input (String read by fread) | test.cpp:178:13:178:19 | strncat output argument | strncat output argument |
-| test.cpp:183:32:183:38 | command | test.cpp:174:9:174:16 | fread output argument | test.cpp:183:32:183:38 | command indirection | This argument to an OS command is derived from $@, dangerously concatenated into $@, and then passed to execl. | test.cpp:174:9:174:16 | fread output argument | user input (String read by fread) | test.cpp:180:13:180:19 | strncat output argument | strncat output argument |
-| test.cpp:198:32:198:38 | command | test.cpp:194:9:194:16 | fread output argument | test.cpp:198:32:198:38 | command indirection | This argument to an OS command is derived from $@, dangerously concatenated into $@, and then passed to execl. | test.cpp:194:9:194:16 | fread output argument | user input (String read by fread) | test.cpp:187:11:187:15 | strncat output argument | strncat output argument |
-| test.cpp:198:32:198:38 | command | test.cpp:194:9:194:16 | fread output argument | test.cpp:198:32:198:38 | command indirection | This argument to an OS command is derived from $@, dangerously concatenated into $@, and then passed to execl. | test.cpp:194:9:194:16 | fread output argument | user input (String read by fread) | test.cpp:188:11:188:17 | strncat output argument | strncat output argument |
-| test.cpp:222:32:222:38 | command | test.cpp:218:9:218:16 | fread output argument | test.cpp:222:32:222:38 | command indirection | This argument to an OS command is derived from $@, dangerously concatenated into $@, and then passed to execl. | test.cpp:218:9:218:16 | fread output argument | user input (String read by fread) | test.cpp:220:10:220:16 | strncat output argument | strncat output argument |
-| test.cpp:222:32:222:38 | command | test.cpp:218:9:218:16 | fread output argument | test.cpp:222:32:222:38 | command indirection | This argument to an OS command is derived from $@, dangerously concatenated into $@, and then passed to execl. | test.cpp:218:9:218:16 | fread output argument | user input (String read by fread) | test.cpp:220:10:220:16 | strncat output argument | strncat output argument |
+| test.cpp:143:10:143:16 | command | test.cpp:140:9:140:11 | fread output argument | test.cpp:143:10:143:16 | command indirection | This argument to an OS command is derived from $@, dangerously concatenated into $@, and then passed to system(string). | test.cpp:140:9:140:11 | fread output argument | user input (string read by fread) | test.cpp:142:11:142:17 | sprintf output argument | sprintf output argument |
+| test.cpp:183:32:183:38 | command | test.cpp:174:9:174:16 | fread output argument | test.cpp:183:32:183:38 | command indirection | This argument to an OS command is derived from $@, dangerously concatenated into $@, and then passed to execl. | test.cpp:174:9:174:16 | fread output argument | user input (string read by fread) | test.cpp:177:13:177:17 | strncat output argument | strncat output argument |
+| test.cpp:183:32:183:38 | command | test.cpp:174:9:174:16 | fread output argument | test.cpp:183:32:183:38 | command indirection | This argument to an OS command is derived from $@, dangerously concatenated into $@, and then passed to execl. | test.cpp:174:9:174:16 | fread output argument | user input (string read by fread) | test.cpp:178:13:178:19 | strncat output argument | strncat output argument |
+| test.cpp:183:32:183:38 | command | test.cpp:174:9:174:16 | fread output argument | test.cpp:183:32:183:38 | command indirection | This argument to an OS command is derived from $@, dangerously concatenated into $@, and then passed to execl. | test.cpp:174:9:174:16 | fread output argument | user input (string read by fread) | test.cpp:180:13:180:19 | strncat output argument | strncat output argument |
+| test.cpp:198:32:198:38 | command | test.cpp:194:9:194:16 | fread output argument | test.cpp:198:32:198:38 | command indirection | This argument to an OS command is derived from $@, dangerously concatenated into $@, and then passed to execl. | test.cpp:194:9:194:16 | fread output argument | user input (string read by fread) | test.cpp:187:11:187:15 | strncat output argument | strncat output argument |
+| test.cpp:198:32:198:38 | command | test.cpp:194:9:194:16 | fread output argument | test.cpp:198:32:198:38 | command indirection | This argument to an OS command is derived from $@, dangerously concatenated into $@, and then passed to execl. | test.cpp:194:9:194:16 | fread output argument | user input (string read by fread) | test.cpp:188:11:188:17 | strncat output argument | strncat output argument |
+| test.cpp:222:32:222:38 | command | test.cpp:218:9:218:16 | fread output argument | test.cpp:222:32:222:38 | command indirection | This argument to an OS command is derived from $@, dangerously concatenated into $@, and then passed to execl. | test.cpp:218:9:218:16 | fread output argument | user input (string read by fread) | test.cpp:220:10:220:16 | strncat output argument | strncat output argument |
+| test.cpp:222:32:222:38 | command | test.cpp:218:9:218:16 | fread output argument | test.cpp:222:32:222:38 | command indirection | This argument to an OS command is derived from $@, dangerously concatenated into $@, and then passed to execl. | test.cpp:218:9:218:16 | fread output argument | user input (string read by fread) | test.cpp:220:10:220:16 | strncat output argument | strncat output argument |
diff --git a/cpp/ql/test/query-tests/Security/CWE/CWE-311/semmle/tests/CleartextBufferWrite.expected b/cpp/ql/test/query-tests/Security/CWE/CWE-311/semmle/tests/CleartextBufferWrite.expected
index cece7f64714..23850de9418 100644
--- a/cpp/ql/test/query-tests/Security/CWE/CWE-311/semmle/tests/CleartextBufferWrite.expected
+++ b/cpp/ql/test/query-tests/Security/CWE/CWE-311/semmle/tests/CleartextBufferWrite.expected
@@ -6,5 +6,5 @@ nodes
 | test.cpp:58:25:58:29 | input | semmle.label | input |
 subpaths
 #select
-| test2.cpp:110:3:110:6 | call to gets | test2.cpp:110:3:110:6 | call to gets | test2.cpp:110:3:110:6 | call to gets | This write into buffer 'password' may contain unencrypted data from $@. | test2.cpp:110:3:110:6 | call to gets | user input (String read by gets) |
+| test2.cpp:110:3:110:6 | call to gets | test2.cpp:110:3:110:6 | call to gets | test2.cpp:110:3:110:6 | call to gets | This write into buffer 'password' may contain unencrypted data from $@. | test2.cpp:110:3:110:6 | call to gets | user input (string read by gets) |
 | test.cpp:58:3:58:9 | call to sprintf | test.cpp:54:17:54:20 | argv | test.cpp:58:25:58:29 | input | This write into buffer 'passwd' may contain unencrypted data from $@. | test.cpp:54:17:54:20 | argv | user input (a command-line argument) |

From 6854845b75fb405f2881fea6b9875398e330578a Mon Sep 17 00:00:00 2001
From: Jami Cogswell <jcogs33@Jamis-MacBook-Pro.local>
Date: Fri, 9 Dec 2022 18:37:50 -0500
Subject: [PATCH 1278/1420] Java: refactor isManuallyGenerated and
 isBothAutoAndManuallyGenerated

---
 .../dataflow/internal/FlowSummaryImpl.qll     | 22 +++++--------------
 .../go/dataflow/internal/FlowSummaryImpl.qll  | 22 +++++--------------
 .../dataflow/internal/FlowSummaryImpl.qll     | 22 +++++--------------
 .../dataflow/new/internal/FlowSummaryImpl.qll | 22 +++++--------------
 .../dataflow/internal/FlowSummaryImpl.qll     | 22 +++++--------------
 .../dataflow/internal/FlowSummaryImpl.qll     | 22 +++++--------------
 6 files changed, 36 insertions(+), 96 deletions(-)

diff --git a/csharp/ql/lib/semmle/code/csharp/dataflow/internal/FlowSummaryImpl.qll b/csharp/ql/lib/semmle/code/csharp/dataflow/internal/FlowSummaryImpl.qll
index 8ef3bea0408..0b10bb2947f 100644
--- a/csharp/ql/lib/semmle/code/csharp/dataflow/internal/FlowSummaryImpl.qll
+++ b/csharp/ql/lib/semmle/code/csharp/dataflow/internal/FlowSummaryImpl.qll
@@ -1001,20 +1001,6 @@ module Private {
         not summaryElement(this, _, _, _, false)
       }
 
-      private predicate relevantSummaryElementManual(
-        AccessPath inSpec, AccessPath outSpec, string kind
-      ) {
-        summaryElement(this, inSpec, outSpec, kind, false) and
-        not summaryElement(this, _, _, _, true)
-      }
-
-      private predicate relevantSummaryElementBothGeneratedAndManual(
-        AccessPath inSpec, AccessPath outSpec, string kind
-      ) {
-        summaryElement(this, inSpec, outSpec, kind, true) and
-        summaryElement(this, inSpec, outSpec, kind, false)
-      }
-
       private predicate relevantSummaryElement(AccessPath inSpec, AccessPath outSpec, string kind) {
         summaryElement(this, inSpec, outSpec, kind, false)
         or
@@ -1037,10 +1023,14 @@ module Private {
 
       override predicate isAutoGenerated() { this.relevantSummaryElementGenerated(_, _, _) }
 
-      override predicate isManuallyGenerated() { this.relevantSummaryElementManual(_, _, _) }
+      override predicate isManuallyGenerated() {
+        summaryElement(this, _, _, _, false) and
+        not summaryElement(this, _, _, _, true)
+      }
 
       override predicate isBothAutoAndManuallyGenerated() {
-        this.relevantSummaryElementBothGeneratedAndManual(_, _, _)
+        summaryElement(this, _, _, _, true) and
+        summaryElement(this, _, _, _, false)
       }
     }
 
diff --git a/go/ql/lib/semmle/go/dataflow/internal/FlowSummaryImpl.qll b/go/ql/lib/semmle/go/dataflow/internal/FlowSummaryImpl.qll
index 8ef3bea0408..0b10bb2947f 100644
--- a/go/ql/lib/semmle/go/dataflow/internal/FlowSummaryImpl.qll
+++ b/go/ql/lib/semmle/go/dataflow/internal/FlowSummaryImpl.qll
@@ -1001,20 +1001,6 @@ module Private {
         not summaryElement(this, _, _, _, false)
       }
 
-      private predicate relevantSummaryElementManual(
-        AccessPath inSpec, AccessPath outSpec, string kind
-      ) {
-        summaryElement(this, inSpec, outSpec, kind, false) and
-        not summaryElement(this, _, _, _, true)
-      }
-
-      private predicate relevantSummaryElementBothGeneratedAndManual(
-        AccessPath inSpec, AccessPath outSpec, string kind
-      ) {
-        summaryElement(this, inSpec, outSpec, kind, true) and
-        summaryElement(this, inSpec, outSpec, kind, false)
-      }
-
       private predicate relevantSummaryElement(AccessPath inSpec, AccessPath outSpec, string kind) {
         summaryElement(this, inSpec, outSpec, kind, false)
         or
@@ -1037,10 +1023,14 @@ module Private {
 
       override predicate isAutoGenerated() { this.relevantSummaryElementGenerated(_, _, _) }
 
-      override predicate isManuallyGenerated() { this.relevantSummaryElementManual(_, _, _) }
+      override predicate isManuallyGenerated() {
+        summaryElement(this, _, _, _, false) and
+        not summaryElement(this, _, _, _, true)
+      }
 
       override predicate isBothAutoAndManuallyGenerated() {
-        this.relevantSummaryElementBothGeneratedAndManual(_, _, _)
+        summaryElement(this, _, _, _, true) and
+        summaryElement(this, _, _, _, false)
       }
     }
 
diff --git a/java/ql/lib/semmle/code/java/dataflow/internal/FlowSummaryImpl.qll b/java/ql/lib/semmle/code/java/dataflow/internal/FlowSummaryImpl.qll
index 8ef3bea0408..0b10bb2947f 100644
--- a/java/ql/lib/semmle/code/java/dataflow/internal/FlowSummaryImpl.qll
+++ b/java/ql/lib/semmle/code/java/dataflow/internal/FlowSummaryImpl.qll
@@ -1001,20 +1001,6 @@ module Private {
         not summaryElement(this, _, _, _, false)
       }
 
-      private predicate relevantSummaryElementManual(
-        AccessPath inSpec, AccessPath outSpec, string kind
-      ) {
-        summaryElement(this, inSpec, outSpec, kind, false) and
-        not summaryElement(this, _, _, _, true)
-      }
-
-      private predicate relevantSummaryElementBothGeneratedAndManual(
-        AccessPath inSpec, AccessPath outSpec, string kind
-      ) {
-        summaryElement(this, inSpec, outSpec, kind, true) and
-        summaryElement(this, inSpec, outSpec, kind, false)
-      }
-
       private predicate relevantSummaryElement(AccessPath inSpec, AccessPath outSpec, string kind) {
         summaryElement(this, inSpec, outSpec, kind, false)
         or
@@ -1037,10 +1023,14 @@ module Private {
 
       override predicate isAutoGenerated() { this.relevantSummaryElementGenerated(_, _, _) }
 
-      override predicate isManuallyGenerated() { this.relevantSummaryElementManual(_, _, _) }
+      override predicate isManuallyGenerated() {
+        summaryElement(this, _, _, _, false) and
+        not summaryElement(this, _, _, _, true)
+      }
 
       override predicate isBothAutoAndManuallyGenerated() {
-        this.relevantSummaryElementBothGeneratedAndManual(_, _, _)
+        summaryElement(this, _, _, _, true) and
+        summaryElement(this, _, _, _, false)
       }
     }
 
diff --git a/python/ql/lib/semmle/python/dataflow/new/internal/FlowSummaryImpl.qll b/python/ql/lib/semmle/python/dataflow/new/internal/FlowSummaryImpl.qll
index 8ef3bea0408..0b10bb2947f 100644
--- a/python/ql/lib/semmle/python/dataflow/new/internal/FlowSummaryImpl.qll
+++ b/python/ql/lib/semmle/python/dataflow/new/internal/FlowSummaryImpl.qll
@@ -1001,20 +1001,6 @@ module Private {
         not summaryElement(this, _, _, _, false)
       }
 
-      private predicate relevantSummaryElementManual(
-        AccessPath inSpec, AccessPath outSpec, string kind
-      ) {
-        summaryElement(this, inSpec, outSpec, kind, false) and
-        not summaryElement(this, _, _, _, true)
-      }
-
-      private predicate relevantSummaryElementBothGeneratedAndManual(
-        AccessPath inSpec, AccessPath outSpec, string kind
-      ) {
-        summaryElement(this, inSpec, outSpec, kind, true) and
-        summaryElement(this, inSpec, outSpec, kind, false)
-      }
-
       private predicate relevantSummaryElement(AccessPath inSpec, AccessPath outSpec, string kind) {
         summaryElement(this, inSpec, outSpec, kind, false)
         or
@@ -1037,10 +1023,14 @@ module Private {
 
       override predicate isAutoGenerated() { this.relevantSummaryElementGenerated(_, _, _) }
 
-      override predicate isManuallyGenerated() { this.relevantSummaryElementManual(_, _, _) }
+      override predicate isManuallyGenerated() {
+        summaryElement(this, _, _, _, false) and
+        not summaryElement(this, _, _, _, true)
+      }
 
       override predicate isBothAutoAndManuallyGenerated() {
-        this.relevantSummaryElementBothGeneratedAndManual(_, _, _)
+        summaryElement(this, _, _, _, true) and
+        summaryElement(this, _, _, _, false)
       }
     }
 
diff --git a/ruby/ql/lib/codeql/ruby/dataflow/internal/FlowSummaryImpl.qll b/ruby/ql/lib/codeql/ruby/dataflow/internal/FlowSummaryImpl.qll
index 8ef3bea0408..0b10bb2947f 100644
--- a/ruby/ql/lib/codeql/ruby/dataflow/internal/FlowSummaryImpl.qll
+++ b/ruby/ql/lib/codeql/ruby/dataflow/internal/FlowSummaryImpl.qll
@@ -1001,20 +1001,6 @@ module Private {
         not summaryElement(this, _, _, _, false)
       }
 
-      private predicate relevantSummaryElementManual(
-        AccessPath inSpec, AccessPath outSpec, string kind
-      ) {
-        summaryElement(this, inSpec, outSpec, kind, false) and
-        not summaryElement(this, _, _, _, true)
-      }
-
-      private predicate relevantSummaryElementBothGeneratedAndManual(
-        AccessPath inSpec, AccessPath outSpec, string kind
-      ) {
-        summaryElement(this, inSpec, outSpec, kind, true) and
-        summaryElement(this, inSpec, outSpec, kind, false)
-      }
-
       private predicate relevantSummaryElement(AccessPath inSpec, AccessPath outSpec, string kind) {
         summaryElement(this, inSpec, outSpec, kind, false)
         or
@@ -1037,10 +1023,14 @@ module Private {
 
       override predicate isAutoGenerated() { this.relevantSummaryElementGenerated(_, _, _) }
 
-      override predicate isManuallyGenerated() { this.relevantSummaryElementManual(_, _, _) }
+      override predicate isManuallyGenerated() {
+        summaryElement(this, _, _, _, false) and
+        not summaryElement(this, _, _, _, true)
+      }
 
       override predicate isBothAutoAndManuallyGenerated() {
-        this.relevantSummaryElementBothGeneratedAndManual(_, _, _)
+        summaryElement(this, _, _, _, true) and
+        summaryElement(this, _, _, _, false)
       }
     }
 
diff --git a/swift/ql/lib/codeql/swift/dataflow/internal/FlowSummaryImpl.qll b/swift/ql/lib/codeql/swift/dataflow/internal/FlowSummaryImpl.qll
index 8ef3bea0408..0b10bb2947f 100644
--- a/swift/ql/lib/codeql/swift/dataflow/internal/FlowSummaryImpl.qll
+++ b/swift/ql/lib/codeql/swift/dataflow/internal/FlowSummaryImpl.qll
@@ -1001,20 +1001,6 @@ module Private {
         not summaryElement(this, _, _, _, false)
       }
 
-      private predicate relevantSummaryElementManual(
-        AccessPath inSpec, AccessPath outSpec, string kind
-      ) {
-        summaryElement(this, inSpec, outSpec, kind, false) and
-        not summaryElement(this, _, _, _, true)
-      }
-
-      private predicate relevantSummaryElementBothGeneratedAndManual(
-        AccessPath inSpec, AccessPath outSpec, string kind
-      ) {
-        summaryElement(this, inSpec, outSpec, kind, true) and
-        summaryElement(this, inSpec, outSpec, kind, false)
-      }
-
       private predicate relevantSummaryElement(AccessPath inSpec, AccessPath outSpec, string kind) {
         summaryElement(this, inSpec, outSpec, kind, false)
         or
@@ -1037,10 +1023,14 @@ module Private {
 
       override predicate isAutoGenerated() { this.relevantSummaryElementGenerated(_, _, _) }
 
-      override predicate isManuallyGenerated() { this.relevantSummaryElementManual(_, _, _) }
+      override predicate isManuallyGenerated() {
+        summaryElement(this, _, _, _, false) and
+        not summaryElement(this, _, _, _, true)
+      }
 
       override predicate isBothAutoAndManuallyGenerated() {
-        this.relevantSummaryElementBothGeneratedAndManual(_, _, _)
+        summaryElement(this, _, _, _, true) and
+        summaryElement(this, _, _, _, false)
       }
     }
 

From 270e38d753b85158fdffd47c12937a12890c70ac Mon Sep 17 00:00:00 2001
From: Jami Cogswell <jcogs33@Jamis-MacBook-Pro.local>
Date: Fri, 9 Dec 2022 19:46:10 -0500
Subject: [PATCH 1279/1420] Java: add comments and switch getDeclaringType to
 getCompilationUnit

---
 .../Summaries/GeneratedVsManualCoverage.ql      | 17 +++++++++++------
 1 file changed, 11 insertions(+), 6 deletions(-)

diff --git a/java/ql/src/Metrics/Summaries/GeneratedVsManualCoverage.ql b/java/ql/src/Metrics/Summaries/GeneratedVsManualCoverage.ql
index c923dfaee43..33a99d8221c 100644
--- a/java/ql/src/Metrics/Summaries/GeneratedVsManualCoverage.ql
+++ b/java/ql/src/Metrics/Summaries/GeneratedVsManualCoverage.ql
@@ -19,7 +19,7 @@ private float getNumMadModeledApis(string package, string provenance) {
   provenance in ["generated", "manual", "both"] and
   result =
     count(SummarizedCallable sc |
-      package = sc.asCallable().getDeclaringType().getPackage().toString() and
+      package = sc.asCallable().getCompilationUnit().getPackage().getName() and
       exists(DataFlowTargetApi dataFlowTargApi | sc.asCallable() = dataFlowTargApi) and
       (
         sc.isAutoGenerated() and // "auto-only"
@@ -39,7 +39,7 @@ bindingset[package]
 private float getNumApis(string package) {
   result =
     count(DataFlowTargetApi dataFlowTargApi |
-      package = dataFlowTargApi.getDeclaringType().getPackage().toString()
+      package = dataFlowTargApi.getCompilationUnit().getPackage().getName()
     )
 }
 
@@ -47,13 +47,18 @@ from
   DataFlowTargetApi dataFlowTargApi, string package, float generatedOnly, float both,
   float manualOnly, float non, float all, float generatedCoverage, float manualCoverage
 where
-  package = dataFlowTargApi.getDeclaringType().getPackage().toString() and
+  // bind `package` to a `DataFlowTargetApi` package name
+  package = dataFlowTargApi.getCompilationUnit().getPackage().getName() and
+  // count the number of APIs with generated-only, both, and manual-only MaD models for each package
   generatedOnly = getNumMadModeledApis(package, "generated") and
-  manualOnly = getNumMadModeledApis(package, "manual") and
   both = getNumMadModeledApis(package, "both") and
+  manualOnly = getNumMadModeledApis(package, "manual") and
+  // count the total number of `DataFlowTargetApi`s for each package
   all = getNumApis(package) and
   non = all - (generatedOnly + both + manualOnly) and
-  generatedCoverage = (both / (both + manualOnly)) and // Proportion of manual models covered by generated ones
-  manualCoverage = (both / (both + generatedOnly)) // Proportion of generated models covered by manual ones
+  // Proportion of manual models covered by generated ones
+  generatedCoverage = (both / (both + manualOnly)) and
+  // Proportion of generated models covered by manual ones
+  manualCoverage = (both / (both + generatedOnly))
 select package, generatedOnly, both, manualOnly, non, all, generatedCoverage, manualCoverage
   order by package

From af08fe8659f651d7e0f8f0cd78b40cc30bc34f33 Mon Sep 17 00:00:00 2001
From: Chris Smowton <smowton@github.com>
Date: Sat, 10 Dec 2022 15:32:22 +0000
Subject: [PATCH 1280/1420] Add change note re: Kotlin version limit

---
 java/ql/src/change-notes/2022-12-10-kotlin-max-version.md | 4 ++++
 1 file changed, 4 insertions(+)
 create mode 100644 java/ql/src/change-notes/2022-12-10-kotlin-max-version.md

diff --git a/java/ql/src/change-notes/2022-12-10-kotlin-max-version.md b/java/ql/src/change-notes/2022-12-10-kotlin-max-version.md
new file mode 100644
index 00000000000..9c87671dd97
--- /dev/null
+++ b/java/ql/src/change-notes/2022-12-10-kotlin-max-version.md
@@ -0,0 +1,4 @@
+---
+category: minorAnalysis
+---
+* Kotlin extraction will now fail if the Kotlin version in use is at least 1.7.30. This is to ensure using an as-yet-unsupported version is noticable, rather than silently failing to extract Kotlin code and therefore producing false-negative results.

From 0b2fb4f70a221434560fedc5f519381b9ab7817e Mon Sep 17 00:00:00 2001
From: "github-actions[bot]" <github-actions@github.com>
Date: Sat, 10 Dec 2022 15:49:35 +0000
Subject: [PATCH 1281/1420] Release preparation for version 2.11.6

---
 cpp/ql/lib/CHANGELOG.md                                    | 4 ++++
 cpp/ql/lib/change-notes/released/0.4.6.md                  | 3 +++
 cpp/ql/lib/codeql-pack.release.yml                         | 2 +-
 cpp/ql/lib/qlpack.yml                                      | 2 +-
 cpp/ql/src/CHANGELOG.md                                    | 4 ++++
 cpp/ql/src/change-notes/released/0.4.6.md                  | 3 +++
 cpp/ql/src/codeql-pack.release.yml                         | 2 +-
 cpp/ql/src/qlpack.yml                                      | 2 +-
 csharp/ql/campaigns/Solorigate/lib/CHANGELOG.md            | 4 ++++
 .../Solorigate/lib/change-notes/released/1.3.6.md          | 3 +++
 csharp/ql/campaigns/Solorigate/lib/codeql-pack.release.yml | 2 +-
 csharp/ql/campaigns/Solorigate/lib/qlpack.yml              | 2 +-
 csharp/ql/campaigns/Solorigate/src/CHANGELOG.md            | 4 ++++
 .../Solorigate/src/change-notes/released/1.3.6.md          | 3 +++
 csharp/ql/campaigns/Solorigate/src/codeql-pack.release.yml | 2 +-
 csharp/ql/campaigns/Solorigate/src/qlpack.yml              | 2 +-
 csharp/ql/lib/CHANGELOG.md                                 | 4 ++++
 csharp/ql/lib/change-notes/released/0.4.6.md               | 3 +++
 csharp/ql/lib/codeql-pack.release.yml                      | 2 +-
 csharp/ql/lib/qlpack.yml                                   | 2 +-
 csharp/ql/src/CHANGELOG.md                                 | 4 ++++
 csharp/ql/src/change-notes/released/0.4.6.md               | 3 +++
 csharp/ql/src/codeql-pack.release.yml                      | 2 +-
 csharp/ql/src/qlpack.yml                                   | 2 +-
 go/ql/lib/CHANGELOG.md                                     | 4 ++++
 go/ql/lib/change-notes/released/0.3.6.md                   | 3 +++
 go/ql/lib/codeql-pack.release.yml                          | 2 +-
 go/ql/lib/qlpack.yml                                       | 2 +-
 go/ql/src/CHANGELOG.md                                     | 4 ++++
 go/ql/src/change-notes/released/0.3.6.md                   | 3 +++
 go/ql/src/codeql-pack.release.yml                          | 2 +-
 go/ql/src/qlpack.yml                                       | 2 +-
 java/ql/lib/CHANGELOG.md                                   | 4 ++++
 java/ql/lib/change-notes/released/0.4.6.md                 | 3 +++
 java/ql/lib/codeql-pack.release.yml                        | 2 +-
 java/ql/lib/qlpack.yml                                     | 2 +-
 java/ql/src/CHANGELOG.md                                   | 6 ++++++
 .../0.4.6.md}                                              | 7 ++++---
 java/ql/src/codeql-pack.release.yml                        | 2 +-
 java/ql/src/qlpack.yml                                     | 2 +-
 javascript/ql/lib/CHANGELOG.md                             | 4 ++++
 javascript/ql/lib/change-notes/released/0.3.6.md           | 3 +++
 javascript/ql/lib/codeql-pack.release.yml                  | 2 +-
 javascript/ql/lib/qlpack.yml                               | 2 +-
 javascript/ql/src/CHANGELOG.md                             | 4 ++++
 javascript/ql/src/change-notes/released/0.4.6.md           | 3 +++
 javascript/ql/src/codeql-pack.release.yml                  | 2 +-
 javascript/ql/src/qlpack.yml                               | 2 +-
 misc/suite-helpers/CHANGELOG.md                            | 4 ++++
 misc/suite-helpers/change-notes/released/0.3.6.md          | 3 +++
 misc/suite-helpers/codeql-pack.release.yml                 | 2 +-
 misc/suite-helpers/qlpack.yml                              | 2 +-
 python/ql/lib/CHANGELOG.md                                 | 4 ++++
 python/ql/lib/change-notes/released/0.6.6.md               | 3 +++
 python/ql/lib/codeql-pack.release.yml                      | 2 +-
 python/ql/lib/qlpack.yml                                   | 2 +-
 python/ql/src/CHANGELOG.md                                 | 4 ++++
 python/ql/src/change-notes/released/0.5.6.md               | 3 +++
 python/ql/src/codeql-pack.release.yml                      | 2 +-
 python/ql/src/qlpack.yml                                   | 2 +-
 ruby/ql/lib/CHANGELOG.md                                   | 4 ++++
 ruby/ql/lib/change-notes/released/0.4.6.md                 | 3 +++
 ruby/ql/lib/codeql-pack.release.yml                        | 2 +-
 ruby/ql/lib/qlpack.yml                                     | 2 +-
 ruby/ql/src/CHANGELOG.md                                   | 4 ++++
 ruby/ql/src/change-notes/released/0.4.6.md                 | 3 +++
 ruby/ql/src/codeql-pack.release.yml                        | 2 +-
 ruby/ql/src/qlpack.yml                                     | 2 +-
 shared/regex/CHANGELOG.md                                  | 4 ++++
 shared/regex/change-notes/released/0.0.3.md                | 3 +++
 shared/regex/codeql-pack.release.yml                       | 2 +-
 shared/regex/qlpack.yml                                    | 2 +-
 shared/ssa/CHANGELOG.md                                    | 4 ++++
 shared/ssa/change-notes/released/0.0.7.md                  | 3 +++
 shared/ssa/codeql-pack.release.yml                         | 2 +-
 shared/ssa/qlpack.yml                                      | 2 +-
 shared/typos/CHANGELOG.md                                  | 4 ++++
 shared/typos/change-notes/released/0.0.7.md                | 3 +++
 shared/typos/codeql-pack.release.yml                       | 2 +-
 shared/typos/qlpack.yml                                    | 2 +-
 80 files changed, 183 insertions(+), 43 deletions(-)
 create mode 100644 cpp/ql/lib/change-notes/released/0.4.6.md
 create mode 100644 cpp/ql/src/change-notes/released/0.4.6.md
 create mode 100644 csharp/ql/campaigns/Solorigate/lib/change-notes/released/1.3.6.md
 create mode 100644 csharp/ql/campaigns/Solorigate/src/change-notes/released/1.3.6.md
 create mode 100644 csharp/ql/lib/change-notes/released/0.4.6.md
 create mode 100644 csharp/ql/src/change-notes/released/0.4.6.md
 create mode 100644 go/ql/lib/change-notes/released/0.3.6.md
 create mode 100644 go/ql/src/change-notes/released/0.3.6.md
 create mode 100644 java/ql/lib/change-notes/released/0.4.6.md
 rename java/ql/src/change-notes/{2022-12-10-kotlin-max-version.md => released/0.4.6.md} (85%)
 create mode 100644 javascript/ql/lib/change-notes/released/0.3.6.md
 create mode 100644 javascript/ql/src/change-notes/released/0.4.6.md
 create mode 100644 misc/suite-helpers/change-notes/released/0.3.6.md
 create mode 100644 python/ql/lib/change-notes/released/0.6.6.md
 create mode 100644 python/ql/src/change-notes/released/0.5.6.md
 create mode 100644 ruby/ql/lib/change-notes/released/0.4.6.md
 create mode 100644 ruby/ql/src/change-notes/released/0.4.6.md
 create mode 100644 shared/regex/change-notes/released/0.0.3.md
 create mode 100644 shared/ssa/change-notes/released/0.0.7.md
 create mode 100644 shared/typos/change-notes/released/0.0.7.md

diff --git a/cpp/ql/lib/CHANGELOG.md b/cpp/ql/lib/CHANGELOG.md
index 132d1bf3537..6fa6f76aabd 100644
--- a/cpp/ql/lib/CHANGELOG.md
+++ b/cpp/ql/lib/CHANGELOG.md
@@ -1,3 +1,7 @@
+## 0.4.6
+
+No user-facing changes.
+
 ## 0.4.5
 
 No user-facing changes.
diff --git a/cpp/ql/lib/change-notes/released/0.4.6.md b/cpp/ql/lib/change-notes/released/0.4.6.md
new file mode 100644
index 00000000000..8e652998eca
--- /dev/null
+++ b/cpp/ql/lib/change-notes/released/0.4.6.md
@@ -0,0 +1,3 @@
+## 0.4.6
+
+No user-facing changes.
diff --git a/cpp/ql/lib/codeql-pack.release.yml b/cpp/ql/lib/codeql-pack.release.yml
index 466cd01cf4e..2b842473675 100644
--- a/cpp/ql/lib/codeql-pack.release.yml
+++ b/cpp/ql/lib/codeql-pack.release.yml
@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 0.4.5
+lastReleaseVersion: 0.4.6
diff --git a/cpp/ql/lib/qlpack.yml b/cpp/ql/lib/qlpack.yml
index 585ab2170e5..80867fab833 100644
--- a/cpp/ql/lib/qlpack.yml
+++ b/cpp/ql/lib/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/cpp-all
-version: 0.4.6-dev
+version: 0.4.6
 groups: cpp
 dbscheme: semmlecode.cpp.dbscheme
 extractor: cpp
diff --git a/cpp/ql/src/CHANGELOG.md b/cpp/ql/src/CHANGELOG.md
index c50e54bd80f..5cfd60bc84c 100644
--- a/cpp/ql/src/CHANGELOG.md
+++ b/cpp/ql/src/CHANGELOG.md
@@ -1,3 +1,7 @@
+## 0.4.6
+
+No user-facing changes.
+
 ## 0.4.5
 
 No user-facing changes.
diff --git a/cpp/ql/src/change-notes/released/0.4.6.md b/cpp/ql/src/change-notes/released/0.4.6.md
new file mode 100644
index 00000000000..8e652998eca
--- /dev/null
+++ b/cpp/ql/src/change-notes/released/0.4.6.md
@@ -0,0 +1,3 @@
+## 0.4.6
+
+No user-facing changes.
diff --git a/cpp/ql/src/codeql-pack.release.yml b/cpp/ql/src/codeql-pack.release.yml
index 466cd01cf4e..2b842473675 100644
--- a/cpp/ql/src/codeql-pack.release.yml
+++ b/cpp/ql/src/codeql-pack.release.yml
@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 0.4.5
+lastReleaseVersion: 0.4.6
diff --git a/cpp/ql/src/qlpack.yml b/cpp/ql/src/qlpack.yml
index 75d3e65c592..4cc022a1590 100644
--- a/cpp/ql/src/qlpack.yml
+++ b/cpp/ql/src/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/cpp-queries
-version: 0.4.6-dev
+version: 0.4.6
 groups: 
   - cpp
   - queries
diff --git a/csharp/ql/campaigns/Solorigate/lib/CHANGELOG.md b/csharp/ql/campaigns/Solorigate/lib/CHANGELOG.md
index d34f03b0e37..8d5d8f7df35 100644
--- a/csharp/ql/campaigns/Solorigate/lib/CHANGELOG.md
+++ b/csharp/ql/campaigns/Solorigate/lib/CHANGELOG.md
@@ -1,3 +1,7 @@
+## 1.3.6
+
+No user-facing changes.
+
 ## 1.3.5
 
 No user-facing changes.
diff --git a/csharp/ql/campaigns/Solorigate/lib/change-notes/released/1.3.6.md b/csharp/ql/campaigns/Solorigate/lib/change-notes/released/1.3.6.md
new file mode 100644
index 00000000000..ce7baecf210
--- /dev/null
+++ b/csharp/ql/campaigns/Solorigate/lib/change-notes/released/1.3.6.md
@@ -0,0 +1,3 @@
+## 1.3.6
+
+No user-facing changes.
diff --git a/csharp/ql/campaigns/Solorigate/lib/codeql-pack.release.yml b/csharp/ql/campaigns/Solorigate/lib/codeql-pack.release.yml
index 1e1845ea66d..0a0b0986311 100644
--- a/csharp/ql/campaigns/Solorigate/lib/codeql-pack.release.yml
+++ b/csharp/ql/campaigns/Solorigate/lib/codeql-pack.release.yml
@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 1.3.5
+lastReleaseVersion: 1.3.6
diff --git a/csharp/ql/campaigns/Solorigate/lib/qlpack.yml b/csharp/ql/campaigns/Solorigate/lib/qlpack.yml
index d10c89a3f5c..119ce73e54f 100644
--- a/csharp/ql/campaigns/Solorigate/lib/qlpack.yml
+++ b/csharp/ql/campaigns/Solorigate/lib/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/csharp-solorigate-all
-version: 1.3.6-dev
+version: 1.3.6
 groups:
     - csharp
     - solorigate
diff --git a/csharp/ql/campaigns/Solorigate/src/CHANGELOG.md b/csharp/ql/campaigns/Solorigate/src/CHANGELOG.md
index d34f03b0e37..8d5d8f7df35 100644
--- a/csharp/ql/campaigns/Solorigate/src/CHANGELOG.md
+++ b/csharp/ql/campaigns/Solorigate/src/CHANGELOG.md
@@ -1,3 +1,7 @@
+## 1.3.6
+
+No user-facing changes.
+
 ## 1.3.5
 
 No user-facing changes.
diff --git a/csharp/ql/campaigns/Solorigate/src/change-notes/released/1.3.6.md b/csharp/ql/campaigns/Solorigate/src/change-notes/released/1.3.6.md
new file mode 100644
index 00000000000..ce7baecf210
--- /dev/null
+++ b/csharp/ql/campaigns/Solorigate/src/change-notes/released/1.3.6.md
@@ -0,0 +1,3 @@
+## 1.3.6
+
+No user-facing changes.
diff --git a/csharp/ql/campaigns/Solorigate/src/codeql-pack.release.yml b/csharp/ql/campaigns/Solorigate/src/codeql-pack.release.yml
index 1e1845ea66d..0a0b0986311 100644
--- a/csharp/ql/campaigns/Solorigate/src/codeql-pack.release.yml
+++ b/csharp/ql/campaigns/Solorigate/src/codeql-pack.release.yml
@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 1.3.5
+lastReleaseVersion: 1.3.6
diff --git a/csharp/ql/campaigns/Solorigate/src/qlpack.yml b/csharp/ql/campaigns/Solorigate/src/qlpack.yml
index 98c95da4b03..cf800993043 100644
--- a/csharp/ql/campaigns/Solorigate/src/qlpack.yml
+++ b/csharp/ql/campaigns/Solorigate/src/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/csharp-solorigate-queries
-version: 1.3.6-dev
+version: 1.3.6
 groups:
     - csharp
     - solorigate
diff --git a/csharp/ql/lib/CHANGELOG.md b/csharp/ql/lib/CHANGELOG.md
index 438927d036b..0dbf4820b2a 100644
--- a/csharp/ql/lib/CHANGELOG.md
+++ b/csharp/ql/lib/CHANGELOG.md
@@ -1,3 +1,7 @@
+## 0.4.6
+
+No user-facing changes.
+
 ## 0.4.5
 
 No user-facing changes.
diff --git a/csharp/ql/lib/change-notes/released/0.4.6.md b/csharp/ql/lib/change-notes/released/0.4.6.md
new file mode 100644
index 00000000000..8e652998eca
--- /dev/null
+++ b/csharp/ql/lib/change-notes/released/0.4.6.md
@@ -0,0 +1,3 @@
+## 0.4.6
+
+No user-facing changes.
diff --git a/csharp/ql/lib/codeql-pack.release.yml b/csharp/ql/lib/codeql-pack.release.yml
index 466cd01cf4e..2b842473675 100644
--- a/csharp/ql/lib/codeql-pack.release.yml
+++ b/csharp/ql/lib/codeql-pack.release.yml
@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 0.4.5
+lastReleaseVersion: 0.4.6
diff --git a/csharp/ql/lib/qlpack.yml b/csharp/ql/lib/qlpack.yml
index 05eb16f3750..20d1d7d6b74 100644
--- a/csharp/ql/lib/qlpack.yml
+++ b/csharp/ql/lib/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/csharp-all
-version: 0.4.6-dev
+version: 0.4.6
 groups: csharp
 dbscheme: semmlecode.csharp.dbscheme
 extractor: csharp
diff --git a/csharp/ql/src/CHANGELOG.md b/csharp/ql/src/CHANGELOG.md
index 57d44189f70..8110355ef6a 100644
--- a/csharp/ql/src/CHANGELOG.md
+++ b/csharp/ql/src/CHANGELOG.md
@@ -1,3 +1,7 @@
+## 0.4.6
+
+No user-facing changes.
+
 ## 0.4.5
 
 No user-facing changes.
diff --git a/csharp/ql/src/change-notes/released/0.4.6.md b/csharp/ql/src/change-notes/released/0.4.6.md
new file mode 100644
index 00000000000..8e652998eca
--- /dev/null
+++ b/csharp/ql/src/change-notes/released/0.4.6.md
@@ -0,0 +1,3 @@
+## 0.4.6
+
+No user-facing changes.
diff --git a/csharp/ql/src/codeql-pack.release.yml b/csharp/ql/src/codeql-pack.release.yml
index 466cd01cf4e..2b842473675 100644
--- a/csharp/ql/src/codeql-pack.release.yml
+++ b/csharp/ql/src/codeql-pack.release.yml
@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 0.4.5
+lastReleaseVersion: 0.4.6
diff --git a/csharp/ql/src/qlpack.yml b/csharp/ql/src/qlpack.yml
index f7da9740b21..35c8c90ebb4 100644
--- a/csharp/ql/src/qlpack.yml
+++ b/csharp/ql/src/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/csharp-queries
-version: 0.4.6-dev
+version: 0.4.6
 groups: 
   - csharp
   - queries
diff --git a/go/ql/lib/CHANGELOG.md b/go/ql/lib/CHANGELOG.md
index a24d1c5919b..ba72eb8950a 100644
--- a/go/ql/lib/CHANGELOG.md
+++ b/go/ql/lib/CHANGELOG.md
@@ -1,3 +1,7 @@
+## 0.3.6
+
+No user-facing changes.
+
 ## 0.3.5
 
 No user-facing changes.
diff --git a/go/ql/lib/change-notes/released/0.3.6.md b/go/ql/lib/change-notes/released/0.3.6.md
new file mode 100644
index 00000000000..0c7a392e88f
--- /dev/null
+++ b/go/ql/lib/change-notes/released/0.3.6.md
@@ -0,0 +1,3 @@
+## 0.3.6
+
+No user-facing changes.
diff --git a/go/ql/lib/codeql-pack.release.yml b/go/ql/lib/codeql-pack.release.yml
index 468917f2543..7bbaa8987dd 100644
--- a/go/ql/lib/codeql-pack.release.yml
+++ b/go/ql/lib/codeql-pack.release.yml
@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 0.3.5
+lastReleaseVersion: 0.3.6
diff --git a/go/ql/lib/qlpack.yml b/go/ql/lib/qlpack.yml
index b9088307812..6ec12d0956d 100644
--- a/go/ql/lib/qlpack.yml
+++ b/go/ql/lib/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/go-all
-version: 0.3.6-dev
+version: 0.3.6
 groups: go
 dbscheme: go.dbscheme
 extractor: go
diff --git a/go/ql/src/CHANGELOG.md b/go/ql/src/CHANGELOG.md
index 0ab2f98312a..aed077e28d9 100644
--- a/go/ql/src/CHANGELOG.md
+++ b/go/ql/src/CHANGELOG.md
@@ -1,3 +1,7 @@
+## 0.3.6
+
+No user-facing changes.
+
 ## 0.3.5
 
 No user-facing changes.
diff --git a/go/ql/src/change-notes/released/0.3.6.md b/go/ql/src/change-notes/released/0.3.6.md
new file mode 100644
index 00000000000..0c7a392e88f
--- /dev/null
+++ b/go/ql/src/change-notes/released/0.3.6.md
@@ -0,0 +1,3 @@
+## 0.3.6
+
+No user-facing changes.
diff --git a/go/ql/src/codeql-pack.release.yml b/go/ql/src/codeql-pack.release.yml
index 468917f2543..7bbaa8987dd 100644
--- a/go/ql/src/codeql-pack.release.yml
+++ b/go/ql/src/codeql-pack.release.yml
@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 0.3.5
+lastReleaseVersion: 0.3.6
diff --git a/go/ql/src/qlpack.yml b/go/ql/src/qlpack.yml
index 7d586cfb931..c8e34582560 100644
--- a/go/ql/src/qlpack.yml
+++ b/go/ql/src/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/go-queries
-version: 0.3.6-dev
+version: 0.3.6
 groups:
   - go
   - queries
diff --git a/java/ql/lib/CHANGELOG.md b/java/ql/lib/CHANGELOG.md
index 56dfcebfb1f..21b8949ce62 100644
--- a/java/ql/lib/CHANGELOG.md
+++ b/java/ql/lib/CHANGELOG.md
@@ -1,3 +1,7 @@
+## 0.4.6
+
+No user-facing changes.
+
 ## 0.4.5
 
 No user-facing changes.
diff --git a/java/ql/lib/change-notes/released/0.4.6.md b/java/ql/lib/change-notes/released/0.4.6.md
new file mode 100644
index 00000000000..8e652998eca
--- /dev/null
+++ b/java/ql/lib/change-notes/released/0.4.6.md
@@ -0,0 +1,3 @@
+## 0.4.6
+
+No user-facing changes.
diff --git a/java/ql/lib/codeql-pack.release.yml b/java/ql/lib/codeql-pack.release.yml
index 466cd01cf4e..2b842473675 100644
--- a/java/ql/lib/codeql-pack.release.yml
+++ b/java/ql/lib/codeql-pack.release.yml
@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 0.4.5
+lastReleaseVersion: 0.4.6
diff --git a/java/ql/lib/qlpack.yml b/java/ql/lib/qlpack.yml
index f4040ca5619..b4fa6097149 100644
--- a/java/ql/lib/qlpack.yml
+++ b/java/ql/lib/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/java-all
-version: 0.4.6-dev
+version: 0.4.6
 groups: java
 dbscheme: config/semmlecode.dbscheme
 extractor: java
diff --git a/java/ql/src/CHANGELOG.md b/java/ql/src/CHANGELOG.md
index 5de970b8981..7bab127cafc 100644
--- a/java/ql/src/CHANGELOG.md
+++ b/java/ql/src/CHANGELOG.md
@@ -1,3 +1,9 @@
+## 0.4.6
+
+### Minor Analysis Improvements
+
+* Kotlin extraction will now fail if the Kotlin version in use is at least 1.7.30. This is to ensure using an as-yet-unsupported version is noticable, rather than silently failing to extract Kotlin code and therefore producing false-negative results.
+
 ## 0.4.5
 
 No user-facing changes.
diff --git a/java/ql/src/change-notes/2022-12-10-kotlin-max-version.md b/java/ql/src/change-notes/released/0.4.6.md
similarity index 85%
rename from java/ql/src/change-notes/2022-12-10-kotlin-max-version.md
rename to java/ql/src/change-notes/released/0.4.6.md
index 9c87671dd97..ae160f06a20 100644
--- a/java/ql/src/change-notes/2022-12-10-kotlin-max-version.md
+++ b/java/ql/src/change-notes/released/0.4.6.md
@@ -1,4 +1,5 @@
----
-category: minorAnalysis
----
+## 0.4.6
+
+### Minor Analysis Improvements
+
 * Kotlin extraction will now fail if the Kotlin version in use is at least 1.7.30. This is to ensure using an as-yet-unsupported version is noticable, rather than silently failing to extract Kotlin code and therefore producing false-negative results.
diff --git a/java/ql/src/codeql-pack.release.yml b/java/ql/src/codeql-pack.release.yml
index 466cd01cf4e..2b842473675 100644
--- a/java/ql/src/codeql-pack.release.yml
+++ b/java/ql/src/codeql-pack.release.yml
@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 0.4.5
+lastReleaseVersion: 0.4.6
diff --git a/java/ql/src/qlpack.yml b/java/ql/src/qlpack.yml
index 00070f5ccf2..b8abfe36e16 100644
--- a/java/ql/src/qlpack.yml
+++ b/java/ql/src/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/java-queries
-version: 0.4.6-dev
+version: 0.4.6
 groups: 
   - java
   - queries
diff --git a/javascript/ql/lib/CHANGELOG.md b/javascript/ql/lib/CHANGELOG.md
index 7c3e43e8a0a..b6dc74b4a65 100644
--- a/javascript/ql/lib/CHANGELOG.md
+++ b/javascript/ql/lib/CHANGELOG.md
@@ -1,3 +1,7 @@
+## 0.3.6
+
+No user-facing changes.
+
 ## 0.3.5
 
 No user-facing changes.
diff --git a/javascript/ql/lib/change-notes/released/0.3.6.md b/javascript/ql/lib/change-notes/released/0.3.6.md
new file mode 100644
index 00000000000..0c7a392e88f
--- /dev/null
+++ b/javascript/ql/lib/change-notes/released/0.3.6.md
@@ -0,0 +1,3 @@
+## 0.3.6
+
+No user-facing changes.
diff --git a/javascript/ql/lib/codeql-pack.release.yml b/javascript/ql/lib/codeql-pack.release.yml
index 468917f2543..7bbaa8987dd 100644
--- a/javascript/ql/lib/codeql-pack.release.yml
+++ b/javascript/ql/lib/codeql-pack.release.yml
@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 0.3.5
+lastReleaseVersion: 0.3.6
diff --git a/javascript/ql/lib/qlpack.yml b/javascript/ql/lib/qlpack.yml
index 0eb9a36345a..4bbe50ae2ea 100644
--- a/javascript/ql/lib/qlpack.yml
+++ b/javascript/ql/lib/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/javascript-all
-version: 0.3.6-dev
+version: 0.3.6
 groups: javascript
 dbscheme: semmlecode.javascript.dbscheme
 extractor: javascript
diff --git a/javascript/ql/src/CHANGELOG.md b/javascript/ql/src/CHANGELOG.md
index e15a58fe74d..37e184e9490 100644
--- a/javascript/ql/src/CHANGELOG.md
+++ b/javascript/ql/src/CHANGELOG.md
@@ -1,3 +1,7 @@
+## 0.4.6
+
+No user-facing changes.
+
 ## 0.4.5
 
 No user-facing changes.
diff --git a/javascript/ql/src/change-notes/released/0.4.6.md b/javascript/ql/src/change-notes/released/0.4.6.md
new file mode 100644
index 00000000000..8e652998eca
--- /dev/null
+++ b/javascript/ql/src/change-notes/released/0.4.6.md
@@ -0,0 +1,3 @@
+## 0.4.6
+
+No user-facing changes.
diff --git a/javascript/ql/src/codeql-pack.release.yml b/javascript/ql/src/codeql-pack.release.yml
index 466cd01cf4e..2b842473675 100644
--- a/javascript/ql/src/codeql-pack.release.yml
+++ b/javascript/ql/src/codeql-pack.release.yml
@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 0.4.5
+lastReleaseVersion: 0.4.6
diff --git a/javascript/ql/src/qlpack.yml b/javascript/ql/src/qlpack.yml
index b297ae8268d..85dbe345a4a 100644
--- a/javascript/ql/src/qlpack.yml
+++ b/javascript/ql/src/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/javascript-queries
-version: 0.4.6-dev
+version: 0.4.6
 groups: 
   - javascript
   - queries
diff --git a/misc/suite-helpers/CHANGELOG.md b/misc/suite-helpers/CHANGELOG.md
index add84a5c77e..c7efd60a3c7 100644
--- a/misc/suite-helpers/CHANGELOG.md
+++ b/misc/suite-helpers/CHANGELOG.md
@@ -1,3 +1,7 @@
+## 0.3.6
+
+No user-facing changes.
+
 ## 0.3.5
 
 No user-facing changes.
diff --git a/misc/suite-helpers/change-notes/released/0.3.6.md b/misc/suite-helpers/change-notes/released/0.3.6.md
new file mode 100644
index 00000000000..0c7a392e88f
--- /dev/null
+++ b/misc/suite-helpers/change-notes/released/0.3.6.md
@@ -0,0 +1,3 @@
+## 0.3.6
+
+No user-facing changes.
diff --git a/misc/suite-helpers/codeql-pack.release.yml b/misc/suite-helpers/codeql-pack.release.yml
index 468917f2543..7bbaa8987dd 100644
--- a/misc/suite-helpers/codeql-pack.release.yml
+++ b/misc/suite-helpers/codeql-pack.release.yml
@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 0.3.5
+lastReleaseVersion: 0.3.6
diff --git a/misc/suite-helpers/qlpack.yml b/misc/suite-helpers/qlpack.yml
index 5272d0402e2..ff25ba041c8 100644
--- a/misc/suite-helpers/qlpack.yml
+++ b/misc/suite-helpers/qlpack.yml
@@ -1,3 +1,3 @@
 name: codeql/suite-helpers
-version: 0.3.6-dev
+version: 0.3.6
 groups: shared
diff --git a/python/ql/lib/CHANGELOG.md b/python/ql/lib/CHANGELOG.md
index 516f4e8307a..793438c4fb6 100644
--- a/python/ql/lib/CHANGELOG.md
+++ b/python/ql/lib/CHANGELOG.md
@@ -1,3 +1,7 @@
+## 0.6.6
+
+No user-facing changes.
+
 ## 0.6.5
 
 No user-facing changes.
diff --git a/python/ql/lib/change-notes/released/0.6.6.md b/python/ql/lib/change-notes/released/0.6.6.md
new file mode 100644
index 00000000000..ab10d897be1
--- /dev/null
+++ b/python/ql/lib/change-notes/released/0.6.6.md
@@ -0,0 +1,3 @@
+## 0.6.6
+
+No user-facing changes.
diff --git a/python/ql/lib/codeql-pack.release.yml b/python/ql/lib/codeql-pack.release.yml
index 86780fb6148..f4cae0a77ad 100644
--- a/python/ql/lib/codeql-pack.release.yml
+++ b/python/ql/lib/codeql-pack.release.yml
@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 0.6.5
+lastReleaseVersion: 0.6.6
diff --git a/python/ql/lib/qlpack.yml b/python/ql/lib/qlpack.yml
index 237c3c5b0bb..3d999d1eeb6 100644
--- a/python/ql/lib/qlpack.yml
+++ b/python/ql/lib/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/python-all
-version: 0.6.6-dev
+version: 0.6.6
 groups: python
 dbscheme: semmlecode.python.dbscheme
 extractor: python
diff --git a/python/ql/src/CHANGELOG.md b/python/ql/src/CHANGELOG.md
index 1bd769949ae..e5d6103239d 100644
--- a/python/ql/src/CHANGELOG.md
+++ b/python/ql/src/CHANGELOG.md
@@ -1,3 +1,7 @@
+## 0.5.6
+
+No user-facing changes.
+
 ## 0.5.5
 
 No user-facing changes.
diff --git a/python/ql/src/change-notes/released/0.5.6.md b/python/ql/src/change-notes/released/0.5.6.md
new file mode 100644
index 00000000000..f717e01ed57
--- /dev/null
+++ b/python/ql/src/change-notes/released/0.5.6.md
@@ -0,0 +1,3 @@
+## 0.5.6
+
+No user-facing changes.
diff --git a/python/ql/src/codeql-pack.release.yml b/python/ql/src/codeql-pack.release.yml
index 03e491f0899..361de279943 100644
--- a/python/ql/src/codeql-pack.release.yml
+++ b/python/ql/src/codeql-pack.release.yml
@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 0.5.5
+lastReleaseVersion: 0.5.6
diff --git a/python/ql/src/qlpack.yml b/python/ql/src/qlpack.yml
index f82723bb46a..9db8396f395 100644
--- a/python/ql/src/qlpack.yml
+++ b/python/ql/src/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/python-queries
-version: 0.5.6-dev
+version: 0.5.6
 groups: 
   - python
   - queries
diff --git a/ruby/ql/lib/CHANGELOG.md b/ruby/ql/lib/CHANGELOG.md
index 094859ea0dc..2e1a767da78 100644
--- a/ruby/ql/lib/CHANGELOG.md
+++ b/ruby/ql/lib/CHANGELOG.md
@@ -1,3 +1,7 @@
+## 0.4.6
+
+No user-facing changes.
+
 ## 0.4.5
 
 No user-facing changes.
diff --git a/ruby/ql/lib/change-notes/released/0.4.6.md b/ruby/ql/lib/change-notes/released/0.4.6.md
new file mode 100644
index 00000000000..8e652998eca
--- /dev/null
+++ b/ruby/ql/lib/change-notes/released/0.4.6.md
@@ -0,0 +1,3 @@
+## 0.4.6
+
+No user-facing changes.
diff --git a/ruby/ql/lib/codeql-pack.release.yml b/ruby/ql/lib/codeql-pack.release.yml
index 466cd01cf4e..2b842473675 100644
--- a/ruby/ql/lib/codeql-pack.release.yml
+++ b/ruby/ql/lib/codeql-pack.release.yml
@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 0.4.5
+lastReleaseVersion: 0.4.6
diff --git a/ruby/ql/lib/qlpack.yml b/ruby/ql/lib/qlpack.yml
index ee703754c4e..64951c49556 100644
--- a/ruby/ql/lib/qlpack.yml
+++ b/ruby/ql/lib/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/ruby-all
-version: 0.4.6-dev
+version: 0.4.6
 groups: ruby
 extractor: ruby
 dbscheme: ruby.dbscheme
diff --git a/ruby/ql/src/CHANGELOG.md b/ruby/ql/src/CHANGELOG.md
index 4cedef4f572..30c0bdbce56 100644
--- a/ruby/ql/src/CHANGELOG.md
+++ b/ruby/ql/src/CHANGELOG.md
@@ -1,3 +1,7 @@
+## 0.4.6
+
+No user-facing changes.
+
 ## 0.4.5
 
 No user-facing changes.
diff --git a/ruby/ql/src/change-notes/released/0.4.6.md b/ruby/ql/src/change-notes/released/0.4.6.md
new file mode 100644
index 00000000000..8e652998eca
--- /dev/null
+++ b/ruby/ql/src/change-notes/released/0.4.6.md
@@ -0,0 +1,3 @@
+## 0.4.6
+
+No user-facing changes.
diff --git a/ruby/ql/src/codeql-pack.release.yml b/ruby/ql/src/codeql-pack.release.yml
index 466cd01cf4e..2b842473675 100644
--- a/ruby/ql/src/codeql-pack.release.yml
+++ b/ruby/ql/src/codeql-pack.release.yml
@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 0.4.5
+lastReleaseVersion: 0.4.6
diff --git a/ruby/ql/src/qlpack.yml b/ruby/ql/src/qlpack.yml
index ce73dffcf88..df7aa757652 100644
--- a/ruby/ql/src/qlpack.yml
+++ b/ruby/ql/src/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/ruby-queries
-version: 0.4.6-dev
+version: 0.4.6
 groups: 
   - ruby
   - queries
diff --git a/shared/regex/CHANGELOG.md b/shared/regex/CHANGELOG.md
index 88dc3212e64..4babb26821b 100644
--- a/shared/regex/CHANGELOG.md
+++ b/shared/regex/CHANGELOG.md
@@ -1,3 +1,7 @@
+## 0.0.3
+
+No user-facing changes.
+
 ## 0.0.2
 
 No user-facing changes.
diff --git a/shared/regex/change-notes/released/0.0.3.md b/shared/regex/change-notes/released/0.0.3.md
new file mode 100644
index 00000000000..af7864fc7d5
--- /dev/null
+++ b/shared/regex/change-notes/released/0.0.3.md
@@ -0,0 +1,3 @@
+## 0.0.3
+
+No user-facing changes.
diff --git a/shared/regex/codeql-pack.release.yml b/shared/regex/codeql-pack.release.yml
index 55dc06fbd76..a24b693d1e7 100644
--- a/shared/regex/codeql-pack.release.yml
+++ b/shared/regex/codeql-pack.release.yml
@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 0.0.2
+lastReleaseVersion: 0.0.3
diff --git a/shared/regex/qlpack.yml b/shared/regex/qlpack.yml
index cb2ff3557b8..a03b79a0778 100644
--- a/shared/regex/qlpack.yml
+++ b/shared/regex/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/regex
-version: 0.0.3-dev
+version: 0.0.3
 groups: shared
 library: true
 dependencies:
diff --git a/shared/ssa/CHANGELOG.md b/shared/ssa/CHANGELOG.md
index e76e9fa4268..3c81fd2e095 100644
--- a/shared/ssa/CHANGELOG.md
+++ b/shared/ssa/CHANGELOG.md
@@ -1,3 +1,7 @@
+## 0.0.7
+
+No user-facing changes.
+
 ## 0.0.6
 
 No user-facing changes.
diff --git a/shared/ssa/change-notes/released/0.0.7.md b/shared/ssa/change-notes/released/0.0.7.md
new file mode 100644
index 00000000000..84da6f18c42
--- /dev/null
+++ b/shared/ssa/change-notes/released/0.0.7.md
@@ -0,0 +1,3 @@
+## 0.0.7
+
+No user-facing changes.
diff --git a/shared/ssa/codeql-pack.release.yml b/shared/ssa/codeql-pack.release.yml
index cf398ce02aa..a2a5484910b 100644
--- a/shared/ssa/codeql-pack.release.yml
+++ b/shared/ssa/codeql-pack.release.yml
@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 0.0.6
+lastReleaseVersion: 0.0.7
diff --git a/shared/ssa/qlpack.yml b/shared/ssa/qlpack.yml
index 0946f820a92..0d4719584ce 100644
--- a/shared/ssa/qlpack.yml
+++ b/shared/ssa/qlpack.yml
@@ -1,4 +1,4 @@
 name: codeql/ssa
-version: 0.0.7-dev
+version: 0.0.7
 groups: shared
 library: true
diff --git a/shared/typos/CHANGELOG.md b/shared/typos/CHANGELOG.md
index 1d2195d28a7..f8ea7de20ff 100644
--- a/shared/typos/CHANGELOG.md
+++ b/shared/typos/CHANGELOG.md
@@ -1,3 +1,7 @@
+## 0.0.7
+
+No user-facing changes.
+
 ## 0.0.6
 
 No user-facing changes.
diff --git a/shared/typos/change-notes/released/0.0.7.md b/shared/typos/change-notes/released/0.0.7.md
new file mode 100644
index 00000000000..84da6f18c42
--- /dev/null
+++ b/shared/typos/change-notes/released/0.0.7.md
@@ -0,0 +1,3 @@
+## 0.0.7
+
+No user-facing changes.
diff --git a/shared/typos/codeql-pack.release.yml b/shared/typos/codeql-pack.release.yml
index cf398ce02aa..a2a5484910b 100644
--- a/shared/typos/codeql-pack.release.yml
+++ b/shared/typos/codeql-pack.release.yml
@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 0.0.6
+lastReleaseVersion: 0.0.7
diff --git a/shared/typos/qlpack.yml b/shared/typos/qlpack.yml
index 6bfd03987de..4ce79250a0d 100644
--- a/shared/typos/qlpack.yml
+++ b/shared/typos/qlpack.yml
@@ -1,4 +1,4 @@
 name: codeql/typos
-version: 0.0.7-dev
+version: 0.0.7
 groups: shared
 library: true

From beb66d027e067aab77ffe2e1f7200d78f8140019 Mon Sep 17 00:00:00 2001
From: Jeroen Ketema <jketema@github.com>
Date: Fri, 9 Dec 2022 13:43:13 +0100
Subject: [PATCH 1282/1420] C++: Use `FlowSource` in `cpp/path-injection`

---
 .../src/Security/CWE/CWE-022/TaintedPath.ql   | 35 ++++---------------
 .../SAMATE/TaintedPath/TaintedPath.expected   |  2 +-
 .../CWE-022/semmle/tests/TaintedPath.expected | 10 +++---
 3 files changed, 12 insertions(+), 35 deletions(-)

diff --git a/cpp/ql/src/Security/CWE/CWE-022/TaintedPath.ql b/cpp/ql/src/Security/CWE/CWE-022/TaintedPath.ql
index be4f57454aa..f000e25df52 100644
--- a/cpp/ql/src/Security/CWE/CWE-022/TaintedPath.ql
+++ b/cpp/ql/src/Security/CWE/CWE-022/TaintedPath.ql
@@ -16,7 +16,7 @@
 
 import cpp
 import semmle.code.cpp.security.FunctionWithWrappers
-import semmle.code.cpp.security.Security
+import semmle.code.cpp.security.FlowSources
 import semmle.code.cpp.ir.IR
 import semmle.code.cpp.ir.dataflow.TaintTracking
 import DataFlow::PathGraph
@@ -47,12 +47,6 @@ class FileFunction extends FunctionWithWrappers {
   override predicate interestingArg(int arg) { arg = 0 }
 }
 
-Expr asSourceExpr(DataFlow::Node node) {
-  result = node.asConvertedExpr()
-  or
-  result = node.asDefiningArgument()
-}
-
 Expr asSinkExpr(DataFlow::Node node) {
   result =
     node.asOperand()
@@ -89,7 +83,7 @@ predicate hasUpperBoundsCheck(Variable var) {
 class TaintedPathConfiguration extends TaintTracking::Configuration {
   TaintedPathConfiguration() { this = "TaintedPathConfiguration" }
 
-  override predicate isSource(DataFlow::Node node) { isUserInput(asSourceExpr(node), _) }
+  override predicate isSource(DataFlow::Node node) { node instanceof FlowSource }
 
   override predicate isSink(DataFlow::Node node) {
     exists(FileFunction fileFunction |
@@ -108,31 +102,16 @@ class TaintedPathConfiguration extends TaintTracking::Configuration {
       hasUpperBoundsCheck(checkedVar)
     )
   }
-
-  predicate hasFilteredFlowPath(DataFlow::PathNode source, DataFlow::PathNode sink) {
-    this.hasFlowPath(source, sink) and
-    // The use of `isUserInput` in `isSink` in combination with `asSourceExpr` causes
-    // duplicate results. Filter these duplicates. The proper solution is to switch to
-    // using `LocalFlowSource` and `RemoteFlowSource`, but this currently only supports
-    // a subset of the cases supported by `isUserInput`.
-    not exists(DataFlow::PathNode source2 |
-      this.hasFlowPath(source2, sink) and
-      asSourceExpr(source.getNode()) = asSourceExpr(source2.getNode())
-    |
-      not exists(source.getNode().asConvertedExpr()) and exists(source2.getNode().asConvertedExpr())
-    )
-  }
 }
 
 from
-  FileFunction fileFunction, Expr taintedArg, Expr taintSource, TaintedPathConfiguration cfg,
-  DataFlow::PathNode sourceNode, DataFlow::PathNode sinkNode, string taintCause, string callChain
+  FileFunction fileFunction, Expr taintedArg, FlowSource taintSource, TaintedPathConfiguration cfg,
+  DataFlow::PathNode sourceNode, DataFlow::PathNode sinkNode, string callChain
 where
   taintedArg = asSinkExpr(sinkNode.getNode()) and
   fileFunction.outermostWrapperFunctionCall(taintedArg, callChain) and
-  cfg.hasFilteredFlowPath(sourceNode, sinkNode) and
-  taintSource = asSourceExpr(sourceNode.getNode()) and
-  isUserInput(taintSource, taintCause)
+  cfg.hasFlowPath(sourceNode, sinkNode) and
+  taintSource = sourceNode.getNode()
 select taintedArg, sourceNode, sinkNode,
   "This argument to a file access function is derived from $@ and then passed to " + callChain + ".",
-  taintSource, "user input (" + taintCause + ")"
+  taintSource, "user input (" + taintSource.getSourceType() + ")"
diff --git a/cpp/ql/test/query-tests/Security/CWE/CWE-022/SAMATE/TaintedPath/TaintedPath.expected b/cpp/ql/test/query-tests/Security/CWE/CWE-022/SAMATE/TaintedPath/TaintedPath.expected
index a4f42c91796..3c9571780d7 100644
--- a/cpp/ql/test/query-tests/Security/CWE/CWE-022/SAMATE/TaintedPath/TaintedPath.expected
+++ b/cpp/ql/test/query-tests/Security/CWE/CWE-022/SAMATE/TaintedPath/TaintedPath.expected
@@ -5,4 +5,4 @@ nodes
 | CWE23_Relative_Path_Traversal__char_console_fopen_11.cpp:77:23:77:26 | data indirection | semmle.label | data indirection |
 subpaths
 #select
-| CWE23_Relative_Path_Traversal__char_console_fopen_11.cpp:77:23:77:26 | data | CWE23_Relative_Path_Traversal__char_console_fopen_11.cpp:55:27:55:38 | fgets output argument | CWE23_Relative_Path_Traversal__char_console_fopen_11.cpp:77:23:77:26 | data indirection | This argument to a file access function is derived from $@ and then passed to fopen(filename). | CWE23_Relative_Path_Traversal__char_console_fopen_11.cpp:55:27:55:38 | ... + ... | user input (fgets) |
+| CWE23_Relative_Path_Traversal__char_console_fopen_11.cpp:77:23:77:26 | data | CWE23_Relative_Path_Traversal__char_console_fopen_11.cpp:55:27:55:38 | fgets output argument | CWE23_Relative_Path_Traversal__char_console_fopen_11.cpp:77:23:77:26 | data indirection | This argument to a file access function is derived from $@ and then passed to fopen(filename). | CWE23_Relative_Path_Traversal__char_console_fopen_11.cpp:55:27:55:38 | fgets output argument | user input (string read by fgets) |
diff --git a/cpp/ql/test/query-tests/Security/CWE/CWE-022/semmle/tests/TaintedPath.expected b/cpp/ql/test/query-tests/Security/CWE/CWE-022/semmle/tests/TaintedPath.expected
index 45ca662513d..f4bf42b031f 100644
--- a/cpp/ql/test/query-tests/Security/CWE/CWE-022/semmle/tests/TaintedPath.expected
+++ b/cpp/ql/test/query-tests/Security/CWE/CWE-022/semmle/tests/TaintedPath.expected
@@ -2,7 +2,6 @@ edges
 | test.c:9:23:9:26 | argv | test.c:17:11:17:18 | fileName indirection |
 | test.c:31:22:31:25 | argv | test.c:32:11:32:18 | fileName indirection |
 | test.c:37:17:37:24 | scanf output argument | test.c:38:11:38:18 | fileName indirection |
-| test.c:43:17:43:24 | fileName | test.c:44:11:44:18 | fileName indirection |
 | test.c:43:17:43:24 | scanf output argument | test.c:44:11:44:18 | fileName indirection |
 nodes
 | test.c:9:23:9:26 | argv | semmle.label | argv |
@@ -11,12 +10,11 @@ nodes
 | test.c:32:11:32:18 | fileName indirection | semmle.label | fileName indirection |
 | test.c:37:17:37:24 | scanf output argument | semmle.label | scanf output argument |
 | test.c:38:11:38:18 | fileName indirection | semmle.label | fileName indirection |
-| test.c:43:17:43:24 | fileName | semmle.label | fileName |
 | test.c:43:17:43:24 | scanf output argument | semmle.label | scanf output argument |
 | test.c:44:11:44:18 | fileName indirection | semmle.label | fileName indirection |
 subpaths
 #select
-| test.c:17:11:17:18 | fileName | test.c:9:23:9:26 | argv | test.c:17:11:17:18 | fileName indirection | This argument to a file access function is derived from $@ and then passed to fopen(filename). | test.c:9:23:9:26 | argv | user input (argv) |
-| test.c:32:11:32:18 | fileName | test.c:31:22:31:25 | argv | test.c:32:11:32:18 | fileName indirection | This argument to a file access function is derived from $@ and then passed to fopen(filename). | test.c:31:22:31:25 | argv | user input (argv) |
-| test.c:38:11:38:18 | fileName | test.c:37:17:37:24 | scanf output argument | test.c:38:11:38:18 | fileName indirection | This argument to a file access function is derived from $@ and then passed to fopen(filename). | test.c:37:17:37:24 | fileName | user input (scanf) |
-| test.c:44:11:44:18 | fileName | test.c:43:17:43:24 | fileName | test.c:44:11:44:18 | fileName indirection | This argument to a file access function is derived from $@ and then passed to fopen(filename). | test.c:43:17:43:24 | fileName | user input (scanf) |
+| test.c:17:11:17:18 | fileName | test.c:9:23:9:26 | argv | test.c:17:11:17:18 | fileName indirection | This argument to a file access function is derived from $@ and then passed to fopen(filename). | test.c:9:23:9:26 | argv | user input (a command-line argument) |
+| test.c:32:11:32:18 | fileName | test.c:31:22:31:25 | argv | test.c:32:11:32:18 | fileName indirection | This argument to a file access function is derived from $@ and then passed to fopen(filename). | test.c:31:22:31:25 | argv | user input (a command-line argument) |
+| test.c:38:11:38:18 | fileName | test.c:37:17:37:24 | scanf output argument | test.c:38:11:38:18 | fileName indirection | This argument to a file access function is derived from $@ and then passed to fopen(filename). | test.c:37:17:37:24 | scanf output argument | user input (value read by scanf) |
+| test.c:44:11:44:18 | fileName | test.c:43:17:43:24 | scanf output argument | test.c:44:11:44:18 | fileName indirection | This argument to a file access function is derived from $@ and then passed to fopen(filename). | test.c:43:17:43:24 | scanf output argument | user input (value read by scanf) |

From 8262fbbfb561c61925c59524eb901d5673b2c953 Mon Sep 17 00:00:00 2001
From: erik-krogh <erik-krogh@github.com>
Date: Sun, 11 Dec 2022 18:32:19 +0100
Subject: [PATCH 1283/1420] Java/C#/GO: Use instanceof in more places

---
 .../semmle/code/csharp/commons/Assertions.qll | 24 +++++++------------
 .../dataflow/internal/ContentDataFlow.qll     | 14 ++++-------
 .../semmle/code/csharp/frameworks/System.qll  |  4 +---
 .../dataflow/CleartextStorageQuery.qll        |  4 +---
 .../security/dataflow/CodeInjectionQuery.qll  |  8 ++-----
 .../dataflow/CommandInjectionQuery.qll        |  4 +---
 .../dataflow/ConditionalBypassQuery.qll       |  4 +---
 .../ExposureOfPrivateInformationQuery.qll     |  4 +---
 .../security/dataflow/ExternalAPIsQuery.qll   |  3 +--
 .../security/dataflow/LDAPInjectionQuery.qll  |  4 +---
 .../security/dataflow/LogForgingQuery.qll     |  4 +---
 .../dataflow/MissingXMLValidationQuery.qll    |  4 +---
 .../csharp/security/dataflow/ReDoSQuery.qll   |  4 +---
 .../security/dataflow/RegexInjectionQuery.qll |  4 +---
 .../dataflow/ResourceInjectionQuery.qll       |  8 ++-----
 .../security/dataflow/SqlInjectionQuery.qll   |  8 ++-----
 .../security/dataflow/TaintedPathQuery.qll    |  4 +---
 .../dataflow/UnsafeDeserializationQuery.qll   |  4 +---
 .../security/dataflow/UrlRedirectQuery.qll    |  4 +---
 .../dataflow/XMLEntityInjectionQuery.qll      |  4 +---
 .../security/dataflow/XPathInjectionQuery.qll |  4 +---
 .../csharp/security/dataflow/XSSQuery.qll     |  4 +---
 .../csharp/security/dataflow/XSSSinks.qll     |  4 +---
 csharp/ql/src/AlertSuppression.ql             |  6 ++---
 .../CWE-099/TaintedWebClientLib.qll           |  4 +---
 .../experimental/CWE-918/RequestForgery.qll   |  4 +---
 .../dataflow/global/TaintTracking.ql          | 10 +++-----
 .../dataflow/global/TaintTrackingPath.ql      | 10 +++-----
 .../dataflow/library/FlowSummaries.ql         |  6 +----
 .../dataflow/library/FlowSummariesFiltered.ql |  6 ++---
 .../EntityFramework/FlowSummaries.ql          |  3 +--
 .../go/controlflow/ControlFlowGraph.qll       | 24 ++++++++-----------
 .../CommandInjectionCustomizations.qll        |  4 +---
 .../security/LogInjectionCustomizations.qll   |  4 +---
 .../OpenUrlRedirectCustomizations.qll         |  4 +---
 .../security/ReflectedXssCustomizations.qll   |  8 ++-----
 .../security/RequestForgeryCustomizations.qll |  4 +---
 .../security/SqlInjectionCustomizations.qll   | 12 +++-------
 .../go/security/StoredXssCustomizations.qll   |  8 ++-----
 .../go/security/TaintedPathCustomizations.qll |  4 +---
 .../security/XPathInjectionCustomizations.qll |  8 ++-----
 .../go/security/ZipSlipCustomizations.qll     |  7 ++----
 go/ql/src/AlertSuppression.ql                 |  6 ++---
 .../CWE-640/EmailInjectionCustomizations.qll  |  8 ++-----
 .../semmle/code/java/dataflow/FlowSources.qll |  4 +---
 .../semmle/code/java/deadcode/EntryPoints.qll | 17 ++++---------
 .../code/java/deadcode/SpringEntryPoints.qll  |  4 +---
 .../code/java/deadcode/StrutsEntryPoints.qll  | 11 +++------
 .../code/java/deadcode/TestEntryPoints.qll    | 18 +++++---------
 .../code/java/deadcode/WebEntryPoints.qll     | 13 +++-------
 .../frameworks/javaee/ejb/EJBRestrictions.qll |  7 ++----
 .../java/frameworks/spring/SpringProfile.qll  |  3 +--
 .../semmle/code/java/security/Encryption.qll  |  4 +---
 .../code/java/security/ResponseSplitting.qll  |  4 +---
 java/ql/src/AlertSuppression.ql               |  6 ++---
 java/ql/src/AlertSuppressionAnnotations.ql    |  6 ++---
 .../CWE/CWE-190/ComparisonWithWiderType.ql    |  4 +---
 ...ClientSuppliedIpUsedInSecurityCheckLib.qll |  3 +--
 java/ql/src/utils/stub-generator/Stubs.qll    | 11 +++------
 .../dataflow/taintsources/local.ql            |  7 ++----
 60 files changed, 116 insertions(+), 289 deletions(-)

diff --git a/csharp/ql/lib/semmle/code/csharp/commons/Assertions.qll b/csharp/ql/lib/semmle/code/csharp/commons/Assertions.qll
index df8ae6ea6ed..f35b10ac934 100644
--- a/csharp/ql/lib/semmle/code/csharp/commons/Assertions.qll
+++ b/csharp/ql/lib/semmle/code/csharp/commons/Assertions.qll
@@ -368,40 +368,32 @@ private Stmt getAnAssertingStmt(Assertion a) {
 }
 
 /** A method that forwards to a Boolean assertion method. */
-class ForwarderBooleanAssertMethod extends BooleanAssertMethod {
-  private ForwarderAssertMethod forwarder;
+class ForwarderBooleanAssertMethod extends BooleanAssertMethod instanceof ForwarderAssertMethod {
   private BooleanAssertMethod underlying;
 
-  ForwarderBooleanAssertMethod() {
-    forwarder = this and
-    underlying = forwarder.getUnderlyingAssertMethod()
-  }
+  ForwarderBooleanAssertMethod() { underlying = super.getUnderlyingAssertMethod() }
 
   override int getAnAssertionIndex(boolean b) {
-    forwarder.getAForwarderAssertionIndex(result) = underlying.getAnAssertionIndex(b)
+    super.getAForwarderAssertionIndex(result) = underlying.getAnAssertionIndex(b)
   }
 
   override AssertionFailure getAssertionFailure(int i) {
-    result = underlying.getAssertionFailure(forwarder.getAForwarderAssertionIndex(i))
+    result = underlying.getAssertionFailure(super.getAForwarderAssertionIndex(i))
   }
 }
 
 /** A method that forwards to a nullness assertion method. */
-class ForwarderNullnessAssertMethod extends NullnessAssertMethod {
-  private ForwarderAssertMethod forwarder;
+class ForwarderNullnessAssertMethod extends NullnessAssertMethod instanceof ForwarderAssertMethod {
   private NullnessAssertMethod underlying;
 
-  ForwarderNullnessAssertMethod() {
-    forwarder = this and
-    underlying = forwarder.getUnderlyingAssertMethod()
-  }
+  ForwarderNullnessAssertMethod() { underlying = super.getUnderlyingAssertMethod() }
 
   override int getAnAssertionIndex(boolean b) {
-    forwarder.getAForwarderAssertionIndex(result) = underlying.getAnAssertionIndex(b)
+    super.getAForwarderAssertionIndex(result) = underlying.getAnAssertionIndex(b)
   }
 
   override AssertionFailure getAssertionFailure(int i) {
-    result = underlying.getAssertionFailure(forwarder.getAForwarderAssertionIndex(i))
+    result = underlying.getAssertionFailure(super.getAForwarderAssertionIndex(i))
   }
 }
 
diff --git a/csharp/ql/lib/semmle/code/csharp/dataflow/internal/ContentDataFlow.qll b/csharp/ql/lib/semmle/code/csharp/dataflow/internal/ContentDataFlow.qll
index 2bdb56b2aa6..787f2f614f7 100644
--- a/csharp/ql/lib/semmle/code/csharp/dataflow/internal/ContentDataFlow.qll
+++ b/csharp/ql/lib/semmle/code/csharp/dataflow/internal/ContentDataFlow.qll
@@ -222,18 +222,14 @@ module ContentDataFlow {
     )
   }
 
-  private class ConfigurationAdapter extends DF::Configuration {
-    private Configuration c;
-
-    ConfigurationAdapter() { this = c }
-
+  private class ConfigurationAdapter extends DF::Configuration instanceof Configuration {
     final override predicate isSource(Node source, DF::FlowState state) {
-      c.isSource(source) and
+      Configuration.super.isSource(source) and
       state.(InitState).decode(true)
     }
 
     final override predicate isSink(Node sink, DF::FlowState state) {
-      c.isSink(sink) and
+      Configuration.super.isSink(sink) and
       (
         state instanceof InitState or
         state instanceof StoreState or
@@ -249,9 +245,9 @@ module ContentDataFlow {
       additionalStep(node1, state1, node2, state2, this)
     }
 
-    final override predicate isBarrier(Node node) { c.isBarrier(node) }
+    final override predicate isBarrier(Node node) { Configuration.super.isBarrier(node) }
 
-    final override FlowFeature getAFeature() { result = c.getAFeature() }
+    final override FlowFeature getAFeature() { result = Configuration.super.getAFeature() }
 
     // needed to record reads/stores inside summarized callables
     final override predicate includeHiddenNodes() { any() }
diff --git a/csharp/ql/lib/semmle/code/csharp/frameworks/System.qll b/csharp/ql/lib/semmle/code/csharp/frameworks/System.qll
index 479b78b0567..c3e7d51f0ae 100644
--- a/csharp/ql/lib/semmle/code/csharp/frameworks/System.qll
+++ b/csharp/ql/lib/semmle/code/csharp/frameworks/System.qll
@@ -257,9 +257,7 @@ class SystemNullReferenceExceptionClass extends SystemClass {
 }
 
 /** The `System.Object` class. */
-class SystemObjectClass extends SystemClass {
-  SystemObjectClass() { this instanceof ObjectType }
-
+class SystemObjectClass extends SystemClass instanceof ObjectType {
   /** Gets the `Equals(object)` method. */
   Method getEqualsMethod() {
     result.getDeclaringType() = this and
diff --git a/csharp/ql/lib/semmle/code/csharp/security/dataflow/CleartextStorageQuery.qll b/csharp/ql/lib/semmle/code/csharp/security/dataflow/CleartextStorageQuery.qll
index 0f241d0c69b..0ea33ca7590 100644
--- a/csharp/ql/lib/semmle/code/csharp/security/dataflow/CleartextStorageQuery.qll
+++ b/csharp/ql/lib/semmle/code/csharp/security/dataflow/CleartextStorageQuery.qll
@@ -56,6 +56,4 @@ class ProtectSanitizer extends Sanitizer {
 /**
  * An external location sink.
  */
-class ExternalSink extends Sink {
-  ExternalSink() { this instanceof ExternalLocationSink }
-}
+class ExternalSink extends Sink instanceof ExternalLocationSink { }
diff --git a/csharp/ql/lib/semmle/code/csharp/security/dataflow/CodeInjectionQuery.qll b/csharp/ql/lib/semmle/code/csharp/security/dataflow/CodeInjectionQuery.qll
index 758fbf50b16..4061ab8651c 100644
--- a/csharp/ql/lib/semmle/code/csharp/security/dataflow/CodeInjectionQuery.qll
+++ b/csharp/ql/lib/semmle/code/csharp/security/dataflow/CodeInjectionQuery.qll
@@ -38,14 +38,10 @@ class TaintTrackingConfiguration extends TaintTracking::Configuration {
 }
 
 /** A source of remote user input. */
-class RemoteSource extends Source {
-  RemoteSource() { this instanceof RemoteFlowSource }
-}
+class RemoteSource extends Source instanceof RemoteFlowSource { }
 
 /** A source of local user input. */
-class LocalSource extends Source {
-  LocalSource() { this instanceof LocalFlowSource }
-}
+class LocalSource extends Source instanceof LocalFlowSource { }
 
 private class SimpleTypeSanitizer extends Sanitizer, SimpleTypeSanitizedExpr { }
 
diff --git a/csharp/ql/lib/semmle/code/csharp/security/dataflow/CommandInjectionQuery.qll b/csharp/ql/lib/semmle/code/csharp/security/dataflow/CommandInjectionQuery.qll
index 506bf9599b7..82798a34743 100644
--- a/csharp/ql/lib/semmle/code/csharp/security/dataflow/CommandInjectionQuery.qll
+++ b/csharp/ql/lib/semmle/code/csharp/security/dataflow/CommandInjectionQuery.qll
@@ -36,9 +36,7 @@ class TaintTrackingConfiguration extends TaintTracking::Configuration {
 }
 
 /** A source of remote user input. */
-class RemoteSource extends Source {
-  RemoteSource() { this instanceof RemoteFlowSource }
-}
+class RemoteSource extends Source instanceof RemoteFlowSource { }
 
 /**
  * A sink in `System.Diagnostic.Process` or its related classes.
diff --git a/csharp/ql/lib/semmle/code/csharp/security/dataflow/ConditionalBypassQuery.qll b/csharp/ql/lib/semmle/code/csharp/security/dataflow/ConditionalBypassQuery.qll
index ac856264b15..e41a868be48 100644
--- a/csharp/ql/lib/semmle/code/csharp/security/dataflow/ConditionalBypassQuery.qll
+++ b/csharp/ql/lib/semmle/code/csharp/security/dataflow/ConditionalBypassQuery.qll
@@ -43,9 +43,7 @@ class Configuration extends TaintTracking::Configuration {
 }
 
 /** A source of remote user input. */
-class RemoteSource extends Source {
-  RemoteSource() { this instanceof RemoteFlowSource }
-}
+class RemoteSource extends Source instanceof RemoteFlowSource { }
 
 /** The result of a reverse dns may be user-controlled. */
 class ReverseDnsSource extends Source {
diff --git a/csharp/ql/lib/semmle/code/csharp/security/dataflow/ExposureOfPrivateInformationQuery.qll b/csharp/ql/lib/semmle/code/csharp/security/dataflow/ExposureOfPrivateInformationQuery.qll
index 11a79878698..2bf409899ee 100644
--- a/csharp/ql/lib/semmle/code/csharp/security/dataflow/ExposureOfPrivateInformationQuery.qll
+++ b/csharp/ql/lib/semmle/code/csharp/security/dataflow/ExposureOfPrivateInformationQuery.qll
@@ -39,6 +39,4 @@ private class PrivateDataSource extends Source {
   PrivateDataSource() { this.getExpr() instanceof PrivateDataExpr }
 }
 
-private class ExternalLocation extends Sink {
-  ExternalLocation() { this instanceof ExternalLocationSink }
-}
+private class ExternalLocation extends Sink instanceof ExternalLocationSink { }
diff --git a/csharp/ql/lib/semmle/code/csharp/security/dataflow/ExternalAPIsQuery.qll b/csharp/ql/lib/semmle/code/csharp/security/dataflow/ExternalAPIsQuery.qll
index 4b181d9c984..1fde874cc93 100644
--- a/csharp/ql/lib/semmle/code/csharp/security/dataflow/ExternalAPIsQuery.qll
+++ b/csharp/ql/lib/semmle/code/csharp/security/dataflow/ExternalAPIsQuery.qll
@@ -17,8 +17,7 @@ abstract class SafeExternalApiCallable extends Callable { }
 /** DEPRECATED: Alias for SafeExternalApiCallable */
 deprecated class SafeExternalAPICallable = SafeExternalApiCallable;
 
-private class SummarizedCallableSafe extends SafeExternalApiCallable {
-  SummarizedCallableSafe() { this instanceof SummarizedCallable }
+private class SummarizedCallableSafe extends SafeExternalApiCallable instanceof SummarizedCallable {
 }
 
 /** The default set of "safe" external APIs. */
diff --git a/csharp/ql/lib/semmle/code/csharp/security/dataflow/LDAPInjectionQuery.qll b/csharp/ql/lib/semmle/code/csharp/security/dataflow/LDAPInjectionQuery.qll
index 6f985463763..fb94273ccd7 100644
--- a/csharp/ql/lib/semmle/code/csharp/security/dataflow/LDAPInjectionQuery.qll
+++ b/csharp/ql/lib/semmle/code/csharp/security/dataflow/LDAPInjectionQuery.qll
@@ -38,9 +38,7 @@ class TaintTrackingConfiguration extends TaintTracking::Configuration {
 }
 
 /** A source of remote user input. */
-class RemoteSource extends Source {
-  RemoteSource() { this instanceof RemoteFlowSource }
-}
+class RemoteSource extends Source instanceof RemoteFlowSource { }
 
 /**
  * An argument that sets the `Path` property of a `DirectoryEntry` object that is a sink for LDAP
diff --git a/csharp/ql/lib/semmle/code/csharp/security/dataflow/LogForgingQuery.qll b/csharp/ql/lib/semmle/code/csharp/security/dataflow/LogForgingQuery.qll
index 9320975c4d5..8764ebfd1d0 100644
--- a/csharp/ql/lib/semmle/code/csharp/security/dataflow/LogForgingQuery.qll
+++ b/csharp/ql/lib/semmle/code/csharp/security/dataflow/LogForgingQuery.qll
@@ -38,9 +38,7 @@ class TaintTrackingConfiguration extends TaintTracking::Configuration {
 }
 
 /** A source of remote user input. */
-private class RemoteSource extends Source {
-  RemoteSource() { this instanceof RemoteFlowSource }
-}
+private class RemoteSource extends Source instanceof RemoteFlowSource { }
 
 private class HtmlSanitizer extends Sanitizer {
   HtmlSanitizer() { this.asExpr() instanceof HtmlSanitizedExpr }
diff --git a/csharp/ql/lib/semmle/code/csharp/security/dataflow/MissingXMLValidationQuery.qll b/csharp/ql/lib/semmle/code/csharp/security/dataflow/MissingXMLValidationQuery.qll
index e39cf1f0c44..47de109168d 100644
--- a/csharp/ql/lib/semmle/code/csharp/security/dataflow/MissingXMLValidationQuery.qll
+++ b/csharp/ql/lib/semmle/code/csharp/security/dataflow/MissingXMLValidationQuery.qll
@@ -43,9 +43,7 @@ class TaintTrackingConfiguration extends TaintTracking::Configuration {
 }
 
 /** A source of remote user input. */
-class RemoteSource extends Source {
-  RemoteSource() { this instanceof RemoteFlowSource }
-}
+class RemoteSource extends Source instanceof RemoteFlowSource { }
 
 /**
  * The input argument to a call to `XmlReader.Create` where the input will not be validated against
diff --git a/csharp/ql/lib/semmle/code/csharp/security/dataflow/ReDoSQuery.qll b/csharp/ql/lib/semmle/code/csharp/security/dataflow/ReDoSQuery.qll
index e799501af4e..c3450946eb2 100644
--- a/csharp/ql/lib/semmle/code/csharp/security/dataflow/ReDoSQuery.qll
+++ b/csharp/ql/lib/semmle/code/csharp/security/dataflow/ReDoSQuery.qll
@@ -38,9 +38,7 @@ class TaintTrackingConfiguration extends TaintTracking::Configuration {
 }
 
 /** A source of remote user input. */
-class RemoteSource extends Source {
-  RemoteSource() { this instanceof RemoteFlowSource }
-}
+class RemoteSource extends Source instanceof RemoteFlowSource { }
 
 /**
  * An expression that represents a regular expression with potential exponential behavior.
diff --git a/csharp/ql/lib/semmle/code/csharp/security/dataflow/RegexInjectionQuery.qll b/csharp/ql/lib/semmle/code/csharp/security/dataflow/RegexInjectionQuery.qll
index 7631375eba5..bfd0bcb5aea 100644
--- a/csharp/ql/lib/semmle/code/csharp/security/dataflow/RegexInjectionQuery.qll
+++ b/csharp/ql/lib/semmle/code/csharp/security/dataflow/RegexInjectionQuery.qll
@@ -37,9 +37,7 @@ class TaintTrackingConfiguration extends TaintTracking::Configuration {
 }
 
 /** A source of remote user input. */
-class RemoteSource extends Source {
-  RemoteSource() { this instanceof RemoteFlowSource }
-}
+class RemoteSource extends Source instanceof RemoteFlowSource { }
 
 /**
  * A `pattern` argument to a construction of a `Regex`.
diff --git a/csharp/ql/lib/semmle/code/csharp/security/dataflow/ResourceInjectionQuery.qll b/csharp/ql/lib/semmle/code/csharp/security/dataflow/ResourceInjectionQuery.qll
index cfcdd93aaa3..fee371359fd 100644
--- a/csharp/ql/lib/semmle/code/csharp/security/dataflow/ResourceInjectionQuery.qll
+++ b/csharp/ql/lib/semmle/code/csharp/security/dataflow/ResourceInjectionQuery.qll
@@ -37,14 +37,10 @@ class TaintTrackingConfiguration extends TaintTracking::Configuration {
 }
 
 /** A source of remote user input. */
-class RemoteSource extends Source {
-  RemoteSource() { this instanceof RemoteFlowSource }
-}
+class RemoteSource extends Source instanceof RemoteFlowSource { }
 
 /** A source of local user input. */
-class LocalSource extends Source {
-  LocalSource() { this instanceof LocalFlowSource }
-}
+class LocalSource extends Source instanceof LocalFlowSource { }
 
 /** An argument to the `ConnectionString` property on a data connection class. */
 class SqlConnectionStringSink extends Sink {
diff --git a/csharp/ql/lib/semmle/code/csharp/security/dataflow/SqlInjectionQuery.qll b/csharp/ql/lib/semmle/code/csharp/security/dataflow/SqlInjectionQuery.qll
index f4184a391b9..d19b4739fde 100644
--- a/csharp/ql/lib/semmle/code/csharp/security/dataflow/SqlInjectionQuery.qll
+++ b/csharp/ql/lib/semmle/code/csharp/security/dataflow/SqlInjectionQuery.qll
@@ -38,14 +38,10 @@ class TaintTrackingConfiguration extends TaintTracking::Configuration {
 }
 
 /** A source of remote user input. */
-class RemoteSource extends Source {
-  RemoteSource() { this instanceof RemoteFlowSource }
-}
+class RemoteSource extends Source instanceof RemoteFlowSource { }
 
 /** A source of local user input. */
-class LocalSource extends Source {
-  LocalSource() { this instanceof LocalFlowSource }
-}
+class LocalSource extends Source instanceof LocalFlowSource { }
 
 /** An SQL expression passed to an API call that executes SQL. */
 class SqlInjectionExprSink extends Sink {
diff --git a/csharp/ql/lib/semmle/code/csharp/security/dataflow/TaintedPathQuery.qll b/csharp/ql/lib/semmle/code/csharp/security/dataflow/TaintedPathQuery.qll
index 0379173578e..7e9f266a310 100644
--- a/csharp/ql/lib/semmle/code/csharp/security/dataflow/TaintedPathQuery.qll
+++ b/csharp/ql/lib/semmle/code/csharp/security/dataflow/TaintedPathQuery.qll
@@ -39,9 +39,7 @@ class TaintTrackingConfiguration extends TaintTracking::Configuration {
 }
 
 /** A source of remote user input. */
-class RemoteSource extends Source {
-  RemoteSource() { this instanceof RemoteFlowSource }
-}
+class RemoteSource extends Source instanceof RemoteFlowSource { }
 
 /**
  * A path argument to a `File` method call.
diff --git a/csharp/ql/lib/semmle/code/csharp/security/dataflow/UnsafeDeserializationQuery.qll b/csharp/ql/lib/semmle/code/csharp/security/dataflow/UnsafeDeserializationQuery.qll
index 73b23acfb29..046424397e6 100644
--- a/csharp/ql/lib/semmle/code/csharp/security/dataflow/UnsafeDeserializationQuery.qll
+++ b/csharp/ql/lib/semmle/code/csharp/security/dataflow/UnsafeDeserializationQuery.qll
@@ -44,9 +44,7 @@ abstract private class ConstructorOrStaticMethodSink extends Sink { }
  */
 abstract class Sanitizer extends DataFlow::Node { }
 
-private class RemoteSource extends Source {
-  RemoteSource() { this instanceof RemoteFlowSource }
-}
+private class RemoteSource extends Source instanceof RemoteFlowSource { }
 
 /**
  * User input to object method call deserialization flow tracking.
diff --git a/csharp/ql/lib/semmle/code/csharp/security/dataflow/UrlRedirectQuery.qll b/csharp/ql/lib/semmle/code/csharp/security/dataflow/UrlRedirectQuery.qll
index 796bc9f3b5d..499ff5c4a09 100644
--- a/csharp/ql/lib/semmle/code/csharp/security/dataflow/UrlRedirectQuery.qll
+++ b/csharp/ql/lib/semmle/code/csharp/security/dataflow/UrlRedirectQuery.qll
@@ -50,9 +50,7 @@ class TaintTrackingConfiguration extends TaintTracking::Configuration {
 }
 
 /** A source of remote user input. */
-class RemoteSource extends Source {
-  RemoteSource() { this instanceof RemoteFlowSource }
-}
+class RemoteSource extends Source instanceof RemoteFlowSource { }
 
 /**
  * A URL argument to a call to `HttpResponse.Redirect()` or `Controller.Redirect()`, that is a
diff --git a/csharp/ql/lib/semmle/code/csharp/security/dataflow/XMLEntityInjectionQuery.qll b/csharp/ql/lib/semmle/code/csharp/security/dataflow/XMLEntityInjectionQuery.qll
index 28317c0b201..ea5a16b6aaf 100644
--- a/csharp/ql/lib/semmle/code/csharp/security/dataflow/XMLEntityInjectionQuery.qll
+++ b/csharp/ql/lib/semmle/code/csharp/security/dataflow/XMLEntityInjectionQuery.qll
@@ -14,9 +14,7 @@ private import semmle.code.csharp.security.Sanitizers
  */
 abstract class Source extends DataFlow::Node { }
 
-private class RemoteSource extends Source {
-  RemoteSource() { this instanceof RemoteFlowSource }
-}
+private class RemoteSource extends Source instanceof RemoteFlowSource { }
 
 /**
  * A data flow sink for untrusted user input used in XML processing.
diff --git a/csharp/ql/lib/semmle/code/csharp/security/dataflow/XPathInjectionQuery.qll b/csharp/ql/lib/semmle/code/csharp/security/dataflow/XPathInjectionQuery.qll
index 7b062288f9c..f6f02fcd426 100644
--- a/csharp/ql/lib/semmle/code/csharp/security/dataflow/XPathInjectionQuery.qll
+++ b/csharp/ql/lib/semmle/code/csharp/security/dataflow/XPathInjectionQuery.qll
@@ -37,9 +37,7 @@ class TaintTrackingConfiguration extends TaintTracking::Configuration {
 }
 
 /** A source of remote user input. */
-class RemoteSource extends Source {
-  RemoteSource() { this instanceof RemoteFlowSource }
-}
+class RemoteSource extends Source instanceof RemoteFlowSource { }
 
 /** The `xpath` argument to an `XPathExpression.Compile(..)` call. */
 class XPathExpressionCompileSink extends Sink {
diff --git a/csharp/ql/lib/semmle/code/csharp/security/dataflow/XSSQuery.qll b/csharp/ql/lib/semmle/code/csharp/security/dataflow/XSSQuery.qll
index a216ce5e9d2..72a1d930354 100644
--- a/csharp/ql/lib/semmle/code/csharp/security/dataflow/XSSQuery.qll
+++ b/csharp/ql/lib/semmle/code/csharp/security/dataflow/XSSQuery.qll
@@ -149,9 +149,7 @@ class TaintTrackingConfiguration extends TaintTracking2::Configuration {
 }
 
 /** A source of remote user input. */
-private class RemoteSource extends Source {
-  RemoteSource() { this instanceof RemoteFlowSource }
-}
+private class RemoteSource extends Source instanceof RemoteFlowSource { }
 
 private class SimpleTypeSanitizer extends Sanitizer, SimpleTypeSanitizedExpr { }
 
diff --git a/csharp/ql/lib/semmle/code/csharp/security/dataflow/XSSSinks.qll b/csharp/ql/lib/semmle/code/csharp/security/dataflow/XSSSinks.qll
index 637c3c29f8b..0232d9462e2 100644
--- a/csharp/ql/lib/semmle/code/csharp/security/dataflow/XSSSinks.qll
+++ b/csharp/ql/lib/semmle/code/csharp/security/dataflow/XSSSinks.qll
@@ -27,9 +27,7 @@ private class ExternalXssSink extends Sink {
   ExternalXssSink() { sinkNode(this, "xss") }
 }
 
-private class HtmlSinkSink extends Sink {
-  HtmlSinkSink() { this instanceof HtmlSink }
-
+private class HtmlSinkSink extends Sink instanceof HtmlSink {
   override string explanation() {
     this instanceof WebPageWriteLiteralSink and
     result = "System.Web.WebPages.WebPage.WriteLiteral() method"
diff --git a/csharp/ql/src/AlertSuppression.ql b/csharp/ql/src/AlertSuppression.ql
index 3cb6d759b6e..cfa8dbae832 100644
--- a/csharp/ql/src/AlertSuppression.ql
+++ b/csharp/ql/src/AlertSuppression.ql
@@ -44,9 +44,7 @@ class SuppressionComment extends CommentLine {
 /**
  * The scope of an alert suppression comment.
  */
-class SuppressionScope extends @commentline {
-  SuppressionScope() { this instanceof SuppressionComment }
-
+class SuppressionScope extends @commentline instanceof SuppressionComment {
   /** Gets a suppression comment with this scope. */
   SuppressionComment getSuppressionComment() { result = this }
 
@@ -60,7 +58,7 @@ class SuppressionScope extends @commentline {
   predicate hasLocationInfo(
     string filepath, int startline, int startcolumn, int endline, int endcolumn
   ) {
-    this.(SuppressionComment).covers(filepath, startline, startcolumn, endline, endcolumn)
+    super.covers(filepath, startline, startcolumn, endline, endcolumn)
   }
 
   /** Gets a textual representation of this element. */
diff --git a/csharp/ql/src/experimental/CWE-099/TaintedWebClientLib.qll b/csharp/ql/src/experimental/CWE-099/TaintedWebClientLib.qll
index e9da88e0d27..5f04d766827 100644
--- a/csharp/ql/src/experimental/CWE-099/TaintedWebClientLib.qll
+++ b/csharp/ql/src/experimental/CWE-099/TaintedWebClientLib.qll
@@ -51,9 +51,7 @@ class TaintTrackingConfiguration extends TaintTracking::Configuration {
 }
 
 /** A source of remote user input. */
-class RemoteSource extends Source {
-  RemoteSource() { this instanceof RemoteFlowSource }
-}
+class RemoteSource extends Source instanceof RemoteFlowSource { }
 
 /**
  * A path argument to a `WebClient` method call that has an address argument.
diff --git a/csharp/ql/src/experimental/CWE-918/RequestForgery.qll b/csharp/ql/src/experimental/CWE-918/RequestForgery.qll
index 9dc3fbdf2b9..868e1e29a13 100644
--- a/csharp/ql/src/experimental/CWE-918/RequestForgery.qll
+++ b/csharp/ql/src/experimental/CWE-918/RequestForgery.qll
@@ -58,9 +58,7 @@ module RequestForgery {
    * A remote data flow source taken as a source
    * for Server Side Request Forgery(SSRF) Vulnerabilities.
    */
-  private class RemoteFlowSourceAsSource extends Source {
-    RemoteFlowSourceAsSource() { this instanceof RemoteFlowSource }
-  }
+  private class RemoteFlowSourceAsSource extends Source instanceof RemoteFlowSource { }
 
   /**
    * An url argument to a `HttpRequestMessage` constructor call
diff --git a/csharp/ql/test/library-tests/dataflow/global/TaintTracking.ql b/csharp/ql/test/library-tests/dataflow/global/TaintTracking.ql
index 1fc9bb63fc2..43284a3d198 100644
--- a/csharp/ql/test/library-tests/dataflow/global/TaintTracking.ql
+++ b/csharp/ql/test/library-tests/dataflow/global/TaintTracking.ql
@@ -1,14 +1,10 @@
 import csharp
 import Common
 
-class TTConfig extends TaintTracking::Configuration {
-  Config c;
+class TTConfig extends TaintTracking::Configuration instanceof Config {
+  override predicate isSource(DataFlow::Node source) { Config.super.isSource(source) }
 
-  TTConfig() { this = c }
-
-  override predicate isSource(DataFlow::Node source) { c.isSource(source) }
-
-  override predicate isSink(DataFlow::Node sink) { c.isSink(sink) }
+  override predicate isSink(DataFlow::Node sink) { Config.super.isSink(sink) }
 }
 
 from TTConfig c, DataFlow::Node source, DataFlow::Node sink
diff --git a/csharp/ql/test/library-tests/dataflow/global/TaintTrackingPath.ql b/csharp/ql/test/library-tests/dataflow/global/TaintTrackingPath.ql
index e0eccb70461..3764c14789c 100644
--- a/csharp/ql/test/library-tests/dataflow/global/TaintTrackingPath.ql
+++ b/csharp/ql/test/library-tests/dataflow/global/TaintTrackingPath.ql
@@ -6,14 +6,10 @@ import csharp
 import Common
 import DataFlow::PathGraph
 
-class TTConfig extends TaintTracking::Configuration {
-  Config c;
+class TTConfig extends TaintTracking::Configuration instanceof Config {
+  override predicate isSource(DataFlow::Node source) { Config.super.isSource(source) }
 
-  TTConfig() { this = c }
-
-  override predicate isSource(DataFlow::Node source) { c.isSource(source) }
-
-  override predicate isSink(DataFlow::Node sink) { c.isSink(sink) }
+  override predicate isSink(DataFlow::Node sink) { Config.super.isSink(sink) }
 }
 
 from TTConfig c, DataFlow::PathNode source, DataFlow::PathNode sink, string s
diff --git a/csharp/ql/test/library-tests/dataflow/library/FlowSummaries.ql b/csharp/ql/test/library-tests/dataflow/library/FlowSummaries.ql
index 717c4943f46..6671f16dbc3 100644
--- a/csharp/ql/test/library-tests/dataflow/library/FlowSummaries.ql
+++ b/csharp/ql/test/library-tests/dataflow/library/FlowSummaries.ql
@@ -6,11 +6,7 @@ private class IncludeAllSummarizedCallable extends IncludeSummarizedCallable {
   IncludeAllSummarizedCallable() { exists(this) }
 }
 
-private class IncludeNegativeSummarizedCallable extends RelevantNegativeSummarizedCallable {
-  IncludeNegativeSummarizedCallable() {
-    this instanceof FlowSummaryImpl::Public::NegativeSummarizedCallable
-  }
-
+private class IncludeNegativeSummarizedCallable extends RelevantNegativeSummarizedCallable instanceof FlowSummaryImpl::Public::NegativeSummarizedCallable {
   /** Gets a string representing the callable in semi-colon separated format for use in flow summaries. */
   final override string getCallableCsv() { result = Csv::asPartialNegativeModel(this) }
 }
diff --git a/csharp/ql/test/library-tests/dataflow/library/FlowSummariesFiltered.ql b/csharp/ql/test/library-tests/dataflow/library/FlowSummariesFiltered.ql
index 961faf60084..82cf263ec9c 100644
--- a/csharp/ql/test/library-tests/dataflow/library/FlowSummariesFiltered.ql
+++ b/csharp/ql/test/library-tests/dataflow/library/FlowSummariesFiltered.ql
@@ -2,9 +2,7 @@ import shared.FlowSummaries
 private import semmle.code.csharp.dataflow.internal.DataFlowPrivate::Csv
 private import semmle.code.csharp.dataflow.ExternalFlow
 
-class IncludeFilteredSummarizedCallable extends IncludeSummarizedCallable {
-  IncludeFilteredSummarizedCallable() { this instanceof SummarizedCallable }
-
+class IncludeFilteredSummarizedCallable extends IncludeSummarizedCallable instanceof SummarizedCallable {
   /**
    * Holds if flow is propagated between `input` and `output` and
    * if there is no summary for a callable in a `base` class or interface
@@ -13,7 +11,7 @@ class IncludeFilteredSummarizedCallable extends IncludeSummarizedCallable {
   override predicate relevantSummary(
     SummaryComponentStack input, SummaryComponentStack output, boolean preservesValue
   ) {
-    this.(SummarizedCallable).propagatesFlow(input, output, preservesValue) and
+    super.propagatesFlow(input, output, preservesValue) and
     not exists(IncludeSummarizedCallable rsc |
       isBaseCallableOrPrototype(rsc) and
       rsc.(SummarizedCallable).propagatesFlow(input, output, preservesValue) and
diff --git a/csharp/ql/test/library-tests/frameworks/EntityFramework/FlowSummaries.ql b/csharp/ql/test/library-tests/frameworks/EntityFramework/FlowSummaries.ql
index 41cc8379b3d..00873833083 100644
--- a/csharp/ql/test/library-tests/frameworks/EntityFramework/FlowSummaries.ql
+++ b/csharp/ql/test/library-tests/frameworks/EntityFramework/FlowSummaries.ql
@@ -2,8 +2,7 @@ import semmle.code.csharp.frameworks.EntityFramework::EntityFramework
 import shared.FlowSummaries
 import semmle.code.csharp.dataflow.ExternalFlow as ExternalFlow
 
-private class IncludeEFSummarizedCallable extends IncludeSummarizedCallable {
-  IncludeEFSummarizedCallable() { this instanceof EFSummarizedCallable }
+private class IncludeEFSummarizedCallable extends IncludeSummarizedCallable instanceof EFSummarizedCallable {
 }
 
 query predicate sourceNode(DataFlow::Node node, string kind) {
diff --git a/go/ql/lib/semmle/go/controlflow/ControlFlowGraph.qll b/go/ql/lib/semmle/go/controlflow/ControlFlowGraph.qll
index 51e03de3ab7..f4f355d87a1 100644
--- a/go/ql/lib/semmle/go/controlflow/ControlFlowGraph.qll
+++ b/go/ql/lib/semmle/go/controlflow/ControlFlowGraph.qll
@@ -106,24 +106,20 @@ module ControlFlow {
    * A control-flow node that initializes or updates the value of a constant, a variable,
    * a field, or an (array, slice, or map) element.
    */
-  class WriteNode extends Node {
-    IR::WriteInstruction self;
-
-    WriteNode() { this = self }
-
+  class WriteNode extends Node instanceof IR::WriteInstruction {
     /** Gets the left-hand side of this write. */
-    IR::WriteTarget getLhs() { result = self.getLhs() }
+    IR::WriteTarget getLhs() { result = super.getLhs() }
 
     /** Gets the right-hand side of this write. */
-    DataFlow::Node getRhs() { self.getRhs() = result.asInstruction() }
+    DataFlow::Node getRhs() { super.getRhs() = result.asInstruction() }
 
     /** Holds if this node sets variable or constant `v` to `rhs`. */
-    predicate writes(ValueEntity v, DataFlow::Node rhs) { self.writes(v, rhs.asInstruction()) }
+    predicate writes(ValueEntity v, DataFlow::Node rhs) { super.writes(v, rhs.asInstruction()) }
 
     /** Holds if this node defines SSA variable `v` to be `rhs`. */
     predicate definesSsaVariable(SsaVariable v, DataFlow::Node rhs) {
-      self.getLhs().asSsaVariable() = v and
-      self.getRhs() = rhs.asInstruction()
+      super.getLhs().asSsaVariable() = v and
+      super.getRhs() = rhs.asInstruction()
     }
 
     /**
@@ -136,13 +132,13 @@ module ControlFlow {
      * node corresponding to `newWidth`.
      */
     predicate writesField(DataFlow::Node base, Field f, DataFlow::Node rhs) {
-      exists(IR::FieldTarget trg | trg = self.getLhs() |
+      exists(IR::FieldTarget trg | trg = super.getLhs() |
         (
           trg.getBase() = base.asInstruction() or
           trg.getBase() = MkImplicitDeref(base.asExpr())
         ) and
         trg.getField() = f and
-        self.getRhs() = rhs.asInstruction()
+        super.getRhs() = rhs.asInstruction()
       )
     }
 
@@ -156,13 +152,13 @@ module ControlFlow {
      * is the data-flow node corresponding to `base`.
      */
     predicate writesElement(DataFlow::Node base, DataFlow::Node index, DataFlow::Node rhs) {
-      exists(IR::ElementTarget trg | trg = self.getLhs() |
+      exists(IR::ElementTarget trg | trg = super.getLhs() |
         (
           trg.getBase() = base.asInstruction() or
           trg.getBase() = MkImplicitDeref(base.asExpr())
         ) and
         trg.getIndex() = index.asInstruction() and
-        self.getRhs() = rhs.asInstruction()
+        super.getRhs() = rhs.asInstruction()
       )
     }
 
diff --git a/go/ql/lib/semmle/go/security/CommandInjectionCustomizations.qll b/go/ql/lib/semmle/go/security/CommandInjectionCustomizations.qll
index 1550d68dc03..a8f8269a968 100644
--- a/go/ql/lib/semmle/go/security/CommandInjectionCustomizations.qll
+++ b/go/ql/lib/semmle/go/security/CommandInjectionCustomizations.qll
@@ -37,9 +37,7 @@ module CommandInjection {
   abstract deprecated class SanitizerGuard extends DataFlow::BarrierGuard { }
 
   /** A source of untrusted data, considered as a taint source for command injection. */
-  class UntrustedFlowAsSource extends Source {
-    UntrustedFlowAsSource() { this instanceof UntrustedFlowSource }
-  }
+  class UntrustedFlowAsSource extends Source instanceof UntrustedFlowSource { }
 
   /** A command name, considered as a taint sink for command injection. */
   class CommandNameAsSink extends Sink {
diff --git a/go/ql/lib/semmle/go/security/LogInjectionCustomizations.qll b/go/ql/lib/semmle/go/security/LogInjectionCustomizations.qll
index 35b4625fe18..73d5f4f9a82 100644
--- a/go/ql/lib/semmle/go/security/LogInjectionCustomizations.qll
+++ b/go/ql/lib/semmle/go/security/LogInjectionCustomizations.qll
@@ -33,9 +33,7 @@ module LogInjection {
   abstract deprecated class SanitizerGuard extends DataFlow::BarrierGuard { }
 
   /** A source of untrusted data, considered as a taint source for log injection. */
-  class UntrustedFlowAsSource extends Source {
-    UntrustedFlowAsSource() { this instanceof UntrustedFlowSource }
-  }
+  class UntrustedFlowAsSource extends Source instanceof UntrustedFlowSource { }
 
   /** An argument to a logging mechanism. */
   class LoggerSink extends Sink {
diff --git a/go/ql/lib/semmle/go/security/OpenUrlRedirectCustomizations.qll b/go/ql/lib/semmle/go/security/OpenUrlRedirectCustomizations.qll
index 2d7f6948115..c6fdefd4a2b 100644
--- a/go/ql/lib/semmle/go/security/OpenUrlRedirectCustomizations.qll
+++ b/go/ql/lib/semmle/go/security/OpenUrlRedirectCustomizations.qll
@@ -117,9 +117,7 @@ module OpenUrlRedirect {
 }
 
 /** A sink for an open redirect, considered as a sink for safe URL flow. */
-private class SafeUrlSink extends SafeUrlFlow::Sink {
-  SafeUrlSink() { this instanceof OpenUrlRedirect::Sink }
-}
+private class SafeUrlSink extends SafeUrlFlow::Sink instanceof OpenUrlRedirect::Sink { }
 
 /**
  * A read of a field considered unsafe to redirect to, considered as a sanitizer for a safe
diff --git a/go/ql/lib/semmle/go/security/ReflectedXssCustomizations.qll b/go/ql/lib/semmle/go/security/ReflectedXssCustomizations.qll
index 82233a1e79b..bdc2bd0cf1b 100644
--- a/go/ql/lib/semmle/go/security/ReflectedXssCustomizations.qll
+++ b/go/ql/lib/semmle/go/security/ReflectedXssCustomizations.qll
@@ -27,9 +27,7 @@ module ReflectedXss {
   abstract deprecated class SanitizerGuard extends DataFlow::BarrierGuard { }
 
   /** A shared XSS sanitizer as a sanitizer for reflected XSS. */
-  private class SharedXssSanitizer extends Sanitizer {
-    SharedXssSanitizer() { this instanceof SharedXss::Sanitizer }
-  }
+  private class SharedXssSanitizer extends Sanitizer instanceof SharedXss::Sanitizer { }
 
   /** A shared XSS sanitizer guard as a sanitizer guard for reflected XSS. */
   deprecated private class SharedXssSanitizerGuard extends SanitizerGuard {
@@ -46,7 +44,5 @@ module ReflectedXss {
   class UntrustedFlowAsSource extends Source, UntrustedFlowSource { }
 
   /** An arbitrary XSS sink, considered as a flow sink for stored XSS. */
-  private class AnySink extends Sink {
-    AnySink() { this instanceof SharedXss::Sink }
-  }
+  private class AnySink extends Sink instanceof SharedXss::Sink { }
 }
diff --git a/go/ql/lib/semmle/go/security/RequestForgeryCustomizations.qll b/go/ql/lib/semmle/go/security/RequestForgeryCustomizations.qll
index b11157daa06..26aff199a5c 100644
--- a/go/ql/lib/semmle/go/security/RequestForgeryCustomizations.qll
+++ b/go/ql/lib/semmle/go/security/RequestForgeryCustomizations.qll
@@ -102,9 +102,7 @@ module RequestForgery {
 }
 
 /** A sink for request forgery, considered as a sink for safe URL flow. */
-private class SafeUrlSink extends SafeUrlFlow::Sink {
-  SafeUrlSink() { this instanceof RequestForgery::Sink }
-}
+private class SafeUrlSink extends SafeUrlFlow::Sink instanceof RequestForgery::Sink { }
 
 /**
  * A read of a field considered unsafe for request forgery, considered as a sanitizer for a safe
diff --git a/go/ql/lib/semmle/go/security/SqlInjectionCustomizations.qll b/go/ql/lib/semmle/go/security/SqlInjectionCustomizations.qll
index 11e794a9f1e..9687eea91a9 100644
--- a/go/ql/lib/semmle/go/security/SqlInjectionCustomizations.qll
+++ b/go/ql/lib/semmle/go/security/SqlInjectionCustomizations.qll
@@ -33,17 +33,11 @@ module SqlInjection {
   abstract deprecated class SanitizerGuard extends DataFlow::BarrierGuard { }
 
   /** A source of untrusted data, considered as a taint source for SQL injection. */
-  class UntrustedFlowAsSource extends Source {
-    UntrustedFlowAsSource() { this instanceof UntrustedFlowSource }
-  }
+  class UntrustedFlowAsSource extends Source instanceof UntrustedFlowSource { }
 
   /** An SQL string, considered as a taint sink for SQL injection. */
-  class SqlQueryAsSink extends Sink {
-    SqlQueryAsSink() { this instanceof SQL::QueryString }
-  }
+  class SqlQueryAsSink extends Sink instanceof SQL::QueryString { }
 
   /** A NoSql query, considered as a taint sink for SQL injection. */
-  class NoSqlQueryAsSink extends Sink {
-    NoSqlQueryAsSink() { this instanceof NoSql::Query }
-  }
+  class NoSqlQueryAsSink extends Sink instanceof NoSql::Query { }
 }
diff --git a/go/ql/lib/semmle/go/security/StoredXssCustomizations.qll b/go/ql/lib/semmle/go/security/StoredXssCustomizations.qll
index e48f17181ca..7d468df2607 100644
--- a/go/ql/lib/semmle/go/security/StoredXssCustomizations.qll
+++ b/go/ql/lib/semmle/go/security/StoredXssCustomizations.qll
@@ -24,9 +24,7 @@ module StoredXss {
   abstract deprecated class SanitizerGuard extends DataFlow::BarrierGuard { }
 
   /** A shared XSS sanitizer as a sanitizer for stored XSS. */
-  private class SharedXssSanitizer extends Sanitizer {
-    SharedXssSanitizer() { this instanceof SharedXss::Sanitizer }
-  }
+  private class SharedXssSanitizer extends Sanitizer instanceof SharedXss::Sanitizer { }
 
   /** A shared XSS sanitizer guard as a sanitizer guard for stored XSS. */
   deprecated private class SharedXssSanitizerGuard extends SanitizerGuard {
@@ -59,7 +57,5 @@ module StoredXss {
   }
 
   /** An arbitrary XSS sink, considered as a flow sink for stored XSS. */
-  private class AnySink extends Sink {
-    AnySink() { this instanceof SharedXss::Sink }
-  }
+  private class AnySink extends Sink instanceof SharedXss::Sink { }
 }
diff --git a/go/ql/lib/semmle/go/security/TaintedPathCustomizations.qll b/go/ql/lib/semmle/go/security/TaintedPathCustomizations.qll
index 61499340de3..0b4c41276d7 100644
--- a/go/ql/lib/semmle/go/security/TaintedPathCustomizations.qll
+++ b/go/ql/lib/semmle/go/security/TaintedPathCustomizations.qll
@@ -61,9 +61,7 @@ module TaintedPath {
   }
 
   /** A source of untrusted data, considered as a taint source for path traversal. */
-  class UntrustedFlowAsSource extends Source {
-    UntrustedFlowAsSource() { this instanceof UntrustedFlowSource }
-  }
+  class UntrustedFlowAsSource extends Source instanceof UntrustedFlowSource { }
 
   /** A path expression, considered as a taint sink for path traversal. */
   class PathAsSink extends Sink {
diff --git a/go/ql/lib/semmle/go/security/XPathInjectionCustomizations.qll b/go/ql/lib/semmle/go/security/XPathInjectionCustomizations.qll
index d16c6cc1312..3e9484506e0 100644
--- a/go/ql/lib/semmle/go/security/XPathInjectionCustomizations.qll
+++ b/go/ql/lib/semmle/go/security/XPathInjectionCustomizations.qll
@@ -32,12 +32,8 @@ module XPathInjection {
   abstract deprecated class SanitizerGuard extends DataFlow::BarrierGuard { }
 
   /** A source of untrusted data, used in an XPath expression. */
-  class UntrustedFlowAsSource extends Source {
-    UntrustedFlowAsSource() { this instanceof UntrustedFlowSource }
-  }
+  class UntrustedFlowAsSource extends Source instanceof UntrustedFlowSource { }
 
   /** An XPath expression string, considered as a taint sink for XPath injection. */
-  class XPathExpressionStringAsSink extends Sink {
-    XPathExpressionStringAsSink() { this instanceof XPath::XPathExpressionString }
-  }
+  class XPathExpressionStringAsSink extends Sink instanceof XPath::XPathExpressionString { }
 }
diff --git a/go/ql/lib/semmle/go/security/ZipSlipCustomizations.qll b/go/ql/lib/semmle/go/security/ZipSlipCustomizations.qll
index da2c25aae28..4bc407f871d 100644
--- a/go/ql/lib/semmle/go/security/ZipSlipCustomizations.qll
+++ b/go/ql/lib/semmle/go/security/ZipSlipCustomizations.qll
@@ -73,9 +73,8 @@ module ZipSlip {
   }
 
   /** A path-traversal sink, considered as a taint sink for zip slip. */
-  class TaintedPathSinkAsSink extends Sink {
+  class TaintedPathSinkAsSink extends Sink instanceof TaintedPath::Sink {
     TaintedPathSinkAsSink() {
-      this instanceof TaintedPath::Sink and
       // Exclude `os.Symlink`, which is treated specifically in query `go/unsafe-unzip-symlink`.
       not exists(DataFlow::CallNode c | c.getTarget().hasQualifiedName("os", "Symlink") |
         this = c.getAnArgument()
@@ -84,9 +83,7 @@ module ZipSlip {
   }
 
   /** A path-traversal sanitizer, considered as a sanitizer for zip slip. */
-  class TaintedPathSanitizerAsSanitizer extends Sanitizer {
-    TaintedPathSanitizerAsSanitizer() { this instanceof TaintedPath::Sanitizer }
-  }
+  class TaintedPathSanitizerAsSanitizer extends Sanitizer instanceof TaintedPath::Sanitizer { }
 
   pragma[noinline]
   private predicate taintedPathGuardChecks(
diff --git a/go/ql/src/AlertSuppression.ql b/go/ql/src/AlertSuppression.ql
index f0a3b5df730..d264052bd23 100644
--- a/go/ql/src/AlertSuppression.ql
+++ b/go/ql/src/AlertSuppression.ql
@@ -49,9 +49,7 @@ class SuppressionComment extends Locatable {
 /**
  * The scope of an alert suppression comment.
  */
-class SuppressionScope extends @locatable {
-  SuppressionScope() { this instanceof SuppressionComment }
-
+class SuppressionScope extends @locatable instanceof SuppressionComment {
   /** Gets a suppression comment with this scope. */
   SuppressionComment getSuppressionComment() { result = this }
 
@@ -65,7 +63,7 @@ class SuppressionScope extends @locatable {
   predicate hasLocationInfo(
     string filepath, int startline, int startcolumn, int endline, int endcolumn
   ) {
-    this.(SuppressionComment).covers(filepath, startline, startcolumn, endline, endcolumn)
+    super.covers(filepath, startline, startcolumn, endline, endcolumn)
   }
 
   /** Gets a textual representation of this element. */
diff --git a/go/ql/src/Security/CWE-640/EmailInjectionCustomizations.qll b/go/ql/src/Security/CWE-640/EmailInjectionCustomizations.qll
index 77e3ad97a3b..1e0d4ee7d4c 100644
--- a/go/ql/src/Security/CWE-640/EmailInjectionCustomizations.qll
+++ b/go/ql/src/Security/CWE-640/EmailInjectionCustomizations.qll
@@ -17,14 +17,10 @@ module EmailInjection {
   abstract class Sink extends DataFlow::Node { }
 
   /** A source of untrusted data, considered as a taint source for email injection. */
-  class UntrustedFlowSourceAsSource extends Source {
-    UntrustedFlowSourceAsSource() { this instanceof UntrustedFlowSource }
-  }
+  class UntrustedFlowSourceAsSource extends Source instanceof UntrustedFlowSource { }
 
   /**
    * A data-flow node that becomes part of an email considered as a taint sink for email injection.
    */
-  class MailDataAsSink extends Sink {
-    MailDataAsSink() { this instanceof EmailData }
-  }
+  class MailDataAsSink extends Sink instanceof EmailData { }
 }
diff --git a/java/ql/lib/semmle/code/java/dataflow/FlowSources.qll b/java/ql/lib/semmle/code/java/dataflow/FlowSources.qll
index ddd65fc1dea..4970b8ff642 100644
--- a/java/ql/lib/semmle/code/java/dataflow/FlowSources.qll
+++ b/java/ql/lib/semmle/code/java/dataflow/FlowSources.qll
@@ -172,9 +172,7 @@ abstract class UserInput extends DataFlow::Node { }
 /**
  * Input that may be controlled by a remote user.
  */
-private class RemoteUserInput extends UserInput {
-  RemoteUserInput() { this instanceof RemoteFlowSource }
-}
+private class RemoteUserInput extends UserInput instanceof RemoteFlowSource { }
 
 /** A node with input that may be controlled by a local user. */
 abstract class LocalUserInput extends UserInput { }
diff --git a/java/ql/lib/semmle/code/java/deadcode/EntryPoints.qll b/java/ql/lib/semmle/code/java/deadcode/EntryPoints.qll
index d6d0653c1ea..81f5a2d765e 100644
--- a/java/ql/lib/semmle/code/java/deadcode/EntryPoints.qll
+++ b/java/ql/lib/semmle/code/java/deadcode/EntryPoints.qll
@@ -58,9 +58,7 @@ abstract class WhitelistedLiveCallable extends CallableEntryPoint { }
 /**
  * A `public static void main(String[] args)` method.
  */
-class MainMethodEntry extends CallableEntryPoint {
-  MainMethodEntry() { this instanceof MainMethod }
-}
+class MainMethodEntry extends CallableEntryPoint instanceof MainMethod { }
 
 /**
  * A method that overrides a library method -- the result is
@@ -96,9 +94,7 @@ abstract class ReflectivelyConstructedClass extends EntryPoint, Class {
 /**
  * Classes that are deserialized by Jackson are reflectively constructed.
  */
-library class JacksonReflectivelyConstructedClass extends ReflectivelyConstructedClass {
-  JacksonReflectivelyConstructedClass() { this instanceof JacksonDeserializableType }
-
+library class JacksonReflectivelyConstructedClass extends ReflectivelyConstructedClass instanceof JacksonDeserializableType {
   override Callable getALiveCallable() {
     // Constructors may be called by Jackson, if they are a no-arg, they have a suitable annotation,
     // or inherit a suitable annotation through a mixin.
@@ -312,8 +308,7 @@ class FacesAccessibleMethodEntryPoint extends CallableEntryPoint {
  * A Java Server Faces custom component, that is reflectively constructed by the framework when
  * used in a view (JSP or facelet).
  */
-class FacesComponentReflectivelyConstructedClass extends ReflectivelyConstructedClass {
-  FacesComponentReflectivelyConstructedClass() { this instanceof FacesComponent }
+class FacesComponentReflectivelyConstructedClass extends ReflectivelyConstructedClass instanceof FacesComponent {
 }
 
 /**
@@ -400,8 +395,7 @@ class JavaxManagedBeanReflectivelyConstructed extends ReflectivelyConstructedCla
  * Classes marked as Java persistence entities can be reflectively constructed when the data is
  * loaded.
  */
-class PersistentEntityEntryPoint extends ReflectivelyConstructedClass {
-  PersistentEntityEntryPoint() { this instanceof PersistentEntity }
+class PersistentEntityEntryPoint extends ReflectivelyConstructedClass instanceof PersistentEntity {
 }
 
 /**
@@ -465,6 +459,5 @@ class ArbitraryXmlEntryPoint extends ReflectivelyConstructedClass {
 deprecated class ArbitraryXMLEntryPoint = ArbitraryXmlEntryPoint;
 
 /** A Selenium PageObject, created by a call to PageFactory.initElements(..). */
-class SeleniumPageObjectEntryPoint extends ReflectivelyConstructedClass {
-  SeleniumPageObjectEntryPoint() { this instanceof SeleniumPageObject }
+class SeleniumPageObjectEntryPoint extends ReflectivelyConstructedClass instanceof SeleniumPageObject {
 }
diff --git a/java/ql/lib/semmle/code/java/deadcode/SpringEntryPoints.qll b/java/ql/lib/semmle/code/java/deadcode/SpringEntryPoints.qll
index fd2dc8974f7..caac4d37b6c 100644
--- a/java/ql/lib/semmle/code/java/deadcode/SpringEntryPoints.qll
+++ b/java/ql/lib/semmle/code/java/deadcode/SpringEntryPoints.qll
@@ -50,9 +50,7 @@ class SpringBeanAnnotatedMethod extends CallableEntryPoint {
 /**
  * A live entry point within a Spring controller.
  */
-class SpringControllerEntryPoint extends CallableEntryPoint {
-  SpringControllerEntryPoint() { this instanceof SpringControllerMethod }
-}
+class SpringControllerEntryPoint extends CallableEntryPoint instanceof SpringControllerMethod { }
 
 /**
  * A method that is accessible in a response, because it is part of the returned model,
diff --git a/java/ql/lib/semmle/code/java/deadcode/StrutsEntryPoints.qll b/java/ql/lib/semmle/code/java/deadcode/StrutsEntryPoints.qll
index 3599d1fe640..de2c0c44678 100644
--- a/java/ql/lib/semmle/code/java/deadcode/StrutsEntryPoints.qll
+++ b/java/ql/lib/semmle/code/java/deadcode/StrutsEntryPoints.qll
@@ -33,23 +33,18 @@ class Struts1ActionEntryPoint extends EntryPoint, Class {
 /**
  * A struts 2 action class that is reflectively constructed.
  */
-class Struts2ReflectivelyConstructedAction extends ReflectivelyConstructedClass {
-  Struts2ReflectivelyConstructedAction() { this instanceof Struts2ActionClass }
+class Struts2ReflectivelyConstructedAction extends ReflectivelyConstructedClass instanceof Struts2ActionClass {
 }
 
 /**
  * A method called on a struts 2 action class when the action is activated.
  */
-class Struts2ActionMethodEntryPoint extends CallableEntryPoint {
-  Struts2ActionMethodEntryPoint() { this instanceof Struts2ActionMethod }
-}
+class Struts2ActionMethodEntryPoint extends CallableEntryPoint instanceof Struts2ActionMethod { }
 
 /**
  * A method called on a struts 2 action class before an action is activated.
  */
-class Struts2PrepareMethodEntryPoint extends CallableEntryPoint {
-  Struts2PrepareMethodEntryPoint() { this instanceof Struts2PrepareMethod }
-}
+class Struts2PrepareMethodEntryPoint extends CallableEntryPoint instanceof Struts2PrepareMethod { }
 
 /**
  * A class which is accessible - directly or indirectly - from a struts action.
diff --git a/java/ql/lib/semmle/code/java/deadcode/TestEntryPoints.qll b/java/ql/lib/semmle/code/java/deadcode/TestEntryPoints.qll
index 2d8b28e4de9..d659918e815 100644
--- a/java/ql/lib/semmle/code/java/deadcode/TestEntryPoints.qll
+++ b/java/ql/lib/semmle/code/java/deadcode/TestEntryPoints.qll
@@ -78,13 +78,10 @@ class JUnitCategory extends WhitelistedLiveClass {
 /**
  * A listener that will be reflectively constructed by TestNG.
  */
-class TestNGReflectivelyConstructedListener extends ReflectivelyConstructedClass {
-  TestNGReflectivelyConstructedListener() {
-    // Consider any class that implements a TestNG listener interface to be live. Listeners can be
-    // specified on the command line, in `testng.xml` files and in Ant build files, so it is safest
-    // to assume that all such listeners are live.
-    this instanceof TestNGListenerImpl
-  }
+class TestNGReflectivelyConstructedListener extends ReflectivelyConstructedClass instanceof TestNGListenerImpl {
+  // Consider any class that implements a TestNG listener interface to be live. Listeners can be
+  // specified on the command line, in `testng.xml` files and in Ant build files, so it is safest
+  // to assume that all such listeners are live.
 }
 
 /**
@@ -99,9 +96,7 @@ class TestNGDataProvidersEntryPoint extends CallableEntryPoint {
 /**
  * A `@Factory` TestNG method or constructor which is live.
  */
-class TestNGFactoryEntryPoint extends CallableEntryPoint {
-  TestNGFactoryEntryPoint() { this instanceof TestNGFactoryCallable }
-}
+class TestNGFactoryEntryPoint extends CallableEntryPoint instanceof TestNGFactoryCallable { }
 
 class TestRefectivelyConstructedClass extends ReflectivelyConstructedClass {
   TestRefectivelyConstructedClass() {
@@ -159,6 +154,5 @@ class CucumberConstructedClass extends ReflectivelyConstructedClass {
 /**
  * A "step definition" that may be called by Cucumber when executing an acceptance test.
  */
-class CucumberStepDefinitionEntryPoint extends CallableEntryPoint {
-  CucumberStepDefinitionEntryPoint() { this instanceof CucumberStepDefinition }
+class CucumberStepDefinitionEntryPoint extends CallableEntryPoint instanceof CucumberStepDefinition {
 }
diff --git a/java/ql/lib/semmle/code/java/deadcode/WebEntryPoints.qll b/java/ql/lib/semmle/code/java/deadcode/WebEntryPoints.qll
index 5f2f215802f..d25b07d1999 100644
--- a/java/ql/lib/semmle/code/java/deadcode/WebEntryPoints.qll
+++ b/java/ql/lib/semmle/code/java/deadcode/WebEntryPoints.qll
@@ -7,17 +7,12 @@ import semmle.code.java.frameworks.Servlets
  * Any class which extends the `Servlet` interface is intended to be constructed reflectively by a
  * servlet container.
  */
-class ServletConstructedClass extends ReflectivelyConstructedClass {
+class ServletConstructedClass extends ReflectivelyConstructedClass instanceof ServletClass {
   ServletConstructedClass() {
-    this instanceof ServletClass and
     // If we have seen any `web.xml` files, this servlet will be considered to be live only if it is
     // referred to as a servlet-class in at least one. If no `web.xml` files are found, we assume
     // that XML extraction was not enabled, and therefore consider all `Servlet` classes as live.
-    (
-      isWebXmlIncluded()
-      implies
-      exists(WebServletClass servletClass | this = servletClass.getClass())
-    )
+    isWebXmlIncluded() implies exists(WebServletClass servletClass | this = servletClass.getClass())
   }
 }
 
@@ -112,6 +107,4 @@ class GwtUiBinderEntryPoint extends CallableEntryPoint {
 /**
  * Fields that may be reflectively read or written to by the UiBinder framework.
  */
-class GwtUiBinderReflectivelyReadField extends ReflectivelyReadField {
-  GwtUiBinderReflectivelyReadField() { this instanceof GwtUiField }
-}
+class GwtUiBinderReflectivelyReadField extends ReflectivelyReadField instanceof GwtUiField { }
diff --git a/java/ql/lib/semmle/code/java/frameworks/javaee/ejb/EJBRestrictions.qll b/java/ql/lib/semmle/code/java/frameworks/javaee/ejb/EJBRestrictions.qll
index 23e1518c916..c56571624e6 100644
--- a/java/ql/lib/semmle/code/java/frameworks/javaee/ejb/EJBRestrictions.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/javaee/ejb/EJBRestrictions.qll
@@ -75,14 +75,11 @@ class ForbiddenSecurityConfigurationCallable extends ForbiddenCallable {
 }
 
 /** A method or constructor involving serialization that may not be called by an EJB. */
-class ForbiddenSerializationCallable extends ForbiddenCallable {
-  ForbiddenSerializationCallable() { this instanceof ForbiddenSerializationMethod }
+class ForbiddenSerializationCallable extends ForbiddenCallable instanceof ForbiddenSerializationMethod {
 }
 
 /** A method or constructor involving network factory operations that may not be called by an EJB. */
-class ForbiddenSetFactoryCallable extends ForbiddenCallable {
-  ForbiddenSetFactoryCallable() { this instanceof ForbiddenSetFactoryMethod }
-}
+class ForbiddenSetFactoryCallable extends ForbiddenCallable instanceof ForbiddenSetFactoryMethod { }
 
 /** A method or constructor involving server socket operations that may not be called by an EJB. */
 class ForbiddenServerSocketCallable extends ForbiddenCallable {
diff --git a/java/ql/lib/semmle/code/java/frameworks/spring/SpringProfile.qll b/java/ql/lib/semmle/code/java/frameworks/spring/SpringProfile.qll
index 7f284b0771f..48a2b367990 100644
--- a/java/ql/lib/semmle/code/java/frameworks/spring/SpringProfile.qll
+++ b/java/ql/lib/semmle/code/java/frameworks/spring/SpringProfile.qll
@@ -73,9 +73,8 @@ abstract class AlwaysEnabledSpringProfile extends string {
  *
  * Includes all `SpringProfile`s that are not specified as always enabled or never enabled.
  */
-class SometimesEnabledSpringProfile extends string {
+class SometimesEnabledSpringProfile extends string instanceof SpringProfile {
   SometimesEnabledSpringProfile() {
-    this instanceof SpringProfile and
     not (
       this instanceof AlwaysEnabledSpringProfile or
       this instanceof NeverEnabledSpringProfile
diff --git a/java/ql/lib/semmle/code/java/security/Encryption.qll b/java/ql/lib/semmle/code/java/security/Encryption.qll
index 042018d3e34..3a91ad342dd 100644
--- a/java/ql/lib/semmle/code/java/security/Encryption.qll
+++ b/java/ql/lib/semmle/code/java/security/Encryption.qll
@@ -290,9 +290,7 @@ string getSecureAlgorithmRegex() {
  * algorithm. For example, methods returning ciphers, decryption methods,
  * constructors of cipher classes, etc.
  */
-abstract class CryptoAlgoSpec extends Top {
-  CryptoAlgoSpec() { this instanceof Call }
-
+abstract class CryptoAlgoSpec extends Top instanceof Call {
   abstract Expr getAlgoSpec();
 }
 
diff --git a/java/ql/lib/semmle/code/java/security/ResponseSplitting.qll b/java/ql/lib/semmle/code/java/security/ResponseSplitting.qll
index e99b8d363ff..916b6df4372 100644
--- a/java/ql/lib/semmle/code/java/security/ResponseSplitting.qll
+++ b/java/ql/lib/semmle/code/java/security/ResponseSplitting.qll
@@ -15,9 +15,7 @@ private class DefaultHeaderSplittingSink extends HeaderSplittingSink {
 }
 
 /** A source that introduces data considered safe to use by a header splitting source. */
-abstract class SafeHeaderSplittingSource extends DataFlow::Node {
-  SafeHeaderSplittingSource() { this instanceof RemoteFlowSource }
-}
+abstract class SafeHeaderSplittingSource extends DataFlow::Node instanceof RemoteFlowSource { }
 
 /** A default source that introduces data considered safe to use by a header splitting source. */
 private class DefaultSafeHeaderSplittingSource extends SafeHeaderSplittingSource {
diff --git a/java/ql/src/AlertSuppression.ql b/java/ql/src/AlertSuppression.ql
index 3fbecf8cfc1..d37bd174692 100644
--- a/java/ql/src/AlertSuppression.ql
+++ b/java/ql/src/AlertSuppression.ql
@@ -53,9 +53,7 @@ class SuppressionComment extends Javadoc {
 /**
  * The scope of an alert suppression comment.
  */
-class SuppressionScope extends @javadoc {
-  SuppressionScope() { this instanceof SuppressionComment }
-
+class SuppressionScope extends @javadoc instanceof SuppressionComment {
   /** Gets a suppression comment with this scope. */
   SuppressionComment getSuppressionComment() { result = this }
 
@@ -69,7 +67,7 @@ class SuppressionScope extends @javadoc {
   predicate hasLocationInfo(
     string filepath, int startline, int startcolumn, int endline, int endcolumn
   ) {
-    this.(SuppressionComment).covers(filepath, startline, startcolumn, endline, endcolumn)
+    super.covers(filepath, startline, startcolumn, endline, endcolumn)
   }
 
   /** Gets a textual representation of this element. */
diff --git a/java/ql/src/AlertSuppressionAnnotations.ql b/java/ql/src/AlertSuppressionAnnotations.ql
index 7f0ee74a0d8..91cb65934cd 100644
--- a/java/ql/src/AlertSuppressionAnnotations.ql
+++ b/java/ql/src/AlertSuppressionAnnotations.ql
@@ -69,9 +69,7 @@ class SuppressionAnnotation extends SuppressWarningsAnnotation {
 /**
  * The scope of an alert suppression annotation.
  */
-class SuppressionScope extends @annotation {
-  SuppressionScope() { this instanceof SuppressionAnnotation }
-
+class SuppressionScope extends @annotation instanceof SuppressionAnnotation {
   /** Gets a suppression annotation with this scope. */
   SuppressionAnnotation getSuppressionAnnotation() { result = this }
 
@@ -85,7 +83,7 @@ class SuppressionScope extends @annotation {
   predicate hasLocationInfo(
     string filepath, int startline, int startcolumn, int endline, int endcolumn
   ) {
-    this.(SuppressionAnnotation).covers(filepath, startline, startcolumn, endline, endcolumn)
+    super.covers(filepath, startline, startcolumn, endline, endcolumn)
   }
 
   /** Gets a textual representation of this element. */
diff --git a/java/ql/src/Security/CWE/CWE-190/ComparisonWithWiderType.ql b/java/ql/src/Security/CWE/CWE-190/ComparisonWithWiderType.ql
index 259f36fb42b..bce8d934ac6 100644
--- a/java/ql/src/Security/CWE/CWE-190/ComparisonWithWiderType.ql
+++ b/java/ql/src/Security/CWE/CWE-190/ComparisonWithWiderType.ql
@@ -20,9 +20,7 @@ int leftWidth(ComparisonExpr e) { result = e.getLeftOperand().getType().(NumType
 
 int rightWidth(ComparisonExpr e) { result = e.getRightOperand().getType().(NumType).getWidthRank() }
 
-abstract class WideningComparison extends BinaryExpr {
-  WideningComparison() { this instanceof ComparisonExpr }
-
+abstract class WideningComparison extends BinaryExpr instanceof ComparisonExpr {
   abstract Expr getNarrower();
 
   abstract Expr getWider();
diff --git a/java/ql/src/experimental/Security/CWE/CWE-348/ClientSuppliedIpUsedInSecurityCheckLib.qll b/java/ql/src/experimental/Security/CWE/CWE-348/ClientSuppliedIpUsedInSecurityCheckLib.qll
index 5e4df693a00..39d27be133b 100644
--- a/java/ql/src/experimental/Security/CWE/CWE-348/ClientSuppliedIpUsedInSecurityCheckLib.qll
+++ b/java/ql/src/experimental/Security/CWE/CWE-348/ClientSuppliedIpUsedInSecurityCheckLib.qll
@@ -81,8 +81,7 @@ private class CompareSink extends ClientSuppliedIpUsedInSecurityCheckSink {
 }
 
 /** A data flow sink for sql operation. */
-private class SqlOperationSink extends ClientSuppliedIpUsedInSecurityCheckSink {
-  SqlOperationSink() { this instanceof QueryInjectionSink }
+private class SqlOperationSink extends ClientSuppliedIpUsedInSecurityCheckSink instanceof QueryInjectionSink {
 }
 
 /** A method that split string. */
diff --git a/java/ql/src/utils/stub-generator/Stubs.qll b/java/ql/src/utils/stub-generator/Stubs.qll
index 91e7835f4ba..3aca6efa6d6 100644
--- a/java/ql/src/utils/stub-generator/Stubs.qll
+++ b/java/ql/src/utils/stub-generator/Stubs.qll
@@ -499,11 +499,8 @@ private RefType getAReferencedType(RefType t) {
 }
 
 /** A top level type whose file should be stubbed */
-class GeneratedTopLevel extends TopLevelType {
-  GeneratedTopLevel() {
-    this = this.getSourceDeclaration() and
-    this instanceof GeneratedType
-  }
+class GeneratedTopLevel extends TopLevelType instanceof GeneratedType {
+  GeneratedTopLevel() { this = this.getSourceDeclaration() }
 
   private TopLevelType getAnImportedType() {
     result = getAReferencedType(this).getSourceDeclaration()
@@ -536,8 +533,6 @@ class GeneratedTopLevel extends TopLevelType {
 
   /** Creates a full stub for the file containing this type. */
   string stubFile() {
-    result =
-      this.stubComment() + this.stubPackage() + this.stubImports() + this.(GeneratedType).getStub() +
-        "\n"
+    result = this.stubComment() + this.stubPackage() + this.stubImports() + super.getStub() + "\n"
   }
 }
diff --git a/java/ql/test/library-tests/dataflow/taintsources/local.ql b/java/ql/test/library-tests/dataflow/taintsources/local.ql
index 61faff7a992..62ad797be67 100644
--- a/java/ql/test/library-tests/dataflow/taintsources/local.ql
+++ b/java/ql/test/library-tests/dataflow/taintsources/local.ql
@@ -2,11 +2,8 @@ import java
 import semmle.code.java.dataflow.FlowSources
 import TestUtilities.InlineExpectationsTest
 
-class LocalSource extends DataFlow::Node {
-  LocalSource() {
-    this instanceof UserInput and
-    not this instanceof RemoteFlowSource
-  }
+class LocalSource extends DataFlow::Node instanceof UserInput {
+  LocalSource() { not this instanceof RemoteFlowSource }
 }
 
 predicate isTestSink(DataFlow::Node n) {

From 343b7b1c8bea333c9f0ef24787c85e4777ce21a8 Mon Sep 17 00:00:00 2001
From: "github-actions[bot]" <github-actions@github.com>
Date: Sun, 11 Dec 2022 18:15:04 +0000
Subject: [PATCH 1284/1420] Post-release preparation for codeql-cli-2.11.6

---
 cpp/ql/lib/qlpack.yml                         | 2 +-
 cpp/ql/src/qlpack.yml                         | 2 +-
 csharp/ql/campaigns/Solorigate/lib/qlpack.yml | 2 +-
 csharp/ql/campaigns/Solorigate/src/qlpack.yml | 2 +-
 csharp/ql/lib/qlpack.yml                      | 2 +-
 csharp/ql/src/qlpack.yml                      | 2 +-
 go/ql/lib/qlpack.yml                          | 2 +-
 go/ql/src/qlpack.yml                          | 2 +-
 java/ql/lib/qlpack.yml                        | 2 +-
 java/ql/src/qlpack.yml                        | 2 +-
 javascript/ql/lib/qlpack.yml                  | 2 +-
 javascript/ql/src/qlpack.yml                  | 2 +-
 misc/suite-helpers/qlpack.yml                 | 2 +-
 python/ql/lib/qlpack.yml                      | 2 +-
 python/ql/src/qlpack.yml                      | 2 +-
 ruby/ql/lib/qlpack.yml                        | 2 +-
 ruby/ql/src/qlpack.yml                        | 2 +-
 shared/regex/qlpack.yml                       | 2 +-
 shared/ssa/qlpack.yml                         | 2 +-
 shared/typos/qlpack.yml                       | 2 +-
 20 files changed, 20 insertions(+), 20 deletions(-)

diff --git a/cpp/ql/lib/qlpack.yml b/cpp/ql/lib/qlpack.yml
index 80867fab833..b5c7ec3bd7a 100644
--- a/cpp/ql/lib/qlpack.yml
+++ b/cpp/ql/lib/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/cpp-all
-version: 0.4.6
+version: 0.4.7-dev
 groups: cpp
 dbscheme: semmlecode.cpp.dbscheme
 extractor: cpp
diff --git a/cpp/ql/src/qlpack.yml b/cpp/ql/src/qlpack.yml
index 4cc022a1590..603410f7946 100644
--- a/cpp/ql/src/qlpack.yml
+++ b/cpp/ql/src/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/cpp-queries
-version: 0.4.6
+version: 0.4.7-dev
 groups: 
   - cpp
   - queries
diff --git a/csharp/ql/campaigns/Solorigate/lib/qlpack.yml b/csharp/ql/campaigns/Solorigate/lib/qlpack.yml
index 119ce73e54f..e02e0a23130 100644
--- a/csharp/ql/campaigns/Solorigate/lib/qlpack.yml
+++ b/csharp/ql/campaigns/Solorigate/lib/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/csharp-solorigate-all
-version: 1.3.6
+version: 1.3.7-dev
 groups:
     - csharp
     - solorigate
diff --git a/csharp/ql/campaigns/Solorigate/src/qlpack.yml b/csharp/ql/campaigns/Solorigate/src/qlpack.yml
index cf800993043..06e38173f20 100644
--- a/csharp/ql/campaigns/Solorigate/src/qlpack.yml
+++ b/csharp/ql/campaigns/Solorigate/src/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/csharp-solorigate-queries
-version: 1.3.6
+version: 1.3.7-dev
 groups:
     - csharp
     - solorigate
diff --git a/csharp/ql/lib/qlpack.yml b/csharp/ql/lib/qlpack.yml
index 20d1d7d6b74..9ef9fd5b611 100644
--- a/csharp/ql/lib/qlpack.yml
+++ b/csharp/ql/lib/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/csharp-all
-version: 0.4.6
+version: 0.4.7-dev
 groups: csharp
 dbscheme: semmlecode.csharp.dbscheme
 extractor: csharp
diff --git a/csharp/ql/src/qlpack.yml b/csharp/ql/src/qlpack.yml
index 35c8c90ebb4..875aa77fff2 100644
--- a/csharp/ql/src/qlpack.yml
+++ b/csharp/ql/src/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/csharp-queries
-version: 0.4.6
+version: 0.4.7-dev
 groups: 
   - csharp
   - queries
diff --git a/go/ql/lib/qlpack.yml b/go/ql/lib/qlpack.yml
index 6ec12d0956d..0e39e54998a 100644
--- a/go/ql/lib/qlpack.yml
+++ b/go/ql/lib/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/go-all
-version: 0.3.6
+version: 0.3.7-dev
 groups: go
 dbscheme: go.dbscheme
 extractor: go
diff --git a/go/ql/src/qlpack.yml b/go/ql/src/qlpack.yml
index c8e34582560..4427152eef6 100644
--- a/go/ql/src/qlpack.yml
+++ b/go/ql/src/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/go-queries
-version: 0.3.6
+version: 0.3.7-dev
 groups:
   - go
   - queries
diff --git a/java/ql/lib/qlpack.yml b/java/ql/lib/qlpack.yml
index b4fa6097149..8bd73a555c8 100644
--- a/java/ql/lib/qlpack.yml
+++ b/java/ql/lib/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/java-all
-version: 0.4.6
+version: 0.4.7-dev
 groups: java
 dbscheme: config/semmlecode.dbscheme
 extractor: java
diff --git a/java/ql/src/qlpack.yml b/java/ql/src/qlpack.yml
index b8abfe36e16..032ff0b0d16 100644
--- a/java/ql/src/qlpack.yml
+++ b/java/ql/src/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/java-queries
-version: 0.4.6
+version: 0.4.7-dev
 groups: 
   - java
   - queries
diff --git a/javascript/ql/lib/qlpack.yml b/javascript/ql/lib/qlpack.yml
index 4bbe50ae2ea..a3afa629da8 100644
--- a/javascript/ql/lib/qlpack.yml
+++ b/javascript/ql/lib/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/javascript-all
-version: 0.3.6
+version: 0.3.7-dev
 groups: javascript
 dbscheme: semmlecode.javascript.dbscheme
 extractor: javascript
diff --git a/javascript/ql/src/qlpack.yml b/javascript/ql/src/qlpack.yml
index 85dbe345a4a..25854a00154 100644
--- a/javascript/ql/src/qlpack.yml
+++ b/javascript/ql/src/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/javascript-queries
-version: 0.4.6
+version: 0.4.7-dev
 groups: 
   - javascript
   - queries
diff --git a/misc/suite-helpers/qlpack.yml b/misc/suite-helpers/qlpack.yml
index ff25ba041c8..68b88ed9a9e 100644
--- a/misc/suite-helpers/qlpack.yml
+++ b/misc/suite-helpers/qlpack.yml
@@ -1,3 +1,3 @@
 name: codeql/suite-helpers
-version: 0.3.6
+version: 0.3.7-dev
 groups: shared
diff --git a/python/ql/lib/qlpack.yml b/python/ql/lib/qlpack.yml
index 3d999d1eeb6..b96adba40f0 100644
--- a/python/ql/lib/qlpack.yml
+++ b/python/ql/lib/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/python-all
-version: 0.6.6
+version: 0.6.7-dev
 groups: python
 dbscheme: semmlecode.python.dbscheme
 extractor: python
diff --git a/python/ql/src/qlpack.yml b/python/ql/src/qlpack.yml
index 9db8396f395..cb7193ce215 100644
--- a/python/ql/src/qlpack.yml
+++ b/python/ql/src/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/python-queries
-version: 0.5.6
+version: 0.5.7-dev
 groups: 
   - python
   - queries
diff --git a/ruby/ql/lib/qlpack.yml b/ruby/ql/lib/qlpack.yml
index 64951c49556..449b7e28aec 100644
--- a/ruby/ql/lib/qlpack.yml
+++ b/ruby/ql/lib/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/ruby-all
-version: 0.4.6
+version: 0.4.7-dev
 groups: ruby
 extractor: ruby
 dbscheme: ruby.dbscheme
diff --git a/ruby/ql/src/qlpack.yml b/ruby/ql/src/qlpack.yml
index df7aa757652..4ab00a5bd38 100644
--- a/ruby/ql/src/qlpack.yml
+++ b/ruby/ql/src/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/ruby-queries
-version: 0.4.6
+version: 0.4.7-dev
 groups: 
   - ruby
   - queries
diff --git a/shared/regex/qlpack.yml b/shared/regex/qlpack.yml
index a03b79a0778..6ce99fb48b6 100644
--- a/shared/regex/qlpack.yml
+++ b/shared/regex/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/regex
-version: 0.0.3
+version: 0.0.4-dev
 groups: shared
 library: true
 dependencies:
diff --git a/shared/ssa/qlpack.yml b/shared/ssa/qlpack.yml
index 0d4719584ce..6abc7e0643b 100644
--- a/shared/ssa/qlpack.yml
+++ b/shared/ssa/qlpack.yml
@@ -1,4 +1,4 @@
 name: codeql/ssa
-version: 0.0.7
+version: 0.0.8-dev
 groups: shared
 library: true
diff --git a/shared/typos/qlpack.yml b/shared/typos/qlpack.yml
index 4ce79250a0d..ac9084e7c06 100644
--- a/shared/typos/qlpack.yml
+++ b/shared/typos/qlpack.yml
@@ -1,4 +1,4 @@
 name: codeql/typos
-version: 0.0.7
+version: 0.0.8-dev
 groups: shared
 library: true

From 367aa35d8c9cd334910a73dba3ea1b4767f3cc06 Mon Sep 17 00:00:00 2001
From: Tom Hvitved <hvitved@github.com>
Date: Sun, 11 Dec 2022 20:34:58 +0100
Subject: [PATCH 1285/1420] Ruby: Avoid `SummarizedCallable::propagatesFlowExt`
 being recursive

---
 .../lib/codeql/ruby/frameworks/core/Array.qll | 21 +++++++++----------
 1 file changed, 10 insertions(+), 11 deletions(-)

diff --git a/ruby/ql/lib/codeql/ruby/frameworks/core/Array.qll b/ruby/ql/lib/codeql/ruby/frameworks/core/Array.qll
index 12b96e579e5..b2fbf7870ce 100644
--- a/ruby/ql/lib/codeql/ruby/frameworks/core/Array.qll
+++ b/ruby/ql/lib/codeql/ruby/frameworks/core/Array.qll
@@ -140,10 +140,9 @@ module Array {
     }
   }
 
-  private class SetDifferenceSummary extends SummarizedCallable {
-    SetDifferenceSummary() { this = "-" }
-
-    override SubExpr getACallSimple() { any() }
+  abstract private class DifferenceSummaryShared extends SummarizedCallable {
+    bindingset[this]
+    DifferenceSummaryShared() { any() }
 
     override predicate propagatesFlowExt(string input, string output, boolean preservesValue) {
       input = "Argument[self].Element[any]" and
@@ -152,6 +151,12 @@ module Array {
     }
   }
 
+  private class SetDifferenceSummary extends DifferenceSummaryShared {
+    SetDifferenceSummary() { this = "-" }
+
+    override SubExpr getACallSimple() { any() }
+  }
+
   /** Flow summary for `Array#<<`. For `Array#append`, see `PushSummary`. */
   private class AppendOperatorSummary extends SummarizedCallable {
     AppendOperatorSummary() { this = "<<" }
@@ -687,14 +692,8 @@ module Array {
     }
   }
 
-  private class DifferenceSummary extends SimpleSummarizedCallable {
+  private class DifferenceSummary extends DifferenceSummaryShared, SimpleSummarizedCallable {
     DifferenceSummary() { this = "difference" }
-
-    override predicate propagatesFlowExt(string input, string output, boolean preservesValue) {
-      // `Array#difference` and `Array#-` do not behave exactly the same way,
-      // but we model their flow the same way.
-      any(SetDifferenceSummary s).propagatesFlowExt(input, output, preservesValue)
-    }
   }
 
   private string getDigArg(MethodCall dig, int i) {

From 58549087e05776d7b9907014f42e651ca673bc88 Mon Sep 17 00:00:00 2001
From: Tom Hvitved <hvitved@github.com>
Date: Sun, 11 Dec 2022 20:35:32 +0100
Subject: [PATCH 1286/1420] Ruby: Ensure `Node::{toString,getLocation}` are
 computed in data flow stage

---
 .../lib/codeql/ruby/dataflow/internal/DataFlowPrivate.qll   | 6 ++++++
 .../ql/lib/codeql/ruby/dataflow/internal/DataFlowPublic.qll | 6 ++----
 2 files changed, 8 insertions(+), 4 deletions(-)

diff --git a/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowPrivate.qll b/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowPrivate.qll
index b3b79903625..402924b5b39 100644
--- a/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowPrivate.qll
+++ b/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowPrivate.qll
@@ -340,6 +340,12 @@ private module Cached {
     p.(KeywordParameter).getDefaultValue() = e.getExprNode().getExpr()
   }
 
+  cached
+  Location getLocation(NodeImpl n) { result = n.getLocationImpl() }
+
+  cached
+  string toString(NodeImpl n) { result = n.toStringImpl() }
+
   /**
    * This is the local flow predicate that is used as a building block in global
    * data flow.
diff --git a/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowPublic.qll b/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowPublic.qll
index ca79e8fb30b..53a576f18b3 100644
--- a/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowPublic.qll
+++ b/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowPublic.qll
@@ -19,12 +19,10 @@ class Node extends TNode {
   Parameter asParameter() { result = this.(ParameterNode).getParameter() }
 
   /** Gets a textual representation of this node. */
-  cached
-  final string toString() { result = this.(NodeImpl).toStringImpl() }
+  final string toString() { result = toString(this) }
 
   /** Gets the location of this node. */
-  cached
-  final Location getLocation() { result = this.(NodeImpl).getLocationImpl() }
+  final Location getLocation() { result = getLocation(this) }
 
   /**
    * Holds if this element is at the specified location.

From 1410d2838e0cd3e2ba3c75b832dc2762eeafcd74 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Alvaro=20Mu=C3=B1oz?= <pwntester@github.com>
Date: Mon, 12 Dec 2022 09:54:02 +0100
Subject: [PATCH 1287/1420] Update
 javascript/ql/lib/semmle/javascript/frameworks/Spife.qll

Co-authored-by: Erik Krogh Kristensen <erik-krogh@github.com>
---
 javascript/ql/lib/semmle/javascript/frameworks/Spife.qll | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/javascript/ql/lib/semmle/javascript/frameworks/Spife.qll b/javascript/ql/lib/semmle/javascript/frameworks/Spife.qll
index 9531b03d6d1..71372d086d4 100644
--- a/javascript/ql/lib/semmle/javascript/frameworks/Spife.qll
+++ b/javascript/ql/lib/semmle/javascript/frameworks/Spife.qll
@@ -25,7 +25,7 @@ module Spife {
     private string getRoutePattern() {
       // Concatenate the constant parts of the expression
       result =
-        concat(Expr e, int i |
+        strictconcat(Expr e, int i |
           e = template.getTemplate().getElement(i) and exists(e.getStringValue())
         |
           e.getStringValue() order by i

From 469d7f52dca7efa68e494e38ee00c4af2ab4a376 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Alvaro=20Mu=C3=B1oz?= <pwntester@github.com>
Date: Mon, 12 Dec 2022 10:46:50 +0100
Subject: [PATCH 1288/1420] Use fluent API instead of hasPropertyWrite

---
 javascript/ql/lib/semmle/javascript/frameworks/Restify.qll | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/javascript/ql/lib/semmle/javascript/frameworks/Restify.qll b/javascript/ql/lib/semmle/javascript/frameworks/Restify.qll
index a6da26f8b0b..d7dcd7bfed7 100644
--- a/javascript/ql/lib/semmle/javascript/frameworks/Restify.qll
+++ b/javascript/ql/lib/semmle/javascript/frameworks/Restify.qll
@@ -265,7 +265,7 @@ module Restify {
     /**
      * Gets the formatter handler installed by this setup.
      */
-    DataFlow::FunctionNode getAFormatterHandler() { formatters.hasPropertyWrite(_, result) }
+    DataFlow::FunctionNode getAFormatterHandler() { result = formatters.getAPropertyWrite().getRhs().getALocalSource() }
   }
 
   /**

From 204a1d3d06af95bee4fcca64ef21d63c7d5720f3 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Jaroslav=20Loba=C4=8Devski?= <jarlob@gmail.com>
Date: Wed, 1 Jun 2022 23:42:25 +0300
Subject: [PATCH 1289/1420] C#: Add source TCP/UDP source models and
 StreamReader summary models.

---
 csharp/ql/lib/ext/System.IO.model.yml              | 14 +++++++++++++-
 csharp/ql/lib/ext/System.Net.model.yml             |  8 ++++++++
 .../csharp/frameworks/system/io/StreamReader.qll   |  9 +++++++++
 .../security/dataflow/flowsources/Remote.qll       |  7 +++++++
 4 files changed, 37 insertions(+), 1 deletion(-)
 create mode 100644 csharp/ql/lib/semmle/code/csharp/frameworks/system/io/StreamReader.qll

diff --git a/csharp/ql/lib/ext/System.IO.model.yml b/csharp/ql/lib/ext/System.IO.model.yml
index 66513ce96c6..b1393b84dad 100644
--- a/csharp/ql/lib/ext/System.IO.model.yml
+++ b/csharp/ql/lib/ext/System.IO.model.yml
@@ -57,7 +57,19 @@ extensions:
       - ["System.IO", "Stream", True, "Write", "(System.Byte[],System.Int32,System.Int32)", "", "Argument[0].Element", "Argument[this]", "taint", "manual"]
       - ["System.IO", "Stream", False, "WriteAsync", "(System.Byte[],System.Int32,System.Int32)", "", "Argument[0].Element", "Argument[this]", "taint", "manual"]
       - ["System.IO", "Stream", True, "WriteAsync", "(System.Byte[],System.Int32,System.Int32,System.Threading.CancellationToken)", "", "Argument[0].Element", "Argument[this]", "taint", "manual"]
-      - ["System.IO", "StreamReader", False, "StreamReader", "", "", "Argument[0]", "Argument[this]", "taint", "manual"]
+      - ["System.IO", "StreamReader", False, "StreamReader", "",                                                                                "", "Argument[0]", "Argument[this]", "taint", "manual"]
+      - ["System.IO", "StreamReader", False, "StreamReader", "(System.IO.Stream)",                                                              "", "Argument[0]", "Argument[this]", "taint", "manual"]
+      - ["System.IO", "StreamReader", False, "StreamReader", "(System.String,System.Text.Encoding,System.Boolean,System.IO.FileStreamOptions)", "", "Argument[0]", "Argument[this]", "taint", "manual"]
+      - ["System.IO", "StreamReader", False, "StreamReader", "(System.String,System.Text.Encoding,System.Boolean,System.Int32)",                "", "Argument[0]", "Argument[this]", "taint", "manual"]
+      - ["System.IO", "StreamReader", False, "StreamReader", "(System.IO.Stream,System.Text.Encoding,System.Boolean,System.Int32)",             "", "Argument[0]", "Argument[this]", "taint", "manual"]
+      - ["System.IO", "StreamReader", False, "StreamReader", "(System.IO.Stream,System.Text.Encoding,System.Boolean)",                          "", "Argument[0]", "Argument[this]", "taint", "manual"]
+      - ["System.IO", "StreamReader", False, "StreamReader", "(System.String,System.Text.Encoding,System.Boolean)",                             "", "Argument[0]", "Argument[this]", "taint", "manual"]
+      - ["System.IO", "StreamReader", False, "StreamReader", "(System.String,System.IO.FileStreamOptions)",                                     "", "Argument[0]", "Argument[this]", "taint", "manual"]
+      - ["System.IO", "StreamReader", False, "StreamReader", "(System.String,System.Boolean)",                                                  "", "Argument[0]", "Argument[this]", "taint", "manual"]
+      - ["System.IO", "StreamReader", False, "StreamReader", "(System.IO.Stream,System.Text.Encoding)",                                         "", "Argument[0]", "Argument[this]", "taint", "manual"]
+      - ["System.IO", "StreamReader", False, "StreamReader", "(System.IO.Stream,System.Boolean)",                                               "", "Argument[0]", "Argument[this]", "taint", "manual"]
+      - ["System.IO", "StreamReader", False, "StreamReader", "(System.String)",                                                                 "", "Argument[0]", "Argument[this]", "taint", "manual"]
+      - ["System.IO", "StreamReader", False, "StreamReader", "(System.String,System.Text.Encoding)",                                            "", "Argument[0]", "Argument[this]", "taint", "manual"]
       - ["System.IO", "StringReader", False, "StringReader", "(System.String)", "", "Argument[0]", "Argument[this]", "taint", "manual"]
       - ["System.IO", "TextReader", True, "Read", "()", "", "Argument[this]", "ReturnValue", "taint", "manual"]
       - ["System.IO", "TextReader", True, "Read", "(System.Char[],System.Int32,System.Int32)", "", "Argument[this]", "ReturnValue", "taint", "manual"]
diff --git a/csharp/ql/lib/ext/System.Net.model.yml b/csharp/ql/lib/ext/System.Net.model.yml
index 436391dda39..f59feb7c3cd 100644
--- a/csharp/ql/lib/ext/System.Net.model.yml
+++ b/csharp/ql/lib/ext/System.Net.model.yml
@@ -1,4 +1,12 @@
 extensions:
+  - addsTo:
+      pack: codeql/csharp-all
+      extensible: extSourceModel
+    data:
+      - ["System.Net.Sockets", "TcpClient", False, "GetStream",    "", "", "ReturnValue", "remote", "manual"]
+      - ["System.Net.Sockets", "UpdClient", False, "EndReceive",   "", "", "ReturnValue", "remote", "manual"]
+      - ["System.Net.Sockets", "UpdClient", False, "Receive",      "", "", "ReturnValue", "remote", "manual"]
+      - ["System.Net.Sockets", "UpdClient", False, "ReceiveAsync", "", "", "ReturnValue", "remote", "manual"]
   - addsTo:
       pack: codeql/csharp-all
       extensible: extSummaryModel
diff --git a/csharp/ql/lib/semmle/code/csharp/frameworks/system/io/StreamReader.qll b/csharp/ql/lib/semmle/code/csharp/frameworks/system/io/StreamReader.qll
new file mode 100644
index 00000000000..9bede5a2a8e
--- /dev/null
+++ b/csharp/ql/lib/semmle/code/csharp/frameworks/system/io/StreamReader.qll
@@ -0,0 +1,9 @@
+/** Provides definitions related to `System.IO.StreamReader`. */
+
+import csharp
+private import semmle.code.csharp.frameworks.system.IO
+
+/** The `System.IO.StreamReader` class. */
+class SystemIOStreamReader extends SystemIOClass {
+  SystemIOStreamReader() { this.hasName("StreamReader") }
+}
diff --git a/csharp/ql/lib/semmle/code/csharp/security/dataflow/flowsources/Remote.qll b/csharp/ql/lib/semmle/code/csharp/security/dataflow/flowsources/Remote.qll
index a71edbc0681..6243074cf17 100644
--- a/csharp/ql/lib/semmle/code/csharp/security/dataflow/flowsources/Remote.qll
+++ b/csharp/ql/lib/semmle/code/csharp/security/dataflow/flowsources/Remote.qll
@@ -12,6 +12,7 @@ private import semmle.code.csharp.frameworks.system.web.ui.WebControls
 private import semmle.code.csharp.frameworks.WCF
 private import semmle.code.csharp.frameworks.microsoft.Owin
 private import semmle.code.csharp.frameworks.microsoft.AspNetCore
+private import semmle.code.csharp.dataflow.ExternalFlow
 
 /** A data flow source of remote user input. */
 abstract class RemoteFlowSource extends DataFlow::Node {
@@ -261,3 +262,9 @@ class AspNetCoreActionMethodParameter extends AspNetCoreRemoteFlowSource, DataFl
 
   override string getSourceType() { result = "ASP.NET Core MVC action method parameter" }
 }
+
+private class ExternalRemoteFlowSource extends RemoteFlowSource {
+  ExternalRemoteFlowSource() { sourceNode(this, "remote") }
+
+  override string getSourceType() { result = "external" }
+}

From 340fd8ae4e6f7a4e98c344c515cdd25159d60284 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Jaroslav=20Loba=C4=8Devski?= <jarlob@github.com>
Date: Wed, 24 Aug 2022 11:57:09 +0200
Subject: [PATCH 1290/1420] C#: Add change note.

---
 csharp/ql/lib/change-notes/2022-08-24-tcp-udp-sources.md | 4 ++++
 1 file changed, 4 insertions(+)
 create mode 100644 csharp/ql/lib/change-notes/2022-08-24-tcp-udp-sources.md

diff --git a/csharp/ql/lib/change-notes/2022-08-24-tcp-udp-sources.md b/csharp/ql/lib/change-notes/2022-08-24-tcp-udp-sources.md
new file mode 100644
index 00000000000..f25753c7af4
--- /dev/null
+++ b/csharp/ql/lib/change-notes/2022-08-24-tcp-udp-sources.md
@@ -0,0 +1,4 @@
+---
+category: minorAnalysis
+---
+* Added tcp/upd sockets as taint sources.

From 1d303e0470ecc31d88cf0301b60423330f0f1539 Mon Sep 17 00:00:00 2001
From: JarLob <jarlob@gmail.com>
Date: Wed, 2 Nov 2022 09:44:36 +0100
Subject: [PATCH 1291/1420] C#: Add `remote` type source kind in model
 validation.

---
 csharp/ql/lib/semmle/code/csharp/dataflow/ExternalFlow.qll | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/csharp/ql/lib/semmle/code/csharp/dataflow/ExternalFlow.qll b/csharp/ql/lib/semmle/code/csharp/dataflow/ExternalFlow.qll
index 2664c25280b..38517cc21da 100644
--- a/csharp/ql/lib/semmle/code/csharp/dataflow/ExternalFlow.qll
+++ b/csharp/ql/lib/semmle/code/csharp/dataflow/ExternalFlow.qll
@@ -338,7 +338,7 @@ module ModelValidation {
     )
     or
     exists(string kind | sourceModel(_, _, _, _, _, _, _, kind, _) |
-      not kind = ["local", "file"] and
+      not kind = ["local", "remote", "file"] and
       result = "Invalid kind \"" + kind + "\" in source model."
     )
   }

From 0fdf9a42f287b1f071c3aa9e79a97a138957abae Mon Sep 17 00:00:00 2001
From: Michael Nebel <michaelnebel@github.com>
Date: Mon, 12 Dec 2022 13:21:26 +0100
Subject: [PATCH 1292/1420] C#: Cleanup and make the last StreamReader model
 explicit on its input.

---
 csharp/ql/lib/ext/System.IO.model.yml         | 24 +++++++++----------
 .../frameworks/system/io/StreamReader.qll     |  9 -------
 2 files changed, 12 insertions(+), 21 deletions(-)
 delete mode 100644 csharp/ql/lib/semmle/code/csharp/frameworks/system/io/StreamReader.qll

diff --git a/csharp/ql/lib/ext/System.IO.model.yml b/csharp/ql/lib/ext/System.IO.model.yml
index b1393b84dad..c66cd6286b2 100644
--- a/csharp/ql/lib/ext/System.IO.model.yml
+++ b/csharp/ql/lib/ext/System.IO.model.yml
@@ -57,19 +57,19 @@ extensions:
       - ["System.IO", "Stream", True, "Write", "(System.Byte[],System.Int32,System.Int32)", "", "Argument[0].Element", "Argument[this]", "taint", "manual"]
       - ["System.IO", "Stream", False, "WriteAsync", "(System.Byte[],System.Int32,System.Int32)", "", "Argument[0].Element", "Argument[this]", "taint", "manual"]
       - ["System.IO", "Stream", True, "WriteAsync", "(System.Byte[],System.Int32,System.Int32,System.Threading.CancellationToken)", "", "Argument[0].Element", "Argument[this]", "taint", "manual"]
-      - ["System.IO", "StreamReader", False, "StreamReader", "",                                                                                "", "Argument[0]", "Argument[this]", "taint", "manual"]
-      - ["System.IO", "StreamReader", False, "StreamReader", "(System.IO.Stream)",                                                              "", "Argument[0]", "Argument[this]", "taint", "manual"]
+      - ["System.IO", "StreamReader", False, "StreamReader", "(System.IO.Stream)", "", "Argument[0]", "Argument[this]", "taint", "manual"]
       - ["System.IO", "StreamReader", False, "StreamReader", "(System.String,System.Text.Encoding,System.Boolean,System.IO.FileStreamOptions)", "", "Argument[0]", "Argument[this]", "taint", "manual"]
-      - ["System.IO", "StreamReader", False, "StreamReader", "(System.String,System.Text.Encoding,System.Boolean,System.Int32)",                "", "Argument[0]", "Argument[this]", "taint", "manual"]
-      - ["System.IO", "StreamReader", False, "StreamReader", "(System.IO.Stream,System.Text.Encoding,System.Boolean,System.Int32)",             "", "Argument[0]", "Argument[this]", "taint", "manual"]
-      - ["System.IO", "StreamReader", False, "StreamReader", "(System.IO.Stream,System.Text.Encoding,System.Boolean)",                          "", "Argument[0]", "Argument[this]", "taint", "manual"]
-      - ["System.IO", "StreamReader", False, "StreamReader", "(System.String,System.Text.Encoding,System.Boolean)",                             "", "Argument[0]", "Argument[this]", "taint", "manual"]
-      - ["System.IO", "StreamReader", False, "StreamReader", "(System.String,System.IO.FileStreamOptions)",                                     "", "Argument[0]", "Argument[this]", "taint", "manual"]
-      - ["System.IO", "StreamReader", False, "StreamReader", "(System.String,System.Boolean)",                                                  "", "Argument[0]", "Argument[this]", "taint", "manual"]
-      - ["System.IO", "StreamReader", False, "StreamReader", "(System.IO.Stream,System.Text.Encoding)",                                         "", "Argument[0]", "Argument[this]", "taint", "manual"]
-      - ["System.IO", "StreamReader", False, "StreamReader", "(System.IO.Stream,System.Boolean)",                                               "", "Argument[0]", "Argument[this]", "taint", "manual"]
-      - ["System.IO", "StreamReader", False, "StreamReader", "(System.String)",                                                                 "", "Argument[0]", "Argument[this]", "taint", "manual"]
-      - ["System.IO", "StreamReader", False, "StreamReader", "(System.String,System.Text.Encoding)",                                            "", "Argument[0]", "Argument[this]", "taint", "manual"]
+      - ["System.IO", "StreamReader", False, "StreamReader", "(System.String,System.Text.Encoding,System.Boolean,System.Int32)", "", "Argument[0]", "Argument[this]", "taint", "manual"]
+      - ["System.IO", "StreamReader", False, "StreamReader", "(System.IO.Stream,System.Text.Encoding,System.Boolean,System.Int32)", "", "Argument[0]", "Argument[this]", "taint", "manual"]
+      - ["System.IO", "StreamReader", False, "StreamReader", "(System.IO.Stream,System.Text.Encoding,System.Boolean,System.Int32,System.Boolean)", "", "Argument[0]", "Argument[this]", "taint", "manual"]
+      - ["System.IO", "StreamReader", False, "StreamReader", "(System.IO.Stream,System.Text.Encoding,System.Boolean)", "", "Argument[0]", "Argument[this]", "taint", "manual"]
+      - ["System.IO", "StreamReader", False, "StreamReader", "(System.String,System.Text.Encoding,System.Boolean)", "", "Argument[0]", "Argument[this]", "taint", "manual"]
+      - ["System.IO", "StreamReader", False, "StreamReader", "(System.String,System.IO.FileStreamOptions)", "", "Argument[0]", "Argument[this]", "taint", "manual"]
+      - ["System.IO", "StreamReader", False, "StreamReader", "(System.String,System.Boolean)", "", "Argument[0]", "Argument[this]", "taint", "manual"]
+      - ["System.IO", "StreamReader", False, "StreamReader", "(System.IO.Stream,System.Text.Encoding)", "", "Argument[0]", "Argument[this]", "taint", "manual"]
+      - ["System.IO", "StreamReader", False, "StreamReader", "(System.IO.Stream,System.Boolean)", "", "Argument[0]", "Argument[this]", "taint", "manual"]
+      - ["System.IO", "StreamReader", False, "StreamReader", "(System.String)", "", "Argument[0]", "Argument[this]", "taint", "manual"]
+      - ["System.IO", "StreamReader", False, "StreamReader", "(System.String,System.Text.Encoding)", "", "Argument[0]", "Argument[this]", "taint", "manual"]
       - ["System.IO", "StringReader", False, "StringReader", "(System.String)", "", "Argument[0]", "Argument[this]", "taint", "manual"]
       - ["System.IO", "TextReader", True, "Read", "()", "", "Argument[this]", "ReturnValue", "taint", "manual"]
       - ["System.IO", "TextReader", True, "Read", "(System.Char[],System.Int32,System.Int32)", "", "Argument[this]", "ReturnValue", "taint", "manual"]
diff --git a/csharp/ql/lib/semmle/code/csharp/frameworks/system/io/StreamReader.qll b/csharp/ql/lib/semmle/code/csharp/frameworks/system/io/StreamReader.qll
deleted file mode 100644
index 9bede5a2a8e..00000000000
--- a/csharp/ql/lib/semmle/code/csharp/frameworks/system/io/StreamReader.qll
+++ /dev/null
@@ -1,9 +0,0 @@
-/** Provides definitions related to `System.IO.StreamReader`. */
-
-import csharp
-private import semmle.code.csharp.frameworks.system.IO
-
-/** The `System.IO.StreamReader` class. */
-class SystemIOStreamReader extends SystemIOClass {
-  SystemIOStreamReader() { this.hasName("StreamReader") }
-}

From b3a9c1ca0658d60af12fcfb2c0a431b188ba3535 Mon Sep 17 00:00:00 2001
From: erik-krogh <erik-krogh@github.com>
Date: Mon, 12 Dec 2022 16:06:57 +0100
Subject: [PATCH 1293/1420] Py/JS/RB: Use instanceof in more places

---
 .../adaptivethreatmodeling/TaintedPathATM.qll |  4 +-
 .../ql/lib/semmle/javascript/Closure.qll      |  9 +-
 javascript/ql/lib/semmle/javascript/DOM.qll   | 14 ++-
 .../ql/lib/semmle/javascript/DefUse.qll       |  4 +-
 .../javascript/DefensiveProgramming.qll       | 13 +--
 .../lib/semmle/javascript/GeneratedCode.qll   |  3 +-
 .../ql/lib/semmle/javascript/Routing.qll      |  4 +-
 .../lib/semmle/javascript/dataflow/Nodes.qll  |  4 +-
 .../javascript/dataflow/TypeInference.qll     | 10 +--
 .../internal/PropertyTypeInference.qll        |  6 +-
 .../internal/VariableTypeInference.qll        | 29 ++----
 .../javascript/dependencies/Dependencies.qll  | 24 ++---
 .../frameworks/AngularJS/AngularJSCore.qll    | 50 ++++-------
 .../AngularJS/AngularJSExpressions.qll        | 12 +--
 .../AngularJS/ServiceDefinitions.qll          | 24 ++---
 .../javascript/frameworks/ClientRequests.qll  | 14 ++-
 .../semmle/javascript/frameworks/Electron.qll | 11 +--
 .../semmle/javascript/frameworks/Express.qll  | 12 +--
 .../javascript/frameworks/ExpressModules.qll  | 12 +--
 .../semmle/javascript/frameworks/Fastify.qll  | 14 +--
 .../lib/semmle/javascript/frameworks/HTTP.qll | 13 +--
 .../javascript/frameworks/Templating.qll      | 16 ++--
 .../heuristics/AdditionalRouteHandlers.qll    | 15 +---
 .../heuristics/AdditionalSources.qll          |  4 +-
 .../security/IncompleteBlacklistSanitizer.qll |  3 +-
 .../javascript/security/UselessUseOfCat.qll   | 13 +--
 .../CleartextStorageCustomizations.qll        |  4 +-
 .../ClientSideUrlRedirectCustomizations.qll   |  7 +-
 .../dataflow/CodeInjectionCustomizations.qll  |  4 +-
 .../CommandInjectionCustomizations.qll        |  7 +-
 .../ConditionalBypassCustomizations.qll       |  4 +-
 ...figurationForCredentialsCustomizations.qll |  7 +-
 ...ObjectResourceExhaustionCustomizations.qll |  8 +-
 ...entKindsComparisonBypassCustomizations.qll | 10 +--
 .../dataflow/DomBasedXssCustomizations.qll    |  4 +-
 .../dataflow/ExceptionXssCustomizations.qll   |  4 +-
 ...APIUsedWithUntrustedDataCustomizations.qll |  4 +-
 .../ExternalAPIUsedWithUntrustedDataQuery.qll |  4 +-
 ...dedDataInterpretedAsCodeCustomizations.qll |  4 +-
 .../dataflow/HttpToFileAccessSpecific.qll     |  4 +-
 ...ImproperCodeSanitizationCustomizations.qll |  8 +-
 ...IndirectCommandInjectionCustomizations.qll |  3 +-
 .../InsecureRandomnessCustomizations.qll      |  8 +-
 .../security/dataflow/LogInjectionQuery.qll   | 10 +--
 .../LoopBoundInjectionCustomizations.qll      |  4 +-
 .../security/dataflow/MissingRateLimiting.qll | 19 ++--
 .../dataflow/NosqlInjectionCustomizations.qll |  4 +-
 .../PostMessageStarCustomizations.qll         |  4 +-
 ...otypePollutingAssignmentCustomizations.qll |  4 +-
 .../PrototypePollutionCustomizations.qll      |  8 +-
 .../RegExpInjectionCustomizations.qll         |  7 +-
 .../RemotePropertyInjectionCustomizations.qll |  4 +-
 ...InjectionFromEnvironmentCustomizations.qll |  4 +-
 .../dataflow/SqlInjectionCustomizations.qll   |  8 +-
 .../dataflow/StoredXssCustomizations.qll      |  7 +-
 .../dataflow/TaintedPathCustomizations.qll    | 13 +--
 .../TemplateObjectInjectionCustomizations.qll |  8 +-
 .../UnsafeDeserializationCustomizations.qll   |  4 +-
 ...nsafeDynamicMethodAccessCustomizations.qll |  4 +-
 .../UnsafeJQueryPluginCustomizations.qll      |  6 +-
 ...lidatedDynamicMethodCallCustomizations.qll |  4 +-
 .../dataflow/XmlBombCustomizations.qll        |  4 +-
 .../dataflow/XpathInjectionCustomizations.qll |  4 +-
 .../security/dataflow/XxeCustomizations.qll   |  4 +-
 javascript/ql/src/AlertSuppression.ql         |  6 +-
 .../ql/lib/semmle/python/SpecialMethods.qll   |  4 +-
 .../python/dataflow/new/RemoteFlowSources.qll |  8 +-
 .../dataflow/new/SensitiveDataSources.qll     |  7 +-
 .../new/internal/IterableUnpacking.qll        | 11 +--
 .../python/dataflow/old/Implementation.qll    | 34 ++++---
 .../ql/lib/semmle/python/essa/Definitions.qll | 23 +++--
 .../lib/semmle/python/frameworks/Aiohttp.qll  | 18 ++--
 .../lib/semmle/python/frameworks/Django.qll   |  3 +-
 .../lib/semmle/python/frameworks/Tornado.qll  |  7 +-
 .../StackTraceExposureCustomizations.qll      |  4 +-
 .../dataflow/XmlBombCustomizations.qll        |  4 +-
 .../security/dataflow/XxeCustomizations.qll   |  4 +-
 python/ql/src/analysis/AlertSuppression.ql    |  6 +-
 .../experimental/semmle/python/Concepts.qll   | 88 +++++--------------
 .../semmle/python/CookieHeader.qll            |  1 -
 .../dataflow/internal/DataFlowPrivate.qll     |  4 +-
 .../ruby/frameworks/http_clients/OpenURI.qll  |  7 +-
 .../CommandInjectionCustomizations.qll        |  4 +-
 .../ConditionalBypassCustomizations.qll       |  4 +-
 ...dedDataInterpretedAsCodeCustomizations.qll |  4 +-
 ...ServerSideRequestForgeryCustomizations.qll |  4 +-
 .../UnsafeDeserializationCustomizations.qll   |  4 +-
 ruby/ql/src/AlertSuppression.ql               |  6 +-
 88 files changed, 256 insertions(+), 574 deletions(-)

diff --git a/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/TaintedPathATM.qll b/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/TaintedPathATM.qll
index 55b295c72ba..c494a7587d6 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/TaintedPathATM.qll
+++ b/javascript/ql/experimental/adaptivethreatmodeling/lib/experimental/adaptivethreatmodeling/TaintedPathATM.qll
@@ -51,9 +51,7 @@ class TaintedPathAtmConfig extends AtmConfig {
  * of barrier guards, we port the barrier guards for the boosted query from the standard library to
  * sanitizer guards here.
  */
-private class BarrierGuardNodeAsSanitizerGuardNode extends TaintTracking::LabeledSanitizerGuardNode {
-  BarrierGuardNodeAsSanitizerGuardNode() { this instanceof TaintedPath::BarrierGuardNode }
-
+private class BarrierGuardNodeAsSanitizerGuardNode extends TaintTracking::LabeledSanitizerGuardNode instanceof TaintedPath::BarrierGuardNode {
   override predicate sanitizes(boolean outcome, Expr e) {
     blocks(outcome, e) or blocks(outcome, e, _)
   }
diff --git a/javascript/ql/lib/semmle/javascript/Closure.qll b/javascript/ql/lib/semmle/javascript/Closure.qll
index 37934f30af0..e27387255a1 100644
--- a/javascript/ql/lib/semmle/javascript/Closure.qll
+++ b/javascript/ql/lib/semmle/javascript/Closure.qll
@@ -75,8 +75,7 @@ module Closure {
   /**
    * A top-level call to `goog.provide`.
    */
-  class ClosureProvideCall extends ClosureNamespaceRef, DataFlow::MethodCallNode {
-    ClosureProvideCall() { this instanceof DefaultClosureProvideCall }
+  class ClosureProvideCall extends ClosureNamespaceRef, DataFlow::MethodCallNode instanceof DefaultClosureProvideCall {
   }
 
   /**
@@ -89,8 +88,7 @@ module Closure {
   /**
    * A call to `goog.require`.
    */
-  class ClosureRequireCall extends ClosureNamespaceAccess, DataFlow::MethodCallNode {
-    ClosureRequireCall() { this instanceof DefaultClosureRequireCall }
+  class ClosureRequireCall extends ClosureNamespaceAccess, DataFlow::MethodCallNode instanceof DefaultClosureRequireCall {
   }
 
   /**
@@ -106,8 +104,7 @@ module Closure {
   /**
    * A top-level call to `goog.module` or `goog.declareModuleId`.
    */
-  class ClosureModuleDeclaration extends ClosureNamespaceRef, DataFlow::MethodCallNode {
-    ClosureModuleDeclaration() { this instanceof DefaultClosureModuleDeclaration }
+  class ClosureModuleDeclaration extends ClosureNamespaceRef, DataFlow::MethodCallNode instanceof DefaultClosureModuleDeclaration {
   }
 
   private GlobalVariable googVariable() { variables(result, "goog", any(GlobalScope sc)) }
diff --git a/javascript/ql/lib/semmle/javascript/DOM.qll b/javascript/ql/lib/semmle/javascript/DOM.qll
index b8db6dad5a7..94809451934 100644
--- a/javascript/ql/lib/semmle/javascript/DOM.qll
+++ b/javascript/ql/lib/semmle/javascript/DOM.qll
@@ -138,16 +138,14 @@ module DOM {
   /**
    * A JSX attribute, viewed as an `AttributeDefinition`.
    */
-  private class JsxAttributeDefinition extends AttributeDefinition, @jsx_attribute {
-    JsxAttribute attr;
+  private class JsxAttributeDefinition extends AttributeDefinition, @jsx_attribute instanceof JsxAttribute {
+    override string getName() { result = JsxAttribute.super.getName() }
 
-    JsxAttributeDefinition() { this = attr }
+    override DataFlow::Node getValueNode() {
+      result = DataFlow::valueNode(JsxAttribute.super.getValue())
+    }
 
-    override string getName() { result = attr.getName() }
-
-    override DataFlow::Node getValueNode() { result = DataFlow::valueNode(attr.getValue()) }
-
-    override ElementDefinition getElement() { result = attr.getElement() }
+    override ElementDefinition getElement() { result = JsxAttribute.super.getElement() }
   }
 
   /**
diff --git a/javascript/ql/lib/semmle/javascript/DefUse.qll b/javascript/ql/lib/semmle/javascript/DefUse.qll
index e603c5b9112..4f7bf1528bc 100644
--- a/javascript/ql/lib/semmle/javascript/DefUse.qll
+++ b/javascript/ql/lib/semmle/javascript/DefUse.qll
@@ -222,9 +222,7 @@ class VarDef extends ControlFlowNode {
  *
  * Some variable definitions are also uses, notably the operands of update expressions.
  */
-class VarUse extends ControlFlowNode, @varref {
-  VarUse() { this instanceof RValue }
-
+class VarUse extends ControlFlowNode, @varref instanceof RValue {
   /** Gets the variable this use refers to. */
   Variable getVariable() { result = this.(VarRef).getVariable() }
 
diff --git a/javascript/ql/lib/semmle/javascript/DefensiveProgramming.qll b/javascript/ql/lib/semmle/javascript/DefensiveProgramming.qll
index 677e931fa25..96bbea0e55c 100644
--- a/javascript/ql/lib/semmle/javascript/DefensiveProgramming.qll
+++ b/javascript/ql/lib/semmle/javascript/DefensiveProgramming.qll
@@ -384,16 +384,11 @@ module DefensiveExpressionTest {
    *
    * Example: `typeof x === "undefined"'.
    */
-  class TypeofUndefinedTest extends UndefinedNullTest {
-    TypeofTest test;
+  class TypeofUndefinedTest extends UndefinedNullTest instanceof TypeofTest {
+    TypeofUndefinedTest() { super.getTag() = "undefined" }
 
-    TypeofUndefinedTest() {
-      this = test and
-      test.getTag() = "undefined"
-    }
+    override boolean getTheTestResult() { result = TypeofTest.super.getTheTestResult() }
 
-    override boolean getTheTestResult() { result = test.getTheTestResult() }
-
-    override Expr getOperand() { result = test.getOperand() }
+    override Expr getOperand() { result = TypeofTest.super.getOperand() }
   }
 }
diff --git a/javascript/ql/lib/semmle/javascript/GeneratedCode.qll b/javascript/ql/lib/semmle/javascript/GeneratedCode.qll
index 8dd53402205..ea397a9c40d 100644
--- a/javascript/ql/lib/semmle/javascript/GeneratedCode.qll
+++ b/javascript/ql/lib/semmle/javascript/GeneratedCode.qll
@@ -16,8 +16,7 @@ abstract class GeneratedCodeMarkerComment extends Comment { }
 /**
  * A source mapping comment, viewed as a marker comment indicating generated code.
  */
-private class SourceMappingCommentMarkerComment extends GeneratedCodeMarkerComment {
-  SourceMappingCommentMarkerComment() { this instanceof SourceMappingComment }
+private class SourceMappingCommentMarkerComment extends GeneratedCodeMarkerComment instanceof SourceMappingComment {
 }
 
 /**
diff --git a/javascript/ql/lib/semmle/javascript/Routing.qll b/javascript/ql/lib/semmle/javascript/Routing.qll
index a7e37c10743..9c8087adc4c 100644
--- a/javascript/ql/lib/semmle/javascript/Routing.qll
+++ b/javascript/ql/lib/semmle/javascript/Routing.qll
@@ -508,9 +508,7 @@ module Routing {
     /**
      * An array which has been determined to be a route node, seen as a route node with arguments.
      */
-    private class ImpliedArrayRoute extends ValueNode::WithArguments, DataFlow::ArrayCreationNode {
-      ImpliedArrayRoute() { this instanceof ValueNode::UseSite }
-
+    private class ImpliedArrayRoute extends ValueNode::WithArguments, DataFlow::ArrayCreationNode instanceof ValueNode::UseSite {
       override DataFlow::Node getArgumentNode(int n) { result = this.getElement(n) }
     }
   }
diff --git a/javascript/ql/lib/semmle/javascript/dataflow/Nodes.qll b/javascript/ql/lib/semmle/javascript/dataflow/Nodes.qll
index 1c9a9f66100..bc3d205eb6a 100644
--- a/javascript/ql/lib/semmle/javascript/dataflow/Nodes.qll
+++ b/javascript/ql/lib/semmle/javascript/dataflow/Nodes.qll
@@ -298,9 +298,7 @@ class MethodCallNode extends CallNode instanceof DataFlow::Impl::MethodCallNodeD
  * new Array(16)
  * ```
  */
-class NewNode extends InvokeNode {
-  NewNode() { this instanceof DataFlow::Impl::NewNodeDef }
-}
+class NewNode extends InvokeNode instanceof DataFlow::Impl::NewNodeDef { }
 
 /**
  * A data flow node corresponding to the `this` parameter in a function or `this` at the top-level.
diff --git a/javascript/ql/lib/semmle/javascript/dataflow/TypeInference.qll b/javascript/ql/lib/semmle/javascript/dataflow/TypeInference.qll
index 35b8f9b4444..a744c38f38e 100644
--- a/javascript/ql/lib/semmle/javascript/dataflow/TypeInference.qll
+++ b/javascript/ql/lib/semmle/javascript/dataflow/TypeInference.qll
@@ -180,13 +180,9 @@ class AnalyzedValueNode extends AnalyzedNode, DataFlow::ValueNode { }
  * exports are modeled as property writes on `module.exports`, and imports
  * as property reads on any potential value of `module.exports`.
  */
-class AnalyzedModule extends TopLevel {
-  Module m;
-
-  AnalyzedModule() { this = m }
-
+class AnalyzedModule extends TopLevel instanceof Module {
   /** Gets the name of this module. */
-  string getName() { result = m.getName() }
+  string getName() { result = super.getName() }
 
   /**
    * Gets the abstract value representing this module's `module` object.
@@ -216,7 +212,7 @@ class AnalyzedModule extends TopLevel {
     exists(AbstractValue exports | exports = getAnExportsValue() |
       // CommonJS modules export `module.exports` as their `default`
       // export in an ES2015 setting
-      not m instanceof ES2015Module and
+      not this instanceof ES2015Module and
       name = "default" and
       result = exports
       or
diff --git a/javascript/ql/lib/semmle/javascript/dataflow/internal/PropertyTypeInference.qll b/javascript/ql/lib/semmle/javascript/dataflow/internal/PropertyTypeInference.qll
index 15a4fec7406..25b6cfdb2d9 100644
--- a/javascript/ql/lib/semmle/javascript/dataflow/internal/PropertyTypeInference.qll
+++ b/javascript/ql/lib/semmle/javascript/dataflow/internal/PropertyTypeInference.qll
@@ -120,15 +120,13 @@ abstract class AnalyzedPropertyWrite extends DataFlow::Node {
 /**
  * Flow analysis for property writes.
  */
-private class AnalyzedExplicitPropertyWrite extends AnalyzedPropertyWrite {
-  AnalyzedExplicitPropertyWrite() { this instanceof DataFlow::PropWrite }
-
+private class AnalyzedExplicitPropertyWrite extends AnalyzedPropertyWrite instanceof DataFlow::PropWrite {
   override predicate writes(AbstractValue base, string prop, DataFlow::AnalyzedNode source) {
     explicitPropertyWrite(this, base, prop, source)
   }
 
   override predicate baseIsIncomplete(DataFlow::Incompleteness reason) {
-    this.(DataFlow::PropWrite).getBase().isIncomplete(reason)
+    super.getBase().isIncomplete(reason)
   }
 }
 
diff --git a/javascript/ql/lib/semmle/javascript/dataflow/internal/VariableTypeInference.qll b/javascript/ql/lib/semmle/javascript/dataflow/internal/VariableTypeInference.qll
index b55c0ddc302..29a7b420513 100644
--- a/javascript/ql/lib/semmle/javascript/dataflow/internal/VariableTypeInference.qll
+++ b/javascript/ql/lib/semmle/javascript/dataflow/internal/VariableTypeInference.qll
@@ -144,9 +144,7 @@ class AnalyzedVarDef extends VarDef {
 /**
  * Flow analysis for simple parameters of selected functions.
  */
-private class AnalyzedParameterAsVarDef extends AnalyzedVarDef, @var_decl {
-  AnalyzedParameterAsVarDef() { this instanceof Parameter }
-
+private class AnalyzedParameterAsVarDef extends AnalyzedVarDef, @var_decl instanceof Parameter {
   override AbstractValue getAnRhsValue() {
     result = DataFlow::valueNode(this).(AnalyzedValueNode).getALocalValue()
   }
@@ -692,25 +690,20 @@ abstract private class CallWithAnalyzedParameters extends FunctionWithAnalyzedPa
 /**
  * Flow analysis for simple parameters of IIFEs.
  */
-private class IifeWithAnalyzedParameters extends CallWithAnalyzedParameters {
-  ImmediatelyInvokedFunctionExpr iife;
+private class IifeWithAnalyzedParameters extends CallWithAnalyzedParameters instanceof ImmediatelyInvokedFunctionExpr {
+  IifeWithAnalyzedParameters() { super.getInvocationKind() = "direct" }
 
-  IifeWithAnalyzedParameters() {
-    this = iife and
-    iife.getInvocationKind() = "direct"
-  }
-
-  override DataFlow::InvokeNode getAnInvocation() { result = iife.getInvocation().flow() }
+  override DataFlow::InvokeNode getAnInvocation() { result = super.getInvocation().flow() }
 
   override predicate isIncomplete(DataFlow::Incompleteness cause) {
     // if the IIFE has a name and that name is referenced, we conservatively
     // assume that there may be other calls than the direct one
-    exists(iife.getVariable().getAnAccess()) and cause = "call"
+    exists(ImmediatelyInvokedFunctionExpr.super.getVariable().getAnAccess()) and cause = "call"
     or
     // if the IIFE is non-strict and its `arguments` object is accessed, we
     // also assume that there may be other calls (through `arguments.callee`)
-    not iife.isStrict() and
-    exists(iife.getArgumentsVariable().getAnAccess()) and
+    not ImmediatelyInvokedFunctionExpr.super.isStrict() and
+    exists(ImmediatelyInvokedFunctionExpr.super.getArgumentsVariable().getAnAccess()) and
     cause = "call"
   }
 }
@@ -718,12 +711,8 @@ private class IifeWithAnalyzedParameters extends CallWithAnalyzedParameters {
 /**
  * Enables inter-procedural type inference for `LocalFunction`.
  */
-private class LocalFunctionWithAnalyzedParameters extends CallWithAnalyzedParameters {
-  LocalFunction local;
-
-  LocalFunctionWithAnalyzedParameters() { this = local }
-
-  override DataFlow::InvokeNode getAnInvocation() { result = local.getAnInvocation() }
+private class LocalFunctionWithAnalyzedParameters extends CallWithAnalyzedParameters instanceof LocalFunction {
+  override DataFlow::InvokeNode getAnInvocation() { result = LocalFunction.super.getAnInvocation() }
 
   override predicate isIncomplete(DataFlow::Incompleteness cause) { none() }
 }
diff --git a/javascript/ql/lib/semmle/javascript/dependencies/Dependencies.qll b/javascript/ql/lib/semmle/javascript/dependencies/Dependencies.qll
index 024a966bf21..f110f3d5f97 100644
--- a/javascript/ql/lib/semmle/javascript/dependencies/Dependencies.qll
+++ b/javascript/ql/lib/semmle/javascript/dependencies/Dependencies.qll
@@ -226,21 +226,17 @@ abstract class ScriptDependency extends Dependency {
 /**
  * An embedded JavaScript library included inside a `<script>` tag.
  */
-class InlineScriptDependency extends ScriptDependency, @toplevel {
-  FrameworkLibraryInstance fli;
-
-  InlineScriptDependency() { this = fli }
-
+class InlineScriptDependency extends ScriptDependency, @toplevel instanceof FrameworkLibraryInstance {
   override predicate info(string id, string v) {
     exists(FrameworkLibrary fl |
-      fli.info(fl, v) and
+      FrameworkLibraryInstance.super.info(fl, v) and
       id = fl.getId()
     )
   }
 
   override Expr getAnApiUse() {
     exists(FrameworkLibrary fl |
-      fli.info(fl, _) and
+      FrameworkLibraryInstance.super.info(fl, _) and
       propAccessOnGlobal(result, fl.getAnEntryPoint()) and
       result.getFile() = this.getFile() and
       result.getTopLevel() != this
@@ -252,21 +248,17 @@ class InlineScriptDependency extends ScriptDependency, @toplevel {
  * An external JavaScript library referenced via the `src` attribute
  * of a `<script>` tag.
  */
-class ExternalScriptDependency extends ScriptDependency, @xmlattribute {
-  FrameworkLibraryReference flr;
-
-  ExternalScriptDependency() { this = flr }
-
+class ExternalScriptDependency extends ScriptDependency, @xmlattribute instanceof FrameworkLibraryReference {
   override predicate info(string id, string v) {
     exists(FrameworkLibrary fl |
-      flr.info(fl, v) and
+      FrameworkLibraryReference.super.info(fl, v) and
       id = fl.getId()
     )
   }
 
   override Expr getAnApiUse() {
     exists(FrameworkLibrary fl |
-      flr.info(fl, _) and
+      FrameworkLibraryReference.super.info(fl, _) and
       propAccessOnGlobal(result, fl.getAnEntryPoint()) and
       result.getFile() = this.getFile()
     )
@@ -276,9 +268,7 @@ class ExternalScriptDependency extends ScriptDependency, @xmlattribute {
 /**
  * A dependency on GWT indicated by a GWT header script.
  */
-private class GwtDependency extends ScriptDependency {
-  GwtDependency() { this instanceof GwtHeader }
-
+private class GwtDependency extends ScriptDependency instanceof GwtHeader {
   override predicate info(string id, string v) {
     id = "gwt" and
     exists(GwtHeader h | h = this |
diff --git a/javascript/ql/lib/semmle/javascript/frameworks/AngularJS/AngularJSCore.qll b/javascript/ql/lib/semmle/javascript/frameworks/AngularJS/AngularJSCore.qll
index e26a71bcdd4..5314433e7d6 100644
--- a/javascript/ql/lib/semmle/javascript/frameworks/AngularJS/AngularJSCore.qll
+++ b/javascript/ql/lib/semmle/javascript/frameworks/AngularJS/AngularJSCore.qll
@@ -468,14 +468,10 @@ abstract class DirectiveTarget extends Locatable {
 /**
  * A DOM element, viewed as directive target.
  */
-private class DomElementAsElement extends DirectiveTarget {
-  DOM::ElementDefinition element;
+private class DomElementAsElement extends DirectiveTarget instanceof DOM::ElementDefinition {
+  override string getName() { result = DOM::ElementDefinition.super.getName() }
 
-  DomElementAsElement() { this = element }
-
-  override string getName() { result = element.getName() }
-
-  override DOM::ElementDefinition getElement() { result = element }
+  override DOM::ElementDefinition getElement() { result = this }
 
   override DirectiveTargetType getType() { result = E() }
 }
@@ -483,18 +479,16 @@ private class DomElementAsElement extends DirectiveTarget {
 /**
  * A DOM attribute, viewed as a directive target.
  */
-private class DomAttributeAsElement extends DirectiveTarget {
-  DOM::AttributeDefinition attr;
+private class DomAttributeAsElement extends DirectiveTarget instanceof DOM::AttributeDefinition {
+  override string getName() { result = DOM::AttributeDefinition.super.getName() }
 
-  DomAttributeAsElement() { this = attr }
-
-  override string getName() { result = attr.getName() }
-
-  override DOM::ElementDefinition getElement() { result = attr.getElement() }
+  override DOM::ElementDefinition getElement() {
+    result = DOM::AttributeDefinition.super.getElement()
+  }
 
   override DirectiveTargetType getType() { result = A() }
 
-  DOM::AttributeDefinition asAttribute() { result = attr }
+  DOM::AttributeDefinition asAttribute() { result = this }
 }
 
 /**
@@ -962,17 +956,13 @@ abstract class Controller extends DataFlow::Node {
 /**
  * A controller instantiated through a directive, e.g. `<div ngController="myController"/>`.
  */
-private class DirectiveController extends Controller {
-  ControllerDefinition def;
-
-  DirectiveController() { this = def }
-
+private class DirectiveController extends Controller instanceof ControllerDefinition {
   private predicate boundAnonymously(DOM::ElementDefinition elem) {
     exists(DirectiveInstance instance, DomAttributeAsElement attr |
       instance.getName() = "ngController" and
       instance.getATarget() = attr and
       elem = attr.getElement() and
-      attr.asAttribute().getStringValue() = def.getName()
+      attr.asAttribute().getStringValue() = super.getName()
     )
   }
 
@@ -989,28 +979,26 @@ private class DirectiveController extends Controller {
         attributeValue = attr.asAttribute().getStringValue() and
         pattern = "([^ ]+) +as +([^ ]+)"
       |
-        attributeValue.regexpCapture(pattern, 1) = def.getName() and
+        attributeValue.regexpCapture(pattern, 1) = ControllerDefinition.super.getName() and
         attributeValue.regexpCapture(pattern, 2) = alias
       )
     )
   }
 
-  override InjectableFunction getFactoryFunction() { result = def.getAFactoryFunction() }
+  override InjectableFunction getFactoryFunction() {
+    result = ControllerDefinition.super.getAFactoryFunction()
+  }
 }
 
 /**
  * A controller instantiated through routes, e.g. `$routeProvider.otherwise({controller: ...})`.
  */
-private class RouteInstantiatedController extends Controller {
-  RouteSetup setup;
-
-  RouteInstantiatedController() { this = setup }
-
-  override InjectableFunction getFactoryFunction() { result = setup.getController() }
+private class RouteInstantiatedController extends Controller instanceof RouteSetup {
+  override InjectableFunction getFactoryFunction() { result = super.getController() }
 
   override predicate boundTo(DOM::ElementDefinition elem) {
     exists(string url, HTML::HtmlFile template |
-      setup.getRouteParam("templateUrl").mayHaveStringValue(url) and
+      super.getRouteParam("templateUrl").mayHaveStringValue(url) and
       template.getAbsolutePath().regexpMatch(".*\\Q" + url + "\\E") and
       elem.getFile() = template
     )
@@ -1018,7 +1006,7 @@ private class RouteInstantiatedController extends Controller {
 
   override predicate boundToAs(DOM::ElementDefinition elem, string name) {
     this.boundTo(elem) and
-    setup.getRouteParam("controllerAs").mayHaveStringValue(name)
+    super.getRouteParam("controllerAs").mayHaveStringValue(name)
   }
 }
 
diff --git a/javascript/ql/lib/semmle/javascript/frameworks/AngularJS/AngularJSExpressions.qll b/javascript/ql/lib/semmle/javascript/frameworks/AngularJS/AngularJSExpressions.qll
index d379184c11f..29d7fe3bdf6 100644
--- a/javascript/ql/lib/semmle/javascript/frameworks/AngularJS/AngularJSExpressions.qll
+++ b/javascript/ql/lib/semmle/javascript/frameworks/AngularJS/AngularJSExpressions.qll
@@ -808,23 +808,19 @@ private import Parser
  *
  * Will eventually be a subtype of `DataFlow::Node`.
  */
-class NgDataFlowNode extends TNode {
-  NgAstNode astNode;
-
-  NgDataFlowNode() { this = astNode }
-
+class NgDataFlowNode extends TNode instanceof NgAstNode {
   /** Gets the AST node this node corresponds to. */
-  NgAstNode getAstNode() { result = astNode }
+  NgAstNode getAstNode() { result = this }
 
   /** Gets a textual representation of this element. */
-  string toString() { result = astNode.toString() }
+  string toString() { result = super.toString() }
 
   /**
    * Gets a scope object for this node.
    */
   AngularJS::AngularScope getAScope() {
     exists(NgToken token, NgSource source |
-      astNode.at(token, _) and
+      super.at(token, _) and
       token.at(source, _)
     |
       result.mayApplyTo(source.getProvider().getEnclosingElement())
diff --git a/javascript/ql/lib/semmle/javascript/frameworks/AngularJS/ServiceDefinitions.qll b/javascript/ql/lib/semmle/javascript/frameworks/AngularJS/ServiceDefinitions.qll
index a9941c6492d..a26c5da1aa4 100644
--- a/javascript/ql/lib/semmle/javascript/frameworks/AngularJS/ServiceDefinitions.qll
+++ b/javascript/ql/lib/semmle/javascript/frameworks/AngularJS/ServiceDefinitions.qll
@@ -473,27 +473,21 @@ abstract class ServiceRequestNode extends DataFlow::Node {
 /**
  * The request for a scope service in the form of the link-function of a directive.
  */
-private class LinkFunctionWithScopeInjection extends ServiceRequestNode {
-  LinkFunctionWithScopeInjection() { this instanceof LinkFunction }
-
+private class LinkFunctionWithScopeInjection extends ServiceRequestNode instanceof LinkFunction {
   override DataFlow::ParameterNode getDependencyParameter(ServiceReference service) {
     service instanceof ScopeServiceReference and
-    result = this.(LinkFunction).getScopeParameter()
+    result = super.getScopeParameter()
   }
 }
 
 /**
  * A request for a service, in the form of a dependency-injected function.
  */
-class InjectableFunctionServiceRequest extends ServiceRequestNode {
-  InjectableFunction injectedFunction;
-
-  InjectableFunctionServiceRequest() { injectedFunction = this }
-
+class InjectableFunctionServiceRequest extends ServiceRequestNode instanceof InjectableFunction {
   /**
    * Gets the function of this request.
    */
-  InjectableFunction getAnInjectedFunction() { result = injectedFunction }
+  InjectableFunction getAnInjectedFunction() { result = this }
 
   /**
    * Gets a name of a requested service.
@@ -512,7 +506,7 @@ class InjectableFunctionServiceRequest extends ServiceRequestNode {
   }
 
   override DataFlow::ParameterNode getDependencyParameter(ServiceReference service) {
-    service = injectedFunction.getAResolvedDependency(result)
+    service = super.getAResolvedDependency(result)
   }
 }
 
@@ -631,12 +625,8 @@ class ProviderRecipeDefinition extends RecipeDefinition {
   }
 }
 
-private class ProviderRecipeServiceInjection extends DependencyInjection {
-  ProviderRecipeServiceInjection() { this instanceof ProviderRecipeDefinition }
-
-  override DataFlow::Node getAnInjectableFunction() {
-    result = this.(ProviderRecipeDefinition).getAService()
-  }
+private class ProviderRecipeServiceInjection extends DependencyInjection instanceof ProviderRecipeDefinition {
+  override DataFlow::Node getAnInjectableFunction() { result = super.getAService() }
 }
 
 /**
diff --git a/javascript/ql/lib/semmle/javascript/frameworks/ClientRequests.qll b/javascript/ql/lib/semmle/javascript/frameworks/ClientRequests.qll
index 1453f995433..b3d6b8a3b0e 100644
--- a/javascript/ql/lib/semmle/javascript/frameworks/ClientRequests.qll
+++ b/javascript/ql/lib/semmle/javascript/frameworks/ClientRequests.qll
@@ -762,14 +762,12 @@ module ClientRequest {
   /**
    * A shell execution of `curl` that downloads some file.
    */
-  class CurlDownload extends ClientRequest::Range {
-    SystemCommandExecution cmd;
-
+  class CurlDownload extends ClientRequest::Range instanceof SystemCommandExecution {
     CurlDownload() {
-      this = cmd and
       (
-        cmd.getACommandArgument().getStringValue() = "curl" or
-        cmd.getACommandArgument()
+        super.getACommandArgument().getStringValue() = "curl" or
+        super
+            .getACommandArgument()
             .(StringOps::ConcatenationRoot)
             .getConstantStringParts()
             .matches("curl %")
@@ -777,8 +775,8 @@ module ClientRequest {
     }
 
     override DataFlow::Node getUrl() {
-      result = cmd.getArgumentList().getALocalSource().getAPropertyWrite().getRhs() or
-      result = cmd.getACommandArgument().(StringOps::ConcatenationRoot).getALeaf()
+      result = super.getArgumentList().getALocalSource().getAPropertyWrite().getRhs() or
+      result = super.getACommandArgument().(StringOps::ConcatenationRoot).getALeaf()
     }
 
     override DataFlow::Node getHost() { none() }
diff --git a/javascript/ql/lib/semmle/javascript/frameworks/Electron.qll b/javascript/ql/lib/semmle/javascript/frameworks/Electron.qll
index 5ec9c8edcf9..9ab88bcbb38 100644
--- a/javascript/ql/lib/semmle/javascript/frameworks/Electron.qll
+++ b/javascript/ql/lib/semmle/javascript/frameworks/Electron.qll
@@ -16,16 +16,12 @@ module Electron {
   /**
    * An instantiation of `BrowserWindow` or `BrowserView`.
    */
-  abstract private class NewBrowserObject extends BrowserObject {
-    DataFlow::NewNode self;
-
-    NewBrowserObject() { this = self }
-
+  abstract private class NewBrowserObject extends BrowserObject instanceof DataFlow::NewNode {
     /**
      * Gets the data flow node from which this instantiation takes its `webPreferences` object.
      */
     DataFlow::SourceNode getWebPreferences() {
-      result = self.getOptionArgument(0, "webPreferences").getALocalSource()
+      result = super.getOptionArgument(0, "webPreferences").getALocalSource()
     }
   }
 
@@ -182,8 +178,7 @@ module Electron {
   /**
    * A Node.js-style HTTP or HTTPS request made using an Electron module.
    */
-  class ElectronClientRequest extends NodeJSLib::NodeJSClientRequest {
-    ElectronClientRequest() { this instanceof ElectronClientRequest::Range }
+  class ElectronClientRequest extends NodeJSLib::NodeJSClientRequest instanceof ElectronClientRequest::Range {
   }
 
   module ElectronClientRequest {
diff --git a/javascript/ql/lib/semmle/javascript/frameworks/Express.qll b/javascript/ql/lib/semmle/javascript/frameworks/Express.qll
index a48b7d1719a..7776a84612c 100644
--- a/javascript/ql/lib/semmle/javascript/frameworks/Express.qll
+++ b/javascript/ql/lib/semmle/javascript/frameworks/Express.qll
@@ -76,17 +76,11 @@ module Express {
     result = "del"
   }
 
-  private class RouterRange extends Routing::Router::Range {
-    RouterDefinition def;
-
-    RouterRange() { this = def }
-
-    override DataFlow::SourceNode getAReference() { result = def.ref() }
+  private class RouterRange extends Routing::Router::Range instanceof RouterDefinition {
+    override DataFlow::SourceNode getAReference() { result = super.ref() }
   }
 
-  private class RoutingTreeSetup extends Routing::RouteSetup::MethodCall {
-    RoutingTreeSetup() { this instanceof RouteSetup }
-
+  private class RoutingTreeSetup extends Routing::RouteSetup::MethodCall instanceof RouteSetup {
     override string getRelativePath() {
       not this.getMethodName() = "param" and // do not treat parameter name as a path
       result = this.getArgument(0).getStringValue()
diff --git a/javascript/ql/lib/semmle/javascript/frameworks/ExpressModules.qll b/javascript/ql/lib/semmle/javascript/frameworks/ExpressModules.qll
index 6052d97cef8..e692da0333b 100644
--- a/javascript/ql/lib/semmle/javascript/frameworks/ExpressModules.qll
+++ b/javascript/ql/lib/semmle/javascript/frameworks/ExpressModules.qll
@@ -18,9 +18,7 @@ module ExpressLibraries {
   /**
    * A header produced by a route handler of the "x-frame-options" module.
    */
-  class XFrameOptionsRouteHandlerHeader extends Http::ImplicitHeaderDefinition {
-    XFrameOptionsRouteHandlerHeader() { this instanceof XFrameOptionsRouteHandler }
-
+  class XFrameOptionsRouteHandlerHeader extends Http::ImplicitHeaderDefinition instanceof XFrameOptionsRouteHandler {
     override predicate defines(string headerName, string headerValue) {
       xFrameOptionsDefaultImplicitHeaderDefinition(headerName, headerValue)
     }
@@ -45,9 +43,7 @@ module ExpressLibraries {
   /**
    * A header produced by a route handler of the "frameguard" module.
    */
-  class FrameGuardRouteHandlerHeader extends Http::ImplicitHeaderDefinition {
-    FrameGuardRouteHandlerHeader() { this instanceof FrameGuardRouteHandler }
-
+  class FrameGuardRouteHandlerHeader extends Http::ImplicitHeaderDefinition instanceof FrameGuardRouteHandler {
     override predicate defines(string headerName, string headerValue) {
       xFrameOptionsDefaultImplicitHeaderDefinition(headerName, headerValue)
     }
@@ -70,9 +66,7 @@ module ExpressLibraries {
   /**
    * A header produced by a route handler of the "helmet" module.
    */
-  class HelmetRouteHandlerHeader extends Http::ImplicitHeaderDefinition {
-    HelmetRouteHandlerHeader() { this instanceof HelmetRouteHandler }
-
+  class HelmetRouteHandlerHeader extends Http::ImplicitHeaderDefinition instanceof HelmetRouteHandler {
     override predicate defines(string headerName, string headerValue) {
       xFrameOptionsDefaultImplicitHeaderDefinition(headerName, headerValue)
     }
diff --git a/javascript/ql/lib/semmle/javascript/frameworks/Fastify.qll b/javascript/ql/lib/semmle/javascript/frameworks/Fastify.qll
index d12c4278601..b25dbb63380 100644
--- a/javascript/ql/lib/semmle/javascript/frameworks/Fastify.qll
+++ b/javascript/ql/lib/semmle/javascript/frameworks/Fastify.qll
@@ -168,11 +168,8 @@ module Fastify {
     }
   }
 
-  private class ShorthandRoutingTreeSetup extends Routing::RouteSetup::MethodCall {
-    ShorthandRoutingTreeSetup() {
-      this instanceof RouteSetup and
-      not this.getMethodName() = "route"
-    }
+  private class ShorthandRoutingTreeSetup extends Routing::RouteSetup::MethodCall instanceof RouteSetup {
+    ShorthandRoutingTreeSetup() { not this.getMethodName() = "route" }
 
     override string getRelativePath() { result = this.getArgument(0).getStringValue() }
 
@@ -186,11 +183,8 @@ module Fastify {
           .splitAt(",", n)
   }
 
-  private class FullRoutingTreeSetup extends Routing::RouteSetup::MethodCall {
-    FullRoutingTreeSetup() {
-      this instanceof RouteSetup and
-      this.getMethodName() = "route"
-    }
+  private class FullRoutingTreeSetup extends Routing::RouteSetup::MethodCall instanceof RouteSetup {
+    FullRoutingTreeSetup() { this.getMethodName() = "route" }
 
     override string getRelativePath() { result = this.getOptionArgument(0, "url").getStringValue() }
 
diff --git a/javascript/ql/lib/semmle/javascript/frameworks/HTTP.qll b/javascript/ql/lib/semmle/javascript/frameworks/HTTP.qll
index 62788b2a3d7..8fafc7db7c0 100644
--- a/javascript/ql/lib/semmle/javascript/frameworks/HTTP.qll
+++ b/javascript/ql/lib/semmle/javascript/frameworks/HTTP.qll
@@ -156,19 +156,14 @@ module Http {
   /**
    * An expression that sets the `Set-Cookie` header of an HTTP response.
    */
-  class SetCookieHeader extends CookieDefinition {
-    HeaderDefinition header;
-
-    SetCookieHeader() {
-      this = header and
-      header.getAHeaderName() = "set-cookie"
-    }
+  class SetCookieHeader extends CookieDefinition instanceof HeaderDefinition {
+    SetCookieHeader() { super.getAHeaderName() = "set-cookie" }
 
     override DataFlow::Node getHeaderArgument() {
-      header.(ExplicitHeaderDefinition).definesHeaderValue("set-cookie", result)
+      this.(ExplicitHeaderDefinition).definesHeaderValue("set-cookie", result)
     }
 
-    override RouteHandler getRouteHandler() { result = header.getRouteHandler() }
+    override RouteHandler getRouteHandler() { result = HeaderDefinition.super.getRouteHandler() }
   }
 
   /**
diff --git a/javascript/ql/lib/semmle/javascript/frameworks/Templating.qll b/javascript/ql/lib/semmle/javascript/frameworks/Templating.qll
index d66ca3baab2..ae68f085703 100644
--- a/javascript/ql/lib/semmle/javascript/frameworks/Templating.qll
+++ b/javascript/ql/lib/semmle/javascript/frameworks/Templating.qll
@@ -174,23 +174,19 @@ module Templating {
   /**
    * A place where a template is instantiated or rendered.
    */
-  class TemplateInstantiation extends DataFlow::Node {
-    TemplateInstantiation::Range range;
-
-    TemplateInstantiation() { this = range }
-
+  class TemplateInstantiation extends DataFlow::Node instanceof TemplateInstantiation::Range {
     /** Gets a data flow node that refers to the instantiated template string, if any. */
-    DataFlow::SourceNode getOutput() { result = range.getOutput() }
+    DataFlow::SourceNode getOutput() { result = super.getOutput() }
 
     /** Gets a data flow node that refers a template file to be instantiated, if any. */
-    DataFlow::Node getTemplateFileNode() { result = range.getTemplateFileNode() }
+    DataFlow::Node getTemplateFileNode() { result = super.getTemplateFileNode() }
 
     /** Gets a data flow node that refers to an object whose properties become variables in the template. */
-    DataFlow::Node getTemplateParamsNode() { result = range.getTemplateParamsNode() }
+    DataFlow::Node getTemplateParamsNode() { result = super.getTemplateParamsNode() }
 
     /** Gets a data flow node that provides the value for the template variable at the given access path. */
     DataFlow::Node getTemplateParamForValue(string accessPath) {
-      result = range.getTemplateParamForValue(accessPath)
+      result = super.getTemplateParamForValue(accessPath)
     }
 
     /** Gets the template file instantiated here, if any. */
@@ -203,7 +199,7 @@ module Templating {
      *
      * If not known, the relevant syntax will be determined by a heuristic.
      */
-    TemplateSyntax getTemplateSyntax() { result = range.getTemplateSyntax() }
+    TemplateSyntax getTemplateSyntax() { result = super.getTemplateSyntax() }
   }
 
   /** Companion module to the `TemplateInstantiation` class. */
diff --git a/javascript/ql/lib/semmle/javascript/heuristics/AdditionalRouteHandlers.qll b/javascript/ql/lib/semmle/javascript/heuristics/AdditionalRouteHandlers.qll
index 76a8aff557b..a9b730a5003 100644
--- a/javascript/ql/lib/semmle/javascript/heuristics/AdditionalRouteHandlers.qll
+++ b/javascript/ql/lib/semmle/javascript/heuristics/AdditionalRouteHandlers.qll
@@ -11,24 +11,19 @@ private import semmle.javascript.frameworks.ConnectExpressShared
  * Add `NodeJSLib::RouteHandlerCandidate` to the extent of `NodeJSLib::RouteHandler`.
  */
 private class PromotedNodeJSLibCandidate extends NodeJSLib::RouteHandler,
-  Http::Servers::StandardRouteHandler {
-  PromotedNodeJSLibCandidate() { this instanceof NodeJSLib::RouteHandlerCandidate }
-}
+  Http::Servers::StandardRouteHandler instanceof NodeJSLib::RouteHandlerCandidate { }
 
 /**
  * Add `Hapi::RouteHandlerCandidate` to the extent of `Hapi::RouteHandler`.
  */
-private class PromotedHapiCandidate extends Hapi::RouteHandler, Http::Servers::StandardRouteHandler {
-  PromotedHapiCandidate() { this instanceof Hapi::RouteHandlerCandidate }
+private class PromotedHapiCandidate extends Hapi::RouteHandler, Http::Servers::StandardRouteHandler instanceof Hapi::RouteHandlerCandidate {
 }
 
 /**
  * Add `ConnectExpressShared::RouteHandlerCandidate` to the extent of `Express::RouteHandler`.
  */
 private class PromotedExpressCandidate extends Express::RouteHandler,
-  Http::Servers::StandardRouteHandler {
-  PromotedExpressCandidate() { this instanceof ConnectExpressShared::RouteHandlerCandidate }
-
+  Http::Servers::StandardRouteHandler instanceof ConnectExpressShared::RouteHandlerCandidate {
   override DataFlow::ParameterNode getRouteHandlerParameter(string kind) {
     result = ConnectExpressShared::getRouteHandlerParameter(this, kind)
   }
@@ -38,9 +33,7 @@ private class PromotedExpressCandidate extends Express::RouteHandler,
  * Add `ConnectExpressShared::RouteHandlerCandidate` to the extent of `Connect::RouteHandler`.
  */
 private class PromotedConnectCandidate extends Connect::RouteHandler,
-  Http::Servers::StandardRouteHandler {
-  PromotedConnectCandidate() { this instanceof ConnectExpressShared::RouteHandlerCandidate }
-
+  Http::Servers::StandardRouteHandler instanceof ConnectExpressShared::RouteHandlerCandidate {
   override DataFlow::ParameterNode getRouteHandlerParameter(string kind) {
     result = ConnectExpressShared::getRouteHandlerParameter(this, kind)
   }
diff --git a/javascript/ql/lib/semmle/javascript/heuristics/AdditionalSources.qll b/javascript/ql/lib/semmle/javascript/heuristics/AdditionalSources.qll
index 40c86ed4855..c8b1f5df31a 100644
--- a/javascript/ql/lib/semmle/javascript/heuristics/AdditionalSources.qll
+++ b/javascript/ql/lib/semmle/javascript/heuristics/AdditionalSources.qll
@@ -27,9 +27,7 @@ private class RemoteFlowPassword extends HeuristicSource, RemoteFlowSource {
  * since it does not properly escape single quotes and dollar symbols.
  */
 private class JsonStringifyAsCommandInjectionSource extends HeuristicSource,
-  CommandInjection::Source {
-  JsonStringifyAsCommandInjectionSource() { this instanceof JsonStringifyCall }
-
+  CommandInjection::Source instanceof JsonStringifyCall {
   override string getSourceType() { result = "a string from JSON.stringify" }
 }
 
diff --git a/javascript/ql/lib/semmle/javascript/security/IncompleteBlacklistSanitizer.qll b/javascript/ql/lib/semmle/javascript/security/IncompleteBlacklistSanitizer.qll
index 7f84128af23..31656df3471 100644
--- a/javascript/ql/lib/semmle/javascript/security/IncompleteBlacklistSanitizer.qll
+++ b/javascript/ql/lib/semmle/javascript/security/IncompleteBlacklistSanitizer.qll
@@ -38,9 +38,8 @@ string describeCharacters(string rep) {
  * A local sequence of calls to `String.prototype.replace`,
  * represented by the last call.
  */
-class StringReplaceCallSequence extends DataFlow::CallNode {
+class StringReplaceCallSequence extends DataFlow::CallNode instanceof StringReplaceCall {
   StringReplaceCallSequence() {
-    this instanceof StringReplaceCall and
     not exists(getAStringReplaceMethodCall(this)) // terminal
   }
 
diff --git a/javascript/ql/lib/semmle/javascript/security/UselessUseOfCat.qll b/javascript/ql/lib/semmle/javascript/security/UselessUseOfCat.qll
index 5428e14abee..e66200370dd 100644
--- a/javascript/ql/lib/semmle/javascript/security/UselessUseOfCat.qll
+++ b/javascript/ql/lib/semmle/javascript/security/UselessUseOfCat.qll
@@ -10,21 +10,17 @@ import Declarations.UnusedVariable
  * A call that executes a system command.
  * This class provides utility predicates for reasoning about command execution calls.
  */
-private class CommandCall extends DataFlow::InvokeNode {
-  SystemCommandExecution command;
-
-  CommandCall() { this = command }
-
+private class CommandCall extends DataFlow::InvokeNode instanceof SystemCommandExecution {
   /**
    * Holds if the call is synchronous (e.g. `execFileSync`).
    */
-  predicate isSync() { command.isSync() }
+  predicate isSync() { super.isSync() }
 
   /**
    * Gets a list that specifies the arguments given to the command.
    */
   DataFlow::ArrayCreationNode getArgumentList() {
-    result = command.getArgumentList().getALocalSource()
+    result = super.getArgumentList().getALocalSource()
   }
 
   /**
@@ -42,7 +38,7 @@ private class CommandCall extends DataFlow::InvokeNode {
   /**
    * Gets the data-flow node (if it exists) for an options argument for an `exec`-like call.
    */
-  DataFlow::Node getOptionsArg() { result = command.getOptionsArg() }
+  DataFlow::Node getOptionsArg() { result = super.getOptionsArg() }
 
   /**
    * Gets the constant-string parts that are not part of the command itself.
@@ -99,7 +95,6 @@ private string getConstantStringParts(DataFlow::Node node) {
  */
 class UselessCat extends CommandCall {
   UselessCat() {
-    this = command and
     this.isACallTo(getACatExecuteable()) and
     // There is a file to read, it's not just spawning `cat`.
     not (
diff --git a/javascript/ql/lib/semmle/javascript/security/dataflow/CleartextStorageCustomizations.qll b/javascript/ql/lib/semmle/javascript/security/dataflow/CleartextStorageCustomizations.qll
index d158e4b0cac..1d57fdb50fd 100644
--- a/javascript/ql/lib/semmle/javascript/security/dataflow/CleartextStorageCustomizations.qll
+++ b/javascript/ql/lib/semmle/javascript/security/dataflow/CleartextStorageCustomizations.qll
@@ -40,9 +40,7 @@ module CleartextStorage {
   }
 
   /** A call to any function whose name suggests that it encodes or encrypts its arguments. */
-  class ProtectSanitizer extends Sanitizer {
-    ProtectSanitizer() { this instanceof ProtectCall }
-  }
+  class ProtectSanitizer extends Sanitizer instanceof ProtectCall { }
 
   /**
    * An expression set as a value on a cookie instance.
diff --git a/javascript/ql/lib/semmle/javascript/security/dataflow/ClientSideUrlRedirectCustomizations.qll b/javascript/ql/lib/semmle/javascript/security/dataflow/ClientSideUrlRedirectCustomizations.qll
index 4c6ad8b0ee9..a04546f0516 100644
--- a/javascript/ql/lib/semmle/javascript/security/dataflow/ClientSideUrlRedirectCustomizations.qll
+++ b/javascript/ql/lib/semmle/javascript/security/dataflow/ClientSideUrlRedirectCustomizations.qll
@@ -39,11 +39,8 @@ module ClientSideUrlRedirect {
   }
 
   /** A source of remote user input, considered as a flow source for unvalidated URL redirects. */
-  class RemoteFlowSourceAsSource extends Source {
-    RemoteFlowSourceAsSource() {
-      this instanceof RemoteFlowSource and
-      not this.(ClientSideRemoteFlowSource).getKind().isPath()
-    }
+  class RemoteFlowSourceAsSource extends Source instanceof RemoteFlowSource {
+    RemoteFlowSourceAsSource() { not this.(ClientSideRemoteFlowSource).getKind().isPath() }
 
     override DataFlow::FlowLabel getAFlowLabel() {
       if this.(ClientSideRemoteFlowSource).getKind().isUrl()
diff --git a/javascript/ql/lib/semmle/javascript/security/dataflow/CodeInjectionCustomizations.qll b/javascript/ql/lib/semmle/javascript/security/dataflow/CodeInjectionCustomizations.qll
index 0aa0241c780..7894d914dd0 100644
--- a/javascript/ql/lib/semmle/javascript/security/dataflow/CodeInjectionCustomizations.qll
+++ b/javascript/ql/lib/semmle/javascript/security/dataflow/CodeInjectionCustomizations.qll
@@ -34,9 +34,7 @@ module CodeInjection {
   abstract class Sanitizer extends DataFlow::Node { }
 
   /** A source of remote user input, considered as a flow source for code injection. */
-  class RemoteFlowSourceAsSource extends Source {
-    RemoteFlowSourceAsSource() { this instanceof RemoteFlowSource }
-  }
+  class RemoteFlowSourceAsSource extends Source instanceof RemoteFlowSource { }
 
   /**
    * An expression which may be interpreted as an AngularJS expression.
diff --git a/javascript/ql/lib/semmle/javascript/security/dataflow/CommandInjectionCustomizations.qll b/javascript/ql/lib/semmle/javascript/security/dataflow/CommandInjectionCustomizations.qll
index f0f6b17dce0..be72243abef 100644
--- a/javascript/ql/lib/semmle/javascript/security/dataflow/CommandInjectionCustomizations.qll
+++ b/javascript/ql/lib/semmle/javascript/security/dataflow/CommandInjectionCustomizations.qll
@@ -26,11 +26,8 @@ module CommandInjection {
   abstract class Sanitizer extends DataFlow::Node { }
 
   /** A source of remote user input, considered as a flow source for command injection. */
-  class RemoteFlowSourceAsSource extends Source {
-    RemoteFlowSourceAsSource() {
-      this instanceof RemoteFlowSource and
-      not this instanceof ClientSideRemoteFlowSource
-    }
+  class RemoteFlowSourceAsSource extends Source instanceof RemoteFlowSource {
+    RemoteFlowSourceAsSource() { not this instanceof ClientSideRemoteFlowSource }
 
     override string getSourceType() { result = "a user-provided value" }
   }
diff --git a/javascript/ql/lib/semmle/javascript/security/dataflow/ConditionalBypassCustomizations.qll b/javascript/ql/lib/semmle/javascript/security/dataflow/ConditionalBypassCustomizations.qll
index 3d455f6070f..224615c1e8f 100644
--- a/javascript/ql/lib/semmle/javascript/security/dataflow/ConditionalBypassCustomizations.qll
+++ b/javascript/ql/lib/semmle/javascript/security/dataflow/ConditionalBypassCustomizations.qll
@@ -32,9 +32,7 @@ module ConditionalBypass {
    * A source of remote user input, considered as a flow source for bypass of
    * sensitive action guards.
    */
-  class RemoteFlowSourceAsSource extends Source {
-    RemoteFlowSourceAsSource() { this instanceof RemoteFlowSource }
-  }
+  class RemoteFlowSourceAsSource extends Source instanceof RemoteFlowSource { }
 
   /**
    * Holds if `bb` dominates the basic block in which `action` occurs.
diff --git a/javascript/ql/lib/semmle/javascript/security/dataflow/CorsMisconfigurationForCredentialsCustomizations.qll b/javascript/ql/lib/semmle/javascript/security/dataflow/CorsMisconfigurationForCredentialsCustomizations.qll
index 79868ea9989..690bc61e14b 100644
--- a/javascript/ql/lib/semmle/javascript/security/dataflow/CorsMisconfigurationForCredentialsCustomizations.qll
+++ b/javascript/ql/lib/semmle/javascript/security/dataflow/CorsMisconfigurationForCredentialsCustomizations.qll
@@ -28,11 +28,8 @@ module CorsMisconfigurationForCredentials {
   abstract class Sanitizer extends DataFlow::Node { }
 
   /** A source of remote user input, considered as a flow source for CORS misconfiguration. */
-  class RemoteFlowSourceAsSource extends Source {
-    RemoteFlowSourceAsSource() {
-      this instanceof RemoteFlowSource and
-      not this instanceof ClientSideRemoteFlowSource
-    }
+  class RemoteFlowSourceAsSource extends Source instanceof RemoteFlowSource {
+    RemoteFlowSourceAsSource() { not this instanceof ClientSideRemoteFlowSource }
   }
 
   /**
diff --git a/javascript/ql/lib/semmle/javascript/security/dataflow/DeepObjectResourceExhaustionCustomizations.qll b/javascript/ql/lib/semmle/javascript/security/dataflow/DeepObjectResourceExhaustionCustomizations.qll
index 52b3874c8cc..baa62720717 100644
--- a/javascript/ql/lib/semmle/javascript/security/dataflow/DeepObjectResourceExhaustionCustomizations.qll
+++ b/javascript/ql/lib/semmle/javascript/security/dataflow/DeepObjectResourceExhaustionCustomizations.qll
@@ -19,15 +19,11 @@ module DeepObjectResourceExhaustion {
     DataFlow::FlowLabel getAFlowLabel() { result = TaintedObject::label() }
   }
 
-  private class TaintedObjectSourceAsSource extends Source {
-    TaintedObjectSourceAsSource() { this instanceof TaintedObject::Source }
-
+  private class TaintedObjectSourceAsSource extends Source instanceof TaintedObject::Source {
     override DataFlow::FlowLabel getAFlowLabel() { result = TaintedObject::label() }
   }
 
-  private class RemoteFlowSourceAsSource extends Source {
-    RemoteFlowSourceAsSource() { this instanceof RemoteFlowSource }
-
+  private class RemoteFlowSourceAsSource extends Source instanceof RemoteFlowSource {
     override DataFlow::FlowLabel getAFlowLabel() { result.isTaint() }
   }
 
diff --git a/javascript/ql/lib/semmle/javascript/security/dataflow/DifferentKindsComparisonBypassCustomizations.qll b/javascript/ql/lib/semmle/javascript/security/dataflow/DifferentKindsComparisonBypassCustomizations.qll
index 956fe352854..ad1748d6f9f 100644
--- a/javascript/ql/lib/semmle/javascript/security/dataflow/DifferentKindsComparisonBypassCustomizations.qll
+++ b/javascript/ql/lib/semmle/javascript/security/dataflow/DifferentKindsComparisonBypassCustomizations.qll
@@ -30,19 +30,15 @@ module DifferentKindsComparisonBypass {
   /**
    * A HTTP request input that is suspicious to compare with another HTTP request input of a different kind.
    */
-  class RequestInputComparisonSource extends Source {
-    Http::RequestInputAccess input;
-
-    RequestInputComparisonSource() { input = this }
-
+  class RequestInputComparisonSource extends Source instanceof Http::RequestInputAccess {
     override predicate isSuspiciousToCompareWith(Source other) {
-      input.getKind() != other.(RequestInputComparisonSource).getInput().getKind()
+      super.getKind() != other.(RequestInputComparisonSource).getInput().getKind()
     }
 
     /**
      * Gets the HTTP request input of this source.
      */
-    private Http::RequestInputAccess getInput() { result = input }
+    private Http::RequestInputAccess getInput() { result = this }
   }
 
   /**
diff --git a/javascript/ql/lib/semmle/javascript/security/dataflow/DomBasedXssCustomizations.qll b/javascript/ql/lib/semmle/javascript/security/dataflow/DomBasedXssCustomizations.qll
index 18230c92037..079abf0f8d5 100644
--- a/javascript/ql/lib/semmle/javascript/security/dataflow/DomBasedXssCustomizations.qll
+++ b/javascript/ql/lib/semmle/javascript/security/dataflow/DomBasedXssCustomizations.qll
@@ -318,9 +318,7 @@ module DomBasedXss {
   }
 
   /** A source of remote user input, considered as a flow source for DOM-based XSS. */
-  class RemoteFlowSourceAsSource extends Source {
-    RemoteFlowSourceAsSource() { this instanceof RemoteFlowSource }
-  }
+  class RemoteFlowSourceAsSource extends Source instanceof RemoteFlowSource { }
 
   /**
    * A flow-label representing tainted values where the prefix is attacker controlled.
diff --git a/javascript/ql/lib/semmle/javascript/security/dataflow/ExceptionXssCustomizations.qll b/javascript/ql/lib/semmle/javascript/security/dataflow/ExceptionXssCustomizations.qll
index 2418962ef65..20a710a9da6 100644
--- a/javascript/ql/lib/semmle/javascript/security/dataflow/ExceptionXssCustomizations.qll
+++ b/javascript/ql/lib/semmle/javascript/security/dataflow/ExceptionXssCustomizations.qll
@@ -42,9 +42,7 @@ module ExceptionXss {
     NotYetThrown() { this = "NotYetThrown" }
   }
 
-  private class XssSourceAsSource extends Source {
-    XssSourceAsSource() { this instanceof Shared::Source }
-
+  private class XssSourceAsSource extends Source instanceof Shared::Source {
     override DataFlow::FlowLabel getAFlowLabel() { result instanceof NotYetThrown }
 
     override string getDescription() { result = "Exception text" }
diff --git a/javascript/ql/lib/semmle/javascript/security/dataflow/ExternalAPIUsedWithUntrustedDataCustomizations.qll b/javascript/ql/lib/semmle/javascript/security/dataflow/ExternalAPIUsedWithUntrustedDataCustomizations.qll
index 785677488e4..f17eab628ff 100644
--- a/javascript/ql/lib/semmle/javascript/security/dataflow/ExternalAPIUsedWithUntrustedDataCustomizations.qll
+++ b/javascript/ql/lib/semmle/javascript/security/dataflow/ExternalAPIUsedWithUntrustedDataCustomizations.qll
@@ -55,9 +55,7 @@ module ExternalApiUsedWithUntrustedData {
    */
   abstract class Sanitizer extends DataFlow::Node { }
 
-  private class RemoteFlowAsSource extends Source {
-    RemoteFlowAsSource() { this instanceof RemoteFlowSource }
-  }
+  private class RemoteFlowAsSource extends Source instanceof RemoteFlowSource { }
 
   /**
    * A package name whose entire API is considered "safe" for the purpose of this query.
diff --git a/javascript/ql/lib/semmle/javascript/security/dataflow/ExternalAPIUsedWithUntrustedDataQuery.qll b/javascript/ql/lib/semmle/javascript/security/dataflow/ExternalAPIUsedWithUntrustedDataQuery.qll
index 15c538113a1..c6b2f27b9a9 100644
--- a/javascript/ql/lib/semmle/javascript/security/dataflow/ExternalAPIUsedWithUntrustedDataQuery.qll
+++ b/javascript/ql/lib/semmle/javascript/security/dataflow/ExternalAPIUsedWithUntrustedDataQuery.qll
@@ -59,9 +59,7 @@ class Configuration extends TaintTracking::Configuration {
 }
 
 /** A node representing data being passed to an external API. */
-class ExternalApiDataNode extends DataFlow::Node {
-  ExternalApiDataNode() { this instanceof Sink }
-}
+class ExternalApiDataNode extends DataFlow::Node instanceof Sink { }
 
 /** DEPRECATED: Alias for ExternalApiDataNode */
 deprecated class ExternalAPIDataNode = ExternalApiDataNode;
diff --git a/javascript/ql/lib/semmle/javascript/security/dataflow/HardcodedDataInterpretedAsCodeCustomizations.qll b/javascript/ql/lib/semmle/javascript/security/dataflow/HardcodedDataInterpretedAsCodeCustomizations.qll
index 2d12f60552e..14d2c8fc148 100644
--- a/javascript/ql/lib/semmle/javascript/security/dataflow/HardcodedDataInterpretedAsCodeCustomizations.qll
+++ b/javascript/ql/lib/semmle/javascript/security/dataflow/HardcodedDataInterpretedAsCodeCustomizations.qll
@@ -49,9 +49,7 @@ module HardcodedDataInterpretedAsCode {
   /**
    * A code injection sink; hard-coded data should not flow here.
    */
-  private class DefaultCodeInjectionSink extends Sink {
-    DefaultCodeInjectionSink() { this instanceof CodeInjection::Sink }
-
+  private class DefaultCodeInjectionSink extends Sink instanceof CodeInjection::Sink {
     override DataFlow::FlowLabel getLabel() { result.isTaint() }
 
     override string getKind() { result = "Code" }
diff --git a/javascript/ql/lib/semmle/javascript/security/dataflow/HttpToFileAccessSpecific.qll b/javascript/ql/lib/semmle/javascript/security/dataflow/HttpToFileAccessSpecific.qll
index 7ed38fdf3f2..2b44de07a4c 100644
--- a/javascript/ql/lib/semmle/javascript/security/dataflow/HttpToFileAccessSpecific.qll
+++ b/javascript/ql/lib/semmle/javascript/security/dataflow/HttpToFileAccessSpecific.qll
@@ -8,9 +8,7 @@ private import HttpToFileAccessCustomizations::HttpToFileAccess
 /**
  * An access to a user-controlled HTTP request input, considered as a flow source for writing user-controlled data to files
  */
-private class RequestInputAccessAsSource extends Source {
-  RequestInputAccessAsSource() { this instanceof Http::RequestInputAccess }
-}
+private class RequestInputAccessAsSource extends Source instanceof Http::RequestInputAccess { }
 
 /** A response from a server, considered as a flow source for writing user-controlled data to files. */
 private class ServerResponseAsSource extends Source {
diff --git a/javascript/ql/lib/semmle/javascript/security/dataflow/ImproperCodeSanitizationCustomizations.qll b/javascript/ql/lib/semmle/javascript/security/dataflow/ImproperCodeSanitizationCustomizations.qll
index d6e6baa71bf..8968360d636 100644
--- a/javascript/ql/lib/semmle/javascript/security/dataflow/ImproperCodeSanitizationCustomizations.qll
+++ b/javascript/ql/lib/semmle/javascript/security/dataflow/ImproperCodeSanitizationCustomizations.qll
@@ -28,16 +28,12 @@ module ImproperCodeSanitization {
   /**
    * A call to an HTML sanitizer seen as a source for improper code sanitization
    */
-  class HtmlSanitizerCallAsSource extends Source {
-    HtmlSanitizerCallAsSource() { this instanceof HtmlSanitizerCall }
-  }
+  class HtmlSanitizerCallAsSource extends Source instanceof HtmlSanitizerCall { }
 
   /**
    * A call to `JSON.stringify()` seen as a source for improper code sanitization
    */
-  class JsonStringifyAsSource extends Source {
-    JsonStringifyAsSource() { this instanceof JsonStringifyCall }
-  }
+  class JsonStringifyAsSource extends Source instanceof JsonStringifyCall { }
 
   /** DEPRECATED: Alias for JsonStringifyAsSource */
   deprecated class JSONStringifyAsSource = JsonStringifyAsSource;
diff --git a/javascript/ql/lib/semmle/javascript/security/dataflow/IndirectCommandInjectionCustomizations.qll b/javascript/ql/lib/semmle/javascript/security/dataflow/IndirectCommandInjectionCustomizations.qll
index 108ce5d8e62..eed346d8d0b 100644
--- a/javascript/ql/lib/semmle/javascript/security/dataflow/IndirectCommandInjectionCustomizations.qll
+++ b/javascript/ql/lib/semmle/javascript/security/dataflow/IndirectCommandInjectionCustomizations.qll
@@ -25,8 +25,7 @@ module IndirectCommandInjection {
   /**
    * A source of user input from the command-line, considered as a flow source for command injection.
    */
-  private class CommandLineArgumentsArrayAsSource extends Source {
-    CommandLineArgumentsArrayAsSource() { this instanceof CommandLineArgumentsArray }
+  private class CommandLineArgumentsArrayAsSource extends Source instanceof CommandLineArgumentsArray {
   }
 
   /**
diff --git a/javascript/ql/lib/semmle/javascript/security/dataflow/InsecureRandomnessCustomizations.qll b/javascript/ql/lib/semmle/javascript/security/dataflow/InsecureRandomnessCustomizations.qll
index 37c5998df5f..d40e3a510c7 100644
--- a/javascript/ql/lib/semmle/javascript/security/dataflow/InsecureRandomnessCustomizations.qll
+++ b/javascript/ql/lib/semmle/javascript/security/dataflow/InsecureRandomnessCustomizations.qll
@@ -78,17 +78,13 @@ module InsecureRandomness {
    * A sensitive write, considered as a sink for random values that are not cryptographically
    * secure.
    */
-  class SensitiveWriteSink extends Sink {
-    SensitiveWriteSink() { this instanceof SensitiveWrite }
-  }
+  class SensitiveWriteSink extends Sink instanceof SensitiveWrite { }
 
   /**
    * A cryptographic key, considered as a sink for random values that are not cryptographically
    * secure.
    */
-  class CryptoKeySink extends Sink {
-    CryptoKeySink() { this instanceof CryptographicKey }
-  }
+  class CryptoKeySink extends Sink instanceof CryptographicKey { }
 
   /**
    * Holds if the step `pred` -> `succ` is an additional taint-step for random values that are not cryptographically secure.
diff --git a/javascript/ql/lib/semmle/javascript/security/dataflow/LogInjectionQuery.qll b/javascript/ql/lib/semmle/javascript/security/dataflow/LogInjectionQuery.qll
index 2cdfc2ed9f7..cfae5b83409 100644
--- a/javascript/ql/lib/semmle/javascript/security/dataflow/LogInjectionQuery.qll
+++ b/javascript/ql/lib/semmle/javascript/security/dataflow/LogInjectionQuery.qll
@@ -35,10 +35,8 @@ class LogInjectionConfiguration extends TaintTracking::Configuration {
 /**
  * A source of remote user controlled input.
  */
-class RemoteSource extends Source {
-  RemoteSource() {
-    this instanceof RemoteFlowSource and not this instanceof ClientSideRemoteFlowSource
-  }
+class RemoteSource extends Source instanceof RemoteFlowSource {
+  RemoteSource() { not this instanceof ClientSideRemoteFlowSource }
 }
 
 /**
@@ -60,9 +58,7 @@ class StringReplaceSanitizer extends Sanitizer {
 /**
  * A call to an HTML sanitizer is considered to sanitize the user input.
  */
-class HtmlSanitizer extends Sanitizer {
-  HtmlSanitizer() { this instanceof HtmlSanitizerCall }
-}
+class HtmlSanitizer extends Sanitizer instanceof HtmlSanitizerCall { }
 
 /**
  * A call to `JSON.stringify` or similar, seen as sanitizing log output.
diff --git a/javascript/ql/lib/semmle/javascript/security/dataflow/LoopBoundInjectionCustomizations.qll b/javascript/ql/lib/semmle/javascript/security/dataflow/LoopBoundInjectionCustomizations.qll
index 1c92ff66c5b..81f78fbfd47 100644
--- a/javascript/ql/lib/semmle/javascript/security/dataflow/LoopBoundInjectionCustomizations.qll
+++ b/javascript/ql/lib/semmle/javascript/security/dataflow/LoopBoundInjectionCustomizations.qll
@@ -169,9 +169,7 @@ module LoopBoundInjection {
   /**
    * A source of remote user input objects.
    */
-  class TaintedObjectSource extends Source {
-    TaintedObjectSource() { this instanceof TaintedObject::Source }
-  }
+  class TaintedObjectSource extends Source instanceof TaintedObject::Source { }
 
   /**
    * A sanitizer that blocks taint flow if the array is checked to be an array using an `isArray` function.
diff --git a/javascript/ql/lib/semmle/javascript/security/dataflow/MissingRateLimiting.qll b/javascript/ql/lib/semmle/javascript/security/dataflow/MissingRateLimiting.qll
index 7d3958d83d8..1eff7fd335e 100644
--- a/javascript/ql/lib/semmle/javascript/security/dataflow/MissingRateLimiting.qll
+++ b/javascript/ql/lib/semmle/javascript/security/dataflow/MissingRateLimiting.qll
@@ -80,30 +80,22 @@ abstract class ExpensiveAction extends DataFlow::Node {
 }
 
 /** A call to an authorization function, considered as an expensive action. */
-class AuthorizationCallAsExpensiveAction extends ExpensiveAction {
-  AuthorizationCallAsExpensiveAction() { this instanceof AuthorizationCall }
-
+class AuthorizationCallAsExpensiveAction extends ExpensiveAction instanceof AuthorizationCall {
   override string describe() { result = "authorization" }
 }
 
 /** A file system access, considered as an expensive action. */
-class FileSystemAccessAsExpensiveAction extends ExpensiveAction {
-  FileSystemAccessAsExpensiveAction() { this instanceof FileSystemAccess }
-
+class FileSystemAccessAsExpensiveAction extends ExpensiveAction instanceof FileSystemAccess {
   override string describe() { result = "a file system access" }
 }
 
 /** A system command execution, considered as an expensive action. */
-class SystemCommandExecutionAsExpensiveAction extends ExpensiveAction {
-  SystemCommandExecutionAsExpensiveAction() { this instanceof SystemCommandExecution }
-
+class SystemCommandExecutionAsExpensiveAction extends ExpensiveAction instanceof SystemCommandExecution {
   override string describe() { result = "a system command" }
 }
 
 /** A database access, considered as an expensive action. */
-class DatabaseAccessAsExpensiveAction extends ExpensiveAction {
-  DatabaseAccessAsExpensiveAction() { this instanceof DatabaseAccess }
-
+class DatabaseAccessAsExpensiveAction extends ExpensiveAction instanceof DatabaseAccess {
   override string describe() { result = "a database access" }
 }
 
@@ -208,8 +200,7 @@ class RateLimiterFlexibleRateLimiter extends DataFlow::FunctionNode {
 /**
  * A route-handler expression that is rate-limited by the `rate-limiter-flexible` package.
  */
-class RouteHandlerLimitedByRateLimiterFlexible extends RateLimitingMiddleware {
-  RouteHandlerLimitedByRateLimiterFlexible() { this instanceof RateLimiterFlexibleRateLimiter }
+class RouteHandlerLimitedByRateLimiterFlexible extends RateLimitingMiddleware instanceof RateLimiterFlexibleRateLimiter {
 }
 
 private class FastifyRateLimiter extends RateLimitingMiddleware {
diff --git a/javascript/ql/lib/semmle/javascript/security/dataflow/NosqlInjectionCustomizations.qll b/javascript/ql/lib/semmle/javascript/security/dataflow/NosqlInjectionCustomizations.qll
index 50dd7fc0053..988cb59a6e7 100644
--- a/javascript/ql/lib/semmle/javascript/security/dataflow/NosqlInjectionCustomizations.qll
+++ b/javascript/ql/lib/semmle/javascript/security/dataflow/NosqlInjectionCustomizations.qll
@@ -31,9 +31,7 @@ module NosqlInjection {
   abstract class Sanitizer extends DataFlow::Node { }
 
   /** A source of remote user input, considered as a flow source for NoSql injection. */
-  class RemoteFlowSourceAsSource extends Source {
-    RemoteFlowSourceAsSource() { this instanceof RemoteFlowSource }
-  }
+  class RemoteFlowSourceAsSource extends Source instanceof RemoteFlowSource { }
 
   /** An expression interpreted as a NoSql query, viewed as a sink. */
   class NosqlQuerySink extends Sink instanceof NoSql::Query { }
diff --git a/javascript/ql/lib/semmle/javascript/security/dataflow/PostMessageStarCustomizations.qll b/javascript/ql/lib/semmle/javascript/security/dataflow/PostMessageStarCustomizations.qll
index b35d564bcaf..736e47daaf6 100644
--- a/javascript/ql/lib/semmle/javascript/security/dataflow/PostMessageStarCustomizations.qll
+++ b/javascript/ql/lib/semmle/javascript/security/dataflow/PostMessageStarCustomizations.qll
@@ -44,9 +44,7 @@ module PostMessageStar {
   class SensitiveExprSource extends Source instanceof SensitiveNode { }
 
   /** A call to any function whose name suggests that it encodes or encrypts its arguments. */
-  class ProtectSanitizer extends Sanitizer {
-    ProtectSanitizer() { this instanceof ProtectCall }
-  }
+  class ProtectSanitizer extends Sanitizer instanceof ProtectCall { }
 
   /**
    * An expression sent using `postMessage` without restricting the target window origin.
diff --git a/javascript/ql/lib/semmle/javascript/security/dataflow/PrototypePollutingAssignmentCustomizations.qll b/javascript/ql/lib/semmle/javascript/security/dataflow/PrototypePollutingAssignmentCustomizations.qll
index 2a35489aa93..656c7bb3849 100644
--- a/javascript/ql/lib/semmle/javascript/security/dataflow/PrototypePollutingAssignmentCustomizations.qll
+++ b/javascript/ql/lib/semmle/javascript/security/dataflow/PrototypePollutingAssignmentCustomizations.qll
@@ -57,9 +57,7 @@ module PrototypePollutingAssignment {
   }
 
   /** A remote flow source or location.{hash,search} as a taint source. */
-  private class DefaultSource extends Source {
-    DefaultSource() { this instanceof RemoteFlowSource }
-
+  private class DefaultSource extends Source instanceof RemoteFlowSource {
     override string describe() { result = "user controlled input" }
   }
 
diff --git a/javascript/ql/lib/semmle/javascript/security/dataflow/PrototypePollutionCustomizations.qll b/javascript/ql/lib/semmle/javascript/security/dataflow/PrototypePollutionCustomizations.qll
index 162246dcf23..bd233e33ae1 100644
--- a/javascript/ql/lib/semmle/javascript/security/dataflow/PrototypePollutionCustomizations.qll
+++ b/javascript/ql/lib/semmle/javascript/security/dataflow/PrototypePollutionCustomizations.qll
@@ -68,18 +68,14 @@ module PrototypePollution {
    * Note that values from this type of source will need to flow through a `JSON.parse` call
    * in order to be flagged for prototype pollution.
    */
-  private class RemoteFlowAsSource extends Source {
-    RemoteFlowAsSource() { this instanceof RemoteFlowSource }
-
+  private class RemoteFlowAsSource extends Source instanceof RemoteFlowSource {
     override DataFlow::FlowLabel getAFlowLabel() { result.isTaint() }
   }
 
   /**
    * A source of user-controlled objects.
    */
-  private class TaintedObjectSource extends Source {
-    TaintedObjectSource() { this instanceof TaintedObject::Source }
-
+  private class TaintedObjectSource extends Source instanceof TaintedObject::Source {
     override DataFlow::FlowLabel getAFlowLabel() { result = TaintedObject::label() }
   }
 
diff --git a/javascript/ql/lib/semmle/javascript/security/dataflow/RegExpInjectionCustomizations.qll b/javascript/ql/lib/semmle/javascript/security/dataflow/RegExpInjectionCustomizations.qll
index e4555bb5ca8..ab9f3d90e02 100644
--- a/javascript/ql/lib/semmle/javascript/security/dataflow/RegExpInjectionCustomizations.qll
+++ b/javascript/ql/lib/semmle/javascript/security/dataflow/RegExpInjectionCustomizations.qll
@@ -26,11 +26,8 @@ module RegExpInjection {
    * A source of remote user input, considered as a flow source for regular
    * expression injection.
    */
-  class RemoteFlowSourceAsSource extends Source {
-    RemoteFlowSourceAsSource() {
-      this instanceof RemoteFlowSource and
-      not this instanceof ClientSideRemoteFlowSource
-    }
+  class RemoteFlowSourceAsSource extends Source instanceof RemoteFlowSource {
+    RemoteFlowSourceAsSource() { not this instanceof ClientSideRemoteFlowSource }
   }
 
   /**
diff --git a/javascript/ql/lib/semmle/javascript/security/dataflow/RemotePropertyInjectionCustomizations.qll b/javascript/ql/lib/semmle/javascript/security/dataflow/RemotePropertyInjectionCustomizations.qll
index 8af60e6e529..8923946f831 100644
--- a/javascript/ql/lib/semmle/javascript/security/dataflow/RemotePropertyInjectionCustomizations.qll
+++ b/javascript/ql/lib/semmle/javascript/security/dataflow/RemotePropertyInjectionCustomizations.qll
@@ -34,9 +34,7 @@ module RemotePropertyInjection {
    * A source of remote user input, considered as a flow source for remote property
    * injection.
    */
-  class RemoteFlowSourceAsSource extends Source {
-    RemoteFlowSourceAsSource() { this instanceof RemoteFlowSource }
-  }
+  class RemoteFlowSourceAsSource extends Source instanceof RemoteFlowSource { }
 
   /**
    * A sink for property writes with dynamically computed property name.
diff --git a/javascript/ql/lib/semmle/javascript/security/dataflow/ShellCommandInjectionFromEnvironmentCustomizations.qll b/javascript/ql/lib/semmle/javascript/security/dataflow/ShellCommandInjectionFromEnvironmentCustomizations.qll
index 178c396ad8c..87d7d340afd 100644
--- a/javascript/ql/lib/semmle/javascript/security/dataflow/ShellCommandInjectionFromEnvironmentCustomizations.qll
+++ b/javascript/ql/lib/semmle/javascript/security/dataflow/ShellCommandInjectionFromEnvironmentCustomizations.qll
@@ -27,9 +27,7 @@ module ShellCommandInjectionFromEnvironment {
   abstract class Sanitizer extends DataFlow::Node { }
 
   /** An file name from the local file system, considered as a flow source for command injection. */
-  class FileNameSourceAsSource extends Source {
-    FileNameSourceAsSource() { this instanceof FileNameSource }
-
+  class FileNameSourceAsSource extends Source instanceof FileNameSource {
     override string getSourceType() { result = "file name" }
   }
 
diff --git a/javascript/ql/lib/semmle/javascript/security/dataflow/SqlInjectionCustomizations.qll b/javascript/ql/lib/semmle/javascript/security/dataflow/SqlInjectionCustomizations.qll
index dd6f5d79ac8..96dc5978708 100644
--- a/javascript/ql/lib/semmle/javascript/security/dataflow/SqlInjectionCustomizations.qll
+++ b/javascript/ql/lib/semmle/javascript/security/dataflow/SqlInjectionCustomizations.qll
@@ -23,9 +23,7 @@ module SqlInjection {
   abstract class Sanitizer extends DataFlow::Node { }
 
   /** A source of remote user input, considered as a flow source for string based query injection. */
-  class RemoteFlowSourceAsSource extends Source {
-    RemoteFlowSourceAsSource() { this instanceof RemoteFlowSource }
-  }
+  class RemoteFlowSourceAsSource extends Source instanceof RemoteFlowSource { }
 
   /** An SQL expression passed to an API call that executes SQL. */
   class SqlInjectionExprSink extends Sink instanceof SQL::SqlString { }
@@ -36,9 +34,7 @@ module SqlInjection {
   }
 
   /** An GraphQL expression passed to an API call that executes GraphQL. */
-  class GraphqlInjectionSink extends Sink {
-    GraphqlInjectionSink() { this instanceof GraphQL::GraphQLString }
-  }
+  class GraphqlInjectionSink extends Sink instanceof GraphQL::GraphQLString { }
 
   /**
    * An LDAPjs sink.
diff --git a/javascript/ql/lib/semmle/javascript/security/dataflow/StoredXssCustomizations.qll b/javascript/ql/lib/semmle/javascript/security/dataflow/StoredXssCustomizations.qll
index 6e50de8332b..2aa5b444f5b 100644
--- a/javascript/ql/lib/semmle/javascript/security/dataflow/StoredXssCustomizations.qll
+++ b/javascript/ql/lib/semmle/javascript/security/dataflow/StoredXssCustomizations.qll
@@ -27,13 +27,10 @@ module StoredXss {
   }
 
   /** A file name, considered as a flow source for stored XSS. */
-  class FileNameSourceAsSource extends Source {
-    FileNameSourceAsSource() { this instanceof FileNameSource }
-  }
+  class FileNameSourceAsSource extends Source instanceof FileNameSource { }
 
   /** An instance of user-controlled torrent information, considered as a flow source for stored XSS. */
-  class UserControlledTorrentInfoAsSource extends Source {
-    UserControlledTorrentInfoAsSource() { this instanceof ParseTorrent::UserControlledTorrentInfo }
+  class UserControlledTorrentInfoAsSource extends Source instanceof ParseTorrent::UserControlledTorrentInfo {
   }
 
   /**
diff --git a/javascript/ql/lib/semmle/javascript/security/dataflow/TaintedPathCustomizations.qll b/javascript/ql/lib/semmle/javascript/security/dataflow/TaintedPathCustomizations.qll
index c463b1d3ecb..60d60fbb279 100644
--- a/javascript/ql/lib/semmle/javascript/security/dataflow/TaintedPathCustomizations.qll
+++ b/javascript/ql/lib/semmle/javascript/security/dataflow/TaintedPathCustomizations.qll
@@ -345,21 +345,16 @@ module TaintedPath {
    *
    * This is relevant for paths that are known to be normalized.
    */
-  class StartsWithDotDotSanitizer extends BarrierGuardNode {
-    StringOps::StartsWith startsWith;
-
-    StartsWithDotDotSanitizer() {
-      this = startsWith and
-      isDotDotSlashPrefix(startsWith.getSubstring())
-    }
+  class StartsWithDotDotSanitizer extends BarrierGuardNode instanceof StringOps::StartsWith {
+    StartsWithDotDotSanitizer() { isDotDotSlashPrefix(super.getSubstring()) }
 
     override predicate blocks(boolean outcome, Expr e, DataFlow::FlowLabel label) {
       // Sanitize in the false case for:
       //   .startsWith(".")
       //   .startsWith("..")
       //   .startsWith("../")
-      outcome = startsWith.getPolarity().booleanNot() and
-      e = startsWith.getBaseString().asExpr() and
+      outcome = super.getPolarity().booleanNot() and
+      e = super.getBaseString().asExpr() and
       exists(Label::PosixPath posixPath | posixPath = label |
         posixPath.isNormalized() and
         posixPath.isRelative()
diff --git a/javascript/ql/lib/semmle/javascript/security/dataflow/TemplateObjectInjectionCustomizations.qll b/javascript/ql/lib/semmle/javascript/security/dataflow/TemplateObjectInjectionCustomizations.qll
index 6191c389873..c0499be7d2e 100644
--- a/javascript/ql/lib/semmle/javascript/security/dataflow/TemplateObjectInjectionCustomizations.qll
+++ b/javascript/ql/lib/semmle/javascript/security/dataflow/TemplateObjectInjectionCustomizations.qll
@@ -30,15 +30,11 @@ module TemplateObjectInjection {
    */
   abstract class Sanitizer extends DataFlow::Node { }
 
-  private class TaintedObjectSourceAsSource extends Source {
-    TaintedObjectSourceAsSource() { this instanceof TaintedObject::Source }
-
+  private class TaintedObjectSourceAsSource extends Source instanceof TaintedObject::Source {
     override DataFlow::FlowLabel getAFlowLabel() { result = TaintedObject::label() }
   }
 
-  private class RemoteFlowSourceAsSource extends Source {
-    RemoteFlowSourceAsSource() { this instanceof RemoteFlowSource }
-
+  private class RemoteFlowSourceAsSource extends Source instanceof RemoteFlowSource {
     override DataFlow::FlowLabel getAFlowLabel() { result.isTaint() }
   }
 
diff --git a/javascript/ql/lib/semmle/javascript/security/dataflow/UnsafeDeserializationCustomizations.qll b/javascript/ql/lib/semmle/javascript/security/dataflow/UnsafeDeserializationCustomizations.qll
index 995e7e14411..0da4a962c8c 100644
--- a/javascript/ql/lib/semmle/javascript/security/dataflow/UnsafeDeserializationCustomizations.qll
+++ b/javascript/ql/lib/semmle/javascript/security/dataflow/UnsafeDeserializationCustomizations.qll
@@ -23,9 +23,7 @@ module UnsafeDeserialization {
   abstract class Sanitizer extends DataFlow::Node { }
 
   /** A source of remote user input, considered as a flow source for unsafe deserialization. */
-  class RemoteFlowSourceAsSource extends Source {
-    RemoteFlowSourceAsSource() { this instanceof RemoteFlowSource }
-  }
+  class RemoteFlowSourceAsSource extends Source instanceof RemoteFlowSource { }
 
   /**
    * An expression passed to one of the unsafe load functions of the `js-yaml` package.
diff --git a/javascript/ql/lib/semmle/javascript/security/dataflow/UnsafeDynamicMethodAccessCustomizations.qll b/javascript/ql/lib/semmle/javascript/security/dataflow/UnsafeDynamicMethodAccessCustomizations.qll
index 9fed42d5bdd..ec365b7d4b2 100644
--- a/javascript/ql/lib/semmle/javascript/security/dataflow/UnsafeDynamicMethodAccessCustomizations.qll
+++ b/javascript/ql/lib/semmle/javascript/security/dataflow/UnsafeDynamicMethodAccessCustomizations.qll
@@ -54,9 +54,7 @@ module UnsafeDynamicMethodAccess {
   /**
    * A source of remote user input, considered as a source for unsafe dynamic method access.
    */
-  class RemoteFlowSourceAsSource extends Source {
-    RemoteFlowSourceAsSource() { this instanceof RemoteFlowSource }
-  }
+  class RemoteFlowSourceAsSource extends Source instanceof RemoteFlowSource { }
 
   /**
    * A function invocation of an unsafe function, as a sink for remote unsafe dynamic method access.
diff --git a/javascript/ql/lib/semmle/javascript/security/dataflow/UnsafeJQueryPluginCustomizations.qll b/javascript/ql/lib/semmle/javascript/security/dataflow/UnsafeJQueryPluginCustomizations.qll
index 19d5988ae80..b2c62449ab4 100644
--- a/javascript/ql/lib/semmle/javascript/security/dataflow/UnsafeJQueryPluginCustomizations.qll
+++ b/javascript/ql/lib/semmle/javascript/security/dataflow/UnsafeJQueryPluginCustomizations.qll
@@ -175,10 +175,8 @@ module UnsafeJQueryPlugin {
   /**
    * An argument that may act as an HTML fragment rather than a CSS selector, as a sink for remote unsafe jQuery plugins.
    */
-  class AmbiguousHtmlOrSelectorArgumentAsSink extends Sink {
-    AmbiguousHtmlOrSelectorArgumentAsSink() {
-      this instanceof AmbiguousHtmlOrSelectorArgument and not isLikelyIntentionalHtmlSink(this)
-    }
+  class AmbiguousHtmlOrSelectorArgumentAsSink extends Sink instanceof AmbiguousHtmlOrSelectorArgument {
+    AmbiguousHtmlOrSelectorArgumentAsSink() { not isLikelyIntentionalHtmlSink(this) }
   }
 
   /**
diff --git a/javascript/ql/lib/semmle/javascript/security/dataflow/UnvalidatedDynamicMethodCallCustomizations.qll b/javascript/ql/lib/semmle/javascript/security/dataflow/UnvalidatedDynamicMethodCallCustomizations.qll
index 2353cf68c50..704bd4a94a5 100644
--- a/javascript/ql/lib/semmle/javascript/security/dataflow/UnvalidatedDynamicMethodCallCustomizations.qll
+++ b/javascript/ql/lib/semmle/javascript/security/dataflow/UnvalidatedDynamicMethodCallCustomizations.qll
@@ -60,9 +60,7 @@ module UnvalidatedDynamicMethodCall {
   /**
    * A source of remote user input, considered as a source for unvalidated dynamic method calls.
    */
-  class RemoteFlowSourceAsSource extends Source {
-    RemoteFlowSourceAsSource() { this instanceof RemoteFlowSource }
-  }
+  class RemoteFlowSourceAsSource extends Source instanceof RemoteFlowSource { }
 
   /**
    * The page URL considered as a flow source for unvalidated dynamic method calls.
diff --git a/javascript/ql/lib/semmle/javascript/security/dataflow/XmlBombCustomizations.qll b/javascript/ql/lib/semmle/javascript/security/dataflow/XmlBombCustomizations.qll
index 7d9755ca7a5..9e031fb19fb 100644
--- a/javascript/ql/lib/semmle/javascript/security/dataflow/XmlBombCustomizations.qll
+++ b/javascript/ql/lib/semmle/javascript/security/dataflow/XmlBombCustomizations.qll
@@ -24,9 +24,7 @@ module XmlBomb {
   abstract class Sanitizer extends DataFlow::Node { }
 
   /** A source of remote user input, considered as a flow source for XML bomb vulnerabilities. */
-  class RemoteFlowSourceAsSource extends Source {
-    RemoteFlowSourceAsSource() { this instanceof RemoteFlowSource }
-  }
+  class RemoteFlowSourceAsSource extends Source instanceof RemoteFlowSource { }
 
   /**
    * An access to `document.location`, considered as a flow source for XML bomb vulnerabilities.
diff --git a/javascript/ql/lib/semmle/javascript/security/dataflow/XpathInjectionCustomizations.qll b/javascript/ql/lib/semmle/javascript/security/dataflow/XpathInjectionCustomizations.qll
index 14b423f7d42..6eb3f12d16a 100644
--- a/javascript/ql/lib/semmle/javascript/security/dataflow/XpathInjectionCustomizations.qll
+++ b/javascript/ql/lib/semmle/javascript/security/dataflow/XpathInjectionCustomizations.qll
@@ -24,9 +24,7 @@ module XpathInjection {
   abstract class Sanitizer extends DataFlow::Node { }
 
   /** A source of remote user input, considered as a flow source for XPath injection. */
-  class RemoteSource extends Source {
-    RemoteSource() { this instanceof RemoteFlowSource }
-  }
+  class RemoteSource extends Source instanceof RemoteFlowSource { }
 
   /**
    * The `expression` argument to `xpath.parse` or `xpath.select` (and similar) from
diff --git a/javascript/ql/lib/semmle/javascript/security/dataflow/XxeCustomizations.qll b/javascript/ql/lib/semmle/javascript/security/dataflow/XxeCustomizations.qll
index 0b54c3bf301..9a225e8f2e4 100644
--- a/javascript/ql/lib/semmle/javascript/security/dataflow/XxeCustomizations.qll
+++ b/javascript/ql/lib/semmle/javascript/security/dataflow/XxeCustomizations.qll
@@ -24,9 +24,7 @@ module Xxe {
   abstract class Sanitizer extends DataFlow::Node { }
 
   /** A source of remote user input, considered as a flow source for XXE vulnerabilities. */
-  class RemoteFlowSourceAsSource extends Source {
-    RemoteFlowSourceAsSource() { this instanceof RemoteFlowSource }
-  }
+  class RemoteFlowSourceAsSource extends Source instanceof RemoteFlowSource { }
 
   /**
    * An access to `document.location`, considered as a flow source for XXE vulnerabilities.
diff --git a/javascript/ql/src/AlertSuppression.ql b/javascript/ql/src/AlertSuppression.ql
index 4366eb3ba7e..2a7ae3bdc50 100644
--- a/javascript/ql/src/AlertSuppression.ql
+++ b/javascript/ql/src/AlertSuppression.ql
@@ -52,9 +52,7 @@ class SuppressionComment extends Locatable {
 /**
  * The scope of an alert suppression comment.
  */
-class SuppressionScope extends @locatable {
-  SuppressionScope() { this instanceof SuppressionComment }
-
+class SuppressionScope extends @locatable instanceof SuppressionComment {
   /** Gets a suppression comment with this scope. */
   SuppressionComment getSuppressionComment() { result = this }
 
@@ -68,7 +66,7 @@ class SuppressionScope extends @locatable {
   predicate hasLocationInfo(
     string filepath, int startline, int startcolumn, int endline, int endcolumn
   ) {
-    this.(SuppressionComment).covers(filepath, startline, startcolumn, endline, endcolumn)
+    super.covers(filepath, startline, startcolumn, endline, endcolumn)
   }
 
   /** Gets a textual representation of this element. */
diff --git a/python/ql/lib/semmle/python/SpecialMethods.qll b/python/ql/lib/semmle/python/SpecialMethods.qll
index eb960005f4d..a5832ae45ae 100644
--- a/python/ql/lib/semmle/python/SpecialMethods.qll
+++ b/python/ql/lib/semmle/python/SpecialMethods.qll
@@ -11,9 +11,7 @@
 private import python
 
 /** A control flow node which might correspond to a special method call. */
-class PotentialSpecialMethodCallNode extends ControlFlowNode {
-  PotentialSpecialMethodCallNode() { this instanceof SpecialMethod::Potential }
-}
+class PotentialSpecialMethodCallNode extends ControlFlowNode instanceof SpecialMethod::Potential { }
 
 /**
  * Machinery for detecting special method calls.
diff --git a/python/ql/lib/semmle/python/dataflow/new/RemoteFlowSources.qll b/python/ql/lib/semmle/python/dataflow/new/RemoteFlowSources.qll
index 63b0f9c733b..4ad0aee1f31 100644
--- a/python/ql/lib/semmle/python/dataflow/new/RemoteFlowSources.qll
+++ b/python/ql/lib/semmle/python/dataflow/new/RemoteFlowSources.qll
@@ -15,13 +15,9 @@ private import semmle.python.Concepts
  * Extend this class to refine existing API models. If you want to model new APIs,
  * extend `RemoteFlowSource::Range` instead.
  */
-class RemoteFlowSource extends DataFlow::Node {
-  RemoteFlowSource::Range self;
-
-  RemoteFlowSource() { this = self }
-
+class RemoteFlowSource extends DataFlow::Node instanceof RemoteFlowSource::Range {
   /** Gets a string that describes the type of this remote flow source. */
-  string getSourceType() { result = self.getSourceType() }
+  string getSourceType() { result = super.getSourceType() }
 }
 
 /** Provides a class for modeling new sources of remote user input. */
diff --git a/python/ql/lib/semmle/python/dataflow/new/SensitiveDataSources.qll b/python/ql/lib/semmle/python/dataflow/new/SensitiveDataSources.qll
index 926ae46d33e..0ef65c478d5 100644
--- a/python/ql/lib/semmle/python/dataflow/new/SensitiveDataSources.qll
+++ b/python/ql/lib/semmle/python/dataflow/new/SensitiveDataSources.qll
@@ -21,11 +21,8 @@ module SensitiveDataClassification = SensitiveDataHeuristics::SensitiveDataClass
  * Extend this class to refine existing API models. If you want to model new APIs,
  * extend `SensitiveDataSource::Range` instead.
  */
-class SensitiveDataSource extends DataFlow::Node {
-  SensitiveDataSource::Range range;
-
+class SensitiveDataSource extends DataFlow::Node instanceof SensitiveDataSource::Range {
   SensitiveDataSource() {
-    this = range and
     // ignore sensitive password sources in getpass.py, that can escape through `getpass.getpass()` return value,
     // since `getpass.getpass()` is considered a source itself.
     not exists(Module getpass |
@@ -39,7 +36,7 @@ class SensitiveDataSource extends DataFlow::Node {
   /**
    * Gets the classification of the sensitive data.
    */
-  SensitiveDataClassification getClassification() { result = range.getClassification() }
+  SensitiveDataClassification getClassification() { result = super.getClassification() }
 }
 
 /** Provides a class for modeling new sources of sensitive data, such as secrets, certificates, or passwords. */
diff --git a/python/ql/lib/semmle/python/dataflow/new/internal/IterableUnpacking.qll b/python/ql/lib/semmle/python/dataflow/new/internal/IterableUnpacking.qll
index c0c62e80315..9f4dfed0871 100644
--- a/python/ql/lib/semmle/python/dataflow/new/internal/IterableUnpacking.qll
+++ b/python/ql/lib/semmle/python/dataflow/new/internal/IterableUnpacking.qll
@@ -207,16 +207,13 @@ class AssignmentTarget extends ControlFlowNode {
 }
 
 /** A direct (or top-level) target of an unpacking assignment. */
-class UnpackingAssignmentDirectTarget extends ControlFlowNode {
+class UnpackingAssignmentDirectTarget extends ControlFlowNode instanceof SequenceNode {
   Expr value;
 
   UnpackingAssignmentDirectTarget() {
-    this instanceof SequenceNode and
-    (
-      value = this.(AssignmentTarget).getValue()
-      or
-      value = this.(ForTarget).getSource()
-    )
+    value = this.(AssignmentTarget).getValue()
+    or
+    value = this.(ForTarget).getSource()
   }
 
   Expr getValue() { result = value }
diff --git a/python/ql/lib/semmle/python/dataflow/old/Implementation.qll b/python/ql/lib/semmle/python/dataflow/old/Implementation.qll
index 76510b5f712..434df3df26d 100644
--- a/python/ql/lib/semmle/python/dataflow/old/Implementation.qll
+++ b/python/ql/lib/semmle/python/dataflow/old/Implementation.qll
@@ -197,9 +197,7 @@ class TaintTrackingNode extends TTaintTrackingNode {
  * It is implemented as a separate class for clarity and to keep the code
  * in `TaintTracking::Configuration` simpler.
  */
-class TaintTrackingImplementation extends string {
-  TaintTrackingImplementation() { this instanceof TaintTracking::Configuration }
-
+class TaintTrackingImplementation extends string instanceof TaintTracking::Configuration {
   /**
    * Hold if there is a flow from `source`, which is a taint source, to
    * `sink`, which is a taint sink, with this configuration.
@@ -218,7 +216,7 @@ class TaintTrackingImplementation extends string {
   ) {
     context = TNoParam() and
     path = TNoAttribute() and
-    this.(TaintTracking::Configuration).isSource(node, kind)
+    super.isSource(node, kind)
   }
 
   /** Hold if `source` is a source of taint. */
@@ -234,7 +232,7 @@ class TaintTrackingImplementation extends string {
     exists(DataFlow::Node node, AttributePath path, TaintKind kind |
       sink = TTaintTrackingNode_(node, _, path, kind, this) and
       path = TNoAttribute() and
-      this.(TaintTracking::Configuration).isSink(node, kind)
+      super.isSink(node, kind)
     )
   }
 
@@ -259,11 +257,11 @@ class TaintTrackingImplementation extends string {
   ) {
     this.unprunedStep(src, node, context, path, kind, edgeLabel) and
     node.getBasicBlock().likelyReachable() and
-    not this.(TaintTracking::Configuration).isBarrier(node) and
+    not super.isBarrier(node) and
     (
       not path = TNoAttribute()
       or
-      not this.(TaintTracking::Configuration).isBarrier(node, kind) and
+      not super.isBarrier(node, kind) and
       exists(DataFlow::Node srcnode, TaintKind srckind |
         src = TTaintTrackingNode_(srcnode, _, _, srckind, this) and
         not this.prunedEdge(srcnode, node, srckind, kind)
@@ -274,9 +272,9 @@ class TaintTrackingImplementation extends string {
   private predicate prunedEdge(
     DataFlow::Node srcnode, DataFlow::Node destnode, TaintKind srckind, TaintKind destkind
   ) {
-    this.(TaintTracking::Configuration).isBarrierEdge(srcnode, destnode, srckind, destkind)
+    super.isBarrierEdge(srcnode, destnode, srckind, destkind)
     or
-    srckind = destkind and this.(TaintTracking::Configuration).isBarrierEdge(srcnode, destnode)
+    srckind = destkind and super.isBarrierEdge(srcnode, destnode)
   }
 
   private predicate unprunedStep(
@@ -314,14 +312,14 @@ class TaintTrackingImplementation extends string {
     this.legacyExtensionStep(src, node, context, path, kind, edgeLabel)
     or
     exists(DataFlow::Node srcnode, TaintKind srckind |
-      this.(TaintTracking::Configuration).isAdditionalFlowStep(srcnode, node, srckind, kind) and
+      super.isAdditionalFlowStep(srcnode, node, srckind, kind) and
       src = TTaintTrackingNode_(srcnode, context, path, srckind, this) and
       path.noAttribute() and
       edgeLabel = "additional with kind"
     )
     or
     exists(DataFlow::Node srcnode |
-      this.(TaintTracking::Configuration).isAdditionalFlowStep(srcnode, node) and
+      super.isAdditionalFlowStep(srcnode, node) and
       src = TTaintTrackingNode_(srcnode, context, path, kind, this) and
       path.noAttribute() and
       edgeLabel = "additional"
@@ -618,7 +616,7 @@ class TaintTrackingImplementation extends string {
     TaintKind kind, string edgeLabel
   ) {
     exists(TaintTracking::Extension extension, DataFlow::Node srcnode, TaintKind srckind |
-      this.(TaintTracking::Configuration).isExtension(extension) and
+      super.isExtension(extension) and
       src = TTaintTrackingNode_(srcnode, context, path, srckind, this) and
       srcnode.asCfgNode() = extension
     |
@@ -646,9 +644,7 @@ class TaintTrackingImplementation extends string {
  * Another taint-tracking class to help partition the code for clarity
  * This class handle tracking of ESSA variables.
  */
-private class EssaTaintTracking extends string {
-  EssaTaintTracking() { this instanceof TaintTracking::Configuration }
-
+private class EssaTaintTracking extends string instanceof TaintTracking::Configuration {
   pragma[noinline]
   predicate taintedDefinition(
     TaintTrackingNode src, EssaDefinition defn, TaintTrackingContext context, AttributePath path,
@@ -691,7 +687,7 @@ private class EssaTaintTracking extends string {
       defn = phi.asVariable().getDefinition() and
       predvar = defn.getInput(pred) and
       not pred.unlikelySuccessor(defn.getBasicBlock()) and
-      not this.(TaintTracking::Configuration).isBarrierEdge(srcnode, phi) and
+      not super.isBarrierEdge(srcnode, phi) and
       srcnode.asVariable() = predvar
     )
   }
@@ -781,7 +777,7 @@ private class EssaTaintTracking extends string {
     exists(DataFlow::Node srcnode |
       src = TTaintTrackingNode_(srcnode, context, path, kind, this) and
       srcnode.asVariable() = defn.getInput() and
-      not this.(TaintTracking::Configuration).isBarrierTest(defn.getTest(), defn.getSense())
+      not super.isBarrierTest(defn.getTest(), defn.getSense())
     )
   }
 
@@ -801,7 +797,7 @@ private class EssaTaintTracking extends string {
   ) {
     exists(DataFlow::Node srcnode, ControlFlowNode use |
       src = TTaintTrackingNode_(srcnode, context, path, kind, this) and
-      not this.(TaintTracking::Configuration).isBarrierTest(defn.getTest(), defn.getSense()) and
+      not super.isBarrierTest(defn.getTest(), defn.getSense()) and
       defn.getSense() = this.testEvaluates(defn, defn.getTest(), use, src)
     )
   }
@@ -815,7 +811,7 @@ private class EssaTaintTracking extends string {
       src = TTaintTrackingNode_(srcnode, context, path, kind, this) and
       piNodeTestAndUse(defn, test, use) and
       srcnode.asVariable() = defn.getInput() and
-      not this.(TaintTracking::Configuration).isBarrierTest(test, defn.getSense()) and
+      not super.isBarrierTest(test, defn.getSense()) and
       testEvaluatesMaybe(test, use)
     )
   }
diff --git a/python/ql/lib/semmle/python/essa/Definitions.qll b/python/ql/lib/semmle/python/essa/Definitions.qll
index be76a7069d4..4ffbee38254 100644
--- a/python/ql/lib/semmle/python/essa/Definitions.qll
+++ b/python/ql/lib/semmle/python/essa/Definitions.qll
@@ -205,22 +205,19 @@ class BuiltinVariable extends SsaSourceVariable {
   override CallNode redefinedAtCallSite() { none() }
 }
 
-class ModuleVariable extends SsaSourceVariable {
+class ModuleVariable extends SsaSourceVariable instanceof GlobalVariable {
   ModuleVariable() {
-    this instanceof GlobalVariable and
-    (
-      exists(this.(Variable).getAStore())
-      or
-      this.(Variable).getId() = "__name__"
-      or
-      this.(Variable).getId() = "__package__"
-      or
-      exists(ImportStar is | is.getScope() = this.(Variable).getScope())
-    )
+    exists(this.(Variable).getAStore())
+    or
+    this.(Variable).getId() = "__name__"
+    or
+    this.(Variable).getId() = "__package__"
+    or
+    exists(ImportStar is | is.getScope() = this.(Variable).getScope())
   }
 
   pragma[nomagic]
-  private Scope scope_as_global_variable() { result = this.(GlobalVariable).getScope() }
+  private Scope scope_as_global_variable() { result = GlobalVariable.super.getScope() }
 
   pragma[noinline]
   CallNode global_variable_callnode() { result.getScope() = this.scope_as_global_variable() }
@@ -263,7 +260,7 @@ class ModuleVariable extends SsaSourceVariable {
       class_with_global_metaclass(s, this)
       or
       /* Variable is used in scope */
-      this.(GlobalVariable).getAUse().getScope() = s
+      GlobalVariable.super.getAUse().getScope() = s
     )
     or
     exists(ImportTimeScope scope | scope.entryEdge(_, result) |
diff --git a/python/ql/lib/semmle/python/frameworks/Aiohttp.qll b/python/ql/lib/semmle/python/frameworks/Aiohttp.qll
index bf361083867..d9a1f4c519f 100644
--- a/python/ql/lib/semmle/python/frameworks/Aiohttp.qll
+++ b/python/ql/lib/semmle/python/frameworks/Aiohttp.qll
@@ -59,24 +59,24 @@ module AiohttpWebModel {
    * Extend this class to refine existing API models. If you want to model new APIs,
    * extend `AiohttpRouteSetup::Range` instead.
    */
-  class AiohttpRouteSetup extends Http::Server::RouteSetup::Range {
-    AiohttpRouteSetup::Range range;
-
-    AiohttpRouteSetup() { this = range }
-
+  class AiohttpRouteSetup extends Http::Server::RouteSetup::Range instanceof AiohttpRouteSetup::Range {
     override Parameter getARoutedParameter() { none() }
 
     override string getFramework() { result = "aiohttp.web" }
 
     /** Gets the argument specifying the handler (either a coroutine or a view-class). */
-    DataFlow::Node getHandlerArg() { result = range.getHandlerArg() }
+    DataFlow::Node getHandlerArg() { result = super.getHandlerArg() }
 
-    override DataFlow::Node getUrlPatternArg() { result = range.getUrlPatternArg() }
+    override DataFlow::Node getUrlPatternArg() {
+      result = AiohttpRouteSetup::Range.super.getUrlPatternArg()
+    }
 
     /** Gets the view-class that is referenced in the view-class handler argument, if any. */
-    Class getViewClass() { result = range.getViewClass() }
+    Class getViewClass() { result = super.getViewClass() }
 
-    override Function getARequestHandler() { result = range.getARequestHandler() }
+    override Function getARequestHandler() {
+      result = AiohttpRouteSetup::Range.super.getARequestHandler()
+    }
   }
 
   /** Provides a class for modeling new aiohttp.web route setups. */
diff --git a/python/ql/lib/semmle/python/frameworks/Django.qll b/python/ql/lib/semmle/python/frameworks/Django.qll
index e67bb8cf385..db9c7bba763 100644
--- a/python/ql/lib/semmle/python/frameworks/Django.qll
+++ b/python/ql/lib/semmle/python/frameworks/Django.qll
@@ -2526,11 +2526,10 @@ module PrivateDjango {
    *
    * Needs this subclass to be considered a RegexString.
    */
-  private class DjangoRouteRegex extends RegexString {
+  private class DjangoRouteRegex extends RegexString instanceof StrConst {
     DjangoRegexRouteSetup rePathCall;
 
     DjangoRouteRegex() {
-      this instanceof StrConst and
       rePathCall.getUrlPatternArg().getALocalSource() = DataFlow::exprNode(this)
     }
 
diff --git a/python/ql/lib/semmle/python/frameworks/Tornado.qll b/python/ql/lib/semmle/python/frameworks/Tornado.qll
index 9cf258babe9..f78adca8074 100644
--- a/python/ql/lib/semmle/python/frameworks/Tornado.qll
+++ b/python/ql/lib/semmle/python/frameworks/Tornado.qll
@@ -385,13 +385,10 @@ module Tornado {
    *
    * Needs this subclass to be considered a RegexString.
    */
-  private class TornadoRouteRegex extends RegexString {
+  private class TornadoRouteRegex extends RegexString instanceof StrConst {
     TornadoRouteSetup setup;
 
-    TornadoRouteRegex() {
-      this instanceof StrConst and
-      setup.getUrlPatternArg().getALocalSource() = DataFlow::exprNode(this)
-    }
+    TornadoRouteRegex() { setup.getUrlPatternArg().getALocalSource() = DataFlow::exprNode(this) }
 
     TornadoRouteSetup getRouteSetup() { result = setup }
   }
diff --git a/python/ql/lib/semmle/python/security/dataflow/StackTraceExposureCustomizations.qll b/python/ql/lib/semmle/python/security/dataflow/StackTraceExposureCustomizations.qll
index 09f84327a63..9a31dcc2a10 100644
--- a/python/ql/lib/semmle/python/security/dataflow/StackTraceExposureCustomizations.qll
+++ b/python/ql/lib/semmle/python/security/dataflow/StackTraceExposureCustomizations.qll
@@ -41,9 +41,7 @@ module StackTraceExposure {
   /**
    * A source of exception info, considered as a flow source.
    */
-  class ExceptionInfoAsSource extends Source {
-    ExceptionInfoAsSource() { this instanceof ExceptionInfo }
-  }
+  class ExceptionInfoAsSource extends Source instanceof ExceptionInfo { }
 
   /**
    * The body of a HTTP response that will be returned from a server, considered as a flow sink.
diff --git a/python/ql/lib/semmle/python/security/dataflow/XmlBombCustomizations.qll b/python/ql/lib/semmle/python/security/dataflow/XmlBombCustomizations.qll
index a2fe1b8ecb2..317bee33387 100644
--- a/python/ql/lib/semmle/python/security/dataflow/XmlBombCustomizations.qll
+++ b/python/ql/lib/semmle/python/security/dataflow/XmlBombCustomizations.qll
@@ -30,9 +30,7 @@ module XmlBomb {
   abstract class Sanitizer extends DataFlow::Node { }
 
   /** A source of remote user input, considered as a flow source for XML bomb vulnerabilities. */
-  class RemoteFlowSourceAsSource extends Source {
-    RemoteFlowSourceAsSource() { this instanceof RemoteFlowSource }
-  }
+  class RemoteFlowSourceAsSource extends Source instanceof RemoteFlowSource { }
 
   /**
    * A call to an XML parser that is vulnerable to XML bombs.
diff --git a/python/ql/lib/semmle/python/security/dataflow/XxeCustomizations.qll b/python/ql/lib/semmle/python/security/dataflow/XxeCustomizations.qll
index 1d1ad087f84..525bceeb04a 100644
--- a/python/ql/lib/semmle/python/security/dataflow/XxeCustomizations.qll
+++ b/python/ql/lib/semmle/python/security/dataflow/XxeCustomizations.qll
@@ -30,9 +30,7 @@ module Xxe {
   abstract class Sanitizer extends DataFlow::Node { }
 
   /** A source of remote user input, considered as a flow source for XXE vulnerabilities. */
-  class RemoteFlowSourceAsSource extends Source {
-    RemoteFlowSourceAsSource() { this instanceof RemoteFlowSource }
-  }
+  class RemoteFlowSourceAsSource extends Source instanceof RemoteFlowSource { }
 
   /**
    * A call to an XML parser that is vulnerable to XXE.
diff --git a/python/ql/src/analysis/AlertSuppression.ql b/python/ql/src/analysis/AlertSuppression.ql
index 1c876f367ea..6a14c9b6233 100644
--- a/python/ql/src/analysis/AlertSuppression.ql
+++ b/python/ql/src/analysis/AlertSuppression.ql
@@ -80,9 +80,7 @@ class NoqaSuppressionComment extends LineSuppressionComment {
 /**
  * The scope of an alert suppression comment.
  */
-class SuppressionScope extends @py_comment {
-  SuppressionScope() { this instanceof SuppressionComment }
-
+class SuppressionScope extends @py_comment instanceof SuppressionComment {
   /**
    * Holds if this element is at the specified location.
    * The location spans column `startcolumn` of line `startline` to
@@ -93,7 +91,7 @@ class SuppressionScope extends @py_comment {
   predicate hasLocationInfo(
     string filepath, int startline, int startcolumn, int endline, int endcolumn
   ) {
-    this.(SuppressionComment).covers(filepath, startline, startcolumn, endline, endcolumn)
+    super.covers(filepath, startline, startcolumn, endline, endcolumn)
   }
 
   /** Gets a textual representation of this element. */
diff --git a/python/ql/src/experimental/semmle/python/Concepts.qll b/python/ql/src/experimental/semmle/python/Concepts.qll
index 16aa54ccea5..0e22afd2869 100644
--- a/python/ql/src/experimental/semmle/python/Concepts.qll
+++ b/python/ql/src/experimental/semmle/python/Concepts.qll
@@ -42,14 +42,10 @@ module CopyFile {
  * Extend this class to refine existing API models. If you want to model new APIs,
  * extend `CopyFile::Range` instead.
  */
-class CopyFile extends DataFlow::Node {
-  CopyFile::Range range;
+class CopyFile extends DataFlow::Node instanceof CopyFile::Range {
+  DataFlow::Node getAPathArgument() { result = super.getAPathArgument() }
 
-  CopyFile() { this = range }
-
-  DataFlow::Node getAPathArgument() { result = range.getAPathArgument() }
-
-  DataFlow::Node getfsrcArgument() { result = range.getfsrcArgument() }
+  DataFlow::Node getfsrcArgument() { result = super.getfsrcArgument() }
 }
 
 /** Provides classes for modeling log related APIs. */
@@ -74,12 +70,8 @@ module LogOutput {
  * Extend this class to refine existing API models. If you want to model new APIs,
  * extend `LogOutput::Range` instead.
  */
-class LogOutput extends DataFlow::Node {
-  LogOutput::Range range;
-
-  LogOutput() { this = range }
-
-  DataFlow::Node getAnInput() { result = range.getAnInput() }
+class LogOutput extends DataFlow::Node instanceof LogOutput::Range {
+  DataFlow::Node getAnInput() { result = super.getAnInput() }
 }
 
 /** Provides classes for modeling LDAP query execution-related APIs. */
@@ -107,15 +99,11 @@ deprecated module LDAPQuery = LdapQuery;
  * Extend this class to refine existing API models. If you want to model new APIs,
  * extend `LDAPQuery::Range` instead.
  */
-class LdapQuery extends DataFlow::Node {
-  LdapQuery::Range range;
-
-  LdapQuery() { this = range }
-
+class LdapQuery extends DataFlow::Node instanceof LdapQuery::Range {
   /**
    * Gets the argument containing the executed expression.
    */
-  DataFlow::Node getQuery() { result = range.getQuery() }
+  DataFlow::Node getQuery() { result = super.getQuery() }
 }
 
 /** DEPRECATED: Alias for LdapQuery */
@@ -146,15 +134,11 @@ deprecated module LDAPEscape = LdapEscape;
  * Extend this class to refine existing API models. If you want to model new APIs,
  * extend `LDAPEscape::Range` instead.
  */
-class LdapEscape extends DataFlow::Node {
-  LdapEscape::Range range;
-
-  LdapEscape() { this = range }
-
+class LdapEscape extends DataFlow::Node instanceof LdapEscape::Range {
   /**
    * Gets the argument containing the escaped expression.
    */
-  DataFlow::Node getAnInput() { result = range.getAnInput() }
+  DataFlow::Node getAnInput() { result = super.getAnInput() }
 }
 
 /** DEPRECATED: Alias for LdapEscape */
@@ -198,25 +182,21 @@ deprecated module LDAPBind = LdapBind;
  * Extend this class to refine existing API models. If you want to model new APIs,
  * extend `LDAPBind::Range` instead.
  */
-class LdapBind extends DataFlow::Node {
-  LdapBind::Range range;
-
-  LdapBind() { this = range }
-
+class LdapBind extends DataFlow::Node instanceof LdapBind::Range {
   /**
    * Gets the argument containing the binding host.
    */
-  DataFlow::Node getHost() { result = range.getHost() }
+  DataFlow::Node getHost() { result = super.getHost() }
 
   /**
    * Gets the argument containing the binding expression.
    */
-  DataFlow::Node getPassword() { result = range.getPassword() }
+  DataFlow::Node getPassword() { result = super.getPassword() }
 
   /**
    * Holds if the binding process use SSL.
    */
-  predicate useSsl() { range.useSsl() }
+  predicate useSsl() { super.useSsl() }
 
   /** DEPRECATED: Alias for useSsl */
   deprecated predicate useSSL() { useSsl() }
@@ -250,15 +230,11 @@ deprecated module SQLEscape = SqlEscape;
  * Extend this class to refine existing API models. If you want to model new APIs,
  * extend `SQLEscape::Range` instead.
  */
-class SqlEscape extends DataFlow::Node {
-  SqlEscape::Range range;
-
-  SqlEscape() { this = range }
-
+class SqlEscape extends DataFlow::Node instanceof SqlEscape::Range {
   /**
    * Gets the argument containing the raw SQL statement.
    */
-  DataFlow::Node getAnInput() { result = range.getAnInput() }
+  DataFlow::Node getAnInput() { result = super.getAnInput() }
 }
 
 /** DEPRECATED: Alias for SqlEscape */
@@ -287,13 +263,9 @@ deprecated module NoSQLQuery = NoSqlQuery;
  * Extend this class to refine existing API models. If you want to model new APIs,
  * extend `NoSQLQuery::Range` instead.
  */
-class NoSqlQuery extends DataFlow::Node {
-  NoSqlQuery::Range range;
-
-  NoSqlQuery() { this = range }
-
+class NoSqlQuery extends DataFlow::Node instanceof NoSqlQuery::Range {
   /** Gets the argument that specifies the NoSql query to be executed. */
-  DataFlow::Node getQuery() { result = range.getQuery() }
+  DataFlow::Node getQuery() { result = super.getQuery() }
 }
 
 /** DEPRECATED: Alias for NoSqlQuery */
@@ -322,13 +294,9 @@ deprecated module NoSQLSanitizer = NoSqlSanitizer;
  * Extend this class to model new APIs. If you want to refine existing API models,
  * extend `NoSQLSanitizer::Range` instead.
  */
-class NoSqlSanitizer extends DataFlow::Node {
-  NoSqlSanitizer::Range range;
-
-  NoSqlSanitizer() { this = range }
-
+class NoSqlSanitizer extends DataFlow::Node instanceof NoSqlSanitizer::Range {
   /** Gets the argument that specifies the NoSql query to be sanitized. */
-  DataFlow::Node getAnInput() { result = range.getAnInput() }
+  DataFlow::Node getAnInput() { result = super.getAnInput() }
 }
 
 /** DEPRECATED: Alias for NoSqlSanitizer */
@@ -361,20 +329,16 @@ module HeaderDeclaration {
  * Extend this class to refine existing API models. If you want to model new APIs,
  * extend `HeaderDeclaration::Range` instead.
  */
-class HeaderDeclaration extends DataFlow::Node {
-  HeaderDeclaration::Range range;
-
-  HeaderDeclaration() { this = range }
-
+class HeaderDeclaration extends DataFlow::Node instanceof HeaderDeclaration::Range {
   /**
    * Gets the argument containing the header name.
    */
-  DataFlow::Node getNameArg() { result = range.getNameArg() }
+  DataFlow::Node getNameArg() { result = super.getNameArg() }
 
   /**
    * Gets the argument containing the header value.
    */
-  DataFlow::Node getValueArg() { result = range.getValueArg() }
+  DataFlow::Node getValueArg() { result = super.getValueArg() }
 }
 
 /** Provides classes for modeling Csv writer APIs. */
@@ -399,15 +363,11 @@ module CsvWriter {
  * Extend this class to refine existing API models. If you want to model new APIs,
  * extend `CsvWriter::Range` instead.
  */
-class CsvWriter extends DataFlow::Node {
-  CsvWriter::Range range;
-
-  CsvWriter() { this = range }
-
+class CsvWriter extends DataFlow::Node instanceof CsvWriter::Range {
   /**
    * Get the parameter value of the csv writer function.
    */
-  DataFlow::Node getAnInput() { result = range.getAnInput() }
+  DataFlow::Node getAnInput() { result = super.getAnInput() }
 }
 
 /**
diff --git a/python/ql/src/experimental/semmle/python/CookieHeader.qll b/python/ql/src/experimental/semmle/python/CookieHeader.qll
index 1d28548e5a4..690dff3ecba 100644
--- a/python/ql/src/experimental/semmle/python/CookieHeader.qll
+++ b/python/ql/src/experimental/semmle/python/CookieHeader.qll
@@ -28,7 +28,6 @@ import experimental.semmle.python.Concepts
  */
 class CookieHeader extends Cookie::Range instanceof HeaderDeclaration {
   CookieHeader() {
-    this instanceof HeaderDeclaration and
     exists(StrConst str |
       str.getText() = "Set-Cookie" and
       DataFlow::exprNode(str)
diff --git a/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowPrivate.qll b/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowPrivate.qll
index 402924b5b39..3aa2a9998bb 100644
--- a/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowPrivate.qll
+++ b/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowPrivate.qll
@@ -1289,9 +1289,7 @@ private module PostUpdateNodes {
 private import PostUpdateNodes
 
 /** A node that performs a type cast. */
-class CastNode extends Node {
-  CastNode() { this instanceof ReturningNode }
-}
+class CastNode extends Node instanceof ReturningNode { }
 
 class DataFlowExpr = CfgNodes::ExprCfgNode;
 
diff --git a/ruby/ql/lib/codeql/ruby/frameworks/http_clients/OpenURI.qll b/ruby/ql/lib/codeql/ruby/frameworks/http_clients/OpenURI.qll
index 68ca62beaf8..3a1c96aaf55 100644
--- a/ruby/ql/lib/codeql/ruby/frameworks/http_clients/OpenURI.qll
+++ b/ruby/ql/lib/codeql/ruby/frameworks/http_clients/OpenURI.qll
@@ -62,11 +62,8 @@ class OpenUriRequest extends Http::Client::Request::Range, DataFlow::CallNode {
  * Kernel.open("http://example.com").read
  * ```
  */
-class OpenUriKernelOpenRequest extends Http::Client::Request::Range, DataFlow::CallNode {
-  OpenUriKernelOpenRequest() {
-    this instanceof KernelMethodCall and
-    this.getMethodName() = "open"
-  }
+class OpenUriKernelOpenRequest extends Http::Client::Request::Range, DataFlow::CallNode instanceof KernelMethodCall {
+  OpenUriKernelOpenRequest() { this.getMethodName() = "open" }
 
   override DataFlow::Node getAUrlPart() { result = this.getArgument(0) }
 
diff --git a/ruby/ql/lib/codeql/ruby/security/CommandInjectionCustomizations.qll b/ruby/ql/lib/codeql/ruby/security/CommandInjectionCustomizations.qll
index 20cc8d5b26b..7a4399afda9 100644
--- a/ruby/ql/lib/codeql/ruby/security/CommandInjectionCustomizations.qll
+++ b/ruby/ql/lib/codeql/ruby/security/CommandInjectionCustomizations.qll
@@ -30,9 +30,7 @@ module CommandInjection {
   abstract class Sanitizer extends DataFlow::Node { }
 
   /** A source of remote user input, considered as a flow source for command injection. */
-  class RemoteFlowSourceAsSource extends Source {
-    RemoteFlowSourceAsSource() { this instanceof RemoteFlowSource }
-
+  class RemoteFlowSourceAsSource extends Source instanceof RemoteFlowSource {
     override string getSourceType() { result = "user-provided value" }
   }
 
diff --git a/ruby/ql/lib/codeql/ruby/security/ConditionalBypassCustomizations.qll b/ruby/ql/lib/codeql/ruby/security/ConditionalBypassCustomizations.qll
index da51c1fe600..45fa5794250 100644
--- a/ruby/ql/lib/codeql/ruby/security/ConditionalBypassCustomizations.qll
+++ b/ruby/ql/lib/codeql/ruby/security/ConditionalBypassCustomizations.qll
@@ -37,9 +37,7 @@ module ConditionalBypass {
    * A source of remote user input, considered as a flow source for bypass of
    * sensitive action guards.
    */
-  class RemoteFlowSourceAsSource extends Source {
-    RemoteFlowSourceAsSource() { this instanceof RemoteFlowSource }
-  }
+  class RemoteFlowSourceAsSource extends Source instanceof RemoteFlowSource { }
 
   /**
    * A conditional that guards a sensitive action, e.g. `ok` in `if (ok) login()`.
diff --git a/ruby/ql/lib/codeql/ruby/security/HardcodedDataInterpretedAsCodeCustomizations.qll b/ruby/ql/lib/codeql/ruby/security/HardcodedDataInterpretedAsCodeCustomizations.qll
index b9aa115fe56..1cdf88169c3 100644
--- a/ruby/ql/lib/codeql/ruby/security/HardcodedDataInterpretedAsCodeCustomizations.qll
+++ b/ruby/ql/lib/codeql/ruby/security/HardcodedDataInterpretedAsCodeCustomizations.qll
@@ -87,9 +87,7 @@ module HardcodedDataInterpretedAsCode {
   /**
    * A code injection sink; hard-coded data should not flow here.
    */
-  private class DefaultCodeInjectionSink extends Sink {
-    DefaultCodeInjectionSink() { this instanceof CodeInjection::Sink }
-
+  private class DefaultCodeInjectionSink extends Sink instanceof CodeInjection::Sink {
     override string getKind() { result = "code" }
   }
 
diff --git a/ruby/ql/lib/codeql/ruby/security/ServerSideRequestForgeryCustomizations.qll b/ruby/ql/lib/codeql/ruby/security/ServerSideRequestForgeryCustomizations.qll
index cda3d0a0c3d..b927ec80f5c 100644
--- a/ruby/ql/lib/codeql/ruby/security/ServerSideRequestForgeryCustomizations.qll
+++ b/ruby/ql/lib/codeql/ruby/security/ServerSideRequestForgeryCustomizations.qll
@@ -39,9 +39,7 @@ module ServerSideRequestForgery {
   abstract deprecated class SanitizerGuard extends DataFlow::BarrierGuard { }
 
   /** A source of remote user input, considered as a flow source for server side request forgery. */
-  class RemoteFlowSourceAsSource extends Source {
-    RemoteFlowSourceAsSource() { this instanceof RemoteFlowSource }
-  }
+  class RemoteFlowSourceAsSource extends Source instanceof RemoteFlowSource { }
 
   /** The URL of an HTTP request, considered as a sink. */
   class HttpRequestAsSink extends Sink {
diff --git a/ruby/ql/lib/codeql/ruby/security/UnsafeDeserializationCustomizations.qll b/ruby/ql/lib/codeql/ruby/security/UnsafeDeserializationCustomizations.qll
index f12db1435d6..7e6ff6a2e1c 100644
--- a/ruby/ql/lib/codeql/ruby/security/UnsafeDeserializationCustomizations.qll
+++ b/ruby/ql/lib/codeql/ruby/security/UnsafeDeserializationCustomizations.qll
@@ -35,9 +35,7 @@ module UnsafeDeserialization {
   }
 
   /** A source of remote user input, considered as a flow source for unsafe deserialization. */
-  class RemoteFlowSourceAsSource extends Source {
-    RemoteFlowSourceAsSource() { this instanceof RemoteFlowSource }
-  }
+  class RemoteFlowSourceAsSource extends Source instanceof RemoteFlowSource { }
 
   /**
    * An argument in a call to `Marshal.load` or `Marshal.restore`, considered a
diff --git a/ruby/ql/src/AlertSuppression.ql b/ruby/ql/src/AlertSuppression.ql
index 9ee80abe099..a6a75d6d9db 100644
--- a/ruby/ql/src/AlertSuppression.ql
+++ b/ruby/ql/src/AlertSuppression.ql
@@ -52,9 +52,7 @@ private string commentText(Ruby::Comment comment) { result = comment.getValue().
 /**
  * The scope of an alert suppression comment.
  */
-class SuppressionScope extends @ruby_token_comment {
-  SuppressionScope() { this instanceof SuppressionComment }
-
+class SuppressionScope extends @ruby_token_comment instanceof SuppressionComment {
   /** Gets a suppression comment with this scope. */
   SuppressionComment getSuppressionComment() { result = this }
 
@@ -68,7 +66,7 @@ class SuppressionScope extends @ruby_token_comment {
   predicate hasLocationInfo(
     string filepath, int startline, int startcolumn, int endline, int endcolumn
   ) {
-    this.(SuppressionComment).covers(filepath, startline, startcolumn, endline, endcolumn)
+    super.covers(filepath, startline, startcolumn, endline, endcolumn)
   }
 
   /** Gets a textual representation of this element. */

From 7526c35c6091c417e9edbcfb975afb0b64b215c2 Mon Sep 17 00:00:00 2001
From: erik-krogh <erik-krogh@github.com>
Date: Mon, 12 Dec 2022 16:23:26 +0100
Subject: [PATCH 1294/1420] speedup the "ATM - Check query suite" CI job

---
 .github/workflows/atm-check-query-suite.yml | 9 ++++++++-
 1 file changed, 8 insertions(+), 1 deletion(-)

diff --git a/.github/workflows/atm-check-query-suite.yml b/.github/workflows/atm-check-query-suite.yml
index 7317746fe62..06e38bc7641 100644
--- a/.github/workflows/atm-check-query-suite.yml
+++ b/.github/workflows/atm-check-query-suite.yml
@@ -13,7 +13,7 @@ on:
 
 jobs:
   atm-check-query-suite:
-    runs-on: ubuntu-latest
+    runs-on: ubuntu-latest-xl
 
     steps:
       - uses: actions/checkout@v3
@@ -23,6 +23,12 @@ jobs:
         with:
           channel: release
 
+      - name: Cache compilation cache
+        id: query-cache
+        uses: ./.github/actions/cache-query-compilation
+        with: 
+          key: atm-suite
+
       - name: Install ATM model
         run: |
           set -exu
@@ -54,6 +60,7 @@ jobs:
             --output "${SARIF_PATH}" \
             --sarif-group-rules-by-pack \
             -vv \
+            --compilation-cache "${{ steps.query-cache.outputs.cache-dir }}" \
             -- \
             "${DB_PATH}" \
             "${QUERY_PACK}/${QUERY_SUITE}"

From f554e1fef16dd296252308ebca6c64288eca5d93 Mon Sep 17 00:00:00 2001
From: erik-krogh <erik-krogh@github.com>
Date: Mon, 12 Dec 2022 16:27:32 +0100
Subject: [PATCH 1295/1420] more threads

---
 .github/workflows/atm-check-query-suite.yml | 1 +
 1 file changed, 1 insertion(+)

diff --git a/.github/workflows/atm-check-query-suite.yml b/.github/workflows/atm-check-query-suite.yml
index 06e38bc7641..454093b9051 100644
--- a/.github/workflows/atm-check-query-suite.yml
+++ b/.github/workflows/atm-check-query-suite.yml
@@ -56,6 +56,7 @@ jobs:
           echo "SARIF_PATH=${SARIF_PATH}" >> "${GITHUB_ENV}"
 
           codeql database analyze \
+            --threads=0 \
             --format sarif-latest \
             --output "${SARIF_PATH}" \
             --sarif-group-rules-by-pack \

From a1564de126ca81f42f378a7c40d00703b7c3adf9 Mon Sep 17 00:00:00 2001
From: erik-krogh <erik-krogh@github.com>
Date: Mon, 12 Dec 2022 16:35:01 +0100
Subject: [PATCH 1296/1420] more ram

---
 .github/workflows/atm-check-query-suite.yml | 1 +
 1 file changed, 1 insertion(+)

diff --git a/.github/workflows/atm-check-query-suite.yml b/.github/workflows/atm-check-query-suite.yml
index 454093b9051..ed93a6f8f2f 100644
--- a/.github/workflows/atm-check-query-suite.yml
+++ b/.github/workflows/atm-check-query-suite.yml
@@ -57,6 +57,7 @@ jobs:
 
           codeql database analyze \
             --threads=0 \
+            --ram 50000 \
             --format sarif-latest \
             --output "${SARIF_PATH}" \
             --sarif-group-rules-by-pack \

From 698e05f85a07bab7ed06d05a1d21928a0b2d37cb Mon Sep 17 00:00:00 2001
From: erik-krogh <erik-krogh@github.com>
Date: Mon, 12 Dec 2022 16:58:13 +0100
Subject: [PATCH 1297/1420] Swift/C++: Use instanceof in more places

---
 .../cpp/semantic/SemanticExprSpecific.qll     | 14 +----
 .../semantic/analysis/SignAnalysisCommon.qll  | 16 ++----
 cpp/ql/lib/semmle/code/cpp/commons/Printf.qll |  7 +--
 cpp/ql/lib/semmle/code/cpp/commons/Scanf.qll  | 54 +++++++------------
 .../JPL_C/LOC-4/Rule 23/MismatchedIfdefs.ql   |  4 +-
 .../Metrics/Dependencies/TestPackage.qll      |  6 +--
 .../elements/expr/ArithmeticOperation.qll     |  4 +-
 .../swift/elements/expr/LogicalOperation.qll  |  4 +-
 8 files changed, 32 insertions(+), 77 deletions(-)

diff --git a/cpp/ql/lib/experimental/semmle/code/cpp/semantic/SemanticExprSpecific.qll b/cpp/ql/lib/experimental/semmle/code/cpp/semantic/SemanticExprSpecific.qll
index f7e5abd25b7..7b9cc1ee4d1 100644
--- a/cpp/ql/lib/experimental/semmle/code/cpp/semantic/SemanticExprSpecific.qll
+++ b/cpp/ql/lib/experimental/semmle/code/cpp/semantic/SemanticExprSpecific.qll
@@ -286,19 +286,7 @@ module SemanticExprConfig {
     )
   }
 
-  class Bound instanceof IRBound::Bound {
-    string toString() { result = super.toString() }
-
-    final Location getLocation() { result = super.getLocation() }
-  }
-
-  private class ValueNumberBound extends Bound {
-    IRBound::ValueNumberBound bound;
-
-    ValueNumberBound() { bound = this }
-
-    override string toString() { result = bound.toString() }
-  }
+  class Bound = IRBound::Bound;
 
   predicate zeroBound(Bound bound) { bound instanceof IRBound::ZeroBound }
 
diff --git a/cpp/ql/lib/experimental/semmle/code/cpp/semantic/analysis/SignAnalysisCommon.qll b/cpp/ql/lib/experimental/semmle/code/cpp/semantic/analysis/SignAnalysisCommon.qll
index 27c3083fecc..970a6c4e5a9 100644
--- a/cpp/ql/lib/experimental/semmle/code/cpp/semantic/analysis/SignAnalysisCommon.qll
+++ b/cpp/ql/lib/experimental/semmle/code/cpp/semantic/analysis/SignAnalysisCommon.qll
@@ -33,23 +33,15 @@ abstract private class FlowSignDef extends SignDef {
 }
 
 /** An SSA definition whose sign is determined by the sign of that definitions source expression. */
-private class ExplicitSignDef extends FlowSignDef {
-  SemSsaExplicitUpdate update;
-
-  ExplicitSignDef() { update = this }
-
-  final override Sign getSign() { result = semExprSign(update.getSourceExpr()) }
+private class ExplicitSignDef extends FlowSignDef instanceof SemSsaExplicitUpdate {
+  final override Sign getSign() { result = semExprSign(super.getSourceExpr()) }
 }
 
 /** An SSA Phi definition, whose sign is the union of the signs of its inputs. */
-private class PhiSignDef extends FlowSignDef {
-  SemSsaPhiNode phi;
-
-  PhiSignDef() { phi = this }
-
+private class PhiSignDef extends FlowSignDef instanceof SemSsaPhiNode {
   final override Sign getSign() {
     exists(SemSsaVariable inp, SemSsaReadPositionPhiInputEdge edge |
-      edge.phiInput(phi, inp) and
+      edge.phiInput(this, inp) and
       result = semSsaSign(inp, edge)
     )
   }
diff --git a/cpp/ql/lib/semmle/code/cpp/commons/Printf.qll b/cpp/ql/lib/semmle/code/cpp/commons/Printf.qll
index d063e8fa19c..51d2e294b36 100644
--- a/cpp/ql/lib/semmle/code/cpp/commons/Printf.qll
+++ b/cpp/ql/lib/semmle/code/cpp/commons/Printf.qll
@@ -397,11 +397,8 @@ private int lengthInBase16(float f) {
 /**
  * A class to represent format strings that occur as arguments to invocations of formatting functions.
  */
-class FormatLiteral extends Literal {
-  FormatLiteral() {
-    exists(FormattingFunctionCall ffc | ffc.getFormat() = this) and
-    this instanceof StringLiteral
-  }
+class FormatLiteral extends Literal instanceof StringLiteral {
+  FormatLiteral() { exists(FormattingFunctionCall ffc | ffc.getFormat() = this) }
 
   /**
    * Gets the function call where this format string is used.
diff --git a/cpp/ql/lib/semmle/code/cpp/commons/Scanf.qll b/cpp/ql/lib/semmle/code/cpp/commons/Scanf.qll
index 0d51c948170..376829c2eef 100644
--- a/cpp/ql/lib/semmle/code/cpp/commons/Scanf.qll
+++ b/cpp/ql/lib/semmle/code/cpp/commons/Scanf.qll
@@ -30,15 +30,12 @@ abstract class ScanfFunction extends Function {
 /**
  * The standard function `scanf` (and variations).
  */
-class Scanf extends ScanfFunction {
+class Scanf extends ScanfFunction instanceof TopLevelFunction {
   Scanf() {
-    this instanceof TopLevelFunction and
-    (
-      this.hasGlobalOrStdOrBslName("scanf") or // scanf(format, args...)
-      this.hasGlobalOrStdOrBslName("wscanf") or // wscanf(format, args...)
-      this.hasGlobalName("_scanf_l") or // _scanf_l(format, locale, args...)
-      this.hasGlobalName("_wscanf_l") // _wscanf_l(format, locale, args...)
-    )
+    this.hasGlobalOrStdOrBslName("scanf") or // scanf(format, args...)
+    this.hasGlobalOrStdOrBslName("wscanf") or // wscanf(format, args...)
+    this.hasGlobalName("_scanf_l") or // _scanf_l(format, locale, args...)
+    this.hasGlobalName("_wscanf_l")
   }
 
   override int getInputParameterIndex() { none() }
@@ -49,15 +46,12 @@ class Scanf extends ScanfFunction {
 /**
  * The standard function `fscanf` (and variations).
  */
-class Fscanf extends ScanfFunction {
+class Fscanf extends ScanfFunction instanceof TopLevelFunction {
   Fscanf() {
-    this instanceof TopLevelFunction and
-    (
-      this.hasGlobalOrStdOrBslName("fscanf") or // fscanf(src_stream, format, args...)
-      this.hasGlobalOrStdOrBslName("fwscanf") or // fwscanf(src_stream, format, args...)
-      this.hasGlobalName("_fscanf_l") or // _fscanf_l(src_stream, format, locale, args...)
-      this.hasGlobalName("_fwscanf_l") // _fwscanf_l(src_stream, format, locale, args...)
-    )
+    this.hasGlobalOrStdOrBslName("fscanf") or // fscanf(src_stream, format, args...)
+    this.hasGlobalOrStdOrBslName("fwscanf") or // fwscanf(src_stream, format, args...)
+    this.hasGlobalName("_fscanf_l") or // _fscanf_l(src_stream, format, locale, args...)
+    this.hasGlobalName("_fwscanf_l")
   }
 
   override int getInputParameterIndex() { result = 0 }
@@ -68,15 +62,12 @@ class Fscanf extends ScanfFunction {
 /**
  * The standard function `sscanf` (and variations).
  */
-class Sscanf extends ScanfFunction {
+class Sscanf extends ScanfFunction instanceof TopLevelFunction {
   Sscanf() {
-    this instanceof TopLevelFunction and
-    (
-      this.hasGlobalOrStdOrBslName("sscanf") or // sscanf(src_stream, format, args...)
-      this.hasGlobalOrStdOrBslName("swscanf") or // swscanf(src, format, args...)
-      this.hasGlobalName("_sscanf_l") or // _sscanf_l(src, format, locale, args...)
-      this.hasGlobalName("_swscanf_l") // _swscanf_l(src, format, locale, args...)
-    )
+    this.hasGlobalOrStdOrBslName("sscanf") or // sscanf(src_stream, format, args...)
+    this.hasGlobalOrStdOrBslName("swscanf") or // swscanf(src, format, args...)
+    this.hasGlobalName("_sscanf_l") or // _sscanf_l(src, format, locale, args...)
+    this.hasGlobalName("_swscanf_l")
   }
 
   override int getInputParameterIndex() { result = 0 }
@@ -87,17 +78,12 @@ class Sscanf extends ScanfFunction {
 /**
  * The standard(ish) function `snscanf` (and variations).
  */
-class Snscanf extends ScanfFunction {
+class Snscanf extends ScanfFunction instanceof TopLevelFunction {
   Snscanf() {
-    this instanceof TopLevelFunction and
-    (
-      this.hasGlobalName("_snscanf") or // _snscanf(src, max_amount, format, args...)
-      this.hasGlobalName("_snwscanf") or // _snwscanf(src, max_amount, format, args...)
-      this.hasGlobalName("_snscanf_l") or // _snscanf_l(src, max_amount, format, locale, args...)
-      this.hasGlobalName("_snwscanf_l") // _snwscanf_l(src, max_amount, format, locale, args...)
-      // note that the max_amount is not a limit on the output length, it's an input length
-      // limit used with non null-terminated strings.
-    )
+    this.hasGlobalName("_snscanf") or // _snscanf(src, max_amount, format, args...)
+    this.hasGlobalName("_snwscanf") or // _snwscanf(src, max_amount, format, args...)
+    this.hasGlobalName("_snscanf_l") or // _snscanf_l(src, max_amount, format, locale, args...)
+    this.hasGlobalName("_snwscanf_l")
   }
 
   override int getInputParameterIndex() { result = 0 }
diff --git a/cpp/ql/src/JPL_C/LOC-4/Rule 23/MismatchedIfdefs.ql b/cpp/ql/src/JPL_C/LOC-4/Rule 23/MismatchedIfdefs.ql
index e9c619167de..1e5fed2bfb7 100644
--- a/cpp/ql/src/JPL_C/LOC-4/Rule 23/MismatchedIfdefs.ql	
+++ b/cpp/ql/src/JPL_C/LOC-4/Rule 23/MismatchedIfdefs.ql	
@@ -66,9 +66,7 @@ class ElseDirective extends Directive {
   override predicate mismatched() { depth() < 1 }
 }
 
-class EndifDirective extends Directive {
-  EndifDirective() { this instanceof PreprocessorEndif }
-
+class EndifDirective extends Directive instanceof PreprocessorEndif {
   override int depthChange() { result = -1 }
 
   override predicate mismatched() { depth() < 0 }
diff --git a/cpp/ql/test/query-tests/Metrics/Dependencies/TestPackage.qll b/cpp/ql/test/query-tests/Metrics/Dependencies/TestPackage.qll
index 42ddb58a36f..8332bf3ea7c 100644
--- a/cpp/ql/test/query-tests/Metrics/Dependencies/TestPackage.qll
+++ b/cpp/ql/test/query-tests/Metrics/Dependencies/TestPackage.qll
@@ -3,10 +3,8 @@ import Metrics.Dependencies.ExternalDependencies
 /**
  * Count directories as libraries for testing purposes.
  */
-class TestPackage extends LibraryElement {
-  TestPackage() { this instanceof Folder }
-
-  override string getName() { result = this.(Folder).getBaseName() }
+class TestPackage extends LibraryElement instanceof Folder {
+  override string getName() { result = super.getBaseName() }
 
   override string getVersion() { result = "1.0" }
 
diff --git a/swift/ql/lib/codeql/swift/elements/expr/ArithmeticOperation.qll b/swift/ql/lib/codeql/swift/elements/expr/ArithmeticOperation.qll
index 160aeaa1c3a..faa2941a637 100644
--- a/swift/ql/lib/codeql/swift/elements/expr/ArithmeticOperation.qll
+++ b/swift/ql/lib/codeql/swift/elements/expr/ArithmeticOperation.qll
@@ -97,9 +97,7 @@ class RemExpr extends BinaryExpr {
  * -a
  * ```
  */
-class UnaryArithmeticOperation extends PrefixUnaryExpr {
-  UnaryArithmeticOperation() { this instanceof UnaryMinusExpr }
-}
+class UnaryArithmeticOperation extends PrefixUnaryExpr instanceof UnaryMinusExpr { }
 
 /**
  * A unary minus expression.
diff --git a/swift/ql/lib/codeql/swift/elements/expr/LogicalOperation.qll b/swift/ql/lib/codeql/swift/elements/expr/LogicalOperation.qll
index 107392d24f1..812859a612c 100644
--- a/swift/ql/lib/codeql/swift/elements/expr/LogicalOperation.qll
+++ b/swift/ql/lib/codeql/swift/elements/expr/LogicalOperation.qll
@@ -30,9 +30,7 @@ class NotExpr extends PrefixUnaryExpr {
   NotExpr() { unaryHasName(this, "!(_:)") }
 }
 
-class UnaryLogicalOperation extends PrefixUnaryExpr {
-  UnaryLogicalOperation() { this instanceof NotExpr }
-}
+class UnaryLogicalOperation extends PrefixUnaryExpr instanceof NotExpr { }
 
 class LogicalOperation extends Expr {
   LogicalOperation() {

From 623068c4b9b0ae1edbab97b9ed4a317f7671625d Mon Sep 17 00:00:00 2001
From: Jami Cogswell <jcogs33@Jamis-MacBook-Pro.local>
Date: Mon, 12 Dec 2022 11:23:46 -0500
Subject: [PATCH 1298/1420] Java: add hasProvenance predicate, remove
 isManuallyGenerated and isBothAutoAndManuallyGenerated

---
 .../dataflow/internal/FlowSummaryImpl.qll     | 20 +++----------------
 .../go/dataflow/internal/FlowSummaryImpl.qll  | 20 +++----------------
 .../dataflow/internal/FlowSummaryImpl.qll     | 20 +++----------------
 .../Summaries/GeneratedVsManualCoverage.ql    |  4 ++--
 .../dataflow/new/internal/FlowSummaryImpl.qll | 20 +++----------------
 .../dataflow/internal/FlowSummaryImpl.qll     | 20 +++----------------
 .../dataflow/internal/FlowSummaryImpl.qll     | 20 +++----------------
 7 files changed, 20 insertions(+), 104 deletions(-)

diff --git a/csharp/ql/lib/semmle/code/csharp/dataflow/internal/FlowSummaryImpl.qll b/csharp/ql/lib/semmle/code/csharp/dataflow/internal/FlowSummaryImpl.qll
index 0b10bb2947f..ac33ebb67f8 100644
--- a/csharp/ql/lib/semmle/code/csharp/dataflow/internal/FlowSummaryImpl.qll
+++ b/csharp/ql/lib/semmle/code/csharp/dataflow/internal/FlowSummaryImpl.qll
@@ -246,14 +246,10 @@ module Public {
     predicate isAutoGenerated() { none() }
 
     /**
-     * Holds if the summary is manually generated and not auto generated.
+     * Holds if the summary has the given provenance where `true` is
+     * `generated` and `false` is `manual`.
      */
-    predicate isManuallyGenerated() { none() }
-
-    /**
-     * Holds if the summary is both auto generated and manually generated.
-     */
-    predicate isBothAutoAndManuallyGenerated() { none() }
+    predicate hasProvenance(boolean generated) { summaryElement(this, _, _, _, generated) }
   }
 
   /** A callable with a flow summary stating there is no flow via the callable. */
@@ -1022,16 +1018,6 @@ module Private {
       }
 
       override predicate isAutoGenerated() { this.relevantSummaryElementGenerated(_, _, _) }
-
-      override predicate isManuallyGenerated() {
-        summaryElement(this, _, _, _, false) and
-        not summaryElement(this, _, _, _, true)
-      }
-
-      override predicate isBothAutoAndManuallyGenerated() {
-        summaryElement(this, _, _, _, true) and
-        summaryElement(this, _, _, _, false)
-      }
     }
 
     /** Holds if component `c` of specification `spec` cannot be parsed. */
diff --git a/go/ql/lib/semmle/go/dataflow/internal/FlowSummaryImpl.qll b/go/ql/lib/semmle/go/dataflow/internal/FlowSummaryImpl.qll
index 0b10bb2947f..ac33ebb67f8 100644
--- a/go/ql/lib/semmle/go/dataflow/internal/FlowSummaryImpl.qll
+++ b/go/ql/lib/semmle/go/dataflow/internal/FlowSummaryImpl.qll
@@ -246,14 +246,10 @@ module Public {
     predicate isAutoGenerated() { none() }
 
     /**
-     * Holds if the summary is manually generated and not auto generated.
+     * Holds if the summary has the given provenance where `true` is
+     * `generated` and `false` is `manual`.
      */
-    predicate isManuallyGenerated() { none() }
-
-    /**
-     * Holds if the summary is both auto generated and manually generated.
-     */
-    predicate isBothAutoAndManuallyGenerated() { none() }
+    predicate hasProvenance(boolean generated) { summaryElement(this, _, _, _, generated) }
   }
 
   /** A callable with a flow summary stating there is no flow via the callable. */
@@ -1022,16 +1018,6 @@ module Private {
       }
 
       override predicate isAutoGenerated() { this.relevantSummaryElementGenerated(_, _, _) }
-
-      override predicate isManuallyGenerated() {
-        summaryElement(this, _, _, _, false) and
-        not summaryElement(this, _, _, _, true)
-      }
-
-      override predicate isBothAutoAndManuallyGenerated() {
-        summaryElement(this, _, _, _, true) and
-        summaryElement(this, _, _, _, false)
-      }
     }
 
     /** Holds if component `c` of specification `spec` cannot be parsed. */
diff --git a/java/ql/lib/semmle/code/java/dataflow/internal/FlowSummaryImpl.qll b/java/ql/lib/semmle/code/java/dataflow/internal/FlowSummaryImpl.qll
index 0b10bb2947f..ac33ebb67f8 100644
--- a/java/ql/lib/semmle/code/java/dataflow/internal/FlowSummaryImpl.qll
+++ b/java/ql/lib/semmle/code/java/dataflow/internal/FlowSummaryImpl.qll
@@ -246,14 +246,10 @@ module Public {
     predicate isAutoGenerated() { none() }
 
     /**
-     * Holds if the summary is manually generated and not auto generated.
+     * Holds if the summary has the given provenance where `true` is
+     * `generated` and `false` is `manual`.
      */
-    predicate isManuallyGenerated() { none() }
-
-    /**
-     * Holds if the summary is both auto generated and manually generated.
-     */
-    predicate isBothAutoAndManuallyGenerated() { none() }
+    predicate hasProvenance(boolean generated) { summaryElement(this, _, _, _, generated) }
   }
 
   /** A callable with a flow summary stating there is no flow via the callable. */
@@ -1022,16 +1018,6 @@ module Private {
       }
 
       override predicate isAutoGenerated() { this.relevantSummaryElementGenerated(_, _, _) }
-
-      override predicate isManuallyGenerated() {
-        summaryElement(this, _, _, _, false) and
-        not summaryElement(this, _, _, _, true)
-      }
-
-      override predicate isBothAutoAndManuallyGenerated() {
-        summaryElement(this, _, _, _, true) and
-        summaryElement(this, _, _, _, false)
-      }
     }
 
     /** Holds if component `c` of specification `spec` cannot be parsed. */
diff --git a/java/ql/src/Metrics/Summaries/GeneratedVsManualCoverage.ql b/java/ql/src/Metrics/Summaries/GeneratedVsManualCoverage.ql
index 33a99d8221c..bd11df2c012 100644
--- a/java/ql/src/Metrics/Summaries/GeneratedVsManualCoverage.ql
+++ b/java/ql/src/Metrics/Summaries/GeneratedVsManualCoverage.ql
@@ -25,10 +25,10 @@ private float getNumMadModeledApis(string package, string provenance) {
         sc.isAutoGenerated() and // "auto-only"
         provenance = "generated"
         or
-        sc.isManuallyGenerated() and // "manual-only"
+        (sc.hasProvenance(false) and not sc.hasProvenance(true)) and // "manual-only"
         provenance = "manual"
         or
-        sc.isBothAutoAndManuallyGenerated() and // "both"
+        (sc.hasProvenance(false) and sc.hasProvenance(true)) and // "both"
         provenance = "both"
       )
     )
diff --git a/python/ql/lib/semmle/python/dataflow/new/internal/FlowSummaryImpl.qll b/python/ql/lib/semmle/python/dataflow/new/internal/FlowSummaryImpl.qll
index 0b10bb2947f..ac33ebb67f8 100644
--- a/python/ql/lib/semmle/python/dataflow/new/internal/FlowSummaryImpl.qll
+++ b/python/ql/lib/semmle/python/dataflow/new/internal/FlowSummaryImpl.qll
@@ -246,14 +246,10 @@ module Public {
     predicate isAutoGenerated() { none() }
 
     /**
-     * Holds if the summary is manually generated and not auto generated.
+     * Holds if the summary has the given provenance where `true` is
+     * `generated` and `false` is `manual`.
      */
-    predicate isManuallyGenerated() { none() }
-
-    /**
-     * Holds if the summary is both auto generated and manually generated.
-     */
-    predicate isBothAutoAndManuallyGenerated() { none() }
+    predicate hasProvenance(boolean generated) { summaryElement(this, _, _, _, generated) }
   }
 
   /** A callable with a flow summary stating there is no flow via the callable. */
@@ -1022,16 +1018,6 @@ module Private {
       }
 
       override predicate isAutoGenerated() { this.relevantSummaryElementGenerated(_, _, _) }
-
-      override predicate isManuallyGenerated() {
-        summaryElement(this, _, _, _, false) and
-        not summaryElement(this, _, _, _, true)
-      }
-
-      override predicate isBothAutoAndManuallyGenerated() {
-        summaryElement(this, _, _, _, true) and
-        summaryElement(this, _, _, _, false)
-      }
     }
 
     /** Holds if component `c` of specification `spec` cannot be parsed. */
diff --git a/ruby/ql/lib/codeql/ruby/dataflow/internal/FlowSummaryImpl.qll b/ruby/ql/lib/codeql/ruby/dataflow/internal/FlowSummaryImpl.qll
index 0b10bb2947f..ac33ebb67f8 100644
--- a/ruby/ql/lib/codeql/ruby/dataflow/internal/FlowSummaryImpl.qll
+++ b/ruby/ql/lib/codeql/ruby/dataflow/internal/FlowSummaryImpl.qll
@@ -246,14 +246,10 @@ module Public {
     predicate isAutoGenerated() { none() }
 
     /**
-     * Holds if the summary is manually generated and not auto generated.
+     * Holds if the summary has the given provenance where `true` is
+     * `generated` and `false` is `manual`.
      */
-    predicate isManuallyGenerated() { none() }
-
-    /**
-     * Holds if the summary is both auto generated and manually generated.
-     */
-    predicate isBothAutoAndManuallyGenerated() { none() }
+    predicate hasProvenance(boolean generated) { summaryElement(this, _, _, _, generated) }
   }
 
   /** A callable with a flow summary stating there is no flow via the callable. */
@@ -1022,16 +1018,6 @@ module Private {
       }
 
       override predicate isAutoGenerated() { this.relevantSummaryElementGenerated(_, _, _) }
-
-      override predicate isManuallyGenerated() {
-        summaryElement(this, _, _, _, false) and
-        not summaryElement(this, _, _, _, true)
-      }
-
-      override predicate isBothAutoAndManuallyGenerated() {
-        summaryElement(this, _, _, _, true) and
-        summaryElement(this, _, _, _, false)
-      }
     }
 
     /** Holds if component `c` of specification `spec` cannot be parsed. */
diff --git a/swift/ql/lib/codeql/swift/dataflow/internal/FlowSummaryImpl.qll b/swift/ql/lib/codeql/swift/dataflow/internal/FlowSummaryImpl.qll
index 0b10bb2947f..ac33ebb67f8 100644
--- a/swift/ql/lib/codeql/swift/dataflow/internal/FlowSummaryImpl.qll
+++ b/swift/ql/lib/codeql/swift/dataflow/internal/FlowSummaryImpl.qll
@@ -246,14 +246,10 @@ module Public {
     predicate isAutoGenerated() { none() }
 
     /**
-     * Holds if the summary is manually generated and not auto generated.
+     * Holds if the summary has the given provenance where `true` is
+     * `generated` and `false` is `manual`.
      */
-    predicate isManuallyGenerated() { none() }
-
-    /**
-     * Holds if the summary is both auto generated and manually generated.
-     */
-    predicate isBothAutoAndManuallyGenerated() { none() }
+    predicate hasProvenance(boolean generated) { summaryElement(this, _, _, _, generated) }
   }
 
   /** A callable with a flow summary stating there is no flow via the callable. */
@@ -1022,16 +1018,6 @@ module Private {
       }
 
       override predicate isAutoGenerated() { this.relevantSummaryElementGenerated(_, _, _) }
-
-      override predicate isManuallyGenerated() {
-        summaryElement(this, _, _, _, false) and
-        not summaryElement(this, _, _, _, true)
-      }
-
-      override predicate isBothAutoAndManuallyGenerated() {
-        summaryElement(this, _, _, _, true) and
-        summaryElement(this, _, _, _, false)
-      }
     }
 
     /** Holds if component `c` of specification `spec` cannot be parsed. */

From e42d9e4930704217f139963495f19c71363e66a1 Mon Sep 17 00:00:00 2001
From: Jami Cogswell <jcogs33@Jamis-MacBook-Pro.local>
Date: Mon, 12 Dec 2022 11:39:17 -0500
Subject: [PATCH 1299/1420] Java: switch floats to ints

---
 .../Metrics/Summaries/GeneratedVsManualCoverage.ql   | 12 ++++++------
 1 file changed, 6 insertions(+), 6 deletions(-)

diff --git a/java/ql/src/Metrics/Summaries/GeneratedVsManualCoverage.ql b/java/ql/src/Metrics/Summaries/GeneratedVsManualCoverage.ql
index bd11df2c012..bfd59e4cdf4 100644
--- a/java/ql/src/Metrics/Summaries/GeneratedVsManualCoverage.ql
+++ b/java/ql/src/Metrics/Summaries/GeneratedVsManualCoverage.ql
@@ -15,7 +15,7 @@ import utils.modelgenerator.internal.CaptureModels
  * for a given package and provenance.
  */
 bindingset[package]
-private float getNumMadModeledApis(string package, string provenance) {
+private int getNumMadModeledApis(string package, string provenance) {
   provenance in ["generated", "manual", "both"] and
   result =
     count(SummarizedCallable sc |
@@ -36,7 +36,7 @@ private float getNumMadModeledApis(string package, string provenance) {
 
 /** Returns the total number of `DataFlowTargetApi`s for a given package. */
 bindingset[package]
-private float getNumApis(string package) {
+private int getNumApis(string package) {
   result =
     count(DataFlowTargetApi dataFlowTargApi |
       package = dataFlowTargApi.getCompilationUnit().getPackage().getName()
@@ -44,8 +44,8 @@ private float getNumApis(string package) {
 }
 
 from
-  DataFlowTargetApi dataFlowTargApi, string package, float generatedOnly, float both,
-  float manualOnly, float non, float all, float generatedCoverage, float manualCoverage
+  DataFlowTargetApi dataFlowTargApi, string package, int generatedOnly, int both, int manualOnly,
+  int non, int all, float generatedCoverage, float manualCoverage
 where
   // bind `package` to a `DataFlowTargetApi` package name
   package = dataFlowTargApi.getCompilationUnit().getPackage().getName() and
@@ -57,8 +57,8 @@ where
   all = getNumApis(package) and
   non = all - (generatedOnly + both + manualOnly) and
   // Proportion of manual models covered by generated ones
-  generatedCoverage = (both / (both + manualOnly)) and
+  generatedCoverage = (both.(float) / (both + manualOnly)) and
   // Proportion of generated models covered by manual ones
-  manualCoverage = (both / (both + generatedOnly))
+  manualCoverage = (both.(float) / (both + generatedOnly))
 select package, generatedOnly, both, manualOnly, non, all, generatedCoverage, manualCoverage
   order by package

From 16d8e8e9319d2be7d969795348c16c4fbeec8ed2 Mon Sep 17 00:00:00 2001
From: Jami Cogswell <jcogs33@Jamis-MacBook-Pro.local>
Date: Thu, 8 Dec 2022 10:39:00 -0500
Subject: [PATCH 1300/1420] Java: exclude parameterless constructors from
 DataFlowTargetApi

---
 .../modelgenerator/internal/CaptureModelsSpecific.qll     | 8 +++++++-
 1 file changed, 7 insertions(+), 1 deletion(-)

diff --git a/java/ql/src/utils/modelgenerator/internal/CaptureModelsSpecific.qll b/java/ql/src/utils/modelgenerator/internal/CaptureModelsSpecific.qll
index af46170f5a3..ed17cde0f56 100644
--- a/java/ql/src/utils/modelgenerator/internal/CaptureModelsSpecific.qll
+++ b/java/ql/src/utils/modelgenerator/internal/CaptureModelsSpecific.qll
@@ -52,6 +52,11 @@ private predicate isJdkInternal(J::CompilationUnit cu) {
   cu.getPackage().getName() = ""
 }
 
+/** Holds if the given API is a constructor without parameters. */
+private predicate isParameterlessConstructor(J::Callable api) {
+  api instanceof J::Constructor and api.getNumberOfParameters() = 0
+}
+
 /**
  * Holds if it is relevant to generate models for `api`.
  */
@@ -59,7 +64,8 @@ private predicate isRelevantForModels(J::Callable api) {
   not isInTestFile(api.getCompilationUnit().getFile()) and
   not isJdkInternal(api.getCompilationUnit()) and
   not api instanceof J::MainMethod and
-  not api instanceof J::StaticInitializer
+  not api instanceof J::StaticInitializer and
+  not isParameterlessConstructor(api)
 }
 
 /**

From a8a8b03d2f2f0510f4f51a7fb83b69f62786df54 Mon Sep 17 00:00:00 2001
From: Jami Cogswell <jcogs33@Jamis-MacBook-Pro.local>
Date: Thu, 8 Dec 2022 11:12:57 -0500
Subject: [PATCH 1301/1420] C#: exclude parameterless constructors from
 DataFlowTargetApi

---
 .../modelgenerator/internal/CaptureModelsSpecific.qll     | 8 +++++++-
 1 file changed, 7 insertions(+), 1 deletion(-)

diff --git a/csharp/ql/src/utils/modelgenerator/internal/CaptureModelsSpecific.qll b/csharp/ql/src/utils/modelgenerator/internal/CaptureModelsSpecific.qll
index 3e1a303d5bb..d08a3e03805 100644
--- a/csharp/ql/src/utils/modelgenerator/internal/CaptureModelsSpecific.qll
+++ b/csharp/ql/src/utils/modelgenerator/internal/CaptureModelsSpecific.qll
@@ -30,6 +30,11 @@ private predicate isHigherOrder(CS::Callable api) {
   )
 }
 
+/** Holds if the given API is a constructor without parameters. */
+private predicate isParameterlessConstructor(CS::Callable api) {
+  api instanceof CS::Constructor and api.getNumberOfParameters() = 0
+}
+
 /**
  * Holds if it is relevant to generate models for `api`.
  */
@@ -38,7 +43,8 @@ private predicate isRelevantForModels(CS::Callable api) {
   api.getDeclaringType().getNamespace().getFullName() != "" and
   not api instanceof CS::ConversionOperator and
   not api instanceof Util::MainMethod and
-  not api instanceof CS::Destructor
+  not api instanceof CS::Destructor and
+  not isParameterlessConstructor(api)
 }
 
 /**

From 51130416234f6cdfd0f7af0f422ec4517ba2eac3 Mon Sep 17 00:00:00 2001
From: Jami Cogswell <jcogs33@Jamis-MacBook-Pro.local>
Date: Fri, 9 Dec 2022 15:07:25 -0500
Subject: [PATCH 1302/1420] Java: add isParameterless predicate to Constructor
 class

---
 java/ql/lib/semmle/code/java/Member.qll                    | 3 +++
 .../modelgenerator/internal/CaptureModelsSpecific.qll      | 7 +------
 2 files changed, 4 insertions(+), 6 deletions(-)

diff --git a/java/ql/lib/semmle/code/java/Member.qll b/java/ql/lib/semmle/code/java/Member.qll
index d55a0eefdec..62f9a22401d 100644
--- a/java/ql/lib/semmle/code/java/Member.qll
+++ b/java/ql/lib/semmle/code/java/Member.qll
@@ -628,6 +628,9 @@ class Constructor extends Callable, @constructor {
   /** Holds if this is a default constructor, not explicitly declared in source code. */
   predicate isDefaultConstructor() { isDefConstr(this) }
 
+  /** Holds if this is a constructor without parameters. */
+  predicate isParameterless() { this.getNumberOfParameters() = 0 }
+
   override Constructor getSourceDeclaration() { constrs(this, _, _, _, _, result) }
 
   override string getSignature() { constrs(this, _, result, _, _, _) }
diff --git a/java/ql/src/utils/modelgenerator/internal/CaptureModelsSpecific.qll b/java/ql/src/utils/modelgenerator/internal/CaptureModelsSpecific.qll
index ed17cde0f56..25a380291d0 100644
--- a/java/ql/src/utils/modelgenerator/internal/CaptureModelsSpecific.qll
+++ b/java/ql/src/utils/modelgenerator/internal/CaptureModelsSpecific.qll
@@ -52,11 +52,6 @@ private predicate isJdkInternal(J::CompilationUnit cu) {
   cu.getPackage().getName() = ""
 }
 
-/** Holds if the given API is a constructor without parameters. */
-private predicate isParameterlessConstructor(J::Callable api) {
-  api instanceof J::Constructor and api.getNumberOfParameters() = 0
-}
-
 /**
  * Holds if it is relevant to generate models for `api`.
  */
@@ -65,7 +60,7 @@ private predicate isRelevantForModels(J::Callable api) {
   not isJdkInternal(api.getCompilationUnit()) and
   not api instanceof J::MainMethod and
   not api instanceof J::StaticInitializer and
-  not isParameterlessConstructor(api)
+  not api.(J::Constructor).isParameterless()
 }
 
 /**

From 39154b1455734923a2b259a2e3f0c8e8af0b1cab Mon Sep 17 00:00:00 2001
From: Jami Cogswell <jcogs33@Jamis-MacBook-Pro.local>
Date: Fri, 9 Dec 2022 15:15:09 -0500
Subject: [PATCH 1303/1420] C#: add isParameterless predicate to Constructor
 class

---
 csharp/ql/lib/semmle/code/csharp/Callable.qll              | 3 +++
 .../modelgenerator/internal/CaptureModelsSpecific.qll      | 7 +------
 2 files changed, 4 insertions(+), 6 deletions(-)

diff --git a/csharp/ql/lib/semmle/code/csharp/Callable.qll b/csharp/ql/lib/semmle/code/csharp/Callable.qll
index 6c66b4e1beb..bc8e1294adb 100644
--- a/csharp/ql/lib/semmle/code/csharp/Callable.qll
+++ b/csharp/ql/lib/semmle/code/csharp/Callable.qll
@@ -358,6 +358,9 @@ class Constructor extends DotNet::Constructor, Callable, Member, Attributable, @
     if this.isStatic() then result = this.getParameter(i) else result = this.getParameter(i - 1)
   }
 
+  /** Holds if this is a constructor without parameters. */
+  predicate isParameterless() { this.getNumberOfParameters() = 0 }
+
   override string getUndecoratedName() { result = ".ctor" }
 }
 
diff --git a/csharp/ql/src/utils/modelgenerator/internal/CaptureModelsSpecific.qll b/csharp/ql/src/utils/modelgenerator/internal/CaptureModelsSpecific.qll
index d08a3e03805..2cc9657ce50 100644
--- a/csharp/ql/src/utils/modelgenerator/internal/CaptureModelsSpecific.qll
+++ b/csharp/ql/src/utils/modelgenerator/internal/CaptureModelsSpecific.qll
@@ -30,11 +30,6 @@ private predicate isHigherOrder(CS::Callable api) {
   )
 }
 
-/** Holds if the given API is a constructor without parameters. */
-private predicate isParameterlessConstructor(CS::Callable api) {
-  api instanceof CS::Constructor and api.getNumberOfParameters() = 0
-}
-
 /**
  * Holds if it is relevant to generate models for `api`.
  */
@@ -44,7 +39,7 @@ private predicate isRelevantForModels(CS::Callable api) {
   not api instanceof CS::ConversionOperator and
   not api instanceof Util::MainMethod and
   not api instanceof CS::Destructor and
-  not isParameterlessConstructor(api)
+  not api.(CS::Constructor).isParameterless()
 }
 
 /**

From 446ac75c8707f5cf15fca016b2ba505ec6c7c7ee Mon Sep 17 00:00:00 2001
From: Jami Cogswell <jcogs33@Jamis-MacBook-Pro.local>
Date: Fri, 9 Dec 2022 16:23:31 -0500
Subject: [PATCH 1304/1420] Java: update unit test

---
 .../dataflow/CaptureNeutralModels.expected      | 17 -----------------
 1 file changed, 17 deletions(-)

diff --git a/java/ql/test/utils/model-generator/dataflow/CaptureNeutralModels.expected b/java/ql/test/utils/model-generator/dataflow/CaptureNeutralModels.expected
index 36ac5cfe569..0c452b8c49d 100644
--- a/java/ql/test/utils/model-generator/dataflow/CaptureNeutralModels.expected
+++ b/java/ql/test/utils/model-generator/dataflow/CaptureNeutralModels.expected
@@ -1,25 +1,11 @@
-| p;AbstractImplOfExternalSPI;AbstractImplOfExternalSPI;();generated |
 | p;Factory;getIntValue;();generated |
-| p;FinalClass;FinalClass;();generated |
 | p;FinalClass;returnsConstant;();generated |
-| p;FluentAPI$Inner;Inner;();generated |
 | p;FluentAPI$Inner;notThis;(String);generated |
-| p;FluentAPI;FluentAPI;();generated |
 | p;ImmutablePojo;getX;();generated |
-| p;ImplOfExternalSPI;ImplOfExternalSPI;();generated |
-| p;InnerClasses$CaptureMe;CaptureMe;();generated |
-| p;InnerClasses;InnerClasses;();generated |
-| p;InnerHolder;InnerHolder;();generated |
 | p;Joiner;length;();generated |
-| p;MultipleImpls$Strat1;Strat1;();generated |
-| p;MultipleImpls$Strat2;Strat2;();generated |
-| p;MultipleImpls$Strat3;Strat3;();generated |
 | p;MultipleImpls$Strategy;doSomething;(String);generated |
-| p;MultipleImpls;MultipleImpls;();generated |
-| p;ParamFlow;ParamFlow;();generated |
 | p;ParamFlow;ignorePrimitiveReturnValue;(String);generated |
 | p;ParamFlow;mapType;(Class);generated |
-| p;Pojo;Pojo;();generated |
 | p;Pojo;doNotSetValue;(String);generated |
 | p;Pojo;getBigDecimal;();generated |
 | p;Pojo;getBigInt;();generated |
@@ -31,13 +17,10 @@
 | p;Pojo;getPrimitiveArray;();generated |
 | p;PrivateFlowViaPublicInterface$SPI;openStream;();generated |
 | p;PrivateFlowViaPublicInterface$SPI;openStreamNone;();generated |
-| p;PrivateFlowViaPublicInterface;PrivateFlowViaPublicInterface;();generated |
 | p;PrivateFlowViaPublicInterface;createAnSPIWithoutTrackingFile;(File);generated |
-| p;Sinks;Sinks;();generated |
 | p;Sinks;copyFileToDirectory;(Path,Path,CopyOption[]);generated |
 | p;Sinks;propagate;(String);generated |
 | p;Sinks;readUrl;(URL,Charset);generated |
-| p;Sources;Sources;();generated |
 | p;Sources;readUrl;(URL);generated |
 | p;Sources;socketStream;();generated |
 | p;Sources;sourceToParameter;(InputStream[],List);generated |

From 22f8d97f31e4c68fa3cf95889bc105c15e9b68ee Mon Sep 17 00:00:00 2001
From: Jami Cogswell <jcogs33@Jamis-MacBook-Pro.local>
Date: Fri, 9 Dec 2022 17:25:11 -0500
Subject: [PATCH 1305/1420] C#: add test case

---
 .../utils/model-generator/dataflow/NoSummaries.cs   | 13 ++++++++++++-
 1 file changed, 12 insertions(+), 1 deletion(-)

diff --git a/csharp/ql/test/utils/model-generator/dataflow/NoSummaries.cs b/csharp/ql/test/utils/model-generator/dataflow/NoSummaries.cs
index 112857f504e..b2c21b57917 100644
--- a/csharp/ql/test/utils/model-generator/dataflow/NoSummaries.cs
+++ b/csharp/ql/test/utils/model-generator/dataflow/NoSummaries.cs
@@ -131,4 +131,15 @@ public class CollectionFlow
     {
         return a;
     }
-}
\ No newline at end of file
+}
+
+// A neutral model should not be created for a parameterless constructor.
+public class ParameterlessConstructor
+{
+    public bool IsInitialized;
+
+    public ParameterlessConstructor()
+    {
+        IsInitialized = true;
+    }
+}

From 3526406db050258dae3c485341b10b2705984d73 Mon Sep 17 00:00:00 2001
From: Jami Cogswell <jcogs33@Jamis-MacBook-Pro.local>
Date: Mon, 12 Dec 2022 15:10:55 -0500
Subject: [PATCH 1306/1420] Java: add tests

---
 .../GeneratedVsManualCoverage.expected        |  1 +
 .../GeneratedVsManualCoverage.qlref           |  1 +
 .../GeneratedVsManualCoverage/IOUtils.java    | 24 +++++++++++++++++++
 .../Metrics/{ => LinesOfCode}/A.java          |  0
 .../{ => LinesOfCode}/LinesOfCode.expected    |  0
 .../{ => LinesOfCode}/LinesOfCode.qlref       |  0
 6 files changed, 26 insertions(+)
 create mode 100644 java/ql/test/query-tests/Metrics/GeneratedVsManualCoverage/GeneratedVsManualCoverage.expected
 create mode 100644 java/ql/test/query-tests/Metrics/GeneratedVsManualCoverage/GeneratedVsManualCoverage.qlref
 create mode 100644 java/ql/test/query-tests/Metrics/GeneratedVsManualCoverage/IOUtils.java
 rename java/ql/test/query-tests/Metrics/{ => LinesOfCode}/A.java (100%)
 rename java/ql/test/query-tests/Metrics/{ => LinesOfCode}/LinesOfCode.expected (100%)
 rename java/ql/test/query-tests/Metrics/{ => LinesOfCode}/LinesOfCode.qlref (100%)

diff --git a/java/ql/test/query-tests/Metrics/GeneratedVsManualCoverage/GeneratedVsManualCoverage.expected b/java/ql/test/query-tests/Metrics/GeneratedVsManualCoverage/GeneratedVsManualCoverage.expected
new file mode 100644
index 00000000000..ceb2da34df5
--- /dev/null
+++ b/java/ql/test/query-tests/Metrics/GeneratedVsManualCoverage/GeneratedVsManualCoverage.expected
@@ -0,0 +1 @@
+| org.apache.commons.io | 14 | 1 | 1 | 2 | 18 | 0.5 | 0.06666666666666667 |
diff --git a/java/ql/test/query-tests/Metrics/GeneratedVsManualCoverage/GeneratedVsManualCoverage.qlref b/java/ql/test/query-tests/Metrics/GeneratedVsManualCoverage/GeneratedVsManualCoverage.qlref
new file mode 100644
index 00000000000..18e1cb980d9
--- /dev/null
+++ b/java/ql/test/query-tests/Metrics/GeneratedVsManualCoverage/GeneratedVsManualCoverage.qlref
@@ -0,0 +1 @@
+Metrics/Summaries/GeneratedVsManualCoverage.ql
diff --git a/java/ql/test/query-tests/Metrics/GeneratedVsManualCoverage/IOUtils.java b/java/ql/test/query-tests/Metrics/GeneratedVsManualCoverage/IOUtils.java
new file mode 100644
index 00000000000..cdd91e87814
--- /dev/null
+++ b/java/ql/test/query-tests/Metrics/GeneratedVsManualCoverage/IOUtils.java
@@ -0,0 +1,24 @@
+package org.apache.commons.io;
+import java.io.*;
+import java.util.*;
+
+public class IOUtils {
+  public static BufferedInputStream buffer(InputStream inputStream) { return null; } // Generated-only summary
+  public static void copy(InputStream input, Writer output, String inputEncoding) throws IOException { } // Generated-only summary
+  public static void copy(Reader input, OutputStream output) throws IOException { } // Generated neutral
+  public static long copyLarge(Reader input, Writer output) throws IOException { return 42; } // Generated-only summary
+  public static int read(InputStream input, byte[] buffer) throws IOException { return 42; } // Generated-only summary
+  public static void readFully(InputStream input, byte[] buffer) throws IOException { } // Generated-only summary
+  public static byte[] readFully(InputStream input, int length) throws IOException { return null; } // Generated-only summary
+  public static List<String> readLines(InputStream input, String encoding) throws IOException { return null; } // Generated-only summary
+  public static InputStream toBufferedInputStream(InputStream input) throws IOException { return null; } // Manual-only summary (generated neutral)
+  public static BufferedReader toBufferedReader(Reader reader) { return null; } // Generated-only summary
+  public static byte[] toByteArray(InputStream input, int size) throws IOException { return null; } // Generated-only summary
+  public static char[] toCharArray(InputStream is, String encoding) throws IOException { return null; } // Generated-only summary
+  public static InputStream toInputStream(String input, String encoding) throws IOException { return null; } // Generated-only summary
+  public static String toString(InputStream input, String encoding) throws IOException { return null; } // Generated-only summary
+  public static void write(char[] data, Writer output) throws IOException { } // Generated-only summary
+  public static void writeChunked(char[] data, Writer output) throws IOException { } // Generated-only summary
+  public static void writeLines(Collection<?> lines, String lineEnding, Writer writer) throws IOException { } // Both
+  public static void noSummary(String string) throws IOException { } // No model
+}
diff --git a/java/ql/test/query-tests/Metrics/A.java b/java/ql/test/query-tests/Metrics/LinesOfCode/A.java
similarity index 100%
rename from java/ql/test/query-tests/Metrics/A.java
rename to java/ql/test/query-tests/Metrics/LinesOfCode/A.java
diff --git a/java/ql/test/query-tests/Metrics/LinesOfCode.expected b/java/ql/test/query-tests/Metrics/LinesOfCode/LinesOfCode.expected
similarity index 100%
rename from java/ql/test/query-tests/Metrics/LinesOfCode.expected
rename to java/ql/test/query-tests/Metrics/LinesOfCode/LinesOfCode.expected
diff --git a/java/ql/test/query-tests/Metrics/LinesOfCode.qlref b/java/ql/test/query-tests/Metrics/LinesOfCode/LinesOfCode.qlref
similarity index 100%
rename from java/ql/test/query-tests/Metrics/LinesOfCode.qlref
rename to java/ql/test/query-tests/Metrics/LinesOfCode/LinesOfCode.qlref

From 92a7e787a8aa758e0d254cf30ad791ba33e8cd32 Mon Sep 17 00:00:00 2001
From: erik-krogh <erik-krogh@github.com>
Date: Mon, 12 Dec 2022 22:17:50 +0100
Subject: [PATCH 1307/1420] C: do the minimal change to ValueNumberBound
 instead

---
 .../semmle/code/cpp/semantic/SemanticExprSpecific.qll  | 10 +++++++++-
 1 file changed, 9 insertions(+), 1 deletion(-)

diff --git a/cpp/ql/lib/experimental/semmle/code/cpp/semantic/SemanticExprSpecific.qll b/cpp/ql/lib/experimental/semmle/code/cpp/semantic/SemanticExprSpecific.qll
index 7b9cc1ee4d1..f72edf2f806 100644
--- a/cpp/ql/lib/experimental/semmle/code/cpp/semantic/SemanticExprSpecific.qll
+++ b/cpp/ql/lib/experimental/semmle/code/cpp/semantic/SemanticExprSpecific.qll
@@ -286,7 +286,15 @@ module SemanticExprConfig {
     )
   }
 
-  class Bound = IRBound::Bound;
+  class Bound instanceof IRBound::Bound {
+    string toString() { result = super.toString() }
+
+    final Location getLocation() { result = super.getLocation() }
+  }
+
+  private class ValueNumberBound extends Bound instanceof IRBound::ValueNumberBound {
+    override string toString() { result = IRBound::ValueNumberBound.super.toString() }
+  }
 
   predicate zeroBound(Bound bound) { bound instanceof IRBound::ZeroBound }
 

From f0124dae1ac37e758ed7da1ecaea11e29b9c327e Mon Sep 17 00:00:00 2001
From: Jami Cogswell <jcogs33@Jamis-MacBook-Pro.local>
Date: Mon, 12 Dec 2022 16:40:19 -0500
Subject: [PATCH 1308/1420] Java: replace exists with instanceof

---
 java/ql/src/Metrics/Summaries/GeneratedVsManualCoverage.ql | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/java/ql/src/Metrics/Summaries/GeneratedVsManualCoverage.ql b/java/ql/src/Metrics/Summaries/GeneratedVsManualCoverage.ql
index bfd59e4cdf4..0b3c79e0d3b 100644
--- a/java/ql/src/Metrics/Summaries/GeneratedVsManualCoverage.ql
+++ b/java/ql/src/Metrics/Summaries/GeneratedVsManualCoverage.ql
@@ -20,7 +20,7 @@ private int getNumMadModeledApis(string package, string provenance) {
   result =
     count(SummarizedCallable sc |
       package = sc.asCallable().getCompilationUnit().getPackage().getName() and
-      exists(DataFlowTargetApi dataFlowTargApi | sc.asCallable() = dataFlowTargApi) and
+      sc.asCallable() instanceof DataFlowTargetApi and
       (
         sc.isAutoGenerated() and // "auto-only"
         provenance = "generated"

From a77acd6745c7ac9299370dcf9fbec839281a5520 Mon Sep 17 00:00:00 2001
From: Jami Cogswell <jcogs33@Jamis-MacBook-Pro.local>
Date: Mon, 12 Dec 2022 17:28:12 -0500
Subject: [PATCH 1309/1420] Java: add change note

---
 java/ql/src/change-notes/2022-12-12-java-mad-metrics-query.md | 4 ++++
 1 file changed, 4 insertions(+)
 create mode 100644 java/ql/src/change-notes/2022-12-12-java-mad-metrics-query.md

diff --git a/java/ql/src/change-notes/2022-12-12-java-mad-metrics-query.md b/java/ql/src/change-notes/2022-12-12-java-mad-metrics-query.md
new file mode 100644
index 00000000000..8d4dd5d77e1
--- /dev/null
+++ b/java/ql/src/change-notes/2022-12-12-java-mad-metrics-query.md
@@ -0,0 +1,4 @@
+---
+category: newQuery
+---
+* Added a new query, `java/summary/generated-vs-manual-coverage`, to expose metrics for the number of API endpoints covered by generated versus manual MaD models.

From 08b5cf141590ec5941a2235fdcc839cffba3f5ac Mon Sep 17 00:00:00 2001
From: Jami Cogswell <jcogs33@Jamis-MacBook-Pro.local>
Date: Mon, 12 Dec 2022 20:24:00 -0500
Subject: [PATCH 1310/1420] Java/C#: fix formatting issue

---
 csharp/ql/src/Telemetry/SupportedExternalApis.ql | 4 ++--
 java/ql/src/Telemetry/SupportedExternalApis.ql   | 4 ++--
 2 files changed, 4 insertions(+), 4 deletions(-)

diff --git a/csharp/ql/src/Telemetry/SupportedExternalApis.ql b/csharp/ql/src/Telemetry/SupportedExternalApis.ql
index 3743b297c94..1aa08bbd3aa 100644
--- a/csharp/ql/src/Telemetry/SupportedExternalApis.ql
+++ b/csharp/ql/src/Telemetry/SupportedExternalApis.ql
@@ -12,8 +12,8 @@ private import semmle.code.csharp.dataflow.internal.FlowSummaryImpl as FlowSumma
 private import ExternalApi
 
 private predicate relevant(ExternalApi api) {
-    api.isSupported() or
-    api instanceof FlowSummaryImpl::Public::NeutralCallable
+  api.isSupported() or
+  api instanceof FlowSummaryImpl::Public::NeutralCallable
 }
 
 from string info, int usages
diff --git a/java/ql/src/Telemetry/SupportedExternalApis.ql b/java/ql/src/Telemetry/SupportedExternalApis.ql
index 48465c80187..ad1554dba91 100644
--- a/java/ql/src/Telemetry/SupportedExternalApis.ql
+++ b/java/ql/src/Telemetry/SupportedExternalApis.ql
@@ -11,8 +11,8 @@ import semmle.code.java.dataflow.internal.FlowSummaryImpl as FlowSummaryImpl
 import ExternalApi
 
 private predicate relevant(ExternalApi api) {
-    api.isSupported() or
-    api = any(FlowSummaryImpl::Public::NeutralCallable nsc).asCallable()
+  api.isSupported() or
+  api = any(FlowSummaryImpl::Public::NeutralCallable nsc).asCallable()
 }
 
 from string apiName, int usages

From 03d7adb30358bfd35549f34d95de3ba613425f30 Mon Sep 17 00:00:00 2001
From: Paolo Tranquilli <redsun82@github.com>
Date: Tue, 13 Dec 2022 09:07:37 +0100
Subject: [PATCH 1311/1420] Swift: wrap extractor with shell script

This is in preparation for the extractor to use shared libraries
packaged alongside it.

We could probably also move the `CODEQL_EXTRACTOR_SWIFT_RUN_UNDER` logic
in it, where it would be simpler and more robust.
---
 swift/BUILD.bazel            |  4 ++--
 swift/extractor/BUILD.bazel  | 19 ++++++++++++++++---
 swift/extractor/extractor.sh |  9 +++++++++
 3 files changed, 27 insertions(+), 5 deletions(-)
 create mode 100755 swift/extractor/extractor.sh

diff --git a/swift/BUILD.bazel b/swift/BUILD.bazel
index 4803d4b3153..bafbe01f712 100644
--- a/swift/BUILD.bazel
+++ b/swift/BUILD.bazel
@@ -39,9 +39,9 @@ pkg_filegroup(
     visibility = ["//visibility:public"],
 )
 
-pkg_runfiles(
+pkg_filegroup(
     name = "extractor",
-    srcs = ["//swift/extractor"],
+    srcs = ["//swift/extractor:pkg"],
     prefix = "tools/" + codeql_platform,
 )
 
diff --git a/swift/extractor/BUILD.bazel b/swift/extractor/BUILD.bazel
index 2e6d93adf8c..7363d8051fd 100644
--- a/swift/extractor/BUILD.bazel
+++ b/swift/extractor/BUILD.bazel
@@ -1,13 +1,13 @@
 load("//swift:rules.bzl", "swift_cc_binary")
 load("//misc/bazel/cmake:cmake.bzl", "generate_cmake")
+load("//misc/bazel:pkg_runfiles.bzl", "pkg_runfiles")
 
 swift_cc_binary(
-    name = "extractor",
+    name = "extractor.real",
     srcs = glob([
         "*.h",
         "*.cpp",
     ]),
-    visibility = ["//swift:__pkg__"],
     deps = [
         "//swift/extractor/infra",
         "//swift/extractor/invocation",
@@ -19,6 +19,19 @@ swift_cc_binary(
 
 generate_cmake(
     name = "cmake",
-    targets = [":extractor"],
+    targets = [":extractor.real"],
     visibility = ["//visibility:public"],
 )
+
+sh_binary(
+    name = "extractor",
+    srcs = ["extractor.sh"],
+    data = [":extractor.real"],
+)
+
+pkg_runfiles(
+    name = "pkg",
+    srcs = [":extractor"],
+    excludes = ["extractor.sh"],  # script gets copied as "extractor", no need for the original .sh file
+    visibility = ["//swift:__pkg__"],
+)
diff --git a/swift/extractor/extractor.sh b/swift/extractor/extractor.sh
new file mode 100755
index 00000000000..7040a89a45e
--- /dev/null
+++ b/swift/extractor/extractor.sh
@@ -0,0 +1,9 @@
+#!/bin/bash
+
+if [[ "$(uname)" == Darwin ]]; then
+  export DYLD_FALLBACK_LIBRARY_PATH=$(dirname "$0")
+else
+  export LD_LIBRARY_PATH=$(dirname "$0")
+fi
+
+exec -a "$0" "$0.real" "$@"

From 0dc717fd9c6c9622d723a8af5cbdf7d2906b7a8b Mon Sep 17 00:00:00 2001
From: Paolo Tranquilli <redsun82@github.com>
Date: Tue, 13 Dec 2022 09:13:43 +0100
Subject: [PATCH 1312/1420] Swift: remove no more needed library path setting
 in `qltest.sh`

---
 swift/tools/qltest.sh | 2 --
 1 file changed, 2 deletions(-)

diff --git a/swift/tools/qltest.sh b/swift/tools/qltest.sh
index 84b26c47153..0f86fc68cdf 100755
--- a/swift/tools/qltest.sh
+++ b/swift/tools/qltest.sh
@@ -4,8 +4,6 @@ mkdir -p "$CODEQL_EXTRACTOR_SWIFT_TRAP_DIR"
 
 QLTEST_LOG="$CODEQL_EXTRACTOR_SWIFT_LOG_DIR"/qltest.log
 
-export LD_LIBRARY_PATH="$CODEQL_EXTRACTOR_SWIFT_ROOT/tools/$CODEQL_PLATFORM"
-
 EXTRACTOR="$CODEQL_EXTRACTOR_SWIFT_ROOT/tools/$CODEQL_PLATFORM/extractor"
 SDK="$CODEQL_EXTRACTOR_SWIFT_ROOT/qltest/$CODEQL_PLATFORM/sdk"
 

From d11cb2ee0f8297367141005e3cd3e498bbf58571 Mon Sep 17 00:00:00 2001
From: Tom Hvitved <hvitved@github.com>
Date: Thu, 8 Dec 2022 11:15:03 +0100
Subject: [PATCH 1313/1420] Data flow: Introduce `ApproxContent` in a new
 pruning stage between existing stages 2 and 3

---
 .../ruby/dataflow/internal/DataFlowImpl.qll   | 510 +++++++++++++-----
 .../dataflow/internal/DataFlowImplCommon.qll  | 103 +++-
 .../internal/DataFlowImplConsistency.qll      |   5 +
 .../dataflow/internal/DataFlowPrivate.qll     |  62 +++
 4 files changed, 548 insertions(+), 132 deletions(-)

diff --git a/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImpl.qll b/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImpl.qll
index ccde916a3c2..a89c3772f1f 100644
--- a/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImpl.qll
+++ b/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImpl.qll
@@ -621,23 +621,6 @@ private predicate parameterFlowThroughAllowed(ParamNodeEx p, ReturnKindExt kind)
   )
 }
 
-/**
- * Holds if flow from a parameter at position `pos` inside `c` to a return node of
- * kind `kind` is allowed.
- *
- * We don't expect a parameter to return stored in itself, unless
- * explicitly allowed
- */
-bindingset[c, pos, kind]
-private predicate parameterFlowThroughAllowed(
-  DataFlowCallable c, ParameterPosition pos, ReturnKindExt kind
-) {
-  exists(ParamNodeEx p |
-    p.isParameterOf(c, pos) and
-    parameterFlowThroughAllowed(p, kind)
-  )
-}
-
 private module Stage1 implements StageSig {
   class Ap = Unit;
 
@@ -980,6 +963,12 @@ private module Stage1 implements StageSig {
   pragma[nomagic]
   predicate revFlow(NodeEx node, Configuration config) { revFlow(node, _, config) }
 
+  pragma[nomagic]
+  predicate revFlowAp(NodeEx node, Ap ap, Configuration config) {
+    revFlow(node, config) and
+    exists(ap)
+  }
+
   bindingset[node, state, config]
   predicate revFlow(NodeEx node, FlowState state, Ap ap, Configuration config) {
     revFlow(node, _, pragma[only_bind_into](config)) and
@@ -1022,9 +1011,13 @@ private module Stage1 implements StageSig {
   }
 
   pragma[nomagic]
-  predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config) {
+  predicate returnMayFlowThrough(
+    RetNodeEx ret, Ap argAp, Ap ap, ReturnKindExt kind, Configuration config
+  ) {
     throughFlowNodeCand(ret, config) and
-    kind = ret.getKind()
+    kind = ret.getKind() and
+    exists(argAp) and
+    exists(ap)
   }
 
   pragma[nomagic]
@@ -1189,6 +1182,8 @@ private signature module StageSig {
 
   predicate revFlow(NodeEx node, Configuration config);
 
+  predicate revFlowAp(NodeEx node, Ap ap, Configuration config);
+
   bindingset[node, state, config]
   predicate revFlow(NodeEx node, FlowState state, Ap ap, Configuration config);
 
@@ -1196,7 +1191,9 @@ private signature module StageSig {
 
   predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config);
 
-  predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config);
+  predicate returnMayFlowThrough(
+    RetNodeEx ret, Ap argAp, Ap ap, ReturnKindExt kind, Configuration config
+  );
 
   predicate storeStepCand(
     NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, DataFlowType contentType,
@@ -1281,21 +1278,43 @@ private module MkStage<StageSig PrevStage> {
     import Param
 
     /* Begin: Stage logic. */
-    bindingset[result, apa]
-    private ApApprox unbindApa(ApApprox apa) {
-      pragma[only_bind_out](apa) = pragma[only_bind_out](result)
+    // use an alias as a workaround for bad functionality-induced joins
+    pragma[nomagic]
+    private predicate revFlowApAlias(NodeEx node, ApApprox apa, Configuration config) {
+      PrevStage::revFlowAp(node, apa, config)
+    }
+
+    pragma[nomagic]
+    private predicate flowIntoCallApa(
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, ApApprox apa,
+      Configuration config
+    ) {
+      flowIntoCall(call, arg, p, allowsFieldFlow, config) and
+      PrevStage::revFlowAp(p, pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
+      revFlowApAlias(arg, pragma[only_bind_into](apa), pragma[only_bind_into](config))
+    }
+
+    pragma[nomagic]
+    private predicate flowOutOfCallApa(
+      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
+      ApApprox apa, Configuration config
+    ) {
+      flowOutOfCall(call, ret, kind, out, allowsFieldFlow, config) and
+      PrevStage::revFlowAp(out, pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
+      revFlowApAlias(ret, pragma[only_bind_into](apa), pragma[only_bind_into](config))
     }
 
     pragma[nomagic]
     private predicate flowThroughOutOfCall(
-      DataFlowCall call, DataFlowCallable c, CcCall ccc, RetNodeEx ret, ReturnKindExt kind,
-      NodeEx out, boolean allowsFieldFlow, Configuration config
+      DataFlowCall call, CcCall ccc, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow,
+      ApApprox argApa, ApApprox apa, Configuration config
     ) {
-      flowOutOfCall(call, ret, kind, out, allowsFieldFlow, pragma[only_bind_into](config)) and
-      PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
-      PrevStage::returnMayFlowThrough(ret, kind, pragma[only_bind_into](config)) and
-      matchesCall(ccc, call) and
-      c = ret.getEnclosingCallable()
+      exists(ReturnKindExt kind |
+        flowOutOfCallApa(call, ret, kind, out, allowsFieldFlow, apa, pragma[only_bind_into](config)) and
+        PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
+        PrevStage::returnMayFlowThrough(ret, argApa, apa, kind, pragma[only_bind_into](config)) and
+        matchesCall(ccc, call)
+      )
     }
 
     /**
@@ -1307,39 +1326,50 @@ private module MkStage<StageSig PrevStage> {
      * corresponding parameter position and access path of that argument, respectively.
      */
     pragma[nomagic]
+    additional predicate fwdFlow(
+      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      Ap ap, ApApprox apa, Configuration config
+    ) {
+      fwdFlow0(node, state, cc, summaryCtx, argAp, ap, apa, config) and
+      PrevStage::revFlow(node, state, apa, config) and
+      filter(node, state, ap, config)
+    }
+
+    pragma[inline]
     additional predicate fwdFlow(
       NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
       Ap ap, Configuration config
     ) {
-      fwdFlow0(node, state, cc, summaryCtx, argAp, ap, config) and
-      PrevStage::revFlow(node, state, unbindApa(getApprox(ap)), config) and
-      filter(node, state, ap, config)
+      fwdFlow(node, state, cc, summaryCtx, argAp, ap, _, config)
     }
 
     pragma[nomagic]
     private predicate fwdFlow0(
       NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      Ap ap, Configuration config
+      Ap ap, ApApprox apa, Configuration config
     ) {
       sourceNode(node, state, config) and
       (if hasSourceCallCtx(config) then cc = ccSomeCall() else cc = ccNone()) and
       argAp = apNone() and
       summaryCtx = TParameterPositionNone() and
-      ap = getApNil(node)
+      ap = getApNil(node) and
+      apa = getApprox(ap)
       or
-      exists(NodeEx mid, FlowState state0, Ap ap0, LocalCc localCc |
-        fwdFlow(mid, state0, cc, summaryCtx, argAp, ap0, config) and
+      exists(NodeEx mid, FlowState state0, Ap ap0, ApApprox apa0, LocalCc localCc |
+        fwdFlow(mid, state0, cc, summaryCtx, argAp, ap0, apa0, config) and
         localCc = getLocalCc(mid, cc)
       |
         localStep(mid, state0, node, state, true, _, config, localCc) and
-        ap = ap0
+        ap = ap0 and
+        apa = apa0
         or
         localStep(mid, state0, node, state, false, ap, config, localCc) and
-        ap0 instanceof ApNil
+        ap0 instanceof ApNil and
+        apa = getApprox(ap)
       )
       or
       exists(NodeEx mid |
-        fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, apa, pragma[only_bind_into](config)) and
         jumpStep(mid, node, config) and
         cc = ccNone() and
         summaryCtx = TParameterPositionNone() and
@@ -1352,7 +1382,8 @@ private module MkStage<StageSig PrevStage> {
         cc = ccNone() and
         summaryCtx = TParameterPositionNone() and
         argAp = apNone() and
-        ap = getApNil(node)
+        ap = getApNil(node) and
+        apa = getApprox(ap)
       )
       or
       exists(NodeEx mid, FlowState state0, ApNil nil |
@@ -1361,32 +1392,32 @@ private module MkStage<StageSig PrevStage> {
         cc = ccNone() and
         summaryCtx = TParameterPositionNone() and
         argAp = apNone() and
-        ap = getApNil(node)
+        ap = getApNil(node) and
+        apa = getApprox(ap)
       )
       or
       // store
       exists(TypedContent tc, Ap ap0 |
         fwdFlowStore(_, ap0, tc, node, state, cc, summaryCtx, argAp, config) and
-        ap = apCons(tc, ap0)
+        ap = apCons(tc, ap0) and
+        apa = getApprox(ap)
       )
       or
       // read
       exists(Ap ap0, Content c |
         fwdFlowRead(ap0, c, _, node, state, cc, summaryCtx, argAp, config) and
-        fwdFlowConsCand(ap0, c, ap, config)
+        fwdFlowConsCand(ap0, c, ap, config) and
+        apa = getApprox(ap)
       )
       or
       // flow into a callable
-      exists(ApApprox apa |
-        fwdFlowIn(_, node, state, _, cc, _, _, ap, config) and
-        apa = getApprox(ap) and
-        if PrevStage::parameterMayFlowThrough(node, apa, config)
-        then (
-          summaryCtx = TParameterPositionSome(node.(ParamNodeEx).getPosition()) and
-          argAp = apSome(ap)
-        ) else (
-          summaryCtx = TParameterPositionNone() and argAp = apNone()
-        )
+      fwdFlowIn(_, node, state, _, cc, _, _, ap, apa, config) and
+      if PrevStage::parameterMayFlowThrough(node, apa, config)
+      then (
+        summaryCtx = TParameterPositionSome(node.(ParamNodeEx).getPosition()) and
+        argAp = apSome(ap)
+      ) else (
+        summaryCtx = TParameterPositionNone() and argAp = apNone()
       )
       or
       // flow out of a callable
@@ -1394,8 +1425,8 @@ private module MkStage<StageSig PrevStage> {
         DataFlowCall call, RetNodeEx ret, boolean allowsFieldFlow, CcNoCall innercc,
         DataFlowCallable inner
       |
-        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, config) and
-        flowOutOfCall(call, ret, _, node, allowsFieldFlow, config) and
+        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, apa, config) and
+        flowOutOfCallApa(call, ret, _, node, allowsFieldFlow, apa, config) and
         inner = ret.getEnclosingCallable() and
         cc = getCallContextReturn(inner, call, innercc) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
@@ -1403,7 +1434,7 @@ private module MkStage<StageSig PrevStage> {
       or
       // flow through a callable
       exists(DataFlowCall call, ParameterPosition summaryCtx0, Ap argAp0 |
-        fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, config) and
+        fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, apa, config) and
         fwdFlowIsEntered(call, cc, summaryCtx, argAp, summaryCtx0, argAp0, config)
       )
     }
@@ -1413,9 +1444,9 @@ private module MkStage<StageSig PrevStage> {
       NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc,
       ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
     ) {
-      exists(DataFlowType contentType |
-        fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, config) and
-        PrevStage::storeStepCand(node1, unbindApa(getApprox(ap1)), tc, node2, contentType, config) and
+      exists(DataFlowType contentType, ApApprox apa1 |
+        fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, apa1, config) and
+        PrevStage::storeStepCand(node1, apa1, tc, node2, contentType, config) and
         typecheckStore(ap1, contentType)
       )
     }
@@ -1433,43 +1464,104 @@ private module MkStage<StageSig PrevStage> {
       )
     }
 
+    private class ApNonNil instanceof Ap {
+      pragma[nomagic]
+      ApNonNil() { not this instanceof ApNil }
+
+      string toString() { result = "" }
+    }
+
+    pragma[nomagic]
+    private predicate fwdFlowRead0(
+      NodeEx node1, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      ApNonNil ap, Configuration config
+    ) {
+      fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
+      PrevStage::readStepCand(node1, _, _, config)
+    }
+
     pragma[nomagic]
     private predicate fwdFlowRead(
       Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc,
       ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
     ) {
-      fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
+      fwdFlowRead0(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, c, node2, config) and
       getHeadContent(ap) = c
     }
 
     pragma[nomagic]
     private predicate fwdFlowIn(
-      DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, Cc innercc,
-      ParameterPositionOption summaryCtx, ApOption argAp, Ap ap, Configuration config
+      DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, CcCall innercc,
+      ParameterPositionOption summaryCtx, ApOption argAp, Ap ap, ApApprox apa, Configuration config
     ) {
       exists(ArgNodeEx arg, boolean allowsFieldFlow |
-        fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, config) and
-        flowIntoCall(call, arg, p, allowsFieldFlow, config) and
+        fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, apa, config) and
+        flowIntoCallApa(call, arg, p, allowsFieldFlow, apa, config) and
         innercc = getCallContextCall(call, p.getEnclosingCallable(), outercc) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
+    pragma[nomagic]
+    private predicate fwdFlowRetFromArg(
+      RetNodeEx ret, FlowState state, CcCall ccc, ParameterPosition summaryCtx, ParamNodeEx p,
+      Ap argAp, ApApprox argApa, Ap ap, ApApprox apa, Configuration config
+    ) {
+      exists(DataFlowCallable c, ReturnKindExt kind |
+        fwdFlow(pragma[only_bind_into](ret), state, ccc,
+          TParameterPositionSome(pragma[only_bind_into](summaryCtx)), apSome(argAp), ap, apa, config) and
+        getApprox(argAp) = argApa and
+        c = ret.getEnclosingCallable() and
+        kind = ret.getKind() and
+        p.isParameterOf(c, pragma[only_bind_into](summaryCtx)) and
+        parameterFlowThroughAllowed(p, kind)
+      )
+    }
+
+    pragma[inline]
+    private predicate fwdFlowInMayFlowThrough(
+      DataFlowCall call, Cc cc, CcCall innerCc, ParameterPositionOption summaryCtx, ApOption argAp,
+      ParamNodeEx param, Ap ap, ApApprox apa, Configuration config
+    ) {
+      fwdFlowIn(call, pragma[only_bind_into](param), _, cc, innerCc, summaryCtx, argAp, ap,
+        pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
+      PrevStage::parameterMayFlowThrough(param, apa, config)
+    }
+
+    // dedup before joining with `flowThroughOutOfCall`
+    pragma[nomagic]
+    private predicate fwdFlowInMayFlowThroughProj(
+      DataFlowCall call, CcCall innerCc, ApApprox apa, Configuration config
+    ) {
+      fwdFlowInMayFlowThrough(call, _, innerCc, _, _, _, _, apa, config)
+    }
+
+    /**
+     * Same as `flowThroughOutOfCall`, but restricted to calls that are reached
+     * in the flow covered by `fwdFlow`, where data might flow through the target
+     * callable and back out at `call`.
+     */
+    pragma[nomagic]
+    private predicate fwdFlowThroughOutOfCall(
+      DataFlowCall call, CcCall ccc, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow,
+      ApApprox argApa, ApApprox apa, Configuration config
+    ) {
+      fwdFlowInMayFlowThroughProj(call, ccc, argApa, config) and
+      flowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, argApa, apa, config)
+    }
+
     pragma[nomagic]
     private predicate fwdFlowOutFromArg(
       DataFlowCall call, NodeEx out, FlowState state, ParameterPosition summaryCtx, Ap argAp, Ap ap,
-      Configuration config
+      ApApprox apa, Configuration config
     ) {
-      exists(
-        DataFlowCallable c, RetNodeEx ret, ReturnKindExt kind, boolean allowsFieldFlow, CcCall ccc
-      |
-        fwdFlow(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc),
-          TParameterPositionSome(pragma[only_bind_into](summaryCtx)), apSome(argAp), ap, config) and
-        flowThroughOutOfCall(call, pragma[only_bind_into](c), ccc, ret, kind, out, allowsFieldFlow,
+      exists(RetNodeEx ret, boolean allowsFieldFlow, CcCall ccc, ApApprox argApa |
+        fwdFlowRetFromArg(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc),
+          summaryCtx, _, argAp, pragma[only_bind_into](argApa), ap, pragma[only_bind_into](apa),
           config) and
-        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
-        parameterFlowThroughAllowed(c, pragma[only_bind_into](summaryCtx), kind)
+        fwdFlowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, argApa, apa, config) and
+        (if allowsFieldFlow = false then ap instanceof ApNil else any())
       )
     }
 
@@ -1483,8 +1575,7 @@ private module MkStage<StageSig PrevStage> {
       ParameterPosition pos, Ap ap, Configuration config
     ) {
       exists(ParamNodeEx param |
-        fwdFlowIn(call, param, _, cc, _, summaryCtx, argAp, ap, config) and
-        PrevStage::parameterMayFlowThrough(param, unbindApa(getApprox(ap)), config) and
+        fwdFlowInMayFlowThrough(call, cc, _, summaryCtx, argAp, param, ap, _, config) and
         pos = param.getPosition()
       )
     }
@@ -1505,41 +1596,55 @@ private module MkStage<StageSig PrevStage> {
       fwdFlowConsCand(ap1, c, ap2, config)
     }
 
-    pragma[nomagic]
-    private predicate returnFlowsThrough0(
-      RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, DataFlowCallable c,
-      ParameterPosition ppos, Ap argAp, Ap ap, Configuration config
-    ) {
-      exists(boolean allowsFieldFlow |
-        fwdFlow(ret, state, ccc, TParameterPositionSome(ppos), apSome(argAp), ap, config) and
-        flowThroughOutOfCall(_, c, _, pragma[only_bind_into](ret), kind, _, allowsFieldFlow,
-          pragma[only_bind_into](config)) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
-      )
-    }
-
     pragma[nomagic]
     private predicate returnFlowsThrough(
       RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, ParamNodeEx p, Ap argAp,
       Ap ap, Configuration config
     ) {
-      exists(DataFlowCallable c, ParameterPosition ppos |
-        returnFlowsThrough0(ret, kind, state, ccc, c, ppos, argAp, ap, config) and
-        p.isParameterOf(c, ppos) and
-        parameterFlowThroughAllowed(p, kind)
+      exists(boolean allowsFieldFlow, ApApprox argApa, ApApprox apa |
+        fwdFlowRetFromArg(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc), _, p,
+          argAp, pragma[only_bind_into](argApa), ap, pragma[only_bind_into](apa), config) and
+        kind = ret.getKind() and
+        fwdFlowThroughOutOfCall(_, ccc, ret, _, allowsFieldFlow, argApa, apa, config) and
+        (if allowsFieldFlow = false then ap instanceof ApNil else any())
       )
     }
 
     pragma[nomagic]
     private predicate flowThroughIntoCall(
-      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp,
+      Configuration config
     ) {
-      exists(Ap argAp |
-        flowIntoCall(call, pragma[only_bind_into](arg), pragma[only_bind_into](p), allowsFieldFlow,
+      exists(ApApprox argApa |
+        flowIntoCallApa(call, pragma[only_bind_into](arg), pragma[only_bind_into](p),
+          allowsFieldFlow, argApa, pragma[only_bind_into](config)) and
+        fwdFlow(arg, _, _, _, _, pragma[only_bind_into](argAp), argApa,
           pragma[only_bind_into](config)) and
-        fwdFlow(arg, _, _, _, _, pragma[only_bind_into](argAp), pragma[only_bind_into](config)) and
         returnFlowsThrough(_, _, _, _, p, pragma[only_bind_into](argAp), _,
-          pragma[only_bind_into](config))
+          pragma[only_bind_into](config)) and
+        if allowsFieldFlow = false then argAp instanceof ApNil else any()
+      )
+    }
+
+    pragma[nomagic]
+    private predicate flowIntoCallAp(
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap ap,
+      Configuration config
+    ) {
+      exists(ApApprox apa |
+        flowIntoCallApa(call, arg, p, allowsFieldFlow, apa, config) and
+        fwdFlow(arg, _, _, _, _, ap, apa, config)
+      )
+    }
+
+    pragma[nomagic]
+    private predicate flowOutOfCallAp(
+      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
+      Ap ap, Configuration config
+    ) {
+      exists(ApApprox apa |
+        flowOutOfCallApa(call, ret, kind, out, allowsFieldFlow, apa, config) and
+        fwdFlow(ret, _, _, _, _, ap, apa, config)
       )
     }
 
@@ -1628,7 +1733,7 @@ private module MkStage<StageSig PrevStage> {
       // flow into a callable
       exists(ParamNodeEx p, boolean allowsFieldFlow |
         revFlow(p, state, TReturnCtxNone(), returnAp, ap, config) and
-        flowIntoCall(_, node, p, allowsFieldFlow, config) and
+        flowIntoCallAp(_, node, p, allowsFieldFlow, ap, config) and
         (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
         returnCtx = TReturnCtxNone()
       )
@@ -1682,22 +1787,41 @@ private module MkStage<StageSig PrevStage> {
     ) {
       exists(NodeEx out, boolean allowsFieldFlow |
         revFlow(out, state, returnCtx, returnAp, ap, config) and
-        flowOutOfCall(call, ret, kind, out, allowsFieldFlow, config) and
+        flowOutOfCallAp(call, ret, kind, out, allowsFieldFlow, ap, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
+    /**
+     * Same as `flowThroughIntoCall`, but restricted to calls that are reached
+     * in the flow covered by `revFlow`, where data might flow through the target
+     * callable and back out at `call`.
+     */
+    pragma[nomagic]
+    private predicate revFlowThroughIntoCall(
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp,
+      Configuration config
+    ) {
+      flowThroughIntoCall(call, arg, p, allowsFieldFlow, argAp, config) and
+      revFlowIsReturned(call, _, _, _, _, config)
+    }
+
+    pragma[nomagic]
+    private predicate revFlowParamToReturn(
+      ParamNodeEx p, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap, Configuration config
+    ) {
+      revFlow(p, state, TReturnCtxMaybeFlowThrough(kind), apSome(returnAp), ap, config) and
+      parameterFlowThroughAllowed(p, kind)
+    }
+
     pragma[nomagic]
     private predicate revFlowInToReturn(
       DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap,
       Configuration config
     ) {
       exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(pragma[only_bind_into](p), state,
-          TReturnCtxMaybeFlowThrough(pragma[only_bind_into](kind)), apSome(returnAp), ap, config) and
-        flowThroughIntoCall(call, arg, p, allowsFieldFlow, config) and
-        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
-        parameterFlowThroughAllowed(p, kind)
+        revFlowParamToReturn(p, state, kind, returnAp, ap, config) and
+        revFlowThroughIntoCall(call, arg, p, allowsFieldFlow, ap, config)
       )
     }
 
@@ -1750,6 +1874,11 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     predicate revFlow(NodeEx node, Configuration config) { revFlow(node, _, _, _, _, config) }
 
+    pragma[nomagic]
+    predicate revFlowAp(NodeEx node, Ap ap, Configuration config) {
+      revFlow(node, _, _, _, ap, config)
+    }
+
     // use an alias as a workaround for bad functionality-induced joins
     pragma[nomagic]
     additional predicate revFlowAlias(NodeEx node, Configuration config) {
@@ -1786,9 +1915,9 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate parameterFlowsThroughRev(
-      ParamNodeEx p, Ap ap, ReturnKindExt kind, Configuration config
+      ParamNodeEx p, Ap ap, ReturnKindExt kind, Ap returnAp, Configuration config
     ) {
-      revFlow(p, _, TReturnCtxMaybeFlowThrough(kind), apSome(_), ap, config) and
+      revFlow(p, _, TReturnCtxMaybeFlowThrough(kind), apSome(returnAp), ap, config) and
       parameterFlowThroughAllowed(p, kind)
     }
 
@@ -1796,27 +1925,36 @@ private module MkStage<StageSig PrevStage> {
     predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
       exists(RetNodeEx ret, ReturnKindExt kind |
         returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
-        parameterFlowsThroughRev(p, ap, kind, config)
+        parameterFlowsThroughRev(p, ap, kind, _, config)
       )
     }
 
     pragma[nomagic]
-    predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config) {
-      exists(ParamNodeEx p, Ap ap |
-        returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
-        parameterFlowsThroughRev(p, ap, kind, config)
+    predicate returnMayFlowThrough(
+      RetNodeEx ret, Ap argAp, Ap ap, ReturnKindExt kind, Configuration config
+    ) {
+      exists(ParamNodeEx p |
+        returnFlowsThrough(ret, kind, _, _, p, argAp, ap, config) and
+        parameterFlowsThroughRev(p, argAp, kind, ap, config)
+      )
+    }
+
+    pragma[nomagic]
+    predicate revFlowInToReturnIsReturned(
+      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnCtx returnCtx, ApOption returnAp,
+      Ap ap, Configuration config
+    ) {
+      exists(ReturnKindExt returnKind0, Ap returnAp0 |
+        revFlowInToReturn(call, arg, state, returnKind0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
       )
     }
 
     pragma[nomagic]
     predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
-      exists(
-        ReturnKindExt returnKind0, Ap returnAp0, ArgNodeEx arg, FlowState state,
-        ReturnCtx returnCtx, ApOption returnAp, Ap ap
-      |
+      exists(ArgNodeEx arg, FlowState state, ReturnCtx returnCtx, ApOption returnAp, Ap ap |
         revFlow(arg, state, returnCtx, returnAp, ap, config) and
-        revFlowInToReturn(call, arg, state, returnKind0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
+        revFlowInToReturnIsReturned(call, arg, state, returnCtx, returnAp, ap, config)
       )
     }
 
@@ -2179,16 +2317,16 @@ private module LocalFlowBigStep {
   pragma[nomagic]
   predicate localFlowBigStep(
     NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
-    AccessPathFrontNil apf, Configuration config, LocalCallContext callContext
+    DataFlowType t, Configuration config, LocalCallContext callContext
   ) {
-    localFlowStepPlus(node1, state1, node2, preservesValue, apf.getType(), config, callContext) and
+    localFlowStepPlus(node1, state1, node2, preservesValue, t, config, callContext) and
     localFlowExit(node2, state1, config) and
     state1 = state2
     or
     additionalLocalFlowStepNodeCand2(node1, state1, node2, state2, config) and
     state1 != state2 and
     preservesValue = false and
-    apf = TFrontNil(node2.getDataFlowType()) and
+    t = node2.getDataFlowType() and
     callContext.relevantFor(node1.getEnclosingCallable()) and
     not exists(DataFlowCall call | call = callContext.(LocalCallContextSpecificCall).getCall() |
       isUnreachableInCallCached(node1.asNode(), call) or
@@ -2199,14 +2337,90 @@ private module LocalFlowBigStep {
 
 private import LocalFlowBigStep
 
-private module Stage3Param implements MkStage<Stage2>::StageParam {
+private module Stage2Point5Param implements MkStage<Stage2>::StageParam {
   private module PrevStage = Stage2;
 
+  class Ap = ApproxAccessPathFront;
+
+  class ApNil = ApproxAccessPathFrontNil;
+
+  PrevStage::Ap getApprox(Ap ap) { result = ap.toBoolNonEmpty() }
+
+  ApNil getApNil(NodeEx node) {
+    PrevStage::revFlow(node, _) and result = TApproxFrontNil(node.getDataFlowType())
+  }
+
+  bindingset[tc, tail]
+  Ap apCons(TypedContent tc, Ap tail) { result.getAHead() = tc and exists(tail) }
+
+  pragma[noinline]
+  Content getHeadContent(Ap ap) { result = ap.getAHead().getContent() }
+
+  class ApOption = ApproxAccessPathFrontOption;
+
+  ApOption apNone() { result = TApproxAccessPathFrontNone() }
+
+  ApOption apSome(Ap ap) { result = TApproxAccessPathFrontSome(ap) }
+
+  import BooleanCallContext
+
+  predicate localStep(
+    NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
+    ApproxAccessPathFrontNil ap, Configuration config, LocalCc lcc
+  ) {
+    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap.getType(), config, _) and
+    exists(lcc)
+  }
+
+  predicate flowOutOfCall = flowOutOfCallNodeCand2/6;
+
+  predicate flowIntoCall = flowIntoCallNodeCand2/5;
+
+  pragma[nomagic]
+  private predicate expectsContentCand(NodeEx node, Ap ap, Configuration config) {
+    exists(Content c |
+      PrevStage::revFlow(node, pragma[only_bind_into](config)) and
+      PrevStage::readStepCand(_, c, _, pragma[only_bind_into](config)) and
+      expectsContentEx(node, c) and
+      c = ap.getAHead().getContent()
+    )
+  }
+
+  pragma[nomagic]
+  private predicate castingNodeEx(NodeEx node) { node.asNode() instanceof CastingNode }
+
+  bindingset[node, state, ap, config]
+  predicate filter(NodeEx node, FlowState state, Ap ap, Configuration config) {
+    exists(state) and
+    exists(config) and
+    (if castingNodeEx(node) then compatibleTypes(node.getDataFlowType(), ap.getType()) else any()) and
+    (
+      notExpectsContent(node)
+      or
+      expectsContentCand(node, ap, config)
+    )
+  }
+
+  bindingset[ap, contentType]
+  predicate typecheckStore(Ap ap, DataFlowType contentType) {
+    // We need to typecheck stores here, since reverse flow through a getter
+    // might have a different type here compared to inside the getter.
+    compatibleTypes(ap.getType(), contentType)
+  }
+}
+
+private module Stage2Point5 implements StageSig {
+  import MkStage<Stage2>::Stage<Stage2Point5Param>
+}
+
+private module Stage3Param implements MkStage<Stage2Point5>::StageParam {
+  private module PrevStage = Stage2Point5;
+
   class Ap = AccessPathFront;
 
   class ApNil = AccessPathFrontNil;
 
-  PrevStage::Ap getApprox(Ap ap) { result = ap.toBoolNonEmpty() }
+  PrevStage::Ap getApprox(Ap ap) { result = ap.toApprox() }
 
   ApNil getApNil(NodeEx node) {
     PrevStage::revFlow(node, _) and result = TFrontNil(node.getDataFlowType())
@@ -2226,16 +2440,42 @@ private module Stage3Param implements MkStage<Stage2>::StageParam {
 
   import BooleanCallContext
 
+  pragma[nomagic]
   predicate localStep(
     NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
     ApNil ap, Configuration config, LocalCc lcc
   ) {
-    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap, config, _) and exists(lcc)
+    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap.getType(), config, _) and
+    PrevStage::revFlow(node1, pragma[only_bind_into](state1), _, pragma[only_bind_into](config)) and
+    PrevStage::revFlowAlias(node2, pragma[only_bind_into](state2), _, pragma[only_bind_into](config)) and
+    exists(lcc)
   }
 
-  predicate flowOutOfCall = flowOutOfCallNodeCand2/6;
+  pragma[nomagic]
+  predicate flowOutOfCall(
+    DataFlowCall call, RetNodeEx node1, ReturnKindExt kind, NodeEx node2, boolean allowsFieldFlow,
+    Configuration config
+  ) {
+    exists(FlowState state |
+      flowOutOfCallNodeCand2(call, node1, kind, node2, allowsFieldFlow, config) and
+      PrevStage::revFlow(node2, pragma[only_bind_into](state), _, pragma[only_bind_into](config)) and
+      PrevStage::revFlowAlias(node1, pragma[only_bind_into](state), _,
+        pragma[only_bind_into](config))
+    )
+  }
 
-  predicate flowIntoCall = flowIntoCallNodeCand2/5;
+  pragma[nomagic]
+  predicate flowIntoCall(
+    DataFlowCall call, ArgNodeEx node1, ParamNodeEx node2, boolean allowsFieldFlow,
+    Configuration config
+  ) {
+    exists(FlowState state |
+      flowIntoCallNodeCand2(call, node1, node2, allowsFieldFlow, config) and
+      PrevStage::revFlow(node2, pragma[only_bind_into](state), _, pragma[only_bind_into](config)) and
+      PrevStage::revFlowAlias(node1, pragma[only_bind_into](state), _,
+        pragma[only_bind_into](config))
+    )
+  }
 
   pragma[nomagic]
   private predicate clearSet(NodeEx node, ContentSet c, Configuration config) {
@@ -2292,7 +2532,7 @@ private module Stage3Param implements MkStage<Stage2>::StageParam {
 }
 
 private module Stage3 implements StageSig {
-  import MkStage<Stage2>::Stage<Stage3Param>
+  import MkStage<Stage2Point5>::Stage<Stage3Param>
 }
 
 /**
@@ -2509,6 +2749,7 @@ private module Stage4Param implements MkStage<Stage3>::StageParam {
 
   class ApNil = AccessPathApproxNil;
 
+  pragma[nomagic]
   PrevStage::Ap getApprox(Ap ap) { result = ap.getFront() }
 
   ApNil getApNil(NodeEx node) {
@@ -2534,7 +2775,9 @@ private module Stage4Param implements MkStage<Stage3>::StageParam {
     NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
     ApNil ap, Configuration config, LocalCc lcc
   ) {
-    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap.getFront(), config, lcc)
+    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap.getType(), config, lcc) and
+    PrevStage::revFlow(node1, pragma[only_bind_into](state1), _, pragma[only_bind_into](config)) and
+    PrevStage::revFlowAlias(node2, pragma[only_bind_into](state2), _, pragma[only_bind_into](config))
   }
 
   pragma[nomagic]
@@ -3347,7 +3590,8 @@ private predicate pathStep(
     AccessPath ap0, NodeEx midnode, FlowState state0, Configuration conf, LocalCallContext localCC
   |
     pathNode(mid, midnode, state0, cc, sc, ap0, conf, localCC) and
-    localFlowBigStep(midnode, state0, node, state, false, ap.getFront(), conf, localCC) and
+    localFlowBigStep(midnode, state0, node, state, false, ap.(AccessPathNil).getType(), conf,
+      localCC) and
     ap0 instanceof AccessPathNil
   )
   or
@@ -3735,6 +3979,14 @@ predicate stageStats(
   n = 25 and
   Stage2::stats(false, nodes, fields, conscand, states, tuples, config)
   or
+  stage = "2.5 Fwd" and
+  n = 25 and
+  Stage2Point5::stats(true, nodes, fields, conscand, states, tuples, config)
+  or
+  stage = "2.5 Rev" and
+  n = 27 and
+  Stage2Point5::stats(false, nodes, fields, conscand, states, tuples, config)
+  or
   stage = "3 Fwd" and
   n = 30 and
   Stage3::stats(true, nodes, fields, conscand, states, tuples, config)
diff --git a/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImplCommon.qll b/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImplCommon.qll
index f981834a6d4..c66aefced8d 100644
--- a/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImplCommon.qll
+++ b/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImplCommon.qll
@@ -926,18 +926,46 @@ private module Cached {
     TReturnCtxNoFlowThrough() or
     TReturnCtxMaybeFlowThrough(ReturnKindExt kind)
 
+  cached
+  newtype TTypedContentApprox =
+    MkTypedContentApprox(ContentApprox c, DataFlowType t) {
+      exists(Content cont |
+        c = getContentApprox(cont) and
+        store(_, cont, _, _, t)
+      )
+    }
+
   cached
   newtype TTypedContent = MkTypedContent(Content c, DataFlowType t) { store(_, c, _, _, t) }
 
+  cached
+  TypedContent getATypedContent(TypedContentApprox c) {
+    exists(ContentApprox cls, DataFlowType t, Content cont |
+      c = MkTypedContentApprox(cls, pragma[only_bind_into](t)) and
+      result = MkTypedContent(cont, pragma[only_bind_into](t)) and
+      cls = getContentApprox(cont)
+    )
+  }
+
   cached
   newtype TAccessPathFront =
     TFrontNil(DataFlowType t) or
     TFrontHead(TypedContent tc)
 
+  cached
+  newtype TApproxAccessPathFront =
+    TApproxFrontNil(DataFlowType t) or
+    TApproxFrontHead(TypedContentApprox tc)
+
   cached
   newtype TAccessPathFrontOption =
     TAccessPathFrontNone() or
     TAccessPathFrontSome(AccessPathFront apf)
+
+  cached
+  newtype TApproxAccessPathFrontOption =
+    TApproxAccessPathFrontNone() or
+    TApproxAccessPathFrontSome(ApproxAccessPathFront apf)
 }
 
 /**
@@ -1353,6 +1381,75 @@ class ReturnCtx extends TReturnCtx {
   }
 }
 
+/** An approximated `Content` tagged with the type of a containing object. */
+class TypedContentApprox extends MkTypedContentApprox {
+  private ContentApprox c;
+  private DataFlowType t;
+
+  TypedContentApprox() { this = MkTypedContentApprox(c, t) }
+
+  /** Gets a typed content approximated by this value. */
+  TypedContent getATypedContent() { result = getATypedContent(this) }
+
+  /** Gets the container type. */
+  DataFlowType getContainerType() { result = t }
+
+  /** Gets a textual representation of this approximated content. */
+  string toString() { result = c.toString() }
+}
+
+/**
+ * The front of an approximated access path. This is either a head or a nil.
+ */
+abstract class ApproxAccessPathFront extends TApproxAccessPathFront {
+  abstract string toString();
+
+  abstract DataFlowType getType();
+
+  abstract boolean toBoolNonEmpty();
+
+  pragma[nomagic]
+  TypedContent getAHead() {
+    exists(TypedContentApprox cont |
+      this = TApproxFrontHead(cont) and
+      result = cont.getATypedContent()
+    )
+  }
+}
+
+class ApproxAccessPathFrontNil extends ApproxAccessPathFront, TApproxFrontNil {
+  private DataFlowType t;
+
+  ApproxAccessPathFrontNil() { this = TApproxFrontNil(t) }
+
+  override string toString() { result = ppReprType(t) }
+
+  override DataFlowType getType() { result = t }
+
+  override boolean toBoolNonEmpty() { result = false }
+}
+
+class ApproxAccessPathFrontHead extends ApproxAccessPathFront, TApproxFrontHead {
+  private TypedContentApprox tc;
+
+  ApproxAccessPathFrontHead() { this = TApproxFrontHead(tc) }
+
+  override string toString() { result = tc.toString() }
+
+  override DataFlowType getType() { result = tc.getContainerType() }
+
+  override boolean toBoolNonEmpty() { result = true }
+}
+
+/** An optional approximated access path front. */
+class ApproxAccessPathFrontOption extends TApproxAccessPathFrontOption {
+  string toString() {
+    this = TApproxAccessPathFrontNone() and result = "<none>"
+    or
+    this = TApproxAccessPathFrontSome(any(ApproxAccessPathFront apf | result = apf.toString()))
+  }
+}
+
 /** A `Content` tagged with the type of a containing object. */
 class TypedContent extends MkTypedContent {
   private Content c;
@@ -1385,7 +1482,7 @@ abstract class AccessPathFront extends TAccessPathFront {
 
   abstract DataFlowType getType();
 
-  abstract boolean toBoolNonEmpty();
+  abstract ApproxAccessPathFront toApprox();
 
   TypedContent getHead() { this = TFrontHead(result) }
 }
@@ -1399,7 +1496,7 @@ class AccessPathFrontNil extends AccessPathFront, TFrontNil {
 
   override DataFlowType getType() { result = t }
 
-  override boolean toBoolNonEmpty() { result = false }
+  override ApproxAccessPathFront toApprox() { result = TApproxFrontNil(t) }
 }
 
 class AccessPathFrontHead extends AccessPathFront, TFrontHead {
@@ -1411,7 +1508,7 @@ class AccessPathFrontHead extends AccessPathFront, TFrontHead {
 
   override DataFlowType getType() { result = tc.getContainerType() }
 
-  override boolean toBoolNonEmpty() { result = true }
+  override ApproxAccessPathFront toApprox() { result.getAHead() = tc }
 }
 
 /** An optional access path front. */
diff --git a/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImplConsistency.qll b/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImplConsistency.qll
index 3eacc21f356..e85e0cd92ec 100644
--- a/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImplConsistency.qll
+++ b/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImplConsistency.qll
@@ -260,4 +260,9 @@ module Consistency {
     not exists(unique(ParameterPosition pos0 | isParameterNode(p, c, pos0))) and
     msg = "Parameter node with multiple positions."
   }
+
+  query predicate uniqueContentApprox(Content c, string msg) {
+    not exists(unique(ContentApprox approx | approx = getContentApprox(c))) and
+    msg = "Non-unique content approximation."
+  }
 }
diff --git a/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowPrivate.qll b/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowPrivate.qll
index 402924b5b39..5c37e88ae21 100644
--- a/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowPrivate.qll
+++ b/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowPrivate.qll
@@ -520,6 +520,13 @@ private module Cached {
       )
     )
   }
+
+  cached
+  newtype TContentApprox =
+    TUnknownElementContentApprox() or
+    TKnownIntegerElementContentApprox() or
+    TKnownElementContentApprox(string approx) { approx = approxKnownElementIndex(_) } or
+    TNonElementContentApprox(Content c) { not c instanceof Content::ElementContent }
 }
 
 class TElementContent = TKnownElementContent or TUnknownElementContent;
@@ -1370,3 +1377,58 @@ predicate additionalLambdaFlowStep(Node nodeFrom, Node nodeTo, boolean preserves
 predicate allowParameterReturnInSelf(ParameterNode p) {
   FlowSummaryImpl::Private::summaryAllowParameterReturnInSelf(p)
 }
+
+/** An approximated `Content`. */
+class ContentApprox extends TContentApprox {
+  string toString() {
+    this = TUnknownElementContentApprox() and
+    result = "element"
+    or
+    this = TKnownIntegerElementContentApprox() and
+    result = "approximated integer element"
+    or
+    exists(string approx |
+      this = TKnownElementContentApprox(approx) and
+      result = "approximated element " + approx
+    )
+    or
+    exists(Content c |
+      this = TNonElementContentApprox(c) and
+      result = c.toString()
+    )
+  }
+}
+
+/**
+ * Gets a string for approximating known element indices.
+ *
+ * We take two characters from the serialized index as the projection,
+ * since for symbols this will include the first character.
+ */
+private string approxKnownElementIndex(Content::KnownElementContent c) {
+  not c.getIndex().isInt(_) and
+  exists(string s | s = c.getIndex().serialize() |
+    s.length() < 2 and
+    result = s
+    or
+    result = s.prefix(2)
+    or
+    // workaround for `prefix` not working with Unicode characters
+    s.length() >= 2 and
+    not exists(s.prefix(2)) and
+    result = s
+  )
+}
+
+/** Gets an approximated value for content `c`. */
+ContentApprox getContentApprox(Content c) {
+  c instanceof Content::UnknownElementContent and
+  result = TUnknownElementContentApprox()
+  or
+  c.(Content::KnownElementContent).getIndex().isInt(_) and
+  result = TKnownIntegerElementContentApprox()
+  or
+  result = TKnownElementContentApprox(approxKnownElementIndex(c))
+  or
+  result = TNonElementContentApprox(c)
+}

From 410ef4d713f658aef539e3e3dd3af931848b738a Mon Sep 17 00:00:00 2001
From: Tom Hvitved <hvitved@github.com>
Date: Fri, 9 Dec 2022 10:39:29 +0100
Subject: [PATCH 1314/1420] Data flow: Rename stages

---
 .../ruby/dataflow/internal/DataFlowImpl.qll   | 88 +++++++++----------
 1 file changed, 44 insertions(+), 44 deletions(-)

diff --git a/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImpl.qll b/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImpl.qll
index a89c3772f1f..6741ccc2f06 100644
--- a/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImpl.qll
+++ b/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImpl.qll
@@ -2337,7 +2337,7 @@ private module LocalFlowBigStep {
 
 private import LocalFlowBigStep
 
-private module Stage2Point5Param implements MkStage<Stage2>::StageParam {
+private module Stage3Param implements MkStage<Stage2>::StageParam {
   private module PrevStage = Stage2;
 
   class Ap = ApproxAccessPathFront;
@@ -2409,12 +2409,12 @@ private module Stage2Point5Param implements MkStage<Stage2>::StageParam {
   }
 }
 
-private module Stage2Point5 implements StageSig {
-  import MkStage<Stage2>::Stage<Stage2Point5Param>
+private module Stage3 implements StageSig {
+  import MkStage<Stage2>::Stage<Stage3Param>
 }
 
-private module Stage3Param implements MkStage<Stage2Point5>::StageParam {
-  private module PrevStage = Stage2Point5;
+private module Stage4Param implements MkStage<Stage3>::StageParam {
+  private module PrevStage = Stage3;
 
   class Ap = AccessPathFront;
 
@@ -2531,8 +2531,8 @@ private module Stage3Param implements MkStage<Stage2Point5>::StageParam {
   }
 }
 
-private module Stage3 implements StageSig {
-  import MkStage<Stage2Point5>::Stage<Stage3Param>
+private module Stage4 implements StageSig {
+  import MkStage<Stage3>::Stage<Stage4Param>
 }
 
 /**
@@ -2543,8 +2543,8 @@ private predicate flowCandSummaryCtx(
   NodeEx node, FlowState state, AccessPathFront argApf, Configuration config
 ) {
   exists(AccessPathFront apf |
-    Stage3::revFlow(node, state, TReturnCtxMaybeFlowThrough(_), _, apf, config) and
-    Stage3::fwdFlow(node, state, any(Stage3::CcCall ccc), _, TAccessPathFrontSome(argApf), apf,
+    Stage4::revFlow(node, state, TReturnCtxMaybeFlowThrough(_), _, apf, config) and
+    Stage4::fwdFlow(node, state, any(Stage4::CcCall ccc), _, TAccessPathFrontSome(argApf), apf,
       config)
   )
 }
@@ -2555,10 +2555,10 @@ private predicate flowCandSummaryCtx(
  */
 private predicate expensiveLen2unfolding(TypedContent tc, Configuration config) {
   exists(int tails, int nodes, int apLimit, int tupleLimit |
-    tails = strictcount(AccessPathFront apf | Stage3::consCand(tc, apf, config)) and
+    tails = strictcount(AccessPathFront apf | Stage4::consCand(tc, apf, config)) and
     nodes =
       strictcount(NodeEx n, FlowState state |
-        Stage3::revFlow(n, state, any(AccessPathFrontHead apf | apf.getHead() = tc), config)
+        Stage4::revFlow(n, state, any(AccessPathFrontHead apf | apf.getHead() = tc), config)
         or
         flowCandSummaryCtx(n, state, any(AccessPathFrontHead apf | apf.getHead() = tc), config)
       ) and
@@ -2572,11 +2572,11 @@ private predicate expensiveLen2unfolding(TypedContent tc, Configuration config)
 private newtype TAccessPathApprox =
   TNil(DataFlowType t) or
   TConsNil(TypedContent tc, DataFlowType t) {
-    Stage3::consCand(tc, TFrontNil(t), _) and
+    Stage4::consCand(tc, TFrontNil(t), _) and
     not expensiveLen2unfolding(tc, _)
   } or
   TConsCons(TypedContent tc1, TypedContent tc2, int len) {
-    Stage3::consCand(tc1, TFrontHead(tc2), _) and
+    Stage4::consCand(tc1, TFrontHead(tc2), _) and
     len in [2 .. accessPathLimit()] and
     not expensiveLen2unfolding(tc1, _)
   } or
@@ -2706,7 +2706,7 @@ private class AccessPathApproxCons1 extends AccessPathApproxCons, TCons1 {
   override AccessPathApprox pop(TypedContent head) {
     head = tc and
     (
-      exists(TypedContent tc2 | Stage3::consCand(tc, TFrontHead(tc2), _) |
+      exists(TypedContent tc2 | Stage4::consCand(tc, TFrontHead(tc2), _) |
         result = TConsCons(tc2, _, len - 1)
         or
         len = 2 and
@@ -2717,7 +2717,7 @@ private class AccessPathApproxCons1 extends AccessPathApproxCons, TCons1 {
       or
       exists(DataFlowType t |
         len = 1 and
-        Stage3::consCand(tc, TFrontNil(t), _) and
+        Stage4::consCand(tc, TFrontNil(t), _) and
         result = TNil(t)
       )
     )
@@ -2742,8 +2742,8 @@ private class AccessPathApproxOption extends TAccessPathApproxOption {
   }
 }
 
-private module Stage4Param implements MkStage<Stage3>::StageParam {
-  private module PrevStage = Stage3;
+private module Stage5Param implements MkStage<Stage4>::StageParam {
+  private module PrevStage = Stage4;
 
   class Ap = AccessPathApprox;
 
@@ -2814,7 +2814,7 @@ private module Stage4Param implements MkStage<Stage3>::StageParam {
   predicate typecheckStore(Ap ap, DataFlowType contentType) { any() }
 }
 
-private module Stage4 = MkStage<Stage3>::Stage<Stage4Param>;
+private module Stage5 = MkStage<Stage4>::Stage<Stage5Param>;
 
 bindingset[conf, result]
 private Configuration unbindConf(Configuration conf) {
@@ -2828,8 +2828,8 @@ private predicate nodeMayUseSummary0(
 ) {
   exists(AccessPathApprox apa0 |
     c = n.getEnclosingCallable() and
-    Stage4::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
-    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TParameterPositionSome(pos),
+    Stage5::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
+    Stage5::fwdFlow(n, state, any(CallContextCall ccc), TParameterPositionSome(pos),
       TAccessPathApproxSome(apa), apa0, config)
   )
 }
@@ -2839,7 +2839,7 @@ private predicate nodeMayUseSummary(
   NodeEx n, FlowState state, AccessPathApprox apa, Configuration config
 ) {
   exists(DataFlowCallable c, ParameterPosition pos, ParamNodeEx p |
-    Stage4::parameterMayFlowThrough(p, apa, config) and
+    Stage5::parameterMayFlowThrough(p, apa, config) and
     nodeMayUseSummary0(n, c, pos, state, apa, config) and
     p.isParameterOf(c, pos)
   )
@@ -2849,8 +2849,8 @@ private newtype TSummaryCtx =
   TSummaryCtxNone() or
   TSummaryCtxSome(ParamNodeEx p, FlowState state, AccessPath ap) {
     exists(Configuration config |
-      Stage4::parameterMayFlowThrough(p, ap.getApprox(), config) and
-      Stage4::revFlow(p, state, _, config)
+      Stage5::parameterMayFlowThrough(p, ap.getApprox(), config) and
+      Stage5::revFlow(p, state, _, config)
     )
   }
 
@@ -2899,7 +2899,7 @@ private int count1to2unfold(AccessPathApproxCons1 apa, Configuration config) {
     len = apa.len() and
     result =
       strictcount(AccessPathFront apf |
-        Stage4::consCand(tc, any(AccessPathApprox ap | ap.getFront() = apf and ap.len() = len - 1),
+        Stage5::consCand(tc, any(AccessPathApprox ap | ap.getFront() = apf and ap.len() = len - 1),
           config)
       )
   )
@@ -2908,7 +2908,7 @@ private int count1to2unfold(AccessPathApproxCons1 apa, Configuration config) {
 private int countNodesUsingAccessPath(AccessPathApprox apa, Configuration config) {
   result =
     strictcount(NodeEx n, FlowState state |
-      Stage4::revFlow(n, state, apa, config) or nodeMayUseSummary(n, state, apa, config)
+      Stage5::revFlow(n, state, apa, config) or nodeMayUseSummary(n, state, apa, config)
     )
 }
 
@@ -2929,7 +2929,7 @@ private predicate expensiveLen1to2unfolding(AccessPathApproxCons1 apa, Configura
 private AccessPathApprox getATail(AccessPathApprox apa, Configuration config) {
   exists(TypedContent head |
     apa.pop(head) = result and
-    Stage4::consCand(head, result, config)
+    Stage5::consCand(head, result, config)
   )
 }
 
@@ -3011,7 +3011,7 @@ private newtype TPathNode =
     NodeEx node, FlowState state, CallContext cc, SummaryCtx sc, AccessPath ap, Configuration config
   ) {
     // A PathNode is introduced by a source ...
-    Stage4::revFlow(node, state, config) and
+    Stage5::revFlow(node, state, config) and
     sourceNode(node, state, config) and
     (
       if hasSourceCallCtx(config)
@@ -3025,7 +3025,7 @@ private newtype TPathNode =
     exists(PathNodeMid mid |
       pathStep(mid, node, state, cc, sc, ap) and
       pragma[only_bind_into](config) = mid.getConfiguration() and
-      Stage4::revFlow(node, state, ap.getApprox(), pragma[only_bind_into](config))
+      Stage5::revFlow(node, state, ap.getApprox(), pragma[only_bind_into](config))
     )
   } or
   TPathNodeSink(NodeEx node, FlowState state, Configuration config) {
@@ -3167,7 +3167,7 @@ private class AccessPathCons2 extends AccessPath, TAccessPathCons2 {
   override TypedContent getHead() { result = head1 }
 
   override AccessPath getTail() {
-    Stage4::consCand(head1, result.getApprox(), _) and
+    Stage5::consCand(head1, result.getApprox(), _) and
     result.getHead() = head2 and
     result.length() = len - 1
   }
@@ -3198,7 +3198,7 @@ private class AccessPathCons1 extends AccessPath, TAccessPathCons1 {
   override TypedContent getHead() { result = head }
 
   override AccessPath getTail() {
-    Stage4::consCand(head, result.getApprox(), _) and result.length() = len - 1
+    Stage5::consCand(head, result.getApprox(), _) and result.length() = len - 1
   }
 
   override AccessPathFrontHead getFront() { result = TFrontHead(head) }
@@ -3633,7 +3633,7 @@ private predicate pathReadStep(
 ) {
   ap0 = mid.getAp() and
   tc = ap0.getHead() and
-  Stage4::readStepCand(mid.getNodeEx(), tc.getContent(), node, mid.getConfiguration()) and
+  Stage5::readStepCand(mid.getNodeEx(), tc.getContent(), node, mid.getConfiguration()) and
   state = mid.getState() and
   cc = mid.getCallContext()
 }
@@ -3643,7 +3643,7 @@ private predicate pathStoreStep(
   PathNodeMid mid, NodeEx node, FlowState state, AccessPath ap0, TypedContent tc, CallContext cc
 ) {
   ap0 = mid.getAp() and
-  Stage4::storeStepCand(mid.getNodeEx(), _, tc, node, _, mid.getConfiguration()) and
+  Stage5::storeStepCand(mid.getNodeEx(), _, tc, node, _, mid.getConfiguration()) and
   state = mid.getState() and
   cc = mid.getCallContext()
 }
@@ -3680,7 +3680,7 @@ private NodeEx getAnOutNodeFlow(
   ReturnKindExt kind, DataFlowCall call, AccessPathApprox apa, Configuration config
 ) {
   result.asNode() = kind.getAnOutNode(call) and
-  Stage4::revFlow(result, _, apa, config)
+  Stage5::revFlow(result, _, apa, config)
 }
 
 /**
@@ -3716,7 +3716,7 @@ private predicate parameterCand(
   DataFlowCallable callable, ParameterPosition pos, AccessPathApprox apa, Configuration config
 ) {
   exists(ParamNodeEx p |
-    Stage4::revFlow(p, _, apa, config) and
+    Stage5::revFlow(p, _, apa, config) and
     p.isParameterOf(callable, pos)
   )
 }
@@ -3979,14 +3979,6 @@ predicate stageStats(
   n = 25 and
   Stage2::stats(false, nodes, fields, conscand, states, tuples, config)
   or
-  stage = "2.5 Fwd" and
-  n = 25 and
-  Stage2Point5::stats(true, nodes, fields, conscand, states, tuples, config)
-  or
-  stage = "2.5 Rev" and
-  n = 27 and
-  Stage2Point5::stats(false, nodes, fields, conscand, states, tuples, config)
-  or
   stage = "3 Fwd" and
   n = 30 and
   Stage3::stats(true, nodes, fields, conscand, states, tuples, config)
@@ -4003,9 +3995,17 @@ predicate stageStats(
   n = 45 and
   Stage4::stats(false, nodes, fields, conscand, states, tuples, config)
   or
-  stage = "5 Fwd" and n = 50 and finalStats(true, nodes, fields, conscand, states, tuples)
+  stage = "5 Fwd" and
+  n = 50 and
+  Stage5::stats(true, nodes, fields, conscand, states, tuples, config)
   or
-  stage = "5 Rev" and n = 55 and finalStats(false, nodes, fields, conscand, states, tuples)
+  stage = "5 Rev" and
+  n = 55 and
+  Stage5::stats(false, nodes, fields, conscand, states, tuples, config)
+  or
+  stage = "6 Fwd" and n = 60 and finalStats(true, nodes, fields, conscand, states, tuples)
+  or
+  stage = "6 Rev" and n = 65 and finalStats(false, nodes, fields, conscand, states, tuples)
 }
 
 private module FlowExploration {

From 0c2eee2a723940fb9a83003b66bfdcb9367647dc Mon Sep 17 00:00:00 2001
From: Tom Hvitved <hvitved@github.com>
Date: Fri, 9 Dec 2022 10:39:59 +0100
Subject: [PATCH 1315/1420] Data flow: Sync files

---
 .../cpp/ir/dataflow/internal/DataFlowImpl.qll | 568 +++++++++++++-----
 .../ir/dataflow/internal/DataFlowImpl2.qll    | 568 +++++++++++++-----
 .../ir/dataflow/internal/DataFlowImpl3.qll    | 568 +++++++++++++-----
 .../ir/dataflow/internal/DataFlowImpl4.qll    | 568 +++++++++++++-----
 .../dataflow/internal/DataFlowImplCommon.qll  | 103 +++-
 .../internal/DataFlowImplConsistency.qll      |   5 +
 .../cpp/dataflow/internal/DataFlowImpl.qll    | 568 +++++++++++++-----
 .../cpp/dataflow/internal/DataFlowImpl2.qll   | 568 +++++++++++++-----
 .../cpp/dataflow/internal/DataFlowImpl3.qll   | 568 +++++++++++++-----
 .../cpp/dataflow/internal/DataFlowImpl4.qll   | 568 +++++++++++++-----
 .../dataflow/internal/DataFlowImplCommon.qll  | 103 +++-
 .../internal/DataFlowImplConsistency.qll      |   5 +
 .../dataflow/internal/DataFlowImplLocal.qll   | 568 +++++++++++++-----
 .../cpp/ir/dataflow/internal/DataFlowImpl.qll | 568 +++++++++++++-----
 .../ir/dataflow/internal/DataFlowImpl2.qll    | 568 +++++++++++++-----
 .../ir/dataflow/internal/DataFlowImpl3.qll    | 568 +++++++++++++-----
 .../ir/dataflow/internal/DataFlowImpl4.qll    | 568 +++++++++++++-----
 .../dataflow/internal/DataFlowImplCommon.qll  | 103 +++-
 .../internal/DataFlowImplConsistency.qll      |   5 +
 .../csharp/dataflow/internal/DataFlowImpl.qll | 568 +++++++++++++-----
 .../dataflow/internal/DataFlowImpl2.qll       | 568 +++++++++++++-----
 .../dataflow/internal/DataFlowImpl3.qll       | 568 +++++++++++++-----
 .../dataflow/internal/DataFlowImpl4.qll       | 568 +++++++++++++-----
 .../dataflow/internal/DataFlowImpl5.qll       | 568 +++++++++++++-----
 .../dataflow/internal/DataFlowImplCommon.qll  | 103 +++-
 .../internal/DataFlowImplConsistency.qll      |   5 +
 .../DataFlowImplForContentDataFlow.qll        | 568 +++++++++++++-----
 .../go/dataflow/internal/DataFlowImpl.qll     | 568 +++++++++++++-----
 .../go/dataflow/internal/DataFlowImpl2.qll    | 568 +++++++++++++-----
 .../dataflow/internal/DataFlowImplCommon.qll  | 103 +++-
 .../java/dataflow/internal/DataFlowImpl.qll   | 568 +++++++++++++-----
 .../java/dataflow/internal/DataFlowImpl2.qll  | 568 +++++++++++++-----
 .../java/dataflow/internal/DataFlowImpl3.qll  | 568 +++++++++++++-----
 .../java/dataflow/internal/DataFlowImpl4.qll  | 568 +++++++++++++-----
 .../java/dataflow/internal/DataFlowImpl5.qll  | 568 +++++++++++++-----
 .../java/dataflow/internal/DataFlowImpl6.qll  | 568 +++++++++++++-----
 .../dataflow/internal/DataFlowImplCommon.qll  | 103 +++-
 .../internal/DataFlowImplConsistency.qll      |   5 +
 .../DataFlowImplForOnActivityResult.qll       | 568 +++++++++++++-----
 .../DataFlowImplForSerializability.qll        | 568 +++++++++++++-----
 .../dataflow/new/internal/DataFlowImpl.qll    | 568 +++++++++++++-----
 .../dataflow/new/internal/DataFlowImpl2.qll   | 568 +++++++++++++-----
 .../dataflow/new/internal/DataFlowImpl3.qll   | 568 +++++++++++++-----
 .../dataflow/new/internal/DataFlowImpl4.qll   | 568 +++++++++++++-----
 .../new/internal/DataFlowImplCommon.qll       | 103 +++-
 .../new/internal/DataFlowImplConsistency.qll  |   5 +
 .../ruby/dataflow/internal/DataFlowImpl2.qll  | 568 +++++++++++++-----
 .../DataFlowImplForHttpClientLibraries.qll    | 568 +++++++++++++-----
 .../internal/DataFlowImplForPathname.qll      | 568 +++++++++++++-----
 .../internal/DataFlowImplForRegExp.qll        | 568 +++++++++++++-----
 .../swift/dataflow/internal/DataFlowImpl.qll  | 568 +++++++++++++-----
 .../dataflow/internal/DataFlowImplCommon.qll  | 103 +++-
 .../internal/DataFlowImplConsistency.qll      |   5 +
 53 files changed, 16415 insertions(+), 6028 deletions(-)

diff --git a/cpp/ql/lib/experimental/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl.qll b/cpp/ql/lib/experimental/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl.qll
index ccde916a3c2..6741ccc2f06 100644
--- a/cpp/ql/lib/experimental/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl.qll
+++ b/cpp/ql/lib/experimental/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl.qll
@@ -621,23 +621,6 @@ private predicate parameterFlowThroughAllowed(ParamNodeEx p, ReturnKindExt kind)
   )
 }
 
-/**
- * Holds if flow from a parameter at position `pos` inside `c` to a return node of
- * kind `kind` is allowed.
- *
- * We don't expect a parameter to return stored in itself, unless
- * explicitly allowed
- */
-bindingset[c, pos, kind]
-private predicate parameterFlowThroughAllowed(
-  DataFlowCallable c, ParameterPosition pos, ReturnKindExt kind
-) {
-  exists(ParamNodeEx p |
-    p.isParameterOf(c, pos) and
-    parameterFlowThroughAllowed(p, kind)
-  )
-}
-
 private module Stage1 implements StageSig {
   class Ap = Unit;
 
@@ -980,6 +963,12 @@ private module Stage1 implements StageSig {
   pragma[nomagic]
   predicate revFlow(NodeEx node, Configuration config) { revFlow(node, _, config) }
 
+  pragma[nomagic]
+  predicate revFlowAp(NodeEx node, Ap ap, Configuration config) {
+    revFlow(node, config) and
+    exists(ap)
+  }
+
   bindingset[node, state, config]
   predicate revFlow(NodeEx node, FlowState state, Ap ap, Configuration config) {
     revFlow(node, _, pragma[only_bind_into](config)) and
@@ -1022,9 +1011,13 @@ private module Stage1 implements StageSig {
   }
 
   pragma[nomagic]
-  predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config) {
+  predicate returnMayFlowThrough(
+    RetNodeEx ret, Ap argAp, Ap ap, ReturnKindExt kind, Configuration config
+  ) {
     throughFlowNodeCand(ret, config) and
-    kind = ret.getKind()
+    kind = ret.getKind() and
+    exists(argAp) and
+    exists(ap)
   }
 
   pragma[nomagic]
@@ -1189,6 +1182,8 @@ private signature module StageSig {
 
   predicate revFlow(NodeEx node, Configuration config);
 
+  predicate revFlowAp(NodeEx node, Ap ap, Configuration config);
+
   bindingset[node, state, config]
   predicate revFlow(NodeEx node, FlowState state, Ap ap, Configuration config);
 
@@ -1196,7 +1191,9 @@ private signature module StageSig {
 
   predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config);
 
-  predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config);
+  predicate returnMayFlowThrough(
+    RetNodeEx ret, Ap argAp, Ap ap, ReturnKindExt kind, Configuration config
+  );
 
   predicate storeStepCand(
     NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, DataFlowType contentType,
@@ -1281,21 +1278,43 @@ private module MkStage<StageSig PrevStage> {
     import Param
 
     /* Begin: Stage logic. */
-    bindingset[result, apa]
-    private ApApprox unbindApa(ApApprox apa) {
-      pragma[only_bind_out](apa) = pragma[only_bind_out](result)
+    // use an alias as a workaround for bad functionality-induced joins
+    pragma[nomagic]
+    private predicate revFlowApAlias(NodeEx node, ApApprox apa, Configuration config) {
+      PrevStage::revFlowAp(node, apa, config)
+    }
+
+    pragma[nomagic]
+    private predicate flowIntoCallApa(
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, ApApprox apa,
+      Configuration config
+    ) {
+      flowIntoCall(call, arg, p, allowsFieldFlow, config) and
+      PrevStage::revFlowAp(p, pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
+      revFlowApAlias(arg, pragma[only_bind_into](apa), pragma[only_bind_into](config))
+    }
+
+    pragma[nomagic]
+    private predicate flowOutOfCallApa(
+      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
+      ApApprox apa, Configuration config
+    ) {
+      flowOutOfCall(call, ret, kind, out, allowsFieldFlow, config) and
+      PrevStage::revFlowAp(out, pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
+      revFlowApAlias(ret, pragma[only_bind_into](apa), pragma[only_bind_into](config))
     }
 
     pragma[nomagic]
     private predicate flowThroughOutOfCall(
-      DataFlowCall call, DataFlowCallable c, CcCall ccc, RetNodeEx ret, ReturnKindExt kind,
-      NodeEx out, boolean allowsFieldFlow, Configuration config
+      DataFlowCall call, CcCall ccc, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow,
+      ApApprox argApa, ApApprox apa, Configuration config
     ) {
-      flowOutOfCall(call, ret, kind, out, allowsFieldFlow, pragma[only_bind_into](config)) and
-      PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
-      PrevStage::returnMayFlowThrough(ret, kind, pragma[only_bind_into](config)) and
-      matchesCall(ccc, call) and
-      c = ret.getEnclosingCallable()
+      exists(ReturnKindExt kind |
+        flowOutOfCallApa(call, ret, kind, out, allowsFieldFlow, apa, pragma[only_bind_into](config)) and
+        PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
+        PrevStage::returnMayFlowThrough(ret, argApa, apa, kind, pragma[only_bind_into](config)) and
+        matchesCall(ccc, call)
+      )
     }
 
     /**
@@ -1307,39 +1326,50 @@ private module MkStage<StageSig PrevStage> {
      * corresponding parameter position and access path of that argument, respectively.
      */
     pragma[nomagic]
+    additional predicate fwdFlow(
+      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      Ap ap, ApApprox apa, Configuration config
+    ) {
+      fwdFlow0(node, state, cc, summaryCtx, argAp, ap, apa, config) and
+      PrevStage::revFlow(node, state, apa, config) and
+      filter(node, state, ap, config)
+    }
+
+    pragma[inline]
     additional predicate fwdFlow(
       NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
       Ap ap, Configuration config
     ) {
-      fwdFlow0(node, state, cc, summaryCtx, argAp, ap, config) and
-      PrevStage::revFlow(node, state, unbindApa(getApprox(ap)), config) and
-      filter(node, state, ap, config)
+      fwdFlow(node, state, cc, summaryCtx, argAp, ap, _, config)
     }
 
     pragma[nomagic]
     private predicate fwdFlow0(
       NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      Ap ap, Configuration config
+      Ap ap, ApApprox apa, Configuration config
     ) {
       sourceNode(node, state, config) and
       (if hasSourceCallCtx(config) then cc = ccSomeCall() else cc = ccNone()) and
       argAp = apNone() and
       summaryCtx = TParameterPositionNone() and
-      ap = getApNil(node)
+      ap = getApNil(node) and
+      apa = getApprox(ap)
       or
-      exists(NodeEx mid, FlowState state0, Ap ap0, LocalCc localCc |
-        fwdFlow(mid, state0, cc, summaryCtx, argAp, ap0, config) and
+      exists(NodeEx mid, FlowState state0, Ap ap0, ApApprox apa0, LocalCc localCc |
+        fwdFlow(mid, state0, cc, summaryCtx, argAp, ap0, apa0, config) and
         localCc = getLocalCc(mid, cc)
       |
         localStep(mid, state0, node, state, true, _, config, localCc) and
-        ap = ap0
+        ap = ap0 and
+        apa = apa0
         or
         localStep(mid, state0, node, state, false, ap, config, localCc) and
-        ap0 instanceof ApNil
+        ap0 instanceof ApNil and
+        apa = getApprox(ap)
       )
       or
       exists(NodeEx mid |
-        fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, apa, pragma[only_bind_into](config)) and
         jumpStep(mid, node, config) and
         cc = ccNone() and
         summaryCtx = TParameterPositionNone() and
@@ -1352,7 +1382,8 @@ private module MkStage<StageSig PrevStage> {
         cc = ccNone() and
         summaryCtx = TParameterPositionNone() and
         argAp = apNone() and
-        ap = getApNil(node)
+        ap = getApNil(node) and
+        apa = getApprox(ap)
       )
       or
       exists(NodeEx mid, FlowState state0, ApNil nil |
@@ -1361,32 +1392,32 @@ private module MkStage<StageSig PrevStage> {
         cc = ccNone() and
         summaryCtx = TParameterPositionNone() and
         argAp = apNone() and
-        ap = getApNil(node)
+        ap = getApNil(node) and
+        apa = getApprox(ap)
       )
       or
       // store
       exists(TypedContent tc, Ap ap0 |
         fwdFlowStore(_, ap0, tc, node, state, cc, summaryCtx, argAp, config) and
-        ap = apCons(tc, ap0)
+        ap = apCons(tc, ap0) and
+        apa = getApprox(ap)
       )
       or
       // read
       exists(Ap ap0, Content c |
         fwdFlowRead(ap0, c, _, node, state, cc, summaryCtx, argAp, config) and
-        fwdFlowConsCand(ap0, c, ap, config)
+        fwdFlowConsCand(ap0, c, ap, config) and
+        apa = getApprox(ap)
       )
       or
       // flow into a callable
-      exists(ApApprox apa |
-        fwdFlowIn(_, node, state, _, cc, _, _, ap, config) and
-        apa = getApprox(ap) and
-        if PrevStage::parameterMayFlowThrough(node, apa, config)
-        then (
-          summaryCtx = TParameterPositionSome(node.(ParamNodeEx).getPosition()) and
-          argAp = apSome(ap)
-        ) else (
-          summaryCtx = TParameterPositionNone() and argAp = apNone()
-        )
+      fwdFlowIn(_, node, state, _, cc, _, _, ap, apa, config) and
+      if PrevStage::parameterMayFlowThrough(node, apa, config)
+      then (
+        summaryCtx = TParameterPositionSome(node.(ParamNodeEx).getPosition()) and
+        argAp = apSome(ap)
+      ) else (
+        summaryCtx = TParameterPositionNone() and argAp = apNone()
       )
       or
       // flow out of a callable
@@ -1394,8 +1425,8 @@ private module MkStage<StageSig PrevStage> {
         DataFlowCall call, RetNodeEx ret, boolean allowsFieldFlow, CcNoCall innercc,
         DataFlowCallable inner
       |
-        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, config) and
-        flowOutOfCall(call, ret, _, node, allowsFieldFlow, config) and
+        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, apa, config) and
+        flowOutOfCallApa(call, ret, _, node, allowsFieldFlow, apa, config) and
         inner = ret.getEnclosingCallable() and
         cc = getCallContextReturn(inner, call, innercc) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
@@ -1403,7 +1434,7 @@ private module MkStage<StageSig PrevStage> {
       or
       // flow through a callable
       exists(DataFlowCall call, ParameterPosition summaryCtx0, Ap argAp0 |
-        fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, config) and
+        fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, apa, config) and
         fwdFlowIsEntered(call, cc, summaryCtx, argAp, summaryCtx0, argAp0, config)
       )
     }
@@ -1413,9 +1444,9 @@ private module MkStage<StageSig PrevStage> {
       NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc,
       ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
     ) {
-      exists(DataFlowType contentType |
-        fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, config) and
-        PrevStage::storeStepCand(node1, unbindApa(getApprox(ap1)), tc, node2, contentType, config) and
+      exists(DataFlowType contentType, ApApprox apa1 |
+        fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, apa1, config) and
+        PrevStage::storeStepCand(node1, apa1, tc, node2, contentType, config) and
         typecheckStore(ap1, contentType)
       )
     }
@@ -1433,43 +1464,104 @@ private module MkStage<StageSig PrevStage> {
       )
     }
 
+    private class ApNonNil instanceof Ap {
+      pragma[nomagic]
+      ApNonNil() { not this instanceof ApNil }
+
+      string toString() { result = "" }
+    }
+
+    pragma[nomagic]
+    private predicate fwdFlowRead0(
+      NodeEx node1, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      ApNonNil ap, Configuration config
+    ) {
+      fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
+      PrevStage::readStepCand(node1, _, _, config)
+    }
+
     pragma[nomagic]
     private predicate fwdFlowRead(
       Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc,
       ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
     ) {
-      fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
+      fwdFlowRead0(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, c, node2, config) and
       getHeadContent(ap) = c
     }
 
     pragma[nomagic]
     private predicate fwdFlowIn(
-      DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, Cc innercc,
-      ParameterPositionOption summaryCtx, ApOption argAp, Ap ap, Configuration config
+      DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, CcCall innercc,
+      ParameterPositionOption summaryCtx, ApOption argAp, Ap ap, ApApprox apa, Configuration config
     ) {
       exists(ArgNodeEx arg, boolean allowsFieldFlow |
-        fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, config) and
-        flowIntoCall(call, arg, p, allowsFieldFlow, config) and
+        fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, apa, config) and
+        flowIntoCallApa(call, arg, p, allowsFieldFlow, apa, config) and
         innercc = getCallContextCall(call, p.getEnclosingCallable(), outercc) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
+    pragma[nomagic]
+    private predicate fwdFlowRetFromArg(
+      RetNodeEx ret, FlowState state, CcCall ccc, ParameterPosition summaryCtx, ParamNodeEx p,
+      Ap argAp, ApApprox argApa, Ap ap, ApApprox apa, Configuration config
+    ) {
+      exists(DataFlowCallable c, ReturnKindExt kind |
+        fwdFlow(pragma[only_bind_into](ret), state, ccc,
+          TParameterPositionSome(pragma[only_bind_into](summaryCtx)), apSome(argAp), ap, apa, config) and
+        getApprox(argAp) = argApa and
+        c = ret.getEnclosingCallable() and
+        kind = ret.getKind() and
+        p.isParameterOf(c, pragma[only_bind_into](summaryCtx)) and
+        parameterFlowThroughAllowed(p, kind)
+      )
+    }
+
+    pragma[inline]
+    private predicate fwdFlowInMayFlowThrough(
+      DataFlowCall call, Cc cc, CcCall innerCc, ParameterPositionOption summaryCtx, ApOption argAp,
+      ParamNodeEx param, Ap ap, ApApprox apa, Configuration config
+    ) {
+      fwdFlowIn(call, pragma[only_bind_into](param), _, cc, innerCc, summaryCtx, argAp, ap,
+        pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
+      PrevStage::parameterMayFlowThrough(param, apa, config)
+    }
+
+    // dedup before joining with `flowThroughOutOfCall`
+    pragma[nomagic]
+    private predicate fwdFlowInMayFlowThroughProj(
+      DataFlowCall call, CcCall innerCc, ApApprox apa, Configuration config
+    ) {
+      fwdFlowInMayFlowThrough(call, _, innerCc, _, _, _, _, apa, config)
+    }
+
+    /**
+     * Same as `flowThroughOutOfCall`, but restricted to calls that are reached
+     * in the flow covered by `fwdFlow`, where data might flow through the target
+     * callable and back out at `call`.
+     */
+    pragma[nomagic]
+    private predicate fwdFlowThroughOutOfCall(
+      DataFlowCall call, CcCall ccc, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow,
+      ApApprox argApa, ApApprox apa, Configuration config
+    ) {
+      fwdFlowInMayFlowThroughProj(call, ccc, argApa, config) and
+      flowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, argApa, apa, config)
+    }
+
     pragma[nomagic]
     private predicate fwdFlowOutFromArg(
       DataFlowCall call, NodeEx out, FlowState state, ParameterPosition summaryCtx, Ap argAp, Ap ap,
-      Configuration config
+      ApApprox apa, Configuration config
     ) {
-      exists(
-        DataFlowCallable c, RetNodeEx ret, ReturnKindExt kind, boolean allowsFieldFlow, CcCall ccc
-      |
-        fwdFlow(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc),
-          TParameterPositionSome(pragma[only_bind_into](summaryCtx)), apSome(argAp), ap, config) and
-        flowThroughOutOfCall(call, pragma[only_bind_into](c), ccc, ret, kind, out, allowsFieldFlow,
+      exists(RetNodeEx ret, boolean allowsFieldFlow, CcCall ccc, ApApprox argApa |
+        fwdFlowRetFromArg(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc),
+          summaryCtx, _, argAp, pragma[only_bind_into](argApa), ap, pragma[only_bind_into](apa),
           config) and
-        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
-        parameterFlowThroughAllowed(c, pragma[only_bind_into](summaryCtx), kind)
+        fwdFlowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, argApa, apa, config) and
+        (if allowsFieldFlow = false then ap instanceof ApNil else any())
       )
     }
 
@@ -1483,8 +1575,7 @@ private module MkStage<StageSig PrevStage> {
       ParameterPosition pos, Ap ap, Configuration config
     ) {
       exists(ParamNodeEx param |
-        fwdFlowIn(call, param, _, cc, _, summaryCtx, argAp, ap, config) and
-        PrevStage::parameterMayFlowThrough(param, unbindApa(getApprox(ap)), config) and
+        fwdFlowInMayFlowThrough(call, cc, _, summaryCtx, argAp, param, ap, _, config) and
         pos = param.getPosition()
       )
     }
@@ -1505,41 +1596,55 @@ private module MkStage<StageSig PrevStage> {
       fwdFlowConsCand(ap1, c, ap2, config)
     }
 
-    pragma[nomagic]
-    private predicate returnFlowsThrough0(
-      RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, DataFlowCallable c,
-      ParameterPosition ppos, Ap argAp, Ap ap, Configuration config
-    ) {
-      exists(boolean allowsFieldFlow |
-        fwdFlow(ret, state, ccc, TParameterPositionSome(ppos), apSome(argAp), ap, config) and
-        flowThroughOutOfCall(_, c, _, pragma[only_bind_into](ret), kind, _, allowsFieldFlow,
-          pragma[only_bind_into](config)) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
-      )
-    }
-
     pragma[nomagic]
     private predicate returnFlowsThrough(
       RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, ParamNodeEx p, Ap argAp,
       Ap ap, Configuration config
     ) {
-      exists(DataFlowCallable c, ParameterPosition ppos |
-        returnFlowsThrough0(ret, kind, state, ccc, c, ppos, argAp, ap, config) and
-        p.isParameterOf(c, ppos) and
-        parameterFlowThroughAllowed(p, kind)
+      exists(boolean allowsFieldFlow, ApApprox argApa, ApApprox apa |
+        fwdFlowRetFromArg(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc), _, p,
+          argAp, pragma[only_bind_into](argApa), ap, pragma[only_bind_into](apa), config) and
+        kind = ret.getKind() and
+        fwdFlowThroughOutOfCall(_, ccc, ret, _, allowsFieldFlow, argApa, apa, config) and
+        (if allowsFieldFlow = false then ap instanceof ApNil else any())
       )
     }
 
     pragma[nomagic]
     private predicate flowThroughIntoCall(
-      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp,
+      Configuration config
     ) {
-      exists(Ap argAp |
-        flowIntoCall(call, pragma[only_bind_into](arg), pragma[only_bind_into](p), allowsFieldFlow,
+      exists(ApApprox argApa |
+        flowIntoCallApa(call, pragma[only_bind_into](arg), pragma[only_bind_into](p),
+          allowsFieldFlow, argApa, pragma[only_bind_into](config)) and
+        fwdFlow(arg, _, _, _, _, pragma[only_bind_into](argAp), argApa,
           pragma[only_bind_into](config)) and
-        fwdFlow(arg, _, _, _, _, pragma[only_bind_into](argAp), pragma[only_bind_into](config)) and
         returnFlowsThrough(_, _, _, _, p, pragma[only_bind_into](argAp), _,
-          pragma[only_bind_into](config))
+          pragma[only_bind_into](config)) and
+        if allowsFieldFlow = false then argAp instanceof ApNil else any()
+      )
+    }
+
+    pragma[nomagic]
+    private predicate flowIntoCallAp(
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap ap,
+      Configuration config
+    ) {
+      exists(ApApprox apa |
+        flowIntoCallApa(call, arg, p, allowsFieldFlow, apa, config) and
+        fwdFlow(arg, _, _, _, _, ap, apa, config)
+      )
+    }
+
+    pragma[nomagic]
+    private predicate flowOutOfCallAp(
+      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
+      Ap ap, Configuration config
+    ) {
+      exists(ApApprox apa |
+        flowOutOfCallApa(call, ret, kind, out, allowsFieldFlow, apa, config) and
+        fwdFlow(ret, _, _, _, _, ap, apa, config)
       )
     }
 
@@ -1628,7 +1733,7 @@ private module MkStage<StageSig PrevStage> {
       // flow into a callable
       exists(ParamNodeEx p, boolean allowsFieldFlow |
         revFlow(p, state, TReturnCtxNone(), returnAp, ap, config) and
-        flowIntoCall(_, node, p, allowsFieldFlow, config) and
+        flowIntoCallAp(_, node, p, allowsFieldFlow, ap, config) and
         (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
         returnCtx = TReturnCtxNone()
       )
@@ -1682,22 +1787,41 @@ private module MkStage<StageSig PrevStage> {
     ) {
       exists(NodeEx out, boolean allowsFieldFlow |
         revFlow(out, state, returnCtx, returnAp, ap, config) and
-        flowOutOfCall(call, ret, kind, out, allowsFieldFlow, config) and
+        flowOutOfCallAp(call, ret, kind, out, allowsFieldFlow, ap, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
+    /**
+     * Same as `flowThroughIntoCall`, but restricted to calls that are reached
+     * in the flow covered by `revFlow`, where data might flow through the target
+     * callable and back out at `call`.
+     */
+    pragma[nomagic]
+    private predicate revFlowThroughIntoCall(
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp,
+      Configuration config
+    ) {
+      flowThroughIntoCall(call, arg, p, allowsFieldFlow, argAp, config) and
+      revFlowIsReturned(call, _, _, _, _, config)
+    }
+
+    pragma[nomagic]
+    private predicate revFlowParamToReturn(
+      ParamNodeEx p, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap, Configuration config
+    ) {
+      revFlow(p, state, TReturnCtxMaybeFlowThrough(kind), apSome(returnAp), ap, config) and
+      parameterFlowThroughAllowed(p, kind)
+    }
+
     pragma[nomagic]
     private predicate revFlowInToReturn(
       DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap,
       Configuration config
     ) {
       exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(pragma[only_bind_into](p), state,
-          TReturnCtxMaybeFlowThrough(pragma[only_bind_into](kind)), apSome(returnAp), ap, config) and
-        flowThroughIntoCall(call, arg, p, allowsFieldFlow, config) and
-        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
-        parameterFlowThroughAllowed(p, kind)
+        revFlowParamToReturn(p, state, kind, returnAp, ap, config) and
+        revFlowThroughIntoCall(call, arg, p, allowsFieldFlow, ap, config)
       )
     }
 
@@ -1750,6 +1874,11 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     predicate revFlow(NodeEx node, Configuration config) { revFlow(node, _, _, _, _, config) }
 
+    pragma[nomagic]
+    predicate revFlowAp(NodeEx node, Ap ap, Configuration config) {
+      revFlow(node, _, _, _, ap, config)
+    }
+
     // use an alias as a workaround for bad functionality-induced joins
     pragma[nomagic]
     additional predicate revFlowAlias(NodeEx node, Configuration config) {
@@ -1786,9 +1915,9 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate parameterFlowsThroughRev(
-      ParamNodeEx p, Ap ap, ReturnKindExt kind, Configuration config
+      ParamNodeEx p, Ap ap, ReturnKindExt kind, Ap returnAp, Configuration config
     ) {
-      revFlow(p, _, TReturnCtxMaybeFlowThrough(kind), apSome(_), ap, config) and
+      revFlow(p, _, TReturnCtxMaybeFlowThrough(kind), apSome(returnAp), ap, config) and
       parameterFlowThroughAllowed(p, kind)
     }
 
@@ -1796,27 +1925,36 @@ private module MkStage<StageSig PrevStage> {
     predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
       exists(RetNodeEx ret, ReturnKindExt kind |
         returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
-        parameterFlowsThroughRev(p, ap, kind, config)
+        parameterFlowsThroughRev(p, ap, kind, _, config)
       )
     }
 
     pragma[nomagic]
-    predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config) {
-      exists(ParamNodeEx p, Ap ap |
-        returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
-        parameterFlowsThroughRev(p, ap, kind, config)
+    predicate returnMayFlowThrough(
+      RetNodeEx ret, Ap argAp, Ap ap, ReturnKindExt kind, Configuration config
+    ) {
+      exists(ParamNodeEx p |
+        returnFlowsThrough(ret, kind, _, _, p, argAp, ap, config) and
+        parameterFlowsThroughRev(p, argAp, kind, ap, config)
+      )
+    }
+
+    pragma[nomagic]
+    predicate revFlowInToReturnIsReturned(
+      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnCtx returnCtx, ApOption returnAp,
+      Ap ap, Configuration config
+    ) {
+      exists(ReturnKindExt returnKind0, Ap returnAp0 |
+        revFlowInToReturn(call, arg, state, returnKind0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
       )
     }
 
     pragma[nomagic]
     predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
-      exists(
-        ReturnKindExt returnKind0, Ap returnAp0, ArgNodeEx arg, FlowState state,
-        ReturnCtx returnCtx, ApOption returnAp, Ap ap
-      |
+      exists(ArgNodeEx arg, FlowState state, ReturnCtx returnCtx, ApOption returnAp, Ap ap |
         revFlow(arg, state, returnCtx, returnAp, ap, config) and
-        revFlowInToReturn(call, arg, state, returnKind0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
+        revFlowInToReturnIsReturned(call, arg, state, returnCtx, returnAp, ap, config)
       )
     }
 
@@ -2179,16 +2317,16 @@ private module LocalFlowBigStep {
   pragma[nomagic]
   predicate localFlowBigStep(
     NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
-    AccessPathFrontNil apf, Configuration config, LocalCallContext callContext
+    DataFlowType t, Configuration config, LocalCallContext callContext
   ) {
-    localFlowStepPlus(node1, state1, node2, preservesValue, apf.getType(), config, callContext) and
+    localFlowStepPlus(node1, state1, node2, preservesValue, t, config, callContext) and
     localFlowExit(node2, state1, config) and
     state1 = state2
     or
     additionalLocalFlowStepNodeCand2(node1, state1, node2, state2, config) and
     state1 != state2 and
     preservesValue = false and
-    apf = TFrontNil(node2.getDataFlowType()) and
+    t = node2.getDataFlowType() and
     callContext.relevantFor(node1.getEnclosingCallable()) and
     not exists(DataFlowCall call | call = callContext.(LocalCallContextSpecificCall).getCall() |
       isUnreachableInCallCached(node1.asNode(), call) or
@@ -2202,11 +2340,87 @@ private import LocalFlowBigStep
 private module Stage3Param implements MkStage<Stage2>::StageParam {
   private module PrevStage = Stage2;
 
+  class Ap = ApproxAccessPathFront;
+
+  class ApNil = ApproxAccessPathFrontNil;
+
+  PrevStage::Ap getApprox(Ap ap) { result = ap.toBoolNonEmpty() }
+
+  ApNil getApNil(NodeEx node) {
+    PrevStage::revFlow(node, _) and result = TApproxFrontNil(node.getDataFlowType())
+  }
+
+  bindingset[tc, tail]
+  Ap apCons(TypedContent tc, Ap tail) { result.getAHead() = tc and exists(tail) }
+
+  pragma[noinline]
+  Content getHeadContent(Ap ap) { result = ap.getAHead().getContent() }
+
+  class ApOption = ApproxAccessPathFrontOption;
+
+  ApOption apNone() { result = TApproxAccessPathFrontNone() }
+
+  ApOption apSome(Ap ap) { result = TApproxAccessPathFrontSome(ap) }
+
+  import BooleanCallContext
+
+  predicate localStep(
+    NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
+    ApproxAccessPathFrontNil ap, Configuration config, LocalCc lcc
+  ) {
+    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap.getType(), config, _) and
+    exists(lcc)
+  }
+
+  predicate flowOutOfCall = flowOutOfCallNodeCand2/6;
+
+  predicate flowIntoCall = flowIntoCallNodeCand2/5;
+
+  pragma[nomagic]
+  private predicate expectsContentCand(NodeEx node, Ap ap, Configuration config) {
+    exists(Content c |
+      PrevStage::revFlow(node, pragma[only_bind_into](config)) and
+      PrevStage::readStepCand(_, c, _, pragma[only_bind_into](config)) and
+      expectsContentEx(node, c) and
+      c = ap.getAHead().getContent()
+    )
+  }
+
+  pragma[nomagic]
+  private predicate castingNodeEx(NodeEx node) { node.asNode() instanceof CastingNode }
+
+  bindingset[node, state, ap, config]
+  predicate filter(NodeEx node, FlowState state, Ap ap, Configuration config) {
+    exists(state) and
+    exists(config) and
+    (if castingNodeEx(node) then compatibleTypes(node.getDataFlowType(), ap.getType()) else any()) and
+    (
+      notExpectsContent(node)
+      or
+      expectsContentCand(node, ap, config)
+    )
+  }
+
+  bindingset[ap, contentType]
+  predicate typecheckStore(Ap ap, DataFlowType contentType) {
+    // We need to typecheck stores here, since reverse flow through a getter
+    // might have a different type here compared to inside the getter.
+    compatibleTypes(ap.getType(), contentType)
+  }
+}
+
+private module Stage3 implements StageSig {
+  import MkStage<Stage2>::Stage<Stage3Param>
+}
+
+private module Stage4Param implements MkStage<Stage3>::StageParam {
+  private module PrevStage = Stage3;
+
   class Ap = AccessPathFront;
 
   class ApNil = AccessPathFrontNil;
 
-  PrevStage::Ap getApprox(Ap ap) { result = ap.toBoolNonEmpty() }
+  PrevStage::Ap getApprox(Ap ap) { result = ap.toApprox() }
 
   ApNil getApNil(NodeEx node) {
     PrevStage::revFlow(node, _) and result = TFrontNil(node.getDataFlowType())
@@ -2226,16 +2440,42 @@ private module Stage3Param implements MkStage<Stage2>::StageParam {
 
   import BooleanCallContext
 
+  pragma[nomagic]
   predicate localStep(
     NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
     ApNil ap, Configuration config, LocalCc lcc
   ) {
-    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap, config, _) and exists(lcc)
+    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap.getType(), config, _) and
+    PrevStage::revFlow(node1, pragma[only_bind_into](state1), _, pragma[only_bind_into](config)) and
+    PrevStage::revFlowAlias(node2, pragma[only_bind_into](state2), _, pragma[only_bind_into](config)) and
+    exists(lcc)
   }
 
-  predicate flowOutOfCall = flowOutOfCallNodeCand2/6;
+  pragma[nomagic]
+  predicate flowOutOfCall(
+    DataFlowCall call, RetNodeEx node1, ReturnKindExt kind, NodeEx node2, boolean allowsFieldFlow,
+    Configuration config
+  ) {
+    exists(FlowState state |
+      flowOutOfCallNodeCand2(call, node1, kind, node2, allowsFieldFlow, config) and
+      PrevStage::revFlow(node2, pragma[only_bind_into](state), _, pragma[only_bind_into](config)) and
+      PrevStage::revFlowAlias(node1, pragma[only_bind_into](state), _,
+        pragma[only_bind_into](config))
+    )
+  }
 
-  predicate flowIntoCall = flowIntoCallNodeCand2/5;
+  pragma[nomagic]
+  predicate flowIntoCall(
+    DataFlowCall call, ArgNodeEx node1, ParamNodeEx node2, boolean allowsFieldFlow,
+    Configuration config
+  ) {
+    exists(FlowState state |
+      flowIntoCallNodeCand2(call, node1, node2, allowsFieldFlow, config) and
+      PrevStage::revFlow(node2, pragma[only_bind_into](state), _, pragma[only_bind_into](config)) and
+      PrevStage::revFlowAlias(node1, pragma[only_bind_into](state), _,
+        pragma[only_bind_into](config))
+    )
+  }
 
   pragma[nomagic]
   private predicate clearSet(NodeEx node, ContentSet c, Configuration config) {
@@ -2291,8 +2531,8 @@ private module Stage3Param implements MkStage<Stage2>::StageParam {
   }
 }
 
-private module Stage3 implements StageSig {
-  import MkStage<Stage2>::Stage<Stage3Param>
+private module Stage4 implements StageSig {
+  import MkStage<Stage3>::Stage<Stage4Param>
 }
 
 /**
@@ -2303,8 +2543,8 @@ private predicate flowCandSummaryCtx(
   NodeEx node, FlowState state, AccessPathFront argApf, Configuration config
 ) {
   exists(AccessPathFront apf |
-    Stage3::revFlow(node, state, TReturnCtxMaybeFlowThrough(_), _, apf, config) and
-    Stage3::fwdFlow(node, state, any(Stage3::CcCall ccc), _, TAccessPathFrontSome(argApf), apf,
+    Stage4::revFlow(node, state, TReturnCtxMaybeFlowThrough(_), _, apf, config) and
+    Stage4::fwdFlow(node, state, any(Stage4::CcCall ccc), _, TAccessPathFrontSome(argApf), apf,
       config)
   )
 }
@@ -2315,10 +2555,10 @@ private predicate flowCandSummaryCtx(
  */
 private predicate expensiveLen2unfolding(TypedContent tc, Configuration config) {
   exists(int tails, int nodes, int apLimit, int tupleLimit |
-    tails = strictcount(AccessPathFront apf | Stage3::consCand(tc, apf, config)) and
+    tails = strictcount(AccessPathFront apf | Stage4::consCand(tc, apf, config)) and
     nodes =
       strictcount(NodeEx n, FlowState state |
-        Stage3::revFlow(n, state, any(AccessPathFrontHead apf | apf.getHead() = tc), config)
+        Stage4::revFlow(n, state, any(AccessPathFrontHead apf | apf.getHead() = tc), config)
         or
         flowCandSummaryCtx(n, state, any(AccessPathFrontHead apf | apf.getHead() = tc), config)
       ) and
@@ -2332,11 +2572,11 @@ private predicate expensiveLen2unfolding(TypedContent tc, Configuration config)
 private newtype TAccessPathApprox =
   TNil(DataFlowType t) or
   TConsNil(TypedContent tc, DataFlowType t) {
-    Stage3::consCand(tc, TFrontNil(t), _) and
+    Stage4::consCand(tc, TFrontNil(t), _) and
     not expensiveLen2unfolding(tc, _)
   } or
   TConsCons(TypedContent tc1, TypedContent tc2, int len) {
-    Stage3::consCand(tc1, TFrontHead(tc2), _) and
+    Stage4::consCand(tc1, TFrontHead(tc2), _) and
     len in [2 .. accessPathLimit()] and
     not expensiveLen2unfolding(tc1, _)
   } or
@@ -2466,7 +2706,7 @@ private class AccessPathApproxCons1 extends AccessPathApproxCons, TCons1 {
   override AccessPathApprox pop(TypedContent head) {
     head = tc and
     (
-      exists(TypedContent tc2 | Stage3::consCand(tc, TFrontHead(tc2), _) |
+      exists(TypedContent tc2 | Stage4::consCand(tc, TFrontHead(tc2), _) |
         result = TConsCons(tc2, _, len - 1)
         or
         len = 2 and
@@ -2477,7 +2717,7 @@ private class AccessPathApproxCons1 extends AccessPathApproxCons, TCons1 {
       or
       exists(DataFlowType t |
         len = 1 and
-        Stage3::consCand(tc, TFrontNil(t), _) and
+        Stage4::consCand(tc, TFrontNil(t), _) and
         result = TNil(t)
       )
     )
@@ -2502,13 +2742,14 @@ private class AccessPathApproxOption extends TAccessPathApproxOption {
   }
 }
 
-private module Stage4Param implements MkStage<Stage3>::StageParam {
-  private module PrevStage = Stage3;
+private module Stage5Param implements MkStage<Stage4>::StageParam {
+  private module PrevStage = Stage4;
 
   class Ap = AccessPathApprox;
 
   class ApNil = AccessPathApproxNil;
 
+  pragma[nomagic]
   PrevStage::Ap getApprox(Ap ap) { result = ap.getFront() }
 
   ApNil getApNil(NodeEx node) {
@@ -2534,7 +2775,9 @@ private module Stage4Param implements MkStage<Stage3>::StageParam {
     NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
     ApNil ap, Configuration config, LocalCc lcc
   ) {
-    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap.getFront(), config, lcc)
+    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap.getType(), config, lcc) and
+    PrevStage::revFlow(node1, pragma[only_bind_into](state1), _, pragma[only_bind_into](config)) and
+    PrevStage::revFlowAlias(node2, pragma[only_bind_into](state2), _, pragma[only_bind_into](config))
   }
 
   pragma[nomagic]
@@ -2571,7 +2814,7 @@ private module Stage4Param implements MkStage<Stage3>::StageParam {
   predicate typecheckStore(Ap ap, DataFlowType contentType) { any() }
 }
 
-private module Stage4 = MkStage<Stage3>::Stage<Stage4Param>;
+private module Stage5 = MkStage<Stage4>::Stage<Stage5Param>;
 
 bindingset[conf, result]
 private Configuration unbindConf(Configuration conf) {
@@ -2585,8 +2828,8 @@ private predicate nodeMayUseSummary0(
 ) {
   exists(AccessPathApprox apa0 |
     c = n.getEnclosingCallable() and
-    Stage4::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
-    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TParameterPositionSome(pos),
+    Stage5::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
+    Stage5::fwdFlow(n, state, any(CallContextCall ccc), TParameterPositionSome(pos),
       TAccessPathApproxSome(apa), apa0, config)
   )
 }
@@ -2596,7 +2839,7 @@ private predicate nodeMayUseSummary(
   NodeEx n, FlowState state, AccessPathApprox apa, Configuration config
 ) {
   exists(DataFlowCallable c, ParameterPosition pos, ParamNodeEx p |
-    Stage4::parameterMayFlowThrough(p, apa, config) and
+    Stage5::parameterMayFlowThrough(p, apa, config) and
     nodeMayUseSummary0(n, c, pos, state, apa, config) and
     p.isParameterOf(c, pos)
   )
@@ -2606,8 +2849,8 @@ private newtype TSummaryCtx =
   TSummaryCtxNone() or
   TSummaryCtxSome(ParamNodeEx p, FlowState state, AccessPath ap) {
     exists(Configuration config |
-      Stage4::parameterMayFlowThrough(p, ap.getApprox(), config) and
-      Stage4::revFlow(p, state, _, config)
+      Stage5::parameterMayFlowThrough(p, ap.getApprox(), config) and
+      Stage5::revFlow(p, state, _, config)
     )
   }
 
@@ -2656,7 +2899,7 @@ private int count1to2unfold(AccessPathApproxCons1 apa, Configuration config) {
     len = apa.len() and
     result =
       strictcount(AccessPathFront apf |
-        Stage4::consCand(tc, any(AccessPathApprox ap | ap.getFront() = apf and ap.len() = len - 1),
+        Stage5::consCand(tc, any(AccessPathApprox ap | ap.getFront() = apf and ap.len() = len - 1),
           config)
       )
   )
@@ -2665,7 +2908,7 @@ private int count1to2unfold(AccessPathApproxCons1 apa, Configuration config) {
 private int countNodesUsingAccessPath(AccessPathApprox apa, Configuration config) {
   result =
     strictcount(NodeEx n, FlowState state |
-      Stage4::revFlow(n, state, apa, config) or nodeMayUseSummary(n, state, apa, config)
+      Stage5::revFlow(n, state, apa, config) or nodeMayUseSummary(n, state, apa, config)
     )
 }
 
@@ -2686,7 +2929,7 @@ private predicate expensiveLen1to2unfolding(AccessPathApproxCons1 apa, Configura
 private AccessPathApprox getATail(AccessPathApprox apa, Configuration config) {
   exists(TypedContent head |
     apa.pop(head) = result and
-    Stage4::consCand(head, result, config)
+    Stage5::consCand(head, result, config)
   )
 }
 
@@ -2768,7 +3011,7 @@ private newtype TPathNode =
     NodeEx node, FlowState state, CallContext cc, SummaryCtx sc, AccessPath ap, Configuration config
   ) {
     // A PathNode is introduced by a source ...
-    Stage4::revFlow(node, state, config) and
+    Stage5::revFlow(node, state, config) and
     sourceNode(node, state, config) and
     (
       if hasSourceCallCtx(config)
@@ -2782,7 +3025,7 @@ private newtype TPathNode =
     exists(PathNodeMid mid |
       pathStep(mid, node, state, cc, sc, ap) and
       pragma[only_bind_into](config) = mid.getConfiguration() and
-      Stage4::revFlow(node, state, ap.getApprox(), pragma[only_bind_into](config))
+      Stage5::revFlow(node, state, ap.getApprox(), pragma[only_bind_into](config))
     )
   } or
   TPathNodeSink(NodeEx node, FlowState state, Configuration config) {
@@ -2924,7 +3167,7 @@ private class AccessPathCons2 extends AccessPath, TAccessPathCons2 {
   override TypedContent getHead() { result = head1 }
 
   override AccessPath getTail() {
-    Stage4::consCand(head1, result.getApprox(), _) and
+    Stage5::consCand(head1, result.getApprox(), _) and
     result.getHead() = head2 and
     result.length() = len - 1
   }
@@ -2955,7 +3198,7 @@ private class AccessPathCons1 extends AccessPath, TAccessPathCons1 {
   override TypedContent getHead() { result = head }
 
   override AccessPath getTail() {
-    Stage4::consCand(head, result.getApprox(), _) and result.length() = len - 1
+    Stage5::consCand(head, result.getApprox(), _) and result.length() = len - 1
   }
 
   override AccessPathFrontHead getFront() { result = TFrontHead(head) }
@@ -3347,7 +3590,8 @@ private predicate pathStep(
     AccessPath ap0, NodeEx midnode, FlowState state0, Configuration conf, LocalCallContext localCC
   |
     pathNode(mid, midnode, state0, cc, sc, ap0, conf, localCC) and
-    localFlowBigStep(midnode, state0, node, state, false, ap.getFront(), conf, localCC) and
+    localFlowBigStep(midnode, state0, node, state, false, ap.(AccessPathNil).getType(), conf,
+      localCC) and
     ap0 instanceof AccessPathNil
   )
   or
@@ -3389,7 +3633,7 @@ private predicate pathReadStep(
 ) {
   ap0 = mid.getAp() and
   tc = ap0.getHead() and
-  Stage4::readStepCand(mid.getNodeEx(), tc.getContent(), node, mid.getConfiguration()) and
+  Stage5::readStepCand(mid.getNodeEx(), tc.getContent(), node, mid.getConfiguration()) and
   state = mid.getState() and
   cc = mid.getCallContext()
 }
@@ -3399,7 +3643,7 @@ private predicate pathStoreStep(
   PathNodeMid mid, NodeEx node, FlowState state, AccessPath ap0, TypedContent tc, CallContext cc
 ) {
   ap0 = mid.getAp() and
-  Stage4::storeStepCand(mid.getNodeEx(), _, tc, node, _, mid.getConfiguration()) and
+  Stage5::storeStepCand(mid.getNodeEx(), _, tc, node, _, mid.getConfiguration()) and
   state = mid.getState() and
   cc = mid.getCallContext()
 }
@@ -3436,7 +3680,7 @@ private NodeEx getAnOutNodeFlow(
   ReturnKindExt kind, DataFlowCall call, AccessPathApprox apa, Configuration config
 ) {
   result.asNode() = kind.getAnOutNode(call) and
-  Stage4::revFlow(result, _, apa, config)
+  Stage5::revFlow(result, _, apa, config)
 }
 
 /**
@@ -3472,7 +3716,7 @@ private predicate parameterCand(
   DataFlowCallable callable, ParameterPosition pos, AccessPathApprox apa, Configuration config
 ) {
   exists(ParamNodeEx p |
-    Stage4::revFlow(p, _, apa, config) and
+    Stage5::revFlow(p, _, apa, config) and
     p.isParameterOf(callable, pos)
   )
 }
@@ -3751,9 +3995,17 @@ predicate stageStats(
   n = 45 and
   Stage4::stats(false, nodes, fields, conscand, states, tuples, config)
   or
-  stage = "5 Fwd" and n = 50 and finalStats(true, nodes, fields, conscand, states, tuples)
+  stage = "5 Fwd" and
+  n = 50 and
+  Stage5::stats(true, nodes, fields, conscand, states, tuples, config)
   or
-  stage = "5 Rev" and n = 55 and finalStats(false, nodes, fields, conscand, states, tuples)
+  stage = "5 Rev" and
+  n = 55 and
+  Stage5::stats(false, nodes, fields, conscand, states, tuples, config)
+  or
+  stage = "6 Fwd" and n = 60 and finalStats(true, nodes, fields, conscand, states, tuples)
+  or
+  stage = "6 Rev" and n = 65 and finalStats(false, nodes, fields, conscand, states, tuples)
 }
 
 private module FlowExploration {
diff --git a/cpp/ql/lib/experimental/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl2.qll b/cpp/ql/lib/experimental/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl2.qll
index ccde916a3c2..6741ccc2f06 100644
--- a/cpp/ql/lib/experimental/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl2.qll
+++ b/cpp/ql/lib/experimental/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl2.qll
@@ -621,23 +621,6 @@ private predicate parameterFlowThroughAllowed(ParamNodeEx p, ReturnKindExt kind)
   )
 }
 
-/**
- * Holds if flow from a parameter at position `pos` inside `c` to a return node of
- * kind `kind` is allowed.
- *
- * We don't expect a parameter to return stored in itself, unless
- * explicitly allowed
- */
-bindingset[c, pos, kind]
-private predicate parameterFlowThroughAllowed(
-  DataFlowCallable c, ParameterPosition pos, ReturnKindExt kind
-) {
-  exists(ParamNodeEx p |
-    p.isParameterOf(c, pos) and
-    parameterFlowThroughAllowed(p, kind)
-  )
-}
-
 private module Stage1 implements StageSig {
   class Ap = Unit;
 
@@ -980,6 +963,12 @@ private module Stage1 implements StageSig {
   pragma[nomagic]
   predicate revFlow(NodeEx node, Configuration config) { revFlow(node, _, config) }
 
+  pragma[nomagic]
+  predicate revFlowAp(NodeEx node, Ap ap, Configuration config) {
+    revFlow(node, config) and
+    exists(ap)
+  }
+
   bindingset[node, state, config]
   predicate revFlow(NodeEx node, FlowState state, Ap ap, Configuration config) {
     revFlow(node, _, pragma[only_bind_into](config)) and
@@ -1022,9 +1011,13 @@ private module Stage1 implements StageSig {
   }
 
   pragma[nomagic]
-  predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config) {
+  predicate returnMayFlowThrough(
+    RetNodeEx ret, Ap argAp, Ap ap, ReturnKindExt kind, Configuration config
+  ) {
     throughFlowNodeCand(ret, config) and
-    kind = ret.getKind()
+    kind = ret.getKind() and
+    exists(argAp) and
+    exists(ap)
   }
 
   pragma[nomagic]
@@ -1189,6 +1182,8 @@ private signature module StageSig {
 
   predicate revFlow(NodeEx node, Configuration config);
 
+  predicate revFlowAp(NodeEx node, Ap ap, Configuration config);
+
   bindingset[node, state, config]
   predicate revFlow(NodeEx node, FlowState state, Ap ap, Configuration config);
 
@@ -1196,7 +1191,9 @@ private signature module StageSig {
 
   predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config);
 
-  predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config);
+  predicate returnMayFlowThrough(
+    RetNodeEx ret, Ap argAp, Ap ap, ReturnKindExt kind, Configuration config
+  );
 
   predicate storeStepCand(
     NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, DataFlowType contentType,
@@ -1281,21 +1278,43 @@ private module MkStage<StageSig PrevStage> {
     import Param
 
     /* Begin: Stage logic. */
-    bindingset[result, apa]
-    private ApApprox unbindApa(ApApprox apa) {
-      pragma[only_bind_out](apa) = pragma[only_bind_out](result)
+    // use an alias as a workaround for bad functionality-induced joins
+    pragma[nomagic]
+    private predicate revFlowApAlias(NodeEx node, ApApprox apa, Configuration config) {
+      PrevStage::revFlowAp(node, apa, config)
+    }
+
+    pragma[nomagic]
+    private predicate flowIntoCallApa(
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, ApApprox apa,
+      Configuration config
+    ) {
+      flowIntoCall(call, arg, p, allowsFieldFlow, config) and
+      PrevStage::revFlowAp(p, pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
+      revFlowApAlias(arg, pragma[only_bind_into](apa), pragma[only_bind_into](config))
+    }
+
+    pragma[nomagic]
+    private predicate flowOutOfCallApa(
+      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
+      ApApprox apa, Configuration config
+    ) {
+      flowOutOfCall(call, ret, kind, out, allowsFieldFlow, config) and
+      PrevStage::revFlowAp(out, pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
+      revFlowApAlias(ret, pragma[only_bind_into](apa), pragma[only_bind_into](config))
     }
 
     pragma[nomagic]
     private predicate flowThroughOutOfCall(
-      DataFlowCall call, DataFlowCallable c, CcCall ccc, RetNodeEx ret, ReturnKindExt kind,
-      NodeEx out, boolean allowsFieldFlow, Configuration config
+      DataFlowCall call, CcCall ccc, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow,
+      ApApprox argApa, ApApprox apa, Configuration config
     ) {
-      flowOutOfCall(call, ret, kind, out, allowsFieldFlow, pragma[only_bind_into](config)) and
-      PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
-      PrevStage::returnMayFlowThrough(ret, kind, pragma[only_bind_into](config)) and
-      matchesCall(ccc, call) and
-      c = ret.getEnclosingCallable()
+      exists(ReturnKindExt kind |
+        flowOutOfCallApa(call, ret, kind, out, allowsFieldFlow, apa, pragma[only_bind_into](config)) and
+        PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
+        PrevStage::returnMayFlowThrough(ret, argApa, apa, kind, pragma[only_bind_into](config)) and
+        matchesCall(ccc, call)
+      )
     }
 
     /**
@@ -1307,39 +1326,50 @@ private module MkStage<StageSig PrevStage> {
      * corresponding parameter position and access path of that argument, respectively.
      */
     pragma[nomagic]
+    additional predicate fwdFlow(
+      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      Ap ap, ApApprox apa, Configuration config
+    ) {
+      fwdFlow0(node, state, cc, summaryCtx, argAp, ap, apa, config) and
+      PrevStage::revFlow(node, state, apa, config) and
+      filter(node, state, ap, config)
+    }
+
+    pragma[inline]
     additional predicate fwdFlow(
       NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
       Ap ap, Configuration config
     ) {
-      fwdFlow0(node, state, cc, summaryCtx, argAp, ap, config) and
-      PrevStage::revFlow(node, state, unbindApa(getApprox(ap)), config) and
-      filter(node, state, ap, config)
+      fwdFlow(node, state, cc, summaryCtx, argAp, ap, _, config)
     }
 
     pragma[nomagic]
     private predicate fwdFlow0(
       NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      Ap ap, Configuration config
+      Ap ap, ApApprox apa, Configuration config
     ) {
       sourceNode(node, state, config) and
       (if hasSourceCallCtx(config) then cc = ccSomeCall() else cc = ccNone()) and
       argAp = apNone() and
       summaryCtx = TParameterPositionNone() and
-      ap = getApNil(node)
+      ap = getApNil(node) and
+      apa = getApprox(ap)
       or
-      exists(NodeEx mid, FlowState state0, Ap ap0, LocalCc localCc |
-        fwdFlow(mid, state0, cc, summaryCtx, argAp, ap0, config) and
+      exists(NodeEx mid, FlowState state0, Ap ap0, ApApprox apa0, LocalCc localCc |
+        fwdFlow(mid, state0, cc, summaryCtx, argAp, ap0, apa0, config) and
         localCc = getLocalCc(mid, cc)
       |
         localStep(mid, state0, node, state, true, _, config, localCc) and
-        ap = ap0
+        ap = ap0 and
+        apa = apa0
         or
         localStep(mid, state0, node, state, false, ap, config, localCc) and
-        ap0 instanceof ApNil
+        ap0 instanceof ApNil and
+        apa = getApprox(ap)
       )
       or
       exists(NodeEx mid |
-        fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, apa, pragma[only_bind_into](config)) and
         jumpStep(mid, node, config) and
         cc = ccNone() and
         summaryCtx = TParameterPositionNone() and
@@ -1352,7 +1382,8 @@ private module MkStage<StageSig PrevStage> {
         cc = ccNone() and
         summaryCtx = TParameterPositionNone() and
         argAp = apNone() and
-        ap = getApNil(node)
+        ap = getApNil(node) and
+        apa = getApprox(ap)
       )
       or
       exists(NodeEx mid, FlowState state0, ApNil nil |
@@ -1361,32 +1392,32 @@ private module MkStage<StageSig PrevStage> {
         cc = ccNone() and
         summaryCtx = TParameterPositionNone() and
         argAp = apNone() and
-        ap = getApNil(node)
+        ap = getApNil(node) and
+        apa = getApprox(ap)
       )
       or
       // store
       exists(TypedContent tc, Ap ap0 |
         fwdFlowStore(_, ap0, tc, node, state, cc, summaryCtx, argAp, config) and
-        ap = apCons(tc, ap0)
+        ap = apCons(tc, ap0) and
+        apa = getApprox(ap)
       )
       or
       // read
       exists(Ap ap0, Content c |
         fwdFlowRead(ap0, c, _, node, state, cc, summaryCtx, argAp, config) and
-        fwdFlowConsCand(ap0, c, ap, config)
+        fwdFlowConsCand(ap0, c, ap, config) and
+        apa = getApprox(ap)
       )
       or
       // flow into a callable
-      exists(ApApprox apa |
-        fwdFlowIn(_, node, state, _, cc, _, _, ap, config) and
-        apa = getApprox(ap) and
-        if PrevStage::parameterMayFlowThrough(node, apa, config)
-        then (
-          summaryCtx = TParameterPositionSome(node.(ParamNodeEx).getPosition()) and
-          argAp = apSome(ap)
-        ) else (
-          summaryCtx = TParameterPositionNone() and argAp = apNone()
-        )
+      fwdFlowIn(_, node, state, _, cc, _, _, ap, apa, config) and
+      if PrevStage::parameterMayFlowThrough(node, apa, config)
+      then (
+        summaryCtx = TParameterPositionSome(node.(ParamNodeEx).getPosition()) and
+        argAp = apSome(ap)
+      ) else (
+        summaryCtx = TParameterPositionNone() and argAp = apNone()
       )
       or
       // flow out of a callable
@@ -1394,8 +1425,8 @@ private module MkStage<StageSig PrevStage> {
         DataFlowCall call, RetNodeEx ret, boolean allowsFieldFlow, CcNoCall innercc,
         DataFlowCallable inner
       |
-        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, config) and
-        flowOutOfCall(call, ret, _, node, allowsFieldFlow, config) and
+        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, apa, config) and
+        flowOutOfCallApa(call, ret, _, node, allowsFieldFlow, apa, config) and
         inner = ret.getEnclosingCallable() and
         cc = getCallContextReturn(inner, call, innercc) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
@@ -1403,7 +1434,7 @@ private module MkStage<StageSig PrevStage> {
       or
       // flow through a callable
       exists(DataFlowCall call, ParameterPosition summaryCtx0, Ap argAp0 |
-        fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, config) and
+        fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, apa, config) and
         fwdFlowIsEntered(call, cc, summaryCtx, argAp, summaryCtx0, argAp0, config)
       )
     }
@@ -1413,9 +1444,9 @@ private module MkStage<StageSig PrevStage> {
       NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc,
       ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
     ) {
-      exists(DataFlowType contentType |
-        fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, config) and
-        PrevStage::storeStepCand(node1, unbindApa(getApprox(ap1)), tc, node2, contentType, config) and
+      exists(DataFlowType contentType, ApApprox apa1 |
+        fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, apa1, config) and
+        PrevStage::storeStepCand(node1, apa1, tc, node2, contentType, config) and
         typecheckStore(ap1, contentType)
       )
     }
@@ -1433,43 +1464,104 @@ private module MkStage<StageSig PrevStage> {
       )
     }
 
+    private class ApNonNil instanceof Ap {
+      pragma[nomagic]
+      ApNonNil() { not this instanceof ApNil }
+
+      string toString() { result = "" }
+    }
+
+    pragma[nomagic]
+    private predicate fwdFlowRead0(
+      NodeEx node1, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      ApNonNil ap, Configuration config
+    ) {
+      fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
+      PrevStage::readStepCand(node1, _, _, config)
+    }
+
     pragma[nomagic]
     private predicate fwdFlowRead(
       Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc,
       ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
     ) {
-      fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
+      fwdFlowRead0(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, c, node2, config) and
       getHeadContent(ap) = c
     }
 
     pragma[nomagic]
     private predicate fwdFlowIn(
-      DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, Cc innercc,
-      ParameterPositionOption summaryCtx, ApOption argAp, Ap ap, Configuration config
+      DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, CcCall innercc,
+      ParameterPositionOption summaryCtx, ApOption argAp, Ap ap, ApApprox apa, Configuration config
     ) {
       exists(ArgNodeEx arg, boolean allowsFieldFlow |
-        fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, config) and
-        flowIntoCall(call, arg, p, allowsFieldFlow, config) and
+        fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, apa, config) and
+        flowIntoCallApa(call, arg, p, allowsFieldFlow, apa, config) and
         innercc = getCallContextCall(call, p.getEnclosingCallable(), outercc) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
+    pragma[nomagic]
+    private predicate fwdFlowRetFromArg(
+      RetNodeEx ret, FlowState state, CcCall ccc, ParameterPosition summaryCtx, ParamNodeEx p,
+      Ap argAp, ApApprox argApa, Ap ap, ApApprox apa, Configuration config
+    ) {
+      exists(DataFlowCallable c, ReturnKindExt kind |
+        fwdFlow(pragma[only_bind_into](ret), state, ccc,
+          TParameterPositionSome(pragma[only_bind_into](summaryCtx)), apSome(argAp), ap, apa, config) and
+        getApprox(argAp) = argApa and
+        c = ret.getEnclosingCallable() and
+        kind = ret.getKind() and
+        p.isParameterOf(c, pragma[only_bind_into](summaryCtx)) and
+        parameterFlowThroughAllowed(p, kind)
+      )
+    }
+
+    pragma[inline]
+    private predicate fwdFlowInMayFlowThrough(
+      DataFlowCall call, Cc cc, CcCall innerCc, ParameterPositionOption summaryCtx, ApOption argAp,
+      ParamNodeEx param, Ap ap, ApApprox apa, Configuration config
+    ) {
+      fwdFlowIn(call, pragma[only_bind_into](param), _, cc, innerCc, summaryCtx, argAp, ap,
+        pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
+      PrevStage::parameterMayFlowThrough(param, apa, config)
+    }
+
+    // dedup before joining with `flowThroughOutOfCall`
+    pragma[nomagic]
+    private predicate fwdFlowInMayFlowThroughProj(
+      DataFlowCall call, CcCall innerCc, ApApprox apa, Configuration config
+    ) {
+      fwdFlowInMayFlowThrough(call, _, innerCc, _, _, _, _, apa, config)
+    }
+
+    /**
+     * Same as `flowThroughOutOfCall`, but restricted to calls that are reached
+     * in the flow covered by `fwdFlow`, where data might flow through the target
+     * callable and back out at `call`.
+     */
+    pragma[nomagic]
+    private predicate fwdFlowThroughOutOfCall(
+      DataFlowCall call, CcCall ccc, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow,
+      ApApprox argApa, ApApprox apa, Configuration config
+    ) {
+      fwdFlowInMayFlowThroughProj(call, ccc, argApa, config) and
+      flowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, argApa, apa, config)
+    }
+
     pragma[nomagic]
     private predicate fwdFlowOutFromArg(
       DataFlowCall call, NodeEx out, FlowState state, ParameterPosition summaryCtx, Ap argAp, Ap ap,
-      Configuration config
+      ApApprox apa, Configuration config
     ) {
-      exists(
-        DataFlowCallable c, RetNodeEx ret, ReturnKindExt kind, boolean allowsFieldFlow, CcCall ccc
-      |
-        fwdFlow(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc),
-          TParameterPositionSome(pragma[only_bind_into](summaryCtx)), apSome(argAp), ap, config) and
-        flowThroughOutOfCall(call, pragma[only_bind_into](c), ccc, ret, kind, out, allowsFieldFlow,
+      exists(RetNodeEx ret, boolean allowsFieldFlow, CcCall ccc, ApApprox argApa |
+        fwdFlowRetFromArg(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc),
+          summaryCtx, _, argAp, pragma[only_bind_into](argApa), ap, pragma[only_bind_into](apa),
           config) and
-        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
-        parameterFlowThroughAllowed(c, pragma[only_bind_into](summaryCtx), kind)
+        fwdFlowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, argApa, apa, config) and
+        (if allowsFieldFlow = false then ap instanceof ApNil else any())
       )
     }
 
@@ -1483,8 +1575,7 @@ private module MkStage<StageSig PrevStage> {
       ParameterPosition pos, Ap ap, Configuration config
     ) {
       exists(ParamNodeEx param |
-        fwdFlowIn(call, param, _, cc, _, summaryCtx, argAp, ap, config) and
-        PrevStage::parameterMayFlowThrough(param, unbindApa(getApprox(ap)), config) and
+        fwdFlowInMayFlowThrough(call, cc, _, summaryCtx, argAp, param, ap, _, config) and
         pos = param.getPosition()
       )
     }
@@ -1505,41 +1596,55 @@ private module MkStage<StageSig PrevStage> {
       fwdFlowConsCand(ap1, c, ap2, config)
     }
 
-    pragma[nomagic]
-    private predicate returnFlowsThrough0(
-      RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, DataFlowCallable c,
-      ParameterPosition ppos, Ap argAp, Ap ap, Configuration config
-    ) {
-      exists(boolean allowsFieldFlow |
-        fwdFlow(ret, state, ccc, TParameterPositionSome(ppos), apSome(argAp), ap, config) and
-        flowThroughOutOfCall(_, c, _, pragma[only_bind_into](ret), kind, _, allowsFieldFlow,
-          pragma[only_bind_into](config)) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
-      )
-    }
-
     pragma[nomagic]
     private predicate returnFlowsThrough(
       RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, ParamNodeEx p, Ap argAp,
       Ap ap, Configuration config
     ) {
-      exists(DataFlowCallable c, ParameterPosition ppos |
-        returnFlowsThrough0(ret, kind, state, ccc, c, ppos, argAp, ap, config) and
-        p.isParameterOf(c, ppos) and
-        parameterFlowThroughAllowed(p, kind)
+      exists(boolean allowsFieldFlow, ApApprox argApa, ApApprox apa |
+        fwdFlowRetFromArg(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc), _, p,
+          argAp, pragma[only_bind_into](argApa), ap, pragma[only_bind_into](apa), config) and
+        kind = ret.getKind() and
+        fwdFlowThroughOutOfCall(_, ccc, ret, _, allowsFieldFlow, argApa, apa, config) and
+        (if allowsFieldFlow = false then ap instanceof ApNil else any())
       )
     }
 
     pragma[nomagic]
     private predicate flowThroughIntoCall(
-      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp,
+      Configuration config
     ) {
-      exists(Ap argAp |
-        flowIntoCall(call, pragma[only_bind_into](arg), pragma[only_bind_into](p), allowsFieldFlow,
+      exists(ApApprox argApa |
+        flowIntoCallApa(call, pragma[only_bind_into](arg), pragma[only_bind_into](p),
+          allowsFieldFlow, argApa, pragma[only_bind_into](config)) and
+        fwdFlow(arg, _, _, _, _, pragma[only_bind_into](argAp), argApa,
           pragma[only_bind_into](config)) and
-        fwdFlow(arg, _, _, _, _, pragma[only_bind_into](argAp), pragma[only_bind_into](config)) and
         returnFlowsThrough(_, _, _, _, p, pragma[only_bind_into](argAp), _,
-          pragma[only_bind_into](config))
+          pragma[only_bind_into](config)) and
+        if allowsFieldFlow = false then argAp instanceof ApNil else any()
+      )
+    }
+
+    pragma[nomagic]
+    private predicate flowIntoCallAp(
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap ap,
+      Configuration config
+    ) {
+      exists(ApApprox apa |
+        flowIntoCallApa(call, arg, p, allowsFieldFlow, apa, config) and
+        fwdFlow(arg, _, _, _, _, ap, apa, config)
+      )
+    }
+
+    pragma[nomagic]
+    private predicate flowOutOfCallAp(
+      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
+      Ap ap, Configuration config
+    ) {
+      exists(ApApprox apa |
+        flowOutOfCallApa(call, ret, kind, out, allowsFieldFlow, apa, config) and
+        fwdFlow(ret, _, _, _, _, ap, apa, config)
       )
     }
 
@@ -1628,7 +1733,7 @@ private module MkStage<StageSig PrevStage> {
       // flow into a callable
       exists(ParamNodeEx p, boolean allowsFieldFlow |
         revFlow(p, state, TReturnCtxNone(), returnAp, ap, config) and
-        flowIntoCall(_, node, p, allowsFieldFlow, config) and
+        flowIntoCallAp(_, node, p, allowsFieldFlow, ap, config) and
         (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
         returnCtx = TReturnCtxNone()
       )
@@ -1682,22 +1787,41 @@ private module MkStage<StageSig PrevStage> {
     ) {
       exists(NodeEx out, boolean allowsFieldFlow |
         revFlow(out, state, returnCtx, returnAp, ap, config) and
-        flowOutOfCall(call, ret, kind, out, allowsFieldFlow, config) and
+        flowOutOfCallAp(call, ret, kind, out, allowsFieldFlow, ap, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
+    /**
+     * Same as `flowThroughIntoCall`, but restricted to calls that are reached
+     * in the flow covered by `revFlow`, where data might flow through the target
+     * callable and back out at `call`.
+     */
+    pragma[nomagic]
+    private predicate revFlowThroughIntoCall(
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp,
+      Configuration config
+    ) {
+      flowThroughIntoCall(call, arg, p, allowsFieldFlow, argAp, config) and
+      revFlowIsReturned(call, _, _, _, _, config)
+    }
+
+    pragma[nomagic]
+    private predicate revFlowParamToReturn(
+      ParamNodeEx p, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap, Configuration config
+    ) {
+      revFlow(p, state, TReturnCtxMaybeFlowThrough(kind), apSome(returnAp), ap, config) and
+      parameterFlowThroughAllowed(p, kind)
+    }
+
     pragma[nomagic]
     private predicate revFlowInToReturn(
       DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap,
       Configuration config
     ) {
       exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(pragma[only_bind_into](p), state,
-          TReturnCtxMaybeFlowThrough(pragma[only_bind_into](kind)), apSome(returnAp), ap, config) and
-        flowThroughIntoCall(call, arg, p, allowsFieldFlow, config) and
-        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
-        parameterFlowThroughAllowed(p, kind)
+        revFlowParamToReturn(p, state, kind, returnAp, ap, config) and
+        revFlowThroughIntoCall(call, arg, p, allowsFieldFlow, ap, config)
       )
     }
 
@@ -1750,6 +1874,11 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     predicate revFlow(NodeEx node, Configuration config) { revFlow(node, _, _, _, _, config) }
 
+    pragma[nomagic]
+    predicate revFlowAp(NodeEx node, Ap ap, Configuration config) {
+      revFlow(node, _, _, _, ap, config)
+    }
+
     // use an alias as a workaround for bad functionality-induced joins
     pragma[nomagic]
     additional predicate revFlowAlias(NodeEx node, Configuration config) {
@@ -1786,9 +1915,9 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate parameterFlowsThroughRev(
-      ParamNodeEx p, Ap ap, ReturnKindExt kind, Configuration config
+      ParamNodeEx p, Ap ap, ReturnKindExt kind, Ap returnAp, Configuration config
     ) {
-      revFlow(p, _, TReturnCtxMaybeFlowThrough(kind), apSome(_), ap, config) and
+      revFlow(p, _, TReturnCtxMaybeFlowThrough(kind), apSome(returnAp), ap, config) and
       parameterFlowThroughAllowed(p, kind)
     }
 
@@ -1796,27 +1925,36 @@ private module MkStage<StageSig PrevStage> {
     predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
       exists(RetNodeEx ret, ReturnKindExt kind |
         returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
-        parameterFlowsThroughRev(p, ap, kind, config)
+        parameterFlowsThroughRev(p, ap, kind, _, config)
       )
     }
 
     pragma[nomagic]
-    predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config) {
-      exists(ParamNodeEx p, Ap ap |
-        returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
-        parameterFlowsThroughRev(p, ap, kind, config)
+    predicate returnMayFlowThrough(
+      RetNodeEx ret, Ap argAp, Ap ap, ReturnKindExt kind, Configuration config
+    ) {
+      exists(ParamNodeEx p |
+        returnFlowsThrough(ret, kind, _, _, p, argAp, ap, config) and
+        parameterFlowsThroughRev(p, argAp, kind, ap, config)
+      )
+    }
+
+    pragma[nomagic]
+    predicate revFlowInToReturnIsReturned(
+      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnCtx returnCtx, ApOption returnAp,
+      Ap ap, Configuration config
+    ) {
+      exists(ReturnKindExt returnKind0, Ap returnAp0 |
+        revFlowInToReturn(call, arg, state, returnKind0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
       )
     }
 
     pragma[nomagic]
     predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
-      exists(
-        ReturnKindExt returnKind0, Ap returnAp0, ArgNodeEx arg, FlowState state,
-        ReturnCtx returnCtx, ApOption returnAp, Ap ap
-      |
+      exists(ArgNodeEx arg, FlowState state, ReturnCtx returnCtx, ApOption returnAp, Ap ap |
         revFlow(arg, state, returnCtx, returnAp, ap, config) and
-        revFlowInToReturn(call, arg, state, returnKind0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
+        revFlowInToReturnIsReturned(call, arg, state, returnCtx, returnAp, ap, config)
       )
     }
 
@@ -2179,16 +2317,16 @@ private module LocalFlowBigStep {
   pragma[nomagic]
   predicate localFlowBigStep(
     NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
-    AccessPathFrontNil apf, Configuration config, LocalCallContext callContext
+    DataFlowType t, Configuration config, LocalCallContext callContext
   ) {
-    localFlowStepPlus(node1, state1, node2, preservesValue, apf.getType(), config, callContext) and
+    localFlowStepPlus(node1, state1, node2, preservesValue, t, config, callContext) and
     localFlowExit(node2, state1, config) and
     state1 = state2
     or
     additionalLocalFlowStepNodeCand2(node1, state1, node2, state2, config) and
     state1 != state2 and
     preservesValue = false and
-    apf = TFrontNil(node2.getDataFlowType()) and
+    t = node2.getDataFlowType() and
     callContext.relevantFor(node1.getEnclosingCallable()) and
     not exists(DataFlowCall call | call = callContext.(LocalCallContextSpecificCall).getCall() |
       isUnreachableInCallCached(node1.asNode(), call) or
@@ -2202,11 +2340,87 @@ private import LocalFlowBigStep
 private module Stage3Param implements MkStage<Stage2>::StageParam {
   private module PrevStage = Stage2;
 
+  class Ap = ApproxAccessPathFront;
+
+  class ApNil = ApproxAccessPathFrontNil;
+
+  PrevStage::Ap getApprox(Ap ap) { result = ap.toBoolNonEmpty() }
+
+  ApNil getApNil(NodeEx node) {
+    PrevStage::revFlow(node, _) and result = TApproxFrontNil(node.getDataFlowType())
+  }
+
+  bindingset[tc, tail]
+  Ap apCons(TypedContent tc, Ap tail) { result.getAHead() = tc and exists(tail) }
+
+  pragma[noinline]
+  Content getHeadContent(Ap ap) { result = ap.getAHead().getContent() }
+
+  class ApOption = ApproxAccessPathFrontOption;
+
+  ApOption apNone() { result = TApproxAccessPathFrontNone() }
+
+  ApOption apSome(Ap ap) { result = TApproxAccessPathFrontSome(ap) }
+
+  import BooleanCallContext
+
+  predicate localStep(
+    NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
+    ApproxAccessPathFrontNil ap, Configuration config, LocalCc lcc
+  ) {
+    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap.getType(), config, _) and
+    exists(lcc)
+  }
+
+  predicate flowOutOfCall = flowOutOfCallNodeCand2/6;
+
+  predicate flowIntoCall = flowIntoCallNodeCand2/5;
+
+  pragma[nomagic]
+  private predicate expectsContentCand(NodeEx node, Ap ap, Configuration config) {
+    exists(Content c |
+      PrevStage::revFlow(node, pragma[only_bind_into](config)) and
+      PrevStage::readStepCand(_, c, _, pragma[only_bind_into](config)) and
+      expectsContentEx(node, c) and
+      c = ap.getAHead().getContent()
+    )
+  }
+
+  pragma[nomagic]
+  private predicate castingNodeEx(NodeEx node) { node.asNode() instanceof CastingNode }
+
+  bindingset[node, state, ap, config]
+  predicate filter(NodeEx node, FlowState state, Ap ap, Configuration config) {
+    exists(state) and
+    exists(config) and
+    (if castingNodeEx(node) then compatibleTypes(node.getDataFlowType(), ap.getType()) else any()) and
+    (
+      notExpectsContent(node)
+      or
+      expectsContentCand(node, ap, config)
+    )
+  }
+
+  bindingset[ap, contentType]
+  predicate typecheckStore(Ap ap, DataFlowType contentType) {
+    // We need to typecheck stores here, since reverse flow through a getter
+    // might have a different type here compared to inside the getter.
+    compatibleTypes(ap.getType(), contentType)
+  }
+}
+
+private module Stage3 implements StageSig {
+  import MkStage<Stage2>::Stage<Stage3Param>
+}
+
+private module Stage4Param implements MkStage<Stage3>::StageParam {
+  private module PrevStage = Stage3;
+
   class Ap = AccessPathFront;
 
   class ApNil = AccessPathFrontNil;
 
-  PrevStage::Ap getApprox(Ap ap) { result = ap.toBoolNonEmpty() }
+  PrevStage::Ap getApprox(Ap ap) { result = ap.toApprox() }
 
   ApNil getApNil(NodeEx node) {
     PrevStage::revFlow(node, _) and result = TFrontNil(node.getDataFlowType())
@@ -2226,16 +2440,42 @@ private module Stage3Param implements MkStage<Stage2>::StageParam {
 
   import BooleanCallContext
 
+  pragma[nomagic]
   predicate localStep(
     NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
     ApNil ap, Configuration config, LocalCc lcc
   ) {
-    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap, config, _) and exists(lcc)
+    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap.getType(), config, _) and
+    PrevStage::revFlow(node1, pragma[only_bind_into](state1), _, pragma[only_bind_into](config)) and
+    PrevStage::revFlowAlias(node2, pragma[only_bind_into](state2), _, pragma[only_bind_into](config)) and
+    exists(lcc)
   }
 
-  predicate flowOutOfCall = flowOutOfCallNodeCand2/6;
+  pragma[nomagic]
+  predicate flowOutOfCall(
+    DataFlowCall call, RetNodeEx node1, ReturnKindExt kind, NodeEx node2, boolean allowsFieldFlow,
+    Configuration config
+  ) {
+    exists(FlowState state |
+      flowOutOfCallNodeCand2(call, node1, kind, node2, allowsFieldFlow, config) and
+      PrevStage::revFlow(node2, pragma[only_bind_into](state), _, pragma[only_bind_into](config)) and
+      PrevStage::revFlowAlias(node1, pragma[only_bind_into](state), _,
+        pragma[only_bind_into](config))
+    )
+  }
 
-  predicate flowIntoCall = flowIntoCallNodeCand2/5;
+  pragma[nomagic]
+  predicate flowIntoCall(
+    DataFlowCall call, ArgNodeEx node1, ParamNodeEx node2, boolean allowsFieldFlow,
+    Configuration config
+  ) {
+    exists(FlowState state |
+      flowIntoCallNodeCand2(call, node1, node2, allowsFieldFlow, config) and
+      PrevStage::revFlow(node2, pragma[only_bind_into](state), _, pragma[only_bind_into](config)) and
+      PrevStage::revFlowAlias(node1, pragma[only_bind_into](state), _,
+        pragma[only_bind_into](config))
+    )
+  }
 
   pragma[nomagic]
   private predicate clearSet(NodeEx node, ContentSet c, Configuration config) {
@@ -2291,8 +2531,8 @@ private module Stage3Param implements MkStage<Stage2>::StageParam {
   }
 }
 
-private module Stage3 implements StageSig {
-  import MkStage<Stage2>::Stage<Stage3Param>
+private module Stage4 implements StageSig {
+  import MkStage<Stage3>::Stage<Stage4Param>
 }
 
 /**
@@ -2303,8 +2543,8 @@ private predicate flowCandSummaryCtx(
   NodeEx node, FlowState state, AccessPathFront argApf, Configuration config
 ) {
   exists(AccessPathFront apf |
-    Stage3::revFlow(node, state, TReturnCtxMaybeFlowThrough(_), _, apf, config) and
-    Stage3::fwdFlow(node, state, any(Stage3::CcCall ccc), _, TAccessPathFrontSome(argApf), apf,
+    Stage4::revFlow(node, state, TReturnCtxMaybeFlowThrough(_), _, apf, config) and
+    Stage4::fwdFlow(node, state, any(Stage4::CcCall ccc), _, TAccessPathFrontSome(argApf), apf,
       config)
   )
 }
@@ -2315,10 +2555,10 @@ private predicate flowCandSummaryCtx(
  */
 private predicate expensiveLen2unfolding(TypedContent tc, Configuration config) {
   exists(int tails, int nodes, int apLimit, int tupleLimit |
-    tails = strictcount(AccessPathFront apf | Stage3::consCand(tc, apf, config)) and
+    tails = strictcount(AccessPathFront apf | Stage4::consCand(tc, apf, config)) and
     nodes =
       strictcount(NodeEx n, FlowState state |
-        Stage3::revFlow(n, state, any(AccessPathFrontHead apf | apf.getHead() = tc), config)
+        Stage4::revFlow(n, state, any(AccessPathFrontHead apf | apf.getHead() = tc), config)
         or
         flowCandSummaryCtx(n, state, any(AccessPathFrontHead apf | apf.getHead() = tc), config)
       ) and
@@ -2332,11 +2572,11 @@ private predicate expensiveLen2unfolding(TypedContent tc, Configuration config)
 private newtype TAccessPathApprox =
   TNil(DataFlowType t) or
   TConsNil(TypedContent tc, DataFlowType t) {
-    Stage3::consCand(tc, TFrontNil(t), _) and
+    Stage4::consCand(tc, TFrontNil(t), _) and
     not expensiveLen2unfolding(tc, _)
   } or
   TConsCons(TypedContent tc1, TypedContent tc2, int len) {
-    Stage3::consCand(tc1, TFrontHead(tc2), _) and
+    Stage4::consCand(tc1, TFrontHead(tc2), _) and
     len in [2 .. accessPathLimit()] and
     not expensiveLen2unfolding(tc1, _)
   } or
@@ -2466,7 +2706,7 @@ private class AccessPathApproxCons1 extends AccessPathApproxCons, TCons1 {
   override AccessPathApprox pop(TypedContent head) {
     head = tc and
     (
-      exists(TypedContent tc2 | Stage3::consCand(tc, TFrontHead(tc2), _) |
+      exists(TypedContent tc2 | Stage4::consCand(tc, TFrontHead(tc2), _) |
         result = TConsCons(tc2, _, len - 1)
         or
         len = 2 and
@@ -2477,7 +2717,7 @@ private class AccessPathApproxCons1 extends AccessPathApproxCons, TCons1 {
       or
       exists(DataFlowType t |
         len = 1 and
-        Stage3::consCand(tc, TFrontNil(t), _) and
+        Stage4::consCand(tc, TFrontNil(t), _) and
         result = TNil(t)
       )
     )
@@ -2502,13 +2742,14 @@ private class AccessPathApproxOption extends TAccessPathApproxOption {
   }
 }
 
-private module Stage4Param implements MkStage<Stage3>::StageParam {
-  private module PrevStage = Stage3;
+private module Stage5Param implements MkStage<Stage4>::StageParam {
+  private module PrevStage = Stage4;
 
   class Ap = AccessPathApprox;
 
   class ApNil = AccessPathApproxNil;
 
+  pragma[nomagic]
   PrevStage::Ap getApprox(Ap ap) { result = ap.getFront() }
 
   ApNil getApNil(NodeEx node) {
@@ -2534,7 +2775,9 @@ private module Stage4Param implements MkStage<Stage3>::StageParam {
     NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
     ApNil ap, Configuration config, LocalCc lcc
   ) {
-    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap.getFront(), config, lcc)
+    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap.getType(), config, lcc) and
+    PrevStage::revFlow(node1, pragma[only_bind_into](state1), _, pragma[only_bind_into](config)) and
+    PrevStage::revFlowAlias(node2, pragma[only_bind_into](state2), _, pragma[only_bind_into](config))
   }
 
   pragma[nomagic]
@@ -2571,7 +2814,7 @@ private module Stage4Param implements MkStage<Stage3>::StageParam {
   predicate typecheckStore(Ap ap, DataFlowType contentType) { any() }
 }
 
-private module Stage4 = MkStage<Stage3>::Stage<Stage4Param>;
+private module Stage5 = MkStage<Stage4>::Stage<Stage5Param>;
 
 bindingset[conf, result]
 private Configuration unbindConf(Configuration conf) {
@@ -2585,8 +2828,8 @@ private predicate nodeMayUseSummary0(
 ) {
   exists(AccessPathApprox apa0 |
     c = n.getEnclosingCallable() and
-    Stage4::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
-    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TParameterPositionSome(pos),
+    Stage5::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
+    Stage5::fwdFlow(n, state, any(CallContextCall ccc), TParameterPositionSome(pos),
       TAccessPathApproxSome(apa), apa0, config)
   )
 }
@@ -2596,7 +2839,7 @@ private predicate nodeMayUseSummary(
   NodeEx n, FlowState state, AccessPathApprox apa, Configuration config
 ) {
   exists(DataFlowCallable c, ParameterPosition pos, ParamNodeEx p |
-    Stage4::parameterMayFlowThrough(p, apa, config) and
+    Stage5::parameterMayFlowThrough(p, apa, config) and
     nodeMayUseSummary0(n, c, pos, state, apa, config) and
     p.isParameterOf(c, pos)
   )
@@ -2606,8 +2849,8 @@ private newtype TSummaryCtx =
   TSummaryCtxNone() or
   TSummaryCtxSome(ParamNodeEx p, FlowState state, AccessPath ap) {
     exists(Configuration config |
-      Stage4::parameterMayFlowThrough(p, ap.getApprox(), config) and
-      Stage4::revFlow(p, state, _, config)
+      Stage5::parameterMayFlowThrough(p, ap.getApprox(), config) and
+      Stage5::revFlow(p, state, _, config)
     )
   }
 
@@ -2656,7 +2899,7 @@ private int count1to2unfold(AccessPathApproxCons1 apa, Configuration config) {
     len = apa.len() and
     result =
       strictcount(AccessPathFront apf |
-        Stage4::consCand(tc, any(AccessPathApprox ap | ap.getFront() = apf and ap.len() = len - 1),
+        Stage5::consCand(tc, any(AccessPathApprox ap | ap.getFront() = apf and ap.len() = len - 1),
           config)
       )
   )
@@ -2665,7 +2908,7 @@ private int count1to2unfold(AccessPathApproxCons1 apa, Configuration config) {
 private int countNodesUsingAccessPath(AccessPathApprox apa, Configuration config) {
   result =
     strictcount(NodeEx n, FlowState state |
-      Stage4::revFlow(n, state, apa, config) or nodeMayUseSummary(n, state, apa, config)
+      Stage5::revFlow(n, state, apa, config) or nodeMayUseSummary(n, state, apa, config)
     )
 }
 
@@ -2686,7 +2929,7 @@ private predicate expensiveLen1to2unfolding(AccessPathApproxCons1 apa, Configura
 private AccessPathApprox getATail(AccessPathApprox apa, Configuration config) {
   exists(TypedContent head |
     apa.pop(head) = result and
-    Stage4::consCand(head, result, config)
+    Stage5::consCand(head, result, config)
   )
 }
 
@@ -2768,7 +3011,7 @@ private newtype TPathNode =
     NodeEx node, FlowState state, CallContext cc, SummaryCtx sc, AccessPath ap, Configuration config
   ) {
     // A PathNode is introduced by a source ...
-    Stage4::revFlow(node, state, config) and
+    Stage5::revFlow(node, state, config) and
     sourceNode(node, state, config) and
     (
       if hasSourceCallCtx(config)
@@ -2782,7 +3025,7 @@ private newtype TPathNode =
     exists(PathNodeMid mid |
       pathStep(mid, node, state, cc, sc, ap) and
       pragma[only_bind_into](config) = mid.getConfiguration() and
-      Stage4::revFlow(node, state, ap.getApprox(), pragma[only_bind_into](config))
+      Stage5::revFlow(node, state, ap.getApprox(), pragma[only_bind_into](config))
     )
   } or
   TPathNodeSink(NodeEx node, FlowState state, Configuration config) {
@@ -2924,7 +3167,7 @@ private class AccessPathCons2 extends AccessPath, TAccessPathCons2 {
   override TypedContent getHead() { result = head1 }
 
   override AccessPath getTail() {
-    Stage4::consCand(head1, result.getApprox(), _) and
+    Stage5::consCand(head1, result.getApprox(), _) and
     result.getHead() = head2 and
     result.length() = len - 1
   }
@@ -2955,7 +3198,7 @@ private class AccessPathCons1 extends AccessPath, TAccessPathCons1 {
   override TypedContent getHead() { result = head }
 
   override AccessPath getTail() {
-    Stage4::consCand(head, result.getApprox(), _) and result.length() = len - 1
+    Stage5::consCand(head, result.getApprox(), _) and result.length() = len - 1
   }
 
   override AccessPathFrontHead getFront() { result = TFrontHead(head) }
@@ -3347,7 +3590,8 @@ private predicate pathStep(
     AccessPath ap0, NodeEx midnode, FlowState state0, Configuration conf, LocalCallContext localCC
   |
     pathNode(mid, midnode, state0, cc, sc, ap0, conf, localCC) and
-    localFlowBigStep(midnode, state0, node, state, false, ap.getFront(), conf, localCC) and
+    localFlowBigStep(midnode, state0, node, state, false, ap.(AccessPathNil).getType(), conf,
+      localCC) and
     ap0 instanceof AccessPathNil
   )
   or
@@ -3389,7 +3633,7 @@ private predicate pathReadStep(
 ) {
   ap0 = mid.getAp() and
   tc = ap0.getHead() and
-  Stage4::readStepCand(mid.getNodeEx(), tc.getContent(), node, mid.getConfiguration()) and
+  Stage5::readStepCand(mid.getNodeEx(), tc.getContent(), node, mid.getConfiguration()) and
   state = mid.getState() and
   cc = mid.getCallContext()
 }
@@ -3399,7 +3643,7 @@ private predicate pathStoreStep(
   PathNodeMid mid, NodeEx node, FlowState state, AccessPath ap0, TypedContent tc, CallContext cc
 ) {
   ap0 = mid.getAp() and
-  Stage4::storeStepCand(mid.getNodeEx(), _, tc, node, _, mid.getConfiguration()) and
+  Stage5::storeStepCand(mid.getNodeEx(), _, tc, node, _, mid.getConfiguration()) and
   state = mid.getState() and
   cc = mid.getCallContext()
 }
@@ -3436,7 +3680,7 @@ private NodeEx getAnOutNodeFlow(
   ReturnKindExt kind, DataFlowCall call, AccessPathApprox apa, Configuration config
 ) {
   result.asNode() = kind.getAnOutNode(call) and
-  Stage4::revFlow(result, _, apa, config)
+  Stage5::revFlow(result, _, apa, config)
 }
 
 /**
@@ -3472,7 +3716,7 @@ private predicate parameterCand(
   DataFlowCallable callable, ParameterPosition pos, AccessPathApprox apa, Configuration config
 ) {
   exists(ParamNodeEx p |
-    Stage4::revFlow(p, _, apa, config) and
+    Stage5::revFlow(p, _, apa, config) and
     p.isParameterOf(callable, pos)
   )
 }
@@ -3751,9 +3995,17 @@ predicate stageStats(
   n = 45 and
   Stage4::stats(false, nodes, fields, conscand, states, tuples, config)
   or
-  stage = "5 Fwd" and n = 50 and finalStats(true, nodes, fields, conscand, states, tuples)
+  stage = "5 Fwd" and
+  n = 50 and
+  Stage5::stats(true, nodes, fields, conscand, states, tuples, config)
   or
-  stage = "5 Rev" and n = 55 and finalStats(false, nodes, fields, conscand, states, tuples)
+  stage = "5 Rev" and
+  n = 55 and
+  Stage5::stats(false, nodes, fields, conscand, states, tuples, config)
+  or
+  stage = "6 Fwd" and n = 60 and finalStats(true, nodes, fields, conscand, states, tuples)
+  or
+  stage = "6 Rev" and n = 65 and finalStats(false, nodes, fields, conscand, states, tuples)
 }
 
 private module FlowExploration {
diff --git a/cpp/ql/lib/experimental/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl3.qll b/cpp/ql/lib/experimental/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl3.qll
index ccde916a3c2..6741ccc2f06 100644
--- a/cpp/ql/lib/experimental/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl3.qll
+++ b/cpp/ql/lib/experimental/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl3.qll
@@ -621,23 +621,6 @@ private predicate parameterFlowThroughAllowed(ParamNodeEx p, ReturnKindExt kind)
   )
 }
 
-/**
- * Holds if flow from a parameter at position `pos` inside `c` to a return node of
- * kind `kind` is allowed.
- *
- * We don't expect a parameter to return stored in itself, unless
- * explicitly allowed
- */
-bindingset[c, pos, kind]
-private predicate parameterFlowThroughAllowed(
-  DataFlowCallable c, ParameterPosition pos, ReturnKindExt kind
-) {
-  exists(ParamNodeEx p |
-    p.isParameterOf(c, pos) and
-    parameterFlowThroughAllowed(p, kind)
-  )
-}
-
 private module Stage1 implements StageSig {
   class Ap = Unit;
 
@@ -980,6 +963,12 @@ private module Stage1 implements StageSig {
   pragma[nomagic]
   predicate revFlow(NodeEx node, Configuration config) { revFlow(node, _, config) }
 
+  pragma[nomagic]
+  predicate revFlowAp(NodeEx node, Ap ap, Configuration config) {
+    revFlow(node, config) and
+    exists(ap)
+  }
+
   bindingset[node, state, config]
   predicate revFlow(NodeEx node, FlowState state, Ap ap, Configuration config) {
     revFlow(node, _, pragma[only_bind_into](config)) and
@@ -1022,9 +1011,13 @@ private module Stage1 implements StageSig {
   }
 
   pragma[nomagic]
-  predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config) {
+  predicate returnMayFlowThrough(
+    RetNodeEx ret, Ap argAp, Ap ap, ReturnKindExt kind, Configuration config
+  ) {
     throughFlowNodeCand(ret, config) and
-    kind = ret.getKind()
+    kind = ret.getKind() and
+    exists(argAp) and
+    exists(ap)
   }
 
   pragma[nomagic]
@@ -1189,6 +1182,8 @@ private signature module StageSig {
 
   predicate revFlow(NodeEx node, Configuration config);
 
+  predicate revFlowAp(NodeEx node, Ap ap, Configuration config);
+
   bindingset[node, state, config]
   predicate revFlow(NodeEx node, FlowState state, Ap ap, Configuration config);
 
@@ -1196,7 +1191,9 @@ private signature module StageSig {
 
   predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config);
 
-  predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config);
+  predicate returnMayFlowThrough(
+    RetNodeEx ret, Ap argAp, Ap ap, ReturnKindExt kind, Configuration config
+  );
 
   predicate storeStepCand(
     NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, DataFlowType contentType,
@@ -1281,21 +1278,43 @@ private module MkStage<StageSig PrevStage> {
     import Param
 
     /* Begin: Stage logic. */
-    bindingset[result, apa]
-    private ApApprox unbindApa(ApApprox apa) {
-      pragma[only_bind_out](apa) = pragma[only_bind_out](result)
+    // use an alias as a workaround for bad functionality-induced joins
+    pragma[nomagic]
+    private predicate revFlowApAlias(NodeEx node, ApApprox apa, Configuration config) {
+      PrevStage::revFlowAp(node, apa, config)
+    }
+
+    pragma[nomagic]
+    private predicate flowIntoCallApa(
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, ApApprox apa,
+      Configuration config
+    ) {
+      flowIntoCall(call, arg, p, allowsFieldFlow, config) and
+      PrevStage::revFlowAp(p, pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
+      revFlowApAlias(arg, pragma[only_bind_into](apa), pragma[only_bind_into](config))
+    }
+
+    pragma[nomagic]
+    private predicate flowOutOfCallApa(
+      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
+      ApApprox apa, Configuration config
+    ) {
+      flowOutOfCall(call, ret, kind, out, allowsFieldFlow, config) and
+      PrevStage::revFlowAp(out, pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
+      revFlowApAlias(ret, pragma[only_bind_into](apa), pragma[only_bind_into](config))
     }
 
     pragma[nomagic]
     private predicate flowThroughOutOfCall(
-      DataFlowCall call, DataFlowCallable c, CcCall ccc, RetNodeEx ret, ReturnKindExt kind,
-      NodeEx out, boolean allowsFieldFlow, Configuration config
+      DataFlowCall call, CcCall ccc, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow,
+      ApApprox argApa, ApApprox apa, Configuration config
     ) {
-      flowOutOfCall(call, ret, kind, out, allowsFieldFlow, pragma[only_bind_into](config)) and
-      PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
-      PrevStage::returnMayFlowThrough(ret, kind, pragma[only_bind_into](config)) and
-      matchesCall(ccc, call) and
-      c = ret.getEnclosingCallable()
+      exists(ReturnKindExt kind |
+        flowOutOfCallApa(call, ret, kind, out, allowsFieldFlow, apa, pragma[only_bind_into](config)) and
+        PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
+        PrevStage::returnMayFlowThrough(ret, argApa, apa, kind, pragma[only_bind_into](config)) and
+        matchesCall(ccc, call)
+      )
     }
 
     /**
@@ -1307,39 +1326,50 @@ private module MkStage<StageSig PrevStage> {
      * corresponding parameter position and access path of that argument, respectively.
      */
     pragma[nomagic]
+    additional predicate fwdFlow(
+      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      Ap ap, ApApprox apa, Configuration config
+    ) {
+      fwdFlow0(node, state, cc, summaryCtx, argAp, ap, apa, config) and
+      PrevStage::revFlow(node, state, apa, config) and
+      filter(node, state, ap, config)
+    }
+
+    pragma[inline]
     additional predicate fwdFlow(
       NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
       Ap ap, Configuration config
     ) {
-      fwdFlow0(node, state, cc, summaryCtx, argAp, ap, config) and
-      PrevStage::revFlow(node, state, unbindApa(getApprox(ap)), config) and
-      filter(node, state, ap, config)
+      fwdFlow(node, state, cc, summaryCtx, argAp, ap, _, config)
     }
 
     pragma[nomagic]
     private predicate fwdFlow0(
       NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      Ap ap, Configuration config
+      Ap ap, ApApprox apa, Configuration config
     ) {
       sourceNode(node, state, config) and
       (if hasSourceCallCtx(config) then cc = ccSomeCall() else cc = ccNone()) and
       argAp = apNone() and
       summaryCtx = TParameterPositionNone() and
-      ap = getApNil(node)
+      ap = getApNil(node) and
+      apa = getApprox(ap)
       or
-      exists(NodeEx mid, FlowState state0, Ap ap0, LocalCc localCc |
-        fwdFlow(mid, state0, cc, summaryCtx, argAp, ap0, config) and
+      exists(NodeEx mid, FlowState state0, Ap ap0, ApApprox apa0, LocalCc localCc |
+        fwdFlow(mid, state0, cc, summaryCtx, argAp, ap0, apa0, config) and
         localCc = getLocalCc(mid, cc)
       |
         localStep(mid, state0, node, state, true, _, config, localCc) and
-        ap = ap0
+        ap = ap0 and
+        apa = apa0
         or
         localStep(mid, state0, node, state, false, ap, config, localCc) and
-        ap0 instanceof ApNil
+        ap0 instanceof ApNil and
+        apa = getApprox(ap)
       )
       or
       exists(NodeEx mid |
-        fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, apa, pragma[only_bind_into](config)) and
         jumpStep(mid, node, config) and
         cc = ccNone() and
         summaryCtx = TParameterPositionNone() and
@@ -1352,7 +1382,8 @@ private module MkStage<StageSig PrevStage> {
         cc = ccNone() and
         summaryCtx = TParameterPositionNone() and
         argAp = apNone() and
-        ap = getApNil(node)
+        ap = getApNil(node) and
+        apa = getApprox(ap)
       )
       or
       exists(NodeEx mid, FlowState state0, ApNil nil |
@@ -1361,32 +1392,32 @@ private module MkStage<StageSig PrevStage> {
         cc = ccNone() and
         summaryCtx = TParameterPositionNone() and
         argAp = apNone() and
-        ap = getApNil(node)
+        ap = getApNil(node) and
+        apa = getApprox(ap)
       )
       or
       // store
       exists(TypedContent tc, Ap ap0 |
         fwdFlowStore(_, ap0, tc, node, state, cc, summaryCtx, argAp, config) and
-        ap = apCons(tc, ap0)
+        ap = apCons(tc, ap0) and
+        apa = getApprox(ap)
       )
       or
       // read
       exists(Ap ap0, Content c |
         fwdFlowRead(ap0, c, _, node, state, cc, summaryCtx, argAp, config) and
-        fwdFlowConsCand(ap0, c, ap, config)
+        fwdFlowConsCand(ap0, c, ap, config) and
+        apa = getApprox(ap)
       )
       or
       // flow into a callable
-      exists(ApApprox apa |
-        fwdFlowIn(_, node, state, _, cc, _, _, ap, config) and
-        apa = getApprox(ap) and
-        if PrevStage::parameterMayFlowThrough(node, apa, config)
-        then (
-          summaryCtx = TParameterPositionSome(node.(ParamNodeEx).getPosition()) and
-          argAp = apSome(ap)
-        ) else (
-          summaryCtx = TParameterPositionNone() and argAp = apNone()
-        )
+      fwdFlowIn(_, node, state, _, cc, _, _, ap, apa, config) and
+      if PrevStage::parameterMayFlowThrough(node, apa, config)
+      then (
+        summaryCtx = TParameterPositionSome(node.(ParamNodeEx).getPosition()) and
+        argAp = apSome(ap)
+      ) else (
+        summaryCtx = TParameterPositionNone() and argAp = apNone()
       )
       or
       // flow out of a callable
@@ -1394,8 +1425,8 @@ private module MkStage<StageSig PrevStage> {
         DataFlowCall call, RetNodeEx ret, boolean allowsFieldFlow, CcNoCall innercc,
         DataFlowCallable inner
       |
-        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, config) and
-        flowOutOfCall(call, ret, _, node, allowsFieldFlow, config) and
+        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, apa, config) and
+        flowOutOfCallApa(call, ret, _, node, allowsFieldFlow, apa, config) and
         inner = ret.getEnclosingCallable() and
         cc = getCallContextReturn(inner, call, innercc) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
@@ -1403,7 +1434,7 @@ private module MkStage<StageSig PrevStage> {
       or
       // flow through a callable
       exists(DataFlowCall call, ParameterPosition summaryCtx0, Ap argAp0 |
-        fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, config) and
+        fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, apa, config) and
         fwdFlowIsEntered(call, cc, summaryCtx, argAp, summaryCtx0, argAp0, config)
       )
     }
@@ -1413,9 +1444,9 @@ private module MkStage<StageSig PrevStage> {
       NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc,
       ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
     ) {
-      exists(DataFlowType contentType |
-        fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, config) and
-        PrevStage::storeStepCand(node1, unbindApa(getApprox(ap1)), tc, node2, contentType, config) and
+      exists(DataFlowType contentType, ApApprox apa1 |
+        fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, apa1, config) and
+        PrevStage::storeStepCand(node1, apa1, tc, node2, contentType, config) and
         typecheckStore(ap1, contentType)
       )
     }
@@ -1433,43 +1464,104 @@ private module MkStage<StageSig PrevStage> {
       )
     }
 
+    private class ApNonNil instanceof Ap {
+      pragma[nomagic]
+      ApNonNil() { not this instanceof ApNil }
+
+      string toString() { result = "" }
+    }
+
+    pragma[nomagic]
+    private predicate fwdFlowRead0(
+      NodeEx node1, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      ApNonNil ap, Configuration config
+    ) {
+      fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
+      PrevStage::readStepCand(node1, _, _, config)
+    }
+
     pragma[nomagic]
     private predicate fwdFlowRead(
       Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc,
       ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
     ) {
-      fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
+      fwdFlowRead0(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, c, node2, config) and
       getHeadContent(ap) = c
     }
 
     pragma[nomagic]
     private predicate fwdFlowIn(
-      DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, Cc innercc,
-      ParameterPositionOption summaryCtx, ApOption argAp, Ap ap, Configuration config
+      DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, CcCall innercc,
+      ParameterPositionOption summaryCtx, ApOption argAp, Ap ap, ApApprox apa, Configuration config
     ) {
       exists(ArgNodeEx arg, boolean allowsFieldFlow |
-        fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, config) and
-        flowIntoCall(call, arg, p, allowsFieldFlow, config) and
+        fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, apa, config) and
+        flowIntoCallApa(call, arg, p, allowsFieldFlow, apa, config) and
         innercc = getCallContextCall(call, p.getEnclosingCallable(), outercc) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
+    pragma[nomagic]
+    private predicate fwdFlowRetFromArg(
+      RetNodeEx ret, FlowState state, CcCall ccc, ParameterPosition summaryCtx, ParamNodeEx p,
+      Ap argAp, ApApprox argApa, Ap ap, ApApprox apa, Configuration config
+    ) {
+      exists(DataFlowCallable c, ReturnKindExt kind |
+        fwdFlow(pragma[only_bind_into](ret), state, ccc,
+          TParameterPositionSome(pragma[only_bind_into](summaryCtx)), apSome(argAp), ap, apa, config) and
+        getApprox(argAp) = argApa and
+        c = ret.getEnclosingCallable() and
+        kind = ret.getKind() and
+        p.isParameterOf(c, pragma[only_bind_into](summaryCtx)) and
+        parameterFlowThroughAllowed(p, kind)
+      )
+    }
+
+    pragma[inline]
+    private predicate fwdFlowInMayFlowThrough(
+      DataFlowCall call, Cc cc, CcCall innerCc, ParameterPositionOption summaryCtx, ApOption argAp,
+      ParamNodeEx param, Ap ap, ApApprox apa, Configuration config
+    ) {
+      fwdFlowIn(call, pragma[only_bind_into](param), _, cc, innerCc, summaryCtx, argAp, ap,
+        pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
+      PrevStage::parameterMayFlowThrough(param, apa, config)
+    }
+
+    // dedup before joining with `flowThroughOutOfCall`
+    pragma[nomagic]
+    private predicate fwdFlowInMayFlowThroughProj(
+      DataFlowCall call, CcCall innerCc, ApApprox apa, Configuration config
+    ) {
+      fwdFlowInMayFlowThrough(call, _, innerCc, _, _, _, _, apa, config)
+    }
+
+    /**
+     * Same as `flowThroughOutOfCall`, but restricted to calls that are reached
+     * in the flow covered by `fwdFlow`, where data might flow through the target
+     * callable and back out at `call`.
+     */
+    pragma[nomagic]
+    private predicate fwdFlowThroughOutOfCall(
+      DataFlowCall call, CcCall ccc, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow,
+      ApApprox argApa, ApApprox apa, Configuration config
+    ) {
+      fwdFlowInMayFlowThroughProj(call, ccc, argApa, config) and
+      flowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, argApa, apa, config)
+    }
+
     pragma[nomagic]
     private predicate fwdFlowOutFromArg(
       DataFlowCall call, NodeEx out, FlowState state, ParameterPosition summaryCtx, Ap argAp, Ap ap,
-      Configuration config
+      ApApprox apa, Configuration config
     ) {
-      exists(
-        DataFlowCallable c, RetNodeEx ret, ReturnKindExt kind, boolean allowsFieldFlow, CcCall ccc
-      |
-        fwdFlow(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc),
-          TParameterPositionSome(pragma[only_bind_into](summaryCtx)), apSome(argAp), ap, config) and
-        flowThroughOutOfCall(call, pragma[only_bind_into](c), ccc, ret, kind, out, allowsFieldFlow,
+      exists(RetNodeEx ret, boolean allowsFieldFlow, CcCall ccc, ApApprox argApa |
+        fwdFlowRetFromArg(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc),
+          summaryCtx, _, argAp, pragma[only_bind_into](argApa), ap, pragma[only_bind_into](apa),
           config) and
-        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
-        parameterFlowThroughAllowed(c, pragma[only_bind_into](summaryCtx), kind)
+        fwdFlowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, argApa, apa, config) and
+        (if allowsFieldFlow = false then ap instanceof ApNil else any())
       )
     }
 
@@ -1483,8 +1575,7 @@ private module MkStage<StageSig PrevStage> {
       ParameterPosition pos, Ap ap, Configuration config
     ) {
       exists(ParamNodeEx param |
-        fwdFlowIn(call, param, _, cc, _, summaryCtx, argAp, ap, config) and
-        PrevStage::parameterMayFlowThrough(param, unbindApa(getApprox(ap)), config) and
+        fwdFlowInMayFlowThrough(call, cc, _, summaryCtx, argAp, param, ap, _, config) and
         pos = param.getPosition()
       )
     }
@@ -1505,41 +1596,55 @@ private module MkStage<StageSig PrevStage> {
       fwdFlowConsCand(ap1, c, ap2, config)
     }
 
-    pragma[nomagic]
-    private predicate returnFlowsThrough0(
-      RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, DataFlowCallable c,
-      ParameterPosition ppos, Ap argAp, Ap ap, Configuration config
-    ) {
-      exists(boolean allowsFieldFlow |
-        fwdFlow(ret, state, ccc, TParameterPositionSome(ppos), apSome(argAp), ap, config) and
-        flowThroughOutOfCall(_, c, _, pragma[only_bind_into](ret), kind, _, allowsFieldFlow,
-          pragma[only_bind_into](config)) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
-      )
-    }
-
     pragma[nomagic]
     private predicate returnFlowsThrough(
       RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, ParamNodeEx p, Ap argAp,
       Ap ap, Configuration config
     ) {
-      exists(DataFlowCallable c, ParameterPosition ppos |
-        returnFlowsThrough0(ret, kind, state, ccc, c, ppos, argAp, ap, config) and
-        p.isParameterOf(c, ppos) and
-        parameterFlowThroughAllowed(p, kind)
+      exists(boolean allowsFieldFlow, ApApprox argApa, ApApprox apa |
+        fwdFlowRetFromArg(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc), _, p,
+          argAp, pragma[only_bind_into](argApa), ap, pragma[only_bind_into](apa), config) and
+        kind = ret.getKind() and
+        fwdFlowThroughOutOfCall(_, ccc, ret, _, allowsFieldFlow, argApa, apa, config) and
+        (if allowsFieldFlow = false then ap instanceof ApNil else any())
       )
     }
 
     pragma[nomagic]
     private predicate flowThroughIntoCall(
-      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp,
+      Configuration config
     ) {
-      exists(Ap argAp |
-        flowIntoCall(call, pragma[only_bind_into](arg), pragma[only_bind_into](p), allowsFieldFlow,
+      exists(ApApprox argApa |
+        flowIntoCallApa(call, pragma[only_bind_into](arg), pragma[only_bind_into](p),
+          allowsFieldFlow, argApa, pragma[only_bind_into](config)) and
+        fwdFlow(arg, _, _, _, _, pragma[only_bind_into](argAp), argApa,
           pragma[only_bind_into](config)) and
-        fwdFlow(arg, _, _, _, _, pragma[only_bind_into](argAp), pragma[only_bind_into](config)) and
         returnFlowsThrough(_, _, _, _, p, pragma[only_bind_into](argAp), _,
-          pragma[only_bind_into](config))
+          pragma[only_bind_into](config)) and
+        if allowsFieldFlow = false then argAp instanceof ApNil else any()
+      )
+    }
+
+    pragma[nomagic]
+    private predicate flowIntoCallAp(
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap ap,
+      Configuration config
+    ) {
+      exists(ApApprox apa |
+        flowIntoCallApa(call, arg, p, allowsFieldFlow, apa, config) and
+        fwdFlow(arg, _, _, _, _, ap, apa, config)
+      )
+    }
+
+    pragma[nomagic]
+    private predicate flowOutOfCallAp(
+      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
+      Ap ap, Configuration config
+    ) {
+      exists(ApApprox apa |
+        flowOutOfCallApa(call, ret, kind, out, allowsFieldFlow, apa, config) and
+        fwdFlow(ret, _, _, _, _, ap, apa, config)
       )
     }
 
@@ -1628,7 +1733,7 @@ private module MkStage<StageSig PrevStage> {
       // flow into a callable
       exists(ParamNodeEx p, boolean allowsFieldFlow |
         revFlow(p, state, TReturnCtxNone(), returnAp, ap, config) and
-        flowIntoCall(_, node, p, allowsFieldFlow, config) and
+        flowIntoCallAp(_, node, p, allowsFieldFlow, ap, config) and
         (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
         returnCtx = TReturnCtxNone()
       )
@@ -1682,22 +1787,41 @@ private module MkStage<StageSig PrevStage> {
     ) {
       exists(NodeEx out, boolean allowsFieldFlow |
         revFlow(out, state, returnCtx, returnAp, ap, config) and
-        flowOutOfCall(call, ret, kind, out, allowsFieldFlow, config) and
+        flowOutOfCallAp(call, ret, kind, out, allowsFieldFlow, ap, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
+    /**
+     * Same as `flowThroughIntoCall`, but restricted to calls that are reached
+     * in the flow covered by `revFlow`, where data might flow through the target
+     * callable and back out at `call`.
+     */
+    pragma[nomagic]
+    private predicate revFlowThroughIntoCall(
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp,
+      Configuration config
+    ) {
+      flowThroughIntoCall(call, arg, p, allowsFieldFlow, argAp, config) and
+      revFlowIsReturned(call, _, _, _, _, config)
+    }
+
+    pragma[nomagic]
+    private predicate revFlowParamToReturn(
+      ParamNodeEx p, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap, Configuration config
+    ) {
+      revFlow(p, state, TReturnCtxMaybeFlowThrough(kind), apSome(returnAp), ap, config) and
+      parameterFlowThroughAllowed(p, kind)
+    }
+
     pragma[nomagic]
     private predicate revFlowInToReturn(
       DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap,
       Configuration config
     ) {
       exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(pragma[only_bind_into](p), state,
-          TReturnCtxMaybeFlowThrough(pragma[only_bind_into](kind)), apSome(returnAp), ap, config) and
-        flowThroughIntoCall(call, arg, p, allowsFieldFlow, config) and
-        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
-        parameterFlowThroughAllowed(p, kind)
+        revFlowParamToReturn(p, state, kind, returnAp, ap, config) and
+        revFlowThroughIntoCall(call, arg, p, allowsFieldFlow, ap, config)
       )
     }
 
@@ -1750,6 +1874,11 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     predicate revFlow(NodeEx node, Configuration config) { revFlow(node, _, _, _, _, config) }
 
+    pragma[nomagic]
+    predicate revFlowAp(NodeEx node, Ap ap, Configuration config) {
+      revFlow(node, _, _, _, ap, config)
+    }
+
     // use an alias as a workaround for bad functionality-induced joins
     pragma[nomagic]
     additional predicate revFlowAlias(NodeEx node, Configuration config) {
@@ -1786,9 +1915,9 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate parameterFlowsThroughRev(
-      ParamNodeEx p, Ap ap, ReturnKindExt kind, Configuration config
+      ParamNodeEx p, Ap ap, ReturnKindExt kind, Ap returnAp, Configuration config
     ) {
-      revFlow(p, _, TReturnCtxMaybeFlowThrough(kind), apSome(_), ap, config) and
+      revFlow(p, _, TReturnCtxMaybeFlowThrough(kind), apSome(returnAp), ap, config) and
       parameterFlowThroughAllowed(p, kind)
     }
 
@@ -1796,27 +1925,36 @@ private module MkStage<StageSig PrevStage> {
     predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
       exists(RetNodeEx ret, ReturnKindExt kind |
         returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
-        parameterFlowsThroughRev(p, ap, kind, config)
+        parameterFlowsThroughRev(p, ap, kind, _, config)
       )
     }
 
     pragma[nomagic]
-    predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config) {
-      exists(ParamNodeEx p, Ap ap |
-        returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
-        parameterFlowsThroughRev(p, ap, kind, config)
+    predicate returnMayFlowThrough(
+      RetNodeEx ret, Ap argAp, Ap ap, ReturnKindExt kind, Configuration config
+    ) {
+      exists(ParamNodeEx p |
+        returnFlowsThrough(ret, kind, _, _, p, argAp, ap, config) and
+        parameterFlowsThroughRev(p, argAp, kind, ap, config)
+      )
+    }
+
+    pragma[nomagic]
+    predicate revFlowInToReturnIsReturned(
+      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnCtx returnCtx, ApOption returnAp,
+      Ap ap, Configuration config
+    ) {
+      exists(ReturnKindExt returnKind0, Ap returnAp0 |
+        revFlowInToReturn(call, arg, state, returnKind0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
       )
     }
 
     pragma[nomagic]
     predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
-      exists(
-        ReturnKindExt returnKind0, Ap returnAp0, ArgNodeEx arg, FlowState state,
-        ReturnCtx returnCtx, ApOption returnAp, Ap ap
-      |
+      exists(ArgNodeEx arg, FlowState state, ReturnCtx returnCtx, ApOption returnAp, Ap ap |
         revFlow(arg, state, returnCtx, returnAp, ap, config) and
-        revFlowInToReturn(call, arg, state, returnKind0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
+        revFlowInToReturnIsReturned(call, arg, state, returnCtx, returnAp, ap, config)
       )
     }
 
@@ -2179,16 +2317,16 @@ private module LocalFlowBigStep {
   pragma[nomagic]
   predicate localFlowBigStep(
     NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
-    AccessPathFrontNil apf, Configuration config, LocalCallContext callContext
+    DataFlowType t, Configuration config, LocalCallContext callContext
   ) {
-    localFlowStepPlus(node1, state1, node2, preservesValue, apf.getType(), config, callContext) and
+    localFlowStepPlus(node1, state1, node2, preservesValue, t, config, callContext) and
     localFlowExit(node2, state1, config) and
     state1 = state2
     or
     additionalLocalFlowStepNodeCand2(node1, state1, node2, state2, config) and
     state1 != state2 and
     preservesValue = false and
-    apf = TFrontNil(node2.getDataFlowType()) and
+    t = node2.getDataFlowType() and
     callContext.relevantFor(node1.getEnclosingCallable()) and
     not exists(DataFlowCall call | call = callContext.(LocalCallContextSpecificCall).getCall() |
       isUnreachableInCallCached(node1.asNode(), call) or
@@ -2202,11 +2340,87 @@ private import LocalFlowBigStep
 private module Stage3Param implements MkStage<Stage2>::StageParam {
   private module PrevStage = Stage2;
 
+  class Ap = ApproxAccessPathFront;
+
+  class ApNil = ApproxAccessPathFrontNil;
+
+  PrevStage::Ap getApprox(Ap ap) { result = ap.toBoolNonEmpty() }
+
+  ApNil getApNil(NodeEx node) {
+    PrevStage::revFlow(node, _) and result = TApproxFrontNil(node.getDataFlowType())
+  }
+
+  bindingset[tc, tail]
+  Ap apCons(TypedContent tc, Ap tail) { result.getAHead() = tc and exists(tail) }
+
+  pragma[noinline]
+  Content getHeadContent(Ap ap) { result = ap.getAHead().getContent() }
+
+  class ApOption = ApproxAccessPathFrontOption;
+
+  ApOption apNone() { result = TApproxAccessPathFrontNone() }
+
+  ApOption apSome(Ap ap) { result = TApproxAccessPathFrontSome(ap) }
+
+  import BooleanCallContext
+
+  predicate localStep(
+    NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
+    ApproxAccessPathFrontNil ap, Configuration config, LocalCc lcc
+  ) {
+    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap.getType(), config, _) and
+    exists(lcc)
+  }
+
+  predicate flowOutOfCall = flowOutOfCallNodeCand2/6;
+
+  predicate flowIntoCall = flowIntoCallNodeCand2/5;
+
+  pragma[nomagic]
+  private predicate expectsContentCand(NodeEx node, Ap ap, Configuration config) {
+    exists(Content c |
+      PrevStage::revFlow(node, pragma[only_bind_into](config)) and
+      PrevStage::readStepCand(_, c, _, pragma[only_bind_into](config)) and
+      expectsContentEx(node, c) and
+      c = ap.getAHead().getContent()
+    )
+  }
+
+  pragma[nomagic]
+  private predicate castingNodeEx(NodeEx node) { node.asNode() instanceof CastingNode }
+
+  bindingset[node, state, ap, config]
+  predicate filter(NodeEx node, FlowState state, Ap ap, Configuration config) {
+    exists(state) and
+    exists(config) and
+    (if castingNodeEx(node) then compatibleTypes(node.getDataFlowType(), ap.getType()) else any()) and
+    (
+      notExpectsContent(node)
+      or
+      expectsContentCand(node, ap, config)
+    )
+  }
+
+  bindingset[ap, contentType]
+  predicate typecheckStore(Ap ap, DataFlowType contentType) {
+    // We need to typecheck stores here, since reverse flow through a getter
+    // might have a different type here compared to inside the getter.
+    compatibleTypes(ap.getType(), contentType)
+  }
+}
+
+private module Stage3 implements StageSig {
+  import MkStage<Stage2>::Stage<Stage3Param>
+}
+
+private module Stage4Param implements MkStage<Stage3>::StageParam {
+  private module PrevStage = Stage3;
+
   class Ap = AccessPathFront;
 
   class ApNil = AccessPathFrontNil;
 
-  PrevStage::Ap getApprox(Ap ap) { result = ap.toBoolNonEmpty() }
+  PrevStage::Ap getApprox(Ap ap) { result = ap.toApprox() }
 
   ApNil getApNil(NodeEx node) {
     PrevStage::revFlow(node, _) and result = TFrontNil(node.getDataFlowType())
@@ -2226,16 +2440,42 @@ private module Stage3Param implements MkStage<Stage2>::StageParam {
 
   import BooleanCallContext
 
+  pragma[nomagic]
   predicate localStep(
     NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
     ApNil ap, Configuration config, LocalCc lcc
   ) {
-    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap, config, _) and exists(lcc)
+    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap.getType(), config, _) and
+    PrevStage::revFlow(node1, pragma[only_bind_into](state1), _, pragma[only_bind_into](config)) and
+    PrevStage::revFlowAlias(node2, pragma[only_bind_into](state2), _, pragma[only_bind_into](config)) and
+    exists(lcc)
   }
 
-  predicate flowOutOfCall = flowOutOfCallNodeCand2/6;
+  pragma[nomagic]
+  predicate flowOutOfCall(
+    DataFlowCall call, RetNodeEx node1, ReturnKindExt kind, NodeEx node2, boolean allowsFieldFlow,
+    Configuration config
+  ) {
+    exists(FlowState state |
+      flowOutOfCallNodeCand2(call, node1, kind, node2, allowsFieldFlow, config) and
+      PrevStage::revFlow(node2, pragma[only_bind_into](state), _, pragma[only_bind_into](config)) and
+      PrevStage::revFlowAlias(node1, pragma[only_bind_into](state), _,
+        pragma[only_bind_into](config))
+    )
+  }
 
-  predicate flowIntoCall = flowIntoCallNodeCand2/5;
+  pragma[nomagic]
+  predicate flowIntoCall(
+    DataFlowCall call, ArgNodeEx node1, ParamNodeEx node2, boolean allowsFieldFlow,
+    Configuration config
+  ) {
+    exists(FlowState state |
+      flowIntoCallNodeCand2(call, node1, node2, allowsFieldFlow, config) and
+      PrevStage::revFlow(node2, pragma[only_bind_into](state), _, pragma[only_bind_into](config)) and
+      PrevStage::revFlowAlias(node1, pragma[only_bind_into](state), _,
+        pragma[only_bind_into](config))
+    )
+  }
 
   pragma[nomagic]
   private predicate clearSet(NodeEx node, ContentSet c, Configuration config) {
@@ -2291,8 +2531,8 @@ private module Stage3Param implements MkStage<Stage2>::StageParam {
   }
 }
 
-private module Stage3 implements StageSig {
-  import MkStage<Stage2>::Stage<Stage3Param>
+private module Stage4 implements StageSig {
+  import MkStage<Stage3>::Stage<Stage4Param>
 }
 
 /**
@@ -2303,8 +2543,8 @@ private predicate flowCandSummaryCtx(
   NodeEx node, FlowState state, AccessPathFront argApf, Configuration config
 ) {
   exists(AccessPathFront apf |
-    Stage3::revFlow(node, state, TReturnCtxMaybeFlowThrough(_), _, apf, config) and
-    Stage3::fwdFlow(node, state, any(Stage3::CcCall ccc), _, TAccessPathFrontSome(argApf), apf,
+    Stage4::revFlow(node, state, TReturnCtxMaybeFlowThrough(_), _, apf, config) and
+    Stage4::fwdFlow(node, state, any(Stage4::CcCall ccc), _, TAccessPathFrontSome(argApf), apf,
       config)
   )
 }
@@ -2315,10 +2555,10 @@ private predicate flowCandSummaryCtx(
  */
 private predicate expensiveLen2unfolding(TypedContent tc, Configuration config) {
   exists(int tails, int nodes, int apLimit, int tupleLimit |
-    tails = strictcount(AccessPathFront apf | Stage3::consCand(tc, apf, config)) and
+    tails = strictcount(AccessPathFront apf | Stage4::consCand(tc, apf, config)) and
     nodes =
       strictcount(NodeEx n, FlowState state |
-        Stage3::revFlow(n, state, any(AccessPathFrontHead apf | apf.getHead() = tc), config)
+        Stage4::revFlow(n, state, any(AccessPathFrontHead apf | apf.getHead() = tc), config)
         or
         flowCandSummaryCtx(n, state, any(AccessPathFrontHead apf | apf.getHead() = tc), config)
       ) and
@@ -2332,11 +2572,11 @@ private predicate expensiveLen2unfolding(TypedContent tc, Configuration config)
 private newtype TAccessPathApprox =
   TNil(DataFlowType t) or
   TConsNil(TypedContent tc, DataFlowType t) {
-    Stage3::consCand(tc, TFrontNil(t), _) and
+    Stage4::consCand(tc, TFrontNil(t), _) and
     not expensiveLen2unfolding(tc, _)
   } or
   TConsCons(TypedContent tc1, TypedContent tc2, int len) {
-    Stage3::consCand(tc1, TFrontHead(tc2), _) and
+    Stage4::consCand(tc1, TFrontHead(tc2), _) and
     len in [2 .. accessPathLimit()] and
     not expensiveLen2unfolding(tc1, _)
   } or
@@ -2466,7 +2706,7 @@ private class AccessPathApproxCons1 extends AccessPathApproxCons, TCons1 {
   override AccessPathApprox pop(TypedContent head) {
     head = tc and
     (
-      exists(TypedContent tc2 | Stage3::consCand(tc, TFrontHead(tc2), _) |
+      exists(TypedContent tc2 | Stage4::consCand(tc, TFrontHead(tc2), _) |
         result = TConsCons(tc2, _, len - 1)
         or
         len = 2 and
@@ -2477,7 +2717,7 @@ private class AccessPathApproxCons1 extends AccessPathApproxCons, TCons1 {
       or
       exists(DataFlowType t |
         len = 1 and
-        Stage3::consCand(tc, TFrontNil(t), _) and
+        Stage4::consCand(tc, TFrontNil(t), _) and
         result = TNil(t)
       )
     )
@@ -2502,13 +2742,14 @@ private class AccessPathApproxOption extends TAccessPathApproxOption {
   }
 }
 
-private module Stage4Param implements MkStage<Stage3>::StageParam {
-  private module PrevStage = Stage3;
+private module Stage5Param implements MkStage<Stage4>::StageParam {
+  private module PrevStage = Stage4;
 
   class Ap = AccessPathApprox;
 
   class ApNil = AccessPathApproxNil;
 
+  pragma[nomagic]
   PrevStage::Ap getApprox(Ap ap) { result = ap.getFront() }
 
   ApNil getApNil(NodeEx node) {
@@ -2534,7 +2775,9 @@ private module Stage4Param implements MkStage<Stage3>::StageParam {
     NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
     ApNil ap, Configuration config, LocalCc lcc
   ) {
-    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap.getFront(), config, lcc)
+    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap.getType(), config, lcc) and
+    PrevStage::revFlow(node1, pragma[only_bind_into](state1), _, pragma[only_bind_into](config)) and
+    PrevStage::revFlowAlias(node2, pragma[only_bind_into](state2), _, pragma[only_bind_into](config))
   }
 
   pragma[nomagic]
@@ -2571,7 +2814,7 @@ private module Stage4Param implements MkStage<Stage3>::StageParam {
   predicate typecheckStore(Ap ap, DataFlowType contentType) { any() }
 }
 
-private module Stage4 = MkStage<Stage3>::Stage<Stage4Param>;
+private module Stage5 = MkStage<Stage4>::Stage<Stage5Param>;
 
 bindingset[conf, result]
 private Configuration unbindConf(Configuration conf) {
@@ -2585,8 +2828,8 @@ private predicate nodeMayUseSummary0(
 ) {
   exists(AccessPathApprox apa0 |
     c = n.getEnclosingCallable() and
-    Stage4::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
-    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TParameterPositionSome(pos),
+    Stage5::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
+    Stage5::fwdFlow(n, state, any(CallContextCall ccc), TParameterPositionSome(pos),
       TAccessPathApproxSome(apa), apa0, config)
   )
 }
@@ -2596,7 +2839,7 @@ private predicate nodeMayUseSummary(
   NodeEx n, FlowState state, AccessPathApprox apa, Configuration config
 ) {
   exists(DataFlowCallable c, ParameterPosition pos, ParamNodeEx p |
-    Stage4::parameterMayFlowThrough(p, apa, config) and
+    Stage5::parameterMayFlowThrough(p, apa, config) and
     nodeMayUseSummary0(n, c, pos, state, apa, config) and
     p.isParameterOf(c, pos)
   )
@@ -2606,8 +2849,8 @@ private newtype TSummaryCtx =
   TSummaryCtxNone() or
   TSummaryCtxSome(ParamNodeEx p, FlowState state, AccessPath ap) {
     exists(Configuration config |
-      Stage4::parameterMayFlowThrough(p, ap.getApprox(), config) and
-      Stage4::revFlow(p, state, _, config)
+      Stage5::parameterMayFlowThrough(p, ap.getApprox(), config) and
+      Stage5::revFlow(p, state, _, config)
     )
   }
 
@@ -2656,7 +2899,7 @@ private int count1to2unfold(AccessPathApproxCons1 apa, Configuration config) {
     len = apa.len() and
     result =
       strictcount(AccessPathFront apf |
-        Stage4::consCand(tc, any(AccessPathApprox ap | ap.getFront() = apf and ap.len() = len - 1),
+        Stage5::consCand(tc, any(AccessPathApprox ap | ap.getFront() = apf and ap.len() = len - 1),
           config)
       )
   )
@@ -2665,7 +2908,7 @@ private int count1to2unfold(AccessPathApproxCons1 apa, Configuration config) {
 private int countNodesUsingAccessPath(AccessPathApprox apa, Configuration config) {
   result =
     strictcount(NodeEx n, FlowState state |
-      Stage4::revFlow(n, state, apa, config) or nodeMayUseSummary(n, state, apa, config)
+      Stage5::revFlow(n, state, apa, config) or nodeMayUseSummary(n, state, apa, config)
     )
 }
 
@@ -2686,7 +2929,7 @@ private predicate expensiveLen1to2unfolding(AccessPathApproxCons1 apa, Configura
 private AccessPathApprox getATail(AccessPathApprox apa, Configuration config) {
   exists(TypedContent head |
     apa.pop(head) = result and
-    Stage4::consCand(head, result, config)
+    Stage5::consCand(head, result, config)
   )
 }
 
@@ -2768,7 +3011,7 @@ private newtype TPathNode =
     NodeEx node, FlowState state, CallContext cc, SummaryCtx sc, AccessPath ap, Configuration config
   ) {
     // A PathNode is introduced by a source ...
-    Stage4::revFlow(node, state, config) and
+    Stage5::revFlow(node, state, config) and
     sourceNode(node, state, config) and
     (
       if hasSourceCallCtx(config)
@@ -2782,7 +3025,7 @@ private newtype TPathNode =
     exists(PathNodeMid mid |
       pathStep(mid, node, state, cc, sc, ap) and
       pragma[only_bind_into](config) = mid.getConfiguration() and
-      Stage4::revFlow(node, state, ap.getApprox(), pragma[only_bind_into](config))
+      Stage5::revFlow(node, state, ap.getApprox(), pragma[only_bind_into](config))
     )
   } or
   TPathNodeSink(NodeEx node, FlowState state, Configuration config) {
@@ -2924,7 +3167,7 @@ private class AccessPathCons2 extends AccessPath, TAccessPathCons2 {
   override TypedContent getHead() { result = head1 }
 
   override AccessPath getTail() {
-    Stage4::consCand(head1, result.getApprox(), _) and
+    Stage5::consCand(head1, result.getApprox(), _) and
     result.getHead() = head2 and
     result.length() = len - 1
   }
@@ -2955,7 +3198,7 @@ private class AccessPathCons1 extends AccessPath, TAccessPathCons1 {
   override TypedContent getHead() { result = head }
 
   override AccessPath getTail() {
-    Stage4::consCand(head, result.getApprox(), _) and result.length() = len - 1
+    Stage5::consCand(head, result.getApprox(), _) and result.length() = len - 1
   }
 
   override AccessPathFrontHead getFront() { result = TFrontHead(head) }
@@ -3347,7 +3590,8 @@ private predicate pathStep(
     AccessPath ap0, NodeEx midnode, FlowState state0, Configuration conf, LocalCallContext localCC
   |
     pathNode(mid, midnode, state0, cc, sc, ap0, conf, localCC) and
-    localFlowBigStep(midnode, state0, node, state, false, ap.getFront(), conf, localCC) and
+    localFlowBigStep(midnode, state0, node, state, false, ap.(AccessPathNil).getType(), conf,
+      localCC) and
     ap0 instanceof AccessPathNil
   )
   or
@@ -3389,7 +3633,7 @@ private predicate pathReadStep(
 ) {
   ap0 = mid.getAp() and
   tc = ap0.getHead() and
-  Stage4::readStepCand(mid.getNodeEx(), tc.getContent(), node, mid.getConfiguration()) and
+  Stage5::readStepCand(mid.getNodeEx(), tc.getContent(), node, mid.getConfiguration()) and
   state = mid.getState() and
   cc = mid.getCallContext()
 }
@@ -3399,7 +3643,7 @@ private predicate pathStoreStep(
   PathNodeMid mid, NodeEx node, FlowState state, AccessPath ap0, TypedContent tc, CallContext cc
 ) {
   ap0 = mid.getAp() and
-  Stage4::storeStepCand(mid.getNodeEx(), _, tc, node, _, mid.getConfiguration()) and
+  Stage5::storeStepCand(mid.getNodeEx(), _, tc, node, _, mid.getConfiguration()) and
   state = mid.getState() and
   cc = mid.getCallContext()
 }
@@ -3436,7 +3680,7 @@ private NodeEx getAnOutNodeFlow(
   ReturnKindExt kind, DataFlowCall call, AccessPathApprox apa, Configuration config
 ) {
   result.asNode() = kind.getAnOutNode(call) and
-  Stage4::revFlow(result, _, apa, config)
+  Stage5::revFlow(result, _, apa, config)
 }
 
 /**
@@ -3472,7 +3716,7 @@ private predicate parameterCand(
   DataFlowCallable callable, ParameterPosition pos, AccessPathApprox apa, Configuration config
 ) {
   exists(ParamNodeEx p |
-    Stage4::revFlow(p, _, apa, config) and
+    Stage5::revFlow(p, _, apa, config) and
     p.isParameterOf(callable, pos)
   )
 }
@@ -3751,9 +3995,17 @@ predicate stageStats(
   n = 45 and
   Stage4::stats(false, nodes, fields, conscand, states, tuples, config)
   or
-  stage = "5 Fwd" and n = 50 and finalStats(true, nodes, fields, conscand, states, tuples)
+  stage = "5 Fwd" and
+  n = 50 and
+  Stage5::stats(true, nodes, fields, conscand, states, tuples, config)
   or
-  stage = "5 Rev" and n = 55 and finalStats(false, nodes, fields, conscand, states, tuples)
+  stage = "5 Rev" and
+  n = 55 and
+  Stage5::stats(false, nodes, fields, conscand, states, tuples, config)
+  or
+  stage = "6 Fwd" and n = 60 and finalStats(true, nodes, fields, conscand, states, tuples)
+  or
+  stage = "6 Rev" and n = 65 and finalStats(false, nodes, fields, conscand, states, tuples)
 }
 
 private module FlowExploration {
diff --git a/cpp/ql/lib/experimental/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl4.qll b/cpp/ql/lib/experimental/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl4.qll
index ccde916a3c2..6741ccc2f06 100644
--- a/cpp/ql/lib/experimental/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl4.qll
+++ b/cpp/ql/lib/experimental/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl4.qll
@@ -621,23 +621,6 @@ private predicate parameterFlowThroughAllowed(ParamNodeEx p, ReturnKindExt kind)
   )
 }
 
-/**
- * Holds if flow from a parameter at position `pos` inside `c` to a return node of
- * kind `kind` is allowed.
- *
- * We don't expect a parameter to return stored in itself, unless
- * explicitly allowed
- */
-bindingset[c, pos, kind]
-private predicate parameterFlowThroughAllowed(
-  DataFlowCallable c, ParameterPosition pos, ReturnKindExt kind
-) {
-  exists(ParamNodeEx p |
-    p.isParameterOf(c, pos) and
-    parameterFlowThroughAllowed(p, kind)
-  )
-}
-
 private module Stage1 implements StageSig {
   class Ap = Unit;
 
@@ -980,6 +963,12 @@ private module Stage1 implements StageSig {
   pragma[nomagic]
   predicate revFlow(NodeEx node, Configuration config) { revFlow(node, _, config) }
 
+  pragma[nomagic]
+  predicate revFlowAp(NodeEx node, Ap ap, Configuration config) {
+    revFlow(node, config) and
+    exists(ap)
+  }
+
   bindingset[node, state, config]
   predicate revFlow(NodeEx node, FlowState state, Ap ap, Configuration config) {
     revFlow(node, _, pragma[only_bind_into](config)) and
@@ -1022,9 +1011,13 @@ private module Stage1 implements StageSig {
   }
 
   pragma[nomagic]
-  predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config) {
+  predicate returnMayFlowThrough(
+    RetNodeEx ret, Ap argAp, Ap ap, ReturnKindExt kind, Configuration config
+  ) {
     throughFlowNodeCand(ret, config) and
-    kind = ret.getKind()
+    kind = ret.getKind() and
+    exists(argAp) and
+    exists(ap)
   }
 
   pragma[nomagic]
@@ -1189,6 +1182,8 @@ private signature module StageSig {
 
   predicate revFlow(NodeEx node, Configuration config);
 
+  predicate revFlowAp(NodeEx node, Ap ap, Configuration config);
+
   bindingset[node, state, config]
   predicate revFlow(NodeEx node, FlowState state, Ap ap, Configuration config);
 
@@ -1196,7 +1191,9 @@ private signature module StageSig {
 
   predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config);
 
-  predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config);
+  predicate returnMayFlowThrough(
+    RetNodeEx ret, Ap argAp, Ap ap, ReturnKindExt kind, Configuration config
+  );
 
   predicate storeStepCand(
     NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, DataFlowType contentType,
@@ -1281,21 +1278,43 @@ private module MkStage<StageSig PrevStage> {
     import Param
 
     /* Begin: Stage logic. */
-    bindingset[result, apa]
-    private ApApprox unbindApa(ApApprox apa) {
-      pragma[only_bind_out](apa) = pragma[only_bind_out](result)
+    // use an alias as a workaround for bad functionality-induced joins
+    pragma[nomagic]
+    private predicate revFlowApAlias(NodeEx node, ApApprox apa, Configuration config) {
+      PrevStage::revFlowAp(node, apa, config)
+    }
+
+    pragma[nomagic]
+    private predicate flowIntoCallApa(
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, ApApprox apa,
+      Configuration config
+    ) {
+      flowIntoCall(call, arg, p, allowsFieldFlow, config) and
+      PrevStage::revFlowAp(p, pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
+      revFlowApAlias(arg, pragma[only_bind_into](apa), pragma[only_bind_into](config))
+    }
+
+    pragma[nomagic]
+    private predicate flowOutOfCallApa(
+      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
+      ApApprox apa, Configuration config
+    ) {
+      flowOutOfCall(call, ret, kind, out, allowsFieldFlow, config) and
+      PrevStage::revFlowAp(out, pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
+      revFlowApAlias(ret, pragma[only_bind_into](apa), pragma[only_bind_into](config))
     }
 
     pragma[nomagic]
     private predicate flowThroughOutOfCall(
-      DataFlowCall call, DataFlowCallable c, CcCall ccc, RetNodeEx ret, ReturnKindExt kind,
-      NodeEx out, boolean allowsFieldFlow, Configuration config
+      DataFlowCall call, CcCall ccc, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow,
+      ApApprox argApa, ApApprox apa, Configuration config
     ) {
-      flowOutOfCall(call, ret, kind, out, allowsFieldFlow, pragma[only_bind_into](config)) and
-      PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
-      PrevStage::returnMayFlowThrough(ret, kind, pragma[only_bind_into](config)) and
-      matchesCall(ccc, call) and
-      c = ret.getEnclosingCallable()
+      exists(ReturnKindExt kind |
+        flowOutOfCallApa(call, ret, kind, out, allowsFieldFlow, apa, pragma[only_bind_into](config)) and
+        PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
+        PrevStage::returnMayFlowThrough(ret, argApa, apa, kind, pragma[only_bind_into](config)) and
+        matchesCall(ccc, call)
+      )
     }
 
     /**
@@ -1307,39 +1326,50 @@ private module MkStage<StageSig PrevStage> {
      * corresponding parameter position and access path of that argument, respectively.
      */
     pragma[nomagic]
+    additional predicate fwdFlow(
+      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      Ap ap, ApApprox apa, Configuration config
+    ) {
+      fwdFlow0(node, state, cc, summaryCtx, argAp, ap, apa, config) and
+      PrevStage::revFlow(node, state, apa, config) and
+      filter(node, state, ap, config)
+    }
+
+    pragma[inline]
     additional predicate fwdFlow(
       NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
       Ap ap, Configuration config
     ) {
-      fwdFlow0(node, state, cc, summaryCtx, argAp, ap, config) and
-      PrevStage::revFlow(node, state, unbindApa(getApprox(ap)), config) and
-      filter(node, state, ap, config)
+      fwdFlow(node, state, cc, summaryCtx, argAp, ap, _, config)
     }
 
     pragma[nomagic]
     private predicate fwdFlow0(
       NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      Ap ap, Configuration config
+      Ap ap, ApApprox apa, Configuration config
     ) {
       sourceNode(node, state, config) and
       (if hasSourceCallCtx(config) then cc = ccSomeCall() else cc = ccNone()) and
       argAp = apNone() and
       summaryCtx = TParameterPositionNone() and
-      ap = getApNil(node)
+      ap = getApNil(node) and
+      apa = getApprox(ap)
       or
-      exists(NodeEx mid, FlowState state0, Ap ap0, LocalCc localCc |
-        fwdFlow(mid, state0, cc, summaryCtx, argAp, ap0, config) and
+      exists(NodeEx mid, FlowState state0, Ap ap0, ApApprox apa0, LocalCc localCc |
+        fwdFlow(mid, state0, cc, summaryCtx, argAp, ap0, apa0, config) and
         localCc = getLocalCc(mid, cc)
       |
         localStep(mid, state0, node, state, true, _, config, localCc) and
-        ap = ap0
+        ap = ap0 and
+        apa = apa0
         or
         localStep(mid, state0, node, state, false, ap, config, localCc) and
-        ap0 instanceof ApNil
+        ap0 instanceof ApNil and
+        apa = getApprox(ap)
       )
       or
       exists(NodeEx mid |
-        fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, apa, pragma[only_bind_into](config)) and
         jumpStep(mid, node, config) and
         cc = ccNone() and
         summaryCtx = TParameterPositionNone() and
@@ -1352,7 +1382,8 @@ private module MkStage<StageSig PrevStage> {
         cc = ccNone() and
         summaryCtx = TParameterPositionNone() and
         argAp = apNone() and
-        ap = getApNil(node)
+        ap = getApNil(node) and
+        apa = getApprox(ap)
       )
       or
       exists(NodeEx mid, FlowState state0, ApNil nil |
@@ -1361,32 +1392,32 @@ private module MkStage<StageSig PrevStage> {
         cc = ccNone() and
         summaryCtx = TParameterPositionNone() and
         argAp = apNone() and
-        ap = getApNil(node)
+        ap = getApNil(node) and
+        apa = getApprox(ap)
       )
       or
       // store
       exists(TypedContent tc, Ap ap0 |
         fwdFlowStore(_, ap0, tc, node, state, cc, summaryCtx, argAp, config) and
-        ap = apCons(tc, ap0)
+        ap = apCons(tc, ap0) and
+        apa = getApprox(ap)
       )
       or
       // read
       exists(Ap ap0, Content c |
         fwdFlowRead(ap0, c, _, node, state, cc, summaryCtx, argAp, config) and
-        fwdFlowConsCand(ap0, c, ap, config)
+        fwdFlowConsCand(ap0, c, ap, config) and
+        apa = getApprox(ap)
       )
       or
       // flow into a callable
-      exists(ApApprox apa |
-        fwdFlowIn(_, node, state, _, cc, _, _, ap, config) and
-        apa = getApprox(ap) and
-        if PrevStage::parameterMayFlowThrough(node, apa, config)
-        then (
-          summaryCtx = TParameterPositionSome(node.(ParamNodeEx).getPosition()) and
-          argAp = apSome(ap)
-        ) else (
-          summaryCtx = TParameterPositionNone() and argAp = apNone()
-        )
+      fwdFlowIn(_, node, state, _, cc, _, _, ap, apa, config) and
+      if PrevStage::parameterMayFlowThrough(node, apa, config)
+      then (
+        summaryCtx = TParameterPositionSome(node.(ParamNodeEx).getPosition()) and
+        argAp = apSome(ap)
+      ) else (
+        summaryCtx = TParameterPositionNone() and argAp = apNone()
       )
       or
       // flow out of a callable
@@ -1394,8 +1425,8 @@ private module MkStage<StageSig PrevStage> {
         DataFlowCall call, RetNodeEx ret, boolean allowsFieldFlow, CcNoCall innercc,
         DataFlowCallable inner
       |
-        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, config) and
-        flowOutOfCall(call, ret, _, node, allowsFieldFlow, config) and
+        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, apa, config) and
+        flowOutOfCallApa(call, ret, _, node, allowsFieldFlow, apa, config) and
         inner = ret.getEnclosingCallable() and
         cc = getCallContextReturn(inner, call, innercc) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
@@ -1403,7 +1434,7 @@ private module MkStage<StageSig PrevStage> {
       or
       // flow through a callable
       exists(DataFlowCall call, ParameterPosition summaryCtx0, Ap argAp0 |
-        fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, config) and
+        fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, apa, config) and
         fwdFlowIsEntered(call, cc, summaryCtx, argAp, summaryCtx0, argAp0, config)
       )
     }
@@ -1413,9 +1444,9 @@ private module MkStage<StageSig PrevStage> {
       NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc,
       ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
     ) {
-      exists(DataFlowType contentType |
-        fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, config) and
-        PrevStage::storeStepCand(node1, unbindApa(getApprox(ap1)), tc, node2, contentType, config) and
+      exists(DataFlowType contentType, ApApprox apa1 |
+        fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, apa1, config) and
+        PrevStage::storeStepCand(node1, apa1, tc, node2, contentType, config) and
         typecheckStore(ap1, contentType)
       )
     }
@@ -1433,43 +1464,104 @@ private module MkStage<StageSig PrevStage> {
       )
     }
 
+    private class ApNonNil instanceof Ap {
+      pragma[nomagic]
+      ApNonNil() { not this instanceof ApNil }
+
+      string toString() { result = "" }
+    }
+
+    pragma[nomagic]
+    private predicate fwdFlowRead0(
+      NodeEx node1, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      ApNonNil ap, Configuration config
+    ) {
+      fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
+      PrevStage::readStepCand(node1, _, _, config)
+    }
+
     pragma[nomagic]
     private predicate fwdFlowRead(
       Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc,
       ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
     ) {
-      fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
+      fwdFlowRead0(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, c, node2, config) and
       getHeadContent(ap) = c
     }
 
     pragma[nomagic]
     private predicate fwdFlowIn(
-      DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, Cc innercc,
-      ParameterPositionOption summaryCtx, ApOption argAp, Ap ap, Configuration config
+      DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, CcCall innercc,
+      ParameterPositionOption summaryCtx, ApOption argAp, Ap ap, ApApprox apa, Configuration config
     ) {
       exists(ArgNodeEx arg, boolean allowsFieldFlow |
-        fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, config) and
-        flowIntoCall(call, arg, p, allowsFieldFlow, config) and
+        fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, apa, config) and
+        flowIntoCallApa(call, arg, p, allowsFieldFlow, apa, config) and
         innercc = getCallContextCall(call, p.getEnclosingCallable(), outercc) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
+    pragma[nomagic]
+    private predicate fwdFlowRetFromArg(
+      RetNodeEx ret, FlowState state, CcCall ccc, ParameterPosition summaryCtx, ParamNodeEx p,
+      Ap argAp, ApApprox argApa, Ap ap, ApApprox apa, Configuration config
+    ) {
+      exists(DataFlowCallable c, ReturnKindExt kind |
+        fwdFlow(pragma[only_bind_into](ret), state, ccc,
+          TParameterPositionSome(pragma[only_bind_into](summaryCtx)), apSome(argAp), ap, apa, config) and
+        getApprox(argAp) = argApa and
+        c = ret.getEnclosingCallable() and
+        kind = ret.getKind() and
+        p.isParameterOf(c, pragma[only_bind_into](summaryCtx)) and
+        parameterFlowThroughAllowed(p, kind)
+      )
+    }
+
+    pragma[inline]
+    private predicate fwdFlowInMayFlowThrough(
+      DataFlowCall call, Cc cc, CcCall innerCc, ParameterPositionOption summaryCtx, ApOption argAp,
+      ParamNodeEx param, Ap ap, ApApprox apa, Configuration config
+    ) {
+      fwdFlowIn(call, pragma[only_bind_into](param), _, cc, innerCc, summaryCtx, argAp, ap,
+        pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
+      PrevStage::parameterMayFlowThrough(param, apa, config)
+    }
+
+    // dedup before joining with `flowThroughOutOfCall`
+    pragma[nomagic]
+    private predicate fwdFlowInMayFlowThroughProj(
+      DataFlowCall call, CcCall innerCc, ApApprox apa, Configuration config
+    ) {
+      fwdFlowInMayFlowThrough(call, _, innerCc, _, _, _, _, apa, config)
+    }
+
+    /**
+     * Same as `flowThroughOutOfCall`, but restricted to calls that are reached
+     * in the flow covered by `fwdFlow`, where data might flow through the target
+     * callable and back out at `call`.
+     */
+    pragma[nomagic]
+    private predicate fwdFlowThroughOutOfCall(
+      DataFlowCall call, CcCall ccc, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow,
+      ApApprox argApa, ApApprox apa, Configuration config
+    ) {
+      fwdFlowInMayFlowThroughProj(call, ccc, argApa, config) and
+      flowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, argApa, apa, config)
+    }
+
     pragma[nomagic]
     private predicate fwdFlowOutFromArg(
       DataFlowCall call, NodeEx out, FlowState state, ParameterPosition summaryCtx, Ap argAp, Ap ap,
-      Configuration config
+      ApApprox apa, Configuration config
     ) {
-      exists(
-        DataFlowCallable c, RetNodeEx ret, ReturnKindExt kind, boolean allowsFieldFlow, CcCall ccc
-      |
-        fwdFlow(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc),
-          TParameterPositionSome(pragma[only_bind_into](summaryCtx)), apSome(argAp), ap, config) and
-        flowThroughOutOfCall(call, pragma[only_bind_into](c), ccc, ret, kind, out, allowsFieldFlow,
+      exists(RetNodeEx ret, boolean allowsFieldFlow, CcCall ccc, ApApprox argApa |
+        fwdFlowRetFromArg(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc),
+          summaryCtx, _, argAp, pragma[only_bind_into](argApa), ap, pragma[only_bind_into](apa),
           config) and
-        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
-        parameterFlowThroughAllowed(c, pragma[only_bind_into](summaryCtx), kind)
+        fwdFlowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, argApa, apa, config) and
+        (if allowsFieldFlow = false then ap instanceof ApNil else any())
       )
     }
 
@@ -1483,8 +1575,7 @@ private module MkStage<StageSig PrevStage> {
       ParameterPosition pos, Ap ap, Configuration config
     ) {
       exists(ParamNodeEx param |
-        fwdFlowIn(call, param, _, cc, _, summaryCtx, argAp, ap, config) and
-        PrevStage::parameterMayFlowThrough(param, unbindApa(getApprox(ap)), config) and
+        fwdFlowInMayFlowThrough(call, cc, _, summaryCtx, argAp, param, ap, _, config) and
         pos = param.getPosition()
       )
     }
@@ -1505,41 +1596,55 @@ private module MkStage<StageSig PrevStage> {
       fwdFlowConsCand(ap1, c, ap2, config)
     }
 
-    pragma[nomagic]
-    private predicate returnFlowsThrough0(
-      RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, DataFlowCallable c,
-      ParameterPosition ppos, Ap argAp, Ap ap, Configuration config
-    ) {
-      exists(boolean allowsFieldFlow |
-        fwdFlow(ret, state, ccc, TParameterPositionSome(ppos), apSome(argAp), ap, config) and
-        flowThroughOutOfCall(_, c, _, pragma[only_bind_into](ret), kind, _, allowsFieldFlow,
-          pragma[only_bind_into](config)) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
-      )
-    }
-
     pragma[nomagic]
     private predicate returnFlowsThrough(
       RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, ParamNodeEx p, Ap argAp,
       Ap ap, Configuration config
     ) {
-      exists(DataFlowCallable c, ParameterPosition ppos |
-        returnFlowsThrough0(ret, kind, state, ccc, c, ppos, argAp, ap, config) and
-        p.isParameterOf(c, ppos) and
-        parameterFlowThroughAllowed(p, kind)
+      exists(boolean allowsFieldFlow, ApApprox argApa, ApApprox apa |
+        fwdFlowRetFromArg(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc), _, p,
+          argAp, pragma[only_bind_into](argApa), ap, pragma[only_bind_into](apa), config) and
+        kind = ret.getKind() and
+        fwdFlowThroughOutOfCall(_, ccc, ret, _, allowsFieldFlow, argApa, apa, config) and
+        (if allowsFieldFlow = false then ap instanceof ApNil else any())
       )
     }
 
     pragma[nomagic]
     private predicate flowThroughIntoCall(
-      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp,
+      Configuration config
     ) {
-      exists(Ap argAp |
-        flowIntoCall(call, pragma[only_bind_into](arg), pragma[only_bind_into](p), allowsFieldFlow,
+      exists(ApApprox argApa |
+        flowIntoCallApa(call, pragma[only_bind_into](arg), pragma[only_bind_into](p),
+          allowsFieldFlow, argApa, pragma[only_bind_into](config)) and
+        fwdFlow(arg, _, _, _, _, pragma[only_bind_into](argAp), argApa,
           pragma[only_bind_into](config)) and
-        fwdFlow(arg, _, _, _, _, pragma[only_bind_into](argAp), pragma[only_bind_into](config)) and
         returnFlowsThrough(_, _, _, _, p, pragma[only_bind_into](argAp), _,
-          pragma[only_bind_into](config))
+          pragma[only_bind_into](config)) and
+        if allowsFieldFlow = false then argAp instanceof ApNil else any()
+      )
+    }
+
+    pragma[nomagic]
+    private predicate flowIntoCallAp(
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap ap,
+      Configuration config
+    ) {
+      exists(ApApprox apa |
+        flowIntoCallApa(call, arg, p, allowsFieldFlow, apa, config) and
+        fwdFlow(arg, _, _, _, _, ap, apa, config)
+      )
+    }
+
+    pragma[nomagic]
+    private predicate flowOutOfCallAp(
+      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
+      Ap ap, Configuration config
+    ) {
+      exists(ApApprox apa |
+        flowOutOfCallApa(call, ret, kind, out, allowsFieldFlow, apa, config) and
+        fwdFlow(ret, _, _, _, _, ap, apa, config)
       )
     }
 
@@ -1628,7 +1733,7 @@ private module MkStage<StageSig PrevStage> {
       // flow into a callable
       exists(ParamNodeEx p, boolean allowsFieldFlow |
         revFlow(p, state, TReturnCtxNone(), returnAp, ap, config) and
-        flowIntoCall(_, node, p, allowsFieldFlow, config) and
+        flowIntoCallAp(_, node, p, allowsFieldFlow, ap, config) and
         (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
         returnCtx = TReturnCtxNone()
       )
@@ -1682,22 +1787,41 @@ private module MkStage<StageSig PrevStage> {
     ) {
       exists(NodeEx out, boolean allowsFieldFlow |
         revFlow(out, state, returnCtx, returnAp, ap, config) and
-        flowOutOfCall(call, ret, kind, out, allowsFieldFlow, config) and
+        flowOutOfCallAp(call, ret, kind, out, allowsFieldFlow, ap, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
+    /**
+     * Same as `flowThroughIntoCall`, but restricted to calls that are reached
+     * in the flow covered by `revFlow`, where data might flow through the target
+     * callable and back out at `call`.
+     */
+    pragma[nomagic]
+    private predicate revFlowThroughIntoCall(
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp,
+      Configuration config
+    ) {
+      flowThroughIntoCall(call, arg, p, allowsFieldFlow, argAp, config) and
+      revFlowIsReturned(call, _, _, _, _, config)
+    }
+
+    pragma[nomagic]
+    private predicate revFlowParamToReturn(
+      ParamNodeEx p, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap, Configuration config
+    ) {
+      revFlow(p, state, TReturnCtxMaybeFlowThrough(kind), apSome(returnAp), ap, config) and
+      parameterFlowThroughAllowed(p, kind)
+    }
+
     pragma[nomagic]
     private predicate revFlowInToReturn(
       DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap,
       Configuration config
     ) {
       exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(pragma[only_bind_into](p), state,
-          TReturnCtxMaybeFlowThrough(pragma[only_bind_into](kind)), apSome(returnAp), ap, config) and
-        flowThroughIntoCall(call, arg, p, allowsFieldFlow, config) and
-        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
-        parameterFlowThroughAllowed(p, kind)
+        revFlowParamToReturn(p, state, kind, returnAp, ap, config) and
+        revFlowThroughIntoCall(call, arg, p, allowsFieldFlow, ap, config)
       )
     }
 
@@ -1750,6 +1874,11 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     predicate revFlow(NodeEx node, Configuration config) { revFlow(node, _, _, _, _, config) }
 
+    pragma[nomagic]
+    predicate revFlowAp(NodeEx node, Ap ap, Configuration config) {
+      revFlow(node, _, _, _, ap, config)
+    }
+
     // use an alias as a workaround for bad functionality-induced joins
     pragma[nomagic]
     additional predicate revFlowAlias(NodeEx node, Configuration config) {
@@ -1786,9 +1915,9 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate parameterFlowsThroughRev(
-      ParamNodeEx p, Ap ap, ReturnKindExt kind, Configuration config
+      ParamNodeEx p, Ap ap, ReturnKindExt kind, Ap returnAp, Configuration config
     ) {
-      revFlow(p, _, TReturnCtxMaybeFlowThrough(kind), apSome(_), ap, config) and
+      revFlow(p, _, TReturnCtxMaybeFlowThrough(kind), apSome(returnAp), ap, config) and
       parameterFlowThroughAllowed(p, kind)
     }
 
@@ -1796,27 +1925,36 @@ private module MkStage<StageSig PrevStage> {
     predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
       exists(RetNodeEx ret, ReturnKindExt kind |
         returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
-        parameterFlowsThroughRev(p, ap, kind, config)
+        parameterFlowsThroughRev(p, ap, kind, _, config)
       )
     }
 
     pragma[nomagic]
-    predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config) {
-      exists(ParamNodeEx p, Ap ap |
-        returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
-        parameterFlowsThroughRev(p, ap, kind, config)
+    predicate returnMayFlowThrough(
+      RetNodeEx ret, Ap argAp, Ap ap, ReturnKindExt kind, Configuration config
+    ) {
+      exists(ParamNodeEx p |
+        returnFlowsThrough(ret, kind, _, _, p, argAp, ap, config) and
+        parameterFlowsThroughRev(p, argAp, kind, ap, config)
+      )
+    }
+
+    pragma[nomagic]
+    predicate revFlowInToReturnIsReturned(
+      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnCtx returnCtx, ApOption returnAp,
+      Ap ap, Configuration config
+    ) {
+      exists(ReturnKindExt returnKind0, Ap returnAp0 |
+        revFlowInToReturn(call, arg, state, returnKind0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
       )
     }
 
     pragma[nomagic]
     predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
-      exists(
-        ReturnKindExt returnKind0, Ap returnAp0, ArgNodeEx arg, FlowState state,
-        ReturnCtx returnCtx, ApOption returnAp, Ap ap
-      |
+      exists(ArgNodeEx arg, FlowState state, ReturnCtx returnCtx, ApOption returnAp, Ap ap |
         revFlow(arg, state, returnCtx, returnAp, ap, config) and
-        revFlowInToReturn(call, arg, state, returnKind0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
+        revFlowInToReturnIsReturned(call, arg, state, returnCtx, returnAp, ap, config)
       )
     }
 
@@ -2179,16 +2317,16 @@ private module LocalFlowBigStep {
   pragma[nomagic]
   predicate localFlowBigStep(
     NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
-    AccessPathFrontNil apf, Configuration config, LocalCallContext callContext
+    DataFlowType t, Configuration config, LocalCallContext callContext
   ) {
-    localFlowStepPlus(node1, state1, node2, preservesValue, apf.getType(), config, callContext) and
+    localFlowStepPlus(node1, state1, node2, preservesValue, t, config, callContext) and
     localFlowExit(node2, state1, config) and
     state1 = state2
     or
     additionalLocalFlowStepNodeCand2(node1, state1, node2, state2, config) and
     state1 != state2 and
     preservesValue = false and
-    apf = TFrontNil(node2.getDataFlowType()) and
+    t = node2.getDataFlowType() and
     callContext.relevantFor(node1.getEnclosingCallable()) and
     not exists(DataFlowCall call | call = callContext.(LocalCallContextSpecificCall).getCall() |
       isUnreachableInCallCached(node1.asNode(), call) or
@@ -2202,11 +2340,87 @@ private import LocalFlowBigStep
 private module Stage3Param implements MkStage<Stage2>::StageParam {
   private module PrevStage = Stage2;
 
+  class Ap = ApproxAccessPathFront;
+
+  class ApNil = ApproxAccessPathFrontNil;
+
+  PrevStage::Ap getApprox(Ap ap) { result = ap.toBoolNonEmpty() }
+
+  ApNil getApNil(NodeEx node) {
+    PrevStage::revFlow(node, _) and result = TApproxFrontNil(node.getDataFlowType())
+  }
+
+  bindingset[tc, tail]
+  Ap apCons(TypedContent tc, Ap tail) { result.getAHead() = tc and exists(tail) }
+
+  pragma[noinline]
+  Content getHeadContent(Ap ap) { result = ap.getAHead().getContent() }
+
+  class ApOption = ApproxAccessPathFrontOption;
+
+  ApOption apNone() { result = TApproxAccessPathFrontNone() }
+
+  ApOption apSome(Ap ap) { result = TApproxAccessPathFrontSome(ap) }
+
+  import BooleanCallContext
+
+  predicate localStep(
+    NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
+    ApproxAccessPathFrontNil ap, Configuration config, LocalCc lcc
+  ) {
+    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap.getType(), config, _) and
+    exists(lcc)
+  }
+
+  predicate flowOutOfCall = flowOutOfCallNodeCand2/6;
+
+  predicate flowIntoCall = flowIntoCallNodeCand2/5;
+
+  pragma[nomagic]
+  private predicate expectsContentCand(NodeEx node, Ap ap, Configuration config) {
+    exists(Content c |
+      PrevStage::revFlow(node, pragma[only_bind_into](config)) and
+      PrevStage::readStepCand(_, c, _, pragma[only_bind_into](config)) and
+      expectsContentEx(node, c) and
+      c = ap.getAHead().getContent()
+    )
+  }
+
+  pragma[nomagic]
+  private predicate castingNodeEx(NodeEx node) { node.asNode() instanceof CastingNode }
+
+  bindingset[node, state, ap, config]
+  predicate filter(NodeEx node, FlowState state, Ap ap, Configuration config) {
+    exists(state) and
+    exists(config) and
+    (if castingNodeEx(node) then compatibleTypes(node.getDataFlowType(), ap.getType()) else any()) and
+    (
+      notExpectsContent(node)
+      or
+      expectsContentCand(node, ap, config)
+    )
+  }
+
+  bindingset[ap, contentType]
+  predicate typecheckStore(Ap ap, DataFlowType contentType) {
+    // We need to typecheck stores here, since reverse flow through a getter
+    // might have a different type here compared to inside the getter.
+    compatibleTypes(ap.getType(), contentType)
+  }
+}
+
+private module Stage3 implements StageSig {
+  import MkStage<Stage2>::Stage<Stage3Param>
+}
+
+private module Stage4Param implements MkStage<Stage3>::StageParam {
+  private module PrevStage = Stage3;
+
   class Ap = AccessPathFront;
 
   class ApNil = AccessPathFrontNil;
 
-  PrevStage::Ap getApprox(Ap ap) { result = ap.toBoolNonEmpty() }
+  PrevStage::Ap getApprox(Ap ap) { result = ap.toApprox() }
 
   ApNil getApNil(NodeEx node) {
     PrevStage::revFlow(node, _) and result = TFrontNil(node.getDataFlowType())
@@ -2226,16 +2440,42 @@ private module Stage3Param implements MkStage<Stage2>::StageParam {
 
   import BooleanCallContext
 
+  pragma[nomagic]
   predicate localStep(
     NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
     ApNil ap, Configuration config, LocalCc lcc
   ) {
-    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap, config, _) and exists(lcc)
+    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap.getType(), config, _) and
+    PrevStage::revFlow(node1, pragma[only_bind_into](state1), _, pragma[only_bind_into](config)) and
+    PrevStage::revFlowAlias(node2, pragma[only_bind_into](state2), _, pragma[only_bind_into](config)) and
+    exists(lcc)
   }
 
-  predicate flowOutOfCall = flowOutOfCallNodeCand2/6;
+  pragma[nomagic]
+  predicate flowOutOfCall(
+    DataFlowCall call, RetNodeEx node1, ReturnKindExt kind, NodeEx node2, boolean allowsFieldFlow,
+    Configuration config
+  ) {
+    exists(FlowState state |
+      flowOutOfCallNodeCand2(call, node1, kind, node2, allowsFieldFlow, config) and
+      PrevStage::revFlow(node2, pragma[only_bind_into](state), _, pragma[only_bind_into](config)) and
+      PrevStage::revFlowAlias(node1, pragma[only_bind_into](state), _,
+        pragma[only_bind_into](config))
+    )
+  }
 
-  predicate flowIntoCall = flowIntoCallNodeCand2/5;
+  pragma[nomagic]
+  predicate flowIntoCall(
+    DataFlowCall call, ArgNodeEx node1, ParamNodeEx node2, boolean allowsFieldFlow,
+    Configuration config
+  ) {
+    exists(FlowState state |
+      flowIntoCallNodeCand2(call, node1, node2, allowsFieldFlow, config) and
+      PrevStage::revFlow(node2, pragma[only_bind_into](state), _, pragma[only_bind_into](config)) and
+      PrevStage::revFlowAlias(node1, pragma[only_bind_into](state), _,
+        pragma[only_bind_into](config))
+    )
+  }
 
   pragma[nomagic]
   private predicate clearSet(NodeEx node, ContentSet c, Configuration config) {
@@ -2291,8 +2531,8 @@ private module Stage3Param implements MkStage<Stage2>::StageParam {
   }
 }
 
-private module Stage3 implements StageSig {
-  import MkStage<Stage2>::Stage<Stage3Param>
+private module Stage4 implements StageSig {
+  import MkStage<Stage3>::Stage<Stage4Param>
 }
 
 /**
@@ -2303,8 +2543,8 @@ private predicate flowCandSummaryCtx(
   NodeEx node, FlowState state, AccessPathFront argApf, Configuration config
 ) {
   exists(AccessPathFront apf |
-    Stage3::revFlow(node, state, TReturnCtxMaybeFlowThrough(_), _, apf, config) and
-    Stage3::fwdFlow(node, state, any(Stage3::CcCall ccc), _, TAccessPathFrontSome(argApf), apf,
+    Stage4::revFlow(node, state, TReturnCtxMaybeFlowThrough(_), _, apf, config) and
+    Stage4::fwdFlow(node, state, any(Stage4::CcCall ccc), _, TAccessPathFrontSome(argApf), apf,
       config)
   )
 }
@@ -2315,10 +2555,10 @@ private predicate flowCandSummaryCtx(
  */
 private predicate expensiveLen2unfolding(TypedContent tc, Configuration config) {
   exists(int tails, int nodes, int apLimit, int tupleLimit |
-    tails = strictcount(AccessPathFront apf | Stage3::consCand(tc, apf, config)) and
+    tails = strictcount(AccessPathFront apf | Stage4::consCand(tc, apf, config)) and
     nodes =
       strictcount(NodeEx n, FlowState state |
-        Stage3::revFlow(n, state, any(AccessPathFrontHead apf | apf.getHead() = tc), config)
+        Stage4::revFlow(n, state, any(AccessPathFrontHead apf | apf.getHead() = tc), config)
         or
         flowCandSummaryCtx(n, state, any(AccessPathFrontHead apf | apf.getHead() = tc), config)
       ) and
@@ -2332,11 +2572,11 @@ private predicate expensiveLen2unfolding(TypedContent tc, Configuration config)
 private newtype TAccessPathApprox =
   TNil(DataFlowType t) or
   TConsNil(TypedContent tc, DataFlowType t) {
-    Stage3::consCand(tc, TFrontNil(t), _) and
+    Stage4::consCand(tc, TFrontNil(t), _) and
     not expensiveLen2unfolding(tc, _)
   } or
   TConsCons(TypedContent tc1, TypedContent tc2, int len) {
-    Stage3::consCand(tc1, TFrontHead(tc2), _) and
+    Stage4::consCand(tc1, TFrontHead(tc2), _) and
     len in [2 .. accessPathLimit()] and
     not expensiveLen2unfolding(tc1, _)
   } or
@@ -2466,7 +2706,7 @@ private class AccessPathApproxCons1 extends AccessPathApproxCons, TCons1 {
   override AccessPathApprox pop(TypedContent head) {
     head = tc and
     (
-      exists(TypedContent tc2 | Stage3::consCand(tc, TFrontHead(tc2), _) |
+      exists(TypedContent tc2 | Stage4::consCand(tc, TFrontHead(tc2), _) |
         result = TConsCons(tc2, _, len - 1)
         or
         len = 2 and
@@ -2477,7 +2717,7 @@ private class AccessPathApproxCons1 extends AccessPathApproxCons, TCons1 {
       or
       exists(DataFlowType t |
         len = 1 and
-        Stage3::consCand(tc, TFrontNil(t), _) and
+        Stage4::consCand(tc, TFrontNil(t), _) and
         result = TNil(t)
       )
     )
@@ -2502,13 +2742,14 @@ private class AccessPathApproxOption extends TAccessPathApproxOption {
   }
 }
 
-private module Stage4Param implements MkStage<Stage3>::StageParam {
-  private module PrevStage = Stage3;
+private module Stage5Param implements MkStage<Stage4>::StageParam {
+  private module PrevStage = Stage4;
 
   class Ap = AccessPathApprox;
 
   class ApNil = AccessPathApproxNil;
 
+  pragma[nomagic]
   PrevStage::Ap getApprox(Ap ap) { result = ap.getFront() }
 
   ApNil getApNil(NodeEx node) {
@@ -2534,7 +2775,9 @@ private module Stage4Param implements MkStage<Stage3>::StageParam {
     NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
     ApNil ap, Configuration config, LocalCc lcc
   ) {
-    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap.getFront(), config, lcc)
+    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap.getType(), config, lcc) and
+    PrevStage::revFlow(node1, pragma[only_bind_into](state1), _, pragma[only_bind_into](config)) and
+    PrevStage::revFlowAlias(node2, pragma[only_bind_into](state2), _, pragma[only_bind_into](config))
   }
 
   pragma[nomagic]
@@ -2571,7 +2814,7 @@ private module Stage4Param implements MkStage<Stage3>::StageParam {
   predicate typecheckStore(Ap ap, DataFlowType contentType) { any() }
 }
 
-private module Stage4 = MkStage<Stage3>::Stage<Stage4Param>;
+private module Stage5 = MkStage<Stage4>::Stage<Stage5Param>;
 
 bindingset[conf, result]
 private Configuration unbindConf(Configuration conf) {
@@ -2585,8 +2828,8 @@ private predicate nodeMayUseSummary0(
 ) {
   exists(AccessPathApprox apa0 |
     c = n.getEnclosingCallable() and
-    Stage4::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
-    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TParameterPositionSome(pos),
+    Stage5::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
+    Stage5::fwdFlow(n, state, any(CallContextCall ccc), TParameterPositionSome(pos),
       TAccessPathApproxSome(apa), apa0, config)
   )
 }
@@ -2596,7 +2839,7 @@ private predicate nodeMayUseSummary(
   NodeEx n, FlowState state, AccessPathApprox apa, Configuration config
 ) {
   exists(DataFlowCallable c, ParameterPosition pos, ParamNodeEx p |
-    Stage4::parameterMayFlowThrough(p, apa, config) and
+    Stage5::parameterMayFlowThrough(p, apa, config) and
     nodeMayUseSummary0(n, c, pos, state, apa, config) and
     p.isParameterOf(c, pos)
   )
@@ -2606,8 +2849,8 @@ private newtype TSummaryCtx =
   TSummaryCtxNone() or
   TSummaryCtxSome(ParamNodeEx p, FlowState state, AccessPath ap) {
     exists(Configuration config |
-      Stage4::parameterMayFlowThrough(p, ap.getApprox(), config) and
-      Stage4::revFlow(p, state, _, config)
+      Stage5::parameterMayFlowThrough(p, ap.getApprox(), config) and
+      Stage5::revFlow(p, state, _, config)
     )
   }
 
@@ -2656,7 +2899,7 @@ private int count1to2unfold(AccessPathApproxCons1 apa, Configuration config) {
     len = apa.len() and
     result =
       strictcount(AccessPathFront apf |
-        Stage4::consCand(tc, any(AccessPathApprox ap | ap.getFront() = apf and ap.len() = len - 1),
+        Stage5::consCand(tc, any(AccessPathApprox ap | ap.getFront() = apf and ap.len() = len - 1),
           config)
       )
   )
@@ -2665,7 +2908,7 @@ private int count1to2unfold(AccessPathApproxCons1 apa, Configuration config) {
 private int countNodesUsingAccessPath(AccessPathApprox apa, Configuration config) {
   result =
     strictcount(NodeEx n, FlowState state |
-      Stage4::revFlow(n, state, apa, config) or nodeMayUseSummary(n, state, apa, config)
+      Stage5::revFlow(n, state, apa, config) or nodeMayUseSummary(n, state, apa, config)
     )
 }
 
@@ -2686,7 +2929,7 @@ private predicate expensiveLen1to2unfolding(AccessPathApproxCons1 apa, Configura
 private AccessPathApprox getATail(AccessPathApprox apa, Configuration config) {
   exists(TypedContent head |
     apa.pop(head) = result and
-    Stage4::consCand(head, result, config)
+    Stage5::consCand(head, result, config)
   )
 }
 
@@ -2768,7 +3011,7 @@ private newtype TPathNode =
     NodeEx node, FlowState state, CallContext cc, SummaryCtx sc, AccessPath ap, Configuration config
   ) {
     // A PathNode is introduced by a source ...
-    Stage4::revFlow(node, state, config) and
+    Stage5::revFlow(node, state, config) and
     sourceNode(node, state, config) and
     (
       if hasSourceCallCtx(config)
@@ -2782,7 +3025,7 @@ private newtype TPathNode =
     exists(PathNodeMid mid |
       pathStep(mid, node, state, cc, sc, ap) and
       pragma[only_bind_into](config) = mid.getConfiguration() and
-      Stage4::revFlow(node, state, ap.getApprox(), pragma[only_bind_into](config))
+      Stage5::revFlow(node, state, ap.getApprox(), pragma[only_bind_into](config))
     )
   } or
   TPathNodeSink(NodeEx node, FlowState state, Configuration config) {
@@ -2924,7 +3167,7 @@ private class AccessPathCons2 extends AccessPath, TAccessPathCons2 {
   override TypedContent getHead() { result = head1 }
 
   override AccessPath getTail() {
-    Stage4::consCand(head1, result.getApprox(), _) and
+    Stage5::consCand(head1, result.getApprox(), _) and
     result.getHead() = head2 and
     result.length() = len - 1
   }
@@ -2955,7 +3198,7 @@ private class AccessPathCons1 extends AccessPath, TAccessPathCons1 {
   override TypedContent getHead() { result = head }
 
   override AccessPath getTail() {
-    Stage4::consCand(head, result.getApprox(), _) and result.length() = len - 1
+    Stage5::consCand(head, result.getApprox(), _) and result.length() = len - 1
   }
 
   override AccessPathFrontHead getFront() { result = TFrontHead(head) }
@@ -3347,7 +3590,8 @@ private predicate pathStep(
     AccessPath ap0, NodeEx midnode, FlowState state0, Configuration conf, LocalCallContext localCC
   |
     pathNode(mid, midnode, state0, cc, sc, ap0, conf, localCC) and
-    localFlowBigStep(midnode, state0, node, state, false, ap.getFront(), conf, localCC) and
+    localFlowBigStep(midnode, state0, node, state, false, ap.(AccessPathNil).getType(), conf,
+      localCC) and
     ap0 instanceof AccessPathNil
   )
   or
@@ -3389,7 +3633,7 @@ private predicate pathReadStep(
 ) {
   ap0 = mid.getAp() and
   tc = ap0.getHead() and
-  Stage4::readStepCand(mid.getNodeEx(), tc.getContent(), node, mid.getConfiguration()) and
+  Stage5::readStepCand(mid.getNodeEx(), tc.getContent(), node, mid.getConfiguration()) and
   state = mid.getState() and
   cc = mid.getCallContext()
 }
@@ -3399,7 +3643,7 @@ private predicate pathStoreStep(
   PathNodeMid mid, NodeEx node, FlowState state, AccessPath ap0, TypedContent tc, CallContext cc
 ) {
   ap0 = mid.getAp() and
-  Stage4::storeStepCand(mid.getNodeEx(), _, tc, node, _, mid.getConfiguration()) and
+  Stage5::storeStepCand(mid.getNodeEx(), _, tc, node, _, mid.getConfiguration()) and
   state = mid.getState() and
   cc = mid.getCallContext()
 }
@@ -3436,7 +3680,7 @@ private NodeEx getAnOutNodeFlow(
   ReturnKindExt kind, DataFlowCall call, AccessPathApprox apa, Configuration config
 ) {
   result.asNode() = kind.getAnOutNode(call) and
-  Stage4::revFlow(result, _, apa, config)
+  Stage5::revFlow(result, _, apa, config)
 }
 
 /**
@@ -3472,7 +3716,7 @@ private predicate parameterCand(
   DataFlowCallable callable, ParameterPosition pos, AccessPathApprox apa, Configuration config
 ) {
   exists(ParamNodeEx p |
-    Stage4::revFlow(p, _, apa, config) and
+    Stage5::revFlow(p, _, apa, config) and
     p.isParameterOf(callable, pos)
   )
 }
@@ -3751,9 +3995,17 @@ predicate stageStats(
   n = 45 and
   Stage4::stats(false, nodes, fields, conscand, states, tuples, config)
   or
-  stage = "5 Fwd" and n = 50 and finalStats(true, nodes, fields, conscand, states, tuples)
+  stage = "5 Fwd" and
+  n = 50 and
+  Stage5::stats(true, nodes, fields, conscand, states, tuples, config)
   or
-  stage = "5 Rev" and n = 55 and finalStats(false, nodes, fields, conscand, states, tuples)
+  stage = "5 Rev" and
+  n = 55 and
+  Stage5::stats(false, nodes, fields, conscand, states, tuples, config)
+  or
+  stage = "6 Fwd" and n = 60 and finalStats(true, nodes, fields, conscand, states, tuples)
+  or
+  stage = "6 Rev" and n = 65 and finalStats(false, nodes, fields, conscand, states, tuples)
 }
 
 private module FlowExploration {
diff --git a/cpp/ql/lib/experimental/semmle/code/cpp/ir/dataflow/internal/DataFlowImplCommon.qll b/cpp/ql/lib/experimental/semmle/code/cpp/ir/dataflow/internal/DataFlowImplCommon.qll
index f981834a6d4..c66aefced8d 100644
--- a/cpp/ql/lib/experimental/semmle/code/cpp/ir/dataflow/internal/DataFlowImplCommon.qll
+++ b/cpp/ql/lib/experimental/semmle/code/cpp/ir/dataflow/internal/DataFlowImplCommon.qll
@@ -926,18 +926,46 @@ private module Cached {
     TReturnCtxNoFlowThrough() or
     TReturnCtxMaybeFlowThrough(ReturnKindExt kind)
 
+  cached
+  newtype TTypedContentApprox =
+    MkTypedContentApprox(ContentApprox c, DataFlowType t) {
+      exists(Content cont |
+        c = getContentApprox(cont) and
+        store(_, cont, _, _, t)
+      )
+    }
+
   cached
   newtype TTypedContent = MkTypedContent(Content c, DataFlowType t) { store(_, c, _, _, t) }
 
+  cached
+  TypedContent getATypedContent(TypedContentApprox c) {
+    exists(ContentApprox cls, DataFlowType t, Content cont |
+      c = MkTypedContentApprox(cls, pragma[only_bind_into](t)) and
+      result = MkTypedContent(cont, pragma[only_bind_into](t)) and
+      cls = getContentApprox(cont)
+    )
+  }
+
   cached
   newtype TAccessPathFront =
     TFrontNil(DataFlowType t) or
     TFrontHead(TypedContent tc)
 
+  cached
+  newtype TApproxAccessPathFront =
+    TApproxFrontNil(DataFlowType t) or
+    TApproxFrontHead(TypedContentApprox tc)
+
   cached
   newtype TAccessPathFrontOption =
     TAccessPathFrontNone() or
     TAccessPathFrontSome(AccessPathFront apf)
+
+  cached
+  newtype TApproxAccessPathFrontOption =
+    TApproxAccessPathFrontNone() or
+    TApproxAccessPathFrontSome(ApproxAccessPathFront apf)
 }
 
 /**
@@ -1353,6 +1381,75 @@ class ReturnCtx extends TReturnCtx {
   }
 }
 
+/** An approximated `Content` tagged with the type of a containing object. */
+class TypedContentApprox extends MkTypedContentApprox {
+  private ContentApprox c;
+  private DataFlowType t;
+
+  TypedContentApprox() { this = MkTypedContentApprox(c, t) }
+
+  /** Gets a typed content approximated by this value. */
+  TypedContent getATypedContent() { result = getATypedContent(this) }
+
+  /** Gets the container type. */
+  DataFlowType getContainerType() { result = t }
+
+  /** Gets a textual representation of this approximated content. */
+  string toString() { result = c.toString() }
+}
+
+/**
+ * The front of an approximated access path. This is either a head or a nil.
+ */
+abstract class ApproxAccessPathFront extends TApproxAccessPathFront {
+  abstract string toString();
+
+  abstract DataFlowType getType();
+
+  abstract boolean toBoolNonEmpty();
+
+  pragma[nomagic]
+  TypedContent getAHead() {
+    exists(TypedContentApprox cont |
+      this = TApproxFrontHead(cont) and
+      result = cont.getATypedContent()
+    )
+  }
+}
+
+class ApproxAccessPathFrontNil extends ApproxAccessPathFront, TApproxFrontNil {
+  private DataFlowType t;
+
+  ApproxAccessPathFrontNil() { this = TApproxFrontNil(t) }
+
+  override string toString() { result = ppReprType(t) }
+
+  override DataFlowType getType() { result = t }
+
+  override boolean toBoolNonEmpty() { result = false }
+}
+
+class ApproxAccessPathFrontHead extends ApproxAccessPathFront, TApproxFrontHead {
+  private TypedContentApprox tc;
+
+  ApproxAccessPathFrontHead() { this = TApproxFrontHead(tc) }
+
+  override string toString() { result = tc.toString() }
+
+  override DataFlowType getType() { result = tc.getContainerType() }
+
+  override boolean toBoolNonEmpty() { result = true }
+}
+
+/** An optional approximated access path front. */
+class ApproxAccessPathFrontOption extends TApproxAccessPathFrontOption {
+  string toString() {
+    this = TApproxAccessPathFrontNone() and result = "<none>"
+    or
+    this = TApproxAccessPathFrontSome(any(ApproxAccessPathFront apf | result = apf.toString()))
+  }
+}
+
 /** A `Content` tagged with the type of a containing object. */
 class TypedContent extends MkTypedContent {
   private Content c;
@@ -1385,7 +1482,7 @@ abstract class AccessPathFront extends TAccessPathFront {
 
   abstract DataFlowType getType();
 
-  abstract boolean toBoolNonEmpty();
+  abstract ApproxAccessPathFront toApprox();
 
   TypedContent getHead() { this = TFrontHead(result) }
 }
@@ -1399,7 +1496,7 @@ class AccessPathFrontNil extends AccessPathFront, TFrontNil {
 
   override DataFlowType getType() { result = t }
 
-  override boolean toBoolNonEmpty() { result = false }
+  override ApproxAccessPathFront toApprox() { result = TApproxFrontNil(t) }
 }
 
 class AccessPathFrontHead extends AccessPathFront, TFrontHead {
@@ -1411,7 +1508,7 @@ class AccessPathFrontHead extends AccessPathFront, TFrontHead {
 
   override DataFlowType getType() { result = tc.getContainerType() }
 
-  override boolean toBoolNonEmpty() { result = true }
+  override ApproxAccessPathFront toApprox() { result.getAHead() = tc }
 }
 
 /** An optional access path front. */
diff --git a/cpp/ql/lib/experimental/semmle/code/cpp/ir/dataflow/internal/DataFlowImplConsistency.qll b/cpp/ql/lib/experimental/semmle/code/cpp/ir/dataflow/internal/DataFlowImplConsistency.qll
index 3eacc21f356..e85e0cd92ec 100644
--- a/cpp/ql/lib/experimental/semmle/code/cpp/ir/dataflow/internal/DataFlowImplConsistency.qll
+++ b/cpp/ql/lib/experimental/semmle/code/cpp/ir/dataflow/internal/DataFlowImplConsistency.qll
@@ -260,4 +260,9 @@ module Consistency {
     not exists(unique(ParameterPosition pos0 | isParameterNode(p, c, pos0))) and
     msg = "Parameter node with multiple positions."
   }
+
+  query predicate uniqueContentApprox(Content c, string msg) {
+    not exists(unique(ContentApprox approx | approx = getContentApprox(c))) and
+    msg = "Non-unique content approximation."
+  }
 }
diff --git a/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImpl.qll b/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImpl.qll
index ccde916a3c2..6741ccc2f06 100644
--- a/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImpl.qll
+++ b/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImpl.qll
@@ -621,23 +621,6 @@ private predicate parameterFlowThroughAllowed(ParamNodeEx p, ReturnKindExt kind)
   )
 }
 
-/**
- * Holds if flow from a parameter at position `pos` inside `c` to a return node of
- * kind `kind` is allowed.
- *
- * We don't expect a parameter to return stored in itself, unless
- * explicitly allowed
- */
-bindingset[c, pos, kind]
-private predicate parameterFlowThroughAllowed(
-  DataFlowCallable c, ParameterPosition pos, ReturnKindExt kind
-) {
-  exists(ParamNodeEx p |
-    p.isParameterOf(c, pos) and
-    parameterFlowThroughAllowed(p, kind)
-  )
-}
-
 private module Stage1 implements StageSig {
   class Ap = Unit;
 
@@ -980,6 +963,12 @@ private module Stage1 implements StageSig {
   pragma[nomagic]
   predicate revFlow(NodeEx node, Configuration config) { revFlow(node, _, config) }
 
+  pragma[nomagic]
+  predicate revFlowAp(NodeEx node, Ap ap, Configuration config) {
+    revFlow(node, config) and
+    exists(ap)
+  }
+
   bindingset[node, state, config]
   predicate revFlow(NodeEx node, FlowState state, Ap ap, Configuration config) {
     revFlow(node, _, pragma[only_bind_into](config)) and
@@ -1022,9 +1011,13 @@ private module Stage1 implements StageSig {
   }
 
   pragma[nomagic]
-  predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config) {
+  predicate returnMayFlowThrough(
+    RetNodeEx ret, Ap argAp, Ap ap, ReturnKindExt kind, Configuration config
+  ) {
     throughFlowNodeCand(ret, config) and
-    kind = ret.getKind()
+    kind = ret.getKind() and
+    exists(argAp) and
+    exists(ap)
   }
 
   pragma[nomagic]
@@ -1189,6 +1182,8 @@ private signature module StageSig {
 
   predicate revFlow(NodeEx node, Configuration config);
 
+  predicate revFlowAp(NodeEx node, Ap ap, Configuration config);
+
   bindingset[node, state, config]
   predicate revFlow(NodeEx node, FlowState state, Ap ap, Configuration config);
 
@@ -1196,7 +1191,9 @@ private signature module StageSig {
 
   predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config);
 
-  predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config);
+  predicate returnMayFlowThrough(
+    RetNodeEx ret, Ap argAp, Ap ap, ReturnKindExt kind, Configuration config
+  );
 
   predicate storeStepCand(
     NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, DataFlowType contentType,
@@ -1281,21 +1278,43 @@ private module MkStage<StageSig PrevStage> {
     import Param
 
     /* Begin: Stage logic. */
-    bindingset[result, apa]
-    private ApApprox unbindApa(ApApprox apa) {
-      pragma[only_bind_out](apa) = pragma[only_bind_out](result)
+    // use an alias as a workaround for bad functionality-induced joins
+    pragma[nomagic]
+    private predicate revFlowApAlias(NodeEx node, ApApprox apa, Configuration config) {
+      PrevStage::revFlowAp(node, apa, config)
+    }
+
+    pragma[nomagic]
+    private predicate flowIntoCallApa(
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, ApApprox apa,
+      Configuration config
+    ) {
+      flowIntoCall(call, arg, p, allowsFieldFlow, config) and
+      PrevStage::revFlowAp(p, pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
+      revFlowApAlias(arg, pragma[only_bind_into](apa), pragma[only_bind_into](config))
+    }
+
+    pragma[nomagic]
+    private predicate flowOutOfCallApa(
+      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
+      ApApprox apa, Configuration config
+    ) {
+      flowOutOfCall(call, ret, kind, out, allowsFieldFlow, config) and
+      PrevStage::revFlowAp(out, pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
+      revFlowApAlias(ret, pragma[only_bind_into](apa), pragma[only_bind_into](config))
     }
 
     pragma[nomagic]
     private predicate flowThroughOutOfCall(
-      DataFlowCall call, DataFlowCallable c, CcCall ccc, RetNodeEx ret, ReturnKindExt kind,
-      NodeEx out, boolean allowsFieldFlow, Configuration config
+      DataFlowCall call, CcCall ccc, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow,
+      ApApprox argApa, ApApprox apa, Configuration config
     ) {
-      flowOutOfCall(call, ret, kind, out, allowsFieldFlow, pragma[only_bind_into](config)) and
-      PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
-      PrevStage::returnMayFlowThrough(ret, kind, pragma[only_bind_into](config)) and
-      matchesCall(ccc, call) and
-      c = ret.getEnclosingCallable()
+      exists(ReturnKindExt kind |
+        flowOutOfCallApa(call, ret, kind, out, allowsFieldFlow, apa, pragma[only_bind_into](config)) and
+        PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
+        PrevStage::returnMayFlowThrough(ret, argApa, apa, kind, pragma[only_bind_into](config)) and
+        matchesCall(ccc, call)
+      )
     }
 
     /**
@@ -1307,39 +1326,50 @@ private module MkStage<StageSig PrevStage> {
      * corresponding parameter position and access path of that argument, respectively.
      */
     pragma[nomagic]
+    additional predicate fwdFlow(
+      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      Ap ap, ApApprox apa, Configuration config
+    ) {
+      fwdFlow0(node, state, cc, summaryCtx, argAp, ap, apa, config) and
+      PrevStage::revFlow(node, state, apa, config) and
+      filter(node, state, ap, config)
+    }
+
+    pragma[inline]
     additional predicate fwdFlow(
       NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
       Ap ap, Configuration config
     ) {
-      fwdFlow0(node, state, cc, summaryCtx, argAp, ap, config) and
-      PrevStage::revFlow(node, state, unbindApa(getApprox(ap)), config) and
-      filter(node, state, ap, config)
+      fwdFlow(node, state, cc, summaryCtx, argAp, ap, _, config)
     }
 
     pragma[nomagic]
     private predicate fwdFlow0(
       NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      Ap ap, Configuration config
+      Ap ap, ApApprox apa, Configuration config
     ) {
       sourceNode(node, state, config) and
       (if hasSourceCallCtx(config) then cc = ccSomeCall() else cc = ccNone()) and
       argAp = apNone() and
       summaryCtx = TParameterPositionNone() and
-      ap = getApNil(node)
+      ap = getApNil(node) and
+      apa = getApprox(ap)
       or
-      exists(NodeEx mid, FlowState state0, Ap ap0, LocalCc localCc |
-        fwdFlow(mid, state0, cc, summaryCtx, argAp, ap0, config) and
+      exists(NodeEx mid, FlowState state0, Ap ap0, ApApprox apa0, LocalCc localCc |
+        fwdFlow(mid, state0, cc, summaryCtx, argAp, ap0, apa0, config) and
         localCc = getLocalCc(mid, cc)
       |
         localStep(mid, state0, node, state, true, _, config, localCc) and
-        ap = ap0
+        ap = ap0 and
+        apa = apa0
         or
         localStep(mid, state0, node, state, false, ap, config, localCc) and
-        ap0 instanceof ApNil
+        ap0 instanceof ApNil and
+        apa = getApprox(ap)
       )
       or
       exists(NodeEx mid |
-        fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, apa, pragma[only_bind_into](config)) and
         jumpStep(mid, node, config) and
         cc = ccNone() and
         summaryCtx = TParameterPositionNone() and
@@ -1352,7 +1382,8 @@ private module MkStage<StageSig PrevStage> {
         cc = ccNone() and
         summaryCtx = TParameterPositionNone() and
         argAp = apNone() and
-        ap = getApNil(node)
+        ap = getApNil(node) and
+        apa = getApprox(ap)
       )
       or
       exists(NodeEx mid, FlowState state0, ApNil nil |
@@ -1361,32 +1392,32 @@ private module MkStage<StageSig PrevStage> {
         cc = ccNone() and
         summaryCtx = TParameterPositionNone() and
         argAp = apNone() and
-        ap = getApNil(node)
+        ap = getApNil(node) and
+        apa = getApprox(ap)
       )
       or
       // store
       exists(TypedContent tc, Ap ap0 |
         fwdFlowStore(_, ap0, tc, node, state, cc, summaryCtx, argAp, config) and
-        ap = apCons(tc, ap0)
+        ap = apCons(tc, ap0) and
+        apa = getApprox(ap)
       )
       or
       // read
       exists(Ap ap0, Content c |
         fwdFlowRead(ap0, c, _, node, state, cc, summaryCtx, argAp, config) and
-        fwdFlowConsCand(ap0, c, ap, config)
+        fwdFlowConsCand(ap0, c, ap, config) and
+        apa = getApprox(ap)
       )
       or
       // flow into a callable
-      exists(ApApprox apa |
-        fwdFlowIn(_, node, state, _, cc, _, _, ap, config) and
-        apa = getApprox(ap) and
-        if PrevStage::parameterMayFlowThrough(node, apa, config)
-        then (
-          summaryCtx = TParameterPositionSome(node.(ParamNodeEx).getPosition()) and
-          argAp = apSome(ap)
-        ) else (
-          summaryCtx = TParameterPositionNone() and argAp = apNone()
-        )
+      fwdFlowIn(_, node, state, _, cc, _, _, ap, apa, config) and
+      if PrevStage::parameterMayFlowThrough(node, apa, config)
+      then (
+        summaryCtx = TParameterPositionSome(node.(ParamNodeEx).getPosition()) and
+        argAp = apSome(ap)
+      ) else (
+        summaryCtx = TParameterPositionNone() and argAp = apNone()
       )
       or
       // flow out of a callable
@@ -1394,8 +1425,8 @@ private module MkStage<StageSig PrevStage> {
         DataFlowCall call, RetNodeEx ret, boolean allowsFieldFlow, CcNoCall innercc,
         DataFlowCallable inner
       |
-        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, config) and
-        flowOutOfCall(call, ret, _, node, allowsFieldFlow, config) and
+        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, apa, config) and
+        flowOutOfCallApa(call, ret, _, node, allowsFieldFlow, apa, config) and
         inner = ret.getEnclosingCallable() and
         cc = getCallContextReturn(inner, call, innercc) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
@@ -1403,7 +1434,7 @@ private module MkStage<StageSig PrevStage> {
       or
       // flow through a callable
       exists(DataFlowCall call, ParameterPosition summaryCtx0, Ap argAp0 |
-        fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, config) and
+        fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, apa, config) and
         fwdFlowIsEntered(call, cc, summaryCtx, argAp, summaryCtx0, argAp0, config)
       )
     }
@@ -1413,9 +1444,9 @@ private module MkStage<StageSig PrevStage> {
       NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc,
       ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
     ) {
-      exists(DataFlowType contentType |
-        fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, config) and
-        PrevStage::storeStepCand(node1, unbindApa(getApprox(ap1)), tc, node2, contentType, config) and
+      exists(DataFlowType contentType, ApApprox apa1 |
+        fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, apa1, config) and
+        PrevStage::storeStepCand(node1, apa1, tc, node2, contentType, config) and
         typecheckStore(ap1, contentType)
       )
     }
@@ -1433,43 +1464,104 @@ private module MkStage<StageSig PrevStage> {
       )
     }
 
+    private class ApNonNil instanceof Ap {
+      pragma[nomagic]
+      ApNonNil() { not this instanceof ApNil }
+
+      string toString() { result = "" }
+    }
+
+    pragma[nomagic]
+    private predicate fwdFlowRead0(
+      NodeEx node1, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      ApNonNil ap, Configuration config
+    ) {
+      fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
+      PrevStage::readStepCand(node1, _, _, config)
+    }
+
     pragma[nomagic]
     private predicate fwdFlowRead(
       Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc,
       ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
     ) {
-      fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
+      fwdFlowRead0(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, c, node2, config) and
       getHeadContent(ap) = c
     }
 
     pragma[nomagic]
     private predicate fwdFlowIn(
-      DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, Cc innercc,
-      ParameterPositionOption summaryCtx, ApOption argAp, Ap ap, Configuration config
+      DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, CcCall innercc,
+      ParameterPositionOption summaryCtx, ApOption argAp, Ap ap, ApApprox apa, Configuration config
     ) {
       exists(ArgNodeEx arg, boolean allowsFieldFlow |
-        fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, config) and
-        flowIntoCall(call, arg, p, allowsFieldFlow, config) and
+        fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, apa, config) and
+        flowIntoCallApa(call, arg, p, allowsFieldFlow, apa, config) and
         innercc = getCallContextCall(call, p.getEnclosingCallable(), outercc) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
+    pragma[nomagic]
+    private predicate fwdFlowRetFromArg(
+      RetNodeEx ret, FlowState state, CcCall ccc, ParameterPosition summaryCtx, ParamNodeEx p,
+      Ap argAp, ApApprox argApa, Ap ap, ApApprox apa, Configuration config
+    ) {
+      exists(DataFlowCallable c, ReturnKindExt kind |
+        fwdFlow(pragma[only_bind_into](ret), state, ccc,
+          TParameterPositionSome(pragma[only_bind_into](summaryCtx)), apSome(argAp), ap, apa, config) and
+        getApprox(argAp) = argApa and
+        c = ret.getEnclosingCallable() and
+        kind = ret.getKind() and
+        p.isParameterOf(c, pragma[only_bind_into](summaryCtx)) and
+        parameterFlowThroughAllowed(p, kind)
+      )
+    }
+
+    pragma[inline]
+    private predicate fwdFlowInMayFlowThrough(
+      DataFlowCall call, Cc cc, CcCall innerCc, ParameterPositionOption summaryCtx, ApOption argAp,
+      ParamNodeEx param, Ap ap, ApApprox apa, Configuration config
+    ) {
+      fwdFlowIn(call, pragma[only_bind_into](param), _, cc, innerCc, summaryCtx, argAp, ap,
+        pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
+      PrevStage::parameterMayFlowThrough(param, apa, config)
+    }
+
+    // dedup before joining with `flowThroughOutOfCall`
+    pragma[nomagic]
+    private predicate fwdFlowInMayFlowThroughProj(
+      DataFlowCall call, CcCall innerCc, ApApprox apa, Configuration config
+    ) {
+      fwdFlowInMayFlowThrough(call, _, innerCc, _, _, _, _, apa, config)
+    }
+
+    /**
+     * Same as `flowThroughOutOfCall`, but restricted to calls that are reached
+     * in the flow covered by `fwdFlow`, where data might flow through the target
+     * callable and back out at `call`.
+     */
+    pragma[nomagic]
+    private predicate fwdFlowThroughOutOfCall(
+      DataFlowCall call, CcCall ccc, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow,
+      ApApprox argApa, ApApprox apa, Configuration config
+    ) {
+      fwdFlowInMayFlowThroughProj(call, ccc, argApa, config) and
+      flowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, argApa, apa, config)
+    }
+
     pragma[nomagic]
     private predicate fwdFlowOutFromArg(
       DataFlowCall call, NodeEx out, FlowState state, ParameterPosition summaryCtx, Ap argAp, Ap ap,
-      Configuration config
+      ApApprox apa, Configuration config
     ) {
-      exists(
-        DataFlowCallable c, RetNodeEx ret, ReturnKindExt kind, boolean allowsFieldFlow, CcCall ccc
-      |
-        fwdFlow(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc),
-          TParameterPositionSome(pragma[only_bind_into](summaryCtx)), apSome(argAp), ap, config) and
-        flowThroughOutOfCall(call, pragma[only_bind_into](c), ccc, ret, kind, out, allowsFieldFlow,
+      exists(RetNodeEx ret, boolean allowsFieldFlow, CcCall ccc, ApApprox argApa |
+        fwdFlowRetFromArg(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc),
+          summaryCtx, _, argAp, pragma[only_bind_into](argApa), ap, pragma[only_bind_into](apa),
           config) and
-        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
-        parameterFlowThroughAllowed(c, pragma[only_bind_into](summaryCtx), kind)
+        fwdFlowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, argApa, apa, config) and
+        (if allowsFieldFlow = false then ap instanceof ApNil else any())
       )
     }
 
@@ -1483,8 +1575,7 @@ private module MkStage<StageSig PrevStage> {
       ParameterPosition pos, Ap ap, Configuration config
     ) {
       exists(ParamNodeEx param |
-        fwdFlowIn(call, param, _, cc, _, summaryCtx, argAp, ap, config) and
-        PrevStage::parameterMayFlowThrough(param, unbindApa(getApprox(ap)), config) and
+        fwdFlowInMayFlowThrough(call, cc, _, summaryCtx, argAp, param, ap, _, config) and
         pos = param.getPosition()
       )
     }
@@ -1505,41 +1596,55 @@ private module MkStage<StageSig PrevStage> {
       fwdFlowConsCand(ap1, c, ap2, config)
     }
 
-    pragma[nomagic]
-    private predicate returnFlowsThrough0(
-      RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, DataFlowCallable c,
-      ParameterPosition ppos, Ap argAp, Ap ap, Configuration config
-    ) {
-      exists(boolean allowsFieldFlow |
-        fwdFlow(ret, state, ccc, TParameterPositionSome(ppos), apSome(argAp), ap, config) and
-        flowThroughOutOfCall(_, c, _, pragma[only_bind_into](ret), kind, _, allowsFieldFlow,
-          pragma[only_bind_into](config)) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
-      )
-    }
-
     pragma[nomagic]
     private predicate returnFlowsThrough(
       RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, ParamNodeEx p, Ap argAp,
       Ap ap, Configuration config
     ) {
-      exists(DataFlowCallable c, ParameterPosition ppos |
-        returnFlowsThrough0(ret, kind, state, ccc, c, ppos, argAp, ap, config) and
-        p.isParameterOf(c, ppos) and
-        parameterFlowThroughAllowed(p, kind)
+      exists(boolean allowsFieldFlow, ApApprox argApa, ApApprox apa |
+        fwdFlowRetFromArg(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc), _, p,
+          argAp, pragma[only_bind_into](argApa), ap, pragma[only_bind_into](apa), config) and
+        kind = ret.getKind() and
+        fwdFlowThroughOutOfCall(_, ccc, ret, _, allowsFieldFlow, argApa, apa, config) and
+        (if allowsFieldFlow = false then ap instanceof ApNil else any())
       )
     }
 
     pragma[nomagic]
     private predicate flowThroughIntoCall(
-      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp,
+      Configuration config
     ) {
-      exists(Ap argAp |
-        flowIntoCall(call, pragma[only_bind_into](arg), pragma[only_bind_into](p), allowsFieldFlow,
+      exists(ApApprox argApa |
+        flowIntoCallApa(call, pragma[only_bind_into](arg), pragma[only_bind_into](p),
+          allowsFieldFlow, argApa, pragma[only_bind_into](config)) and
+        fwdFlow(arg, _, _, _, _, pragma[only_bind_into](argAp), argApa,
           pragma[only_bind_into](config)) and
-        fwdFlow(arg, _, _, _, _, pragma[only_bind_into](argAp), pragma[only_bind_into](config)) and
         returnFlowsThrough(_, _, _, _, p, pragma[only_bind_into](argAp), _,
-          pragma[only_bind_into](config))
+          pragma[only_bind_into](config)) and
+        if allowsFieldFlow = false then argAp instanceof ApNil else any()
+      )
+    }
+
+    pragma[nomagic]
+    private predicate flowIntoCallAp(
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap ap,
+      Configuration config
+    ) {
+      exists(ApApprox apa |
+        flowIntoCallApa(call, arg, p, allowsFieldFlow, apa, config) and
+        fwdFlow(arg, _, _, _, _, ap, apa, config)
+      )
+    }
+
+    pragma[nomagic]
+    private predicate flowOutOfCallAp(
+      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
+      Ap ap, Configuration config
+    ) {
+      exists(ApApprox apa |
+        flowOutOfCallApa(call, ret, kind, out, allowsFieldFlow, apa, config) and
+        fwdFlow(ret, _, _, _, _, ap, apa, config)
       )
     }
 
@@ -1628,7 +1733,7 @@ private module MkStage<StageSig PrevStage> {
       // flow into a callable
       exists(ParamNodeEx p, boolean allowsFieldFlow |
         revFlow(p, state, TReturnCtxNone(), returnAp, ap, config) and
-        flowIntoCall(_, node, p, allowsFieldFlow, config) and
+        flowIntoCallAp(_, node, p, allowsFieldFlow, ap, config) and
         (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
         returnCtx = TReturnCtxNone()
       )
@@ -1682,22 +1787,41 @@ private module MkStage<StageSig PrevStage> {
     ) {
       exists(NodeEx out, boolean allowsFieldFlow |
         revFlow(out, state, returnCtx, returnAp, ap, config) and
-        flowOutOfCall(call, ret, kind, out, allowsFieldFlow, config) and
+        flowOutOfCallAp(call, ret, kind, out, allowsFieldFlow, ap, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
+    /**
+     * Same as `flowThroughIntoCall`, but restricted to calls that are reached
+     * in the flow covered by `revFlow`, where data might flow through the target
+     * callable and back out at `call`.
+     */
+    pragma[nomagic]
+    private predicate revFlowThroughIntoCall(
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp,
+      Configuration config
+    ) {
+      flowThroughIntoCall(call, arg, p, allowsFieldFlow, argAp, config) and
+      revFlowIsReturned(call, _, _, _, _, config)
+    }
+
+    pragma[nomagic]
+    private predicate revFlowParamToReturn(
+      ParamNodeEx p, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap, Configuration config
+    ) {
+      revFlow(p, state, TReturnCtxMaybeFlowThrough(kind), apSome(returnAp), ap, config) and
+      parameterFlowThroughAllowed(p, kind)
+    }
+
     pragma[nomagic]
     private predicate revFlowInToReturn(
       DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap,
       Configuration config
     ) {
       exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(pragma[only_bind_into](p), state,
-          TReturnCtxMaybeFlowThrough(pragma[only_bind_into](kind)), apSome(returnAp), ap, config) and
-        flowThroughIntoCall(call, arg, p, allowsFieldFlow, config) and
-        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
-        parameterFlowThroughAllowed(p, kind)
+        revFlowParamToReturn(p, state, kind, returnAp, ap, config) and
+        revFlowThroughIntoCall(call, arg, p, allowsFieldFlow, ap, config)
       )
     }
 
@@ -1750,6 +1874,11 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     predicate revFlow(NodeEx node, Configuration config) { revFlow(node, _, _, _, _, config) }
 
+    pragma[nomagic]
+    predicate revFlowAp(NodeEx node, Ap ap, Configuration config) {
+      revFlow(node, _, _, _, ap, config)
+    }
+
     // use an alias as a workaround for bad functionality-induced joins
     pragma[nomagic]
     additional predicate revFlowAlias(NodeEx node, Configuration config) {
@@ -1786,9 +1915,9 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate parameterFlowsThroughRev(
-      ParamNodeEx p, Ap ap, ReturnKindExt kind, Configuration config
+      ParamNodeEx p, Ap ap, ReturnKindExt kind, Ap returnAp, Configuration config
     ) {
-      revFlow(p, _, TReturnCtxMaybeFlowThrough(kind), apSome(_), ap, config) and
+      revFlow(p, _, TReturnCtxMaybeFlowThrough(kind), apSome(returnAp), ap, config) and
       parameterFlowThroughAllowed(p, kind)
     }
 
@@ -1796,27 +1925,36 @@ private module MkStage<StageSig PrevStage> {
     predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
       exists(RetNodeEx ret, ReturnKindExt kind |
         returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
-        parameterFlowsThroughRev(p, ap, kind, config)
+        parameterFlowsThroughRev(p, ap, kind, _, config)
       )
     }
 
     pragma[nomagic]
-    predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config) {
-      exists(ParamNodeEx p, Ap ap |
-        returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
-        parameterFlowsThroughRev(p, ap, kind, config)
+    predicate returnMayFlowThrough(
+      RetNodeEx ret, Ap argAp, Ap ap, ReturnKindExt kind, Configuration config
+    ) {
+      exists(ParamNodeEx p |
+        returnFlowsThrough(ret, kind, _, _, p, argAp, ap, config) and
+        parameterFlowsThroughRev(p, argAp, kind, ap, config)
+      )
+    }
+
+    pragma[nomagic]
+    predicate revFlowInToReturnIsReturned(
+      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnCtx returnCtx, ApOption returnAp,
+      Ap ap, Configuration config
+    ) {
+      exists(ReturnKindExt returnKind0, Ap returnAp0 |
+        revFlowInToReturn(call, arg, state, returnKind0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
       )
     }
 
     pragma[nomagic]
     predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
-      exists(
-        ReturnKindExt returnKind0, Ap returnAp0, ArgNodeEx arg, FlowState state,
-        ReturnCtx returnCtx, ApOption returnAp, Ap ap
-      |
+      exists(ArgNodeEx arg, FlowState state, ReturnCtx returnCtx, ApOption returnAp, Ap ap |
         revFlow(arg, state, returnCtx, returnAp, ap, config) and
-        revFlowInToReturn(call, arg, state, returnKind0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
+        revFlowInToReturnIsReturned(call, arg, state, returnCtx, returnAp, ap, config)
       )
     }
 
@@ -2179,16 +2317,16 @@ private module LocalFlowBigStep {
   pragma[nomagic]
   predicate localFlowBigStep(
     NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
-    AccessPathFrontNil apf, Configuration config, LocalCallContext callContext
+    DataFlowType t, Configuration config, LocalCallContext callContext
   ) {
-    localFlowStepPlus(node1, state1, node2, preservesValue, apf.getType(), config, callContext) and
+    localFlowStepPlus(node1, state1, node2, preservesValue, t, config, callContext) and
     localFlowExit(node2, state1, config) and
     state1 = state2
     or
     additionalLocalFlowStepNodeCand2(node1, state1, node2, state2, config) and
     state1 != state2 and
     preservesValue = false and
-    apf = TFrontNil(node2.getDataFlowType()) and
+    t = node2.getDataFlowType() and
     callContext.relevantFor(node1.getEnclosingCallable()) and
     not exists(DataFlowCall call | call = callContext.(LocalCallContextSpecificCall).getCall() |
       isUnreachableInCallCached(node1.asNode(), call) or
@@ -2202,11 +2340,87 @@ private import LocalFlowBigStep
 private module Stage3Param implements MkStage<Stage2>::StageParam {
   private module PrevStage = Stage2;
 
+  class Ap = ApproxAccessPathFront;
+
+  class ApNil = ApproxAccessPathFrontNil;
+
+  PrevStage::Ap getApprox(Ap ap) { result = ap.toBoolNonEmpty() }
+
+  ApNil getApNil(NodeEx node) {
+    PrevStage::revFlow(node, _) and result = TApproxFrontNil(node.getDataFlowType())
+  }
+
+  bindingset[tc, tail]
+  Ap apCons(TypedContent tc, Ap tail) { result.getAHead() = tc and exists(tail) }
+
+  pragma[noinline]
+  Content getHeadContent(Ap ap) { result = ap.getAHead().getContent() }
+
+  class ApOption = ApproxAccessPathFrontOption;
+
+  ApOption apNone() { result = TApproxAccessPathFrontNone() }
+
+  ApOption apSome(Ap ap) { result = TApproxAccessPathFrontSome(ap) }
+
+  import BooleanCallContext
+
+  predicate localStep(
+    NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
+    ApproxAccessPathFrontNil ap, Configuration config, LocalCc lcc
+  ) {
+    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap.getType(), config, _) and
+    exists(lcc)
+  }
+
+  predicate flowOutOfCall = flowOutOfCallNodeCand2/6;
+
+  predicate flowIntoCall = flowIntoCallNodeCand2/5;
+
+  pragma[nomagic]
+  private predicate expectsContentCand(NodeEx node, Ap ap, Configuration config) {
+    exists(Content c |
+      PrevStage::revFlow(node, pragma[only_bind_into](config)) and
+      PrevStage::readStepCand(_, c, _, pragma[only_bind_into](config)) and
+      expectsContentEx(node, c) and
+      c = ap.getAHead().getContent()
+    )
+  }
+
+  pragma[nomagic]
+  private predicate castingNodeEx(NodeEx node) { node.asNode() instanceof CastingNode }
+
+  bindingset[node, state, ap, config]
+  predicate filter(NodeEx node, FlowState state, Ap ap, Configuration config) {
+    exists(state) and
+    exists(config) and
+    (if castingNodeEx(node) then compatibleTypes(node.getDataFlowType(), ap.getType()) else any()) and
+    (
+      notExpectsContent(node)
+      or
+      expectsContentCand(node, ap, config)
+    )
+  }
+
+  bindingset[ap, contentType]
+  predicate typecheckStore(Ap ap, DataFlowType contentType) {
+    // We need to typecheck stores here, since reverse flow through a getter
+    // might have a different type here compared to inside the getter.
+    compatibleTypes(ap.getType(), contentType)
+  }
+}
+
+private module Stage3 implements StageSig {
+  import MkStage<Stage2>::Stage<Stage3Param>
+}
+
+private module Stage4Param implements MkStage<Stage3>::StageParam {
+  private module PrevStage = Stage3;
+
   class Ap = AccessPathFront;
 
   class ApNil = AccessPathFrontNil;
 
-  PrevStage::Ap getApprox(Ap ap) { result = ap.toBoolNonEmpty() }
+  PrevStage::Ap getApprox(Ap ap) { result = ap.toApprox() }
 
   ApNil getApNil(NodeEx node) {
     PrevStage::revFlow(node, _) and result = TFrontNil(node.getDataFlowType())
@@ -2226,16 +2440,42 @@ private module Stage3Param implements MkStage<Stage2>::StageParam {
 
   import BooleanCallContext
 
+  pragma[nomagic]
   predicate localStep(
     NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
     ApNil ap, Configuration config, LocalCc lcc
   ) {
-    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap, config, _) and exists(lcc)
+    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap.getType(), config, _) and
+    PrevStage::revFlow(node1, pragma[only_bind_into](state1), _, pragma[only_bind_into](config)) and
+    PrevStage::revFlowAlias(node2, pragma[only_bind_into](state2), _, pragma[only_bind_into](config)) and
+    exists(lcc)
   }
 
-  predicate flowOutOfCall = flowOutOfCallNodeCand2/6;
+  pragma[nomagic]
+  predicate flowOutOfCall(
+    DataFlowCall call, RetNodeEx node1, ReturnKindExt kind, NodeEx node2, boolean allowsFieldFlow,
+    Configuration config
+  ) {
+    exists(FlowState state |
+      flowOutOfCallNodeCand2(call, node1, kind, node2, allowsFieldFlow, config) and
+      PrevStage::revFlow(node2, pragma[only_bind_into](state), _, pragma[only_bind_into](config)) and
+      PrevStage::revFlowAlias(node1, pragma[only_bind_into](state), _,
+        pragma[only_bind_into](config))
+    )
+  }
 
-  predicate flowIntoCall = flowIntoCallNodeCand2/5;
+  pragma[nomagic]
+  predicate flowIntoCall(
+    DataFlowCall call, ArgNodeEx node1, ParamNodeEx node2, boolean allowsFieldFlow,
+    Configuration config
+  ) {
+    exists(FlowState state |
+      flowIntoCallNodeCand2(call, node1, node2, allowsFieldFlow, config) and
+      PrevStage::revFlow(node2, pragma[only_bind_into](state), _, pragma[only_bind_into](config)) and
+      PrevStage::revFlowAlias(node1, pragma[only_bind_into](state), _,
+        pragma[only_bind_into](config))
+    )
+  }
 
   pragma[nomagic]
   private predicate clearSet(NodeEx node, ContentSet c, Configuration config) {
@@ -2291,8 +2531,8 @@ private module Stage3Param implements MkStage<Stage2>::StageParam {
   }
 }
 
-private module Stage3 implements StageSig {
-  import MkStage<Stage2>::Stage<Stage3Param>
+private module Stage4 implements StageSig {
+  import MkStage<Stage3>::Stage<Stage4Param>
 }
 
 /**
@@ -2303,8 +2543,8 @@ private predicate flowCandSummaryCtx(
   NodeEx node, FlowState state, AccessPathFront argApf, Configuration config
 ) {
   exists(AccessPathFront apf |
-    Stage3::revFlow(node, state, TReturnCtxMaybeFlowThrough(_), _, apf, config) and
-    Stage3::fwdFlow(node, state, any(Stage3::CcCall ccc), _, TAccessPathFrontSome(argApf), apf,
+    Stage4::revFlow(node, state, TReturnCtxMaybeFlowThrough(_), _, apf, config) and
+    Stage4::fwdFlow(node, state, any(Stage4::CcCall ccc), _, TAccessPathFrontSome(argApf), apf,
       config)
   )
 }
@@ -2315,10 +2555,10 @@ private predicate flowCandSummaryCtx(
  */
 private predicate expensiveLen2unfolding(TypedContent tc, Configuration config) {
   exists(int tails, int nodes, int apLimit, int tupleLimit |
-    tails = strictcount(AccessPathFront apf | Stage3::consCand(tc, apf, config)) and
+    tails = strictcount(AccessPathFront apf | Stage4::consCand(tc, apf, config)) and
     nodes =
       strictcount(NodeEx n, FlowState state |
-        Stage3::revFlow(n, state, any(AccessPathFrontHead apf | apf.getHead() = tc), config)
+        Stage4::revFlow(n, state, any(AccessPathFrontHead apf | apf.getHead() = tc), config)
         or
         flowCandSummaryCtx(n, state, any(AccessPathFrontHead apf | apf.getHead() = tc), config)
       ) and
@@ -2332,11 +2572,11 @@ private predicate expensiveLen2unfolding(TypedContent tc, Configuration config)
 private newtype TAccessPathApprox =
   TNil(DataFlowType t) or
   TConsNil(TypedContent tc, DataFlowType t) {
-    Stage3::consCand(tc, TFrontNil(t), _) and
+    Stage4::consCand(tc, TFrontNil(t), _) and
     not expensiveLen2unfolding(tc, _)
   } or
   TConsCons(TypedContent tc1, TypedContent tc2, int len) {
-    Stage3::consCand(tc1, TFrontHead(tc2), _) and
+    Stage4::consCand(tc1, TFrontHead(tc2), _) and
     len in [2 .. accessPathLimit()] and
     not expensiveLen2unfolding(tc1, _)
   } or
@@ -2466,7 +2706,7 @@ private class AccessPathApproxCons1 extends AccessPathApproxCons, TCons1 {
   override AccessPathApprox pop(TypedContent head) {
     head = tc and
     (
-      exists(TypedContent tc2 | Stage3::consCand(tc, TFrontHead(tc2), _) |
+      exists(TypedContent tc2 | Stage4::consCand(tc, TFrontHead(tc2), _) |
         result = TConsCons(tc2, _, len - 1)
         or
         len = 2 and
@@ -2477,7 +2717,7 @@ private class AccessPathApproxCons1 extends AccessPathApproxCons, TCons1 {
       or
       exists(DataFlowType t |
         len = 1 and
-        Stage3::consCand(tc, TFrontNil(t), _) and
+        Stage4::consCand(tc, TFrontNil(t), _) and
         result = TNil(t)
       )
     )
@@ -2502,13 +2742,14 @@ private class AccessPathApproxOption extends TAccessPathApproxOption {
   }
 }
 
-private module Stage4Param implements MkStage<Stage3>::StageParam {
-  private module PrevStage = Stage3;
+private module Stage5Param implements MkStage<Stage4>::StageParam {
+  private module PrevStage = Stage4;
 
   class Ap = AccessPathApprox;
 
   class ApNil = AccessPathApproxNil;
 
+  pragma[nomagic]
   PrevStage::Ap getApprox(Ap ap) { result = ap.getFront() }
 
   ApNil getApNil(NodeEx node) {
@@ -2534,7 +2775,9 @@ private module Stage4Param implements MkStage<Stage3>::StageParam {
     NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
     ApNil ap, Configuration config, LocalCc lcc
   ) {
-    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap.getFront(), config, lcc)
+    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap.getType(), config, lcc) and
+    PrevStage::revFlow(node1, pragma[only_bind_into](state1), _, pragma[only_bind_into](config)) and
+    PrevStage::revFlowAlias(node2, pragma[only_bind_into](state2), _, pragma[only_bind_into](config))
   }
 
   pragma[nomagic]
@@ -2571,7 +2814,7 @@ private module Stage4Param implements MkStage<Stage3>::StageParam {
   predicate typecheckStore(Ap ap, DataFlowType contentType) { any() }
 }
 
-private module Stage4 = MkStage<Stage3>::Stage<Stage4Param>;
+private module Stage5 = MkStage<Stage4>::Stage<Stage5Param>;
 
 bindingset[conf, result]
 private Configuration unbindConf(Configuration conf) {
@@ -2585,8 +2828,8 @@ private predicate nodeMayUseSummary0(
 ) {
   exists(AccessPathApprox apa0 |
     c = n.getEnclosingCallable() and
-    Stage4::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
-    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TParameterPositionSome(pos),
+    Stage5::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
+    Stage5::fwdFlow(n, state, any(CallContextCall ccc), TParameterPositionSome(pos),
       TAccessPathApproxSome(apa), apa0, config)
   )
 }
@@ -2596,7 +2839,7 @@ private predicate nodeMayUseSummary(
   NodeEx n, FlowState state, AccessPathApprox apa, Configuration config
 ) {
   exists(DataFlowCallable c, ParameterPosition pos, ParamNodeEx p |
-    Stage4::parameterMayFlowThrough(p, apa, config) and
+    Stage5::parameterMayFlowThrough(p, apa, config) and
     nodeMayUseSummary0(n, c, pos, state, apa, config) and
     p.isParameterOf(c, pos)
   )
@@ -2606,8 +2849,8 @@ private newtype TSummaryCtx =
   TSummaryCtxNone() or
   TSummaryCtxSome(ParamNodeEx p, FlowState state, AccessPath ap) {
     exists(Configuration config |
-      Stage4::parameterMayFlowThrough(p, ap.getApprox(), config) and
-      Stage4::revFlow(p, state, _, config)
+      Stage5::parameterMayFlowThrough(p, ap.getApprox(), config) and
+      Stage5::revFlow(p, state, _, config)
     )
   }
 
@@ -2656,7 +2899,7 @@ private int count1to2unfold(AccessPathApproxCons1 apa, Configuration config) {
     len = apa.len() and
     result =
       strictcount(AccessPathFront apf |
-        Stage4::consCand(tc, any(AccessPathApprox ap | ap.getFront() = apf and ap.len() = len - 1),
+        Stage5::consCand(tc, any(AccessPathApprox ap | ap.getFront() = apf and ap.len() = len - 1),
           config)
       )
   )
@@ -2665,7 +2908,7 @@ private int count1to2unfold(AccessPathApproxCons1 apa, Configuration config) {
 private int countNodesUsingAccessPath(AccessPathApprox apa, Configuration config) {
   result =
     strictcount(NodeEx n, FlowState state |
-      Stage4::revFlow(n, state, apa, config) or nodeMayUseSummary(n, state, apa, config)
+      Stage5::revFlow(n, state, apa, config) or nodeMayUseSummary(n, state, apa, config)
     )
 }
 
@@ -2686,7 +2929,7 @@ private predicate expensiveLen1to2unfolding(AccessPathApproxCons1 apa, Configura
 private AccessPathApprox getATail(AccessPathApprox apa, Configuration config) {
   exists(TypedContent head |
     apa.pop(head) = result and
-    Stage4::consCand(head, result, config)
+    Stage5::consCand(head, result, config)
   )
 }
 
@@ -2768,7 +3011,7 @@ private newtype TPathNode =
     NodeEx node, FlowState state, CallContext cc, SummaryCtx sc, AccessPath ap, Configuration config
   ) {
     // A PathNode is introduced by a source ...
-    Stage4::revFlow(node, state, config) and
+    Stage5::revFlow(node, state, config) and
     sourceNode(node, state, config) and
     (
       if hasSourceCallCtx(config)
@@ -2782,7 +3025,7 @@ private newtype TPathNode =
     exists(PathNodeMid mid |
       pathStep(mid, node, state, cc, sc, ap) and
       pragma[only_bind_into](config) = mid.getConfiguration() and
-      Stage4::revFlow(node, state, ap.getApprox(), pragma[only_bind_into](config))
+      Stage5::revFlow(node, state, ap.getApprox(), pragma[only_bind_into](config))
     )
   } or
   TPathNodeSink(NodeEx node, FlowState state, Configuration config) {
@@ -2924,7 +3167,7 @@ private class AccessPathCons2 extends AccessPath, TAccessPathCons2 {
   override TypedContent getHead() { result = head1 }
 
   override AccessPath getTail() {
-    Stage4::consCand(head1, result.getApprox(), _) and
+    Stage5::consCand(head1, result.getApprox(), _) and
     result.getHead() = head2 and
     result.length() = len - 1
   }
@@ -2955,7 +3198,7 @@ private class AccessPathCons1 extends AccessPath, TAccessPathCons1 {
   override TypedContent getHead() { result = head }
 
   override AccessPath getTail() {
-    Stage4::consCand(head, result.getApprox(), _) and result.length() = len - 1
+    Stage5::consCand(head, result.getApprox(), _) and result.length() = len - 1
   }
 
   override AccessPathFrontHead getFront() { result = TFrontHead(head) }
@@ -3347,7 +3590,8 @@ private predicate pathStep(
     AccessPath ap0, NodeEx midnode, FlowState state0, Configuration conf, LocalCallContext localCC
   |
     pathNode(mid, midnode, state0, cc, sc, ap0, conf, localCC) and
-    localFlowBigStep(midnode, state0, node, state, false, ap.getFront(), conf, localCC) and
+    localFlowBigStep(midnode, state0, node, state, false, ap.(AccessPathNil).getType(), conf,
+      localCC) and
     ap0 instanceof AccessPathNil
   )
   or
@@ -3389,7 +3633,7 @@ private predicate pathReadStep(
 ) {
   ap0 = mid.getAp() and
   tc = ap0.getHead() and
-  Stage4::readStepCand(mid.getNodeEx(), tc.getContent(), node, mid.getConfiguration()) and
+  Stage5::readStepCand(mid.getNodeEx(), tc.getContent(), node, mid.getConfiguration()) and
   state = mid.getState() and
   cc = mid.getCallContext()
 }
@@ -3399,7 +3643,7 @@ private predicate pathStoreStep(
   PathNodeMid mid, NodeEx node, FlowState state, AccessPath ap0, TypedContent tc, CallContext cc
 ) {
   ap0 = mid.getAp() and
-  Stage4::storeStepCand(mid.getNodeEx(), _, tc, node, _, mid.getConfiguration()) and
+  Stage5::storeStepCand(mid.getNodeEx(), _, tc, node, _, mid.getConfiguration()) and
   state = mid.getState() and
   cc = mid.getCallContext()
 }
@@ -3436,7 +3680,7 @@ private NodeEx getAnOutNodeFlow(
   ReturnKindExt kind, DataFlowCall call, AccessPathApprox apa, Configuration config
 ) {
   result.asNode() = kind.getAnOutNode(call) and
-  Stage4::revFlow(result, _, apa, config)
+  Stage5::revFlow(result, _, apa, config)
 }
 
 /**
@@ -3472,7 +3716,7 @@ private predicate parameterCand(
   DataFlowCallable callable, ParameterPosition pos, AccessPathApprox apa, Configuration config
 ) {
   exists(ParamNodeEx p |
-    Stage4::revFlow(p, _, apa, config) and
+    Stage5::revFlow(p, _, apa, config) and
     p.isParameterOf(callable, pos)
   )
 }
@@ -3751,9 +3995,17 @@ predicate stageStats(
   n = 45 and
   Stage4::stats(false, nodes, fields, conscand, states, tuples, config)
   or
-  stage = "5 Fwd" and n = 50 and finalStats(true, nodes, fields, conscand, states, tuples)
+  stage = "5 Fwd" and
+  n = 50 and
+  Stage5::stats(true, nodes, fields, conscand, states, tuples, config)
   or
-  stage = "5 Rev" and n = 55 and finalStats(false, nodes, fields, conscand, states, tuples)
+  stage = "5 Rev" and
+  n = 55 and
+  Stage5::stats(false, nodes, fields, conscand, states, tuples, config)
+  or
+  stage = "6 Fwd" and n = 60 and finalStats(true, nodes, fields, conscand, states, tuples)
+  or
+  stage = "6 Rev" and n = 65 and finalStats(false, nodes, fields, conscand, states, tuples)
 }
 
 private module FlowExploration {
diff --git a/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImpl2.qll b/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImpl2.qll
index ccde916a3c2..6741ccc2f06 100644
--- a/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImpl2.qll
+++ b/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImpl2.qll
@@ -621,23 +621,6 @@ private predicate parameterFlowThroughAllowed(ParamNodeEx p, ReturnKindExt kind)
   )
 }
 
-/**
- * Holds if flow from a parameter at position `pos` inside `c` to a return node of
- * kind `kind` is allowed.
- *
- * We don't expect a parameter to return stored in itself, unless
- * explicitly allowed
- */
-bindingset[c, pos, kind]
-private predicate parameterFlowThroughAllowed(
-  DataFlowCallable c, ParameterPosition pos, ReturnKindExt kind
-) {
-  exists(ParamNodeEx p |
-    p.isParameterOf(c, pos) and
-    parameterFlowThroughAllowed(p, kind)
-  )
-}
-
 private module Stage1 implements StageSig {
   class Ap = Unit;
 
@@ -980,6 +963,12 @@ private module Stage1 implements StageSig {
   pragma[nomagic]
   predicate revFlow(NodeEx node, Configuration config) { revFlow(node, _, config) }
 
+  pragma[nomagic]
+  predicate revFlowAp(NodeEx node, Ap ap, Configuration config) {
+    revFlow(node, config) and
+    exists(ap)
+  }
+
   bindingset[node, state, config]
   predicate revFlow(NodeEx node, FlowState state, Ap ap, Configuration config) {
     revFlow(node, _, pragma[only_bind_into](config)) and
@@ -1022,9 +1011,13 @@ private module Stage1 implements StageSig {
   }
 
   pragma[nomagic]
-  predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config) {
+  predicate returnMayFlowThrough(
+    RetNodeEx ret, Ap argAp, Ap ap, ReturnKindExt kind, Configuration config
+  ) {
     throughFlowNodeCand(ret, config) and
-    kind = ret.getKind()
+    kind = ret.getKind() and
+    exists(argAp) and
+    exists(ap)
   }
 
   pragma[nomagic]
@@ -1189,6 +1182,8 @@ private signature module StageSig {
 
   predicate revFlow(NodeEx node, Configuration config);
 
+  predicate revFlowAp(NodeEx node, Ap ap, Configuration config);
+
   bindingset[node, state, config]
   predicate revFlow(NodeEx node, FlowState state, Ap ap, Configuration config);
 
@@ -1196,7 +1191,9 @@ private signature module StageSig {
 
   predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config);
 
-  predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config);
+  predicate returnMayFlowThrough(
+    RetNodeEx ret, Ap argAp, Ap ap, ReturnKindExt kind, Configuration config
+  );
 
   predicate storeStepCand(
     NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, DataFlowType contentType,
@@ -1281,21 +1278,43 @@ private module MkStage<StageSig PrevStage> {
     import Param
 
     /* Begin: Stage logic. */
-    bindingset[result, apa]
-    private ApApprox unbindApa(ApApprox apa) {
-      pragma[only_bind_out](apa) = pragma[only_bind_out](result)
+    // use an alias as a workaround for bad functionality-induced joins
+    pragma[nomagic]
+    private predicate revFlowApAlias(NodeEx node, ApApprox apa, Configuration config) {
+      PrevStage::revFlowAp(node, apa, config)
+    }
+
+    pragma[nomagic]
+    private predicate flowIntoCallApa(
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, ApApprox apa,
+      Configuration config
+    ) {
+      flowIntoCall(call, arg, p, allowsFieldFlow, config) and
+      PrevStage::revFlowAp(p, pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
+      revFlowApAlias(arg, pragma[only_bind_into](apa), pragma[only_bind_into](config))
+    }
+
+    pragma[nomagic]
+    private predicate flowOutOfCallApa(
+      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
+      ApApprox apa, Configuration config
+    ) {
+      flowOutOfCall(call, ret, kind, out, allowsFieldFlow, config) and
+      PrevStage::revFlowAp(out, pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
+      revFlowApAlias(ret, pragma[only_bind_into](apa), pragma[only_bind_into](config))
     }
 
     pragma[nomagic]
     private predicate flowThroughOutOfCall(
-      DataFlowCall call, DataFlowCallable c, CcCall ccc, RetNodeEx ret, ReturnKindExt kind,
-      NodeEx out, boolean allowsFieldFlow, Configuration config
+      DataFlowCall call, CcCall ccc, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow,
+      ApApprox argApa, ApApprox apa, Configuration config
     ) {
-      flowOutOfCall(call, ret, kind, out, allowsFieldFlow, pragma[only_bind_into](config)) and
-      PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
-      PrevStage::returnMayFlowThrough(ret, kind, pragma[only_bind_into](config)) and
-      matchesCall(ccc, call) and
-      c = ret.getEnclosingCallable()
+      exists(ReturnKindExt kind |
+        flowOutOfCallApa(call, ret, kind, out, allowsFieldFlow, apa, pragma[only_bind_into](config)) and
+        PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
+        PrevStage::returnMayFlowThrough(ret, argApa, apa, kind, pragma[only_bind_into](config)) and
+        matchesCall(ccc, call)
+      )
     }
 
     /**
@@ -1307,39 +1326,50 @@ private module MkStage<StageSig PrevStage> {
      * corresponding parameter position and access path of that argument, respectively.
      */
     pragma[nomagic]
+    additional predicate fwdFlow(
+      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      Ap ap, ApApprox apa, Configuration config
+    ) {
+      fwdFlow0(node, state, cc, summaryCtx, argAp, ap, apa, config) and
+      PrevStage::revFlow(node, state, apa, config) and
+      filter(node, state, ap, config)
+    }
+
+    pragma[inline]
     additional predicate fwdFlow(
       NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
       Ap ap, Configuration config
     ) {
-      fwdFlow0(node, state, cc, summaryCtx, argAp, ap, config) and
-      PrevStage::revFlow(node, state, unbindApa(getApprox(ap)), config) and
-      filter(node, state, ap, config)
+      fwdFlow(node, state, cc, summaryCtx, argAp, ap, _, config)
     }
 
     pragma[nomagic]
     private predicate fwdFlow0(
       NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      Ap ap, Configuration config
+      Ap ap, ApApprox apa, Configuration config
     ) {
       sourceNode(node, state, config) and
       (if hasSourceCallCtx(config) then cc = ccSomeCall() else cc = ccNone()) and
       argAp = apNone() and
       summaryCtx = TParameterPositionNone() and
-      ap = getApNil(node)
+      ap = getApNil(node) and
+      apa = getApprox(ap)
       or
-      exists(NodeEx mid, FlowState state0, Ap ap0, LocalCc localCc |
-        fwdFlow(mid, state0, cc, summaryCtx, argAp, ap0, config) and
+      exists(NodeEx mid, FlowState state0, Ap ap0, ApApprox apa0, LocalCc localCc |
+        fwdFlow(mid, state0, cc, summaryCtx, argAp, ap0, apa0, config) and
         localCc = getLocalCc(mid, cc)
       |
         localStep(mid, state0, node, state, true, _, config, localCc) and
-        ap = ap0
+        ap = ap0 and
+        apa = apa0
         or
         localStep(mid, state0, node, state, false, ap, config, localCc) and
-        ap0 instanceof ApNil
+        ap0 instanceof ApNil and
+        apa = getApprox(ap)
       )
       or
       exists(NodeEx mid |
-        fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, apa, pragma[only_bind_into](config)) and
         jumpStep(mid, node, config) and
         cc = ccNone() and
         summaryCtx = TParameterPositionNone() and
@@ -1352,7 +1382,8 @@ private module MkStage<StageSig PrevStage> {
         cc = ccNone() and
         summaryCtx = TParameterPositionNone() and
         argAp = apNone() and
-        ap = getApNil(node)
+        ap = getApNil(node) and
+        apa = getApprox(ap)
       )
       or
       exists(NodeEx mid, FlowState state0, ApNil nil |
@@ -1361,32 +1392,32 @@ private module MkStage<StageSig PrevStage> {
         cc = ccNone() and
         summaryCtx = TParameterPositionNone() and
         argAp = apNone() and
-        ap = getApNil(node)
+        ap = getApNil(node) and
+        apa = getApprox(ap)
       )
       or
       // store
       exists(TypedContent tc, Ap ap0 |
         fwdFlowStore(_, ap0, tc, node, state, cc, summaryCtx, argAp, config) and
-        ap = apCons(tc, ap0)
+        ap = apCons(tc, ap0) and
+        apa = getApprox(ap)
       )
       or
       // read
       exists(Ap ap0, Content c |
         fwdFlowRead(ap0, c, _, node, state, cc, summaryCtx, argAp, config) and
-        fwdFlowConsCand(ap0, c, ap, config)
+        fwdFlowConsCand(ap0, c, ap, config) and
+        apa = getApprox(ap)
       )
       or
       // flow into a callable
-      exists(ApApprox apa |
-        fwdFlowIn(_, node, state, _, cc, _, _, ap, config) and
-        apa = getApprox(ap) and
-        if PrevStage::parameterMayFlowThrough(node, apa, config)
-        then (
-          summaryCtx = TParameterPositionSome(node.(ParamNodeEx).getPosition()) and
-          argAp = apSome(ap)
-        ) else (
-          summaryCtx = TParameterPositionNone() and argAp = apNone()
-        )
+      fwdFlowIn(_, node, state, _, cc, _, _, ap, apa, config) and
+      if PrevStage::parameterMayFlowThrough(node, apa, config)
+      then (
+        summaryCtx = TParameterPositionSome(node.(ParamNodeEx).getPosition()) and
+        argAp = apSome(ap)
+      ) else (
+        summaryCtx = TParameterPositionNone() and argAp = apNone()
       )
       or
       // flow out of a callable
@@ -1394,8 +1425,8 @@ private module MkStage<StageSig PrevStage> {
         DataFlowCall call, RetNodeEx ret, boolean allowsFieldFlow, CcNoCall innercc,
         DataFlowCallable inner
       |
-        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, config) and
-        flowOutOfCall(call, ret, _, node, allowsFieldFlow, config) and
+        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, apa, config) and
+        flowOutOfCallApa(call, ret, _, node, allowsFieldFlow, apa, config) and
         inner = ret.getEnclosingCallable() and
         cc = getCallContextReturn(inner, call, innercc) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
@@ -1403,7 +1434,7 @@ private module MkStage<StageSig PrevStage> {
       or
       // flow through a callable
       exists(DataFlowCall call, ParameterPosition summaryCtx0, Ap argAp0 |
-        fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, config) and
+        fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, apa, config) and
         fwdFlowIsEntered(call, cc, summaryCtx, argAp, summaryCtx0, argAp0, config)
       )
     }
@@ -1413,9 +1444,9 @@ private module MkStage<StageSig PrevStage> {
       NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc,
       ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
     ) {
-      exists(DataFlowType contentType |
-        fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, config) and
-        PrevStage::storeStepCand(node1, unbindApa(getApprox(ap1)), tc, node2, contentType, config) and
+      exists(DataFlowType contentType, ApApprox apa1 |
+        fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, apa1, config) and
+        PrevStage::storeStepCand(node1, apa1, tc, node2, contentType, config) and
         typecheckStore(ap1, contentType)
       )
     }
@@ -1433,43 +1464,104 @@ private module MkStage<StageSig PrevStage> {
       )
     }
 
+    private class ApNonNil instanceof Ap {
+      pragma[nomagic]
+      ApNonNil() { not this instanceof ApNil }
+
+      string toString() { result = "" }
+    }
+
+    pragma[nomagic]
+    private predicate fwdFlowRead0(
+      NodeEx node1, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      ApNonNil ap, Configuration config
+    ) {
+      fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
+      PrevStage::readStepCand(node1, _, _, config)
+    }
+
     pragma[nomagic]
     private predicate fwdFlowRead(
       Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc,
       ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
     ) {
-      fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
+      fwdFlowRead0(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, c, node2, config) and
       getHeadContent(ap) = c
     }
 
     pragma[nomagic]
     private predicate fwdFlowIn(
-      DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, Cc innercc,
-      ParameterPositionOption summaryCtx, ApOption argAp, Ap ap, Configuration config
+      DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, CcCall innercc,
+      ParameterPositionOption summaryCtx, ApOption argAp, Ap ap, ApApprox apa, Configuration config
     ) {
       exists(ArgNodeEx arg, boolean allowsFieldFlow |
-        fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, config) and
-        flowIntoCall(call, arg, p, allowsFieldFlow, config) and
+        fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, apa, config) and
+        flowIntoCallApa(call, arg, p, allowsFieldFlow, apa, config) and
         innercc = getCallContextCall(call, p.getEnclosingCallable(), outercc) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
+    pragma[nomagic]
+    private predicate fwdFlowRetFromArg(
+      RetNodeEx ret, FlowState state, CcCall ccc, ParameterPosition summaryCtx, ParamNodeEx p,
+      Ap argAp, ApApprox argApa, Ap ap, ApApprox apa, Configuration config
+    ) {
+      exists(DataFlowCallable c, ReturnKindExt kind |
+        fwdFlow(pragma[only_bind_into](ret), state, ccc,
+          TParameterPositionSome(pragma[only_bind_into](summaryCtx)), apSome(argAp), ap, apa, config) and
+        getApprox(argAp) = argApa and
+        c = ret.getEnclosingCallable() and
+        kind = ret.getKind() and
+        p.isParameterOf(c, pragma[only_bind_into](summaryCtx)) and
+        parameterFlowThroughAllowed(p, kind)
+      )
+    }
+
+    pragma[inline]
+    private predicate fwdFlowInMayFlowThrough(
+      DataFlowCall call, Cc cc, CcCall innerCc, ParameterPositionOption summaryCtx, ApOption argAp,
+      ParamNodeEx param, Ap ap, ApApprox apa, Configuration config
+    ) {
+      fwdFlowIn(call, pragma[only_bind_into](param), _, cc, innerCc, summaryCtx, argAp, ap,
+        pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
+      PrevStage::parameterMayFlowThrough(param, apa, config)
+    }
+
+    // dedup before joining with `flowThroughOutOfCall`
+    pragma[nomagic]
+    private predicate fwdFlowInMayFlowThroughProj(
+      DataFlowCall call, CcCall innerCc, ApApprox apa, Configuration config
+    ) {
+      fwdFlowInMayFlowThrough(call, _, innerCc, _, _, _, _, apa, config)
+    }
+
+    /**
+     * Same as `flowThroughOutOfCall`, but restricted to calls that are reached
+     * in the flow covered by `fwdFlow`, where data might flow through the target
+     * callable and back out at `call`.
+     */
+    pragma[nomagic]
+    private predicate fwdFlowThroughOutOfCall(
+      DataFlowCall call, CcCall ccc, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow,
+      ApApprox argApa, ApApprox apa, Configuration config
+    ) {
+      fwdFlowInMayFlowThroughProj(call, ccc, argApa, config) and
+      flowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, argApa, apa, config)
+    }
+
     pragma[nomagic]
     private predicate fwdFlowOutFromArg(
       DataFlowCall call, NodeEx out, FlowState state, ParameterPosition summaryCtx, Ap argAp, Ap ap,
-      Configuration config
+      ApApprox apa, Configuration config
     ) {
-      exists(
-        DataFlowCallable c, RetNodeEx ret, ReturnKindExt kind, boolean allowsFieldFlow, CcCall ccc
-      |
-        fwdFlow(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc),
-          TParameterPositionSome(pragma[only_bind_into](summaryCtx)), apSome(argAp), ap, config) and
-        flowThroughOutOfCall(call, pragma[only_bind_into](c), ccc, ret, kind, out, allowsFieldFlow,
+      exists(RetNodeEx ret, boolean allowsFieldFlow, CcCall ccc, ApApprox argApa |
+        fwdFlowRetFromArg(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc),
+          summaryCtx, _, argAp, pragma[only_bind_into](argApa), ap, pragma[only_bind_into](apa),
           config) and
-        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
-        parameterFlowThroughAllowed(c, pragma[only_bind_into](summaryCtx), kind)
+        fwdFlowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, argApa, apa, config) and
+        (if allowsFieldFlow = false then ap instanceof ApNil else any())
       )
     }
 
@@ -1483,8 +1575,7 @@ private module MkStage<StageSig PrevStage> {
       ParameterPosition pos, Ap ap, Configuration config
     ) {
       exists(ParamNodeEx param |
-        fwdFlowIn(call, param, _, cc, _, summaryCtx, argAp, ap, config) and
-        PrevStage::parameterMayFlowThrough(param, unbindApa(getApprox(ap)), config) and
+        fwdFlowInMayFlowThrough(call, cc, _, summaryCtx, argAp, param, ap, _, config) and
         pos = param.getPosition()
       )
     }
@@ -1505,41 +1596,55 @@ private module MkStage<StageSig PrevStage> {
       fwdFlowConsCand(ap1, c, ap2, config)
     }
 
-    pragma[nomagic]
-    private predicate returnFlowsThrough0(
-      RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, DataFlowCallable c,
-      ParameterPosition ppos, Ap argAp, Ap ap, Configuration config
-    ) {
-      exists(boolean allowsFieldFlow |
-        fwdFlow(ret, state, ccc, TParameterPositionSome(ppos), apSome(argAp), ap, config) and
-        flowThroughOutOfCall(_, c, _, pragma[only_bind_into](ret), kind, _, allowsFieldFlow,
-          pragma[only_bind_into](config)) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
-      )
-    }
-
     pragma[nomagic]
     private predicate returnFlowsThrough(
       RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, ParamNodeEx p, Ap argAp,
       Ap ap, Configuration config
     ) {
-      exists(DataFlowCallable c, ParameterPosition ppos |
-        returnFlowsThrough0(ret, kind, state, ccc, c, ppos, argAp, ap, config) and
-        p.isParameterOf(c, ppos) and
-        parameterFlowThroughAllowed(p, kind)
+      exists(boolean allowsFieldFlow, ApApprox argApa, ApApprox apa |
+        fwdFlowRetFromArg(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc), _, p,
+          argAp, pragma[only_bind_into](argApa), ap, pragma[only_bind_into](apa), config) and
+        kind = ret.getKind() and
+        fwdFlowThroughOutOfCall(_, ccc, ret, _, allowsFieldFlow, argApa, apa, config) and
+        (if allowsFieldFlow = false then ap instanceof ApNil else any())
       )
     }
 
     pragma[nomagic]
     private predicate flowThroughIntoCall(
-      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp,
+      Configuration config
     ) {
-      exists(Ap argAp |
-        flowIntoCall(call, pragma[only_bind_into](arg), pragma[only_bind_into](p), allowsFieldFlow,
+      exists(ApApprox argApa |
+        flowIntoCallApa(call, pragma[only_bind_into](arg), pragma[only_bind_into](p),
+          allowsFieldFlow, argApa, pragma[only_bind_into](config)) and
+        fwdFlow(arg, _, _, _, _, pragma[only_bind_into](argAp), argApa,
           pragma[only_bind_into](config)) and
-        fwdFlow(arg, _, _, _, _, pragma[only_bind_into](argAp), pragma[only_bind_into](config)) and
         returnFlowsThrough(_, _, _, _, p, pragma[only_bind_into](argAp), _,
-          pragma[only_bind_into](config))
+          pragma[only_bind_into](config)) and
+        if allowsFieldFlow = false then argAp instanceof ApNil else any()
+      )
+    }
+
+    pragma[nomagic]
+    private predicate flowIntoCallAp(
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap ap,
+      Configuration config
+    ) {
+      exists(ApApprox apa |
+        flowIntoCallApa(call, arg, p, allowsFieldFlow, apa, config) and
+        fwdFlow(arg, _, _, _, _, ap, apa, config)
+      )
+    }
+
+    pragma[nomagic]
+    private predicate flowOutOfCallAp(
+      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
+      Ap ap, Configuration config
+    ) {
+      exists(ApApprox apa |
+        flowOutOfCallApa(call, ret, kind, out, allowsFieldFlow, apa, config) and
+        fwdFlow(ret, _, _, _, _, ap, apa, config)
       )
     }
 
@@ -1628,7 +1733,7 @@ private module MkStage<StageSig PrevStage> {
       // flow into a callable
       exists(ParamNodeEx p, boolean allowsFieldFlow |
         revFlow(p, state, TReturnCtxNone(), returnAp, ap, config) and
-        flowIntoCall(_, node, p, allowsFieldFlow, config) and
+        flowIntoCallAp(_, node, p, allowsFieldFlow, ap, config) and
         (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
         returnCtx = TReturnCtxNone()
       )
@@ -1682,22 +1787,41 @@ private module MkStage<StageSig PrevStage> {
     ) {
       exists(NodeEx out, boolean allowsFieldFlow |
         revFlow(out, state, returnCtx, returnAp, ap, config) and
-        flowOutOfCall(call, ret, kind, out, allowsFieldFlow, config) and
+        flowOutOfCallAp(call, ret, kind, out, allowsFieldFlow, ap, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
+    /**
+     * Same as `flowThroughIntoCall`, but restricted to calls that are reached
+     * in the flow covered by `revFlow`, where data might flow through the target
+     * callable and back out at `call`.
+     */
+    pragma[nomagic]
+    private predicate revFlowThroughIntoCall(
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp,
+      Configuration config
+    ) {
+      flowThroughIntoCall(call, arg, p, allowsFieldFlow, argAp, config) and
+      revFlowIsReturned(call, _, _, _, _, config)
+    }
+
+    pragma[nomagic]
+    private predicate revFlowParamToReturn(
+      ParamNodeEx p, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap, Configuration config
+    ) {
+      revFlow(p, state, TReturnCtxMaybeFlowThrough(kind), apSome(returnAp), ap, config) and
+      parameterFlowThroughAllowed(p, kind)
+    }
+
     pragma[nomagic]
     private predicate revFlowInToReturn(
       DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap,
       Configuration config
     ) {
       exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(pragma[only_bind_into](p), state,
-          TReturnCtxMaybeFlowThrough(pragma[only_bind_into](kind)), apSome(returnAp), ap, config) and
-        flowThroughIntoCall(call, arg, p, allowsFieldFlow, config) and
-        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
-        parameterFlowThroughAllowed(p, kind)
+        revFlowParamToReturn(p, state, kind, returnAp, ap, config) and
+        revFlowThroughIntoCall(call, arg, p, allowsFieldFlow, ap, config)
       )
     }
 
@@ -1750,6 +1874,11 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     predicate revFlow(NodeEx node, Configuration config) { revFlow(node, _, _, _, _, config) }
 
+    pragma[nomagic]
+    predicate revFlowAp(NodeEx node, Ap ap, Configuration config) {
+      revFlow(node, _, _, _, ap, config)
+    }
+
     // use an alias as a workaround for bad functionality-induced joins
     pragma[nomagic]
     additional predicate revFlowAlias(NodeEx node, Configuration config) {
@@ -1786,9 +1915,9 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate parameterFlowsThroughRev(
-      ParamNodeEx p, Ap ap, ReturnKindExt kind, Configuration config
+      ParamNodeEx p, Ap ap, ReturnKindExt kind, Ap returnAp, Configuration config
     ) {
-      revFlow(p, _, TReturnCtxMaybeFlowThrough(kind), apSome(_), ap, config) and
+      revFlow(p, _, TReturnCtxMaybeFlowThrough(kind), apSome(returnAp), ap, config) and
       parameterFlowThroughAllowed(p, kind)
     }
 
@@ -1796,27 +1925,36 @@ private module MkStage<StageSig PrevStage> {
     predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
       exists(RetNodeEx ret, ReturnKindExt kind |
         returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
-        parameterFlowsThroughRev(p, ap, kind, config)
+        parameterFlowsThroughRev(p, ap, kind, _, config)
       )
     }
 
     pragma[nomagic]
-    predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config) {
-      exists(ParamNodeEx p, Ap ap |
-        returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
-        parameterFlowsThroughRev(p, ap, kind, config)
+    predicate returnMayFlowThrough(
+      RetNodeEx ret, Ap argAp, Ap ap, ReturnKindExt kind, Configuration config
+    ) {
+      exists(ParamNodeEx p |
+        returnFlowsThrough(ret, kind, _, _, p, argAp, ap, config) and
+        parameterFlowsThroughRev(p, argAp, kind, ap, config)
+      )
+    }
+
+    pragma[nomagic]
+    predicate revFlowInToReturnIsReturned(
+      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnCtx returnCtx, ApOption returnAp,
+      Ap ap, Configuration config
+    ) {
+      exists(ReturnKindExt returnKind0, Ap returnAp0 |
+        revFlowInToReturn(call, arg, state, returnKind0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
       )
     }
 
     pragma[nomagic]
     predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
-      exists(
-        ReturnKindExt returnKind0, Ap returnAp0, ArgNodeEx arg, FlowState state,
-        ReturnCtx returnCtx, ApOption returnAp, Ap ap
-      |
+      exists(ArgNodeEx arg, FlowState state, ReturnCtx returnCtx, ApOption returnAp, Ap ap |
         revFlow(arg, state, returnCtx, returnAp, ap, config) and
-        revFlowInToReturn(call, arg, state, returnKind0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
+        revFlowInToReturnIsReturned(call, arg, state, returnCtx, returnAp, ap, config)
       )
     }
 
@@ -2179,16 +2317,16 @@ private module LocalFlowBigStep {
   pragma[nomagic]
   predicate localFlowBigStep(
     NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
-    AccessPathFrontNil apf, Configuration config, LocalCallContext callContext
+    DataFlowType t, Configuration config, LocalCallContext callContext
   ) {
-    localFlowStepPlus(node1, state1, node2, preservesValue, apf.getType(), config, callContext) and
+    localFlowStepPlus(node1, state1, node2, preservesValue, t, config, callContext) and
     localFlowExit(node2, state1, config) and
     state1 = state2
     or
     additionalLocalFlowStepNodeCand2(node1, state1, node2, state2, config) and
     state1 != state2 and
     preservesValue = false and
-    apf = TFrontNil(node2.getDataFlowType()) and
+    t = node2.getDataFlowType() and
     callContext.relevantFor(node1.getEnclosingCallable()) and
     not exists(DataFlowCall call | call = callContext.(LocalCallContextSpecificCall).getCall() |
       isUnreachableInCallCached(node1.asNode(), call) or
@@ -2202,11 +2340,87 @@ private import LocalFlowBigStep
 private module Stage3Param implements MkStage<Stage2>::StageParam {
   private module PrevStage = Stage2;
 
+  class Ap = ApproxAccessPathFront;
+
+  class ApNil = ApproxAccessPathFrontNil;
+
+  PrevStage::Ap getApprox(Ap ap) { result = ap.toBoolNonEmpty() }
+
+  ApNil getApNil(NodeEx node) {
+    PrevStage::revFlow(node, _) and result = TApproxFrontNil(node.getDataFlowType())
+  }
+
+  bindingset[tc, tail]
+  Ap apCons(TypedContent tc, Ap tail) { result.getAHead() = tc and exists(tail) }
+
+  pragma[noinline]
+  Content getHeadContent(Ap ap) { result = ap.getAHead().getContent() }
+
+  class ApOption = ApproxAccessPathFrontOption;
+
+  ApOption apNone() { result = TApproxAccessPathFrontNone() }
+
+  ApOption apSome(Ap ap) { result = TApproxAccessPathFrontSome(ap) }
+
+  import BooleanCallContext
+
+  predicate localStep(
+    NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
+    ApproxAccessPathFrontNil ap, Configuration config, LocalCc lcc
+  ) {
+    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap.getType(), config, _) and
+    exists(lcc)
+  }
+
+  predicate flowOutOfCall = flowOutOfCallNodeCand2/6;
+
+  predicate flowIntoCall = flowIntoCallNodeCand2/5;
+
+  pragma[nomagic]
+  private predicate expectsContentCand(NodeEx node, Ap ap, Configuration config) {
+    exists(Content c |
+      PrevStage::revFlow(node, pragma[only_bind_into](config)) and
+      PrevStage::readStepCand(_, c, _, pragma[only_bind_into](config)) and
+      expectsContentEx(node, c) and
+      c = ap.getAHead().getContent()
+    )
+  }
+
+  pragma[nomagic]
+  private predicate castingNodeEx(NodeEx node) { node.asNode() instanceof CastingNode }
+
+  bindingset[node, state, ap, config]
+  predicate filter(NodeEx node, FlowState state, Ap ap, Configuration config) {
+    exists(state) and
+    exists(config) and
+    (if castingNodeEx(node) then compatibleTypes(node.getDataFlowType(), ap.getType()) else any()) and
+    (
+      notExpectsContent(node)
+      or
+      expectsContentCand(node, ap, config)
+    )
+  }
+
+  bindingset[ap, contentType]
+  predicate typecheckStore(Ap ap, DataFlowType contentType) {
+    // We need to typecheck stores here, since reverse flow through a getter
+    // might have a different type here compared to inside the getter.
+    compatibleTypes(ap.getType(), contentType)
+  }
+}
+
+private module Stage3 implements StageSig {
+  import MkStage<Stage2>::Stage<Stage3Param>
+}
+
+private module Stage4Param implements MkStage<Stage3>::StageParam {
+  private module PrevStage = Stage3;
+
   class Ap = AccessPathFront;
 
   class ApNil = AccessPathFrontNil;
 
-  PrevStage::Ap getApprox(Ap ap) { result = ap.toBoolNonEmpty() }
+  PrevStage::Ap getApprox(Ap ap) { result = ap.toApprox() }
 
   ApNil getApNil(NodeEx node) {
     PrevStage::revFlow(node, _) and result = TFrontNil(node.getDataFlowType())
@@ -2226,16 +2440,42 @@ private module Stage3Param implements MkStage<Stage2>::StageParam {
 
   import BooleanCallContext
 
+  pragma[nomagic]
   predicate localStep(
     NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
     ApNil ap, Configuration config, LocalCc lcc
   ) {
-    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap, config, _) and exists(lcc)
+    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap.getType(), config, _) and
+    PrevStage::revFlow(node1, pragma[only_bind_into](state1), _, pragma[only_bind_into](config)) and
+    PrevStage::revFlowAlias(node2, pragma[only_bind_into](state2), _, pragma[only_bind_into](config)) and
+    exists(lcc)
   }
 
-  predicate flowOutOfCall = flowOutOfCallNodeCand2/6;
+  pragma[nomagic]
+  predicate flowOutOfCall(
+    DataFlowCall call, RetNodeEx node1, ReturnKindExt kind, NodeEx node2, boolean allowsFieldFlow,
+    Configuration config
+  ) {
+    exists(FlowState state |
+      flowOutOfCallNodeCand2(call, node1, kind, node2, allowsFieldFlow, config) and
+      PrevStage::revFlow(node2, pragma[only_bind_into](state), _, pragma[only_bind_into](config)) and
+      PrevStage::revFlowAlias(node1, pragma[only_bind_into](state), _,
+        pragma[only_bind_into](config))
+    )
+  }
 
-  predicate flowIntoCall = flowIntoCallNodeCand2/5;
+  pragma[nomagic]
+  predicate flowIntoCall(
+    DataFlowCall call, ArgNodeEx node1, ParamNodeEx node2, boolean allowsFieldFlow,
+    Configuration config
+  ) {
+    exists(FlowState state |
+      flowIntoCallNodeCand2(call, node1, node2, allowsFieldFlow, config) and
+      PrevStage::revFlow(node2, pragma[only_bind_into](state), _, pragma[only_bind_into](config)) and
+      PrevStage::revFlowAlias(node1, pragma[only_bind_into](state), _,
+        pragma[only_bind_into](config))
+    )
+  }
 
   pragma[nomagic]
   private predicate clearSet(NodeEx node, ContentSet c, Configuration config) {
@@ -2291,8 +2531,8 @@ private module Stage3Param implements MkStage<Stage2>::StageParam {
   }
 }
 
-private module Stage3 implements StageSig {
-  import MkStage<Stage2>::Stage<Stage3Param>
+private module Stage4 implements StageSig {
+  import MkStage<Stage3>::Stage<Stage4Param>
 }
 
 /**
@@ -2303,8 +2543,8 @@ private predicate flowCandSummaryCtx(
   NodeEx node, FlowState state, AccessPathFront argApf, Configuration config
 ) {
   exists(AccessPathFront apf |
-    Stage3::revFlow(node, state, TReturnCtxMaybeFlowThrough(_), _, apf, config) and
-    Stage3::fwdFlow(node, state, any(Stage3::CcCall ccc), _, TAccessPathFrontSome(argApf), apf,
+    Stage4::revFlow(node, state, TReturnCtxMaybeFlowThrough(_), _, apf, config) and
+    Stage4::fwdFlow(node, state, any(Stage4::CcCall ccc), _, TAccessPathFrontSome(argApf), apf,
       config)
   )
 }
@@ -2315,10 +2555,10 @@ private predicate flowCandSummaryCtx(
  */
 private predicate expensiveLen2unfolding(TypedContent tc, Configuration config) {
   exists(int tails, int nodes, int apLimit, int tupleLimit |
-    tails = strictcount(AccessPathFront apf | Stage3::consCand(tc, apf, config)) and
+    tails = strictcount(AccessPathFront apf | Stage4::consCand(tc, apf, config)) and
     nodes =
       strictcount(NodeEx n, FlowState state |
-        Stage3::revFlow(n, state, any(AccessPathFrontHead apf | apf.getHead() = tc), config)
+        Stage4::revFlow(n, state, any(AccessPathFrontHead apf | apf.getHead() = tc), config)
         or
         flowCandSummaryCtx(n, state, any(AccessPathFrontHead apf | apf.getHead() = tc), config)
       ) and
@@ -2332,11 +2572,11 @@ private predicate expensiveLen2unfolding(TypedContent tc, Configuration config)
 private newtype TAccessPathApprox =
   TNil(DataFlowType t) or
   TConsNil(TypedContent tc, DataFlowType t) {
-    Stage3::consCand(tc, TFrontNil(t), _) and
+    Stage4::consCand(tc, TFrontNil(t), _) and
     not expensiveLen2unfolding(tc, _)
   } or
   TConsCons(TypedContent tc1, TypedContent tc2, int len) {
-    Stage3::consCand(tc1, TFrontHead(tc2), _) and
+    Stage4::consCand(tc1, TFrontHead(tc2), _) and
     len in [2 .. accessPathLimit()] and
     not expensiveLen2unfolding(tc1, _)
   } or
@@ -2466,7 +2706,7 @@ private class AccessPathApproxCons1 extends AccessPathApproxCons, TCons1 {
   override AccessPathApprox pop(TypedContent head) {
     head = tc and
     (
-      exists(TypedContent tc2 | Stage3::consCand(tc, TFrontHead(tc2), _) |
+      exists(TypedContent tc2 | Stage4::consCand(tc, TFrontHead(tc2), _) |
         result = TConsCons(tc2, _, len - 1)
         or
         len = 2 and
@@ -2477,7 +2717,7 @@ private class AccessPathApproxCons1 extends AccessPathApproxCons, TCons1 {
       or
       exists(DataFlowType t |
         len = 1 and
-        Stage3::consCand(tc, TFrontNil(t), _) and
+        Stage4::consCand(tc, TFrontNil(t), _) and
         result = TNil(t)
       )
     )
@@ -2502,13 +2742,14 @@ private class AccessPathApproxOption extends TAccessPathApproxOption {
   }
 }
 
-private module Stage4Param implements MkStage<Stage3>::StageParam {
-  private module PrevStage = Stage3;
+private module Stage5Param implements MkStage<Stage4>::StageParam {
+  private module PrevStage = Stage4;
 
   class Ap = AccessPathApprox;
 
   class ApNil = AccessPathApproxNil;
 
+  pragma[nomagic]
   PrevStage::Ap getApprox(Ap ap) { result = ap.getFront() }
 
   ApNil getApNil(NodeEx node) {
@@ -2534,7 +2775,9 @@ private module Stage4Param implements MkStage<Stage3>::StageParam {
     NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
     ApNil ap, Configuration config, LocalCc lcc
   ) {
-    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap.getFront(), config, lcc)
+    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap.getType(), config, lcc) and
+    PrevStage::revFlow(node1, pragma[only_bind_into](state1), _, pragma[only_bind_into](config)) and
+    PrevStage::revFlowAlias(node2, pragma[only_bind_into](state2), _, pragma[only_bind_into](config))
   }
 
   pragma[nomagic]
@@ -2571,7 +2814,7 @@ private module Stage4Param implements MkStage<Stage3>::StageParam {
   predicate typecheckStore(Ap ap, DataFlowType contentType) { any() }
 }
 
-private module Stage4 = MkStage<Stage3>::Stage<Stage4Param>;
+private module Stage5 = MkStage<Stage4>::Stage<Stage5Param>;
 
 bindingset[conf, result]
 private Configuration unbindConf(Configuration conf) {
@@ -2585,8 +2828,8 @@ private predicate nodeMayUseSummary0(
 ) {
   exists(AccessPathApprox apa0 |
     c = n.getEnclosingCallable() and
-    Stage4::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
-    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TParameterPositionSome(pos),
+    Stage5::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
+    Stage5::fwdFlow(n, state, any(CallContextCall ccc), TParameterPositionSome(pos),
       TAccessPathApproxSome(apa), apa0, config)
   )
 }
@@ -2596,7 +2839,7 @@ private predicate nodeMayUseSummary(
   NodeEx n, FlowState state, AccessPathApprox apa, Configuration config
 ) {
   exists(DataFlowCallable c, ParameterPosition pos, ParamNodeEx p |
-    Stage4::parameterMayFlowThrough(p, apa, config) and
+    Stage5::parameterMayFlowThrough(p, apa, config) and
     nodeMayUseSummary0(n, c, pos, state, apa, config) and
     p.isParameterOf(c, pos)
   )
@@ -2606,8 +2849,8 @@ private newtype TSummaryCtx =
   TSummaryCtxNone() or
   TSummaryCtxSome(ParamNodeEx p, FlowState state, AccessPath ap) {
     exists(Configuration config |
-      Stage4::parameterMayFlowThrough(p, ap.getApprox(), config) and
-      Stage4::revFlow(p, state, _, config)
+      Stage5::parameterMayFlowThrough(p, ap.getApprox(), config) and
+      Stage5::revFlow(p, state, _, config)
     )
   }
 
@@ -2656,7 +2899,7 @@ private int count1to2unfold(AccessPathApproxCons1 apa, Configuration config) {
     len = apa.len() and
     result =
       strictcount(AccessPathFront apf |
-        Stage4::consCand(tc, any(AccessPathApprox ap | ap.getFront() = apf and ap.len() = len - 1),
+        Stage5::consCand(tc, any(AccessPathApprox ap | ap.getFront() = apf and ap.len() = len - 1),
           config)
       )
   )
@@ -2665,7 +2908,7 @@ private int count1to2unfold(AccessPathApproxCons1 apa, Configuration config) {
 private int countNodesUsingAccessPath(AccessPathApprox apa, Configuration config) {
   result =
     strictcount(NodeEx n, FlowState state |
-      Stage4::revFlow(n, state, apa, config) or nodeMayUseSummary(n, state, apa, config)
+      Stage5::revFlow(n, state, apa, config) or nodeMayUseSummary(n, state, apa, config)
     )
 }
 
@@ -2686,7 +2929,7 @@ private predicate expensiveLen1to2unfolding(AccessPathApproxCons1 apa, Configura
 private AccessPathApprox getATail(AccessPathApprox apa, Configuration config) {
   exists(TypedContent head |
     apa.pop(head) = result and
-    Stage4::consCand(head, result, config)
+    Stage5::consCand(head, result, config)
   )
 }
 
@@ -2768,7 +3011,7 @@ private newtype TPathNode =
     NodeEx node, FlowState state, CallContext cc, SummaryCtx sc, AccessPath ap, Configuration config
   ) {
     // A PathNode is introduced by a source ...
-    Stage4::revFlow(node, state, config) and
+    Stage5::revFlow(node, state, config) and
     sourceNode(node, state, config) and
     (
       if hasSourceCallCtx(config)
@@ -2782,7 +3025,7 @@ private newtype TPathNode =
     exists(PathNodeMid mid |
       pathStep(mid, node, state, cc, sc, ap) and
       pragma[only_bind_into](config) = mid.getConfiguration() and
-      Stage4::revFlow(node, state, ap.getApprox(), pragma[only_bind_into](config))
+      Stage5::revFlow(node, state, ap.getApprox(), pragma[only_bind_into](config))
     )
   } or
   TPathNodeSink(NodeEx node, FlowState state, Configuration config) {
@@ -2924,7 +3167,7 @@ private class AccessPathCons2 extends AccessPath, TAccessPathCons2 {
   override TypedContent getHead() { result = head1 }
 
   override AccessPath getTail() {
-    Stage4::consCand(head1, result.getApprox(), _) and
+    Stage5::consCand(head1, result.getApprox(), _) and
     result.getHead() = head2 and
     result.length() = len - 1
   }
@@ -2955,7 +3198,7 @@ private class AccessPathCons1 extends AccessPath, TAccessPathCons1 {
   override TypedContent getHead() { result = head }
 
   override AccessPath getTail() {
-    Stage4::consCand(head, result.getApprox(), _) and result.length() = len - 1
+    Stage5::consCand(head, result.getApprox(), _) and result.length() = len - 1
   }
 
   override AccessPathFrontHead getFront() { result = TFrontHead(head) }
@@ -3347,7 +3590,8 @@ private predicate pathStep(
     AccessPath ap0, NodeEx midnode, FlowState state0, Configuration conf, LocalCallContext localCC
   |
     pathNode(mid, midnode, state0, cc, sc, ap0, conf, localCC) and
-    localFlowBigStep(midnode, state0, node, state, false, ap.getFront(), conf, localCC) and
+    localFlowBigStep(midnode, state0, node, state, false, ap.(AccessPathNil).getType(), conf,
+      localCC) and
     ap0 instanceof AccessPathNil
   )
   or
@@ -3389,7 +3633,7 @@ private predicate pathReadStep(
 ) {
   ap0 = mid.getAp() and
   tc = ap0.getHead() and
-  Stage4::readStepCand(mid.getNodeEx(), tc.getContent(), node, mid.getConfiguration()) and
+  Stage5::readStepCand(mid.getNodeEx(), tc.getContent(), node, mid.getConfiguration()) and
   state = mid.getState() and
   cc = mid.getCallContext()
 }
@@ -3399,7 +3643,7 @@ private predicate pathStoreStep(
   PathNodeMid mid, NodeEx node, FlowState state, AccessPath ap0, TypedContent tc, CallContext cc
 ) {
   ap0 = mid.getAp() and
-  Stage4::storeStepCand(mid.getNodeEx(), _, tc, node, _, mid.getConfiguration()) and
+  Stage5::storeStepCand(mid.getNodeEx(), _, tc, node, _, mid.getConfiguration()) and
   state = mid.getState() and
   cc = mid.getCallContext()
 }
@@ -3436,7 +3680,7 @@ private NodeEx getAnOutNodeFlow(
   ReturnKindExt kind, DataFlowCall call, AccessPathApprox apa, Configuration config
 ) {
   result.asNode() = kind.getAnOutNode(call) and
-  Stage4::revFlow(result, _, apa, config)
+  Stage5::revFlow(result, _, apa, config)
 }
 
 /**
@@ -3472,7 +3716,7 @@ private predicate parameterCand(
   DataFlowCallable callable, ParameterPosition pos, AccessPathApprox apa, Configuration config
 ) {
   exists(ParamNodeEx p |
-    Stage4::revFlow(p, _, apa, config) and
+    Stage5::revFlow(p, _, apa, config) and
     p.isParameterOf(callable, pos)
   )
 }
@@ -3751,9 +3995,17 @@ predicate stageStats(
   n = 45 and
   Stage4::stats(false, nodes, fields, conscand, states, tuples, config)
   or
-  stage = "5 Fwd" and n = 50 and finalStats(true, nodes, fields, conscand, states, tuples)
+  stage = "5 Fwd" and
+  n = 50 and
+  Stage5::stats(true, nodes, fields, conscand, states, tuples, config)
   or
-  stage = "5 Rev" and n = 55 and finalStats(false, nodes, fields, conscand, states, tuples)
+  stage = "5 Rev" and
+  n = 55 and
+  Stage5::stats(false, nodes, fields, conscand, states, tuples, config)
+  or
+  stage = "6 Fwd" and n = 60 and finalStats(true, nodes, fields, conscand, states, tuples)
+  or
+  stage = "6 Rev" and n = 65 and finalStats(false, nodes, fields, conscand, states, tuples)
 }
 
 private module FlowExploration {
diff --git a/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImpl3.qll b/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImpl3.qll
index ccde916a3c2..6741ccc2f06 100644
--- a/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImpl3.qll
+++ b/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImpl3.qll
@@ -621,23 +621,6 @@ private predicate parameterFlowThroughAllowed(ParamNodeEx p, ReturnKindExt kind)
   )
 }
 
-/**
- * Holds if flow from a parameter at position `pos` inside `c` to a return node of
- * kind `kind` is allowed.
- *
- * We don't expect a parameter to return stored in itself, unless
- * explicitly allowed
- */
-bindingset[c, pos, kind]
-private predicate parameterFlowThroughAllowed(
-  DataFlowCallable c, ParameterPosition pos, ReturnKindExt kind
-) {
-  exists(ParamNodeEx p |
-    p.isParameterOf(c, pos) and
-    parameterFlowThroughAllowed(p, kind)
-  )
-}
-
 private module Stage1 implements StageSig {
   class Ap = Unit;
 
@@ -980,6 +963,12 @@ private module Stage1 implements StageSig {
   pragma[nomagic]
   predicate revFlow(NodeEx node, Configuration config) { revFlow(node, _, config) }
 
+  pragma[nomagic]
+  predicate revFlowAp(NodeEx node, Ap ap, Configuration config) {
+    revFlow(node, config) and
+    exists(ap)
+  }
+
   bindingset[node, state, config]
   predicate revFlow(NodeEx node, FlowState state, Ap ap, Configuration config) {
     revFlow(node, _, pragma[only_bind_into](config)) and
@@ -1022,9 +1011,13 @@ private module Stage1 implements StageSig {
   }
 
   pragma[nomagic]
-  predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config) {
+  predicate returnMayFlowThrough(
+    RetNodeEx ret, Ap argAp, Ap ap, ReturnKindExt kind, Configuration config
+  ) {
     throughFlowNodeCand(ret, config) and
-    kind = ret.getKind()
+    kind = ret.getKind() and
+    exists(argAp) and
+    exists(ap)
   }
 
   pragma[nomagic]
@@ -1189,6 +1182,8 @@ private signature module StageSig {
 
   predicate revFlow(NodeEx node, Configuration config);
 
+  predicate revFlowAp(NodeEx node, Ap ap, Configuration config);
+
   bindingset[node, state, config]
   predicate revFlow(NodeEx node, FlowState state, Ap ap, Configuration config);
 
@@ -1196,7 +1191,9 @@ private signature module StageSig {
 
   predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config);
 
-  predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config);
+  predicate returnMayFlowThrough(
+    RetNodeEx ret, Ap argAp, Ap ap, ReturnKindExt kind, Configuration config
+  );
 
   predicate storeStepCand(
     NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, DataFlowType contentType,
@@ -1281,21 +1278,43 @@ private module MkStage<StageSig PrevStage> {
     import Param
 
     /* Begin: Stage logic. */
-    bindingset[result, apa]
-    private ApApprox unbindApa(ApApprox apa) {
-      pragma[only_bind_out](apa) = pragma[only_bind_out](result)
+    // use an alias as a workaround for bad functionality-induced joins
+    pragma[nomagic]
+    private predicate revFlowApAlias(NodeEx node, ApApprox apa, Configuration config) {
+      PrevStage::revFlowAp(node, apa, config)
+    }
+
+    pragma[nomagic]
+    private predicate flowIntoCallApa(
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, ApApprox apa,
+      Configuration config
+    ) {
+      flowIntoCall(call, arg, p, allowsFieldFlow, config) and
+      PrevStage::revFlowAp(p, pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
+      revFlowApAlias(arg, pragma[only_bind_into](apa), pragma[only_bind_into](config))
+    }
+
+    pragma[nomagic]
+    private predicate flowOutOfCallApa(
+      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
+      ApApprox apa, Configuration config
+    ) {
+      flowOutOfCall(call, ret, kind, out, allowsFieldFlow, config) and
+      PrevStage::revFlowAp(out, pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
+      revFlowApAlias(ret, pragma[only_bind_into](apa), pragma[only_bind_into](config))
     }
 
     pragma[nomagic]
     private predicate flowThroughOutOfCall(
-      DataFlowCall call, DataFlowCallable c, CcCall ccc, RetNodeEx ret, ReturnKindExt kind,
-      NodeEx out, boolean allowsFieldFlow, Configuration config
+      DataFlowCall call, CcCall ccc, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow,
+      ApApprox argApa, ApApprox apa, Configuration config
     ) {
-      flowOutOfCall(call, ret, kind, out, allowsFieldFlow, pragma[only_bind_into](config)) and
-      PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
-      PrevStage::returnMayFlowThrough(ret, kind, pragma[only_bind_into](config)) and
-      matchesCall(ccc, call) and
-      c = ret.getEnclosingCallable()
+      exists(ReturnKindExt kind |
+        flowOutOfCallApa(call, ret, kind, out, allowsFieldFlow, apa, pragma[only_bind_into](config)) and
+        PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
+        PrevStage::returnMayFlowThrough(ret, argApa, apa, kind, pragma[only_bind_into](config)) and
+        matchesCall(ccc, call)
+      )
     }
 
     /**
@@ -1307,39 +1326,50 @@ private module MkStage<StageSig PrevStage> {
      * corresponding parameter position and access path of that argument, respectively.
      */
     pragma[nomagic]
+    additional predicate fwdFlow(
+      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      Ap ap, ApApprox apa, Configuration config
+    ) {
+      fwdFlow0(node, state, cc, summaryCtx, argAp, ap, apa, config) and
+      PrevStage::revFlow(node, state, apa, config) and
+      filter(node, state, ap, config)
+    }
+
+    pragma[inline]
     additional predicate fwdFlow(
       NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
       Ap ap, Configuration config
     ) {
-      fwdFlow0(node, state, cc, summaryCtx, argAp, ap, config) and
-      PrevStage::revFlow(node, state, unbindApa(getApprox(ap)), config) and
-      filter(node, state, ap, config)
+      fwdFlow(node, state, cc, summaryCtx, argAp, ap, _, config)
     }
 
     pragma[nomagic]
     private predicate fwdFlow0(
       NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      Ap ap, Configuration config
+      Ap ap, ApApprox apa, Configuration config
     ) {
       sourceNode(node, state, config) and
       (if hasSourceCallCtx(config) then cc = ccSomeCall() else cc = ccNone()) and
       argAp = apNone() and
       summaryCtx = TParameterPositionNone() and
-      ap = getApNil(node)
+      ap = getApNil(node) and
+      apa = getApprox(ap)
       or
-      exists(NodeEx mid, FlowState state0, Ap ap0, LocalCc localCc |
-        fwdFlow(mid, state0, cc, summaryCtx, argAp, ap0, config) and
+      exists(NodeEx mid, FlowState state0, Ap ap0, ApApprox apa0, LocalCc localCc |
+        fwdFlow(mid, state0, cc, summaryCtx, argAp, ap0, apa0, config) and
         localCc = getLocalCc(mid, cc)
       |
         localStep(mid, state0, node, state, true, _, config, localCc) and
-        ap = ap0
+        ap = ap0 and
+        apa = apa0
         or
         localStep(mid, state0, node, state, false, ap, config, localCc) and
-        ap0 instanceof ApNil
+        ap0 instanceof ApNil and
+        apa = getApprox(ap)
       )
       or
       exists(NodeEx mid |
-        fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, apa, pragma[only_bind_into](config)) and
         jumpStep(mid, node, config) and
         cc = ccNone() and
         summaryCtx = TParameterPositionNone() and
@@ -1352,7 +1382,8 @@ private module MkStage<StageSig PrevStage> {
         cc = ccNone() and
         summaryCtx = TParameterPositionNone() and
         argAp = apNone() and
-        ap = getApNil(node)
+        ap = getApNil(node) and
+        apa = getApprox(ap)
       )
       or
       exists(NodeEx mid, FlowState state0, ApNil nil |
@@ -1361,32 +1392,32 @@ private module MkStage<StageSig PrevStage> {
         cc = ccNone() and
         summaryCtx = TParameterPositionNone() and
         argAp = apNone() and
-        ap = getApNil(node)
+        ap = getApNil(node) and
+        apa = getApprox(ap)
       )
       or
       // store
       exists(TypedContent tc, Ap ap0 |
         fwdFlowStore(_, ap0, tc, node, state, cc, summaryCtx, argAp, config) and
-        ap = apCons(tc, ap0)
+        ap = apCons(tc, ap0) and
+        apa = getApprox(ap)
       )
       or
       // read
       exists(Ap ap0, Content c |
         fwdFlowRead(ap0, c, _, node, state, cc, summaryCtx, argAp, config) and
-        fwdFlowConsCand(ap0, c, ap, config)
+        fwdFlowConsCand(ap0, c, ap, config) and
+        apa = getApprox(ap)
       )
       or
       // flow into a callable
-      exists(ApApprox apa |
-        fwdFlowIn(_, node, state, _, cc, _, _, ap, config) and
-        apa = getApprox(ap) and
-        if PrevStage::parameterMayFlowThrough(node, apa, config)
-        then (
-          summaryCtx = TParameterPositionSome(node.(ParamNodeEx).getPosition()) and
-          argAp = apSome(ap)
-        ) else (
-          summaryCtx = TParameterPositionNone() and argAp = apNone()
-        )
+      fwdFlowIn(_, node, state, _, cc, _, _, ap, apa, config) and
+      if PrevStage::parameterMayFlowThrough(node, apa, config)
+      then (
+        summaryCtx = TParameterPositionSome(node.(ParamNodeEx).getPosition()) and
+        argAp = apSome(ap)
+      ) else (
+        summaryCtx = TParameterPositionNone() and argAp = apNone()
       )
       or
       // flow out of a callable
@@ -1394,8 +1425,8 @@ private module MkStage<StageSig PrevStage> {
         DataFlowCall call, RetNodeEx ret, boolean allowsFieldFlow, CcNoCall innercc,
         DataFlowCallable inner
       |
-        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, config) and
-        flowOutOfCall(call, ret, _, node, allowsFieldFlow, config) and
+        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, apa, config) and
+        flowOutOfCallApa(call, ret, _, node, allowsFieldFlow, apa, config) and
         inner = ret.getEnclosingCallable() and
         cc = getCallContextReturn(inner, call, innercc) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
@@ -1403,7 +1434,7 @@ private module MkStage<StageSig PrevStage> {
       or
       // flow through a callable
       exists(DataFlowCall call, ParameterPosition summaryCtx0, Ap argAp0 |
-        fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, config) and
+        fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, apa, config) and
         fwdFlowIsEntered(call, cc, summaryCtx, argAp, summaryCtx0, argAp0, config)
       )
     }
@@ -1413,9 +1444,9 @@ private module MkStage<StageSig PrevStage> {
       NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc,
       ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
     ) {
-      exists(DataFlowType contentType |
-        fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, config) and
-        PrevStage::storeStepCand(node1, unbindApa(getApprox(ap1)), tc, node2, contentType, config) and
+      exists(DataFlowType contentType, ApApprox apa1 |
+        fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, apa1, config) and
+        PrevStage::storeStepCand(node1, apa1, tc, node2, contentType, config) and
         typecheckStore(ap1, contentType)
       )
     }
@@ -1433,43 +1464,104 @@ private module MkStage<StageSig PrevStage> {
       )
     }
 
+    private class ApNonNil instanceof Ap {
+      pragma[nomagic]
+      ApNonNil() { not this instanceof ApNil }
+
+      string toString() { result = "" }
+    }
+
+    pragma[nomagic]
+    private predicate fwdFlowRead0(
+      NodeEx node1, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      ApNonNil ap, Configuration config
+    ) {
+      fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
+      PrevStage::readStepCand(node1, _, _, config)
+    }
+
     pragma[nomagic]
     private predicate fwdFlowRead(
       Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc,
       ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
     ) {
-      fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
+      fwdFlowRead0(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, c, node2, config) and
       getHeadContent(ap) = c
     }
 
     pragma[nomagic]
     private predicate fwdFlowIn(
-      DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, Cc innercc,
-      ParameterPositionOption summaryCtx, ApOption argAp, Ap ap, Configuration config
+      DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, CcCall innercc,
+      ParameterPositionOption summaryCtx, ApOption argAp, Ap ap, ApApprox apa, Configuration config
     ) {
       exists(ArgNodeEx arg, boolean allowsFieldFlow |
-        fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, config) and
-        flowIntoCall(call, arg, p, allowsFieldFlow, config) and
+        fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, apa, config) and
+        flowIntoCallApa(call, arg, p, allowsFieldFlow, apa, config) and
         innercc = getCallContextCall(call, p.getEnclosingCallable(), outercc) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
+    pragma[nomagic]
+    private predicate fwdFlowRetFromArg(
+      RetNodeEx ret, FlowState state, CcCall ccc, ParameterPosition summaryCtx, ParamNodeEx p,
+      Ap argAp, ApApprox argApa, Ap ap, ApApprox apa, Configuration config
+    ) {
+      exists(DataFlowCallable c, ReturnKindExt kind |
+        fwdFlow(pragma[only_bind_into](ret), state, ccc,
+          TParameterPositionSome(pragma[only_bind_into](summaryCtx)), apSome(argAp), ap, apa, config) and
+        getApprox(argAp) = argApa and
+        c = ret.getEnclosingCallable() and
+        kind = ret.getKind() and
+        p.isParameterOf(c, pragma[only_bind_into](summaryCtx)) and
+        parameterFlowThroughAllowed(p, kind)
+      )
+    }
+
+    pragma[inline]
+    private predicate fwdFlowInMayFlowThrough(
+      DataFlowCall call, Cc cc, CcCall innerCc, ParameterPositionOption summaryCtx, ApOption argAp,
+      ParamNodeEx param, Ap ap, ApApprox apa, Configuration config
+    ) {
+      fwdFlowIn(call, pragma[only_bind_into](param), _, cc, innerCc, summaryCtx, argAp, ap,
+        pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
+      PrevStage::parameterMayFlowThrough(param, apa, config)
+    }
+
+    // dedup before joining with `flowThroughOutOfCall`
+    pragma[nomagic]
+    private predicate fwdFlowInMayFlowThroughProj(
+      DataFlowCall call, CcCall innerCc, ApApprox apa, Configuration config
+    ) {
+      fwdFlowInMayFlowThrough(call, _, innerCc, _, _, _, _, apa, config)
+    }
+
+    /**
+     * Same as `flowThroughOutOfCall`, but restricted to calls that are reached
+     * in the flow covered by `fwdFlow`, where data might flow through the target
+     * callable and back out at `call`.
+     */
+    pragma[nomagic]
+    private predicate fwdFlowThroughOutOfCall(
+      DataFlowCall call, CcCall ccc, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow,
+      ApApprox argApa, ApApprox apa, Configuration config
+    ) {
+      fwdFlowInMayFlowThroughProj(call, ccc, argApa, config) and
+      flowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, argApa, apa, config)
+    }
+
     pragma[nomagic]
     private predicate fwdFlowOutFromArg(
       DataFlowCall call, NodeEx out, FlowState state, ParameterPosition summaryCtx, Ap argAp, Ap ap,
-      Configuration config
+      ApApprox apa, Configuration config
     ) {
-      exists(
-        DataFlowCallable c, RetNodeEx ret, ReturnKindExt kind, boolean allowsFieldFlow, CcCall ccc
-      |
-        fwdFlow(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc),
-          TParameterPositionSome(pragma[only_bind_into](summaryCtx)), apSome(argAp), ap, config) and
-        flowThroughOutOfCall(call, pragma[only_bind_into](c), ccc, ret, kind, out, allowsFieldFlow,
+      exists(RetNodeEx ret, boolean allowsFieldFlow, CcCall ccc, ApApprox argApa |
+        fwdFlowRetFromArg(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc),
+          summaryCtx, _, argAp, pragma[only_bind_into](argApa), ap, pragma[only_bind_into](apa),
           config) and
-        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
-        parameterFlowThroughAllowed(c, pragma[only_bind_into](summaryCtx), kind)
+        fwdFlowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, argApa, apa, config) and
+        (if allowsFieldFlow = false then ap instanceof ApNil else any())
       )
     }
 
@@ -1483,8 +1575,7 @@ private module MkStage<StageSig PrevStage> {
       ParameterPosition pos, Ap ap, Configuration config
     ) {
       exists(ParamNodeEx param |
-        fwdFlowIn(call, param, _, cc, _, summaryCtx, argAp, ap, config) and
-        PrevStage::parameterMayFlowThrough(param, unbindApa(getApprox(ap)), config) and
+        fwdFlowInMayFlowThrough(call, cc, _, summaryCtx, argAp, param, ap, _, config) and
         pos = param.getPosition()
       )
     }
@@ -1505,41 +1596,55 @@ private module MkStage<StageSig PrevStage> {
       fwdFlowConsCand(ap1, c, ap2, config)
     }
 
-    pragma[nomagic]
-    private predicate returnFlowsThrough0(
-      RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, DataFlowCallable c,
-      ParameterPosition ppos, Ap argAp, Ap ap, Configuration config
-    ) {
-      exists(boolean allowsFieldFlow |
-        fwdFlow(ret, state, ccc, TParameterPositionSome(ppos), apSome(argAp), ap, config) and
-        flowThroughOutOfCall(_, c, _, pragma[only_bind_into](ret), kind, _, allowsFieldFlow,
-          pragma[only_bind_into](config)) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
-      )
-    }
-
     pragma[nomagic]
     private predicate returnFlowsThrough(
       RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, ParamNodeEx p, Ap argAp,
       Ap ap, Configuration config
     ) {
-      exists(DataFlowCallable c, ParameterPosition ppos |
-        returnFlowsThrough0(ret, kind, state, ccc, c, ppos, argAp, ap, config) and
-        p.isParameterOf(c, ppos) and
-        parameterFlowThroughAllowed(p, kind)
+      exists(boolean allowsFieldFlow, ApApprox argApa, ApApprox apa |
+        fwdFlowRetFromArg(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc), _, p,
+          argAp, pragma[only_bind_into](argApa), ap, pragma[only_bind_into](apa), config) and
+        kind = ret.getKind() and
+        fwdFlowThroughOutOfCall(_, ccc, ret, _, allowsFieldFlow, argApa, apa, config) and
+        (if allowsFieldFlow = false then ap instanceof ApNil else any())
       )
     }
 
     pragma[nomagic]
     private predicate flowThroughIntoCall(
-      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp,
+      Configuration config
     ) {
-      exists(Ap argAp |
-        flowIntoCall(call, pragma[only_bind_into](arg), pragma[only_bind_into](p), allowsFieldFlow,
+      exists(ApApprox argApa |
+        flowIntoCallApa(call, pragma[only_bind_into](arg), pragma[only_bind_into](p),
+          allowsFieldFlow, argApa, pragma[only_bind_into](config)) and
+        fwdFlow(arg, _, _, _, _, pragma[only_bind_into](argAp), argApa,
           pragma[only_bind_into](config)) and
-        fwdFlow(arg, _, _, _, _, pragma[only_bind_into](argAp), pragma[only_bind_into](config)) and
         returnFlowsThrough(_, _, _, _, p, pragma[only_bind_into](argAp), _,
-          pragma[only_bind_into](config))
+          pragma[only_bind_into](config)) and
+        if allowsFieldFlow = false then argAp instanceof ApNil else any()
+      )
+    }
+
+    pragma[nomagic]
+    private predicate flowIntoCallAp(
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap ap,
+      Configuration config
+    ) {
+      exists(ApApprox apa |
+        flowIntoCallApa(call, arg, p, allowsFieldFlow, apa, config) and
+        fwdFlow(arg, _, _, _, _, ap, apa, config)
+      )
+    }
+
+    pragma[nomagic]
+    private predicate flowOutOfCallAp(
+      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
+      Ap ap, Configuration config
+    ) {
+      exists(ApApprox apa |
+        flowOutOfCallApa(call, ret, kind, out, allowsFieldFlow, apa, config) and
+        fwdFlow(ret, _, _, _, _, ap, apa, config)
       )
     }
 
@@ -1628,7 +1733,7 @@ private module MkStage<StageSig PrevStage> {
       // flow into a callable
       exists(ParamNodeEx p, boolean allowsFieldFlow |
         revFlow(p, state, TReturnCtxNone(), returnAp, ap, config) and
-        flowIntoCall(_, node, p, allowsFieldFlow, config) and
+        flowIntoCallAp(_, node, p, allowsFieldFlow, ap, config) and
         (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
         returnCtx = TReturnCtxNone()
       )
@@ -1682,22 +1787,41 @@ private module MkStage<StageSig PrevStage> {
     ) {
       exists(NodeEx out, boolean allowsFieldFlow |
         revFlow(out, state, returnCtx, returnAp, ap, config) and
-        flowOutOfCall(call, ret, kind, out, allowsFieldFlow, config) and
+        flowOutOfCallAp(call, ret, kind, out, allowsFieldFlow, ap, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
+    /**
+     * Same as `flowThroughIntoCall`, but restricted to calls that are reached
+     * in the flow covered by `revFlow`, where data might flow through the target
+     * callable and back out at `call`.
+     */
+    pragma[nomagic]
+    private predicate revFlowThroughIntoCall(
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp,
+      Configuration config
+    ) {
+      flowThroughIntoCall(call, arg, p, allowsFieldFlow, argAp, config) and
+      revFlowIsReturned(call, _, _, _, _, config)
+    }
+
+    pragma[nomagic]
+    private predicate revFlowParamToReturn(
+      ParamNodeEx p, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap, Configuration config
+    ) {
+      revFlow(p, state, TReturnCtxMaybeFlowThrough(kind), apSome(returnAp), ap, config) and
+      parameterFlowThroughAllowed(p, kind)
+    }
+
     pragma[nomagic]
     private predicate revFlowInToReturn(
       DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap,
       Configuration config
     ) {
       exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(pragma[only_bind_into](p), state,
-          TReturnCtxMaybeFlowThrough(pragma[only_bind_into](kind)), apSome(returnAp), ap, config) and
-        flowThroughIntoCall(call, arg, p, allowsFieldFlow, config) and
-        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
-        parameterFlowThroughAllowed(p, kind)
+        revFlowParamToReturn(p, state, kind, returnAp, ap, config) and
+        revFlowThroughIntoCall(call, arg, p, allowsFieldFlow, ap, config)
       )
     }
 
@@ -1750,6 +1874,11 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     predicate revFlow(NodeEx node, Configuration config) { revFlow(node, _, _, _, _, config) }
 
+    pragma[nomagic]
+    predicate revFlowAp(NodeEx node, Ap ap, Configuration config) {
+      revFlow(node, _, _, _, ap, config)
+    }
+
     // use an alias as a workaround for bad functionality-induced joins
     pragma[nomagic]
     additional predicate revFlowAlias(NodeEx node, Configuration config) {
@@ -1786,9 +1915,9 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate parameterFlowsThroughRev(
-      ParamNodeEx p, Ap ap, ReturnKindExt kind, Configuration config
+      ParamNodeEx p, Ap ap, ReturnKindExt kind, Ap returnAp, Configuration config
     ) {
-      revFlow(p, _, TReturnCtxMaybeFlowThrough(kind), apSome(_), ap, config) and
+      revFlow(p, _, TReturnCtxMaybeFlowThrough(kind), apSome(returnAp), ap, config) and
       parameterFlowThroughAllowed(p, kind)
     }
 
@@ -1796,27 +1925,36 @@ private module MkStage<StageSig PrevStage> {
     predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
       exists(RetNodeEx ret, ReturnKindExt kind |
         returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
-        parameterFlowsThroughRev(p, ap, kind, config)
+        parameterFlowsThroughRev(p, ap, kind, _, config)
       )
     }
 
     pragma[nomagic]
-    predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config) {
-      exists(ParamNodeEx p, Ap ap |
-        returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
-        parameterFlowsThroughRev(p, ap, kind, config)
+    predicate returnMayFlowThrough(
+      RetNodeEx ret, Ap argAp, Ap ap, ReturnKindExt kind, Configuration config
+    ) {
+      exists(ParamNodeEx p |
+        returnFlowsThrough(ret, kind, _, _, p, argAp, ap, config) and
+        parameterFlowsThroughRev(p, argAp, kind, ap, config)
+      )
+    }
+
+    pragma[nomagic]
+    predicate revFlowInToReturnIsReturned(
+      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnCtx returnCtx, ApOption returnAp,
+      Ap ap, Configuration config
+    ) {
+      exists(ReturnKindExt returnKind0, Ap returnAp0 |
+        revFlowInToReturn(call, arg, state, returnKind0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
       )
     }
 
     pragma[nomagic]
     predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
-      exists(
-        ReturnKindExt returnKind0, Ap returnAp0, ArgNodeEx arg, FlowState state,
-        ReturnCtx returnCtx, ApOption returnAp, Ap ap
-      |
+      exists(ArgNodeEx arg, FlowState state, ReturnCtx returnCtx, ApOption returnAp, Ap ap |
         revFlow(arg, state, returnCtx, returnAp, ap, config) and
-        revFlowInToReturn(call, arg, state, returnKind0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
+        revFlowInToReturnIsReturned(call, arg, state, returnCtx, returnAp, ap, config)
       )
     }
 
@@ -2179,16 +2317,16 @@ private module LocalFlowBigStep {
   pragma[nomagic]
   predicate localFlowBigStep(
     NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
-    AccessPathFrontNil apf, Configuration config, LocalCallContext callContext
+    DataFlowType t, Configuration config, LocalCallContext callContext
   ) {
-    localFlowStepPlus(node1, state1, node2, preservesValue, apf.getType(), config, callContext) and
+    localFlowStepPlus(node1, state1, node2, preservesValue, t, config, callContext) and
     localFlowExit(node2, state1, config) and
     state1 = state2
     or
     additionalLocalFlowStepNodeCand2(node1, state1, node2, state2, config) and
     state1 != state2 and
     preservesValue = false and
-    apf = TFrontNil(node2.getDataFlowType()) and
+    t = node2.getDataFlowType() and
     callContext.relevantFor(node1.getEnclosingCallable()) and
     not exists(DataFlowCall call | call = callContext.(LocalCallContextSpecificCall).getCall() |
       isUnreachableInCallCached(node1.asNode(), call) or
@@ -2202,11 +2340,87 @@ private import LocalFlowBigStep
 private module Stage3Param implements MkStage<Stage2>::StageParam {
   private module PrevStage = Stage2;
 
+  class Ap = ApproxAccessPathFront;
+
+  class ApNil = ApproxAccessPathFrontNil;
+
+  PrevStage::Ap getApprox(Ap ap) { result = ap.toBoolNonEmpty() }
+
+  ApNil getApNil(NodeEx node) {
+    PrevStage::revFlow(node, _) and result = TApproxFrontNil(node.getDataFlowType())
+  }
+
+  bindingset[tc, tail]
+  Ap apCons(TypedContent tc, Ap tail) { result.getAHead() = tc and exists(tail) }
+
+  pragma[noinline]
+  Content getHeadContent(Ap ap) { result = ap.getAHead().getContent() }
+
+  class ApOption = ApproxAccessPathFrontOption;
+
+  ApOption apNone() { result = TApproxAccessPathFrontNone() }
+
+  ApOption apSome(Ap ap) { result = TApproxAccessPathFrontSome(ap) }
+
+  import BooleanCallContext
+
+  predicate localStep(
+    NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
+    ApproxAccessPathFrontNil ap, Configuration config, LocalCc lcc
+  ) {
+    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap.getType(), config, _) and
+    exists(lcc)
+  }
+
+  predicate flowOutOfCall = flowOutOfCallNodeCand2/6;
+
+  predicate flowIntoCall = flowIntoCallNodeCand2/5;
+
+  pragma[nomagic]
+  private predicate expectsContentCand(NodeEx node, Ap ap, Configuration config) {
+    exists(Content c |
+      PrevStage::revFlow(node, pragma[only_bind_into](config)) and
+      PrevStage::readStepCand(_, c, _, pragma[only_bind_into](config)) and
+      expectsContentEx(node, c) and
+      c = ap.getAHead().getContent()
+    )
+  }
+
+  pragma[nomagic]
+  private predicate castingNodeEx(NodeEx node) { node.asNode() instanceof CastingNode }
+
+  bindingset[node, state, ap, config]
+  predicate filter(NodeEx node, FlowState state, Ap ap, Configuration config) {
+    exists(state) and
+    exists(config) and
+    (if castingNodeEx(node) then compatibleTypes(node.getDataFlowType(), ap.getType()) else any()) and
+    (
+      notExpectsContent(node)
+      or
+      expectsContentCand(node, ap, config)
+    )
+  }
+
+  bindingset[ap, contentType]
+  predicate typecheckStore(Ap ap, DataFlowType contentType) {
+    // We need to typecheck stores here, since reverse flow through a getter
+    // might have a different type here compared to inside the getter.
+    compatibleTypes(ap.getType(), contentType)
+  }
+}
+
+private module Stage3 implements StageSig {
+  import MkStage<Stage2>::Stage<Stage3Param>
+}
+
+private module Stage4Param implements MkStage<Stage3>::StageParam {
+  private module PrevStage = Stage3;
+
   class Ap = AccessPathFront;
 
   class ApNil = AccessPathFrontNil;
 
-  PrevStage::Ap getApprox(Ap ap) { result = ap.toBoolNonEmpty() }
+  PrevStage::Ap getApprox(Ap ap) { result = ap.toApprox() }
 
   ApNil getApNil(NodeEx node) {
     PrevStage::revFlow(node, _) and result = TFrontNil(node.getDataFlowType())
@@ -2226,16 +2440,42 @@ private module Stage3Param implements MkStage<Stage2>::StageParam {
 
   import BooleanCallContext
 
+  pragma[nomagic]
   predicate localStep(
     NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
     ApNil ap, Configuration config, LocalCc lcc
   ) {
-    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap, config, _) and exists(lcc)
+    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap.getType(), config, _) and
+    PrevStage::revFlow(node1, pragma[only_bind_into](state1), _, pragma[only_bind_into](config)) and
+    PrevStage::revFlowAlias(node2, pragma[only_bind_into](state2), _, pragma[only_bind_into](config)) and
+    exists(lcc)
   }
 
-  predicate flowOutOfCall = flowOutOfCallNodeCand2/6;
+  pragma[nomagic]
+  predicate flowOutOfCall(
+    DataFlowCall call, RetNodeEx node1, ReturnKindExt kind, NodeEx node2, boolean allowsFieldFlow,
+    Configuration config
+  ) {
+    exists(FlowState state |
+      flowOutOfCallNodeCand2(call, node1, kind, node2, allowsFieldFlow, config) and
+      PrevStage::revFlow(node2, pragma[only_bind_into](state), _, pragma[only_bind_into](config)) and
+      PrevStage::revFlowAlias(node1, pragma[only_bind_into](state), _,
+        pragma[only_bind_into](config))
+    )
+  }
 
-  predicate flowIntoCall = flowIntoCallNodeCand2/5;
+  pragma[nomagic]
+  predicate flowIntoCall(
+    DataFlowCall call, ArgNodeEx node1, ParamNodeEx node2, boolean allowsFieldFlow,
+    Configuration config
+  ) {
+    exists(FlowState state |
+      flowIntoCallNodeCand2(call, node1, node2, allowsFieldFlow, config) and
+      PrevStage::revFlow(node2, pragma[only_bind_into](state), _, pragma[only_bind_into](config)) and
+      PrevStage::revFlowAlias(node1, pragma[only_bind_into](state), _,
+        pragma[only_bind_into](config))
+    )
+  }
 
   pragma[nomagic]
   private predicate clearSet(NodeEx node, ContentSet c, Configuration config) {
@@ -2291,8 +2531,8 @@ private module Stage3Param implements MkStage<Stage2>::StageParam {
   }
 }
 
-private module Stage3 implements StageSig {
-  import MkStage<Stage2>::Stage<Stage3Param>
+private module Stage4 implements StageSig {
+  import MkStage<Stage3>::Stage<Stage4Param>
 }
 
 /**
@@ -2303,8 +2543,8 @@ private predicate flowCandSummaryCtx(
   NodeEx node, FlowState state, AccessPathFront argApf, Configuration config
 ) {
   exists(AccessPathFront apf |
-    Stage3::revFlow(node, state, TReturnCtxMaybeFlowThrough(_), _, apf, config) and
-    Stage3::fwdFlow(node, state, any(Stage3::CcCall ccc), _, TAccessPathFrontSome(argApf), apf,
+    Stage4::revFlow(node, state, TReturnCtxMaybeFlowThrough(_), _, apf, config) and
+    Stage4::fwdFlow(node, state, any(Stage4::CcCall ccc), _, TAccessPathFrontSome(argApf), apf,
       config)
   )
 }
@@ -2315,10 +2555,10 @@ private predicate flowCandSummaryCtx(
  */
 private predicate expensiveLen2unfolding(TypedContent tc, Configuration config) {
   exists(int tails, int nodes, int apLimit, int tupleLimit |
-    tails = strictcount(AccessPathFront apf | Stage3::consCand(tc, apf, config)) and
+    tails = strictcount(AccessPathFront apf | Stage4::consCand(tc, apf, config)) and
     nodes =
       strictcount(NodeEx n, FlowState state |
-        Stage3::revFlow(n, state, any(AccessPathFrontHead apf | apf.getHead() = tc), config)
+        Stage4::revFlow(n, state, any(AccessPathFrontHead apf | apf.getHead() = tc), config)
         or
         flowCandSummaryCtx(n, state, any(AccessPathFrontHead apf | apf.getHead() = tc), config)
       ) and
@@ -2332,11 +2572,11 @@ private predicate expensiveLen2unfolding(TypedContent tc, Configuration config)
 private newtype TAccessPathApprox =
   TNil(DataFlowType t) or
   TConsNil(TypedContent tc, DataFlowType t) {
-    Stage3::consCand(tc, TFrontNil(t), _) and
+    Stage4::consCand(tc, TFrontNil(t), _) and
     not expensiveLen2unfolding(tc, _)
   } or
   TConsCons(TypedContent tc1, TypedContent tc2, int len) {
-    Stage3::consCand(tc1, TFrontHead(tc2), _) and
+    Stage4::consCand(tc1, TFrontHead(tc2), _) and
     len in [2 .. accessPathLimit()] and
     not expensiveLen2unfolding(tc1, _)
   } or
@@ -2466,7 +2706,7 @@ private class AccessPathApproxCons1 extends AccessPathApproxCons, TCons1 {
   override AccessPathApprox pop(TypedContent head) {
     head = tc and
     (
-      exists(TypedContent tc2 | Stage3::consCand(tc, TFrontHead(tc2), _) |
+      exists(TypedContent tc2 | Stage4::consCand(tc, TFrontHead(tc2), _) |
         result = TConsCons(tc2, _, len - 1)
         or
         len = 2 and
@@ -2477,7 +2717,7 @@ private class AccessPathApproxCons1 extends AccessPathApproxCons, TCons1 {
       or
       exists(DataFlowType t |
         len = 1 and
-        Stage3::consCand(tc, TFrontNil(t), _) and
+        Stage4::consCand(tc, TFrontNil(t), _) and
         result = TNil(t)
       )
     )
@@ -2502,13 +2742,14 @@ private class AccessPathApproxOption extends TAccessPathApproxOption {
   }
 }
 
-private module Stage4Param implements MkStage<Stage3>::StageParam {
-  private module PrevStage = Stage3;
+private module Stage5Param implements MkStage<Stage4>::StageParam {
+  private module PrevStage = Stage4;
 
   class Ap = AccessPathApprox;
 
   class ApNil = AccessPathApproxNil;
 
+  pragma[nomagic]
   PrevStage::Ap getApprox(Ap ap) { result = ap.getFront() }
 
   ApNil getApNil(NodeEx node) {
@@ -2534,7 +2775,9 @@ private module Stage4Param implements MkStage<Stage3>::StageParam {
     NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
     ApNil ap, Configuration config, LocalCc lcc
   ) {
-    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap.getFront(), config, lcc)
+    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap.getType(), config, lcc) and
+    PrevStage::revFlow(node1, pragma[only_bind_into](state1), _, pragma[only_bind_into](config)) and
+    PrevStage::revFlowAlias(node2, pragma[only_bind_into](state2), _, pragma[only_bind_into](config))
   }
 
   pragma[nomagic]
@@ -2571,7 +2814,7 @@ private module Stage4Param implements MkStage<Stage3>::StageParam {
   predicate typecheckStore(Ap ap, DataFlowType contentType) { any() }
 }
 
-private module Stage4 = MkStage<Stage3>::Stage<Stage4Param>;
+private module Stage5 = MkStage<Stage4>::Stage<Stage5Param>;
 
 bindingset[conf, result]
 private Configuration unbindConf(Configuration conf) {
@@ -2585,8 +2828,8 @@ private predicate nodeMayUseSummary0(
 ) {
   exists(AccessPathApprox apa0 |
     c = n.getEnclosingCallable() and
-    Stage4::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
-    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TParameterPositionSome(pos),
+    Stage5::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
+    Stage5::fwdFlow(n, state, any(CallContextCall ccc), TParameterPositionSome(pos),
       TAccessPathApproxSome(apa), apa0, config)
   )
 }
@@ -2596,7 +2839,7 @@ private predicate nodeMayUseSummary(
   NodeEx n, FlowState state, AccessPathApprox apa, Configuration config
 ) {
   exists(DataFlowCallable c, ParameterPosition pos, ParamNodeEx p |
-    Stage4::parameterMayFlowThrough(p, apa, config) and
+    Stage5::parameterMayFlowThrough(p, apa, config) and
     nodeMayUseSummary0(n, c, pos, state, apa, config) and
     p.isParameterOf(c, pos)
   )
@@ -2606,8 +2849,8 @@ private newtype TSummaryCtx =
   TSummaryCtxNone() or
   TSummaryCtxSome(ParamNodeEx p, FlowState state, AccessPath ap) {
     exists(Configuration config |
-      Stage4::parameterMayFlowThrough(p, ap.getApprox(), config) and
-      Stage4::revFlow(p, state, _, config)
+      Stage5::parameterMayFlowThrough(p, ap.getApprox(), config) and
+      Stage5::revFlow(p, state, _, config)
     )
   }
 
@@ -2656,7 +2899,7 @@ private int count1to2unfold(AccessPathApproxCons1 apa, Configuration config) {
     len = apa.len() and
     result =
       strictcount(AccessPathFront apf |
-        Stage4::consCand(tc, any(AccessPathApprox ap | ap.getFront() = apf and ap.len() = len - 1),
+        Stage5::consCand(tc, any(AccessPathApprox ap | ap.getFront() = apf and ap.len() = len - 1),
           config)
       )
   )
@@ -2665,7 +2908,7 @@ private int count1to2unfold(AccessPathApproxCons1 apa, Configuration config) {
 private int countNodesUsingAccessPath(AccessPathApprox apa, Configuration config) {
   result =
     strictcount(NodeEx n, FlowState state |
-      Stage4::revFlow(n, state, apa, config) or nodeMayUseSummary(n, state, apa, config)
+      Stage5::revFlow(n, state, apa, config) or nodeMayUseSummary(n, state, apa, config)
     )
 }
 
@@ -2686,7 +2929,7 @@ private predicate expensiveLen1to2unfolding(AccessPathApproxCons1 apa, Configura
 private AccessPathApprox getATail(AccessPathApprox apa, Configuration config) {
   exists(TypedContent head |
     apa.pop(head) = result and
-    Stage4::consCand(head, result, config)
+    Stage5::consCand(head, result, config)
   )
 }
 
@@ -2768,7 +3011,7 @@ private newtype TPathNode =
     NodeEx node, FlowState state, CallContext cc, SummaryCtx sc, AccessPath ap, Configuration config
   ) {
     // A PathNode is introduced by a source ...
-    Stage4::revFlow(node, state, config) and
+    Stage5::revFlow(node, state, config) and
     sourceNode(node, state, config) and
     (
       if hasSourceCallCtx(config)
@@ -2782,7 +3025,7 @@ private newtype TPathNode =
     exists(PathNodeMid mid |
       pathStep(mid, node, state, cc, sc, ap) and
       pragma[only_bind_into](config) = mid.getConfiguration() and
-      Stage4::revFlow(node, state, ap.getApprox(), pragma[only_bind_into](config))
+      Stage5::revFlow(node, state, ap.getApprox(), pragma[only_bind_into](config))
     )
   } or
   TPathNodeSink(NodeEx node, FlowState state, Configuration config) {
@@ -2924,7 +3167,7 @@ private class AccessPathCons2 extends AccessPath, TAccessPathCons2 {
   override TypedContent getHead() { result = head1 }
 
   override AccessPath getTail() {
-    Stage4::consCand(head1, result.getApprox(), _) and
+    Stage5::consCand(head1, result.getApprox(), _) and
     result.getHead() = head2 and
     result.length() = len - 1
   }
@@ -2955,7 +3198,7 @@ private class AccessPathCons1 extends AccessPath, TAccessPathCons1 {
   override TypedContent getHead() { result = head }
 
   override AccessPath getTail() {
-    Stage4::consCand(head, result.getApprox(), _) and result.length() = len - 1
+    Stage5::consCand(head, result.getApprox(), _) and result.length() = len - 1
   }
 
   override AccessPathFrontHead getFront() { result = TFrontHead(head) }
@@ -3347,7 +3590,8 @@ private predicate pathStep(
     AccessPath ap0, NodeEx midnode, FlowState state0, Configuration conf, LocalCallContext localCC
   |
     pathNode(mid, midnode, state0, cc, sc, ap0, conf, localCC) and
-    localFlowBigStep(midnode, state0, node, state, false, ap.getFront(), conf, localCC) and
+    localFlowBigStep(midnode, state0, node, state, false, ap.(AccessPathNil).getType(), conf,
+      localCC) and
     ap0 instanceof AccessPathNil
   )
   or
@@ -3389,7 +3633,7 @@ private predicate pathReadStep(
 ) {
   ap0 = mid.getAp() and
   tc = ap0.getHead() and
-  Stage4::readStepCand(mid.getNodeEx(), tc.getContent(), node, mid.getConfiguration()) and
+  Stage5::readStepCand(mid.getNodeEx(), tc.getContent(), node, mid.getConfiguration()) and
   state = mid.getState() and
   cc = mid.getCallContext()
 }
@@ -3399,7 +3643,7 @@ private predicate pathStoreStep(
   PathNodeMid mid, NodeEx node, FlowState state, AccessPath ap0, TypedContent tc, CallContext cc
 ) {
   ap0 = mid.getAp() and
-  Stage4::storeStepCand(mid.getNodeEx(), _, tc, node, _, mid.getConfiguration()) and
+  Stage5::storeStepCand(mid.getNodeEx(), _, tc, node, _, mid.getConfiguration()) and
   state = mid.getState() and
   cc = mid.getCallContext()
 }
@@ -3436,7 +3680,7 @@ private NodeEx getAnOutNodeFlow(
   ReturnKindExt kind, DataFlowCall call, AccessPathApprox apa, Configuration config
 ) {
   result.asNode() = kind.getAnOutNode(call) and
-  Stage4::revFlow(result, _, apa, config)
+  Stage5::revFlow(result, _, apa, config)
 }
 
 /**
@@ -3472,7 +3716,7 @@ private predicate parameterCand(
   DataFlowCallable callable, ParameterPosition pos, AccessPathApprox apa, Configuration config
 ) {
   exists(ParamNodeEx p |
-    Stage4::revFlow(p, _, apa, config) and
+    Stage5::revFlow(p, _, apa, config) and
     p.isParameterOf(callable, pos)
   )
 }
@@ -3751,9 +3995,17 @@ predicate stageStats(
   n = 45 and
   Stage4::stats(false, nodes, fields, conscand, states, tuples, config)
   or
-  stage = "5 Fwd" and n = 50 and finalStats(true, nodes, fields, conscand, states, tuples)
+  stage = "5 Fwd" and
+  n = 50 and
+  Stage5::stats(true, nodes, fields, conscand, states, tuples, config)
   or
-  stage = "5 Rev" and n = 55 and finalStats(false, nodes, fields, conscand, states, tuples)
+  stage = "5 Rev" and
+  n = 55 and
+  Stage5::stats(false, nodes, fields, conscand, states, tuples, config)
+  or
+  stage = "6 Fwd" and n = 60 and finalStats(true, nodes, fields, conscand, states, tuples)
+  or
+  stage = "6 Rev" and n = 65 and finalStats(false, nodes, fields, conscand, states, tuples)
 }
 
 private module FlowExploration {
diff --git a/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImpl4.qll b/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImpl4.qll
index ccde916a3c2..6741ccc2f06 100644
--- a/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImpl4.qll
+++ b/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImpl4.qll
@@ -621,23 +621,6 @@ private predicate parameterFlowThroughAllowed(ParamNodeEx p, ReturnKindExt kind)
   )
 }
 
-/**
- * Holds if flow from a parameter at position `pos` inside `c` to a return node of
- * kind `kind` is allowed.
- *
- * We don't expect a parameter to return stored in itself, unless
- * explicitly allowed
- */
-bindingset[c, pos, kind]
-private predicate parameterFlowThroughAllowed(
-  DataFlowCallable c, ParameterPosition pos, ReturnKindExt kind
-) {
-  exists(ParamNodeEx p |
-    p.isParameterOf(c, pos) and
-    parameterFlowThroughAllowed(p, kind)
-  )
-}
-
 private module Stage1 implements StageSig {
   class Ap = Unit;
 
@@ -980,6 +963,12 @@ private module Stage1 implements StageSig {
   pragma[nomagic]
   predicate revFlow(NodeEx node, Configuration config) { revFlow(node, _, config) }
 
+  pragma[nomagic]
+  predicate revFlowAp(NodeEx node, Ap ap, Configuration config) {
+    revFlow(node, config) and
+    exists(ap)
+  }
+
   bindingset[node, state, config]
   predicate revFlow(NodeEx node, FlowState state, Ap ap, Configuration config) {
     revFlow(node, _, pragma[only_bind_into](config)) and
@@ -1022,9 +1011,13 @@ private module Stage1 implements StageSig {
   }
 
   pragma[nomagic]
-  predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config) {
+  predicate returnMayFlowThrough(
+    RetNodeEx ret, Ap argAp, Ap ap, ReturnKindExt kind, Configuration config
+  ) {
     throughFlowNodeCand(ret, config) and
-    kind = ret.getKind()
+    kind = ret.getKind() and
+    exists(argAp) and
+    exists(ap)
   }
 
   pragma[nomagic]
@@ -1189,6 +1182,8 @@ private signature module StageSig {
 
   predicate revFlow(NodeEx node, Configuration config);
 
+  predicate revFlowAp(NodeEx node, Ap ap, Configuration config);
+
   bindingset[node, state, config]
   predicate revFlow(NodeEx node, FlowState state, Ap ap, Configuration config);
 
@@ -1196,7 +1191,9 @@ private signature module StageSig {
 
   predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config);
 
-  predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config);
+  predicate returnMayFlowThrough(
+    RetNodeEx ret, Ap argAp, Ap ap, ReturnKindExt kind, Configuration config
+  );
 
   predicate storeStepCand(
     NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, DataFlowType contentType,
@@ -1281,21 +1278,43 @@ private module MkStage<StageSig PrevStage> {
     import Param
 
     /* Begin: Stage logic. */
-    bindingset[result, apa]
-    private ApApprox unbindApa(ApApprox apa) {
-      pragma[only_bind_out](apa) = pragma[only_bind_out](result)
+    // use an alias as a workaround for bad functionality-induced joins
+    pragma[nomagic]
+    private predicate revFlowApAlias(NodeEx node, ApApprox apa, Configuration config) {
+      PrevStage::revFlowAp(node, apa, config)
+    }
+
+    pragma[nomagic]
+    private predicate flowIntoCallApa(
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, ApApprox apa,
+      Configuration config
+    ) {
+      flowIntoCall(call, arg, p, allowsFieldFlow, config) and
+      PrevStage::revFlowAp(p, pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
+      revFlowApAlias(arg, pragma[only_bind_into](apa), pragma[only_bind_into](config))
+    }
+
+    pragma[nomagic]
+    private predicate flowOutOfCallApa(
+      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
+      ApApprox apa, Configuration config
+    ) {
+      flowOutOfCall(call, ret, kind, out, allowsFieldFlow, config) and
+      PrevStage::revFlowAp(out, pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
+      revFlowApAlias(ret, pragma[only_bind_into](apa), pragma[only_bind_into](config))
     }
 
     pragma[nomagic]
     private predicate flowThroughOutOfCall(
-      DataFlowCall call, DataFlowCallable c, CcCall ccc, RetNodeEx ret, ReturnKindExt kind,
-      NodeEx out, boolean allowsFieldFlow, Configuration config
+      DataFlowCall call, CcCall ccc, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow,
+      ApApprox argApa, ApApprox apa, Configuration config
     ) {
-      flowOutOfCall(call, ret, kind, out, allowsFieldFlow, pragma[only_bind_into](config)) and
-      PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
-      PrevStage::returnMayFlowThrough(ret, kind, pragma[only_bind_into](config)) and
-      matchesCall(ccc, call) and
-      c = ret.getEnclosingCallable()
+      exists(ReturnKindExt kind |
+        flowOutOfCallApa(call, ret, kind, out, allowsFieldFlow, apa, pragma[only_bind_into](config)) and
+        PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
+        PrevStage::returnMayFlowThrough(ret, argApa, apa, kind, pragma[only_bind_into](config)) and
+        matchesCall(ccc, call)
+      )
     }
 
     /**
@@ -1307,39 +1326,50 @@ private module MkStage<StageSig PrevStage> {
      * corresponding parameter position and access path of that argument, respectively.
      */
     pragma[nomagic]
+    additional predicate fwdFlow(
+      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      Ap ap, ApApprox apa, Configuration config
+    ) {
+      fwdFlow0(node, state, cc, summaryCtx, argAp, ap, apa, config) and
+      PrevStage::revFlow(node, state, apa, config) and
+      filter(node, state, ap, config)
+    }
+
+    pragma[inline]
     additional predicate fwdFlow(
       NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
       Ap ap, Configuration config
     ) {
-      fwdFlow0(node, state, cc, summaryCtx, argAp, ap, config) and
-      PrevStage::revFlow(node, state, unbindApa(getApprox(ap)), config) and
-      filter(node, state, ap, config)
+      fwdFlow(node, state, cc, summaryCtx, argAp, ap, _, config)
     }
 
     pragma[nomagic]
     private predicate fwdFlow0(
       NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      Ap ap, Configuration config
+      Ap ap, ApApprox apa, Configuration config
     ) {
       sourceNode(node, state, config) and
       (if hasSourceCallCtx(config) then cc = ccSomeCall() else cc = ccNone()) and
       argAp = apNone() and
       summaryCtx = TParameterPositionNone() and
-      ap = getApNil(node)
+      ap = getApNil(node) and
+      apa = getApprox(ap)
       or
-      exists(NodeEx mid, FlowState state0, Ap ap0, LocalCc localCc |
-        fwdFlow(mid, state0, cc, summaryCtx, argAp, ap0, config) and
+      exists(NodeEx mid, FlowState state0, Ap ap0, ApApprox apa0, LocalCc localCc |
+        fwdFlow(mid, state0, cc, summaryCtx, argAp, ap0, apa0, config) and
         localCc = getLocalCc(mid, cc)
       |
         localStep(mid, state0, node, state, true, _, config, localCc) and
-        ap = ap0
+        ap = ap0 and
+        apa = apa0
         or
         localStep(mid, state0, node, state, false, ap, config, localCc) and
-        ap0 instanceof ApNil
+        ap0 instanceof ApNil and
+        apa = getApprox(ap)
       )
       or
       exists(NodeEx mid |
-        fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, apa, pragma[only_bind_into](config)) and
         jumpStep(mid, node, config) and
         cc = ccNone() and
         summaryCtx = TParameterPositionNone() and
@@ -1352,7 +1382,8 @@ private module MkStage<StageSig PrevStage> {
         cc = ccNone() and
         summaryCtx = TParameterPositionNone() and
         argAp = apNone() and
-        ap = getApNil(node)
+        ap = getApNil(node) and
+        apa = getApprox(ap)
       )
       or
       exists(NodeEx mid, FlowState state0, ApNil nil |
@@ -1361,32 +1392,32 @@ private module MkStage<StageSig PrevStage> {
         cc = ccNone() and
         summaryCtx = TParameterPositionNone() and
         argAp = apNone() and
-        ap = getApNil(node)
+        ap = getApNil(node) and
+        apa = getApprox(ap)
       )
       or
       // store
       exists(TypedContent tc, Ap ap0 |
         fwdFlowStore(_, ap0, tc, node, state, cc, summaryCtx, argAp, config) and
-        ap = apCons(tc, ap0)
+        ap = apCons(tc, ap0) and
+        apa = getApprox(ap)
       )
       or
       // read
       exists(Ap ap0, Content c |
         fwdFlowRead(ap0, c, _, node, state, cc, summaryCtx, argAp, config) and
-        fwdFlowConsCand(ap0, c, ap, config)
+        fwdFlowConsCand(ap0, c, ap, config) and
+        apa = getApprox(ap)
       )
       or
       // flow into a callable
-      exists(ApApprox apa |
-        fwdFlowIn(_, node, state, _, cc, _, _, ap, config) and
-        apa = getApprox(ap) and
-        if PrevStage::parameterMayFlowThrough(node, apa, config)
-        then (
-          summaryCtx = TParameterPositionSome(node.(ParamNodeEx).getPosition()) and
-          argAp = apSome(ap)
-        ) else (
-          summaryCtx = TParameterPositionNone() and argAp = apNone()
-        )
+      fwdFlowIn(_, node, state, _, cc, _, _, ap, apa, config) and
+      if PrevStage::parameterMayFlowThrough(node, apa, config)
+      then (
+        summaryCtx = TParameterPositionSome(node.(ParamNodeEx).getPosition()) and
+        argAp = apSome(ap)
+      ) else (
+        summaryCtx = TParameterPositionNone() and argAp = apNone()
       )
       or
       // flow out of a callable
@@ -1394,8 +1425,8 @@ private module MkStage<StageSig PrevStage> {
         DataFlowCall call, RetNodeEx ret, boolean allowsFieldFlow, CcNoCall innercc,
         DataFlowCallable inner
       |
-        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, config) and
-        flowOutOfCall(call, ret, _, node, allowsFieldFlow, config) and
+        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, apa, config) and
+        flowOutOfCallApa(call, ret, _, node, allowsFieldFlow, apa, config) and
         inner = ret.getEnclosingCallable() and
         cc = getCallContextReturn(inner, call, innercc) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
@@ -1403,7 +1434,7 @@ private module MkStage<StageSig PrevStage> {
       or
       // flow through a callable
       exists(DataFlowCall call, ParameterPosition summaryCtx0, Ap argAp0 |
-        fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, config) and
+        fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, apa, config) and
         fwdFlowIsEntered(call, cc, summaryCtx, argAp, summaryCtx0, argAp0, config)
       )
     }
@@ -1413,9 +1444,9 @@ private module MkStage<StageSig PrevStage> {
       NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc,
       ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
     ) {
-      exists(DataFlowType contentType |
-        fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, config) and
-        PrevStage::storeStepCand(node1, unbindApa(getApprox(ap1)), tc, node2, contentType, config) and
+      exists(DataFlowType contentType, ApApprox apa1 |
+        fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, apa1, config) and
+        PrevStage::storeStepCand(node1, apa1, tc, node2, contentType, config) and
         typecheckStore(ap1, contentType)
       )
     }
@@ -1433,43 +1464,104 @@ private module MkStage<StageSig PrevStage> {
       )
     }
 
+    private class ApNonNil instanceof Ap {
+      pragma[nomagic]
+      ApNonNil() { not this instanceof ApNil }
+
+      string toString() { result = "" }
+    }
+
+    pragma[nomagic]
+    private predicate fwdFlowRead0(
+      NodeEx node1, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      ApNonNil ap, Configuration config
+    ) {
+      fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
+      PrevStage::readStepCand(node1, _, _, config)
+    }
+
     pragma[nomagic]
     private predicate fwdFlowRead(
       Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc,
       ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
     ) {
-      fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
+      fwdFlowRead0(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, c, node2, config) and
       getHeadContent(ap) = c
     }
 
     pragma[nomagic]
     private predicate fwdFlowIn(
-      DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, Cc innercc,
-      ParameterPositionOption summaryCtx, ApOption argAp, Ap ap, Configuration config
+      DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, CcCall innercc,
+      ParameterPositionOption summaryCtx, ApOption argAp, Ap ap, ApApprox apa, Configuration config
     ) {
       exists(ArgNodeEx arg, boolean allowsFieldFlow |
-        fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, config) and
-        flowIntoCall(call, arg, p, allowsFieldFlow, config) and
+        fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, apa, config) and
+        flowIntoCallApa(call, arg, p, allowsFieldFlow, apa, config) and
         innercc = getCallContextCall(call, p.getEnclosingCallable(), outercc) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
+    pragma[nomagic]
+    private predicate fwdFlowRetFromArg(
+      RetNodeEx ret, FlowState state, CcCall ccc, ParameterPosition summaryCtx, ParamNodeEx p,
+      Ap argAp, ApApprox argApa, Ap ap, ApApprox apa, Configuration config
+    ) {
+      exists(DataFlowCallable c, ReturnKindExt kind |
+        fwdFlow(pragma[only_bind_into](ret), state, ccc,
+          TParameterPositionSome(pragma[only_bind_into](summaryCtx)), apSome(argAp), ap, apa, config) and
+        getApprox(argAp) = argApa and
+        c = ret.getEnclosingCallable() and
+        kind = ret.getKind() and
+        p.isParameterOf(c, pragma[only_bind_into](summaryCtx)) and
+        parameterFlowThroughAllowed(p, kind)
+      )
+    }
+
+    pragma[inline]
+    private predicate fwdFlowInMayFlowThrough(
+      DataFlowCall call, Cc cc, CcCall innerCc, ParameterPositionOption summaryCtx, ApOption argAp,
+      ParamNodeEx param, Ap ap, ApApprox apa, Configuration config
+    ) {
+      fwdFlowIn(call, pragma[only_bind_into](param), _, cc, innerCc, summaryCtx, argAp, ap,
+        pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
+      PrevStage::parameterMayFlowThrough(param, apa, config)
+    }
+
+    // dedup before joining with `flowThroughOutOfCall`
+    pragma[nomagic]
+    private predicate fwdFlowInMayFlowThroughProj(
+      DataFlowCall call, CcCall innerCc, ApApprox apa, Configuration config
+    ) {
+      fwdFlowInMayFlowThrough(call, _, innerCc, _, _, _, _, apa, config)
+    }
+
+    /**
+     * Same as `flowThroughOutOfCall`, but restricted to calls that are reached
+     * in the flow covered by `fwdFlow`, where data might flow through the target
+     * callable and back out at `call`.
+     */
+    pragma[nomagic]
+    private predicate fwdFlowThroughOutOfCall(
+      DataFlowCall call, CcCall ccc, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow,
+      ApApprox argApa, ApApprox apa, Configuration config
+    ) {
+      fwdFlowInMayFlowThroughProj(call, ccc, argApa, config) and
+      flowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, argApa, apa, config)
+    }
+
     pragma[nomagic]
     private predicate fwdFlowOutFromArg(
       DataFlowCall call, NodeEx out, FlowState state, ParameterPosition summaryCtx, Ap argAp, Ap ap,
-      Configuration config
+      ApApprox apa, Configuration config
     ) {
-      exists(
-        DataFlowCallable c, RetNodeEx ret, ReturnKindExt kind, boolean allowsFieldFlow, CcCall ccc
-      |
-        fwdFlow(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc),
-          TParameterPositionSome(pragma[only_bind_into](summaryCtx)), apSome(argAp), ap, config) and
-        flowThroughOutOfCall(call, pragma[only_bind_into](c), ccc, ret, kind, out, allowsFieldFlow,
+      exists(RetNodeEx ret, boolean allowsFieldFlow, CcCall ccc, ApApprox argApa |
+        fwdFlowRetFromArg(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc),
+          summaryCtx, _, argAp, pragma[only_bind_into](argApa), ap, pragma[only_bind_into](apa),
           config) and
-        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
-        parameterFlowThroughAllowed(c, pragma[only_bind_into](summaryCtx), kind)
+        fwdFlowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, argApa, apa, config) and
+        (if allowsFieldFlow = false then ap instanceof ApNil else any())
       )
     }
 
@@ -1483,8 +1575,7 @@ private module MkStage<StageSig PrevStage> {
       ParameterPosition pos, Ap ap, Configuration config
     ) {
       exists(ParamNodeEx param |
-        fwdFlowIn(call, param, _, cc, _, summaryCtx, argAp, ap, config) and
-        PrevStage::parameterMayFlowThrough(param, unbindApa(getApprox(ap)), config) and
+        fwdFlowInMayFlowThrough(call, cc, _, summaryCtx, argAp, param, ap, _, config) and
         pos = param.getPosition()
       )
     }
@@ -1505,41 +1596,55 @@ private module MkStage<StageSig PrevStage> {
       fwdFlowConsCand(ap1, c, ap2, config)
     }
 
-    pragma[nomagic]
-    private predicate returnFlowsThrough0(
-      RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, DataFlowCallable c,
-      ParameterPosition ppos, Ap argAp, Ap ap, Configuration config
-    ) {
-      exists(boolean allowsFieldFlow |
-        fwdFlow(ret, state, ccc, TParameterPositionSome(ppos), apSome(argAp), ap, config) and
-        flowThroughOutOfCall(_, c, _, pragma[only_bind_into](ret), kind, _, allowsFieldFlow,
-          pragma[only_bind_into](config)) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
-      )
-    }
-
     pragma[nomagic]
     private predicate returnFlowsThrough(
       RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, ParamNodeEx p, Ap argAp,
       Ap ap, Configuration config
     ) {
-      exists(DataFlowCallable c, ParameterPosition ppos |
-        returnFlowsThrough0(ret, kind, state, ccc, c, ppos, argAp, ap, config) and
-        p.isParameterOf(c, ppos) and
-        parameterFlowThroughAllowed(p, kind)
+      exists(boolean allowsFieldFlow, ApApprox argApa, ApApprox apa |
+        fwdFlowRetFromArg(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc), _, p,
+          argAp, pragma[only_bind_into](argApa), ap, pragma[only_bind_into](apa), config) and
+        kind = ret.getKind() and
+        fwdFlowThroughOutOfCall(_, ccc, ret, _, allowsFieldFlow, argApa, apa, config) and
+        (if allowsFieldFlow = false then ap instanceof ApNil else any())
       )
     }
 
     pragma[nomagic]
     private predicate flowThroughIntoCall(
-      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp,
+      Configuration config
     ) {
-      exists(Ap argAp |
-        flowIntoCall(call, pragma[only_bind_into](arg), pragma[only_bind_into](p), allowsFieldFlow,
+      exists(ApApprox argApa |
+        flowIntoCallApa(call, pragma[only_bind_into](arg), pragma[only_bind_into](p),
+          allowsFieldFlow, argApa, pragma[only_bind_into](config)) and
+        fwdFlow(arg, _, _, _, _, pragma[only_bind_into](argAp), argApa,
           pragma[only_bind_into](config)) and
-        fwdFlow(arg, _, _, _, _, pragma[only_bind_into](argAp), pragma[only_bind_into](config)) and
         returnFlowsThrough(_, _, _, _, p, pragma[only_bind_into](argAp), _,
-          pragma[only_bind_into](config))
+          pragma[only_bind_into](config)) and
+        if allowsFieldFlow = false then argAp instanceof ApNil else any()
+      )
+    }
+
+    pragma[nomagic]
+    private predicate flowIntoCallAp(
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap ap,
+      Configuration config
+    ) {
+      exists(ApApprox apa |
+        flowIntoCallApa(call, arg, p, allowsFieldFlow, apa, config) and
+        fwdFlow(arg, _, _, _, _, ap, apa, config)
+      )
+    }
+
+    pragma[nomagic]
+    private predicate flowOutOfCallAp(
+      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
+      Ap ap, Configuration config
+    ) {
+      exists(ApApprox apa |
+        flowOutOfCallApa(call, ret, kind, out, allowsFieldFlow, apa, config) and
+        fwdFlow(ret, _, _, _, _, ap, apa, config)
       )
     }
 
@@ -1628,7 +1733,7 @@ private module MkStage<StageSig PrevStage> {
       // flow into a callable
       exists(ParamNodeEx p, boolean allowsFieldFlow |
         revFlow(p, state, TReturnCtxNone(), returnAp, ap, config) and
-        flowIntoCall(_, node, p, allowsFieldFlow, config) and
+        flowIntoCallAp(_, node, p, allowsFieldFlow, ap, config) and
         (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
         returnCtx = TReturnCtxNone()
       )
@@ -1682,22 +1787,41 @@ private module MkStage<StageSig PrevStage> {
     ) {
       exists(NodeEx out, boolean allowsFieldFlow |
         revFlow(out, state, returnCtx, returnAp, ap, config) and
-        flowOutOfCall(call, ret, kind, out, allowsFieldFlow, config) and
+        flowOutOfCallAp(call, ret, kind, out, allowsFieldFlow, ap, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
+    /**
+     * Same as `flowThroughIntoCall`, but restricted to calls that are reached
+     * in the flow covered by `revFlow`, where data might flow through the target
+     * callable and back out at `call`.
+     */
+    pragma[nomagic]
+    private predicate revFlowThroughIntoCall(
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp,
+      Configuration config
+    ) {
+      flowThroughIntoCall(call, arg, p, allowsFieldFlow, argAp, config) and
+      revFlowIsReturned(call, _, _, _, _, config)
+    }
+
+    pragma[nomagic]
+    private predicate revFlowParamToReturn(
+      ParamNodeEx p, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap, Configuration config
+    ) {
+      revFlow(p, state, TReturnCtxMaybeFlowThrough(kind), apSome(returnAp), ap, config) and
+      parameterFlowThroughAllowed(p, kind)
+    }
+
     pragma[nomagic]
     private predicate revFlowInToReturn(
       DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap,
       Configuration config
     ) {
       exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(pragma[only_bind_into](p), state,
-          TReturnCtxMaybeFlowThrough(pragma[only_bind_into](kind)), apSome(returnAp), ap, config) and
-        flowThroughIntoCall(call, arg, p, allowsFieldFlow, config) and
-        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
-        parameterFlowThroughAllowed(p, kind)
+        revFlowParamToReturn(p, state, kind, returnAp, ap, config) and
+        revFlowThroughIntoCall(call, arg, p, allowsFieldFlow, ap, config)
       )
     }
 
@@ -1750,6 +1874,11 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     predicate revFlow(NodeEx node, Configuration config) { revFlow(node, _, _, _, _, config) }
 
+    pragma[nomagic]
+    predicate revFlowAp(NodeEx node, Ap ap, Configuration config) {
+      revFlow(node, _, _, _, ap, config)
+    }
+
     // use an alias as a workaround for bad functionality-induced joins
     pragma[nomagic]
     additional predicate revFlowAlias(NodeEx node, Configuration config) {
@@ -1786,9 +1915,9 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate parameterFlowsThroughRev(
-      ParamNodeEx p, Ap ap, ReturnKindExt kind, Configuration config
+      ParamNodeEx p, Ap ap, ReturnKindExt kind, Ap returnAp, Configuration config
     ) {
-      revFlow(p, _, TReturnCtxMaybeFlowThrough(kind), apSome(_), ap, config) and
+      revFlow(p, _, TReturnCtxMaybeFlowThrough(kind), apSome(returnAp), ap, config) and
       parameterFlowThroughAllowed(p, kind)
     }
 
@@ -1796,27 +1925,36 @@ private module MkStage<StageSig PrevStage> {
     predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
       exists(RetNodeEx ret, ReturnKindExt kind |
         returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
-        parameterFlowsThroughRev(p, ap, kind, config)
+        parameterFlowsThroughRev(p, ap, kind, _, config)
       )
     }
 
     pragma[nomagic]
-    predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config) {
-      exists(ParamNodeEx p, Ap ap |
-        returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
-        parameterFlowsThroughRev(p, ap, kind, config)
+    predicate returnMayFlowThrough(
+      RetNodeEx ret, Ap argAp, Ap ap, ReturnKindExt kind, Configuration config
+    ) {
+      exists(ParamNodeEx p |
+        returnFlowsThrough(ret, kind, _, _, p, argAp, ap, config) and
+        parameterFlowsThroughRev(p, argAp, kind, ap, config)
+      )
+    }
+
+    pragma[nomagic]
+    predicate revFlowInToReturnIsReturned(
+      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnCtx returnCtx, ApOption returnAp,
+      Ap ap, Configuration config
+    ) {
+      exists(ReturnKindExt returnKind0, Ap returnAp0 |
+        revFlowInToReturn(call, arg, state, returnKind0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
       )
     }
 
     pragma[nomagic]
     predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
-      exists(
-        ReturnKindExt returnKind0, Ap returnAp0, ArgNodeEx arg, FlowState state,
-        ReturnCtx returnCtx, ApOption returnAp, Ap ap
-      |
+      exists(ArgNodeEx arg, FlowState state, ReturnCtx returnCtx, ApOption returnAp, Ap ap |
         revFlow(arg, state, returnCtx, returnAp, ap, config) and
-        revFlowInToReturn(call, arg, state, returnKind0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
+        revFlowInToReturnIsReturned(call, arg, state, returnCtx, returnAp, ap, config)
       )
     }
 
@@ -2179,16 +2317,16 @@ private module LocalFlowBigStep {
   pragma[nomagic]
   predicate localFlowBigStep(
     NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
-    AccessPathFrontNil apf, Configuration config, LocalCallContext callContext
+    DataFlowType t, Configuration config, LocalCallContext callContext
   ) {
-    localFlowStepPlus(node1, state1, node2, preservesValue, apf.getType(), config, callContext) and
+    localFlowStepPlus(node1, state1, node2, preservesValue, t, config, callContext) and
     localFlowExit(node2, state1, config) and
     state1 = state2
     or
     additionalLocalFlowStepNodeCand2(node1, state1, node2, state2, config) and
     state1 != state2 and
     preservesValue = false and
-    apf = TFrontNil(node2.getDataFlowType()) and
+    t = node2.getDataFlowType() and
     callContext.relevantFor(node1.getEnclosingCallable()) and
     not exists(DataFlowCall call | call = callContext.(LocalCallContextSpecificCall).getCall() |
       isUnreachableInCallCached(node1.asNode(), call) or
@@ -2202,11 +2340,87 @@ private import LocalFlowBigStep
 private module Stage3Param implements MkStage<Stage2>::StageParam {
   private module PrevStage = Stage2;
 
+  class Ap = ApproxAccessPathFront;
+
+  class ApNil = ApproxAccessPathFrontNil;
+
+  PrevStage::Ap getApprox(Ap ap) { result = ap.toBoolNonEmpty() }
+
+  ApNil getApNil(NodeEx node) {
+    PrevStage::revFlow(node, _) and result = TApproxFrontNil(node.getDataFlowType())
+  }
+
+  bindingset[tc, tail]
+  Ap apCons(TypedContent tc, Ap tail) { result.getAHead() = tc and exists(tail) }
+
+  pragma[noinline]
+  Content getHeadContent(Ap ap) { result = ap.getAHead().getContent() }
+
+  class ApOption = ApproxAccessPathFrontOption;
+
+  ApOption apNone() { result = TApproxAccessPathFrontNone() }
+
+  ApOption apSome(Ap ap) { result = TApproxAccessPathFrontSome(ap) }
+
+  import BooleanCallContext
+
+  predicate localStep(
+    NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
+    ApproxAccessPathFrontNil ap, Configuration config, LocalCc lcc
+  ) {
+    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap.getType(), config, _) and
+    exists(lcc)
+  }
+
+  predicate flowOutOfCall = flowOutOfCallNodeCand2/6;
+
+  predicate flowIntoCall = flowIntoCallNodeCand2/5;
+
+  pragma[nomagic]
+  private predicate expectsContentCand(NodeEx node, Ap ap, Configuration config) {
+    exists(Content c |
+      PrevStage::revFlow(node, pragma[only_bind_into](config)) and
+      PrevStage::readStepCand(_, c, _, pragma[only_bind_into](config)) and
+      expectsContentEx(node, c) and
+      c = ap.getAHead().getContent()
+    )
+  }
+
+  pragma[nomagic]
+  private predicate castingNodeEx(NodeEx node) { node.asNode() instanceof CastingNode }
+
+  bindingset[node, state, ap, config]
+  predicate filter(NodeEx node, FlowState state, Ap ap, Configuration config) {
+    exists(state) and
+    exists(config) and
+    (if castingNodeEx(node) then compatibleTypes(node.getDataFlowType(), ap.getType()) else any()) and
+    (
+      notExpectsContent(node)
+      or
+      expectsContentCand(node, ap, config)
+    )
+  }
+
+  bindingset[ap, contentType]
+  predicate typecheckStore(Ap ap, DataFlowType contentType) {
+    // We need to typecheck stores here, since reverse flow through a getter
+    // might have a different type here compared to inside the getter.
+    compatibleTypes(ap.getType(), contentType)
+  }
+}
+
+private module Stage3 implements StageSig {
+  import MkStage<Stage2>::Stage<Stage3Param>
+}
+
+private module Stage4Param implements MkStage<Stage3>::StageParam {
+  private module PrevStage = Stage3;
+
   class Ap = AccessPathFront;
 
   class ApNil = AccessPathFrontNil;
 
-  PrevStage::Ap getApprox(Ap ap) { result = ap.toBoolNonEmpty() }
+  PrevStage::Ap getApprox(Ap ap) { result = ap.toApprox() }
 
   ApNil getApNil(NodeEx node) {
     PrevStage::revFlow(node, _) and result = TFrontNil(node.getDataFlowType())
@@ -2226,16 +2440,42 @@ private module Stage3Param implements MkStage<Stage2>::StageParam {
 
   import BooleanCallContext
 
+  pragma[nomagic]
   predicate localStep(
     NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
     ApNil ap, Configuration config, LocalCc lcc
   ) {
-    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap, config, _) and exists(lcc)
+    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap.getType(), config, _) and
+    PrevStage::revFlow(node1, pragma[only_bind_into](state1), _, pragma[only_bind_into](config)) and
+    PrevStage::revFlowAlias(node2, pragma[only_bind_into](state2), _, pragma[only_bind_into](config)) and
+    exists(lcc)
   }
 
-  predicate flowOutOfCall = flowOutOfCallNodeCand2/6;
+  pragma[nomagic]
+  predicate flowOutOfCall(
+    DataFlowCall call, RetNodeEx node1, ReturnKindExt kind, NodeEx node2, boolean allowsFieldFlow,
+    Configuration config
+  ) {
+    exists(FlowState state |
+      flowOutOfCallNodeCand2(call, node1, kind, node2, allowsFieldFlow, config) and
+      PrevStage::revFlow(node2, pragma[only_bind_into](state), _, pragma[only_bind_into](config)) and
+      PrevStage::revFlowAlias(node1, pragma[only_bind_into](state), _,
+        pragma[only_bind_into](config))
+    )
+  }
 
-  predicate flowIntoCall = flowIntoCallNodeCand2/5;
+  pragma[nomagic]
+  predicate flowIntoCall(
+    DataFlowCall call, ArgNodeEx node1, ParamNodeEx node2, boolean allowsFieldFlow,
+    Configuration config
+  ) {
+    exists(FlowState state |
+      flowIntoCallNodeCand2(call, node1, node2, allowsFieldFlow, config) and
+      PrevStage::revFlow(node2, pragma[only_bind_into](state), _, pragma[only_bind_into](config)) and
+      PrevStage::revFlowAlias(node1, pragma[only_bind_into](state), _,
+        pragma[only_bind_into](config))
+    )
+  }
 
   pragma[nomagic]
   private predicate clearSet(NodeEx node, ContentSet c, Configuration config) {
@@ -2291,8 +2531,8 @@ private module Stage3Param implements MkStage<Stage2>::StageParam {
   }
 }
 
-private module Stage3 implements StageSig {
-  import MkStage<Stage2>::Stage<Stage3Param>
+private module Stage4 implements StageSig {
+  import MkStage<Stage3>::Stage<Stage4Param>
 }
 
 /**
@@ -2303,8 +2543,8 @@ private predicate flowCandSummaryCtx(
   NodeEx node, FlowState state, AccessPathFront argApf, Configuration config
 ) {
   exists(AccessPathFront apf |
-    Stage3::revFlow(node, state, TReturnCtxMaybeFlowThrough(_), _, apf, config) and
-    Stage3::fwdFlow(node, state, any(Stage3::CcCall ccc), _, TAccessPathFrontSome(argApf), apf,
+    Stage4::revFlow(node, state, TReturnCtxMaybeFlowThrough(_), _, apf, config) and
+    Stage4::fwdFlow(node, state, any(Stage4::CcCall ccc), _, TAccessPathFrontSome(argApf), apf,
       config)
   )
 }
@@ -2315,10 +2555,10 @@ private predicate flowCandSummaryCtx(
  */
 private predicate expensiveLen2unfolding(TypedContent tc, Configuration config) {
   exists(int tails, int nodes, int apLimit, int tupleLimit |
-    tails = strictcount(AccessPathFront apf | Stage3::consCand(tc, apf, config)) and
+    tails = strictcount(AccessPathFront apf | Stage4::consCand(tc, apf, config)) and
     nodes =
       strictcount(NodeEx n, FlowState state |
-        Stage3::revFlow(n, state, any(AccessPathFrontHead apf | apf.getHead() = tc), config)
+        Stage4::revFlow(n, state, any(AccessPathFrontHead apf | apf.getHead() = tc), config)
         or
         flowCandSummaryCtx(n, state, any(AccessPathFrontHead apf | apf.getHead() = tc), config)
       ) and
@@ -2332,11 +2572,11 @@ private predicate expensiveLen2unfolding(TypedContent tc, Configuration config)
 private newtype TAccessPathApprox =
   TNil(DataFlowType t) or
   TConsNil(TypedContent tc, DataFlowType t) {
-    Stage3::consCand(tc, TFrontNil(t), _) and
+    Stage4::consCand(tc, TFrontNil(t), _) and
     not expensiveLen2unfolding(tc, _)
   } or
   TConsCons(TypedContent tc1, TypedContent tc2, int len) {
-    Stage3::consCand(tc1, TFrontHead(tc2), _) and
+    Stage4::consCand(tc1, TFrontHead(tc2), _) and
     len in [2 .. accessPathLimit()] and
     not expensiveLen2unfolding(tc1, _)
   } or
@@ -2466,7 +2706,7 @@ private class AccessPathApproxCons1 extends AccessPathApproxCons, TCons1 {
   override AccessPathApprox pop(TypedContent head) {
     head = tc and
     (
-      exists(TypedContent tc2 | Stage3::consCand(tc, TFrontHead(tc2), _) |
+      exists(TypedContent tc2 | Stage4::consCand(tc, TFrontHead(tc2), _) |
         result = TConsCons(tc2, _, len - 1)
         or
         len = 2 and
@@ -2477,7 +2717,7 @@ private class AccessPathApproxCons1 extends AccessPathApproxCons, TCons1 {
       or
       exists(DataFlowType t |
         len = 1 and
-        Stage3::consCand(tc, TFrontNil(t), _) and
+        Stage4::consCand(tc, TFrontNil(t), _) and
         result = TNil(t)
       )
     )
@@ -2502,13 +2742,14 @@ private class AccessPathApproxOption extends TAccessPathApproxOption {
   }
 }
 
-private module Stage4Param implements MkStage<Stage3>::StageParam {
-  private module PrevStage = Stage3;
+private module Stage5Param implements MkStage<Stage4>::StageParam {
+  private module PrevStage = Stage4;
 
   class Ap = AccessPathApprox;
 
   class ApNil = AccessPathApproxNil;
 
+  pragma[nomagic]
   PrevStage::Ap getApprox(Ap ap) { result = ap.getFront() }
 
   ApNil getApNil(NodeEx node) {
@@ -2534,7 +2775,9 @@ private module Stage4Param implements MkStage<Stage3>::StageParam {
     NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
     ApNil ap, Configuration config, LocalCc lcc
   ) {
-    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap.getFront(), config, lcc)
+    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap.getType(), config, lcc) and
+    PrevStage::revFlow(node1, pragma[only_bind_into](state1), _, pragma[only_bind_into](config)) and
+    PrevStage::revFlowAlias(node2, pragma[only_bind_into](state2), _, pragma[only_bind_into](config))
   }
 
   pragma[nomagic]
@@ -2571,7 +2814,7 @@ private module Stage4Param implements MkStage<Stage3>::StageParam {
   predicate typecheckStore(Ap ap, DataFlowType contentType) { any() }
 }
 
-private module Stage4 = MkStage<Stage3>::Stage<Stage4Param>;
+private module Stage5 = MkStage<Stage4>::Stage<Stage5Param>;
 
 bindingset[conf, result]
 private Configuration unbindConf(Configuration conf) {
@@ -2585,8 +2828,8 @@ private predicate nodeMayUseSummary0(
 ) {
   exists(AccessPathApprox apa0 |
     c = n.getEnclosingCallable() and
-    Stage4::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
-    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TParameterPositionSome(pos),
+    Stage5::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
+    Stage5::fwdFlow(n, state, any(CallContextCall ccc), TParameterPositionSome(pos),
       TAccessPathApproxSome(apa), apa0, config)
   )
 }
@@ -2596,7 +2839,7 @@ private predicate nodeMayUseSummary(
   NodeEx n, FlowState state, AccessPathApprox apa, Configuration config
 ) {
   exists(DataFlowCallable c, ParameterPosition pos, ParamNodeEx p |
-    Stage4::parameterMayFlowThrough(p, apa, config) and
+    Stage5::parameterMayFlowThrough(p, apa, config) and
     nodeMayUseSummary0(n, c, pos, state, apa, config) and
     p.isParameterOf(c, pos)
   )
@@ -2606,8 +2849,8 @@ private newtype TSummaryCtx =
   TSummaryCtxNone() or
   TSummaryCtxSome(ParamNodeEx p, FlowState state, AccessPath ap) {
     exists(Configuration config |
-      Stage4::parameterMayFlowThrough(p, ap.getApprox(), config) and
-      Stage4::revFlow(p, state, _, config)
+      Stage5::parameterMayFlowThrough(p, ap.getApprox(), config) and
+      Stage5::revFlow(p, state, _, config)
     )
   }
 
@@ -2656,7 +2899,7 @@ private int count1to2unfold(AccessPathApproxCons1 apa, Configuration config) {
     len = apa.len() and
     result =
       strictcount(AccessPathFront apf |
-        Stage4::consCand(tc, any(AccessPathApprox ap | ap.getFront() = apf and ap.len() = len - 1),
+        Stage5::consCand(tc, any(AccessPathApprox ap | ap.getFront() = apf and ap.len() = len - 1),
           config)
       )
   )
@@ -2665,7 +2908,7 @@ private int count1to2unfold(AccessPathApproxCons1 apa, Configuration config) {
 private int countNodesUsingAccessPath(AccessPathApprox apa, Configuration config) {
   result =
     strictcount(NodeEx n, FlowState state |
-      Stage4::revFlow(n, state, apa, config) or nodeMayUseSummary(n, state, apa, config)
+      Stage5::revFlow(n, state, apa, config) or nodeMayUseSummary(n, state, apa, config)
     )
 }
 
@@ -2686,7 +2929,7 @@ private predicate expensiveLen1to2unfolding(AccessPathApproxCons1 apa, Configura
 private AccessPathApprox getATail(AccessPathApprox apa, Configuration config) {
   exists(TypedContent head |
     apa.pop(head) = result and
-    Stage4::consCand(head, result, config)
+    Stage5::consCand(head, result, config)
   )
 }
 
@@ -2768,7 +3011,7 @@ private newtype TPathNode =
     NodeEx node, FlowState state, CallContext cc, SummaryCtx sc, AccessPath ap, Configuration config
   ) {
     // A PathNode is introduced by a source ...
-    Stage4::revFlow(node, state, config) and
+    Stage5::revFlow(node, state, config) and
     sourceNode(node, state, config) and
     (
       if hasSourceCallCtx(config)
@@ -2782,7 +3025,7 @@ private newtype TPathNode =
     exists(PathNodeMid mid |
       pathStep(mid, node, state, cc, sc, ap) and
       pragma[only_bind_into](config) = mid.getConfiguration() and
-      Stage4::revFlow(node, state, ap.getApprox(), pragma[only_bind_into](config))
+      Stage5::revFlow(node, state, ap.getApprox(), pragma[only_bind_into](config))
     )
   } or
   TPathNodeSink(NodeEx node, FlowState state, Configuration config) {
@@ -2924,7 +3167,7 @@ private class AccessPathCons2 extends AccessPath, TAccessPathCons2 {
   override TypedContent getHead() { result = head1 }
 
   override AccessPath getTail() {
-    Stage4::consCand(head1, result.getApprox(), _) and
+    Stage5::consCand(head1, result.getApprox(), _) and
     result.getHead() = head2 and
     result.length() = len - 1
   }
@@ -2955,7 +3198,7 @@ private class AccessPathCons1 extends AccessPath, TAccessPathCons1 {
   override TypedContent getHead() { result = head }
 
   override AccessPath getTail() {
-    Stage4::consCand(head, result.getApprox(), _) and result.length() = len - 1
+    Stage5::consCand(head, result.getApprox(), _) and result.length() = len - 1
   }
 
   override AccessPathFrontHead getFront() { result = TFrontHead(head) }
@@ -3347,7 +3590,8 @@ private predicate pathStep(
     AccessPath ap0, NodeEx midnode, FlowState state0, Configuration conf, LocalCallContext localCC
   |
     pathNode(mid, midnode, state0, cc, sc, ap0, conf, localCC) and
-    localFlowBigStep(midnode, state0, node, state, false, ap.getFront(), conf, localCC) and
+    localFlowBigStep(midnode, state0, node, state, false, ap.(AccessPathNil).getType(), conf,
+      localCC) and
     ap0 instanceof AccessPathNil
   )
   or
@@ -3389,7 +3633,7 @@ private predicate pathReadStep(
 ) {
   ap0 = mid.getAp() and
   tc = ap0.getHead() and
-  Stage4::readStepCand(mid.getNodeEx(), tc.getContent(), node, mid.getConfiguration()) and
+  Stage5::readStepCand(mid.getNodeEx(), tc.getContent(), node, mid.getConfiguration()) and
   state = mid.getState() and
   cc = mid.getCallContext()
 }
@@ -3399,7 +3643,7 @@ private predicate pathStoreStep(
   PathNodeMid mid, NodeEx node, FlowState state, AccessPath ap0, TypedContent tc, CallContext cc
 ) {
   ap0 = mid.getAp() and
-  Stage4::storeStepCand(mid.getNodeEx(), _, tc, node, _, mid.getConfiguration()) and
+  Stage5::storeStepCand(mid.getNodeEx(), _, tc, node, _, mid.getConfiguration()) and
   state = mid.getState() and
   cc = mid.getCallContext()
 }
@@ -3436,7 +3680,7 @@ private NodeEx getAnOutNodeFlow(
   ReturnKindExt kind, DataFlowCall call, AccessPathApprox apa, Configuration config
 ) {
   result.asNode() = kind.getAnOutNode(call) and
-  Stage4::revFlow(result, _, apa, config)
+  Stage5::revFlow(result, _, apa, config)
 }
 
 /**
@@ -3472,7 +3716,7 @@ private predicate parameterCand(
   DataFlowCallable callable, ParameterPosition pos, AccessPathApprox apa, Configuration config
 ) {
   exists(ParamNodeEx p |
-    Stage4::revFlow(p, _, apa, config) and
+    Stage5::revFlow(p, _, apa, config) and
     p.isParameterOf(callable, pos)
   )
 }
@@ -3751,9 +3995,17 @@ predicate stageStats(
   n = 45 and
   Stage4::stats(false, nodes, fields, conscand, states, tuples, config)
   or
-  stage = "5 Fwd" and n = 50 and finalStats(true, nodes, fields, conscand, states, tuples)
+  stage = "5 Fwd" and
+  n = 50 and
+  Stage5::stats(true, nodes, fields, conscand, states, tuples, config)
   or
-  stage = "5 Rev" and n = 55 and finalStats(false, nodes, fields, conscand, states, tuples)
+  stage = "5 Rev" and
+  n = 55 and
+  Stage5::stats(false, nodes, fields, conscand, states, tuples, config)
+  or
+  stage = "6 Fwd" and n = 60 and finalStats(true, nodes, fields, conscand, states, tuples)
+  or
+  stage = "6 Rev" and n = 65 and finalStats(false, nodes, fields, conscand, states, tuples)
 }
 
 private module FlowExploration {
diff --git a/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImplCommon.qll b/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImplCommon.qll
index f981834a6d4..c66aefced8d 100644
--- a/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImplCommon.qll
+++ b/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImplCommon.qll
@@ -926,18 +926,46 @@ private module Cached {
     TReturnCtxNoFlowThrough() or
     TReturnCtxMaybeFlowThrough(ReturnKindExt kind)
 
+  cached
+  newtype TTypedContentApprox =
+    MkTypedContentApprox(ContentApprox c, DataFlowType t) {
+      exists(Content cont |
+        c = getContentApprox(cont) and
+        store(_, cont, _, _, t)
+      )
+    }
+
   cached
   newtype TTypedContent = MkTypedContent(Content c, DataFlowType t) { store(_, c, _, _, t) }
 
+  cached
+  TypedContent getATypedContent(TypedContentApprox c) {
+    exists(ContentApprox cls, DataFlowType t, Content cont |
+      c = MkTypedContentApprox(cls, pragma[only_bind_into](t)) and
+      result = MkTypedContent(cont, pragma[only_bind_into](t)) and
+      cls = getContentApprox(cont)
+    )
+  }
+
   cached
   newtype TAccessPathFront =
     TFrontNil(DataFlowType t) or
     TFrontHead(TypedContent tc)
 
+  cached
+  newtype TApproxAccessPathFront =
+    TApproxFrontNil(DataFlowType t) or
+    TApproxFrontHead(TypedContentApprox tc)
+
   cached
   newtype TAccessPathFrontOption =
     TAccessPathFrontNone() or
     TAccessPathFrontSome(AccessPathFront apf)
+
+  cached
+  newtype TApproxAccessPathFrontOption =
+    TApproxAccessPathFrontNone() or
+    TApproxAccessPathFrontSome(ApproxAccessPathFront apf)
 }
 
 /**
@@ -1353,6 +1381,75 @@ class ReturnCtx extends TReturnCtx {
   }
 }
 
+/** An approximated `Content` tagged with the type of a containing object. */
+class TypedContentApprox extends MkTypedContentApprox {
+  private ContentApprox c;
+  private DataFlowType t;
+
+  TypedContentApprox() { this = MkTypedContentApprox(c, t) }
+
+  /** Gets a typed content approximated by this value. */
+  TypedContent getATypedContent() { result = getATypedContent(this) }
+
+  /** Gets the container type. */
+  DataFlowType getContainerType() { result = t }
+
+  /** Gets a textual representation of this approximated content. */
+  string toString() { result = c.toString() }
+}
+
+/**
+ * The front of an approximated access path. This is either a head or a nil.
+ */
+abstract class ApproxAccessPathFront extends TApproxAccessPathFront {
+  abstract string toString();
+
+  abstract DataFlowType getType();
+
+  abstract boolean toBoolNonEmpty();
+
+  pragma[nomagic]
+  TypedContent getAHead() {
+    exists(TypedContentApprox cont |
+      this = TApproxFrontHead(cont) and
+      result = cont.getATypedContent()
+    )
+  }
+}
+
+class ApproxAccessPathFrontNil extends ApproxAccessPathFront, TApproxFrontNil {
+  private DataFlowType t;
+
+  ApproxAccessPathFrontNil() { this = TApproxFrontNil(t) }
+
+  override string toString() { result = ppReprType(t) }
+
+  override DataFlowType getType() { result = t }
+
+  override boolean toBoolNonEmpty() { result = false }
+}
+
+class ApproxAccessPathFrontHead extends ApproxAccessPathFront, TApproxFrontHead {
+  private TypedContentApprox tc;
+
+  ApproxAccessPathFrontHead() { this = TApproxFrontHead(tc) }
+
+  override string toString() { result = tc.toString() }
+
+  override DataFlowType getType() { result = tc.getContainerType() }
+
+  override boolean toBoolNonEmpty() { result = true }
+}
+
+/** An optional approximated access path front. */
+class ApproxAccessPathFrontOption extends TApproxAccessPathFrontOption {
+  string toString() {
+    this = TApproxAccessPathFrontNone() and result = "<none>"
+    or
+    this = TApproxAccessPathFrontSome(any(ApproxAccessPathFront apf | result = apf.toString()))
+  }
+}
+
 /** A `Content` tagged with the type of a containing object. */
 class TypedContent extends MkTypedContent {
   private Content c;
@@ -1385,7 +1482,7 @@ abstract class AccessPathFront extends TAccessPathFront {
 
   abstract DataFlowType getType();
 
-  abstract boolean toBoolNonEmpty();
+  abstract ApproxAccessPathFront toApprox();
 
   TypedContent getHead() { this = TFrontHead(result) }
 }
@@ -1399,7 +1496,7 @@ class AccessPathFrontNil extends AccessPathFront, TFrontNil {
 
   override DataFlowType getType() { result = t }
 
-  override boolean toBoolNonEmpty() { result = false }
+  override ApproxAccessPathFront toApprox() { result = TApproxFrontNil(t) }
 }
 
 class AccessPathFrontHead extends AccessPathFront, TFrontHead {
@@ -1411,7 +1508,7 @@ class AccessPathFrontHead extends AccessPathFront, TFrontHead {
 
   override DataFlowType getType() { result = tc.getContainerType() }
 
-  override boolean toBoolNonEmpty() { result = true }
+  override ApproxAccessPathFront toApprox() { result.getAHead() = tc }
 }
 
 /** An optional access path front. */
diff --git a/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImplConsistency.qll b/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImplConsistency.qll
index 3eacc21f356..e85e0cd92ec 100644
--- a/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImplConsistency.qll
+++ b/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImplConsistency.qll
@@ -260,4 +260,9 @@ module Consistency {
     not exists(unique(ParameterPosition pos0 | isParameterNode(p, c, pos0))) and
     msg = "Parameter node with multiple positions."
   }
+
+  query predicate uniqueContentApprox(Content c, string msg) {
+    not exists(unique(ContentApprox approx | approx = getContentApprox(c))) and
+    msg = "Non-unique content approximation."
+  }
 }
diff --git a/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImplLocal.qll b/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImplLocal.qll
index ccde916a3c2..6741ccc2f06 100644
--- a/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImplLocal.qll
+++ b/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImplLocal.qll
@@ -621,23 +621,6 @@ private predicate parameterFlowThroughAllowed(ParamNodeEx p, ReturnKindExt kind)
   )
 }
 
-/**
- * Holds if flow from a parameter at position `pos` inside `c` to a return node of
- * kind `kind` is allowed.
- *
- * We don't expect a parameter to return stored in itself, unless
- * explicitly allowed
- */
-bindingset[c, pos, kind]
-private predicate parameterFlowThroughAllowed(
-  DataFlowCallable c, ParameterPosition pos, ReturnKindExt kind
-) {
-  exists(ParamNodeEx p |
-    p.isParameterOf(c, pos) and
-    parameterFlowThroughAllowed(p, kind)
-  )
-}
-
 private module Stage1 implements StageSig {
   class Ap = Unit;
 
@@ -980,6 +963,12 @@ private module Stage1 implements StageSig {
   pragma[nomagic]
   predicate revFlow(NodeEx node, Configuration config) { revFlow(node, _, config) }
 
+  pragma[nomagic]
+  predicate revFlowAp(NodeEx node, Ap ap, Configuration config) {
+    revFlow(node, config) and
+    exists(ap)
+  }
+
   bindingset[node, state, config]
   predicate revFlow(NodeEx node, FlowState state, Ap ap, Configuration config) {
     revFlow(node, _, pragma[only_bind_into](config)) and
@@ -1022,9 +1011,13 @@ private module Stage1 implements StageSig {
   }
 
   pragma[nomagic]
-  predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config) {
+  predicate returnMayFlowThrough(
+    RetNodeEx ret, Ap argAp, Ap ap, ReturnKindExt kind, Configuration config
+  ) {
     throughFlowNodeCand(ret, config) and
-    kind = ret.getKind()
+    kind = ret.getKind() and
+    exists(argAp) and
+    exists(ap)
   }
 
   pragma[nomagic]
@@ -1189,6 +1182,8 @@ private signature module StageSig {
 
   predicate revFlow(NodeEx node, Configuration config);
 
+  predicate revFlowAp(NodeEx node, Ap ap, Configuration config);
+
   bindingset[node, state, config]
   predicate revFlow(NodeEx node, FlowState state, Ap ap, Configuration config);
 
@@ -1196,7 +1191,9 @@ private signature module StageSig {
 
   predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config);
 
-  predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config);
+  predicate returnMayFlowThrough(
+    RetNodeEx ret, Ap argAp, Ap ap, ReturnKindExt kind, Configuration config
+  );
 
   predicate storeStepCand(
     NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, DataFlowType contentType,
@@ -1281,21 +1278,43 @@ private module MkStage<StageSig PrevStage> {
     import Param
 
     /* Begin: Stage logic. */
-    bindingset[result, apa]
-    private ApApprox unbindApa(ApApprox apa) {
-      pragma[only_bind_out](apa) = pragma[only_bind_out](result)
+    // use an alias as a workaround for bad functionality-induced joins
+    pragma[nomagic]
+    private predicate revFlowApAlias(NodeEx node, ApApprox apa, Configuration config) {
+      PrevStage::revFlowAp(node, apa, config)
+    }
+
+    pragma[nomagic]
+    private predicate flowIntoCallApa(
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, ApApprox apa,
+      Configuration config
+    ) {
+      flowIntoCall(call, arg, p, allowsFieldFlow, config) and
+      PrevStage::revFlowAp(p, pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
+      revFlowApAlias(arg, pragma[only_bind_into](apa), pragma[only_bind_into](config))
+    }
+
+    pragma[nomagic]
+    private predicate flowOutOfCallApa(
+      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
+      ApApprox apa, Configuration config
+    ) {
+      flowOutOfCall(call, ret, kind, out, allowsFieldFlow, config) and
+      PrevStage::revFlowAp(out, pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
+      revFlowApAlias(ret, pragma[only_bind_into](apa), pragma[only_bind_into](config))
     }
 
     pragma[nomagic]
     private predicate flowThroughOutOfCall(
-      DataFlowCall call, DataFlowCallable c, CcCall ccc, RetNodeEx ret, ReturnKindExt kind,
-      NodeEx out, boolean allowsFieldFlow, Configuration config
+      DataFlowCall call, CcCall ccc, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow,
+      ApApprox argApa, ApApprox apa, Configuration config
     ) {
-      flowOutOfCall(call, ret, kind, out, allowsFieldFlow, pragma[only_bind_into](config)) and
-      PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
-      PrevStage::returnMayFlowThrough(ret, kind, pragma[only_bind_into](config)) and
-      matchesCall(ccc, call) and
-      c = ret.getEnclosingCallable()
+      exists(ReturnKindExt kind |
+        flowOutOfCallApa(call, ret, kind, out, allowsFieldFlow, apa, pragma[only_bind_into](config)) and
+        PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
+        PrevStage::returnMayFlowThrough(ret, argApa, apa, kind, pragma[only_bind_into](config)) and
+        matchesCall(ccc, call)
+      )
     }
 
     /**
@@ -1307,39 +1326,50 @@ private module MkStage<StageSig PrevStage> {
      * corresponding parameter position and access path of that argument, respectively.
      */
     pragma[nomagic]
+    additional predicate fwdFlow(
+      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      Ap ap, ApApprox apa, Configuration config
+    ) {
+      fwdFlow0(node, state, cc, summaryCtx, argAp, ap, apa, config) and
+      PrevStage::revFlow(node, state, apa, config) and
+      filter(node, state, ap, config)
+    }
+
+    pragma[inline]
     additional predicate fwdFlow(
       NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
       Ap ap, Configuration config
     ) {
-      fwdFlow0(node, state, cc, summaryCtx, argAp, ap, config) and
-      PrevStage::revFlow(node, state, unbindApa(getApprox(ap)), config) and
-      filter(node, state, ap, config)
+      fwdFlow(node, state, cc, summaryCtx, argAp, ap, _, config)
     }
 
     pragma[nomagic]
     private predicate fwdFlow0(
       NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      Ap ap, Configuration config
+      Ap ap, ApApprox apa, Configuration config
     ) {
       sourceNode(node, state, config) and
       (if hasSourceCallCtx(config) then cc = ccSomeCall() else cc = ccNone()) and
       argAp = apNone() and
       summaryCtx = TParameterPositionNone() and
-      ap = getApNil(node)
+      ap = getApNil(node) and
+      apa = getApprox(ap)
       or
-      exists(NodeEx mid, FlowState state0, Ap ap0, LocalCc localCc |
-        fwdFlow(mid, state0, cc, summaryCtx, argAp, ap0, config) and
+      exists(NodeEx mid, FlowState state0, Ap ap0, ApApprox apa0, LocalCc localCc |
+        fwdFlow(mid, state0, cc, summaryCtx, argAp, ap0, apa0, config) and
         localCc = getLocalCc(mid, cc)
       |
         localStep(mid, state0, node, state, true, _, config, localCc) and
-        ap = ap0
+        ap = ap0 and
+        apa = apa0
         or
         localStep(mid, state0, node, state, false, ap, config, localCc) and
-        ap0 instanceof ApNil
+        ap0 instanceof ApNil and
+        apa = getApprox(ap)
       )
       or
       exists(NodeEx mid |
-        fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, apa, pragma[only_bind_into](config)) and
         jumpStep(mid, node, config) and
         cc = ccNone() and
         summaryCtx = TParameterPositionNone() and
@@ -1352,7 +1382,8 @@ private module MkStage<StageSig PrevStage> {
         cc = ccNone() and
         summaryCtx = TParameterPositionNone() and
         argAp = apNone() and
-        ap = getApNil(node)
+        ap = getApNil(node) and
+        apa = getApprox(ap)
       )
       or
       exists(NodeEx mid, FlowState state0, ApNil nil |
@@ -1361,32 +1392,32 @@ private module MkStage<StageSig PrevStage> {
         cc = ccNone() and
         summaryCtx = TParameterPositionNone() and
         argAp = apNone() and
-        ap = getApNil(node)
+        ap = getApNil(node) and
+        apa = getApprox(ap)
       )
       or
       // store
       exists(TypedContent tc, Ap ap0 |
         fwdFlowStore(_, ap0, tc, node, state, cc, summaryCtx, argAp, config) and
-        ap = apCons(tc, ap0)
+        ap = apCons(tc, ap0) and
+        apa = getApprox(ap)
       )
       or
       // read
       exists(Ap ap0, Content c |
         fwdFlowRead(ap0, c, _, node, state, cc, summaryCtx, argAp, config) and
-        fwdFlowConsCand(ap0, c, ap, config)
+        fwdFlowConsCand(ap0, c, ap, config) and
+        apa = getApprox(ap)
       )
       or
       // flow into a callable
-      exists(ApApprox apa |
-        fwdFlowIn(_, node, state, _, cc, _, _, ap, config) and
-        apa = getApprox(ap) and
-        if PrevStage::parameterMayFlowThrough(node, apa, config)
-        then (
-          summaryCtx = TParameterPositionSome(node.(ParamNodeEx).getPosition()) and
-          argAp = apSome(ap)
-        ) else (
-          summaryCtx = TParameterPositionNone() and argAp = apNone()
-        )
+      fwdFlowIn(_, node, state, _, cc, _, _, ap, apa, config) and
+      if PrevStage::parameterMayFlowThrough(node, apa, config)
+      then (
+        summaryCtx = TParameterPositionSome(node.(ParamNodeEx).getPosition()) and
+        argAp = apSome(ap)
+      ) else (
+        summaryCtx = TParameterPositionNone() and argAp = apNone()
       )
       or
       // flow out of a callable
@@ -1394,8 +1425,8 @@ private module MkStage<StageSig PrevStage> {
         DataFlowCall call, RetNodeEx ret, boolean allowsFieldFlow, CcNoCall innercc,
         DataFlowCallable inner
       |
-        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, config) and
-        flowOutOfCall(call, ret, _, node, allowsFieldFlow, config) and
+        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, apa, config) and
+        flowOutOfCallApa(call, ret, _, node, allowsFieldFlow, apa, config) and
         inner = ret.getEnclosingCallable() and
         cc = getCallContextReturn(inner, call, innercc) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
@@ -1403,7 +1434,7 @@ private module MkStage<StageSig PrevStage> {
       or
       // flow through a callable
       exists(DataFlowCall call, ParameterPosition summaryCtx0, Ap argAp0 |
-        fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, config) and
+        fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, apa, config) and
         fwdFlowIsEntered(call, cc, summaryCtx, argAp, summaryCtx0, argAp0, config)
       )
     }
@@ -1413,9 +1444,9 @@ private module MkStage<StageSig PrevStage> {
       NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc,
       ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
     ) {
-      exists(DataFlowType contentType |
-        fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, config) and
-        PrevStage::storeStepCand(node1, unbindApa(getApprox(ap1)), tc, node2, contentType, config) and
+      exists(DataFlowType contentType, ApApprox apa1 |
+        fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, apa1, config) and
+        PrevStage::storeStepCand(node1, apa1, tc, node2, contentType, config) and
         typecheckStore(ap1, contentType)
       )
     }
@@ -1433,43 +1464,104 @@ private module MkStage<StageSig PrevStage> {
       )
     }
 
+    private class ApNonNil instanceof Ap {
+      pragma[nomagic]
+      ApNonNil() { not this instanceof ApNil }
+
+      string toString() { result = "" }
+    }
+
+    pragma[nomagic]
+    private predicate fwdFlowRead0(
+      NodeEx node1, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      ApNonNil ap, Configuration config
+    ) {
+      fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
+      PrevStage::readStepCand(node1, _, _, config)
+    }
+
     pragma[nomagic]
     private predicate fwdFlowRead(
       Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc,
       ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
     ) {
-      fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
+      fwdFlowRead0(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, c, node2, config) and
       getHeadContent(ap) = c
     }
 
     pragma[nomagic]
     private predicate fwdFlowIn(
-      DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, Cc innercc,
-      ParameterPositionOption summaryCtx, ApOption argAp, Ap ap, Configuration config
+      DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, CcCall innercc,
+      ParameterPositionOption summaryCtx, ApOption argAp, Ap ap, ApApprox apa, Configuration config
     ) {
       exists(ArgNodeEx arg, boolean allowsFieldFlow |
-        fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, config) and
-        flowIntoCall(call, arg, p, allowsFieldFlow, config) and
+        fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, apa, config) and
+        flowIntoCallApa(call, arg, p, allowsFieldFlow, apa, config) and
         innercc = getCallContextCall(call, p.getEnclosingCallable(), outercc) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
+    pragma[nomagic]
+    private predicate fwdFlowRetFromArg(
+      RetNodeEx ret, FlowState state, CcCall ccc, ParameterPosition summaryCtx, ParamNodeEx p,
+      Ap argAp, ApApprox argApa, Ap ap, ApApprox apa, Configuration config
+    ) {
+      exists(DataFlowCallable c, ReturnKindExt kind |
+        fwdFlow(pragma[only_bind_into](ret), state, ccc,
+          TParameterPositionSome(pragma[only_bind_into](summaryCtx)), apSome(argAp), ap, apa, config) and
+        getApprox(argAp) = argApa and
+        c = ret.getEnclosingCallable() and
+        kind = ret.getKind() and
+        p.isParameterOf(c, pragma[only_bind_into](summaryCtx)) and
+        parameterFlowThroughAllowed(p, kind)
+      )
+    }
+
+    pragma[inline]
+    private predicate fwdFlowInMayFlowThrough(
+      DataFlowCall call, Cc cc, CcCall innerCc, ParameterPositionOption summaryCtx, ApOption argAp,
+      ParamNodeEx param, Ap ap, ApApprox apa, Configuration config
+    ) {
+      fwdFlowIn(call, pragma[only_bind_into](param), _, cc, innerCc, summaryCtx, argAp, ap,
+        pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
+      PrevStage::parameterMayFlowThrough(param, apa, config)
+    }
+
+    // dedup before joining with `flowThroughOutOfCall`
+    pragma[nomagic]
+    private predicate fwdFlowInMayFlowThroughProj(
+      DataFlowCall call, CcCall innerCc, ApApprox apa, Configuration config
+    ) {
+      fwdFlowInMayFlowThrough(call, _, innerCc, _, _, _, _, apa, config)
+    }
+
+    /**
+     * Same as `flowThroughOutOfCall`, but restricted to calls that are reached
+     * in the flow covered by `fwdFlow`, where data might flow through the target
+     * callable and back out at `call`.
+     */
+    pragma[nomagic]
+    private predicate fwdFlowThroughOutOfCall(
+      DataFlowCall call, CcCall ccc, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow,
+      ApApprox argApa, ApApprox apa, Configuration config
+    ) {
+      fwdFlowInMayFlowThroughProj(call, ccc, argApa, config) and
+      flowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, argApa, apa, config)
+    }
+
     pragma[nomagic]
     private predicate fwdFlowOutFromArg(
       DataFlowCall call, NodeEx out, FlowState state, ParameterPosition summaryCtx, Ap argAp, Ap ap,
-      Configuration config
+      ApApprox apa, Configuration config
     ) {
-      exists(
-        DataFlowCallable c, RetNodeEx ret, ReturnKindExt kind, boolean allowsFieldFlow, CcCall ccc
-      |
-        fwdFlow(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc),
-          TParameterPositionSome(pragma[only_bind_into](summaryCtx)), apSome(argAp), ap, config) and
-        flowThroughOutOfCall(call, pragma[only_bind_into](c), ccc, ret, kind, out, allowsFieldFlow,
+      exists(RetNodeEx ret, boolean allowsFieldFlow, CcCall ccc, ApApprox argApa |
+        fwdFlowRetFromArg(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc),
+          summaryCtx, _, argAp, pragma[only_bind_into](argApa), ap, pragma[only_bind_into](apa),
           config) and
-        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
-        parameterFlowThroughAllowed(c, pragma[only_bind_into](summaryCtx), kind)
+        fwdFlowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, argApa, apa, config) and
+        (if allowsFieldFlow = false then ap instanceof ApNil else any())
       )
     }
 
@@ -1483,8 +1575,7 @@ private module MkStage<StageSig PrevStage> {
       ParameterPosition pos, Ap ap, Configuration config
     ) {
       exists(ParamNodeEx param |
-        fwdFlowIn(call, param, _, cc, _, summaryCtx, argAp, ap, config) and
-        PrevStage::parameterMayFlowThrough(param, unbindApa(getApprox(ap)), config) and
+        fwdFlowInMayFlowThrough(call, cc, _, summaryCtx, argAp, param, ap, _, config) and
         pos = param.getPosition()
       )
     }
@@ -1505,41 +1596,55 @@ private module MkStage<StageSig PrevStage> {
       fwdFlowConsCand(ap1, c, ap2, config)
     }
 
-    pragma[nomagic]
-    private predicate returnFlowsThrough0(
-      RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, DataFlowCallable c,
-      ParameterPosition ppos, Ap argAp, Ap ap, Configuration config
-    ) {
-      exists(boolean allowsFieldFlow |
-        fwdFlow(ret, state, ccc, TParameterPositionSome(ppos), apSome(argAp), ap, config) and
-        flowThroughOutOfCall(_, c, _, pragma[only_bind_into](ret), kind, _, allowsFieldFlow,
-          pragma[only_bind_into](config)) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
-      )
-    }
-
     pragma[nomagic]
     private predicate returnFlowsThrough(
       RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, ParamNodeEx p, Ap argAp,
       Ap ap, Configuration config
     ) {
-      exists(DataFlowCallable c, ParameterPosition ppos |
-        returnFlowsThrough0(ret, kind, state, ccc, c, ppos, argAp, ap, config) and
-        p.isParameterOf(c, ppos) and
-        parameterFlowThroughAllowed(p, kind)
+      exists(boolean allowsFieldFlow, ApApprox argApa, ApApprox apa |
+        fwdFlowRetFromArg(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc), _, p,
+          argAp, pragma[only_bind_into](argApa), ap, pragma[only_bind_into](apa), config) and
+        kind = ret.getKind() and
+        fwdFlowThroughOutOfCall(_, ccc, ret, _, allowsFieldFlow, argApa, apa, config) and
+        (if allowsFieldFlow = false then ap instanceof ApNil else any())
       )
     }
 
     pragma[nomagic]
     private predicate flowThroughIntoCall(
-      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp,
+      Configuration config
     ) {
-      exists(Ap argAp |
-        flowIntoCall(call, pragma[only_bind_into](arg), pragma[only_bind_into](p), allowsFieldFlow,
+      exists(ApApprox argApa |
+        flowIntoCallApa(call, pragma[only_bind_into](arg), pragma[only_bind_into](p),
+          allowsFieldFlow, argApa, pragma[only_bind_into](config)) and
+        fwdFlow(arg, _, _, _, _, pragma[only_bind_into](argAp), argApa,
           pragma[only_bind_into](config)) and
-        fwdFlow(arg, _, _, _, _, pragma[only_bind_into](argAp), pragma[only_bind_into](config)) and
         returnFlowsThrough(_, _, _, _, p, pragma[only_bind_into](argAp), _,
-          pragma[only_bind_into](config))
+          pragma[only_bind_into](config)) and
+        if allowsFieldFlow = false then argAp instanceof ApNil else any()
+      )
+    }
+
+    pragma[nomagic]
+    private predicate flowIntoCallAp(
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap ap,
+      Configuration config
+    ) {
+      exists(ApApprox apa |
+        flowIntoCallApa(call, arg, p, allowsFieldFlow, apa, config) and
+        fwdFlow(arg, _, _, _, _, ap, apa, config)
+      )
+    }
+
+    pragma[nomagic]
+    private predicate flowOutOfCallAp(
+      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
+      Ap ap, Configuration config
+    ) {
+      exists(ApApprox apa |
+        flowOutOfCallApa(call, ret, kind, out, allowsFieldFlow, apa, config) and
+        fwdFlow(ret, _, _, _, _, ap, apa, config)
       )
     }
 
@@ -1628,7 +1733,7 @@ private module MkStage<StageSig PrevStage> {
       // flow into a callable
       exists(ParamNodeEx p, boolean allowsFieldFlow |
         revFlow(p, state, TReturnCtxNone(), returnAp, ap, config) and
-        flowIntoCall(_, node, p, allowsFieldFlow, config) and
+        flowIntoCallAp(_, node, p, allowsFieldFlow, ap, config) and
         (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
         returnCtx = TReturnCtxNone()
       )
@@ -1682,22 +1787,41 @@ private module MkStage<StageSig PrevStage> {
     ) {
       exists(NodeEx out, boolean allowsFieldFlow |
         revFlow(out, state, returnCtx, returnAp, ap, config) and
-        flowOutOfCall(call, ret, kind, out, allowsFieldFlow, config) and
+        flowOutOfCallAp(call, ret, kind, out, allowsFieldFlow, ap, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
+    /**
+     * Same as `flowThroughIntoCall`, but restricted to calls that are reached
+     * in the flow covered by `revFlow`, where data might flow through the target
+     * callable and back out at `call`.
+     */
+    pragma[nomagic]
+    private predicate revFlowThroughIntoCall(
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp,
+      Configuration config
+    ) {
+      flowThroughIntoCall(call, arg, p, allowsFieldFlow, argAp, config) and
+      revFlowIsReturned(call, _, _, _, _, config)
+    }
+
+    pragma[nomagic]
+    private predicate revFlowParamToReturn(
+      ParamNodeEx p, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap, Configuration config
+    ) {
+      revFlow(p, state, TReturnCtxMaybeFlowThrough(kind), apSome(returnAp), ap, config) and
+      parameterFlowThroughAllowed(p, kind)
+    }
+
     pragma[nomagic]
     private predicate revFlowInToReturn(
       DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap,
       Configuration config
     ) {
       exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(pragma[only_bind_into](p), state,
-          TReturnCtxMaybeFlowThrough(pragma[only_bind_into](kind)), apSome(returnAp), ap, config) and
-        flowThroughIntoCall(call, arg, p, allowsFieldFlow, config) and
-        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
-        parameterFlowThroughAllowed(p, kind)
+        revFlowParamToReturn(p, state, kind, returnAp, ap, config) and
+        revFlowThroughIntoCall(call, arg, p, allowsFieldFlow, ap, config)
       )
     }
 
@@ -1750,6 +1874,11 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     predicate revFlow(NodeEx node, Configuration config) { revFlow(node, _, _, _, _, config) }
 
+    pragma[nomagic]
+    predicate revFlowAp(NodeEx node, Ap ap, Configuration config) {
+      revFlow(node, _, _, _, ap, config)
+    }
+
     // use an alias as a workaround for bad functionality-induced joins
     pragma[nomagic]
     additional predicate revFlowAlias(NodeEx node, Configuration config) {
@@ -1786,9 +1915,9 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate parameterFlowsThroughRev(
-      ParamNodeEx p, Ap ap, ReturnKindExt kind, Configuration config
+      ParamNodeEx p, Ap ap, ReturnKindExt kind, Ap returnAp, Configuration config
     ) {
-      revFlow(p, _, TReturnCtxMaybeFlowThrough(kind), apSome(_), ap, config) and
+      revFlow(p, _, TReturnCtxMaybeFlowThrough(kind), apSome(returnAp), ap, config) and
       parameterFlowThroughAllowed(p, kind)
     }
 
@@ -1796,27 +1925,36 @@ private module MkStage<StageSig PrevStage> {
     predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
       exists(RetNodeEx ret, ReturnKindExt kind |
         returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
-        parameterFlowsThroughRev(p, ap, kind, config)
+        parameterFlowsThroughRev(p, ap, kind, _, config)
       )
     }
 
     pragma[nomagic]
-    predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config) {
-      exists(ParamNodeEx p, Ap ap |
-        returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
-        parameterFlowsThroughRev(p, ap, kind, config)
+    predicate returnMayFlowThrough(
+      RetNodeEx ret, Ap argAp, Ap ap, ReturnKindExt kind, Configuration config
+    ) {
+      exists(ParamNodeEx p |
+        returnFlowsThrough(ret, kind, _, _, p, argAp, ap, config) and
+        parameterFlowsThroughRev(p, argAp, kind, ap, config)
+      )
+    }
+
+    pragma[nomagic]
+    predicate revFlowInToReturnIsReturned(
+      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnCtx returnCtx, ApOption returnAp,
+      Ap ap, Configuration config
+    ) {
+      exists(ReturnKindExt returnKind0, Ap returnAp0 |
+        revFlowInToReturn(call, arg, state, returnKind0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
       )
     }
 
     pragma[nomagic]
     predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
-      exists(
-        ReturnKindExt returnKind0, Ap returnAp0, ArgNodeEx arg, FlowState state,
-        ReturnCtx returnCtx, ApOption returnAp, Ap ap
-      |
+      exists(ArgNodeEx arg, FlowState state, ReturnCtx returnCtx, ApOption returnAp, Ap ap |
         revFlow(arg, state, returnCtx, returnAp, ap, config) and
-        revFlowInToReturn(call, arg, state, returnKind0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
+        revFlowInToReturnIsReturned(call, arg, state, returnCtx, returnAp, ap, config)
       )
     }
 
@@ -2179,16 +2317,16 @@ private module LocalFlowBigStep {
   pragma[nomagic]
   predicate localFlowBigStep(
     NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
-    AccessPathFrontNil apf, Configuration config, LocalCallContext callContext
+    DataFlowType t, Configuration config, LocalCallContext callContext
   ) {
-    localFlowStepPlus(node1, state1, node2, preservesValue, apf.getType(), config, callContext) and
+    localFlowStepPlus(node1, state1, node2, preservesValue, t, config, callContext) and
     localFlowExit(node2, state1, config) and
     state1 = state2
     or
     additionalLocalFlowStepNodeCand2(node1, state1, node2, state2, config) and
     state1 != state2 and
     preservesValue = false and
-    apf = TFrontNil(node2.getDataFlowType()) and
+    t = node2.getDataFlowType() and
     callContext.relevantFor(node1.getEnclosingCallable()) and
     not exists(DataFlowCall call | call = callContext.(LocalCallContextSpecificCall).getCall() |
       isUnreachableInCallCached(node1.asNode(), call) or
@@ -2202,11 +2340,87 @@ private import LocalFlowBigStep
 private module Stage3Param implements MkStage<Stage2>::StageParam {
   private module PrevStage = Stage2;
 
+  class Ap = ApproxAccessPathFront;
+
+  class ApNil = ApproxAccessPathFrontNil;
+
+  PrevStage::Ap getApprox(Ap ap) { result = ap.toBoolNonEmpty() }
+
+  ApNil getApNil(NodeEx node) {
+    PrevStage::revFlow(node, _) and result = TApproxFrontNil(node.getDataFlowType())
+  }
+
+  bindingset[tc, tail]
+  Ap apCons(TypedContent tc, Ap tail) { result.getAHead() = tc and exists(tail) }
+
+  pragma[noinline]
+  Content getHeadContent(Ap ap) { result = ap.getAHead().getContent() }
+
+  class ApOption = ApproxAccessPathFrontOption;
+
+  ApOption apNone() { result = TApproxAccessPathFrontNone() }
+
+  ApOption apSome(Ap ap) { result = TApproxAccessPathFrontSome(ap) }
+
+  import BooleanCallContext
+
+  predicate localStep(
+    NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
+    ApproxAccessPathFrontNil ap, Configuration config, LocalCc lcc
+  ) {
+    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap.getType(), config, _) and
+    exists(lcc)
+  }
+
+  predicate flowOutOfCall = flowOutOfCallNodeCand2/6;
+
+  predicate flowIntoCall = flowIntoCallNodeCand2/5;
+
+  pragma[nomagic]
+  private predicate expectsContentCand(NodeEx node, Ap ap, Configuration config) {
+    exists(Content c |
+      PrevStage::revFlow(node, pragma[only_bind_into](config)) and
+      PrevStage::readStepCand(_, c, _, pragma[only_bind_into](config)) and
+      expectsContentEx(node, c) and
+      c = ap.getAHead().getContent()
+    )
+  }
+
+  pragma[nomagic]
+  private predicate castingNodeEx(NodeEx node) { node.asNode() instanceof CastingNode }
+
+  bindingset[node, state, ap, config]
+  predicate filter(NodeEx node, FlowState state, Ap ap, Configuration config) {
+    exists(state) and
+    exists(config) and
+    (if castingNodeEx(node) then compatibleTypes(node.getDataFlowType(), ap.getType()) else any()) and
+    (
+      notExpectsContent(node)
+      or
+      expectsContentCand(node, ap, config)
+    )
+  }
+
+  bindingset[ap, contentType]
+  predicate typecheckStore(Ap ap, DataFlowType contentType) {
+    // We need to typecheck stores here, since reverse flow through a getter
+    // might have a different type here compared to inside the getter.
+    compatibleTypes(ap.getType(), contentType)
+  }
+}
+
+private module Stage3 implements StageSig {
+  import MkStage<Stage2>::Stage<Stage3Param>
+}
+
+private module Stage4Param implements MkStage<Stage3>::StageParam {
+  private module PrevStage = Stage3;
+
   class Ap = AccessPathFront;
 
   class ApNil = AccessPathFrontNil;
 
-  PrevStage::Ap getApprox(Ap ap) { result = ap.toBoolNonEmpty() }
+  PrevStage::Ap getApprox(Ap ap) { result = ap.toApprox() }
 
   ApNil getApNil(NodeEx node) {
     PrevStage::revFlow(node, _) and result = TFrontNil(node.getDataFlowType())
@@ -2226,16 +2440,42 @@ private module Stage3Param implements MkStage<Stage2>::StageParam {
 
   import BooleanCallContext
 
+  pragma[nomagic]
   predicate localStep(
     NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
     ApNil ap, Configuration config, LocalCc lcc
   ) {
-    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap, config, _) and exists(lcc)
+    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap.getType(), config, _) and
+    PrevStage::revFlow(node1, pragma[only_bind_into](state1), _, pragma[only_bind_into](config)) and
+    PrevStage::revFlowAlias(node2, pragma[only_bind_into](state2), _, pragma[only_bind_into](config)) and
+    exists(lcc)
   }
 
-  predicate flowOutOfCall = flowOutOfCallNodeCand2/6;
+  pragma[nomagic]
+  predicate flowOutOfCall(
+    DataFlowCall call, RetNodeEx node1, ReturnKindExt kind, NodeEx node2, boolean allowsFieldFlow,
+    Configuration config
+  ) {
+    exists(FlowState state |
+      flowOutOfCallNodeCand2(call, node1, kind, node2, allowsFieldFlow, config) and
+      PrevStage::revFlow(node2, pragma[only_bind_into](state), _, pragma[only_bind_into](config)) and
+      PrevStage::revFlowAlias(node1, pragma[only_bind_into](state), _,
+        pragma[only_bind_into](config))
+    )
+  }
 
-  predicate flowIntoCall = flowIntoCallNodeCand2/5;
+  pragma[nomagic]
+  predicate flowIntoCall(
+    DataFlowCall call, ArgNodeEx node1, ParamNodeEx node2, boolean allowsFieldFlow,
+    Configuration config
+  ) {
+    exists(FlowState state |
+      flowIntoCallNodeCand2(call, node1, node2, allowsFieldFlow, config) and
+      PrevStage::revFlow(node2, pragma[only_bind_into](state), _, pragma[only_bind_into](config)) and
+      PrevStage::revFlowAlias(node1, pragma[only_bind_into](state), _,
+        pragma[only_bind_into](config))
+    )
+  }
 
   pragma[nomagic]
   private predicate clearSet(NodeEx node, ContentSet c, Configuration config) {
@@ -2291,8 +2531,8 @@ private module Stage3Param implements MkStage<Stage2>::StageParam {
   }
 }
 
-private module Stage3 implements StageSig {
-  import MkStage<Stage2>::Stage<Stage3Param>
+private module Stage4 implements StageSig {
+  import MkStage<Stage3>::Stage<Stage4Param>
 }
 
 /**
@@ -2303,8 +2543,8 @@ private predicate flowCandSummaryCtx(
   NodeEx node, FlowState state, AccessPathFront argApf, Configuration config
 ) {
   exists(AccessPathFront apf |
-    Stage3::revFlow(node, state, TReturnCtxMaybeFlowThrough(_), _, apf, config) and
-    Stage3::fwdFlow(node, state, any(Stage3::CcCall ccc), _, TAccessPathFrontSome(argApf), apf,
+    Stage4::revFlow(node, state, TReturnCtxMaybeFlowThrough(_), _, apf, config) and
+    Stage4::fwdFlow(node, state, any(Stage4::CcCall ccc), _, TAccessPathFrontSome(argApf), apf,
       config)
   )
 }
@@ -2315,10 +2555,10 @@ private predicate flowCandSummaryCtx(
  */
 private predicate expensiveLen2unfolding(TypedContent tc, Configuration config) {
   exists(int tails, int nodes, int apLimit, int tupleLimit |
-    tails = strictcount(AccessPathFront apf | Stage3::consCand(tc, apf, config)) and
+    tails = strictcount(AccessPathFront apf | Stage4::consCand(tc, apf, config)) and
     nodes =
       strictcount(NodeEx n, FlowState state |
-        Stage3::revFlow(n, state, any(AccessPathFrontHead apf | apf.getHead() = tc), config)
+        Stage4::revFlow(n, state, any(AccessPathFrontHead apf | apf.getHead() = tc), config)
         or
         flowCandSummaryCtx(n, state, any(AccessPathFrontHead apf | apf.getHead() = tc), config)
       ) and
@@ -2332,11 +2572,11 @@ private predicate expensiveLen2unfolding(TypedContent tc, Configuration config)
 private newtype TAccessPathApprox =
   TNil(DataFlowType t) or
   TConsNil(TypedContent tc, DataFlowType t) {
-    Stage3::consCand(tc, TFrontNil(t), _) and
+    Stage4::consCand(tc, TFrontNil(t), _) and
     not expensiveLen2unfolding(tc, _)
   } or
   TConsCons(TypedContent tc1, TypedContent tc2, int len) {
-    Stage3::consCand(tc1, TFrontHead(tc2), _) and
+    Stage4::consCand(tc1, TFrontHead(tc2), _) and
     len in [2 .. accessPathLimit()] and
     not expensiveLen2unfolding(tc1, _)
   } or
@@ -2466,7 +2706,7 @@ private class AccessPathApproxCons1 extends AccessPathApproxCons, TCons1 {
   override AccessPathApprox pop(TypedContent head) {
     head = tc and
     (
-      exists(TypedContent tc2 | Stage3::consCand(tc, TFrontHead(tc2), _) |
+      exists(TypedContent tc2 | Stage4::consCand(tc, TFrontHead(tc2), _) |
         result = TConsCons(tc2, _, len - 1)
         or
         len = 2 and
@@ -2477,7 +2717,7 @@ private class AccessPathApproxCons1 extends AccessPathApproxCons, TCons1 {
       or
       exists(DataFlowType t |
         len = 1 and
-        Stage3::consCand(tc, TFrontNil(t), _) and
+        Stage4::consCand(tc, TFrontNil(t), _) and
         result = TNil(t)
       )
     )
@@ -2502,13 +2742,14 @@ private class AccessPathApproxOption extends TAccessPathApproxOption {
   }
 }
 
-private module Stage4Param implements MkStage<Stage3>::StageParam {
-  private module PrevStage = Stage3;
+private module Stage5Param implements MkStage<Stage4>::StageParam {
+  private module PrevStage = Stage4;
 
   class Ap = AccessPathApprox;
 
   class ApNil = AccessPathApproxNil;
 
+  pragma[nomagic]
   PrevStage::Ap getApprox(Ap ap) { result = ap.getFront() }
 
   ApNil getApNil(NodeEx node) {
@@ -2534,7 +2775,9 @@ private module Stage4Param implements MkStage<Stage3>::StageParam {
     NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
     ApNil ap, Configuration config, LocalCc lcc
   ) {
-    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap.getFront(), config, lcc)
+    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap.getType(), config, lcc) and
+    PrevStage::revFlow(node1, pragma[only_bind_into](state1), _, pragma[only_bind_into](config)) and
+    PrevStage::revFlowAlias(node2, pragma[only_bind_into](state2), _, pragma[only_bind_into](config))
   }
 
   pragma[nomagic]
@@ -2571,7 +2814,7 @@ private module Stage4Param implements MkStage<Stage3>::StageParam {
   predicate typecheckStore(Ap ap, DataFlowType contentType) { any() }
 }
 
-private module Stage4 = MkStage<Stage3>::Stage<Stage4Param>;
+private module Stage5 = MkStage<Stage4>::Stage<Stage5Param>;
 
 bindingset[conf, result]
 private Configuration unbindConf(Configuration conf) {
@@ -2585,8 +2828,8 @@ private predicate nodeMayUseSummary0(
 ) {
   exists(AccessPathApprox apa0 |
     c = n.getEnclosingCallable() and
-    Stage4::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
-    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TParameterPositionSome(pos),
+    Stage5::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
+    Stage5::fwdFlow(n, state, any(CallContextCall ccc), TParameterPositionSome(pos),
       TAccessPathApproxSome(apa), apa0, config)
   )
 }
@@ -2596,7 +2839,7 @@ private predicate nodeMayUseSummary(
   NodeEx n, FlowState state, AccessPathApprox apa, Configuration config
 ) {
   exists(DataFlowCallable c, ParameterPosition pos, ParamNodeEx p |
-    Stage4::parameterMayFlowThrough(p, apa, config) and
+    Stage5::parameterMayFlowThrough(p, apa, config) and
     nodeMayUseSummary0(n, c, pos, state, apa, config) and
     p.isParameterOf(c, pos)
   )
@@ -2606,8 +2849,8 @@ private newtype TSummaryCtx =
   TSummaryCtxNone() or
   TSummaryCtxSome(ParamNodeEx p, FlowState state, AccessPath ap) {
     exists(Configuration config |
-      Stage4::parameterMayFlowThrough(p, ap.getApprox(), config) and
-      Stage4::revFlow(p, state, _, config)
+      Stage5::parameterMayFlowThrough(p, ap.getApprox(), config) and
+      Stage5::revFlow(p, state, _, config)
     )
   }
 
@@ -2656,7 +2899,7 @@ private int count1to2unfold(AccessPathApproxCons1 apa, Configuration config) {
     len = apa.len() and
     result =
       strictcount(AccessPathFront apf |
-        Stage4::consCand(tc, any(AccessPathApprox ap | ap.getFront() = apf and ap.len() = len - 1),
+        Stage5::consCand(tc, any(AccessPathApprox ap | ap.getFront() = apf and ap.len() = len - 1),
           config)
       )
   )
@@ -2665,7 +2908,7 @@ private int count1to2unfold(AccessPathApproxCons1 apa, Configuration config) {
 private int countNodesUsingAccessPath(AccessPathApprox apa, Configuration config) {
   result =
     strictcount(NodeEx n, FlowState state |
-      Stage4::revFlow(n, state, apa, config) or nodeMayUseSummary(n, state, apa, config)
+      Stage5::revFlow(n, state, apa, config) or nodeMayUseSummary(n, state, apa, config)
     )
 }
 
@@ -2686,7 +2929,7 @@ private predicate expensiveLen1to2unfolding(AccessPathApproxCons1 apa, Configura
 private AccessPathApprox getATail(AccessPathApprox apa, Configuration config) {
   exists(TypedContent head |
     apa.pop(head) = result and
-    Stage4::consCand(head, result, config)
+    Stage5::consCand(head, result, config)
   )
 }
 
@@ -2768,7 +3011,7 @@ private newtype TPathNode =
     NodeEx node, FlowState state, CallContext cc, SummaryCtx sc, AccessPath ap, Configuration config
   ) {
     // A PathNode is introduced by a source ...
-    Stage4::revFlow(node, state, config) and
+    Stage5::revFlow(node, state, config) and
     sourceNode(node, state, config) and
     (
       if hasSourceCallCtx(config)
@@ -2782,7 +3025,7 @@ private newtype TPathNode =
     exists(PathNodeMid mid |
       pathStep(mid, node, state, cc, sc, ap) and
       pragma[only_bind_into](config) = mid.getConfiguration() and
-      Stage4::revFlow(node, state, ap.getApprox(), pragma[only_bind_into](config))
+      Stage5::revFlow(node, state, ap.getApprox(), pragma[only_bind_into](config))
     )
   } or
   TPathNodeSink(NodeEx node, FlowState state, Configuration config) {
@@ -2924,7 +3167,7 @@ private class AccessPathCons2 extends AccessPath, TAccessPathCons2 {
   override TypedContent getHead() { result = head1 }
 
   override AccessPath getTail() {
-    Stage4::consCand(head1, result.getApprox(), _) and
+    Stage5::consCand(head1, result.getApprox(), _) and
     result.getHead() = head2 and
     result.length() = len - 1
   }
@@ -2955,7 +3198,7 @@ private class AccessPathCons1 extends AccessPath, TAccessPathCons1 {
   override TypedContent getHead() { result = head }
 
   override AccessPath getTail() {
-    Stage4::consCand(head, result.getApprox(), _) and result.length() = len - 1
+    Stage5::consCand(head, result.getApprox(), _) and result.length() = len - 1
   }
 
   override AccessPathFrontHead getFront() { result = TFrontHead(head) }
@@ -3347,7 +3590,8 @@ private predicate pathStep(
     AccessPath ap0, NodeEx midnode, FlowState state0, Configuration conf, LocalCallContext localCC
   |
     pathNode(mid, midnode, state0, cc, sc, ap0, conf, localCC) and
-    localFlowBigStep(midnode, state0, node, state, false, ap.getFront(), conf, localCC) and
+    localFlowBigStep(midnode, state0, node, state, false, ap.(AccessPathNil).getType(), conf,
+      localCC) and
     ap0 instanceof AccessPathNil
   )
   or
@@ -3389,7 +3633,7 @@ private predicate pathReadStep(
 ) {
   ap0 = mid.getAp() and
   tc = ap0.getHead() and
-  Stage4::readStepCand(mid.getNodeEx(), tc.getContent(), node, mid.getConfiguration()) and
+  Stage5::readStepCand(mid.getNodeEx(), tc.getContent(), node, mid.getConfiguration()) and
   state = mid.getState() and
   cc = mid.getCallContext()
 }
@@ -3399,7 +3643,7 @@ private predicate pathStoreStep(
   PathNodeMid mid, NodeEx node, FlowState state, AccessPath ap0, TypedContent tc, CallContext cc
 ) {
   ap0 = mid.getAp() and
-  Stage4::storeStepCand(mid.getNodeEx(), _, tc, node, _, mid.getConfiguration()) and
+  Stage5::storeStepCand(mid.getNodeEx(), _, tc, node, _, mid.getConfiguration()) and
   state = mid.getState() and
   cc = mid.getCallContext()
 }
@@ -3436,7 +3680,7 @@ private NodeEx getAnOutNodeFlow(
   ReturnKindExt kind, DataFlowCall call, AccessPathApprox apa, Configuration config
 ) {
   result.asNode() = kind.getAnOutNode(call) and
-  Stage4::revFlow(result, _, apa, config)
+  Stage5::revFlow(result, _, apa, config)
 }
 
 /**
@@ -3472,7 +3716,7 @@ private predicate parameterCand(
   DataFlowCallable callable, ParameterPosition pos, AccessPathApprox apa, Configuration config
 ) {
   exists(ParamNodeEx p |
-    Stage4::revFlow(p, _, apa, config) and
+    Stage5::revFlow(p, _, apa, config) and
     p.isParameterOf(callable, pos)
   )
 }
@@ -3751,9 +3995,17 @@ predicate stageStats(
   n = 45 and
   Stage4::stats(false, nodes, fields, conscand, states, tuples, config)
   or
-  stage = "5 Fwd" and n = 50 and finalStats(true, nodes, fields, conscand, states, tuples)
+  stage = "5 Fwd" and
+  n = 50 and
+  Stage5::stats(true, nodes, fields, conscand, states, tuples, config)
   or
-  stage = "5 Rev" and n = 55 and finalStats(false, nodes, fields, conscand, states, tuples)
+  stage = "5 Rev" and
+  n = 55 and
+  Stage5::stats(false, nodes, fields, conscand, states, tuples, config)
+  or
+  stage = "6 Fwd" and n = 60 and finalStats(true, nodes, fields, conscand, states, tuples)
+  or
+  stage = "6 Rev" and n = 65 and finalStats(false, nodes, fields, conscand, states, tuples)
 }
 
 private module FlowExploration {
diff --git a/cpp/ql/lib/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl.qll b/cpp/ql/lib/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl.qll
index ccde916a3c2..6741ccc2f06 100644
--- a/cpp/ql/lib/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl.qll
+++ b/cpp/ql/lib/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl.qll
@@ -621,23 +621,6 @@ private predicate parameterFlowThroughAllowed(ParamNodeEx p, ReturnKindExt kind)
   )
 }
 
-/**
- * Holds if flow from a parameter at position `pos` inside `c` to a return node of
- * kind `kind` is allowed.
- *
- * We don't expect a parameter to return stored in itself, unless
- * explicitly allowed
- */
-bindingset[c, pos, kind]
-private predicate parameterFlowThroughAllowed(
-  DataFlowCallable c, ParameterPosition pos, ReturnKindExt kind
-) {
-  exists(ParamNodeEx p |
-    p.isParameterOf(c, pos) and
-    parameterFlowThroughAllowed(p, kind)
-  )
-}
-
 private module Stage1 implements StageSig {
   class Ap = Unit;
 
@@ -980,6 +963,12 @@ private module Stage1 implements StageSig {
   pragma[nomagic]
   predicate revFlow(NodeEx node, Configuration config) { revFlow(node, _, config) }
 
+  pragma[nomagic]
+  predicate revFlowAp(NodeEx node, Ap ap, Configuration config) {
+    revFlow(node, config) and
+    exists(ap)
+  }
+
   bindingset[node, state, config]
   predicate revFlow(NodeEx node, FlowState state, Ap ap, Configuration config) {
     revFlow(node, _, pragma[only_bind_into](config)) and
@@ -1022,9 +1011,13 @@ private module Stage1 implements StageSig {
   }
 
   pragma[nomagic]
-  predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config) {
+  predicate returnMayFlowThrough(
+    RetNodeEx ret, Ap argAp, Ap ap, ReturnKindExt kind, Configuration config
+  ) {
     throughFlowNodeCand(ret, config) and
-    kind = ret.getKind()
+    kind = ret.getKind() and
+    exists(argAp) and
+    exists(ap)
   }
 
   pragma[nomagic]
@@ -1189,6 +1182,8 @@ private signature module StageSig {
 
   predicate revFlow(NodeEx node, Configuration config);
 
+  predicate revFlowAp(NodeEx node, Ap ap, Configuration config);
+
   bindingset[node, state, config]
   predicate revFlow(NodeEx node, FlowState state, Ap ap, Configuration config);
 
@@ -1196,7 +1191,9 @@ private signature module StageSig {
 
   predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config);
 
-  predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config);
+  predicate returnMayFlowThrough(
+    RetNodeEx ret, Ap argAp, Ap ap, ReturnKindExt kind, Configuration config
+  );
 
   predicate storeStepCand(
     NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, DataFlowType contentType,
@@ -1281,21 +1278,43 @@ private module MkStage<StageSig PrevStage> {
     import Param
 
     /* Begin: Stage logic. */
-    bindingset[result, apa]
-    private ApApprox unbindApa(ApApprox apa) {
-      pragma[only_bind_out](apa) = pragma[only_bind_out](result)
+    // use an alias as a workaround for bad functionality-induced joins
+    pragma[nomagic]
+    private predicate revFlowApAlias(NodeEx node, ApApprox apa, Configuration config) {
+      PrevStage::revFlowAp(node, apa, config)
+    }
+
+    pragma[nomagic]
+    private predicate flowIntoCallApa(
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, ApApprox apa,
+      Configuration config
+    ) {
+      flowIntoCall(call, arg, p, allowsFieldFlow, config) and
+      PrevStage::revFlowAp(p, pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
+      revFlowApAlias(arg, pragma[only_bind_into](apa), pragma[only_bind_into](config))
+    }
+
+    pragma[nomagic]
+    private predicate flowOutOfCallApa(
+      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
+      ApApprox apa, Configuration config
+    ) {
+      flowOutOfCall(call, ret, kind, out, allowsFieldFlow, config) and
+      PrevStage::revFlowAp(out, pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
+      revFlowApAlias(ret, pragma[only_bind_into](apa), pragma[only_bind_into](config))
     }
 
     pragma[nomagic]
     private predicate flowThroughOutOfCall(
-      DataFlowCall call, DataFlowCallable c, CcCall ccc, RetNodeEx ret, ReturnKindExt kind,
-      NodeEx out, boolean allowsFieldFlow, Configuration config
+      DataFlowCall call, CcCall ccc, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow,
+      ApApprox argApa, ApApprox apa, Configuration config
     ) {
-      flowOutOfCall(call, ret, kind, out, allowsFieldFlow, pragma[only_bind_into](config)) and
-      PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
-      PrevStage::returnMayFlowThrough(ret, kind, pragma[only_bind_into](config)) and
-      matchesCall(ccc, call) and
-      c = ret.getEnclosingCallable()
+      exists(ReturnKindExt kind |
+        flowOutOfCallApa(call, ret, kind, out, allowsFieldFlow, apa, pragma[only_bind_into](config)) and
+        PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
+        PrevStage::returnMayFlowThrough(ret, argApa, apa, kind, pragma[only_bind_into](config)) and
+        matchesCall(ccc, call)
+      )
     }
 
     /**
@@ -1307,39 +1326,50 @@ private module MkStage<StageSig PrevStage> {
      * corresponding parameter position and access path of that argument, respectively.
      */
     pragma[nomagic]
+    additional predicate fwdFlow(
+      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      Ap ap, ApApprox apa, Configuration config
+    ) {
+      fwdFlow0(node, state, cc, summaryCtx, argAp, ap, apa, config) and
+      PrevStage::revFlow(node, state, apa, config) and
+      filter(node, state, ap, config)
+    }
+
+    pragma[inline]
     additional predicate fwdFlow(
       NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
       Ap ap, Configuration config
     ) {
-      fwdFlow0(node, state, cc, summaryCtx, argAp, ap, config) and
-      PrevStage::revFlow(node, state, unbindApa(getApprox(ap)), config) and
-      filter(node, state, ap, config)
+      fwdFlow(node, state, cc, summaryCtx, argAp, ap, _, config)
     }
 
     pragma[nomagic]
     private predicate fwdFlow0(
       NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      Ap ap, Configuration config
+      Ap ap, ApApprox apa, Configuration config
     ) {
       sourceNode(node, state, config) and
       (if hasSourceCallCtx(config) then cc = ccSomeCall() else cc = ccNone()) and
       argAp = apNone() and
       summaryCtx = TParameterPositionNone() and
-      ap = getApNil(node)
+      ap = getApNil(node) and
+      apa = getApprox(ap)
       or
-      exists(NodeEx mid, FlowState state0, Ap ap0, LocalCc localCc |
-        fwdFlow(mid, state0, cc, summaryCtx, argAp, ap0, config) and
+      exists(NodeEx mid, FlowState state0, Ap ap0, ApApprox apa0, LocalCc localCc |
+        fwdFlow(mid, state0, cc, summaryCtx, argAp, ap0, apa0, config) and
         localCc = getLocalCc(mid, cc)
       |
         localStep(mid, state0, node, state, true, _, config, localCc) and
-        ap = ap0
+        ap = ap0 and
+        apa = apa0
         or
         localStep(mid, state0, node, state, false, ap, config, localCc) and
-        ap0 instanceof ApNil
+        ap0 instanceof ApNil and
+        apa = getApprox(ap)
       )
       or
       exists(NodeEx mid |
-        fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, apa, pragma[only_bind_into](config)) and
         jumpStep(mid, node, config) and
         cc = ccNone() and
         summaryCtx = TParameterPositionNone() and
@@ -1352,7 +1382,8 @@ private module MkStage<StageSig PrevStage> {
         cc = ccNone() and
         summaryCtx = TParameterPositionNone() and
         argAp = apNone() and
-        ap = getApNil(node)
+        ap = getApNil(node) and
+        apa = getApprox(ap)
       )
       or
       exists(NodeEx mid, FlowState state0, ApNil nil |
@@ -1361,32 +1392,32 @@ private module MkStage<StageSig PrevStage> {
         cc = ccNone() and
         summaryCtx = TParameterPositionNone() and
         argAp = apNone() and
-        ap = getApNil(node)
+        ap = getApNil(node) and
+        apa = getApprox(ap)
       )
       or
       // store
       exists(TypedContent tc, Ap ap0 |
         fwdFlowStore(_, ap0, tc, node, state, cc, summaryCtx, argAp, config) and
-        ap = apCons(tc, ap0)
+        ap = apCons(tc, ap0) and
+        apa = getApprox(ap)
       )
       or
       // read
       exists(Ap ap0, Content c |
         fwdFlowRead(ap0, c, _, node, state, cc, summaryCtx, argAp, config) and
-        fwdFlowConsCand(ap0, c, ap, config)
+        fwdFlowConsCand(ap0, c, ap, config) and
+        apa = getApprox(ap)
       )
       or
       // flow into a callable
-      exists(ApApprox apa |
-        fwdFlowIn(_, node, state, _, cc, _, _, ap, config) and
-        apa = getApprox(ap) and
-        if PrevStage::parameterMayFlowThrough(node, apa, config)
-        then (
-          summaryCtx = TParameterPositionSome(node.(ParamNodeEx).getPosition()) and
-          argAp = apSome(ap)
-        ) else (
-          summaryCtx = TParameterPositionNone() and argAp = apNone()
-        )
+      fwdFlowIn(_, node, state, _, cc, _, _, ap, apa, config) and
+      if PrevStage::parameterMayFlowThrough(node, apa, config)
+      then (
+        summaryCtx = TParameterPositionSome(node.(ParamNodeEx).getPosition()) and
+        argAp = apSome(ap)
+      ) else (
+        summaryCtx = TParameterPositionNone() and argAp = apNone()
       )
       or
       // flow out of a callable
@@ -1394,8 +1425,8 @@ private module MkStage<StageSig PrevStage> {
         DataFlowCall call, RetNodeEx ret, boolean allowsFieldFlow, CcNoCall innercc,
         DataFlowCallable inner
       |
-        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, config) and
-        flowOutOfCall(call, ret, _, node, allowsFieldFlow, config) and
+        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, apa, config) and
+        flowOutOfCallApa(call, ret, _, node, allowsFieldFlow, apa, config) and
         inner = ret.getEnclosingCallable() and
         cc = getCallContextReturn(inner, call, innercc) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
@@ -1403,7 +1434,7 @@ private module MkStage<StageSig PrevStage> {
       or
       // flow through a callable
       exists(DataFlowCall call, ParameterPosition summaryCtx0, Ap argAp0 |
-        fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, config) and
+        fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, apa, config) and
         fwdFlowIsEntered(call, cc, summaryCtx, argAp, summaryCtx0, argAp0, config)
       )
     }
@@ -1413,9 +1444,9 @@ private module MkStage<StageSig PrevStage> {
       NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc,
       ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
     ) {
-      exists(DataFlowType contentType |
-        fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, config) and
-        PrevStage::storeStepCand(node1, unbindApa(getApprox(ap1)), tc, node2, contentType, config) and
+      exists(DataFlowType contentType, ApApprox apa1 |
+        fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, apa1, config) and
+        PrevStage::storeStepCand(node1, apa1, tc, node2, contentType, config) and
         typecheckStore(ap1, contentType)
       )
     }
@@ -1433,43 +1464,104 @@ private module MkStage<StageSig PrevStage> {
       )
     }
 
+    private class ApNonNil instanceof Ap {
+      pragma[nomagic]
+      ApNonNil() { not this instanceof ApNil }
+
+      string toString() { result = "" }
+    }
+
+    pragma[nomagic]
+    private predicate fwdFlowRead0(
+      NodeEx node1, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      ApNonNil ap, Configuration config
+    ) {
+      fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
+      PrevStage::readStepCand(node1, _, _, config)
+    }
+
     pragma[nomagic]
     private predicate fwdFlowRead(
       Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc,
       ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
     ) {
-      fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
+      fwdFlowRead0(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, c, node2, config) and
       getHeadContent(ap) = c
     }
 
     pragma[nomagic]
     private predicate fwdFlowIn(
-      DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, Cc innercc,
-      ParameterPositionOption summaryCtx, ApOption argAp, Ap ap, Configuration config
+      DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, CcCall innercc,
+      ParameterPositionOption summaryCtx, ApOption argAp, Ap ap, ApApprox apa, Configuration config
     ) {
       exists(ArgNodeEx arg, boolean allowsFieldFlow |
-        fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, config) and
-        flowIntoCall(call, arg, p, allowsFieldFlow, config) and
+        fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, apa, config) and
+        flowIntoCallApa(call, arg, p, allowsFieldFlow, apa, config) and
         innercc = getCallContextCall(call, p.getEnclosingCallable(), outercc) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
+    pragma[nomagic]
+    private predicate fwdFlowRetFromArg(
+      RetNodeEx ret, FlowState state, CcCall ccc, ParameterPosition summaryCtx, ParamNodeEx p,
+      Ap argAp, ApApprox argApa, Ap ap, ApApprox apa, Configuration config
+    ) {
+      exists(DataFlowCallable c, ReturnKindExt kind |
+        fwdFlow(pragma[only_bind_into](ret), state, ccc,
+          TParameterPositionSome(pragma[only_bind_into](summaryCtx)), apSome(argAp), ap, apa, config) and
+        getApprox(argAp) = argApa and
+        c = ret.getEnclosingCallable() and
+        kind = ret.getKind() and
+        p.isParameterOf(c, pragma[only_bind_into](summaryCtx)) and
+        parameterFlowThroughAllowed(p, kind)
+      )
+    }
+
+    pragma[inline]
+    private predicate fwdFlowInMayFlowThrough(
+      DataFlowCall call, Cc cc, CcCall innerCc, ParameterPositionOption summaryCtx, ApOption argAp,
+      ParamNodeEx param, Ap ap, ApApprox apa, Configuration config
+    ) {
+      fwdFlowIn(call, pragma[only_bind_into](param), _, cc, innerCc, summaryCtx, argAp, ap,
+        pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
+      PrevStage::parameterMayFlowThrough(param, apa, config)
+    }
+
+    // dedup before joining with `flowThroughOutOfCall`
+    pragma[nomagic]
+    private predicate fwdFlowInMayFlowThroughProj(
+      DataFlowCall call, CcCall innerCc, ApApprox apa, Configuration config
+    ) {
+      fwdFlowInMayFlowThrough(call, _, innerCc, _, _, _, _, apa, config)
+    }
+
+    /**
+     * Same as `flowThroughOutOfCall`, but restricted to calls that are reached
+     * in the flow covered by `fwdFlow`, where data might flow through the target
+     * callable and back out at `call`.
+     */
+    pragma[nomagic]
+    private predicate fwdFlowThroughOutOfCall(
+      DataFlowCall call, CcCall ccc, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow,
+      ApApprox argApa, ApApprox apa, Configuration config
+    ) {
+      fwdFlowInMayFlowThroughProj(call, ccc, argApa, config) and
+      flowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, argApa, apa, config)
+    }
+
     pragma[nomagic]
     private predicate fwdFlowOutFromArg(
       DataFlowCall call, NodeEx out, FlowState state, ParameterPosition summaryCtx, Ap argAp, Ap ap,
-      Configuration config
+      ApApprox apa, Configuration config
     ) {
-      exists(
-        DataFlowCallable c, RetNodeEx ret, ReturnKindExt kind, boolean allowsFieldFlow, CcCall ccc
-      |
-        fwdFlow(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc),
-          TParameterPositionSome(pragma[only_bind_into](summaryCtx)), apSome(argAp), ap, config) and
-        flowThroughOutOfCall(call, pragma[only_bind_into](c), ccc, ret, kind, out, allowsFieldFlow,
+      exists(RetNodeEx ret, boolean allowsFieldFlow, CcCall ccc, ApApprox argApa |
+        fwdFlowRetFromArg(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc),
+          summaryCtx, _, argAp, pragma[only_bind_into](argApa), ap, pragma[only_bind_into](apa),
           config) and
-        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
-        parameterFlowThroughAllowed(c, pragma[only_bind_into](summaryCtx), kind)
+        fwdFlowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, argApa, apa, config) and
+        (if allowsFieldFlow = false then ap instanceof ApNil else any())
       )
     }
 
@@ -1483,8 +1575,7 @@ private module MkStage<StageSig PrevStage> {
       ParameterPosition pos, Ap ap, Configuration config
     ) {
       exists(ParamNodeEx param |
-        fwdFlowIn(call, param, _, cc, _, summaryCtx, argAp, ap, config) and
-        PrevStage::parameterMayFlowThrough(param, unbindApa(getApprox(ap)), config) and
+        fwdFlowInMayFlowThrough(call, cc, _, summaryCtx, argAp, param, ap, _, config) and
         pos = param.getPosition()
       )
     }
@@ -1505,41 +1596,55 @@ private module MkStage<StageSig PrevStage> {
       fwdFlowConsCand(ap1, c, ap2, config)
     }
 
-    pragma[nomagic]
-    private predicate returnFlowsThrough0(
-      RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, DataFlowCallable c,
-      ParameterPosition ppos, Ap argAp, Ap ap, Configuration config
-    ) {
-      exists(boolean allowsFieldFlow |
-        fwdFlow(ret, state, ccc, TParameterPositionSome(ppos), apSome(argAp), ap, config) and
-        flowThroughOutOfCall(_, c, _, pragma[only_bind_into](ret), kind, _, allowsFieldFlow,
-          pragma[only_bind_into](config)) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
-      )
-    }
-
     pragma[nomagic]
     private predicate returnFlowsThrough(
       RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, ParamNodeEx p, Ap argAp,
       Ap ap, Configuration config
     ) {
-      exists(DataFlowCallable c, ParameterPosition ppos |
-        returnFlowsThrough0(ret, kind, state, ccc, c, ppos, argAp, ap, config) and
-        p.isParameterOf(c, ppos) and
-        parameterFlowThroughAllowed(p, kind)
+      exists(boolean allowsFieldFlow, ApApprox argApa, ApApprox apa |
+        fwdFlowRetFromArg(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc), _, p,
+          argAp, pragma[only_bind_into](argApa), ap, pragma[only_bind_into](apa), config) and
+        kind = ret.getKind() and
+        fwdFlowThroughOutOfCall(_, ccc, ret, _, allowsFieldFlow, argApa, apa, config) and
+        (if allowsFieldFlow = false then ap instanceof ApNil else any())
       )
     }
 
     pragma[nomagic]
     private predicate flowThroughIntoCall(
-      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp,
+      Configuration config
     ) {
-      exists(Ap argAp |
-        flowIntoCall(call, pragma[only_bind_into](arg), pragma[only_bind_into](p), allowsFieldFlow,
+      exists(ApApprox argApa |
+        flowIntoCallApa(call, pragma[only_bind_into](arg), pragma[only_bind_into](p),
+          allowsFieldFlow, argApa, pragma[only_bind_into](config)) and
+        fwdFlow(arg, _, _, _, _, pragma[only_bind_into](argAp), argApa,
           pragma[only_bind_into](config)) and
-        fwdFlow(arg, _, _, _, _, pragma[only_bind_into](argAp), pragma[only_bind_into](config)) and
         returnFlowsThrough(_, _, _, _, p, pragma[only_bind_into](argAp), _,
-          pragma[only_bind_into](config))
+          pragma[only_bind_into](config)) and
+        if allowsFieldFlow = false then argAp instanceof ApNil else any()
+      )
+    }
+
+    pragma[nomagic]
+    private predicate flowIntoCallAp(
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap ap,
+      Configuration config
+    ) {
+      exists(ApApprox apa |
+        flowIntoCallApa(call, arg, p, allowsFieldFlow, apa, config) and
+        fwdFlow(arg, _, _, _, _, ap, apa, config)
+      )
+    }
+
+    pragma[nomagic]
+    private predicate flowOutOfCallAp(
+      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
+      Ap ap, Configuration config
+    ) {
+      exists(ApApprox apa |
+        flowOutOfCallApa(call, ret, kind, out, allowsFieldFlow, apa, config) and
+        fwdFlow(ret, _, _, _, _, ap, apa, config)
       )
     }
 
@@ -1628,7 +1733,7 @@ private module MkStage<StageSig PrevStage> {
       // flow into a callable
       exists(ParamNodeEx p, boolean allowsFieldFlow |
         revFlow(p, state, TReturnCtxNone(), returnAp, ap, config) and
-        flowIntoCall(_, node, p, allowsFieldFlow, config) and
+        flowIntoCallAp(_, node, p, allowsFieldFlow, ap, config) and
         (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
         returnCtx = TReturnCtxNone()
       )
@@ -1682,22 +1787,41 @@ private module MkStage<StageSig PrevStage> {
     ) {
       exists(NodeEx out, boolean allowsFieldFlow |
         revFlow(out, state, returnCtx, returnAp, ap, config) and
-        flowOutOfCall(call, ret, kind, out, allowsFieldFlow, config) and
+        flowOutOfCallAp(call, ret, kind, out, allowsFieldFlow, ap, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
+    /**
+     * Same as `flowThroughIntoCall`, but restricted to calls that are reached
+     * in the flow covered by `revFlow`, where data might flow through the target
+     * callable and back out at `call`.
+     */
+    pragma[nomagic]
+    private predicate revFlowThroughIntoCall(
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp,
+      Configuration config
+    ) {
+      flowThroughIntoCall(call, arg, p, allowsFieldFlow, argAp, config) and
+      revFlowIsReturned(call, _, _, _, _, config)
+    }
+
+    pragma[nomagic]
+    private predicate revFlowParamToReturn(
+      ParamNodeEx p, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap, Configuration config
+    ) {
+      revFlow(p, state, TReturnCtxMaybeFlowThrough(kind), apSome(returnAp), ap, config) and
+      parameterFlowThroughAllowed(p, kind)
+    }
+
     pragma[nomagic]
     private predicate revFlowInToReturn(
       DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap,
       Configuration config
     ) {
       exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(pragma[only_bind_into](p), state,
-          TReturnCtxMaybeFlowThrough(pragma[only_bind_into](kind)), apSome(returnAp), ap, config) and
-        flowThroughIntoCall(call, arg, p, allowsFieldFlow, config) and
-        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
-        parameterFlowThroughAllowed(p, kind)
+        revFlowParamToReturn(p, state, kind, returnAp, ap, config) and
+        revFlowThroughIntoCall(call, arg, p, allowsFieldFlow, ap, config)
       )
     }
 
@@ -1750,6 +1874,11 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     predicate revFlow(NodeEx node, Configuration config) { revFlow(node, _, _, _, _, config) }
 
+    pragma[nomagic]
+    predicate revFlowAp(NodeEx node, Ap ap, Configuration config) {
+      revFlow(node, _, _, _, ap, config)
+    }
+
     // use an alias as a workaround for bad functionality-induced joins
     pragma[nomagic]
     additional predicate revFlowAlias(NodeEx node, Configuration config) {
@@ -1786,9 +1915,9 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate parameterFlowsThroughRev(
-      ParamNodeEx p, Ap ap, ReturnKindExt kind, Configuration config
+      ParamNodeEx p, Ap ap, ReturnKindExt kind, Ap returnAp, Configuration config
     ) {
-      revFlow(p, _, TReturnCtxMaybeFlowThrough(kind), apSome(_), ap, config) and
+      revFlow(p, _, TReturnCtxMaybeFlowThrough(kind), apSome(returnAp), ap, config) and
       parameterFlowThroughAllowed(p, kind)
     }
 
@@ -1796,27 +1925,36 @@ private module MkStage<StageSig PrevStage> {
     predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
       exists(RetNodeEx ret, ReturnKindExt kind |
         returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
-        parameterFlowsThroughRev(p, ap, kind, config)
+        parameterFlowsThroughRev(p, ap, kind, _, config)
       )
     }
 
     pragma[nomagic]
-    predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config) {
-      exists(ParamNodeEx p, Ap ap |
-        returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
-        parameterFlowsThroughRev(p, ap, kind, config)
+    predicate returnMayFlowThrough(
+      RetNodeEx ret, Ap argAp, Ap ap, ReturnKindExt kind, Configuration config
+    ) {
+      exists(ParamNodeEx p |
+        returnFlowsThrough(ret, kind, _, _, p, argAp, ap, config) and
+        parameterFlowsThroughRev(p, argAp, kind, ap, config)
+      )
+    }
+
+    pragma[nomagic]
+    predicate revFlowInToReturnIsReturned(
+      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnCtx returnCtx, ApOption returnAp,
+      Ap ap, Configuration config
+    ) {
+      exists(ReturnKindExt returnKind0, Ap returnAp0 |
+        revFlowInToReturn(call, arg, state, returnKind0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
       )
     }
 
     pragma[nomagic]
     predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
-      exists(
-        ReturnKindExt returnKind0, Ap returnAp0, ArgNodeEx arg, FlowState state,
-        ReturnCtx returnCtx, ApOption returnAp, Ap ap
-      |
+      exists(ArgNodeEx arg, FlowState state, ReturnCtx returnCtx, ApOption returnAp, Ap ap |
         revFlow(arg, state, returnCtx, returnAp, ap, config) and
-        revFlowInToReturn(call, arg, state, returnKind0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
+        revFlowInToReturnIsReturned(call, arg, state, returnCtx, returnAp, ap, config)
       )
     }
 
@@ -2179,16 +2317,16 @@ private module LocalFlowBigStep {
   pragma[nomagic]
   predicate localFlowBigStep(
     NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
-    AccessPathFrontNil apf, Configuration config, LocalCallContext callContext
+    DataFlowType t, Configuration config, LocalCallContext callContext
   ) {
-    localFlowStepPlus(node1, state1, node2, preservesValue, apf.getType(), config, callContext) and
+    localFlowStepPlus(node1, state1, node2, preservesValue, t, config, callContext) and
     localFlowExit(node2, state1, config) and
     state1 = state2
     or
     additionalLocalFlowStepNodeCand2(node1, state1, node2, state2, config) and
     state1 != state2 and
     preservesValue = false and
-    apf = TFrontNil(node2.getDataFlowType()) and
+    t = node2.getDataFlowType() and
     callContext.relevantFor(node1.getEnclosingCallable()) and
     not exists(DataFlowCall call | call = callContext.(LocalCallContextSpecificCall).getCall() |
       isUnreachableInCallCached(node1.asNode(), call) or
@@ -2202,11 +2340,87 @@ private import LocalFlowBigStep
 private module Stage3Param implements MkStage<Stage2>::StageParam {
   private module PrevStage = Stage2;
 
+  class Ap = ApproxAccessPathFront;
+
+  class ApNil = ApproxAccessPathFrontNil;
+
+  PrevStage::Ap getApprox(Ap ap) { result = ap.toBoolNonEmpty() }
+
+  ApNil getApNil(NodeEx node) {
+    PrevStage::revFlow(node, _) and result = TApproxFrontNil(node.getDataFlowType())
+  }
+
+  bindingset[tc, tail]
+  Ap apCons(TypedContent tc, Ap tail) { result.getAHead() = tc and exists(tail) }
+
+  pragma[noinline]
+  Content getHeadContent(Ap ap) { result = ap.getAHead().getContent() }
+
+  class ApOption = ApproxAccessPathFrontOption;
+
+  ApOption apNone() { result = TApproxAccessPathFrontNone() }
+
+  ApOption apSome(Ap ap) { result = TApproxAccessPathFrontSome(ap) }
+
+  import BooleanCallContext
+
+  predicate localStep(
+    NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
+    ApproxAccessPathFrontNil ap, Configuration config, LocalCc lcc
+  ) {
+    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap.getType(), config, _) and
+    exists(lcc)
+  }
+
+  predicate flowOutOfCall = flowOutOfCallNodeCand2/6;
+
+  predicate flowIntoCall = flowIntoCallNodeCand2/5;
+
+  pragma[nomagic]
+  private predicate expectsContentCand(NodeEx node, Ap ap, Configuration config) {
+    exists(Content c |
+      PrevStage::revFlow(node, pragma[only_bind_into](config)) and
+      PrevStage::readStepCand(_, c, _, pragma[only_bind_into](config)) and
+      expectsContentEx(node, c) and
+      c = ap.getAHead().getContent()
+    )
+  }
+
+  pragma[nomagic]
+  private predicate castingNodeEx(NodeEx node) { node.asNode() instanceof CastingNode }
+
+  bindingset[node, state, ap, config]
+  predicate filter(NodeEx node, FlowState state, Ap ap, Configuration config) {
+    exists(state) and
+    exists(config) and
+    (if castingNodeEx(node) then compatibleTypes(node.getDataFlowType(), ap.getType()) else any()) and
+    (
+      notExpectsContent(node)
+      or
+      expectsContentCand(node, ap, config)
+    )
+  }
+
+  bindingset[ap, contentType]
+  predicate typecheckStore(Ap ap, DataFlowType contentType) {
+    // We need to typecheck stores here, since reverse flow through a getter
+    // might have a different type here compared to inside the getter.
+    compatibleTypes(ap.getType(), contentType)
+  }
+}
+
+private module Stage3 implements StageSig {
+  import MkStage<Stage2>::Stage<Stage3Param>
+}
+
+private module Stage4Param implements MkStage<Stage3>::StageParam {
+  private module PrevStage = Stage3;
+
   class Ap = AccessPathFront;
 
   class ApNil = AccessPathFrontNil;
 
-  PrevStage::Ap getApprox(Ap ap) { result = ap.toBoolNonEmpty() }
+  PrevStage::Ap getApprox(Ap ap) { result = ap.toApprox() }
 
   ApNil getApNil(NodeEx node) {
     PrevStage::revFlow(node, _) and result = TFrontNil(node.getDataFlowType())
@@ -2226,16 +2440,42 @@ private module Stage3Param implements MkStage<Stage2>::StageParam {
 
   import BooleanCallContext
 
+  pragma[nomagic]
   predicate localStep(
     NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
     ApNil ap, Configuration config, LocalCc lcc
   ) {
-    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap, config, _) and exists(lcc)
+    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap.getType(), config, _) and
+    PrevStage::revFlow(node1, pragma[only_bind_into](state1), _, pragma[only_bind_into](config)) and
+    PrevStage::revFlowAlias(node2, pragma[only_bind_into](state2), _, pragma[only_bind_into](config)) and
+    exists(lcc)
   }
 
-  predicate flowOutOfCall = flowOutOfCallNodeCand2/6;
+  pragma[nomagic]
+  predicate flowOutOfCall(
+    DataFlowCall call, RetNodeEx node1, ReturnKindExt kind, NodeEx node2, boolean allowsFieldFlow,
+    Configuration config
+  ) {
+    exists(FlowState state |
+      flowOutOfCallNodeCand2(call, node1, kind, node2, allowsFieldFlow, config) and
+      PrevStage::revFlow(node2, pragma[only_bind_into](state), _, pragma[only_bind_into](config)) and
+      PrevStage::revFlowAlias(node1, pragma[only_bind_into](state), _,
+        pragma[only_bind_into](config))
+    )
+  }
 
-  predicate flowIntoCall = flowIntoCallNodeCand2/5;
+  pragma[nomagic]
+  predicate flowIntoCall(
+    DataFlowCall call, ArgNodeEx node1, ParamNodeEx node2, boolean allowsFieldFlow,
+    Configuration config
+  ) {
+    exists(FlowState state |
+      flowIntoCallNodeCand2(call, node1, node2, allowsFieldFlow, config) and
+      PrevStage::revFlow(node2, pragma[only_bind_into](state), _, pragma[only_bind_into](config)) and
+      PrevStage::revFlowAlias(node1, pragma[only_bind_into](state), _,
+        pragma[only_bind_into](config))
+    )
+  }
 
   pragma[nomagic]
   private predicate clearSet(NodeEx node, ContentSet c, Configuration config) {
@@ -2291,8 +2531,8 @@ private module Stage3Param implements MkStage<Stage2>::StageParam {
   }
 }
 
-private module Stage3 implements StageSig {
-  import MkStage<Stage2>::Stage<Stage3Param>
+private module Stage4 implements StageSig {
+  import MkStage<Stage3>::Stage<Stage4Param>
 }
 
 /**
@@ -2303,8 +2543,8 @@ private predicate flowCandSummaryCtx(
   NodeEx node, FlowState state, AccessPathFront argApf, Configuration config
 ) {
   exists(AccessPathFront apf |
-    Stage3::revFlow(node, state, TReturnCtxMaybeFlowThrough(_), _, apf, config) and
-    Stage3::fwdFlow(node, state, any(Stage3::CcCall ccc), _, TAccessPathFrontSome(argApf), apf,
+    Stage4::revFlow(node, state, TReturnCtxMaybeFlowThrough(_), _, apf, config) and
+    Stage4::fwdFlow(node, state, any(Stage4::CcCall ccc), _, TAccessPathFrontSome(argApf), apf,
       config)
   )
 }
@@ -2315,10 +2555,10 @@ private predicate flowCandSummaryCtx(
  */
 private predicate expensiveLen2unfolding(TypedContent tc, Configuration config) {
   exists(int tails, int nodes, int apLimit, int tupleLimit |
-    tails = strictcount(AccessPathFront apf | Stage3::consCand(tc, apf, config)) and
+    tails = strictcount(AccessPathFront apf | Stage4::consCand(tc, apf, config)) and
     nodes =
       strictcount(NodeEx n, FlowState state |
-        Stage3::revFlow(n, state, any(AccessPathFrontHead apf | apf.getHead() = tc), config)
+        Stage4::revFlow(n, state, any(AccessPathFrontHead apf | apf.getHead() = tc), config)
         or
         flowCandSummaryCtx(n, state, any(AccessPathFrontHead apf | apf.getHead() = tc), config)
       ) and
@@ -2332,11 +2572,11 @@ private predicate expensiveLen2unfolding(TypedContent tc, Configuration config)
 private newtype TAccessPathApprox =
   TNil(DataFlowType t) or
   TConsNil(TypedContent tc, DataFlowType t) {
-    Stage3::consCand(tc, TFrontNil(t), _) and
+    Stage4::consCand(tc, TFrontNil(t), _) and
     not expensiveLen2unfolding(tc, _)
   } or
   TConsCons(TypedContent tc1, TypedContent tc2, int len) {
-    Stage3::consCand(tc1, TFrontHead(tc2), _) and
+    Stage4::consCand(tc1, TFrontHead(tc2), _) and
     len in [2 .. accessPathLimit()] and
     not expensiveLen2unfolding(tc1, _)
   } or
@@ -2466,7 +2706,7 @@ private class AccessPathApproxCons1 extends AccessPathApproxCons, TCons1 {
   override AccessPathApprox pop(TypedContent head) {
     head = tc and
     (
-      exists(TypedContent tc2 | Stage3::consCand(tc, TFrontHead(tc2), _) |
+      exists(TypedContent tc2 | Stage4::consCand(tc, TFrontHead(tc2), _) |
         result = TConsCons(tc2, _, len - 1)
         or
         len = 2 and
@@ -2477,7 +2717,7 @@ private class AccessPathApproxCons1 extends AccessPathApproxCons, TCons1 {
       or
       exists(DataFlowType t |
         len = 1 and
-        Stage3::consCand(tc, TFrontNil(t), _) and
+        Stage4::consCand(tc, TFrontNil(t), _) and
         result = TNil(t)
       )
     )
@@ -2502,13 +2742,14 @@ private class AccessPathApproxOption extends TAccessPathApproxOption {
   }
 }
 
-private module Stage4Param implements MkStage<Stage3>::StageParam {
-  private module PrevStage = Stage3;
+private module Stage5Param implements MkStage<Stage4>::StageParam {
+  private module PrevStage = Stage4;
 
   class Ap = AccessPathApprox;
 
   class ApNil = AccessPathApproxNil;
 
+  pragma[nomagic]
   PrevStage::Ap getApprox(Ap ap) { result = ap.getFront() }
 
   ApNil getApNil(NodeEx node) {
@@ -2534,7 +2775,9 @@ private module Stage4Param implements MkStage<Stage3>::StageParam {
     NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
     ApNil ap, Configuration config, LocalCc lcc
   ) {
-    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap.getFront(), config, lcc)
+    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap.getType(), config, lcc) and
+    PrevStage::revFlow(node1, pragma[only_bind_into](state1), _, pragma[only_bind_into](config)) and
+    PrevStage::revFlowAlias(node2, pragma[only_bind_into](state2), _, pragma[only_bind_into](config))
   }
 
   pragma[nomagic]
@@ -2571,7 +2814,7 @@ private module Stage4Param implements MkStage<Stage3>::StageParam {
   predicate typecheckStore(Ap ap, DataFlowType contentType) { any() }
 }
 
-private module Stage4 = MkStage<Stage3>::Stage<Stage4Param>;
+private module Stage5 = MkStage<Stage4>::Stage<Stage5Param>;
 
 bindingset[conf, result]
 private Configuration unbindConf(Configuration conf) {
@@ -2585,8 +2828,8 @@ private predicate nodeMayUseSummary0(
 ) {
   exists(AccessPathApprox apa0 |
     c = n.getEnclosingCallable() and
-    Stage4::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
-    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TParameterPositionSome(pos),
+    Stage5::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
+    Stage5::fwdFlow(n, state, any(CallContextCall ccc), TParameterPositionSome(pos),
       TAccessPathApproxSome(apa), apa0, config)
   )
 }
@@ -2596,7 +2839,7 @@ private predicate nodeMayUseSummary(
   NodeEx n, FlowState state, AccessPathApprox apa, Configuration config
 ) {
   exists(DataFlowCallable c, ParameterPosition pos, ParamNodeEx p |
-    Stage4::parameterMayFlowThrough(p, apa, config) and
+    Stage5::parameterMayFlowThrough(p, apa, config) and
     nodeMayUseSummary0(n, c, pos, state, apa, config) and
     p.isParameterOf(c, pos)
   )
@@ -2606,8 +2849,8 @@ private newtype TSummaryCtx =
   TSummaryCtxNone() or
   TSummaryCtxSome(ParamNodeEx p, FlowState state, AccessPath ap) {
     exists(Configuration config |
-      Stage4::parameterMayFlowThrough(p, ap.getApprox(), config) and
-      Stage4::revFlow(p, state, _, config)
+      Stage5::parameterMayFlowThrough(p, ap.getApprox(), config) and
+      Stage5::revFlow(p, state, _, config)
     )
   }
 
@@ -2656,7 +2899,7 @@ private int count1to2unfold(AccessPathApproxCons1 apa, Configuration config) {
     len = apa.len() and
     result =
       strictcount(AccessPathFront apf |
-        Stage4::consCand(tc, any(AccessPathApprox ap | ap.getFront() = apf and ap.len() = len - 1),
+        Stage5::consCand(tc, any(AccessPathApprox ap | ap.getFront() = apf and ap.len() = len - 1),
           config)
       )
   )
@@ -2665,7 +2908,7 @@ private int count1to2unfold(AccessPathApproxCons1 apa, Configuration config) {
 private int countNodesUsingAccessPath(AccessPathApprox apa, Configuration config) {
   result =
     strictcount(NodeEx n, FlowState state |
-      Stage4::revFlow(n, state, apa, config) or nodeMayUseSummary(n, state, apa, config)
+      Stage5::revFlow(n, state, apa, config) or nodeMayUseSummary(n, state, apa, config)
     )
 }
 
@@ -2686,7 +2929,7 @@ private predicate expensiveLen1to2unfolding(AccessPathApproxCons1 apa, Configura
 private AccessPathApprox getATail(AccessPathApprox apa, Configuration config) {
   exists(TypedContent head |
     apa.pop(head) = result and
-    Stage4::consCand(head, result, config)
+    Stage5::consCand(head, result, config)
   )
 }
 
@@ -2768,7 +3011,7 @@ private newtype TPathNode =
     NodeEx node, FlowState state, CallContext cc, SummaryCtx sc, AccessPath ap, Configuration config
   ) {
     // A PathNode is introduced by a source ...
-    Stage4::revFlow(node, state, config) and
+    Stage5::revFlow(node, state, config) and
     sourceNode(node, state, config) and
     (
       if hasSourceCallCtx(config)
@@ -2782,7 +3025,7 @@ private newtype TPathNode =
     exists(PathNodeMid mid |
       pathStep(mid, node, state, cc, sc, ap) and
       pragma[only_bind_into](config) = mid.getConfiguration() and
-      Stage4::revFlow(node, state, ap.getApprox(), pragma[only_bind_into](config))
+      Stage5::revFlow(node, state, ap.getApprox(), pragma[only_bind_into](config))
     )
   } or
   TPathNodeSink(NodeEx node, FlowState state, Configuration config) {
@@ -2924,7 +3167,7 @@ private class AccessPathCons2 extends AccessPath, TAccessPathCons2 {
   override TypedContent getHead() { result = head1 }
 
   override AccessPath getTail() {
-    Stage4::consCand(head1, result.getApprox(), _) and
+    Stage5::consCand(head1, result.getApprox(), _) and
     result.getHead() = head2 and
     result.length() = len - 1
   }
@@ -2955,7 +3198,7 @@ private class AccessPathCons1 extends AccessPath, TAccessPathCons1 {
   override TypedContent getHead() { result = head }
 
   override AccessPath getTail() {
-    Stage4::consCand(head, result.getApprox(), _) and result.length() = len - 1
+    Stage5::consCand(head, result.getApprox(), _) and result.length() = len - 1
   }
 
   override AccessPathFrontHead getFront() { result = TFrontHead(head) }
@@ -3347,7 +3590,8 @@ private predicate pathStep(
     AccessPath ap0, NodeEx midnode, FlowState state0, Configuration conf, LocalCallContext localCC
   |
     pathNode(mid, midnode, state0, cc, sc, ap0, conf, localCC) and
-    localFlowBigStep(midnode, state0, node, state, false, ap.getFront(), conf, localCC) and
+    localFlowBigStep(midnode, state0, node, state, false, ap.(AccessPathNil).getType(), conf,
+      localCC) and
     ap0 instanceof AccessPathNil
   )
   or
@@ -3389,7 +3633,7 @@ private predicate pathReadStep(
 ) {
   ap0 = mid.getAp() and
   tc = ap0.getHead() and
-  Stage4::readStepCand(mid.getNodeEx(), tc.getContent(), node, mid.getConfiguration()) and
+  Stage5::readStepCand(mid.getNodeEx(), tc.getContent(), node, mid.getConfiguration()) and
   state = mid.getState() and
   cc = mid.getCallContext()
 }
@@ -3399,7 +3643,7 @@ private predicate pathStoreStep(
   PathNodeMid mid, NodeEx node, FlowState state, AccessPath ap0, TypedContent tc, CallContext cc
 ) {
   ap0 = mid.getAp() and
-  Stage4::storeStepCand(mid.getNodeEx(), _, tc, node, _, mid.getConfiguration()) and
+  Stage5::storeStepCand(mid.getNodeEx(), _, tc, node, _, mid.getConfiguration()) and
   state = mid.getState() and
   cc = mid.getCallContext()
 }
@@ -3436,7 +3680,7 @@ private NodeEx getAnOutNodeFlow(
   ReturnKindExt kind, DataFlowCall call, AccessPathApprox apa, Configuration config
 ) {
   result.asNode() = kind.getAnOutNode(call) and
-  Stage4::revFlow(result, _, apa, config)
+  Stage5::revFlow(result, _, apa, config)
 }
 
 /**
@@ -3472,7 +3716,7 @@ private predicate parameterCand(
   DataFlowCallable callable, ParameterPosition pos, AccessPathApprox apa, Configuration config
 ) {
   exists(ParamNodeEx p |
-    Stage4::revFlow(p, _, apa, config) and
+    Stage5::revFlow(p, _, apa, config) and
     p.isParameterOf(callable, pos)
   )
 }
@@ -3751,9 +3995,17 @@ predicate stageStats(
   n = 45 and
   Stage4::stats(false, nodes, fields, conscand, states, tuples, config)
   or
-  stage = "5 Fwd" and n = 50 and finalStats(true, nodes, fields, conscand, states, tuples)
+  stage = "5 Fwd" and
+  n = 50 and
+  Stage5::stats(true, nodes, fields, conscand, states, tuples, config)
   or
-  stage = "5 Rev" and n = 55 and finalStats(false, nodes, fields, conscand, states, tuples)
+  stage = "5 Rev" and
+  n = 55 and
+  Stage5::stats(false, nodes, fields, conscand, states, tuples, config)
+  or
+  stage = "6 Fwd" and n = 60 and finalStats(true, nodes, fields, conscand, states, tuples)
+  or
+  stage = "6 Rev" and n = 65 and finalStats(false, nodes, fields, conscand, states, tuples)
 }
 
 private module FlowExploration {
diff --git a/cpp/ql/lib/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl2.qll b/cpp/ql/lib/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl2.qll
index ccde916a3c2..6741ccc2f06 100644
--- a/cpp/ql/lib/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl2.qll
+++ b/cpp/ql/lib/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl2.qll
@@ -621,23 +621,6 @@ private predicate parameterFlowThroughAllowed(ParamNodeEx p, ReturnKindExt kind)
   )
 }
 
-/**
- * Holds if flow from a parameter at position `pos` inside `c` to a return node of
- * kind `kind` is allowed.
- *
- * We don't expect a parameter to return stored in itself, unless
- * explicitly allowed
- */
-bindingset[c, pos, kind]
-private predicate parameterFlowThroughAllowed(
-  DataFlowCallable c, ParameterPosition pos, ReturnKindExt kind
-) {
-  exists(ParamNodeEx p |
-    p.isParameterOf(c, pos) and
-    parameterFlowThroughAllowed(p, kind)
-  )
-}
-
 private module Stage1 implements StageSig {
   class Ap = Unit;
 
@@ -980,6 +963,12 @@ private module Stage1 implements StageSig {
   pragma[nomagic]
   predicate revFlow(NodeEx node, Configuration config) { revFlow(node, _, config) }
 
+  pragma[nomagic]
+  predicate revFlowAp(NodeEx node, Ap ap, Configuration config) {
+    revFlow(node, config) and
+    exists(ap)
+  }
+
   bindingset[node, state, config]
   predicate revFlow(NodeEx node, FlowState state, Ap ap, Configuration config) {
     revFlow(node, _, pragma[only_bind_into](config)) and
@@ -1022,9 +1011,13 @@ private module Stage1 implements StageSig {
   }
 
   pragma[nomagic]
-  predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config) {
+  predicate returnMayFlowThrough(
+    RetNodeEx ret, Ap argAp, Ap ap, ReturnKindExt kind, Configuration config
+  ) {
     throughFlowNodeCand(ret, config) and
-    kind = ret.getKind()
+    kind = ret.getKind() and
+    exists(argAp) and
+    exists(ap)
   }
 
   pragma[nomagic]
@@ -1189,6 +1182,8 @@ private signature module StageSig {
 
   predicate revFlow(NodeEx node, Configuration config);
 
+  predicate revFlowAp(NodeEx node, Ap ap, Configuration config);
+
   bindingset[node, state, config]
   predicate revFlow(NodeEx node, FlowState state, Ap ap, Configuration config);
 
@@ -1196,7 +1191,9 @@ private signature module StageSig {
 
   predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config);
 
-  predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config);
+  predicate returnMayFlowThrough(
+    RetNodeEx ret, Ap argAp, Ap ap, ReturnKindExt kind, Configuration config
+  );
 
   predicate storeStepCand(
     NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, DataFlowType contentType,
@@ -1281,21 +1278,43 @@ private module MkStage<StageSig PrevStage> {
     import Param
 
     /* Begin: Stage logic. */
-    bindingset[result, apa]
-    private ApApprox unbindApa(ApApprox apa) {
-      pragma[only_bind_out](apa) = pragma[only_bind_out](result)
+    // use an alias as a workaround for bad functionality-induced joins
+    pragma[nomagic]
+    private predicate revFlowApAlias(NodeEx node, ApApprox apa, Configuration config) {
+      PrevStage::revFlowAp(node, apa, config)
+    }
+
+    pragma[nomagic]
+    private predicate flowIntoCallApa(
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, ApApprox apa,
+      Configuration config
+    ) {
+      flowIntoCall(call, arg, p, allowsFieldFlow, config) and
+      PrevStage::revFlowAp(p, pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
+      revFlowApAlias(arg, pragma[only_bind_into](apa), pragma[only_bind_into](config))
+    }
+
+    pragma[nomagic]
+    private predicate flowOutOfCallApa(
+      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
+      ApApprox apa, Configuration config
+    ) {
+      flowOutOfCall(call, ret, kind, out, allowsFieldFlow, config) and
+      PrevStage::revFlowAp(out, pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
+      revFlowApAlias(ret, pragma[only_bind_into](apa), pragma[only_bind_into](config))
     }
 
     pragma[nomagic]
     private predicate flowThroughOutOfCall(
-      DataFlowCall call, DataFlowCallable c, CcCall ccc, RetNodeEx ret, ReturnKindExt kind,
-      NodeEx out, boolean allowsFieldFlow, Configuration config
+      DataFlowCall call, CcCall ccc, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow,
+      ApApprox argApa, ApApprox apa, Configuration config
     ) {
-      flowOutOfCall(call, ret, kind, out, allowsFieldFlow, pragma[only_bind_into](config)) and
-      PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
-      PrevStage::returnMayFlowThrough(ret, kind, pragma[only_bind_into](config)) and
-      matchesCall(ccc, call) and
-      c = ret.getEnclosingCallable()
+      exists(ReturnKindExt kind |
+        flowOutOfCallApa(call, ret, kind, out, allowsFieldFlow, apa, pragma[only_bind_into](config)) and
+        PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
+        PrevStage::returnMayFlowThrough(ret, argApa, apa, kind, pragma[only_bind_into](config)) and
+        matchesCall(ccc, call)
+      )
     }
 
     /**
@@ -1307,39 +1326,50 @@ private module MkStage<StageSig PrevStage> {
      * corresponding parameter position and access path of that argument, respectively.
      */
     pragma[nomagic]
+    additional predicate fwdFlow(
+      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      Ap ap, ApApprox apa, Configuration config
+    ) {
+      fwdFlow0(node, state, cc, summaryCtx, argAp, ap, apa, config) and
+      PrevStage::revFlow(node, state, apa, config) and
+      filter(node, state, ap, config)
+    }
+
+    pragma[inline]
     additional predicate fwdFlow(
       NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
       Ap ap, Configuration config
     ) {
-      fwdFlow0(node, state, cc, summaryCtx, argAp, ap, config) and
-      PrevStage::revFlow(node, state, unbindApa(getApprox(ap)), config) and
-      filter(node, state, ap, config)
+      fwdFlow(node, state, cc, summaryCtx, argAp, ap, _, config)
     }
 
     pragma[nomagic]
     private predicate fwdFlow0(
       NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      Ap ap, Configuration config
+      Ap ap, ApApprox apa, Configuration config
     ) {
       sourceNode(node, state, config) and
       (if hasSourceCallCtx(config) then cc = ccSomeCall() else cc = ccNone()) and
       argAp = apNone() and
       summaryCtx = TParameterPositionNone() and
-      ap = getApNil(node)
+      ap = getApNil(node) and
+      apa = getApprox(ap)
       or
-      exists(NodeEx mid, FlowState state0, Ap ap0, LocalCc localCc |
-        fwdFlow(mid, state0, cc, summaryCtx, argAp, ap0, config) and
+      exists(NodeEx mid, FlowState state0, Ap ap0, ApApprox apa0, LocalCc localCc |
+        fwdFlow(mid, state0, cc, summaryCtx, argAp, ap0, apa0, config) and
         localCc = getLocalCc(mid, cc)
       |
         localStep(mid, state0, node, state, true, _, config, localCc) and
-        ap = ap0
+        ap = ap0 and
+        apa = apa0
         or
         localStep(mid, state0, node, state, false, ap, config, localCc) and
-        ap0 instanceof ApNil
+        ap0 instanceof ApNil and
+        apa = getApprox(ap)
       )
       or
       exists(NodeEx mid |
-        fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, apa, pragma[only_bind_into](config)) and
         jumpStep(mid, node, config) and
         cc = ccNone() and
         summaryCtx = TParameterPositionNone() and
@@ -1352,7 +1382,8 @@ private module MkStage<StageSig PrevStage> {
         cc = ccNone() and
         summaryCtx = TParameterPositionNone() and
         argAp = apNone() and
-        ap = getApNil(node)
+        ap = getApNil(node) and
+        apa = getApprox(ap)
       )
       or
       exists(NodeEx mid, FlowState state0, ApNil nil |
@@ -1361,32 +1392,32 @@ private module MkStage<StageSig PrevStage> {
         cc = ccNone() and
         summaryCtx = TParameterPositionNone() and
         argAp = apNone() and
-        ap = getApNil(node)
+        ap = getApNil(node) and
+        apa = getApprox(ap)
       )
       or
       // store
       exists(TypedContent tc, Ap ap0 |
         fwdFlowStore(_, ap0, tc, node, state, cc, summaryCtx, argAp, config) and
-        ap = apCons(tc, ap0)
+        ap = apCons(tc, ap0) and
+        apa = getApprox(ap)
       )
       or
       // read
       exists(Ap ap0, Content c |
         fwdFlowRead(ap0, c, _, node, state, cc, summaryCtx, argAp, config) and
-        fwdFlowConsCand(ap0, c, ap, config)
+        fwdFlowConsCand(ap0, c, ap, config) and
+        apa = getApprox(ap)
       )
       or
       // flow into a callable
-      exists(ApApprox apa |
-        fwdFlowIn(_, node, state, _, cc, _, _, ap, config) and
-        apa = getApprox(ap) and
-        if PrevStage::parameterMayFlowThrough(node, apa, config)
-        then (
-          summaryCtx = TParameterPositionSome(node.(ParamNodeEx).getPosition()) and
-          argAp = apSome(ap)
-        ) else (
-          summaryCtx = TParameterPositionNone() and argAp = apNone()
-        )
+      fwdFlowIn(_, node, state, _, cc, _, _, ap, apa, config) and
+      if PrevStage::parameterMayFlowThrough(node, apa, config)
+      then (
+        summaryCtx = TParameterPositionSome(node.(ParamNodeEx).getPosition()) and
+        argAp = apSome(ap)
+      ) else (
+        summaryCtx = TParameterPositionNone() and argAp = apNone()
       )
       or
       // flow out of a callable
@@ -1394,8 +1425,8 @@ private module MkStage<StageSig PrevStage> {
         DataFlowCall call, RetNodeEx ret, boolean allowsFieldFlow, CcNoCall innercc,
         DataFlowCallable inner
       |
-        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, config) and
-        flowOutOfCall(call, ret, _, node, allowsFieldFlow, config) and
+        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, apa, config) and
+        flowOutOfCallApa(call, ret, _, node, allowsFieldFlow, apa, config) and
         inner = ret.getEnclosingCallable() and
         cc = getCallContextReturn(inner, call, innercc) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
@@ -1403,7 +1434,7 @@ private module MkStage<StageSig PrevStage> {
       or
       // flow through a callable
       exists(DataFlowCall call, ParameterPosition summaryCtx0, Ap argAp0 |
-        fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, config) and
+        fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, apa, config) and
         fwdFlowIsEntered(call, cc, summaryCtx, argAp, summaryCtx0, argAp0, config)
       )
     }
@@ -1413,9 +1444,9 @@ private module MkStage<StageSig PrevStage> {
       NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc,
       ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
     ) {
-      exists(DataFlowType contentType |
-        fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, config) and
-        PrevStage::storeStepCand(node1, unbindApa(getApprox(ap1)), tc, node2, contentType, config) and
+      exists(DataFlowType contentType, ApApprox apa1 |
+        fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, apa1, config) and
+        PrevStage::storeStepCand(node1, apa1, tc, node2, contentType, config) and
         typecheckStore(ap1, contentType)
       )
     }
@@ -1433,43 +1464,104 @@ private module MkStage<StageSig PrevStage> {
       )
     }
 
+    private class ApNonNil instanceof Ap {
+      pragma[nomagic]
+      ApNonNil() { not this instanceof ApNil }
+
+      string toString() { result = "" }
+    }
+
+    pragma[nomagic]
+    private predicate fwdFlowRead0(
+      NodeEx node1, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      ApNonNil ap, Configuration config
+    ) {
+      fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
+      PrevStage::readStepCand(node1, _, _, config)
+    }
+
     pragma[nomagic]
     private predicate fwdFlowRead(
       Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc,
       ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
     ) {
-      fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
+      fwdFlowRead0(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, c, node2, config) and
       getHeadContent(ap) = c
     }
 
     pragma[nomagic]
     private predicate fwdFlowIn(
-      DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, Cc innercc,
-      ParameterPositionOption summaryCtx, ApOption argAp, Ap ap, Configuration config
+      DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, CcCall innercc,
+      ParameterPositionOption summaryCtx, ApOption argAp, Ap ap, ApApprox apa, Configuration config
     ) {
       exists(ArgNodeEx arg, boolean allowsFieldFlow |
-        fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, config) and
-        flowIntoCall(call, arg, p, allowsFieldFlow, config) and
+        fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, apa, config) and
+        flowIntoCallApa(call, arg, p, allowsFieldFlow, apa, config) and
         innercc = getCallContextCall(call, p.getEnclosingCallable(), outercc) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
+    pragma[nomagic]
+    private predicate fwdFlowRetFromArg(
+      RetNodeEx ret, FlowState state, CcCall ccc, ParameterPosition summaryCtx, ParamNodeEx p,
+      Ap argAp, ApApprox argApa, Ap ap, ApApprox apa, Configuration config
+    ) {
+      exists(DataFlowCallable c, ReturnKindExt kind |
+        fwdFlow(pragma[only_bind_into](ret), state, ccc,
+          TParameterPositionSome(pragma[only_bind_into](summaryCtx)), apSome(argAp), ap, apa, config) and
+        getApprox(argAp) = argApa and
+        c = ret.getEnclosingCallable() and
+        kind = ret.getKind() and
+        p.isParameterOf(c, pragma[only_bind_into](summaryCtx)) and
+        parameterFlowThroughAllowed(p, kind)
+      )
+    }
+
+    pragma[inline]
+    private predicate fwdFlowInMayFlowThrough(
+      DataFlowCall call, Cc cc, CcCall innerCc, ParameterPositionOption summaryCtx, ApOption argAp,
+      ParamNodeEx param, Ap ap, ApApprox apa, Configuration config
+    ) {
+      fwdFlowIn(call, pragma[only_bind_into](param), _, cc, innerCc, summaryCtx, argAp, ap,
+        pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
+      PrevStage::parameterMayFlowThrough(param, apa, config)
+    }
+
+    // dedup before joining with `flowThroughOutOfCall`
+    pragma[nomagic]
+    private predicate fwdFlowInMayFlowThroughProj(
+      DataFlowCall call, CcCall innerCc, ApApprox apa, Configuration config
+    ) {
+      fwdFlowInMayFlowThrough(call, _, innerCc, _, _, _, _, apa, config)
+    }
+
+    /**
+     * Same as `flowThroughOutOfCall`, but restricted to calls that are reached
+     * in the flow covered by `fwdFlow`, where data might flow through the target
+     * callable and back out at `call`.
+     */
+    pragma[nomagic]
+    private predicate fwdFlowThroughOutOfCall(
+      DataFlowCall call, CcCall ccc, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow,
+      ApApprox argApa, ApApprox apa, Configuration config
+    ) {
+      fwdFlowInMayFlowThroughProj(call, ccc, argApa, config) and
+      flowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, argApa, apa, config)
+    }
+
     pragma[nomagic]
     private predicate fwdFlowOutFromArg(
       DataFlowCall call, NodeEx out, FlowState state, ParameterPosition summaryCtx, Ap argAp, Ap ap,
-      Configuration config
+      ApApprox apa, Configuration config
     ) {
-      exists(
-        DataFlowCallable c, RetNodeEx ret, ReturnKindExt kind, boolean allowsFieldFlow, CcCall ccc
-      |
-        fwdFlow(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc),
-          TParameterPositionSome(pragma[only_bind_into](summaryCtx)), apSome(argAp), ap, config) and
-        flowThroughOutOfCall(call, pragma[only_bind_into](c), ccc, ret, kind, out, allowsFieldFlow,
+      exists(RetNodeEx ret, boolean allowsFieldFlow, CcCall ccc, ApApprox argApa |
+        fwdFlowRetFromArg(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc),
+          summaryCtx, _, argAp, pragma[only_bind_into](argApa), ap, pragma[only_bind_into](apa),
           config) and
-        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
-        parameterFlowThroughAllowed(c, pragma[only_bind_into](summaryCtx), kind)
+        fwdFlowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, argApa, apa, config) and
+        (if allowsFieldFlow = false then ap instanceof ApNil else any())
       )
     }
 
@@ -1483,8 +1575,7 @@ private module MkStage<StageSig PrevStage> {
       ParameterPosition pos, Ap ap, Configuration config
     ) {
       exists(ParamNodeEx param |
-        fwdFlowIn(call, param, _, cc, _, summaryCtx, argAp, ap, config) and
-        PrevStage::parameterMayFlowThrough(param, unbindApa(getApprox(ap)), config) and
+        fwdFlowInMayFlowThrough(call, cc, _, summaryCtx, argAp, param, ap, _, config) and
         pos = param.getPosition()
       )
     }
@@ -1505,41 +1596,55 @@ private module MkStage<StageSig PrevStage> {
       fwdFlowConsCand(ap1, c, ap2, config)
     }
 
-    pragma[nomagic]
-    private predicate returnFlowsThrough0(
-      RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, DataFlowCallable c,
-      ParameterPosition ppos, Ap argAp, Ap ap, Configuration config
-    ) {
-      exists(boolean allowsFieldFlow |
-        fwdFlow(ret, state, ccc, TParameterPositionSome(ppos), apSome(argAp), ap, config) and
-        flowThroughOutOfCall(_, c, _, pragma[only_bind_into](ret), kind, _, allowsFieldFlow,
-          pragma[only_bind_into](config)) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
-      )
-    }
-
     pragma[nomagic]
     private predicate returnFlowsThrough(
       RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, ParamNodeEx p, Ap argAp,
       Ap ap, Configuration config
     ) {
-      exists(DataFlowCallable c, ParameterPosition ppos |
-        returnFlowsThrough0(ret, kind, state, ccc, c, ppos, argAp, ap, config) and
-        p.isParameterOf(c, ppos) and
-        parameterFlowThroughAllowed(p, kind)
+      exists(boolean allowsFieldFlow, ApApprox argApa, ApApprox apa |
+        fwdFlowRetFromArg(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc), _, p,
+          argAp, pragma[only_bind_into](argApa), ap, pragma[only_bind_into](apa), config) and
+        kind = ret.getKind() and
+        fwdFlowThroughOutOfCall(_, ccc, ret, _, allowsFieldFlow, argApa, apa, config) and
+        (if allowsFieldFlow = false then ap instanceof ApNil else any())
       )
     }
 
     pragma[nomagic]
     private predicate flowThroughIntoCall(
-      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp,
+      Configuration config
     ) {
-      exists(Ap argAp |
-        flowIntoCall(call, pragma[only_bind_into](arg), pragma[only_bind_into](p), allowsFieldFlow,
+      exists(ApApprox argApa |
+        flowIntoCallApa(call, pragma[only_bind_into](arg), pragma[only_bind_into](p),
+          allowsFieldFlow, argApa, pragma[only_bind_into](config)) and
+        fwdFlow(arg, _, _, _, _, pragma[only_bind_into](argAp), argApa,
           pragma[only_bind_into](config)) and
-        fwdFlow(arg, _, _, _, _, pragma[only_bind_into](argAp), pragma[only_bind_into](config)) and
         returnFlowsThrough(_, _, _, _, p, pragma[only_bind_into](argAp), _,
-          pragma[only_bind_into](config))
+          pragma[only_bind_into](config)) and
+        if allowsFieldFlow = false then argAp instanceof ApNil else any()
+      )
+    }
+
+    pragma[nomagic]
+    private predicate flowIntoCallAp(
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap ap,
+      Configuration config
+    ) {
+      exists(ApApprox apa |
+        flowIntoCallApa(call, arg, p, allowsFieldFlow, apa, config) and
+        fwdFlow(arg, _, _, _, _, ap, apa, config)
+      )
+    }
+
+    pragma[nomagic]
+    private predicate flowOutOfCallAp(
+      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
+      Ap ap, Configuration config
+    ) {
+      exists(ApApprox apa |
+        flowOutOfCallApa(call, ret, kind, out, allowsFieldFlow, apa, config) and
+        fwdFlow(ret, _, _, _, _, ap, apa, config)
       )
     }
 
@@ -1628,7 +1733,7 @@ private module MkStage<StageSig PrevStage> {
       // flow into a callable
       exists(ParamNodeEx p, boolean allowsFieldFlow |
         revFlow(p, state, TReturnCtxNone(), returnAp, ap, config) and
-        flowIntoCall(_, node, p, allowsFieldFlow, config) and
+        flowIntoCallAp(_, node, p, allowsFieldFlow, ap, config) and
         (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
         returnCtx = TReturnCtxNone()
       )
@@ -1682,22 +1787,41 @@ private module MkStage<StageSig PrevStage> {
     ) {
       exists(NodeEx out, boolean allowsFieldFlow |
         revFlow(out, state, returnCtx, returnAp, ap, config) and
-        flowOutOfCall(call, ret, kind, out, allowsFieldFlow, config) and
+        flowOutOfCallAp(call, ret, kind, out, allowsFieldFlow, ap, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
+    /**
+     * Same as `flowThroughIntoCall`, but restricted to calls that are reached
+     * in the flow covered by `revFlow`, where data might flow through the target
+     * callable and back out at `call`.
+     */
+    pragma[nomagic]
+    private predicate revFlowThroughIntoCall(
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp,
+      Configuration config
+    ) {
+      flowThroughIntoCall(call, arg, p, allowsFieldFlow, argAp, config) and
+      revFlowIsReturned(call, _, _, _, _, config)
+    }
+
+    pragma[nomagic]
+    private predicate revFlowParamToReturn(
+      ParamNodeEx p, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap, Configuration config
+    ) {
+      revFlow(p, state, TReturnCtxMaybeFlowThrough(kind), apSome(returnAp), ap, config) and
+      parameterFlowThroughAllowed(p, kind)
+    }
+
     pragma[nomagic]
     private predicate revFlowInToReturn(
       DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap,
       Configuration config
     ) {
       exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(pragma[only_bind_into](p), state,
-          TReturnCtxMaybeFlowThrough(pragma[only_bind_into](kind)), apSome(returnAp), ap, config) and
-        flowThroughIntoCall(call, arg, p, allowsFieldFlow, config) and
-        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
-        parameterFlowThroughAllowed(p, kind)
+        revFlowParamToReturn(p, state, kind, returnAp, ap, config) and
+        revFlowThroughIntoCall(call, arg, p, allowsFieldFlow, ap, config)
       )
     }
 
@@ -1750,6 +1874,11 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     predicate revFlow(NodeEx node, Configuration config) { revFlow(node, _, _, _, _, config) }
 
+    pragma[nomagic]
+    predicate revFlowAp(NodeEx node, Ap ap, Configuration config) {
+      revFlow(node, _, _, _, ap, config)
+    }
+
     // use an alias as a workaround for bad functionality-induced joins
     pragma[nomagic]
     additional predicate revFlowAlias(NodeEx node, Configuration config) {
@@ -1786,9 +1915,9 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate parameterFlowsThroughRev(
-      ParamNodeEx p, Ap ap, ReturnKindExt kind, Configuration config
+      ParamNodeEx p, Ap ap, ReturnKindExt kind, Ap returnAp, Configuration config
     ) {
-      revFlow(p, _, TReturnCtxMaybeFlowThrough(kind), apSome(_), ap, config) and
+      revFlow(p, _, TReturnCtxMaybeFlowThrough(kind), apSome(returnAp), ap, config) and
       parameterFlowThroughAllowed(p, kind)
     }
 
@@ -1796,27 +1925,36 @@ private module MkStage<StageSig PrevStage> {
     predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
       exists(RetNodeEx ret, ReturnKindExt kind |
         returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
-        parameterFlowsThroughRev(p, ap, kind, config)
+        parameterFlowsThroughRev(p, ap, kind, _, config)
       )
     }
 
     pragma[nomagic]
-    predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config) {
-      exists(ParamNodeEx p, Ap ap |
-        returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
-        parameterFlowsThroughRev(p, ap, kind, config)
+    predicate returnMayFlowThrough(
+      RetNodeEx ret, Ap argAp, Ap ap, ReturnKindExt kind, Configuration config
+    ) {
+      exists(ParamNodeEx p |
+        returnFlowsThrough(ret, kind, _, _, p, argAp, ap, config) and
+        parameterFlowsThroughRev(p, argAp, kind, ap, config)
+      )
+    }
+
+    pragma[nomagic]
+    predicate revFlowInToReturnIsReturned(
+      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnCtx returnCtx, ApOption returnAp,
+      Ap ap, Configuration config
+    ) {
+      exists(ReturnKindExt returnKind0, Ap returnAp0 |
+        revFlowInToReturn(call, arg, state, returnKind0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
       )
     }
 
     pragma[nomagic]
     predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
-      exists(
-        ReturnKindExt returnKind0, Ap returnAp0, ArgNodeEx arg, FlowState state,
-        ReturnCtx returnCtx, ApOption returnAp, Ap ap
-      |
+      exists(ArgNodeEx arg, FlowState state, ReturnCtx returnCtx, ApOption returnAp, Ap ap |
         revFlow(arg, state, returnCtx, returnAp, ap, config) and
-        revFlowInToReturn(call, arg, state, returnKind0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
+        revFlowInToReturnIsReturned(call, arg, state, returnCtx, returnAp, ap, config)
       )
     }
 
@@ -2179,16 +2317,16 @@ private module LocalFlowBigStep {
   pragma[nomagic]
   predicate localFlowBigStep(
     NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
-    AccessPathFrontNil apf, Configuration config, LocalCallContext callContext
+    DataFlowType t, Configuration config, LocalCallContext callContext
   ) {
-    localFlowStepPlus(node1, state1, node2, preservesValue, apf.getType(), config, callContext) and
+    localFlowStepPlus(node1, state1, node2, preservesValue, t, config, callContext) and
     localFlowExit(node2, state1, config) and
     state1 = state2
     or
     additionalLocalFlowStepNodeCand2(node1, state1, node2, state2, config) and
     state1 != state2 and
     preservesValue = false and
-    apf = TFrontNil(node2.getDataFlowType()) and
+    t = node2.getDataFlowType() and
     callContext.relevantFor(node1.getEnclosingCallable()) and
     not exists(DataFlowCall call | call = callContext.(LocalCallContextSpecificCall).getCall() |
       isUnreachableInCallCached(node1.asNode(), call) or
@@ -2202,11 +2340,87 @@ private import LocalFlowBigStep
 private module Stage3Param implements MkStage<Stage2>::StageParam {
   private module PrevStage = Stage2;
 
+  class Ap = ApproxAccessPathFront;
+
+  class ApNil = ApproxAccessPathFrontNil;
+
+  PrevStage::Ap getApprox(Ap ap) { result = ap.toBoolNonEmpty() }
+
+  ApNil getApNil(NodeEx node) {
+    PrevStage::revFlow(node, _) and result = TApproxFrontNil(node.getDataFlowType())
+  }
+
+  bindingset[tc, tail]
+  Ap apCons(TypedContent tc, Ap tail) { result.getAHead() = tc and exists(tail) }
+
+  pragma[noinline]
+  Content getHeadContent(Ap ap) { result = ap.getAHead().getContent() }
+
+  class ApOption = ApproxAccessPathFrontOption;
+
+  ApOption apNone() { result = TApproxAccessPathFrontNone() }
+
+  ApOption apSome(Ap ap) { result = TApproxAccessPathFrontSome(ap) }
+
+  import BooleanCallContext
+
+  predicate localStep(
+    NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
+    ApproxAccessPathFrontNil ap, Configuration config, LocalCc lcc
+  ) {
+    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap.getType(), config, _) and
+    exists(lcc)
+  }
+
+  predicate flowOutOfCall = flowOutOfCallNodeCand2/6;
+
+  predicate flowIntoCall = flowIntoCallNodeCand2/5;
+
+  pragma[nomagic]
+  private predicate expectsContentCand(NodeEx node, Ap ap, Configuration config) {
+    exists(Content c |
+      PrevStage::revFlow(node, pragma[only_bind_into](config)) and
+      PrevStage::readStepCand(_, c, _, pragma[only_bind_into](config)) and
+      expectsContentEx(node, c) and
+      c = ap.getAHead().getContent()
+    )
+  }
+
+  pragma[nomagic]
+  private predicate castingNodeEx(NodeEx node) { node.asNode() instanceof CastingNode }
+
+  bindingset[node, state, ap, config]
+  predicate filter(NodeEx node, FlowState state, Ap ap, Configuration config) {
+    exists(state) and
+    exists(config) and
+    (if castingNodeEx(node) then compatibleTypes(node.getDataFlowType(), ap.getType()) else any()) and
+    (
+      notExpectsContent(node)
+      or
+      expectsContentCand(node, ap, config)
+    )
+  }
+
+  bindingset[ap, contentType]
+  predicate typecheckStore(Ap ap, DataFlowType contentType) {
+    // We need to typecheck stores here, since reverse flow through a getter
+    // might have a different type here compared to inside the getter.
+    compatibleTypes(ap.getType(), contentType)
+  }
+}
+
+private module Stage3 implements StageSig {
+  import MkStage<Stage2>::Stage<Stage3Param>
+}
+
+private module Stage4Param implements MkStage<Stage3>::StageParam {
+  private module PrevStage = Stage3;
+
   class Ap = AccessPathFront;
 
   class ApNil = AccessPathFrontNil;
 
-  PrevStage::Ap getApprox(Ap ap) { result = ap.toBoolNonEmpty() }
+  PrevStage::Ap getApprox(Ap ap) { result = ap.toApprox() }
 
   ApNil getApNil(NodeEx node) {
     PrevStage::revFlow(node, _) and result = TFrontNil(node.getDataFlowType())
@@ -2226,16 +2440,42 @@ private module Stage3Param implements MkStage<Stage2>::StageParam {
 
   import BooleanCallContext
 
+  pragma[nomagic]
   predicate localStep(
     NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
     ApNil ap, Configuration config, LocalCc lcc
   ) {
-    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap, config, _) and exists(lcc)
+    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap.getType(), config, _) and
+    PrevStage::revFlow(node1, pragma[only_bind_into](state1), _, pragma[only_bind_into](config)) and
+    PrevStage::revFlowAlias(node2, pragma[only_bind_into](state2), _, pragma[only_bind_into](config)) and
+    exists(lcc)
   }
 
-  predicate flowOutOfCall = flowOutOfCallNodeCand2/6;
+  pragma[nomagic]
+  predicate flowOutOfCall(
+    DataFlowCall call, RetNodeEx node1, ReturnKindExt kind, NodeEx node2, boolean allowsFieldFlow,
+    Configuration config
+  ) {
+    exists(FlowState state |
+      flowOutOfCallNodeCand2(call, node1, kind, node2, allowsFieldFlow, config) and
+      PrevStage::revFlow(node2, pragma[only_bind_into](state), _, pragma[only_bind_into](config)) and
+      PrevStage::revFlowAlias(node1, pragma[only_bind_into](state), _,
+        pragma[only_bind_into](config))
+    )
+  }
 
-  predicate flowIntoCall = flowIntoCallNodeCand2/5;
+  pragma[nomagic]
+  predicate flowIntoCall(
+    DataFlowCall call, ArgNodeEx node1, ParamNodeEx node2, boolean allowsFieldFlow,
+    Configuration config
+  ) {
+    exists(FlowState state |
+      flowIntoCallNodeCand2(call, node1, node2, allowsFieldFlow, config) and
+      PrevStage::revFlow(node2, pragma[only_bind_into](state), _, pragma[only_bind_into](config)) and
+      PrevStage::revFlowAlias(node1, pragma[only_bind_into](state), _,
+        pragma[only_bind_into](config))
+    )
+  }
 
   pragma[nomagic]
   private predicate clearSet(NodeEx node, ContentSet c, Configuration config) {
@@ -2291,8 +2531,8 @@ private module Stage3Param implements MkStage<Stage2>::StageParam {
   }
 }
 
-private module Stage3 implements StageSig {
-  import MkStage<Stage2>::Stage<Stage3Param>
+private module Stage4 implements StageSig {
+  import MkStage<Stage3>::Stage<Stage4Param>
 }
 
 /**
@@ -2303,8 +2543,8 @@ private predicate flowCandSummaryCtx(
   NodeEx node, FlowState state, AccessPathFront argApf, Configuration config
 ) {
   exists(AccessPathFront apf |
-    Stage3::revFlow(node, state, TReturnCtxMaybeFlowThrough(_), _, apf, config) and
-    Stage3::fwdFlow(node, state, any(Stage3::CcCall ccc), _, TAccessPathFrontSome(argApf), apf,
+    Stage4::revFlow(node, state, TReturnCtxMaybeFlowThrough(_), _, apf, config) and
+    Stage4::fwdFlow(node, state, any(Stage4::CcCall ccc), _, TAccessPathFrontSome(argApf), apf,
       config)
   )
 }
@@ -2315,10 +2555,10 @@ private predicate flowCandSummaryCtx(
  */
 private predicate expensiveLen2unfolding(TypedContent tc, Configuration config) {
   exists(int tails, int nodes, int apLimit, int tupleLimit |
-    tails = strictcount(AccessPathFront apf | Stage3::consCand(tc, apf, config)) and
+    tails = strictcount(AccessPathFront apf | Stage4::consCand(tc, apf, config)) and
     nodes =
       strictcount(NodeEx n, FlowState state |
-        Stage3::revFlow(n, state, any(AccessPathFrontHead apf | apf.getHead() = tc), config)
+        Stage4::revFlow(n, state, any(AccessPathFrontHead apf | apf.getHead() = tc), config)
         or
         flowCandSummaryCtx(n, state, any(AccessPathFrontHead apf | apf.getHead() = tc), config)
       ) and
@@ -2332,11 +2572,11 @@ private predicate expensiveLen2unfolding(TypedContent tc, Configuration config)
 private newtype TAccessPathApprox =
   TNil(DataFlowType t) or
   TConsNil(TypedContent tc, DataFlowType t) {
-    Stage3::consCand(tc, TFrontNil(t), _) and
+    Stage4::consCand(tc, TFrontNil(t), _) and
     not expensiveLen2unfolding(tc, _)
   } or
   TConsCons(TypedContent tc1, TypedContent tc2, int len) {
-    Stage3::consCand(tc1, TFrontHead(tc2), _) and
+    Stage4::consCand(tc1, TFrontHead(tc2), _) and
     len in [2 .. accessPathLimit()] and
     not expensiveLen2unfolding(tc1, _)
   } or
@@ -2466,7 +2706,7 @@ private class AccessPathApproxCons1 extends AccessPathApproxCons, TCons1 {
   override AccessPathApprox pop(TypedContent head) {
     head = tc and
     (
-      exists(TypedContent tc2 | Stage3::consCand(tc, TFrontHead(tc2), _) |
+      exists(TypedContent tc2 | Stage4::consCand(tc, TFrontHead(tc2), _) |
         result = TConsCons(tc2, _, len - 1)
         or
         len = 2 and
@@ -2477,7 +2717,7 @@ private class AccessPathApproxCons1 extends AccessPathApproxCons, TCons1 {
       or
       exists(DataFlowType t |
         len = 1 and
-        Stage3::consCand(tc, TFrontNil(t), _) and
+        Stage4::consCand(tc, TFrontNil(t), _) and
         result = TNil(t)
       )
     )
@@ -2502,13 +2742,14 @@ private class AccessPathApproxOption extends TAccessPathApproxOption {
   }
 }
 
-private module Stage4Param implements MkStage<Stage3>::StageParam {
-  private module PrevStage = Stage3;
+private module Stage5Param implements MkStage<Stage4>::StageParam {
+  private module PrevStage = Stage4;
 
   class Ap = AccessPathApprox;
 
   class ApNil = AccessPathApproxNil;
 
+  pragma[nomagic]
   PrevStage::Ap getApprox(Ap ap) { result = ap.getFront() }
 
   ApNil getApNil(NodeEx node) {
@@ -2534,7 +2775,9 @@ private module Stage4Param implements MkStage<Stage3>::StageParam {
     NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
     ApNil ap, Configuration config, LocalCc lcc
   ) {
-    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap.getFront(), config, lcc)
+    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap.getType(), config, lcc) and
+    PrevStage::revFlow(node1, pragma[only_bind_into](state1), _, pragma[only_bind_into](config)) and
+    PrevStage::revFlowAlias(node2, pragma[only_bind_into](state2), _, pragma[only_bind_into](config))
   }
 
   pragma[nomagic]
@@ -2571,7 +2814,7 @@ private module Stage4Param implements MkStage<Stage3>::StageParam {
   predicate typecheckStore(Ap ap, DataFlowType contentType) { any() }
 }
 
-private module Stage4 = MkStage<Stage3>::Stage<Stage4Param>;
+private module Stage5 = MkStage<Stage4>::Stage<Stage5Param>;
 
 bindingset[conf, result]
 private Configuration unbindConf(Configuration conf) {
@@ -2585,8 +2828,8 @@ private predicate nodeMayUseSummary0(
 ) {
   exists(AccessPathApprox apa0 |
     c = n.getEnclosingCallable() and
-    Stage4::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
-    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TParameterPositionSome(pos),
+    Stage5::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
+    Stage5::fwdFlow(n, state, any(CallContextCall ccc), TParameterPositionSome(pos),
       TAccessPathApproxSome(apa), apa0, config)
   )
 }
@@ -2596,7 +2839,7 @@ private predicate nodeMayUseSummary(
   NodeEx n, FlowState state, AccessPathApprox apa, Configuration config
 ) {
   exists(DataFlowCallable c, ParameterPosition pos, ParamNodeEx p |
-    Stage4::parameterMayFlowThrough(p, apa, config) and
+    Stage5::parameterMayFlowThrough(p, apa, config) and
     nodeMayUseSummary0(n, c, pos, state, apa, config) and
     p.isParameterOf(c, pos)
   )
@@ -2606,8 +2849,8 @@ private newtype TSummaryCtx =
   TSummaryCtxNone() or
   TSummaryCtxSome(ParamNodeEx p, FlowState state, AccessPath ap) {
     exists(Configuration config |
-      Stage4::parameterMayFlowThrough(p, ap.getApprox(), config) and
-      Stage4::revFlow(p, state, _, config)
+      Stage5::parameterMayFlowThrough(p, ap.getApprox(), config) and
+      Stage5::revFlow(p, state, _, config)
     )
   }
 
@@ -2656,7 +2899,7 @@ private int count1to2unfold(AccessPathApproxCons1 apa, Configuration config) {
     len = apa.len() and
     result =
       strictcount(AccessPathFront apf |
-        Stage4::consCand(tc, any(AccessPathApprox ap | ap.getFront() = apf and ap.len() = len - 1),
+        Stage5::consCand(tc, any(AccessPathApprox ap | ap.getFront() = apf and ap.len() = len - 1),
           config)
       )
   )
@@ -2665,7 +2908,7 @@ private int count1to2unfold(AccessPathApproxCons1 apa, Configuration config) {
 private int countNodesUsingAccessPath(AccessPathApprox apa, Configuration config) {
   result =
     strictcount(NodeEx n, FlowState state |
-      Stage4::revFlow(n, state, apa, config) or nodeMayUseSummary(n, state, apa, config)
+      Stage5::revFlow(n, state, apa, config) or nodeMayUseSummary(n, state, apa, config)
     )
 }
 
@@ -2686,7 +2929,7 @@ private predicate expensiveLen1to2unfolding(AccessPathApproxCons1 apa, Configura
 private AccessPathApprox getATail(AccessPathApprox apa, Configuration config) {
   exists(TypedContent head |
     apa.pop(head) = result and
-    Stage4::consCand(head, result, config)
+    Stage5::consCand(head, result, config)
   )
 }
 
@@ -2768,7 +3011,7 @@ private newtype TPathNode =
     NodeEx node, FlowState state, CallContext cc, SummaryCtx sc, AccessPath ap, Configuration config
   ) {
     // A PathNode is introduced by a source ...
-    Stage4::revFlow(node, state, config) and
+    Stage5::revFlow(node, state, config) and
     sourceNode(node, state, config) and
     (
       if hasSourceCallCtx(config)
@@ -2782,7 +3025,7 @@ private newtype TPathNode =
     exists(PathNodeMid mid |
       pathStep(mid, node, state, cc, sc, ap) and
       pragma[only_bind_into](config) = mid.getConfiguration() and
-      Stage4::revFlow(node, state, ap.getApprox(), pragma[only_bind_into](config))
+      Stage5::revFlow(node, state, ap.getApprox(), pragma[only_bind_into](config))
     )
   } or
   TPathNodeSink(NodeEx node, FlowState state, Configuration config) {
@@ -2924,7 +3167,7 @@ private class AccessPathCons2 extends AccessPath, TAccessPathCons2 {
   override TypedContent getHead() { result = head1 }
 
   override AccessPath getTail() {
-    Stage4::consCand(head1, result.getApprox(), _) and
+    Stage5::consCand(head1, result.getApprox(), _) and
     result.getHead() = head2 and
     result.length() = len - 1
   }
@@ -2955,7 +3198,7 @@ private class AccessPathCons1 extends AccessPath, TAccessPathCons1 {
   override TypedContent getHead() { result = head }
 
   override AccessPath getTail() {
-    Stage4::consCand(head, result.getApprox(), _) and result.length() = len - 1
+    Stage5::consCand(head, result.getApprox(), _) and result.length() = len - 1
   }
 
   override AccessPathFrontHead getFront() { result = TFrontHead(head) }
@@ -3347,7 +3590,8 @@ private predicate pathStep(
     AccessPath ap0, NodeEx midnode, FlowState state0, Configuration conf, LocalCallContext localCC
   |
     pathNode(mid, midnode, state0, cc, sc, ap0, conf, localCC) and
-    localFlowBigStep(midnode, state0, node, state, false, ap.getFront(), conf, localCC) and
+    localFlowBigStep(midnode, state0, node, state, false, ap.(AccessPathNil).getType(), conf,
+      localCC) and
     ap0 instanceof AccessPathNil
   )
   or
@@ -3389,7 +3633,7 @@ private predicate pathReadStep(
 ) {
   ap0 = mid.getAp() and
   tc = ap0.getHead() and
-  Stage4::readStepCand(mid.getNodeEx(), tc.getContent(), node, mid.getConfiguration()) and
+  Stage5::readStepCand(mid.getNodeEx(), tc.getContent(), node, mid.getConfiguration()) and
   state = mid.getState() and
   cc = mid.getCallContext()
 }
@@ -3399,7 +3643,7 @@ private predicate pathStoreStep(
   PathNodeMid mid, NodeEx node, FlowState state, AccessPath ap0, TypedContent tc, CallContext cc
 ) {
   ap0 = mid.getAp() and
-  Stage4::storeStepCand(mid.getNodeEx(), _, tc, node, _, mid.getConfiguration()) and
+  Stage5::storeStepCand(mid.getNodeEx(), _, tc, node, _, mid.getConfiguration()) and
   state = mid.getState() and
   cc = mid.getCallContext()
 }
@@ -3436,7 +3680,7 @@ private NodeEx getAnOutNodeFlow(
   ReturnKindExt kind, DataFlowCall call, AccessPathApprox apa, Configuration config
 ) {
   result.asNode() = kind.getAnOutNode(call) and
-  Stage4::revFlow(result, _, apa, config)
+  Stage5::revFlow(result, _, apa, config)
 }
 
 /**
@@ -3472,7 +3716,7 @@ private predicate parameterCand(
   DataFlowCallable callable, ParameterPosition pos, AccessPathApprox apa, Configuration config
 ) {
   exists(ParamNodeEx p |
-    Stage4::revFlow(p, _, apa, config) and
+    Stage5::revFlow(p, _, apa, config) and
     p.isParameterOf(callable, pos)
   )
 }
@@ -3751,9 +3995,17 @@ predicate stageStats(
   n = 45 and
   Stage4::stats(false, nodes, fields, conscand, states, tuples, config)
   or
-  stage = "5 Fwd" and n = 50 and finalStats(true, nodes, fields, conscand, states, tuples)
+  stage = "5 Fwd" and
+  n = 50 and
+  Stage5::stats(true, nodes, fields, conscand, states, tuples, config)
   or
-  stage = "5 Rev" and n = 55 and finalStats(false, nodes, fields, conscand, states, tuples)
+  stage = "5 Rev" and
+  n = 55 and
+  Stage5::stats(false, nodes, fields, conscand, states, tuples, config)
+  or
+  stage = "6 Fwd" and n = 60 and finalStats(true, nodes, fields, conscand, states, tuples)
+  or
+  stage = "6 Rev" and n = 65 and finalStats(false, nodes, fields, conscand, states, tuples)
 }
 
 private module FlowExploration {
diff --git a/cpp/ql/lib/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl3.qll b/cpp/ql/lib/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl3.qll
index ccde916a3c2..6741ccc2f06 100644
--- a/cpp/ql/lib/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl3.qll
+++ b/cpp/ql/lib/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl3.qll
@@ -621,23 +621,6 @@ private predicate parameterFlowThroughAllowed(ParamNodeEx p, ReturnKindExt kind)
   )
 }
 
-/**
- * Holds if flow from a parameter at position `pos` inside `c` to a return node of
- * kind `kind` is allowed.
- *
- * We don't expect a parameter to return stored in itself, unless
- * explicitly allowed
- */
-bindingset[c, pos, kind]
-private predicate parameterFlowThroughAllowed(
-  DataFlowCallable c, ParameterPosition pos, ReturnKindExt kind
-) {
-  exists(ParamNodeEx p |
-    p.isParameterOf(c, pos) and
-    parameterFlowThroughAllowed(p, kind)
-  )
-}
-
 private module Stage1 implements StageSig {
   class Ap = Unit;
 
@@ -980,6 +963,12 @@ private module Stage1 implements StageSig {
   pragma[nomagic]
   predicate revFlow(NodeEx node, Configuration config) { revFlow(node, _, config) }
 
+  pragma[nomagic]
+  predicate revFlowAp(NodeEx node, Ap ap, Configuration config) {
+    revFlow(node, config) and
+    exists(ap)
+  }
+
   bindingset[node, state, config]
   predicate revFlow(NodeEx node, FlowState state, Ap ap, Configuration config) {
     revFlow(node, _, pragma[only_bind_into](config)) and
@@ -1022,9 +1011,13 @@ private module Stage1 implements StageSig {
   }
 
   pragma[nomagic]
-  predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config) {
+  predicate returnMayFlowThrough(
+    RetNodeEx ret, Ap argAp, Ap ap, ReturnKindExt kind, Configuration config
+  ) {
     throughFlowNodeCand(ret, config) and
-    kind = ret.getKind()
+    kind = ret.getKind() and
+    exists(argAp) and
+    exists(ap)
   }
 
   pragma[nomagic]
@@ -1189,6 +1182,8 @@ private signature module StageSig {
 
   predicate revFlow(NodeEx node, Configuration config);
 
+  predicate revFlowAp(NodeEx node, Ap ap, Configuration config);
+
   bindingset[node, state, config]
   predicate revFlow(NodeEx node, FlowState state, Ap ap, Configuration config);
 
@@ -1196,7 +1191,9 @@ private signature module StageSig {
 
   predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config);
 
-  predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config);
+  predicate returnMayFlowThrough(
+    RetNodeEx ret, Ap argAp, Ap ap, ReturnKindExt kind, Configuration config
+  );
 
   predicate storeStepCand(
     NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, DataFlowType contentType,
@@ -1281,21 +1278,43 @@ private module MkStage<StageSig PrevStage> {
     import Param
 
     /* Begin: Stage logic. */
-    bindingset[result, apa]
-    private ApApprox unbindApa(ApApprox apa) {
-      pragma[only_bind_out](apa) = pragma[only_bind_out](result)
+    // use an alias as a workaround for bad functionality-induced joins
+    pragma[nomagic]
+    private predicate revFlowApAlias(NodeEx node, ApApprox apa, Configuration config) {
+      PrevStage::revFlowAp(node, apa, config)
+    }
+
+    pragma[nomagic]
+    private predicate flowIntoCallApa(
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, ApApprox apa,
+      Configuration config
+    ) {
+      flowIntoCall(call, arg, p, allowsFieldFlow, config) and
+      PrevStage::revFlowAp(p, pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
+      revFlowApAlias(arg, pragma[only_bind_into](apa), pragma[only_bind_into](config))
+    }
+
+    pragma[nomagic]
+    private predicate flowOutOfCallApa(
+      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
+      ApApprox apa, Configuration config
+    ) {
+      flowOutOfCall(call, ret, kind, out, allowsFieldFlow, config) and
+      PrevStage::revFlowAp(out, pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
+      revFlowApAlias(ret, pragma[only_bind_into](apa), pragma[only_bind_into](config))
     }
 
     pragma[nomagic]
     private predicate flowThroughOutOfCall(
-      DataFlowCall call, DataFlowCallable c, CcCall ccc, RetNodeEx ret, ReturnKindExt kind,
-      NodeEx out, boolean allowsFieldFlow, Configuration config
+      DataFlowCall call, CcCall ccc, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow,
+      ApApprox argApa, ApApprox apa, Configuration config
     ) {
-      flowOutOfCall(call, ret, kind, out, allowsFieldFlow, pragma[only_bind_into](config)) and
-      PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
-      PrevStage::returnMayFlowThrough(ret, kind, pragma[only_bind_into](config)) and
-      matchesCall(ccc, call) and
-      c = ret.getEnclosingCallable()
+      exists(ReturnKindExt kind |
+        flowOutOfCallApa(call, ret, kind, out, allowsFieldFlow, apa, pragma[only_bind_into](config)) and
+        PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
+        PrevStage::returnMayFlowThrough(ret, argApa, apa, kind, pragma[only_bind_into](config)) and
+        matchesCall(ccc, call)
+      )
     }
 
     /**
@@ -1307,39 +1326,50 @@ private module MkStage<StageSig PrevStage> {
      * corresponding parameter position and access path of that argument, respectively.
      */
     pragma[nomagic]
+    additional predicate fwdFlow(
+      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      Ap ap, ApApprox apa, Configuration config
+    ) {
+      fwdFlow0(node, state, cc, summaryCtx, argAp, ap, apa, config) and
+      PrevStage::revFlow(node, state, apa, config) and
+      filter(node, state, ap, config)
+    }
+
+    pragma[inline]
     additional predicate fwdFlow(
       NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
       Ap ap, Configuration config
     ) {
-      fwdFlow0(node, state, cc, summaryCtx, argAp, ap, config) and
-      PrevStage::revFlow(node, state, unbindApa(getApprox(ap)), config) and
-      filter(node, state, ap, config)
+      fwdFlow(node, state, cc, summaryCtx, argAp, ap, _, config)
     }
 
     pragma[nomagic]
     private predicate fwdFlow0(
       NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      Ap ap, Configuration config
+      Ap ap, ApApprox apa, Configuration config
     ) {
       sourceNode(node, state, config) and
       (if hasSourceCallCtx(config) then cc = ccSomeCall() else cc = ccNone()) and
       argAp = apNone() and
       summaryCtx = TParameterPositionNone() and
-      ap = getApNil(node)
+      ap = getApNil(node) and
+      apa = getApprox(ap)
       or
-      exists(NodeEx mid, FlowState state0, Ap ap0, LocalCc localCc |
-        fwdFlow(mid, state0, cc, summaryCtx, argAp, ap0, config) and
+      exists(NodeEx mid, FlowState state0, Ap ap0, ApApprox apa0, LocalCc localCc |
+        fwdFlow(mid, state0, cc, summaryCtx, argAp, ap0, apa0, config) and
         localCc = getLocalCc(mid, cc)
       |
         localStep(mid, state0, node, state, true, _, config, localCc) and
-        ap = ap0
+        ap = ap0 and
+        apa = apa0
         or
         localStep(mid, state0, node, state, false, ap, config, localCc) and
-        ap0 instanceof ApNil
+        ap0 instanceof ApNil and
+        apa = getApprox(ap)
       )
       or
       exists(NodeEx mid |
-        fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, apa, pragma[only_bind_into](config)) and
         jumpStep(mid, node, config) and
         cc = ccNone() and
         summaryCtx = TParameterPositionNone() and
@@ -1352,7 +1382,8 @@ private module MkStage<StageSig PrevStage> {
         cc = ccNone() and
         summaryCtx = TParameterPositionNone() and
         argAp = apNone() and
-        ap = getApNil(node)
+        ap = getApNil(node) and
+        apa = getApprox(ap)
       )
       or
       exists(NodeEx mid, FlowState state0, ApNil nil |
@@ -1361,32 +1392,32 @@ private module MkStage<StageSig PrevStage> {
         cc = ccNone() and
         summaryCtx = TParameterPositionNone() and
         argAp = apNone() and
-        ap = getApNil(node)
+        ap = getApNil(node) and
+        apa = getApprox(ap)
       )
       or
       // store
       exists(TypedContent tc, Ap ap0 |
         fwdFlowStore(_, ap0, tc, node, state, cc, summaryCtx, argAp, config) and
-        ap = apCons(tc, ap0)
+        ap = apCons(tc, ap0) and
+        apa = getApprox(ap)
       )
       or
       // read
       exists(Ap ap0, Content c |
         fwdFlowRead(ap0, c, _, node, state, cc, summaryCtx, argAp, config) and
-        fwdFlowConsCand(ap0, c, ap, config)
+        fwdFlowConsCand(ap0, c, ap, config) and
+        apa = getApprox(ap)
       )
       or
       // flow into a callable
-      exists(ApApprox apa |
-        fwdFlowIn(_, node, state, _, cc, _, _, ap, config) and
-        apa = getApprox(ap) and
-        if PrevStage::parameterMayFlowThrough(node, apa, config)
-        then (
-          summaryCtx = TParameterPositionSome(node.(ParamNodeEx).getPosition()) and
-          argAp = apSome(ap)
-        ) else (
-          summaryCtx = TParameterPositionNone() and argAp = apNone()
-        )
+      fwdFlowIn(_, node, state, _, cc, _, _, ap, apa, config) and
+      if PrevStage::parameterMayFlowThrough(node, apa, config)
+      then (
+        summaryCtx = TParameterPositionSome(node.(ParamNodeEx).getPosition()) and
+        argAp = apSome(ap)
+      ) else (
+        summaryCtx = TParameterPositionNone() and argAp = apNone()
       )
       or
       // flow out of a callable
@@ -1394,8 +1425,8 @@ private module MkStage<StageSig PrevStage> {
         DataFlowCall call, RetNodeEx ret, boolean allowsFieldFlow, CcNoCall innercc,
         DataFlowCallable inner
       |
-        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, config) and
-        flowOutOfCall(call, ret, _, node, allowsFieldFlow, config) and
+        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, apa, config) and
+        flowOutOfCallApa(call, ret, _, node, allowsFieldFlow, apa, config) and
         inner = ret.getEnclosingCallable() and
         cc = getCallContextReturn(inner, call, innercc) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
@@ -1403,7 +1434,7 @@ private module MkStage<StageSig PrevStage> {
       or
       // flow through a callable
       exists(DataFlowCall call, ParameterPosition summaryCtx0, Ap argAp0 |
-        fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, config) and
+        fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, apa, config) and
         fwdFlowIsEntered(call, cc, summaryCtx, argAp, summaryCtx0, argAp0, config)
       )
     }
@@ -1413,9 +1444,9 @@ private module MkStage<StageSig PrevStage> {
       NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc,
       ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
     ) {
-      exists(DataFlowType contentType |
-        fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, config) and
-        PrevStage::storeStepCand(node1, unbindApa(getApprox(ap1)), tc, node2, contentType, config) and
+      exists(DataFlowType contentType, ApApprox apa1 |
+        fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, apa1, config) and
+        PrevStage::storeStepCand(node1, apa1, tc, node2, contentType, config) and
         typecheckStore(ap1, contentType)
       )
     }
@@ -1433,43 +1464,104 @@ private module MkStage<StageSig PrevStage> {
       )
     }
 
+    private class ApNonNil instanceof Ap {
+      pragma[nomagic]
+      ApNonNil() { not this instanceof ApNil }
+
+      string toString() { result = "" }
+    }
+
+    pragma[nomagic]
+    private predicate fwdFlowRead0(
+      NodeEx node1, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      ApNonNil ap, Configuration config
+    ) {
+      fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
+      PrevStage::readStepCand(node1, _, _, config)
+    }
+
     pragma[nomagic]
     private predicate fwdFlowRead(
       Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc,
       ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
     ) {
-      fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
+      fwdFlowRead0(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, c, node2, config) and
       getHeadContent(ap) = c
     }
 
     pragma[nomagic]
     private predicate fwdFlowIn(
-      DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, Cc innercc,
-      ParameterPositionOption summaryCtx, ApOption argAp, Ap ap, Configuration config
+      DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, CcCall innercc,
+      ParameterPositionOption summaryCtx, ApOption argAp, Ap ap, ApApprox apa, Configuration config
     ) {
       exists(ArgNodeEx arg, boolean allowsFieldFlow |
-        fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, config) and
-        flowIntoCall(call, arg, p, allowsFieldFlow, config) and
+        fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, apa, config) and
+        flowIntoCallApa(call, arg, p, allowsFieldFlow, apa, config) and
         innercc = getCallContextCall(call, p.getEnclosingCallable(), outercc) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
+    pragma[nomagic]
+    private predicate fwdFlowRetFromArg(
+      RetNodeEx ret, FlowState state, CcCall ccc, ParameterPosition summaryCtx, ParamNodeEx p,
+      Ap argAp, ApApprox argApa, Ap ap, ApApprox apa, Configuration config
+    ) {
+      exists(DataFlowCallable c, ReturnKindExt kind |
+        fwdFlow(pragma[only_bind_into](ret), state, ccc,
+          TParameterPositionSome(pragma[only_bind_into](summaryCtx)), apSome(argAp), ap, apa, config) and
+        getApprox(argAp) = argApa and
+        c = ret.getEnclosingCallable() and
+        kind = ret.getKind() and
+        p.isParameterOf(c, pragma[only_bind_into](summaryCtx)) and
+        parameterFlowThroughAllowed(p, kind)
+      )
+    }
+
+    pragma[inline]
+    private predicate fwdFlowInMayFlowThrough(
+      DataFlowCall call, Cc cc, CcCall innerCc, ParameterPositionOption summaryCtx, ApOption argAp,
+      ParamNodeEx param, Ap ap, ApApprox apa, Configuration config
+    ) {
+      fwdFlowIn(call, pragma[only_bind_into](param), _, cc, innerCc, summaryCtx, argAp, ap,
+        pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
+      PrevStage::parameterMayFlowThrough(param, apa, config)
+    }
+
+    // dedup before joining with `flowThroughOutOfCall`
+    pragma[nomagic]
+    private predicate fwdFlowInMayFlowThroughProj(
+      DataFlowCall call, CcCall innerCc, ApApprox apa, Configuration config
+    ) {
+      fwdFlowInMayFlowThrough(call, _, innerCc, _, _, _, _, apa, config)
+    }
+
+    /**
+     * Same as `flowThroughOutOfCall`, but restricted to calls that are reached
+     * in the flow covered by `fwdFlow`, where data might flow through the target
+     * callable and back out at `call`.
+     */
+    pragma[nomagic]
+    private predicate fwdFlowThroughOutOfCall(
+      DataFlowCall call, CcCall ccc, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow,
+      ApApprox argApa, ApApprox apa, Configuration config
+    ) {
+      fwdFlowInMayFlowThroughProj(call, ccc, argApa, config) and
+      flowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, argApa, apa, config)
+    }
+
     pragma[nomagic]
     private predicate fwdFlowOutFromArg(
       DataFlowCall call, NodeEx out, FlowState state, ParameterPosition summaryCtx, Ap argAp, Ap ap,
-      Configuration config
+      ApApprox apa, Configuration config
     ) {
-      exists(
-        DataFlowCallable c, RetNodeEx ret, ReturnKindExt kind, boolean allowsFieldFlow, CcCall ccc
-      |
-        fwdFlow(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc),
-          TParameterPositionSome(pragma[only_bind_into](summaryCtx)), apSome(argAp), ap, config) and
-        flowThroughOutOfCall(call, pragma[only_bind_into](c), ccc, ret, kind, out, allowsFieldFlow,
+      exists(RetNodeEx ret, boolean allowsFieldFlow, CcCall ccc, ApApprox argApa |
+        fwdFlowRetFromArg(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc),
+          summaryCtx, _, argAp, pragma[only_bind_into](argApa), ap, pragma[only_bind_into](apa),
           config) and
-        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
-        parameterFlowThroughAllowed(c, pragma[only_bind_into](summaryCtx), kind)
+        fwdFlowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, argApa, apa, config) and
+        (if allowsFieldFlow = false then ap instanceof ApNil else any())
       )
     }
 
@@ -1483,8 +1575,7 @@ private module MkStage<StageSig PrevStage> {
       ParameterPosition pos, Ap ap, Configuration config
     ) {
       exists(ParamNodeEx param |
-        fwdFlowIn(call, param, _, cc, _, summaryCtx, argAp, ap, config) and
-        PrevStage::parameterMayFlowThrough(param, unbindApa(getApprox(ap)), config) and
+        fwdFlowInMayFlowThrough(call, cc, _, summaryCtx, argAp, param, ap, _, config) and
         pos = param.getPosition()
       )
     }
@@ -1505,41 +1596,55 @@ private module MkStage<StageSig PrevStage> {
       fwdFlowConsCand(ap1, c, ap2, config)
     }
 
-    pragma[nomagic]
-    private predicate returnFlowsThrough0(
-      RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, DataFlowCallable c,
-      ParameterPosition ppos, Ap argAp, Ap ap, Configuration config
-    ) {
-      exists(boolean allowsFieldFlow |
-        fwdFlow(ret, state, ccc, TParameterPositionSome(ppos), apSome(argAp), ap, config) and
-        flowThroughOutOfCall(_, c, _, pragma[only_bind_into](ret), kind, _, allowsFieldFlow,
-          pragma[only_bind_into](config)) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
-      )
-    }
-
     pragma[nomagic]
     private predicate returnFlowsThrough(
       RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, ParamNodeEx p, Ap argAp,
       Ap ap, Configuration config
     ) {
-      exists(DataFlowCallable c, ParameterPosition ppos |
-        returnFlowsThrough0(ret, kind, state, ccc, c, ppos, argAp, ap, config) and
-        p.isParameterOf(c, ppos) and
-        parameterFlowThroughAllowed(p, kind)
+      exists(boolean allowsFieldFlow, ApApprox argApa, ApApprox apa |
+        fwdFlowRetFromArg(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc), _, p,
+          argAp, pragma[only_bind_into](argApa), ap, pragma[only_bind_into](apa), config) and
+        kind = ret.getKind() and
+        fwdFlowThroughOutOfCall(_, ccc, ret, _, allowsFieldFlow, argApa, apa, config) and
+        (if allowsFieldFlow = false then ap instanceof ApNil else any())
       )
     }
 
     pragma[nomagic]
     private predicate flowThroughIntoCall(
-      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp,
+      Configuration config
     ) {
-      exists(Ap argAp |
-        flowIntoCall(call, pragma[only_bind_into](arg), pragma[only_bind_into](p), allowsFieldFlow,
+      exists(ApApprox argApa |
+        flowIntoCallApa(call, pragma[only_bind_into](arg), pragma[only_bind_into](p),
+          allowsFieldFlow, argApa, pragma[only_bind_into](config)) and
+        fwdFlow(arg, _, _, _, _, pragma[only_bind_into](argAp), argApa,
           pragma[only_bind_into](config)) and
-        fwdFlow(arg, _, _, _, _, pragma[only_bind_into](argAp), pragma[only_bind_into](config)) and
         returnFlowsThrough(_, _, _, _, p, pragma[only_bind_into](argAp), _,
-          pragma[only_bind_into](config))
+          pragma[only_bind_into](config)) and
+        if allowsFieldFlow = false then argAp instanceof ApNil else any()
+      )
+    }
+
+    pragma[nomagic]
+    private predicate flowIntoCallAp(
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap ap,
+      Configuration config
+    ) {
+      exists(ApApprox apa |
+        flowIntoCallApa(call, arg, p, allowsFieldFlow, apa, config) and
+        fwdFlow(arg, _, _, _, _, ap, apa, config)
+      )
+    }
+
+    pragma[nomagic]
+    private predicate flowOutOfCallAp(
+      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
+      Ap ap, Configuration config
+    ) {
+      exists(ApApprox apa |
+        flowOutOfCallApa(call, ret, kind, out, allowsFieldFlow, apa, config) and
+        fwdFlow(ret, _, _, _, _, ap, apa, config)
       )
     }
 
@@ -1628,7 +1733,7 @@ private module MkStage<StageSig PrevStage> {
       // flow into a callable
       exists(ParamNodeEx p, boolean allowsFieldFlow |
         revFlow(p, state, TReturnCtxNone(), returnAp, ap, config) and
-        flowIntoCall(_, node, p, allowsFieldFlow, config) and
+        flowIntoCallAp(_, node, p, allowsFieldFlow, ap, config) and
         (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
         returnCtx = TReturnCtxNone()
       )
@@ -1682,22 +1787,41 @@ private module MkStage<StageSig PrevStage> {
     ) {
       exists(NodeEx out, boolean allowsFieldFlow |
         revFlow(out, state, returnCtx, returnAp, ap, config) and
-        flowOutOfCall(call, ret, kind, out, allowsFieldFlow, config) and
+        flowOutOfCallAp(call, ret, kind, out, allowsFieldFlow, ap, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
+    /**
+     * Same as `flowThroughIntoCall`, but restricted to calls that are reached
+     * in the flow covered by `revFlow`, where data might flow through the target
+     * callable and back out at `call`.
+     */
+    pragma[nomagic]
+    private predicate revFlowThroughIntoCall(
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp,
+      Configuration config
+    ) {
+      flowThroughIntoCall(call, arg, p, allowsFieldFlow, argAp, config) and
+      revFlowIsReturned(call, _, _, _, _, config)
+    }
+
+    pragma[nomagic]
+    private predicate revFlowParamToReturn(
+      ParamNodeEx p, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap, Configuration config
+    ) {
+      revFlow(p, state, TReturnCtxMaybeFlowThrough(kind), apSome(returnAp), ap, config) and
+      parameterFlowThroughAllowed(p, kind)
+    }
+
     pragma[nomagic]
     private predicate revFlowInToReturn(
       DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap,
       Configuration config
     ) {
       exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(pragma[only_bind_into](p), state,
-          TReturnCtxMaybeFlowThrough(pragma[only_bind_into](kind)), apSome(returnAp), ap, config) and
-        flowThroughIntoCall(call, arg, p, allowsFieldFlow, config) and
-        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
-        parameterFlowThroughAllowed(p, kind)
+        revFlowParamToReturn(p, state, kind, returnAp, ap, config) and
+        revFlowThroughIntoCall(call, arg, p, allowsFieldFlow, ap, config)
       )
     }
 
@@ -1750,6 +1874,11 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     predicate revFlow(NodeEx node, Configuration config) { revFlow(node, _, _, _, _, config) }
 
+    pragma[nomagic]
+    predicate revFlowAp(NodeEx node, Ap ap, Configuration config) {
+      revFlow(node, _, _, _, ap, config)
+    }
+
     // use an alias as a workaround for bad functionality-induced joins
     pragma[nomagic]
     additional predicate revFlowAlias(NodeEx node, Configuration config) {
@@ -1786,9 +1915,9 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate parameterFlowsThroughRev(
-      ParamNodeEx p, Ap ap, ReturnKindExt kind, Configuration config
+      ParamNodeEx p, Ap ap, ReturnKindExt kind, Ap returnAp, Configuration config
     ) {
-      revFlow(p, _, TReturnCtxMaybeFlowThrough(kind), apSome(_), ap, config) and
+      revFlow(p, _, TReturnCtxMaybeFlowThrough(kind), apSome(returnAp), ap, config) and
       parameterFlowThroughAllowed(p, kind)
     }
 
@@ -1796,27 +1925,36 @@ private module MkStage<StageSig PrevStage> {
     predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
       exists(RetNodeEx ret, ReturnKindExt kind |
         returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
-        parameterFlowsThroughRev(p, ap, kind, config)
+        parameterFlowsThroughRev(p, ap, kind, _, config)
       )
     }
 
     pragma[nomagic]
-    predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config) {
-      exists(ParamNodeEx p, Ap ap |
-        returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
-        parameterFlowsThroughRev(p, ap, kind, config)
+    predicate returnMayFlowThrough(
+      RetNodeEx ret, Ap argAp, Ap ap, ReturnKindExt kind, Configuration config
+    ) {
+      exists(ParamNodeEx p |
+        returnFlowsThrough(ret, kind, _, _, p, argAp, ap, config) and
+        parameterFlowsThroughRev(p, argAp, kind, ap, config)
+      )
+    }
+
+    pragma[nomagic]
+    predicate revFlowInToReturnIsReturned(
+      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnCtx returnCtx, ApOption returnAp,
+      Ap ap, Configuration config
+    ) {
+      exists(ReturnKindExt returnKind0, Ap returnAp0 |
+        revFlowInToReturn(call, arg, state, returnKind0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
       )
     }
 
     pragma[nomagic]
     predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
-      exists(
-        ReturnKindExt returnKind0, Ap returnAp0, ArgNodeEx arg, FlowState state,
-        ReturnCtx returnCtx, ApOption returnAp, Ap ap
-      |
+      exists(ArgNodeEx arg, FlowState state, ReturnCtx returnCtx, ApOption returnAp, Ap ap |
         revFlow(arg, state, returnCtx, returnAp, ap, config) and
-        revFlowInToReturn(call, arg, state, returnKind0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
+        revFlowInToReturnIsReturned(call, arg, state, returnCtx, returnAp, ap, config)
       )
     }
 
@@ -2179,16 +2317,16 @@ private module LocalFlowBigStep {
   pragma[nomagic]
   predicate localFlowBigStep(
     NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
-    AccessPathFrontNil apf, Configuration config, LocalCallContext callContext
+    DataFlowType t, Configuration config, LocalCallContext callContext
   ) {
-    localFlowStepPlus(node1, state1, node2, preservesValue, apf.getType(), config, callContext) and
+    localFlowStepPlus(node1, state1, node2, preservesValue, t, config, callContext) and
     localFlowExit(node2, state1, config) and
     state1 = state2
     or
     additionalLocalFlowStepNodeCand2(node1, state1, node2, state2, config) and
     state1 != state2 and
     preservesValue = false and
-    apf = TFrontNil(node2.getDataFlowType()) and
+    t = node2.getDataFlowType() and
     callContext.relevantFor(node1.getEnclosingCallable()) and
     not exists(DataFlowCall call | call = callContext.(LocalCallContextSpecificCall).getCall() |
       isUnreachableInCallCached(node1.asNode(), call) or
@@ -2202,11 +2340,87 @@ private import LocalFlowBigStep
 private module Stage3Param implements MkStage<Stage2>::StageParam {
   private module PrevStage = Stage2;
 
+  class Ap = ApproxAccessPathFront;
+
+  class ApNil = ApproxAccessPathFrontNil;
+
+  PrevStage::Ap getApprox(Ap ap) { result = ap.toBoolNonEmpty() }
+
+  ApNil getApNil(NodeEx node) {
+    PrevStage::revFlow(node, _) and result = TApproxFrontNil(node.getDataFlowType())
+  }
+
+  bindingset[tc, tail]
+  Ap apCons(TypedContent tc, Ap tail) { result.getAHead() = tc and exists(tail) }
+
+  pragma[noinline]
+  Content getHeadContent(Ap ap) { result = ap.getAHead().getContent() }
+
+  class ApOption = ApproxAccessPathFrontOption;
+
+  ApOption apNone() { result = TApproxAccessPathFrontNone() }
+
+  ApOption apSome(Ap ap) { result = TApproxAccessPathFrontSome(ap) }
+
+  import BooleanCallContext
+
+  predicate localStep(
+    NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
+    ApproxAccessPathFrontNil ap, Configuration config, LocalCc lcc
+  ) {
+    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap.getType(), config, _) and
+    exists(lcc)
+  }
+
+  predicate flowOutOfCall = flowOutOfCallNodeCand2/6;
+
+  predicate flowIntoCall = flowIntoCallNodeCand2/5;
+
+  pragma[nomagic]
+  private predicate expectsContentCand(NodeEx node, Ap ap, Configuration config) {
+    exists(Content c |
+      PrevStage::revFlow(node, pragma[only_bind_into](config)) and
+      PrevStage::readStepCand(_, c, _, pragma[only_bind_into](config)) and
+      expectsContentEx(node, c) and
+      c = ap.getAHead().getContent()
+    )
+  }
+
+  pragma[nomagic]
+  private predicate castingNodeEx(NodeEx node) { node.asNode() instanceof CastingNode }
+
+  bindingset[node, state, ap, config]
+  predicate filter(NodeEx node, FlowState state, Ap ap, Configuration config) {
+    exists(state) and
+    exists(config) and
+    (if castingNodeEx(node) then compatibleTypes(node.getDataFlowType(), ap.getType()) else any()) and
+    (
+      notExpectsContent(node)
+      or
+      expectsContentCand(node, ap, config)
+    )
+  }
+
+  bindingset[ap, contentType]
+  predicate typecheckStore(Ap ap, DataFlowType contentType) {
+    // We need to typecheck stores here, since reverse flow through a getter
+    // might have a different type here compared to inside the getter.
+    compatibleTypes(ap.getType(), contentType)
+  }
+}
+
+private module Stage3 implements StageSig {
+  import MkStage<Stage2>::Stage<Stage3Param>
+}
+
+private module Stage4Param implements MkStage<Stage3>::StageParam {
+  private module PrevStage = Stage3;
+
   class Ap = AccessPathFront;
 
   class ApNil = AccessPathFrontNil;
 
-  PrevStage::Ap getApprox(Ap ap) { result = ap.toBoolNonEmpty() }
+  PrevStage::Ap getApprox(Ap ap) { result = ap.toApprox() }
 
   ApNil getApNil(NodeEx node) {
     PrevStage::revFlow(node, _) and result = TFrontNil(node.getDataFlowType())
@@ -2226,16 +2440,42 @@ private module Stage3Param implements MkStage<Stage2>::StageParam {
 
   import BooleanCallContext
 
+  pragma[nomagic]
   predicate localStep(
     NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
     ApNil ap, Configuration config, LocalCc lcc
   ) {
-    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap, config, _) and exists(lcc)
+    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap.getType(), config, _) and
+    PrevStage::revFlow(node1, pragma[only_bind_into](state1), _, pragma[only_bind_into](config)) and
+    PrevStage::revFlowAlias(node2, pragma[only_bind_into](state2), _, pragma[only_bind_into](config)) and
+    exists(lcc)
   }
 
-  predicate flowOutOfCall = flowOutOfCallNodeCand2/6;
+  pragma[nomagic]
+  predicate flowOutOfCall(
+    DataFlowCall call, RetNodeEx node1, ReturnKindExt kind, NodeEx node2, boolean allowsFieldFlow,
+    Configuration config
+  ) {
+    exists(FlowState state |
+      flowOutOfCallNodeCand2(call, node1, kind, node2, allowsFieldFlow, config) and
+      PrevStage::revFlow(node2, pragma[only_bind_into](state), _, pragma[only_bind_into](config)) and
+      PrevStage::revFlowAlias(node1, pragma[only_bind_into](state), _,
+        pragma[only_bind_into](config))
+    )
+  }
 
-  predicate flowIntoCall = flowIntoCallNodeCand2/5;
+  pragma[nomagic]
+  predicate flowIntoCall(
+    DataFlowCall call, ArgNodeEx node1, ParamNodeEx node2, boolean allowsFieldFlow,
+    Configuration config
+  ) {
+    exists(FlowState state |
+      flowIntoCallNodeCand2(call, node1, node2, allowsFieldFlow, config) and
+      PrevStage::revFlow(node2, pragma[only_bind_into](state), _, pragma[only_bind_into](config)) and
+      PrevStage::revFlowAlias(node1, pragma[only_bind_into](state), _,
+        pragma[only_bind_into](config))
+    )
+  }
 
   pragma[nomagic]
   private predicate clearSet(NodeEx node, ContentSet c, Configuration config) {
@@ -2291,8 +2531,8 @@ private module Stage3Param implements MkStage<Stage2>::StageParam {
   }
 }
 
-private module Stage3 implements StageSig {
-  import MkStage<Stage2>::Stage<Stage3Param>
+private module Stage4 implements StageSig {
+  import MkStage<Stage3>::Stage<Stage4Param>
 }
 
 /**
@@ -2303,8 +2543,8 @@ private predicate flowCandSummaryCtx(
   NodeEx node, FlowState state, AccessPathFront argApf, Configuration config
 ) {
   exists(AccessPathFront apf |
-    Stage3::revFlow(node, state, TReturnCtxMaybeFlowThrough(_), _, apf, config) and
-    Stage3::fwdFlow(node, state, any(Stage3::CcCall ccc), _, TAccessPathFrontSome(argApf), apf,
+    Stage4::revFlow(node, state, TReturnCtxMaybeFlowThrough(_), _, apf, config) and
+    Stage4::fwdFlow(node, state, any(Stage4::CcCall ccc), _, TAccessPathFrontSome(argApf), apf,
       config)
   )
 }
@@ -2315,10 +2555,10 @@ private predicate flowCandSummaryCtx(
  */
 private predicate expensiveLen2unfolding(TypedContent tc, Configuration config) {
   exists(int tails, int nodes, int apLimit, int tupleLimit |
-    tails = strictcount(AccessPathFront apf | Stage3::consCand(tc, apf, config)) and
+    tails = strictcount(AccessPathFront apf | Stage4::consCand(tc, apf, config)) and
     nodes =
       strictcount(NodeEx n, FlowState state |
-        Stage3::revFlow(n, state, any(AccessPathFrontHead apf | apf.getHead() = tc), config)
+        Stage4::revFlow(n, state, any(AccessPathFrontHead apf | apf.getHead() = tc), config)
         or
         flowCandSummaryCtx(n, state, any(AccessPathFrontHead apf | apf.getHead() = tc), config)
       ) and
@@ -2332,11 +2572,11 @@ private predicate expensiveLen2unfolding(TypedContent tc, Configuration config)
 private newtype TAccessPathApprox =
   TNil(DataFlowType t) or
   TConsNil(TypedContent tc, DataFlowType t) {
-    Stage3::consCand(tc, TFrontNil(t), _) and
+    Stage4::consCand(tc, TFrontNil(t), _) and
     not expensiveLen2unfolding(tc, _)
   } or
   TConsCons(TypedContent tc1, TypedContent tc2, int len) {
-    Stage3::consCand(tc1, TFrontHead(tc2), _) and
+    Stage4::consCand(tc1, TFrontHead(tc2), _) and
     len in [2 .. accessPathLimit()] and
     not expensiveLen2unfolding(tc1, _)
   } or
@@ -2466,7 +2706,7 @@ private class AccessPathApproxCons1 extends AccessPathApproxCons, TCons1 {
   override AccessPathApprox pop(TypedContent head) {
     head = tc and
     (
-      exists(TypedContent tc2 | Stage3::consCand(tc, TFrontHead(tc2), _) |
+      exists(TypedContent tc2 | Stage4::consCand(tc, TFrontHead(tc2), _) |
         result = TConsCons(tc2, _, len - 1)
         or
         len = 2 and
@@ -2477,7 +2717,7 @@ private class AccessPathApproxCons1 extends AccessPathApproxCons, TCons1 {
       or
       exists(DataFlowType t |
         len = 1 and
-        Stage3::consCand(tc, TFrontNil(t), _) and
+        Stage4::consCand(tc, TFrontNil(t), _) and
         result = TNil(t)
       )
     )
@@ -2502,13 +2742,14 @@ private class AccessPathApproxOption extends TAccessPathApproxOption {
   }
 }
 
-private module Stage4Param implements MkStage<Stage3>::StageParam {
-  private module PrevStage = Stage3;
+private module Stage5Param implements MkStage<Stage4>::StageParam {
+  private module PrevStage = Stage4;
 
   class Ap = AccessPathApprox;
 
   class ApNil = AccessPathApproxNil;
 
+  pragma[nomagic]
   PrevStage::Ap getApprox(Ap ap) { result = ap.getFront() }
 
   ApNil getApNil(NodeEx node) {
@@ -2534,7 +2775,9 @@ private module Stage4Param implements MkStage<Stage3>::StageParam {
     NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
     ApNil ap, Configuration config, LocalCc lcc
   ) {
-    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap.getFront(), config, lcc)
+    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap.getType(), config, lcc) and
+    PrevStage::revFlow(node1, pragma[only_bind_into](state1), _, pragma[only_bind_into](config)) and
+    PrevStage::revFlowAlias(node2, pragma[only_bind_into](state2), _, pragma[only_bind_into](config))
   }
 
   pragma[nomagic]
@@ -2571,7 +2814,7 @@ private module Stage4Param implements MkStage<Stage3>::StageParam {
   predicate typecheckStore(Ap ap, DataFlowType contentType) { any() }
 }
 
-private module Stage4 = MkStage<Stage3>::Stage<Stage4Param>;
+private module Stage5 = MkStage<Stage4>::Stage<Stage5Param>;
 
 bindingset[conf, result]
 private Configuration unbindConf(Configuration conf) {
@@ -2585,8 +2828,8 @@ private predicate nodeMayUseSummary0(
 ) {
   exists(AccessPathApprox apa0 |
     c = n.getEnclosingCallable() and
-    Stage4::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
-    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TParameterPositionSome(pos),
+    Stage5::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
+    Stage5::fwdFlow(n, state, any(CallContextCall ccc), TParameterPositionSome(pos),
       TAccessPathApproxSome(apa), apa0, config)
   )
 }
@@ -2596,7 +2839,7 @@ private predicate nodeMayUseSummary(
   NodeEx n, FlowState state, AccessPathApprox apa, Configuration config
 ) {
   exists(DataFlowCallable c, ParameterPosition pos, ParamNodeEx p |
-    Stage4::parameterMayFlowThrough(p, apa, config) and
+    Stage5::parameterMayFlowThrough(p, apa, config) and
     nodeMayUseSummary0(n, c, pos, state, apa, config) and
     p.isParameterOf(c, pos)
   )
@@ -2606,8 +2849,8 @@ private newtype TSummaryCtx =
   TSummaryCtxNone() or
   TSummaryCtxSome(ParamNodeEx p, FlowState state, AccessPath ap) {
     exists(Configuration config |
-      Stage4::parameterMayFlowThrough(p, ap.getApprox(), config) and
-      Stage4::revFlow(p, state, _, config)
+      Stage5::parameterMayFlowThrough(p, ap.getApprox(), config) and
+      Stage5::revFlow(p, state, _, config)
     )
   }
 
@@ -2656,7 +2899,7 @@ private int count1to2unfold(AccessPathApproxCons1 apa, Configuration config) {
     len = apa.len() and
     result =
       strictcount(AccessPathFront apf |
-        Stage4::consCand(tc, any(AccessPathApprox ap | ap.getFront() = apf and ap.len() = len - 1),
+        Stage5::consCand(tc, any(AccessPathApprox ap | ap.getFront() = apf and ap.len() = len - 1),
           config)
       )
   )
@@ -2665,7 +2908,7 @@ private int count1to2unfold(AccessPathApproxCons1 apa, Configuration config) {
 private int countNodesUsingAccessPath(AccessPathApprox apa, Configuration config) {
   result =
     strictcount(NodeEx n, FlowState state |
-      Stage4::revFlow(n, state, apa, config) or nodeMayUseSummary(n, state, apa, config)
+      Stage5::revFlow(n, state, apa, config) or nodeMayUseSummary(n, state, apa, config)
     )
 }
 
@@ -2686,7 +2929,7 @@ private predicate expensiveLen1to2unfolding(AccessPathApproxCons1 apa, Configura
 private AccessPathApprox getATail(AccessPathApprox apa, Configuration config) {
   exists(TypedContent head |
     apa.pop(head) = result and
-    Stage4::consCand(head, result, config)
+    Stage5::consCand(head, result, config)
   )
 }
 
@@ -2768,7 +3011,7 @@ private newtype TPathNode =
     NodeEx node, FlowState state, CallContext cc, SummaryCtx sc, AccessPath ap, Configuration config
   ) {
     // A PathNode is introduced by a source ...
-    Stage4::revFlow(node, state, config) and
+    Stage5::revFlow(node, state, config) and
     sourceNode(node, state, config) and
     (
       if hasSourceCallCtx(config)
@@ -2782,7 +3025,7 @@ private newtype TPathNode =
     exists(PathNodeMid mid |
       pathStep(mid, node, state, cc, sc, ap) and
       pragma[only_bind_into](config) = mid.getConfiguration() and
-      Stage4::revFlow(node, state, ap.getApprox(), pragma[only_bind_into](config))
+      Stage5::revFlow(node, state, ap.getApprox(), pragma[only_bind_into](config))
     )
   } or
   TPathNodeSink(NodeEx node, FlowState state, Configuration config) {
@@ -2924,7 +3167,7 @@ private class AccessPathCons2 extends AccessPath, TAccessPathCons2 {
   override TypedContent getHead() { result = head1 }
 
   override AccessPath getTail() {
-    Stage4::consCand(head1, result.getApprox(), _) and
+    Stage5::consCand(head1, result.getApprox(), _) and
     result.getHead() = head2 and
     result.length() = len - 1
   }
@@ -2955,7 +3198,7 @@ private class AccessPathCons1 extends AccessPath, TAccessPathCons1 {
   override TypedContent getHead() { result = head }
 
   override AccessPath getTail() {
-    Stage4::consCand(head, result.getApprox(), _) and result.length() = len - 1
+    Stage5::consCand(head, result.getApprox(), _) and result.length() = len - 1
   }
 
   override AccessPathFrontHead getFront() { result = TFrontHead(head) }
@@ -3347,7 +3590,8 @@ private predicate pathStep(
     AccessPath ap0, NodeEx midnode, FlowState state0, Configuration conf, LocalCallContext localCC
   |
     pathNode(mid, midnode, state0, cc, sc, ap0, conf, localCC) and
-    localFlowBigStep(midnode, state0, node, state, false, ap.getFront(), conf, localCC) and
+    localFlowBigStep(midnode, state0, node, state, false, ap.(AccessPathNil).getType(), conf,
+      localCC) and
     ap0 instanceof AccessPathNil
   )
   or
@@ -3389,7 +3633,7 @@ private predicate pathReadStep(
 ) {
   ap0 = mid.getAp() and
   tc = ap0.getHead() and
-  Stage4::readStepCand(mid.getNodeEx(), tc.getContent(), node, mid.getConfiguration()) and
+  Stage5::readStepCand(mid.getNodeEx(), tc.getContent(), node, mid.getConfiguration()) and
   state = mid.getState() and
   cc = mid.getCallContext()
 }
@@ -3399,7 +3643,7 @@ private predicate pathStoreStep(
   PathNodeMid mid, NodeEx node, FlowState state, AccessPath ap0, TypedContent tc, CallContext cc
 ) {
   ap0 = mid.getAp() and
-  Stage4::storeStepCand(mid.getNodeEx(), _, tc, node, _, mid.getConfiguration()) and
+  Stage5::storeStepCand(mid.getNodeEx(), _, tc, node, _, mid.getConfiguration()) and
   state = mid.getState() and
   cc = mid.getCallContext()
 }
@@ -3436,7 +3680,7 @@ private NodeEx getAnOutNodeFlow(
   ReturnKindExt kind, DataFlowCall call, AccessPathApprox apa, Configuration config
 ) {
   result.asNode() = kind.getAnOutNode(call) and
-  Stage4::revFlow(result, _, apa, config)
+  Stage5::revFlow(result, _, apa, config)
 }
 
 /**
@@ -3472,7 +3716,7 @@ private predicate parameterCand(
   DataFlowCallable callable, ParameterPosition pos, AccessPathApprox apa, Configuration config
 ) {
   exists(ParamNodeEx p |
-    Stage4::revFlow(p, _, apa, config) and
+    Stage5::revFlow(p, _, apa, config) and
     p.isParameterOf(callable, pos)
   )
 }
@@ -3751,9 +3995,17 @@ predicate stageStats(
   n = 45 and
   Stage4::stats(false, nodes, fields, conscand, states, tuples, config)
   or
-  stage = "5 Fwd" and n = 50 and finalStats(true, nodes, fields, conscand, states, tuples)
+  stage = "5 Fwd" and
+  n = 50 and
+  Stage5::stats(true, nodes, fields, conscand, states, tuples, config)
   or
-  stage = "5 Rev" and n = 55 and finalStats(false, nodes, fields, conscand, states, tuples)
+  stage = "5 Rev" and
+  n = 55 and
+  Stage5::stats(false, nodes, fields, conscand, states, tuples, config)
+  or
+  stage = "6 Fwd" and n = 60 and finalStats(true, nodes, fields, conscand, states, tuples)
+  or
+  stage = "6 Rev" and n = 65 and finalStats(false, nodes, fields, conscand, states, tuples)
 }
 
 private module FlowExploration {
diff --git a/cpp/ql/lib/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl4.qll b/cpp/ql/lib/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl4.qll
index ccde916a3c2..6741ccc2f06 100644
--- a/cpp/ql/lib/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl4.qll
+++ b/cpp/ql/lib/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl4.qll
@@ -621,23 +621,6 @@ private predicate parameterFlowThroughAllowed(ParamNodeEx p, ReturnKindExt kind)
   )
 }
 
-/**
- * Holds if flow from a parameter at position `pos` inside `c` to a return node of
- * kind `kind` is allowed.
- *
- * We don't expect a parameter to return stored in itself, unless
- * explicitly allowed
- */
-bindingset[c, pos, kind]
-private predicate parameterFlowThroughAllowed(
-  DataFlowCallable c, ParameterPosition pos, ReturnKindExt kind
-) {
-  exists(ParamNodeEx p |
-    p.isParameterOf(c, pos) and
-    parameterFlowThroughAllowed(p, kind)
-  )
-}
-
 private module Stage1 implements StageSig {
   class Ap = Unit;
 
@@ -980,6 +963,12 @@ private module Stage1 implements StageSig {
   pragma[nomagic]
   predicate revFlow(NodeEx node, Configuration config) { revFlow(node, _, config) }
 
+  pragma[nomagic]
+  predicate revFlowAp(NodeEx node, Ap ap, Configuration config) {
+    revFlow(node, config) and
+    exists(ap)
+  }
+
   bindingset[node, state, config]
   predicate revFlow(NodeEx node, FlowState state, Ap ap, Configuration config) {
     revFlow(node, _, pragma[only_bind_into](config)) and
@@ -1022,9 +1011,13 @@ private module Stage1 implements StageSig {
   }
 
   pragma[nomagic]
-  predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config) {
+  predicate returnMayFlowThrough(
+    RetNodeEx ret, Ap argAp, Ap ap, ReturnKindExt kind, Configuration config
+  ) {
     throughFlowNodeCand(ret, config) and
-    kind = ret.getKind()
+    kind = ret.getKind() and
+    exists(argAp) and
+    exists(ap)
   }
 
   pragma[nomagic]
@@ -1189,6 +1182,8 @@ private signature module StageSig {
 
   predicate revFlow(NodeEx node, Configuration config);
 
+  predicate revFlowAp(NodeEx node, Ap ap, Configuration config);
+
   bindingset[node, state, config]
   predicate revFlow(NodeEx node, FlowState state, Ap ap, Configuration config);
 
@@ -1196,7 +1191,9 @@ private signature module StageSig {
 
   predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config);
 
-  predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config);
+  predicate returnMayFlowThrough(
+    RetNodeEx ret, Ap argAp, Ap ap, ReturnKindExt kind, Configuration config
+  );
 
   predicate storeStepCand(
     NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, DataFlowType contentType,
@@ -1281,21 +1278,43 @@ private module MkStage<StageSig PrevStage> {
     import Param
 
     /* Begin: Stage logic. */
-    bindingset[result, apa]
-    private ApApprox unbindApa(ApApprox apa) {
-      pragma[only_bind_out](apa) = pragma[only_bind_out](result)
+    // use an alias as a workaround for bad functionality-induced joins
+    pragma[nomagic]
+    private predicate revFlowApAlias(NodeEx node, ApApprox apa, Configuration config) {
+      PrevStage::revFlowAp(node, apa, config)
+    }
+
+    pragma[nomagic]
+    private predicate flowIntoCallApa(
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, ApApprox apa,
+      Configuration config
+    ) {
+      flowIntoCall(call, arg, p, allowsFieldFlow, config) and
+      PrevStage::revFlowAp(p, pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
+      revFlowApAlias(arg, pragma[only_bind_into](apa), pragma[only_bind_into](config))
+    }
+
+    pragma[nomagic]
+    private predicate flowOutOfCallApa(
+      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
+      ApApprox apa, Configuration config
+    ) {
+      flowOutOfCall(call, ret, kind, out, allowsFieldFlow, config) and
+      PrevStage::revFlowAp(out, pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
+      revFlowApAlias(ret, pragma[only_bind_into](apa), pragma[only_bind_into](config))
     }
 
     pragma[nomagic]
     private predicate flowThroughOutOfCall(
-      DataFlowCall call, DataFlowCallable c, CcCall ccc, RetNodeEx ret, ReturnKindExt kind,
-      NodeEx out, boolean allowsFieldFlow, Configuration config
+      DataFlowCall call, CcCall ccc, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow,
+      ApApprox argApa, ApApprox apa, Configuration config
     ) {
-      flowOutOfCall(call, ret, kind, out, allowsFieldFlow, pragma[only_bind_into](config)) and
-      PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
-      PrevStage::returnMayFlowThrough(ret, kind, pragma[only_bind_into](config)) and
-      matchesCall(ccc, call) and
-      c = ret.getEnclosingCallable()
+      exists(ReturnKindExt kind |
+        flowOutOfCallApa(call, ret, kind, out, allowsFieldFlow, apa, pragma[only_bind_into](config)) and
+        PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
+        PrevStage::returnMayFlowThrough(ret, argApa, apa, kind, pragma[only_bind_into](config)) and
+        matchesCall(ccc, call)
+      )
     }
 
     /**
@@ -1307,39 +1326,50 @@ private module MkStage<StageSig PrevStage> {
      * corresponding parameter position and access path of that argument, respectively.
      */
     pragma[nomagic]
+    additional predicate fwdFlow(
+      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      Ap ap, ApApprox apa, Configuration config
+    ) {
+      fwdFlow0(node, state, cc, summaryCtx, argAp, ap, apa, config) and
+      PrevStage::revFlow(node, state, apa, config) and
+      filter(node, state, ap, config)
+    }
+
+    pragma[inline]
     additional predicate fwdFlow(
       NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
       Ap ap, Configuration config
     ) {
-      fwdFlow0(node, state, cc, summaryCtx, argAp, ap, config) and
-      PrevStage::revFlow(node, state, unbindApa(getApprox(ap)), config) and
-      filter(node, state, ap, config)
+      fwdFlow(node, state, cc, summaryCtx, argAp, ap, _, config)
     }
 
     pragma[nomagic]
     private predicate fwdFlow0(
       NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      Ap ap, Configuration config
+      Ap ap, ApApprox apa, Configuration config
     ) {
       sourceNode(node, state, config) and
       (if hasSourceCallCtx(config) then cc = ccSomeCall() else cc = ccNone()) and
       argAp = apNone() and
       summaryCtx = TParameterPositionNone() and
-      ap = getApNil(node)
+      ap = getApNil(node) and
+      apa = getApprox(ap)
       or
-      exists(NodeEx mid, FlowState state0, Ap ap0, LocalCc localCc |
-        fwdFlow(mid, state0, cc, summaryCtx, argAp, ap0, config) and
+      exists(NodeEx mid, FlowState state0, Ap ap0, ApApprox apa0, LocalCc localCc |
+        fwdFlow(mid, state0, cc, summaryCtx, argAp, ap0, apa0, config) and
         localCc = getLocalCc(mid, cc)
       |
         localStep(mid, state0, node, state, true, _, config, localCc) and
-        ap = ap0
+        ap = ap0 and
+        apa = apa0
         or
         localStep(mid, state0, node, state, false, ap, config, localCc) and
-        ap0 instanceof ApNil
+        ap0 instanceof ApNil and
+        apa = getApprox(ap)
       )
       or
       exists(NodeEx mid |
-        fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, apa, pragma[only_bind_into](config)) and
         jumpStep(mid, node, config) and
         cc = ccNone() and
         summaryCtx = TParameterPositionNone() and
@@ -1352,7 +1382,8 @@ private module MkStage<StageSig PrevStage> {
         cc = ccNone() and
         summaryCtx = TParameterPositionNone() and
         argAp = apNone() and
-        ap = getApNil(node)
+        ap = getApNil(node) and
+        apa = getApprox(ap)
       )
       or
       exists(NodeEx mid, FlowState state0, ApNil nil |
@@ -1361,32 +1392,32 @@ private module MkStage<StageSig PrevStage> {
         cc = ccNone() and
         summaryCtx = TParameterPositionNone() and
         argAp = apNone() and
-        ap = getApNil(node)
+        ap = getApNil(node) and
+        apa = getApprox(ap)
       )
       or
       // store
       exists(TypedContent tc, Ap ap0 |
         fwdFlowStore(_, ap0, tc, node, state, cc, summaryCtx, argAp, config) and
-        ap = apCons(tc, ap0)
+        ap = apCons(tc, ap0) and
+        apa = getApprox(ap)
       )
       or
       // read
       exists(Ap ap0, Content c |
         fwdFlowRead(ap0, c, _, node, state, cc, summaryCtx, argAp, config) and
-        fwdFlowConsCand(ap0, c, ap, config)
+        fwdFlowConsCand(ap0, c, ap, config) and
+        apa = getApprox(ap)
       )
       or
       // flow into a callable
-      exists(ApApprox apa |
-        fwdFlowIn(_, node, state, _, cc, _, _, ap, config) and
-        apa = getApprox(ap) and
-        if PrevStage::parameterMayFlowThrough(node, apa, config)
-        then (
-          summaryCtx = TParameterPositionSome(node.(ParamNodeEx).getPosition()) and
-          argAp = apSome(ap)
-        ) else (
-          summaryCtx = TParameterPositionNone() and argAp = apNone()
-        )
+      fwdFlowIn(_, node, state, _, cc, _, _, ap, apa, config) and
+      if PrevStage::parameterMayFlowThrough(node, apa, config)
+      then (
+        summaryCtx = TParameterPositionSome(node.(ParamNodeEx).getPosition()) and
+        argAp = apSome(ap)
+      ) else (
+        summaryCtx = TParameterPositionNone() and argAp = apNone()
       )
       or
       // flow out of a callable
@@ -1394,8 +1425,8 @@ private module MkStage<StageSig PrevStage> {
         DataFlowCall call, RetNodeEx ret, boolean allowsFieldFlow, CcNoCall innercc,
         DataFlowCallable inner
       |
-        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, config) and
-        flowOutOfCall(call, ret, _, node, allowsFieldFlow, config) and
+        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, apa, config) and
+        flowOutOfCallApa(call, ret, _, node, allowsFieldFlow, apa, config) and
         inner = ret.getEnclosingCallable() and
         cc = getCallContextReturn(inner, call, innercc) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
@@ -1403,7 +1434,7 @@ private module MkStage<StageSig PrevStage> {
       or
       // flow through a callable
       exists(DataFlowCall call, ParameterPosition summaryCtx0, Ap argAp0 |
-        fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, config) and
+        fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, apa, config) and
         fwdFlowIsEntered(call, cc, summaryCtx, argAp, summaryCtx0, argAp0, config)
       )
     }
@@ -1413,9 +1444,9 @@ private module MkStage<StageSig PrevStage> {
       NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc,
       ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
     ) {
-      exists(DataFlowType contentType |
-        fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, config) and
-        PrevStage::storeStepCand(node1, unbindApa(getApprox(ap1)), tc, node2, contentType, config) and
+      exists(DataFlowType contentType, ApApprox apa1 |
+        fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, apa1, config) and
+        PrevStage::storeStepCand(node1, apa1, tc, node2, contentType, config) and
         typecheckStore(ap1, contentType)
       )
     }
@@ -1433,43 +1464,104 @@ private module MkStage<StageSig PrevStage> {
       )
     }
 
+    private class ApNonNil instanceof Ap {
+      pragma[nomagic]
+      ApNonNil() { not this instanceof ApNil }
+
+      string toString() { result = "" }
+    }
+
+    pragma[nomagic]
+    private predicate fwdFlowRead0(
+      NodeEx node1, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      ApNonNil ap, Configuration config
+    ) {
+      fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
+      PrevStage::readStepCand(node1, _, _, config)
+    }
+
     pragma[nomagic]
     private predicate fwdFlowRead(
       Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc,
       ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
     ) {
-      fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
+      fwdFlowRead0(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, c, node2, config) and
       getHeadContent(ap) = c
     }
 
     pragma[nomagic]
     private predicate fwdFlowIn(
-      DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, Cc innercc,
-      ParameterPositionOption summaryCtx, ApOption argAp, Ap ap, Configuration config
+      DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, CcCall innercc,
+      ParameterPositionOption summaryCtx, ApOption argAp, Ap ap, ApApprox apa, Configuration config
     ) {
       exists(ArgNodeEx arg, boolean allowsFieldFlow |
-        fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, config) and
-        flowIntoCall(call, arg, p, allowsFieldFlow, config) and
+        fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, apa, config) and
+        flowIntoCallApa(call, arg, p, allowsFieldFlow, apa, config) and
         innercc = getCallContextCall(call, p.getEnclosingCallable(), outercc) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
+    pragma[nomagic]
+    private predicate fwdFlowRetFromArg(
+      RetNodeEx ret, FlowState state, CcCall ccc, ParameterPosition summaryCtx, ParamNodeEx p,
+      Ap argAp, ApApprox argApa, Ap ap, ApApprox apa, Configuration config
+    ) {
+      exists(DataFlowCallable c, ReturnKindExt kind |
+        fwdFlow(pragma[only_bind_into](ret), state, ccc,
+          TParameterPositionSome(pragma[only_bind_into](summaryCtx)), apSome(argAp), ap, apa, config) and
+        getApprox(argAp) = argApa and
+        c = ret.getEnclosingCallable() and
+        kind = ret.getKind() and
+        p.isParameterOf(c, pragma[only_bind_into](summaryCtx)) and
+        parameterFlowThroughAllowed(p, kind)
+      )
+    }
+
+    pragma[inline]
+    private predicate fwdFlowInMayFlowThrough(
+      DataFlowCall call, Cc cc, CcCall innerCc, ParameterPositionOption summaryCtx, ApOption argAp,
+      ParamNodeEx param, Ap ap, ApApprox apa, Configuration config
+    ) {
+      fwdFlowIn(call, pragma[only_bind_into](param), _, cc, innerCc, summaryCtx, argAp, ap,
+        pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
+      PrevStage::parameterMayFlowThrough(param, apa, config)
+    }
+
+    // dedup before joining with `flowThroughOutOfCall`
+    pragma[nomagic]
+    private predicate fwdFlowInMayFlowThroughProj(
+      DataFlowCall call, CcCall innerCc, ApApprox apa, Configuration config
+    ) {
+      fwdFlowInMayFlowThrough(call, _, innerCc, _, _, _, _, apa, config)
+    }
+
+    /**
+     * Same as `flowThroughOutOfCall`, but restricted to calls that are reached
+     * in the flow covered by `fwdFlow`, where data might flow through the target
+     * callable and back out at `call`.
+     */
+    pragma[nomagic]
+    private predicate fwdFlowThroughOutOfCall(
+      DataFlowCall call, CcCall ccc, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow,
+      ApApprox argApa, ApApprox apa, Configuration config
+    ) {
+      fwdFlowInMayFlowThroughProj(call, ccc, argApa, config) and
+      flowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, argApa, apa, config)
+    }
+
     pragma[nomagic]
     private predicate fwdFlowOutFromArg(
       DataFlowCall call, NodeEx out, FlowState state, ParameterPosition summaryCtx, Ap argAp, Ap ap,
-      Configuration config
+      ApApprox apa, Configuration config
     ) {
-      exists(
-        DataFlowCallable c, RetNodeEx ret, ReturnKindExt kind, boolean allowsFieldFlow, CcCall ccc
-      |
-        fwdFlow(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc),
-          TParameterPositionSome(pragma[only_bind_into](summaryCtx)), apSome(argAp), ap, config) and
-        flowThroughOutOfCall(call, pragma[only_bind_into](c), ccc, ret, kind, out, allowsFieldFlow,
+      exists(RetNodeEx ret, boolean allowsFieldFlow, CcCall ccc, ApApprox argApa |
+        fwdFlowRetFromArg(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc),
+          summaryCtx, _, argAp, pragma[only_bind_into](argApa), ap, pragma[only_bind_into](apa),
           config) and
-        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
-        parameterFlowThroughAllowed(c, pragma[only_bind_into](summaryCtx), kind)
+        fwdFlowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, argApa, apa, config) and
+        (if allowsFieldFlow = false then ap instanceof ApNil else any())
       )
     }
 
@@ -1483,8 +1575,7 @@ private module MkStage<StageSig PrevStage> {
       ParameterPosition pos, Ap ap, Configuration config
     ) {
       exists(ParamNodeEx param |
-        fwdFlowIn(call, param, _, cc, _, summaryCtx, argAp, ap, config) and
-        PrevStage::parameterMayFlowThrough(param, unbindApa(getApprox(ap)), config) and
+        fwdFlowInMayFlowThrough(call, cc, _, summaryCtx, argAp, param, ap, _, config) and
         pos = param.getPosition()
       )
     }
@@ -1505,41 +1596,55 @@ private module MkStage<StageSig PrevStage> {
       fwdFlowConsCand(ap1, c, ap2, config)
     }
 
-    pragma[nomagic]
-    private predicate returnFlowsThrough0(
-      RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, DataFlowCallable c,
-      ParameterPosition ppos, Ap argAp, Ap ap, Configuration config
-    ) {
-      exists(boolean allowsFieldFlow |
-        fwdFlow(ret, state, ccc, TParameterPositionSome(ppos), apSome(argAp), ap, config) and
-        flowThroughOutOfCall(_, c, _, pragma[only_bind_into](ret), kind, _, allowsFieldFlow,
-          pragma[only_bind_into](config)) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
-      )
-    }
-
     pragma[nomagic]
     private predicate returnFlowsThrough(
       RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, ParamNodeEx p, Ap argAp,
       Ap ap, Configuration config
     ) {
-      exists(DataFlowCallable c, ParameterPosition ppos |
-        returnFlowsThrough0(ret, kind, state, ccc, c, ppos, argAp, ap, config) and
-        p.isParameterOf(c, ppos) and
-        parameterFlowThroughAllowed(p, kind)
+      exists(boolean allowsFieldFlow, ApApprox argApa, ApApprox apa |
+        fwdFlowRetFromArg(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc), _, p,
+          argAp, pragma[only_bind_into](argApa), ap, pragma[only_bind_into](apa), config) and
+        kind = ret.getKind() and
+        fwdFlowThroughOutOfCall(_, ccc, ret, _, allowsFieldFlow, argApa, apa, config) and
+        (if allowsFieldFlow = false then ap instanceof ApNil else any())
       )
     }
 
     pragma[nomagic]
     private predicate flowThroughIntoCall(
-      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp,
+      Configuration config
     ) {
-      exists(Ap argAp |
-        flowIntoCall(call, pragma[only_bind_into](arg), pragma[only_bind_into](p), allowsFieldFlow,
+      exists(ApApprox argApa |
+        flowIntoCallApa(call, pragma[only_bind_into](arg), pragma[only_bind_into](p),
+          allowsFieldFlow, argApa, pragma[only_bind_into](config)) and
+        fwdFlow(arg, _, _, _, _, pragma[only_bind_into](argAp), argApa,
           pragma[only_bind_into](config)) and
-        fwdFlow(arg, _, _, _, _, pragma[only_bind_into](argAp), pragma[only_bind_into](config)) and
         returnFlowsThrough(_, _, _, _, p, pragma[only_bind_into](argAp), _,
-          pragma[only_bind_into](config))
+          pragma[only_bind_into](config)) and
+        if allowsFieldFlow = false then argAp instanceof ApNil else any()
+      )
+    }
+
+    pragma[nomagic]
+    private predicate flowIntoCallAp(
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap ap,
+      Configuration config
+    ) {
+      exists(ApApprox apa |
+        flowIntoCallApa(call, arg, p, allowsFieldFlow, apa, config) and
+        fwdFlow(arg, _, _, _, _, ap, apa, config)
+      )
+    }
+
+    pragma[nomagic]
+    private predicate flowOutOfCallAp(
+      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
+      Ap ap, Configuration config
+    ) {
+      exists(ApApprox apa |
+        flowOutOfCallApa(call, ret, kind, out, allowsFieldFlow, apa, config) and
+        fwdFlow(ret, _, _, _, _, ap, apa, config)
       )
     }
 
@@ -1628,7 +1733,7 @@ private module MkStage<StageSig PrevStage> {
       // flow into a callable
       exists(ParamNodeEx p, boolean allowsFieldFlow |
         revFlow(p, state, TReturnCtxNone(), returnAp, ap, config) and
-        flowIntoCall(_, node, p, allowsFieldFlow, config) and
+        flowIntoCallAp(_, node, p, allowsFieldFlow, ap, config) and
         (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
         returnCtx = TReturnCtxNone()
       )
@@ -1682,22 +1787,41 @@ private module MkStage<StageSig PrevStage> {
     ) {
       exists(NodeEx out, boolean allowsFieldFlow |
         revFlow(out, state, returnCtx, returnAp, ap, config) and
-        flowOutOfCall(call, ret, kind, out, allowsFieldFlow, config) and
+        flowOutOfCallAp(call, ret, kind, out, allowsFieldFlow, ap, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
+    /**
+     * Same as `flowThroughIntoCall`, but restricted to calls that are reached
+     * in the flow covered by `revFlow`, where data might flow through the target
+     * callable and back out at `call`.
+     */
+    pragma[nomagic]
+    private predicate revFlowThroughIntoCall(
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp,
+      Configuration config
+    ) {
+      flowThroughIntoCall(call, arg, p, allowsFieldFlow, argAp, config) and
+      revFlowIsReturned(call, _, _, _, _, config)
+    }
+
+    pragma[nomagic]
+    private predicate revFlowParamToReturn(
+      ParamNodeEx p, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap, Configuration config
+    ) {
+      revFlow(p, state, TReturnCtxMaybeFlowThrough(kind), apSome(returnAp), ap, config) and
+      parameterFlowThroughAllowed(p, kind)
+    }
+
     pragma[nomagic]
     private predicate revFlowInToReturn(
       DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap,
       Configuration config
     ) {
       exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(pragma[only_bind_into](p), state,
-          TReturnCtxMaybeFlowThrough(pragma[only_bind_into](kind)), apSome(returnAp), ap, config) and
-        flowThroughIntoCall(call, arg, p, allowsFieldFlow, config) and
-        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
-        parameterFlowThroughAllowed(p, kind)
+        revFlowParamToReturn(p, state, kind, returnAp, ap, config) and
+        revFlowThroughIntoCall(call, arg, p, allowsFieldFlow, ap, config)
       )
     }
 
@@ -1750,6 +1874,11 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     predicate revFlow(NodeEx node, Configuration config) { revFlow(node, _, _, _, _, config) }
 
+    pragma[nomagic]
+    predicate revFlowAp(NodeEx node, Ap ap, Configuration config) {
+      revFlow(node, _, _, _, ap, config)
+    }
+
     // use an alias as a workaround for bad functionality-induced joins
     pragma[nomagic]
     additional predicate revFlowAlias(NodeEx node, Configuration config) {
@@ -1786,9 +1915,9 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate parameterFlowsThroughRev(
-      ParamNodeEx p, Ap ap, ReturnKindExt kind, Configuration config
+      ParamNodeEx p, Ap ap, ReturnKindExt kind, Ap returnAp, Configuration config
     ) {
-      revFlow(p, _, TReturnCtxMaybeFlowThrough(kind), apSome(_), ap, config) and
+      revFlow(p, _, TReturnCtxMaybeFlowThrough(kind), apSome(returnAp), ap, config) and
       parameterFlowThroughAllowed(p, kind)
     }
 
@@ -1796,27 +1925,36 @@ private module MkStage<StageSig PrevStage> {
     predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
       exists(RetNodeEx ret, ReturnKindExt kind |
         returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
-        parameterFlowsThroughRev(p, ap, kind, config)
+        parameterFlowsThroughRev(p, ap, kind, _, config)
       )
     }
 
     pragma[nomagic]
-    predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config) {
-      exists(ParamNodeEx p, Ap ap |
-        returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
-        parameterFlowsThroughRev(p, ap, kind, config)
+    predicate returnMayFlowThrough(
+      RetNodeEx ret, Ap argAp, Ap ap, ReturnKindExt kind, Configuration config
+    ) {
+      exists(ParamNodeEx p |
+        returnFlowsThrough(ret, kind, _, _, p, argAp, ap, config) and
+        parameterFlowsThroughRev(p, argAp, kind, ap, config)
+      )
+    }
+
+    pragma[nomagic]
+    predicate revFlowInToReturnIsReturned(
+      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnCtx returnCtx, ApOption returnAp,
+      Ap ap, Configuration config
+    ) {
+      exists(ReturnKindExt returnKind0, Ap returnAp0 |
+        revFlowInToReturn(call, arg, state, returnKind0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
       )
     }
 
     pragma[nomagic]
     predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
-      exists(
-        ReturnKindExt returnKind0, Ap returnAp0, ArgNodeEx arg, FlowState state,
-        ReturnCtx returnCtx, ApOption returnAp, Ap ap
-      |
+      exists(ArgNodeEx arg, FlowState state, ReturnCtx returnCtx, ApOption returnAp, Ap ap |
         revFlow(arg, state, returnCtx, returnAp, ap, config) and
-        revFlowInToReturn(call, arg, state, returnKind0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
+        revFlowInToReturnIsReturned(call, arg, state, returnCtx, returnAp, ap, config)
       )
     }
 
@@ -2179,16 +2317,16 @@ private module LocalFlowBigStep {
   pragma[nomagic]
   predicate localFlowBigStep(
     NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
-    AccessPathFrontNil apf, Configuration config, LocalCallContext callContext
+    DataFlowType t, Configuration config, LocalCallContext callContext
   ) {
-    localFlowStepPlus(node1, state1, node2, preservesValue, apf.getType(), config, callContext) and
+    localFlowStepPlus(node1, state1, node2, preservesValue, t, config, callContext) and
     localFlowExit(node2, state1, config) and
     state1 = state2
     or
     additionalLocalFlowStepNodeCand2(node1, state1, node2, state2, config) and
     state1 != state2 and
     preservesValue = false and
-    apf = TFrontNil(node2.getDataFlowType()) and
+    t = node2.getDataFlowType() and
     callContext.relevantFor(node1.getEnclosingCallable()) and
     not exists(DataFlowCall call | call = callContext.(LocalCallContextSpecificCall).getCall() |
       isUnreachableInCallCached(node1.asNode(), call) or
@@ -2202,11 +2340,87 @@ private import LocalFlowBigStep
 private module Stage3Param implements MkStage<Stage2>::StageParam {
   private module PrevStage = Stage2;
 
+  class Ap = ApproxAccessPathFront;
+
+  class ApNil = ApproxAccessPathFrontNil;
+
+  PrevStage::Ap getApprox(Ap ap) { result = ap.toBoolNonEmpty() }
+
+  ApNil getApNil(NodeEx node) {
+    PrevStage::revFlow(node, _) and result = TApproxFrontNil(node.getDataFlowType())
+  }
+
+  bindingset[tc, tail]
+  Ap apCons(TypedContent tc, Ap tail) { result.getAHead() = tc and exists(tail) }
+
+  pragma[noinline]
+  Content getHeadContent(Ap ap) { result = ap.getAHead().getContent() }
+
+  class ApOption = ApproxAccessPathFrontOption;
+
+  ApOption apNone() { result = TApproxAccessPathFrontNone() }
+
+  ApOption apSome(Ap ap) { result = TApproxAccessPathFrontSome(ap) }
+
+  import BooleanCallContext
+
+  predicate localStep(
+    NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
+    ApproxAccessPathFrontNil ap, Configuration config, LocalCc lcc
+  ) {
+    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap.getType(), config, _) and
+    exists(lcc)
+  }
+
+  predicate flowOutOfCall = flowOutOfCallNodeCand2/6;
+
+  predicate flowIntoCall = flowIntoCallNodeCand2/5;
+
+  pragma[nomagic]
+  private predicate expectsContentCand(NodeEx node, Ap ap, Configuration config) {
+    exists(Content c |
+      PrevStage::revFlow(node, pragma[only_bind_into](config)) and
+      PrevStage::readStepCand(_, c, _, pragma[only_bind_into](config)) and
+      expectsContentEx(node, c) and
+      c = ap.getAHead().getContent()
+    )
+  }
+
+  pragma[nomagic]
+  private predicate castingNodeEx(NodeEx node) { node.asNode() instanceof CastingNode }
+
+  bindingset[node, state, ap, config]
+  predicate filter(NodeEx node, FlowState state, Ap ap, Configuration config) {
+    exists(state) and
+    exists(config) and
+    (if castingNodeEx(node) then compatibleTypes(node.getDataFlowType(), ap.getType()) else any()) and
+    (
+      notExpectsContent(node)
+      or
+      expectsContentCand(node, ap, config)
+    )
+  }
+
+  bindingset[ap, contentType]
+  predicate typecheckStore(Ap ap, DataFlowType contentType) {
+    // We need to typecheck stores here, since reverse flow through a getter
+    // might have a different type here compared to inside the getter.
+    compatibleTypes(ap.getType(), contentType)
+  }
+}
+
+private module Stage3 implements StageSig {
+  import MkStage<Stage2>::Stage<Stage3Param>
+}
+
+private module Stage4Param implements MkStage<Stage3>::StageParam {
+  private module PrevStage = Stage3;
+
   class Ap = AccessPathFront;
 
   class ApNil = AccessPathFrontNil;
 
-  PrevStage::Ap getApprox(Ap ap) { result = ap.toBoolNonEmpty() }
+  PrevStage::Ap getApprox(Ap ap) { result = ap.toApprox() }
 
   ApNil getApNil(NodeEx node) {
     PrevStage::revFlow(node, _) and result = TFrontNil(node.getDataFlowType())
@@ -2226,16 +2440,42 @@ private module Stage3Param implements MkStage<Stage2>::StageParam {
 
   import BooleanCallContext
 
+  pragma[nomagic]
   predicate localStep(
     NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
     ApNil ap, Configuration config, LocalCc lcc
   ) {
-    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap, config, _) and exists(lcc)
+    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap.getType(), config, _) and
+    PrevStage::revFlow(node1, pragma[only_bind_into](state1), _, pragma[only_bind_into](config)) and
+    PrevStage::revFlowAlias(node2, pragma[only_bind_into](state2), _, pragma[only_bind_into](config)) and
+    exists(lcc)
   }
 
-  predicate flowOutOfCall = flowOutOfCallNodeCand2/6;
+  pragma[nomagic]
+  predicate flowOutOfCall(
+    DataFlowCall call, RetNodeEx node1, ReturnKindExt kind, NodeEx node2, boolean allowsFieldFlow,
+    Configuration config
+  ) {
+    exists(FlowState state |
+      flowOutOfCallNodeCand2(call, node1, kind, node2, allowsFieldFlow, config) and
+      PrevStage::revFlow(node2, pragma[only_bind_into](state), _, pragma[only_bind_into](config)) and
+      PrevStage::revFlowAlias(node1, pragma[only_bind_into](state), _,
+        pragma[only_bind_into](config))
+    )
+  }
 
-  predicate flowIntoCall = flowIntoCallNodeCand2/5;
+  pragma[nomagic]
+  predicate flowIntoCall(
+    DataFlowCall call, ArgNodeEx node1, ParamNodeEx node2, boolean allowsFieldFlow,
+    Configuration config
+  ) {
+    exists(FlowState state |
+      flowIntoCallNodeCand2(call, node1, node2, allowsFieldFlow, config) and
+      PrevStage::revFlow(node2, pragma[only_bind_into](state), _, pragma[only_bind_into](config)) and
+      PrevStage::revFlowAlias(node1, pragma[only_bind_into](state), _,
+        pragma[only_bind_into](config))
+    )
+  }
 
   pragma[nomagic]
   private predicate clearSet(NodeEx node, ContentSet c, Configuration config) {
@@ -2291,8 +2531,8 @@ private module Stage3Param implements MkStage<Stage2>::StageParam {
   }
 }
 
-private module Stage3 implements StageSig {
-  import MkStage<Stage2>::Stage<Stage3Param>
+private module Stage4 implements StageSig {
+  import MkStage<Stage3>::Stage<Stage4Param>
 }
 
 /**
@@ -2303,8 +2543,8 @@ private predicate flowCandSummaryCtx(
   NodeEx node, FlowState state, AccessPathFront argApf, Configuration config
 ) {
   exists(AccessPathFront apf |
-    Stage3::revFlow(node, state, TReturnCtxMaybeFlowThrough(_), _, apf, config) and
-    Stage3::fwdFlow(node, state, any(Stage3::CcCall ccc), _, TAccessPathFrontSome(argApf), apf,
+    Stage4::revFlow(node, state, TReturnCtxMaybeFlowThrough(_), _, apf, config) and
+    Stage4::fwdFlow(node, state, any(Stage4::CcCall ccc), _, TAccessPathFrontSome(argApf), apf,
       config)
   )
 }
@@ -2315,10 +2555,10 @@ private predicate flowCandSummaryCtx(
  */
 private predicate expensiveLen2unfolding(TypedContent tc, Configuration config) {
   exists(int tails, int nodes, int apLimit, int tupleLimit |
-    tails = strictcount(AccessPathFront apf | Stage3::consCand(tc, apf, config)) and
+    tails = strictcount(AccessPathFront apf | Stage4::consCand(tc, apf, config)) and
     nodes =
       strictcount(NodeEx n, FlowState state |
-        Stage3::revFlow(n, state, any(AccessPathFrontHead apf | apf.getHead() = tc), config)
+        Stage4::revFlow(n, state, any(AccessPathFrontHead apf | apf.getHead() = tc), config)
         or
         flowCandSummaryCtx(n, state, any(AccessPathFrontHead apf | apf.getHead() = tc), config)
       ) and
@@ -2332,11 +2572,11 @@ private predicate expensiveLen2unfolding(TypedContent tc, Configuration config)
 private newtype TAccessPathApprox =
   TNil(DataFlowType t) or
   TConsNil(TypedContent tc, DataFlowType t) {
-    Stage3::consCand(tc, TFrontNil(t), _) and
+    Stage4::consCand(tc, TFrontNil(t), _) and
     not expensiveLen2unfolding(tc, _)
   } or
   TConsCons(TypedContent tc1, TypedContent tc2, int len) {
-    Stage3::consCand(tc1, TFrontHead(tc2), _) and
+    Stage4::consCand(tc1, TFrontHead(tc2), _) and
     len in [2 .. accessPathLimit()] and
     not expensiveLen2unfolding(tc1, _)
   } or
@@ -2466,7 +2706,7 @@ private class AccessPathApproxCons1 extends AccessPathApproxCons, TCons1 {
   override AccessPathApprox pop(TypedContent head) {
     head = tc and
     (
-      exists(TypedContent tc2 | Stage3::consCand(tc, TFrontHead(tc2), _) |
+      exists(TypedContent tc2 | Stage4::consCand(tc, TFrontHead(tc2), _) |
         result = TConsCons(tc2, _, len - 1)
         or
         len = 2 and
@@ -2477,7 +2717,7 @@ private class AccessPathApproxCons1 extends AccessPathApproxCons, TCons1 {
       or
       exists(DataFlowType t |
         len = 1 and
-        Stage3::consCand(tc, TFrontNil(t), _) and
+        Stage4::consCand(tc, TFrontNil(t), _) and
         result = TNil(t)
       )
     )
@@ -2502,13 +2742,14 @@ private class AccessPathApproxOption extends TAccessPathApproxOption {
   }
 }
 
-private module Stage4Param implements MkStage<Stage3>::StageParam {
-  private module PrevStage = Stage3;
+private module Stage5Param implements MkStage<Stage4>::StageParam {
+  private module PrevStage = Stage4;
 
   class Ap = AccessPathApprox;
 
   class ApNil = AccessPathApproxNil;
 
+  pragma[nomagic]
   PrevStage::Ap getApprox(Ap ap) { result = ap.getFront() }
 
   ApNil getApNil(NodeEx node) {
@@ -2534,7 +2775,9 @@ private module Stage4Param implements MkStage<Stage3>::StageParam {
     NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
     ApNil ap, Configuration config, LocalCc lcc
   ) {
-    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap.getFront(), config, lcc)
+    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap.getType(), config, lcc) and
+    PrevStage::revFlow(node1, pragma[only_bind_into](state1), _, pragma[only_bind_into](config)) and
+    PrevStage::revFlowAlias(node2, pragma[only_bind_into](state2), _, pragma[only_bind_into](config))
   }
 
   pragma[nomagic]
@@ -2571,7 +2814,7 @@ private module Stage4Param implements MkStage<Stage3>::StageParam {
   predicate typecheckStore(Ap ap, DataFlowType contentType) { any() }
 }
 
-private module Stage4 = MkStage<Stage3>::Stage<Stage4Param>;
+private module Stage5 = MkStage<Stage4>::Stage<Stage5Param>;
 
 bindingset[conf, result]
 private Configuration unbindConf(Configuration conf) {
@@ -2585,8 +2828,8 @@ private predicate nodeMayUseSummary0(
 ) {
   exists(AccessPathApprox apa0 |
     c = n.getEnclosingCallable() and
-    Stage4::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
-    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TParameterPositionSome(pos),
+    Stage5::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
+    Stage5::fwdFlow(n, state, any(CallContextCall ccc), TParameterPositionSome(pos),
       TAccessPathApproxSome(apa), apa0, config)
   )
 }
@@ -2596,7 +2839,7 @@ private predicate nodeMayUseSummary(
   NodeEx n, FlowState state, AccessPathApprox apa, Configuration config
 ) {
   exists(DataFlowCallable c, ParameterPosition pos, ParamNodeEx p |
-    Stage4::parameterMayFlowThrough(p, apa, config) and
+    Stage5::parameterMayFlowThrough(p, apa, config) and
     nodeMayUseSummary0(n, c, pos, state, apa, config) and
     p.isParameterOf(c, pos)
   )
@@ -2606,8 +2849,8 @@ private newtype TSummaryCtx =
   TSummaryCtxNone() or
   TSummaryCtxSome(ParamNodeEx p, FlowState state, AccessPath ap) {
     exists(Configuration config |
-      Stage4::parameterMayFlowThrough(p, ap.getApprox(), config) and
-      Stage4::revFlow(p, state, _, config)
+      Stage5::parameterMayFlowThrough(p, ap.getApprox(), config) and
+      Stage5::revFlow(p, state, _, config)
     )
   }
 
@@ -2656,7 +2899,7 @@ private int count1to2unfold(AccessPathApproxCons1 apa, Configuration config) {
     len = apa.len() and
     result =
       strictcount(AccessPathFront apf |
-        Stage4::consCand(tc, any(AccessPathApprox ap | ap.getFront() = apf and ap.len() = len - 1),
+        Stage5::consCand(tc, any(AccessPathApprox ap | ap.getFront() = apf and ap.len() = len - 1),
           config)
       )
   )
@@ -2665,7 +2908,7 @@ private int count1to2unfold(AccessPathApproxCons1 apa, Configuration config) {
 private int countNodesUsingAccessPath(AccessPathApprox apa, Configuration config) {
   result =
     strictcount(NodeEx n, FlowState state |
-      Stage4::revFlow(n, state, apa, config) or nodeMayUseSummary(n, state, apa, config)
+      Stage5::revFlow(n, state, apa, config) or nodeMayUseSummary(n, state, apa, config)
     )
 }
 
@@ -2686,7 +2929,7 @@ private predicate expensiveLen1to2unfolding(AccessPathApproxCons1 apa, Configura
 private AccessPathApprox getATail(AccessPathApprox apa, Configuration config) {
   exists(TypedContent head |
     apa.pop(head) = result and
-    Stage4::consCand(head, result, config)
+    Stage5::consCand(head, result, config)
   )
 }
 
@@ -2768,7 +3011,7 @@ private newtype TPathNode =
     NodeEx node, FlowState state, CallContext cc, SummaryCtx sc, AccessPath ap, Configuration config
   ) {
     // A PathNode is introduced by a source ...
-    Stage4::revFlow(node, state, config) and
+    Stage5::revFlow(node, state, config) and
     sourceNode(node, state, config) and
     (
       if hasSourceCallCtx(config)
@@ -2782,7 +3025,7 @@ private newtype TPathNode =
     exists(PathNodeMid mid |
       pathStep(mid, node, state, cc, sc, ap) and
       pragma[only_bind_into](config) = mid.getConfiguration() and
-      Stage4::revFlow(node, state, ap.getApprox(), pragma[only_bind_into](config))
+      Stage5::revFlow(node, state, ap.getApprox(), pragma[only_bind_into](config))
     )
   } or
   TPathNodeSink(NodeEx node, FlowState state, Configuration config) {
@@ -2924,7 +3167,7 @@ private class AccessPathCons2 extends AccessPath, TAccessPathCons2 {
   override TypedContent getHead() { result = head1 }
 
   override AccessPath getTail() {
-    Stage4::consCand(head1, result.getApprox(), _) and
+    Stage5::consCand(head1, result.getApprox(), _) and
     result.getHead() = head2 and
     result.length() = len - 1
   }
@@ -2955,7 +3198,7 @@ private class AccessPathCons1 extends AccessPath, TAccessPathCons1 {
   override TypedContent getHead() { result = head }
 
   override AccessPath getTail() {
-    Stage4::consCand(head, result.getApprox(), _) and result.length() = len - 1
+    Stage5::consCand(head, result.getApprox(), _) and result.length() = len - 1
   }
 
   override AccessPathFrontHead getFront() { result = TFrontHead(head) }
@@ -3347,7 +3590,8 @@ private predicate pathStep(
     AccessPath ap0, NodeEx midnode, FlowState state0, Configuration conf, LocalCallContext localCC
   |
     pathNode(mid, midnode, state0, cc, sc, ap0, conf, localCC) and
-    localFlowBigStep(midnode, state0, node, state, false, ap.getFront(), conf, localCC) and
+    localFlowBigStep(midnode, state0, node, state, false, ap.(AccessPathNil).getType(), conf,
+      localCC) and
     ap0 instanceof AccessPathNil
   )
   or
@@ -3389,7 +3633,7 @@ private predicate pathReadStep(
 ) {
   ap0 = mid.getAp() and
   tc = ap0.getHead() and
-  Stage4::readStepCand(mid.getNodeEx(), tc.getContent(), node, mid.getConfiguration()) and
+  Stage5::readStepCand(mid.getNodeEx(), tc.getContent(), node, mid.getConfiguration()) and
   state = mid.getState() and
   cc = mid.getCallContext()
 }
@@ -3399,7 +3643,7 @@ private predicate pathStoreStep(
   PathNodeMid mid, NodeEx node, FlowState state, AccessPath ap0, TypedContent tc, CallContext cc
 ) {
   ap0 = mid.getAp() and
-  Stage4::storeStepCand(mid.getNodeEx(), _, tc, node, _, mid.getConfiguration()) and
+  Stage5::storeStepCand(mid.getNodeEx(), _, tc, node, _, mid.getConfiguration()) and
   state = mid.getState() and
   cc = mid.getCallContext()
 }
@@ -3436,7 +3680,7 @@ private NodeEx getAnOutNodeFlow(
   ReturnKindExt kind, DataFlowCall call, AccessPathApprox apa, Configuration config
 ) {
   result.asNode() = kind.getAnOutNode(call) and
-  Stage4::revFlow(result, _, apa, config)
+  Stage5::revFlow(result, _, apa, config)
 }
 
 /**
@@ -3472,7 +3716,7 @@ private predicate parameterCand(
   DataFlowCallable callable, ParameterPosition pos, AccessPathApprox apa, Configuration config
 ) {
   exists(ParamNodeEx p |
-    Stage4::revFlow(p, _, apa, config) and
+    Stage5::revFlow(p, _, apa, config) and
     p.isParameterOf(callable, pos)
   )
 }
@@ -3751,9 +3995,17 @@ predicate stageStats(
   n = 45 and
   Stage4::stats(false, nodes, fields, conscand, states, tuples, config)
   or
-  stage = "5 Fwd" and n = 50 and finalStats(true, nodes, fields, conscand, states, tuples)
+  stage = "5 Fwd" and
+  n = 50 and
+  Stage5::stats(true, nodes, fields, conscand, states, tuples, config)
   or
-  stage = "5 Rev" and n = 55 and finalStats(false, nodes, fields, conscand, states, tuples)
+  stage = "5 Rev" and
+  n = 55 and
+  Stage5::stats(false, nodes, fields, conscand, states, tuples, config)
+  or
+  stage = "6 Fwd" and n = 60 and finalStats(true, nodes, fields, conscand, states, tuples)
+  or
+  stage = "6 Rev" and n = 65 and finalStats(false, nodes, fields, conscand, states, tuples)
 }
 
 private module FlowExploration {
diff --git a/cpp/ql/lib/semmle/code/cpp/ir/dataflow/internal/DataFlowImplCommon.qll b/cpp/ql/lib/semmle/code/cpp/ir/dataflow/internal/DataFlowImplCommon.qll
index f981834a6d4..c66aefced8d 100644
--- a/cpp/ql/lib/semmle/code/cpp/ir/dataflow/internal/DataFlowImplCommon.qll
+++ b/cpp/ql/lib/semmle/code/cpp/ir/dataflow/internal/DataFlowImplCommon.qll
@@ -926,18 +926,46 @@ private module Cached {
     TReturnCtxNoFlowThrough() or
     TReturnCtxMaybeFlowThrough(ReturnKindExt kind)
 
+  cached
+  newtype TTypedContentApprox =
+    MkTypedContentApprox(ContentApprox c, DataFlowType t) {
+      exists(Content cont |
+        c = getContentApprox(cont) and
+        store(_, cont, _, _, t)
+      )
+    }
+
   cached
   newtype TTypedContent = MkTypedContent(Content c, DataFlowType t) { store(_, c, _, _, t) }
 
+  cached
+  TypedContent getATypedContent(TypedContentApprox c) {
+    exists(ContentApprox cls, DataFlowType t, Content cont |
+      c = MkTypedContentApprox(cls, pragma[only_bind_into](t)) and
+      result = MkTypedContent(cont, pragma[only_bind_into](t)) and
+      cls = getContentApprox(cont)
+    )
+  }
+
   cached
   newtype TAccessPathFront =
     TFrontNil(DataFlowType t) or
     TFrontHead(TypedContent tc)
 
+  cached
+  newtype TApproxAccessPathFront =
+    TApproxFrontNil(DataFlowType t) or
+    TApproxFrontHead(TypedContentApprox tc)
+
   cached
   newtype TAccessPathFrontOption =
     TAccessPathFrontNone() or
     TAccessPathFrontSome(AccessPathFront apf)
+
+  cached
+  newtype TApproxAccessPathFrontOption =
+    TApproxAccessPathFrontNone() or
+    TApproxAccessPathFrontSome(ApproxAccessPathFront apf)
 }
 
 /**
@@ -1353,6 +1381,75 @@ class ReturnCtx extends TReturnCtx {
   }
 }
 
+/** An approximated `Content` tagged with the type of a containing object. */
+class TypedContentApprox extends MkTypedContentApprox {
+  private ContentApprox c;
+  private DataFlowType t;
+
+  TypedContentApprox() { this = MkTypedContentApprox(c, t) }
+
+  /** Gets a typed content approximated by this value. */
+  TypedContent getATypedContent() { result = getATypedContent(this) }
+
+  /** Gets the container type. */
+  DataFlowType getContainerType() { result = t }
+
+  /** Gets a textual representation of this approximated content. */
+  string toString() { result = c.toString() }
+}
+
+/**
+ * The front of an approximated access path. This is either a head or a nil.
+ */
+abstract class ApproxAccessPathFront extends TApproxAccessPathFront {
+  abstract string toString();
+
+  abstract DataFlowType getType();
+
+  abstract boolean toBoolNonEmpty();
+
+  pragma[nomagic]
+  TypedContent getAHead() {
+    exists(TypedContentApprox cont |
+      this = TApproxFrontHead(cont) and
+      result = cont.getATypedContent()
+    )
+  }
+}
+
+class ApproxAccessPathFrontNil extends ApproxAccessPathFront, TApproxFrontNil {
+  private DataFlowType t;
+
+  ApproxAccessPathFrontNil() { this = TApproxFrontNil(t) }
+
+  override string toString() { result = ppReprType(t) }
+
+  override DataFlowType getType() { result = t }
+
+  override boolean toBoolNonEmpty() { result = false }
+}
+
+class ApproxAccessPathFrontHead extends ApproxAccessPathFront, TApproxFrontHead {
+  private TypedContentApprox tc;
+
+  ApproxAccessPathFrontHead() { this = TApproxFrontHead(tc) }
+
+  override string toString() { result = tc.toString() }
+
+  override DataFlowType getType() { result = tc.getContainerType() }
+
+  override boolean toBoolNonEmpty() { result = true }
+}
+
+/** An optional approximated access path front. */
+class ApproxAccessPathFrontOption extends TApproxAccessPathFrontOption {
+  string toString() {
+    this = TApproxAccessPathFrontNone() and result = "<none>"
+    or
+    this = TApproxAccessPathFrontSome(any(ApproxAccessPathFront apf | result = apf.toString()))
+  }
+}
+
 /** A `Content` tagged with the type of a containing object. */
 class TypedContent extends MkTypedContent {
   private Content c;
@@ -1385,7 +1482,7 @@ abstract class AccessPathFront extends TAccessPathFront {
 
   abstract DataFlowType getType();
 
-  abstract boolean toBoolNonEmpty();
+  abstract ApproxAccessPathFront toApprox();
 
   TypedContent getHead() { this = TFrontHead(result) }
 }
@@ -1399,7 +1496,7 @@ class AccessPathFrontNil extends AccessPathFront, TFrontNil {
 
   override DataFlowType getType() { result = t }
 
-  override boolean toBoolNonEmpty() { result = false }
+  override ApproxAccessPathFront toApprox() { result = TApproxFrontNil(t) }
 }
 
 class AccessPathFrontHead extends AccessPathFront, TFrontHead {
@@ -1411,7 +1508,7 @@ class AccessPathFrontHead extends AccessPathFront, TFrontHead {
 
   override DataFlowType getType() { result = tc.getContainerType() }
 
-  override boolean toBoolNonEmpty() { result = true }
+  override ApproxAccessPathFront toApprox() { result.getAHead() = tc }
 }
 
 /** An optional access path front. */
diff --git a/cpp/ql/lib/semmle/code/cpp/ir/dataflow/internal/DataFlowImplConsistency.qll b/cpp/ql/lib/semmle/code/cpp/ir/dataflow/internal/DataFlowImplConsistency.qll
index 3eacc21f356..e85e0cd92ec 100644
--- a/cpp/ql/lib/semmle/code/cpp/ir/dataflow/internal/DataFlowImplConsistency.qll
+++ b/cpp/ql/lib/semmle/code/cpp/ir/dataflow/internal/DataFlowImplConsistency.qll
@@ -260,4 +260,9 @@ module Consistency {
     not exists(unique(ParameterPosition pos0 | isParameterNode(p, c, pos0))) and
     msg = "Parameter node with multiple positions."
   }
+
+  query predicate uniqueContentApprox(Content c, string msg) {
+    not exists(unique(ContentApprox approx | approx = getContentApprox(c))) and
+    msg = "Non-unique content approximation."
+  }
 }
diff --git a/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImpl.qll b/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImpl.qll
index ccde916a3c2..6741ccc2f06 100644
--- a/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImpl.qll
+++ b/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImpl.qll
@@ -621,23 +621,6 @@ private predicate parameterFlowThroughAllowed(ParamNodeEx p, ReturnKindExt kind)
   )
 }
 
-/**
- * Holds if flow from a parameter at position `pos` inside `c` to a return node of
- * kind `kind` is allowed.
- *
- * We don't expect a parameter to return stored in itself, unless
- * explicitly allowed
- */
-bindingset[c, pos, kind]
-private predicate parameterFlowThroughAllowed(
-  DataFlowCallable c, ParameterPosition pos, ReturnKindExt kind
-) {
-  exists(ParamNodeEx p |
-    p.isParameterOf(c, pos) and
-    parameterFlowThroughAllowed(p, kind)
-  )
-}
-
 private module Stage1 implements StageSig {
   class Ap = Unit;
 
@@ -980,6 +963,12 @@ private module Stage1 implements StageSig {
   pragma[nomagic]
   predicate revFlow(NodeEx node, Configuration config) { revFlow(node, _, config) }
 
+  pragma[nomagic]
+  predicate revFlowAp(NodeEx node, Ap ap, Configuration config) {
+    revFlow(node, config) and
+    exists(ap)
+  }
+
   bindingset[node, state, config]
   predicate revFlow(NodeEx node, FlowState state, Ap ap, Configuration config) {
     revFlow(node, _, pragma[only_bind_into](config)) and
@@ -1022,9 +1011,13 @@ private module Stage1 implements StageSig {
   }
 
   pragma[nomagic]
-  predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config) {
+  predicate returnMayFlowThrough(
+    RetNodeEx ret, Ap argAp, Ap ap, ReturnKindExt kind, Configuration config
+  ) {
     throughFlowNodeCand(ret, config) and
-    kind = ret.getKind()
+    kind = ret.getKind() and
+    exists(argAp) and
+    exists(ap)
   }
 
   pragma[nomagic]
@@ -1189,6 +1182,8 @@ private signature module StageSig {
 
   predicate revFlow(NodeEx node, Configuration config);
 
+  predicate revFlowAp(NodeEx node, Ap ap, Configuration config);
+
   bindingset[node, state, config]
   predicate revFlow(NodeEx node, FlowState state, Ap ap, Configuration config);
 
@@ -1196,7 +1191,9 @@ private signature module StageSig {
 
   predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config);
 
-  predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config);
+  predicate returnMayFlowThrough(
+    RetNodeEx ret, Ap argAp, Ap ap, ReturnKindExt kind, Configuration config
+  );
 
   predicate storeStepCand(
     NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, DataFlowType contentType,
@@ -1281,21 +1278,43 @@ private module MkStage<StageSig PrevStage> {
     import Param
 
     /* Begin: Stage logic. */
-    bindingset[result, apa]
-    private ApApprox unbindApa(ApApprox apa) {
-      pragma[only_bind_out](apa) = pragma[only_bind_out](result)
+    // use an alias as a workaround for bad functionality-induced joins
+    pragma[nomagic]
+    private predicate revFlowApAlias(NodeEx node, ApApprox apa, Configuration config) {
+      PrevStage::revFlowAp(node, apa, config)
+    }
+
+    pragma[nomagic]
+    private predicate flowIntoCallApa(
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, ApApprox apa,
+      Configuration config
+    ) {
+      flowIntoCall(call, arg, p, allowsFieldFlow, config) and
+      PrevStage::revFlowAp(p, pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
+      revFlowApAlias(arg, pragma[only_bind_into](apa), pragma[only_bind_into](config))
+    }
+
+    pragma[nomagic]
+    private predicate flowOutOfCallApa(
+      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
+      ApApprox apa, Configuration config
+    ) {
+      flowOutOfCall(call, ret, kind, out, allowsFieldFlow, config) and
+      PrevStage::revFlowAp(out, pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
+      revFlowApAlias(ret, pragma[only_bind_into](apa), pragma[only_bind_into](config))
     }
 
     pragma[nomagic]
     private predicate flowThroughOutOfCall(
-      DataFlowCall call, DataFlowCallable c, CcCall ccc, RetNodeEx ret, ReturnKindExt kind,
-      NodeEx out, boolean allowsFieldFlow, Configuration config
+      DataFlowCall call, CcCall ccc, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow,
+      ApApprox argApa, ApApprox apa, Configuration config
     ) {
-      flowOutOfCall(call, ret, kind, out, allowsFieldFlow, pragma[only_bind_into](config)) and
-      PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
-      PrevStage::returnMayFlowThrough(ret, kind, pragma[only_bind_into](config)) and
-      matchesCall(ccc, call) and
-      c = ret.getEnclosingCallable()
+      exists(ReturnKindExt kind |
+        flowOutOfCallApa(call, ret, kind, out, allowsFieldFlow, apa, pragma[only_bind_into](config)) and
+        PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
+        PrevStage::returnMayFlowThrough(ret, argApa, apa, kind, pragma[only_bind_into](config)) and
+        matchesCall(ccc, call)
+      )
     }
 
     /**
@@ -1307,39 +1326,50 @@ private module MkStage<StageSig PrevStage> {
      * corresponding parameter position and access path of that argument, respectively.
      */
     pragma[nomagic]
+    additional predicate fwdFlow(
+      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      Ap ap, ApApprox apa, Configuration config
+    ) {
+      fwdFlow0(node, state, cc, summaryCtx, argAp, ap, apa, config) and
+      PrevStage::revFlow(node, state, apa, config) and
+      filter(node, state, ap, config)
+    }
+
+    pragma[inline]
     additional predicate fwdFlow(
       NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
       Ap ap, Configuration config
     ) {
-      fwdFlow0(node, state, cc, summaryCtx, argAp, ap, config) and
-      PrevStage::revFlow(node, state, unbindApa(getApprox(ap)), config) and
-      filter(node, state, ap, config)
+      fwdFlow(node, state, cc, summaryCtx, argAp, ap, _, config)
     }
 
     pragma[nomagic]
     private predicate fwdFlow0(
       NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      Ap ap, Configuration config
+      Ap ap, ApApprox apa, Configuration config
     ) {
       sourceNode(node, state, config) and
       (if hasSourceCallCtx(config) then cc = ccSomeCall() else cc = ccNone()) and
       argAp = apNone() and
       summaryCtx = TParameterPositionNone() and
-      ap = getApNil(node)
+      ap = getApNil(node) and
+      apa = getApprox(ap)
       or
-      exists(NodeEx mid, FlowState state0, Ap ap0, LocalCc localCc |
-        fwdFlow(mid, state0, cc, summaryCtx, argAp, ap0, config) and
+      exists(NodeEx mid, FlowState state0, Ap ap0, ApApprox apa0, LocalCc localCc |
+        fwdFlow(mid, state0, cc, summaryCtx, argAp, ap0, apa0, config) and
         localCc = getLocalCc(mid, cc)
       |
         localStep(mid, state0, node, state, true, _, config, localCc) and
-        ap = ap0
+        ap = ap0 and
+        apa = apa0
         or
         localStep(mid, state0, node, state, false, ap, config, localCc) and
-        ap0 instanceof ApNil
+        ap0 instanceof ApNil and
+        apa = getApprox(ap)
       )
       or
       exists(NodeEx mid |
-        fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, apa, pragma[only_bind_into](config)) and
         jumpStep(mid, node, config) and
         cc = ccNone() and
         summaryCtx = TParameterPositionNone() and
@@ -1352,7 +1382,8 @@ private module MkStage<StageSig PrevStage> {
         cc = ccNone() and
         summaryCtx = TParameterPositionNone() and
         argAp = apNone() and
-        ap = getApNil(node)
+        ap = getApNil(node) and
+        apa = getApprox(ap)
       )
       or
       exists(NodeEx mid, FlowState state0, ApNil nil |
@@ -1361,32 +1392,32 @@ private module MkStage<StageSig PrevStage> {
         cc = ccNone() and
         summaryCtx = TParameterPositionNone() and
         argAp = apNone() and
-        ap = getApNil(node)
+        ap = getApNil(node) and
+        apa = getApprox(ap)
       )
       or
       // store
       exists(TypedContent tc, Ap ap0 |
         fwdFlowStore(_, ap0, tc, node, state, cc, summaryCtx, argAp, config) and
-        ap = apCons(tc, ap0)
+        ap = apCons(tc, ap0) and
+        apa = getApprox(ap)
       )
       or
       // read
       exists(Ap ap0, Content c |
         fwdFlowRead(ap0, c, _, node, state, cc, summaryCtx, argAp, config) and
-        fwdFlowConsCand(ap0, c, ap, config)
+        fwdFlowConsCand(ap0, c, ap, config) and
+        apa = getApprox(ap)
       )
       or
       // flow into a callable
-      exists(ApApprox apa |
-        fwdFlowIn(_, node, state, _, cc, _, _, ap, config) and
-        apa = getApprox(ap) and
-        if PrevStage::parameterMayFlowThrough(node, apa, config)
-        then (
-          summaryCtx = TParameterPositionSome(node.(ParamNodeEx).getPosition()) and
-          argAp = apSome(ap)
-        ) else (
-          summaryCtx = TParameterPositionNone() and argAp = apNone()
-        )
+      fwdFlowIn(_, node, state, _, cc, _, _, ap, apa, config) and
+      if PrevStage::parameterMayFlowThrough(node, apa, config)
+      then (
+        summaryCtx = TParameterPositionSome(node.(ParamNodeEx).getPosition()) and
+        argAp = apSome(ap)
+      ) else (
+        summaryCtx = TParameterPositionNone() and argAp = apNone()
       )
       or
       // flow out of a callable
@@ -1394,8 +1425,8 @@ private module MkStage<StageSig PrevStage> {
         DataFlowCall call, RetNodeEx ret, boolean allowsFieldFlow, CcNoCall innercc,
         DataFlowCallable inner
       |
-        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, config) and
-        flowOutOfCall(call, ret, _, node, allowsFieldFlow, config) and
+        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, apa, config) and
+        flowOutOfCallApa(call, ret, _, node, allowsFieldFlow, apa, config) and
         inner = ret.getEnclosingCallable() and
         cc = getCallContextReturn(inner, call, innercc) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
@@ -1403,7 +1434,7 @@ private module MkStage<StageSig PrevStage> {
       or
       // flow through a callable
       exists(DataFlowCall call, ParameterPosition summaryCtx0, Ap argAp0 |
-        fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, config) and
+        fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, apa, config) and
         fwdFlowIsEntered(call, cc, summaryCtx, argAp, summaryCtx0, argAp0, config)
       )
     }
@@ -1413,9 +1444,9 @@ private module MkStage<StageSig PrevStage> {
       NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc,
       ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
     ) {
-      exists(DataFlowType contentType |
-        fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, config) and
-        PrevStage::storeStepCand(node1, unbindApa(getApprox(ap1)), tc, node2, contentType, config) and
+      exists(DataFlowType contentType, ApApprox apa1 |
+        fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, apa1, config) and
+        PrevStage::storeStepCand(node1, apa1, tc, node2, contentType, config) and
         typecheckStore(ap1, contentType)
       )
     }
@@ -1433,43 +1464,104 @@ private module MkStage<StageSig PrevStage> {
       )
     }
 
+    private class ApNonNil instanceof Ap {
+      pragma[nomagic]
+      ApNonNil() { not this instanceof ApNil }
+
+      string toString() { result = "" }
+    }
+
+    pragma[nomagic]
+    private predicate fwdFlowRead0(
+      NodeEx node1, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      ApNonNil ap, Configuration config
+    ) {
+      fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
+      PrevStage::readStepCand(node1, _, _, config)
+    }
+
     pragma[nomagic]
     private predicate fwdFlowRead(
       Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc,
       ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
     ) {
-      fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
+      fwdFlowRead0(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, c, node2, config) and
       getHeadContent(ap) = c
     }
 
     pragma[nomagic]
     private predicate fwdFlowIn(
-      DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, Cc innercc,
-      ParameterPositionOption summaryCtx, ApOption argAp, Ap ap, Configuration config
+      DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, CcCall innercc,
+      ParameterPositionOption summaryCtx, ApOption argAp, Ap ap, ApApprox apa, Configuration config
     ) {
       exists(ArgNodeEx arg, boolean allowsFieldFlow |
-        fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, config) and
-        flowIntoCall(call, arg, p, allowsFieldFlow, config) and
+        fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, apa, config) and
+        flowIntoCallApa(call, arg, p, allowsFieldFlow, apa, config) and
         innercc = getCallContextCall(call, p.getEnclosingCallable(), outercc) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
+    pragma[nomagic]
+    private predicate fwdFlowRetFromArg(
+      RetNodeEx ret, FlowState state, CcCall ccc, ParameterPosition summaryCtx, ParamNodeEx p,
+      Ap argAp, ApApprox argApa, Ap ap, ApApprox apa, Configuration config
+    ) {
+      exists(DataFlowCallable c, ReturnKindExt kind |
+        fwdFlow(pragma[only_bind_into](ret), state, ccc,
+          TParameterPositionSome(pragma[only_bind_into](summaryCtx)), apSome(argAp), ap, apa, config) and
+        getApprox(argAp) = argApa and
+        c = ret.getEnclosingCallable() and
+        kind = ret.getKind() and
+        p.isParameterOf(c, pragma[only_bind_into](summaryCtx)) and
+        parameterFlowThroughAllowed(p, kind)
+      )
+    }
+
+    pragma[inline]
+    private predicate fwdFlowInMayFlowThrough(
+      DataFlowCall call, Cc cc, CcCall innerCc, ParameterPositionOption summaryCtx, ApOption argAp,
+      ParamNodeEx param, Ap ap, ApApprox apa, Configuration config
+    ) {
+      fwdFlowIn(call, pragma[only_bind_into](param), _, cc, innerCc, summaryCtx, argAp, ap,
+        pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
+      PrevStage::parameterMayFlowThrough(param, apa, config)
+    }
+
+    // dedup before joining with `flowThroughOutOfCall`
+    pragma[nomagic]
+    private predicate fwdFlowInMayFlowThroughProj(
+      DataFlowCall call, CcCall innerCc, ApApprox apa, Configuration config
+    ) {
+      fwdFlowInMayFlowThrough(call, _, innerCc, _, _, _, _, apa, config)
+    }
+
+    /**
+     * Same as `flowThroughOutOfCall`, but restricted to calls that are reached
+     * in the flow covered by `fwdFlow`, where data might flow through the target
+     * callable and back out at `call`.
+     */
+    pragma[nomagic]
+    private predicate fwdFlowThroughOutOfCall(
+      DataFlowCall call, CcCall ccc, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow,
+      ApApprox argApa, ApApprox apa, Configuration config
+    ) {
+      fwdFlowInMayFlowThroughProj(call, ccc, argApa, config) and
+      flowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, argApa, apa, config)
+    }
+
     pragma[nomagic]
     private predicate fwdFlowOutFromArg(
       DataFlowCall call, NodeEx out, FlowState state, ParameterPosition summaryCtx, Ap argAp, Ap ap,
-      Configuration config
+      ApApprox apa, Configuration config
     ) {
-      exists(
-        DataFlowCallable c, RetNodeEx ret, ReturnKindExt kind, boolean allowsFieldFlow, CcCall ccc
-      |
-        fwdFlow(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc),
-          TParameterPositionSome(pragma[only_bind_into](summaryCtx)), apSome(argAp), ap, config) and
-        flowThroughOutOfCall(call, pragma[only_bind_into](c), ccc, ret, kind, out, allowsFieldFlow,
+      exists(RetNodeEx ret, boolean allowsFieldFlow, CcCall ccc, ApApprox argApa |
+        fwdFlowRetFromArg(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc),
+          summaryCtx, _, argAp, pragma[only_bind_into](argApa), ap, pragma[only_bind_into](apa),
           config) and
-        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
-        parameterFlowThroughAllowed(c, pragma[only_bind_into](summaryCtx), kind)
+        fwdFlowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, argApa, apa, config) and
+        (if allowsFieldFlow = false then ap instanceof ApNil else any())
       )
     }
 
@@ -1483,8 +1575,7 @@ private module MkStage<StageSig PrevStage> {
       ParameterPosition pos, Ap ap, Configuration config
     ) {
       exists(ParamNodeEx param |
-        fwdFlowIn(call, param, _, cc, _, summaryCtx, argAp, ap, config) and
-        PrevStage::parameterMayFlowThrough(param, unbindApa(getApprox(ap)), config) and
+        fwdFlowInMayFlowThrough(call, cc, _, summaryCtx, argAp, param, ap, _, config) and
         pos = param.getPosition()
       )
     }
@@ -1505,41 +1596,55 @@ private module MkStage<StageSig PrevStage> {
       fwdFlowConsCand(ap1, c, ap2, config)
     }
 
-    pragma[nomagic]
-    private predicate returnFlowsThrough0(
-      RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, DataFlowCallable c,
-      ParameterPosition ppos, Ap argAp, Ap ap, Configuration config
-    ) {
-      exists(boolean allowsFieldFlow |
-        fwdFlow(ret, state, ccc, TParameterPositionSome(ppos), apSome(argAp), ap, config) and
-        flowThroughOutOfCall(_, c, _, pragma[only_bind_into](ret), kind, _, allowsFieldFlow,
-          pragma[only_bind_into](config)) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
-      )
-    }
-
     pragma[nomagic]
     private predicate returnFlowsThrough(
       RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, ParamNodeEx p, Ap argAp,
       Ap ap, Configuration config
     ) {
-      exists(DataFlowCallable c, ParameterPosition ppos |
-        returnFlowsThrough0(ret, kind, state, ccc, c, ppos, argAp, ap, config) and
-        p.isParameterOf(c, ppos) and
-        parameterFlowThroughAllowed(p, kind)
+      exists(boolean allowsFieldFlow, ApApprox argApa, ApApprox apa |
+        fwdFlowRetFromArg(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc), _, p,
+          argAp, pragma[only_bind_into](argApa), ap, pragma[only_bind_into](apa), config) and
+        kind = ret.getKind() and
+        fwdFlowThroughOutOfCall(_, ccc, ret, _, allowsFieldFlow, argApa, apa, config) and
+        (if allowsFieldFlow = false then ap instanceof ApNil else any())
       )
     }
 
     pragma[nomagic]
     private predicate flowThroughIntoCall(
-      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp,
+      Configuration config
     ) {
-      exists(Ap argAp |
-        flowIntoCall(call, pragma[only_bind_into](arg), pragma[only_bind_into](p), allowsFieldFlow,
+      exists(ApApprox argApa |
+        flowIntoCallApa(call, pragma[only_bind_into](arg), pragma[only_bind_into](p),
+          allowsFieldFlow, argApa, pragma[only_bind_into](config)) and
+        fwdFlow(arg, _, _, _, _, pragma[only_bind_into](argAp), argApa,
           pragma[only_bind_into](config)) and
-        fwdFlow(arg, _, _, _, _, pragma[only_bind_into](argAp), pragma[only_bind_into](config)) and
         returnFlowsThrough(_, _, _, _, p, pragma[only_bind_into](argAp), _,
-          pragma[only_bind_into](config))
+          pragma[only_bind_into](config)) and
+        if allowsFieldFlow = false then argAp instanceof ApNil else any()
+      )
+    }
+
+    pragma[nomagic]
+    private predicate flowIntoCallAp(
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap ap,
+      Configuration config
+    ) {
+      exists(ApApprox apa |
+        flowIntoCallApa(call, arg, p, allowsFieldFlow, apa, config) and
+        fwdFlow(arg, _, _, _, _, ap, apa, config)
+      )
+    }
+
+    pragma[nomagic]
+    private predicate flowOutOfCallAp(
+      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
+      Ap ap, Configuration config
+    ) {
+      exists(ApApprox apa |
+        flowOutOfCallApa(call, ret, kind, out, allowsFieldFlow, apa, config) and
+        fwdFlow(ret, _, _, _, _, ap, apa, config)
       )
     }
 
@@ -1628,7 +1733,7 @@ private module MkStage<StageSig PrevStage> {
       // flow into a callable
       exists(ParamNodeEx p, boolean allowsFieldFlow |
         revFlow(p, state, TReturnCtxNone(), returnAp, ap, config) and
-        flowIntoCall(_, node, p, allowsFieldFlow, config) and
+        flowIntoCallAp(_, node, p, allowsFieldFlow, ap, config) and
         (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
         returnCtx = TReturnCtxNone()
       )
@@ -1682,22 +1787,41 @@ private module MkStage<StageSig PrevStage> {
     ) {
       exists(NodeEx out, boolean allowsFieldFlow |
         revFlow(out, state, returnCtx, returnAp, ap, config) and
-        flowOutOfCall(call, ret, kind, out, allowsFieldFlow, config) and
+        flowOutOfCallAp(call, ret, kind, out, allowsFieldFlow, ap, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
+    /**
+     * Same as `flowThroughIntoCall`, but restricted to calls that are reached
+     * in the flow covered by `revFlow`, where data might flow through the target
+     * callable and back out at `call`.
+     */
+    pragma[nomagic]
+    private predicate revFlowThroughIntoCall(
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp,
+      Configuration config
+    ) {
+      flowThroughIntoCall(call, arg, p, allowsFieldFlow, argAp, config) and
+      revFlowIsReturned(call, _, _, _, _, config)
+    }
+
+    pragma[nomagic]
+    private predicate revFlowParamToReturn(
+      ParamNodeEx p, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap, Configuration config
+    ) {
+      revFlow(p, state, TReturnCtxMaybeFlowThrough(kind), apSome(returnAp), ap, config) and
+      parameterFlowThroughAllowed(p, kind)
+    }
+
     pragma[nomagic]
     private predicate revFlowInToReturn(
       DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap,
       Configuration config
     ) {
       exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(pragma[only_bind_into](p), state,
-          TReturnCtxMaybeFlowThrough(pragma[only_bind_into](kind)), apSome(returnAp), ap, config) and
-        flowThroughIntoCall(call, arg, p, allowsFieldFlow, config) and
-        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
-        parameterFlowThroughAllowed(p, kind)
+        revFlowParamToReturn(p, state, kind, returnAp, ap, config) and
+        revFlowThroughIntoCall(call, arg, p, allowsFieldFlow, ap, config)
       )
     }
 
@@ -1750,6 +1874,11 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     predicate revFlow(NodeEx node, Configuration config) { revFlow(node, _, _, _, _, config) }
 
+    pragma[nomagic]
+    predicate revFlowAp(NodeEx node, Ap ap, Configuration config) {
+      revFlow(node, _, _, _, ap, config)
+    }
+
     // use an alias as a workaround for bad functionality-induced joins
     pragma[nomagic]
     additional predicate revFlowAlias(NodeEx node, Configuration config) {
@@ -1786,9 +1915,9 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate parameterFlowsThroughRev(
-      ParamNodeEx p, Ap ap, ReturnKindExt kind, Configuration config
+      ParamNodeEx p, Ap ap, ReturnKindExt kind, Ap returnAp, Configuration config
     ) {
-      revFlow(p, _, TReturnCtxMaybeFlowThrough(kind), apSome(_), ap, config) and
+      revFlow(p, _, TReturnCtxMaybeFlowThrough(kind), apSome(returnAp), ap, config) and
       parameterFlowThroughAllowed(p, kind)
     }
 
@@ -1796,27 +1925,36 @@ private module MkStage<StageSig PrevStage> {
     predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
       exists(RetNodeEx ret, ReturnKindExt kind |
         returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
-        parameterFlowsThroughRev(p, ap, kind, config)
+        parameterFlowsThroughRev(p, ap, kind, _, config)
       )
     }
 
     pragma[nomagic]
-    predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config) {
-      exists(ParamNodeEx p, Ap ap |
-        returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
-        parameterFlowsThroughRev(p, ap, kind, config)
+    predicate returnMayFlowThrough(
+      RetNodeEx ret, Ap argAp, Ap ap, ReturnKindExt kind, Configuration config
+    ) {
+      exists(ParamNodeEx p |
+        returnFlowsThrough(ret, kind, _, _, p, argAp, ap, config) and
+        parameterFlowsThroughRev(p, argAp, kind, ap, config)
+      )
+    }
+
+    pragma[nomagic]
+    predicate revFlowInToReturnIsReturned(
+      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnCtx returnCtx, ApOption returnAp,
+      Ap ap, Configuration config
+    ) {
+      exists(ReturnKindExt returnKind0, Ap returnAp0 |
+        revFlowInToReturn(call, arg, state, returnKind0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
       )
     }
 
     pragma[nomagic]
     predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
-      exists(
-        ReturnKindExt returnKind0, Ap returnAp0, ArgNodeEx arg, FlowState state,
-        ReturnCtx returnCtx, ApOption returnAp, Ap ap
-      |
+      exists(ArgNodeEx arg, FlowState state, ReturnCtx returnCtx, ApOption returnAp, Ap ap |
         revFlow(arg, state, returnCtx, returnAp, ap, config) and
-        revFlowInToReturn(call, arg, state, returnKind0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
+        revFlowInToReturnIsReturned(call, arg, state, returnCtx, returnAp, ap, config)
       )
     }
 
@@ -2179,16 +2317,16 @@ private module LocalFlowBigStep {
   pragma[nomagic]
   predicate localFlowBigStep(
     NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
-    AccessPathFrontNil apf, Configuration config, LocalCallContext callContext
+    DataFlowType t, Configuration config, LocalCallContext callContext
   ) {
-    localFlowStepPlus(node1, state1, node2, preservesValue, apf.getType(), config, callContext) and
+    localFlowStepPlus(node1, state1, node2, preservesValue, t, config, callContext) and
     localFlowExit(node2, state1, config) and
     state1 = state2
     or
     additionalLocalFlowStepNodeCand2(node1, state1, node2, state2, config) and
     state1 != state2 and
     preservesValue = false and
-    apf = TFrontNil(node2.getDataFlowType()) and
+    t = node2.getDataFlowType() and
     callContext.relevantFor(node1.getEnclosingCallable()) and
     not exists(DataFlowCall call | call = callContext.(LocalCallContextSpecificCall).getCall() |
       isUnreachableInCallCached(node1.asNode(), call) or
@@ -2202,11 +2340,87 @@ private import LocalFlowBigStep
 private module Stage3Param implements MkStage<Stage2>::StageParam {
   private module PrevStage = Stage2;
 
+  class Ap = ApproxAccessPathFront;
+
+  class ApNil = ApproxAccessPathFrontNil;
+
+  PrevStage::Ap getApprox(Ap ap) { result = ap.toBoolNonEmpty() }
+
+  ApNil getApNil(NodeEx node) {
+    PrevStage::revFlow(node, _) and result = TApproxFrontNil(node.getDataFlowType())
+  }
+
+  bindingset[tc, tail]
+  Ap apCons(TypedContent tc, Ap tail) { result.getAHead() = tc and exists(tail) }
+
+  pragma[noinline]
+  Content getHeadContent(Ap ap) { result = ap.getAHead().getContent() }
+
+  class ApOption = ApproxAccessPathFrontOption;
+
+  ApOption apNone() { result = TApproxAccessPathFrontNone() }
+
+  ApOption apSome(Ap ap) { result = TApproxAccessPathFrontSome(ap) }
+
+  import BooleanCallContext
+
+  predicate localStep(
+    NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
+    ApproxAccessPathFrontNil ap, Configuration config, LocalCc lcc
+  ) {
+    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap.getType(), config, _) and
+    exists(lcc)
+  }
+
+  predicate flowOutOfCall = flowOutOfCallNodeCand2/6;
+
+  predicate flowIntoCall = flowIntoCallNodeCand2/5;
+
+  pragma[nomagic]
+  private predicate expectsContentCand(NodeEx node, Ap ap, Configuration config) {
+    exists(Content c |
+      PrevStage::revFlow(node, pragma[only_bind_into](config)) and
+      PrevStage::readStepCand(_, c, _, pragma[only_bind_into](config)) and
+      expectsContentEx(node, c) and
+      c = ap.getAHead().getContent()
+    )
+  }
+
+  pragma[nomagic]
+  private predicate castingNodeEx(NodeEx node) { node.asNode() instanceof CastingNode }
+
+  bindingset[node, state, ap, config]
+  predicate filter(NodeEx node, FlowState state, Ap ap, Configuration config) {
+    exists(state) and
+    exists(config) and
+    (if castingNodeEx(node) then compatibleTypes(node.getDataFlowType(), ap.getType()) else any()) and
+    (
+      notExpectsContent(node)
+      or
+      expectsContentCand(node, ap, config)
+    )
+  }
+
+  bindingset[ap, contentType]
+  predicate typecheckStore(Ap ap, DataFlowType contentType) {
+    // We need to typecheck stores here, since reverse flow through a getter
+    // might have a different type here compared to inside the getter.
+    compatibleTypes(ap.getType(), contentType)
+  }
+}
+
+private module Stage3 implements StageSig {
+  import MkStage<Stage2>::Stage<Stage3Param>
+}
+
+private module Stage4Param implements MkStage<Stage3>::StageParam {
+  private module PrevStage = Stage3;
+
   class Ap = AccessPathFront;
 
   class ApNil = AccessPathFrontNil;
 
-  PrevStage::Ap getApprox(Ap ap) { result = ap.toBoolNonEmpty() }
+  PrevStage::Ap getApprox(Ap ap) { result = ap.toApprox() }
 
   ApNil getApNil(NodeEx node) {
     PrevStage::revFlow(node, _) and result = TFrontNil(node.getDataFlowType())
@@ -2226,16 +2440,42 @@ private module Stage3Param implements MkStage<Stage2>::StageParam {
 
   import BooleanCallContext
 
+  pragma[nomagic]
   predicate localStep(
     NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
     ApNil ap, Configuration config, LocalCc lcc
   ) {
-    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap, config, _) and exists(lcc)
+    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap.getType(), config, _) and
+    PrevStage::revFlow(node1, pragma[only_bind_into](state1), _, pragma[only_bind_into](config)) and
+    PrevStage::revFlowAlias(node2, pragma[only_bind_into](state2), _, pragma[only_bind_into](config)) and
+    exists(lcc)
   }
 
-  predicate flowOutOfCall = flowOutOfCallNodeCand2/6;
+  pragma[nomagic]
+  predicate flowOutOfCall(
+    DataFlowCall call, RetNodeEx node1, ReturnKindExt kind, NodeEx node2, boolean allowsFieldFlow,
+    Configuration config
+  ) {
+    exists(FlowState state |
+      flowOutOfCallNodeCand2(call, node1, kind, node2, allowsFieldFlow, config) and
+      PrevStage::revFlow(node2, pragma[only_bind_into](state), _, pragma[only_bind_into](config)) and
+      PrevStage::revFlowAlias(node1, pragma[only_bind_into](state), _,
+        pragma[only_bind_into](config))
+    )
+  }
 
-  predicate flowIntoCall = flowIntoCallNodeCand2/5;
+  pragma[nomagic]
+  predicate flowIntoCall(
+    DataFlowCall call, ArgNodeEx node1, ParamNodeEx node2, boolean allowsFieldFlow,
+    Configuration config
+  ) {
+    exists(FlowState state |
+      flowIntoCallNodeCand2(call, node1, node2, allowsFieldFlow, config) and
+      PrevStage::revFlow(node2, pragma[only_bind_into](state), _, pragma[only_bind_into](config)) and
+      PrevStage::revFlowAlias(node1, pragma[only_bind_into](state), _,
+        pragma[only_bind_into](config))
+    )
+  }
 
   pragma[nomagic]
   private predicate clearSet(NodeEx node, ContentSet c, Configuration config) {
@@ -2291,8 +2531,8 @@ private module Stage3Param implements MkStage<Stage2>::StageParam {
   }
 }
 
-private module Stage3 implements StageSig {
-  import MkStage<Stage2>::Stage<Stage3Param>
+private module Stage4 implements StageSig {
+  import MkStage<Stage3>::Stage<Stage4Param>
 }
 
 /**
@@ -2303,8 +2543,8 @@ private predicate flowCandSummaryCtx(
   NodeEx node, FlowState state, AccessPathFront argApf, Configuration config
 ) {
   exists(AccessPathFront apf |
-    Stage3::revFlow(node, state, TReturnCtxMaybeFlowThrough(_), _, apf, config) and
-    Stage3::fwdFlow(node, state, any(Stage3::CcCall ccc), _, TAccessPathFrontSome(argApf), apf,
+    Stage4::revFlow(node, state, TReturnCtxMaybeFlowThrough(_), _, apf, config) and
+    Stage4::fwdFlow(node, state, any(Stage4::CcCall ccc), _, TAccessPathFrontSome(argApf), apf,
       config)
   )
 }
@@ -2315,10 +2555,10 @@ private predicate flowCandSummaryCtx(
  */
 private predicate expensiveLen2unfolding(TypedContent tc, Configuration config) {
   exists(int tails, int nodes, int apLimit, int tupleLimit |
-    tails = strictcount(AccessPathFront apf | Stage3::consCand(tc, apf, config)) and
+    tails = strictcount(AccessPathFront apf | Stage4::consCand(tc, apf, config)) and
     nodes =
       strictcount(NodeEx n, FlowState state |
-        Stage3::revFlow(n, state, any(AccessPathFrontHead apf | apf.getHead() = tc), config)
+        Stage4::revFlow(n, state, any(AccessPathFrontHead apf | apf.getHead() = tc), config)
         or
         flowCandSummaryCtx(n, state, any(AccessPathFrontHead apf | apf.getHead() = tc), config)
       ) and
@@ -2332,11 +2572,11 @@ private predicate expensiveLen2unfolding(TypedContent tc, Configuration config)
 private newtype TAccessPathApprox =
   TNil(DataFlowType t) or
   TConsNil(TypedContent tc, DataFlowType t) {
-    Stage3::consCand(tc, TFrontNil(t), _) and
+    Stage4::consCand(tc, TFrontNil(t), _) and
     not expensiveLen2unfolding(tc, _)
   } or
   TConsCons(TypedContent tc1, TypedContent tc2, int len) {
-    Stage3::consCand(tc1, TFrontHead(tc2), _) and
+    Stage4::consCand(tc1, TFrontHead(tc2), _) and
     len in [2 .. accessPathLimit()] and
     not expensiveLen2unfolding(tc1, _)
   } or
@@ -2466,7 +2706,7 @@ private class AccessPathApproxCons1 extends AccessPathApproxCons, TCons1 {
   override AccessPathApprox pop(TypedContent head) {
     head = tc and
     (
-      exists(TypedContent tc2 | Stage3::consCand(tc, TFrontHead(tc2), _) |
+      exists(TypedContent tc2 | Stage4::consCand(tc, TFrontHead(tc2), _) |
         result = TConsCons(tc2, _, len - 1)
         or
         len = 2 and
@@ -2477,7 +2717,7 @@ private class AccessPathApproxCons1 extends AccessPathApproxCons, TCons1 {
       or
       exists(DataFlowType t |
         len = 1 and
-        Stage3::consCand(tc, TFrontNil(t), _) and
+        Stage4::consCand(tc, TFrontNil(t), _) and
         result = TNil(t)
       )
     )
@@ -2502,13 +2742,14 @@ private class AccessPathApproxOption extends TAccessPathApproxOption {
   }
 }
 
-private module Stage4Param implements MkStage<Stage3>::StageParam {
-  private module PrevStage = Stage3;
+private module Stage5Param implements MkStage<Stage4>::StageParam {
+  private module PrevStage = Stage4;
 
   class Ap = AccessPathApprox;
 
   class ApNil = AccessPathApproxNil;
 
+  pragma[nomagic]
   PrevStage::Ap getApprox(Ap ap) { result = ap.getFront() }
 
   ApNil getApNil(NodeEx node) {
@@ -2534,7 +2775,9 @@ private module Stage4Param implements MkStage<Stage3>::StageParam {
     NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
     ApNil ap, Configuration config, LocalCc lcc
   ) {
-    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap.getFront(), config, lcc)
+    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap.getType(), config, lcc) and
+    PrevStage::revFlow(node1, pragma[only_bind_into](state1), _, pragma[only_bind_into](config)) and
+    PrevStage::revFlowAlias(node2, pragma[only_bind_into](state2), _, pragma[only_bind_into](config))
   }
 
   pragma[nomagic]
@@ -2571,7 +2814,7 @@ private module Stage4Param implements MkStage<Stage3>::StageParam {
   predicate typecheckStore(Ap ap, DataFlowType contentType) { any() }
 }
 
-private module Stage4 = MkStage<Stage3>::Stage<Stage4Param>;
+private module Stage5 = MkStage<Stage4>::Stage<Stage5Param>;
 
 bindingset[conf, result]
 private Configuration unbindConf(Configuration conf) {
@@ -2585,8 +2828,8 @@ private predicate nodeMayUseSummary0(
 ) {
   exists(AccessPathApprox apa0 |
     c = n.getEnclosingCallable() and
-    Stage4::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
-    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TParameterPositionSome(pos),
+    Stage5::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
+    Stage5::fwdFlow(n, state, any(CallContextCall ccc), TParameterPositionSome(pos),
       TAccessPathApproxSome(apa), apa0, config)
   )
 }
@@ -2596,7 +2839,7 @@ private predicate nodeMayUseSummary(
   NodeEx n, FlowState state, AccessPathApprox apa, Configuration config
 ) {
   exists(DataFlowCallable c, ParameterPosition pos, ParamNodeEx p |
-    Stage4::parameterMayFlowThrough(p, apa, config) and
+    Stage5::parameterMayFlowThrough(p, apa, config) and
     nodeMayUseSummary0(n, c, pos, state, apa, config) and
     p.isParameterOf(c, pos)
   )
@@ -2606,8 +2849,8 @@ private newtype TSummaryCtx =
   TSummaryCtxNone() or
   TSummaryCtxSome(ParamNodeEx p, FlowState state, AccessPath ap) {
     exists(Configuration config |
-      Stage4::parameterMayFlowThrough(p, ap.getApprox(), config) and
-      Stage4::revFlow(p, state, _, config)
+      Stage5::parameterMayFlowThrough(p, ap.getApprox(), config) and
+      Stage5::revFlow(p, state, _, config)
     )
   }
 
@@ -2656,7 +2899,7 @@ private int count1to2unfold(AccessPathApproxCons1 apa, Configuration config) {
     len = apa.len() and
     result =
       strictcount(AccessPathFront apf |
-        Stage4::consCand(tc, any(AccessPathApprox ap | ap.getFront() = apf and ap.len() = len - 1),
+        Stage5::consCand(tc, any(AccessPathApprox ap | ap.getFront() = apf and ap.len() = len - 1),
           config)
       )
   )
@@ -2665,7 +2908,7 @@ private int count1to2unfold(AccessPathApproxCons1 apa, Configuration config) {
 private int countNodesUsingAccessPath(AccessPathApprox apa, Configuration config) {
   result =
     strictcount(NodeEx n, FlowState state |
-      Stage4::revFlow(n, state, apa, config) or nodeMayUseSummary(n, state, apa, config)
+      Stage5::revFlow(n, state, apa, config) or nodeMayUseSummary(n, state, apa, config)
     )
 }
 
@@ -2686,7 +2929,7 @@ private predicate expensiveLen1to2unfolding(AccessPathApproxCons1 apa, Configura
 private AccessPathApprox getATail(AccessPathApprox apa, Configuration config) {
   exists(TypedContent head |
     apa.pop(head) = result and
-    Stage4::consCand(head, result, config)
+    Stage5::consCand(head, result, config)
   )
 }
 
@@ -2768,7 +3011,7 @@ private newtype TPathNode =
     NodeEx node, FlowState state, CallContext cc, SummaryCtx sc, AccessPath ap, Configuration config
   ) {
     // A PathNode is introduced by a source ...
-    Stage4::revFlow(node, state, config) and
+    Stage5::revFlow(node, state, config) and
     sourceNode(node, state, config) and
     (
       if hasSourceCallCtx(config)
@@ -2782,7 +3025,7 @@ private newtype TPathNode =
     exists(PathNodeMid mid |
       pathStep(mid, node, state, cc, sc, ap) and
       pragma[only_bind_into](config) = mid.getConfiguration() and
-      Stage4::revFlow(node, state, ap.getApprox(), pragma[only_bind_into](config))
+      Stage5::revFlow(node, state, ap.getApprox(), pragma[only_bind_into](config))
     )
   } or
   TPathNodeSink(NodeEx node, FlowState state, Configuration config) {
@@ -2924,7 +3167,7 @@ private class AccessPathCons2 extends AccessPath, TAccessPathCons2 {
   override TypedContent getHead() { result = head1 }
 
   override AccessPath getTail() {
-    Stage4::consCand(head1, result.getApprox(), _) and
+    Stage5::consCand(head1, result.getApprox(), _) and
     result.getHead() = head2 and
     result.length() = len - 1
   }
@@ -2955,7 +3198,7 @@ private class AccessPathCons1 extends AccessPath, TAccessPathCons1 {
   override TypedContent getHead() { result = head }
 
   override AccessPath getTail() {
-    Stage4::consCand(head, result.getApprox(), _) and result.length() = len - 1
+    Stage5::consCand(head, result.getApprox(), _) and result.length() = len - 1
   }
 
   override AccessPathFrontHead getFront() { result = TFrontHead(head) }
@@ -3347,7 +3590,8 @@ private predicate pathStep(
     AccessPath ap0, NodeEx midnode, FlowState state0, Configuration conf, LocalCallContext localCC
   |
     pathNode(mid, midnode, state0, cc, sc, ap0, conf, localCC) and
-    localFlowBigStep(midnode, state0, node, state, false, ap.getFront(), conf, localCC) and
+    localFlowBigStep(midnode, state0, node, state, false, ap.(AccessPathNil).getType(), conf,
+      localCC) and
     ap0 instanceof AccessPathNil
   )
   or
@@ -3389,7 +3633,7 @@ private predicate pathReadStep(
 ) {
   ap0 = mid.getAp() and
   tc = ap0.getHead() and
-  Stage4::readStepCand(mid.getNodeEx(), tc.getContent(), node, mid.getConfiguration()) and
+  Stage5::readStepCand(mid.getNodeEx(), tc.getContent(), node, mid.getConfiguration()) and
   state = mid.getState() and
   cc = mid.getCallContext()
 }
@@ -3399,7 +3643,7 @@ private predicate pathStoreStep(
   PathNodeMid mid, NodeEx node, FlowState state, AccessPath ap0, TypedContent tc, CallContext cc
 ) {
   ap0 = mid.getAp() and
-  Stage4::storeStepCand(mid.getNodeEx(), _, tc, node, _, mid.getConfiguration()) and
+  Stage5::storeStepCand(mid.getNodeEx(), _, tc, node, _, mid.getConfiguration()) and
   state = mid.getState() and
   cc = mid.getCallContext()
 }
@@ -3436,7 +3680,7 @@ private NodeEx getAnOutNodeFlow(
   ReturnKindExt kind, DataFlowCall call, AccessPathApprox apa, Configuration config
 ) {
   result.asNode() = kind.getAnOutNode(call) and
-  Stage4::revFlow(result, _, apa, config)
+  Stage5::revFlow(result, _, apa, config)
 }
 
 /**
@@ -3472,7 +3716,7 @@ private predicate parameterCand(
   DataFlowCallable callable, ParameterPosition pos, AccessPathApprox apa, Configuration config
 ) {
   exists(ParamNodeEx p |
-    Stage4::revFlow(p, _, apa, config) and
+    Stage5::revFlow(p, _, apa, config) and
     p.isParameterOf(callable, pos)
   )
 }
@@ -3751,9 +3995,17 @@ predicate stageStats(
   n = 45 and
   Stage4::stats(false, nodes, fields, conscand, states, tuples, config)
   or
-  stage = "5 Fwd" and n = 50 and finalStats(true, nodes, fields, conscand, states, tuples)
+  stage = "5 Fwd" and
+  n = 50 and
+  Stage5::stats(true, nodes, fields, conscand, states, tuples, config)
   or
-  stage = "5 Rev" and n = 55 and finalStats(false, nodes, fields, conscand, states, tuples)
+  stage = "5 Rev" and
+  n = 55 and
+  Stage5::stats(false, nodes, fields, conscand, states, tuples, config)
+  or
+  stage = "6 Fwd" and n = 60 and finalStats(true, nodes, fields, conscand, states, tuples)
+  or
+  stage = "6 Rev" and n = 65 and finalStats(false, nodes, fields, conscand, states, tuples)
 }
 
 private module FlowExploration {
diff --git a/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImpl2.qll b/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImpl2.qll
index ccde916a3c2..6741ccc2f06 100644
--- a/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImpl2.qll
+++ b/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImpl2.qll
@@ -621,23 +621,6 @@ private predicate parameterFlowThroughAllowed(ParamNodeEx p, ReturnKindExt kind)
   )
 }
 
-/**
- * Holds if flow from a parameter at position `pos` inside `c` to a return node of
- * kind `kind` is allowed.
- *
- * We don't expect a parameter to return stored in itself, unless
- * explicitly allowed
- */
-bindingset[c, pos, kind]
-private predicate parameterFlowThroughAllowed(
-  DataFlowCallable c, ParameterPosition pos, ReturnKindExt kind
-) {
-  exists(ParamNodeEx p |
-    p.isParameterOf(c, pos) and
-    parameterFlowThroughAllowed(p, kind)
-  )
-}
-
 private module Stage1 implements StageSig {
   class Ap = Unit;
 
@@ -980,6 +963,12 @@ private module Stage1 implements StageSig {
   pragma[nomagic]
   predicate revFlow(NodeEx node, Configuration config) { revFlow(node, _, config) }
 
+  pragma[nomagic]
+  predicate revFlowAp(NodeEx node, Ap ap, Configuration config) {
+    revFlow(node, config) and
+    exists(ap)
+  }
+
   bindingset[node, state, config]
   predicate revFlow(NodeEx node, FlowState state, Ap ap, Configuration config) {
     revFlow(node, _, pragma[only_bind_into](config)) and
@@ -1022,9 +1011,13 @@ private module Stage1 implements StageSig {
   }
 
   pragma[nomagic]
-  predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config) {
+  predicate returnMayFlowThrough(
+    RetNodeEx ret, Ap argAp, Ap ap, ReturnKindExt kind, Configuration config
+  ) {
     throughFlowNodeCand(ret, config) and
-    kind = ret.getKind()
+    kind = ret.getKind() and
+    exists(argAp) and
+    exists(ap)
   }
 
   pragma[nomagic]
@@ -1189,6 +1182,8 @@ private signature module StageSig {
 
   predicate revFlow(NodeEx node, Configuration config);
 
+  predicate revFlowAp(NodeEx node, Ap ap, Configuration config);
+
   bindingset[node, state, config]
   predicate revFlow(NodeEx node, FlowState state, Ap ap, Configuration config);
 
@@ -1196,7 +1191,9 @@ private signature module StageSig {
 
   predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config);
 
-  predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config);
+  predicate returnMayFlowThrough(
+    RetNodeEx ret, Ap argAp, Ap ap, ReturnKindExt kind, Configuration config
+  );
 
   predicate storeStepCand(
     NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, DataFlowType contentType,
@@ -1281,21 +1278,43 @@ private module MkStage<StageSig PrevStage> {
     import Param
 
     /* Begin: Stage logic. */
-    bindingset[result, apa]
-    private ApApprox unbindApa(ApApprox apa) {
-      pragma[only_bind_out](apa) = pragma[only_bind_out](result)
+    // use an alias as a workaround for bad functionality-induced joins
+    pragma[nomagic]
+    private predicate revFlowApAlias(NodeEx node, ApApprox apa, Configuration config) {
+      PrevStage::revFlowAp(node, apa, config)
+    }
+
+    pragma[nomagic]
+    private predicate flowIntoCallApa(
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, ApApprox apa,
+      Configuration config
+    ) {
+      flowIntoCall(call, arg, p, allowsFieldFlow, config) and
+      PrevStage::revFlowAp(p, pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
+      revFlowApAlias(arg, pragma[only_bind_into](apa), pragma[only_bind_into](config))
+    }
+
+    pragma[nomagic]
+    private predicate flowOutOfCallApa(
+      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
+      ApApprox apa, Configuration config
+    ) {
+      flowOutOfCall(call, ret, kind, out, allowsFieldFlow, config) and
+      PrevStage::revFlowAp(out, pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
+      revFlowApAlias(ret, pragma[only_bind_into](apa), pragma[only_bind_into](config))
     }
 
     pragma[nomagic]
     private predicate flowThroughOutOfCall(
-      DataFlowCall call, DataFlowCallable c, CcCall ccc, RetNodeEx ret, ReturnKindExt kind,
-      NodeEx out, boolean allowsFieldFlow, Configuration config
+      DataFlowCall call, CcCall ccc, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow,
+      ApApprox argApa, ApApprox apa, Configuration config
     ) {
-      flowOutOfCall(call, ret, kind, out, allowsFieldFlow, pragma[only_bind_into](config)) and
-      PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
-      PrevStage::returnMayFlowThrough(ret, kind, pragma[only_bind_into](config)) and
-      matchesCall(ccc, call) and
-      c = ret.getEnclosingCallable()
+      exists(ReturnKindExt kind |
+        flowOutOfCallApa(call, ret, kind, out, allowsFieldFlow, apa, pragma[only_bind_into](config)) and
+        PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
+        PrevStage::returnMayFlowThrough(ret, argApa, apa, kind, pragma[only_bind_into](config)) and
+        matchesCall(ccc, call)
+      )
     }
 
     /**
@@ -1307,39 +1326,50 @@ private module MkStage<StageSig PrevStage> {
      * corresponding parameter position and access path of that argument, respectively.
      */
     pragma[nomagic]
+    additional predicate fwdFlow(
+      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      Ap ap, ApApprox apa, Configuration config
+    ) {
+      fwdFlow0(node, state, cc, summaryCtx, argAp, ap, apa, config) and
+      PrevStage::revFlow(node, state, apa, config) and
+      filter(node, state, ap, config)
+    }
+
+    pragma[inline]
     additional predicate fwdFlow(
       NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
       Ap ap, Configuration config
     ) {
-      fwdFlow0(node, state, cc, summaryCtx, argAp, ap, config) and
-      PrevStage::revFlow(node, state, unbindApa(getApprox(ap)), config) and
-      filter(node, state, ap, config)
+      fwdFlow(node, state, cc, summaryCtx, argAp, ap, _, config)
     }
 
     pragma[nomagic]
     private predicate fwdFlow0(
       NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      Ap ap, Configuration config
+      Ap ap, ApApprox apa, Configuration config
     ) {
       sourceNode(node, state, config) and
       (if hasSourceCallCtx(config) then cc = ccSomeCall() else cc = ccNone()) and
       argAp = apNone() and
       summaryCtx = TParameterPositionNone() and
-      ap = getApNil(node)
+      ap = getApNil(node) and
+      apa = getApprox(ap)
       or
-      exists(NodeEx mid, FlowState state0, Ap ap0, LocalCc localCc |
-        fwdFlow(mid, state0, cc, summaryCtx, argAp, ap0, config) and
+      exists(NodeEx mid, FlowState state0, Ap ap0, ApApprox apa0, LocalCc localCc |
+        fwdFlow(mid, state0, cc, summaryCtx, argAp, ap0, apa0, config) and
         localCc = getLocalCc(mid, cc)
       |
         localStep(mid, state0, node, state, true, _, config, localCc) and
-        ap = ap0
+        ap = ap0 and
+        apa = apa0
         or
         localStep(mid, state0, node, state, false, ap, config, localCc) and
-        ap0 instanceof ApNil
+        ap0 instanceof ApNil and
+        apa = getApprox(ap)
       )
       or
       exists(NodeEx mid |
-        fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, apa, pragma[only_bind_into](config)) and
         jumpStep(mid, node, config) and
         cc = ccNone() and
         summaryCtx = TParameterPositionNone() and
@@ -1352,7 +1382,8 @@ private module MkStage<StageSig PrevStage> {
         cc = ccNone() and
         summaryCtx = TParameterPositionNone() and
         argAp = apNone() and
-        ap = getApNil(node)
+        ap = getApNil(node) and
+        apa = getApprox(ap)
       )
       or
       exists(NodeEx mid, FlowState state0, ApNil nil |
@@ -1361,32 +1392,32 @@ private module MkStage<StageSig PrevStage> {
         cc = ccNone() and
         summaryCtx = TParameterPositionNone() and
         argAp = apNone() and
-        ap = getApNil(node)
+        ap = getApNil(node) and
+        apa = getApprox(ap)
       )
       or
       // store
       exists(TypedContent tc, Ap ap0 |
         fwdFlowStore(_, ap0, tc, node, state, cc, summaryCtx, argAp, config) and
-        ap = apCons(tc, ap0)
+        ap = apCons(tc, ap0) and
+        apa = getApprox(ap)
       )
       or
       // read
       exists(Ap ap0, Content c |
         fwdFlowRead(ap0, c, _, node, state, cc, summaryCtx, argAp, config) and
-        fwdFlowConsCand(ap0, c, ap, config)
+        fwdFlowConsCand(ap0, c, ap, config) and
+        apa = getApprox(ap)
       )
       or
       // flow into a callable
-      exists(ApApprox apa |
-        fwdFlowIn(_, node, state, _, cc, _, _, ap, config) and
-        apa = getApprox(ap) and
-        if PrevStage::parameterMayFlowThrough(node, apa, config)
-        then (
-          summaryCtx = TParameterPositionSome(node.(ParamNodeEx).getPosition()) and
-          argAp = apSome(ap)
-        ) else (
-          summaryCtx = TParameterPositionNone() and argAp = apNone()
-        )
+      fwdFlowIn(_, node, state, _, cc, _, _, ap, apa, config) and
+      if PrevStage::parameterMayFlowThrough(node, apa, config)
+      then (
+        summaryCtx = TParameterPositionSome(node.(ParamNodeEx).getPosition()) and
+        argAp = apSome(ap)
+      ) else (
+        summaryCtx = TParameterPositionNone() and argAp = apNone()
       )
       or
       // flow out of a callable
@@ -1394,8 +1425,8 @@ private module MkStage<StageSig PrevStage> {
         DataFlowCall call, RetNodeEx ret, boolean allowsFieldFlow, CcNoCall innercc,
         DataFlowCallable inner
       |
-        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, config) and
-        flowOutOfCall(call, ret, _, node, allowsFieldFlow, config) and
+        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, apa, config) and
+        flowOutOfCallApa(call, ret, _, node, allowsFieldFlow, apa, config) and
         inner = ret.getEnclosingCallable() and
         cc = getCallContextReturn(inner, call, innercc) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
@@ -1403,7 +1434,7 @@ private module MkStage<StageSig PrevStage> {
       or
       // flow through a callable
       exists(DataFlowCall call, ParameterPosition summaryCtx0, Ap argAp0 |
-        fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, config) and
+        fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, apa, config) and
         fwdFlowIsEntered(call, cc, summaryCtx, argAp, summaryCtx0, argAp0, config)
       )
     }
@@ -1413,9 +1444,9 @@ private module MkStage<StageSig PrevStage> {
       NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc,
       ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
     ) {
-      exists(DataFlowType contentType |
-        fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, config) and
-        PrevStage::storeStepCand(node1, unbindApa(getApprox(ap1)), tc, node2, contentType, config) and
+      exists(DataFlowType contentType, ApApprox apa1 |
+        fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, apa1, config) and
+        PrevStage::storeStepCand(node1, apa1, tc, node2, contentType, config) and
         typecheckStore(ap1, contentType)
       )
     }
@@ -1433,43 +1464,104 @@ private module MkStage<StageSig PrevStage> {
       )
     }
 
+    private class ApNonNil instanceof Ap {
+      pragma[nomagic]
+      ApNonNil() { not this instanceof ApNil }
+
+      string toString() { result = "" }
+    }
+
+    pragma[nomagic]
+    private predicate fwdFlowRead0(
+      NodeEx node1, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      ApNonNil ap, Configuration config
+    ) {
+      fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
+      PrevStage::readStepCand(node1, _, _, config)
+    }
+
     pragma[nomagic]
     private predicate fwdFlowRead(
       Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc,
       ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
     ) {
-      fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
+      fwdFlowRead0(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, c, node2, config) and
       getHeadContent(ap) = c
     }
 
     pragma[nomagic]
     private predicate fwdFlowIn(
-      DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, Cc innercc,
-      ParameterPositionOption summaryCtx, ApOption argAp, Ap ap, Configuration config
+      DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, CcCall innercc,
+      ParameterPositionOption summaryCtx, ApOption argAp, Ap ap, ApApprox apa, Configuration config
     ) {
       exists(ArgNodeEx arg, boolean allowsFieldFlow |
-        fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, config) and
-        flowIntoCall(call, arg, p, allowsFieldFlow, config) and
+        fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, apa, config) and
+        flowIntoCallApa(call, arg, p, allowsFieldFlow, apa, config) and
         innercc = getCallContextCall(call, p.getEnclosingCallable(), outercc) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
+    pragma[nomagic]
+    private predicate fwdFlowRetFromArg(
+      RetNodeEx ret, FlowState state, CcCall ccc, ParameterPosition summaryCtx, ParamNodeEx p,
+      Ap argAp, ApApprox argApa, Ap ap, ApApprox apa, Configuration config
+    ) {
+      exists(DataFlowCallable c, ReturnKindExt kind |
+        fwdFlow(pragma[only_bind_into](ret), state, ccc,
+          TParameterPositionSome(pragma[only_bind_into](summaryCtx)), apSome(argAp), ap, apa, config) and
+        getApprox(argAp) = argApa and
+        c = ret.getEnclosingCallable() and
+        kind = ret.getKind() and
+        p.isParameterOf(c, pragma[only_bind_into](summaryCtx)) and
+        parameterFlowThroughAllowed(p, kind)
+      )
+    }
+
+    pragma[inline]
+    private predicate fwdFlowInMayFlowThrough(
+      DataFlowCall call, Cc cc, CcCall innerCc, ParameterPositionOption summaryCtx, ApOption argAp,
+      ParamNodeEx param, Ap ap, ApApprox apa, Configuration config
+    ) {
+      fwdFlowIn(call, pragma[only_bind_into](param), _, cc, innerCc, summaryCtx, argAp, ap,
+        pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
+      PrevStage::parameterMayFlowThrough(param, apa, config)
+    }
+
+    // dedup before joining with `flowThroughOutOfCall`
+    pragma[nomagic]
+    private predicate fwdFlowInMayFlowThroughProj(
+      DataFlowCall call, CcCall innerCc, ApApprox apa, Configuration config
+    ) {
+      fwdFlowInMayFlowThrough(call, _, innerCc, _, _, _, _, apa, config)
+    }
+
+    /**
+     * Same as `flowThroughOutOfCall`, but restricted to calls that are reached
+     * in the flow covered by `fwdFlow`, where data might flow through the target
+     * callable and back out at `call`.
+     */
+    pragma[nomagic]
+    private predicate fwdFlowThroughOutOfCall(
+      DataFlowCall call, CcCall ccc, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow,
+      ApApprox argApa, ApApprox apa, Configuration config
+    ) {
+      fwdFlowInMayFlowThroughProj(call, ccc, argApa, config) and
+      flowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, argApa, apa, config)
+    }
+
     pragma[nomagic]
     private predicate fwdFlowOutFromArg(
       DataFlowCall call, NodeEx out, FlowState state, ParameterPosition summaryCtx, Ap argAp, Ap ap,
-      Configuration config
+      ApApprox apa, Configuration config
     ) {
-      exists(
-        DataFlowCallable c, RetNodeEx ret, ReturnKindExt kind, boolean allowsFieldFlow, CcCall ccc
-      |
-        fwdFlow(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc),
-          TParameterPositionSome(pragma[only_bind_into](summaryCtx)), apSome(argAp), ap, config) and
-        flowThroughOutOfCall(call, pragma[only_bind_into](c), ccc, ret, kind, out, allowsFieldFlow,
+      exists(RetNodeEx ret, boolean allowsFieldFlow, CcCall ccc, ApApprox argApa |
+        fwdFlowRetFromArg(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc),
+          summaryCtx, _, argAp, pragma[only_bind_into](argApa), ap, pragma[only_bind_into](apa),
           config) and
-        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
-        parameterFlowThroughAllowed(c, pragma[only_bind_into](summaryCtx), kind)
+        fwdFlowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, argApa, apa, config) and
+        (if allowsFieldFlow = false then ap instanceof ApNil else any())
       )
     }
 
@@ -1483,8 +1575,7 @@ private module MkStage<StageSig PrevStage> {
       ParameterPosition pos, Ap ap, Configuration config
     ) {
       exists(ParamNodeEx param |
-        fwdFlowIn(call, param, _, cc, _, summaryCtx, argAp, ap, config) and
-        PrevStage::parameterMayFlowThrough(param, unbindApa(getApprox(ap)), config) and
+        fwdFlowInMayFlowThrough(call, cc, _, summaryCtx, argAp, param, ap, _, config) and
         pos = param.getPosition()
       )
     }
@@ -1505,41 +1596,55 @@ private module MkStage<StageSig PrevStage> {
       fwdFlowConsCand(ap1, c, ap2, config)
     }
 
-    pragma[nomagic]
-    private predicate returnFlowsThrough0(
-      RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, DataFlowCallable c,
-      ParameterPosition ppos, Ap argAp, Ap ap, Configuration config
-    ) {
-      exists(boolean allowsFieldFlow |
-        fwdFlow(ret, state, ccc, TParameterPositionSome(ppos), apSome(argAp), ap, config) and
-        flowThroughOutOfCall(_, c, _, pragma[only_bind_into](ret), kind, _, allowsFieldFlow,
-          pragma[only_bind_into](config)) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
-      )
-    }
-
     pragma[nomagic]
     private predicate returnFlowsThrough(
       RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, ParamNodeEx p, Ap argAp,
       Ap ap, Configuration config
     ) {
-      exists(DataFlowCallable c, ParameterPosition ppos |
-        returnFlowsThrough0(ret, kind, state, ccc, c, ppos, argAp, ap, config) and
-        p.isParameterOf(c, ppos) and
-        parameterFlowThroughAllowed(p, kind)
+      exists(boolean allowsFieldFlow, ApApprox argApa, ApApprox apa |
+        fwdFlowRetFromArg(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc), _, p,
+          argAp, pragma[only_bind_into](argApa), ap, pragma[only_bind_into](apa), config) and
+        kind = ret.getKind() and
+        fwdFlowThroughOutOfCall(_, ccc, ret, _, allowsFieldFlow, argApa, apa, config) and
+        (if allowsFieldFlow = false then ap instanceof ApNil else any())
       )
     }
 
     pragma[nomagic]
     private predicate flowThroughIntoCall(
-      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp,
+      Configuration config
     ) {
-      exists(Ap argAp |
-        flowIntoCall(call, pragma[only_bind_into](arg), pragma[only_bind_into](p), allowsFieldFlow,
+      exists(ApApprox argApa |
+        flowIntoCallApa(call, pragma[only_bind_into](arg), pragma[only_bind_into](p),
+          allowsFieldFlow, argApa, pragma[only_bind_into](config)) and
+        fwdFlow(arg, _, _, _, _, pragma[only_bind_into](argAp), argApa,
           pragma[only_bind_into](config)) and
-        fwdFlow(arg, _, _, _, _, pragma[only_bind_into](argAp), pragma[only_bind_into](config)) and
         returnFlowsThrough(_, _, _, _, p, pragma[only_bind_into](argAp), _,
-          pragma[only_bind_into](config))
+          pragma[only_bind_into](config)) and
+        if allowsFieldFlow = false then argAp instanceof ApNil else any()
+      )
+    }
+
+    pragma[nomagic]
+    private predicate flowIntoCallAp(
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap ap,
+      Configuration config
+    ) {
+      exists(ApApprox apa |
+        flowIntoCallApa(call, arg, p, allowsFieldFlow, apa, config) and
+        fwdFlow(arg, _, _, _, _, ap, apa, config)
+      )
+    }
+
+    pragma[nomagic]
+    private predicate flowOutOfCallAp(
+      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
+      Ap ap, Configuration config
+    ) {
+      exists(ApApprox apa |
+        flowOutOfCallApa(call, ret, kind, out, allowsFieldFlow, apa, config) and
+        fwdFlow(ret, _, _, _, _, ap, apa, config)
       )
     }
 
@@ -1628,7 +1733,7 @@ private module MkStage<StageSig PrevStage> {
       // flow into a callable
       exists(ParamNodeEx p, boolean allowsFieldFlow |
         revFlow(p, state, TReturnCtxNone(), returnAp, ap, config) and
-        flowIntoCall(_, node, p, allowsFieldFlow, config) and
+        flowIntoCallAp(_, node, p, allowsFieldFlow, ap, config) and
         (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
         returnCtx = TReturnCtxNone()
       )
@@ -1682,22 +1787,41 @@ private module MkStage<StageSig PrevStage> {
     ) {
       exists(NodeEx out, boolean allowsFieldFlow |
         revFlow(out, state, returnCtx, returnAp, ap, config) and
-        flowOutOfCall(call, ret, kind, out, allowsFieldFlow, config) and
+        flowOutOfCallAp(call, ret, kind, out, allowsFieldFlow, ap, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
+    /**
+     * Same as `flowThroughIntoCall`, but restricted to calls that are reached
+     * in the flow covered by `revFlow`, where data might flow through the target
+     * callable and back out at `call`.
+     */
+    pragma[nomagic]
+    private predicate revFlowThroughIntoCall(
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp,
+      Configuration config
+    ) {
+      flowThroughIntoCall(call, arg, p, allowsFieldFlow, argAp, config) and
+      revFlowIsReturned(call, _, _, _, _, config)
+    }
+
+    pragma[nomagic]
+    private predicate revFlowParamToReturn(
+      ParamNodeEx p, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap, Configuration config
+    ) {
+      revFlow(p, state, TReturnCtxMaybeFlowThrough(kind), apSome(returnAp), ap, config) and
+      parameterFlowThroughAllowed(p, kind)
+    }
+
     pragma[nomagic]
     private predicate revFlowInToReturn(
       DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap,
       Configuration config
     ) {
       exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(pragma[only_bind_into](p), state,
-          TReturnCtxMaybeFlowThrough(pragma[only_bind_into](kind)), apSome(returnAp), ap, config) and
-        flowThroughIntoCall(call, arg, p, allowsFieldFlow, config) and
-        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
-        parameterFlowThroughAllowed(p, kind)
+        revFlowParamToReturn(p, state, kind, returnAp, ap, config) and
+        revFlowThroughIntoCall(call, arg, p, allowsFieldFlow, ap, config)
       )
     }
 
@@ -1750,6 +1874,11 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     predicate revFlow(NodeEx node, Configuration config) { revFlow(node, _, _, _, _, config) }
 
+    pragma[nomagic]
+    predicate revFlowAp(NodeEx node, Ap ap, Configuration config) {
+      revFlow(node, _, _, _, ap, config)
+    }
+
     // use an alias as a workaround for bad functionality-induced joins
     pragma[nomagic]
     additional predicate revFlowAlias(NodeEx node, Configuration config) {
@@ -1786,9 +1915,9 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate parameterFlowsThroughRev(
-      ParamNodeEx p, Ap ap, ReturnKindExt kind, Configuration config
+      ParamNodeEx p, Ap ap, ReturnKindExt kind, Ap returnAp, Configuration config
     ) {
-      revFlow(p, _, TReturnCtxMaybeFlowThrough(kind), apSome(_), ap, config) and
+      revFlow(p, _, TReturnCtxMaybeFlowThrough(kind), apSome(returnAp), ap, config) and
       parameterFlowThroughAllowed(p, kind)
     }
 
@@ -1796,27 +1925,36 @@ private module MkStage<StageSig PrevStage> {
     predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
       exists(RetNodeEx ret, ReturnKindExt kind |
         returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
-        parameterFlowsThroughRev(p, ap, kind, config)
+        parameterFlowsThroughRev(p, ap, kind, _, config)
       )
     }
 
     pragma[nomagic]
-    predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config) {
-      exists(ParamNodeEx p, Ap ap |
-        returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
-        parameterFlowsThroughRev(p, ap, kind, config)
+    predicate returnMayFlowThrough(
+      RetNodeEx ret, Ap argAp, Ap ap, ReturnKindExt kind, Configuration config
+    ) {
+      exists(ParamNodeEx p |
+        returnFlowsThrough(ret, kind, _, _, p, argAp, ap, config) and
+        parameterFlowsThroughRev(p, argAp, kind, ap, config)
+      )
+    }
+
+    pragma[nomagic]
+    predicate revFlowInToReturnIsReturned(
+      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnCtx returnCtx, ApOption returnAp,
+      Ap ap, Configuration config
+    ) {
+      exists(ReturnKindExt returnKind0, Ap returnAp0 |
+        revFlowInToReturn(call, arg, state, returnKind0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
       )
     }
 
     pragma[nomagic]
     predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
-      exists(
-        ReturnKindExt returnKind0, Ap returnAp0, ArgNodeEx arg, FlowState state,
-        ReturnCtx returnCtx, ApOption returnAp, Ap ap
-      |
+      exists(ArgNodeEx arg, FlowState state, ReturnCtx returnCtx, ApOption returnAp, Ap ap |
         revFlow(arg, state, returnCtx, returnAp, ap, config) and
-        revFlowInToReturn(call, arg, state, returnKind0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
+        revFlowInToReturnIsReturned(call, arg, state, returnCtx, returnAp, ap, config)
       )
     }
 
@@ -2179,16 +2317,16 @@ private module LocalFlowBigStep {
   pragma[nomagic]
   predicate localFlowBigStep(
     NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
-    AccessPathFrontNil apf, Configuration config, LocalCallContext callContext
+    DataFlowType t, Configuration config, LocalCallContext callContext
   ) {
-    localFlowStepPlus(node1, state1, node2, preservesValue, apf.getType(), config, callContext) and
+    localFlowStepPlus(node1, state1, node2, preservesValue, t, config, callContext) and
     localFlowExit(node2, state1, config) and
     state1 = state2
     or
     additionalLocalFlowStepNodeCand2(node1, state1, node2, state2, config) and
     state1 != state2 and
     preservesValue = false and
-    apf = TFrontNil(node2.getDataFlowType()) and
+    t = node2.getDataFlowType() and
     callContext.relevantFor(node1.getEnclosingCallable()) and
     not exists(DataFlowCall call | call = callContext.(LocalCallContextSpecificCall).getCall() |
       isUnreachableInCallCached(node1.asNode(), call) or
@@ -2202,11 +2340,87 @@ private import LocalFlowBigStep
 private module Stage3Param implements MkStage<Stage2>::StageParam {
   private module PrevStage = Stage2;
 
+  class Ap = ApproxAccessPathFront;
+
+  class ApNil = ApproxAccessPathFrontNil;
+
+  PrevStage::Ap getApprox(Ap ap) { result = ap.toBoolNonEmpty() }
+
+  ApNil getApNil(NodeEx node) {
+    PrevStage::revFlow(node, _) and result = TApproxFrontNil(node.getDataFlowType())
+  }
+
+  bindingset[tc, tail]
+  Ap apCons(TypedContent tc, Ap tail) { result.getAHead() = tc and exists(tail) }
+
+  pragma[noinline]
+  Content getHeadContent(Ap ap) { result = ap.getAHead().getContent() }
+
+  class ApOption = ApproxAccessPathFrontOption;
+
+  ApOption apNone() { result = TApproxAccessPathFrontNone() }
+
+  ApOption apSome(Ap ap) { result = TApproxAccessPathFrontSome(ap) }
+
+  import BooleanCallContext
+
+  predicate localStep(
+    NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
+    ApproxAccessPathFrontNil ap, Configuration config, LocalCc lcc
+  ) {
+    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap.getType(), config, _) and
+    exists(lcc)
+  }
+
+  predicate flowOutOfCall = flowOutOfCallNodeCand2/6;
+
+  predicate flowIntoCall = flowIntoCallNodeCand2/5;
+
+  pragma[nomagic]
+  private predicate expectsContentCand(NodeEx node, Ap ap, Configuration config) {
+    exists(Content c |
+      PrevStage::revFlow(node, pragma[only_bind_into](config)) and
+      PrevStage::readStepCand(_, c, _, pragma[only_bind_into](config)) and
+      expectsContentEx(node, c) and
+      c = ap.getAHead().getContent()
+    )
+  }
+
+  pragma[nomagic]
+  private predicate castingNodeEx(NodeEx node) { node.asNode() instanceof CastingNode }
+
+  bindingset[node, state, ap, config]
+  predicate filter(NodeEx node, FlowState state, Ap ap, Configuration config) {
+    exists(state) and
+    exists(config) and
+    (if castingNodeEx(node) then compatibleTypes(node.getDataFlowType(), ap.getType()) else any()) and
+    (
+      notExpectsContent(node)
+      or
+      expectsContentCand(node, ap, config)
+    )
+  }
+
+  bindingset[ap, contentType]
+  predicate typecheckStore(Ap ap, DataFlowType contentType) {
+    // We need to typecheck stores here, since reverse flow through a getter
+    // might have a different type here compared to inside the getter.
+    compatibleTypes(ap.getType(), contentType)
+  }
+}
+
+private module Stage3 implements StageSig {
+  import MkStage<Stage2>::Stage<Stage3Param>
+}
+
+private module Stage4Param implements MkStage<Stage3>::StageParam {
+  private module PrevStage = Stage3;
+
   class Ap = AccessPathFront;
 
   class ApNil = AccessPathFrontNil;
 
-  PrevStage::Ap getApprox(Ap ap) { result = ap.toBoolNonEmpty() }
+  PrevStage::Ap getApprox(Ap ap) { result = ap.toApprox() }
 
   ApNil getApNil(NodeEx node) {
     PrevStage::revFlow(node, _) and result = TFrontNil(node.getDataFlowType())
@@ -2226,16 +2440,42 @@ private module Stage3Param implements MkStage<Stage2>::StageParam {
 
   import BooleanCallContext
 
+  pragma[nomagic]
   predicate localStep(
     NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
     ApNil ap, Configuration config, LocalCc lcc
   ) {
-    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap, config, _) and exists(lcc)
+    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap.getType(), config, _) and
+    PrevStage::revFlow(node1, pragma[only_bind_into](state1), _, pragma[only_bind_into](config)) and
+    PrevStage::revFlowAlias(node2, pragma[only_bind_into](state2), _, pragma[only_bind_into](config)) and
+    exists(lcc)
   }
 
-  predicate flowOutOfCall = flowOutOfCallNodeCand2/6;
+  pragma[nomagic]
+  predicate flowOutOfCall(
+    DataFlowCall call, RetNodeEx node1, ReturnKindExt kind, NodeEx node2, boolean allowsFieldFlow,
+    Configuration config
+  ) {
+    exists(FlowState state |
+      flowOutOfCallNodeCand2(call, node1, kind, node2, allowsFieldFlow, config) and
+      PrevStage::revFlow(node2, pragma[only_bind_into](state), _, pragma[only_bind_into](config)) and
+      PrevStage::revFlowAlias(node1, pragma[only_bind_into](state), _,
+        pragma[only_bind_into](config))
+    )
+  }
 
-  predicate flowIntoCall = flowIntoCallNodeCand2/5;
+  pragma[nomagic]
+  predicate flowIntoCall(
+    DataFlowCall call, ArgNodeEx node1, ParamNodeEx node2, boolean allowsFieldFlow,
+    Configuration config
+  ) {
+    exists(FlowState state |
+      flowIntoCallNodeCand2(call, node1, node2, allowsFieldFlow, config) and
+      PrevStage::revFlow(node2, pragma[only_bind_into](state), _, pragma[only_bind_into](config)) and
+      PrevStage::revFlowAlias(node1, pragma[only_bind_into](state), _,
+        pragma[only_bind_into](config))
+    )
+  }
 
   pragma[nomagic]
   private predicate clearSet(NodeEx node, ContentSet c, Configuration config) {
@@ -2291,8 +2531,8 @@ private module Stage3Param implements MkStage<Stage2>::StageParam {
   }
 }
 
-private module Stage3 implements StageSig {
-  import MkStage<Stage2>::Stage<Stage3Param>
+private module Stage4 implements StageSig {
+  import MkStage<Stage3>::Stage<Stage4Param>
 }
 
 /**
@@ -2303,8 +2543,8 @@ private predicate flowCandSummaryCtx(
   NodeEx node, FlowState state, AccessPathFront argApf, Configuration config
 ) {
   exists(AccessPathFront apf |
-    Stage3::revFlow(node, state, TReturnCtxMaybeFlowThrough(_), _, apf, config) and
-    Stage3::fwdFlow(node, state, any(Stage3::CcCall ccc), _, TAccessPathFrontSome(argApf), apf,
+    Stage4::revFlow(node, state, TReturnCtxMaybeFlowThrough(_), _, apf, config) and
+    Stage4::fwdFlow(node, state, any(Stage4::CcCall ccc), _, TAccessPathFrontSome(argApf), apf,
       config)
   )
 }
@@ -2315,10 +2555,10 @@ private predicate flowCandSummaryCtx(
  */
 private predicate expensiveLen2unfolding(TypedContent tc, Configuration config) {
   exists(int tails, int nodes, int apLimit, int tupleLimit |
-    tails = strictcount(AccessPathFront apf | Stage3::consCand(tc, apf, config)) and
+    tails = strictcount(AccessPathFront apf | Stage4::consCand(tc, apf, config)) and
     nodes =
       strictcount(NodeEx n, FlowState state |
-        Stage3::revFlow(n, state, any(AccessPathFrontHead apf | apf.getHead() = tc), config)
+        Stage4::revFlow(n, state, any(AccessPathFrontHead apf | apf.getHead() = tc), config)
         or
         flowCandSummaryCtx(n, state, any(AccessPathFrontHead apf | apf.getHead() = tc), config)
       ) and
@@ -2332,11 +2572,11 @@ private predicate expensiveLen2unfolding(TypedContent tc, Configuration config)
 private newtype TAccessPathApprox =
   TNil(DataFlowType t) or
   TConsNil(TypedContent tc, DataFlowType t) {
-    Stage3::consCand(tc, TFrontNil(t), _) and
+    Stage4::consCand(tc, TFrontNil(t), _) and
     not expensiveLen2unfolding(tc, _)
   } or
   TConsCons(TypedContent tc1, TypedContent tc2, int len) {
-    Stage3::consCand(tc1, TFrontHead(tc2), _) and
+    Stage4::consCand(tc1, TFrontHead(tc2), _) and
     len in [2 .. accessPathLimit()] and
     not expensiveLen2unfolding(tc1, _)
   } or
@@ -2466,7 +2706,7 @@ private class AccessPathApproxCons1 extends AccessPathApproxCons, TCons1 {
   override AccessPathApprox pop(TypedContent head) {
     head = tc and
     (
-      exists(TypedContent tc2 | Stage3::consCand(tc, TFrontHead(tc2), _) |
+      exists(TypedContent tc2 | Stage4::consCand(tc, TFrontHead(tc2), _) |
         result = TConsCons(tc2, _, len - 1)
         or
         len = 2 and
@@ -2477,7 +2717,7 @@ private class AccessPathApproxCons1 extends AccessPathApproxCons, TCons1 {
       or
       exists(DataFlowType t |
         len = 1 and
-        Stage3::consCand(tc, TFrontNil(t), _) and
+        Stage4::consCand(tc, TFrontNil(t), _) and
         result = TNil(t)
       )
     )
@@ -2502,13 +2742,14 @@ private class AccessPathApproxOption extends TAccessPathApproxOption {
   }
 }
 
-private module Stage4Param implements MkStage<Stage3>::StageParam {
-  private module PrevStage = Stage3;
+private module Stage5Param implements MkStage<Stage4>::StageParam {
+  private module PrevStage = Stage4;
 
   class Ap = AccessPathApprox;
 
   class ApNil = AccessPathApproxNil;
 
+  pragma[nomagic]
   PrevStage::Ap getApprox(Ap ap) { result = ap.getFront() }
 
   ApNil getApNil(NodeEx node) {
@@ -2534,7 +2775,9 @@ private module Stage4Param implements MkStage<Stage3>::StageParam {
     NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
     ApNil ap, Configuration config, LocalCc lcc
   ) {
-    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap.getFront(), config, lcc)
+    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap.getType(), config, lcc) and
+    PrevStage::revFlow(node1, pragma[only_bind_into](state1), _, pragma[only_bind_into](config)) and
+    PrevStage::revFlowAlias(node2, pragma[only_bind_into](state2), _, pragma[only_bind_into](config))
   }
 
   pragma[nomagic]
@@ -2571,7 +2814,7 @@ private module Stage4Param implements MkStage<Stage3>::StageParam {
   predicate typecheckStore(Ap ap, DataFlowType contentType) { any() }
 }
 
-private module Stage4 = MkStage<Stage3>::Stage<Stage4Param>;
+private module Stage5 = MkStage<Stage4>::Stage<Stage5Param>;
 
 bindingset[conf, result]
 private Configuration unbindConf(Configuration conf) {
@@ -2585,8 +2828,8 @@ private predicate nodeMayUseSummary0(
 ) {
   exists(AccessPathApprox apa0 |
     c = n.getEnclosingCallable() and
-    Stage4::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
-    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TParameterPositionSome(pos),
+    Stage5::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
+    Stage5::fwdFlow(n, state, any(CallContextCall ccc), TParameterPositionSome(pos),
       TAccessPathApproxSome(apa), apa0, config)
   )
 }
@@ -2596,7 +2839,7 @@ private predicate nodeMayUseSummary(
   NodeEx n, FlowState state, AccessPathApprox apa, Configuration config
 ) {
   exists(DataFlowCallable c, ParameterPosition pos, ParamNodeEx p |
-    Stage4::parameterMayFlowThrough(p, apa, config) and
+    Stage5::parameterMayFlowThrough(p, apa, config) and
     nodeMayUseSummary0(n, c, pos, state, apa, config) and
     p.isParameterOf(c, pos)
   )
@@ -2606,8 +2849,8 @@ private newtype TSummaryCtx =
   TSummaryCtxNone() or
   TSummaryCtxSome(ParamNodeEx p, FlowState state, AccessPath ap) {
     exists(Configuration config |
-      Stage4::parameterMayFlowThrough(p, ap.getApprox(), config) and
-      Stage4::revFlow(p, state, _, config)
+      Stage5::parameterMayFlowThrough(p, ap.getApprox(), config) and
+      Stage5::revFlow(p, state, _, config)
     )
   }
 
@@ -2656,7 +2899,7 @@ private int count1to2unfold(AccessPathApproxCons1 apa, Configuration config) {
     len = apa.len() and
     result =
       strictcount(AccessPathFront apf |
-        Stage4::consCand(tc, any(AccessPathApprox ap | ap.getFront() = apf and ap.len() = len - 1),
+        Stage5::consCand(tc, any(AccessPathApprox ap | ap.getFront() = apf and ap.len() = len - 1),
           config)
       )
   )
@@ -2665,7 +2908,7 @@ private int count1to2unfold(AccessPathApproxCons1 apa, Configuration config) {
 private int countNodesUsingAccessPath(AccessPathApprox apa, Configuration config) {
   result =
     strictcount(NodeEx n, FlowState state |
-      Stage4::revFlow(n, state, apa, config) or nodeMayUseSummary(n, state, apa, config)
+      Stage5::revFlow(n, state, apa, config) or nodeMayUseSummary(n, state, apa, config)
     )
 }
 
@@ -2686,7 +2929,7 @@ private predicate expensiveLen1to2unfolding(AccessPathApproxCons1 apa, Configura
 private AccessPathApprox getATail(AccessPathApprox apa, Configuration config) {
   exists(TypedContent head |
     apa.pop(head) = result and
-    Stage4::consCand(head, result, config)
+    Stage5::consCand(head, result, config)
   )
 }
 
@@ -2768,7 +3011,7 @@ private newtype TPathNode =
     NodeEx node, FlowState state, CallContext cc, SummaryCtx sc, AccessPath ap, Configuration config
   ) {
     // A PathNode is introduced by a source ...
-    Stage4::revFlow(node, state, config) and
+    Stage5::revFlow(node, state, config) and
     sourceNode(node, state, config) and
     (
       if hasSourceCallCtx(config)
@@ -2782,7 +3025,7 @@ private newtype TPathNode =
     exists(PathNodeMid mid |
       pathStep(mid, node, state, cc, sc, ap) and
       pragma[only_bind_into](config) = mid.getConfiguration() and
-      Stage4::revFlow(node, state, ap.getApprox(), pragma[only_bind_into](config))
+      Stage5::revFlow(node, state, ap.getApprox(), pragma[only_bind_into](config))
     )
   } or
   TPathNodeSink(NodeEx node, FlowState state, Configuration config) {
@@ -2924,7 +3167,7 @@ private class AccessPathCons2 extends AccessPath, TAccessPathCons2 {
   override TypedContent getHead() { result = head1 }
 
   override AccessPath getTail() {
-    Stage4::consCand(head1, result.getApprox(), _) and
+    Stage5::consCand(head1, result.getApprox(), _) and
     result.getHead() = head2 and
     result.length() = len - 1
   }
@@ -2955,7 +3198,7 @@ private class AccessPathCons1 extends AccessPath, TAccessPathCons1 {
   override TypedContent getHead() { result = head }
 
   override AccessPath getTail() {
-    Stage4::consCand(head, result.getApprox(), _) and result.length() = len - 1
+    Stage5::consCand(head, result.getApprox(), _) and result.length() = len - 1
   }
 
   override AccessPathFrontHead getFront() { result = TFrontHead(head) }
@@ -3347,7 +3590,8 @@ private predicate pathStep(
     AccessPath ap0, NodeEx midnode, FlowState state0, Configuration conf, LocalCallContext localCC
   |
     pathNode(mid, midnode, state0, cc, sc, ap0, conf, localCC) and
-    localFlowBigStep(midnode, state0, node, state, false, ap.getFront(), conf, localCC) and
+    localFlowBigStep(midnode, state0, node, state, false, ap.(AccessPathNil).getType(), conf,
+      localCC) and
     ap0 instanceof AccessPathNil
   )
   or
@@ -3389,7 +3633,7 @@ private predicate pathReadStep(
 ) {
   ap0 = mid.getAp() and
   tc = ap0.getHead() and
-  Stage4::readStepCand(mid.getNodeEx(), tc.getContent(), node, mid.getConfiguration()) and
+  Stage5::readStepCand(mid.getNodeEx(), tc.getContent(), node, mid.getConfiguration()) and
   state = mid.getState() and
   cc = mid.getCallContext()
 }
@@ -3399,7 +3643,7 @@ private predicate pathStoreStep(
   PathNodeMid mid, NodeEx node, FlowState state, AccessPath ap0, TypedContent tc, CallContext cc
 ) {
   ap0 = mid.getAp() and
-  Stage4::storeStepCand(mid.getNodeEx(), _, tc, node, _, mid.getConfiguration()) and
+  Stage5::storeStepCand(mid.getNodeEx(), _, tc, node, _, mid.getConfiguration()) and
   state = mid.getState() and
   cc = mid.getCallContext()
 }
@@ -3436,7 +3680,7 @@ private NodeEx getAnOutNodeFlow(
   ReturnKindExt kind, DataFlowCall call, AccessPathApprox apa, Configuration config
 ) {
   result.asNode() = kind.getAnOutNode(call) and
-  Stage4::revFlow(result, _, apa, config)
+  Stage5::revFlow(result, _, apa, config)
 }
 
 /**
@@ -3472,7 +3716,7 @@ private predicate parameterCand(
   DataFlowCallable callable, ParameterPosition pos, AccessPathApprox apa, Configuration config
 ) {
   exists(ParamNodeEx p |
-    Stage4::revFlow(p, _, apa, config) and
+    Stage5::revFlow(p, _, apa, config) and
     p.isParameterOf(callable, pos)
   )
 }
@@ -3751,9 +3995,17 @@ predicate stageStats(
   n = 45 and
   Stage4::stats(false, nodes, fields, conscand, states, tuples, config)
   or
-  stage = "5 Fwd" and n = 50 and finalStats(true, nodes, fields, conscand, states, tuples)
+  stage = "5 Fwd" and
+  n = 50 and
+  Stage5::stats(true, nodes, fields, conscand, states, tuples, config)
   or
-  stage = "5 Rev" and n = 55 and finalStats(false, nodes, fields, conscand, states, tuples)
+  stage = "5 Rev" and
+  n = 55 and
+  Stage5::stats(false, nodes, fields, conscand, states, tuples, config)
+  or
+  stage = "6 Fwd" and n = 60 and finalStats(true, nodes, fields, conscand, states, tuples)
+  or
+  stage = "6 Rev" and n = 65 and finalStats(false, nodes, fields, conscand, states, tuples)
 }
 
 private module FlowExploration {
diff --git a/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImpl3.qll b/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImpl3.qll
index ccde916a3c2..6741ccc2f06 100644
--- a/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImpl3.qll
+++ b/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImpl3.qll
@@ -621,23 +621,6 @@ private predicate parameterFlowThroughAllowed(ParamNodeEx p, ReturnKindExt kind)
   )
 }
 
-/**
- * Holds if flow from a parameter at position `pos` inside `c` to a return node of
- * kind `kind` is allowed.
- *
- * We don't expect a parameter to return stored in itself, unless
- * explicitly allowed
- */
-bindingset[c, pos, kind]
-private predicate parameterFlowThroughAllowed(
-  DataFlowCallable c, ParameterPosition pos, ReturnKindExt kind
-) {
-  exists(ParamNodeEx p |
-    p.isParameterOf(c, pos) and
-    parameterFlowThroughAllowed(p, kind)
-  )
-}
-
 private module Stage1 implements StageSig {
   class Ap = Unit;
 
@@ -980,6 +963,12 @@ private module Stage1 implements StageSig {
   pragma[nomagic]
   predicate revFlow(NodeEx node, Configuration config) { revFlow(node, _, config) }
 
+  pragma[nomagic]
+  predicate revFlowAp(NodeEx node, Ap ap, Configuration config) {
+    revFlow(node, config) and
+    exists(ap)
+  }
+
   bindingset[node, state, config]
   predicate revFlow(NodeEx node, FlowState state, Ap ap, Configuration config) {
     revFlow(node, _, pragma[only_bind_into](config)) and
@@ -1022,9 +1011,13 @@ private module Stage1 implements StageSig {
   }
 
   pragma[nomagic]
-  predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config) {
+  predicate returnMayFlowThrough(
+    RetNodeEx ret, Ap argAp, Ap ap, ReturnKindExt kind, Configuration config
+  ) {
     throughFlowNodeCand(ret, config) and
-    kind = ret.getKind()
+    kind = ret.getKind() and
+    exists(argAp) and
+    exists(ap)
   }
 
   pragma[nomagic]
@@ -1189,6 +1182,8 @@ private signature module StageSig {
 
   predicate revFlow(NodeEx node, Configuration config);
 
+  predicate revFlowAp(NodeEx node, Ap ap, Configuration config);
+
   bindingset[node, state, config]
   predicate revFlow(NodeEx node, FlowState state, Ap ap, Configuration config);
 
@@ -1196,7 +1191,9 @@ private signature module StageSig {
 
   predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config);
 
-  predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config);
+  predicate returnMayFlowThrough(
+    RetNodeEx ret, Ap argAp, Ap ap, ReturnKindExt kind, Configuration config
+  );
 
   predicate storeStepCand(
     NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, DataFlowType contentType,
@@ -1281,21 +1278,43 @@ private module MkStage<StageSig PrevStage> {
     import Param
 
     /* Begin: Stage logic. */
-    bindingset[result, apa]
-    private ApApprox unbindApa(ApApprox apa) {
-      pragma[only_bind_out](apa) = pragma[only_bind_out](result)
+    // use an alias as a workaround for bad functionality-induced joins
+    pragma[nomagic]
+    private predicate revFlowApAlias(NodeEx node, ApApprox apa, Configuration config) {
+      PrevStage::revFlowAp(node, apa, config)
+    }
+
+    pragma[nomagic]
+    private predicate flowIntoCallApa(
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, ApApprox apa,
+      Configuration config
+    ) {
+      flowIntoCall(call, arg, p, allowsFieldFlow, config) and
+      PrevStage::revFlowAp(p, pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
+      revFlowApAlias(arg, pragma[only_bind_into](apa), pragma[only_bind_into](config))
+    }
+
+    pragma[nomagic]
+    private predicate flowOutOfCallApa(
+      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
+      ApApprox apa, Configuration config
+    ) {
+      flowOutOfCall(call, ret, kind, out, allowsFieldFlow, config) and
+      PrevStage::revFlowAp(out, pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
+      revFlowApAlias(ret, pragma[only_bind_into](apa), pragma[only_bind_into](config))
     }
 
     pragma[nomagic]
     private predicate flowThroughOutOfCall(
-      DataFlowCall call, DataFlowCallable c, CcCall ccc, RetNodeEx ret, ReturnKindExt kind,
-      NodeEx out, boolean allowsFieldFlow, Configuration config
+      DataFlowCall call, CcCall ccc, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow,
+      ApApprox argApa, ApApprox apa, Configuration config
     ) {
-      flowOutOfCall(call, ret, kind, out, allowsFieldFlow, pragma[only_bind_into](config)) and
-      PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
-      PrevStage::returnMayFlowThrough(ret, kind, pragma[only_bind_into](config)) and
-      matchesCall(ccc, call) and
-      c = ret.getEnclosingCallable()
+      exists(ReturnKindExt kind |
+        flowOutOfCallApa(call, ret, kind, out, allowsFieldFlow, apa, pragma[only_bind_into](config)) and
+        PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
+        PrevStage::returnMayFlowThrough(ret, argApa, apa, kind, pragma[only_bind_into](config)) and
+        matchesCall(ccc, call)
+      )
     }
 
     /**
@@ -1307,39 +1326,50 @@ private module MkStage<StageSig PrevStage> {
      * corresponding parameter position and access path of that argument, respectively.
      */
     pragma[nomagic]
+    additional predicate fwdFlow(
+      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      Ap ap, ApApprox apa, Configuration config
+    ) {
+      fwdFlow0(node, state, cc, summaryCtx, argAp, ap, apa, config) and
+      PrevStage::revFlow(node, state, apa, config) and
+      filter(node, state, ap, config)
+    }
+
+    pragma[inline]
     additional predicate fwdFlow(
       NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
       Ap ap, Configuration config
     ) {
-      fwdFlow0(node, state, cc, summaryCtx, argAp, ap, config) and
-      PrevStage::revFlow(node, state, unbindApa(getApprox(ap)), config) and
-      filter(node, state, ap, config)
+      fwdFlow(node, state, cc, summaryCtx, argAp, ap, _, config)
     }
 
     pragma[nomagic]
     private predicate fwdFlow0(
       NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      Ap ap, Configuration config
+      Ap ap, ApApprox apa, Configuration config
     ) {
       sourceNode(node, state, config) and
       (if hasSourceCallCtx(config) then cc = ccSomeCall() else cc = ccNone()) and
       argAp = apNone() and
       summaryCtx = TParameterPositionNone() and
-      ap = getApNil(node)
+      ap = getApNil(node) and
+      apa = getApprox(ap)
       or
-      exists(NodeEx mid, FlowState state0, Ap ap0, LocalCc localCc |
-        fwdFlow(mid, state0, cc, summaryCtx, argAp, ap0, config) and
+      exists(NodeEx mid, FlowState state0, Ap ap0, ApApprox apa0, LocalCc localCc |
+        fwdFlow(mid, state0, cc, summaryCtx, argAp, ap0, apa0, config) and
         localCc = getLocalCc(mid, cc)
       |
         localStep(mid, state0, node, state, true, _, config, localCc) and
-        ap = ap0
+        ap = ap0 and
+        apa = apa0
         or
         localStep(mid, state0, node, state, false, ap, config, localCc) and
-        ap0 instanceof ApNil
+        ap0 instanceof ApNil and
+        apa = getApprox(ap)
       )
       or
       exists(NodeEx mid |
-        fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, apa, pragma[only_bind_into](config)) and
         jumpStep(mid, node, config) and
         cc = ccNone() and
         summaryCtx = TParameterPositionNone() and
@@ -1352,7 +1382,8 @@ private module MkStage<StageSig PrevStage> {
         cc = ccNone() and
         summaryCtx = TParameterPositionNone() and
         argAp = apNone() and
-        ap = getApNil(node)
+        ap = getApNil(node) and
+        apa = getApprox(ap)
       )
       or
       exists(NodeEx mid, FlowState state0, ApNil nil |
@@ -1361,32 +1392,32 @@ private module MkStage<StageSig PrevStage> {
         cc = ccNone() and
         summaryCtx = TParameterPositionNone() and
         argAp = apNone() and
-        ap = getApNil(node)
+        ap = getApNil(node) and
+        apa = getApprox(ap)
       )
       or
       // store
       exists(TypedContent tc, Ap ap0 |
         fwdFlowStore(_, ap0, tc, node, state, cc, summaryCtx, argAp, config) and
-        ap = apCons(tc, ap0)
+        ap = apCons(tc, ap0) and
+        apa = getApprox(ap)
       )
       or
       // read
       exists(Ap ap0, Content c |
         fwdFlowRead(ap0, c, _, node, state, cc, summaryCtx, argAp, config) and
-        fwdFlowConsCand(ap0, c, ap, config)
+        fwdFlowConsCand(ap0, c, ap, config) and
+        apa = getApprox(ap)
       )
       or
       // flow into a callable
-      exists(ApApprox apa |
-        fwdFlowIn(_, node, state, _, cc, _, _, ap, config) and
-        apa = getApprox(ap) and
-        if PrevStage::parameterMayFlowThrough(node, apa, config)
-        then (
-          summaryCtx = TParameterPositionSome(node.(ParamNodeEx).getPosition()) and
-          argAp = apSome(ap)
-        ) else (
-          summaryCtx = TParameterPositionNone() and argAp = apNone()
-        )
+      fwdFlowIn(_, node, state, _, cc, _, _, ap, apa, config) and
+      if PrevStage::parameterMayFlowThrough(node, apa, config)
+      then (
+        summaryCtx = TParameterPositionSome(node.(ParamNodeEx).getPosition()) and
+        argAp = apSome(ap)
+      ) else (
+        summaryCtx = TParameterPositionNone() and argAp = apNone()
       )
       or
       // flow out of a callable
@@ -1394,8 +1425,8 @@ private module MkStage<StageSig PrevStage> {
         DataFlowCall call, RetNodeEx ret, boolean allowsFieldFlow, CcNoCall innercc,
         DataFlowCallable inner
       |
-        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, config) and
-        flowOutOfCall(call, ret, _, node, allowsFieldFlow, config) and
+        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, apa, config) and
+        flowOutOfCallApa(call, ret, _, node, allowsFieldFlow, apa, config) and
         inner = ret.getEnclosingCallable() and
         cc = getCallContextReturn(inner, call, innercc) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
@@ -1403,7 +1434,7 @@ private module MkStage<StageSig PrevStage> {
       or
       // flow through a callable
       exists(DataFlowCall call, ParameterPosition summaryCtx0, Ap argAp0 |
-        fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, config) and
+        fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, apa, config) and
         fwdFlowIsEntered(call, cc, summaryCtx, argAp, summaryCtx0, argAp0, config)
       )
     }
@@ -1413,9 +1444,9 @@ private module MkStage<StageSig PrevStage> {
       NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc,
       ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
     ) {
-      exists(DataFlowType contentType |
-        fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, config) and
-        PrevStage::storeStepCand(node1, unbindApa(getApprox(ap1)), tc, node2, contentType, config) and
+      exists(DataFlowType contentType, ApApprox apa1 |
+        fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, apa1, config) and
+        PrevStage::storeStepCand(node1, apa1, tc, node2, contentType, config) and
         typecheckStore(ap1, contentType)
       )
     }
@@ -1433,43 +1464,104 @@ private module MkStage<StageSig PrevStage> {
       )
     }
 
+    private class ApNonNil instanceof Ap {
+      pragma[nomagic]
+      ApNonNil() { not this instanceof ApNil }
+
+      string toString() { result = "" }
+    }
+
+    pragma[nomagic]
+    private predicate fwdFlowRead0(
+      NodeEx node1, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      ApNonNil ap, Configuration config
+    ) {
+      fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
+      PrevStage::readStepCand(node1, _, _, config)
+    }
+
     pragma[nomagic]
     private predicate fwdFlowRead(
       Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc,
       ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
     ) {
-      fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
+      fwdFlowRead0(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, c, node2, config) and
       getHeadContent(ap) = c
     }
 
     pragma[nomagic]
     private predicate fwdFlowIn(
-      DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, Cc innercc,
-      ParameterPositionOption summaryCtx, ApOption argAp, Ap ap, Configuration config
+      DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, CcCall innercc,
+      ParameterPositionOption summaryCtx, ApOption argAp, Ap ap, ApApprox apa, Configuration config
     ) {
       exists(ArgNodeEx arg, boolean allowsFieldFlow |
-        fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, config) and
-        flowIntoCall(call, arg, p, allowsFieldFlow, config) and
+        fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, apa, config) and
+        flowIntoCallApa(call, arg, p, allowsFieldFlow, apa, config) and
         innercc = getCallContextCall(call, p.getEnclosingCallable(), outercc) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
+    pragma[nomagic]
+    private predicate fwdFlowRetFromArg(
+      RetNodeEx ret, FlowState state, CcCall ccc, ParameterPosition summaryCtx, ParamNodeEx p,
+      Ap argAp, ApApprox argApa, Ap ap, ApApprox apa, Configuration config
+    ) {
+      exists(DataFlowCallable c, ReturnKindExt kind |
+        fwdFlow(pragma[only_bind_into](ret), state, ccc,
+          TParameterPositionSome(pragma[only_bind_into](summaryCtx)), apSome(argAp), ap, apa, config) and
+        getApprox(argAp) = argApa and
+        c = ret.getEnclosingCallable() and
+        kind = ret.getKind() and
+        p.isParameterOf(c, pragma[only_bind_into](summaryCtx)) and
+        parameterFlowThroughAllowed(p, kind)
+      )
+    }
+
+    pragma[inline]
+    private predicate fwdFlowInMayFlowThrough(
+      DataFlowCall call, Cc cc, CcCall innerCc, ParameterPositionOption summaryCtx, ApOption argAp,
+      ParamNodeEx param, Ap ap, ApApprox apa, Configuration config
+    ) {
+      fwdFlowIn(call, pragma[only_bind_into](param), _, cc, innerCc, summaryCtx, argAp, ap,
+        pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
+      PrevStage::parameterMayFlowThrough(param, apa, config)
+    }
+
+    // dedup before joining with `flowThroughOutOfCall`
+    pragma[nomagic]
+    private predicate fwdFlowInMayFlowThroughProj(
+      DataFlowCall call, CcCall innerCc, ApApprox apa, Configuration config
+    ) {
+      fwdFlowInMayFlowThrough(call, _, innerCc, _, _, _, _, apa, config)
+    }
+
+    /**
+     * Same as `flowThroughOutOfCall`, but restricted to calls that are reached
+     * in the flow covered by `fwdFlow`, where data might flow through the target
+     * callable and back out at `call`.
+     */
+    pragma[nomagic]
+    private predicate fwdFlowThroughOutOfCall(
+      DataFlowCall call, CcCall ccc, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow,
+      ApApprox argApa, ApApprox apa, Configuration config
+    ) {
+      fwdFlowInMayFlowThroughProj(call, ccc, argApa, config) and
+      flowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, argApa, apa, config)
+    }
+
     pragma[nomagic]
     private predicate fwdFlowOutFromArg(
       DataFlowCall call, NodeEx out, FlowState state, ParameterPosition summaryCtx, Ap argAp, Ap ap,
-      Configuration config
+      ApApprox apa, Configuration config
     ) {
-      exists(
-        DataFlowCallable c, RetNodeEx ret, ReturnKindExt kind, boolean allowsFieldFlow, CcCall ccc
-      |
-        fwdFlow(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc),
-          TParameterPositionSome(pragma[only_bind_into](summaryCtx)), apSome(argAp), ap, config) and
-        flowThroughOutOfCall(call, pragma[only_bind_into](c), ccc, ret, kind, out, allowsFieldFlow,
+      exists(RetNodeEx ret, boolean allowsFieldFlow, CcCall ccc, ApApprox argApa |
+        fwdFlowRetFromArg(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc),
+          summaryCtx, _, argAp, pragma[only_bind_into](argApa), ap, pragma[only_bind_into](apa),
           config) and
-        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
-        parameterFlowThroughAllowed(c, pragma[only_bind_into](summaryCtx), kind)
+        fwdFlowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, argApa, apa, config) and
+        (if allowsFieldFlow = false then ap instanceof ApNil else any())
       )
     }
 
@@ -1483,8 +1575,7 @@ private module MkStage<StageSig PrevStage> {
       ParameterPosition pos, Ap ap, Configuration config
     ) {
       exists(ParamNodeEx param |
-        fwdFlowIn(call, param, _, cc, _, summaryCtx, argAp, ap, config) and
-        PrevStage::parameterMayFlowThrough(param, unbindApa(getApprox(ap)), config) and
+        fwdFlowInMayFlowThrough(call, cc, _, summaryCtx, argAp, param, ap, _, config) and
         pos = param.getPosition()
       )
     }
@@ -1505,41 +1596,55 @@ private module MkStage<StageSig PrevStage> {
       fwdFlowConsCand(ap1, c, ap2, config)
     }
 
-    pragma[nomagic]
-    private predicate returnFlowsThrough0(
-      RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, DataFlowCallable c,
-      ParameterPosition ppos, Ap argAp, Ap ap, Configuration config
-    ) {
-      exists(boolean allowsFieldFlow |
-        fwdFlow(ret, state, ccc, TParameterPositionSome(ppos), apSome(argAp), ap, config) and
-        flowThroughOutOfCall(_, c, _, pragma[only_bind_into](ret), kind, _, allowsFieldFlow,
-          pragma[only_bind_into](config)) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
-      )
-    }
-
     pragma[nomagic]
     private predicate returnFlowsThrough(
       RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, ParamNodeEx p, Ap argAp,
       Ap ap, Configuration config
     ) {
-      exists(DataFlowCallable c, ParameterPosition ppos |
-        returnFlowsThrough0(ret, kind, state, ccc, c, ppos, argAp, ap, config) and
-        p.isParameterOf(c, ppos) and
-        parameterFlowThroughAllowed(p, kind)
+      exists(boolean allowsFieldFlow, ApApprox argApa, ApApprox apa |
+        fwdFlowRetFromArg(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc), _, p,
+          argAp, pragma[only_bind_into](argApa), ap, pragma[only_bind_into](apa), config) and
+        kind = ret.getKind() and
+        fwdFlowThroughOutOfCall(_, ccc, ret, _, allowsFieldFlow, argApa, apa, config) and
+        (if allowsFieldFlow = false then ap instanceof ApNil else any())
       )
     }
 
     pragma[nomagic]
     private predicate flowThroughIntoCall(
-      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp,
+      Configuration config
     ) {
-      exists(Ap argAp |
-        flowIntoCall(call, pragma[only_bind_into](arg), pragma[only_bind_into](p), allowsFieldFlow,
+      exists(ApApprox argApa |
+        flowIntoCallApa(call, pragma[only_bind_into](arg), pragma[only_bind_into](p),
+          allowsFieldFlow, argApa, pragma[only_bind_into](config)) and
+        fwdFlow(arg, _, _, _, _, pragma[only_bind_into](argAp), argApa,
           pragma[only_bind_into](config)) and
-        fwdFlow(arg, _, _, _, _, pragma[only_bind_into](argAp), pragma[only_bind_into](config)) and
         returnFlowsThrough(_, _, _, _, p, pragma[only_bind_into](argAp), _,
-          pragma[only_bind_into](config))
+          pragma[only_bind_into](config)) and
+        if allowsFieldFlow = false then argAp instanceof ApNil else any()
+      )
+    }
+
+    pragma[nomagic]
+    private predicate flowIntoCallAp(
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap ap,
+      Configuration config
+    ) {
+      exists(ApApprox apa |
+        flowIntoCallApa(call, arg, p, allowsFieldFlow, apa, config) and
+        fwdFlow(arg, _, _, _, _, ap, apa, config)
+      )
+    }
+
+    pragma[nomagic]
+    private predicate flowOutOfCallAp(
+      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
+      Ap ap, Configuration config
+    ) {
+      exists(ApApprox apa |
+        flowOutOfCallApa(call, ret, kind, out, allowsFieldFlow, apa, config) and
+        fwdFlow(ret, _, _, _, _, ap, apa, config)
       )
     }
 
@@ -1628,7 +1733,7 @@ private module MkStage<StageSig PrevStage> {
       // flow into a callable
       exists(ParamNodeEx p, boolean allowsFieldFlow |
         revFlow(p, state, TReturnCtxNone(), returnAp, ap, config) and
-        flowIntoCall(_, node, p, allowsFieldFlow, config) and
+        flowIntoCallAp(_, node, p, allowsFieldFlow, ap, config) and
         (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
         returnCtx = TReturnCtxNone()
       )
@@ -1682,22 +1787,41 @@ private module MkStage<StageSig PrevStage> {
     ) {
       exists(NodeEx out, boolean allowsFieldFlow |
         revFlow(out, state, returnCtx, returnAp, ap, config) and
-        flowOutOfCall(call, ret, kind, out, allowsFieldFlow, config) and
+        flowOutOfCallAp(call, ret, kind, out, allowsFieldFlow, ap, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
+    /**
+     * Same as `flowThroughIntoCall`, but restricted to calls that are reached
+     * in the flow covered by `revFlow`, where data might flow through the target
+     * callable and back out at `call`.
+     */
+    pragma[nomagic]
+    private predicate revFlowThroughIntoCall(
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp,
+      Configuration config
+    ) {
+      flowThroughIntoCall(call, arg, p, allowsFieldFlow, argAp, config) and
+      revFlowIsReturned(call, _, _, _, _, config)
+    }
+
+    pragma[nomagic]
+    private predicate revFlowParamToReturn(
+      ParamNodeEx p, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap, Configuration config
+    ) {
+      revFlow(p, state, TReturnCtxMaybeFlowThrough(kind), apSome(returnAp), ap, config) and
+      parameterFlowThroughAllowed(p, kind)
+    }
+
     pragma[nomagic]
     private predicate revFlowInToReturn(
       DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap,
       Configuration config
     ) {
       exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(pragma[only_bind_into](p), state,
-          TReturnCtxMaybeFlowThrough(pragma[only_bind_into](kind)), apSome(returnAp), ap, config) and
-        flowThroughIntoCall(call, arg, p, allowsFieldFlow, config) and
-        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
-        parameterFlowThroughAllowed(p, kind)
+        revFlowParamToReturn(p, state, kind, returnAp, ap, config) and
+        revFlowThroughIntoCall(call, arg, p, allowsFieldFlow, ap, config)
       )
     }
 
@@ -1750,6 +1874,11 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     predicate revFlow(NodeEx node, Configuration config) { revFlow(node, _, _, _, _, config) }
 
+    pragma[nomagic]
+    predicate revFlowAp(NodeEx node, Ap ap, Configuration config) {
+      revFlow(node, _, _, _, ap, config)
+    }
+
     // use an alias as a workaround for bad functionality-induced joins
     pragma[nomagic]
     additional predicate revFlowAlias(NodeEx node, Configuration config) {
@@ -1786,9 +1915,9 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate parameterFlowsThroughRev(
-      ParamNodeEx p, Ap ap, ReturnKindExt kind, Configuration config
+      ParamNodeEx p, Ap ap, ReturnKindExt kind, Ap returnAp, Configuration config
     ) {
-      revFlow(p, _, TReturnCtxMaybeFlowThrough(kind), apSome(_), ap, config) and
+      revFlow(p, _, TReturnCtxMaybeFlowThrough(kind), apSome(returnAp), ap, config) and
       parameterFlowThroughAllowed(p, kind)
     }
 
@@ -1796,27 +1925,36 @@ private module MkStage<StageSig PrevStage> {
     predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
       exists(RetNodeEx ret, ReturnKindExt kind |
         returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
-        parameterFlowsThroughRev(p, ap, kind, config)
+        parameterFlowsThroughRev(p, ap, kind, _, config)
       )
     }
 
     pragma[nomagic]
-    predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config) {
-      exists(ParamNodeEx p, Ap ap |
-        returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
-        parameterFlowsThroughRev(p, ap, kind, config)
+    predicate returnMayFlowThrough(
+      RetNodeEx ret, Ap argAp, Ap ap, ReturnKindExt kind, Configuration config
+    ) {
+      exists(ParamNodeEx p |
+        returnFlowsThrough(ret, kind, _, _, p, argAp, ap, config) and
+        parameterFlowsThroughRev(p, argAp, kind, ap, config)
+      )
+    }
+
+    pragma[nomagic]
+    predicate revFlowInToReturnIsReturned(
+      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnCtx returnCtx, ApOption returnAp,
+      Ap ap, Configuration config
+    ) {
+      exists(ReturnKindExt returnKind0, Ap returnAp0 |
+        revFlowInToReturn(call, arg, state, returnKind0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
       )
     }
 
     pragma[nomagic]
     predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
-      exists(
-        ReturnKindExt returnKind0, Ap returnAp0, ArgNodeEx arg, FlowState state,
-        ReturnCtx returnCtx, ApOption returnAp, Ap ap
-      |
+      exists(ArgNodeEx arg, FlowState state, ReturnCtx returnCtx, ApOption returnAp, Ap ap |
         revFlow(arg, state, returnCtx, returnAp, ap, config) and
-        revFlowInToReturn(call, arg, state, returnKind0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
+        revFlowInToReturnIsReturned(call, arg, state, returnCtx, returnAp, ap, config)
       )
     }
 
@@ -2179,16 +2317,16 @@ private module LocalFlowBigStep {
   pragma[nomagic]
   predicate localFlowBigStep(
     NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
-    AccessPathFrontNil apf, Configuration config, LocalCallContext callContext
+    DataFlowType t, Configuration config, LocalCallContext callContext
   ) {
-    localFlowStepPlus(node1, state1, node2, preservesValue, apf.getType(), config, callContext) and
+    localFlowStepPlus(node1, state1, node2, preservesValue, t, config, callContext) and
     localFlowExit(node2, state1, config) and
     state1 = state2
     or
     additionalLocalFlowStepNodeCand2(node1, state1, node2, state2, config) and
     state1 != state2 and
     preservesValue = false and
-    apf = TFrontNil(node2.getDataFlowType()) and
+    t = node2.getDataFlowType() and
     callContext.relevantFor(node1.getEnclosingCallable()) and
     not exists(DataFlowCall call | call = callContext.(LocalCallContextSpecificCall).getCall() |
       isUnreachableInCallCached(node1.asNode(), call) or
@@ -2202,11 +2340,87 @@ private import LocalFlowBigStep
 private module Stage3Param implements MkStage<Stage2>::StageParam {
   private module PrevStage = Stage2;
 
+  class Ap = ApproxAccessPathFront;
+
+  class ApNil = ApproxAccessPathFrontNil;
+
+  PrevStage::Ap getApprox(Ap ap) { result = ap.toBoolNonEmpty() }
+
+  ApNil getApNil(NodeEx node) {
+    PrevStage::revFlow(node, _) and result = TApproxFrontNil(node.getDataFlowType())
+  }
+
+  bindingset[tc, tail]
+  Ap apCons(TypedContent tc, Ap tail) { result.getAHead() = tc and exists(tail) }
+
+  pragma[noinline]
+  Content getHeadContent(Ap ap) { result = ap.getAHead().getContent() }
+
+  class ApOption = ApproxAccessPathFrontOption;
+
+  ApOption apNone() { result = TApproxAccessPathFrontNone() }
+
+  ApOption apSome(Ap ap) { result = TApproxAccessPathFrontSome(ap) }
+
+  import BooleanCallContext
+
+  predicate localStep(
+    NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
+    ApproxAccessPathFrontNil ap, Configuration config, LocalCc lcc
+  ) {
+    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap.getType(), config, _) and
+    exists(lcc)
+  }
+
+  predicate flowOutOfCall = flowOutOfCallNodeCand2/6;
+
+  predicate flowIntoCall = flowIntoCallNodeCand2/5;
+
+  pragma[nomagic]
+  private predicate expectsContentCand(NodeEx node, Ap ap, Configuration config) {
+    exists(Content c |
+      PrevStage::revFlow(node, pragma[only_bind_into](config)) and
+      PrevStage::readStepCand(_, c, _, pragma[only_bind_into](config)) and
+      expectsContentEx(node, c) and
+      c = ap.getAHead().getContent()
+    )
+  }
+
+  pragma[nomagic]
+  private predicate castingNodeEx(NodeEx node) { node.asNode() instanceof CastingNode }
+
+  bindingset[node, state, ap, config]
+  predicate filter(NodeEx node, FlowState state, Ap ap, Configuration config) {
+    exists(state) and
+    exists(config) and
+    (if castingNodeEx(node) then compatibleTypes(node.getDataFlowType(), ap.getType()) else any()) and
+    (
+      notExpectsContent(node)
+      or
+      expectsContentCand(node, ap, config)
+    )
+  }
+
+  bindingset[ap, contentType]
+  predicate typecheckStore(Ap ap, DataFlowType contentType) {
+    // We need to typecheck stores here, since reverse flow through a getter
+    // might have a different type here compared to inside the getter.
+    compatibleTypes(ap.getType(), contentType)
+  }
+}
+
+private module Stage3 implements StageSig {
+  import MkStage<Stage2>::Stage<Stage3Param>
+}
+
+private module Stage4Param implements MkStage<Stage3>::StageParam {
+  private module PrevStage = Stage3;
+
   class Ap = AccessPathFront;
 
   class ApNil = AccessPathFrontNil;
 
-  PrevStage::Ap getApprox(Ap ap) { result = ap.toBoolNonEmpty() }
+  PrevStage::Ap getApprox(Ap ap) { result = ap.toApprox() }
 
   ApNil getApNil(NodeEx node) {
     PrevStage::revFlow(node, _) and result = TFrontNil(node.getDataFlowType())
@@ -2226,16 +2440,42 @@ private module Stage3Param implements MkStage<Stage2>::StageParam {
 
   import BooleanCallContext
 
+  pragma[nomagic]
   predicate localStep(
     NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
     ApNil ap, Configuration config, LocalCc lcc
   ) {
-    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap, config, _) and exists(lcc)
+    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap.getType(), config, _) and
+    PrevStage::revFlow(node1, pragma[only_bind_into](state1), _, pragma[only_bind_into](config)) and
+    PrevStage::revFlowAlias(node2, pragma[only_bind_into](state2), _, pragma[only_bind_into](config)) and
+    exists(lcc)
   }
 
-  predicate flowOutOfCall = flowOutOfCallNodeCand2/6;
+  pragma[nomagic]
+  predicate flowOutOfCall(
+    DataFlowCall call, RetNodeEx node1, ReturnKindExt kind, NodeEx node2, boolean allowsFieldFlow,
+    Configuration config
+  ) {
+    exists(FlowState state |
+      flowOutOfCallNodeCand2(call, node1, kind, node2, allowsFieldFlow, config) and
+      PrevStage::revFlow(node2, pragma[only_bind_into](state), _, pragma[only_bind_into](config)) and
+      PrevStage::revFlowAlias(node1, pragma[only_bind_into](state), _,
+        pragma[only_bind_into](config))
+    )
+  }
 
-  predicate flowIntoCall = flowIntoCallNodeCand2/5;
+  pragma[nomagic]
+  predicate flowIntoCall(
+    DataFlowCall call, ArgNodeEx node1, ParamNodeEx node2, boolean allowsFieldFlow,
+    Configuration config
+  ) {
+    exists(FlowState state |
+      flowIntoCallNodeCand2(call, node1, node2, allowsFieldFlow, config) and
+      PrevStage::revFlow(node2, pragma[only_bind_into](state), _, pragma[only_bind_into](config)) and
+      PrevStage::revFlowAlias(node1, pragma[only_bind_into](state), _,
+        pragma[only_bind_into](config))
+    )
+  }
 
   pragma[nomagic]
   private predicate clearSet(NodeEx node, ContentSet c, Configuration config) {
@@ -2291,8 +2531,8 @@ private module Stage3Param implements MkStage<Stage2>::StageParam {
   }
 }
 
-private module Stage3 implements StageSig {
-  import MkStage<Stage2>::Stage<Stage3Param>
+private module Stage4 implements StageSig {
+  import MkStage<Stage3>::Stage<Stage4Param>
 }
 
 /**
@@ -2303,8 +2543,8 @@ private predicate flowCandSummaryCtx(
   NodeEx node, FlowState state, AccessPathFront argApf, Configuration config
 ) {
   exists(AccessPathFront apf |
-    Stage3::revFlow(node, state, TReturnCtxMaybeFlowThrough(_), _, apf, config) and
-    Stage3::fwdFlow(node, state, any(Stage3::CcCall ccc), _, TAccessPathFrontSome(argApf), apf,
+    Stage4::revFlow(node, state, TReturnCtxMaybeFlowThrough(_), _, apf, config) and
+    Stage4::fwdFlow(node, state, any(Stage4::CcCall ccc), _, TAccessPathFrontSome(argApf), apf,
       config)
   )
 }
@@ -2315,10 +2555,10 @@ private predicate flowCandSummaryCtx(
  */
 private predicate expensiveLen2unfolding(TypedContent tc, Configuration config) {
   exists(int tails, int nodes, int apLimit, int tupleLimit |
-    tails = strictcount(AccessPathFront apf | Stage3::consCand(tc, apf, config)) and
+    tails = strictcount(AccessPathFront apf | Stage4::consCand(tc, apf, config)) and
     nodes =
       strictcount(NodeEx n, FlowState state |
-        Stage3::revFlow(n, state, any(AccessPathFrontHead apf | apf.getHead() = tc), config)
+        Stage4::revFlow(n, state, any(AccessPathFrontHead apf | apf.getHead() = tc), config)
         or
         flowCandSummaryCtx(n, state, any(AccessPathFrontHead apf | apf.getHead() = tc), config)
       ) and
@@ -2332,11 +2572,11 @@ private predicate expensiveLen2unfolding(TypedContent tc, Configuration config)
 private newtype TAccessPathApprox =
   TNil(DataFlowType t) or
   TConsNil(TypedContent tc, DataFlowType t) {
-    Stage3::consCand(tc, TFrontNil(t), _) and
+    Stage4::consCand(tc, TFrontNil(t), _) and
     not expensiveLen2unfolding(tc, _)
   } or
   TConsCons(TypedContent tc1, TypedContent tc2, int len) {
-    Stage3::consCand(tc1, TFrontHead(tc2), _) and
+    Stage4::consCand(tc1, TFrontHead(tc2), _) and
     len in [2 .. accessPathLimit()] and
     not expensiveLen2unfolding(tc1, _)
   } or
@@ -2466,7 +2706,7 @@ private class AccessPathApproxCons1 extends AccessPathApproxCons, TCons1 {
   override AccessPathApprox pop(TypedContent head) {
     head = tc and
     (
-      exists(TypedContent tc2 | Stage3::consCand(tc, TFrontHead(tc2), _) |
+      exists(TypedContent tc2 | Stage4::consCand(tc, TFrontHead(tc2), _) |
         result = TConsCons(tc2, _, len - 1)
         or
         len = 2 and
@@ -2477,7 +2717,7 @@ private class AccessPathApproxCons1 extends AccessPathApproxCons, TCons1 {
       or
       exists(DataFlowType t |
         len = 1 and
-        Stage3::consCand(tc, TFrontNil(t), _) and
+        Stage4::consCand(tc, TFrontNil(t), _) and
         result = TNil(t)
       )
     )
@@ -2502,13 +2742,14 @@ private class AccessPathApproxOption extends TAccessPathApproxOption {
   }
 }
 
-private module Stage4Param implements MkStage<Stage3>::StageParam {
-  private module PrevStage = Stage3;
+private module Stage5Param implements MkStage<Stage4>::StageParam {
+  private module PrevStage = Stage4;
 
   class Ap = AccessPathApprox;
 
   class ApNil = AccessPathApproxNil;
 
+  pragma[nomagic]
   PrevStage::Ap getApprox(Ap ap) { result = ap.getFront() }
 
   ApNil getApNil(NodeEx node) {
@@ -2534,7 +2775,9 @@ private module Stage4Param implements MkStage<Stage3>::StageParam {
     NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
     ApNil ap, Configuration config, LocalCc lcc
   ) {
-    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap.getFront(), config, lcc)
+    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap.getType(), config, lcc) and
+    PrevStage::revFlow(node1, pragma[only_bind_into](state1), _, pragma[only_bind_into](config)) and
+    PrevStage::revFlowAlias(node2, pragma[only_bind_into](state2), _, pragma[only_bind_into](config))
   }
 
   pragma[nomagic]
@@ -2571,7 +2814,7 @@ private module Stage4Param implements MkStage<Stage3>::StageParam {
   predicate typecheckStore(Ap ap, DataFlowType contentType) { any() }
 }
 
-private module Stage4 = MkStage<Stage3>::Stage<Stage4Param>;
+private module Stage5 = MkStage<Stage4>::Stage<Stage5Param>;
 
 bindingset[conf, result]
 private Configuration unbindConf(Configuration conf) {
@@ -2585,8 +2828,8 @@ private predicate nodeMayUseSummary0(
 ) {
   exists(AccessPathApprox apa0 |
     c = n.getEnclosingCallable() and
-    Stage4::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
-    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TParameterPositionSome(pos),
+    Stage5::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
+    Stage5::fwdFlow(n, state, any(CallContextCall ccc), TParameterPositionSome(pos),
       TAccessPathApproxSome(apa), apa0, config)
   )
 }
@@ -2596,7 +2839,7 @@ private predicate nodeMayUseSummary(
   NodeEx n, FlowState state, AccessPathApprox apa, Configuration config
 ) {
   exists(DataFlowCallable c, ParameterPosition pos, ParamNodeEx p |
-    Stage4::parameterMayFlowThrough(p, apa, config) and
+    Stage5::parameterMayFlowThrough(p, apa, config) and
     nodeMayUseSummary0(n, c, pos, state, apa, config) and
     p.isParameterOf(c, pos)
   )
@@ -2606,8 +2849,8 @@ private newtype TSummaryCtx =
   TSummaryCtxNone() or
   TSummaryCtxSome(ParamNodeEx p, FlowState state, AccessPath ap) {
     exists(Configuration config |
-      Stage4::parameterMayFlowThrough(p, ap.getApprox(), config) and
-      Stage4::revFlow(p, state, _, config)
+      Stage5::parameterMayFlowThrough(p, ap.getApprox(), config) and
+      Stage5::revFlow(p, state, _, config)
     )
   }
 
@@ -2656,7 +2899,7 @@ private int count1to2unfold(AccessPathApproxCons1 apa, Configuration config) {
     len = apa.len() and
     result =
       strictcount(AccessPathFront apf |
-        Stage4::consCand(tc, any(AccessPathApprox ap | ap.getFront() = apf and ap.len() = len - 1),
+        Stage5::consCand(tc, any(AccessPathApprox ap | ap.getFront() = apf and ap.len() = len - 1),
           config)
       )
   )
@@ -2665,7 +2908,7 @@ private int count1to2unfold(AccessPathApproxCons1 apa, Configuration config) {
 private int countNodesUsingAccessPath(AccessPathApprox apa, Configuration config) {
   result =
     strictcount(NodeEx n, FlowState state |
-      Stage4::revFlow(n, state, apa, config) or nodeMayUseSummary(n, state, apa, config)
+      Stage5::revFlow(n, state, apa, config) or nodeMayUseSummary(n, state, apa, config)
     )
 }
 
@@ -2686,7 +2929,7 @@ private predicate expensiveLen1to2unfolding(AccessPathApproxCons1 apa, Configura
 private AccessPathApprox getATail(AccessPathApprox apa, Configuration config) {
   exists(TypedContent head |
     apa.pop(head) = result and
-    Stage4::consCand(head, result, config)
+    Stage5::consCand(head, result, config)
   )
 }
 
@@ -2768,7 +3011,7 @@ private newtype TPathNode =
     NodeEx node, FlowState state, CallContext cc, SummaryCtx sc, AccessPath ap, Configuration config
   ) {
     // A PathNode is introduced by a source ...
-    Stage4::revFlow(node, state, config) and
+    Stage5::revFlow(node, state, config) and
     sourceNode(node, state, config) and
     (
       if hasSourceCallCtx(config)
@@ -2782,7 +3025,7 @@ private newtype TPathNode =
     exists(PathNodeMid mid |
       pathStep(mid, node, state, cc, sc, ap) and
       pragma[only_bind_into](config) = mid.getConfiguration() and
-      Stage4::revFlow(node, state, ap.getApprox(), pragma[only_bind_into](config))
+      Stage5::revFlow(node, state, ap.getApprox(), pragma[only_bind_into](config))
     )
   } or
   TPathNodeSink(NodeEx node, FlowState state, Configuration config) {
@@ -2924,7 +3167,7 @@ private class AccessPathCons2 extends AccessPath, TAccessPathCons2 {
   override TypedContent getHead() { result = head1 }
 
   override AccessPath getTail() {
-    Stage4::consCand(head1, result.getApprox(), _) and
+    Stage5::consCand(head1, result.getApprox(), _) and
     result.getHead() = head2 and
     result.length() = len - 1
   }
@@ -2955,7 +3198,7 @@ private class AccessPathCons1 extends AccessPath, TAccessPathCons1 {
   override TypedContent getHead() { result = head }
 
   override AccessPath getTail() {
-    Stage4::consCand(head, result.getApprox(), _) and result.length() = len - 1
+    Stage5::consCand(head, result.getApprox(), _) and result.length() = len - 1
   }
 
   override AccessPathFrontHead getFront() { result = TFrontHead(head) }
@@ -3347,7 +3590,8 @@ private predicate pathStep(
     AccessPath ap0, NodeEx midnode, FlowState state0, Configuration conf, LocalCallContext localCC
   |
     pathNode(mid, midnode, state0, cc, sc, ap0, conf, localCC) and
-    localFlowBigStep(midnode, state0, node, state, false, ap.getFront(), conf, localCC) and
+    localFlowBigStep(midnode, state0, node, state, false, ap.(AccessPathNil).getType(), conf,
+      localCC) and
     ap0 instanceof AccessPathNil
   )
   or
@@ -3389,7 +3633,7 @@ private predicate pathReadStep(
 ) {
   ap0 = mid.getAp() and
   tc = ap0.getHead() and
-  Stage4::readStepCand(mid.getNodeEx(), tc.getContent(), node, mid.getConfiguration()) and
+  Stage5::readStepCand(mid.getNodeEx(), tc.getContent(), node, mid.getConfiguration()) and
   state = mid.getState() and
   cc = mid.getCallContext()
 }
@@ -3399,7 +3643,7 @@ private predicate pathStoreStep(
   PathNodeMid mid, NodeEx node, FlowState state, AccessPath ap0, TypedContent tc, CallContext cc
 ) {
   ap0 = mid.getAp() and
-  Stage4::storeStepCand(mid.getNodeEx(), _, tc, node, _, mid.getConfiguration()) and
+  Stage5::storeStepCand(mid.getNodeEx(), _, tc, node, _, mid.getConfiguration()) and
   state = mid.getState() and
   cc = mid.getCallContext()
 }
@@ -3436,7 +3680,7 @@ private NodeEx getAnOutNodeFlow(
   ReturnKindExt kind, DataFlowCall call, AccessPathApprox apa, Configuration config
 ) {
   result.asNode() = kind.getAnOutNode(call) and
-  Stage4::revFlow(result, _, apa, config)
+  Stage5::revFlow(result, _, apa, config)
 }
 
 /**
@@ -3472,7 +3716,7 @@ private predicate parameterCand(
   DataFlowCallable callable, ParameterPosition pos, AccessPathApprox apa, Configuration config
 ) {
   exists(ParamNodeEx p |
-    Stage4::revFlow(p, _, apa, config) and
+    Stage5::revFlow(p, _, apa, config) and
     p.isParameterOf(callable, pos)
   )
 }
@@ -3751,9 +3995,17 @@ predicate stageStats(
   n = 45 and
   Stage4::stats(false, nodes, fields, conscand, states, tuples, config)
   or
-  stage = "5 Fwd" and n = 50 and finalStats(true, nodes, fields, conscand, states, tuples)
+  stage = "5 Fwd" and
+  n = 50 and
+  Stage5::stats(true, nodes, fields, conscand, states, tuples, config)
   or
-  stage = "5 Rev" and n = 55 and finalStats(false, nodes, fields, conscand, states, tuples)
+  stage = "5 Rev" and
+  n = 55 and
+  Stage5::stats(false, nodes, fields, conscand, states, tuples, config)
+  or
+  stage = "6 Fwd" and n = 60 and finalStats(true, nodes, fields, conscand, states, tuples)
+  or
+  stage = "6 Rev" and n = 65 and finalStats(false, nodes, fields, conscand, states, tuples)
 }
 
 private module FlowExploration {
diff --git a/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImpl4.qll b/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImpl4.qll
index ccde916a3c2..6741ccc2f06 100644
--- a/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImpl4.qll
+++ b/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImpl4.qll
@@ -621,23 +621,6 @@ private predicate parameterFlowThroughAllowed(ParamNodeEx p, ReturnKindExt kind)
   )
 }
 
-/**
- * Holds if flow from a parameter at position `pos` inside `c` to a return node of
- * kind `kind` is allowed.
- *
- * We don't expect a parameter to return stored in itself, unless
- * explicitly allowed
- */
-bindingset[c, pos, kind]
-private predicate parameterFlowThroughAllowed(
-  DataFlowCallable c, ParameterPosition pos, ReturnKindExt kind
-) {
-  exists(ParamNodeEx p |
-    p.isParameterOf(c, pos) and
-    parameterFlowThroughAllowed(p, kind)
-  )
-}
-
 private module Stage1 implements StageSig {
   class Ap = Unit;
 
@@ -980,6 +963,12 @@ private module Stage1 implements StageSig {
   pragma[nomagic]
   predicate revFlow(NodeEx node, Configuration config) { revFlow(node, _, config) }
 
+  pragma[nomagic]
+  predicate revFlowAp(NodeEx node, Ap ap, Configuration config) {
+    revFlow(node, config) and
+    exists(ap)
+  }
+
   bindingset[node, state, config]
   predicate revFlow(NodeEx node, FlowState state, Ap ap, Configuration config) {
     revFlow(node, _, pragma[only_bind_into](config)) and
@@ -1022,9 +1011,13 @@ private module Stage1 implements StageSig {
   }
 
   pragma[nomagic]
-  predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config) {
+  predicate returnMayFlowThrough(
+    RetNodeEx ret, Ap argAp, Ap ap, ReturnKindExt kind, Configuration config
+  ) {
     throughFlowNodeCand(ret, config) and
-    kind = ret.getKind()
+    kind = ret.getKind() and
+    exists(argAp) and
+    exists(ap)
   }
 
   pragma[nomagic]
@@ -1189,6 +1182,8 @@ private signature module StageSig {
 
   predicate revFlow(NodeEx node, Configuration config);
 
+  predicate revFlowAp(NodeEx node, Ap ap, Configuration config);
+
   bindingset[node, state, config]
   predicate revFlow(NodeEx node, FlowState state, Ap ap, Configuration config);
 
@@ -1196,7 +1191,9 @@ private signature module StageSig {
 
   predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config);
 
-  predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config);
+  predicate returnMayFlowThrough(
+    RetNodeEx ret, Ap argAp, Ap ap, ReturnKindExt kind, Configuration config
+  );
 
   predicate storeStepCand(
     NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, DataFlowType contentType,
@@ -1281,21 +1278,43 @@ private module MkStage<StageSig PrevStage> {
     import Param
 
     /* Begin: Stage logic. */
-    bindingset[result, apa]
-    private ApApprox unbindApa(ApApprox apa) {
-      pragma[only_bind_out](apa) = pragma[only_bind_out](result)
+    // use an alias as a workaround for bad functionality-induced joins
+    pragma[nomagic]
+    private predicate revFlowApAlias(NodeEx node, ApApprox apa, Configuration config) {
+      PrevStage::revFlowAp(node, apa, config)
+    }
+
+    pragma[nomagic]
+    private predicate flowIntoCallApa(
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, ApApprox apa,
+      Configuration config
+    ) {
+      flowIntoCall(call, arg, p, allowsFieldFlow, config) and
+      PrevStage::revFlowAp(p, pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
+      revFlowApAlias(arg, pragma[only_bind_into](apa), pragma[only_bind_into](config))
+    }
+
+    pragma[nomagic]
+    private predicate flowOutOfCallApa(
+      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
+      ApApprox apa, Configuration config
+    ) {
+      flowOutOfCall(call, ret, kind, out, allowsFieldFlow, config) and
+      PrevStage::revFlowAp(out, pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
+      revFlowApAlias(ret, pragma[only_bind_into](apa), pragma[only_bind_into](config))
     }
 
     pragma[nomagic]
     private predicate flowThroughOutOfCall(
-      DataFlowCall call, DataFlowCallable c, CcCall ccc, RetNodeEx ret, ReturnKindExt kind,
-      NodeEx out, boolean allowsFieldFlow, Configuration config
+      DataFlowCall call, CcCall ccc, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow,
+      ApApprox argApa, ApApprox apa, Configuration config
     ) {
-      flowOutOfCall(call, ret, kind, out, allowsFieldFlow, pragma[only_bind_into](config)) and
-      PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
-      PrevStage::returnMayFlowThrough(ret, kind, pragma[only_bind_into](config)) and
-      matchesCall(ccc, call) and
-      c = ret.getEnclosingCallable()
+      exists(ReturnKindExt kind |
+        flowOutOfCallApa(call, ret, kind, out, allowsFieldFlow, apa, pragma[only_bind_into](config)) and
+        PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
+        PrevStage::returnMayFlowThrough(ret, argApa, apa, kind, pragma[only_bind_into](config)) and
+        matchesCall(ccc, call)
+      )
     }
 
     /**
@@ -1307,39 +1326,50 @@ private module MkStage<StageSig PrevStage> {
      * corresponding parameter position and access path of that argument, respectively.
      */
     pragma[nomagic]
+    additional predicate fwdFlow(
+      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      Ap ap, ApApprox apa, Configuration config
+    ) {
+      fwdFlow0(node, state, cc, summaryCtx, argAp, ap, apa, config) and
+      PrevStage::revFlow(node, state, apa, config) and
+      filter(node, state, ap, config)
+    }
+
+    pragma[inline]
     additional predicate fwdFlow(
       NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
       Ap ap, Configuration config
     ) {
-      fwdFlow0(node, state, cc, summaryCtx, argAp, ap, config) and
-      PrevStage::revFlow(node, state, unbindApa(getApprox(ap)), config) and
-      filter(node, state, ap, config)
+      fwdFlow(node, state, cc, summaryCtx, argAp, ap, _, config)
     }
 
     pragma[nomagic]
     private predicate fwdFlow0(
       NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      Ap ap, Configuration config
+      Ap ap, ApApprox apa, Configuration config
     ) {
       sourceNode(node, state, config) and
       (if hasSourceCallCtx(config) then cc = ccSomeCall() else cc = ccNone()) and
       argAp = apNone() and
       summaryCtx = TParameterPositionNone() and
-      ap = getApNil(node)
+      ap = getApNil(node) and
+      apa = getApprox(ap)
       or
-      exists(NodeEx mid, FlowState state0, Ap ap0, LocalCc localCc |
-        fwdFlow(mid, state0, cc, summaryCtx, argAp, ap0, config) and
+      exists(NodeEx mid, FlowState state0, Ap ap0, ApApprox apa0, LocalCc localCc |
+        fwdFlow(mid, state0, cc, summaryCtx, argAp, ap0, apa0, config) and
         localCc = getLocalCc(mid, cc)
       |
         localStep(mid, state0, node, state, true, _, config, localCc) and
-        ap = ap0
+        ap = ap0 and
+        apa = apa0
         or
         localStep(mid, state0, node, state, false, ap, config, localCc) and
-        ap0 instanceof ApNil
+        ap0 instanceof ApNil and
+        apa = getApprox(ap)
       )
       or
       exists(NodeEx mid |
-        fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, apa, pragma[only_bind_into](config)) and
         jumpStep(mid, node, config) and
         cc = ccNone() and
         summaryCtx = TParameterPositionNone() and
@@ -1352,7 +1382,8 @@ private module MkStage<StageSig PrevStage> {
         cc = ccNone() and
         summaryCtx = TParameterPositionNone() and
         argAp = apNone() and
-        ap = getApNil(node)
+        ap = getApNil(node) and
+        apa = getApprox(ap)
       )
       or
       exists(NodeEx mid, FlowState state0, ApNil nil |
@@ -1361,32 +1392,32 @@ private module MkStage<StageSig PrevStage> {
         cc = ccNone() and
         summaryCtx = TParameterPositionNone() and
         argAp = apNone() and
-        ap = getApNil(node)
+        ap = getApNil(node) and
+        apa = getApprox(ap)
       )
       or
       // store
       exists(TypedContent tc, Ap ap0 |
         fwdFlowStore(_, ap0, tc, node, state, cc, summaryCtx, argAp, config) and
-        ap = apCons(tc, ap0)
+        ap = apCons(tc, ap0) and
+        apa = getApprox(ap)
       )
       or
       // read
       exists(Ap ap0, Content c |
         fwdFlowRead(ap0, c, _, node, state, cc, summaryCtx, argAp, config) and
-        fwdFlowConsCand(ap0, c, ap, config)
+        fwdFlowConsCand(ap0, c, ap, config) and
+        apa = getApprox(ap)
       )
       or
       // flow into a callable
-      exists(ApApprox apa |
-        fwdFlowIn(_, node, state, _, cc, _, _, ap, config) and
-        apa = getApprox(ap) and
-        if PrevStage::parameterMayFlowThrough(node, apa, config)
-        then (
-          summaryCtx = TParameterPositionSome(node.(ParamNodeEx).getPosition()) and
-          argAp = apSome(ap)
-        ) else (
-          summaryCtx = TParameterPositionNone() and argAp = apNone()
-        )
+      fwdFlowIn(_, node, state, _, cc, _, _, ap, apa, config) and
+      if PrevStage::parameterMayFlowThrough(node, apa, config)
+      then (
+        summaryCtx = TParameterPositionSome(node.(ParamNodeEx).getPosition()) and
+        argAp = apSome(ap)
+      ) else (
+        summaryCtx = TParameterPositionNone() and argAp = apNone()
       )
       or
       // flow out of a callable
@@ -1394,8 +1425,8 @@ private module MkStage<StageSig PrevStage> {
         DataFlowCall call, RetNodeEx ret, boolean allowsFieldFlow, CcNoCall innercc,
         DataFlowCallable inner
       |
-        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, config) and
-        flowOutOfCall(call, ret, _, node, allowsFieldFlow, config) and
+        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, apa, config) and
+        flowOutOfCallApa(call, ret, _, node, allowsFieldFlow, apa, config) and
         inner = ret.getEnclosingCallable() and
         cc = getCallContextReturn(inner, call, innercc) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
@@ -1403,7 +1434,7 @@ private module MkStage<StageSig PrevStage> {
       or
       // flow through a callable
       exists(DataFlowCall call, ParameterPosition summaryCtx0, Ap argAp0 |
-        fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, config) and
+        fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, apa, config) and
         fwdFlowIsEntered(call, cc, summaryCtx, argAp, summaryCtx0, argAp0, config)
       )
     }
@@ -1413,9 +1444,9 @@ private module MkStage<StageSig PrevStage> {
       NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc,
       ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
     ) {
-      exists(DataFlowType contentType |
-        fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, config) and
-        PrevStage::storeStepCand(node1, unbindApa(getApprox(ap1)), tc, node2, contentType, config) and
+      exists(DataFlowType contentType, ApApprox apa1 |
+        fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, apa1, config) and
+        PrevStage::storeStepCand(node1, apa1, tc, node2, contentType, config) and
         typecheckStore(ap1, contentType)
       )
     }
@@ -1433,43 +1464,104 @@ private module MkStage<StageSig PrevStage> {
       )
     }
 
+    private class ApNonNil instanceof Ap {
+      pragma[nomagic]
+      ApNonNil() { not this instanceof ApNil }
+
+      string toString() { result = "" }
+    }
+
+    pragma[nomagic]
+    private predicate fwdFlowRead0(
+      NodeEx node1, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      ApNonNil ap, Configuration config
+    ) {
+      fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
+      PrevStage::readStepCand(node1, _, _, config)
+    }
+
     pragma[nomagic]
     private predicate fwdFlowRead(
       Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc,
       ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
     ) {
-      fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
+      fwdFlowRead0(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, c, node2, config) and
       getHeadContent(ap) = c
     }
 
     pragma[nomagic]
     private predicate fwdFlowIn(
-      DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, Cc innercc,
-      ParameterPositionOption summaryCtx, ApOption argAp, Ap ap, Configuration config
+      DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, CcCall innercc,
+      ParameterPositionOption summaryCtx, ApOption argAp, Ap ap, ApApprox apa, Configuration config
     ) {
       exists(ArgNodeEx arg, boolean allowsFieldFlow |
-        fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, config) and
-        flowIntoCall(call, arg, p, allowsFieldFlow, config) and
+        fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, apa, config) and
+        flowIntoCallApa(call, arg, p, allowsFieldFlow, apa, config) and
         innercc = getCallContextCall(call, p.getEnclosingCallable(), outercc) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
+    pragma[nomagic]
+    private predicate fwdFlowRetFromArg(
+      RetNodeEx ret, FlowState state, CcCall ccc, ParameterPosition summaryCtx, ParamNodeEx p,
+      Ap argAp, ApApprox argApa, Ap ap, ApApprox apa, Configuration config
+    ) {
+      exists(DataFlowCallable c, ReturnKindExt kind |
+        fwdFlow(pragma[only_bind_into](ret), state, ccc,
+          TParameterPositionSome(pragma[only_bind_into](summaryCtx)), apSome(argAp), ap, apa, config) and
+        getApprox(argAp) = argApa and
+        c = ret.getEnclosingCallable() and
+        kind = ret.getKind() and
+        p.isParameterOf(c, pragma[only_bind_into](summaryCtx)) and
+        parameterFlowThroughAllowed(p, kind)
+      )
+    }
+
+    pragma[inline]
+    private predicate fwdFlowInMayFlowThrough(
+      DataFlowCall call, Cc cc, CcCall innerCc, ParameterPositionOption summaryCtx, ApOption argAp,
+      ParamNodeEx param, Ap ap, ApApprox apa, Configuration config
+    ) {
+      fwdFlowIn(call, pragma[only_bind_into](param), _, cc, innerCc, summaryCtx, argAp, ap,
+        pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
+      PrevStage::parameterMayFlowThrough(param, apa, config)
+    }
+
+    // dedup before joining with `flowThroughOutOfCall`
+    pragma[nomagic]
+    private predicate fwdFlowInMayFlowThroughProj(
+      DataFlowCall call, CcCall innerCc, ApApprox apa, Configuration config
+    ) {
+      fwdFlowInMayFlowThrough(call, _, innerCc, _, _, _, _, apa, config)
+    }
+
+    /**
+     * Same as `flowThroughOutOfCall`, but restricted to calls that are reached
+     * in the flow covered by `fwdFlow`, where data might flow through the target
+     * callable and back out at `call`.
+     */
+    pragma[nomagic]
+    private predicate fwdFlowThroughOutOfCall(
+      DataFlowCall call, CcCall ccc, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow,
+      ApApprox argApa, ApApprox apa, Configuration config
+    ) {
+      fwdFlowInMayFlowThroughProj(call, ccc, argApa, config) and
+      flowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, argApa, apa, config)
+    }
+
     pragma[nomagic]
     private predicate fwdFlowOutFromArg(
       DataFlowCall call, NodeEx out, FlowState state, ParameterPosition summaryCtx, Ap argAp, Ap ap,
-      Configuration config
+      ApApprox apa, Configuration config
     ) {
-      exists(
-        DataFlowCallable c, RetNodeEx ret, ReturnKindExt kind, boolean allowsFieldFlow, CcCall ccc
-      |
-        fwdFlow(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc),
-          TParameterPositionSome(pragma[only_bind_into](summaryCtx)), apSome(argAp), ap, config) and
-        flowThroughOutOfCall(call, pragma[only_bind_into](c), ccc, ret, kind, out, allowsFieldFlow,
+      exists(RetNodeEx ret, boolean allowsFieldFlow, CcCall ccc, ApApprox argApa |
+        fwdFlowRetFromArg(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc),
+          summaryCtx, _, argAp, pragma[only_bind_into](argApa), ap, pragma[only_bind_into](apa),
           config) and
-        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
-        parameterFlowThroughAllowed(c, pragma[only_bind_into](summaryCtx), kind)
+        fwdFlowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, argApa, apa, config) and
+        (if allowsFieldFlow = false then ap instanceof ApNil else any())
       )
     }
 
@@ -1483,8 +1575,7 @@ private module MkStage<StageSig PrevStage> {
       ParameterPosition pos, Ap ap, Configuration config
     ) {
       exists(ParamNodeEx param |
-        fwdFlowIn(call, param, _, cc, _, summaryCtx, argAp, ap, config) and
-        PrevStage::parameterMayFlowThrough(param, unbindApa(getApprox(ap)), config) and
+        fwdFlowInMayFlowThrough(call, cc, _, summaryCtx, argAp, param, ap, _, config) and
         pos = param.getPosition()
       )
     }
@@ -1505,41 +1596,55 @@ private module MkStage<StageSig PrevStage> {
       fwdFlowConsCand(ap1, c, ap2, config)
     }
 
-    pragma[nomagic]
-    private predicate returnFlowsThrough0(
-      RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, DataFlowCallable c,
-      ParameterPosition ppos, Ap argAp, Ap ap, Configuration config
-    ) {
-      exists(boolean allowsFieldFlow |
-        fwdFlow(ret, state, ccc, TParameterPositionSome(ppos), apSome(argAp), ap, config) and
-        flowThroughOutOfCall(_, c, _, pragma[only_bind_into](ret), kind, _, allowsFieldFlow,
-          pragma[only_bind_into](config)) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
-      )
-    }
-
     pragma[nomagic]
     private predicate returnFlowsThrough(
       RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, ParamNodeEx p, Ap argAp,
       Ap ap, Configuration config
     ) {
-      exists(DataFlowCallable c, ParameterPosition ppos |
-        returnFlowsThrough0(ret, kind, state, ccc, c, ppos, argAp, ap, config) and
-        p.isParameterOf(c, ppos) and
-        parameterFlowThroughAllowed(p, kind)
+      exists(boolean allowsFieldFlow, ApApprox argApa, ApApprox apa |
+        fwdFlowRetFromArg(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc), _, p,
+          argAp, pragma[only_bind_into](argApa), ap, pragma[only_bind_into](apa), config) and
+        kind = ret.getKind() and
+        fwdFlowThroughOutOfCall(_, ccc, ret, _, allowsFieldFlow, argApa, apa, config) and
+        (if allowsFieldFlow = false then ap instanceof ApNil else any())
       )
     }
 
     pragma[nomagic]
     private predicate flowThroughIntoCall(
-      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp,
+      Configuration config
     ) {
-      exists(Ap argAp |
-        flowIntoCall(call, pragma[only_bind_into](arg), pragma[only_bind_into](p), allowsFieldFlow,
+      exists(ApApprox argApa |
+        flowIntoCallApa(call, pragma[only_bind_into](arg), pragma[only_bind_into](p),
+          allowsFieldFlow, argApa, pragma[only_bind_into](config)) and
+        fwdFlow(arg, _, _, _, _, pragma[only_bind_into](argAp), argApa,
           pragma[only_bind_into](config)) and
-        fwdFlow(arg, _, _, _, _, pragma[only_bind_into](argAp), pragma[only_bind_into](config)) and
         returnFlowsThrough(_, _, _, _, p, pragma[only_bind_into](argAp), _,
-          pragma[only_bind_into](config))
+          pragma[only_bind_into](config)) and
+        if allowsFieldFlow = false then argAp instanceof ApNil else any()
+      )
+    }
+
+    pragma[nomagic]
+    private predicate flowIntoCallAp(
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap ap,
+      Configuration config
+    ) {
+      exists(ApApprox apa |
+        flowIntoCallApa(call, arg, p, allowsFieldFlow, apa, config) and
+        fwdFlow(arg, _, _, _, _, ap, apa, config)
+      )
+    }
+
+    pragma[nomagic]
+    private predicate flowOutOfCallAp(
+      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
+      Ap ap, Configuration config
+    ) {
+      exists(ApApprox apa |
+        flowOutOfCallApa(call, ret, kind, out, allowsFieldFlow, apa, config) and
+        fwdFlow(ret, _, _, _, _, ap, apa, config)
       )
     }
 
@@ -1628,7 +1733,7 @@ private module MkStage<StageSig PrevStage> {
       // flow into a callable
       exists(ParamNodeEx p, boolean allowsFieldFlow |
         revFlow(p, state, TReturnCtxNone(), returnAp, ap, config) and
-        flowIntoCall(_, node, p, allowsFieldFlow, config) and
+        flowIntoCallAp(_, node, p, allowsFieldFlow, ap, config) and
         (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
         returnCtx = TReturnCtxNone()
       )
@@ -1682,22 +1787,41 @@ private module MkStage<StageSig PrevStage> {
     ) {
       exists(NodeEx out, boolean allowsFieldFlow |
         revFlow(out, state, returnCtx, returnAp, ap, config) and
-        flowOutOfCall(call, ret, kind, out, allowsFieldFlow, config) and
+        flowOutOfCallAp(call, ret, kind, out, allowsFieldFlow, ap, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
+    /**
+     * Same as `flowThroughIntoCall`, but restricted to calls that are reached
+     * in the flow covered by `revFlow`, where data might flow through the target
+     * callable and back out at `call`.
+     */
+    pragma[nomagic]
+    private predicate revFlowThroughIntoCall(
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp,
+      Configuration config
+    ) {
+      flowThroughIntoCall(call, arg, p, allowsFieldFlow, argAp, config) and
+      revFlowIsReturned(call, _, _, _, _, config)
+    }
+
+    pragma[nomagic]
+    private predicate revFlowParamToReturn(
+      ParamNodeEx p, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap, Configuration config
+    ) {
+      revFlow(p, state, TReturnCtxMaybeFlowThrough(kind), apSome(returnAp), ap, config) and
+      parameterFlowThroughAllowed(p, kind)
+    }
+
     pragma[nomagic]
     private predicate revFlowInToReturn(
       DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap,
       Configuration config
     ) {
       exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(pragma[only_bind_into](p), state,
-          TReturnCtxMaybeFlowThrough(pragma[only_bind_into](kind)), apSome(returnAp), ap, config) and
-        flowThroughIntoCall(call, arg, p, allowsFieldFlow, config) and
-        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
-        parameterFlowThroughAllowed(p, kind)
+        revFlowParamToReturn(p, state, kind, returnAp, ap, config) and
+        revFlowThroughIntoCall(call, arg, p, allowsFieldFlow, ap, config)
       )
     }
 
@@ -1750,6 +1874,11 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     predicate revFlow(NodeEx node, Configuration config) { revFlow(node, _, _, _, _, config) }
 
+    pragma[nomagic]
+    predicate revFlowAp(NodeEx node, Ap ap, Configuration config) {
+      revFlow(node, _, _, _, ap, config)
+    }
+
     // use an alias as a workaround for bad functionality-induced joins
     pragma[nomagic]
     additional predicate revFlowAlias(NodeEx node, Configuration config) {
@@ -1786,9 +1915,9 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate parameterFlowsThroughRev(
-      ParamNodeEx p, Ap ap, ReturnKindExt kind, Configuration config
+      ParamNodeEx p, Ap ap, ReturnKindExt kind, Ap returnAp, Configuration config
     ) {
-      revFlow(p, _, TReturnCtxMaybeFlowThrough(kind), apSome(_), ap, config) and
+      revFlow(p, _, TReturnCtxMaybeFlowThrough(kind), apSome(returnAp), ap, config) and
       parameterFlowThroughAllowed(p, kind)
     }
 
@@ -1796,27 +1925,36 @@ private module MkStage<StageSig PrevStage> {
     predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
       exists(RetNodeEx ret, ReturnKindExt kind |
         returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
-        parameterFlowsThroughRev(p, ap, kind, config)
+        parameterFlowsThroughRev(p, ap, kind, _, config)
       )
     }
 
     pragma[nomagic]
-    predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config) {
-      exists(ParamNodeEx p, Ap ap |
-        returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
-        parameterFlowsThroughRev(p, ap, kind, config)
+    predicate returnMayFlowThrough(
+      RetNodeEx ret, Ap argAp, Ap ap, ReturnKindExt kind, Configuration config
+    ) {
+      exists(ParamNodeEx p |
+        returnFlowsThrough(ret, kind, _, _, p, argAp, ap, config) and
+        parameterFlowsThroughRev(p, argAp, kind, ap, config)
+      )
+    }
+
+    pragma[nomagic]
+    predicate revFlowInToReturnIsReturned(
+      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnCtx returnCtx, ApOption returnAp,
+      Ap ap, Configuration config
+    ) {
+      exists(ReturnKindExt returnKind0, Ap returnAp0 |
+        revFlowInToReturn(call, arg, state, returnKind0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
       )
     }
 
     pragma[nomagic]
     predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
-      exists(
-        ReturnKindExt returnKind0, Ap returnAp0, ArgNodeEx arg, FlowState state,
-        ReturnCtx returnCtx, ApOption returnAp, Ap ap
-      |
+      exists(ArgNodeEx arg, FlowState state, ReturnCtx returnCtx, ApOption returnAp, Ap ap |
         revFlow(arg, state, returnCtx, returnAp, ap, config) and
-        revFlowInToReturn(call, arg, state, returnKind0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
+        revFlowInToReturnIsReturned(call, arg, state, returnCtx, returnAp, ap, config)
       )
     }
 
@@ -2179,16 +2317,16 @@ private module LocalFlowBigStep {
   pragma[nomagic]
   predicate localFlowBigStep(
     NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
-    AccessPathFrontNil apf, Configuration config, LocalCallContext callContext
+    DataFlowType t, Configuration config, LocalCallContext callContext
   ) {
-    localFlowStepPlus(node1, state1, node2, preservesValue, apf.getType(), config, callContext) and
+    localFlowStepPlus(node1, state1, node2, preservesValue, t, config, callContext) and
     localFlowExit(node2, state1, config) and
     state1 = state2
     or
     additionalLocalFlowStepNodeCand2(node1, state1, node2, state2, config) and
     state1 != state2 and
     preservesValue = false and
-    apf = TFrontNil(node2.getDataFlowType()) and
+    t = node2.getDataFlowType() and
     callContext.relevantFor(node1.getEnclosingCallable()) and
     not exists(DataFlowCall call | call = callContext.(LocalCallContextSpecificCall).getCall() |
       isUnreachableInCallCached(node1.asNode(), call) or
@@ -2202,11 +2340,87 @@ private import LocalFlowBigStep
 private module Stage3Param implements MkStage<Stage2>::StageParam {
   private module PrevStage = Stage2;
 
+  class Ap = ApproxAccessPathFront;
+
+  class ApNil = ApproxAccessPathFrontNil;
+
+  PrevStage::Ap getApprox(Ap ap) { result = ap.toBoolNonEmpty() }
+
+  ApNil getApNil(NodeEx node) {
+    PrevStage::revFlow(node, _) and result = TApproxFrontNil(node.getDataFlowType())
+  }
+
+  bindingset[tc, tail]
+  Ap apCons(TypedContent tc, Ap tail) { result.getAHead() = tc and exists(tail) }
+
+  pragma[noinline]
+  Content getHeadContent(Ap ap) { result = ap.getAHead().getContent() }
+
+  class ApOption = ApproxAccessPathFrontOption;
+
+  ApOption apNone() { result = TApproxAccessPathFrontNone() }
+
+  ApOption apSome(Ap ap) { result = TApproxAccessPathFrontSome(ap) }
+
+  import BooleanCallContext
+
+  predicate localStep(
+    NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
+    ApproxAccessPathFrontNil ap, Configuration config, LocalCc lcc
+  ) {
+    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap.getType(), config, _) and
+    exists(lcc)
+  }
+
+  predicate flowOutOfCall = flowOutOfCallNodeCand2/6;
+
+  predicate flowIntoCall = flowIntoCallNodeCand2/5;
+
+  pragma[nomagic]
+  private predicate expectsContentCand(NodeEx node, Ap ap, Configuration config) {
+    exists(Content c |
+      PrevStage::revFlow(node, pragma[only_bind_into](config)) and
+      PrevStage::readStepCand(_, c, _, pragma[only_bind_into](config)) and
+      expectsContentEx(node, c) and
+      c = ap.getAHead().getContent()
+    )
+  }
+
+  pragma[nomagic]
+  private predicate castingNodeEx(NodeEx node) { node.asNode() instanceof CastingNode }
+
+  bindingset[node, state, ap, config]
+  predicate filter(NodeEx node, FlowState state, Ap ap, Configuration config) {
+    exists(state) and
+    exists(config) and
+    (if castingNodeEx(node) then compatibleTypes(node.getDataFlowType(), ap.getType()) else any()) and
+    (
+      notExpectsContent(node)
+      or
+      expectsContentCand(node, ap, config)
+    )
+  }
+
+  bindingset[ap, contentType]
+  predicate typecheckStore(Ap ap, DataFlowType contentType) {
+    // We need to typecheck stores here, since reverse flow through a getter
+    // might have a different type here compared to inside the getter.
+    compatibleTypes(ap.getType(), contentType)
+  }
+}
+
+private module Stage3 implements StageSig {
+  import MkStage<Stage2>::Stage<Stage3Param>
+}
+
+private module Stage4Param implements MkStage<Stage3>::StageParam {
+  private module PrevStage = Stage3;
+
   class Ap = AccessPathFront;
 
   class ApNil = AccessPathFrontNil;
 
-  PrevStage::Ap getApprox(Ap ap) { result = ap.toBoolNonEmpty() }
+  PrevStage::Ap getApprox(Ap ap) { result = ap.toApprox() }
 
   ApNil getApNil(NodeEx node) {
     PrevStage::revFlow(node, _) and result = TFrontNil(node.getDataFlowType())
@@ -2226,16 +2440,42 @@ private module Stage3Param implements MkStage<Stage2>::StageParam {
 
   import BooleanCallContext
 
+  pragma[nomagic]
   predicate localStep(
     NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
     ApNil ap, Configuration config, LocalCc lcc
   ) {
-    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap, config, _) and exists(lcc)
+    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap.getType(), config, _) and
+    PrevStage::revFlow(node1, pragma[only_bind_into](state1), _, pragma[only_bind_into](config)) and
+    PrevStage::revFlowAlias(node2, pragma[only_bind_into](state2), _, pragma[only_bind_into](config)) and
+    exists(lcc)
   }
 
-  predicate flowOutOfCall = flowOutOfCallNodeCand2/6;
+  pragma[nomagic]
+  predicate flowOutOfCall(
+    DataFlowCall call, RetNodeEx node1, ReturnKindExt kind, NodeEx node2, boolean allowsFieldFlow,
+    Configuration config
+  ) {
+    exists(FlowState state |
+      flowOutOfCallNodeCand2(call, node1, kind, node2, allowsFieldFlow, config) and
+      PrevStage::revFlow(node2, pragma[only_bind_into](state), _, pragma[only_bind_into](config)) and
+      PrevStage::revFlowAlias(node1, pragma[only_bind_into](state), _,
+        pragma[only_bind_into](config))
+    )
+  }
 
-  predicate flowIntoCall = flowIntoCallNodeCand2/5;
+  pragma[nomagic]
+  predicate flowIntoCall(
+    DataFlowCall call, ArgNodeEx node1, ParamNodeEx node2, boolean allowsFieldFlow,
+    Configuration config
+  ) {
+    exists(FlowState state |
+      flowIntoCallNodeCand2(call, node1, node2, allowsFieldFlow, config) and
+      PrevStage::revFlow(node2, pragma[only_bind_into](state), _, pragma[only_bind_into](config)) and
+      PrevStage::revFlowAlias(node1, pragma[only_bind_into](state), _,
+        pragma[only_bind_into](config))
+    )
+  }
 
   pragma[nomagic]
   private predicate clearSet(NodeEx node, ContentSet c, Configuration config) {
@@ -2291,8 +2531,8 @@ private module Stage3Param implements MkStage<Stage2>::StageParam {
   }
 }
 
-private module Stage3 implements StageSig {
-  import MkStage<Stage2>::Stage<Stage3Param>
+private module Stage4 implements StageSig {
+  import MkStage<Stage3>::Stage<Stage4Param>
 }
 
 /**
@@ -2303,8 +2543,8 @@ private predicate flowCandSummaryCtx(
   NodeEx node, FlowState state, AccessPathFront argApf, Configuration config
 ) {
   exists(AccessPathFront apf |
-    Stage3::revFlow(node, state, TReturnCtxMaybeFlowThrough(_), _, apf, config) and
-    Stage3::fwdFlow(node, state, any(Stage3::CcCall ccc), _, TAccessPathFrontSome(argApf), apf,
+    Stage4::revFlow(node, state, TReturnCtxMaybeFlowThrough(_), _, apf, config) and
+    Stage4::fwdFlow(node, state, any(Stage4::CcCall ccc), _, TAccessPathFrontSome(argApf), apf,
       config)
   )
 }
@@ -2315,10 +2555,10 @@ private predicate flowCandSummaryCtx(
  */
 private predicate expensiveLen2unfolding(TypedContent tc, Configuration config) {
   exists(int tails, int nodes, int apLimit, int tupleLimit |
-    tails = strictcount(AccessPathFront apf | Stage3::consCand(tc, apf, config)) and
+    tails = strictcount(AccessPathFront apf | Stage4::consCand(tc, apf, config)) and
     nodes =
       strictcount(NodeEx n, FlowState state |
-        Stage3::revFlow(n, state, any(AccessPathFrontHead apf | apf.getHead() = tc), config)
+        Stage4::revFlow(n, state, any(AccessPathFrontHead apf | apf.getHead() = tc), config)
         or
         flowCandSummaryCtx(n, state, any(AccessPathFrontHead apf | apf.getHead() = tc), config)
       ) and
@@ -2332,11 +2572,11 @@ private predicate expensiveLen2unfolding(TypedContent tc, Configuration config)
 private newtype TAccessPathApprox =
   TNil(DataFlowType t) or
   TConsNil(TypedContent tc, DataFlowType t) {
-    Stage3::consCand(tc, TFrontNil(t), _) and
+    Stage4::consCand(tc, TFrontNil(t), _) and
     not expensiveLen2unfolding(tc, _)
   } or
   TConsCons(TypedContent tc1, TypedContent tc2, int len) {
-    Stage3::consCand(tc1, TFrontHead(tc2), _) and
+    Stage4::consCand(tc1, TFrontHead(tc2), _) and
     len in [2 .. accessPathLimit()] and
     not expensiveLen2unfolding(tc1, _)
   } or
@@ -2466,7 +2706,7 @@ private class AccessPathApproxCons1 extends AccessPathApproxCons, TCons1 {
   override AccessPathApprox pop(TypedContent head) {
     head = tc and
     (
-      exists(TypedContent tc2 | Stage3::consCand(tc, TFrontHead(tc2), _) |
+      exists(TypedContent tc2 | Stage4::consCand(tc, TFrontHead(tc2), _) |
         result = TConsCons(tc2, _, len - 1)
         or
         len = 2 and
@@ -2477,7 +2717,7 @@ private class AccessPathApproxCons1 extends AccessPathApproxCons, TCons1 {
       or
       exists(DataFlowType t |
         len = 1 and
-        Stage3::consCand(tc, TFrontNil(t), _) and
+        Stage4::consCand(tc, TFrontNil(t), _) and
         result = TNil(t)
       )
     )
@@ -2502,13 +2742,14 @@ private class AccessPathApproxOption extends TAccessPathApproxOption {
   }
 }
 
-private module Stage4Param implements MkStage<Stage3>::StageParam {
-  private module PrevStage = Stage3;
+private module Stage5Param implements MkStage<Stage4>::StageParam {
+  private module PrevStage = Stage4;
 
   class Ap = AccessPathApprox;
 
   class ApNil = AccessPathApproxNil;
 
+  pragma[nomagic]
   PrevStage::Ap getApprox(Ap ap) { result = ap.getFront() }
 
   ApNil getApNil(NodeEx node) {
@@ -2534,7 +2775,9 @@ private module Stage4Param implements MkStage<Stage3>::StageParam {
     NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
     ApNil ap, Configuration config, LocalCc lcc
   ) {
-    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap.getFront(), config, lcc)
+    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap.getType(), config, lcc) and
+    PrevStage::revFlow(node1, pragma[only_bind_into](state1), _, pragma[only_bind_into](config)) and
+    PrevStage::revFlowAlias(node2, pragma[only_bind_into](state2), _, pragma[only_bind_into](config))
   }
 
   pragma[nomagic]
@@ -2571,7 +2814,7 @@ private module Stage4Param implements MkStage<Stage3>::StageParam {
   predicate typecheckStore(Ap ap, DataFlowType contentType) { any() }
 }
 
-private module Stage4 = MkStage<Stage3>::Stage<Stage4Param>;
+private module Stage5 = MkStage<Stage4>::Stage<Stage5Param>;
 
 bindingset[conf, result]
 private Configuration unbindConf(Configuration conf) {
@@ -2585,8 +2828,8 @@ private predicate nodeMayUseSummary0(
 ) {
   exists(AccessPathApprox apa0 |
     c = n.getEnclosingCallable() and
-    Stage4::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
-    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TParameterPositionSome(pos),
+    Stage5::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
+    Stage5::fwdFlow(n, state, any(CallContextCall ccc), TParameterPositionSome(pos),
       TAccessPathApproxSome(apa), apa0, config)
   )
 }
@@ -2596,7 +2839,7 @@ private predicate nodeMayUseSummary(
   NodeEx n, FlowState state, AccessPathApprox apa, Configuration config
 ) {
   exists(DataFlowCallable c, ParameterPosition pos, ParamNodeEx p |
-    Stage4::parameterMayFlowThrough(p, apa, config) and
+    Stage5::parameterMayFlowThrough(p, apa, config) and
     nodeMayUseSummary0(n, c, pos, state, apa, config) and
     p.isParameterOf(c, pos)
   )
@@ -2606,8 +2849,8 @@ private newtype TSummaryCtx =
   TSummaryCtxNone() or
   TSummaryCtxSome(ParamNodeEx p, FlowState state, AccessPath ap) {
     exists(Configuration config |
-      Stage4::parameterMayFlowThrough(p, ap.getApprox(), config) and
-      Stage4::revFlow(p, state, _, config)
+      Stage5::parameterMayFlowThrough(p, ap.getApprox(), config) and
+      Stage5::revFlow(p, state, _, config)
     )
   }
 
@@ -2656,7 +2899,7 @@ private int count1to2unfold(AccessPathApproxCons1 apa, Configuration config) {
     len = apa.len() and
     result =
       strictcount(AccessPathFront apf |
-        Stage4::consCand(tc, any(AccessPathApprox ap | ap.getFront() = apf and ap.len() = len - 1),
+        Stage5::consCand(tc, any(AccessPathApprox ap | ap.getFront() = apf and ap.len() = len - 1),
           config)
       )
   )
@@ -2665,7 +2908,7 @@ private int count1to2unfold(AccessPathApproxCons1 apa, Configuration config) {
 private int countNodesUsingAccessPath(AccessPathApprox apa, Configuration config) {
   result =
     strictcount(NodeEx n, FlowState state |
-      Stage4::revFlow(n, state, apa, config) or nodeMayUseSummary(n, state, apa, config)
+      Stage5::revFlow(n, state, apa, config) or nodeMayUseSummary(n, state, apa, config)
     )
 }
 
@@ -2686,7 +2929,7 @@ private predicate expensiveLen1to2unfolding(AccessPathApproxCons1 apa, Configura
 private AccessPathApprox getATail(AccessPathApprox apa, Configuration config) {
   exists(TypedContent head |
     apa.pop(head) = result and
-    Stage4::consCand(head, result, config)
+    Stage5::consCand(head, result, config)
   )
 }
 
@@ -2768,7 +3011,7 @@ private newtype TPathNode =
     NodeEx node, FlowState state, CallContext cc, SummaryCtx sc, AccessPath ap, Configuration config
   ) {
     // A PathNode is introduced by a source ...
-    Stage4::revFlow(node, state, config) and
+    Stage5::revFlow(node, state, config) and
     sourceNode(node, state, config) and
     (
       if hasSourceCallCtx(config)
@@ -2782,7 +3025,7 @@ private newtype TPathNode =
     exists(PathNodeMid mid |
       pathStep(mid, node, state, cc, sc, ap) and
       pragma[only_bind_into](config) = mid.getConfiguration() and
-      Stage4::revFlow(node, state, ap.getApprox(), pragma[only_bind_into](config))
+      Stage5::revFlow(node, state, ap.getApprox(), pragma[only_bind_into](config))
     )
   } or
   TPathNodeSink(NodeEx node, FlowState state, Configuration config) {
@@ -2924,7 +3167,7 @@ private class AccessPathCons2 extends AccessPath, TAccessPathCons2 {
   override TypedContent getHead() { result = head1 }
 
   override AccessPath getTail() {
-    Stage4::consCand(head1, result.getApprox(), _) and
+    Stage5::consCand(head1, result.getApprox(), _) and
     result.getHead() = head2 and
     result.length() = len - 1
   }
@@ -2955,7 +3198,7 @@ private class AccessPathCons1 extends AccessPath, TAccessPathCons1 {
   override TypedContent getHead() { result = head }
 
   override AccessPath getTail() {
-    Stage4::consCand(head, result.getApprox(), _) and result.length() = len - 1
+    Stage5::consCand(head, result.getApprox(), _) and result.length() = len - 1
   }
 
   override AccessPathFrontHead getFront() { result = TFrontHead(head) }
@@ -3347,7 +3590,8 @@ private predicate pathStep(
     AccessPath ap0, NodeEx midnode, FlowState state0, Configuration conf, LocalCallContext localCC
   |
     pathNode(mid, midnode, state0, cc, sc, ap0, conf, localCC) and
-    localFlowBigStep(midnode, state0, node, state, false, ap.getFront(), conf, localCC) and
+    localFlowBigStep(midnode, state0, node, state, false, ap.(AccessPathNil).getType(), conf,
+      localCC) and
     ap0 instanceof AccessPathNil
   )
   or
@@ -3389,7 +3633,7 @@ private predicate pathReadStep(
 ) {
   ap0 = mid.getAp() and
   tc = ap0.getHead() and
-  Stage4::readStepCand(mid.getNodeEx(), tc.getContent(), node, mid.getConfiguration()) and
+  Stage5::readStepCand(mid.getNodeEx(), tc.getContent(), node, mid.getConfiguration()) and
   state = mid.getState() and
   cc = mid.getCallContext()
 }
@@ -3399,7 +3643,7 @@ private predicate pathStoreStep(
   PathNodeMid mid, NodeEx node, FlowState state, AccessPath ap0, TypedContent tc, CallContext cc
 ) {
   ap0 = mid.getAp() and
-  Stage4::storeStepCand(mid.getNodeEx(), _, tc, node, _, mid.getConfiguration()) and
+  Stage5::storeStepCand(mid.getNodeEx(), _, tc, node, _, mid.getConfiguration()) and
   state = mid.getState() and
   cc = mid.getCallContext()
 }
@@ -3436,7 +3680,7 @@ private NodeEx getAnOutNodeFlow(
   ReturnKindExt kind, DataFlowCall call, AccessPathApprox apa, Configuration config
 ) {
   result.asNode() = kind.getAnOutNode(call) and
-  Stage4::revFlow(result, _, apa, config)
+  Stage5::revFlow(result, _, apa, config)
 }
 
 /**
@@ -3472,7 +3716,7 @@ private predicate parameterCand(
   DataFlowCallable callable, ParameterPosition pos, AccessPathApprox apa, Configuration config
 ) {
   exists(ParamNodeEx p |
-    Stage4::revFlow(p, _, apa, config) and
+    Stage5::revFlow(p, _, apa, config) and
     p.isParameterOf(callable, pos)
   )
 }
@@ -3751,9 +3995,17 @@ predicate stageStats(
   n = 45 and
   Stage4::stats(false, nodes, fields, conscand, states, tuples, config)
   or
-  stage = "5 Fwd" and n = 50 and finalStats(true, nodes, fields, conscand, states, tuples)
+  stage = "5 Fwd" and
+  n = 50 and
+  Stage5::stats(true, nodes, fields, conscand, states, tuples, config)
   or
-  stage = "5 Rev" and n = 55 and finalStats(false, nodes, fields, conscand, states, tuples)
+  stage = "5 Rev" and
+  n = 55 and
+  Stage5::stats(false, nodes, fields, conscand, states, tuples, config)
+  or
+  stage = "6 Fwd" and n = 60 and finalStats(true, nodes, fields, conscand, states, tuples)
+  or
+  stage = "6 Rev" and n = 65 and finalStats(false, nodes, fields, conscand, states, tuples)
 }
 
 private module FlowExploration {
diff --git a/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImpl5.qll b/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImpl5.qll
index ccde916a3c2..6741ccc2f06 100644
--- a/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImpl5.qll
+++ b/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImpl5.qll
@@ -621,23 +621,6 @@ private predicate parameterFlowThroughAllowed(ParamNodeEx p, ReturnKindExt kind)
   )
 }
 
-/**
- * Holds if flow from a parameter at position `pos` inside `c` to a return node of
- * kind `kind` is allowed.
- *
- * We don't expect a parameter to return stored in itself, unless
- * explicitly allowed
- */
-bindingset[c, pos, kind]
-private predicate parameterFlowThroughAllowed(
-  DataFlowCallable c, ParameterPosition pos, ReturnKindExt kind
-) {
-  exists(ParamNodeEx p |
-    p.isParameterOf(c, pos) and
-    parameterFlowThroughAllowed(p, kind)
-  )
-}
-
 private module Stage1 implements StageSig {
   class Ap = Unit;
 
@@ -980,6 +963,12 @@ private module Stage1 implements StageSig {
   pragma[nomagic]
   predicate revFlow(NodeEx node, Configuration config) { revFlow(node, _, config) }
 
+  pragma[nomagic]
+  predicate revFlowAp(NodeEx node, Ap ap, Configuration config) {
+    revFlow(node, config) and
+    exists(ap)
+  }
+
   bindingset[node, state, config]
   predicate revFlow(NodeEx node, FlowState state, Ap ap, Configuration config) {
     revFlow(node, _, pragma[only_bind_into](config)) and
@@ -1022,9 +1011,13 @@ private module Stage1 implements StageSig {
   }
 
   pragma[nomagic]
-  predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config) {
+  predicate returnMayFlowThrough(
+    RetNodeEx ret, Ap argAp, Ap ap, ReturnKindExt kind, Configuration config
+  ) {
     throughFlowNodeCand(ret, config) and
-    kind = ret.getKind()
+    kind = ret.getKind() and
+    exists(argAp) and
+    exists(ap)
   }
 
   pragma[nomagic]
@@ -1189,6 +1182,8 @@ private signature module StageSig {
 
   predicate revFlow(NodeEx node, Configuration config);
 
+  predicate revFlowAp(NodeEx node, Ap ap, Configuration config);
+
   bindingset[node, state, config]
   predicate revFlow(NodeEx node, FlowState state, Ap ap, Configuration config);
 
@@ -1196,7 +1191,9 @@ private signature module StageSig {
 
   predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config);
 
-  predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config);
+  predicate returnMayFlowThrough(
+    RetNodeEx ret, Ap argAp, Ap ap, ReturnKindExt kind, Configuration config
+  );
 
   predicate storeStepCand(
     NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, DataFlowType contentType,
@@ -1281,21 +1278,43 @@ private module MkStage<StageSig PrevStage> {
     import Param
 
     /* Begin: Stage logic. */
-    bindingset[result, apa]
-    private ApApprox unbindApa(ApApprox apa) {
-      pragma[only_bind_out](apa) = pragma[only_bind_out](result)
+    // use an alias as a workaround for bad functionality-induced joins
+    pragma[nomagic]
+    private predicate revFlowApAlias(NodeEx node, ApApprox apa, Configuration config) {
+      PrevStage::revFlowAp(node, apa, config)
+    }
+
+    pragma[nomagic]
+    private predicate flowIntoCallApa(
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, ApApprox apa,
+      Configuration config
+    ) {
+      flowIntoCall(call, arg, p, allowsFieldFlow, config) and
+      PrevStage::revFlowAp(p, pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
+      revFlowApAlias(arg, pragma[only_bind_into](apa), pragma[only_bind_into](config))
+    }
+
+    pragma[nomagic]
+    private predicate flowOutOfCallApa(
+      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
+      ApApprox apa, Configuration config
+    ) {
+      flowOutOfCall(call, ret, kind, out, allowsFieldFlow, config) and
+      PrevStage::revFlowAp(out, pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
+      revFlowApAlias(ret, pragma[only_bind_into](apa), pragma[only_bind_into](config))
     }
 
     pragma[nomagic]
     private predicate flowThroughOutOfCall(
-      DataFlowCall call, DataFlowCallable c, CcCall ccc, RetNodeEx ret, ReturnKindExt kind,
-      NodeEx out, boolean allowsFieldFlow, Configuration config
+      DataFlowCall call, CcCall ccc, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow,
+      ApApprox argApa, ApApprox apa, Configuration config
     ) {
-      flowOutOfCall(call, ret, kind, out, allowsFieldFlow, pragma[only_bind_into](config)) and
-      PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
-      PrevStage::returnMayFlowThrough(ret, kind, pragma[only_bind_into](config)) and
-      matchesCall(ccc, call) and
-      c = ret.getEnclosingCallable()
+      exists(ReturnKindExt kind |
+        flowOutOfCallApa(call, ret, kind, out, allowsFieldFlow, apa, pragma[only_bind_into](config)) and
+        PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
+        PrevStage::returnMayFlowThrough(ret, argApa, apa, kind, pragma[only_bind_into](config)) and
+        matchesCall(ccc, call)
+      )
     }
 
     /**
@@ -1307,39 +1326,50 @@ private module MkStage<StageSig PrevStage> {
      * corresponding parameter position and access path of that argument, respectively.
      */
     pragma[nomagic]
+    additional predicate fwdFlow(
+      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      Ap ap, ApApprox apa, Configuration config
+    ) {
+      fwdFlow0(node, state, cc, summaryCtx, argAp, ap, apa, config) and
+      PrevStage::revFlow(node, state, apa, config) and
+      filter(node, state, ap, config)
+    }
+
+    pragma[inline]
     additional predicate fwdFlow(
       NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
       Ap ap, Configuration config
     ) {
-      fwdFlow0(node, state, cc, summaryCtx, argAp, ap, config) and
-      PrevStage::revFlow(node, state, unbindApa(getApprox(ap)), config) and
-      filter(node, state, ap, config)
+      fwdFlow(node, state, cc, summaryCtx, argAp, ap, _, config)
     }
 
     pragma[nomagic]
     private predicate fwdFlow0(
       NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      Ap ap, Configuration config
+      Ap ap, ApApprox apa, Configuration config
     ) {
       sourceNode(node, state, config) and
       (if hasSourceCallCtx(config) then cc = ccSomeCall() else cc = ccNone()) and
       argAp = apNone() and
       summaryCtx = TParameterPositionNone() and
-      ap = getApNil(node)
+      ap = getApNil(node) and
+      apa = getApprox(ap)
       or
-      exists(NodeEx mid, FlowState state0, Ap ap0, LocalCc localCc |
-        fwdFlow(mid, state0, cc, summaryCtx, argAp, ap0, config) and
+      exists(NodeEx mid, FlowState state0, Ap ap0, ApApprox apa0, LocalCc localCc |
+        fwdFlow(mid, state0, cc, summaryCtx, argAp, ap0, apa0, config) and
         localCc = getLocalCc(mid, cc)
       |
         localStep(mid, state0, node, state, true, _, config, localCc) and
-        ap = ap0
+        ap = ap0 and
+        apa = apa0
         or
         localStep(mid, state0, node, state, false, ap, config, localCc) and
-        ap0 instanceof ApNil
+        ap0 instanceof ApNil and
+        apa = getApprox(ap)
       )
       or
       exists(NodeEx mid |
-        fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, apa, pragma[only_bind_into](config)) and
         jumpStep(mid, node, config) and
         cc = ccNone() and
         summaryCtx = TParameterPositionNone() and
@@ -1352,7 +1382,8 @@ private module MkStage<StageSig PrevStage> {
         cc = ccNone() and
         summaryCtx = TParameterPositionNone() and
         argAp = apNone() and
-        ap = getApNil(node)
+        ap = getApNil(node) and
+        apa = getApprox(ap)
       )
       or
       exists(NodeEx mid, FlowState state0, ApNil nil |
@@ -1361,32 +1392,32 @@ private module MkStage<StageSig PrevStage> {
         cc = ccNone() and
         summaryCtx = TParameterPositionNone() and
         argAp = apNone() and
-        ap = getApNil(node)
+        ap = getApNil(node) and
+        apa = getApprox(ap)
       )
       or
       // store
       exists(TypedContent tc, Ap ap0 |
         fwdFlowStore(_, ap0, tc, node, state, cc, summaryCtx, argAp, config) and
-        ap = apCons(tc, ap0)
+        ap = apCons(tc, ap0) and
+        apa = getApprox(ap)
       )
       or
       // read
       exists(Ap ap0, Content c |
         fwdFlowRead(ap0, c, _, node, state, cc, summaryCtx, argAp, config) and
-        fwdFlowConsCand(ap0, c, ap, config)
+        fwdFlowConsCand(ap0, c, ap, config) and
+        apa = getApprox(ap)
       )
       or
       // flow into a callable
-      exists(ApApprox apa |
-        fwdFlowIn(_, node, state, _, cc, _, _, ap, config) and
-        apa = getApprox(ap) and
-        if PrevStage::parameterMayFlowThrough(node, apa, config)
-        then (
-          summaryCtx = TParameterPositionSome(node.(ParamNodeEx).getPosition()) and
-          argAp = apSome(ap)
-        ) else (
-          summaryCtx = TParameterPositionNone() and argAp = apNone()
-        )
+      fwdFlowIn(_, node, state, _, cc, _, _, ap, apa, config) and
+      if PrevStage::parameterMayFlowThrough(node, apa, config)
+      then (
+        summaryCtx = TParameterPositionSome(node.(ParamNodeEx).getPosition()) and
+        argAp = apSome(ap)
+      ) else (
+        summaryCtx = TParameterPositionNone() and argAp = apNone()
       )
       or
       // flow out of a callable
@@ -1394,8 +1425,8 @@ private module MkStage<StageSig PrevStage> {
         DataFlowCall call, RetNodeEx ret, boolean allowsFieldFlow, CcNoCall innercc,
         DataFlowCallable inner
       |
-        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, config) and
-        flowOutOfCall(call, ret, _, node, allowsFieldFlow, config) and
+        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, apa, config) and
+        flowOutOfCallApa(call, ret, _, node, allowsFieldFlow, apa, config) and
         inner = ret.getEnclosingCallable() and
         cc = getCallContextReturn(inner, call, innercc) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
@@ -1403,7 +1434,7 @@ private module MkStage<StageSig PrevStage> {
       or
       // flow through a callable
       exists(DataFlowCall call, ParameterPosition summaryCtx0, Ap argAp0 |
-        fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, config) and
+        fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, apa, config) and
         fwdFlowIsEntered(call, cc, summaryCtx, argAp, summaryCtx0, argAp0, config)
       )
     }
@@ -1413,9 +1444,9 @@ private module MkStage<StageSig PrevStage> {
       NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc,
       ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
     ) {
-      exists(DataFlowType contentType |
-        fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, config) and
-        PrevStage::storeStepCand(node1, unbindApa(getApprox(ap1)), tc, node2, contentType, config) and
+      exists(DataFlowType contentType, ApApprox apa1 |
+        fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, apa1, config) and
+        PrevStage::storeStepCand(node1, apa1, tc, node2, contentType, config) and
         typecheckStore(ap1, contentType)
       )
     }
@@ -1433,43 +1464,104 @@ private module MkStage<StageSig PrevStage> {
       )
     }
 
+    private class ApNonNil instanceof Ap {
+      pragma[nomagic]
+      ApNonNil() { not this instanceof ApNil }
+
+      string toString() { result = "" }
+    }
+
+    pragma[nomagic]
+    private predicate fwdFlowRead0(
+      NodeEx node1, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      ApNonNil ap, Configuration config
+    ) {
+      fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
+      PrevStage::readStepCand(node1, _, _, config)
+    }
+
     pragma[nomagic]
     private predicate fwdFlowRead(
       Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc,
       ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
     ) {
-      fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
+      fwdFlowRead0(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, c, node2, config) and
       getHeadContent(ap) = c
     }
 
     pragma[nomagic]
     private predicate fwdFlowIn(
-      DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, Cc innercc,
-      ParameterPositionOption summaryCtx, ApOption argAp, Ap ap, Configuration config
+      DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, CcCall innercc,
+      ParameterPositionOption summaryCtx, ApOption argAp, Ap ap, ApApprox apa, Configuration config
     ) {
       exists(ArgNodeEx arg, boolean allowsFieldFlow |
-        fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, config) and
-        flowIntoCall(call, arg, p, allowsFieldFlow, config) and
+        fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, apa, config) and
+        flowIntoCallApa(call, arg, p, allowsFieldFlow, apa, config) and
         innercc = getCallContextCall(call, p.getEnclosingCallable(), outercc) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
+    pragma[nomagic]
+    private predicate fwdFlowRetFromArg(
+      RetNodeEx ret, FlowState state, CcCall ccc, ParameterPosition summaryCtx, ParamNodeEx p,
+      Ap argAp, ApApprox argApa, Ap ap, ApApprox apa, Configuration config
+    ) {
+      exists(DataFlowCallable c, ReturnKindExt kind |
+        fwdFlow(pragma[only_bind_into](ret), state, ccc,
+          TParameterPositionSome(pragma[only_bind_into](summaryCtx)), apSome(argAp), ap, apa, config) and
+        getApprox(argAp) = argApa and
+        c = ret.getEnclosingCallable() and
+        kind = ret.getKind() and
+        p.isParameterOf(c, pragma[only_bind_into](summaryCtx)) and
+        parameterFlowThroughAllowed(p, kind)
+      )
+    }
+
+    pragma[inline]
+    private predicate fwdFlowInMayFlowThrough(
+      DataFlowCall call, Cc cc, CcCall innerCc, ParameterPositionOption summaryCtx, ApOption argAp,
+      ParamNodeEx param, Ap ap, ApApprox apa, Configuration config
+    ) {
+      fwdFlowIn(call, pragma[only_bind_into](param), _, cc, innerCc, summaryCtx, argAp, ap,
+        pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
+      PrevStage::parameterMayFlowThrough(param, apa, config)
+    }
+
+    // dedup before joining with `flowThroughOutOfCall`
+    pragma[nomagic]
+    private predicate fwdFlowInMayFlowThroughProj(
+      DataFlowCall call, CcCall innerCc, ApApprox apa, Configuration config
+    ) {
+      fwdFlowInMayFlowThrough(call, _, innerCc, _, _, _, _, apa, config)
+    }
+
+    /**
+     * Same as `flowThroughOutOfCall`, but restricted to calls that are reached
+     * in the flow covered by `fwdFlow`, where data might flow through the target
+     * callable and back out at `call`.
+     */
+    pragma[nomagic]
+    private predicate fwdFlowThroughOutOfCall(
+      DataFlowCall call, CcCall ccc, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow,
+      ApApprox argApa, ApApprox apa, Configuration config
+    ) {
+      fwdFlowInMayFlowThroughProj(call, ccc, argApa, config) and
+      flowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, argApa, apa, config)
+    }
+
     pragma[nomagic]
     private predicate fwdFlowOutFromArg(
       DataFlowCall call, NodeEx out, FlowState state, ParameterPosition summaryCtx, Ap argAp, Ap ap,
-      Configuration config
+      ApApprox apa, Configuration config
     ) {
-      exists(
-        DataFlowCallable c, RetNodeEx ret, ReturnKindExt kind, boolean allowsFieldFlow, CcCall ccc
-      |
-        fwdFlow(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc),
-          TParameterPositionSome(pragma[only_bind_into](summaryCtx)), apSome(argAp), ap, config) and
-        flowThroughOutOfCall(call, pragma[only_bind_into](c), ccc, ret, kind, out, allowsFieldFlow,
+      exists(RetNodeEx ret, boolean allowsFieldFlow, CcCall ccc, ApApprox argApa |
+        fwdFlowRetFromArg(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc),
+          summaryCtx, _, argAp, pragma[only_bind_into](argApa), ap, pragma[only_bind_into](apa),
           config) and
-        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
-        parameterFlowThroughAllowed(c, pragma[only_bind_into](summaryCtx), kind)
+        fwdFlowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, argApa, apa, config) and
+        (if allowsFieldFlow = false then ap instanceof ApNil else any())
       )
     }
 
@@ -1483,8 +1575,7 @@ private module MkStage<StageSig PrevStage> {
       ParameterPosition pos, Ap ap, Configuration config
     ) {
       exists(ParamNodeEx param |
-        fwdFlowIn(call, param, _, cc, _, summaryCtx, argAp, ap, config) and
-        PrevStage::parameterMayFlowThrough(param, unbindApa(getApprox(ap)), config) and
+        fwdFlowInMayFlowThrough(call, cc, _, summaryCtx, argAp, param, ap, _, config) and
         pos = param.getPosition()
       )
     }
@@ -1505,41 +1596,55 @@ private module MkStage<StageSig PrevStage> {
       fwdFlowConsCand(ap1, c, ap2, config)
     }
 
-    pragma[nomagic]
-    private predicate returnFlowsThrough0(
-      RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, DataFlowCallable c,
-      ParameterPosition ppos, Ap argAp, Ap ap, Configuration config
-    ) {
-      exists(boolean allowsFieldFlow |
-        fwdFlow(ret, state, ccc, TParameterPositionSome(ppos), apSome(argAp), ap, config) and
-        flowThroughOutOfCall(_, c, _, pragma[only_bind_into](ret), kind, _, allowsFieldFlow,
-          pragma[only_bind_into](config)) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
-      )
-    }
-
     pragma[nomagic]
     private predicate returnFlowsThrough(
       RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, ParamNodeEx p, Ap argAp,
       Ap ap, Configuration config
     ) {
-      exists(DataFlowCallable c, ParameterPosition ppos |
-        returnFlowsThrough0(ret, kind, state, ccc, c, ppos, argAp, ap, config) and
-        p.isParameterOf(c, ppos) and
-        parameterFlowThroughAllowed(p, kind)
+      exists(boolean allowsFieldFlow, ApApprox argApa, ApApprox apa |
+        fwdFlowRetFromArg(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc), _, p,
+          argAp, pragma[only_bind_into](argApa), ap, pragma[only_bind_into](apa), config) and
+        kind = ret.getKind() and
+        fwdFlowThroughOutOfCall(_, ccc, ret, _, allowsFieldFlow, argApa, apa, config) and
+        (if allowsFieldFlow = false then ap instanceof ApNil else any())
       )
     }
 
     pragma[nomagic]
     private predicate flowThroughIntoCall(
-      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp,
+      Configuration config
     ) {
-      exists(Ap argAp |
-        flowIntoCall(call, pragma[only_bind_into](arg), pragma[only_bind_into](p), allowsFieldFlow,
+      exists(ApApprox argApa |
+        flowIntoCallApa(call, pragma[only_bind_into](arg), pragma[only_bind_into](p),
+          allowsFieldFlow, argApa, pragma[only_bind_into](config)) and
+        fwdFlow(arg, _, _, _, _, pragma[only_bind_into](argAp), argApa,
           pragma[only_bind_into](config)) and
-        fwdFlow(arg, _, _, _, _, pragma[only_bind_into](argAp), pragma[only_bind_into](config)) and
         returnFlowsThrough(_, _, _, _, p, pragma[only_bind_into](argAp), _,
-          pragma[only_bind_into](config))
+          pragma[only_bind_into](config)) and
+        if allowsFieldFlow = false then argAp instanceof ApNil else any()
+      )
+    }
+
+    pragma[nomagic]
+    private predicate flowIntoCallAp(
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap ap,
+      Configuration config
+    ) {
+      exists(ApApprox apa |
+        flowIntoCallApa(call, arg, p, allowsFieldFlow, apa, config) and
+        fwdFlow(arg, _, _, _, _, ap, apa, config)
+      )
+    }
+
+    pragma[nomagic]
+    private predicate flowOutOfCallAp(
+      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
+      Ap ap, Configuration config
+    ) {
+      exists(ApApprox apa |
+        flowOutOfCallApa(call, ret, kind, out, allowsFieldFlow, apa, config) and
+        fwdFlow(ret, _, _, _, _, ap, apa, config)
       )
     }
 
@@ -1628,7 +1733,7 @@ private module MkStage<StageSig PrevStage> {
       // flow into a callable
       exists(ParamNodeEx p, boolean allowsFieldFlow |
         revFlow(p, state, TReturnCtxNone(), returnAp, ap, config) and
-        flowIntoCall(_, node, p, allowsFieldFlow, config) and
+        flowIntoCallAp(_, node, p, allowsFieldFlow, ap, config) and
         (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
         returnCtx = TReturnCtxNone()
       )
@@ -1682,22 +1787,41 @@ private module MkStage<StageSig PrevStage> {
     ) {
       exists(NodeEx out, boolean allowsFieldFlow |
         revFlow(out, state, returnCtx, returnAp, ap, config) and
-        flowOutOfCall(call, ret, kind, out, allowsFieldFlow, config) and
+        flowOutOfCallAp(call, ret, kind, out, allowsFieldFlow, ap, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
+    /**
+     * Same as `flowThroughIntoCall`, but restricted to calls that are reached
+     * in the flow covered by `revFlow`, where data might flow through the target
+     * callable and back out at `call`.
+     */
+    pragma[nomagic]
+    private predicate revFlowThroughIntoCall(
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp,
+      Configuration config
+    ) {
+      flowThroughIntoCall(call, arg, p, allowsFieldFlow, argAp, config) and
+      revFlowIsReturned(call, _, _, _, _, config)
+    }
+
+    pragma[nomagic]
+    private predicate revFlowParamToReturn(
+      ParamNodeEx p, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap, Configuration config
+    ) {
+      revFlow(p, state, TReturnCtxMaybeFlowThrough(kind), apSome(returnAp), ap, config) and
+      parameterFlowThroughAllowed(p, kind)
+    }
+
     pragma[nomagic]
     private predicate revFlowInToReturn(
       DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap,
       Configuration config
     ) {
       exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(pragma[only_bind_into](p), state,
-          TReturnCtxMaybeFlowThrough(pragma[only_bind_into](kind)), apSome(returnAp), ap, config) and
-        flowThroughIntoCall(call, arg, p, allowsFieldFlow, config) and
-        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
-        parameterFlowThroughAllowed(p, kind)
+        revFlowParamToReturn(p, state, kind, returnAp, ap, config) and
+        revFlowThroughIntoCall(call, arg, p, allowsFieldFlow, ap, config)
       )
     }
 
@@ -1750,6 +1874,11 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     predicate revFlow(NodeEx node, Configuration config) { revFlow(node, _, _, _, _, config) }
 
+    pragma[nomagic]
+    predicate revFlowAp(NodeEx node, Ap ap, Configuration config) {
+      revFlow(node, _, _, _, ap, config)
+    }
+
     // use an alias as a workaround for bad functionality-induced joins
     pragma[nomagic]
     additional predicate revFlowAlias(NodeEx node, Configuration config) {
@@ -1786,9 +1915,9 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate parameterFlowsThroughRev(
-      ParamNodeEx p, Ap ap, ReturnKindExt kind, Configuration config
+      ParamNodeEx p, Ap ap, ReturnKindExt kind, Ap returnAp, Configuration config
     ) {
-      revFlow(p, _, TReturnCtxMaybeFlowThrough(kind), apSome(_), ap, config) and
+      revFlow(p, _, TReturnCtxMaybeFlowThrough(kind), apSome(returnAp), ap, config) and
       parameterFlowThroughAllowed(p, kind)
     }
 
@@ -1796,27 +1925,36 @@ private module MkStage<StageSig PrevStage> {
     predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
       exists(RetNodeEx ret, ReturnKindExt kind |
         returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
-        parameterFlowsThroughRev(p, ap, kind, config)
+        parameterFlowsThroughRev(p, ap, kind, _, config)
       )
     }
 
     pragma[nomagic]
-    predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config) {
-      exists(ParamNodeEx p, Ap ap |
-        returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
-        parameterFlowsThroughRev(p, ap, kind, config)
+    predicate returnMayFlowThrough(
+      RetNodeEx ret, Ap argAp, Ap ap, ReturnKindExt kind, Configuration config
+    ) {
+      exists(ParamNodeEx p |
+        returnFlowsThrough(ret, kind, _, _, p, argAp, ap, config) and
+        parameterFlowsThroughRev(p, argAp, kind, ap, config)
+      )
+    }
+
+    pragma[nomagic]
+    predicate revFlowInToReturnIsReturned(
+      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnCtx returnCtx, ApOption returnAp,
+      Ap ap, Configuration config
+    ) {
+      exists(ReturnKindExt returnKind0, Ap returnAp0 |
+        revFlowInToReturn(call, arg, state, returnKind0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
       )
     }
 
     pragma[nomagic]
     predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
-      exists(
-        ReturnKindExt returnKind0, Ap returnAp0, ArgNodeEx arg, FlowState state,
-        ReturnCtx returnCtx, ApOption returnAp, Ap ap
-      |
+      exists(ArgNodeEx arg, FlowState state, ReturnCtx returnCtx, ApOption returnAp, Ap ap |
         revFlow(arg, state, returnCtx, returnAp, ap, config) and
-        revFlowInToReturn(call, arg, state, returnKind0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
+        revFlowInToReturnIsReturned(call, arg, state, returnCtx, returnAp, ap, config)
       )
     }
 
@@ -2179,16 +2317,16 @@ private module LocalFlowBigStep {
   pragma[nomagic]
   predicate localFlowBigStep(
     NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
-    AccessPathFrontNil apf, Configuration config, LocalCallContext callContext
+    DataFlowType t, Configuration config, LocalCallContext callContext
   ) {
-    localFlowStepPlus(node1, state1, node2, preservesValue, apf.getType(), config, callContext) and
+    localFlowStepPlus(node1, state1, node2, preservesValue, t, config, callContext) and
     localFlowExit(node2, state1, config) and
     state1 = state2
     or
     additionalLocalFlowStepNodeCand2(node1, state1, node2, state2, config) and
     state1 != state2 and
     preservesValue = false and
-    apf = TFrontNil(node2.getDataFlowType()) and
+    t = node2.getDataFlowType() and
     callContext.relevantFor(node1.getEnclosingCallable()) and
     not exists(DataFlowCall call | call = callContext.(LocalCallContextSpecificCall).getCall() |
       isUnreachableInCallCached(node1.asNode(), call) or
@@ -2202,11 +2340,87 @@ private import LocalFlowBigStep
 private module Stage3Param implements MkStage<Stage2>::StageParam {
   private module PrevStage = Stage2;
 
+  class Ap = ApproxAccessPathFront;
+
+  class ApNil = ApproxAccessPathFrontNil;
+
+  PrevStage::Ap getApprox(Ap ap) { result = ap.toBoolNonEmpty() }
+
+  ApNil getApNil(NodeEx node) {
+    PrevStage::revFlow(node, _) and result = TApproxFrontNil(node.getDataFlowType())
+  }
+
+  bindingset[tc, tail]
+  Ap apCons(TypedContent tc, Ap tail) { result.getAHead() = tc and exists(tail) }
+
+  pragma[noinline]
+  Content getHeadContent(Ap ap) { result = ap.getAHead().getContent() }
+
+  class ApOption = ApproxAccessPathFrontOption;
+
+  ApOption apNone() { result = TApproxAccessPathFrontNone() }
+
+  ApOption apSome(Ap ap) { result = TApproxAccessPathFrontSome(ap) }
+
+  import BooleanCallContext
+
+  predicate localStep(
+    NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
+    ApproxAccessPathFrontNil ap, Configuration config, LocalCc lcc
+  ) {
+    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap.getType(), config, _) and
+    exists(lcc)
+  }
+
+  predicate flowOutOfCall = flowOutOfCallNodeCand2/6;
+
+  predicate flowIntoCall = flowIntoCallNodeCand2/5;
+
+  pragma[nomagic]
+  private predicate expectsContentCand(NodeEx node, Ap ap, Configuration config) {
+    exists(Content c |
+      PrevStage::revFlow(node, pragma[only_bind_into](config)) and
+      PrevStage::readStepCand(_, c, _, pragma[only_bind_into](config)) and
+      expectsContentEx(node, c) and
+      c = ap.getAHead().getContent()
+    )
+  }
+
+  pragma[nomagic]
+  private predicate castingNodeEx(NodeEx node) { node.asNode() instanceof CastingNode }
+
+  bindingset[node, state, ap, config]
+  predicate filter(NodeEx node, FlowState state, Ap ap, Configuration config) {
+    exists(state) and
+    exists(config) and
+    (if castingNodeEx(node) then compatibleTypes(node.getDataFlowType(), ap.getType()) else any()) and
+    (
+      notExpectsContent(node)
+      or
+      expectsContentCand(node, ap, config)
+    )
+  }
+
+  bindingset[ap, contentType]
+  predicate typecheckStore(Ap ap, DataFlowType contentType) {
+    // We need to typecheck stores here, since reverse flow through a getter
+    // might have a different type here compared to inside the getter.
+    compatibleTypes(ap.getType(), contentType)
+  }
+}
+
+private module Stage3 implements StageSig {
+  import MkStage<Stage2>::Stage<Stage3Param>
+}
+
+private module Stage4Param implements MkStage<Stage3>::StageParam {
+  private module PrevStage = Stage3;
+
   class Ap = AccessPathFront;
 
   class ApNil = AccessPathFrontNil;
 
-  PrevStage::Ap getApprox(Ap ap) { result = ap.toBoolNonEmpty() }
+  PrevStage::Ap getApprox(Ap ap) { result = ap.toApprox() }
 
   ApNil getApNil(NodeEx node) {
     PrevStage::revFlow(node, _) and result = TFrontNil(node.getDataFlowType())
@@ -2226,16 +2440,42 @@ private module Stage3Param implements MkStage<Stage2>::StageParam {
 
   import BooleanCallContext
 
+  pragma[nomagic]
   predicate localStep(
     NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
     ApNil ap, Configuration config, LocalCc lcc
   ) {
-    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap, config, _) and exists(lcc)
+    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap.getType(), config, _) and
+    PrevStage::revFlow(node1, pragma[only_bind_into](state1), _, pragma[only_bind_into](config)) and
+    PrevStage::revFlowAlias(node2, pragma[only_bind_into](state2), _, pragma[only_bind_into](config)) and
+    exists(lcc)
   }
 
-  predicate flowOutOfCall = flowOutOfCallNodeCand2/6;
+  pragma[nomagic]
+  predicate flowOutOfCall(
+    DataFlowCall call, RetNodeEx node1, ReturnKindExt kind, NodeEx node2, boolean allowsFieldFlow,
+    Configuration config
+  ) {
+    exists(FlowState state |
+      flowOutOfCallNodeCand2(call, node1, kind, node2, allowsFieldFlow, config) and
+      PrevStage::revFlow(node2, pragma[only_bind_into](state), _, pragma[only_bind_into](config)) and
+      PrevStage::revFlowAlias(node1, pragma[only_bind_into](state), _,
+        pragma[only_bind_into](config))
+    )
+  }
 
-  predicate flowIntoCall = flowIntoCallNodeCand2/5;
+  pragma[nomagic]
+  predicate flowIntoCall(
+    DataFlowCall call, ArgNodeEx node1, ParamNodeEx node2, boolean allowsFieldFlow,
+    Configuration config
+  ) {
+    exists(FlowState state |
+      flowIntoCallNodeCand2(call, node1, node2, allowsFieldFlow, config) and
+      PrevStage::revFlow(node2, pragma[only_bind_into](state), _, pragma[only_bind_into](config)) and
+      PrevStage::revFlowAlias(node1, pragma[only_bind_into](state), _,
+        pragma[only_bind_into](config))
+    )
+  }
 
   pragma[nomagic]
   private predicate clearSet(NodeEx node, ContentSet c, Configuration config) {
@@ -2291,8 +2531,8 @@ private module Stage3Param implements MkStage<Stage2>::StageParam {
   }
 }
 
-private module Stage3 implements StageSig {
-  import MkStage<Stage2>::Stage<Stage3Param>
+private module Stage4 implements StageSig {
+  import MkStage<Stage3>::Stage<Stage4Param>
 }
 
 /**
@@ -2303,8 +2543,8 @@ private predicate flowCandSummaryCtx(
   NodeEx node, FlowState state, AccessPathFront argApf, Configuration config
 ) {
   exists(AccessPathFront apf |
-    Stage3::revFlow(node, state, TReturnCtxMaybeFlowThrough(_), _, apf, config) and
-    Stage3::fwdFlow(node, state, any(Stage3::CcCall ccc), _, TAccessPathFrontSome(argApf), apf,
+    Stage4::revFlow(node, state, TReturnCtxMaybeFlowThrough(_), _, apf, config) and
+    Stage4::fwdFlow(node, state, any(Stage4::CcCall ccc), _, TAccessPathFrontSome(argApf), apf,
       config)
   )
 }
@@ -2315,10 +2555,10 @@ private predicate flowCandSummaryCtx(
  */
 private predicate expensiveLen2unfolding(TypedContent tc, Configuration config) {
   exists(int tails, int nodes, int apLimit, int tupleLimit |
-    tails = strictcount(AccessPathFront apf | Stage3::consCand(tc, apf, config)) and
+    tails = strictcount(AccessPathFront apf | Stage4::consCand(tc, apf, config)) and
     nodes =
       strictcount(NodeEx n, FlowState state |
-        Stage3::revFlow(n, state, any(AccessPathFrontHead apf | apf.getHead() = tc), config)
+        Stage4::revFlow(n, state, any(AccessPathFrontHead apf | apf.getHead() = tc), config)
         or
         flowCandSummaryCtx(n, state, any(AccessPathFrontHead apf | apf.getHead() = tc), config)
       ) and
@@ -2332,11 +2572,11 @@ private predicate expensiveLen2unfolding(TypedContent tc, Configuration config)
 private newtype TAccessPathApprox =
   TNil(DataFlowType t) or
   TConsNil(TypedContent tc, DataFlowType t) {
-    Stage3::consCand(tc, TFrontNil(t), _) and
+    Stage4::consCand(tc, TFrontNil(t), _) and
     not expensiveLen2unfolding(tc, _)
   } or
   TConsCons(TypedContent tc1, TypedContent tc2, int len) {
-    Stage3::consCand(tc1, TFrontHead(tc2), _) and
+    Stage4::consCand(tc1, TFrontHead(tc2), _) and
     len in [2 .. accessPathLimit()] and
     not expensiveLen2unfolding(tc1, _)
   } or
@@ -2466,7 +2706,7 @@ private class AccessPathApproxCons1 extends AccessPathApproxCons, TCons1 {
   override AccessPathApprox pop(TypedContent head) {
     head = tc and
     (
-      exists(TypedContent tc2 | Stage3::consCand(tc, TFrontHead(tc2), _) |
+      exists(TypedContent tc2 | Stage4::consCand(tc, TFrontHead(tc2), _) |
         result = TConsCons(tc2, _, len - 1)
         or
         len = 2 and
@@ -2477,7 +2717,7 @@ private class AccessPathApproxCons1 extends AccessPathApproxCons, TCons1 {
       or
       exists(DataFlowType t |
         len = 1 and
-        Stage3::consCand(tc, TFrontNil(t), _) and
+        Stage4::consCand(tc, TFrontNil(t), _) and
         result = TNil(t)
       )
     )
@@ -2502,13 +2742,14 @@ private class AccessPathApproxOption extends TAccessPathApproxOption {
   }
 }
 
-private module Stage4Param implements MkStage<Stage3>::StageParam {
-  private module PrevStage = Stage3;
+private module Stage5Param implements MkStage<Stage4>::StageParam {
+  private module PrevStage = Stage4;
 
   class Ap = AccessPathApprox;
 
   class ApNil = AccessPathApproxNil;
 
+  pragma[nomagic]
   PrevStage::Ap getApprox(Ap ap) { result = ap.getFront() }
 
   ApNil getApNil(NodeEx node) {
@@ -2534,7 +2775,9 @@ private module Stage4Param implements MkStage<Stage3>::StageParam {
     NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
     ApNil ap, Configuration config, LocalCc lcc
   ) {
-    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap.getFront(), config, lcc)
+    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap.getType(), config, lcc) and
+    PrevStage::revFlow(node1, pragma[only_bind_into](state1), _, pragma[only_bind_into](config)) and
+    PrevStage::revFlowAlias(node2, pragma[only_bind_into](state2), _, pragma[only_bind_into](config))
   }
 
   pragma[nomagic]
@@ -2571,7 +2814,7 @@ private module Stage4Param implements MkStage<Stage3>::StageParam {
   predicate typecheckStore(Ap ap, DataFlowType contentType) { any() }
 }
 
-private module Stage4 = MkStage<Stage3>::Stage<Stage4Param>;
+private module Stage5 = MkStage<Stage4>::Stage<Stage5Param>;
 
 bindingset[conf, result]
 private Configuration unbindConf(Configuration conf) {
@@ -2585,8 +2828,8 @@ private predicate nodeMayUseSummary0(
 ) {
   exists(AccessPathApprox apa0 |
     c = n.getEnclosingCallable() and
-    Stage4::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
-    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TParameterPositionSome(pos),
+    Stage5::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
+    Stage5::fwdFlow(n, state, any(CallContextCall ccc), TParameterPositionSome(pos),
       TAccessPathApproxSome(apa), apa0, config)
   )
 }
@@ -2596,7 +2839,7 @@ private predicate nodeMayUseSummary(
   NodeEx n, FlowState state, AccessPathApprox apa, Configuration config
 ) {
   exists(DataFlowCallable c, ParameterPosition pos, ParamNodeEx p |
-    Stage4::parameterMayFlowThrough(p, apa, config) and
+    Stage5::parameterMayFlowThrough(p, apa, config) and
     nodeMayUseSummary0(n, c, pos, state, apa, config) and
     p.isParameterOf(c, pos)
   )
@@ -2606,8 +2849,8 @@ private newtype TSummaryCtx =
   TSummaryCtxNone() or
   TSummaryCtxSome(ParamNodeEx p, FlowState state, AccessPath ap) {
     exists(Configuration config |
-      Stage4::parameterMayFlowThrough(p, ap.getApprox(), config) and
-      Stage4::revFlow(p, state, _, config)
+      Stage5::parameterMayFlowThrough(p, ap.getApprox(), config) and
+      Stage5::revFlow(p, state, _, config)
     )
   }
 
@@ -2656,7 +2899,7 @@ private int count1to2unfold(AccessPathApproxCons1 apa, Configuration config) {
     len = apa.len() and
     result =
       strictcount(AccessPathFront apf |
-        Stage4::consCand(tc, any(AccessPathApprox ap | ap.getFront() = apf and ap.len() = len - 1),
+        Stage5::consCand(tc, any(AccessPathApprox ap | ap.getFront() = apf and ap.len() = len - 1),
           config)
       )
   )
@@ -2665,7 +2908,7 @@ private int count1to2unfold(AccessPathApproxCons1 apa, Configuration config) {
 private int countNodesUsingAccessPath(AccessPathApprox apa, Configuration config) {
   result =
     strictcount(NodeEx n, FlowState state |
-      Stage4::revFlow(n, state, apa, config) or nodeMayUseSummary(n, state, apa, config)
+      Stage5::revFlow(n, state, apa, config) or nodeMayUseSummary(n, state, apa, config)
     )
 }
 
@@ -2686,7 +2929,7 @@ private predicate expensiveLen1to2unfolding(AccessPathApproxCons1 apa, Configura
 private AccessPathApprox getATail(AccessPathApprox apa, Configuration config) {
   exists(TypedContent head |
     apa.pop(head) = result and
-    Stage4::consCand(head, result, config)
+    Stage5::consCand(head, result, config)
   )
 }
 
@@ -2768,7 +3011,7 @@ private newtype TPathNode =
     NodeEx node, FlowState state, CallContext cc, SummaryCtx sc, AccessPath ap, Configuration config
   ) {
     // A PathNode is introduced by a source ...
-    Stage4::revFlow(node, state, config) and
+    Stage5::revFlow(node, state, config) and
     sourceNode(node, state, config) and
     (
       if hasSourceCallCtx(config)
@@ -2782,7 +3025,7 @@ private newtype TPathNode =
     exists(PathNodeMid mid |
       pathStep(mid, node, state, cc, sc, ap) and
       pragma[only_bind_into](config) = mid.getConfiguration() and
-      Stage4::revFlow(node, state, ap.getApprox(), pragma[only_bind_into](config))
+      Stage5::revFlow(node, state, ap.getApprox(), pragma[only_bind_into](config))
     )
   } or
   TPathNodeSink(NodeEx node, FlowState state, Configuration config) {
@@ -2924,7 +3167,7 @@ private class AccessPathCons2 extends AccessPath, TAccessPathCons2 {
   override TypedContent getHead() { result = head1 }
 
   override AccessPath getTail() {
-    Stage4::consCand(head1, result.getApprox(), _) and
+    Stage5::consCand(head1, result.getApprox(), _) and
     result.getHead() = head2 and
     result.length() = len - 1
   }
@@ -2955,7 +3198,7 @@ private class AccessPathCons1 extends AccessPath, TAccessPathCons1 {
   override TypedContent getHead() { result = head }
 
   override AccessPath getTail() {
-    Stage4::consCand(head, result.getApprox(), _) and result.length() = len - 1
+    Stage5::consCand(head, result.getApprox(), _) and result.length() = len - 1
   }
 
   override AccessPathFrontHead getFront() { result = TFrontHead(head) }
@@ -3347,7 +3590,8 @@ private predicate pathStep(
     AccessPath ap0, NodeEx midnode, FlowState state0, Configuration conf, LocalCallContext localCC
   |
     pathNode(mid, midnode, state0, cc, sc, ap0, conf, localCC) and
-    localFlowBigStep(midnode, state0, node, state, false, ap.getFront(), conf, localCC) and
+    localFlowBigStep(midnode, state0, node, state, false, ap.(AccessPathNil).getType(), conf,
+      localCC) and
     ap0 instanceof AccessPathNil
   )
   or
@@ -3389,7 +3633,7 @@ private predicate pathReadStep(
 ) {
   ap0 = mid.getAp() and
   tc = ap0.getHead() and
-  Stage4::readStepCand(mid.getNodeEx(), tc.getContent(), node, mid.getConfiguration()) and
+  Stage5::readStepCand(mid.getNodeEx(), tc.getContent(), node, mid.getConfiguration()) and
   state = mid.getState() and
   cc = mid.getCallContext()
 }
@@ -3399,7 +3643,7 @@ private predicate pathStoreStep(
   PathNodeMid mid, NodeEx node, FlowState state, AccessPath ap0, TypedContent tc, CallContext cc
 ) {
   ap0 = mid.getAp() and
-  Stage4::storeStepCand(mid.getNodeEx(), _, tc, node, _, mid.getConfiguration()) and
+  Stage5::storeStepCand(mid.getNodeEx(), _, tc, node, _, mid.getConfiguration()) and
   state = mid.getState() and
   cc = mid.getCallContext()
 }
@@ -3436,7 +3680,7 @@ private NodeEx getAnOutNodeFlow(
   ReturnKindExt kind, DataFlowCall call, AccessPathApprox apa, Configuration config
 ) {
   result.asNode() = kind.getAnOutNode(call) and
-  Stage4::revFlow(result, _, apa, config)
+  Stage5::revFlow(result, _, apa, config)
 }
 
 /**
@@ -3472,7 +3716,7 @@ private predicate parameterCand(
   DataFlowCallable callable, ParameterPosition pos, AccessPathApprox apa, Configuration config
 ) {
   exists(ParamNodeEx p |
-    Stage4::revFlow(p, _, apa, config) and
+    Stage5::revFlow(p, _, apa, config) and
     p.isParameterOf(callable, pos)
   )
 }
@@ -3751,9 +3995,17 @@ predicate stageStats(
   n = 45 and
   Stage4::stats(false, nodes, fields, conscand, states, tuples, config)
   or
-  stage = "5 Fwd" and n = 50 and finalStats(true, nodes, fields, conscand, states, tuples)
+  stage = "5 Fwd" and
+  n = 50 and
+  Stage5::stats(true, nodes, fields, conscand, states, tuples, config)
   or
-  stage = "5 Rev" and n = 55 and finalStats(false, nodes, fields, conscand, states, tuples)
+  stage = "5 Rev" and
+  n = 55 and
+  Stage5::stats(false, nodes, fields, conscand, states, tuples, config)
+  or
+  stage = "6 Fwd" and n = 60 and finalStats(true, nodes, fields, conscand, states, tuples)
+  or
+  stage = "6 Rev" and n = 65 and finalStats(false, nodes, fields, conscand, states, tuples)
 }
 
 private module FlowExploration {
diff --git a/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImplCommon.qll b/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImplCommon.qll
index f981834a6d4..c66aefced8d 100644
--- a/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImplCommon.qll
+++ b/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImplCommon.qll
@@ -926,18 +926,46 @@ private module Cached {
     TReturnCtxNoFlowThrough() or
     TReturnCtxMaybeFlowThrough(ReturnKindExt kind)
 
+  cached
+  newtype TTypedContentApprox =
+    MkTypedContentApprox(ContentApprox c, DataFlowType t) {
+      exists(Content cont |
+        c = getContentApprox(cont) and
+        store(_, cont, _, _, t)
+      )
+    }
+
   cached
   newtype TTypedContent = MkTypedContent(Content c, DataFlowType t) { store(_, c, _, _, t) }
 
+  cached
+  TypedContent getATypedContent(TypedContentApprox c) {
+    exists(ContentApprox cls, DataFlowType t, Content cont |
+      c = MkTypedContentApprox(cls, pragma[only_bind_into](t)) and
+      result = MkTypedContent(cont, pragma[only_bind_into](t)) and
+      cls = getContentApprox(cont)
+    )
+  }
+
   cached
   newtype TAccessPathFront =
     TFrontNil(DataFlowType t) or
     TFrontHead(TypedContent tc)
 
+  cached
+  newtype TApproxAccessPathFront =
+    TApproxFrontNil(DataFlowType t) or
+    TApproxFrontHead(TypedContentApprox tc)
+
   cached
   newtype TAccessPathFrontOption =
     TAccessPathFrontNone() or
     TAccessPathFrontSome(AccessPathFront apf)
+
+  cached
+  newtype TApproxAccessPathFrontOption =
+    TApproxAccessPathFrontNone() or
+    TApproxAccessPathFrontSome(ApproxAccessPathFront apf)
 }
 
 /**
@@ -1353,6 +1381,75 @@ class ReturnCtx extends TReturnCtx {
   }
 }
 
+/** An approximated `Content` tagged with the type of a containing object. */
+class TypedContentApprox extends MkTypedContentApprox {
+  private ContentApprox c;
+  private DataFlowType t;
+
+  TypedContentApprox() { this = MkTypedContentApprox(c, t) }
+
+  /** Gets a typed content approximated by this value. */
+  TypedContent getATypedContent() { result = getATypedContent(this) }
+
+  /** Gets the container type. */
+  DataFlowType getContainerType() { result = t }
+
+  /** Gets a textual representation of this approximated content. */
+  string toString() { result = c.toString() }
+}
+
+/**
+ * The front of an approximated access path. This is either a head or a nil.
+ */
+abstract class ApproxAccessPathFront extends TApproxAccessPathFront {
+  abstract string toString();
+
+  abstract DataFlowType getType();
+
+  abstract boolean toBoolNonEmpty();
+
+  pragma[nomagic]
+  TypedContent getAHead() {
+    exists(TypedContentApprox cont |
+      this = TApproxFrontHead(cont) and
+      result = cont.getATypedContent()
+    )
+  }
+}
+
+class ApproxAccessPathFrontNil extends ApproxAccessPathFront, TApproxFrontNil {
+  private DataFlowType t;
+
+  ApproxAccessPathFrontNil() { this = TApproxFrontNil(t) }
+
+  override string toString() { result = ppReprType(t) }
+
+  override DataFlowType getType() { result = t }
+
+  override boolean toBoolNonEmpty() { result = false }
+}
+
+class ApproxAccessPathFrontHead extends ApproxAccessPathFront, TApproxFrontHead {
+  private TypedContentApprox tc;
+
+  ApproxAccessPathFrontHead() { this = TApproxFrontHead(tc) }
+
+  override string toString() { result = tc.toString() }
+
+  override DataFlowType getType() { result = tc.getContainerType() }
+
+  override boolean toBoolNonEmpty() { result = true }
+}
+
+/** An optional approximated access path front. */
+class ApproxAccessPathFrontOption extends TApproxAccessPathFrontOption {
+  string toString() {
+    this = TApproxAccessPathFrontNone() and result = "<none>"
+    or
+    this = TApproxAccessPathFrontSome(any(ApproxAccessPathFront apf | result = apf.toString()))
+  }
+}
+
 /** A `Content` tagged with the type of a containing object. */
 class TypedContent extends MkTypedContent {
   private Content c;
@@ -1385,7 +1482,7 @@ abstract class AccessPathFront extends TAccessPathFront {
 
   abstract DataFlowType getType();
 
-  abstract boolean toBoolNonEmpty();
+  abstract ApproxAccessPathFront toApprox();
 
   TypedContent getHead() { this = TFrontHead(result) }
 }
@@ -1399,7 +1496,7 @@ class AccessPathFrontNil extends AccessPathFront, TFrontNil {
 
   override DataFlowType getType() { result = t }
 
-  override boolean toBoolNonEmpty() { result = false }
+  override ApproxAccessPathFront toApprox() { result = TApproxFrontNil(t) }
 }
 
 class AccessPathFrontHead extends AccessPathFront, TFrontHead {
@@ -1411,7 +1508,7 @@ class AccessPathFrontHead extends AccessPathFront, TFrontHead {
 
   override DataFlowType getType() { result = tc.getContainerType() }
 
-  override boolean toBoolNonEmpty() { result = true }
+  override ApproxAccessPathFront toApprox() { result.getAHead() = tc }
 }
 
 /** An optional access path front. */
diff --git a/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImplConsistency.qll b/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImplConsistency.qll
index 3eacc21f356..e85e0cd92ec 100644
--- a/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImplConsistency.qll
+++ b/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImplConsistency.qll
@@ -260,4 +260,9 @@ module Consistency {
     not exists(unique(ParameterPosition pos0 | isParameterNode(p, c, pos0))) and
     msg = "Parameter node with multiple positions."
   }
+
+  query predicate uniqueContentApprox(Content c, string msg) {
+    not exists(unique(ContentApprox approx | approx = getContentApprox(c))) and
+    msg = "Non-unique content approximation."
+  }
 }
diff --git a/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImplForContentDataFlow.qll b/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImplForContentDataFlow.qll
index ccde916a3c2..6741ccc2f06 100644
--- a/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImplForContentDataFlow.qll
+++ b/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImplForContentDataFlow.qll
@@ -621,23 +621,6 @@ private predicate parameterFlowThroughAllowed(ParamNodeEx p, ReturnKindExt kind)
   )
 }
 
-/**
- * Holds if flow from a parameter at position `pos` inside `c` to a return node of
- * kind `kind` is allowed.
- *
- * We don't expect a parameter to return stored in itself, unless
- * explicitly allowed
- */
-bindingset[c, pos, kind]
-private predicate parameterFlowThroughAllowed(
-  DataFlowCallable c, ParameterPosition pos, ReturnKindExt kind
-) {
-  exists(ParamNodeEx p |
-    p.isParameterOf(c, pos) and
-    parameterFlowThroughAllowed(p, kind)
-  )
-}
-
 private module Stage1 implements StageSig {
   class Ap = Unit;
 
@@ -980,6 +963,12 @@ private module Stage1 implements StageSig {
   pragma[nomagic]
   predicate revFlow(NodeEx node, Configuration config) { revFlow(node, _, config) }
 
+  pragma[nomagic]
+  predicate revFlowAp(NodeEx node, Ap ap, Configuration config) {
+    revFlow(node, config) and
+    exists(ap)
+  }
+
   bindingset[node, state, config]
   predicate revFlow(NodeEx node, FlowState state, Ap ap, Configuration config) {
     revFlow(node, _, pragma[only_bind_into](config)) and
@@ -1022,9 +1011,13 @@ private module Stage1 implements StageSig {
   }
 
   pragma[nomagic]
-  predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config) {
+  predicate returnMayFlowThrough(
+    RetNodeEx ret, Ap argAp, Ap ap, ReturnKindExt kind, Configuration config
+  ) {
     throughFlowNodeCand(ret, config) and
-    kind = ret.getKind()
+    kind = ret.getKind() and
+    exists(argAp) and
+    exists(ap)
   }
 
   pragma[nomagic]
@@ -1189,6 +1182,8 @@ private signature module StageSig {
 
   predicate revFlow(NodeEx node, Configuration config);
 
+  predicate revFlowAp(NodeEx node, Ap ap, Configuration config);
+
   bindingset[node, state, config]
   predicate revFlow(NodeEx node, FlowState state, Ap ap, Configuration config);
 
@@ -1196,7 +1191,9 @@ private signature module StageSig {
 
   predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config);
 
-  predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config);
+  predicate returnMayFlowThrough(
+    RetNodeEx ret, Ap argAp, Ap ap, ReturnKindExt kind, Configuration config
+  );
 
   predicate storeStepCand(
     NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, DataFlowType contentType,
@@ -1281,21 +1278,43 @@ private module MkStage<StageSig PrevStage> {
     import Param
 
     /* Begin: Stage logic. */
-    bindingset[result, apa]
-    private ApApprox unbindApa(ApApprox apa) {
-      pragma[only_bind_out](apa) = pragma[only_bind_out](result)
+    // use an alias as a workaround for bad functionality-induced joins
+    pragma[nomagic]
+    private predicate revFlowApAlias(NodeEx node, ApApprox apa, Configuration config) {
+      PrevStage::revFlowAp(node, apa, config)
+    }
+
+    pragma[nomagic]
+    private predicate flowIntoCallApa(
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, ApApprox apa,
+      Configuration config
+    ) {
+      flowIntoCall(call, arg, p, allowsFieldFlow, config) and
+      PrevStage::revFlowAp(p, pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
+      revFlowApAlias(arg, pragma[only_bind_into](apa), pragma[only_bind_into](config))
+    }
+
+    pragma[nomagic]
+    private predicate flowOutOfCallApa(
+      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
+      ApApprox apa, Configuration config
+    ) {
+      flowOutOfCall(call, ret, kind, out, allowsFieldFlow, config) and
+      PrevStage::revFlowAp(out, pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
+      revFlowApAlias(ret, pragma[only_bind_into](apa), pragma[only_bind_into](config))
     }
 
     pragma[nomagic]
     private predicate flowThroughOutOfCall(
-      DataFlowCall call, DataFlowCallable c, CcCall ccc, RetNodeEx ret, ReturnKindExt kind,
-      NodeEx out, boolean allowsFieldFlow, Configuration config
+      DataFlowCall call, CcCall ccc, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow,
+      ApApprox argApa, ApApprox apa, Configuration config
     ) {
-      flowOutOfCall(call, ret, kind, out, allowsFieldFlow, pragma[only_bind_into](config)) and
-      PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
-      PrevStage::returnMayFlowThrough(ret, kind, pragma[only_bind_into](config)) and
-      matchesCall(ccc, call) and
-      c = ret.getEnclosingCallable()
+      exists(ReturnKindExt kind |
+        flowOutOfCallApa(call, ret, kind, out, allowsFieldFlow, apa, pragma[only_bind_into](config)) and
+        PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
+        PrevStage::returnMayFlowThrough(ret, argApa, apa, kind, pragma[only_bind_into](config)) and
+        matchesCall(ccc, call)
+      )
     }
 
     /**
@@ -1307,39 +1326,50 @@ private module MkStage<StageSig PrevStage> {
      * corresponding parameter position and access path of that argument, respectively.
      */
     pragma[nomagic]
+    additional predicate fwdFlow(
+      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      Ap ap, ApApprox apa, Configuration config
+    ) {
+      fwdFlow0(node, state, cc, summaryCtx, argAp, ap, apa, config) and
+      PrevStage::revFlow(node, state, apa, config) and
+      filter(node, state, ap, config)
+    }
+
+    pragma[inline]
     additional predicate fwdFlow(
       NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
       Ap ap, Configuration config
     ) {
-      fwdFlow0(node, state, cc, summaryCtx, argAp, ap, config) and
-      PrevStage::revFlow(node, state, unbindApa(getApprox(ap)), config) and
-      filter(node, state, ap, config)
+      fwdFlow(node, state, cc, summaryCtx, argAp, ap, _, config)
     }
 
     pragma[nomagic]
     private predicate fwdFlow0(
       NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      Ap ap, Configuration config
+      Ap ap, ApApprox apa, Configuration config
     ) {
       sourceNode(node, state, config) and
       (if hasSourceCallCtx(config) then cc = ccSomeCall() else cc = ccNone()) and
       argAp = apNone() and
       summaryCtx = TParameterPositionNone() and
-      ap = getApNil(node)
+      ap = getApNil(node) and
+      apa = getApprox(ap)
       or
-      exists(NodeEx mid, FlowState state0, Ap ap0, LocalCc localCc |
-        fwdFlow(mid, state0, cc, summaryCtx, argAp, ap0, config) and
+      exists(NodeEx mid, FlowState state0, Ap ap0, ApApprox apa0, LocalCc localCc |
+        fwdFlow(mid, state0, cc, summaryCtx, argAp, ap0, apa0, config) and
         localCc = getLocalCc(mid, cc)
       |
         localStep(mid, state0, node, state, true, _, config, localCc) and
-        ap = ap0
+        ap = ap0 and
+        apa = apa0
         or
         localStep(mid, state0, node, state, false, ap, config, localCc) and
-        ap0 instanceof ApNil
+        ap0 instanceof ApNil and
+        apa = getApprox(ap)
       )
       or
       exists(NodeEx mid |
-        fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, apa, pragma[only_bind_into](config)) and
         jumpStep(mid, node, config) and
         cc = ccNone() and
         summaryCtx = TParameterPositionNone() and
@@ -1352,7 +1382,8 @@ private module MkStage<StageSig PrevStage> {
         cc = ccNone() and
         summaryCtx = TParameterPositionNone() and
         argAp = apNone() and
-        ap = getApNil(node)
+        ap = getApNil(node) and
+        apa = getApprox(ap)
       )
       or
       exists(NodeEx mid, FlowState state0, ApNil nil |
@@ -1361,32 +1392,32 @@ private module MkStage<StageSig PrevStage> {
         cc = ccNone() and
         summaryCtx = TParameterPositionNone() and
         argAp = apNone() and
-        ap = getApNil(node)
+        ap = getApNil(node) and
+        apa = getApprox(ap)
       )
       or
       // store
       exists(TypedContent tc, Ap ap0 |
         fwdFlowStore(_, ap0, tc, node, state, cc, summaryCtx, argAp, config) and
-        ap = apCons(tc, ap0)
+        ap = apCons(tc, ap0) and
+        apa = getApprox(ap)
       )
       or
       // read
       exists(Ap ap0, Content c |
         fwdFlowRead(ap0, c, _, node, state, cc, summaryCtx, argAp, config) and
-        fwdFlowConsCand(ap0, c, ap, config)
+        fwdFlowConsCand(ap0, c, ap, config) and
+        apa = getApprox(ap)
       )
       or
       // flow into a callable
-      exists(ApApprox apa |
-        fwdFlowIn(_, node, state, _, cc, _, _, ap, config) and
-        apa = getApprox(ap) and
-        if PrevStage::parameterMayFlowThrough(node, apa, config)
-        then (
-          summaryCtx = TParameterPositionSome(node.(ParamNodeEx).getPosition()) and
-          argAp = apSome(ap)
-        ) else (
-          summaryCtx = TParameterPositionNone() and argAp = apNone()
-        )
+      fwdFlowIn(_, node, state, _, cc, _, _, ap, apa, config) and
+      if PrevStage::parameterMayFlowThrough(node, apa, config)
+      then (
+        summaryCtx = TParameterPositionSome(node.(ParamNodeEx).getPosition()) and
+        argAp = apSome(ap)
+      ) else (
+        summaryCtx = TParameterPositionNone() and argAp = apNone()
       )
       or
       // flow out of a callable
@@ -1394,8 +1425,8 @@ private module MkStage<StageSig PrevStage> {
         DataFlowCall call, RetNodeEx ret, boolean allowsFieldFlow, CcNoCall innercc,
         DataFlowCallable inner
       |
-        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, config) and
-        flowOutOfCall(call, ret, _, node, allowsFieldFlow, config) and
+        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, apa, config) and
+        flowOutOfCallApa(call, ret, _, node, allowsFieldFlow, apa, config) and
         inner = ret.getEnclosingCallable() and
         cc = getCallContextReturn(inner, call, innercc) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
@@ -1403,7 +1434,7 @@ private module MkStage<StageSig PrevStage> {
       or
       // flow through a callable
       exists(DataFlowCall call, ParameterPosition summaryCtx0, Ap argAp0 |
-        fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, config) and
+        fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, apa, config) and
         fwdFlowIsEntered(call, cc, summaryCtx, argAp, summaryCtx0, argAp0, config)
       )
     }
@@ -1413,9 +1444,9 @@ private module MkStage<StageSig PrevStage> {
       NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc,
       ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
     ) {
-      exists(DataFlowType contentType |
-        fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, config) and
-        PrevStage::storeStepCand(node1, unbindApa(getApprox(ap1)), tc, node2, contentType, config) and
+      exists(DataFlowType contentType, ApApprox apa1 |
+        fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, apa1, config) and
+        PrevStage::storeStepCand(node1, apa1, tc, node2, contentType, config) and
         typecheckStore(ap1, contentType)
       )
     }
@@ -1433,43 +1464,104 @@ private module MkStage<StageSig PrevStage> {
       )
     }
 
+    private class ApNonNil instanceof Ap {
+      pragma[nomagic]
+      ApNonNil() { not this instanceof ApNil }
+
+      string toString() { result = "" }
+    }
+
+    pragma[nomagic]
+    private predicate fwdFlowRead0(
+      NodeEx node1, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      ApNonNil ap, Configuration config
+    ) {
+      fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
+      PrevStage::readStepCand(node1, _, _, config)
+    }
+
     pragma[nomagic]
     private predicate fwdFlowRead(
       Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc,
       ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
     ) {
-      fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
+      fwdFlowRead0(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, c, node2, config) and
       getHeadContent(ap) = c
     }
 
     pragma[nomagic]
     private predicate fwdFlowIn(
-      DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, Cc innercc,
-      ParameterPositionOption summaryCtx, ApOption argAp, Ap ap, Configuration config
+      DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, CcCall innercc,
+      ParameterPositionOption summaryCtx, ApOption argAp, Ap ap, ApApprox apa, Configuration config
     ) {
       exists(ArgNodeEx arg, boolean allowsFieldFlow |
-        fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, config) and
-        flowIntoCall(call, arg, p, allowsFieldFlow, config) and
+        fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, apa, config) and
+        flowIntoCallApa(call, arg, p, allowsFieldFlow, apa, config) and
         innercc = getCallContextCall(call, p.getEnclosingCallable(), outercc) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
+    pragma[nomagic]
+    private predicate fwdFlowRetFromArg(
+      RetNodeEx ret, FlowState state, CcCall ccc, ParameterPosition summaryCtx, ParamNodeEx p,
+      Ap argAp, ApApprox argApa, Ap ap, ApApprox apa, Configuration config
+    ) {
+      exists(DataFlowCallable c, ReturnKindExt kind |
+        fwdFlow(pragma[only_bind_into](ret), state, ccc,
+          TParameterPositionSome(pragma[only_bind_into](summaryCtx)), apSome(argAp), ap, apa, config) and
+        getApprox(argAp) = argApa and
+        c = ret.getEnclosingCallable() and
+        kind = ret.getKind() and
+        p.isParameterOf(c, pragma[only_bind_into](summaryCtx)) and
+        parameterFlowThroughAllowed(p, kind)
+      )
+    }
+
+    pragma[inline]
+    private predicate fwdFlowInMayFlowThrough(
+      DataFlowCall call, Cc cc, CcCall innerCc, ParameterPositionOption summaryCtx, ApOption argAp,
+      ParamNodeEx param, Ap ap, ApApprox apa, Configuration config
+    ) {
+      fwdFlowIn(call, pragma[only_bind_into](param), _, cc, innerCc, summaryCtx, argAp, ap,
+        pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
+      PrevStage::parameterMayFlowThrough(param, apa, config)
+    }
+
+    // dedup before joining with `flowThroughOutOfCall`
+    pragma[nomagic]
+    private predicate fwdFlowInMayFlowThroughProj(
+      DataFlowCall call, CcCall innerCc, ApApprox apa, Configuration config
+    ) {
+      fwdFlowInMayFlowThrough(call, _, innerCc, _, _, _, _, apa, config)
+    }
+
+    /**
+     * Same as `flowThroughOutOfCall`, but restricted to calls that are reached
+     * in the flow covered by `fwdFlow`, where data might flow through the target
+     * callable and back out at `call`.
+     */
+    pragma[nomagic]
+    private predicate fwdFlowThroughOutOfCall(
+      DataFlowCall call, CcCall ccc, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow,
+      ApApprox argApa, ApApprox apa, Configuration config
+    ) {
+      fwdFlowInMayFlowThroughProj(call, ccc, argApa, config) and
+      flowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, argApa, apa, config)
+    }
+
     pragma[nomagic]
     private predicate fwdFlowOutFromArg(
       DataFlowCall call, NodeEx out, FlowState state, ParameterPosition summaryCtx, Ap argAp, Ap ap,
-      Configuration config
+      ApApprox apa, Configuration config
     ) {
-      exists(
-        DataFlowCallable c, RetNodeEx ret, ReturnKindExt kind, boolean allowsFieldFlow, CcCall ccc
-      |
-        fwdFlow(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc),
-          TParameterPositionSome(pragma[only_bind_into](summaryCtx)), apSome(argAp), ap, config) and
-        flowThroughOutOfCall(call, pragma[only_bind_into](c), ccc, ret, kind, out, allowsFieldFlow,
+      exists(RetNodeEx ret, boolean allowsFieldFlow, CcCall ccc, ApApprox argApa |
+        fwdFlowRetFromArg(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc),
+          summaryCtx, _, argAp, pragma[only_bind_into](argApa), ap, pragma[only_bind_into](apa),
           config) and
-        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
-        parameterFlowThroughAllowed(c, pragma[only_bind_into](summaryCtx), kind)
+        fwdFlowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, argApa, apa, config) and
+        (if allowsFieldFlow = false then ap instanceof ApNil else any())
       )
     }
 
@@ -1483,8 +1575,7 @@ private module MkStage<StageSig PrevStage> {
       ParameterPosition pos, Ap ap, Configuration config
     ) {
       exists(ParamNodeEx param |
-        fwdFlowIn(call, param, _, cc, _, summaryCtx, argAp, ap, config) and
-        PrevStage::parameterMayFlowThrough(param, unbindApa(getApprox(ap)), config) and
+        fwdFlowInMayFlowThrough(call, cc, _, summaryCtx, argAp, param, ap, _, config) and
         pos = param.getPosition()
       )
     }
@@ -1505,41 +1596,55 @@ private module MkStage<StageSig PrevStage> {
       fwdFlowConsCand(ap1, c, ap2, config)
     }
 
-    pragma[nomagic]
-    private predicate returnFlowsThrough0(
-      RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, DataFlowCallable c,
-      ParameterPosition ppos, Ap argAp, Ap ap, Configuration config
-    ) {
-      exists(boolean allowsFieldFlow |
-        fwdFlow(ret, state, ccc, TParameterPositionSome(ppos), apSome(argAp), ap, config) and
-        flowThroughOutOfCall(_, c, _, pragma[only_bind_into](ret), kind, _, allowsFieldFlow,
-          pragma[only_bind_into](config)) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
-      )
-    }
-
     pragma[nomagic]
     private predicate returnFlowsThrough(
       RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, ParamNodeEx p, Ap argAp,
       Ap ap, Configuration config
     ) {
-      exists(DataFlowCallable c, ParameterPosition ppos |
-        returnFlowsThrough0(ret, kind, state, ccc, c, ppos, argAp, ap, config) and
-        p.isParameterOf(c, ppos) and
-        parameterFlowThroughAllowed(p, kind)
+      exists(boolean allowsFieldFlow, ApApprox argApa, ApApprox apa |
+        fwdFlowRetFromArg(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc), _, p,
+          argAp, pragma[only_bind_into](argApa), ap, pragma[only_bind_into](apa), config) and
+        kind = ret.getKind() and
+        fwdFlowThroughOutOfCall(_, ccc, ret, _, allowsFieldFlow, argApa, apa, config) and
+        (if allowsFieldFlow = false then ap instanceof ApNil else any())
       )
     }
 
     pragma[nomagic]
     private predicate flowThroughIntoCall(
-      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp,
+      Configuration config
     ) {
-      exists(Ap argAp |
-        flowIntoCall(call, pragma[only_bind_into](arg), pragma[only_bind_into](p), allowsFieldFlow,
+      exists(ApApprox argApa |
+        flowIntoCallApa(call, pragma[only_bind_into](arg), pragma[only_bind_into](p),
+          allowsFieldFlow, argApa, pragma[only_bind_into](config)) and
+        fwdFlow(arg, _, _, _, _, pragma[only_bind_into](argAp), argApa,
           pragma[only_bind_into](config)) and
-        fwdFlow(arg, _, _, _, _, pragma[only_bind_into](argAp), pragma[only_bind_into](config)) and
         returnFlowsThrough(_, _, _, _, p, pragma[only_bind_into](argAp), _,
-          pragma[only_bind_into](config))
+          pragma[only_bind_into](config)) and
+        if allowsFieldFlow = false then argAp instanceof ApNil else any()
+      )
+    }
+
+    pragma[nomagic]
+    private predicate flowIntoCallAp(
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap ap,
+      Configuration config
+    ) {
+      exists(ApApprox apa |
+        flowIntoCallApa(call, arg, p, allowsFieldFlow, apa, config) and
+        fwdFlow(arg, _, _, _, _, ap, apa, config)
+      )
+    }
+
+    pragma[nomagic]
+    private predicate flowOutOfCallAp(
+      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
+      Ap ap, Configuration config
+    ) {
+      exists(ApApprox apa |
+        flowOutOfCallApa(call, ret, kind, out, allowsFieldFlow, apa, config) and
+        fwdFlow(ret, _, _, _, _, ap, apa, config)
       )
     }
 
@@ -1628,7 +1733,7 @@ private module MkStage<StageSig PrevStage> {
       // flow into a callable
       exists(ParamNodeEx p, boolean allowsFieldFlow |
         revFlow(p, state, TReturnCtxNone(), returnAp, ap, config) and
-        flowIntoCall(_, node, p, allowsFieldFlow, config) and
+        flowIntoCallAp(_, node, p, allowsFieldFlow, ap, config) and
         (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
         returnCtx = TReturnCtxNone()
       )
@@ -1682,22 +1787,41 @@ private module MkStage<StageSig PrevStage> {
     ) {
       exists(NodeEx out, boolean allowsFieldFlow |
         revFlow(out, state, returnCtx, returnAp, ap, config) and
-        flowOutOfCall(call, ret, kind, out, allowsFieldFlow, config) and
+        flowOutOfCallAp(call, ret, kind, out, allowsFieldFlow, ap, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
+    /**
+     * Same as `flowThroughIntoCall`, but restricted to calls that are reached
+     * in the flow covered by `revFlow`, where data might flow through the target
+     * callable and back out at `call`.
+     */
+    pragma[nomagic]
+    private predicate revFlowThroughIntoCall(
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp,
+      Configuration config
+    ) {
+      flowThroughIntoCall(call, arg, p, allowsFieldFlow, argAp, config) and
+      revFlowIsReturned(call, _, _, _, _, config)
+    }
+
+    pragma[nomagic]
+    private predicate revFlowParamToReturn(
+      ParamNodeEx p, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap, Configuration config
+    ) {
+      revFlow(p, state, TReturnCtxMaybeFlowThrough(kind), apSome(returnAp), ap, config) and
+      parameterFlowThroughAllowed(p, kind)
+    }
+
     pragma[nomagic]
     private predicate revFlowInToReturn(
       DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap,
       Configuration config
     ) {
       exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(pragma[only_bind_into](p), state,
-          TReturnCtxMaybeFlowThrough(pragma[only_bind_into](kind)), apSome(returnAp), ap, config) and
-        flowThroughIntoCall(call, arg, p, allowsFieldFlow, config) and
-        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
-        parameterFlowThroughAllowed(p, kind)
+        revFlowParamToReturn(p, state, kind, returnAp, ap, config) and
+        revFlowThroughIntoCall(call, arg, p, allowsFieldFlow, ap, config)
       )
     }
 
@@ -1750,6 +1874,11 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     predicate revFlow(NodeEx node, Configuration config) { revFlow(node, _, _, _, _, config) }
 
+    pragma[nomagic]
+    predicate revFlowAp(NodeEx node, Ap ap, Configuration config) {
+      revFlow(node, _, _, _, ap, config)
+    }
+
     // use an alias as a workaround for bad functionality-induced joins
     pragma[nomagic]
     additional predicate revFlowAlias(NodeEx node, Configuration config) {
@@ -1786,9 +1915,9 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate parameterFlowsThroughRev(
-      ParamNodeEx p, Ap ap, ReturnKindExt kind, Configuration config
+      ParamNodeEx p, Ap ap, ReturnKindExt kind, Ap returnAp, Configuration config
     ) {
-      revFlow(p, _, TReturnCtxMaybeFlowThrough(kind), apSome(_), ap, config) and
+      revFlow(p, _, TReturnCtxMaybeFlowThrough(kind), apSome(returnAp), ap, config) and
       parameterFlowThroughAllowed(p, kind)
     }
 
@@ -1796,27 +1925,36 @@ private module MkStage<StageSig PrevStage> {
     predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
       exists(RetNodeEx ret, ReturnKindExt kind |
         returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
-        parameterFlowsThroughRev(p, ap, kind, config)
+        parameterFlowsThroughRev(p, ap, kind, _, config)
       )
     }
 
     pragma[nomagic]
-    predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config) {
-      exists(ParamNodeEx p, Ap ap |
-        returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
-        parameterFlowsThroughRev(p, ap, kind, config)
+    predicate returnMayFlowThrough(
+      RetNodeEx ret, Ap argAp, Ap ap, ReturnKindExt kind, Configuration config
+    ) {
+      exists(ParamNodeEx p |
+        returnFlowsThrough(ret, kind, _, _, p, argAp, ap, config) and
+        parameterFlowsThroughRev(p, argAp, kind, ap, config)
+      )
+    }
+
+    pragma[nomagic]
+    predicate revFlowInToReturnIsReturned(
+      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnCtx returnCtx, ApOption returnAp,
+      Ap ap, Configuration config
+    ) {
+      exists(ReturnKindExt returnKind0, Ap returnAp0 |
+        revFlowInToReturn(call, arg, state, returnKind0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
       )
     }
 
     pragma[nomagic]
     predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
-      exists(
-        ReturnKindExt returnKind0, Ap returnAp0, ArgNodeEx arg, FlowState state,
-        ReturnCtx returnCtx, ApOption returnAp, Ap ap
-      |
+      exists(ArgNodeEx arg, FlowState state, ReturnCtx returnCtx, ApOption returnAp, Ap ap |
         revFlow(arg, state, returnCtx, returnAp, ap, config) and
-        revFlowInToReturn(call, arg, state, returnKind0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
+        revFlowInToReturnIsReturned(call, arg, state, returnCtx, returnAp, ap, config)
       )
     }
 
@@ -2179,16 +2317,16 @@ private module LocalFlowBigStep {
   pragma[nomagic]
   predicate localFlowBigStep(
     NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
-    AccessPathFrontNil apf, Configuration config, LocalCallContext callContext
+    DataFlowType t, Configuration config, LocalCallContext callContext
   ) {
-    localFlowStepPlus(node1, state1, node2, preservesValue, apf.getType(), config, callContext) and
+    localFlowStepPlus(node1, state1, node2, preservesValue, t, config, callContext) and
     localFlowExit(node2, state1, config) and
     state1 = state2
     or
     additionalLocalFlowStepNodeCand2(node1, state1, node2, state2, config) and
     state1 != state2 and
     preservesValue = false and
-    apf = TFrontNil(node2.getDataFlowType()) and
+    t = node2.getDataFlowType() and
     callContext.relevantFor(node1.getEnclosingCallable()) and
     not exists(DataFlowCall call | call = callContext.(LocalCallContextSpecificCall).getCall() |
       isUnreachableInCallCached(node1.asNode(), call) or
@@ -2202,11 +2340,87 @@ private import LocalFlowBigStep
 private module Stage3Param implements MkStage<Stage2>::StageParam {
   private module PrevStage = Stage2;
 
+  class Ap = ApproxAccessPathFront;
+
+  class ApNil = ApproxAccessPathFrontNil;
+
+  PrevStage::Ap getApprox(Ap ap) { result = ap.toBoolNonEmpty() }
+
+  ApNil getApNil(NodeEx node) {
+    PrevStage::revFlow(node, _) and result = TApproxFrontNil(node.getDataFlowType())
+  }
+
+  bindingset[tc, tail]
+  Ap apCons(TypedContent tc, Ap tail) { result.getAHead() = tc and exists(tail) }
+
+  pragma[noinline]
+  Content getHeadContent(Ap ap) { result = ap.getAHead().getContent() }
+
+  class ApOption = ApproxAccessPathFrontOption;
+
+  ApOption apNone() { result = TApproxAccessPathFrontNone() }
+
+  ApOption apSome(Ap ap) { result = TApproxAccessPathFrontSome(ap) }
+
+  import BooleanCallContext
+
+  predicate localStep(
+    NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
+    ApproxAccessPathFrontNil ap, Configuration config, LocalCc lcc
+  ) {
+    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap.getType(), config, _) and
+    exists(lcc)
+  }
+
+  predicate flowOutOfCall = flowOutOfCallNodeCand2/6;
+
+  predicate flowIntoCall = flowIntoCallNodeCand2/5;
+
+  pragma[nomagic]
+  private predicate expectsContentCand(NodeEx node, Ap ap, Configuration config) {
+    exists(Content c |
+      PrevStage::revFlow(node, pragma[only_bind_into](config)) and
+      PrevStage::readStepCand(_, c, _, pragma[only_bind_into](config)) and
+      expectsContentEx(node, c) and
+      c = ap.getAHead().getContent()
+    )
+  }
+
+  pragma[nomagic]
+  private predicate castingNodeEx(NodeEx node) { node.asNode() instanceof CastingNode }
+
+  bindingset[node, state, ap, config]
+  predicate filter(NodeEx node, FlowState state, Ap ap, Configuration config) {
+    exists(state) and
+    exists(config) and
+    (if castingNodeEx(node) then compatibleTypes(node.getDataFlowType(), ap.getType()) else any()) and
+    (
+      notExpectsContent(node)
+      or
+      expectsContentCand(node, ap, config)
+    )
+  }
+
+  bindingset[ap, contentType]
+  predicate typecheckStore(Ap ap, DataFlowType contentType) {
+    // We need to typecheck stores here, since reverse flow through a getter
+    // might have a different type here compared to inside the getter.
+    compatibleTypes(ap.getType(), contentType)
+  }
+}
+
+private module Stage3 implements StageSig {
+  import MkStage<Stage2>::Stage<Stage3Param>
+}
+
+private module Stage4Param implements MkStage<Stage3>::StageParam {
+  private module PrevStage = Stage3;
+
   class Ap = AccessPathFront;
 
   class ApNil = AccessPathFrontNil;
 
-  PrevStage::Ap getApprox(Ap ap) { result = ap.toBoolNonEmpty() }
+  PrevStage::Ap getApprox(Ap ap) { result = ap.toApprox() }
 
   ApNil getApNil(NodeEx node) {
     PrevStage::revFlow(node, _) and result = TFrontNil(node.getDataFlowType())
@@ -2226,16 +2440,42 @@ private module Stage3Param implements MkStage<Stage2>::StageParam {
 
   import BooleanCallContext
 
+  pragma[nomagic]
   predicate localStep(
     NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
     ApNil ap, Configuration config, LocalCc lcc
   ) {
-    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap, config, _) and exists(lcc)
+    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap.getType(), config, _) and
+    PrevStage::revFlow(node1, pragma[only_bind_into](state1), _, pragma[only_bind_into](config)) and
+    PrevStage::revFlowAlias(node2, pragma[only_bind_into](state2), _, pragma[only_bind_into](config)) and
+    exists(lcc)
   }
 
-  predicate flowOutOfCall = flowOutOfCallNodeCand2/6;
+  pragma[nomagic]
+  predicate flowOutOfCall(
+    DataFlowCall call, RetNodeEx node1, ReturnKindExt kind, NodeEx node2, boolean allowsFieldFlow,
+    Configuration config
+  ) {
+    exists(FlowState state |
+      flowOutOfCallNodeCand2(call, node1, kind, node2, allowsFieldFlow, config) and
+      PrevStage::revFlow(node2, pragma[only_bind_into](state), _, pragma[only_bind_into](config)) and
+      PrevStage::revFlowAlias(node1, pragma[only_bind_into](state), _,
+        pragma[only_bind_into](config))
+    )
+  }
 
-  predicate flowIntoCall = flowIntoCallNodeCand2/5;
+  pragma[nomagic]
+  predicate flowIntoCall(
+    DataFlowCall call, ArgNodeEx node1, ParamNodeEx node2, boolean allowsFieldFlow,
+    Configuration config
+  ) {
+    exists(FlowState state |
+      flowIntoCallNodeCand2(call, node1, node2, allowsFieldFlow, config) and
+      PrevStage::revFlow(node2, pragma[only_bind_into](state), _, pragma[only_bind_into](config)) and
+      PrevStage::revFlowAlias(node1, pragma[only_bind_into](state), _,
+        pragma[only_bind_into](config))
+    )
+  }
 
   pragma[nomagic]
   private predicate clearSet(NodeEx node, ContentSet c, Configuration config) {
@@ -2291,8 +2531,8 @@ private module Stage3Param implements MkStage<Stage2>::StageParam {
   }
 }
 
-private module Stage3 implements StageSig {
-  import MkStage<Stage2>::Stage<Stage3Param>
+private module Stage4 implements StageSig {
+  import MkStage<Stage3>::Stage<Stage4Param>
 }
 
 /**
@@ -2303,8 +2543,8 @@ private predicate flowCandSummaryCtx(
   NodeEx node, FlowState state, AccessPathFront argApf, Configuration config
 ) {
   exists(AccessPathFront apf |
-    Stage3::revFlow(node, state, TReturnCtxMaybeFlowThrough(_), _, apf, config) and
-    Stage3::fwdFlow(node, state, any(Stage3::CcCall ccc), _, TAccessPathFrontSome(argApf), apf,
+    Stage4::revFlow(node, state, TReturnCtxMaybeFlowThrough(_), _, apf, config) and
+    Stage4::fwdFlow(node, state, any(Stage4::CcCall ccc), _, TAccessPathFrontSome(argApf), apf,
       config)
   )
 }
@@ -2315,10 +2555,10 @@ private predicate flowCandSummaryCtx(
  */
 private predicate expensiveLen2unfolding(TypedContent tc, Configuration config) {
   exists(int tails, int nodes, int apLimit, int tupleLimit |
-    tails = strictcount(AccessPathFront apf | Stage3::consCand(tc, apf, config)) and
+    tails = strictcount(AccessPathFront apf | Stage4::consCand(tc, apf, config)) and
     nodes =
       strictcount(NodeEx n, FlowState state |
-        Stage3::revFlow(n, state, any(AccessPathFrontHead apf | apf.getHead() = tc), config)
+        Stage4::revFlow(n, state, any(AccessPathFrontHead apf | apf.getHead() = tc), config)
         or
         flowCandSummaryCtx(n, state, any(AccessPathFrontHead apf | apf.getHead() = tc), config)
       ) and
@@ -2332,11 +2572,11 @@ private predicate expensiveLen2unfolding(TypedContent tc, Configuration config)
 private newtype TAccessPathApprox =
   TNil(DataFlowType t) or
   TConsNil(TypedContent tc, DataFlowType t) {
-    Stage3::consCand(tc, TFrontNil(t), _) and
+    Stage4::consCand(tc, TFrontNil(t), _) and
     not expensiveLen2unfolding(tc, _)
   } or
   TConsCons(TypedContent tc1, TypedContent tc2, int len) {
-    Stage3::consCand(tc1, TFrontHead(tc2), _) and
+    Stage4::consCand(tc1, TFrontHead(tc2), _) and
     len in [2 .. accessPathLimit()] and
     not expensiveLen2unfolding(tc1, _)
   } or
@@ -2466,7 +2706,7 @@ private class AccessPathApproxCons1 extends AccessPathApproxCons, TCons1 {
   override AccessPathApprox pop(TypedContent head) {
     head = tc and
     (
-      exists(TypedContent tc2 | Stage3::consCand(tc, TFrontHead(tc2), _) |
+      exists(TypedContent tc2 | Stage4::consCand(tc, TFrontHead(tc2), _) |
         result = TConsCons(tc2, _, len - 1)
         or
         len = 2 and
@@ -2477,7 +2717,7 @@ private class AccessPathApproxCons1 extends AccessPathApproxCons, TCons1 {
       or
       exists(DataFlowType t |
         len = 1 and
-        Stage3::consCand(tc, TFrontNil(t), _) and
+        Stage4::consCand(tc, TFrontNil(t), _) and
         result = TNil(t)
       )
     )
@@ -2502,13 +2742,14 @@ private class AccessPathApproxOption extends TAccessPathApproxOption {
   }
 }
 
-private module Stage4Param implements MkStage<Stage3>::StageParam {
-  private module PrevStage = Stage3;
+private module Stage5Param implements MkStage<Stage4>::StageParam {
+  private module PrevStage = Stage4;
 
   class Ap = AccessPathApprox;
 
   class ApNil = AccessPathApproxNil;
 
+  pragma[nomagic]
   PrevStage::Ap getApprox(Ap ap) { result = ap.getFront() }
 
   ApNil getApNil(NodeEx node) {
@@ -2534,7 +2775,9 @@ private module Stage4Param implements MkStage<Stage3>::StageParam {
     NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
     ApNil ap, Configuration config, LocalCc lcc
   ) {
-    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap.getFront(), config, lcc)
+    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap.getType(), config, lcc) and
+    PrevStage::revFlow(node1, pragma[only_bind_into](state1), _, pragma[only_bind_into](config)) and
+    PrevStage::revFlowAlias(node2, pragma[only_bind_into](state2), _, pragma[only_bind_into](config))
   }
 
   pragma[nomagic]
@@ -2571,7 +2814,7 @@ private module Stage4Param implements MkStage<Stage3>::StageParam {
   predicate typecheckStore(Ap ap, DataFlowType contentType) { any() }
 }
 
-private module Stage4 = MkStage<Stage3>::Stage<Stage4Param>;
+private module Stage5 = MkStage<Stage4>::Stage<Stage5Param>;
 
 bindingset[conf, result]
 private Configuration unbindConf(Configuration conf) {
@@ -2585,8 +2828,8 @@ private predicate nodeMayUseSummary0(
 ) {
   exists(AccessPathApprox apa0 |
     c = n.getEnclosingCallable() and
-    Stage4::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
-    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TParameterPositionSome(pos),
+    Stage5::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
+    Stage5::fwdFlow(n, state, any(CallContextCall ccc), TParameterPositionSome(pos),
       TAccessPathApproxSome(apa), apa0, config)
   )
 }
@@ -2596,7 +2839,7 @@ private predicate nodeMayUseSummary(
   NodeEx n, FlowState state, AccessPathApprox apa, Configuration config
 ) {
   exists(DataFlowCallable c, ParameterPosition pos, ParamNodeEx p |
-    Stage4::parameterMayFlowThrough(p, apa, config) and
+    Stage5::parameterMayFlowThrough(p, apa, config) and
     nodeMayUseSummary0(n, c, pos, state, apa, config) and
     p.isParameterOf(c, pos)
   )
@@ -2606,8 +2849,8 @@ private newtype TSummaryCtx =
   TSummaryCtxNone() or
   TSummaryCtxSome(ParamNodeEx p, FlowState state, AccessPath ap) {
     exists(Configuration config |
-      Stage4::parameterMayFlowThrough(p, ap.getApprox(), config) and
-      Stage4::revFlow(p, state, _, config)
+      Stage5::parameterMayFlowThrough(p, ap.getApprox(), config) and
+      Stage5::revFlow(p, state, _, config)
     )
   }
 
@@ -2656,7 +2899,7 @@ private int count1to2unfold(AccessPathApproxCons1 apa, Configuration config) {
     len = apa.len() and
     result =
       strictcount(AccessPathFront apf |
-        Stage4::consCand(tc, any(AccessPathApprox ap | ap.getFront() = apf and ap.len() = len - 1),
+        Stage5::consCand(tc, any(AccessPathApprox ap | ap.getFront() = apf and ap.len() = len - 1),
           config)
       )
   )
@@ -2665,7 +2908,7 @@ private int count1to2unfold(AccessPathApproxCons1 apa, Configuration config) {
 private int countNodesUsingAccessPath(AccessPathApprox apa, Configuration config) {
   result =
     strictcount(NodeEx n, FlowState state |
-      Stage4::revFlow(n, state, apa, config) or nodeMayUseSummary(n, state, apa, config)
+      Stage5::revFlow(n, state, apa, config) or nodeMayUseSummary(n, state, apa, config)
     )
 }
 
@@ -2686,7 +2929,7 @@ private predicate expensiveLen1to2unfolding(AccessPathApproxCons1 apa, Configura
 private AccessPathApprox getATail(AccessPathApprox apa, Configuration config) {
   exists(TypedContent head |
     apa.pop(head) = result and
-    Stage4::consCand(head, result, config)
+    Stage5::consCand(head, result, config)
   )
 }
 
@@ -2768,7 +3011,7 @@ private newtype TPathNode =
     NodeEx node, FlowState state, CallContext cc, SummaryCtx sc, AccessPath ap, Configuration config
   ) {
     // A PathNode is introduced by a source ...
-    Stage4::revFlow(node, state, config) and
+    Stage5::revFlow(node, state, config) and
     sourceNode(node, state, config) and
     (
       if hasSourceCallCtx(config)
@@ -2782,7 +3025,7 @@ private newtype TPathNode =
     exists(PathNodeMid mid |
       pathStep(mid, node, state, cc, sc, ap) and
       pragma[only_bind_into](config) = mid.getConfiguration() and
-      Stage4::revFlow(node, state, ap.getApprox(), pragma[only_bind_into](config))
+      Stage5::revFlow(node, state, ap.getApprox(), pragma[only_bind_into](config))
     )
   } or
   TPathNodeSink(NodeEx node, FlowState state, Configuration config) {
@@ -2924,7 +3167,7 @@ private class AccessPathCons2 extends AccessPath, TAccessPathCons2 {
   override TypedContent getHead() { result = head1 }
 
   override AccessPath getTail() {
-    Stage4::consCand(head1, result.getApprox(), _) and
+    Stage5::consCand(head1, result.getApprox(), _) and
     result.getHead() = head2 and
     result.length() = len - 1
   }
@@ -2955,7 +3198,7 @@ private class AccessPathCons1 extends AccessPath, TAccessPathCons1 {
   override TypedContent getHead() { result = head }
 
   override AccessPath getTail() {
-    Stage4::consCand(head, result.getApprox(), _) and result.length() = len - 1
+    Stage5::consCand(head, result.getApprox(), _) and result.length() = len - 1
   }
 
   override AccessPathFrontHead getFront() { result = TFrontHead(head) }
@@ -3347,7 +3590,8 @@ private predicate pathStep(
     AccessPath ap0, NodeEx midnode, FlowState state0, Configuration conf, LocalCallContext localCC
   |
     pathNode(mid, midnode, state0, cc, sc, ap0, conf, localCC) and
-    localFlowBigStep(midnode, state0, node, state, false, ap.getFront(), conf, localCC) and
+    localFlowBigStep(midnode, state0, node, state, false, ap.(AccessPathNil).getType(), conf,
+      localCC) and
     ap0 instanceof AccessPathNil
   )
   or
@@ -3389,7 +3633,7 @@ private predicate pathReadStep(
 ) {
   ap0 = mid.getAp() and
   tc = ap0.getHead() and
-  Stage4::readStepCand(mid.getNodeEx(), tc.getContent(), node, mid.getConfiguration()) and
+  Stage5::readStepCand(mid.getNodeEx(), tc.getContent(), node, mid.getConfiguration()) and
   state = mid.getState() and
   cc = mid.getCallContext()
 }
@@ -3399,7 +3643,7 @@ private predicate pathStoreStep(
   PathNodeMid mid, NodeEx node, FlowState state, AccessPath ap0, TypedContent tc, CallContext cc
 ) {
   ap0 = mid.getAp() and
-  Stage4::storeStepCand(mid.getNodeEx(), _, tc, node, _, mid.getConfiguration()) and
+  Stage5::storeStepCand(mid.getNodeEx(), _, tc, node, _, mid.getConfiguration()) and
   state = mid.getState() and
   cc = mid.getCallContext()
 }
@@ -3436,7 +3680,7 @@ private NodeEx getAnOutNodeFlow(
   ReturnKindExt kind, DataFlowCall call, AccessPathApprox apa, Configuration config
 ) {
   result.asNode() = kind.getAnOutNode(call) and
-  Stage4::revFlow(result, _, apa, config)
+  Stage5::revFlow(result, _, apa, config)
 }
 
 /**
@@ -3472,7 +3716,7 @@ private predicate parameterCand(
   DataFlowCallable callable, ParameterPosition pos, AccessPathApprox apa, Configuration config
 ) {
   exists(ParamNodeEx p |
-    Stage4::revFlow(p, _, apa, config) and
+    Stage5::revFlow(p, _, apa, config) and
     p.isParameterOf(callable, pos)
   )
 }
@@ -3751,9 +3995,17 @@ predicate stageStats(
   n = 45 and
   Stage4::stats(false, nodes, fields, conscand, states, tuples, config)
   or
-  stage = "5 Fwd" and n = 50 and finalStats(true, nodes, fields, conscand, states, tuples)
+  stage = "5 Fwd" and
+  n = 50 and
+  Stage5::stats(true, nodes, fields, conscand, states, tuples, config)
   or
-  stage = "5 Rev" and n = 55 and finalStats(false, nodes, fields, conscand, states, tuples)
+  stage = "5 Rev" and
+  n = 55 and
+  Stage5::stats(false, nodes, fields, conscand, states, tuples, config)
+  or
+  stage = "6 Fwd" and n = 60 and finalStats(true, nodes, fields, conscand, states, tuples)
+  or
+  stage = "6 Rev" and n = 65 and finalStats(false, nodes, fields, conscand, states, tuples)
 }
 
 private module FlowExploration {
diff --git a/go/ql/lib/semmle/go/dataflow/internal/DataFlowImpl.qll b/go/ql/lib/semmle/go/dataflow/internal/DataFlowImpl.qll
index ccde916a3c2..6741ccc2f06 100644
--- a/go/ql/lib/semmle/go/dataflow/internal/DataFlowImpl.qll
+++ b/go/ql/lib/semmle/go/dataflow/internal/DataFlowImpl.qll
@@ -621,23 +621,6 @@ private predicate parameterFlowThroughAllowed(ParamNodeEx p, ReturnKindExt kind)
   )
 }
 
-/**
- * Holds if flow from a parameter at position `pos` inside `c` to a return node of
- * kind `kind` is allowed.
- *
- * We don't expect a parameter to return stored in itself, unless
- * explicitly allowed
- */
-bindingset[c, pos, kind]
-private predicate parameterFlowThroughAllowed(
-  DataFlowCallable c, ParameterPosition pos, ReturnKindExt kind
-) {
-  exists(ParamNodeEx p |
-    p.isParameterOf(c, pos) and
-    parameterFlowThroughAllowed(p, kind)
-  )
-}
-
 private module Stage1 implements StageSig {
   class Ap = Unit;
 
@@ -980,6 +963,12 @@ private module Stage1 implements StageSig {
   pragma[nomagic]
   predicate revFlow(NodeEx node, Configuration config) { revFlow(node, _, config) }
 
+  pragma[nomagic]
+  predicate revFlowAp(NodeEx node, Ap ap, Configuration config) {
+    revFlow(node, config) and
+    exists(ap)
+  }
+
   bindingset[node, state, config]
   predicate revFlow(NodeEx node, FlowState state, Ap ap, Configuration config) {
     revFlow(node, _, pragma[only_bind_into](config)) and
@@ -1022,9 +1011,13 @@ private module Stage1 implements StageSig {
   }
 
   pragma[nomagic]
-  predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config) {
+  predicate returnMayFlowThrough(
+    RetNodeEx ret, Ap argAp, Ap ap, ReturnKindExt kind, Configuration config
+  ) {
     throughFlowNodeCand(ret, config) and
-    kind = ret.getKind()
+    kind = ret.getKind() and
+    exists(argAp) and
+    exists(ap)
   }
 
   pragma[nomagic]
@@ -1189,6 +1182,8 @@ private signature module StageSig {
 
   predicate revFlow(NodeEx node, Configuration config);
 
+  predicate revFlowAp(NodeEx node, Ap ap, Configuration config);
+
   bindingset[node, state, config]
   predicate revFlow(NodeEx node, FlowState state, Ap ap, Configuration config);
 
@@ -1196,7 +1191,9 @@ private signature module StageSig {
 
   predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config);
 
-  predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config);
+  predicate returnMayFlowThrough(
+    RetNodeEx ret, Ap argAp, Ap ap, ReturnKindExt kind, Configuration config
+  );
 
   predicate storeStepCand(
     NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, DataFlowType contentType,
@@ -1281,21 +1278,43 @@ private module MkStage<StageSig PrevStage> {
     import Param
 
     /* Begin: Stage logic. */
-    bindingset[result, apa]
-    private ApApprox unbindApa(ApApprox apa) {
-      pragma[only_bind_out](apa) = pragma[only_bind_out](result)
+    // use an alias as a workaround for bad functionality-induced joins
+    pragma[nomagic]
+    private predicate revFlowApAlias(NodeEx node, ApApprox apa, Configuration config) {
+      PrevStage::revFlowAp(node, apa, config)
+    }
+
+    pragma[nomagic]
+    private predicate flowIntoCallApa(
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, ApApprox apa,
+      Configuration config
+    ) {
+      flowIntoCall(call, arg, p, allowsFieldFlow, config) and
+      PrevStage::revFlowAp(p, pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
+      revFlowApAlias(arg, pragma[only_bind_into](apa), pragma[only_bind_into](config))
+    }
+
+    pragma[nomagic]
+    private predicate flowOutOfCallApa(
+      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
+      ApApprox apa, Configuration config
+    ) {
+      flowOutOfCall(call, ret, kind, out, allowsFieldFlow, config) and
+      PrevStage::revFlowAp(out, pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
+      revFlowApAlias(ret, pragma[only_bind_into](apa), pragma[only_bind_into](config))
     }
 
     pragma[nomagic]
     private predicate flowThroughOutOfCall(
-      DataFlowCall call, DataFlowCallable c, CcCall ccc, RetNodeEx ret, ReturnKindExt kind,
-      NodeEx out, boolean allowsFieldFlow, Configuration config
+      DataFlowCall call, CcCall ccc, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow,
+      ApApprox argApa, ApApprox apa, Configuration config
     ) {
-      flowOutOfCall(call, ret, kind, out, allowsFieldFlow, pragma[only_bind_into](config)) and
-      PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
-      PrevStage::returnMayFlowThrough(ret, kind, pragma[only_bind_into](config)) and
-      matchesCall(ccc, call) and
-      c = ret.getEnclosingCallable()
+      exists(ReturnKindExt kind |
+        flowOutOfCallApa(call, ret, kind, out, allowsFieldFlow, apa, pragma[only_bind_into](config)) and
+        PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
+        PrevStage::returnMayFlowThrough(ret, argApa, apa, kind, pragma[only_bind_into](config)) and
+        matchesCall(ccc, call)
+      )
     }
 
     /**
@@ -1307,39 +1326,50 @@ private module MkStage<StageSig PrevStage> {
      * corresponding parameter position and access path of that argument, respectively.
      */
     pragma[nomagic]
+    additional predicate fwdFlow(
+      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      Ap ap, ApApprox apa, Configuration config
+    ) {
+      fwdFlow0(node, state, cc, summaryCtx, argAp, ap, apa, config) and
+      PrevStage::revFlow(node, state, apa, config) and
+      filter(node, state, ap, config)
+    }
+
+    pragma[inline]
     additional predicate fwdFlow(
       NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
       Ap ap, Configuration config
     ) {
-      fwdFlow0(node, state, cc, summaryCtx, argAp, ap, config) and
-      PrevStage::revFlow(node, state, unbindApa(getApprox(ap)), config) and
-      filter(node, state, ap, config)
+      fwdFlow(node, state, cc, summaryCtx, argAp, ap, _, config)
     }
 
     pragma[nomagic]
     private predicate fwdFlow0(
       NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      Ap ap, Configuration config
+      Ap ap, ApApprox apa, Configuration config
     ) {
       sourceNode(node, state, config) and
       (if hasSourceCallCtx(config) then cc = ccSomeCall() else cc = ccNone()) and
       argAp = apNone() and
       summaryCtx = TParameterPositionNone() and
-      ap = getApNil(node)
+      ap = getApNil(node) and
+      apa = getApprox(ap)
       or
-      exists(NodeEx mid, FlowState state0, Ap ap0, LocalCc localCc |
-        fwdFlow(mid, state0, cc, summaryCtx, argAp, ap0, config) and
+      exists(NodeEx mid, FlowState state0, Ap ap0, ApApprox apa0, LocalCc localCc |
+        fwdFlow(mid, state0, cc, summaryCtx, argAp, ap0, apa0, config) and
         localCc = getLocalCc(mid, cc)
       |
         localStep(mid, state0, node, state, true, _, config, localCc) and
-        ap = ap0
+        ap = ap0 and
+        apa = apa0
         or
         localStep(mid, state0, node, state, false, ap, config, localCc) and
-        ap0 instanceof ApNil
+        ap0 instanceof ApNil and
+        apa = getApprox(ap)
       )
       or
       exists(NodeEx mid |
-        fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, apa, pragma[only_bind_into](config)) and
         jumpStep(mid, node, config) and
         cc = ccNone() and
         summaryCtx = TParameterPositionNone() and
@@ -1352,7 +1382,8 @@ private module MkStage<StageSig PrevStage> {
         cc = ccNone() and
         summaryCtx = TParameterPositionNone() and
         argAp = apNone() and
-        ap = getApNil(node)
+        ap = getApNil(node) and
+        apa = getApprox(ap)
       )
       or
       exists(NodeEx mid, FlowState state0, ApNil nil |
@@ -1361,32 +1392,32 @@ private module MkStage<StageSig PrevStage> {
         cc = ccNone() and
         summaryCtx = TParameterPositionNone() and
         argAp = apNone() and
-        ap = getApNil(node)
+        ap = getApNil(node) and
+        apa = getApprox(ap)
       )
       or
       // store
       exists(TypedContent tc, Ap ap0 |
         fwdFlowStore(_, ap0, tc, node, state, cc, summaryCtx, argAp, config) and
-        ap = apCons(tc, ap0)
+        ap = apCons(tc, ap0) and
+        apa = getApprox(ap)
       )
       or
       // read
       exists(Ap ap0, Content c |
         fwdFlowRead(ap0, c, _, node, state, cc, summaryCtx, argAp, config) and
-        fwdFlowConsCand(ap0, c, ap, config)
+        fwdFlowConsCand(ap0, c, ap, config) and
+        apa = getApprox(ap)
       )
       or
       // flow into a callable
-      exists(ApApprox apa |
-        fwdFlowIn(_, node, state, _, cc, _, _, ap, config) and
-        apa = getApprox(ap) and
-        if PrevStage::parameterMayFlowThrough(node, apa, config)
-        then (
-          summaryCtx = TParameterPositionSome(node.(ParamNodeEx).getPosition()) and
-          argAp = apSome(ap)
-        ) else (
-          summaryCtx = TParameterPositionNone() and argAp = apNone()
-        )
+      fwdFlowIn(_, node, state, _, cc, _, _, ap, apa, config) and
+      if PrevStage::parameterMayFlowThrough(node, apa, config)
+      then (
+        summaryCtx = TParameterPositionSome(node.(ParamNodeEx).getPosition()) and
+        argAp = apSome(ap)
+      ) else (
+        summaryCtx = TParameterPositionNone() and argAp = apNone()
       )
       or
       // flow out of a callable
@@ -1394,8 +1425,8 @@ private module MkStage<StageSig PrevStage> {
         DataFlowCall call, RetNodeEx ret, boolean allowsFieldFlow, CcNoCall innercc,
         DataFlowCallable inner
       |
-        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, config) and
-        flowOutOfCall(call, ret, _, node, allowsFieldFlow, config) and
+        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, apa, config) and
+        flowOutOfCallApa(call, ret, _, node, allowsFieldFlow, apa, config) and
         inner = ret.getEnclosingCallable() and
         cc = getCallContextReturn(inner, call, innercc) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
@@ -1403,7 +1434,7 @@ private module MkStage<StageSig PrevStage> {
       or
       // flow through a callable
       exists(DataFlowCall call, ParameterPosition summaryCtx0, Ap argAp0 |
-        fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, config) and
+        fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, apa, config) and
         fwdFlowIsEntered(call, cc, summaryCtx, argAp, summaryCtx0, argAp0, config)
       )
     }
@@ -1413,9 +1444,9 @@ private module MkStage<StageSig PrevStage> {
       NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc,
       ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
     ) {
-      exists(DataFlowType contentType |
-        fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, config) and
-        PrevStage::storeStepCand(node1, unbindApa(getApprox(ap1)), tc, node2, contentType, config) and
+      exists(DataFlowType contentType, ApApprox apa1 |
+        fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, apa1, config) and
+        PrevStage::storeStepCand(node1, apa1, tc, node2, contentType, config) and
         typecheckStore(ap1, contentType)
       )
     }
@@ -1433,43 +1464,104 @@ private module MkStage<StageSig PrevStage> {
       )
     }
 
+    private class ApNonNil instanceof Ap {
+      pragma[nomagic]
+      ApNonNil() { not this instanceof ApNil }
+
+      string toString() { result = "" }
+    }
+
+    pragma[nomagic]
+    private predicate fwdFlowRead0(
+      NodeEx node1, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      ApNonNil ap, Configuration config
+    ) {
+      fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
+      PrevStage::readStepCand(node1, _, _, config)
+    }
+
     pragma[nomagic]
     private predicate fwdFlowRead(
       Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc,
       ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
     ) {
-      fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
+      fwdFlowRead0(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, c, node2, config) and
       getHeadContent(ap) = c
     }
 
     pragma[nomagic]
     private predicate fwdFlowIn(
-      DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, Cc innercc,
-      ParameterPositionOption summaryCtx, ApOption argAp, Ap ap, Configuration config
+      DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, CcCall innercc,
+      ParameterPositionOption summaryCtx, ApOption argAp, Ap ap, ApApprox apa, Configuration config
     ) {
       exists(ArgNodeEx arg, boolean allowsFieldFlow |
-        fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, config) and
-        flowIntoCall(call, arg, p, allowsFieldFlow, config) and
+        fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, apa, config) and
+        flowIntoCallApa(call, arg, p, allowsFieldFlow, apa, config) and
         innercc = getCallContextCall(call, p.getEnclosingCallable(), outercc) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
+    pragma[nomagic]
+    private predicate fwdFlowRetFromArg(
+      RetNodeEx ret, FlowState state, CcCall ccc, ParameterPosition summaryCtx, ParamNodeEx p,
+      Ap argAp, ApApprox argApa, Ap ap, ApApprox apa, Configuration config
+    ) {
+      exists(DataFlowCallable c, ReturnKindExt kind |
+        fwdFlow(pragma[only_bind_into](ret), state, ccc,
+          TParameterPositionSome(pragma[only_bind_into](summaryCtx)), apSome(argAp), ap, apa, config) and
+        getApprox(argAp) = argApa and
+        c = ret.getEnclosingCallable() and
+        kind = ret.getKind() and
+        p.isParameterOf(c, pragma[only_bind_into](summaryCtx)) and
+        parameterFlowThroughAllowed(p, kind)
+      )
+    }
+
+    pragma[inline]
+    private predicate fwdFlowInMayFlowThrough(
+      DataFlowCall call, Cc cc, CcCall innerCc, ParameterPositionOption summaryCtx, ApOption argAp,
+      ParamNodeEx param, Ap ap, ApApprox apa, Configuration config
+    ) {
+      fwdFlowIn(call, pragma[only_bind_into](param), _, cc, innerCc, summaryCtx, argAp, ap,
+        pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
+      PrevStage::parameterMayFlowThrough(param, apa, config)
+    }
+
+    // dedup before joining with `flowThroughOutOfCall`
+    pragma[nomagic]
+    private predicate fwdFlowInMayFlowThroughProj(
+      DataFlowCall call, CcCall innerCc, ApApprox apa, Configuration config
+    ) {
+      fwdFlowInMayFlowThrough(call, _, innerCc, _, _, _, _, apa, config)
+    }
+
+    /**
+     * Same as `flowThroughOutOfCall`, but restricted to calls that are reached
+     * in the flow covered by `fwdFlow`, where data might flow through the target
+     * callable and back out at `call`.
+     */
+    pragma[nomagic]
+    private predicate fwdFlowThroughOutOfCall(
+      DataFlowCall call, CcCall ccc, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow,
+      ApApprox argApa, ApApprox apa, Configuration config
+    ) {
+      fwdFlowInMayFlowThroughProj(call, ccc, argApa, config) and
+      flowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, argApa, apa, config)
+    }
+
     pragma[nomagic]
     private predicate fwdFlowOutFromArg(
       DataFlowCall call, NodeEx out, FlowState state, ParameterPosition summaryCtx, Ap argAp, Ap ap,
-      Configuration config
+      ApApprox apa, Configuration config
     ) {
-      exists(
-        DataFlowCallable c, RetNodeEx ret, ReturnKindExt kind, boolean allowsFieldFlow, CcCall ccc
-      |
-        fwdFlow(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc),
-          TParameterPositionSome(pragma[only_bind_into](summaryCtx)), apSome(argAp), ap, config) and
-        flowThroughOutOfCall(call, pragma[only_bind_into](c), ccc, ret, kind, out, allowsFieldFlow,
+      exists(RetNodeEx ret, boolean allowsFieldFlow, CcCall ccc, ApApprox argApa |
+        fwdFlowRetFromArg(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc),
+          summaryCtx, _, argAp, pragma[only_bind_into](argApa), ap, pragma[only_bind_into](apa),
           config) and
-        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
-        parameterFlowThroughAllowed(c, pragma[only_bind_into](summaryCtx), kind)
+        fwdFlowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, argApa, apa, config) and
+        (if allowsFieldFlow = false then ap instanceof ApNil else any())
       )
     }
 
@@ -1483,8 +1575,7 @@ private module MkStage<StageSig PrevStage> {
       ParameterPosition pos, Ap ap, Configuration config
     ) {
       exists(ParamNodeEx param |
-        fwdFlowIn(call, param, _, cc, _, summaryCtx, argAp, ap, config) and
-        PrevStage::parameterMayFlowThrough(param, unbindApa(getApprox(ap)), config) and
+        fwdFlowInMayFlowThrough(call, cc, _, summaryCtx, argAp, param, ap, _, config) and
         pos = param.getPosition()
       )
     }
@@ -1505,41 +1596,55 @@ private module MkStage<StageSig PrevStage> {
       fwdFlowConsCand(ap1, c, ap2, config)
     }
 
-    pragma[nomagic]
-    private predicate returnFlowsThrough0(
-      RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, DataFlowCallable c,
-      ParameterPosition ppos, Ap argAp, Ap ap, Configuration config
-    ) {
-      exists(boolean allowsFieldFlow |
-        fwdFlow(ret, state, ccc, TParameterPositionSome(ppos), apSome(argAp), ap, config) and
-        flowThroughOutOfCall(_, c, _, pragma[only_bind_into](ret), kind, _, allowsFieldFlow,
-          pragma[only_bind_into](config)) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
-      )
-    }
-
     pragma[nomagic]
     private predicate returnFlowsThrough(
       RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, ParamNodeEx p, Ap argAp,
       Ap ap, Configuration config
     ) {
-      exists(DataFlowCallable c, ParameterPosition ppos |
-        returnFlowsThrough0(ret, kind, state, ccc, c, ppos, argAp, ap, config) and
-        p.isParameterOf(c, ppos) and
-        parameterFlowThroughAllowed(p, kind)
+      exists(boolean allowsFieldFlow, ApApprox argApa, ApApprox apa |
+        fwdFlowRetFromArg(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc), _, p,
+          argAp, pragma[only_bind_into](argApa), ap, pragma[only_bind_into](apa), config) and
+        kind = ret.getKind() and
+        fwdFlowThroughOutOfCall(_, ccc, ret, _, allowsFieldFlow, argApa, apa, config) and
+        (if allowsFieldFlow = false then ap instanceof ApNil else any())
       )
     }
 
     pragma[nomagic]
     private predicate flowThroughIntoCall(
-      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp,
+      Configuration config
     ) {
-      exists(Ap argAp |
-        flowIntoCall(call, pragma[only_bind_into](arg), pragma[only_bind_into](p), allowsFieldFlow,
+      exists(ApApprox argApa |
+        flowIntoCallApa(call, pragma[only_bind_into](arg), pragma[only_bind_into](p),
+          allowsFieldFlow, argApa, pragma[only_bind_into](config)) and
+        fwdFlow(arg, _, _, _, _, pragma[only_bind_into](argAp), argApa,
           pragma[only_bind_into](config)) and
-        fwdFlow(arg, _, _, _, _, pragma[only_bind_into](argAp), pragma[only_bind_into](config)) and
         returnFlowsThrough(_, _, _, _, p, pragma[only_bind_into](argAp), _,
-          pragma[only_bind_into](config))
+          pragma[only_bind_into](config)) and
+        if allowsFieldFlow = false then argAp instanceof ApNil else any()
+      )
+    }
+
+    pragma[nomagic]
+    private predicate flowIntoCallAp(
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap ap,
+      Configuration config
+    ) {
+      exists(ApApprox apa |
+        flowIntoCallApa(call, arg, p, allowsFieldFlow, apa, config) and
+        fwdFlow(arg, _, _, _, _, ap, apa, config)
+      )
+    }
+
+    pragma[nomagic]
+    private predicate flowOutOfCallAp(
+      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
+      Ap ap, Configuration config
+    ) {
+      exists(ApApprox apa |
+        flowOutOfCallApa(call, ret, kind, out, allowsFieldFlow, apa, config) and
+        fwdFlow(ret, _, _, _, _, ap, apa, config)
       )
     }
 
@@ -1628,7 +1733,7 @@ private module MkStage<StageSig PrevStage> {
       // flow into a callable
       exists(ParamNodeEx p, boolean allowsFieldFlow |
         revFlow(p, state, TReturnCtxNone(), returnAp, ap, config) and
-        flowIntoCall(_, node, p, allowsFieldFlow, config) and
+        flowIntoCallAp(_, node, p, allowsFieldFlow, ap, config) and
         (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
         returnCtx = TReturnCtxNone()
       )
@@ -1682,22 +1787,41 @@ private module MkStage<StageSig PrevStage> {
     ) {
       exists(NodeEx out, boolean allowsFieldFlow |
         revFlow(out, state, returnCtx, returnAp, ap, config) and
-        flowOutOfCall(call, ret, kind, out, allowsFieldFlow, config) and
+        flowOutOfCallAp(call, ret, kind, out, allowsFieldFlow, ap, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
+    /**
+     * Same as `flowThroughIntoCall`, but restricted to calls that are reached
+     * in the flow covered by `revFlow`, where data might flow through the target
+     * callable and back out at `call`.
+     */
+    pragma[nomagic]
+    private predicate revFlowThroughIntoCall(
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp,
+      Configuration config
+    ) {
+      flowThroughIntoCall(call, arg, p, allowsFieldFlow, argAp, config) and
+      revFlowIsReturned(call, _, _, _, _, config)
+    }
+
+    pragma[nomagic]
+    private predicate revFlowParamToReturn(
+      ParamNodeEx p, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap, Configuration config
+    ) {
+      revFlow(p, state, TReturnCtxMaybeFlowThrough(kind), apSome(returnAp), ap, config) and
+      parameterFlowThroughAllowed(p, kind)
+    }
+
     pragma[nomagic]
     private predicate revFlowInToReturn(
       DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap,
       Configuration config
     ) {
       exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(pragma[only_bind_into](p), state,
-          TReturnCtxMaybeFlowThrough(pragma[only_bind_into](kind)), apSome(returnAp), ap, config) and
-        flowThroughIntoCall(call, arg, p, allowsFieldFlow, config) and
-        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
-        parameterFlowThroughAllowed(p, kind)
+        revFlowParamToReturn(p, state, kind, returnAp, ap, config) and
+        revFlowThroughIntoCall(call, arg, p, allowsFieldFlow, ap, config)
       )
     }
 
@@ -1750,6 +1874,11 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     predicate revFlow(NodeEx node, Configuration config) { revFlow(node, _, _, _, _, config) }
 
+    pragma[nomagic]
+    predicate revFlowAp(NodeEx node, Ap ap, Configuration config) {
+      revFlow(node, _, _, _, ap, config)
+    }
+
     // use an alias as a workaround for bad functionality-induced joins
     pragma[nomagic]
     additional predicate revFlowAlias(NodeEx node, Configuration config) {
@@ -1786,9 +1915,9 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate parameterFlowsThroughRev(
-      ParamNodeEx p, Ap ap, ReturnKindExt kind, Configuration config
+      ParamNodeEx p, Ap ap, ReturnKindExt kind, Ap returnAp, Configuration config
     ) {
-      revFlow(p, _, TReturnCtxMaybeFlowThrough(kind), apSome(_), ap, config) and
+      revFlow(p, _, TReturnCtxMaybeFlowThrough(kind), apSome(returnAp), ap, config) and
       parameterFlowThroughAllowed(p, kind)
     }
 
@@ -1796,27 +1925,36 @@ private module MkStage<StageSig PrevStage> {
     predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
       exists(RetNodeEx ret, ReturnKindExt kind |
         returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
-        parameterFlowsThroughRev(p, ap, kind, config)
+        parameterFlowsThroughRev(p, ap, kind, _, config)
       )
     }
 
     pragma[nomagic]
-    predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config) {
-      exists(ParamNodeEx p, Ap ap |
-        returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
-        parameterFlowsThroughRev(p, ap, kind, config)
+    predicate returnMayFlowThrough(
+      RetNodeEx ret, Ap argAp, Ap ap, ReturnKindExt kind, Configuration config
+    ) {
+      exists(ParamNodeEx p |
+        returnFlowsThrough(ret, kind, _, _, p, argAp, ap, config) and
+        parameterFlowsThroughRev(p, argAp, kind, ap, config)
+      )
+    }
+
+    pragma[nomagic]
+    predicate revFlowInToReturnIsReturned(
+      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnCtx returnCtx, ApOption returnAp,
+      Ap ap, Configuration config
+    ) {
+      exists(ReturnKindExt returnKind0, Ap returnAp0 |
+        revFlowInToReturn(call, arg, state, returnKind0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
       )
     }
 
     pragma[nomagic]
     predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
-      exists(
-        ReturnKindExt returnKind0, Ap returnAp0, ArgNodeEx arg, FlowState state,
-        ReturnCtx returnCtx, ApOption returnAp, Ap ap
-      |
+      exists(ArgNodeEx arg, FlowState state, ReturnCtx returnCtx, ApOption returnAp, Ap ap |
         revFlow(arg, state, returnCtx, returnAp, ap, config) and
-        revFlowInToReturn(call, arg, state, returnKind0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
+        revFlowInToReturnIsReturned(call, arg, state, returnCtx, returnAp, ap, config)
       )
     }
 
@@ -2179,16 +2317,16 @@ private module LocalFlowBigStep {
   pragma[nomagic]
   predicate localFlowBigStep(
     NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
-    AccessPathFrontNil apf, Configuration config, LocalCallContext callContext
+    DataFlowType t, Configuration config, LocalCallContext callContext
   ) {
-    localFlowStepPlus(node1, state1, node2, preservesValue, apf.getType(), config, callContext) and
+    localFlowStepPlus(node1, state1, node2, preservesValue, t, config, callContext) and
     localFlowExit(node2, state1, config) and
     state1 = state2
     or
     additionalLocalFlowStepNodeCand2(node1, state1, node2, state2, config) and
     state1 != state2 and
     preservesValue = false and
-    apf = TFrontNil(node2.getDataFlowType()) and
+    t = node2.getDataFlowType() and
     callContext.relevantFor(node1.getEnclosingCallable()) and
     not exists(DataFlowCall call | call = callContext.(LocalCallContextSpecificCall).getCall() |
       isUnreachableInCallCached(node1.asNode(), call) or
@@ -2202,11 +2340,87 @@ private import LocalFlowBigStep
 private module Stage3Param implements MkStage<Stage2>::StageParam {
   private module PrevStage = Stage2;
 
+  class Ap = ApproxAccessPathFront;
+
+  class ApNil = ApproxAccessPathFrontNil;
+
+  PrevStage::Ap getApprox(Ap ap) { result = ap.toBoolNonEmpty() }
+
+  ApNil getApNil(NodeEx node) {
+    PrevStage::revFlow(node, _) and result = TApproxFrontNil(node.getDataFlowType())
+  }
+
+  bindingset[tc, tail]
+  Ap apCons(TypedContent tc, Ap tail) { result.getAHead() = tc and exists(tail) }
+
+  pragma[noinline]
+  Content getHeadContent(Ap ap) { result = ap.getAHead().getContent() }
+
+  class ApOption = ApproxAccessPathFrontOption;
+
+  ApOption apNone() { result = TApproxAccessPathFrontNone() }
+
+  ApOption apSome(Ap ap) { result = TApproxAccessPathFrontSome(ap) }
+
+  import BooleanCallContext
+
+  predicate localStep(
+    NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
+    ApproxAccessPathFrontNil ap, Configuration config, LocalCc lcc
+  ) {
+    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap.getType(), config, _) and
+    exists(lcc)
+  }
+
+  predicate flowOutOfCall = flowOutOfCallNodeCand2/6;
+
+  predicate flowIntoCall = flowIntoCallNodeCand2/5;
+
+  pragma[nomagic]
+  private predicate expectsContentCand(NodeEx node, Ap ap, Configuration config) {
+    exists(Content c |
+      PrevStage::revFlow(node, pragma[only_bind_into](config)) and
+      PrevStage::readStepCand(_, c, _, pragma[only_bind_into](config)) and
+      expectsContentEx(node, c) and
+      c = ap.getAHead().getContent()
+    )
+  }
+
+  pragma[nomagic]
+  private predicate castingNodeEx(NodeEx node) { node.asNode() instanceof CastingNode }
+
+  bindingset[node, state, ap, config]
+  predicate filter(NodeEx node, FlowState state, Ap ap, Configuration config) {
+    exists(state) and
+    exists(config) and
+    (if castingNodeEx(node) then compatibleTypes(node.getDataFlowType(), ap.getType()) else any()) and
+    (
+      notExpectsContent(node)
+      or
+      expectsContentCand(node, ap, config)
+    )
+  }
+
+  bindingset[ap, contentType]
+  predicate typecheckStore(Ap ap, DataFlowType contentType) {
+    // We need to typecheck stores here, since reverse flow through a getter
+    // might have a different type here compared to inside the getter.
+    compatibleTypes(ap.getType(), contentType)
+  }
+}
+
+private module Stage3 implements StageSig {
+  import MkStage<Stage2>::Stage<Stage3Param>
+}
+
+private module Stage4Param implements MkStage<Stage3>::StageParam {
+  private module PrevStage = Stage3;
+
   class Ap = AccessPathFront;
 
   class ApNil = AccessPathFrontNil;
 
-  PrevStage::Ap getApprox(Ap ap) { result = ap.toBoolNonEmpty() }
+  PrevStage::Ap getApprox(Ap ap) { result = ap.toApprox() }
 
   ApNil getApNil(NodeEx node) {
     PrevStage::revFlow(node, _) and result = TFrontNil(node.getDataFlowType())
@@ -2226,16 +2440,42 @@ private module Stage3Param implements MkStage<Stage2>::StageParam {
 
   import BooleanCallContext
 
+  pragma[nomagic]
   predicate localStep(
     NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
     ApNil ap, Configuration config, LocalCc lcc
   ) {
-    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap, config, _) and exists(lcc)
+    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap.getType(), config, _) and
+    PrevStage::revFlow(node1, pragma[only_bind_into](state1), _, pragma[only_bind_into](config)) and
+    PrevStage::revFlowAlias(node2, pragma[only_bind_into](state2), _, pragma[only_bind_into](config)) and
+    exists(lcc)
   }
 
-  predicate flowOutOfCall = flowOutOfCallNodeCand2/6;
+  pragma[nomagic]
+  predicate flowOutOfCall(
+    DataFlowCall call, RetNodeEx node1, ReturnKindExt kind, NodeEx node2, boolean allowsFieldFlow,
+    Configuration config
+  ) {
+    exists(FlowState state |
+      flowOutOfCallNodeCand2(call, node1, kind, node2, allowsFieldFlow, config) and
+      PrevStage::revFlow(node2, pragma[only_bind_into](state), _, pragma[only_bind_into](config)) and
+      PrevStage::revFlowAlias(node1, pragma[only_bind_into](state), _,
+        pragma[only_bind_into](config))
+    )
+  }
 
-  predicate flowIntoCall = flowIntoCallNodeCand2/5;
+  pragma[nomagic]
+  predicate flowIntoCall(
+    DataFlowCall call, ArgNodeEx node1, ParamNodeEx node2, boolean allowsFieldFlow,
+    Configuration config
+  ) {
+    exists(FlowState state |
+      flowIntoCallNodeCand2(call, node1, node2, allowsFieldFlow, config) and
+      PrevStage::revFlow(node2, pragma[only_bind_into](state), _, pragma[only_bind_into](config)) and
+      PrevStage::revFlowAlias(node1, pragma[only_bind_into](state), _,
+        pragma[only_bind_into](config))
+    )
+  }
 
   pragma[nomagic]
   private predicate clearSet(NodeEx node, ContentSet c, Configuration config) {
@@ -2291,8 +2531,8 @@ private module Stage3Param implements MkStage<Stage2>::StageParam {
   }
 }
 
-private module Stage3 implements StageSig {
-  import MkStage<Stage2>::Stage<Stage3Param>
+private module Stage4 implements StageSig {
+  import MkStage<Stage3>::Stage<Stage4Param>
 }
 
 /**
@@ -2303,8 +2543,8 @@ private predicate flowCandSummaryCtx(
   NodeEx node, FlowState state, AccessPathFront argApf, Configuration config
 ) {
   exists(AccessPathFront apf |
-    Stage3::revFlow(node, state, TReturnCtxMaybeFlowThrough(_), _, apf, config) and
-    Stage3::fwdFlow(node, state, any(Stage3::CcCall ccc), _, TAccessPathFrontSome(argApf), apf,
+    Stage4::revFlow(node, state, TReturnCtxMaybeFlowThrough(_), _, apf, config) and
+    Stage4::fwdFlow(node, state, any(Stage4::CcCall ccc), _, TAccessPathFrontSome(argApf), apf,
       config)
   )
 }
@@ -2315,10 +2555,10 @@ private predicate flowCandSummaryCtx(
  */
 private predicate expensiveLen2unfolding(TypedContent tc, Configuration config) {
   exists(int tails, int nodes, int apLimit, int tupleLimit |
-    tails = strictcount(AccessPathFront apf | Stage3::consCand(tc, apf, config)) and
+    tails = strictcount(AccessPathFront apf | Stage4::consCand(tc, apf, config)) and
     nodes =
       strictcount(NodeEx n, FlowState state |
-        Stage3::revFlow(n, state, any(AccessPathFrontHead apf | apf.getHead() = tc), config)
+        Stage4::revFlow(n, state, any(AccessPathFrontHead apf | apf.getHead() = tc), config)
         or
         flowCandSummaryCtx(n, state, any(AccessPathFrontHead apf | apf.getHead() = tc), config)
       ) and
@@ -2332,11 +2572,11 @@ private predicate expensiveLen2unfolding(TypedContent tc, Configuration config)
 private newtype TAccessPathApprox =
   TNil(DataFlowType t) or
   TConsNil(TypedContent tc, DataFlowType t) {
-    Stage3::consCand(tc, TFrontNil(t), _) and
+    Stage4::consCand(tc, TFrontNil(t), _) and
     not expensiveLen2unfolding(tc, _)
   } or
   TConsCons(TypedContent tc1, TypedContent tc2, int len) {
-    Stage3::consCand(tc1, TFrontHead(tc2), _) and
+    Stage4::consCand(tc1, TFrontHead(tc2), _) and
     len in [2 .. accessPathLimit()] and
     not expensiveLen2unfolding(tc1, _)
   } or
@@ -2466,7 +2706,7 @@ private class AccessPathApproxCons1 extends AccessPathApproxCons, TCons1 {
   override AccessPathApprox pop(TypedContent head) {
     head = tc and
     (
-      exists(TypedContent tc2 | Stage3::consCand(tc, TFrontHead(tc2), _) |
+      exists(TypedContent tc2 | Stage4::consCand(tc, TFrontHead(tc2), _) |
         result = TConsCons(tc2, _, len - 1)
         or
         len = 2 and
@@ -2477,7 +2717,7 @@ private class AccessPathApproxCons1 extends AccessPathApproxCons, TCons1 {
       or
       exists(DataFlowType t |
         len = 1 and
-        Stage3::consCand(tc, TFrontNil(t), _) and
+        Stage4::consCand(tc, TFrontNil(t), _) and
         result = TNil(t)
       )
     )
@@ -2502,13 +2742,14 @@ private class AccessPathApproxOption extends TAccessPathApproxOption {
   }
 }
 
-private module Stage4Param implements MkStage<Stage3>::StageParam {
-  private module PrevStage = Stage3;
+private module Stage5Param implements MkStage<Stage4>::StageParam {
+  private module PrevStage = Stage4;
 
   class Ap = AccessPathApprox;
 
   class ApNil = AccessPathApproxNil;
 
+  pragma[nomagic]
   PrevStage::Ap getApprox(Ap ap) { result = ap.getFront() }
 
   ApNil getApNil(NodeEx node) {
@@ -2534,7 +2775,9 @@ private module Stage4Param implements MkStage<Stage3>::StageParam {
     NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
     ApNil ap, Configuration config, LocalCc lcc
   ) {
-    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap.getFront(), config, lcc)
+    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap.getType(), config, lcc) and
+    PrevStage::revFlow(node1, pragma[only_bind_into](state1), _, pragma[only_bind_into](config)) and
+    PrevStage::revFlowAlias(node2, pragma[only_bind_into](state2), _, pragma[only_bind_into](config))
   }
 
   pragma[nomagic]
@@ -2571,7 +2814,7 @@ private module Stage4Param implements MkStage<Stage3>::StageParam {
   predicate typecheckStore(Ap ap, DataFlowType contentType) { any() }
 }
 
-private module Stage4 = MkStage<Stage3>::Stage<Stage4Param>;
+private module Stage5 = MkStage<Stage4>::Stage<Stage5Param>;
 
 bindingset[conf, result]
 private Configuration unbindConf(Configuration conf) {
@@ -2585,8 +2828,8 @@ private predicate nodeMayUseSummary0(
 ) {
   exists(AccessPathApprox apa0 |
     c = n.getEnclosingCallable() and
-    Stage4::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
-    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TParameterPositionSome(pos),
+    Stage5::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
+    Stage5::fwdFlow(n, state, any(CallContextCall ccc), TParameterPositionSome(pos),
       TAccessPathApproxSome(apa), apa0, config)
   )
 }
@@ -2596,7 +2839,7 @@ private predicate nodeMayUseSummary(
   NodeEx n, FlowState state, AccessPathApprox apa, Configuration config
 ) {
   exists(DataFlowCallable c, ParameterPosition pos, ParamNodeEx p |
-    Stage4::parameterMayFlowThrough(p, apa, config) and
+    Stage5::parameterMayFlowThrough(p, apa, config) and
     nodeMayUseSummary0(n, c, pos, state, apa, config) and
     p.isParameterOf(c, pos)
   )
@@ -2606,8 +2849,8 @@ private newtype TSummaryCtx =
   TSummaryCtxNone() or
   TSummaryCtxSome(ParamNodeEx p, FlowState state, AccessPath ap) {
     exists(Configuration config |
-      Stage4::parameterMayFlowThrough(p, ap.getApprox(), config) and
-      Stage4::revFlow(p, state, _, config)
+      Stage5::parameterMayFlowThrough(p, ap.getApprox(), config) and
+      Stage5::revFlow(p, state, _, config)
     )
   }
 
@@ -2656,7 +2899,7 @@ private int count1to2unfold(AccessPathApproxCons1 apa, Configuration config) {
     len = apa.len() and
     result =
       strictcount(AccessPathFront apf |
-        Stage4::consCand(tc, any(AccessPathApprox ap | ap.getFront() = apf and ap.len() = len - 1),
+        Stage5::consCand(tc, any(AccessPathApprox ap | ap.getFront() = apf and ap.len() = len - 1),
           config)
       )
   )
@@ -2665,7 +2908,7 @@ private int count1to2unfold(AccessPathApproxCons1 apa, Configuration config) {
 private int countNodesUsingAccessPath(AccessPathApprox apa, Configuration config) {
   result =
     strictcount(NodeEx n, FlowState state |
-      Stage4::revFlow(n, state, apa, config) or nodeMayUseSummary(n, state, apa, config)
+      Stage5::revFlow(n, state, apa, config) or nodeMayUseSummary(n, state, apa, config)
     )
 }
 
@@ -2686,7 +2929,7 @@ private predicate expensiveLen1to2unfolding(AccessPathApproxCons1 apa, Configura
 private AccessPathApprox getATail(AccessPathApprox apa, Configuration config) {
   exists(TypedContent head |
     apa.pop(head) = result and
-    Stage4::consCand(head, result, config)
+    Stage5::consCand(head, result, config)
   )
 }
 
@@ -2768,7 +3011,7 @@ private newtype TPathNode =
     NodeEx node, FlowState state, CallContext cc, SummaryCtx sc, AccessPath ap, Configuration config
   ) {
     // A PathNode is introduced by a source ...
-    Stage4::revFlow(node, state, config) and
+    Stage5::revFlow(node, state, config) and
     sourceNode(node, state, config) and
     (
       if hasSourceCallCtx(config)
@@ -2782,7 +3025,7 @@ private newtype TPathNode =
     exists(PathNodeMid mid |
       pathStep(mid, node, state, cc, sc, ap) and
       pragma[only_bind_into](config) = mid.getConfiguration() and
-      Stage4::revFlow(node, state, ap.getApprox(), pragma[only_bind_into](config))
+      Stage5::revFlow(node, state, ap.getApprox(), pragma[only_bind_into](config))
     )
   } or
   TPathNodeSink(NodeEx node, FlowState state, Configuration config) {
@@ -2924,7 +3167,7 @@ private class AccessPathCons2 extends AccessPath, TAccessPathCons2 {
   override TypedContent getHead() { result = head1 }
 
   override AccessPath getTail() {
-    Stage4::consCand(head1, result.getApprox(), _) and
+    Stage5::consCand(head1, result.getApprox(), _) and
     result.getHead() = head2 and
     result.length() = len - 1
   }
@@ -2955,7 +3198,7 @@ private class AccessPathCons1 extends AccessPath, TAccessPathCons1 {
   override TypedContent getHead() { result = head }
 
   override AccessPath getTail() {
-    Stage4::consCand(head, result.getApprox(), _) and result.length() = len - 1
+    Stage5::consCand(head, result.getApprox(), _) and result.length() = len - 1
   }
 
   override AccessPathFrontHead getFront() { result = TFrontHead(head) }
@@ -3347,7 +3590,8 @@ private predicate pathStep(
     AccessPath ap0, NodeEx midnode, FlowState state0, Configuration conf, LocalCallContext localCC
   |
     pathNode(mid, midnode, state0, cc, sc, ap0, conf, localCC) and
-    localFlowBigStep(midnode, state0, node, state, false, ap.getFront(), conf, localCC) and
+    localFlowBigStep(midnode, state0, node, state, false, ap.(AccessPathNil).getType(), conf,
+      localCC) and
     ap0 instanceof AccessPathNil
   )
   or
@@ -3389,7 +3633,7 @@ private predicate pathReadStep(
 ) {
   ap0 = mid.getAp() and
   tc = ap0.getHead() and
-  Stage4::readStepCand(mid.getNodeEx(), tc.getContent(), node, mid.getConfiguration()) and
+  Stage5::readStepCand(mid.getNodeEx(), tc.getContent(), node, mid.getConfiguration()) and
   state = mid.getState() and
   cc = mid.getCallContext()
 }
@@ -3399,7 +3643,7 @@ private predicate pathStoreStep(
   PathNodeMid mid, NodeEx node, FlowState state, AccessPath ap0, TypedContent tc, CallContext cc
 ) {
   ap0 = mid.getAp() and
-  Stage4::storeStepCand(mid.getNodeEx(), _, tc, node, _, mid.getConfiguration()) and
+  Stage5::storeStepCand(mid.getNodeEx(), _, tc, node, _, mid.getConfiguration()) and
   state = mid.getState() and
   cc = mid.getCallContext()
 }
@@ -3436,7 +3680,7 @@ private NodeEx getAnOutNodeFlow(
   ReturnKindExt kind, DataFlowCall call, AccessPathApprox apa, Configuration config
 ) {
   result.asNode() = kind.getAnOutNode(call) and
-  Stage4::revFlow(result, _, apa, config)
+  Stage5::revFlow(result, _, apa, config)
 }
 
 /**
@@ -3472,7 +3716,7 @@ private predicate parameterCand(
   DataFlowCallable callable, ParameterPosition pos, AccessPathApprox apa, Configuration config
 ) {
   exists(ParamNodeEx p |
-    Stage4::revFlow(p, _, apa, config) and
+    Stage5::revFlow(p, _, apa, config) and
     p.isParameterOf(callable, pos)
   )
 }
@@ -3751,9 +3995,17 @@ predicate stageStats(
   n = 45 and
   Stage4::stats(false, nodes, fields, conscand, states, tuples, config)
   or
-  stage = "5 Fwd" and n = 50 and finalStats(true, nodes, fields, conscand, states, tuples)
+  stage = "5 Fwd" and
+  n = 50 and
+  Stage5::stats(true, nodes, fields, conscand, states, tuples, config)
   or
-  stage = "5 Rev" and n = 55 and finalStats(false, nodes, fields, conscand, states, tuples)
+  stage = "5 Rev" and
+  n = 55 and
+  Stage5::stats(false, nodes, fields, conscand, states, tuples, config)
+  or
+  stage = "6 Fwd" and n = 60 and finalStats(true, nodes, fields, conscand, states, tuples)
+  or
+  stage = "6 Rev" and n = 65 and finalStats(false, nodes, fields, conscand, states, tuples)
 }
 
 private module FlowExploration {
diff --git a/go/ql/lib/semmle/go/dataflow/internal/DataFlowImpl2.qll b/go/ql/lib/semmle/go/dataflow/internal/DataFlowImpl2.qll
index ccde916a3c2..6741ccc2f06 100644
--- a/go/ql/lib/semmle/go/dataflow/internal/DataFlowImpl2.qll
+++ b/go/ql/lib/semmle/go/dataflow/internal/DataFlowImpl2.qll
@@ -621,23 +621,6 @@ private predicate parameterFlowThroughAllowed(ParamNodeEx p, ReturnKindExt kind)
   )
 }
 
-/**
- * Holds if flow from a parameter at position `pos` inside `c` to a return node of
- * kind `kind` is allowed.
- *
- * We don't expect a parameter to return stored in itself, unless
- * explicitly allowed
- */
-bindingset[c, pos, kind]
-private predicate parameterFlowThroughAllowed(
-  DataFlowCallable c, ParameterPosition pos, ReturnKindExt kind
-) {
-  exists(ParamNodeEx p |
-    p.isParameterOf(c, pos) and
-    parameterFlowThroughAllowed(p, kind)
-  )
-}
-
 private module Stage1 implements StageSig {
   class Ap = Unit;
 
@@ -980,6 +963,12 @@ private module Stage1 implements StageSig {
   pragma[nomagic]
   predicate revFlow(NodeEx node, Configuration config) { revFlow(node, _, config) }
 
+  pragma[nomagic]
+  predicate revFlowAp(NodeEx node, Ap ap, Configuration config) {
+    revFlow(node, config) and
+    exists(ap)
+  }
+
   bindingset[node, state, config]
   predicate revFlow(NodeEx node, FlowState state, Ap ap, Configuration config) {
     revFlow(node, _, pragma[only_bind_into](config)) and
@@ -1022,9 +1011,13 @@ private module Stage1 implements StageSig {
   }
 
   pragma[nomagic]
-  predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config) {
+  predicate returnMayFlowThrough(
+    RetNodeEx ret, Ap argAp, Ap ap, ReturnKindExt kind, Configuration config
+  ) {
     throughFlowNodeCand(ret, config) and
-    kind = ret.getKind()
+    kind = ret.getKind() and
+    exists(argAp) and
+    exists(ap)
   }
 
   pragma[nomagic]
@@ -1189,6 +1182,8 @@ private signature module StageSig {
 
   predicate revFlow(NodeEx node, Configuration config);
 
+  predicate revFlowAp(NodeEx node, Ap ap, Configuration config);
+
   bindingset[node, state, config]
   predicate revFlow(NodeEx node, FlowState state, Ap ap, Configuration config);
 
@@ -1196,7 +1191,9 @@ private signature module StageSig {
 
   predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config);
 
-  predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config);
+  predicate returnMayFlowThrough(
+    RetNodeEx ret, Ap argAp, Ap ap, ReturnKindExt kind, Configuration config
+  );
 
   predicate storeStepCand(
     NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, DataFlowType contentType,
@@ -1281,21 +1278,43 @@ private module MkStage<StageSig PrevStage> {
     import Param
 
     /* Begin: Stage logic. */
-    bindingset[result, apa]
-    private ApApprox unbindApa(ApApprox apa) {
-      pragma[only_bind_out](apa) = pragma[only_bind_out](result)
+    // use an alias as a workaround for bad functionality-induced joins
+    pragma[nomagic]
+    private predicate revFlowApAlias(NodeEx node, ApApprox apa, Configuration config) {
+      PrevStage::revFlowAp(node, apa, config)
+    }
+
+    pragma[nomagic]
+    private predicate flowIntoCallApa(
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, ApApprox apa,
+      Configuration config
+    ) {
+      flowIntoCall(call, arg, p, allowsFieldFlow, config) and
+      PrevStage::revFlowAp(p, pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
+      revFlowApAlias(arg, pragma[only_bind_into](apa), pragma[only_bind_into](config))
+    }
+
+    pragma[nomagic]
+    private predicate flowOutOfCallApa(
+      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
+      ApApprox apa, Configuration config
+    ) {
+      flowOutOfCall(call, ret, kind, out, allowsFieldFlow, config) and
+      PrevStage::revFlowAp(out, pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
+      revFlowApAlias(ret, pragma[only_bind_into](apa), pragma[only_bind_into](config))
     }
 
     pragma[nomagic]
     private predicate flowThroughOutOfCall(
-      DataFlowCall call, DataFlowCallable c, CcCall ccc, RetNodeEx ret, ReturnKindExt kind,
-      NodeEx out, boolean allowsFieldFlow, Configuration config
+      DataFlowCall call, CcCall ccc, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow,
+      ApApprox argApa, ApApprox apa, Configuration config
     ) {
-      flowOutOfCall(call, ret, kind, out, allowsFieldFlow, pragma[only_bind_into](config)) and
-      PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
-      PrevStage::returnMayFlowThrough(ret, kind, pragma[only_bind_into](config)) and
-      matchesCall(ccc, call) and
-      c = ret.getEnclosingCallable()
+      exists(ReturnKindExt kind |
+        flowOutOfCallApa(call, ret, kind, out, allowsFieldFlow, apa, pragma[only_bind_into](config)) and
+        PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
+        PrevStage::returnMayFlowThrough(ret, argApa, apa, kind, pragma[only_bind_into](config)) and
+        matchesCall(ccc, call)
+      )
     }
 
     /**
@@ -1307,39 +1326,50 @@ private module MkStage<StageSig PrevStage> {
      * corresponding parameter position and access path of that argument, respectively.
      */
     pragma[nomagic]
+    additional predicate fwdFlow(
+      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      Ap ap, ApApprox apa, Configuration config
+    ) {
+      fwdFlow0(node, state, cc, summaryCtx, argAp, ap, apa, config) and
+      PrevStage::revFlow(node, state, apa, config) and
+      filter(node, state, ap, config)
+    }
+
+    pragma[inline]
     additional predicate fwdFlow(
       NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
       Ap ap, Configuration config
     ) {
-      fwdFlow0(node, state, cc, summaryCtx, argAp, ap, config) and
-      PrevStage::revFlow(node, state, unbindApa(getApprox(ap)), config) and
-      filter(node, state, ap, config)
+      fwdFlow(node, state, cc, summaryCtx, argAp, ap, _, config)
     }
 
     pragma[nomagic]
     private predicate fwdFlow0(
       NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      Ap ap, Configuration config
+      Ap ap, ApApprox apa, Configuration config
     ) {
       sourceNode(node, state, config) and
       (if hasSourceCallCtx(config) then cc = ccSomeCall() else cc = ccNone()) and
       argAp = apNone() and
       summaryCtx = TParameterPositionNone() and
-      ap = getApNil(node)
+      ap = getApNil(node) and
+      apa = getApprox(ap)
       or
-      exists(NodeEx mid, FlowState state0, Ap ap0, LocalCc localCc |
-        fwdFlow(mid, state0, cc, summaryCtx, argAp, ap0, config) and
+      exists(NodeEx mid, FlowState state0, Ap ap0, ApApprox apa0, LocalCc localCc |
+        fwdFlow(mid, state0, cc, summaryCtx, argAp, ap0, apa0, config) and
         localCc = getLocalCc(mid, cc)
       |
         localStep(mid, state0, node, state, true, _, config, localCc) and
-        ap = ap0
+        ap = ap0 and
+        apa = apa0
         or
         localStep(mid, state0, node, state, false, ap, config, localCc) and
-        ap0 instanceof ApNil
+        ap0 instanceof ApNil and
+        apa = getApprox(ap)
       )
       or
       exists(NodeEx mid |
-        fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, apa, pragma[only_bind_into](config)) and
         jumpStep(mid, node, config) and
         cc = ccNone() and
         summaryCtx = TParameterPositionNone() and
@@ -1352,7 +1382,8 @@ private module MkStage<StageSig PrevStage> {
         cc = ccNone() and
         summaryCtx = TParameterPositionNone() and
         argAp = apNone() and
-        ap = getApNil(node)
+        ap = getApNil(node) and
+        apa = getApprox(ap)
       )
       or
       exists(NodeEx mid, FlowState state0, ApNil nil |
@@ -1361,32 +1392,32 @@ private module MkStage<StageSig PrevStage> {
         cc = ccNone() and
         summaryCtx = TParameterPositionNone() and
         argAp = apNone() and
-        ap = getApNil(node)
+        ap = getApNil(node) and
+        apa = getApprox(ap)
       )
       or
       // store
       exists(TypedContent tc, Ap ap0 |
         fwdFlowStore(_, ap0, tc, node, state, cc, summaryCtx, argAp, config) and
-        ap = apCons(tc, ap0)
+        ap = apCons(tc, ap0) and
+        apa = getApprox(ap)
       )
       or
       // read
       exists(Ap ap0, Content c |
         fwdFlowRead(ap0, c, _, node, state, cc, summaryCtx, argAp, config) and
-        fwdFlowConsCand(ap0, c, ap, config)
+        fwdFlowConsCand(ap0, c, ap, config) and
+        apa = getApprox(ap)
       )
       or
       // flow into a callable
-      exists(ApApprox apa |
-        fwdFlowIn(_, node, state, _, cc, _, _, ap, config) and
-        apa = getApprox(ap) and
-        if PrevStage::parameterMayFlowThrough(node, apa, config)
-        then (
-          summaryCtx = TParameterPositionSome(node.(ParamNodeEx).getPosition()) and
-          argAp = apSome(ap)
-        ) else (
-          summaryCtx = TParameterPositionNone() and argAp = apNone()
-        )
+      fwdFlowIn(_, node, state, _, cc, _, _, ap, apa, config) and
+      if PrevStage::parameterMayFlowThrough(node, apa, config)
+      then (
+        summaryCtx = TParameterPositionSome(node.(ParamNodeEx).getPosition()) and
+        argAp = apSome(ap)
+      ) else (
+        summaryCtx = TParameterPositionNone() and argAp = apNone()
       )
       or
       // flow out of a callable
@@ -1394,8 +1425,8 @@ private module MkStage<StageSig PrevStage> {
         DataFlowCall call, RetNodeEx ret, boolean allowsFieldFlow, CcNoCall innercc,
         DataFlowCallable inner
       |
-        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, config) and
-        flowOutOfCall(call, ret, _, node, allowsFieldFlow, config) and
+        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, apa, config) and
+        flowOutOfCallApa(call, ret, _, node, allowsFieldFlow, apa, config) and
         inner = ret.getEnclosingCallable() and
         cc = getCallContextReturn(inner, call, innercc) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
@@ -1403,7 +1434,7 @@ private module MkStage<StageSig PrevStage> {
       or
       // flow through a callable
       exists(DataFlowCall call, ParameterPosition summaryCtx0, Ap argAp0 |
-        fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, config) and
+        fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, apa, config) and
         fwdFlowIsEntered(call, cc, summaryCtx, argAp, summaryCtx0, argAp0, config)
       )
     }
@@ -1413,9 +1444,9 @@ private module MkStage<StageSig PrevStage> {
       NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc,
       ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
     ) {
-      exists(DataFlowType contentType |
-        fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, config) and
-        PrevStage::storeStepCand(node1, unbindApa(getApprox(ap1)), tc, node2, contentType, config) and
+      exists(DataFlowType contentType, ApApprox apa1 |
+        fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, apa1, config) and
+        PrevStage::storeStepCand(node1, apa1, tc, node2, contentType, config) and
         typecheckStore(ap1, contentType)
       )
     }
@@ -1433,43 +1464,104 @@ private module MkStage<StageSig PrevStage> {
       )
     }
 
+    private class ApNonNil instanceof Ap {
+      pragma[nomagic]
+      ApNonNil() { not this instanceof ApNil }
+
+      string toString() { result = "" }
+    }
+
+    pragma[nomagic]
+    private predicate fwdFlowRead0(
+      NodeEx node1, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      ApNonNil ap, Configuration config
+    ) {
+      fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
+      PrevStage::readStepCand(node1, _, _, config)
+    }
+
     pragma[nomagic]
     private predicate fwdFlowRead(
       Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc,
       ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
     ) {
-      fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
+      fwdFlowRead0(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, c, node2, config) and
       getHeadContent(ap) = c
     }
 
     pragma[nomagic]
     private predicate fwdFlowIn(
-      DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, Cc innercc,
-      ParameterPositionOption summaryCtx, ApOption argAp, Ap ap, Configuration config
+      DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, CcCall innercc,
+      ParameterPositionOption summaryCtx, ApOption argAp, Ap ap, ApApprox apa, Configuration config
     ) {
       exists(ArgNodeEx arg, boolean allowsFieldFlow |
-        fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, config) and
-        flowIntoCall(call, arg, p, allowsFieldFlow, config) and
+        fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, apa, config) and
+        flowIntoCallApa(call, arg, p, allowsFieldFlow, apa, config) and
         innercc = getCallContextCall(call, p.getEnclosingCallable(), outercc) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
+    pragma[nomagic]
+    private predicate fwdFlowRetFromArg(
+      RetNodeEx ret, FlowState state, CcCall ccc, ParameterPosition summaryCtx, ParamNodeEx p,
+      Ap argAp, ApApprox argApa, Ap ap, ApApprox apa, Configuration config
+    ) {
+      exists(DataFlowCallable c, ReturnKindExt kind |
+        fwdFlow(pragma[only_bind_into](ret), state, ccc,
+          TParameterPositionSome(pragma[only_bind_into](summaryCtx)), apSome(argAp), ap, apa, config) and
+        getApprox(argAp) = argApa and
+        c = ret.getEnclosingCallable() and
+        kind = ret.getKind() and
+        p.isParameterOf(c, pragma[only_bind_into](summaryCtx)) and
+        parameterFlowThroughAllowed(p, kind)
+      )
+    }
+
+    pragma[inline]
+    private predicate fwdFlowInMayFlowThrough(
+      DataFlowCall call, Cc cc, CcCall innerCc, ParameterPositionOption summaryCtx, ApOption argAp,
+      ParamNodeEx param, Ap ap, ApApprox apa, Configuration config
+    ) {
+      fwdFlowIn(call, pragma[only_bind_into](param), _, cc, innerCc, summaryCtx, argAp, ap,
+        pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
+      PrevStage::parameterMayFlowThrough(param, apa, config)
+    }
+
+    // dedup before joining with `flowThroughOutOfCall`
+    pragma[nomagic]
+    private predicate fwdFlowInMayFlowThroughProj(
+      DataFlowCall call, CcCall innerCc, ApApprox apa, Configuration config
+    ) {
+      fwdFlowInMayFlowThrough(call, _, innerCc, _, _, _, _, apa, config)
+    }
+
+    /**
+     * Same as `flowThroughOutOfCall`, but restricted to calls that are reached
+     * in the flow covered by `fwdFlow`, where data might flow through the target
+     * callable and back out at `call`.
+     */
+    pragma[nomagic]
+    private predicate fwdFlowThroughOutOfCall(
+      DataFlowCall call, CcCall ccc, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow,
+      ApApprox argApa, ApApprox apa, Configuration config
+    ) {
+      fwdFlowInMayFlowThroughProj(call, ccc, argApa, config) and
+      flowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, argApa, apa, config)
+    }
+
     pragma[nomagic]
     private predicate fwdFlowOutFromArg(
       DataFlowCall call, NodeEx out, FlowState state, ParameterPosition summaryCtx, Ap argAp, Ap ap,
-      Configuration config
+      ApApprox apa, Configuration config
     ) {
-      exists(
-        DataFlowCallable c, RetNodeEx ret, ReturnKindExt kind, boolean allowsFieldFlow, CcCall ccc
-      |
-        fwdFlow(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc),
-          TParameterPositionSome(pragma[only_bind_into](summaryCtx)), apSome(argAp), ap, config) and
-        flowThroughOutOfCall(call, pragma[only_bind_into](c), ccc, ret, kind, out, allowsFieldFlow,
+      exists(RetNodeEx ret, boolean allowsFieldFlow, CcCall ccc, ApApprox argApa |
+        fwdFlowRetFromArg(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc),
+          summaryCtx, _, argAp, pragma[only_bind_into](argApa), ap, pragma[only_bind_into](apa),
           config) and
-        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
-        parameterFlowThroughAllowed(c, pragma[only_bind_into](summaryCtx), kind)
+        fwdFlowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, argApa, apa, config) and
+        (if allowsFieldFlow = false then ap instanceof ApNil else any())
       )
     }
 
@@ -1483,8 +1575,7 @@ private module MkStage<StageSig PrevStage> {
       ParameterPosition pos, Ap ap, Configuration config
     ) {
       exists(ParamNodeEx param |
-        fwdFlowIn(call, param, _, cc, _, summaryCtx, argAp, ap, config) and
-        PrevStage::parameterMayFlowThrough(param, unbindApa(getApprox(ap)), config) and
+        fwdFlowInMayFlowThrough(call, cc, _, summaryCtx, argAp, param, ap, _, config) and
         pos = param.getPosition()
       )
     }
@@ -1505,41 +1596,55 @@ private module MkStage<StageSig PrevStage> {
       fwdFlowConsCand(ap1, c, ap2, config)
     }
 
-    pragma[nomagic]
-    private predicate returnFlowsThrough0(
-      RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, DataFlowCallable c,
-      ParameterPosition ppos, Ap argAp, Ap ap, Configuration config
-    ) {
-      exists(boolean allowsFieldFlow |
-        fwdFlow(ret, state, ccc, TParameterPositionSome(ppos), apSome(argAp), ap, config) and
-        flowThroughOutOfCall(_, c, _, pragma[only_bind_into](ret), kind, _, allowsFieldFlow,
-          pragma[only_bind_into](config)) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
-      )
-    }
-
     pragma[nomagic]
     private predicate returnFlowsThrough(
       RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, ParamNodeEx p, Ap argAp,
       Ap ap, Configuration config
     ) {
-      exists(DataFlowCallable c, ParameterPosition ppos |
-        returnFlowsThrough0(ret, kind, state, ccc, c, ppos, argAp, ap, config) and
-        p.isParameterOf(c, ppos) and
-        parameterFlowThroughAllowed(p, kind)
+      exists(boolean allowsFieldFlow, ApApprox argApa, ApApprox apa |
+        fwdFlowRetFromArg(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc), _, p,
+          argAp, pragma[only_bind_into](argApa), ap, pragma[only_bind_into](apa), config) and
+        kind = ret.getKind() and
+        fwdFlowThroughOutOfCall(_, ccc, ret, _, allowsFieldFlow, argApa, apa, config) and
+        (if allowsFieldFlow = false then ap instanceof ApNil else any())
       )
     }
 
     pragma[nomagic]
     private predicate flowThroughIntoCall(
-      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp,
+      Configuration config
     ) {
-      exists(Ap argAp |
-        flowIntoCall(call, pragma[only_bind_into](arg), pragma[only_bind_into](p), allowsFieldFlow,
+      exists(ApApprox argApa |
+        flowIntoCallApa(call, pragma[only_bind_into](arg), pragma[only_bind_into](p),
+          allowsFieldFlow, argApa, pragma[only_bind_into](config)) and
+        fwdFlow(arg, _, _, _, _, pragma[only_bind_into](argAp), argApa,
           pragma[only_bind_into](config)) and
-        fwdFlow(arg, _, _, _, _, pragma[only_bind_into](argAp), pragma[only_bind_into](config)) and
         returnFlowsThrough(_, _, _, _, p, pragma[only_bind_into](argAp), _,
-          pragma[only_bind_into](config))
+          pragma[only_bind_into](config)) and
+        if allowsFieldFlow = false then argAp instanceof ApNil else any()
+      )
+    }
+
+    pragma[nomagic]
+    private predicate flowIntoCallAp(
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap ap,
+      Configuration config
+    ) {
+      exists(ApApprox apa |
+        flowIntoCallApa(call, arg, p, allowsFieldFlow, apa, config) and
+        fwdFlow(arg, _, _, _, _, ap, apa, config)
+      )
+    }
+
+    pragma[nomagic]
+    private predicate flowOutOfCallAp(
+      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
+      Ap ap, Configuration config
+    ) {
+      exists(ApApprox apa |
+        flowOutOfCallApa(call, ret, kind, out, allowsFieldFlow, apa, config) and
+        fwdFlow(ret, _, _, _, _, ap, apa, config)
       )
     }
 
@@ -1628,7 +1733,7 @@ private module MkStage<StageSig PrevStage> {
       // flow into a callable
       exists(ParamNodeEx p, boolean allowsFieldFlow |
         revFlow(p, state, TReturnCtxNone(), returnAp, ap, config) and
-        flowIntoCall(_, node, p, allowsFieldFlow, config) and
+        flowIntoCallAp(_, node, p, allowsFieldFlow, ap, config) and
         (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
         returnCtx = TReturnCtxNone()
       )
@@ -1682,22 +1787,41 @@ private module MkStage<StageSig PrevStage> {
     ) {
       exists(NodeEx out, boolean allowsFieldFlow |
         revFlow(out, state, returnCtx, returnAp, ap, config) and
-        flowOutOfCall(call, ret, kind, out, allowsFieldFlow, config) and
+        flowOutOfCallAp(call, ret, kind, out, allowsFieldFlow, ap, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
+    /**
+     * Same as `flowThroughIntoCall`, but restricted to calls that are reached
+     * in the flow covered by `revFlow`, where data might flow through the target
+     * callable and back out at `call`.
+     */
+    pragma[nomagic]
+    private predicate revFlowThroughIntoCall(
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp,
+      Configuration config
+    ) {
+      flowThroughIntoCall(call, arg, p, allowsFieldFlow, argAp, config) and
+      revFlowIsReturned(call, _, _, _, _, config)
+    }
+
+    pragma[nomagic]
+    private predicate revFlowParamToReturn(
+      ParamNodeEx p, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap, Configuration config
+    ) {
+      revFlow(p, state, TReturnCtxMaybeFlowThrough(kind), apSome(returnAp), ap, config) and
+      parameterFlowThroughAllowed(p, kind)
+    }
+
     pragma[nomagic]
     private predicate revFlowInToReturn(
       DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap,
       Configuration config
     ) {
       exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(pragma[only_bind_into](p), state,
-          TReturnCtxMaybeFlowThrough(pragma[only_bind_into](kind)), apSome(returnAp), ap, config) and
-        flowThroughIntoCall(call, arg, p, allowsFieldFlow, config) and
-        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
-        parameterFlowThroughAllowed(p, kind)
+        revFlowParamToReturn(p, state, kind, returnAp, ap, config) and
+        revFlowThroughIntoCall(call, arg, p, allowsFieldFlow, ap, config)
       )
     }
 
@@ -1750,6 +1874,11 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     predicate revFlow(NodeEx node, Configuration config) { revFlow(node, _, _, _, _, config) }
 
+    pragma[nomagic]
+    predicate revFlowAp(NodeEx node, Ap ap, Configuration config) {
+      revFlow(node, _, _, _, ap, config)
+    }
+
     // use an alias as a workaround for bad functionality-induced joins
     pragma[nomagic]
     additional predicate revFlowAlias(NodeEx node, Configuration config) {
@@ -1786,9 +1915,9 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate parameterFlowsThroughRev(
-      ParamNodeEx p, Ap ap, ReturnKindExt kind, Configuration config
+      ParamNodeEx p, Ap ap, ReturnKindExt kind, Ap returnAp, Configuration config
     ) {
-      revFlow(p, _, TReturnCtxMaybeFlowThrough(kind), apSome(_), ap, config) and
+      revFlow(p, _, TReturnCtxMaybeFlowThrough(kind), apSome(returnAp), ap, config) and
       parameterFlowThroughAllowed(p, kind)
     }
 
@@ -1796,27 +1925,36 @@ private module MkStage<StageSig PrevStage> {
     predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
       exists(RetNodeEx ret, ReturnKindExt kind |
         returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
-        parameterFlowsThroughRev(p, ap, kind, config)
+        parameterFlowsThroughRev(p, ap, kind, _, config)
       )
     }
 
     pragma[nomagic]
-    predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config) {
-      exists(ParamNodeEx p, Ap ap |
-        returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
-        parameterFlowsThroughRev(p, ap, kind, config)
+    predicate returnMayFlowThrough(
+      RetNodeEx ret, Ap argAp, Ap ap, ReturnKindExt kind, Configuration config
+    ) {
+      exists(ParamNodeEx p |
+        returnFlowsThrough(ret, kind, _, _, p, argAp, ap, config) and
+        parameterFlowsThroughRev(p, argAp, kind, ap, config)
+      )
+    }
+
+    pragma[nomagic]
+    predicate revFlowInToReturnIsReturned(
+      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnCtx returnCtx, ApOption returnAp,
+      Ap ap, Configuration config
+    ) {
+      exists(ReturnKindExt returnKind0, Ap returnAp0 |
+        revFlowInToReturn(call, arg, state, returnKind0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
       )
     }
 
     pragma[nomagic]
     predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
-      exists(
-        ReturnKindExt returnKind0, Ap returnAp0, ArgNodeEx arg, FlowState state,
-        ReturnCtx returnCtx, ApOption returnAp, Ap ap
-      |
+      exists(ArgNodeEx arg, FlowState state, ReturnCtx returnCtx, ApOption returnAp, Ap ap |
         revFlow(arg, state, returnCtx, returnAp, ap, config) and
-        revFlowInToReturn(call, arg, state, returnKind0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
+        revFlowInToReturnIsReturned(call, arg, state, returnCtx, returnAp, ap, config)
       )
     }
 
@@ -2179,16 +2317,16 @@ private module LocalFlowBigStep {
   pragma[nomagic]
   predicate localFlowBigStep(
     NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
-    AccessPathFrontNil apf, Configuration config, LocalCallContext callContext
+    DataFlowType t, Configuration config, LocalCallContext callContext
   ) {
-    localFlowStepPlus(node1, state1, node2, preservesValue, apf.getType(), config, callContext) and
+    localFlowStepPlus(node1, state1, node2, preservesValue, t, config, callContext) and
     localFlowExit(node2, state1, config) and
     state1 = state2
     or
     additionalLocalFlowStepNodeCand2(node1, state1, node2, state2, config) and
     state1 != state2 and
     preservesValue = false and
-    apf = TFrontNil(node2.getDataFlowType()) and
+    t = node2.getDataFlowType() and
     callContext.relevantFor(node1.getEnclosingCallable()) and
     not exists(DataFlowCall call | call = callContext.(LocalCallContextSpecificCall).getCall() |
       isUnreachableInCallCached(node1.asNode(), call) or
@@ -2202,11 +2340,87 @@ private import LocalFlowBigStep
 private module Stage3Param implements MkStage<Stage2>::StageParam {
   private module PrevStage = Stage2;
 
+  class Ap = ApproxAccessPathFront;
+
+  class ApNil = ApproxAccessPathFrontNil;
+
+  PrevStage::Ap getApprox(Ap ap) { result = ap.toBoolNonEmpty() }
+
+  ApNil getApNil(NodeEx node) {
+    PrevStage::revFlow(node, _) and result = TApproxFrontNil(node.getDataFlowType())
+  }
+
+  bindingset[tc, tail]
+  Ap apCons(TypedContent tc, Ap tail) { result.getAHead() = tc and exists(tail) }
+
+  pragma[noinline]
+  Content getHeadContent(Ap ap) { result = ap.getAHead().getContent() }
+
+  class ApOption = ApproxAccessPathFrontOption;
+
+  ApOption apNone() { result = TApproxAccessPathFrontNone() }
+
+  ApOption apSome(Ap ap) { result = TApproxAccessPathFrontSome(ap) }
+
+  import BooleanCallContext
+
+  predicate localStep(
+    NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
+    ApproxAccessPathFrontNil ap, Configuration config, LocalCc lcc
+  ) {
+    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap.getType(), config, _) and
+    exists(lcc)
+  }
+
+  predicate flowOutOfCall = flowOutOfCallNodeCand2/6;
+
+  predicate flowIntoCall = flowIntoCallNodeCand2/5;
+
+  pragma[nomagic]
+  private predicate expectsContentCand(NodeEx node, Ap ap, Configuration config) {
+    exists(Content c |
+      PrevStage::revFlow(node, pragma[only_bind_into](config)) and
+      PrevStage::readStepCand(_, c, _, pragma[only_bind_into](config)) and
+      expectsContentEx(node, c) and
+      c = ap.getAHead().getContent()
+    )
+  }
+
+  pragma[nomagic]
+  private predicate castingNodeEx(NodeEx node) { node.asNode() instanceof CastingNode }
+
+  bindingset[node, state, ap, config]
+  predicate filter(NodeEx node, FlowState state, Ap ap, Configuration config) {
+    exists(state) and
+    exists(config) and
+    (if castingNodeEx(node) then compatibleTypes(node.getDataFlowType(), ap.getType()) else any()) and
+    (
+      notExpectsContent(node)
+      or
+      expectsContentCand(node, ap, config)
+    )
+  }
+
+  bindingset[ap, contentType]
+  predicate typecheckStore(Ap ap, DataFlowType contentType) {
+    // We need to typecheck stores here, since reverse flow through a getter
+    // might have a different type here compared to inside the getter.
+    compatibleTypes(ap.getType(), contentType)
+  }
+}
+
+private module Stage3 implements StageSig {
+  import MkStage<Stage2>::Stage<Stage3Param>
+}
+
+private module Stage4Param implements MkStage<Stage3>::StageParam {
+  private module PrevStage = Stage3;
+
   class Ap = AccessPathFront;
 
   class ApNil = AccessPathFrontNil;
 
-  PrevStage::Ap getApprox(Ap ap) { result = ap.toBoolNonEmpty() }
+  PrevStage::Ap getApprox(Ap ap) { result = ap.toApprox() }
 
   ApNil getApNil(NodeEx node) {
     PrevStage::revFlow(node, _) and result = TFrontNil(node.getDataFlowType())
@@ -2226,16 +2440,42 @@ private module Stage3Param implements MkStage<Stage2>::StageParam {
 
   import BooleanCallContext
 
+  pragma[nomagic]
   predicate localStep(
     NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
     ApNil ap, Configuration config, LocalCc lcc
   ) {
-    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap, config, _) and exists(lcc)
+    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap.getType(), config, _) and
+    PrevStage::revFlow(node1, pragma[only_bind_into](state1), _, pragma[only_bind_into](config)) and
+    PrevStage::revFlowAlias(node2, pragma[only_bind_into](state2), _, pragma[only_bind_into](config)) and
+    exists(lcc)
   }
 
-  predicate flowOutOfCall = flowOutOfCallNodeCand2/6;
+  pragma[nomagic]
+  predicate flowOutOfCall(
+    DataFlowCall call, RetNodeEx node1, ReturnKindExt kind, NodeEx node2, boolean allowsFieldFlow,
+    Configuration config
+  ) {
+    exists(FlowState state |
+      flowOutOfCallNodeCand2(call, node1, kind, node2, allowsFieldFlow, config) and
+      PrevStage::revFlow(node2, pragma[only_bind_into](state), _, pragma[only_bind_into](config)) and
+      PrevStage::revFlowAlias(node1, pragma[only_bind_into](state), _,
+        pragma[only_bind_into](config))
+    )
+  }
 
-  predicate flowIntoCall = flowIntoCallNodeCand2/5;
+  pragma[nomagic]
+  predicate flowIntoCall(
+    DataFlowCall call, ArgNodeEx node1, ParamNodeEx node2, boolean allowsFieldFlow,
+    Configuration config
+  ) {
+    exists(FlowState state |
+      flowIntoCallNodeCand2(call, node1, node2, allowsFieldFlow, config) and
+      PrevStage::revFlow(node2, pragma[only_bind_into](state), _, pragma[only_bind_into](config)) and
+      PrevStage::revFlowAlias(node1, pragma[only_bind_into](state), _,
+        pragma[only_bind_into](config))
+    )
+  }
 
   pragma[nomagic]
   private predicate clearSet(NodeEx node, ContentSet c, Configuration config) {
@@ -2291,8 +2531,8 @@ private module Stage3Param implements MkStage<Stage2>::StageParam {
   }
 }
 
-private module Stage3 implements StageSig {
-  import MkStage<Stage2>::Stage<Stage3Param>
+private module Stage4 implements StageSig {
+  import MkStage<Stage3>::Stage<Stage4Param>
 }
 
 /**
@@ -2303,8 +2543,8 @@ private predicate flowCandSummaryCtx(
   NodeEx node, FlowState state, AccessPathFront argApf, Configuration config
 ) {
   exists(AccessPathFront apf |
-    Stage3::revFlow(node, state, TReturnCtxMaybeFlowThrough(_), _, apf, config) and
-    Stage3::fwdFlow(node, state, any(Stage3::CcCall ccc), _, TAccessPathFrontSome(argApf), apf,
+    Stage4::revFlow(node, state, TReturnCtxMaybeFlowThrough(_), _, apf, config) and
+    Stage4::fwdFlow(node, state, any(Stage4::CcCall ccc), _, TAccessPathFrontSome(argApf), apf,
       config)
   )
 }
@@ -2315,10 +2555,10 @@ private predicate flowCandSummaryCtx(
  */
 private predicate expensiveLen2unfolding(TypedContent tc, Configuration config) {
   exists(int tails, int nodes, int apLimit, int tupleLimit |
-    tails = strictcount(AccessPathFront apf | Stage3::consCand(tc, apf, config)) and
+    tails = strictcount(AccessPathFront apf | Stage4::consCand(tc, apf, config)) and
     nodes =
       strictcount(NodeEx n, FlowState state |
-        Stage3::revFlow(n, state, any(AccessPathFrontHead apf | apf.getHead() = tc), config)
+        Stage4::revFlow(n, state, any(AccessPathFrontHead apf | apf.getHead() = tc), config)
         or
         flowCandSummaryCtx(n, state, any(AccessPathFrontHead apf | apf.getHead() = tc), config)
       ) and
@@ -2332,11 +2572,11 @@ private predicate expensiveLen2unfolding(TypedContent tc, Configuration config)
 private newtype TAccessPathApprox =
   TNil(DataFlowType t) or
   TConsNil(TypedContent tc, DataFlowType t) {
-    Stage3::consCand(tc, TFrontNil(t), _) and
+    Stage4::consCand(tc, TFrontNil(t), _) and
     not expensiveLen2unfolding(tc, _)
   } or
   TConsCons(TypedContent tc1, TypedContent tc2, int len) {
-    Stage3::consCand(tc1, TFrontHead(tc2), _) and
+    Stage4::consCand(tc1, TFrontHead(tc2), _) and
     len in [2 .. accessPathLimit()] and
     not expensiveLen2unfolding(tc1, _)
   } or
@@ -2466,7 +2706,7 @@ private class AccessPathApproxCons1 extends AccessPathApproxCons, TCons1 {
   override AccessPathApprox pop(TypedContent head) {
     head = tc and
     (
-      exists(TypedContent tc2 | Stage3::consCand(tc, TFrontHead(tc2), _) |
+      exists(TypedContent tc2 | Stage4::consCand(tc, TFrontHead(tc2), _) |
         result = TConsCons(tc2, _, len - 1)
         or
         len = 2 and
@@ -2477,7 +2717,7 @@ private class AccessPathApproxCons1 extends AccessPathApproxCons, TCons1 {
       or
       exists(DataFlowType t |
         len = 1 and
-        Stage3::consCand(tc, TFrontNil(t), _) and
+        Stage4::consCand(tc, TFrontNil(t), _) and
         result = TNil(t)
       )
     )
@@ -2502,13 +2742,14 @@ private class AccessPathApproxOption extends TAccessPathApproxOption {
   }
 }
 
-private module Stage4Param implements MkStage<Stage3>::StageParam {
-  private module PrevStage = Stage3;
+private module Stage5Param implements MkStage<Stage4>::StageParam {
+  private module PrevStage = Stage4;
 
   class Ap = AccessPathApprox;
 
   class ApNil = AccessPathApproxNil;
 
+  pragma[nomagic]
   PrevStage::Ap getApprox(Ap ap) { result = ap.getFront() }
 
   ApNil getApNil(NodeEx node) {
@@ -2534,7 +2775,9 @@ private module Stage4Param implements MkStage<Stage3>::StageParam {
     NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
     ApNil ap, Configuration config, LocalCc lcc
   ) {
-    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap.getFront(), config, lcc)
+    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap.getType(), config, lcc) and
+    PrevStage::revFlow(node1, pragma[only_bind_into](state1), _, pragma[only_bind_into](config)) and
+    PrevStage::revFlowAlias(node2, pragma[only_bind_into](state2), _, pragma[only_bind_into](config))
   }
 
   pragma[nomagic]
@@ -2571,7 +2814,7 @@ private module Stage4Param implements MkStage<Stage3>::StageParam {
   predicate typecheckStore(Ap ap, DataFlowType contentType) { any() }
 }
 
-private module Stage4 = MkStage<Stage3>::Stage<Stage4Param>;
+private module Stage5 = MkStage<Stage4>::Stage<Stage5Param>;
 
 bindingset[conf, result]
 private Configuration unbindConf(Configuration conf) {
@@ -2585,8 +2828,8 @@ private predicate nodeMayUseSummary0(
 ) {
   exists(AccessPathApprox apa0 |
     c = n.getEnclosingCallable() and
-    Stage4::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
-    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TParameterPositionSome(pos),
+    Stage5::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
+    Stage5::fwdFlow(n, state, any(CallContextCall ccc), TParameterPositionSome(pos),
       TAccessPathApproxSome(apa), apa0, config)
   )
 }
@@ -2596,7 +2839,7 @@ private predicate nodeMayUseSummary(
   NodeEx n, FlowState state, AccessPathApprox apa, Configuration config
 ) {
   exists(DataFlowCallable c, ParameterPosition pos, ParamNodeEx p |
-    Stage4::parameterMayFlowThrough(p, apa, config) and
+    Stage5::parameterMayFlowThrough(p, apa, config) and
     nodeMayUseSummary0(n, c, pos, state, apa, config) and
     p.isParameterOf(c, pos)
   )
@@ -2606,8 +2849,8 @@ private newtype TSummaryCtx =
   TSummaryCtxNone() or
   TSummaryCtxSome(ParamNodeEx p, FlowState state, AccessPath ap) {
     exists(Configuration config |
-      Stage4::parameterMayFlowThrough(p, ap.getApprox(), config) and
-      Stage4::revFlow(p, state, _, config)
+      Stage5::parameterMayFlowThrough(p, ap.getApprox(), config) and
+      Stage5::revFlow(p, state, _, config)
     )
   }
 
@@ -2656,7 +2899,7 @@ private int count1to2unfold(AccessPathApproxCons1 apa, Configuration config) {
     len = apa.len() and
     result =
       strictcount(AccessPathFront apf |
-        Stage4::consCand(tc, any(AccessPathApprox ap | ap.getFront() = apf and ap.len() = len - 1),
+        Stage5::consCand(tc, any(AccessPathApprox ap | ap.getFront() = apf and ap.len() = len - 1),
           config)
       )
   )
@@ -2665,7 +2908,7 @@ private int count1to2unfold(AccessPathApproxCons1 apa, Configuration config) {
 private int countNodesUsingAccessPath(AccessPathApprox apa, Configuration config) {
   result =
     strictcount(NodeEx n, FlowState state |
-      Stage4::revFlow(n, state, apa, config) or nodeMayUseSummary(n, state, apa, config)
+      Stage5::revFlow(n, state, apa, config) or nodeMayUseSummary(n, state, apa, config)
     )
 }
 
@@ -2686,7 +2929,7 @@ private predicate expensiveLen1to2unfolding(AccessPathApproxCons1 apa, Configura
 private AccessPathApprox getATail(AccessPathApprox apa, Configuration config) {
   exists(TypedContent head |
     apa.pop(head) = result and
-    Stage4::consCand(head, result, config)
+    Stage5::consCand(head, result, config)
   )
 }
 
@@ -2768,7 +3011,7 @@ private newtype TPathNode =
     NodeEx node, FlowState state, CallContext cc, SummaryCtx sc, AccessPath ap, Configuration config
   ) {
     // A PathNode is introduced by a source ...
-    Stage4::revFlow(node, state, config) and
+    Stage5::revFlow(node, state, config) and
     sourceNode(node, state, config) and
     (
       if hasSourceCallCtx(config)
@@ -2782,7 +3025,7 @@ private newtype TPathNode =
     exists(PathNodeMid mid |
       pathStep(mid, node, state, cc, sc, ap) and
       pragma[only_bind_into](config) = mid.getConfiguration() and
-      Stage4::revFlow(node, state, ap.getApprox(), pragma[only_bind_into](config))
+      Stage5::revFlow(node, state, ap.getApprox(), pragma[only_bind_into](config))
     )
   } or
   TPathNodeSink(NodeEx node, FlowState state, Configuration config) {
@@ -2924,7 +3167,7 @@ private class AccessPathCons2 extends AccessPath, TAccessPathCons2 {
   override TypedContent getHead() { result = head1 }
 
   override AccessPath getTail() {
-    Stage4::consCand(head1, result.getApprox(), _) and
+    Stage5::consCand(head1, result.getApprox(), _) and
     result.getHead() = head2 and
     result.length() = len - 1
   }
@@ -2955,7 +3198,7 @@ private class AccessPathCons1 extends AccessPath, TAccessPathCons1 {
   override TypedContent getHead() { result = head }
 
   override AccessPath getTail() {
-    Stage4::consCand(head, result.getApprox(), _) and result.length() = len - 1
+    Stage5::consCand(head, result.getApprox(), _) and result.length() = len - 1
   }
 
   override AccessPathFrontHead getFront() { result = TFrontHead(head) }
@@ -3347,7 +3590,8 @@ private predicate pathStep(
     AccessPath ap0, NodeEx midnode, FlowState state0, Configuration conf, LocalCallContext localCC
   |
     pathNode(mid, midnode, state0, cc, sc, ap0, conf, localCC) and
-    localFlowBigStep(midnode, state0, node, state, false, ap.getFront(), conf, localCC) and
+    localFlowBigStep(midnode, state0, node, state, false, ap.(AccessPathNil).getType(), conf,
+      localCC) and
     ap0 instanceof AccessPathNil
   )
   or
@@ -3389,7 +3633,7 @@ private predicate pathReadStep(
 ) {
   ap0 = mid.getAp() and
   tc = ap0.getHead() and
-  Stage4::readStepCand(mid.getNodeEx(), tc.getContent(), node, mid.getConfiguration()) and
+  Stage5::readStepCand(mid.getNodeEx(), tc.getContent(), node, mid.getConfiguration()) and
   state = mid.getState() and
   cc = mid.getCallContext()
 }
@@ -3399,7 +3643,7 @@ private predicate pathStoreStep(
   PathNodeMid mid, NodeEx node, FlowState state, AccessPath ap0, TypedContent tc, CallContext cc
 ) {
   ap0 = mid.getAp() and
-  Stage4::storeStepCand(mid.getNodeEx(), _, tc, node, _, mid.getConfiguration()) and
+  Stage5::storeStepCand(mid.getNodeEx(), _, tc, node, _, mid.getConfiguration()) and
   state = mid.getState() and
   cc = mid.getCallContext()
 }
@@ -3436,7 +3680,7 @@ private NodeEx getAnOutNodeFlow(
   ReturnKindExt kind, DataFlowCall call, AccessPathApprox apa, Configuration config
 ) {
   result.asNode() = kind.getAnOutNode(call) and
-  Stage4::revFlow(result, _, apa, config)
+  Stage5::revFlow(result, _, apa, config)
 }
 
 /**
@@ -3472,7 +3716,7 @@ private predicate parameterCand(
   DataFlowCallable callable, ParameterPosition pos, AccessPathApprox apa, Configuration config
 ) {
   exists(ParamNodeEx p |
-    Stage4::revFlow(p, _, apa, config) and
+    Stage5::revFlow(p, _, apa, config) and
     p.isParameterOf(callable, pos)
   )
 }
@@ -3751,9 +3995,17 @@ predicate stageStats(
   n = 45 and
   Stage4::stats(false, nodes, fields, conscand, states, tuples, config)
   or
-  stage = "5 Fwd" and n = 50 and finalStats(true, nodes, fields, conscand, states, tuples)
+  stage = "5 Fwd" and
+  n = 50 and
+  Stage5::stats(true, nodes, fields, conscand, states, tuples, config)
   or
-  stage = "5 Rev" and n = 55 and finalStats(false, nodes, fields, conscand, states, tuples)
+  stage = "5 Rev" and
+  n = 55 and
+  Stage5::stats(false, nodes, fields, conscand, states, tuples, config)
+  or
+  stage = "6 Fwd" and n = 60 and finalStats(true, nodes, fields, conscand, states, tuples)
+  or
+  stage = "6 Rev" and n = 65 and finalStats(false, nodes, fields, conscand, states, tuples)
 }
 
 private module FlowExploration {
diff --git a/go/ql/lib/semmle/go/dataflow/internal/DataFlowImplCommon.qll b/go/ql/lib/semmle/go/dataflow/internal/DataFlowImplCommon.qll
index f981834a6d4..c66aefced8d 100644
--- a/go/ql/lib/semmle/go/dataflow/internal/DataFlowImplCommon.qll
+++ b/go/ql/lib/semmle/go/dataflow/internal/DataFlowImplCommon.qll
@@ -926,18 +926,46 @@ private module Cached {
     TReturnCtxNoFlowThrough() or
     TReturnCtxMaybeFlowThrough(ReturnKindExt kind)
 
+  cached
+  newtype TTypedContentApprox =
+    MkTypedContentApprox(ContentApprox c, DataFlowType t) {
+      exists(Content cont |
+        c = getContentApprox(cont) and
+        store(_, cont, _, _, t)
+      )
+    }
+
   cached
   newtype TTypedContent = MkTypedContent(Content c, DataFlowType t) { store(_, c, _, _, t) }
 
+  cached
+  TypedContent getATypedContent(TypedContentApprox c) {
+    exists(ContentApprox cls, DataFlowType t, Content cont |
+      c = MkTypedContentApprox(cls, pragma[only_bind_into](t)) and
+      result = MkTypedContent(cont, pragma[only_bind_into](t)) and
+      cls = getContentApprox(cont)
+    )
+  }
+
   cached
   newtype TAccessPathFront =
     TFrontNil(DataFlowType t) or
     TFrontHead(TypedContent tc)
 
+  cached
+  newtype TApproxAccessPathFront =
+    TApproxFrontNil(DataFlowType t) or
+    TApproxFrontHead(TypedContentApprox tc)
+
   cached
   newtype TAccessPathFrontOption =
     TAccessPathFrontNone() or
     TAccessPathFrontSome(AccessPathFront apf)
+
+  cached
+  newtype TApproxAccessPathFrontOption =
+    TApproxAccessPathFrontNone() or
+    TApproxAccessPathFrontSome(ApproxAccessPathFront apf)
 }
 
 /**
@@ -1353,6 +1381,75 @@ class ReturnCtx extends TReturnCtx {
   }
 }
 
+/** An approximated `Content` tagged with the type of a containing object. */
+class TypedContentApprox extends MkTypedContentApprox {
+  private ContentApprox c;
+  private DataFlowType t;
+
+  TypedContentApprox() { this = MkTypedContentApprox(c, t) }
+
+  /** Gets a typed content approximated by this value. */
+  TypedContent getATypedContent() { result = getATypedContent(this) }
+
+  /** Gets the container type. */
+  DataFlowType getContainerType() { result = t }
+
+  /** Gets a textual representation of this approximated content. */
+  string toString() { result = c.toString() }
+}
+
+/**
+ * The front of an approximated access path. This is either a head or a nil.
+ */
+abstract class ApproxAccessPathFront extends TApproxAccessPathFront {
+  abstract string toString();
+
+  abstract DataFlowType getType();
+
+  abstract boolean toBoolNonEmpty();
+
+  pragma[nomagic]
+  TypedContent getAHead() {
+    exists(TypedContentApprox cont |
+      this = TApproxFrontHead(cont) and
+      result = cont.getATypedContent()
+    )
+  }
+}
+
+class ApproxAccessPathFrontNil extends ApproxAccessPathFront, TApproxFrontNil {
+  private DataFlowType t;
+
+  ApproxAccessPathFrontNil() { this = TApproxFrontNil(t) }
+
+  override string toString() { result = ppReprType(t) }
+
+  override DataFlowType getType() { result = t }
+
+  override boolean toBoolNonEmpty() { result = false }
+}
+
+class ApproxAccessPathFrontHead extends ApproxAccessPathFront, TApproxFrontHead {
+  private TypedContentApprox tc;
+
+  ApproxAccessPathFrontHead() { this = TApproxFrontHead(tc) }
+
+  override string toString() { result = tc.toString() }
+
+  override DataFlowType getType() { result = tc.getContainerType() }
+
+  override boolean toBoolNonEmpty() { result = true }
+}
+
+/** An optional approximated access path front. */
+class ApproxAccessPathFrontOption extends TApproxAccessPathFrontOption {
+  string toString() {
+    this = TApproxAccessPathFrontNone() and result = "<none>"
+    or
+    this = TApproxAccessPathFrontSome(any(ApproxAccessPathFront apf | result = apf.toString()))
+  }
+}
+
 /** A `Content` tagged with the type of a containing object. */
 class TypedContent extends MkTypedContent {
   private Content c;
@@ -1385,7 +1482,7 @@ abstract class AccessPathFront extends TAccessPathFront {
 
   abstract DataFlowType getType();
 
-  abstract boolean toBoolNonEmpty();
+  abstract ApproxAccessPathFront toApprox();
 
   TypedContent getHead() { this = TFrontHead(result) }
 }
@@ -1399,7 +1496,7 @@ class AccessPathFrontNil extends AccessPathFront, TFrontNil {
 
   override DataFlowType getType() { result = t }
 
-  override boolean toBoolNonEmpty() { result = false }
+  override ApproxAccessPathFront toApprox() { result = TApproxFrontNil(t) }
 }
 
 class AccessPathFrontHead extends AccessPathFront, TFrontHead {
@@ -1411,7 +1508,7 @@ class AccessPathFrontHead extends AccessPathFront, TFrontHead {
 
   override DataFlowType getType() { result = tc.getContainerType() }
 
-  override boolean toBoolNonEmpty() { result = true }
+  override ApproxAccessPathFront toApprox() { result.getAHead() = tc }
 }
 
 /** An optional access path front. */
diff --git a/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl.qll b/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl.qll
index ccde916a3c2..6741ccc2f06 100644
--- a/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl.qll
+++ b/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl.qll
@@ -621,23 +621,6 @@ private predicate parameterFlowThroughAllowed(ParamNodeEx p, ReturnKindExt kind)
   )
 }
 
-/**
- * Holds if flow from a parameter at position `pos` inside `c` to a return node of
- * kind `kind` is allowed.
- *
- * We don't expect a parameter to return stored in itself, unless
- * explicitly allowed
- */
-bindingset[c, pos, kind]
-private predicate parameterFlowThroughAllowed(
-  DataFlowCallable c, ParameterPosition pos, ReturnKindExt kind
-) {
-  exists(ParamNodeEx p |
-    p.isParameterOf(c, pos) and
-    parameterFlowThroughAllowed(p, kind)
-  )
-}
-
 private module Stage1 implements StageSig {
   class Ap = Unit;
 
@@ -980,6 +963,12 @@ private module Stage1 implements StageSig {
   pragma[nomagic]
   predicate revFlow(NodeEx node, Configuration config) { revFlow(node, _, config) }
 
+  pragma[nomagic]
+  predicate revFlowAp(NodeEx node, Ap ap, Configuration config) {
+    revFlow(node, config) and
+    exists(ap)
+  }
+
   bindingset[node, state, config]
   predicate revFlow(NodeEx node, FlowState state, Ap ap, Configuration config) {
     revFlow(node, _, pragma[only_bind_into](config)) and
@@ -1022,9 +1011,13 @@ private module Stage1 implements StageSig {
   }
 
   pragma[nomagic]
-  predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config) {
+  predicate returnMayFlowThrough(
+    RetNodeEx ret, Ap argAp, Ap ap, ReturnKindExt kind, Configuration config
+  ) {
     throughFlowNodeCand(ret, config) and
-    kind = ret.getKind()
+    kind = ret.getKind() and
+    exists(argAp) and
+    exists(ap)
   }
 
   pragma[nomagic]
@@ -1189,6 +1182,8 @@ private signature module StageSig {
 
   predicate revFlow(NodeEx node, Configuration config);
 
+  predicate revFlowAp(NodeEx node, Ap ap, Configuration config);
+
   bindingset[node, state, config]
   predicate revFlow(NodeEx node, FlowState state, Ap ap, Configuration config);
 
@@ -1196,7 +1191,9 @@ private signature module StageSig {
 
   predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config);
 
-  predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config);
+  predicate returnMayFlowThrough(
+    RetNodeEx ret, Ap argAp, Ap ap, ReturnKindExt kind, Configuration config
+  );
 
   predicate storeStepCand(
     NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, DataFlowType contentType,
@@ -1281,21 +1278,43 @@ private module MkStage<StageSig PrevStage> {
     import Param
 
     /* Begin: Stage logic. */
-    bindingset[result, apa]
-    private ApApprox unbindApa(ApApprox apa) {
-      pragma[only_bind_out](apa) = pragma[only_bind_out](result)
+    // use an alias as a workaround for bad functionality-induced joins
+    pragma[nomagic]
+    private predicate revFlowApAlias(NodeEx node, ApApprox apa, Configuration config) {
+      PrevStage::revFlowAp(node, apa, config)
+    }
+
+    pragma[nomagic]
+    private predicate flowIntoCallApa(
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, ApApprox apa,
+      Configuration config
+    ) {
+      flowIntoCall(call, arg, p, allowsFieldFlow, config) and
+      PrevStage::revFlowAp(p, pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
+      revFlowApAlias(arg, pragma[only_bind_into](apa), pragma[only_bind_into](config))
+    }
+
+    pragma[nomagic]
+    private predicate flowOutOfCallApa(
+      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
+      ApApprox apa, Configuration config
+    ) {
+      flowOutOfCall(call, ret, kind, out, allowsFieldFlow, config) and
+      PrevStage::revFlowAp(out, pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
+      revFlowApAlias(ret, pragma[only_bind_into](apa), pragma[only_bind_into](config))
     }
 
     pragma[nomagic]
     private predicate flowThroughOutOfCall(
-      DataFlowCall call, DataFlowCallable c, CcCall ccc, RetNodeEx ret, ReturnKindExt kind,
-      NodeEx out, boolean allowsFieldFlow, Configuration config
+      DataFlowCall call, CcCall ccc, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow,
+      ApApprox argApa, ApApprox apa, Configuration config
     ) {
-      flowOutOfCall(call, ret, kind, out, allowsFieldFlow, pragma[only_bind_into](config)) and
-      PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
-      PrevStage::returnMayFlowThrough(ret, kind, pragma[only_bind_into](config)) and
-      matchesCall(ccc, call) and
-      c = ret.getEnclosingCallable()
+      exists(ReturnKindExt kind |
+        flowOutOfCallApa(call, ret, kind, out, allowsFieldFlow, apa, pragma[only_bind_into](config)) and
+        PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
+        PrevStage::returnMayFlowThrough(ret, argApa, apa, kind, pragma[only_bind_into](config)) and
+        matchesCall(ccc, call)
+      )
     }
 
     /**
@@ -1307,39 +1326,50 @@ private module MkStage<StageSig PrevStage> {
      * corresponding parameter position and access path of that argument, respectively.
      */
     pragma[nomagic]
+    additional predicate fwdFlow(
+      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      Ap ap, ApApprox apa, Configuration config
+    ) {
+      fwdFlow0(node, state, cc, summaryCtx, argAp, ap, apa, config) and
+      PrevStage::revFlow(node, state, apa, config) and
+      filter(node, state, ap, config)
+    }
+
+    pragma[inline]
     additional predicate fwdFlow(
       NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
       Ap ap, Configuration config
     ) {
-      fwdFlow0(node, state, cc, summaryCtx, argAp, ap, config) and
-      PrevStage::revFlow(node, state, unbindApa(getApprox(ap)), config) and
-      filter(node, state, ap, config)
+      fwdFlow(node, state, cc, summaryCtx, argAp, ap, _, config)
     }
 
     pragma[nomagic]
     private predicate fwdFlow0(
       NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      Ap ap, Configuration config
+      Ap ap, ApApprox apa, Configuration config
     ) {
       sourceNode(node, state, config) and
       (if hasSourceCallCtx(config) then cc = ccSomeCall() else cc = ccNone()) and
       argAp = apNone() and
       summaryCtx = TParameterPositionNone() and
-      ap = getApNil(node)
+      ap = getApNil(node) and
+      apa = getApprox(ap)
       or
-      exists(NodeEx mid, FlowState state0, Ap ap0, LocalCc localCc |
-        fwdFlow(mid, state0, cc, summaryCtx, argAp, ap0, config) and
+      exists(NodeEx mid, FlowState state0, Ap ap0, ApApprox apa0, LocalCc localCc |
+        fwdFlow(mid, state0, cc, summaryCtx, argAp, ap0, apa0, config) and
         localCc = getLocalCc(mid, cc)
       |
         localStep(mid, state0, node, state, true, _, config, localCc) and
-        ap = ap0
+        ap = ap0 and
+        apa = apa0
         or
         localStep(mid, state0, node, state, false, ap, config, localCc) and
-        ap0 instanceof ApNil
+        ap0 instanceof ApNil and
+        apa = getApprox(ap)
       )
       or
       exists(NodeEx mid |
-        fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, apa, pragma[only_bind_into](config)) and
         jumpStep(mid, node, config) and
         cc = ccNone() and
         summaryCtx = TParameterPositionNone() and
@@ -1352,7 +1382,8 @@ private module MkStage<StageSig PrevStage> {
         cc = ccNone() and
         summaryCtx = TParameterPositionNone() and
         argAp = apNone() and
-        ap = getApNil(node)
+        ap = getApNil(node) and
+        apa = getApprox(ap)
       )
       or
       exists(NodeEx mid, FlowState state0, ApNil nil |
@@ -1361,32 +1392,32 @@ private module MkStage<StageSig PrevStage> {
         cc = ccNone() and
         summaryCtx = TParameterPositionNone() and
         argAp = apNone() and
-        ap = getApNil(node)
+        ap = getApNil(node) and
+        apa = getApprox(ap)
       )
       or
       // store
       exists(TypedContent tc, Ap ap0 |
         fwdFlowStore(_, ap0, tc, node, state, cc, summaryCtx, argAp, config) and
-        ap = apCons(tc, ap0)
+        ap = apCons(tc, ap0) and
+        apa = getApprox(ap)
       )
       or
       // read
       exists(Ap ap0, Content c |
         fwdFlowRead(ap0, c, _, node, state, cc, summaryCtx, argAp, config) and
-        fwdFlowConsCand(ap0, c, ap, config)
+        fwdFlowConsCand(ap0, c, ap, config) and
+        apa = getApprox(ap)
       )
       or
       // flow into a callable
-      exists(ApApprox apa |
-        fwdFlowIn(_, node, state, _, cc, _, _, ap, config) and
-        apa = getApprox(ap) and
-        if PrevStage::parameterMayFlowThrough(node, apa, config)
-        then (
-          summaryCtx = TParameterPositionSome(node.(ParamNodeEx).getPosition()) and
-          argAp = apSome(ap)
-        ) else (
-          summaryCtx = TParameterPositionNone() and argAp = apNone()
-        )
+      fwdFlowIn(_, node, state, _, cc, _, _, ap, apa, config) and
+      if PrevStage::parameterMayFlowThrough(node, apa, config)
+      then (
+        summaryCtx = TParameterPositionSome(node.(ParamNodeEx).getPosition()) and
+        argAp = apSome(ap)
+      ) else (
+        summaryCtx = TParameterPositionNone() and argAp = apNone()
       )
       or
       // flow out of a callable
@@ -1394,8 +1425,8 @@ private module MkStage<StageSig PrevStage> {
         DataFlowCall call, RetNodeEx ret, boolean allowsFieldFlow, CcNoCall innercc,
         DataFlowCallable inner
       |
-        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, config) and
-        flowOutOfCall(call, ret, _, node, allowsFieldFlow, config) and
+        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, apa, config) and
+        flowOutOfCallApa(call, ret, _, node, allowsFieldFlow, apa, config) and
         inner = ret.getEnclosingCallable() and
         cc = getCallContextReturn(inner, call, innercc) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
@@ -1403,7 +1434,7 @@ private module MkStage<StageSig PrevStage> {
       or
       // flow through a callable
       exists(DataFlowCall call, ParameterPosition summaryCtx0, Ap argAp0 |
-        fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, config) and
+        fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, apa, config) and
         fwdFlowIsEntered(call, cc, summaryCtx, argAp, summaryCtx0, argAp0, config)
       )
     }
@@ -1413,9 +1444,9 @@ private module MkStage<StageSig PrevStage> {
       NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc,
       ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
     ) {
-      exists(DataFlowType contentType |
-        fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, config) and
-        PrevStage::storeStepCand(node1, unbindApa(getApprox(ap1)), tc, node2, contentType, config) and
+      exists(DataFlowType contentType, ApApprox apa1 |
+        fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, apa1, config) and
+        PrevStage::storeStepCand(node1, apa1, tc, node2, contentType, config) and
         typecheckStore(ap1, contentType)
       )
     }
@@ -1433,43 +1464,104 @@ private module MkStage<StageSig PrevStage> {
       )
     }
 
+    private class ApNonNil instanceof Ap {
+      pragma[nomagic]
+      ApNonNil() { not this instanceof ApNil }
+
+      string toString() { result = "" }
+    }
+
+    pragma[nomagic]
+    private predicate fwdFlowRead0(
+      NodeEx node1, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      ApNonNil ap, Configuration config
+    ) {
+      fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
+      PrevStage::readStepCand(node1, _, _, config)
+    }
+
     pragma[nomagic]
     private predicate fwdFlowRead(
       Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc,
       ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
     ) {
-      fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
+      fwdFlowRead0(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, c, node2, config) and
       getHeadContent(ap) = c
     }
 
     pragma[nomagic]
     private predicate fwdFlowIn(
-      DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, Cc innercc,
-      ParameterPositionOption summaryCtx, ApOption argAp, Ap ap, Configuration config
+      DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, CcCall innercc,
+      ParameterPositionOption summaryCtx, ApOption argAp, Ap ap, ApApprox apa, Configuration config
     ) {
       exists(ArgNodeEx arg, boolean allowsFieldFlow |
-        fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, config) and
-        flowIntoCall(call, arg, p, allowsFieldFlow, config) and
+        fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, apa, config) and
+        flowIntoCallApa(call, arg, p, allowsFieldFlow, apa, config) and
         innercc = getCallContextCall(call, p.getEnclosingCallable(), outercc) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
+    pragma[nomagic]
+    private predicate fwdFlowRetFromArg(
+      RetNodeEx ret, FlowState state, CcCall ccc, ParameterPosition summaryCtx, ParamNodeEx p,
+      Ap argAp, ApApprox argApa, Ap ap, ApApprox apa, Configuration config
+    ) {
+      exists(DataFlowCallable c, ReturnKindExt kind |
+        fwdFlow(pragma[only_bind_into](ret), state, ccc,
+          TParameterPositionSome(pragma[only_bind_into](summaryCtx)), apSome(argAp), ap, apa, config) and
+        getApprox(argAp) = argApa and
+        c = ret.getEnclosingCallable() and
+        kind = ret.getKind() and
+        p.isParameterOf(c, pragma[only_bind_into](summaryCtx)) and
+        parameterFlowThroughAllowed(p, kind)
+      )
+    }
+
+    pragma[inline]
+    private predicate fwdFlowInMayFlowThrough(
+      DataFlowCall call, Cc cc, CcCall innerCc, ParameterPositionOption summaryCtx, ApOption argAp,
+      ParamNodeEx param, Ap ap, ApApprox apa, Configuration config
+    ) {
+      fwdFlowIn(call, pragma[only_bind_into](param), _, cc, innerCc, summaryCtx, argAp, ap,
+        pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
+      PrevStage::parameterMayFlowThrough(param, apa, config)
+    }
+
+    // dedup before joining with `flowThroughOutOfCall`
+    pragma[nomagic]
+    private predicate fwdFlowInMayFlowThroughProj(
+      DataFlowCall call, CcCall innerCc, ApApprox apa, Configuration config
+    ) {
+      fwdFlowInMayFlowThrough(call, _, innerCc, _, _, _, _, apa, config)
+    }
+
+    /**
+     * Same as `flowThroughOutOfCall`, but restricted to calls that are reached
+     * in the flow covered by `fwdFlow`, where data might flow through the target
+     * callable and back out at `call`.
+     */
+    pragma[nomagic]
+    private predicate fwdFlowThroughOutOfCall(
+      DataFlowCall call, CcCall ccc, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow,
+      ApApprox argApa, ApApprox apa, Configuration config
+    ) {
+      fwdFlowInMayFlowThroughProj(call, ccc, argApa, config) and
+      flowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, argApa, apa, config)
+    }
+
     pragma[nomagic]
     private predicate fwdFlowOutFromArg(
       DataFlowCall call, NodeEx out, FlowState state, ParameterPosition summaryCtx, Ap argAp, Ap ap,
-      Configuration config
+      ApApprox apa, Configuration config
     ) {
-      exists(
-        DataFlowCallable c, RetNodeEx ret, ReturnKindExt kind, boolean allowsFieldFlow, CcCall ccc
-      |
-        fwdFlow(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc),
-          TParameterPositionSome(pragma[only_bind_into](summaryCtx)), apSome(argAp), ap, config) and
-        flowThroughOutOfCall(call, pragma[only_bind_into](c), ccc, ret, kind, out, allowsFieldFlow,
+      exists(RetNodeEx ret, boolean allowsFieldFlow, CcCall ccc, ApApprox argApa |
+        fwdFlowRetFromArg(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc),
+          summaryCtx, _, argAp, pragma[only_bind_into](argApa), ap, pragma[only_bind_into](apa),
           config) and
-        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
-        parameterFlowThroughAllowed(c, pragma[only_bind_into](summaryCtx), kind)
+        fwdFlowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, argApa, apa, config) and
+        (if allowsFieldFlow = false then ap instanceof ApNil else any())
       )
     }
 
@@ -1483,8 +1575,7 @@ private module MkStage<StageSig PrevStage> {
       ParameterPosition pos, Ap ap, Configuration config
     ) {
       exists(ParamNodeEx param |
-        fwdFlowIn(call, param, _, cc, _, summaryCtx, argAp, ap, config) and
-        PrevStage::parameterMayFlowThrough(param, unbindApa(getApprox(ap)), config) and
+        fwdFlowInMayFlowThrough(call, cc, _, summaryCtx, argAp, param, ap, _, config) and
         pos = param.getPosition()
       )
     }
@@ -1505,41 +1596,55 @@ private module MkStage<StageSig PrevStage> {
       fwdFlowConsCand(ap1, c, ap2, config)
     }
 
-    pragma[nomagic]
-    private predicate returnFlowsThrough0(
-      RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, DataFlowCallable c,
-      ParameterPosition ppos, Ap argAp, Ap ap, Configuration config
-    ) {
-      exists(boolean allowsFieldFlow |
-        fwdFlow(ret, state, ccc, TParameterPositionSome(ppos), apSome(argAp), ap, config) and
-        flowThroughOutOfCall(_, c, _, pragma[only_bind_into](ret), kind, _, allowsFieldFlow,
-          pragma[only_bind_into](config)) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
-      )
-    }
-
     pragma[nomagic]
     private predicate returnFlowsThrough(
       RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, ParamNodeEx p, Ap argAp,
       Ap ap, Configuration config
     ) {
-      exists(DataFlowCallable c, ParameterPosition ppos |
-        returnFlowsThrough0(ret, kind, state, ccc, c, ppos, argAp, ap, config) and
-        p.isParameterOf(c, ppos) and
-        parameterFlowThroughAllowed(p, kind)
+      exists(boolean allowsFieldFlow, ApApprox argApa, ApApprox apa |
+        fwdFlowRetFromArg(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc), _, p,
+          argAp, pragma[only_bind_into](argApa), ap, pragma[only_bind_into](apa), config) and
+        kind = ret.getKind() and
+        fwdFlowThroughOutOfCall(_, ccc, ret, _, allowsFieldFlow, argApa, apa, config) and
+        (if allowsFieldFlow = false then ap instanceof ApNil else any())
       )
     }
 
     pragma[nomagic]
     private predicate flowThroughIntoCall(
-      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp,
+      Configuration config
     ) {
-      exists(Ap argAp |
-        flowIntoCall(call, pragma[only_bind_into](arg), pragma[only_bind_into](p), allowsFieldFlow,
+      exists(ApApprox argApa |
+        flowIntoCallApa(call, pragma[only_bind_into](arg), pragma[only_bind_into](p),
+          allowsFieldFlow, argApa, pragma[only_bind_into](config)) and
+        fwdFlow(arg, _, _, _, _, pragma[only_bind_into](argAp), argApa,
           pragma[only_bind_into](config)) and
-        fwdFlow(arg, _, _, _, _, pragma[only_bind_into](argAp), pragma[only_bind_into](config)) and
         returnFlowsThrough(_, _, _, _, p, pragma[only_bind_into](argAp), _,
-          pragma[only_bind_into](config))
+          pragma[only_bind_into](config)) and
+        if allowsFieldFlow = false then argAp instanceof ApNil else any()
+      )
+    }
+
+    pragma[nomagic]
+    private predicate flowIntoCallAp(
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap ap,
+      Configuration config
+    ) {
+      exists(ApApprox apa |
+        flowIntoCallApa(call, arg, p, allowsFieldFlow, apa, config) and
+        fwdFlow(arg, _, _, _, _, ap, apa, config)
+      )
+    }
+
+    pragma[nomagic]
+    private predicate flowOutOfCallAp(
+      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
+      Ap ap, Configuration config
+    ) {
+      exists(ApApprox apa |
+        flowOutOfCallApa(call, ret, kind, out, allowsFieldFlow, apa, config) and
+        fwdFlow(ret, _, _, _, _, ap, apa, config)
       )
     }
 
@@ -1628,7 +1733,7 @@ private module MkStage<StageSig PrevStage> {
       // flow into a callable
       exists(ParamNodeEx p, boolean allowsFieldFlow |
         revFlow(p, state, TReturnCtxNone(), returnAp, ap, config) and
-        flowIntoCall(_, node, p, allowsFieldFlow, config) and
+        flowIntoCallAp(_, node, p, allowsFieldFlow, ap, config) and
         (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
         returnCtx = TReturnCtxNone()
       )
@@ -1682,22 +1787,41 @@ private module MkStage<StageSig PrevStage> {
     ) {
       exists(NodeEx out, boolean allowsFieldFlow |
         revFlow(out, state, returnCtx, returnAp, ap, config) and
-        flowOutOfCall(call, ret, kind, out, allowsFieldFlow, config) and
+        flowOutOfCallAp(call, ret, kind, out, allowsFieldFlow, ap, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
+    /**
+     * Same as `flowThroughIntoCall`, but restricted to calls that are reached
+     * in the flow covered by `revFlow`, where data might flow through the target
+     * callable and back out at `call`.
+     */
+    pragma[nomagic]
+    private predicate revFlowThroughIntoCall(
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp,
+      Configuration config
+    ) {
+      flowThroughIntoCall(call, arg, p, allowsFieldFlow, argAp, config) and
+      revFlowIsReturned(call, _, _, _, _, config)
+    }
+
+    pragma[nomagic]
+    private predicate revFlowParamToReturn(
+      ParamNodeEx p, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap, Configuration config
+    ) {
+      revFlow(p, state, TReturnCtxMaybeFlowThrough(kind), apSome(returnAp), ap, config) and
+      parameterFlowThroughAllowed(p, kind)
+    }
+
     pragma[nomagic]
     private predicate revFlowInToReturn(
       DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap,
       Configuration config
     ) {
       exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(pragma[only_bind_into](p), state,
-          TReturnCtxMaybeFlowThrough(pragma[only_bind_into](kind)), apSome(returnAp), ap, config) and
-        flowThroughIntoCall(call, arg, p, allowsFieldFlow, config) and
-        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
-        parameterFlowThroughAllowed(p, kind)
+        revFlowParamToReturn(p, state, kind, returnAp, ap, config) and
+        revFlowThroughIntoCall(call, arg, p, allowsFieldFlow, ap, config)
       )
     }
 
@@ -1750,6 +1874,11 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     predicate revFlow(NodeEx node, Configuration config) { revFlow(node, _, _, _, _, config) }
 
+    pragma[nomagic]
+    predicate revFlowAp(NodeEx node, Ap ap, Configuration config) {
+      revFlow(node, _, _, _, ap, config)
+    }
+
     // use an alias as a workaround for bad functionality-induced joins
     pragma[nomagic]
     additional predicate revFlowAlias(NodeEx node, Configuration config) {
@@ -1786,9 +1915,9 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate parameterFlowsThroughRev(
-      ParamNodeEx p, Ap ap, ReturnKindExt kind, Configuration config
+      ParamNodeEx p, Ap ap, ReturnKindExt kind, Ap returnAp, Configuration config
     ) {
-      revFlow(p, _, TReturnCtxMaybeFlowThrough(kind), apSome(_), ap, config) and
+      revFlow(p, _, TReturnCtxMaybeFlowThrough(kind), apSome(returnAp), ap, config) and
       parameterFlowThroughAllowed(p, kind)
     }
 
@@ -1796,27 +1925,36 @@ private module MkStage<StageSig PrevStage> {
     predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
       exists(RetNodeEx ret, ReturnKindExt kind |
         returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
-        parameterFlowsThroughRev(p, ap, kind, config)
+        parameterFlowsThroughRev(p, ap, kind, _, config)
       )
     }
 
     pragma[nomagic]
-    predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config) {
-      exists(ParamNodeEx p, Ap ap |
-        returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
-        parameterFlowsThroughRev(p, ap, kind, config)
+    predicate returnMayFlowThrough(
+      RetNodeEx ret, Ap argAp, Ap ap, ReturnKindExt kind, Configuration config
+    ) {
+      exists(ParamNodeEx p |
+        returnFlowsThrough(ret, kind, _, _, p, argAp, ap, config) and
+        parameterFlowsThroughRev(p, argAp, kind, ap, config)
+      )
+    }
+
+    pragma[nomagic]
+    predicate revFlowInToReturnIsReturned(
+      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnCtx returnCtx, ApOption returnAp,
+      Ap ap, Configuration config
+    ) {
+      exists(ReturnKindExt returnKind0, Ap returnAp0 |
+        revFlowInToReturn(call, arg, state, returnKind0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
       )
     }
 
     pragma[nomagic]
     predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
-      exists(
-        ReturnKindExt returnKind0, Ap returnAp0, ArgNodeEx arg, FlowState state,
-        ReturnCtx returnCtx, ApOption returnAp, Ap ap
-      |
+      exists(ArgNodeEx arg, FlowState state, ReturnCtx returnCtx, ApOption returnAp, Ap ap |
         revFlow(arg, state, returnCtx, returnAp, ap, config) and
-        revFlowInToReturn(call, arg, state, returnKind0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
+        revFlowInToReturnIsReturned(call, arg, state, returnCtx, returnAp, ap, config)
       )
     }
 
@@ -2179,16 +2317,16 @@ private module LocalFlowBigStep {
   pragma[nomagic]
   predicate localFlowBigStep(
     NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
-    AccessPathFrontNil apf, Configuration config, LocalCallContext callContext
+    DataFlowType t, Configuration config, LocalCallContext callContext
   ) {
-    localFlowStepPlus(node1, state1, node2, preservesValue, apf.getType(), config, callContext) and
+    localFlowStepPlus(node1, state1, node2, preservesValue, t, config, callContext) and
     localFlowExit(node2, state1, config) and
     state1 = state2
     or
     additionalLocalFlowStepNodeCand2(node1, state1, node2, state2, config) and
     state1 != state2 and
     preservesValue = false and
-    apf = TFrontNil(node2.getDataFlowType()) and
+    t = node2.getDataFlowType() and
     callContext.relevantFor(node1.getEnclosingCallable()) and
     not exists(DataFlowCall call | call = callContext.(LocalCallContextSpecificCall).getCall() |
       isUnreachableInCallCached(node1.asNode(), call) or
@@ -2202,11 +2340,87 @@ private import LocalFlowBigStep
 private module Stage3Param implements MkStage<Stage2>::StageParam {
   private module PrevStage = Stage2;
 
+  class Ap = ApproxAccessPathFront;
+
+  class ApNil = ApproxAccessPathFrontNil;
+
+  PrevStage::Ap getApprox(Ap ap) { result = ap.toBoolNonEmpty() }
+
+  ApNil getApNil(NodeEx node) {
+    PrevStage::revFlow(node, _) and result = TApproxFrontNil(node.getDataFlowType())
+  }
+
+  bindingset[tc, tail]
+  Ap apCons(TypedContent tc, Ap tail) { result.getAHead() = tc and exists(tail) }
+
+  pragma[noinline]
+  Content getHeadContent(Ap ap) { result = ap.getAHead().getContent() }
+
+  class ApOption = ApproxAccessPathFrontOption;
+
+  ApOption apNone() { result = TApproxAccessPathFrontNone() }
+
+  ApOption apSome(Ap ap) { result = TApproxAccessPathFrontSome(ap) }
+
+  import BooleanCallContext
+
+  predicate localStep(
+    NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
+    ApproxAccessPathFrontNil ap, Configuration config, LocalCc lcc
+  ) {
+    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap.getType(), config, _) and
+    exists(lcc)
+  }
+
+  predicate flowOutOfCall = flowOutOfCallNodeCand2/6;
+
+  predicate flowIntoCall = flowIntoCallNodeCand2/5;
+
+  pragma[nomagic]
+  private predicate expectsContentCand(NodeEx node, Ap ap, Configuration config) {
+    exists(Content c |
+      PrevStage::revFlow(node, pragma[only_bind_into](config)) and
+      PrevStage::readStepCand(_, c, _, pragma[only_bind_into](config)) and
+      expectsContentEx(node, c) and
+      c = ap.getAHead().getContent()
+    )
+  }
+
+  pragma[nomagic]
+  private predicate castingNodeEx(NodeEx node) { node.asNode() instanceof CastingNode }
+
+  bindingset[node, state, ap, config]
+  predicate filter(NodeEx node, FlowState state, Ap ap, Configuration config) {
+    exists(state) and
+    exists(config) and
+    (if castingNodeEx(node) then compatibleTypes(node.getDataFlowType(), ap.getType()) else any()) and
+    (
+      notExpectsContent(node)
+      or
+      expectsContentCand(node, ap, config)
+    )
+  }
+
+  bindingset[ap, contentType]
+  predicate typecheckStore(Ap ap, DataFlowType contentType) {
+    // We need to typecheck stores here, since reverse flow through a getter
+    // might have a different type here compared to inside the getter.
+    compatibleTypes(ap.getType(), contentType)
+  }
+}
+
+private module Stage3 implements StageSig {
+  import MkStage<Stage2>::Stage<Stage3Param>
+}
+
+private module Stage4Param implements MkStage<Stage3>::StageParam {
+  private module PrevStage = Stage3;
+
   class Ap = AccessPathFront;
 
   class ApNil = AccessPathFrontNil;
 
-  PrevStage::Ap getApprox(Ap ap) { result = ap.toBoolNonEmpty() }
+  PrevStage::Ap getApprox(Ap ap) { result = ap.toApprox() }
 
   ApNil getApNil(NodeEx node) {
     PrevStage::revFlow(node, _) and result = TFrontNil(node.getDataFlowType())
@@ -2226,16 +2440,42 @@ private module Stage3Param implements MkStage<Stage2>::StageParam {
 
   import BooleanCallContext
 
+  pragma[nomagic]
   predicate localStep(
     NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
     ApNil ap, Configuration config, LocalCc lcc
   ) {
-    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap, config, _) and exists(lcc)
+    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap.getType(), config, _) and
+    PrevStage::revFlow(node1, pragma[only_bind_into](state1), _, pragma[only_bind_into](config)) and
+    PrevStage::revFlowAlias(node2, pragma[only_bind_into](state2), _, pragma[only_bind_into](config)) and
+    exists(lcc)
   }
 
-  predicate flowOutOfCall = flowOutOfCallNodeCand2/6;
+  pragma[nomagic]
+  predicate flowOutOfCall(
+    DataFlowCall call, RetNodeEx node1, ReturnKindExt kind, NodeEx node2, boolean allowsFieldFlow,
+    Configuration config
+  ) {
+    exists(FlowState state |
+      flowOutOfCallNodeCand2(call, node1, kind, node2, allowsFieldFlow, config) and
+      PrevStage::revFlow(node2, pragma[only_bind_into](state), _, pragma[only_bind_into](config)) and
+      PrevStage::revFlowAlias(node1, pragma[only_bind_into](state), _,
+        pragma[only_bind_into](config))
+    )
+  }
 
-  predicate flowIntoCall = flowIntoCallNodeCand2/5;
+  pragma[nomagic]
+  predicate flowIntoCall(
+    DataFlowCall call, ArgNodeEx node1, ParamNodeEx node2, boolean allowsFieldFlow,
+    Configuration config
+  ) {
+    exists(FlowState state |
+      flowIntoCallNodeCand2(call, node1, node2, allowsFieldFlow, config) and
+      PrevStage::revFlow(node2, pragma[only_bind_into](state), _, pragma[only_bind_into](config)) and
+      PrevStage::revFlowAlias(node1, pragma[only_bind_into](state), _,
+        pragma[only_bind_into](config))
+    )
+  }
 
   pragma[nomagic]
   private predicate clearSet(NodeEx node, ContentSet c, Configuration config) {
@@ -2291,8 +2531,8 @@ private module Stage3Param implements MkStage<Stage2>::StageParam {
   }
 }
 
-private module Stage3 implements StageSig {
-  import MkStage<Stage2>::Stage<Stage3Param>
+private module Stage4 implements StageSig {
+  import MkStage<Stage3>::Stage<Stage4Param>
 }
 
 /**
@@ -2303,8 +2543,8 @@ private predicate flowCandSummaryCtx(
   NodeEx node, FlowState state, AccessPathFront argApf, Configuration config
 ) {
   exists(AccessPathFront apf |
-    Stage3::revFlow(node, state, TReturnCtxMaybeFlowThrough(_), _, apf, config) and
-    Stage3::fwdFlow(node, state, any(Stage3::CcCall ccc), _, TAccessPathFrontSome(argApf), apf,
+    Stage4::revFlow(node, state, TReturnCtxMaybeFlowThrough(_), _, apf, config) and
+    Stage4::fwdFlow(node, state, any(Stage4::CcCall ccc), _, TAccessPathFrontSome(argApf), apf,
       config)
   )
 }
@@ -2315,10 +2555,10 @@ private predicate flowCandSummaryCtx(
  */
 private predicate expensiveLen2unfolding(TypedContent tc, Configuration config) {
   exists(int tails, int nodes, int apLimit, int tupleLimit |
-    tails = strictcount(AccessPathFront apf | Stage3::consCand(tc, apf, config)) and
+    tails = strictcount(AccessPathFront apf | Stage4::consCand(tc, apf, config)) and
     nodes =
       strictcount(NodeEx n, FlowState state |
-        Stage3::revFlow(n, state, any(AccessPathFrontHead apf | apf.getHead() = tc), config)
+        Stage4::revFlow(n, state, any(AccessPathFrontHead apf | apf.getHead() = tc), config)
         or
         flowCandSummaryCtx(n, state, any(AccessPathFrontHead apf | apf.getHead() = tc), config)
       ) and
@@ -2332,11 +2572,11 @@ private predicate expensiveLen2unfolding(TypedContent tc, Configuration config)
 private newtype TAccessPathApprox =
   TNil(DataFlowType t) or
   TConsNil(TypedContent tc, DataFlowType t) {
-    Stage3::consCand(tc, TFrontNil(t), _) and
+    Stage4::consCand(tc, TFrontNil(t), _) and
     not expensiveLen2unfolding(tc, _)
   } or
   TConsCons(TypedContent tc1, TypedContent tc2, int len) {
-    Stage3::consCand(tc1, TFrontHead(tc2), _) and
+    Stage4::consCand(tc1, TFrontHead(tc2), _) and
     len in [2 .. accessPathLimit()] and
     not expensiveLen2unfolding(tc1, _)
   } or
@@ -2466,7 +2706,7 @@ private class AccessPathApproxCons1 extends AccessPathApproxCons, TCons1 {
   override AccessPathApprox pop(TypedContent head) {
     head = tc and
     (
-      exists(TypedContent tc2 | Stage3::consCand(tc, TFrontHead(tc2), _) |
+      exists(TypedContent tc2 | Stage4::consCand(tc, TFrontHead(tc2), _) |
         result = TConsCons(tc2, _, len - 1)
         or
         len = 2 and
@@ -2477,7 +2717,7 @@ private class AccessPathApproxCons1 extends AccessPathApproxCons, TCons1 {
       or
       exists(DataFlowType t |
         len = 1 and
-        Stage3::consCand(tc, TFrontNil(t), _) and
+        Stage4::consCand(tc, TFrontNil(t), _) and
         result = TNil(t)
       )
     )
@@ -2502,13 +2742,14 @@ private class AccessPathApproxOption extends TAccessPathApproxOption {
   }
 }
 
-private module Stage4Param implements MkStage<Stage3>::StageParam {
-  private module PrevStage = Stage3;
+private module Stage5Param implements MkStage<Stage4>::StageParam {
+  private module PrevStage = Stage4;
 
   class Ap = AccessPathApprox;
 
   class ApNil = AccessPathApproxNil;
 
+  pragma[nomagic]
   PrevStage::Ap getApprox(Ap ap) { result = ap.getFront() }
 
   ApNil getApNil(NodeEx node) {
@@ -2534,7 +2775,9 @@ private module Stage4Param implements MkStage<Stage3>::StageParam {
     NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
     ApNil ap, Configuration config, LocalCc lcc
   ) {
-    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap.getFront(), config, lcc)
+    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap.getType(), config, lcc) and
+    PrevStage::revFlow(node1, pragma[only_bind_into](state1), _, pragma[only_bind_into](config)) and
+    PrevStage::revFlowAlias(node2, pragma[only_bind_into](state2), _, pragma[only_bind_into](config))
   }
 
   pragma[nomagic]
@@ -2571,7 +2814,7 @@ private module Stage4Param implements MkStage<Stage3>::StageParam {
   predicate typecheckStore(Ap ap, DataFlowType contentType) { any() }
 }
 
-private module Stage4 = MkStage<Stage3>::Stage<Stage4Param>;
+private module Stage5 = MkStage<Stage4>::Stage<Stage5Param>;
 
 bindingset[conf, result]
 private Configuration unbindConf(Configuration conf) {
@@ -2585,8 +2828,8 @@ private predicate nodeMayUseSummary0(
 ) {
   exists(AccessPathApprox apa0 |
     c = n.getEnclosingCallable() and
-    Stage4::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
-    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TParameterPositionSome(pos),
+    Stage5::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
+    Stage5::fwdFlow(n, state, any(CallContextCall ccc), TParameterPositionSome(pos),
       TAccessPathApproxSome(apa), apa0, config)
   )
 }
@@ -2596,7 +2839,7 @@ private predicate nodeMayUseSummary(
   NodeEx n, FlowState state, AccessPathApprox apa, Configuration config
 ) {
   exists(DataFlowCallable c, ParameterPosition pos, ParamNodeEx p |
-    Stage4::parameterMayFlowThrough(p, apa, config) and
+    Stage5::parameterMayFlowThrough(p, apa, config) and
     nodeMayUseSummary0(n, c, pos, state, apa, config) and
     p.isParameterOf(c, pos)
   )
@@ -2606,8 +2849,8 @@ private newtype TSummaryCtx =
   TSummaryCtxNone() or
   TSummaryCtxSome(ParamNodeEx p, FlowState state, AccessPath ap) {
     exists(Configuration config |
-      Stage4::parameterMayFlowThrough(p, ap.getApprox(), config) and
-      Stage4::revFlow(p, state, _, config)
+      Stage5::parameterMayFlowThrough(p, ap.getApprox(), config) and
+      Stage5::revFlow(p, state, _, config)
     )
   }
 
@@ -2656,7 +2899,7 @@ private int count1to2unfold(AccessPathApproxCons1 apa, Configuration config) {
     len = apa.len() and
     result =
       strictcount(AccessPathFront apf |
-        Stage4::consCand(tc, any(AccessPathApprox ap | ap.getFront() = apf and ap.len() = len - 1),
+        Stage5::consCand(tc, any(AccessPathApprox ap | ap.getFront() = apf and ap.len() = len - 1),
           config)
       )
   )
@@ -2665,7 +2908,7 @@ private int count1to2unfold(AccessPathApproxCons1 apa, Configuration config) {
 private int countNodesUsingAccessPath(AccessPathApprox apa, Configuration config) {
   result =
     strictcount(NodeEx n, FlowState state |
-      Stage4::revFlow(n, state, apa, config) or nodeMayUseSummary(n, state, apa, config)
+      Stage5::revFlow(n, state, apa, config) or nodeMayUseSummary(n, state, apa, config)
     )
 }
 
@@ -2686,7 +2929,7 @@ private predicate expensiveLen1to2unfolding(AccessPathApproxCons1 apa, Configura
 private AccessPathApprox getATail(AccessPathApprox apa, Configuration config) {
   exists(TypedContent head |
     apa.pop(head) = result and
-    Stage4::consCand(head, result, config)
+    Stage5::consCand(head, result, config)
   )
 }
 
@@ -2768,7 +3011,7 @@ private newtype TPathNode =
     NodeEx node, FlowState state, CallContext cc, SummaryCtx sc, AccessPath ap, Configuration config
   ) {
     // A PathNode is introduced by a source ...
-    Stage4::revFlow(node, state, config) and
+    Stage5::revFlow(node, state, config) and
     sourceNode(node, state, config) and
     (
       if hasSourceCallCtx(config)
@@ -2782,7 +3025,7 @@ private newtype TPathNode =
     exists(PathNodeMid mid |
       pathStep(mid, node, state, cc, sc, ap) and
       pragma[only_bind_into](config) = mid.getConfiguration() and
-      Stage4::revFlow(node, state, ap.getApprox(), pragma[only_bind_into](config))
+      Stage5::revFlow(node, state, ap.getApprox(), pragma[only_bind_into](config))
     )
   } or
   TPathNodeSink(NodeEx node, FlowState state, Configuration config) {
@@ -2924,7 +3167,7 @@ private class AccessPathCons2 extends AccessPath, TAccessPathCons2 {
   override TypedContent getHead() { result = head1 }
 
   override AccessPath getTail() {
-    Stage4::consCand(head1, result.getApprox(), _) and
+    Stage5::consCand(head1, result.getApprox(), _) and
     result.getHead() = head2 and
     result.length() = len - 1
   }
@@ -2955,7 +3198,7 @@ private class AccessPathCons1 extends AccessPath, TAccessPathCons1 {
   override TypedContent getHead() { result = head }
 
   override AccessPath getTail() {
-    Stage4::consCand(head, result.getApprox(), _) and result.length() = len - 1
+    Stage5::consCand(head, result.getApprox(), _) and result.length() = len - 1
   }
 
   override AccessPathFrontHead getFront() { result = TFrontHead(head) }
@@ -3347,7 +3590,8 @@ private predicate pathStep(
     AccessPath ap0, NodeEx midnode, FlowState state0, Configuration conf, LocalCallContext localCC
   |
     pathNode(mid, midnode, state0, cc, sc, ap0, conf, localCC) and
-    localFlowBigStep(midnode, state0, node, state, false, ap.getFront(), conf, localCC) and
+    localFlowBigStep(midnode, state0, node, state, false, ap.(AccessPathNil).getType(), conf,
+      localCC) and
     ap0 instanceof AccessPathNil
   )
   or
@@ -3389,7 +3633,7 @@ private predicate pathReadStep(
 ) {
   ap0 = mid.getAp() and
   tc = ap0.getHead() and
-  Stage4::readStepCand(mid.getNodeEx(), tc.getContent(), node, mid.getConfiguration()) and
+  Stage5::readStepCand(mid.getNodeEx(), tc.getContent(), node, mid.getConfiguration()) and
   state = mid.getState() and
   cc = mid.getCallContext()
 }
@@ -3399,7 +3643,7 @@ private predicate pathStoreStep(
   PathNodeMid mid, NodeEx node, FlowState state, AccessPath ap0, TypedContent tc, CallContext cc
 ) {
   ap0 = mid.getAp() and
-  Stage4::storeStepCand(mid.getNodeEx(), _, tc, node, _, mid.getConfiguration()) and
+  Stage5::storeStepCand(mid.getNodeEx(), _, tc, node, _, mid.getConfiguration()) and
   state = mid.getState() and
   cc = mid.getCallContext()
 }
@@ -3436,7 +3680,7 @@ private NodeEx getAnOutNodeFlow(
   ReturnKindExt kind, DataFlowCall call, AccessPathApprox apa, Configuration config
 ) {
   result.asNode() = kind.getAnOutNode(call) and
-  Stage4::revFlow(result, _, apa, config)
+  Stage5::revFlow(result, _, apa, config)
 }
 
 /**
@@ -3472,7 +3716,7 @@ private predicate parameterCand(
   DataFlowCallable callable, ParameterPosition pos, AccessPathApprox apa, Configuration config
 ) {
   exists(ParamNodeEx p |
-    Stage4::revFlow(p, _, apa, config) and
+    Stage5::revFlow(p, _, apa, config) and
     p.isParameterOf(callable, pos)
   )
 }
@@ -3751,9 +3995,17 @@ predicate stageStats(
   n = 45 and
   Stage4::stats(false, nodes, fields, conscand, states, tuples, config)
   or
-  stage = "5 Fwd" and n = 50 and finalStats(true, nodes, fields, conscand, states, tuples)
+  stage = "5 Fwd" and
+  n = 50 and
+  Stage5::stats(true, nodes, fields, conscand, states, tuples, config)
   or
-  stage = "5 Rev" and n = 55 and finalStats(false, nodes, fields, conscand, states, tuples)
+  stage = "5 Rev" and
+  n = 55 and
+  Stage5::stats(false, nodes, fields, conscand, states, tuples, config)
+  or
+  stage = "6 Fwd" and n = 60 and finalStats(true, nodes, fields, conscand, states, tuples)
+  or
+  stage = "6 Rev" and n = 65 and finalStats(false, nodes, fields, conscand, states, tuples)
 }
 
 private module FlowExploration {
diff --git a/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl2.qll b/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl2.qll
index ccde916a3c2..6741ccc2f06 100644
--- a/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl2.qll
+++ b/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl2.qll
@@ -621,23 +621,6 @@ private predicate parameterFlowThroughAllowed(ParamNodeEx p, ReturnKindExt kind)
   )
 }
 
-/**
- * Holds if flow from a parameter at position `pos` inside `c` to a return node of
- * kind `kind` is allowed.
- *
- * We don't expect a parameter to return stored in itself, unless
- * explicitly allowed
- */
-bindingset[c, pos, kind]
-private predicate parameterFlowThroughAllowed(
-  DataFlowCallable c, ParameterPosition pos, ReturnKindExt kind
-) {
-  exists(ParamNodeEx p |
-    p.isParameterOf(c, pos) and
-    parameterFlowThroughAllowed(p, kind)
-  )
-}
-
 private module Stage1 implements StageSig {
   class Ap = Unit;
 
@@ -980,6 +963,12 @@ private module Stage1 implements StageSig {
   pragma[nomagic]
   predicate revFlow(NodeEx node, Configuration config) { revFlow(node, _, config) }
 
+  pragma[nomagic]
+  predicate revFlowAp(NodeEx node, Ap ap, Configuration config) {
+    revFlow(node, config) and
+    exists(ap)
+  }
+
   bindingset[node, state, config]
   predicate revFlow(NodeEx node, FlowState state, Ap ap, Configuration config) {
     revFlow(node, _, pragma[only_bind_into](config)) and
@@ -1022,9 +1011,13 @@ private module Stage1 implements StageSig {
   }
 
   pragma[nomagic]
-  predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config) {
+  predicate returnMayFlowThrough(
+    RetNodeEx ret, Ap argAp, Ap ap, ReturnKindExt kind, Configuration config
+  ) {
     throughFlowNodeCand(ret, config) and
-    kind = ret.getKind()
+    kind = ret.getKind() and
+    exists(argAp) and
+    exists(ap)
   }
 
   pragma[nomagic]
@@ -1189,6 +1182,8 @@ private signature module StageSig {
 
   predicate revFlow(NodeEx node, Configuration config);
 
+  predicate revFlowAp(NodeEx node, Ap ap, Configuration config);
+
   bindingset[node, state, config]
   predicate revFlow(NodeEx node, FlowState state, Ap ap, Configuration config);
 
@@ -1196,7 +1191,9 @@ private signature module StageSig {
 
   predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config);
 
-  predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config);
+  predicate returnMayFlowThrough(
+    RetNodeEx ret, Ap argAp, Ap ap, ReturnKindExt kind, Configuration config
+  );
 
   predicate storeStepCand(
     NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, DataFlowType contentType,
@@ -1281,21 +1278,43 @@ private module MkStage<StageSig PrevStage> {
     import Param
 
     /* Begin: Stage logic. */
-    bindingset[result, apa]
-    private ApApprox unbindApa(ApApprox apa) {
-      pragma[only_bind_out](apa) = pragma[only_bind_out](result)
+    // use an alias as a workaround for bad functionality-induced joins
+    pragma[nomagic]
+    private predicate revFlowApAlias(NodeEx node, ApApprox apa, Configuration config) {
+      PrevStage::revFlowAp(node, apa, config)
+    }
+
+    pragma[nomagic]
+    private predicate flowIntoCallApa(
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, ApApprox apa,
+      Configuration config
+    ) {
+      flowIntoCall(call, arg, p, allowsFieldFlow, config) and
+      PrevStage::revFlowAp(p, pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
+      revFlowApAlias(arg, pragma[only_bind_into](apa), pragma[only_bind_into](config))
+    }
+
+    pragma[nomagic]
+    private predicate flowOutOfCallApa(
+      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
+      ApApprox apa, Configuration config
+    ) {
+      flowOutOfCall(call, ret, kind, out, allowsFieldFlow, config) and
+      PrevStage::revFlowAp(out, pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
+      revFlowApAlias(ret, pragma[only_bind_into](apa), pragma[only_bind_into](config))
     }
 
     pragma[nomagic]
     private predicate flowThroughOutOfCall(
-      DataFlowCall call, DataFlowCallable c, CcCall ccc, RetNodeEx ret, ReturnKindExt kind,
-      NodeEx out, boolean allowsFieldFlow, Configuration config
+      DataFlowCall call, CcCall ccc, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow,
+      ApApprox argApa, ApApprox apa, Configuration config
     ) {
-      flowOutOfCall(call, ret, kind, out, allowsFieldFlow, pragma[only_bind_into](config)) and
-      PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
-      PrevStage::returnMayFlowThrough(ret, kind, pragma[only_bind_into](config)) and
-      matchesCall(ccc, call) and
-      c = ret.getEnclosingCallable()
+      exists(ReturnKindExt kind |
+        flowOutOfCallApa(call, ret, kind, out, allowsFieldFlow, apa, pragma[only_bind_into](config)) and
+        PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
+        PrevStage::returnMayFlowThrough(ret, argApa, apa, kind, pragma[only_bind_into](config)) and
+        matchesCall(ccc, call)
+      )
     }
 
     /**
@@ -1307,39 +1326,50 @@ private module MkStage<StageSig PrevStage> {
      * corresponding parameter position and access path of that argument, respectively.
      */
     pragma[nomagic]
+    additional predicate fwdFlow(
+      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      Ap ap, ApApprox apa, Configuration config
+    ) {
+      fwdFlow0(node, state, cc, summaryCtx, argAp, ap, apa, config) and
+      PrevStage::revFlow(node, state, apa, config) and
+      filter(node, state, ap, config)
+    }
+
+    pragma[inline]
     additional predicate fwdFlow(
       NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
       Ap ap, Configuration config
     ) {
-      fwdFlow0(node, state, cc, summaryCtx, argAp, ap, config) and
-      PrevStage::revFlow(node, state, unbindApa(getApprox(ap)), config) and
-      filter(node, state, ap, config)
+      fwdFlow(node, state, cc, summaryCtx, argAp, ap, _, config)
     }
 
     pragma[nomagic]
     private predicate fwdFlow0(
       NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      Ap ap, Configuration config
+      Ap ap, ApApprox apa, Configuration config
     ) {
       sourceNode(node, state, config) and
       (if hasSourceCallCtx(config) then cc = ccSomeCall() else cc = ccNone()) and
       argAp = apNone() and
       summaryCtx = TParameterPositionNone() and
-      ap = getApNil(node)
+      ap = getApNil(node) and
+      apa = getApprox(ap)
       or
-      exists(NodeEx mid, FlowState state0, Ap ap0, LocalCc localCc |
-        fwdFlow(mid, state0, cc, summaryCtx, argAp, ap0, config) and
+      exists(NodeEx mid, FlowState state0, Ap ap0, ApApprox apa0, LocalCc localCc |
+        fwdFlow(mid, state0, cc, summaryCtx, argAp, ap0, apa0, config) and
         localCc = getLocalCc(mid, cc)
       |
         localStep(mid, state0, node, state, true, _, config, localCc) and
-        ap = ap0
+        ap = ap0 and
+        apa = apa0
         or
         localStep(mid, state0, node, state, false, ap, config, localCc) and
-        ap0 instanceof ApNil
+        ap0 instanceof ApNil and
+        apa = getApprox(ap)
       )
       or
       exists(NodeEx mid |
-        fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, apa, pragma[only_bind_into](config)) and
         jumpStep(mid, node, config) and
         cc = ccNone() and
         summaryCtx = TParameterPositionNone() and
@@ -1352,7 +1382,8 @@ private module MkStage<StageSig PrevStage> {
         cc = ccNone() and
         summaryCtx = TParameterPositionNone() and
         argAp = apNone() and
-        ap = getApNil(node)
+        ap = getApNil(node) and
+        apa = getApprox(ap)
       )
       or
       exists(NodeEx mid, FlowState state0, ApNil nil |
@@ -1361,32 +1392,32 @@ private module MkStage<StageSig PrevStage> {
         cc = ccNone() and
         summaryCtx = TParameterPositionNone() and
         argAp = apNone() and
-        ap = getApNil(node)
+        ap = getApNil(node) and
+        apa = getApprox(ap)
       )
       or
       // store
       exists(TypedContent tc, Ap ap0 |
         fwdFlowStore(_, ap0, tc, node, state, cc, summaryCtx, argAp, config) and
-        ap = apCons(tc, ap0)
+        ap = apCons(tc, ap0) and
+        apa = getApprox(ap)
       )
       or
       // read
       exists(Ap ap0, Content c |
         fwdFlowRead(ap0, c, _, node, state, cc, summaryCtx, argAp, config) and
-        fwdFlowConsCand(ap0, c, ap, config)
+        fwdFlowConsCand(ap0, c, ap, config) and
+        apa = getApprox(ap)
       )
       or
       // flow into a callable
-      exists(ApApprox apa |
-        fwdFlowIn(_, node, state, _, cc, _, _, ap, config) and
-        apa = getApprox(ap) and
-        if PrevStage::parameterMayFlowThrough(node, apa, config)
-        then (
-          summaryCtx = TParameterPositionSome(node.(ParamNodeEx).getPosition()) and
-          argAp = apSome(ap)
-        ) else (
-          summaryCtx = TParameterPositionNone() and argAp = apNone()
-        )
+      fwdFlowIn(_, node, state, _, cc, _, _, ap, apa, config) and
+      if PrevStage::parameterMayFlowThrough(node, apa, config)
+      then (
+        summaryCtx = TParameterPositionSome(node.(ParamNodeEx).getPosition()) and
+        argAp = apSome(ap)
+      ) else (
+        summaryCtx = TParameterPositionNone() and argAp = apNone()
       )
       or
       // flow out of a callable
@@ -1394,8 +1425,8 @@ private module MkStage<StageSig PrevStage> {
         DataFlowCall call, RetNodeEx ret, boolean allowsFieldFlow, CcNoCall innercc,
         DataFlowCallable inner
       |
-        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, config) and
-        flowOutOfCall(call, ret, _, node, allowsFieldFlow, config) and
+        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, apa, config) and
+        flowOutOfCallApa(call, ret, _, node, allowsFieldFlow, apa, config) and
         inner = ret.getEnclosingCallable() and
         cc = getCallContextReturn(inner, call, innercc) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
@@ -1403,7 +1434,7 @@ private module MkStage<StageSig PrevStage> {
       or
       // flow through a callable
       exists(DataFlowCall call, ParameterPosition summaryCtx0, Ap argAp0 |
-        fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, config) and
+        fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, apa, config) and
         fwdFlowIsEntered(call, cc, summaryCtx, argAp, summaryCtx0, argAp0, config)
       )
     }
@@ -1413,9 +1444,9 @@ private module MkStage<StageSig PrevStage> {
       NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc,
       ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
     ) {
-      exists(DataFlowType contentType |
-        fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, config) and
-        PrevStage::storeStepCand(node1, unbindApa(getApprox(ap1)), tc, node2, contentType, config) and
+      exists(DataFlowType contentType, ApApprox apa1 |
+        fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, apa1, config) and
+        PrevStage::storeStepCand(node1, apa1, tc, node2, contentType, config) and
         typecheckStore(ap1, contentType)
       )
     }
@@ -1433,43 +1464,104 @@ private module MkStage<StageSig PrevStage> {
       )
     }
 
+    private class ApNonNil instanceof Ap {
+      pragma[nomagic]
+      ApNonNil() { not this instanceof ApNil }
+
+      string toString() { result = "" }
+    }
+
+    pragma[nomagic]
+    private predicate fwdFlowRead0(
+      NodeEx node1, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      ApNonNil ap, Configuration config
+    ) {
+      fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
+      PrevStage::readStepCand(node1, _, _, config)
+    }
+
     pragma[nomagic]
     private predicate fwdFlowRead(
       Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc,
       ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
     ) {
-      fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
+      fwdFlowRead0(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, c, node2, config) and
       getHeadContent(ap) = c
     }
 
     pragma[nomagic]
     private predicate fwdFlowIn(
-      DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, Cc innercc,
-      ParameterPositionOption summaryCtx, ApOption argAp, Ap ap, Configuration config
+      DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, CcCall innercc,
+      ParameterPositionOption summaryCtx, ApOption argAp, Ap ap, ApApprox apa, Configuration config
     ) {
       exists(ArgNodeEx arg, boolean allowsFieldFlow |
-        fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, config) and
-        flowIntoCall(call, arg, p, allowsFieldFlow, config) and
+        fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, apa, config) and
+        flowIntoCallApa(call, arg, p, allowsFieldFlow, apa, config) and
         innercc = getCallContextCall(call, p.getEnclosingCallable(), outercc) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
+    pragma[nomagic]
+    private predicate fwdFlowRetFromArg(
+      RetNodeEx ret, FlowState state, CcCall ccc, ParameterPosition summaryCtx, ParamNodeEx p,
+      Ap argAp, ApApprox argApa, Ap ap, ApApprox apa, Configuration config
+    ) {
+      exists(DataFlowCallable c, ReturnKindExt kind |
+        fwdFlow(pragma[only_bind_into](ret), state, ccc,
+          TParameterPositionSome(pragma[only_bind_into](summaryCtx)), apSome(argAp), ap, apa, config) and
+        getApprox(argAp) = argApa and
+        c = ret.getEnclosingCallable() and
+        kind = ret.getKind() and
+        p.isParameterOf(c, pragma[only_bind_into](summaryCtx)) and
+        parameterFlowThroughAllowed(p, kind)
+      )
+    }
+
+    pragma[inline]
+    private predicate fwdFlowInMayFlowThrough(
+      DataFlowCall call, Cc cc, CcCall innerCc, ParameterPositionOption summaryCtx, ApOption argAp,
+      ParamNodeEx param, Ap ap, ApApprox apa, Configuration config
+    ) {
+      fwdFlowIn(call, pragma[only_bind_into](param), _, cc, innerCc, summaryCtx, argAp, ap,
+        pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
+      PrevStage::parameterMayFlowThrough(param, apa, config)
+    }
+
+    // dedup before joining with `flowThroughOutOfCall`
+    pragma[nomagic]
+    private predicate fwdFlowInMayFlowThroughProj(
+      DataFlowCall call, CcCall innerCc, ApApprox apa, Configuration config
+    ) {
+      fwdFlowInMayFlowThrough(call, _, innerCc, _, _, _, _, apa, config)
+    }
+
+    /**
+     * Same as `flowThroughOutOfCall`, but restricted to calls that are reached
+     * in the flow covered by `fwdFlow`, where data might flow through the target
+     * callable and back out at `call`.
+     */
+    pragma[nomagic]
+    private predicate fwdFlowThroughOutOfCall(
+      DataFlowCall call, CcCall ccc, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow,
+      ApApprox argApa, ApApprox apa, Configuration config
+    ) {
+      fwdFlowInMayFlowThroughProj(call, ccc, argApa, config) and
+      flowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, argApa, apa, config)
+    }
+
     pragma[nomagic]
     private predicate fwdFlowOutFromArg(
       DataFlowCall call, NodeEx out, FlowState state, ParameterPosition summaryCtx, Ap argAp, Ap ap,
-      Configuration config
+      ApApprox apa, Configuration config
     ) {
-      exists(
-        DataFlowCallable c, RetNodeEx ret, ReturnKindExt kind, boolean allowsFieldFlow, CcCall ccc
-      |
-        fwdFlow(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc),
-          TParameterPositionSome(pragma[only_bind_into](summaryCtx)), apSome(argAp), ap, config) and
-        flowThroughOutOfCall(call, pragma[only_bind_into](c), ccc, ret, kind, out, allowsFieldFlow,
+      exists(RetNodeEx ret, boolean allowsFieldFlow, CcCall ccc, ApApprox argApa |
+        fwdFlowRetFromArg(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc),
+          summaryCtx, _, argAp, pragma[only_bind_into](argApa), ap, pragma[only_bind_into](apa),
           config) and
-        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
-        parameterFlowThroughAllowed(c, pragma[only_bind_into](summaryCtx), kind)
+        fwdFlowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, argApa, apa, config) and
+        (if allowsFieldFlow = false then ap instanceof ApNil else any())
       )
     }
 
@@ -1483,8 +1575,7 @@ private module MkStage<StageSig PrevStage> {
       ParameterPosition pos, Ap ap, Configuration config
     ) {
       exists(ParamNodeEx param |
-        fwdFlowIn(call, param, _, cc, _, summaryCtx, argAp, ap, config) and
-        PrevStage::parameterMayFlowThrough(param, unbindApa(getApprox(ap)), config) and
+        fwdFlowInMayFlowThrough(call, cc, _, summaryCtx, argAp, param, ap, _, config) and
         pos = param.getPosition()
       )
     }
@@ -1505,41 +1596,55 @@ private module MkStage<StageSig PrevStage> {
       fwdFlowConsCand(ap1, c, ap2, config)
     }
 
-    pragma[nomagic]
-    private predicate returnFlowsThrough0(
-      RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, DataFlowCallable c,
-      ParameterPosition ppos, Ap argAp, Ap ap, Configuration config
-    ) {
-      exists(boolean allowsFieldFlow |
-        fwdFlow(ret, state, ccc, TParameterPositionSome(ppos), apSome(argAp), ap, config) and
-        flowThroughOutOfCall(_, c, _, pragma[only_bind_into](ret), kind, _, allowsFieldFlow,
-          pragma[only_bind_into](config)) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
-      )
-    }
-
     pragma[nomagic]
     private predicate returnFlowsThrough(
       RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, ParamNodeEx p, Ap argAp,
       Ap ap, Configuration config
     ) {
-      exists(DataFlowCallable c, ParameterPosition ppos |
-        returnFlowsThrough0(ret, kind, state, ccc, c, ppos, argAp, ap, config) and
-        p.isParameterOf(c, ppos) and
-        parameterFlowThroughAllowed(p, kind)
+      exists(boolean allowsFieldFlow, ApApprox argApa, ApApprox apa |
+        fwdFlowRetFromArg(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc), _, p,
+          argAp, pragma[only_bind_into](argApa), ap, pragma[only_bind_into](apa), config) and
+        kind = ret.getKind() and
+        fwdFlowThroughOutOfCall(_, ccc, ret, _, allowsFieldFlow, argApa, apa, config) and
+        (if allowsFieldFlow = false then ap instanceof ApNil else any())
       )
     }
 
     pragma[nomagic]
     private predicate flowThroughIntoCall(
-      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp,
+      Configuration config
     ) {
-      exists(Ap argAp |
-        flowIntoCall(call, pragma[only_bind_into](arg), pragma[only_bind_into](p), allowsFieldFlow,
+      exists(ApApprox argApa |
+        flowIntoCallApa(call, pragma[only_bind_into](arg), pragma[only_bind_into](p),
+          allowsFieldFlow, argApa, pragma[only_bind_into](config)) and
+        fwdFlow(arg, _, _, _, _, pragma[only_bind_into](argAp), argApa,
           pragma[only_bind_into](config)) and
-        fwdFlow(arg, _, _, _, _, pragma[only_bind_into](argAp), pragma[only_bind_into](config)) and
         returnFlowsThrough(_, _, _, _, p, pragma[only_bind_into](argAp), _,
-          pragma[only_bind_into](config))
+          pragma[only_bind_into](config)) and
+        if allowsFieldFlow = false then argAp instanceof ApNil else any()
+      )
+    }
+
+    pragma[nomagic]
+    private predicate flowIntoCallAp(
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap ap,
+      Configuration config
+    ) {
+      exists(ApApprox apa |
+        flowIntoCallApa(call, arg, p, allowsFieldFlow, apa, config) and
+        fwdFlow(arg, _, _, _, _, ap, apa, config)
+      )
+    }
+
+    pragma[nomagic]
+    private predicate flowOutOfCallAp(
+      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
+      Ap ap, Configuration config
+    ) {
+      exists(ApApprox apa |
+        flowOutOfCallApa(call, ret, kind, out, allowsFieldFlow, apa, config) and
+        fwdFlow(ret, _, _, _, _, ap, apa, config)
       )
     }
 
@@ -1628,7 +1733,7 @@ private module MkStage<StageSig PrevStage> {
       // flow into a callable
       exists(ParamNodeEx p, boolean allowsFieldFlow |
         revFlow(p, state, TReturnCtxNone(), returnAp, ap, config) and
-        flowIntoCall(_, node, p, allowsFieldFlow, config) and
+        flowIntoCallAp(_, node, p, allowsFieldFlow, ap, config) and
         (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
         returnCtx = TReturnCtxNone()
       )
@@ -1682,22 +1787,41 @@ private module MkStage<StageSig PrevStage> {
     ) {
       exists(NodeEx out, boolean allowsFieldFlow |
         revFlow(out, state, returnCtx, returnAp, ap, config) and
-        flowOutOfCall(call, ret, kind, out, allowsFieldFlow, config) and
+        flowOutOfCallAp(call, ret, kind, out, allowsFieldFlow, ap, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
+    /**
+     * Same as `flowThroughIntoCall`, but restricted to calls that are reached
+     * in the flow covered by `revFlow`, where data might flow through the target
+     * callable and back out at `call`.
+     */
+    pragma[nomagic]
+    private predicate revFlowThroughIntoCall(
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp,
+      Configuration config
+    ) {
+      flowThroughIntoCall(call, arg, p, allowsFieldFlow, argAp, config) and
+      revFlowIsReturned(call, _, _, _, _, config)
+    }
+
+    pragma[nomagic]
+    private predicate revFlowParamToReturn(
+      ParamNodeEx p, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap, Configuration config
+    ) {
+      revFlow(p, state, TReturnCtxMaybeFlowThrough(kind), apSome(returnAp), ap, config) and
+      parameterFlowThroughAllowed(p, kind)
+    }
+
     pragma[nomagic]
     private predicate revFlowInToReturn(
       DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap,
       Configuration config
     ) {
       exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(pragma[only_bind_into](p), state,
-          TReturnCtxMaybeFlowThrough(pragma[only_bind_into](kind)), apSome(returnAp), ap, config) and
-        flowThroughIntoCall(call, arg, p, allowsFieldFlow, config) and
-        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
-        parameterFlowThroughAllowed(p, kind)
+        revFlowParamToReturn(p, state, kind, returnAp, ap, config) and
+        revFlowThroughIntoCall(call, arg, p, allowsFieldFlow, ap, config)
       )
     }
 
@@ -1750,6 +1874,11 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     predicate revFlow(NodeEx node, Configuration config) { revFlow(node, _, _, _, _, config) }
 
+    pragma[nomagic]
+    predicate revFlowAp(NodeEx node, Ap ap, Configuration config) {
+      revFlow(node, _, _, _, ap, config)
+    }
+
     // use an alias as a workaround for bad functionality-induced joins
     pragma[nomagic]
     additional predicate revFlowAlias(NodeEx node, Configuration config) {
@@ -1786,9 +1915,9 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate parameterFlowsThroughRev(
-      ParamNodeEx p, Ap ap, ReturnKindExt kind, Configuration config
+      ParamNodeEx p, Ap ap, ReturnKindExt kind, Ap returnAp, Configuration config
     ) {
-      revFlow(p, _, TReturnCtxMaybeFlowThrough(kind), apSome(_), ap, config) and
+      revFlow(p, _, TReturnCtxMaybeFlowThrough(kind), apSome(returnAp), ap, config) and
       parameterFlowThroughAllowed(p, kind)
     }
 
@@ -1796,27 +1925,36 @@ private module MkStage<StageSig PrevStage> {
     predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
       exists(RetNodeEx ret, ReturnKindExt kind |
         returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
-        parameterFlowsThroughRev(p, ap, kind, config)
+        parameterFlowsThroughRev(p, ap, kind, _, config)
       )
     }
 
     pragma[nomagic]
-    predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config) {
-      exists(ParamNodeEx p, Ap ap |
-        returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
-        parameterFlowsThroughRev(p, ap, kind, config)
+    predicate returnMayFlowThrough(
+      RetNodeEx ret, Ap argAp, Ap ap, ReturnKindExt kind, Configuration config
+    ) {
+      exists(ParamNodeEx p |
+        returnFlowsThrough(ret, kind, _, _, p, argAp, ap, config) and
+        parameterFlowsThroughRev(p, argAp, kind, ap, config)
+      )
+    }
+
+    pragma[nomagic]
+    predicate revFlowInToReturnIsReturned(
+      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnCtx returnCtx, ApOption returnAp,
+      Ap ap, Configuration config
+    ) {
+      exists(ReturnKindExt returnKind0, Ap returnAp0 |
+        revFlowInToReturn(call, arg, state, returnKind0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
       )
     }
 
     pragma[nomagic]
     predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
-      exists(
-        ReturnKindExt returnKind0, Ap returnAp0, ArgNodeEx arg, FlowState state,
-        ReturnCtx returnCtx, ApOption returnAp, Ap ap
-      |
+      exists(ArgNodeEx arg, FlowState state, ReturnCtx returnCtx, ApOption returnAp, Ap ap |
         revFlow(arg, state, returnCtx, returnAp, ap, config) and
-        revFlowInToReturn(call, arg, state, returnKind0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
+        revFlowInToReturnIsReturned(call, arg, state, returnCtx, returnAp, ap, config)
       )
     }
 
@@ -2179,16 +2317,16 @@ private module LocalFlowBigStep {
   pragma[nomagic]
   predicate localFlowBigStep(
     NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
-    AccessPathFrontNil apf, Configuration config, LocalCallContext callContext
+    DataFlowType t, Configuration config, LocalCallContext callContext
   ) {
-    localFlowStepPlus(node1, state1, node2, preservesValue, apf.getType(), config, callContext) and
+    localFlowStepPlus(node1, state1, node2, preservesValue, t, config, callContext) and
     localFlowExit(node2, state1, config) and
     state1 = state2
     or
     additionalLocalFlowStepNodeCand2(node1, state1, node2, state2, config) and
     state1 != state2 and
     preservesValue = false and
-    apf = TFrontNil(node2.getDataFlowType()) and
+    t = node2.getDataFlowType() and
     callContext.relevantFor(node1.getEnclosingCallable()) and
     not exists(DataFlowCall call | call = callContext.(LocalCallContextSpecificCall).getCall() |
       isUnreachableInCallCached(node1.asNode(), call) or
@@ -2202,11 +2340,87 @@ private import LocalFlowBigStep
 private module Stage3Param implements MkStage<Stage2>::StageParam {
   private module PrevStage = Stage2;
 
+  class Ap = ApproxAccessPathFront;
+
+  class ApNil = ApproxAccessPathFrontNil;
+
+  PrevStage::Ap getApprox(Ap ap) { result = ap.toBoolNonEmpty() }
+
+  ApNil getApNil(NodeEx node) {
+    PrevStage::revFlow(node, _) and result = TApproxFrontNil(node.getDataFlowType())
+  }
+
+  bindingset[tc, tail]
+  Ap apCons(TypedContent tc, Ap tail) { result.getAHead() = tc and exists(tail) }
+
+  pragma[noinline]
+  Content getHeadContent(Ap ap) { result = ap.getAHead().getContent() }
+
+  class ApOption = ApproxAccessPathFrontOption;
+
+  ApOption apNone() { result = TApproxAccessPathFrontNone() }
+
+  ApOption apSome(Ap ap) { result = TApproxAccessPathFrontSome(ap) }
+
+  import BooleanCallContext
+
+  predicate localStep(
+    NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
+    ApproxAccessPathFrontNil ap, Configuration config, LocalCc lcc
+  ) {
+    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap.getType(), config, _) and
+    exists(lcc)
+  }
+
+  predicate flowOutOfCall = flowOutOfCallNodeCand2/6;
+
+  predicate flowIntoCall = flowIntoCallNodeCand2/5;
+
+  pragma[nomagic]
+  private predicate expectsContentCand(NodeEx node, Ap ap, Configuration config) {
+    exists(Content c |
+      PrevStage::revFlow(node, pragma[only_bind_into](config)) and
+      PrevStage::readStepCand(_, c, _, pragma[only_bind_into](config)) and
+      expectsContentEx(node, c) and
+      c = ap.getAHead().getContent()
+    )
+  }
+
+  pragma[nomagic]
+  private predicate castingNodeEx(NodeEx node) { node.asNode() instanceof CastingNode }
+
+  bindingset[node, state, ap, config]
+  predicate filter(NodeEx node, FlowState state, Ap ap, Configuration config) {
+    exists(state) and
+    exists(config) and
+    (if castingNodeEx(node) then compatibleTypes(node.getDataFlowType(), ap.getType()) else any()) and
+    (
+      notExpectsContent(node)
+      or
+      expectsContentCand(node, ap, config)
+    )
+  }
+
+  bindingset[ap, contentType]
+  predicate typecheckStore(Ap ap, DataFlowType contentType) {
+    // We need to typecheck stores here, since reverse flow through a getter
+    // might have a different type here compared to inside the getter.
+    compatibleTypes(ap.getType(), contentType)
+  }
+}
+
+private module Stage3 implements StageSig {
+  import MkStage<Stage2>::Stage<Stage3Param>
+}
+
+private module Stage4Param implements MkStage<Stage3>::StageParam {
+  private module PrevStage = Stage3;
+
   class Ap = AccessPathFront;
 
   class ApNil = AccessPathFrontNil;
 
-  PrevStage::Ap getApprox(Ap ap) { result = ap.toBoolNonEmpty() }
+  PrevStage::Ap getApprox(Ap ap) { result = ap.toApprox() }
 
   ApNil getApNil(NodeEx node) {
     PrevStage::revFlow(node, _) and result = TFrontNil(node.getDataFlowType())
@@ -2226,16 +2440,42 @@ private module Stage3Param implements MkStage<Stage2>::StageParam {
 
   import BooleanCallContext
 
+  pragma[nomagic]
   predicate localStep(
     NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
     ApNil ap, Configuration config, LocalCc lcc
   ) {
-    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap, config, _) and exists(lcc)
+    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap.getType(), config, _) and
+    PrevStage::revFlow(node1, pragma[only_bind_into](state1), _, pragma[only_bind_into](config)) and
+    PrevStage::revFlowAlias(node2, pragma[only_bind_into](state2), _, pragma[only_bind_into](config)) and
+    exists(lcc)
   }
 
-  predicate flowOutOfCall = flowOutOfCallNodeCand2/6;
+  pragma[nomagic]
+  predicate flowOutOfCall(
+    DataFlowCall call, RetNodeEx node1, ReturnKindExt kind, NodeEx node2, boolean allowsFieldFlow,
+    Configuration config
+  ) {
+    exists(FlowState state |
+      flowOutOfCallNodeCand2(call, node1, kind, node2, allowsFieldFlow, config) and
+      PrevStage::revFlow(node2, pragma[only_bind_into](state), _, pragma[only_bind_into](config)) and
+      PrevStage::revFlowAlias(node1, pragma[only_bind_into](state), _,
+        pragma[only_bind_into](config))
+    )
+  }
 
-  predicate flowIntoCall = flowIntoCallNodeCand2/5;
+  pragma[nomagic]
+  predicate flowIntoCall(
+    DataFlowCall call, ArgNodeEx node1, ParamNodeEx node2, boolean allowsFieldFlow,
+    Configuration config
+  ) {
+    exists(FlowState state |
+      flowIntoCallNodeCand2(call, node1, node2, allowsFieldFlow, config) and
+      PrevStage::revFlow(node2, pragma[only_bind_into](state), _, pragma[only_bind_into](config)) and
+      PrevStage::revFlowAlias(node1, pragma[only_bind_into](state), _,
+        pragma[only_bind_into](config))
+    )
+  }
 
   pragma[nomagic]
   private predicate clearSet(NodeEx node, ContentSet c, Configuration config) {
@@ -2291,8 +2531,8 @@ private module Stage3Param implements MkStage<Stage2>::StageParam {
   }
 }
 
-private module Stage3 implements StageSig {
-  import MkStage<Stage2>::Stage<Stage3Param>
+private module Stage4 implements StageSig {
+  import MkStage<Stage3>::Stage<Stage4Param>
 }
 
 /**
@@ -2303,8 +2543,8 @@ private predicate flowCandSummaryCtx(
   NodeEx node, FlowState state, AccessPathFront argApf, Configuration config
 ) {
   exists(AccessPathFront apf |
-    Stage3::revFlow(node, state, TReturnCtxMaybeFlowThrough(_), _, apf, config) and
-    Stage3::fwdFlow(node, state, any(Stage3::CcCall ccc), _, TAccessPathFrontSome(argApf), apf,
+    Stage4::revFlow(node, state, TReturnCtxMaybeFlowThrough(_), _, apf, config) and
+    Stage4::fwdFlow(node, state, any(Stage4::CcCall ccc), _, TAccessPathFrontSome(argApf), apf,
       config)
   )
 }
@@ -2315,10 +2555,10 @@ private predicate flowCandSummaryCtx(
  */
 private predicate expensiveLen2unfolding(TypedContent tc, Configuration config) {
   exists(int tails, int nodes, int apLimit, int tupleLimit |
-    tails = strictcount(AccessPathFront apf | Stage3::consCand(tc, apf, config)) and
+    tails = strictcount(AccessPathFront apf | Stage4::consCand(tc, apf, config)) and
     nodes =
       strictcount(NodeEx n, FlowState state |
-        Stage3::revFlow(n, state, any(AccessPathFrontHead apf | apf.getHead() = tc), config)
+        Stage4::revFlow(n, state, any(AccessPathFrontHead apf | apf.getHead() = tc), config)
         or
         flowCandSummaryCtx(n, state, any(AccessPathFrontHead apf | apf.getHead() = tc), config)
       ) and
@@ -2332,11 +2572,11 @@ private predicate expensiveLen2unfolding(TypedContent tc, Configuration config)
 private newtype TAccessPathApprox =
   TNil(DataFlowType t) or
   TConsNil(TypedContent tc, DataFlowType t) {
-    Stage3::consCand(tc, TFrontNil(t), _) and
+    Stage4::consCand(tc, TFrontNil(t), _) and
     not expensiveLen2unfolding(tc, _)
   } or
   TConsCons(TypedContent tc1, TypedContent tc2, int len) {
-    Stage3::consCand(tc1, TFrontHead(tc2), _) and
+    Stage4::consCand(tc1, TFrontHead(tc2), _) and
     len in [2 .. accessPathLimit()] and
     not expensiveLen2unfolding(tc1, _)
   } or
@@ -2466,7 +2706,7 @@ private class AccessPathApproxCons1 extends AccessPathApproxCons, TCons1 {
   override AccessPathApprox pop(TypedContent head) {
     head = tc and
     (
-      exists(TypedContent tc2 | Stage3::consCand(tc, TFrontHead(tc2), _) |
+      exists(TypedContent tc2 | Stage4::consCand(tc, TFrontHead(tc2), _) |
         result = TConsCons(tc2, _, len - 1)
         or
         len = 2 and
@@ -2477,7 +2717,7 @@ private class AccessPathApproxCons1 extends AccessPathApproxCons, TCons1 {
       or
       exists(DataFlowType t |
         len = 1 and
-        Stage3::consCand(tc, TFrontNil(t), _) and
+        Stage4::consCand(tc, TFrontNil(t), _) and
         result = TNil(t)
       )
     )
@@ -2502,13 +2742,14 @@ private class AccessPathApproxOption extends TAccessPathApproxOption {
   }
 }
 
-private module Stage4Param implements MkStage<Stage3>::StageParam {
-  private module PrevStage = Stage3;
+private module Stage5Param implements MkStage<Stage4>::StageParam {
+  private module PrevStage = Stage4;
 
   class Ap = AccessPathApprox;
 
   class ApNil = AccessPathApproxNil;
 
+  pragma[nomagic]
   PrevStage::Ap getApprox(Ap ap) { result = ap.getFront() }
 
   ApNil getApNil(NodeEx node) {
@@ -2534,7 +2775,9 @@ private module Stage4Param implements MkStage<Stage3>::StageParam {
     NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
     ApNil ap, Configuration config, LocalCc lcc
   ) {
-    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap.getFront(), config, lcc)
+    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap.getType(), config, lcc) and
+    PrevStage::revFlow(node1, pragma[only_bind_into](state1), _, pragma[only_bind_into](config)) and
+    PrevStage::revFlowAlias(node2, pragma[only_bind_into](state2), _, pragma[only_bind_into](config))
   }
 
   pragma[nomagic]
@@ -2571,7 +2814,7 @@ private module Stage4Param implements MkStage<Stage3>::StageParam {
   predicate typecheckStore(Ap ap, DataFlowType contentType) { any() }
 }
 
-private module Stage4 = MkStage<Stage3>::Stage<Stage4Param>;
+private module Stage5 = MkStage<Stage4>::Stage<Stage5Param>;
 
 bindingset[conf, result]
 private Configuration unbindConf(Configuration conf) {
@@ -2585,8 +2828,8 @@ private predicate nodeMayUseSummary0(
 ) {
   exists(AccessPathApprox apa0 |
     c = n.getEnclosingCallable() and
-    Stage4::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
-    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TParameterPositionSome(pos),
+    Stage5::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
+    Stage5::fwdFlow(n, state, any(CallContextCall ccc), TParameterPositionSome(pos),
       TAccessPathApproxSome(apa), apa0, config)
   )
 }
@@ -2596,7 +2839,7 @@ private predicate nodeMayUseSummary(
   NodeEx n, FlowState state, AccessPathApprox apa, Configuration config
 ) {
   exists(DataFlowCallable c, ParameterPosition pos, ParamNodeEx p |
-    Stage4::parameterMayFlowThrough(p, apa, config) and
+    Stage5::parameterMayFlowThrough(p, apa, config) and
     nodeMayUseSummary0(n, c, pos, state, apa, config) and
     p.isParameterOf(c, pos)
   )
@@ -2606,8 +2849,8 @@ private newtype TSummaryCtx =
   TSummaryCtxNone() or
   TSummaryCtxSome(ParamNodeEx p, FlowState state, AccessPath ap) {
     exists(Configuration config |
-      Stage4::parameterMayFlowThrough(p, ap.getApprox(), config) and
-      Stage4::revFlow(p, state, _, config)
+      Stage5::parameterMayFlowThrough(p, ap.getApprox(), config) and
+      Stage5::revFlow(p, state, _, config)
     )
   }
 
@@ -2656,7 +2899,7 @@ private int count1to2unfold(AccessPathApproxCons1 apa, Configuration config) {
     len = apa.len() and
     result =
       strictcount(AccessPathFront apf |
-        Stage4::consCand(tc, any(AccessPathApprox ap | ap.getFront() = apf and ap.len() = len - 1),
+        Stage5::consCand(tc, any(AccessPathApprox ap | ap.getFront() = apf and ap.len() = len - 1),
           config)
       )
   )
@@ -2665,7 +2908,7 @@ private int count1to2unfold(AccessPathApproxCons1 apa, Configuration config) {
 private int countNodesUsingAccessPath(AccessPathApprox apa, Configuration config) {
   result =
     strictcount(NodeEx n, FlowState state |
-      Stage4::revFlow(n, state, apa, config) or nodeMayUseSummary(n, state, apa, config)
+      Stage5::revFlow(n, state, apa, config) or nodeMayUseSummary(n, state, apa, config)
     )
 }
 
@@ -2686,7 +2929,7 @@ private predicate expensiveLen1to2unfolding(AccessPathApproxCons1 apa, Configura
 private AccessPathApprox getATail(AccessPathApprox apa, Configuration config) {
   exists(TypedContent head |
     apa.pop(head) = result and
-    Stage4::consCand(head, result, config)
+    Stage5::consCand(head, result, config)
   )
 }
 
@@ -2768,7 +3011,7 @@ private newtype TPathNode =
     NodeEx node, FlowState state, CallContext cc, SummaryCtx sc, AccessPath ap, Configuration config
   ) {
     // A PathNode is introduced by a source ...
-    Stage4::revFlow(node, state, config) and
+    Stage5::revFlow(node, state, config) and
     sourceNode(node, state, config) and
     (
       if hasSourceCallCtx(config)
@@ -2782,7 +3025,7 @@ private newtype TPathNode =
     exists(PathNodeMid mid |
       pathStep(mid, node, state, cc, sc, ap) and
       pragma[only_bind_into](config) = mid.getConfiguration() and
-      Stage4::revFlow(node, state, ap.getApprox(), pragma[only_bind_into](config))
+      Stage5::revFlow(node, state, ap.getApprox(), pragma[only_bind_into](config))
     )
   } or
   TPathNodeSink(NodeEx node, FlowState state, Configuration config) {
@@ -2924,7 +3167,7 @@ private class AccessPathCons2 extends AccessPath, TAccessPathCons2 {
   override TypedContent getHead() { result = head1 }
 
   override AccessPath getTail() {
-    Stage4::consCand(head1, result.getApprox(), _) and
+    Stage5::consCand(head1, result.getApprox(), _) and
     result.getHead() = head2 and
     result.length() = len - 1
   }
@@ -2955,7 +3198,7 @@ private class AccessPathCons1 extends AccessPath, TAccessPathCons1 {
   override TypedContent getHead() { result = head }
 
   override AccessPath getTail() {
-    Stage4::consCand(head, result.getApprox(), _) and result.length() = len - 1
+    Stage5::consCand(head, result.getApprox(), _) and result.length() = len - 1
   }
 
   override AccessPathFrontHead getFront() { result = TFrontHead(head) }
@@ -3347,7 +3590,8 @@ private predicate pathStep(
     AccessPath ap0, NodeEx midnode, FlowState state0, Configuration conf, LocalCallContext localCC
   |
     pathNode(mid, midnode, state0, cc, sc, ap0, conf, localCC) and
-    localFlowBigStep(midnode, state0, node, state, false, ap.getFront(), conf, localCC) and
+    localFlowBigStep(midnode, state0, node, state, false, ap.(AccessPathNil).getType(), conf,
+      localCC) and
     ap0 instanceof AccessPathNil
   )
   or
@@ -3389,7 +3633,7 @@ private predicate pathReadStep(
 ) {
   ap0 = mid.getAp() and
   tc = ap0.getHead() and
-  Stage4::readStepCand(mid.getNodeEx(), tc.getContent(), node, mid.getConfiguration()) and
+  Stage5::readStepCand(mid.getNodeEx(), tc.getContent(), node, mid.getConfiguration()) and
   state = mid.getState() and
   cc = mid.getCallContext()
 }
@@ -3399,7 +3643,7 @@ private predicate pathStoreStep(
   PathNodeMid mid, NodeEx node, FlowState state, AccessPath ap0, TypedContent tc, CallContext cc
 ) {
   ap0 = mid.getAp() and
-  Stage4::storeStepCand(mid.getNodeEx(), _, tc, node, _, mid.getConfiguration()) and
+  Stage5::storeStepCand(mid.getNodeEx(), _, tc, node, _, mid.getConfiguration()) and
   state = mid.getState() and
   cc = mid.getCallContext()
 }
@@ -3436,7 +3680,7 @@ private NodeEx getAnOutNodeFlow(
   ReturnKindExt kind, DataFlowCall call, AccessPathApprox apa, Configuration config
 ) {
   result.asNode() = kind.getAnOutNode(call) and
-  Stage4::revFlow(result, _, apa, config)
+  Stage5::revFlow(result, _, apa, config)
 }
 
 /**
@@ -3472,7 +3716,7 @@ private predicate parameterCand(
   DataFlowCallable callable, ParameterPosition pos, AccessPathApprox apa, Configuration config
 ) {
   exists(ParamNodeEx p |
-    Stage4::revFlow(p, _, apa, config) and
+    Stage5::revFlow(p, _, apa, config) and
     p.isParameterOf(callable, pos)
   )
 }
@@ -3751,9 +3995,17 @@ predicate stageStats(
   n = 45 and
   Stage4::stats(false, nodes, fields, conscand, states, tuples, config)
   or
-  stage = "5 Fwd" and n = 50 and finalStats(true, nodes, fields, conscand, states, tuples)
+  stage = "5 Fwd" and
+  n = 50 and
+  Stage5::stats(true, nodes, fields, conscand, states, tuples, config)
   or
-  stage = "5 Rev" and n = 55 and finalStats(false, nodes, fields, conscand, states, tuples)
+  stage = "5 Rev" and
+  n = 55 and
+  Stage5::stats(false, nodes, fields, conscand, states, tuples, config)
+  or
+  stage = "6 Fwd" and n = 60 and finalStats(true, nodes, fields, conscand, states, tuples)
+  or
+  stage = "6 Rev" and n = 65 and finalStats(false, nodes, fields, conscand, states, tuples)
 }
 
 private module FlowExploration {
diff --git a/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl3.qll b/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl3.qll
index ccde916a3c2..6741ccc2f06 100644
--- a/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl3.qll
+++ b/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl3.qll
@@ -621,23 +621,6 @@ private predicate parameterFlowThroughAllowed(ParamNodeEx p, ReturnKindExt kind)
   )
 }
 
-/**
- * Holds if flow from a parameter at position `pos` inside `c` to a return node of
- * kind `kind` is allowed.
- *
- * We don't expect a parameter to return stored in itself, unless
- * explicitly allowed
- */
-bindingset[c, pos, kind]
-private predicate parameterFlowThroughAllowed(
-  DataFlowCallable c, ParameterPosition pos, ReturnKindExt kind
-) {
-  exists(ParamNodeEx p |
-    p.isParameterOf(c, pos) and
-    parameterFlowThroughAllowed(p, kind)
-  )
-}
-
 private module Stage1 implements StageSig {
   class Ap = Unit;
 
@@ -980,6 +963,12 @@ private module Stage1 implements StageSig {
   pragma[nomagic]
   predicate revFlow(NodeEx node, Configuration config) { revFlow(node, _, config) }
 
+  pragma[nomagic]
+  predicate revFlowAp(NodeEx node, Ap ap, Configuration config) {
+    revFlow(node, config) and
+    exists(ap)
+  }
+
   bindingset[node, state, config]
   predicate revFlow(NodeEx node, FlowState state, Ap ap, Configuration config) {
     revFlow(node, _, pragma[only_bind_into](config)) and
@@ -1022,9 +1011,13 @@ private module Stage1 implements StageSig {
   }
 
   pragma[nomagic]
-  predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config) {
+  predicate returnMayFlowThrough(
+    RetNodeEx ret, Ap argAp, Ap ap, ReturnKindExt kind, Configuration config
+  ) {
     throughFlowNodeCand(ret, config) and
-    kind = ret.getKind()
+    kind = ret.getKind() and
+    exists(argAp) and
+    exists(ap)
   }
 
   pragma[nomagic]
@@ -1189,6 +1182,8 @@ private signature module StageSig {
 
   predicate revFlow(NodeEx node, Configuration config);
 
+  predicate revFlowAp(NodeEx node, Ap ap, Configuration config);
+
   bindingset[node, state, config]
   predicate revFlow(NodeEx node, FlowState state, Ap ap, Configuration config);
 
@@ -1196,7 +1191,9 @@ private signature module StageSig {
 
   predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config);
 
-  predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config);
+  predicate returnMayFlowThrough(
+    RetNodeEx ret, Ap argAp, Ap ap, ReturnKindExt kind, Configuration config
+  );
 
   predicate storeStepCand(
     NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, DataFlowType contentType,
@@ -1281,21 +1278,43 @@ private module MkStage<StageSig PrevStage> {
     import Param
 
     /* Begin: Stage logic. */
-    bindingset[result, apa]
-    private ApApprox unbindApa(ApApprox apa) {
-      pragma[only_bind_out](apa) = pragma[only_bind_out](result)
+    // use an alias as a workaround for bad functionality-induced joins
+    pragma[nomagic]
+    private predicate revFlowApAlias(NodeEx node, ApApprox apa, Configuration config) {
+      PrevStage::revFlowAp(node, apa, config)
+    }
+
+    pragma[nomagic]
+    private predicate flowIntoCallApa(
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, ApApprox apa,
+      Configuration config
+    ) {
+      flowIntoCall(call, arg, p, allowsFieldFlow, config) and
+      PrevStage::revFlowAp(p, pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
+      revFlowApAlias(arg, pragma[only_bind_into](apa), pragma[only_bind_into](config))
+    }
+
+    pragma[nomagic]
+    private predicate flowOutOfCallApa(
+      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
+      ApApprox apa, Configuration config
+    ) {
+      flowOutOfCall(call, ret, kind, out, allowsFieldFlow, config) and
+      PrevStage::revFlowAp(out, pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
+      revFlowApAlias(ret, pragma[only_bind_into](apa), pragma[only_bind_into](config))
     }
 
     pragma[nomagic]
     private predicate flowThroughOutOfCall(
-      DataFlowCall call, DataFlowCallable c, CcCall ccc, RetNodeEx ret, ReturnKindExt kind,
-      NodeEx out, boolean allowsFieldFlow, Configuration config
+      DataFlowCall call, CcCall ccc, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow,
+      ApApprox argApa, ApApprox apa, Configuration config
     ) {
-      flowOutOfCall(call, ret, kind, out, allowsFieldFlow, pragma[only_bind_into](config)) and
-      PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
-      PrevStage::returnMayFlowThrough(ret, kind, pragma[only_bind_into](config)) and
-      matchesCall(ccc, call) and
-      c = ret.getEnclosingCallable()
+      exists(ReturnKindExt kind |
+        flowOutOfCallApa(call, ret, kind, out, allowsFieldFlow, apa, pragma[only_bind_into](config)) and
+        PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
+        PrevStage::returnMayFlowThrough(ret, argApa, apa, kind, pragma[only_bind_into](config)) and
+        matchesCall(ccc, call)
+      )
     }
 
     /**
@@ -1307,39 +1326,50 @@ private module MkStage<StageSig PrevStage> {
      * corresponding parameter position and access path of that argument, respectively.
      */
     pragma[nomagic]
+    additional predicate fwdFlow(
+      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      Ap ap, ApApprox apa, Configuration config
+    ) {
+      fwdFlow0(node, state, cc, summaryCtx, argAp, ap, apa, config) and
+      PrevStage::revFlow(node, state, apa, config) and
+      filter(node, state, ap, config)
+    }
+
+    pragma[inline]
     additional predicate fwdFlow(
       NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
       Ap ap, Configuration config
     ) {
-      fwdFlow0(node, state, cc, summaryCtx, argAp, ap, config) and
-      PrevStage::revFlow(node, state, unbindApa(getApprox(ap)), config) and
-      filter(node, state, ap, config)
+      fwdFlow(node, state, cc, summaryCtx, argAp, ap, _, config)
     }
 
     pragma[nomagic]
     private predicate fwdFlow0(
       NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      Ap ap, Configuration config
+      Ap ap, ApApprox apa, Configuration config
     ) {
       sourceNode(node, state, config) and
       (if hasSourceCallCtx(config) then cc = ccSomeCall() else cc = ccNone()) and
       argAp = apNone() and
       summaryCtx = TParameterPositionNone() and
-      ap = getApNil(node)
+      ap = getApNil(node) and
+      apa = getApprox(ap)
       or
-      exists(NodeEx mid, FlowState state0, Ap ap0, LocalCc localCc |
-        fwdFlow(mid, state0, cc, summaryCtx, argAp, ap0, config) and
+      exists(NodeEx mid, FlowState state0, Ap ap0, ApApprox apa0, LocalCc localCc |
+        fwdFlow(mid, state0, cc, summaryCtx, argAp, ap0, apa0, config) and
         localCc = getLocalCc(mid, cc)
       |
         localStep(mid, state0, node, state, true, _, config, localCc) and
-        ap = ap0
+        ap = ap0 and
+        apa = apa0
         or
         localStep(mid, state0, node, state, false, ap, config, localCc) and
-        ap0 instanceof ApNil
+        ap0 instanceof ApNil and
+        apa = getApprox(ap)
       )
       or
       exists(NodeEx mid |
-        fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, apa, pragma[only_bind_into](config)) and
         jumpStep(mid, node, config) and
         cc = ccNone() and
         summaryCtx = TParameterPositionNone() and
@@ -1352,7 +1382,8 @@ private module MkStage<StageSig PrevStage> {
         cc = ccNone() and
         summaryCtx = TParameterPositionNone() and
         argAp = apNone() and
-        ap = getApNil(node)
+        ap = getApNil(node) and
+        apa = getApprox(ap)
       )
       or
       exists(NodeEx mid, FlowState state0, ApNil nil |
@@ -1361,32 +1392,32 @@ private module MkStage<StageSig PrevStage> {
         cc = ccNone() and
         summaryCtx = TParameterPositionNone() and
         argAp = apNone() and
-        ap = getApNil(node)
+        ap = getApNil(node) and
+        apa = getApprox(ap)
       )
       or
       // store
       exists(TypedContent tc, Ap ap0 |
         fwdFlowStore(_, ap0, tc, node, state, cc, summaryCtx, argAp, config) and
-        ap = apCons(tc, ap0)
+        ap = apCons(tc, ap0) and
+        apa = getApprox(ap)
       )
       or
       // read
       exists(Ap ap0, Content c |
         fwdFlowRead(ap0, c, _, node, state, cc, summaryCtx, argAp, config) and
-        fwdFlowConsCand(ap0, c, ap, config)
+        fwdFlowConsCand(ap0, c, ap, config) and
+        apa = getApprox(ap)
       )
       or
       // flow into a callable
-      exists(ApApprox apa |
-        fwdFlowIn(_, node, state, _, cc, _, _, ap, config) and
-        apa = getApprox(ap) and
-        if PrevStage::parameterMayFlowThrough(node, apa, config)
-        then (
-          summaryCtx = TParameterPositionSome(node.(ParamNodeEx).getPosition()) and
-          argAp = apSome(ap)
-        ) else (
-          summaryCtx = TParameterPositionNone() and argAp = apNone()
-        )
+      fwdFlowIn(_, node, state, _, cc, _, _, ap, apa, config) and
+      if PrevStage::parameterMayFlowThrough(node, apa, config)
+      then (
+        summaryCtx = TParameterPositionSome(node.(ParamNodeEx).getPosition()) and
+        argAp = apSome(ap)
+      ) else (
+        summaryCtx = TParameterPositionNone() and argAp = apNone()
       )
       or
       // flow out of a callable
@@ -1394,8 +1425,8 @@ private module MkStage<StageSig PrevStage> {
         DataFlowCall call, RetNodeEx ret, boolean allowsFieldFlow, CcNoCall innercc,
         DataFlowCallable inner
       |
-        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, config) and
-        flowOutOfCall(call, ret, _, node, allowsFieldFlow, config) and
+        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, apa, config) and
+        flowOutOfCallApa(call, ret, _, node, allowsFieldFlow, apa, config) and
         inner = ret.getEnclosingCallable() and
         cc = getCallContextReturn(inner, call, innercc) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
@@ -1403,7 +1434,7 @@ private module MkStage<StageSig PrevStage> {
       or
       // flow through a callable
       exists(DataFlowCall call, ParameterPosition summaryCtx0, Ap argAp0 |
-        fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, config) and
+        fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, apa, config) and
         fwdFlowIsEntered(call, cc, summaryCtx, argAp, summaryCtx0, argAp0, config)
       )
     }
@@ -1413,9 +1444,9 @@ private module MkStage<StageSig PrevStage> {
       NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc,
       ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
     ) {
-      exists(DataFlowType contentType |
-        fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, config) and
-        PrevStage::storeStepCand(node1, unbindApa(getApprox(ap1)), tc, node2, contentType, config) and
+      exists(DataFlowType contentType, ApApprox apa1 |
+        fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, apa1, config) and
+        PrevStage::storeStepCand(node1, apa1, tc, node2, contentType, config) and
         typecheckStore(ap1, contentType)
       )
     }
@@ -1433,43 +1464,104 @@ private module MkStage<StageSig PrevStage> {
       )
     }
 
+    private class ApNonNil instanceof Ap {
+      pragma[nomagic]
+      ApNonNil() { not this instanceof ApNil }
+
+      string toString() { result = "" }
+    }
+
+    pragma[nomagic]
+    private predicate fwdFlowRead0(
+      NodeEx node1, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      ApNonNil ap, Configuration config
+    ) {
+      fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
+      PrevStage::readStepCand(node1, _, _, config)
+    }
+
     pragma[nomagic]
     private predicate fwdFlowRead(
       Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc,
       ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
     ) {
-      fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
+      fwdFlowRead0(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, c, node2, config) and
       getHeadContent(ap) = c
     }
 
     pragma[nomagic]
     private predicate fwdFlowIn(
-      DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, Cc innercc,
-      ParameterPositionOption summaryCtx, ApOption argAp, Ap ap, Configuration config
+      DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, CcCall innercc,
+      ParameterPositionOption summaryCtx, ApOption argAp, Ap ap, ApApprox apa, Configuration config
     ) {
       exists(ArgNodeEx arg, boolean allowsFieldFlow |
-        fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, config) and
-        flowIntoCall(call, arg, p, allowsFieldFlow, config) and
+        fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, apa, config) and
+        flowIntoCallApa(call, arg, p, allowsFieldFlow, apa, config) and
         innercc = getCallContextCall(call, p.getEnclosingCallable(), outercc) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
+    pragma[nomagic]
+    private predicate fwdFlowRetFromArg(
+      RetNodeEx ret, FlowState state, CcCall ccc, ParameterPosition summaryCtx, ParamNodeEx p,
+      Ap argAp, ApApprox argApa, Ap ap, ApApprox apa, Configuration config
+    ) {
+      exists(DataFlowCallable c, ReturnKindExt kind |
+        fwdFlow(pragma[only_bind_into](ret), state, ccc,
+          TParameterPositionSome(pragma[only_bind_into](summaryCtx)), apSome(argAp), ap, apa, config) and
+        getApprox(argAp) = argApa and
+        c = ret.getEnclosingCallable() and
+        kind = ret.getKind() and
+        p.isParameterOf(c, pragma[only_bind_into](summaryCtx)) and
+        parameterFlowThroughAllowed(p, kind)
+      )
+    }
+
+    pragma[inline]
+    private predicate fwdFlowInMayFlowThrough(
+      DataFlowCall call, Cc cc, CcCall innerCc, ParameterPositionOption summaryCtx, ApOption argAp,
+      ParamNodeEx param, Ap ap, ApApprox apa, Configuration config
+    ) {
+      fwdFlowIn(call, pragma[only_bind_into](param), _, cc, innerCc, summaryCtx, argAp, ap,
+        pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
+      PrevStage::parameterMayFlowThrough(param, apa, config)
+    }
+
+    // dedup before joining with `flowThroughOutOfCall`
+    pragma[nomagic]
+    private predicate fwdFlowInMayFlowThroughProj(
+      DataFlowCall call, CcCall innerCc, ApApprox apa, Configuration config
+    ) {
+      fwdFlowInMayFlowThrough(call, _, innerCc, _, _, _, _, apa, config)
+    }
+
+    /**
+     * Same as `flowThroughOutOfCall`, but restricted to calls that are reached
+     * in the flow covered by `fwdFlow`, where data might flow through the target
+     * callable and back out at `call`.
+     */
+    pragma[nomagic]
+    private predicate fwdFlowThroughOutOfCall(
+      DataFlowCall call, CcCall ccc, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow,
+      ApApprox argApa, ApApprox apa, Configuration config
+    ) {
+      fwdFlowInMayFlowThroughProj(call, ccc, argApa, config) and
+      flowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, argApa, apa, config)
+    }
+
     pragma[nomagic]
     private predicate fwdFlowOutFromArg(
       DataFlowCall call, NodeEx out, FlowState state, ParameterPosition summaryCtx, Ap argAp, Ap ap,
-      Configuration config
+      ApApprox apa, Configuration config
     ) {
-      exists(
-        DataFlowCallable c, RetNodeEx ret, ReturnKindExt kind, boolean allowsFieldFlow, CcCall ccc
-      |
-        fwdFlow(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc),
-          TParameterPositionSome(pragma[only_bind_into](summaryCtx)), apSome(argAp), ap, config) and
-        flowThroughOutOfCall(call, pragma[only_bind_into](c), ccc, ret, kind, out, allowsFieldFlow,
+      exists(RetNodeEx ret, boolean allowsFieldFlow, CcCall ccc, ApApprox argApa |
+        fwdFlowRetFromArg(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc),
+          summaryCtx, _, argAp, pragma[only_bind_into](argApa), ap, pragma[only_bind_into](apa),
           config) and
-        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
-        parameterFlowThroughAllowed(c, pragma[only_bind_into](summaryCtx), kind)
+        fwdFlowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, argApa, apa, config) and
+        (if allowsFieldFlow = false then ap instanceof ApNil else any())
       )
     }
 
@@ -1483,8 +1575,7 @@ private module MkStage<StageSig PrevStage> {
       ParameterPosition pos, Ap ap, Configuration config
     ) {
       exists(ParamNodeEx param |
-        fwdFlowIn(call, param, _, cc, _, summaryCtx, argAp, ap, config) and
-        PrevStage::parameterMayFlowThrough(param, unbindApa(getApprox(ap)), config) and
+        fwdFlowInMayFlowThrough(call, cc, _, summaryCtx, argAp, param, ap, _, config) and
         pos = param.getPosition()
       )
     }
@@ -1505,41 +1596,55 @@ private module MkStage<StageSig PrevStage> {
       fwdFlowConsCand(ap1, c, ap2, config)
     }
 
-    pragma[nomagic]
-    private predicate returnFlowsThrough0(
-      RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, DataFlowCallable c,
-      ParameterPosition ppos, Ap argAp, Ap ap, Configuration config
-    ) {
-      exists(boolean allowsFieldFlow |
-        fwdFlow(ret, state, ccc, TParameterPositionSome(ppos), apSome(argAp), ap, config) and
-        flowThroughOutOfCall(_, c, _, pragma[only_bind_into](ret), kind, _, allowsFieldFlow,
-          pragma[only_bind_into](config)) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
-      )
-    }
-
     pragma[nomagic]
     private predicate returnFlowsThrough(
       RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, ParamNodeEx p, Ap argAp,
       Ap ap, Configuration config
     ) {
-      exists(DataFlowCallable c, ParameterPosition ppos |
-        returnFlowsThrough0(ret, kind, state, ccc, c, ppos, argAp, ap, config) and
-        p.isParameterOf(c, ppos) and
-        parameterFlowThroughAllowed(p, kind)
+      exists(boolean allowsFieldFlow, ApApprox argApa, ApApprox apa |
+        fwdFlowRetFromArg(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc), _, p,
+          argAp, pragma[only_bind_into](argApa), ap, pragma[only_bind_into](apa), config) and
+        kind = ret.getKind() and
+        fwdFlowThroughOutOfCall(_, ccc, ret, _, allowsFieldFlow, argApa, apa, config) and
+        (if allowsFieldFlow = false then ap instanceof ApNil else any())
       )
     }
 
     pragma[nomagic]
     private predicate flowThroughIntoCall(
-      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp,
+      Configuration config
     ) {
-      exists(Ap argAp |
-        flowIntoCall(call, pragma[only_bind_into](arg), pragma[only_bind_into](p), allowsFieldFlow,
+      exists(ApApprox argApa |
+        flowIntoCallApa(call, pragma[only_bind_into](arg), pragma[only_bind_into](p),
+          allowsFieldFlow, argApa, pragma[only_bind_into](config)) and
+        fwdFlow(arg, _, _, _, _, pragma[only_bind_into](argAp), argApa,
           pragma[only_bind_into](config)) and
-        fwdFlow(arg, _, _, _, _, pragma[only_bind_into](argAp), pragma[only_bind_into](config)) and
         returnFlowsThrough(_, _, _, _, p, pragma[only_bind_into](argAp), _,
-          pragma[only_bind_into](config))
+          pragma[only_bind_into](config)) and
+        if allowsFieldFlow = false then argAp instanceof ApNil else any()
+      )
+    }
+
+    pragma[nomagic]
+    private predicate flowIntoCallAp(
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap ap,
+      Configuration config
+    ) {
+      exists(ApApprox apa |
+        flowIntoCallApa(call, arg, p, allowsFieldFlow, apa, config) and
+        fwdFlow(arg, _, _, _, _, ap, apa, config)
+      )
+    }
+
+    pragma[nomagic]
+    private predicate flowOutOfCallAp(
+      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
+      Ap ap, Configuration config
+    ) {
+      exists(ApApprox apa |
+        flowOutOfCallApa(call, ret, kind, out, allowsFieldFlow, apa, config) and
+        fwdFlow(ret, _, _, _, _, ap, apa, config)
       )
     }
 
@@ -1628,7 +1733,7 @@ private module MkStage<StageSig PrevStage> {
       // flow into a callable
       exists(ParamNodeEx p, boolean allowsFieldFlow |
         revFlow(p, state, TReturnCtxNone(), returnAp, ap, config) and
-        flowIntoCall(_, node, p, allowsFieldFlow, config) and
+        flowIntoCallAp(_, node, p, allowsFieldFlow, ap, config) and
         (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
         returnCtx = TReturnCtxNone()
       )
@@ -1682,22 +1787,41 @@ private module MkStage<StageSig PrevStage> {
     ) {
       exists(NodeEx out, boolean allowsFieldFlow |
         revFlow(out, state, returnCtx, returnAp, ap, config) and
-        flowOutOfCall(call, ret, kind, out, allowsFieldFlow, config) and
+        flowOutOfCallAp(call, ret, kind, out, allowsFieldFlow, ap, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
+    /**
+     * Same as `flowThroughIntoCall`, but restricted to calls that are reached
+     * in the flow covered by `revFlow`, where data might flow through the target
+     * callable and back out at `call`.
+     */
+    pragma[nomagic]
+    private predicate revFlowThroughIntoCall(
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp,
+      Configuration config
+    ) {
+      flowThroughIntoCall(call, arg, p, allowsFieldFlow, argAp, config) and
+      revFlowIsReturned(call, _, _, _, _, config)
+    }
+
+    pragma[nomagic]
+    private predicate revFlowParamToReturn(
+      ParamNodeEx p, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap, Configuration config
+    ) {
+      revFlow(p, state, TReturnCtxMaybeFlowThrough(kind), apSome(returnAp), ap, config) and
+      parameterFlowThroughAllowed(p, kind)
+    }
+
     pragma[nomagic]
     private predicate revFlowInToReturn(
       DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap,
       Configuration config
     ) {
       exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(pragma[only_bind_into](p), state,
-          TReturnCtxMaybeFlowThrough(pragma[only_bind_into](kind)), apSome(returnAp), ap, config) and
-        flowThroughIntoCall(call, arg, p, allowsFieldFlow, config) and
-        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
-        parameterFlowThroughAllowed(p, kind)
+        revFlowParamToReturn(p, state, kind, returnAp, ap, config) and
+        revFlowThroughIntoCall(call, arg, p, allowsFieldFlow, ap, config)
       )
     }
 
@@ -1750,6 +1874,11 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     predicate revFlow(NodeEx node, Configuration config) { revFlow(node, _, _, _, _, config) }
 
+    pragma[nomagic]
+    predicate revFlowAp(NodeEx node, Ap ap, Configuration config) {
+      revFlow(node, _, _, _, ap, config)
+    }
+
     // use an alias as a workaround for bad functionality-induced joins
     pragma[nomagic]
     additional predicate revFlowAlias(NodeEx node, Configuration config) {
@@ -1786,9 +1915,9 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate parameterFlowsThroughRev(
-      ParamNodeEx p, Ap ap, ReturnKindExt kind, Configuration config
+      ParamNodeEx p, Ap ap, ReturnKindExt kind, Ap returnAp, Configuration config
     ) {
-      revFlow(p, _, TReturnCtxMaybeFlowThrough(kind), apSome(_), ap, config) and
+      revFlow(p, _, TReturnCtxMaybeFlowThrough(kind), apSome(returnAp), ap, config) and
       parameterFlowThroughAllowed(p, kind)
     }
 
@@ -1796,27 +1925,36 @@ private module MkStage<StageSig PrevStage> {
     predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
       exists(RetNodeEx ret, ReturnKindExt kind |
         returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
-        parameterFlowsThroughRev(p, ap, kind, config)
+        parameterFlowsThroughRev(p, ap, kind, _, config)
       )
     }
 
     pragma[nomagic]
-    predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config) {
-      exists(ParamNodeEx p, Ap ap |
-        returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
-        parameterFlowsThroughRev(p, ap, kind, config)
+    predicate returnMayFlowThrough(
+      RetNodeEx ret, Ap argAp, Ap ap, ReturnKindExt kind, Configuration config
+    ) {
+      exists(ParamNodeEx p |
+        returnFlowsThrough(ret, kind, _, _, p, argAp, ap, config) and
+        parameterFlowsThroughRev(p, argAp, kind, ap, config)
+      )
+    }
+
+    pragma[nomagic]
+    predicate revFlowInToReturnIsReturned(
+      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnCtx returnCtx, ApOption returnAp,
+      Ap ap, Configuration config
+    ) {
+      exists(ReturnKindExt returnKind0, Ap returnAp0 |
+        revFlowInToReturn(call, arg, state, returnKind0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
       )
     }
 
     pragma[nomagic]
     predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
-      exists(
-        ReturnKindExt returnKind0, Ap returnAp0, ArgNodeEx arg, FlowState state,
-        ReturnCtx returnCtx, ApOption returnAp, Ap ap
-      |
+      exists(ArgNodeEx arg, FlowState state, ReturnCtx returnCtx, ApOption returnAp, Ap ap |
         revFlow(arg, state, returnCtx, returnAp, ap, config) and
-        revFlowInToReturn(call, arg, state, returnKind0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
+        revFlowInToReturnIsReturned(call, arg, state, returnCtx, returnAp, ap, config)
       )
     }
 
@@ -2179,16 +2317,16 @@ private module LocalFlowBigStep {
   pragma[nomagic]
   predicate localFlowBigStep(
     NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
-    AccessPathFrontNil apf, Configuration config, LocalCallContext callContext
+    DataFlowType t, Configuration config, LocalCallContext callContext
   ) {
-    localFlowStepPlus(node1, state1, node2, preservesValue, apf.getType(), config, callContext) and
+    localFlowStepPlus(node1, state1, node2, preservesValue, t, config, callContext) and
     localFlowExit(node2, state1, config) and
     state1 = state2
     or
     additionalLocalFlowStepNodeCand2(node1, state1, node2, state2, config) and
     state1 != state2 and
     preservesValue = false and
-    apf = TFrontNil(node2.getDataFlowType()) and
+    t = node2.getDataFlowType() and
     callContext.relevantFor(node1.getEnclosingCallable()) and
     not exists(DataFlowCall call | call = callContext.(LocalCallContextSpecificCall).getCall() |
       isUnreachableInCallCached(node1.asNode(), call) or
@@ -2202,11 +2340,87 @@ private import LocalFlowBigStep
 private module Stage3Param implements MkStage<Stage2>::StageParam {
   private module PrevStage = Stage2;
 
+  class Ap = ApproxAccessPathFront;
+
+  class ApNil = ApproxAccessPathFrontNil;
+
+  PrevStage::Ap getApprox(Ap ap) { result = ap.toBoolNonEmpty() }
+
+  ApNil getApNil(NodeEx node) {
+    PrevStage::revFlow(node, _) and result = TApproxFrontNil(node.getDataFlowType())
+  }
+
+  bindingset[tc, tail]
+  Ap apCons(TypedContent tc, Ap tail) { result.getAHead() = tc and exists(tail) }
+
+  pragma[noinline]
+  Content getHeadContent(Ap ap) { result = ap.getAHead().getContent() }
+
+  class ApOption = ApproxAccessPathFrontOption;
+
+  ApOption apNone() { result = TApproxAccessPathFrontNone() }
+
+  ApOption apSome(Ap ap) { result = TApproxAccessPathFrontSome(ap) }
+
+  import BooleanCallContext
+
+  predicate localStep(
+    NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
+    ApproxAccessPathFrontNil ap, Configuration config, LocalCc lcc
+  ) {
+    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap.getType(), config, _) and
+    exists(lcc)
+  }
+
+  predicate flowOutOfCall = flowOutOfCallNodeCand2/6;
+
+  predicate flowIntoCall = flowIntoCallNodeCand2/5;
+
+  pragma[nomagic]
+  private predicate expectsContentCand(NodeEx node, Ap ap, Configuration config) {
+    exists(Content c |
+      PrevStage::revFlow(node, pragma[only_bind_into](config)) and
+      PrevStage::readStepCand(_, c, _, pragma[only_bind_into](config)) and
+      expectsContentEx(node, c) and
+      c = ap.getAHead().getContent()
+    )
+  }
+
+  pragma[nomagic]
+  private predicate castingNodeEx(NodeEx node) { node.asNode() instanceof CastingNode }
+
+  bindingset[node, state, ap, config]
+  predicate filter(NodeEx node, FlowState state, Ap ap, Configuration config) {
+    exists(state) and
+    exists(config) and
+    (if castingNodeEx(node) then compatibleTypes(node.getDataFlowType(), ap.getType()) else any()) and
+    (
+      notExpectsContent(node)
+      or
+      expectsContentCand(node, ap, config)
+    )
+  }
+
+  bindingset[ap, contentType]
+  predicate typecheckStore(Ap ap, DataFlowType contentType) {
+    // We need to typecheck stores here, since reverse flow through a getter
+    // might have a different type here compared to inside the getter.
+    compatibleTypes(ap.getType(), contentType)
+  }
+}
+
+private module Stage3 implements StageSig {
+  import MkStage<Stage2>::Stage<Stage3Param>
+}
+
+private module Stage4Param implements MkStage<Stage3>::StageParam {
+  private module PrevStage = Stage3;
+
   class Ap = AccessPathFront;
 
   class ApNil = AccessPathFrontNil;
 
-  PrevStage::Ap getApprox(Ap ap) { result = ap.toBoolNonEmpty() }
+  PrevStage::Ap getApprox(Ap ap) { result = ap.toApprox() }
 
   ApNil getApNil(NodeEx node) {
     PrevStage::revFlow(node, _) and result = TFrontNil(node.getDataFlowType())
@@ -2226,16 +2440,42 @@ private module Stage3Param implements MkStage<Stage2>::StageParam {
 
   import BooleanCallContext
 
+  pragma[nomagic]
   predicate localStep(
     NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
     ApNil ap, Configuration config, LocalCc lcc
   ) {
-    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap, config, _) and exists(lcc)
+    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap.getType(), config, _) and
+    PrevStage::revFlow(node1, pragma[only_bind_into](state1), _, pragma[only_bind_into](config)) and
+    PrevStage::revFlowAlias(node2, pragma[only_bind_into](state2), _, pragma[only_bind_into](config)) and
+    exists(lcc)
   }
 
-  predicate flowOutOfCall = flowOutOfCallNodeCand2/6;
+  pragma[nomagic]
+  predicate flowOutOfCall(
+    DataFlowCall call, RetNodeEx node1, ReturnKindExt kind, NodeEx node2, boolean allowsFieldFlow,
+    Configuration config
+  ) {
+    exists(FlowState state |
+      flowOutOfCallNodeCand2(call, node1, kind, node2, allowsFieldFlow, config) and
+      PrevStage::revFlow(node2, pragma[only_bind_into](state), _, pragma[only_bind_into](config)) and
+      PrevStage::revFlowAlias(node1, pragma[only_bind_into](state), _,
+        pragma[only_bind_into](config))
+    )
+  }
 
-  predicate flowIntoCall = flowIntoCallNodeCand2/5;
+  pragma[nomagic]
+  predicate flowIntoCall(
+    DataFlowCall call, ArgNodeEx node1, ParamNodeEx node2, boolean allowsFieldFlow,
+    Configuration config
+  ) {
+    exists(FlowState state |
+      flowIntoCallNodeCand2(call, node1, node2, allowsFieldFlow, config) and
+      PrevStage::revFlow(node2, pragma[only_bind_into](state), _, pragma[only_bind_into](config)) and
+      PrevStage::revFlowAlias(node1, pragma[only_bind_into](state), _,
+        pragma[only_bind_into](config))
+    )
+  }
 
   pragma[nomagic]
   private predicate clearSet(NodeEx node, ContentSet c, Configuration config) {
@@ -2291,8 +2531,8 @@ private module Stage3Param implements MkStage<Stage2>::StageParam {
   }
 }
 
-private module Stage3 implements StageSig {
-  import MkStage<Stage2>::Stage<Stage3Param>
+private module Stage4 implements StageSig {
+  import MkStage<Stage3>::Stage<Stage4Param>
 }
 
 /**
@@ -2303,8 +2543,8 @@ private predicate flowCandSummaryCtx(
   NodeEx node, FlowState state, AccessPathFront argApf, Configuration config
 ) {
   exists(AccessPathFront apf |
-    Stage3::revFlow(node, state, TReturnCtxMaybeFlowThrough(_), _, apf, config) and
-    Stage3::fwdFlow(node, state, any(Stage3::CcCall ccc), _, TAccessPathFrontSome(argApf), apf,
+    Stage4::revFlow(node, state, TReturnCtxMaybeFlowThrough(_), _, apf, config) and
+    Stage4::fwdFlow(node, state, any(Stage4::CcCall ccc), _, TAccessPathFrontSome(argApf), apf,
       config)
   )
 }
@@ -2315,10 +2555,10 @@ private predicate flowCandSummaryCtx(
  */
 private predicate expensiveLen2unfolding(TypedContent tc, Configuration config) {
   exists(int tails, int nodes, int apLimit, int tupleLimit |
-    tails = strictcount(AccessPathFront apf | Stage3::consCand(tc, apf, config)) and
+    tails = strictcount(AccessPathFront apf | Stage4::consCand(tc, apf, config)) and
     nodes =
       strictcount(NodeEx n, FlowState state |
-        Stage3::revFlow(n, state, any(AccessPathFrontHead apf | apf.getHead() = tc), config)
+        Stage4::revFlow(n, state, any(AccessPathFrontHead apf | apf.getHead() = tc), config)
         or
         flowCandSummaryCtx(n, state, any(AccessPathFrontHead apf | apf.getHead() = tc), config)
       ) and
@@ -2332,11 +2572,11 @@ private predicate expensiveLen2unfolding(TypedContent tc, Configuration config)
 private newtype TAccessPathApprox =
   TNil(DataFlowType t) or
   TConsNil(TypedContent tc, DataFlowType t) {
-    Stage3::consCand(tc, TFrontNil(t), _) and
+    Stage4::consCand(tc, TFrontNil(t), _) and
     not expensiveLen2unfolding(tc, _)
   } or
   TConsCons(TypedContent tc1, TypedContent tc2, int len) {
-    Stage3::consCand(tc1, TFrontHead(tc2), _) and
+    Stage4::consCand(tc1, TFrontHead(tc2), _) and
     len in [2 .. accessPathLimit()] and
     not expensiveLen2unfolding(tc1, _)
   } or
@@ -2466,7 +2706,7 @@ private class AccessPathApproxCons1 extends AccessPathApproxCons, TCons1 {
   override AccessPathApprox pop(TypedContent head) {
     head = tc and
     (
-      exists(TypedContent tc2 | Stage3::consCand(tc, TFrontHead(tc2), _) |
+      exists(TypedContent tc2 | Stage4::consCand(tc, TFrontHead(tc2), _) |
         result = TConsCons(tc2, _, len - 1)
         or
         len = 2 and
@@ -2477,7 +2717,7 @@ private class AccessPathApproxCons1 extends AccessPathApproxCons, TCons1 {
       or
       exists(DataFlowType t |
         len = 1 and
-        Stage3::consCand(tc, TFrontNil(t), _) and
+        Stage4::consCand(tc, TFrontNil(t), _) and
         result = TNil(t)
       )
     )
@@ -2502,13 +2742,14 @@ private class AccessPathApproxOption extends TAccessPathApproxOption {
   }
 }
 
-private module Stage4Param implements MkStage<Stage3>::StageParam {
-  private module PrevStage = Stage3;
+private module Stage5Param implements MkStage<Stage4>::StageParam {
+  private module PrevStage = Stage4;
 
   class Ap = AccessPathApprox;
 
   class ApNil = AccessPathApproxNil;
 
+  pragma[nomagic]
   PrevStage::Ap getApprox(Ap ap) { result = ap.getFront() }
 
   ApNil getApNil(NodeEx node) {
@@ -2534,7 +2775,9 @@ private module Stage4Param implements MkStage<Stage3>::StageParam {
     NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
     ApNil ap, Configuration config, LocalCc lcc
   ) {
-    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap.getFront(), config, lcc)
+    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap.getType(), config, lcc) and
+    PrevStage::revFlow(node1, pragma[only_bind_into](state1), _, pragma[only_bind_into](config)) and
+    PrevStage::revFlowAlias(node2, pragma[only_bind_into](state2), _, pragma[only_bind_into](config))
   }
 
   pragma[nomagic]
@@ -2571,7 +2814,7 @@ private module Stage4Param implements MkStage<Stage3>::StageParam {
   predicate typecheckStore(Ap ap, DataFlowType contentType) { any() }
 }
 
-private module Stage4 = MkStage<Stage3>::Stage<Stage4Param>;
+private module Stage5 = MkStage<Stage4>::Stage<Stage5Param>;
 
 bindingset[conf, result]
 private Configuration unbindConf(Configuration conf) {
@@ -2585,8 +2828,8 @@ private predicate nodeMayUseSummary0(
 ) {
   exists(AccessPathApprox apa0 |
     c = n.getEnclosingCallable() and
-    Stage4::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
-    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TParameterPositionSome(pos),
+    Stage5::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
+    Stage5::fwdFlow(n, state, any(CallContextCall ccc), TParameterPositionSome(pos),
       TAccessPathApproxSome(apa), apa0, config)
   )
 }
@@ -2596,7 +2839,7 @@ private predicate nodeMayUseSummary(
   NodeEx n, FlowState state, AccessPathApprox apa, Configuration config
 ) {
   exists(DataFlowCallable c, ParameterPosition pos, ParamNodeEx p |
-    Stage4::parameterMayFlowThrough(p, apa, config) and
+    Stage5::parameterMayFlowThrough(p, apa, config) and
     nodeMayUseSummary0(n, c, pos, state, apa, config) and
     p.isParameterOf(c, pos)
   )
@@ -2606,8 +2849,8 @@ private newtype TSummaryCtx =
   TSummaryCtxNone() or
   TSummaryCtxSome(ParamNodeEx p, FlowState state, AccessPath ap) {
     exists(Configuration config |
-      Stage4::parameterMayFlowThrough(p, ap.getApprox(), config) and
-      Stage4::revFlow(p, state, _, config)
+      Stage5::parameterMayFlowThrough(p, ap.getApprox(), config) and
+      Stage5::revFlow(p, state, _, config)
     )
   }
 
@@ -2656,7 +2899,7 @@ private int count1to2unfold(AccessPathApproxCons1 apa, Configuration config) {
     len = apa.len() and
     result =
       strictcount(AccessPathFront apf |
-        Stage4::consCand(tc, any(AccessPathApprox ap | ap.getFront() = apf and ap.len() = len - 1),
+        Stage5::consCand(tc, any(AccessPathApprox ap | ap.getFront() = apf and ap.len() = len - 1),
           config)
       )
   )
@@ -2665,7 +2908,7 @@ private int count1to2unfold(AccessPathApproxCons1 apa, Configuration config) {
 private int countNodesUsingAccessPath(AccessPathApprox apa, Configuration config) {
   result =
     strictcount(NodeEx n, FlowState state |
-      Stage4::revFlow(n, state, apa, config) or nodeMayUseSummary(n, state, apa, config)
+      Stage5::revFlow(n, state, apa, config) or nodeMayUseSummary(n, state, apa, config)
     )
 }
 
@@ -2686,7 +2929,7 @@ private predicate expensiveLen1to2unfolding(AccessPathApproxCons1 apa, Configura
 private AccessPathApprox getATail(AccessPathApprox apa, Configuration config) {
   exists(TypedContent head |
     apa.pop(head) = result and
-    Stage4::consCand(head, result, config)
+    Stage5::consCand(head, result, config)
   )
 }
 
@@ -2768,7 +3011,7 @@ private newtype TPathNode =
     NodeEx node, FlowState state, CallContext cc, SummaryCtx sc, AccessPath ap, Configuration config
   ) {
     // A PathNode is introduced by a source ...
-    Stage4::revFlow(node, state, config) and
+    Stage5::revFlow(node, state, config) and
     sourceNode(node, state, config) and
     (
       if hasSourceCallCtx(config)
@@ -2782,7 +3025,7 @@ private newtype TPathNode =
     exists(PathNodeMid mid |
       pathStep(mid, node, state, cc, sc, ap) and
       pragma[only_bind_into](config) = mid.getConfiguration() and
-      Stage4::revFlow(node, state, ap.getApprox(), pragma[only_bind_into](config))
+      Stage5::revFlow(node, state, ap.getApprox(), pragma[only_bind_into](config))
     )
   } or
   TPathNodeSink(NodeEx node, FlowState state, Configuration config) {
@@ -2924,7 +3167,7 @@ private class AccessPathCons2 extends AccessPath, TAccessPathCons2 {
   override TypedContent getHead() { result = head1 }
 
   override AccessPath getTail() {
-    Stage4::consCand(head1, result.getApprox(), _) and
+    Stage5::consCand(head1, result.getApprox(), _) and
     result.getHead() = head2 and
     result.length() = len - 1
   }
@@ -2955,7 +3198,7 @@ private class AccessPathCons1 extends AccessPath, TAccessPathCons1 {
   override TypedContent getHead() { result = head }
 
   override AccessPath getTail() {
-    Stage4::consCand(head, result.getApprox(), _) and result.length() = len - 1
+    Stage5::consCand(head, result.getApprox(), _) and result.length() = len - 1
   }
 
   override AccessPathFrontHead getFront() { result = TFrontHead(head) }
@@ -3347,7 +3590,8 @@ private predicate pathStep(
     AccessPath ap0, NodeEx midnode, FlowState state0, Configuration conf, LocalCallContext localCC
   |
     pathNode(mid, midnode, state0, cc, sc, ap0, conf, localCC) and
-    localFlowBigStep(midnode, state0, node, state, false, ap.getFront(), conf, localCC) and
+    localFlowBigStep(midnode, state0, node, state, false, ap.(AccessPathNil).getType(), conf,
+      localCC) and
     ap0 instanceof AccessPathNil
   )
   or
@@ -3389,7 +3633,7 @@ private predicate pathReadStep(
 ) {
   ap0 = mid.getAp() and
   tc = ap0.getHead() and
-  Stage4::readStepCand(mid.getNodeEx(), tc.getContent(), node, mid.getConfiguration()) and
+  Stage5::readStepCand(mid.getNodeEx(), tc.getContent(), node, mid.getConfiguration()) and
   state = mid.getState() and
   cc = mid.getCallContext()
 }
@@ -3399,7 +3643,7 @@ private predicate pathStoreStep(
   PathNodeMid mid, NodeEx node, FlowState state, AccessPath ap0, TypedContent tc, CallContext cc
 ) {
   ap0 = mid.getAp() and
-  Stage4::storeStepCand(mid.getNodeEx(), _, tc, node, _, mid.getConfiguration()) and
+  Stage5::storeStepCand(mid.getNodeEx(), _, tc, node, _, mid.getConfiguration()) and
   state = mid.getState() and
   cc = mid.getCallContext()
 }
@@ -3436,7 +3680,7 @@ private NodeEx getAnOutNodeFlow(
   ReturnKindExt kind, DataFlowCall call, AccessPathApprox apa, Configuration config
 ) {
   result.asNode() = kind.getAnOutNode(call) and
-  Stage4::revFlow(result, _, apa, config)
+  Stage5::revFlow(result, _, apa, config)
 }
 
 /**
@@ -3472,7 +3716,7 @@ private predicate parameterCand(
   DataFlowCallable callable, ParameterPosition pos, AccessPathApprox apa, Configuration config
 ) {
   exists(ParamNodeEx p |
-    Stage4::revFlow(p, _, apa, config) and
+    Stage5::revFlow(p, _, apa, config) and
     p.isParameterOf(callable, pos)
   )
 }
@@ -3751,9 +3995,17 @@ predicate stageStats(
   n = 45 and
   Stage4::stats(false, nodes, fields, conscand, states, tuples, config)
   or
-  stage = "5 Fwd" and n = 50 and finalStats(true, nodes, fields, conscand, states, tuples)
+  stage = "5 Fwd" and
+  n = 50 and
+  Stage5::stats(true, nodes, fields, conscand, states, tuples, config)
   or
-  stage = "5 Rev" and n = 55 and finalStats(false, nodes, fields, conscand, states, tuples)
+  stage = "5 Rev" and
+  n = 55 and
+  Stage5::stats(false, nodes, fields, conscand, states, tuples, config)
+  or
+  stage = "6 Fwd" and n = 60 and finalStats(true, nodes, fields, conscand, states, tuples)
+  or
+  stage = "6 Rev" and n = 65 and finalStats(false, nodes, fields, conscand, states, tuples)
 }
 
 private module FlowExploration {
diff --git a/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl4.qll b/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl4.qll
index ccde916a3c2..6741ccc2f06 100644
--- a/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl4.qll
+++ b/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl4.qll
@@ -621,23 +621,6 @@ private predicate parameterFlowThroughAllowed(ParamNodeEx p, ReturnKindExt kind)
   )
 }
 
-/**
- * Holds if flow from a parameter at position `pos` inside `c` to a return node of
- * kind `kind` is allowed.
- *
- * We don't expect a parameter to return stored in itself, unless
- * explicitly allowed
- */
-bindingset[c, pos, kind]
-private predicate parameterFlowThroughAllowed(
-  DataFlowCallable c, ParameterPosition pos, ReturnKindExt kind
-) {
-  exists(ParamNodeEx p |
-    p.isParameterOf(c, pos) and
-    parameterFlowThroughAllowed(p, kind)
-  )
-}
-
 private module Stage1 implements StageSig {
   class Ap = Unit;
 
@@ -980,6 +963,12 @@ private module Stage1 implements StageSig {
   pragma[nomagic]
   predicate revFlow(NodeEx node, Configuration config) { revFlow(node, _, config) }
 
+  pragma[nomagic]
+  predicate revFlowAp(NodeEx node, Ap ap, Configuration config) {
+    revFlow(node, config) and
+    exists(ap)
+  }
+
   bindingset[node, state, config]
   predicate revFlow(NodeEx node, FlowState state, Ap ap, Configuration config) {
     revFlow(node, _, pragma[only_bind_into](config)) and
@@ -1022,9 +1011,13 @@ private module Stage1 implements StageSig {
   }
 
   pragma[nomagic]
-  predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config) {
+  predicate returnMayFlowThrough(
+    RetNodeEx ret, Ap argAp, Ap ap, ReturnKindExt kind, Configuration config
+  ) {
     throughFlowNodeCand(ret, config) and
-    kind = ret.getKind()
+    kind = ret.getKind() and
+    exists(argAp) and
+    exists(ap)
   }
 
   pragma[nomagic]
@@ -1189,6 +1182,8 @@ private signature module StageSig {
 
   predicate revFlow(NodeEx node, Configuration config);
 
+  predicate revFlowAp(NodeEx node, Ap ap, Configuration config);
+
   bindingset[node, state, config]
   predicate revFlow(NodeEx node, FlowState state, Ap ap, Configuration config);
 
@@ -1196,7 +1191,9 @@ private signature module StageSig {
 
   predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config);
 
-  predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config);
+  predicate returnMayFlowThrough(
+    RetNodeEx ret, Ap argAp, Ap ap, ReturnKindExt kind, Configuration config
+  );
 
   predicate storeStepCand(
     NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, DataFlowType contentType,
@@ -1281,21 +1278,43 @@ private module MkStage<StageSig PrevStage> {
     import Param
 
     /* Begin: Stage logic. */
-    bindingset[result, apa]
-    private ApApprox unbindApa(ApApprox apa) {
-      pragma[only_bind_out](apa) = pragma[only_bind_out](result)
+    // use an alias as a workaround for bad functionality-induced joins
+    pragma[nomagic]
+    private predicate revFlowApAlias(NodeEx node, ApApprox apa, Configuration config) {
+      PrevStage::revFlowAp(node, apa, config)
+    }
+
+    pragma[nomagic]
+    private predicate flowIntoCallApa(
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, ApApprox apa,
+      Configuration config
+    ) {
+      flowIntoCall(call, arg, p, allowsFieldFlow, config) and
+      PrevStage::revFlowAp(p, pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
+      revFlowApAlias(arg, pragma[only_bind_into](apa), pragma[only_bind_into](config))
+    }
+
+    pragma[nomagic]
+    private predicate flowOutOfCallApa(
+      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
+      ApApprox apa, Configuration config
+    ) {
+      flowOutOfCall(call, ret, kind, out, allowsFieldFlow, config) and
+      PrevStage::revFlowAp(out, pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
+      revFlowApAlias(ret, pragma[only_bind_into](apa), pragma[only_bind_into](config))
     }
 
     pragma[nomagic]
     private predicate flowThroughOutOfCall(
-      DataFlowCall call, DataFlowCallable c, CcCall ccc, RetNodeEx ret, ReturnKindExt kind,
-      NodeEx out, boolean allowsFieldFlow, Configuration config
+      DataFlowCall call, CcCall ccc, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow,
+      ApApprox argApa, ApApprox apa, Configuration config
     ) {
-      flowOutOfCall(call, ret, kind, out, allowsFieldFlow, pragma[only_bind_into](config)) and
-      PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
-      PrevStage::returnMayFlowThrough(ret, kind, pragma[only_bind_into](config)) and
-      matchesCall(ccc, call) and
-      c = ret.getEnclosingCallable()
+      exists(ReturnKindExt kind |
+        flowOutOfCallApa(call, ret, kind, out, allowsFieldFlow, apa, pragma[only_bind_into](config)) and
+        PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
+        PrevStage::returnMayFlowThrough(ret, argApa, apa, kind, pragma[only_bind_into](config)) and
+        matchesCall(ccc, call)
+      )
     }
 
     /**
@@ -1307,39 +1326,50 @@ private module MkStage<StageSig PrevStage> {
      * corresponding parameter position and access path of that argument, respectively.
      */
     pragma[nomagic]
+    additional predicate fwdFlow(
+      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      Ap ap, ApApprox apa, Configuration config
+    ) {
+      fwdFlow0(node, state, cc, summaryCtx, argAp, ap, apa, config) and
+      PrevStage::revFlow(node, state, apa, config) and
+      filter(node, state, ap, config)
+    }
+
+    pragma[inline]
     additional predicate fwdFlow(
       NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
       Ap ap, Configuration config
     ) {
-      fwdFlow0(node, state, cc, summaryCtx, argAp, ap, config) and
-      PrevStage::revFlow(node, state, unbindApa(getApprox(ap)), config) and
-      filter(node, state, ap, config)
+      fwdFlow(node, state, cc, summaryCtx, argAp, ap, _, config)
     }
 
     pragma[nomagic]
     private predicate fwdFlow0(
       NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      Ap ap, Configuration config
+      Ap ap, ApApprox apa, Configuration config
     ) {
       sourceNode(node, state, config) and
       (if hasSourceCallCtx(config) then cc = ccSomeCall() else cc = ccNone()) and
       argAp = apNone() and
       summaryCtx = TParameterPositionNone() and
-      ap = getApNil(node)
+      ap = getApNil(node) and
+      apa = getApprox(ap)
       or
-      exists(NodeEx mid, FlowState state0, Ap ap0, LocalCc localCc |
-        fwdFlow(mid, state0, cc, summaryCtx, argAp, ap0, config) and
+      exists(NodeEx mid, FlowState state0, Ap ap0, ApApprox apa0, LocalCc localCc |
+        fwdFlow(mid, state0, cc, summaryCtx, argAp, ap0, apa0, config) and
         localCc = getLocalCc(mid, cc)
       |
         localStep(mid, state0, node, state, true, _, config, localCc) and
-        ap = ap0
+        ap = ap0 and
+        apa = apa0
         or
         localStep(mid, state0, node, state, false, ap, config, localCc) and
-        ap0 instanceof ApNil
+        ap0 instanceof ApNil and
+        apa = getApprox(ap)
       )
       or
       exists(NodeEx mid |
-        fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, apa, pragma[only_bind_into](config)) and
         jumpStep(mid, node, config) and
         cc = ccNone() and
         summaryCtx = TParameterPositionNone() and
@@ -1352,7 +1382,8 @@ private module MkStage<StageSig PrevStage> {
         cc = ccNone() and
         summaryCtx = TParameterPositionNone() and
         argAp = apNone() and
-        ap = getApNil(node)
+        ap = getApNil(node) and
+        apa = getApprox(ap)
       )
       or
       exists(NodeEx mid, FlowState state0, ApNil nil |
@@ -1361,32 +1392,32 @@ private module MkStage<StageSig PrevStage> {
         cc = ccNone() and
         summaryCtx = TParameterPositionNone() and
         argAp = apNone() and
-        ap = getApNil(node)
+        ap = getApNil(node) and
+        apa = getApprox(ap)
       )
       or
       // store
       exists(TypedContent tc, Ap ap0 |
         fwdFlowStore(_, ap0, tc, node, state, cc, summaryCtx, argAp, config) and
-        ap = apCons(tc, ap0)
+        ap = apCons(tc, ap0) and
+        apa = getApprox(ap)
       )
       or
       // read
       exists(Ap ap0, Content c |
         fwdFlowRead(ap0, c, _, node, state, cc, summaryCtx, argAp, config) and
-        fwdFlowConsCand(ap0, c, ap, config)
+        fwdFlowConsCand(ap0, c, ap, config) and
+        apa = getApprox(ap)
       )
       or
       // flow into a callable
-      exists(ApApprox apa |
-        fwdFlowIn(_, node, state, _, cc, _, _, ap, config) and
-        apa = getApprox(ap) and
-        if PrevStage::parameterMayFlowThrough(node, apa, config)
-        then (
-          summaryCtx = TParameterPositionSome(node.(ParamNodeEx).getPosition()) and
-          argAp = apSome(ap)
-        ) else (
-          summaryCtx = TParameterPositionNone() and argAp = apNone()
-        )
+      fwdFlowIn(_, node, state, _, cc, _, _, ap, apa, config) and
+      if PrevStage::parameterMayFlowThrough(node, apa, config)
+      then (
+        summaryCtx = TParameterPositionSome(node.(ParamNodeEx).getPosition()) and
+        argAp = apSome(ap)
+      ) else (
+        summaryCtx = TParameterPositionNone() and argAp = apNone()
       )
       or
       // flow out of a callable
@@ -1394,8 +1425,8 @@ private module MkStage<StageSig PrevStage> {
         DataFlowCall call, RetNodeEx ret, boolean allowsFieldFlow, CcNoCall innercc,
         DataFlowCallable inner
       |
-        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, config) and
-        flowOutOfCall(call, ret, _, node, allowsFieldFlow, config) and
+        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, apa, config) and
+        flowOutOfCallApa(call, ret, _, node, allowsFieldFlow, apa, config) and
         inner = ret.getEnclosingCallable() and
         cc = getCallContextReturn(inner, call, innercc) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
@@ -1403,7 +1434,7 @@ private module MkStage<StageSig PrevStage> {
       or
       // flow through a callable
       exists(DataFlowCall call, ParameterPosition summaryCtx0, Ap argAp0 |
-        fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, config) and
+        fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, apa, config) and
         fwdFlowIsEntered(call, cc, summaryCtx, argAp, summaryCtx0, argAp0, config)
       )
     }
@@ -1413,9 +1444,9 @@ private module MkStage<StageSig PrevStage> {
       NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc,
       ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
     ) {
-      exists(DataFlowType contentType |
-        fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, config) and
-        PrevStage::storeStepCand(node1, unbindApa(getApprox(ap1)), tc, node2, contentType, config) and
+      exists(DataFlowType contentType, ApApprox apa1 |
+        fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, apa1, config) and
+        PrevStage::storeStepCand(node1, apa1, tc, node2, contentType, config) and
         typecheckStore(ap1, contentType)
       )
     }
@@ -1433,43 +1464,104 @@ private module MkStage<StageSig PrevStage> {
       )
     }
 
+    private class ApNonNil instanceof Ap {
+      pragma[nomagic]
+      ApNonNil() { not this instanceof ApNil }
+
+      string toString() { result = "" }
+    }
+
+    pragma[nomagic]
+    private predicate fwdFlowRead0(
+      NodeEx node1, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      ApNonNil ap, Configuration config
+    ) {
+      fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
+      PrevStage::readStepCand(node1, _, _, config)
+    }
+
     pragma[nomagic]
     private predicate fwdFlowRead(
       Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc,
       ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
     ) {
-      fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
+      fwdFlowRead0(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, c, node2, config) and
       getHeadContent(ap) = c
     }
 
     pragma[nomagic]
     private predicate fwdFlowIn(
-      DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, Cc innercc,
-      ParameterPositionOption summaryCtx, ApOption argAp, Ap ap, Configuration config
+      DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, CcCall innercc,
+      ParameterPositionOption summaryCtx, ApOption argAp, Ap ap, ApApprox apa, Configuration config
     ) {
       exists(ArgNodeEx arg, boolean allowsFieldFlow |
-        fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, config) and
-        flowIntoCall(call, arg, p, allowsFieldFlow, config) and
+        fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, apa, config) and
+        flowIntoCallApa(call, arg, p, allowsFieldFlow, apa, config) and
         innercc = getCallContextCall(call, p.getEnclosingCallable(), outercc) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
+    pragma[nomagic]
+    private predicate fwdFlowRetFromArg(
+      RetNodeEx ret, FlowState state, CcCall ccc, ParameterPosition summaryCtx, ParamNodeEx p,
+      Ap argAp, ApApprox argApa, Ap ap, ApApprox apa, Configuration config
+    ) {
+      exists(DataFlowCallable c, ReturnKindExt kind |
+        fwdFlow(pragma[only_bind_into](ret), state, ccc,
+          TParameterPositionSome(pragma[only_bind_into](summaryCtx)), apSome(argAp), ap, apa, config) and
+        getApprox(argAp) = argApa and
+        c = ret.getEnclosingCallable() and
+        kind = ret.getKind() and
+        p.isParameterOf(c, pragma[only_bind_into](summaryCtx)) and
+        parameterFlowThroughAllowed(p, kind)
+      )
+    }
+
+    pragma[inline]
+    private predicate fwdFlowInMayFlowThrough(
+      DataFlowCall call, Cc cc, CcCall innerCc, ParameterPositionOption summaryCtx, ApOption argAp,
+      ParamNodeEx param, Ap ap, ApApprox apa, Configuration config
+    ) {
+      fwdFlowIn(call, pragma[only_bind_into](param), _, cc, innerCc, summaryCtx, argAp, ap,
+        pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
+      PrevStage::parameterMayFlowThrough(param, apa, config)
+    }
+
+    // dedup before joining with `flowThroughOutOfCall`
+    pragma[nomagic]
+    private predicate fwdFlowInMayFlowThroughProj(
+      DataFlowCall call, CcCall innerCc, ApApprox apa, Configuration config
+    ) {
+      fwdFlowInMayFlowThrough(call, _, innerCc, _, _, _, _, apa, config)
+    }
+
+    /**
+     * Same as `flowThroughOutOfCall`, but restricted to calls that are reached
+     * in the flow covered by `fwdFlow`, where data might flow through the target
+     * callable and back out at `call`.
+     */
+    pragma[nomagic]
+    private predicate fwdFlowThroughOutOfCall(
+      DataFlowCall call, CcCall ccc, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow,
+      ApApprox argApa, ApApprox apa, Configuration config
+    ) {
+      fwdFlowInMayFlowThroughProj(call, ccc, argApa, config) and
+      flowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, argApa, apa, config)
+    }
+
     pragma[nomagic]
     private predicate fwdFlowOutFromArg(
       DataFlowCall call, NodeEx out, FlowState state, ParameterPosition summaryCtx, Ap argAp, Ap ap,
-      Configuration config
+      ApApprox apa, Configuration config
     ) {
-      exists(
-        DataFlowCallable c, RetNodeEx ret, ReturnKindExt kind, boolean allowsFieldFlow, CcCall ccc
-      |
-        fwdFlow(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc),
-          TParameterPositionSome(pragma[only_bind_into](summaryCtx)), apSome(argAp), ap, config) and
-        flowThroughOutOfCall(call, pragma[only_bind_into](c), ccc, ret, kind, out, allowsFieldFlow,
+      exists(RetNodeEx ret, boolean allowsFieldFlow, CcCall ccc, ApApprox argApa |
+        fwdFlowRetFromArg(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc),
+          summaryCtx, _, argAp, pragma[only_bind_into](argApa), ap, pragma[only_bind_into](apa),
           config) and
-        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
-        parameterFlowThroughAllowed(c, pragma[only_bind_into](summaryCtx), kind)
+        fwdFlowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, argApa, apa, config) and
+        (if allowsFieldFlow = false then ap instanceof ApNil else any())
       )
     }
 
@@ -1483,8 +1575,7 @@ private module MkStage<StageSig PrevStage> {
       ParameterPosition pos, Ap ap, Configuration config
     ) {
       exists(ParamNodeEx param |
-        fwdFlowIn(call, param, _, cc, _, summaryCtx, argAp, ap, config) and
-        PrevStage::parameterMayFlowThrough(param, unbindApa(getApprox(ap)), config) and
+        fwdFlowInMayFlowThrough(call, cc, _, summaryCtx, argAp, param, ap, _, config) and
         pos = param.getPosition()
       )
     }
@@ -1505,41 +1596,55 @@ private module MkStage<StageSig PrevStage> {
       fwdFlowConsCand(ap1, c, ap2, config)
     }
 
-    pragma[nomagic]
-    private predicate returnFlowsThrough0(
-      RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, DataFlowCallable c,
-      ParameterPosition ppos, Ap argAp, Ap ap, Configuration config
-    ) {
-      exists(boolean allowsFieldFlow |
-        fwdFlow(ret, state, ccc, TParameterPositionSome(ppos), apSome(argAp), ap, config) and
-        flowThroughOutOfCall(_, c, _, pragma[only_bind_into](ret), kind, _, allowsFieldFlow,
-          pragma[only_bind_into](config)) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
-      )
-    }
-
     pragma[nomagic]
     private predicate returnFlowsThrough(
       RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, ParamNodeEx p, Ap argAp,
       Ap ap, Configuration config
     ) {
-      exists(DataFlowCallable c, ParameterPosition ppos |
-        returnFlowsThrough0(ret, kind, state, ccc, c, ppos, argAp, ap, config) and
-        p.isParameterOf(c, ppos) and
-        parameterFlowThroughAllowed(p, kind)
+      exists(boolean allowsFieldFlow, ApApprox argApa, ApApprox apa |
+        fwdFlowRetFromArg(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc), _, p,
+          argAp, pragma[only_bind_into](argApa), ap, pragma[only_bind_into](apa), config) and
+        kind = ret.getKind() and
+        fwdFlowThroughOutOfCall(_, ccc, ret, _, allowsFieldFlow, argApa, apa, config) and
+        (if allowsFieldFlow = false then ap instanceof ApNil else any())
       )
     }
 
     pragma[nomagic]
     private predicate flowThroughIntoCall(
-      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp,
+      Configuration config
     ) {
-      exists(Ap argAp |
-        flowIntoCall(call, pragma[only_bind_into](arg), pragma[only_bind_into](p), allowsFieldFlow,
+      exists(ApApprox argApa |
+        flowIntoCallApa(call, pragma[only_bind_into](arg), pragma[only_bind_into](p),
+          allowsFieldFlow, argApa, pragma[only_bind_into](config)) and
+        fwdFlow(arg, _, _, _, _, pragma[only_bind_into](argAp), argApa,
           pragma[only_bind_into](config)) and
-        fwdFlow(arg, _, _, _, _, pragma[only_bind_into](argAp), pragma[only_bind_into](config)) and
         returnFlowsThrough(_, _, _, _, p, pragma[only_bind_into](argAp), _,
-          pragma[only_bind_into](config))
+          pragma[only_bind_into](config)) and
+        if allowsFieldFlow = false then argAp instanceof ApNil else any()
+      )
+    }
+
+    pragma[nomagic]
+    private predicate flowIntoCallAp(
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap ap,
+      Configuration config
+    ) {
+      exists(ApApprox apa |
+        flowIntoCallApa(call, arg, p, allowsFieldFlow, apa, config) and
+        fwdFlow(arg, _, _, _, _, ap, apa, config)
+      )
+    }
+
+    pragma[nomagic]
+    private predicate flowOutOfCallAp(
+      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
+      Ap ap, Configuration config
+    ) {
+      exists(ApApprox apa |
+        flowOutOfCallApa(call, ret, kind, out, allowsFieldFlow, apa, config) and
+        fwdFlow(ret, _, _, _, _, ap, apa, config)
       )
     }
 
@@ -1628,7 +1733,7 @@ private module MkStage<StageSig PrevStage> {
       // flow into a callable
       exists(ParamNodeEx p, boolean allowsFieldFlow |
         revFlow(p, state, TReturnCtxNone(), returnAp, ap, config) and
-        flowIntoCall(_, node, p, allowsFieldFlow, config) and
+        flowIntoCallAp(_, node, p, allowsFieldFlow, ap, config) and
         (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
         returnCtx = TReturnCtxNone()
       )
@@ -1682,22 +1787,41 @@ private module MkStage<StageSig PrevStage> {
     ) {
       exists(NodeEx out, boolean allowsFieldFlow |
         revFlow(out, state, returnCtx, returnAp, ap, config) and
-        flowOutOfCall(call, ret, kind, out, allowsFieldFlow, config) and
+        flowOutOfCallAp(call, ret, kind, out, allowsFieldFlow, ap, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
+    /**
+     * Same as `flowThroughIntoCall`, but restricted to calls that are reached
+     * in the flow covered by `revFlow`, where data might flow through the target
+     * callable and back out at `call`.
+     */
+    pragma[nomagic]
+    private predicate revFlowThroughIntoCall(
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp,
+      Configuration config
+    ) {
+      flowThroughIntoCall(call, arg, p, allowsFieldFlow, argAp, config) and
+      revFlowIsReturned(call, _, _, _, _, config)
+    }
+
+    pragma[nomagic]
+    private predicate revFlowParamToReturn(
+      ParamNodeEx p, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap, Configuration config
+    ) {
+      revFlow(p, state, TReturnCtxMaybeFlowThrough(kind), apSome(returnAp), ap, config) and
+      parameterFlowThroughAllowed(p, kind)
+    }
+
     pragma[nomagic]
     private predicate revFlowInToReturn(
       DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap,
       Configuration config
     ) {
       exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(pragma[only_bind_into](p), state,
-          TReturnCtxMaybeFlowThrough(pragma[only_bind_into](kind)), apSome(returnAp), ap, config) and
-        flowThroughIntoCall(call, arg, p, allowsFieldFlow, config) and
-        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
-        parameterFlowThroughAllowed(p, kind)
+        revFlowParamToReturn(p, state, kind, returnAp, ap, config) and
+        revFlowThroughIntoCall(call, arg, p, allowsFieldFlow, ap, config)
       )
     }
 
@@ -1750,6 +1874,11 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     predicate revFlow(NodeEx node, Configuration config) { revFlow(node, _, _, _, _, config) }
 
+    pragma[nomagic]
+    predicate revFlowAp(NodeEx node, Ap ap, Configuration config) {
+      revFlow(node, _, _, _, ap, config)
+    }
+
     // use an alias as a workaround for bad functionality-induced joins
     pragma[nomagic]
     additional predicate revFlowAlias(NodeEx node, Configuration config) {
@@ -1786,9 +1915,9 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate parameterFlowsThroughRev(
-      ParamNodeEx p, Ap ap, ReturnKindExt kind, Configuration config
+      ParamNodeEx p, Ap ap, ReturnKindExt kind, Ap returnAp, Configuration config
     ) {
-      revFlow(p, _, TReturnCtxMaybeFlowThrough(kind), apSome(_), ap, config) and
+      revFlow(p, _, TReturnCtxMaybeFlowThrough(kind), apSome(returnAp), ap, config) and
       parameterFlowThroughAllowed(p, kind)
     }
 
@@ -1796,27 +1925,36 @@ private module MkStage<StageSig PrevStage> {
     predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
       exists(RetNodeEx ret, ReturnKindExt kind |
         returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
-        parameterFlowsThroughRev(p, ap, kind, config)
+        parameterFlowsThroughRev(p, ap, kind, _, config)
       )
     }
 
     pragma[nomagic]
-    predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config) {
-      exists(ParamNodeEx p, Ap ap |
-        returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
-        parameterFlowsThroughRev(p, ap, kind, config)
+    predicate returnMayFlowThrough(
+      RetNodeEx ret, Ap argAp, Ap ap, ReturnKindExt kind, Configuration config
+    ) {
+      exists(ParamNodeEx p |
+        returnFlowsThrough(ret, kind, _, _, p, argAp, ap, config) and
+        parameterFlowsThroughRev(p, argAp, kind, ap, config)
+      )
+    }
+
+    pragma[nomagic]
+    predicate revFlowInToReturnIsReturned(
+      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnCtx returnCtx, ApOption returnAp,
+      Ap ap, Configuration config
+    ) {
+      exists(ReturnKindExt returnKind0, Ap returnAp0 |
+        revFlowInToReturn(call, arg, state, returnKind0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
       )
     }
 
     pragma[nomagic]
     predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
-      exists(
-        ReturnKindExt returnKind0, Ap returnAp0, ArgNodeEx arg, FlowState state,
-        ReturnCtx returnCtx, ApOption returnAp, Ap ap
-      |
+      exists(ArgNodeEx arg, FlowState state, ReturnCtx returnCtx, ApOption returnAp, Ap ap |
         revFlow(arg, state, returnCtx, returnAp, ap, config) and
-        revFlowInToReturn(call, arg, state, returnKind0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
+        revFlowInToReturnIsReturned(call, arg, state, returnCtx, returnAp, ap, config)
       )
     }
 
@@ -2179,16 +2317,16 @@ private module LocalFlowBigStep {
   pragma[nomagic]
   predicate localFlowBigStep(
     NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
-    AccessPathFrontNil apf, Configuration config, LocalCallContext callContext
+    DataFlowType t, Configuration config, LocalCallContext callContext
   ) {
-    localFlowStepPlus(node1, state1, node2, preservesValue, apf.getType(), config, callContext) and
+    localFlowStepPlus(node1, state1, node2, preservesValue, t, config, callContext) and
     localFlowExit(node2, state1, config) and
     state1 = state2
     or
     additionalLocalFlowStepNodeCand2(node1, state1, node2, state2, config) and
     state1 != state2 and
     preservesValue = false and
-    apf = TFrontNil(node2.getDataFlowType()) and
+    t = node2.getDataFlowType() and
     callContext.relevantFor(node1.getEnclosingCallable()) and
     not exists(DataFlowCall call | call = callContext.(LocalCallContextSpecificCall).getCall() |
       isUnreachableInCallCached(node1.asNode(), call) or
@@ -2202,11 +2340,87 @@ private import LocalFlowBigStep
 private module Stage3Param implements MkStage<Stage2>::StageParam {
   private module PrevStage = Stage2;
 
+  class Ap = ApproxAccessPathFront;
+
+  class ApNil = ApproxAccessPathFrontNil;
+
+  PrevStage::Ap getApprox(Ap ap) { result = ap.toBoolNonEmpty() }
+
+  ApNil getApNil(NodeEx node) {
+    PrevStage::revFlow(node, _) and result = TApproxFrontNil(node.getDataFlowType())
+  }
+
+  bindingset[tc, tail]
+  Ap apCons(TypedContent tc, Ap tail) { result.getAHead() = tc and exists(tail) }
+
+  pragma[noinline]
+  Content getHeadContent(Ap ap) { result = ap.getAHead().getContent() }
+
+  class ApOption = ApproxAccessPathFrontOption;
+
+  ApOption apNone() { result = TApproxAccessPathFrontNone() }
+
+  ApOption apSome(Ap ap) { result = TApproxAccessPathFrontSome(ap) }
+
+  import BooleanCallContext
+
+  predicate localStep(
+    NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
+    ApproxAccessPathFrontNil ap, Configuration config, LocalCc lcc
+  ) {
+    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap.getType(), config, _) and
+    exists(lcc)
+  }
+
+  predicate flowOutOfCall = flowOutOfCallNodeCand2/6;
+
+  predicate flowIntoCall = flowIntoCallNodeCand2/5;
+
+  pragma[nomagic]
+  private predicate expectsContentCand(NodeEx node, Ap ap, Configuration config) {
+    exists(Content c |
+      PrevStage::revFlow(node, pragma[only_bind_into](config)) and
+      PrevStage::readStepCand(_, c, _, pragma[only_bind_into](config)) and
+      expectsContentEx(node, c) and
+      c = ap.getAHead().getContent()
+    )
+  }
+
+  pragma[nomagic]
+  private predicate castingNodeEx(NodeEx node) { node.asNode() instanceof CastingNode }
+
+  bindingset[node, state, ap, config]
+  predicate filter(NodeEx node, FlowState state, Ap ap, Configuration config) {
+    exists(state) and
+    exists(config) and
+    (if castingNodeEx(node) then compatibleTypes(node.getDataFlowType(), ap.getType()) else any()) and
+    (
+      notExpectsContent(node)
+      or
+      expectsContentCand(node, ap, config)
+    )
+  }
+
+  bindingset[ap, contentType]
+  predicate typecheckStore(Ap ap, DataFlowType contentType) {
+    // We need to typecheck stores here, since reverse flow through a getter
+    // might have a different type here compared to inside the getter.
+    compatibleTypes(ap.getType(), contentType)
+  }
+}
+
+private module Stage3 implements StageSig {
+  import MkStage<Stage2>::Stage<Stage3Param>
+}
+
+private module Stage4Param implements MkStage<Stage3>::StageParam {
+  private module PrevStage = Stage3;
+
   class Ap = AccessPathFront;
 
   class ApNil = AccessPathFrontNil;
 
-  PrevStage::Ap getApprox(Ap ap) { result = ap.toBoolNonEmpty() }
+  PrevStage::Ap getApprox(Ap ap) { result = ap.toApprox() }
 
   ApNil getApNil(NodeEx node) {
     PrevStage::revFlow(node, _) and result = TFrontNil(node.getDataFlowType())
@@ -2226,16 +2440,42 @@ private module Stage3Param implements MkStage<Stage2>::StageParam {
 
   import BooleanCallContext
 
+  pragma[nomagic]
   predicate localStep(
     NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
     ApNil ap, Configuration config, LocalCc lcc
   ) {
-    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap, config, _) and exists(lcc)
+    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap.getType(), config, _) and
+    PrevStage::revFlow(node1, pragma[only_bind_into](state1), _, pragma[only_bind_into](config)) and
+    PrevStage::revFlowAlias(node2, pragma[only_bind_into](state2), _, pragma[only_bind_into](config)) and
+    exists(lcc)
   }
 
-  predicate flowOutOfCall = flowOutOfCallNodeCand2/6;
+  pragma[nomagic]
+  predicate flowOutOfCall(
+    DataFlowCall call, RetNodeEx node1, ReturnKindExt kind, NodeEx node2, boolean allowsFieldFlow,
+    Configuration config
+  ) {
+    exists(FlowState state |
+      flowOutOfCallNodeCand2(call, node1, kind, node2, allowsFieldFlow, config) and
+      PrevStage::revFlow(node2, pragma[only_bind_into](state), _, pragma[only_bind_into](config)) and
+      PrevStage::revFlowAlias(node1, pragma[only_bind_into](state), _,
+        pragma[only_bind_into](config))
+    )
+  }
 
-  predicate flowIntoCall = flowIntoCallNodeCand2/5;
+  pragma[nomagic]
+  predicate flowIntoCall(
+    DataFlowCall call, ArgNodeEx node1, ParamNodeEx node2, boolean allowsFieldFlow,
+    Configuration config
+  ) {
+    exists(FlowState state |
+      flowIntoCallNodeCand2(call, node1, node2, allowsFieldFlow, config) and
+      PrevStage::revFlow(node2, pragma[only_bind_into](state), _, pragma[only_bind_into](config)) and
+      PrevStage::revFlowAlias(node1, pragma[only_bind_into](state), _,
+        pragma[only_bind_into](config))
+    )
+  }
 
   pragma[nomagic]
   private predicate clearSet(NodeEx node, ContentSet c, Configuration config) {
@@ -2291,8 +2531,8 @@ private module Stage3Param implements MkStage<Stage2>::StageParam {
   }
 }
 
-private module Stage3 implements StageSig {
-  import MkStage<Stage2>::Stage<Stage3Param>
+private module Stage4 implements StageSig {
+  import MkStage<Stage3>::Stage<Stage4Param>
 }
 
 /**
@@ -2303,8 +2543,8 @@ private predicate flowCandSummaryCtx(
   NodeEx node, FlowState state, AccessPathFront argApf, Configuration config
 ) {
   exists(AccessPathFront apf |
-    Stage3::revFlow(node, state, TReturnCtxMaybeFlowThrough(_), _, apf, config) and
-    Stage3::fwdFlow(node, state, any(Stage3::CcCall ccc), _, TAccessPathFrontSome(argApf), apf,
+    Stage4::revFlow(node, state, TReturnCtxMaybeFlowThrough(_), _, apf, config) and
+    Stage4::fwdFlow(node, state, any(Stage4::CcCall ccc), _, TAccessPathFrontSome(argApf), apf,
       config)
   )
 }
@@ -2315,10 +2555,10 @@ private predicate flowCandSummaryCtx(
  */
 private predicate expensiveLen2unfolding(TypedContent tc, Configuration config) {
   exists(int tails, int nodes, int apLimit, int tupleLimit |
-    tails = strictcount(AccessPathFront apf | Stage3::consCand(tc, apf, config)) and
+    tails = strictcount(AccessPathFront apf | Stage4::consCand(tc, apf, config)) and
     nodes =
       strictcount(NodeEx n, FlowState state |
-        Stage3::revFlow(n, state, any(AccessPathFrontHead apf | apf.getHead() = tc), config)
+        Stage4::revFlow(n, state, any(AccessPathFrontHead apf | apf.getHead() = tc), config)
         or
         flowCandSummaryCtx(n, state, any(AccessPathFrontHead apf | apf.getHead() = tc), config)
       ) and
@@ -2332,11 +2572,11 @@ private predicate expensiveLen2unfolding(TypedContent tc, Configuration config)
 private newtype TAccessPathApprox =
   TNil(DataFlowType t) or
   TConsNil(TypedContent tc, DataFlowType t) {
-    Stage3::consCand(tc, TFrontNil(t), _) and
+    Stage4::consCand(tc, TFrontNil(t), _) and
     not expensiveLen2unfolding(tc, _)
   } or
   TConsCons(TypedContent tc1, TypedContent tc2, int len) {
-    Stage3::consCand(tc1, TFrontHead(tc2), _) and
+    Stage4::consCand(tc1, TFrontHead(tc2), _) and
     len in [2 .. accessPathLimit()] and
     not expensiveLen2unfolding(tc1, _)
   } or
@@ -2466,7 +2706,7 @@ private class AccessPathApproxCons1 extends AccessPathApproxCons, TCons1 {
   override AccessPathApprox pop(TypedContent head) {
     head = tc and
     (
-      exists(TypedContent tc2 | Stage3::consCand(tc, TFrontHead(tc2), _) |
+      exists(TypedContent tc2 | Stage4::consCand(tc, TFrontHead(tc2), _) |
         result = TConsCons(tc2, _, len - 1)
         or
         len = 2 and
@@ -2477,7 +2717,7 @@ private class AccessPathApproxCons1 extends AccessPathApproxCons, TCons1 {
       or
       exists(DataFlowType t |
         len = 1 and
-        Stage3::consCand(tc, TFrontNil(t), _) and
+        Stage4::consCand(tc, TFrontNil(t), _) and
         result = TNil(t)
       )
     )
@@ -2502,13 +2742,14 @@ private class AccessPathApproxOption extends TAccessPathApproxOption {
   }
 }
 
-private module Stage4Param implements MkStage<Stage3>::StageParam {
-  private module PrevStage = Stage3;
+private module Stage5Param implements MkStage<Stage4>::StageParam {
+  private module PrevStage = Stage4;
 
   class Ap = AccessPathApprox;
 
   class ApNil = AccessPathApproxNil;
 
+  pragma[nomagic]
   PrevStage::Ap getApprox(Ap ap) { result = ap.getFront() }
 
   ApNil getApNil(NodeEx node) {
@@ -2534,7 +2775,9 @@ private module Stage4Param implements MkStage<Stage3>::StageParam {
     NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
     ApNil ap, Configuration config, LocalCc lcc
   ) {
-    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap.getFront(), config, lcc)
+    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap.getType(), config, lcc) and
+    PrevStage::revFlow(node1, pragma[only_bind_into](state1), _, pragma[only_bind_into](config)) and
+    PrevStage::revFlowAlias(node2, pragma[only_bind_into](state2), _, pragma[only_bind_into](config))
   }
 
   pragma[nomagic]
@@ -2571,7 +2814,7 @@ private module Stage4Param implements MkStage<Stage3>::StageParam {
   predicate typecheckStore(Ap ap, DataFlowType contentType) { any() }
 }
 
-private module Stage4 = MkStage<Stage3>::Stage<Stage4Param>;
+private module Stage5 = MkStage<Stage4>::Stage<Stage5Param>;
 
 bindingset[conf, result]
 private Configuration unbindConf(Configuration conf) {
@@ -2585,8 +2828,8 @@ private predicate nodeMayUseSummary0(
 ) {
   exists(AccessPathApprox apa0 |
     c = n.getEnclosingCallable() and
-    Stage4::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
-    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TParameterPositionSome(pos),
+    Stage5::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
+    Stage5::fwdFlow(n, state, any(CallContextCall ccc), TParameterPositionSome(pos),
       TAccessPathApproxSome(apa), apa0, config)
   )
 }
@@ -2596,7 +2839,7 @@ private predicate nodeMayUseSummary(
   NodeEx n, FlowState state, AccessPathApprox apa, Configuration config
 ) {
   exists(DataFlowCallable c, ParameterPosition pos, ParamNodeEx p |
-    Stage4::parameterMayFlowThrough(p, apa, config) and
+    Stage5::parameterMayFlowThrough(p, apa, config) and
     nodeMayUseSummary0(n, c, pos, state, apa, config) and
     p.isParameterOf(c, pos)
   )
@@ -2606,8 +2849,8 @@ private newtype TSummaryCtx =
   TSummaryCtxNone() or
   TSummaryCtxSome(ParamNodeEx p, FlowState state, AccessPath ap) {
     exists(Configuration config |
-      Stage4::parameterMayFlowThrough(p, ap.getApprox(), config) and
-      Stage4::revFlow(p, state, _, config)
+      Stage5::parameterMayFlowThrough(p, ap.getApprox(), config) and
+      Stage5::revFlow(p, state, _, config)
     )
   }
 
@@ -2656,7 +2899,7 @@ private int count1to2unfold(AccessPathApproxCons1 apa, Configuration config) {
     len = apa.len() and
     result =
       strictcount(AccessPathFront apf |
-        Stage4::consCand(tc, any(AccessPathApprox ap | ap.getFront() = apf and ap.len() = len - 1),
+        Stage5::consCand(tc, any(AccessPathApprox ap | ap.getFront() = apf and ap.len() = len - 1),
           config)
       )
   )
@@ -2665,7 +2908,7 @@ private int count1to2unfold(AccessPathApproxCons1 apa, Configuration config) {
 private int countNodesUsingAccessPath(AccessPathApprox apa, Configuration config) {
   result =
     strictcount(NodeEx n, FlowState state |
-      Stage4::revFlow(n, state, apa, config) or nodeMayUseSummary(n, state, apa, config)
+      Stage5::revFlow(n, state, apa, config) or nodeMayUseSummary(n, state, apa, config)
     )
 }
 
@@ -2686,7 +2929,7 @@ private predicate expensiveLen1to2unfolding(AccessPathApproxCons1 apa, Configura
 private AccessPathApprox getATail(AccessPathApprox apa, Configuration config) {
   exists(TypedContent head |
     apa.pop(head) = result and
-    Stage4::consCand(head, result, config)
+    Stage5::consCand(head, result, config)
   )
 }
 
@@ -2768,7 +3011,7 @@ private newtype TPathNode =
     NodeEx node, FlowState state, CallContext cc, SummaryCtx sc, AccessPath ap, Configuration config
   ) {
     // A PathNode is introduced by a source ...
-    Stage4::revFlow(node, state, config) and
+    Stage5::revFlow(node, state, config) and
     sourceNode(node, state, config) and
     (
       if hasSourceCallCtx(config)
@@ -2782,7 +3025,7 @@ private newtype TPathNode =
     exists(PathNodeMid mid |
       pathStep(mid, node, state, cc, sc, ap) and
       pragma[only_bind_into](config) = mid.getConfiguration() and
-      Stage4::revFlow(node, state, ap.getApprox(), pragma[only_bind_into](config))
+      Stage5::revFlow(node, state, ap.getApprox(), pragma[only_bind_into](config))
     )
   } or
   TPathNodeSink(NodeEx node, FlowState state, Configuration config) {
@@ -2924,7 +3167,7 @@ private class AccessPathCons2 extends AccessPath, TAccessPathCons2 {
   override TypedContent getHead() { result = head1 }
 
   override AccessPath getTail() {
-    Stage4::consCand(head1, result.getApprox(), _) and
+    Stage5::consCand(head1, result.getApprox(), _) and
     result.getHead() = head2 and
     result.length() = len - 1
   }
@@ -2955,7 +3198,7 @@ private class AccessPathCons1 extends AccessPath, TAccessPathCons1 {
   override TypedContent getHead() { result = head }
 
   override AccessPath getTail() {
-    Stage4::consCand(head, result.getApprox(), _) and result.length() = len - 1
+    Stage5::consCand(head, result.getApprox(), _) and result.length() = len - 1
   }
 
   override AccessPathFrontHead getFront() { result = TFrontHead(head) }
@@ -3347,7 +3590,8 @@ private predicate pathStep(
     AccessPath ap0, NodeEx midnode, FlowState state0, Configuration conf, LocalCallContext localCC
   |
     pathNode(mid, midnode, state0, cc, sc, ap0, conf, localCC) and
-    localFlowBigStep(midnode, state0, node, state, false, ap.getFront(), conf, localCC) and
+    localFlowBigStep(midnode, state0, node, state, false, ap.(AccessPathNil).getType(), conf,
+      localCC) and
     ap0 instanceof AccessPathNil
   )
   or
@@ -3389,7 +3633,7 @@ private predicate pathReadStep(
 ) {
   ap0 = mid.getAp() and
   tc = ap0.getHead() and
-  Stage4::readStepCand(mid.getNodeEx(), tc.getContent(), node, mid.getConfiguration()) and
+  Stage5::readStepCand(mid.getNodeEx(), tc.getContent(), node, mid.getConfiguration()) and
   state = mid.getState() and
   cc = mid.getCallContext()
 }
@@ -3399,7 +3643,7 @@ private predicate pathStoreStep(
   PathNodeMid mid, NodeEx node, FlowState state, AccessPath ap0, TypedContent tc, CallContext cc
 ) {
   ap0 = mid.getAp() and
-  Stage4::storeStepCand(mid.getNodeEx(), _, tc, node, _, mid.getConfiguration()) and
+  Stage5::storeStepCand(mid.getNodeEx(), _, tc, node, _, mid.getConfiguration()) and
   state = mid.getState() and
   cc = mid.getCallContext()
 }
@@ -3436,7 +3680,7 @@ private NodeEx getAnOutNodeFlow(
   ReturnKindExt kind, DataFlowCall call, AccessPathApprox apa, Configuration config
 ) {
   result.asNode() = kind.getAnOutNode(call) and
-  Stage4::revFlow(result, _, apa, config)
+  Stage5::revFlow(result, _, apa, config)
 }
 
 /**
@@ -3472,7 +3716,7 @@ private predicate parameterCand(
   DataFlowCallable callable, ParameterPosition pos, AccessPathApprox apa, Configuration config
 ) {
   exists(ParamNodeEx p |
-    Stage4::revFlow(p, _, apa, config) and
+    Stage5::revFlow(p, _, apa, config) and
     p.isParameterOf(callable, pos)
   )
 }
@@ -3751,9 +3995,17 @@ predicate stageStats(
   n = 45 and
   Stage4::stats(false, nodes, fields, conscand, states, tuples, config)
   or
-  stage = "5 Fwd" and n = 50 and finalStats(true, nodes, fields, conscand, states, tuples)
+  stage = "5 Fwd" and
+  n = 50 and
+  Stage5::stats(true, nodes, fields, conscand, states, tuples, config)
   or
-  stage = "5 Rev" and n = 55 and finalStats(false, nodes, fields, conscand, states, tuples)
+  stage = "5 Rev" and
+  n = 55 and
+  Stage5::stats(false, nodes, fields, conscand, states, tuples, config)
+  or
+  stage = "6 Fwd" and n = 60 and finalStats(true, nodes, fields, conscand, states, tuples)
+  or
+  stage = "6 Rev" and n = 65 and finalStats(false, nodes, fields, conscand, states, tuples)
 }
 
 private module FlowExploration {
diff --git a/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl5.qll b/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl5.qll
index ccde916a3c2..6741ccc2f06 100644
--- a/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl5.qll
+++ b/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl5.qll
@@ -621,23 +621,6 @@ private predicate parameterFlowThroughAllowed(ParamNodeEx p, ReturnKindExt kind)
   )
 }
 
-/**
- * Holds if flow from a parameter at position `pos` inside `c` to a return node of
- * kind `kind` is allowed.
- *
- * We don't expect a parameter to return stored in itself, unless
- * explicitly allowed
- */
-bindingset[c, pos, kind]
-private predicate parameterFlowThroughAllowed(
-  DataFlowCallable c, ParameterPosition pos, ReturnKindExt kind
-) {
-  exists(ParamNodeEx p |
-    p.isParameterOf(c, pos) and
-    parameterFlowThroughAllowed(p, kind)
-  )
-}
-
 private module Stage1 implements StageSig {
   class Ap = Unit;
 
@@ -980,6 +963,12 @@ private module Stage1 implements StageSig {
   pragma[nomagic]
   predicate revFlow(NodeEx node, Configuration config) { revFlow(node, _, config) }
 
+  pragma[nomagic]
+  predicate revFlowAp(NodeEx node, Ap ap, Configuration config) {
+    revFlow(node, config) and
+    exists(ap)
+  }
+
   bindingset[node, state, config]
   predicate revFlow(NodeEx node, FlowState state, Ap ap, Configuration config) {
     revFlow(node, _, pragma[only_bind_into](config)) and
@@ -1022,9 +1011,13 @@ private module Stage1 implements StageSig {
   }
 
   pragma[nomagic]
-  predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config) {
+  predicate returnMayFlowThrough(
+    RetNodeEx ret, Ap argAp, Ap ap, ReturnKindExt kind, Configuration config
+  ) {
     throughFlowNodeCand(ret, config) and
-    kind = ret.getKind()
+    kind = ret.getKind() and
+    exists(argAp) and
+    exists(ap)
   }
 
   pragma[nomagic]
@@ -1189,6 +1182,8 @@ private signature module StageSig {
 
   predicate revFlow(NodeEx node, Configuration config);
 
+  predicate revFlowAp(NodeEx node, Ap ap, Configuration config);
+
   bindingset[node, state, config]
   predicate revFlow(NodeEx node, FlowState state, Ap ap, Configuration config);
 
@@ -1196,7 +1191,9 @@ private signature module StageSig {
 
   predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config);
 
-  predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config);
+  predicate returnMayFlowThrough(
+    RetNodeEx ret, Ap argAp, Ap ap, ReturnKindExt kind, Configuration config
+  );
 
   predicate storeStepCand(
     NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, DataFlowType contentType,
@@ -1281,21 +1278,43 @@ private module MkStage<StageSig PrevStage> {
     import Param
 
     /* Begin: Stage logic. */
-    bindingset[result, apa]
-    private ApApprox unbindApa(ApApprox apa) {
-      pragma[only_bind_out](apa) = pragma[only_bind_out](result)
+    // use an alias as a workaround for bad functionality-induced joins
+    pragma[nomagic]
+    private predicate revFlowApAlias(NodeEx node, ApApprox apa, Configuration config) {
+      PrevStage::revFlowAp(node, apa, config)
+    }
+
+    pragma[nomagic]
+    private predicate flowIntoCallApa(
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, ApApprox apa,
+      Configuration config
+    ) {
+      flowIntoCall(call, arg, p, allowsFieldFlow, config) and
+      PrevStage::revFlowAp(p, pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
+      revFlowApAlias(arg, pragma[only_bind_into](apa), pragma[only_bind_into](config))
+    }
+
+    pragma[nomagic]
+    private predicate flowOutOfCallApa(
+      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
+      ApApprox apa, Configuration config
+    ) {
+      flowOutOfCall(call, ret, kind, out, allowsFieldFlow, config) and
+      PrevStage::revFlowAp(out, pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
+      revFlowApAlias(ret, pragma[only_bind_into](apa), pragma[only_bind_into](config))
     }
 
     pragma[nomagic]
     private predicate flowThroughOutOfCall(
-      DataFlowCall call, DataFlowCallable c, CcCall ccc, RetNodeEx ret, ReturnKindExt kind,
-      NodeEx out, boolean allowsFieldFlow, Configuration config
+      DataFlowCall call, CcCall ccc, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow,
+      ApApprox argApa, ApApprox apa, Configuration config
     ) {
-      flowOutOfCall(call, ret, kind, out, allowsFieldFlow, pragma[only_bind_into](config)) and
-      PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
-      PrevStage::returnMayFlowThrough(ret, kind, pragma[only_bind_into](config)) and
-      matchesCall(ccc, call) and
-      c = ret.getEnclosingCallable()
+      exists(ReturnKindExt kind |
+        flowOutOfCallApa(call, ret, kind, out, allowsFieldFlow, apa, pragma[only_bind_into](config)) and
+        PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
+        PrevStage::returnMayFlowThrough(ret, argApa, apa, kind, pragma[only_bind_into](config)) and
+        matchesCall(ccc, call)
+      )
     }
 
     /**
@@ -1307,39 +1326,50 @@ private module MkStage<StageSig PrevStage> {
      * corresponding parameter position and access path of that argument, respectively.
      */
     pragma[nomagic]
+    additional predicate fwdFlow(
+      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      Ap ap, ApApprox apa, Configuration config
+    ) {
+      fwdFlow0(node, state, cc, summaryCtx, argAp, ap, apa, config) and
+      PrevStage::revFlow(node, state, apa, config) and
+      filter(node, state, ap, config)
+    }
+
+    pragma[inline]
     additional predicate fwdFlow(
       NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
       Ap ap, Configuration config
     ) {
-      fwdFlow0(node, state, cc, summaryCtx, argAp, ap, config) and
-      PrevStage::revFlow(node, state, unbindApa(getApprox(ap)), config) and
-      filter(node, state, ap, config)
+      fwdFlow(node, state, cc, summaryCtx, argAp, ap, _, config)
     }
 
     pragma[nomagic]
     private predicate fwdFlow0(
       NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      Ap ap, Configuration config
+      Ap ap, ApApprox apa, Configuration config
     ) {
       sourceNode(node, state, config) and
       (if hasSourceCallCtx(config) then cc = ccSomeCall() else cc = ccNone()) and
       argAp = apNone() and
       summaryCtx = TParameterPositionNone() and
-      ap = getApNil(node)
+      ap = getApNil(node) and
+      apa = getApprox(ap)
       or
-      exists(NodeEx mid, FlowState state0, Ap ap0, LocalCc localCc |
-        fwdFlow(mid, state0, cc, summaryCtx, argAp, ap0, config) and
+      exists(NodeEx mid, FlowState state0, Ap ap0, ApApprox apa0, LocalCc localCc |
+        fwdFlow(mid, state0, cc, summaryCtx, argAp, ap0, apa0, config) and
         localCc = getLocalCc(mid, cc)
       |
         localStep(mid, state0, node, state, true, _, config, localCc) and
-        ap = ap0
+        ap = ap0 and
+        apa = apa0
         or
         localStep(mid, state0, node, state, false, ap, config, localCc) and
-        ap0 instanceof ApNil
+        ap0 instanceof ApNil and
+        apa = getApprox(ap)
       )
       or
       exists(NodeEx mid |
-        fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, apa, pragma[only_bind_into](config)) and
         jumpStep(mid, node, config) and
         cc = ccNone() and
         summaryCtx = TParameterPositionNone() and
@@ -1352,7 +1382,8 @@ private module MkStage<StageSig PrevStage> {
         cc = ccNone() and
         summaryCtx = TParameterPositionNone() and
         argAp = apNone() and
-        ap = getApNil(node)
+        ap = getApNil(node) and
+        apa = getApprox(ap)
       )
       or
       exists(NodeEx mid, FlowState state0, ApNil nil |
@@ -1361,32 +1392,32 @@ private module MkStage<StageSig PrevStage> {
         cc = ccNone() and
         summaryCtx = TParameterPositionNone() and
         argAp = apNone() and
-        ap = getApNil(node)
+        ap = getApNil(node) and
+        apa = getApprox(ap)
       )
       or
       // store
       exists(TypedContent tc, Ap ap0 |
         fwdFlowStore(_, ap0, tc, node, state, cc, summaryCtx, argAp, config) and
-        ap = apCons(tc, ap0)
+        ap = apCons(tc, ap0) and
+        apa = getApprox(ap)
       )
       or
       // read
       exists(Ap ap0, Content c |
         fwdFlowRead(ap0, c, _, node, state, cc, summaryCtx, argAp, config) and
-        fwdFlowConsCand(ap0, c, ap, config)
+        fwdFlowConsCand(ap0, c, ap, config) and
+        apa = getApprox(ap)
       )
       or
       // flow into a callable
-      exists(ApApprox apa |
-        fwdFlowIn(_, node, state, _, cc, _, _, ap, config) and
-        apa = getApprox(ap) and
-        if PrevStage::parameterMayFlowThrough(node, apa, config)
-        then (
-          summaryCtx = TParameterPositionSome(node.(ParamNodeEx).getPosition()) and
-          argAp = apSome(ap)
-        ) else (
-          summaryCtx = TParameterPositionNone() and argAp = apNone()
-        )
+      fwdFlowIn(_, node, state, _, cc, _, _, ap, apa, config) and
+      if PrevStage::parameterMayFlowThrough(node, apa, config)
+      then (
+        summaryCtx = TParameterPositionSome(node.(ParamNodeEx).getPosition()) and
+        argAp = apSome(ap)
+      ) else (
+        summaryCtx = TParameterPositionNone() and argAp = apNone()
       )
       or
       // flow out of a callable
@@ -1394,8 +1425,8 @@ private module MkStage<StageSig PrevStage> {
         DataFlowCall call, RetNodeEx ret, boolean allowsFieldFlow, CcNoCall innercc,
         DataFlowCallable inner
       |
-        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, config) and
-        flowOutOfCall(call, ret, _, node, allowsFieldFlow, config) and
+        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, apa, config) and
+        flowOutOfCallApa(call, ret, _, node, allowsFieldFlow, apa, config) and
         inner = ret.getEnclosingCallable() and
         cc = getCallContextReturn(inner, call, innercc) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
@@ -1403,7 +1434,7 @@ private module MkStage<StageSig PrevStage> {
       or
       // flow through a callable
       exists(DataFlowCall call, ParameterPosition summaryCtx0, Ap argAp0 |
-        fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, config) and
+        fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, apa, config) and
         fwdFlowIsEntered(call, cc, summaryCtx, argAp, summaryCtx0, argAp0, config)
       )
     }
@@ -1413,9 +1444,9 @@ private module MkStage<StageSig PrevStage> {
       NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc,
       ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
     ) {
-      exists(DataFlowType contentType |
-        fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, config) and
-        PrevStage::storeStepCand(node1, unbindApa(getApprox(ap1)), tc, node2, contentType, config) and
+      exists(DataFlowType contentType, ApApprox apa1 |
+        fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, apa1, config) and
+        PrevStage::storeStepCand(node1, apa1, tc, node2, contentType, config) and
         typecheckStore(ap1, contentType)
       )
     }
@@ -1433,43 +1464,104 @@ private module MkStage<StageSig PrevStage> {
       )
     }
 
+    private class ApNonNil instanceof Ap {
+      pragma[nomagic]
+      ApNonNil() { not this instanceof ApNil }
+
+      string toString() { result = "" }
+    }
+
+    pragma[nomagic]
+    private predicate fwdFlowRead0(
+      NodeEx node1, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      ApNonNil ap, Configuration config
+    ) {
+      fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
+      PrevStage::readStepCand(node1, _, _, config)
+    }
+
     pragma[nomagic]
     private predicate fwdFlowRead(
       Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc,
       ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
     ) {
-      fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
+      fwdFlowRead0(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, c, node2, config) and
       getHeadContent(ap) = c
     }
 
     pragma[nomagic]
     private predicate fwdFlowIn(
-      DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, Cc innercc,
-      ParameterPositionOption summaryCtx, ApOption argAp, Ap ap, Configuration config
+      DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, CcCall innercc,
+      ParameterPositionOption summaryCtx, ApOption argAp, Ap ap, ApApprox apa, Configuration config
     ) {
       exists(ArgNodeEx arg, boolean allowsFieldFlow |
-        fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, config) and
-        flowIntoCall(call, arg, p, allowsFieldFlow, config) and
+        fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, apa, config) and
+        flowIntoCallApa(call, arg, p, allowsFieldFlow, apa, config) and
         innercc = getCallContextCall(call, p.getEnclosingCallable(), outercc) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
+    pragma[nomagic]
+    private predicate fwdFlowRetFromArg(
+      RetNodeEx ret, FlowState state, CcCall ccc, ParameterPosition summaryCtx, ParamNodeEx p,
+      Ap argAp, ApApprox argApa, Ap ap, ApApprox apa, Configuration config
+    ) {
+      exists(DataFlowCallable c, ReturnKindExt kind |
+        fwdFlow(pragma[only_bind_into](ret), state, ccc,
+          TParameterPositionSome(pragma[only_bind_into](summaryCtx)), apSome(argAp), ap, apa, config) and
+        getApprox(argAp) = argApa and
+        c = ret.getEnclosingCallable() and
+        kind = ret.getKind() and
+        p.isParameterOf(c, pragma[only_bind_into](summaryCtx)) and
+        parameterFlowThroughAllowed(p, kind)
+      )
+    }
+
+    pragma[inline]
+    private predicate fwdFlowInMayFlowThrough(
+      DataFlowCall call, Cc cc, CcCall innerCc, ParameterPositionOption summaryCtx, ApOption argAp,
+      ParamNodeEx param, Ap ap, ApApprox apa, Configuration config
+    ) {
+      fwdFlowIn(call, pragma[only_bind_into](param), _, cc, innerCc, summaryCtx, argAp, ap,
+        pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
+      PrevStage::parameterMayFlowThrough(param, apa, config)
+    }
+
+    // dedup before joining with `flowThroughOutOfCall`
+    pragma[nomagic]
+    private predicate fwdFlowInMayFlowThroughProj(
+      DataFlowCall call, CcCall innerCc, ApApprox apa, Configuration config
+    ) {
+      fwdFlowInMayFlowThrough(call, _, innerCc, _, _, _, _, apa, config)
+    }
+
+    /**
+     * Same as `flowThroughOutOfCall`, but restricted to calls that are reached
+     * in the flow covered by `fwdFlow`, where data might flow through the target
+     * callable and back out at `call`.
+     */
+    pragma[nomagic]
+    private predicate fwdFlowThroughOutOfCall(
+      DataFlowCall call, CcCall ccc, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow,
+      ApApprox argApa, ApApprox apa, Configuration config
+    ) {
+      fwdFlowInMayFlowThroughProj(call, ccc, argApa, config) and
+      flowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, argApa, apa, config)
+    }
+
     pragma[nomagic]
     private predicate fwdFlowOutFromArg(
       DataFlowCall call, NodeEx out, FlowState state, ParameterPosition summaryCtx, Ap argAp, Ap ap,
-      Configuration config
+      ApApprox apa, Configuration config
     ) {
-      exists(
-        DataFlowCallable c, RetNodeEx ret, ReturnKindExt kind, boolean allowsFieldFlow, CcCall ccc
-      |
-        fwdFlow(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc),
-          TParameterPositionSome(pragma[only_bind_into](summaryCtx)), apSome(argAp), ap, config) and
-        flowThroughOutOfCall(call, pragma[only_bind_into](c), ccc, ret, kind, out, allowsFieldFlow,
+      exists(RetNodeEx ret, boolean allowsFieldFlow, CcCall ccc, ApApprox argApa |
+        fwdFlowRetFromArg(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc),
+          summaryCtx, _, argAp, pragma[only_bind_into](argApa), ap, pragma[only_bind_into](apa),
           config) and
-        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
-        parameterFlowThroughAllowed(c, pragma[only_bind_into](summaryCtx), kind)
+        fwdFlowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, argApa, apa, config) and
+        (if allowsFieldFlow = false then ap instanceof ApNil else any())
       )
     }
 
@@ -1483,8 +1575,7 @@ private module MkStage<StageSig PrevStage> {
       ParameterPosition pos, Ap ap, Configuration config
     ) {
       exists(ParamNodeEx param |
-        fwdFlowIn(call, param, _, cc, _, summaryCtx, argAp, ap, config) and
-        PrevStage::parameterMayFlowThrough(param, unbindApa(getApprox(ap)), config) and
+        fwdFlowInMayFlowThrough(call, cc, _, summaryCtx, argAp, param, ap, _, config) and
         pos = param.getPosition()
       )
     }
@@ -1505,41 +1596,55 @@ private module MkStage<StageSig PrevStage> {
       fwdFlowConsCand(ap1, c, ap2, config)
     }
 
-    pragma[nomagic]
-    private predicate returnFlowsThrough0(
-      RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, DataFlowCallable c,
-      ParameterPosition ppos, Ap argAp, Ap ap, Configuration config
-    ) {
-      exists(boolean allowsFieldFlow |
-        fwdFlow(ret, state, ccc, TParameterPositionSome(ppos), apSome(argAp), ap, config) and
-        flowThroughOutOfCall(_, c, _, pragma[only_bind_into](ret), kind, _, allowsFieldFlow,
-          pragma[only_bind_into](config)) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
-      )
-    }
-
     pragma[nomagic]
     private predicate returnFlowsThrough(
       RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, ParamNodeEx p, Ap argAp,
       Ap ap, Configuration config
     ) {
-      exists(DataFlowCallable c, ParameterPosition ppos |
-        returnFlowsThrough0(ret, kind, state, ccc, c, ppos, argAp, ap, config) and
-        p.isParameterOf(c, ppos) and
-        parameterFlowThroughAllowed(p, kind)
+      exists(boolean allowsFieldFlow, ApApprox argApa, ApApprox apa |
+        fwdFlowRetFromArg(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc), _, p,
+          argAp, pragma[only_bind_into](argApa), ap, pragma[only_bind_into](apa), config) and
+        kind = ret.getKind() and
+        fwdFlowThroughOutOfCall(_, ccc, ret, _, allowsFieldFlow, argApa, apa, config) and
+        (if allowsFieldFlow = false then ap instanceof ApNil else any())
       )
     }
 
     pragma[nomagic]
     private predicate flowThroughIntoCall(
-      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp,
+      Configuration config
     ) {
-      exists(Ap argAp |
-        flowIntoCall(call, pragma[only_bind_into](arg), pragma[only_bind_into](p), allowsFieldFlow,
+      exists(ApApprox argApa |
+        flowIntoCallApa(call, pragma[only_bind_into](arg), pragma[only_bind_into](p),
+          allowsFieldFlow, argApa, pragma[only_bind_into](config)) and
+        fwdFlow(arg, _, _, _, _, pragma[only_bind_into](argAp), argApa,
           pragma[only_bind_into](config)) and
-        fwdFlow(arg, _, _, _, _, pragma[only_bind_into](argAp), pragma[only_bind_into](config)) and
         returnFlowsThrough(_, _, _, _, p, pragma[only_bind_into](argAp), _,
-          pragma[only_bind_into](config))
+          pragma[only_bind_into](config)) and
+        if allowsFieldFlow = false then argAp instanceof ApNil else any()
+      )
+    }
+
+    pragma[nomagic]
+    private predicate flowIntoCallAp(
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap ap,
+      Configuration config
+    ) {
+      exists(ApApprox apa |
+        flowIntoCallApa(call, arg, p, allowsFieldFlow, apa, config) and
+        fwdFlow(arg, _, _, _, _, ap, apa, config)
+      )
+    }
+
+    pragma[nomagic]
+    private predicate flowOutOfCallAp(
+      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
+      Ap ap, Configuration config
+    ) {
+      exists(ApApprox apa |
+        flowOutOfCallApa(call, ret, kind, out, allowsFieldFlow, apa, config) and
+        fwdFlow(ret, _, _, _, _, ap, apa, config)
       )
     }
 
@@ -1628,7 +1733,7 @@ private module MkStage<StageSig PrevStage> {
       // flow into a callable
       exists(ParamNodeEx p, boolean allowsFieldFlow |
         revFlow(p, state, TReturnCtxNone(), returnAp, ap, config) and
-        flowIntoCall(_, node, p, allowsFieldFlow, config) and
+        flowIntoCallAp(_, node, p, allowsFieldFlow, ap, config) and
         (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
         returnCtx = TReturnCtxNone()
       )
@@ -1682,22 +1787,41 @@ private module MkStage<StageSig PrevStage> {
     ) {
       exists(NodeEx out, boolean allowsFieldFlow |
         revFlow(out, state, returnCtx, returnAp, ap, config) and
-        flowOutOfCall(call, ret, kind, out, allowsFieldFlow, config) and
+        flowOutOfCallAp(call, ret, kind, out, allowsFieldFlow, ap, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
+    /**
+     * Same as `flowThroughIntoCall`, but restricted to calls that are reached
+     * in the flow covered by `revFlow`, where data might flow through the target
+     * callable and back out at `call`.
+     */
+    pragma[nomagic]
+    private predicate revFlowThroughIntoCall(
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp,
+      Configuration config
+    ) {
+      flowThroughIntoCall(call, arg, p, allowsFieldFlow, argAp, config) and
+      revFlowIsReturned(call, _, _, _, _, config)
+    }
+
+    pragma[nomagic]
+    private predicate revFlowParamToReturn(
+      ParamNodeEx p, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap, Configuration config
+    ) {
+      revFlow(p, state, TReturnCtxMaybeFlowThrough(kind), apSome(returnAp), ap, config) and
+      parameterFlowThroughAllowed(p, kind)
+    }
+
     pragma[nomagic]
     private predicate revFlowInToReturn(
       DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap,
       Configuration config
     ) {
       exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(pragma[only_bind_into](p), state,
-          TReturnCtxMaybeFlowThrough(pragma[only_bind_into](kind)), apSome(returnAp), ap, config) and
-        flowThroughIntoCall(call, arg, p, allowsFieldFlow, config) and
-        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
-        parameterFlowThroughAllowed(p, kind)
+        revFlowParamToReturn(p, state, kind, returnAp, ap, config) and
+        revFlowThroughIntoCall(call, arg, p, allowsFieldFlow, ap, config)
       )
     }
 
@@ -1750,6 +1874,11 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     predicate revFlow(NodeEx node, Configuration config) { revFlow(node, _, _, _, _, config) }
 
+    pragma[nomagic]
+    predicate revFlowAp(NodeEx node, Ap ap, Configuration config) {
+      revFlow(node, _, _, _, ap, config)
+    }
+
     // use an alias as a workaround for bad functionality-induced joins
     pragma[nomagic]
     additional predicate revFlowAlias(NodeEx node, Configuration config) {
@@ -1786,9 +1915,9 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate parameterFlowsThroughRev(
-      ParamNodeEx p, Ap ap, ReturnKindExt kind, Configuration config
+      ParamNodeEx p, Ap ap, ReturnKindExt kind, Ap returnAp, Configuration config
     ) {
-      revFlow(p, _, TReturnCtxMaybeFlowThrough(kind), apSome(_), ap, config) and
+      revFlow(p, _, TReturnCtxMaybeFlowThrough(kind), apSome(returnAp), ap, config) and
       parameterFlowThroughAllowed(p, kind)
     }
 
@@ -1796,27 +1925,36 @@ private module MkStage<StageSig PrevStage> {
     predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
       exists(RetNodeEx ret, ReturnKindExt kind |
         returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
-        parameterFlowsThroughRev(p, ap, kind, config)
+        parameterFlowsThroughRev(p, ap, kind, _, config)
       )
     }
 
     pragma[nomagic]
-    predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config) {
-      exists(ParamNodeEx p, Ap ap |
-        returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
-        parameterFlowsThroughRev(p, ap, kind, config)
+    predicate returnMayFlowThrough(
+      RetNodeEx ret, Ap argAp, Ap ap, ReturnKindExt kind, Configuration config
+    ) {
+      exists(ParamNodeEx p |
+        returnFlowsThrough(ret, kind, _, _, p, argAp, ap, config) and
+        parameterFlowsThroughRev(p, argAp, kind, ap, config)
+      )
+    }
+
+    pragma[nomagic]
+    predicate revFlowInToReturnIsReturned(
+      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnCtx returnCtx, ApOption returnAp,
+      Ap ap, Configuration config
+    ) {
+      exists(ReturnKindExt returnKind0, Ap returnAp0 |
+        revFlowInToReturn(call, arg, state, returnKind0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
       )
     }
 
     pragma[nomagic]
     predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
-      exists(
-        ReturnKindExt returnKind0, Ap returnAp0, ArgNodeEx arg, FlowState state,
-        ReturnCtx returnCtx, ApOption returnAp, Ap ap
-      |
+      exists(ArgNodeEx arg, FlowState state, ReturnCtx returnCtx, ApOption returnAp, Ap ap |
         revFlow(arg, state, returnCtx, returnAp, ap, config) and
-        revFlowInToReturn(call, arg, state, returnKind0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
+        revFlowInToReturnIsReturned(call, arg, state, returnCtx, returnAp, ap, config)
       )
     }
 
@@ -2179,16 +2317,16 @@ private module LocalFlowBigStep {
   pragma[nomagic]
   predicate localFlowBigStep(
     NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
-    AccessPathFrontNil apf, Configuration config, LocalCallContext callContext
+    DataFlowType t, Configuration config, LocalCallContext callContext
   ) {
-    localFlowStepPlus(node1, state1, node2, preservesValue, apf.getType(), config, callContext) and
+    localFlowStepPlus(node1, state1, node2, preservesValue, t, config, callContext) and
     localFlowExit(node2, state1, config) and
     state1 = state2
     or
     additionalLocalFlowStepNodeCand2(node1, state1, node2, state2, config) and
     state1 != state2 and
     preservesValue = false and
-    apf = TFrontNil(node2.getDataFlowType()) and
+    t = node2.getDataFlowType() and
     callContext.relevantFor(node1.getEnclosingCallable()) and
     not exists(DataFlowCall call | call = callContext.(LocalCallContextSpecificCall).getCall() |
       isUnreachableInCallCached(node1.asNode(), call) or
@@ -2202,11 +2340,87 @@ private import LocalFlowBigStep
 private module Stage3Param implements MkStage<Stage2>::StageParam {
   private module PrevStage = Stage2;
 
+  class Ap = ApproxAccessPathFront;
+
+  class ApNil = ApproxAccessPathFrontNil;
+
+  PrevStage::Ap getApprox(Ap ap) { result = ap.toBoolNonEmpty() }
+
+  ApNil getApNil(NodeEx node) {
+    PrevStage::revFlow(node, _) and result = TApproxFrontNil(node.getDataFlowType())
+  }
+
+  bindingset[tc, tail]
+  Ap apCons(TypedContent tc, Ap tail) { result.getAHead() = tc and exists(tail) }
+
+  pragma[noinline]
+  Content getHeadContent(Ap ap) { result = ap.getAHead().getContent() }
+
+  class ApOption = ApproxAccessPathFrontOption;
+
+  ApOption apNone() { result = TApproxAccessPathFrontNone() }
+
+  ApOption apSome(Ap ap) { result = TApproxAccessPathFrontSome(ap) }
+
+  import BooleanCallContext
+
+  predicate localStep(
+    NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
+    ApproxAccessPathFrontNil ap, Configuration config, LocalCc lcc
+  ) {
+    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap.getType(), config, _) and
+    exists(lcc)
+  }
+
+  predicate flowOutOfCall = flowOutOfCallNodeCand2/6;
+
+  predicate flowIntoCall = flowIntoCallNodeCand2/5;
+
+  pragma[nomagic]
+  private predicate expectsContentCand(NodeEx node, Ap ap, Configuration config) {
+    exists(Content c |
+      PrevStage::revFlow(node, pragma[only_bind_into](config)) and
+      PrevStage::readStepCand(_, c, _, pragma[only_bind_into](config)) and
+      expectsContentEx(node, c) and
+      c = ap.getAHead().getContent()
+    )
+  }
+
+  pragma[nomagic]
+  private predicate castingNodeEx(NodeEx node) { node.asNode() instanceof CastingNode }
+
+  bindingset[node, state, ap, config]
+  predicate filter(NodeEx node, FlowState state, Ap ap, Configuration config) {
+    exists(state) and
+    exists(config) and
+    (if castingNodeEx(node) then compatibleTypes(node.getDataFlowType(), ap.getType()) else any()) and
+    (
+      notExpectsContent(node)
+      or
+      expectsContentCand(node, ap, config)
+    )
+  }
+
+  bindingset[ap, contentType]
+  predicate typecheckStore(Ap ap, DataFlowType contentType) {
+    // We need to typecheck stores here, since reverse flow through a getter
+    // might have a different type here compared to inside the getter.
+    compatibleTypes(ap.getType(), contentType)
+  }
+}
+
+private module Stage3 implements StageSig {
+  import MkStage<Stage2>::Stage<Stage3Param>
+}
+
+private module Stage4Param implements MkStage<Stage3>::StageParam {
+  private module PrevStage = Stage3;
+
   class Ap = AccessPathFront;
 
   class ApNil = AccessPathFrontNil;
 
-  PrevStage::Ap getApprox(Ap ap) { result = ap.toBoolNonEmpty() }
+  PrevStage::Ap getApprox(Ap ap) { result = ap.toApprox() }
 
   ApNil getApNil(NodeEx node) {
     PrevStage::revFlow(node, _) and result = TFrontNil(node.getDataFlowType())
@@ -2226,16 +2440,42 @@ private module Stage3Param implements MkStage<Stage2>::StageParam {
 
   import BooleanCallContext
 
+  pragma[nomagic]
   predicate localStep(
     NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
     ApNil ap, Configuration config, LocalCc lcc
   ) {
-    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap, config, _) and exists(lcc)
+    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap.getType(), config, _) and
+    PrevStage::revFlow(node1, pragma[only_bind_into](state1), _, pragma[only_bind_into](config)) and
+    PrevStage::revFlowAlias(node2, pragma[only_bind_into](state2), _, pragma[only_bind_into](config)) and
+    exists(lcc)
   }
 
-  predicate flowOutOfCall = flowOutOfCallNodeCand2/6;
+  pragma[nomagic]
+  predicate flowOutOfCall(
+    DataFlowCall call, RetNodeEx node1, ReturnKindExt kind, NodeEx node2, boolean allowsFieldFlow,
+    Configuration config
+  ) {
+    exists(FlowState state |
+      flowOutOfCallNodeCand2(call, node1, kind, node2, allowsFieldFlow, config) and
+      PrevStage::revFlow(node2, pragma[only_bind_into](state), _, pragma[only_bind_into](config)) and
+      PrevStage::revFlowAlias(node1, pragma[only_bind_into](state), _,
+        pragma[only_bind_into](config))
+    )
+  }
 
-  predicate flowIntoCall = flowIntoCallNodeCand2/5;
+  pragma[nomagic]
+  predicate flowIntoCall(
+    DataFlowCall call, ArgNodeEx node1, ParamNodeEx node2, boolean allowsFieldFlow,
+    Configuration config
+  ) {
+    exists(FlowState state |
+      flowIntoCallNodeCand2(call, node1, node2, allowsFieldFlow, config) and
+      PrevStage::revFlow(node2, pragma[only_bind_into](state), _, pragma[only_bind_into](config)) and
+      PrevStage::revFlowAlias(node1, pragma[only_bind_into](state), _,
+        pragma[only_bind_into](config))
+    )
+  }
 
   pragma[nomagic]
   private predicate clearSet(NodeEx node, ContentSet c, Configuration config) {
@@ -2291,8 +2531,8 @@ private module Stage3Param implements MkStage<Stage2>::StageParam {
   }
 }
 
-private module Stage3 implements StageSig {
-  import MkStage<Stage2>::Stage<Stage3Param>
+private module Stage4 implements StageSig {
+  import MkStage<Stage3>::Stage<Stage4Param>
 }
 
 /**
@@ -2303,8 +2543,8 @@ private predicate flowCandSummaryCtx(
   NodeEx node, FlowState state, AccessPathFront argApf, Configuration config
 ) {
   exists(AccessPathFront apf |
-    Stage3::revFlow(node, state, TReturnCtxMaybeFlowThrough(_), _, apf, config) and
-    Stage3::fwdFlow(node, state, any(Stage3::CcCall ccc), _, TAccessPathFrontSome(argApf), apf,
+    Stage4::revFlow(node, state, TReturnCtxMaybeFlowThrough(_), _, apf, config) and
+    Stage4::fwdFlow(node, state, any(Stage4::CcCall ccc), _, TAccessPathFrontSome(argApf), apf,
       config)
   )
 }
@@ -2315,10 +2555,10 @@ private predicate flowCandSummaryCtx(
  */
 private predicate expensiveLen2unfolding(TypedContent tc, Configuration config) {
   exists(int tails, int nodes, int apLimit, int tupleLimit |
-    tails = strictcount(AccessPathFront apf | Stage3::consCand(tc, apf, config)) and
+    tails = strictcount(AccessPathFront apf | Stage4::consCand(tc, apf, config)) and
     nodes =
       strictcount(NodeEx n, FlowState state |
-        Stage3::revFlow(n, state, any(AccessPathFrontHead apf | apf.getHead() = tc), config)
+        Stage4::revFlow(n, state, any(AccessPathFrontHead apf | apf.getHead() = tc), config)
         or
         flowCandSummaryCtx(n, state, any(AccessPathFrontHead apf | apf.getHead() = tc), config)
       ) and
@@ -2332,11 +2572,11 @@ private predicate expensiveLen2unfolding(TypedContent tc, Configuration config)
 private newtype TAccessPathApprox =
   TNil(DataFlowType t) or
   TConsNil(TypedContent tc, DataFlowType t) {
-    Stage3::consCand(tc, TFrontNil(t), _) and
+    Stage4::consCand(tc, TFrontNil(t), _) and
     not expensiveLen2unfolding(tc, _)
   } or
   TConsCons(TypedContent tc1, TypedContent tc2, int len) {
-    Stage3::consCand(tc1, TFrontHead(tc2), _) and
+    Stage4::consCand(tc1, TFrontHead(tc2), _) and
     len in [2 .. accessPathLimit()] and
     not expensiveLen2unfolding(tc1, _)
   } or
@@ -2466,7 +2706,7 @@ private class AccessPathApproxCons1 extends AccessPathApproxCons, TCons1 {
   override AccessPathApprox pop(TypedContent head) {
     head = tc and
     (
-      exists(TypedContent tc2 | Stage3::consCand(tc, TFrontHead(tc2), _) |
+      exists(TypedContent tc2 | Stage4::consCand(tc, TFrontHead(tc2), _) |
         result = TConsCons(tc2, _, len - 1)
         or
         len = 2 and
@@ -2477,7 +2717,7 @@ private class AccessPathApproxCons1 extends AccessPathApproxCons, TCons1 {
       or
       exists(DataFlowType t |
         len = 1 and
-        Stage3::consCand(tc, TFrontNil(t), _) and
+        Stage4::consCand(tc, TFrontNil(t), _) and
         result = TNil(t)
       )
     )
@@ -2502,13 +2742,14 @@ private class AccessPathApproxOption extends TAccessPathApproxOption {
   }
 }
 
-private module Stage4Param implements MkStage<Stage3>::StageParam {
-  private module PrevStage = Stage3;
+private module Stage5Param implements MkStage<Stage4>::StageParam {
+  private module PrevStage = Stage4;
 
   class Ap = AccessPathApprox;
 
   class ApNil = AccessPathApproxNil;
 
+  pragma[nomagic]
   PrevStage::Ap getApprox(Ap ap) { result = ap.getFront() }
 
   ApNil getApNil(NodeEx node) {
@@ -2534,7 +2775,9 @@ private module Stage4Param implements MkStage<Stage3>::StageParam {
     NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
     ApNil ap, Configuration config, LocalCc lcc
   ) {
-    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap.getFront(), config, lcc)
+    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap.getType(), config, lcc) and
+    PrevStage::revFlow(node1, pragma[only_bind_into](state1), _, pragma[only_bind_into](config)) and
+    PrevStage::revFlowAlias(node2, pragma[only_bind_into](state2), _, pragma[only_bind_into](config))
   }
 
   pragma[nomagic]
@@ -2571,7 +2814,7 @@ private module Stage4Param implements MkStage<Stage3>::StageParam {
   predicate typecheckStore(Ap ap, DataFlowType contentType) { any() }
 }
 
-private module Stage4 = MkStage<Stage3>::Stage<Stage4Param>;
+private module Stage5 = MkStage<Stage4>::Stage<Stage5Param>;
 
 bindingset[conf, result]
 private Configuration unbindConf(Configuration conf) {
@@ -2585,8 +2828,8 @@ private predicate nodeMayUseSummary0(
 ) {
   exists(AccessPathApprox apa0 |
     c = n.getEnclosingCallable() and
-    Stage4::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
-    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TParameterPositionSome(pos),
+    Stage5::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
+    Stage5::fwdFlow(n, state, any(CallContextCall ccc), TParameterPositionSome(pos),
       TAccessPathApproxSome(apa), apa0, config)
   )
 }
@@ -2596,7 +2839,7 @@ private predicate nodeMayUseSummary(
   NodeEx n, FlowState state, AccessPathApprox apa, Configuration config
 ) {
   exists(DataFlowCallable c, ParameterPosition pos, ParamNodeEx p |
-    Stage4::parameterMayFlowThrough(p, apa, config) and
+    Stage5::parameterMayFlowThrough(p, apa, config) and
     nodeMayUseSummary0(n, c, pos, state, apa, config) and
     p.isParameterOf(c, pos)
   )
@@ -2606,8 +2849,8 @@ private newtype TSummaryCtx =
   TSummaryCtxNone() or
   TSummaryCtxSome(ParamNodeEx p, FlowState state, AccessPath ap) {
     exists(Configuration config |
-      Stage4::parameterMayFlowThrough(p, ap.getApprox(), config) and
-      Stage4::revFlow(p, state, _, config)
+      Stage5::parameterMayFlowThrough(p, ap.getApprox(), config) and
+      Stage5::revFlow(p, state, _, config)
     )
   }
 
@@ -2656,7 +2899,7 @@ private int count1to2unfold(AccessPathApproxCons1 apa, Configuration config) {
     len = apa.len() and
     result =
       strictcount(AccessPathFront apf |
-        Stage4::consCand(tc, any(AccessPathApprox ap | ap.getFront() = apf and ap.len() = len - 1),
+        Stage5::consCand(tc, any(AccessPathApprox ap | ap.getFront() = apf and ap.len() = len - 1),
           config)
       )
   )
@@ -2665,7 +2908,7 @@ private int count1to2unfold(AccessPathApproxCons1 apa, Configuration config) {
 private int countNodesUsingAccessPath(AccessPathApprox apa, Configuration config) {
   result =
     strictcount(NodeEx n, FlowState state |
-      Stage4::revFlow(n, state, apa, config) or nodeMayUseSummary(n, state, apa, config)
+      Stage5::revFlow(n, state, apa, config) or nodeMayUseSummary(n, state, apa, config)
     )
 }
 
@@ -2686,7 +2929,7 @@ private predicate expensiveLen1to2unfolding(AccessPathApproxCons1 apa, Configura
 private AccessPathApprox getATail(AccessPathApprox apa, Configuration config) {
   exists(TypedContent head |
     apa.pop(head) = result and
-    Stage4::consCand(head, result, config)
+    Stage5::consCand(head, result, config)
   )
 }
 
@@ -2768,7 +3011,7 @@ private newtype TPathNode =
     NodeEx node, FlowState state, CallContext cc, SummaryCtx sc, AccessPath ap, Configuration config
   ) {
     // A PathNode is introduced by a source ...
-    Stage4::revFlow(node, state, config) and
+    Stage5::revFlow(node, state, config) and
     sourceNode(node, state, config) and
     (
       if hasSourceCallCtx(config)
@@ -2782,7 +3025,7 @@ private newtype TPathNode =
     exists(PathNodeMid mid |
       pathStep(mid, node, state, cc, sc, ap) and
       pragma[only_bind_into](config) = mid.getConfiguration() and
-      Stage4::revFlow(node, state, ap.getApprox(), pragma[only_bind_into](config))
+      Stage5::revFlow(node, state, ap.getApprox(), pragma[only_bind_into](config))
     )
   } or
   TPathNodeSink(NodeEx node, FlowState state, Configuration config) {
@@ -2924,7 +3167,7 @@ private class AccessPathCons2 extends AccessPath, TAccessPathCons2 {
   override TypedContent getHead() { result = head1 }
 
   override AccessPath getTail() {
-    Stage4::consCand(head1, result.getApprox(), _) and
+    Stage5::consCand(head1, result.getApprox(), _) and
     result.getHead() = head2 and
     result.length() = len - 1
   }
@@ -2955,7 +3198,7 @@ private class AccessPathCons1 extends AccessPath, TAccessPathCons1 {
   override TypedContent getHead() { result = head }
 
   override AccessPath getTail() {
-    Stage4::consCand(head, result.getApprox(), _) and result.length() = len - 1
+    Stage5::consCand(head, result.getApprox(), _) and result.length() = len - 1
   }
 
   override AccessPathFrontHead getFront() { result = TFrontHead(head) }
@@ -3347,7 +3590,8 @@ private predicate pathStep(
     AccessPath ap0, NodeEx midnode, FlowState state0, Configuration conf, LocalCallContext localCC
   |
     pathNode(mid, midnode, state0, cc, sc, ap0, conf, localCC) and
-    localFlowBigStep(midnode, state0, node, state, false, ap.getFront(), conf, localCC) and
+    localFlowBigStep(midnode, state0, node, state, false, ap.(AccessPathNil).getType(), conf,
+      localCC) and
     ap0 instanceof AccessPathNil
   )
   or
@@ -3389,7 +3633,7 @@ private predicate pathReadStep(
 ) {
   ap0 = mid.getAp() and
   tc = ap0.getHead() and
-  Stage4::readStepCand(mid.getNodeEx(), tc.getContent(), node, mid.getConfiguration()) and
+  Stage5::readStepCand(mid.getNodeEx(), tc.getContent(), node, mid.getConfiguration()) and
   state = mid.getState() and
   cc = mid.getCallContext()
 }
@@ -3399,7 +3643,7 @@ private predicate pathStoreStep(
   PathNodeMid mid, NodeEx node, FlowState state, AccessPath ap0, TypedContent tc, CallContext cc
 ) {
   ap0 = mid.getAp() and
-  Stage4::storeStepCand(mid.getNodeEx(), _, tc, node, _, mid.getConfiguration()) and
+  Stage5::storeStepCand(mid.getNodeEx(), _, tc, node, _, mid.getConfiguration()) and
   state = mid.getState() and
   cc = mid.getCallContext()
 }
@@ -3436,7 +3680,7 @@ private NodeEx getAnOutNodeFlow(
   ReturnKindExt kind, DataFlowCall call, AccessPathApprox apa, Configuration config
 ) {
   result.asNode() = kind.getAnOutNode(call) and
-  Stage4::revFlow(result, _, apa, config)
+  Stage5::revFlow(result, _, apa, config)
 }
 
 /**
@@ -3472,7 +3716,7 @@ private predicate parameterCand(
   DataFlowCallable callable, ParameterPosition pos, AccessPathApprox apa, Configuration config
 ) {
   exists(ParamNodeEx p |
-    Stage4::revFlow(p, _, apa, config) and
+    Stage5::revFlow(p, _, apa, config) and
     p.isParameterOf(callable, pos)
   )
 }
@@ -3751,9 +3995,17 @@ predicate stageStats(
   n = 45 and
   Stage4::stats(false, nodes, fields, conscand, states, tuples, config)
   or
-  stage = "5 Fwd" and n = 50 and finalStats(true, nodes, fields, conscand, states, tuples)
+  stage = "5 Fwd" and
+  n = 50 and
+  Stage5::stats(true, nodes, fields, conscand, states, tuples, config)
   or
-  stage = "5 Rev" and n = 55 and finalStats(false, nodes, fields, conscand, states, tuples)
+  stage = "5 Rev" and
+  n = 55 and
+  Stage5::stats(false, nodes, fields, conscand, states, tuples, config)
+  or
+  stage = "6 Fwd" and n = 60 and finalStats(true, nodes, fields, conscand, states, tuples)
+  or
+  stage = "6 Rev" and n = 65 and finalStats(false, nodes, fields, conscand, states, tuples)
 }
 
 private module FlowExploration {
diff --git a/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl6.qll b/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl6.qll
index ccde916a3c2..6741ccc2f06 100644
--- a/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl6.qll
+++ b/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl6.qll
@@ -621,23 +621,6 @@ private predicate parameterFlowThroughAllowed(ParamNodeEx p, ReturnKindExt kind)
   )
 }
 
-/**
- * Holds if flow from a parameter at position `pos` inside `c` to a return node of
- * kind `kind` is allowed.
- *
- * We don't expect a parameter to return stored in itself, unless
- * explicitly allowed
- */
-bindingset[c, pos, kind]
-private predicate parameterFlowThroughAllowed(
-  DataFlowCallable c, ParameterPosition pos, ReturnKindExt kind
-) {
-  exists(ParamNodeEx p |
-    p.isParameterOf(c, pos) and
-    parameterFlowThroughAllowed(p, kind)
-  )
-}
-
 private module Stage1 implements StageSig {
   class Ap = Unit;
 
@@ -980,6 +963,12 @@ private module Stage1 implements StageSig {
   pragma[nomagic]
   predicate revFlow(NodeEx node, Configuration config) { revFlow(node, _, config) }
 
+  pragma[nomagic]
+  predicate revFlowAp(NodeEx node, Ap ap, Configuration config) {
+    revFlow(node, config) and
+    exists(ap)
+  }
+
   bindingset[node, state, config]
   predicate revFlow(NodeEx node, FlowState state, Ap ap, Configuration config) {
     revFlow(node, _, pragma[only_bind_into](config)) and
@@ -1022,9 +1011,13 @@ private module Stage1 implements StageSig {
   }
 
   pragma[nomagic]
-  predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config) {
+  predicate returnMayFlowThrough(
+    RetNodeEx ret, Ap argAp, Ap ap, ReturnKindExt kind, Configuration config
+  ) {
     throughFlowNodeCand(ret, config) and
-    kind = ret.getKind()
+    kind = ret.getKind() and
+    exists(argAp) and
+    exists(ap)
   }
 
   pragma[nomagic]
@@ -1189,6 +1182,8 @@ private signature module StageSig {
 
   predicate revFlow(NodeEx node, Configuration config);
 
+  predicate revFlowAp(NodeEx node, Ap ap, Configuration config);
+
   bindingset[node, state, config]
   predicate revFlow(NodeEx node, FlowState state, Ap ap, Configuration config);
 
@@ -1196,7 +1191,9 @@ private signature module StageSig {
 
   predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config);
 
-  predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config);
+  predicate returnMayFlowThrough(
+    RetNodeEx ret, Ap argAp, Ap ap, ReturnKindExt kind, Configuration config
+  );
 
   predicate storeStepCand(
     NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, DataFlowType contentType,
@@ -1281,21 +1278,43 @@ private module MkStage<StageSig PrevStage> {
     import Param
 
     /* Begin: Stage logic. */
-    bindingset[result, apa]
-    private ApApprox unbindApa(ApApprox apa) {
-      pragma[only_bind_out](apa) = pragma[only_bind_out](result)
+    // use an alias as a workaround for bad functionality-induced joins
+    pragma[nomagic]
+    private predicate revFlowApAlias(NodeEx node, ApApprox apa, Configuration config) {
+      PrevStage::revFlowAp(node, apa, config)
+    }
+
+    pragma[nomagic]
+    private predicate flowIntoCallApa(
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, ApApprox apa,
+      Configuration config
+    ) {
+      flowIntoCall(call, arg, p, allowsFieldFlow, config) and
+      PrevStage::revFlowAp(p, pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
+      revFlowApAlias(arg, pragma[only_bind_into](apa), pragma[only_bind_into](config))
+    }
+
+    pragma[nomagic]
+    private predicate flowOutOfCallApa(
+      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
+      ApApprox apa, Configuration config
+    ) {
+      flowOutOfCall(call, ret, kind, out, allowsFieldFlow, config) and
+      PrevStage::revFlowAp(out, pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
+      revFlowApAlias(ret, pragma[only_bind_into](apa), pragma[only_bind_into](config))
     }
 
     pragma[nomagic]
     private predicate flowThroughOutOfCall(
-      DataFlowCall call, DataFlowCallable c, CcCall ccc, RetNodeEx ret, ReturnKindExt kind,
-      NodeEx out, boolean allowsFieldFlow, Configuration config
+      DataFlowCall call, CcCall ccc, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow,
+      ApApprox argApa, ApApprox apa, Configuration config
     ) {
-      flowOutOfCall(call, ret, kind, out, allowsFieldFlow, pragma[only_bind_into](config)) and
-      PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
-      PrevStage::returnMayFlowThrough(ret, kind, pragma[only_bind_into](config)) and
-      matchesCall(ccc, call) and
-      c = ret.getEnclosingCallable()
+      exists(ReturnKindExt kind |
+        flowOutOfCallApa(call, ret, kind, out, allowsFieldFlow, apa, pragma[only_bind_into](config)) and
+        PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
+        PrevStage::returnMayFlowThrough(ret, argApa, apa, kind, pragma[only_bind_into](config)) and
+        matchesCall(ccc, call)
+      )
     }
 
     /**
@@ -1307,39 +1326,50 @@ private module MkStage<StageSig PrevStage> {
      * corresponding parameter position and access path of that argument, respectively.
      */
     pragma[nomagic]
+    additional predicate fwdFlow(
+      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      Ap ap, ApApprox apa, Configuration config
+    ) {
+      fwdFlow0(node, state, cc, summaryCtx, argAp, ap, apa, config) and
+      PrevStage::revFlow(node, state, apa, config) and
+      filter(node, state, ap, config)
+    }
+
+    pragma[inline]
     additional predicate fwdFlow(
       NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
       Ap ap, Configuration config
     ) {
-      fwdFlow0(node, state, cc, summaryCtx, argAp, ap, config) and
-      PrevStage::revFlow(node, state, unbindApa(getApprox(ap)), config) and
-      filter(node, state, ap, config)
+      fwdFlow(node, state, cc, summaryCtx, argAp, ap, _, config)
     }
 
     pragma[nomagic]
     private predicate fwdFlow0(
       NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      Ap ap, Configuration config
+      Ap ap, ApApprox apa, Configuration config
     ) {
       sourceNode(node, state, config) and
       (if hasSourceCallCtx(config) then cc = ccSomeCall() else cc = ccNone()) and
       argAp = apNone() and
       summaryCtx = TParameterPositionNone() and
-      ap = getApNil(node)
+      ap = getApNil(node) and
+      apa = getApprox(ap)
       or
-      exists(NodeEx mid, FlowState state0, Ap ap0, LocalCc localCc |
-        fwdFlow(mid, state0, cc, summaryCtx, argAp, ap0, config) and
+      exists(NodeEx mid, FlowState state0, Ap ap0, ApApprox apa0, LocalCc localCc |
+        fwdFlow(mid, state0, cc, summaryCtx, argAp, ap0, apa0, config) and
         localCc = getLocalCc(mid, cc)
       |
         localStep(mid, state0, node, state, true, _, config, localCc) and
-        ap = ap0
+        ap = ap0 and
+        apa = apa0
         or
         localStep(mid, state0, node, state, false, ap, config, localCc) and
-        ap0 instanceof ApNil
+        ap0 instanceof ApNil and
+        apa = getApprox(ap)
       )
       or
       exists(NodeEx mid |
-        fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, apa, pragma[only_bind_into](config)) and
         jumpStep(mid, node, config) and
         cc = ccNone() and
         summaryCtx = TParameterPositionNone() and
@@ -1352,7 +1382,8 @@ private module MkStage<StageSig PrevStage> {
         cc = ccNone() and
         summaryCtx = TParameterPositionNone() and
         argAp = apNone() and
-        ap = getApNil(node)
+        ap = getApNil(node) and
+        apa = getApprox(ap)
       )
       or
       exists(NodeEx mid, FlowState state0, ApNil nil |
@@ -1361,32 +1392,32 @@ private module MkStage<StageSig PrevStage> {
         cc = ccNone() and
         summaryCtx = TParameterPositionNone() and
         argAp = apNone() and
-        ap = getApNil(node)
+        ap = getApNil(node) and
+        apa = getApprox(ap)
       )
       or
       // store
       exists(TypedContent tc, Ap ap0 |
         fwdFlowStore(_, ap0, tc, node, state, cc, summaryCtx, argAp, config) and
-        ap = apCons(tc, ap0)
+        ap = apCons(tc, ap0) and
+        apa = getApprox(ap)
       )
       or
       // read
       exists(Ap ap0, Content c |
         fwdFlowRead(ap0, c, _, node, state, cc, summaryCtx, argAp, config) and
-        fwdFlowConsCand(ap0, c, ap, config)
+        fwdFlowConsCand(ap0, c, ap, config) and
+        apa = getApprox(ap)
       )
       or
       // flow into a callable
-      exists(ApApprox apa |
-        fwdFlowIn(_, node, state, _, cc, _, _, ap, config) and
-        apa = getApprox(ap) and
-        if PrevStage::parameterMayFlowThrough(node, apa, config)
-        then (
-          summaryCtx = TParameterPositionSome(node.(ParamNodeEx).getPosition()) and
-          argAp = apSome(ap)
-        ) else (
-          summaryCtx = TParameterPositionNone() and argAp = apNone()
-        )
+      fwdFlowIn(_, node, state, _, cc, _, _, ap, apa, config) and
+      if PrevStage::parameterMayFlowThrough(node, apa, config)
+      then (
+        summaryCtx = TParameterPositionSome(node.(ParamNodeEx).getPosition()) and
+        argAp = apSome(ap)
+      ) else (
+        summaryCtx = TParameterPositionNone() and argAp = apNone()
       )
       or
       // flow out of a callable
@@ -1394,8 +1425,8 @@ private module MkStage<StageSig PrevStage> {
         DataFlowCall call, RetNodeEx ret, boolean allowsFieldFlow, CcNoCall innercc,
         DataFlowCallable inner
       |
-        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, config) and
-        flowOutOfCall(call, ret, _, node, allowsFieldFlow, config) and
+        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, apa, config) and
+        flowOutOfCallApa(call, ret, _, node, allowsFieldFlow, apa, config) and
         inner = ret.getEnclosingCallable() and
         cc = getCallContextReturn(inner, call, innercc) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
@@ -1403,7 +1434,7 @@ private module MkStage<StageSig PrevStage> {
       or
       // flow through a callable
       exists(DataFlowCall call, ParameterPosition summaryCtx0, Ap argAp0 |
-        fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, config) and
+        fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, apa, config) and
         fwdFlowIsEntered(call, cc, summaryCtx, argAp, summaryCtx0, argAp0, config)
       )
     }
@@ -1413,9 +1444,9 @@ private module MkStage<StageSig PrevStage> {
       NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc,
       ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
     ) {
-      exists(DataFlowType contentType |
-        fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, config) and
-        PrevStage::storeStepCand(node1, unbindApa(getApprox(ap1)), tc, node2, contentType, config) and
+      exists(DataFlowType contentType, ApApprox apa1 |
+        fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, apa1, config) and
+        PrevStage::storeStepCand(node1, apa1, tc, node2, contentType, config) and
         typecheckStore(ap1, contentType)
       )
     }
@@ -1433,43 +1464,104 @@ private module MkStage<StageSig PrevStage> {
       )
     }
 
+    private class ApNonNil instanceof Ap {
+      pragma[nomagic]
+      ApNonNil() { not this instanceof ApNil }
+
+      string toString() { result = "" }
+    }
+
+    pragma[nomagic]
+    private predicate fwdFlowRead0(
+      NodeEx node1, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      ApNonNil ap, Configuration config
+    ) {
+      fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
+      PrevStage::readStepCand(node1, _, _, config)
+    }
+
     pragma[nomagic]
     private predicate fwdFlowRead(
       Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc,
       ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
     ) {
-      fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
+      fwdFlowRead0(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, c, node2, config) and
       getHeadContent(ap) = c
     }
 
     pragma[nomagic]
     private predicate fwdFlowIn(
-      DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, Cc innercc,
-      ParameterPositionOption summaryCtx, ApOption argAp, Ap ap, Configuration config
+      DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, CcCall innercc,
+      ParameterPositionOption summaryCtx, ApOption argAp, Ap ap, ApApprox apa, Configuration config
     ) {
       exists(ArgNodeEx arg, boolean allowsFieldFlow |
-        fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, config) and
-        flowIntoCall(call, arg, p, allowsFieldFlow, config) and
+        fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, apa, config) and
+        flowIntoCallApa(call, arg, p, allowsFieldFlow, apa, config) and
         innercc = getCallContextCall(call, p.getEnclosingCallable(), outercc) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
+    pragma[nomagic]
+    private predicate fwdFlowRetFromArg(
+      RetNodeEx ret, FlowState state, CcCall ccc, ParameterPosition summaryCtx, ParamNodeEx p,
+      Ap argAp, ApApprox argApa, Ap ap, ApApprox apa, Configuration config
+    ) {
+      exists(DataFlowCallable c, ReturnKindExt kind |
+        fwdFlow(pragma[only_bind_into](ret), state, ccc,
+          TParameterPositionSome(pragma[only_bind_into](summaryCtx)), apSome(argAp), ap, apa, config) and
+        getApprox(argAp) = argApa and
+        c = ret.getEnclosingCallable() and
+        kind = ret.getKind() and
+        p.isParameterOf(c, pragma[only_bind_into](summaryCtx)) and
+        parameterFlowThroughAllowed(p, kind)
+      )
+    }
+
+    pragma[inline]
+    private predicate fwdFlowInMayFlowThrough(
+      DataFlowCall call, Cc cc, CcCall innerCc, ParameterPositionOption summaryCtx, ApOption argAp,
+      ParamNodeEx param, Ap ap, ApApprox apa, Configuration config
+    ) {
+      fwdFlowIn(call, pragma[only_bind_into](param), _, cc, innerCc, summaryCtx, argAp, ap,
+        pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
+      PrevStage::parameterMayFlowThrough(param, apa, config)
+    }
+
+    // dedup before joining with `flowThroughOutOfCall`
+    pragma[nomagic]
+    private predicate fwdFlowInMayFlowThroughProj(
+      DataFlowCall call, CcCall innerCc, ApApprox apa, Configuration config
+    ) {
+      fwdFlowInMayFlowThrough(call, _, innerCc, _, _, _, _, apa, config)
+    }
+
+    /**
+     * Same as `flowThroughOutOfCall`, but restricted to calls that are reached
+     * in the flow covered by `fwdFlow`, where data might flow through the target
+     * callable and back out at `call`.
+     */
+    pragma[nomagic]
+    private predicate fwdFlowThroughOutOfCall(
+      DataFlowCall call, CcCall ccc, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow,
+      ApApprox argApa, ApApprox apa, Configuration config
+    ) {
+      fwdFlowInMayFlowThroughProj(call, ccc, argApa, config) and
+      flowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, argApa, apa, config)
+    }
+
     pragma[nomagic]
     private predicate fwdFlowOutFromArg(
       DataFlowCall call, NodeEx out, FlowState state, ParameterPosition summaryCtx, Ap argAp, Ap ap,
-      Configuration config
+      ApApprox apa, Configuration config
     ) {
-      exists(
-        DataFlowCallable c, RetNodeEx ret, ReturnKindExt kind, boolean allowsFieldFlow, CcCall ccc
-      |
-        fwdFlow(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc),
-          TParameterPositionSome(pragma[only_bind_into](summaryCtx)), apSome(argAp), ap, config) and
-        flowThroughOutOfCall(call, pragma[only_bind_into](c), ccc, ret, kind, out, allowsFieldFlow,
+      exists(RetNodeEx ret, boolean allowsFieldFlow, CcCall ccc, ApApprox argApa |
+        fwdFlowRetFromArg(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc),
+          summaryCtx, _, argAp, pragma[only_bind_into](argApa), ap, pragma[only_bind_into](apa),
           config) and
-        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
-        parameterFlowThroughAllowed(c, pragma[only_bind_into](summaryCtx), kind)
+        fwdFlowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, argApa, apa, config) and
+        (if allowsFieldFlow = false then ap instanceof ApNil else any())
       )
     }
 
@@ -1483,8 +1575,7 @@ private module MkStage<StageSig PrevStage> {
       ParameterPosition pos, Ap ap, Configuration config
     ) {
       exists(ParamNodeEx param |
-        fwdFlowIn(call, param, _, cc, _, summaryCtx, argAp, ap, config) and
-        PrevStage::parameterMayFlowThrough(param, unbindApa(getApprox(ap)), config) and
+        fwdFlowInMayFlowThrough(call, cc, _, summaryCtx, argAp, param, ap, _, config) and
         pos = param.getPosition()
       )
     }
@@ -1505,41 +1596,55 @@ private module MkStage<StageSig PrevStage> {
       fwdFlowConsCand(ap1, c, ap2, config)
     }
 
-    pragma[nomagic]
-    private predicate returnFlowsThrough0(
-      RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, DataFlowCallable c,
-      ParameterPosition ppos, Ap argAp, Ap ap, Configuration config
-    ) {
-      exists(boolean allowsFieldFlow |
-        fwdFlow(ret, state, ccc, TParameterPositionSome(ppos), apSome(argAp), ap, config) and
-        flowThroughOutOfCall(_, c, _, pragma[only_bind_into](ret), kind, _, allowsFieldFlow,
-          pragma[only_bind_into](config)) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
-      )
-    }
-
     pragma[nomagic]
     private predicate returnFlowsThrough(
       RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, ParamNodeEx p, Ap argAp,
       Ap ap, Configuration config
     ) {
-      exists(DataFlowCallable c, ParameterPosition ppos |
-        returnFlowsThrough0(ret, kind, state, ccc, c, ppos, argAp, ap, config) and
-        p.isParameterOf(c, ppos) and
-        parameterFlowThroughAllowed(p, kind)
+      exists(boolean allowsFieldFlow, ApApprox argApa, ApApprox apa |
+        fwdFlowRetFromArg(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc), _, p,
+          argAp, pragma[only_bind_into](argApa), ap, pragma[only_bind_into](apa), config) and
+        kind = ret.getKind() and
+        fwdFlowThroughOutOfCall(_, ccc, ret, _, allowsFieldFlow, argApa, apa, config) and
+        (if allowsFieldFlow = false then ap instanceof ApNil else any())
       )
     }
 
     pragma[nomagic]
     private predicate flowThroughIntoCall(
-      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp,
+      Configuration config
     ) {
-      exists(Ap argAp |
-        flowIntoCall(call, pragma[only_bind_into](arg), pragma[only_bind_into](p), allowsFieldFlow,
+      exists(ApApprox argApa |
+        flowIntoCallApa(call, pragma[only_bind_into](arg), pragma[only_bind_into](p),
+          allowsFieldFlow, argApa, pragma[only_bind_into](config)) and
+        fwdFlow(arg, _, _, _, _, pragma[only_bind_into](argAp), argApa,
           pragma[only_bind_into](config)) and
-        fwdFlow(arg, _, _, _, _, pragma[only_bind_into](argAp), pragma[only_bind_into](config)) and
         returnFlowsThrough(_, _, _, _, p, pragma[only_bind_into](argAp), _,
-          pragma[only_bind_into](config))
+          pragma[only_bind_into](config)) and
+        if allowsFieldFlow = false then argAp instanceof ApNil else any()
+      )
+    }
+
+    pragma[nomagic]
+    private predicate flowIntoCallAp(
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap ap,
+      Configuration config
+    ) {
+      exists(ApApprox apa |
+        flowIntoCallApa(call, arg, p, allowsFieldFlow, apa, config) and
+        fwdFlow(arg, _, _, _, _, ap, apa, config)
+      )
+    }
+
+    pragma[nomagic]
+    private predicate flowOutOfCallAp(
+      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
+      Ap ap, Configuration config
+    ) {
+      exists(ApApprox apa |
+        flowOutOfCallApa(call, ret, kind, out, allowsFieldFlow, apa, config) and
+        fwdFlow(ret, _, _, _, _, ap, apa, config)
       )
     }
 
@@ -1628,7 +1733,7 @@ private module MkStage<StageSig PrevStage> {
       // flow into a callable
       exists(ParamNodeEx p, boolean allowsFieldFlow |
         revFlow(p, state, TReturnCtxNone(), returnAp, ap, config) and
-        flowIntoCall(_, node, p, allowsFieldFlow, config) and
+        flowIntoCallAp(_, node, p, allowsFieldFlow, ap, config) and
         (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
         returnCtx = TReturnCtxNone()
       )
@@ -1682,22 +1787,41 @@ private module MkStage<StageSig PrevStage> {
     ) {
       exists(NodeEx out, boolean allowsFieldFlow |
         revFlow(out, state, returnCtx, returnAp, ap, config) and
-        flowOutOfCall(call, ret, kind, out, allowsFieldFlow, config) and
+        flowOutOfCallAp(call, ret, kind, out, allowsFieldFlow, ap, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
+    /**
+     * Same as `flowThroughIntoCall`, but restricted to calls that are reached
+     * in the flow covered by `revFlow`, where data might flow through the target
+     * callable and back out at `call`.
+     */
+    pragma[nomagic]
+    private predicate revFlowThroughIntoCall(
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp,
+      Configuration config
+    ) {
+      flowThroughIntoCall(call, arg, p, allowsFieldFlow, argAp, config) and
+      revFlowIsReturned(call, _, _, _, _, config)
+    }
+
+    pragma[nomagic]
+    private predicate revFlowParamToReturn(
+      ParamNodeEx p, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap, Configuration config
+    ) {
+      revFlow(p, state, TReturnCtxMaybeFlowThrough(kind), apSome(returnAp), ap, config) and
+      parameterFlowThroughAllowed(p, kind)
+    }
+
     pragma[nomagic]
     private predicate revFlowInToReturn(
       DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap,
       Configuration config
     ) {
       exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(pragma[only_bind_into](p), state,
-          TReturnCtxMaybeFlowThrough(pragma[only_bind_into](kind)), apSome(returnAp), ap, config) and
-        flowThroughIntoCall(call, arg, p, allowsFieldFlow, config) and
-        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
-        parameterFlowThroughAllowed(p, kind)
+        revFlowParamToReturn(p, state, kind, returnAp, ap, config) and
+        revFlowThroughIntoCall(call, arg, p, allowsFieldFlow, ap, config)
       )
     }
 
@@ -1750,6 +1874,11 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     predicate revFlow(NodeEx node, Configuration config) { revFlow(node, _, _, _, _, config) }
 
+    pragma[nomagic]
+    predicate revFlowAp(NodeEx node, Ap ap, Configuration config) {
+      revFlow(node, _, _, _, ap, config)
+    }
+
     // use an alias as a workaround for bad functionality-induced joins
     pragma[nomagic]
     additional predicate revFlowAlias(NodeEx node, Configuration config) {
@@ -1786,9 +1915,9 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate parameterFlowsThroughRev(
-      ParamNodeEx p, Ap ap, ReturnKindExt kind, Configuration config
+      ParamNodeEx p, Ap ap, ReturnKindExt kind, Ap returnAp, Configuration config
     ) {
-      revFlow(p, _, TReturnCtxMaybeFlowThrough(kind), apSome(_), ap, config) and
+      revFlow(p, _, TReturnCtxMaybeFlowThrough(kind), apSome(returnAp), ap, config) and
       parameterFlowThroughAllowed(p, kind)
     }
 
@@ -1796,27 +1925,36 @@ private module MkStage<StageSig PrevStage> {
     predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
       exists(RetNodeEx ret, ReturnKindExt kind |
         returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
-        parameterFlowsThroughRev(p, ap, kind, config)
+        parameterFlowsThroughRev(p, ap, kind, _, config)
       )
     }
 
     pragma[nomagic]
-    predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config) {
-      exists(ParamNodeEx p, Ap ap |
-        returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
-        parameterFlowsThroughRev(p, ap, kind, config)
+    predicate returnMayFlowThrough(
+      RetNodeEx ret, Ap argAp, Ap ap, ReturnKindExt kind, Configuration config
+    ) {
+      exists(ParamNodeEx p |
+        returnFlowsThrough(ret, kind, _, _, p, argAp, ap, config) and
+        parameterFlowsThroughRev(p, argAp, kind, ap, config)
+      )
+    }
+
+    pragma[nomagic]
+    predicate revFlowInToReturnIsReturned(
+      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnCtx returnCtx, ApOption returnAp,
+      Ap ap, Configuration config
+    ) {
+      exists(ReturnKindExt returnKind0, Ap returnAp0 |
+        revFlowInToReturn(call, arg, state, returnKind0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
       )
     }
 
     pragma[nomagic]
     predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
-      exists(
-        ReturnKindExt returnKind0, Ap returnAp0, ArgNodeEx arg, FlowState state,
-        ReturnCtx returnCtx, ApOption returnAp, Ap ap
-      |
+      exists(ArgNodeEx arg, FlowState state, ReturnCtx returnCtx, ApOption returnAp, Ap ap |
         revFlow(arg, state, returnCtx, returnAp, ap, config) and
-        revFlowInToReturn(call, arg, state, returnKind0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
+        revFlowInToReturnIsReturned(call, arg, state, returnCtx, returnAp, ap, config)
       )
     }
 
@@ -2179,16 +2317,16 @@ private module LocalFlowBigStep {
   pragma[nomagic]
   predicate localFlowBigStep(
     NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
-    AccessPathFrontNil apf, Configuration config, LocalCallContext callContext
+    DataFlowType t, Configuration config, LocalCallContext callContext
   ) {
-    localFlowStepPlus(node1, state1, node2, preservesValue, apf.getType(), config, callContext) and
+    localFlowStepPlus(node1, state1, node2, preservesValue, t, config, callContext) and
     localFlowExit(node2, state1, config) and
     state1 = state2
     or
     additionalLocalFlowStepNodeCand2(node1, state1, node2, state2, config) and
     state1 != state2 and
     preservesValue = false and
-    apf = TFrontNil(node2.getDataFlowType()) and
+    t = node2.getDataFlowType() and
     callContext.relevantFor(node1.getEnclosingCallable()) and
     not exists(DataFlowCall call | call = callContext.(LocalCallContextSpecificCall).getCall() |
       isUnreachableInCallCached(node1.asNode(), call) or
@@ -2202,11 +2340,87 @@ private import LocalFlowBigStep
 private module Stage3Param implements MkStage<Stage2>::StageParam {
   private module PrevStage = Stage2;
 
+  class Ap = ApproxAccessPathFront;
+
+  class ApNil = ApproxAccessPathFrontNil;
+
+  PrevStage::Ap getApprox(Ap ap) { result = ap.toBoolNonEmpty() }
+
+  ApNil getApNil(NodeEx node) {
+    PrevStage::revFlow(node, _) and result = TApproxFrontNil(node.getDataFlowType())
+  }
+
+  bindingset[tc, tail]
+  Ap apCons(TypedContent tc, Ap tail) { result.getAHead() = tc and exists(tail) }
+
+  pragma[noinline]
+  Content getHeadContent(Ap ap) { result = ap.getAHead().getContent() }
+
+  class ApOption = ApproxAccessPathFrontOption;
+
+  ApOption apNone() { result = TApproxAccessPathFrontNone() }
+
+  ApOption apSome(Ap ap) { result = TApproxAccessPathFrontSome(ap) }
+
+  import BooleanCallContext
+
+  predicate localStep(
+    NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
+    ApproxAccessPathFrontNil ap, Configuration config, LocalCc lcc
+  ) {
+    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap.getType(), config, _) and
+    exists(lcc)
+  }
+
+  predicate flowOutOfCall = flowOutOfCallNodeCand2/6;
+
+  predicate flowIntoCall = flowIntoCallNodeCand2/5;
+
+  pragma[nomagic]
+  private predicate expectsContentCand(NodeEx node, Ap ap, Configuration config) {
+    exists(Content c |
+      PrevStage::revFlow(node, pragma[only_bind_into](config)) and
+      PrevStage::readStepCand(_, c, _, pragma[only_bind_into](config)) and
+      expectsContentEx(node, c) and
+      c = ap.getAHead().getContent()
+    )
+  }
+
+  pragma[nomagic]
+  private predicate castingNodeEx(NodeEx node) { node.asNode() instanceof CastingNode }
+
+  bindingset[node, state, ap, config]
+  predicate filter(NodeEx node, FlowState state, Ap ap, Configuration config) {
+    exists(state) and
+    exists(config) and
+    (if castingNodeEx(node) then compatibleTypes(node.getDataFlowType(), ap.getType()) else any()) and
+    (
+      notExpectsContent(node)
+      or
+      expectsContentCand(node, ap, config)
+    )
+  }
+
+  bindingset[ap, contentType]
+  predicate typecheckStore(Ap ap, DataFlowType contentType) {
+    // We need to typecheck stores here, since reverse flow through a getter
+    // might have a different type here compared to inside the getter.
+    compatibleTypes(ap.getType(), contentType)
+  }
+}
+
+private module Stage3 implements StageSig {
+  import MkStage<Stage2>::Stage<Stage3Param>
+}
+
+private module Stage4Param implements MkStage<Stage3>::StageParam {
+  private module PrevStage = Stage3;
+
   class Ap = AccessPathFront;
 
   class ApNil = AccessPathFrontNil;
 
-  PrevStage::Ap getApprox(Ap ap) { result = ap.toBoolNonEmpty() }
+  PrevStage::Ap getApprox(Ap ap) { result = ap.toApprox() }
 
   ApNil getApNil(NodeEx node) {
     PrevStage::revFlow(node, _) and result = TFrontNil(node.getDataFlowType())
@@ -2226,16 +2440,42 @@ private module Stage3Param implements MkStage<Stage2>::StageParam {
 
   import BooleanCallContext
 
+  pragma[nomagic]
   predicate localStep(
     NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
     ApNil ap, Configuration config, LocalCc lcc
   ) {
-    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap, config, _) and exists(lcc)
+    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap.getType(), config, _) and
+    PrevStage::revFlow(node1, pragma[only_bind_into](state1), _, pragma[only_bind_into](config)) and
+    PrevStage::revFlowAlias(node2, pragma[only_bind_into](state2), _, pragma[only_bind_into](config)) and
+    exists(lcc)
   }
 
-  predicate flowOutOfCall = flowOutOfCallNodeCand2/6;
+  pragma[nomagic]
+  predicate flowOutOfCall(
+    DataFlowCall call, RetNodeEx node1, ReturnKindExt kind, NodeEx node2, boolean allowsFieldFlow,
+    Configuration config
+  ) {
+    exists(FlowState state |
+      flowOutOfCallNodeCand2(call, node1, kind, node2, allowsFieldFlow, config) and
+      PrevStage::revFlow(node2, pragma[only_bind_into](state), _, pragma[only_bind_into](config)) and
+      PrevStage::revFlowAlias(node1, pragma[only_bind_into](state), _,
+        pragma[only_bind_into](config))
+    )
+  }
 
-  predicate flowIntoCall = flowIntoCallNodeCand2/5;
+  pragma[nomagic]
+  predicate flowIntoCall(
+    DataFlowCall call, ArgNodeEx node1, ParamNodeEx node2, boolean allowsFieldFlow,
+    Configuration config
+  ) {
+    exists(FlowState state |
+      flowIntoCallNodeCand2(call, node1, node2, allowsFieldFlow, config) and
+      PrevStage::revFlow(node2, pragma[only_bind_into](state), _, pragma[only_bind_into](config)) and
+      PrevStage::revFlowAlias(node1, pragma[only_bind_into](state), _,
+        pragma[only_bind_into](config))
+    )
+  }
 
   pragma[nomagic]
   private predicate clearSet(NodeEx node, ContentSet c, Configuration config) {
@@ -2291,8 +2531,8 @@ private module Stage3Param implements MkStage<Stage2>::StageParam {
   }
 }
 
-private module Stage3 implements StageSig {
-  import MkStage<Stage2>::Stage<Stage3Param>
+private module Stage4 implements StageSig {
+  import MkStage<Stage3>::Stage<Stage4Param>
 }
 
 /**
@@ -2303,8 +2543,8 @@ private predicate flowCandSummaryCtx(
   NodeEx node, FlowState state, AccessPathFront argApf, Configuration config
 ) {
   exists(AccessPathFront apf |
-    Stage3::revFlow(node, state, TReturnCtxMaybeFlowThrough(_), _, apf, config) and
-    Stage3::fwdFlow(node, state, any(Stage3::CcCall ccc), _, TAccessPathFrontSome(argApf), apf,
+    Stage4::revFlow(node, state, TReturnCtxMaybeFlowThrough(_), _, apf, config) and
+    Stage4::fwdFlow(node, state, any(Stage4::CcCall ccc), _, TAccessPathFrontSome(argApf), apf,
       config)
   )
 }
@@ -2315,10 +2555,10 @@ private predicate flowCandSummaryCtx(
  */
 private predicate expensiveLen2unfolding(TypedContent tc, Configuration config) {
   exists(int tails, int nodes, int apLimit, int tupleLimit |
-    tails = strictcount(AccessPathFront apf | Stage3::consCand(tc, apf, config)) and
+    tails = strictcount(AccessPathFront apf | Stage4::consCand(tc, apf, config)) and
     nodes =
       strictcount(NodeEx n, FlowState state |
-        Stage3::revFlow(n, state, any(AccessPathFrontHead apf | apf.getHead() = tc), config)
+        Stage4::revFlow(n, state, any(AccessPathFrontHead apf | apf.getHead() = tc), config)
         or
         flowCandSummaryCtx(n, state, any(AccessPathFrontHead apf | apf.getHead() = tc), config)
       ) and
@@ -2332,11 +2572,11 @@ private predicate expensiveLen2unfolding(TypedContent tc, Configuration config)
 private newtype TAccessPathApprox =
   TNil(DataFlowType t) or
   TConsNil(TypedContent tc, DataFlowType t) {
-    Stage3::consCand(tc, TFrontNil(t), _) and
+    Stage4::consCand(tc, TFrontNil(t), _) and
     not expensiveLen2unfolding(tc, _)
   } or
   TConsCons(TypedContent tc1, TypedContent tc2, int len) {
-    Stage3::consCand(tc1, TFrontHead(tc2), _) and
+    Stage4::consCand(tc1, TFrontHead(tc2), _) and
     len in [2 .. accessPathLimit()] and
     not expensiveLen2unfolding(tc1, _)
   } or
@@ -2466,7 +2706,7 @@ private class AccessPathApproxCons1 extends AccessPathApproxCons, TCons1 {
   override AccessPathApprox pop(TypedContent head) {
     head = tc and
     (
-      exists(TypedContent tc2 | Stage3::consCand(tc, TFrontHead(tc2), _) |
+      exists(TypedContent tc2 | Stage4::consCand(tc, TFrontHead(tc2), _) |
         result = TConsCons(tc2, _, len - 1)
         or
         len = 2 and
@@ -2477,7 +2717,7 @@ private class AccessPathApproxCons1 extends AccessPathApproxCons, TCons1 {
       or
       exists(DataFlowType t |
         len = 1 and
-        Stage3::consCand(tc, TFrontNil(t), _) and
+        Stage4::consCand(tc, TFrontNil(t), _) and
         result = TNil(t)
       )
     )
@@ -2502,13 +2742,14 @@ private class AccessPathApproxOption extends TAccessPathApproxOption {
   }
 }
 
-private module Stage4Param implements MkStage<Stage3>::StageParam {
-  private module PrevStage = Stage3;
+private module Stage5Param implements MkStage<Stage4>::StageParam {
+  private module PrevStage = Stage4;
 
   class Ap = AccessPathApprox;
 
   class ApNil = AccessPathApproxNil;
 
+  pragma[nomagic]
   PrevStage::Ap getApprox(Ap ap) { result = ap.getFront() }
 
   ApNil getApNil(NodeEx node) {
@@ -2534,7 +2775,9 @@ private module Stage4Param implements MkStage<Stage3>::StageParam {
     NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
     ApNil ap, Configuration config, LocalCc lcc
   ) {
-    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap.getFront(), config, lcc)
+    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap.getType(), config, lcc) and
+    PrevStage::revFlow(node1, pragma[only_bind_into](state1), _, pragma[only_bind_into](config)) and
+    PrevStage::revFlowAlias(node2, pragma[only_bind_into](state2), _, pragma[only_bind_into](config))
   }
 
   pragma[nomagic]
@@ -2571,7 +2814,7 @@ private module Stage4Param implements MkStage<Stage3>::StageParam {
   predicate typecheckStore(Ap ap, DataFlowType contentType) { any() }
 }
 
-private module Stage4 = MkStage<Stage3>::Stage<Stage4Param>;
+private module Stage5 = MkStage<Stage4>::Stage<Stage5Param>;
 
 bindingset[conf, result]
 private Configuration unbindConf(Configuration conf) {
@@ -2585,8 +2828,8 @@ private predicate nodeMayUseSummary0(
 ) {
   exists(AccessPathApprox apa0 |
     c = n.getEnclosingCallable() and
-    Stage4::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
-    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TParameterPositionSome(pos),
+    Stage5::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
+    Stage5::fwdFlow(n, state, any(CallContextCall ccc), TParameterPositionSome(pos),
       TAccessPathApproxSome(apa), apa0, config)
   )
 }
@@ -2596,7 +2839,7 @@ private predicate nodeMayUseSummary(
   NodeEx n, FlowState state, AccessPathApprox apa, Configuration config
 ) {
   exists(DataFlowCallable c, ParameterPosition pos, ParamNodeEx p |
-    Stage4::parameterMayFlowThrough(p, apa, config) and
+    Stage5::parameterMayFlowThrough(p, apa, config) and
     nodeMayUseSummary0(n, c, pos, state, apa, config) and
     p.isParameterOf(c, pos)
   )
@@ -2606,8 +2849,8 @@ private newtype TSummaryCtx =
   TSummaryCtxNone() or
   TSummaryCtxSome(ParamNodeEx p, FlowState state, AccessPath ap) {
     exists(Configuration config |
-      Stage4::parameterMayFlowThrough(p, ap.getApprox(), config) and
-      Stage4::revFlow(p, state, _, config)
+      Stage5::parameterMayFlowThrough(p, ap.getApprox(), config) and
+      Stage5::revFlow(p, state, _, config)
     )
   }
 
@@ -2656,7 +2899,7 @@ private int count1to2unfold(AccessPathApproxCons1 apa, Configuration config) {
     len = apa.len() and
     result =
       strictcount(AccessPathFront apf |
-        Stage4::consCand(tc, any(AccessPathApprox ap | ap.getFront() = apf and ap.len() = len - 1),
+        Stage5::consCand(tc, any(AccessPathApprox ap | ap.getFront() = apf and ap.len() = len - 1),
           config)
       )
   )
@@ -2665,7 +2908,7 @@ private int count1to2unfold(AccessPathApproxCons1 apa, Configuration config) {
 private int countNodesUsingAccessPath(AccessPathApprox apa, Configuration config) {
   result =
     strictcount(NodeEx n, FlowState state |
-      Stage4::revFlow(n, state, apa, config) or nodeMayUseSummary(n, state, apa, config)
+      Stage5::revFlow(n, state, apa, config) or nodeMayUseSummary(n, state, apa, config)
     )
 }
 
@@ -2686,7 +2929,7 @@ private predicate expensiveLen1to2unfolding(AccessPathApproxCons1 apa, Configura
 private AccessPathApprox getATail(AccessPathApprox apa, Configuration config) {
   exists(TypedContent head |
     apa.pop(head) = result and
-    Stage4::consCand(head, result, config)
+    Stage5::consCand(head, result, config)
   )
 }
 
@@ -2768,7 +3011,7 @@ private newtype TPathNode =
     NodeEx node, FlowState state, CallContext cc, SummaryCtx sc, AccessPath ap, Configuration config
   ) {
     // A PathNode is introduced by a source ...
-    Stage4::revFlow(node, state, config) and
+    Stage5::revFlow(node, state, config) and
     sourceNode(node, state, config) and
     (
       if hasSourceCallCtx(config)
@@ -2782,7 +3025,7 @@ private newtype TPathNode =
     exists(PathNodeMid mid |
       pathStep(mid, node, state, cc, sc, ap) and
       pragma[only_bind_into](config) = mid.getConfiguration() and
-      Stage4::revFlow(node, state, ap.getApprox(), pragma[only_bind_into](config))
+      Stage5::revFlow(node, state, ap.getApprox(), pragma[only_bind_into](config))
     )
   } or
   TPathNodeSink(NodeEx node, FlowState state, Configuration config) {
@@ -2924,7 +3167,7 @@ private class AccessPathCons2 extends AccessPath, TAccessPathCons2 {
   override TypedContent getHead() { result = head1 }
 
   override AccessPath getTail() {
-    Stage4::consCand(head1, result.getApprox(), _) and
+    Stage5::consCand(head1, result.getApprox(), _) and
     result.getHead() = head2 and
     result.length() = len - 1
   }
@@ -2955,7 +3198,7 @@ private class AccessPathCons1 extends AccessPath, TAccessPathCons1 {
   override TypedContent getHead() { result = head }
 
   override AccessPath getTail() {
-    Stage4::consCand(head, result.getApprox(), _) and result.length() = len - 1
+    Stage5::consCand(head, result.getApprox(), _) and result.length() = len - 1
   }
 
   override AccessPathFrontHead getFront() { result = TFrontHead(head) }
@@ -3347,7 +3590,8 @@ private predicate pathStep(
     AccessPath ap0, NodeEx midnode, FlowState state0, Configuration conf, LocalCallContext localCC
   |
     pathNode(mid, midnode, state0, cc, sc, ap0, conf, localCC) and
-    localFlowBigStep(midnode, state0, node, state, false, ap.getFront(), conf, localCC) and
+    localFlowBigStep(midnode, state0, node, state, false, ap.(AccessPathNil).getType(), conf,
+      localCC) and
     ap0 instanceof AccessPathNil
   )
   or
@@ -3389,7 +3633,7 @@ private predicate pathReadStep(
 ) {
   ap0 = mid.getAp() and
   tc = ap0.getHead() and
-  Stage4::readStepCand(mid.getNodeEx(), tc.getContent(), node, mid.getConfiguration()) and
+  Stage5::readStepCand(mid.getNodeEx(), tc.getContent(), node, mid.getConfiguration()) and
   state = mid.getState() and
   cc = mid.getCallContext()
 }
@@ -3399,7 +3643,7 @@ private predicate pathStoreStep(
   PathNodeMid mid, NodeEx node, FlowState state, AccessPath ap0, TypedContent tc, CallContext cc
 ) {
   ap0 = mid.getAp() and
-  Stage4::storeStepCand(mid.getNodeEx(), _, tc, node, _, mid.getConfiguration()) and
+  Stage5::storeStepCand(mid.getNodeEx(), _, tc, node, _, mid.getConfiguration()) and
   state = mid.getState() and
   cc = mid.getCallContext()
 }
@@ -3436,7 +3680,7 @@ private NodeEx getAnOutNodeFlow(
   ReturnKindExt kind, DataFlowCall call, AccessPathApprox apa, Configuration config
 ) {
   result.asNode() = kind.getAnOutNode(call) and
-  Stage4::revFlow(result, _, apa, config)
+  Stage5::revFlow(result, _, apa, config)
 }
 
 /**
@@ -3472,7 +3716,7 @@ private predicate parameterCand(
   DataFlowCallable callable, ParameterPosition pos, AccessPathApprox apa, Configuration config
 ) {
   exists(ParamNodeEx p |
-    Stage4::revFlow(p, _, apa, config) and
+    Stage5::revFlow(p, _, apa, config) and
     p.isParameterOf(callable, pos)
   )
 }
@@ -3751,9 +3995,17 @@ predicate stageStats(
   n = 45 and
   Stage4::stats(false, nodes, fields, conscand, states, tuples, config)
   or
-  stage = "5 Fwd" and n = 50 and finalStats(true, nodes, fields, conscand, states, tuples)
+  stage = "5 Fwd" and
+  n = 50 and
+  Stage5::stats(true, nodes, fields, conscand, states, tuples, config)
   or
-  stage = "5 Rev" and n = 55 and finalStats(false, nodes, fields, conscand, states, tuples)
+  stage = "5 Rev" and
+  n = 55 and
+  Stage5::stats(false, nodes, fields, conscand, states, tuples, config)
+  or
+  stage = "6 Fwd" and n = 60 and finalStats(true, nodes, fields, conscand, states, tuples)
+  or
+  stage = "6 Rev" and n = 65 and finalStats(false, nodes, fields, conscand, states, tuples)
 }
 
 private module FlowExploration {
diff --git a/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImplCommon.qll b/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImplCommon.qll
index f981834a6d4..c66aefced8d 100644
--- a/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImplCommon.qll
+++ b/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImplCommon.qll
@@ -926,18 +926,46 @@ private module Cached {
     TReturnCtxNoFlowThrough() or
     TReturnCtxMaybeFlowThrough(ReturnKindExt kind)
 
+  cached
+  newtype TTypedContentApprox =
+    MkTypedContentApprox(ContentApprox c, DataFlowType t) {
+      exists(Content cont |
+        c = getContentApprox(cont) and
+        store(_, cont, _, _, t)
+      )
+    }
+
   cached
   newtype TTypedContent = MkTypedContent(Content c, DataFlowType t) { store(_, c, _, _, t) }
 
+  cached
+  TypedContent getATypedContent(TypedContentApprox c) {
+    exists(ContentApprox cls, DataFlowType t, Content cont |
+      c = MkTypedContentApprox(cls, pragma[only_bind_into](t)) and
+      result = MkTypedContent(cont, pragma[only_bind_into](t)) and
+      cls = getContentApprox(cont)
+    )
+  }
+
   cached
   newtype TAccessPathFront =
     TFrontNil(DataFlowType t) or
     TFrontHead(TypedContent tc)
 
+  cached
+  newtype TApproxAccessPathFront =
+    TApproxFrontNil(DataFlowType t) or
+    TApproxFrontHead(TypedContentApprox tc)
+
   cached
   newtype TAccessPathFrontOption =
     TAccessPathFrontNone() or
     TAccessPathFrontSome(AccessPathFront apf)
+
+  cached
+  newtype TApproxAccessPathFrontOption =
+    TApproxAccessPathFrontNone() or
+    TApproxAccessPathFrontSome(ApproxAccessPathFront apf)
 }
 
 /**
@@ -1353,6 +1381,75 @@ class ReturnCtx extends TReturnCtx {
   }
 }
 
+/** An approximated `Content` tagged with the type of a containing object. */
+class TypedContentApprox extends MkTypedContentApprox {
+  private ContentApprox c;
+  private DataFlowType t;
+
+  TypedContentApprox() { this = MkTypedContentApprox(c, t) }
+
+  /** Gets a typed content approximated by this value. */
+  TypedContent getATypedContent() { result = getATypedContent(this) }
+
+  /** Gets the container type. */
+  DataFlowType getContainerType() { result = t }
+
+  /** Gets a textual representation of this approximated content. */
+  string toString() { result = c.toString() }
+}
+
+/**
+ * The front of an approximated access path. This is either a head or a nil.
+ */
+abstract class ApproxAccessPathFront extends TApproxAccessPathFront {
+  abstract string toString();
+
+  abstract DataFlowType getType();
+
+  abstract boolean toBoolNonEmpty();
+
+  pragma[nomagic]
+  TypedContent getAHead() {
+    exists(TypedContentApprox cont |
+      this = TApproxFrontHead(cont) and
+      result = cont.getATypedContent()
+    )
+  }
+}
+
+class ApproxAccessPathFrontNil extends ApproxAccessPathFront, TApproxFrontNil {
+  private DataFlowType t;
+
+  ApproxAccessPathFrontNil() { this = TApproxFrontNil(t) }
+
+  override string toString() { result = ppReprType(t) }
+
+  override DataFlowType getType() { result = t }
+
+  override boolean toBoolNonEmpty() { result = false }
+}
+
+class ApproxAccessPathFrontHead extends ApproxAccessPathFront, TApproxFrontHead {
+  private TypedContentApprox tc;
+
+  ApproxAccessPathFrontHead() { this = TApproxFrontHead(tc) }
+
+  override string toString() { result = tc.toString() }
+
+  override DataFlowType getType() { result = tc.getContainerType() }
+
+  override boolean toBoolNonEmpty() { result = true }
+}
+
+/** An optional approximated access path front. */
+class ApproxAccessPathFrontOption extends TApproxAccessPathFrontOption {
+  string toString() {
+    this = TApproxAccessPathFrontNone() and result = "<none>"
+    or
+    this = TApproxAccessPathFrontSome(any(ApproxAccessPathFront apf | result = apf.toString()))
+  }
+}
+
 /** A `Content` tagged with the type of a containing object. */
 class TypedContent extends MkTypedContent {
   private Content c;
@@ -1385,7 +1482,7 @@ abstract class AccessPathFront extends TAccessPathFront {
 
   abstract DataFlowType getType();
 
-  abstract boolean toBoolNonEmpty();
+  abstract ApproxAccessPathFront toApprox();
 
   TypedContent getHead() { this = TFrontHead(result) }
 }
@@ -1399,7 +1496,7 @@ class AccessPathFrontNil extends AccessPathFront, TFrontNil {
 
   override DataFlowType getType() { result = t }
 
-  override boolean toBoolNonEmpty() { result = false }
+  override ApproxAccessPathFront toApprox() { result = TApproxFrontNil(t) }
 }
 
 class AccessPathFrontHead extends AccessPathFront, TFrontHead {
@@ -1411,7 +1508,7 @@ class AccessPathFrontHead extends AccessPathFront, TFrontHead {
 
   override DataFlowType getType() { result = tc.getContainerType() }
 
-  override boolean toBoolNonEmpty() { result = true }
+  override ApproxAccessPathFront toApprox() { result.getAHead() = tc }
 }
 
 /** An optional access path front. */
diff --git a/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImplConsistency.qll b/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImplConsistency.qll
index 3eacc21f356..e85e0cd92ec 100644
--- a/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImplConsistency.qll
+++ b/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImplConsistency.qll
@@ -260,4 +260,9 @@ module Consistency {
     not exists(unique(ParameterPosition pos0 | isParameterNode(p, c, pos0))) and
     msg = "Parameter node with multiple positions."
   }
+
+  query predicate uniqueContentApprox(Content c, string msg) {
+    not exists(unique(ContentApprox approx | approx = getContentApprox(c))) and
+    msg = "Non-unique content approximation."
+  }
 }
diff --git a/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImplForOnActivityResult.qll b/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImplForOnActivityResult.qll
index ccde916a3c2..6741ccc2f06 100644
--- a/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImplForOnActivityResult.qll
+++ b/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImplForOnActivityResult.qll
@@ -621,23 +621,6 @@ private predicate parameterFlowThroughAllowed(ParamNodeEx p, ReturnKindExt kind)
   )
 }
 
-/**
- * Holds if flow from a parameter at position `pos` inside `c` to a return node of
- * kind `kind` is allowed.
- *
- * We don't expect a parameter to return stored in itself, unless
- * explicitly allowed
- */
-bindingset[c, pos, kind]
-private predicate parameterFlowThroughAllowed(
-  DataFlowCallable c, ParameterPosition pos, ReturnKindExt kind
-) {
-  exists(ParamNodeEx p |
-    p.isParameterOf(c, pos) and
-    parameterFlowThroughAllowed(p, kind)
-  )
-}
-
 private module Stage1 implements StageSig {
   class Ap = Unit;
 
@@ -980,6 +963,12 @@ private module Stage1 implements StageSig {
   pragma[nomagic]
   predicate revFlow(NodeEx node, Configuration config) { revFlow(node, _, config) }
 
+  pragma[nomagic]
+  predicate revFlowAp(NodeEx node, Ap ap, Configuration config) {
+    revFlow(node, config) and
+    exists(ap)
+  }
+
   bindingset[node, state, config]
   predicate revFlow(NodeEx node, FlowState state, Ap ap, Configuration config) {
     revFlow(node, _, pragma[only_bind_into](config)) and
@@ -1022,9 +1011,13 @@ private module Stage1 implements StageSig {
   }
 
   pragma[nomagic]
-  predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config) {
+  predicate returnMayFlowThrough(
+    RetNodeEx ret, Ap argAp, Ap ap, ReturnKindExt kind, Configuration config
+  ) {
     throughFlowNodeCand(ret, config) and
-    kind = ret.getKind()
+    kind = ret.getKind() and
+    exists(argAp) and
+    exists(ap)
   }
 
   pragma[nomagic]
@@ -1189,6 +1182,8 @@ private signature module StageSig {
 
   predicate revFlow(NodeEx node, Configuration config);
 
+  predicate revFlowAp(NodeEx node, Ap ap, Configuration config);
+
   bindingset[node, state, config]
   predicate revFlow(NodeEx node, FlowState state, Ap ap, Configuration config);
 
@@ -1196,7 +1191,9 @@ private signature module StageSig {
 
   predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config);
 
-  predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config);
+  predicate returnMayFlowThrough(
+    RetNodeEx ret, Ap argAp, Ap ap, ReturnKindExt kind, Configuration config
+  );
 
   predicate storeStepCand(
     NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, DataFlowType contentType,
@@ -1281,21 +1278,43 @@ private module MkStage<StageSig PrevStage> {
     import Param
 
     /* Begin: Stage logic. */
-    bindingset[result, apa]
-    private ApApprox unbindApa(ApApprox apa) {
-      pragma[only_bind_out](apa) = pragma[only_bind_out](result)
+    // use an alias as a workaround for bad functionality-induced joins
+    pragma[nomagic]
+    private predicate revFlowApAlias(NodeEx node, ApApprox apa, Configuration config) {
+      PrevStage::revFlowAp(node, apa, config)
+    }
+
+    pragma[nomagic]
+    private predicate flowIntoCallApa(
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, ApApprox apa,
+      Configuration config
+    ) {
+      flowIntoCall(call, arg, p, allowsFieldFlow, config) and
+      PrevStage::revFlowAp(p, pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
+      revFlowApAlias(arg, pragma[only_bind_into](apa), pragma[only_bind_into](config))
+    }
+
+    pragma[nomagic]
+    private predicate flowOutOfCallApa(
+      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
+      ApApprox apa, Configuration config
+    ) {
+      flowOutOfCall(call, ret, kind, out, allowsFieldFlow, config) and
+      PrevStage::revFlowAp(out, pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
+      revFlowApAlias(ret, pragma[only_bind_into](apa), pragma[only_bind_into](config))
     }
 
     pragma[nomagic]
     private predicate flowThroughOutOfCall(
-      DataFlowCall call, DataFlowCallable c, CcCall ccc, RetNodeEx ret, ReturnKindExt kind,
-      NodeEx out, boolean allowsFieldFlow, Configuration config
+      DataFlowCall call, CcCall ccc, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow,
+      ApApprox argApa, ApApprox apa, Configuration config
     ) {
-      flowOutOfCall(call, ret, kind, out, allowsFieldFlow, pragma[only_bind_into](config)) and
-      PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
-      PrevStage::returnMayFlowThrough(ret, kind, pragma[only_bind_into](config)) and
-      matchesCall(ccc, call) and
-      c = ret.getEnclosingCallable()
+      exists(ReturnKindExt kind |
+        flowOutOfCallApa(call, ret, kind, out, allowsFieldFlow, apa, pragma[only_bind_into](config)) and
+        PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
+        PrevStage::returnMayFlowThrough(ret, argApa, apa, kind, pragma[only_bind_into](config)) and
+        matchesCall(ccc, call)
+      )
     }
 
     /**
@@ -1307,39 +1326,50 @@ private module MkStage<StageSig PrevStage> {
      * corresponding parameter position and access path of that argument, respectively.
      */
     pragma[nomagic]
+    additional predicate fwdFlow(
+      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      Ap ap, ApApprox apa, Configuration config
+    ) {
+      fwdFlow0(node, state, cc, summaryCtx, argAp, ap, apa, config) and
+      PrevStage::revFlow(node, state, apa, config) and
+      filter(node, state, ap, config)
+    }
+
+    pragma[inline]
     additional predicate fwdFlow(
       NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
       Ap ap, Configuration config
     ) {
-      fwdFlow0(node, state, cc, summaryCtx, argAp, ap, config) and
-      PrevStage::revFlow(node, state, unbindApa(getApprox(ap)), config) and
-      filter(node, state, ap, config)
+      fwdFlow(node, state, cc, summaryCtx, argAp, ap, _, config)
     }
 
     pragma[nomagic]
     private predicate fwdFlow0(
       NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      Ap ap, Configuration config
+      Ap ap, ApApprox apa, Configuration config
     ) {
       sourceNode(node, state, config) and
       (if hasSourceCallCtx(config) then cc = ccSomeCall() else cc = ccNone()) and
       argAp = apNone() and
       summaryCtx = TParameterPositionNone() and
-      ap = getApNil(node)
+      ap = getApNil(node) and
+      apa = getApprox(ap)
       or
-      exists(NodeEx mid, FlowState state0, Ap ap0, LocalCc localCc |
-        fwdFlow(mid, state0, cc, summaryCtx, argAp, ap0, config) and
+      exists(NodeEx mid, FlowState state0, Ap ap0, ApApprox apa0, LocalCc localCc |
+        fwdFlow(mid, state0, cc, summaryCtx, argAp, ap0, apa0, config) and
         localCc = getLocalCc(mid, cc)
       |
         localStep(mid, state0, node, state, true, _, config, localCc) and
-        ap = ap0
+        ap = ap0 and
+        apa = apa0
         or
         localStep(mid, state0, node, state, false, ap, config, localCc) and
-        ap0 instanceof ApNil
+        ap0 instanceof ApNil and
+        apa = getApprox(ap)
       )
       or
       exists(NodeEx mid |
-        fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, apa, pragma[only_bind_into](config)) and
         jumpStep(mid, node, config) and
         cc = ccNone() and
         summaryCtx = TParameterPositionNone() and
@@ -1352,7 +1382,8 @@ private module MkStage<StageSig PrevStage> {
         cc = ccNone() and
         summaryCtx = TParameterPositionNone() and
         argAp = apNone() and
-        ap = getApNil(node)
+        ap = getApNil(node) and
+        apa = getApprox(ap)
       )
       or
       exists(NodeEx mid, FlowState state0, ApNil nil |
@@ -1361,32 +1392,32 @@ private module MkStage<StageSig PrevStage> {
         cc = ccNone() and
         summaryCtx = TParameterPositionNone() and
         argAp = apNone() and
-        ap = getApNil(node)
+        ap = getApNil(node) and
+        apa = getApprox(ap)
       )
       or
       // store
       exists(TypedContent tc, Ap ap0 |
         fwdFlowStore(_, ap0, tc, node, state, cc, summaryCtx, argAp, config) and
-        ap = apCons(tc, ap0)
+        ap = apCons(tc, ap0) and
+        apa = getApprox(ap)
       )
       or
       // read
       exists(Ap ap0, Content c |
         fwdFlowRead(ap0, c, _, node, state, cc, summaryCtx, argAp, config) and
-        fwdFlowConsCand(ap0, c, ap, config)
+        fwdFlowConsCand(ap0, c, ap, config) and
+        apa = getApprox(ap)
       )
       or
       // flow into a callable
-      exists(ApApprox apa |
-        fwdFlowIn(_, node, state, _, cc, _, _, ap, config) and
-        apa = getApprox(ap) and
-        if PrevStage::parameterMayFlowThrough(node, apa, config)
-        then (
-          summaryCtx = TParameterPositionSome(node.(ParamNodeEx).getPosition()) and
-          argAp = apSome(ap)
-        ) else (
-          summaryCtx = TParameterPositionNone() and argAp = apNone()
-        )
+      fwdFlowIn(_, node, state, _, cc, _, _, ap, apa, config) and
+      if PrevStage::parameterMayFlowThrough(node, apa, config)
+      then (
+        summaryCtx = TParameterPositionSome(node.(ParamNodeEx).getPosition()) and
+        argAp = apSome(ap)
+      ) else (
+        summaryCtx = TParameterPositionNone() and argAp = apNone()
       )
       or
       // flow out of a callable
@@ -1394,8 +1425,8 @@ private module MkStage<StageSig PrevStage> {
         DataFlowCall call, RetNodeEx ret, boolean allowsFieldFlow, CcNoCall innercc,
         DataFlowCallable inner
       |
-        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, config) and
-        flowOutOfCall(call, ret, _, node, allowsFieldFlow, config) and
+        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, apa, config) and
+        flowOutOfCallApa(call, ret, _, node, allowsFieldFlow, apa, config) and
         inner = ret.getEnclosingCallable() and
         cc = getCallContextReturn(inner, call, innercc) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
@@ -1403,7 +1434,7 @@ private module MkStage<StageSig PrevStage> {
       or
       // flow through a callable
       exists(DataFlowCall call, ParameterPosition summaryCtx0, Ap argAp0 |
-        fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, config) and
+        fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, apa, config) and
         fwdFlowIsEntered(call, cc, summaryCtx, argAp, summaryCtx0, argAp0, config)
       )
     }
@@ -1413,9 +1444,9 @@ private module MkStage<StageSig PrevStage> {
       NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc,
       ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
     ) {
-      exists(DataFlowType contentType |
-        fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, config) and
-        PrevStage::storeStepCand(node1, unbindApa(getApprox(ap1)), tc, node2, contentType, config) and
+      exists(DataFlowType contentType, ApApprox apa1 |
+        fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, apa1, config) and
+        PrevStage::storeStepCand(node1, apa1, tc, node2, contentType, config) and
         typecheckStore(ap1, contentType)
       )
     }
@@ -1433,43 +1464,104 @@ private module MkStage<StageSig PrevStage> {
       )
     }
 
+    private class ApNonNil instanceof Ap {
+      pragma[nomagic]
+      ApNonNil() { not this instanceof ApNil }
+
+      string toString() { result = "" }
+    }
+
+    pragma[nomagic]
+    private predicate fwdFlowRead0(
+      NodeEx node1, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      ApNonNil ap, Configuration config
+    ) {
+      fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
+      PrevStage::readStepCand(node1, _, _, config)
+    }
+
     pragma[nomagic]
     private predicate fwdFlowRead(
       Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc,
       ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
     ) {
-      fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
+      fwdFlowRead0(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, c, node2, config) and
       getHeadContent(ap) = c
     }
 
     pragma[nomagic]
     private predicate fwdFlowIn(
-      DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, Cc innercc,
-      ParameterPositionOption summaryCtx, ApOption argAp, Ap ap, Configuration config
+      DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, CcCall innercc,
+      ParameterPositionOption summaryCtx, ApOption argAp, Ap ap, ApApprox apa, Configuration config
     ) {
       exists(ArgNodeEx arg, boolean allowsFieldFlow |
-        fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, config) and
-        flowIntoCall(call, arg, p, allowsFieldFlow, config) and
+        fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, apa, config) and
+        flowIntoCallApa(call, arg, p, allowsFieldFlow, apa, config) and
         innercc = getCallContextCall(call, p.getEnclosingCallable(), outercc) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
+    pragma[nomagic]
+    private predicate fwdFlowRetFromArg(
+      RetNodeEx ret, FlowState state, CcCall ccc, ParameterPosition summaryCtx, ParamNodeEx p,
+      Ap argAp, ApApprox argApa, Ap ap, ApApprox apa, Configuration config
+    ) {
+      exists(DataFlowCallable c, ReturnKindExt kind |
+        fwdFlow(pragma[only_bind_into](ret), state, ccc,
+          TParameterPositionSome(pragma[only_bind_into](summaryCtx)), apSome(argAp), ap, apa, config) and
+        getApprox(argAp) = argApa and
+        c = ret.getEnclosingCallable() and
+        kind = ret.getKind() and
+        p.isParameterOf(c, pragma[only_bind_into](summaryCtx)) and
+        parameterFlowThroughAllowed(p, kind)
+      )
+    }
+
+    pragma[inline]
+    private predicate fwdFlowInMayFlowThrough(
+      DataFlowCall call, Cc cc, CcCall innerCc, ParameterPositionOption summaryCtx, ApOption argAp,
+      ParamNodeEx param, Ap ap, ApApprox apa, Configuration config
+    ) {
+      fwdFlowIn(call, pragma[only_bind_into](param), _, cc, innerCc, summaryCtx, argAp, ap,
+        pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
+      PrevStage::parameterMayFlowThrough(param, apa, config)
+    }
+
+    // dedup before joining with `flowThroughOutOfCall`
+    pragma[nomagic]
+    private predicate fwdFlowInMayFlowThroughProj(
+      DataFlowCall call, CcCall innerCc, ApApprox apa, Configuration config
+    ) {
+      fwdFlowInMayFlowThrough(call, _, innerCc, _, _, _, _, apa, config)
+    }
+
+    /**
+     * Same as `flowThroughOutOfCall`, but restricted to calls that are reached
+     * in the flow covered by `fwdFlow`, where data might flow through the target
+     * callable and back out at `call`.
+     */
+    pragma[nomagic]
+    private predicate fwdFlowThroughOutOfCall(
+      DataFlowCall call, CcCall ccc, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow,
+      ApApprox argApa, ApApprox apa, Configuration config
+    ) {
+      fwdFlowInMayFlowThroughProj(call, ccc, argApa, config) and
+      flowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, argApa, apa, config)
+    }
+
     pragma[nomagic]
     private predicate fwdFlowOutFromArg(
       DataFlowCall call, NodeEx out, FlowState state, ParameterPosition summaryCtx, Ap argAp, Ap ap,
-      Configuration config
+      ApApprox apa, Configuration config
     ) {
-      exists(
-        DataFlowCallable c, RetNodeEx ret, ReturnKindExt kind, boolean allowsFieldFlow, CcCall ccc
-      |
-        fwdFlow(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc),
-          TParameterPositionSome(pragma[only_bind_into](summaryCtx)), apSome(argAp), ap, config) and
-        flowThroughOutOfCall(call, pragma[only_bind_into](c), ccc, ret, kind, out, allowsFieldFlow,
+      exists(RetNodeEx ret, boolean allowsFieldFlow, CcCall ccc, ApApprox argApa |
+        fwdFlowRetFromArg(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc),
+          summaryCtx, _, argAp, pragma[only_bind_into](argApa), ap, pragma[only_bind_into](apa),
           config) and
-        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
-        parameterFlowThroughAllowed(c, pragma[only_bind_into](summaryCtx), kind)
+        fwdFlowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, argApa, apa, config) and
+        (if allowsFieldFlow = false then ap instanceof ApNil else any())
       )
     }
 
@@ -1483,8 +1575,7 @@ private module MkStage<StageSig PrevStage> {
       ParameterPosition pos, Ap ap, Configuration config
     ) {
       exists(ParamNodeEx param |
-        fwdFlowIn(call, param, _, cc, _, summaryCtx, argAp, ap, config) and
-        PrevStage::parameterMayFlowThrough(param, unbindApa(getApprox(ap)), config) and
+        fwdFlowInMayFlowThrough(call, cc, _, summaryCtx, argAp, param, ap, _, config) and
         pos = param.getPosition()
       )
     }
@@ -1505,41 +1596,55 @@ private module MkStage<StageSig PrevStage> {
       fwdFlowConsCand(ap1, c, ap2, config)
     }
 
-    pragma[nomagic]
-    private predicate returnFlowsThrough0(
-      RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, DataFlowCallable c,
-      ParameterPosition ppos, Ap argAp, Ap ap, Configuration config
-    ) {
-      exists(boolean allowsFieldFlow |
-        fwdFlow(ret, state, ccc, TParameterPositionSome(ppos), apSome(argAp), ap, config) and
-        flowThroughOutOfCall(_, c, _, pragma[only_bind_into](ret), kind, _, allowsFieldFlow,
-          pragma[only_bind_into](config)) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
-      )
-    }
-
     pragma[nomagic]
     private predicate returnFlowsThrough(
       RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, ParamNodeEx p, Ap argAp,
       Ap ap, Configuration config
     ) {
-      exists(DataFlowCallable c, ParameterPosition ppos |
-        returnFlowsThrough0(ret, kind, state, ccc, c, ppos, argAp, ap, config) and
-        p.isParameterOf(c, ppos) and
-        parameterFlowThroughAllowed(p, kind)
+      exists(boolean allowsFieldFlow, ApApprox argApa, ApApprox apa |
+        fwdFlowRetFromArg(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc), _, p,
+          argAp, pragma[only_bind_into](argApa), ap, pragma[only_bind_into](apa), config) and
+        kind = ret.getKind() and
+        fwdFlowThroughOutOfCall(_, ccc, ret, _, allowsFieldFlow, argApa, apa, config) and
+        (if allowsFieldFlow = false then ap instanceof ApNil else any())
       )
     }
 
     pragma[nomagic]
     private predicate flowThroughIntoCall(
-      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp,
+      Configuration config
     ) {
-      exists(Ap argAp |
-        flowIntoCall(call, pragma[only_bind_into](arg), pragma[only_bind_into](p), allowsFieldFlow,
+      exists(ApApprox argApa |
+        flowIntoCallApa(call, pragma[only_bind_into](arg), pragma[only_bind_into](p),
+          allowsFieldFlow, argApa, pragma[only_bind_into](config)) and
+        fwdFlow(arg, _, _, _, _, pragma[only_bind_into](argAp), argApa,
           pragma[only_bind_into](config)) and
-        fwdFlow(arg, _, _, _, _, pragma[only_bind_into](argAp), pragma[only_bind_into](config)) and
         returnFlowsThrough(_, _, _, _, p, pragma[only_bind_into](argAp), _,
-          pragma[only_bind_into](config))
+          pragma[only_bind_into](config)) and
+        if allowsFieldFlow = false then argAp instanceof ApNil else any()
+      )
+    }
+
+    pragma[nomagic]
+    private predicate flowIntoCallAp(
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap ap,
+      Configuration config
+    ) {
+      exists(ApApprox apa |
+        flowIntoCallApa(call, arg, p, allowsFieldFlow, apa, config) and
+        fwdFlow(arg, _, _, _, _, ap, apa, config)
+      )
+    }
+
+    pragma[nomagic]
+    private predicate flowOutOfCallAp(
+      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
+      Ap ap, Configuration config
+    ) {
+      exists(ApApprox apa |
+        flowOutOfCallApa(call, ret, kind, out, allowsFieldFlow, apa, config) and
+        fwdFlow(ret, _, _, _, _, ap, apa, config)
       )
     }
 
@@ -1628,7 +1733,7 @@ private module MkStage<StageSig PrevStage> {
       // flow into a callable
       exists(ParamNodeEx p, boolean allowsFieldFlow |
         revFlow(p, state, TReturnCtxNone(), returnAp, ap, config) and
-        flowIntoCall(_, node, p, allowsFieldFlow, config) and
+        flowIntoCallAp(_, node, p, allowsFieldFlow, ap, config) and
         (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
         returnCtx = TReturnCtxNone()
       )
@@ -1682,22 +1787,41 @@ private module MkStage<StageSig PrevStage> {
     ) {
       exists(NodeEx out, boolean allowsFieldFlow |
         revFlow(out, state, returnCtx, returnAp, ap, config) and
-        flowOutOfCall(call, ret, kind, out, allowsFieldFlow, config) and
+        flowOutOfCallAp(call, ret, kind, out, allowsFieldFlow, ap, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
+    /**
+     * Same as `flowThroughIntoCall`, but restricted to calls that are reached
+     * in the flow covered by `revFlow`, where data might flow through the target
+     * callable and back out at `call`.
+     */
+    pragma[nomagic]
+    private predicate revFlowThroughIntoCall(
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp,
+      Configuration config
+    ) {
+      flowThroughIntoCall(call, arg, p, allowsFieldFlow, argAp, config) and
+      revFlowIsReturned(call, _, _, _, _, config)
+    }
+
+    pragma[nomagic]
+    private predicate revFlowParamToReturn(
+      ParamNodeEx p, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap, Configuration config
+    ) {
+      revFlow(p, state, TReturnCtxMaybeFlowThrough(kind), apSome(returnAp), ap, config) and
+      parameterFlowThroughAllowed(p, kind)
+    }
+
     pragma[nomagic]
     private predicate revFlowInToReturn(
       DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap,
       Configuration config
     ) {
       exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(pragma[only_bind_into](p), state,
-          TReturnCtxMaybeFlowThrough(pragma[only_bind_into](kind)), apSome(returnAp), ap, config) and
-        flowThroughIntoCall(call, arg, p, allowsFieldFlow, config) and
-        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
-        parameterFlowThroughAllowed(p, kind)
+        revFlowParamToReturn(p, state, kind, returnAp, ap, config) and
+        revFlowThroughIntoCall(call, arg, p, allowsFieldFlow, ap, config)
       )
     }
 
@@ -1750,6 +1874,11 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     predicate revFlow(NodeEx node, Configuration config) { revFlow(node, _, _, _, _, config) }
 
+    pragma[nomagic]
+    predicate revFlowAp(NodeEx node, Ap ap, Configuration config) {
+      revFlow(node, _, _, _, ap, config)
+    }
+
     // use an alias as a workaround for bad functionality-induced joins
     pragma[nomagic]
     additional predicate revFlowAlias(NodeEx node, Configuration config) {
@@ -1786,9 +1915,9 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate parameterFlowsThroughRev(
-      ParamNodeEx p, Ap ap, ReturnKindExt kind, Configuration config
+      ParamNodeEx p, Ap ap, ReturnKindExt kind, Ap returnAp, Configuration config
     ) {
-      revFlow(p, _, TReturnCtxMaybeFlowThrough(kind), apSome(_), ap, config) and
+      revFlow(p, _, TReturnCtxMaybeFlowThrough(kind), apSome(returnAp), ap, config) and
       parameterFlowThroughAllowed(p, kind)
     }
 
@@ -1796,27 +1925,36 @@ private module MkStage<StageSig PrevStage> {
     predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
       exists(RetNodeEx ret, ReturnKindExt kind |
         returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
-        parameterFlowsThroughRev(p, ap, kind, config)
+        parameterFlowsThroughRev(p, ap, kind, _, config)
       )
     }
 
     pragma[nomagic]
-    predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config) {
-      exists(ParamNodeEx p, Ap ap |
-        returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
-        parameterFlowsThroughRev(p, ap, kind, config)
+    predicate returnMayFlowThrough(
+      RetNodeEx ret, Ap argAp, Ap ap, ReturnKindExt kind, Configuration config
+    ) {
+      exists(ParamNodeEx p |
+        returnFlowsThrough(ret, kind, _, _, p, argAp, ap, config) and
+        parameterFlowsThroughRev(p, argAp, kind, ap, config)
+      )
+    }
+
+    pragma[nomagic]
+    predicate revFlowInToReturnIsReturned(
+      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnCtx returnCtx, ApOption returnAp,
+      Ap ap, Configuration config
+    ) {
+      exists(ReturnKindExt returnKind0, Ap returnAp0 |
+        revFlowInToReturn(call, arg, state, returnKind0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
       )
     }
 
     pragma[nomagic]
     predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
-      exists(
-        ReturnKindExt returnKind0, Ap returnAp0, ArgNodeEx arg, FlowState state,
-        ReturnCtx returnCtx, ApOption returnAp, Ap ap
-      |
+      exists(ArgNodeEx arg, FlowState state, ReturnCtx returnCtx, ApOption returnAp, Ap ap |
         revFlow(arg, state, returnCtx, returnAp, ap, config) and
-        revFlowInToReturn(call, arg, state, returnKind0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
+        revFlowInToReturnIsReturned(call, arg, state, returnCtx, returnAp, ap, config)
       )
     }
 
@@ -2179,16 +2317,16 @@ private module LocalFlowBigStep {
   pragma[nomagic]
   predicate localFlowBigStep(
     NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
-    AccessPathFrontNil apf, Configuration config, LocalCallContext callContext
+    DataFlowType t, Configuration config, LocalCallContext callContext
   ) {
-    localFlowStepPlus(node1, state1, node2, preservesValue, apf.getType(), config, callContext) and
+    localFlowStepPlus(node1, state1, node2, preservesValue, t, config, callContext) and
     localFlowExit(node2, state1, config) and
     state1 = state2
     or
     additionalLocalFlowStepNodeCand2(node1, state1, node2, state2, config) and
     state1 != state2 and
     preservesValue = false and
-    apf = TFrontNil(node2.getDataFlowType()) and
+    t = node2.getDataFlowType() and
     callContext.relevantFor(node1.getEnclosingCallable()) and
     not exists(DataFlowCall call | call = callContext.(LocalCallContextSpecificCall).getCall() |
       isUnreachableInCallCached(node1.asNode(), call) or
@@ -2202,11 +2340,87 @@ private import LocalFlowBigStep
 private module Stage3Param implements MkStage<Stage2>::StageParam {
   private module PrevStage = Stage2;
 
+  class Ap = ApproxAccessPathFront;
+
+  class ApNil = ApproxAccessPathFrontNil;
+
+  PrevStage::Ap getApprox(Ap ap) { result = ap.toBoolNonEmpty() }
+
+  ApNil getApNil(NodeEx node) {
+    PrevStage::revFlow(node, _) and result = TApproxFrontNil(node.getDataFlowType())
+  }
+
+  bindingset[tc, tail]
+  Ap apCons(TypedContent tc, Ap tail) { result.getAHead() = tc and exists(tail) }
+
+  pragma[noinline]
+  Content getHeadContent(Ap ap) { result = ap.getAHead().getContent() }
+
+  class ApOption = ApproxAccessPathFrontOption;
+
+  ApOption apNone() { result = TApproxAccessPathFrontNone() }
+
+  ApOption apSome(Ap ap) { result = TApproxAccessPathFrontSome(ap) }
+
+  import BooleanCallContext
+
+  predicate localStep(
+    NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
+    ApproxAccessPathFrontNil ap, Configuration config, LocalCc lcc
+  ) {
+    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap.getType(), config, _) and
+    exists(lcc)
+  }
+
+  predicate flowOutOfCall = flowOutOfCallNodeCand2/6;
+
+  predicate flowIntoCall = flowIntoCallNodeCand2/5;
+
+  pragma[nomagic]
+  private predicate expectsContentCand(NodeEx node, Ap ap, Configuration config) {
+    exists(Content c |
+      PrevStage::revFlow(node, pragma[only_bind_into](config)) and
+      PrevStage::readStepCand(_, c, _, pragma[only_bind_into](config)) and
+      expectsContentEx(node, c) and
+      c = ap.getAHead().getContent()
+    )
+  }
+
+  pragma[nomagic]
+  private predicate castingNodeEx(NodeEx node) { node.asNode() instanceof CastingNode }
+
+  bindingset[node, state, ap, config]
+  predicate filter(NodeEx node, FlowState state, Ap ap, Configuration config) {
+    exists(state) and
+    exists(config) and
+    (if castingNodeEx(node) then compatibleTypes(node.getDataFlowType(), ap.getType()) else any()) and
+    (
+      notExpectsContent(node)
+      or
+      expectsContentCand(node, ap, config)
+    )
+  }
+
+  bindingset[ap, contentType]
+  predicate typecheckStore(Ap ap, DataFlowType contentType) {
+    // We need to typecheck stores here, since reverse flow through a getter
+    // might have a different type here compared to inside the getter.
+    compatibleTypes(ap.getType(), contentType)
+  }
+}
+
+private module Stage3 implements StageSig {
+  import MkStage<Stage2>::Stage<Stage3Param>
+}
+
+private module Stage4Param implements MkStage<Stage3>::StageParam {
+  private module PrevStage = Stage3;
+
   class Ap = AccessPathFront;
 
   class ApNil = AccessPathFrontNil;
 
-  PrevStage::Ap getApprox(Ap ap) { result = ap.toBoolNonEmpty() }
+  PrevStage::Ap getApprox(Ap ap) { result = ap.toApprox() }
 
   ApNil getApNil(NodeEx node) {
     PrevStage::revFlow(node, _) and result = TFrontNil(node.getDataFlowType())
@@ -2226,16 +2440,42 @@ private module Stage3Param implements MkStage<Stage2>::StageParam {
 
   import BooleanCallContext
 
+  pragma[nomagic]
   predicate localStep(
     NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
     ApNil ap, Configuration config, LocalCc lcc
   ) {
-    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap, config, _) and exists(lcc)
+    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap.getType(), config, _) and
+    PrevStage::revFlow(node1, pragma[only_bind_into](state1), _, pragma[only_bind_into](config)) and
+    PrevStage::revFlowAlias(node2, pragma[only_bind_into](state2), _, pragma[only_bind_into](config)) and
+    exists(lcc)
   }
 
-  predicate flowOutOfCall = flowOutOfCallNodeCand2/6;
+  pragma[nomagic]
+  predicate flowOutOfCall(
+    DataFlowCall call, RetNodeEx node1, ReturnKindExt kind, NodeEx node2, boolean allowsFieldFlow,
+    Configuration config
+  ) {
+    exists(FlowState state |
+      flowOutOfCallNodeCand2(call, node1, kind, node2, allowsFieldFlow, config) and
+      PrevStage::revFlow(node2, pragma[only_bind_into](state), _, pragma[only_bind_into](config)) and
+      PrevStage::revFlowAlias(node1, pragma[only_bind_into](state), _,
+        pragma[only_bind_into](config))
+    )
+  }
 
-  predicate flowIntoCall = flowIntoCallNodeCand2/5;
+  pragma[nomagic]
+  predicate flowIntoCall(
+    DataFlowCall call, ArgNodeEx node1, ParamNodeEx node2, boolean allowsFieldFlow,
+    Configuration config
+  ) {
+    exists(FlowState state |
+      flowIntoCallNodeCand2(call, node1, node2, allowsFieldFlow, config) and
+      PrevStage::revFlow(node2, pragma[only_bind_into](state), _, pragma[only_bind_into](config)) and
+      PrevStage::revFlowAlias(node1, pragma[only_bind_into](state), _,
+        pragma[only_bind_into](config))
+    )
+  }
 
   pragma[nomagic]
   private predicate clearSet(NodeEx node, ContentSet c, Configuration config) {
@@ -2291,8 +2531,8 @@ private module Stage3Param implements MkStage<Stage2>::StageParam {
   }
 }
 
-private module Stage3 implements StageSig {
-  import MkStage<Stage2>::Stage<Stage3Param>
+private module Stage4 implements StageSig {
+  import MkStage<Stage3>::Stage<Stage4Param>
 }
 
 /**
@@ -2303,8 +2543,8 @@ private predicate flowCandSummaryCtx(
   NodeEx node, FlowState state, AccessPathFront argApf, Configuration config
 ) {
   exists(AccessPathFront apf |
-    Stage3::revFlow(node, state, TReturnCtxMaybeFlowThrough(_), _, apf, config) and
-    Stage3::fwdFlow(node, state, any(Stage3::CcCall ccc), _, TAccessPathFrontSome(argApf), apf,
+    Stage4::revFlow(node, state, TReturnCtxMaybeFlowThrough(_), _, apf, config) and
+    Stage4::fwdFlow(node, state, any(Stage4::CcCall ccc), _, TAccessPathFrontSome(argApf), apf,
       config)
   )
 }
@@ -2315,10 +2555,10 @@ private predicate flowCandSummaryCtx(
  */
 private predicate expensiveLen2unfolding(TypedContent tc, Configuration config) {
   exists(int tails, int nodes, int apLimit, int tupleLimit |
-    tails = strictcount(AccessPathFront apf | Stage3::consCand(tc, apf, config)) and
+    tails = strictcount(AccessPathFront apf | Stage4::consCand(tc, apf, config)) and
     nodes =
       strictcount(NodeEx n, FlowState state |
-        Stage3::revFlow(n, state, any(AccessPathFrontHead apf | apf.getHead() = tc), config)
+        Stage4::revFlow(n, state, any(AccessPathFrontHead apf | apf.getHead() = tc), config)
         or
         flowCandSummaryCtx(n, state, any(AccessPathFrontHead apf | apf.getHead() = tc), config)
       ) and
@@ -2332,11 +2572,11 @@ private predicate expensiveLen2unfolding(TypedContent tc, Configuration config)
 private newtype TAccessPathApprox =
   TNil(DataFlowType t) or
   TConsNil(TypedContent tc, DataFlowType t) {
-    Stage3::consCand(tc, TFrontNil(t), _) and
+    Stage4::consCand(tc, TFrontNil(t), _) and
     not expensiveLen2unfolding(tc, _)
   } or
   TConsCons(TypedContent tc1, TypedContent tc2, int len) {
-    Stage3::consCand(tc1, TFrontHead(tc2), _) and
+    Stage4::consCand(tc1, TFrontHead(tc2), _) and
     len in [2 .. accessPathLimit()] and
     not expensiveLen2unfolding(tc1, _)
   } or
@@ -2466,7 +2706,7 @@ private class AccessPathApproxCons1 extends AccessPathApproxCons, TCons1 {
   override AccessPathApprox pop(TypedContent head) {
     head = tc and
     (
-      exists(TypedContent tc2 | Stage3::consCand(tc, TFrontHead(tc2), _) |
+      exists(TypedContent tc2 | Stage4::consCand(tc, TFrontHead(tc2), _) |
         result = TConsCons(tc2, _, len - 1)
         or
         len = 2 and
@@ -2477,7 +2717,7 @@ private class AccessPathApproxCons1 extends AccessPathApproxCons, TCons1 {
       or
       exists(DataFlowType t |
         len = 1 and
-        Stage3::consCand(tc, TFrontNil(t), _) and
+        Stage4::consCand(tc, TFrontNil(t), _) and
         result = TNil(t)
       )
     )
@@ -2502,13 +2742,14 @@ private class AccessPathApproxOption extends TAccessPathApproxOption {
   }
 }
 
-private module Stage4Param implements MkStage<Stage3>::StageParam {
-  private module PrevStage = Stage3;
+private module Stage5Param implements MkStage<Stage4>::StageParam {
+  private module PrevStage = Stage4;
 
   class Ap = AccessPathApprox;
 
   class ApNil = AccessPathApproxNil;
 
+  pragma[nomagic]
   PrevStage::Ap getApprox(Ap ap) { result = ap.getFront() }
 
   ApNil getApNil(NodeEx node) {
@@ -2534,7 +2775,9 @@ private module Stage4Param implements MkStage<Stage3>::StageParam {
     NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
     ApNil ap, Configuration config, LocalCc lcc
   ) {
-    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap.getFront(), config, lcc)
+    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap.getType(), config, lcc) and
+    PrevStage::revFlow(node1, pragma[only_bind_into](state1), _, pragma[only_bind_into](config)) and
+    PrevStage::revFlowAlias(node2, pragma[only_bind_into](state2), _, pragma[only_bind_into](config))
   }
 
   pragma[nomagic]
@@ -2571,7 +2814,7 @@ private module Stage4Param implements MkStage<Stage3>::StageParam {
   predicate typecheckStore(Ap ap, DataFlowType contentType) { any() }
 }
 
-private module Stage4 = MkStage<Stage3>::Stage<Stage4Param>;
+private module Stage5 = MkStage<Stage4>::Stage<Stage5Param>;
 
 bindingset[conf, result]
 private Configuration unbindConf(Configuration conf) {
@@ -2585,8 +2828,8 @@ private predicate nodeMayUseSummary0(
 ) {
   exists(AccessPathApprox apa0 |
     c = n.getEnclosingCallable() and
-    Stage4::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
-    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TParameterPositionSome(pos),
+    Stage5::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
+    Stage5::fwdFlow(n, state, any(CallContextCall ccc), TParameterPositionSome(pos),
       TAccessPathApproxSome(apa), apa0, config)
   )
 }
@@ -2596,7 +2839,7 @@ private predicate nodeMayUseSummary(
   NodeEx n, FlowState state, AccessPathApprox apa, Configuration config
 ) {
   exists(DataFlowCallable c, ParameterPosition pos, ParamNodeEx p |
-    Stage4::parameterMayFlowThrough(p, apa, config) and
+    Stage5::parameterMayFlowThrough(p, apa, config) and
     nodeMayUseSummary0(n, c, pos, state, apa, config) and
     p.isParameterOf(c, pos)
   )
@@ -2606,8 +2849,8 @@ private newtype TSummaryCtx =
   TSummaryCtxNone() or
   TSummaryCtxSome(ParamNodeEx p, FlowState state, AccessPath ap) {
     exists(Configuration config |
-      Stage4::parameterMayFlowThrough(p, ap.getApprox(), config) and
-      Stage4::revFlow(p, state, _, config)
+      Stage5::parameterMayFlowThrough(p, ap.getApprox(), config) and
+      Stage5::revFlow(p, state, _, config)
     )
   }
 
@@ -2656,7 +2899,7 @@ private int count1to2unfold(AccessPathApproxCons1 apa, Configuration config) {
     len = apa.len() and
     result =
       strictcount(AccessPathFront apf |
-        Stage4::consCand(tc, any(AccessPathApprox ap | ap.getFront() = apf and ap.len() = len - 1),
+        Stage5::consCand(tc, any(AccessPathApprox ap | ap.getFront() = apf and ap.len() = len - 1),
           config)
       )
   )
@@ -2665,7 +2908,7 @@ private int count1to2unfold(AccessPathApproxCons1 apa, Configuration config) {
 private int countNodesUsingAccessPath(AccessPathApprox apa, Configuration config) {
   result =
     strictcount(NodeEx n, FlowState state |
-      Stage4::revFlow(n, state, apa, config) or nodeMayUseSummary(n, state, apa, config)
+      Stage5::revFlow(n, state, apa, config) or nodeMayUseSummary(n, state, apa, config)
     )
 }
 
@@ -2686,7 +2929,7 @@ private predicate expensiveLen1to2unfolding(AccessPathApproxCons1 apa, Configura
 private AccessPathApprox getATail(AccessPathApprox apa, Configuration config) {
   exists(TypedContent head |
     apa.pop(head) = result and
-    Stage4::consCand(head, result, config)
+    Stage5::consCand(head, result, config)
   )
 }
 
@@ -2768,7 +3011,7 @@ private newtype TPathNode =
     NodeEx node, FlowState state, CallContext cc, SummaryCtx sc, AccessPath ap, Configuration config
   ) {
     // A PathNode is introduced by a source ...
-    Stage4::revFlow(node, state, config) and
+    Stage5::revFlow(node, state, config) and
     sourceNode(node, state, config) and
     (
       if hasSourceCallCtx(config)
@@ -2782,7 +3025,7 @@ private newtype TPathNode =
     exists(PathNodeMid mid |
       pathStep(mid, node, state, cc, sc, ap) and
       pragma[only_bind_into](config) = mid.getConfiguration() and
-      Stage4::revFlow(node, state, ap.getApprox(), pragma[only_bind_into](config))
+      Stage5::revFlow(node, state, ap.getApprox(), pragma[only_bind_into](config))
     )
   } or
   TPathNodeSink(NodeEx node, FlowState state, Configuration config) {
@@ -2924,7 +3167,7 @@ private class AccessPathCons2 extends AccessPath, TAccessPathCons2 {
   override TypedContent getHead() { result = head1 }
 
   override AccessPath getTail() {
-    Stage4::consCand(head1, result.getApprox(), _) and
+    Stage5::consCand(head1, result.getApprox(), _) and
     result.getHead() = head2 and
     result.length() = len - 1
   }
@@ -2955,7 +3198,7 @@ private class AccessPathCons1 extends AccessPath, TAccessPathCons1 {
   override TypedContent getHead() { result = head }
 
   override AccessPath getTail() {
-    Stage4::consCand(head, result.getApprox(), _) and result.length() = len - 1
+    Stage5::consCand(head, result.getApprox(), _) and result.length() = len - 1
   }
 
   override AccessPathFrontHead getFront() { result = TFrontHead(head) }
@@ -3347,7 +3590,8 @@ private predicate pathStep(
     AccessPath ap0, NodeEx midnode, FlowState state0, Configuration conf, LocalCallContext localCC
   |
     pathNode(mid, midnode, state0, cc, sc, ap0, conf, localCC) and
-    localFlowBigStep(midnode, state0, node, state, false, ap.getFront(), conf, localCC) and
+    localFlowBigStep(midnode, state0, node, state, false, ap.(AccessPathNil).getType(), conf,
+      localCC) and
     ap0 instanceof AccessPathNil
   )
   or
@@ -3389,7 +3633,7 @@ private predicate pathReadStep(
 ) {
   ap0 = mid.getAp() and
   tc = ap0.getHead() and
-  Stage4::readStepCand(mid.getNodeEx(), tc.getContent(), node, mid.getConfiguration()) and
+  Stage5::readStepCand(mid.getNodeEx(), tc.getContent(), node, mid.getConfiguration()) and
   state = mid.getState() and
   cc = mid.getCallContext()
 }
@@ -3399,7 +3643,7 @@ private predicate pathStoreStep(
   PathNodeMid mid, NodeEx node, FlowState state, AccessPath ap0, TypedContent tc, CallContext cc
 ) {
   ap0 = mid.getAp() and
-  Stage4::storeStepCand(mid.getNodeEx(), _, tc, node, _, mid.getConfiguration()) and
+  Stage5::storeStepCand(mid.getNodeEx(), _, tc, node, _, mid.getConfiguration()) and
   state = mid.getState() and
   cc = mid.getCallContext()
 }
@@ -3436,7 +3680,7 @@ private NodeEx getAnOutNodeFlow(
   ReturnKindExt kind, DataFlowCall call, AccessPathApprox apa, Configuration config
 ) {
   result.asNode() = kind.getAnOutNode(call) and
-  Stage4::revFlow(result, _, apa, config)
+  Stage5::revFlow(result, _, apa, config)
 }
 
 /**
@@ -3472,7 +3716,7 @@ private predicate parameterCand(
   DataFlowCallable callable, ParameterPosition pos, AccessPathApprox apa, Configuration config
 ) {
   exists(ParamNodeEx p |
-    Stage4::revFlow(p, _, apa, config) and
+    Stage5::revFlow(p, _, apa, config) and
     p.isParameterOf(callable, pos)
   )
 }
@@ -3751,9 +3995,17 @@ predicate stageStats(
   n = 45 and
   Stage4::stats(false, nodes, fields, conscand, states, tuples, config)
   or
-  stage = "5 Fwd" and n = 50 and finalStats(true, nodes, fields, conscand, states, tuples)
+  stage = "5 Fwd" and
+  n = 50 and
+  Stage5::stats(true, nodes, fields, conscand, states, tuples, config)
   or
-  stage = "5 Rev" and n = 55 and finalStats(false, nodes, fields, conscand, states, tuples)
+  stage = "5 Rev" and
+  n = 55 and
+  Stage5::stats(false, nodes, fields, conscand, states, tuples, config)
+  or
+  stage = "6 Fwd" and n = 60 and finalStats(true, nodes, fields, conscand, states, tuples)
+  or
+  stage = "6 Rev" and n = 65 and finalStats(false, nodes, fields, conscand, states, tuples)
 }
 
 private module FlowExploration {
diff --git a/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImplForSerializability.qll b/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImplForSerializability.qll
index ccde916a3c2..6741ccc2f06 100644
--- a/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImplForSerializability.qll
+++ b/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImplForSerializability.qll
@@ -621,23 +621,6 @@ private predicate parameterFlowThroughAllowed(ParamNodeEx p, ReturnKindExt kind)
   )
 }
 
-/**
- * Holds if flow from a parameter at position `pos` inside `c` to a return node of
- * kind `kind` is allowed.
- *
- * We don't expect a parameter to return stored in itself, unless
- * explicitly allowed
- */
-bindingset[c, pos, kind]
-private predicate parameterFlowThroughAllowed(
-  DataFlowCallable c, ParameterPosition pos, ReturnKindExt kind
-) {
-  exists(ParamNodeEx p |
-    p.isParameterOf(c, pos) and
-    parameterFlowThroughAllowed(p, kind)
-  )
-}
-
 private module Stage1 implements StageSig {
   class Ap = Unit;
 
@@ -980,6 +963,12 @@ private module Stage1 implements StageSig {
   pragma[nomagic]
   predicate revFlow(NodeEx node, Configuration config) { revFlow(node, _, config) }
 
+  pragma[nomagic]
+  predicate revFlowAp(NodeEx node, Ap ap, Configuration config) {
+    revFlow(node, config) and
+    exists(ap)
+  }
+
   bindingset[node, state, config]
   predicate revFlow(NodeEx node, FlowState state, Ap ap, Configuration config) {
     revFlow(node, _, pragma[only_bind_into](config)) and
@@ -1022,9 +1011,13 @@ private module Stage1 implements StageSig {
   }
 
   pragma[nomagic]
-  predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config) {
+  predicate returnMayFlowThrough(
+    RetNodeEx ret, Ap argAp, Ap ap, ReturnKindExt kind, Configuration config
+  ) {
     throughFlowNodeCand(ret, config) and
-    kind = ret.getKind()
+    kind = ret.getKind() and
+    exists(argAp) and
+    exists(ap)
   }
 
   pragma[nomagic]
@@ -1189,6 +1182,8 @@ private signature module StageSig {
 
   predicate revFlow(NodeEx node, Configuration config);
 
+  predicate revFlowAp(NodeEx node, Ap ap, Configuration config);
+
   bindingset[node, state, config]
   predicate revFlow(NodeEx node, FlowState state, Ap ap, Configuration config);
 
@@ -1196,7 +1191,9 @@ private signature module StageSig {
 
   predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config);
 
-  predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config);
+  predicate returnMayFlowThrough(
+    RetNodeEx ret, Ap argAp, Ap ap, ReturnKindExt kind, Configuration config
+  );
 
   predicate storeStepCand(
     NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, DataFlowType contentType,
@@ -1281,21 +1278,43 @@ private module MkStage<StageSig PrevStage> {
     import Param
 
     /* Begin: Stage logic. */
-    bindingset[result, apa]
-    private ApApprox unbindApa(ApApprox apa) {
-      pragma[only_bind_out](apa) = pragma[only_bind_out](result)
+    // use an alias as a workaround for bad functionality-induced joins
+    pragma[nomagic]
+    private predicate revFlowApAlias(NodeEx node, ApApprox apa, Configuration config) {
+      PrevStage::revFlowAp(node, apa, config)
+    }
+
+    pragma[nomagic]
+    private predicate flowIntoCallApa(
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, ApApprox apa,
+      Configuration config
+    ) {
+      flowIntoCall(call, arg, p, allowsFieldFlow, config) and
+      PrevStage::revFlowAp(p, pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
+      revFlowApAlias(arg, pragma[only_bind_into](apa), pragma[only_bind_into](config))
+    }
+
+    pragma[nomagic]
+    private predicate flowOutOfCallApa(
+      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
+      ApApprox apa, Configuration config
+    ) {
+      flowOutOfCall(call, ret, kind, out, allowsFieldFlow, config) and
+      PrevStage::revFlowAp(out, pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
+      revFlowApAlias(ret, pragma[only_bind_into](apa), pragma[only_bind_into](config))
     }
 
     pragma[nomagic]
     private predicate flowThroughOutOfCall(
-      DataFlowCall call, DataFlowCallable c, CcCall ccc, RetNodeEx ret, ReturnKindExt kind,
-      NodeEx out, boolean allowsFieldFlow, Configuration config
+      DataFlowCall call, CcCall ccc, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow,
+      ApApprox argApa, ApApprox apa, Configuration config
     ) {
-      flowOutOfCall(call, ret, kind, out, allowsFieldFlow, pragma[only_bind_into](config)) and
-      PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
-      PrevStage::returnMayFlowThrough(ret, kind, pragma[only_bind_into](config)) and
-      matchesCall(ccc, call) and
-      c = ret.getEnclosingCallable()
+      exists(ReturnKindExt kind |
+        flowOutOfCallApa(call, ret, kind, out, allowsFieldFlow, apa, pragma[only_bind_into](config)) and
+        PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
+        PrevStage::returnMayFlowThrough(ret, argApa, apa, kind, pragma[only_bind_into](config)) and
+        matchesCall(ccc, call)
+      )
     }
 
     /**
@@ -1307,39 +1326,50 @@ private module MkStage<StageSig PrevStage> {
      * corresponding parameter position and access path of that argument, respectively.
      */
     pragma[nomagic]
+    additional predicate fwdFlow(
+      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      Ap ap, ApApprox apa, Configuration config
+    ) {
+      fwdFlow0(node, state, cc, summaryCtx, argAp, ap, apa, config) and
+      PrevStage::revFlow(node, state, apa, config) and
+      filter(node, state, ap, config)
+    }
+
+    pragma[inline]
     additional predicate fwdFlow(
       NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
       Ap ap, Configuration config
     ) {
-      fwdFlow0(node, state, cc, summaryCtx, argAp, ap, config) and
-      PrevStage::revFlow(node, state, unbindApa(getApprox(ap)), config) and
-      filter(node, state, ap, config)
+      fwdFlow(node, state, cc, summaryCtx, argAp, ap, _, config)
     }
 
     pragma[nomagic]
     private predicate fwdFlow0(
       NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      Ap ap, Configuration config
+      Ap ap, ApApprox apa, Configuration config
     ) {
       sourceNode(node, state, config) and
       (if hasSourceCallCtx(config) then cc = ccSomeCall() else cc = ccNone()) and
       argAp = apNone() and
       summaryCtx = TParameterPositionNone() and
-      ap = getApNil(node)
+      ap = getApNil(node) and
+      apa = getApprox(ap)
       or
-      exists(NodeEx mid, FlowState state0, Ap ap0, LocalCc localCc |
-        fwdFlow(mid, state0, cc, summaryCtx, argAp, ap0, config) and
+      exists(NodeEx mid, FlowState state0, Ap ap0, ApApprox apa0, LocalCc localCc |
+        fwdFlow(mid, state0, cc, summaryCtx, argAp, ap0, apa0, config) and
         localCc = getLocalCc(mid, cc)
       |
         localStep(mid, state0, node, state, true, _, config, localCc) and
-        ap = ap0
+        ap = ap0 and
+        apa = apa0
         or
         localStep(mid, state0, node, state, false, ap, config, localCc) and
-        ap0 instanceof ApNil
+        ap0 instanceof ApNil and
+        apa = getApprox(ap)
       )
       or
       exists(NodeEx mid |
-        fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, apa, pragma[only_bind_into](config)) and
         jumpStep(mid, node, config) and
         cc = ccNone() and
         summaryCtx = TParameterPositionNone() and
@@ -1352,7 +1382,8 @@ private module MkStage<StageSig PrevStage> {
         cc = ccNone() and
         summaryCtx = TParameterPositionNone() and
         argAp = apNone() and
-        ap = getApNil(node)
+        ap = getApNil(node) and
+        apa = getApprox(ap)
       )
       or
       exists(NodeEx mid, FlowState state0, ApNil nil |
@@ -1361,32 +1392,32 @@ private module MkStage<StageSig PrevStage> {
         cc = ccNone() and
         summaryCtx = TParameterPositionNone() and
         argAp = apNone() and
-        ap = getApNil(node)
+        ap = getApNil(node) and
+        apa = getApprox(ap)
       )
       or
       // store
       exists(TypedContent tc, Ap ap0 |
         fwdFlowStore(_, ap0, tc, node, state, cc, summaryCtx, argAp, config) and
-        ap = apCons(tc, ap0)
+        ap = apCons(tc, ap0) and
+        apa = getApprox(ap)
       )
       or
       // read
       exists(Ap ap0, Content c |
         fwdFlowRead(ap0, c, _, node, state, cc, summaryCtx, argAp, config) and
-        fwdFlowConsCand(ap0, c, ap, config)
+        fwdFlowConsCand(ap0, c, ap, config) and
+        apa = getApprox(ap)
       )
       or
       // flow into a callable
-      exists(ApApprox apa |
-        fwdFlowIn(_, node, state, _, cc, _, _, ap, config) and
-        apa = getApprox(ap) and
-        if PrevStage::parameterMayFlowThrough(node, apa, config)
-        then (
-          summaryCtx = TParameterPositionSome(node.(ParamNodeEx).getPosition()) and
-          argAp = apSome(ap)
-        ) else (
-          summaryCtx = TParameterPositionNone() and argAp = apNone()
-        )
+      fwdFlowIn(_, node, state, _, cc, _, _, ap, apa, config) and
+      if PrevStage::parameterMayFlowThrough(node, apa, config)
+      then (
+        summaryCtx = TParameterPositionSome(node.(ParamNodeEx).getPosition()) and
+        argAp = apSome(ap)
+      ) else (
+        summaryCtx = TParameterPositionNone() and argAp = apNone()
       )
       or
       // flow out of a callable
@@ -1394,8 +1425,8 @@ private module MkStage<StageSig PrevStage> {
         DataFlowCall call, RetNodeEx ret, boolean allowsFieldFlow, CcNoCall innercc,
         DataFlowCallable inner
       |
-        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, config) and
-        flowOutOfCall(call, ret, _, node, allowsFieldFlow, config) and
+        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, apa, config) and
+        flowOutOfCallApa(call, ret, _, node, allowsFieldFlow, apa, config) and
         inner = ret.getEnclosingCallable() and
         cc = getCallContextReturn(inner, call, innercc) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
@@ -1403,7 +1434,7 @@ private module MkStage<StageSig PrevStage> {
       or
       // flow through a callable
       exists(DataFlowCall call, ParameterPosition summaryCtx0, Ap argAp0 |
-        fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, config) and
+        fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, apa, config) and
         fwdFlowIsEntered(call, cc, summaryCtx, argAp, summaryCtx0, argAp0, config)
       )
     }
@@ -1413,9 +1444,9 @@ private module MkStage<StageSig PrevStage> {
       NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc,
       ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
     ) {
-      exists(DataFlowType contentType |
-        fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, config) and
-        PrevStage::storeStepCand(node1, unbindApa(getApprox(ap1)), tc, node2, contentType, config) and
+      exists(DataFlowType contentType, ApApprox apa1 |
+        fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, apa1, config) and
+        PrevStage::storeStepCand(node1, apa1, tc, node2, contentType, config) and
         typecheckStore(ap1, contentType)
       )
     }
@@ -1433,43 +1464,104 @@ private module MkStage<StageSig PrevStage> {
       )
     }
 
+    private class ApNonNil instanceof Ap {
+      pragma[nomagic]
+      ApNonNil() { not this instanceof ApNil }
+
+      string toString() { result = "" }
+    }
+
+    pragma[nomagic]
+    private predicate fwdFlowRead0(
+      NodeEx node1, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      ApNonNil ap, Configuration config
+    ) {
+      fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
+      PrevStage::readStepCand(node1, _, _, config)
+    }
+
     pragma[nomagic]
     private predicate fwdFlowRead(
       Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc,
       ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
     ) {
-      fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
+      fwdFlowRead0(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, c, node2, config) and
       getHeadContent(ap) = c
     }
 
     pragma[nomagic]
     private predicate fwdFlowIn(
-      DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, Cc innercc,
-      ParameterPositionOption summaryCtx, ApOption argAp, Ap ap, Configuration config
+      DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, CcCall innercc,
+      ParameterPositionOption summaryCtx, ApOption argAp, Ap ap, ApApprox apa, Configuration config
     ) {
       exists(ArgNodeEx arg, boolean allowsFieldFlow |
-        fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, config) and
-        flowIntoCall(call, arg, p, allowsFieldFlow, config) and
+        fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, apa, config) and
+        flowIntoCallApa(call, arg, p, allowsFieldFlow, apa, config) and
         innercc = getCallContextCall(call, p.getEnclosingCallable(), outercc) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
+    pragma[nomagic]
+    private predicate fwdFlowRetFromArg(
+      RetNodeEx ret, FlowState state, CcCall ccc, ParameterPosition summaryCtx, ParamNodeEx p,
+      Ap argAp, ApApprox argApa, Ap ap, ApApprox apa, Configuration config
+    ) {
+      exists(DataFlowCallable c, ReturnKindExt kind |
+        fwdFlow(pragma[only_bind_into](ret), state, ccc,
+          TParameterPositionSome(pragma[only_bind_into](summaryCtx)), apSome(argAp), ap, apa, config) and
+        getApprox(argAp) = argApa and
+        c = ret.getEnclosingCallable() and
+        kind = ret.getKind() and
+        p.isParameterOf(c, pragma[only_bind_into](summaryCtx)) and
+        parameterFlowThroughAllowed(p, kind)
+      )
+    }
+
+    pragma[inline]
+    private predicate fwdFlowInMayFlowThrough(
+      DataFlowCall call, Cc cc, CcCall innerCc, ParameterPositionOption summaryCtx, ApOption argAp,
+      ParamNodeEx param, Ap ap, ApApprox apa, Configuration config
+    ) {
+      fwdFlowIn(call, pragma[only_bind_into](param), _, cc, innerCc, summaryCtx, argAp, ap,
+        pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
+      PrevStage::parameterMayFlowThrough(param, apa, config)
+    }
+
+    // dedup before joining with `flowThroughOutOfCall`
+    pragma[nomagic]
+    private predicate fwdFlowInMayFlowThroughProj(
+      DataFlowCall call, CcCall innerCc, ApApprox apa, Configuration config
+    ) {
+      fwdFlowInMayFlowThrough(call, _, innerCc, _, _, _, _, apa, config)
+    }
+
+    /**
+     * Same as `flowThroughOutOfCall`, but restricted to calls that are reached
+     * in the flow covered by `fwdFlow`, where data might flow through the target
+     * callable and back out at `call`.
+     */
+    pragma[nomagic]
+    private predicate fwdFlowThroughOutOfCall(
+      DataFlowCall call, CcCall ccc, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow,
+      ApApprox argApa, ApApprox apa, Configuration config
+    ) {
+      fwdFlowInMayFlowThroughProj(call, ccc, argApa, config) and
+      flowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, argApa, apa, config)
+    }
+
     pragma[nomagic]
     private predicate fwdFlowOutFromArg(
       DataFlowCall call, NodeEx out, FlowState state, ParameterPosition summaryCtx, Ap argAp, Ap ap,
-      Configuration config
+      ApApprox apa, Configuration config
     ) {
-      exists(
-        DataFlowCallable c, RetNodeEx ret, ReturnKindExt kind, boolean allowsFieldFlow, CcCall ccc
-      |
-        fwdFlow(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc),
-          TParameterPositionSome(pragma[only_bind_into](summaryCtx)), apSome(argAp), ap, config) and
-        flowThroughOutOfCall(call, pragma[only_bind_into](c), ccc, ret, kind, out, allowsFieldFlow,
+      exists(RetNodeEx ret, boolean allowsFieldFlow, CcCall ccc, ApApprox argApa |
+        fwdFlowRetFromArg(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc),
+          summaryCtx, _, argAp, pragma[only_bind_into](argApa), ap, pragma[only_bind_into](apa),
           config) and
-        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
-        parameterFlowThroughAllowed(c, pragma[only_bind_into](summaryCtx), kind)
+        fwdFlowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, argApa, apa, config) and
+        (if allowsFieldFlow = false then ap instanceof ApNil else any())
       )
     }
 
@@ -1483,8 +1575,7 @@ private module MkStage<StageSig PrevStage> {
       ParameterPosition pos, Ap ap, Configuration config
     ) {
       exists(ParamNodeEx param |
-        fwdFlowIn(call, param, _, cc, _, summaryCtx, argAp, ap, config) and
-        PrevStage::parameterMayFlowThrough(param, unbindApa(getApprox(ap)), config) and
+        fwdFlowInMayFlowThrough(call, cc, _, summaryCtx, argAp, param, ap, _, config) and
         pos = param.getPosition()
       )
     }
@@ -1505,41 +1596,55 @@ private module MkStage<StageSig PrevStage> {
       fwdFlowConsCand(ap1, c, ap2, config)
     }
 
-    pragma[nomagic]
-    private predicate returnFlowsThrough0(
-      RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, DataFlowCallable c,
-      ParameterPosition ppos, Ap argAp, Ap ap, Configuration config
-    ) {
-      exists(boolean allowsFieldFlow |
-        fwdFlow(ret, state, ccc, TParameterPositionSome(ppos), apSome(argAp), ap, config) and
-        flowThroughOutOfCall(_, c, _, pragma[only_bind_into](ret), kind, _, allowsFieldFlow,
-          pragma[only_bind_into](config)) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
-      )
-    }
-
     pragma[nomagic]
     private predicate returnFlowsThrough(
       RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, ParamNodeEx p, Ap argAp,
       Ap ap, Configuration config
     ) {
-      exists(DataFlowCallable c, ParameterPosition ppos |
-        returnFlowsThrough0(ret, kind, state, ccc, c, ppos, argAp, ap, config) and
-        p.isParameterOf(c, ppos) and
-        parameterFlowThroughAllowed(p, kind)
+      exists(boolean allowsFieldFlow, ApApprox argApa, ApApprox apa |
+        fwdFlowRetFromArg(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc), _, p,
+          argAp, pragma[only_bind_into](argApa), ap, pragma[only_bind_into](apa), config) and
+        kind = ret.getKind() and
+        fwdFlowThroughOutOfCall(_, ccc, ret, _, allowsFieldFlow, argApa, apa, config) and
+        (if allowsFieldFlow = false then ap instanceof ApNil else any())
       )
     }
 
     pragma[nomagic]
     private predicate flowThroughIntoCall(
-      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp,
+      Configuration config
     ) {
-      exists(Ap argAp |
-        flowIntoCall(call, pragma[only_bind_into](arg), pragma[only_bind_into](p), allowsFieldFlow,
+      exists(ApApprox argApa |
+        flowIntoCallApa(call, pragma[only_bind_into](arg), pragma[only_bind_into](p),
+          allowsFieldFlow, argApa, pragma[only_bind_into](config)) and
+        fwdFlow(arg, _, _, _, _, pragma[only_bind_into](argAp), argApa,
           pragma[only_bind_into](config)) and
-        fwdFlow(arg, _, _, _, _, pragma[only_bind_into](argAp), pragma[only_bind_into](config)) and
         returnFlowsThrough(_, _, _, _, p, pragma[only_bind_into](argAp), _,
-          pragma[only_bind_into](config))
+          pragma[only_bind_into](config)) and
+        if allowsFieldFlow = false then argAp instanceof ApNil else any()
+      )
+    }
+
+    pragma[nomagic]
+    private predicate flowIntoCallAp(
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap ap,
+      Configuration config
+    ) {
+      exists(ApApprox apa |
+        flowIntoCallApa(call, arg, p, allowsFieldFlow, apa, config) and
+        fwdFlow(arg, _, _, _, _, ap, apa, config)
+      )
+    }
+
+    pragma[nomagic]
+    private predicate flowOutOfCallAp(
+      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
+      Ap ap, Configuration config
+    ) {
+      exists(ApApprox apa |
+        flowOutOfCallApa(call, ret, kind, out, allowsFieldFlow, apa, config) and
+        fwdFlow(ret, _, _, _, _, ap, apa, config)
       )
     }
 
@@ -1628,7 +1733,7 @@ private module MkStage<StageSig PrevStage> {
       // flow into a callable
       exists(ParamNodeEx p, boolean allowsFieldFlow |
         revFlow(p, state, TReturnCtxNone(), returnAp, ap, config) and
-        flowIntoCall(_, node, p, allowsFieldFlow, config) and
+        flowIntoCallAp(_, node, p, allowsFieldFlow, ap, config) and
         (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
         returnCtx = TReturnCtxNone()
       )
@@ -1682,22 +1787,41 @@ private module MkStage<StageSig PrevStage> {
     ) {
       exists(NodeEx out, boolean allowsFieldFlow |
         revFlow(out, state, returnCtx, returnAp, ap, config) and
-        flowOutOfCall(call, ret, kind, out, allowsFieldFlow, config) and
+        flowOutOfCallAp(call, ret, kind, out, allowsFieldFlow, ap, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
+    /**
+     * Same as `flowThroughIntoCall`, but restricted to calls that are reached
+     * in the flow covered by `revFlow`, where data might flow through the target
+     * callable and back out at `call`.
+     */
+    pragma[nomagic]
+    private predicate revFlowThroughIntoCall(
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp,
+      Configuration config
+    ) {
+      flowThroughIntoCall(call, arg, p, allowsFieldFlow, argAp, config) and
+      revFlowIsReturned(call, _, _, _, _, config)
+    }
+
+    pragma[nomagic]
+    private predicate revFlowParamToReturn(
+      ParamNodeEx p, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap, Configuration config
+    ) {
+      revFlow(p, state, TReturnCtxMaybeFlowThrough(kind), apSome(returnAp), ap, config) and
+      parameterFlowThroughAllowed(p, kind)
+    }
+
     pragma[nomagic]
     private predicate revFlowInToReturn(
       DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap,
       Configuration config
     ) {
       exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(pragma[only_bind_into](p), state,
-          TReturnCtxMaybeFlowThrough(pragma[only_bind_into](kind)), apSome(returnAp), ap, config) and
-        flowThroughIntoCall(call, arg, p, allowsFieldFlow, config) and
-        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
-        parameterFlowThroughAllowed(p, kind)
+        revFlowParamToReturn(p, state, kind, returnAp, ap, config) and
+        revFlowThroughIntoCall(call, arg, p, allowsFieldFlow, ap, config)
       )
     }
 
@@ -1750,6 +1874,11 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     predicate revFlow(NodeEx node, Configuration config) { revFlow(node, _, _, _, _, config) }
 
+    pragma[nomagic]
+    predicate revFlowAp(NodeEx node, Ap ap, Configuration config) {
+      revFlow(node, _, _, _, ap, config)
+    }
+
     // use an alias as a workaround for bad functionality-induced joins
     pragma[nomagic]
     additional predicate revFlowAlias(NodeEx node, Configuration config) {
@@ -1786,9 +1915,9 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate parameterFlowsThroughRev(
-      ParamNodeEx p, Ap ap, ReturnKindExt kind, Configuration config
+      ParamNodeEx p, Ap ap, ReturnKindExt kind, Ap returnAp, Configuration config
     ) {
-      revFlow(p, _, TReturnCtxMaybeFlowThrough(kind), apSome(_), ap, config) and
+      revFlow(p, _, TReturnCtxMaybeFlowThrough(kind), apSome(returnAp), ap, config) and
       parameterFlowThroughAllowed(p, kind)
     }
 
@@ -1796,27 +1925,36 @@ private module MkStage<StageSig PrevStage> {
     predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
       exists(RetNodeEx ret, ReturnKindExt kind |
         returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
-        parameterFlowsThroughRev(p, ap, kind, config)
+        parameterFlowsThroughRev(p, ap, kind, _, config)
       )
     }
 
     pragma[nomagic]
-    predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config) {
-      exists(ParamNodeEx p, Ap ap |
-        returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
-        parameterFlowsThroughRev(p, ap, kind, config)
+    predicate returnMayFlowThrough(
+      RetNodeEx ret, Ap argAp, Ap ap, ReturnKindExt kind, Configuration config
+    ) {
+      exists(ParamNodeEx p |
+        returnFlowsThrough(ret, kind, _, _, p, argAp, ap, config) and
+        parameterFlowsThroughRev(p, argAp, kind, ap, config)
+      )
+    }
+
+    pragma[nomagic]
+    predicate revFlowInToReturnIsReturned(
+      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnCtx returnCtx, ApOption returnAp,
+      Ap ap, Configuration config
+    ) {
+      exists(ReturnKindExt returnKind0, Ap returnAp0 |
+        revFlowInToReturn(call, arg, state, returnKind0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
       )
     }
 
     pragma[nomagic]
     predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
-      exists(
-        ReturnKindExt returnKind0, Ap returnAp0, ArgNodeEx arg, FlowState state,
-        ReturnCtx returnCtx, ApOption returnAp, Ap ap
-      |
+      exists(ArgNodeEx arg, FlowState state, ReturnCtx returnCtx, ApOption returnAp, Ap ap |
         revFlow(arg, state, returnCtx, returnAp, ap, config) and
-        revFlowInToReturn(call, arg, state, returnKind0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
+        revFlowInToReturnIsReturned(call, arg, state, returnCtx, returnAp, ap, config)
       )
     }
 
@@ -2179,16 +2317,16 @@ private module LocalFlowBigStep {
   pragma[nomagic]
   predicate localFlowBigStep(
     NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
-    AccessPathFrontNil apf, Configuration config, LocalCallContext callContext
+    DataFlowType t, Configuration config, LocalCallContext callContext
   ) {
-    localFlowStepPlus(node1, state1, node2, preservesValue, apf.getType(), config, callContext) and
+    localFlowStepPlus(node1, state1, node2, preservesValue, t, config, callContext) and
     localFlowExit(node2, state1, config) and
     state1 = state2
     or
     additionalLocalFlowStepNodeCand2(node1, state1, node2, state2, config) and
     state1 != state2 and
     preservesValue = false and
-    apf = TFrontNil(node2.getDataFlowType()) and
+    t = node2.getDataFlowType() and
     callContext.relevantFor(node1.getEnclosingCallable()) and
     not exists(DataFlowCall call | call = callContext.(LocalCallContextSpecificCall).getCall() |
       isUnreachableInCallCached(node1.asNode(), call) or
@@ -2202,11 +2340,87 @@ private import LocalFlowBigStep
 private module Stage3Param implements MkStage<Stage2>::StageParam {
   private module PrevStage = Stage2;
 
+  class Ap = ApproxAccessPathFront;
+
+  class ApNil = ApproxAccessPathFrontNil;
+
+  PrevStage::Ap getApprox(Ap ap) { result = ap.toBoolNonEmpty() }
+
+  ApNil getApNil(NodeEx node) {
+    PrevStage::revFlow(node, _) and result = TApproxFrontNil(node.getDataFlowType())
+  }
+
+  bindingset[tc, tail]
+  Ap apCons(TypedContent tc, Ap tail) { result.getAHead() = tc and exists(tail) }
+
+  pragma[noinline]
+  Content getHeadContent(Ap ap) { result = ap.getAHead().getContent() }
+
+  class ApOption = ApproxAccessPathFrontOption;
+
+  ApOption apNone() { result = TApproxAccessPathFrontNone() }
+
+  ApOption apSome(Ap ap) { result = TApproxAccessPathFrontSome(ap) }
+
+  import BooleanCallContext
+
+  predicate localStep(
+    NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
+    ApproxAccessPathFrontNil ap, Configuration config, LocalCc lcc
+  ) {
+    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap.getType(), config, _) and
+    exists(lcc)
+  }
+
+  predicate flowOutOfCall = flowOutOfCallNodeCand2/6;
+
+  predicate flowIntoCall = flowIntoCallNodeCand2/5;
+
+  pragma[nomagic]
+  private predicate expectsContentCand(NodeEx node, Ap ap, Configuration config) {
+    exists(Content c |
+      PrevStage::revFlow(node, pragma[only_bind_into](config)) and
+      PrevStage::readStepCand(_, c, _, pragma[only_bind_into](config)) and
+      expectsContentEx(node, c) and
+      c = ap.getAHead().getContent()
+    )
+  }
+
+  pragma[nomagic]
+  private predicate castingNodeEx(NodeEx node) { node.asNode() instanceof CastingNode }
+
+  bindingset[node, state, ap, config]
+  predicate filter(NodeEx node, FlowState state, Ap ap, Configuration config) {
+    exists(state) and
+    exists(config) and
+    (if castingNodeEx(node) then compatibleTypes(node.getDataFlowType(), ap.getType()) else any()) and
+    (
+      notExpectsContent(node)
+      or
+      expectsContentCand(node, ap, config)
+    )
+  }
+
+  bindingset[ap, contentType]
+  predicate typecheckStore(Ap ap, DataFlowType contentType) {
+    // We need to typecheck stores here, since reverse flow through a getter
+    // might have a different type here compared to inside the getter.
+    compatibleTypes(ap.getType(), contentType)
+  }
+}
+
+private module Stage3 implements StageSig {
+  import MkStage<Stage2>::Stage<Stage3Param>
+}
+
+private module Stage4Param implements MkStage<Stage3>::StageParam {
+  private module PrevStage = Stage3;
+
   class Ap = AccessPathFront;
 
   class ApNil = AccessPathFrontNil;
 
-  PrevStage::Ap getApprox(Ap ap) { result = ap.toBoolNonEmpty() }
+  PrevStage::Ap getApprox(Ap ap) { result = ap.toApprox() }
 
   ApNil getApNil(NodeEx node) {
     PrevStage::revFlow(node, _) and result = TFrontNil(node.getDataFlowType())
@@ -2226,16 +2440,42 @@ private module Stage3Param implements MkStage<Stage2>::StageParam {
 
   import BooleanCallContext
 
+  pragma[nomagic]
   predicate localStep(
     NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
     ApNil ap, Configuration config, LocalCc lcc
   ) {
-    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap, config, _) and exists(lcc)
+    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap.getType(), config, _) and
+    PrevStage::revFlow(node1, pragma[only_bind_into](state1), _, pragma[only_bind_into](config)) and
+    PrevStage::revFlowAlias(node2, pragma[only_bind_into](state2), _, pragma[only_bind_into](config)) and
+    exists(lcc)
   }
 
-  predicate flowOutOfCall = flowOutOfCallNodeCand2/6;
+  pragma[nomagic]
+  predicate flowOutOfCall(
+    DataFlowCall call, RetNodeEx node1, ReturnKindExt kind, NodeEx node2, boolean allowsFieldFlow,
+    Configuration config
+  ) {
+    exists(FlowState state |
+      flowOutOfCallNodeCand2(call, node1, kind, node2, allowsFieldFlow, config) and
+      PrevStage::revFlow(node2, pragma[only_bind_into](state), _, pragma[only_bind_into](config)) and
+      PrevStage::revFlowAlias(node1, pragma[only_bind_into](state), _,
+        pragma[only_bind_into](config))
+    )
+  }
 
-  predicate flowIntoCall = flowIntoCallNodeCand2/5;
+  pragma[nomagic]
+  predicate flowIntoCall(
+    DataFlowCall call, ArgNodeEx node1, ParamNodeEx node2, boolean allowsFieldFlow,
+    Configuration config
+  ) {
+    exists(FlowState state |
+      flowIntoCallNodeCand2(call, node1, node2, allowsFieldFlow, config) and
+      PrevStage::revFlow(node2, pragma[only_bind_into](state), _, pragma[only_bind_into](config)) and
+      PrevStage::revFlowAlias(node1, pragma[only_bind_into](state), _,
+        pragma[only_bind_into](config))
+    )
+  }
 
   pragma[nomagic]
   private predicate clearSet(NodeEx node, ContentSet c, Configuration config) {
@@ -2291,8 +2531,8 @@ private module Stage3Param implements MkStage<Stage2>::StageParam {
   }
 }
 
-private module Stage3 implements StageSig {
-  import MkStage<Stage2>::Stage<Stage3Param>
+private module Stage4 implements StageSig {
+  import MkStage<Stage3>::Stage<Stage4Param>
 }
 
 /**
@@ -2303,8 +2543,8 @@ private predicate flowCandSummaryCtx(
   NodeEx node, FlowState state, AccessPathFront argApf, Configuration config
 ) {
   exists(AccessPathFront apf |
-    Stage3::revFlow(node, state, TReturnCtxMaybeFlowThrough(_), _, apf, config) and
-    Stage3::fwdFlow(node, state, any(Stage3::CcCall ccc), _, TAccessPathFrontSome(argApf), apf,
+    Stage4::revFlow(node, state, TReturnCtxMaybeFlowThrough(_), _, apf, config) and
+    Stage4::fwdFlow(node, state, any(Stage4::CcCall ccc), _, TAccessPathFrontSome(argApf), apf,
       config)
   )
 }
@@ -2315,10 +2555,10 @@ private predicate flowCandSummaryCtx(
  */
 private predicate expensiveLen2unfolding(TypedContent tc, Configuration config) {
   exists(int tails, int nodes, int apLimit, int tupleLimit |
-    tails = strictcount(AccessPathFront apf | Stage3::consCand(tc, apf, config)) and
+    tails = strictcount(AccessPathFront apf | Stage4::consCand(tc, apf, config)) and
     nodes =
       strictcount(NodeEx n, FlowState state |
-        Stage3::revFlow(n, state, any(AccessPathFrontHead apf | apf.getHead() = tc), config)
+        Stage4::revFlow(n, state, any(AccessPathFrontHead apf | apf.getHead() = tc), config)
         or
         flowCandSummaryCtx(n, state, any(AccessPathFrontHead apf | apf.getHead() = tc), config)
       ) and
@@ -2332,11 +2572,11 @@ private predicate expensiveLen2unfolding(TypedContent tc, Configuration config)
 private newtype TAccessPathApprox =
   TNil(DataFlowType t) or
   TConsNil(TypedContent tc, DataFlowType t) {
-    Stage3::consCand(tc, TFrontNil(t), _) and
+    Stage4::consCand(tc, TFrontNil(t), _) and
     not expensiveLen2unfolding(tc, _)
   } or
   TConsCons(TypedContent tc1, TypedContent tc2, int len) {
-    Stage3::consCand(tc1, TFrontHead(tc2), _) and
+    Stage4::consCand(tc1, TFrontHead(tc2), _) and
     len in [2 .. accessPathLimit()] and
     not expensiveLen2unfolding(tc1, _)
   } or
@@ -2466,7 +2706,7 @@ private class AccessPathApproxCons1 extends AccessPathApproxCons, TCons1 {
   override AccessPathApprox pop(TypedContent head) {
     head = tc and
     (
-      exists(TypedContent tc2 | Stage3::consCand(tc, TFrontHead(tc2), _) |
+      exists(TypedContent tc2 | Stage4::consCand(tc, TFrontHead(tc2), _) |
         result = TConsCons(tc2, _, len - 1)
         or
         len = 2 and
@@ -2477,7 +2717,7 @@ private class AccessPathApproxCons1 extends AccessPathApproxCons, TCons1 {
       or
       exists(DataFlowType t |
         len = 1 and
-        Stage3::consCand(tc, TFrontNil(t), _) and
+        Stage4::consCand(tc, TFrontNil(t), _) and
         result = TNil(t)
       )
     )
@@ -2502,13 +2742,14 @@ private class AccessPathApproxOption extends TAccessPathApproxOption {
   }
 }
 
-private module Stage4Param implements MkStage<Stage3>::StageParam {
-  private module PrevStage = Stage3;
+private module Stage5Param implements MkStage<Stage4>::StageParam {
+  private module PrevStage = Stage4;
 
   class Ap = AccessPathApprox;
 
   class ApNil = AccessPathApproxNil;
 
+  pragma[nomagic]
   PrevStage::Ap getApprox(Ap ap) { result = ap.getFront() }
 
   ApNil getApNil(NodeEx node) {
@@ -2534,7 +2775,9 @@ private module Stage4Param implements MkStage<Stage3>::StageParam {
     NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
     ApNil ap, Configuration config, LocalCc lcc
   ) {
-    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap.getFront(), config, lcc)
+    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap.getType(), config, lcc) and
+    PrevStage::revFlow(node1, pragma[only_bind_into](state1), _, pragma[only_bind_into](config)) and
+    PrevStage::revFlowAlias(node2, pragma[only_bind_into](state2), _, pragma[only_bind_into](config))
   }
 
   pragma[nomagic]
@@ -2571,7 +2814,7 @@ private module Stage4Param implements MkStage<Stage3>::StageParam {
   predicate typecheckStore(Ap ap, DataFlowType contentType) { any() }
 }
 
-private module Stage4 = MkStage<Stage3>::Stage<Stage4Param>;
+private module Stage5 = MkStage<Stage4>::Stage<Stage5Param>;
 
 bindingset[conf, result]
 private Configuration unbindConf(Configuration conf) {
@@ -2585,8 +2828,8 @@ private predicate nodeMayUseSummary0(
 ) {
   exists(AccessPathApprox apa0 |
     c = n.getEnclosingCallable() and
-    Stage4::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
-    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TParameterPositionSome(pos),
+    Stage5::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
+    Stage5::fwdFlow(n, state, any(CallContextCall ccc), TParameterPositionSome(pos),
       TAccessPathApproxSome(apa), apa0, config)
   )
 }
@@ -2596,7 +2839,7 @@ private predicate nodeMayUseSummary(
   NodeEx n, FlowState state, AccessPathApprox apa, Configuration config
 ) {
   exists(DataFlowCallable c, ParameterPosition pos, ParamNodeEx p |
-    Stage4::parameterMayFlowThrough(p, apa, config) and
+    Stage5::parameterMayFlowThrough(p, apa, config) and
     nodeMayUseSummary0(n, c, pos, state, apa, config) and
     p.isParameterOf(c, pos)
   )
@@ -2606,8 +2849,8 @@ private newtype TSummaryCtx =
   TSummaryCtxNone() or
   TSummaryCtxSome(ParamNodeEx p, FlowState state, AccessPath ap) {
     exists(Configuration config |
-      Stage4::parameterMayFlowThrough(p, ap.getApprox(), config) and
-      Stage4::revFlow(p, state, _, config)
+      Stage5::parameterMayFlowThrough(p, ap.getApprox(), config) and
+      Stage5::revFlow(p, state, _, config)
     )
   }
 
@@ -2656,7 +2899,7 @@ private int count1to2unfold(AccessPathApproxCons1 apa, Configuration config) {
     len = apa.len() and
     result =
       strictcount(AccessPathFront apf |
-        Stage4::consCand(tc, any(AccessPathApprox ap | ap.getFront() = apf and ap.len() = len - 1),
+        Stage5::consCand(tc, any(AccessPathApprox ap | ap.getFront() = apf and ap.len() = len - 1),
           config)
       )
   )
@@ -2665,7 +2908,7 @@ private int count1to2unfold(AccessPathApproxCons1 apa, Configuration config) {
 private int countNodesUsingAccessPath(AccessPathApprox apa, Configuration config) {
   result =
     strictcount(NodeEx n, FlowState state |
-      Stage4::revFlow(n, state, apa, config) or nodeMayUseSummary(n, state, apa, config)
+      Stage5::revFlow(n, state, apa, config) or nodeMayUseSummary(n, state, apa, config)
     )
 }
 
@@ -2686,7 +2929,7 @@ private predicate expensiveLen1to2unfolding(AccessPathApproxCons1 apa, Configura
 private AccessPathApprox getATail(AccessPathApprox apa, Configuration config) {
   exists(TypedContent head |
     apa.pop(head) = result and
-    Stage4::consCand(head, result, config)
+    Stage5::consCand(head, result, config)
   )
 }
 
@@ -2768,7 +3011,7 @@ private newtype TPathNode =
     NodeEx node, FlowState state, CallContext cc, SummaryCtx sc, AccessPath ap, Configuration config
   ) {
     // A PathNode is introduced by a source ...
-    Stage4::revFlow(node, state, config) and
+    Stage5::revFlow(node, state, config) and
     sourceNode(node, state, config) and
     (
       if hasSourceCallCtx(config)
@@ -2782,7 +3025,7 @@ private newtype TPathNode =
     exists(PathNodeMid mid |
       pathStep(mid, node, state, cc, sc, ap) and
       pragma[only_bind_into](config) = mid.getConfiguration() and
-      Stage4::revFlow(node, state, ap.getApprox(), pragma[only_bind_into](config))
+      Stage5::revFlow(node, state, ap.getApprox(), pragma[only_bind_into](config))
     )
   } or
   TPathNodeSink(NodeEx node, FlowState state, Configuration config) {
@@ -2924,7 +3167,7 @@ private class AccessPathCons2 extends AccessPath, TAccessPathCons2 {
   override TypedContent getHead() { result = head1 }
 
   override AccessPath getTail() {
-    Stage4::consCand(head1, result.getApprox(), _) and
+    Stage5::consCand(head1, result.getApprox(), _) and
     result.getHead() = head2 and
     result.length() = len - 1
   }
@@ -2955,7 +3198,7 @@ private class AccessPathCons1 extends AccessPath, TAccessPathCons1 {
   override TypedContent getHead() { result = head }
 
   override AccessPath getTail() {
-    Stage4::consCand(head, result.getApprox(), _) and result.length() = len - 1
+    Stage5::consCand(head, result.getApprox(), _) and result.length() = len - 1
   }
 
   override AccessPathFrontHead getFront() { result = TFrontHead(head) }
@@ -3347,7 +3590,8 @@ private predicate pathStep(
     AccessPath ap0, NodeEx midnode, FlowState state0, Configuration conf, LocalCallContext localCC
   |
     pathNode(mid, midnode, state0, cc, sc, ap0, conf, localCC) and
-    localFlowBigStep(midnode, state0, node, state, false, ap.getFront(), conf, localCC) and
+    localFlowBigStep(midnode, state0, node, state, false, ap.(AccessPathNil).getType(), conf,
+      localCC) and
     ap0 instanceof AccessPathNil
   )
   or
@@ -3389,7 +3633,7 @@ private predicate pathReadStep(
 ) {
   ap0 = mid.getAp() and
   tc = ap0.getHead() and
-  Stage4::readStepCand(mid.getNodeEx(), tc.getContent(), node, mid.getConfiguration()) and
+  Stage5::readStepCand(mid.getNodeEx(), tc.getContent(), node, mid.getConfiguration()) and
   state = mid.getState() and
   cc = mid.getCallContext()
 }
@@ -3399,7 +3643,7 @@ private predicate pathStoreStep(
   PathNodeMid mid, NodeEx node, FlowState state, AccessPath ap0, TypedContent tc, CallContext cc
 ) {
   ap0 = mid.getAp() and
-  Stage4::storeStepCand(mid.getNodeEx(), _, tc, node, _, mid.getConfiguration()) and
+  Stage5::storeStepCand(mid.getNodeEx(), _, tc, node, _, mid.getConfiguration()) and
   state = mid.getState() and
   cc = mid.getCallContext()
 }
@@ -3436,7 +3680,7 @@ private NodeEx getAnOutNodeFlow(
   ReturnKindExt kind, DataFlowCall call, AccessPathApprox apa, Configuration config
 ) {
   result.asNode() = kind.getAnOutNode(call) and
-  Stage4::revFlow(result, _, apa, config)
+  Stage5::revFlow(result, _, apa, config)
 }
 
 /**
@@ -3472,7 +3716,7 @@ private predicate parameterCand(
   DataFlowCallable callable, ParameterPosition pos, AccessPathApprox apa, Configuration config
 ) {
   exists(ParamNodeEx p |
-    Stage4::revFlow(p, _, apa, config) and
+    Stage5::revFlow(p, _, apa, config) and
     p.isParameterOf(callable, pos)
   )
 }
@@ -3751,9 +3995,17 @@ predicate stageStats(
   n = 45 and
   Stage4::stats(false, nodes, fields, conscand, states, tuples, config)
   or
-  stage = "5 Fwd" and n = 50 and finalStats(true, nodes, fields, conscand, states, tuples)
+  stage = "5 Fwd" and
+  n = 50 and
+  Stage5::stats(true, nodes, fields, conscand, states, tuples, config)
   or
-  stage = "5 Rev" and n = 55 and finalStats(false, nodes, fields, conscand, states, tuples)
+  stage = "5 Rev" and
+  n = 55 and
+  Stage5::stats(false, nodes, fields, conscand, states, tuples, config)
+  or
+  stage = "6 Fwd" and n = 60 and finalStats(true, nodes, fields, conscand, states, tuples)
+  or
+  stage = "6 Rev" and n = 65 and finalStats(false, nodes, fields, conscand, states, tuples)
 }
 
 private module FlowExploration {
diff --git a/python/ql/lib/semmle/python/dataflow/new/internal/DataFlowImpl.qll b/python/ql/lib/semmle/python/dataflow/new/internal/DataFlowImpl.qll
index ccde916a3c2..6741ccc2f06 100644
--- a/python/ql/lib/semmle/python/dataflow/new/internal/DataFlowImpl.qll
+++ b/python/ql/lib/semmle/python/dataflow/new/internal/DataFlowImpl.qll
@@ -621,23 +621,6 @@ private predicate parameterFlowThroughAllowed(ParamNodeEx p, ReturnKindExt kind)
   )
 }
 
-/**
- * Holds if flow from a parameter at position `pos` inside `c` to a return node of
- * kind `kind` is allowed.
- *
- * We don't expect a parameter to return stored in itself, unless
- * explicitly allowed
- */
-bindingset[c, pos, kind]
-private predicate parameterFlowThroughAllowed(
-  DataFlowCallable c, ParameterPosition pos, ReturnKindExt kind
-) {
-  exists(ParamNodeEx p |
-    p.isParameterOf(c, pos) and
-    parameterFlowThroughAllowed(p, kind)
-  )
-}
-
 private module Stage1 implements StageSig {
   class Ap = Unit;
 
@@ -980,6 +963,12 @@ private module Stage1 implements StageSig {
   pragma[nomagic]
   predicate revFlow(NodeEx node, Configuration config) { revFlow(node, _, config) }
 
+  pragma[nomagic]
+  predicate revFlowAp(NodeEx node, Ap ap, Configuration config) {
+    revFlow(node, config) and
+    exists(ap)
+  }
+
   bindingset[node, state, config]
   predicate revFlow(NodeEx node, FlowState state, Ap ap, Configuration config) {
     revFlow(node, _, pragma[only_bind_into](config)) and
@@ -1022,9 +1011,13 @@ private module Stage1 implements StageSig {
   }
 
   pragma[nomagic]
-  predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config) {
+  predicate returnMayFlowThrough(
+    RetNodeEx ret, Ap argAp, Ap ap, ReturnKindExt kind, Configuration config
+  ) {
     throughFlowNodeCand(ret, config) and
-    kind = ret.getKind()
+    kind = ret.getKind() and
+    exists(argAp) and
+    exists(ap)
   }
 
   pragma[nomagic]
@@ -1189,6 +1182,8 @@ private signature module StageSig {
 
   predicate revFlow(NodeEx node, Configuration config);
 
+  predicate revFlowAp(NodeEx node, Ap ap, Configuration config);
+
   bindingset[node, state, config]
   predicate revFlow(NodeEx node, FlowState state, Ap ap, Configuration config);
 
@@ -1196,7 +1191,9 @@ private signature module StageSig {
 
   predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config);
 
-  predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config);
+  predicate returnMayFlowThrough(
+    RetNodeEx ret, Ap argAp, Ap ap, ReturnKindExt kind, Configuration config
+  );
 
   predicate storeStepCand(
     NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, DataFlowType contentType,
@@ -1281,21 +1278,43 @@ private module MkStage<StageSig PrevStage> {
     import Param
 
     /* Begin: Stage logic. */
-    bindingset[result, apa]
-    private ApApprox unbindApa(ApApprox apa) {
-      pragma[only_bind_out](apa) = pragma[only_bind_out](result)
+    // use an alias as a workaround for bad functionality-induced joins
+    pragma[nomagic]
+    private predicate revFlowApAlias(NodeEx node, ApApprox apa, Configuration config) {
+      PrevStage::revFlowAp(node, apa, config)
+    }
+
+    pragma[nomagic]
+    private predicate flowIntoCallApa(
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, ApApprox apa,
+      Configuration config
+    ) {
+      flowIntoCall(call, arg, p, allowsFieldFlow, config) and
+      PrevStage::revFlowAp(p, pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
+      revFlowApAlias(arg, pragma[only_bind_into](apa), pragma[only_bind_into](config))
+    }
+
+    pragma[nomagic]
+    private predicate flowOutOfCallApa(
+      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
+      ApApprox apa, Configuration config
+    ) {
+      flowOutOfCall(call, ret, kind, out, allowsFieldFlow, config) and
+      PrevStage::revFlowAp(out, pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
+      revFlowApAlias(ret, pragma[only_bind_into](apa), pragma[only_bind_into](config))
     }
 
     pragma[nomagic]
     private predicate flowThroughOutOfCall(
-      DataFlowCall call, DataFlowCallable c, CcCall ccc, RetNodeEx ret, ReturnKindExt kind,
-      NodeEx out, boolean allowsFieldFlow, Configuration config
+      DataFlowCall call, CcCall ccc, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow,
+      ApApprox argApa, ApApprox apa, Configuration config
     ) {
-      flowOutOfCall(call, ret, kind, out, allowsFieldFlow, pragma[only_bind_into](config)) and
-      PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
-      PrevStage::returnMayFlowThrough(ret, kind, pragma[only_bind_into](config)) and
-      matchesCall(ccc, call) and
-      c = ret.getEnclosingCallable()
+      exists(ReturnKindExt kind |
+        flowOutOfCallApa(call, ret, kind, out, allowsFieldFlow, apa, pragma[only_bind_into](config)) and
+        PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
+        PrevStage::returnMayFlowThrough(ret, argApa, apa, kind, pragma[only_bind_into](config)) and
+        matchesCall(ccc, call)
+      )
     }
 
     /**
@@ -1307,39 +1326,50 @@ private module MkStage<StageSig PrevStage> {
      * corresponding parameter position and access path of that argument, respectively.
      */
     pragma[nomagic]
+    additional predicate fwdFlow(
+      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      Ap ap, ApApprox apa, Configuration config
+    ) {
+      fwdFlow0(node, state, cc, summaryCtx, argAp, ap, apa, config) and
+      PrevStage::revFlow(node, state, apa, config) and
+      filter(node, state, ap, config)
+    }
+
+    pragma[inline]
     additional predicate fwdFlow(
       NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
       Ap ap, Configuration config
     ) {
-      fwdFlow0(node, state, cc, summaryCtx, argAp, ap, config) and
-      PrevStage::revFlow(node, state, unbindApa(getApprox(ap)), config) and
-      filter(node, state, ap, config)
+      fwdFlow(node, state, cc, summaryCtx, argAp, ap, _, config)
     }
 
     pragma[nomagic]
     private predicate fwdFlow0(
       NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      Ap ap, Configuration config
+      Ap ap, ApApprox apa, Configuration config
     ) {
       sourceNode(node, state, config) and
       (if hasSourceCallCtx(config) then cc = ccSomeCall() else cc = ccNone()) and
       argAp = apNone() and
       summaryCtx = TParameterPositionNone() and
-      ap = getApNil(node)
+      ap = getApNil(node) and
+      apa = getApprox(ap)
       or
-      exists(NodeEx mid, FlowState state0, Ap ap0, LocalCc localCc |
-        fwdFlow(mid, state0, cc, summaryCtx, argAp, ap0, config) and
+      exists(NodeEx mid, FlowState state0, Ap ap0, ApApprox apa0, LocalCc localCc |
+        fwdFlow(mid, state0, cc, summaryCtx, argAp, ap0, apa0, config) and
         localCc = getLocalCc(mid, cc)
       |
         localStep(mid, state0, node, state, true, _, config, localCc) and
-        ap = ap0
+        ap = ap0 and
+        apa = apa0
         or
         localStep(mid, state0, node, state, false, ap, config, localCc) and
-        ap0 instanceof ApNil
+        ap0 instanceof ApNil and
+        apa = getApprox(ap)
       )
       or
       exists(NodeEx mid |
-        fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, apa, pragma[only_bind_into](config)) and
         jumpStep(mid, node, config) and
         cc = ccNone() and
         summaryCtx = TParameterPositionNone() and
@@ -1352,7 +1382,8 @@ private module MkStage<StageSig PrevStage> {
         cc = ccNone() and
         summaryCtx = TParameterPositionNone() and
         argAp = apNone() and
-        ap = getApNil(node)
+        ap = getApNil(node) and
+        apa = getApprox(ap)
       )
       or
       exists(NodeEx mid, FlowState state0, ApNil nil |
@@ -1361,32 +1392,32 @@ private module MkStage<StageSig PrevStage> {
         cc = ccNone() and
         summaryCtx = TParameterPositionNone() and
         argAp = apNone() and
-        ap = getApNil(node)
+        ap = getApNil(node) and
+        apa = getApprox(ap)
       )
       or
       // store
       exists(TypedContent tc, Ap ap0 |
         fwdFlowStore(_, ap0, tc, node, state, cc, summaryCtx, argAp, config) and
-        ap = apCons(tc, ap0)
+        ap = apCons(tc, ap0) and
+        apa = getApprox(ap)
       )
       or
       // read
       exists(Ap ap0, Content c |
         fwdFlowRead(ap0, c, _, node, state, cc, summaryCtx, argAp, config) and
-        fwdFlowConsCand(ap0, c, ap, config)
+        fwdFlowConsCand(ap0, c, ap, config) and
+        apa = getApprox(ap)
       )
       or
       // flow into a callable
-      exists(ApApprox apa |
-        fwdFlowIn(_, node, state, _, cc, _, _, ap, config) and
-        apa = getApprox(ap) and
-        if PrevStage::parameterMayFlowThrough(node, apa, config)
-        then (
-          summaryCtx = TParameterPositionSome(node.(ParamNodeEx).getPosition()) and
-          argAp = apSome(ap)
-        ) else (
-          summaryCtx = TParameterPositionNone() and argAp = apNone()
-        )
+      fwdFlowIn(_, node, state, _, cc, _, _, ap, apa, config) and
+      if PrevStage::parameterMayFlowThrough(node, apa, config)
+      then (
+        summaryCtx = TParameterPositionSome(node.(ParamNodeEx).getPosition()) and
+        argAp = apSome(ap)
+      ) else (
+        summaryCtx = TParameterPositionNone() and argAp = apNone()
       )
       or
       // flow out of a callable
@@ -1394,8 +1425,8 @@ private module MkStage<StageSig PrevStage> {
         DataFlowCall call, RetNodeEx ret, boolean allowsFieldFlow, CcNoCall innercc,
         DataFlowCallable inner
       |
-        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, config) and
-        flowOutOfCall(call, ret, _, node, allowsFieldFlow, config) and
+        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, apa, config) and
+        flowOutOfCallApa(call, ret, _, node, allowsFieldFlow, apa, config) and
         inner = ret.getEnclosingCallable() and
         cc = getCallContextReturn(inner, call, innercc) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
@@ -1403,7 +1434,7 @@ private module MkStage<StageSig PrevStage> {
       or
       // flow through a callable
       exists(DataFlowCall call, ParameterPosition summaryCtx0, Ap argAp0 |
-        fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, config) and
+        fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, apa, config) and
         fwdFlowIsEntered(call, cc, summaryCtx, argAp, summaryCtx0, argAp0, config)
       )
     }
@@ -1413,9 +1444,9 @@ private module MkStage<StageSig PrevStage> {
       NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc,
       ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
     ) {
-      exists(DataFlowType contentType |
-        fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, config) and
-        PrevStage::storeStepCand(node1, unbindApa(getApprox(ap1)), tc, node2, contentType, config) and
+      exists(DataFlowType contentType, ApApprox apa1 |
+        fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, apa1, config) and
+        PrevStage::storeStepCand(node1, apa1, tc, node2, contentType, config) and
         typecheckStore(ap1, contentType)
       )
     }
@@ -1433,43 +1464,104 @@ private module MkStage<StageSig PrevStage> {
       )
     }
 
+    private class ApNonNil instanceof Ap {
+      pragma[nomagic]
+      ApNonNil() { not this instanceof ApNil }
+
+      string toString() { result = "" }
+    }
+
+    pragma[nomagic]
+    private predicate fwdFlowRead0(
+      NodeEx node1, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      ApNonNil ap, Configuration config
+    ) {
+      fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
+      PrevStage::readStepCand(node1, _, _, config)
+    }
+
     pragma[nomagic]
     private predicate fwdFlowRead(
       Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc,
       ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
     ) {
-      fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
+      fwdFlowRead0(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, c, node2, config) and
       getHeadContent(ap) = c
     }
 
     pragma[nomagic]
     private predicate fwdFlowIn(
-      DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, Cc innercc,
-      ParameterPositionOption summaryCtx, ApOption argAp, Ap ap, Configuration config
+      DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, CcCall innercc,
+      ParameterPositionOption summaryCtx, ApOption argAp, Ap ap, ApApprox apa, Configuration config
     ) {
       exists(ArgNodeEx arg, boolean allowsFieldFlow |
-        fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, config) and
-        flowIntoCall(call, arg, p, allowsFieldFlow, config) and
+        fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, apa, config) and
+        flowIntoCallApa(call, arg, p, allowsFieldFlow, apa, config) and
         innercc = getCallContextCall(call, p.getEnclosingCallable(), outercc) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
+    pragma[nomagic]
+    private predicate fwdFlowRetFromArg(
+      RetNodeEx ret, FlowState state, CcCall ccc, ParameterPosition summaryCtx, ParamNodeEx p,
+      Ap argAp, ApApprox argApa, Ap ap, ApApprox apa, Configuration config
+    ) {
+      exists(DataFlowCallable c, ReturnKindExt kind |
+        fwdFlow(pragma[only_bind_into](ret), state, ccc,
+          TParameterPositionSome(pragma[only_bind_into](summaryCtx)), apSome(argAp), ap, apa, config) and
+        getApprox(argAp) = argApa and
+        c = ret.getEnclosingCallable() and
+        kind = ret.getKind() and
+        p.isParameterOf(c, pragma[only_bind_into](summaryCtx)) and
+        parameterFlowThroughAllowed(p, kind)
+      )
+    }
+
+    pragma[inline]
+    private predicate fwdFlowInMayFlowThrough(
+      DataFlowCall call, Cc cc, CcCall innerCc, ParameterPositionOption summaryCtx, ApOption argAp,
+      ParamNodeEx param, Ap ap, ApApprox apa, Configuration config
+    ) {
+      fwdFlowIn(call, pragma[only_bind_into](param), _, cc, innerCc, summaryCtx, argAp, ap,
+        pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
+      PrevStage::parameterMayFlowThrough(param, apa, config)
+    }
+
+    // dedup before joining with `flowThroughOutOfCall`
+    pragma[nomagic]
+    private predicate fwdFlowInMayFlowThroughProj(
+      DataFlowCall call, CcCall innerCc, ApApprox apa, Configuration config
+    ) {
+      fwdFlowInMayFlowThrough(call, _, innerCc, _, _, _, _, apa, config)
+    }
+
+    /**
+     * Same as `flowThroughOutOfCall`, but restricted to calls that are reached
+     * in the flow covered by `fwdFlow`, where data might flow through the target
+     * callable and back out at `call`.
+     */
+    pragma[nomagic]
+    private predicate fwdFlowThroughOutOfCall(
+      DataFlowCall call, CcCall ccc, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow,
+      ApApprox argApa, ApApprox apa, Configuration config
+    ) {
+      fwdFlowInMayFlowThroughProj(call, ccc, argApa, config) and
+      flowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, argApa, apa, config)
+    }
+
     pragma[nomagic]
     private predicate fwdFlowOutFromArg(
       DataFlowCall call, NodeEx out, FlowState state, ParameterPosition summaryCtx, Ap argAp, Ap ap,
-      Configuration config
+      ApApprox apa, Configuration config
     ) {
-      exists(
-        DataFlowCallable c, RetNodeEx ret, ReturnKindExt kind, boolean allowsFieldFlow, CcCall ccc
-      |
-        fwdFlow(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc),
-          TParameterPositionSome(pragma[only_bind_into](summaryCtx)), apSome(argAp), ap, config) and
-        flowThroughOutOfCall(call, pragma[only_bind_into](c), ccc, ret, kind, out, allowsFieldFlow,
+      exists(RetNodeEx ret, boolean allowsFieldFlow, CcCall ccc, ApApprox argApa |
+        fwdFlowRetFromArg(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc),
+          summaryCtx, _, argAp, pragma[only_bind_into](argApa), ap, pragma[only_bind_into](apa),
           config) and
-        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
-        parameterFlowThroughAllowed(c, pragma[only_bind_into](summaryCtx), kind)
+        fwdFlowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, argApa, apa, config) and
+        (if allowsFieldFlow = false then ap instanceof ApNil else any())
       )
     }
 
@@ -1483,8 +1575,7 @@ private module MkStage<StageSig PrevStage> {
       ParameterPosition pos, Ap ap, Configuration config
     ) {
       exists(ParamNodeEx param |
-        fwdFlowIn(call, param, _, cc, _, summaryCtx, argAp, ap, config) and
-        PrevStage::parameterMayFlowThrough(param, unbindApa(getApprox(ap)), config) and
+        fwdFlowInMayFlowThrough(call, cc, _, summaryCtx, argAp, param, ap, _, config) and
         pos = param.getPosition()
       )
     }
@@ -1505,41 +1596,55 @@ private module MkStage<StageSig PrevStage> {
       fwdFlowConsCand(ap1, c, ap2, config)
     }
 
-    pragma[nomagic]
-    private predicate returnFlowsThrough0(
-      RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, DataFlowCallable c,
-      ParameterPosition ppos, Ap argAp, Ap ap, Configuration config
-    ) {
-      exists(boolean allowsFieldFlow |
-        fwdFlow(ret, state, ccc, TParameterPositionSome(ppos), apSome(argAp), ap, config) and
-        flowThroughOutOfCall(_, c, _, pragma[only_bind_into](ret), kind, _, allowsFieldFlow,
-          pragma[only_bind_into](config)) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
-      )
-    }
-
     pragma[nomagic]
     private predicate returnFlowsThrough(
       RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, ParamNodeEx p, Ap argAp,
       Ap ap, Configuration config
     ) {
-      exists(DataFlowCallable c, ParameterPosition ppos |
-        returnFlowsThrough0(ret, kind, state, ccc, c, ppos, argAp, ap, config) and
-        p.isParameterOf(c, ppos) and
-        parameterFlowThroughAllowed(p, kind)
+      exists(boolean allowsFieldFlow, ApApprox argApa, ApApprox apa |
+        fwdFlowRetFromArg(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc), _, p,
+          argAp, pragma[only_bind_into](argApa), ap, pragma[only_bind_into](apa), config) and
+        kind = ret.getKind() and
+        fwdFlowThroughOutOfCall(_, ccc, ret, _, allowsFieldFlow, argApa, apa, config) and
+        (if allowsFieldFlow = false then ap instanceof ApNil else any())
       )
     }
 
     pragma[nomagic]
     private predicate flowThroughIntoCall(
-      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp,
+      Configuration config
     ) {
-      exists(Ap argAp |
-        flowIntoCall(call, pragma[only_bind_into](arg), pragma[only_bind_into](p), allowsFieldFlow,
+      exists(ApApprox argApa |
+        flowIntoCallApa(call, pragma[only_bind_into](arg), pragma[only_bind_into](p),
+          allowsFieldFlow, argApa, pragma[only_bind_into](config)) and
+        fwdFlow(arg, _, _, _, _, pragma[only_bind_into](argAp), argApa,
           pragma[only_bind_into](config)) and
-        fwdFlow(arg, _, _, _, _, pragma[only_bind_into](argAp), pragma[only_bind_into](config)) and
         returnFlowsThrough(_, _, _, _, p, pragma[only_bind_into](argAp), _,
-          pragma[only_bind_into](config))
+          pragma[only_bind_into](config)) and
+        if allowsFieldFlow = false then argAp instanceof ApNil else any()
+      )
+    }
+
+    pragma[nomagic]
+    private predicate flowIntoCallAp(
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap ap,
+      Configuration config
+    ) {
+      exists(ApApprox apa |
+        flowIntoCallApa(call, arg, p, allowsFieldFlow, apa, config) and
+        fwdFlow(arg, _, _, _, _, ap, apa, config)
+      )
+    }
+
+    pragma[nomagic]
+    private predicate flowOutOfCallAp(
+      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
+      Ap ap, Configuration config
+    ) {
+      exists(ApApprox apa |
+        flowOutOfCallApa(call, ret, kind, out, allowsFieldFlow, apa, config) and
+        fwdFlow(ret, _, _, _, _, ap, apa, config)
       )
     }
 
@@ -1628,7 +1733,7 @@ private module MkStage<StageSig PrevStage> {
       // flow into a callable
       exists(ParamNodeEx p, boolean allowsFieldFlow |
         revFlow(p, state, TReturnCtxNone(), returnAp, ap, config) and
-        flowIntoCall(_, node, p, allowsFieldFlow, config) and
+        flowIntoCallAp(_, node, p, allowsFieldFlow, ap, config) and
         (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
         returnCtx = TReturnCtxNone()
       )
@@ -1682,22 +1787,41 @@ private module MkStage<StageSig PrevStage> {
     ) {
       exists(NodeEx out, boolean allowsFieldFlow |
         revFlow(out, state, returnCtx, returnAp, ap, config) and
-        flowOutOfCall(call, ret, kind, out, allowsFieldFlow, config) and
+        flowOutOfCallAp(call, ret, kind, out, allowsFieldFlow, ap, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
+    /**
+     * Same as `flowThroughIntoCall`, but restricted to calls that are reached
+     * in the flow covered by `revFlow`, where data might flow through the target
+     * callable and back out at `call`.
+     */
+    pragma[nomagic]
+    private predicate revFlowThroughIntoCall(
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp,
+      Configuration config
+    ) {
+      flowThroughIntoCall(call, arg, p, allowsFieldFlow, argAp, config) and
+      revFlowIsReturned(call, _, _, _, _, config)
+    }
+
+    pragma[nomagic]
+    private predicate revFlowParamToReturn(
+      ParamNodeEx p, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap, Configuration config
+    ) {
+      revFlow(p, state, TReturnCtxMaybeFlowThrough(kind), apSome(returnAp), ap, config) and
+      parameterFlowThroughAllowed(p, kind)
+    }
+
     pragma[nomagic]
     private predicate revFlowInToReturn(
       DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap,
       Configuration config
     ) {
       exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(pragma[only_bind_into](p), state,
-          TReturnCtxMaybeFlowThrough(pragma[only_bind_into](kind)), apSome(returnAp), ap, config) and
-        flowThroughIntoCall(call, arg, p, allowsFieldFlow, config) and
-        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
-        parameterFlowThroughAllowed(p, kind)
+        revFlowParamToReturn(p, state, kind, returnAp, ap, config) and
+        revFlowThroughIntoCall(call, arg, p, allowsFieldFlow, ap, config)
       )
     }
 
@@ -1750,6 +1874,11 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     predicate revFlow(NodeEx node, Configuration config) { revFlow(node, _, _, _, _, config) }
 
+    pragma[nomagic]
+    predicate revFlowAp(NodeEx node, Ap ap, Configuration config) {
+      revFlow(node, _, _, _, ap, config)
+    }
+
     // use an alias as a workaround for bad functionality-induced joins
     pragma[nomagic]
     additional predicate revFlowAlias(NodeEx node, Configuration config) {
@@ -1786,9 +1915,9 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate parameterFlowsThroughRev(
-      ParamNodeEx p, Ap ap, ReturnKindExt kind, Configuration config
+      ParamNodeEx p, Ap ap, ReturnKindExt kind, Ap returnAp, Configuration config
     ) {
-      revFlow(p, _, TReturnCtxMaybeFlowThrough(kind), apSome(_), ap, config) and
+      revFlow(p, _, TReturnCtxMaybeFlowThrough(kind), apSome(returnAp), ap, config) and
       parameterFlowThroughAllowed(p, kind)
     }
 
@@ -1796,27 +1925,36 @@ private module MkStage<StageSig PrevStage> {
     predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
       exists(RetNodeEx ret, ReturnKindExt kind |
         returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
-        parameterFlowsThroughRev(p, ap, kind, config)
+        parameterFlowsThroughRev(p, ap, kind, _, config)
       )
     }
 
     pragma[nomagic]
-    predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config) {
-      exists(ParamNodeEx p, Ap ap |
-        returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
-        parameterFlowsThroughRev(p, ap, kind, config)
+    predicate returnMayFlowThrough(
+      RetNodeEx ret, Ap argAp, Ap ap, ReturnKindExt kind, Configuration config
+    ) {
+      exists(ParamNodeEx p |
+        returnFlowsThrough(ret, kind, _, _, p, argAp, ap, config) and
+        parameterFlowsThroughRev(p, argAp, kind, ap, config)
+      )
+    }
+
+    pragma[nomagic]
+    predicate revFlowInToReturnIsReturned(
+      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnCtx returnCtx, ApOption returnAp,
+      Ap ap, Configuration config
+    ) {
+      exists(ReturnKindExt returnKind0, Ap returnAp0 |
+        revFlowInToReturn(call, arg, state, returnKind0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
       )
     }
 
     pragma[nomagic]
     predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
-      exists(
-        ReturnKindExt returnKind0, Ap returnAp0, ArgNodeEx arg, FlowState state,
-        ReturnCtx returnCtx, ApOption returnAp, Ap ap
-      |
+      exists(ArgNodeEx arg, FlowState state, ReturnCtx returnCtx, ApOption returnAp, Ap ap |
         revFlow(arg, state, returnCtx, returnAp, ap, config) and
-        revFlowInToReturn(call, arg, state, returnKind0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
+        revFlowInToReturnIsReturned(call, arg, state, returnCtx, returnAp, ap, config)
       )
     }
 
@@ -2179,16 +2317,16 @@ private module LocalFlowBigStep {
   pragma[nomagic]
   predicate localFlowBigStep(
     NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
-    AccessPathFrontNil apf, Configuration config, LocalCallContext callContext
+    DataFlowType t, Configuration config, LocalCallContext callContext
   ) {
-    localFlowStepPlus(node1, state1, node2, preservesValue, apf.getType(), config, callContext) and
+    localFlowStepPlus(node1, state1, node2, preservesValue, t, config, callContext) and
     localFlowExit(node2, state1, config) and
     state1 = state2
     or
     additionalLocalFlowStepNodeCand2(node1, state1, node2, state2, config) and
     state1 != state2 and
     preservesValue = false and
-    apf = TFrontNil(node2.getDataFlowType()) and
+    t = node2.getDataFlowType() and
     callContext.relevantFor(node1.getEnclosingCallable()) and
     not exists(DataFlowCall call | call = callContext.(LocalCallContextSpecificCall).getCall() |
       isUnreachableInCallCached(node1.asNode(), call) or
@@ -2202,11 +2340,87 @@ private import LocalFlowBigStep
 private module Stage3Param implements MkStage<Stage2>::StageParam {
   private module PrevStage = Stage2;
 
+  class Ap = ApproxAccessPathFront;
+
+  class ApNil = ApproxAccessPathFrontNil;
+
+  PrevStage::Ap getApprox(Ap ap) { result = ap.toBoolNonEmpty() }
+
+  ApNil getApNil(NodeEx node) {
+    PrevStage::revFlow(node, _) and result = TApproxFrontNil(node.getDataFlowType())
+  }
+
+  bindingset[tc, tail]
+  Ap apCons(TypedContent tc, Ap tail) { result.getAHead() = tc and exists(tail) }
+
+  pragma[noinline]
+  Content getHeadContent(Ap ap) { result = ap.getAHead().getContent() }
+
+  class ApOption = ApproxAccessPathFrontOption;
+
+  ApOption apNone() { result = TApproxAccessPathFrontNone() }
+
+  ApOption apSome(Ap ap) { result = TApproxAccessPathFrontSome(ap) }
+
+  import BooleanCallContext
+
+  predicate localStep(
+    NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
+    ApproxAccessPathFrontNil ap, Configuration config, LocalCc lcc
+  ) {
+    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap.getType(), config, _) and
+    exists(lcc)
+  }
+
+  predicate flowOutOfCall = flowOutOfCallNodeCand2/6;
+
+  predicate flowIntoCall = flowIntoCallNodeCand2/5;
+
+  pragma[nomagic]
+  private predicate expectsContentCand(NodeEx node, Ap ap, Configuration config) {
+    exists(Content c |
+      PrevStage::revFlow(node, pragma[only_bind_into](config)) and
+      PrevStage::readStepCand(_, c, _, pragma[only_bind_into](config)) and
+      expectsContentEx(node, c) and
+      c = ap.getAHead().getContent()
+    )
+  }
+
+  pragma[nomagic]
+  private predicate castingNodeEx(NodeEx node) { node.asNode() instanceof CastingNode }
+
+  bindingset[node, state, ap, config]
+  predicate filter(NodeEx node, FlowState state, Ap ap, Configuration config) {
+    exists(state) and
+    exists(config) and
+    (if castingNodeEx(node) then compatibleTypes(node.getDataFlowType(), ap.getType()) else any()) and
+    (
+      notExpectsContent(node)
+      or
+      expectsContentCand(node, ap, config)
+    )
+  }
+
+  bindingset[ap, contentType]
+  predicate typecheckStore(Ap ap, DataFlowType contentType) {
+    // We need to typecheck stores here, since reverse flow through a getter
+    // might have a different type here compared to inside the getter.
+    compatibleTypes(ap.getType(), contentType)
+  }
+}
+
+private module Stage3 implements StageSig {
+  import MkStage<Stage2>::Stage<Stage3Param>
+}
+
+private module Stage4Param implements MkStage<Stage3>::StageParam {
+  private module PrevStage = Stage3;
+
   class Ap = AccessPathFront;
 
   class ApNil = AccessPathFrontNil;
 
-  PrevStage::Ap getApprox(Ap ap) { result = ap.toBoolNonEmpty() }
+  PrevStage::Ap getApprox(Ap ap) { result = ap.toApprox() }
 
   ApNil getApNil(NodeEx node) {
     PrevStage::revFlow(node, _) and result = TFrontNil(node.getDataFlowType())
@@ -2226,16 +2440,42 @@ private module Stage3Param implements MkStage<Stage2>::StageParam {
 
   import BooleanCallContext
 
+  pragma[nomagic]
   predicate localStep(
     NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
     ApNil ap, Configuration config, LocalCc lcc
   ) {
-    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap, config, _) and exists(lcc)
+    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap.getType(), config, _) and
+    PrevStage::revFlow(node1, pragma[only_bind_into](state1), _, pragma[only_bind_into](config)) and
+    PrevStage::revFlowAlias(node2, pragma[only_bind_into](state2), _, pragma[only_bind_into](config)) and
+    exists(lcc)
   }
 
-  predicate flowOutOfCall = flowOutOfCallNodeCand2/6;
+  pragma[nomagic]
+  predicate flowOutOfCall(
+    DataFlowCall call, RetNodeEx node1, ReturnKindExt kind, NodeEx node2, boolean allowsFieldFlow,
+    Configuration config
+  ) {
+    exists(FlowState state |
+      flowOutOfCallNodeCand2(call, node1, kind, node2, allowsFieldFlow, config) and
+      PrevStage::revFlow(node2, pragma[only_bind_into](state), _, pragma[only_bind_into](config)) and
+      PrevStage::revFlowAlias(node1, pragma[only_bind_into](state), _,
+        pragma[only_bind_into](config))
+    )
+  }
 
-  predicate flowIntoCall = flowIntoCallNodeCand2/5;
+  pragma[nomagic]
+  predicate flowIntoCall(
+    DataFlowCall call, ArgNodeEx node1, ParamNodeEx node2, boolean allowsFieldFlow,
+    Configuration config
+  ) {
+    exists(FlowState state |
+      flowIntoCallNodeCand2(call, node1, node2, allowsFieldFlow, config) and
+      PrevStage::revFlow(node2, pragma[only_bind_into](state), _, pragma[only_bind_into](config)) and
+      PrevStage::revFlowAlias(node1, pragma[only_bind_into](state), _,
+        pragma[only_bind_into](config))
+    )
+  }
 
   pragma[nomagic]
   private predicate clearSet(NodeEx node, ContentSet c, Configuration config) {
@@ -2291,8 +2531,8 @@ private module Stage3Param implements MkStage<Stage2>::StageParam {
   }
 }
 
-private module Stage3 implements StageSig {
-  import MkStage<Stage2>::Stage<Stage3Param>
+private module Stage4 implements StageSig {
+  import MkStage<Stage3>::Stage<Stage4Param>
 }
 
 /**
@@ -2303,8 +2543,8 @@ private predicate flowCandSummaryCtx(
   NodeEx node, FlowState state, AccessPathFront argApf, Configuration config
 ) {
   exists(AccessPathFront apf |
-    Stage3::revFlow(node, state, TReturnCtxMaybeFlowThrough(_), _, apf, config) and
-    Stage3::fwdFlow(node, state, any(Stage3::CcCall ccc), _, TAccessPathFrontSome(argApf), apf,
+    Stage4::revFlow(node, state, TReturnCtxMaybeFlowThrough(_), _, apf, config) and
+    Stage4::fwdFlow(node, state, any(Stage4::CcCall ccc), _, TAccessPathFrontSome(argApf), apf,
       config)
   )
 }
@@ -2315,10 +2555,10 @@ private predicate flowCandSummaryCtx(
  */
 private predicate expensiveLen2unfolding(TypedContent tc, Configuration config) {
   exists(int tails, int nodes, int apLimit, int tupleLimit |
-    tails = strictcount(AccessPathFront apf | Stage3::consCand(tc, apf, config)) and
+    tails = strictcount(AccessPathFront apf | Stage4::consCand(tc, apf, config)) and
     nodes =
       strictcount(NodeEx n, FlowState state |
-        Stage3::revFlow(n, state, any(AccessPathFrontHead apf | apf.getHead() = tc), config)
+        Stage4::revFlow(n, state, any(AccessPathFrontHead apf | apf.getHead() = tc), config)
         or
         flowCandSummaryCtx(n, state, any(AccessPathFrontHead apf | apf.getHead() = tc), config)
       ) and
@@ -2332,11 +2572,11 @@ private predicate expensiveLen2unfolding(TypedContent tc, Configuration config)
 private newtype TAccessPathApprox =
   TNil(DataFlowType t) or
   TConsNil(TypedContent tc, DataFlowType t) {
-    Stage3::consCand(tc, TFrontNil(t), _) and
+    Stage4::consCand(tc, TFrontNil(t), _) and
     not expensiveLen2unfolding(tc, _)
   } or
   TConsCons(TypedContent tc1, TypedContent tc2, int len) {
-    Stage3::consCand(tc1, TFrontHead(tc2), _) and
+    Stage4::consCand(tc1, TFrontHead(tc2), _) and
     len in [2 .. accessPathLimit()] and
     not expensiveLen2unfolding(tc1, _)
   } or
@@ -2466,7 +2706,7 @@ private class AccessPathApproxCons1 extends AccessPathApproxCons, TCons1 {
   override AccessPathApprox pop(TypedContent head) {
     head = tc and
     (
-      exists(TypedContent tc2 | Stage3::consCand(tc, TFrontHead(tc2), _) |
+      exists(TypedContent tc2 | Stage4::consCand(tc, TFrontHead(tc2), _) |
         result = TConsCons(tc2, _, len - 1)
         or
         len = 2 and
@@ -2477,7 +2717,7 @@ private class AccessPathApproxCons1 extends AccessPathApproxCons, TCons1 {
       or
       exists(DataFlowType t |
         len = 1 and
-        Stage3::consCand(tc, TFrontNil(t), _) and
+        Stage4::consCand(tc, TFrontNil(t), _) and
         result = TNil(t)
       )
     )
@@ -2502,13 +2742,14 @@ private class AccessPathApproxOption extends TAccessPathApproxOption {
   }
 }
 
-private module Stage4Param implements MkStage<Stage3>::StageParam {
-  private module PrevStage = Stage3;
+private module Stage5Param implements MkStage<Stage4>::StageParam {
+  private module PrevStage = Stage4;
 
   class Ap = AccessPathApprox;
 
   class ApNil = AccessPathApproxNil;
 
+  pragma[nomagic]
   PrevStage::Ap getApprox(Ap ap) { result = ap.getFront() }
 
   ApNil getApNil(NodeEx node) {
@@ -2534,7 +2775,9 @@ private module Stage4Param implements MkStage<Stage3>::StageParam {
     NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
     ApNil ap, Configuration config, LocalCc lcc
   ) {
-    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap.getFront(), config, lcc)
+    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap.getType(), config, lcc) and
+    PrevStage::revFlow(node1, pragma[only_bind_into](state1), _, pragma[only_bind_into](config)) and
+    PrevStage::revFlowAlias(node2, pragma[only_bind_into](state2), _, pragma[only_bind_into](config))
   }
 
   pragma[nomagic]
@@ -2571,7 +2814,7 @@ private module Stage4Param implements MkStage<Stage3>::StageParam {
   predicate typecheckStore(Ap ap, DataFlowType contentType) { any() }
 }
 
-private module Stage4 = MkStage<Stage3>::Stage<Stage4Param>;
+private module Stage5 = MkStage<Stage4>::Stage<Stage5Param>;
 
 bindingset[conf, result]
 private Configuration unbindConf(Configuration conf) {
@@ -2585,8 +2828,8 @@ private predicate nodeMayUseSummary0(
 ) {
   exists(AccessPathApprox apa0 |
     c = n.getEnclosingCallable() and
-    Stage4::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
-    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TParameterPositionSome(pos),
+    Stage5::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
+    Stage5::fwdFlow(n, state, any(CallContextCall ccc), TParameterPositionSome(pos),
       TAccessPathApproxSome(apa), apa0, config)
   )
 }
@@ -2596,7 +2839,7 @@ private predicate nodeMayUseSummary(
   NodeEx n, FlowState state, AccessPathApprox apa, Configuration config
 ) {
   exists(DataFlowCallable c, ParameterPosition pos, ParamNodeEx p |
-    Stage4::parameterMayFlowThrough(p, apa, config) and
+    Stage5::parameterMayFlowThrough(p, apa, config) and
     nodeMayUseSummary0(n, c, pos, state, apa, config) and
     p.isParameterOf(c, pos)
   )
@@ -2606,8 +2849,8 @@ private newtype TSummaryCtx =
   TSummaryCtxNone() or
   TSummaryCtxSome(ParamNodeEx p, FlowState state, AccessPath ap) {
     exists(Configuration config |
-      Stage4::parameterMayFlowThrough(p, ap.getApprox(), config) and
-      Stage4::revFlow(p, state, _, config)
+      Stage5::parameterMayFlowThrough(p, ap.getApprox(), config) and
+      Stage5::revFlow(p, state, _, config)
     )
   }
 
@@ -2656,7 +2899,7 @@ private int count1to2unfold(AccessPathApproxCons1 apa, Configuration config) {
     len = apa.len() and
     result =
       strictcount(AccessPathFront apf |
-        Stage4::consCand(tc, any(AccessPathApprox ap | ap.getFront() = apf and ap.len() = len - 1),
+        Stage5::consCand(tc, any(AccessPathApprox ap | ap.getFront() = apf and ap.len() = len - 1),
           config)
       )
   )
@@ -2665,7 +2908,7 @@ private int count1to2unfold(AccessPathApproxCons1 apa, Configuration config) {
 private int countNodesUsingAccessPath(AccessPathApprox apa, Configuration config) {
   result =
     strictcount(NodeEx n, FlowState state |
-      Stage4::revFlow(n, state, apa, config) or nodeMayUseSummary(n, state, apa, config)
+      Stage5::revFlow(n, state, apa, config) or nodeMayUseSummary(n, state, apa, config)
     )
 }
 
@@ -2686,7 +2929,7 @@ private predicate expensiveLen1to2unfolding(AccessPathApproxCons1 apa, Configura
 private AccessPathApprox getATail(AccessPathApprox apa, Configuration config) {
   exists(TypedContent head |
     apa.pop(head) = result and
-    Stage4::consCand(head, result, config)
+    Stage5::consCand(head, result, config)
   )
 }
 
@@ -2768,7 +3011,7 @@ private newtype TPathNode =
     NodeEx node, FlowState state, CallContext cc, SummaryCtx sc, AccessPath ap, Configuration config
   ) {
     // A PathNode is introduced by a source ...
-    Stage4::revFlow(node, state, config) and
+    Stage5::revFlow(node, state, config) and
     sourceNode(node, state, config) and
     (
       if hasSourceCallCtx(config)
@@ -2782,7 +3025,7 @@ private newtype TPathNode =
     exists(PathNodeMid mid |
       pathStep(mid, node, state, cc, sc, ap) and
       pragma[only_bind_into](config) = mid.getConfiguration() and
-      Stage4::revFlow(node, state, ap.getApprox(), pragma[only_bind_into](config))
+      Stage5::revFlow(node, state, ap.getApprox(), pragma[only_bind_into](config))
     )
   } or
   TPathNodeSink(NodeEx node, FlowState state, Configuration config) {
@@ -2924,7 +3167,7 @@ private class AccessPathCons2 extends AccessPath, TAccessPathCons2 {
   override TypedContent getHead() { result = head1 }
 
   override AccessPath getTail() {
-    Stage4::consCand(head1, result.getApprox(), _) and
+    Stage5::consCand(head1, result.getApprox(), _) and
     result.getHead() = head2 and
     result.length() = len - 1
   }
@@ -2955,7 +3198,7 @@ private class AccessPathCons1 extends AccessPath, TAccessPathCons1 {
   override TypedContent getHead() { result = head }
 
   override AccessPath getTail() {
-    Stage4::consCand(head, result.getApprox(), _) and result.length() = len - 1
+    Stage5::consCand(head, result.getApprox(), _) and result.length() = len - 1
   }
 
   override AccessPathFrontHead getFront() { result = TFrontHead(head) }
@@ -3347,7 +3590,8 @@ private predicate pathStep(
     AccessPath ap0, NodeEx midnode, FlowState state0, Configuration conf, LocalCallContext localCC
   |
     pathNode(mid, midnode, state0, cc, sc, ap0, conf, localCC) and
-    localFlowBigStep(midnode, state0, node, state, false, ap.getFront(), conf, localCC) and
+    localFlowBigStep(midnode, state0, node, state, false, ap.(AccessPathNil).getType(), conf,
+      localCC) and
     ap0 instanceof AccessPathNil
   )
   or
@@ -3389,7 +3633,7 @@ private predicate pathReadStep(
 ) {
   ap0 = mid.getAp() and
   tc = ap0.getHead() and
-  Stage4::readStepCand(mid.getNodeEx(), tc.getContent(), node, mid.getConfiguration()) and
+  Stage5::readStepCand(mid.getNodeEx(), tc.getContent(), node, mid.getConfiguration()) and
   state = mid.getState() and
   cc = mid.getCallContext()
 }
@@ -3399,7 +3643,7 @@ private predicate pathStoreStep(
   PathNodeMid mid, NodeEx node, FlowState state, AccessPath ap0, TypedContent tc, CallContext cc
 ) {
   ap0 = mid.getAp() and
-  Stage4::storeStepCand(mid.getNodeEx(), _, tc, node, _, mid.getConfiguration()) and
+  Stage5::storeStepCand(mid.getNodeEx(), _, tc, node, _, mid.getConfiguration()) and
   state = mid.getState() and
   cc = mid.getCallContext()
 }
@@ -3436,7 +3680,7 @@ private NodeEx getAnOutNodeFlow(
   ReturnKindExt kind, DataFlowCall call, AccessPathApprox apa, Configuration config
 ) {
   result.asNode() = kind.getAnOutNode(call) and
-  Stage4::revFlow(result, _, apa, config)
+  Stage5::revFlow(result, _, apa, config)
 }
 
 /**
@@ -3472,7 +3716,7 @@ private predicate parameterCand(
   DataFlowCallable callable, ParameterPosition pos, AccessPathApprox apa, Configuration config
 ) {
   exists(ParamNodeEx p |
-    Stage4::revFlow(p, _, apa, config) and
+    Stage5::revFlow(p, _, apa, config) and
     p.isParameterOf(callable, pos)
   )
 }
@@ -3751,9 +3995,17 @@ predicate stageStats(
   n = 45 and
   Stage4::stats(false, nodes, fields, conscand, states, tuples, config)
   or
-  stage = "5 Fwd" and n = 50 and finalStats(true, nodes, fields, conscand, states, tuples)
+  stage = "5 Fwd" and
+  n = 50 and
+  Stage5::stats(true, nodes, fields, conscand, states, tuples, config)
   or
-  stage = "5 Rev" and n = 55 and finalStats(false, nodes, fields, conscand, states, tuples)
+  stage = "5 Rev" and
+  n = 55 and
+  Stage5::stats(false, nodes, fields, conscand, states, tuples, config)
+  or
+  stage = "6 Fwd" and n = 60 and finalStats(true, nodes, fields, conscand, states, tuples)
+  or
+  stage = "6 Rev" and n = 65 and finalStats(false, nodes, fields, conscand, states, tuples)
 }
 
 private module FlowExploration {
diff --git a/python/ql/lib/semmle/python/dataflow/new/internal/DataFlowImpl2.qll b/python/ql/lib/semmle/python/dataflow/new/internal/DataFlowImpl2.qll
index ccde916a3c2..6741ccc2f06 100644
--- a/python/ql/lib/semmle/python/dataflow/new/internal/DataFlowImpl2.qll
+++ b/python/ql/lib/semmle/python/dataflow/new/internal/DataFlowImpl2.qll
@@ -621,23 +621,6 @@ private predicate parameterFlowThroughAllowed(ParamNodeEx p, ReturnKindExt kind)
   )
 }
 
-/**
- * Holds if flow from a parameter at position `pos` inside `c` to a return node of
- * kind `kind` is allowed.
- *
- * We don't expect a parameter to return stored in itself, unless
- * explicitly allowed
- */
-bindingset[c, pos, kind]
-private predicate parameterFlowThroughAllowed(
-  DataFlowCallable c, ParameterPosition pos, ReturnKindExt kind
-) {
-  exists(ParamNodeEx p |
-    p.isParameterOf(c, pos) and
-    parameterFlowThroughAllowed(p, kind)
-  )
-}
-
 private module Stage1 implements StageSig {
   class Ap = Unit;
 
@@ -980,6 +963,12 @@ private module Stage1 implements StageSig {
   pragma[nomagic]
   predicate revFlow(NodeEx node, Configuration config) { revFlow(node, _, config) }
 
+  pragma[nomagic]
+  predicate revFlowAp(NodeEx node, Ap ap, Configuration config) {
+    revFlow(node, config) and
+    exists(ap)
+  }
+
   bindingset[node, state, config]
   predicate revFlow(NodeEx node, FlowState state, Ap ap, Configuration config) {
     revFlow(node, _, pragma[only_bind_into](config)) and
@@ -1022,9 +1011,13 @@ private module Stage1 implements StageSig {
   }
 
   pragma[nomagic]
-  predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config) {
+  predicate returnMayFlowThrough(
+    RetNodeEx ret, Ap argAp, Ap ap, ReturnKindExt kind, Configuration config
+  ) {
     throughFlowNodeCand(ret, config) and
-    kind = ret.getKind()
+    kind = ret.getKind() and
+    exists(argAp) and
+    exists(ap)
   }
 
   pragma[nomagic]
@@ -1189,6 +1182,8 @@ private signature module StageSig {
 
   predicate revFlow(NodeEx node, Configuration config);
 
+  predicate revFlowAp(NodeEx node, Ap ap, Configuration config);
+
   bindingset[node, state, config]
   predicate revFlow(NodeEx node, FlowState state, Ap ap, Configuration config);
 
@@ -1196,7 +1191,9 @@ private signature module StageSig {
 
   predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config);
 
-  predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config);
+  predicate returnMayFlowThrough(
+    RetNodeEx ret, Ap argAp, Ap ap, ReturnKindExt kind, Configuration config
+  );
 
   predicate storeStepCand(
     NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, DataFlowType contentType,
@@ -1281,21 +1278,43 @@ private module MkStage<StageSig PrevStage> {
     import Param
 
     /* Begin: Stage logic. */
-    bindingset[result, apa]
-    private ApApprox unbindApa(ApApprox apa) {
-      pragma[only_bind_out](apa) = pragma[only_bind_out](result)
+    // use an alias as a workaround for bad functionality-induced joins
+    pragma[nomagic]
+    private predicate revFlowApAlias(NodeEx node, ApApprox apa, Configuration config) {
+      PrevStage::revFlowAp(node, apa, config)
+    }
+
+    pragma[nomagic]
+    private predicate flowIntoCallApa(
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, ApApprox apa,
+      Configuration config
+    ) {
+      flowIntoCall(call, arg, p, allowsFieldFlow, config) and
+      PrevStage::revFlowAp(p, pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
+      revFlowApAlias(arg, pragma[only_bind_into](apa), pragma[only_bind_into](config))
+    }
+
+    pragma[nomagic]
+    private predicate flowOutOfCallApa(
+      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
+      ApApprox apa, Configuration config
+    ) {
+      flowOutOfCall(call, ret, kind, out, allowsFieldFlow, config) and
+      PrevStage::revFlowAp(out, pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
+      revFlowApAlias(ret, pragma[only_bind_into](apa), pragma[only_bind_into](config))
     }
 
     pragma[nomagic]
     private predicate flowThroughOutOfCall(
-      DataFlowCall call, DataFlowCallable c, CcCall ccc, RetNodeEx ret, ReturnKindExt kind,
-      NodeEx out, boolean allowsFieldFlow, Configuration config
+      DataFlowCall call, CcCall ccc, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow,
+      ApApprox argApa, ApApprox apa, Configuration config
     ) {
-      flowOutOfCall(call, ret, kind, out, allowsFieldFlow, pragma[only_bind_into](config)) and
-      PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
-      PrevStage::returnMayFlowThrough(ret, kind, pragma[only_bind_into](config)) and
-      matchesCall(ccc, call) and
-      c = ret.getEnclosingCallable()
+      exists(ReturnKindExt kind |
+        flowOutOfCallApa(call, ret, kind, out, allowsFieldFlow, apa, pragma[only_bind_into](config)) and
+        PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
+        PrevStage::returnMayFlowThrough(ret, argApa, apa, kind, pragma[only_bind_into](config)) and
+        matchesCall(ccc, call)
+      )
     }
 
     /**
@@ -1307,39 +1326,50 @@ private module MkStage<StageSig PrevStage> {
      * corresponding parameter position and access path of that argument, respectively.
      */
     pragma[nomagic]
+    additional predicate fwdFlow(
+      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      Ap ap, ApApprox apa, Configuration config
+    ) {
+      fwdFlow0(node, state, cc, summaryCtx, argAp, ap, apa, config) and
+      PrevStage::revFlow(node, state, apa, config) and
+      filter(node, state, ap, config)
+    }
+
+    pragma[inline]
     additional predicate fwdFlow(
       NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
       Ap ap, Configuration config
     ) {
-      fwdFlow0(node, state, cc, summaryCtx, argAp, ap, config) and
-      PrevStage::revFlow(node, state, unbindApa(getApprox(ap)), config) and
-      filter(node, state, ap, config)
+      fwdFlow(node, state, cc, summaryCtx, argAp, ap, _, config)
     }
 
     pragma[nomagic]
     private predicate fwdFlow0(
       NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      Ap ap, Configuration config
+      Ap ap, ApApprox apa, Configuration config
     ) {
       sourceNode(node, state, config) and
       (if hasSourceCallCtx(config) then cc = ccSomeCall() else cc = ccNone()) and
       argAp = apNone() and
       summaryCtx = TParameterPositionNone() and
-      ap = getApNil(node)
+      ap = getApNil(node) and
+      apa = getApprox(ap)
       or
-      exists(NodeEx mid, FlowState state0, Ap ap0, LocalCc localCc |
-        fwdFlow(mid, state0, cc, summaryCtx, argAp, ap0, config) and
+      exists(NodeEx mid, FlowState state0, Ap ap0, ApApprox apa0, LocalCc localCc |
+        fwdFlow(mid, state0, cc, summaryCtx, argAp, ap0, apa0, config) and
         localCc = getLocalCc(mid, cc)
       |
         localStep(mid, state0, node, state, true, _, config, localCc) and
-        ap = ap0
+        ap = ap0 and
+        apa = apa0
         or
         localStep(mid, state0, node, state, false, ap, config, localCc) and
-        ap0 instanceof ApNil
+        ap0 instanceof ApNil and
+        apa = getApprox(ap)
       )
       or
       exists(NodeEx mid |
-        fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, apa, pragma[only_bind_into](config)) and
         jumpStep(mid, node, config) and
         cc = ccNone() and
         summaryCtx = TParameterPositionNone() and
@@ -1352,7 +1382,8 @@ private module MkStage<StageSig PrevStage> {
         cc = ccNone() and
         summaryCtx = TParameterPositionNone() and
         argAp = apNone() and
-        ap = getApNil(node)
+        ap = getApNil(node) and
+        apa = getApprox(ap)
       )
       or
       exists(NodeEx mid, FlowState state0, ApNil nil |
@@ -1361,32 +1392,32 @@ private module MkStage<StageSig PrevStage> {
         cc = ccNone() and
         summaryCtx = TParameterPositionNone() and
         argAp = apNone() and
-        ap = getApNil(node)
+        ap = getApNil(node) and
+        apa = getApprox(ap)
       )
       or
       // store
       exists(TypedContent tc, Ap ap0 |
         fwdFlowStore(_, ap0, tc, node, state, cc, summaryCtx, argAp, config) and
-        ap = apCons(tc, ap0)
+        ap = apCons(tc, ap0) and
+        apa = getApprox(ap)
       )
       or
       // read
       exists(Ap ap0, Content c |
         fwdFlowRead(ap0, c, _, node, state, cc, summaryCtx, argAp, config) and
-        fwdFlowConsCand(ap0, c, ap, config)
+        fwdFlowConsCand(ap0, c, ap, config) and
+        apa = getApprox(ap)
       )
       or
       // flow into a callable
-      exists(ApApprox apa |
-        fwdFlowIn(_, node, state, _, cc, _, _, ap, config) and
-        apa = getApprox(ap) and
-        if PrevStage::parameterMayFlowThrough(node, apa, config)
-        then (
-          summaryCtx = TParameterPositionSome(node.(ParamNodeEx).getPosition()) and
-          argAp = apSome(ap)
-        ) else (
-          summaryCtx = TParameterPositionNone() and argAp = apNone()
-        )
+      fwdFlowIn(_, node, state, _, cc, _, _, ap, apa, config) and
+      if PrevStage::parameterMayFlowThrough(node, apa, config)
+      then (
+        summaryCtx = TParameterPositionSome(node.(ParamNodeEx).getPosition()) and
+        argAp = apSome(ap)
+      ) else (
+        summaryCtx = TParameterPositionNone() and argAp = apNone()
       )
       or
       // flow out of a callable
@@ -1394,8 +1425,8 @@ private module MkStage<StageSig PrevStage> {
         DataFlowCall call, RetNodeEx ret, boolean allowsFieldFlow, CcNoCall innercc,
         DataFlowCallable inner
       |
-        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, config) and
-        flowOutOfCall(call, ret, _, node, allowsFieldFlow, config) and
+        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, apa, config) and
+        flowOutOfCallApa(call, ret, _, node, allowsFieldFlow, apa, config) and
         inner = ret.getEnclosingCallable() and
         cc = getCallContextReturn(inner, call, innercc) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
@@ -1403,7 +1434,7 @@ private module MkStage<StageSig PrevStage> {
       or
       // flow through a callable
       exists(DataFlowCall call, ParameterPosition summaryCtx0, Ap argAp0 |
-        fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, config) and
+        fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, apa, config) and
         fwdFlowIsEntered(call, cc, summaryCtx, argAp, summaryCtx0, argAp0, config)
       )
     }
@@ -1413,9 +1444,9 @@ private module MkStage<StageSig PrevStage> {
       NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc,
       ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
     ) {
-      exists(DataFlowType contentType |
-        fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, config) and
-        PrevStage::storeStepCand(node1, unbindApa(getApprox(ap1)), tc, node2, contentType, config) and
+      exists(DataFlowType contentType, ApApprox apa1 |
+        fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, apa1, config) and
+        PrevStage::storeStepCand(node1, apa1, tc, node2, contentType, config) and
         typecheckStore(ap1, contentType)
       )
     }
@@ -1433,43 +1464,104 @@ private module MkStage<StageSig PrevStage> {
       )
     }
 
+    private class ApNonNil instanceof Ap {
+      pragma[nomagic]
+      ApNonNil() { not this instanceof ApNil }
+
+      string toString() { result = "" }
+    }
+
+    pragma[nomagic]
+    private predicate fwdFlowRead0(
+      NodeEx node1, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      ApNonNil ap, Configuration config
+    ) {
+      fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
+      PrevStage::readStepCand(node1, _, _, config)
+    }
+
     pragma[nomagic]
     private predicate fwdFlowRead(
       Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc,
       ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
     ) {
-      fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
+      fwdFlowRead0(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, c, node2, config) and
       getHeadContent(ap) = c
     }
 
     pragma[nomagic]
     private predicate fwdFlowIn(
-      DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, Cc innercc,
-      ParameterPositionOption summaryCtx, ApOption argAp, Ap ap, Configuration config
+      DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, CcCall innercc,
+      ParameterPositionOption summaryCtx, ApOption argAp, Ap ap, ApApprox apa, Configuration config
     ) {
       exists(ArgNodeEx arg, boolean allowsFieldFlow |
-        fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, config) and
-        flowIntoCall(call, arg, p, allowsFieldFlow, config) and
+        fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, apa, config) and
+        flowIntoCallApa(call, arg, p, allowsFieldFlow, apa, config) and
         innercc = getCallContextCall(call, p.getEnclosingCallable(), outercc) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
+    pragma[nomagic]
+    private predicate fwdFlowRetFromArg(
+      RetNodeEx ret, FlowState state, CcCall ccc, ParameterPosition summaryCtx, ParamNodeEx p,
+      Ap argAp, ApApprox argApa, Ap ap, ApApprox apa, Configuration config
+    ) {
+      exists(DataFlowCallable c, ReturnKindExt kind |
+        fwdFlow(pragma[only_bind_into](ret), state, ccc,
+          TParameterPositionSome(pragma[only_bind_into](summaryCtx)), apSome(argAp), ap, apa, config) and
+        getApprox(argAp) = argApa and
+        c = ret.getEnclosingCallable() and
+        kind = ret.getKind() and
+        p.isParameterOf(c, pragma[only_bind_into](summaryCtx)) and
+        parameterFlowThroughAllowed(p, kind)
+      )
+    }
+
+    pragma[inline]
+    private predicate fwdFlowInMayFlowThrough(
+      DataFlowCall call, Cc cc, CcCall innerCc, ParameterPositionOption summaryCtx, ApOption argAp,
+      ParamNodeEx param, Ap ap, ApApprox apa, Configuration config
+    ) {
+      fwdFlowIn(call, pragma[only_bind_into](param), _, cc, innerCc, summaryCtx, argAp, ap,
+        pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
+      PrevStage::parameterMayFlowThrough(param, apa, config)
+    }
+
+    // dedup before joining with `flowThroughOutOfCall`
+    pragma[nomagic]
+    private predicate fwdFlowInMayFlowThroughProj(
+      DataFlowCall call, CcCall innerCc, ApApprox apa, Configuration config
+    ) {
+      fwdFlowInMayFlowThrough(call, _, innerCc, _, _, _, _, apa, config)
+    }
+
+    /**
+     * Same as `flowThroughOutOfCall`, but restricted to calls that are reached
+     * in the flow covered by `fwdFlow`, where data might flow through the target
+     * callable and back out at `call`.
+     */
+    pragma[nomagic]
+    private predicate fwdFlowThroughOutOfCall(
+      DataFlowCall call, CcCall ccc, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow,
+      ApApprox argApa, ApApprox apa, Configuration config
+    ) {
+      fwdFlowInMayFlowThroughProj(call, ccc, argApa, config) and
+      flowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, argApa, apa, config)
+    }
+
     pragma[nomagic]
     private predicate fwdFlowOutFromArg(
       DataFlowCall call, NodeEx out, FlowState state, ParameterPosition summaryCtx, Ap argAp, Ap ap,
-      Configuration config
+      ApApprox apa, Configuration config
     ) {
-      exists(
-        DataFlowCallable c, RetNodeEx ret, ReturnKindExt kind, boolean allowsFieldFlow, CcCall ccc
-      |
-        fwdFlow(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc),
-          TParameterPositionSome(pragma[only_bind_into](summaryCtx)), apSome(argAp), ap, config) and
-        flowThroughOutOfCall(call, pragma[only_bind_into](c), ccc, ret, kind, out, allowsFieldFlow,
+      exists(RetNodeEx ret, boolean allowsFieldFlow, CcCall ccc, ApApprox argApa |
+        fwdFlowRetFromArg(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc),
+          summaryCtx, _, argAp, pragma[only_bind_into](argApa), ap, pragma[only_bind_into](apa),
           config) and
-        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
-        parameterFlowThroughAllowed(c, pragma[only_bind_into](summaryCtx), kind)
+        fwdFlowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, argApa, apa, config) and
+        (if allowsFieldFlow = false then ap instanceof ApNil else any())
       )
     }
 
@@ -1483,8 +1575,7 @@ private module MkStage<StageSig PrevStage> {
       ParameterPosition pos, Ap ap, Configuration config
     ) {
       exists(ParamNodeEx param |
-        fwdFlowIn(call, param, _, cc, _, summaryCtx, argAp, ap, config) and
-        PrevStage::parameterMayFlowThrough(param, unbindApa(getApprox(ap)), config) and
+        fwdFlowInMayFlowThrough(call, cc, _, summaryCtx, argAp, param, ap, _, config) and
         pos = param.getPosition()
       )
     }
@@ -1505,41 +1596,55 @@ private module MkStage<StageSig PrevStage> {
       fwdFlowConsCand(ap1, c, ap2, config)
     }
 
-    pragma[nomagic]
-    private predicate returnFlowsThrough0(
-      RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, DataFlowCallable c,
-      ParameterPosition ppos, Ap argAp, Ap ap, Configuration config
-    ) {
-      exists(boolean allowsFieldFlow |
-        fwdFlow(ret, state, ccc, TParameterPositionSome(ppos), apSome(argAp), ap, config) and
-        flowThroughOutOfCall(_, c, _, pragma[only_bind_into](ret), kind, _, allowsFieldFlow,
-          pragma[only_bind_into](config)) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
-      )
-    }
-
     pragma[nomagic]
     private predicate returnFlowsThrough(
       RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, ParamNodeEx p, Ap argAp,
       Ap ap, Configuration config
     ) {
-      exists(DataFlowCallable c, ParameterPosition ppos |
-        returnFlowsThrough0(ret, kind, state, ccc, c, ppos, argAp, ap, config) and
-        p.isParameterOf(c, ppos) and
-        parameterFlowThroughAllowed(p, kind)
+      exists(boolean allowsFieldFlow, ApApprox argApa, ApApprox apa |
+        fwdFlowRetFromArg(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc), _, p,
+          argAp, pragma[only_bind_into](argApa), ap, pragma[only_bind_into](apa), config) and
+        kind = ret.getKind() and
+        fwdFlowThroughOutOfCall(_, ccc, ret, _, allowsFieldFlow, argApa, apa, config) and
+        (if allowsFieldFlow = false then ap instanceof ApNil else any())
       )
     }
 
     pragma[nomagic]
     private predicate flowThroughIntoCall(
-      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp,
+      Configuration config
     ) {
-      exists(Ap argAp |
-        flowIntoCall(call, pragma[only_bind_into](arg), pragma[only_bind_into](p), allowsFieldFlow,
+      exists(ApApprox argApa |
+        flowIntoCallApa(call, pragma[only_bind_into](arg), pragma[only_bind_into](p),
+          allowsFieldFlow, argApa, pragma[only_bind_into](config)) and
+        fwdFlow(arg, _, _, _, _, pragma[only_bind_into](argAp), argApa,
           pragma[only_bind_into](config)) and
-        fwdFlow(arg, _, _, _, _, pragma[only_bind_into](argAp), pragma[only_bind_into](config)) and
         returnFlowsThrough(_, _, _, _, p, pragma[only_bind_into](argAp), _,
-          pragma[only_bind_into](config))
+          pragma[only_bind_into](config)) and
+        if allowsFieldFlow = false then argAp instanceof ApNil else any()
+      )
+    }
+
+    pragma[nomagic]
+    private predicate flowIntoCallAp(
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap ap,
+      Configuration config
+    ) {
+      exists(ApApprox apa |
+        flowIntoCallApa(call, arg, p, allowsFieldFlow, apa, config) and
+        fwdFlow(arg, _, _, _, _, ap, apa, config)
+      )
+    }
+
+    pragma[nomagic]
+    private predicate flowOutOfCallAp(
+      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
+      Ap ap, Configuration config
+    ) {
+      exists(ApApprox apa |
+        flowOutOfCallApa(call, ret, kind, out, allowsFieldFlow, apa, config) and
+        fwdFlow(ret, _, _, _, _, ap, apa, config)
       )
     }
 
@@ -1628,7 +1733,7 @@ private module MkStage<StageSig PrevStage> {
       // flow into a callable
       exists(ParamNodeEx p, boolean allowsFieldFlow |
         revFlow(p, state, TReturnCtxNone(), returnAp, ap, config) and
-        flowIntoCall(_, node, p, allowsFieldFlow, config) and
+        flowIntoCallAp(_, node, p, allowsFieldFlow, ap, config) and
         (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
         returnCtx = TReturnCtxNone()
       )
@@ -1682,22 +1787,41 @@ private module MkStage<StageSig PrevStage> {
     ) {
       exists(NodeEx out, boolean allowsFieldFlow |
         revFlow(out, state, returnCtx, returnAp, ap, config) and
-        flowOutOfCall(call, ret, kind, out, allowsFieldFlow, config) and
+        flowOutOfCallAp(call, ret, kind, out, allowsFieldFlow, ap, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
+    /**
+     * Same as `flowThroughIntoCall`, but restricted to calls that are reached
+     * in the flow covered by `revFlow`, where data might flow through the target
+     * callable and back out at `call`.
+     */
+    pragma[nomagic]
+    private predicate revFlowThroughIntoCall(
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp,
+      Configuration config
+    ) {
+      flowThroughIntoCall(call, arg, p, allowsFieldFlow, argAp, config) and
+      revFlowIsReturned(call, _, _, _, _, config)
+    }
+
+    pragma[nomagic]
+    private predicate revFlowParamToReturn(
+      ParamNodeEx p, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap, Configuration config
+    ) {
+      revFlow(p, state, TReturnCtxMaybeFlowThrough(kind), apSome(returnAp), ap, config) and
+      parameterFlowThroughAllowed(p, kind)
+    }
+
     pragma[nomagic]
     private predicate revFlowInToReturn(
       DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap,
       Configuration config
     ) {
       exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(pragma[only_bind_into](p), state,
-          TReturnCtxMaybeFlowThrough(pragma[only_bind_into](kind)), apSome(returnAp), ap, config) and
-        flowThroughIntoCall(call, arg, p, allowsFieldFlow, config) and
-        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
-        parameterFlowThroughAllowed(p, kind)
+        revFlowParamToReturn(p, state, kind, returnAp, ap, config) and
+        revFlowThroughIntoCall(call, arg, p, allowsFieldFlow, ap, config)
       )
     }
 
@@ -1750,6 +1874,11 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     predicate revFlow(NodeEx node, Configuration config) { revFlow(node, _, _, _, _, config) }
 
+    pragma[nomagic]
+    predicate revFlowAp(NodeEx node, Ap ap, Configuration config) {
+      revFlow(node, _, _, _, ap, config)
+    }
+
     // use an alias as a workaround for bad functionality-induced joins
     pragma[nomagic]
     additional predicate revFlowAlias(NodeEx node, Configuration config) {
@@ -1786,9 +1915,9 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate parameterFlowsThroughRev(
-      ParamNodeEx p, Ap ap, ReturnKindExt kind, Configuration config
+      ParamNodeEx p, Ap ap, ReturnKindExt kind, Ap returnAp, Configuration config
     ) {
-      revFlow(p, _, TReturnCtxMaybeFlowThrough(kind), apSome(_), ap, config) and
+      revFlow(p, _, TReturnCtxMaybeFlowThrough(kind), apSome(returnAp), ap, config) and
       parameterFlowThroughAllowed(p, kind)
     }
 
@@ -1796,27 +1925,36 @@ private module MkStage<StageSig PrevStage> {
     predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
       exists(RetNodeEx ret, ReturnKindExt kind |
         returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
-        parameterFlowsThroughRev(p, ap, kind, config)
+        parameterFlowsThroughRev(p, ap, kind, _, config)
       )
     }
 
     pragma[nomagic]
-    predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config) {
-      exists(ParamNodeEx p, Ap ap |
-        returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
-        parameterFlowsThroughRev(p, ap, kind, config)
+    predicate returnMayFlowThrough(
+      RetNodeEx ret, Ap argAp, Ap ap, ReturnKindExt kind, Configuration config
+    ) {
+      exists(ParamNodeEx p |
+        returnFlowsThrough(ret, kind, _, _, p, argAp, ap, config) and
+        parameterFlowsThroughRev(p, argAp, kind, ap, config)
+      )
+    }
+
+    pragma[nomagic]
+    predicate revFlowInToReturnIsReturned(
+      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnCtx returnCtx, ApOption returnAp,
+      Ap ap, Configuration config
+    ) {
+      exists(ReturnKindExt returnKind0, Ap returnAp0 |
+        revFlowInToReturn(call, arg, state, returnKind0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
       )
     }
 
     pragma[nomagic]
     predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
-      exists(
-        ReturnKindExt returnKind0, Ap returnAp0, ArgNodeEx arg, FlowState state,
-        ReturnCtx returnCtx, ApOption returnAp, Ap ap
-      |
+      exists(ArgNodeEx arg, FlowState state, ReturnCtx returnCtx, ApOption returnAp, Ap ap |
         revFlow(arg, state, returnCtx, returnAp, ap, config) and
-        revFlowInToReturn(call, arg, state, returnKind0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
+        revFlowInToReturnIsReturned(call, arg, state, returnCtx, returnAp, ap, config)
       )
     }
 
@@ -2179,16 +2317,16 @@ private module LocalFlowBigStep {
   pragma[nomagic]
   predicate localFlowBigStep(
     NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
-    AccessPathFrontNil apf, Configuration config, LocalCallContext callContext
+    DataFlowType t, Configuration config, LocalCallContext callContext
   ) {
-    localFlowStepPlus(node1, state1, node2, preservesValue, apf.getType(), config, callContext) and
+    localFlowStepPlus(node1, state1, node2, preservesValue, t, config, callContext) and
     localFlowExit(node2, state1, config) and
     state1 = state2
     or
     additionalLocalFlowStepNodeCand2(node1, state1, node2, state2, config) and
     state1 != state2 and
     preservesValue = false and
-    apf = TFrontNil(node2.getDataFlowType()) and
+    t = node2.getDataFlowType() and
     callContext.relevantFor(node1.getEnclosingCallable()) and
     not exists(DataFlowCall call | call = callContext.(LocalCallContextSpecificCall).getCall() |
       isUnreachableInCallCached(node1.asNode(), call) or
@@ -2202,11 +2340,87 @@ private import LocalFlowBigStep
 private module Stage3Param implements MkStage<Stage2>::StageParam {
   private module PrevStage = Stage2;
 
+  class Ap = ApproxAccessPathFront;
+
+  class ApNil = ApproxAccessPathFrontNil;
+
+  PrevStage::Ap getApprox(Ap ap) { result = ap.toBoolNonEmpty() }
+
+  ApNil getApNil(NodeEx node) {
+    PrevStage::revFlow(node, _) and result = TApproxFrontNil(node.getDataFlowType())
+  }
+
+  bindingset[tc, tail]
+  Ap apCons(TypedContent tc, Ap tail) { result.getAHead() = tc and exists(tail) }
+
+  pragma[noinline]
+  Content getHeadContent(Ap ap) { result = ap.getAHead().getContent() }
+
+  class ApOption = ApproxAccessPathFrontOption;
+
+  ApOption apNone() { result = TApproxAccessPathFrontNone() }
+
+  ApOption apSome(Ap ap) { result = TApproxAccessPathFrontSome(ap) }
+
+  import BooleanCallContext
+
+  predicate localStep(
+    NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
+    ApproxAccessPathFrontNil ap, Configuration config, LocalCc lcc
+  ) {
+    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap.getType(), config, _) and
+    exists(lcc)
+  }
+
+  predicate flowOutOfCall = flowOutOfCallNodeCand2/6;
+
+  predicate flowIntoCall = flowIntoCallNodeCand2/5;
+
+  pragma[nomagic]
+  private predicate expectsContentCand(NodeEx node, Ap ap, Configuration config) {
+    exists(Content c |
+      PrevStage::revFlow(node, pragma[only_bind_into](config)) and
+      PrevStage::readStepCand(_, c, _, pragma[only_bind_into](config)) and
+      expectsContentEx(node, c) and
+      c = ap.getAHead().getContent()
+    )
+  }
+
+  pragma[nomagic]
+  private predicate castingNodeEx(NodeEx node) { node.asNode() instanceof CastingNode }
+
+  bindingset[node, state, ap, config]
+  predicate filter(NodeEx node, FlowState state, Ap ap, Configuration config) {
+    exists(state) and
+    exists(config) and
+    (if castingNodeEx(node) then compatibleTypes(node.getDataFlowType(), ap.getType()) else any()) and
+    (
+      notExpectsContent(node)
+      or
+      expectsContentCand(node, ap, config)
+    )
+  }
+
+  bindingset[ap, contentType]
+  predicate typecheckStore(Ap ap, DataFlowType contentType) {
+    // We need to typecheck stores here, since reverse flow through a getter
+    // might have a different type here compared to inside the getter.
+    compatibleTypes(ap.getType(), contentType)
+  }
+}
+
+private module Stage3 implements StageSig {
+  import MkStage<Stage2>::Stage<Stage3Param>
+}
+
+private module Stage4Param implements MkStage<Stage3>::StageParam {
+  private module PrevStage = Stage3;
+
   class Ap = AccessPathFront;
 
   class ApNil = AccessPathFrontNil;
 
-  PrevStage::Ap getApprox(Ap ap) { result = ap.toBoolNonEmpty() }
+  PrevStage::Ap getApprox(Ap ap) { result = ap.toApprox() }
 
   ApNil getApNil(NodeEx node) {
     PrevStage::revFlow(node, _) and result = TFrontNil(node.getDataFlowType())
@@ -2226,16 +2440,42 @@ private module Stage3Param implements MkStage<Stage2>::StageParam {
 
   import BooleanCallContext
 
+  pragma[nomagic]
   predicate localStep(
     NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
     ApNil ap, Configuration config, LocalCc lcc
   ) {
-    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap, config, _) and exists(lcc)
+    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap.getType(), config, _) and
+    PrevStage::revFlow(node1, pragma[only_bind_into](state1), _, pragma[only_bind_into](config)) and
+    PrevStage::revFlowAlias(node2, pragma[only_bind_into](state2), _, pragma[only_bind_into](config)) and
+    exists(lcc)
   }
 
-  predicate flowOutOfCall = flowOutOfCallNodeCand2/6;
+  pragma[nomagic]
+  predicate flowOutOfCall(
+    DataFlowCall call, RetNodeEx node1, ReturnKindExt kind, NodeEx node2, boolean allowsFieldFlow,
+    Configuration config
+  ) {
+    exists(FlowState state |
+      flowOutOfCallNodeCand2(call, node1, kind, node2, allowsFieldFlow, config) and
+      PrevStage::revFlow(node2, pragma[only_bind_into](state), _, pragma[only_bind_into](config)) and
+      PrevStage::revFlowAlias(node1, pragma[only_bind_into](state), _,
+        pragma[only_bind_into](config))
+    )
+  }
 
-  predicate flowIntoCall = flowIntoCallNodeCand2/5;
+  pragma[nomagic]
+  predicate flowIntoCall(
+    DataFlowCall call, ArgNodeEx node1, ParamNodeEx node2, boolean allowsFieldFlow,
+    Configuration config
+  ) {
+    exists(FlowState state |
+      flowIntoCallNodeCand2(call, node1, node2, allowsFieldFlow, config) and
+      PrevStage::revFlow(node2, pragma[only_bind_into](state), _, pragma[only_bind_into](config)) and
+      PrevStage::revFlowAlias(node1, pragma[only_bind_into](state), _,
+        pragma[only_bind_into](config))
+    )
+  }
 
   pragma[nomagic]
   private predicate clearSet(NodeEx node, ContentSet c, Configuration config) {
@@ -2291,8 +2531,8 @@ private module Stage3Param implements MkStage<Stage2>::StageParam {
   }
 }
 
-private module Stage3 implements StageSig {
-  import MkStage<Stage2>::Stage<Stage3Param>
+private module Stage4 implements StageSig {
+  import MkStage<Stage3>::Stage<Stage4Param>
 }
 
 /**
@@ -2303,8 +2543,8 @@ private predicate flowCandSummaryCtx(
   NodeEx node, FlowState state, AccessPathFront argApf, Configuration config
 ) {
   exists(AccessPathFront apf |
-    Stage3::revFlow(node, state, TReturnCtxMaybeFlowThrough(_), _, apf, config) and
-    Stage3::fwdFlow(node, state, any(Stage3::CcCall ccc), _, TAccessPathFrontSome(argApf), apf,
+    Stage4::revFlow(node, state, TReturnCtxMaybeFlowThrough(_), _, apf, config) and
+    Stage4::fwdFlow(node, state, any(Stage4::CcCall ccc), _, TAccessPathFrontSome(argApf), apf,
       config)
   )
 }
@@ -2315,10 +2555,10 @@ private predicate flowCandSummaryCtx(
  */
 private predicate expensiveLen2unfolding(TypedContent tc, Configuration config) {
   exists(int tails, int nodes, int apLimit, int tupleLimit |
-    tails = strictcount(AccessPathFront apf | Stage3::consCand(tc, apf, config)) and
+    tails = strictcount(AccessPathFront apf | Stage4::consCand(tc, apf, config)) and
     nodes =
       strictcount(NodeEx n, FlowState state |
-        Stage3::revFlow(n, state, any(AccessPathFrontHead apf | apf.getHead() = tc), config)
+        Stage4::revFlow(n, state, any(AccessPathFrontHead apf | apf.getHead() = tc), config)
         or
         flowCandSummaryCtx(n, state, any(AccessPathFrontHead apf | apf.getHead() = tc), config)
       ) and
@@ -2332,11 +2572,11 @@ private predicate expensiveLen2unfolding(TypedContent tc, Configuration config)
 private newtype TAccessPathApprox =
   TNil(DataFlowType t) or
   TConsNil(TypedContent tc, DataFlowType t) {
-    Stage3::consCand(tc, TFrontNil(t), _) and
+    Stage4::consCand(tc, TFrontNil(t), _) and
     not expensiveLen2unfolding(tc, _)
   } or
   TConsCons(TypedContent tc1, TypedContent tc2, int len) {
-    Stage3::consCand(tc1, TFrontHead(tc2), _) and
+    Stage4::consCand(tc1, TFrontHead(tc2), _) and
     len in [2 .. accessPathLimit()] and
     not expensiveLen2unfolding(tc1, _)
   } or
@@ -2466,7 +2706,7 @@ private class AccessPathApproxCons1 extends AccessPathApproxCons, TCons1 {
   override AccessPathApprox pop(TypedContent head) {
     head = tc and
     (
-      exists(TypedContent tc2 | Stage3::consCand(tc, TFrontHead(tc2), _) |
+      exists(TypedContent tc2 | Stage4::consCand(tc, TFrontHead(tc2), _) |
         result = TConsCons(tc2, _, len - 1)
         or
         len = 2 and
@@ -2477,7 +2717,7 @@ private class AccessPathApproxCons1 extends AccessPathApproxCons, TCons1 {
       or
       exists(DataFlowType t |
         len = 1 and
-        Stage3::consCand(tc, TFrontNil(t), _) and
+        Stage4::consCand(tc, TFrontNil(t), _) and
         result = TNil(t)
       )
     )
@@ -2502,13 +2742,14 @@ private class AccessPathApproxOption extends TAccessPathApproxOption {
   }
 }
 
-private module Stage4Param implements MkStage<Stage3>::StageParam {
-  private module PrevStage = Stage3;
+private module Stage5Param implements MkStage<Stage4>::StageParam {
+  private module PrevStage = Stage4;
 
   class Ap = AccessPathApprox;
 
   class ApNil = AccessPathApproxNil;
 
+  pragma[nomagic]
   PrevStage::Ap getApprox(Ap ap) { result = ap.getFront() }
 
   ApNil getApNil(NodeEx node) {
@@ -2534,7 +2775,9 @@ private module Stage4Param implements MkStage<Stage3>::StageParam {
     NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
     ApNil ap, Configuration config, LocalCc lcc
   ) {
-    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap.getFront(), config, lcc)
+    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap.getType(), config, lcc) and
+    PrevStage::revFlow(node1, pragma[only_bind_into](state1), _, pragma[only_bind_into](config)) and
+    PrevStage::revFlowAlias(node2, pragma[only_bind_into](state2), _, pragma[only_bind_into](config))
   }
 
   pragma[nomagic]
@@ -2571,7 +2814,7 @@ private module Stage4Param implements MkStage<Stage3>::StageParam {
   predicate typecheckStore(Ap ap, DataFlowType contentType) { any() }
 }
 
-private module Stage4 = MkStage<Stage3>::Stage<Stage4Param>;
+private module Stage5 = MkStage<Stage4>::Stage<Stage5Param>;
 
 bindingset[conf, result]
 private Configuration unbindConf(Configuration conf) {
@@ -2585,8 +2828,8 @@ private predicate nodeMayUseSummary0(
 ) {
   exists(AccessPathApprox apa0 |
     c = n.getEnclosingCallable() and
-    Stage4::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
-    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TParameterPositionSome(pos),
+    Stage5::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
+    Stage5::fwdFlow(n, state, any(CallContextCall ccc), TParameterPositionSome(pos),
       TAccessPathApproxSome(apa), apa0, config)
   )
 }
@@ -2596,7 +2839,7 @@ private predicate nodeMayUseSummary(
   NodeEx n, FlowState state, AccessPathApprox apa, Configuration config
 ) {
   exists(DataFlowCallable c, ParameterPosition pos, ParamNodeEx p |
-    Stage4::parameterMayFlowThrough(p, apa, config) and
+    Stage5::parameterMayFlowThrough(p, apa, config) and
     nodeMayUseSummary0(n, c, pos, state, apa, config) and
     p.isParameterOf(c, pos)
   )
@@ -2606,8 +2849,8 @@ private newtype TSummaryCtx =
   TSummaryCtxNone() or
   TSummaryCtxSome(ParamNodeEx p, FlowState state, AccessPath ap) {
     exists(Configuration config |
-      Stage4::parameterMayFlowThrough(p, ap.getApprox(), config) and
-      Stage4::revFlow(p, state, _, config)
+      Stage5::parameterMayFlowThrough(p, ap.getApprox(), config) and
+      Stage5::revFlow(p, state, _, config)
     )
   }
 
@@ -2656,7 +2899,7 @@ private int count1to2unfold(AccessPathApproxCons1 apa, Configuration config) {
     len = apa.len() and
     result =
       strictcount(AccessPathFront apf |
-        Stage4::consCand(tc, any(AccessPathApprox ap | ap.getFront() = apf and ap.len() = len - 1),
+        Stage5::consCand(tc, any(AccessPathApprox ap | ap.getFront() = apf and ap.len() = len - 1),
           config)
       )
   )
@@ -2665,7 +2908,7 @@ private int count1to2unfold(AccessPathApproxCons1 apa, Configuration config) {
 private int countNodesUsingAccessPath(AccessPathApprox apa, Configuration config) {
   result =
     strictcount(NodeEx n, FlowState state |
-      Stage4::revFlow(n, state, apa, config) or nodeMayUseSummary(n, state, apa, config)
+      Stage5::revFlow(n, state, apa, config) or nodeMayUseSummary(n, state, apa, config)
     )
 }
 
@@ -2686,7 +2929,7 @@ private predicate expensiveLen1to2unfolding(AccessPathApproxCons1 apa, Configura
 private AccessPathApprox getATail(AccessPathApprox apa, Configuration config) {
   exists(TypedContent head |
     apa.pop(head) = result and
-    Stage4::consCand(head, result, config)
+    Stage5::consCand(head, result, config)
   )
 }
 
@@ -2768,7 +3011,7 @@ private newtype TPathNode =
     NodeEx node, FlowState state, CallContext cc, SummaryCtx sc, AccessPath ap, Configuration config
   ) {
     // A PathNode is introduced by a source ...
-    Stage4::revFlow(node, state, config) and
+    Stage5::revFlow(node, state, config) and
     sourceNode(node, state, config) and
     (
       if hasSourceCallCtx(config)
@@ -2782,7 +3025,7 @@ private newtype TPathNode =
     exists(PathNodeMid mid |
       pathStep(mid, node, state, cc, sc, ap) and
       pragma[only_bind_into](config) = mid.getConfiguration() and
-      Stage4::revFlow(node, state, ap.getApprox(), pragma[only_bind_into](config))
+      Stage5::revFlow(node, state, ap.getApprox(), pragma[only_bind_into](config))
     )
   } or
   TPathNodeSink(NodeEx node, FlowState state, Configuration config) {
@@ -2924,7 +3167,7 @@ private class AccessPathCons2 extends AccessPath, TAccessPathCons2 {
   override TypedContent getHead() { result = head1 }
 
   override AccessPath getTail() {
-    Stage4::consCand(head1, result.getApprox(), _) and
+    Stage5::consCand(head1, result.getApprox(), _) and
     result.getHead() = head2 and
     result.length() = len - 1
   }
@@ -2955,7 +3198,7 @@ private class AccessPathCons1 extends AccessPath, TAccessPathCons1 {
   override TypedContent getHead() { result = head }
 
   override AccessPath getTail() {
-    Stage4::consCand(head, result.getApprox(), _) and result.length() = len - 1
+    Stage5::consCand(head, result.getApprox(), _) and result.length() = len - 1
   }
 
   override AccessPathFrontHead getFront() { result = TFrontHead(head) }
@@ -3347,7 +3590,8 @@ private predicate pathStep(
     AccessPath ap0, NodeEx midnode, FlowState state0, Configuration conf, LocalCallContext localCC
   |
     pathNode(mid, midnode, state0, cc, sc, ap0, conf, localCC) and
-    localFlowBigStep(midnode, state0, node, state, false, ap.getFront(), conf, localCC) and
+    localFlowBigStep(midnode, state0, node, state, false, ap.(AccessPathNil).getType(), conf,
+      localCC) and
     ap0 instanceof AccessPathNil
   )
   or
@@ -3389,7 +3633,7 @@ private predicate pathReadStep(
 ) {
   ap0 = mid.getAp() and
   tc = ap0.getHead() and
-  Stage4::readStepCand(mid.getNodeEx(), tc.getContent(), node, mid.getConfiguration()) and
+  Stage5::readStepCand(mid.getNodeEx(), tc.getContent(), node, mid.getConfiguration()) and
   state = mid.getState() and
   cc = mid.getCallContext()
 }
@@ -3399,7 +3643,7 @@ private predicate pathStoreStep(
   PathNodeMid mid, NodeEx node, FlowState state, AccessPath ap0, TypedContent tc, CallContext cc
 ) {
   ap0 = mid.getAp() and
-  Stage4::storeStepCand(mid.getNodeEx(), _, tc, node, _, mid.getConfiguration()) and
+  Stage5::storeStepCand(mid.getNodeEx(), _, tc, node, _, mid.getConfiguration()) and
   state = mid.getState() and
   cc = mid.getCallContext()
 }
@@ -3436,7 +3680,7 @@ private NodeEx getAnOutNodeFlow(
   ReturnKindExt kind, DataFlowCall call, AccessPathApprox apa, Configuration config
 ) {
   result.asNode() = kind.getAnOutNode(call) and
-  Stage4::revFlow(result, _, apa, config)
+  Stage5::revFlow(result, _, apa, config)
 }
 
 /**
@@ -3472,7 +3716,7 @@ private predicate parameterCand(
   DataFlowCallable callable, ParameterPosition pos, AccessPathApprox apa, Configuration config
 ) {
   exists(ParamNodeEx p |
-    Stage4::revFlow(p, _, apa, config) and
+    Stage5::revFlow(p, _, apa, config) and
     p.isParameterOf(callable, pos)
   )
 }
@@ -3751,9 +3995,17 @@ predicate stageStats(
   n = 45 and
   Stage4::stats(false, nodes, fields, conscand, states, tuples, config)
   or
-  stage = "5 Fwd" and n = 50 and finalStats(true, nodes, fields, conscand, states, tuples)
+  stage = "5 Fwd" and
+  n = 50 and
+  Stage5::stats(true, nodes, fields, conscand, states, tuples, config)
   or
-  stage = "5 Rev" and n = 55 and finalStats(false, nodes, fields, conscand, states, tuples)
+  stage = "5 Rev" and
+  n = 55 and
+  Stage5::stats(false, nodes, fields, conscand, states, tuples, config)
+  or
+  stage = "6 Fwd" and n = 60 and finalStats(true, nodes, fields, conscand, states, tuples)
+  or
+  stage = "6 Rev" and n = 65 and finalStats(false, nodes, fields, conscand, states, tuples)
 }
 
 private module FlowExploration {
diff --git a/python/ql/lib/semmle/python/dataflow/new/internal/DataFlowImpl3.qll b/python/ql/lib/semmle/python/dataflow/new/internal/DataFlowImpl3.qll
index ccde916a3c2..6741ccc2f06 100644
--- a/python/ql/lib/semmle/python/dataflow/new/internal/DataFlowImpl3.qll
+++ b/python/ql/lib/semmle/python/dataflow/new/internal/DataFlowImpl3.qll
@@ -621,23 +621,6 @@ private predicate parameterFlowThroughAllowed(ParamNodeEx p, ReturnKindExt kind)
   )
 }
 
-/**
- * Holds if flow from a parameter at position `pos` inside `c` to a return node of
- * kind `kind` is allowed.
- *
- * We don't expect a parameter to return stored in itself, unless
- * explicitly allowed
- */
-bindingset[c, pos, kind]
-private predicate parameterFlowThroughAllowed(
-  DataFlowCallable c, ParameterPosition pos, ReturnKindExt kind
-) {
-  exists(ParamNodeEx p |
-    p.isParameterOf(c, pos) and
-    parameterFlowThroughAllowed(p, kind)
-  )
-}
-
 private module Stage1 implements StageSig {
   class Ap = Unit;
 
@@ -980,6 +963,12 @@ private module Stage1 implements StageSig {
   pragma[nomagic]
   predicate revFlow(NodeEx node, Configuration config) { revFlow(node, _, config) }
 
+  pragma[nomagic]
+  predicate revFlowAp(NodeEx node, Ap ap, Configuration config) {
+    revFlow(node, config) and
+    exists(ap)
+  }
+
   bindingset[node, state, config]
   predicate revFlow(NodeEx node, FlowState state, Ap ap, Configuration config) {
     revFlow(node, _, pragma[only_bind_into](config)) and
@@ -1022,9 +1011,13 @@ private module Stage1 implements StageSig {
   }
 
   pragma[nomagic]
-  predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config) {
+  predicate returnMayFlowThrough(
+    RetNodeEx ret, Ap argAp, Ap ap, ReturnKindExt kind, Configuration config
+  ) {
     throughFlowNodeCand(ret, config) and
-    kind = ret.getKind()
+    kind = ret.getKind() and
+    exists(argAp) and
+    exists(ap)
   }
 
   pragma[nomagic]
@@ -1189,6 +1182,8 @@ private signature module StageSig {
 
   predicate revFlow(NodeEx node, Configuration config);
 
+  predicate revFlowAp(NodeEx node, Ap ap, Configuration config);
+
   bindingset[node, state, config]
   predicate revFlow(NodeEx node, FlowState state, Ap ap, Configuration config);
 
@@ -1196,7 +1191,9 @@ private signature module StageSig {
 
   predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config);
 
-  predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config);
+  predicate returnMayFlowThrough(
+    RetNodeEx ret, Ap argAp, Ap ap, ReturnKindExt kind, Configuration config
+  );
 
   predicate storeStepCand(
     NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, DataFlowType contentType,
@@ -1281,21 +1278,43 @@ private module MkStage<StageSig PrevStage> {
     import Param
 
     /* Begin: Stage logic. */
-    bindingset[result, apa]
-    private ApApprox unbindApa(ApApprox apa) {
-      pragma[only_bind_out](apa) = pragma[only_bind_out](result)
+    // use an alias as a workaround for bad functionality-induced joins
+    pragma[nomagic]
+    private predicate revFlowApAlias(NodeEx node, ApApprox apa, Configuration config) {
+      PrevStage::revFlowAp(node, apa, config)
+    }
+
+    pragma[nomagic]
+    private predicate flowIntoCallApa(
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, ApApprox apa,
+      Configuration config
+    ) {
+      flowIntoCall(call, arg, p, allowsFieldFlow, config) and
+      PrevStage::revFlowAp(p, pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
+      revFlowApAlias(arg, pragma[only_bind_into](apa), pragma[only_bind_into](config))
+    }
+
+    pragma[nomagic]
+    private predicate flowOutOfCallApa(
+      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
+      ApApprox apa, Configuration config
+    ) {
+      flowOutOfCall(call, ret, kind, out, allowsFieldFlow, config) and
+      PrevStage::revFlowAp(out, pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
+      revFlowApAlias(ret, pragma[only_bind_into](apa), pragma[only_bind_into](config))
     }
 
     pragma[nomagic]
     private predicate flowThroughOutOfCall(
-      DataFlowCall call, DataFlowCallable c, CcCall ccc, RetNodeEx ret, ReturnKindExt kind,
-      NodeEx out, boolean allowsFieldFlow, Configuration config
+      DataFlowCall call, CcCall ccc, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow,
+      ApApprox argApa, ApApprox apa, Configuration config
     ) {
-      flowOutOfCall(call, ret, kind, out, allowsFieldFlow, pragma[only_bind_into](config)) and
-      PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
-      PrevStage::returnMayFlowThrough(ret, kind, pragma[only_bind_into](config)) and
-      matchesCall(ccc, call) and
-      c = ret.getEnclosingCallable()
+      exists(ReturnKindExt kind |
+        flowOutOfCallApa(call, ret, kind, out, allowsFieldFlow, apa, pragma[only_bind_into](config)) and
+        PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
+        PrevStage::returnMayFlowThrough(ret, argApa, apa, kind, pragma[only_bind_into](config)) and
+        matchesCall(ccc, call)
+      )
     }
 
     /**
@@ -1307,39 +1326,50 @@ private module MkStage<StageSig PrevStage> {
      * corresponding parameter position and access path of that argument, respectively.
      */
     pragma[nomagic]
+    additional predicate fwdFlow(
+      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      Ap ap, ApApprox apa, Configuration config
+    ) {
+      fwdFlow0(node, state, cc, summaryCtx, argAp, ap, apa, config) and
+      PrevStage::revFlow(node, state, apa, config) and
+      filter(node, state, ap, config)
+    }
+
+    pragma[inline]
     additional predicate fwdFlow(
       NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
       Ap ap, Configuration config
     ) {
-      fwdFlow0(node, state, cc, summaryCtx, argAp, ap, config) and
-      PrevStage::revFlow(node, state, unbindApa(getApprox(ap)), config) and
-      filter(node, state, ap, config)
+      fwdFlow(node, state, cc, summaryCtx, argAp, ap, _, config)
     }
 
     pragma[nomagic]
     private predicate fwdFlow0(
       NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      Ap ap, Configuration config
+      Ap ap, ApApprox apa, Configuration config
     ) {
       sourceNode(node, state, config) and
       (if hasSourceCallCtx(config) then cc = ccSomeCall() else cc = ccNone()) and
       argAp = apNone() and
       summaryCtx = TParameterPositionNone() and
-      ap = getApNil(node)
+      ap = getApNil(node) and
+      apa = getApprox(ap)
       or
-      exists(NodeEx mid, FlowState state0, Ap ap0, LocalCc localCc |
-        fwdFlow(mid, state0, cc, summaryCtx, argAp, ap0, config) and
+      exists(NodeEx mid, FlowState state0, Ap ap0, ApApprox apa0, LocalCc localCc |
+        fwdFlow(mid, state0, cc, summaryCtx, argAp, ap0, apa0, config) and
         localCc = getLocalCc(mid, cc)
       |
         localStep(mid, state0, node, state, true, _, config, localCc) and
-        ap = ap0
+        ap = ap0 and
+        apa = apa0
         or
         localStep(mid, state0, node, state, false, ap, config, localCc) and
-        ap0 instanceof ApNil
+        ap0 instanceof ApNil and
+        apa = getApprox(ap)
       )
       or
       exists(NodeEx mid |
-        fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, apa, pragma[only_bind_into](config)) and
         jumpStep(mid, node, config) and
         cc = ccNone() and
         summaryCtx = TParameterPositionNone() and
@@ -1352,7 +1382,8 @@ private module MkStage<StageSig PrevStage> {
         cc = ccNone() and
         summaryCtx = TParameterPositionNone() and
         argAp = apNone() and
-        ap = getApNil(node)
+        ap = getApNil(node) and
+        apa = getApprox(ap)
       )
       or
       exists(NodeEx mid, FlowState state0, ApNil nil |
@@ -1361,32 +1392,32 @@ private module MkStage<StageSig PrevStage> {
         cc = ccNone() and
         summaryCtx = TParameterPositionNone() and
         argAp = apNone() and
-        ap = getApNil(node)
+        ap = getApNil(node) and
+        apa = getApprox(ap)
       )
       or
       // store
       exists(TypedContent tc, Ap ap0 |
         fwdFlowStore(_, ap0, tc, node, state, cc, summaryCtx, argAp, config) and
-        ap = apCons(tc, ap0)
+        ap = apCons(tc, ap0) and
+        apa = getApprox(ap)
       )
       or
       // read
       exists(Ap ap0, Content c |
         fwdFlowRead(ap0, c, _, node, state, cc, summaryCtx, argAp, config) and
-        fwdFlowConsCand(ap0, c, ap, config)
+        fwdFlowConsCand(ap0, c, ap, config) and
+        apa = getApprox(ap)
       )
       or
       // flow into a callable
-      exists(ApApprox apa |
-        fwdFlowIn(_, node, state, _, cc, _, _, ap, config) and
-        apa = getApprox(ap) and
-        if PrevStage::parameterMayFlowThrough(node, apa, config)
-        then (
-          summaryCtx = TParameterPositionSome(node.(ParamNodeEx).getPosition()) and
-          argAp = apSome(ap)
-        ) else (
-          summaryCtx = TParameterPositionNone() and argAp = apNone()
-        )
+      fwdFlowIn(_, node, state, _, cc, _, _, ap, apa, config) and
+      if PrevStage::parameterMayFlowThrough(node, apa, config)
+      then (
+        summaryCtx = TParameterPositionSome(node.(ParamNodeEx).getPosition()) and
+        argAp = apSome(ap)
+      ) else (
+        summaryCtx = TParameterPositionNone() and argAp = apNone()
       )
       or
       // flow out of a callable
@@ -1394,8 +1425,8 @@ private module MkStage<StageSig PrevStage> {
         DataFlowCall call, RetNodeEx ret, boolean allowsFieldFlow, CcNoCall innercc,
         DataFlowCallable inner
       |
-        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, config) and
-        flowOutOfCall(call, ret, _, node, allowsFieldFlow, config) and
+        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, apa, config) and
+        flowOutOfCallApa(call, ret, _, node, allowsFieldFlow, apa, config) and
         inner = ret.getEnclosingCallable() and
         cc = getCallContextReturn(inner, call, innercc) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
@@ -1403,7 +1434,7 @@ private module MkStage<StageSig PrevStage> {
       or
       // flow through a callable
       exists(DataFlowCall call, ParameterPosition summaryCtx0, Ap argAp0 |
-        fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, config) and
+        fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, apa, config) and
         fwdFlowIsEntered(call, cc, summaryCtx, argAp, summaryCtx0, argAp0, config)
       )
     }
@@ -1413,9 +1444,9 @@ private module MkStage<StageSig PrevStage> {
       NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc,
       ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
     ) {
-      exists(DataFlowType contentType |
-        fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, config) and
-        PrevStage::storeStepCand(node1, unbindApa(getApprox(ap1)), tc, node2, contentType, config) and
+      exists(DataFlowType contentType, ApApprox apa1 |
+        fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, apa1, config) and
+        PrevStage::storeStepCand(node1, apa1, tc, node2, contentType, config) and
         typecheckStore(ap1, contentType)
       )
     }
@@ -1433,43 +1464,104 @@ private module MkStage<StageSig PrevStage> {
       )
     }
 
+    private class ApNonNil instanceof Ap {
+      pragma[nomagic]
+      ApNonNil() { not this instanceof ApNil }
+
+      string toString() { result = "" }
+    }
+
+    pragma[nomagic]
+    private predicate fwdFlowRead0(
+      NodeEx node1, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      ApNonNil ap, Configuration config
+    ) {
+      fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
+      PrevStage::readStepCand(node1, _, _, config)
+    }
+
     pragma[nomagic]
     private predicate fwdFlowRead(
       Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc,
       ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
     ) {
-      fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
+      fwdFlowRead0(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, c, node2, config) and
       getHeadContent(ap) = c
     }
 
     pragma[nomagic]
     private predicate fwdFlowIn(
-      DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, Cc innercc,
-      ParameterPositionOption summaryCtx, ApOption argAp, Ap ap, Configuration config
+      DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, CcCall innercc,
+      ParameterPositionOption summaryCtx, ApOption argAp, Ap ap, ApApprox apa, Configuration config
     ) {
       exists(ArgNodeEx arg, boolean allowsFieldFlow |
-        fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, config) and
-        flowIntoCall(call, arg, p, allowsFieldFlow, config) and
+        fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, apa, config) and
+        flowIntoCallApa(call, arg, p, allowsFieldFlow, apa, config) and
         innercc = getCallContextCall(call, p.getEnclosingCallable(), outercc) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
+    pragma[nomagic]
+    private predicate fwdFlowRetFromArg(
+      RetNodeEx ret, FlowState state, CcCall ccc, ParameterPosition summaryCtx, ParamNodeEx p,
+      Ap argAp, ApApprox argApa, Ap ap, ApApprox apa, Configuration config
+    ) {
+      exists(DataFlowCallable c, ReturnKindExt kind |
+        fwdFlow(pragma[only_bind_into](ret), state, ccc,
+          TParameterPositionSome(pragma[only_bind_into](summaryCtx)), apSome(argAp), ap, apa, config) and
+        getApprox(argAp) = argApa and
+        c = ret.getEnclosingCallable() and
+        kind = ret.getKind() and
+        p.isParameterOf(c, pragma[only_bind_into](summaryCtx)) and
+        parameterFlowThroughAllowed(p, kind)
+      )
+    }
+
+    pragma[inline]
+    private predicate fwdFlowInMayFlowThrough(
+      DataFlowCall call, Cc cc, CcCall innerCc, ParameterPositionOption summaryCtx, ApOption argAp,
+      ParamNodeEx param, Ap ap, ApApprox apa, Configuration config
+    ) {
+      fwdFlowIn(call, pragma[only_bind_into](param), _, cc, innerCc, summaryCtx, argAp, ap,
+        pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
+      PrevStage::parameterMayFlowThrough(param, apa, config)
+    }
+
+    // dedup before joining with `flowThroughOutOfCall`
+    pragma[nomagic]
+    private predicate fwdFlowInMayFlowThroughProj(
+      DataFlowCall call, CcCall innerCc, ApApprox apa, Configuration config
+    ) {
+      fwdFlowInMayFlowThrough(call, _, innerCc, _, _, _, _, apa, config)
+    }
+
+    /**
+     * Same as `flowThroughOutOfCall`, but restricted to calls that are reached
+     * in the flow covered by `fwdFlow`, where data might flow through the target
+     * callable and back out at `call`.
+     */
+    pragma[nomagic]
+    private predicate fwdFlowThroughOutOfCall(
+      DataFlowCall call, CcCall ccc, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow,
+      ApApprox argApa, ApApprox apa, Configuration config
+    ) {
+      fwdFlowInMayFlowThroughProj(call, ccc, argApa, config) and
+      flowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, argApa, apa, config)
+    }
+
     pragma[nomagic]
     private predicate fwdFlowOutFromArg(
       DataFlowCall call, NodeEx out, FlowState state, ParameterPosition summaryCtx, Ap argAp, Ap ap,
-      Configuration config
+      ApApprox apa, Configuration config
     ) {
-      exists(
-        DataFlowCallable c, RetNodeEx ret, ReturnKindExt kind, boolean allowsFieldFlow, CcCall ccc
-      |
-        fwdFlow(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc),
-          TParameterPositionSome(pragma[only_bind_into](summaryCtx)), apSome(argAp), ap, config) and
-        flowThroughOutOfCall(call, pragma[only_bind_into](c), ccc, ret, kind, out, allowsFieldFlow,
+      exists(RetNodeEx ret, boolean allowsFieldFlow, CcCall ccc, ApApprox argApa |
+        fwdFlowRetFromArg(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc),
+          summaryCtx, _, argAp, pragma[only_bind_into](argApa), ap, pragma[only_bind_into](apa),
           config) and
-        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
-        parameterFlowThroughAllowed(c, pragma[only_bind_into](summaryCtx), kind)
+        fwdFlowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, argApa, apa, config) and
+        (if allowsFieldFlow = false then ap instanceof ApNil else any())
       )
     }
 
@@ -1483,8 +1575,7 @@ private module MkStage<StageSig PrevStage> {
       ParameterPosition pos, Ap ap, Configuration config
     ) {
       exists(ParamNodeEx param |
-        fwdFlowIn(call, param, _, cc, _, summaryCtx, argAp, ap, config) and
-        PrevStage::parameterMayFlowThrough(param, unbindApa(getApprox(ap)), config) and
+        fwdFlowInMayFlowThrough(call, cc, _, summaryCtx, argAp, param, ap, _, config) and
         pos = param.getPosition()
       )
     }
@@ -1505,41 +1596,55 @@ private module MkStage<StageSig PrevStage> {
       fwdFlowConsCand(ap1, c, ap2, config)
     }
 
-    pragma[nomagic]
-    private predicate returnFlowsThrough0(
-      RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, DataFlowCallable c,
-      ParameterPosition ppos, Ap argAp, Ap ap, Configuration config
-    ) {
-      exists(boolean allowsFieldFlow |
-        fwdFlow(ret, state, ccc, TParameterPositionSome(ppos), apSome(argAp), ap, config) and
-        flowThroughOutOfCall(_, c, _, pragma[only_bind_into](ret), kind, _, allowsFieldFlow,
-          pragma[only_bind_into](config)) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
-      )
-    }
-
     pragma[nomagic]
     private predicate returnFlowsThrough(
       RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, ParamNodeEx p, Ap argAp,
       Ap ap, Configuration config
     ) {
-      exists(DataFlowCallable c, ParameterPosition ppos |
-        returnFlowsThrough0(ret, kind, state, ccc, c, ppos, argAp, ap, config) and
-        p.isParameterOf(c, ppos) and
-        parameterFlowThroughAllowed(p, kind)
+      exists(boolean allowsFieldFlow, ApApprox argApa, ApApprox apa |
+        fwdFlowRetFromArg(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc), _, p,
+          argAp, pragma[only_bind_into](argApa), ap, pragma[only_bind_into](apa), config) and
+        kind = ret.getKind() and
+        fwdFlowThroughOutOfCall(_, ccc, ret, _, allowsFieldFlow, argApa, apa, config) and
+        (if allowsFieldFlow = false then ap instanceof ApNil else any())
       )
     }
 
     pragma[nomagic]
     private predicate flowThroughIntoCall(
-      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp,
+      Configuration config
     ) {
-      exists(Ap argAp |
-        flowIntoCall(call, pragma[only_bind_into](arg), pragma[only_bind_into](p), allowsFieldFlow,
+      exists(ApApprox argApa |
+        flowIntoCallApa(call, pragma[only_bind_into](arg), pragma[only_bind_into](p),
+          allowsFieldFlow, argApa, pragma[only_bind_into](config)) and
+        fwdFlow(arg, _, _, _, _, pragma[only_bind_into](argAp), argApa,
           pragma[only_bind_into](config)) and
-        fwdFlow(arg, _, _, _, _, pragma[only_bind_into](argAp), pragma[only_bind_into](config)) and
         returnFlowsThrough(_, _, _, _, p, pragma[only_bind_into](argAp), _,
-          pragma[only_bind_into](config))
+          pragma[only_bind_into](config)) and
+        if allowsFieldFlow = false then argAp instanceof ApNil else any()
+      )
+    }
+
+    pragma[nomagic]
+    private predicate flowIntoCallAp(
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap ap,
+      Configuration config
+    ) {
+      exists(ApApprox apa |
+        flowIntoCallApa(call, arg, p, allowsFieldFlow, apa, config) and
+        fwdFlow(arg, _, _, _, _, ap, apa, config)
+      )
+    }
+
+    pragma[nomagic]
+    private predicate flowOutOfCallAp(
+      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
+      Ap ap, Configuration config
+    ) {
+      exists(ApApprox apa |
+        flowOutOfCallApa(call, ret, kind, out, allowsFieldFlow, apa, config) and
+        fwdFlow(ret, _, _, _, _, ap, apa, config)
       )
     }
 
@@ -1628,7 +1733,7 @@ private module MkStage<StageSig PrevStage> {
       // flow into a callable
       exists(ParamNodeEx p, boolean allowsFieldFlow |
         revFlow(p, state, TReturnCtxNone(), returnAp, ap, config) and
-        flowIntoCall(_, node, p, allowsFieldFlow, config) and
+        flowIntoCallAp(_, node, p, allowsFieldFlow, ap, config) and
         (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
         returnCtx = TReturnCtxNone()
       )
@@ -1682,22 +1787,41 @@ private module MkStage<StageSig PrevStage> {
     ) {
       exists(NodeEx out, boolean allowsFieldFlow |
         revFlow(out, state, returnCtx, returnAp, ap, config) and
-        flowOutOfCall(call, ret, kind, out, allowsFieldFlow, config) and
+        flowOutOfCallAp(call, ret, kind, out, allowsFieldFlow, ap, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
+    /**
+     * Same as `flowThroughIntoCall`, but restricted to calls that are reached
+     * in the flow covered by `revFlow`, where data might flow through the target
+     * callable and back out at `call`.
+     */
+    pragma[nomagic]
+    private predicate revFlowThroughIntoCall(
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp,
+      Configuration config
+    ) {
+      flowThroughIntoCall(call, arg, p, allowsFieldFlow, argAp, config) and
+      revFlowIsReturned(call, _, _, _, _, config)
+    }
+
+    pragma[nomagic]
+    private predicate revFlowParamToReturn(
+      ParamNodeEx p, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap, Configuration config
+    ) {
+      revFlow(p, state, TReturnCtxMaybeFlowThrough(kind), apSome(returnAp), ap, config) and
+      parameterFlowThroughAllowed(p, kind)
+    }
+
     pragma[nomagic]
     private predicate revFlowInToReturn(
       DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap,
       Configuration config
     ) {
       exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(pragma[only_bind_into](p), state,
-          TReturnCtxMaybeFlowThrough(pragma[only_bind_into](kind)), apSome(returnAp), ap, config) and
-        flowThroughIntoCall(call, arg, p, allowsFieldFlow, config) and
-        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
-        parameterFlowThroughAllowed(p, kind)
+        revFlowParamToReturn(p, state, kind, returnAp, ap, config) and
+        revFlowThroughIntoCall(call, arg, p, allowsFieldFlow, ap, config)
       )
     }
 
@@ -1750,6 +1874,11 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     predicate revFlow(NodeEx node, Configuration config) { revFlow(node, _, _, _, _, config) }
 
+    pragma[nomagic]
+    predicate revFlowAp(NodeEx node, Ap ap, Configuration config) {
+      revFlow(node, _, _, _, ap, config)
+    }
+
     // use an alias as a workaround for bad functionality-induced joins
     pragma[nomagic]
     additional predicate revFlowAlias(NodeEx node, Configuration config) {
@@ -1786,9 +1915,9 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate parameterFlowsThroughRev(
-      ParamNodeEx p, Ap ap, ReturnKindExt kind, Configuration config
+      ParamNodeEx p, Ap ap, ReturnKindExt kind, Ap returnAp, Configuration config
     ) {
-      revFlow(p, _, TReturnCtxMaybeFlowThrough(kind), apSome(_), ap, config) and
+      revFlow(p, _, TReturnCtxMaybeFlowThrough(kind), apSome(returnAp), ap, config) and
       parameterFlowThroughAllowed(p, kind)
     }
 
@@ -1796,27 +1925,36 @@ private module MkStage<StageSig PrevStage> {
     predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
       exists(RetNodeEx ret, ReturnKindExt kind |
         returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
-        parameterFlowsThroughRev(p, ap, kind, config)
+        parameterFlowsThroughRev(p, ap, kind, _, config)
       )
     }
 
     pragma[nomagic]
-    predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config) {
-      exists(ParamNodeEx p, Ap ap |
-        returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
-        parameterFlowsThroughRev(p, ap, kind, config)
+    predicate returnMayFlowThrough(
+      RetNodeEx ret, Ap argAp, Ap ap, ReturnKindExt kind, Configuration config
+    ) {
+      exists(ParamNodeEx p |
+        returnFlowsThrough(ret, kind, _, _, p, argAp, ap, config) and
+        parameterFlowsThroughRev(p, argAp, kind, ap, config)
+      )
+    }
+
+    pragma[nomagic]
+    predicate revFlowInToReturnIsReturned(
+      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnCtx returnCtx, ApOption returnAp,
+      Ap ap, Configuration config
+    ) {
+      exists(ReturnKindExt returnKind0, Ap returnAp0 |
+        revFlowInToReturn(call, arg, state, returnKind0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
       )
     }
 
     pragma[nomagic]
     predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
-      exists(
-        ReturnKindExt returnKind0, Ap returnAp0, ArgNodeEx arg, FlowState state,
-        ReturnCtx returnCtx, ApOption returnAp, Ap ap
-      |
+      exists(ArgNodeEx arg, FlowState state, ReturnCtx returnCtx, ApOption returnAp, Ap ap |
         revFlow(arg, state, returnCtx, returnAp, ap, config) and
-        revFlowInToReturn(call, arg, state, returnKind0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
+        revFlowInToReturnIsReturned(call, arg, state, returnCtx, returnAp, ap, config)
       )
     }
 
@@ -2179,16 +2317,16 @@ private module LocalFlowBigStep {
   pragma[nomagic]
   predicate localFlowBigStep(
     NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
-    AccessPathFrontNil apf, Configuration config, LocalCallContext callContext
+    DataFlowType t, Configuration config, LocalCallContext callContext
   ) {
-    localFlowStepPlus(node1, state1, node2, preservesValue, apf.getType(), config, callContext) and
+    localFlowStepPlus(node1, state1, node2, preservesValue, t, config, callContext) and
     localFlowExit(node2, state1, config) and
     state1 = state2
     or
     additionalLocalFlowStepNodeCand2(node1, state1, node2, state2, config) and
     state1 != state2 and
     preservesValue = false and
-    apf = TFrontNil(node2.getDataFlowType()) and
+    t = node2.getDataFlowType() and
     callContext.relevantFor(node1.getEnclosingCallable()) and
     not exists(DataFlowCall call | call = callContext.(LocalCallContextSpecificCall).getCall() |
       isUnreachableInCallCached(node1.asNode(), call) or
@@ -2202,11 +2340,87 @@ private import LocalFlowBigStep
 private module Stage3Param implements MkStage<Stage2>::StageParam {
   private module PrevStage = Stage2;
 
+  class Ap = ApproxAccessPathFront;
+
+  class ApNil = ApproxAccessPathFrontNil;
+
+  PrevStage::Ap getApprox(Ap ap) { result = ap.toBoolNonEmpty() }
+
+  ApNil getApNil(NodeEx node) {
+    PrevStage::revFlow(node, _) and result = TApproxFrontNil(node.getDataFlowType())
+  }
+
+  bindingset[tc, tail]
+  Ap apCons(TypedContent tc, Ap tail) { result.getAHead() = tc and exists(tail) }
+
+  pragma[noinline]
+  Content getHeadContent(Ap ap) { result = ap.getAHead().getContent() }
+
+  class ApOption = ApproxAccessPathFrontOption;
+
+  ApOption apNone() { result = TApproxAccessPathFrontNone() }
+
+  ApOption apSome(Ap ap) { result = TApproxAccessPathFrontSome(ap) }
+
+  import BooleanCallContext
+
+  predicate localStep(
+    NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
+    ApproxAccessPathFrontNil ap, Configuration config, LocalCc lcc
+  ) {
+    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap.getType(), config, _) and
+    exists(lcc)
+  }
+
+  predicate flowOutOfCall = flowOutOfCallNodeCand2/6;
+
+  predicate flowIntoCall = flowIntoCallNodeCand2/5;
+
+  pragma[nomagic]
+  private predicate expectsContentCand(NodeEx node, Ap ap, Configuration config) {
+    exists(Content c |
+      PrevStage::revFlow(node, pragma[only_bind_into](config)) and
+      PrevStage::readStepCand(_, c, _, pragma[only_bind_into](config)) and
+      expectsContentEx(node, c) and
+      c = ap.getAHead().getContent()
+    )
+  }
+
+  pragma[nomagic]
+  private predicate castingNodeEx(NodeEx node) { node.asNode() instanceof CastingNode }
+
+  bindingset[node, state, ap, config]
+  predicate filter(NodeEx node, FlowState state, Ap ap, Configuration config) {
+    exists(state) and
+    exists(config) and
+    (if castingNodeEx(node) then compatibleTypes(node.getDataFlowType(), ap.getType()) else any()) and
+    (
+      notExpectsContent(node)
+      or
+      expectsContentCand(node, ap, config)
+    )
+  }
+
+  bindingset[ap, contentType]
+  predicate typecheckStore(Ap ap, DataFlowType contentType) {
+    // We need to typecheck stores here, since reverse flow through a getter
+    // might have a different type here compared to inside the getter.
+    compatibleTypes(ap.getType(), contentType)
+  }
+}
+
+private module Stage3 implements StageSig {
+  import MkStage<Stage2>::Stage<Stage3Param>
+}
+
+private module Stage4Param implements MkStage<Stage3>::StageParam {
+  private module PrevStage = Stage3;
+
   class Ap = AccessPathFront;
 
   class ApNil = AccessPathFrontNil;
 
-  PrevStage::Ap getApprox(Ap ap) { result = ap.toBoolNonEmpty() }
+  PrevStage::Ap getApprox(Ap ap) { result = ap.toApprox() }
 
   ApNil getApNil(NodeEx node) {
     PrevStage::revFlow(node, _) and result = TFrontNil(node.getDataFlowType())
@@ -2226,16 +2440,42 @@ private module Stage3Param implements MkStage<Stage2>::StageParam {
 
   import BooleanCallContext
 
+  pragma[nomagic]
   predicate localStep(
     NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
     ApNil ap, Configuration config, LocalCc lcc
   ) {
-    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap, config, _) and exists(lcc)
+    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap.getType(), config, _) and
+    PrevStage::revFlow(node1, pragma[only_bind_into](state1), _, pragma[only_bind_into](config)) and
+    PrevStage::revFlowAlias(node2, pragma[only_bind_into](state2), _, pragma[only_bind_into](config)) and
+    exists(lcc)
   }
 
-  predicate flowOutOfCall = flowOutOfCallNodeCand2/6;
+  pragma[nomagic]
+  predicate flowOutOfCall(
+    DataFlowCall call, RetNodeEx node1, ReturnKindExt kind, NodeEx node2, boolean allowsFieldFlow,
+    Configuration config
+  ) {
+    exists(FlowState state |
+      flowOutOfCallNodeCand2(call, node1, kind, node2, allowsFieldFlow, config) and
+      PrevStage::revFlow(node2, pragma[only_bind_into](state), _, pragma[only_bind_into](config)) and
+      PrevStage::revFlowAlias(node1, pragma[only_bind_into](state), _,
+        pragma[only_bind_into](config))
+    )
+  }
 
-  predicate flowIntoCall = flowIntoCallNodeCand2/5;
+  pragma[nomagic]
+  predicate flowIntoCall(
+    DataFlowCall call, ArgNodeEx node1, ParamNodeEx node2, boolean allowsFieldFlow,
+    Configuration config
+  ) {
+    exists(FlowState state |
+      flowIntoCallNodeCand2(call, node1, node2, allowsFieldFlow, config) and
+      PrevStage::revFlow(node2, pragma[only_bind_into](state), _, pragma[only_bind_into](config)) and
+      PrevStage::revFlowAlias(node1, pragma[only_bind_into](state), _,
+        pragma[only_bind_into](config))
+    )
+  }
 
   pragma[nomagic]
   private predicate clearSet(NodeEx node, ContentSet c, Configuration config) {
@@ -2291,8 +2531,8 @@ private module Stage3Param implements MkStage<Stage2>::StageParam {
   }
 }
 
-private module Stage3 implements StageSig {
-  import MkStage<Stage2>::Stage<Stage3Param>
+private module Stage4 implements StageSig {
+  import MkStage<Stage3>::Stage<Stage4Param>
 }
 
 /**
@@ -2303,8 +2543,8 @@ private predicate flowCandSummaryCtx(
   NodeEx node, FlowState state, AccessPathFront argApf, Configuration config
 ) {
   exists(AccessPathFront apf |
-    Stage3::revFlow(node, state, TReturnCtxMaybeFlowThrough(_), _, apf, config) and
-    Stage3::fwdFlow(node, state, any(Stage3::CcCall ccc), _, TAccessPathFrontSome(argApf), apf,
+    Stage4::revFlow(node, state, TReturnCtxMaybeFlowThrough(_), _, apf, config) and
+    Stage4::fwdFlow(node, state, any(Stage4::CcCall ccc), _, TAccessPathFrontSome(argApf), apf,
       config)
   )
 }
@@ -2315,10 +2555,10 @@ private predicate flowCandSummaryCtx(
  */
 private predicate expensiveLen2unfolding(TypedContent tc, Configuration config) {
   exists(int tails, int nodes, int apLimit, int tupleLimit |
-    tails = strictcount(AccessPathFront apf | Stage3::consCand(tc, apf, config)) and
+    tails = strictcount(AccessPathFront apf | Stage4::consCand(tc, apf, config)) and
     nodes =
       strictcount(NodeEx n, FlowState state |
-        Stage3::revFlow(n, state, any(AccessPathFrontHead apf | apf.getHead() = tc), config)
+        Stage4::revFlow(n, state, any(AccessPathFrontHead apf | apf.getHead() = tc), config)
         or
         flowCandSummaryCtx(n, state, any(AccessPathFrontHead apf | apf.getHead() = tc), config)
       ) and
@@ -2332,11 +2572,11 @@ private predicate expensiveLen2unfolding(TypedContent tc, Configuration config)
 private newtype TAccessPathApprox =
   TNil(DataFlowType t) or
   TConsNil(TypedContent tc, DataFlowType t) {
-    Stage3::consCand(tc, TFrontNil(t), _) and
+    Stage4::consCand(tc, TFrontNil(t), _) and
     not expensiveLen2unfolding(tc, _)
   } or
   TConsCons(TypedContent tc1, TypedContent tc2, int len) {
-    Stage3::consCand(tc1, TFrontHead(tc2), _) and
+    Stage4::consCand(tc1, TFrontHead(tc2), _) and
     len in [2 .. accessPathLimit()] and
     not expensiveLen2unfolding(tc1, _)
   } or
@@ -2466,7 +2706,7 @@ private class AccessPathApproxCons1 extends AccessPathApproxCons, TCons1 {
   override AccessPathApprox pop(TypedContent head) {
     head = tc and
     (
-      exists(TypedContent tc2 | Stage3::consCand(tc, TFrontHead(tc2), _) |
+      exists(TypedContent tc2 | Stage4::consCand(tc, TFrontHead(tc2), _) |
         result = TConsCons(tc2, _, len - 1)
         or
         len = 2 and
@@ -2477,7 +2717,7 @@ private class AccessPathApproxCons1 extends AccessPathApproxCons, TCons1 {
       or
       exists(DataFlowType t |
         len = 1 and
-        Stage3::consCand(tc, TFrontNil(t), _) and
+        Stage4::consCand(tc, TFrontNil(t), _) and
         result = TNil(t)
       )
     )
@@ -2502,13 +2742,14 @@ private class AccessPathApproxOption extends TAccessPathApproxOption {
   }
 }
 
-private module Stage4Param implements MkStage<Stage3>::StageParam {
-  private module PrevStage = Stage3;
+private module Stage5Param implements MkStage<Stage4>::StageParam {
+  private module PrevStage = Stage4;
 
   class Ap = AccessPathApprox;
 
   class ApNil = AccessPathApproxNil;
 
+  pragma[nomagic]
   PrevStage::Ap getApprox(Ap ap) { result = ap.getFront() }
 
   ApNil getApNil(NodeEx node) {
@@ -2534,7 +2775,9 @@ private module Stage4Param implements MkStage<Stage3>::StageParam {
     NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
     ApNil ap, Configuration config, LocalCc lcc
   ) {
-    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap.getFront(), config, lcc)
+    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap.getType(), config, lcc) and
+    PrevStage::revFlow(node1, pragma[only_bind_into](state1), _, pragma[only_bind_into](config)) and
+    PrevStage::revFlowAlias(node2, pragma[only_bind_into](state2), _, pragma[only_bind_into](config))
   }
 
   pragma[nomagic]
@@ -2571,7 +2814,7 @@ private module Stage4Param implements MkStage<Stage3>::StageParam {
   predicate typecheckStore(Ap ap, DataFlowType contentType) { any() }
 }
 
-private module Stage4 = MkStage<Stage3>::Stage<Stage4Param>;
+private module Stage5 = MkStage<Stage4>::Stage<Stage5Param>;
 
 bindingset[conf, result]
 private Configuration unbindConf(Configuration conf) {
@@ -2585,8 +2828,8 @@ private predicate nodeMayUseSummary0(
 ) {
   exists(AccessPathApprox apa0 |
     c = n.getEnclosingCallable() and
-    Stage4::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
-    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TParameterPositionSome(pos),
+    Stage5::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
+    Stage5::fwdFlow(n, state, any(CallContextCall ccc), TParameterPositionSome(pos),
       TAccessPathApproxSome(apa), apa0, config)
   )
 }
@@ -2596,7 +2839,7 @@ private predicate nodeMayUseSummary(
   NodeEx n, FlowState state, AccessPathApprox apa, Configuration config
 ) {
   exists(DataFlowCallable c, ParameterPosition pos, ParamNodeEx p |
-    Stage4::parameterMayFlowThrough(p, apa, config) and
+    Stage5::parameterMayFlowThrough(p, apa, config) and
     nodeMayUseSummary0(n, c, pos, state, apa, config) and
     p.isParameterOf(c, pos)
   )
@@ -2606,8 +2849,8 @@ private newtype TSummaryCtx =
   TSummaryCtxNone() or
   TSummaryCtxSome(ParamNodeEx p, FlowState state, AccessPath ap) {
     exists(Configuration config |
-      Stage4::parameterMayFlowThrough(p, ap.getApprox(), config) and
-      Stage4::revFlow(p, state, _, config)
+      Stage5::parameterMayFlowThrough(p, ap.getApprox(), config) and
+      Stage5::revFlow(p, state, _, config)
     )
   }
 
@@ -2656,7 +2899,7 @@ private int count1to2unfold(AccessPathApproxCons1 apa, Configuration config) {
     len = apa.len() and
     result =
       strictcount(AccessPathFront apf |
-        Stage4::consCand(tc, any(AccessPathApprox ap | ap.getFront() = apf and ap.len() = len - 1),
+        Stage5::consCand(tc, any(AccessPathApprox ap | ap.getFront() = apf and ap.len() = len - 1),
           config)
       )
   )
@@ -2665,7 +2908,7 @@ private int count1to2unfold(AccessPathApproxCons1 apa, Configuration config) {
 private int countNodesUsingAccessPath(AccessPathApprox apa, Configuration config) {
   result =
     strictcount(NodeEx n, FlowState state |
-      Stage4::revFlow(n, state, apa, config) or nodeMayUseSummary(n, state, apa, config)
+      Stage5::revFlow(n, state, apa, config) or nodeMayUseSummary(n, state, apa, config)
     )
 }
 
@@ -2686,7 +2929,7 @@ private predicate expensiveLen1to2unfolding(AccessPathApproxCons1 apa, Configura
 private AccessPathApprox getATail(AccessPathApprox apa, Configuration config) {
   exists(TypedContent head |
     apa.pop(head) = result and
-    Stage4::consCand(head, result, config)
+    Stage5::consCand(head, result, config)
   )
 }
 
@@ -2768,7 +3011,7 @@ private newtype TPathNode =
     NodeEx node, FlowState state, CallContext cc, SummaryCtx sc, AccessPath ap, Configuration config
   ) {
     // A PathNode is introduced by a source ...
-    Stage4::revFlow(node, state, config) and
+    Stage5::revFlow(node, state, config) and
     sourceNode(node, state, config) and
     (
       if hasSourceCallCtx(config)
@@ -2782,7 +3025,7 @@ private newtype TPathNode =
     exists(PathNodeMid mid |
       pathStep(mid, node, state, cc, sc, ap) and
       pragma[only_bind_into](config) = mid.getConfiguration() and
-      Stage4::revFlow(node, state, ap.getApprox(), pragma[only_bind_into](config))
+      Stage5::revFlow(node, state, ap.getApprox(), pragma[only_bind_into](config))
     )
   } or
   TPathNodeSink(NodeEx node, FlowState state, Configuration config) {
@@ -2924,7 +3167,7 @@ private class AccessPathCons2 extends AccessPath, TAccessPathCons2 {
   override TypedContent getHead() { result = head1 }
 
   override AccessPath getTail() {
-    Stage4::consCand(head1, result.getApprox(), _) and
+    Stage5::consCand(head1, result.getApprox(), _) and
     result.getHead() = head2 and
     result.length() = len - 1
   }
@@ -2955,7 +3198,7 @@ private class AccessPathCons1 extends AccessPath, TAccessPathCons1 {
   override TypedContent getHead() { result = head }
 
   override AccessPath getTail() {
-    Stage4::consCand(head, result.getApprox(), _) and result.length() = len - 1
+    Stage5::consCand(head, result.getApprox(), _) and result.length() = len - 1
   }
 
   override AccessPathFrontHead getFront() { result = TFrontHead(head) }
@@ -3347,7 +3590,8 @@ private predicate pathStep(
     AccessPath ap0, NodeEx midnode, FlowState state0, Configuration conf, LocalCallContext localCC
   |
     pathNode(mid, midnode, state0, cc, sc, ap0, conf, localCC) and
-    localFlowBigStep(midnode, state0, node, state, false, ap.getFront(), conf, localCC) and
+    localFlowBigStep(midnode, state0, node, state, false, ap.(AccessPathNil).getType(), conf,
+      localCC) and
     ap0 instanceof AccessPathNil
   )
   or
@@ -3389,7 +3633,7 @@ private predicate pathReadStep(
 ) {
   ap0 = mid.getAp() and
   tc = ap0.getHead() and
-  Stage4::readStepCand(mid.getNodeEx(), tc.getContent(), node, mid.getConfiguration()) and
+  Stage5::readStepCand(mid.getNodeEx(), tc.getContent(), node, mid.getConfiguration()) and
   state = mid.getState() and
   cc = mid.getCallContext()
 }
@@ -3399,7 +3643,7 @@ private predicate pathStoreStep(
   PathNodeMid mid, NodeEx node, FlowState state, AccessPath ap0, TypedContent tc, CallContext cc
 ) {
   ap0 = mid.getAp() and
-  Stage4::storeStepCand(mid.getNodeEx(), _, tc, node, _, mid.getConfiguration()) and
+  Stage5::storeStepCand(mid.getNodeEx(), _, tc, node, _, mid.getConfiguration()) and
   state = mid.getState() and
   cc = mid.getCallContext()
 }
@@ -3436,7 +3680,7 @@ private NodeEx getAnOutNodeFlow(
   ReturnKindExt kind, DataFlowCall call, AccessPathApprox apa, Configuration config
 ) {
   result.asNode() = kind.getAnOutNode(call) and
-  Stage4::revFlow(result, _, apa, config)
+  Stage5::revFlow(result, _, apa, config)
 }
 
 /**
@@ -3472,7 +3716,7 @@ private predicate parameterCand(
   DataFlowCallable callable, ParameterPosition pos, AccessPathApprox apa, Configuration config
 ) {
   exists(ParamNodeEx p |
-    Stage4::revFlow(p, _, apa, config) and
+    Stage5::revFlow(p, _, apa, config) and
     p.isParameterOf(callable, pos)
   )
 }
@@ -3751,9 +3995,17 @@ predicate stageStats(
   n = 45 and
   Stage4::stats(false, nodes, fields, conscand, states, tuples, config)
   or
-  stage = "5 Fwd" and n = 50 and finalStats(true, nodes, fields, conscand, states, tuples)
+  stage = "5 Fwd" and
+  n = 50 and
+  Stage5::stats(true, nodes, fields, conscand, states, tuples, config)
   or
-  stage = "5 Rev" and n = 55 and finalStats(false, nodes, fields, conscand, states, tuples)
+  stage = "5 Rev" and
+  n = 55 and
+  Stage5::stats(false, nodes, fields, conscand, states, tuples, config)
+  or
+  stage = "6 Fwd" and n = 60 and finalStats(true, nodes, fields, conscand, states, tuples)
+  or
+  stage = "6 Rev" and n = 65 and finalStats(false, nodes, fields, conscand, states, tuples)
 }
 
 private module FlowExploration {
diff --git a/python/ql/lib/semmle/python/dataflow/new/internal/DataFlowImpl4.qll b/python/ql/lib/semmle/python/dataflow/new/internal/DataFlowImpl4.qll
index ccde916a3c2..6741ccc2f06 100644
--- a/python/ql/lib/semmle/python/dataflow/new/internal/DataFlowImpl4.qll
+++ b/python/ql/lib/semmle/python/dataflow/new/internal/DataFlowImpl4.qll
@@ -621,23 +621,6 @@ private predicate parameterFlowThroughAllowed(ParamNodeEx p, ReturnKindExt kind)
   )
 }
 
-/**
- * Holds if flow from a parameter at position `pos` inside `c` to a return node of
- * kind `kind` is allowed.
- *
- * We don't expect a parameter to return stored in itself, unless
- * explicitly allowed
- */
-bindingset[c, pos, kind]
-private predicate parameterFlowThroughAllowed(
-  DataFlowCallable c, ParameterPosition pos, ReturnKindExt kind
-) {
-  exists(ParamNodeEx p |
-    p.isParameterOf(c, pos) and
-    parameterFlowThroughAllowed(p, kind)
-  )
-}
-
 private module Stage1 implements StageSig {
   class Ap = Unit;
 
@@ -980,6 +963,12 @@ private module Stage1 implements StageSig {
   pragma[nomagic]
   predicate revFlow(NodeEx node, Configuration config) { revFlow(node, _, config) }
 
+  pragma[nomagic]
+  predicate revFlowAp(NodeEx node, Ap ap, Configuration config) {
+    revFlow(node, config) and
+    exists(ap)
+  }
+
   bindingset[node, state, config]
   predicate revFlow(NodeEx node, FlowState state, Ap ap, Configuration config) {
     revFlow(node, _, pragma[only_bind_into](config)) and
@@ -1022,9 +1011,13 @@ private module Stage1 implements StageSig {
   }
 
   pragma[nomagic]
-  predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config) {
+  predicate returnMayFlowThrough(
+    RetNodeEx ret, Ap argAp, Ap ap, ReturnKindExt kind, Configuration config
+  ) {
     throughFlowNodeCand(ret, config) and
-    kind = ret.getKind()
+    kind = ret.getKind() and
+    exists(argAp) and
+    exists(ap)
   }
 
   pragma[nomagic]
@@ -1189,6 +1182,8 @@ private signature module StageSig {
 
   predicate revFlow(NodeEx node, Configuration config);
 
+  predicate revFlowAp(NodeEx node, Ap ap, Configuration config);
+
   bindingset[node, state, config]
   predicate revFlow(NodeEx node, FlowState state, Ap ap, Configuration config);
 
@@ -1196,7 +1191,9 @@ private signature module StageSig {
 
   predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config);
 
-  predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config);
+  predicate returnMayFlowThrough(
+    RetNodeEx ret, Ap argAp, Ap ap, ReturnKindExt kind, Configuration config
+  );
 
   predicate storeStepCand(
     NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, DataFlowType contentType,
@@ -1281,21 +1278,43 @@ private module MkStage<StageSig PrevStage> {
     import Param
 
     /* Begin: Stage logic. */
-    bindingset[result, apa]
-    private ApApprox unbindApa(ApApprox apa) {
-      pragma[only_bind_out](apa) = pragma[only_bind_out](result)
+    // use an alias as a workaround for bad functionality-induced joins
+    pragma[nomagic]
+    private predicate revFlowApAlias(NodeEx node, ApApprox apa, Configuration config) {
+      PrevStage::revFlowAp(node, apa, config)
+    }
+
+    pragma[nomagic]
+    private predicate flowIntoCallApa(
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, ApApprox apa,
+      Configuration config
+    ) {
+      flowIntoCall(call, arg, p, allowsFieldFlow, config) and
+      PrevStage::revFlowAp(p, pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
+      revFlowApAlias(arg, pragma[only_bind_into](apa), pragma[only_bind_into](config))
+    }
+
+    pragma[nomagic]
+    private predicate flowOutOfCallApa(
+      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
+      ApApprox apa, Configuration config
+    ) {
+      flowOutOfCall(call, ret, kind, out, allowsFieldFlow, config) and
+      PrevStage::revFlowAp(out, pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
+      revFlowApAlias(ret, pragma[only_bind_into](apa), pragma[only_bind_into](config))
     }
 
     pragma[nomagic]
     private predicate flowThroughOutOfCall(
-      DataFlowCall call, DataFlowCallable c, CcCall ccc, RetNodeEx ret, ReturnKindExt kind,
-      NodeEx out, boolean allowsFieldFlow, Configuration config
+      DataFlowCall call, CcCall ccc, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow,
+      ApApprox argApa, ApApprox apa, Configuration config
     ) {
-      flowOutOfCall(call, ret, kind, out, allowsFieldFlow, pragma[only_bind_into](config)) and
-      PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
-      PrevStage::returnMayFlowThrough(ret, kind, pragma[only_bind_into](config)) and
-      matchesCall(ccc, call) and
-      c = ret.getEnclosingCallable()
+      exists(ReturnKindExt kind |
+        flowOutOfCallApa(call, ret, kind, out, allowsFieldFlow, apa, pragma[only_bind_into](config)) and
+        PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
+        PrevStage::returnMayFlowThrough(ret, argApa, apa, kind, pragma[only_bind_into](config)) and
+        matchesCall(ccc, call)
+      )
     }
 
     /**
@@ -1307,39 +1326,50 @@ private module MkStage<StageSig PrevStage> {
      * corresponding parameter position and access path of that argument, respectively.
      */
     pragma[nomagic]
+    additional predicate fwdFlow(
+      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      Ap ap, ApApprox apa, Configuration config
+    ) {
+      fwdFlow0(node, state, cc, summaryCtx, argAp, ap, apa, config) and
+      PrevStage::revFlow(node, state, apa, config) and
+      filter(node, state, ap, config)
+    }
+
+    pragma[inline]
     additional predicate fwdFlow(
       NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
       Ap ap, Configuration config
     ) {
-      fwdFlow0(node, state, cc, summaryCtx, argAp, ap, config) and
-      PrevStage::revFlow(node, state, unbindApa(getApprox(ap)), config) and
-      filter(node, state, ap, config)
+      fwdFlow(node, state, cc, summaryCtx, argAp, ap, _, config)
     }
 
     pragma[nomagic]
     private predicate fwdFlow0(
       NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      Ap ap, Configuration config
+      Ap ap, ApApprox apa, Configuration config
     ) {
       sourceNode(node, state, config) and
       (if hasSourceCallCtx(config) then cc = ccSomeCall() else cc = ccNone()) and
       argAp = apNone() and
       summaryCtx = TParameterPositionNone() and
-      ap = getApNil(node)
+      ap = getApNil(node) and
+      apa = getApprox(ap)
       or
-      exists(NodeEx mid, FlowState state0, Ap ap0, LocalCc localCc |
-        fwdFlow(mid, state0, cc, summaryCtx, argAp, ap0, config) and
+      exists(NodeEx mid, FlowState state0, Ap ap0, ApApprox apa0, LocalCc localCc |
+        fwdFlow(mid, state0, cc, summaryCtx, argAp, ap0, apa0, config) and
         localCc = getLocalCc(mid, cc)
       |
         localStep(mid, state0, node, state, true, _, config, localCc) and
-        ap = ap0
+        ap = ap0 and
+        apa = apa0
         or
         localStep(mid, state0, node, state, false, ap, config, localCc) and
-        ap0 instanceof ApNil
+        ap0 instanceof ApNil and
+        apa = getApprox(ap)
       )
       or
       exists(NodeEx mid |
-        fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, apa, pragma[only_bind_into](config)) and
         jumpStep(mid, node, config) and
         cc = ccNone() and
         summaryCtx = TParameterPositionNone() and
@@ -1352,7 +1382,8 @@ private module MkStage<StageSig PrevStage> {
         cc = ccNone() and
         summaryCtx = TParameterPositionNone() and
         argAp = apNone() and
-        ap = getApNil(node)
+        ap = getApNil(node) and
+        apa = getApprox(ap)
       )
       or
       exists(NodeEx mid, FlowState state0, ApNil nil |
@@ -1361,32 +1392,32 @@ private module MkStage<StageSig PrevStage> {
         cc = ccNone() and
         summaryCtx = TParameterPositionNone() and
         argAp = apNone() and
-        ap = getApNil(node)
+        ap = getApNil(node) and
+        apa = getApprox(ap)
       )
       or
       // store
       exists(TypedContent tc, Ap ap0 |
         fwdFlowStore(_, ap0, tc, node, state, cc, summaryCtx, argAp, config) and
-        ap = apCons(tc, ap0)
+        ap = apCons(tc, ap0) and
+        apa = getApprox(ap)
       )
       or
       // read
       exists(Ap ap0, Content c |
         fwdFlowRead(ap0, c, _, node, state, cc, summaryCtx, argAp, config) and
-        fwdFlowConsCand(ap0, c, ap, config)
+        fwdFlowConsCand(ap0, c, ap, config) and
+        apa = getApprox(ap)
       )
       or
       // flow into a callable
-      exists(ApApprox apa |
-        fwdFlowIn(_, node, state, _, cc, _, _, ap, config) and
-        apa = getApprox(ap) and
-        if PrevStage::parameterMayFlowThrough(node, apa, config)
-        then (
-          summaryCtx = TParameterPositionSome(node.(ParamNodeEx).getPosition()) and
-          argAp = apSome(ap)
-        ) else (
-          summaryCtx = TParameterPositionNone() and argAp = apNone()
-        )
+      fwdFlowIn(_, node, state, _, cc, _, _, ap, apa, config) and
+      if PrevStage::parameterMayFlowThrough(node, apa, config)
+      then (
+        summaryCtx = TParameterPositionSome(node.(ParamNodeEx).getPosition()) and
+        argAp = apSome(ap)
+      ) else (
+        summaryCtx = TParameterPositionNone() and argAp = apNone()
       )
       or
       // flow out of a callable
@@ -1394,8 +1425,8 @@ private module MkStage<StageSig PrevStage> {
         DataFlowCall call, RetNodeEx ret, boolean allowsFieldFlow, CcNoCall innercc,
         DataFlowCallable inner
       |
-        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, config) and
-        flowOutOfCall(call, ret, _, node, allowsFieldFlow, config) and
+        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, apa, config) and
+        flowOutOfCallApa(call, ret, _, node, allowsFieldFlow, apa, config) and
         inner = ret.getEnclosingCallable() and
         cc = getCallContextReturn(inner, call, innercc) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
@@ -1403,7 +1434,7 @@ private module MkStage<StageSig PrevStage> {
       or
       // flow through a callable
       exists(DataFlowCall call, ParameterPosition summaryCtx0, Ap argAp0 |
-        fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, config) and
+        fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, apa, config) and
         fwdFlowIsEntered(call, cc, summaryCtx, argAp, summaryCtx0, argAp0, config)
       )
     }
@@ -1413,9 +1444,9 @@ private module MkStage<StageSig PrevStage> {
       NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc,
       ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
     ) {
-      exists(DataFlowType contentType |
-        fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, config) and
-        PrevStage::storeStepCand(node1, unbindApa(getApprox(ap1)), tc, node2, contentType, config) and
+      exists(DataFlowType contentType, ApApprox apa1 |
+        fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, apa1, config) and
+        PrevStage::storeStepCand(node1, apa1, tc, node2, contentType, config) and
         typecheckStore(ap1, contentType)
       )
     }
@@ -1433,43 +1464,104 @@ private module MkStage<StageSig PrevStage> {
       )
     }
 
+    private class ApNonNil instanceof Ap {
+      pragma[nomagic]
+      ApNonNil() { not this instanceof ApNil }
+
+      string toString() { result = "" }
+    }
+
+    pragma[nomagic]
+    private predicate fwdFlowRead0(
+      NodeEx node1, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      ApNonNil ap, Configuration config
+    ) {
+      fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
+      PrevStage::readStepCand(node1, _, _, config)
+    }
+
     pragma[nomagic]
     private predicate fwdFlowRead(
       Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc,
       ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
     ) {
-      fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
+      fwdFlowRead0(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, c, node2, config) and
       getHeadContent(ap) = c
     }
 
     pragma[nomagic]
     private predicate fwdFlowIn(
-      DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, Cc innercc,
-      ParameterPositionOption summaryCtx, ApOption argAp, Ap ap, Configuration config
+      DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, CcCall innercc,
+      ParameterPositionOption summaryCtx, ApOption argAp, Ap ap, ApApprox apa, Configuration config
     ) {
       exists(ArgNodeEx arg, boolean allowsFieldFlow |
-        fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, config) and
-        flowIntoCall(call, arg, p, allowsFieldFlow, config) and
+        fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, apa, config) and
+        flowIntoCallApa(call, arg, p, allowsFieldFlow, apa, config) and
         innercc = getCallContextCall(call, p.getEnclosingCallable(), outercc) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
+    pragma[nomagic]
+    private predicate fwdFlowRetFromArg(
+      RetNodeEx ret, FlowState state, CcCall ccc, ParameterPosition summaryCtx, ParamNodeEx p,
+      Ap argAp, ApApprox argApa, Ap ap, ApApprox apa, Configuration config
+    ) {
+      exists(DataFlowCallable c, ReturnKindExt kind |
+        fwdFlow(pragma[only_bind_into](ret), state, ccc,
+          TParameterPositionSome(pragma[only_bind_into](summaryCtx)), apSome(argAp), ap, apa, config) and
+        getApprox(argAp) = argApa and
+        c = ret.getEnclosingCallable() and
+        kind = ret.getKind() and
+        p.isParameterOf(c, pragma[only_bind_into](summaryCtx)) and
+        parameterFlowThroughAllowed(p, kind)
+      )
+    }
+
+    pragma[inline]
+    private predicate fwdFlowInMayFlowThrough(
+      DataFlowCall call, Cc cc, CcCall innerCc, ParameterPositionOption summaryCtx, ApOption argAp,
+      ParamNodeEx param, Ap ap, ApApprox apa, Configuration config
+    ) {
+      fwdFlowIn(call, pragma[only_bind_into](param), _, cc, innerCc, summaryCtx, argAp, ap,
+        pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
+      PrevStage::parameterMayFlowThrough(param, apa, config)
+    }
+
+    // dedup before joining with `flowThroughOutOfCall`
+    pragma[nomagic]
+    private predicate fwdFlowInMayFlowThroughProj(
+      DataFlowCall call, CcCall innerCc, ApApprox apa, Configuration config
+    ) {
+      fwdFlowInMayFlowThrough(call, _, innerCc, _, _, _, _, apa, config)
+    }
+
+    /**
+     * Same as `flowThroughOutOfCall`, but restricted to calls that are reached
+     * in the flow covered by `fwdFlow`, where data might flow through the target
+     * callable and back out at `call`.
+     */
+    pragma[nomagic]
+    private predicate fwdFlowThroughOutOfCall(
+      DataFlowCall call, CcCall ccc, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow,
+      ApApprox argApa, ApApprox apa, Configuration config
+    ) {
+      fwdFlowInMayFlowThroughProj(call, ccc, argApa, config) and
+      flowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, argApa, apa, config)
+    }
+
     pragma[nomagic]
     private predicate fwdFlowOutFromArg(
       DataFlowCall call, NodeEx out, FlowState state, ParameterPosition summaryCtx, Ap argAp, Ap ap,
-      Configuration config
+      ApApprox apa, Configuration config
     ) {
-      exists(
-        DataFlowCallable c, RetNodeEx ret, ReturnKindExt kind, boolean allowsFieldFlow, CcCall ccc
-      |
-        fwdFlow(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc),
-          TParameterPositionSome(pragma[only_bind_into](summaryCtx)), apSome(argAp), ap, config) and
-        flowThroughOutOfCall(call, pragma[only_bind_into](c), ccc, ret, kind, out, allowsFieldFlow,
+      exists(RetNodeEx ret, boolean allowsFieldFlow, CcCall ccc, ApApprox argApa |
+        fwdFlowRetFromArg(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc),
+          summaryCtx, _, argAp, pragma[only_bind_into](argApa), ap, pragma[only_bind_into](apa),
           config) and
-        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
-        parameterFlowThroughAllowed(c, pragma[only_bind_into](summaryCtx), kind)
+        fwdFlowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, argApa, apa, config) and
+        (if allowsFieldFlow = false then ap instanceof ApNil else any())
       )
     }
 
@@ -1483,8 +1575,7 @@ private module MkStage<StageSig PrevStage> {
       ParameterPosition pos, Ap ap, Configuration config
     ) {
       exists(ParamNodeEx param |
-        fwdFlowIn(call, param, _, cc, _, summaryCtx, argAp, ap, config) and
-        PrevStage::parameterMayFlowThrough(param, unbindApa(getApprox(ap)), config) and
+        fwdFlowInMayFlowThrough(call, cc, _, summaryCtx, argAp, param, ap, _, config) and
         pos = param.getPosition()
       )
     }
@@ -1505,41 +1596,55 @@ private module MkStage<StageSig PrevStage> {
       fwdFlowConsCand(ap1, c, ap2, config)
     }
 
-    pragma[nomagic]
-    private predicate returnFlowsThrough0(
-      RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, DataFlowCallable c,
-      ParameterPosition ppos, Ap argAp, Ap ap, Configuration config
-    ) {
-      exists(boolean allowsFieldFlow |
-        fwdFlow(ret, state, ccc, TParameterPositionSome(ppos), apSome(argAp), ap, config) and
-        flowThroughOutOfCall(_, c, _, pragma[only_bind_into](ret), kind, _, allowsFieldFlow,
-          pragma[only_bind_into](config)) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
-      )
-    }
-
     pragma[nomagic]
     private predicate returnFlowsThrough(
       RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, ParamNodeEx p, Ap argAp,
       Ap ap, Configuration config
     ) {
-      exists(DataFlowCallable c, ParameterPosition ppos |
-        returnFlowsThrough0(ret, kind, state, ccc, c, ppos, argAp, ap, config) and
-        p.isParameterOf(c, ppos) and
-        parameterFlowThroughAllowed(p, kind)
+      exists(boolean allowsFieldFlow, ApApprox argApa, ApApprox apa |
+        fwdFlowRetFromArg(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc), _, p,
+          argAp, pragma[only_bind_into](argApa), ap, pragma[only_bind_into](apa), config) and
+        kind = ret.getKind() and
+        fwdFlowThroughOutOfCall(_, ccc, ret, _, allowsFieldFlow, argApa, apa, config) and
+        (if allowsFieldFlow = false then ap instanceof ApNil else any())
       )
     }
 
     pragma[nomagic]
     private predicate flowThroughIntoCall(
-      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp,
+      Configuration config
     ) {
-      exists(Ap argAp |
-        flowIntoCall(call, pragma[only_bind_into](arg), pragma[only_bind_into](p), allowsFieldFlow,
+      exists(ApApprox argApa |
+        flowIntoCallApa(call, pragma[only_bind_into](arg), pragma[only_bind_into](p),
+          allowsFieldFlow, argApa, pragma[only_bind_into](config)) and
+        fwdFlow(arg, _, _, _, _, pragma[only_bind_into](argAp), argApa,
           pragma[only_bind_into](config)) and
-        fwdFlow(arg, _, _, _, _, pragma[only_bind_into](argAp), pragma[only_bind_into](config)) and
         returnFlowsThrough(_, _, _, _, p, pragma[only_bind_into](argAp), _,
-          pragma[only_bind_into](config))
+          pragma[only_bind_into](config)) and
+        if allowsFieldFlow = false then argAp instanceof ApNil else any()
+      )
+    }
+
+    pragma[nomagic]
+    private predicate flowIntoCallAp(
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap ap,
+      Configuration config
+    ) {
+      exists(ApApprox apa |
+        flowIntoCallApa(call, arg, p, allowsFieldFlow, apa, config) and
+        fwdFlow(arg, _, _, _, _, ap, apa, config)
+      )
+    }
+
+    pragma[nomagic]
+    private predicate flowOutOfCallAp(
+      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
+      Ap ap, Configuration config
+    ) {
+      exists(ApApprox apa |
+        flowOutOfCallApa(call, ret, kind, out, allowsFieldFlow, apa, config) and
+        fwdFlow(ret, _, _, _, _, ap, apa, config)
       )
     }
 
@@ -1628,7 +1733,7 @@ private module MkStage<StageSig PrevStage> {
       // flow into a callable
       exists(ParamNodeEx p, boolean allowsFieldFlow |
         revFlow(p, state, TReturnCtxNone(), returnAp, ap, config) and
-        flowIntoCall(_, node, p, allowsFieldFlow, config) and
+        flowIntoCallAp(_, node, p, allowsFieldFlow, ap, config) and
         (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
         returnCtx = TReturnCtxNone()
       )
@@ -1682,22 +1787,41 @@ private module MkStage<StageSig PrevStage> {
     ) {
       exists(NodeEx out, boolean allowsFieldFlow |
         revFlow(out, state, returnCtx, returnAp, ap, config) and
-        flowOutOfCall(call, ret, kind, out, allowsFieldFlow, config) and
+        flowOutOfCallAp(call, ret, kind, out, allowsFieldFlow, ap, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
+    /**
+     * Same as `flowThroughIntoCall`, but restricted to calls that are reached
+     * in the flow covered by `revFlow`, where data might flow through the target
+     * callable and back out at `call`.
+     */
+    pragma[nomagic]
+    private predicate revFlowThroughIntoCall(
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp,
+      Configuration config
+    ) {
+      flowThroughIntoCall(call, arg, p, allowsFieldFlow, argAp, config) and
+      revFlowIsReturned(call, _, _, _, _, config)
+    }
+
+    pragma[nomagic]
+    private predicate revFlowParamToReturn(
+      ParamNodeEx p, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap, Configuration config
+    ) {
+      revFlow(p, state, TReturnCtxMaybeFlowThrough(kind), apSome(returnAp), ap, config) and
+      parameterFlowThroughAllowed(p, kind)
+    }
+
     pragma[nomagic]
     private predicate revFlowInToReturn(
       DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap,
       Configuration config
     ) {
       exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(pragma[only_bind_into](p), state,
-          TReturnCtxMaybeFlowThrough(pragma[only_bind_into](kind)), apSome(returnAp), ap, config) and
-        flowThroughIntoCall(call, arg, p, allowsFieldFlow, config) and
-        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
-        parameterFlowThroughAllowed(p, kind)
+        revFlowParamToReturn(p, state, kind, returnAp, ap, config) and
+        revFlowThroughIntoCall(call, arg, p, allowsFieldFlow, ap, config)
       )
     }
 
@@ -1750,6 +1874,11 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     predicate revFlow(NodeEx node, Configuration config) { revFlow(node, _, _, _, _, config) }
 
+    pragma[nomagic]
+    predicate revFlowAp(NodeEx node, Ap ap, Configuration config) {
+      revFlow(node, _, _, _, ap, config)
+    }
+
     // use an alias as a workaround for bad functionality-induced joins
     pragma[nomagic]
     additional predicate revFlowAlias(NodeEx node, Configuration config) {
@@ -1786,9 +1915,9 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate parameterFlowsThroughRev(
-      ParamNodeEx p, Ap ap, ReturnKindExt kind, Configuration config
+      ParamNodeEx p, Ap ap, ReturnKindExt kind, Ap returnAp, Configuration config
     ) {
-      revFlow(p, _, TReturnCtxMaybeFlowThrough(kind), apSome(_), ap, config) and
+      revFlow(p, _, TReturnCtxMaybeFlowThrough(kind), apSome(returnAp), ap, config) and
       parameterFlowThroughAllowed(p, kind)
     }
 
@@ -1796,27 +1925,36 @@ private module MkStage<StageSig PrevStage> {
     predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
       exists(RetNodeEx ret, ReturnKindExt kind |
         returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
-        parameterFlowsThroughRev(p, ap, kind, config)
+        parameterFlowsThroughRev(p, ap, kind, _, config)
       )
     }
 
     pragma[nomagic]
-    predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config) {
-      exists(ParamNodeEx p, Ap ap |
-        returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
-        parameterFlowsThroughRev(p, ap, kind, config)
+    predicate returnMayFlowThrough(
+      RetNodeEx ret, Ap argAp, Ap ap, ReturnKindExt kind, Configuration config
+    ) {
+      exists(ParamNodeEx p |
+        returnFlowsThrough(ret, kind, _, _, p, argAp, ap, config) and
+        parameterFlowsThroughRev(p, argAp, kind, ap, config)
+      )
+    }
+
+    pragma[nomagic]
+    predicate revFlowInToReturnIsReturned(
+      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnCtx returnCtx, ApOption returnAp,
+      Ap ap, Configuration config
+    ) {
+      exists(ReturnKindExt returnKind0, Ap returnAp0 |
+        revFlowInToReturn(call, arg, state, returnKind0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
       )
     }
 
     pragma[nomagic]
     predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
-      exists(
-        ReturnKindExt returnKind0, Ap returnAp0, ArgNodeEx arg, FlowState state,
-        ReturnCtx returnCtx, ApOption returnAp, Ap ap
-      |
+      exists(ArgNodeEx arg, FlowState state, ReturnCtx returnCtx, ApOption returnAp, Ap ap |
         revFlow(arg, state, returnCtx, returnAp, ap, config) and
-        revFlowInToReturn(call, arg, state, returnKind0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
+        revFlowInToReturnIsReturned(call, arg, state, returnCtx, returnAp, ap, config)
       )
     }
 
@@ -2179,16 +2317,16 @@ private module LocalFlowBigStep {
   pragma[nomagic]
   predicate localFlowBigStep(
     NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
-    AccessPathFrontNil apf, Configuration config, LocalCallContext callContext
+    DataFlowType t, Configuration config, LocalCallContext callContext
   ) {
-    localFlowStepPlus(node1, state1, node2, preservesValue, apf.getType(), config, callContext) and
+    localFlowStepPlus(node1, state1, node2, preservesValue, t, config, callContext) and
     localFlowExit(node2, state1, config) and
     state1 = state2
     or
     additionalLocalFlowStepNodeCand2(node1, state1, node2, state2, config) and
     state1 != state2 and
     preservesValue = false and
-    apf = TFrontNil(node2.getDataFlowType()) and
+    t = node2.getDataFlowType() and
     callContext.relevantFor(node1.getEnclosingCallable()) and
     not exists(DataFlowCall call | call = callContext.(LocalCallContextSpecificCall).getCall() |
       isUnreachableInCallCached(node1.asNode(), call) or
@@ -2202,11 +2340,87 @@ private import LocalFlowBigStep
 private module Stage3Param implements MkStage<Stage2>::StageParam {
   private module PrevStage = Stage2;
 
+  class Ap = ApproxAccessPathFront;
+
+  class ApNil = ApproxAccessPathFrontNil;
+
+  PrevStage::Ap getApprox(Ap ap) { result = ap.toBoolNonEmpty() }
+
+  ApNil getApNil(NodeEx node) {
+    PrevStage::revFlow(node, _) and result = TApproxFrontNil(node.getDataFlowType())
+  }
+
+  bindingset[tc, tail]
+  Ap apCons(TypedContent tc, Ap tail) { result.getAHead() = tc and exists(tail) }
+
+  pragma[noinline]
+  Content getHeadContent(Ap ap) { result = ap.getAHead().getContent() }
+
+  class ApOption = ApproxAccessPathFrontOption;
+
+  ApOption apNone() { result = TApproxAccessPathFrontNone() }
+
+  ApOption apSome(Ap ap) { result = TApproxAccessPathFrontSome(ap) }
+
+  import BooleanCallContext
+
+  predicate localStep(
+    NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
+    ApproxAccessPathFrontNil ap, Configuration config, LocalCc lcc
+  ) {
+    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap.getType(), config, _) and
+    exists(lcc)
+  }
+
+  predicate flowOutOfCall = flowOutOfCallNodeCand2/6;
+
+  predicate flowIntoCall = flowIntoCallNodeCand2/5;
+
+  pragma[nomagic]
+  private predicate expectsContentCand(NodeEx node, Ap ap, Configuration config) {
+    exists(Content c |
+      PrevStage::revFlow(node, pragma[only_bind_into](config)) and
+      PrevStage::readStepCand(_, c, _, pragma[only_bind_into](config)) and
+      expectsContentEx(node, c) and
+      c = ap.getAHead().getContent()
+    )
+  }
+
+  pragma[nomagic]
+  private predicate castingNodeEx(NodeEx node) { node.asNode() instanceof CastingNode }
+
+  bindingset[node, state, ap, config]
+  predicate filter(NodeEx node, FlowState state, Ap ap, Configuration config) {
+    exists(state) and
+    exists(config) and
+    (if castingNodeEx(node) then compatibleTypes(node.getDataFlowType(), ap.getType()) else any()) and
+    (
+      notExpectsContent(node)
+      or
+      expectsContentCand(node, ap, config)
+    )
+  }
+
+  bindingset[ap, contentType]
+  predicate typecheckStore(Ap ap, DataFlowType contentType) {
+    // We need to typecheck stores here, since reverse flow through a getter
+    // might have a different type here compared to inside the getter.
+    compatibleTypes(ap.getType(), contentType)
+  }
+}
+
+private module Stage3 implements StageSig {
+  import MkStage<Stage2>::Stage<Stage3Param>
+}
+
+private module Stage4Param implements MkStage<Stage3>::StageParam {
+  private module PrevStage = Stage3;
+
   class Ap = AccessPathFront;
 
   class ApNil = AccessPathFrontNil;
 
-  PrevStage::Ap getApprox(Ap ap) { result = ap.toBoolNonEmpty() }
+  PrevStage::Ap getApprox(Ap ap) { result = ap.toApprox() }
 
   ApNil getApNil(NodeEx node) {
     PrevStage::revFlow(node, _) and result = TFrontNil(node.getDataFlowType())
@@ -2226,16 +2440,42 @@ private module Stage3Param implements MkStage<Stage2>::StageParam {
 
   import BooleanCallContext
 
+  pragma[nomagic]
   predicate localStep(
     NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
     ApNil ap, Configuration config, LocalCc lcc
   ) {
-    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap, config, _) and exists(lcc)
+    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap.getType(), config, _) and
+    PrevStage::revFlow(node1, pragma[only_bind_into](state1), _, pragma[only_bind_into](config)) and
+    PrevStage::revFlowAlias(node2, pragma[only_bind_into](state2), _, pragma[only_bind_into](config)) and
+    exists(lcc)
   }
 
-  predicate flowOutOfCall = flowOutOfCallNodeCand2/6;
+  pragma[nomagic]
+  predicate flowOutOfCall(
+    DataFlowCall call, RetNodeEx node1, ReturnKindExt kind, NodeEx node2, boolean allowsFieldFlow,
+    Configuration config
+  ) {
+    exists(FlowState state |
+      flowOutOfCallNodeCand2(call, node1, kind, node2, allowsFieldFlow, config) and
+      PrevStage::revFlow(node2, pragma[only_bind_into](state), _, pragma[only_bind_into](config)) and
+      PrevStage::revFlowAlias(node1, pragma[only_bind_into](state), _,
+        pragma[only_bind_into](config))
+    )
+  }
 
-  predicate flowIntoCall = flowIntoCallNodeCand2/5;
+  pragma[nomagic]
+  predicate flowIntoCall(
+    DataFlowCall call, ArgNodeEx node1, ParamNodeEx node2, boolean allowsFieldFlow,
+    Configuration config
+  ) {
+    exists(FlowState state |
+      flowIntoCallNodeCand2(call, node1, node2, allowsFieldFlow, config) and
+      PrevStage::revFlow(node2, pragma[only_bind_into](state), _, pragma[only_bind_into](config)) and
+      PrevStage::revFlowAlias(node1, pragma[only_bind_into](state), _,
+        pragma[only_bind_into](config))
+    )
+  }
 
   pragma[nomagic]
   private predicate clearSet(NodeEx node, ContentSet c, Configuration config) {
@@ -2291,8 +2531,8 @@ private module Stage3Param implements MkStage<Stage2>::StageParam {
   }
 }
 
-private module Stage3 implements StageSig {
-  import MkStage<Stage2>::Stage<Stage3Param>
+private module Stage4 implements StageSig {
+  import MkStage<Stage3>::Stage<Stage4Param>
 }
 
 /**
@@ -2303,8 +2543,8 @@ private predicate flowCandSummaryCtx(
   NodeEx node, FlowState state, AccessPathFront argApf, Configuration config
 ) {
   exists(AccessPathFront apf |
-    Stage3::revFlow(node, state, TReturnCtxMaybeFlowThrough(_), _, apf, config) and
-    Stage3::fwdFlow(node, state, any(Stage3::CcCall ccc), _, TAccessPathFrontSome(argApf), apf,
+    Stage4::revFlow(node, state, TReturnCtxMaybeFlowThrough(_), _, apf, config) and
+    Stage4::fwdFlow(node, state, any(Stage4::CcCall ccc), _, TAccessPathFrontSome(argApf), apf,
       config)
   )
 }
@@ -2315,10 +2555,10 @@ private predicate flowCandSummaryCtx(
  */
 private predicate expensiveLen2unfolding(TypedContent tc, Configuration config) {
   exists(int tails, int nodes, int apLimit, int tupleLimit |
-    tails = strictcount(AccessPathFront apf | Stage3::consCand(tc, apf, config)) and
+    tails = strictcount(AccessPathFront apf | Stage4::consCand(tc, apf, config)) and
     nodes =
       strictcount(NodeEx n, FlowState state |
-        Stage3::revFlow(n, state, any(AccessPathFrontHead apf | apf.getHead() = tc), config)
+        Stage4::revFlow(n, state, any(AccessPathFrontHead apf | apf.getHead() = tc), config)
         or
         flowCandSummaryCtx(n, state, any(AccessPathFrontHead apf | apf.getHead() = tc), config)
       ) and
@@ -2332,11 +2572,11 @@ private predicate expensiveLen2unfolding(TypedContent tc, Configuration config)
 private newtype TAccessPathApprox =
   TNil(DataFlowType t) or
   TConsNil(TypedContent tc, DataFlowType t) {
-    Stage3::consCand(tc, TFrontNil(t), _) and
+    Stage4::consCand(tc, TFrontNil(t), _) and
     not expensiveLen2unfolding(tc, _)
   } or
   TConsCons(TypedContent tc1, TypedContent tc2, int len) {
-    Stage3::consCand(tc1, TFrontHead(tc2), _) and
+    Stage4::consCand(tc1, TFrontHead(tc2), _) and
     len in [2 .. accessPathLimit()] and
     not expensiveLen2unfolding(tc1, _)
   } or
@@ -2466,7 +2706,7 @@ private class AccessPathApproxCons1 extends AccessPathApproxCons, TCons1 {
   override AccessPathApprox pop(TypedContent head) {
     head = tc and
     (
-      exists(TypedContent tc2 | Stage3::consCand(tc, TFrontHead(tc2), _) |
+      exists(TypedContent tc2 | Stage4::consCand(tc, TFrontHead(tc2), _) |
         result = TConsCons(tc2, _, len - 1)
         or
         len = 2 and
@@ -2477,7 +2717,7 @@ private class AccessPathApproxCons1 extends AccessPathApproxCons, TCons1 {
       or
       exists(DataFlowType t |
         len = 1 and
-        Stage3::consCand(tc, TFrontNil(t), _) and
+        Stage4::consCand(tc, TFrontNil(t), _) and
         result = TNil(t)
       )
     )
@@ -2502,13 +2742,14 @@ private class AccessPathApproxOption extends TAccessPathApproxOption {
   }
 }
 
-private module Stage4Param implements MkStage<Stage3>::StageParam {
-  private module PrevStage = Stage3;
+private module Stage5Param implements MkStage<Stage4>::StageParam {
+  private module PrevStage = Stage4;
 
   class Ap = AccessPathApprox;
 
   class ApNil = AccessPathApproxNil;
 
+  pragma[nomagic]
   PrevStage::Ap getApprox(Ap ap) { result = ap.getFront() }
 
   ApNil getApNil(NodeEx node) {
@@ -2534,7 +2775,9 @@ private module Stage4Param implements MkStage<Stage3>::StageParam {
     NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
     ApNil ap, Configuration config, LocalCc lcc
   ) {
-    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap.getFront(), config, lcc)
+    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap.getType(), config, lcc) and
+    PrevStage::revFlow(node1, pragma[only_bind_into](state1), _, pragma[only_bind_into](config)) and
+    PrevStage::revFlowAlias(node2, pragma[only_bind_into](state2), _, pragma[only_bind_into](config))
   }
 
   pragma[nomagic]
@@ -2571,7 +2814,7 @@ private module Stage4Param implements MkStage<Stage3>::StageParam {
   predicate typecheckStore(Ap ap, DataFlowType contentType) { any() }
 }
 
-private module Stage4 = MkStage<Stage3>::Stage<Stage4Param>;
+private module Stage5 = MkStage<Stage4>::Stage<Stage5Param>;
 
 bindingset[conf, result]
 private Configuration unbindConf(Configuration conf) {
@@ -2585,8 +2828,8 @@ private predicate nodeMayUseSummary0(
 ) {
   exists(AccessPathApprox apa0 |
     c = n.getEnclosingCallable() and
-    Stage4::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
-    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TParameterPositionSome(pos),
+    Stage5::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
+    Stage5::fwdFlow(n, state, any(CallContextCall ccc), TParameterPositionSome(pos),
       TAccessPathApproxSome(apa), apa0, config)
   )
 }
@@ -2596,7 +2839,7 @@ private predicate nodeMayUseSummary(
   NodeEx n, FlowState state, AccessPathApprox apa, Configuration config
 ) {
   exists(DataFlowCallable c, ParameterPosition pos, ParamNodeEx p |
-    Stage4::parameterMayFlowThrough(p, apa, config) and
+    Stage5::parameterMayFlowThrough(p, apa, config) and
     nodeMayUseSummary0(n, c, pos, state, apa, config) and
     p.isParameterOf(c, pos)
   )
@@ -2606,8 +2849,8 @@ private newtype TSummaryCtx =
   TSummaryCtxNone() or
   TSummaryCtxSome(ParamNodeEx p, FlowState state, AccessPath ap) {
     exists(Configuration config |
-      Stage4::parameterMayFlowThrough(p, ap.getApprox(), config) and
-      Stage4::revFlow(p, state, _, config)
+      Stage5::parameterMayFlowThrough(p, ap.getApprox(), config) and
+      Stage5::revFlow(p, state, _, config)
     )
   }
 
@@ -2656,7 +2899,7 @@ private int count1to2unfold(AccessPathApproxCons1 apa, Configuration config) {
     len = apa.len() and
     result =
       strictcount(AccessPathFront apf |
-        Stage4::consCand(tc, any(AccessPathApprox ap | ap.getFront() = apf and ap.len() = len - 1),
+        Stage5::consCand(tc, any(AccessPathApprox ap | ap.getFront() = apf and ap.len() = len - 1),
           config)
       )
   )
@@ -2665,7 +2908,7 @@ private int count1to2unfold(AccessPathApproxCons1 apa, Configuration config) {
 private int countNodesUsingAccessPath(AccessPathApprox apa, Configuration config) {
   result =
     strictcount(NodeEx n, FlowState state |
-      Stage4::revFlow(n, state, apa, config) or nodeMayUseSummary(n, state, apa, config)
+      Stage5::revFlow(n, state, apa, config) or nodeMayUseSummary(n, state, apa, config)
     )
 }
 
@@ -2686,7 +2929,7 @@ private predicate expensiveLen1to2unfolding(AccessPathApproxCons1 apa, Configura
 private AccessPathApprox getATail(AccessPathApprox apa, Configuration config) {
   exists(TypedContent head |
     apa.pop(head) = result and
-    Stage4::consCand(head, result, config)
+    Stage5::consCand(head, result, config)
   )
 }
 
@@ -2768,7 +3011,7 @@ private newtype TPathNode =
     NodeEx node, FlowState state, CallContext cc, SummaryCtx sc, AccessPath ap, Configuration config
   ) {
     // A PathNode is introduced by a source ...
-    Stage4::revFlow(node, state, config) and
+    Stage5::revFlow(node, state, config) and
     sourceNode(node, state, config) and
     (
       if hasSourceCallCtx(config)
@@ -2782,7 +3025,7 @@ private newtype TPathNode =
     exists(PathNodeMid mid |
       pathStep(mid, node, state, cc, sc, ap) and
       pragma[only_bind_into](config) = mid.getConfiguration() and
-      Stage4::revFlow(node, state, ap.getApprox(), pragma[only_bind_into](config))
+      Stage5::revFlow(node, state, ap.getApprox(), pragma[only_bind_into](config))
     )
   } or
   TPathNodeSink(NodeEx node, FlowState state, Configuration config) {
@@ -2924,7 +3167,7 @@ private class AccessPathCons2 extends AccessPath, TAccessPathCons2 {
   override TypedContent getHead() { result = head1 }
 
   override AccessPath getTail() {
-    Stage4::consCand(head1, result.getApprox(), _) and
+    Stage5::consCand(head1, result.getApprox(), _) and
     result.getHead() = head2 and
     result.length() = len - 1
   }
@@ -2955,7 +3198,7 @@ private class AccessPathCons1 extends AccessPath, TAccessPathCons1 {
   override TypedContent getHead() { result = head }
 
   override AccessPath getTail() {
-    Stage4::consCand(head, result.getApprox(), _) and result.length() = len - 1
+    Stage5::consCand(head, result.getApprox(), _) and result.length() = len - 1
   }
 
   override AccessPathFrontHead getFront() { result = TFrontHead(head) }
@@ -3347,7 +3590,8 @@ private predicate pathStep(
     AccessPath ap0, NodeEx midnode, FlowState state0, Configuration conf, LocalCallContext localCC
   |
     pathNode(mid, midnode, state0, cc, sc, ap0, conf, localCC) and
-    localFlowBigStep(midnode, state0, node, state, false, ap.getFront(), conf, localCC) and
+    localFlowBigStep(midnode, state0, node, state, false, ap.(AccessPathNil).getType(), conf,
+      localCC) and
     ap0 instanceof AccessPathNil
   )
   or
@@ -3389,7 +3633,7 @@ private predicate pathReadStep(
 ) {
   ap0 = mid.getAp() and
   tc = ap0.getHead() and
-  Stage4::readStepCand(mid.getNodeEx(), tc.getContent(), node, mid.getConfiguration()) and
+  Stage5::readStepCand(mid.getNodeEx(), tc.getContent(), node, mid.getConfiguration()) and
   state = mid.getState() and
   cc = mid.getCallContext()
 }
@@ -3399,7 +3643,7 @@ private predicate pathStoreStep(
   PathNodeMid mid, NodeEx node, FlowState state, AccessPath ap0, TypedContent tc, CallContext cc
 ) {
   ap0 = mid.getAp() and
-  Stage4::storeStepCand(mid.getNodeEx(), _, tc, node, _, mid.getConfiguration()) and
+  Stage5::storeStepCand(mid.getNodeEx(), _, tc, node, _, mid.getConfiguration()) and
   state = mid.getState() and
   cc = mid.getCallContext()
 }
@@ -3436,7 +3680,7 @@ private NodeEx getAnOutNodeFlow(
   ReturnKindExt kind, DataFlowCall call, AccessPathApprox apa, Configuration config
 ) {
   result.asNode() = kind.getAnOutNode(call) and
-  Stage4::revFlow(result, _, apa, config)
+  Stage5::revFlow(result, _, apa, config)
 }
 
 /**
@@ -3472,7 +3716,7 @@ private predicate parameterCand(
   DataFlowCallable callable, ParameterPosition pos, AccessPathApprox apa, Configuration config
 ) {
   exists(ParamNodeEx p |
-    Stage4::revFlow(p, _, apa, config) and
+    Stage5::revFlow(p, _, apa, config) and
     p.isParameterOf(callable, pos)
   )
 }
@@ -3751,9 +3995,17 @@ predicate stageStats(
   n = 45 and
   Stage4::stats(false, nodes, fields, conscand, states, tuples, config)
   or
-  stage = "5 Fwd" and n = 50 and finalStats(true, nodes, fields, conscand, states, tuples)
+  stage = "5 Fwd" and
+  n = 50 and
+  Stage5::stats(true, nodes, fields, conscand, states, tuples, config)
   or
-  stage = "5 Rev" and n = 55 and finalStats(false, nodes, fields, conscand, states, tuples)
+  stage = "5 Rev" and
+  n = 55 and
+  Stage5::stats(false, nodes, fields, conscand, states, tuples, config)
+  or
+  stage = "6 Fwd" and n = 60 and finalStats(true, nodes, fields, conscand, states, tuples)
+  or
+  stage = "6 Rev" and n = 65 and finalStats(false, nodes, fields, conscand, states, tuples)
 }
 
 private module FlowExploration {
diff --git a/python/ql/lib/semmle/python/dataflow/new/internal/DataFlowImplCommon.qll b/python/ql/lib/semmle/python/dataflow/new/internal/DataFlowImplCommon.qll
index f981834a6d4..c66aefced8d 100644
--- a/python/ql/lib/semmle/python/dataflow/new/internal/DataFlowImplCommon.qll
+++ b/python/ql/lib/semmle/python/dataflow/new/internal/DataFlowImplCommon.qll
@@ -926,18 +926,46 @@ private module Cached {
     TReturnCtxNoFlowThrough() or
     TReturnCtxMaybeFlowThrough(ReturnKindExt kind)
 
+  cached
+  newtype TTypedContentApprox =
+    MkTypedContentApprox(ContentApprox c, DataFlowType t) {
+      exists(Content cont |
+        c = getContentApprox(cont) and
+        store(_, cont, _, _, t)
+      )
+    }
+
   cached
   newtype TTypedContent = MkTypedContent(Content c, DataFlowType t) { store(_, c, _, _, t) }
 
+  cached
+  TypedContent getATypedContent(TypedContentApprox c) {
+    exists(ContentApprox cls, DataFlowType t, Content cont |
+      c = MkTypedContentApprox(cls, pragma[only_bind_into](t)) and
+      result = MkTypedContent(cont, pragma[only_bind_into](t)) and
+      cls = getContentApprox(cont)
+    )
+  }
+
   cached
   newtype TAccessPathFront =
     TFrontNil(DataFlowType t) or
     TFrontHead(TypedContent tc)
 
+  cached
+  newtype TApproxAccessPathFront =
+    TApproxFrontNil(DataFlowType t) or
+    TApproxFrontHead(TypedContentApprox tc)
+
   cached
   newtype TAccessPathFrontOption =
     TAccessPathFrontNone() or
     TAccessPathFrontSome(AccessPathFront apf)
+
+  cached
+  newtype TApproxAccessPathFrontOption =
+    TApproxAccessPathFrontNone() or
+    TApproxAccessPathFrontSome(ApproxAccessPathFront apf)
 }
 
 /**
@@ -1353,6 +1381,75 @@ class ReturnCtx extends TReturnCtx {
   }
 }
 
+/** An approximated `Content` tagged with the type of a containing object. */
+class TypedContentApprox extends MkTypedContentApprox {
+  private ContentApprox c;
+  private DataFlowType t;
+
+  TypedContentApprox() { this = MkTypedContentApprox(c, t) }
+
+  /** Gets a typed content approximated by this value. */
+  TypedContent getATypedContent() { result = getATypedContent(this) }
+
+  /** Gets the container type. */
+  DataFlowType getContainerType() { result = t }
+
+  /** Gets a textual representation of this approximated content. */
+  string toString() { result = c.toString() }
+}
+
+/**
+ * The front of an approximated access path. This is either a head or a nil.
+ */
+abstract class ApproxAccessPathFront extends TApproxAccessPathFront {
+  abstract string toString();
+
+  abstract DataFlowType getType();
+
+  abstract boolean toBoolNonEmpty();
+
+  pragma[nomagic]
+  TypedContent getAHead() {
+    exists(TypedContentApprox cont |
+      this = TApproxFrontHead(cont) and
+      result = cont.getATypedContent()
+    )
+  }
+}
+
+class ApproxAccessPathFrontNil extends ApproxAccessPathFront, TApproxFrontNil {
+  private DataFlowType t;
+
+  ApproxAccessPathFrontNil() { this = TApproxFrontNil(t) }
+
+  override string toString() { result = ppReprType(t) }
+
+  override DataFlowType getType() { result = t }
+
+  override boolean toBoolNonEmpty() { result = false }
+}
+
+class ApproxAccessPathFrontHead extends ApproxAccessPathFront, TApproxFrontHead {
+  private TypedContentApprox tc;
+
+  ApproxAccessPathFrontHead() { this = TApproxFrontHead(tc) }
+
+  override string toString() { result = tc.toString() }
+
+  override DataFlowType getType() { result = tc.getContainerType() }
+
+  override boolean toBoolNonEmpty() { result = true }
+}
+
+/** An optional approximated access path front. */
+class ApproxAccessPathFrontOption extends TApproxAccessPathFrontOption {
+  string toString() {
+    this = TApproxAccessPathFrontNone() and result = "<none>"
+    or
+    this = TApproxAccessPathFrontSome(any(ApproxAccessPathFront apf | result = apf.toString()))
+  }
+}
+
 /** A `Content` tagged with the type of a containing object. */
 class TypedContent extends MkTypedContent {
   private Content c;
@@ -1385,7 +1482,7 @@ abstract class AccessPathFront extends TAccessPathFront {
 
   abstract DataFlowType getType();
 
-  abstract boolean toBoolNonEmpty();
+  abstract ApproxAccessPathFront toApprox();
 
   TypedContent getHead() { this = TFrontHead(result) }
 }
@@ -1399,7 +1496,7 @@ class AccessPathFrontNil extends AccessPathFront, TFrontNil {
 
   override DataFlowType getType() { result = t }
 
-  override boolean toBoolNonEmpty() { result = false }
+  override ApproxAccessPathFront toApprox() { result = TApproxFrontNil(t) }
 }
 
 class AccessPathFrontHead extends AccessPathFront, TFrontHead {
@@ -1411,7 +1508,7 @@ class AccessPathFrontHead extends AccessPathFront, TFrontHead {
 
   override DataFlowType getType() { result = tc.getContainerType() }
 
-  override boolean toBoolNonEmpty() { result = true }
+  override ApproxAccessPathFront toApprox() { result.getAHead() = tc }
 }
 
 /** An optional access path front. */
diff --git a/python/ql/lib/semmle/python/dataflow/new/internal/DataFlowImplConsistency.qll b/python/ql/lib/semmle/python/dataflow/new/internal/DataFlowImplConsistency.qll
index 3eacc21f356..e85e0cd92ec 100644
--- a/python/ql/lib/semmle/python/dataflow/new/internal/DataFlowImplConsistency.qll
+++ b/python/ql/lib/semmle/python/dataflow/new/internal/DataFlowImplConsistency.qll
@@ -260,4 +260,9 @@ module Consistency {
     not exists(unique(ParameterPosition pos0 | isParameterNode(p, c, pos0))) and
     msg = "Parameter node with multiple positions."
   }
+
+  query predicate uniqueContentApprox(Content c, string msg) {
+    not exists(unique(ContentApprox approx | approx = getContentApprox(c))) and
+    msg = "Non-unique content approximation."
+  }
 }
diff --git a/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImpl2.qll b/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImpl2.qll
index ccde916a3c2..6741ccc2f06 100644
--- a/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImpl2.qll
+++ b/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImpl2.qll
@@ -621,23 +621,6 @@ private predicate parameterFlowThroughAllowed(ParamNodeEx p, ReturnKindExt kind)
   )
 }
 
-/**
- * Holds if flow from a parameter at position `pos` inside `c` to a return node of
- * kind `kind` is allowed.
- *
- * We don't expect a parameter to return stored in itself, unless
- * explicitly allowed
- */
-bindingset[c, pos, kind]
-private predicate parameterFlowThroughAllowed(
-  DataFlowCallable c, ParameterPosition pos, ReturnKindExt kind
-) {
-  exists(ParamNodeEx p |
-    p.isParameterOf(c, pos) and
-    parameterFlowThroughAllowed(p, kind)
-  )
-}
-
 private module Stage1 implements StageSig {
   class Ap = Unit;
 
@@ -980,6 +963,12 @@ private module Stage1 implements StageSig {
   pragma[nomagic]
   predicate revFlow(NodeEx node, Configuration config) { revFlow(node, _, config) }
 
+  pragma[nomagic]
+  predicate revFlowAp(NodeEx node, Ap ap, Configuration config) {
+    revFlow(node, config) and
+    exists(ap)
+  }
+
   bindingset[node, state, config]
   predicate revFlow(NodeEx node, FlowState state, Ap ap, Configuration config) {
     revFlow(node, _, pragma[only_bind_into](config)) and
@@ -1022,9 +1011,13 @@ private module Stage1 implements StageSig {
   }
 
   pragma[nomagic]
-  predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config) {
+  predicate returnMayFlowThrough(
+    RetNodeEx ret, Ap argAp, Ap ap, ReturnKindExt kind, Configuration config
+  ) {
     throughFlowNodeCand(ret, config) and
-    kind = ret.getKind()
+    kind = ret.getKind() and
+    exists(argAp) and
+    exists(ap)
   }
 
   pragma[nomagic]
@@ -1189,6 +1182,8 @@ private signature module StageSig {
 
   predicate revFlow(NodeEx node, Configuration config);
 
+  predicate revFlowAp(NodeEx node, Ap ap, Configuration config);
+
   bindingset[node, state, config]
   predicate revFlow(NodeEx node, FlowState state, Ap ap, Configuration config);
 
@@ -1196,7 +1191,9 @@ private signature module StageSig {
 
   predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config);
 
-  predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config);
+  predicate returnMayFlowThrough(
+    RetNodeEx ret, Ap argAp, Ap ap, ReturnKindExt kind, Configuration config
+  );
 
   predicate storeStepCand(
     NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, DataFlowType contentType,
@@ -1281,21 +1278,43 @@ private module MkStage<StageSig PrevStage> {
     import Param
 
     /* Begin: Stage logic. */
-    bindingset[result, apa]
-    private ApApprox unbindApa(ApApprox apa) {
-      pragma[only_bind_out](apa) = pragma[only_bind_out](result)
+    // use an alias as a workaround for bad functionality-induced joins
+    pragma[nomagic]
+    private predicate revFlowApAlias(NodeEx node, ApApprox apa, Configuration config) {
+      PrevStage::revFlowAp(node, apa, config)
+    }
+
+    pragma[nomagic]
+    private predicate flowIntoCallApa(
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, ApApprox apa,
+      Configuration config
+    ) {
+      flowIntoCall(call, arg, p, allowsFieldFlow, config) and
+      PrevStage::revFlowAp(p, pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
+      revFlowApAlias(arg, pragma[only_bind_into](apa), pragma[only_bind_into](config))
+    }
+
+    pragma[nomagic]
+    private predicate flowOutOfCallApa(
+      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
+      ApApprox apa, Configuration config
+    ) {
+      flowOutOfCall(call, ret, kind, out, allowsFieldFlow, config) and
+      PrevStage::revFlowAp(out, pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
+      revFlowApAlias(ret, pragma[only_bind_into](apa), pragma[only_bind_into](config))
     }
 
     pragma[nomagic]
     private predicate flowThroughOutOfCall(
-      DataFlowCall call, DataFlowCallable c, CcCall ccc, RetNodeEx ret, ReturnKindExt kind,
-      NodeEx out, boolean allowsFieldFlow, Configuration config
+      DataFlowCall call, CcCall ccc, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow,
+      ApApprox argApa, ApApprox apa, Configuration config
     ) {
-      flowOutOfCall(call, ret, kind, out, allowsFieldFlow, pragma[only_bind_into](config)) and
-      PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
-      PrevStage::returnMayFlowThrough(ret, kind, pragma[only_bind_into](config)) and
-      matchesCall(ccc, call) and
-      c = ret.getEnclosingCallable()
+      exists(ReturnKindExt kind |
+        flowOutOfCallApa(call, ret, kind, out, allowsFieldFlow, apa, pragma[only_bind_into](config)) and
+        PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
+        PrevStage::returnMayFlowThrough(ret, argApa, apa, kind, pragma[only_bind_into](config)) and
+        matchesCall(ccc, call)
+      )
     }
 
     /**
@@ -1307,39 +1326,50 @@ private module MkStage<StageSig PrevStage> {
      * corresponding parameter position and access path of that argument, respectively.
      */
     pragma[nomagic]
+    additional predicate fwdFlow(
+      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      Ap ap, ApApprox apa, Configuration config
+    ) {
+      fwdFlow0(node, state, cc, summaryCtx, argAp, ap, apa, config) and
+      PrevStage::revFlow(node, state, apa, config) and
+      filter(node, state, ap, config)
+    }
+
+    pragma[inline]
     additional predicate fwdFlow(
       NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
       Ap ap, Configuration config
     ) {
-      fwdFlow0(node, state, cc, summaryCtx, argAp, ap, config) and
-      PrevStage::revFlow(node, state, unbindApa(getApprox(ap)), config) and
-      filter(node, state, ap, config)
+      fwdFlow(node, state, cc, summaryCtx, argAp, ap, _, config)
     }
 
     pragma[nomagic]
     private predicate fwdFlow0(
       NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      Ap ap, Configuration config
+      Ap ap, ApApprox apa, Configuration config
     ) {
       sourceNode(node, state, config) and
       (if hasSourceCallCtx(config) then cc = ccSomeCall() else cc = ccNone()) and
       argAp = apNone() and
       summaryCtx = TParameterPositionNone() and
-      ap = getApNil(node)
+      ap = getApNil(node) and
+      apa = getApprox(ap)
       or
-      exists(NodeEx mid, FlowState state0, Ap ap0, LocalCc localCc |
-        fwdFlow(mid, state0, cc, summaryCtx, argAp, ap0, config) and
+      exists(NodeEx mid, FlowState state0, Ap ap0, ApApprox apa0, LocalCc localCc |
+        fwdFlow(mid, state0, cc, summaryCtx, argAp, ap0, apa0, config) and
         localCc = getLocalCc(mid, cc)
       |
         localStep(mid, state0, node, state, true, _, config, localCc) and
-        ap = ap0
+        ap = ap0 and
+        apa = apa0
         or
         localStep(mid, state0, node, state, false, ap, config, localCc) and
-        ap0 instanceof ApNil
+        ap0 instanceof ApNil and
+        apa = getApprox(ap)
       )
       or
       exists(NodeEx mid |
-        fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, apa, pragma[only_bind_into](config)) and
         jumpStep(mid, node, config) and
         cc = ccNone() and
         summaryCtx = TParameterPositionNone() and
@@ -1352,7 +1382,8 @@ private module MkStage<StageSig PrevStage> {
         cc = ccNone() and
         summaryCtx = TParameterPositionNone() and
         argAp = apNone() and
-        ap = getApNil(node)
+        ap = getApNil(node) and
+        apa = getApprox(ap)
       )
       or
       exists(NodeEx mid, FlowState state0, ApNil nil |
@@ -1361,32 +1392,32 @@ private module MkStage<StageSig PrevStage> {
         cc = ccNone() and
         summaryCtx = TParameterPositionNone() and
         argAp = apNone() and
-        ap = getApNil(node)
+        ap = getApNil(node) and
+        apa = getApprox(ap)
       )
       or
       // store
       exists(TypedContent tc, Ap ap0 |
         fwdFlowStore(_, ap0, tc, node, state, cc, summaryCtx, argAp, config) and
-        ap = apCons(tc, ap0)
+        ap = apCons(tc, ap0) and
+        apa = getApprox(ap)
       )
       or
       // read
       exists(Ap ap0, Content c |
         fwdFlowRead(ap0, c, _, node, state, cc, summaryCtx, argAp, config) and
-        fwdFlowConsCand(ap0, c, ap, config)
+        fwdFlowConsCand(ap0, c, ap, config) and
+        apa = getApprox(ap)
       )
       or
       // flow into a callable
-      exists(ApApprox apa |
-        fwdFlowIn(_, node, state, _, cc, _, _, ap, config) and
-        apa = getApprox(ap) and
-        if PrevStage::parameterMayFlowThrough(node, apa, config)
-        then (
-          summaryCtx = TParameterPositionSome(node.(ParamNodeEx).getPosition()) and
-          argAp = apSome(ap)
-        ) else (
-          summaryCtx = TParameterPositionNone() and argAp = apNone()
-        )
+      fwdFlowIn(_, node, state, _, cc, _, _, ap, apa, config) and
+      if PrevStage::parameterMayFlowThrough(node, apa, config)
+      then (
+        summaryCtx = TParameterPositionSome(node.(ParamNodeEx).getPosition()) and
+        argAp = apSome(ap)
+      ) else (
+        summaryCtx = TParameterPositionNone() and argAp = apNone()
       )
       or
       // flow out of a callable
@@ -1394,8 +1425,8 @@ private module MkStage<StageSig PrevStage> {
         DataFlowCall call, RetNodeEx ret, boolean allowsFieldFlow, CcNoCall innercc,
         DataFlowCallable inner
       |
-        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, config) and
-        flowOutOfCall(call, ret, _, node, allowsFieldFlow, config) and
+        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, apa, config) and
+        flowOutOfCallApa(call, ret, _, node, allowsFieldFlow, apa, config) and
         inner = ret.getEnclosingCallable() and
         cc = getCallContextReturn(inner, call, innercc) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
@@ -1403,7 +1434,7 @@ private module MkStage<StageSig PrevStage> {
       or
       // flow through a callable
       exists(DataFlowCall call, ParameterPosition summaryCtx0, Ap argAp0 |
-        fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, config) and
+        fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, apa, config) and
         fwdFlowIsEntered(call, cc, summaryCtx, argAp, summaryCtx0, argAp0, config)
       )
     }
@@ -1413,9 +1444,9 @@ private module MkStage<StageSig PrevStage> {
       NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc,
       ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
     ) {
-      exists(DataFlowType contentType |
-        fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, config) and
-        PrevStage::storeStepCand(node1, unbindApa(getApprox(ap1)), tc, node2, contentType, config) and
+      exists(DataFlowType contentType, ApApprox apa1 |
+        fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, apa1, config) and
+        PrevStage::storeStepCand(node1, apa1, tc, node2, contentType, config) and
         typecheckStore(ap1, contentType)
       )
     }
@@ -1433,43 +1464,104 @@ private module MkStage<StageSig PrevStage> {
       )
     }
 
+    private class ApNonNil instanceof Ap {
+      pragma[nomagic]
+      ApNonNil() { not this instanceof ApNil }
+
+      string toString() { result = "" }
+    }
+
+    pragma[nomagic]
+    private predicate fwdFlowRead0(
+      NodeEx node1, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      ApNonNil ap, Configuration config
+    ) {
+      fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
+      PrevStage::readStepCand(node1, _, _, config)
+    }
+
     pragma[nomagic]
     private predicate fwdFlowRead(
       Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc,
       ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
     ) {
-      fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
+      fwdFlowRead0(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, c, node2, config) and
       getHeadContent(ap) = c
     }
 
     pragma[nomagic]
     private predicate fwdFlowIn(
-      DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, Cc innercc,
-      ParameterPositionOption summaryCtx, ApOption argAp, Ap ap, Configuration config
+      DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, CcCall innercc,
+      ParameterPositionOption summaryCtx, ApOption argAp, Ap ap, ApApprox apa, Configuration config
     ) {
       exists(ArgNodeEx arg, boolean allowsFieldFlow |
-        fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, config) and
-        flowIntoCall(call, arg, p, allowsFieldFlow, config) and
+        fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, apa, config) and
+        flowIntoCallApa(call, arg, p, allowsFieldFlow, apa, config) and
         innercc = getCallContextCall(call, p.getEnclosingCallable(), outercc) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
+    pragma[nomagic]
+    private predicate fwdFlowRetFromArg(
+      RetNodeEx ret, FlowState state, CcCall ccc, ParameterPosition summaryCtx, ParamNodeEx p,
+      Ap argAp, ApApprox argApa, Ap ap, ApApprox apa, Configuration config
+    ) {
+      exists(DataFlowCallable c, ReturnKindExt kind |
+        fwdFlow(pragma[only_bind_into](ret), state, ccc,
+          TParameterPositionSome(pragma[only_bind_into](summaryCtx)), apSome(argAp), ap, apa, config) and
+        getApprox(argAp) = argApa and
+        c = ret.getEnclosingCallable() and
+        kind = ret.getKind() and
+        p.isParameterOf(c, pragma[only_bind_into](summaryCtx)) and
+        parameterFlowThroughAllowed(p, kind)
+      )
+    }
+
+    pragma[inline]
+    private predicate fwdFlowInMayFlowThrough(
+      DataFlowCall call, Cc cc, CcCall innerCc, ParameterPositionOption summaryCtx, ApOption argAp,
+      ParamNodeEx param, Ap ap, ApApprox apa, Configuration config
+    ) {
+      fwdFlowIn(call, pragma[only_bind_into](param), _, cc, innerCc, summaryCtx, argAp, ap,
+        pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
+      PrevStage::parameterMayFlowThrough(param, apa, config)
+    }
+
+    // dedup before joining with `flowThroughOutOfCall`
+    pragma[nomagic]
+    private predicate fwdFlowInMayFlowThroughProj(
+      DataFlowCall call, CcCall innerCc, ApApprox apa, Configuration config
+    ) {
+      fwdFlowInMayFlowThrough(call, _, innerCc, _, _, _, _, apa, config)
+    }
+
+    /**
+     * Same as `flowThroughOutOfCall`, but restricted to calls that are reached
+     * in the flow covered by `fwdFlow`, where data might flow through the target
+     * callable and back out at `call`.
+     */
+    pragma[nomagic]
+    private predicate fwdFlowThroughOutOfCall(
+      DataFlowCall call, CcCall ccc, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow,
+      ApApprox argApa, ApApprox apa, Configuration config
+    ) {
+      fwdFlowInMayFlowThroughProj(call, ccc, argApa, config) and
+      flowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, argApa, apa, config)
+    }
+
     pragma[nomagic]
     private predicate fwdFlowOutFromArg(
       DataFlowCall call, NodeEx out, FlowState state, ParameterPosition summaryCtx, Ap argAp, Ap ap,
-      Configuration config
+      ApApprox apa, Configuration config
     ) {
-      exists(
-        DataFlowCallable c, RetNodeEx ret, ReturnKindExt kind, boolean allowsFieldFlow, CcCall ccc
-      |
-        fwdFlow(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc),
-          TParameterPositionSome(pragma[only_bind_into](summaryCtx)), apSome(argAp), ap, config) and
-        flowThroughOutOfCall(call, pragma[only_bind_into](c), ccc, ret, kind, out, allowsFieldFlow,
+      exists(RetNodeEx ret, boolean allowsFieldFlow, CcCall ccc, ApApprox argApa |
+        fwdFlowRetFromArg(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc),
+          summaryCtx, _, argAp, pragma[only_bind_into](argApa), ap, pragma[only_bind_into](apa),
           config) and
-        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
-        parameterFlowThroughAllowed(c, pragma[only_bind_into](summaryCtx), kind)
+        fwdFlowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, argApa, apa, config) and
+        (if allowsFieldFlow = false then ap instanceof ApNil else any())
       )
     }
 
@@ -1483,8 +1575,7 @@ private module MkStage<StageSig PrevStage> {
       ParameterPosition pos, Ap ap, Configuration config
     ) {
       exists(ParamNodeEx param |
-        fwdFlowIn(call, param, _, cc, _, summaryCtx, argAp, ap, config) and
-        PrevStage::parameterMayFlowThrough(param, unbindApa(getApprox(ap)), config) and
+        fwdFlowInMayFlowThrough(call, cc, _, summaryCtx, argAp, param, ap, _, config) and
         pos = param.getPosition()
       )
     }
@@ -1505,41 +1596,55 @@ private module MkStage<StageSig PrevStage> {
       fwdFlowConsCand(ap1, c, ap2, config)
     }
 
-    pragma[nomagic]
-    private predicate returnFlowsThrough0(
-      RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, DataFlowCallable c,
-      ParameterPosition ppos, Ap argAp, Ap ap, Configuration config
-    ) {
-      exists(boolean allowsFieldFlow |
-        fwdFlow(ret, state, ccc, TParameterPositionSome(ppos), apSome(argAp), ap, config) and
-        flowThroughOutOfCall(_, c, _, pragma[only_bind_into](ret), kind, _, allowsFieldFlow,
-          pragma[only_bind_into](config)) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
-      )
-    }
-
     pragma[nomagic]
     private predicate returnFlowsThrough(
       RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, ParamNodeEx p, Ap argAp,
       Ap ap, Configuration config
     ) {
-      exists(DataFlowCallable c, ParameterPosition ppos |
-        returnFlowsThrough0(ret, kind, state, ccc, c, ppos, argAp, ap, config) and
-        p.isParameterOf(c, ppos) and
-        parameterFlowThroughAllowed(p, kind)
+      exists(boolean allowsFieldFlow, ApApprox argApa, ApApprox apa |
+        fwdFlowRetFromArg(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc), _, p,
+          argAp, pragma[only_bind_into](argApa), ap, pragma[only_bind_into](apa), config) and
+        kind = ret.getKind() and
+        fwdFlowThroughOutOfCall(_, ccc, ret, _, allowsFieldFlow, argApa, apa, config) and
+        (if allowsFieldFlow = false then ap instanceof ApNil else any())
       )
     }
 
     pragma[nomagic]
     private predicate flowThroughIntoCall(
-      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp,
+      Configuration config
     ) {
-      exists(Ap argAp |
-        flowIntoCall(call, pragma[only_bind_into](arg), pragma[only_bind_into](p), allowsFieldFlow,
+      exists(ApApprox argApa |
+        flowIntoCallApa(call, pragma[only_bind_into](arg), pragma[only_bind_into](p),
+          allowsFieldFlow, argApa, pragma[only_bind_into](config)) and
+        fwdFlow(arg, _, _, _, _, pragma[only_bind_into](argAp), argApa,
           pragma[only_bind_into](config)) and
-        fwdFlow(arg, _, _, _, _, pragma[only_bind_into](argAp), pragma[only_bind_into](config)) and
         returnFlowsThrough(_, _, _, _, p, pragma[only_bind_into](argAp), _,
-          pragma[only_bind_into](config))
+          pragma[only_bind_into](config)) and
+        if allowsFieldFlow = false then argAp instanceof ApNil else any()
+      )
+    }
+
+    pragma[nomagic]
+    private predicate flowIntoCallAp(
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap ap,
+      Configuration config
+    ) {
+      exists(ApApprox apa |
+        flowIntoCallApa(call, arg, p, allowsFieldFlow, apa, config) and
+        fwdFlow(arg, _, _, _, _, ap, apa, config)
+      )
+    }
+
+    pragma[nomagic]
+    private predicate flowOutOfCallAp(
+      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
+      Ap ap, Configuration config
+    ) {
+      exists(ApApprox apa |
+        flowOutOfCallApa(call, ret, kind, out, allowsFieldFlow, apa, config) and
+        fwdFlow(ret, _, _, _, _, ap, apa, config)
       )
     }
 
@@ -1628,7 +1733,7 @@ private module MkStage<StageSig PrevStage> {
       // flow into a callable
       exists(ParamNodeEx p, boolean allowsFieldFlow |
         revFlow(p, state, TReturnCtxNone(), returnAp, ap, config) and
-        flowIntoCall(_, node, p, allowsFieldFlow, config) and
+        flowIntoCallAp(_, node, p, allowsFieldFlow, ap, config) and
         (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
         returnCtx = TReturnCtxNone()
       )
@@ -1682,22 +1787,41 @@ private module MkStage<StageSig PrevStage> {
     ) {
       exists(NodeEx out, boolean allowsFieldFlow |
         revFlow(out, state, returnCtx, returnAp, ap, config) and
-        flowOutOfCall(call, ret, kind, out, allowsFieldFlow, config) and
+        flowOutOfCallAp(call, ret, kind, out, allowsFieldFlow, ap, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
+    /**
+     * Same as `flowThroughIntoCall`, but restricted to calls that are reached
+     * in the flow covered by `revFlow`, where data might flow through the target
+     * callable and back out at `call`.
+     */
+    pragma[nomagic]
+    private predicate revFlowThroughIntoCall(
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp,
+      Configuration config
+    ) {
+      flowThroughIntoCall(call, arg, p, allowsFieldFlow, argAp, config) and
+      revFlowIsReturned(call, _, _, _, _, config)
+    }
+
+    pragma[nomagic]
+    private predicate revFlowParamToReturn(
+      ParamNodeEx p, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap, Configuration config
+    ) {
+      revFlow(p, state, TReturnCtxMaybeFlowThrough(kind), apSome(returnAp), ap, config) and
+      parameterFlowThroughAllowed(p, kind)
+    }
+
     pragma[nomagic]
     private predicate revFlowInToReturn(
       DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap,
       Configuration config
     ) {
       exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(pragma[only_bind_into](p), state,
-          TReturnCtxMaybeFlowThrough(pragma[only_bind_into](kind)), apSome(returnAp), ap, config) and
-        flowThroughIntoCall(call, arg, p, allowsFieldFlow, config) and
-        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
-        parameterFlowThroughAllowed(p, kind)
+        revFlowParamToReturn(p, state, kind, returnAp, ap, config) and
+        revFlowThroughIntoCall(call, arg, p, allowsFieldFlow, ap, config)
       )
     }
 
@@ -1750,6 +1874,11 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     predicate revFlow(NodeEx node, Configuration config) { revFlow(node, _, _, _, _, config) }
 
+    pragma[nomagic]
+    predicate revFlowAp(NodeEx node, Ap ap, Configuration config) {
+      revFlow(node, _, _, _, ap, config)
+    }
+
     // use an alias as a workaround for bad functionality-induced joins
     pragma[nomagic]
     additional predicate revFlowAlias(NodeEx node, Configuration config) {
@@ -1786,9 +1915,9 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate parameterFlowsThroughRev(
-      ParamNodeEx p, Ap ap, ReturnKindExt kind, Configuration config
+      ParamNodeEx p, Ap ap, ReturnKindExt kind, Ap returnAp, Configuration config
     ) {
-      revFlow(p, _, TReturnCtxMaybeFlowThrough(kind), apSome(_), ap, config) and
+      revFlow(p, _, TReturnCtxMaybeFlowThrough(kind), apSome(returnAp), ap, config) and
       parameterFlowThroughAllowed(p, kind)
     }
 
@@ -1796,27 +1925,36 @@ private module MkStage<StageSig PrevStage> {
     predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
       exists(RetNodeEx ret, ReturnKindExt kind |
         returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
-        parameterFlowsThroughRev(p, ap, kind, config)
+        parameterFlowsThroughRev(p, ap, kind, _, config)
       )
     }
 
     pragma[nomagic]
-    predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config) {
-      exists(ParamNodeEx p, Ap ap |
-        returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
-        parameterFlowsThroughRev(p, ap, kind, config)
+    predicate returnMayFlowThrough(
+      RetNodeEx ret, Ap argAp, Ap ap, ReturnKindExt kind, Configuration config
+    ) {
+      exists(ParamNodeEx p |
+        returnFlowsThrough(ret, kind, _, _, p, argAp, ap, config) and
+        parameterFlowsThroughRev(p, argAp, kind, ap, config)
+      )
+    }
+
+    pragma[nomagic]
+    predicate revFlowInToReturnIsReturned(
+      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnCtx returnCtx, ApOption returnAp,
+      Ap ap, Configuration config
+    ) {
+      exists(ReturnKindExt returnKind0, Ap returnAp0 |
+        revFlowInToReturn(call, arg, state, returnKind0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
       )
     }
 
     pragma[nomagic]
     predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
-      exists(
-        ReturnKindExt returnKind0, Ap returnAp0, ArgNodeEx arg, FlowState state,
-        ReturnCtx returnCtx, ApOption returnAp, Ap ap
-      |
+      exists(ArgNodeEx arg, FlowState state, ReturnCtx returnCtx, ApOption returnAp, Ap ap |
         revFlow(arg, state, returnCtx, returnAp, ap, config) and
-        revFlowInToReturn(call, arg, state, returnKind0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
+        revFlowInToReturnIsReturned(call, arg, state, returnCtx, returnAp, ap, config)
       )
     }
 
@@ -2179,16 +2317,16 @@ private module LocalFlowBigStep {
   pragma[nomagic]
   predicate localFlowBigStep(
     NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
-    AccessPathFrontNil apf, Configuration config, LocalCallContext callContext
+    DataFlowType t, Configuration config, LocalCallContext callContext
   ) {
-    localFlowStepPlus(node1, state1, node2, preservesValue, apf.getType(), config, callContext) and
+    localFlowStepPlus(node1, state1, node2, preservesValue, t, config, callContext) and
     localFlowExit(node2, state1, config) and
     state1 = state2
     or
     additionalLocalFlowStepNodeCand2(node1, state1, node2, state2, config) and
     state1 != state2 and
     preservesValue = false and
-    apf = TFrontNil(node2.getDataFlowType()) and
+    t = node2.getDataFlowType() and
     callContext.relevantFor(node1.getEnclosingCallable()) and
     not exists(DataFlowCall call | call = callContext.(LocalCallContextSpecificCall).getCall() |
       isUnreachableInCallCached(node1.asNode(), call) or
@@ -2202,11 +2340,87 @@ private import LocalFlowBigStep
 private module Stage3Param implements MkStage<Stage2>::StageParam {
   private module PrevStage = Stage2;
 
+  class Ap = ApproxAccessPathFront;
+
+  class ApNil = ApproxAccessPathFrontNil;
+
+  PrevStage::Ap getApprox(Ap ap) { result = ap.toBoolNonEmpty() }
+
+  ApNil getApNil(NodeEx node) {
+    PrevStage::revFlow(node, _) and result = TApproxFrontNil(node.getDataFlowType())
+  }
+
+  bindingset[tc, tail]
+  Ap apCons(TypedContent tc, Ap tail) { result.getAHead() = tc and exists(tail) }
+
+  pragma[noinline]
+  Content getHeadContent(Ap ap) { result = ap.getAHead().getContent() }
+
+  class ApOption = ApproxAccessPathFrontOption;
+
+  ApOption apNone() { result = TApproxAccessPathFrontNone() }
+
+  ApOption apSome(Ap ap) { result = TApproxAccessPathFrontSome(ap) }
+
+  import BooleanCallContext
+
+  predicate localStep(
+    NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
+    ApproxAccessPathFrontNil ap, Configuration config, LocalCc lcc
+  ) {
+    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap.getType(), config, _) and
+    exists(lcc)
+  }
+
+  predicate flowOutOfCall = flowOutOfCallNodeCand2/6;
+
+  predicate flowIntoCall = flowIntoCallNodeCand2/5;
+
+  pragma[nomagic]
+  private predicate expectsContentCand(NodeEx node, Ap ap, Configuration config) {
+    exists(Content c |
+      PrevStage::revFlow(node, pragma[only_bind_into](config)) and
+      PrevStage::readStepCand(_, c, _, pragma[only_bind_into](config)) and
+      expectsContentEx(node, c) and
+      c = ap.getAHead().getContent()
+    )
+  }
+
+  pragma[nomagic]
+  private predicate castingNodeEx(NodeEx node) { node.asNode() instanceof CastingNode }
+
+  bindingset[node, state, ap, config]
+  predicate filter(NodeEx node, FlowState state, Ap ap, Configuration config) {
+    exists(state) and
+    exists(config) and
+    (if castingNodeEx(node) then compatibleTypes(node.getDataFlowType(), ap.getType()) else any()) and
+    (
+      notExpectsContent(node)
+      or
+      expectsContentCand(node, ap, config)
+    )
+  }
+
+  bindingset[ap, contentType]
+  predicate typecheckStore(Ap ap, DataFlowType contentType) {
+    // We need to typecheck stores here, since reverse flow through a getter
+    // might have a different type here compared to inside the getter.
+    compatibleTypes(ap.getType(), contentType)
+  }
+}
+
+private module Stage3 implements StageSig {
+  import MkStage<Stage2>::Stage<Stage3Param>
+}
+
+private module Stage4Param implements MkStage<Stage3>::StageParam {
+  private module PrevStage = Stage3;
+
   class Ap = AccessPathFront;
 
   class ApNil = AccessPathFrontNil;
 
-  PrevStage::Ap getApprox(Ap ap) { result = ap.toBoolNonEmpty() }
+  PrevStage::Ap getApprox(Ap ap) { result = ap.toApprox() }
 
   ApNil getApNil(NodeEx node) {
     PrevStage::revFlow(node, _) and result = TFrontNil(node.getDataFlowType())
@@ -2226,16 +2440,42 @@ private module Stage3Param implements MkStage<Stage2>::StageParam {
 
   import BooleanCallContext
 
+  pragma[nomagic]
   predicate localStep(
     NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
     ApNil ap, Configuration config, LocalCc lcc
   ) {
-    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap, config, _) and exists(lcc)
+    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap.getType(), config, _) and
+    PrevStage::revFlow(node1, pragma[only_bind_into](state1), _, pragma[only_bind_into](config)) and
+    PrevStage::revFlowAlias(node2, pragma[only_bind_into](state2), _, pragma[only_bind_into](config)) and
+    exists(lcc)
   }
 
-  predicate flowOutOfCall = flowOutOfCallNodeCand2/6;
+  pragma[nomagic]
+  predicate flowOutOfCall(
+    DataFlowCall call, RetNodeEx node1, ReturnKindExt kind, NodeEx node2, boolean allowsFieldFlow,
+    Configuration config
+  ) {
+    exists(FlowState state |
+      flowOutOfCallNodeCand2(call, node1, kind, node2, allowsFieldFlow, config) and
+      PrevStage::revFlow(node2, pragma[only_bind_into](state), _, pragma[only_bind_into](config)) and
+      PrevStage::revFlowAlias(node1, pragma[only_bind_into](state), _,
+        pragma[only_bind_into](config))
+    )
+  }
 
-  predicate flowIntoCall = flowIntoCallNodeCand2/5;
+  pragma[nomagic]
+  predicate flowIntoCall(
+    DataFlowCall call, ArgNodeEx node1, ParamNodeEx node2, boolean allowsFieldFlow,
+    Configuration config
+  ) {
+    exists(FlowState state |
+      flowIntoCallNodeCand2(call, node1, node2, allowsFieldFlow, config) and
+      PrevStage::revFlow(node2, pragma[only_bind_into](state), _, pragma[only_bind_into](config)) and
+      PrevStage::revFlowAlias(node1, pragma[only_bind_into](state), _,
+        pragma[only_bind_into](config))
+    )
+  }
 
   pragma[nomagic]
   private predicate clearSet(NodeEx node, ContentSet c, Configuration config) {
@@ -2291,8 +2531,8 @@ private module Stage3Param implements MkStage<Stage2>::StageParam {
   }
 }
 
-private module Stage3 implements StageSig {
-  import MkStage<Stage2>::Stage<Stage3Param>
+private module Stage4 implements StageSig {
+  import MkStage<Stage3>::Stage<Stage4Param>
 }
 
 /**
@@ -2303,8 +2543,8 @@ private predicate flowCandSummaryCtx(
   NodeEx node, FlowState state, AccessPathFront argApf, Configuration config
 ) {
   exists(AccessPathFront apf |
-    Stage3::revFlow(node, state, TReturnCtxMaybeFlowThrough(_), _, apf, config) and
-    Stage3::fwdFlow(node, state, any(Stage3::CcCall ccc), _, TAccessPathFrontSome(argApf), apf,
+    Stage4::revFlow(node, state, TReturnCtxMaybeFlowThrough(_), _, apf, config) and
+    Stage4::fwdFlow(node, state, any(Stage4::CcCall ccc), _, TAccessPathFrontSome(argApf), apf,
       config)
   )
 }
@@ -2315,10 +2555,10 @@ private predicate flowCandSummaryCtx(
  */
 private predicate expensiveLen2unfolding(TypedContent tc, Configuration config) {
   exists(int tails, int nodes, int apLimit, int tupleLimit |
-    tails = strictcount(AccessPathFront apf | Stage3::consCand(tc, apf, config)) and
+    tails = strictcount(AccessPathFront apf | Stage4::consCand(tc, apf, config)) and
     nodes =
       strictcount(NodeEx n, FlowState state |
-        Stage3::revFlow(n, state, any(AccessPathFrontHead apf | apf.getHead() = tc), config)
+        Stage4::revFlow(n, state, any(AccessPathFrontHead apf | apf.getHead() = tc), config)
         or
         flowCandSummaryCtx(n, state, any(AccessPathFrontHead apf | apf.getHead() = tc), config)
       ) and
@@ -2332,11 +2572,11 @@ private predicate expensiveLen2unfolding(TypedContent tc, Configuration config)
 private newtype TAccessPathApprox =
   TNil(DataFlowType t) or
   TConsNil(TypedContent tc, DataFlowType t) {
-    Stage3::consCand(tc, TFrontNil(t), _) and
+    Stage4::consCand(tc, TFrontNil(t), _) and
     not expensiveLen2unfolding(tc, _)
   } or
   TConsCons(TypedContent tc1, TypedContent tc2, int len) {
-    Stage3::consCand(tc1, TFrontHead(tc2), _) and
+    Stage4::consCand(tc1, TFrontHead(tc2), _) and
     len in [2 .. accessPathLimit()] and
     not expensiveLen2unfolding(tc1, _)
   } or
@@ -2466,7 +2706,7 @@ private class AccessPathApproxCons1 extends AccessPathApproxCons, TCons1 {
   override AccessPathApprox pop(TypedContent head) {
     head = tc and
     (
-      exists(TypedContent tc2 | Stage3::consCand(tc, TFrontHead(tc2), _) |
+      exists(TypedContent tc2 | Stage4::consCand(tc, TFrontHead(tc2), _) |
         result = TConsCons(tc2, _, len - 1)
         or
         len = 2 and
@@ -2477,7 +2717,7 @@ private class AccessPathApproxCons1 extends AccessPathApproxCons, TCons1 {
       or
       exists(DataFlowType t |
         len = 1 and
-        Stage3::consCand(tc, TFrontNil(t), _) and
+        Stage4::consCand(tc, TFrontNil(t), _) and
         result = TNil(t)
       )
     )
@@ -2502,13 +2742,14 @@ private class AccessPathApproxOption extends TAccessPathApproxOption {
   }
 }
 
-private module Stage4Param implements MkStage<Stage3>::StageParam {
-  private module PrevStage = Stage3;
+private module Stage5Param implements MkStage<Stage4>::StageParam {
+  private module PrevStage = Stage4;
 
   class Ap = AccessPathApprox;
 
   class ApNil = AccessPathApproxNil;
 
+  pragma[nomagic]
   PrevStage::Ap getApprox(Ap ap) { result = ap.getFront() }
 
   ApNil getApNil(NodeEx node) {
@@ -2534,7 +2775,9 @@ private module Stage4Param implements MkStage<Stage3>::StageParam {
     NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
     ApNil ap, Configuration config, LocalCc lcc
   ) {
-    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap.getFront(), config, lcc)
+    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap.getType(), config, lcc) and
+    PrevStage::revFlow(node1, pragma[only_bind_into](state1), _, pragma[only_bind_into](config)) and
+    PrevStage::revFlowAlias(node2, pragma[only_bind_into](state2), _, pragma[only_bind_into](config))
   }
 
   pragma[nomagic]
@@ -2571,7 +2814,7 @@ private module Stage4Param implements MkStage<Stage3>::StageParam {
   predicate typecheckStore(Ap ap, DataFlowType contentType) { any() }
 }
 
-private module Stage4 = MkStage<Stage3>::Stage<Stage4Param>;
+private module Stage5 = MkStage<Stage4>::Stage<Stage5Param>;
 
 bindingset[conf, result]
 private Configuration unbindConf(Configuration conf) {
@@ -2585,8 +2828,8 @@ private predicate nodeMayUseSummary0(
 ) {
   exists(AccessPathApprox apa0 |
     c = n.getEnclosingCallable() and
-    Stage4::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
-    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TParameterPositionSome(pos),
+    Stage5::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
+    Stage5::fwdFlow(n, state, any(CallContextCall ccc), TParameterPositionSome(pos),
       TAccessPathApproxSome(apa), apa0, config)
   )
 }
@@ -2596,7 +2839,7 @@ private predicate nodeMayUseSummary(
   NodeEx n, FlowState state, AccessPathApprox apa, Configuration config
 ) {
   exists(DataFlowCallable c, ParameterPosition pos, ParamNodeEx p |
-    Stage4::parameterMayFlowThrough(p, apa, config) and
+    Stage5::parameterMayFlowThrough(p, apa, config) and
     nodeMayUseSummary0(n, c, pos, state, apa, config) and
     p.isParameterOf(c, pos)
   )
@@ -2606,8 +2849,8 @@ private newtype TSummaryCtx =
   TSummaryCtxNone() or
   TSummaryCtxSome(ParamNodeEx p, FlowState state, AccessPath ap) {
     exists(Configuration config |
-      Stage4::parameterMayFlowThrough(p, ap.getApprox(), config) and
-      Stage4::revFlow(p, state, _, config)
+      Stage5::parameterMayFlowThrough(p, ap.getApprox(), config) and
+      Stage5::revFlow(p, state, _, config)
     )
   }
 
@@ -2656,7 +2899,7 @@ private int count1to2unfold(AccessPathApproxCons1 apa, Configuration config) {
     len = apa.len() and
     result =
       strictcount(AccessPathFront apf |
-        Stage4::consCand(tc, any(AccessPathApprox ap | ap.getFront() = apf and ap.len() = len - 1),
+        Stage5::consCand(tc, any(AccessPathApprox ap | ap.getFront() = apf and ap.len() = len - 1),
           config)
       )
   )
@@ -2665,7 +2908,7 @@ private int count1to2unfold(AccessPathApproxCons1 apa, Configuration config) {
 private int countNodesUsingAccessPath(AccessPathApprox apa, Configuration config) {
   result =
     strictcount(NodeEx n, FlowState state |
-      Stage4::revFlow(n, state, apa, config) or nodeMayUseSummary(n, state, apa, config)
+      Stage5::revFlow(n, state, apa, config) or nodeMayUseSummary(n, state, apa, config)
     )
 }
 
@@ -2686,7 +2929,7 @@ private predicate expensiveLen1to2unfolding(AccessPathApproxCons1 apa, Configura
 private AccessPathApprox getATail(AccessPathApprox apa, Configuration config) {
   exists(TypedContent head |
     apa.pop(head) = result and
-    Stage4::consCand(head, result, config)
+    Stage5::consCand(head, result, config)
   )
 }
 
@@ -2768,7 +3011,7 @@ private newtype TPathNode =
     NodeEx node, FlowState state, CallContext cc, SummaryCtx sc, AccessPath ap, Configuration config
   ) {
     // A PathNode is introduced by a source ...
-    Stage4::revFlow(node, state, config) and
+    Stage5::revFlow(node, state, config) and
     sourceNode(node, state, config) and
     (
       if hasSourceCallCtx(config)
@@ -2782,7 +3025,7 @@ private newtype TPathNode =
     exists(PathNodeMid mid |
       pathStep(mid, node, state, cc, sc, ap) and
       pragma[only_bind_into](config) = mid.getConfiguration() and
-      Stage4::revFlow(node, state, ap.getApprox(), pragma[only_bind_into](config))
+      Stage5::revFlow(node, state, ap.getApprox(), pragma[only_bind_into](config))
     )
   } or
   TPathNodeSink(NodeEx node, FlowState state, Configuration config) {
@@ -2924,7 +3167,7 @@ private class AccessPathCons2 extends AccessPath, TAccessPathCons2 {
   override TypedContent getHead() { result = head1 }
 
   override AccessPath getTail() {
-    Stage4::consCand(head1, result.getApprox(), _) and
+    Stage5::consCand(head1, result.getApprox(), _) and
     result.getHead() = head2 and
     result.length() = len - 1
   }
@@ -2955,7 +3198,7 @@ private class AccessPathCons1 extends AccessPath, TAccessPathCons1 {
   override TypedContent getHead() { result = head }
 
   override AccessPath getTail() {
-    Stage4::consCand(head, result.getApprox(), _) and result.length() = len - 1
+    Stage5::consCand(head, result.getApprox(), _) and result.length() = len - 1
   }
 
   override AccessPathFrontHead getFront() { result = TFrontHead(head) }
@@ -3347,7 +3590,8 @@ private predicate pathStep(
     AccessPath ap0, NodeEx midnode, FlowState state0, Configuration conf, LocalCallContext localCC
   |
     pathNode(mid, midnode, state0, cc, sc, ap0, conf, localCC) and
-    localFlowBigStep(midnode, state0, node, state, false, ap.getFront(), conf, localCC) and
+    localFlowBigStep(midnode, state0, node, state, false, ap.(AccessPathNil).getType(), conf,
+      localCC) and
     ap0 instanceof AccessPathNil
   )
   or
@@ -3389,7 +3633,7 @@ private predicate pathReadStep(
 ) {
   ap0 = mid.getAp() and
   tc = ap0.getHead() and
-  Stage4::readStepCand(mid.getNodeEx(), tc.getContent(), node, mid.getConfiguration()) and
+  Stage5::readStepCand(mid.getNodeEx(), tc.getContent(), node, mid.getConfiguration()) and
   state = mid.getState() and
   cc = mid.getCallContext()
 }
@@ -3399,7 +3643,7 @@ private predicate pathStoreStep(
   PathNodeMid mid, NodeEx node, FlowState state, AccessPath ap0, TypedContent tc, CallContext cc
 ) {
   ap0 = mid.getAp() and
-  Stage4::storeStepCand(mid.getNodeEx(), _, tc, node, _, mid.getConfiguration()) and
+  Stage5::storeStepCand(mid.getNodeEx(), _, tc, node, _, mid.getConfiguration()) and
   state = mid.getState() and
   cc = mid.getCallContext()
 }
@@ -3436,7 +3680,7 @@ private NodeEx getAnOutNodeFlow(
   ReturnKindExt kind, DataFlowCall call, AccessPathApprox apa, Configuration config
 ) {
   result.asNode() = kind.getAnOutNode(call) and
-  Stage4::revFlow(result, _, apa, config)
+  Stage5::revFlow(result, _, apa, config)
 }
 
 /**
@@ -3472,7 +3716,7 @@ private predicate parameterCand(
   DataFlowCallable callable, ParameterPosition pos, AccessPathApprox apa, Configuration config
 ) {
   exists(ParamNodeEx p |
-    Stage4::revFlow(p, _, apa, config) and
+    Stage5::revFlow(p, _, apa, config) and
     p.isParameterOf(callable, pos)
   )
 }
@@ -3751,9 +3995,17 @@ predicate stageStats(
   n = 45 and
   Stage4::stats(false, nodes, fields, conscand, states, tuples, config)
   or
-  stage = "5 Fwd" and n = 50 and finalStats(true, nodes, fields, conscand, states, tuples)
+  stage = "5 Fwd" and
+  n = 50 and
+  Stage5::stats(true, nodes, fields, conscand, states, tuples, config)
   or
-  stage = "5 Rev" and n = 55 and finalStats(false, nodes, fields, conscand, states, tuples)
+  stage = "5 Rev" and
+  n = 55 and
+  Stage5::stats(false, nodes, fields, conscand, states, tuples, config)
+  or
+  stage = "6 Fwd" and n = 60 and finalStats(true, nodes, fields, conscand, states, tuples)
+  or
+  stage = "6 Rev" and n = 65 and finalStats(false, nodes, fields, conscand, states, tuples)
 }
 
 private module FlowExploration {
diff --git a/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImplForHttpClientLibraries.qll b/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImplForHttpClientLibraries.qll
index ccde916a3c2..6741ccc2f06 100644
--- a/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImplForHttpClientLibraries.qll
+++ b/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImplForHttpClientLibraries.qll
@@ -621,23 +621,6 @@ private predicate parameterFlowThroughAllowed(ParamNodeEx p, ReturnKindExt kind)
   )
 }
 
-/**
- * Holds if flow from a parameter at position `pos` inside `c` to a return node of
- * kind `kind` is allowed.
- *
- * We don't expect a parameter to return stored in itself, unless
- * explicitly allowed
- */
-bindingset[c, pos, kind]
-private predicate parameterFlowThroughAllowed(
-  DataFlowCallable c, ParameterPosition pos, ReturnKindExt kind
-) {
-  exists(ParamNodeEx p |
-    p.isParameterOf(c, pos) and
-    parameterFlowThroughAllowed(p, kind)
-  )
-}
-
 private module Stage1 implements StageSig {
   class Ap = Unit;
 
@@ -980,6 +963,12 @@ private module Stage1 implements StageSig {
   pragma[nomagic]
   predicate revFlow(NodeEx node, Configuration config) { revFlow(node, _, config) }
 
+  pragma[nomagic]
+  predicate revFlowAp(NodeEx node, Ap ap, Configuration config) {
+    revFlow(node, config) and
+    exists(ap)
+  }
+
   bindingset[node, state, config]
   predicate revFlow(NodeEx node, FlowState state, Ap ap, Configuration config) {
     revFlow(node, _, pragma[only_bind_into](config)) and
@@ -1022,9 +1011,13 @@ private module Stage1 implements StageSig {
   }
 
   pragma[nomagic]
-  predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config) {
+  predicate returnMayFlowThrough(
+    RetNodeEx ret, Ap argAp, Ap ap, ReturnKindExt kind, Configuration config
+  ) {
     throughFlowNodeCand(ret, config) and
-    kind = ret.getKind()
+    kind = ret.getKind() and
+    exists(argAp) and
+    exists(ap)
   }
 
   pragma[nomagic]
@@ -1189,6 +1182,8 @@ private signature module StageSig {
 
   predicate revFlow(NodeEx node, Configuration config);
 
+  predicate revFlowAp(NodeEx node, Ap ap, Configuration config);
+
   bindingset[node, state, config]
   predicate revFlow(NodeEx node, FlowState state, Ap ap, Configuration config);
 
@@ -1196,7 +1191,9 @@ private signature module StageSig {
 
   predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config);
 
-  predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config);
+  predicate returnMayFlowThrough(
+    RetNodeEx ret, Ap argAp, Ap ap, ReturnKindExt kind, Configuration config
+  );
 
   predicate storeStepCand(
     NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, DataFlowType contentType,
@@ -1281,21 +1278,43 @@ private module MkStage<StageSig PrevStage> {
     import Param
 
     /* Begin: Stage logic. */
-    bindingset[result, apa]
-    private ApApprox unbindApa(ApApprox apa) {
-      pragma[only_bind_out](apa) = pragma[only_bind_out](result)
+    // use an alias as a workaround for bad functionality-induced joins
+    pragma[nomagic]
+    private predicate revFlowApAlias(NodeEx node, ApApprox apa, Configuration config) {
+      PrevStage::revFlowAp(node, apa, config)
+    }
+
+    pragma[nomagic]
+    private predicate flowIntoCallApa(
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, ApApprox apa,
+      Configuration config
+    ) {
+      flowIntoCall(call, arg, p, allowsFieldFlow, config) and
+      PrevStage::revFlowAp(p, pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
+      revFlowApAlias(arg, pragma[only_bind_into](apa), pragma[only_bind_into](config))
+    }
+
+    pragma[nomagic]
+    private predicate flowOutOfCallApa(
+      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
+      ApApprox apa, Configuration config
+    ) {
+      flowOutOfCall(call, ret, kind, out, allowsFieldFlow, config) and
+      PrevStage::revFlowAp(out, pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
+      revFlowApAlias(ret, pragma[only_bind_into](apa), pragma[only_bind_into](config))
     }
 
     pragma[nomagic]
     private predicate flowThroughOutOfCall(
-      DataFlowCall call, DataFlowCallable c, CcCall ccc, RetNodeEx ret, ReturnKindExt kind,
-      NodeEx out, boolean allowsFieldFlow, Configuration config
+      DataFlowCall call, CcCall ccc, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow,
+      ApApprox argApa, ApApprox apa, Configuration config
     ) {
-      flowOutOfCall(call, ret, kind, out, allowsFieldFlow, pragma[only_bind_into](config)) and
-      PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
-      PrevStage::returnMayFlowThrough(ret, kind, pragma[only_bind_into](config)) and
-      matchesCall(ccc, call) and
-      c = ret.getEnclosingCallable()
+      exists(ReturnKindExt kind |
+        flowOutOfCallApa(call, ret, kind, out, allowsFieldFlow, apa, pragma[only_bind_into](config)) and
+        PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
+        PrevStage::returnMayFlowThrough(ret, argApa, apa, kind, pragma[only_bind_into](config)) and
+        matchesCall(ccc, call)
+      )
     }
 
     /**
@@ -1307,39 +1326,50 @@ private module MkStage<StageSig PrevStage> {
      * corresponding parameter position and access path of that argument, respectively.
      */
     pragma[nomagic]
+    additional predicate fwdFlow(
+      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      Ap ap, ApApprox apa, Configuration config
+    ) {
+      fwdFlow0(node, state, cc, summaryCtx, argAp, ap, apa, config) and
+      PrevStage::revFlow(node, state, apa, config) and
+      filter(node, state, ap, config)
+    }
+
+    pragma[inline]
     additional predicate fwdFlow(
       NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
       Ap ap, Configuration config
     ) {
-      fwdFlow0(node, state, cc, summaryCtx, argAp, ap, config) and
-      PrevStage::revFlow(node, state, unbindApa(getApprox(ap)), config) and
-      filter(node, state, ap, config)
+      fwdFlow(node, state, cc, summaryCtx, argAp, ap, _, config)
     }
 
     pragma[nomagic]
     private predicate fwdFlow0(
       NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      Ap ap, Configuration config
+      Ap ap, ApApprox apa, Configuration config
     ) {
       sourceNode(node, state, config) and
       (if hasSourceCallCtx(config) then cc = ccSomeCall() else cc = ccNone()) and
       argAp = apNone() and
       summaryCtx = TParameterPositionNone() and
-      ap = getApNil(node)
+      ap = getApNil(node) and
+      apa = getApprox(ap)
       or
-      exists(NodeEx mid, FlowState state0, Ap ap0, LocalCc localCc |
-        fwdFlow(mid, state0, cc, summaryCtx, argAp, ap0, config) and
+      exists(NodeEx mid, FlowState state0, Ap ap0, ApApprox apa0, LocalCc localCc |
+        fwdFlow(mid, state0, cc, summaryCtx, argAp, ap0, apa0, config) and
         localCc = getLocalCc(mid, cc)
       |
         localStep(mid, state0, node, state, true, _, config, localCc) and
-        ap = ap0
+        ap = ap0 and
+        apa = apa0
         or
         localStep(mid, state0, node, state, false, ap, config, localCc) and
-        ap0 instanceof ApNil
+        ap0 instanceof ApNil and
+        apa = getApprox(ap)
       )
       or
       exists(NodeEx mid |
-        fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, apa, pragma[only_bind_into](config)) and
         jumpStep(mid, node, config) and
         cc = ccNone() and
         summaryCtx = TParameterPositionNone() and
@@ -1352,7 +1382,8 @@ private module MkStage<StageSig PrevStage> {
         cc = ccNone() and
         summaryCtx = TParameterPositionNone() and
         argAp = apNone() and
-        ap = getApNil(node)
+        ap = getApNil(node) and
+        apa = getApprox(ap)
       )
       or
       exists(NodeEx mid, FlowState state0, ApNil nil |
@@ -1361,32 +1392,32 @@ private module MkStage<StageSig PrevStage> {
         cc = ccNone() and
         summaryCtx = TParameterPositionNone() and
         argAp = apNone() and
-        ap = getApNil(node)
+        ap = getApNil(node) and
+        apa = getApprox(ap)
       )
       or
       // store
       exists(TypedContent tc, Ap ap0 |
         fwdFlowStore(_, ap0, tc, node, state, cc, summaryCtx, argAp, config) and
-        ap = apCons(tc, ap0)
+        ap = apCons(tc, ap0) and
+        apa = getApprox(ap)
       )
       or
       // read
       exists(Ap ap0, Content c |
         fwdFlowRead(ap0, c, _, node, state, cc, summaryCtx, argAp, config) and
-        fwdFlowConsCand(ap0, c, ap, config)
+        fwdFlowConsCand(ap0, c, ap, config) and
+        apa = getApprox(ap)
       )
       or
       // flow into a callable
-      exists(ApApprox apa |
-        fwdFlowIn(_, node, state, _, cc, _, _, ap, config) and
-        apa = getApprox(ap) and
-        if PrevStage::parameterMayFlowThrough(node, apa, config)
-        then (
-          summaryCtx = TParameterPositionSome(node.(ParamNodeEx).getPosition()) and
-          argAp = apSome(ap)
-        ) else (
-          summaryCtx = TParameterPositionNone() and argAp = apNone()
-        )
+      fwdFlowIn(_, node, state, _, cc, _, _, ap, apa, config) and
+      if PrevStage::parameterMayFlowThrough(node, apa, config)
+      then (
+        summaryCtx = TParameterPositionSome(node.(ParamNodeEx).getPosition()) and
+        argAp = apSome(ap)
+      ) else (
+        summaryCtx = TParameterPositionNone() and argAp = apNone()
       )
       or
       // flow out of a callable
@@ -1394,8 +1425,8 @@ private module MkStage<StageSig PrevStage> {
         DataFlowCall call, RetNodeEx ret, boolean allowsFieldFlow, CcNoCall innercc,
         DataFlowCallable inner
       |
-        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, config) and
-        flowOutOfCall(call, ret, _, node, allowsFieldFlow, config) and
+        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, apa, config) and
+        flowOutOfCallApa(call, ret, _, node, allowsFieldFlow, apa, config) and
         inner = ret.getEnclosingCallable() and
         cc = getCallContextReturn(inner, call, innercc) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
@@ -1403,7 +1434,7 @@ private module MkStage<StageSig PrevStage> {
       or
       // flow through a callable
       exists(DataFlowCall call, ParameterPosition summaryCtx0, Ap argAp0 |
-        fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, config) and
+        fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, apa, config) and
         fwdFlowIsEntered(call, cc, summaryCtx, argAp, summaryCtx0, argAp0, config)
       )
     }
@@ -1413,9 +1444,9 @@ private module MkStage<StageSig PrevStage> {
       NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc,
       ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
     ) {
-      exists(DataFlowType contentType |
-        fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, config) and
-        PrevStage::storeStepCand(node1, unbindApa(getApprox(ap1)), tc, node2, contentType, config) and
+      exists(DataFlowType contentType, ApApprox apa1 |
+        fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, apa1, config) and
+        PrevStage::storeStepCand(node1, apa1, tc, node2, contentType, config) and
         typecheckStore(ap1, contentType)
       )
     }
@@ -1433,43 +1464,104 @@ private module MkStage<StageSig PrevStage> {
       )
     }
 
+    private class ApNonNil instanceof Ap {
+      pragma[nomagic]
+      ApNonNil() { not this instanceof ApNil }
+
+      string toString() { result = "" }
+    }
+
+    pragma[nomagic]
+    private predicate fwdFlowRead0(
+      NodeEx node1, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      ApNonNil ap, Configuration config
+    ) {
+      fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
+      PrevStage::readStepCand(node1, _, _, config)
+    }
+
     pragma[nomagic]
     private predicate fwdFlowRead(
       Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc,
       ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
     ) {
-      fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
+      fwdFlowRead0(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, c, node2, config) and
       getHeadContent(ap) = c
     }
 
     pragma[nomagic]
     private predicate fwdFlowIn(
-      DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, Cc innercc,
-      ParameterPositionOption summaryCtx, ApOption argAp, Ap ap, Configuration config
+      DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, CcCall innercc,
+      ParameterPositionOption summaryCtx, ApOption argAp, Ap ap, ApApprox apa, Configuration config
     ) {
       exists(ArgNodeEx arg, boolean allowsFieldFlow |
-        fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, config) and
-        flowIntoCall(call, arg, p, allowsFieldFlow, config) and
+        fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, apa, config) and
+        flowIntoCallApa(call, arg, p, allowsFieldFlow, apa, config) and
         innercc = getCallContextCall(call, p.getEnclosingCallable(), outercc) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
+    pragma[nomagic]
+    private predicate fwdFlowRetFromArg(
+      RetNodeEx ret, FlowState state, CcCall ccc, ParameterPosition summaryCtx, ParamNodeEx p,
+      Ap argAp, ApApprox argApa, Ap ap, ApApprox apa, Configuration config
+    ) {
+      exists(DataFlowCallable c, ReturnKindExt kind |
+        fwdFlow(pragma[only_bind_into](ret), state, ccc,
+          TParameterPositionSome(pragma[only_bind_into](summaryCtx)), apSome(argAp), ap, apa, config) and
+        getApprox(argAp) = argApa and
+        c = ret.getEnclosingCallable() and
+        kind = ret.getKind() and
+        p.isParameterOf(c, pragma[only_bind_into](summaryCtx)) and
+        parameterFlowThroughAllowed(p, kind)
+      )
+    }
+
+    pragma[inline]
+    private predicate fwdFlowInMayFlowThrough(
+      DataFlowCall call, Cc cc, CcCall innerCc, ParameterPositionOption summaryCtx, ApOption argAp,
+      ParamNodeEx param, Ap ap, ApApprox apa, Configuration config
+    ) {
+      fwdFlowIn(call, pragma[only_bind_into](param), _, cc, innerCc, summaryCtx, argAp, ap,
+        pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
+      PrevStage::parameterMayFlowThrough(param, apa, config)
+    }
+
+    // dedup before joining with `flowThroughOutOfCall`
+    pragma[nomagic]
+    private predicate fwdFlowInMayFlowThroughProj(
+      DataFlowCall call, CcCall innerCc, ApApprox apa, Configuration config
+    ) {
+      fwdFlowInMayFlowThrough(call, _, innerCc, _, _, _, _, apa, config)
+    }
+
+    /**
+     * Same as `flowThroughOutOfCall`, but restricted to calls that are reached
+     * in the flow covered by `fwdFlow`, where data might flow through the target
+     * callable and back out at `call`.
+     */
+    pragma[nomagic]
+    private predicate fwdFlowThroughOutOfCall(
+      DataFlowCall call, CcCall ccc, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow,
+      ApApprox argApa, ApApprox apa, Configuration config
+    ) {
+      fwdFlowInMayFlowThroughProj(call, ccc, argApa, config) and
+      flowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, argApa, apa, config)
+    }
+
     pragma[nomagic]
     private predicate fwdFlowOutFromArg(
       DataFlowCall call, NodeEx out, FlowState state, ParameterPosition summaryCtx, Ap argAp, Ap ap,
-      Configuration config
+      ApApprox apa, Configuration config
     ) {
-      exists(
-        DataFlowCallable c, RetNodeEx ret, ReturnKindExt kind, boolean allowsFieldFlow, CcCall ccc
-      |
-        fwdFlow(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc),
-          TParameterPositionSome(pragma[only_bind_into](summaryCtx)), apSome(argAp), ap, config) and
-        flowThroughOutOfCall(call, pragma[only_bind_into](c), ccc, ret, kind, out, allowsFieldFlow,
+      exists(RetNodeEx ret, boolean allowsFieldFlow, CcCall ccc, ApApprox argApa |
+        fwdFlowRetFromArg(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc),
+          summaryCtx, _, argAp, pragma[only_bind_into](argApa), ap, pragma[only_bind_into](apa),
           config) and
-        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
-        parameterFlowThroughAllowed(c, pragma[only_bind_into](summaryCtx), kind)
+        fwdFlowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, argApa, apa, config) and
+        (if allowsFieldFlow = false then ap instanceof ApNil else any())
       )
     }
 
@@ -1483,8 +1575,7 @@ private module MkStage<StageSig PrevStage> {
       ParameterPosition pos, Ap ap, Configuration config
     ) {
       exists(ParamNodeEx param |
-        fwdFlowIn(call, param, _, cc, _, summaryCtx, argAp, ap, config) and
-        PrevStage::parameterMayFlowThrough(param, unbindApa(getApprox(ap)), config) and
+        fwdFlowInMayFlowThrough(call, cc, _, summaryCtx, argAp, param, ap, _, config) and
         pos = param.getPosition()
       )
     }
@@ -1505,41 +1596,55 @@ private module MkStage<StageSig PrevStage> {
       fwdFlowConsCand(ap1, c, ap2, config)
     }
 
-    pragma[nomagic]
-    private predicate returnFlowsThrough0(
-      RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, DataFlowCallable c,
-      ParameterPosition ppos, Ap argAp, Ap ap, Configuration config
-    ) {
-      exists(boolean allowsFieldFlow |
-        fwdFlow(ret, state, ccc, TParameterPositionSome(ppos), apSome(argAp), ap, config) and
-        flowThroughOutOfCall(_, c, _, pragma[only_bind_into](ret), kind, _, allowsFieldFlow,
-          pragma[only_bind_into](config)) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
-      )
-    }
-
     pragma[nomagic]
     private predicate returnFlowsThrough(
       RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, ParamNodeEx p, Ap argAp,
       Ap ap, Configuration config
     ) {
-      exists(DataFlowCallable c, ParameterPosition ppos |
-        returnFlowsThrough0(ret, kind, state, ccc, c, ppos, argAp, ap, config) and
-        p.isParameterOf(c, ppos) and
-        parameterFlowThroughAllowed(p, kind)
+      exists(boolean allowsFieldFlow, ApApprox argApa, ApApprox apa |
+        fwdFlowRetFromArg(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc), _, p,
+          argAp, pragma[only_bind_into](argApa), ap, pragma[only_bind_into](apa), config) and
+        kind = ret.getKind() and
+        fwdFlowThroughOutOfCall(_, ccc, ret, _, allowsFieldFlow, argApa, apa, config) and
+        (if allowsFieldFlow = false then ap instanceof ApNil else any())
       )
     }
 
     pragma[nomagic]
     private predicate flowThroughIntoCall(
-      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp,
+      Configuration config
     ) {
-      exists(Ap argAp |
-        flowIntoCall(call, pragma[only_bind_into](arg), pragma[only_bind_into](p), allowsFieldFlow,
+      exists(ApApprox argApa |
+        flowIntoCallApa(call, pragma[only_bind_into](arg), pragma[only_bind_into](p),
+          allowsFieldFlow, argApa, pragma[only_bind_into](config)) and
+        fwdFlow(arg, _, _, _, _, pragma[only_bind_into](argAp), argApa,
           pragma[only_bind_into](config)) and
-        fwdFlow(arg, _, _, _, _, pragma[only_bind_into](argAp), pragma[only_bind_into](config)) and
         returnFlowsThrough(_, _, _, _, p, pragma[only_bind_into](argAp), _,
-          pragma[only_bind_into](config))
+          pragma[only_bind_into](config)) and
+        if allowsFieldFlow = false then argAp instanceof ApNil else any()
+      )
+    }
+
+    pragma[nomagic]
+    private predicate flowIntoCallAp(
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap ap,
+      Configuration config
+    ) {
+      exists(ApApprox apa |
+        flowIntoCallApa(call, arg, p, allowsFieldFlow, apa, config) and
+        fwdFlow(arg, _, _, _, _, ap, apa, config)
+      )
+    }
+
+    pragma[nomagic]
+    private predicate flowOutOfCallAp(
+      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
+      Ap ap, Configuration config
+    ) {
+      exists(ApApprox apa |
+        flowOutOfCallApa(call, ret, kind, out, allowsFieldFlow, apa, config) and
+        fwdFlow(ret, _, _, _, _, ap, apa, config)
       )
     }
 
@@ -1628,7 +1733,7 @@ private module MkStage<StageSig PrevStage> {
       // flow into a callable
       exists(ParamNodeEx p, boolean allowsFieldFlow |
         revFlow(p, state, TReturnCtxNone(), returnAp, ap, config) and
-        flowIntoCall(_, node, p, allowsFieldFlow, config) and
+        flowIntoCallAp(_, node, p, allowsFieldFlow, ap, config) and
         (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
         returnCtx = TReturnCtxNone()
       )
@@ -1682,22 +1787,41 @@ private module MkStage<StageSig PrevStage> {
     ) {
       exists(NodeEx out, boolean allowsFieldFlow |
         revFlow(out, state, returnCtx, returnAp, ap, config) and
-        flowOutOfCall(call, ret, kind, out, allowsFieldFlow, config) and
+        flowOutOfCallAp(call, ret, kind, out, allowsFieldFlow, ap, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
+    /**
+     * Same as `flowThroughIntoCall`, but restricted to calls that are reached
+     * in the flow covered by `revFlow`, where data might flow through the target
+     * callable and back out at `call`.
+     */
+    pragma[nomagic]
+    private predicate revFlowThroughIntoCall(
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp,
+      Configuration config
+    ) {
+      flowThroughIntoCall(call, arg, p, allowsFieldFlow, argAp, config) and
+      revFlowIsReturned(call, _, _, _, _, config)
+    }
+
+    pragma[nomagic]
+    private predicate revFlowParamToReturn(
+      ParamNodeEx p, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap, Configuration config
+    ) {
+      revFlow(p, state, TReturnCtxMaybeFlowThrough(kind), apSome(returnAp), ap, config) and
+      parameterFlowThroughAllowed(p, kind)
+    }
+
     pragma[nomagic]
     private predicate revFlowInToReturn(
       DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap,
       Configuration config
     ) {
       exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(pragma[only_bind_into](p), state,
-          TReturnCtxMaybeFlowThrough(pragma[only_bind_into](kind)), apSome(returnAp), ap, config) and
-        flowThroughIntoCall(call, arg, p, allowsFieldFlow, config) and
-        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
-        parameterFlowThroughAllowed(p, kind)
+        revFlowParamToReturn(p, state, kind, returnAp, ap, config) and
+        revFlowThroughIntoCall(call, arg, p, allowsFieldFlow, ap, config)
       )
     }
 
@@ -1750,6 +1874,11 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     predicate revFlow(NodeEx node, Configuration config) { revFlow(node, _, _, _, _, config) }
 
+    pragma[nomagic]
+    predicate revFlowAp(NodeEx node, Ap ap, Configuration config) {
+      revFlow(node, _, _, _, ap, config)
+    }
+
     // use an alias as a workaround for bad functionality-induced joins
     pragma[nomagic]
     additional predicate revFlowAlias(NodeEx node, Configuration config) {
@@ -1786,9 +1915,9 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate parameterFlowsThroughRev(
-      ParamNodeEx p, Ap ap, ReturnKindExt kind, Configuration config
+      ParamNodeEx p, Ap ap, ReturnKindExt kind, Ap returnAp, Configuration config
     ) {
-      revFlow(p, _, TReturnCtxMaybeFlowThrough(kind), apSome(_), ap, config) and
+      revFlow(p, _, TReturnCtxMaybeFlowThrough(kind), apSome(returnAp), ap, config) and
       parameterFlowThroughAllowed(p, kind)
     }
 
@@ -1796,27 +1925,36 @@ private module MkStage<StageSig PrevStage> {
     predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
       exists(RetNodeEx ret, ReturnKindExt kind |
         returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
-        parameterFlowsThroughRev(p, ap, kind, config)
+        parameterFlowsThroughRev(p, ap, kind, _, config)
       )
     }
 
     pragma[nomagic]
-    predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config) {
-      exists(ParamNodeEx p, Ap ap |
-        returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
-        parameterFlowsThroughRev(p, ap, kind, config)
+    predicate returnMayFlowThrough(
+      RetNodeEx ret, Ap argAp, Ap ap, ReturnKindExt kind, Configuration config
+    ) {
+      exists(ParamNodeEx p |
+        returnFlowsThrough(ret, kind, _, _, p, argAp, ap, config) and
+        parameterFlowsThroughRev(p, argAp, kind, ap, config)
+      )
+    }
+
+    pragma[nomagic]
+    predicate revFlowInToReturnIsReturned(
+      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnCtx returnCtx, ApOption returnAp,
+      Ap ap, Configuration config
+    ) {
+      exists(ReturnKindExt returnKind0, Ap returnAp0 |
+        revFlowInToReturn(call, arg, state, returnKind0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
       )
     }
 
     pragma[nomagic]
     predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
-      exists(
-        ReturnKindExt returnKind0, Ap returnAp0, ArgNodeEx arg, FlowState state,
-        ReturnCtx returnCtx, ApOption returnAp, Ap ap
-      |
+      exists(ArgNodeEx arg, FlowState state, ReturnCtx returnCtx, ApOption returnAp, Ap ap |
         revFlow(arg, state, returnCtx, returnAp, ap, config) and
-        revFlowInToReturn(call, arg, state, returnKind0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
+        revFlowInToReturnIsReturned(call, arg, state, returnCtx, returnAp, ap, config)
       )
     }
 
@@ -2179,16 +2317,16 @@ private module LocalFlowBigStep {
   pragma[nomagic]
   predicate localFlowBigStep(
     NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
-    AccessPathFrontNil apf, Configuration config, LocalCallContext callContext
+    DataFlowType t, Configuration config, LocalCallContext callContext
   ) {
-    localFlowStepPlus(node1, state1, node2, preservesValue, apf.getType(), config, callContext) and
+    localFlowStepPlus(node1, state1, node2, preservesValue, t, config, callContext) and
     localFlowExit(node2, state1, config) and
     state1 = state2
     or
     additionalLocalFlowStepNodeCand2(node1, state1, node2, state2, config) and
     state1 != state2 and
     preservesValue = false and
-    apf = TFrontNil(node2.getDataFlowType()) and
+    t = node2.getDataFlowType() and
     callContext.relevantFor(node1.getEnclosingCallable()) and
     not exists(DataFlowCall call | call = callContext.(LocalCallContextSpecificCall).getCall() |
       isUnreachableInCallCached(node1.asNode(), call) or
@@ -2202,11 +2340,87 @@ private import LocalFlowBigStep
 private module Stage3Param implements MkStage<Stage2>::StageParam {
   private module PrevStage = Stage2;
 
+  class Ap = ApproxAccessPathFront;
+
+  class ApNil = ApproxAccessPathFrontNil;
+
+  PrevStage::Ap getApprox(Ap ap) { result = ap.toBoolNonEmpty() }
+
+  ApNil getApNil(NodeEx node) {
+    PrevStage::revFlow(node, _) and result = TApproxFrontNil(node.getDataFlowType())
+  }
+
+  bindingset[tc, tail]
+  Ap apCons(TypedContent tc, Ap tail) { result.getAHead() = tc and exists(tail) }
+
+  pragma[noinline]
+  Content getHeadContent(Ap ap) { result = ap.getAHead().getContent() }
+
+  class ApOption = ApproxAccessPathFrontOption;
+
+  ApOption apNone() { result = TApproxAccessPathFrontNone() }
+
+  ApOption apSome(Ap ap) { result = TApproxAccessPathFrontSome(ap) }
+
+  import BooleanCallContext
+
+  predicate localStep(
+    NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
+    ApproxAccessPathFrontNil ap, Configuration config, LocalCc lcc
+  ) {
+    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap.getType(), config, _) and
+    exists(lcc)
+  }
+
+  predicate flowOutOfCall = flowOutOfCallNodeCand2/6;
+
+  predicate flowIntoCall = flowIntoCallNodeCand2/5;
+
+  pragma[nomagic]
+  private predicate expectsContentCand(NodeEx node, Ap ap, Configuration config) {
+    exists(Content c |
+      PrevStage::revFlow(node, pragma[only_bind_into](config)) and
+      PrevStage::readStepCand(_, c, _, pragma[only_bind_into](config)) and
+      expectsContentEx(node, c) and
+      c = ap.getAHead().getContent()
+    )
+  }
+
+  pragma[nomagic]
+  private predicate castingNodeEx(NodeEx node) { node.asNode() instanceof CastingNode }
+
+  bindingset[node, state, ap, config]
+  predicate filter(NodeEx node, FlowState state, Ap ap, Configuration config) {
+    exists(state) and
+    exists(config) and
+    (if castingNodeEx(node) then compatibleTypes(node.getDataFlowType(), ap.getType()) else any()) and
+    (
+      notExpectsContent(node)
+      or
+      expectsContentCand(node, ap, config)
+    )
+  }
+
+  bindingset[ap, contentType]
+  predicate typecheckStore(Ap ap, DataFlowType contentType) {
+    // We need to typecheck stores here, since reverse flow through a getter
+    // might have a different type here compared to inside the getter.
+    compatibleTypes(ap.getType(), contentType)
+  }
+}
+
+private module Stage3 implements StageSig {
+  import MkStage<Stage2>::Stage<Stage3Param>
+}
+
+private module Stage4Param implements MkStage<Stage3>::StageParam {
+  private module PrevStage = Stage3;
+
   class Ap = AccessPathFront;
 
   class ApNil = AccessPathFrontNil;
 
-  PrevStage::Ap getApprox(Ap ap) { result = ap.toBoolNonEmpty() }
+  PrevStage::Ap getApprox(Ap ap) { result = ap.toApprox() }
 
   ApNil getApNil(NodeEx node) {
     PrevStage::revFlow(node, _) and result = TFrontNil(node.getDataFlowType())
@@ -2226,16 +2440,42 @@ private module Stage3Param implements MkStage<Stage2>::StageParam {
 
   import BooleanCallContext
 
+  pragma[nomagic]
   predicate localStep(
     NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
     ApNil ap, Configuration config, LocalCc lcc
   ) {
-    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap, config, _) and exists(lcc)
+    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap.getType(), config, _) and
+    PrevStage::revFlow(node1, pragma[only_bind_into](state1), _, pragma[only_bind_into](config)) and
+    PrevStage::revFlowAlias(node2, pragma[only_bind_into](state2), _, pragma[only_bind_into](config)) and
+    exists(lcc)
   }
 
-  predicate flowOutOfCall = flowOutOfCallNodeCand2/6;
+  pragma[nomagic]
+  predicate flowOutOfCall(
+    DataFlowCall call, RetNodeEx node1, ReturnKindExt kind, NodeEx node2, boolean allowsFieldFlow,
+    Configuration config
+  ) {
+    exists(FlowState state |
+      flowOutOfCallNodeCand2(call, node1, kind, node2, allowsFieldFlow, config) and
+      PrevStage::revFlow(node2, pragma[only_bind_into](state), _, pragma[only_bind_into](config)) and
+      PrevStage::revFlowAlias(node1, pragma[only_bind_into](state), _,
+        pragma[only_bind_into](config))
+    )
+  }
 
-  predicate flowIntoCall = flowIntoCallNodeCand2/5;
+  pragma[nomagic]
+  predicate flowIntoCall(
+    DataFlowCall call, ArgNodeEx node1, ParamNodeEx node2, boolean allowsFieldFlow,
+    Configuration config
+  ) {
+    exists(FlowState state |
+      flowIntoCallNodeCand2(call, node1, node2, allowsFieldFlow, config) and
+      PrevStage::revFlow(node2, pragma[only_bind_into](state), _, pragma[only_bind_into](config)) and
+      PrevStage::revFlowAlias(node1, pragma[only_bind_into](state), _,
+        pragma[only_bind_into](config))
+    )
+  }
 
   pragma[nomagic]
   private predicate clearSet(NodeEx node, ContentSet c, Configuration config) {
@@ -2291,8 +2531,8 @@ private module Stage3Param implements MkStage<Stage2>::StageParam {
   }
 }
 
-private module Stage3 implements StageSig {
-  import MkStage<Stage2>::Stage<Stage3Param>
+private module Stage4 implements StageSig {
+  import MkStage<Stage3>::Stage<Stage4Param>
 }
 
 /**
@@ -2303,8 +2543,8 @@ private predicate flowCandSummaryCtx(
   NodeEx node, FlowState state, AccessPathFront argApf, Configuration config
 ) {
   exists(AccessPathFront apf |
-    Stage3::revFlow(node, state, TReturnCtxMaybeFlowThrough(_), _, apf, config) and
-    Stage3::fwdFlow(node, state, any(Stage3::CcCall ccc), _, TAccessPathFrontSome(argApf), apf,
+    Stage4::revFlow(node, state, TReturnCtxMaybeFlowThrough(_), _, apf, config) and
+    Stage4::fwdFlow(node, state, any(Stage4::CcCall ccc), _, TAccessPathFrontSome(argApf), apf,
       config)
   )
 }
@@ -2315,10 +2555,10 @@ private predicate flowCandSummaryCtx(
  */
 private predicate expensiveLen2unfolding(TypedContent tc, Configuration config) {
   exists(int tails, int nodes, int apLimit, int tupleLimit |
-    tails = strictcount(AccessPathFront apf | Stage3::consCand(tc, apf, config)) and
+    tails = strictcount(AccessPathFront apf | Stage4::consCand(tc, apf, config)) and
     nodes =
       strictcount(NodeEx n, FlowState state |
-        Stage3::revFlow(n, state, any(AccessPathFrontHead apf | apf.getHead() = tc), config)
+        Stage4::revFlow(n, state, any(AccessPathFrontHead apf | apf.getHead() = tc), config)
         or
         flowCandSummaryCtx(n, state, any(AccessPathFrontHead apf | apf.getHead() = tc), config)
       ) and
@@ -2332,11 +2572,11 @@ private predicate expensiveLen2unfolding(TypedContent tc, Configuration config)
 private newtype TAccessPathApprox =
   TNil(DataFlowType t) or
   TConsNil(TypedContent tc, DataFlowType t) {
-    Stage3::consCand(tc, TFrontNil(t), _) and
+    Stage4::consCand(tc, TFrontNil(t), _) and
     not expensiveLen2unfolding(tc, _)
   } or
   TConsCons(TypedContent tc1, TypedContent tc2, int len) {
-    Stage3::consCand(tc1, TFrontHead(tc2), _) and
+    Stage4::consCand(tc1, TFrontHead(tc2), _) and
     len in [2 .. accessPathLimit()] and
     not expensiveLen2unfolding(tc1, _)
   } or
@@ -2466,7 +2706,7 @@ private class AccessPathApproxCons1 extends AccessPathApproxCons, TCons1 {
   override AccessPathApprox pop(TypedContent head) {
     head = tc and
     (
-      exists(TypedContent tc2 | Stage3::consCand(tc, TFrontHead(tc2), _) |
+      exists(TypedContent tc2 | Stage4::consCand(tc, TFrontHead(tc2), _) |
         result = TConsCons(tc2, _, len - 1)
         or
         len = 2 and
@@ -2477,7 +2717,7 @@ private class AccessPathApproxCons1 extends AccessPathApproxCons, TCons1 {
       or
       exists(DataFlowType t |
         len = 1 and
-        Stage3::consCand(tc, TFrontNil(t), _) and
+        Stage4::consCand(tc, TFrontNil(t), _) and
         result = TNil(t)
       )
     )
@@ -2502,13 +2742,14 @@ private class AccessPathApproxOption extends TAccessPathApproxOption {
   }
 }
 
-private module Stage4Param implements MkStage<Stage3>::StageParam {
-  private module PrevStage = Stage3;
+private module Stage5Param implements MkStage<Stage4>::StageParam {
+  private module PrevStage = Stage4;
 
   class Ap = AccessPathApprox;
 
   class ApNil = AccessPathApproxNil;
 
+  pragma[nomagic]
   PrevStage::Ap getApprox(Ap ap) { result = ap.getFront() }
 
   ApNil getApNil(NodeEx node) {
@@ -2534,7 +2775,9 @@ private module Stage4Param implements MkStage<Stage3>::StageParam {
     NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
     ApNil ap, Configuration config, LocalCc lcc
   ) {
-    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap.getFront(), config, lcc)
+    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap.getType(), config, lcc) and
+    PrevStage::revFlow(node1, pragma[only_bind_into](state1), _, pragma[only_bind_into](config)) and
+    PrevStage::revFlowAlias(node2, pragma[only_bind_into](state2), _, pragma[only_bind_into](config))
   }
 
   pragma[nomagic]
@@ -2571,7 +2814,7 @@ private module Stage4Param implements MkStage<Stage3>::StageParam {
   predicate typecheckStore(Ap ap, DataFlowType contentType) { any() }
 }
 
-private module Stage4 = MkStage<Stage3>::Stage<Stage4Param>;
+private module Stage5 = MkStage<Stage4>::Stage<Stage5Param>;
 
 bindingset[conf, result]
 private Configuration unbindConf(Configuration conf) {
@@ -2585,8 +2828,8 @@ private predicate nodeMayUseSummary0(
 ) {
   exists(AccessPathApprox apa0 |
     c = n.getEnclosingCallable() and
-    Stage4::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
-    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TParameterPositionSome(pos),
+    Stage5::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
+    Stage5::fwdFlow(n, state, any(CallContextCall ccc), TParameterPositionSome(pos),
       TAccessPathApproxSome(apa), apa0, config)
   )
 }
@@ -2596,7 +2839,7 @@ private predicate nodeMayUseSummary(
   NodeEx n, FlowState state, AccessPathApprox apa, Configuration config
 ) {
   exists(DataFlowCallable c, ParameterPosition pos, ParamNodeEx p |
-    Stage4::parameterMayFlowThrough(p, apa, config) and
+    Stage5::parameterMayFlowThrough(p, apa, config) and
     nodeMayUseSummary0(n, c, pos, state, apa, config) and
     p.isParameterOf(c, pos)
   )
@@ -2606,8 +2849,8 @@ private newtype TSummaryCtx =
   TSummaryCtxNone() or
   TSummaryCtxSome(ParamNodeEx p, FlowState state, AccessPath ap) {
     exists(Configuration config |
-      Stage4::parameterMayFlowThrough(p, ap.getApprox(), config) and
-      Stage4::revFlow(p, state, _, config)
+      Stage5::parameterMayFlowThrough(p, ap.getApprox(), config) and
+      Stage5::revFlow(p, state, _, config)
     )
   }
 
@@ -2656,7 +2899,7 @@ private int count1to2unfold(AccessPathApproxCons1 apa, Configuration config) {
     len = apa.len() and
     result =
       strictcount(AccessPathFront apf |
-        Stage4::consCand(tc, any(AccessPathApprox ap | ap.getFront() = apf and ap.len() = len - 1),
+        Stage5::consCand(tc, any(AccessPathApprox ap | ap.getFront() = apf and ap.len() = len - 1),
           config)
       )
   )
@@ -2665,7 +2908,7 @@ private int count1to2unfold(AccessPathApproxCons1 apa, Configuration config) {
 private int countNodesUsingAccessPath(AccessPathApprox apa, Configuration config) {
   result =
     strictcount(NodeEx n, FlowState state |
-      Stage4::revFlow(n, state, apa, config) or nodeMayUseSummary(n, state, apa, config)
+      Stage5::revFlow(n, state, apa, config) or nodeMayUseSummary(n, state, apa, config)
     )
 }
 
@@ -2686,7 +2929,7 @@ private predicate expensiveLen1to2unfolding(AccessPathApproxCons1 apa, Configura
 private AccessPathApprox getATail(AccessPathApprox apa, Configuration config) {
   exists(TypedContent head |
     apa.pop(head) = result and
-    Stage4::consCand(head, result, config)
+    Stage5::consCand(head, result, config)
   )
 }
 
@@ -2768,7 +3011,7 @@ private newtype TPathNode =
     NodeEx node, FlowState state, CallContext cc, SummaryCtx sc, AccessPath ap, Configuration config
   ) {
     // A PathNode is introduced by a source ...
-    Stage4::revFlow(node, state, config) and
+    Stage5::revFlow(node, state, config) and
     sourceNode(node, state, config) and
     (
       if hasSourceCallCtx(config)
@@ -2782,7 +3025,7 @@ private newtype TPathNode =
     exists(PathNodeMid mid |
       pathStep(mid, node, state, cc, sc, ap) and
       pragma[only_bind_into](config) = mid.getConfiguration() and
-      Stage4::revFlow(node, state, ap.getApprox(), pragma[only_bind_into](config))
+      Stage5::revFlow(node, state, ap.getApprox(), pragma[only_bind_into](config))
     )
   } or
   TPathNodeSink(NodeEx node, FlowState state, Configuration config) {
@@ -2924,7 +3167,7 @@ private class AccessPathCons2 extends AccessPath, TAccessPathCons2 {
   override TypedContent getHead() { result = head1 }
 
   override AccessPath getTail() {
-    Stage4::consCand(head1, result.getApprox(), _) and
+    Stage5::consCand(head1, result.getApprox(), _) and
     result.getHead() = head2 and
     result.length() = len - 1
   }
@@ -2955,7 +3198,7 @@ private class AccessPathCons1 extends AccessPath, TAccessPathCons1 {
   override TypedContent getHead() { result = head }
 
   override AccessPath getTail() {
-    Stage4::consCand(head, result.getApprox(), _) and result.length() = len - 1
+    Stage5::consCand(head, result.getApprox(), _) and result.length() = len - 1
   }
 
   override AccessPathFrontHead getFront() { result = TFrontHead(head) }
@@ -3347,7 +3590,8 @@ private predicate pathStep(
     AccessPath ap0, NodeEx midnode, FlowState state0, Configuration conf, LocalCallContext localCC
   |
     pathNode(mid, midnode, state0, cc, sc, ap0, conf, localCC) and
-    localFlowBigStep(midnode, state0, node, state, false, ap.getFront(), conf, localCC) and
+    localFlowBigStep(midnode, state0, node, state, false, ap.(AccessPathNil).getType(), conf,
+      localCC) and
     ap0 instanceof AccessPathNil
   )
   or
@@ -3389,7 +3633,7 @@ private predicate pathReadStep(
 ) {
   ap0 = mid.getAp() and
   tc = ap0.getHead() and
-  Stage4::readStepCand(mid.getNodeEx(), tc.getContent(), node, mid.getConfiguration()) and
+  Stage5::readStepCand(mid.getNodeEx(), tc.getContent(), node, mid.getConfiguration()) and
   state = mid.getState() and
   cc = mid.getCallContext()
 }
@@ -3399,7 +3643,7 @@ private predicate pathStoreStep(
   PathNodeMid mid, NodeEx node, FlowState state, AccessPath ap0, TypedContent tc, CallContext cc
 ) {
   ap0 = mid.getAp() and
-  Stage4::storeStepCand(mid.getNodeEx(), _, tc, node, _, mid.getConfiguration()) and
+  Stage5::storeStepCand(mid.getNodeEx(), _, tc, node, _, mid.getConfiguration()) and
   state = mid.getState() and
   cc = mid.getCallContext()
 }
@@ -3436,7 +3680,7 @@ private NodeEx getAnOutNodeFlow(
   ReturnKindExt kind, DataFlowCall call, AccessPathApprox apa, Configuration config
 ) {
   result.asNode() = kind.getAnOutNode(call) and
-  Stage4::revFlow(result, _, apa, config)
+  Stage5::revFlow(result, _, apa, config)
 }
 
 /**
@@ -3472,7 +3716,7 @@ private predicate parameterCand(
   DataFlowCallable callable, ParameterPosition pos, AccessPathApprox apa, Configuration config
 ) {
   exists(ParamNodeEx p |
-    Stage4::revFlow(p, _, apa, config) and
+    Stage5::revFlow(p, _, apa, config) and
     p.isParameterOf(callable, pos)
   )
 }
@@ -3751,9 +3995,17 @@ predicate stageStats(
   n = 45 and
   Stage4::stats(false, nodes, fields, conscand, states, tuples, config)
   or
-  stage = "5 Fwd" and n = 50 and finalStats(true, nodes, fields, conscand, states, tuples)
+  stage = "5 Fwd" and
+  n = 50 and
+  Stage5::stats(true, nodes, fields, conscand, states, tuples, config)
   or
-  stage = "5 Rev" and n = 55 and finalStats(false, nodes, fields, conscand, states, tuples)
+  stage = "5 Rev" and
+  n = 55 and
+  Stage5::stats(false, nodes, fields, conscand, states, tuples, config)
+  or
+  stage = "6 Fwd" and n = 60 and finalStats(true, nodes, fields, conscand, states, tuples)
+  or
+  stage = "6 Rev" and n = 65 and finalStats(false, nodes, fields, conscand, states, tuples)
 }
 
 private module FlowExploration {
diff --git a/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImplForPathname.qll b/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImplForPathname.qll
index ccde916a3c2..6741ccc2f06 100644
--- a/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImplForPathname.qll
+++ b/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImplForPathname.qll
@@ -621,23 +621,6 @@ private predicate parameterFlowThroughAllowed(ParamNodeEx p, ReturnKindExt kind)
   )
 }
 
-/**
- * Holds if flow from a parameter at position `pos` inside `c` to a return node of
- * kind `kind` is allowed.
- *
- * We don't expect a parameter to return stored in itself, unless
- * explicitly allowed
- */
-bindingset[c, pos, kind]
-private predicate parameterFlowThroughAllowed(
-  DataFlowCallable c, ParameterPosition pos, ReturnKindExt kind
-) {
-  exists(ParamNodeEx p |
-    p.isParameterOf(c, pos) and
-    parameterFlowThroughAllowed(p, kind)
-  )
-}
-
 private module Stage1 implements StageSig {
   class Ap = Unit;
 
@@ -980,6 +963,12 @@ private module Stage1 implements StageSig {
   pragma[nomagic]
   predicate revFlow(NodeEx node, Configuration config) { revFlow(node, _, config) }
 
+  pragma[nomagic]
+  predicate revFlowAp(NodeEx node, Ap ap, Configuration config) {
+    revFlow(node, config) and
+    exists(ap)
+  }
+
   bindingset[node, state, config]
   predicate revFlow(NodeEx node, FlowState state, Ap ap, Configuration config) {
     revFlow(node, _, pragma[only_bind_into](config)) and
@@ -1022,9 +1011,13 @@ private module Stage1 implements StageSig {
   }
 
   pragma[nomagic]
-  predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config) {
+  predicate returnMayFlowThrough(
+    RetNodeEx ret, Ap argAp, Ap ap, ReturnKindExt kind, Configuration config
+  ) {
     throughFlowNodeCand(ret, config) and
-    kind = ret.getKind()
+    kind = ret.getKind() and
+    exists(argAp) and
+    exists(ap)
   }
 
   pragma[nomagic]
@@ -1189,6 +1182,8 @@ private signature module StageSig {
 
   predicate revFlow(NodeEx node, Configuration config);
 
+  predicate revFlowAp(NodeEx node, Ap ap, Configuration config);
+
   bindingset[node, state, config]
   predicate revFlow(NodeEx node, FlowState state, Ap ap, Configuration config);
 
@@ -1196,7 +1191,9 @@ private signature module StageSig {
 
   predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config);
 
-  predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config);
+  predicate returnMayFlowThrough(
+    RetNodeEx ret, Ap argAp, Ap ap, ReturnKindExt kind, Configuration config
+  );
 
   predicate storeStepCand(
     NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, DataFlowType contentType,
@@ -1281,21 +1278,43 @@ private module MkStage<StageSig PrevStage> {
     import Param
 
     /* Begin: Stage logic. */
-    bindingset[result, apa]
-    private ApApprox unbindApa(ApApprox apa) {
-      pragma[only_bind_out](apa) = pragma[only_bind_out](result)
+    // use an alias as a workaround for bad functionality-induced joins
+    pragma[nomagic]
+    private predicate revFlowApAlias(NodeEx node, ApApprox apa, Configuration config) {
+      PrevStage::revFlowAp(node, apa, config)
+    }
+
+    pragma[nomagic]
+    private predicate flowIntoCallApa(
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, ApApprox apa,
+      Configuration config
+    ) {
+      flowIntoCall(call, arg, p, allowsFieldFlow, config) and
+      PrevStage::revFlowAp(p, pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
+      revFlowApAlias(arg, pragma[only_bind_into](apa), pragma[only_bind_into](config))
+    }
+
+    pragma[nomagic]
+    private predicate flowOutOfCallApa(
+      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
+      ApApprox apa, Configuration config
+    ) {
+      flowOutOfCall(call, ret, kind, out, allowsFieldFlow, config) and
+      PrevStage::revFlowAp(out, pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
+      revFlowApAlias(ret, pragma[only_bind_into](apa), pragma[only_bind_into](config))
     }
 
     pragma[nomagic]
     private predicate flowThroughOutOfCall(
-      DataFlowCall call, DataFlowCallable c, CcCall ccc, RetNodeEx ret, ReturnKindExt kind,
-      NodeEx out, boolean allowsFieldFlow, Configuration config
+      DataFlowCall call, CcCall ccc, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow,
+      ApApprox argApa, ApApprox apa, Configuration config
     ) {
-      flowOutOfCall(call, ret, kind, out, allowsFieldFlow, pragma[only_bind_into](config)) and
-      PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
-      PrevStage::returnMayFlowThrough(ret, kind, pragma[only_bind_into](config)) and
-      matchesCall(ccc, call) and
-      c = ret.getEnclosingCallable()
+      exists(ReturnKindExt kind |
+        flowOutOfCallApa(call, ret, kind, out, allowsFieldFlow, apa, pragma[only_bind_into](config)) and
+        PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
+        PrevStage::returnMayFlowThrough(ret, argApa, apa, kind, pragma[only_bind_into](config)) and
+        matchesCall(ccc, call)
+      )
     }
 
     /**
@@ -1307,39 +1326,50 @@ private module MkStage<StageSig PrevStage> {
      * corresponding parameter position and access path of that argument, respectively.
      */
     pragma[nomagic]
+    additional predicate fwdFlow(
+      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      Ap ap, ApApprox apa, Configuration config
+    ) {
+      fwdFlow0(node, state, cc, summaryCtx, argAp, ap, apa, config) and
+      PrevStage::revFlow(node, state, apa, config) and
+      filter(node, state, ap, config)
+    }
+
+    pragma[inline]
     additional predicate fwdFlow(
       NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
       Ap ap, Configuration config
     ) {
-      fwdFlow0(node, state, cc, summaryCtx, argAp, ap, config) and
-      PrevStage::revFlow(node, state, unbindApa(getApprox(ap)), config) and
-      filter(node, state, ap, config)
+      fwdFlow(node, state, cc, summaryCtx, argAp, ap, _, config)
     }
 
     pragma[nomagic]
     private predicate fwdFlow0(
       NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      Ap ap, Configuration config
+      Ap ap, ApApprox apa, Configuration config
     ) {
       sourceNode(node, state, config) and
       (if hasSourceCallCtx(config) then cc = ccSomeCall() else cc = ccNone()) and
       argAp = apNone() and
       summaryCtx = TParameterPositionNone() and
-      ap = getApNil(node)
+      ap = getApNil(node) and
+      apa = getApprox(ap)
       or
-      exists(NodeEx mid, FlowState state0, Ap ap0, LocalCc localCc |
-        fwdFlow(mid, state0, cc, summaryCtx, argAp, ap0, config) and
+      exists(NodeEx mid, FlowState state0, Ap ap0, ApApprox apa0, LocalCc localCc |
+        fwdFlow(mid, state0, cc, summaryCtx, argAp, ap0, apa0, config) and
         localCc = getLocalCc(mid, cc)
       |
         localStep(mid, state0, node, state, true, _, config, localCc) and
-        ap = ap0
+        ap = ap0 and
+        apa = apa0
         or
         localStep(mid, state0, node, state, false, ap, config, localCc) and
-        ap0 instanceof ApNil
+        ap0 instanceof ApNil and
+        apa = getApprox(ap)
       )
       or
       exists(NodeEx mid |
-        fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, apa, pragma[only_bind_into](config)) and
         jumpStep(mid, node, config) and
         cc = ccNone() and
         summaryCtx = TParameterPositionNone() and
@@ -1352,7 +1382,8 @@ private module MkStage<StageSig PrevStage> {
         cc = ccNone() and
         summaryCtx = TParameterPositionNone() and
         argAp = apNone() and
-        ap = getApNil(node)
+        ap = getApNil(node) and
+        apa = getApprox(ap)
       )
       or
       exists(NodeEx mid, FlowState state0, ApNil nil |
@@ -1361,32 +1392,32 @@ private module MkStage<StageSig PrevStage> {
         cc = ccNone() and
         summaryCtx = TParameterPositionNone() and
         argAp = apNone() and
-        ap = getApNil(node)
+        ap = getApNil(node) and
+        apa = getApprox(ap)
       )
       or
       // store
       exists(TypedContent tc, Ap ap0 |
         fwdFlowStore(_, ap0, tc, node, state, cc, summaryCtx, argAp, config) and
-        ap = apCons(tc, ap0)
+        ap = apCons(tc, ap0) and
+        apa = getApprox(ap)
       )
       or
       // read
       exists(Ap ap0, Content c |
         fwdFlowRead(ap0, c, _, node, state, cc, summaryCtx, argAp, config) and
-        fwdFlowConsCand(ap0, c, ap, config)
+        fwdFlowConsCand(ap0, c, ap, config) and
+        apa = getApprox(ap)
       )
       or
       // flow into a callable
-      exists(ApApprox apa |
-        fwdFlowIn(_, node, state, _, cc, _, _, ap, config) and
-        apa = getApprox(ap) and
-        if PrevStage::parameterMayFlowThrough(node, apa, config)
-        then (
-          summaryCtx = TParameterPositionSome(node.(ParamNodeEx).getPosition()) and
-          argAp = apSome(ap)
-        ) else (
-          summaryCtx = TParameterPositionNone() and argAp = apNone()
-        )
+      fwdFlowIn(_, node, state, _, cc, _, _, ap, apa, config) and
+      if PrevStage::parameterMayFlowThrough(node, apa, config)
+      then (
+        summaryCtx = TParameterPositionSome(node.(ParamNodeEx).getPosition()) and
+        argAp = apSome(ap)
+      ) else (
+        summaryCtx = TParameterPositionNone() and argAp = apNone()
       )
       or
       // flow out of a callable
@@ -1394,8 +1425,8 @@ private module MkStage<StageSig PrevStage> {
         DataFlowCall call, RetNodeEx ret, boolean allowsFieldFlow, CcNoCall innercc,
         DataFlowCallable inner
       |
-        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, config) and
-        flowOutOfCall(call, ret, _, node, allowsFieldFlow, config) and
+        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, apa, config) and
+        flowOutOfCallApa(call, ret, _, node, allowsFieldFlow, apa, config) and
         inner = ret.getEnclosingCallable() and
         cc = getCallContextReturn(inner, call, innercc) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
@@ -1403,7 +1434,7 @@ private module MkStage<StageSig PrevStage> {
       or
       // flow through a callable
       exists(DataFlowCall call, ParameterPosition summaryCtx0, Ap argAp0 |
-        fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, config) and
+        fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, apa, config) and
         fwdFlowIsEntered(call, cc, summaryCtx, argAp, summaryCtx0, argAp0, config)
       )
     }
@@ -1413,9 +1444,9 @@ private module MkStage<StageSig PrevStage> {
       NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc,
       ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
     ) {
-      exists(DataFlowType contentType |
-        fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, config) and
-        PrevStage::storeStepCand(node1, unbindApa(getApprox(ap1)), tc, node2, contentType, config) and
+      exists(DataFlowType contentType, ApApprox apa1 |
+        fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, apa1, config) and
+        PrevStage::storeStepCand(node1, apa1, tc, node2, contentType, config) and
         typecheckStore(ap1, contentType)
       )
     }
@@ -1433,43 +1464,104 @@ private module MkStage<StageSig PrevStage> {
       )
     }
 
+    private class ApNonNil instanceof Ap {
+      pragma[nomagic]
+      ApNonNil() { not this instanceof ApNil }
+
+      string toString() { result = "" }
+    }
+
+    pragma[nomagic]
+    private predicate fwdFlowRead0(
+      NodeEx node1, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      ApNonNil ap, Configuration config
+    ) {
+      fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
+      PrevStage::readStepCand(node1, _, _, config)
+    }
+
     pragma[nomagic]
     private predicate fwdFlowRead(
       Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc,
       ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
     ) {
-      fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
+      fwdFlowRead0(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, c, node2, config) and
       getHeadContent(ap) = c
     }
 
     pragma[nomagic]
     private predicate fwdFlowIn(
-      DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, Cc innercc,
-      ParameterPositionOption summaryCtx, ApOption argAp, Ap ap, Configuration config
+      DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, CcCall innercc,
+      ParameterPositionOption summaryCtx, ApOption argAp, Ap ap, ApApprox apa, Configuration config
     ) {
       exists(ArgNodeEx arg, boolean allowsFieldFlow |
-        fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, config) and
-        flowIntoCall(call, arg, p, allowsFieldFlow, config) and
+        fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, apa, config) and
+        flowIntoCallApa(call, arg, p, allowsFieldFlow, apa, config) and
         innercc = getCallContextCall(call, p.getEnclosingCallable(), outercc) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
+    pragma[nomagic]
+    private predicate fwdFlowRetFromArg(
+      RetNodeEx ret, FlowState state, CcCall ccc, ParameterPosition summaryCtx, ParamNodeEx p,
+      Ap argAp, ApApprox argApa, Ap ap, ApApprox apa, Configuration config
+    ) {
+      exists(DataFlowCallable c, ReturnKindExt kind |
+        fwdFlow(pragma[only_bind_into](ret), state, ccc,
+          TParameterPositionSome(pragma[only_bind_into](summaryCtx)), apSome(argAp), ap, apa, config) and
+        getApprox(argAp) = argApa and
+        c = ret.getEnclosingCallable() and
+        kind = ret.getKind() and
+        p.isParameterOf(c, pragma[only_bind_into](summaryCtx)) and
+        parameterFlowThroughAllowed(p, kind)
+      )
+    }
+
+    pragma[inline]
+    private predicate fwdFlowInMayFlowThrough(
+      DataFlowCall call, Cc cc, CcCall innerCc, ParameterPositionOption summaryCtx, ApOption argAp,
+      ParamNodeEx param, Ap ap, ApApprox apa, Configuration config
+    ) {
+      fwdFlowIn(call, pragma[only_bind_into](param), _, cc, innerCc, summaryCtx, argAp, ap,
+        pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
+      PrevStage::parameterMayFlowThrough(param, apa, config)
+    }
+
+    // dedup before joining with `flowThroughOutOfCall`
+    pragma[nomagic]
+    private predicate fwdFlowInMayFlowThroughProj(
+      DataFlowCall call, CcCall innerCc, ApApprox apa, Configuration config
+    ) {
+      fwdFlowInMayFlowThrough(call, _, innerCc, _, _, _, _, apa, config)
+    }
+
+    /**
+     * Same as `flowThroughOutOfCall`, but restricted to calls that are reached
+     * in the flow covered by `fwdFlow`, where data might flow through the target
+     * callable and back out at `call`.
+     */
+    pragma[nomagic]
+    private predicate fwdFlowThroughOutOfCall(
+      DataFlowCall call, CcCall ccc, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow,
+      ApApprox argApa, ApApprox apa, Configuration config
+    ) {
+      fwdFlowInMayFlowThroughProj(call, ccc, argApa, config) and
+      flowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, argApa, apa, config)
+    }
+
     pragma[nomagic]
     private predicate fwdFlowOutFromArg(
       DataFlowCall call, NodeEx out, FlowState state, ParameterPosition summaryCtx, Ap argAp, Ap ap,
-      Configuration config
+      ApApprox apa, Configuration config
     ) {
-      exists(
-        DataFlowCallable c, RetNodeEx ret, ReturnKindExt kind, boolean allowsFieldFlow, CcCall ccc
-      |
-        fwdFlow(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc),
-          TParameterPositionSome(pragma[only_bind_into](summaryCtx)), apSome(argAp), ap, config) and
-        flowThroughOutOfCall(call, pragma[only_bind_into](c), ccc, ret, kind, out, allowsFieldFlow,
+      exists(RetNodeEx ret, boolean allowsFieldFlow, CcCall ccc, ApApprox argApa |
+        fwdFlowRetFromArg(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc),
+          summaryCtx, _, argAp, pragma[only_bind_into](argApa), ap, pragma[only_bind_into](apa),
           config) and
-        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
-        parameterFlowThroughAllowed(c, pragma[only_bind_into](summaryCtx), kind)
+        fwdFlowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, argApa, apa, config) and
+        (if allowsFieldFlow = false then ap instanceof ApNil else any())
       )
     }
 
@@ -1483,8 +1575,7 @@ private module MkStage<StageSig PrevStage> {
       ParameterPosition pos, Ap ap, Configuration config
     ) {
       exists(ParamNodeEx param |
-        fwdFlowIn(call, param, _, cc, _, summaryCtx, argAp, ap, config) and
-        PrevStage::parameterMayFlowThrough(param, unbindApa(getApprox(ap)), config) and
+        fwdFlowInMayFlowThrough(call, cc, _, summaryCtx, argAp, param, ap, _, config) and
         pos = param.getPosition()
       )
     }
@@ -1505,41 +1596,55 @@ private module MkStage<StageSig PrevStage> {
       fwdFlowConsCand(ap1, c, ap2, config)
     }
 
-    pragma[nomagic]
-    private predicate returnFlowsThrough0(
-      RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, DataFlowCallable c,
-      ParameterPosition ppos, Ap argAp, Ap ap, Configuration config
-    ) {
-      exists(boolean allowsFieldFlow |
-        fwdFlow(ret, state, ccc, TParameterPositionSome(ppos), apSome(argAp), ap, config) and
-        flowThroughOutOfCall(_, c, _, pragma[only_bind_into](ret), kind, _, allowsFieldFlow,
-          pragma[only_bind_into](config)) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
-      )
-    }
-
     pragma[nomagic]
     private predicate returnFlowsThrough(
       RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, ParamNodeEx p, Ap argAp,
       Ap ap, Configuration config
     ) {
-      exists(DataFlowCallable c, ParameterPosition ppos |
-        returnFlowsThrough0(ret, kind, state, ccc, c, ppos, argAp, ap, config) and
-        p.isParameterOf(c, ppos) and
-        parameterFlowThroughAllowed(p, kind)
+      exists(boolean allowsFieldFlow, ApApprox argApa, ApApprox apa |
+        fwdFlowRetFromArg(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc), _, p,
+          argAp, pragma[only_bind_into](argApa), ap, pragma[only_bind_into](apa), config) and
+        kind = ret.getKind() and
+        fwdFlowThroughOutOfCall(_, ccc, ret, _, allowsFieldFlow, argApa, apa, config) and
+        (if allowsFieldFlow = false then ap instanceof ApNil else any())
       )
     }
 
     pragma[nomagic]
     private predicate flowThroughIntoCall(
-      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp,
+      Configuration config
     ) {
-      exists(Ap argAp |
-        flowIntoCall(call, pragma[only_bind_into](arg), pragma[only_bind_into](p), allowsFieldFlow,
+      exists(ApApprox argApa |
+        flowIntoCallApa(call, pragma[only_bind_into](arg), pragma[only_bind_into](p),
+          allowsFieldFlow, argApa, pragma[only_bind_into](config)) and
+        fwdFlow(arg, _, _, _, _, pragma[only_bind_into](argAp), argApa,
           pragma[only_bind_into](config)) and
-        fwdFlow(arg, _, _, _, _, pragma[only_bind_into](argAp), pragma[only_bind_into](config)) and
         returnFlowsThrough(_, _, _, _, p, pragma[only_bind_into](argAp), _,
-          pragma[only_bind_into](config))
+          pragma[only_bind_into](config)) and
+        if allowsFieldFlow = false then argAp instanceof ApNil else any()
+      )
+    }
+
+    pragma[nomagic]
+    private predicate flowIntoCallAp(
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap ap,
+      Configuration config
+    ) {
+      exists(ApApprox apa |
+        flowIntoCallApa(call, arg, p, allowsFieldFlow, apa, config) and
+        fwdFlow(arg, _, _, _, _, ap, apa, config)
+      )
+    }
+
+    pragma[nomagic]
+    private predicate flowOutOfCallAp(
+      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
+      Ap ap, Configuration config
+    ) {
+      exists(ApApprox apa |
+        flowOutOfCallApa(call, ret, kind, out, allowsFieldFlow, apa, config) and
+        fwdFlow(ret, _, _, _, _, ap, apa, config)
       )
     }
 
@@ -1628,7 +1733,7 @@ private module MkStage<StageSig PrevStage> {
       // flow into a callable
       exists(ParamNodeEx p, boolean allowsFieldFlow |
         revFlow(p, state, TReturnCtxNone(), returnAp, ap, config) and
-        flowIntoCall(_, node, p, allowsFieldFlow, config) and
+        flowIntoCallAp(_, node, p, allowsFieldFlow, ap, config) and
         (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
         returnCtx = TReturnCtxNone()
       )
@@ -1682,22 +1787,41 @@ private module MkStage<StageSig PrevStage> {
     ) {
       exists(NodeEx out, boolean allowsFieldFlow |
         revFlow(out, state, returnCtx, returnAp, ap, config) and
-        flowOutOfCall(call, ret, kind, out, allowsFieldFlow, config) and
+        flowOutOfCallAp(call, ret, kind, out, allowsFieldFlow, ap, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
+    /**
+     * Same as `flowThroughIntoCall`, but restricted to calls that are reached
+     * in the flow covered by `revFlow`, where data might flow through the target
+     * callable and back out at `call`.
+     */
+    pragma[nomagic]
+    private predicate revFlowThroughIntoCall(
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp,
+      Configuration config
+    ) {
+      flowThroughIntoCall(call, arg, p, allowsFieldFlow, argAp, config) and
+      revFlowIsReturned(call, _, _, _, _, config)
+    }
+
+    pragma[nomagic]
+    private predicate revFlowParamToReturn(
+      ParamNodeEx p, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap, Configuration config
+    ) {
+      revFlow(p, state, TReturnCtxMaybeFlowThrough(kind), apSome(returnAp), ap, config) and
+      parameterFlowThroughAllowed(p, kind)
+    }
+
     pragma[nomagic]
     private predicate revFlowInToReturn(
       DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap,
       Configuration config
     ) {
       exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(pragma[only_bind_into](p), state,
-          TReturnCtxMaybeFlowThrough(pragma[only_bind_into](kind)), apSome(returnAp), ap, config) and
-        flowThroughIntoCall(call, arg, p, allowsFieldFlow, config) and
-        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
-        parameterFlowThroughAllowed(p, kind)
+        revFlowParamToReturn(p, state, kind, returnAp, ap, config) and
+        revFlowThroughIntoCall(call, arg, p, allowsFieldFlow, ap, config)
       )
     }
 
@@ -1750,6 +1874,11 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     predicate revFlow(NodeEx node, Configuration config) { revFlow(node, _, _, _, _, config) }
 
+    pragma[nomagic]
+    predicate revFlowAp(NodeEx node, Ap ap, Configuration config) {
+      revFlow(node, _, _, _, ap, config)
+    }
+
     // use an alias as a workaround for bad functionality-induced joins
     pragma[nomagic]
     additional predicate revFlowAlias(NodeEx node, Configuration config) {
@@ -1786,9 +1915,9 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate parameterFlowsThroughRev(
-      ParamNodeEx p, Ap ap, ReturnKindExt kind, Configuration config
+      ParamNodeEx p, Ap ap, ReturnKindExt kind, Ap returnAp, Configuration config
     ) {
-      revFlow(p, _, TReturnCtxMaybeFlowThrough(kind), apSome(_), ap, config) and
+      revFlow(p, _, TReturnCtxMaybeFlowThrough(kind), apSome(returnAp), ap, config) and
       parameterFlowThroughAllowed(p, kind)
     }
 
@@ -1796,27 +1925,36 @@ private module MkStage<StageSig PrevStage> {
     predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
       exists(RetNodeEx ret, ReturnKindExt kind |
         returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
-        parameterFlowsThroughRev(p, ap, kind, config)
+        parameterFlowsThroughRev(p, ap, kind, _, config)
       )
     }
 
     pragma[nomagic]
-    predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config) {
-      exists(ParamNodeEx p, Ap ap |
-        returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
-        parameterFlowsThroughRev(p, ap, kind, config)
+    predicate returnMayFlowThrough(
+      RetNodeEx ret, Ap argAp, Ap ap, ReturnKindExt kind, Configuration config
+    ) {
+      exists(ParamNodeEx p |
+        returnFlowsThrough(ret, kind, _, _, p, argAp, ap, config) and
+        parameterFlowsThroughRev(p, argAp, kind, ap, config)
+      )
+    }
+
+    pragma[nomagic]
+    predicate revFlowInToReturnIsReturned(
+      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnCtx returnCtx, ApOption returnAp,
+      Ap ap, Configuration config
+    ) {
+      exists(ReturnKindExt returnKind0, Ap returnAp0 |
+        revFlowInToReturn(call, arg, state, returnKind0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
       )
     }
 
     pragma[nomagic]
     predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
-      exists(
-        ReturnKindExt returnKind0, Ap returnAp0, ArgNodeEx arg, FlowState state,
-        ReturnCtx returnCtx, ApOption returnAp, Ap ap
-      |
+      exists(ArgNodeEx arg, FlowState state, ReturnCtx returnCtx, ApOption returnAp, Ap ap |
         revFlow(arg, state, returnCtx, returnAp, ap, config) and
-        revFlowInToReturn(call, arg, state, returnKind0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
+        revFlowInToReturnIsReturned(call, arg, state, returnCtx, returnAp, ap, config)
       )
     }
 
@@ -2179,16 +2317,16 @@ private module LocalFlowBigStep {
   pragma[nomagic]
   predicate localFlowBigStep(
     NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
-    AccessPathFrontNil apf, Configuration config, LocalCallContext callContext
+    DataFlowType t, Configuration config, LocalCallContext callContext
   ) {
-    localFlowStepPlus(node1, state1, node2, preservesValue, apf.getType(), config, callContext) and
+    localFlowStepPlus(node1, state1, node2, preservesValue, t, config, callContext) and
     localFlowExit(node2, state1, config) and
     state1 = state2
     or
     additionalLocalFlowStepNodeCand2(node1, state1, node2, state2, config) and
     state1 != state2 and
     preservesValue = false and
-    apf = TFrontNil(node2.getDataFlowType()) and
+    t = node2.getDataFlowType() and
     callContext.relevantFor(node1.getEnclosingCallable()) and
     not exists(DataFlowCall call | call = callContext.(LocalCallContextSpecificCall).getCall() |
       isUnreachableInCallCached(node1.asNode(), call) or
@@ -2202,11 +2340,87 @@ private import LocalFlowBigStep
 private module Stage3Param implements MkStage<Stage2>::StageParam {
   private module PrevStage = Stage2;
 
+  class Ap = ApproxAccessPathFront;
+
+  class ApNil = ApproxAccessPathFrontNil;
+
+  PrevStage::Ap getApprox(Ap ap) { result = ap.toBoolNonEmpty() }
+
+  ApNil getApNil(NodeEx node) {
+    PrevStage::revFlow(node, _) and result = TApproxFrontNil(node.getDataFlowType())
+  }
+
+  bindingset[tc, tail]
+  Ap apCons(TypedContent tc, Ap tail) { result.getAHead() = tc and exists(tail) }
+
+  pragma[noinline]
+  Content getHeadContent(Ap ap) { result = ap.getAHead().getContent() }
+
+  class ApOption = ApproxAccessPathFrontOption;
+
+  ApOption apNone() { result = TApproxAccessPathFrontNone() }
+
+  ApOption apSome(Ap ap) { result = TApproxAccessPathFrontSome(ap) }
+
+  import BooleanCallContext
+
+  predicate localStep(
+    NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
+    ApproxAccessPathFrontNil ap, Configuration config, LocalCc lcc
+  ) {
+    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap.getType(), config, _) and
+    exists(lcc)
+  }
+
+  predicate flowOutOfCall = flowOutOfCallNodeCand2/6;
+
+  predicate flowIntoCall = flowIntoCallNodeCand2/5;
+
+  pragma[nomagic]
+  private predicate expectsContentCand(NodeEx node, Ap ap, Configuration config) {
+    exists(Content c |
+      PrevStage::revFlow(node, pragma[only_bind_into](config)) and
+      PrevStage::readStepCand(_, c, _, pragma[only_bind_into](config)) and
+      expectsContentEx(node, c) and
+      c = ap.getAHead().getContent()
+    )
+  }
+
+  pragma[nomagic]
+  private predicate castingNodeEx(NodeEx node) { node.asNode() instanceof CastingNode }
+
+  bindingset[node, state, ap, config]
+  predicate filter(NodeEx node, FlowState state, Ap ap, Configuration config) {
+    exists(state) and
+    exists(config) and
+    (if castingNodeEx(node) then compatibleTypes(node.getDataFlowType(), ap.getType()) else any()) and
+    (
+      notExpectsContent(node)
+      or
+      expectsContentCand(node, ap, config)
+    )
+  }
+
+  bindingset[ap, contentType]
+  predicate typecheckStore(Ap ap, DataFlowType contentType) {
+    // We need to typecheck stores here, since reverse flow through a getter
+    // might have a different type here compared to inside the getter.
+    compatibleTypes(ap.getType(), contentType)
+  }
+}
+
+private module Stage3 implements StageSig {
+  import MkStage<Stage2>::Stage<Stage3Param>
+}
+
+private module Stage4Param implements MkStage<Stage3>::StageParam {
+  private module PrevStage = Stage3;
+
   class Ap = AccessPathFront;
 
   class ApNil = AccessPathFrontNil;
 
-  PrevStage::Ap getApprox(Ap ap) { result = ap.toBoolNonEmpty() }
+  PrevStage::Ap getApprox(Ap ap) { result = ap.toApprox() }
 
   ApNil getApNil(NodeEx node) {
     PrevStage::revFlow(node, _) and result = TFrontNil(node.getDataFlowType())
@@ -2226,16 +2440,42 @@ private module Stage3Param implements MkStage<Stage2>::StageParam {
 
   import BooleanCallContext
 
+  pragma[nomagic]
   predicate localStep(
     NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
     ApNil ap, Configuration config, LocalCc lcc
   ) {
-    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap, config, _) and exists(lcc)
+    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap.getType(), config, _) and
+    PrevStage::revFlow(node1, pragma[only_bind_into](state1), _, pragma[only_bind_into](config)) and
+    PrevStage::revFlowAlias(node2, pragma[only_bind_into](state2), _, pragma[only_bind_into](config)) and
+    exists(lcc)
   }
 
-  predicate flowOutOfCall = flowOutOfCallNodeCand2/6;
+  pragma[nomagic]
+  predicate flowOutOfCall(
+    DataFlowCall call, RetNodeEx node1, ReturnKindExt kind, NodeEx node2, boolean allowsFieldFlow,
+    Configuration config
+  ) {
+    exists(FlowState state |
+      flowOutOfCallNodeCand2(call, node1, kind, node2, allowsFieldFlow, config) and
+      PrevStage::revFlow(node2, pragma[only_bind_into](state), _, pragma[only_bind_into](config)) and
+      PrevStage::revFlowAlias(node1, pragma[only_bind_into](state), _,
+        pragma[only_bind_into](config))
+    )
+  }
 
-  predicate flowIntoCall = flowIntoCallNodeCand2/5;
+  pragma[nomagic]
+  predicate flowIntoCall(
+    DataFlowCall call, ArgNodeEx node1, ParamNodeEx node2, boolean allowsFieldFlow,
+    Configuration config
+  ) {
+    exists(FlowState state |
+      flowIntoCallNodeCand2(call, node1, node2, allowsFieldFlow, config) and
+      PrevStage::revFlow(node2, pragma[only_bind_into](state), _, pragma[only_bind_into](config)) and
+      PrevStage::revFlowAlias(node1, pragma[only_bind_into](state), _,
+        pragma[only_bind_into](config))
+    )
+  }
 
   pragma[nomagic]
   private predicate clearSet(NodeEx node, ContentSet c, Configuration config) {
@@ -2291,8 +2531,8 @@ private module Stage3Param implements MkStage<Stage2>::StageParam {
   }
 }
 
-private module Stage3 implements StageSig {
-  import MkStage<Stage2>::Stage<Stage3Param>
+private module Stage4 implements StageSig {
+  import MkStage<Stage3>::Stage<Stage4Param>
 }
 
 /**
@@ -2303,8 +2543,8 @@ private predicate flowCandSummaryCtx(
   NodeEx node, FlowState state, AccessPathFront argApf, Configuration config
 ) {
   exists(AccessPathFront apf |
-    Stage3::revFlow(node, state, TReturnCtxMaybeFlowThrough(_), _, apf, config) and
-    Stage3::fwdFlow(node, state, any(Stage3::CcCall ccc), _, TAccessPathFrontSome(argApf), apf,
+    Stage4::revFlow(node, state, TReturnCtxMaybeFlowThrough(_), _, apf, config) and
+    Stage4::fwdFlow(node, state, any(Stage4::CcCall ccc), _, TAccessPathFrontSome(argApf), apf,
       config)
   )
 }
@@ -2315,10 +2555,10 @@ private predicate flowCandSummaryCtx(
  */
 private predicate expensiveLen2unfolding(TypedContent tc, Configuration config) {
   exists(int tails, int nodes, int apLimit, int tupleLimit |
-    tails = strictcount(AccessPathFront apf | Stage3::consCand(tc, apf, config)) and
+    tails = strictcount(AccessPathFront apf | Stage4::consCand(tc, apf, config)) and
     nodes =
       strictcount(NodeEx n, FlowState state |
-        Stage3::revFlow(n, state, any(AccessPathFrontHead apf | apf.getHead() = tc), config)
+        Stage4::revFlow(n, state, any(AccessPathFrontHead apf | apf.getHead() = tc), config)
         or
         flowCandSummaryCtx(n, state, any(AccessPathFrontHead apf | apf.getHead() = tc), config)
       ) and
@@ -2332,11 +2572,11 @@ private predicate expensiveLen2unfolding(TypedContent tc, Configuration config)
 private newtype TAccessPathApprox =
   TNil(DataFlowType t) or
   TConsNil(TypedContent tc, DataFlowType t) {
-    Stage3::consCand(tc, TFrontNil(t), _) and
+    Stage4::consCand(tc, TFrontNil(t), _) and
     not expensiveLen2unfolding(tc, _)
   } or
   TConsCons(TypedContent tc1, TypedContent tc2, int len) {
-    Stage3::consCand(tc1, TFrontHead(tc2), _) and
+    Stage4::consCand(tc1, TFrontHead(tc2), _) and
     len in [2 .. accessPathLimit()] and
     not expensiveLen2unfolding(tc1, _)
   } or
@@ -2466,7 +2706,7 @@ private class AccessPathApproxCons1 extends AccessPathApproxCons, TCons1 {
   override AccessPathApprox pop(TypedContent head) {
     head = tc and
     (
-      exists(TypedContent tc2 | Stage3::consCand(tc, TFrontHead(tc2), _) |
+      exists(TypedContent tc2 | Stage4::consCand(tc, TFrontHead(tc2), _) |
         result = TConsCons(tc2, _, len - 1)
         or
         len = 2 and
@@ -2477,7 +2717,7 @@ private class AccessPathApproxCons1 extends AccessPathApproxCons, TCons1 {
       or
       exists(DataFlowType t |
         len = 1 and
-        Stage3::consCand(tc, TFrontNil(t), _) and
+        Stage4::consCand(tc, TFrontNil(t), _) and
         result = TNil(t)
       )
     )
@@ -2502,13 +2742,14 @@ private class AccessPathApproxOption extends TAccessPathApproxOption {
   }
 }
 
-private module Stage4Param implements MkStage<Stage3>::StageParam {
-  private module PrevStage = Stage3;
+private module Stage5Param implements MkStage<Stage4>::StageParam {
+  private module PrevStage = Stage4;
 
   class Ap = AccessPathApprox;
 
   class ApNil = AccessPathApproxNil;
 
+  pragma[nomagic]
   PrevStage::Ap getApprox(Ap ap) { result = ap.getFront() }
 
   ApNil getApNil(NodeEx node) {
@@ -2534,7 +2775,9 @@ private module Stage4Param implements MkStage<Stage3>::StageParam {
     NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
     ApNil ap, Configuration config, LocalCc lcc
   ) {
-    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap.getFront(), config, lcc)
+    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap.getType(), config, lcc) and
+    PrevStage::revFlow(node1, pragma[only_bind_into](state1), _, pragma[only_bind_into](config)) and
+    PrevStage::revFlowAlias(node2, pragma[only_bind_into](state2), _, pragma[only_bind_into](config))
   }
 
   pragma[nomagic]
@@ -2571,7 +2814,7 @@ private module Stage4Param implements MkStage<Stage3>::StageParam {
   predicate typecheckStore(Ap ap, DataFlowType contentType) { any() }
 }
 
-private module Stage4 = MkStage<Stage3>::Stage<Stage4Param>;
+private module Stage5 = MkStage<Stage4>::Stage<Stage5Param>;
 
 bindingset[conf, result]
 private Configuration unbindConf(Configuration conf) {
@@ -2585,8 +2828,8 @@ private predicate nodeMayUseSummary0(
 ) {
   exists(AccessPathApprox apa0 |
     c = n.getEnclosingCallable() and
-    Stage4::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
-    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TParameterPositionSome(pos),
+    Stage5::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
+    Stage5::fwdFlow(n, state, any(CallContextCall ccc), TParameterPositionSome(pos),
       TAccessPathApproxSome(apa), apa0, config)
   )
 }
@@ -2596,7 +2839,7 @@ private predicate nodeMayUseSummary(
   NodeEx n, FlowState state, AccessPathApprox apa, Configuration config
 ) {
   exists(DataFlowCallable c, ParameterPosition pos, ParamNodeEx p |
-    Stage4::parameterMayFlowThrough(p, apa, config) and
+    Stage5::parameterMayFlowThrough(p, apa, config) and
     nodeMayUseSummary0(n, c, pos, state, apa, config) and
     p.isParameterOf(c, pos)
   )
@@ -2606,8 +2849,8 @@ private newtype TSummaryCtx =
   TSummaryCtxNone() or
   TSummaryCtxSome(ParamNodeEx p, FlowState state, AccessPath ap) {
     exists(Configuration config |
-      Stage4::parameterMayFlowThrough(p, ap.getApprox(), config) and
-      Stage4::revFlow(p, state, _, config)
+      Stage5::parameterMayFlowThrough(p, ap.getApprox(), config) and
+      Stage5::revFlow(p, state, _, config)
     )
   }
 
@@ -2656,7 +2899,7 @@ private int count1to2unfold(AccessPathApproxCons1 apa, Configuration config) {
     len = apa.len() and
     result =
       strictcount(AccessPathFront apf |
-        Stage4::consCand(tc, any(AccessPathApprox ap | ap.getFront() = apf and ap.len() = len - 1),
+        Stage5::consCand(tc, any(AccessPathApprox ap | ap.getFront() = apf and ap.len() = len - 1),
           config)
       )
   )
@@ -2665,7 +2908,7 @@ private int count1to2unfold(AccessPathApproxCons1 apa, Configuration config) {
 private int countNodesUsingAccessPath(AccessPathApprox apa, Configuration config) {
   result =
     strictcount(NodeEx n, FlowState state |
-      Stage4::revFlow(n, state, apa, config) or nodeMayUseSummary(n, state, apa, config)
+      Stage5::revFlow(n, state, apa, config) or nodeMayUseSummary(n, state, apa, config)
     )
 }
 
@@ -2686,7 +2929,7 @@ private predicate expensiveLen1to2unfolding(AccessPathApproxCons1 apa, Configura
 private AccessPathApprox getATail(AccessPathApprox apa, Configuration config) {
   exists(TypedContent head |
     apa.pop(head) = result and
-    Stage4::consCand(head, result, config)
+    Stage5::consCand(head, result, config)
   )
 }
 
@@ -2768,7 +3011,7 @@ private newtype TPathNode =
     NodeEx node, FlowState state, CallContext cc, SummaryCtx sc, AccessPath ap, Configuration config
   ) {
     // A PathNode is introduced by a source ...
-    Stage4::revFlow(node, state, config) and
+    Stage5::revFlow(node, state, config) and
     sourceNode(node, state, config) and
     (
       if hasSourceCallCtx(config)
@@ -2782,7 +3025,7 @@ private newtype TPathNode =
     exists(PathNodeMid mid |
       pathStep(mid, node, state, cc, sc, ap) and
       pragma[only_bind_into](config) = mid.getConfiguration() and
-      Stage4::revFlow(node, state, ap.getApprox(), pragma[only_bind_into](config))
+      Stage5::revFlow(node, state, ap.getApprox(), pragma[only_bind_into](config))
     )
   } or
   TPathNodeSink(NodeEx node, FlowState state, Configuration config) {
@@ -2924,7 +3167,7 @@ private class AccessPathCons2 extends AccessPath, TAccessPathCons2 {
   override TypedContent getHead() { result = head1 }
 
   override AccessPath getTail() {
-    Stage4::consCand(head1, result.getApprox(), _) and
+    Stage5::consCand(head1, result.getApprox(), _) and
     result.getHead() = head2 and
     result.length() = len - 1
   }
@@ -2955,7 +3198,7 @@ private class AccessPathCons1 extends AccessPath, TAccessPathCons1 {
   override TypedContent getHead() { result = head }
 
   override AccessPath getTail() {
-    Stage4::consCand(head, result.getApprox(), _) and result.length() = len - 1
+    Stage5::consCand(head, result.getApprox(), _) and result.length() = len - 1
   }
 
   override AccessPathFrontHead getFront() { result = TFrontHead(head) }
@@ -3347,7 +3590,8 @@ private predicate pathStep(
     AccessPath ap0, NodeEx midnode, FlowState state0, Configuration conf, LocalCallContext localCC
   |
     pathNode(mid, midnode, state0, cc, sc, ap0, conf, localCC) and
-    localFlowBigStep(midnode, state0, node, state, false, ap.getFront(), conf, localCC) and
+    localFlowBigStep(midnode, state0, node, state, false, ap.(AccessPathNil).getType(), conf,
+      localCC) and
     ap0 instanceof AccessPathNil
   )
   or
@@ -3389,7 +3633,7 @@ private predicate pathReadStep(
 ) {
   ap0 = mid.getAp() and
   tc = ap0.getHead() and
-  Stage4::readStepCand(mid.getNodeEx(), tc.getContent(), node, mid.getConfiguration()) and
+  Stage5::readStepCand(mid.getNodeEx(), tc.getContent(), node, mid.getConfiguration()) and
   state = mid.getState() and
   cc = mid.getCallContext()
 }
@@ -3399,7 +3643,7 @@ private predicate pathStoreStep(
   PathNodeMid mid, NodeEx node, FlowState state, AccessPath ap0, TypedContent tc, CallContext cc
 ) {
   ap0 = mid.getAp() and
-  Stage4::storeStepCand(mid.getNodeEx(), _, tc, node, _, mid.getConfiguration()) and
+  Stage5::storeStepCand(mid.getNodeEx(), _, tc, node, _, mid.getConfiguration()) and
   state = mid.getState() and
   cc = mid.getCallContext()
 }
@@ -3436,7 +3680,7 @@ private NodeEx getAnOutNodeFlow(
   ReturnKindExt kind, DataFlowCall call, AccessPathApprox apa, Configuration config
 ) {
   result.asNode() = kind.getAnOutNode(call) and
-  Stage4::revFlow(result, _, apa, config)
+  Stage5::revFlow(result, _, apa, config)
 }
 
 /**
@@ -3472,7 +3716,7 @@ private predicate parameterCand(
   DataFlowCallable callable, ParameterPosition pos, AccessPathApprox apa, Configuration config
 ) {
   exists(ParamNodeEx p |
-    Stage4::revFlow(p, _, apa, config) and
+    Stage5::revFlow(p, _, apa, config) and
     p.isParameterOf(callable, pos)
   )
 }
@@ -3751,9 +3995,17 @@ predicate stageStats(
   n = 45 and
   Stage4::stats(false, nodes, fields, conscand, states, tuples, config)
   or
-  stage = "5 Fwd" and n = 50 and finalStats(true, nodes, fields, conscand, states, tuples)
+  stage = "5 Fwd" and
+  n = 50 and
+  Stage5::stats(true, nodes, fields, conscand, states, tuples, config)
   or
-  stage = "5 Rev" and n = 55 and finalStats(false, nodes, fields, conscand, states, tuples)
+  stage = "5 Rev" and
+  n = 55 and
+  Stage5::stats(false, nodes, fields, conscand, states, tuples, config)
+  or
+  stage = "6 Fwd" and n = 60 and finalStats(true, nodes, fields, conscand, states, tuples)
+  or
+  stage = "6 Rev" and n = 65 and finalStats(false, nodes, fields, conscand, states, tuples)
 }
 
 private module FlowExploration {
diff --git a/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImplForRegExp.qll b/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImplForRegExp.qll
index ccde916a3c2..6741ccc2f06 100644
--- a/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImplForRegExp.qll
+++ b/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImplForRegExp.qll
@@ -621,23 +621,6 @@ private predicate parameterFlowThroughAllowed(ParamNodeEx p, ReturnKindExt kind)
   )
 }
 
-/**
- * Holds if flow from a parameter at position `pos` inside `c` to a return node of
- * kind `kind` is allowed.
- *
- * We don't expect a parameter to return stored in itself, unless
- * explicitly allowed
- */
-bindingset[c, pos, kind]
-private predicate parameterFlowThroughAllowed(
-  DataFlowCallable c, ParameterPosition pos, ReturnKindExt kind
-) {
-  exists(ParamNodeEx p |
-    p.isParameterOf(c, pos) and
-    parameterFlowThroughAllowed(p, kind)
-  )
-}
-
 private module Stage1 implements StageSig {
   class Ap = Unit;
 
@@ -980,6 +963,12 @@ private module Stage1 implements StageSig {
   pragma[nomagic]
   predicate revFlow(NodeEx node, Configuration config) { revFlow(node, _, config) }
 
+  pragma[nomagic]
+  predicate revFlowAp(NodeEx node, Ap ap, Configuration config) {
+    revFlow(node, config) and
+    exists(ap)
+  }
+
   bindingset[node, state, config]
   predicate revFlow(NodeEx node, FlowState state, Ap ap, Configuration config) {
     revFlow(node, _, pragma[only_bind_into](config)) and
@@ -1022,9 +1011,13 @@ private module Stage1 implements StageSig {
   }
 
   pragma[nomagic]
-  predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config) {
+  predicate returnMayFlowThrough(
+    RetNodeEx ret, Ap argAp, Ap ap, ReturnKindExt kind, Configuration config
+  ) {
     throughFlowNodeCand(ret, config) and
-    kind = ret.getKind()
+    kind = ret.getKind() and
+    exists(argAp) and
+    exists(ap)
   }
 
   pragma[nomagic]
@@ -1189,6 +1182,8 @@ private signature module StageSig {
 
   predicate revFlow(NodeEx node, Configuration config);
 
+  predicate revFlowAp(NodeEx node, Ap ap, Configuration config);
+
   bindingset[node, state, config]
   predicate revFlow(NodeEx node, FlowState state, Ap ap, Configuration config);
 
@@ -1196,7 +1191,9 @@ private signature module StageSig {
 
   predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config);
 
-  predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config);
+  predicate returnMayFlowThrough(
+    RetNodeEx ret, Ap argAp, Ap ap, ReturnKindExt kind, Configuration config
+  );
 
   predicate storeStepCand(
     NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, DataFlowType contentType,
@@ -1281,21 +1278,43 @@ private module MkStage<StageSig PrevStage> {
     import Param
 
     /* Begin: Stage logic. */
-    bindingset[result, apa]
-    private ApApprox unbindApa(ApApprox apa) {
-      pragma[only_bind_out](apa) = pragma[only_bind_out](result)
+    // use an alias as a workaround for bad functionality-induced joins
+    pragma[nomagic]
+    private predicate revFlowApAlias(NodeEx node, ApApprox apa, Configuration config) {
+      PrevStage::revFlowAp(node, apa, config)
+    }
+
+    pragma[nomagic]
+    private predicate flowIntoCallApa(
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, ApApprox apa,
+      Configuration config
+    ) {
+      flowIntoCall(call, arg, p, allowsFieldFlow, config) and
+      PrevStage::revFlowAp(p, pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
+      revFlowApAlias(arg, pragma[only_bind_into](apa), pragma[only_bind_into](config))
+    }
+
+    pragma[nomagic]
+    private predicate flowOutOfCallApa(
+      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
+      ApApprox apa, Configuration config
+    ) {
+      flowOutOfCall(call, ret, kind, out, allowsFieldFlow, config) and
+      PrevStage::revFlowAp(out, pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
+      revFlowApAlias(ret, pragma[only_bind_into](apa), pragma[only_bind_into](config))
     }
 
     pragma[nomagic]
     private predicate flowThroughOutOfCall(
-      DataFlowCall call, DataFlowCallable c, CcCall ccc, RetNodeEx ret, ReturnKindExt kind,
-      NodeEx out, boolean allowsFieldFlow, Configuration config
+      DataFlowCall call, CcCall ccc, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow,
+      ApApprox argApa, ApApprox apa, Configuration config
     ) {
-      flowOutOfCall(call, ret, kind, out, allowsFieldFlow, pragma[only_bind_into](config)) and
-      PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
-      PrevStage::returnMayFlowThrough(ret, kind, pragma[only_bind_into](config)) and
-      matchesCall(ccc, call) and
-      c = ret.getEnclosingCallable()
+      exists(ReturnKindExt kind |
+        flowOutOfCallApa(call, ret, kind, out, allowsFieldFlow, apa, pragma[only_bind_into](config)) and
+        PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
+        PrevStage::returnMayFlowThrough(ret, argApa, apa, kind, pragma[only_bind_into](config)) and
+        matchesCall(ccc, call)
+      )
     }
 
     /**
@@ -1307,39 +1326,50 @@ private module MkStage<StageSig PrevStage> {
      * corresponding parameter position and access path of that argument, respectively.
      */
     pragma[nomagic]
+    additional predicate fwdFlow(
+      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      Ap ap, ApApprox apa, Configuration config
+    ) {
+      fwdFlow0(node, state, cc, summaryCtx, argAp, ap, apa, config) and
+      PrevStage::revFlow(node, state, apa, config) and
+      filter(node, state, ap, config)
+    }
+
+    pragma[inline]
     additional predicate fwdFlow(
       NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
       Ap ap, Configuration config
     ) {
-      fwdFlow0(node, state, cc, summaryCtx, argAp, ap, config) and
-      PrevStage::revFlow(node, state, unbindApa(getApprox(ap)), config) and
-      filter(node, state, ap, config)
+      fwdFlow(node, state, cc, summaryCtx, argAp, ap, _, config)
     }
 
     pragma[nomagic]
     private predicate fwdFlow0(
       NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      Ap ap, Configuration config
+      Ap ap, ApApprox apa, Configuration config
     ) {
       sourceNode(node, state, config) and
       (if hasSourceCallCtx(config) then cc = ccSomeCall() else cc = ccNone()) and
       argAp = apNone() and
       summaryCtx = TParameterPositionNone() and
-      ap = getApNil(node)
+      ap = getApNil(node) and
+      apa = getApprox(ap)
       or
-      exists(NodeEx mid, FlowState state0, Ap ap0, LocalCc localCc |
-        fwdFlow(mid, state0, cc, summaryCtx, argAp, ap0, config) and
+      exists(NodeEx mid, FlowState state0, Ap ap0, ApApprox apa0, LocalCc localCc |
+        fwdFlow(mid, state0, cc, summaryCtx, argAp, ap0, apa0, config) and
         localCc = getLocalCc(mid, cc)
       |
         localStep(mid, state0, node, state, true, _, config, localCc) and
-        ap = ap0
+        ap = ap0 and
+        apa = apa0
         or
         localStep(mid, state0, node, state, false, ap, config, localCc) and
-        ap0 instanceof ApNil
+        ap0 instanceof ApNil and
+        apa = getApprox(ap)
       )
       or
       exists(NodeEx mid |
-        fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, apa, pragma[only_bind_into](config)) and
         jumpStep(mid, node, config) and
         cc = ccNone() and
         summaryCtx = TParameterPositionNone() and
@@ -1352,7 +1382,8 @@ private module MkStage<StageSig PrevStage> {
         cc = ccNone() and
         summaryCtx = TParameterPositionNone() and
         argAp = apNone() and
-        ap = getApNil(node)
+        ap = getApNil(node) and
+        apa = getApprox(ap)
       )
       or
       exists(NodeEx mid, FlowState state0, ApNil nil |
@@ -1361,32 +1392,32 @@ private module MkStage<StageSig PrevStage> {
         cc = ccNone() and
         summaryCtx = TParameterPositionNone() and
         argAp = apNone() and
-        ap = getApNil(node)
+        ap = getApNil(node) and
+        apa = getApprox(ap)
       )
       or
       // store
       exists(TypedContent tc, Ap ap0 |
         fwdFlowStore(_, ap0, tc, node, state, cc, summaryCtx, argAp, config) and
-        ap = apCons(tc, ap0)
+        ap = apCons(tc, ap0) and
+        apa = getApprox(ap)
       )
       or
       // read
       exists(Ap ap0, Content c |
         fwdFlowRead(ap0, c, _, node, state, cc, summaryCtx, argAp, config) and
-        fwdFlowConsCand(ap0, c, ap, config)
+        fwdFlowConsCand(ap0, c, ap, config) and
+        apa = getApprox(ap)
       )
       or
       // flow into a callable
-      exists(ApApprox apa |
-        fwdFlowIn(_, node, state, _, cc, _, _, ap, config) and
-        apa = getApprox(ap) and
-        if PrevStage::parameterMayFlowThrough(node, apa, config)
-        then (
-          summaryCtx = TParameterPositionSome(node.(ParamNodeEx).getPosition()) and
-          argAp = apSome(ap)
-        ) else (
-          summaryCtx = TParameterPositionNone() and argAp = apNone()
-        )
+      fwdFlowIn(_, node, state, _, cc, _, _, ap, apa, config) and
+      if PrevStage::parameterMayFlowThrough(node, apa, config)
+      then (
+        summaryCtx = TParameterPositionSome(node.(ParamNodeEx).getPosition()) and
+        argAp = apSome(ap)
+      ) else (
+        summaryCtx = TParameterPositionNone() and argAp = apNone()
       )
       or
       // flow out of a callable
@@ -1394,8 +1425,8 @@ private module MkStage<StageSig PrevStage> {
         DataFlowCall call, RetNodeEx ret, boolean allowsFieldFlow, CcNoCall innercc,
         DataFlowCallable inner
       |
-        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, config) and
-        flowOutOfCall(call, ret, _, node, allowsFieldFlow, config) and
+        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, apa, config) and
+        flowOutOfCallApa(call, ret, _, node, allowsFieldFlow, apa, config) and
         inner = ret.getEnclosingCallable() and
         cc = getCallContextReturn(inner, call, innercc) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
@@ -1403,7 +1434,7 @@ private module MkStage<StageSig PrevStage> {
       or
       // flow through a callable
       exists(DataFlowCall call, ParameterPosition summaryCtx0, Ap argAp0 |
-        fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, config) and
+        fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, apa, config) and
         fwdFlowIsEntered(call, cc, summaryCtx, argAp, summaryCtx0, argAp0, config)
       )
     }
@@ -1413,9 +1444,9 @@ private module MkStage<StageSig PrevStage> {
       NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc,
       ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
     ) {
-      exists(DataFlowType contentType |
-        fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, config) and
-        PrevStage::storeStepCand(node1, unbindApa(getApprox(ap1)), tc, node2, contentType, config) and
+      exists(DataFlowType contentType, ApApprox apa1 |
+        fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, apa1, config) and
+        PrevStage::storeStepCand(node1, apa1, tc, node2, contentType, config) and
         typecheckStore(ap1, contentType)
       )
     }
@@ -1433,43 +1464,104 @@ private module MkStage<StageSig PrevStage> {
       )
     }
 
+    private class ApNonNil instanceof Ap {
+      pragma[nomagic]
+      ApNonNil() { not this instanceof ApNil }
+
+      string toString() { result = "" }
+    }
+
+    pragma[nomagic]
+    private predicate fwdFlowRead0(
+      NodeEx node1, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      ApNonNil ap, Configuration config
+    ) {
+      fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
+      PrevStage::readStepCand(node1, _, _, config)
+    }
+
     pragma[nomagic]
     private predicate fwdFlowRead(
       Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc,
       ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
     ) {
-      fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
+      fwdFlowRead0(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, c, node2, config) and
       getHeadContent(ap) = c
     }
 
     pragma[nomagic]
     private predicate fwdFlowIn(
-      DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, Cc innercc,
-      ParameterPositionOption summaryCtx, ApOption argAp, Ap ap, Configuration config
+      DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, CcCall innercc,
+      ParameterPositionOption summaryCtx, ApOption argAp, Ap ap, ApApprox apa, Configuration config
     ) {
       exists(ArgNodeEx arg, boolean allowsFieldFlow |
-        fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, config) and
-        flowIntoCall(call, arg, p, allowsFieldFlow, config) and
+        fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, apa, config) and
+        flowIntoCallApa(call, arg, p, allowsFieldFlow, apa, config) and
         innercc = getCallContextCall(call, p.getEnclosingCallable(), outercc) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
+    pragma[nomagic]
+    private predicate fwdFlowRetFromArg(
+      RetNodeEx ret, FlowState state, CcCall ccc, ParameterPosition summaryCtx, ParamNodeEx p,
+      Ap argAp, ApApprox argApa, Ap ap, ApApprox apa, Configuration config
+    ) {
+      exists(DataFlowCallable c, ReturnKindExt kind |
+        fwdFlow(pragma[only_bind_into](ret), state, ccc,
+          TParameterPositionSome(pragma[only_bind_into](summaryCtx)), apSome(argAp), ap, apa, config) and
+        getApprox(argAp) = argApa and
+        c = ret.getEnclosingCallable() and
+        kind = ret.getKind() and
+        p.isParameterOf(c, pragma[only_bind_into](summaryCtx)) and
+        parameterFlowThroughAllowed(p, kind)
+      )
+    }
+
+    pragma[inline]
+    private predicate fwdFlowInMayFlowThrough(
+      DataFlowCall call, Cc cc, CcCall innerCc, ParameterPositionOption summaryCtx, ApOption argAp,
+      ParamNodeEx param, Ap ap, ApApprox apa, Configuration config
+    ) {
+      fwdFlowIn(call, pragma[only_bind_into](param), _, cc, innerCc, summaryCtx, argAp, ap,
+        pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
+      PrevStage::parameterMayFlowThrough(param, apa, config)
+    }
+
+    // dedup before joining with `flowThroughOutOfCall`
+    pragma[nomagic]
+    private predicate fwdFlowInMayFlowThroughProj(
+      DataFlowCall call, CcCall innerCc, ApApprox apa, Configuration config
+    ) {
+      fwdFlowInMayFlowThrough(call, _, innerCc, _, _, _, _, apa, config)
+    }
+
+    /**
+     * Same as `flowThroughOutOfCall`, but restricted to calls that are reached
+     * in the flow covered by `fwdFlow`, where data might flow through the target
+     * callable and back out at `call`.
+     */
+    pragma[nomagic]
+    private predicate fwdFlowThroughOutOfCall(
+      DataFlowCall call, CcCall ccc, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow,
+      ApApprox argApa, ApApprox apa, Configuration config
+    ) {
+      fwdFlowInMayFlowThroughProj(call, ccc, argApa, config) and
+      flowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, argApa, apa, config)
+    }
+
     pragma[nomagic]
     private predicate fwdFlowOutFromArg(
       DataFlowCall call, NodeEx out, FlowState state, ParameterPosition summaryCtx, Ap argAp, Ap ap,
-      Configuration config
+      ApApprox apa, Configuration config
     ) {
-      exists(
-        DataFlowCallable c, RetNodeEx ret, ReturnKindExt kind, boolean allowsFieldFlow, CcCall ccc
-      |
-        fwdFlow(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc),
-          TParameterPositionSome(pragma[only_bind_into](summaryCtx)), apSome(argAp), ap, config) and
-        flowThroughOutOfCall(call, pragma[only_bind_into](c), ccc, ret, kind, out, allowsFieldFlow,
+      exists(RetNodeEx ret, boolean allowsFieldFlow, CcCall ccc, ApApprox argApa |
+        fwdFlowRetFromArg(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc),
+          summaryCtx, _, argAp, pragma[only_bind_into](argApa), ap, pragma[only_bind_into](apa),
           config) and
-        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
-        parameterFlowThroughAllowed(c, pragma[only_bind_into](summaryCtx), kind)
+        fwdFlowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, argApa, apa, config) and
+        (if allowsFieldFlow = false then ap instanceof ApNil else any())
       )
     }
 
@@ -1483,8 +1575,7 @@ private module MkStage<StageSig PrevStage> {
       ParameterPosition pos, Ap ap, Configuration config
     ) {
       exists(ParamNodeEx param |
-        fwdFlowIn(call, param, _, cc, _, summaryCtx, argAp, ap, config) and
-        PrevStage::parameterMayFlowThrough(param, unbindApa(getApprox(ap)), config) and
+        fwdFlowInMayFlowThrough(call, cc, _, summaryCtx, argAp, param, ap, _, config) and
         pos = param.getPosition()
       )
     }
@@ -1505,41 +1596,55 @@ private module MkStage<StageSig PrevStage> {
       fwdFlowConsCand(ap1, c, ap2, config)
     }
 
-    pragma[nomagic]
-    private predicate returnFlowsThrough0(
-      RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, DataFlowCallable c,
-      ParameterPosition ppos, Ap argAp, Ap ap, Configuration config
-    ) {
-      exists(boolean allowsFieldFlow |
-        fwdFlow(ret, state, ccc, TParameterPositionSome(ppos), apSome(argAp), ap, config) and
-        flowThroughOutOfCall(_, c, _, pragma[only_bind_into](ret), kind, _, allowsFieldFlow,
-          pragma[only_bind_into](config)) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
-      )
-    }
-
     pragma[nomagic]
     private predicate returnFlowsThrough(
       RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, ParamNodeEx p, Ap argAp,
       Ap ap, Configuration config
     ) {
-      exists(DataFlowCallable c, ParameterPosition ppos |
-        returnFlowsThrough0(ret, kind, state, ccc, c, ppos, argAp, ap, config) and
-        p.isParameterOf(c, ppos) and
-        parameterFlowThroughAllowed(p, kind)
+      exists(boolean allowsFieldFlow, ApApprox argApa, ApApprox apa |
+        fwdFlowRetFromArg(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc), _, p,
+          argAp, pragma[only_bind_into](argApa), ap, pragma[only_bind_into](apa), config) and
+        kind = ret.getKind() and
+        fwdFlowThroughOutOfCall(_, ccc, ret, _, allowsFieldFlow, argApa, apa, config) and
+        (if allowsFieldFlow = false then ap instanceof ApNil else any())
       )
     }
 
     pragma[nomagic]
     private predicate flowThroughIntoCall(
-      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp,
+      Configuration config
     ) {
-      exists(Ap argAp |
-        flowIntoCall(call, pragma[only_bind_into](arg), pragma[only_bind_into](p), allowsFieldFlow,
+      exists(ApApprox argApa |
+        flowIntoCallApa(call, pragma[only_bind_into](arg), pragma[only_bind_into](p),
+          allowsFieldFlow, argApa, pragma[only_bind_into](config)) and
+        fwdFlow(arg, _, _, _, _, pragma[only_bind_into](argAp), argApa,
           pragma[only_bind_into](config)) and
-        fwdFlow(arg, _, _, _, _, pragma[only_bind_into](argAp), pragma[only_bind_into](config)) and
         returnFlowsThrough(_, _, _, _, p, pragma[only_bind_into](argAp), _,
-          pragma[only_bind_into](config))
+          pragma[only_bind_into](config)) and
+        if allowsFieldFlow = false then argAp instanceof ApNil else any()
+      )
+    }
+
+    pragma[nomagic]
+    private predicate flowIntoCallAp(
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap ap,
+      Configuration config
+    ) {
+      exists(ApApprox apa |
+        flowIntoCallApa(call, arg, p, allowsFieldFlow, apa, config) and
+        fwdFlow(arg, _, _, _, _, ap, apa, config)
+      )
+    }
+
+    pragma[nomagic]
+    private predicate flowOutOfCallAp(
+      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
+      Ap ap, Configuration config
+    ) {
+      exists(ApApprox apa |
+        flowOutOfCallApa(call, ret, kind, out, allowsFieldFlow, apa, config) and
+        fwdFlow(ret, _, _, _, _, ap, apa, config)
       )
     }
 
@@ -1628,7 +1733,7 @@ private module MkStage<StageSig PrevStage> {
       // flow into a callable
       exists(ParamNodeEx p, boolean allowsFieldFlow |
         revFlow(p, state, TReturnCtxNone(), returnAp, ap, config) and
-        flowIntoCall(_, node, p, allowsFieldFlow, config) and
+        flowIntoCallAp(_, node, p, allowsFieldFlow, ap, config) and
         (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
         returnCtx = TReturnCtxNone()
       )
@@ -1682,22 +1787,41 @@ private module MkStage<StageSig PrevStage> {
     ) {
       exists(NodeEx out, boolean allowsFieldFlow |
         revFlow(out, state, returnCtx, returnAp, ap, config) and
-        flowOutOfCall(call, ret, kind, out, allowsFieldFlow, config) and
+        flowOutOfCallAp(call, ret, kind, out, allowsFieldFlow, ap, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
+    /**
+     * Same as `flowThroughIntoCall`, but restricted to calls that are reached
+     * in the flow covered by `revFlow`, where data might flow through the target
+     * callable and back out at `call`.
+     */
+    pragma[nomagic]
+    private predicate revFlowThroughIntoCall(
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp,
+      Configuration config
+    ) {
+      flowThroughIntoCall(call, arg, p, allowsFieldFlow, argAp, config) and
+      revFlowIsReturned(call, _, _, _, _, config)
+    }
+
+    pragma[nomagic]
+    private predicate revFlowParamToReturn(
+      ParamNodeEx p, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap, Configuration config
+    ) {
+      revFlow(p, state, TReturnCtxMaybeFlowThrough(kind), apSome(returnAp), ap, config) and
+      parameterFlowThroughAllowed(p, kind)
+    }
+
     pragma[nomagic]
     private predicate revFlowInToReturn(
       DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap,
       Configuration config
     ) {
       exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(pragma[only_bind_into](p), state,
-          TReturnCtxMaybeFlowThrough(pragma[only_bind_into](kind)), apSome(returnAp), ap, config) and
-        flowThroughIntoCall(call, arg, p, allowsFieldFlow, config) and
-        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
-        parameterFlowThroughAllowed(p, kind)
+        revFlowParamToReturn(p, state, kind, returnAp, ap, config) and
+        revFlowThroughIntoCall(call, arg, p, allowsFieldFlow, ap, config)
       )
     }
 
@@ -1750,6 +1874,11 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     predicate revFlow(NodeEx node, Configuration config) { revFlow(node, _, _, _, _, config) }
 
+    pragma[nomagic]
+    predicate revFlowAp(NodeEx node, Ap ap, Configuration config) {
+      revFlow(node, _, _, _, ap, config)
+    }
+
     // use an alias as a workaround for bad functionality-induced joins
     pragma[nomagic]
     additional predicate revFlowAlias(NodeEx node, Configuration config) {
@@ -1786,9 +1915,9 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate parameterFlowsThroughRev(
-      ParamNodeEx p, Ap ap, ReturnKindExt kind, Configuration config
+      ParamNodeEx p, Ap ap, ReturnKindExt kind, Ap returnAp, Configuration config
     ) {
-      revFlow(p, _, TReturnCtxMaybeFlowThrough(kind), apSome(_), ap, config) and
+      revFlow(p, _, TReturnCtxMaybeFlowThrough(kind), apSome(returnAp), ap, config) and
       parameterFlowThroughAllowed(p, kind)
     }
 
@@ -1796,27 +1925,36 @@ private module MkStage<StageSig PrevStage> {
     predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
       exists(RetNodeEx ret, ReturnKindExt kind |
         returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
-        parameterFlowsThroughRev(p, ap, kind, config)
+        parameterFlowsThroughRev(p, ap, kind, _, config)
       )
     }
 
     pragma[nomagic]
-    predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config) {
-      exists(ParamNodeEx p, Ap ap |
-        returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
-        parameterFlowsThroughRev(p, ap, kind, config)
+    predicate returnMayFlowThrough(
+      RetNodeEx ret, Ap argAp, Ap ap, ReturnKindExt kind, Configuration config
+    ) {
+      exists(ParamNodeEx p |
+        returnFlowsThrough(ret, kind, _, _, p, argAp, ap, config) and
+        parameterFlowsThroughRev(p, argAp, kind, ap, config)
+      )
+    }
+
+    pragma[nomagic]
+    predicate revFlowInToReturnIsReturned(
+      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnCtx returnCtx, ApOption returnAp,
+      Ap ap, Configuration config
+    ) {
+      exists(ReturnKindExt returnKind0, Ap returnAp0 |
+        revFlowInToReturn(call, arg, state, returnKind0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
       )
     }
 
     pragma[nomagic]
     predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
-      exists(
-        ReturnKindExt returnKind0, Ap returnAp0, ArgNodeEx arg, FlowState state,
-        ReturnCtx returnCtx, ApOption returnAp, Ap ap
-      |
+      exists(ArgNodeEx arg, FlowState state, ReturnCtx returnCtx, ApOption returnAp, Ap ap |
         revFlow(arg, state, returnCtx, returnAp, ap, config) and
-        revFlowInToReturn(call, arg, state, returnKind0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
+        revFlowInToReturnIsReturned(call, arg, state, returnCtx, returnAp, ap, config)
       )
     }
 
@@ -2179,16 +2317,16 @@ private module LocalFlowBigStep {
   pragma[nomagic]
   predicate localFlowBigStep(
     NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
-    AccessPathFrontNil apf, Configuration config, LocalCallContext callContext
+    DataFlowType t, Configuration config, LocalCallContext callContext
   ) {
-    localFlowStepPlus(node1, state1, node2, preservesValue, apf.getType(), config, callContext) and
+    localFlowStepPlus(node1, state1, node2, preservesValue, t, config, callContext) and
     localFlowExit(node2, state1, config) and
     state1 = state2
     or
     additionalLocalFlowStepNodeCand2(node1, state1, node2, state2, config) and
     state1 != state2 and
     preservesValue = false and
-    apf = TFrontNil(node2.getDataFlowType()) and
+    t = node2.getDataFlowType() and
     callContext.relevantFor(node1.getEnclosingCallable()) and
     not exists(DataFlowCall call | call = callContext.(LocalCallContextSpecificCall).getCall() |
       isUnreachableInCallCached(node1.asNode(), call) or
@@ -2202,11 +2340,87 @@ private import LocalFlowBigStep
 private module Stage3Param implements MkStage<Stage2>::StageParam {
   private module PrevStage = Stage2;
 
+  class Ap = ApproxAccessPathFront;
+
+  class ApNil = ApproxAccessPathFrontNil;
+
+  PrevStage::Ap getApprox(Ap ap) { result = ap.toBoolNonEmpty() }
+
+  ApNil getApNil(NodeEx node) {
+    PrevStage::revFlow(node, _) and result = TApproxFrontNil(node.getDataFlowType())
+  }
+
+  bindingset[tc, tail]
+  Ap apCons(TypedContent tc, Ap tail) { result.getAHead() = tc and exists(tail) }
+
+  pragma[noinline]
+  Content getHeadContent(Ap ap) { result = ap.getAHead().getContent() }
+
+  class ApOption = ApproxAccessPathFrontOption;
+
+  ApOption apNone() { result = TApproxAccessPathFrontNone() }
+
+  ApOption apSome(Ap ap) { result = TApproxAccessPathFrontSome(ap) }
+
+  import BooleanCallContext
+
+  predicate localStep(
+    NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
+    ApproxAccessPathFrontNil ap, Configuration config, LocalCc lcc
+  ) {
+    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap.getType(), config, _) and
+    exists(lcc)
+  }
+
+  predicate flowOutOfCall = flowOutOfCallNodeCand2/6;
+
+  predicate flowIntoCall = flowIntoCallNodeCand2/5;
+
+  pragma[nomagic]
+  private predicate expectsContentCand(NodeEx node, Ap ap, Configuration config) {
+    exists(Content c |
+      PrevStage::revFlow(node, pragma[only_bind_into](config)) and
+      PrevStage::readStepCand(_, c, _, pragma[only_bind_into](config)) and
+      expectsContentEx(node, c) and
+      c = ap.getAHead().getContent()
+    )
+  }
+
+  pragma[nomagic]
+  private predicate castingNodeEx(NodeEx node) { node.asNode() instanceof CastingNode }
+
+  bindingset[node, state, ap, config]
+  predicate filter(NodeEx node, FlowState state, Ap ap, Configuration config) {
+    exists(state) and
+    exists(config) and
+    (if castingNodeEx(node) then compatibleTypes(node.getDataFlowType(), ap.getType()) else any()) and
+    (
+      notExpectsContent(node)
+      or
+      expectsContentCand(node, ap, config)
+    )
+  }
+
+  bindingset[ap, contentType]
+  predicate typecheckStore(Ap ap, DataFlowType contentType) {
+    // We need to typecheck stores here, since reverse flow through a getter
+    // might have a different type here compared to inside the getter.
+    compatibleTypes(ap.getType(), contentType)
+  }
+}
+
+private module Stage3 implements StageSig {
+  import MkStage<Stage2>::Stage<Stage3Param>
+}
+
+private module Stage4Param implements MkStage<Stage3>::StageParam {
+  private module PrevStage = Stage3;
+
   class Ap = AccessPathFront;
 
   class ApNil = AccessPathFrontNil;
 
-  PrevStage::Ap getApprox(Ap ap) { result = ap.toBoolNonEmpty() }
+  PrevStage::Ap getApprox(Ap ap) { result = ap.toApprox() }
 
   ApNil getApNil(NodeEx node) {
     PrevStage::revFlow(node, _) and result = TFrontNil(node.getDataFlowType())
@@ -2226,16 +2440,42 @@ private module Stage3Param implements MkStage<Stage2>::StageParam {
 
   import BooleanCallContext
 
+  pragma[nomagic]
   predicate localStep(
     NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
     ApNil ap, Configuration config, LocalCc lcc
   ) {
-    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap, config, _) and exists(lcc)
+    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap.getType(), config, _) and
+    PrevStage::revFlow(node1, pragma[only_bind_into](state1), _, pragma[only_bind_into](config)) and
+    PrevStage::revFlowAlias(node2, pragma[only_bind_into](state2), _, pragma[only_bind_into](config)) and
+    exists(lcc)
   }
 
-  predicate flowOutOfCall = flowOutOfCallNodeCand2/6;
+  pragma[nomagic]
+  predicate flowOutOfCall(
+    DataFlowCall call, RetNodeEx node1, ReturnKindExt kind, NodeEx node2, boolean allowsFieldFlow,
+    Configuration config
+  ) {
+    exists(FlowState state |
+      flowOutOfCallNodeCand2(call, node1, kind, node2, allowsFieldFlow, config) and
+      PrevStage::revFlow(node2, pragma[only_bind_into](state), _, pragma[only_bind_into](config)) and
+      PrevStage::revFlowAlias(node1, pragma[only_bind_into](state), _,
+        pragma[only_bind_into](config))
+    )
+  }
 
-  predicate flowIntoCall = flowIntoCallNodeCand2/5;
+  pragma[nomagic]
+  predicate flowIntoCall(
+    DataFlowCall call, ArgNodeEx node1, ParamNodeEx node2, boolean allowsFieldFlow,
+    Configuration config
+  ) {
+    exists(FlowState state |
+      flowIntoCallNodeCand2(call, node1, node2, allowsFieldFlow, config) and
+      PrevStage::revFlow(node2, pragma[only_bind_into](state), _, pragma[only_bind_into](config)) and
+      PrevStage::revFlowAlias(node1, pragma[only_bind_into](state), _,
+        pragma[only_bind_into](config))
+    )
+  }
 
   pragma[nomagic]
   private predicate clearSet(NodeEx node, ContentSet c, Configuration config) {
@@ -2291,8 +2531,8 @@ private module Stage3Param implements MkStage<Stage2>::StageParam {
   }
 }
 
-private module Stage3 implements StageSig {
-  import MkStage<Stage2>::Stage<Stage3Param>
+private module Stage4 implements StageSig {
+  import MkStage<Stage3>::Stage<Stage4Param>
 }
 
 /**
@@ -2303,8 +2543,8 @@ private predicate flowCandSummaryCtx(
   NodeEx node, FlowState state, AccessPathFront argApf, Configuration config
 ) {
   exists(AccessPathFront apf |
-    Stage3::revFlow(node, state, TReturnCtxMaybeFlowThrough(_), _, apf, config) and
-    Stage3::fwdFlow(node, state, any(Stage3::CcCall ccc), _, TAccessPathFrontSome(argApf), apf,
+    Stage4::revFlow(node, state, TReturnCtxMaybeFlowThrough(_), _, apf, config) and
+    Stage4::fwdFlow(node, state, any(Stage4::CcCall ccc), _, TAccessPathFrontSome(argApf), apf,
       config)
   )
 }
@@ -2315,10 +2555,10 @@ private predicate flowCandSummaryCtx(
  */
 private predicate expensiveLen2unfolding(TypedContent tc, Configuration config) {
   exists(int tails, int nodes, int apLimit, int tupleLimit |
-    tails = strictcount(AccessPathFront apf | Stage3::consCand(tc, apf, config)) and
+    tails = strictcount(AccessPathFront apf | Stage4::consCand(tc, apf, config)) and
     nodes =
       strictcount(NodeEx n, FlowState state |
-        Stage3::revFlow(n, state, any(AccessPathFrontHead apf | apf.getHead() = tc), config)
+        Stage4::revFlow(n, state, any(AccessPathFrontHead apf | apf.getHead() = tc), config)
         or
         flowCandSummaryCtx(n, state, any(AccessPathFrontHead apf | apf.getHead() = tc), config)
       ) and
@@ -2332,11 +2572,11 @@ private predicate expensiveLen2unfolding(TypedContent tc, Configuration config)
 private newtype TAccessPathApprox =
   TNil(DataFlowType t) or
   TConsNil(TypedContent tc, DataFlowType t) {
-    Stage3::consCand(tc, TFrontNil(t), _) and
+    Stage4::consCand(tc, TFrontNil(t), _) and
     not expensiveLen2unfolding(tc, _)
   } or
   TConsCons(TypedContent tc1, TypedContent tc2, int len) {
-    Stage3::consCand(tc1, TFrontHead(tc2), _) and
+    Stage4::consCand(tc1, TFrontHead(tc2), _) and
     len in [2 .. accessPathLimit()] and
     not expensiveLen2unfolding(tc1, _)
   } or
@@ -2466,7 +2706,7 @@ private class AccessPathApproxCons1 extends AccessPathApproxCons, TCons1 {
   override AccessPathApprox pop(TypedContent head) {
     head = tc and
     (
-      exists(TypedContent tc2 | Stage3::consCand(tc, TFrontHead(tc2), _) |
+      exists(TypedContent tc2 | Stage4::consCand(tc, TFrontHead(tc2), _) |
         result = TConsCons(tc2, _, len - 1)
         or
         len = 2 and
@@ -2477,7 +2717,7 @@ private class AccessPathApproxCons1 extends AccessPathApproxCons, TCons1 {
       or
       exists(DataFlowType t |
         len = 1 and
-        Stage3::consCand(tc, TFrontNil(t), _) and
+        Stage4::consCand(tc, TFrontNil(t), _) and
         result = TNil(t)
       )
     )
@@ -2502,13 +2742,14 @@ private class AccessPathApproxOption extends TAccessPathApproxOption {
   }
 }
 
-private module Stage4Param implements MkStage<Stage3>::StageParam {
-  private module PrevStage = Stage3;
+private module Stage5Param implements MkStage<Stage4>::StageParam {
+  private module PrevStage = Stage4;
 
   class Ap = AccessPathApprox;
 
   class ApNil = AccessPathApproxNil;
 
+  pragma[nomagic]
   PrevStage::Ap getApprox(Ap ap) { result = ap.getFront() }
 
   ApNil getApNil(NodeEx node) {
@@ -2534,7 +2775,9 @@ private module Stage4Param implements MkStage<Stage3>::StageParam {
     NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
     ApNil ap, Configuration config, LocalCc lcc
   ) {
-    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap.getFront(), config, lcc)
+    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap.getType(), config, lcc) and
+    PrevStage::revFlow(node1, pragma[only_bind_into](state1), _, pragma[only_bind_into](config)) and
+    PrevStage::revFlowAlias(node2, pragma[only_bind_into](state2), _, pragma[only_bind_into](config))
   }
 
   pragma[nomagic]
@@ -2571,7 +2814,7 @@ private module Stage4Param implements MkStage<Stage3>::StageParam {
   predicate typecheckStore(Ap ap, DataFlowType contentType) { any() }
 }
 
-private module Stage4 = MkStage<Stage3>::Stage<Stage4Param>;
+private module Stage5 = MkStage<Stage4>::Stage<Stage5Param>;
 
 bindingset[conf, result]
 private Configuration unbindConf(Configuration conf) {
@@ -2585,8 +2828,8 @@ private predicate nodeMayUseSummary0(
 ) {
   exists(AccessPathApprox apa0 |
     c = n.getEnclosingCallable() and
-    Stage4::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
-    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TParameterPositionSome(pos),
+    Stage5::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
+    Stage5::fwdFlow(n, state, any(CallContextCall ccc), TParameterPositionSome(pos),
       TAccessPathApproxSome(apa), apa0, config)
   )
 }
@@ -2596,7 +2839,7 @@ private predicate nodeMayUseSummary(
   NodeEx n, FlowState state, AccessPathApprox apa, Configuration config
 ) {
   exists(DataFlowCallable c, ParameterPosition pos, ParamNodeEx p |
-    Stage4::parameterMayFlowThrough(p, apa, config) and
+    Stage5::parameterMayFlowThrough(p, apa, config) and
     nodeMayUseSummary0(n, c, pos, state, apa, config) and
     p.isParameterOf(c, pos)
   )
@@ -2606,8 +2849,8 @@ private newtype TSummaryCtx =
   TSummaryCtxNone() or
   TSummaryCtxSome(ParamNodeEx p, FlowState state, AccessPath ap) {
     exists(Configuration config |
-      Stage4::parameterMayFlowThrough(p, ap.getApprox(), config) and
-      Stage4::revFlow(p, state, _, config)
+      Stage5::parameterMayFlowThrough(p, ap.getApprox(), config) and
+      Stage5::revFlow(p, state, _, config)
     )
   }
 
@@ -2656,7 +2899,7 @@ private int count1to2unfold(AccessPathApproxCons1 apa, Configuration config) {
     len = apa.len() and
     result =
       strictcount(AccessPathFront apf |
-        Stage4::consCand(tc, any(AccessPathApprox ap | ap.getFront() = apf and ap.len() = len - 1),
+        Stage5::consCand(tc, any(AccessPathApprox ap | ap.getFront() = apf and ap.len() = len - 1),
           config)
       )
   )
@@ -2665,7 +2908,7 @@ private int count1to2unfold(AccessPathApproxCons1 apa, Configuration config) {
 private int countNodesUsingAccessPath(AccessPathApprox apa, Configuration config) {
   result =
     strictcount(NodeEx n, FlowState state |
-      Stage4::revFlow(n, state, apa, config) or nodeMayUseSummary(n, state, apa, config)
+      Stage5::revFlow(n, state, apa, config) or nodeMayUseSummary(n, state, apa, config)
     )
 }
 
@@ -2686,7 +2929,7 @@ private predicate expensiveLen1to2unfolding(AccessPathApproxCons1 apa, Configura
 private AccessPathApprox getATail(AccessPathApprox apa, Configuration config) {
   exists(TypedContent head |
     apa.pop(head) = result and
-    Stage4::consCand(head, result, config)
+    Stage5::consCand(head, result, config)
   )
 }
 
@@ -2768,7 +3011,7 @@ private newtype TPathNode =
     NodeEx node, FlowState state, CallContext cc, SummaryCtx sc, AccessPath ap, Configuration config
   ) {
     // A PathNode is introduced by a source ...
-    Stage4::revFlow(node, state, config) and
+    Stage5::revFlow(node, state, config) and
     sourceNode(node, state, config) and
     (
       if hasSourceCallCtx(config)
@@ -2782,7 +3025,7 @@ private newtype TPathNode =
     exists(PathNodeMid mid |
       pathStep(mid, node, state, cc, sc, ap) and
       pragma[only_bind_into](config) = mid.getConfiguration() and
-      Stage4::revFlow(node, state, ap.getApprox(), pragma[only_bind_into](config))
+      Stage5::revFlow(node, state, ap.getApprox(), pragma[only_bind_into](config))
     )
   } or
   TPathNodeSink(NodeEx node, FlowState state, Configuration config) {
@@ -2924,7 +3167,7 @@ private class AccessPathCons2 extends AccessPath, TAccessPathCons2 {
   override TypedContent getHead() { result = head1 }
 
   override AccessPath getTail() {
-    Stage4::consCand(head1, result.getApprox(), _) and
+    Stage5::consCand(head1, result.getApprox(), _) and
     result.getHead() = head2 and
     result.length() = len - 1
   }
@@ -2955,7 +3198,7 @@ private class AccessPathCons1 extends AccessPath, TAccessPathCons1 {
   override TypedContent getHead() { result = head }
 
   override AccessPath getTail() {
-    Stage4::consCand(head, result.getApprox(), _) and result.length() = len - 1
+    Stage5::consCand(head, result.getApprox(), _) and result.length() = len - 1
   }
 
   override AccessPathFrontHead getFront() { result = TFrontHead(head) }
@@ -3347,7 +3590,8 @@ private predicate pathStep(
     AccessPath ap0, NodeEx midnode, FlowState state0, Configuration conf, LocalCallContext localCC
   |
     pathNode(mid, midnode, state0, cc, sc, ap0, conf, localCC) and
-    localFlowBigStep(midnode, state0, node, state, false, ap.getFront(), conf, localCC) and
+    localFlowBigStep(midnode, state0, node, state, false, ap.(AccessPathNil).getType(), conf,
+      localCC) and
     ap0 instanceof AccessPathNil
   )
   or
@@ -3389,7 +3633,7 @@ private predicate pathReadStep(
 ) {
   ap0 = mid.getAp() and
   tc = ap0.getHead() and
-  Stage4::readStepCand(mid.getNodeEx(), tc.getContent(), node, mid.getConfiguration()) and
+  Stage5::readStepCand(mid.getNodeEx(), tc.getContent(), node, mid.getConfiguration()) and
   state = mid.getState() and
   cc = mid.getCallContext()
 }
@@ -3399,7 +3643,7 @@ private predicate pathStoreStep(
   PathNodeMid mid, NodeEx node, FlowState state, AccessPath ap0, TypedContent tc, CallContext cc
 ) {
   ap0 = mid.getAp() and
-  Stage4::storeStepCand(mid.getNodeEx(), _, tc, node, _, mid.getConfiguration()) and
+  Stage5::storeStepCand(mid.getNodeEx(), _, tc, node, _, mid.getConfiguration()) and
   state = mid.getState() and
   cc = mid.getCallContext()
 }
@@ -3436,7 +3680,7 @@ private NodeEx getAnOutNodeFlow(
   ReturnKindExt kind, DataFlowCall call, AccessPathApprox apa, Configuration config
 ) {
   result.asNode() = kind.getAnOutNode(call) and
-  Stage4::revFlow(result, _, apa, config)
+  Stage5::revFlow(result, _, apa, config)
 }
 
 /**
@@ -3472,7 +3716,7 @@ private predicate parameterCand(
   DataFlowCallable callable, ParameterPosition pos, AccessPathApprox apa, Configuration config
 ) {
   exists(ParamNodeEx p |
-    Stage4::revFlow(p, _, apa, config) and
+    Stage5::revFlow(p, _, apa, config) and
     p.isParameterOf(callable, pos)
   )
 }
@@ -3751,9 +3995,17 @@ predicate stageStats(
   n = 45 and
   Stage4::stats(false, nodes, fields, conscand, states, tuples, config)
   or
-  stage = "5 Fwd" and n = 50 and finalStats(true, nodes, fields, conscand, states, tuples)
+  stage = "5 Fwd" and
+  n = 50 and
+  Stage5::stats(true, nodes, fields, conscand, states, tuples, config)
   or
-  stage = "5 Rev" and n = 55 and finalStats(false, nodes, fields, conscand, states, tuples)
+  stage = "5 Rev" and
+  n = 55 and
+  Stage5::stats(false, nodes, fields, conscand, states, tuples, config)
+  or
+  stage = "6 Fwd" and n = 60 and finalStats(true, nodes, fields, conscand, states, tuples)
+  or
+  stage = "6 Rev" and n = 65 and finalStats(false, nodes, fields, conscand, states, tuples)
 }
 
 private module FlowExploration {
diff --git a/swift/ql/lib/codeql/swift/dataflow/internal/DataFlowImpl.qll b/swift/ql/lib/codeql/swift/dataflow/internal/DataFlowImpl.qll
index ccde916a3c2..6741ccc2f06 100644
--- a/swift/ql/lib/codeql/swift/dataflow/internal/DataFlowImpl.qll
+++ b/swift/ql/lib/codeql/swift/dataflow/internal/DataFlowImpl.qll
@@ -621,23 +621,6 @@ private predicate parameterFlowThroughAllowed(ParamNodeEx p, ReturnKindExt kind)
   )
 }
 
-/**
- * Holds if flow from a parameter at position `pos` inside `c` to a return node of
- * kind `kind` is allowed.
- *
- * We don't expect a parameter to return stored in itself, unless
- * explicitly allowed
- */
-bindingset[c, pos, kind]
-private predicate parameterFlowThroughAllowed(
-  DataFlowCallable c, ParameterPosition pos, ReturnKindExt kind
-) {
-  exists(ParamNodeEx p |
-    p.isParameterOf(c, pos) and
-    parameterFlowThroughAllowed(p, kind)
-  )
-}
-
 private module Stage1 implements StageSig {
   class Ap = Unit;
 
@@ -980,6 +963,12 @@ private module Stage1 implements StageSig {
   pragma[nomagic]
   predicate revFlow(NodeEx node, Configuration config) { revFlow(node, _, config) }
 
+  pragma[nomagic]
+  predicate revFlowAp(NodeEx node, Ap ap, Configuration config) {
+    revFlow(node, config) and
+    exists(ap)
+  }
+
   bindingset[node, state, config]
   predicate revFlow(NodeEx node, FlowState state, Ap ap, Configuration config) {
     revFlow(node, _, pragma[only_bind_into](config)) and
@@ -1022,9 +1011,13 @@ private module Stage1 implements StageSig {
   }
 
   pragma[nomagic]
-  predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config) {
+  predicate returnMayFlowThrough(
+    RetNodeEx ret, Ap argAp, Ap ap, ReturnKindExt kind, Configuration config
+  ) {
     throughFlowNodeCand(ret, config) and
-    kind = ret.getKind()
+    kind = ret.getKind() and
+    exists(argAp) and
+    exists(ap)
   }
 
   pragma[nomagic]
@@ -1189,6 +1182,8 @@ private signature module StageSig {
 
   predicate revFlow(NodeEx node, Configuration config);
 
+  predicate revFlowAp(NodeEx node, Ap ap, Configuration config);
+
   bindingset[node, state, config]
   predicate revFlow(NodeEx node, FlowState state, Ap ap, Configuration config);
 
@@ -1196,7 +1191,9 @@ private signature module StageSig {
 
   predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config);
 
-  predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config);
+  predicate returnMayFlowThrough(
+    RetNodeEx ret, Ap argAp, Ap ap, ReturnKindExt kind, Configuration config
+  );
 
   predicate storeStepCand(
     NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, DataFlowType contentType,
@@ -1281,21 +1278,43 @@ private module MkStage<StageSig PrevStage> {
     import Param
 
     /* Begin: Stage logic. */
-    bindingset[result, apa]
-    private ApApprox unbindApa(ApApprox apa) {
-      pragma[only_bind_out](apa) = pragma[only_bind_out](result)
+    // use an alias as a workaround for bad functionality-induced joins
+    pragma[nomagic]
+    private predicate revFlowApAlias(NodeEx node, ApApprox apa, Configuration config) {
+      PrevStage::revFlowAp(node, apa, config)
+    }
+
+    pragma[nomagic]
+    private predicate flowIntoCallApa(
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, ApApprox apa,
+      Configuration config
+    ) {
+      flowIntoCall(call, arg, p, allowsFieldFlow, config) and
+      PrevStage::revFlowAp(p, pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
+      revFlowApAlias(arg, pragma[only_bind_into](apa), pragma[only_bind_into](config))
+    }
+
+    pragma[nomagic]
+    private predicate flowOutOfCallApa(
+      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
+      ApApprox apa, Configuration config
+    ) {
+      flowOutOfCall(call, ret, kind, out, allowsFieldFlow, config) and
+      PrevStage::revFlowAp(out, pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
+      revFlowApAlias(ret, pragma[only_bind_into](apa), pragma[only_bind_into](config))
     }
 
     pragma[nomagic]
     private predicate flowThroughOutOfCall(
-      DataFlowCall call, DataFlowCallable c, CcCall ccc, RetNodeEx ret, ReturnKindExt kind,
-      NodeEx out, boolean allowsFieldFlow, Configuration config
+      DataFlowCall call, CcCall ccc, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow,
+      ApApprox argApa, ApApprox apa, Configuration config
     ) {
-      flowOutOfCall(call, ret, kind, out, allowsFieldFlow, pragma[only_bind_into](config)) and
-      PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
-      PrevStage::returnMayFlowThrough(ret, kind, pragma[only_bind_into](config)) and
-      matchesCall(ccc, call) and
-      c = ret.getEnclosingCallable()
+      exists(ReturnKindExt kind |
+        flowOutOfCallApa(call, ret, kind, out, allowsFieldFlow, apa, pragma[only_bind_into](config)) and
+        PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config)) and
+        PrevStage::returnMayFlowThrough(ret, argApa, apa, kind, pragma[only_bind_into](config)) and
+        matchesCall(ccc, call)
+      )
     }
 
     /**
@@ -1307,39 +1326,50 @@ private module MkStage<StageSig PrevStage> {
      * corresponding parameter position and access path of that argument, respectively.
      */
     pragma[nomagic]
+    additional predicate fwdFlow(
+      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      Ap ap, ApApprox apa, Configuration config
+    ) {
+      fwdFlow0(node, state, cc, summaryCtx, argAp, ap, apa, config) and
+      PrevStage::revFlow(node, state, apa, config) and
+      filter(node, state, ap, config)
+    }
+
+    pragma[inline]
     additional predicate fwdFlow(
       NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
       Ap ap, Configuration config
     ) {
-      fwdFlow0(node, state, cc, summaryCtx, argAp, ap, config) and
-      PrevStage::revFlow(node, state, unbindApa(getApprox(ap)), config) and
-      filter(node, state, ap, config)
+      fwdFlow(node, state, cc, summaryCtx, argAp, ap, _, config)
     }
 
     pragma[nomagic]
     private predicate fwdFlow0(
       NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      Ap ap, Configuration config
+      Ap ap, ApApprox apa, Configuration config
     ) {
       sourceNode(node, state, config) and
       (if hasSourceCallCtx(config) then cc = ccSomeCall() else cc = ccNone()) and
       argAp = apNone() and
       summaryCtx = TParameterPositionNone() and
-      ap = getApNil(node)
+      ap = getApNil(node) and
+      apa = getApprox(ap)
       or
-      exists(NodeEx mid, FlowState state0, Ap ap0, LocalCc localCc |
-        fwdFlow(mid, state0, cc, summaryCtx, argAp, ap0, config) and
+      exists(NodeEx mid, FlowState state0, Ap ap0, ApApprox apa0, LocalCc localCc |
+        fwdFlow(mid, state0, cc, summaryCtx, argAp, ap0, apa0, config) and
         localCc = getLocalCc(mid, cc)
       |
         localStep(mid, state0, node, state, true, _, config, localCc) and
-        ap = ap0
+        ap = ap0 and
+        apa = apa0
         or
         localStep(mid, state0, node, state, false, ap, config, localCc) and
-        ap0 instanceof ApNil
+        ap0 instanceof ApNil and
+        apa = getApprox(ap)
       )
       or
       exists(NodeEx mid |
-        fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, pragma[only_bind_into](config)) and
+        fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, apa, pragma[only_bind_into](config)) and
         jumpStep(mid, node, config) and
         cc = ccNone() and
         summaryCtx = TParameterPositionNone() and
@@ -1352,7 +1382,8 @@ private module MkStage<StageSig PrevStage> {
         cc = ccNone() and
         summaryCtx = TParameterPositionNone() and
         argAp = apNone() and
-        ap = getApNil(node)
+        ap = getApNil(node) and
+        apa = getApprox(ap)
       )
       or
       exists(NodeEx mid, FlowState state0, ApNil nil |
@@ -1361,32 +1392,32 @@ private module MkStage<StageSig PrevStage> {
         cc = ccNone() and
         summaryCtx = TParameterPositionNone() and
         argAp = apNone() and
-        ap = getApNil(node)
+        ap = getApNil(node) and
+        apa = getApprox(ap)
       )
       or
       // store
       exists(TypedContent tc, Ap ap0 |
         fwdFlowStore(_, ap0, tc, node, state, cc, summaryCtx, argAp, config) and
-        ap = apCons(tc, ap0)
+        ap = apCons(tc, ap0) and
+        apa = getApprox(ap)
       )
       or
       // read
       exists(Ap ap0, Content c |
         fwdFlowRead(ap0, c, _, node, state, cc, summaryCtx, argAp, config) and
-        fwdFlowConsCand(ap0, c, ap, config)
+        fwdFlowConsCand(ap0, c, ap, config) and
+        apa = getApprox(ap)
       )
       or
       // flow into a callable
-      exists(ApApprox apa |
-        fwdFlowIn(_, node, state, _, cc, _, _, ap, config) and
-        apa = getApprox(ap) and
-        if PrevStage::parameterMayFlowThrough(node, apa, config)
-        then (
-          summaryCtx = TParameterPositionSome(node.(ParamNodeEx).getPosition()) and
-          argAp = apSome(ap)
-        ) else (
-          summaryCtx = TParameterPositionNone() and argAp = apNone()
-        )
+      fwdFlowIn(_, node, state, _, cc, _, _, ap, apa, config) and
+      if PrevStage::parameterMayFlowThrough(node, apa, config)
+      then (
+        summaryCtx = TParameterPositionSome(node.(ParamNodeEx).getPosition()) and
+        argAp = apSome(ap)
+      ) else (
+        summaryCtx = TParameterPositionNone() and argAp = apNone()
       )
       or
       // flow out of a callable
@@ -1394,8 +1425,8 @@ private module MkStage<StageSig PrevStage> {
         DataFlowCall call, RetNodeEx ret, boolean allowsFieldFlow, CcNoCall innercc,
         DataFlowCallable inner
       |
-        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, config) and
-        flowOutOfCall(call, ret, _, node, allowsFieldFlow, config) and
+        fwdFlow(ret, state, innercc, summaryCtx, argAp, ap, apa, config) and
+        flowOutOfCallApa(call, ret, _, node, allowsFieldFlow, apa, config) and
         inner = ret.getEnclosingCallable() and
         cc = getCallContextReturn(inner, call, innercc) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
@@ -1403,7 +1434,7 @@ private module MkStage<StageSig PrevStage> {
       or
       // flow through a callable
       exists(DataFlowCall call, ParameterPosition summaryCtx0, Ap argAp0 |
-        fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, config) and
+        fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, apa, config) and
         fwdFlowIsEntered(call, cc, summaryCtx, argAp, summaryCtx0, argAp0, config)
       )
     }
@@ -1413,9 +1444,9 @@ private module MkStage<StageSig PrevStage> {
       NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc,
       ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
     ) {
-      exists(DataFlowType contentType |
-        fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, config) and
-        PrevStage::storeStepCand(node1, unbindApa(getApprox(ap1)), tc, node2, contentType, config) and
+      exists(DataFlowType contentType, ApApprox apa1 |
+        fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, apa1, config) and
+        PrevStage::storeStepCand(node1, apa1, tc, node2, contentType, config) and
         typecheckStore(ap1, contentType)
       )
     }
@@ -1433,43 +1464,104 @@ private module MkStage<StageSig PrevStage> {
       )
     }
 
+    private class ApNonNil instanceof Ap {
+      pragma[nomagic]
+      ApNonNil() { not this instanceof ApNil }
+
+      string toString() { result = "" }
+    }
+
+    pragma[nomagic]
+    private predicate fwdFlowRead0(
+      NodeEx node1, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
+      ApNonNil ap, Configuration config
+    ) {
+      fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
+      PrevStage::readStepCand(node1, _, _, config)
+    }
+
     pragma[nomagic]
     private predicate fwdFlowRead(
       Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc,
       ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
     ) {
-      fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
+      fwdFlowRead0(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, c, node2, config) and
       getHeadContent(ap) = c
     }
 
     pragma[nomagic]
     private predicate fwdFlowIn(
-      DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, Cc innercc,
-      ParameterPositionOption summaryCtx, ApOption argAp, Ap ap, Configuration config
+      DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, CcCall innercc,
+      ParameterPositionOption summaryCtx, ApOption argAp, Ap ap, ApApprox apa, Configuration config
     ) {
       exists(ArgNodeEx arg, boolean allowsFieldFlow |
-        fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, config) and
-        flowIntoCall(call, arg, p, allowsFieldFlow, config) and
+        fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, apa, config) and
+        flowIntoCallApa(call, arg, p, allowsFieldFlow, apa, config) and
         innercc = getCallContextCall(call, p.getEnclosingCallable(), outercc) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
+    pragma[nomagic]
+    private predicate fwdFlowRetFromArg(
+      RetNodeEx ret, FlowState state, CcCall ccc, ParameterPosition summaryCtx, ParamNodeEx p,
+      Ap argAp, ApApprox argApa, Ap ap, ApApprox apa, Configuration config
+    ) {
+      exists(DataFlowCallable c, ReturnKindExt kind |
+        fwdFlow(pragma[only_bind_into](ret), state, ccc,
+          TParameterPositionSome(pragma[only_bind_into](summaryCtx)), apSome(argAp), ap, apa, config) and
+        getApprox(argAp) = argApa and
+        c = ret.getEnclosingCallable() and
+        kind = ret.getKind() and
+        p.isParameterOf(c, pragma[only_bind_into](summaryCtx)) and
+        parameterFlowThroughAllowed(p, kind)
+      )
+    }
+
+    pragma[inline]
+    private predicate fwdFlowInMayFlowThrough(
+      DataFlowCall call, Cc cc, CcCall innerCc, ParameterPositionOption summaryCtx, ApOption argAp,
+      ParamNodeEx param, Ap ap, ApApprox apa, Configuration config
+    ) {
+      fwdFlowIn(call, pragma[only_bind_into](param), _, cc, innerCc, summaryCtx, argAp, ap,
+        pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
+      PrevStage::parameterMayFlowThrough(param, apa, config)
+    }
+
+    // dedup before joining with `flowThroughOutOfCall`
+    pragma[nomagic]
+    private predicate fwdFlowInMayFlowThroughProj(
+      DataFlowCall call, CcCall innerCc, ApApprox apa, Configuration config
+    ) {
+      fwdFlowInMayFlowThrough(call, _, innerCc, _, _, _, _, apa, config)
+    }
+
+    /**
+     * Same as `flowThroughOutOfCall`, but restricted to calls that are reached
+     * in the flow covered by `fwdFlow`, where data might flow through the target
+     * callable and back out at `call`.
+     */
+    pragma[nomagic]
+    private predicate fwdFlowThroughOutOfCall(
+      DataFlowCall call, CcCall ccc, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow,
+      ApApprox argApa, ApApprox apa, Configuration config
+    ) {
+      fwdFlowInMayFlowThroughProj(call, ccc, argApa, config) and
+      flowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, argApa, apa, config)
+    }
+
     pragma[nomagic]
     private predicate fwdFlowOutFromArg(
       DataFlowCall call, NodeEx out, FlowState state, ParameterPosition summaryCtx, Ap argAp, Ap ap,
-      Configuration config
+      ApApprox apa, Configuration config
     ) {
-      exists(
-        DataFlowCallable c, RetNodeEx ret, ReturnKindExt kind, boolean allowsFieldFlow, CcCall ccc
-      |
-        fwdFlow(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc),
-          TParameterPositionSome(pragma[only_bind_into](summaryCtx)), apSome(argAp), ap, config) and
-        flowThroughOutOfCall(call, pragma[only_bind_into](c), ccc, ret, kind, out, allowsFieldFlow,
+      exists(RetNodeEx ret, boolean allowsFieldFlow, CcCall ccc, ApApprox argApa |
+        fwdFlowRetFromArg(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc),
+          summaryCtx, _, argAp, pragma[only_bind_into](argApa), ap, pragma[only_bind_into](apa),
           config) and
-        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
-        parameterFlowThroughAllowed(c, pragma[only_bind_into](summaryCtx), kind)
+        fwdFlowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, argApa, apa, config) and
+        (if allowsFieldFlow = false then ap instanceof ApNil else any())
       )
     }
 
@@ -1483,8 +1575,7 @@ private module MkStage<StageSig PrevStage> {
       ParameterPosition pos, Ap ap, Configuration config
     ) {
       exists(ParamNodeEx param |
-        fwdFlowIn(call, param, _, cc, _, summaryCtx, argAp, ap, config) and
-        PrevStage::parameterMayFlowThrough(param, unbindApa(getApprox(ap)), config) and
+        fwdFlowInMayFlowThrough(call, cc, _, summaryCtx, argAp, param, ap, _, config) and
         pos = param.getPosition()
       )
     }
@@ -1505,41 +1596,55 @@ private module MkStage<StageSig PrevStage> {
       fwdFlowConsCand(ap1, c, ap2, config)
     }
 
-    pragma[nomagic]
-    private predicate returnFlowsThrough0(
-      RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, DataFlowCallable c,
-      ParameterPosition ppos, Ap argAp, Ap ap, Configuration config
-    ) {
-      exists(boolean allowsFieldFlow |
-        fwdFlow(ret, state, ccc, TParameterPositionSome(ppos), apSome(argAp), ap, config) and
-        flowThroughOutOfCall(_, c, _, pragma[only_bind_into](ret), kind, _, allowsFieldFlow,
-          pragma[only_bind_into](config)) and
-        if allowsFieldFlow = false then ap instanceof ApNil else any()
-      )
-    }
-
     pragma[nomagic]
     private predicate returnFlowsThrough(
       RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, ParamNodeEx p, Ap argAp,
       Ap ap, Configuration config
     ) {
-      exists(DataFlowCallable c, ParameterPosition ppos |
-        returnFlowsThrough0(ret, kind, state, ccc, c, ppos, argAp, ap, config) and
-        p.isParameterOf(c, ppos) and
-        parameterFlowThroughAllowed(p, kind)
+      exists(boolean allowsFieldFlow, ApApprox argApa, ApApprox apa |
+        fwdFlowRetFromArg(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc), _, p,
+          argAp, pragma[only_bind_into](argApa), ap, pragma[only_bind_into](apa), config) and
+        kind = ret.getKind() and
+        fwdFlowThroughOutOfCall(_, ccc, ret, _, allowsFieldFlow, argApa, apa, config) and
+        (if allowsFieldFlow = false then ap instanceof ApNil else any())
       )
     }
 
     pragma[nomagic]
     private predicate flowThroughIntoCall(
-      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Configuration config
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp,
+      Configuration config
     ) {
-      exists(Ap argAp |
-        flowIntoCall(call, pragma[only_bind_into](arg), pragma[only_bind_into](p), allowsFieldFlow,
+      exists(ApApprox argApa |
+        flowIntoCallApa(call, pragma[only_bind_into](arg), pragma[only_bind_into](p),
+          allowsFieldFlow, argApa, pragma[only_bind_into](config)) and
+        fwdFlow(arg, _, _, _, _, pragma[only_bind_into](argAp), argApa,
           pragma[only_bind_into](config)) and
-        fwdFlow(arg, _, _, _, _, pragma[only_bind_into](argAp), pragma[only_bind_into](config)) and
         returnFlowsThrough(_, _, _, _, p, pragma[only_bind_into](argAp), _,
-          pragma[only_bind_into](config))
+          pragma[only_bind_into](config)) and
+        if allowsFieldFlow = false then argAp instanceof ApNil else any()
+      )
+    }
+
+    pragma[nomagic]
+    private predicate flowIntoCallAp(
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap ap,
+      Configuration config
+    ) {
+      exists(ApApprox apa |
+        flowIntoCallApa(call, arg, p, allowsFieldFlow, apa, config) and
+        fwdFlow(arg, _, _, _, _, ap, apa, config)
+      )
+    }
+
+    pragma[nomagic]
+    private predicate flowOutOfCallAp(
+      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
+      Ap ap, Configuration config
+    ) {
+      exists(ApApprox apa |
+        flowOutOfCallApa(call, ret, kind, out, allowsFieldFlow, apa, config) and
+        fwdFlow(ret, _, _, _, _, ap, apa, config)
       )
     }
 
@@ -1628,7 +1733,7 @@ private module MkStage<StageSig PrevStage> {
       // flow into a callable
       exists(ParamNodeEx p, boolean allowsFieldFlow |
         revFlow(p, state, TReturnCtxNone(), returnAp, ap, config) and
-        flowIntoCall(_, node, p, allowsFieldFlow, config) and
+        flowIntoCallAp(_, node, p, allowsFieldFlow, ap, config) and
         (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
         returnCtx = TReturnCtxNone()
       )
@@ -1682,22 +1787,41 @@ private module MkStage<StageSig PrevStage> {
     ) {
       exists(NodeEx out, boolean allowsFieldFlow |
         revFlow(out, state, returnCtx, returnAp, ap, config) and
-        flowOutOfCall(call, ret, kind, out, allowsFieldFlow, config) and
+        flowOutOfCallAp(call, ret, kind, out, allowsFieldFlow, ap, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
+    /**
+     * Same as `flowThroughIntoCall`, but restricted to calls that are reached
+     * in the flow covered by `revFlow`, where data might flow through the target
+     * callable and back out at `call`.
+     */
+    pragma[nomagic]
+    private predicate revFlowThroughIntoCall(
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp,
+      Configuration config
+    ) {
+      flowThroughIntoCall(call, arg, p, allowsFieldFlow, argAp, config) and
+      revFlowIsReturned(call, _, _, _, _, config)
+    }
+
+    pragma[nomagic]
+    private predicate revFlowParamToReturn(
+      ParamNodeEx p, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap, Configuration config
+    ) {
+      revFlow(p, state, TReturnCtxMaybeFlowThrough(kind), apSome(returnAp), ap, config) and
+      parameterFlowThroughAllowed(p, kind)
+    }
+
     pragma[nomagic]
     private predicate revFlowInToReturn(
       DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap,
       Configuration config
     ) {
       exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlow(pragma[only_bind_into](p), state,
-          TReturnCtxMaybeFlowThrough(pragma[only_bind_into](kind)), apSome(returnAp), ap, config) and
-        flowThroughIntoCall(call, arg, p, allowsFieldFlow, config) and
-        (if allowsFieldFlow = false then ap instanceof ApNil else any()) and
-        parameterFlowThroughAllowed(p, kind)
+        revFlowParamToReturn(p, state, kind, returnAp, ap, config) and
+        revFlowThroughIntoCall(call, arg, p, allowsFieldFlow, ap, config)
       )
     }
 
@@ -1750,6 +1874,11 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     predicate revFlow(NodeEx node, Configuration config) { revFlow(node, _, _, _, _, config) }
 
+    pragma[nomagic]
+    predicate revFlowAp(NodeEx node, Ap ap, Configuration config) {
+      revFlow(node, _, _, _, ap, config)
+    }
+
     // use an alias as a workaround for bad functionality-induced joins
     pragma[nomagic]
     additional predicate revFlowAlias(NodeEx node, Configuration config) {
@@ -1786,9 +1915,9 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate parameterFlowsThroughRev(
-      ParamNodeEx p, Ap ap, ReturnKindExt kind, Configuration config
+      ParamNodeEx p, Ap ap, ReturnKindExt kind, Ap returnAp, Configuration config
     ) {
-      revFlow(p, _, TReturnCtxMaybeFlowThrough(kind), apSome(_), ap, config) and
+      revFlow(p, _, TReturnCtxMaybeFlowThrough(kind), apSome(returnAp), ap, config) and
       parameterFlowThroughAllowed(p, kind)
     }
 
@@ -1796,27 +1925,36 @@ private module MkStage<StageSig PrevStage> {
     predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
       exists(RetNodeEx ret, ReturnKindExt kind |
         returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
-        parameterFlowsThroughRev(p, ap, kind, config)
+        parameterFlowsThroughRev(p, ap, kind, _, config)
       )
     }
 
     pragma[nomagic]
-    predicate returnMayFlowThrough(RetNodeEx ret, ReturnKindExt kind, Configuration config) {
-      exists(ParamNodeEx p, Ap ap |
-        returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
-        parameterFlowsThroughRev(p, ap, kind, config)
+    predicate returnMayFlowThrough(
+      RetNodeEx ret, Ap argAp, Ap ap, ReturnKindExt kind, Configuration config
+    ) {
+      exists(ParamNodeEx p |
+        returnFlowsThrough(ret, kind, _, _, p, argAp, ap, config) and
+        parameterFlowsThroughRev(p, argAp, kind, ap, config)
+      )
+    }
+
+    pragma[nomagic]
+    predicate revFlowInToReturnIsReturned(
+      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnCtx returnCtx, ApOption returnAp,
+      Ap ap, Configuration config
+    ) {
+      exists(ReturnKindExt returnKind0, Ap returnAp0 |
+        revFlowInToReturn(call, arg, state, returnKind0, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
       )
     }
 
     pragma[nomagic]
     predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
-      exists(
-        ReturnKindExt returnKind0, Ap returnAp0, ArgNodeEx arg, FlowState state,
-        ReturnCtx returnCtx, ApOption returnAp, Ap ap
-      |
+      exists(ArgNodeEx arg, FlowState state, ReturnCtx returnCtx, ApOption returnAp, Ap ap |
         revFlow(arg, state, returnCtx, returnAp, ap, config) and
-        revFlowInToReturn(call, arg, state, returnKind0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
+        revFlowInToReturnIsReturned(call, arg, state, returnCtx, returnAp, ap, config)
       )
     }
 
@@ -2179,16 +2317,16 @@ private module LocalFlowBigStep {
   pragma[nomagic]
   predicate localFlowBigStep(
     NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
-    AccessPathFrontNil apf, Configuration config, LocalCallContext callContext
+    DataFlowType t, Configuration config, LocalCallContext callContext
   ) {
-    localFlowStepPlus(node1, state1, node2, preservesValue, apf.getType(), config, callContext) and
+    localFlowStepPlus(node1, state1, node2, preservesValue, t, config, callContext) and
     localFlowExit(node2, state1, config) and
     state1 = state2
     or
     additionalLocalFlowStepNodeCand2(node1, state1, node2, state2, config) and
     state1 != state2 and
     preservesValue = false and
-    apf = TFrontNil(node2.getDataFlowType()) and
+    t = node2.getDataFlowType() and
     callContext.relevantFor(node1.getEnclosingCallable()) and
     not exists(DataFlowCall call | call = callContext.(LocalCallContextSpecificCall).getCall() |
       isUnreachableInCallCached(node1.asNode(), call) or
@@ -2202,11 +2340,87 @@ private import LocalFlowBigStep
 private module Stage3Param implements MkStage<Stage2>::StageParam {
   private module PrevStage = Stage2;
 
+  class Ap = ApproxAccessPathFront;
+
+  class ApNil = ApproxAccessPathFrontNil;
+
+  PrevStage::Ap getApprox(Ap ap) { result = ap.toBoolNonEmpty() }
+
+  ApNil getApNil(NodeEx node) {
+    PrevStage::revFlow(node, _) and result = TApproxFrontNil(node.getDataFlowType())
+  }
+
+  bindingset[tc, tail]
+  Ap apCons(TypedContent tc, Ap tail) { result.getAHead() = tc and exists(tail) }
+
+  pragma[noinline]
+  Content getHeadContent(Ap ap) { result = ap.getAHead().getContent() }
+
+  class ApOption = ApproxAccessPathFrontOption;
+
+  ApOption apNone() { result = TApproxAccessPathFrontNone() }
+
+  ApOption apSome(Ap ap) { result = TApproxAccessPathFrontSome(ap) }
+
+  import BooleanCallContext
+
+  predicate localStep(
+    NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
+    ApproxAccessPathFrontNil ap, Configuration config, LocalCc lcc
+  ) {
+    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap.getType(), config, _) and
+    exists(lcc)
+  }
+
+  predicate flowOutOfCall = flowOutOfCallNodeCand2/6;
+
+  predicate flowIntoCall = flowIntoCallNodeCand2/5;
+
+  pragma[nomagic]
+  private predicate expectsContentCand(NodeEx node, Ap ap, Configuration config) {
+    exists(Content c |
+      PrevStage::revFlow(node, pragma[only_bind_into](config)) and
+      PrevStage::readStepCand(_, c, _, pragma[only_bind_into](config)) and
+      expectsContentEx(node, c) and
+      c = ap.getAHead().getContent()
+    )
+  }
+
+  pragma[nomagic]
+  private predicate castingNodeEx(NodeEx node) { node.asNode() instanceof CastingNode }
+
+  bindingset[node, state, ap, config]
+  predicate filter(NodeEx node, FlowState state, Ap ap, Configuration config) {
+    exists(state) and
+    exists(config) and
+    (if castingNodeEx(node) then compatibleTypes(node.getDataFlowType(), ap.getType()) else any()) and
+    (
+      notExpectsContent(node)
+      or
+      expectsContentCand(node, ap, config)
+    )
+  }
+
+  bindingset[ap, contentType]
+  predicate typecheckStore(Ap ap, DataFlowType contentType) {
+    // We need to typecheck stores here, since reverse flow through a getter
+    // might have a different type here compared to inside the getter.
+    compatibleTypes(ap.getType(), contentType)
+  }
+}
+
+private module Stage3 implements StageSig {
+  import MkStage<Stage2>::Stage<Stage3Param>
+}
+
+private module Stage4Param implements MkStage<Stage3>::StageParam {
+  private module PrevStage = Stage3;
+
   class Ap = AccessPathFront;
 
   class ApNil = AccessPathFrontNil;
 
-  PrevStage::Ap getApprox(Ap ap) { result = ap.toBoolNonEmpty() }
+  PrevStage::Ap getApprox(Ap ap) { result = ap.toApprox() }
 
   ApNil getApNil(NodeEx node) {
     PrevStage::revFlow(node, _) and result = TFrontNil(node.getDataFlowType())
@@ -2226,16 +2440,42 @@ private module Stage3Param implements MkStage<Stage2>::StageParam {
 
   import BooleanCallContext
 
+  pragma[nomagic]
   predicate localStep(
     NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
     ApNil ap, Configuration config, LocalCc lcc
   ) {
-    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap, config, _) and exists(lcc)
+    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap.getType(), config, _) and
+    PrevStage::revFlow(node1, pragma[only_bind_into](state1), _, pragma[only_bind_into](config)) and
+    PrevStage::revFlowAlias(node2, pragma[only_bind_into](state2), _, pragma[only_bind_into](config)) and
+    exists(lcc)
   }
 
-  predicate flowOutOfCall = flowOutOfCallNodeCand2/6;
+  pragma[nomagic]
+  predicate flowOutOfCall(
+    DataFlowCall call, RetNodeEx node1, ReturnKindExt kind, NodeEx node2, boolean allowsFieldFlow,
+    Configuration config
+  ) {
+    exists(FlowState state |
+      flowOutOfCallNodeCand2(call, node1, kind, node2, allowsFieldFlow, config) and
+      PrevStage::revFlow(node2, pragma[only_bind_into](state), _, pragma[only_bind_into](config)) and
+      PrevStage::revFlowAlias(node1, pragma[only_bind_into](state), _,
+        pragma[only_bind_into](config))
+    )
+  }
 
-  predicate flowIntoCall = flowIntoCallNodeCand2/5;
+  pragma[nomagic]
+  predicate flowIntoCall(
+    DataFlowCall call, ArgNodeEx node1, ParamNodeEx node2, boolean allowsFieldFlow,
+    Configuration config
+  ) {
+    exists(FlowState state |
+      flowIntoCallNodeCand2(call, node1, node2, allowsFieldFlow, config) and
+      PrevStage::revFlow(node2, pragma[only_bind_into](state), _, pragma[only_bind_into](config)) and
+      PrevStage::revFlowAlias(node1, pragma[only_bind_into](state), _,
+        pragma[only_bind_into](config))
+    )
+  }
 
   pragma[nomagic]
   private predicate clearSet(NodeEx node, ContentSet c, Configuration config) {
@@ -2291,8 +2531,8 @@ private module Stage3Param implements MkStage<Stage2>::StageParam {
   }
 }
 
-private module Stage3 implements StageSig {
-  import MkStage<Stage2>::Stage<Stage3Param>
+private module Stage4 implements StageSig {
+  import MkStage<Stage3>::Stage<Stage4Param>
 }
 
 /**
@@ -2303,8 +2543,8 @@ private predicate flowCandSummaryCtx(
   NodeEx node, FlowState state, AccessPathFront argApf, Configuration config
 ) {
   exists(AccessPathFront apf |
-    Stage3::revFlow(node, state, TReturnCtxMaybeFlowThrough(_), _, apf, config) and
-    Stage3::fwdFlow(node, state, any(Stage3::CcCall ccc), _, TAccessPathFrontSome(argApf), apf,
+    Stage4::revFlow(node, state, TReturnCtxMaybeFlowThrough(_), _, apf, config) and
+    Stage4::fwdFlow(node, state, any(Stage4::CcCall ccc), _, TAccessPathFrontSome(argApf), apf,
       config)
   )
 }
@@ -2315,10 +2555,10 @@ private predicate flowCandSummaryCtx(
  */
 private predicate expensiveLen2unfolding(TypedContent tc, Configuration config) {
   exists(int tails, int nodes, int apLimit, int tupleLimit |
-    tails = strictcount(AccessPathFront apf | Stage3::consCand(tc, apf, config)) and
+    tails = strictcount(AccessPathFront apf | Stage4::consCand(tc, apf, config)) and
     nodes =
       strictcount(NodeEx n, FlowState state |
-        Stage3::revFlow(n, state, any(AccessPathFrontHead apf | apf.getHead() = tc), config)
+        Stage4::revFlow(n, state, any(AccessPathFrontHead apf | apf.getHead() = tc), config)
         or
         flowCandSummaryCtx(n, state, any(AccessPathFrontHead apf | apf.getHead() = tc), config)
       ) and
@@ -2332,11 +2572,11 @@ private predicate expensiveLen2unfolding(TypedContent tc, Configuration config)
 private newtype TAccessPathApprox =
   TNil(DataFlowType t) or
   TConsNil(TypedContent tc, DataFlowType t) {
-    Stage3::consCand(tc, TFrontNil(t), _) and
+    Stage4::consCand(tc, TFrontNil(t), _) and
     not expensiveLen2unfolding(tc, _)
   } or
   TConsCons(TypedContent tc1, TypedContent tc2, int len) {
-    Stage3::consCand(tc1, TFrontHead(tc2), _) and
+    Stage4::consCand(tc1, TFrontHead(tc2), _) and
     len in [2 .. accessPathLimit()] and
     not expensiveLen2unfolding(tc1, _)
   } or
@@ -2466,7 +2706,7 @@ private class AccessPathApproxCons1 extends AccessPathApproxCons, TCons1 {
   override AccessPathApprox pop(TypedContent head) {
     head = tc and
     (
-      exists(TypedContent tc2 | Stage3::consCand(tc, TFrontHead(tc2), _) |
+      exists(TypedContent tc2 | Stage4::consCand(tc, TFrontHead(tc2), _) |
         result = TConsCons(tc2, _, len - 1)
         or
         len = 2 and
@@ -2477,7 +2717,7 @@ private class AccessPathApproxCons1 extends AccessPathApproxCons, TCons1 {
       or
       exists(DataFlowType t |
         len = 1 and
-        Stage3::consCand(tc, TFrontNil(t), _) and
+        Stage4::consCand(tc, TFrontNil(t), _) and
         result = TNil(t)
       )
     )
@@ -2502,13 +2742,14 @@ private class AccessPathApproxOption extends TAccessPathApproxOption {
   }
 }
 
-private module Stage4Param implements MkStage<Stage3>::StageParam {
-  private module PrevStage = Stage3;
+private module Stage5Param implements MkStage<Stage4>::StageParam {
+  private module PrevStage = Stage4;
 
   class Ap = AccessPathApprox;
 
   class ApNil = AccessPathApproxNil;
 
+  pragma[nomagic]
   PrevStage::Ap getApprox(Ap ap) { result = ap.getFront() }
 
   ApNil getApNil(NodeEx node) {
@@ -2534,7 +2775,9 @@ private module Stage4Param implements MkStage<Stage3>::StageParam {
     NodeEx node1, FlowState state1, NodeEx node2, FlowState state2, boolean preservesValue,
     ApNil ap, Configuration config, LocalCc lcc
   ) {
-    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap.getFront(), config, lcc)
+    localFlowBigStep(node1, state1, node2, state2, preservesValue, ap.getType(), config, lcc) and
+    PrevStage::revFlow(node1, pragma[only_bind_into](state1), _, pragma[only_bind_into](config)) and
+    PrevStage::revFlowAlias(node2, pragma[only_bind_into](state2), _, pragma[only_bind_into](config))
   }
 
   pragma[nomagic]
@@ -2571,7 +2814,7 @@ private module Stage4Param implements MkStage<Stage3>::StageParam {
   predicate typecheckStore(Ap ap, DataFlowType contentType) { any() }
 }
 
-private module Stage4 = MkStage<Stage3>::Stage<Stage4Param>;
+private module Stage5 = MkStage<Stage4>::Stage<Stage5Param>;
 
 bindingset[conf, result]
 private Configuration unbindConf(Configuration conf) {
@@ -2585,8 +2828,8 @@ private predicate nodeMayUseSummary0(
 ) {
   exists(AccessPathApprox apa0 |
     c = n.getEnclosingCallable() and
-    Stage4::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
-    Stage4::fwdFlow(n, state, any(CallContextCall ccc), TParameterPositionSome(pos),
+    Stage5::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
+    Stage5::fwdFlow(n, state, any(CallContextCall ccc), TParameterPositionSome(pos),
       TAccessPathApproxSome(apa), apa0, config)
   )
 }
@@ -2596,7 +2839,7 @@ private predicate nodeMayUseSummary(
   NodeEx n, FlowState state, AccessPathApprox apa, Configuration config
 ) {
   exists(DataFlowCallable c, ParameterPosition pos, ParamNodeEx p |
-    Stage4::parameterMayFlowThrough(p, apa, config) and
+    Stage5::parameterMayFlowThrough(p, apa, config) and
     nodeMayUseSummary0(n, c, pos, state, apa, config) and
     p.isParameterOf(c, pos)
   )
@@ -2606,8 +2849,8 @@ private newtype TSummaryCtx =
   TSummaryCtxNone() or
   TSummaryCtxSome(ParamNodeEx p, FlowState state, AccessPath ap) {
     exists(Configuration config |
-      Stage4::parameterMayFlowThrough(p, ap.getApprox(), config) and
-      Stage4::revFlow(p, state, _, config)
+      Stage5::parameterMayFlowThrough(p, ap.getApprox(), config) and
+      Stage5::revFlow(p, state, _, config)
     )
   }
 
@@ -2656,7 +2899,7 @@ private int count1to2unfold(AccessPathApproxCons1 apa, Configuration config) {
     len = apa.len() and
     result =
       strictcount(AccessPathFront apf |
-        Stage4::consCand(tc, any(AccessPathApprox ap | ap.getFront() = apf and ap.len() = len - 1),
+        Stage5::consCand(tc, any(AccessPathApprox ap | ap.getFront() = apf and ap.len() = len - 1),
           config)
       )
   )
@@ -2665,7 +2908,7 @@ private int count1to2unfold(AccessPathApproxCons1 apa, Configuration config) {
 private int countNodesUsingAccessPath(AccessPathApprox apa, Configuration config) {
   result =
     strictcount(NodeEx n, FlowState state |
-      Stage4::revFlow(n, state, apa, config) or nodeMayUseSummary(n, state, apa, config)
+      Stage5::revFlow(n, state, apa, config) or nodeMayUseSummary(n, state, apa, config)
     )
 }
 
@@ -2686,7 +2929,7 @@ private predicate expensiveLen1to2unfolding(AccessPathApproxCons1 apa, Configura
 private AccessPathApprox getATail(AccessPathApprox apa, Configuration config) {
   exists(TypedContent head |
     apa.pop(head) = result and
-    Stage4::consCand(head, result, config)
+    Stage5::consCand(head, result, config)
   )
 }
 
@@ -2768,7 +3011,7 @@ private newtype TPathNode =
     NodeEx node, FlowState state, CallContext cc, SummaryCtx sc, AccessPath ap, Configuration config
   ) {
     // A PathNode is introduced by a source ...
-    Stage4::revFlow(node, state, config) and
+    Stage5::revFlow(node, state, config) and
     sourceNode(node, state, config) and
     (
       if hasSourceCallCtx(config)
@@ -2782,7 +3025,7 @@ private newtype TPathNode =
     exists(PathNodeMid mid |
       pathStep(mid, node, state, cc, sc, ap) and
       pragma[only_bind_into](config) = mid.getConfiguration() and
-      Stage4::revFlow(node, state, ap.getApprox(), pragma[only_bind_into](config))
+      Stage5::revFlow(node, state, ap.getApprox(), pragma[only_bind_into](config))
     )
   } or
   TPathNodeSink(NodeEx node, FlowState state, Configuration config) {
@@ -2924,7 +3167,7 @@ private class AccessPathCons2 extends AccessPath, TAccessPathCons2 {
   override TypedContent getHead() { result = head1 }
 
   override AccessPath getTail() {
-    Stage4::consCand(head1, result.getApprox(), _) and
+    Stage5::consCand(head1, result.getApprox(), _) and
     result.getHead() = head2 and
     result.length() = len - 1
   }
@@ -2955,7 +3198,7 @@ private class AccessPathCons1 extends AccessPath, TAccessPathCons1 {
   override TypedContent getHead() { result = head }
 
   override AccessPath getTail() {
-    Stage4::consCand(head, result.getApprox(), _) and result.length() = len - 1
+    Stage5::consCand(head, result.getApprox(), _) and result.length() = len - 1
   }
 
   override AccessPathFrontHead getFront() { result = TFrontHead(head) }
@@ -3347,7 +3590,8 @@ private predicate pathStep(
     AccessPath ap0, NodeEx midnode, FlowState state0, Configuration conf, LocalCallContext localCC
   |
     pathNode(mid, midnode, state0, cc, sc, ap0, conf, localCC) and
-    localFlowBigStep(midnode, state0, node, state, false, ap.getFront(), conf, localCC) and
+    localFlowBigStep(midnode, state0, node, state, false, ap.(AccessPathNil).getType(), conf,
+      localCC) and
     ap0 instanceof AccessPathNil
   )
   or
@@ -3389,7 +3633,7 @@ private predicate pathReadStep(
 ) {
   ap0 = mid.getAp() and
   tc = ap0.getHead() and
-  Stage4::readStepCand(mid.getNodeEx(), tc.getContent(), node, mid.getConfiguration()) and
+  Stage5::readStepCand(mid.getNodeEx(), tc.getContent(), node, mid.getConfiguration()) and
   state = mid.getState() and
   cc = mid.getCallContext()
 }
@@ -3399,7 +3643,7 @@ private predicate pathStoreStep(
   PathNodeMid mid, NodeEx node, FlowState state, AccessPath ap0, TypedContent tc, CallContext cc
 ) {
   ap0 = mid.getAp() and
-  Stage4::storeStepCand(mid.getNodeEx(), _, tc, node, _, mid.getConfiguration()) and
+  Stage5::storeStepCand(mid.getNodeEx(), _, tc, node, _, mid.getConfiguration()) and
   state = mid.getState() and
   cc = mid.getCallContext()
 }
@@ -3436,7 +3680,7 @@ private NodeEx getAnOutNodeFlow(
   ReturnKindExt kind, DataFlowCall call, AccessPathApprox apa, Configuration config
 ) {
   result.asNode() = kind.getAnOutNode(call) and
-  Stage4::revFlow(result, _, apa, config)
+  Stage5::revFlow(result, _, apa, config)
 }
 
 /**
@@ -3472,7 +3716,7 @@ private predicate parameterCand(
   DataFlowCallable callable, ParameterPosition pos, AccessPathApprox apa, Configuration config
 ) {
   exists(ParamNodeEx p |
-    Stage4::revFlow(p, _, apa, config) and
+    Stage5::revFlow(p, _, apa, config) and
     p.isParameterOf(callable, pos)
   )
 }
@@ -3751,9 +3995,17 @@ predicate stageStats(
   n = 45 and
   Stage4::stats(false, nodes, fields, conscand, states, tuples, config)
   or
-  stage = "5 Fwd" and n = 50 and finalStats(true, nodes, fields, conscand, states, tuples)
+  stage = "5 Fwd" and
+  n = 50 and
+  Stage5::stats(true, nodes, fields, conscand, states, tuples, config)
   or
-  stage = "5 Rev" and n = 55 and finalStats(false, nodes, fields, conscand, states, tuples)
+  stage = "5 Rev" and
+  n = 55 and
+  Stage5::stats(false, nodes, fields, conscand, states, tuples, config)
+  or
+  stage = "6 Fwd" and n = 60 and finalStats(true, nodes, fields, conscand, states, tuples)
+  or
+  stage = "6 Rev" and n = 65 and finalStats(false, nodes, fields, conscand, states, tuples)
 }
 
 private module FlowExploration {
diff --git a/swift/ql/lib/codeql/swift/dataflow/internal/DataFlowImplCommon.qll b/swift/ql/lib/codeql/swift/dataflow/internal/DataFlowImplCommon.qll
index f981834a6d4..c66aefced8d 100644
--- a/swift/ql/lib/codeql/swift/dataflow/internal/DataFlowImplCommon.qll
+++ b/swift/ql/lib/codeql/swift/dataflow/internal/DataFlowImplCommon.qll
@@ -926,18 +926,46 @@ private module Cached {
     TReturnCtxNoFlowThrough() or
     TReturnCtxMaybeFlowThrough(ReturnKindExt kind)
 
+  cached
+  newtype TTypedContentApprox =
+    MkTypedContentApprox(ContentApprox c, DataFlowType t) {
+      exists(Content cont |
+        c = getContentApprox(cont) and
+        store(_, cont, _, _, t)
+      )
+    }
+
   cached
   newtype TTypedContent = MkTypedContent(Content c, DataFlowType t) { store(_, c, _, _, t) }
 
+  cached
+  TypedContent getATypedContent(TypedContentApprox c) {
+    exists(ContentApprox cls, DataFlowType t, Content cont |
+      c = MkTypedContentApprox(cls, pragma[only_bind_into](t)) and
+      result = MkTypedContent(cont, pragma[only_bind_into](t)) and
+      cls = getContentApprox(cont)
+    )
+  }
+
   cached
   newtype TAccessPathFront =
     TFrontNil(DataFlowType t) or
     TFrontHead(TypedContent tc)
 
+  cached
+  newtype TApproxAccessPathFront =
+    TApproxFrontNil(DataFlowType t) or
+    TApproxFrontHead(TypedContentApprox tc)
+
   cached
   newtype TAccessPathFrontOption =
     TAccessPathFrontNone() or
     TAccessPathFrontSome(AccessPathFront apf)
+
+  cached
+  newtype TApproxAccessPathFrontOption =
+    TApproxAccessPathFrontNone() or
+    TApproxAccessPathFrontSome(ApproxAccessPathFront apf)
 }
 
 /**
@@ -1353,6 +1381,75 @@ class ReturnCtx extends TReturnCtx {
   }
 }
 
+/** An approximated `Content` tagged with the type of a containing object. */
+class TypedContentApprox extends MkTypedContentApprox {
+  private ContentApprox c;
+  private DataFlowType t;
+
+  TypedContentApprox() { this = MkTypedContentApprox(c, t) }
+
+  /** Gets a typed content approximated by this value. */
+  TypedContent getATypedContent() { result = getATypedContent(this) }
+
+  /** Gets the container type. */
+  DataFlowType getContainerType() { result = t }
+
+  /** Gets a textual representation of this approximated content. */
+  string toString() { result = c.toString() }
+}
+
+/**
+ * The front of an approximated access path. This is either a head or a nil.
+ */
+abstract class ApproxAccessPathFront extends TApproxAccessPathFront {
+  abstract string toString();
+
+  abstract DataFlowType getType();
+
+  abstract boolean toBoolNonEmpty();
+
+  pragma[nomagic]
+  TypedContent getAHead() {
+    exists(TypedContentApprox cont |
+      this = TApproxFrontHead(cont) and
+      result = cont.getATypedContent()
+    )
+  }
+}
+
+class ApproxAccessPathFrontNil extends ApproxAccessPathFront, TApproxFrontNil {
+  private DataFlowType t;
+
+  ApproxAccessPathFrontNil() { this = TApproxFrontNil(t) }
+
+  override string toString() { result = ppReprType(t) }
+
+  override DataFlowType getType() { result = t }
+
+  override boolean toBoolNonEmpty() { result = false }
+}
+
+class ApproxAccessPathFrontHead extends ApproxAccessPathFront, TApproxFrontHead {
+  private TypedContentApprox tc;
+
+  ApproxAccessPathFrontHead() { this = TApproxFrontHead(tc) }
+
+  override string toString() { result = tc.toString() }
+
+  override DataFlowType getType() { result = tc.getContainerType() }
+
+  override boolean toBoolNonEmpty() { result = true }
+}
+
+/** An optional approximated access path front. */
+class ApproxAccessPathFrontOption extends TApproxAccessPathFrontOption {
+  string toString() {
+    this = TApproxAccessPathFrontNone() and result = "<none>"
+    or
+    this = TApproxAccessPathFrontSome(any(ApproxAccessPathFront apf | result = apf.toString()))
+  }
+}
+
 /** A `Content` tagged with the type of a containing object. */
 class TypedContent extends MkTypedContent {
   private Content c;
@@ -1385,7 +1482,7 @@ abstract class AccessPathFront extends TAccessPathFront {
 
   abstract DataFlowType getType();
 
-  abstract boolean toBoolNonEmpty();
+  abstract ApproxAccessPathFront toApprox();
 
   TypedContent getHead() { this = TFrontHead(result) }
 }
@@ -1399,7 +1496,7 @@ class AccessPathFrontNil extends AccessPathFront, TFrontNil {
 
   override DataFlowType getType() { result = t }
 
-  override boolean toBoolNonEmpty() { result = false }
+  override ApproxAccessPathFront toApprox() { result = TApproxFrontNil(t) }
 }
 
 class AccessPathFrontHead extends AccessPathFront, TFrontHead {
@@ -1411,7 +1508,7 @@ class AccessPathFrontHead extends AccessPathFront, TFrontHead {
 
   override DataFlowType getType() { result = tc.getContainerType() }
 
-  override boolean toBoolNonEmpty() { result = true }
+  override ApproxAccessPathFront toApprox() { result.getAHead() = tc }
 }
 
 /** An optional access path front. */
diff --git a/swift/ql/lib/codeql/swift/dataflow/internal/DataFlowImplConsistency.qll b/swift/ql/lib/codeql/swift/dataflow/internal/DataFlowImplConsistency.qll
index 3eacc21f356..e85e0cd92ec 100644
--- a/swift/ql/lib/codeql/swift/dataflow/internal/DataFlowImplConsistency.qll
+++ b/swift/ql/lib/codeql/swift/dataflow/internal/DataFlowImplConsistency.qll
@@ -260,4 +260,9 @@ module Consistency {
     not exists(unique(ParameterPosition pos0 | isParameterNode(p, c, pos0))) and
     msg = "Parameter node with multiple positions."
   }
+
+  query predicate uniqueContentApprox(Content c, string msg) {
+    not exists(unique(ContentApprox approx | approx = getContentApprox(c))) and
+    msg = "Non-unique content approximation."
+  }
 }

From bc58cbec8cc313eacbd9602da4f6688131e55de3 Mon Sep 17 00:00:00 2001
From: Tom Hvitved <hvitved@github.com>
Date: Fri, 9 Dec 2022 10:41:57 +0100
Subject: [PATCH 1316/1420] C++: Implement `ContentApprox`

---
 .../code/cpp/ir/dataflow/internal/DataFlowPrivate.qll      | 7 +++++++
 .../semmle/code/cpp/dataflow/internal/DataFlowPrivate.qll  | 7 +++++++
 .../code/cpp/ir/dataflow/internal/DataFlowPrivate.qll      | 7 +++++++
 3 files changed, 21 insertions(+)

diff --git a/cpp/ql/lib/experimental/semmle/code/cpp/ir/dataflow/internal/DataFlowPrivate.qll b/cpp/ql/lib/experimental/semmle/code/cpp/ir/dataflow/internal/DataFlowPrivate.qll
index 69e08a9a5d2..58569ef2425 100644
--- a/cpp/ql/lib/experimental/semmle/code/cpp/ir/dataflow/internal/DataFlowPrivate.qll
+++ b/cpp/ql/lib/experimental/semmle/code/cpp/ir/dataflow/internal/DataFlowPrivate.qll
@@ -551,6 +551,13 @@ predicate additionalLambdaFlowStep(Node nodeFrom, Node nodeTo, boolean preserves
  */
 predicate allowParameterReturnInSelf(ParameterNode p) { none() }
 
+/** An approximated `Content`. */
+class ContentApprox = Unit;
+
+/** Gets an approximated value for content `c`. */
+pragma[inline]
+ContentApprox getContentApprox(Content c) { any() }
+
 private class MyConsistencyConfiguration extends Consistency::ConsistencyConfiguration {
   override predicate argHasPostUpdateExclude(ArgumentNode n) {
     // The rules for whether an IR argument gets a post-update node are too
diff --git a/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowPrivate.qll b/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowPrivate.qll
index 9ad3e835c38..1749de42f2c 100644
--- a/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowPrivate.qll
+++ b/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowPrivate.qll
@@ -296,6 +296,13 @@ predicate additionalLambdaFlowStep(Node nodeFrom, Node nodeTo, boolean preserves
  */
 predicate allowParameterReturnInSelf(ParameterNode p) { none() }
 
+/** An approximated `Content`. */
+class ContentApprox = Unit;
+
+/** Gets an approximated value for content `c`. */
+pragma[inline]
+ContentApprox getContentApprox(Content c) { any() }
+
 private class MyConsistencyConfiguration extends Consistency::ConsistencyConfiguration {
   override predicate argHasPostUpdateExclude(ArgumentNode n) {
     // Is the null pointer (or something that's not really a pointer)
diff --git a/cpp/ql/lib/semmle/code/cpp/ir/dataflow/internal/DataFlowPrivate.qll b/cpp/ql/lib/semmle/code/cpp/ir/dataflow/internal/DataFlowPrivate.qll
index 7f8524a4b44..e068f81f542 100644
--- a/cpp/ql/lib/semmle/code/cpp/ir/dataflow/internal/DataFlowPrivate.qll
+++ b/cpp/ql/lib/semmle/code/cpp/ir/dataflow/internal/DataFlowPrivate.qll
@@ -400,6 +400,13 @@ predicate additionalLambdaFlowStep(Node nodeFrom, Node nodeTo, boolean preserves
  */
 predicate allowParameterReturnInSelf(ParameterNode p) { none() }
 
+/** An approximated `Content`. */
+class ContentApprox = Unit;
+
+/** Gets an approximated value for content `c`. */
+pragma[inline]
+ContentApprox getContentApprox(Content c) { any() }
+
 private class MyConsistencyConfiguration extends Consistency::ConsistencyConfiguration {
   override predicate argHasPostUpdateExclude(ArgumentNode n) {
     // The rules for whether an IR argument gets a post-update node are too

From 64eb0cc9412c4e89c50546cbf309ece2bb05c99c Mon Sep 17 00:00:00 2001
From: Tom Hvitved <hvitved@github.com>
Date: Fri, 9 Dec 2022 10:42:43 +0100
Subject: [PATCH 1317/1420] C#: Implement `ContentApprox`

---
 .../dataflow/internal/DataFlowPrivate.qll     | 47 +++++++++++++++++++
 1 file changed, 47 insertions(+)

diff --git a/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowPrivate.qll b/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowPrivate.qll
index 12dd22f24ff..e69f7cf6b90 100644
--- a/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowPrivate.qll
+++ b/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowPrivate.qll
@@ -904,6 +904,13 @@ private module Cached {
     TElementContent() or
     TSyntheticFieldContent(SyntheticField f)
 
+  cached
+  newtype TContentApprox =
+    TFieldApproxContent(string firstChar) { firstChar = approximateFieldContent(_) } or
+    TPropertyApproxContent(string firstChar) { firstChar = approximatePropertyContent(_) } or
+    TElementApproxContent() or
+    TSyntheticFieldApproxContent()
+
   pragma[nomagic]
   private predicate commonSubTypeGeneral(DataFlowTypeOrUnifiable t1, RelevantDataFlowType t2) {
     not t1 instanceof Gvn::TypeParameterGvnType and
@@ -2246,6 +2253,46 @@ predicate allowParameterReturnInSelf(ParameterNode p) {
   FlowSummaryImpl::Private::summaryAllowParameterReturnInSelf(p)
 }
 
+/** An approximated `Content`. */
+class ContentApprox extends TContentApprox {
+  /** Gets a textual representation of this approximated `Content`. */
+  string toString() {
+    exists(string firstChar |
+      this = TFieldApproxContent(firstChar) and result = "approximated field " + firstChar
+    )
+    or
+    exists(string firstChar |
+      this = TPropertyApproxContent(firstChar) and result = "approximated property " + firstChar
+    )
+    or
+    this = TElementApproxContent() and result = "element"
+    or
+    this = TSyntheticFieldApproxContent() and result = "approximated synthetic field"
+  }
+}
+
+/** Gets a string for approximating the name of a field. */
+private string approximateFieldContent(FieldContent fc) {
+  result = fc.getField().getName().prefix(1)
+}
+
+/** Gets a string for approximating the name of a property. */
+private string approximatePropertyContent(PropertyContent pc) {
+  result = pc.getProperty().getName().prefix(1)
+}
+
+/** Gets an approximated value for content `c`. */
+pragma[nomagic]
+ContentApprox getContentApprox(Content c) {
+  result = TFieldApproxContent(approximateFieldContent(c))
+  or
+  result = TPropertyApproxContent(approximatePropertyContent(c))
+  or
+  c instanceof ElementContent and result = TElementApproxContent()
+  or
+  c instanceof SyntheticFieldContent and result = TSyntheticFieldApproxContent()
+}
+
 /**
  * A module importing the modules that provide synthetic field declarations,
  * ensuring that they are visible to the taint tracking / data flow library.

From 4d2436dd820581ed29bd8b6585cf696b3fdc5805 Mon Sep 17 00:00:00 2001
From: Tom Hvitved <hvitved@github.com>
Date: Fri, 9 Dec 2022 10:42:57 +0100
Subject: [PATCH 1318/1420] Go: Implement `ContentApprox`

---
 go/ql/lib/semmle/go/dataflow/internal/DataFlowPrivate.qll | 7 +++++++
 1 file changed, 7 insertions(+)

diff --git a/go/ql/lib/semmle/go/dataflow/internal/DataFlowPrivate.qll b/go/ql/lib/semmle/go/dataflow/internal/DataFlowPrivate.qll
index e8bb843a8d4..980052915d3 100644
--- a/go/ql/lib/semmle/go/dataflow/internal/DataFlowPrivate.qll
+++ b/go/ql/lib/semmle/go/dataflow/internal/DataFlowPrivate.qll
@@ -380,3 +380,10 @@ predicate additionalLambdaFlowStep(Node nodeFrom, Node nodeTo, boolean preserves
 predicate allowParameterReturnInSelf(ParameterNode p) {
   FlowSummaryImpl::Private::summaryAllowParameterReturnInSelf(p)
 }
+
+/** An approximated `Content`. */
+class ContentApprox = Unit;
+
+/** Gets an approximated value for content `c`. */
+pragma[inline]
+ContentApprox getContentApprox(Content c) { any() }

From 2a28953e41332659523132f0e4d94c7f30db378f Mon Sep 17 00:00:00 2001
From: Tom Hvitved <hvitved@github.com>
Date: Fri, 9 Dec 2022 10:43:16 +0100
Subject: [PATCH 1319/1420] Java: Implement `ContentApprox`

---
 .../java/dataflow/internal/DataFlowNodes.qll  | 102 +++++++++++-------
 .../dataflow/internal/DataFlowPrivate.qll     |  43 ++++++++
 .../java/dataflow/internal/DataFlowUtil.qll   |   9 +-
 3 files changed, 109 insertions(+), 45 deletions(-)

diff --git a/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowNodes.qll b/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowNodes.qll
index 2ad6f844492..87ee04c1096 100644
--- a/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowNodes.qll
+++ b/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowNodes.qll
@@ -1,49 +1,77 @@
 private import java
 private import semmle.code.java.dataflow.InstanceAccess
+private import semmle.code.java.dataflow.ExternalFlow
 private import semmle.code.java.dataflow.FlowSummary
 private import semmle.code.java.dataflow.TypeFlow
 private import DataFlowPrivate
+private import DataFlowUtil
 private import FlowSummaryImpl as FlowSummaryImpl
 private import DataFlowImplCommon as DataFlowImplCommon
 
+/** Gets a string for approximating the name of a field. */
+string approximateFieldContent(FieldContent fc) { result = fc.getField().getName().prefix(1) }
+
 cached
-newtype TNode =
-  TExprNode(Expr e) {
-    DataFlowImplCommon::forceCachingInSameStage() and
-    not e.getType() instanceof VoidType and
-    not e.getParent*() instanceof Annotation
-  } or
-  TExplicitParameterNode(Parameter p) { exists(p.getCallable().getBody()) } or
-  TImplicitVarargsArray(Call c) {
-    c.getCallee().isVarargs() and
-    not exists(Argument arg | arg.getCall() = c and arg.isExplicitVarargsArray())
-  } or
-  TInstanceParameterNode(Callable c) { exists(c.getBody()) and not c.isStatic() } or
-  TImplicitInstanceAccess(InstanceAccessExt ia) { not ia.isExplicit(_) } or
-  TMallocNode(ClassInstanceExpr cie) or
-  TExplicitExprPostUpdate(Expr e) {
-    explicitInstanceArgument(_, e)
-    or
-    e instanceof Argument and not e.getType() instanceof ImmutableType
-    or
-    exists(FieldAccess fa | fa.getField() instanceof InstanceField and e = fa.getQualifier())
-    or
-    exists(ArrayAccess aa | e = aa.getArray())
-  } or
-  TImplicitExprPostUpdate(InstanceAccessExt ia) {
-    implicitInstanceArgument(_, ia)
-    or
-    exists(FieldAccess fa |
-      fa.getField() instanceof InstanceField and ia.isImplicitFieldQualifier(fa)
-    )
-  } or
-  TSummaryInternalNode(SummarizedCallable c, FlowSummaryImpl::Private::SummaryNodeState state) {
-    FlowSummaryImpl::Private::summaryNodeRange(c, state)
-  } or
-  TSummaryParameterNode(SummarizedCallable c, int pos) {
-    FlowSummaryImpl::Private::summaryParameterNodeRange(c, pos)
-  } or
-  TFieldValueNode(Field f)
+private module Cached {
+  cached
+  newtype TNode =
+    TExprNode(Expr e) {
+      DataFlowImplCommon::forceCachingInSameStage() and
+      not e.getType() instanceof VoidType and
+      not e.getParent*() instanceof Annotation
+    } or
+    TExplicitParameterNode(Parameter p) { exists(p.getCallable().getBody()) } or
+    TImplicitVarargsArray(Call c) {
+      c.getCallee().isVarargs() and
+      not exists(Argument arg | arg.getCall() = c and arg.isExplicitVarargsArray())
+    } or
+    TInstanceParameterNode(Callable c) { exists(c.getBody()) and not c.isStatic() } or
+    TImplicitInstanceAccess(InstanceAccessExt ia) { not ia.isExplicit(_) } or
+    TMallocNode(ClassInstanceExpr cie) or
+    TExplicitExprPostUpdate(Expr e) {
+      explicitInstanceArgument(_, e)
+      or
+      e instanceof Argument and not e.getType() instanceof ImmutableType
+      or
+      exists(FieldAccess fa | fa.getField() instanceof InstanceField and e = fa.getQualifier())
+      or
+      exists(ArrayAccess aa | e = aa.getArray())
+    } or
+    TImplicitExprPostUpdate(InstanceAccessExt ia) {
+      implicitInstanceArgument(_, ia)
+      or
+      exists(FieldAccess fa |
+        fa.getField() instanceof InstanceField and ia.isImplicitFieldQualifier(fa)
+      )
+    } or
+    TSummaryInternalNode(SummarizedCallable c, FlowSummaryImpl::Private::SummaryNodeState state) {
+      FlowSummaryImpl::Private::summaryNodeRange(c, state)
+    } or
+    TSummaryParameterNode(SummarizedCallable c, int pos) {
+      FlowSummaryImpl::Private::summaryParameterNodeRange(c, pos)
+    } or
+    TFieldValueNode(Field f)
+
+  cached
+  newtype TContent =
+    TFieldContent(InstanceField f) or
+    TArrayContent() or
+    TCollectionContent() or
+    TMapKeyContent() or
+    TMapValueContent() or
+    TSyntheticFieldContent(SyntheticField s)
+
+  cached
+  newtype TContentApprox =
+    TFieldContentApprox(string firstChar) { firstChar = approximateFieldContent(_) } or
+    TArrayContentApprox() or
+    TCollectionContentApprox() or
+    TMapKeyContentApprox() or
+    TMapValueContentApprox() or
+    TSyntheticFieldApproxContent()
+}
+
+import Cached
 
 private predicate explicitInstanceArgument(Call call, Expr instarg) {
   call instanceof MethodAccess and
diff --git a/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowPrivate.qll b/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowPrivate.qll
index 6888899079c..ef89d0f51a2 100644
--- a/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowPrivate.qll
+++ b/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowPrivate.qll
@@ -9,6 +9,7 @@ private import semmle.code.java.dataflow.FlowSteps
 private import semmle.code.java.dataflow.FlowSummary
 private import FlowSummaryImpl as FlowSummaryImpl
 private import DataFlowImplConsistency
+private import DataFlowNodes
 import DataFlowNodes::Private
 
 private newtype TReturnKind = TNormalReturnKind()
@@ -420,6 +421,48 @@ predicate allowParameterReturnInSelf(ParameterNode p) {
   FlowSummaryImpl::Private::summaryAllowParameterReturnInSelf(p)
 }
 
+/** An approximated `Content`. */
+class ContentApprox extends TContentApprox {
+  /** Gets a textual representation of this approximated `Content`. */
+  string toString() {
+    exists(string firstChar |
+      this = TFieldContentApprox(firstChar) and
+      result = "approximated field " + firstChar
+    )
+    or
+    this = TArrayContentApprox() and
+    result = "[]"
+    or
+    this = TCollectionContentApprox() and
+    result = "<element>"
+    or
+    this = TMapKeyContentApprox() and
+    result = "<map.key>"
+    or
+    this = TMapValueContentApprox() and
+    result = "<map.value>"
+    or
+    this = TSyntheticFieldApproxContent() and
+    result = "approximated synthetic field"
+  }
+}
+
+/** Gets an approximated value for content `c`. */
+pragma[nomagic]
+ContentApprox getContentApprox(Content c) {
+  result = TFieldContentApprox(approximateFieldContent(c))
+  or
+  c instanceof ArrayContent and result = TArrayContentApprox()
+  or
+  c instanceof CollectionContent and result = TCollectionContentApprox()
+  or
+  c instanceof MapKeyContent and result = TMapKeyContentApprox()
+  or
+  c instanceof MapValueContent and result = TMapValueContentApprox()
+  or
+  c instanceof SyntheticFieldContent and result = TSyntheticFieldApproxContent()
+}
+
 private class MyConsistencyConfiguration extends Consistency::ConsistencyConfiguration {
   override predicate argHasPostUpdateExclude(ArgumentNode n) {
     n.getType() instanceof ImmutableType or n instanceof ImplicitVarargsArray
diff --git a/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowUtil.qll b/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowUtil.qll
index 4cd63b152f6..ba5a1cfacc7 100644
--- a/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowUtil.qll
+++ b/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowUtil.qll
@@ -12,6 +12,7 @@ private import semmle.code.java.dataflow.FlowSummary
 private import semmle.code.java.dataflow.InstanceAccess
 private import FlowSummaryImpl as FlowSummaryImpl
 private import TaintTrackingUtil as TaintTrackingUtil
+private import DataFlowNodes
 import DataFlowNodes::Public
 import semmle.code.Unit
 
@@ -186,14 +187,6 @@ private predicate simpleLocalFlowStep0(Node node1, Node node2) {
   FlowSummaryImpl::Private::Steps::summaryLocalStep(node1, node2, true)
 }
 
-private newtype TContent =
-  TFieldContent(InstanceField f) or
-  TArrayContent() or
-  TCollectionContent() or
-  TMapKeyContent() or
-  TMapValueContent() or
-  TSyntheticFieldContent(SyntheticField s)
-
 /**
  * A description of the way data may be stored inside an object. Examples
  * include instance fields, the contents of a collection object, or the contents

From 24b1da4d020fccd2e1eb07ba9144a6d1e109268b Mon Sep 17 00:00:00 2001
From: Tom Hvitved <hvitved@github.com>
Date: Fri, 9 Dec 2022 10:44:02 +0100
Subject: [PATCH 1320/1420] Python: Implement `ContentApprox`

---
 .../python/dataflow/new/internal/DataFlowPrivate.qll       | 7 +++++++
 1 file changed, 7 insertions(+)

diff --git a/python/ql/lib/semmle/python/dataflow/new/internal/DataFlowPrivate.qll b/python/ql/lib/semmle/python/dataflow/new/internal/DataFlowPrivate.qll
index 6f1396518aa..9e76658e42a 100644
--- a/python/ql/lib/semmle/python/dataflow/new/internal/DataFlowPrivate.qll
+++ b/python/ql/lib/semmle/python/dataflow/new/internal/DataFlowPrivate.qll
@@ -948,3 +948,10 @@ predicate additionalLambdaFlowStep(Node nodeFrom, Node nodeTo, boolean preserves
 predicate allowParameterReturnInSelf(ParameterNode p) {
   FlowSummaryImpl::Private::summaryAllowParameterReturnInSelf(p)
 }
+
+/** An approximated `Content`. */
+class ContentApprox = Unit;
+
+/** Gets an approximated value for content `c`. */
+pragma[inline]
+ContentApprox getContentApprox(Content c) { any() }

From da6a42980fbfc4c9631c93dc30b4adea3e5f4666 Mon Sep 17 00:00:00 2001
From: Tom Hvitved <hvitved@github.com>
Date: Fri, 9 Dec 2022 10:44:23 +0100
Subject: [PATCH 1321/1420] Swift: Implement `ContentApprox`

---
 .../lib/codeql/swift/dataflow/internal/DataFlowPrivate.qll | 7 +++++++
 1 file changed, 7 insertions(+)

diff --git a/swift/ql/lib/codeql/swift/dataflow/internal/DataFlowPrivate.qll b/swift/ql/lib/codeql/swift/dataflow/internal/DataFlowPrivate.qll
index 67aba2155db..9a8b64af131 100644
--- a/swift/ql/lib/codeql/swift/dataflow/internal/DataFlowPrivate.qll
+++ b/swift/ql/lib/codeql/swift/dataflow/internal/DataFlowPrivate.qll
@@ -686,3 +686,10 @@ predicate additionalLambdaFlowStep(Node nodeFrom, Node nodeTo, boolean preserves
  * by default as a heuristic.
  */
 predicate allowParameterReturnInSelf(ParameterNode p) { none() }
+
+/** An approximated `Content`. */
+class ContentApprox = Unit;
+
+/** Gets an approximated value for content `c`. */
+pragma[inline]
+ContentApprox getContentApprox(Content c) { any() }

From cfcb3a60ba326b48085a13cac308c76a00018adb Mon Sep 17 00:00:00 2001
From: Tom Hvitved <hvitved@github.com>
Date: Fri, 9 Dec 2022 11:13:15 +0100
Subject: [PATCH 1322/1420] C++: Update expected test output

---
 .../dataflow/dataflow-tests/dataflow-consistency.expected        | 1 +
 .../dataflow/dataflow-tests/dataflow-ir-consistency.expected     | 1 +
 .../library-tests/dataflow/fields/dataflow-consistency.expected  | 1 +
 .../dataflow/fields/dataflow-ir-consistency.expected             | 1 +
 .../test/library-tests/syntax-zoo/dataflow-consistency.expected  | 1 +
 .../library-tests/syntax-zoo/dataflow-ir-consistency.expected    | 1 +
 6 files changed, 6 insertions(+)

diff --git a/cpp/ql/test/library-tests/dataflow/dataflow-tests/dataflow-consistency.expected b/cpp/ql/test/library-tests/dataflow/dataflow-tests/dataflow-consistency.expected
index 948a1ed7cf9..8f7078984cb 100644
--- a/cpp/ql/test/library-tests/dataflow/dataflow-tests/dataflow-consistency.expected
+++ b/cpp/ql/test/library-tests/dataflow/dataflow-tests/dataflow-consistency.expected
@@ -95,3 +95,4 @@ postWithInFlow
 viableImplInCallContextTooLarge
 uniqueParameterNodeAtPosition
 uniqueParameterNodePosition
+uniqueContentApprox
diff --git a/cpp/ql/test/library-tests/dataflow/dataflow-tests/dataflow-ir-consistency.expected b/cpp/ql/test/library-tests/dataflow/dataflow-tests/dataflow-ir-consistency.expected
index 90e2d6f31d5..6a26a6f13ae 100644
--- a/cpp/ql/test/library-tests/dataflow/dataflow-tests/dataflow-ir-consistency.expected
+++ b/cpp/ql/test/library-tests/dataflow/dataflow-tests/dataflow-ir-consistency.expected
@@ -639,3 +639,4 @@ postWithInFlow
 viableImplInCallContextTooLarge
 uniqueParameterNodeAtPosition
 uniqueParameterNodePosition
+uniqueContentApprox
diff --git a/cpp/ql/test/library-tests/dataflow/fields/dataflow-consistency.expected b/cpp/ql/test/library-tests/dataflow/fields/dataflow-consistency.expected
index e8d3ee839dc..e0470aac85d 100644
--- a/cpp/ql/test/library-tests/dataflow/fields/dataflow-consistency.expected
+++ b/cpp/ql/test/library-tests/dataflow/fields/dataflow-consistency.expected
@@ -160,3 +160,4 @@ postWithInFlow
 viableImplInCallContextTooLarge
 uniqueParameterNodeAtPosition
 uniqueParameterNodePosition
+uniqueContentApprox
diff --git a/cpp/ql/test/library-tests/dataflow/fields/dataflow-ir-consistency.expected b/cpp/ql/test/library-tests/dataflow/fields/dataflow-ir-consistency.expected
index 7841e662585..dd2d9f54f35 100644
--- a/cpp/ql/test/library-tests/dataflow/fields/dataflow-ir-consistency.expected
+++ b/cpp/ql/test/library-tests/dataflow/fields/dataflow-ir-consistency.expected
@@ -1328,3 +1328,4 @@ postWithInFlow
 viableImplInCallContextTooLarge
 uniqueParameterNodeAtPosition
 uniqueParameterNodePosition
+uniqueContentApprox
diff --git a/cpp/ql/test/library-tests/syntax-zoo/dataflow-consistency.expected b/cpp/ql/test/library-tests/syntax-zoo/dataflow-consistency.expected
index 3c0812213c3..5e44737a253 100644
--- a/cpp/ql/test/library-tests/syntax-zoo/dataflow-consistency.expected
+++ b/cpp/ql/test/library-tests/syntax-zoo/dataflow-consistency.expected
@@ -129,3 +129,4 @@ postWithInFlow
 viableImplInCallContextTooLarge
 uniqueParameterNodeAtPosition
 uniqueParameterNodePosition
+uniqueContentApprox
diff --git a/cpp/ql/test/library-tests/syntax-zoo/dataflow-ir-consistency.expected b/cpp/ql/test/library-tests/syntax-zoo/dataflow-ir-consistency.expected
index e8b6e1048c6..8b1094228a9 100644
--- a/cpp/ql/test/library-tests/syntax-zoo/dataflow-ir-consistency.expected
+++ b/cpp/ql/test/library-tests/syntax-zoo/dataflow-ir-consistency.expected
@@ -2717,3 +2717,4 @@ uniqueParameterNodeAtPosition
 | ir.cpp:724:6:724:13 | TryCatch | 0 | ir.cpp:735:22:735:22 | *s | Parameters with overlapping positions. |
 | ir.cpp:724:6:724:13 | TryCatch | 0 | ir.cpp:738:24:738:24 | *e | Parameters with overlapping positions. |
 uniqueParameterNodePosition
+uniqueContentApprox

From 39fea378b8f14cc86880064e5e9aab22800c3d47 Mon Sep 17 00:00:00 2001
From: Tom Hvitved <hvitved@github.com>
Date: Fri, 9 Dec 2022 11:13:30 +0100
Subject: [PATCH 1323/1420] Python: Update expected test output

---
 .../experimental/dataflow/basic/dataflow-consistency.expected    | 1 +
 .../experimental/dataflow/calls/dataflow-consistency.expected    | 1 +
 .../dataflow/consistency/dataflow-consistency.expected           | 1 +
 .../experimental/dataflow/coverage/dataflow-consistency.expected | 1 +
 .../dataflow/fieldflow/dataflow-consistency.expected             | 1 +
 .../dataflow/global-flow/dataflow-consistency.expected           | 1 +
 .../experimental/dataflow/match/dataflow-consistency.expected    | 1 +
 .../experimental/dataflow/pep_328/dataflow-consistency.expected  | 1 +
 .../dataflow/regression/dataflow-consistency.expected            | 1 +
 .../dataflow/strange-essaflow/dataflow-consistency.expected      | 1 +
 .../dataflow/tainttracking/basic/dataflow-consistency.expected   | 1 +
 .../tainttracking/commonSanitizer/dataflow-consistency.expected  | 1 +
 .../tainttracking/customSanitizer/dataflow-consistency.expected  | 1 +
 .../defaultAdditionalTaintStep-py3/dataflow-consistency.expected | 1 +
 .../defaultAdditionalTaintStep/dataflow-consistency.expected     | 1 +
 .../unwanted-global-flow/dataflow-consistency.expected           | 1 +
 .../dataflow/typetracking/dataflow-consistency.expected          | 1 +
 .../dataflow/variable-capture/dataflow-consistency.expected      | 1 +
 .../library-tests/ApiGraphs/py3/dataflow-consistency.expected    | 1 +
 .../frameworks/django-orm/dataflow-consistency.expected          | 1 +
 20 files changed, 20 insertions(+)

diff --git a/python/ql/test/experimental/dataflow/basic/dataflow-consistency.expected b/python/ql/test/experimental/dataflow/basic/dataflow-consistency.expected
index 686ddfdb83d..410b626ffff 100644
--- a/python/ql/test/experimental/dataflow/basic/dataflow-consistency.expected
+++ b/python/ql/test/experimental/dataflow/basic/dataflow-consistency.expected
@@ -21,3 +21,4 @@ postWithInFlow
 viableImplInCallContextTooLarge
 uniqueParameterNodeAtPosition
 uniqueParameterNodePosition
+uniqueContentApprox
diff --git a/python/ql/test/experimental/dataflow/calls/dataflow-consistency.expected b/python/ql/test/experimental/dataflow/calls/dataflow-consistency.expected
index 686ddfdb83d..410b626ffff 100644
--- a/python/ql/test/experimental/dataflow/calls/dataflow-consistency.expected
+++ b/python/ql/test/experimental/dataflow/calls/dataflow-consistency.expected
@@ -21,3 +21,4 @@ postWithInFlow
 viableImplInCallContextTooLarge
 uniqueParameterNodeAtPosition
 uniqueParameterNodePosition
+uniqueContentApprox
diff --git a/python/ql/test/experimental/dataflow/consistency/dataflow-consistency.expected b/python/ql/test/experimental/dataflow/consistency/dataflow-consistency.expected
index 686ddfdb83d..410b626ffff 100644
--- a/python/ql/test/experimental/dataflow/consistency/dataflow-consistency.expected
+++ b/python/ql/test/experimental/dataflow/consistency/dataflow-consistency.expected
@@ -21,3 +21,4 @@ postWithInFlow
 viableImplInCallContextTooLarge
 uniqueParameterNodeAtPosition
 uniqueParameterNodePosition
+uniqueContentApprox
diff --git a/python/ql/test/experimental/dataflow/coverage/dataflow-consistency.expected b/python/ql/test/experimental/dataflow/coverage/dataflow-consistency.expected
index 686ddfdb83d..410b626ffff 100644
--- a/python/ql/test/experimental/dataflow/coverage/dataflow-consistency.expected
+++ b/python/ql/test/experimental/dataflow/coverage/dataflow-consistency.expected
@@ -21,3 +21,4 @@ postWithInFlow
 viableImplInCallContextTooLarge
 uniqueParameterNodeAtPosition
 uniqueParameterNodePosition
+uniqueContentApprox
diff --git a/python/ql/test/experimental/dataflow/fieldflow/dataflow-consistency.expected b/python/ql/test/experimental/dataflow/fieldflow/dataflow-consistency.expected
index 686ddfdb83d..410b626ffff 100644
--- a/python/ql/test/experimental/dataflow/fieldflow/dataflow-consistency.expected
+++ b/python/ql/test/experimental/dataflow/fieldflow/dataflow-consistency.expected
@@ -21,3 +21,4 @@ postWithInFlow
 viableImplInCallContextTooLarge
 uniqueParameterNodeAtPosition
 uniqueParameterNodePosition
+uniqueContentApprox
diff --git a/python/ql/test/experimental/dataflow/global-flow/dataflow-consistency.expected b/python/ql/test/experimental/dataflow/global-flow/dataflow-consistency.expected
index 686ddfdb83d..410b626ffff 100644
--- a/python/ql/test/experimental/dataflow/global-flow/dataflow-consistency.expected
+++ b/python/ql/test/experimental/dataflow/global-flow/dataflow-consistency.expected
@@ -21,3 +21,4 @@ postWithInFlow
 viableImplInCallContextTooLarge
 uniqueParameterNodeAtPosition
 uniqueParameterNodePosition
+uniqueContentApprox
diff --git a/python/ql/test/experimental/dataflow/match/dataflow-consistency.expected b/python/ql/test/experimental/dataflow/match/dataflow-consistency.expected
index 686ddfdb83d..410b626ffff 100644
--- a/python/ql/test/experimental/dataflow/match/dataflow-consistency.expected
+++ b/python/ql/test/experimental/dataflow/match/dataflow-consistency.expected
@@ -21,3 +21,4 @@ postWithInFlow
 viableImplInCallContextTooLarge
 uniqueParameterNodeAtPosition
 uniqueParameterNodePosition
+uniqueContentApprox
diff --git a/python/ql/test/experimental/dataflow/pep_328/dataflow-consistency.expected b/python/ql/test/experimental/dataflow/pep_328/dataflow-consistency.expected
index 686ddfdb83d..410b626ffff 100644
--- a/python/ql/test/experimental/dataflow/pep_328/dataflow-consistency.expected
+++ b/python/ql/test/experimental/dataflow/pep_328/dataflow-consistency.expected
@@ -21,3 +21,4 @@ postWithInFlow
 viableImplInCallContextTooLarge
 uniqueParameterNodeAtPosition
 uniqueParameterNodePosition
+uniqueContentApprox
diff --git a/python/ql/test/experimental/dataflow/regression/dataflow-consistency.expected b/python/ql/test/experimental/dataflow/regression/dataflow-consistency.expected
index 686ddfdb83d..410b626ffff 100644
--- a/python/ql/test/experimental/dataflow/regression/dataflow-consistency.expected
+++ b/python/ql/test/experimental/dataflow/regression/dataflow-consistency.expected
@@ -21,3 +21,4 @@ postWithInFlow
 viableImplInCallContextTooLarge
 uniqueParameterNodeAtPosition
 uniqueParameterNodePosition
+uniqueContentApprox
diff --git a/python/ql/test/experimental/dataflow/strange-essaflow/dataflow-consistency.expected b/python/ql/test/experimental/dataflow/strange-essaflow/dataflow-consistency.expected
index 686ddfdb83d..410b626ffff 100644
--- a/python/ql/test/experimental/dataflow/strange-essaflow/dataflow-consistency.expected
+++ b/python/ql/test/experimental/dataflow/strange-essaflow/dataflow-consistency.expected
@@ -21,3 +21,4 @@ postWithInFlow
 viableImplInCallContextTooLarge
 uniqueParameterNodeAtPosition
 uniqueParameterNodePosition
+uniqueContentApprox
diff --git a/python/ql/test/experimental/dataflow/tainttracking/basic/dataflow-consistency.expected b/python/ql/test/experimental/dataflow/tainttracking/basic/dataflow-consistency.expected
index 686ddfdb83d..410b626ffff 100644
--- a/python/ql/test/experimental/dataflow/tainttracking/basic/dataflow-consistency.expected
+++ b/python/ql/test/experimental/dataflow/tainttracking/basic/dataflow-consistency.expected
@@ -21,3 +21,4 @@ postWithInFlow
 viableImplInCallContextTooLarge
 uniqueParameterNodeAtPosition
 uniqueParameterNodePosition
+uniqueContentApprox
diff --git a/python/ql/test/experimental/dataflow/tainttracking/commonSanitizer/dataflow-consistency.expected b/python/ql/test/experimental/dataflow/tainttracking/commonSanitizer/dataflow-consistency.expected
index 686ddfdb83d..410b626ffff 100644
--- a/python/ql/test/experimental/dataflow/tainttracking/commonSanitizer/dataflow-consistency.expected
+++ b/python/ql/test/experimental/dataflow/tainttracking/commonSanitizer/dataflow-consistency.expected
@@ -21,3 +21,4 @@ postWithInFlow
 viableImplInCallContextTooLarge
 uniqueParameterNodeAtPosition
 uniqueParameterNodePosition
+uniqueContentApprox
diff --git a/python/ql/test/experimental/dataflow/tainttracking/customSanitizer/dataflow-consistency.expected b/python/ql/test/experimental/dataflow/tainttracking/customSanitizer/dataflow-consistency.expected
index 686ddfdb83d..410b626ffff 100644
--- a/python/ql/test/experimental/dataflow/tainttracking/customSanitizer/dataflow-consistency.expected
+++ b/python/ql/test/experimental/dataflow/tainttracking/customSanitizer/dataflow-consistency.expected
@@ -21,3 +21,4 @@ postWithInFlow
 viableImplInCallContextTooLarge
 uniqueParameterNodeAtPosition
 uniqueParameterNodePosition
+uniqueContentApprox
diff --git a/python/ql/test/experimental/dataflow/tainttracking/defaultAdditionalTaintStep-py3/dataflow-consistency.expected b/python/ql/test/experimental/dataflow/tainttracking/defaultAdditionalTaintStep-py3/dataflow-consistency.expected
index 686ddfdb83d..410b626ffff 100644
--- a/python/ql/test/experimental/dataflow/tainttracking/defaultAdditionalTaintStep-py3/dataflow-consistency.expected
+++ b/python/ql/test/experimental/dataflow/tainttracking/defaultAdditionalTaintStep-py3/dataflow-consistency.expected
@@ -21,3 +21,4 @@ postWithInFlow
 viableImplInCallContextTooLarge
 uniqueParameterNodeAtPosition
 uniqueParameterNodePosition
+uniqueContentApprox
diff --git a/python/ql/test/experimental/dataflow/tainttracking/defaultAdditionalTaintStep/dataflow-consistency.expected b/python/ql/test/experimental/dataflow/tainttracking/defaultAdditionalTaintStep/dataflow-consistency.expected
index 686ddfdb83d..410b626ffff 100644
--- a/python/ql/test/experimental/dataflow/tainttracking/defaultAdditionalTaintStep/dataflow-consistency.expected
+++ b/python/ql/test/experimental/dataflow/tainttracking/defaultAdditionalTaintStep/dataflow-consistency.expected
@@ -21,3 +21,4 @@ postWithInFlow
 viableImplInCallContextTooLarge
 uniqueParameterNodeAtPosition
 uniqueParameterNodePosition
+uniqueContentApprox
diff --git a/python/ql/test/experimental/dataflow/tainttracking/unwanted-global-flow/dataflow-consistency.expected b/python/ql/test/experimental/dataflow/tainttracking/unwanted-global-flow/dataflow-consistency.expected
index 686ddfdb83d..410b626ffff 100644
--- a/python/ql/test/experimental/dataflow/tainttracking/unwanted-global-flow/dataflow-consistency.expected
+++ b/python/ql/test/experimental/dataflow/tainttracking/unwanted-global-flow/dataflow-consistency.expected
@@ -21,3 +21,4 @@ postWithInFlow
 viableImplInCallContextTooLarge
 uniqueParameterNodeAtPosition
 uniqueParameterNodePosition
+uniqueContentApprox
diff --git a/python/ql/test/experimental/dataflow/typetracking/dataflow-consistency.expected b/python/ql/test/experimental/dataflow/typetracking/dataflow-consistency.expected
index 686ddfdb83d..410b626ffff 100644
--- a/python/ql/test/experimental/dataflow/typetracking/dataflow-consistency.expected
+++ b/python/ql/test/experimental/dataflow/typetracking/dataflow-consistency.expected
@@ -21,3 +21,4 @@ postWithInFlow
 viableImplInCallContextTooLarge
 uniqueParameterNodeAtPosition
 uniqueParameterNodePosition
+uniqueContentApprox
diff --git a/python/ql/test/experimental/dataflow/variable-capture/dataflow-consistency.expected b/python/ql/test/experimental/dataflow/variable-capture/dataflow-consistency.expected
index 686ddfdb83d..410b626ffff 100644
--- a/python/ql/test/experimental/dataflow/variable-capture/dataflow-consistency.expected
+++ b/python/ql/test/experimental/dataflow/variable-capture/dataflow-consistency.expected
@@ -21,3 +21,4 @@ postWithInFlow
 viableImplInCallContextTooLarge
 uniqueParameterNodeAtPosition
 uniqueParameterNodePosition
+uniqueContentApprox
diff --git a/python/ql/test/library-tests/ApiGraphs/py3/dataflow-consistency.expected b/python/ql/test/library-tests/ApiGraphs/py3/dataflow-consistency.expected
index 686ddfdb83d..410b626ffff 100644
--- a/python/ql/test/library-tests/ApiGraphs/py3/dataflow-consistency.expected
+++ b/python/ql/test/library-tests/ApiGraphs/py3/dataflow-consistency.expected
@@ -21,3 +21,4 @@ postWithInFlow
 viableImplInCallContextTooLarge
 uniqueParameterNodeAtPosition
 uniqueParameterNodePosition
+uniqueContentApprox
diff --git a/python/ql/test/library-tests/frameworks/django-orm/dataflow-consistency.expected b/python/ql/test/library-tests/frameworks/django-orm/dataflow-consistency.expected
index 78188947e79..255a315ac6a 100644
--- a/python/ql/test/library-tests/frameworks/django-orm/dataflow-consistency.expected
+++ b/python/ql/test/library-tests/frameworks/django-orm/dataflow-consistency.expected
@@ -69,3 +69,4 @@ postWithInFlow
 viableImplInCallContextTooLarge
 uniqueParameterNodeAtPosition
 uniqueParameterNodePosition
+uniqueContentApprox

From 4ba3190d29f3b5273c38e8f93b59c42ee36ba480 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Alvaro=20Mu=C3=B1oz?= <pwntester@github.com>
Date: Tue, 13 Dec 2022 11:10:04 +0100
Subject: [PATCH 1324/1420] Replace API::Node with DataFlow::Node for Spife's
 RouteSetup

---
 .../semmle/javascript/frameworks/Spife.qll    | 22 ++++++++++++++-----
 1 file changed, 16 insertions(+), 6 deletions(-)

diff --git a/javascript/ql/lib/semmle/javascript/frameworks/Spife.qll b/javascript/ql/lib/semmle/javascript/frameworks/Spife.qll
index 71372d086d4..6016b5261d2 100644
--- a/javascript/ql/lib/semmle/javascript/frameworks/Spife.qll
+++ b/javascript/ql/lib/semmle/javascript/frameworks/Spife.qll
@@ -12,7 +12,7 @@ module Spife {
   /**
    * A call to a Spife method that sets up a route.
    */
-  private class RouteSetup extends API::CallNode, Http::Servers::StandardRouteSetup {
+  private class RouteSetup extends DataFlow::CallNode, Http::Servers::StandardRouteSetup {
     TaggedTemplateExpr template;
 
     RouteSetup() {
@@ -44,9 +44,11 @@ module Spife {
       )
     }
 
-    API::Node getHandlerByName(string name) { result = this.getParameter(0).getMember(name) }
+    DataFlow::Node getHandlerByName(string name) {
+      result = DataFlow::parameterNode(this.getACallee().getParameter(0)).getAPropertyRead(name)
+    }
 
-    API::Node getHandlerByRoute(string method, string path) {
+    DataFlow::Node getHandlerByRoute(string method, string path) {
       exists(string handlerName |
         this.hasLine(method, path, handlerName) and
         result = this.getHandlerByName(handlerName)
@@ -54,10 +56,10 @@ module Spife {
     }
 
     override DataFlow::SourceNode getARouteHandler() {
-      result = this.getHandlerByRoute(_, _).getAValueReachingSink().(DataFlow::FunctionNode)
+      result = this.getHandlerByRoute(_, _).getALocalSource().(DataFlow::FunctionNode)
       or
       exists(DataFlow::MethodCallNode validation |
-        validation = this.getHandlerByRoute(_, _).getAValueReachingSink() and
+        validation = this.getHandlerByRoute(_, _).getALocalSource() and
         result = validation.getArgument(1).getAFunctionValue()
       )
     }
@@ -90,7 +92,7 @@ module Spife {
   /**
    * A function that looks like a Spife route handler.
    *
-   * For example, this could be the function `function(req, res, next){...}`.
+   * For example, this could be the function `function(request, context){...}`.
    */
   class RouteHandlerCandidate extends Http::RouteHandlerCandidate {
     RouteHandlerCandidate() {
@@ -139,22 +141,30 @@ module Spife {
     string kind;
 
     RequestInputAccess() {
+      // req.body
       this = rh.getARequestSource().ref().getAPropertyRead("body") and
       kind = "body"
       or
+      // req.query['foo']
       this = rh.getARequestSource().ref().getAPropertyRead("query").getAPropertyRead() and
       kind = "parameter"
       or
+      // req.raw
       this = rh.getARequestSource().ref().getAPropertyRead("raw") and
       kind = "raw"
       or
+      // req.url
+      // req.urlObject
       this = rh.getARequestSource().ref().getAPropertyRead(["url", "urlObject"]) and
       kind = "url"
       or
+      // req.cookie('foo')
+      // req.cookies()
       this = rh.getARequestSource().ref().getAMethodCall() and
       this.(DataFlow::MethodCallNode).getMethodName() = ["cookie", "cookies"] and
       kind = "cookie"
       or
+      // req.validatedBody.get('foo')
       exists(DataFlow::PropRead validated, DataFlow::MethodCallNode get |
         rh.getARequestSource().ref().getAPropertyRead() = validated and
         validated.getPropertyName().matches("validated%") and

From 270a4355dff6824a1f0fee8e7e26ff7d34100dec Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Alvaro=20Mu=C3=B1oz?= <pwntester@github.com>
Date: Tue, 13 Dec 2022 11:22:24 +0100
Subject: [PATCH 1325/1420] format Restify.qll

---
 javascript/ql/lib/semmle/javascript/frameworks/Restify.qll | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

diff --git a/javascript/ql/lib/semmle/javascript/frameworks/Restify.qll b/javascript/ql/lib/semmle/javascript/frameworks/Restify.qll
index d7dcd7bfed7..190987ba3c9 100644
--- a/javascript/ql/lib/semmle/javascript/frameworks/Restify.qll
+++ b/javascript/ql/lib/semmle/javascript/frameworks/Restify.qll
@@ -265,7 +265,9 @@ module Restify {
     /**
      * Gets the formatter handler installed by this setup.
      */
-    DataFlow::FunctionNode getAFormatterHandler() { result = formatters.getAPropertyWrite().getRhs().getALocalSource() }
+    DataFlow::FunctionNode getAFormatterHandler() {
+      result = formatters.getAPropertyWrite().getRhs().getALocalSource()
+    }
   }
 
   /**

From ba1364a4cbad0d73d5d628c8700094c468b20049 Mon Sep 17 00:00:00 2001
From: Asger F <asgerf@github.com>
Date: Tue, 6 Dec 2022 15:33:29 +0100
Subject: [PATCH 1326/1420] JS: Add sinks mentioned in doc

Note that 'sql-injection' was already added
---
 javascript/ql/lib/semmle/javascript/frameworks/NoSQL.qll  | 4 ++++
 .../dataflow/ClientSideUrlRedirectCustomizations.qll      | 4 ++++
 .../security/dataflow/CodeInjectionCustomizations.qll     | 4 ++++
 .../security/dataflow/CommandInjectionCustomizations.qll  | 4 ++++
 .../security/dataflow/DomBasedXssCustomizations.qll       | 4 ++++
 .../security/dataflow/ReflectedXssCustomizations.qll      | 4 ++++
 .../security/dataflow/RequestForgeryCustomizations.qll    | 8 ++++++++
 .../dataflow/ServerSideUrlRedirectCustomizations.qll      | 4 ++++
 .../security/dataflow/TaintedPathCustomizations.qll       | 4 ++++
 .../dataflow/UnsafeDeserializationCustomizations.qll      | 4 ++++
 10 files changed, 44 insertions(+)

diff --git a/javascript/ql/lib/semmle/javascript/frameworks/NoSQL.qll b/javascript/ql/lib/semmle/javascript/frameworks/NoSQL.qll
index 0873472a0e7..56e9c6f4406 100644
--- a/javascript/ql/lib/semmle/javascript/frameworks/NoSQL.qll
+++ b/javascript/ql/lib/semmle/javascript/frameworks/NoSQL.qll
@@ -11,6 +11,10 @@ module NoSql {
     /** Gets an expression that is interpreted as a code operator in this query. */
     DataFlow::Node getACodeOperator() { none() }
   }
+
+  private class QueryFromModel extends Query {
+    QueryFromModel() { this = ModelOutput::getASinkNode("nosql-injection").asSink() }
+  }
 }
 
 /** DEPRECATED: Alias for NoSql */
diff --git a/javascript/ql/lib/semmle/javascript/security/dataflow/ClientSideUrlRedirectCustomizations.qll b/javascript/ql/lib/semmle/javascript/security/dataflow/ClientSideUrlRedirectCustomizations.qll
index 4c6ad8b0ee9..8cb00e7dc68 100644
--- a/javascript/ql/lib/semmle/javascript/security/dataflow/ClientSideUrlRedirectCustomizations.qll
+++ b/javascript/ql/lib/semmle/javascript/security/dataflow/ClientSideUrlRedirectCustomizations.qll
@@ -235,4 +235,8 @@ module ClientSideUrlRedirect {
       this = NextJS::nextRouter().getAMemberCall(["push", "replace"]).getArgument(0)
     }
   }
+
+  private class SinkFromModel extends Sink {
+    SinkFromModel() { this = ModelOutput::getASinkNode("url-redirection").asSink() }
+  }
 }
diff --git a/javascript/ql/lib/semmle/javascript/security/dataflow/CodeInjectionCustomizations.qll b/javascript/ql/lib/semmle/javascript/security/dataflow/CodeInjectionCustomizations.qll
index 0aa0241c780..1976ea12ed2 100644
--- a/javascript/ql/lib/semmle/javascript/security/dataflow/CodeInjectionCustomizations.qll
+++ b/javascript/ql/lib/semmle/javascript/security/dataflow/CodeInjectionCustomizations.qll
@@ -410,4 +410,8 @@ module CodeInjection {
 
   /** DEPRECATED: Alias for JsonStringifySanitizer */
   deprecated class JSONStringifySanitizer = JsonStringifySanitizer;
+
+  private class SinkFromModel extends Sink {
+    SinkFromModel() { this = ModelOutput::getASinkNode("code-injection").asSink() }
+  }
 }
diff --git a/javascript/ql/lib/semmle/javascript/security/dataflow/CommandInjectionCustomizations.qll b/javascript/ql/lib/semmle/javascript/security/dataflow/CommandInjectionCustomizations.qll
index f0f6b17dce0..982441a88ff 100644
--- a/javascript/ql/lib/semmle/javascript/security/dataflow/CommandInjectionCustomizations.qll
+++ b/javascript/ql/lib/semmle/javascript/security/dataflow/CommandInjectionCustomizations.qll
@@ -50,4 +50,8 @@ module CommandInjection {
   class SystemCommandExecutionSink extends Sink, DataFlow::ValueNode {
     SystemCommandExecutionSink() { this = any(SystemCommandExecution sys).getACommandArgument() }
   }
+
+  private class SinkFromModel extends Sink {
+    SinkFromModel() { this = ModelOutput::getASinkNode("command-line-injection").asSink() }
+  }
 }
diff --git a/javascript/ql/lib/semmle/javascript/security/dataflow/DomBasedXssCustomizations.qll b/javascript/ql/lib/semmle/javascript/security/dataflow/DomBasedXssCustomizations.qll
index 18230c92037..7b45641aefb 100644
--- a/javascript/ql/lib/semmle/javascript/security/dataflow/DomBasedXssCustomizations.qll
+++ b/javascript/ql/lib/semmle/javascript/security/dataflow/DomBasedXssCustomizations.qll
@@ -342,4 +342,8 @@ module DomBasedXss {
       outcome = super.getPolarity()
     }
   }
+
+  private class SinkFromModel extends Sink {
+    SinkFromModel() { this = ModelOutput::getASinkNode("html-injection").asSink() }
+  }
 }
diff --git a/javascript/ql/lib/semmle/javascript/security/dataflow/ReflectedXssCustomizations.qll b/javascript/ql/lib/semmle/javascript/security/dataflow/ReflectedXssCustomizations.qll
index 8343da9f5a5..a91f21f7c23 100644
--- a/javascript/ql/lib/semmle/javascript/security/dataflow/ReflectedXssCustomizations.qll
+++ b/javascript/ql/lib/semmle/javascript/security/dataflow/ReflectedXssCustomizations.qll
@@ -150,4 +150,8 @@ module ReflectedXss {
       this.(Http::RequestHeaderAccess).getAHeaderName() = "referer"
     }
   }
+
+  private class SinkFromModel extends Sink {
+    SinkFromModel() { this = ModelOutput::getASinkNode("html-injection").asSink() }
+  }
 }
diff --git a/javascript/ql/lib/semmle/javascript/security/dataflow/RequestForgeryCustomizations.qll b/javascript/ql/lib/semmle/javascript/security/dataflow/RequestForgeryCustomizations.qll
index 519ecd1c23f..29b015e09d6 100644
--- a/javascript/ql/lib/semmle/javascript/security/dataflow/RequestForgeryCustomizations.qll
+++ b/javascript/ql/lib/semmle/javascript/security/dataflow/RequestForgeryCustomizations.qll
@@ -73,4 +73,12 @@ module RequestForgery {
       pred = url.getArgument(0)
     )
   }
+
+  private class SinkFromModel extends Sink {
+    SinkFromModel() { this = ModelOutput::getASinkNode("request-forgery").asSink() }
+
+    override DataFlow::Node getARequest() { result = this }
+
+    override string getKind() { result = "endpoint" }
+  }
 }
diff --git a/javascript/ql/lib/semmle/javascript/security/dataflow/ServerSideUrlRedirectCustomizations.qll b/javascript/ql/lib/semmle/javascript/security/dataflow/ServerSideUrlRedirectCustomizations.qll
index c15dbc2ecf8..55815717e98 100644
--- a/javascript/ql/lib/semmle/javascript/security/dataflow/ServerSideUrlRedirectCustomizations.qll
+++ b/javascript/ql/lib/semmle/javascript/security/dataflow/ServerSideUrlRedirectCustomizations.qll
@@ -62,4 +62,8 @@ module ServerSideUrlRedirect {
       )
     }
   }
+
+  private class SinkFromModel extends Sink {
+    SinkFromModel() { this = ModelOutput::getASinkNode("url-redirection").asSink() }
+  }
 }
diff --git a/javascript/ql/lib/semmle/javascript/security/dataflow/TaintedPathCustomizations.qll b/javascript/ql/lib/semmle/javascript/security/dataflow/TaintedPathCustomizations.qll
index c463b1d3ecb..67331ddb841 100644
--- a/javascript/ql/lib/semmle/javascript/security/dataflow/TaintedPathCustomizations.qll
+++ b/javascript/ql/lib/semmle/javascript/security/dataflow/TaintedPathCustomizations.qll
@@ -946,4 +946,8 @@ module TaintedPath {
       )
     )
   }
+
+  private class SinkFromModel extends Sink {
+    SinkFromModel() { this = ModelOutput::getASinkNode("path-injection").asSink() }
+  }
 }
diff --git a/javascript/ql/lib/semmle/javascript/security/dataflow/UnsafeDeserializationCustomizations.qll b/javascript/ql/lib/semmle/javascript/security/dataflow/UnsafeDeserializationCustomizations.qll
index 995e7e14411..01d93740a31 100644
--- a/javascript/ql/lib/semmle/javascript/security/dataflow/UnsafeDeserializationCustomizations.qll
+++ b/javascript/ql/lib/semmle/javascript/security/dataflow/UnsafeDeserializationCustomizations.qll
@@ -49,4 +49,8 @@ module UnsafeDeserialization {
       )
     }
   }
+
+  private class SinkFromModel extends Sink {
+    SinkFromModel() { this = ModelOutput::getASinkNode("unsafe-deserialization").asSink() }
+  }
 }

From 6b15839221b70b5683c3760a21d30d68e498f55d Mon Sep 17 00:00:00 2001
From: Asger F <asgerf@github.com>
Date: Fri, 9 Dec 2022 13:29:07 +0100
Subject: [PATCH 1327/1420] JS: Add tests for the examples used in the docs

---
 .../DataExtensions/Test.expected              |  7 +++++++
 .../test/library-tests/DataExtensions/Test.ql | 11 ++++++++++
 .../DataExtensions/connection.example.ts      |  9 +++++++++
 .../DataExtensions/connection.model.yml       | 20 +++++++++++++++++++
 .../DataExtensions/execa.example.js           |  2 ++
 .../DataExtensions/execa.model.yml            | 10 ++++++++++
 .../DataExtensions/message.example.js         |  7 +++++++
 .../DataExtensions/message.model.yml          | 10 ++++++++++
 javascript/ql/test/qlpack.yml                 |  2 ++
 9 files changed, 78 insertions(+)
 create mode 100644 javascript/ql/test/library-tests/DataExtensions/Test.expected
 create mode 100644 javascript/ql/test/library-tests/DataExtensions/Test.ql
 create mode 100644 javascript/ql/test/library-tests/DataExtensions/connection.example.ts
 create mode 100644 javascript/ql/test/library-tests/DataExtensions/connection.model.yml
 create mode 100644 javascript/ql/test/library-tests/DataExtensions/execa.example.js
 create mode 100644 javascript/ql/test/library-tests/DataExtensions/execa.model.yml
 create mode 100644 javascript/ql/test/library-tests/DataExtensions/message.example.js
 create mode 100644 javascript/ql/test/library-tests/DataExtensions/message.model.yml

diff --git a/javascript/ql/test/library-tests/DataExtensions/Test.expected b/javascript/ql/test/library-tests/DataExtensions/Test.expected
new file mode 100644
index 00000000000..ba7992e3143
--- /dev/null
+++ b/javascript/ql/test/library-tests/DataExtensions/Test.expected
@@ -0,0 +1,7 @@
+commandInjectionSinks
+| execa.example.js:2:7:2:9 | cmd |
+sqlInjectionSinks
+| connection.example.ts:4:20:4:20 | q |
+| connection.example.ts:9:18:9:18 | q |
+remoteFlowSources
+| message.example.js:1:46:1:50 | event |
diff --git a/javascript/ql/test/library-tests/DataExtensions/Test.ql b/javascript/ql/test/library-tests/DataExtensions/Test.ql
new file mode 100644
index 00000000000..38eda6b4f78
--- /dev/null
+++ b/javascript/ql/test/library-tests/DataExtensions/Test.ql
@@ -0,0 +1,11 @@
+import javascript
+private import semmle.javascript.security.dataflow.CommandInjectionCustomizations
+private import semmle.javascript.security.dataflow.SqlInjectionCustomizations
+
+query predicate commandInjectionSinks(DataFlow::Node node) {
+  node instanceof CommandInjection::Sink
+}
+
+query predicate sqlInjectionSinks(DataFlow::Node node) { node instanceof SqlInjection::Sink }
+
+query predicate remoteFlowSources(RemoteFlowSource node) { any() }
diff --git a/javascript/ql/test/library-tests/DataExtensions/connection.example.ts b/javascript/ql/test/library-tests/DataExtensions/connection.example.ts
new file mode 100644
index 00000000000..ddcacd47ecc
--- /dev/null
+++ b/javascript/ql/test/library-tests/DataExtensions/connection.example.ts
@@ -0,0 +1,9 @@
+import { Connection } from "@example/mysql";
+
+function submit(connection: Connection, q: string) {
+  connection.query(q); // <-- add 'q' as a SQL injection sink
+}
+
+import { getConnection } from "@example/db";
+let connection = getConnection();
+connection.query(q); // <-- add 'q' as a SQL injection sink
diff --git a/javascript/ql/test/library-tests/DataExtensions/connection.model.yml b/javascript/ql/test/library-tests/DataExtensions/connection.model.yml
new file mode 100644
index 00000000000..353decf08be
--- /dev/null
+++ b/javascript/ql/test/library-tests/DataExtensions/connection.model.yml
@@ -0,0 +1,20 @@
+extensions:
+  - addsTo:
+      pack: codeql/javascript-all
+      extensible: sinkModel
+    data:
+      - [
+          "@example/mysql.Connection",
+          "Member[query].Argument[0]",
+          "sql-injection",
+        ]
+
+  - addsTo:
+      pack: codeql/javascript-all
+      extensible: typeModel
+    data:
+      - [
+          "@example/mysql.Connection",
+          "@example/db",
+          "Member[getConnection].ReturnValue",
+        ]
diff --git a/javascript/ql/test/library-tests/DataExtensions/execa.example.js b/javascript/ql/test/library-tests/DataExtensions/execa.example.js
new file mode 100644
index 00000000000..6804c1d3783
--- /dev/null
+++ b/javascript/ql/test/library-tests/DataExtensions/execa.example.js
@@ -0,0 +1,2 @@
+import { shell } from "@example/execa";
+shell(cmd);
diff --git a/javascript/ql/test/library-tests/DataExtensions/execa.model.yml b/javascript/ql/test/library-tests/DataExtensions/execa.model.yml
new file mode 100644
index 00000000000..2516e1a7be8
--- /dev/null
+++ b/javascript/ql/test/library-tests/DataExtensions/execa.model.yml
@@ -0,0 +1,10 @@
+extensions:
+  - addsTo:
+      pack: codeql/javascript-all
+      extensible: sinkModel
+    data:
+      - [
+          "@example/execa",
+          "Member[shell].Argument[0]",
+          "command-line-injection",
+        ]
diff --git a/javascript/ql/test/library-tests/DataExtensions/message.example.js b/javascript/ql/test/library-tests/DataExtensions/message.example.js
new file mode 100644
index 00000000000..dec004c9982
--- /dev/null
+++ b/javascript/ql/test/library-tests/DataExtensions/message.example.js
@@ -0,0 +1,7 @@
+window.addEventListener("message", function (event) {
+    let data = event.data; // <-- add 'event.data' as a taint source
+});
+
+window.addEventListener("onclick", function (event) {
+    let data = event.data; // <-- 'event.data' should not be a taint source
+});
diff --git a/javascript/ql/test/library-tests/DataExtensions/message.model.yml b/javascript/ql/test/library-tests/DataExtensions/message.model.yml
new file mode 100644
index 00000000000..9c575566ce4
--- /dev/null
+++ b/javascript/ql/test/library-tests/DataExtensions/message.model.yml
@@ -0,0 +1,10 @@
+extensions:
+  - addsTo:
+      pack: codeql/javascript-all
+      extensible: sourceModel
+    data:
+      - [
+          "global",
+          "Member[addEventListener].WithStringArgument[0=message].Argument[1].Parameter[0].Member[data]",
+          "remote-flow",
+        ]
diff --git a/javascript/ql/test/qlpack.yml b/javascript/ql/test/qlpack.yml
index bb4fd89f43e..e5cdedb3b0e 100644
--- a/javascript/ql/test/qlpack.yml
+++ b/javascript/ql/test/qlpack.yml
@@ -5,3 +5,5 @@ dependencies:
   codeql/javascript-queries: ${workspace}
 extractor: javascript
 tests: .
+dataExtensions:
+  - library-tests/DataExtensions/*.model.yml

From ee94849528e6696fa7a91fcbe8291e97cba073bc Mon Sep 17 00:00:00 2001
From: Alex Denisov <alexdenisov@github.com>
Date: Fri, 9 Dec 2022 15:13:47 +0100
Subject: [PATCH 1328/1420] Swift: switch to bootstrapped Swift compiler

---
 misc/bazel/workspace.bzl                                 | 6 +++---
 swift/extractor/main.cpp                                 | 2 ++
 .../swift-llvm-support/BUILD.swift-prebuilt.bazel        | 9 +++++++++
 3 files changed, 14 insertions(+), 3 deletions(-)

diff --git a/misc/bazel/workspace.bzl b/misc/bazel/workspace.bzl
index d0aee216668..30b26103b99 100644
--- a/misc/bazel/workspace.bzl
+++ b/misc/bazel/workspace.bzl
@@ -1,10 +1,10 @@
 load("@bazel_tools//tools/build_defs/repo:http.bzl", "http_archive")
 load("@bazel_tools//tools/build_defs/repo:utils.bzl", "maybe")
 
-_swift_prebuilt_version = "swift-5.7.1-RELEASE.44428.89"
+_swift_prebuilt_version = "swift-5.7.1-RELEASE.44582.104"
 _swift_sha_map = {
-    "Linux-X64": "1fa0b62b3a87c6528bd21b3f3fa1b32ad00e2b6ff04c20652c93c7d00c4cf517",
-    "macOS-X64": "6e1239335874cbde635ae9ca9eeb215efee4988888a75f4eda1abbcf97e4d038",
+  "Linux-X64": "8d94f2d75f2aa9ee8e5421318d2f07b27e095127c9be0156794a88d8e9a0f19a",
+  "macOS-X64": "5f0550d2924e7071d006a0c9802acbd9a11f0017073e4a1eb27b7ddc4764f3f2",
 }
 
 _swift_arch_map = {
diff --git a/swift/extractor/main.cpp b/swift/extractor/main.cpp
index ff975f5c25d..b56fc190315 100644
--- a/swift/extractor/main.cpp
+++ b/swift/extractor/main.cpp
@@ -16,6 +16,7 @@
 #include "swift/extractor/remapping/SwiftOpenInterception.h"
 #include "swift/extractor/invocation/SwiftDiagnosticsConsumer.h"
 #include "swift/extractor/trap/TrapDomain.h"
+#include <swift/Basic/InitializeSwiftModules.h>
 
 using namespace std::string_literals;
 
@@ -129,6 +130,7 @@ int main(int argc, char** argv) {
   // Required by Swift/LLVM
   PROGRAM_START(argc, argv);
   INITIALIZE_LLVM();
+  initializeSwiftModules();
 
   codeql::SwiftExtractorConfiguration configuration{};
   configuration.trapDir = getenv_or("CODEQL_EXTRACTOR_SWIFT_TRAP_DIR", ".");
diff --git a/swift/third_party/swift-llvm-support/BUILD.swift-prebuilt.bazel b/swift/third_party/swift-llvm-support/BUILD.swift-prebuilt.bazel
index 0d1571e35d1..58796aaaacb 100644
--- a/swift/third_party/swift-llvm-support/BUILD.swift-prebuilt.bazel
+++ b/swift/third_party/swift-llvm-support/BUILD.swift-prebuilt.bazel
@@ -7,9 +7,15 @@ cc_library(
     ] + select({
         "@platforms//os:linux": [
             "libCodeQLSwiftFrontendTool.so",
+            "libswiftCore.so",
         ],
         "@platforms//os:macos": [
             "libCodeQLSwiftFrontendTool.dylib",
+            "libswiftCore.dylib",
+            "libswiftCompatibility50.a",
+            "libswiftCompatibility51.a",
+            "libswiftCompatibilityConcurrency.a",
+            "libswiftCompatibilityDynamicReplacements.a",
         ],
     }),
     hdrs = glob(["include/**/*", "stdlib/**/*" ]),
@@ -23,6 +29,9 @@ cc_library(
             "-lpthread",
             "-ldl",
         ],
+        "@platforms//os:macos": [
+            "-L/usr/lib/swift",
+        ],
         "//conditions:default": [],
     }),
     includes = [ "include" ],

From ea13925a928697c0b176a326ffa46f86f3044474 Mon Sep 17 00:00:00 2001
From: "github-actions[bot]"
 <41898282+github-actions[bot]@users.noreply.github.com>
Date: Tue, 13 Dec 2022 13:28:09 +0000
Subject: [PATCH 1329/1420] JS: Bump patch version of ML-powered library and
 query packs

---
 .../ql/experimental/adaptivethreatmodeling/lib/qlpack.yml       | 2 +-
 .../ql/experimental/adaptivethreatmodeling/src/qlpack.yml       | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/javascript/ql/experimental/adaptivethreatmodeling/lib/qlpack.yml b/javascript/ql/experimental/adaptivethreatmodeling/lib/qlpack.yml
index 22249f4b960..3cf9c6bb727 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/lib/qlpack.yml
+++ b/javascript/ql/experimental/adaptivethreatmodeling/lib/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/javascript-experimental-atm-lib
-version: 0.4.3
+version: 0.4.4
 extractor: javascript
 library: true
 groups:
diff --git a/javascript/ql/experimental/adaptivethreatmodeling/src/qlpack.yml b/javascript/ql/experimental/adaptivethreatmodeling/src/qlpack.yml
index 875283e0b63..bded7e9f770 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/src/qlpack.yml
+++ b/javascript/ql/experimental/adaptivethreatmodeling/src/qlpack.yml
@@ -1,6 +1,6 @@
 name: codeql/javascript-experimental-atm-queries
 language: javascript
-version: 0.4.3
+version: 0.4.4
 suites: codeql-suites
 defaultSuiteFile: codeql-suites/javascript-atm-code-scanning.qls
 groups:

From 745823ca605a9652f72cfa15bb29ce2ab5d6721e Mon Sep 17 00:00:00 2001
From: "github-actions[bot]"
 <41898282+github-actions[bot]@users.noreply.github.com>
Date: Tue, 13 Dec 2022 13:32:52 +0000
Subject: [PATCH 1330/1420] JS: Bump version of ML-powered library and query
 packs to 0.4.5

---
 .../ql/experimental/adaptivethreatmodeling/lib/qlpack.yml       | 2 +-
 .../ql/experimental/adaptivethreatmodeling/src/qlpack.yml       | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/javascript/ql/experimental/adaptivethreatmodeling/lib/qlpack.yml b/javascript/ql/experimental/adaptivethreatmodeling/lib/qlpack.yml
index 3cf9c6bb727..c929118886d 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/lib/qlpack.yml
+++ b/javascript/ql/experimental/adaptivethreatmodeling/lib/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/javascript-experimental-atm-lib
-version: 0.4.4
+version: 0.4.5
 extractor: javascript
 library: true
 groups:
diff --git a/javascript/ql/experimental/adaptivethreatmodeling/src/qlpack.yml b/javascript/ql/experimental/adaptivethreatmodeling/src/qlpack.yml
index bded7e9f770..b3077891878 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/src/qlpack.yml
+++ b/javascript/ql/experimental/adaptivethreatmodeling/src/qlpack.yml
@@ -1,6 +1,6 @@
 name: codeql/javascript-experimental-atm-queries
 language: javascript
-version: 0.4.4
+version: 0.4.5
 suites: codeql-suites
 defaultSuiteFile: codeql-suites/javascript-atm-code-scanning.qls
 groups:

From a29e5296909fd79f0b9877ef42cc2005efbba889 Mon Sep 17 00:00:00 2001
From: Anders Schack-Mulligen <aschackmull@github.com>
Date: Tue, 13 Dec 2022 15:49:30 +0100
Subject: [PATCH 1331/1420] Shared: Add missing qldoc.

---
 shared/typetracking/codeql/typetracking/TypeTracking.qll | 8 ++++++++
 1 file changed, 8 insertions(+)

diff --git a/shared/typetracking/codeql/typetracking/TypeTracking.qll b/shared/typetracking/codeql/typetracking/TypeTracking.qll
index 7dac43f2e77..d289a11a29a 100644
--- a/shared/typetracking/codeql/typetracking/TypeTracking.qll
+++ b/shared/typetracking/codeql/typetracking/TypeTracking.qll
@@ -137,6 +137,10 @@ module TypeTracking<TypeTrackingInput I> {
       (storeStep(_, n, _) or loadStoreStep(_, n, _, _))
     }
 
+    /**
+     * Holds if there is any node in a step relation that is unreachable from a
+     * `LocalSourceNode`.
+     */
     query predicate unreachableNode(string msg) {
       exists(int k, string kind |
         k = strictcount(Node n | stepEntry(n, kind) and not flowsTo(_, n)) and
@@ -144,6 +148,10 @@ module TypeTracking<TypeTrackingInput I> {
       )
     }
 
+    /**
+     * Holds if there is a store target that isn't a `LocalSourceNode` and
+     * backtracking store target feature isn't enabled.
+     */
     query predicate nonSourceStoreTarget(string msg) {
       not hasFeatureBacktrackStoreTarget() and
       exists(int k |

From 5cc286885770930c1b5888e4478efc206e9f404c Mon Sep 17 00:00:00 2001
From: Tamas Vajk <tamasvajk@github.com>
Date: Tue, 13 Dec 2022 15:51:20 +0100
Subject: [PATCH 1332/1420] Kotlin: Report CFG dead end consistency issues on
 `ErrorExpr`

---
 java/ql/consistency-queries/cfgDeadEnds.ql                      | 2 --
 .../kotlin/library-tests/exprs/CONSISTENCY/cfgDeadEnds.expected | 1 +
 2 files changed, 1 insertion(+), 2 deletions(-)

diff --git a/java/ql/consistency-queries/cfgDeadEnds.ql b/java/ql/consistency-queries/cfgDeadEnds.ql
index b2ad4b08f6b..c0f2e6cfe1f 100644
--- a/java/ql/consistency-queries/cfgDeadEnds.ql
+++ b/java/ql/consistency-queries/cfgDeadEnds.ql
@@ -53,8 +53,6 @@ predicate shouldBeDeadEnd(ControlFlowNode n) {
   not exists(n.getFile().getRelativePath()) // TODO
   or
   n = any(ConstCase c).getValue(_) // TODO
-  or
-  n instanceof ErrorExpr // TODO
 }
 
 from ControlFlowNode n, string s
diff --git a/java/ql/test/kotlin/library-tests/exprs/CONSISTENCY/cfgDeadEnds.expected b/java/ql/test/kotlin/library-tests/exprs/CONSISTENCY/cfgDeadEnds.expected
index 19cabccd05b..d7025aaef88 100644
--- a/java/ql/test/kotlin/library-tests/exprs/CONSISTENCY/cfgDeadEnds.expected
+++ b/java/ql/test/kotlin/library-tests/exprs/CONSISTENCY/cfgDeadEnds.expected
@@ -1 +1,2 @@
+| exprs.kt:278:52:278:66 | <error expr> | ErrorExpr | unexpected dead end |
 | exprs.kt:278:52:278:66 | { ... } | BlockStmt | unexpected dead end |

From 1c06378a53ecb5670c1b39e25df093890bea31b7 Mon Sep 17 00:00:00 2001
From: Jami Cogswell <jcogs33@Jamis-MacBook-Pro.local>
Date: Thu, 8 Dec 2022 10:00:42 -0500
Subject: [PATCH 1333/1420] Java: exclude FunctionalExprs from
 DataFlowTargetApi

---
 .../utils/modelgenerator/internal/CaptureModelsSpecific.qll    | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/java/ql/src/utils/modelgenerator/internal/CaptureModelsSpecific.qll b/java/ql/src/utils/modelgenerator/internal/CaptureModelsSpecific.qll
index af46170f5a3..9632a080acf 100644
--- a/java/ql/src/utils/modelgenerator/internal/CaptureModelsSpecific.qll
+++ b/java/ql/src/utils/modelgenerator/internal/CaptureModelsSpecific.qll
@@ -59,7 +59,8 @@ private predicate isRelevantForModels(J::Callable api) {
   not isInTestFile(api.getCompilationUnit().getFile()) and
   not isJdkInternal(api.getCompilationUnit()) and
   not api instanceof J::MainMethod and
-  not api instanceof J::StaticInitializer
+  not api instanceof J::StaticInitializer and
+  not exists(J::FunctionalExpr funcExpr | api = funcExpr.asMethod())
 }
 
 /**

From 91c1ec3be616f0c06fd7e920cba38b2bc6dddfb5 Mon Sep 17 00:00:00 2001
From: Jami Cogswell <jcogs33@Jamis-MacBook-Pro.local>
Date: Thu, 8 Dec 2022 10:22:53 -0500
Subject: [PATCH 1334/1420] C#: exclude AnonymousFunctionExpr from
 DataFlowTargetApi

---
 .../utils/modelgenerator/internal/CaptureModelsSpecific.qll    | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/csharp/ql/src/utils/modelgenerator/internal/CaptureModelsSpecific.qll b/csharp/ql/src/utils/modelgenerator/internal/CaptureModelsSpecific.qll
index 3e1a303d5bb..680ed80d2f5 100644
--- a/csharp/ql/src/utils/modelgenerator/internal/CaptureModelsSpecific.qll
+++ b/csharp/ql/src/utils/modelgenerator/internal/CaptureModelsSpecific.qll
@@ -38,7 +38,8 @@ private predicate isRelevantForModels(CS::Callable api) {
   api.getDeclaringType().getNamespace().getFullName() != "" and
   not api instanceof CS::ConversionOperator and
   not api instanceof Util::MainMethod and
-  not api instanceof CS::Destructor
+  not api instanceof CS::Destructor and
+  not api instanceof CS::AnonymousFunctionExpr
 }
 
 /**

From a889cc4f6555e907debb4f23aefa631a43280c97 Mon Sep 17 00:00:00 2001
From: Jami Cogswell <jcogs33@Jamis-MacBook-Pro.local>
Date: Tue, 13 Dec 2022 10:34:04 -0500
Subject: [PATCH 1335/1420] Java/C#: remove isTestLibrary

---
 csharp/ql/src/Telemetry/ExternalApi.qll | 5 +----
 java/ql/src/Telemetry/ExternalApi.qll   | 5 +----
 2 files changed, 2 insertions(+), 8 deletions(-)

diff --git a/csharp/ql/src/Telemetry/ExternalApi.qll b/csharp/ql/src/Telemetry/ExternalApi.qll
index a1065fd4b50..d1464c4ef56 100644
--- a/csharp/ql/src/Telemetry/ExternalApi.qll
+++ b/csharp/ql/src/Telemetry/ExternalApi.qll
@@ -24,12 +24,9 @@ class TestLibrary extends RefType {
   }
 }
 
-/** Holds if the given callable is part of a common testing library or framework. */
-private predicate isTestLibrary(DotNet::Callable c) { c.getDeclaringType() instanceof TestLibrary }
-
 /** Holds if the given callable is not worth supporting. */
 private predicate isUninteresting(DotNet::Callable c) {
-  isTestLibrary(c) or
+  c.getDeclaringType() instanceof TestLibrary or
   c.(Constructor).isParameterless()
 }
 
diff --git a/java/ql/src/Telemetry/ExternalApi.qll b/java/ql/src/Telemetry/ExternalApi.qll
index 0be2b6789fb..2f7ebcc9d19 100644
--- a/java/ql/src/Telemetry/ExternalApi.qll
+++ b/java/ql/src/Telemetry/ExternalApi.qll
@@ -31,12 +31,9 @@ private string containerAsJar(Container container) {
   if container instanceof JarFile then result = container.getBaseName() else result = "rt.jar"
 }
 
-/** Holds if the given callable is part of a common testing library or framework. */
-private predicate isTestLibrary(Callable c) { c.getDeclaringType() instanceof TestLibrary }
-
 /** Holds if the given callable is not worth supporting. */
 private predicate isUninteresting(Callable c) {
-  isTestLibrary(c) or
+  c.getDeclaringType() instanceof TestLibrary or
   c.(Constructor).isParameterless()
 }
 

From 028fc2963933fcf396b434a3e243ccf89518062f Mon Sep 17 00:00:00 2001
From: Jami Cogswell <jcogs33@Jamis-MacBook-Pro.local>
Date: Tue, 13 Dec 2022 11:02:21 -0500
Subject: [PATCH 1336/1420] Java: group test methods

---
 .../GeneratedVsManualCoverage/IOUtils.java    | 46 +++++++++++--------
 1 file changed, 28 insertions(+), 18 deletions(-)

diff --git a/java/ql/test/query-tests/Metrics/GeneratedVsManualCoverage/IOUtils.java b/java/ql/test/query-tests/Metrics/GeneratedVsManualCoverage/IOUtils.java
index cdd91e87814..0bd11f545ac 100644
--- a/java/ql/test/query-tests/Metrics/GeneratedVsManualCoverage/IOUtils.java
+++ b/java/ql/test/query-tests/Metrics/GeneratedVsManualCoverage/IOUtils.java
@@ -3,22 +3,32 @@ import java.io.*;
 import java.util.*;
 
 public class IOUtils {
-  public static BufferedInputStream buffer(InputStream inputStream) { return null; } // Generated-only summary
-  public static void copy(InputStream input, Writer output, String inputEncoding) throws IOException { } // Generated-only summary
-  public static void copy(Reader input, OutputStream output) throws IOException { } // Generated neutral
-  public static long copyLarge(Reader input, Writer output) throws IOException { return 42; } // Generated-only summary
-  public static int read(InputStream input, byte[] buffer) throws IOException { return 42; } // Generated-only summary
-  public static void readFully(InputStream input, byte[] buffer) throws IOException { } // Generated-only summary
-  public static byte[] readFully(InputStream input, int length) throws IOException { return null; } // Generated-only summary
-  public static List<String> readLines(InputStream input, String encoding) throws IOException { return null; } // Generated-only summary
-  public static InputStream toBufferedInputStream(InputStream input) throws IOException { return null; } // Manual-only summary (generated neutral)
-  public static BufferedReader toBufferedReader(Reader reader) { return null; } // Generated-only summary
-  public static byte[] toByteArray(InputStream input, int size) throws IOException { return null; } // Generated-only summary
-  public static char[] toCharArray(InputStream is, String encoding) throws IOException { return null; } // Generated-only summary
-  public static InputStream toInputStream(String input, String encoding) throws IOException { return null; } // Generated-only summary
-  public static String toString(InputStream input, String encoding) throws IOException { return null; } // Generated-only summary
-  public static void write(char[] data, Writer output) throws IOException { } // Generated-only summary
-  public static void writeChunked(char[] data, Writer output) throws IOException { } // Generated-only summary
-  public static void writeLines(Collection<?> lines, String lineEnding, Writer writer) throws IOException { } // Both
-  public static void noSummary(String string) throws IOException { } // No model
+
+  // Generated-only summaries
+  public static BufferedInputStream buffer(InputStream inputStream) { return null; }
+  public static void copy(InputStream input, Writer output, String inputEncoding) throws IOException { }
+  public static long copyLarge(Reader input, Writer output) throws IOException { return 42; }
+  public static int read(InputStream input, byte[] buffer) throws IOException { return 42; }
+  public static void readFully(InputStream input, byte[] buffer) throws IOException { }
+  public static byte[] readFully(InputStream input, int length) throws IOException { return null; }
+  public static List<String> readLines(InputStream input, String encoding) throws IOException { return null; }
+  public static BufferedReader toBufferedReader(Reader reader) { return null; }
+  public static byte[] toByteArray(InputStream input, int size) throws IOException { return null; }
+  public static char[] toCharArray(InputStream is, String encoding) throws IOException { return null; }
+  public static InputStream toInputStream(String input, String encoding) throws IOException { return null; }
+  public static String toString(InputStream input, String encoding) throws IOException { return null; }
+  public static void write(char[] data, Writer output) throws IOException { }
+  public static void writeChunked(char[] data, Writer output) throws IOException { }
+
+  // Manual-only summary (generated neutral)
+  public static InputStream toBufferedInputStream(InputStream input) throws IOException { return null; }
+
+  // Both
+  public static void writeLines(Collection<?> lines, String lineEnding, Writer writer) throws IOException { }
+
+  // No model
+  public static void noSummary(String string) throws IOException { }
+
+  // Generated neutral
+  public static void copy(Reader input, OutputStream output) throws IOException { }
 }

From 3da2fb933bbc382c1ca9b62b5ad56c435bb00c5e Mon Sep 17 00:00:00 2001
From: Jami Cogswell <jcogs33@Jamis-MacBook-Pro.local>
Date: Tue, 13 Dec 2022 11:08:00 -0500
Subject: [PATCH 1337/1420] Java: remove parentheses

---
 .../Metrics/Summaries/GeneratedVsManualCoverage.ql    | 11 ++++++++---
 1 file changed, 8 insertions(+), 3 deletions(-)

diff --git a/java/ql/src/Metrics/Summaries/GeneratedVsManualCoverage.ql b/java/ql/src/Metrics/Summaries/GeneratedVsManualCoverage.ql
index 0b3c79e0d3b..bf365e555a8 100644
--- a/java/ql/src/Metrics/Summaries/GeneratedVsManualCoverage.ql
+++ b/java/ql/src/Metrics/Summaries/GeneratedVsManualCoverage.ql
@@ -22,13 +22,18 @@ private int getNumMadModeledApis(string package, string provenance) {
       package = sc.asCallable().getCompilationUnit().getPackage().getName() and
       sc.asCallable() instanceof DataFlowTargetApi and
       (
-        sc.isAutoGenerated() and // "auto-only"
+        // "auto-only"
+        sc.isAutoGenerated() and
         provenance = "generated"
         or
-        (sc.hasProvenance(false) and not sc.hasProvenance(true)) and // "manual-only"
+        // "manual-only"
+        sc.hasProvenance(false) and
+        not sc.hasProvenance(true) and
         provenance = "manual"
         or
-        (sc.hasProvenance(false) and sc.hasProvenance(true)) and // "both"
+        // "both"
+        sc.hasProvenance(false) and
+        sc.hasProvenance(true) and
         provenance = "both"
       )
     )

From a33436a39b0f56230d95a0ddef523f503e41a6d5 Mon Sep 17 00:00:00 2001
From: Jami Cogswell <jcogs33@Jamis-MacBook-Pro.local>
Date: Tue, 13 Dec 2022 11:26:23 -0500
Subject: [PATCH 1338/1420] Java: update hasProvenance

---
 .../code/csharp/dataflow/internal/FlowSummaryImpl.qll       | 6 +++++-
 go/ql/lib/semmle/go/dataflow/internal/FlowSummaryImpl.qll   | 6 +++++-
 .../semmle/code/java/dataflow/internal/FlowSummaryImpl.qll  | 6 +++++-
 .../semmle/python/dataflow/new/internal/FlowSummaryImpl.qll | 6 +++++-
 .../lib/codeql/ruby/dataflow/internal/FlowSummaryImpl.qll   | 6 +++++-
 .../lib/codeql/swift/dataflow/internal/FlowSummaryImpl.qll  | 6 +++++-
 6 files changed, 30 insertions(+), 6 deletions(-)

diff --git a/csharp/ql/lib/semmle/code/csharp/dataflow/internal/FlowSummaryImpl.qll b/csharp/ql/lib/semmle/code/csharp/dataflow/internal/FlowSummaryImpl.qll
index aaa2dd0a304..b61142c33a7 100644
--- a/csharp/ql/lib/semmle/code/csharp/dataflow/internal/FlowSummaryImpl.qll
+++ b/csharp/ql/lib/semmle/code/csharp/dataflow/internal/FlowSummaryImpl.qll
@@ -249,7 +249,7 @@ module Public {
      * Holds if the summary has the given provenance where `true` is
      * `generated` and `false` is `manual`.
      */
-    predicate hasProvenance(boolean generated) { summaryElement(this, _, _, _, generated) }
+    predicate hasProvenance(boolean generated) { none() }
   }
 
   /** A callable where there is no flow via the callable. */
@@ -1018,6 +1018,10 @@ module Private {
       }
 
       override predicate isAutoGenerated() { this.relevantSummaryElementGenerated(_, _, _) }
+
+      override predicate hasProvenance(boolean generated) {
+        summaryElement(this, _, _, _, generated)
+      }
     }
 
     /** Holds if component `c` of specification `spec` cannot be parsed. */
diff --git a/go/ql/lib/semmle/go/dataflow/internal/FlowSummaryImpl.qll b/go/ql/lib/semmle/go/dataflow/internal/FlowSummaryImpl.qll
index aaa2dd0a304..b61142c33a7 100644
--- a/go/ql/lib/semmle/go/dataflow/internal/FlowSummaryImpl.qll
+++ b/go/ql/lib/semmle/go/dataflow/internal/FlowSummaryImpl.qll
@@ -249,7 +249,7 @@ module Public {
      * Holds if the summary has the given provenance where `true` is
      * `generated` and `false` is `manual`.
      */
-    predicate hasProvenance(boolean generated) { summaryElement(this, _, _, _, generated) }
+    predicate hasProvenance(boolean generated) { none() }
   }
 
   /** A callable where there is no flow via the callable. */
@@ -1018,6 +1018,10 @@ module Private {
       }
 
       override predicate isAutoGenerated() { this.relevantSummaryElementGenerated(_, _, _) }
+
+      override predicate hasProvenance(boolean generated) {
+        summaryElement(this, _, _, _, generated)
+      }
     }
 
     /** Holds if component `c` of specification `spec` cannot be parsed. */
diff --git a/java/ql/lib/semmle/code/java/dataflow/internal/FlowSummaryImpl.qll b/java/ql/lib/semmle/code/java/dataflow/internal/FlowSummaryImpl.qll
index aaa2dd0a304..b61142c33a7 100644
--- a/java/ql/lib/semmle/code/java/dataflow/internal/FlowSummaryImpl.qll
+++ b/java/ql/lib/semmle/code/java/dataflow/internal/FlowSummaryImpl.qll
@@ -249,7 +249,7 @@ module Public {
      * Holds if the summary has the given provenance where `true` is
      * `generated` and `false` is `manual`.
      */
-    predicate hasProvenance(boolean generated) { summaryElement(this, _, _, _, generated) }
+    predicate hasProvenance(boolean generated) { none() }
   }
 
   /** A callable where there is no flow via the callable. */
@@ -1018,6 +1018,10 @@ module Private {
       }
 
       override predicate isAutoGenerated() { this.relevantSummaryElementGenerated(_, _, _) }
+
+      override predicate hasProvenance(boolean generated) {
+        summaryElement(this, _, _, _, generated)
+      }
     }
 
     /** Holds if component `c` of specification `spec` cannot be parsed. */
diff --git a/python/ql/lib/semmle/python/dataflow/new/internal/FlowSummaryImpl.qll b/python/ql/lib/semmle/python/dataflow/new/internal/FlowSummaryImpl.qll
index aaa2dd0a304..b61142c33a7 100644
--- a/python/ql/lib/semmle/python/dataflow/new/internal/FlowSummaryImpl.qll
+++ b/python/ql/lib/semmle/python/dataflow/new/internal/FlowSummaryImpl.qll
@@ -249,7 +249,7 @@ module Public {
      * Holds if the summary has the given provenance where `true` is
      * `generated` and `false` is `manual`.
      */
-    predicate hasProvenance(boolean generated) { summaryElement(this, _, _, _, generated) }
+    predicate hasProvenance(boolean generated) { none() }
   }
 
   /** A callable where there is no flow via the callable. */
@@ -1018,6 +1018,10 @@ module Private {
       }
 
       override predicate isAutoGenerated() { this.relevantSummaryElementGenerated(_, _, _) }
+
+      override predicate hasProvenance(boolean generated) {
+        summaryElement(this, _, _, _, generated)
+      }
     }
 
     /** Holds if component `c` of specification `spec` cannot be parsed. */
diff --git a/ruby/ql/lib/codeql/ruby/dataflow/internal/FlowSummaryImpl.qll b/ruby/ql/lib/codeql/ruby/dataflow/internal/FlowSummaryImpl.qll
index aaa2dd0a304..b61142c33a7 100644
--- a/ruby/ql/lib/codeql/ruby/dataflow/internal/FlowSummaryImpl.qll
+++ b/ruby/ql/lib/codeql/ruby/dataflow/internal/FlowSummaryImpl.qll
@@ -249,7 +249,7 @@ module Public {
      * Holds if the summary has the given provenance where `true` is
      * `generated` and `false` is `manual`.
      */
-    predicate hasProvenance(boolean generated) { summaryElement(this, _, _, _, generated) }
+    predicate hasProvenance(boolean generated) { none() }
   }
 
   /** A callable where there is no flow via the callable. */
@@ -1018,6 +1018,10 @@ module Private {
       }
 
       override predicate isAutoGenerated() { this.relevantSummaryElementGenerated(_, _, _) }
+
+      override predicate hasProvenance(boolean generated) {
+        summaryElement(this, _, _, _, generated)
+      }
     }
 
     /** Holds if component `c` of specification `spec` cannot be parsed. */
diff --git a/swift/ql/lib/codeql/swift/dataflow/internal/FlowSummaryImpl.qll b/swift/ql/lib/codeql/swift/dataflow/internal/FlowSummaryImpl.qll
index aaa2dd0a304..b61142c33a7 100644
--- a/swift/ql/lib/codeql/swift/dataflow/internal/FlowSummaryImpl.qll
+++ b/swift/ql/lib/codeql/swift/dataflow/internal/FlowSummaryImpl.qll
@@ -249,7 +249,7 @@ module Public {
      * Holds if the summary has the given provenance where `true` is
      * `generated` and `false` is `manual`.
      */
-    predicate hasProvenance(boolean generated) { summaryElement(this, _, _, _, generated) }
+    predicate hasProvenance(boolean generated) { none() }
   }
 
   /** A callable where there is no flow via the callable. */
@@ -1018,6 +1018,10 @@ module Private {
       }
 
       override predicate isAutoGenerated() { this.relevantSummaryElementGenerated(_, _, _) }
+
+      override predicate hasProvenance(boolean generated) {
+        summaryElement(this, _, _, _, generated)
+      }
     }
 
     /** Holds if component `c` of specification `spec` cannot be parsed. */

From be7b4151af281d59550ff9e5c5acecc0c4cdc4cc Mon Sep 17 00:00:00 2001
From: Jami Cogswell <jcogs33@Jamis-MacBook-Pro.local>
Date: Tue, 13 Dec 2022 12:54:43 -0500
Subject: [PATCH 1339/1420] Java: update getNumApis and remove package binding
 from query body

---
 .../src/Metrics/Summaries/GeneratedVsManualCoverage.ql   | 9 +++------
 1 file changed, 3 insertions(+), 6 deletions(-)

diff --git a/java/ql/src/Metrics/Summaries/GeneratedVsManualCoverage.ql b/java/ql/src/Metrics/Summaries/GeneratedVsManualCoverage.ql
index bf365e555a8..e1462a0f245 100644
--- a/java/ql/src/Metrics/Summaries/GeneratedVsManualCoverage.ql
+++ b/java/ql/src/Metrics/Summaries/GeneratedVsManualCoverage.ql
@@ -40,20 +40,17 @@ private int getNumMadModeledApis(string package, string provenance) {
 }
 
 /** Returns the total number of `DataFlowTargetApi`s for a given package. */
-bindingset[package]
 private int getNumApis(string package) {
   result =
-    count(DataFlowTargetApi dataFlowTargApi |
+    strictcount(DataFlowTargetApi dataFlowTargApi |
       package = dataFlowTargApi.getCompilationUnit().getPackage().getName()
     )
 }
 
 from
-  DataFlowTargetApi dataFlowTargApi, string package, int generatedOnly, int both, int manualOnly,
-  int non, int all, float generatedCoverage, float manualCoverage
+  string package, int generatedOnly, int both, int manualOnly, int non, int all,
+  float generatedCoverage, float manualCoverage
 where
-  // bind `package` to a `DataFlowTargetApi` package name
-  package = dataFlowTargApi.getCompilationUnit().getPackage().getName() and
   // count the number of APIs with generated-only, both, and manual-only MaD models for each package
   generatedOnly = getNumMadModeledApis(package, "generated") and
   both = getNumMadModeledApis(package, "both") and

From 19fb73ce24f73c5499798bef3ed1a55bf9515f52 Mon Sep 17 00:00:00 2001
From: Jeroen Ketema <jketema@github.com>
Date: Tue, 13 Dec 2022 19:52:59 +0100
Subject: [PATCH 1340/1420] C++: Update tests after frontend changes

---
 cpp/ql/test/library-tests/floats/float128/errors.expected    | 3 +--
 cpp/ql/test/library-tests/floats/float128/usertypes.expected | 1 +
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/cpp/ql/test/library-tests/floats/float128/errors.expected b/cpp/ql/test/library-tests/floats/float128/errors.expected
index d7891f3e9b6..2f163e66cb0 100644
--- a/cpp/ql/test/library-tests/floats/float128/errors.expected
+++ b/cpp/ql/test/library-tests/floats/float128/errors.expected
@@ -1,4 +1,3 @@
 | file://:0:0:0:0 | There was an error during this compilation |
 | float128.cpp:1:39:1:39 | 128-bit floating-point types are not supported in this configuration |
-| float128.cpp:2:30:2:30 | an attribute specifies a mode incompatible with '<error-type>' |
-| float128.cpp:2:41:2:41 | invalid combination of type specifiers |
+| float128.cpp:2:30:2:30 | 128-bit floating-point types are not supported in this configuration |
diff --git a/cpp/ql/test/library-tests/floats/float128/usertypes.expected b/cpp/ql/test/library-tests/floats/float128/usertypes.expected
index 84a38d93967..42b6612aff9 100644
--- a/cpp/ql/test/library-tests/floats/float128/usertypes.expected
+++ b/cpp/ql/test/library-tests/floats/float128/usertypes.expected
@@ -1,4 +1,5 @@
 | float128.cpp:1:50:1:60 | _Complex128 | file://:0:0:0:0 | <error-type> |
+| float128.cpp:2:41:2:49 | _Float128 | file://:0:0:0:0 | <error-type> |
 | float128.cpp:13:29:13:54 | __is_floating_point_helper<T> | float128.cpp:10:8:10:17 | false_type |
 | float128.cpp:14:19:14:51 | __is_floating_point_helper<float> | float128.cpp:11:8:11:16 | true_type |
 | float128.cpp:15:19:15:52 | __is_floating_point_helper<double> | float128.cpp:11:8:11:16 | true_type |

From a3933fbf4fa8c1ae49a246f16c1b63812b004c30 Mon Sep 17 00:00:00 2001
From: Henry Mercer <henrymercer@github.com>
Date: Tue, 13 Dec 2022 18:59:24 +0000
Subject: [PATCH 1341/1420] Bump minor versions of packs we regularly release

---
 cpp/ql/lib/qlpack.yml                         | 2 +-
 cpp/ql/src/qlpack.yml                         | 2 +-
 csharp/ql/campaigns/Solorigate/lib/qlpack.yml | 2 +-
 csharp/ql/campaigns/Solorigate/src/qlpack.yml | 2 +-
 csharp/ql/lib/qlpack.yml                      | 2 +-
 csharp/ql/src/qlpack.yml                      | 2 +-
 go/ql/lib/qlpack.yml                          | 2 +-
 go/ql/src/qlpack.yml                          | 2 +-
 java/ql/lib/qlpack.yml                        | 2 +-
 java/ql/src/qlpack.yml                        | 2 +-
 javascript/ql/lib/qlpack.yml                  | 2 +-
 javascript/ql/src/qlpack.yml                  | 2 +-
 misc/suite-helpers/qlpack.yml                 | 2 +-
 python/ql/lib/qlpack.yml                      | 2 +-
 python/ql/src/qlpack.yml                      | 2 +-
 ruby/ql/lib/qlpack.yml                        | 3 +--
 ruby/ql/src/qlpack.yml                        | 2 +-
 17 files changed, 17 insertions(+), 18 deletions(-)

diff --git a/cpp/ql/lib/qlpack.yml b/cpp/ql/lib/qlpack.yml
index b5c7ec3bd7a..ee8913624dc 100644
--- a/cpp/ql/lib/qlpack.yml
+++ b/cpp/ql/lib/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/cpp-all
-version: 0.4.7-dev
+version: 0.5.0-dev
 groups: cpp
 dbscheme: semmlecode.cpp.dbscheme
 extractor: cpp
diff --git a/cpp/ql/src/qlpack.yml b/cpp/ql/src/qlpack.yml
index 603410f7946..b8b2f8a31ca 100644
--- a/cpp/ql/src/qlpack.yml
+++ b/cpp/ql/src/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/cpp-queries
-version: 0.4.7-dev
+version: 0.5.0-dev
 groups: 
   - cpp
   - queries
diff --git a/csharp/ql/campaigns/Solorigate/lib/qlpack.yml b/csharp/ql/campaigns/Solorigate/lib/qlpack.yml
index e02e0a23130..3db26da98de 100644
--- a/csharp/ql/campaigns/Solorigate/lib/qlpack.yml
+++ b/csharp/ql/campaigns/Solorigate/lib/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/csharp-solorigate-all
-version: 1.3.7-dev
+version: 1.4.0-dev
 groups:
     - csharp
     - solorigate
diff --git a/csharp/ql/campaigns/Solorigate/src/qlpack.yml b/csharp/ql/campaigns/Solorigate/src/qlpack.yml
index 06e38173f20..9d3c5a80b02 100644
--- a/csharp/ql/campaigns/Solorigate/src/qlpack.yml
+++ b/csharp/ql/campaigns/Solorigate/src/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/csharp-solorigate-queries
-version: 1.3.7-dev
+version: 1.4.0-dev
 groups:
     - csharp
     - solorigate
diff --git a/csharp/ql/lib/qlpack.yml b/csharp/ql/lib/qlpack.yml
index 9ef9fd5b611..75d3cd21610 100644
--- a/csharp/ql/lib/qlpack.yml
+++ b/csharp/ql/lib/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/csharp-all
-version: 0.4.7-dev
+version: 0.5.0-dev
 groups: csharp
 dbscheme: semmlecode.csharp.dbscheme
 extractor: csharp
diff --git a/csharp/ql/src/qlpack.yml b/csharp/ql/src/qlpack.yml
index 875aa77fff2..926a272097e 100644
--- a/csharp/ql/src/qlpack.yml
+++ b/csharp/ql/src/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/csharp-queries
-version: 0.4.7-dev
+version: 0.5.0-dev
 groups: 
   - csharp
   - queries
diff --git a/go/ql/lib/qlpack.yml b/go/ql/lib/qlpack.yml
index 0e39e54998a..a3b398f3a0b 100644
--- a/go/ql/lib/qlpack.yml
+++ b/go/ql/lib/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/go-all
-version: 0.3.7-dev
+version: 0.4.0-dev
 groups: go
 dbscheme: go.dbscheme
 extractor: go
diff --git a/go/ql/src/qlpack.yml b/go/ql/src/qlpack.yml
index 4427152eef6..88d4e107152 100644
--- a/go/ql/src/qlpack.yml
+++ b/go/ql/src/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/go-queries
-version: 0.3.7-dev
+version: 0.4.0-dev
 groups:
   - go
   - queries
diff --git a/java/ql/lib/qlpack.yml b/java/ql/lib/qlpack.yml
index feb377ca9ff..9eb1924a3d3 100644
--- a/java/ql/lib/qlpack.yml
+++ b/java/ql/lib/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/java-all
-version: 0.4.7-dev
+version: 0.5.0-dev
 groups: java
 dbscheme: config/semmlecode.dbscheme
 extractor: java
diff --git a/java/ql/src/qlpack.yml b/java/ql/src/qlpack.yml
index 032ff0b0d16..9017221edc3 100644
--- a/java/ql/src/qlpack.yml
+++ b/java/ql/src/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/java-queries
-version: 0.4.7-dev
+version: 0.5.0-dev
 groups: 
   - java
   - queries
diff --git a/javascript/ql/lib/qlpack.yml b/javascript/ql/lib/qlpack.yml
index 2d9cc82e7b2..f506e391d72 100644
--- a/javascript/ql/lib/qlpack.yml
+++ b/javascript/ql/lib/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/javascript-all
-version: 0.3.7-dev
+version: 0.4.0-dev
 groups: javascript
 dbscheme: semmlecode.javascript.dbscheme
 extractor: javascript
diff --git a/javascript/ql/src/qlpack.yml b/javascript/ql/src/qlpack.yml
index 25854a00154..e22b3c4b5f1 100644
--- a/javascript/ql/src/qlpack.yml
+++ b/javascript/ql/src/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/javascript-queries
-version: 0.4.7-dev
+version: 0.5.0-dev
 groups: 
   - javascript
   - queries
diff --git a/misc/suite-helpers/qlpack.yml b/misc/suite-helpers/qlpack.yml
index 68b88ed9a9e..5ecfc312c46 100644
--- a/misc/suite-helpers/qlpack.yml
+++ b/misc/suite-helpers/qlpack.yml
@@ -1,3 +1,3 @@
 name: codeql/suite-helpers
-version: 0.3.7-dev
+version: 0.4.0-dev
 groups: shared
diff --git a/python/ql/lib/qlpack.yml b/python/ql/lib/qlpack.yml
index 6ba0baa9fc2..7da58edd333 100644
--- a/python/ql/lib/qlpack.yml
+++ b/python/ql/lib/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/python-all
-version: 0.6.7-dev
+version: 0.7.0-dev
 groups: python
 dbscheme: semmlecode.python.dbscheme
 extractor: python
diff --git a/python/ql/src/qlpack.yml b/python/ql/src/qlpack.yml
index cb7193ce215..0bcf45523e7 100644
--- a/python/ql/src/qlpack.yml
+++ b/python/ql/src/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/python-queries
-version: 0.5.7-dev
+version: 0.6.0-dev
 groups: 
   - python
   - queries
diff --git a/ruby/ql/lib/qlpack.yml b/ruby/ql/lib/qlpack.yml
index 004e41ae9c2..153afd88563 100644
--- a/ruby/ql/lib/qlpack.yml
+++ b/ruby/ql/lib/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/ruby-all
-version: 0.4.7-dev
+version: 0.5.0-dev
 groups: ruby
 extractor: ruby
 dbscheme: ruby.dbscheme
@@ -8,6 +8,5 @@ library: true
 dependencies:
   codeql/ssa: ${workspace}
   codeql/regex: ${workspace}
-  codeql/ssa: 0.0.1
 dataExtensions:
   - codeql/ruby/frameworks/**/model.yml
diff --git a/ruby/ql/src/qlpack.yml b/ruby/ql/src/qlpack.yml
index 4ab00a5bd38..85a6b678753 100644
--- a/ruby/ql/src/qlpack.yml
+++ b/ruby/ql/src/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/ruby-queries
-version: 0.4.7-dev
+version: 0.5.0-dev
 groups: 
   - ruby
   - queries

From dee251e5d6ea9dfcd1fa80c5904efb229c90d5bf Mon Sep 17 00:00:00 2001
From: Jami Cogswell <jcogs33@Jamis-MacBook-Pro.local>
Date: Mon, 12 Dec 2022 23:02:19 -0500
Subject: [PATCH 1342/1420] Java: update isJdkInternal

---
 .../modelgenerator/internal/CaptureModelsSpecific.qll | 11 ++++++++---
 1 file changed, 8 insertions(+), 3 deletions(-)

diff --git a/java/ql/src/utils/modelgenerator/internal/CaptureModelsSpecific.qll b/java/ql/src/utils/modelgenerator/internal/CaptureModelsSpecific.qll
index 25a380291d0..f8d5f9d43cc 100644
--- a/java/ql/src/utils/modelgenerator/internal/CaptureModelsSpecific.qll
+++ b/java/ql/src/utils/modelgenerator/internal/CaptureModelsSpecific.qll
@@ -39,15 +39,20 @@ private predicate isJdkInternal(J::CompilationUnit cu) {
   cu.getPackage().getName().matches("javax.swing%") or
   cu.getPackage().getName().matches("java.awt%") or
   cu.getPackage().getName().matches("sun%") or
-  cu.getPackage().getName().matches("jdk.%") or
+  cu.getPackage().getName().matches("jdk%") or
   cu.getPackage().getName().matches("java2d.%") or
   cu.getPackage().getName().matches("build.tools.%") or
-  cu.getPackage().getName().matches("propertiesparser.%") or
+  cu.getPackage().getName().matches("propertiesparser%") or
   cu.getPackage().getName().matches("org.jcp.%") or
   cu.getPackage().getName().matches("org.w3c.%") or
-  cu.getPackage().getName().matches("org.ietf.jgss.%") or
+  cu.getPackage().getName().matches("org.ietf.jgss%") or
   cu.getPackage().getName().matches("org.xml.sax%") or
+  cu.getPackage().getName().matches("com.oracle%") or
+  cu.getPackage().getName().matches("org.omg%") or
+  cu.getPackage().getName().matches("org.relaxng%") or
   cu.getPackage().getName() = "compileproperties" or
+  cu.getPackage().getName() = "transparentruler" or
+  cu.getPackage().getName() = "genstubs" or
   cu.getPackage().getName() = "netscape.javascript" or
   cu.getPackage().getName() = ""
 }

From c9565899452a2f103d6e1ab7273adbf2410d22ae Mon Sep 17 00:00:00 2001
From: Jami Cogswell <jcogs33@Jamis-MacBook-Pro.local>
Date: Tue, 13 Dec 2022 17:40:56 -0500
Subject: [PATCH 1343/1420] Java: remove dot before percent

---
 .../modelgenerator/internal/CaptureModelsSpecific.qll     | 8 ++++----
 1 file changed, 4 insertions(+), 4 deletions(-)

diff --git a/java/ql/src/utils/modelgenerator/internal/CaptureModelsSpecific.qll b/java/ql/src/utils/modelgenerator/internal/CaptureModelsSpecific.qll
index f8d5f9d43cc..ced6b703600 100644
--- a/java/ql/src/utils/modelgenerator/internal/CaptureModelsSpecific.qll
+++ b/java/ql/src/utils/modelgenerator/internal/CaptureModelsSpecific.qll
@@ -40,11 +40,11 @@ private predicate isJdkInternal(J::CompilationUnit cu) {
   cu.getPackage().getName().matches("java.awt%") or
   cu.getPackage().getName().matches("sun%") or
   cu.getPackage().getName().matches("jdk%") or
-  cu.getPackage().getName().matches("java2d.%") or
-  cu.getPackage().getName().matches("build.tools.%") or
+  cu.getPackage().getName().matches("java2d%") or
+  cu.getPackage().getName().matches("build.tools%") or
   cu.getPackage().getName().matches("propertiesparser%") or
-  cu.getPackage().getName().matches("org.jcp.%") or
-  cu.getPackage().getName().matches("org.w3c.%") or
+  cu.getPackage().getName().matches("org.jcp%") or
+  cu.getPackage().getName().matches("org.w3c%") or
   cu.getPackage().getName().matches("org.ietf.jgss%") or
   cu.getPackage().getName().matches("org.xml.sax%") or
   cu.getPackage().getName().matches("com.oracle%") or

From d905bed92f594a19c7fd4d1008cfc99e1ad57535 Mon Sep 17 00:00:00 2001
From: "github-actions[bot]"
 <41898282+github-actions[bot]@users.noreply.github.com>
Date: Wed, 14 Dec 2022 00:17:01 +0000
Subject: [PATCH 1344/1420] Add changed framework coverage reports

---
 .../library-coverage/coverage.csv             | 56 +++++++++----------
 .../library-coverage/coverage.rst             |  4 +-
 2 files changed, 30 insertions(+), 30 deletions(-)

diff --git a/csharp/documentation/library-coverage/coverage.csv b/csharp/documentation/library-coverage/coverage.csv
index 5d0813f71e9..d31ce58ff81 100644
--- a/csharp/documentation/library-coverage/coverage.csv
+++ b/csharp/documentation/library-coverage/coverage.csv
@@ -1,28 +1,28 @@
-package,sink,source,summary,sink:code,sink:encryption-decryptor,sink:encryption-encryptor,sink:encryption-keyprop,sink:encryption-symmetrickey,sink:html,sink:remote,sink:sql,sink:xss,source:file,source:local,summary:taint,summary:value
-Dapper,55,,,,,,,,,,55,,,,,
-JsonToItemsTaskFactory,,,7,,,,,,,,,,,,7,
-Microsoft.ApplicationBlocks.Data,28,,,,,,,,,,28,,,,,
-Microsoft.CSharp,,,24,,,,,,,,,,,,24,
-Microsoft.EntityFrameworkCore,6,,,,,,,,,,6,,,,,
-Microsoft.Extensions.Caching.Distributed,,,15,,,,,,,,,,,,15,
-Microsoft.Extensions.Caching.Memory,,,46,,,,,,,,,,,,45,1
-Microsoft.Extensions.Configuration,,,83,,,,,,,,,,,,80,3
-Microsoft.Extensions.DependencyInjection,,,62,,,,,,,,,,,,62,
-Microsoft.Extensions.DependencyModel,,,12,,,,,,,,,,,,12,
-Microsoft.Extensions.FileProviders,,,16,,,,,,,,,,,,16,
-Microsoft.Extensions.FileSystemGlobbing,,,15,,,,,,,,,,,,13,2
-Microsoft.Extensions.Hosting,,,17,,,,,,,,,,,,16,1
-Microsoft.Extensions.Http,,,10,,,,,,,,,,,,10,
-Microsoft.Extensions.Logging,,,37,,,,,,,,,,,,37,
-Microsoft.Extensions.Options,,,8,,,,,,,,,,,,8,
-Microsoft.Extensions.Primitives,,,63,,,,,,,,,,,,63,
-Microsoft.Interop,,,27,,,,,,,,,,,,27,
-Microsoft.NET.Build.Tasks,,,1,,,,,,,,,,,,1,
-Microsoft.NETCore.Platforms.BuildTasks,,,4,,,,,,,,,,,,4,
-Microsoft.VisualBasic,,,10,,,,,,,,,,,,5,5
-Microsoft.Win32,,,8,,,,,,,,,,,,8,
-MySql.Data.MySqlClient,48,,,,,,,,,,48,,,,,
-Newtonsoft.Json,,,91,,,,,,,,,,,,73,18
-ServiceStack,194,,7,27,,,,,,75,92,,,,7,
-System,65,4,12142,,8,8,9,,4,,33,3,1,3,10151,1991
-Windows.Security.Cryptography.Core,1,,,,,,,1,,,,,,,,
+package,sink,source,summary,sink:code,sink:encryption-decryptor,sink:encryption-encryptor,sink:encryption-keyprop,sink:encryption-symmetrickey,sink:html,sink:remote,sink:sql,sink:xss,source:file,source:local,source:remote,summary:taint,summary:value
+Dapper,55,,,,,,,,,,55,,,,,,
+JsonToItemsTaskFactory,,,7,,,,,,,,,,,,,7,
+Microsoft.ApplicationBlocks.Data,28,,,,,,,,,,28,,,,,,
+Microsoft.CSharp,,,24,,,,,,,,,,,,,24,
+Microsoft.EntityFrameworkCore,6,,,,,,,,,,6,,,,,,
+Microsoft.Extensions.Caching.Distributed,,,15,,,,,,,,,,,,,15,
+Microsoft.Extensions.Caching.Memory,,,46,,,,,,,,,,,,,45,1
+Microsoft.Extensions.Configuration,,,83,,,,,,,,,,,,,80,3
+Microsoft.Extensions.DependencyInjection,,,62,,,,,,,,,,,,,62,
+Microsoft.Extensions.DependencyModel,,,12,,,,,,,,,,,,,12,
+Microsoft.Extensions.FileProviders,,,16,,,,,,,,,,,,,16,
+Microsoft.Extensions.FileSystemGlobbing,,,15,,,,,,,,,,,,,13,2
+Microsoft.Extensions.Hosting,,,17,,,,,,,,,,,,,16,1
+Microsoft.Extensions.Http,,,10,,,,,,,,,,,,,10,
+Microsoft.Extensions.Logging,,,37,,,,,,,,,,,,,37,
+Microsoft.Extensions.Options,,,8,,,,,,,,,,,,,8,
+Microsoft.Extensions.Primitives,,,63,,,,,,,,,,,,,63,
+Microsoft.Interop,,,27,,,,,,,,,,,,,27,
+Microsoft.NET.Build.Tasks,,,1,,,,,,,,,,,,,1,
+Microsoft.NETCore.Platforms.BuildTasks,,,4,,,,,,,,,,,,,4,
+Microsoft.VisualBasic,,,10,,,,,,,,,,,,,5,5
+Microsoft.Win32,,,8,,,,,,,,,,,,,8,
+MySql.Data.MySqlClient,48,,,,,,,,,,48,,,,,,
+Newtonsoft.Json,,,91,,,,,,,,,,,,,73,18
+ServiceStack,194,,7,27,,,,,,75,92,,,,,7,
+System,65,8,12154,,8,8,9,,4,,33,3,1,3,4,10163,1991
+Windows.Security.Cryptography.Core,1,,,,,,,1,,,,,,,,,
diff --git a/csharp/documentation/library-coverage/coverage.rst b/csharp/documentation/library-coverage/coverage.rst
index fa178752fe3..6324b78ed41 100644
--- a/csharp/documentation/library-coverage/coverage.rst
+++ b/csharp/documentation/library-coverage/coverage.rst
@@ -8,7 +8,7 @@ C# framework & library support
 
    Framework / library,Package,Flow sources,Taint & value steps,Sinks (total),`CWE-079` :sub:`Cross-site scripting`
    `ServiceStack <https://servicestack.net/>`_,"``ServiceStack.*``, ``ServiceStack``",,7,194,
-   System,"``System.*``, ``System``",4,12142,65,7
+   System,"``System.*``, ``System``",8,12154,65,7
    Others,"``Dapper``, ``JsonToItemsTaskFactory``, ``Microsoft.ApplicationBlocks.Data``, ``Microsoft.CSharp``, ``Microsoft.EntityFrameworkCore``, ``Microsoft.Extensions.Caching.Distributed``, ``Microsoft.Extensions.Caching.Memory``, ``Microsoft.Extensions.Configuration``, ``Microsoft.Extensions.DependencyInjection``, ``Microsoft.Extensions.DependencyModel``, ``Microsoft.Extensions.FileProviders``, ``Microsoft.Extensions.FileSystemGlobbing``, ``Microsoft.Extensions.Hosting``, ``Microsoft.Extensions.Http``, ``Microsoft.Extensions.Logging``, ``Microsoft.Extensions.Options``, ``Microsoft.Extensions.Primitives``, ``Microsoft.Interop``, ``Microsoft.NET.Build.Tasks``, ``Microsoft.NETCore.Platforms.BuildTasks``, ``Microsoft.VisualBasic``, ``Microsoft.Win32``, ``MySql.Data.MySqlClient``, ``Newtonsoft.Json``, ``Windows.Security.Cryptography.Core``",,556,138,
-   Totals,,4,12705,397,7
+   Totals,,8,12717,397,7
 

From 701676eea11b76fca7b6b5ad7fcb365f79cb8c8b Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Alvaro=20Mu=C3=B1oz?= <pwntester@github.com>
Date: Wed, 14 Dec 2022 10:18:47 +0100
Subject: [PATCH 1345/1420] Update
 javascript/ql/lib/semmle/javascript/frameworks/Spife.qll

Co-authored-by: Erik Krogh Kristensen <erik-krogh@github.com>
---
 .../ql/lib/semmle/javascript/frameworks/Spife.qll   | 13 ++++++-------
 1 file changed, 6 insertions(+), 7 deletions(-)

diff --git a/javascript/ql/lib/semmle/javascript/frameworks/Spife.qll b/javascript/ql/lib/semmle/javascript/frameworks/Spife.qll
index 6016b5261d2..a32accffd48 100644
--- a/javascript/ql/lib/semmle/javascript/frameworks/Spife.qll
+++ b/javascript/ql/lib/semmle/javascript/frameworks/Spife.qll
@@ -165,13 +165,12 @@ module Spife {
       kind = "cookie"
       or
       // req.validatedBody.get('foo')
-      exists(DataFlow::PropRead validated, DataFlow::MethodCallNode get |
-        rh.getARequestSource().ref().getAPropertyRead() = validated and
-        validated.getPropertyName().matches("validated%") and
-        get.getReceiver() = validated and
-        this = get and
-        kind = "body"
-      )
+      this =
+        rh.getARequestSource()
+            .ref()
+            .getAPropertyRead(any(string s | s.matches("validated%")))
+            .getAMethodCall("get") and
+      kind = "body"
     }
 
     override RouteHandler getRouteHandler() { result = rh }

From 14e6f9fee2bd0c391907c1a2b1c01f969ee70c8f Mon Sep 17 00:00:00 2001
From: Owen Mansel-Chan <owen-mc@github.com>
Date: Wed, 7 Dec 2022 06:39:23 +0000
Subject: [PATCH 1346/1420] Remove @errorexpr from the dbscheme (use @badexpr)

---
 .../go.dbscheme                               | 547 ++++++++++++++++++
 .../old.dbscheme                              | 546 +++++++++++++++++
 .../upgrade.properties                        |   2 +
 go/extractor/dbscheme/tables.go               |   3 -
 go/ql/lib/go.dbscheme                         |   3 +-
 .../exprs.ql                                  |  28 +
 .../go.dbscheme                               | 546 +++++++++++++++++
 .../old.dbscheme                              | 547 ++++++++++++++++++
 .../upgrade.properties                        |   3 +
 9 files changed, 2220 insertions(+), 5 deletions(-)
 create mode 100644 go/downgrades/a58b81b1b4c4cccc8ca11731c1db86622f33af57/go.dbscheme
 create mode 100644 go/downgrades/a58b81b1b4c4cccc8ca11731c1db86622f33af57/old.dbscheme
 create mode 100644 go/downgrades/a58b81b1b4c4cccc8ca11731c1db86622f33af57/upgrade.properties
 create mode 100644 go/ql/lib/upgrades/90fa7836e0a239f69bbebffcf342e92c240d54bc/exprs.ql
 create mode 100644 go/ql/lib/upgrades/90fa7836e0a239f69bbebffcf342e92c240d54bc/go.dbscheme
 create mode 100644 go/ql/lib/upgrades/90fa7836e0a239f69bbebffcf342e92c240d54bc/old.dbscheme
 create mode 100644 go/ql/lib/upgrades/90fa7836e0a239f69bbebffcf342e92c240d54bc/upgrade.properties

diff --git a/go/downgrades/a58b81b1b4c4cccc8ca11731c1db86622f33af57/go.dbscheme b/go/downgrades/a58b81b1b4c4cccc8ca11731c1db86622f33af57/go.dbscheme
new file mode 100644
index 00000000000..90fa7836e0a
--- /dev/null
+++ b/go/downgrades/a58b81b1b4c4cccc8ca11731c1db86622f33af57/go.dbscheme
@@ -0,0 +1,547 @@
+/** Auto-generated dbscheme; do not edit. */
+
+
+/** Duplicate code **/
+
+duplicateCode(
+  unique int id : @duplication,
+  varchar(900) relativePath : string ref,
+  int equivClass : int ref);
+
+similarCode(
+  unique int id : @similarity,
+  varchar(900) relativePath : string ref,
+  int equivClass : int ref);
+
+@duplication_or_similarity = @duplication | @similarity;
+
+tokens(
+  int id : @duplication_or_similarity ref,
+  int offset : int ref,
+  int beginLine : int ref,
+  int beginColumn : int ref,
+  int endLine : int ref,
+  int endColumn : int ref);
+
+/** External data **/
+
+externalData(
+  int id : @externalDataElement,
+  varchar(900) path : string ref,
+  int column: int ref,
+  varchar(900) value : string ref
+);
+
+snapshotDate(unique date snapshotDate : date ref);
+
+sourceLocationPrefix(varchar(900) prefix : string ref);
+
+
+/*
+ * XML Files
+ */
+
+xmlEncoding(
+  unique int id: @file ref,
+  string encoding: string ref
+);
+
+xmlDTDs(
+  unique int id: @xmldtd,
+  string root: string ref,
+  string publicId: string ref,
+  string systemId: string ref,
+  int fileid: @file ref
+);
+
+xmlElements(
+  unique int id: @xmlelement,
+  string name: string ref,
+  int parentid: @xmlparent ref,
+  int idx: int ref,
+  int fileid: @file ref
+);
+
+xmlAttrs(
+  unique int id: @xmlattribute,
+  int elementid: @xmlelement ref,
+  string name: string ref,
+  string value: string ref,
+  int idx: int ref,
+  int fileid: @file ref
+);
+
+xmlNs(
+  int id: @xmlnamespace,
+  string prefixName: string ref,
+  string URI: string ref,
+  int fileid: @file ref
+);
+
+xmlHasNs(
+  int elementId: @xmlnamespaceable ref,
+  int nsId: @xmlnamespace ref,
+  int fileid: @file ref
+);
+
+xmlComments(
+  unique int id: @xmlcomment,
+  string text: string ref,
+  int parentid: @xmlparent ref,
+  int fileid: @file ref
+);
+
+xmlChars(
+  unique int id: @xmlcharacters,
+  string text: string ref,
+  int parentid: @xmlparent ref,
+  int idx: int ref,
+  int isCDATA: int ref,
+  int fileid: @file ref
+);
+
+@xmlparent = @file | @xmlelement;
+@xmlnamespaceable = @xmlelement | @xmlattribute;
+
+xmllocations(
+  int xmlElement: @xmllocatable ref,
+  int location: @location_default ref
+);
+
+@xmllocatable = @xmlcharacters | @xmlelement | @xmlcomment | @xmlattribute | @xmldtd | @file | @xmlnamespace;
+
+compilations(unique int id: @compilation, string cwd: string ref);
+
+#keyset[id, num]
+compilation_args(int id: @compilation ref, int num: int ref, string arg: string ref);
+
+#keyset[id, num, kind]
+compilation_time(int id: @compilation ref, int num: int ref, int kind: int ref, float secs: float ref);
+
+diagnostic_for(unique int diagnostic: @diagnostic ref, int compilation: @compilation ref, int file_number: int ref, int file_number_diagnostic_number: int ref);
+
+compilation_finished(unique int id: @compilation ref, float cpu_seconds: float ref, float elapsed_seconds: float ref);
+
+#keyset[id, num]
+compilation_compiling_files(int id: @compilation ref, int num: int ref, int file: @file ref);
+
+diagnostics(unique int id: @diagnostic, int severity: int ref, string error_tag: string ref, string error_message: string ref,
+            string full_error_message: string ref, int location: @location ref);
+
+locations_default(unique int id: @location_default, int file: @file ref, int beginLine: int ref, int beginColumn: int ref,
+                  int endLine: int ref, int endColumn: int ref);
+
+numlines(int element_id: @sourceline ref, int num_lines: int ref, int num_code: int ref, int num_comment: int ref);
+
+files(unique int id: @file, string name: string ref);
+
+folders(unique int id: @folder, string name: string ref);
+
+containerparent(int parent: @container ref, unique int child: @container ref);
+
+has_location(unique int locatable: @locatable ref, int location: @location ref);
+
+#keyset[parent, idx]
+comment_groups(unique int id: @comment_group, int parent: @file ref, int idx: int ref);
+
+comments(unique int id: @comment, int kind: int ref, int parent: @comment_group ref, int idx: int ref, string text: string ref);
+
+doc_comments(unique int node: @documentable ref, int comment: @comment_group ref);
+
+#keyset[parent, idx]
+exprs(unique int id: @expr, int kind: int ref, int parent: @exprparent ref, int idx: int ref);
+
+literals(unique int expr: @expr ref, string value: string ref, string raw: string ref);
+
+constvalues(unique int expr: @expr ref, string value: string ref, string exact: string ref);
+
+fields(unique int id: @field, int parent: @fieldparent ref, int idx: int ref);
+
+typeparamdecls(unique int id: @typeparamdecl, int parent: @typeparamdeclparent ref, int idx: int ref);
+
+#keyset[parent, idx]
+stmts(unique int id: @stmt, int kind: int ref, int parent: @stmtparent ref, int idx: int ref);
+
+#keyset[parent, idx]
+decls(unique int id: @decl, int kind: int ref, int parent: @declparent ref, int idx: int ref);
+
+#keyset[parent, idx]
+specs(unique int id: @spec, int kind: int ref, int parent: @gendecl ref, int idx: int ref);
+
+scopes(unique int id: @scope, int kind: int ref);
+
+scopenesting(unique int inner: @scope ref, int outer: @scope ref);
+
+scopenodes(unique int node: @scopenode ref, int scope: @localscope ref);
+
+objects(unique int id: @object, int kind: int ref, string name: string ref);
+
+objectscopes(unique int object: @object ref, int scope: @scope ref);
+
+objecttypes(unique int object: @object ref, int tp: @type ref);
+
+methodreceivers(unique int method: @object ref, int receiver: @object ref);
+
+fieldstructs(unique int field: @object ref, int struct: @structtype ref);
+
+methodhosts(int method: @object ref, int host: @namedtype ref);
+
+defs(int ident: @ident ref, int object: @object ref);
+
+uses(int ident: @ident ref, int object: @object ref);
+
+types(unique int id: @type, int kind: int ref);
+
+type_of(unique int expr: @expr ref, int tp: @type ref);
+
+typename(unique int tp: @type ref, string name: string ref);
+
+key_type(unique int map: @maptype ref, int tp: @type ref);
+
+element_type(unique int container: @containertype ref, int tp: @type ref);
+
+base_type(unique int ptr: @pointertype ref, int tp: @type ref);
+
+underlying_type(unique int named: @namedtype ref, int tp: @type ref);
+
+#keyset[parent, index]
+component_types(int parent: @compositetype ref, int index: int ref, string name: string ref, int tp: @type ref);
+
+array_length(unique int tp: @arraytype ref, string len: string ref);
+
+type_objects(unique int tp: @type ref, int object: @object ref);
+
+packages(unique int id: @package, string name: string ref, string path: string ref, int scope: @packagescope ref);
+
+#keyset[parent, idx]
+modexprs(unique int id: @modexpr, int kind: int ref, int parent: @modexprparent ref, int idx: int ref);
+
+#keyset[parent, idx]
+modtokens(string token: string ref, int parent: @modexpr ref, int idx: int ref);
+
+#keyset[package, idx]
+errors(unique int id: @error, int kind: int ref, string msg: string ref, string rawpos: string ref,
+       string file: string ref, int line: int ref, int col: int ref, int package: @package ref, int idx: int ref);
+
+has_ellipsis(int id: @callorconversionexpr ref);
+
+variadic(int id: @signaturetype ref);
+
+#keyset[parent, idx]
+typeparam(unique int tp: @typeparamtype ref, string name: string ref, int bound: @compositetype ref,
+          int parent: @typeparamparentobject ref, int idx: int ref);
+
+@container = @file | @folder;
+
+@locatable = @xmllocatable | @node | @localscope;
+
+@node = @documentable | @exprparent | @modexprparent | @fieldparent | @stmtparent | @declparent | @typeparamdeclparent
+      | @scopenode | @comment_group | @comment;
+
+@documentable = @file | @field | @typeparamdecl | @spec | @gendecl | @funcdecl | @modexpr;
+
+@exprparent = @funcdef | @file | @expr | @field | @stmt | @decl | @typeparamdecl | @spec;
+
+@modexprparent = @file | @modexpr;
+
+@fieldparent = @decl | @structtypeexpr | @functypeexpr | @interfacetypeexpr;
+
+@stmtparent = @funcdef | @stmt | @decl;
+
+@declparent = @file | @declstmt;
+
+@typeparamdeclparent = @funcdecl | @typespec;
+
+@funcdef = @funclit | @funcdecl;
+
+@scopenode = @file | @functypeexpr | @blockstmt | @ifstmt | @caseclause | @switchstmt | @commclause | @loopstmt;
+
+@location = @location_default;
+
+@sourceline = @locatable;
+
+case @comment.kind of
+  0 = @slashslashcomment
+| 1 = @slashstarcomment;
+
+case @expr.kind of
+  0 = @badexpr
+| 1 = @ident
+| 2 = @ellipsis
+| 3 = @intlit
+| 4 = @floatlit
+| 5 = @imaglit
+| 6 = @charlit
+| 7 = @stringlit
+| 8 = @funclit
+| 9 = @compositelit
+| 10 = @parenexpr
+| 11 = @selectorexpr
+| 12 = @indexexpr
+| 13 = @genericfunctioninstantiationexpr
+| 14 = @generictypeinstantiationexpr
+| 15 = @sliceexpr
+| 16 = @typeassertexpr
+| 17 = @callorconversionexpr
+| 18 = @starexpr
+| 19 = @keyvalueexpr
+| 20 = @arraytypeexpr
+| 21 = @structtypeexpr
+| 22 = @functypeexpr
+| 23 = @interfacetypeexpr
+| 24 = @maptypeexpr
+| 25 = @typesetliteralexpr
+| 26 = @plusexpr
+| 27 = @minusexpr
+| 28 = @notexpr
+| 29 = @complementexpr
+| 30 = @derefexpr
+| 31 = @addressexpr
+| 32 = @arrowexpr
+| 33 = @lorexpr
+| 34 = @landexpr
+| 35 = @eqlexpr
+| 36 = @neqexpr
+| 37 = @lssexpr
+| 38 = @leqexpr
+| 39 = @gtrexpr
+| 40 = @geqexpr
+| 41 = @addexpr
+| 42 = @subexpr
+| 43 = @orexpr
+| 44 = @xorexpr
+| 45 = @mulexpr
+| 46 = @quoexpr
+| 47 = @remexpr
+| 48 = @shlexpr
+| 49 = @shrexpr
+| 50 = @andexpr
+| 51 = @andnotexpr
+| 52 = @sendchantypeexpr
+| 53 = @recvchantypeexpr
+| 54 = @sendrcvchantypeexpr
+| 55 = @errorexpr;
+
+@basiclit = @intlit | @floatlit | @imaglit | @charlit | @stringlit;
+
+@operatorexpr = @logicalexpr | @arithmeticexpr | @bitwiseexpr | @unaryexpr | @binaryexpr;
+
+@logicalexpr = @logicalunaryexpr | @logicalbinaryexpr;
+
+@arithmeticexpr = @arithmeticunaryexpr | @arithmeticbinaryexpr;
+
+@bitwiseexpr = @bitwiseunaryexpr | @bitwisebinaryexpr;
+
+@unaryexpr = @logicalunaryexpr | @bitwiseunaryexpr | @arithmeticunaryexpr | @derefexpr | @addressexpr | @arrowexpr;
+
+@logicalunaryexpr = @notexpr;
+
+@bitwiseunaryexpr = @complementexpr;
+
+@arithmeticunaryexpr = @plusexpr | @minusexpr;
+
+@binaryexpr = @logicalbinaryexpr | @bitwisebinaryexpr | @arithmeticbinaryexpr | @comparison;
+
+@logicalbinaryexpr = @lorexpr | @landexpr;
+
+@bitwisebinaryexpr = @shiftexpr | @orexpr | @xorexpr | @andexpr | @andnotexpr;
+
+@arithmeticbinaryexpr = @addexpr | @subexpr | @mulexpr | @quoexpr | @remexpr;
+
+@shiftexpr = @shlexpr | @shrexpr;
+
+@comparison = @equalitytest | @relationalcomparison;
+
+@equalitytest = @eqlexpr | @neqexpr;
+
+@relationalcomparison = @lssexpr | @leqexpr | @gtrexpr | @geqexpr;
+
+@chantypeexpr = @sendchantypeexpr | @recvchantypeexpr | @sendrcvchantypeexpr;
+
+case @stmt.kind of
+  0 = @badstmt
+| 1 = @declstmt
+| 2 = @emptystmt
+| 3 = @labeledstmt
+| 4 = @exprstmt
+| 5 = @sendstmt
+| 6 = @incstmt
+| 7 = @decstmt
+| 8 = @gostmt
+| 9 = @deferstmt
+| 10 = @returnstmt
+| 11 = @breakstmt
+| 12 = @continuestmt
+| 13 = @gotostmt
+| 14 = @fallthroughstmt
+| 15 = @blockstmt
+| 16 = @ifstmt
+| 17 = @caseclause
+| 18 = @exprswitchstmt
+| 19 = @typeswitchstmt
+| 20 = @commclause
+| 21 = @selectstmt
+| 22 = @forstmt
+| 23 = @rangestmt
+| 24 = @assignstmt
+| 25 = @definestmt
+| 26 = @addassignstmt
+| 27 = @subassignstmt
+| 28 = @mulassignstmt
+| 29 = @quoassignstmt
+| 30 = @remassignstmt
+| 31 = @andassignstmt
+| 32 = @orassignstmt
+| 33 = @xorassignstmt
+| 34 = @shlassignstmt
+| 35 = @shrassignstmt
+| 36 = @andnotassignstmt;
+
+@incdecstmt = @incstmt | @decstmt;
+
+@assignment = @simpleassignstmt | @compoundassignstmt;
+
+@simpleassignstmt = @assignstmt | @definestmt;
+
+@compoundassignstmt = @addassignstmt | @subassignstmt | @mulassignstmt | @quoassignstmt | @remassignstmt
+                    | @andassignstmt | @orassignstmt | @xorassignstmt | @shlassignstmt | @shrassignstmt | @andnotassignstmt;
+
+@branchstmt = @breakstmt | @continuestmt | @gotostmt | @fallthroughstmt;
+
+@switchstmt = @exprswitchstmt | @typeswitchstmt;
+
+@loopstmt = @forstmt | @rangestmt;
+
+case @decl.kind of
+  0 = @baddecl
+| 1 = @importdecl
+| 2 = @constdecl
+| 3 = @typedecl
+| 4 = @vardecl
+| 5 = @funcdecl;
+
+@gendecl = @importdecl | @constdecl | @typedecl | @vardecl;
+
+case @spec.kind of
+  0 = @importspec
+| 1 = @valuespec
+| 2 = @typedefspec
+| 3 = @aliasspec;
+
+@typespec = @typedefspec | @aliasspec;
+
+case @object.kind of
+  0 = @pkgobject
+| 1 = @decltypeobject
+| 2 = @builtintypeobject
+| 3 = @declconstobject
+| 4 = @builtinconstobject
+| 5 = @declvarobject
+| 6 = @declfunctionobject
+| 7 = @builtinfunctionobject
+| 8 = @labelobject;
+
+@typeparamparentobject = @decltypeobject | @declfunctionobject;
+
+@declobject = @decltypeobject | @declconstobject | @declvarobject | @declfunctionobject;
+
+@builtinobject = @builtintypeobject | @builtinconstobject | @builtinfunctionobject;
+
+@typeobject = @decltypeobject | @builtintypeobject;
+
+@valueobject = @constobject | @varobject | @functionobject;
+
+@constobject = @declconstobject | @builtinconstobject;
+
+@varobject = @declvarobject;
+
+@functionobject = @declfunctionobject | @builtinfunctionobject;
+
+case @scope.kind of
+  0 = @universescope
+| 1 = @packagescope
+| 2 = @localscope;
+
+case @type.kind of
+  0 = @invalidtype
+| 1 = @boolexprtype
+| 2 = @inttype
+| 3 = @int8type
+| 4 = @int16type
+| 5 = @int32type
+| 6 = @int64type
+| 7 = @uinttype
+| 8 = @uint8type
+| 9 = @uint16type
+| 10 = @uint32type
+| 11 = @uint64type
+| 12 = @uintptrtype
+| 13 = @float32type
+| 14 = @float64type
+| 15 = @complex64type
+| 16 = @complex128type
+| 17 = @stringexprtype
+| 18 = @unsafepointertype
+| 19 = @boolliteraltype
+| 20 = @intliteraltype
+| 21 = @runeliteraltype
+| 22 = @floatliteraltype
+| 23 = @complexliteraltype
+| 24 = @stringliteraltype
+| 25 = @nilliteraltype
+| 26 = @typeparamtype
+| 27 = @arraytype
+| 28 = @slicetype
+| 29 = @structtype
+| 30 = @pointertype
+| 31 = @interfacetype
+| 32 = @tupletype
+| 33 = @signaturetype
+| 34 = @maptype
+| 35 = @sendchantype
+| 36 = @recvchantype
+| 37 = @sendrcvchantype
+| 38 = @namedtype
+| 39 = @typesetliteraltype;
+
+@basictype = @booltype | @numerictype | @stringtype | @literaltype | @invalidtype | @unsafepointertype;
+
+@booltype = @boolexprtype | @boolliteraltype;
+
+@numerictype = @integertype | @floattype | @complextype;
+
+@integertype = @signedintegertype | @unsignedintegertype;
+
+@signedintegertype = @inttype | @int8type | @int16type | @int32type | @int64type | @intliteraltype | @runeliteraltype;
+
+@unsignedintegertype = @uinttype | @uint8type | @uint16type | @uint32type | @uint64type | @uintptrtype;
+
+@floattype = @float32type | @float64type | @floatliteraltype;
+
+@complextype = @complex64type | @complex128type | @complexliteraltype;
+
+@stringtype = @stringexprtype | @stringliteraltype;
+
+@literaltype = @boolliteraltype | @intliteraltype | @runeliteraltype | @floatliteraltype | @complexliteraltype
+             | @stringliteraltype | @nilliteraltype;
+
+@compositetype = @typeparamtype | @containertype | @structtype | @pointertype | @interfacetype | @tupletype
+               | @signaturetype | @namedtype | @typesetliteraltype;
+
+@containertype = @arraytype | @slicetype | @maptype | @chantype;
+
+@chantype = @sendchantype | @recvchantype | @sendrcvchantype;
+
+case @modexpr.kind of
+  0 = @modcommentblock
+| 1 = @modline
+| 2 = @modlineblock
+| 3 = @modlparen
+| 4 = @modrparen;
+
+case @error.kind of
+  0 = @unknownerror
+| 1 = @listerror
+| 2 = @parseerror
+| 3 = @typeerror;
+
diff --git a/go/downgrades/a58b81b1b4c4cccc8ca11731c1db86622f33af57/old.dbscheme b/go/downgrades/a58b81b1b4c4cccc8ca11731c1db86622f33af57/old.dbscheme
new file mode 100644
index 00000000000..a58b81b1b4c
--- /dev/null
+++ b/go/downgrades/a58b81b1b4c4cccc8ca11731c1db86622f33af57/old.dbscheme
@@ -0,0 +1,546 @@
+/** Auto-generated dbscheme; do not edit. */
+
+
+/** Duplicate code **/
+
+duplicateCode(
+  unique int id : @duplication,
+  varchar(900) relativePath : string ref,
+  int equivClass : int ref);
+
+similarCode(
+  unique int id : @similarity,
+  varchar(900) relativePath : string ref,
+  int equivClass : int ref);
+
+@duplication_or_similarity = @duplication | @similarity;
+
+tokens(
+  int id : @duplication_or_similarity ref,
+  int offset : int ref,
+  int beginLine : int ref,
+  int beginColumn : int ref,
+  int endLine : int ref,
+  int endColumn : int ref);
+
+/** External data **/
+
+externalData(
+  int id : @externalDataElement,
+  varchar(900) path : string ref,
+  int column: int ref,
+  varchar(900) value : string ref
+);
+
+snapshotDate(unique date snapshotDate : date ref);
+
+sourceLocationPrefix(varchar(900) prefix : string ref);
+
+
+/*
+ * XML Files
+ */
+
+xmlEncoding(
+  unique int id: @file ref,
+  string encoding: string ref
+);
+
+xmlDTDs(
+  unique int id: @xmldtd,
+  string root: string ref,
+  string publicId: string ref,
+  string systemId: string ref,
+  int fileid: @file ref
+);
+
+xmlElements(
+  unique int id: @xmlelement,
+  string name: string ref,
+  int parentid: @xmlparent ref,
+  int idx: int ref,
+  int fileid: @file ref
+);
+
+xmlAttrs(
+  unique int id: @xmlattribute,
+  int elementid: @xmlelement ref,
+  string name: string ref,
+  string value: string ref,
+  int idx: int ref,
+  int fileid: @file ref
+);
+
+xmlNs(
+  int id: @xmlnamespace,
+  string prefixName: string ref,
+  string URI: string ref,
+  int fileid: @file ref
+);
+
+xmlHasNs(
+  int elementId: @xmlnamespaceable ref,
+  int nsId: @xmlnamespace ref,
+  int fileid: @file ref
+);
+
+xmlComments(
+  unique int id: @xmlcomment,
+  string text: string ref,
+  int parentid: @xmlparent ref,
+  int fileid: @file ref
+);
+
+xmlChars(
+  unique int id: @xmlcharacters,
+  string text: string ref,
+  int parentid: @xmlparent ref,
+  int idx: int ref,
+  int isCDATA: int ref,
+  int fileid: @file ref
+);
+
+@xmlparent = @file | @xmlelement;
+@xmlnamespaceable = @xmlelement | @xmlattribute;
+
+xmllocations(
+  int xmlElement: @xmllocatable ref,
+  int location: @location_default ref
+);
+
+@xmllocatable = @xmlcharacters | @xmlelement | @xmlcomment | @xmlattribute | @xmldtd | @file | @xmlnamespace;
+
+compilations(unique int id: @compilation, string cwd: string ref);
+
+#keyset[id, num]
+compilation_args(int id: @compilation ref, int num: int ref, string arg: string ref);
+
+#keyset[id, num, kind]
+compilation_time(int id: @compilation ref, int num: int ref, int kind: int ref, float secs: float ref);
+
+diagnostic_for(unique int diagnostic: @diagnostic ref, int compilation: @compilation ref, int file_number: int ref, int file_number_diagnostic_number: int ref);
+
+compilation_finished(unique int id: @compilation ref, float cpu_seconds: float ref, float elapsed_seconds: float ref);
+
+#keyset[id, num]
+compilation_compiling_files(int id: @compilation ref, int num: int ref, int file: @file ref);
+
+diagnostics(unique int id: @diagnostic, int severity: int ref, string error_tag: string ref, string error_message: string ref,
+            string full_error_message: string ref, int location: @location ref);
+
+locations_default(unique int id: @location_default, int file: @file ref, int beginLine: int ref, int beginColumn: int ref,
+                  int endLine: int ref, int endColumn: int ref);
+
+numlines(int element_id: @sourceline ref, int num_lines: int ref, int num_code: int ref, int num_comment: int ref);
+
+files(unique int id: @file, string name: string ref);
+
+folders(unique int id: @folder, string name: string ref);
+
+containerparent(int parent: @container ref, unique int child: @container ref);
+
+has_location(unique int locatable: @locatable ref, int location: @location ref);
+
+#keyset[parent, idx]
+comment_groups(unique int id: @comment_group, int parent: @file ref, int idx: int ref);
+
+comments(unique int id: @comment, int kind: int ref, int parent: @comment_group ref, int idx: int ref, string text: string ref);
+
+doc_comments(unique int node: @documentable ref, int comment: @comment_group ref);
+
+#keyset[parent, idx]
+exprs(unique int id: @expr, int kind: int ref, int parent: @exprparent ref, int idx: int ref);
+
+literals(unique int expr: @expr ref, string value: string ref, string raw: string ref);
+
+constvalues(unique int expr: @expr ref, string value: string ref, string exact: string ref);
+
+fields(unique int id: @field, int parent: @fieldparent ref, int idx: int ref);
+
+typeparamdecls(unique int id: @typeparamdecl, int parent: @typeparamdeclparent ref, int idx: int ref);
+
+#keyset[parent, idx]
+stmts(unique int id: @stmt, int kind: int ref, int parent: @stmtparent ref, int idx: int ref);
+
+#keyset[parent, idx]
+decls(unique int id: @decl, int kind: int ref, int parent: @declparent ref, int idx: int ref);
+
+#keyset[parent, idx]
+specs(unique int id: @spec, int kind: int ref, int parent: @gendecl ref, int idx: int ref);
+
+scopes(unique int id: @scope, int kind: int ref);
+
+scopenesting(unique int inner: @scope ref, int outer: @scope ref);
+
+scopenodes(unique int node: @scopenode ref, int scope: @localscope ref);
+
+objects(unique int id: @object, int kind: int ref, string name: string ref);
+
+objectscopes(unique int object: @object ref, int scope: @scope ref);
+
+objecttypes(unique int object: @object ref, int tp: @type ref);
+
+methodreceivers(unique int method: @object ref, int receiver: @object ref);
+
+fieldstructs(unique int field: @object ref, int struct: @structtype ref);
+
+methodhosts(int method: @object ref, int host: @namedtype ref);
+
+defs(int ident: @ident ref, int object: @object ref);
+
+uses(int ident: @ident ref, int object: @object ref);
+
+types(unique int id: @type, int kind: int ref);
+
+type_of(unique int expr: @expr ref, int tp: @type ref);
+
+typename(unique int tp: @type ref, string name: string ref);
+
+key_type(unique int map: @maptype ref, int tp: @type ref);
+
+element_type(unique int container: @containertype ref, int tp: @type ref);
+
+base_type(unique int ptr: @pointertype ref, int tp: @type ref);
+
+underlying_type(unique int named: @namedtype ref, int tp: @type ref);
+
+#keyset[parent, index]
+component_types(int parent: @compositetype ref, int index: int ref, string name: string ref, int tp: @type ref);
+
+array_length(unique int tp: @arraytype ref, string len: string ref);
+
+type_objects(unique int tp: @type ref, int object: @object ref);
+
+packages(unique int id: @package, string name: string ref, string path: string ref, int scope: @packagescope ref);
+
+#keyset[parent, idx]
+modexprs(unique int id: @modexpr, int kind: int ref, int parent: @modexprparent ref, int idx: int ref);
+
+#keyset[parent, idx]
+modtokens(string token: string ref, int parent: @modexpr ref, int idx: int ref);
+
+#keyset[package, idx]
+errors(unique int id: @error, int kind: int ref, string msg: string ref, string rawpos: string ref,
+       string file: string ref, int line: int ref, int col: int ref, int package: @package ref, int idx: int ref);
+
+has_ellipsis(int id: @callorconversionexpr ref);
+
+variadic(int id: @signaturetype ref);
+
+#keyset[parent, idx]
+typeparam(unique int tp: @typeparamtype ref, string name: string ref, int bound: @compositetype ref,
+          int parent: @typeparamparentobject ref, int idx: int ref);
+
+@container = @file | @folder;
+
+@locatable = @xmllocatable | @node | @localscope;
+
+@node = @documentable | @exprparent | @modexprparent | @fieldparent | @stmtparent | @declparent | @typeparamdeclparent
+      | @scopenode | @comment_group | @comment;
+
+@documentable = @file | @field | @typeparamdecl | @spec | @gendecl | @funcdecl | @modexpr;
+
+@exprparent = @funcdef | @file | @expr | @field | @stmt | @decl | @typeparamdecl | @spec;
+
+@modexprparent = @file | @modexpr;
+
+@fieldparent = @decl | @structtypeexpr | @functypeexpr | @interfacetypeexpr;
+
+@stmtparent = @funcdef | @stmt | @decl;
+
+@declparent = @file | @declstmt;
+
+@typeparamdeclparent = @funcdecl | @typespec;
+
+@funcdef = @funclit | @funcdecl;
+
+@scopenode = @file | @functypeexpr | @blockstmt | @ifstmt | @caseclause | @switchstmt | @commclause | @loopstmt;
+
+@location = @location_default;
+
+@sourceline = @locatable;
+
+case @comment.kind of
+  0 = @slashslashcomment
+| 1 = @slashstarcomment;
+
+case @expr.kind of
+  0 = @badexpr
+| 1 = @ident
+| 2 = @ellipsis
+| 3 = @intlit
+| 4 = @floatlit
+| 5 = @imaglit
+| 6 = @charlit
+| 7 = @stringlit
+| 8 = @funclit
+| 9 = @compositelit
+| 10 = @parenexpr
+| 11 = @selectorexpr
+| 12 = @indexexpr
+| 13 = @genericfunctioninstantiationexpr
+| 14 = @generictypeinstantiationexpr
+| 15 = @sliceexpr
+| 16 = @typeassertexpr
+| 17 = @callorconversionexpr
+| 18 = @starexpr
+| 19 = @keyvalueexpr
+| 20 = @arraytypeexpr
+| 21 = @structtypeexpr
+| 22 = @functypeexpr
+| 23 = @interfacetypeexpr
+| 24 = @maptypeexpr
+| 25 = @typesetliteralexpr
+| 26 = @plusexpr
+| 27 = @minusexpr
+| 28 = @notexpr
+| 29 = @complementexpr
+| 30 = @derefexpr
+| 31 = @addressexpr
+| 32 = @arrowexpr
+| 33 = @lorexpr
+| 34 = @landexpr
+| 35 = @eqlexpr
+| 36 = @neqexpr
+| 37 = @lssexpr
+| 38 = @leqexpr
+| 39 = @gtrexpr
+| 40 = @geqexpr
+| 41 = @addexpr
+| 42 = @subexpr
+| 43 = @orexpr
+| 44 = @xorexpr
+| 45 = @mulexpr
+| 46 = @quoexpr
+| 47 = @remexpr
+| 48 = @shlexpr
+| 49 = @shrexpr
+| 50 = @andexpr
+| 51 = @andnotexpr
+| 52 = @sendchantypeexpr
+| 53 = @recvchantypeexpr
+| 54 = @sendrcvchantypeexpr;
+
+@basiclit = @intlit | @floatlit | @imaglit | @charlit | @stringlit;
+
+@operatorexpr = @logicalexpr | @arithmeticexpr | @bitwiseexpr | @unaryexpr | @binaryexpr;
+
+@logicalexpr = @logicalunaryexpr | @logicalbinaryexpr;
+
+@arithmeticexpr = @arithmeticunaryexpr | @arithmeticbinaryexpr;
+
+@bitwiseexpr = @bitwiseunaryexpr | @bitwisebinaryexpr;
+
+@unaryexpr = @logicalunaryexpr | @bitwiseunaryexpr | @arithmeticunaryexpr | @derefexpr | @addressexpr | @arrowexpr;
+
+@logicalunaryexpr = @notexpr;
+
+@bitwiseunaryexpr = @complementexpr;
+
+@arithmeticunaryexpr = @plusexpr | @minusexpr;
+
+@binaryexpr = @logicalbinaryexpr | @bitwisebinaryexpr | @arithmeticbinaryexpr | @comparison;
+
+@logicalbinaryexpr = @lorexpr | @landexpr;
+
+@bitwisebinaryexpr = @shiftexpr | @orexpr | @xorexpr | @andexpr | @andnotexpr;
+
+@arithmeticbinaryexpr = @addexpr | @subexpr | @mulexpr | @quoexpr | @remexpr;
+
+@shiftexpr = @shlexpr | @shrexpr;
+
+@comparison = @equalitytest | @relationalcomparison;
+
+@equalitytest = @eqlexpr | @neqexpr;
+
+@relationalcomparison = @lssexpr | @leqexpr | @gtrexpr | @geqexpr;
+
+@chantypeexpr = @sendchantypeexpr | @recvchantypeexpr | @sendrcvchantypeexpr;
+
+case @stmt.kind of
+  0 = @badstmt
+| 1 = @declstmt
+| 2 = @emptystmt
+| 3 = @labeledstmt
+| 4 = @exprstmt
+| 5 = @sendstmt
+| 6 = @incstmt
+| 7 = @decstmt
+| 8 = @gostmt
+| 9 = @deferstmt
+| 10 = @returnstmt
+| 11 = @breakstmt
+| 12 = @continuestmt
+| 13 = @gotostmt
+| 14 = @fallthroughstmt
+| 15 = @blockstmt
+| 16 = @ifstmt
+| 17 = @caseclause
+| 18 = @exprswitchstmt
+| 19 = @typeswitchstmt
+| 20 = @commclause
+| 21 = @selectstmt
+| 22 = @forstmt
+| 23 = @rangestmt
+| 24 = @assignstmt
+| 25 = @definestmt
+| 26 = @addassignstmt
+| 27 = @subassignstmt
+| 28 = @mulassignstmt
+| 29 = @quoassignstmt
+| 30 = @remassignstmt
+| 31 = @andassignstmt
+| 32 = @orassignstmt
+| 33 = @xorassignstmt
+| 34 = @shlassignstmt
+| 35 = @shrassignstmt
+| 36 = @andnotassignstmt;
+
+@incdecstmt = @incstmt | @decstmt;
+
+@assignment = @simpleassignstmt | @compoundassignstmt;
+
+@simpleassignstmt = @assignstmt | @definestmt;
+
+@compoundassignstmt = @addassignstmt | @subassignstmt | @mulassignstmt | @quoassignstmt | @remassignstmt
+                    | @andassignstmt | @orassignstmt | @xorassignstmt | @shlassignstmt | @shrassignstmt | @andnotassignstmt;
+
+@branchstmt = @breakstmt | @continuestmt | @gotostmt | @fallthroughstmt;
+
+@switchstmt = @exprswitchstmt | @typeswitchstmt;
+
+@loopstmt = @forstmt | @rangestmt;
+
+case @decl.kind of
+  0 = @baddecl
+| 1 = @importdecl
+| 2 = @constdecl
+| 3 = @typedecl
+| 4 = @vardecl
+| 5 = @funcdecl;
+
+@gendecl = @importdecl | @constdecl | @typedecl | @vardecl;
+
+case @spec.kind of
+  0 = @importspec
+| 1 = @valuespec
+| 2 = @typedefspec
+| 3 = @aliasspec;
+
+@typespec = @typedefspec | @aliasspec;
+
+case @object.kind of
+  0 = @pkgobject
+| 1 = @decltypeobject
+| 2 = @builtintypeobject
+| 3 = @declconstobject
+| 4 = @builtinconstobject
+| 5 = @declvarobject
+| 6 = @declfunctionobject
+| 7 = @builtinfunctionobject
+| 8 = @labelobject;
+
+@typeparamparentobject = @decltypeobject | @declfunctionobject;
+
+@declobject = @decltypeobject | @declconstobject | @declvarobject | @declfunctionobject;
+
+@builtinobject = @builtintypeobject | @builtinconstobject | @builtinfunctionobject;
+
+@typeobject = @decltypeobject | @builtintypeobject;
+
+@valueobject = @constobject | @varobject | @functionobject;
+
+@constobject = @declconstobject | @builtinconstobject;
+
+@varobject = @declvarobject;
+
+@functionobject = @declfunctionobject | @builtinfunctionobject;
+
+case @scope.kind of
+  0 = @universescope
+| 1 = @packagescope
+| 2 = @localscope;
+
+case @type.kind of
+  0 = @invalidtype
+| 1 = @boolexprtype
+| 2 = @inttype
+| 3 = @int8type
+| 4 = @int16type
+| 5 = @int32type
+| 6 = @int64type
+| 7 = @uinttype
+| 8 = @uint8type
+| 9 = @uint16type
+| 10 = @uint32type
+| 11 = @uint64type
+| 12 = @uintptrtype
+| 13 = @float32type
+| 14 = @float64type
+| 15 = @complex64type
+| 16 = @complex128type
+| 17 = @stringexprtype
+| 18 = @unsafepointertype
+| 19 = @boolliteraltype
+| 20 = @intliteraltype
+| 21 = @runeliteraltype
+| 22 = @floatliteraltype
+| 23 = @complexliteraltype
+| 24 = @stringliteraltype
+| 25 = @nilliteraltype
+| 26 = @typeparamtype
+| 27 = @arraytype
+| 28 = @slicetype
+| 29 = @structtype
+| 30 = @pointertype
+| 31 = @interfacetype
+| 32 = @tupletype
+| 33 = @signaturetype
+| 34 = @maptype
+| 35 = @sendchantype
+| 36 = @recvchantype
+| 37 = @sendrcvchantype
+| 38 = @namedtype
+| 39 = @typesetliteraltype;
+
+@basictype = @booltype | @numerictype | @stringtype | @literaltype | @invalidtype | @unsafepointertype;
+
+@booltype = @boolexprtype | @boolliteraltype;
+
+@numerictype = @integertype | @floattype | @complextype;
+
+@integertype = @signedintegertype | @unsignedintegertype;
+
+@signedintegertype = @inttype | @int8type | @int16type | @int32type | @int64type | @intliteraltype | @runeliteraltype;
+
+@unsignedintegertype = @uinttype | @uint8type | @uint16type | @uint32type | @uint64type | @uintptrtype;
+
+@floattype = @float32type | @float64type | @floatliteraltype;
+
+@complextype = @complex64type | @complex128type | @complexliteraltype;
+
+@stringtype = @stringexprtype | @stringliteraltype;
+
+@literaltype = @boolliteraltype | @intliteraltype | @runeliteraltype | @floatliteraltype | @complexliteraltype
+             | @stringliteraltype | @nilliteraltype;
+
+@compositetype = @typeparamtype | @containertype | @structtype | @pointertype | @interfacetype | @tupletype
+               | @signaturetype | @namedtype | @typesetliteraltype;
+
+@containertype = @arraytype | @slicetype | @maptype | @chantype;
+
+@chantype = @sendchantype | @recvchantype | @sendrcvchantype;
+
+case @modexpr.kind of
+  0 = @modcommentblock
+| 1 = @modline
+| 2 = @modlineblock
+| 3 = @modlparen
+| 4 = @modrparen;
+
+case @error.kind of
+  0 = @unknownerror
+| 1 = @listerror
+| 2 = @parseerror
+| 3 = @typeerror;
+
diff --git a/go/downgrades/a58b81b1b4c4cccc8ca11731c1db86622f33af57/upgrade.properties b/go/downgrades/a58b81b1b4c4cccc8ca11731c1db86622f33af57/upgrade.properties
new file mode 100644
index 00000000000..4982fc6893a
--- /dev/null
+++ b/go/downgrades/a58b81b1b4c4cccc8ca11731c1db86622f33af57/upgrade.properties
@@ -0,0 +1,2 @@
+description: Delete @errorexpr - @badexpr should be used instead
+compatibility: full
diff --git a/go/extractor/dbscheme/tables.go b/go/extractor/dbscheme/tables.go
index 63332aa3b59..e987cb402ae 100644
--- a/go/extractor/dbscheme/tables.go
+++ b/go/extractor/dbscheme/tables.go
@@ -521,9 +521,6 @@ var ChanTypeExprs = map[ast.ChanDir]*BranchType{
 	ast.SEND | ast.RECV: ExprKind.NewBranch("@sendrcvchantypeexpr", ChanTypeExpr),
 }
 
-// ErrorExpr is an AST node type that is not used anywhere
-var ErrorExpr = ExprKind.NewBranch("@errorexpr")
-
 // StmtKind is a case type for distinguishing different kinds of statement AST nodes
 var StmtKind = NewCaseType(StmtType, "kind")
 
diff --git a/go/ql/lib/go.dbscheme b/go/ql/lib/go.dbscheme
index 90fa7836e0a..a58b81b1b4c 100644
--- a/go/ql/lib/go.dbscheme
+++ b/go/ql/lib/go.dbscheme
@@ -319,8 +319,7 @@ case @expr.kind of
 | 51 = @andnotexpr
 | 52 = @sendchantypeexpr
 | 53 = @recvchantypeexpr
-| 54 = @sendrcvchantypeexpr
-| 55 = @errorexpr;
+| 54 = @sendrcvchantypeexpr;
 
 @basiclit = @intlit | @floatlit | @imaglit | @charlit | @stringlit;
 
diff --git a/go/ql/lib/upgrades/90fa7836e0a239f69bbebffcf342e92c240d54bc/exprs.ql b/go/ql/lib/upgrades/90fa7836e0a239f69bbebffcf342e92c240d54bc/exprs.ql
new file mode 100644
index 00000000000..6d0065def6e
--- /dev/null
+++ b/go/ql/lib/upgrades/90fa7836e0a239f69bbebffcf342e92c240d54bc/exprs.ql
@@ -0,0 +1,28 @@
+class Expr_ extends @expr {
+  string toString() { result = "Expr" }
+}
+
+class ExprParent_ extends @exprparent {
+  string toString() { result = "ExprParent" }
+}
+
+/**
+ * The last index, 55 (errorexpr), has been deleted. Index 0 (badexpr) should
+ * be used instead.
+ */
+bindingset[old_index]
+int new_index(int old_index) {
+  if old_index = 55
+  then result = 0 // badexpr
+  else result = old_index
+}
+
+// The schema for exprs is:
+//
+// exprs(unique int id: @expr,
+//     int kind: int ref,
+//     int parent: @exprparent ref,
+//     int idx: int ref);
+from Expr_ expr, int new_kind, ExprParent_ parent, int idx, int old_kind
+where exprs(expr, old_kind, parent, idx) and new_kind = new_index(old_kind)
+select expr, new_kind, parent, idx
diff --git a/go/ql/lib/upgrades/90fa7836e0a239f69bbebffcf342e92c240d54bc/go.dbscheme b/go/ql/lib/upgrades/90fa7836e0a239f69bbebffcf342e92c240d54bc/go.dbscheme
new file mode 100644
index 00000000000..a58b81b1b4c
--- /dev/null
+++ b/go/ql/lib/upgrades/90fa7836e0a239f69bbebffcf342e92c240d54bc/go.dbscheme
@@ -0,0 +1,546 @@
+/** Auto-generated dbscheme; do not edit. */
+
+
+/** Duplicate code **/
+
+duplicateCode(
+  unique int id : @duplication,
+  varchar(900) relativePath : string ref,
+  int equivClass : int ref);
+
+similarCode(
+  unique int id : @similarity,
+  varchar(900) relativePath : string ref,
+  int equivClass : int ref);
+
+@duplication_or_similarity = @duplication | @similarity;
+
+tokens(
+  int id : @duplication_or_similarity ref,
+  int offset : int ref,
+  int beginLine : int ref,
+  int beginColumn : int ref,
+  int endLine : int ref,
+  int endColumn : int ref);
+
+/** External data **/
+
+externalData(
+  int id : @externalDataElement,
+  varchar(900) path : string ref,
+  int column: int ref,
+  varchar(900) value : string ref
+);
+
+snapshotDate(unique date snapshotDate : date ref);
+
+sourceLocationPrefix(varchar(900) prefix : string ref);
+
+
+/*
+ * XML Files
+ */
+
+xmlEncoding(
+  unique int id: @file ref,
+  string encoding: string ref
+);
+
+xmlDTDs(
+  unique int id: @xmldtd,
+  string root: string ref,
+  string publicId: string ref,
+  string systemId: string ref,
+  int fileid: @file ref
+);
+
+xmlElements(
+  unique int id: @xmlelement,
+  string name: string ref,
+  int parentid: @xmlparent ref,
+  int idx: int ref,
+  int fileid: @file ref
+);
+
+xmlAttrs(
+  unique int id: @xmlattribute,
+  int elementid: @xmlelement ref,
+  string name: string ref,
+  string value: string ref,
+  int idx: int ref,
+  int fileid: @file ref
+);
+
+xmlNs(
+  int id: @xmlnamespace,
+  string prefixName: string ref,
+  string URI: string ref,
+  int fileid: @file ref
+);
+
+xmlHasNs(
+  int elementId: @xmlnamespaceable ref,
+  int nsId: @xmlnamespace ref,
+  int fileid: @file ref
+);
+
+xmlComments(
+  unique int id: @xmlcomment,
+  string text: string ref,
+  int parentid: @xmlparent ref,
+  int fileid: @file ref
+);
+
+xmlChars(
+  unique int id: @xmlcharacters,
+  string text: string ref,
+  int parentid: @xmlparent ref,
+  int idx: int ref,
+  int isCDATA: int ref,
+  int fileid: @file ref
+);
+
+@xmlparent = @file | @xmlelement;
+@xmlnamespaceable = @xmlelement | @xmlattribute;
+
+xmllocations(
+  int xmlElement: @xmllocatable ref,
+  int location: @location_default ref
+);
+
+@xmllocatable = @xmlcharacters | @xmlelement | @xmlcomment | @xmlattribute | @xmldtd | @file | @xmlnamespace;
+
+compilations(unique int id: @compilation, string cwd: string ref);
+
+#keyset[id, num]
+compilation_args(int id: @compilation ref, int num: int ref, string arg: string ref);
+
+#keyset[id, num, kind]
+compilation_time(int id: @compilation ref, int num: int ref, int kind: int ref, float secs: float ref);
+
+diagnostic_for(unique int diagnostic: @diagnostic ref, int compilation: @compilation ref, int file_number: int ref, int file_number_diagnostic_number: int ref);
+
+compilation_finished(unique int id: @compilation ref, float cpu_seconds: float ref, float elapsed_seconds: float ref);
+
+#keyset[id, num]
+compilation_compiling_files(int id: @compilation ref, int num: int ref, int file: @file ref);
+
+diagnostics(unique int id: @diagnostic, int severity: int ref, string error_tag: string ref, string error_message: string ref,
+            string full_error_message: string ref, int location: @location ref);
+
+locations_default(unique int id: @location_default, int file: @file ref, int beginLine: int ref, int beginColumn: int ref,
+                  int endLine: int ref, int endColumn: int ref);
+
+numlines(int element_id: @sourceline ref, int num_lines: int ref, int num_code: int ref, int num_comment: int ref);
+
+files(unique int id: @file, string name: string ref);
+
+folders(unique int id: @folder, string name: string ref);
+
+containerparent(int parent: @container ref, unique int child: @container ref);
+
+has_location(unique int locatable: @locatable ref, int location: @location ref);
+
+#keyset[parent, idx]
+comment_groups(unique int id: @comment_group, int parent: @file ref, int idx: int ref);
+
+comments(unique int id: @comment, int kind: int ref, int parent: @comment_group ref, int idx: int ref, string text: string ref);
+
+doc_comments(unique int node: @documentable ref, int comment: @comment_group ref);
+
+#keyset[parent, idx]
+exprs(unique int id: @expr, int kind: int ref, int parent: @exprparent ref, int idx: int ref);
+
+literals(unique int expr: @expr ref, string value: string ref, string raw: string ref);
+
+constvalues(unique int expr: @expr ref, string value: string ref, string exact: string ref);
+
+fields(unique int id: @field, int parent: @fieldparent ref, int idx: int ref);
+
+typeparamdecls(unique int id: @typeparamdecl, int parent: @typeparamdeclparent ref, int idx: int ref);
+
+#keyset[parent, idx]
+stmts(unique int id: @stmt, int kind: int ref, int parent: @stmtparent ref, int idx: int ref);
+
+#keyset[parent, idx]
+decls(unique int id: @decl, int kind: int ref, int parent: @declparent ref, int idx: int ref);
+
+#keyset[parent, idx]
+specs(unique int id: @spec, int kind: int ref, int parent: @gendecl ref, int idx: int ref);
+
+scopes(unique int id: @scope, int kind: int ref);
+
+scopenesting(unique int inner: @scope ref, int outer: @scope ref);
+
+scopenodes(unique int node: @scopenode ref, int scope: @localscope ref);
+
+objects(unique int id: @object, int kind: int ref, string name: string ref);
+
+objectscopes(unique int object: @object ref, int scope: @scope ref);
+
+objecttypes(unique int object: @object ref, int tp: @type ref);
+
+methodreceivers(unique int method: @object ref, int receiver: @object ref);
+
+fieldstructs(unique int field: @object ref, int struct: @structtype ref);
+
+methodhosts(int method: @object ref, int host: @namedtype ref);
+
+defs(int ident: @ident ref, int object: @object ref);
+
+uses(int ident: @ident ref, int object: @object ref);
+
+types(unique int id: @type, int kind: int ref);
+
+type_of(unique int expr: @expr ref, int tp: @type ref);
+
+typename(unique int tp: @type ref, string name: string ref);
+
+key_type(unique int map: @maptype ref, int tp: @type ref);
+
+element_type(unique int container: @containertype ref, int tp: @type ref);
+
+base_type(unique int ptr: @pointertype ref, int tp: @type ref);
+
+underlying_type(unique int named: @namedtype ref, int tp: @type ref);
+
+#keyset[parent, index]
+component_types(int parent: @compositetype ref, int index: int ref, string name: string ref, int tp: @type ref);
+
+array_length(unique int tp: @arraytype ref, string len: string ref);
+
+type_objects(unique int tp: @type ref, int object: @object ref);
+
+packages(unique int id: @package, string name: string ref, string path: string ref, int scope: @packagescope ref);
+
+#keyset[parent, idx]
+modexprs(unique int id: @modexpr, int kind: int ref, int parent: @modexprparent ref, int idx: int ref);
+
+#keyset[parent, idx]
+modtokens(string token: string ref, int parent: @modexpr ref, int idx: int ref);
+
+#keyset[package, idx]
+errors(unique int id: @error, int kind: int ref, string msg: string ref, string rawpos: string ref,
+       string file: string ref, int line: int ref, int col: int ref, int package: @package ref, int idx: int ref);
+
+has_ellipsis(int id: @callorconversionexpr ref);
+
+variadic(int id: @signaturetype ref);
+
+#keyset[parent, idx]
+typeparam(unique int tp: @typeparamtype ref, string name: string ref, int bound: @compositetype ref,
+          int parent: @typeparamparentobject ref, int idx: int ref);
+
+@container = @file | @folder;
+
+@locatable = @xmllocatable | @node | @localscope;
+
+@node = @documentable | @exprparent | @modexprparent | @fieldparent | @stmtparent | @declparent | @typeparamdeclparent
+      | @scopenode | @comment_group | @comment;
+
+@documentable = @file | @field | @typeparamdecl | @spec | @gendecl | @funcdecl | @modexpr;
+
+@exprparent = @funcdef | @file | @expr | @field | @stmt | @decl | @typeparamdecl | @spec;
+
+@modexprparent = @file | @modexpr;
+
+@fieldparent = @decl | @structtypeexpr | @functypeexpr | @interfacetypeexpr;
+
+@stmtparent = @funcdef | @stmt | @decl;
+
+@declparent = @file | @declstmt;
+
+@typeparamdeclparent = @funcdecl | @typespec;
+
+@funcdef = @funclit | @funcdecl;
+
+@scopenode = @file | @functypeexpr | @blockstmt | @ifstmt | @caseclause | @switchstmt | @commclause | @loopstmt;
+
+@location = @location_default;
+
+@sourceline = @locatable;
+
+case @comment.kind of
+  0 = @slashslashcomment
+| 1 = @slashstarcomment;
+
+case @expr.kind of
+  0 = @badexpr
+| 1 = @ident
+| 2 = @ellipsis
+| 3 = @intlit
+| 4 = @floatlit
+| 5 = @imaglit
+| 6 = @charlit
+| 7 = @stringlit
+| 8 = @funclit
+| 9 = @compositelit
+| 10 = @parenexpr
+| 11 = @selectorexpr
+| 12 = @indexexpr
+| 13 = @genericfunctioninstantiationexpr
+| 14 = @generictypeinstantiationexpr
+| 15 = @sliceexpr
+| 16 = @typeassertexpr
+| 17 = @callorconversionexpr
+| 18 = @starexpr
+| 19 = @keyvalueexpr
+| 20 = @arraytypeexpr
+| 21 = @structtypeexpr
+| 22 = @functypeexpr
+| 23 = @interfacetypeexpr
+| 24 = @maptypeexpr
+| 25 = @typesetliteralexpr
+| 26 = @plusexpr
+| 27 = @minusexpr
+| 28 = @notexpr
+| 29 = @complementexpr
+| 30 = @derefexpr
+| 31 = @addressexpr
+| 32 = @arrowexpr
+| 33 = @lorexpr
+| 34 = @landexpr
+| 35 = @eqlexpr
+| 36 = @neqexpr
+| 37 = @lssexpr
+| 38 = @leqexpr
+| 39 = @gtrexpr
+| 40 = @geqexpr
+| 41 = @addexpr
+| 42 = @subexpr
+| 43 = @orexpr
+| 44 = @xorexpr
+| 45 = @mulexpr
+| 46 = @quoexpr
+| 47 = @remexpr
+| 48 = @shlexpr
+| 49 = @shrexpr
+| 50 = @andexpr
+| 51 = @andnotexpr
+| 52 = @sendchantypeexpr
+| 53 = @recvchantypeexpr
+| 54 = @sendrcvchantypeexpr;
+
+@basiclit = @intlit | @floatlit | @imaglit | @charlit | @stringlit;
+
+@operatorexpr = @logicalexpr | @arithmeticexpr | @bitwiseexpr | @unaryexpr | @binaryexpr;
+
+@logicalexpr = @logicalunaryexpr | @logicalbinaryexpr;
+
+@arithmeticexpr = @arithmeticunaryexpr | @arithmeticbinaryexpr;
+
+@bitwiseexpr = @bitwiseunaryexpr | @bitwisebinaryexpr;
+
+@unaryexpr = @logicalunaryexpr | @bitwiseunaryexpr | @arithmeticunaryexpr | @derefexpr | @addressexpr | @arrowexpr;
+
+@logicalunaryexpr = @notexpr;
+
+@bitwiseunaryexpr = @complementexpr;
+
+@arithmeticunaryexpr = @plusexpr | @minusexpr;
+
+@binaryexpr = @logicalbinaryexpr | @bitwisebinaryexpr | @arithmeticbinaryexpr | @comparison;
+
+@logicalbinaryexpr = @lorexpr | @landexpr;
+
+@bitwisebinaryexpr = @shiftexpr | @orexpr | @xorexpr | @andexpr | @andnotexpr;
+
+@arithmeticbinaryexpr = @addexpr | @subexpr | @mulexpr | @quoexpr | @remexpr;
+
+@shiftexpr = @shlexpr | @shrexpr;
+
+@comparison = @equalitytest | @relationalcomparison;
+
+@equalitytest = @eqlexpr | @neqexpr;
+
+@relationalcomparison = @lssexpr | @leqexpr | @gtrexpr | @geqexpr;
+
+@chantypeexpr = @sendchantypeexpr | @recvchantypeexpr | @sendrcvchantypeexpr;
+
+case @stmt.kind of
+  0 = @badstmt
+| 1 = @declstmt
+| 2 = @emptystmt
+| 3 = @labeledstmt
+| 4 = @exprstmt
+| 5 = @sendstmt
+| 6 = @incstmt
+| 7 = @decstmt
+| 8 = @gostmt
+| 9 = @deferstmt
+| 10 = @returnstmt
+| 11 = @breakstmt
+| 12 = @continuestmt
+| 13 = @gotostmt
+| 14 = @fallthroughstmt
+| 15 = @blockstmt
+| 16 = @ifstmt
+| 17 = @caseclause
+| 18 = @exprswitchstmt
+| 19 = @typeswitchstmt
+| 20 = @commclause
+| 21 = @selectstmt
+| 22 = @forstmt
+| 23 = @rangestmt
+| 24 = @assignstmt
+| 25 = @definestmt
+| 26 = @addassignstmt
+| 27 = @subassignstmt
+| 28 = @mulassignstmt
+| 29 = @quoassignstmt
+| 30 = @remassignstmt
+| 31 = @andassignstmt
+| 32 = @orassignstmt
+| 33 = @xorassignstmt
+| 34 = @shlassignstmt
+| 35 = @shrassignstmt
+| 36 = @andnotassignstmt;
+
+@incdecstmt = @incstmt | @decstmt;
+
+@assignment = @simpleassignstmt | @compoundassignstmt;
+
+@simpleassignstmt = @assignstmt | @definestmt;
+
+@compoundassignstmt = @addassignstmt | @subassignstmt | @mulassignstmt | @quoassignstmt | @remassignstmt
+                    | @andassignstmt | @orassignstmt | @xorassignstmt | @shlassignstmt | @shrassignstmt | @andnotassignstmt;
+
+@branchstmt = @breakstmt | @continuestmt | @gotostmt | @fallthroughstmt;
+
+@switchstmt = @exprswitchstmt | @typeswitchstmt;
+
+@loopstmt = @forstmt | @rangestmt;
+
+case @decl.kind of
+  0 = @baddecl
+| 1 = @importdecl
+| 2 = @constdecl
+| 3 = @typedecl
+| 4 = @vardecl
+| 5 = @funcdecl;
+
+@gendecl = @importdecl | @constdecl | @typedecl | @vardecl;
+
+case @spec.kind of
+  0 = @importspec
+| 1 = @valuespec
+| 2 = @typedefspec
+| 3 = @aliasspec;
+
+@typespec = @typedefspec | @aliasspec;
+
+case @object.kind of
+  0 = @pkgobject
+| 1 = @decltypeobject
+| 2 = @builtintypeobject
+| 3 = @declconstobject
+| 4 = @builtinconstobject
+| 5 = @declvarobject
+| 6 = @declfunctionobject
+| 7 = @builtinfunctionobject
+| 8 = @labelobject;
+
+@typeparamparentobject = @decltypeobject | @declfunctionobject;
+
+@declobject = @decltypeobject | @declconstobject | @declvarobject | @declfunctionobject;
+
+@builtinobject = @builtintypeobject | @builtinconstobject | @builtinfunctionobject;
+
+@typeobject = @decltypeobject | @builtintypeobject;
+
+@valueobject = @constobject | @varobject | @functionobject;
+
+@constobject = @declconstobject | @builtinconstobject;
+
+@varobject = @declvarobject;
+
+@functionobject = @declfunctionobject | @builtinfunctionobject;
+
+case @scope.kind of
+  0 = @universescope
+| 1 = @packagescope
+| 2 = @localscope;
+
+case @type.kind of
+  0 = @invalidtype
+| 1 = @boolexprtype
+| 2 = @inttype
+| 3 = @int8type
+| 4 = @int16type
+| 5 = @int32type
+| 6 = @int64type
+| 7 = @uinttype
+| 8 = @uint8type
+| 9 = @uint16type
+| 10 = @uint32type
+| 11 = @uint64type
+| 12 = @uintptrtype
+| 13 = @float32type
+| 14 = @float64type
+| 15 = @complex64type
+| 16 = @complex128type
+| 17 = @stringexprtype
+| 18 = @unsafepointertype
+| 19 = @boolliteraltype
+| 20 = @intliteraltype
+| 21 = @runeliteraltype
+| 22 = @floatliteraltype
+| 23 = @complexliteraltype
+| 24 = @stringliteraltype
+| 25 = @nilliteraltype
+| 26 = @typeparamtype
+| 27 = @arraytype
+| 28 = @slicetype
+| 29 = @structtype
+| 30 = @pointertype
+| 31 = @interfacetype
+| 32 = @tupletype
+| 33 = @signaturetype
+| 34 = @maptype
+| 35 = @sendchantype
+| 36 = @recvchantype
+| 37 = @sendrcvchantype
+| 38 = @namedtype
+| 39 = @typesetliteraltype;
+
+@basictype = @booltype | @numerictype | @stringtype | @literaltype | @invalidtype | @unsafepointertype;
+
+@booltype = @boolexprtype | @boolliteraltype;
+
+@numerictype = @integertype | @floattype | @complextype;
+
+@integertype = @signedintegertype | @unsignedintegertype;
+
+@signedintegertype = @inttype | @int8type | @int16type | @int32type | @int64type | @intliteraltype | @runeliteraltype;
+
+@unsignedintegertype = @uinttype | @uint8type | @uint16type | @uint32type | @uint64type | @uintptrtype;
+
+@floattype = @float32type | @float64type | @floatliteraltype;
+
+@complextype = @complex64type | @complex128type | @complexliteraltype;
+
+@stringtype = @stringexprtype | @stringliteraltype;
+
+@literaltype = @boolliteraltype | @intliteraltype | @runeliteraltype | @floatliteraltype | @complexliteraltype
+             | @stringliteraltype | @nilliteraltype;
+
+@compositetype = @typeparamtype | @containertype | @structtype | @pointertype | @interfacetype | @tupletype
+               | @signaturetype | @namedtype | @typesetliteraltype;
+
+@containertype = @arraytype | @slicetype | @maptype | @chantype;
+
+@chantype = @sendchantype | @recvchantype | @sendrcvchantype;
+
+case @modexpr.kind of
+  0 = @modcommentblock
+| 1 = @modline
+| 2 = @modlineblock
+| 3 = @modlparen
+| 4 = @modrparen;
+
+case @error.kind of
+  0 = @unknownerror
+| 1 = @listerror
+| 2 = @parseerror
+| 3 = @typeerror;
+
diff --git a/go/ql/lib/upgrades/90fa7836e0a239f69bbebffcf342e92c240d54bc/old.dbscheme b/go/ql/lib/upgrades/90fa7836e0a239f69bbebffcf342e92c240d54bc/old.dbscheme
new file mode 100644
index 00000000000..90fa7836e0a
--- /dev/null
+++ b/go/ql/lib/upgrades/90fa7836e0a239f69bbebffcf342e92c240d54bc/old.dbscheme
@@ -0,0 +1,547 @@
+/** Auto-generated dbscheme; do not edit. */
+
+
+/** Duplicate code **/
+
+duplicateCode(
+  unique int id : @duplication,
+  varchar(900) relativePath : string ref,
+  int equivClass : int ref);
+
+similarCode(
+  unique int id : @similarity,
+  varchar(900) relativePath : string ref,
+  int equivClass : int ref);
+
+@duplication_or_similarity = @duplication | @similarity;
+
+tokens(
+  int id : @duplication_or_similarity ref,
+  int offset : int ref,
+  int beginLine : int ref,
+  int beginColumn : int ref,
+  int endLine : int ref,
+  int endColumn : int ref);
+
+/** External data **/
+
+externalData(
+  int id : @externalDataElement,
+  varchar(900) path : string ref,
+  int column: int ref,
+  varchar(900) value : string ref
+);
+
+snapshotDate(unique date snapshotDate : date ref);
+
+sourceLocationPrefix(varchar(900) prefix : string ref);
+
+
+/*
+ * XML Files
+ */
+
+xmlEncoding(
+  unique int id: @file ref,
+  string encoding: string ref
+);
+
+xmlDTDs(
+  unique int id: @xmldtd,
+  string root: string ref,
+  string publicId: string ref,
+  string systemId: string ref,
+  int fileid: @file ref
+);
+
+xmlElements(
+  unique int id: @xmlelement,
+  string name: string ref,
+  int parentid: @xmlparent ref,
+  int idx: int ref,
+  int fileid: @file ref
+);
+
+xmlAttrs(
+  unique int id: @xmlattribute,
+  int elementid: @xmlelement ref,
+  string name: string ref,
+  string value: string ref,
+  int idx: int ref,
+  int fileid: @file ref
+);
+
+xmlNs(
+  int id: @xmlnamespace,
+  string prefixName: string ref,
+  string URI: string ref,
+  int fileid: @file ref
+);
+
+xmlHasNs(
+  int elementId: @xmlnamespaceable ref,
+  int nsId: @xmlnamespace ref,
+  int fileid: @file ref
+);
+
+xmlComments(
+  unique int id: @xmlcomment,
+  string text: string ref,
+  int parentid: @xmlparent ref,
+  int fileid: @file ref
+);
+
+xmlChars(
+  unique int id: @xmlcharacters,
+  string text: string ref,
+  int parentid: @xmlparent ref,
+  int idx: int ref,
+  int isCDATA: int ref,
+  int fileid: @file ref
+);
+
+@xmlparent = @file | @xmlelement;
+@xmlnamespaceable = @xmlelement | @xmlattribute;
+
+xmllocations(
+  int xmlElement: @xmllocatable ref,
+  int location: @location_default ref
+);
+
+@xmllocatable = @xmlcharacters | @xmlelement | @xmlcomment | @xmlattribute | @xmldtd | @file | @xmlnamespace;
+
+compilations(unique int id: @compilation, string cwd: string ref);
+
+#keyset[id, num]
+compilation_args(int id: @compilation ref, int num: int ref, string arg: string ref);
+
+#keyset[id, num, kind]
+compilation_time(int id: @compilation ref, int num: int ref, int kind: int ref, float secs: float ref);
+
+diagnostic_for(unique int diagnostic: @diagnostic ref, int compilation: @compilation ref, int file_number: int ref, int file_number_diagnostic_number: int ref);
+
+compilation_finished(unique int id: @compilation ref, float cpu_seconds: float ref, float elapsed_seconds: float ref);
+
+#keyset[id, num]
+compilation_compiling_files(int id: @compilation ref, int num: int ref, int file: @file ref);
+
+diagnostics(unique int id: @diagnostic, int severity: int ref, string error_tag: string ref, string error_message: string ref,
+            string full_error_message: string ref, int location: @location ref);
+
+locations_default(unique int id: @location_default, int file: @file ref, int beginLine: int ref, int beginColumn: int ref,
+                  int endLine: int ref, int endColumn: int ref);
+
+numlines(int element_id: @sourceline ref, int num_lines: int ref, int num_code: int ref, int num_comment: int ref);
+
+files(unique int id: @file, string name: string ref);
+
+folders(unique int id: @folder, string name: string ref);
+
+containerparent(int parent: @container ref, unique int child: @container ref);
+
+has_location(unique int locatable: @locatable ref, int location: @location ref);
+
+#keyset[parent, idx]
+comment_groups(unique int id: @comment_group, int parent: @file ref, int idx: int ref);
+
+comments(unique int id: @comment, int kind: int ref, int parent: @comment_group ref, int idx: int ref, string text: string ref);
+
+doc_comments(unique int node: @documentable ref, int comment: @comment_group ref);
+
+#keyset[parent, idx]
+exprs(unique int id: @expr, int kind: int ref, int parent: @exprparent ref, int idx: int ref);
+
+literals(unique int expr: @expr ref, string value: string ref, string raw: string ref);
+
+constvalues(unique int expr: @expr ref, string value: string ref, string exact: string ref);
+
+fields(unique int id: @field, int parent: @fieldparent ref, int idx: int ref);
+
+typeparamdecls(unique int id: @typeparamdecl, int parent: @typeparamdeclparent ref, int idx: int ref);
+
+#keyset[parent, idx]
+stmts(unique int id: @stmt, int kind: int ref, int parent: @stmtparent ref, int idx: int ref);
+
+#keyset[parent, idx]
+decls(unique int id: @decl, int kind: int ref, int parent: @declparent ref, int idx: int ref);
+
+#keyset[parent, idx]
+specs(unique int id: @spec, int kind: int ref, int parent: @gendecl ref, int idx: int ref);
+
+scopes(unique int id: @scope, int kind: int ref);
+
+scopenesting(unique int inner: @scope ref, int outer: @scope ref);
+
+scopenodes(unique int node: @scopenode ref, int scope: @localscope ref);
+
+objects(unique int id: @object, int kind: int ref, string name: string ref);
+
+objectscopes(unique int object: @object ref, int scope: @scope ref);
+
+objecttypes(unique int object: @object ref, int tp: @type ref);
+
+methodreceivers(unique int method: @object ref, int receiver: @object ref);
+
+fieldstructs(unique int field: @object ref, int struct: @structtype ref);
+
+methodhosts(int method: @object ref, int host: @namedtype ref);
+
+defs(int ident: @ident ref, int object: @object ref);
+
+uses(int ident: @ident ref, int object: @object ref);
+
+types(unique int id: @type, int kind: int ref);
+
+type_of(unique int expr: @expr ref, int tp: @type ref);
+
+typename(unique int tp: @type ref, string name: string ref);
+
+key_type(unique int map: @maptype ref, int tp: @type ref);
+
+element_type(unique int container: @containertype ref, int tp: @type ref);
+
+base_type(unique int ptr: @pointertype ref, int tp: @type ref);
+
+underlying_type(unique int named: @namedtype ref, int tp: @type ref);
+
+#keyset[parent, index]
+component_types(int parent: @compositetype ref, int index: int ref, string name: string ref, int tp: @type ref);
+
+array_length(unique int tp: @arraytype ref, string len: string ref);
+
+type_objects(unique int tp: @type ref, int object: @object ref);
+
+packages(unique int id: @package, string name: string ref, string path: string ref, int scope: @packagescope ref);
+
+#keyset[parent, idx]
+modexprs(unique int id: @modexpr, int kind: int ref, int parent: @modexprparent ref, int idx: int ref);
+
+#keyset[parent, idx]
+modtokens(string token: string ref, int parent: @modexpr ref, int idx: int ref);
+
+#keyset[package, idx]
+errors(unique int id: @error, int kind: int ref, string msg: string ref, string rawpos: string ref,
+       string file: string ref, int line: int ref, int col: int ref, int package: @package ref, int idx: int ref);
+
+has_ellipsis(int id: @callorconversionexpr ref);
+
+variadic(int id: @signaturetype ref);
+
+#keyset[parent, idx]
+typeparam(unique int tp: @typeparamtype ref, string name: string ref, int bound: @compositetype ref,
+          int parent: @typeparamparentobject ref, int idx: int ref);
+
+@container = @file | @folder;
+
+@locatable = @xmllocatable | @node | @localscope;
+
+@node = @documentable | @exprparent | @modexprparent | @fieldparent | @stmtparent | @declparent | @typeparamdeclparent
+      | @scopenode | @comment_group | @comment;
+
+@documentable = @file | @field | @typeparamdecl | @spec | @gendecl | @funcdecl | @modexpr;
+
+@exprparent = @funcdef | @file | @expr | @field | @stmt | @decl | @typeparamdecl | @spec;
+
+@modexprparent = @file | @modexpr;
+
+@fieldparent = @decl | @structtypeexpr | @functypeexpr | @interfacetypeexpr;
+
+@stmtparent = @funcdef | @stmt | @decl;
+
+@declparent = @file | @declstmt;
+
+@typeparamdeclparent = @funcdecl | @typespec;
+
+@funcdef = @funclit | @funcdecl;
+
+@scopenode = @file | @functypeexpr | @blockstmt | @ifstmt | @caseclause | @switchstmt | @commclause | @loopstmt;
+
+@location = @location_default;
+
+@sourceline = @locatable;
+
+case @comment.kind of
+  0 = @slashslashcomment
+| 1 = @slashstarcomment;
+
+case @expr.kind of
+  0 = @badexpr
+| 1 = @ident
+| 2 = @ellipsis
+| 3 = @intlit
+| 4 = @floatlit
+| 5 = @imaglit
+| 6 = @charlit
+| 7 = @stringlit
+| 8 = @funclit
+| 9 = @compositelit
+| 10 = @parenexpr
+| 11 = @selectorexpr
+| 12 = @indexexpr
+| 13 = @genericfunctioninstantiationexpr
+| 14 = @generictypeinstantiationexpr
+| 15 = @sliceexpr
+| 16 = @typeassertexpr
+| 17 = @callorconversionexpr
+| 18 = @starexpr
+| 19 = @keyvalueexpr
+| 20 = @arraytypeexpr
+| 21 = @structtypeexpr
+| 22 = @functypeexpr
+| 23 = @interfacetypeexpr
+| 24 = @maptypeexpr
+| 25 = @typesetliteralexpr
+| 26 = @plusexpr
+| 27 = @minusexpr
+| 28 = @notexpr
+| 29 = @complementexpr
+| 30 = @derefexpr
+| 31 = @addressexpr
+| 32 = @arrowexpr
+| 33 = @lorexpr
+| 34 = @landexpr
+| 35 = @eqlexpr
+| 36 = @neqexpr
+| 37 = @lssexpr
+| 38 = @leqexpr
+| 39 = @gtrexpr
+| 40 = @geqexpr
+| 41 = @addexpr
+| 42 = @subexpr
+| 43 = @orexpr
+| 44 = @xorexpr
+| 45 = @mulexpr
+| 46 = @quoexpr
+| 47 = @remexpr
+| 48 = @shlexpr
+| 49 = @shrexpr
+| 50 = @andexpr
+| 51 = @andnotexpr
+| 52 = @sendchantypeexpr
+| 53 = @recvchantypeexpr
+| 54 = @sendrcvchantypeexpr
+| 55 = @errorexpr;
+
+@basiclit = @intlit | @floatlit | @imaglit | @charlit | @stringlit;
+
+@operatorexpr = @logicalexpr | @arithmeticexpr | @bitwiseexpr | @unaryexpr | @binaryexpr;
+
+@logicalexpr = @logicalunaryexpr | @logicalbinaryexpr;
+
+@arithmeticexpr = @arithmeticunaryexpr | @arithmeticbinaryexpr;
+
+@bitwiseexpr = @bitwiseunaryexpr | @bitwisebinaryexpr;
+
+@unaryexpr = @logicalunaryexpr | @bitwiseunaryexpr | @arithmeticunaryexpr | @derefexpr | @addressexpr | @arrowexpr;
+
+@logicalunaryexpr = @notexpr;
+
+@bitwiseunaryexpr = @complementexpr;
+
+@arithmeticunaryexpr = @plusexpr | @minusexpr;
+
+@binaryexpr = @logicalbinaryexpr | @bitwisebinaryexpr | @arithmeticbinaryexpr | @comparison;
+
+@logicalbinaryexpr = @lorexpr | @landexpr;
+
+@bitwisebinaryexpr = @shiftexpr | @orexpr | @xorexpr | @andexpr | @andnotexpr;
+
+@arithmeticbinaryexpr = @addexpr | @subexpr | @mulexpr | @quoexpr | @remexpr;
+
+@shiftexpr = @shlexpr | @shrexpr;
+
+@comparison = @equalitytest | @relationalcomparison;
+
+@equalitytest = @eqlexpr | @neqexpr;
+
+@relationalcomparison = @lssexpr | @leqexpr | @gtrexpr | @geqexpr;
+
+@chantypeexpr = @sendchantypeexpr | @recvchantypeexpr | @sendrcvchantypeexpr;
+
+case @stmt.kind of
+  0 = @badstmt
+| 1 = @declstmt
+| 2 = @emptystmt
+| 3 = @labeledstmt
+| 4 = @exprstmt
+| 5 = @sendstmt
+| 6 = @incstmt
+| 7 = @decstmt
+| 8 = @gostmt
+| 9 = @deferstmt
+| 10 = @returnstmt
+| 11 = @breakstmt
+| 12 = @continuestmt
+| 13 = @gotostmt
+| 14 = @fallthroughstmt
+| 15 = @blockstmt
+| 16 = @ifstmt
+| 17 = @caseclause
+| 18 = @exprswitchstmt
+| 19 = @typeswitchstmt
+| 20 = @commclause
+| 21 = @selectstmt
+| 22 = @forstmt
+| 23 = @rangestmt
+| 24 = @assignstmt
+| 25 = @definestmt
+| 26 = @addassignstmt
+| 27 = @subassignstmt
+| 28 = @mulassignstmt
+| 29 = @quoassignstmt
+| 30 = @remassignstmt
+| 31 = @andassignstmt
+| 32 = @orassignstmt
+| 33 = @xorassignstmt
+| 34 = @shlassignstmt
+| 35 = @shrassignstmt
+| 36 = @andnotassignstmt;
+
+@incdecstmt = @incstmt | @decstmt;
+
+@assignment = @simpleassignstmt | @compoundassignstmt;
+
+@simpleassignstmt = @assignstmt | @definestmt;
+
+@compoundassignstmt = @addassignstmt | @subassignstmt | @mulassignstmt | @quoassignstmt | @remassignstmt
+                    | @andassignstmt | @orassignstmt | @xorassignstmt | @shlassignstmt | @shrassignstmt | @andnotassignstmt;
+
+@branchstmt = @breakstmt | @continuestmt | @gotostmt | @fallthroughstmt;
+
+@switchstmt = @exprswitchstmt | @typeswitchstmt;
+
+@loopstmt = @forstmt | @rangestmt;
+
+case @decl.kind of
+  0 = @baddecl
+| 1 = @importdecl
+| 2 = @constdecl
+| 3 = @typedecl
+| 4 = @vardecl
+| 5 = @funcdecl;
+
+@gendecl = @importdecl | @constdecl | @typedecl | @vardecl;
+
+case @spec.kind of
+  0 = @importspec
+| 1 = @valuespec
+| 2 = @typedefspec
+| 3 = @aliasspec;
+
+@typespec = @typedefspec | @aliasspec;
+
+case @object.kind of
+  0 = @pkgobject
+| 1 = @decltypeobject
+| 2 = @builtintypeobject
+| 3 = @declconstobject
+| 4 = @builtinconstobject
+| 5 = @declvarobject
+| 6 = @declfunctionobject
+| 7 = @builtinfunctionobject
+| 8 = @labelobject;
+
+@typeparamparentobject = @decltypeobject | @declfunctionobject;
+
+@declobject = @decltypeobject | @declconstobject | @declvarobject | @declfunctionobject;
+
+@builtinobject = @builtintypeobject | @builtinconstobject | @builtinfunctionobject;
+
+@typeobject = @decltypeobject | @builtintypeobject;
+
+@valueobject = @constobject | @varobject | @functionobject;
+
+@constobject = @declconstobject | @builtinconstobject;
+
+@varobject = @declvarobject;
+
+@functionobject = @declfunctionobject | @builtinfunctionobject;
+
+case @scope.kind of
+  0 = @universescope
+| 1 = @packagescope
+| 2 = @localscope;
+
+case @type.kind of
+  0 = @invalidtype
+| 1 = @boolexprtype
+| 2 = @inttype
+| 3 = @int8type
+| 4 = @int16type
+| 5 = @int32type
+| 6 = @int64type
+| 7 = @uinttype
+| 8 = @uint8type
+| 9 = @uint16type
+| 10 = @uint32type
+| 11 = @uint64type
+| 12 = @uintptrtype
+| 13 = @float32type
+| 14 = @float64type
+| 15 = @complex64type
+| 16 = @complex128type
+| 17 = @stringexprtype
+| 18 = @unsafepointertype
+| 19 = @boolliteraltype
+| 20 = @intliteraltype
+| 21 = @runeliteraltype
+| 22 = @floatliteraltype
+| 23 = @complexliteraltype
+| 24 = @stringliteraltype
+| 25 = @nilliteraltype
+| 26 = @typeparamtype
+| 27 = @arraytype
+| 28 = @slicetype
+| 29 = @structtype
+| 30 = @pointertype
+| 31 = @interfacetype
+| 32 = @tupletype
+| 33 = @signaturetype
+| 34 = @maptype
+| 35 = @sendchantype
+| 36 = @recvchantype
+| 37 = @sendrcvchantype
+| 38 = @namedtype
+| 39 = @typesetliteraltype;
+
+@basictype = @booltype | @numerictype | @stringtype | @literaltype | @invalidtype | @unsafepointertype;
+
+@booltype = @boolexprtype | @boolliteraltype;
+
+@numerictype = @integertype | @floattype | @complextype;
+
+@integertype = @signedintegertype | @unsignedintegertype;
+
+@signedintegertype = @inttype | @int8type | @int16type | @int32type | @int64type | @intliteraltype | @runeliteraltype;
+
+@unsignedintegertype = @uinttype | @uint8type | @uint16type | @uint32type | @uint64type | @uintptrtype;
+
+@floattype = @float32type | @float64type | @floatliteraltype;
+
+@complextype = @complex64type | @complex128type | @complexliteraltype;
+
+@stringtype = @stringexprtype | @stringliteraltype;
+
+@literaltype = @boolliteraltype | @intliteraltype | @runeliteraltype | @floatliteraltype | @complexliteraltype
+             | @stringliteraltype | @nilliteraltype;
+
+@compositetype = @typeparamtype | @containertype | @structtype | @pointertype | @interfacetype | @tupletype
+               | @signaturetype | @namedtype | @typesetliteraltype;
+
+@containertype = @arraytype | @slicetype | @maptype | @chantype;
+
+@chantype = @sendchantype | @recvchantype | @sendrcvchantype;
+
+case @modexpr.kind of
+  0 = @modcommentblock
+| 1 = @modline
+| 2 = @modlineblock
+| 3 = @modlparen
+| 4 = @modrparen;
+
+case @error.kind of
+  0 = @unknownerror
+| 1 = @listerror
+| 2 = @parseerror
+| 3 = @typeerror;
+
diff --git a/go/ql/lib/upgrades/90fa7836e0a239f69bbebffcf342e92c240d54bc/upgrade.properties b/go/ql/lib/upgrades/90fa7836e0a239f69bbebffcf342e92c240d54bc/upgrade.properties
new file mode 100644
index 00000000000..c7242dd66e3
--- /dev/null
+++ b/go/ql/lib/upgrades/90fa7836e0a239f69bbebffcf342e92c240d54bc/upgrade.properties
@@ -0,0 +1,3 @@
+description: Delete @errorexpr - @badexpr should be used instead
+compatibility: full
+exprs.rel: run exprs.qlo

From 3c6f466e784aa0886fc1272cd54ae2d19d706469 Mon Sep 17 00:00:00 2001
From: Owen Mansel-Chan <owen-mc@github.com>
Date: Tue, 13 Dec 2022 16:58:12 +0000
Subject: [PATCH 1347/1420] Include downgrade scripts in extractor pack

---
 go/Makefile | 1 +
 1 file changed, 1 insertion(+)

diff --git a/go/Makefile b/go/Makefile
index 900508ee6cb..4faf28c41ea 100644
--- a/go/Makefile
+++ b/go/Makefile
@@ -83,6 +83,7 @@ extractor-common: codeql-extractor.yml LICENSE ql/lib/go.dbscheme \
 	cp codeql-extractor.yml LICENSE ql/lib/go.dbscheme ql/lib/go.dbscheme.stats $(EXTRACTOR_PACK_OUT)
 	mkdir $(EXTRACTOR_PACK_OUT)/tools
 	cp -r tools/tokenizer.jar $(CODEQL_TOOLS) $(EXTRACTOR_PACK_OUT)/tools
+	cp -r downgrades $(EXTRACTOR_PACK_OUT)
 
 extractor: extractor-common tools-codeql
 	cp -r tools/$(CODEQL_PLATFORM) $(EXTRACTOR_PACK_OUT)/tools

From 162419138d7155ef43192d423c3c66c4ab323324 Mon Sep 17 00:00:00 2001
From: Asger F <asgerf@github.com>
Date: Wed, 14 Dec 2022 12:23:47 +0100
Subject: [PATCH 1348/1420] JS: Replace csurf -> lusca.csrf from example and
 qhelp

---
 .../CWE-352/MissingCsrfMiddleware.qhelp       |  4 ++--
 .../examples/MissingCsrfMiddlewareBad.js      | 15 +++++++++-----
 .../examples/MissingCsrfMiddlewareGood.js     | 20 ++++++++++++-------
 3 files changed, 25 insertions(+), 14 deletions(-)

diff --git a/javascript/ql/src/Security/CWE-352/MissingCsrfMiddleware.qhelp b/javascript/ql/src/Security/CWE-352/MissingCsrfMiddleware.qhelp
index a019d65c02b..a3809eebfb4 100644
--- a/javascript/ql/src/Security/CWE-352/MissingCsrfMiddleware.qhelp
+++ b/javascript/ql/src/Security/CWE-352/MissingCsrfMiddleware.qhelp
@@ -25,7 +25,7 @@
 <recommendation>
 	<p>
 
-		Use a middleware package such as <code>csurf</code> to protect against CSRF attacks.
+		Use a middleware package such as <code>lusca.csrf</code> to protect against CSRF attacks.
 
 	</p>
 </recommendation>
@@ -58,6 +58,6 @@
 
 <references>
 	<li>OWASP: <a href="https://www.owasp.org/index.php/Cross-Site_Request_Forgery_(CSRF)">Cross-Site Request Forgery (CSRF)</a></li>
-	<li>NPM: <a href="https://www.npmjs.com/package/csurf">csurf</a></li>
+	<li>NPM: <a href="https://www.npmjs.com/package/lusca">lusca</a></li>
 </references>
 </qhelp>
diff --git a/javascript/ql/src/Security/CWE-352/examples/MissingCsrfMiddlewareBad.js b/javascript/ql/src/Security/CWE-352/examples/MissingCsrfMiddlewareBad.js
index d6fb8443e64..12fa976cee3 100644
--- a/javascript/ql/src/Security/CWE-352/examples/MissingCsrfMiddlewareBad.js
+++ b/javascript/ql/src/Security/CWE-352/examples/MissingCsrfMiddlewareBad.js
@@ -1,11 +1,16 @@
-var app = require("express")(),
+const app = require("express")(),
   cookieParser = require("cookie-parser"),
-  passport = require("passport");
+  bodyParser = require("body-parser"),
+  session = require("express-session");
 
 app.use(cookieParser());
-app.use(passport.authorize({ session: true }));
+app.use(bodyParser.urlencoded({ extended: false }));
+app.use(session({ secret: process.env['SECRET'], cookie: { maxAge: 60000 } }));
+
+// ...
 
 app.post("/changeEmail", function(req, res) {
-  let newEmail = req.cookies["newEmail"];
-  // ...
+  const userId = req.session.id;
+  const email = req.body["email"];
+  // ... update email associated with userId
 });
diff --git a/javascript/ql/src/Security/CWE-352/examples/MissingCsrfMiddlewareGood.js b/javascript/ql/src/Security/CWE-352/examples/MissingCsrfMiddlewareGood.js
index 5a22b733834..19d1d4af90b 100644
--- a/javascript/ql/src/Security/CWE-352/examples/MissingCsrfMiddlewareGood.js
+++ b/javascript/ql/src/Security/CWE-352/examples/MissingCsrfMiddlewareGood.js
@@ -1,12 +1,18 @@
-var app = require("express")(),
+const app = require("express")(),
   cookieParser = require("cookie-parser"),
-  passport = require("passport"),
-  csrf = require("csurf");
+  bodyParser = require("body-parser"),
+  session = require("express-session"),
+  csrf = require('lusca').csrf;
 
 app.use(cookieParser());
-app.use(passport.authorize({ session: true }));
-app.use(csrf({ cookie: true }));
+app.use(bodyParser.urlencoded({ extended: false }));
+app.use(session({ secret: process.env['SECRET'], cookie: { maxAge: 60000 } }));
+app.use(csrf());
+
+// ...
+
 app.post("/changeEmail", function(req, res) {
-  let newEmail = req.cookies["newEmail"];
-  // ...
+  const userId = req.session.id;
+  const email = req.body["email"];
+  // ... update email associated with userId
 });

From b63c658e3b2c329e34d6bd67c753ba43da6a6587 Mon Sep 17 00:00:00 2001
From: Asger F <asgerf@github.com>
Date: Wed, 14 Dec 2022 12:25:25 +0100
Subject: [PATCH 1349/1420] JS: recognize tiny-csrf

---
 javascript/ql/src/Security/CWE-352/MissingCsrfMiddleware.ql | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/javascript/ql/src/Security/CWE-352/MissingCsrfMiddleware.ql b/javascript/ql/src/Security/CWE-352/MissingCsrfMiddleware.ql
index cd82bb21596..1d5148166d6 100644
--- a/javascript/ql/src/Security/CWE-352/MissingCsrfMiddleware.ql
+++ b/javascript/ql/src/Security/CWE-352/MissingCsrfMiddleware.ql
@@ -57,7 +57,7 @@ predicate hasCookieMiddleware(Routing::Node route, Http::CookieMiddlewareInstanc
  */
 DataFlow::SourceNode csrfMiddlewareCreation() {
   exists(DataFlow::SourceNode callee | result = callee.getACall() |
-    callee = DataFlow::moduleImport("csurf")
+    callee = DataFlow::moduleImport(["csurf", "tiny-csrf"])
     or
     callee = DataFlow::moduleImport("lusca") and
     exists(result.(DataFlow::CallNode).getOptionArgument(0, "csrf"))

From 9a7628c988b6b53be93d2848b5f19b0a3dd2e93a Mon Sep 17 00:00:00 2001
From: Tom Hvitved <hvitved@github.com>
Date: Tue, 4 Oct 2022 10:33:45 +0200
Subject: [PATCH 1350/1420] Ruby: Add data flow tests for constructors

---
 .../call-sensitivity.expected                 | 163 +++--
 .../call-sensitivity/call_sensitivity.rb      |  30 +-
 .../dataflow/global/Flow.expected             | 682 ++++++++++--------
 .../global/TypeTrackingInlineTest.expected    |  30 +-
 .../dataflow/global/instance_variables.rb     |  26 +-
 5 files changed, 529 insertions(+), 402 deletions(-)

diff --git a/ruby/ql/test/library-tests/dataflow/call-sensitivity/call-sensitivity.expected b/ruby/ql/test/library-tests/dataflow/call-sensitivity/call-sensitivity.expected
index c3fd0fb8654..3b1fbe40b26 100644
--- a/ruby/ql/test/library-tests/dataflow/call-sensitivity/call-sensitivity.expected
+++ b/ruby/ql/test/library-tests/dataflow/call-sensitivity/call-sensitivity.expected
@@ -1,4 +1,8 @@
 failures
+| call_sensitivity.rb:51:12:51:148 | # $ hasValueFlow=10 $ hasValueFlow=11 $ hasValueFlow=12 $ hasValueFlow=13 $ hasValueFlow=26 $ hasValueFlow=30 $ SPURIOUS: hasValueFlow=27 | Missing result:hasValueFlow=30 |
+| call_sensitivity.rb:97:12:97:66 | # $ hasValueFlow=26 $ hasValueFlow=30 $ hasValueFlow=32 | Missing result:hasValueFlow=26 |
+| call_sensitivity.rb:97:12:97:66 | # $ hasValueFlow=26 $ hasValueFlow=30 $ hasValueFlow=32 | Missing result:hasValueFlow=30 |
+| call_sensitivity.rb:97:12:97:66 | # $ hasValueFlow=26 $ hasValueFlow=30 $ hasValueFlow=32 | Missing result:hasValueFlow=32 |
 edges
 | call_sensitivity.rb:9:7:9:13 | call to taint :  | call_sensitivity.rb:9:6:9:14 | ( ... ) |
 | call_sensitivity.rb:9:7:9:13 | call to taint :  | call_sensitivity.rb:9:6:9:14 | ( ... ) |
@@ -92,26 +96,26 @@ edges
 | call_sensitivity.rb:92:35:92:35 | x :  | call_sensitivity.rb:93:34:93:34 | x :  |
 | call_sensitivity.rb:93:34:93:34 | x :  | call_sensitivity.rb:88:33:88:33 | y :  |
 | call_sensitivity.rb:93:34:93:34 | x :  | call_sensitivity.rb:88:33:88:33 | y :  |
-| call_sensitivity.rb:98:11:98:18 | call to taint :  | call_sensitivity.rb:54:15:54:15 | x :  |
-| call_sensitivity.rb:98:11:98:18 | call to taint :  | call_sensitivity.rb:54:15:54:15 | x :  |
-| call_sensitivity.rb:99:16:99:23 | call to taint :  | call_sensitivity.rb:58:20:58:20 | x :  |
-| call_sensitivity.rb:99:16:99:23 | call to taint :  | call_sensitivity.rb:58:20:58:20 | x :  |
-| call_sensitivity.rb:100:14:100:22 | call to taint :  | call_sensitivity.rb:62:18:62:18 | y :  |
-| call_sensitivity.rb:100:14:100:22 | call to taint :  | call_sensitivity.rb:62:18:62:18 | y :  |
-| call_sensitivity.rb:101:16:101:24 | call to taint :  | call_sensitivity.rb:66:20:66:20 | x :  |
-| call_sensitivity.rb:101:16:101:24 | call to taint :  | call_sensitivity.rb:66:20:66:20 | x :  |
-| call_sensitivity.rb:102:14:102:22 | call to taint :  | call_sensitivity.rb:74:18:74:18 | y :  |
-| call_sensitivity.rb:102:14:102:22 | call to taint :  | call_sensitivity.rb:74:18:74:18 | y :  |
-| call_sensitivity.rb:104:21:104:28 | call to taint :  | call_sensitivity.rb:80:30:80:30 | x :  |
-| call_sensitivity.rb:104:21:104:28 | call to taint :  | call_sensitivity.rb:80:30:80:30 | x :  |
-| call_sensitivity.rb:105:26:105:33 | call to taint :  | call_sensitivity.rb:84:35:84:35 | x :  |
-| call_sensitivity.rb:105:26:105:33 | call to taint :  | call_sensitivity.rb:84:35:84:35 | x :  |
-| call_sensitivity.rb:106:24:106:32 | call to taint :  | call_sensitivity.rb:88:33:88:33 | y :  |
-| call_sensitivity.rb:106:24:106:32 | call to taint :  | call_sensitivity.rb:88:33:88:33 | y :  |
-| call_sensitivity.rb:107:26:107:33 | call to taint :  | call_sensitivity.rb:92:35:92:35 | x :  |
-| call_sensitivity.rb:107:26:107:33 | call to taint :  | call_sensitivity.rb:92:35:92:35 | x :  |
-| call_sensitivity.rb:140:14:140:22 | call to taint :  | call_sensitivity.rb:74:18:74:18 | y :  |
-| call_sensitivity.rb:140:14:140:22 | call to taint :  | call_sensitivity.rb:74:18:74:18 | y :  |
+| call_sensitivity.rb:103:11:103:18 | call to taint :  | call_sensitivity.rb:54:15:54:15 | x :  |
+| call_sensitivity.rb:103:11:103:18 | call to taint :  | call_sensitivity.rb:54:15:54:15 | x :  |
+| call_sensitivity.rb:104:16:104:23 | call to taint :  | call_sensitivity.rb:58:20:58:20 | x :  |
+| call_sensitivity.rb:104:16:104:23 | call to taint :  | call_sensitivity.rb:58:20:58:20 | x :  |
+| call_sensitivity.rb:105:14:105:22 | call to taint :  | call_sensitivity.rb:62:18:62:18 | y :  |
+| call_sensitivity.rb:105:14:105:22 | call to taint :  | call_sensitivity.rb:62:18:62:18 | y :  |
+| call_sensitivity.rb:106:16:106:24 | call to taint :  | call_sensitivity.rb:66:20:66:20 | x :  |
+| call_sensitivity.rb:106:16:106:24 | call to taint :  | call_sensitivity.rb:66:20:66:20 | x :  |
+| call_sensitivity.rb:107:14:107:22 | call to taint :  | call_sensitivity.rb:74:18:74:18 | y :  |
+| call_sensitivity.rb:107:14:107:22 | call to taint :  | call_sensitivity.rb:74:18:74:18 | y :  |
+| call_sensitivity.rb:109:21:109:28 | call to taint :  | call_sensitivity.rb:80:30:80:30 | x :  |
+| call_sensitivity.rb:109:21:109:28 | call to taint :  | call_sensitivity.rb:80:30:80:30 | x :  |
+| call_sensitivity.rb:110:26:110:33 | call to taint :  | call_sensitivity.rb:84:35:84:35 | x :  |
+| call_sensitivity.rb:110:26:110:33 | call to taint :  | call_sensitivity.rb:84:35:84:35 | x :  |
+| call_sensitivity.rb:111:24:111:32 | call to taint :  | call_sensitivity.rb:88:33:88:33 | y :  |
+| call_sensitivity.rb:111:24:111:32 | call to taint :  | call_sensitivity.rb:88:33:88:33 | y :  |
+| call_sensitivity.rb:112:26:112:33 | call to taint :  | call_sensitivity.rb:92:35:92:35 | x :  |
+| call_sensitivity.rb:112:26:112:33 | call to taint :  | call_sensitivity.rb:92:35:92:35 | x :  |
+| call_sensitivity.rb:149:14:149:22 | call to taint :  | call_sensitivity.rb:74:18:74:18 | y :  |
+| call_sensitivity.rb:149:14:149:22 | call to taint :  | call_sensitivity.rb:74:18:74:18 | y :  |
 nodes
 | call_sensitivity.rb:9:6:9:14 | ( ... ) | semmle.label | ( ... ) |
 | call_sensitivity.rb:9:6:9:14 | ( ... ) | semmle.label | ( ... ) |
@@ -219,26 +223,26 @@ nodes
 | call_sensitivity.rb:92:35:92:35 | x :  | semmle.label | x :  |
 | call_sensitivity.rb:93:34:93:34 | x :  | semmle.label | x :  |
 | call_sensitivity.rb:93:34:93:34 | x :  | semmle.label | x :  |
-| call_sensitivity.rb:98:11:98:18 | call to taint :  | semmle.label | call to taint :  |
-| call_sensitivity.rb:98:11:98:18 | call to taint :  | semmle.label | call to taint :  |
-| call_sensitivity.rb:99:16:99:23 | call to taint :  | semmle.label | call to taint :  |
-| call_sensitivity.rb:99:16:99:23 | call to taint :  | semmle.label | call to taint :  |
-| call_sensitivity.rb:100:14:100:22 | call to taint :  | semmle.label | call to taint :  |
-| call_sensitivity.rb:100:14:100:22 | call to taint :  | semmle.label | call to taint :  |
-| call_sensitivity.rb:101:16:101:24 | call to taint :  | semmle.label | call to taint :  |
-| call_sensitivity.rb:101:16:101:24 | call to taint :  | semmle.label | call to taint :  |
-| call_sensitivity.rb:102:14:102:22 | call to taint :  | semmle.label | call to taint :  |
-| call_sensitivity.rb:102:14:102:22 | call to taint :  | semmle.label | call to taint :  |
-| call_sensitivity.rb:104:21:104:28 | call to taint :  | semmle.label | call to taint :  |
-| call_sensitivity.rb:104:21:104:28 | call to taint :  | semmle.label | call to taint :  |
-| call_sensitivity.rb:105:26:105:33 | call to taint :  | semmle.label | call to taint :  |
-| call_sensitivity.rb:105:26:105:33 | call to taint :  | semmle.label | call to taint :  |
-| call_sensitivity.rb:106:24:106:32 | call to taint :  | semmle.label | call to taint :  |
-| call_sensitivity.rb:106:24:106:32 | call to taint :  | semmle.label | call to taint :  |
-| call_sensitivity.rb:107:26:107:33 | call to taint :  | semmle.label | call to taint :  |
-| call_sensitivity.rb:107:26:107:33 | call to taint :  | semmle.label | call to taint :  |
-| call_sensitivity.rb:140:14:140:22 | call to taint :  | semmle.label | call to taint :  |
-| call_sensitivity.rb:140:14:140:22 | call to taint :  | semmle.label | call to taint :  |
+| call_sensitivity.rb:103:11:103:18 | call to taint :  | semmle.label | call to taint :  |
+| call_sensitivity.rb:103:11:103:18 | call to taint :  | semmle.label | call to taint :  |
+| call_sensitivity.rb:104:16:104:23 | call to taint :  | semmle.label | call to taint :  |
+| call_sensitivity.rb:104:16:104:23 | call to taint :  | semmle.label | call to taint :  |
+| call_sensitivity.rb:105:14:105:22 | call to taint :  | semmle.label | call to taint :  |
+| call_sensitivity.rb:105:14:105:22 | call to taint :  | semmle.label | call to taint :  |
+| call_sensitivity.rb:106:16:106:24 | call to taint :  | semmle.label | call to taint :  |
+| call_sensitivity.rb:106:16:106:24 | call to taint :  | semmle.label | call to taint :  |
+| call_sensitivity.rb:107:14:107:22 | call to taint :  | semmle.label | call to taint :  |
+| call_sensitivity.rb:107:14:107:22 | call to taint :  | semmle.label | call to taint :  |
+| call_sensitivity.rb:109:21:109:28 | call to taint :  | semmle.label | call to taint :  |
+| call_sensitivity.rb:109:21:109:28 | call to taint :  | semmle.label | call to taint :  |
+| call_sensitivity.rb:110:26:110:33 | call to taint :  | semmle.label | call to taint :  |
+| call_sensitivity.rb:110:26:110:33 | call to taint :  | semmle.label | call to taint :  |
+| call_sensitivity.rb:111:24:111:32 | call to taint :  | semmle.label | call to taint :  |
+| call_sensitivity.rb:111:24:111:32 | call to taint :  | semmle.label | call to taint :  |
+| call_sensitivity.rb:112:26:112:33 | call to taint :  | semmle.label | call to taint :  |
+| call_sensitivity.rb:112:26:112:33 | call to taint :  | semmle.label | call to taint :  |
+| call_sensitivity.rb:149:14:149:22 | call to taint :  | semmle.label | call to taint :  |
+| call_sensitivity.rb:149:14:149:22 | call to taint :  | semmle.label | call to taint :  |
 subpaths
 #select
 | call_sensitivity.rb:9:6:9:14 | ( ... ) | call_sensitivity.rb:9:7:9:13 | call to taint :  | call_sensitivity.rb:9:6:9:14 | ( ... ) | $@ | call_sensitivity.rb:9:7:9:13 | call to taint :  | call to taint :  |
@@ -246,16 +250,16 @@ subpaths
 | call_sensitivity.rb:31:27:31:27 | x | call_sensitivity.rb:32:25:32:32 | call to taint :  | call_sensitivity.rb:31:27:31:27 | x | $@ | call_sensitivity.rb:32:25:32:32 | call to taint :  | call to taint :  |
 | call_sensitivity.rb:40:31:40:31 | x | call_sensitivity.rb:41:25:41:32 | call to taint :  | call_sensitivity.rb:40:31:40:31 | x | $@ | call_sensitivity.rb:41:25:41:32 | call to taint :  | call to taint :  |
 | call_sensitivity.rb:43:32:43:32 | x | call_sensitivity.rb:44:26:44:33 | call to taint :  | call_sensitivity.rb:43:32:43:32 | x | $@ | call_sensitivity.rb:44:26:44:33 | call to taint :  | call to taint :  |
-| call_sensitivity.rb:51:10:51:10 | x | call_sensitivity.rb:98:11:98:18 | call to taint :  | call_sensitivity.rb:51:10:51:10 | x | $@ | call_sensitivity.rb:98:11:98:18 | call to taint :  | call to taint :  |
-| call_sensitivity.rb:51:10:51:10 | x | call_sensitivity.rb:99:16:99:23 | call to taint :  | call_sensitivity.rb:51:10:51:10 | x | $@ | call_sensitivity.rb:99:16:99:23 | call to taint :  | call to taint :  |
-| call_sensitivity.rb:51:10:51:10 | x | call_sensitivity.rb:100:14:100:22 | call to taint :  | call_sensitivity.rb:51:10:51:10 | x | $@ | call_sensitivity.rb:100:14:100:22 | call to taint :  | call to taint :  |
-| call_sensitivity.rb:51:10:51:10 | x | call_sensitivity.rb:101:16:101:24 | call to taint :  | call_sensitivity.rb:51:10:51:10 | x | $@ | call_sensitivity.rb:101:16:101:24 | call to taint :  | call to taint :  |
-| call_sensitivity.rb:51:10:51:10 | x | call_sensitivity.rb:102:14:102:22 | call to taint :  | call_sensitivity.rb:51:10:51:10 | x | $@ | call_sensitivity.rb:102:14:102:22 | call to taint :  | call to taint :  |
-| call_sensitivity.rb:51:10:51:10 | x | call_sensitivity.rb:140:14:140:22 | call to taint :  | call_sensitivity.rb:51:10:51:10 | x | $@ | call_sensitivity.rb:140:14:140:22 | call to taint :  | call to taint :  |
-| call_sensitivity.rb:71:10:71:10 | x | call_sensitivity.rb:104:21:104:28 | call to taint :  | call_sensitivity.rb:71:10:71:10 | x | $@ | call_sensitivity.rb:104:21:104:28 | call to taint :  | call to taint :  |
-| call_sensitivity.rb:71:10:71:10 | x | call_sensitivity.rb:105:26:105:33 | call to taint :  | call_sensitivity.rb:71:10:71:10 | x | $@ | call_sensitivity.rb:105:26:105:33 | call to taint :  | call to taint :  |
-| call_sensitivity.rb:71:10:71:10 | x | call_sensitivity.rb:106:24:106:32 | call to taint :  | call_sensitivity.rb:71:10:71:10 | x | $@ | call_sensitivity.rb:106:24:106:32 | call to taint :  | call to taint :  |
-| call_sensitivity.rb:71:10:71:10 | x | call_sensitivity.rb:107:26:107:33 | call to taint :  | call_sensitivity.rb:71:10:71:10 | x | $@ | call_sensitivity.rb:107:26:107:33 | call to taint :  | call to taint :  |
+| call_sensitivity.rb:51:10:51:10 | x | call_sensitivity.rb:103:11:103:18 | call to taint :  | call_sensitivity.rb:51:10:51:10 | x | $@ | call_sensitivity.rb:103:11:103:18 | call to taint :  | call to taint :  |
+| call_sensitivity.rb:51:10:51:10 | x | call_sensitivity.rb:104:16:104:23 | call to taint :  | call_sensitivity.rb:51:10:51:10 | x | $@ | call_sensitivity.rb:104:16:104:23 | call to taint :  | call to taint :  |
+| call_sensitivity.rb:51:10:51:10 | x | call_sensitivity.rb:105:14:105:22 | call to taint :  | call_sensitivity.rb:51:10:51:10 | x | $@ | call_sensitivity.rb:105:14:105:22 | call to taint :  | call to taint :  |
+| call_sensitivity.rb:51:10:51:10 | x | call_sensitivity.rb:106:16:106:24 | call to taint :  | call_sensitivity.rb:51:10:51:10 | x | $@ | call_sensitivity.rb:106:16:106:24 | call to taint :  | call to taint :  |
+| call_sensitivity.rb:51:10:51:10 | x | call_sensitivity.rb:107:14:107:22 | call to taint :  | call_sensitivity.rb:51:10:51:10 | x | $@ | call_sensitivity.rb:107:14:107:22 | call to taint :  | call to taint :  |
+| call_sensitivity.rb:51:10:51:10 | x | call_sensitivity.rb:149:14:149:22 | call to taint :  | call_sensitivity.rb:51:10:51:10 | x | $@ | call_sensitivity.rb:149:14:149:22 | call to taint :  | call to taint :  |
+| call_sensitivity.rb:71:10:71:10 | x | call_sensitivity.rb:109:21:109:28 | call to taint :  | call_sensitivity.rb:71:10:71:10 | x | $@ | call_sensitivity.rb:109:21:109:28 | call to taint :  | call to taint :  |
+| call_sensitivity.rb:71:10:71:10 | x | call_sensitivity.rb:110:26:110:33 | call to taint :  | call_sensitivity.rb:71:10:71:10 | x | $@ | call_sensitivity.rb:110:26:110:33 | call to taint :  | call to taint :  |
+| call_sensitivity.rb:71:10:71:10 | x | call_sensitivity.rb:111:24:111:32 | call to taint :  | call_sensitivity.rb:71:10:71:10 | x | $@ | call_sensitivity.rb:111:24:111:32 | call to taint :  | call to taint :  |
+| call_sensitivity.rb:71:10:71:10 | x | call_sensitivity.rb:112:26:112:33 | call to taint :  | call_sensitivity.rb:71:10:71:10 | x | $@ | call_sensitivity.rb:112:26:112:33 | call to taint :  | call to taint :  |
 mayBenefitFromCallContext
 | call_sensitivity.rb:51:5:51:10 | call to sink | call_sensitivity.rb:50:3:52:5 | method1 |
 | call_sensitivity.rb:55:5:55:13 | call to method1 | call_sensitivity.rb:54:3:56:5 | method2 |
@@ -266,39 +270,42 @@ mayBenefitFromCallContext
 | call_sensitivity.rb:85:5:85:28 | call to singleton_method2 | call_sensitivity.rb:84:3:86:5 | call_singleton_method2 |
 | call_sensitivity.rb:89:5:89:26 | call to singleton_method1 | call_sensitivity.rb:88:3:90:5 | singleton_method3 |
 | call_sensitivity.rb:93:5:93:35 | call to singleton_method3 | call_sensitivity.rb:92:3:94:5 | call_singleton_method3 |
-| call_sensitivity.rb:119:5:119:18 | call to method2 | call_sensitivity.rb:118:3:120:5 | call_method2 |
-| call_sensitivity.rb:123:5:123:25 | call to method3 | call_sensitivity.rb:122:3:124:5 | call_method3 |
-| call_sensitivity.rb:127:5:127:28 | call to singleton_method2 | call_sensitivity.rb:126:3:128:5 | call_singleton_method2 |
-| call_sensitivity.rb:131:5:131:35 | call to singleton_method3 | call_sensitivity.rb:130:3:132:5 | call_singleton_method3 |
+| call_sensitivity.rb:124:5:124:18 | call to method2 | call_sensitivity.rb:123:3:125:5 | call_method2 |
+| call_sensitivity.rb:128:5:128:25 | call to method3 | call_sensitivity.rb:127:3:129:5 | call_method3 |
+| call_sensitivity.rb:132:5:132:28 | call to singleton_method2 | call_sensitivity.rb:131:3:133:5 | call_singleton_method2 |
+| call_sensitivity.rb:136:5:136:35 | call to singleton_method3 | call_sensitivity.rb:135:3:137:5 | call_singleton_method3 |
 viableImplInCallContext
 | call_sensitivity.rb:51:5:51:10 | call to sink | call_sensitivity.rb:55:5:55:13 | call to method1 | call_sensitivity.rb:5:1:7:3 | sink |
 | call_sensitivity.rb:51:5:51:10 | call to sink | call_sensitivity.rb:63:5:63:16 | call to method1 | call_sensitivity.rb:5:1:7:3 | sink |
 | call_sensitivity.rb:51:5:51:10 | call to sink | call_sensitivity.rb:76:7:76:18 | call to method1 | call_sensitivity.rb:5:1:7:3 | sink |
+| call_sensitivity.rb:51:5:51:10 | call to sink | call_sensitivity.rb:98:5:98:13 | call to method1 | call_sensitivity.rb:5:1:7:3 | sink |
 | call_sensitivity.rb:55:5:55:13 | call to method1 | call_sensitivity.rb:59:5:59:18 | call to method2 | call_sensitivity.rb:50:3:52:5 | method1 |
-| call_sensitivity.rb:55:5:55:13 | call to method1 | call_sensitivity.rb:59:5:59:18 | call to method2 | call_sensitivity.rb:110:3:112:5 | method1 |
-| call_sensitivity.rb:55:5:55:13 | call to method1 | call_sensitivity.rb:98:1:98:19 | call to method2 | call_sensitivity.rb:50:3:52:5 | method1 |
-| call_sensitivity.rb:55:5:55:13 | call to method1 | call_sensitivity.rb:119:5:119:18 | call to method2 | call_sensitivity.rb:110:3:112:5 | method1 |
-| call_sensitivity.rb:55:5:55:13 | call to method1 | call_sensitivity.rb:136:1:136:19 | call to method2 | call_sensitivity.rb:110:3:112:5 | method1 |
-| call_sensitivity.rb:59:5:59:18 | call to method2 | call_sensitivity.rb:99:1:99:24 | call to call_method2 | call_sensitivity.rb:54:3:56:5 | method2 |
+| call_sensitivity.rb:55:5:55:13 | call to method1 | call_sensitivity.rb:59:5:59:18 | call to method2 | call_sensitivity.rb:115:3:117:5 | method1 |
+| call_sensitivity.rb:55:5:55:13 | call to method1 | call_sensitivity.rb:59:5:59:18 | call to method2 | call_sensitivity.rb:164:3:166:5 | method1 |
+| call_sensitivity.rb:55:5:55:13 | call to method1 | call_sensitivity.rb:103:1:103:19 | call to method2 | call_sensitivity.rb:50:3:52:5 | method1 |
+| call_sensitivity.rb:55:5:55:13 | call to method1 | call_sensitivity.rb:124:5:124:18 | call to method2 | call_sensitivity.rb:115:3:117:5 | method1 |
+| call_sensitivity.rb:55:5:55:13 | call to method1 | call_sensitivity.rb:145:1:145:19 | call to method2 | call_sensitivity.rb:115:3:117:5 | method1 |
+| call_sensitivity.rb:59:5:59:18 | call to method2 | call_sensitivity.rb:104:1:104:24 | call to call_method2 | call_sensitivity.rb:54:3:56:5 | method2 |
 | call_sensitivity.rb:63:5:63:16 | call to method1 | call_sensitivity.rb:67:5:67:25 | call to method3 | call_sensitivity.rb:50:3:52:5 | method1 |
-| call_sensitivity.rb:63:5:63:16 | call to method1 | call_sensitivity.rb:67:5:67:25 | call to method3 | call_sensitivity.rb:110:3:112:5 | method1 |
-| call_sensitivity.rb:63:5:63:16 | call to method1 | call_sensitivity.rb:100:1:100:23 | call to method3 | call_sensitivity.rb:50:3:52:5 | method1 |
-| call_sensitivity.rb:63:5:63:16 | call to method1 | call_sensitivity.rb:123:5:123:25 | call to method3 | call_sensitivity.rb:110:3:112:5 | method1 |
-| call_sensitivity.rb:63:5:63:16 | call to method1 | call_sensitivity.rb:138:1:138:23 | call to method3 | call_sensitivity.rb:110:3:112:5 | method1 |
-| call_sensitivity.rb:67:5:67:25 | call to method3 | call_sensitivity.rb:101:1:101:25 | call to call_method3 | call_sensitivity.rb:62:3:64:5 | method3 |
+| call_sensitivity.rb:63:5:63:16 | call to method1 | call_sensitivity.rb:67:5:67:25 | call to method3 | call_sensitivity.rb:115:3:117:5 | method1 |
+| call_sensitivity.rb:63:5:63:16 | call to method1 | call_sensitivity.rb:67:5:67:25 | call to method3 | call_sensitivity.rb:164:3:166:5 | method1 |
+| call_sensitivity.rb:63:5:63:16 | call to method1 | call_sensitivity.rb:105:1:105:23 | call to method3 | call_sensitivity.rb:50:3:52:5 | method1 |
+| call_sensitivity.rb:63:5:63:16 | call to method1 | call_sensitivity.rb:128:5:128:25 | call to method3 | call_sensitivity.rb:115:3:117:5 | method1 |
+| call_sensitivity.rb:63:5:63:16 | call to method1 | call_sensitivity.rb:147:1:147:23 | call to method3 | call_sensitivity.rb:115:3:117:5 | method1 |
+| call_sensitivity.rb:67:5:67:25 | call to method3 | call_sensitivity.rb:106:1:106:25 | call to call_method3 | call_sensitivity.rb:62:3:64:5 | method3 |
 | call_sensitivity.rb:81:5:81:23 | call to singleton_method1 | call_sensitivity.rb:85:5:85:28 | call to singleton_method2 | call_sensitivity.rb:70:3:72:5 | singleton_method1 |
-| call_sensitivity.rb:81:5:81:23 | call to singleton_method1 | call_sensitivity.rb:85:5:85:28 | call to singleton_method2 | call_sensitivity.rb:114:3:116:5 | singleton_method1 |
-| call_sensitivity.rb:81:5:81:23 | call to singleton_method1 | call_sensitivity.rb:104:1:104:29 | call to singleton_method2 | call_sensitivity.rb:70:3:72:5 | singleton_method1 |
-| call_sensitivity.rb:81:5:81:23 | call to singleton_method1 | call_sensitivity.rb:127:5:127:28 | call to singleton_method2 | call_sensitivity.rb:114:3:116:5 | singleton_method1 |
-| call_sensitivity.rb:81:5:81:23 | call to singleton_method1 | call_sensitivity.rb:142:1:142:29 | call to singleton_method2 | call_sensitivity.rb:114:3:116:5 | singleton_method1 |
-| call_sensitivity.rb:85:5:85:28 | call to singleton_method2 | call_sensitivity.rb:105:1:105:34 | call to call_singleton_method2 | call_sensitivity.rb:80:3:82:5 | singleton_method2 |
+| call_sensitivity.rb:81:5:81:23 | call to singleton_method1 | call_sensitivity.rb:85:5:85:28 | call to singleton_method2 | call_sensitivity.rb:119:3:121:5 | singleton_method1 |
+| call_sensitivity.rb:81:5:81:23 | call to singleton_method1 | call_sensitivity.rb:109:1:109:29 | call to singleton_method2 | call_sensitivity.rb:70:3:72:5 | singleton_method1 |
+| call_sensitivity.rb:81:5:81:23 | call to singleton_method1 | call_sensitivity.rb:132:5:132:28 | call to singleton_method2 | call_sensitivity.rb:119:3:121:5 | singleton_method1 |
+| call_sensitivity.rb:81:5:81:23 | call to singleton_method1 | call_sensitivity.rb:151:1:151:29 | call to singleton_method2 | call_sensitivity.rb:119:3:121:5 | singleton_method1 |
+| call_sensitivity.rb:85:5:85:28 | call to singleton_method2 | call_sensitivity.rb:110:1:110:34 | call to call_singleton_method2 | call_sensitivity.rb:80:3:82:5 | singleton_method2 |
 | call_sensitivity.rb:89:5:89:26 | call to singleton_method1 | call_sensitivity.rb:93:5:93:35 | call to singleton_method3 | call_sensitivity.rb:70:3:72:5 | singleton_method1 |
-| call_sensitivity.rb:89:5:89:26 | call to singleton_method1 | call_sensitivity.rb:93:5:93:35 | call to singleton_method3 | call_sensitivity.rb:114:3:116:5 | singleton_method1 |
-| call_sensitivity.rb:89:5:89:26 | call to singleton_method1 | call_sensitivity.rb:106:1:106:33 | call to singleton_method3 | call_sensitivity.rb:70:3:72:5 | singleton_method1 |
-| call_sensitivity.rb:89:5:89:26 | call to singleton_method1 | call_sensitivity.rb:131:5:131:35 | call to singleton_method3 | call_sensitivity.rb:114:3:116:5 | singleton_method1 |
-| call_sensitivity.rb:89:5:89:26 | call to singleton_method1 | call_sensitivity.rb:144:1:144:33 | call to singleton_method3 | call_sensitivity.rb:114:3:116:5 | singleton_method1 |
-| call_sensitivity.rb:93:5:93:35 | call to singleton_method3 | call_sensitivity.rb:107:1:107:34 | call to call_singleton_method3 | call_sensitivity.rb:88:3:90:5 | singleton_method3 |
-| call_sensitivity.rb:119:5:119:18 | call to method2 | call_sensitivity.rb:137:1:137:24 | call to call_method2 | call_sensitivity.rb:54:3:56:5 | method2 |
-| call_sensitivity.rb:123:5:123:25 | call to method3 | call_sensitivity.rb:139:1:139:25 | call to call_method3 | call_sensitivity.rb:62:3:64:5 | method3 |
-| call_sensitivity.rb:127:5:127:28 | call to singleton_method2 | call_sensitivity.rb:143:1:143:34 | call to call_singleton_method2 | call_sensitivity.rb:80:3:82:5 | singleton_method2 |
-| call_sensitivity.rb:131:5:131:35 | call to singleton_method3 | call_sensitivity.rb:145:1:145:34 | call to call_singleton_method3 | call_sensitivity.rb:88:3:90:5 | singleton_method3 |
+| call_sensitivity.rb:89:5:89:26 | call to singleton_method1 | call_sensitivity.rb:93:5:93:35 | call to singleton_method3 | call_sensitivity.rb:119:3:121:5 | singleton_method1 |
+| call_sensitivity.rb:89:5:89:26 | call to singleton_method1 | call_sensitivity.rb:111:1:111:33 | call to singleton_method3 | call_sensitivity.rb:70:3:72:5 | singleton_method1 |
+| call_sensitivity.rb:89:5:89:26 | call to singleton_method1 | call_sensitivity.rb:136:5:136:35 | call to singleton_method3 | call_sensitivity.rb:119:3:121:5 | singleton_method1 |
+| call_sensitivity.rb:89:5:89:26 | call to singleton_method1 | call_sensitivity.rb:153:1:153:33 | call to singleton_method3 | call_sensitivity.rb:119:3:121:5 | singleton_method1 |
+| call_sensitivity.rb:93:5:93:35 | call to singleton_method3 | call_sensitivity.rb:112:1:112:34 | call to call_singleton_method3 | call_sensitivity.rb:88:3:90:5 | singleton_method3 |
+| call_sensitivity.rb:124:5:124:18 | call to method2 | call_sensitivity.rb:146:1:146:24 | call to call_method2 | call_sensitivity.rb:54:3:56:5 | method2 |
+| call_sensitivity.rb:128:5:128:25 | call to method3 | call_sensitivity.rb:148:1:148:25 | call to call_method3 | call_sensitivity.rb:62:3:64:5 | method3 |
+| call_sensitivity.rb:132:5:132:28 | call to singleton_method2 | call_sensitivity.rb:152:1:152:34 | call to call_singleton_method2 | call_sensitivity.rb:80:3:82:5 | singleton_method2 |
+| call_sensitivity.rb:136:5:136:35 | call to singleton_method3 | call_sensitivity.rb:154:1:154:34 | call to call_singleton_method3 | call_sensitivity.rb:88:3:90:5 | singleton_method3 |
diff --git a/ruby/ql/test/library-tests/dataflow/call-sensitivity/call_sensitivity.rb b/ruby/ql/test/library-tests/dataflow/call-sensitivity/call_sensitivity.rb
index 20107e09dc3..a17e5225177 100644
--- a/ruby/ql/test/library-tests/dataflow/call-sensitivity/call_sensitivity.rb
+++ b/ruby/ql/test/library-tests/dataflow/call-sensitivity/call_sensitivity.rb
@@ -48,7 +48,7 @@ apply_lambda(MY_LAMBDA2, taint(9))
 
 class A
   def method1 x
-    sink x # $ hasValueFlow=10 $ hasValueFlow=11 $ hasValueFlow=12 $ hasValueFlow=13 $ hasValueFlow=26 $ SPURIOUS: hasValueFlow=27
+    sink x # $ hasValueFlow=10 $ hasValueFlow=11 $ hasValueFlow=12 $ hasValueFlow=13 $ hasValueFlow=26 $ hasValueFlow=30 $ SPURIOUS: hasValueFlow=27
   end
 
   def method2 x
@@ -92,9 +92,14 @@ class A
   def self.call_singleton_method3 x
     self.singleton_method3(self, x)
   end
+
+  def initialize(x)
+    sink x # $ hasValueFlow=26 $ hasValueFlow=30 $ hasValueFlow=32
+    method1 x
+  end
 end
 
-a = A.new
+a = A.new (taint 30)
 a.method2(taint 10)
 a.call_method2(taint 11)
 a.method3(a, taint(12))
@@ -130,9 +135,13 @@ class B < A
   def self.call_singleton_method3 x
     self.singleton_method3(self, x)
   end
+
+  def initialize(x)
+    puts "NON SINK: #{x}"
+  end
 end
 
-b = B.new
+b = B.new (taint 31)
 b.method2(taint 18)
 b.call_method2(taint 19)
 b.method3(b, taint(20))
@@ -143,3 +152,18 @@ B.singleton_method2(taint 22)
 B.call_singleton_method2(taint 23)
 B.singleton_method3(B, taint(24))
 B.call_singleton_method3(taint 25)
+
+def create (type, x)
+  type.new x
+end
+
+create(A, taint(26))
+create(B, taint(27))
+
+class C < A
+  def method1 x
+    puts "NON SINK: #{x}"
+  end
+end
+
+c = C.new (taint 32)
diff --git a/ruby/ql/test/library-tests/dataflow/global/Flow.expected b/ruby/ql/test/library-tests/dataflow/global/Flow.expected
index ffba59b0f7e..24003956ec7 100644
--- a/ruby/ql/test/library-tests/dataflow/global/Flow.expected
+++ b/ruby/ql/test/library-tests/dataflow/global/Flow.expected
@@ -1,4 +1,5 @@
 failures
+| instance_variables.rb:102:23:102:41 | # $ hasValueFlow=29 | Missing result:hasValueFlow=29 |
 edges
 | captured_variables.rb:1:24:1:24 | x :  | captured_variables.rb:2:20:2:20 | x |
 | captured_variables.rb:1:24:1:24 | x :  | captured_variables.rb:2:20:2:20 | x |
@@ -30,139 +31,167 @@ edges
 | instance_variables.rb:19:12:19:21 | call to taint :  | instance_variables.rb:19:5:19:8 | [post] self [@foo] :  |
 | instance_variables.rb:20:10:20:13 | self [@foo] :  | instance_variables.rb:20:10:20:13 | @foo |
 | instance_variables.rb:20:10:20:13 | self [@foo] :  | instance_variables.rb:20:10:20:13 | @foo |
-| instance_variables.rb:24:1:24:3 | [post] foo [@field] :  | instance_variables.rb:25:6:25:8 | foo [@field] :  |
-| instance_variables.rb:24:1:24:3 | [post] foo [@field] :  | instance_variables.rb:25:6:25:8 | foo [@field] :  |
-| instance_variables.rb:24:15:24:23 | call to taint :  | instance_variables.rb:10:19:10:19 | x :  |
-| instance_variables.rb:24:15:24:23 | call to taint :  | instance_variables.rb:10:19:10:19 | x :  |
-| instance_variables.rb:24:15:24:23 | call to taint :  | instance_variables.rb:24:1:24:3 | [post] foo [@field] :  |
-| instance_variables.rb:24:15:24:23 | call to taint :  | instance_variables.rb:24:1:24:3 | [post] foo [@field] :  |
-| instance_variables.rb:25:6:25:8 | foo [@field] :  | instance_variables.rb:13:5:15:7 | self in get_field [@field] :  |
-| instance_variables.rb:25:6:25:8 | foo [@field] :  | instance_variables.rb:13:5:15:7 | self in get_field [@field] :  |
-| instance_variables.rb:25:6:25:8 | foo [@field] :  | instance_variables.rb:25:6:25:18 | call to get_field |
-| instance_variables.rb:25:6:25:8 | foo [@field] :  | instance_variables.rb:25:6:25:18 | call to get_field |
-| instance_variables.rb:28:1:28:3 | [post] bar [@field] :  | instance_variables.rb:29:6:29:8 | bar [@field] :  |
-| instance_variables.rb:28:15:28:22 | call to taint :  | instance_variables.rb:10:19:10:19 | x :  |
-| instance_variables.rb:28:15:28:22 | call to taint :  | instance_variables.rb:28:1:28:3 | [post] bar [@field] :  |
-| instance_variables.rb:29:6:29:8 | bar [@field] :  | instance_variables.rb:16:5:18:7 | self in inc_field [@field] :  |
-| instance_variables.rb:29:6:29:8 | bar [@field] :  | instance_variables.rb:29:6:29:18 | call to inc_field |
-| instance_variables.rb:32:1:32:4 | [post] foo1 [@field] :  | instance_variables.rb:33:6:33:9 | foo1 [@field] :  |
-| instance_variables.rb:32:1:32:4 | [post] foo1 [@field] :  | instance_variables.rb:33:6:33:9 | foo1 [@field] :  |
-| instance_variables.rb:32:14:32:22 | call to taint :  | instance_variables.rb:32:1:32:4 | [post] foo1 [@field] :  |
-| instance_variables.rb:32:14:32:22 | call to taint :  | instance_variables.rb:32:1:32:4 | [post] foo1 [@field] :  |
-| instance_variables.rb:33:6:33:9 | foo1 [@field] :  | instance_variables.rb:33:6:33:15 | call to field |
-| instance_variables.rb:33:6:33:9 | foo1 [@field] :  | instance_variables.rb:33:6:33:15 | call to field |
-| instance_variables.rb:36:1:36:4 | [post] foo2 [@field] :  | instance_variables.rb:37:6:37:9 | foo2 [@field] :  |
-| instance_variables.rb:36:1:36:4 | [post] foo2 [@field] :  | instance_variables.rb:37:6:37:9 | foo2 [@field] :  |
-| instance_variables.rb:36:14:36:22 | call to taint :  | instance_variables.rb:36:1:36:4 | [post] foo2 [@field] :  |
-| instance_variables.rb:36:14:36:22 | call to taint :  | instance_variables.rb:36:1:36:4 | [post] foo2 [@field] :  |
-| instance_variables.rb:37:6:37:9 | foo2 [@field] :  | instance_variables.rb:13:5:15:7 | self in get_field [@field] :  |
-| instance_variables.rb:37:6:37:9 | foo2 [@field] :  | instance_variables.rb:13:5:15:7 | self in get_field [@field] :  |
-| instance_variables.rb:37:6:37:9 | foo2 [@field] :  | instance_variables.rb:37:6:37:19 | call to get_field |
-| instance_variables.rb:37:6:37:9 | foo2 [@field] :  | instance_variables.rb:37:6:37:19 | call to get_field |
-| instance_variables.rb:40:1:40:4 | [post] foo3 [@field] :  | instance_variables.rb:41:6:41:9 | foo3 [@field] :  |
-| instance_variables.rb:40:1:40:4 | [post] foo3 [@field] :  | instance_variables.rb:41:6:41:9 | foo3 [@field] :  |
-| instance_variables.rb:40:1:40:4 | [post] foo3 [@field] :  | instance_variables.rb:53:6:53:9 | foo3 [@field] :  |
-| instance_variables.rb:40:1:40:4 | [post] foo3 [@field] :  | instance_variables.rb:53:6:53:9 | foo3 [@field] :  |
-| instance_variables.rb:40:16:40:24 | call to taint :  | instance_variables.rb:10:19:10:19 | x :  |
-| instance_variables.rb:40:16:40:24 | call to taint :  | instance_variables.rb:10:19:10:19 | x :  |
-| instance_variables.rb:40:16:40:24 | call to taint :  | instance_variables.rb:40:1:40:4 | [post] foo3 [@field] :  |
-| instance_variables.rb:40:16:40:24 | call to taint :  | instance_variables.rb:40:1:40:4 | [post] foo3 [@field] :  |
-| instance_variables.rb:41:6:41:9 | foo3 [@field] :  | instance_variables.rb:41:6:41:15 | call to field |
-| instance_variables.rb:41:6:41:9 | foo3 [@field] :  | instance_variables.rb:41:6:41:15 | call to field |
-| instance_variables.rb:48:2:48:5 | [post] foo5 [@field] :  | instance_variables.rb:49:6:49:9 | foo5 [@field] :  |
-| instance_variables.rb:48:2:48:5 | [post] foo5 [@field] :  | instance_variables.rb:49:6:49:9 | foo5 [@field] :  |
-| instance_variables.rb:48:2:48:5 | [post] foo5 [@field] :  | instance_variables.rb:54:6:54:9 | foo5 [@field] :  |
-| instance_variables.rb:48:2:48:5 | [post] foo5 [@field] :  | instance_variables.rb:54:6:54:9 | foo5 [@field] :  |
-| instance_variables.rb:48:18:48:26 | call to taint :  | instance_variables.rb:10:19:10:19 | x :  |
-| instance_variables.rb:48:18:48:26 | call to taint :  | instance_variables.rb:10:19:10:19 | x :  |
-| instance_variables.rb:48:18:48:26 | call to taint :  | instance_variables.rb:48:2:48:5 | [post] foo5 [@field] :  |
-| instance_variables.rb:48:18:48:26 | call to taint :  | instance_variables.rb:48:2:48:5 | [post] foo5 [@field] :  |
-| instance_variables.rb:49:6:49:9 | foo5 [@field] :  | instance_variables.rb:13:5:15:7 | self in get_field [@field] :  |
-| instance_variables.rb:49:6:49:9 | foo5 [@field] :  | instance_variables.rb:13:5:15:7 | self in get_field [@field] :  |
-| instance_variables.rb:49:6:49:9 | foo5 [@field] :  | instance_variables.rb:49:6:49:19 | call to get_field |
-| instance_variables.rb:49:6:49:9 | foo5 [@field] :  | instance_variables.rb:49:6:49:19 | call to get_field |
-| instance_variables.rb:52:15:52:18 | [post] foo6 [@field] :  | instance_variables.rb:55:6:55:9 | foo6 [@field] :  |
-| instance_variables.rb:52:15:52:18 | [post] foo6 [@field] :  | instance_variables.rb:55:6:55:9 | foo6 [@field] :  |
-| instance_variables.rb:52:32:52:40 | call to taint :  | instance_variables.rb:10:19:10:19 | x :  |
-| instance_variables.rb:52:32:52:40 | call to taint :  | instance_variables.rb:10:19:10:19 | x :  |
-| instance_variables.rb:52:32:52:40 | call to taint :  | instance_variables.rb:52:15:52:18 | [post] foo6 [@field] :  |
-| instance_variables.rb:52:32:52:40 | call to taint :  | instance_variables.rb:52:15:52:18 | [post] foo6 [@field] :  |
-| instance_variables.rb:53:6:53:9 | foo3 [@field] :  | instance_variables.rb:13:5:15:7 | self in get_field [@field] :  |
-| instance_variables.rb:53:6:53:9 | foo3 [@field] :  | instance_variables.rb:13:5:15:7 | self in get_field [@field] :  |
-| instance_variables.rb:53:6:53:9 | foo3 [@field] :  | instance_variables.rb:53:6:53:19 | call to get_field |
-| instance_variables.rb:53:6:53:9 | foo3 [@field] :  | instance_variables.rb:53:6:53:19 | call to get_field |
-| instance_variables.rb:54:6:54:9 | foo5 [@field] :  | instance_variables.rb:13:5:15:7 | self in get_field [@field] :  |
-| instance_variables.rb:54:6:54:9 | foo5 [@field] :  | instance_variables.rb:13:5:15:7 | self in get_field [@field] :  |
-| instance_variables.rb:54:6:54:9 | foo5 [@field] :  | instance_variables.rb:54:6:54:19 | call to get_field |
-| instance_variables.rb:54:6:54:9 | foo5 [@field] :  | instance_variables.rb:54:6:54:19 | call to get_field |
-| instance_variables.rb:55:6:55:9 | foo6 [@field] :  | instance_variables.rb:13:5:15:7 | self in get_field [@field] :  |
-| instance_variables.rb:55:6:55:9 | foo6 [@field] :  | instance_variables.rb:13:5:15:7 | self in get_field [@field] :  |
-| instance_variables.rb:55:6:55:9 | foo6 [@field] :  | instance_variables.rb:55:6:55:19 | call to get_field |
-| instance_variables.rb:55:6:55:9 | foo6 [@field] :  | instance_variables.rb:55:6:55:19 | call to get_field |
-| instance_variables.rb:59:15:59:18 | [post] foo7 [@field] :  | instance_variables.rb:60:6:60:9 | foo7 [@field] :  |
-| instance_variables.rb:59:15:59:18 | [post] foo7 [@field] :  | instance_variables.rb:60:6:60:9 | foo7 [@field] :  |
-| instance_variables.rb:59:25:59:28 | [post] foo8 [@field] :  | instance_variables.rb:61:6:61:9 | foo8 [@field] :  |
-| instance_variables.rb:59:25:59:28 | [post] foo8 [@field] :  | instance_variables.rb:61:6:61:9 | foo8 [@field] :  |
-| instance_variables.rb:59:45:59:53 | call to taint :  | instance_variables.rb:10:19:10:19 | x :  |
-| instance_variables.rb:59:45:59:53 | call to taint :  | instance_variables.rb:10:19:10:19 | x :  |
-| instance_variables.rb:59:45:59:53 | call to taint :  | instance_variables.rb:59:15:59:18 | [post] foo7 [@field] :  |
-| instance_variables.rb:59:45:59:53 | call to taint :  | instance_variables.rb:59:15:59:18 | [post] foo7 [@field] :  |
-| instance_variables.rb:59:45:59:53 | call to taint :  | instance_variables.rb:59:25:59:28 | [post] foo8 [@field] :  |
-| instance_variables.rb:59:45:59:53 | call to taint :  | instance_variables.rb:59:25:59:28 | [post] foo8 [@field] :  |
-| instance_variables.rb:60:6:60:9 | foo7 [@field] :  | instance_variables.rb:13:5:15:7 | self in get_field [@field] :  |
-| instance_variables.rb:60:6:60:9 | foo7 [@field] :  | instance_variables.rb:13:5:15:7 | self in get_field [@field] :  |
-| instance_variables.rb:60:6:60:9 | foo7 [@field] :  | instance_variables.rb:60:6:60:19 | call to get_field |
-| instance_variables.rb:60:6:60:9 | foo7 [@field] :  | instance_variables.rb:60:6:60:19 | call to get_field |
-| instance_variables.rb:61:6:61:9 | foo8 [@field] :  | instance_variables.rb:13:5:15:7 | self in get_field [@field] :  |
-| instance_variables.rb:61:6:61:9 | foo8 [@field] :  | instance_variables.rb:13:5:15:7 | self in get_field [@field] :  |
-| instance_variables.rb:61:6:61:9 | foo8 [@field] :  | instance_variables.rb:61:6:61:19 | call to get_field |
-| instance_variables.rb:61:6:61:9 | foo8 [@field] :  | instance_variables.rb:61:6:61:19 | call to get_field |
-| instance_variables.rb:65:22:65:25 | [post] foo9 [@field] :  | instance_variables.rb:66:6:66:9 | foo9 [@field] :  |
-| instance_variables.rb:65:22:65:25 | [post] foo9 [@field] :  | instance_variables.rb:66:6:66:9 | foo9 [@field] :  |
-| instance_variables.rb:65:32:65:36 | [post] foo10 [@field] :  | instance_variables.rb:67:6:67:10 | foo10 [@field] :  |
-| instance_variables.rb:65:32:65:36 | [post] foo10 [@field] :  | instance_variables.rb:67:6:67:10 | foo10 [@field] :  |
-| instance_variables.rb:65:53:65:61 | call to taint :  | instance_variables.rb:10:19:10:19 | x :  |
-| instance_variables.rb:65:53:65:61 | call to taint :  | instance_variables.rb:10:19:10:19 | x :  |
-| instance_variables.rb:65:53:65:61 | call to taint :  | instance_variables.rb:65:22:65:25 | [post] foo9 [@field] :  |
-| instance_variables.rb:65:53:65:61 | call to taint :  | instance_variables.rb:65:22:65:25 | [post] foo9 [@field] :  |
-| instance_variables.rb:65:53:65:61 | call to taint :  | instance_variables.rb:65:32:65:36 | [post] foo10 [@field] :  |
-| instance_variables.rb:65:53:65:61 | call to taint :  | instance_variables.rb:65:32:65:36 | [post] foo10 [@field] :  |
-| instance_variables.rb:66:6:66:9 | foo9 [@field] :  | instance_variables.rb:13:5:15:7 | self in get_field [@field] :  |
-| instance_variables.rb:66:6:66:9 | foo9 [@field] :  | instance_variables.rb:13:5:15:7 | self in get_field [@field] :  |
-| instance_variables.rb:66:6:66:9 | foo9 [@field] :  | instance_variables.rb:66:6:66:19 | call to get_field |
-| instance_variables.rb:66:6:66:9 | foo9 [@field] :  | instance_variables.rb:66:6:66:19 | call to get_field |
-| instance_variables.rb:67:6:67:10 | foo10 [@field] :  | instance_variables.rb:13:5:15:7 | self in get_field [@field] :  |
-| instance_variables.rb:67:6:67:10 | foo10 [@field] :  | instance_variables.rb:13:5:15:7 | self in get_field [@field] :  |
-| instance_variables.rb:67:6:67:10 | foo10 [@field] :  | instance_variables.rb:67:6:67:20 | call to get_field |
-| instance_variables.rb:67:6:67:10 | foo10 [@field] :  | instance_variables.rb:67:6:67:20 | call to get_field |
-| instance_variables.rb:70:5:70:5 | [post] x [@field] :  | instance_variables.rb:74:14:74:18 | [post] foo11 [@field] :  |
-| instance_variables.rb:70:5:70:5 | [post] x [@field] :  | instance_variables.rb:74:14:74:18 | [post] foo11 [@field] :  |
-| instance_variables.rb:70:5:70:5 | [post] x [@field] :  | instance_variables.rb:78:15:78:19 | [post] foo12 [@field] :  |
-| instance_variables.rb:70:5:70:5 | [post] x [@field] :  | instance_variables.rb:78:15:78:19 | [post] foo12 [@field] :  |
-| instance_variables.rb:70:5:70:5 | [post] x [@field] :  | instance_variables.rb:83:22:83:26 | [post] foo13 [@field] :  |
-| instance_variables.rb:70:5:70:5 | [post] x [@field] :  | instance_variables.rb:83:22:83:26 | [post] foo13 [@field] :  |
-| instance_variables.rb:70:17:70:25 | call to taint :  | instance_variables.rb:10:19:10:19 | x :  |
-| instance_variables.rb:70:17:70:25 | call to taint :  | instance_variables.rb:10:19:10:19 | x :  |
-| instance_variables.rb:70:17:70:25 | call to taint :  | instance_variables.rb:70:5:70:5 | [post] x [@field] :  |
-| instance_variables.rb:70:17:70:25 | call to taint :  | instance_variables.rb:70:5:70:5 | [post] x [@field] :  |
-| instance_variables.rb:74:14:74:18 | [post] foo11 [@field] :  | instance_variables.rb:75:6:75:10 | foo11 [@field] :  |
-| instance_variables.rb:74:14:74:18 | [post] foo11 [@field] :  | instance_variables.rb:75:6:75:10 | foo11 [@field] :  |
-| instance_variables.rb:75:6:75:10 | foo11 [@field] :  | instance_variables.rb:13:5:15:7 | self in get_field [@field] :  |
-| instance_variables.rb:75:6:75:10 | foo11 [@field] :  | instance_variables.rb:13:5:15:7 | self in get_field [@field] :  |
-| instance_variables.rb:75:6:75:10 | foo11 [@field] :  | instance_variables.rb:75:6:75:20 | call to get_field |
-| instance_variables.rb:75:6:75:10 | foo11 [@field] :  | instance_variables.rb:75:6:75:20 | call to get_field |
-| instance_variables.rb:78:15:78:19 | [post] foo12 [@field] :  | instance_variables.rb:79:6:79:10 | foo12 [@field] :  |
-| instance_variables.rb:78:15:78:19 | [post] foo12 [@field] :  | instance_variables.rb:79:6:79:10 | foo12 [@field] :  |
-| instance_variables.rb:79:6:79:10 | foo12 [@field] :  | instance_variables.rb:13:5:15:7 | self in get_field [@field] :  |
-| instance_variables.rb:79:6:79:10 | foo12 [@field] :  | instance_variables.rb:13:5:15:7 | self in get_field [@field] :  |
-| instance_variables.rb:79:6:79:10 | foo12 [@field] :  | instance_variables.rb:79:6:79:20 | call to get_field |
-| instance_variables.rb:79:6:79:10 | foo12 [@field] :  | instance_variables.rb:79:6:79:20 | call to get_field |
-| instance_variables.rb:83:22:83:26 | [post] foo13 [@field] :  | instance_variables.rb:84:6:84:10 | foo13 [@field] :  |
-| instance_variables.rb:83:22:83:26 | [post] foo13 [@field] :  | instance_variables.rb:84:6:84:10 | foo13 [@field] :  |
-| instance_variables.rb:84:6:84:10 | foo13 [@field] :  | instance_variables.rb:13:5:15:7 | self in get_field [@field] :  |
-| instance_variables.rb:84:6:84:10 | foo13 [@field] :  | instance_variables.rb:13:5:15:7 | self in get_field [@field] :  |
-| instance_variables.rb:84:6:84:10 | foo13 [@field] :  | instance_variables.rb:84:6:84:20 | call to get_field |
-| instance_variables.rb:84:6:84:10 | foo13 [@field] :  | instance_variables.rb:84:6:84:20 | call to get_field |
+| instance_variables.rb:22:20:22:24 | field :  | instance_variables.rb:23:18:23:22 | field :  |
+| instance_variables.rb:22:20:22:24 | field :  | instance_variables.rb:23:18:23:22 | field :  |
+| instance_variables.rb:23:18:23:22 | field :  | instance_variables.rb:23:9:23:14 | [post] self [@field] :  |
+| instance_variables.rb:23:18:23:22 | field :  | instance_variables.rb:23:9:23:14 | [post] self [@field] :  |
+| instance_variables.rb:24:9:24:17 | call to taint :  | instance_variables.rb:28:9:28:25 | call to initialize :  |
+| instance_variables.rb:24:9:24:17 | call to taint :  | instance_variables.rb:28:9:28:25 | call to initialize :  |
+| instance_variables.rb:27:25:27:29 | field :  | instance_variables.rb:28:20:28:24 | field :  |
+| instance_variables.rb:27:25:27:29 | field :  | instance_variables.rb:28:20:28:24 | field :  |
+| instance_variables.rb:28:9:28:25 | call to initialize :  | instance_variables.rb:104:6:104:37 | call to call_initialize |
+| instance_variables.rb:28:9:28:25 | call to initialize :  | instance_variables.rb:104:6:104:37 | call to call_initialize |
+| instance_variables.rb:28:20:28:24 | field :  | instance_variables.rb:22:20:22:24 | field :  |
+| instance_variables.rb:28:20:28:24 | field :  | instance_variables.rb:22:20:22:24 | field :  |
+| instance_variables.rb:28:20:28:24 | field :  | instance_variables.rb:28:9:28:25 | [post] self [@field] :  |
+| instance_variables.rb:28:20:28:24 | field :  | instance_variables.rb:28:9:28:25 | [post] self [@field] :  |
+| instance_variables.rb:34:9:34:17 | call to taint :  | instance_variables.rb:106:7:106:24 | call to new :  |
+| instance_variables.rb:34:9:34:17 | call to taint :  | instance_variables.rb:106:7:106:24 | call to new :  |
+| instance_variables.rb:39:1:39:3 | [post] foo [@field] :  | instance_variables.rb:40:6:40:8 | foo [@field] :  |
+| instance_variables.rb:39:1:39:3 | [post] foo [@field] :  | instance_variables.rb:40:6:40:8 | foo [@field] :  |
+| instance_variables.rb:39:15:39:23 | call to taint :  | instance_variables.rb:10:19:10:19 | x :  |
+| instance_variables.rb:39:15:39:23 | call to taint :  | instance_variables.rb:10:19:10:19 | x :  |
+| instance_variables.rb:39:15:39:23 | call to taint :  | instance_variables.rb:39:1:39:3 | [post] foo [@field] :  |
+| instance_variables.rb:39:15:39:23 | call to taint :  | instance_variables.rb:39:1:39:3 | [post] foo [@field] :  |
+| instance_variables.rb:40:6:40:8 | foo [@field] :  | instance_variables.rb:13:5:15:7 | self in get_field [@field] :  |
+| instance_variables.rb:40:6:40:8 | foo [@field] :  | instance_variables.rb:13:5:15:7 | self in get_field [@field] :  |
+| instance_variables.rb:40:6:40:8 | foo [@field] :  | instance_variables.rb:40:6:40:18 | call to get_field |
+| instance_variables.rb:40:6:40:8 | foo [@field] :  | instance_variables.rb:40:6:40:18 | call to get_field |
+| instance_variables.rb:43:1:43:3 | [post] bar [@field] :  | instance_variables.rb:44:6:44:8 | bar [@field] :  |
+| instance_variables.rb:43:15:43:22 | call to taint :  | instance_variables.rb:10:19:10:19 | x :  |
+| instance_variables.rb:43:15:43:22 | call to taint :  | instance_variables.rb:43:1:43:3 | [post] bar [@field] :  |
+| instance_variables.rb:44:6:44:8 | bar [@field] :  | instance_variables.rb:16:5:18:7 | self in inc_field [@field] :  |
+| instance_variables.rb:44:6:44:8 | bar [@field] :  | instance_variables.rb:44:6:44:18 | call to inc_field |
+| instance_variables.rb:47:1:47:4 | [post] foo1 [@field] :  | instance_variables.rb:48:6:48:9 | foo1 [@field] :  |
+| instance_variables.rb:47:1:47:4 | [post] foo1 [@field] :  | instance_variables.rb:48:6:48:9 | foo1 [@field] :  |
+| instance_variables.rb:47:14:47:22 | call to taint :  | instance_variables.rb:47:1:47:4 | [post] foo1 [@field] :  |
+| instance_variables.rb:47:14:47:22 | call to taint :  | instance_variables.rb:47:1:47:4 | [post] foo1 [@field] :  |
+| instance_variables.rb:48:6:48:9 | foo1 [@field] :  | instance_variables.rb:48:6:48:15 | call to field |
+| instance_variables.rb:48:6:48:9 | foo1 [@field] :  | instance_variables.rb:48:6:48:15 | call to field |
+| instance_variables.rb:51:1:51:4 | [post] foo2 [@field] :  | instance_variables.rb:52:6:52:9 | foo2 [@field] :  |
+| instance_variables.rb:51:1:51:4 | [post] foo2 [@field] :  | instance_variables.rb:52:6:52:9 | foo2 [@field] :  |
+| instance_variables.rb:51:14:51:22 | call to taint :  | instance_variables.rb:51:1:51:4 | [post] foo2 [@field] :  |
+| instance_variables.rb:51:14:51:22 | call to taint :  | instance_variables.rb:51:1:51:4 | [post] foo2 [@field] :  |
+| instance_variables.rb:52:6:52:9 | foo2 [@field] :  | instance_variables.rb:13:5:15:7 | self in get_field [@field] :  |
+| instance_variables.rb:52:6:52:9 | foo2 [@field] :  | instance_variables.rb:13:5:15:7 | self in get_field [@field] :  |
+| instance_variables.rb:52:6:52:9 | foo2 [@field] :  | instance_variables.rb:52:6:52:19 | call to get_field |
+| instance_variables.rb:52:6:52:9 | foo2 [@field] :  | instance_variables.rb:52:6:52:19 | call to get_field |
+| instance_variables.rb:55:1:55:4 | [post] foo3 [@field] :  | instance_variables.rb:56:6:56:9 | foo3 [@field] :  |
+| instance_variables.rb:55:1:55:4 | [post] foo3 [@field] :  | instance_variables.rb:56:6:56:9 | foo3 [@field] :  |
+| instance_variables.rb:55:1:55:4 | [post] foo3 [@field] :  | instance_variables.rb:68:6:68:9 | foo3 [@field] :  |
+| instance_variables.rb:55:1:55:4 | [post] foo3 [@field] :  | instance_variables.rb:68:6:68:9 | foo3 [@field] :  |
+| instance_variables.rb:55:16:55:24 | call to taint :  | instance_variables.rb:10:19:10:19 | x :  |
+| instance_variables.rb:55:16:55:24 | call to taint :  | instance_variables.rb:10:19:10:19 | x :  |
+| instance_variables.rb:55:16:55:24 | call to taint :  | instance_variables.rb:55:1:55:4 | [post] foo3 [@field] :  |
+| instance_variables.rb:55:16:55:24 | call to taint :  | instance_variables.rb:55:1:55:4 | [post] foo3 [@field] :  |
+| instance_variables.rb:56:6:56:9 | foo3 [@field] :  | instance_variables.rb:56:6:56:15 | call to field |
+| instance_variables.rb:56:6:56:9 | foo3 [@field] :  | instance_variables.rb:56:6:56:15 | call to field |
+| instance_variables.rb:63:2:63:5 | [post] foo5 [@field] :  | instance_variables.rb:64:6:64:9 | foo5 [@field] :  |
+| instance_variables.rb:63:2:63:5 | [post] foo5 [@field] :  | instance_variables.rb:64:6:64:9 | foo5 [@field] :  |
+| instance_variables.rb:63:2:63:5 | [post] foo5 [@field] :  | instance_variables.rb:69:6:69:9 | foo5 [@field] :  |
+| instance_variables.rb:63:2:63:5 | [post] foo5 [@field] :  | instance_variables.rb:69:6:69:9 | foo5 [@field] :  |
+| instance_variables.rb:63:18:63:26 | call to taint :  | instance_variables.rb:10:19:10:19 | x :  |
+| instance_variables.rb:63:18:63:26 | call to taint :  | instance_variables.rb:10:19:10:19 | x :  |
+| instance_variables.rb:63:18:63:26 | call to taint :  | instance_variables.rb:63:2:63:5 | [post] foo5 [@field] :  |
+| instance_variables.rb:63:18:63:26 | call to taint :  | instance_variables.rb:63:2:63:5 | [post] foo5 [@field] :  |
+| instance_variables.rb:64:6:64:9 | foo5 [@field] :  | instance_variables.rb:13:5:15:7 | self in get_field [@field] :  |
+| instance_variables.rb:64:6:64:9 | foo5 [@field] :  | instance_variables.rb:13:5:15:7 | self in get_field [@field] :  |
+| instance_variables.rb:64:6:64:9 | foo5 [@field] :  | instance_variables.rb:64:6:64:19 | call to get_field |
+| instance_variables.rb:64:6:64:9 | foo5 [@field] :  | instance_variables.rb:64:6:64:19 | call to get_field |
+| instance_variables.rb:67:15:67:18 | [post] foo6 [@field] :  | instance_variables.rb:70:6:70:9 | foo6 [@field] :  |
+| instance_variables.rb:67:15:67:18 | [post] foo6 [@field] :  | instance_variables.rb:70:6:70:9 | foo6 [@field] :  |
+| instance_variables.rb:67:32:67:40 | call to taint :  | instance_variables.rb:10:19:10:19 | x :  |
+| instance_variables.rb:67:32:67:40 | call to taint :  | instance_variables.rb:10:19:10:19 | x :  |
+| instance_variables.rb:67:32:67:40 | call to taint :  | instance_variables.rb:67:15:67:18 | [post] foo6 [@field] :  |
+| instance_variables.rb:67:32:67:40 | call to taint :  | instance_variables.rb:67:15:67:18 | [post] foo6 [@field] :  |
+| instance_variables.rb:68:6:68:9 | foo3 [@field] :  | instance_variables.rb:13:5:15:7 | self in get_field [@field] :  |
+| instance_variables.rb:68:6:68:9 | foo3 [@field] :  | instance_variables.rb:13:5:15:7 | self in get_field [@field] :  |
+| instance_variables.rb:68:6:68:9 | foo3 [@field] :  | instance_variables.rb:68:6:68:19 | call to get_field |
+| instance_variables.rb:68:6:68:9 | foo3 [@field] :  | instance_variables.rb:68:6:68:19 | call to get_field |
+| instance_variables.rb:69:6:69:9 | foo5 [@field] :  | instance_variables.rb:13:5:15:7 | self in get_field [@field] :  |
+| instance_variables.rb:69:6:69:9 | foo5 [@field] :  | instance_variables.rb:13:5:15:7 | self in get_field [@field] :  |
+| instance_variables.rb:69:6:69:9 | foo5 [@field] :  | instance_variables.rb:69:6:69:19 | call to get_field |
+| instance_variables.rb:69:6:69:9 | foo5 [@field] :  | instance_variables.rb:69:6:69:19 | call to get_field |
+| instance_variables.rb:70:6:70:9 | foo6 [@field] :  | instance_variables.rb:13:5:15:7 | self in get_field [@field] :  |
+| instance_variables.rb:70:6:70:9 | foo6 [@field] :  | instance_variables.rb:13:5:15:7 | self in get_field [@field] :  |
+| instance_variables.rb:70:6:70:9 | foo6 [@field] :  | instance_variables.rb:70:6:70:19 | call to get_field |
+| instance_variables.rb:70:6:70:9 | foo6 [@field] :  | instance_variables.rb:70:6:70:19 | call to get_field |
+| instance_variables.rb:74:15:74:18 | [post] foo7 [@field] :  | instance_variables.rb:75:6:75:9 | foo7 [@field] :  |
+| instance_variables.rb:74:15:74:18 | [post] foo7 [@field] :  | instance_variables.rb:75:6:75:9 | foo7 [@field] :  |
+| instance_variables.rb:74:25:74:28 | [post] foo8 [@field] :  | instance_variables.rb:76:6:76:9 | foo8 [@field] :  |
+| instance_variables.rb:74:25:74:28 | [post] foo8 [@field] :  | instance_variables.rb:76:6:76:9 | foo8 [@field] :  |
+| instance_variables.rb:74:45:74:53 | call to taint :  | instance_variables.rb:10:19:10:19 | x :  |
+| instance_variables.rb:74:45:74:53 | call to taint :  | instance_variables.rb:10:19:10:19 | x :  |
+| instance_variables.rb:74:45:74:53 | call to taint :  | instance_variables.rb:74:15:74:18 | [post] foo7 [@field] :  |
+| instance_variables.rb:74:45:74:53 | call to taint :  | instance_variables.rb:74:15:74:18 | [post] foo7 [@field] :  |
+| instance_variables.rb:74:45:74:53 | call to taint :  | instance_variables.rb:74:25:74:28 | [post] foo8 [@field] :  |
+| instance_variables.rb:74:45:74:53 | call to taint :  | instance_variables.rb:74:25:74:28 | [post] foo8 [@field] :  |
+| instance_variables.rb:75:6:75:9 | foo7 [@field] :  | instance_variables.rb:13:5:15:7 | self in get_field [@field] :  |
+| instance_variables.rb:75:6:75:9 | foo7 [@field] :  | instance_variables.rb:13:5:15:7 | self in get_field [@field] :  |
+| instance_variables.rb:75:6:75:9 | foo7 [@field] :  | instance_variables.rb:75:6:75:19 | call to get_field |
+| instance_variables.rb:75:6:75:9 | foo7 [@field] :  | instance_variables.rb:75:6:75:19 | call to get_field |
+| instance_variables.rb:76:6:76:9 | foo8 [@field] :  | instance_variables.rb:13:5:15:7 | self in get_field [@field] :  |
+| instance_variables.rb:76:6:76:9 | foo8 [@field] :  | instance_variables.rb:13:5:15:7 | self in get_field [@field] :  |
+| instance_variables.rb:76:6:76:9 | foo8 [@field] :  | instance_variables.rb:76:6:76:19 | call to get_field |
+| instance_variables.rb:76:6:76:9 | foo8 [@field] :  | instance_variables.rb:76:6:76:19 | call to get_field |
+| instance_variables.rb:80:22:80:25 | [post] foo9 [@field] :  | instance_variables.rb:81:6:81:9 | foo9 [@field] :  |
+| instance_variables.rb:80:22:80:25 | [post] foo9 [@field] :  | instance_variables.rb:81:6:81:9 | foo9 [@field] :  |
+| instance_variables.rb:80:32:80:36 | [post] foo10 [@field] :  | instance_variables.rb:82:6:82:10 | foo10 [@field] :  |
+| instance_variables.rb:80:32:80:36 | [post] foo10 [@field] :  | instance_variables.rb:82:6:82:10 | foo10 [@field] :  |
+| instance_variables.rb:80:53:80:61 | call to taint :  | instance_variables.rb:10:19:10:19 | x :  |
+| instance_variables.rb:80:53:80:61 | call to taint :  | instance_variables.rb:10:19:10:19 | x :  |
+| instance_variables.rb:80:53:80:61 | call to taint :  | instance_variables.rb:80:22:80:25 | [post] foo9 [@field] :  |
+| instance_variables.rb:80:53:80:61 | call to taint :  | instance_variables.rb:80:22:80:25 | [post] foo9 [@field] :  |
+| instance_variables.rb:80:53:80:61 | call to taint :  | instance_variables.rb:80:32:80:36 | [post] foo10 [@field] :  |
+| instance_variables.rb:80:53:80:61 | call to taint :  | instance_variables.rb:80:32:80:36 | [post] foo10 [@field] :  |
+| instance_variables.rb:81:6:81:9 | foo9 [@field] :  | instance_variables.rb:13:5:15:7 | self in get_field [@field] :  |
+| instance_variables.rb:81:6:81:9 | foo9 [@field] :  | instance_variables.rb:13:5:15:7 | self in get_field [@field] :  |
+| instance_variables.rb:81:6:81:9 | foo9 [@field] :  | instance_variables.rb:81:6:81:19 | call to get_field |
+| instance_variables.rb:81:6:81:9 | foo9 [@field] :  | instance_variables.rb:81:6:81:19 | call to get_field |
+| instance_variables.rb:82:6:82:10 | foo10 [@field] :  | instance_variables.rb:13:5:15:7 | self in get_field [@field] :  |
+| instance_variables.rb:82:6:82:10 | foo10 [@field] :  | instance_variables.rb:13:5:15:7 | self in get_field [@field] :  |
+| instance_variables.rb:82:6:82:10 | foo10 [@field] :  | instance_variables.rb:82:6:82:20 | call to get_field |
+| instance_variables.rb:82:6:82:10 | foo10 [@field] :  | instance_variables.rb:82:6:82:20 | call to get_field |
+| instance_variables.rb:85:5:85:5 | [post] x [@field] :  | instance_variables.rb:89:14:89:18 | [post] foo11 [@field] :  |
+| instance_variables.rb:85:5:85:5 | [post] x [@field] :  | instance_variables.rb:89:14:89:18 | [post] foo11 [@field] :  |
+| instance_variables.rb:85:5:85:5 | [post] x [@field] :  | instance_variables.rb:93:15:93:19 | [post] foo12 [@field] :  |
+| instance_variables.rb:85:5:85:5 | [post] x [@field] :  | instance_variables.rb:93:15:93:19 | [post] foo12 [@field] :  |
+| instance_variables.rb:85:5:85:5 | [post] x [@field] :  | instance_variables.rb:98:22:98:26 | [post] foo13 [@field] :  |
+| instance_variables.rb:85:5:85:5 | [post] x [@field] :  | instance_variables.rb:98:22:98:26 | [post] foo13 [@field] :  |
+| instance_variables.rb:85:17:85:25 | call to taint :  | instance_variables.rb:10:19:10:19 | x :  |
+| instance_variables.rb:85:17:85:25 | call to taint :  | instance_variables.rb:10:19:10:19 | x :  |
+| instance_variables.rb:85:17:85:25 | call to taint :  | instance_variables.rb:85:5:85:5 | [post] x [@field] :  |
+| instance_variables.rb:85:17:85:25 | call to taint :  | instance_variables.rb:85:5:85:5 | [post] x [@field] :  |
+| instance_variables.rb:89:14:89:18 | [post] foo11 [@field] :  | instance_variables.rb:90:6:90:10 | foo11 [@field] :  |
+| instance_variables.rb:89:14:89:18 | [post] foo11 [@field] :  | instance_variables.rb:90:6:90:10 | foo11 [@field] :  |
+| instance_variables.rb:90:6:90:10 | foo11 [@field] :  | instance_variables.rb:13:5:15:7 | self in get_field [@field] :  |
+| instance_variables.rb:90:6:90:10 | foo11 [@field] :  | instance_variables.rb:13:5:15:7 | self in get_field [@field] :  |
+| instance_variables.rb:90:6:90:10 | foo11 [@field] :  | instance_variables.rb:90:6:90:20 | call to get_field |
+| instance_variables.rb:90:6:90:10 | foo11 [@field] :  | instance_variables.rb:90:6:90:20 | call to get_field |
+| instance_variables.rb:93:15:93:19 | [post] foo12 [@field] :  | instance_variables.rb:94:6:94:10 | foo12 [@field] :  |
+| instance_variables.rb:93:15:93:19 | [post] foo12 [@field] :  | instance_variables.rb:94:6:94:10 | foo12 [@field] :  |
+| instance_variables.rb:94:6:94:10 | foo12 [@field] :  | instance_variables.rb:13:5:15:7 | self in get_field [@field] :  |
+| instance_variables.rb:94:6:94:10 | foo12 [@field] :  | instance_variables.rb:13:5:15:7 | self in get_field [@field] :  |
+| instance_variables.rb:94:6:94:10 | foo12 [@field] :  | instance_variables.rb:94:6:94:20 | call to get_field |
+| instance_variables.rb:94:6:94:10 | foo12 [@field] :  | instance_variables.rb:94:6:94:20 | call to get_field |
+| instance_variables.rb:98:22:98:26 | [post] foo13 [@field] :  | instance_variables.rb:99:6:99:10 | foo13 [@field] :  |
+| instance_variables.rb:98:22:98:26 | [post] foo13 [@field] :  | instance_variables.rb:99:6:99:10 | foo13 [@field] :  |
+| instance_variables.rb:99:6:99:10 | foo13 [@field] :  | instance_variables.rb:13:5:15:7 | self in get_field [@field] :  |
+| instance_variables.rb:99:6:99:10 | foo13 [@field] :  | instance_variables.rb:13:5:15:7 | self in get_field [@field] :  |
+| instance_variables.rb:99:6:99:10 | foo13 [@field] :  | instance_variables.rb:99:6:99:20 | call to get_field |
+| instance_variables.rb:99:6:99:10 | foo13 [@field] :  | instance_variables.rb:99:6:99:20 | call to get_field |
+| instance_variables.rb:104:6:104:10 | [post] foo16 [@field] :  | instance_variables.rb:105:6:105:10 | foo16 [@field] :  |
+| instance_variables.rb:104:6:104:10 | [post] foo16 [@field] :  | instance_variables.rb:105:6:105:10 | foo16 [@field] :  |
+| instance_variables.rb:104:28:104:36 | call to taint :  | instance_variables.rb:27:25:27:29 | field :  |
+| instance_variables.rb:104:28:104:36 | call to taint :  | instance_variables.rb:27:25:27:29 | field :  |
+| instance_variables.rb:104:28:104:36 | call to taint :  | instance_variables.rb:104:6:104:10 | [post] foo16 [@field] :  |
+| instance_variables.rb:104:28:104:36 | call to taint :  | instance_variables.rb:104:6:104:10 | [post] foo16 [@field] :  |
+| instance_variables.rb:105:6:105:10 | foo16 [@field] :  | instance_variables.rb:13:5:15:7 | self in get_field [@field] :  |
+| instance_variables.rb:105:6:105:10 | foo16 [@field] :  | instance_variables.rb:13:5:15:7 | self in get_field [@field] :  |
+| instance_variables.rb:105:6:105:10 | foo16 [@field] :  | instance_variables.rb:105:6:105:20 | call to get_field |
+| instance_variables.rb:105:6:105:10 | foo16 [@field] :  | instance_variables.rb:105:6:105:20 | call to get_field |
+| instance_variables.rb:106:7:106:24 | call to new :  | instance_variables.rb:107:6:107:8 | bar |
+| instance_variables.rb:106:7:106:24 | call to new :  | instance_variables.rb:107:6:107:8 | bar |
 nodes
 | captured_variables.rb:1:24:1:24 | x :  | semmle.label | x :  |
 | captured_variables.rb:1:24:1:24 | x :  | semmle.label | x :  |
@@ -206,182 +235,223 @@ nodes
 | instance_variables.rb:20:10:20:13 | @foo | semmle.label | @foo |
 | instance_variables.rb:20:10:20:13 | self [@foo] :  | semmle.label | self [@foo] :  |
 | instance_variables.rb:20:10:20:13 | self [@foo] :  | semmle.label | self [@foo] :  |
-| instance_variables.rb:24:1:24:3 | [post] foo [@field] :  | semmle.label | [post] foo [@field] :  |
-| instance_variables.rb:24:1:24:3 | [post] foo [@field] :  | semmle.label | [post] foo [@field] :  |
-| instance_variables.rb:24:15:24:23 | call to taint :  | semmle.label | call to taint :  |
-| instance_variables.rb:24:15:24:23 | call to taint :  | semmle.label | call to taint :  |
-| instance_variables.rb:25:6:25:8 | foo [@field] :  | semmle.label | foo [@field] :  |
-| instance_variables.rb:25:6:25:8 | foo [@field] :  | semmle.label | foo [@field] :  |
-| instance_variables.rb:25:6:25:18 | call to get_field | semmle.label | call to get_field |
-| instance_variables.rb:25:6:25:18 | call to get_field | semmle.label | call to get_field |
-| instance_variables.rb:28:1:28:3 | [post] bar [@field] :  | semmle.label | [post] bar [@field] :  |
-| instance_variables.rb:28:15:28:22 | call to taint :  | semmle.label | call to taint :  |
-| instance_variables.rb:29:6:29:8 | bar [@field] :  | semmle.label | bar [@field] :  |
-| instance_variables.rb:29:6:29:18 | call to inc_field | semmle.label | call to inc_field |
-| instance_variables.rb:32:1:32:4 | [post] foo1 [@field] :  | semmle.label | [post] foo1 [@field] :  |
-| instance_variables.rb:32:1:32:4 | [post] foo1 [@field] :  | semmle.label | [post] foo1 [@field] :  |
-| instance_variables.rb:32:14:32:22 | call to taint :  | semmle.label | call to taint :  |
-| instance_variables.rb:32:14:32:22 | call to taint :  | semmle.label | call to taint :  |
-| instance_variables.rb:33:6:33:9 | foo1 [@field] :  | semmle.label | foo1 [@field] :  |
-| instance_variables.rb:33:6:33:9 | foo1 [@field] :  | semmle.label | foo1 [@field] :  |
-| instance_variables.rb:33:6:33:15 | call to field | semmle.label | call to field |
-| instance_variables.rb:33:6:33:15 | call to field | semmle.label | call to field |
-| instance_variables.rb:36:1:36:4 | [post] foo2 [@field] :  | semmle.label | [post] foo2 [@field] :  |
-| instance_variables.rb:36:1:36:4 | [post] foo2 [@field] :  | semmle.label | [post] foo2 [@field] :  |
-| instance_variables.rb:36:14:36:22 | call to taint :  | semmle.label | call to taint :  |
-| instance_variables.rb:36:14:36:22 | call to taint :  | semmle.label | call to taint :  |
-| instance_variables.rb:37:6:37:9 | foo2 [@field] :  | semmle.label | foo2 [@field] :  |
-| instance_variables.rb:37:6:37:9 | foo2 [@field] :  | semmle.label | foo2 [@field] :  |
-| instance_variables.rb:37:6:37:19 | call to get_field | semmle.label | call to get_field |
-| instance_variables.rb:37:6:37:19 | call to get_field | semmle.label | call to get_field |
-| instance_variables.rb:40:1:40:4 | [post] foo3 [@field] :  | semmle.label | [post] foo3 [@field] :  |
-| instance_variables.rb:40:1:40:4 | [post] foo3 [@field] :  | semmle.label | [post] foo3 [@field] :  |
-| instance_variables.rb:40:16:40:24 | call to taint :  | semmle.label | call to taint :  |
-| instance_variables.rb:40:16:40:24 | call to taint :  | semmle.label | call to taint :  |
-| instance_variables.rb:41:6:41:9 | foo3 [@field] :  | semmle.label | foo3 [@field] :  |
-| instance_variables.rb:41:6:41:9 | foo3 [@field] :  | semmle.label | foo3 [@field] :  |
-| instance_variables.rb:41:6:41:15 | call to field | semmle.label | call to field |
-| instance_variables.rb:41:6:41:15 | call to field | semmle.label | call to field |
-| instance_variables.rb:48:2:48:5 | [post] foo5 [@field] :  | semmle.label | [post] foo5 [@field] :  |
-| instance_variables.rb:48:2:48:5 | [post] foo5 [@field] :  | semmle.label | [post] foo5 [@field] :  |
-| instance_variables.rb:48:18:48:26 | call to taint :  | semmle.label | call to taint :  |
-| instance_variables.rb:48:18:48:26 | call to taint :  | semmle.label | call to taint :  |
-| instance_variables.rb:49:6:49:9 | foo5 [@field] :  | semmle.label | foo5 [@field] :  |
-| instance_variables.rb:49:6:49:9 | foo5 [@field] :  | semmle.label | foo5 [@field] :  |
-| instance_variables.rb:49:6:49:19 | call to get_field | semmle.label | call to get_field |
-| instance_variables.rb:49:6:49:19 | call to get_field | semmle.label | call to get_field |
-| instance_variables.rb:52:15:52:18 | [post] foo6 [@field] :  | semmle.label | [post] foo6 [@field] :  |
-| instance_variables.rb:52:15:52:18 | [post] foo6 [@field] :  | semmle.label | [post] foo6 [@field] :  |
-| instance_variables.rb:52:32:52:40 | call to taint :  | semmle.label | call to taint :  |
-| instance_variables.rb:52:32:52:40 | call to taint :  | semmle.label | call to taint :  |
-| instance_variables.rb:53:6:53:9 | foo3 [@field] :  | semmle.label | foo3 [@field] :  |
-| instance_variables.rb:53:6:53:9 | foo3 [@field] :  | semmle.label | foo3 [@field] :  |
-| instance_variables.rb:53:6:53:19 | call to get_field | semmle.label | call to get_field |
-| instance_variables.rb:53:6:53:19 | call to get_field | semmle.label | call to get_field |
-| instance_variables.rb:54:6:54:9 | foo5 [@field] :  | semmle.label | foo5 [@field] :  |
-| instance_variables.rb:54:6:54:9 | foo5 [@field] :  | semmle.label | foo5 [@field] :  |
-| instance_variables.rb:54:6:54:19 | call to get_field | semmle.label | call to get_field |
-| instance_variables.rb:54:6:54:19 | call to get_field | semmle.label | call to get_field |
-| instance_variables.rb:55:6:55:9 | foo6 [@field] :  | semmle.label | foo6 [@field] :  |
-| instance_variables.rb:55:6:55:9 | foo6 [@field] :  | semmle.label | foo6 [@field] :  |
-| instance_variables.rb:55:6:55:19 | call to get_field | semmle.label | call to get_field |
-| instance_variables.rb:55:6:55:19 | call to get_field | semmle.label | call to get_field |
-| instance_variables.rb:59:15:59:18 | [post] foo7 [@field] :  | semmle.label | [post] foo7 [@field] :  |
-| instance_variables.rb:59:15:59:18 | [post] foo7 [@field] :  | semmle.label | [post] foo7 [@field] :  |
-| instance_variables.rb:59:25:59:28 | [post] foo8 [@field] :  | semmle.label | [post] foo8 [@field] :  |
-| instance_variables.rb:59:25:59:28 | [post] foo8 [@field] :  | semmle.label | [post] foo8 [@field] :  |
-| instance_variables.rb:59:45:59:53 | call to taint :  | semmle.label | call to taint :  |
-| instance_variables.rb:59:45:59:53 | call to taint :  | semmle.label | call to taint :  |
-| instance_variables.rb:60:6:60:9 | foo7 [@field] :  | semmle.label | foo7 [@field] :  |
-| instance_variables.rb:60:6:60:9 | foo7 [@field] :  | semmle.label | foo7 [@field] :  |
-| instance_variables.rb:60:6:60:19 | call to get_field | semmle.label | call to get_field |
-| instance_variables.rb:60:6:60:19 | call to get_field | semmle.label | call to get_field |
-| instance_variables.rb:61:6:61:9 | foo8 [@field] :  | semmle.label | foo8 [@field] :  |
-| instance_variables.rb:61:6:61:9 | foo8 [@field] :  | semmle.label | foo8 [@field] :  |
-| instance_variables.rb:61:6:61:19 | call to get_field | semmle.label | call to get_field |
-| instance_variables.rb:61:6:61:19 | call to get_field | semmle.label | call to get_field |
-| instance_variables.rb:65:22:65:25 | [post] foo9 [@field] :  | semmle.label | [post] foo9 [@field] :  |
-| instance_variables.rb:65:22:65:25 | [post] foo9 [@field] :  | semmle.label | [post] foo9 [@field] :  |
-| instance_variables.rb:65:32:65:36 | [post] foo10 [@field] :  | semmle.label | [post] foo10 [@field] :  |
-| instance_variables.rb:65:32:65:36 | [post] foo10 [@field] :  | semmle.label | [post] foo10 [@field] :  |
-| instance_variables.rb:65:53:65:61 | call to taint :  | semmle.label | call to taint :  |
-| instance_variables.rb:65:53:65:61 | call to taint :  | semmle.label | call to taint :  |
-| instance_variables.rb:66:6:66:9 | foo9 [@field] :  | semmle.label | foo9 [@field] :  |
-| instance_variables.rb:66:6:66:9 | foo9 [@field] :  | semmle.label | foo9 [@field] :  |
-| instance_variables.rb:66:6:66:19 | call to get_field | semmle.label | call to get_field |
-| instance_variables.rb:66:6:66:19 | call to get_field | semmle.label | call to get_field |
-| instance_variables.rb:67:6:67:10 | foo10 [@field] :  | semmle.label | foo10 [@field] :  |
-| instance_variables.rb:67:6:67:10 | foo10 [@field] :  | semmle.label | foo10 [@field] :  |
-| instance_variables.rb:67:6:67:20 | call to get_field | semmle.label | call to get_field |
-| instance_variables.rb:67:6:67:20 | call to get_field | semmle.label | call to get_field |
-| instance_variables.rb:70:5:70:5 | [post] x [@field] :  | semmle.label | [post] x [@field] :  |
-| instance_variables.rb:70:5:70:5 | [post] x [@field] :  | semmle.label | [post] x [@field] :  |
-| instance_variables.rb:70:17:70:25 | call to taint :  | semmle.label | call to taint :  |
-| instance_variables.rb:70:17:70:25 | call to taint :  | semmle.label | call to taint :  |
-| instance_variables.rb:74:14:74:18 | [post] foo11 [@field] :  | semmle.label | [post] foo11 [@field] :  |
-| instance_variables.rb:74:14:74:18 | [post] foo11 [@field] :  | semmle.label | [post] foo11 [@field] :  |
-| instance_variables.rb:75:6:75:10 | foo11 [@field] :  | semmle.label | foo11 [@field] :  |
-| instance_variables.rb:75:6:75:10 | foo11 [@field] :  | semmle.label | foo11 [@field] :  |
-| instance_variables.rb:75:6:75:20 | call to get_field | semmle.label | call to get_field |
-| instance_variables.rb:75:6:75:20 | call to get_field | semmle.label | call to get_field |
-| instance_variables.rb:78:15:78:19 | [post] foo12 [@field] :  | semmle.label | [post] foo12 [@field] :  |
-| instance_variables.rb:78:15:78:19 | [post] foo12 [@field] :  | semmle.label | [post] foo12 [@field] :  |
-| instance_variables.rb:79:6:79:10 | foo12 [@field] :  | semmle.label | foo12 [@field] :  |
-| instance_variables.rb:79:6:79:10 | foo12 [@field] :  | semmle.label | foo12 [@field] :  |
-| instance_variables.rb:79:6:79:20 | call to get_field | semmle.label | call to get_field |
-| instance_variables.rb:79:6:79:20 | call to get_field | semmle.label | call to get_field |
-| instance_variables.rb:83:22:83:26 | [post] foo13 [@field] :  | semmle.label | [post] foo13 [@field] :  |
-| instance_variables.rb:83:22:83:26 | [post] foo13 [@field] :  | semmle.label | [post] foo13 [@field] :  |
-| instance_variables.rb:84:6:84:10 | foo13 [@field] :  | semmle.label | foo13 [@field] :  |
-| instance_variables.rb:84:6:84:10 | foo13 [@field] :  | semmle.label | foo13 [@field] :  |
-| instance_variables.rb:84:6:84:20 | call to get_field | semmle.label | call to get_field |
-| instance_variables.rb:84:6:84:20 | call to get_field | semmle.label | call to get_field |
+| instance_variables.rb:22:20:22:24 | field :  | semmle.label | field :  |
+| instance_variables.rb:22:20:22:24 | field :  | semmle.label | field :  |
+| instance_variables.rb:23:9:23:14 | [post] self [@field] :  | semmle.label | [post] self [@field] :  |
+| instance_variables.rb:23:9:23:14 | [post] self [@field] :  | semmle.label | [post] self [@field] :  |
+| instance_variables.rb:23:18:23:22 | field :  | semmle.label | field :  |
+| instance_variables.rb:23:18:23:22 | field :  | semmle.label | field :  |
+| instance_variables.rb:24:9:24:17 | call to taint :  | semmle.label | call to taint :  |
+| instance_variables.rb:24:9:24:17 | call to taint :  | semmle.label | call to taint :  |
+| instance_variables.rb:27:25:27:29 | field :  | semmle.label | field :  |
+| instance_variables.rb:27:25:27:29 | field :  | semmle.label | field :  |
+| instance_variables.rb:28:9:28:25 | [post] self [@field] :  | semmle.label | [post] self [@field] :  |
+| instance_variables.rb:28:9:28:25 | [post] self [@field] :  | semmle.label | [post] self [@field] :  |
+| instance_variables.rb:28:9:28:25 | call to initialize :  | semmle.label | call to initialize :  |
+| instance_variables.rb:28:9:28:25 | call to initialize :  | semmle.label | call to initialize :  |
+| instance_variables.rb:28:20:28:24 | field :  | semmle.label | field :  |
+| instance_variables.rb:28:20:28:24 | field :  | semmle.label | field :  |
+| instance_variables.rb:34:9:34:17 | call to taint :  | semmle.label | call to taint :  |
+| instance_variables.rb:34:9:34:17 | call to taint :  | semmle.label | call to taint :  |
+| instance_variables.rb:39:1:39:3 | [post] foo [@field] :  | semmle.label | [post] foo [@field] :  |
+| instance_variables.rb:39:1:39:3 | [post] foo [@field] :  | semmle.label | [post] foo [@field] :  |
+| instance_variables.rb:39:15:39:23 | call to taint :  | semmle.label | call to taint :  |
+| instance_variables.rb:39:15:39:23 | call to taint :  | semmle.label | call to taint :  |
+| instance_variables.rb:40:6:40:8 | foo [@field] :  | semmle.label | foo [@field] :  |
+| instance_variables.rb:40:6:40:8 | foo [@field] :  | semmle.label | foo [@field] :  |
+| instance_variables.rb:40:6:40:18 | call to get_field | semmle.label | call to get_field |
+| instance_variables.rb:40:6:40:18 | call to get_field | semmle.label | call to get_field |
+| instance_variables.rb:43:1:43:3 | [post] bar [@field] :  | semmle.label | [post] bar [@field] :  |
+| instance_variables.rb:43:15:43:22 | call to taint :  | semmle.label | call to taint :  |
+| instance_variables.rb:44:6:44:8 | bar [@field] :  | semmle.label | bar [@field] :  |
+| instance_variables.rb:44:6:44:18 | call to inc_field | semmle.label | call to inc_field |
+| instance_variables.rb:47:1:47:4 | [post] foo1 [@field] :  | semmle.label | [post] foo1 [@field] :  |
+| instance_variables.rb:47:1:47:4 | [post] foo1 [@field] :  | semmle.label | [post] foo1 [@field] :  |
+| instance_variables.rb:47:14:47:22 | call to taint :  | semmle.label | call to taint :  |
+| instance_variables.rb:47:14:47:22 | call to taint :  | semmle.label | call to taint :  |
+| instance_variables.rb:48:6:48:9 | foo1 [@field] :  | semmle.label | foo1 [@field] :  |
+| instance_variables.rb:48:6:48:9 | foo1 [@field] :  | semmle.label | foo1 [@field] :  |
+| instance_variables.rb:48:6:48:15 | call to field | semmle.label | call to field |
+| instance_variables.rb:48:6:48:15 | call to field | semmle.label | call to field |
+| instance_variables.rb:51:1:51:4 | [post] foo2 [@field] :  | semmle.label | [post] foo2 [@field] :  |
+| instance_variables.rb:51:1:51:4 | [post] foo2 [@field] :  | semmle.label | [post] foo2 [@field] :  |
+| instance_variables.rb:51:14:51:22 | call to taint :  | semmle.label | call to taint :  |
+| instance_variables.rb:51:14:51:22 | call to taint :  | semmle.label | call to taint :  |
+| instance_variables.rb:52:6:52:9 | foo2 [@field] :  | semmle.label | foo2 [@field] :  |
+| instance_variables.rb:52:6:52:9 | foo2 [@field] :  | semmle.label | foo2 [@field] :  |
+| instance_variables.rb:52:6:52:19 | call to get_field | semmle.label | call to get_field |
+| instance_variables.rb:52:6:52:19 | call to get_field | semmle.label | call to get_field |
+| instance_variables.rb:55:1:55:4 | [post] foo3 [@field] :  | semmle.label | [post] foo3 [@field] :  |
+| instance_variables.rb:55:1:55:4 | [post] foo3 [@field] :  | semmle.label | [post] foo3 [@field] :  |
+| instance_variables.rb:55:16:55:24 | call to taint :  | semmle.label | call to taint :  |
+| instance_variables.rb:55:16:55:24 | call to taint :  | semmle.label | call to taint :  |
+| instance_variables.rb:56:6:56:9 | foo3 [@field] :  | semmle.label | foo3 [@field] :  |
+| instance_variables.rb:56:6:56:9 | foo3 [@field] :  | semmle.label | foo3 [@field] :  |
+| instance_variables.rb:56:6:56:15 | call to field | semmle.label | call to field |
+| instance_variables.rb:56:6:56:15 | call to field | semmle.label | call to field |
+| instance_variables.rb:63:2:63:5 | [post] foo5 [@field] :  | semmle.label | [post] foo5 [@field] :  |
+| instance_variables.rb:63:2:63:5 | [post] foo5 [@field] :  | semmle.label | [post] foo5 [@field] :  |
+| instance_variables.rb:63:18:63:26 | call to taint :  | semmle.label | call to taint :  |
+| instance_variables.rb:63:18:63:26 | call to taint :  | semmle.label | call to taint :  |
+| instance_variables.rb:64:6:64:9 | foo5 [@field] :  | semmle.label | foo5 [@field] :  |
+| instance_variables.rb:64:6:64:9 | foo5 [@field] :  | semmle.label | foo5 [@field] :  |
+| instance_variables.rb:64:6:64:19 | call to get_field | semmle.label | call to get_field |
+| instance_variables.rb:64:6:64:19 | call to get_field | semmle.label | call to get_field |
+| instance_variables.rb:67:15:67:18 | [post] foo6 [@field] :  | semmle.label | [post] foo6 [@field] :  |
+| instance_variables.rb:67:15:67:18 | [post] foo6 [@field] :  | semmle.label | [post] foo6 [@field] :  |
+| instance_variables.rb:67:32:67:40 | call to taint :  | semmle.label | call to taint :  |
+| instance_variables.rb:67:32:67:40 | call to taint :  | semmle.label | call to taint :  |
+| instance_variables.rb:68:6:68:9 | foo3 [@field] :  | semmle.label | foo3 [@field] :  |
+| instance_variables.rb:68:6:68:9 | foo3 [@field] :  | semmle.label | foo3 [@field] :  |
+| instance_variables.rb:68:6:68:19 | call to get_field | semmle.label | call to get_field |
+| instance_variables.rb:68:6:68:19 | call to get_field | semmle.label | call to get_field |
+| instance_variables.rb:69:6:69:9 | foo5 [@field] :  | semmle.label | foo5 [@field] :  |
+| instance_variables.rb:69:6:69:9 | foo5 [@field] :  | semmle.label | foo5 [@field] :  |
+| instance_variables.rb:69:6:69:19 | call to get_field | semmle.label | call to get_field |
+| instance_variables.rb:69:6:69:19 | call to get_field | semmle.label | call to get_field |
+| instance_variables.rb:70:6:70:9 | foo6 [@field] :  | semmle.label | foo6 [@field] :  |
+| instance_variables.rb:70:6:70:9 | foo6 [@field] :  | semmle.label | foo6 [@field] :  |
+| instance_variables.rb:70:6:70:19 | call to get_field | semmle.label | call to get_field |
+| instance_variables.rb:70:6:70:19 | call to get_field | semmle.label | call to get_field |
+| instance_variables.rb:74:15:74:18 | [post] foo7 [@field] :  | semmle.label | [post] foo7 [@field] :  |
+| instance_variables.rb:74:15:74:18 | [post] foo7 [@field] :  | semmle.label | [post] foo7 [@field] :  |
+| instance_variables.rb:74:25:74:28 | [post] foo8 [@field] :  | semmle.label | [post] foo8 [@field] :  |
+| instance_variables.rb:74:25:74:28 | [post] foo8 [@field] :  | semmle.label | [post] foo8 [@field] :  |
+| instance_variables.rb:74:45:74:53 | call to taint :  | semmle.label | call to taint :  |
+| instance_variables.rb:74:45:74:53 | call to taint :  | semmle.label | call to taint :  |
+| instance_variables.rb:75:6:75:9 | foo7 [@field] :  | semmle.label | foo7 [@field] :  |
+| instance_variables.rb:75:6:75:9 | foo7 [@field] :  | semmle.label | foo7 [@field] :  |
+| instance_variables.rb:75:6:75:19 | call to get_field | semmle.label | call to get_field |
+| instance_variables.rb:75:6:75:19 | call to get_field | semmle.label | call to get_field |
+| instance_variables.rb:76:6:76:9 | foo8 [@field] :  | semmle.label | foo8 [@field] :  |
+| instance_variables.rb:76:6:76:9 | foo8 [@field] :  | semmle.label | foo8 [@field] :  |
+| instance_variables.rb:76:6:76:19 | call to get_field | semmle.label | call to get_field |
+| instance_variables.rb:76:6:76:19 | call to get_field | semmle.label | call to get_field |
+| instance_variables.rb:80:22:80:25 | [post] foo9 [@field] :  | semmle.label | [post] foo9 [@field] :  |
+| instance_variables.rb:80:22:80:25 | [post] foo9 [@field] :  | semmle.label | [post] foo9 [@field] :  |
+| instance_variables.rb:80:32:80:36 | [post] foo10 [@field] :  | semmle.label | [post] foo10 [@field] :  |
+| instance_variables.rb:80:32:80:36 | [post] foo10 [@field] :  | semmle.label | [post] foo10 [@field] :  |
+| instance_variables.rb:80:53:80:61 | call to taint :  | semmle.label | call to taint :  |
+| instance_variables.rb:80:53:80:61 | call to taint :  | semmle.label | call to taint :  |
+| instance_variables.rb:81:6:81:9 | foo9 [@field] :  | semmle.label | foo9 [@field] :  |
+| instance_variables.rb:81:6:81:9 | foo9 [@field] :  | semmle.label | foo9 [@field] :  |
+| instance_variables.rb:81:6:81:19 | call to get_field | semmle.label | call to get_field |
+| instance_variables.rb:81:6:81:19 | call to get_field | semmle.label | call to get_field |
+| instance_variables.rb:82:6:82:10 | foo10 [@field] :  | semmle.label | foo10 [@field] :  |
+| instance_variables.rb:82:6:82:10 | foo10 [@field] :  | semmle.label | foo10 [@field] :  |
+| instance_variables.rb:82:6:82:20 | call to get_field | semmle.label | call to get_field |
+| instance_variables.rb:82:6:82:20 | call to get_field | semmle.label | call to get_field |
+| instance_variables.rb:85:5:85:5 | [post] x [@field] :  | semmle.label | [post] x [@field] :  |
+| instance_variables.rb:85:5:85:5 | [post] x [@field] :  | semmle.label | [post] x [@field] :  |
+| instance_variables.rb:85:17:85:25 | call to taint :  | semmle.label | call to taint :  |
+| instance_variables.rb:85:17:85:25 | call to taint :  | semmle.label | call to taint :  |
+| instance_variables.rb:89:14:89:18 | [post] foo11 [@field] :  | semmle.label | [post] foo11 [@field] :  |
+| instance_variables.rb:89:14:89:18 | [post] foo11 [@field] :  | semmle.label | [post] foo11 [@field] :  |
+| instance_variables.rb:90:6:90:10 | foo11 [@field] :  | semmle.label | foo11 [@field] :  |
+| instance_variables.rb:90:6:90:10 | foo11 [@field] :  | semmle.label | foo11 [@field] :  |
+| instance_variables.rb:90:6:90:20 | call to get_field | semmle.label | call to get_field |
+| instance_variables.rb:90:6:90:20 | call to get_field | semmle.label | call to get_field |
+| instance_variables.rb:93:15:93:19 | [post] foo12 [@field] :  | semmle.label | [post] foo12 [@field] :  |
+| instance_variables.rb:93:15:93:19 | [post] foo12 [@field] :  | semmle.label | [post] foo12 [@field] :  |
+| instance_variables.rb:94:6:94:10 | foo12 [@field] :  | semmle.label | foo12 [@field] :  |
+| instance_variables.rb:94:6:94:10 | foo12 [@field] :  | semmle.label | foo12 [@field] :  |
+| instance_variables.rb:94:6:94:20 | call to get_field | semmle.label | call to get_field |
+| instance_variables.rb:94:6:94:20 | call to get_field | semmle.label | call to get_field |
+| instance_variables.rb:98:22:98:26 | [post] foo13 [@field] :  | semmle.label | [post] foo13 [@field] :  |
+| instance_variables.rb:98:22:98:26 | [post] foo13 [@field] :  | semmle.label | [post] foo13 [@field] :  |
+| instance_variables.rb:99:6:99:10 | foo13 [@field] :  | semmle.label | foo13 [@field] :  |
+| instance_variables.rb:99:6:99:10 | foo13 [@field] :  | semmle.label | foo13 [@field] :  |
+| instance_variables.rb:99:6:99:20 | call to get_field | semmle.label | call to get_field |
+| instance_variables.rb:99:6:99:20 | call to get_field | semmle.label | call to get_field |
+| instance_variables.rb:104:6:104:10 | [post] foo16 [@field] :  | semmle.label | [post] foo16 [@field] :  |
+| instance_variables.rb:104:6:104:10 | [post] foo16 [@field] :  | semmle.label | [post] foo16 [@field] :  |
+| instance_variables.rb:104:6:104:37 | call to call_initialize | semmle.label | call to call_initialize |
+| instance_variables.rb:104:6:104:37 | call to call_initialize | semmle.label | call to call_initialize |
+| instance_variables.rb:104:28:104:36 | call to taint :  | semmle.label | call to taint :  |
+| instance_variables.rb:104:28:104:36 | call to taint :  | semmle.label | call to taint :  |
+| instance_variables.rb:105:6:105:10 | foo16 [@field] :  | semmle.label | foo16 [@field] :  |
+| instance_variables.rb:105:6:105:10 | foo16 [@field] :  | semmle.label | foo16 [@field] :  |
+| instance_variables.rb:105:6:105:20 | call to get_field | semmle.label | call to get_field |
+| instance_variables.rb:105:6:105:20 | call to get_field | semmle.label | call to get_field |
+| instance_variables.rb:106:7:106:24 | call to new :  | semmle.label | call to new :  |
+| instance_variables.rb:106:7:106:24 | call to new :  | semmle.label | call to new :  |
+| instance_variables.rb:107:6:107:8 | bar | semmle.label | bar |
+| instance_variables.rb:107:6:107:8 | bar | semmle.label | bar |
 subpaths
-| instance_variables.rb:24:15:24:23 | call to taint :  | instance_variables.rb:10:19:10:19 | x :  | instance_variables.rb:11:9:11:14 | [post] self [@field] :  | instance_variables.rb:24:1:24:3 | [post] foo [@field] :  |
-| instance_variables.rb:24:15:24:23 | call to taint :  | instance_variables.rb:10:19:10:19 | x :  | instance_variables.rb:11:9:11:14 | [post] self [@field] :  | instance_variables.rb:24:1:24:3 | [post] foo [@field] :  |
-| instance_variables.rb:25:6:25:8 | foo [@field] :  | instance_variables.rb:13:5:15:7 | self in get_field [@field] :  | instance_variables.rb:14:9:14:21 | return :  | instance_variables.rb:25:6:25:18 | call to get_field |
-| instance_variables.rb:25:6:25:8 | foo [@field] :  | instance_variables.rb:13:5:15:7 | self in get_field [@field] :  | instance_variables.rb:14:9:14:21 | return :  | instance_variables.rb:25:6:25:18 | call to get_field |
-| instance_variables.rb:28:15:28:22 | call to taint :  | instance_variables.rb:10:19:10:19 | x :  | instance_variables.rb:11:9:11:14 | [post] self [@field] :  | instance_variables.rb:28:1:28:3 | [post] bar [@field] :  |
-| instance_variables.rb:29:6:29:8 | bar [@field] :  | instance_variables.rb:16:5:18:7 | self in inc_field [@field] :  | instance_variables.rb:16:5:18:7 | self in inc_field [@field] :  | instance_variables.rb:29:6:29:18 | call to inc_field |
-| instance_variables.rb:29:6:29:8 | bar [@field] :  | instance_variables.rb:16:5:18:7 | self in inc_field [@field] :  | instance_variables.rb:17:9:17:14 | [post] self [@field] :  | instance_variables.rb:29:6:29:18 | call to inc_field |
-| instance_variables.rb:37:6:37:9 | foo2 [@field] :  | instance_variables.rb:13:5:15:7 | self in get_field [@field] :  | instance_variables.rb:14:9:14:21 | return :  | instance_variables.rb:37:6:37:19 | call to get_field |
-| instance_variables.rb:37:6:37:9 | foo2 [@field] :  | instance_variables.rb:13:5:15:7 | self in get_field [@field] :  | instance_variables.rb:14:9:14:21 | return :  | instance_variables.rb:37:6:37:19 | call to get_field |
-| instance_variables.rb:40:16:40:24 | call to taint :  | instance_variables.rb:10:19:10:19 | x :  | instance_variables.rb:11:9:11:14 | [post] self [@field] :  | instance_variables.rb:40:1:40:4 | [post] foo3 [@field] :  |
-| instance_variables.rb:40:16:40:24 | call to taint :  | instance_variables.rb:10:19:10:19 | x :  | instance_variables.rb:11:9:11:14 | [post] self [@field] :  | instance_variables.rb:40:1:40:4 | [post] foo3 [@field] :  |
-| instance_variables.rb:48:18:48:26 | call to taint :  | instance_variables.rb:10:19:10:19 | x :  | instance_variables.rb:11:9:11:14 | [post] self [@field] :  | instance_variables.rb:48:2:48:5 | [post] foo5 [@field] :  |
-| instance_variables.rb:48:18:48:26 | call to taint :  | instance_variables.rb:10:19:10:19 | x :  | instance_variables.rb:11:9:11:14 | [post] self [@field] :  | instance_variables.rb:48:2:48:5 | [post] foo5 [@field] :  |
-| instance_variables.rb:49:6:49:9 | foo5 [@field] :  | instance_variables.rb:13:5:15:7 | self in get_field [@field] :  | instance_variables.rb:14:9:14:21 | return :  | instance_variables.rb:49:6:49:19 | call to get_field |
-| instance_variables.rb:49:6:49:9 | foo5 [@field] :  | instance_variables.rb:13:5:15:7 | self in get_field [@field] :  | instance_variables.rb:14:9:14:21 | return :  | instance_variables.rb:49:6:49:19 | call to get_field |
-| instance_variables.rb:52:32:52:40 | call to taint :  | instance_variables.rb:10:19:10:19 | x :  | instance_variables.rb:11:9:11:14 | [post] self [@field] :  | instance_variables.rb:52:15:52:18 | [post] foo6 [@field] :  |
-| instance_variables.rb:52:32:52:40 | call to taint :  | instance_variables.rb:10:19:10:19 | x :  | instance_variables.rb:11:9:11:14 | [post] self [@field] :  | instance_variables.rb:52:15:52:18 | [post] foo6 [@field] :  |
-| instance_variables.rb:53:6:53:9 | foo3 [@field] :  | instance_variables.rb:13:5:15:7 | self in get_field [@field] :  | instance_variables.rb:14:9:14:21 | return :  | instance_variables.rb:53:6:53:19 | call to get_field |
-| instance_variables.rb:53:6:53:9 | foo3 [@field] :  | instance_variables.rb:13:5:15:7 | self in get_field [@field] :  | instance_variables.rb:14:9:14:21 | return :  | instance_variables.rb:53:6:53:19 | call to get_field |
-| instance_variables.rb:54:6:54:9 | foo5 [@field] :  | instance_variables.rb:13:5:15:7 | self in get_field [@field] :  | instance_variables.rb:14:9:14:21 | return :  | instance_variables.rb:54:6:54:19 | call to get_field |
-| instance_variables.rb:54:6:54:9 | foo5 [@field] :  | instance_variables.rb:13:5:15:7 | self in get_field [@field] :  | instance_variables.rb:14:9:14:21 | return :  | instance_variables.rb:54:6:54:19 | call to get_field |
-| instance_variables.rb:55:6:55:9 | foo6 [@field] :  | instance_variables.rb:13:5:15:7 | self in get_field [@field] :  | instance_variables.rb:14:9:14:21 | return :  | instance_variables.rb:55:6:55:19 | call to get_field |
-| instance_variables.rb:55:6:55:9 | foo6 [@field] :  | instance_variables.rb:13:5:15:7 | self in get_field [@field] :  | instance_variables.rb:14:9:14:21 | return :  | instance_variables.rb:55:6:55:19 | call to get_field |
-| instance_variables.rb:59:45:59:53 | call to taint :  | instance_variables.rb:10:19:10:19 | x :  | instance_variables.rb:11:9:11:14 | [post] self [@field] :  | instance_variables.rb:59:15:59:18 | [post] foo7 [@field] :  |
-| instance_variables.rb:59:45:59:53 | call to taint :  | instance_variables.rb:10:19:10:19 | x :  | instance_variables.rb:11:9:11:14 | [post] self [@field] :  | instance_variables.rb:59:15:59:18 | [post] foo7 [@field] :  |
-| instance_variables.rb:59:45:59:53 | call to taint :  | instance_variables.rb:10:19:10:19 | x :  | instance_variables.rb:11:9:11:14 | [post] self [@field] :  | instance_variables.rb:59:25:59:28 | [post] foo8 [@field] :  |
-| instance_variables.rb:59:45:59:53 | call to taint :  | instance_variables.rb:10:19:10:19 | x :  | instance_variables.rb:11:9:11:14 | [post] self [@field] :  | instance_variables.rb:59:25:59:28 | [post] foo8 [@field] :  |
-| instance_variables.rb:60:6:60:9 | foo7 [@field] :  | instance_variables.rb:13:5:15:7 | self in get_field [@field] :  | instance_variables.rb:14:9:14:21 | return :  | instance_variables.rb:60:6:60:19 | call to get_field |
-| instance_variables.rb:60:6:60:9 | foo7 [@field] :  | instance_variables.rb:13:5:15:7 | self in get_field [@field] :  | instance_variables.rb:14:9:14:21 | return :  | instance_variables.rb:60:6:60:19 | call to get_field |
-| instance_variables.rb:61:6:61:9 | foo8 [@field] :  | instance_variables.rb:13:5:15:7 | self in get_field [@field] :  | instance_variables.rb:14:9:14:21 | return :  | instance_variables.rb:61:6:61:19 | call to get_field |
-| instance_variables.rb:61:6:61:9 | foo8 [@field] :  | instance_variables.rb:13:5:15:7 | self in get_field [@field] :  | instance_variables.rb:14:9:14:21 | return :  | instance_variables.rb:61:6:61:19 | call to get_field |
-| instance_variables.rb:65:53:65:61 | call to taint :  | instance_variables.rb:10:19:10:19 | x :  | instance_variables.rb:11:9:11:14 | [post] self [@field] :  | instance_variables.rb:65:22:65:25 | [post] foo9 [@field] :  |
-| instance_variables.rb:65:53:65:61 | call to taint :  | instance_variables.rb:10:19:10:19 | x :  | instance_variables.rb:11:9:11:14 | [post] self [@field] :  | instance_variables.rb:65:22:65:25 | [post] foo9 [@field] :  |
-| instance_variables.rb:65:53:65:61 | call to taint :  | instance_variables.rb:10:19:10:19 | x :  | instance_variables.rb:11:9:11:14 | [post] self [@field] :  | instance_variables.rb:65:32:65:36 | [post] foo10 [@field] :  |
-| instance_variables.rb:65:53:65:61 | call to taint :  | instance_variables.rb:10:19:10:19 | x :  | instance_variables.rb:11:9:11:14 | [post] self [@field] :  | instance_variables.rb:65:32:65:36 | [post] foo10 [@field] :  |
-| instance_variables.rb:66:6:66:9 | foo9 [@field] :  | instance_variables.rb:13:5:15:7 | self in get_field [@field] :  | instance_variables.rb:14:9:14:21 | return :  | instance_variables.rb:66:6:66:19 | call to get_field |
-| instance_variables.rb:66:6:66:9 | foo9 [@field] :  | instance_variables.rb:13:5:15:7 | self in get_field [@field] :  | instance_variables.rb:14:9:14:21 | return :  | instance_variables.rb:66:6:66:19 | call to get_field |
-| instance_variables.rb:67:6:67:10 | foo10 [@field] :  | instance_variables.rb:13:5:15:7 | self in get_field [@field] :  | instance_variables.rb:14:9:14:21 | return :  | instance_variables.rb:67:6:67:20 | call to get_field |
-| instance_variables.rb:67:6:67:10 | foo10 [@field] :  | instance_variables.rb:13:5:15:7 | self in get_field [@field] :  | instance_variables.rb:14:9:14:21 | return :  | instance_variables.rb:67:6:67:20 | call to get_field |
-| instance_variables.rb:70:17:70:25 | call to taint :  | instance_variables.rb:10:19:10:19 | x :  | instance_variables.rb:11:9:11:14 | [post] self [@field] :  | instance_variables.rb:70:5:70:5 | [post] x [@field] :  |
-| instance_variables.rb:70:17:70:25 | call to taint :  | instance_variables.rb:10:19:10:19 | x :  | instance_variables.rb:11:9:11:14 | [post] self [@field] :  | instance_variables.rb:70:5:70:5 | [post] x [@field] :  |
-| instance_variables.rb:75:6:75:10 | foo11 [@field] :  | instance_variables.rb:13:5:15:7 | self in get_field [@field] :  | instance_variables.rb:14:9:14:21 | return :  | instance_variables.rb:75:6:75:20 | call to get_field |
-| instance_variables.rb:75:6:75:10 | foo11 [@field] :  | instance_variables.rb:13:5:15:7 | self in get_field [@field] :  | instance_variables.rb:14:9:14:21 | return :  | instance_variables.rb:75:6:75:20 | call to get_field |
-| instance_variables.rb:79:6:79:10 | foo12 [@field] :  | instance_variables.rb:13:5:15:7 | self in get_field [@field] :  | instance_variables.rb:14:9:14:21 | return :  | instance_variables.rb:79:6:79:20 | call to get_field |
-| instance_variables.rb:79:6:79:10 | foo12 [@field] :  | instance_variables.rb:13:5:15:7 | self in get_field [@field] :  | instance_variables.rb:14:9:14:21 | return :  | instance_variables.rb:79:6:79:20 | call to get_field |
-| instance_variables.rb:84:6:84:10 | foo13 [@field] :  | instance_variables.rb:13:5:15:7 | self in get_field [@field] :  | instance_variables.rb:14:9:14:21 | return :  | instance_variables.rb:84:6:84:20 | call to get_field |
-| instance_variables.rb:84:6:84:10 | foo13 [@field] :  | instance_variables.rb:13:5:15:7 | self in get_field [@field] :  | instance_variables.rb:14:9:14:21 | return :  | instance_variables.rb:84:6:84:20 | call to get_field |
+| instance_variables.rb:28:20:28:24 | field :  | instance_variables.rb:22:20:22:24 | field :  | instance_variables.rb:23:9:23:14 | [post] self [@field] :  | instance_variables.rb:28:9:28:25 | [post] self [@field] :  |
+| instance_variables.rb:28:20:28:24 | field :  | instance_variables.rb:22:20:22:24 | field :  | instance_variables.rb:23:9:23:14 | [post] self [@field] :  | instance_variables.rb:28:9:28:25 | [post] self [@field] :  |
+| instance_variables.rb:39:15:39:23 | call to taint :  | instance_variables.rb:10:19:10:19 | x :  | instance_variables.rb:11:9:11:14 | [post] self [@field] :  | instance_variables.rb:39:1:39:3 | [post] foo [@field] :  |
+| instance_variables.rb:39:15:39:23 | call to taint :  | instance_variables.rb:10:19:10:19 | x :  | instance_variables.rb:11:9:11:14 | [post] self [@field] :  | instance_variables.rb:39:1:39:3 | [post] foo [@field] :  |
+| instance_variables.rb:40:6:40:8 | foo [@field] :  | instance_variables.rb:13:5:15:7 | self in get_field [@field] :  | instance_variables.rb:14:9:14:21 | return :  | instance_variables.rb:40:6:40:18 | call to get_field |
+| instance_variables.rb:40:6:40:8 | foo [@field] :  | instance_variables.rb:13:5:15:7 | self in get_field [@field] :  | instance_variables.rb:14:9:14:21 | return :  | instance_variables.rb:40:6:40:18 | call to get_field |
+| instance_variables.rb:43:15:43:22 | call to taint :  | instance_variables.rb:10:19:10:19 | x :  | instance_variables.rb:11:9:11:14 | [post] self [@field] :  | instance_variables.rb:43:1:43:3 | [post] bar [@field] :  |
+| instance_variables.rb:44:6:44:8 | bar [@field] :  | instance_variables.rb:16:5:18:7 | self in inc_field [@field] :  | instance_variables.rb:16:5:18:7 | self in inc_field [@field] :  | instance_variables.rb:44:6:44:18 | call to inc_field |
+| instance_variables.rb:44:6:44:8 | bar [@field] :  | instance_variables.rb:16:5:18:7 | self in inc_field [@field] :  | instance_variables.rb:17:9:17:14 | [post] self [@field] :  | instance_variables.rb:44:6:44:18 | call to inc_field |
+| instance_variables.rb:52:6:52:9 | foo2 [@field] :  | instance_variables.rb:13:5:15:7 | self in get_field [@field] :  | instance_variables.rb:14:9:14:21 | return :  | instance_variables.rb:52:6:52:19 | call to get_field |
+| instance_variables.rb:52:6:52:9 | foo2 [@field] :  | instance_variables.rb:13:5:15:7 | self in get_field [@field] :  | instance_variables.rb:14:9:14:21 | return :  | instance_variables.rb:52:6:52:19 | call to get_field |
+| instance_variables.rb:55:16:55:24 | call to taint :  | instance_variables.rb:10:19:10:19 | x :  | instance_variables.rb:11:9:11:14 | [post] self [@field] :  | instance_variables.rb:55:1:55:4 | [post] foo3 [@field] :  |
+| instance_variables.rb:55:16:55:24 | call to taint :  | instance_variables.rb:10:19:10:19 | x :  | instance_variables.rb:11:9:11:14 | [post] self [@field] :  | instance_variables.rb:55:1:55:4 | [post] foo3 [@field] :  |
+| instance_variables.rb:63:18:63:26 | call to taint :  | instance_variables.rb:10:19:10:19 | x :  | instance_variables.rb:11:9:11:14 | [post] self [@field] :  | instance_variables.rb:63:2:63:5 | [post] foo5 [@field] :  |
+| instance_variables.rb:63:18:63:26 | call to taint :  | instance_variables.rb:10:19:10:19 | x :  | instance_variables.rb:11:9:11:14 | [post] self [@field] :  | instance_variables.rb:63:2:63:5 | [post] foo5 [@field] :  |
+| instance_variables.rb:64:6:64:9 | foo5 [@field] :  | instance_variables.rb:13:5:15:7 | self in get_field [@field] :  | instance_variables.rb:14:9:14:21 | return :  | instance_variables.rb:64:6:64:19 | call to get_field |
+| instance_variables.rb:64:6:64:9 | foo5 [@field] :  | instance_variables.rb:13:5:15:7 | self in get_field [@field] :  | instance_variables.rb:14:9:14:21 | return :  | instance_variables.rb:64:6:64:19 | call to get_field |
+| instance_variables.rb:67:32:67:40 | call to taint :  | instance_variables.rb:10:19:10:19 | x :  | instance_variables.rb:11:9:11:14 | [post] self [@field] :  | instance_variables.rb:67:15:67:18 | [post] foo6 [@field] :  |
+| instance_variables.rb:67:32:67:40 | call to taint :  | instance_variables.rb:10:19:10:19 | x :  | instance_variables.rb:11:9:11:14 | [post] self [@field] :  | instance_variables.rb:67:15:67:18 | [post] foo6 [@field] :  |
+| instance_variables.rb:68:6:68:9 | foo3 [@field] :  | instance_variables.rb:13:5:15:7 | self in get_field [@field] :  | instance_variables.rb:14:9:14:21 | return :  | instance_variables.rb:68:6:68:19 | call to get_field |
+| instance_variables.rb:68:6:68:9 | foo3 [@field] :  | instance_variables.rb:13:5:15:7 | self in get_field [@field] :  | instance_variables.rb:14:9:14:21 | return :  | instance_variables.rb:68:6:68:19 | call to get_field |
+| instance_variables.rb:69:6:69:9 | foo5 [@field] :  | instance_variables.rb:13:5:15:7 | self in get_field [@field] :  | instance_variables.rb:14:9:14:21 | return :  | instance_variables.rb:69:6:69:19 | call to get_field |
+| instance_variables.rb:69:6:69:9 | foo5 [@field] :  | instance_variables.rb:13:5:15:7 | self in get_field [@field] :  | instance_variables.rb:14:9:14:21 | return :  | instance_variables.rb:69:6:69:19 | call to get_field |
+| instance_variables.rb:70:6:70:9 | foo6 [@field] :  | instance_variables.rb:13:5:15:7 | self in get_field [@field] :  | instance_variables.rb:14:9:14:21 | return :  | instance_variables.rb:70:6:70:19 | call to get_field |
+| instance_variables.rb:70:6:70:9 | foo6 [@field] :  | instance_variables.rb:13:5:15:7 | self in get_field [@field] :  | instance_variables.rb:14:9:14:21 | return :  | instance_variables.rb:70:6:70:19 | call to get_field |
+| instance_variables.rb:74:45:74:53 | call to taint :  | instance_variables.rb:10:19:10:19 | x :  | instance_variables.rb:11:9:11:14 | [post] self [@field] :  | instance_variables.rb:74:15:74:18 | [post] foo7 [@field] :  |
+| instance_variables.rb:74:45:74:53 | call to taint :  | instance_variables.rb:10:19:10:19 | x :  | instance_variables.rb:11:9:11:14 | [post] self [@field] :  | instance_variables.rb:74:15:74:18 | [post] foo7 [@field] :  |
+| instance_variables.rb:74:45:74:53 | call to taint :  | instance_variables.rb:10:19:10:19 | x :  | instance_variables.rb:11:9:11:14 | [post] self [@field] :  | instance_variables.rb:74:25:74:28 | [post] foo8 [@field] :  |
+| instance_variables.rb:74:45:74:53 | call to taint :  | instance_variables.rb:10:19:10:19 | x :  | instance_variables.rb:11:9:11:14 | [post] self [@field] :  | instance_variables.rb:74:25:74:28 | [post] foo8 [@field] :  |
+| instance_variables.rb:75:6:75:9 | foo7 [@field] :  | instance_variables.rb:13:5:15:7 | self in get_field [@field] :  | instance_variables.rb:14:9:14:21 | return :  | instance_variables.rb:75:6:75:19 | call to get_field |
+| instance_variables.rb:75:6:75:9 | foo7 [@field] :  | instance_variables.rb:13:5:15:7 | self in get_field [@field] :  | instance_variables.rb:14:9:14:21 | return :  | instance_variables.rb:75:6:75:19 | call to get_field |
+| instance_variables.rb:76:6:76:9 | foo8 [@field] :  | instance_variables.rb:13:5:15:7 | self in get_field [@field] :  | instance_variables.rb:14:9:14:21 | return :  | instance_variables.rb:76:6:76:19 | call to get_field |
+| instance_variables.rb:76:6:76:9 | foo8 [@field] :  | instance_variables.rb:13:5:15:7 | self in get_field [@field] :  | instance_variables.rb:14:9:14:21 | return :  | instance_variables.rb:76:6:76:19 | call to get_field |
+| instance_variables.rb:80:53:80:61 | call to taint :  | instance_variables.rb:10:19:10:19 | x :  | instance_variables.rb:11:9:11:14 | [post] self [@field] :  | instance_variables.rb:80:22:80:25 | [post] foo9 [@field] :  |
+| instance_variables.rb:80:53:80:61 | call to taint :  | instance_variables.rb:10:19:10:19 | x :  | instance_variables.rb:11:9:11:14 | [post] self [@field] :  | instance_variables.rb:80:22:80:25 | [post] foo9 [@field] :  |
+| instance_variables.rb:80:53:80:61 | call to taint :  | instance_variables.rb:10:19:10:19 | x :  | instance_variables.rb:11:9:11:14 | [post] self [@field] :  | instance_variables.rb:80:32:80:36 | [post] foo10 [@field] :  |
+| instance_variables.rb:80:53:80:61 | call to taint :  | instance_variables.rb:10:19:10:19 | x :  | instance_variables.rb:11:9:11:14 | [post] self [@field] :  | instance_variables.rb:80:32:80:36 | [post] foo10 [@field] :  |
+| instance_variables.rb:81:6:81:9 | foo9 [@field] :  | instance_variables.rb:13:5:15:7 | self in get_field [@field] :  | instance_variables.rb:14:9:14:21 | return :  | instance_variables.rb:81:6:81:19 | call to get_field |
+| instance_variables.rb:81:6:81:9 | foo9 [@field] :  | instance_variables.rb:13:5:15:7 | self in get_field [@field] :  | instance_variables.rb:14:9:14:21 | return :  | instance_variables.rb:81:6:81:19 | call to get_field |
+| instance_variables.rb:82:6:82:10 | foo10 [@field] :  | instance_variables.rb:13:5:15:7 | self in get_field [@field] :  | instance_variables.rb:14:9:14:21 | return :  | instance_variables.rb:82:6:82:20 | call to get_field |
+| instance_variables.rb:82:6:82:10 | foo10 [@field] :  | instance_variables.rb:13:5:15:7 | self in get_field [@field] :  | instance_variables.rb:14:9:14:21 | return :  | instance_variables.rb:82:6:82:20 | call to get_field |
+| instance_variables.rb:85:17:85:25 | call to taint :  | instance_variables.rb:10:19:10:19 | x :  | instance_variables.rb:11:9:11:14 | [post] self [@field] :  | instance_variables.rb:85:5:85:5 | [post] x [@field] :  |
+| instance_variables.rb:85:17:85:25 | call to taint :  | instance_variables.rb:10:19:10:19 | x :  | instance_variables.rb:11:9:11:14 | [post] self [@field] :  | instance_variables.rb:85:5:85:5 | [post] x [@field] :  |
+| instance_variables.rb:90:6:90:10 | foo11 [@field] :  | instance_variables.rb:13:5:15:7 | self in get_field [@field] :  | instance_variables.rb:14:9:14:21 | return :  | instance_variables.rb:90:6:90:20 | call to get_field |
+| instance_variables.rb:90:6:90:10 | foo11 [@field] :  | instance_variables.rb:13:5:15:7 | self in get_field [@field] :  | instance_variables.rb:14:9:14:21 | return :  | instance_variables.rb:90:6:90:20 | call to get_field |
+| instance_variables.rb:94:6:94:10 | foo12 [@field] :  | instance_variables.rb:13:5:15:7 | self in get_field [@field] :  | instance_variables.rb:14:9:14:21 | return :  | instance_variables.rb:94:6:94:20 | call to get_field |
+| instance_variables.rb:94:6:94:10 | foo12 [@field] :  | instance_variables.rb:13:5:15:7 | self in get_field [@field] :  | instance_variables.rb:14:9:14:21 | return :  | instance_variables.rb:94:6:94:20 | call to get_field |
+| instance_variables.rb:99:6:99:10 | foo13 [@field] :  | instance_variables.rb:13:5:15:7 | self in get_field [@field] :  | instance_variables.rb:14:9:14:21 | return :  | instance_variables.rb:99:6:99:20 | call to get_field |
+| instance_variables.rb:99:6:99:10 | foo13 [@field] :  | instance_variables.rb:13:5:15:7 | self in get_field [@field] :  | instance_variables.rb:14:9:14:21 | return :  | instance_variables.rb:99:6:99:20 | call to get_field |
+| instance_variables.rb:104:28:104:36 | call to taint :  | instance_variables.rb:27:25:27:29 | field :  | instance_variables.rb:28:9:28:25 | [post] self [@field] :  | instance_variables.rb:104:6:104:10 | [post] foo16 [@field] :  |
+| instance_variables.rb:104:28:104:36 | call to taint :  | instance_variables.rb:27:25:27:29 | field :  | instance_variables.rb:28:9:28:25 | [post] self [@field] :  | instance_variables.rb:104:6:104:10 | [post] foo16 [@field] :  |
+| instance_variables.rb:105:6:105:10 | foo16 [@field] :  | instance_variables.rb:13:5:15:7 | self in get_field [@field] :  | instance_variables.rb:14:9:14:21 | return :  | instance_variables.rb:105:6:105:20 | call to get_field |
+| instance_variables.rb:105:6:105:10 | foo16 [@field] :  | instance_variables.rb:13:5:15:7 | self in get_field [@field] :  | instance_variables.rb:14:9:14:21 | return :  | instance_variables.rb:105:6:105:20 | call to get_field |
 #select
 | captured_variables.rb:2:20:2:20 | x | captured_variables.rb:5:20:5:30 | call to source :  | captured_variables.rb:2:20:2:20 | x | $@ | captured_variables.rb:5:20:5:30 | call to source :  | call to source :  |
 | captured_variables.rb:23:14:23:14 | x | captured_variables.rb:27:29:27:39 | call to source :  | captured_variables.rb:23:14:23:14 | x | $@ | captured_variables.rb:27:29:27:39 | call to source :  | call to source :  |
 | captured_variables.rb:34:14:34:14 | x | captured_variables.rb:38:27:38:37 | call to source :  | captured_variables.rb:34:14:34:14 | x | $@ | captured_variables.rb:38:27:38:37 | call to source :  | call to source :  |
 | instance_variables.rb:20:10:20:13 | @foo | instance_variables.rb:19:12:19:21 | call to taint :  | instance_variables.rb:20:10:20:13 | @foo | $@ | instance_variables.rb:19:12:19:21 | call to taint :  | call to taint :  |
-| instance_variables.rb:25:6:25:18 | call to get_field | instance_variables.rb:24:15:24:23 | call to taint :  | instance_variables.rb:25:6:25:18 | call to get_field | $@ | instance_variables.rb:24:15:24:23 | call to taint :  | call to taint :  |
-| instance_variables.rb:29:6:29:18 | call to inc_field | instance_variables.rb:28:15:28:22 | call to taint :  | instance_variables.rb:29:6:29:18 | call to inc_field | $@ | instance_variables.rb:28:15:28:22 | call to taint :  | call to taint :  |
-| instance_variables.rb:33:6:33:15 | call to field | instance_variables.rb:32:14:32:22 | call to taint :  | instance_variables.rb:33:6:33:15 | call to field | $@ | instance_variables.rb:32:14:32:22 | call to taint :  | call to taint :  |
-| instance_variables.rb:37:6:37:19 | call to get_field | instance_variables.rb:36:14:36:22 | call to taint :  | instance_variables.rb:37:6:37:19 | call to get_field | $@ | instance_variables.rb:36:14:36:22 | call to taint :  | call to taint :  |
-| instance_variables.rb:41:6:41:15 | call to field | instance_variables.rb:40:16:40:24 | call to taint :  | instance_variables.rb:41:6:41:15 | call to field | $@ | instance_variables.rb:40:16:40:24 | call to taint :  | call to taint :  |
-| instance_variables.rb:49:6:49:19 | call to get_field | instance_variables.rb:48:18:48:26 | call to taint :  | instance_variables.rb:49:6:49:19 | call to get_field | $@ | instance_variables.rb:48:18:48:26 | call to taint :  | call to taint :  |
-| instance_variables.rb:53:6:53:19 | call to get_field | instance_variables.rb:40:16:40:24 | call to taint :  | instance_variables.rb:53:6:53:19 | call to get_field | $@ | instance_variables.rb:40:16:40:24 | call to taint :  | call to taint :  |
-| instance_variables.rb:54:6:54:19 | call to get_field | instance_variables.rb:48:18:48:26 | call to taint :  | instance_variables.rb:54:6:54:19 | call to get_field | $@ | instance_variables.rb:48:18:48:26 | call to taint :  | call to taint :  |
-| instance_variables.rb:55:6:55:19 | call to get_field | instance_variables.rb:52:32:52:40 | call to taint :  | instance_variables.rb:55:6:55:19 | call to get_field | $@ | instance_variables.rb:52:32:52:40 | call to taint :  | call to taint :  |
-| instance_variables.rb:60:6:60:19 | call to get_field | instance_variables.rb:59:45:59:53 | call to taint :  | instance_variables.rb:60:6:60:19 | call to get_field | $@ | instance_variables.rb:59:45:59:53 | call to taint :  | call to taint :  |
-| instance_variables.rb:61:6:61:19 | call to get_field | instance_variables.rb:59:45:59:53 | call to taint :  | instance_variables.rb:61:6:61:19 | call to get_field | $@ | instance_variables.rb:59:45:59:53 | call to taint :  | call to taint :  |
-| instance_variables.rb:66:6:66:19 | call to get_field | instance_variables.rb:65:53:65:61 | call to taint :  | instance_variables.rb:66:6:66:19 | call to get_field | $@ | instance_variables.rb:65:53:65:61 | call to taint :  | call to taint :  |
-| instance_variables.rb:67:6:67:20 | call to get_field | instance_variables.rb:65:53:65:61 | call to taint :  | instance_variables.rb:67:6:67:20 | call to get_field | $@ | instance_variables.rb:65:53:65:61 | call to taint :  | call to taint :  |
-| instance_variables.rb:75:6:75:20 | call to get_field | instance_variables.rb:70:17:70:25 | call to taint :  | instance_variables.rb:75:6:75:20 | call to get_field | $@ | instance_variables.rb:70:17:70:25 | call to taint :  | call to taint :  |
-| instance_variables.rb:79:6:79:20 | call to get_field | instance_variables.rb:70:17:70:25 | call to taint :  | instance_variables.rb:79:6:79:20 | call to get_field | $@ | instance_variables.rb:70:17:70:25 | call to taint :  | call to taint :  |
-| instance_variables.rb:84:6:84:20 | call to get_field | instance_variables.rb:70:17:70:25 | call to taint :  | instance_variables.rb:84:6:84:20 | call to get_field | $@ | instance_variables.rb:70:17:70:25 | call to taint :  | call to taint :  |
+| instance_variables.rb:40:6:40:18 | call to get_field | instance_variables.rb:39:15:39:23 | call to taint :  | instance_variables.rb:40:6:40:18 | call to get_field | $@ | instance_variables.rb:39:15:39:23 | call to taint :  | call to taint :  |
+| instance_variables.rb:44:6:44:18 | call to inc_field | instance_variables.rb:43:15:43:22 | call to taint :  | instance_variables.rb:44:6:44:18 | call to inc_field | $@ | instance_variables.rb:43:15:43:22 | call to taint :  | call to taint :  |
+| instance_variables.rb:48:6:48:15 | call to field | instance_variables.rb:47:14:47:22 | call to taint :  | instance_variables.rb:48:6:48:15 | call to field | $@ | instance_variables.rb:47:14:47:22 | call to taint :  | call to taint :  |
+| instance_variables.rb:52:6:52:19 | call to get_field | instance_variables.rb:51:14:51:22 | call to taint :  | instance_variables.rb:52:6:52:19 | call to get_field | $@ | instance_variables.rb:51:14:51:22 | call to taint :  | call to taint :  |
+| instance_variables.rb:56:6:56:15 | call to field | instance_variables.rb:55:16:55:24 | call to taint :  | instance_variables.rb:56:6:56:15 | call to field | $@ | instance_variables.rb:55:16:55:24 | call to taint :  | call to taint :  |
+| instance_variables.rb:64:6:64:19 | call to get_field | instance_variables.rb:63:18:63:26 | call to taint :  | instance_variables.rb:64:6:64:19 | call to get_field | $@ | instance_variables.rb:63:18:63:26 | call to taint :  | call to taint :  |
+| instance_variables.rb:68:6:68:19 | call to get_field | instance_variables.rb:55:16:55:24 | call to taint :  | instance_variables.rb:68:6:68:19 | call to get_field | $@ | instance_variables.rb:55:16:55:24 | call to taint :  | call to taint :  |
+| instance_variables.rb:69:6:69:19 | call to get_field | instance_variables.rb:63:18:63:26 | call to taint :  | instance_variables.rb:69:6:69:19 | call to get_field | $@ | instance_variables.rb:63:18:63:26 | call to taint :  | call to taint :  |
+| instance_variables.rb:70:6:70:19 | call to get_field | instance_variables.rb:67:32:67:40 | call to taint :  | instance_variables.rb:70:6:70:19 | call to get_field | $@ | instance_variables.rb:67:32:67:40 | call to taint :  | call to taint :  |
+| instance_variables.rb:75:6:75:19 | call to get_field | instance_variables.rb:74:45:74:53 | call to taint :  | instance_variables.rb:75:6:75:19 | call to get_field | $@ | instance_variables.rb:74:45:74:53 | call to taint :  | call to taint :  |
+| instance_variables.rb:76:6:76:19 | call to get_field | instance_variables.rb:74:45:74:53 | call to taint :  | instance_variables.rb:76:6:76:19 | call to get_field | $@ | instance_variables.rb:74:45:74:53 | call to taint :  | call to taint :  |
+| instance_variables.rb:81:6:81:19 | call to get_field | instance_variables.rb:80:53:80:61 | call to taint :  | instance_variables.rb:81:6:81:19 | call to get_field | $@ | instance_variables.rb:80:53:80:61 | call to taint :  | call to taint :  |
+| instance_variables.rb:82:6:82:20 | call to get_field | instance_variables.rb:80:53:80:61 | call to taint :  | instance_variables.rb:82:6:82:20 | call to get_field | $@ | instance_variables.rb:80:53:80:61 | call to taint :  | call to taint :  |
+| instance_variables.rb:90:6:90:20 | call to get_field | instance_variables.rb:85:17:85:25 | call to taint :  | instance_variables.rb:90:6:90:20 | call to get_field | $@ | instance_variables.rb:85:17:85:25 | call to taint :  | call to taint :  |
+| instance_variables.rb:94:6:94:20 | call to get_field | instance_variables.rb:85:17:85:25 | call to taint :  | instance_variables.rb:94:6:94:20 | call to get_field | $@ | instance_variables.rb:85:17:85:25 | call to taint :  | call to taint :  |
+| instance_variables.rb:99:6:99:20 | call to get_field | instance_variables.rb:85:17:85:25 | call to taint :  | instance_variables.rb:99:6:99:20 | call to get_field | $@ | instance_variables.rb:85:17:85:25 | call to taint :  | call to taint :  |
+| instance_variables.rb:104:6:104:37 | call to call_initialize | instance_variables.rb:24:9:24:17 | call to taint :  | instance_variables.rb:104:6:104:37 | call to call_initialize | $@ | instance_variables.rb:24:9:24:17 | call to taint :  | call to taint :  |
+| instance_variables.rb:105:6:105:20 | call to get_field | instance_variables.rb:104:28:104:36 | call to taint :  | instance_variables.rb:105:6:105:20 | call to get_field | $@ | instance_variables.rb:104:28:104:36 | call to taint :  | call to taint :  |
+| instance_variables.rb:107:6:107:8 | bar | instance_variables.rb:34:9:34:17 | call to taint :  | instance_variables.rb:107:6:107:8 | bar | $@ | instance_variables.rb:34:9:34:17 | call to taint :  | call to taint :  |
diff --git a/ruby/ql/test/library-tests/dataflow/global/TypeTrackingInlineTest.expected b/ruby/ql/test/library-tests/dataflow/global/TypeTrackingInlineTest.expected
index 8a8a3b7c977..a5b27a120d9 100644
--- a/ruby/ql/test/library-tests/dataflow/global/TypeTrackingInlineTest.expected
+++ b/ruby/ql/test/library-tests/dataflow/global/TypeTrackingInlineTest.expected
@@ -1,17 +1,19 @@
 | captured_variables.rb:9:14:9:14 | x | Fixed missing result:hasValueFlow=1.2 |
 | captured_variables.rb:16:14:16:14 | x | Fixed missing result:hasValueFlow=1.3 |
 | instance_variables.rb:20:16:20:33 | # $ hasValueFlow=7 | Missing result:hasValueFlow=7 |
-| instance_variables.rb:25:21:25:39 | # $ hasValueFlow=42 | Missing result:hasValueFlow=42 |
-| instance_variables.rb:37:22:37:40 | # $ hasValueFlow=21 | Missing result:hasValueFlow=21 |
-| instance_variables.rb:41:18:41:36 | # $ hasValueFlow=22 | Missing result:hasValueFlow=22 |
-| instance_variables.rb:49:22:49:40 | # $ hasValueFlow=24 | Missing result:hasValueFlow=24 |
-| instance_variables.rb:53:22:53:40 | # $ hasValueFlow=22 | Missing result:hasValueFlow=22 |
-| instance_variables.rb:54:22:54:40 | # $ hasValueFlow=24 | Missing result:hasValueFlow=24 |
-| instance_variables.rb:55:22:55:40 | # $ hasValueFlow=25 | Missing result:hasValueFlow=25 |
-| instance_variables.rb:60:22:60:40 | # $ hasValueFlow=26 | Missing result:hasValueFlow=26 |
-| instance_variables.rb:61:22:61:40 | # $ hasValueFlow=26 | Missing result:hasValueFlow=26 |
-| instance_variables.rb:66:22:66:40 | # $ hasValueFlow=27 | Missing result:hasValueFlow=27 |
-| instance_variables.rb:67:23:67:41 | # $ hasValueFlow=27 | Missing result:hasValueFlow=27 |
-| instance_variables.rb:75:23:75:41 | # $ hasValueFlow=28 | Missing result:hasValueFlow=28 |
-| instance_variables.rb:79:23:79:41 | # $ hasValueFlow=28 | Missing result:hasValueFlow=28 |
-| instance_variables.rb:84:23:84:41 | # $ hasValueFlow=28 | Missing result:hasValueFlow=28 |
+| instance_variables.rb:40:21:40:39 | # $ hasValueFlow=42 | Missing result:hasValueFlow=42 |
+| instance_variables.rb:52:22:52:40 | # $ hasValueFlow=21 | Missing result:hasValueFlow=21 |
+| instance_variables.rb:56:18:56:36 | # $ hasValueFlow=22 | Missing result:hasValueFlow=22 |
+| instance_variables.rb:64:22:64:40 | # $ hasValueFlow=24 | Missing result:hasValueFlow=24 |
+| instance_variables.rb:68:22:68:40 | # $ hasValueFlow=22 | Missing result:hasValueFlow=22 |
+| instance_variables.rb:69:22:69:40 | # $ hasValueFlow=24 | Missing result:hasValueFlow=24 |
+| instance_variables.rb:70:22:70:40 | # $ hasValueFlow=25 | Missing result:hasValueFlow=25 |
+| instance_variables.rb:75:22:75:40 | # $ hasValueFlow=26 | Missing result:hasValueFlow=26 |
+| instance_variables.rb:76:22:76:40 | # $ hasValueFlow=26 | Missing result:hasValueFlow=26 |
+| instance_variables.rb:81:22:81:40 | # $ hasValueFlow=27 | Missing result:hasValueFlow=27 |
+| instance_variables.rb:82:23:82:41 | # $ hasValueFlow=27 | Missing result:hasValueFlow=27 |
+| instance_variables.rb:90:23:90:41 | # $ hasValueFlow=28 | Missing result:hasValueFlow=28 |
+| instance_variables.rb:94:23:94:41 | # $ hasValueFlow=28 | Missing result:hasValueFlow=28 |
+| instance_variables.rb:99:23:99:41 | # $ hasValueFlow=28 | Missing result:hasValueFlow=28 |
+| instance_variables.rb:102:23:102:41 | # $ hasValueFlow=29 | Missing result:hasValueFlow=29 |
+| instance_variables.rb:105:23:105:41 | # $ hasValueFlow=30 | Missing result:hasValueFlow=30 |
diff --git a/ruby/ql/test/library-tests/dataflow/global/instance_variables.rb b/ruby/ql/test/library-tests/dataflow/global/instance_variables.rb
index dd8910e2dca..73a13a7d55e 100644
--- a/ruby/ql/test/library-tests/dataflow/global/instance_variables.rb
+++ b/ruby/ql/test/library-tests/dataflow/global/instance_variables.rb
@@ -19,7 +19,22 @@ class Foo
     @foo = taint("7")
     sink(@foo) # $ hasValueFlow=7
 
+    def initialize(field = nil)
+        @field = field
+        taint(31)
+    end
+
+    def call_initialize(field)
+        initialize(field)
+    end
 end
+
+class Bar < Foo
+    def self.new arg
+        taint(32)
+    end
+end
+
 foo = Foo.new
 foo.set_field(taint(42))
 sink(foo.get_field) # $ hasValueFlow=42
@@ -81,4 +96,13 @@ sink(foo12.get_field) # $ hasValueFlow=28
 foo13 = Foo.new
 foo14 = Foo.new
 set_field_on(foo14 = foo13)
-sink(foo13.get_field) # $ hasValueFlow=28
\ No newline at end of file
+sink(foo13.get_field) # $ hasValueFlow=28
+
+foo15 = Foo.new(taint(29))
+sink(foo15.get_field) # $ hasValueFlow=29
+foo16 = Foo.new
+sink(foo16.call_initialize(taint(30))) # $ hasValueFlow=31
+sink(foo16.get_field) # $ hasValueFlow=30
+bar = Bar.new(taint(33))
+sink(bar) # $ hasValueFlow=32
+sink(bar.get_field)
\ No newline at end of file

From 5d9c64ba6f7345a76f001665c3b11adc84a47a86 Mon Sep 17 00:00:00 2001
From: Tom Hvitved <hvitved@github.com>
Date: Thu, 6 Oct 2022 20:43:50 +0200
Subject: [PATCH 1351/1420] Ruby: Model flow through `initialize` constructors

---
 ruby/ql/lib/codeql/ruby/ast/Call.qll          |   7 +-
 .../dataflow/internal/DataFlowDispatch.qll    | 376 +++++++++++-------
 .../dataflow/internal/DataFlowPrivate.qll     |  66 ++-
 .../ruby/typetracking/TypeTrackerSpecific.qll |  19 +-
 ruby/ql/src/queries/analysis/Definitions.ql   |   8 +-
 .../call-sensitivity.expected                 |  48 ++-
 .../dataflow/global/Flow.expected             |  24 +-
 .../query-tests/analysis/Definitions.expected |   1 +
 8 files changed, 393 insertions(+), 156 deletions(-)

diff --git a/ruby/ql/lib/codeql/ruby/ast/Call.qll b/ruby/ql/lib/codeql/ruby/ast/Call.qll
index 04ac15ededc..e97497ade52 100644
--- a/ruby/ql/lib/codeql/ruby/ast/Call.qll
+++ b/ruby/ql/lib/codeql/ruby/ast/Call.qll
@@ -53,9 +53,12 @@ class Call extends Expr instanceof CallImpl {
 
   /** Gets a potential target of this call, if any. */
   final Callable getATarget() {
-    exists(DataFlowCall c | this = c.asCall().getExpr() |
-      TCfgScope(result) = [viableCallable(c), viableCallableLambda(c, _)]
+    exists(DataFlowCall c |
+      this = c.asCall().getExpr() and
+      TCfgScope(result) = viableCallableLambda(c, _)
     )
+    or
+    result = getTarget(this.getAControlFlowNode())
   }
 
   override AstNode getAChild(string pred) {
diff --git a/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowDispatch.qll b/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowDispatch.qll
index 7e9a5ef103e..963313f54cd 100644
--- a/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowDispatch.qll
+++ b/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowDispatch.qll
@@ -11,7 +11,8 @@ private import codeql.ruby.dataflow.SSA
 
 newtype TReturnKind =
   TNormalReturnKind() or
-  TBreakReturnKind()
+  TBreakReturnKind() or
+  TNewReturnKind()
 
 /**
  * Gets a node that can read the value returned from `call` with return kind
@@ -43,6 +44,15 @@ class BreakReturnKind extends ReturnKind, TBreakReturnKind {
   override string toString() { result = "break" }
 }
 
+/**
+ * A special return kind that is used to represent the value returned
+ * from user-defined `new` methods as well as the effect on `self` in
+ * `initialize` methods.
+ */
+class NewReturnKind extends ReturnKind, TNewReturnKind {
+  override string toString() { result = "new" }
+}
+
 /** A callable defined in library code, identified by a unique string. */
 abstract class LibraryCallable extends string {
   bindingset[this]
@@ -275,14 +285,33 @@ private predicate hasAdjacentTypeCheckedReads(
   )
 }
 
+/** Holds if `new` is a user-defined `self.new` method. */
+predicate isUserDefinedNew(SingletonMethod new) {
+  exists(Expr object | singletonMethod(new, "new", object) |
+    selfInModule(object.(SelfVariableReadAccess).getVariable(), _)
+    or
+    exists(resolveConstantReadAccess(object))
+  )
+}
+
+private Callable viableSourceCallableNonInit(RelevantCall call) {
+  result = getTarget(call) and
+  not call.getExpr() instanceof YieldCall // handled by `lambdaCreation`/`lambdaCall`
+}
+
+private Callable viableSourceCallableInit(RelevantCall call) {
+  result = getInitializeTarget(call) and
+  not isUserDefinedNew(getTarget(call))
+}
+
 /** Holds if `call` may resolve to the returned source-code method. */
-private DataFlowCallable viableSourceCallable(DataFlowCall call) {
-  result = TCfgScope(getTarget(call.asCall())) and
-  not call.asCall().getExpr() instanceof YieldCall // handled by `lambdaCreation`/`lambdaCall`
+private Callable viableSourceCallable(RelevantCall call) {
+  result = viableSourceCallableNonInit(call) or
+  result = viableSourceCallableInit(call)
 }
 
 /** Holds if `call` may resolve to the returned summarized library method. */
-private DataFlowCallable viableLibraryCallable(DataFlowCall call) {
+DataFlowCallable viableLibraryCallable(DataFlowCall call) {
   exists(LibraryCallable callable |
     result = TLibraryCallable(callable) and
     call.asCall().getExpr() = [callable.getACall(), callable.getACallSimple()]
@@ -340,126 +369,22 @@ private module Cached {
       FlowSummaryImpl::Private::summaryCallbackRange(c, receiver)
     }
 
-  pragma[nomagic]
-  private Method lookupInstanceMethodCall(RelevantCall call, string method, boolean exact) {
-    exists(Module tp, DataFlow::Node receiver |
-      methodCall(call, pragma[only_bind_into](receiver), pragma[only_bind_into](method)) and
-      receiver = trackInstance(tp, exact) and
-      result = lookupMethod(tp, pragma[only_bind_into](method), exact)
-    )
-  }
-
-  pragma[nomagic]
-  private predicate isToplevelMethodInFile(Method m, File f) {
-    m.getEnclosingModule() instanceof Toplevel and
-    f = m.getFile()
-  }
-
-  /** Holds if a `self` access may be the receiver of `call` directly inside module `m`. */
-  pragma[nomagic]
-  private predicate selfInModuleFlowsToMethodCallReceiver(RelevantCall call, Module m, string method) {
-    exists(SsaSelfDefinitionNode self |
-      flowsToMethodCallReceiver(call, self, method) and
-      selfInModule(self.getVariable(), m)
-    )
-  }
-
   /**
-   * Holds if a `self` access may be the receiver of `call` inside some singleton method, where
-   * that method belongs to `m` or one of `m`'s transitive super classes.
+   * Gets the relevant `initialize` method for the `new` call, if any.
    */
-  pragma[nomagic]
-  private predicate selfInSingletonMethodFlowsToMethodCallReceiver(
-    RelevantCall call, Module m, string method
-  ) {
-    exists(SsaSelfDefinitionNode self, MethodBase caller |
-      flowsToMethodCallReceiver(call, self, method) and
-      selfInMethod(self.getVariable(), caller, m) and
-      singletonMethod(caller, _, _)
+  cached
+  Method getInitializeTarget(RelevantCall new) {
+    exists(Module m |
+      moduleFlowsToMethodCallReceiver(new, m, "new") and
+      result = lookupMethod(m, "initialize")
     )
   }
 
   cached
   CfgScope getTarget(RelevantCall call) {
-    exists(string method |
-      exists(boolean exact |
-        result = lookupInstanceMethodCall(call, method, exact) and
-        (
-          if result.(Method).isPrivate()
-          then
-            call.getReceiver().getExpr() instanceof SelfVariableAccess and
-            // For now, we restrict the scope of top-level declarations to their file.
-            // This may remove some plausible targets, but also removes a lot of
-            // implausible targets
-            (
-              isToplevelMethodInFile(result, call.getFile()) or
-              not isToplevelMethodInFile(result, _)
-            )
-          else any()
-        ) and
-        if result.(Method).isProtected()
-        then result = lookupMethod(call.getExpr().getEnclosingModule().getModule(), method, exact)
-        else any()
-      )
-      or
-      // singleton method defined on an instance, e.g.
-      // ```rb
-      // c = C.new
-      // def c.singleton; end # <- result
-      // c.singleton          # <- call
-      // ```
-      // or an `extend`ed instance, e.g.
-      // ```rb
-      // c = C.new
-      // module M
-      //   def instance; end  # <- result
-      // end
-      // c.extend M
-      // c.instance # <- call
-      // ```
-      exists(DataFlow::Node receiver |
-        methodCall(call, receiver, method) and
-        receiver = trackSingletonMethodOnInstance(result, method)
-      )
-      or
-      // singleton method defined on a module
-      // or an `extend`ed module, e.g.
-      // ```rb
-      // module M
-      //   def instance; end  # <- result
-      // end
-      // M.extend(M)
-      // M.instance           # <- call
-      // ```
-      exists(Module m, boolean exact | result = lookupSingletonMethod(m, method, exact) |
-        // ```rb
-        // def C.singleton; end # <- result
-        // C.singleton          # <- call
-        // ```
-        moduleFlowsToMethodCallReceiver(call, m, method) and
-        exact = true
-        or
-        // ```rb
-        // class C
-        //   def self.singleton; end # <- result
-        //   self.singleton          # <- call
-        // end
-        // ```
-        selfInModuleFlowsToMethodCallReceiver(call, m, method) and
-        exact = true
-        or
-        // ```rb
-        // class C
-        //   def self.singleton; end # <- result
-        //   def self.other
-        //     self.singleton        # <- call
-        //   end
-        // end
-        // ```
-        selfInSingletonMethodFlowsToMethodCallReceiver(call, m, method) and
-        exact = false
-      )
-    )
+    result = getTargetInstance(call, _)
+    or
+    result = getTargetSingleton(call, _)
     or
     exists(Module cls, string method |
       superCall(call, cls, method) and
@@ -472,7 +397,7 @@ private module Cached {
   /** Gets a viable run-time target for the call `call`. */
   cached
   DataFlowCallable viableCallable(DataFlowCall call) {
-    result = viableSourceCallable(call)
+    result.asCallable() = viableSourceCallable(call.asCall())
     or
     result = viableLibraryCallable(call)
   }
@@ -547,6 +472,12 @@ private DataFlow::LocalSourceNode trackModuleAccess(Module m) {
   result = trackModuleAccess(m, TypeTracker::end())
 }
 
+pragma[nomagic]
+private predicate hasUserDefinedSelf(Module m) {
+  // cannot use `lookupSingletonMethod` due to negative recursion
+  singletonMethodOnModule(_, "new", m.getSuperClass*()) // not `getAnAncestor` because singleton methods cannot be included
+}
+
 /** Holds if `n` is an instance of type `tp`. */
 private predicate isInstance(DataFlow::Node n, Module tp, boolean exact) {
   n.asExpr().getExpr() instanceof NilLiteral and
@@ -603,7 +534,9 @@ private predicate isInstance(DataFlow::Node n, Module tp, boolean exact) {
   or
   exists(RelevantCall call, DataFlow::LocalSourceNode sourceNode |
     flowsToMethodCallReceiver(call, sourceNode, "new") and
-    n.asExpr() = call
+    n.asExpr() = call and
+    // `tp` should not have a user-defined `self.new` method
+    not hasUserDefinedSelf(tp)
   |
     // `C.new`
     sourceNode = trackModuleAccess(tp) and
@@ -702,6 +635,44 @@ private DataFlow::Node trackInstance(Module tp, boolean exact) {
   result = trackInstance(tp, exact, TypeTracker::end())
 }
 
+pragma[nomagic]
+private Method lookupInstanceMethodCall(RelevantCall call, string method, boolean exact) {
+  exists(Module tp, DataFlow::Node receiver |
+    methodCall(call, pragma[only_bind_into](receiver), pragma[only_bind_into](method)) and
+    receiver = trackInstance(tp, exact) and
+    result = lookupMethod(tp, pragma[only_bind_into](method), exact)
+  )
+}
+
+pragma[nomagic]
+private predicate isToplevelMethodInFile(Method m, File f) {
+  m.getEnclosingModule() instanceof Toplevel and
+  f = m.getFile()
+}
+
+pragma[nomagic]
+private CfgScope getTargetInstance(RelevantCall call, string method) {
+  exists(boolean exact |
+    result = lookupInstanceMethodCall(call, method, exact) and
+    (
+      if result.(Method).isPrivate()
+      then
+        call.getReceiver().getExpr() instanceof SelfVariableAccess and
+        // For now, we restrict the scope of top-level declarations to their file.
+        // This may remove some plausible targets, but also removes a lot of
+        // implausible targets
+        (
+          isToplevelMethodInFile(result, call.getFile()) or
+          not isToplevelMethodInFile(result, _)
+        )
+      else any()
+    ) and
+    if result.(Method).isProtected()
+    then result = lookupMethod(call.getExpr().getEnclosingModule().getModule(), method, exact)
+    else any()
+  )
+}
+
 pragma[nomagic]
 private DataFlow::LocalSourceNode trackBlock(Block block, TypeTracker t) {
   t.start() and result.asExpr().getExpr() = block
@@ -813,7 +784,7 @@ private MethodBase lookupSingletonMethod(Module m, string name) {
   // cannot use `lookupSingletonMethodDirect` because it would introduce
   // negative recursion
   not singletonMethodOnModule(_, name, m) and
-  result = lookupSingletonMethod(m.getSuperClass(), name)
+  result = lookupSingletonMethod(m.getSuperClass(), name) // not `getAnImmediateAncestor` because singleton methods cannot be included
 }
 
 pragma[nomagic]
@@ -824,7 +795,9 @@ private MethodBase lookupSingletonMethodInSubClasses(Module m, string name) {
   // being resolved to arbitrary singleton methods.
   // To remedy this, we do not allow following super-classes all the way to Object.
   not m = TResolved("Object") and
-  exists(Module sub | sub.getSuperClass() = m |
+  exists(Module sub |
+    sub.getSuperClass() = m // not `getAnImmediateAncestor` because singleton methods cannot be included
+  |
     result = lookupSingletonMethodDirect(sub, name) or
     result = lookupSingletonMethodInSubClasses(sub, name)
   )
@@ -972,6 +945,91 @@ private DataFlow::Node trackSingletonMethodOnInstance(MethodBase method, string
   result = trackSingletonMethodOnInstance(method, name, TypeTracker::end())
 }
 
+/** Holds if a `self` access may be the receiver of `call` directly inside module `m`. */
+pragma[nomagic]
+private predicate selfInModuleFlowsToMethodCallReceiver(RelevantCall call, Module m, string method) {
+  exists(SsaSelfDefinitionNode self |
+    flowsToMethodCallReceiver(call, self, method) and
+    selfInModule(self.getVariable(), m)
+  )
+}
+
+/**
+ * Holds if a `self` access may be the receiver of `call` inside some singleton method, where
+ * that method belongs to `m` or one of `m`'s transitive super classes.
+ */
+pragma[nomagic]
+private predicate selfInSingletonMethodFlowsToMethodCallReceiver(
+  RelevantCall call, Module m, string method
+) {
+  exists(SsaSelfDefinitionNode self, MethodBase caller |
+    flowsToMethodCallReceiver(call, self, method) and
+    selfInMethod(self.getVariable(), caller, m) and
+    singletonMethod(caller, _, _)
+  )
+}
+
+pragma[nomagic]
+private CfgScope getTargetSingleton(RelevantCall call, string method) {
+  // singleton method defined on an instance, e.g.
+  // ```rb
+  // c = C.new
+  // def c.singleton; end # <- result
+  // c.singleton          # <- call
+  // ```
+  // or an `extend`ed instance, e.g.
+  // ```rb
+  // c = C.new
+  // module M
+  //   def instance; end  # <- result
+  // end
+  // c.extend M
+  // c.instance # <- call
+  // ```
+  exists(DataFlow::Node receiver |
+    methodCall(call, receiver, method) and
+    receiver = trackSingletonMethodOnInstance(result, method)
+  )
+  or
+  // singleton method defined on a module
+  // or an `extend`ed module, e.g.
+  // ```rb
+  // module M
+  //   def instance; end  # <- result
+  // end
+  // M.extend(M)
+  // M.instance           # <- call
+  // ```
+  exists(Module m, boolean exact | result = lookupSingletonMethod(m, method, exact) |
+    // ```rb
+    // def C.singleton; end # <- result
+    // C.singleton          # <- call
+    // ```
+    moduleFlowsToMethodCallReceiver(call, m, method) and
+    exact = true
+    or
+    // ```rb
+    // class C
+    //   def self.singleton; end # <- result
+    //   self.singleton          # <- call
+    // end
+    // ```
+    selfInModuleFlowsToMethodCallReceiver(call, m, method) and
+    exact = true
+    or
+    // ```rb
+    // class C
+    //   def self.singleton; end # <- result
+    //   def self.other
+    //     self.singleton        # <- call
+    //   end
+    // end
+    // ```
+    selfInSingletonMethodFlowsToMethodCallReceiver(call, m, method) and
+    exact = false
+  )
+}
+
 /**
  * Holds if `ctx` targets `encl`, which is the enclosing callable of `call`, the receiver
  * of `call` is a parameter access, where the corresponding argument of `ctx` is `arg`.
@@ -982,25 +1040,54 @@ private DataFlow::Node trackSingletonMethodOnInstance(MethodBase method, string
  */
 pragma[nomagic]
 private predicate argMustFlowToReceiver(
-  RelevantCall ctx, DataFlow::LocalSourceNode source, ArgumentNode arg,
+  RelevantCall ctx, DataFlow::LocalSourceNode source, DataFlow::Node arg,
   SsaDefinitionExtNode paramDef, RelevantCall call, Callable encl, string name
 ) {
   exists(ParameterNodeImpl p, ParameterPosition ppos, ArgumentPosition apos |
     // the receiver of `call` references `p`
     exists(DataFlow::Node receiver |
       LocalFlow::localFlowSsaParamInput(p, paramDef) and
-      methodCall(pragma[only_bind_into](call), receiver, pragma[only_bind_into](name)) and
+      methodCall(pragma[only_bind_into](call), pragma[only_bind_into](receiver),
+        pragma[only_bind_into](name)) and
       receiver.asExpr() = paramDef.getDefinitionExt().(Ssa::Definition).getARead()
     ) and
     // `p` is a parameter of `encl`,
     encl = call.getScope() and
     p.isParameterOf(TCfgScope(encl), ppos) and
-    // `ctx` targets `encl`
-    getTarget(ctx) = encl and
     // `arg` is the argument for `p` in the call `ctx`
-    arg.sourceArgumentOf(ctx, apos) and
     parameterMatch(ppos, apos) and
     source.flowsTo(arg)
+  |
+    encl = viableSourceCallableNonInit(ctx) and
+    arg.(ArgumentNode).sourceArgumentOf(ctx, apos)
+    or
+    encl = viableSourceCallableInit(ctx) and
+    if apos.isSelf()
+    then
+      // when we are targeting an initializer, the type of `self` inside the
+      // initializer will be the type of the `new` call itself, not the receiver
+      // of the `new` call
+      arg.asExpr() = ctx
+    else arg.(ArgumentNode).sourceArgumentOf(ctx, apos)
+  )
+}
+
+/**
+ * Holds if `ctx` targets `encl`, which is the enclosing callable of `new`, and
+ * the receiver of `new` is a parameter access, where the corresponding argument
+ * `arg` of `ctx` has type `tp`.
+ *
+ * `new` calls the object creation `new` method.
+ */
+pragma[nomagic]
+private predicate mayBenefitFromCallContextInitialize(
+  RelevantCall ctx, RelevantCall new, DataFlow::Node arg, Callable encl, Module tp, string name
+) {
+  exists(DataFlow::LocalSourceNode source |
+    argMustFlowToReceiver(ctx, pragma[only_bind_into](source), arg, _, new, encl, "new") and
+    source = trackModuleAccess(tp) and
+    name = "initialize" and
+    exists(lookupMethod(tp, name))
   )
 }
 
@@ -1014,7 +1101,7 @@ private predicate argMustFlowToReceiver(
  */
 pragma[nomagic]
 private predicate mayBenefitFromCallContextInstance(
-  RelevantCall ctx, RelevantCall call, ArgumentNode arg, Callable encl, Module tp, boolean exact,
+  RelevantCall ctx, RelevantCall call, DataFlow::Node arg, Callable encl, Module tp, boolean exact,
   string name
 ) {
   exists(DataFlow::LocalSourceNode source |
@@ -1035,7 +1122,7 @@ private predicate mayBenefitFromCallContextInstance(
  */
 pragma[nomagic]
 private predicate mayBenefitFromCallContextSingleton(
-  RelevantCall ctx, RelevantCall call, ArgumentNode arg, Callable encl, Module tp, boolean exact,
+  RelevantCall ctx, RelevantCall call, DataFlow::Node arg, Callable encl, Module tp, boolean exact,
   string name
 ) {
   exists(DataFlow::LocalSourceNode source |
@@ -1066,6 +1153,8 @@ private predicate mayBenefitFromCallContextSingleton(
  * the implicit `self` parameter).
  */
 predicate mayBenefitFromCallContext(DataFlowCall call, DataFlowCallable c) {
+  mayBenefitFromCallContextInitialize(_, call.asCall(), _, c.asCallable(), _, _)
+  or
   mayBenefitFromCallContextInstance(_, call.asCall(), _, c.asCallable(), _, _, _)
   or
   mayBenefitFromCallContextSingleton(_, call.asCall(), _, c.asCallable(), _, _, _)
@@ -1083,30 +1172,39 @@ DataFlowCallable viableImplInCallContext(DataFlowCall call, DataFlowCall ctx) {
     exists(RelevantCall call0, Callable res |
       call0 = call.asCall() and
       res = result.asCallable() and
-      result = viableSourceCallable(call) and // make sure to not include e.g. private methods
-      exists(Module m, boolean exact, string name |
-        mayBenefitFromCallContextInstance(ctx.asCall(), pragma[only_bind_into](call0), _, _,
-          pragma[only_bind_into](m), exact, pragma[only_bind_into](name)) and
-        res = lookupMethod(m, name, exact)
+      exists(Module m, string name |
+        mayBenefitFromCallContextInitialize(ctx.asCall(), pragma[only_bind_into](call0), _, _,
+          pragma[only_bind_into](m), pragma[only_bind_into](name)) and
+        res = getTargetInstance(call0, name) and
+        res = lookupMethod(m, name)
         or
-        mayBenefitFromCallContextSingleton(ctx.asCall(), pragma[only_bind_into](call0), _, _,
-          pragma[only_bind_into](m), exact, pragma[only_bind_into](name)) and
-        res = lookupSingletonMethod(m, name, exact)
+        exists(boolean exact |
+          mayBenefitFromCallContextInstance(ctx.asCall(), pragma[only_bind_into](call0), _, _,
+            pragma[only_bind_into](m), pragma[only_bind_into](exact), pragma[only_bind_into](name)) and
+          res = getTargetInstance(call0, name) and
+          res = lookupMethod(m, name, exact)
+          or
+          mayBenefitFromCallContextSingleton(ctx.asCall(), pragma[only_bind_into](call0), _, _,
+            pragma[only_bind_into](m), pragma[only_bind_into](exact), pragma[only_bind_into](name)) and
+          res = getTargetSingleton(call0, name) and
+          res = lookupSingletonMethod(m, name, exact)
+        )
       )
     )
     or
     // `ctx` cannot provide a type bound, and the receiver of the call is `self`;
     // in this case, still apply an open-world assumption
     exists(
-      RelevantCall call0, RelevantCall ctx0, ArgumentNode arg, SsaSelfDefinitionNode self,
+      RelevantCall call0, RelevantCall ctx0, DataFlow::Node arg, SsaSelfDefinitionNode self,
       string name
     |
       call0 = call.asCall() and
       ctx0 = ctx.asCall() and
       argMustFlowToReceiver(ctx0, _, arg, self, call0, _, name) and
+      not mayBenefitFromCallContextInitialize(ctx0, call0, arg, _, _, _) and
       not mayBenefitFromCallContextInstance(ctx0, call0, arg, _, _, _, name) and
       not mayBenefitFromCallContextSingleton(ctx0, call0, arg, _, _, _, name) and
-      result = viableSourceCallable(call)
+      result.asCallable() = viableSourceCallable(call0)
     )
     or
     // library calls should always be able to resolve
diff --git a/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowPrivate.qll b/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowPrivate.qll
index 1f3a6a3f575..76380de9415 100644
--- a/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowPrivate.qll
+++ b/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowPrivate.qll
@@ -828,8 +828,8 @@ import ParameterNodes
 
 /** A data-flow node used to model flow summaries. */
 class SummaryNode extends NodeImpl, TSummaryNode {
-  private FlowSummaryImpl::Public::SummarizedCallable c;
-  private FlowSummaryImpl::Private::SummaryNodeState state;
+  FlowSummaryImpl::Public::SummarizedCallable c;
+  FlowSummaryImpl::Private::SummaryNodeState state;
 
   SummaryNode() { this = TSummaryNode(c, state) }
 
@@ -951,6 +951,11 @@ private module ArgumentNodes {
 
 import ArgumentNodes
 
+/** A call to `new`. */
+private class NewCall extends DataFlowCall {
+  NewCall() { this.asCall().getExpr().(MethodCall).getMethodName() = "new" }
+}
+
 /** A data-flow node that represents a value syntactically returned by a callable. */
 abstract class ReturningNode extends Node {
   /** Gets the kind of this return node. */
@@ -994,7 +999,12 @@ private module ReturnNodes {
     override ReturnKind getKind() {
       if n.getNode() instanceof BreakStmt
       then result instanceof BreakReturnKind
-      else result instanceof NormalReturnKind
+      else
+        exists(CfgScope scope | scope = this.getCfgScope() |
+          if isUserDefinedNew(scope)
+          then result instanceof NewReturnKind
+          else result instanceof NormalReturnKind
+        )
     }
   }
 
@@ -1018,7 +1028,42 @@ private module ReturnNodes {
   class ExprReturnNode extends ReturningNode, ExprNode {
     ExprReturnNode() { exists(Callable c | implicitReturn(c, this) = c.getAStmt()) }
 
-    override ReturnKind getKind() { result instanceof NormalReturnKind }
+    override ReturnKind getKind() {
+      exists(CfgScope scope | scope = this.(NodeImpl).getCfgScope() |
+        if isUserDefinedNew(scope)
+        then result instanceof NewReturnKind
+        else result instanceof NormalReturnKind
+      )
+    }
+  }
+
+  /**
+   * A `self` node inside an `initialize` method through which data may return.
+   *
+   * For example, in
+   *
+   * ```rb
+   * class C
+   *   def initialize(x)
+   *     @x = x
+   *   end
+   * end
+   * ```
+   *
+   * the implicit `self` reference in `@x` will return data stored in the field
+   * `x` out to the call `C.new`.
+   */
+  class InitializeReturnNode extends ExprPostUpdateNode, ReturningNode {
+    InitializeReturnNode() {
+      exists(Method initialize |
+        this.getCfgScope() = initialize and
+        initialize.getName() = "initialize" and
+        initialize = any(ClassDeclaration c).getAMethod() and
+        this.getPreUpdateNode().asExpr().getExpr() instanceof SelfVariableReadAccess
+      )
+    }
+
+    override ReturnKind getKind() { result instanceof NewReturnKind }
   }
 
   /**
@@ -1054,7 +1099,14 @@ private module ReturnNodes {
 
     SummaryReturnNode() { FlowSummaryImpl::Private::summaryReturnNode(this, rk) }
 
-    override ReturnKind getKind() { result = rk }
+    override ReturnKind getKind() {
+      result = rk
+      or
+      exists(NewCall new |
+        TLibraryCallable(c) = viableLibraryCallable(new) and
+        result instanceof NewReturnKind
+      )
+    }
   }
 }
 
@@ -1078,7 +1130,9 @@ private module OutNodes {
 
     override DataFlowCall getCall(ReturnKind kind) {
       result = call and
-      kind instanceof NormalReturnKind
+      if call instanceof NewCall
+      then kind instanceof NewReturnKind
+      else kind instanceof NormalReturnKind
     }
   }
 
diff --git a/ruby/ql/lib/codeql/ruby/typetracking/TypeTrackerSpecific.qll b/ruby/ql/lib/codeql/ruby/typetracking/TypeTrackerSpecific.qll
index 1c636c6987f..9cb7ee7fef5 100644
--- a/ruby/ql/lib/codeql/ruby/typetracking/TypeTrackerSpecific.qll
+++ b/ruby/ql/lib/codeql/ruby/typetracking/TypeTrackerSpecific.qll
@@ -79,10 +79,15 @@ predicate jumpStep = DataFlowPrivate::jumpStep/2;
 /** Holds if there is direct flow from `param` to a return. */
 pragma[nomagic]
 private predicate flowThrough(DataFlowPublic::ParameterNode param) {
-  exists(DataFlowPrivate::ReturningNode returnNode |
+  exists(DataFlowPrivate::ReturningNode returnNode, DataFlowDispatch::ReturnKind rk |
     DataFlowPrivate::LocalFlow::getParameterDefNode(param.getParameter())
         .(TypeTrackingNode)
-        .flowsTo(returnNode)
+        .flowsTo(returnNode) and
+    rk = returnNode.getKind()
+  |
+    rk instanceof DataFlowDispatch::NormalReturnKind
+    or
+    rk instanceof DataFlowDispatch::BreakReturnKind
   )
 }
 
@@ -184,7 +189,9 @@ private predicate viableParam(
   DataFlowDispatch::ParameterPosition ppos
 ) {
   exists(Cfg::CfgScope callable |
-    DataFlowDispatch::getTarget(call) = callable and
+    DataFlowDispatch::getTarget(call) = callable or
+    DataFlowDispatch::getInitializeTarget(call) = callable
+  |
     p.isSourceParameterOf(callable, ppos)
   )
 }
@@ -226,6 +233,9 @@ predicate returnStep(Node nodeFrom, Node nodeTo) {
   exists(ExprNodes::CallCfgNode call |
     nodeFrom instanceof DataFlowPrivate::ReturnNode and
     nodeFrom.(DataFlowPrivate::NodeImpl).getCfgScope() = DataFlowDispatch::getTarget(call) and
+    // deliberately do not include `getInitializeTarget`, since there is no direct
+    // flow out (only side-effects on `self`). Any fields being set in the initializer
+    // will reach all reads via `callStep` and `localFieldStep`.
     nodeTo.asExpr().getNode() = call.getNode()
   )
   or
@@ -233,7 +243,8 @@ predicate returnStep(Node nodeFrom, Node nodeTo) {
   // we model it as a returning flow step, in order to avoid computing a potential
   // self-cross product of all calls to a function that returns one of its parameters
   // (only to later filter that flow out using `TypeTracker::append`).
-  nodeTo.(DataFlowPrivate::SynthReturnNode).getAnInput() = nodeFrom
+  nodeTo.(DataFlowPrivate::SynthReturnNode).getAnInput() = nodeFrom and
+  not nodeFrom instanceof DataFlowPrivate::InitializeReturnNode
 }
 
 /**
diff --git a/ruby/ql/src/queries/analysis/Definitions.ql b/ruby/ql/src/queries/analysis/Definitions.ql
index 24e968b124d..3f97223d9e8 100644
--- a/ruby/ql/src/queries/analysis/Definitions.ql
+++ b/ruby/ql/src/queries/analysis/Definitions.ql
@@ -12,6 +12,7 @@
 
 import codeql.ruby.AST
 import codeql.ruby.dataflow.SSA
+import codeql.ruby.dataflow.internal.DataFlowDispatch
 
 from DefLoc loc, Expr src, Expr target, string kind
 where
@@ -38,7 +39,12 @@ newtype DefLoc =
     write = definitionOf(read.getAQualifiedName())
   } or
   /** A method call. */
-  MethodLoc(MethodCall call, Method meth) { meth = call.getATarget() } or
+  MethodLoc(MethodCall call, Method meth) {
+    meth = call.getATarget()
+    or
+    // include implicit `initialize` calls
+    meth = getInitializeTarget(call.getAControlFlowNode())
+  } or
   /** A local variable. */
   LocalVariableLoc(VariableReadAccess read, VariableWriteAccess write) {
     exists(Ssa::WriteDefinition w |
diff --git a/ruby/ql/test/library-tests/dataflow/call-sensitivity/call-sensitivity.expected b/ruby/ql/test/library-tests/dataflow/call-sensitivity/call-sensitivity.expected
index 3b1fbe40b26..345b73e9dff 100644
--- a/ruby/ql/test/library-tests/dataflow/call-sensitivity/call-sensitivity.expected
+++ b/ruby/ql/test/library-tests/dataflow/call-sensitivity/call-sensitivity.expected
@@ -1,8 +1,5 @@
 failures
-| call_sensitivity.rb:51:12:51:148 | # $ hasValueFlow=10 $ hasValueFlow=11 $ hasValueFlow=12 $ hasValueFlow=13 $ hasValueFlow=26 $ hasValueFlow=30 $ SPURIOUS: hasValueFlow=27 | Missing result:hasValueFlow=30 |
 | call_sensitivity.rb:97:12:97:66 | # $ hasValueFlow=26 $ hasValueFlow=30 $ hasValueFlow=32 | Missing result:hasValueFlow=26 |
-| call_sensitivity.rb:97:12:97:66 | # $ hasValueFlow=26 $ hasValueFlow=30 $ hasValueFlow=32 | Missing result:hasValueFlow=30 |
-| call_sensitivity.rb:97:12:97:66 | # $ hasValueFlow=26 $ hasValueFlow=30 $ hasValueFlow=32 | Missing result:hasValueFlow=32 |
 edges
 | call_sensitivity.rb:9:7:9:13 | call to taint :  | call_sensitivity.rb:9:6:9:14 | ( ... ) |
 | call_sensitivity.rb:9:7:9:13 | call to taint :  | call_sensitivity.rb:9:6:9:14 | ( ... ) |
@@ -96,6 +93,18 @@ edges
 | call_sensitivity.rb:92:35:92:35 | x :  | call_sensitivity.rb:93:34:93:34 | x :  |
 | call_sensitivity.rb:93:34:93:34 | x :  | call_sensitivity.rb:88:33:88:33 | y :  |
 | call_sensitivity.rb:93:34:93:34 | x :  | call_sensitivity.rb:88:33:88:33 | y :  |
+| call_sensitivity.rb:96:18:96:18 | x :  | call_sensitivity.rb:97:10:97:10 | x |
+| call_sensitivity.rb:96:18:96:18 | x :  | call_sensitivity.rb:97:10:97:10 | x |
+| call_sensitivity.rb:96:18:96:18 | x :  | call_sensitivity.rb:97:10:97:10 | x |
+| call_sensitivity.rb:96:18:96:18 | x :  | call_sensitivity.rb:97:10:97:10 | x |
+| call_sensitivity.rb:96:18:96:18 | x :  | call_sensitivity.rb:98:13:98:13 | x :  |
+| call_sensitivity.rb:96:18:96:18 | x :  | call_sensitivity.rb:98:13:98:13 | x :  |
+| call_sensitivity.rb:98:13:98:13 | x :  | call_sensitivity.rb:50:15:50:15 | x :  |
+| call_sensitivity.rb:98:13:98:13 | x :  | call_sensitivity.rb:50:15:50:15 | x :  |
+| call_sensitivity.rb:102:11:102:20 | ( ... ) :  | call_sensitivity.rb:96:18:96:18 | x :  |
+| call_sensitivity.rb:102:11:102:20 | ( ... ) :  | call_sensitivity.rb:96:18:96:18 | x :  |
+| call_sensitivity.rb:102:12:102:19 | call to taint :  | call_sensitivity.rb:102:11:102:20 | ( ... ) :  |
+| call_sensitivity.rb:102:12:102:19 | call to taint :  | call_sensitivity.rb:102:11:102:20 | ( ... ) :  |
 | call_sensitivity.rb:103:11:103:18 | call to taint :  | call_sensitivity.rb:54:15:54:15 | x :  |
 | call_sensitivity.rb:103:11:103:18 | call to taint :  | call_sensitivity.rb:54:15:54:15 | x :  |
 | call_sensitivity.rb:104:16:104:23 | call to taint :  | call_sensitivity.rb:58:20:58:20 | x :  |
@@ -116,6 +125,10 @@ edges
 | call_sensitivity.rb:112:26:112:33 | call to taint :  | call_sensitivity.rb:92:35:92:35 | x :  |
 | call_sensitivity.rb:149:14:149:22 | call to taint :  | call_sensitivity.rb:74:18:74:18 | y :  |
 | call_sensitivity.rb:149:14:149:22 | call to taint :  | call_sensitivity.rb:74:18:74:18 | y :  |
+| call_sensitivity.rb:169:11:169:20 | ( ... ) :  | call_sensitivity.rb:96:18:96:18 | x :  |
+| call_sensitivity.rb:169:11:169:20 | ( ... ) :  | call_sensitivity.rb:96:18:96:18 | x :  |
+| call_sensitivity.rb:169:12:169:19 | call to taint :  | call_sensitivity.rb:169:11:169:20 | ( ... ) :  |
+| call_sensitivity.rb:169:12:169:19 | call to taint :  | call_sensitivity.rb:169:11:169:20 | ( ... ) :  |
 nodes
 | call_sensitivity.rb:9:6:9:14 | ( ... ) | semmle.label | ( ... ) |
 | call_sensitivity.rb:9:6:9:14 | ( ... ) | semmle.label | ( ... ) |
@@ -223,6 +236,18 @@ nodes
 | call_sensitivity.rb:92:35:92:35 | x :  | semmle.label | x :  |
 | call_sensitivity.rb:93:34:93:34 | x :  | semmle.label | x :  |
 | call_sensitivity.rb:93:34:93:34 | x :  | semmle.label | x :  |
+| call_sensitivity.rb:96:18:96:18 | x :  | semmle.label | x :  |
+| call_sensitivity.rb:96:18:96:18 | x :  | semmle.label | x :  |
+| call_sensitivity.rb:96:18:96:18 | x :  | semmle.label | x :  |
+| call_sensitivity.rb:96:18:96:18 | x :  | semmle.label | x :  |
+| call_sensitivity.rb:97:10:97:10 | x | semmle.label | x |
+| call_sensitivity.rb:97:10:97:10 | x | semmle.label | x |
+| call_sensitivity.rb:98:13:98:13 | x :  | semmle.label | x :  |
+| call_sensitivity.rb:98:13:98:13 | x :  | semmle.label | x :  |
+| call_sensitivity.rb:102:11:102:20 | ( ... ) :  | semmle.label | ( ... ) :  |
+| call_sensitivity.rb:102:11:102:20 | ( ... ) :  | semmle.label | ( ... ) :  |
+| call_sensitivity.rb:102:12:102:19 | call to taint :  | semmle.label | call to taint :  |
+| call_sensitivity.rb:102:12:102:19 | call to taint :  | semmle.label | call to taint :  |
 | call_sensitivity.rb:103:11:103:18 | call to taint :  | semmle.label | call to taint :  |
 | call_sensitivity.rb:103:11:103:18 | call to taint :  | semmle.label | call to taint :  |
 | call_sensitivity.rb:104:16:104:23 | call to taint :  | semmle.label | call to taint :  |
@@ -243,6 +268,10 @@ nodes
 | call_sensitivity.rb:112:26:112:33 | call to taint :  | semmle.label | call to taint :  |
 | call_sensitivity.rb:149:14:149:22 | call to taint :  | semmle.label | call to taint :  |
 | call_sensitivity.rb:149:14:149:22 | call to taint :  | semmle.label | call to taint :  |
+| call_sensitivity.rb:169:11:169:20 | ( ... ) :  | semmle.label | ( ... ) :  |
+| call_sensitivity.rb:169:11:169:20 | ( ... ) :  | semmle.label | ( ... ) :  |
+| call_sensitivity.rb:169:12:169:19 | call to taint :  | semmle.label | call to taint :  |
+| call_sensitivity.rb:169:12:169:19 | call to taint :  | semmle.label | call to taint :  |
 subpaths
 #select
 | call_sensitivity.rb:9:6:9:14 | ( ... ) | call_sensitivity.rb:9:7:9:13 | call to taint :  | call_sensitivity.rb:9:6:9:14 | ( ... ) | $@ | call_sensitivity.rb:9:7:9:13 | call to taint :  | call to taint :  |
@@ -250,6 +279,7 @@ subpaths
 | call_sensitivity.rb:31:27:31:27 | x | call_sensitivity.rb:32:25:32:32 | call to taint :  | call_sensitivity.rb:31:27:31:27 | x | $@ | call_sensitivity.rb:32:25:32:32 | call to taint :  | call to taint :  |
 | call_sensitivity.rb:40:31:40:31 | x | call_sensitivity.rb:41:25:41:32 | call to taint :  | call_sensitivity.rb:40:31:40:31 | x | $@ | call_sensitivity.rb:41:25:41:32 | call to taint :  | call to taint :  |
 | call_sensitivity.rb:43:32:43:32 | x | call_sensitivity.rb:44:26:44:33 | call to taint :  | call_sensitivity.rb:43:32:43:32 | x | $@ | call_sensitivity.rb:44:26:44:33 | call to taint :  | call to taint :  |
+| call_sensitivity.rb:51:10:51:10 | x | call_sensitivity.rb:102:12:102:19 | call to taint :  | call_sensitivity.rb:51:10:51:10 | x | $@ | call_sensitivity.rb:102:12:102:19 | call to taint :  | call to taint :  |
 | call_sensitivity.rb:51:10:51:10 | x | call_sensitivity.rb:103:11:103:18 | call to taint :  | call_sensitivity.rb:51:10:51:10 | x | $@ | call_sensitivity.rb:103:11:103:18 | call to taint :  | call to taint :  |
 | call_sensitivity.rb:51:10:51:10 | x | call_sensitivity.rb:104:16:104:23 | call to taint :  | call_sensitivity.rb:51:10:51:10 | x | $@ | call_sensitivity.rb:104:16:104:23 | call to taint :  | call to taint :  |
 | call_sensitivity.rb:51:10:51:10 | x | call_sensitivity.rb:105:14:105:22 | call to taint :  | call_sensitivity.rb:51:10:51:10 | x | $@ | call_sensitivity.rb:105:14:105:22 | call to taint :  | call to taint :  |
@@ -260,6 +290,8 @@ subpaths
 | call_sensitivity.rb:71:10:71:10 | x | call_sensitivity.rb:110:26:110:33 | call to taint :  | call_sensitivity.rb:71:10:71:10 | x | $@ | call_sensitivity.rb:110:26:110:33 | call to taint :  | call to taint :  |
 | call_sensitivity.rb:71:10:71:10 | x | call_sensitivity.rb:111:24:111:32 | call to taint :  | call_sensitivity.rb:71:10:71:10 | x | $@ | call_sensitivity.rb:111:24:111:32 | call to taint :  | call to taint :  |
 | call_sensitivity.rb:71:10:71:10 | x | call_sensitivity.rb:112:26:112:33 | call to taint :  | call_sensitivity.rb:71:10:71:10 | x | $@ | call_sensitivity.rb:112:26:112:33 | call to taint :  | call to taint :  |
+| call_sensitivity.rb:97:10:97:10 | x | call_sensitivity.rb:102:12:102:19 | call to taint :  | call_sensitivity.rb:97:10:97:10 | x | $@ | call_sensitivity.rb:102:12:102:19 | call to taint :  | call to taint :  |
+| call_sensitivity.rb:97:10:97:10 | x | call_sensitivity.rb:169:12:169:19 | call to taint :  | call_sensitivity.rb:97:10:97:10 | x | $@ | call_sensitivity.rb:169:12:169:19 | call to taint :  | call to taint :  |
 mayBenefitFromCallContext
 | call_sensitivity.rb:51:5:51:10 | call to sink | call_sensitivity.rb:50:3:52:5 | method1 |
 | call_sensitivity.rb:55:5:55:13 | call to method1 | call_sensitivity.rb:54:3:56:5 | method2 |
@@ -270,10 +302,13 @@ mayBenefitFromCallContext
 | call_sensitivity.rb:85:5:85:28 | call to singleton_method2 | call_sensitivity.rb:84:3:86:5 | call_singleton_method2 |
 | call_sensitivity.rb:89:5:89:26 | call to singleton_method1 | call_sensitivity.rb:88:3:90:5 | singleton_method3 |
 | call_sensitivity.rb:93:5:93:35 | call to singleton_method3 | call_sensitivity.rb:92:3:94:5 | call_singleton_method3 |
+| call_sensitivity.rb:97:5:97:10 | call to sink | call_sensitivity.rb:96:3:99:5 | initialize |
+| call_sensitivity.rb:98:5:98:13 | call to method1 | call_sensitivity.rb:96:3:99:5 | initialize |
 | call_sensitivity.rb:124:5:124:18 | call to method2 | call_sensitivity.rb:123:3:125:5 | call_method2 |
 | call_sensitivity.rb:128:5:128:25 | call to method3 | call_sensitivity.rb:127:3:129:5 | call_method3 |
 | call_sensitivity.rb:132:5:132:28 | call to singleton_method2 | call_sensitivity.rb:131:3:133:5 | call_singleton_method2 |
 | call_sensitivity.rb:136:5:136:35 | call to singleton_method3 | call_sensitivity.rb:135:3:137:5 | call_singleton_method3 |
+| call_sensitivity.rb:157:3:157:12 | call to new | call_sensitivity.rb:156:1:158:3 | create |
 viableImplInCallContext
 | call_sensitivity.rb:51:5:51:10 | call to sink | call_sensitivity.rb:55:5:55:13 | call to method1 | call_sensitivity.rb:5:1:7:3 | sink |
 | call_sensitivity.rb:51:5:51:10 | call to sink | call_sensitivity.rb:63:5:63:16 | call to method1 | call_sensitivity.rb:5:1:7:3 | sink |
@@ -305,6 +340,13 @@ viableImplInCallContext
 | call_sensitivity.rb:89:5:89:26 | call to singleton_method1 | call_sensitivity.rb:136:5:136:35 | call to singleton_method3 | call_sensitivity.rb:119:3:121:5 | singleton_method1 |
 | call_sensitivity.rb:89:5:89:26 | call to singleton_method1 | call_sensitivity.rb:153:1:153:33 | call to singleton_method3 | call_sensitivity.rb:119:3:121:5 | singleton_method1 |
 | call_sensitivity.rb:93:5:93:35 | call to singleton_method3 | call_sensitivity.rb:112:1:112:34 | call to call_singleton_method3 | call_sensitivity.rb:88:3:90:5 | singleton_method3 |
+| call_sensitivity.rb:97:5:97:10 | call to sink | call_sensitivity.rb:102:5:102:20 | call to new | call_sensitivity.rb:5:1:7:3 | sink |
+| call_sensitivity.rb:97:5:97:10 | call to sink | call_sensitivity.rb:157:3:157:12 | call to new | call_sensitivity.rb:5:1:7:3 | sink |
+| call_sensitivity.rb:97:5:97:10 | call to sink | call_sensitivity.rb:169:5:169:20 | call to new | call_sensitivity.rb:5:1:7:3 | sink |
+| call_sensitivity.rb:98:5:98:13 | call to method1 | call_sensitivity.rb:102:5:102:20 | call to new | call_sensitivity.rb:50:3:52:5 | method1 |
+| call_sensitivity.rb:98:5:98:13 | call to method1 | call_sensitivity.rb:157:3:157:12 | call to new | call_sensitivity.rb:50:3:52:5 | method1 |
+| call_sensitivity.rb:98:5:98:13 | call to method1 | call_sensitivity.rb:157:3:157:12 | call to new | call_sensitivity.rb:115:3:117:5 | method1 |
+| call_sensitivity.rb:98:5:98:13 | call to method1 | call_sensitivity.rb:169:5:169:20 | call to new | call_sensitivity.rb:164:3:166:5 | method1 |
 | call_sensitivity.rb:124:5:124:18 | call to method2 | call_sensitivity.rb:146:1:146:24 | call to call_method2 | call_sensitivity.rb:54:3:56:5 | method2 |
 | call_sensitivity.rb:128:5:128:25 | call to method3 | call_sensitivity.rb:148:1:148:25 | call to call_method3 | call_sensitivity.rb:62:3:64:5 | method3 |
 | call_sensitivity.rb:132:5:132:28 | call to singleton_method2 | call_sensitivity.rb:152:1:152:34 | call to call_singleton_method2 | call_sensitivity.rb:80:3:82:5 | singleton_method2 |
diff --git a/ruby/ql/test/library-tests/dataflow/global/Flow.expected b/ruby/ql/test/library-tests/dataflow/global/Flow.expected
index 24003956ec7..cae1f06abb7 100644
--- a/ruby/ql/test/library-tests/dataflow/global/Flow.expected
+++ b/ruby/ql/test/library-tests/dataflow/global/Flow.expected
@@ -1,5 +1,4 @@
 failures
-| instance_variables.rb:102:23:102:41 | # $ hasValueFlow=29 | Missing result:hasValueFlow=29 |
 edges
 | captured_variables.rb:1:24:1:24 | x :  | captured_variables.rb:2:20:2:20 | x |
 | captured_variables.rb:1:24:1:24 | x :  | captured_variables.rb:2:20:2:20 | x |
@@ -180,6 +179,16 @@ edges
 | instance_variables.rb:99:6:99:10 | foo13 [@field] :  | instance_variables.rb:13:5:15:7 | self in get_field [@field] :  |
 | instance_variables.rb:99:6:99:10 | foo13 [@field] :  | instance_variables.rb:99:6:99:20 | call to get_field |
 | instance_variables.rb:99:6:99:10 | foo13 [@field] :  | instance_variables.rb:99:6:99:20 | call to get_field |
+| instance_variables.rb:101:9:101:26 | call to new [@field] :  | instance_variables.rb:102:6:102:10 | foo15 [@field] :  |
+| instance_variables.rb:101:9:101:26 | call to new [@field] :  | instance_variables.rb:102:6:102:10 | foo15 [@field] :  |
+| instance_variables.rb:101:17:101:25 | call to taint :  | instance_variables.rb:22:20:22:24 | field :  |
+| instance_variables.rb:101:17:101:25 | call to taint :  | instance_variables.rb:22:20:22:24 | field :  |
+| instance_variables.rb:101:17:101:25 | call to taint :  | instance_variables.rb:101:9:101:26 | call to new [@field] :  |
+| instance_variables.rb:101:17:101:25 | call to taint :  | instance_variables.rb:101:9:101:26 | call to new [@field] :  |
+| instance_variables.rb:102:6:102:10 | foo15 [@field] :  | instance_variables.rb:13:5:15:7 | self in get_field [@field] :  |
+| instance_variables.rb:102:6:102:10 | foo15 [@field] :  | instance_variables.rb:13:5:15:7 | self in get_field [@field] :  |
+| instance_variables.rb:102:6:102:10 | foo15 [@field] :  | instance_variables.rb:102:6:102:20 | call to get_field |
+| instance_variables.rb:102:6:102:10 | foo15 [@field] :  | instance_variables.rb:102:6:102:20 | call to get_field |
 | instance_variables.rb:104:6:104:10 | [post] foo16 [@field] :  | instance_variables.rb:105:6:105:10 | foo16 [@field] :  |
 | instance_variables.rb:104:6:104:10 | [post] foo16 [@field] :  | instance_variables.rb:105:6:105:10 | foo16 [@field] :  |
 | instance_variables.rb:104:28:104:36 | call to taint :  | instance_variables.rb:27:25:27:29 | field :  |
@@ -363,6 +372,14 @@ nodes
 | instance_variables.rb:99:6:99:10 | foo13 [@field] :  | semmle.label | foo13 [@field] :  |
 | instance_variables.rb:99:6:99:20 | call to get_field | semmle.label | call to get_field |
 | instance_variables.rb:99:6:99:20 | call to get_field | semmle.label | call to get_field |
+| instance_variables.rb:101:9:101:26 | call to new [@field] :  | semmle.label | call to new [@field] :  |
+| instance_variables.rb:101:9:101:26 | call to new [@field] :  | semmle.label | call to new [@field] :  |
+| instance_variables.rb:101:17:101:25 | call to taint :  | semmle.label | call to taint :  |
+| instance_variables.rb:101:17:101:25 | call to taint :  | semmle.label | call to taint :  |
+| instance_variables.rb:102:6:102:10 | foo15 [@field] :  | semmle.label | foo15 [@field] :  |
+| instance_variables.rb:102:6:102:10 | foo15 [@field] :  | semmle.label | foo15 [@field] :  |
+| instance_variables.rb:102:6:102:20 | call to get_field | semmle.label | call to get_field |
+| instance_variables.rb:102:6:102:20 | call to get_field | semmle.label | call to get_field |
 | instance_variables.rb:104:6:104:10 | [post] foo16 [@field] :  | semmle.label | [post] foo16 [@field] :  |
 | instance_variables.rb:104:6:104:10 | [post] foo16 [@field] :  | semmle.label | [post] foo16 [@field] :  |
 | instance_variables.rb:104:6:104:37 | call to call_initialize | semmle.label | call to call_initialize |
@@ -427,6 +444,10 @@ subpaths
 | instance_variables.rb:94:6:94:10 | foo12 [@field] :  | instance_variables.rb:13:5:15:7 | self in get_field [@field] :  | instance_variables.rb:14:9:14:21 | return :  | instance_variables.rb:94:6:94:20 | call to get_field |
 | instance_variables.rb:99:6:99:10 | foo13 [@field] :  | instance_variables.rb:13:5:15:7 | self in get_field [@field] :  | instance_variables.rb:14:9:14:21 | return :  | instance_variables.rb:99:6:99:20 | call to get_field |
 | instance_variables.rb:99:6:99:10 | foo13 [@field] :  | instance_variables.rb:13:5:15:7 | self in get_field [@field] :  | instance_variables.rb:14:9:14:21 | return :  | instance_variables.rb:99:6:99:20 | call to get_field |
+| instance_variables.rb:101:17:101:25 | call to taint :  | instance_variables.rb:22:20:22:24 | field :  | instance_variables.rb:23:9:23:14 | [post] self [@field] :  | instance_variables.rb:101:9:101:26 | call to new [@field] :  |
+| instance_variables.rb:101:17:101:25 | call to taint :  | instance_variables.rb:22:20:22:24 | field :  | instance_variables.rb:23:9:23:14 | [post] self [@field] :  | instance_variables.rb:101:9:101:26 | call to new [@field] :  |
+| instance_variables.rb:102:6:102:10 | foo15 [@field] :  | instance_variables.rb:13:5:15:7 | self in get_field [@field] :  | instance_variables.rb:14:9:14:21 | return :  | instance_variables.rb:102:6:102:20 | call to get_field |
+| instance_variables.rb:102:6:102:10 | foo15 [@field] :  | instance_variables.rb:13:5:15:7 | self in get_field [@field] :  | instance_variables.rb:14:9:14:21 | return :  | instance_variables.rb:102:6:102:20 | call to get_field |
 | instance_variables.rb:104:28:104:36 | call to taint :  | instance_variables.rb:27:25:27:29 | field :  | instance_variables.rb:28:9:28:25 | [post] self [@field] :  | instance_variables.rb:104:6:104:10 | [post] foo16 [@field] :  |
 | instance_variables.rb:104:28:104:36 | call to taint :  | instance_variables.rb:27:25:27:29 | field :  | instance_variables.rb:28:9:28:25 | [post] self [@field] :  | instance_variables.rb:104:6:104:10 | [post] foo16 [@field] :  |
 | instance_variables.rb:105:6:105:10 | foo16 [@field] :  | instance_variables.rb:13:5:15:7 | self in get_field [@field] :  | instance_variables.rb:14:9:14:21 | return :  | instance_variables.rb:105:6:105:20 | call to get_field |
@@ -452,6 +473,7 @@ subpaths
 | instance_variables.rb:90:6:90:20 | call to get_field | instance_variables.rb:85:17:85:25 | call to taint :  | instance_variables.rb:90:6:90:20 | call to get_field | $@ | instance_variables.rb:85:17:85:25 | call to taint :  | call to taint :  |
 | instance_variables.rb:94:6:94:20 | call to get_field | instance_variables.rb:85:17:85:25 | call to taint :  | instance_variables.rb:94:6:94:20 | call to get_field | $@ | instance_variables.rb:85:17:85:25 | call to taint :  | call to taint :  |
 | instance_variables.rb:99:6:99:20 | call to get_field | instance_variables.rb:85:17:85:25 | call to taint :  | instance_variables.rb:99:6:99:20 | call to get_field | $@ | instance_variables.rb:85:17:85:25 | call to taint :  | call to taint :  |
+| instance_variables.rb:102:6:102:20 | call to get_field | instance_variables.rb:101:17:101:25 | call to taint :  | instance_variables.rb:102:6:102:20 | call to get_field | $@ | instance_variables.rb:101:17:101:25 | call to taint :  | call to taint :  |
 | instance_variables.rb:104:6:104:37 | call to call_initialize | instance_variables.rb:24:9:24:17 | call to taint :  | instance_variables.rb:104:6:104:37 | call to call_initialize | $@ | instance_variables.rb:24:9:24:17 | call to taint :  | call to taint :  |
 | instance_variables.rb:105:6:105:20 | call to get_field | instance_variables.rb:104:28:104:36 | call to taint :  | instance_variables.rb:105:6:105:20 | call to get_field | $@ | instance_variables.rb:104:28:104:36 | call to taint :  | call to taint :  |
 | instance_variables.rb:107:6:107:8 | bar | instance_variables.rb:34:9:34:17 | call to taint :  | instance_variables.rb:107:6:107:8 | bar | $@ | instance_variables.rb:34:9:34:17 | call to taint :  | call to taint :  |
diff --git a/ruby/ql/test/query-tests/analysis/Definitions.expected b/ruby/ql/test/query-tests/analysis/Definitions.expected
index 47f0b049d08..bd04d6207af 100644
--- a/ruby/ql/test/query-tests/analysis/Definitions.expected
+++ b/ruby/ql/test/query-tests/analysis/Definitions.expected
@@ -12,3 +12,4 @@
 | Definitions.rb:41:7:41:9 | @@b | Definitions.rb:27:5:27:7 | @@b | class variable |
 | Definitions.rb:46:1:46:1 | C | Definitions.rb:19:1:44:3 | C | constant |
 | Definitions.rb:46:1:46:4 | D | Definitions.rb:26:3:43:5 | D | constant |
+| Definitions.rb:46:1:46:8 | call to new | Definitions.rb:29:5:33:7 | initialize | method |

From a71fc930a632c7a4add6f11e7f6b9cba21c630e9 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Alvaro=20Mu=C3=B1oz?= <pwntester@github.com>
Date: Wed, 14 Dec 2022 13:11:02 +0100
Subject: [PATCH 1352/1420] add tests

---
 .../frameworks/Spife/lib/routes/index.js              | 11 +++++++++++
 .../library-tests/frameworks/Spife/lib/views/orgs.js  |  0
 .../library-tests/frameworks/Spife/tests.expected     |  5 +++++
 .../ql/test/library-tests/frameworks/Spife/tests.ql   |  8 ++++----
 4 files changed, 20 insertions(+), 4 deletions(-)
 create mode 100644 javascript/ql/test/library-tests/frameworks/Spife/lib/views/orgs.js

diff --git a/javascript/ql/test/library-tests/frameworks/Spife/lib/routes/index.js b/javascript/ql/test/library-tests/frameworks/Spife/lib/routes/index.js
index 1598d11f035..cd7ac6340c5 100644
--- a/javascript/ql/test/library-tests/frameworks/Spife/lib/routes/index.js
+++ b/javascript/ql/test/library-tests/frameworks/Spife/lib/routes/index.js
@@ -15,3 +15,14 @@ module.exports = routes`
   GET /redirect/:redirect_url redirect
   POST /packages/new createPackage
 `(require('../views'))
+
+
+const a = routes`GET /packages/package/${p} viewPackage`(require('../views')) // test:routeSetup
+
+const b = routes`GET / list`({ ...require('../views'), ...require('../views/orgs') }) // test: routeSetup
+
+const c = routes`POST  /message  handleMessage`({ handleMessage: console.log }) // test: routeSetup
+
+const d = routes`GET /version versionHandler`({ versionHandler: (req, context) => { console.log(req) } }) // test: routeSetup
+
+const e = routes`GET / handler`({ handler: async (req, context) => { console.log(req) } }) // test: routeSetup
diff --git a/javascript/ql/test/library-tests/frameworks/Spife/lib/views/orgs.js b/javascript/ql/test/library-tests/frameworks/Spife/lib/views/orgs.js
new file mode 100644
index 00000000000..e69de29bb2d
diff --git a/javascript/ql/test/library-tests/frameworks/Spife/tests.expected b/javascript/ql/test/library-tests/frameworks/Spife/tests.expected
index 1f7ecf26ef8..9f5a8b65307 100644
--- a/javascript/ql/test/library-tests/frameworks/Spife/tests.expected
+++ b/javascript/ql/test/library-tests/frameworks/Spife/tests.expected
@@ -26,6 +26,11 @@ passingPositiveTests
 | PASSED | headerDefinition | lib/views/index.js:107:88:107:150 | // test ... inition |
 | PASSED | redirectSink | lib/views/index.js:54:54:54:82 | // test ...  source |
 | PASSED | responseBody | lib/views/index.js:38:61:38:136 | // test ... nseBody |
+| PASSED | routeSetup | lib/routes/index.js:20:79:20:96 | // test:routeSetup |
+| PASSED | routeSetup | lib/routes/index.js:22:87:22:105 | // test: routeSetup |
+| PASSED | routeSetup | lib/routes/index.js:24:81:24:99 | // test: routeSetup |
+| PASSED | routeSetup | lib/routes/index.js:26:107:26:125 | // test: routeSetup |
+| PASSED | routeSetup | lib/routes/index.js:28:92:28:110 | // test: routeSetup |
 | PASSED | source | lib/views/index.js:24:56:24:70 | // test: source |
 | PASSED | source | lib/views/index.js:29:28:29:42 | // test: source |
 | PASSED | source | lib/views/index.js:30:28:30:42 | // test: source |
diff --git a/javascript/ql/test/library-tests/frameworks/Spife/tests.ql b/javascript/ql/test/library-tests/frameworks/Spife/tests.ql
index 61225f55359..656dee45b98 100644
--- a/javascript/ql/test/library-tests/frameworks/Spife/tests.ql
+++ b/javascript/ql/test/library-tests/frameworks/Spife/tests.ql
@@ -51,7 +51,7 @@ query predicate passingPositiveTests(string res, string expectation, InlineTest
     expectation = "source" and
     exists(RemoteFlowSource n | t.inNode(n))
     or
-    expectation = "setup" and
+    expectation = "routeSetup" and
     exists(Http::RouteSetup n | t.inNode(n))
     or
     expectation = "handler" and
@@ -107,7 +107,7 @@ query predicate failingPositiveTests(string res, string expectation, InlineTest
     expectation = "source" and
     not exists(RemoteFlowSource n | t.inNode(n))
     or
-    expectation = "setup" and
+    expectation = "routeSetup" and
     not exists(Http::RouteSetup n | t.inNode(n))
     or
     expectation = "handler" and
@@ -163,7 +163,7 @@ query predicate passingNegativeTests(string res, string expectation, InlineTest
     expectation = "!source" and
     not exists(RemoteFlowSource n | t.inNode(n))
     or
-    expectation = "!setup" and
+    expectation = "!routeSetup" and
     not exists(Http::RouteSetup n | t.inNode(n))
     or
     expectation = "!handler" and
@@ -219,7 +219,7 @@ query predicate failingNegativeTests(string res, string expectation, InlineTest
     expectation = "!source" and
     exists(RemoteFlowSource n | t.inNode(n))
     or
-    expectation = "!setup" and
+    expectation = "!routeSetup" and
     exists(Http::RouteSetup n | t.inNode(n))
     or
     expectation = "!handler" and

From 6d7401de7d3776013f51b31761575c0c24f1b3ad Mon Sep 17 00:00:00 2001
From: Michael Nebel <michaelnebel@github.com>
Date: Tue, 13 Dec 2022 15:14:46 +0100
Subject: [PATCH 1353/1420] C#: Rename the extensible predicates related to
 external flow.

---
 .../code/csharp/dataflow/ExternalFlow.qll     | 39 +++----------------
 .../dataflow/ExternalFlowExtensions.qll       | 34 ++++++++++++++++
 2 files changed, 40 insertions(+), 33 deletions(-)
 create mode 100644 csharp/ql/lib/semmle/code/csharp/dataflow/ExternalFlowExtensions.qll

diff --git a/csharp/ql/lib/semmle/code/csharp/dataflow/ExternalFlow.qll b/csharp/ql/lib/semmle/code/csharp/dataflow/ExternalFlow.qll
index 38517cc21da..dda86ebcd91 100644
--- a/csharp/ql/lib/semmle/code/csharp/dataflow/ExternalFlow.qll
+++ b/csharp/ql/lib/semmle/code/csharp/dataflow/ExternalFlow.qll
@@ -82,6 +82,7 @@
  */
 
 import csharp
+private import ExternalFlowExtensions as Extensions
 private import internal.AccessPathSyntax
 private import internal.DataFlowDispatch
 private import internal.DataFlowPrivate
@@ -138,14 +139,6 @@ private predicate summaryModelInternal(string row) { any(SummaryModelCsvInternal
 
 private predicate sinkModelInternal(string row) { any(SinkModelCsvInternal s).row(row) }
 
-/**
- * Holds if a source model exists for the given parameters.
- */
-extensible predicate extSourceModel(
-  string namespace, string type, boolean subtypes, string name, string signature, string ext,
-  string output, string kind, string provenance
-);
-
 /** Holds if a source model exists for the given parameters. */
 predicate sourceModel(
   string namespace, string type, boolean subtypes, string name, string signature, string ext,
@@ -165,15 +158,9 @@ predicate sourceModel(
     row.splitAt(";", 8) = provenance
   )
   or
-  extSourceModel(namespace, type, subtypes, name, signature, ext, output, kind, provenance)
+  Extensions::sourceModel(namespace, type, subtypes, name, signature, ext, output, kind, provenance)
 }
 
-/** Holds if a sink model exists for the given parameters. */
-extensible predicate extSinkModel(
-  string namespace, string type, boolean subtypes, string name, string signature, string ext,
-  string input, string kind, string provenance
-);
-
 /** Holds if a sink model exists for the given parameters. */
 predicate sinkModel(
   string namespace, string type, boolean subtypes, string name, string signature, string ext,
@@ -193,15 +180,9 @@ predicate sinkModel(
     row.splitAt(";", 8) = provenance
   )
   or
-  extSinkModel(namespace, type, subtypes, name, signature, ext, input, kind, provenance)
+  Extensions::sinkModel(namespace, type, subtypes, name, signature, ext, input, kind, provenance)
 }
 
-/** Holds if a summary model exists for the given parameters. */
-extensible predicate extSummaryModel(
-  string namespace, string type, boolean subtypes, string name, string signature, string ext,
-  string input, string output, string kind, string provenance
-);
-
 /** Holds if a summary model exists for the given parameters. */
 predicate summaryModel(
   string namespace, string type, boolean subtypes, string name, string signature, string ext,
@@ -222,20 +203,12 @@ predicate summaryModel(
     row.splitAt(";", 9) = provenance
   )
   or
-  extSummaryModel(namespace, type, subtypes, name, signature, ext, input, output, kind, provenance)
+  Extensions::summaryModel(namespace, type, subtypes, name, signature, ext, input, output, kind,
+    provenance)
 }
 
 /** Holds if a model exists indicating there is no flow for the given parameters. */
-extensible predicate extNeutralModel(
-  string namespace, string type, string name, string signature, string provenance
-);
-
-/** Holds if a model exists indicating there is no flow for the given parameters. */
-predicate neutralModel(
-  string namespace, string type, string name, string signature, string provenance
-) {
-  extNeutralModel(namespace, type, name, signature, provenance)
-}
+predicate neutralModel = Extensions::neutralModel/5;
 
 private predicate relevantNamespace(string namespace) {
   sourceModel(namespace, _, _, _, _, _, _, _, _) or
diff --git a/csharp/ql/lib/semmle/code/csharp/dataflow/ExternalFlowExtensions.qll b/csharp/ql/lib/semmle/code/csharp/dataflow/ExternalFlowExtensions.qll
new file mode 100644
index 00000000000..aab3d67e620
--- /dev/null
+++ b/csharp/ql/lib/semmle/code/csharp/dataflow/ExternalFlowExtensions.qll
@@ -0,0 +1,34 @@
+/**
+ * This module provides extensible predicates for defining MaD models.
+ */
+
+/**
+ * Holds if a source model exists for the given parameters.
+ */
+extensible predicate sourceModel(
+  string namespace, string type, boolean subtypes, string name, string signature, string ext,
+  string output, string kind, string provenance
+);
+
+/**
+ * Holds if a sink model exists for the given parameters.
+ */
+extensible predicate sinkModel(
+  string namespace, string type, boolean subtypes, string name, string signature, string ext,
+  string input, string kind, string provenance
+);
+
+/**
+ * Holds if a summary model exists for the given parameters.
+ */
+extensible predicate summaryModel(
+  string namespace, string type, boolean subtypes, string name, string signature, string ext,
+  string input, string output, string kind, string provenance
+);
+
+/**
+ * Holds if a model exists indicating there is no flow for the given parameters.
+ */
+extensible predicate neutralModel(
+  string namespace, string type, string name, string signature, string provenance
+);

From 596c2c03454b01d815c5818d67158ff24a4a5e9d Mon Sep 17 00:00:00 2001
From: Michael Nebel <michaelnebel@github.com>
Date: Wed, 14 Dec 2022 12:46:00 +0100
Subject: [PATCH 1354/1420] C#/Java: Rename the modelgenerator and converter
 predicate names.

---
 misc/scripts/models-as-data/helpers.py | 8 ++++----
 1 file changed, 4 insertions(+), 4 deletions(-)

diff --git a/misc/scripts/models-as-data/helpers.py b/misc/scripts/models-as-data/helpers.py
index d26514222ef..58594102037 100644
--- a/misc/scripts/models-as-data/helpers.py
+++ b/misc/scripts/models-as-data/helpers.py
@@ -4,10 +4,10 @@ import shutil
 import subprocess
 
 # Shared strings.
-summaryModelPredicate = "extSummaryModel"
-sinkModelPredicate = "extSinkModel"
-sourceModelPredicate = "extSourceModel"
-neutralModelPredicate = "extNeutralModel"
+summaryModelPredicate = "summaryModel"
+sinkModelPredicate = "sinkModel"
+sourceModelPredicate = "sourceModel"
+neutralModelPredicate = "neutralModel"
 addsToTemplate = """  - addsTo:
       pack: {0}
       extensible: {1}

From b5e7ba61351ce3146216ab3e0714baad7d734a0c Mon Sep 17 00:00:00 2001
From: Michael Nebel <michaelnebel@github.com>
Date: Wed, 14 Dec 2022 13:11:59 +0100
Subject: [PATCH 1355/1420] C#: Rename extensible predicate in data extension
 definitions.

---
 csharp/ql/lib/ext/Dapper.model.yml            |  2 +-
 ...Microsoft.ApplicationBlocks.Data.model.yml |  2 +-
 .../Microsoft.EntityFrameworkCore.model.yml   |  2 +-
 .../Microsoft.Extensions.Primitives.model.yml |  2 +-
 .../lib/ext/Microsoft.VisualBasic.model.yml   |  2 +-
 .../lib/ext/MySql.Data.MySqlClient.model.yml  |  2 +-
 .../ql/lib/ext/Newtonsoft.Json.Linq.model.yml |  2 +-
 csharp/ql/lib/ext/Newtonsoft.Json.model.yml   |  2 +-
 .../ql/lib/ext/ServiceStack.OrmLite.model.yml |  2 +-
 .../ql/lib/ext/ServiceStack.Redis.model.yml   |  2 +-
 csharp/ql/lib/ext/ServiceStack.model.yml      |  4 ++--
 csharp/ql/lib/ext/System.CodeDom.model.yml    |  2 +-
 .../System.Collections.Concurrent.model.yml   |  2 +-
 .../ext/System.Collections.Generic.model.yml  |  2 +-
 .../System.Collections.Immutable.model.yml    |  2 +-
 .../System.Collections.ObjectModel.model.yml  |  2 +-
 .../System.Collections.Specialized.model.yml  |  2 +-
 .../ql/lib/ext/System.Collections.model.yml   |  2 +-
 .../System.ComponentModel.Design.model.yml    |  2 +-
 .../lib/ext/System.ComponentModel.model.yml   |  2 +-
 .../System.Configuration.Provider.model.yml   |  2 +-
 .../ql/lib/ext/System.Configuration.model.yml |  2 +-
 .../ql/lib/ext/System.Data.Common.model.yml   |  2 +-
 .../ql/lib/ext/System.Data.Entity.model.yml   |  2 +-
 .../ext/System.Data.EntityClient.model.yml    |  2 +-
 csharp/ql/lib/ext/System.Data.Odbc.model.yml  |  2 +-
 csharp/ql/lib/ext/System.Data.OleDb.model.yml |  2 +-
 .../ql/lib/ext/System.Data.SQLite.model.yml   |  4 ++--
 .../lib/ext/System.Data.SqlClient.model.yml   |  4 ++--
 csharp/ql/lib/ext/System.Data.model.yml       |  2 +-
 .../ql/lib/ext/System.Diagnostics.model.yml   |  2 +-
 csharp/ql/lib/ext/System.Dynamic.model.yml    |  2 +-
 .../lib/ext/System.IO.Compression.model.yml   |  2 +-
 csharp/ql/lib/ext/System.IO.model.yml         | 20 +++++++++----------
 csharp/ql/lib/ext/System.Linq.model.yml       |  2 +-
 .../lib/ext/System.Net.Http.Headers.model.yml |  2 +-
 csharp/ql/lib/ext/System.Net.Http.model.yml   |  4 ++--
 csharp/ql/lib/ext/System.Net.Mail.model.yml   |  2 +-
 .../ql/lib/ext/System.Net.Sockets.model.yml   |  9 +++++++++
 csharp/ql/lib/ext/System.Net.model.yml        | 10 +---------
 .../System.Runtime.CompilerServices.model.yml |  2 +-
 ...ty.Cryptography.X509Certificates.model.yml |  2 +-
 .../System.Security.Cryptography.model.yml    |  4 ++--
 .../ext/System.Security.Permissions.model.yml |  2 +-
 .../lib/ext/System.Security.Policy.model.yml  |  2 +-
 .../System.Text.RegularExpressions.model.yml  |  2 +-
 csharp/ql/lib/ext/System.Text.model.yml       |  2 +-
 .../lib/ext/System.Threading.Tasks.model.yml  |  2 +-
 .../ext/System.Web.UI.WebControls.model.yml   |  2 +-
 csharp/ql/lib/ext/System.Web.model.yml        |  4 ++--
 csharp/ql/lib/ext/System.Xml.Schema.model.yml |  2 +-
 .../ext/System.Xml.Serialization.model.yml    |  2 +-
 csharp/ql/lib/ext/System.Xml.model.yml        |  2 +-
 csharp/ql/lib/ext/System.model.yml            |  4 ++--
 ...ndows.Security.Cryptography.Core.model.yml |  2 +-
 .../ext/generated/dotnet_runtime.model.yml    |  6 +++---
 56 files changed, 82 insertions(+), 81 deletions(-)
 create mode 100644 csharp/ql/lib/ext/System.Net.Sockets.model.yml

diff --git a/csharp/ql/lib/ext/Dapper.model.yml b/csharp/ql/lib/ext/Dapper.model.yml
index 949bc007574..e72f3b076a6 100644
--- a/csharp/ql/lib/ext/Dapper.model.yml
+++ b/csharp/ql/lib/ext/Dapper.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/csharp-all
-      extensible: extSinkModel
+      extensible: sinkModel
     data:
       - ["Dapper", "SqlMapper", False, "Execute", "(System.Data.IDbConnection,System.String,System.Object,System.Data.IDbTransaction,System.Nullable<System.Int32>,System.Nullable<System.Data.CommandType>)", "", "Argument[1]", "sql", "manual"]
       - ["Dapper", "SqlMapper", False, "ExecuteAsync", "(System.Data.IDbConnection,System.String,System.Object,System.Data.IDbTransaction,System.Nullable<System.Int32>,System.Nullable<System.Data.CommandType>)", "", "Argument[1]", "sql", "manual"]
diff --git a/csharp/ql/lib/ext/Microsoft.ApplicationBlocks.Data.model.yml b/csharp/ql/lib/ext/Microsoft.ApplicationBlocks.Data.model.yml
index 6a8b6031825..5b5e2657bfd 100644
--- a/csharp/ql/lib/ext/Microsoft.ApplicationBlocks.Data.model.yml
+++ b/csharp/ql/lib/ext/Microsoft.ApplicationBlocks.Data.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/csharp-all
-      extensible: extSinkModel
+      extensible: sinkModel
     data:
       - ["Microsoft.ApplicationBlocks.Data", "SqlHelper", False, "ExecuteDataset", "(System.Data.SqlClient.SqlConnection,System.Data.CommandType,System.String)", "", "Argument[2]", "sql", "manual"]
       - ["Microsoft.ApplicationBlocks.Data", "SqlHelper", False, "ExecuteDataset", "(System.Data.SqlClient.SqlConnection,System.Data.CommandType,System.String,System.Data.SqlClient.SqlParameter[])", "", "Argument[2]", "sql", "manual"]
diff --git a/csharp/ql/lib/ext/Microsoft.EntityFrameworkCore.model.yml b/csharp/ql/lib/ext/Microsoft.EntityFrameworkCore.model.yml
index 51ae12fe6fa..3928adf0624 100644
--- a/csharp/ql/lib/ext/Microsoft.EntityFrameworkCore.model.yml
+++ b/csharp/ql/lib/ext/Microsoft.EntityFrameworkCore.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/csharp-all
-      extensible: extSinkModel
+      extensible: sinkModel
     data:
       - ["Microsoft.EntityFrameworkCore", "RelationalDatabaseFacadeExtensions", False, "ExecuteSqlRaw", "(Microsoft.EntityFrameworkCore.Infrastructure.DatabaseFacade,System.String,System.Collections.Generic.IEnumerable<System.Object>)", "", "Argument[1]", "sql", "manual"]
       - ["Microsoft.EntityFrameworkCore", "RelationalDatabaseFacadeExtensions", False, "ExecuteSqlRaw", "(Microsoft.EntityFrameworkCore.Infrastructure.DatabaseFacade,System.String,System.Object[])", "", "Argument[1]", "sql", "manual"]
diff --git a/csharp/ql/lib/ext/Microsoft.Extensions.Primitives.model.yml b/csharp/ql/lib/ext/Microsoft.Extensions.Primitives.model.yml
index a6d867fae01..07e50792787 100644
--- a/csharp/ql/lib/ext/Microsoft.Extensions.Primitives.model.yml
+++ b/csharp/ql/lib/ext/Microsoft.Extensions.Primitives.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/csharp-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       - ["Microsoft.Extensions.Primitives", "StringValues", False, "Add", "(System.String)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
       - ["Microsoft.Extensions.Primitives", "StringValues", False, "Add", "(System.String)", "", "Argument[this]", "ReturnValue", "taint", "manual"]
diff --git a/csharp/ql/lib/ext/Microsoft.VisualBasic.model.yml b/csharp/ql/lib/ext/Microsoft.VisualBasic.model.yml
index 3546e3092b3..708f103fdfd 100644
--- a/csharp/ql/lib/ext/Microsoft.VisualBasic.model.yml
+++ b/csharp/ql/lib/ext/Microsoft.VisualBasic.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/csharp-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       - ["Microsoft.VisualBasic", "Collection", False, "Clear", "()", "", "Argument[this].WithoutElement", "Argument[this]", "value", "manual"]
       - ["Microsoft.VisualBasic", "Collection", False, "GetEnumerator", "()", "", "Argument[this].Element", "ReturnValue.Property[System.Collections.IEnumerator.Current]", "value", "manual"]
diff --git a/csharp/ql/lib/ext/MySql.Data.MySqlClient.model.yml b/csharp/ql/lib/ext/MySql.Data.MySqlClient.model.yml
index 7f504e87ace..70d849e122a 100644
--- a/csharp/ql/lib/ext/MySql.Data.MySqlClient.model.yml
+++ b/csharp/ql/lib/ext/MySql.Data.MySqlClient.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/csharp-all
-      extensible: extSinkModel
+      extensible: sinkModel
     data:
       - ["MySql.Data.MySqlClient", "MySqlHelper", False, "ExecuteDataRow", "(System.String,System.String,MySql.Data.MySqlClient.MySqlParameter[])", "", "Argument[1]", "sql", "manual"]
       - ["MySql.Data.MySqlClient", "MySqlHelper", False, "ExecuteDataRowAsync", "(System.String,System.String,MySql.Data.MySqlClient.MySqlParameter[])", "", "Argument[1]", "sql", "manual"]
diff --git a/csharp/ql/lib/ext/Newtonsoft.Json.Linq.model.yml b/csharp/ql/lib/ext/Newtonsoft.Json.Linq.model.yml
index adeafdce6a3..ae26fd24c43 100644
--- a/csharp/ql/lib/ext/Newtonsoft.Json.Linq.model.yml
+++ b/csharp/ql/lib/ext/Newtonsoft.Json.Linq.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/csharp-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       - ["Newtonsoft.Json.Linq", "JArray", False, "get_Item", "(System.Object)", "", "Argument[this].Element", "ReturnValue", "value", "manual"]
       - ["Newtonsoft.Json.Linq", "JArray", False, "set_Item", "(System.Object,Newtonsoft.Json.Linq.JToken)", "", "Argument[1]", "Argument[this].Element", "value", "manual"]
diff --git a/csharp/ql/lib/ext/Newtonsoft.Json.model.yml b/csharp/ql/lib/ext/Newtonsoft.Json.model.yml
index 8ac9b9c3383..ce7783b5205 100644
--- a/csharp/ql/lib/ext/Newtonsoft.Json.model.yml
+++ b/csharp/ql/lib/ext/Newtonsoft.Json.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/csharp-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       - ["Newtonsoft.Json", "JsonConvert", False, "DeserializeAnonymousType<>", "(System.String,T)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
       - ["Newtonsoft.Json", "JsonConvert", False, "DeserializeAnonymousType<>", "(System.String,T,Newtonsoft.Json.JsonSerializerSettings)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
diff --git a/csharp/ql/lib/ext/ServiceStack.OrmLite.model.yml b/csharp/ql/lib/ext/ServiceStack.OrmLite.model.yml
index ee6d27168c4..ea7634bc244 100644
--- a/csharp/ql/lib/ext/ServiceStack.OrmLite.model.yml
+++ b/csharp/ql/lib/ext/ServiceStack.OrmLite.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/csharp-all
-      extensible: extSinkModel
+      extensible: sinkModel
     data:
       - ["ServiceStack.OrmLite", "IUntypedSqlExpression", True, "UnsafeAnd", "(System.String,System.Object[])", "", "Argument[0]", "sql", "manual"]
       - ["ServiceStack.OrmLite", "IUntypedSqlExpression", True, "UnsafeFrom", "(System.String)", "", "Argument[0]", "sql", "manual"]
diff --git a/csharp/ql/lib/ext/ServiceStack.Redis.model.yml b/csharp/ql/lib/ext/ServiceStack.Redis.model.yml
index a48f736d20a..46415828318 100644
--- a/csharp/ql/lib/ext/ServiceStack.Redis.model.yml
+++ b/csharp/ql/lib/ext/ServiceStack.Redis.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/csharp-all
-      extensible: extSinkModel
+      extensible: sinkModel
     data:
       - ["ServiceStack.Redis", "IRedisClient", True, "Custom", "(System.Object[])", "", "Argument[0]", "code", "manual"]
       - ["ServiceStack.Redis", "IRedisClient", True, "ExecCachedLua", "(System.String,System.Func<System.String,T>)", "", "Argument[0]", "code", "manual"]
diff --git a/csharp/ql/lib/ext/ServiceStack.model.yml b/csharp/ql/lib/ext/ServiceStack.model.yml
index 814e97f7792..988c7f3b8f9 100644
--- a/csharp/ql/lib/ext/ServiceStack.model.yml
+++ b/csharp/ql/lib/ext/ServiceStack.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/csharp-all
-      extensible: extSinkModel
+      extensible: sinkModel
     data:
       - ["ServiceStack", "IOneWayClient", True, "SendAllOneWay", "(System.Collections.Generic.IEnumerable<System.Object>)", "", "Argument[1].Element", "remote", "manual"]
       - ["ServiceStack", "IOneWayClient", True, "SendOneWay", "(System.Object)", "", "Argument[0]", "remote", "manual"]
@@ -80,7 +80,7 @@ extensions:
       - ["ServiceStack", "ServiceClientBase", True, "Put", "(System.Object)", "", "Argument[0]", "remote", "manual"]
   - addsTo:
       pack: codeql/csharp-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       - ["ServiceStack", "HttpResult", False, "HttpResult", "(System.Byte[],System.String)", "", "Argument[0]", "Argument[this]", "taint", "manual"]
       - ["ServiceStack", "HttpResult", False, "HttpResult", "(System.IO.Stream,System.String)", "", "Argument[0]", "Argument[this]", "taint", "manual"]
diff --git a/csharp/ql/lib/ext/System.CodeDom.model.yml b/csharp/ql/lib/ext/System.CodeDom.model.yml
index a078b085a33..281812fc6bc 100644
--- a/csharp/ql/lib/ext/System.CodeDom.model.yml
+++ b/csharp/ql/lib/ext/System.CodeDom.model.yml
@@ -1,6 +1,6 @@
 extensions:
   - addsTo:
       pack: codeql/csharp-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       - ["System.CodeDom", "CodeNamespaceImportCollection", False, "Clear", "()", "", "Argument[this].WithoutElement", "Argument[this]", "value", "manual"]
diff --git a/csharp/ql/lib/ext/System.Collections.Concurrent.model.yml b/csharp/ql/lib/ext/System.Collections.Concurrent.model.yml
index d009ec9d122..1de81de635c 100644
--- a/csharp/ql/lib/ext/System.Collections.Concurrent.model.yml
+++ b/csharp/ql/lib/ext/System.Collections.Concurrent.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/csharp-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       - ["System.Collections.Concurrent", "BlockingCollection<>", False, "Add", "(T)", "", "Argument[0]", "Argument[this].Element", "value", "manual"]
       - ["System.Collections.Concurrent", "BlockingCollection<>", False, "CopyTo", "(T[],System.Int32)", "", "Argument[this].Element", "Argument[0].Element", "value", "manual"]
diff --git a/csharp/ql/lib/ext/System.Collections.Generic.model.yml b/csharp/ql/lib/ext/System.Collections.Generic.model.yml
index 5f87d13015a..3029690b03f 100644
--- a/csharp/ql/lib/ext/System.Collections.Generic.model.yml
+++ b/csharp/ql/lib/ext/System.Collections.Generic.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/csharp-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       - ["System.Collections.Generic", "Dictionary<,>", False, "Add", "(System.Collections.Generic.KeyValuePair<TKey,TValue>)", "", "Argument[0].Property[System.Collections.Generic.KeyValuePair<,>.Key]", "Argument[this].Element.Property[System.Collections.Generic.KeyValuePair<,>.Key]", "value", "manual"]
       - ["System.Collections.Generic", "Dictionary<,>", False, "Add", "(System.Collections.Generic.KeyValuePair<TKey,TValue>)", "", "Argument[0].Property[System.Collections.Generic.KeyValuePair<,>.Value]", "Argument[this].Element.Property[System.Collections.Generic.KeyValuePair<,>.Value]", "value", "manual"]
diff --git a/csharp/ql/lib/ext/System.Collections.Immutable.model.yml b/csharp/ql/lib/ext/System.Collections.Immutable.model.yml
index 5bafea13557..b2bd1b6a774 100644
--- a/csharp/ql/lib/ext/System.Collections.Immutable.model.yml
+++ b/csharp/ql/lib/ext/System.Collections.Immutable.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/csharp-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       - ["System.Collections.Immutable", "IImmutableDictionary<,>", True, "AddRange", "(System.Collections.Generic.IEnumerable<System.Collections.Generic.KeyValuePair<TKey,TValue>>)", "", "Argument[0].Element", "Argument[this].Element", "value", "manual"]
       - ["System.Collections.Immutable", "IImmutableDictionary<,>", True, "Clear", "()", "", "Argument[this].WithoutElement", "ReturnValue", "value", "manual"]
diff --git a/csharp/ql/lib/ext/System.Collections.ObjectModel.model.yml b/csharp/ql/lib/ext/System.Collections.ObjectModel.model.yml
index 93b88af59bf..b504b034830 100644
--- a/csharp/ql/lib/ext/System.Collections.ObjectModel.model.yml
+++ b/csharp/ql/lib/ext/System.Collections.ObjectModel.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/csharp-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       - ["System.Collections.ObjectModel", "KeyedCollection<,>", False, "get_Item", "(TKey)", "", "Argument[this].Element", "ReturnValue", "value", "manual"]
       - ["System.Collections.ObjectModel", "ReadOnlyCollection<>", False, "get_Item", "(System.Int32)", "", "Argument[this].Element", "ReturnValue", "value", "manual"]
diff --git a/csharp/ql/lib/ext/System.Collections.Specialized.model.yml b/csharp/ql/lib/ext/System.Collections.Specialized.model.yml
index 00a09505fca..8456af24f14 100644
--- a/csharp/ql/lib/ext/System.Collections.Specialized.model.yml
+++ b/csharp/ql/lib/ext/System.Collections.Specialized.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/csharp-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       - ["System.Collections.Specialized", "IOrderedDictionary", True, "get_Item", "(System.Int32)", "", "Argument[this].Element.Property[System.Collections.Generic.KeyValuePair<,>.Value]", "ReturnValue", "value", "manual"]
       - ["System.Collections.Specialized", "IOrderedDictionary", True, "set_Item", "(System.Int32,System.Object)", "", "Argument[0]", "Argument[this].Element.Property[System.Collections.Generic.KeyValuePair<,>.Key]", "value", "manual"]
diff --git a/csharp/ql/lib/ext/System.Collections.model.yml b/csharp/ql/lib/ext/System.Collections.model.yml
index 8a364ee5357..9aa2c2489c9 100644
--- a/csharp/ql/lib/ext/System.Collections.model.yml
+++ b/csharp/ql/lib/ext/System.Collections.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/csharp-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       - ["System.Collections", "ArrayList", False, "AddRange", "(System.Collections.ICollection)", "", "Argument[0].Element", "Argument[this].Element", "value", "manual"]
       - ["System.Collections", "ArrayList", False, "Clone", "()", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
diff --git a/csharp/ql/lib/ext/System.ComponentModel.Design.model.yml b/csharp/ql/lib/ext/System.ComponentModel.Design.model.yml
index 38a6cd47520..465a7595f60 100644
--- a/csharp/ql/lib/ext/System.ComponentModel.Design.model.yml
+++ b/csharp/ql/lib/ext/System.ComponentModel.Design.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/csharp-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       - ["System.ComponentModel.Design", "DesignerCollection", False, "GetEnumerator", "()", "", "Argument[this].Element", "ReturnValue.Property[System.Collections.IEnumerator.Current]", "value", "manual"]
       - ["System.ComponentModel.Design", "DesignerOptionService+DesignerOptionCollection", False, "get_Item", "(System.Int32)", "", "Argument[this].Element", "ReturnValue", "value", "manual"]
diff --git a/csharp/ql/lib/ext/System.ComponentModel.model.yml b/csharp/ql/lib/ext/System.ComponentModel.model.yml
index b20eaa0a871..cdb5ee29993 100644
--- a/csharp/ql/lib/ext/System.ComponentModel.model.yml
+++ b/csharp/ql/lib/ext/System.ComponentModel.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/csharp-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       - ["System.ComponentModel", "AttributeCollection", False, "GetEnumerator", "()", "", "Argument[this].Element", "ReturnValue.Property[System.Collections.IEnumerator.Current]", "value", "manual"]
       - ["System.ComponentModel", "ComponentCollection", False, "CopyTo", "(System.ComponentModel.IComponent[],System.Int32)", "", "Argument[this].Element", "Argument[0].Element", "value", "manual"]
diff --git a/csharp/ql/lib/ext/System.Configuration.Provider.model.yml b/csharp/ql/lib/ext/System.Configuration.Provider.model.yml
index 5c5e60f2f88..b532f8cd95a 100644
--- a/csharp/ql/lib/ext/System.Configuration.Provider.model.yml
+++ b/csharp/ql/lib/ext/System.Configuration.Provider.model.yml
@@ -1,6 +1,6 @@
 extensions:
   - addsTo:
       pack: codeql/csharp-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       - ["System.Configuration.Provider", "ProviderCollection", False, "Clear", "()", "", "Argument[this].WithoutElement", "Argument[this]", "value", "manual"]
diff --git a/csharp/ql/lib/ext/System.Configuration.model.yml b/csharp/ql/lib/ext/System.Configuration.model.yml
index 457642ab238..cf367cdcaa8 100644
--- a/csharp/ql/lib/ext/System.Configuration.model.yml
+++ b/csharp/ql/lib/ext/System.Configuration.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/csharp-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       - ["System.Configuration", "CommaDelimitedStringCollection", False, "Clear", "()", "", "Argument[this].WithoutElement", "Argument[this]", "value", "manual"]
       - ["System.Configuration", "ConfigurationLockCollection", False, "Clear", "()", "", "Argument[this].WithoutElement", "Argument[this]", "value", "manual"]
diff --git a/csharp/ql/lib/ext/System.Data.Common.model.yml b/csharp/ql/lib/ext/System.Data.Common.model.yml
index f85c4aa6712..bc3864d2813 100644
--- a/csharp/ql/lib/ext/System.Data.Common.model.yml
+++ b/csharp/ql/lib/ext/System.Data.Common.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/csharp-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       - ["System.Data.Common", "DataColumnMappingCollection", False, "AddRange", "(System.Array)", "", "Argument[0].Element", "Argument[this].Element", "value", "manual"]
       - ["System.Data.Common", "DataColumnMappingCollection", False, "AddRange", "(System.Data.Common.DataColumnMapping[])", "", "Argument[0].Element", "Argument[this].Element", "value", "manual"]
diff --git a/csharp/ql/lib/ext/System.Data.Entity.model.yml b/csharp/ql/lib/ext/System.Data.Entity.model.yml
index 9df471d3489..36eccd9b38d 100644
--- a/csharp/ql/lib/ext/System.Data.Entity.model.yml
+++ b/csharp/ql/lib/ext/System.Data.Entity.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/csharp-all
-      extensible: extSinkModel
+      extensible: sinkModel
     data:
       - ["System.Data.Entity", "Database", False, "ExecuteSqlCommand", "(System.Data.Entity.TransactionalBehavior,System.String,System.Object[])", "", "Argument[1]", "sql", "manual"]
       - ["System.Data.Entity", "Database", False, "ExecuteSqlCommand", "(System.String,System.Object[])", "", "Argument[0]", "sql", "manual"]
diff --git a/csharp/ql/lib/ext/System.Data.EntityClient.model.yml b/csharp/ql/lib/ext/System.Data.EntityClient.model.yml
index 692c35d352a..16a24580647 100644
--- a/csharp/ql/lib/ext/System.Data.EntityClient.model.yml
+++ b/csharp/ql/lib/ext/System.Data.EntityClient.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/csharp-all
-      extensible: extSinkModel
+      extensible: sinkModel
     data:
       - ["System.Data.EntityClient", "EntityCommand", False, "EntityCommand", "(System.String)", "", "Argument[0]", "sql", "manual"]
       - ["System.Data.EntityClient", "EntityCommand", False, "EntityCommand", "(System.String,System.Data.EntityClient.EntityConnection)", "", "Argument[0]", "sql", "manual"]
diff --git a/csharp/ql/lib/ext/System.Data.Odbc.model.yml b/csharp/ql/lib/ext/System.Data.Odbc.model.yml
index 3bb650739a2..d1f6a24d5fc 100644
--- a/csharp/ql/lib/ext/System.Data.Odbc.model.yml
+++ b/csharp/ql/lib/ext/System.Data.Odbc.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/csharp-all
-      extensible: extSinkModel
+      extensible: sinkModel
     data:
       - ["System.Data.Odbc", "OdbcCommand", False, "OdbcCommand", "(System.String)", "", "Argument[0]", "sql", "manual"]
       - ["System.Data.Odbc", "OdbcCommand", False, "OdbcCommand", "(System.String,System.Data.Odbc.OdbcConnection)", "", "Argument[0]", "sql", "manual"]
diff --git a/csharp/ql/lib/ext/System.Data.OleDb.model.yml b/csharp/ql/lib/ext/System.Data.OleDb.model.yml
index 5acb38217fc..ebe3cc8b157 100644
--- a/csharp/ql/lib/ext/System.Data.OleDb.model.yml
+++ b/csharp/ql/lib/ext/System.Data.OleDb.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/csharp-all
-      extensible: extSinkModel
+      extensible: sinkModel
     data:
       - ["System.Data.OleDb", "OleDbCommand", False, "OleDbCommand", "(System.String)", "", "Argument[0]", "sql", "manual"]
       - ["System.Data.OleDb", "OleDbCommand", False, "OleDbCommand", "(System.String,System.Data.OleDb.OleDbConnection)", "", "Argument[0]", "sql", "manual"]
diff --git a/csharp/ql/lib/ext/System.Data.SQLite.model.yml b/csharp/ql/lib/ext/System.Data.SQLite.model.yml
index cba3abb6d81..d6d1d70e608 100644
--- a/csharp/ql/lib/ext/System.Data.SQLite.model.yml
+++ b/csharp/ql/lib/ext/System.Data.SQLite.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/csharp-all
-      extensible: extSinkModel
+      extensible: sinkModel
     data:
       - ["System.Data.SQLite", "SQLiteCommand", False, "SQLiteCommand", "(System.String)", "", "Argument[0]", "sql", "manual"]
       - ["System.Data.SQLite", "SQLiteCommand", False, "SQLiteCommand", "(System.String,System.Data.SQLite.SQLiteConnection)", "", "Argument[0]", "sql", "manual"]
@@ -12,7 +12,7 @@ extensions:
       - ["System.Data.SQLite", "SQLiteDataAdapter", False, "SQLiteDataAdapter", "(System.String,System.String,System.Boolean)", "", "Argument[0]", "sql", "manual"]
   - addsTo:
       pack: codeql/csharp-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       - ["System.Data.SQLite", "SQLiteCommand", False, "SQLiteCommand", "(System.String)", "", "Argument[0]", "Argument[this]", "taint", "manual"]
       - ["System.Data.SQLite", "SQLiteCommand", False, "SQLiteCommand", "(System.String,System.Data.SQLite.SQLiteConnection)", "", "Argument[0]", "Argument[this]", "taint", "manual"]
diff --git a/csharp/ql/lib/ext/System.Data.SqlClient.model.yml b/csharp/ql/lib/ext/System.Data.SqlClient.model.yml
index 54e0aec4a53..2040e0f9798 100644
--- a/csharp/ql/lib/ext/System.Data.SqlClient.model.yml
+++ b/csharp/ql/lib/ext/System.Data.SqlClient.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/csharp-all
-      extensible: extSinkModel
+      extensible: sinkModel
     data:
       - ["System.Data.SqlClient", "SqlCommand", False, "SqlCommand", "(System.String)", "", "Argument[0]", "sql", "manual"]
       - ["System.Data.SqlClient", "SqlCommand", False, "SqlCommand", "(System.String,System.Data.SqlClient.SqlConnection)", "", "Argument[0]", "sql", "manual"]
@@ -11,7 +11,7 @@ extensions:
       - ["System.Data.SqlClient", "SqlDataAdapter", False, "SqlDataAdapter", "(System.String,System.String)", "", "Argument[0]", "sql", "manual"]
   - addsTo:
       pack: codeql/csharp-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       - ["System.Data.SqlClient", "SqlCommand", False, "SqlCommand", "(System.String)", "", "Argument[0]", "Argument[this]", "taint", "manual"]
       - ["System.Data.SqlClient", "SqlCommand", False, "SqlCommand", "(System.String,System.Data.SqlClient.SqlConnection)", "", "Argument[0]", "Argument[this]", "taint", "manual"]
diff --git a/csharp/ql/lib/ext/System.Data.model.yml b/csharp/ql/lib/ext/System.Data.model.yml
index 158811616f4..26f650c96a5 100644
--- a/csharp/ql/lib/ext/System.Data.model.yml
+++ b/csharp/ql/lib/ext/System.Data.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/csharp-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       - ["System.Data", "ConstraintCollection", False, "Add", "(System.Data.Constraint)", "", "Argument[0]", "Argument[this].Element", "value", "manual"]
       - ["System.Data", "ConstraintCollection", False, "AddRange", "(System.Data.Constraint[])", "", "Argument[0].Element", "Argument[this].Element", "value", "manual"]
diff --git a/csharp/ql/lib/ext/System.Diagnostics.model.yml b/csharp/ql/lib/ext/System.Diagnostics.model.yml
index 7d3a862cd91..7085f740265 100644
--- a/csharp/ql/lib/ext/System.Diagnostics.model.yml
+++ b/csharp/ql/lib/ext/System.Diagnostics.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/csharp-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       - ["System.Diagnostics", "ActivityTagsCollection", False, "ActivityTagsCollection", "(System.Collections.Generic.IEnumerable<System.Collections.Generic.KeyValuePair<System.String,System.Object>>)", "", "Argument[0].Element.Property[System.Collections.Generic.KeyValuePair<,>.Key]", "Argument[this].Element.Property[System.Collections.Generic.KeyValuePair<,>.Key]", "value", "manual"]
       - ["System.Diagnostics", "ActivityTagsCollection", False, "ActivityTagsCollection", "(System.Collections.Generic.IEnumerable<System.Collections.Generic.KeyValuePair<System.String,System.Object>>)", "", "Argument[0].Element.Property[System.Collections.Generic.KeyValuePair<,>.Value]", "Argument[this].Element.Property[System.Collections.Generic.KeyValuePair<,>.Value]", "value", "manual"]
diff --git a/csharp/ql/lib/ext/System.Dynamic.model.yml b/csharp/ql/lib/ext/System.Dynamic.model.yml
index a79b7538213..19e0c6552a9 100644
--- a/csharp/ql/lib/ext/System.Dynamic.model.yml
+++ b/csharp/ql/lib/ext/System.Dynamic.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/csharp-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       - ["System.Dynamic", "ExpandoObject", False, "Add", "(System.Collections.Generic.KeyValuePair<System.String,System.Object>)", "", "Argument[0].Property[System.Collections.Generic.KeyValuePair<,>.Key]", "Argument[this].Element.Property[System.Collections.Generic.KeyValuePair<,>.Key]", "value", "manual"]
       - ["System.Dynamic", "ExpandoObject", False, "Add", "(System.Collections.Generic.KeyValuePair<System.String,System.Object>)", "", "Argument[0].Property[System.Collections.Generic.KeyValuePair<,>.Value]", "Argument[this].Element.Property[System.Collections.Generic.KeyValuePair<,>.Value]", "value", "manual"]
diff --git a/csharp/ql/lib/ext/System.IO.Compression.model.yml b/csharp/ql/lib/ext/System.IO.Compression.model.yml
index 57d93bab865..592b2748a0a 100644
--- a/csharp/ql/lib/ext/System.IO.Compression.model.yml
+++ b/csharp/ql/lib/ext/System.IO.Compression.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/csharp-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       - ["System.IO.Compression", "DeflateStream", False, "DeflateStream", "(System.IO.Stream,System.IO.Compression.CompressionLevel)", "", "Argument[0]", "Argument[this]", "taint", "manual"]
       - ["System.IO.Compression", "DeflateStream", False, "DeflateStream", "(System.IO.Stream,System.IO.Compression.CompressionLevel,System.Boolean)", "", "Argument[0]", "Argument[this]", "taint", "manual"]
diff --git a/csharp/ql/lib/ext/System.IO.model.yml b/csharp/ql/lib/ext/System.IO.model.yml
index c66cd6286b2..49b0818ef5f 100644
--- a/csharp/ql/lib/ext/System.IO.model.yml
+++ b/csharp/ql/lib/ext/System.IO.model.yml
@@ -1,12 +1,12 @@
 extensions:
   - addsTo:
       pack: codeql/csharp-all
-      extensible: extSourceModel
+      extensible: sourceModel
     data:
       - ["System.IO", "FileStream", False, "FileStream", "", "", "Argument[this]", "file", "manual"]
   - addsTo:
       pack: codeql/csharp-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       - ["System.IO", "FileStream", False, "FileStream", "(System.String,System.IO.FileMode)", "", "Argument[0]", "Argument[this]", "taint", "manual"]
       - ["System.IO", "FileStream", False, "FileStream", "(System.String,System.IO.FileMode,System.IO.FileAccess)", "", "Argument[0]", "Argument[this]", "taint", "manual"]
@@ -58,18 +58,18 @@ extensions:
       - ["System.IO", "Stream", False, "WriteAsync", "(System.Byte[],System.Int32,System.Int32)", "", "Argument[0].Element", "Argument[this]", "taint", "manual"]
       - ["System.IO", "Stream", True, "WriteAsync", "(System.Byte[],System.Int32,System.Int32,System.Threading.CancellationToken)", "", "Argument[0].Element", "Argument[this]", "taint", "manual"]
       - ["System.IO", "StreamReader", False, "StreamReader", "(System.IO.Stream)", "", "Argument[0]", "Argument[this]", "taint", "manual"]
-      - ["System.IO", "StreamReader", False, "StreamReader", "(System.String,System.Text.Encoding,System.Boolean,System.IO.FileStreamOptions)", "", "Argument[0]", "Argument[this]", "taint", "manual"]
-      - ["System.IO", "StreamReader", False, "StreamReader", "(System.String,System.Text.Encoding,System.Boolean,System.Int32)", "", "Argument[0]", "Argument[this]", "taint", "manual"]
+      - ["System.IO", "StreamReader", False, "StreamReader", "(System.IO.Stream,System.Boolean)", "", "Argument[0]", "Argument[this]", "taint", "manual"]
+      - ["System.IO", "StreamReader", False, "StreamReader", "(System.IO.Stream,System.Text.Encoding)", "", "Argument[0]", "Argument[this]", "taint", "manual"]
+      - ["System.IO", "StreamReader", False, "StreamReader", "(System.IO.Stream,System.Text.Encoding,System.Boolean)", "", "Argument[0]", "Argument[this]", "taint", "manual"]
       - ["System.IO", "StreamReader", False, "StreamReader", "(System.IO.Stream,System.Text.Encoding,System.Boolean,System.Int32)", "", "Argument[0]", "Argument[this]", "taint", "manual"]
       - ["System.IO", "StreamReader", False, "StreamReader", "(System.IO.Stream,System.Text.Encoding,System.Boolean,System.Int32,System.Boolean)", "", "Argument[0]", "Argument[this]", "taint", "manual"]
-      - ["System.IO", "StreamReader", False, "StreamReader", "(System.IO.Stream,System.Text.Encoding,System.Boolean)", "", "Argument[0]", "Argument[this]", "taint", "manual"]
-      - ["System.IO", "StreamReader", False, "StreamReader", "(System.String,System.Text.Encoding,System.Boolean)", "", "Argument[0]", "Argument[this]", "taint", "manual"]
-      - ["System.IO", "StreamReader", False, "StreamReader", "(System.String,System.IO.FileStreamOptions)", "", "Argument[0]", "Argument[this]", "taint", "manual"]
-      - ["System.IO", "StreamReader", False, "StreamReader", "(System.String,System.Boolean)", "", "Argument[0]", "Argument[this]", "taint", "manual"]
-      - ["System.IO", "StreamReader", False, "StreamReader", "(System.IO.Stream,System.Text.Encoding)", "", "Argument[0]", "Argument[this]", "taint", "manual"]
-      - ["System.IO", "StreamReader", False, "StreamReader", "(System.IO.Stream,System.Boolean)", "", "Argument[0]", "Argument[this]", "taint", "manual"]
       - ["System.IO", "StreamReader", False, "StreamReader", "(System.String)", "", "Argument[0]", "Argument[this]", "taint", "manual"]
+      - ["System.IO", "StreamReader", False, "StreamReader", "(System.String,System.Boolean)", "", "Argument[0]", "Argument[this]", "taint", "manual"]
+      - ["System.IO", "StreamReader", False, "StreamReader", "(System.String,System.IO.FileStreamOptions)", "", "Argument[0]", "Argument[this]", "taint", "manual"]
       - ["System.IO", "StreamReader", False, "StreamReader", "(System.String,System.Text.Encoding)", "", "Argument[0]", "Argument[this]", "taint", "manual"]
+      - ["System.IO", "StreamReader", False, "StreamReader", "(System.String,System.Text.Encoding,System.Boolean)", "", "Argument[0]", "Argument[this]", "taint", "manual"]
+      - ["System.IO", "StreamReader", False, "StreamReader", "(System.String,System.Text.Encoding,System.Boolean,System.IO.FileStreamOptions)", "", "Argument[0]", "Argument[this]", "taint", "manual"]
+      - ["System.IO", "StreamReader", False, "StreamReader", "(System.String,System.Text.Encoding,System.Boolean,System.Int32)", "", "Argument[0]", "Argument[this]", "taint", "manual"]
       - ["System.IO", "StringReader", False, "StringReader", "(System.String)", "", "Argument[0]", "Argument[this]", "taint", "manual"]
       - ["System.IO", "TextReader", True, "Read", "()", "", "Argument[this]", "ReturnValue", "taint", "manual"]
       - ["System.IO", "TextReader", True, "Read", "(System.Char[],System.Int32,System.Int32)", "", "Argument[this]", "ReturnValue", "taint", "manual"]
diff --git a/csharp/ql/lib/ext/System.Linq.model.yml b/csharp/ql/lib/ext/System.Linq.model.yml
index df5fc4d349f..8dd3c81327c 100644
--- a/csharp/ql/lib/ext/System.Linq.model.yml
+++ b/csharp/ql/lib/ext/System.Linq.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/csharp-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       - ["System.Linq", "Enumerable", False, "Aggregate<,,>", "(System.Collections.Generic.IEnumerable<TSource>,TAccumulate,System.Func<TAccumulate,TSource,TAccumulate>,System.Func<TAccumulate,TResult>)", "", "Argument[0].Element", "Argument[2].Parameter[1]", "value", "manual"]
       - ["System.Linq", "Enumerable", False, "Aggregate<,,>", "(System.Collections.Generic.IEnumerable<TSource>,TAccumulate,System.Func<TAccumulate,TSource,TAccumulate>,System.Func<TAccumulate,TResult>)", "", "Argument[1]", "Argument[2].Parameter[0]", "value", "manual"]
diff --git a/csharp/ql/lib/ext/System.Net.Http.Headers.model.yml b/csharp/ql/lib/ext/System.Net.Http.Headers.model.yml
index 6a6a44fb18a..79b6b8cf40c 100644
--- a/csharp/ql/lib/ext/System.Net.Http.Headers.model.yml
+++ b/csharp/ql/lib/ext/System.Net.Http.Headers.model.yml
@@ -1,6 +1,6 @@
 extensions:
   - addsTo:
       pack: codeql/csharp-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       - ["System.Net.Http.Headers", "HttpHeaders", False, "Clear", "()", "", "Argument[this].WithoutElement", "Argument[this]", "value", "manual"]
diff --git a/csharp/ql/lib/ext/System.Net.Http.model.yml b/csharp/ql/lib/ext/System.Net.Http.model.yml
index d0ecdd4fb6c..0eafc30988a 100644
--- a/csharp/ql/lib/ext/System.Net.Http.model.yml
+++ b/csharp/ql/lib/ext/System.Net.Http.model.yml
@@ -1,12 +1,12 @@
 extensions:
   - addsTo:
       pack: codeql/csharp-all
-      extensible: extSinkModel
+      extensible: sinkModel
     data:
       - ["System.Net.Http", "StringContent", False, "StringContent", "", "", "Argument[0]", "xss", "manual"]
   - addsTo:
       pack: codeql/csharp-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       - ["System.Net.Http", "HttpRequestOptions", False, "Add", "(System.Collections.Generic.KeyValuePair<System.String,System.Object>)", "", "Argument[0].Property[System.Collections.Generic.KeyValuePair<,>.Key]", "Argument[this].Element.Property[System.Collections.Generic.KeyValuePair<,>.Key]", "value", "manual"]
       - ["System.Net.Http", "HttpRequestOptions", False, "Add", "(System.Collections.Generic.KeyValuePair<System.String,System.Object>)", "", "Argument[0].Property[System.Collections.Generic.KeyValuePair<,>.Value]", "Argument[this].Element.Property[System.Collections.Generic.KeyValuePair<,>.Value]", "value", "manual"]
diff --git a/csharp/ql/lib/ext/System.Net.Mail.model.yml b/csharp/ql/lib/ext/System.Net.Mail.model.yml
index 92cf36da3b0..5694b634560 100644
--- a/csharp/ql/lib/ext/System.Net.Mail.model.yml
+++ b/csharp/ql/lib/ext/System.Net.Mail.model.yml
@@ -1,6 +1,6 @@
 extensions:
   - addsTo:
       pack: codeql/csharp-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       - ["System.Net.Mail", "MailAddressCollection", False, "Add", "(System.String)", "", "Argument[0]", "Argument[this].Element", "value", "manual"]
diff --git a/csharp/ql/lib/ext/System.Net.Sockets.model.yml b/csharp/ql/lib/ext/System.Net.Sockets.model.yml
new file mode 100644
index 00000000000..950a818e2d8
--- /dev/null
+++ b/csharp/ql/lib/ext/System.Net.Sockets.model.yml
@@ -0,0 +1,9 @@
+extensions:
+  - addsTo:
+      pack: codeql/csharp-all
+      extensible: sourceModel
+    data:
+      - ["System.Net.Sockets", "TcpClient", False, "GetStream", "", "", "ReturnValue", "remote", "manual"]
+      - ["System.Net.Sockets", "UpdClient", False, "EndReceive", "", "", "ReturnValue", "remote", "manual"]
+      - ["System.Net.Sockets", "UpdClient", False, "Receive", "", "", "ReturnValue", "remote", "manual"]
+      - ["System.Net.Sockets", "UpdClient", False, "ReceiveAsync", "", "", "ReturnValue", "remote", "manual"]
diff --git a/csharp/ql/lib/ext/System.Net.model.yml b/csharp/ql/lib/ext/System.Net.model.yml
index f59feb7c3cd..8e225805c93 100644
--- a/csharp/ql/lib/ext/System.Net.model.yml
+++ b/csharp/ql/lib/ext/System.Net.model.yml
@@ -1,15 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/csharp-all
-      extensible: extSourceModel
-    data:
-      - ["System.Net.Sockets", "TcpClient", False, "GetStream",    "", "", "ReturnValue", "remote", "manual"]
-      - ["System.Net.Sockets", "UpdClient", False, "EndReceive",   "", "", "ReturnValue", "remote", "manual"]
-      - ["System.Net.Sockets", "UpdClient", False, "Receive",      "", "", "ReturnValue", "remote", "manual"]
-      - ["System.Net.Sockets", "UpdClient", False, "ReceiveAsync", "", "", "ReturnValue", "remote", "manual"]
-  - addsTo:
-      pack: codeql/csharp-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       - ["System.Net", "Cookie", False, "get_Value", "()", "", "Argument[this]", "ReturnValue", "taint", "manual"]
       - ["System.Net", "CookieCollection", False, "Add", "(System.Net.CookieCollection)", "", "Argument[0]", "Argument[this].Element", "value", "manual"]
diff --git a/csharp/ql/lib/ext/System.Runtime.CompilerServices.model.yml b/csharp/ql/lib/ext/System.Runtime.CompilerServices.model.yml
index 6ccf3138f02..bd28d9168fd 100644
--- a/csharp/ql/lib/ext/System.Runtime.CompilerServices.model.yml
+++ b/csharp/ql/lib/ext/System.Runtime.CompilerServices.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/csharp-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       - ["System.Runtime.CompilerServices", "ConditionalWeakTable<,>", False, "Clear", "()", "", "Argument[this].WithoutElement", "Argument[this]", "value", "manual"]
       - ["System.Runtime.CompilerServices", "ConfiguredTaskAwaitable<>", False, "GetAwaiter", "()", "", "Argument[this].SyntheticField[m_configuredTaskAwaiter]", "ReturnValue", "value", "manual"]
diff --git a/csharp/ql/lib/ext/System.Security.Cryptography.X509Certificates.model.yml b/csharp/ql/lib/ext/System.Security.Cryptography.X509Certificates.model.yml
index 04c27e61279..d15a5b94713 100644
--- a/csharp/ql/lib/ext/System.Security.Cryptography.X509Certificates.model.yml
+++ b/csharp/ql/lib/ext/System.Security.Cryptography.X509Certificates.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/csharp-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       - ["System.Security.Cryptography.X509Certificates", "X509Certificate2Collection", False, "Add", "(System.Security.Cryptography.X509Certificates.X509Certificate2)", "", "Argument[0]", "Argument[this].Element", "value", "manual"]
       - ["System.Security.Cryptography.X509Certificates", "X509Certificate2Collection", False, "AddRange", "(System.Security.Cryptography.X509Certificates.X509Certificate2Collection)", "", "Argument[0].Element", "Argument[this].Element", "value", "manual"]
diff --git a/csharp/ql/lib/ext/System.Security.Cryptography.model.yml b/csharp/ql/lib/ext/System.Security.Cryptography.model.yml
index 99027d1559b..1a3392074cf 100644
--- a/csharp/ql/lib/ext/System.Security.Cryptography.model.yml
+++ b/csharp/ql/lib/ext/System.Security.Cryptography.model.yml
@@ -1,14 +1,14 @@
 extensions:
   - addsTo:
       pack: codeql/csharp-all
-      extensible: extSinkModel
+      extensible: sinkModel
     data:
       - ["System.Security.Cryptography", "SymmetricAlgorithm", True, "CreateDecryptor", "(System.Byte[],System.Byte[])", "", "Argument[0]", "encryption-decryptor", "manual"]
       - ["System.Security.Cryptography", "SymmetricAlgorithm", True, "CreateEncryptor", "(System.Byte[],System.Byte[])", "", "Argument[0]", "encryption-encryptor", "manual"]
       - ["System.Security.Cryptography", "SymmetricAlgorithm", True, "set_Key", "(System.Byte[])", "", "Argument[0]", "encryption-keyprop", "manual"]
   - addsTo:
       pack: codeql/csharp-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       - ["System.Security.Cryptography", "AsnEncodedDataCollection", False, "Add", "(System.Security.Cryptography.AsnEncodedData)", "", "Argument[0]", "Argument[this].Element", "value", "manual"]
       - ["System.Security.Cryptography", "AsnEncodedDataCollection", False, "CopyTo", "(System.Security.Cryptography.AsnEncodedData[],System.Int32)", "", "Argument[this].Element", "Argument[0].Element", "value", "manual"]
diff --git a/csharp/ql/lib/ext/System.Security.Permissions.model.yml b/csharp/ql/lib/ext/System.Security.Permissions.model.yml
index 742901782b7..d5b9d6436db 100644
--- a/csharp/ql/lib/ext/System.Security.Permissions.model.yml
+++ b/csharp/ql/lib/ext/System.Security.Permissions.model.yml
@@ -1,6 +1,6 @@
 extensions:
   - addsTo:
       pack: codeql/csharp-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       - ["System.Security.Permissions", "KeyContainerPermissionAccessEntryCollection", False, "Clear", "()", "", "Argument[this].WithoutElement", "Argument[this]", "value", "manual"]
diff --git a/csharp/ql/lib/ext/System.Security.Policy.model.yml b/csharp/ql/lib/ext/System.Security.Policy.model.yml
index 4d93d0269a3..751aab19877 100644
--- a/csharp/ql/lib/ext/System.Security.Policy.model.yml
+++ b/csharp/ql/lib/ext/System.Security.Policy.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/csharp-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       - ["System.Security.Policy", "ApplicationTrustCollection", False, "Clear", "()", "", "Argument[this].WithoutElement", "Argument[this]", "value", "manual"]
       - ["System.Security.Policy", "Evidence", False, "Clear", "()", "", "Argument[this].WithoutElement", "Argument[this]", "value", "manual"]
diff --git a/csharp/ql/lib/ext/System.Text.RegularExpressions.model.yml b/csharp/ql/lib/ext/System.Text.RegularExpressions.model.yml
index 131bed81625..e3890031f9e 100644
--- a/csharp/ql/lib/ext/System.Text.RegularExpressions.model.yml
+++ b/csharp/ql/lib/ext/System.Text.RegularExpressions.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/csharp-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       - ["System.Text.RegularExpressions", "CaptureCollection", False, "get_Item", "(System.Int32)", "", "Argument[this].Element", "ReturnValue", "value", "manual"]
       - ["System.Text.RegularExpressions", "GroupCollection", False, "get_Item", "(System.Int32)", "", "Argument[this].Element", "ReturnValue", "value", "manual"]
diff --git a/csharp/ql/lib/ext/System.Text.model.yml b/csharp/ql/lib/ext/System.Text.model.yml
index 3aab1e14484..f21a34132bd 100644
--- a/csharp/ql/lib/ext/System.Text.model.yml
+++ b/csharp/ql/lib/ext/System.Text.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/csharp-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       - ["System.Text", "Encoding", True, "GetBytes", "(System.Char*,System.Int32,System.Byte*,System.Int32)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
       - ["System.Text", "Encoding", True, "GetBytes", "(System.Char[])", "", "Argument[0].Element", "ReturnValue", "taint", "manual"]
diff --git a/csharp/ql/lib/ext/System.Threading.Tasks.model.yml b/csharp/ql/lib/ext/System.Threading.Tasks.model.yml
index 73fc8d1c149..efdd211ea21 100644
--- a/csharp/ql/lib/ext/System.Threading.Tasks.model.yml
+++ b/csharp/ql/lib/ext/System.Threading.Tasks.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/csharp-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       - ["System.Threading.Tasks", "Task", False, "ContinueWith", "(System.Action<System.Threading.Tasks.Task,System.Object>,System.Object)", "", "Argument[1]", "Argument[0].Parameter[1]", "value", "manual"]
       - ["System.Threading.Tasks", "Task", False, "ContinueWith", "(System.Action<System.Threading.Tasks.Task,System.Object>,System.Object,System.Threading.CancellationToken)", "", "Argument[1]", "Argument[0].Parameter[1]", "value", "manual"]
diff --git a/csharp/ql/lib/ext/System.Web.UI.WebControls.model.yml b/csharp/ql/lib/ext/System.Web.UI.WebControls.model.yml
index e73e563f31a..1c50d56d5cc 100644
--- a/csharp/ql/lib/ext/System.Web.UI.WebControls.model.yml
+++ b/csharp/ql/lib/ext/System.Web.UI.WebControls.model.yml
@@ -1,6 +1,6 @@
 extensions:
   - addsTo:
       pack: codeql/csharp-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       - ["System.Web.UI.WebControls", "TextBox", False, "get_Text", "()", "", "Argument[this]", "ReturnValue", "taint", "manual"]
diff --git a/csharp/ql/lib/ext/System.Web.model.yml b/csharp/ql/lib/ext/System.Web.model.yml
index 998070a6c64..5cf065ec6dd 100644
--- a/csharp/ql/lib/ext/System.Web.model.yml
+++ b/csharp/ql/lib/ext/System.Web.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/csharp-all
-      extensible: extSinkModel
+      extensible: sinkModel
     data:
       - ["System.Web", "HttpResponse", False, "BinaryWrite", "", "", "Argument[0]", "html", "manual"]
       - ["System.Web", "HttpResponse", False, "TransmitFile", "", "", "Argument[0]", "html", "manual"]
@@ -9,7 +9,7 @@ extensions:
       - ["System.Web", "HttpResponse", False, "WriteFile", "", "", "Argument[0]", "html", "manual"]
   - addsTo:
       pack: codeql/csharp-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       - ["System.Web", "HttpCookie", False, "get_Value", "()", "", "Argument[this]", "ReturnValue", "taint", "manual"]
       - ["System.Web", "HttpCookie", False, "get_Values", "()", "", "Argument[this]", "ReturnValue", "taint", "manual"]
diff --git a/csharp/ql/lib/ext/System.Xml.Schema.model.yml b/csharp/ql/lib/ext/System.Xml.Schema.model.yml
index 6c2c62f8b35..6666d4bf24c 100644
--- a/csharp/ql/lib/ext/System.Xml.Schema.model.yml
+++ b/csharp/ql/lib/ext/System.Xml.Schema.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/csharp-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       - ["System.Xml.Schema", "XmlSchemaCollection", False, "Add", "(System.Xml.Schema.XmlSchema)", "", "Argument[0]", "Argument[this].Element", "value", "manual"]
       - ["System.Xml.Schema", "XmlSchemaCollection", False, "Add", "(System.Xml.Schema.XmlSchemaCollection)", "", "Argument[0]", "Argument[this].Element", "value", "manual"]
diff --git a/csharp/ql/lib/ext/System.Xml.Serialization.model.yml b/csharp/ql/lib/ext/System.Xml.Serialization.model.yml
index 7dfad76ea35..c506aa4c665 100644
--- a/csharp/ql/lib/ext/System.Xml.Serialization.model.yml
+++ b/csharp/ql/lib/ext/System.Xml.Serialization.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/csharp-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       - ["System.Xml.Serialization", "XmlAnyElementAttributes", False, "Add", "(System.Xml.Serialization.XmlAnyElementAttribute)", "", "Argument[0]", "Argument[this].Element", "value", "manual"]
       - ["System.Xml.Serialization", "XmlAnyElementAttributes", False, "CopyTo", "(System.Xml.Serialization.XmlAnyElementAttribute[],System.Int32)", "", "Argument[this].Element", "Argument[0].Element", "value", "manual"]
diff --git a/csharp/ql/lib/ext/System.Xml.model.yml b/csharp/ql/lib/ext/System.Xml.model.yml
index c2c6ab13517..55825304a14 100644
--- a/csharp/ql/lib/ext/System.Xml.model.yml
+++ b/csharp/ql/lib/ext/System.Xml.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/csharp-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       - ["System.Xml", "XmlAttributeCollection", False, "CopyTo", "(System.Xml.XmlAttribute[],System.Int32)", "", "Argument[this].Element", "Argument[0].Element", "value", "manual"]
       - ["System.Xml", "XmlDocument", False, "Load", "(System.IO.Stream)", "", "Argument[0]", "Argument[this]", "taint", "manual"]
diff --git a/csharp/ql/lib/ext/System.model.yml b/csharp/ql/lib/ext/System.model.yml
index 8693948d3de..b0f74507b87 100644
--- a/csharp/ql/lib/ext/System.model.yml
+++ b/csharp/ql/lib/ext/System.model.yml
@@ -1,14 +1,14 @@
 extensions:
   - addsTo:
       pack: codeql/csharp-all
-      extensible: extSourceModel
+      extensible: sourceModel
     data:
       - ["System", "Console", False, "Read", "", "", "ReturnValue", "local", "manual"]
       - ["System", "Console", False, "ReadKey", "", "", "ReturnValue", "local", "manual"]
       - ["System", "Console", False, "ReadLine", "", "", "ReturnValue", "local", "manual"]
   - addsTo:
       pack: codeql/csharp-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       - ["System", "Array", False, "AsReadOnly<>", "(T[])", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
       - ["System", "Array", False, "Clear", "(System.Array)", "", "Argument[0].WithoutElement", "Argument[0]", "value", "manual"]
diff --git a/csharp/ql/lib/ext/Windows.Security.Cryptography.Core.model.yml b/csharp/ql/lib/ext/Windows.Security.Cryptography.Core.model.yml
index de9953ea8ef..094826380b4 100644
--- a/csharp/ql/lib/ext/Windows.Security.Cryptography.Core.model.yml
+++ b/csharp/ql/lib/ext/Windows.Security.Cryptography.Core.model.yml
@@ -1,6 +1,6 @@
 extensions:
   - addsTo:
       pack: codeql/csharp-all
-      extensible: extSinkModel
+      extensible: sinkModel
     data:
       - ["Windows.Security.Cryptography.Core", "SymmetricKeyAlgorithmProvider", False, "CreateSymmetricKey", "(Windows.Storage.Streams.IBuffer)", "", "Argument[0]", "encryption-symmetrickey", "manual"]
diff --git a/csharp/ql/lib/ext/generated/dotnet_runtime.model.yml b/csharp/ql/lib/ext/generated/dotnet_runtime.model.yml
index 1bf56eecf70..f2c4ea2cb29 100644
--- a/csharp/ql/lib/ext/generated/dotnet_runtime.model.yml
+++ b/csharp/ql/lib/ext/generated/dotnet_runtime.model.yml
@@ -5,7 +5,7 @@ extensions:
 
   - addsTo:
       pack: codeql/csharp-all
-      extensible: extSinkModel
+      extensible: sinkModel
     data:
       - ["System.Data.Odbc", "OdbcDataAdapter", false, "OdbcDataAdapter", "(System.String,System.Data.Odbc.OdbcConnection)", "", "Argument[0]", "sql", "generated"]
       - ["System.Data.Odbc", "OdbcDataAdapter", false, "OdbcDataAdapter", "(System.String,System.String)", "", "Argument[0]", "sql", "generated"]
@@ -39,7 +39,7 @@ extensions:
 
   - addsTo:
       pack: codeql/csharp-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       - ["JsonToItemsTaskFactory", "JsonToItemsTaskFactory+CaseInsensitiveDictionaryConverter", false, "Read", "(System.Text.Json.Utf8JsonReader,System.Type,System.Text.Json.JsonSerializerOptions)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
       - ["JsonToItemsTaskFactory", "JsonToItemsTaskFactory+JsonModelItemConverter", false, "Read", "(System.Text.Json.Utf8JsonReader,System.Type,System.Text.Json.JsonSerializerOptions)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
@@ -10195,7 +10195,7 @@ extensions:
 
   - addsTo:
       pack: codeql/csharp-all
-      extensible: extNeutralModel
+      extensible: neutralModel
     data:
       - ["AssemblyStripper", "AssemblyStripper", "StripAssembly", "(System.String,System.String)", "generated"]
       - ["Generators", "EventSourceGenerator", "Execute", "(Microsoft.CodeAnalysis.GeneratorExecutionContext)", "generated"]

From 9fc1b3ac82d8f9cf4cbbb1369a560a287d1f8a9f Mon Sep 17 00:00:00 2001
From: Michael Nebel <michaelnebel@github.com>
Date: Wed, 14 Dec 2022 13:19:50 +0100
Subject: [PATCH 1356/1420] C#: Rename predicates in tests.

---
 .../dataflow/external-models/ext/test.model.yml           | 8 ++++----
 1 file changed, 4 insertions(+), 4 deletions(-)

diff --git a/csharp/ql/test/library-tests/dataflow/external-models/ext/test.model.yml b/csharp/ql/test/library-tests/dataflow/external-models/ext/test.model.yml
index 5de0644e793..7d2751f4ba1 100644
--- a/csharp/ql/test/library-tests/dataflow/external-models/ext/test.model.yml
+++ b/csharp/ql/test/library-tests/dataflow/external-models/ext/test.model.yml
@@ -2,7 +2,7 @@ extensions:
 
   - addsTo:
       pack: codeql/csharp-all
-      extensible: extSourceModel
+      extensible: sourceModel
     data:
     # "namespace", "type", "overrides", "name", "signature", "ext", "spec", "kind", "provenance",
       - ["My.Qltest", "A", false, "Src1", "()", "", "ReturnValue", "local", "manual"]
@@ -22,7 +22,7 @@ extensions:
 
   - addsTo:
       pack: codeql/csharp-all
-      extensible: extSinkModel
+      extensible: sinkModel
     data:
     # "namespace", "type", "overrides", "name", "signature", "ext", "spec", "kind", "provenance"
       - ["My.Qltest", "B", false, "Sink1", "(System.Object)", "", "Argument[0]", "code", "manual"]
@@ -34,7 +34,7 @@ extensions:
   # Summaries relevant for the ExternalFlow testcase.
   - addsTo:
       pack: codeql/csharp-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
     # "namespace", "type", "overrides", "name", "signature", "ext", "inputspec", "outputspec", "kind", "provenance"
       - ["My.Qltest", "D", false, "StepArgRes", "(System.Object)","", "Argument[0]", "ReturnValue", "taint", "manual"]
@@ -66,7 +66,7 @@ extensions:
   # Summaries relevant for the Steps testcase.
   - addsTo:
       pack: codeql/csharp-all
-      extensible: extSummaryModel
+      extensible: summaryModel
       # "namespace", "type", "overrides", "name", "signature", "ext", "inputspec", "outputspec", "kind", "provenance"
     data:
       - ["My.Qltest", "C", false, "StepArgRes", "(System.Object)", "", "Argument[0]", "ReturnValue", "taint", "manual"]

From b45d079a01e4130ee3a9c18ff61b8ce07e665bd1 Mon Sep 17 00:00:00 2001
From: Michael Nebel <michaelnebel@github.com>
Date: Wed, 14 Dec 2022 13:42:37 +0100
Subject: [PATCH 1357/1420] Java: Move and rename externalflow related
 extensible predicates.

---
 .../code/java/dataflow/ExternalFlow.qll       | 72 +++----------------
 .../java/dataflow/ExternalFlowExtensions.qll  | 61 ++++++++++++++++
 2 files changed, 71 insertions(+), 62 deletions(-)
 create mode 100644 java/ql/lib/semmle/code/java/dataflow/ExternalFlowExtensions.qll

diff --git a/java/ql/lib/semmle/code/java/dataflow/ExternalFlow.qll b/java/ql/lib/semmle/code/java/dataflow/ExternalFlow.qll
index 10084c17c8d..02e0953bbc5 100644
--- a/java/ql/lib/semmle/code/java/dataflow/ExternalFlow.qll
+++ b/java/ql/lib/semmle/code/java/dataflow/ExternalFlow.qll
@@ -78,6 +78,7 @@ private import internal.DataFlowPrivate
 private import internal.FlowSummaryImpl::Private::External
 private import internal.FlowSummaryImplSpecific as FlowSummaryImplSpecific
 private import internal.AccessPathSyntax
+private import ExternalFlowExtensions as Extensions
 private import FlowSummary
 
 /**
@@ -128,33 +129,6 @@ private predicate summaryModelInternal(string row) { any(SummaryModelCsvInternal
 
 private predicate sinkModelInternal(string row) { any(SinkModelCsvInternal s).row(row) }
 
-/**
- * Holds if an experimental source model exists for the given parameters.
- * This is only for experimental queries.
- */
-extensible predicate extExperimentalSourceModel(
-  string package, string type, boolean subtypes, string name, string signature, string ext,
-  string output, string kind, string provenance, string filter
-);
-
-/**
- * Holds if an experimental sink model exists for the given parameters.
- * This is only for experimental queries.
- */
-extensible predicate extExperimentalSinkModel(
-  string package, string type, boolean subtypes, string name, string signature, string ext,
-  string input, string kind, string provenance, string filter
-);
-
-/**
- * Holds if an experimental summary model exists for the given parameters.
- * This is only for experimental queries.
- */
-extensible predicate extExperimentalSummaryModel(
-  string package, string type, boolean subtypes, string name, string signature, string ext,
-  string input, string output, string kind, string provenance, string filter
-);
-
 /**
  * A class for activating additional model rows.
  *
@@ -172,7 +146,7 @@ abstract class ActiveExperimentalModels extends string {
     string package, string type, boolean subtypes, string name, string signature, string ext,
     string output, string kind, string provenance
   ) {
-    extExperimentalSourceModel(package, type, subtypes, name, signature, ext, output, kind,
+    Extensions::experimentalSourceModel(package, type, subtypes, name, signature, ext, output, kind,
       provenance, this)
   }
 
@@ -183,7 +157,7 @@ abstract class ActiveExperimentalModels extends string {
     string package, string type, boolean subtypes, string name, string signature, string ext,
     string output, string kind, string provenance
   ) {
-    extExperimentalSinkModel(package, type, subtypes, name, signature, ext, output, kind,
+    Extensions::experimentalSinkModel(package, type, subtypes, name, signature, ext, output, kind,
       provenance, this)
   }
 
@@ -194,19 +168,11 @@ abstract class ActiveExperimentalModels extends string {
     string package, string type, boolean subtypes, string name, string signature, string ext,
     string input, string output, string kind, string provenance
   ) {
-    extExperimentalSummaryModel(package, type, subtypes, name, signature, ext, input, output, kind,
-      provenance, this)
+    Extensions::experimentalSummaryModel(package, type, subtypes, name, signature, ext, input,
+      output, kind, provenance, this)
   }
 }
 
-/**
- * Holds if a source model exists for the given parameters.
- */
-extensible predicate extSourceModel(
-  string package, string type, boolean subtypes, string name, string signature, string ext,
-  string output, string kind, string provenance
-);
-
 /** Holds if a source model exists for the given parameters. */
 predicate sourceModel(
   string package, string type, boolean subtypes, string name, string signature, string ext,
@@ -226,18 +192,12 @@ predicate sourceModel(
     row.splitAt(";", 8) = provenance
   )
   or
-  extSourceModel(package, type, subtypes, name, signature, ext, output, kind, provenance)
+  Extensions::sourceModel(package, type, subtypes, name, signature, ext, output, kind, provenance)
   or
   any(ActiveExperimentalModels q)
       .sourceModel(package, type, subtypes, name, signature, ext, output, kind, provenance)
 }
 
-/** Holds if a sink model exists for the given parameters. */
-extensible predicate extSinkModel(
-  string package, string type, boolean subtypes, string name, string signature, string ext,
-  string input, string kind, string provenance
-);
-
 /** Holds if a sink model exists for the given parameters. */
 predicate sinkModel(
   string package, string type, boolean subtypes, string name, string signature, string ext,
@@ -257,18 +217,12 @@ predicate sinkModel(
     row.splitAt(";", 8) = provenance
   )
   or
-  extSinkModel(package, type, subtypes, name, signature, ext, input, kind, provenance)
+  Extensions::sinkModel(package, type, subtypes, name, signature, ext, input, kind, provenance)
   or
   any(ActiveExperimentalModels q)
       .sinkModel(package, type, subtypes, name, signature, ext, input, kind, provenance)
 }
 
-/** Holds if a summary model exists for the given parameters. */
-extensible predicate extSummaryModel(
-  string package, string type, boolean subtypes, string name, string signature, string ext,
-  string input, string output, string kind, string provenance
-);
-
 /** Holds if a summary model exists for the given parameters. */
 predicate summaryModel(
   string package, string type, boolean subtypes, string name, string signature, string ext,
@@ -289,21 +243,15 @@ predicate summaryModel(
     row.splitAt(";", 9) = provenance
   )
   or
-  extSummaryModel(package, type, subtypes, name, signature, ext, input, output, kind, provenance)
+  Extensions::summaryModel(package, type, subtypes, name, signature, ext, input, output, kind,
+    provenance)
   or
   any(ActiveExperimentalModels q)
       .summaryModel(package, type, subtypes, name, signature, ext, input, output, kind, provenance)
 }
 
 /** Holds if a neutral model exists indicating there is no flow for the given parameters. */
-extensible predicate extNeutralModel(
-  string package, string type, string name, string signature, string provenance
-);
-
-/** Holds if a neutral model exists indicating there is no flow for the given parameters. */
-predicate neutralModel(string package, string type, string name, string signature, string provenance) {
-  extNeutralModel(package, type, name, signature, provenance)
-}
+predicate neutralModel = Extensions::neutralModel/5;
 
 private predicate relevantPackage(string package) {
   sourceModel(package, _, _, _, _, _, _, _, _) or
diff --git a/java/ql/lib/semmle/code/java/dataflow/ExternalFlowExtensions.qll b/java/ql/lib/semmle/code/java/dataflow/ExternalFlowExtensions.qll
new file mode 100644
index 00000000000..b06dc92c427
--- /dev/null
+++ b/java/ql/lib/semmle/code/java/dataflow/ExternalFlowExtensions.qll
@@ -0,0 +1,61 @@
+/**
+ * This module provides extensible predicates for defining MaD models.
+ */
+
+/**
+ * Holds if a source model exists for the given parameters.
+ */
+extensible predicate sourceModel(
+  string package, string type, boolean subtypes, string name, string signature, string ext,
+  string output, string kind, string provenance
+);
+
+/**
+ * Holds if a sink model exists for the given parameters.
+ */
+extensible predicate sinkModel(
+  string package, string type, boolean subtypes, string name, string signature, string ext,
+  string input, string kind, string provenance
+);
+
+/**
+ * Holds if a summary model exists for the given parameters.
+ */
+extensible predicate summaryModel(
+  string package, string type, boolean subtypes, string name, string signature, string ext,
+  string input, string output, string kind, string provenance
+);
+
+/**
+ * Holds if a neutral model exists indicating there is no flow for the given parameters.
+ */
+extensible predicate neutralModel(
+  string package, string type, string name, string signature, string provenance
+);
+
+/**
+ * Holds if an experimental source model exists for the given parameters.
+ * This is only for experimental queries.
+ */
+extensible predicate experimentalSourceModel(
+  string package, string type, boolean subtypes, string name, string signature, string ext,
+  string output, string kind, string provenance, string filter
+);
+
+/**
+ * Holds if an experimental sink model exists for the given parameters.
+ * This is only for experimental queries.
+ */
+extensible predicate experimentalSinkModel(
+  string package, string type, boolean subtypes, string name, string signature, string ext,
+  string input, string kind, string provenance, string filter
+);
+
+/**
+ * Holds if an experimental summary model exists for the given parameters.
+ * This is only for experimental queries.
+ */
+extensible predicate experimentalSummaryModel(
+  string package, string type, boolean subtypes, string name, string signature, string ext,
+  string input, string output, string kind, string provenance, string filter
+);

From bc02adb40078b63ec3c880062529cea6efb99d34 Mon Sep 17 00:00:00 2001
From: Michael Nebel <michaelnebel@github.com>
Date: Wed, 14 Dec 2022 13:48:31 +0100
Subject: [PATCH 1358/1420] Java: Make the corresponding rename in all the data
 extensions.

---
 .../ext/test.model.yml                        |  2 +-
 .../ext/test.model.yml                        |  6 ++--
 java/ql/lib/ext/android.app.model.yml         |  4 +--
 java/ql/lib/ext/android.content.model.yml     |  6 ++--
 java/ql/lib/ext/android.database.model.yml    |  4 +--
 .../lib/ext/android.database.sqlite.model.yml |  4 +--
 java/ql/lib/ext/android.net.model.yml         |  2 +-
 java/ql/lib/ext/android.os.model.yml          |  4 +--
 .../lib/ext/android.support.v4.app.model.yml  |  2 +-
 java/ql/lib/ext/android.util.model.yml        |  4 +--
 java/ql/lib/ext/android.webkit.model.yml      |  4 +--
 java/ql/lib/ext/android.widget.model.yml      |  4 +--
 java/ql/lib/ext/androidx.core.app.model.yml   |  4 +--
 .../lib/ext/androidx.fragment.app.model.yml   |  2 +-
 .../lib/ext/androidx.slice.builders.model.yml |  2 +-
 java/ql/lib/ext/androidx.slice.model.yml      |  4 +--
 .../ql/lib/ext/cn.hutool.core.codec.model.yml |  2 +-
 .../com.esotericsoftware.kryo.io.model.yml    |  2 +-
 .../com.esotericsoftware.kryo5.io.model.yml   |  2 +-
 .../ext/com.fasterxml.jackson.core.model.yml  |  2 +-
 .../com.fasterxml.jackson.databind.model.yml  |  2 +-
 .../lib/ext/com.google.common.base.model.yml  |  4 +--
 .../lib/ext/com.google.common.cache.model.yml |  2 +-
 .../ext/com.google.common.collect.model.yml   |  2 +-
 .../ext/com.google.common.flogger.model.yml   |  2 +-
 .../ql/lib/ext/com.google.common.io.model.yml |  4 +--
 java/ql/lib/ext/com.hubspot.jinjava.model.yml |  2 +-
 .../ext/com.mitchellbosecke.pebble.model.yml  |  2 +-
 .../com.opensymphony.xwork2.ognl.model.yml    |  2 +-
 .../ext/com.rabbitmq.client.impl.model.yml    |  4 +--
 java/ql/lib/ext/com.rabbitmq.client.model.yml |  4 +--
 .../lib/ext/com.unboundid.ldap.sdk.model.yml  |  2 +-
 java/ql/lib/ext/com.zaxxer.hikari.model.yml   |  2 +-
 java/ql/lib/ext/dummy.model.yml               |  8 +++---
 .../ext/experimental/android.webkit.model.yml |  2 +-
 .../com.auth0.jwt.interfaces.model.yml        |  2 +-
 .../experimental/com.jfinal.core.model.yml    |  2 +-
 java/ql/lib/ext/experimental/dummy.model.yml  |  6 ++--
 ...ndertow.server.handlers.resource.model.yml |  2 +-
 .../jakarta.servlet.http.model.yml            |  2 +-
 .../ql/lib/ext/experimental/java.io.model.yml |  2 +-
 .../lib/ext/experimental/java.lang.model.yml  |  4 +--
 .../ext/experimental/java.nio.file.model.yml  |  2 +-
 .../java.util.concurrent.model.yml            |  2 +-
 .../experimental/javax.servlet.http.model.yml |  4 +--
 ...org.apache.logging.log4j.message.model.yml |  2 +-
 .../org.apache.logging.log4j.model.yml        |  2 +-
 .../org.springframework.core.io.model.yml     |  4 +--
 java/ql/lib/ext/flexjson.model.yml            |  2 +-
 java/ql/lib/ext/freemarker.cache.model.yml    |  2 +-
 java/ql/lib/ext/freemarker.template.model.yml |  2 +-
 .../lib/ext/generated/kotlinstdlib.model.yml  |  6 ++--
 .../generated/org.apache.commons.io.model.yml |  6 ++--
 java/ql/lib/ext/groovy.lang.model.yml         |  2 +-
 java/ql/lib/ext/groovy.util.model.yml         |  2 +-
 .../lib/ext/jakarta.faces.context.model.yml   |  4 +--
 java/ql/lib/ext/jakarta.json.model.yml        |  2 +-
 java/ql/lib/ext/jakarta.json.stream.model.yml |  2 +-
 .../ql/lib/ext/jakarta.ws.rs.client.model.yml |  2 +-
 .../lib/ext/jakarta.ws.rs.container.model.yml |  2 +-
 java/ql/lib/ext/jakarta.ws.rs.core.model.yml  |  4 +--
 java/ql/lib/ext/java.beans.model.yml          |  2 +-
 java/ql/lib/ext/java.io.model.yml             |  4 +--
 java/ql/lib/ext/java.lang.model.yml           |  4 +--
 java/ql/lib/ext/java.net.http.model.yml       |  4 +--
 java/ql/lib/ext/java.net.model.yml            |  6 ++--
 java/ql/lib/ext/java.nio.channels.model.yml   |  2 +-
 java/ql/lib/ext/java.nio.file.model.yml       |  4 +--
 java/ql/lib/ext/java.nio.model.yml            |  2 +-
 java/ql/lib/ext/java.sql.model.yml            |  2 +-
 .../ql/lib/ext/java.util.concurrent.model.yml |  2 +-
 java/ql/lib/ext/java.util.function.model.yml  |  2 +-
 java/ql/lib/ext/java.util.logging.model.yml   |  4 +--
 java/ql/lib/ext/java.util.model.yml           |  2 +-
 java/ql/lib/ext/java.util.regex.model.yml     |  4 +--
 java/ql/lib/ext/java.util.stream.model.yml    |  2 +-
 java/ql/lib/ext/java.util.zip.model.yml       |  2 +-
 java/ql/lib/ext/javax.faces.context.model.yml |  4 +--
 java/ql/lib/ext/javax.jms.model.yml           |  4 +--
 java/ql/lib/ext/javax.json.model.yml          |  2 +-
 java/ql/lib/ext/javax.json.stream.model.yml   |  2 +-
 .../lib/ext/javax.management.remote.model.yml |  2 +-
 .../lib/ext/javax.naming.directory.model.yml  |  2 +-
 java/ql/lib/ext/javax.naming.model.yml        |  2 +-
 java/ql/lib/ext/javax.net.ssl.model.yml       |  2 +-
 java/ql/lib/ext/javax.script.model.yml        |  2 +-
 java/ql/lib/ext/javax.servlet.http.model.yml  |  6 ++--
 java/ql/lib/ext/javax.servlet.model.yml       |  2 +-
 java/ql/lib/ext/javax.validation.model.yml    |  4 +--
 java/ql/lib/ext/javax.ws.rs.client.model.yml  |  2 +-
 .../lib/ext/javax.ws.rs.container.model.yml   |  2 +-
 java/ql/lib/ext/javax.ws.rs.core.model.yml    |  4 +--
 java/ql/lib/ext/javax.xml.transform.model.yml |  2 +-
 .../lib/ext/javax.xml.transform.sax.model.yml |  2 +-
 .../ext/javax.xml.transform.stream.model.yml  |  2 +-
 java/ql/lib/ext/javax.xml.xpath.model.yml     |  2 +-
 java/ql/lib/ext/jodd.json.model.yml           |  2 +-
 java/ql/lib/ext/kotlin.collections.model.yml  |  2 +-
 java/ql/lib/ext/kotlin.jvm.internal.model.yml |  2 +-
 java/ql/lib/ext/net.sf.saxon.s9api.model.yml  |  2 +-
 java/ql/lib/ext/ognl.enhance.model.yml        |  2 +-
 java/ql/lib/ext/ognl.model.yml                |  2 +-
 java/ql/lib/ext/okhttp3.model.yml             |  4 +--
 .../ext/org.apache.commons.codec.model.yml    |  2 +-
 ...g.apache.commons.collections.bag.model.yml |  2 +-
 ...ache.commons.collections.bidimap.model.yml |  2 +-
 ...e.commons.collections.collection.model.yml |  2 +-
 ...he.commons.collections.iterators.model.yml |  2 +-
 ...che.commons.collections.keyvalue.model.yml |  2 +-
 ....apache.commons.collections.list.model.yml |  2 +-
 ...g.apache.commons.collections.map.model.yml |  2 +-
 .../org.apache.commons.collections.model.yml  |  2 +-
 ...che.commons.collections.multimap.model.yml |  2 +-
 ...che.commons.collections.multiset.model.yml |  2 +-
 ...e.commons.collections.properties.model.yml |  2 +-
 ...apache.commons.collections.queue.model.yml |  2 +-
 ...g.apache.commons.collections.set.model.yml |  2 +-
 ...che.commons.collections.splitmap.model.yml |  2 +-
 ....apache.commons.collections.trie.model.yml |  2 +-
 ....apache.commons.collections4.bag.model.yml |  2 +-
 ...che.commons.collections4.bidimap.model.yml |  2 +-
 ....commons.collections4.collection.model.yml |  2 +-
 ...e.commons.collections4.iterators.model.yml |  2 +-
 ...he.commons.collections4.keyvalue.model.yml |  2 +-
 ...apache.commons.collections4.list.model.yml |  2 +-
 ....apache.commons.collections4.map.model.yml |  2 +-
 .../org.apache.commons.collections4.model.yml |  2 +-
 ...he.commons.collections4.multimap.model.yml |  2 +-
 ...he.commons.collections4.multiset.model.yml |  2 +-
 ....commons.collections4.properties.model.yml |  2 +-
 ...pache.commons.collections4.queue.model.yml |  2 +-
 ....apache.commons.collections4.set.model.yml |  2 +-
 ...he.commons.collections4.splitmap.model.yml |  2 +-
 ...apache.commons.collections4.trie.model.yml |  2 +-
 .../lib/ext/org.apache.commons.io.model.yml   |  2 +-
 .../ext/org.apache.commons.jexl2.model.yml    |  2 +-
 .../ext/org.apache.commons.jexl3.model.yml    |  2 +-
 ...org.apache.commons.lang3.builder.model.yml |  2 +-
 .../ext/org.apache.commons.lang3.model.yml    |  4 +--
 ...org.apache.commons.lang3.mutable.model.yml |  2 +-
 .../org.apache.commons.lang3.text.model.yml   |  2 +-
 .../org.apache.commons.lang3.tuple.model.yml  |  2 +-
 .../ext/org.apache.commons.logging.model.yml  |  2 +-
 .../org.apache.commons.ognl.enhance.model.yml |  2 +-
 .../lib/ext/org.apache.commons.ognl.model.yml |  2 +-
 .../org.apache.commons.text.lookup.model.yml  |  2 +-
 .../lib/ext/org.apache.commons.text.model.yml |  2 +-
 ...apache.directory.ldap.client.api.model.yml |  2 +-
 .../org.apache.hc.core5.function.model.yml    |  2 +-
 ...g.apache.hc.core5.http.io.entity.model.yml |  2 +-
 .../ext/org.apache.hc.core5.http.io.model.yml |  2 +-
 ...org.apache.hc.core5.http.message.model.yml |  2 +-
 .../ext/org.apache.hc.core5.http.model.yml    |  4 +--
 .../lib/ext/org.apache.hc.core5.net.model.yml |  2 +-
 .../ext/org.apache.hc.core5.util.model.yml    |  2 +-
 .../org.apache.http.client.methods.model.yml  |  2 +-
 .../lib/ext/org.apache.http.entity.model.yml  |  2 +-
 .../lib/ext/org.apache.http.message.model.yml |  4 +--
 java/ql/lib/ext/org.apache.http.model.yml     |  6 ++--
 .../lib/ext/org.apache.http.params.model.yml  |  2 +-
 .../ext/org.apache.http.protocol.model.yml    |  2 +-
 .../ql/lib/ext/org.apache.http.util.model.yml |  4 +--
 .../lib/ext/org.apache.ibatis.jdbc.model.yml  |  4 +--
 java/ql/lib/ext/org.apache.log4j.model.yml    |  2 +-
 .../ext/org.apache.logging.log4j.model.yml    |  4 +--
 .../lib/ext/org.apache.shiro.codec.model.yml  |  2 +-
 .../lib/ext/org.apache.shiro.jndi.model.yml   |  2 +-
 .../lib/ext/org.apache.velocity.app.model.yml |  2 +-
 .../ext/org.apache.velocity.runtime.model.yml |  2 +-
 ...e.velocity.runtime.resource.util.model.yml |  2 +-
 .../ext/org.codehaus.groovy.control.model.yml |  2 +-
 java/ql/lib/ext/org.dom4j.model.yml           |  2 +-
 java/ql/lib/ext/org.dom4j.tree.model.yml      |  2 +-
 java/ql/lib/ext/org.dom4j.util.model.yml      |  2 +-
 java/ql/lib/ext/org.hibernate.model.yml       |  2 +-
 java/ql/lib/ext/org.jboss.logging.model.yml   |  2 +-
 java/ql/lib/ext/org.jdbi.v3.core.model.yml    |  2 +-
 java/ql/lib/ext/org.jooq.model.yml            |  2 +-
 java/ql/lib/ext/org.json.model.yml            |  2 +-
 java/ql/lib/ext/org.mvel2.compiler.model.yml  |  2 +-
 java/ql/lib/ext/org.mvel2.jsr223.model.yml    |  2 +-
 java/ql/lib/ext/org.mvel2.model.yml           |  2 +-
 java/ql/lib/ext/org.mvel2.templates.model.yml |  2 +-
 java/ql/lib/ext/org.scijava.log.model.yml     |  2 +-
 java/ql/lib/ext/org.slf4j.model.yml           |  2 +-
 java/ql/lib/ext/org.slf4j.spi.model.yml       |  4 +--
 .../ext/org.springframework.beans.model.yml   |  2 +-
 .../org.springframework.boot.jdbc.model.yml   |  2 +-
 .../ext/org.springframework.cache.model.yml   |  2 +-
 .../ext/org.springframework.context.model.yml |  2 +-
 ....springframework.data.repository.model.yml |  2 +-
 .../ext/org.springframework.http.model.yml    |  4 +--
 .../org.springframework.jdbc.core.model.yml   |  2 +-
 ....springframework.jdbc.datasource.model.yml |  2 +-
 .../org.springframework.jdbc.object.model.yml |  2 +-
 .../ext/org.springframework.jndi.model.yml    |  2 +-
 .../org.springframework.ldap.core.model.yml   |  2 +-
 .../ext/org.springframework.ldap.model.yml    |  2 +-
 ...mework.security.web.savedrequest.model.yml |  2 +-
 .../lib/ext/org.springframework.ui.model.yml  |  2 +-
 .../ext/org.springframework.util.model.yml    |  2 +-
 .../org.springframework.validation.model.yml  |  2 +-
 .../org.springframework.web.client.model.yml  |  4 +--
 ...ingframework.web.context.request.model.yml |  2 +-
 ...rg.springframework.web.multipart.model.yml |  4 +--
 ...ork.web.reactive.function.client.model.yml |  2 +-
 .../org.springframework.web.util.model.yml    |  2 +-
 java/ql/lib/ext/org.thymeleaf.model.yml       |  4 +--
 java/ql/lib/ext/org.xml.sax.model.yml         |  2 +-
 java/ql/lib/ext/org.xmlpull.v1.model.yml      |  2 +-
 java/ql/lib/ext/play.mvc.model.yml            |  2 +-
 java/ql/lib/ext/ratpack.core.form.model.yml   |  2 +-
 .../lib/ext/ratpack.core.handling.model.yml   |  4 +--
 java/ql/lib/ext/ratpack.core.http.model.yml   |  4 +--
 java/ql/lib/ext/ratpack.exec.model.yml        |  2 +-
 java/ql/lib/ext/ratpack.form.model.yml        |  2 +-
 java/ql/lib/ext/ratpack.func.model.yml        |  2 +-
 java/ql/lib/ext/ratpack.handling.model.yml    |  4 +--
 java/ql/lib/ext/ratpack.http.model.yml        |  4 +--
 java/ql/lib/ext/ratpack.util.model.yml        |  2 +-
 java/ql/lib/ext/retrofit2.model.yml           |  2 +-
 .../GenerateFlowTestCase.py                   |  2 +-
 java/ql/test/ext/test.model.yml               | 28 +++++++++----------
 223 files changed, 299 insertions(+), 299 deletions(-)

diff --git a/java/ql/integration-tests/all-platforms/kotlin/annotation-id-consistency/ext/test.model.yml b/java/ql/integration-tests/all-platforms/kotlin/annotation-id-consistency/ext/test.model.yml
index 5fb4ebb6c1d..708257719b0 100644
--- a/java/ql/integration-tests/all-platforms/kotlin/annotation-id-consistency/ext/test.model.yml
+++ b/java/ql/integration-tests/all-platforms/kotlin/annotation-id-consistency/ext/test.model.yml
@@ -1,5 +1,5 @@
 extensions:
   - addsTo:
       pack: integrationtest-annotation-id-consistency
-      extensible: extNegativeSummaryModel
+      extensible: negativeSummaryModel
     data: []
diff --git a/java/ql/integration-tests/all-platforms/kotlin/default-parameter-mad-flow/ext/test.model.yml b/java/ql/integration-tests/all-platforms/kotlin/default-parameter-mad-flow/ext/test.model.yml
index 19ee05fc65f..3553b9fe577 100644
--- a/java/ql/integration-tests/all-platforms/kotlin/default-parameter-mad-flow/ext/test.model.yml
+++ b/java/ql/integration-tests/all-platforms/kotlin/default-parameter-mad-flow/ext/test.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: integrationtest-default-parameter-mad-flow
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       - ["", "ConstructorWithDefaults", True, "ConstructorWithDefaults", "(int,int)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
       - ["", "LibKt", True, "topLevelWithDefaults", "(int,int)", "", "Argument[0]", "ReturnValue", "value", "manual"]
@@ -12,14 +12,14 @@ extensions:
       - ["", "LibClass", True, "multiParameterExtensionTest", "(int,int,int,int)", "", "Argument[0, 1]", "ReturnValue", "value", "manual"]
   - addsTo:
       pack: integrationtest-default-parameter-mad-flow
-      extensible: extSourceModel
+      extensible: sourceModel
     data:
       - ["", "LibKt", True, "topLevelArgSource", "(SomeToken,int)", "", "Argument[0]", "kotlinMadFlowTest", "manual"]
       - ["", "LibKt", True, "extensionArgSource", "(String,SomeToken,int)", "", "Argument[1]", "kotlinMadFlowTest", "manual"]
       - ["", "SourceClass", True, "memberArgSource", "(SomeToken,int)", "", "Argument[0]", "kotlinMadFlowTest", "manual"]
   - addsTo:
       pack: integrationtest-default-parameter-mad-flow
-      extensible: extSinkModel
+      extensible: sinkModel
     data:
       - ["", "SinkClass", True, "SinkClass", "(int,int)", "", "Argument[0]", "kotlinMadFlowTest", "manual"]
       - ["", "LibKt", True, "topLevelSink", "(int,int)", "", "Argument[0]", "kotlinMadFlowTest", "manual"]
diff --git a/java/ql/lib/ext/android.app.model.yml b/java/ql/lib/ext/android.app.model.yml
index c96fee8b282..82ed724a418 100644
--- a/java/ql/lib/ext/android.app.model.yml
+++ b/java/ql/lib/ext/android.app.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSinkModel
+      extensible: sinkModel
     data:
       - ["android.app", "Activity", True, "bindService", "", "", "Argument[0]", "intent-start", "manual"]
       - ["android.app", "Activity", True, "bindServiceAsUser", "", "", "Argument[0]", "intent-start", "manual"]
@@ -40,7 +40,7 @@ extensions:
       - ["android.app", "PendingIntent", False, "send", "(Context,int,Intent,OnFinished,Handler,String,Bundle)", "", "Argument[2]", "pending-intent-sent", "manual"]
   - addsTo:
       pack: codeql/java-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       - ["android.app", "Notification$Action", True, "Action", "(int,CharSequence,PendingIntent)", "", "Argument[2]", "Argument[-1]", "taint", "manual"]
       - ["android.app", "Notification$Action", True, "getExtras", "", "", "Argument[-1].SyntheticField[android.content.Intent.extras]", "ReturnValue", "value", "manual"]
diff --git a/java/ql/lib/ext/android.content.model.yml b/java/ql/lib/ext/android.content.model.yml
index a07799665db..292360c550c 100644
--- a/java/ql/lib/ext/android.content.model.yml
+++ b/java/ql/lib/ext/android.content.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSourceModel
+      extensible: sourceModel
     data:
       # ContentInterface models are here for backwards compatibility (it was removed in API 28)
       - ["android.content", "ContentInterface", True, "call", "(String,String,String,Bundle)", "", "Parameter[0..3]", "contentprovider", "manual"]
@@ -37,7 +37,7 @@ extensions:
       - ["android.content", "Context", True, "getExternalFilesDirs", "(String)", "", "ReturnValue", "android-external-storage-dir", "manual"]
   - addsTo:
       pack: codeql/java-all
-      extensible: extSinkModel
+      extensible: sinkModel
     data:
       - ["android.content", "ContentProvider", True, "delete", "(Uri,String,String[])", "", "Argument[1]", "sql", "manual"]
       - ["android.content", "ContentProvider", True, "query", "(Uri,String[],String,String[],String)", "", "Argument[2]", "sql", "manual"]
@@ -65,7 +65,7 @@ extensions:
       - ["android.content", "Context", True, "startServiceAsUser", "", "", "Argument[0]", "intent-start", "manual"]
   - addsTo:
       pack: codeql/java-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       - ["android.content", "ComponentName", False, "ComponentName", "(Context,Class)", "", "Argument[1]", "Argument[-1]", "taint", "manual"]
       - ["android.content", "ComponentName", False, "ComponentName", "(Context,String)", "", "Argument[1]", "Argument[-1]", "taint", "manual"]
diff --git a/java/ql/lib/ext/android.database.model.yml b/java/ql/lib/ext/android.database.model.yml
index 11aa4a46f74..a7c6e6b1d9b 100644
--- a/java/ql/lib/ext/android.database.model.yml
+++ b/java/ql/lib/ext/android.database.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSinkModel
+      extensible: sinkModel
     data:
       - ["android.database", "DatabaseUtils", False, "blobFileDescriptorForQuery", "(SQLiteDatabase,String,String[])", "", "Argument[1]", "sql", "manual"]
       - ["android.database", "DatabaseUtils", False, "createDbFromSqlStatements", "(Context,String,int,String)", "", "Argument[3]", "sql", "manual"]
@@ -12,7 +12,7 @@ extensions:
       - ["android.database", "DatabaseUtils", False, "stringForQuery", "(SQLiteDatabase,String,String[])", "", "Argument[1]", "sql", "manual"]
   - addsTo:
       pack: codeql/java-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       - ["android.database", "Cursor", True, "copyStringToBuffer", "", "", "Argument[-1]", "Argument[1]", "taint", "manual"]
       - ["android.database", "Cursor", True, "getBlob", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
diff --git a/java/ql/lib/ext/android.database.sqlite.model.yml b/java/ql/lib/ext/android.database.sqlite.model.yml
index 09f5b803661..4b775715409 100644
--- a/java/ql/lib/ext/android.database.sqlite.model.yml
+++ b/java/ql/lib/ext/android.database.sqlite.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSinkModel
+      extensible: sinkModel
     data:
       - ["android.database.sqlite", "SQLiteDatabase", False, "compileStatement", "(String)", "", "Argument[0]", "sql", "manual"]
       - ["android.database.sqlite", "SQLiteDatabase", False, "delete", "(String,String,String[])", "", "Argument[0..1]", "sql", "manual"]
@@ -57,7 +57,7 @@ extensions:
       - ["android.database.sqlite", "SQLiteQueryBuilder", True, "update", "(SQLiteDatabase,ContentValues,String,String[])", "", "Argument[2]", "sql", "manual"]
   - addsTo:
       pack: codeql/java-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       - ["android.database.sqlite", "SQLiteQueryBuilder", True, "appendColumns", "(StringBuilder,String[])", "", "Argument[1].ArrayElement", "Argument[0]", "taint", "manual"]
       - ["android.database.sqlite", "SQLiteQueryBuilder", True, "appendWhere", "(CharSequence)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
diff --git a/java/ql/lib/ext/android.net.model.yml b/java/ql/lib/ext/android.net.model.yml
index 222ef1e0a2e..2cda1efbc75 100644
--- a/java/ql/lib/ext/android.net.model.yml
+++ b/java/ql/lib/ext/android.net.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       - ["android.net", "Uri", True, "buildUpon", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
       - ["android.net", "Uri", False, "decode", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
diff --git a/java/ql/lib/ext/android.os.model.yml b/java/ql/lib/ext/android.os.model.yml
index 32860445cf4..847ac6ce27b 100644
--- a/java/ql/lib/ext/android.os.model.yml
+++ b/java/ql/lib/ext/android.os.model.yml
@@ -1,13 +1,13 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSourceModel
+      extensible: sourceModel
     data:
       - ["android.os", "Environment", False, "getExternalStorageDirectory", "()", "", "ReturnValue", "android-external-storage-dir", "manual"]
       - ["android.os", "Environment", False, "getExternalStoragePublicDirectory", "(String)", "", "ReturnValue", "android-external-storage-dir", "manual"]
   - addsTo:
       pack: codeql/java-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       - ["android.os", "BaseBundle", True, "get", "(String)", "", "Argument[-1].MapValue", "ReturnValue", "value", "manual"]
       - ["android.os", "BaseBundle", True, "getString", "(String)", "", "Argument[-1].MapValue", "ReturnValue", "value", "manual"]
diff --git a/java/ql/lib/ext/android.support.v4.app.model.yml b/java/ql/lib/ext/android.support.v4.app.model.yml
index 42df9f0a87a..c99ebd9865e 100644
--- a/java/ql/lib/ext/android.support.v4.app.model.yml
+++ b/java/ql/lib/ext/android.support.v4.app.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSinkModel
+      extensible: sinkModel
     data:
       - ["android.support.v4.app", "FragmentTransaction", True, "add", "(Class,Bundle,String)", "", "Argument[0]", "fragment-injection", "manual"]
       - ["android.support.v4.app", "FragmentTransaction", True, "add", "(Fragment,String)", "", "Argument[0]", "fragment-injection", "manual"]
diff --git a/java/ql/lib/ext/android.util.model.yml b/java/ql/lib/ext/android.util.model.yml
index 63d0612ea41..b57ff4819a7 100644
--- a/java/ql/lib/ext/android.util.model.yml
+++ b/java/ql/lib/ext/android.util.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSourceModel
+      extensible: sourceModel
     data:
       - ["android.util", "AttributeSet", False, "getAttributeBooleanValue", "", "", "ReturnValue", "remote", "manual"]
       - ["android.util", "AttributeSet", False, "getAttributeCount", "", "", "ReturnValue", "remote", "manual"]
@@ -21,7 +21,7 @@ extensions:
       - ["android.util", "AttributeSet", False, "getStyleAttribute", "", "", "ReturnValue", "remote", "manual"]
   - addsTo:
       pack: codeql/java-all
-      extensible: extSinkModel
+      extensible: sinkModel
     data:
       - ["android.util", "Log", True, "d", "", "", "Argument[1]", "logging", "manual"]
       - ["android.util", "Log", True, "e", "", "", "Argument[1]", "logging", "manual"]
diff --git a/java/ql/lib/ext/android.webkit.model.yml b/java/ql/lib/ext/android.webkit.model.yml
index c5a3ed8661f..05058493fe1 100644
--- a/java/ql/lib/ext/android.webkit.model.yml
+++ b/java/ql/lib/ext/android.webkit.model.yml
@@ -1,13 +1,13 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSourceModel
+      extensible: sourceModel
     data:
       - ["android.webkit", "WebView", False, "getOriginalUrl", "()", "", "ReturnValue", "remote", "manual"]
       - ["android.webkit", "WebView", False, "getUrl", "()", "", "ReturnValue", "remote", "manual"]
   - addsTo:
       pack: codeql/java-all
-      extensible: extSinkModel
+      extensible: sinkModel
     data:
       # Models representing methods susceptible to XSS attacks.
       - ["android.webkit", "WebView", False, "evaluateJavascript", "", "", "Argument[0]", "xss", "manual"]
diff --git a/java/ql/lib/ext/android.widget.model.yml b/java/ql/lib/ext/android.widget.model.yml
index 917167d6156..1b6c94993e0 100644
--- a/java/ql/lib/ext/android.widget.model.yml
+++ b/java/ql/lib/ext/android.widget.model.yml
@@ -1,11 +1,11 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSourceModel
+      extensible: sourceModel
     data:
       - ["android.widget", "EditText", True, "getText", "", "", "ReturnValue", "android-widget", "manual"]
   - addsTo:
       pack: codeql/java-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       - ["android.widget", "EditText", True, "getText", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
diff --git a/java/ql/lib/ext/androidx.core.app.model.yml b/java/ql/lib/ext/androidx.core.app.model.yml
index 48a97fbba57..dbf8c0fb082 100644
--- a/java/ql/lib/ext/androidx.core.app.model.yml
+++ b/java/ql/lib/ext/androidx.core.app.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSinkModel
+      extensible: sinkModel
     data:
       - ["androidx.core.app", "AlarmManagerCompat", True, "setAlarmClock", "", "", "Argument[2..3]", "pending-intent-sent", "manual"]
       - ["androidx.core.app", "AlarmManagerCompat", True, "setAndAllowWhileIdle", "", "", "Argument[3]", "pending-intent-sent", "manual"]
@@ -11,7 +11,7 @@ extensions:
       - ["androidx.core.app", "NotificationManagerCompat", True, "notify", "(int,Notification)", "", "Argument[1]", "pending-intent-sent", "manual"]
   - addsTo:
       pack: codeql/java-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       - ["androidx.core.app", "NotificationCompat$Action", True, "Action", "(IconCompat,CharSequence,PendingIntent)", "", "Argument[2]", "Argument[-1]", "taint", "manual"]
       - ["androidx.core.app", "NotificationCompat$Action", True, "Action", "(int,CharSequence,PendingIntent)", "", "Argument[2]", "Argument[-1]", "taint", "manual"]
diff --git a/java/ql/lib/ext/androidx.fragment.app.model.yml b/java/ql/lib/ext/androidx.fragment.app.model.yml
index 8e219640c7d..94c55a75c71 100644
--- a/java/ql/lib/ext/androidx.fragment.app.model.yml
+++ b/java/ql/lib/ext/androidx.fragment.app.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSinkModel
+      extensible: sinkModel
     data:
       - ["androidx.fragment.app", "FragmentTransaction", True, "add", "(Class,Bundle,String)", "", "Argument[0]", "fragment-injection", "manual"]
       - ["androidx.fragment.app", "FragmentTransaction", True, "add", "(Fragment,String)", "", "Argument[0]", "fragment-injection", "manual"]
diff --git a/java/ql/lib/ext/androidx.slice.builders.model.yml b/java/ql/lib/ext/androidx.slice.builders.model.yml
index 066fae518b2..8b84e7ec341 100644
--- a/java/ql/lib/ext/androidx.slice.builders.model.yml
+++ b/java/ql/lib/ext/androidx.slice.builders.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       - ["androidx.slice.builders", "ListBuilder", True, "addAction", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
       - ["androidx.slice.builders", "ListBuilder", True, "addAction", "", "", "Argument[0].SyntheticField[androidx.slice.Slice.action]", "Argument[-1].SyntheticField[androidx.slice.Slice.action]", "taint", "manual"]
diff --git a/java/ql/lib/ext/androidx.slice.model.yml b/java/ql/lib/ext/androidx.slice.model.yml
index 770b1797538..97481e886e5 100644
--- a/java/ql/lib/ext/androidx.slice.model.yml
+++ b/java/ql/lib/ext/androidx.slice.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSourceModel
+      extensible: sourceModel
     data:
       - ["androidx.slice", "SliceProvider", True, "onBindSlice", "", "", "Parameter[0]", "contentprovider", "manual"]
       - ["androidx.slice", "SliceProvider", True, "onCreatePermissionRequest", "", "", "Parameter[0]", "contentprovider", "manual"]
@@ -10,7 +10,7 @@ extensions:
       - ["androidx.slice", "SliceProvider", True, "onSliceUnpinned", "", "", "Parameter[0]", "contentprovider", "manual"]
   - addsTo:
       pack: codeql/java-all
-      extensible: extSinkModel
+      extensible: sinkModel
     data:
       - ["androidx.slice", "SliceProvider", True, "onBindSlice", "", "", "ReturnValue", "pending-intent-sent", "manual"]
       - ["androidx.slice", "SliceProvider", True, "onCreatePermissionRequest", "", "", "ReturnValue", "pending-intent-sent", "manual"]
diff --git a/java/ql/lib/ext/cn.hutool.core.codec.model.yml b/java/ql/lib/ext/cn.hutool.core.codec.model.yml
index fdd0766ffe4..8d583c144fb 100644
--- a/java/ql/lib/ext/cn.hutool.core.codec.model.yml
+++ b/java/ql/lib/ext/cn.hutool.core.codec.model.yml
@@ -1,6 +1,6 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       - ["cn.hutool.core.codec", "Base64", True, "decode", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
diff --git a/java/ql/lib/ext/com.esotericsoftware.kryo.io.model.yml b/java/ql/lib/ext/com.esotericsoftware.kryo.io.model.yml
index 0acf40fe015..b98da490aba 100644
--- a/java/ql/lib/ext/com.esotericsoftware.kryo.io.model.yml
+++ b/java/ql/lib/ext/com.esotericsoftware.kryo.io.model.yml
@@ -1,6 +1,6 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       - ["com.esotericsoftware.kryo.io", "Input", False, "Input", "", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
diff --git a/java/ql/lib/ext/com.esotericsoftware.kryo5.io.model.yml b/java/ql/lib/ext/com.esotericsoftware.kryo5.io.model.yml
index e71107e7a63..78512602b9f 100644
--- a/java/ql/lib/ext/com.esotericsoftware.kryo5.io.model.yml
+++ b/java/ql/lib/ext/com.esotericsoftware.kryo5.io.model.yml
@@ -1,6 +1,6 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       - ["com.esotericsoftware.kryo5.io", "Input", False, "Input", "", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
diff --git a/java/ql/lib/ext/com.fasterxml.jackson.core.model.yml b/java/ql/lib/ext/com.fasterxml.jackson.core.model.yml
index 7510d7ed936..640b96f769f 100644
--- a/java/ql/lib/ext/com.fasterxml.jackson.core.model.yml
+++ b/java/ql/lib/ext/com.fasterxml.jackson.core.model.yml
@@ -1,6 +1,6 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       - ["com.fasterxml.jackson.core", "JsonFactory", False, "createParser", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
diff --git a/java/ql/lib/ext/com.fasterxml.jackson.databind.model.yml b/java/ql/lib/ext/com.fasterxml.jackson.databind.model.yml
index 880b6bee044..3768007ebe7 100644
--- a/java/ql/lib/ext/com.fasterxml.jackson.databind.model.yml
+++ b/java/ql/lib/ext/com.fasterxml.jackson.databind.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       - ["com.fasterxml.jackson.databind", "ObjectMapper", True, "convertValue", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
       - ["com.fasterxml.jackson.databind", "ObjectMapper", False, "createParser", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
diff --git a/java/ql/lib/ext/com.google.common.base.model.yml b/java/ql/lib/ext/com.google.common.base.model.yml
index aaff117fbed..9d7e8491e81 100644
--- a/java/ql/lib/ext/com.google.common.base.model.yml
+++ b/java/ql/lib/ext/com.google.common.base.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSinkModel
+      extensible: sinkModel
     data:
       - ["com.google.common.base", "Splitter", False, "onPattern", "(String)", "", "Argument[0]", "regex-use[]", "manual"]
       - ["com.google.common.base", "Splitter", False, "split", "(CharSequence)", "", "Argument[-1]", "regex-use[0]", "manual"]
@@ -9,7 +9,7 @@ extensions:
       - ["com.google.common.base", "Splitter$MapSplitter", False, "split", "(CharSequence)", "", "Argument[-1]", "regex-use[0]", "manual"]
   - addsTo:
       pack: codeql/java-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       - ["com.google.common.base", "Ascii", False, "toLowerCase", "(CharSequence)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
       - ["com.google.common.base", "Ascii", False, "toLowerCase", "(String)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
diff --git a/java/ql/lib/ext/com.google.common.cache.model.yml b/java/ql/lib/ext/com.google.common.cache.model.yml
index 852542d19d6..f5c88464208 100644
--- a/java/ql/lib/ext/com.google.common.cache.model.yml
+++ b/java/ql/lib/ext/com.google.common.cache.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       - ["com.google.common.cache", "Cache", True, "asMap", "()", "", "Argument[-1].MapKey", "ReturnValue.MapKey", "value", "manual"]
       - ["com.google.common.cache", "Cache", True, "asMap", "()", "", "Argument[-1].MapValue", "ReturnValue.MapValue", "value", "manual"]
diff --git a/java/ql/lib/ext/com.google.common.collect.model.yml b/java/ql/lib/ext/com.google.common.collect.model.yml
index 98124e42679..b6c067fe5e0 100644
--- a/java/ql/lib/ext/com.google.common.collect.model.yml
+++ b/java/ql/lib/ext/com.google.common.collect.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       # Methods depending on lambda flow are not currently modeled
       # Methods depending on stronger aliasing properties than we support are also not modeled.
diff --git a/java/ql/lib/ext/com.google.common.flogger.model.yml b/java/ql/lib/ext/com.google.common.flogger.model.yml
index 21c8b0e9fcb..b9a800b6210 100644
--- a/java/ql/lib/ext/com.google.common.flogger.model.yml
+++ b/java/ql/lib/ext/com.google.common.flogger.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSinkModel
+      extensible: sinkModel
     data:
       - ["com.google.common.flogger", "LoggingApi", True, "log", "", "", "Argument[0]", "logging", "manual"]
       - ["com.google.common.flogger", "LoggingApi", True, "log", "(String,Object)", "", "Argument[1]", "logging", "manual"]
diff --git a/java/ql/lib/ext/com.google.common.io.model.yml b/java/ql/lib/ext/com.google.common.io.model.yml
index 5cba3d58e12..d08a5604338 100644
--- a/java/ql/lib/ext/com.google.common.io.model.yml
+++ b/java/ql/lib/ext/com.google.common.io.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSinkModel
+      extensible: sinkModel
     data:
       - ["com.google.common.io", "Resources", False, "asByteSource", "(URL)", "", "Argument[0]", "url-open-stream", "manual"]
       - ["com.google.common.io", "Resources", False, "asCharSource", "(URL,Charset)", "", "Argument[0]", "url-open-stream", "manual"]
@@ -11,7 +11,7 @@ extensions:
       - ["com.google.common.io", "Resources", False, "toString", "(URL,Charset)", "", "Argument[0]", "url-open-stream", "manual"]
   - addsTo:
       pack: codeql/java-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       - ["com.google.common.io", "BaseEncoding", True, "decode", "(CharSequence)", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
       - ["com.google.common.io", "BaseEncoding", True, "decode", "(CharSequence)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
diff --git a/java/ql/lib/ext/com.hubspot.jinjava.model.yml b/java/ql/lib/ext/com.hubspot.jinjava.model.yml
index c1a30915e33..2172da483f8 100644
--- a/java/ql/lib/ext/com.hubspot.jinjava.model.yml
+++ b/java/ql/lib/ext/com.hubspot.jinjava.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSinkModel
+      extensible: sinkModel
     data:
       - ["com.hubspot.jinjava", "Jinjava", True, "render", "", "", "Argument[0]", "ssti", "manual"]
       - ["com.hubspot.jinjava", "Jinjava", True, "renderForResult", "", "", "Argument[0]", "ssti", "manual"]
diff --git a/java/ql/lib/ext/com.mitchellbosecke.pebble.model.yml b/java/ql/lib/ext/com.mitchellbosecke.pebble.model.yml
index a8ae018da3c..74b227da1dd 100644
--- a/java/ql/lib/ext/com.mitchellbosecke.pebble.model.yml
+++ b/java/ql/lib/ext/com.mitchellbosecke.pebble.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSinkModel
+      extensible: sinkModel
     data:
       - ["com.mitchellbosecke.pebble", "PebbleEngine", True, "getLiteralTemplate", "", "", "Argument[0]", "ssti", "manual"]
       - ["com.mitchellbosecke.pebble", "PebbleEngine", True, "getTemplate", "", "", "Argument[0]", "ssti", "manual"]
diff --git a/java/ql/lib/ext/com.opensymphony.xwork2.ognl.model.yml b/java/ql/lib/ext/com.opensymphony.xwork2.ognl.model.yml
index 60cd1b114d6..58b50652f1b 100644
--- a/java/ql/lib/ext/com.opensymphony.xwork2.ognl.model.yml
+++ b/java/ql/lib/ext/com.opensymphony.xwork2.ognl.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSinkModel
+      extensible: sinkModel
     data:
       - ["com.opensymphony.xwork2.ognl", "OgnlUtil", False, "callMethod", "", "", "Argument[0]", "ognl-injection", "manual"]
       - ["com.opensymphony.xwork2.ognl", "OgnlUtil", False, "getValue", "", "", "Argument[0]", "ognl-injection", "manual"]
diff --git a/java/ql/lib/ext/com.rabbitmq.client.impl.model.yml b/java/ql/lib/ext/com.rabbitmq.client.impl.model.yml
index cd2a74a741d..9f0e9906e79 100644
--- a/java/ql/lib/ext/com.rabbitmq.client.impl.model.yml
+++ b/java/ql/lib/ext/com.rabbitmq.client.impl.model.yml
@@ -1,14 +1,14 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSourceModel
+      extensible: sourceModel
     data:
       - ["com.rabbitmq.client.impl", "Frame", True, "getInputStream", "()", "", "ReturnValue", "remote", "manual"]
       - ["com.rabbitmq.client.impl", "Frame", True, "getPayload", "()", "", "ReturnValue", "remote", "manual"]
       - ["com.rabbitmq.client.impl", "FrameHandler", True, "readFrame", "()", "", "ReturnValue", "remote", "manual"]
   - addsTo:
       pack: codeql/java-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       - ["com.rabbitmq.client.impl", "Frame", False, "fromBodyFragment", "(int,byte[],int,int)", "", "Argument[1]", "ReturnValue", "taint", "manual"]
       - ["com.rabbitmq.client.impl", "Frame", False, "readFrom", "(DataInputStream)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
diff --git a/java/ql/lib/ext/com.rabbitmq.client.model.yml b/java/ql/lib/ext/com.rabbitmq.client.model.yml
index ef452bf7005..ec313e8ef74 100644
--- a/java/ql/lib/ext/com.rabbitmq.client.model.yml
+++ b/java/ql/lib/ext/com.rabbitmq.client.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSourceModel
+      extensible: sourceModel
     data:
       - ["com.rabbitmq.client", "Command", True, "getContentBody", "()", "", "ReturnValue", "remote", "manual"]
       - ["com.rabbitmq.client", "Command", True, "getContentHeader", "()", "", "ReturnValue", "remote", "manual"]
@@ -23,7 +23,7 @@ extensions:
       - ["com.rabbitmq.client", "StringRpcServer", True, "handleStringCall", "", "", "Parameter[0]", "remote", "manual"]
   - addsTo:
       pack: codeql/java-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       - ["com.rabbitmq.client", "GetResponse", True, "GetResponse", "", "", "Argument[2]", "Argument[-1]", "taint", "manual"]
       - ["com.rabbitmq.client", "GetResponse", True, "getBody", "()", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
diff --git a/java/ql/lib/ext/com.unboundid.ldap.sdk.model.yml b/java/ql/lib/ext/com.unboundid.ldap.sdk.model.yml
index f9d1d872f28..57753bc31d0 100644
--- a/java/ql/lib/ext/com.unboundid.ldap.sdk.model.yml
+++ b/java/ql/lib/ext/com.unboundid.ldap.sdk.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSinkModel
+      extensible: sinkModel
     data:
       - ["com.unboundid.ldap.sdk", "LDAPConnection", False, "asyncSearch", "", "", "Argument[0]", "ldap", "manual"]
       - ["com.unboundid.ldap.sdk", "LDAPConnection", False, "search", "(ReadOnlySearchRequest)", "", "Argument[0]", "ldap", "manual"]
diff --git a/java/ql/lib/ext/com.zaxxer.hikari.model.yml b/java/ql/lib/ext/com.zaxxer.hikari.model.yml
index fb9f8f3cb80..5fcab32cc7e 100644
--- a/java/ql/lib/ext/com.zaxxer.hikari.model.yml
+++ b/java/ql/lib/ext/com.zaxxer.hikari.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSinkModel
+      extensible: sinkModel
     data:
       - ["com.zaxxer.hikari", "HikariConfig", False, "HikariConfig", "(Properties)", "", "Argument[0]", "jdbc-url", "manual"]
       - ["com.zaxxer.hikari", "HikariConfig", False, "setJdbcUrl", "(String)", "", "Argument[0]", "jdbc-url", "manual"]
diff --git a/java/ql/lib/ext/dummy.model.yml b/java/ql/lib/ext/dummy.model.yml
index e6139faabcf..0269fe72311 100644
--- a/java/ql/lib/ext/dummy.model.yml
+++ b/java/ql/lib/ext/dummy.model.yml
@@ -2,17 +2,17 @@ extensions:
   # Make sure that the extensible model predicates are at least defined as empty.
   - addsTo:
       pack: codeql/java-all
-      extensible: extSourceModel
+      extensible: sourceModel
     data: []
   - addsTo:
       pack: codeql/java-all
-      extensible: extSinkModel
+      extensible: sinkModel
     data: []
   - addsTo:
       pack: codeql/java-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data: []
   - addsTo:
       pack: codeql/java-all
-      extensible: extNeutralModel
+      extensible: neutralModel
     data: []
\ No newline at end of file
diff --git a/java/ql/lib/ext/experimental/android.webkit.model.yml b/java/ql/lib/ext/experimental/android.webkit.model.yml
index dc2a4b95b64..ce70ae7e87b 100644
--- a/java/ql/lib/ext/experimental/android.webkit.model.yml
+++ b/java/ql/lib/ext/experimental/android.webkit.model.yml
@@ -1,6 +1,6 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extExperimentalSummaryModel
+      extensible: experimentalSummaryModel
     data:
       - ["android.webkit", "WebResourceRequest", False, "getUrl", "", "", "Argument[-1]", "ReturnValue", "taint", "manual", "android-web-resource-response"]
diff --git a/java/ql/lib/ext/experimental/com.auth0.jwt.interfaces.model.yml b/java/ql/lib/ext/experimental/com.auth0.jwt.interfaces.model.yml
index 3a4e6a42701..6032a9c8a18 100644
--- a/java/ql/lib/ext/experimental/com.auth0.jwt.interfaces.model.yml
+++ b/java/ql/lib/ext/experimental/com.auth0.jwt.interfaces.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extExperimentalSummaryModel
+      extensible: experimentalSummaryModel
     data:
       - ["com.auth0.jwt.interfaces", "Verification", True, "acceptExpiresAt", "", "", "Argument[-1]", "ReturnValue", "value", "manual", "hardcoded-jwt-key"]
       - ["com.auth0.jwt.interfaces", "Verification", True, "acceptIssuedAt", "", "", "Argument[-1]", "ReturnValue", "value", "manual", "hardcoded-jwt-key"]
diff --git a/java/ql/lib/ext/experimental/com.jfinal.core.model.yml b/java/ql/lib/ext/experimental/com.jfinal.core.model.yml
index 078e86a4817..b6c7cc438f5 100644
--- a/java/ql/lib/ext/experimental/com.jfinal.core.model.yml
+++ b/java/ql/lib/ext/experimental/com.jfinal.core.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extExperimentalSourceModel
+      extensible: experimentalSourceModel
     data:
       - ["com.jfinal.core", "Controller", True, "get", "", "", "ReturnValue", "remote", "manual", "file-path-injection"]
       - ["com.jfinal.core", "Controller", True, "getBoolean", "", "", "ReturnValue", "remote", "manual", "file-path-injection"]
diff --git a/java/ql/lib/ext/experimental/dummy.model.yml b/java/ql/lib/ext/experimental/dummy.model.yml
index d1521d27a9c..b43cb611b66 100644
--- a/java/ql/lib/ext/experimental/dummy.model.yml
+++ b/java/ql/lib/ext/experimental/dummy.model.yml
@@ -3,13 +3,13 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extExperimentalSourceModel
+      extensible: experimentalSourceModel
     data: []
   - addsTo:
       pack: codeql/java-all
-      extensible: extExperimentalSinkModel
+      extensible: experimentalSinkModel
     data: []
   - addsTo:
       pack: codeql/java-all
-      extensible: extExperimentalSummaryModel
+      extensible: experimentalSummaryModel
     data: []
diff --git a/java/ql/lib/ext/experimental/io.undertow.server.handlers.resource.model.yml b/java/ql/lib/ext/experimental/io.undertow.server.handlers.resource.model.yml
index 222a144acaf..12267dcd845 100644
--- a/java/ql/lib/ext/experimental/io.undertow.server.handlers.resource.model.yml
+++ b/java/ql/lib/ext/experimental/io.undertow.server.handlers.resource.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extExperimentalSummaryModel
+      extensible: experimentalSummaryModel
     data:
       - ["io.undertow.server.handlers.resource", "Resource", True, "getFile", "", "", "Argument[-1]", "ReturnValue", "taint", "manual", "unsafe-url-forward"]
       - ["io.undertow.server.handlers.resource", "Resource", True, "getFilePath", "", "", "Argument[-1]", "ReturnValue", "taint", "manual", "unsafe-url-forward"]
diff --git a/java/ql/lib/ext/experimental/jakarta.servlet.http.model.yml b/java/ql/lib/ext/experimental/jakarta.servlet.http.model.yml
index 17737495c06..9500beba15b 100644
--- a/java/ql/lib/ext/experimental/jakarta.servlet.http.model.yml
+++ b/java/ql/lib/ext/experimental/jakarta.servlet.http.model.yml
@@ -1,6 +1,6 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extExperimentalSourceModel
+      extensible: experimentalSourceModel
     data:
       - ["jakarta.servlet.http", "HttpServletRequest", True, "getServletPath", "", "", "ReturnValue", "remote", "manual", "unsafe-url-forward"]
diff --git a/java/ql/lib/ext/experimental/java.io.model.yml b/java/ql/lib/ext/experimental/java.io.model.yml
index 1b4fd419994..8d6d98ff47d 100644
--- a/java/ql/lib/ext/experimental/java.io.model.yml
+++ b/java/ql/lib/ext/experimental/java.io.model.yml
@@ -1,6 +1,6 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extExperimentalSummaryModel
+      extensible: experimentalSummaryModel
     data:
       - ["java.io", "FileInputStream", True, "FileInputStream", "", "", "Argument[0]", "Argument[-1]", "taint", "manual", "android-web-resource-response"]
diff --git a/java/ql/lib/ext/experimental/java.lang.model.yml b/java/ql/lib/ext/experimental/java.lang.model.yml
index 0622356da8e..696a0d9aba3 100644
--- a/java/ql/lib/ext/experimental/java.lang.model.yml
+++ b/java/ql/lib/ext/experimental/java.lang.model.yml
@@ -1,12 +1,12 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extExperimentalSinkModel
+      extensible: experimentalSinkModel
     data:
       - ["java.lang", "Thread", True, "sleep", "", "", "Argument[0]", "thread-pause", "manual", "thread-resource-abuse"]
   - addsTo:
       pack: codeql/java-all
-      extensible: extExperimentalSummaryModel
+      extensible: experimentalSummaryModel
     data:
       - ["java.lang", "Math", False, "max", "", "", "Argument[0..1]", "ReturnValue", "value", "manual", "thread-resource-abuse"]
       - ["java.lang", "Math", False, "min", "", "", "Argument[0..1]", "ReturnValue", "value", "manual", "thread-resource-abuse"]
diff --git a/java/ql/lib/ext/experimental/java.nio.file.model.yml b/java/ql/lib/ext/experimental/java.nio.file.model.yml
index 990a632fae4..d1d0d8d3d6e 100644
--- a/java/ql/lib/ext/experimental/java.nio.file.model.yml
+++ b/java/ql/lib/ext/experimental/java.nio.file.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extExperimentalSummaryModel
+      extensible: experimentalSummaryModel
     data:
       - ["java.nio.file", "Path", True, "normalize", "", "", "Argument[-1]", "ReturnValue", "taint", "manual", "unsafe-url-forward"]
       - ["java.nio.file", "Path", True, "resolve", "", "", "Argument[-1..0]", "ReturnValue", "taint", "manual", "unsafe-url-forward"]
diff --git a/java/ql/lib/ext/experimental/java.util.concurrent.model.yml b/java/ql/lib/ext/experimental/java.util.concurrent.model.yml
index fbbee520183..82ff0a00570 100644
--- a/java/ql/lib/ext/experimental/java.util.concurrent.model.yml
+++ b/java/ql/lib/ext/experimental/java.util.concurrent.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extExperimentalSinkModel
+      extensible: experimentalSinkModel
     data:
       - ["java.util.concurrent", "TimeUnit", True, "sleep", "", "", "Argument[0]", "thread-pause", "manual", "thread-resource-abuse"]
       - ["java.util.concurrent", "TimeUnit", True, "sleep", "", "", "Argument[0]", "thread-pause", "manual", "unsafe-url-forward"]
diff --git a/java/ql/lib/ext/experimental/javax.servlet.http.model.yml b/java/ql/lib/ext/experimental/javax.servlet.http.model.yml
index 04098f85f5d..db140149a99 100644
--- a/java/ql/lib/ext/experimental/javax.servlet.http.model.yml
+++ b/java/ql/lib/ext/experimental/javax.servlet.http.model.yml
@@ -1,12 +1,12 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extExperimentalSourceModel
+      extensible: experimentalSourceModel
     data:
       - ["javax.servlet.http", "HttpServletRequest", True, "getServletPath", "", "", "ReturnValue", "remote", "manual", "unsafe-url-forward"]
   - addsTo:
       pack: codeql/java-all
-      extensible: extExperimentalSourceModel
+      extensible: experimentalSourceModel
     data:
       - ["javax.servlet.http", "HttpServletRequest", False, "getPathInfo", "()", "", "ReturnValue", "uri-path", "manual", "permissive-dot-regex-query"]
       - ["javax.servlet.http", "HttpServletRequest", False, "getPathTranslated", "()", "", "ReturnValue", "uri-path", "manual", "permissive-dot-regex-query"]
diff --git a/java/ql/lib/ext/experimental/org.apache.logging.log4j.message.model.yml b/java/ql/lib/ext/experimental/org.apache.logging.log4j.message.model.yml
index 16b401d219d..71839d3abbe 100644
--- a/java/ql/lib/ext/experimental/org.apache.logging.log4j.message.model.yml
+++ b/java/ql/lib/ext/experimental/org.apache.logging.log4j.message.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extExperimentalSummaryModel
+      extensible: experimentalSummaryModel
     data:
       - ["org.apache.logging.log4j.message", "MapMessage", True, "put", "", "", "Argument[1]", "Argument[-1]", "taint", "manual", "log4j-injection"]
       - ["org.apache.logging.log4j.message", "MapMessage", True, "putAll", "", "", "Argument[0].MapValue", "Argument[-1]", "taint", "manual", "log4j-injection"]
diff --git a/java/ql/lib/ext/experimental/org.apache.logging.log4j.model.yml b/java/ql/lib/ext/experimental/org.apache.logging.log4j.model.yml
index 3c8a2867a65..5b196c272fb 100644
--- a/java/ql/lib/ext/experimental/org.apache.logging.log4j.model.yml
+++ b/java/ql/lib/ext/experimental/org.apache.logging.log4j.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extExperimentalSinkModel
+      extensible: experimentalSinkModel
     data:
       - ["org.apache.logging.log4j", "CloseableThreadContext", False, "put", "", "", "Argument[1]", "log4j", "manual", "log4j-injection"]
       - ["org.apache.logging.log4j", "CloseableThreadContext", False, "putAll", "", "", "Argument[0]", "log4j", "manual", "log4j-injection"]
diff --git a/java/ql/lib/ext/experimental/org.springframework.core.io.model.yml b/java/ql/lib/ext/experimental/org.springframework.core.io.model.yml
index 8fc74cd24db..1d4d808cdcd 100644
--- a/java/ql/lib/ext/experimental/org.springframework.core.io.model.yml
+++ b/java/ql/lib/ext/experimental/org.springframework.core.io.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extExperimentalSinkModel
+      extensible: experimentalSinkModel
     data:
       - ["org.springframework.core.io", "ClassPathResource", True, "getFilename", "", "", "Argument[-1]", "get-resource", "manual", "unsafe-url-forward"]
       - ["org.springframework.core.io", "ClassPathResource", True, "getPath", "", "", "Argument[-1]", "get-resource", "manual", "unsafe-url-forward"]
@@ -9,7 +9,7 @@ extensions:
       - ["org.springframework.core.io", "ClassPathResource", True, "resolveURL", "", "", "Argument[-1]", "get-resource", "manual", "unsafe-url-forward"]
   - addsTo:
       pack: codeql/java-all
-      extensible: extExperimentalSummaryModel
+      extensible: experimentalSummaryModel
     data:
       - ["org.springframework.core.io", "ClassPathResource", False, "ClassPathResource", "", "", "Argument[0]", "Argument[-1]", "taint", "manual", "unsafe-url-forward"]
       - ["org.springframework.core.io", "Resource", True, "createRelative", "", "", "Argument[0]", "ReturnValue", "taint", "manual", "unsafe-url-forward"]
diff --git a/java/ql/lib/ext/flexjson.model.yml b/java/ql/lib/ext/flexjson.model.yml
index af35c167d81..59249214262 100644
--- a/java/ql/lib/ext/flexjson.model.yml
+++ b/java/ql/lib/ext/flexjson.model.yml
@@ -1,6 +1,6 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       - ["flexjson", "JSONDeserializer", True, "use", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
diff --git a/java/ql/lib/ext/freemarker.cache.model.yml b/java/ql/lib/ext/freemarker.cache.model.yml
index 031ad7244dd..b65e6386ad6 100644
--- a/java/ql/lib/ext/freemarker.cache.model.yml
+++ b/java/ql/lib/ext/freemarker.cache.model.yml
@@ -1,6 +1,6 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSinkModel
+      extensible: sinkModel
     data:
       - ["freemarker.cache", "StringTemplateLoader", True, "putTemplate", "", "", "Argument[1]", "ssti", "manual"]
diff --git a/java/ql/lib/ext/freemarker.template.model.yml b/java/ql/lib/ext/freemarker.template.model.yml
index 10f90c6ea87..96087a2b9ba 100644
--- a/java/ql/lib/ext/freemarker.template.model.yml
+++ b/java/ql/lib/ext/freemarker.template.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSinkModel
+      extensible: sinkModel
     data:
       - ["freemarker.template", "Template", True, "Template", "(String,Reader)", "", "Argument[1]", "ssti", "manual"]
       - ["freemarker.template", "Template", True, "Template", "(String,Reader,Configuration)", "", "Argument[1]", "ssti", "manual"]
diff --git a/java/ql/lib/ext/generated/kotlinstdlib.model.yml b/java/ql/lib/ext/generated/kotlinstdlib.model.yml
index 4e8a73c048f..be3ee65d162 100644
--- a/java/ql/lib/ext/generated/kotlinstdlib.model.yml
+++ b/java/ql/lib/ext/generated/kotlinstdlib.model.yml
@@ -4,7 +4,7 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSinkModel
+      extensible: sinkModel
     data:
       - ["kotlin.io", "FilesKt", false, "appendBytes", "(File,byte[])", "", "Argument[0]", "create-file", "generated"]
       - ["kotlin.io", "FilesKt", false, "appendText", "(File,String,Charset)", "", "Argument[0]", "create-file", "generated"]
@@ -22,7 +22,7 @@ extensions:
 
   - addsTo:
       pack: codeql/java-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       - ["kotlin.collections", "AbstractCollection", true, "toString", "()", "", "Argument[-1]", "ReturnValue", "taint", "generated"]
       - ["kotlin.collections", "ArrayDeque", false, "ArrayDeque", "(Collection)", "", "Argument[0].Element", "Argument[-1]", "taint", "generated"]
@@ -1861,7 +1861,7 @@ extensions:
 
   - addsTo:
       pack: codeql/java-all
-      extensible: extNeutralModel
+      extensible: neutralModel
     data:
       - ["kotlin.annotation", "AnnotationRetention", "valueOf", "(String)", "generated"]
       - ["kotlin.annotation", "AnnotationRetention", "values", "()", "generated"]
diff --git a/java/ql/lib/ext/generated/org.apache.commons.io.model.yml b/java/ql/lib/ext/generated/org.apache.commons.io.model.yml
index 72ba13247bf..c2b6697d812 100644
--- a/java/ql/lib/ext/generated/org.apache.commons.io.model.yml
+++ b/java/ql/lib/ext/generated/org.apache.commons.io.model.yml
@@ -4,7 +4,7 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSinkModel
+      extensible: sinkModel
     data:
       - ["org.apache.commons.io.file", "PathFilter", true, "accept", "(Path,BasicFileAttributes)", "", "Argument[0]", "create-file", "generated"]
       - ["org.apache.commons.io.file", "PathUtils", false, "copyFile", "(URL,Path,CopyOption[])", "", "Argument[0]", "open-url", "generated"]
@@ -116,7 +116,7 @@ extensions:
 
   - addsTo:
       pack: codeql/java-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       - ["org.apache.commons.io.charset", "CharsetDecoders", true, "toCharsetDecoder", "(CharsetDecoder)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
       - ["org.apache.commons.io.charset", "CharsetEncoders", true, "toCharsetEncoder", "(CharsetEncoder)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
@@ -676,7 +676,7 @@ extensions:
 
   - addsTo:
       pack: codeql/java-all
-      extensible: extNeutralModel
+      extensible: neutralModel
     data:
       - ["org.apache.commons.io.charset", "CharsetDecoders", "CharsetDecoders", "()", "generated"]
       - ["org.apache.commons.io.charset", "CharsetEncoders", "CharsetEncoders", "()", "generated"]
diff --git a/java/ql/lib/ext/groovy.lang.model.yml b/java/ql/lib/ext/groovy.lang.model.yml
index 5299bf55afa..1c775bdd2e5 100644
--- a/java/ql/lib/ext/groovy.lang.model.yml
+++ b/java/ql/lib/ext/groovy.lang.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSinkModel
+      extensible: sinkModel
     data:
       - ["groovy.lang", "GroovyClassLoader", False, "parseClass", "(GroovyCodeSource)", "", "Argument[0]", "groovy", "manual"]
       - ["groovy.lang", "GroovyClassLoader", False, "parseClass", "(GroovyCodeSource,boolean)", "", "Argument[0]", "groovy", "manual"]
diff --git a/java/ql/lib/ext/groovy.util.model.yml b/java/ql/lib/ext/groovy.util.model.yml
index 17b3d10ffae..61d1dbb6a05 100644
--- a/java/ql/lib/ext/groovy.util.model.yml
+++ b/java/ql/lib/ext/groovy.util.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSinkModel
+      extensible: sinkModel
     data:
       - ["groovy.util", "Eval", False, "me", "(String)", "", "Argument[0]", "groovy", "manual"]
       - ["groovy.util", "Eval", False, "me", "(String,Object,String)", "", "Argument[2]", "groovy", "manual"]
diff --git a/java/ql/lib/ext/jakarta.faces.context.model.yml b/java/ql/lib/ext/jakarta.faces.context.model.yml
index 968a15369c9..84a0fd22710 100644
--- a/java/ql/lib/ext/jakarta.faces.context.model.yml
+++ b/java/ql/lib/ext/jakarta.faces.context.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSourceModel
+      extensible: sourceModel
     data:
       - ["jakarta.faces.context", "ExternalContext", True, "getRequestCookieMap", "()", "", "ReturnValue", "remote", "manual"]
       - ["jakarta.faces.context", "ExternalContext", True, "getRequestHeaderMap", "()", "", "ReturnValue", "remote", "manual"]
@@ -12,7 +12,7 @@ extensions:
       - ["jakarta.faces.context", "ExternalContext", True, "getRequestPathInfo", "()", "", "ReturnValue", "remote", "manual"]
   - addsTo:
       pack: codeql/java-all
-      extensible: extSinkModel
+      extensible: sinkModel
     data:
       - ["jakarta.faces.context", "ResponseStream", True, "write", "", "", "Argument[0]", "xss", "manual"]
       - ["jakarta.faces.context", "ResponseWriter", True, "write", "", "", "Argument[0]", "xss", "manual"]
diff --git a/java/ql/lib/ext/jakarta.json.model.yml b/java/ql/lib/ext/jakarta.json.model.yml
index 40c2a465fa6..3d4d35ca4f0 100644
--- a/java/ql/lib/ext/jakarta.json.model.yml
+++ b/java/ql/lib/ext/jakarta.json.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       - ["jakarta.json", "Json", False, "createArrayBuilder", "(Collection)", "", "Argument[0].Element", "ReturnValue", "taint", "manual"]
       - ["jakarta.json", "Json", False, "createArrayBuilder", "(JsonArray)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
diff --git a/java/ql/lib/ext/jakarta.json.stream.model.yml b/java/ql/lib/ext/jakarta.json.stream.model.yml
index 1d8a0f2532a..cc6386121d5 100644
--- a/java/ql/lib/ext/jakarta.json.stream.model.yml
+++ b/java/ql/lib/ext/jakarta.json.stream.model.yml
@@ -1,6 +1,6 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       - ["jakarta.json.stream", "JsonParserFactory", False, "createParser", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
diff --git a/java/ql/lib/ext/jakarta.ws.rs.client.model.yml b/java/ql/lib/ext/jakarta.ws.rs.client.model.yml
index 37ec5916e86..821ea0ad640 100644
--- a/java/ql/lib/ext/jakarta.ws.rs.client.model.yml
+++ b/java/ql/lib/ext/jakarta.ws.rs.client.model.yml
@@ -1,6 +1,6 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSinkModel
+      extensible: sinkModel
     data:
       - ["jakarta.ws.rs.client", "Client", True, "target", "", "", "Argument[0]", "open-url", "manual"]
diff --git a/java/ql/lib/ext/jakarta.ws.rs.container.model.yml b/java/ql/lib/ext/jakarta.ws.rs.container.model.yml
index ac3be002e11..05ccfd62000 100644
--- a/java/ql/lib/ext/jakarta.ws.rs.container.model.yml
+++ b/java/ql/lib/ext/jakarta.ws.rs.container.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSourceModel
+      extensible: sourceModel
     data:
       - ["jakarta.ws.rs.container", "ContainerRequestContext", True, "getAcceptableLanguages", "", "", "ReturnValue", "remote", "manual"]
       - ["jakarta.ws.rs.container", "ContainerRequestContext", True, "getAcceptableMediaTypes", "", "", "ReturnValue", "remote", "manual"]
diff --git a/java/ql/lib/ext/jakarta.ws.rs.core.model.yml b/java/ql/lib/ext/jakarta.ws.rs.core.model.yml
index 44c8ed66881..593128bd953 100644
--- a/java/ql/lib/ext/jakarta.ws.rs.core.model.yml
+++ b/java/ql/lib/ext/jakarta.ws.rs.core.model.yml
@@ -1,13 +1,13 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSinkModel
+      extensible: sinkModel
     data:
       - ["jakarta.ws.rs.core", "Response", True, "seeOther", "", "", "Argument[0]", "url-redirect", "manual"]
       - ["jakarta.ws.rs.core", "Response", True, "temporaryRedirect", "", "", "Argument[0]", "url-redirect", "manual"]
   - addsTo:
       pack: codeql/java-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       - ["jakarta.ws.rs.core", "AbstractMultivaluedMap", False, "AbstractMultivaluedMap", "", "", "Argument[0].MapKey", "Argument[-1].MapKey", "value", "manual"]
       - ["jakarta.ws.rs.core", "AbstractMultivaluedMap", False, "AbstractMultivaluedMap", "", "", "Argument[0].MapValue", "Argument[-1].MapValue", "value", "manual"]
diff --git a/java/ql/lib/ext/java.beans.model.yml b/java/ql/lib/ext/java.beans.model.yml
index 155d1348c35..0d24c372fb0 100644
--- a/java/ql/lib/ext/java.beans.model.yml
+++ b/java/ql/lib/ext/java.beans.model.yml
@@ -1,6 +1,6 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       - ["java.beans", "XMLDecoder", False, "XMLDecoder", "", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
diff --git a/java/ql/lib/ext/java.io.model.yml b/java/ql/lib/ext/java.io.model.yml
index 33a4e04628d..87d6c6311e7 100644
--- a/java/ql/lib/ext/java.io.model.yml
+++ b/java/ql/lib/ext/java.io.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSinkModel
+      extensible: sinkModel
     data:
       - ["java.io", "FileOutputStream", False, "FileOutputStream", "", "", "Argument[0]", "create-file", "manual"]
       - ["java.io", "FileOutputStream", False, "write", "", "", "Argument[0]", "write-file", "manual"]
@@ -42,7 +42,7 @@ extensions:
       - ["java.io", "Writer", True, "write", "", "", "Argument[0]", "write-file", "manual"]
   - addsTo:
       pack: codeql/java-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       - ["java.io", "BufferedInputStream", False, "BufferedInputStream", "", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
       - ["java.io", "BufferedReader", False, "BufferedReader", "", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
diff --git a/java/ql/lib/ext/java.lang.model.yml b/java/ql/lib/ext/java.lang.model.yml
index 679a99b3e3d..5ec7a1bba7a 100644
--- a/java/ql/lib/ext/java.lang.model.yml
+++ b/java/ql/lib/ext/java.lang.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSinkModel
+      extensible: sinkModel
     data:
       - ["java.lang", "String", False, "matches", "(String)", "", "Argument[0]", "regex-use[f-1]", "manual"]
       - ["java.lang", "String", False, "replaceAll", "(String,String)", "", "Argument[0]", "regex-use[-1]", "manual"]
@@ -18,7 +18,7 @@ extensions:
       - ["java.lang", "System$Logger", True, "log", "(Level,String,Throwable)", "", "Argument[1]", "logging", "manual"]
   - addsTo:
       pack: codeql/java-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       - ["java.lang", "AbstractStringBuilder", True, "AbstractStringBuilder", "(String)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
       - ["java.lang", "AbstractStringBuilder", True, "append", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
diff --git a/java/ql/lib/ext/java.net.http.model.yml b/java/ql/lib/ext/java.net.http.model.yml
index fa1222d2e28..d967f46494b 100644
--- a/java/ql/lib/ext/java.net.http.model.yml
+++ b/java/ql/lib/ext/java.net.http.model.yml
@@ -1,12 +1,12 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSourceModel
+      extensible: sourceModel
     data:
       - ["java.net.http", "WebSocket$Listener", True, "onText", "(WebSocket,CharSequence,boolean)", "", "Parameter[1]", "remote", "manual"]
   - addsTo:
       pack: codeql/java-all
-      extensible: extSinkModel
+      extensible: sinkModel
     data:
       - ["java.net.http", "HttpRequest", False, "newBuilder", "", "", "Argument[0]", "open-url", "manual"]
       - ["java.net.http", "HttpRequest$Builder", False, "uri", "", "", "Argument[0]", "open-url", "manual"]
diff --git a/java/ql/lib/ext/java.net.model.yml b/java/ql/lib/ext/java.net.model.yml
index 7042a3e280f..2c153b37a05 100644
--- a/java/ql/lib/ext/java.net.model.yml
+++ b/java/ql/lib/ext/java.net.model.yml
@@ -1,13 +1,13 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSourceModel
+      extensible: sourceModel
     data:
       - ["java.net", "Socket", False, "getInputStream", "()", "", "ReturnValue", "remote", "manual"]
       - ["java.net", "URLConnection", False, "getInputStream", "()", "", "ReturnValue", "remote", "manual"]
   - addsTo:
       pack: codeql/java-all
-      extensible: extSinkModel
+      extensible: sinkModel
     data:
       - ["java.net", "URL", False, "openConnection", "", "", "Argument[-1]", "open-url", "manual"]
       - ["java.net", "URL", False, "openStream", "", "", "Argument[-1]", "open-url", "manual"]
@@ -19,7 +19,7 @@ extensions:
       - ["java.net", "URLClassLoader", False, "newInstance", "", "", "Argument[0]", "open-url", "manual"]
   - addsTo:
       pack: codeql/java-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       - ["java.net", "URI", False, "URI", "(String)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
       - ["java.net", "URI", False, "create", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
diff --git a/java/ql/lib/ext/java.nio.channels.model.yml b/java/ql/lib/ext/java.nio.channels.model.yml
index 0e7081567a6..e6b3e301bdf 100644
--- a/java/ql/lib/ext/java.nio.channels.model.yml
+++ b/java/ql/lib/ext/java.nio.channels.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       - ["java.nio.channels", "Channels", False, "newChannel", "(InputStream)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
       - ["java.nio.channels", "ReadableByteChannel", True, "read", "(ByteBuffer)", "", "Argument[-1]", "Argument[0]", "taint", "manual"]
diff --git a/java/ql/lib/ext/java.nio.file.model.yml b/java/ql/lib/ext/java.nio.file.model.yml
index 43c19fedbff..129bf048b96 100644
--- a/java/ql/lib/ext/java.nio.file.model.yml
+++ b/java/ql/lib/ext/java.nio.file.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSinkModel
+      extensible: sinkModel
     data:
       - ["java.nio.file", "Files", False, "copy", "", "", "Argument[1]", "create-file", "manual"]
       - ["java.nio.file", "Files", False, "createDirectories", "", "", "Argument[0]", "create-file", "manual"]
@@ -20,7 +20,7 @@ extensions:
       - ["java.nio.file", "Files", False, "writeString", "", "", "Argument[1]", "write-file", "manual"]
   - addsTo:
       pack: codeql/java-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       - ["java.nio.file", "FileSystem", True, "getPath", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
       - ["java.nio.file", "FileSystem", True, "getRootDirectories", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
diff --git a/java/ql/lib/ext/java.nio.model.yml b/java/ql/lib/ext/java.nio.model.yml
index 7864355b4c5..ad03fbe2371 100644
--- a/java/ql/lib/ext/java.nio.model.yml
+++ b/java/ql/lib/ext/java.nio.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       - ["java.nio", "ByteBuffer", False, "array", "()", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
       - ["java.nio", "ByteBuffer", False, "get", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
diff --git a/java/ql/lib/ext/java.sql.model.yml b/java/ql/lib/ext/java.sql.model.yml
index 944981e2094..e7017ebd40a 100644
--- a/java/ql/lib/ext/java.sql.model.yml
+++ b/java/ql/lib/ext/java.sql.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSinkModel
+      extensible: sinkModel
     data:
       - ["java.sql", "Connection", True, "prepareCall", "", "", "Argument[0]", "sql", "manual"]
       - ["java.sql", "Connection", True, "prepareStatement", "", "", "Argument[0]", "sql", "manual"]
diff --git a/java/ql/lib/ext/java.util.concurrent.model.yml b/java/ql/lib/ext/java.util.concurrent.model.yml
index ba34d7e8fea..9c202220dde 100644
--- a/java/ql/lib/ext/java.util.concurrent.model.yml
+++ b/java/ql/lib/ext/java.util.concurrent.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       - ["java.util.concurrent", "BlockingDeque", True, "offerFirst", "(Object,long,TimeUnit)", "", "Argument[0]", "Argument[-1].Element", "value", "manual"]
       - ["java.util.concurrent", "BlockingDeque", True, "offerLast", "(Object,long,TimeUnit)", "", "Argument[0]", "Argument[-1].Element", "value", "manual"]
diff --git a/java/ql/lib/ext/java.util.function.model.yml b/java/ql/lib/ext/java.util.function.model.yml
index b95a50d5119..9a608462a92 100644
--- a/java/ql/lib/ext/java.util.function.model.yml
+++ b/java/ql/lib/ext/java.util.function.model.yml
@@ -1,6 +1,6 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSinkModel
+      extensible: sinkModel
     data:
       - ["java.util.function", "Predicate", False, "test", "(Object)", "", "Argument[-1]", "regex-use[0]", "manual"]
diff --git a/java/ql/lib/ext/java.util.logging.model.yml b/java/ql/lib/ext/java.util.logging.model.yml
index 6e90734ae07..4f96b8f28ee 100644
--- a/java/ql/lib/ext/java.util.logging.model.yml
+++ b/java/ql/lib/ext/java.util.logging.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSinkModel
+      extensible: sinkModel
     data:
       - ["java.util.logging", "Logger", True, "config", "", "", "Argument[0]", "logging", "manual"]
       - ["java.util.logging", "Logger", True, "entering", "(String,String)", "", "Argument[0..1]", "logging", "manual"]
@@ -39,6 +39,6 @@ extensions:
       - ["java.util.logging", "Logger", True, "warning", "", "", "Argument[0]", "logging", "manual"]
   - addsTo:
       pack: codeql/java-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       - ["java.util.logging", "LogRecord", False, "LogRecord", "", "", "Argument[1]", "Argument[-1]", "taint", "manual"]
diff --git a/java/ql/lib/ext/java.util.model.yml b/java/ql/lib/ext/java.util.model.yml
index 787f0d355be..38368d87bf4 100644
--- a/java/ql/lib/ext/java.util.model.yml
+++ b/java/ql/lib/ext/java.util.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       - ["java.util", "AbstractMap$SimpleEntry", False, "SimpleEntry", "(Entry)", "", "Argument[0].MapKey", "Argument[-1].MapKey", "value", "manual"]
       - ["java.util", "AbstractMap$SimpleEntry", False, "SimpleEntry", "(Entry)", "", "Argument[0].MapValue", "Argument[-1].MapValue", "value", "manual"]
diff --git a/java/ql/lib/ext/java.util.regex.model.yml b/java/ql/lib/ext/java.util.regex.model.yml
index b5c329e7a60..79f50e55e9d 100644
--- a/java/ql/lib/ext/java.util.regex.model.yml
+++ b/java/ql/lib/ext/java.util.regex.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSinkModel
+      extensible: sinkModel
     data:
       - ["java.util.regex", "Matcher", False, "matches", "()", "", "Argument[-1]", "regex-use[f]", "manual"]
       - ["java.util.regex", "Pattern", False, "asMatchPredicate", "()", "", "Argument[-1]", "regex-use[f]", "manual"]
@@ -14,7 +14,7 @@ extensions:
       - ["java.util.regex", "Pattern", False, "splitAsStream", "(CharSequence)", "", "Argument[-1]", "regex-use[0]", "manual"]
   - addsTo:
       pack: codeql/java-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       - ["java.util.regex", "Matcher", False, "group", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
       - ["java.util.regex", "Matcher", False, "replaceAll", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
diff --git a/java/ql/lib/ext/java.util.stream.model.yml b/java/ql/lib/ext/java.util.stream.model.yml
index ae453444faf..4ce3812336e 100644
--- a/java/ql/lib/ext/java.util.stream.model.yml
+++ b/java/ql/lib/ext/java.util.stream.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       - ["java.util.stream", "BaseStream", True, "iterator", "()", "", "Argument[-1].Element", "ReturnValue.Element", "value", "manual"]
       - ["java.util.stream", "BaseStream", True, "onClose", "(Runnable)", "", "Argument[-1].Element", "ReturnValue.Element", "value", "manual"]
diff --git a/java/ql/lib/ext/java.util.zip.model.yml b/java/ql/lib/ext/java.util.zip.model.yml
index a65be51a58c..fd9c0173016 100644
--- a/java/ql/lib/ext/java.util.zip.model.yml
+++ b/java/ql/lib/ext/java.util.zip.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       - ["java.util.zip", "GZIPInputStream", False, "GZIPInputStream", "", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
       - ["java.util.zip", "ZipInputStream", False, "ZipInputStream", "", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
diff --git a/java/ql/lib/ext/javax.faces.context.model.yml b/java/ql/lib/ext/javax.faces.context.model.yml
index b3d9af75ef6..ad33971c2c3 100644
--- a/java/ql/lib/ext/javax.faces.context.model.yml
+++ b/java/ql/lib/ext/javax.faces.context.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSourceModel
+      extensible: sourceModel
     data:
       - ["javax.faces.context", "ExternalContext", True, "getRequestCookieMap", "()", "", "ReturnValue", "remote", "manual"]
       - ["javax.faces.context", "ExternalContext", True, "getRequestHeaderMap", "()", "", "ReturnValue", "remote", "manual"]
@@ -12,7 +12,7 @@ extensions:
       - ["javax.faces.context", "ExternalContext", True, "getRequestPathInfo", "()", "", "ReturnValue", "remote", "manual"]
   - addsTo:
       pack: codeql/java-all
-      extensible: extSinkModel
+      extensible: sinkModel
     data:
       - ["javax.faces.context", "ResponseStream", True, "write", "", "", "Argument[0]", "xss", "manual"]
       - ["javax.faces.context", "ResponseWriter", True, "write", "", "", "Argument[0]", "xss", "manual"]
diff --git a/java/ql/lib/ext/javax.jms.model.yml b/java/ql/lib/ext/javax.jms.model.yml
index 9ccf3e7a379..fed2a255ebd 100644
--- a/java/ql/lib/ext/javax.jms.model.yml
+++ b/java/ql/lib/ext/javax.jms.model.yml
@@ -6,7 +6,7 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSourceModel
+      extensible: sourceModel
     data:
       - ["javax.jms", "JMSConsumer", True, "receive", "", "", "ReturnValue", "remote", "manual"]
       - ["javax.jms", "JMSConsumer", True, "receiveBody", "", "", "ReturnValue", "remote", "manual"]
@@ -19,7 +19,7 @@ extensions:
       - ["javax.jms", "TopicRequestor", True, "request", "(Message)", "", "ReturnValue", "remote", "manual"]
   - addsTo:
       pack: codeql/java-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       - ["javax.jms", "BytesMessage", True, "readBoolean", "()", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
       - ["javax.jms", "BytesMessage", True, "readByte", "()", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
diff --git a/java/ql/lib/ext/javax.json.model.yml b/java/ql/lib/ext/javax.json.model.yml
index 2771ce69f6b..47deffe31b9 100644
--- a/java/ql/lib/ext/javax.json.model.yml
+++ b/java/ql/lib/ext/javax.json.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       - ["javax.json", "Json", False, "createArrayBuilder", "(Collection)", "", "Argument[0].Element", "ReturnValue", "taint", "manual"]
       - ["javax.json", "Json", False, "createArrayBuilder", "(JsonArray)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
diff --git a/java/ql/lib/ext/javax.json.stream.model.yml b/java/ql/lib/ext/javax.json.stream.model.yml
index f354b3bed5b..77d564bfb69 100644
--- a/java/ql/lib/ext/javax.json.stream.model.yml
+++ b/java/ql/lib/ext/javax.json.stream.model.yml
@@ -1,6 +1,6 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       - ["javax.json.stream", "JsonParserFactory", False, "createParser", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
diff --git a/java/ql/lib/ext/javax.management.remote.model.yml b/java/ql/lib/ext/javax.management.remote.model.yml
index da3ab68968c..3751017d4e6 100644
--- a/java/ql/lib/ext/javax.management.remote.model.yml
+++ b/java/ql/lib/ext/javax.management.remote.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSinkModel
+      extensible: sinkModel
     data:
       - ["javax.management.remote", "JMXConnector", True, "connect", "", "", "Argument[-1]", "jndi-injection", "manual"]
       - ["javax.management.remote", "JMXConnectorFactory", False, "connect", "", "", "Argument[0]", "jndi-injection", "manual"]
diff --git a/java/ql/lib/ext/javax.naming.directory.model.yml b/java/ql/lib/ext/javax.naming.directory.model.yml
index d4ff18a773c..bb350a084cb 100644
--- a/java/ql/lib/ext/javax.naming.directory.model.yml
+++ b/java/ql/lib/ext/javax.naming.directory.model.yml
@@ -1,6 +1,6 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSinkModel
+      extensible: sinkModel
     data:
       - ["javax.naming.directory", "DirContext", True, "search", "", "", "Argument[0..1]", "ldap", "manual"]
diff --git a/java/ql/lib/ext/javax.naming.model.yml b/java/ql/lib/ext/javax.naming.model.yml
index 7a29b0640a6..c55f76557d6 100644
--- a/java/ql/lib/ext/javax.naming.model.yml
+++ b/java/ql/lib/ext/javax.naming.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSinkModel
+      extensible: sinkModel
     data:
       - ["javax.naming", "Context", True, "list", "", "", "Argument[0]", "jndi-injection", "manual"]
       - ["javax.naming", "Context", True, "listBindings", "", "", "Argument[0]", "jndi-injection", "manual"]
diff --git a/java/ql/lib/ext/javax.net.ssl.model.yml b/java/ql/lib/ext/javax.net.ssl.model.yml
index f0b7b516595..7cbed92c184 100644
--- a/java/ql/lib/ext/javax.net.ssl.model.yml
+++ b/java/ql/lib/ext/javax.net.ssl.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSinkModel
+      extensible: sinkModel
     data:
       - ["javax.net.ssl", "HttpsURLConnection", True, "setDefaultHostnameVerifier", "", "", "Argument[0]", "set-hostname-verifier", "manual"]
       - ["javax.net.ssl", "HttpsURLConnection", True, "setHostnameVerifier", "", "", "Argument[0]", "set-hostname-verifier", "manual"]
diff --git a/java/ql/lib/ext/javax.script.model.yml b/java/ql/lib/ext/javax.script.model.yml
index 675055758e1..1ca0311906a 100644
--- a/java/ql/lib/ext/javax.script.model.yml
+++ b/java/ql/lib/ext/javax.script.model.yml
@@ -1,6 +1,6 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSinkModel
+      extensible: sinkModel
     data:
       - ["javax.script", "CompiledScript", False, "eval", "", "", "Argument[-1]", "mvel", "manual"]
diff --git a/java/ql/lib/ext/javax.servlet.http.model.yml b/java/ql/lib/ext/javax.servlet.http.model.yml
index 469424e4021..9833d356835 100644
--- a/java/ql/lib/ext/javax.servlet.http.model.yml
+++ b/java/ql/lib/ext/javax.servlet.http.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSourceModel
+      extensible: sourceModel
     data:
       - ["javax.servlet.http", "Cookie", False, "getComment", "()", "", "ReturnValue", "remote", "manual"]
       - ["javax.servlet.http", "Cookie", False, "getName", "()", "", "ReturnValue", "remote", "manual"]
@@ -20,7 +20,7 @@ extensions:
       - ["javax.servlet.http", "HttpServletRequest", False, "getRequestURL", "()", "", "ReturnValue", "remote", "manual"]
   - addsTo:
       pack: codeql/java-all
-      extensible: extSinkModel
+      extensible: sinkModel
     data:
       - ["javax.servlet.http", "HttpServletResponse", False, "addCookie", "", "", "Argument[0]", "header-splitting", "manual"]
       - ["javax.servlet.http", "HttpServletResponse", False, "addHeader", "", "", "Argument[0..1]", "header-splitting", "manual"]
@@ -28,7 +28,7 @@ extensions:
       - ["javax.servlet.http", "HttpServletResponse", False, "setHeader", "", "", "Argument[0..1]", "header-splitting", "manual"]
   - addsTo:
       pack: codeql/java-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       - ["javax.servlet.http", "Cookie", False, "Cookie", "", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
       - ["javax.servlet.http", "Cookie", False, "Cookie", "", "", "Argument[1]", "Argument[-1]", "taint", "manual"]
diff --git a/java/ql/lib/ext/javax.servlet.model.yml b/java/ql/lib/ext/javax.servlet.model.yml
index accfa736f82..ba850941729 100644
--- a/java/ql/lib/ext/javax.servlet.model.yml
+++ b/java/ql/lib/ext/javax.servlet.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSourceModel
+      extensible: sourceModel
     data:
       - ["javax.servlet", "ServletRequest", False, "getInputStream", "()", "", "ReturnValue", "remote", "manual"]
       - ["javax.servlet", "ServletRequest", False, "getParameter", "(String)", "", "ReturnValue", "remote", "manual"]
diff --git a/java/ql/lib/ext/javax.validation.model.yml b/java/ql/lib/ext/javax.validation.model.yml
index 464b95dfb11..2f1f3d9a75c 100644
--- a/java/ql/lib/ext/javax.validation.model.yml
+++ b/java/ql/lib/ext/javax.validation.model.yml
@@ -1,11 +1,11 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSourceModel
+      extensible: sourceModel
     data:
       - ["javax.validation", "ConstraintValidator", True, "isValid", "", "", "Parameter[0]", "remote", "manual"]
   - addsTo:
       pack: codeql/java-all
-      extensible: extSinkModel
+      extensible: sinkModel
     data:
       - ["javax.validation", "ConstraintValidatorContext", True, "buildConstraintViolationWithTemplate", "", "", "Argument[0]", "bean-validation", "manual"]
diff --git a/java/ql/lib/ext/javax.ws.rs.client.model.yml b/java/ql/lib/ext/javax.ws.rs.client.model.yml
index b2fb8b75ad0..0a5a01c3338 100644
--- a/java/ql/lib/ext/javax.ws.rs.client.model.yml
+++ b/java/ql/lib/ext/javax.ws.rs.client.model.yml
@@ -1,6 +1,6 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSinkModel
+      extensible: sinkModel
     data:
       - ["javax.ws.rs.client", "Client", True, "target", "", "", "Argument[0]", "open-url", "manual"]
diff --git a/java/ql/lib/ext/javax.ws.rs.container.model.yml b/java/ql/lib/ext/javax.ws.rs.container.model.yml
index 1277c14a663..a76f848a597 100644
--- a/java/ql/lib/ext/javax.ws.rs.container.model.yml
+++ b/java/ql/lib/ext/javax.ws.rs.container.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSourceModel
+      extensible: sourceModel
     data:
       - ["javax.ws.rs.container", "ContainerRequestContext", True, "getAcceptableLanguages", "", "", "ReturnValue", "remote", "manual"]
       - ["javax.ws.rs.container", "ContainerRequestContext", True, "getAcceptableMediaTypes", "", "", "ReturnValue", "remote", "manual"]
diff --git a/java/ql/lib/ext/javax.ws.rs.core.model.yml b/java/ql/lib/ext/javax.ws.rs.core.model.yml
index 3c1611970f9..c7fb603d3c4 100644
--- a/java/ql/lib/ext/javax.ws.rs.core.model.yml
+++ b/java/ql/lib/ext/javax.ws.rs.core.model.yml
@@ -1,14 +1,14 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSinkModel
+      extensible: sinkModel
     data:
       - ["javax.ws.rs.core", "Response", True, "seeOther", "", "", "Argument[0]", "url-redirect", "manual"]
       - ["javax.ws.rs.core", "Response", True, "temporaryRedirect", "", "", "Argument[0]", "url-redirect", "manual"]
       - ["javax.ws.rs.core", "ResponseBuilder", False, "header", "", "", "Argument[1]", "header-splitting", "manual"]
   - addsTo:
       pack: codeql/java-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       - ["javax.ws.rs.core", "AbstractMultivaluedMap", False, "AbstractMultivaluedMap", "", "", "Argument[0].MapKey", "Argument[-1].MapKey", "value", "manual"]
       - ["javax.ws.rs.core", "AbstractMultivaluedMap", False, "AbstractMultivaluedMap", "", "", "Argument[0].MapValue", "Argument[-1].MapValue", "value", "manual"]
diff --git a/java/ql/lib/ext/javax.xml.transform.model.yml b/java/ql/lib/ext/javax.xml.transform.model.yml
index 2032ecac6d6..d9123a46fc7 100644
--- a/java/ql/lib/ext/javax.xml.transform.model.yml
+++ b/java/ql/lib/ext/javax.xml.transform.model.yml
@@ -1,6 +1,6 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSinkModel
+      extensible: sinkModel
     data:
       - ["javax.xml.transform", "Transformer", False, "transform", "", "", "Argument[-1]", "xslt", "manual"]
diff --git a/java/ql/lib/ext/javax.xml.transform.sax.model.yml b/java/ql/lib/ext/javax.xml.transform.sax.model.yml
index 33765c1678f..90d583b5116 100644
--- a/java/ql/lib/ext/javax.xml.transform.sax.model.yml
+++ b/java/ql/lib/ext/javax.xml.transform.sax.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       - ["javax.xml.transform.sax", "SAXSource", False, "SAXSource", "(InputSource)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
       - ["javax.xml.transform.sax", "SAXSource", False, "SAXSource", "(XMLReader,InputSource)", "", "Argument[1]", "Argument[-1]", "taint", "manual"]
diff --git a/java/ql/lib/ext/javax.xml.transform.stream.model.yml b/java/ql/lib/ext/javax.xml.transform.stream.model.yml
index 858fbb0ab5a..5098f9badfc 100644
--- a/java/ql/lib/ext/javax.xml.transform.stream.model.yml
+++ b/java/ql/lib/ext/javax.xml.transform.stream.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       - ["javax.xml.transform.stream", "StreamSource", False, "StreamSource", "", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
       - ["javax.xml.transform.stream", "StreamSource", False, "getInputStream", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
diff --git a/java/ql/lib/ext/javax.xml.xpath.model.yml b/java/ql/lib/ext/javax.xml.xpath.model.yml
index 24be66eb8e9..68f51a34a2e 100644
--- a/java/ql/lib/ext/javax.xml.xpath.model.yml
+++ b/java/ql/lib/ext/javax.xml.xpath.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSinkModel
+      extensible: sinkModel
     data:
       - ["javax.xml.xpath", "XPath", True, "compile", "", "", "Argument[0]", "xpath", "manual"]
       - ["javax.xml.xpath", "XPath", True, "evaluate", "", "", "Argument[0]", "xpath", "manual"]
diff --git a/java/ql/lib/ext/jodd.json.model.yml b/java/ql/lib/ext/jodd.json.model.yml
index 6187110797d..cf8005bf909 100644
--- a/java/ql/lib/ext/jodd.json.model.yml
+++ b/java/ql/lib/ext/jodd.json.model.yml
@@ -7,7 +7,7 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       - ["jodd.json", "JsonParser", False, "allowAllClasses", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
       - ["jodd.json", "JsonParser", False, "allowClass", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
diff --git a/java/ql/lib/ext/kotlin.collections.model.yml b/java/ql/lib/ext/kotlin.collections.model.yml
index 8336bff3b0a..b854230b9c3 100644
--- a/java/ql/lib/ext/kotlin.collections.model.yml
+++ b/java/ql/lib/ext/kotlin.collections.model.yml
@@ -1,6 +1,6 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       - ["kotlin.collections", "ArraysKt", False, "withIndex", "(Object[])", "", "Argument[0].ArrayElement", "ReturnValue", "taint", "manual"]
diff --git a/java/ql/lib/ext/kotlin.jvm.internal.model.yml b/java/ql/lib/ext/kotlin.jvm.internal.model.yml
index 40a6b605a53..413642bbeee 100644
--- a/java/ql/lib/ext/kotlin.jvm.internal.model.yml
+++ b/java/ql/lib/ext/kotlin.jvm.internal.model.yml
@@ -1,6 +1,6 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       - ["kotlin.jvm.internal", "ArrayIteratorKt", False, "iterator", "(Object[])", "", "Argument[0].ArrayElement", "ReturnValue.Element", "value", "manual"]
diff --git a/java/ql/lib/ext/net.sf.saxon.s9api.model.yml b/java/ql/lib/ext/net.sf.saxon.s9api.model.yml
index 7b64bdade8c..cbe916fd018 100644
--- a/java/ql/lib/ext/net.sf.saxon.s9api.model.yml
+++ b/java/ql/lib/ext/net.sf.saxon.s9api.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSinkModel
+      extensible: sinkModel
     data:
       - ["net.sf.saxon.s9api", "Xslt30Transformer", False, "applyTemplates", "", "", "Argument[-1]", "xslt", "manual"]
       - ["net.sf.saxon.s9api", "Xslt30Transformer", False, "callFunction", "", "", "Argument[-1]", "xslt", "manual"]
diff --git a/java/ql/lib/ext/ognl.enhance.model.yml b/java/ql/lib/ext/ognl.enhance.model.yml
index c3f49d72897..6e3a27f34ae 100644
--- a/java/ql/lib/ext/ognl.enhance.model.yml
+++ b/java/ql/lib/ext/ognl.enhance.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSinkModel
+      extensible: sinkModel
     data:
       - ["ognl.enhance", "ExpressionAccessor", True, "get", "", "", "Argument[-1]", "ognl-injection", "manual"]
       - ["ognl.enhance", "ExpressionAccessor", True, "set", "", "", "Argument[-1]", "ognl-injection", "manual"]
diff --git a/java/ql/lib/ext/ognl.model.yml b/java/ql/lib/ext/ognl.model.yml
index 133fc36b410..23de976ef98 100644
--- a/java/ql/lib/ext/ognl.model.yml
+++ b/java/ql/lib/ext/ognl.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSinkModel
+      extensible: sinkModel
     data:
       - ["ognl", "Node", False, "getValue", "", "", "Argument[-1]", "ognl-injection", "manual"]
       - ["ognl", "Node", False, "setValue", "", "", "Argument[-1]", "ognl-injection", "manual"]
diff --git a/java/ql/lib/ext/okhttp3.model.yml b/java/ql/lib/ext/okhttp3.model.yml
index 1c9032c9211..7e8459daedc 100644
--- a/java/ql/lib/ext/okhttp3.model.yml
+++ b/java/ql/lib/ext/okhttp3.model.yml
@@ -1,13 +1,13 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSinkModel
+      extensible: sinkModel
     data:
       - ["okhttp3", "Request", True, "Request", "", "", "Argument[0]", "open-url", "manual"]
       - ["okhttp3", "Request$Builder", True, "url", "", "", "Argument[0]", "open-url", "manual"]
   - addsTo:
       pack: codeql/java-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       - ["okhttp3", "HttpUrl", False, "parse", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
       - ["okhttp3", "HttpUrl", False, "uri", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
diff --git a/java/ql/lib/ext/org.apache.commons.codec.model.yml b/java/ql/lib/ext/org.apache.commons.codec.model.yml
index 963aa6ce843..78d41e6e273 100644
--- a/java/ql/lib/ext/org.apache.commons.codec.model.yml
+++ b/java/ql/lib/ext/org.apache.commons.codec.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       - ["org.apache.commons.codec", "BinaryDecoder", True, "decode", "(byte[])", "", "Argument[0]", "ReturnValue", "taint", "manual"]
       - ["org.apache.commons.codec", "BinaryEncoder", True, "encode", "(byte[])", "", "Argument[0]", "ReturnValue", "taint", "manual"]
diff --git a/java/ql/lib/ext/org.apache.commons.collections.bag.model.yml b/java/ql/lib/ext/org.apache.commons.collections.bag.model.yml
index 55ab021d9ff..64994a3567c 100644
--- a/java/ql/lib/ext/org.apache.commons.collections.bag.model.yml
+++ b/java/ql/lib/ext/org.apache.commons.collections.bag.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       # Note that when lambdas are supported we should have more models for TransformedBag, TransformedSortedBag
       - ["org.apache.commons.collections.bag", "AbstractBagDecorator", True, "AbstractBagDecorator", "", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
diff --git a/java/ql/lib/ext/org.apache.commons.collections.bidimap.model.yml b/java/ql/lib/ext/org.apache.commons.collections.bidimap.model.yml
index c47f56654b9..067219984bf 100644
--- a/java/ql/lib/ext/org.apache.commons.collections.bidimap.model.yml
+++ b/java/ql/lib/ext/org.apache.commons.collections.bidimap.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       - ["org.apache.commons.collections.bidimap", "AbstractBidiMapDecorator", True, "AbstractBidiMapDecorator", "", "", "Argument[0].MapKey", "Argument[-1].MapKey", "value", "manual"]
       - ["org.apache.commons.collections.bidimap", "AbstractBidiMapDecorator", True, "AbstractBidiMapDecorator", "", "", "Argument[0].MapValue", "Argument[-1].MapValue", "value", "manual"]
diff --git a/java/ql/lib/ext/org.apache.commons.collections.collection.model.yml b/java/ql/lib/ext/org.apache.commons.collections.collection.model.yml
index a2cdd0a2d80..ce1caf3d473 100644
--- a/java/ql/lib/ext/org.apache.commons.collections.collection.model.yml
+++ b/java/ql/lib/ext/org.apache.commons.collections.collection.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       # Note that when lambdas are supported we should have more models for TransformedCollection
       - ["org.apache.commons.collections.collection", "AbstractCollectionDecorator", True, "AbstractCollectionDecorator", "", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
diff --git a/java/ql/lib/ext/org.apache.commons.collections.iterators.model.yml b/java/ql/lib/ext/org.apache.commons.collections.iterators.model.yml
index d65fc0e6f93..73509f98b1a 100644
--- a/java/ql/lib/ext/org.apache.commons.collections.iterators.model.yml
+++ b/java/ql/lib/ext/org.apache.commons.collections.iterators.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       # Note that when lambdas are supported we should have more models for TransformIterator
       - ["org.apache.commons.collections.iterators", "AbstractIteratorDecorator", True, "AbstractIteratorDecorator", "", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
diff --git a/java/ql/lib/ext/org.apache.commons.collections.keyvalue.model.yml b/java/ql/lib/ext/org.apache.commons.collections.keyvalue.model.yml
index 9c7e0fd4bca..d2c3e5652b5 100644
--- a/java/ql/lib/ext/org.apache.commons.collections.keyvalue.model.yml
+++ b/java/ql/lib/ext/org.apache.commons.collections.keyvalue.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       # Note that when lambdas are supported we should model the package `org.apache.commons.collections4.functors`,
       # and when more general callable flow is supported we should model the package
diff --git a/java/ql/lib/ext/org.apache.commons.collections.list.model.yml b/java/ql/lib/ext/org.apache.commons.collections.list.model.yml
index 53ad3035659..5fd3b418248 100644
--- a/java/ql/lib/ext/org.apache.commons.collections.list.model.yml
+++ b/java/ql/lib/ext/org.apache.commons.collections.list.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       # Note that when lambdas are supported we should have more models for TransformedList
       - ["org.apache.commons.collections.list", "AbstractLinkedList", True, "AbstractLinkedList", "", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
diff --git a/java/ql/lib/ext/org.apache.commons.collections.map.model.yml b/java/ql/lib/ext/org.apache.commons.collections.map.model.yml
index a6280315075..4e0ed31d72f 100644
--- a/java/ql/lib/ext/org.apache.commons.collections.map.model.yml
+++ b/java/ql/lib/ext/org.apache.commons.collections.map.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       # Note that when lambdas are supported we should have more models for DefaultedMap, LazyMap, TransformedMap, TransformedSortedMap
       - ["org.apache.commons.collections.map", "AbstractHashedMap", True, "AbstractHashedMap", "(Map)", "", "Argument[0].MapKey", "Argument[-1].MapKey", "value", "manual"]
diff --git a/java/ql/lib/ext/org.apache.commons.collections.model.yml b/java/ql/lib/ext/org.apache.commons.collections.model.yml
index 5846d092b5c..2df5f5772a4 100644
--- a/java/ql/lib/ext/org.apache.commons.collections.model.yml
+++ b/java/ql/lib/ext/org.apache.commons.collections.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       # Note that when lambdas are supported we should model things relating to Closure, Factory, Transformer, FluentIterable.forEach, FluentIterable.transform
       # Note that when lambdas are supported we should model the package `org.apache.commons.collections4.functors`,
diff --git a/java/ql/lib/ext/org.apache.commons.collections.multimap.model.yml b/java/ql/lib/ext/org.apache.commons.collections.multimap.model.yml
index d1d0b5a885c..97ad092bc08 100644
--- a/java/ql/lib/ext/org.apache.commons.collections.multimap.model.yml
+++ b/java/ql/lib/ext/org.apache.commons.collections.multimap.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       # Note that when lambdas are supported we should have more models for TransformedMultiValuedMap
       - ["org.apache.commons.collections.multimap", "ArrayListValuedHashMap", True, "ArrayListValuedHashMap", "(Map)", "", "Argument[0].MapKey", "Argument[-1].MapKey", "value", "manual"]
diff --git a/java/ql/lib/ext/org.apache.commons.collections.multiset.model.yml b/java/ql/lib/ext/org.apache.commons.collections.multiset.model.yml
index af9e42fb88a..4423d4b1f91 100644
--- a/java/ql/lib/ext/org.apache.commons.collections.multiset.model.yml
+++ b/java/ql/lib/ext/org.apache.commons.collections.multiset.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       - ["org.apache.commons.collections.multiset", "HashMultiSet", True, "HashMultiSet", "", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
       - ["org.apache.commons.collections.multiset", "PredicatedMultiSet", True, "predicatedMultiSet", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
diff --git a/java/ql/lib/ext/org.apache.commons.collections.properties.model.yml b/java/ql/lib/ext/org.apache.commons.collections.properties.model.yml
index 0552bb105bb..f149889197e 100644
--- a/java/ql/lib/ext/org.apache.commons.collections.properties.model.yml
+++ b/java/ql/lib/ext/org.apache.commons.collections.properties.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       - ["org.apache.commons.collections.properties", "AbstractPropertiesFactory", True, "load", "(ClassLoader,String)", "", "Argument[1]", "ReturnValue", "taint", "manual"]
       - ["org.apache.commons.collections.properties", "AbstractPropertiesFactory", True, "load", "(File)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
diff --git a/java/ql/lib/ext/org.apache.commons.collections.queue.model.yml b/java/ql/lib/ext/org.apache.commons.collections.queue.model.yml
index 5a9db9599d4..3a88fbf5fa4 100644
--- a/java/ql/lib/ext/org.apache.commons.collections.queue.model.yml
+++ b/java/ql/lib/ext/org.apache.commons.collections.queue.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       # Note that when lambdas are supported we should have more models for TransformedQueue
       - ["org.apache.commons.collections.queue", "CircularFifoQueue", True, "CircularFifoQueue", "(Collection)", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
diff --git a/java/ql/lib/ext/org.apache.commons.collections.set.model.yml b/java/ql/lib/ext/org.apache.commons.collections.set.model.yml
index 019f862568d..c6288adf72c 100644
--- a/java/ql/lib/ext/org.apache.commons.collections.set.model.yml
+++ b/java/ql/lib/ext/org.apache.commons.collections.set.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       # Note that when lambdas are supported we should have more models for TransformedNavigableSet
       - ["org.apache.commons.collections.set", "AbstractNavigableSetDecorator", True, "AbstractNavigableSetDecorator", "", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
diff --git a/java/ql/lib/ext/org.apache.commons.collections.splitmap.model.yml b/java/ql/lib/ext/org.apache.commons.collections.splitmap.model.yml
index 447b3533fbc..65cc1a66fdf 100644
--- a/java/ql/lib/ext/org.apache.commons.collections.splitmap.model.yml
+++ b/java/ql/lib/ext/org.apache.commons.collections.splitmap.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       # Note that when lambdas are supported we should have more models for TransformedSplitMap
       - ["org.apache.commons.collections.splitmap", "AbstractIterableGetMapDecorator", True, "AbstractIterableGetMapDecorator", "", "", "Argument[0].MapKey", "Argument[-1].MapKey", "value", "manual"]
diff --git a/java/ql/lib/ext/org.apache.commons.collections.trie.model.yml b/java/ql/lib/ext/org.apache.commons.collections.trie.model.yml
index 451e0b60bc7..c58ca641902 100644
--- a/java/ql/lib/ext/org.apache.commons.collections.trie.model.yml
+++ b/java/ql/lib/ext/org.apache.commons.collections.trie.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       # Note that when lambdas are supported we should have more models for TransformedSplitMap
       - ["org.apache.commons.collections.trie", "AbstractPatriciaTrie", True, "select", "", "", "Argument[-1].MapKey", "ReturnValue.MapKey", "value", "manual"]
diff --git a/java/ql/lib/ext/org.apache.commons.collections4.bag.model.yml b/java/ql/lib/ext/org.apache.commons.collections4.bag.model.yml
index ddc26f49b7f..9df2c7aba94 100644
--- a/java/ql/lib/ext/org.apache.commons.collections4.bag.model.yml
+++ b/java/ql/lib/ext/org.apache.commons.collections4.bag.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       # Note that when lambdas are supported we should have more models for TransformedBag, TransformedSortedBag
       - ["org.apache.commons.collections4.bag", "AbstractBagDecorator", True, "AbstractBagDecorator", "", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
diff --git a/java/ql/lib/ext/org.apache.commons.collections4.bidimap.model.yml b/java/ql/lib/ext/org.apache.commons.collections4.bidimap.model.yml
index 3be0532ec4d..1a6a3cbab9e 100644
--- a/java/ql/lib/ext/org.apache.commons.collections4.bidimap.model.yml
+++ b/java/ql/lib/ext/org.apache.commons.collections4.bidimap.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       - ["org.apache.commons.collections4.bidimap", "AbstractBidiMapDecorator", True, "AbstractBidiMapDecorator", "", "", "Argument[0].MapKey", "Argument[-1].MapKey", "value", "manual"]
       - ["org.apache.commons.collections4.bidimap", "AbstractBidiMapDecorator", True, "AbstractBidiMapDecorator", "", "", "Argument[0].MapValue", "Argument[-1].MapValue", "value", "manual"]
diff --git a/java/ql/lib/ext/org.apache.commons.collections4.collection.model.yml b/java/ql/lib/ext/org.apache.commons.collections4.collection.model.yml
index f3ac93c242d..7533350620b 100644
--- a/java/ql/lib/ext/org.apache.commons.collections4.collection.model.yml
+++ b/java/ql/lib/ext/org.apache.commons.collections4.collection.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       # Note that when lambdas are supported we should have more models for TransformedCollection
       - ["org.apache.commons.collections4.collection", "AbstractCollectionDecorator", True, "AbstractCollectionDecorator", "", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
diff --git a/java/ql/lib/ext/org.apache.commons.collections4.iterators.model.yml b/java/ql/lib/ext/org.apache.commons.collections4.iterators.model.yml
index f6671a823c4..8fe0e4578f9 100644
--- a/java/ql/lib/ext/org.apache.commons.collections4.iterators.model.yml
+++ b/java/ql/lib/ext/org.apache.commons.collections4.iterators.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       # Note that when lambdas are supported we should have more models for TransformIterator
       - ["org.apache.commons.collections4.iterators", "AbstractIteratorDecorator", True, "AbstractIteratorDecorator", "", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
diff --git a/java/ql/lib/ext/org.apache.commons.collections4.keyvalue.model.yml b/java/ql/lib/ext/org.apache.commons.collections4.keyvalue.model.yml
index aa4a663115e..e662c6348bd 100644
--- a/java/ql/lib/ext/org.apache.commons.collections4.keyvalue.model.yml
+++ b/java/ql/lib/ext/org.apache.commons.collections4.keyvalue.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       # Note that when lambdas are supported we should model the package `org.apache.commons.collections4.functors`,
       # and when more general callable flow is supported we should model the package
diff --git a/java/ql/lib/ext/org.apache.commons.collections4.list.model.yml b/java/ql/lib/ext/org.apache.commons.collections4.list.model.yml
index 7d82ffdcfa5..b0e01ed6929 100644
--- a/java/ql/lib/ext/org.apache.commons.collections4.list.model.yml
+++ b/java/ql/lib/ext/org.apache.commons.collections4.list.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       # Note that when lambdas are supported we should have more models for TransformedList
       - ["org.apache.commons.collections4.list", "AbstractLinkedList", True, "AbstractLinkedList", "", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
diff --git a/java/ql/lib/ext/org.apache.commons.collections4.map.model.yml b/java/ql/lib/ext/org.apache.commons.collections4.map.model.yml
index 52d1221ed1d..385f73050d5 100644
--- a/java/ql/lib/ext/org.apache.commons.collections4.map.model.yml
+++ b/java/ql/lib/ext/org.apache.commons.collections4.map.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       # Note that when lambdas are supported we should have more models for DefaultedMap, LazyMap, TransformedMap, TransformedSortedMap
       - ["org.apache.commons.collections4.map", "AbstractHashedMap", True, "AbstractHashedMap", "(Map)", "", "Argument[0].MapKey", "Argument[-1].MapKey", "value", "manual"]
diff --git a/java/ql/lib/ext/org.apache.commons.collections4.model.yml b/java/ql/lib/ext/org.apache.commons.collections4.model.yml
index ce5fc6b9fe9..218da08ca22 100644
--- a/java/ql/lib/ext/org.apache.commons.collections4.model.yml
+++ b/java/ql/lib/ext/org.apache.commons.collections4.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       # Note that when lambdas are supported we should model things relating to Closure, Factory, Transformer, FluentIterable.forEach, FluentIterable.transform
       # Note that when lambdas are supported we should model the package `org.apache.commons.collections4.functors`,
diff --git a/java/ql/lib/ext/org.apache.commons.collections4.multimap.model.yml b/java/ql/lib/ext/org.apache.commons.collections4.multimap.model.yml
index 3812b6766fd..6bd01379d9e 100644
--- a/java/ql/lib/ext/org.apache.commons.collections4.multimap.model.yml
+++ b/java/ql/lib/ext/org.apache.commons.collections4.multimap.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       # Note that when lambdas are supported we should have more models for TransformedMultiValuedMap
       - ["org.apache.commons.collections4.multimap", "ArrayListValuedHashMap", True, "ArrayListValuedHashMap", "(Map)", "", "Argument[0].MapKey", "Argument[-1].MapKey", "value", "manual"]
diff --git a/java/ql/lib/ext/org.apache.commons.collections4.multiset.model.yml b/java/ql/lib/ext/org.apache.commons.collections4.multiset.model.yml
index b73862089c0..c3da82c1b7a 100644
--- a/java/ql/lib/ext/org.apache.commons.collections4.multiset.model.yml
+++ b/java/ql/lib/ext/org.apache.commons.collections4.multiset.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       - ["org.apache.commons.collections4.multiset", "HashMultiSet", True, "HashMultiSet", "", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
       - ["org.apache.commons.collections4.multiset", "PredicatedMultiSet", True, "predicatedMultiSet", "", "", "Argument[0].Element", "ReturnValue.Element", "value", "manual"]
diff --git a/java/ql/lib/ext/org.apache.commons.collections4.properties.model.yml b/java/ql/lib/ext/org.apache.commons.collections4.properties.model.yml
index 548b50959e1..9187922313a 100644
--- a/java/ql/lib/ext/org.apache.commons.collections4.properties.model.yml
+++ b/java/ql/lib/ext/org.apache.commons.collections4.properties.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       - ["org.apache.commons.collections4.properties", "AbstractPropertiesFactory", True, "load", "(ClassLoader,String)", "", "Argument[1]", "ReturnValue", "taint", "manual"]
       - ["org.apache.commons.collections4.properties", "AbstractPropertiesFactory", True, "load", "(File)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
diff --git a/java/ql/lib/ext/org.apache.commons.collections4.queue.model.yml b/java/ql/lib/ext/org.apache.commons.collections4.queue.model.yml
index f9067b758e9..b2cab2a0594 100644
--- a/java/ql/lib/ext/org.apache.commons.collections4.queue.model.yml
+++ b/java/ql/lib/ext/org.apache.commons.collections4.queue.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       # Note that when lambdas are supported we should have more models for TransformedQueue
       - ["org.apache.commons.collections4.queue", "CircularFifoQueue", True, "CircularFifoQueue", "(Collection)", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
diff --git a/java/ql/lib/ext/org.apache.commons.collections4.set.model.yml b/java/ql/lib/ext/org.apache.commons.collections4.set.model.yml
index 63ac0c91141..deafbdffaaf 100644
--- a/java/ql/lib/ext/org.apache.commons.collections4.set.model.yml
+++ b/java/ql/lib/ext/org.apache.commons.collections4.set.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       # Note that when lambdas are supported we should have more models for TransformedNavigableSet
       - ["org.apache.commons.collections4.set", "AbstractNavigableSetDecorator", True, "AbstractNavigableSetDecorator", "", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
diff --git a/java/ql/lib/ext/org.apache.commons.collections4.splitmap.model.yml b/java/ql/lib/ext/org.apache.commons.collections4.splitmap.model.yml
index 5a1de63ba6a..7190dac37a0 100644
--- a/java/ql/lib/ext/org.apache.commons.collections4.splitmap.model.yml
+++ b/java/ql/lib/ext/org.apache.commons.collections4.splitmap.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       # Note that when lambdas are supported we should have more models for TransformedSplitMap
       - ["org.apache.commons.collections4.splitmap", "AbstractIterableGetMapDecorator", True, "AbstractIterableGetMapDecorator", "", "", "Argument[0].MapKey", "Argument[-1].MapKey", "value", "manual"]
diff --git a/java/ql/lib/ext/org.apache.commons.collections4.trie.model.yml b/java/ql/lib/ext/org.apache.commons.collections4.trie.model.yml
index 1f33d441e18..7c7195d54dc 100644
--- a/java/ql/lib/ext/org.apache.commons.collections4.trie.model.yml
+++ b/java/ql/lib/ext/org.apache.commons.collections4.trie.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       # Note that when lambdas are supported we should have more models for TransformedSplitMap
       - ["org.apache.commons.collections4.trie", "AbstractPatriciaTrie", True, "select", "", "", "Argument[-1].MapKey", "ReturnValue.MapKey", "value", "manual"]
diff --git a/java/ql/lib/ext/org.apache.commons.io.model.yml b/java/ql/lib/ext/org.apache.commons.io.model.yml
index 6cb7aa0b251..d00be2099de 100644
--- a/java/ql/lib/ext/org.apache.commons.io.model.yml
+++ b/java/ql/lib/ext/org.apache.commons.io.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       # Models that are not yet auto generated or where the generated summaries will
       # be ignored.
diff --git a/java/ql/lib/ext/org.apache.commons.jexl2.model.yml b/java/ql/lib/ext/org.apache.commons.jexl2.model.yml
index 7d6e5d070d2..2389ae1d183 100644
--- a/java/ql/lib/ext/org.apache.commons.jexl2.model.yml
+++ b/java/ql/lib/ext/org.apache.commons.jexl2.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSinkModel
+      extensible: sinkModel
     data:
       - ["org.apache.commons.jexl2", "Expression", False, "callable", "", "", "Argument[-1]", "jexl", "manual"]
       - ["org.apache.commons.jexl2", "Expression", False, "evaluate", "", "", "Argument[-1]", "jexl", "manual"]
diff --git a/java/ql/lib/ext/org.apache.commons.jexl3.model.yml b/java/ql/lib/ext/org.apache.commons.jexl3.model.yml
index a911fe7f22c..206eb79420a 100644
--- a/java/ql/lib/ext/org.apache.commons.jexl3.model.yml
+++ b/java/ql/lib/ext/org.apache.commons.jexl3.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSinkModel
+      extensible: sinkModel
     data:
       - ["org.apache.commons.jexl3", "Expression", False, "callable", "", "", "Argument[-1]", "jexl", "manual"]
       - ["org.apache.commons.jexl3", "Expression", False, "evaluate", "", "", "Argument[-1]", "jexl", "manual"]
diff --git a/java/ql/lib/ext/org.apache.commons.lang3.builder.model.yml b/java/ql/lib/ext/org.apache.commons.lang3.builder.model.yml
index cf4967b0cb5..88d2bbe4790 100644
--- a/java/ql/lib/ext/org.apache.commons.lang3.builder.model.yml
+++ b/java/ql/lib/ext/org.apache.commons.lang3.builder.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       - ["org.apache.commons.lang3.builder", "ToStringBuilder", False, "append", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
       - ["org.apache.commons.lang3.builder", "ToStringBuilder", False, "append", "(java.lang.Object)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
diff --git a/java/ql/lib/ext/org.apache.commons.lang3.model.yml b/java/ql/lib/ext/org.apache.commons.lang3.model.yml
index 3fda3a551af..ad2332fe007 100644
--- a/java/ql/lib/ext/org.apache.commons.lang3.model.yml
+++ b/java/ql/lib/ext/org.apache.commons.lang3.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSinkModel
+      extensible: sinkModel
     data:
       - ["org.apache.commons.lang3", "RegExUtils", False, "removeAll", "(String,String)", "", "Argument[1]", "regex-use", "manual"]
       - ["org.apache.commons.lang3", "RegExUtils", False, "removeFirst", "(String,String)", "", "Argument[1]", "regex-use", "manual"]
@@ -11,7 +11,7 @@ extensions:
       - ["org.apache.commons.lang3", "RegExUtils", False, "replacePattern", "(String,String,String)", "", "Argument[1]", "regex-use", "manual"]
   - addsTo:
       pack: codeql/java-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       - ["org.apache.commons.lang3", "ArrayUtils", False, "add", "", "", "Argument[0].ArrayElement", "ReturnValue.ArrayElement", "value", "manual"]
       - ["org.apache.commons.lang3", "ArrayUtils", False, "add", "", "", "Argument[2]", "ReturnValue.ArrayElement", "value", "manual"]
diff --git a/java/ql/lib/ext/org.apache.commons.lang3.mutable.model.yml b/java/ql/lib/ext/org.apache.commons.lang3.mutable.model.yml
index 0a576393e10..48816a4a9e2 100644
--- a/java/ql/lib/ext/org.apache.commons.lang3.mutable.model.yml
+++ b/java/ql/lib/ext/org.apache.commons.lang3.mutable.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       - ["org.apache.commons.lang3.mutable", "Mutable", True, "getValue", "", "", "Argument[-1].SyntheticField[org.apache.commons.lang3.mutable.MutableObject.value]", "ReturnValue", "value", "manual"]
       - ["org.apache.commons.lang3.mutable", "Mutable", True, "setValue", "", "", "Argument[0]", "Argument[-1].SyntheticField[org.apache.commons.lang3.mutable.MutableObject.value]", "value", "manual"]
diff --git a/java/ql/lib/ext/org.apache.commons.lang3.text.model.yml b/java/ql/lib/ext/org.apache.commons.lang3.text.model.yml
index c31cffeb62c..e11dfbaa34d 100644
--- a/java/ql/lib/ext/org.apache.commons.lang3.text.model.yml
+++ b/java/ql/lib/ext/org.apache.commons.lang3.text.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       - ["org.apache.commons.lang3.text", "StrBuilder", False, "StrBuilder", "(java.lang.String)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
       - ["org.apache.commons.lang3.text", "StrBuilder", False, "append", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
diff --git a/java/ql/lib/ext/org.apache.commons.lang3.tuple.model.yml b/java/ql/lib/ext/org.apache.commons.lang3.tuple.model.yml
index 204c890dd5e..ebd11508343 100644
--- a/java/ql/lib/ext/org.apache.commons.lang3.tuple.model.yml
+++ b/java/ql/lib/ext/org.apache.commons.lang3.tuple.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       - ["org.apache.commons.lang3.tuple", "ImmutablePair", False, "ImmutablePair", "(java.lang.Object,java.lang.Object)", "", "Argument[0]", "Argument[-1].Field[org.apache.commons.lang3.tuple.ImmutablePair.left]", "value", "manual"]
       - ["org.apache.commons.lang3.tuple", "ImmutablePair", False, "ImmutablePair", "(java.lang.Object,java.lang.Object)", "", "Argument[1]", "Argument[-1].Field[org.apache.commons.lang3.tuple.ImmutablePair.right]", "value", "manual"]
diff --git a/java/ql/lib/ext/org.apache.commons.logging.model.yml b/java/ql/lib/ext/org.apache.commons.logging.model.yml
index 252ebf9634a..8f40e26f2a1 100644
--- a/java/ql/lib/ext/org.apache.commons.logging.model.yml
+++ b/java/ql/lib/ext/org.apache.commons.logging.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSinkModel
+      extensible: sinkModel
     data:
       - ["org.apache.commons.logging", "Log", True, "debug", "", "", "Argument[0]", "logging", "manual"]
       - ["org.apache.commons.logging", "Log", True, "error", "", "", "Argument[0]", "logging", "manual"]
diff --git a/java/ql/lib/ext/org.apache.commons.ognl.enhance.model.yml b/java/ql/lib/ext/org.apache.commons.ognl.enhance.model.yml
index 8f3e1a5a966..790c7640d9b 100644
--- a/java/ql/lib/ext/org.apache.commons.ognl.enhance.model.yml
+++ b/java/ql/lib/ext/org.apache.commons.ognl.enhance.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSinkModel
+      extensible: sinkModel
     data:
       - ["org.apache.commons.ognl.enhance", "ExpressionAccessor", True, "get", "", "", "Argument[-1]", "ognl-injection", "manual"]
       - ["org.apache.commons.ognl.enhance", "ExpressionAccessor", True, "set", "", "", "Argument[-1]", "ognl-injection", "manual"]
diff --git a/java/ql/lib/ext/org.apache.commons.ognl.model.yml b/java/ql/lib/ext/org.apache.commons.ognl.model.yml
index 4f7190d5342..9b00a781f53 100644
--- a/java/ql/lib/ext/org.apache.commons.ognl.model.yml
+++ b/java/ql/lib/ext/org.apache.commons.ognl.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSinkModel
+      extensible: sinkModel
     data:
       - ["org.apache.commons.ognl", "Node", True, "getValue", "", "", "Argument[-1]", "ognl-injection", "manual"]
       - ["org.apache.commons.ognl", "Node", True, "setValue", "", "", "Argument[-1]", "ognl-injection", "manual"]
diff --git a/java/ql/lib/ext/org.apache.commons.text.lookup.model.yml b/java/ql/lib/ext/org.apache.commons.text.lookup.model.yml
index 9bea394d619..b89855197f1 100644
--- a/java/ql/lib/ext/org.apache.commons.text.lookup.model.yml
+++ b/java/ql/lib/ext/org.apache.commons.text.lookup.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       - ["org.apache.commons.text.lookup", "StringLookup", True, "lookup", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
       - ["org.apache.commons.text.lookup", "StringLookupFactory", False, "mapStringLookup", "", "", "Argument[0].MapValue", "ReturnValue", "taint", "manual"]
diff --git a/java/ql/lib/ext/org.apache.commons.text.model.yml b/java/ql/lib/ext/org.apache.commons.text.model.yml
index 8fd87c79147..c0618224fe4 100644
--- a/java/ql/lib/ext/org.apache.commons.text.model.yml
+++ b/java/ql/lib/ext/org.apache.commons.text.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       - ["org.apache.commons.text", "StrBuilder", False, "StrBuilder", "(java.lang.String)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
       - ["org.apache.commons.text", "StrBuilder", False, "append", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
diff --git a/java/ql/lib/ext/org.apache.directory.ldap.client.api.model.yml b/java/ql/lib/ext/org.apache.directory.ldap.client.api.model.yml
index 5eb28c7c073..14b580383d3 100644
--- a/java/ql/lib/ext/org.apache.directory.ldap.client.api.model.yml
+++ b/java/ql/lib/ext/org.apache.directory.ldap.client.api.model.yml
@@ -1,6 +1,6 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSinkModel
+      extensible: sinkModel
     data:
       - ["org.apache.directory.ldap.client.api", "LdapConnection", True, "search", "", "", "Argument[0..2]", "ldap", "manual"]
diff --git a/java/ql/lib/ext/org.apache.hc.core5.function.model.yml b/java/ql/lib/ext/org.apache.hc.core5.function.model.yml
index f001872f720..2763da9cd3d 100644
--- a/java/ql/lib/ext/org.apache.hc.core5.function.model.yml
+++ b/java/ql/lib/ext/org.apache.hc.core5.function.model.yml
@@ -1,6 +1,6 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       - ["org.apache.hc.core5.function", "Supplier", True, "get", "()", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
diff --git a/java/ql/lib/ext/org.apache.hc.core5.http.io.entity.model.yml b/java/ql/lib/ext/org.apache.hc.core5.http.io.entity.model.yml
index 14ce196044f..2b7b1a4eaf3 100644
--- a/java/ql/lib/ext/org.apache.hc.core5.http.io.entity.model.yml
+++ b/java/ql/lib/ext/org.apache.hc.core5.http.io.entity.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       - ["org.apache.hc.core5.http.io.entity", "BasicHttpEntity", True, "BasicHttpEntity", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
       - ["org.apache.hc.core5.http.io.entity", "BufferedHttpEntity", True, "BufferedHttpEntity", "(HttpEntity)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
diff --git a/java/ql/lib/ext/org.apache.hc.core5.http.io.model.yml b/java/ql/lib/ext/org.apache.hc.core5.http.io.model.yml
index 9fdf2b1fd2e..8183cb9a3a7 100644
--- a/java/ql/lib/ext/org.apache.hc.core5.http.io.model.yml
+++ b/java/ql/lib/ext/org.apache.hc.core5.http.io.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSourceModel
+      extensible: sourceModel
     data:
       - ["org.apache.hc.core5.http.io", "HttpRequestHandler", True, "handle", "(ClassicHttpRequest,ClassicHttpResponse,HttpContext)", "", "Parameter[0]", "remote", "manual"]
       - ["org.apache.hc.core5.http.io", "HttpServerRequestHandler", True, "handle", "(ClassicHttpRequest,ResponseTrigger,HttpContext)", "", "Parameter[0]", "remote", "manual"]
diff --git a/java/ql/lib/ext/org.apache.hc.core5.http.message.model.yml b/java/ql/lib/ext/org.apache.hc.core5.http.message.model.yml
index 9d982e54178..bf8ab791ccf 100644
--- a/java/ql/lib/ext/org.apache.hc.core5.http.message.model.yml
+++ b/java/ql/lib/ext/org.apache.hc.core5.http.message.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       - ["org.apache.hc.core5.http.message", "RequestLine", True, "RequestLine", "(HttpRequest)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
       - ["org.apache.hc.core5.http.message", "RequestLine", True, "RequestLine", "(String,String,ProtocolVersion)", "", "Argument[1]", "Argument[-1]", "taint", "manual"]
diff --git a/java/ql/lib/ext/org.apache.hc.core5.http.model.yml b/java/ql/lib/ext/org.apache.hc.core5.http.model.yml
index 220728fadca..c0fcdc852dc 100644
--- a/java/ql/lib/ext/org.apache.hc.core5.http.model.yml
+++ b/java/ql/lib/ext/org.apache.hc.core5.http.model.yml
@@ -1,12 +1,12 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSinkModel
+      extensible: sinkModel
     data:
       - ["org.apache.hc.core5.http", "HttpEntityContainer", True, "setEntity", "(HttpEntity)", "", "Argument[0]", "xss", "manual"]
   - addsTo:
       pack: codeql/java-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       - ["org.apache.hc.core5.http", "EntityDetails", True, "getContentEncoding", "()", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
       - ["org.apache.hc.core5.http", "EntityDetails", True, "getContentType", "()", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
diff --git a/java/ql/lib/ext/org.apache.hc.core5.net.model.yml b/java/ql/lib/ext/org.apache.hc.core5.net.model.yml
index 19213c0764f..e16c8b150c3 100644
--- a/java/ql/lib/ext/org.apache.hc.core5.net.model.yml
+++ b/java/ql/lib/ext/org.apache.hc.core5.net.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       - ["org.apache.hc.core5.net", "URIAuthority", True, "getHostName", "()", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
       - ["org.apache.hc.core5.net", "URIAuthority", True, "toString", "()", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
diff --git a/java/ql/lib/ext/org.apache.hc.core5.util.model.yml b/java/ql/lib/ext/org.apache.hc.core5.util.model.yml
index ae9af22ac77..2023ad04f6e 100644
--- a/java/ql/lib/ext/org.apache.hc.core5.util.model.yml
+++ b/java/ql/lib/ext/org.apache.hc.core5.util.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       - ["org.apache.hc.core5.util", "Args", True, "containsNoBlanks", "(CharSequence,String)", "", "Argument[0]", "ReturnValue", "value", "manual"]
       - ["org.apache.hc.core5.util", "Args", True, "notBlank", "(CharSequence,String)", "", "Argument[0]", "ReturnValue", "value", "manual"]
diff --git a/java/ql/lib/ext/org.apache.http.client.methods.model.yml b/java/ql/lib/ext/org.apache.http.client.methods.model.yml
index 99b0a4968cf..c90298bddf8 100644
--- a/java/ql/lib/ext/org.apache.http.client.methods.model.yml
+++ b/java/ql/lib/ext/org.apache.http.client.methods.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSinkModel
+      extensible: sinkModel
     data:
       - ["org.apache.http.client.methods", "HttpDelete", False, "HttpDelete", "", "", "Argument[0]", "open-url", "manual"]
       - ["org.apache.http.client.methods", "HttpGet", False, "HttpGet", "", "", "Argument[0]", "open-url", "manual"]
diff --git a/java/ql/lib/ext/org.apache.http.entity.model.yml b/java/ql/lib/ext/org.apache.http.entity.model.yml
index 2e299bff5d4..4105b55a634 100644
--- a/java/ql/lib/ext/org.apache.http.entity.model.yml
+++ b/java/ql/lib/ext/org.apache.http.entity.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       - ["org.apache.http.entity", "BasicHttpEntity", True, "setContent", "(InputStream)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
       - ["org.apache.http.entity", "BufferedHttpEntity", True, "BufferedHttpEntity", "(HttpEntity)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
diff --git a/java/ql/lib/ext/org.apache.http.message.model.yml b/java/ql/lib/ext/org.apache.http.message.model.yml
index b1caf80721b..da798c12017 100644
--- a/java/ql/lib/ext/org.apache.http.message.model.yml
+++ b/java/ql/lib/ext/org.apache.http.message.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSinkModel
+      extensible: sinkModel
     data:
       - ["org.apache.http.message", "BasicHttpEntityEnclosingRequest", False, "BasicHttpEntityEnclosingRequest", "(RequestLine)", "", "Argument[0]", "open-url", "manual"]
       - ["org.apache.http.message", "BasicHttpEntityEnclosingRequest", False, "BasicHttpEntityEnclosingRequest", "(String,String)", "", "Argument[1]", "open-url", "manual"]
@@ -11,6 +11,6 @@ extensions:
       - ["org.apache.http.message", "BasicHttpRequest", False, "BasicHttpRequest", "(String,String,ProtocolVersion)", "", "Argument[1]", "open-url", "manual"]
   - addsTo:
       pack: codeql/java-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       - ["org.apache.http.message", "BasicRequestLine", False, "BasicRequestLine", "", "", "Argument[1]", "Argument[-1]", "taint", "manual"]
diff --git a/java/ql/lib/ext/org.apache.http.model.yml b/java/ql/lib/ext/org.apache.http.model.yml
index 76de35242b7..25c5847ad0a 100644
--- a/java/ql/lib/ext/org.apache.http.model.yml
+++ b/java/ql/lib/ext/org.apache.http.model.yml
@@ -1,19 +1,19 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSourceModel
+      extensible: sourceModel
     data:
       - ["org.apache.http", "HttpEntity", False, "getContent", "()", "", "ReturnValue", "remote", "manual"]
       - ["org.apache.http", "HttpMessage", False, "getParams", "()", "", "ReturnValue", "remote", "manual"]
   - addsTo:
       pack: codeql/java-all
-      extensible: extSinkModel
+      extensible: sinkModel
     data:
       - ["org.apache.http", "HttpRequest", True, "setURI", "", "", "Argument[0]", "open-url", "manual"]
       - ["org.apache.http", "HttpResponse", True, "setEntity", "(HttpEntity)", "", "Argument[0]", "xss", "manual"]
   - addsTo:
       pack: codeql/java-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       - ["org.apache.http", "Header", True, "getElements", "()", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
       - ["org.apache.http", "HeaderElement", True, "getName", "()", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
diff --git a/java/ql/lib/ext/org.apache.http.params.model.yml b/java/ql/lib/ext/org.apache.http.params.model.yml
index 0f9facaede8..35cd5b5c8a3 100644
--- a/java/ql/lib/ext/org.apache.http.params.model.yml
+++ b/java/ql/lib/ext/org.apache.http.params.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       - ["org.apache.http.params", "HttpParams", True, "getDoubleParameter", "(String,double)", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
       - ["org.apache.http.params", "HttpParams", True, "getDoubleParameter", "(String,double)", "", "Argument[1]", "ReturnValue", "value", "manual"]
diff --git a/java/ql/lib/ext/org.apache.http.protocol.model.yml b/java/ql/lib/ext/org.apache.http.protocol.model.yml
index fb99d7f6aa1..c5de98c8c68 100644
--- a/java/ql/lib/ext/org.apache.http.protocol.model.yml
+++ b/java/ql/lib/ext/org.apache.http.protocol.model.yml
@@ -1,6 +1,6 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSourceModel
+      extensible: sourceModel
     data:
       - ["org.apache.http.protocol", "HttpRequestHandler", True, "handle", "(HttpRequest,HttpResponse,HttpContext)", "", "Parameter[0]", "remote", "manual"]
diff --git a/java/ql/lib/ext/org.apache.http.util.model.yml b/java/ql/lib/ext/org.apache.http.util.model.yml
index e95178e8281..34fb87b5cb9 100644
--- a/java/ql/lib/ext/org.apache.http.util.model.yml
+++ b/java/ql/lib/ext/org.apache.http.util.model.yml
@@ -1,12 +1,12 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSinkModel
+      extensible: sinkModel
     data:
       - ["org.apache.http.util", "EntityUtils", True, "updateEntity", "(HttpResponse,HttpEntity)", "", "Argument[1]", "xss", "manual"]
   - addsTo:
       pack: codeql/java-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       - ["org.apache.http.util", "Args", True, "containsNoBlanks", "(CharSequence,String)", "", "Argument[0]", "ReturnValue", "value", "manual"]
       - ["org.apache.http.util", "Args", True, "notBlank", "(CharSequence,String)", "", "Argument[0]", "ReturnValue", "value", "manual"]
diff --git a/java/ql/lib/ext/org.apache.ibatis.jdbc.model.yml b/java/ql/lib/ext/org.apache.ibatis.jdbc.model.yml
index 16cfe1404da..05dac3d7f10 100644
--- a/java/ql/lib/ext/org.apache.ibatis.jdbc.model.yml
+++ b/java/ql/lib/ext/org.apache.ibatis.jdbc.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSinkModel
+      extensible: sinkModel
     data:
       - ["org.apache.ibatis.jdbc", "SqlRunner", False, "delete", "(String,Object[])", "", "Argument[0]", "sql", "manual"]
       - ["org.apache.ibatis.jdbc", "SqlRunner", False, "insert", "(String,Object[])", "", "Argument[0]", "sql", "manual"]
@@ -11,7 +11,7 @@ extensions:
       - ["org.apache.ibatis.jdbc", "SqlRunner", False, "update", "(String,Object[])", "", "Argument[0]", "sql", "manual"]
   - addsTo:
       pack: codeql/java-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       - ["org.apache.ibatis.jdbc", "AbstractSQL", True, "DELETE_FROM", "(String)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
       - ["org.apache.ibatis.jdbc", "AbstractSQL", True, "FETCH_FIRST_ROWS_ONLY", "(String)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
diff --git a/java/ql/lib/ext/org.apache.log4j.model.yml b/java/ql/lib/ext/org.apache.log4j.model.yml
index 6c10a824dce..309f238111b 100644
--- a/java/ql/lib/ext/org.apache.log4j.model.yml
+++ b/java/ql/lib/ext/org.apache.log4j.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSinkModel
+      extensible: sinkModel
     data:
       - ["org.apache.log4j", "Category", True, "assertLog", "", "", "Argument[1]", "logging", "manual"]
       - ["org.apache.log4j", "Category", True, "debug", "", "", "Argument[0]", "logging", "manual"]
diff --git a/java/ql/lib/ext/org.apache.logging.log4j.model.yml b/java/ql/lib/ext/org.apache.logging.log4j.model.yml
index c26023c5fdd..5ffe10450a0 100644
--- a/java/ql/lib/ext/org.apache.logging.log4j.model.yml
+++ b/java/ql/lib/ext/org.apache.logging.log4j.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSinkModel
+      extensible: sinkModel
     data:
       - ["org.apache.logging.log4j", "LogBuilder", True, "log", "(CharSequence)", "", "Argument[0]", "logging", "manual"]
       - ["org.apache.logging.log4j", "LogBuilder", True, "log", "(Message)", "", "Argument[0]", "logging", "manual"]
@@ -364,7 +364,7 @@ extensions:
       - ["org.apache.logging.log4j", "Logger", True, "warn", "(Supplier,Throwable)", "", "Argument[0]", "logging", "manual"]
   - addsTo:
       pack: codeql/java-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       - ["org.apache.logging.log4j", "Logger", True, "traceEntry", "(Message)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
       - ["org.apache.logging.log4j", "Logger", True, "traceEntry", "(String,Object[])", "", "Argument[0..1]", "ReturnValue", "taint", "manual"]
diff --git a/java/ql/lib/ext/org.apache.shiro.codec.model.yml b/java/ql/lib/ext/org.apache.shiro.codec.model.yml
index ce779246090..f0a40c8549b 100644
--- a/java/ql/lib/ext/org.apache.shiro.codec.model.yml
+++ b/java/ql/lib/ext/org.apache.shiro.codec.model.yml
@@ -1,6 +1,6 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       - ["org.apache.shiro.codec", "Base64", False, "decode", "(String)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
diff --git a/java/ql/lib/ext/org.apache.shiro.jndi.model.yml b/java/ql/lib/ext/org.apache.shiro.jndi.model.yml
index 335e4d880ea..6da50e9d0b6 100644
--- a/java/ql/lib/ext/org.apache.shiro.jndi.model.yml
+++ b/java/ql/lib/ext/org.apache.shiro.jndi.model.yml
@@ -1,6 +1,6 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSinkModel
+      extensible: sinkModel
     data:
       - ["org.apache.shiro.jndi", "JndiTemplate", False, "lookup", "", "", "Argument[0]", "jndi-injection", "manual"]
diff --git a/java/ql/lib/ext/org.apache.velocity.app.model.yml b/java/ql/lib/ext/org.apache.velocity.app.model.yml
index d29cdea2720..1afc328b882 100644
--- a/java/ql/lib/ext/org.apache.velocity.app.model.yml
+++ b/java/ql/lib/ext/org.apache.velocity.app.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSinkModel
+      extensible: sinkModel
     data:
       - ["org.apache.velocity.app", "Velocity", True, "evaluate", "", "", "Argument[3]", "ssti", "manual"]
       - ["org.apache.velocity.app", "Velocity", True, "mergeTemplate", "", "", "Argument[2]", "ssti", "manual"]
diff --git a/java/ql/lib/ext/org.apache.velocity.runtime.model.yml b/java/ql/lib/ext/org.apache.velocity.runtime.model.yml
index 732bc9036c8..a8f740a2301 100644
--- a/java/ql/lib/ext/org.apache.velocity.runtime.model.yml
+++ b/java/ql/lib/ext/org.apache.velocity.runtime.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSinkModel
+      extensible: sinkModel
     data:
       - ["org.apache.velocity.runtime", "RuntimeServices", True, "evaluate", "", "", "Argument[3]", "ssti", "manual"]
       - ["org.apache.velocity.runtime", "RuntimeServices", True, "parse", "", "", "Argument[0]", "ssti", "manual"]
diff --git a/java/ql/lib/ext/org.apache.velocity.runtime.resource.util.model.yml b/java/ql/lib/ext/org.apache.velocity.runtime.resource.util.model.yml
index cfeadc54e91..4d3ce4c37ed 100644
--- a/java/ql/lib/ext/org.apache.velocity.runtime.resource.util.model.yml
+++ b/java/ql/lib/ext/org.apache.velocity.runtime.resource.util.model.yml
@@ -1,6 +1,6 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSinkModel
+      extensible: sinkModel
     data:
       - ["org.apache.velocity.runtime.resource.util", "StringResourceRepository", True, "putStringResource", "", "", "Argument[1]", "ssti", "manual"]
diff --git a/java/ql/lib/ext/org.codehaus.groovy.control.model.yml b/java/ql/lib/ext/org.codehaus.groovy.control.model.yml
index 4727e21f82b..77b03818172 100644
--- a/java/ql/lib/ext/org.codehaus.groovy.control.model.yml
+++ b/java/ql/lib/ext/org.codehaus.groovy.control.model.yml
@@ -1,6 +1,6 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSinkModel
+      extensible: sinkModel
     data:
       - ["org.codehaus.groovy.control", "CompilationUnit", False, "compile", "", "", "Argument[-1]", "groovy", "manual"]
diff --git a/java/ql/lib/ext/org.dom4j.model.yml b/java/ql/lib/ext/org.dom4j.model.yml
index 4e40f64dc1b..b2e5c2ed379 100644
--- a/java/ql/lib/ext/org.dom4j.model.yml
+++ b/java/ql/lib/ext/org.dom4j.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSinkModel
+      extensible: sinkModel
     data:
       - ["org.dom4j", "DocumentFactory", True, "createPattern", "", "", "Argument[0]", "xpath", "manual"]
       - ["org.dom4j", "DocumentFactory", True, "createXPath", "", "", "Argument[0]", "xpath", "manual"]
diff --git a/java/ql/lib/ext/org.dom4j.tree.model.yml b/java/ql/lib/ext/org.dom4j.tree.model.yml
index dbad39e0f4c..0896937bb16 100644
--- a/java/ql/lib/ext/org.dom4j.tree.model.yml
+++ b/java/ql/lib/ext/org.dom4j.tree.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSinkModel
+      extensible: sinkModel
     data:
       - ["org.dom4j.tree", "AbstractNode", True, "createPattern", "", "", "Argument[0]", "xpath", "manual"]
       - ["org.dom4j.tree", "AbstractNode", True, "createXPathFilter", "", "", "Argument[0]", "xpath", "manual"]
diff --git a/java/ql/lib/ext/org.dom4j.util.model.yml b/java/ql/lib/ext/org.dom4j.util.model.yml
index 587a1b68d32..d7dc55cd145 100644
--- a/java/ql/lib/ext/org.dom4j.util.model.yml
+++ b/java/ql/lib/ext/org.dom4j.util.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSinkModel
+      extensible: sinkModel
     data:
       - ["org.dom4j.util", "ProxyDocumentFactory", True, "createPattern", "", "", "Argument[0]", "xpath", "manual"]
       - ["org.dom4j.util", "ProxyDocumentFactory", True, "createXPath", "", "", "Argument[0]", "xpath", "manual"]
diff --git a/java/ql/lib/ext/org.hibernate.model.yml b/java/ql/lib/ext/org.hibernate.model.yml
index aa550a510e4..bfc232a82a1 100644
--- a/java/ql/lib/ext/org.hibernate.model.yml
+++ b/java/ql/lib/ext/org.hibernate.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSinkModel
+      extensible: sinkModel
     data:
       - ["org.hibernate", "QueryProducer", True, "createNativeQuery", "", "", "Argument[0]", "sql", "manual"]
       - ["org.hibernate", "QueryProducer", True, "createQuery", "", "", "Argument[0]", "sql", "manual"]
diff --git a/java/ql/lib/ext/org.jboss.logging.model.yml b/java/ql/lib/ext/org.jboss.logging.model.yml
index e0eb0cd3afe..069ae852b77 100644
--- a/java/ql/lib/ext/org.jboss.logging.model.yml
+++ b/java/ql/lib/ext/org.jboss.logging.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSinkModel
+      extensible: sinkModel
     data:
       - ["org.jboss.logging", "BasicLogger", True, "debug", "(Object)", "", "Argument[0]", "logging", "manual"]
       - ["org.jboss.logging", "BasicLogger", True, "debug", "(Object,Object[])", "", "Argument[0..1]", "logging", "manual"]
diff --git a/java/ql/lib/ext/org.jdbi.v3.core.model.yml b/java/ql/lib/ext/org.jdbi.v3.core.model.yml
index ae662d16dfd..fd7f4e824ac 100644
--- a/java/ql/lib/ext/org.jdbi.v3.core.model.yml
+++ b/java/ql/lib/ext/org.jdbi.v3.core.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSinkModel
+      extensible: sinkModel
     data:
       - ["org.jdbi.v3.core", "Jdbi", False, "create", "(String)", "", "Argument[0]", "jdbc-url", "manual"]
       - ["org.jdbi.v3.core", "Jdbi", False, "create", "(String,Properties)", "", "Argument[0]", "jdbc-url", "manual"]
diff --git a/java/ql/lib/ext/org.jooq.model.yml b/java/ql/lib/ext/org.jooq.model.yml
index 7de7bdfa6e6..cf7fc22a923 100644
--- a/java/ql/lib/ext/org.jooq.model.yml
+++ b/java/ql/lib/ext/org.jooq.model.yml
@@ -1,6 +1,6 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSinkModel
+      extensible: sinkModel
     data:
       - ["org.jooq", "PlainSQL", False, "", "", "Annotated", "Argument[0]", "sql", "manual"]
diff --git a/java/ql/lib/ext/org.json.model.yml b/java/ql/lib/ext/org.json.model.yml
index 98a5bb795de..da97dfadb38 100644
--- a/java/ql/lib/ext/org.json.model.yml
+++ b/java/ql/lib/ext/org.json.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       - ["org.json", "CDL", False, "rowToJSONArray", "", "", "Argument[0]", "ReturnValue", "taint", "manual"]
       - ["org.json", "CDL", False, "rowToJSONObject", "", "", "Argument[0..1]", "ReturnValue", "taint", "manual"]
diff --git a/java/ql/lib/ext/org.mvel2.compiler.model.yml b/java/ql/lib/ext/org.mvel2.compiler.model.yml
index de360871229..0e7f68faea0 100644
--- a/java/ql/lib/ext/org.mvel2.compiler.model.yml
+++ b/java/ql/lib/ext/org.mvel2.compiler.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSinkModel
+      extensible: sinkModel
     data:
       - ["org.mvel2.compiler", "Accessor", False, "getValue", "", "", "Argument[-1]", "mvel", "manual"]
       - ["org.mvel2.compiler", "CompiledAccExpression", False, "getValue", "", "", "Argument[-1]", "mvel", "manual"]
diff --git a/java/ql/lib/ext/org.mvel2.jsr223.model.yml b/java/ql/lib/ext/org.mvel2.jsr223.model.yml
index a7761277e6c..eeb0cbc7984 100644
--- a/java/ql/lib/ext/org.mvel2.jsr223.model.yml
+++ b/java/ql/lib/ext/org.mvel2.jsr223.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSinkModel
+      extensible: sinkModel
     data:
       - ["org.mvel2.jsr223", "MvelCompiledScript", False, "eval", "", "", "Argument[-1]", "mvel", "manual"]
       - ["org.mvel2.jsr223", "MvelScriptEngine", False, "eval", "", "", "Argument[0]", "mvel", "manual"]
diff --git a/java/ql/lib/ext/org.mvel2.model.yml b/java/ql/lib/ext/org.mvel2.model.yml
index 895d3a15c8c..fd7778c89a6 100644
--- a/java/ql/lib/ext/org.mvel2.model.yml
+++ b/java/ql/lib/ext/org.mvel2.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSinkModel
+      extensible: sinkModel
     data:
       - ["org.mvel2", "MVEL", False, "eval", "", "", "Argument[0]", "mvel", "manual"]
       - ["org.mvel2", "MVEL", False, "evalToBoolean", "", "", "Argument[0]", "mvel", "manual"]
diff --git a/java/ql/lib/ext/org.mvel2.templates.model.yml b/java/ql/lib/ext/org.mvel2.templates.model.yml
index fac30dca38a..0e31cee38b0 100644
--- a/java/ql/lib/ext/org.mvel2.templates.model.yml
+++ b/java/ql/lib/ext/org.mvel2.templates.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSinkModel
+      extensible: sinkModel
     data:
       - ["org.mvel2.templates", "TemplateRuntime", False, "eval", "", "", "Argument[0]", "mvel", "manual"]
       - ["org.mvel2.templates", "TemplateRuntime", False, "execute", "", "", "Argument[0]", "mvel", "manual"]
diff --git a/java/ql/lib/ext/org.scijava.log.model.yml b/java/ql/lib/ext/org.scijava.log.model.yml
index 561de4980f4..303dbae27e2 100644
--- a/java/ql/lib/ext/org.scijava.log.model.yml
+++ b/java/ql/lib/ext/org.scijava.log.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSinkModel
+      extensible: sinkModel
     data:
       - ["org.scijava.log", "Logger", True, "alwaysLog", "(int,Object,Throwable)", "", "Argument[1]", "logging", "manual"]
       - ["org.scijava.log", "Logger", True, "debug", "(Object)", "", "Argument[0]", "logging", "manual"]
diff --git a/java/ql/lib/ext/org.slf4j.model.yml b/java/ql/lib/ext/org.slf4j.model.yml
index f321c13d1e0..6ff2f31847d 100644
--- a/java/ql/lib/ext/org.slf4j.model.yml
+++ b/java/ql/lib/ext/org.slf4j.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSinkModel
+      extensible: sinkModel
     data:
       - ["org.slf4j", "Logger", True, "debug", "(Marker,String)", "", "Argument[1]", "logging", "manual"]
       - ["org.slf4j", "Logger", True, "debug", "(Marker,String,Object)", "", "Argument[1..2]", "logging", "manual"]
diff --git a/java/ql/lib/ext/org.slf4j.spi.model.yml b/java/ql/lib/ext/org.slf4j.spi.model.yml
index 2c6c44f0908..59e4d144157 100644
--- a/java/ql/lib/ext/org.slf4j.spi.model.yml
+++ b/java/ql/lib/ext/org.slf4j.spi.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSinkModel
+      extensible: sinkModel
     data:
       - ["org.slf4j.spi", "LoggingEventBuilder", True, "log", "", "", "Argument[0]", "logging", "manual"]
       - ["org.slf4j.spi", "LoggingEventBuilder", True, "log", "(String,Object)", "", "Argument[0..1]", "logging", "manual"]
@@ -10,7 +10,7 @@ extensions:
       - ["org.slf4j.spi", "LoggingEventBuilder", True, "log", "(Supplier)", "", "Argument[0]", "logging", "manual"]
   - addsTo:
       pack: codeql/java-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       - ["org.slf4j.spi", "LoggingEventBuilder", True, "addArgument", "", "", "Argument[-1]", "ReturnValue", "value", "manual"]
       - ["org.slf4j.spi", "LoggingEventBuilder", True, "addArgument", "", "", "Argument[1]", "Argument[-1]", "taint", "manual"]
diff --git a/java/ql/lib/ext/org.springframework.beans.model.yml b/java/ql/lib/ext/org.springframework.beans.model.yml
index 44f6b24ee06..d3579370ec9 100644
--- a/java/ql/lib/ext/org.springframework.beans.model.yml
+++ b/java/ql/lib/ext/org.springframework.beans.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       - ["org.springframework.beans", "MutablePropertyValues", True, "MutablePropertyValues", "(List)", "", "Argument[0].Element", "Argument[-1].Element", "value", "manual"]
       - ["org.springframework.beans", "MutablePropertyValues", True, "MutablePropertyValues", "(Map)", "", "Argument[0].MapKey", "Argument[-1].Element.MapKey", "value", "manual"]
diff --git a/java/ql/lib/ext/org.springframework.boot.jdbc.model.yml b/java/ql/lib/ext/org.springframework.boot.jdbc.model.yml
index 79556f4a285..bd7c5d8c5c1 100644
--- a/java/ql/lib/ext/org.springframework.boot.jdbc.model.yml
+++ b/java/ql/lib/ext/org.springframework.boot.jdbc.model.yml
@@ -1,6 +1,6 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSinkModel
+      extensible: sinkModel
     data:
       - ["org.springframework.boot.jdbc", "DataSourceBuilder", False, "url", "(String)", "", "Argument[0]", "jdbc-url", "manual"]
diff --git a/java/ql/lib/ext/org.springframework.cache.model.yml b/java/ql/lib/ext/org.springframework.cache.model.yml
index 450997df83c..6fd3cf4610d 100644
--- a/java/ql/lib/ext/org.springframework.cache.model.yml
+++ b/java/ql/lib/ext/org.springframework.cache.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       - ["org.springframework.cache", "Cache", True, "get", "(Object)", "", "Argument[-1].MapValue", "ReturnValue.MapValue", "value", "manual"]
       - ["org.springframework.cache", "Cache", True, "get", "(Object,Callable)", "", "Argument[-1].MapValue", "ReturnValue", "value", "manual"]
diff --git a/java/ql/lib/ext/org.springframework.context.model.yml b/java/ql/lib/ext/org.springframework.context.model.yml
index adb3431c27c..c4097103179 100644
--- a/java/ql/lib/ext/org.springframework.context.model.yml
+++ b/java/ql/lib/ext/org.springframework.context.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       - ["org.springframework.context", "MessageSource", True, "getMessage", "(String,Object[],Locale)", "", "Argument[1].ArrayElement", "ReturnValue", "taint", "manual"]
       - ["org.springframework.context", "MessageSource", True, "getMessage", "(String,Object[],String,Locale)", "", "Argument[1].ArrayElement", "ReturnValue", "taint", "manual"]
diff --git a/java/ql/lib/ext/org.springframework.data.repository.model.yml b/java/ql/lib/ext/org.springframework.data.repository.model.yml
index ff4f0808118..82a5ba0ec10 100644
--- a/java/ql/lib/ext/org.springframework.data.repository.model.yml
+++ b/java/ql/lib/ext/org.springframework.data.repository.model.yml
@@ -1,6 +1,6 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       - ["org.springframework.data.repository", "CrudRepository", True, "save", "", "", "Argument[0]", "ReturnValue", "value", "manual"]
diff --git a/java/ql/lib/ext/org.springframework.http.model.yml b/java/ql/lib/ext/org.springframework.http.model.yml
index b8ca57fa10d..2dac7192da2 100644
--- a/java/ql/lib/ext/org.springframework.http.model.yml
+++ b/java/ql/lib/ext/org.springframework.http.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSinkModel
+      extensible: sinkModel
     data:
       - ["org.springframework.http", "RequestEntity", False, "RequestEntity", "(HttpMethod,URI)", "", "Argument[1]", "open-url", "manual"]
       - ["org.springframework.http", "RequestEntity", False, "RequestEntity", "(MultiValueMap,HttpMethod,URI)", "", "Argument[2]", "open-url", "manual"]
@@ -19,7 +19,7 @@ extensions:
       - ["org.springframework.http", "RequestEntity", False, "put", "", "", "Argument[0]", "open-url", "manual"]
   - addsTo:
       pack: codeql/java-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       - ["org.springframework.http", "HttpEntity", True, "HttpEntity", "(MultiValueMap)", "", "Argument[0].MapKey", "Argument[-1]", "taint", "manual"]
       - ["org.springframework.http", "HttpEntity", True, "HttpEntity", "(MultiValueMap)", "", "Argument[0].MapValue.Element", "Argument[-1]", "taint", "manual"]
diff --git a/java/ql/lib/ext/org.springframework.jdbc.core.model.yml b/java/ql/lib/ext/org.springframework.jdbc.core.model.yml
index 36bf98f9ebc..9374293d0bb 100644
--- a/java/ql/lib/ext/org.springframework.jdbc.core.model.yml
+++ b/java/ql/lib/ext/org.springframework.jdbc.core.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSinkModel
+      extensible: sinkModel
     data:
       - ["org.springframework.jdbc.core", "JdbcTemplate", False, "batchUpdate", "", "", "Argument[0]", "sql", "manual"]
       - ["org.springframework.jdbc.core", "JdbcTemplate", False, "batchUpdate", "(String[])", "", "Argument[0]", "sql", "manual"]
diff --git a/java/ql/lib/ext/org.springframework.jdbc.datasource.model.yml b/java/ql/lib/ext/org.springframework.jdbc.datasource.model.yml
index 54d607485f9..7bb84c37e2c 100644
--- a/java/ql/lib/ext/org.springframework.jdbc.datasource.model.yml
+++ b/java/ql/lib/ext/org.springframework.jdbc.datasource.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSinkModel
+      extensible: sinkModel
     data:
       - ["org.springframework.jdbc.datasource", "AbstractDriverBasedDataSource", False, "setUrl", "(String)", "", "Argument[0]", "jdbc-url", "manual"]
       - ["org.springframework.jdbc.datasource", "DriverManagerDataSource", False, "DriverManagerDataSource", "(String)", "", "Argument[0]", "jdbc-url", "manual"]
diff --git a/java/ql/lib/ext/org.springframework.jdbc.object.model.yml b/java/ql/lib/ext/org.springframework.jdbc.object.model.yml
index fc15867d36d..74e30d28068 100644
--- a/java/ql/lib/ext/org.springframework.jdbc.object.model.yml
+++ b/java/ql/lib/ext/org.springframework.jdbc.object.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSinkModel
+      extensible: sinkModel
     data:
       - ["org.springframework.jdbc.object", "BatchSqlUpdate", False, "BatchSqlUpdate", "", "", "Argument[1]", "sql", "manual"]
       - ["org.springframework.jdbc.object", "MappingSqlQuery", False, "BatchSqlUpdate", "", "", "Argument[1]", "sql", "manual"]
diff --git a/java/ql/lib/ext/org.springframework.jndi.model.yml b/java/ql/lib/ext/org.springframework.jndi.model.yml
index 0df0234a379..f0d5f7b692d 100644
--- a/java/ql/lib/ext/org.springframework.jndi.model.yml
+++ b/java/ql/lib/ext/org.springframework.jndi.model.yml
@@ -1,6 +1,6 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSinkModel
+      extensible: sinkModel
     data:
       - ["org.springframework.jndi", "JndiTemplate", False, "lookup", "", "", "Argument[0]", "jndi-injection", "manual"]
diff --git a/java/ql/lib/ext/org.springframework.ldap.core.model.yml b/java/ql/lib/ext/org.springframework.ldap.core.model.yml
index bebe96fc14a..962dec40c59 100644
--- a/java/ql/lib/ext/org.springframework.ldap.core.model.yml
+++ b/java/ql/lib/ext/org.springframework.ldap.core.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSinkModel
+      extensible: sinkModel
     data:
       - ["org.springframework.ldap.core", "LdapOperations", True, "findByDn", "", "", "Argument[0]", "jndi-injection", "manual"]
       - ["org.springframework.ldap.core", "LdapOperations", True, "list", "", "", "Argument[0]", "jndi-injection", "manual"]
diff --git a/java/ql/lib/ext/org.springframework.ldap.model.yml b/java/ql/lib/ext/org.springframework.ldap.model.yml
index 3ce0ad5d6b5..b42e3e85959 100644
--- a/java/ql/lib/ext/org.springframework.ldap.model.yml
+++ b/java/ql/lib/ext/org.springframework.ldap.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSinkModel
+      extensible: sinkModel
     data:
       - ["org.springframework.ldap", "LdapOperations", True, "findByDn", "", "", "Argument[0]", "jndi-injection", "manual"]
       - ["org.springframework.ldap", "LdapOperations", True, "list", "", "", "Argument[0]", "jndi-injection", "manual"]
diff --git a/java/ql/lib/ext/org.springframework.security.web.savedrequest.model.yml b/java/ql/lib/ext/org.springframework.security.web.savedrequest.model.yml
index 0dd6df9116e..e8d9ab1bef5 100644
--- a/java/ql/lib/ext/org.springframework.security.web.savedrequest.model.yml
+++ b/java/ql/lib/ext/org.springframework.security.web.savedrequest.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSourceModel
+      extensible: sourceModel
     data:
       - ["org.springframework.security.web.savedrequest", "SavedRequest", True, "getCookies", "", "", "ReturnValue", "remote", "manual"]
       - ["org.springframework.security.web.savedrequest", "SavedRequest", True, "getHeaderNames", "", "", "ReturnValue", "remote", "manual"]
diff --git a/java/ql/lib/ext/org.springframework.ui.model.yml b/java/ql/lib/ext/org.springframework.ui.model.yml
index 0ff23939bed..7e230d11f2f 100644
--- a/java/ql/lib/ext/org.springframework.ui.model.yml
+++ b/java/ql/lib/ext/org.springframework.ui.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       - ["org.springframework.ui", "ConcurrentModel", False, "ConcurrentModel", "(Object)", "", "Argument[0]", "Argument[-1].MapValue", "value", "manual"]
       - ["org.springframework.ui", "ConcurrentModel", False, "ConcurrentModel", "(String,Object)", "", "Argument[0]", "Argument[-1].MapKey", "value", "manual"]
diff --git a/java/ql/lib/ext/org.springframework.util.model.yml b/java/ql/lib/ext/org.springframework.util.model.yml
index 62eb0af5bd1..817f9b43c01 100644
--- a/java/ql/lib/ext/org.springframework.util.model.yml
+++ b/java/ql/lib/ext/org.springframework.util.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       - ["org.springframework.util", "AntPathMatcher", False, "combine", "", "", "Argument[0..1]", "ReturnValue", "taint", "manual"]
       - ["org.springframework.util", "AntPathMatcher", False, "doMatch", "", "", "Argument[1]", "Argument[3].MapValue", "taint", "manual"]
diff --git a/java/ql/lib/ext/org.springframework.validation.model.yml b/java/ql/lib/ext/org.springframework.validation.model.yml
index 46b3c3d016f..190254ad2d1 100644
--- a/java/ql/lib/ext/org.springframework.validation.model.yml
+++ b/java/ql/lib/ext/org.springframework.validation.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       - ["org.springframework.validation", "Errors", True, "addAllErrors", "", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
       - ["org.springframework.validation", "Errors", True, "getAllErrors", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
diff --git a/java/ql/lib/ext/org.springframework.web.client.model.yml b/java/ql/lib/ext/org.springframework.web.client.model.yml
index 92f9a558245..69f4cb64fc6 100644
--- a/java/ql/lib/ext/org.springframework.web.client.model.yml
+++ b/java/ql/lib/ext/org.springframework.web.client.model.yml
@@ -1,14 +1,14 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSourceModel
+      extensible: sourceModel
     data:
       - ["org.springframework.web.client", "RestTemplate", False, "exchange", "", "", "ReturnValue", "remote", "manual"]
       - ["org.springframework.web.client", "RestTemplate", False, "getForEntity", "", "", "ReturnValue", "remote", "manual"]
       - ["org.springframework.web.client", "RestTemplate", False, "postForEntity", "", "", "ReturnValue", "remote", "manual"]
   - addsTo:
       pack: codeql/java-all
-      extensible: extSinkModel
+      extensible: sinkModel
     data:
       - ["org.springframework.web.client", "RestTemplate", False, "delete", "", "", "Argument[0]", "open-url", "manual"]
       - ["org.springframework.web.client", "RestTemplate", False, "doExecute", "", "", "Argument[0]", "open-url", "manual"]
diff --git a/java/ql/lib/ext/org.springframework.web.context.request.model.yml b/java/ql/lib/ext/org.springframework.web.context.request.model.yml
index 56e276e4cc0..306bb87348e 100644
--- a/java/ql/lib/ext/org.springframework.web.context.request.model.yml
+++ b/java/ql/lib/ext/org.springframework.web.context.request.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSourceModel
+      extensible: sourceModel
     data:
       - ["org.springframework.web.context.request", "WebRequest", False, "getDescription", "", "", "ReturnValue", "remote", "manual"]
       - ["org.springframework.web.context.request", "WebRequest", False, "getHeader", "", "", "ReturnValue", "remote", "manual"]
diff --git a/java/ql/lib/ext/org.springframework.web.multipart.model.yml b/java/ql/lib/ext/org.springframework.web.multipart.model.yml
index d57d44f8a48..7c0505cbcc4 100644
--- a/java/ql/lib/ext/org.springframework.web.multipart.model.yml
+++ b/java/ql/lib/ext/org.springframework.web.multipart.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSourceModel
+      extensible: sourceModel
     data:
       - ["org.springframework.web.multipart", "MultipartFile", True, "getBytes", "()", "", "ReturnValue", "remote", "manual"]
       - ["org.springframework.web.multipart", "MultipartFile", True, "getContentType", "()", "", "ReturnValue", "remote", "manual"]
@@ -17,7 +17,7 @@ extensions:
       - ["org.springframework.web.multipart", "MultipartRequest", True, "getMultipartContentType", "(String)", "", "ReturnValue", "remote", "manual"]
   - addsTo:
       pack: codeql/java-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       - ["org.springframework.web.multipart", "MultipartFile", True, "getBytes", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
       - ["org.springframework.web.multipart", "MultipartFile", True, "getInputStream", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
diff --git a/java/ql/lib/ext/org.springframework.web.reactive.function.client.model.yml b/java/ql/lib/ext/org.springframework.web.reactive.function.client.model.yml
index e3ffd17cd7e..cb2d1db4444 100644
--- a/java/ql/lib/ext/org.springframework.web.reactive.function.client.model.yml
+++ b/java/ql/lib/ext/org.springframework.web.reactive.function.client.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSinkModel
+      extensible: sinkModel
     data:
       - ["org.springframework.web.reactive.function.client", "WebClient", False, "create", "", "", "Argument[0]", "open-url", "manual"]
       - ["org.springframework.web.reactive.function.client", "WebClient$Builder", False, "baseUrl", "", "", "Argument[0]", "open-url", "manual"]
diff --git a/java/ql/lib/ext/org.springframework.web.util.model.yml b/java/ql/lib/ext/org.springframework.web.util.model.yml
index 151be5867e0..336d22b8696 100644
--- a/java/ql/lib/ext/org.springframework.web.util.model.yml
+++ b/java/ql/lib/ext/org.springframework.web.util.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       - ["org.springframework.web.util", "AbstractUriTemplateHandler", True, "getBaseUrl", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
       - ["org.springframework.web.util", "AbstractUriTemplateHandler", True, "setBaseUrl", "", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
diff --git a/java/ql/lib/ext/org.thymeleaf.model.yml b/java/ql/lib/ext/org.thymeleaf.model.yml
index a7413343ce4..fb294acafe6 100644
--- a/java/ql/lib/ext/org.thymeleaf.model.yml
+++ b/java/ql/lib/ext/org.thymeleaf.model.yml
@@ -1,13 +1,13 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSinkModel
+      extensible: sinkModel
     data:
       - ["org.thymeleaf", "ITemplateEngine", True, "process", "", "", "Argument[0]", "ssti", "manual"]
       - ["org.thymeleaf", "ITemplateEngine", True, "processThrottled", "", "", "Argument[0]", "ssti", "manual"]
   - addsTo:
       pack: codeql/java-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       - ["org.thymeleaf", "TemplateSpec", False, "TemplateSpec", "", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
       - ["org.thymeleaf", "TemplateSpec", False, "getTemplate", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
diff --git a/java/ql/lib/ext/org.xml.sax.model.yml b/java/ql/lib/ext/org.xml.sax.model.yml
index ecd2ba3c544..71f1194a94e 100644
--- a/java/ql/lib/ext/org.xml.sax.model.yml
+++ b/java/ql/lib/ext/org.xml.sax.model.yml
@@ -1,6 +1,6 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       - ["org.xml.sax", "InputSource", False, "InputSource", "", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
diff --git a/java/ql/lib/ext/org.xmlpull.v1.model.yml b/java/ql/lib/ext/org.xmlpull.v1.model.yml
index 01af9ba332b..9002fda11c1 100644
--- a/java/ql/lib/ext/org.xmlpull.v1.model.yml
+++ b/java/ql/lib/ext/org.xmlpull.v1.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSourceModel
+      extensible: sourceModel
     data:
       - ["org.xmlpull.v1", "XmlPullParser", False, "getName", "()", "", "ReturnValue", "remote", "manual"]
       - ["org.xmlpull.v1", "XmlPullParser", False, "getNamespace", "()", "", "ReturnValue", "remote", "manual"]
diff --git a/java/ql/lib/ext/play.mvc.model.yml b/java/ql/lib/ext/play.mvc.model.yml
index 98e665062a3..a1f8dc60fe0 100644
--- a/java/ql/lib/ext/play.mvc.model.yml
+++ b/java/ql/lib/ext/play.mvc.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSourceModel
+      extensible: sourceModel
     data:
       - ["play.mvc", "Http$RequestHeader", False, "getHeader", "", "", "ReturnValue", "remote", "manual"]
       - ["play.mvc", "Http$RequestHeader", False, "getQueryString", "", "", "ReturnValue", "remote", "manual"]
diff --git a/java/ql/lib/ext/ratpack.core.form.model.yml b/java/ql/lib/ext/ratpack.core.form.model.yml
index 20d34162ac0..f3df142cf9d 100644
--- a/java/ql/lib/ext/ratpack.core.form.model.yml
+++ b/java/ql/lib/ext/ratpack.core.form.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       - ["ratpack.core.form", "Form", True, "file", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
       - ["ratpack.core.form", "Form", True, "files", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
diff --git a/java/ql/lib/ext/ratpack.core.handling.model.yml b/java/ql/lib/ext/ratpack.core.handling.model.yml
index 7662cc6c79d..0882d1b983d 100644
--- a/java/ql/lib/ext/ratpack.core.handling.model.yml
+++ b/java/ql/lib/ext/ratpack.core.handling.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSourceModel
+      extensible: sourceModel
     data:
       # All Context#parse methods that return a Promise are remote flow sources.
       - ["ratpack.core.handling", "Context", True, "parse", "(com.google.common.reflect.TypeToken)", "", "ReturnValue", "remote", "manual"]
@@ -12,7 +12,7 @@ extensions:
       - ["ratpack.core.handling", "Context", True, "parse", "(ratpack.parse.Parse)", "", "ReturnValue", "remote", "manual"]
   - addsTo:
       pack: codeql/java-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       - ["ratpack.core.handling", "Context", True, "parse", "(ratpack.core.http.TypedData,ratpack.core.parse.Parse)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
       - ["ratpack.core.handling", "Context", True, "parse", "(ratpack.core.http.TypedData,ratpack.core.parse.Parse)", "", "Argument[0]", "ReturnValue.MapKey", "taint", "manual"]
diff --git a/java/ql/lib/ext/ratpack.core.http.model.yml b/java/ql/lib/ext/ratpack.core.http.model.yml
index 094c90be1bd..2f6bc7fa17c 100644
--- a/java/ql/lib/ext/ratpack.core.http.model.yml
+++ b/java/ql/lib/ext/ratpack.core.http.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSourceModel
+      extensible: sourceModel
     data:
       - ["ratpack.core.http", "Request", True, "getBody", "", "", "ReturnValue", "remote", "manual"]
       - ["ratpack.core.http", "Request", True, "getContentLength", "", "", "ReturnValue", "remote", "manual"]
@@ -15,7 +15,7 @@ extensions:
       - ["ratpack.core.http", "Request", True, "oneCookie", "", "", "ReturnValue", "remote", "manual"]
   - addsTo:
       pack: codeql/java-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       - ["ratpack.core.http", "Headers", True, "asMultiValueMap", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
       - ["ratpack.core.http", "Headers", True, "get", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
diff --git a/java/ql/lib/ext/ratpack.exec.model.yml b/java/ql/lib/ext/ratpack.exec.model.yml
index 0303f5cfd26..b2c0b2a2922 100644
--- a/java/ql/lib/ext/ratpack.exec.model.yml
+++ b/java/ql/lib/ext/ratpack.exec.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       - ["ratpack.exec", "Promise", True, "apply", "", "", "Argument[-1].Element", "Argument[0].Parameter[0].Element", "value", "manual"]
       - ["ratpack.exec", "Promise", True, "apply", "", "", "Argument[0].ReturnValue.Element", "ReturnValue.Element", "value", "manual"]
diff --git a/java/ql/lib/ext/ratpack.form.model.yml b/java/ql/lib/ext/ratpack.form.model.yml
index c4677cecd8d..3c4f6b2dd2b 100644
--- a/java/ql/lib/ext/ratpack.form.model.yml
+++ b/java/ql/lib/ext/ratpack.form.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       - ["ratpack.form", "Form", True, "file", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
       - ["ratpack.form", "Form", True, "files", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
diff --git a/java/ql/lib/ext/ratpack.func.model.yml b/java/ql/lib/ext/ratpack.func.model.yml
index 04e5a0cec8c..6cd78dc39d9 100644
--- a/java/ql/lib/ext/ratpack.func.model.yml
+++ b/java/ql/lib/ext/ratpack.func.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       - ["ratpack.func", "MultiValueMap", True, "asMultimap", "", "", "Argument[-1].MapKey", "ReturnValue.MapKey", "value", "manual"]
       - ["ratpack.func", "MultiValueMap", True, "asMultimap", "", "", "Argument[-1].MapValue", "ReturnValue.MapValue", "value", "manual"]
diff --git a/java/ql/lib/ext/ratpack.handling.model.yml b/java/ql/lib/ext/ratpack.handling.model.yml
index 3c2c54d0bba..1552fc7c1fd 100644
--- a/java/ql/lib/ext/ratpack.handling.model.yml
+++ b/java/ql/lib/ext/ratpack.handling.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSourceModel
+      extensible: sourceModel
     data:
       # All Context#parse methods that return a Promise are remote flow sources.
       - ["ratpack.handling", "Context", True, "parse", "(com.google.common.reflect.TypeToken)", "", "ReturnValue", "remote", "manual"]
@@ -12,7 +12,7 @@ extensions:
       - ["ratpack.handling", "Context", True, "parse", "(ratpack.parse.Parse)", "", "ReturnValue", "remote", "manual"]
   - addsTo:
       pack: codeql/java-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       - ["ratpack.handling", "Context", True, "parse", "(ratpack.core.http.TypedData,ratpack.core.parse.Parse)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
       - ["ratpack.handling", "Context", True, "parse", "(ratpack.core.http.TypedData,ratpack.core.parse.Parse)", "", "Argument[0]", "ReturnValue.MapKey", "taint", "manual"]
diff --git a/java/ql/lib/ext/ratpack.http.model.yml b/java/ql/lib/ext/ratpack.http.model.yml
index fc96663138e..340d3d29905 100644
--- a/java/ql/lib/ext/ratpack.http.model.yml
+++ b/java/ql/lib/ext/ratpack.http.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSourceModel
+      extensible: sourceModel
     data:
       - ["ratpack.http", "Request", True, "getBody", "", "", "ReturnValue", "remote", "manual"]
       - ["ratpack.http", "Request", True, "getContentLength", "", "", "ReturnValue", "remote", "manual"]
@@ -15,7 +15,7 @@ extensions:
       - ["ratpack.http", "Request", True, "oneCookie", "", "", "ReturnValue", "remote", "manual"]
   - addsTo:
       pack: codeql/java-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       - ["ratpack.http", "Headers", True, "asMultiValueMap", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
       - ["ratpack.http", "Headers", True, "get", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
diff --git a/java/ql/lib/ext/ratpack.util.model.yml b/java/ql/lib/ext/ratpack.util.model.yml
index 218a023bcd3..0510897c4c6 100644
--- a/java/ql/lib/ext/ratpack.util.model.yml
+++ b/java/ql/lib/ext/ratpack.util.model.yml
@@ -1,7 +1,7 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       - ["ratpack.util", "MultiValueMap", True, "asMultimap", "", "", "Argument[-1].MapKey", "ReturnValue.MapKey", "value", "manual"]
       - ["ratpack.util", "MultiValueMap", True, "asMultimap", "", "", "Argument[-1].MapValue", "ReturnValue.MapValue", "value", "manual"]
diff --git a/java/ql/lib/ext/retrofit2.model.yml b/java/ql/lib/ext/retrofit2.model.yml
index 7b1a109365a..51c4c0eed83 100644
--- a/java/ql/lib/ext/retrofit2.model.yml
+++ b/java/ql/lib/ext/retrofit2.model.yml
@@ -1,6 +1,6 @@
 extensions:
   - addsTo:
       pack: codeql/java-all
-      extensible: extSinkModel
+      extensible: sinkModel
     data:
       - ["retrofit2", "Retrofit$Builder", True, "baseUrl", "", "", "Argument[0]", "open-url", "manual"]
diff --git a/java/ql/src/utils/flowtestcasegenerator/GenerateFlowTestCase.py b/java/ql/src/utils/flowtestcasegenerator/GenerateFlowTestCase.py
index 64a86505db4..ee9cf94f0ab 100755
--- a/java/ql/src/utils/flowtestcasegenerator/GenerateFlowTestCase.py
+++ b/java/ql/src/utils/flowtestcasegenerator/GenerateFlowTestCase.py
@@ -226,7 +226,7 @@ if len(supportModelRows) != 0:
         dataextensions = f"""extensions:
   - addsTo:
       pack: codeql/java-tests
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
 {models}
 """
diff --git a/java/ql/test/ext/test.model.yml b/java/ql/test/ext/test.model.yml
index 319ee2b834e..e4d92164a07 100644
--- a/java/ql/test/ext/test.model.yml
+++ b/java/ql/test/ext/test.model.yml
@@ -2,14 +2,14 @@ extensions:
   # Model(s) for Kotlin - dataflow/notnullexpr and dataflow/whenexpr test cases.
   - addsTo:
       pack: codeql/java-tests
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       - ["", "Uri", False, "getQueryParameter", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
 
   # Model(s) for Java - dataflow/callback-dispatch test case.
   - addsTo:
       pack: codeql/java-tests
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       - ["my.callback.qltest", "A", False, "applyConsumer1", "(Object,Consumer1)", "", "Argument[0]", "Argument[1].Parameter[0]", "value", "manual"]
       - ["my.callback.qltest", "A", False, "applyConsumer1Field1Field2", "(A,A,Consumer1)", "", "Argument[0].Field[my.callback.qltest.A.field1]", "Argument[2].Parameter[0]", "value", "manual"]
@@ -27,7 +27,7 @@ extensions:
   # Model(s) for Java - dataflow/collections test case.
   - addsTo:
       pack: codeql/java-tests
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       - ["", "B", False, "readElement", "(Spliterator)", "", "Argument[0].Element", "ReturnValue", "value", "manual"]
       - ["", "B", False, "readElement", "(Stream)", "", "Argument[0].Element", "ReturnValue", "value", "manual"]
@@ -35,7 +35,7 @@ extensions:
   # Model(s) for Java - dataflow/external-models test cases.
   - addsTo:
       pack: codeql/java-tests
-      extensible: extSourceModel
+      extensible: sourceModel
     data:
       - ["my.qltest", "A", False, "src1", "()", "", "ReturnValue", "qltest", "manual"]
       - ["my.qltest", "A", False, "src1", "(String)", "", "ReturnValue", "qltest", "manual"]
@@ -55,7 +55,7 @@ extensions:
       - ["my.qltest", "A", False, "srcTwoArg", "(java.lang.String,java.lang.String)", "", "ReturnValue", "qltest-longsig", "manual"]
   - addsTo:
       pack: codeql/java-tests
-      extensible: extSinkModel
+      extensible: sinkModel
     data:
       - ["my.qltest", "B", False, "sink1", "(Object)", "", "Argument[0]", "qltest", "manual"]
       - ["my.qltest", "B", False, "sinkMethod", "()", "", "ReturnValue", "qltest", "manual"]
@@ -64,7 +64,7 @@ extensions:
       - ["my.qltest", "B$Tag", False, "", "", "Annotated", "", "qltest-nospec", "manual"]
   - addsTo:
       pack: codeql/java-tests
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       - ["my.qltest", "C", False, "stepArgRes", "(Object)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
       - ["my.qltest", "C", False, "stepArgArg", "(Object,Object)", "", "Argument[0]", "Argument[1]", "taint", "manual"]
@@ -78,7 +78,7 @@ extensions:
   # Model(s) for Java - dataflow/synth-global test case.
   - addsTo:
       pack: codeql/java-tests
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       - ["my.qltest.synth", "A", False, "storeInArray", "(String)", "", "Argument[0]", "SyntheticGlobal[db1].ArrayElement", "value", "manual"]
       - ["my.qltest.synth", "A", False, "storeTaintInArray", "(String)", "", "Argument[0]", "SyntheticGlobal[db1].ArrayElement", "taint", "manual"]
@@ -89,7 +89,7 @@ extensions:
   # Model(s) for Java - frameworks/android/content-provider-summaries test case.
   - addsTo:
       pack: codeql/java-tests
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       - ["generatedtest", "Test", False, "newWithMapValueDefault", "(Object)", "", "Argument[0]", "ReturnValue.MapValue", "value", "manual"]
       - ["generatedtest", "Test", False, "newWithMapKeyDefault", "(Object)", "", "Argument[0]", "ReturnValue.MapKey", "value", "manual"]
@@ -99,7 +99,7 @@ extensions:
   # Model(s) for Java - frameworks/android/intent test case.
   - addsTo:
       pack: codeql/java-tests
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       - ["generatedtest", "Test", False, "newBundleWithMapValue", "(Object)", "", "Argument[0]", "ReturnValue.MapValue", "value", "manual"]
       - ["generatedtest", "Test", False, "newPersistableBundleWithMapValue", "(Object)", "", "Argument[0]", "ReturnValue.MapValue", "value", "manual"]
@@ -109,14 +109,14 @@ extensions:
   # Model(s) for Java - frameworks/android/notification test case.
   - addsTo:
       pack: codeql/java-tests
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       - ["generatedtest", "Test", False, "getMapKeyDefault", "(Bundle)", "", "Argument[0].MapKey", "ReturnValue", "value", "manual"]
 
   # Model(s) for Java - frameworks/apache-collections test case.
   - addsTo:
       pack: codeql/java-tests
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       - ["generatedtest", "Test", False, "newRBWithMapValue", "", "", "Argument[0]", "ReturnValue.MapValue", "value", "manual"]
       - ["generatedtest", "Test", False, "newRBWithMapKey", "", "", "Argument[0]", "ReturnValue.MapKey", "value", "manual"]
@@ -124,7 +124,7 @@ extensions:
   # Model(s) for Java - frameworks/guave/generated/collect test case.
   - addsTo:
       pack: codeql/java-tests
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       - ["generatedtest", "Test", False, "newWithElementDefault", "(Object)", "", "Argument[0]", "ReturnValue.Element", "value", "manual"]
       - ["generatedtest", "Test", False, "newWithMapKeyDefault", "(Object)", "", "Argument[0]", "ReturnValue.MapKey", "value", "manual"]
@@ -133,13 +133,13 @@ extensions:
   # Model(s) for Java - frameworks/stream test case.
   - addsTo:
       pack: codeql/java-tests
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       - ["generatedtest", "Test", False, "getElementSpliterator", "(Spliterator)", "", "Argument[0].Element", "ReturnValue", "value", "manual"]
 
   # Model(s) for Java - frameworks/stream test case.
   - addsTo:
       pack: codeql/java-tests
-      extensible: extSummaryModel
+      extensible: summaryModel
     data:
       - ["generatedtest", "Test", False, "getStreamElement", "", "", "Argument[0].Element", "ReturnValue", "value", "manual"]

From 5799287a2b1b79b2361a95164c4dbdbc0d94fd7d Mon Sep 17 00:00:00 2001
From: Chris Smowton <smowton@github.com>
Date: Wed, 14 Dec 2022 13:51:32 +0000
Subject: [PATCH 1359/1420] go: fix bug in zip-slip example fix

---
 go/ql/src/Security/CWE-022/ZipSlipGood.go | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/go/ql/src/Security/CWE-022/ZipSlipGood.go b/go/ql/src/Security/CWE-022/ZipSlipGood.go
index 40af79fb999..ac7e37d10de 100644
--- a/go/ql/src/Security/CWE-022/ZipSlipGood.go
+++ b/go/ql/src/Security/CWE-022/ZipSlipGood.go
@@ -12,7 +12,7 @@ func unzipGood(f string) {
 	for _, f := range r.File {
 		p, _ := filepath.Abs(f.Name)
 		// GOOD: Check that path does not contain ".." before using it
-		if !strings.Contains(p, "..") {
+		if !strings.Contains(f.Name, "..") {
 			ioutil.WriteFile(p, []byte("present"), 0666)
 		}
 	}

From fe3c8613cda1d11e501f6fb017527d13952cd5fb Mon Sep 17 00:00:00 2001
From: Michael Nebel <michaelnebel@github.com>
Date: Wed, 14 Dec 2022 15:25:47 +0100
Subject: [PATCH 1360/1420] Java: Fix name of extensible in java integration
 test.

---
 .../kotlin/annotation-id-consistency/ext/test.model.yml         | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/java/ql/integration-tests/all-platforms/kotlin/annotation-id-consistency/ext/test.model.yml b/java/ql/integration-tests/all-platforms/kotlin/annotation-id-consistency/ext/test.model.yml
index 708257719b0..4d7a2e9a149 100644
--- a/java/ql/integration-tests/all-platforms/kotlin/annotation-id-consistency/ext/test.model.yml
+++ b/java/ql/integration-tests/all-platforms/kotlin/annotation-id-consistency/ext/test.model.yml
@@ -1,5 +1,5 @@
 extensions:
   - addsTo:
       pack: integrationtest-annotation-id-consistency
-      extensible: negativeSummaryModel
+      extensible: neutralModel
     data: []

From 14faff44771820e0341dc3a0f558ea630434eb8f Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Alvaro=20Mu=C3=B1oz?= <pwntester@github.com>
Date: Wed, 14 Dec 2022 15:37:31 +0100
Subject: [PATCH 1361/1420] fix restify tests

---
 .../frameworks/Restify2/src/index.js          | 27 +++---
 .../frameworks/Restify2/tests.expected        | 90 ++++++++++---------
 .../frameworks/Restify2/tests.ql              |  1 -
 3 files changed, 63 insertions(+), 55 deletions(-)

diff --git a/javascript/ql/test/library-tests/frameworks/Restify2/src/index.js b/javascript/ql/test/library-tests/frameworks/Restify2/src/index.js
index 9e3c901f377..9031aa24564 100644
--- a/javascript/ql/test/library-tests/frameworks/Restify2/src/index.js
+++ b/javascript/ql/test/library-tests/frameworks/Restify2/src/index.js
@@ -123,9 +123,18 @@ function xss(req, res, next) { // test: handler
   res.send('hello ' + req.query.name); // test: source, stackTraceExposureSink, xssSink, xss
   next();
 }
-server["get"]('/xss', xss); // test: setup
 
-function xss2(req, res, next) { // test: handler
+function xss2(req, res, next) { // test: candidateHandler
+  next()
+}
+
+function xss3(req, res, next) { // test: handler
+  res.header("Content-Type", "text/html"); // test: headerDefinition
+  res.send('hello ' + req.header("foo")); // test: source, stackTraceExposureSink, xssSink, !xss
+  next();
+}
+
+function xss4(req, res, next) { // test: handler
   var body = req.params.name; // test: source
   res.writeHead(200, {
     'Content-Length': Buffer.byteLength(body),
@@ -135,19 +144,16 @@ function xss2(req, res, next) { // test: handler
   res.end();
   next();
 }
+
+server["get"]('/xss', xss); // test: setup
 ["get", "head"].forEach(method => {
   server[method]('/xss2', xss2);
 });
-
-function xss3(req, res, next) { // test: handler
-  res.header("Content-Type", "text/html"); // test: headerDefinition
-  res.send('hello ' + req.header("foo")); // test: source, stackTraceExposureSink, xssSink, !xss
-  next();
-}
 server["get"]('/xss3', xss3); // test: setup
+server["get"]('/xss4', xss4); // test: setup
 
 
-function sendV2(req, res, next) { // test: candidateHandler
+server.get('/testv2', function(req, res, next) { // test: handler
   res.set({
     "Content-Type": "text/html",
     "access-control-allow-origin": "*", // test: corsMiconfigurationSink
@@ -162,7 +168,8 @@ function sendV2(req, res, next) { // test: candidateHandler
   clients.createJsonClient(req.params.uri); // test: source, ssrfSink
 
   next();
-}
+})
+
 server.get('/hello2/:name', restify.plugins.conditionalHandler([ // test: setup
   { version: ['2.0.0', '2.1.0', '2.2.0'], handler: sendV2 }
 ]));
diff --git a/javascript/ql/test/library-tests/frameworks/Restify2/tests.expected b/javascript/ql/test/library-tests/frameworks/Restify2/tests.expected
index 26e82f53391..678104f52a8 100644
--- a/javascript/ql/test/library-tests/frameworks/Restify2/tests.expected
+++ b/javascript/ql/test/library-tests/frameworks/Restify2/tests.expected
@@ -1,7 +1,7 @@
 passingPositiveTests
-| PASSED | candidateHandler | src/index.js:150:35:150:59 | // test ... Handler |
-| PASSED | candidateHandler | src/index.js:173:42:173:66 | // test ... Handler |
-| PASSED | corsMiconfigurationSink | src/index.js:153:41:153:72 | // test ... ionSink |
+| PASSED | candidateHandler | src/index.js:127:33:127:57 | // test ... Handler |
+| PASSED | candidateHandler | src/index.js:180:42:180:66 | // test ... Handler |
+| PASSED | corsMiconfigurationSink | src/index.js:159:41:159:72 | // test ... ionSink |
 | PASSED | handler | src/index.js:32:39:32:54 | // test: handler |
 | PASSED | handler | src/index.js:41:39:41:54 | // test: handler |
 | PASSED | handler | src/index.js:44:35:44:50 | // test: handler |
@@ -18,17 +18,18 @@ passingPositiveTests
 | PASSED | handler | src/index.js:111:31:111:46 | // test: handler |
 | PASSED | handler | src/index.js:115:30:115:45 | // test: handler |
 | PASSED | handler | src/index.js:121:32:121:47 | // test: handler |
-| PASSED | handler | src/index.js:128:33:128:48 | // test: handler |
-| PASSED | handler | src/index.js:142:33:142:48 | // test: handler |
-| PASSED | handler | src/index.js:183:65:183:87 | // test ... handler |
-| PASSED | handler | src/index.js:187:63:187:85 | // test ... handler |
-| PASSED | handler | src/index.js:190:55:190:77 | // test ... handler |
-| PASSED | handler | src/index.js:192:39:192:61 | // test ... handler |
-| PASSED | handler | src/index.js:194:49:194:71 | // test ... handler |
-| PASSED | handler | src/index.js:198:65:198:87 | // test ... handler |
+| PASSED | handler | src/index.js:131:33:131:48 | // test: handler |
+| PASSED | handler | src/index.js:137:33:137:48 | // test: handler |
+| PASSED | handler | src/index.js:156:50:156:65 | // test: handler |
+| PASSED | handler | src/index.js:190:65:190:87 | // test ... handler |
+| PASSED | handler | src/index.js:194:63:194:85 | // test ... handler |
+| PASSED | handler | src/index.js:197:55:197:77 | // test ... handler |
+| PASSED | handler | src/index.js:199:39:199:61 | // test ... handler |
+| PASSED | handler | src/index.js:201:49:201:71 | // test ... handler |
+| PASSED | handler | src/index.js:205:65:205:87 | // test ... handler |
 | PASSED | headerDefinition | src/index.js:104:46:104:70 | // test ... inition |
 | PASSED | headerDefinition | src/index.js:122:44:122:68 | // test ... inition |
-| PASSED | headerDefinition | src/index.js:143:44:143:68 | // test ... inition |
+| PASSED | headerDefinition | src/index.js:132:44:132:68 | // test ... inition |
 | PASSED | redirectSink | src/index.js:78:32:78:60 | // test ... ectSink |
 | PASSED | redirectSink | src/index.js:87:45:87:73 | // test ... ectSink |
 | PASSED | redirectSink | src/index.js:88:40:88:68 | // test ... ectSink |
@@ -40,16 +41,17 @@ passingPositiveTests
 | PASSED | setup | src/index.js:93:44:93:66 | // test ... handler |
 | PASSED | setup | src/index.js:98:20:98:33 | // test: setup |
 | PASSED | setup | src/index.js:110:21:110:34 | // test: setup |
-| PASSED | setup | src/index.js:126:29:126:42 | // test: setup |
-| PASSED | setup | src/index.js:147:31:147:44 | // test: setup |
-| PASSED | setup | src/index.js:166:66:166:79 | // test: setup |
-| PASSED | setup | src/index.js:170:66:170:78 | //test: setup |
-| PASSED | setup | src/index.js:183:65:183:87 | // test ... handler |
-| PASSED | setup | src/index.js:187:63:187:85 | // test ... handler |
-| PASSED | setup | src/index.js:190:55:190:77 | // test ... handler |
-| PASSED | setup | src/index.js:192:39:192:61 | // test ... handler |
-| PASSED | setup | src/index.js:194:49:194:71 | // test ... handler |
-| PASSED | setup | src/index.js:198:65:198:87 | // test ... handler |
+| PASSED | setup | src/index.js:148:29:148:42 | // test: setup |
+| PASSED | setup | src/index.js:152:31:152:44 | // test: setup |
+| PASSED | setup | src/index.js:153:31:153:44 | // test: setup |
+| PASSED | setup | src/index.js:173:66:173:79 | // test: setup |
+| PASSED | setup | src/index.js:177:66:177:78 | //test: setup |
+| PASSED | setup | src/index.js:190:65:190:87 | // test ... handler |
+| PASSED | setup | src/index.js:194:63:194:85 | // test ... handler |
+| PASSED | setup | src/index.js:197:55:197:77 | // test ... handler |
+| PASSED | setup | src/index.js:199:39:199:61 | // test ... handler |
+| PASSED | setup | src/index.js:201:49:201:71 | // test ... handler |
+| PASSED | setup | src/index.js:205:65:205:87 | // test ... handler |
 | PASSED | source | src/index.js:11:76:11:130 | // test ... k, !xss |
 | PASSED | source | src/index.js:24:76:24:128 | // test ... nk, xss |
 | PASSED | source | src/index.js:72:41:72:80 | // test ... reSink  |
@@ -61,15 +63,15 @@ passingPositiveTests
 | PASSED | source | src/index.js:88:40:88:68 | // test ... ectSink |
 | PASSED | source | src/index.js:100:37:100:51 | // test: source |
 | PASSED | source | src/index.js:123:40:123:92 | // test ... nk, xss |
-| PASSED | source | src/index.js:129:31:129:45 | // test: source |
-| PASSED | source | src/index.js:144:43:144:96 | // test ... k, !xss |
-| PASSED | source | src/index.js:158:41:158:93 | // test ... nk, xss |
-| PASSED | source | src/index.js:160:26:160:50 | // test ... srfSink |
-| PASSED | source | src/index.js:162:45:162:69 | // test ... srfSink |
-| PASSED | source | src/index.js:196:28:196:58 | // test ... k, !xss |
-| PASSED | source | src/index.js:200:28:200:56 | // test ... nk, xss |
-| PASSED | ssrfSink | src/index.js:160:26:160:50 | // test ... srfSink |
-| PASSED | ssrfSink | src/index.js:162:45:162:69 | // test ... srfSink |
+| PASSED | source | src/index.js:133:43:133:96 | // test ... k, !xss |
+| PASSED | source | src/index.js:138:31:138:45 | // test: source |
+| PASSED | source | src/index.js:164:41:164:93 | // test ... nk, xss |
+| PASSED | source | src/index.js:166:26:166:50 | // test ... srfSink |
+| PASSED | source | src/index.js:168:45:168:69 | // test ... srfSink |
+| PASSED | source | src/index.js:203:28:203:58 | // test ... k, !xss |
+| PASSED | source | src/index.js:207:28:207:56 | // test ... nk, xss |
+| PASSED | ssrfSink | src/index.js:166:26:166:50 | // test ... srfSink |
+| PASSED | ssrfSink | src/index.js:168:45:168:69 | // test ... srfSink |
 | PASSED | stackTraceExposureSink | src/index.js:9:66:9:96 | // test ... ureSink |
 | PASSED | stackTraceExposureSink | src/index.js:11:76:11:130 | // test ... k, !xss |
 | PASSED | stackTraceExposureSink | src/index.js:22:66:22:105 | // test ... xssSink |
@@ -81,28 +83,28 @@ passingPositiveTests
 | PASSED | stackTraceExposureSink | src/index.js:105:29:105:73 | // test ... nk, xss |
 | PASSED | stackTraceExposureSink | src/index.js:116:29:116:59 | // test ... ureSink |
 | PASSED | stackTraceExposureSink | src/index.js:123:40:123:92 | // test ... nk, xss |
-| PASSED | stackTraceExposureSink | src/index.js:134:20:134:64 | // test ... nk, xss |
-| PASSED | stackTraceExposureSink | src/index.js:144:43:144:96 | // test ... k, !xss |
-| PASSED | stackTraceExposureSink | src/index.js:158:41:158:93 | // test ... nk, xss |
+| PASSED | stackTraceExposureSink | src/index.js:133:43:133:96 | // test ... k, !xss |
+| PASSED | stackTraceExposureSink | src/index.js:143:20:143:64 | // test ... nk, xss |
+| PASSED | stackTraceExposureSink | src/index.js:164:41:164:93 | // test ... nk, xss |
 | PASSED | xss | src/index.js:24:76:24:128 | // test ... nk, xss |
 | PASSED | xss | src/index.js:105:29:105:73 | // test ... nk, xss |
 | PASSED | xss | src/index.js:123:40:123:92 | // test ... nk, xss |
-| PASSED | xss | src/index.js:134:20:134:64 | // test ... nk, xss |
-| PASSED | xss | src/index.js:158:41:158:93 | // test ... nk, xss |
-| PASSED | xss | src/index.js:200:28:200:56 | // test ... nk, xss |
+| PASSED | xss | src/index.js:143:20:143:64 | // test ... nk, xss |
+| PASSED | xss | src/index.js:164:41:164:93 | // test ... nk, xss |
+| PASSED | xss | src/index.js:207:28:207:56 | // test ... nk, xss |
 | PASSED | xssSink | src/index.js:22:66:22:105 | // test ... xssSink |
 | PASSED | xssSink | src/index.js:24:76:24:128 | // test ... nk, xss |
 | PASSED | xssSink | src/index.js:105:29:105:73 | // test ... nk, xss |
 | PASSED | xssSink | src/index.js:123:40:123:92 | // test ... nk, xss |
-| PASSED | xssSink | src/index.js:134:20:134:64 | // test ... nk, xss |
-| PASSED | xssSink | src/index.js:144:43:144:96 | // test ... k, !xss |
-| PASSED | xssSink | src/index.js:158:41:158:93 | // test ... nk, xss |
-| PASSED | xssSink | src/index.js:200:28:200:56 | // test ... nk, xss |
+| PASSED | xssSink | src/index.js:133:43:133:96 | // test ... k, !xss |
+| PASSED | xssSink | src/index.js:143:20:143:64 | // test ... nk, xss |
+| PASSED | xssSink | src/index.js:164:41:164:93 | // test ... nk, xss |
+| PASSED | xssSink | src/index.js:207:28:207:56 | // test ... nk, xss |
 failingPositiveTests
 passingNegativeTests
 | PASSED | !xss | src/index.js:11:76:11:130 | // test ... k, !xss |
-| PASSED | !xss | src/index.js:144:43:144:96 | // test ... k, !xss |
-| PASSED | !xss | src/index.js:196:28:196:58 | // test ... k, !xss |
+| PASSED | !xss | src/index.js:133:43:133:96 | // test ... k, !xss |
+| PASSED | !xss | src/index.js:203:28:203:58 | // test ... k, !xss |
 | PASSED | !xssSink | src/index.js:11:76:11:130 | // test ... k, !xss |
-| PASSED | !xssSink | src/index.js:196:28:196:58 | // test ... k, !xss |
+| PASSED | !xssSink | src/index.js:203:28:203:58 | // test ... k, !xss |
 failingNegativeTests
diff --git a/javascript/ql/test/library-tests/frameworks/Restify2/tests.ql b/javascript/ql/test/library-tests/frameworks/Restify2/tests.ql
index b52e3be5256..e385b558458 100644
--- a/javascript/ql/test/library-tests/frameworks/Restify2/tests.ql
+++ b/javascript/ql/test/library-tests/frameworks/Restify2/tests.ql
@@ -6,7 +6,6 @@ import semmle.javascript.security.dataflow.ServerSideUrlRedirectCustomizations
 import semmle.javascript.security.dataflow.RequestForgeryCustomizations
 import semmle.javascript.security.dataflow.ReflectedXssCustomizations
 import semmle.javascript.security.dataflow.ReflectedXssQuery as XssConfig
-import semmle.javascript.heuristics.AdditionalRouteHandlers
 
 class InlineTest extends LineComment {
   string tests;

From 50414cc748c9782987673843617cd914bdddf51e Mon Sep 17 00:00:00 2001
From: Owen Mansel-Chan <owen-mc@github.com>
Date: Wed, 14 Dec 2022 14:40:15 +0000
Subject: [PATCH 1362/1420] Make DataFlowType a singleton

---
 .../go/dataflow/internal/DataFlowPrivate.qll  |   18 +-
 .../go/dataflow/internal/DataFlowUtil.qll     |    8 +-
 .../internal/FlowSummaryImplSpecific.qll      |    4 +-
 .../CWE-090/LDAPInjection.expected            |   76 +-
 .../CWE-1004/CookieWithoutHttpOnly.expected   | 1112 ++++++++---------
 .../CWE-321/HardcodedKeys.expected            |  116 +-
 .../CWE-369/DivideByZero.expected             |   44 +-
 .../HTMLTemplateEscapingPassthrough.expected  |  422 +++----
 go/ql/test/experimental/CWE-918/SSRF.expected |   94 +-
 .../Unsafe/WrongUsageOfUnsafe.expected        |   86 +-
 .../go/dataflow/ChannelField/test.expected    |   34 +-
 .../go/frameworks/Beego/ReflectedXss.expected |  266 ++--
 .../go/frameworks/Beego/TaintedPath.expected  |   20 +-
 .../frameworks/BeegoOrm/SqlInjection.expected |  138 +-
 .../go/frameworks/BeegoOrm/StoredXss.expected |  160 +--
 .../go/frameworks/Chi/ReflectedXss.expected   |   32 +-
 .../go/frameworks/Echo/OpenRedirect.expected  |   20 +-
 .../go/frameworks/Echo/ReflectedXss.expected  |  114 +-
 .../go/frameworks/Encoding/jsoniter.expected  |    8 +-
 .../frameworks/Gorestful/gorestful.expected   |   16 +-
 .../frameworks/Protobuf/TaintFlows.expected   |   66 +-
 .../go/frameworks/Revel/OpenRedirect.expected |    6 +-
 .../go/frameworks/Revel/ReflectedXss.expected |   30 +-
 .../go/frameworks/Revel/TaintedPath.expected  |   12 +-
 .../go/frameworks/Spew/TaintFlows.expected    |   34 +-
 .../frameworks/XNetHtml/ReflectedXss.expected |   56 +-
 .../IncompleteHostnameRegexp.expected         |    6 +-
 .../Security/CWE-022/TaintedPath.expected     |   16 +-
 .../CWE-022/UnsafeUnzipSymlink.expected       |   20 +-
 .../Security/CWE-022/ZipSlip.expected         |   38 +-
 .../CWE-078/CommandInjection.expected         |  112 +-
 .../Security/CWE-078/StoredCommand.expected   |    6 +-
 .../Security/CWE-079/ReflectedXss.expected    |  124 +-
 .../Security/CWE-079/StoredXss.expected       |   18 +-
 .../Security/CWE-089/SqlInjection.expected    |  242 ++--
 .../Security/CWE-089/StringBreak.expected     |   26 +-
 .../CWE-190/AllocationSizeOverflow.expected   |   56 +-
 .../CWE-209/StackTraceExposure.expected       |    6 +-
 .../CWE-312/CleartextLogging.expected         |  184 +--
 .../CWE-322/InsecureHostKeyCallback.expected  |   70 +-
 .../CWE-326/InsufficientKeySize.expected      |   34 +-
 .../Security/CWE-327/UnsafeTLS.expected       |  162 +--
 .../CWE-327/WeakCryptoAlgorithm.expected      |   18 +-
 .../InsecureRandomness.expected               |   24 +-
 .../CWE-352/ConstantOauth2State.expected      |   72 +-
 .../BadRedirectCheck.expected                 |   90 +-
 .../OpenUrlRedirect/OpenUrlRedirect.expected  |  208 +--
 .../Security/CWE-640/EmailInjection.expected  |   58 +-
 .../Security/CWE-643/XPathInjection.expected  |  182 +--
 .../Security/CWE-918/RequestForgery.expected  |  108 +-
 50 files changed, 2435 insertions(+), 2437 deletions(-)

diff --git a/go/ql/lib/semmle/go/dataflow/internal/DataFlowPrivate.qll b/go/ql/lib/semmle/go/dataflow/internal/DataFlowPrivate.qll
index e8bb843a8d4..d2bb6bfdb25 100644
--- a/go/ql/lib/semmle/go/dataflow/internal/DataFlowPrivate.qll
+++ b/go/ql/lib/semmle/go/dataflow/internal/DataFlowPrivate.qll
@@ -199,21 +199,17 @@ predicate expectsContent(Node n, ContentSet c) {
 }
 
 /** Gets the type of `n` used for type pruning. */
-DataFlowType getNodeType(Node n) {
-  result = n.getType()
-  or
-  result = FlowSummaryImpl::Private::summaryNodeType(n)
-}
+DataFlowType getNodeType(Node n) { result = TTodoDataFlowType() and exists(n) }
 
 /** Gets a string representation of a type returned by `getNodeType()`. */
-string ppReprType(Type t) { result = t.toString() }
+string ppReprType(DataFlowType t) { none() }
 
 /**
  * Holds if `t1` and `t2` are compatible, that is, whether data can flow from
  * a node of type `t1` to a node of type `t2`.
  */
 pragma[inline]
-predicate compatibleTypes(Type t1, Type t2) {
+predicate compatibleTypes(DataFlowType t1, DataFlowType t2) {
   any() // stub implementation
 }
 
@@ -227,7 +223,13 @@ class CastNode extends ExprNode {
 
 class DataFlowExpr = Expr;
 
-class DataFlowType = Type;
+private newtype TDataFlowType =
+  TTodoDataFlowType() or
+  TTodoDataFlowType2() // Add a dummy value to prevent bad functionality-induced joins arising from a type of size 1.
+
+class DataFlowType extends TDataFlowType {
+  string toString() { result = "" }
+}
 
 class DataFlowLocation = Location;
 
diff --git a/go/ql/lib/semmle/go/dataflow/internal/DataFlowUtil.qll b/go/ql/lib/semmle/go/dataflow/internal/DataFlowUtil.qll
index b38c3c291bd..a604f1b875b 100644
--- a/go/ql/lib/semmle/go/dataflow/internal/DataFlowUtil.qll
+++ b/go/ql/lib/semmle/go/dataflow/internal/DataFlowUtil.qll
@@ -149,7 +149,7 @@ private newtype TContent =
  */
 class Content extends TContent {
   /** Gets the type of the contained data for the purpose of type pruning. */
-  DataFlowType getType() { result instanceof EmptyInterfaceType }
+  DataFlowType getType() { any() }
 
   /** Gets a textual representation of this element. */
   abstract string toString();
@@ -177,7 +177,7 @@ class FieldContent extends Content, TFieldContent {
   /** Gets the field associated with this `FieldContent`. */
   Field getField() { result = f }
 
-  override DataFlowType getType() { result = f.getType() }
+  override DataFlowType getType() { any() }
 
   override string toString() { result = f.toString() }
 
@@ -205,7 +205,7 @@ class PointerContent extends Content, TPointerContent {
   /** Gets the pointer type that containers with this content must have. */
   PointerType getPointerType() { result = t }
 
-  override DataFlowType getType() { result = t.getBaseType() }
+  override DataFlowType getType() { any() }
 
   override string toString() { result = "pointer" }
 }
@@ -228,7 +228,7 @@ class SyntheticFieldContent extends Content, TSyntheticFieldContent {
   /** Gets the field associated with this `SyntheticFieldContent`. */
   SyntheticField getField() { result = s }
 
-  override DataFlowType getType() { result = s.getType() }
+  override DataFlowType getType() { any() }
 
   override string toString() { result = s.toString() }
 }
diff --git a/go/ql/lib/semmle/go/dataflow/internal/FlowSummaryImplSpecific.qll b/go/ql/lib/semmle/go/dataflow/internal/FlowSummaryImplSpecific.qll
index 0797cd7a979..5ecf73fe3df 100644
--- a/go/ql/lib/semmle/go/dataflow/internal/FlowSummaryImplSpecific.qll
+++ b/go/ql/lib/semmle/go/dataflow/internal/FlowSummaryImplSpecific.qll
@@ -40,9 +40,7 @@ DataFlowCall summaryDataFlowCall(Node receiver) {
 DataFlowType getContentType(Content c) { result = c.getType() }
 
 /** Gets the return type of kind `rk` for callable `c`. */
-DataFlowType getReturnType(SummarizedCallable c, ReturnKind rk) {
-  result = c.getType().getResultType(rk.getIndex())
-}
+DataFlowType getReturnType(SummarizedCallable c, ReturnKind rk) { any() }
 
 /**
  * Gets the type of the `i`th parameter in a synthesized call that targets a
diff --git a/go/ql/test/experimental/CWE-090/LDAPInjection.expected b/go/ql/test/experimental/CWE-090/LDAPInjection.expected
index 6395227df6e..8e1165fab60 100644
--- a/go/ql/test/experimental/CWE-090/LDAPInjection.expected
+++ b/go/ql/test/experimental/CWE-090/LDAPInjection.expected
@@ -1,53 +1,53 @@
 edges
-| LDAPInjection.go:57:15:57:29 | call to UserAgent : string | LDAPInjection.go:59:3:59:11 | untrusted |
-| LDAPInjection.go:57:15:57:29 | call to UserAgent : string | LDAPInjection.go:61:3:61:51 | ...+... |
-| LDAPInjection.go:57:15:57:29 | call to UserAgent : string | LDAPInjection.go:62:3:62:33 | slice literal |
-| LDAPInjection.go:57:15:57:29 | call to UserAgent : string | LDAPInjection.go:62:24:62:32 | untrusted : string |
-| LDAPInjection.go:57:15:57:29 | call to UserAgent : string | LDAPInjection.go:66:3:66:11 | untrusted |
-| LDAPInjection.go:57:15:57:29 | call to UserAgent : string | LDAPInjection.go:68:3:68:51 | ...+... |
-| LDAPInjection.go:57:15:57:29 | call to UserAgent : string | LDAPInjection.go:69:3:69:33 | slice literal |
-| LDAPInjection.go:57:15:57:29 | call to UserAgent : string | LDAPInjection.go:69:24:69:32 | untrusted : string |
-| LDAPInjection.go:57:15:57:29 | call to UserAgent : string | LDAPInjection.go:73:3:73:11 | untrusted |
-| LDAPInjection.go:57:15:57:29 | call to UserAgent : string | LDAPInjection.go:75:3:75:51 | ...+... |
-| LDAPInjection.go:57:15:57:29 | call to UserAgent : string | LDAPInjection.go:76:3:76:33 | slice literal |
-| LDAPInjection.go:57:15:57:29 | call to UserAgent : string | LDAPInjection.go:76:24:76:32 | untrusted : string |
-| LDAPInjection.go:57:15:57:29 | call to UserAgent : string | LDAPInjection.go:80:22:80:30 | untrusted |
-| LDAPInjection.go:57:15:57:29 | call to UserAgent : string | LDAPInjection.go:81:25:81:33 | untrusted |
-| LDAPInjection.go:62:3:62:33 | slice literal [array] : string | LDAPInjection.go:62:3:62:33 | slice literal |
-| LDAPInjection.go:62:24:62:32 | untrusted : string | LDAPInjection.go:62:3:62:33 | slice literal [array] : string |
-| LDAPInjection.go:69:3:69:33 | slice literal [array] : string | LDAPInjection.go:69:3:69:33 | slice literal |
-| LDAPInjection.go:69:24:69:32 | untrusted : string | LDAPInjection.go:69:3:69:33 | slice literal [array] : string |
-| LDAPInjection.go:76:3:76:33 | slice literal [array] : string | LDAPInjection.go:76:3:76:33 | slice literal |
-| LDAPInjection.go:76:24:76:32 | untrusted : string | LDAPInjection.go:76:3:76:33 | slice literal [array] : string |
+| LDAPInjection.go:57:15:57:29 | call to UserAgent | LDAPInjection.go:59:3:59:11 | untrusted |
+| LDAPInjection.go:57:15:57:29 | call to UserAgent | LDAPInjection.go:61:3:61:51 | ...+... |
+| LDAPInjection.go:57:15:57:29 | call to UserAgent | LDAPInjection.go:62:3:62:33 | slice literal |
+| LDAPInjection.go:57:15:57:29 | call to UserAgent | LDAPInjection.go:62:24:62:32 | untrusted |
+| LDAPInjection.go:57:15:57:29 | call to UserAgent | LDAPInjection.go:66:3:66:11 | untrusted |
+| LDAPInjection.go:57:15:57:29 | call to UserAgent | LDAPInjection.go:68:3:68:51 | ...+... |
+| LDAPInjection.go:57:15:57:29 | call to UserAgent | LDAPInjection.go:69:3:69:33 | slice literal |
+| LDAPInjection.go:57:15:57:29 | call to UserAgent | LDAPInjection.go:69:24:69:32 | untrusted |
+| LDAPInjection.go:57:15:57:29 | call to UserAgent | LDAPInjection.go:73:3:73:11 | untrusted |
+| LDAPInjection.go:57:15:57:29 | call to UserAgent | LDAPInjection.go:75:3:75:51 | ...+... |
+| LDAPInjection.go:57:15:57:29 | call to UserAgent | LDAPInjection.go:76:3:76:33 | slice literal |
+| LDAPInjection.go:57:15:57:29 | call to UserAgent | LDAPInjection.go:76:24:76:32 | untrusted |
+| LDAPInjection.go:57:15:57:29 | call to UserAgent | LDAPInjection.go:80:22:80:30 | untrusted |
+| LDAPInjection.go:57:15:57:29 | call to UserAgent | LDAPInjection.go:81:25:81:33 | untrusted |
+| LDAPInjection.go:62:3:62:33 | slice literal [array] | LDAPInjection.go:62:3:62:33 | slice literal |
+| LDAPInjection.go:62:24:62:32 | untrusted | LDAPInjection.go:62:3:62:33 | slice literal [array] |
+| LDAPInjection.go:69:3:69:33 | slice literal [array] | LDAPInjection.go:69:3:69:33 | slice literal |
+| LDAPInjection.go:69:24:69:32 | untrusted | LDAPInjection.go:69:3:69:33 | slice literal [array] |
+| LDAPInjection.go:76:3:76:33 | slice literal [array] | LDAPInjection.go:76:3:76:33 | slice literal |
+| LDAPInjection.go:76:24:76:32 | untrusted | LDAPInjection.go:76:3:76:33 | slice literal [array] |
 nodes
-| LDAPInjection.go:57:15:57:29 | call to UserAgent : string | semmle.label | call to UserAgent : string |
+| LDAPInjection.go:57:15:57:29 | call to UserAgent | semmle.label | call to UserAgent |
 | LDAPInjection.go:59:3:59:11 | untrusted | semmle.label | untrusted |
 | LDAPInjection.go:61:3:61:51 | ...+... | semmle.label | ...+... |
 | LDAPInjection.go:62:3:62:33 | slice literal | semmle.label | slice literal |
-| LDAPInjection.go:62:3:62:33 | slice literal [array] : string | semmle.label | slice literal [array] : string |
-| LDAPInjection.go:62:24:62:32 | untrusted : string | semmle.label | untrusted : string |
+| LDAPInjection.go:62:3:62:33 | slice literal [array] | semmle.label | slice literal [array] |
+| LDAPInjection.go:62:24:62:32 | untrusted | semmle.label | untrusted |
 | LDAPInjection.go:66:3:66:11 | untrusted | semmle.label | untrusted |
 | LDAPInjection.go:68:3:68:51 | ...+... | semmle.label | ...+... |
 | LDAPInjection.go:69:3:69:33 | slice literal | semmle.label | slice literal |
-| LDAPInjection.go:69:3:69:33 | slice literal [array] : string | semmle.label | slice literal [array] : string |
-| LDAPInjection.go:69:24:69:32 | untrusted : string | semmle.label | untrusted : string |
+| LDAPInjection.go:69:3:69:33 | slice literal [array] | semmle.label | slice literal [array] |
+| LDAPInjection.go:69:24:69:32 | untrusted | semmle.label | untrusted |
 | LDAPInjection.go:73:3:73:11 | untrusted | semmle.label | untrusted |
 | LDAPInjection.go:75:3:75:51 | ...+... | semmle.label | ...+... |
 | LDAPInjection.go:76:3:76:33 | slice literal | semmle.label | slice literal |
-| LDAPInjection.go:76:3:76:33 | slice literal [array] : string | semmle.label | slice literal [array] : string |
-| LDAPInjection.go:76:24:76:32 | untrusted : string | semmle.label | untrusted : string |
+| LDAPInjection.go:76:3:76:33 | slice literal [array] | semmle.label | slice literal [array] |
+| LDAPInjection.go:76:24:76:32 | untrusted | semmle.label | untrusted |
 | LDAPInjection.go:80:22:80:30 | untrusted | semmle.label | untrusted |
 | LDAPInjection.go:81:25:81:33 | untrusted | semmle.label | untrusted |
 subpaths
 #select
-| LDAPInjection.go:59:3:59:11 | untrusted | LDAPInjection.go:57:15:57:29 | call to UserAgent : string | LDAPInjection.go:59:3:59:11 | untrusted | LDAP query parameter depends on a $@. | LDAPInjection.go:57:15:57:29 | call to UserAgent | user-provided value |
-| LDAPInjection.go:61:3:61:51 | ...+... | LDAPInjection.go:57:15:57:29 | call to UserAgent : string | LDAPInjection.go:61:3:61:51 | ...+... | LDAP query parameter depends on a $@. | LDAPInjection.go:57:15:57:29 | call to UserAgent | user-provided value |
-| LDAPInjection.go:62:3:62:33 | slice literal | LDAPInjection.go:57:15:57:29 | call to UserAgent : string | LDAPInjection.go:62:3:62:33 | slice literal | LDAP query parameter depends on a $@. | LDAPInjection.go:57:15:57:29 | call to UserAgent | user-provided value |
-| LDAPInjection.go:66:3:66:11 | untrusted | LDAPInjection.go:57:15:57:29 | call to UserAgent : string | LDAPInjection.go:66:3:66:11 | untrusted | LDAP query parameter depends on a $@. | LDAPInjection.go:57:15:57:29 | call to UserAgent | user-provided value |
-| LDAPInjection.go:68:3:68:51 | ...+... | LDAPInjection.go:57:15:57:29 | call to UserAgent : string | LDAPInjection.go:68:3:68:51 | ...+... | LDAP query parameter depends on a $@. | LDAPInjection.go:57:15:57:29 | call to UserAgent | user-provided value |
-| LDAPInjection.go:69:3:69:33 | slice literal | LDAPInjection.go:57:15:57:29 | call to UserAgent : string | LDAPInjection.go:69:3:69:33 | slice literal | LDAP query parameter depends on a $@. | LDAPInjection.go:57:15:57:29 | call to UserAgent | user-provided value |
-| LDAPInjection.go:73:3:73:11 | untrusted | LDAPInjection.go:57:15:57:29 | call to UserAgent : string | LDAPInjection.go:73:3:73:11 | untrusted | LDAP query parameter depends on a $@. | LDAPInjection.go:57:15:57:29 | call to UserAgent | user-provided value |
-| LDAPInjection.go:75:3:75:51 | ...+... | LDAPInjection.go:57:15:57:29 | call to UserAgent : string | LDAPInjection.go:75:3:75:51 | ...+... | LDAP query parameter depends on a $@. | LDAPInjection.go:57:15:57:29 | call to UserAgent | user-provided value |
-| LDAPInjection.go:76:3:76:33 | slice literal | LDAPInjection.go:57:15:57:29 | call to UserAgent : string | LDAPInjection.go:76:3:76:33 | slice literal | LDAP query parameter depends on a $@. | LDAPInjection.go:57:15:57:29 | call to UserAgent | user-provided value |
-| LDAPInjection.go:80:22:80:30 | untrusted | LDAPInjection.go:57:15:57:29 | call to UserAgent : string | LDAPInjection.go:80:22:80:30 | untrusted | LDAP query parameter depends on a $@. | LDAPInjection.go:57:15:57:29 | call to UserAgent | user-provided value |
-| LDAPInjection.go:81:25:81:33 | untrusted | LDAPInjection.go:57:15:57:29 | call to UserAgent : string | LDAPInjection.go:81:25:81:33 | untrusted | LDAP query parameter depends on a $@. | LDAPInjection.go:57:15:57:29 | call to UserAgent | user-provided value |
+| LDAPInjection.go:59:3:59:11 | untrusted | LDAPInjection.go:57:15:57:29 | call to UserAgent | LDAPInjection.go:59:3:59:11 | untrusted | LDAP query parameter depends on a $@. | LDAPInjection.go:57:15:57:29 | call to UserAgent | user-provided value |
+| LDAPInjection.go:61:3:61:51 | ...+... | LDAPInjection.go:57:15:57:29 | call to UserAgent | LDAPInjection.go:61:3:61:51 | ...+... | LDAP query parameter depends on a $@. | LDAPInjection.go:57:15:57:29 | call to UserAgent | user-provided value |
+| LDAPInjection.go:62:3:62:33 | slice literal | LDAPInjection.go:57:15:57:29 | call to UserAgent | LDAPInjection.go:62:3:62:33 | slice literal | LDAP query parameter depends on a $@. | LDAPInjection.go:57:15:57:29 | call to UserAgent | user-provided value |
+| LDAPInjection.go:66:3:66:11 | untrusted | LDAPInjection.go:57:15:57:29 | call to UserAgent | LDAPInjection.go:66:3:66:11 | untrusted | LDAP query parameter depends on a $@. | LDAPInjection.go:57:15:57:29 | call to UserAgent | user-provided value |
+| LDAPInjection.go:68:3:68:51 | ...+... | LDAPInjection.go:57:15:57:29 | call to UserAgent | LDAPInjection.go:68:3:68:51 | ...+... | LDAP query parameter depends on a $@. | LDAPInjection.go:57:15:57:29 | call to UserAgent | user-provided value |
+| LDAPInjection.go:69:3:69:33 | slice literal | LDAPInjection.go:57:15:57:29 | call to UserAgent | LDAPInjection.go:69:3:69:33 | slice literal | LDAP query parameter depends on a $@. | LDAPInjection.go:57:15:57:29 | call to UserAgent | user-provided value |
+| LDAPInjection.go:73:3:73:11 | untrusted | LDAPInjection.go:57:15:57:29 | call to UserAgent | LDAPInjection.go:73:3:73:11 | untrusted | LDAP query parameter depends on a $@. | LDAPInjection.go:57:15:57:29 | call to UserAgent | user-provided value |
+| LDAPInjection.go:75:3:75:51 | ...+... | LDAPInjection.go:57:15:57:29 | call to UserAgent | LDAPInjection.go:75:3:75:51 | ...+... | LDAP query parameter depends on a $@. | LDAPInjection.go:57:15:57:29 | call to UserAgent | user-provided value |
+| LDAPInjection.go:76:3:76:33 | slice literal | LDAPInjection.go:57:15:57:29 | call to UserAgent | LDAPInjection.go:76:3:76:33 | slice literal | LDAP query parameter depends on a $@. | LDAPInjection.go:57:15:57:29 | call to UserAgent | user-provided value |
+| LDAPInjection.go:80:22:80:30 | untrusted | LDAPInjection.go:57:15:57:29 | call to UserAgent | LDAPInjection.go:80:22:80:30 | untrusted | LDAP query parameter depends on a $@. | LDAPInjection.go:57:15:57:29 | call to UserAgent | user-provided value |
+| LDAPInjection.go:81:25:81:33 | untrusted | LDAPInjection.go:57:15:57:29 | call to UserAgent | LDAPInjection.go:81:25:81:33 | untrusted | LDAP query parameter depends on a $@. | LDAPInjection.go:57:15:57:29 | call to UserAgent | user-provided value |
diff --git a/go/ql/test/experimental/CWE-1004/CookieWithoutHttpOnly.expected b/go/ql/test/experimental/CWE-1004/CookieWithoutHttpOnly.expected
index 27cc282c58c..1a22c7d1fc3 100644
--- a/go/ql/test/experimental/CWE-1004/CookieWithoutHttpOnly.expected
+++ b/go/ql/test/experimental/CWE-1004/CookieWithoutHttpOnly.expected
@@ -1,598 +1,598 @@
 edges
-| CookieWithoutHttpOnly.go:12:10:12:18 | "session" : string | CookieWithoutHttpOnly.go:15:20:15:21 | &... |
-| CookieWithoutHttpOnly.go:12:10:12:18 | "session" : string | CookieWithoutHttpOnly.go:15:20:15:21 | &... : pointer type |
-| CookieWithoutHttpOnly.go:12:10:12:18 | "session" : string | CookieWithoutHttpOnly.go:15:21:15:21 | c : Cookie |
-| CookieWithoutHttpOnly.go:15:20:15:21 | &... : pointer type | CookieWithoutHttpOnly.go:15:20:15:21 | &... |
-| CookieWithoutHttpOnly.go:15:20:15:21 | &... : pointer type | CookieWithoutHttpOnly.go:15:20:15:21 | &... : pointer type |
-| CookieWithoutHttpOnly.go:15:20:15:21 | &... : pointer type | CookieWithoutHttpOnly.go:15:21:15:21 | c : Cookie |
-| CookieWithoutHttpOnly.go:15:20:15:21 | &... [pointer] : Cookie | CookieWithoutHttpOnly.go:15:20:15:21 | &... |
-| CookieWithoutHttpOnly.go:15:20:15:21 | &... [pointer] : Cookie | CookieWithoutHttpOnly.go:15:20:15:21 | &... : pointer type |
-| CookieWithoutHttpOnly.go:15:20:15:21 | &... [pointer] : Cookie | CookieWithoutHttpOnly.go:15:21:15:21 | c : Cookie |
-| CookieWithoutHttpOnly.go:15:21:15:21 | c : Cookie | CookieWithoutHttpOnly.go:15:20:15:21 | &... [pointer] : Cookie |
-| CookieWithoutHttpOnly.go:20:13:20:21 | "session" : string | CookieWithoutHttpOnly.go:24:20:24:21 | &... |
-| CookieWithoutHttpOnly.go:20:13:20:21 | "session" : string | CookieWithoutHttpOnly.go:24:20:24:21 | &... : pointer type |
-| CookieWithoutHttpOnly.go:20:13:20:21 | "session" : string | CookieWithoutHttpOnly.go:24:21:24:21 | c : Cookie |
-| CookieWithoutHttpOnly.go:22:13:22:17 | false : bool | CookieWithoutHttpOnly.go:24:20:24:21 | &... |
-| CookieWithoutHttpOnly.go:22:13:22:17 | false : bool | CookieWithoutHttpOnly.go:24:20:24:21 | &... : pointer type |
-| CookieWithoutHttpOnly.go:22:13:22:17 | false : bool | CookieWithoutHttpOnly.go:24:21:24:21 | c : Cookie |
-| CookieWithoutHttpOnly.go:24:20:24:21 | &... : pointer type | CookieWithoutHttpOnly.go:24:20:24:21 | &... |
-| CookieWithoutHttpOnly.go:24:20:24:21 | &... : pointer type | CookieWithoutHttpOnly.go:24:20:24:21 | &... |
-| CookieWithoutHttpOnly.go:24:20:24:21 | &... : pointer type | CookieWithoutHttpOnly.go:24:20:24:21 | &... : pointer type |
-| CookieWithoutHttpOnly.go:24:20:24:21 | &... : pointer type | CookieWithoutHttpOnly.go:24:20:24:21 | &... : pointer type |
-| CookieWithoutHttpOnly.go:24:20:24:21 | &... : pointer type | CookieWithoutHttpOnly.go:24:21:24:21 | c : Cookie |
-| CookieWithoutHttpOnly.go:24:20:24:21 | &... : pointer type | CookieWithoutHttpOnly.go:24:21:24:21 | c : Cookie |
-| CookieWithoutHttpOnly.go:24:20:24:21 | &... [pointer] : Cookie | CookieWithoutHttpOnly.go:24:20:24:21 | &... |
-| CookieWithoutHttpOnly.go:24:20:24:21 | &... [pointer] : Cookie | CookieWithoutHttpOnly.go:24:20:24:21 | &... |
-| CookieWithoutHttpOnly.go:24:20:24:21 | &... [pointer] : Cookie | CookieWithoutHttpOnly.go:24:20:24:21 | &... : pointer type |
-| CookieWithoutHttpOnly.go:24:20:24:21 | &... [pointer] : Cookie | CookieWithoutHttpOnly.go:24:20:24:21 | &... : pointer type |
-| CookieWithoutHttpOnly.go:24:20:24:21 | &... [pointer] : Cookie | CookieWithoutHttpOnly.go:24:21:24:21 | c : Cookie |
-| CookieWithoutHttpOnly.go:24:20:24:21 | &... [pointer] : Cookie | CookieWithoutHttpOnly.go:24:21:24:21 | c : Cookie |
-| CookieWithoutHttpOnly.go:24:21:24:21 | c : Cookie | CookieWithoutHttpOnly.go:24:20:24:21 | &... [pointer] : Cookie |
-| CookieWithoutHttpOnly.go:24:21:24:21 | c : Cookie | CookieWithoutHttpOnly.go:24:20:24:21 | &... [pointer] : Cookie |
-| CookieWithoutHttpOnly.go:29:13:29:21 | "session" : string | CookieWithoutHttpOnly.go:33:20:33:21 | &... |
-| CookieWithoutHttpOnly.go:29:13:29:21 | "session" : string | CookieWithoutHttpOnly.go:33:20:33:21 | &... : pointer type |
-| CookieWithoutHttpOnly.go:29:13:29:21 | "session" : string | CookieWithoutHttpOnly.go:33:21:33:21 | c : Cookie |
-| CookieWithoutHttpOnly.go:31:13:31:16 | true : bool | CookieWithoutHttpOnly.go:33:20:33:21 | &... |
-| CookieWithoutHttpOnly.go:31:13:31:16 | true : bool | CookieWithoutHttpOnly.go:33:20:33:21 | &... : pointer type |
-| CookieWithoutHttpOnly.go:31:13:31:16 | true : bool | CookieWithoutHttpOnly.go:33:21:33:21 | c : Cookie |
-| CookieWithoutHttpOnly.go:33:20:33:21 | &... : pointer type | CookieWithoutHttpOnly.go:33:20:33:21 | &... |
-| CookieWithoutHttpOnly.go:33:20:33:21 | &... : pointer type | CookieWithoutHttpOnly.go:33:20:33:21 | &... |
-| CookieWithoutHttpOnly.go:33:20:33:21 | &... : pointer type | CookieWithoutHttpOnly.go:33:20:33:21 | &... : pointer type |
-| CookieWithoutHttpOnly.go:33:20:33:21 | &... : pointer type | CookieWithoutHttpOnly.go:33:20:33:21 | &... : pointer type |
-| CookieWithoutHttpOnly.go:33:20:33:21 | &... : pointer type | CookieWithoutHttpOnly.go:33:21:33:21 | c : Cookie |
-| CookieWithoutHttpOnly.go:33:20:33:21 | &... : pointer type | CookieWithoutHttpOnly.go:33:21:33:21 | c : Cookie |
-| CookieWithoutHttpOnly.go:33:20:33:21 | &... [pointer] : Cookie | CookieWithoutHttpOnly.go:33:20:33:21 | &... |
-| CookieWithoutHttpOnly.go:33:20:33:21 | &... [pointer] : Cookie | CookieWithoutHttpOnly.go:33:20:33:21 | &... |
-| CookieWithoutHttpOnly.go:33:20:33:21 | &... [pointer] : Cookie | CookieWithoutHttpOnly.go:33:20:33:21 | &... : pointer type |
-| CookieWithoutHttpOnly.go:33:20:33:21 | &... [pointer] : Cookie | CookieWithoutHttpOnly.go:33:20:33:21 | &... : pointer type |
-| CookieWithoutHttpOnly.go:33:20:33:21 | &... [pointer] : Cookie | CookieWithoutHttpOnly.go:33:21:33:21 | c : Cookie |
-| CookieWithoutHttpOnly.go:33:20:33:21 | &... [pointer] : Cookie | CookieWithoutHttpOnly.go:33:21:33:21 | c : Cookie |
-| CookieWithoutHttpOnly.go:33:21:33:21 | c : Cookie | CookieWithoutHttpOnly.go:33:20:33:21 | &... [pointer] : Cookie |
-| CookieWithoutHttpOnly.go:33:21:33:21 | c : Cookie | CookieWithoutHttpOnly.go:33:20:33:21 | &... [pointer] : Cookie |
-| CookieWithoutHttpOnly.go:38:10:38:18 | "session" : string | CookieWithoutHttpOnly.go:42:20:42:21 | &... |
-| CookieWithoutHttpOnly.go:38:10:38:18 | "session" : string | CookieWithoutHttpOnly.go:42:20:42:21 | &... : pointer type |
-| CookieWithoutHttpOnly.go:38:10:38:18 | "session" : string | CookieWithoutHttpOnly.go:42:21:42:21 | c : Cookie |
-| CookieWithoutHttpOnly.go:41:15:41:18 | true : bool | CookieWithoutHttpOnly.go:42:20:42:21 | &... |
-| CookieWithoutHttpOnly.go:41:15:41:18 | true : bool | CookieWithoutHttpOnly.go:42:20:42:21 | &... : pointer type |
-| CookieWithoutHttpOnly.go:41:15:41:18 | true : bool | CookieWithoutHttpOnly.go:42:21:42:21 | c : Cookie |
-| CookieWithoutHttpOnly.go:42:20:42:21 | &... : pointer type | CookieWithoutHttpOnly.go:42:20:42:21 | &... |
-| CookieWithoutHttpOnly.go:42:20:42:21 | &... : pointer type | CookieWithoutHttpOnly.go:42:20:42:21 | &... |
-| CookieWithoutHttpOnly.go:42:20:42:21 | &... : pointer type | CookieWithoutHttpOnly.go:42:20:42:21 | &... : pointer type |
-| CookieWithoutHttpOnly.go:42:20:42:21 | &... : pointer type | CookieWithoutHttpOnly.go:42:20:42:21 | &... : pointer type |
-| CookieWithoutHttpOnly.go:42:20:42:21 | &... : pointer type | CookieWithoutHttpOnly.go:42:21:42:21 | c : Cookie |
-| CookieWithoutHttpOnly.go:42:20:42:21 | &... : pointer type | CookieWithoutHttpOnly.go:42:21:42:21 | c : Cookie |
-| CookieWithoutHttpOnly.go:42:20:42:21 | &... [pointer] : Cookie | CookieWithoutHttpOnly.go:42:20:42:21 | &... |
-| CookieWithoutHttpOnly.go:42:20:42:21 | &... [pointer] : Cookie | CookieWithoutHttpOnly.go:42:20:42:21 | &... |
-| CookieWithoutHttpOnly.go:42:20:42:21 | &... [pointer] : Cookie | CookieWithoutHttpOnly.go:42:20:42:21 | &... : pointer type |
-| CookieWithoutHttpOnly.go:42:20:42:21 | &... [pointer] : Cookie | CookieWithoutHttpOnly.go:42:20:42:21 | &... : pointer type |
-| CookieWithoutHttpOnly.go:42:20:42:21 | &... [pointer] : Cookie | CookieWithoutHttpOnly.go:42:21:42:21 | c : Cookie |
-| CookieWithoutHttpOnly.go:42:20:42:21 | &... [pointer] : Cookie | CookieWithoutHttpOnly.go:42:21:42:21 | c : Cookie |
-| CookieWithoutHttpOnly.go:42:21:42:21 | c : Cookie | CookieWithoutHttpOnly.go:42:20:42:21 | &... [pointer] : Cookie |
-| CookieWithoutHttpOnly.go:42:21:42:21 | c : Cookie | CookieWithoutHttpOnly.go:42:20:42:21 | &... [pointer] : Cookie |
-| CookieWithoutHttpOnly.go:47:10:47:18 | "session" : string | CookieWithoutHttpOnly.go:51:20:51:21 | &... |
-| CookieWithoutHttpOnly.go:47:10:47:18 | "session" : string | CookieWithoutHttpOnly.go:51:20:51:21 | &... : pointer type |
-| CookieWithoutHttpOnly.go:47:10:47:18 | "session" : string | CookieWithoutHttpOnly.go:51:21:51:21 | c : Cookie |
-| CookieWithoutHttpOnly.go:50:15:50:19 | false : bool | CookieWithoutHttpOnly.go:51:20:51:21 | &... |
-| CookieWithoutHttpOnly.go:50:15:50:19 | false : bool | CookieWithoutHttpOnly.go:51:20:51:21 | &... : pointer type |
-| CookieWithoutHttpOnly.go:50:15:50:19 | false : bool | CookieWithoutHttpOnly.go:51:21:51:21 | c : Cookie |
-| CookieWithoutHttpOnly.go:51:20:51:21 | &... : pointer type | CookieWithoutHttpOnly.go:51:20:51:21 | &... |
-| CookieWithoutHttpOnly.go:51:20:51:21 | &... : pointer type | CookieWithoutHttpOnly.go:51:20:51:21 | &... |
-| CookieWithoutHttpOnly.go:51:20:51:21 | &... : pointer type | CookieWithoutHttpOnly.go:51:20:51:21 | &... : pointer type |
-| CookieWithoutHttpOnly.go:51:20:51:21 | &... : pointer type | CookieWithoutHttpOnly.go:51:20:51:21 | &... : pointer type |
-| CookieWithoutHttpOnly.go:51:20:51:21 | &... : pointer type | CookieWithoutHttpOnly.go:51:21:51:21 | c : Cookie |
-| CookieWithoutHttpOnly.go:51:20:51:21 | &... : pointer type | CookieWithoutHttpOnly.go:51:21:51:21 | c : Cookie |
-| CookieWithoutHttpOnly.go:51:20:51:21 | &... [pointer] : Cookie | CookieWithoutHttpOnly.go:51:20:51:21 | &... |
-| CookieWithoutHttpOnly.go:51:20:51:21 | &... [pointer] : Cookie | CookieWithoutHttpOnly.go:51:20:51:21 | &... |
-| CookieWithoutHttpOnly.go:51:20:51:21 | &... [pointer] : Cookie | CookieWithoutHttpOnly.go:51:20:51:21 | &... : pointer type |
-| CookieWithoutHttpOnly.go:51:20:51:21 | &... [pointer] : Cookie | CookieWithoutHttpOnly.go:51:20:51:21 | &... : pointer type |
-| CookieWithoutHttpOnly.go:51:20:51:21 | &... [pointer] : Cookie | CookieWithoutHttpOnly.go:51:21:51:21 | c : Cookie |
-| CookieWithoutHttpOnly.go:51:20:51:21 | &... [pointer] : Cookie | CookieWithoutHttpOnly.go:51:21:51:21 | c : Cookie |
-| CookieWithoutHttpOnly.go:51:21:51:21 | c : Cookie | CookieWithoutHttpOnly.go:51:20:51:21 | &... [pointer] : Cookie |
-| CookieWithoutHttpOnly.go:51:21:51:21 | c : Cookie | CookieWithoutHttpOnly.go:51:20:51:21 | &... [pointer] : Cookie |
-| CookieWithoutHttpOnly.go:55:2:55:4 | definition of val : bool | CookieWithoutHttpOnly.go:61:20:61:21 | &... |
-| CookieWithoutHttpOnly.go:55:2:55:4 | definition of val : bool | CookieWithoutHttpOnly.go:61:20:61:21 | &... : pointer type |
-| CookieWithoutHttpOnly.go:55:2:55:4 | definition of val : bool | CookieWithoutHttpOnly.go:61:21:61:21 | c : Cookie |
-| CookieWithoutHttpOnly.go:55:9:55:13 | false : bool | CookieWithoutHttpOnly.go:61:20:61:21 | &... |
-| CookieWithoutHttpOnly.go:55:9:55:13 | false : bool | CookieWithoutHttpOnly.go:61:20:61:21 | &... : pointer type |
-| CookieWithoutHttpOnly.go:55:9:55:13 | false : bool | CookieWithoutHttpOnly.go:61:21:61:21 | c : Cookie |
-| CookieWithoutHttpOnly.go:57:13:57:21 | "session" : string | CookieWithoutHttpOnly.go:61:20:61:21 | &... |
-| CookieWithoutHttpOnly.go:57:13:57:21 | "session" : string | CookieWithoutHttpOnly.go:61:20:61:21 | &... : pointer type |
-| CookieWithoutHttpOnly.go:57:13:57:21 | "session" : string | CookieWithoutHttpOnly.go:61:21:61:21 | c : Cookie |
-| CookieWithoutHttpOnly.go:59:13:59:15 | val : bool | CookieWithoutHttpOnly.go:61:20:61:21 | &... |
-| CookieWithoutHttpOnly.go:59:13:59:15 | val : bool | CookieWithoutHttpOnly.go:61:20:61:21 | &... : pointer type |
-| CookieWithoutHttpOnly.go:59:13:59:15 | val : bool | CookieWithoutHttpOnly.go:61:21:61:21 | c : Cookie |
-| CookieWithoutHttpOnly.go:61:20:61:21 | &... : pointer type | CookieWithoutHttpOnly.go:61:20:61:21 | &... |
-| CookieWithoutHttpOnly.go:61:20:61:21 | &... : pointer type | CookieWithoutHttpOnly.go:61:20:61:21 | &... |
-| CookieWithoutHttpOnly.go:61:20:61:21 | &... : pointer type | CookieWithoutHttpOnly.go:61:20:61:21 | &... : pointer type |
-| CookieWithoutHttpOnly.go:61:20:61:21 | &... : pointer type | CookieWithoutHttpOnly.go:61:20:61:21 | &... : pointer type |
-| CookieWithoutHttpOnly.go:61:20:61:21 | &... : pointer type | CookieWithoutHttpOnly.go:61:21:61:21 | c : Cookie |
-| CookieWithoutHttpOnly.go:61:20:61:21 | &... : pointer type | CookieWithoutHttpOnly.go:61:21:61:21 | c : Cookie |
-| CookieWithoutHttpOnly.go:61:20:61:21 | &... [pointer] : Cookie | CookieWithoutHttpOnly.go:61:20:61:21 | &... |
-| CookieWithoutHttpOnly.go:61:20:61:21 | &... [pointer] : Cookie | CookieWithoutHttpOnly.go:61:20:61:21 | &... |
-| CookieWithoutHttpOnly.go:61:20:61:21 | &... [pointer] : Cookie | CookieWithoutHttpOnly.go:61:20:61:21 | &... : pointer type |
-| CookieWithoutHttpOnly.go:61:20:61:21 | &... [pointer] : Cookie | CookieWithoutHttpOnly.go:61:20:61:21 | &... : pointer type |
-| CookieWithoutHttpOnly.go:61:20:61:21 | &... [pointer] : Cookie | CookieWithoutHttpOnly.go:61:21:61:21 | c : Cookie |
-| CookieWithoutHttpOnly.go:61:20:61:21 | &... [pointer] : Cookie | CookieWithoutHttpOnly.go:61:21:61:21 | c : Cookie |
-| CookieWithoutHttpOnly.go:61:21:61:21 | c : Cookie | CookieWithoutHttpOnly.go:61:20:61:21 | &... [pointer] : Cookie |
-| CookieWithoutHttpOnly.go:61:21:61:21 | c : Cookie | CookieWithoutHttpOnly.go:61:20:61:21 | &... [pointer] : Cookie |
-| CookieWithoutHttpOnly.go:65:2:65:4 | definition of val : bool | CookieWithoutHttpOnly.go:71:20:71:21 | &... |
-| CookieWithoutHttpOnly.go:65:2:65:4 | definition of val : bool | CookieWithoutHttpOnly.go:71:20:71:21 | &... : pointer type |
-| CookieWithoutHttpOnly.go:65:2:65:4 | definition of val : bool | CookieWithoutHttpOnly.go:71:21:71:21 | c : Cookie |
-| CookieWithoutHttpOnly.go:65:9:65:12 | true : bool | CookieWithoutHttpOnly.go:71:20:71:21 | &... |
-| CookieWithoutHttpOnly.go:65:9:65:12 | true : bool | CookieWithoutHttpOnly.go:71:20:71:21 | &... : pointer type |
-| CookieWithoutHttpOnly.go:65:9:65:12 | true : bool | CookieWithoutHttpOnly.go:71:21:71:21 | c : Cookie |
-| CookieWithoutHttpOnly.go:67:13:67:21 | "session" : string | CookieWithoutHttpOnly.go:71:20:71:21 | &... |
-| CookieWithoutHttpOnly.go:67:13:67:21 | "session" : string | CookieWithoutHttpOnly.go:71:20:71:21 | &... : pointer type |
-| CookieWithoutHttpOnly.go:67:13:67:21 | "session" : string | CookieWithoutHttpOnly.go:71:21:71:21 | c : Cookie |
-| CookieWithoutHttpOnly.go:69:13:69:15 | val : bool | CookieWithoutHttpOnly.go:71:20:71:21 | &... |
-| CookieWithoutHttpOnly.go:69:13:69:15 | val : bool | CookieWithoutHttpOnly.go:71:20:71:21 | &... : pointer type |
-| CookieWithoutHttpOnly.go:69:13:69:15 | val : bool | CookieWithoutHttpOnly.go:71:21:71:21 | c : Cookie |
-| CookieWithoutHttpOnly.go:71:20:71:21 | &... : pointer type | CookieWithoutHttpOnly.go:71:20:71:21 | &... |
-| CookieWithoutHttpOnly.go:71:20:71:21 | &... : pointer type | CookieWithoutHttpOnly.go:71:20:71:21 | &... |
-| CookieWithoutHttpOnly.go:71:20:71:21 | &... : pointer type | CookieWithoutHttpOnly.go:71:20:71:21 | &... : pointer type |
-| CookieWithoutHttpOnly.go:71:20:71:21 | &... : pointer type | CookieWithoutHttpOnly.go:71:20:71:21 | &... : pointer type |
-| CookieWithoutHttpOnly.go:71:20:71:21 | &... : pointer type | CookieWithoutHttpOnly.go:71:21:71:21 | c : Cookie |
-| CookieWithoutHttpOnly.go:71:20:71:21 | &... : pointer type | CookieWithoutHttpOnly.go:71:21:71:21 | c : Cookie |
-| CookieWithoutHttpOnly.go:71:20:71:21 | &... [pointer] : Cookie | CookieWithoutHttpOnly.go:71:20:71:21 | &... |
-| CookieWithoutHttpOnly.go:71:20:71:21 | &... [pointer] : Cookie | CookieWithoutHttpOnly.go:71:20:71:21 | &... |
-| CookieWithoutHttpOnly.go:71:20:71:21 | &... [pointer] : Cookie | CookieWithoutHttpOnly.go:71:20:71:21 | &... : pointer type |
-| CookieWithoutHttpOnly.go:71:20:71:21 | &... [pointer] : Cookie | CookieWithoutHttpOnly.go:71:20:71:21 | &... : pointer type |
-| CookieWithoutHttpOnly.go:71:20:71:21 | &... [pointer] : Cookie | CookieWithoutHttpOnly.go:71:21:71:21 | c : Cookie |
-| CookieWithoutHttpOnly.go:71:20:71:21 | &... [pointer] : Cookie | CookieWithoutHttpOnly.go:71:21:71:21 | c : Cookie |
-| CookieWithoutHttpOnly.go:71:21:71:21 | c : Cookie | CookieWithoutHttpOnly.go:71:20:71:21 | &... [pointer] : Cookie |
-| CookieWithoutHttpOnly.go:71:21:71:21 | c : Cookie | CookieWithoutHttpOnly.go:71:20:71:21 | &... [pointer] : Cookie |
-| CookieWithoutHttpOnly.go:75:2:75:4 | definition of val : bool | CookieWithoutHttpOnly.go:81:20:81:21 | &... |
-| CookieWithoutHttpOnly.go:75:2:75:4 | definition of val : bool | CookieWithoutHttpOnly.go:81:20:81:21 | &... : pointer type |
-| CookieWithoutHttpOnly.go:75:2:75:4 | definition of val : bool | CookieWithoutHttpOnly.go:81:21:81:21 | c : Cookie |
-| CookieWithoutHttpOnly.go:75:9:75:12 | true : bool | CookieWithoutHttpOnly.go:81:20:81:21 | &... |
-| CookieWithoutHttpOnly.go:75:9:75:12 | true : bool | CookieWithoutHttpOnly.go:81:20:81:21 | &... : pointer type |
-| CookieWithoutHttpOnly.go:75:9:75:12 | true : bool | CookieWithoutHttpOnly.go:81:21:81:21 | c : Cookie |
-| CookieWithoutHttpOnly.go:77:10:77:18 | "session" : string | CookieWithoutHttpOnly.go:81:20:81:21 | &... |
-| CookieWithoutHttpOnly.go:77:10:77:18 | "session" : string | CookieWithoutHttpOnly.go:81:20:81:21 | &... : pointer type |
-| CookieWithoutHttpOnly.go:77:10:77:18 | "session" : string | CookieWithoutHttpOnly.go:81:21:81:21 | c : Cookie |
-| CookieWithoutHttpOnly.go:80:15:80:17 | val : bool | CookieWithoutHttpOnly.go:81:20:81:21 | &... |
-| CookieWithoutHttpOnly.go:80:15:80:17 | val : bool | CookieWithoutHttpOnly.go:81:20:81:21 | &... : pointer type |
-| CookieWithoutHttpOnly.go:80:15:80:17 | val : bool | CookieWithoutHttpOnly.go:81:21:81:21 | c : Cookie |
-| CookieWithoutHttpOnly.go:81:20:81:21 | &... : pointer type | CookieWithoutHttpOnly.go:81:20:81:21 | &... |
-| CookieWithoutHttpOnly.go:81:20:81:21 | &... : pointer type | CookieWithoutHttpOnly.go:81:20:81:21 | &... |
-| CookieWithoutHttpOnly.go:81:20:81:21 | &... : pointer type | CookieWithoutHttpOnly.go:81:20:81:21 | &... : pointer type |
-| CookieWithoutHttpOnly.go:81:20:81:21 | &... : pointer type | CookieWithoutHttpOnly.go:81:20:81:21 | &... : pointer type |
-| CookieWithoutHttpOnly.go:81:20:81:21 | &... : pointer type | CookieWithoutHttpOnly.go:81:21:81:21 | c : Cookie |
-| CookieWithoutHttpOnly.go:81:20:81:21 | &... : pointer type | CookieWithoutHttpOnly.go:81:21:81:21 | c : Cookie |
-| CookieWithoutHttpOnly.go:81:20:81:21 | &... [pointer] : Cookie | CookieWithoutHttpOnly.go:81:20:81:21 | &... |
-| CookieWithoutHttpOnly.go:81:20:81:21 | &... [pointer] : Cookie | CookieWithoutHttpOnly.go:81:20:81:21 | &... |
-| CookieWithoutHttpOnly.go:81:20:81:21 | &... [pointer] : Cookie | CookieWithoutHttpOnly.go:81:20:81:21 | &... : pointer type |
-| CookieWithoutHttpOnly.go:81:20:81:21 | &... [pointer] : Cookie | CookieWithoutHttpOnly.go:81:20:81:21 | &... : pointer type |
-| CookieWithoutHttpOnly.go:81:20:81:21 | &... [pointer] : Cookie | CookieWithoutHttpOnly.go:81:21:81:21 | c : Cookie |
-| CookieWithoutHttpOnly.go:81:20:81:21 | &... [pointer] : Cookie | CookieWithoutHttpOnly.go:81:21:81:21 | c : Cookie |
-| CookieWithoutHttpOnly.go:81:21:81:21 | c : Cookie | CookieWithoutHttpOnly.go:81:20:81:21 | &... [pointer] : Cookie |
-| CookieWithoutHttpOnly.go:81:21:81:21 | c : Cookie | CookieWithoutHttpOnly.go:81:20:81:21 | &... [pointer] : Cookie |
-| CookieWithoutHttpOnly.go:85:2:85:4 | definition of val : bool | CookieWithoutHttpOnly.go:91:20:91:21 | &... |
-| CookieWithoutHttpOnly.go:85:2:85:4 | definition of val : bool | CookieWithoutHttpOnly.go:91:20:91:21 | &... : pointer type |
-| CookieWithoutHttpOnly.go:85:2:85:4 | definition of val : bool | CookieWithoutHttpOnly.go:91:21:91:21 | c : Cookie |
-| CookieWithoutHttpOnly.go:85:9:85:13 | false : bool | CookieWithoutHttpOnly.go:91:20:91:21 | &... |
-| CookieWithoutHttpOnly.go:85:9:85:13 | false : bool | CookieWithoutHttpOnly.go:91:20:91:21 | &... : pointer type |
-| CookieWithoutHttpOnly.go:85:9:85:13 | false : bool | CookieWithoutHttpOnly.go:91:21:91:21 | c : Cookie |
-| CookieWithoutHttpOnly.go:87:10:87:18 | "session" : string | CookieWithoutHttpOnly.go:91:20:91:21 | &... |
-| CookieWithoutHttpOnly.go:87:10:87:18 | "session" : string | CookieWithoutHttpOnly.go:91:20:91:21 | &... : pointer type |
-| CookieWithoutHttpOnly.go:87:10:87:18 | "session" : string | CookieWithoutHttpOnly.go:91:21:91:21 | c : Cookie |
-| CookieWithoutHttpOnly.go:90:15:90:17 | val : bool | CookieWithoutHttpOnly.go:91:20:91:21 | &... |
-| CookieWithoutHttpOnly.go:90:15:90:17 | val : bool | CookieWithoutHttpOnly.go:91:20:91:21 | &... : pointer type |
-| CookieWithoutHttpOnly.go:90:15:90:17 | val : bool | CookieWithoutHttpOnly.go:91:21:91:21 | c : Cookie |
-| CookieWithoutHttpOnly.go:91:20:91:21 | &... : pointer type | CookieWithoutHttpOnly.go:91:20:91:21 | &... |
-| CookieWithoutHttpOnly.go:91:20:91:21 | &... : pointer type | CookieWithoutHttpOnly.go:91:20:91:21 | &... |
-| CookieWithoutHttpOnly.go:91:20:91:21 | &... : pointer type | CookieWithoutHttpOnly.go:91:20:91:21 | &... : pointer type |
-| CookieWithoutHttpOnly.go:91:20:91:21 | &... : pointer type | CookieWithoutHttpOnly.go:91:20:91:21 | &... : pointer type |
-| CookieWithoutHttpOnly.go:91:20:91:21 | &... : pointer type | CookieWithoutHttpOnly.go:91:21:91:21 | c : Cookie |
-| CookieWithoutHttpOnly.go:91:20:91:21 | &... : pointer type | CookieWithoutHttpOnly.go:91:21:91:21 | c : Cookie |
-| CookieWithoutHttpOnly.go:91:20:91:21 | &... [pointer] : Cookie | CookieWithoutHttpOnly.go:91:20:91:21 | &... |
-| CookieWithoutHttpOnly.go:91:20:91:21 | &... [pointer] : Cookie | CookieWithoutHttpOnly.go:91:20:91:21 | &... |
-| CookieWithoutHttpOnly.go:91:20:91:21 | &... [pointer] : Cookie | CookieWithoutHttpOnly.go:91:20:91:21 | &... : pointer type |
-| CookieWithoutHttpOnly.go:91:20:91:21 | &... [pointer] : Cookie | CookieWithoutHttpOnly.go:91:20:91:21 | &... : pointer type |
-| CookieWithoutHttpOnly.go:91:20:91:21 | &... [pointer] : Cookie | CookieWithoutHttpOnly.go:91:21:91:21 | c : Cookie |
-| CookieWithoutHttpOnly.go:91:20:91:21 | &... [pointer] : Cookie | CookieWithoutHttpOnly.go:91:21:91:21 | c : Cookie |
-| CookieWithoutHttpOnly.go:91:21:91:21 | c : Cookie | CookieWithoutHttpOnly.go:91:20:91:21 | &... [pointer] : Cookie |
-| CookieWithoutHttpOnly.go:91:21:91:21 | c : Cookie | CookieWithoutHttpOnly.go:91:20:91:21 | &... [pointer] : Cookie |
-| CookieWithoutHttpOnly.go:99:15:99:19 | false : bool | CookieWithoutHttpOnly.go:100:20:100:21 | &... |
-| CookieWithoutHttpOnly.go:99:15:99:19 | false : bool | CookieWithoutHttpOnly.go:100:20:100:21 | &... : pointer type |
-| CookieWithoutHttpOnly.go:99:15:99:19 | false : bool | CookieWithoutHttpOnly.go:100:21:100:21 | c : Cookie |
-| CookieWithoutHttpOnly.go:100:20:100:21 | &... : pointer type | CookieWithoutHttpOnly.go:100:20:100:21 | &... |
-| CookieWithoutHttpOnly.go:100:20:100:21 | &... : pointer type | CookieWithoutHttpOnly.go:100:20:100:21 | &... : pointer type |
-| CookieWithoutHttpOnly.go:100:20:100:21 | &... : pointer type | CookieWithoutHttpOnly.go:100:21:100:21 | c : Cookie |
-| CookieWithoutHttpOnly.go:100:20:100:21 | &... [pointer] : Cookie | CookieWithoutHttpOnly.go:100:20:100:21 | &... |
-| CookieWithoutHttpOnly.go:100:20:100:21 | &... [pointer] : Cookie | CookieWithoutHttpOnly.go:100:20:100:21 | &... : pointer type |
-| CookieWithoutHttpOnly.go:100:20:100:21 | &... [pointer] : Cookie | CookieWithoutHttpOnly.go:100:21:100:21 | c : Cookie |
-| CookieWithoutHttpOnly.go:100:21:100:21 | c : Cookie | CookieWithoutHttpOnly.go:100:20:100:21 | &... [pointer] : Cookie |
-| CookieWithoutHttpOnly.go:104:10:104:18 | "session" : string | CookieWithoutHttpOnly.go:110:20:110:21 | &... |
-| CookieWithoutHttpOnly.go:104:10:104:18 | "session" : string | CookieWithoutHttpOnly.go:110:20:110:21 | &... : pointer type |
-| CookieWithoutHttpOnly.go:104:10:104:18 | "session" : string | CookieWithoutHttpOnly.go:110:21:110:21 | c : Cookie |
-| CookieWithoutHttpOnly.go:109:15:109:19 | false : bool | CookieWithoutHttpOnly.go:110:20:110:21 | &... |
-| CookieWithoutHttpOnly.go:109:15:109:19 | false : bool | CookieWithoutHttpOnly.go:110:20:110:21 | &... : pointer type |
-| CookieWithoutHttpOnly.go:109:15:109:19 | false : bool | CookieWithoutHttpOnly.go:110:21:110:21 | c : Cookie |
-| CookieWithoutHttpOnly.go:110:20:110:21 | &... : pointer type | CookieWithoutHttpOnly.go:110:20:110:21 | &... |
-| CookieWithoutHttpOnly.go:110:20:110:21 | &... : pointer type | CookieWithoutHttpOnly.go:110:20:110:21 | &... |
-| CookieWithoutHttpOnly.go:110:20:110:21 | &... : pointer type | CookieWithoutHttpOnly.go:110:20:110:21 | &... : pointer type |
-| CookieWithoutHttpOnly.go:110:20:110:21 | &... : pointer type | CookieWithoutHttpOnly.go:110:20:110:21 | &... : pointer type |
-| CookieWithoutHttpOnly.go:110:20:110:21 | &... : pointer type | CookieWithoutHttpOnly.go:110:21:110:21 | c : Cookie |
-| CookieWithoutHttpOnly.go:110:20:110:21 | &... : pointer type | CookieWithoutHttpOnly.go:110:21:110:21 | c : Cookie |
-| CookieWithoutHttpOnly.go:110:20:110:21 | &... [pointer] : Cookie | CookieWithoutHttpOnly.go:110:20:110:21 | &... |
-| CookieWithoutHttpOnly.go:110:20:110:21 | &... [pointer] : Cookie | CookieWithoutHttpOnly.go:110:20:110:21 | &... |
-| CookieWithoutHttpOnly.go:110:20:110:21 | &... [pointer] : Cookie | CookieWithoutHttpOnly.go:110:20:110:21 | &... : pointer type |
-| CookieWithoutHttpOnly.go:110:20:110:21 | &... [pointer] : Cookie | CookieWithoutHttpOnly.go:110:20:110:21 | &... : pointer type |
-| CookieWithoutHttpOnly.go:110:20:110:21 | &... [pointer] : Cookie | CookieWithoutHttpOnly.go:110:21:110:21 | c : Cookie |
-| CookieWithoutHttpOnly.go:110:20:110:21 | &... [pointer] : Cookie | CookieWithoutHttpOnly.go:110:21:110:21 | c : Cookie |
-| CookieWithoutHttpOnly.go:110:21:110:21 | c : Cookie | CookieWithoutHttpOnly.go:110:20:110:21 | &... [pointer] : Cookie |
-| CookieWithoutHttpOnly.go:110:21:110:21 | c : Cookie | CookieWithoutHttpOnly.go:110:20:110:21 | &... [pointer] : Cookie |
-| CookieWithoutHttpOnly.go:114:13:114:24 | "login_name" : string | CookieWithoutHttpOnly.go:120:20:120:21 | &... |
-| CookieWithoutHttpOnly.go:114:13:114:24 | "login_name" : string | CookieWithoutHttpOnly.go:120:20:120:21 | &... : pointer type |
-| CookieWithoutHttpOnly.go:114:13:114:24 | "login_name" : string | CookieWithoutHttpOnly.go:120:21:120:21 | c : Cookie |
-| CookieWithoutHttpOnly.go:116:10:116:16 | session : string | CookieWithoutHttpOnly.go:120:20:120:21 | &... |
-| CookieWithoutHttpOnly.go:116:10:116:16 | session : string | CookieWithoutHttpOnly.go:120:20:120:21 | &... : pointer type |
-| CookieWithoutHttpOnly.go:116:10:116:16 | session : string | CookieWithoutHttpOnly.go:120:21:120:21 | c : Cookie |
-| CookieWithoutHttpOnly.go:119:15:119:19 | false : bool | CookieWithoutHttpOnly.go:120:20:120:21 | &... |
-| CookieWithoutHttpOnly.go:119:15:119:19 | false : bool | CookieWithoutHttpOnly.go:120:20:120:21 | &... : pointer type |
-| CookieWithoutHttpOnly.go:119:15:119:19 | false : bool | CookieWithoutHttpOnly.go:120:21:120:21 | c : Cookie |
-| CookieWithoutHttpOnly.go:120:20:120:21 | &... : pointer type | CookieWithoutHttpOnly.go:120:20:120:21 | &... |
-| CookieWithoutHttpOnly.go:120:20:120:21 | &... : pointer type | CookieWithoutHttpOnly.go:120:20:120:21 | &... |
-| CookieWithoutHttpOnly.go:120:20:120:21 | &... : pointer type | CookieWithoutHttpOnly.go:120:20:120:21 | &... : pointer type |
-| CookieWithoutHttpOnly.go:120:20:120:21 | &... : pointer type | CookieWithoutHttpOnly.go:120:20:120:21 | &... : pointer type |
-| CookieWithoutHttpOnly.go:120:20:120:21 | &... : pointer type | CookieWithoutHttpOnly.go:120:21:120:21 | c : Cookie |
-| CookieWithoutHttpOnly.go:120:20:120:21 | &... : pointer type | CookieWithoutHttpOnly.go:120:21:120:21 | c : Cookie |
-| CookieWithoutHttpOnly.go:120:20:120:21 | &... [pointer] : Cookie | CookieWithoutHttpOnly.go:120:20:120:21 | &... |
-| CookieWithoutHttpOnly.go:120:20:120:21 | &... [pointer] : Cookie | CookieWithoutHttpOnly.go:120:20:120:21 | &... |
-| CookieWithoutHttpOnly.go:120:20:120:21 | &... [pointer] : Cookie | CookieWithoutHttpOnly.go:120:20:120:21 | &... : pointer type |
-| CookieWithoutHttpOnly.go:120:20:120:21 | &... [pointer] : Cookie | CookieWithoutHttpOnly.go:120:20:120:21 | &... : pointer type |
-| CookieWithoutHttpOnly.go:120:20:120:21 | &... [pointer] : Cookie | CookieWithoutHttpOnly.go:120:21:120:21 | c : Cookie |
-| CookieWithoutHttpOnly.go:120:20:120:21 | &... [pointer] : Cookie | CookieWithoutHttpOnly.go:120:21:120:21 | c : Cookie |
-| CookieWithoutHttpOnly.go:120:21:120:21 | c : Cookie | CookieWithoutHttpOnly.go:120:20:120:21 | &... [pointer] : Cookie |
-| CookieWithoutHttpOnly.go:120:21:120:21 | c : Cookie | CookieWithoutHttpOnly.go:120:20:120:21 | &... [pointer] : Cookie |
-| CookieWithoutHttpOnly.go:123:13:123:49 | call to NewCookieStore : pointer type | CookieWithoutHttpOnly.go:126:16:126:20 | store : pointer type |
-| CookieWithoutHttpOnly.go:123:13:123:49 | call to NewCookieStore : pointer type | CookieWithoutHttpOnly.go:134:16:134:20 | store : pointer type |
-| CookieWithoutHttpOnly.go:123:13:123:49 | call to NewCookieStore : pointer type | CookieWithoutHttpOnly.go:146:16:146:20 | store : pointer type |
-| CookieWithoutHttpOnly.go:123:13:123:49 | call to NewCookieStore : pointer type | CookieWithoutHttpOnly.go:158:16:158:20 | store : pointer type |
-| CookieWithoutHttpOnly.go:123:13:123:49 | call to NewCookieStore : pointer type | CookieWithoutHttpOnly.go:170:16:170:20 | store : pointer type |
-| CookieWithoutHttpOnly.go:123:13:123:49 | call to NewCookieStore : pointer type | CookieWithoutHttpOnly.go:183:16:183:20 | store : pointer type |
-| CookieWithoutHttpOnly.go:123:13:123:49 | call to NewCookieStore : pointer type | CookieWithoutHttpOnly.go:195:16:195:20 | store : pointer type |
-| CookieWithoutHttpOnly.go:126:16:126:20 | store : pointer type | CookieWithoutHttpOnly.go:129:2:129:8 | session |
-| CookieWithoutHttpOnly.go:133:2:133:9 | definition of httpOnly : bool | CookieWithoutHttpOnly.go:135:2:135:8 | implicit dereference : Session |
-| CookieWithoutHttpOnly.go:133:2:133:9 | definition of httpOnly : bool | CookieWithoutHttpOnly.go:137:2:137:8 | implicit dereference : Session |
-| CookieWithoutHttpOnly.go:133:2:133:9 | definition of httpOnly : bool | CookieWithoutHttpOnly.go:142:2:142:8 | session |
-| CookieWithoutHttpOnly.go:133:14:133:18 | false : bool | CookieWithoutHttpOnly.go:135:2:135:8 | implicit dereference : Session |
-| CookieWithoutHttpOnly.go:133:14:133:18 | false : bool | CookieWithoutHttpOnly.go:137:2:137:8 | implicit dereference : Session |
-| CookieWithoutHttpOnly.go:133:14:133:18 | false : bool | CookieWithoutHttpOnly.go:142:2:142:8 | session |
-| CookieWithoutHttpOnly.go:134:2:134:8 | definition of session [pointer] : Session | CookieWithoutHttpOnly.go:135:2:135:8 | session [pointer] : Session |
-| CookieWithoutHttpOnly.go:134:2:134:8 | definition of session [pointer] : Session | CookieWithoutHttpOnly.go:135:2:135:8 | session [pointer] : Session |
-| CookieWithoutHttpOnly.go:134:2:134:8 | definition of session [pointer] : Session | CookieWithoutHttpOnly.go:137:2:137:8 | session [pointer] : Session |
-| CookieWithoutHttpOnly.go:134:2:134:8 | definition of session [pointer] : Session | CookieWithoutHttpOnly.go:137:2:137:8 | session [pointer] : Session |
-| CookieWithoutHttpOnly.go:134:2:134:8 | definition of session [pointer] : Session | CookieWithoutHttpOnly.go:142:2:142:8 | session |
-| CookieWithoutHttpOnly.go:134:2:134:8 | definition of session [pointer] : Session | CookieWithoutHttpOnly.go:142:2:142:8 | session |
-| CookieWithoutHttpOnly.go:134:16:134:20 | store : pointer type | CookieWithoutHttpOnly.go:142:2:142:8 | session |
-| CookieWithoutHttpOnly.go:135:2:135:8 | implicit dereference : Session | CookieWithoutHttpOnly.go:134:2:134:8 | definition of session [pointer] : Session |
-| CookieWithoutHttpOnly.go:135:2:135:8 | implicit dereference : Session | CookieWithoutHttpOnly.go:134:2:134:8 | definition of session [pointer] : Session |
-| CookieWithoutHttpOnly.go:135:2:135:8 | implicit dereference : Session | CookieWithoutHttpOnly.go:135:2:135:8 | implicit dereference : Session |
-| CookieWithoutHttpOnly.go:135:2:135:8 | implicit dereference : Session | CookieWithoutHttpOnly.go:135:2:135:8 | implicit dereference : Session |
-| CookieWithoutHttpOnly.go:135:2:135:8 | implicit dereference : Session | CookieWithoutHttpOnly.go:137:2:137:8 | implicit dereference : Session |
-| CookieWithoutHttpOnly.go:135:2:135:8 | implicit dereference : Session | CookieWithoutHttpOnly.go:137:2:137:8 | implicit dereference : Session |
-| CookieWithoutHttpOnly.go:135:2:135:8 | implicit dereference : Session | CookieWithoutHttpOnly.go:142:2:142:8 | session |
-| CookieWithoutHttpOnly.go:135:2:135:8 | implicit dereference : Session | CookieWithoutHttpOnly.go:142:2:142:8 | session |
-| CookieWithoutHttpOnly.go:135:2:135:8 | session [pointer] : Session | CookieWithoutHttpOnly.go:135:2:135:8 | implicit dereference : Session |
-| CookieWithoutHttpOnly.go:135:2:135:8 | session [pointer] : Session | CookieWithoutHttpOnly.go:135:2:135:8 | implicit dereference : Session |
-| CookieWithoutHttpOnly.go:137:2:137:8 | implicit dereference : Session | CookieWithoutHttpOnly.go:134:2:134:8 | definition of session [pointer] : Session |
-| CookieWithoutHttpOnly.go:137:2:137:8 | implicit dereference : Session | CookieWithoutHttpOnly.go:134:2:134:8 | definition of session [pointer] : Session |
-| CookieWithoutHttpOnly.go:137:2:137:8 | implicit dereference : Session | CookieWithoutHttpOnly.go:135:2:135:8 | implicit dereference : Session |
-| CookieWithoutHttpOnly.go:137:2:137:8 | implicit dereference : Session | CookieWithoutHttpOnly.go:135:2:135:8 | implicit dereference : Session |
-| CookieWithoutHttpOnly.go:137:2:137:8 | implicit dereference : Session | CookieWithoutHttpOnly.go:137:2:137:8 | implicit dereference : Session |
-| CookieWithoutHttpOnly.go:137:2:137:8 | implicit dereference : Session | CookieWithoutHttpOnly.go:137:2:137:8 | implicit dereference : Session |
-| CookieWithoutHttpOnly.go:137:2:137:8 | implicit dereference : Session | CookieWithoutHttpOnly.go:142:2:142:8 | session |
-| CookieWithoutHttpOnly.go:137:2:137:8 | implicit dereference : Session | CookieWithoutHttpOnly.go:142:2:142:8 | session |
-| CookieWithoutHttpOnly.go:137:2:137:8 | session [pointer] : Session | CookieWithoutHttpOnly.go:137:2:137:8 | implicit dereference : Session |
-| CookieWithoutHttpOnly.go:137:2:137:8 | session [pointer] : Session | CookieWithoutHttpOnly.go:137:2:137:8 | implicit dereference : Session |
-| CookieWithoutHttpOnly.go:137:21:140:2 | struct literal : Options | CookieWithoutHttpOnly.go:135:2:135:8 | implicit dereference : Session |
-| CookieWithoutHttpOnly.go:137:21:140:2 | struct literal : Options | CookieWithoutHttpOnly.go:137:2:137:8 | implicit dereference : Session |
-| CookieWithoutHttpOnly.go:137:21:140:2 | struct literal : Options | CookieWithoutHttpOnly.go:142:2:142:8 | session |
-| CookieWithoutHttpOnly.go:139:13:139:20 | httpOnly : bool | CookieWithoutHttpOnly.go:135:2:135:8 | implicit dereference : Session |
-| CookieWithoutHttpOnly.go:139:13:139:20 | httpOnly : bool | CookieWithoutHttpOnly.go:137:2:137:8 | implicit dereference : Session |
-| CookieWithoutHttpOnly.go:139:13:139:20 | httpOnly : bool | CookieWithoutHttpOnly.go:142:2:142:8 | session |
-| CookieWithoutHttpOnly.go:146:2:146:8 | definition of session [pointer] : Session | CookieWithoutHttpOnly.go:147:2:147:8 | session [pointer] : Session |
-| CookieWithoutHttpOnly.go:146:2:146:8 | definition of session [pointer] : Session | CookieWithoutHttpOnly.go:149:2:149:8 | session [pointer] : Session |
-| CookieWithoutHttpOnly.go:146:2:146:8 | definition of session [pointer] : Session | CookieWithoutHttpOnly.go:153:2:153:8 | session |
-| CookieWithoutHttpOnly.go:146:16:146:20 | store : pointer type | CookieWithoutHttpOnly.go:153:2:153:8 | session |
-| CookieWithoutHttpOnly.go:147:2:147:8 | implicit dereference : Session | CookieWithoutHttpOnly.go:146:2:146:8 | definition of session [pointer] : Session |
-| CookieWithoutHttpOnly.go:147:2:147:8 | implicit dereference : Session | CookieWithoutHttpOnly.go:147:2:147:8 | implicit dereference : Session |
-| CookieWithoutHttpOnly.go:147:2:147:8 | implicit dereference : Session | CookieWithoutHttpOnly.go:149:2:149:8 | implicit dereference : Session |
-| CookieWithoutHttpOnly.go:147:2:147:8 | implicit dereference : Session | CookieWithoutHttpOnly.go:153:2:153:8 | session |
-| CookieWithoutHttpOnly.go:147:2:147:8 | session [pointer] : Session | CookieWithoutHttpOnly.go:147:2:147:8 | implicit dereference : Session |
-| CookieWithoutHttpOnly.go:149:2:149:8 | implicit dereference : Session | CookieWithoutHttpOnly.go:146:2:146:8 | definition of session [pointer] : Session |
-| CookieWithoutHttpOnly.go:149:2:149:8 | implicit dereference : Session | CookieWithoutHttpOnly.go:147:2:147:8 | implicit dereference : Session |
-| CookieWithoutHttpOnly.go:149:2:149:8 | implicit dereference : Session | CookieWithoutHttpOnly.go:149:2:149:8 | implicit dereference : Session |
-| CookieWithoutHttpOnly.go:149:2:149:8 | implicit dereference : Session | CookieWithoutHttpOnly.go:153:2:153:8 | session |
-| CookieWithoutHttpOnly.go:149:2:149:8 | session [pointer] : Session | CookieWithoutHttpOnly.go:149:2:149:8 | implicit dereference : Session |
-| CookieWithoutHttpOnly.go:149:21:151:2 | struct literal : Options | CookieWithoutHttpOnly.go:147:2:147:8 | implicit dereference : Session |
-| CookieWithoutHttpOnly.go:149:21:151:2 | struct literal : Options | CookieWithoutHttpOnly.go:149:2:149:8 | implicit dereference : Session |
-| CookieWithoutHttpOnly.go:149:21:151:2 | struct literal : Options | CookieWithoutHttpOnly.go:153:2:153:8 | session |
-| CookieWithoutHttpOnly.go:157:2:157:9 | definition of httpOnly : bool | CookieWithoutHttpOnly.go:159:2:159:8 | implicit dereference : Session |
-| CookieWithoutHttpOnly.go:157:2:157:9 | definition of httpOnly : bool | CookieWithoutHttpOnly.go:161:2:161:8 | implicit dereference : Session |
-| CookieWithoutHttpOnly.go:157:2:157:9 | definition of httpOnly : bool | CookieWithoutHttpOnly.go:166:2:166:8 | session |
-| CookieWithoutHttpOnly.go:157:14:157:17 | true : bool | CookieWithoutHttpOnly.go:159:2:159:8 | implicit dereference : Session |
-| CookieWithoutHttpOnly.go:157:14:157:17 | true : bool | CookieWithoutHttpOnly.go:161:2:161:8 | implicit dereference : Session |
-| CookieWithoutHttpOnly.go:157:14:157:17 | true : bool | CookieWithoutHttpOnly.go:166:2:166:8 | session |
-| CookieWithoutHttpOnly.go:158:2:158:8 | definition of session [pointer] : Session | CookieWithoutHttpOnly.go:159:2:159:8 | session [pointer] : Session |
-| CookieWithoutHttpOnly.go:158:2:158:8 | definition of session [pointer] : Session | CookieWithoutHttpOnly.go:159:2:159:8 | session [pointer] : Session |
-| CookieWithoutHttpOnly.go:158:2:158:8 | definition of session [pointer] : Session | CookieWithoutHttpOnly.go:161:2:161:8 | session [pointer] : Session |
-| CookieWithoutHttpOnly.go:158:2:158:8 | definition of session [pointer] : Session | CookieWithoutHttpOnly.go:161:2:161:8 | session [pointer] : Session |
-| CookieWithoutHttpOnly.go:158:2:158:8 | definition of session [pointer] : Session | CookieWithoutHttpOnly.go:166:2:166:8 | session |
-| CookieWithoutHttpOnly.go:158:2:158:8 | definition of session [pointer] : Session | CookieWithoutHttpOnly.go:166:2:166:8 | session |
-| CookieWithoutHttpOnly.go:158:16:158:20 | store : pointer type | CookieWithoutHttpOnly.go:166:2:166:8 | session |
-| CookieWithoutHttpOnly.go:159:2:159:8 | implicit dereference : Session | CookieWithoutHttpOnly.go:158:2:158:8 | definition of session [pointer] : Session |
-| CookieWithoutHttpOnly.go:159:2:159:8 | implicit dereference : Session | CookieWithoutHttpOnly.go:158:2:158:8 | definition of session [pointer] : Session |
-| CookieWithoutHttpOnly.go:159:2:159:8 | implicit dereference : Session | CookieWithoutHttpOnly.go:159:2:159:8 | implicit dereference : Session |
-| CookieWithoutHttpOnly.go:159:2:159:8 | implicit dereference : Session | CookieWithoutHttpOnly.go:159:2:159:8 | implicit dereference : Session |
-| CookieWithoutHttpOnly.go:159:2:159:8 | implicit dereference : Session | CookieWithoutHttpOnly.go:161:2:161:8 | implicit dereference : Session |
-| CookieWithoutHttpOnly.go:159:2:159:8 | implicit dereference : Session | CookieWithoutHttpOnly.go:161:2:161:8 | implicit dereference : Session |
-| CookieWithoutHttpOnly.go:159:2:159:8 | implicit dereference : Session | CookieWithoutHttpOnly.go:166:2:166:8 | session |
-| CookieWithoutHttpOnly.go:159:2:159:8 | implicit dereference : Session | CookieWithoutHttpOnly.go:166:2:166:8 | session |
-| CookieWithoutHttpOnly.go:159:2:159:8 | session [pointer] : Session | CookieWithoutHttpOnly.go:159:2:159:8 | implicit dereference : Session |
-| CookieWithoutHttpOnly.go:159:2:159:8 | session [pointer] : Session | CookieWithoutHttpOnly.go:159:2:159:8 | implicit dereference : Session |
-| CookieWithoutHttpOnly.go:161:2:161:8 | implicit dereference : Session | CookieWithoutHttpOnly.go:158:2:158:8 | definition of session [pointer] : Session |
-| CookieWithoutHttpOnly.go:161:2:161:8 | implicit dereference : Session | CookieWithoutHttpOnly.go:158:2:158:8 | definition of session [pointer] : Session |
-| CookieWithoutHttpOnly.go:161:2:161:8 | implicit dereference : Session | CookieWithoutHttpOnly.go:159:2:159:8 | implicit dereference : Session |
-| CookieWithoutHttpOnly.go:161:2:161:8 | implicit dereference : Session | CookieWithoutHttpOnly.go:159:2:159:8 | implicit dereference : Session |
-| CookieWithoutHttpOnly.go:161:2:161:8 | implicit dereference : Session | CookieWithoutHttpOnly.go:161:2:161:8 | implicit dereference : Session |
-| CookieWithoutHttpOnly.go:161:2:161:8 | implicit dereference : Session | CookieWithoutHttpOnly.go:161:2:161:8 | implicit dereference : Session |
-| CookieWithoutHttpOnly.go:161:2:161:8 | implicit dereference : Session | CookieWithoutHttpOnly.go:166:2:166:8 | session |
-| CookieWithoutHttpOnly.go:161:2:161:8 | implicit dereference : Session | CookieWithoutHttpOnly.go:166:2:166:8 | session |
-| CookieWithoutHttpOnly.go:161:2:161:8 | session [pointer] : Session | CookieWithoutHttpOnly.go:161:2:161:8 | implicit dereference : Session |
-| CookieWithoutHttpOnly.go:161:2:161:8 | session [pointer] : Session | CookieWithoutHttpOnly.go:161:2:161:8 | implicit dereference : Session |
-| CookieWithoutHttpOnly.go:161:21:164:2 | struct literal : Options | CookieWithoutHttpOnly.go:159:2:159:8 | implicit dereference : Session |
-| CookieWithoutHttpOnly.go:161:21:164:2 | struct literal : Options | CookieWithoutHttpOnly.go:161:2:161:8 | implicit dereference : Session |
-| CookieWithoutHttpOnly.go:161:21:164:2 | struct literal : Options | CookieWithoutHttpOnly.go:166:2:166:8 | session |
-| CookieWithoutHttpOnly.go:163:13:163:20 | httpOnly : bool | CookieWithoutHttpOnly.go:159:2:159:8 | implicit dereference : Session |
-| CookieWithoutHttpOnly.go:163:13:163:20 | httpOnly : bool | CookieWithoutHttpOnly.go:161:2:161:8 | implicit dereference : Session |
-| CookieWithoutHttpOnly.go:163:13:163:20 | httpOnly : bool | CookieWithoutHttpOnly.go:166:2:166:8 | session |
-| CookieWithoutHttpOnly.go:169:56:169:63 | argument corresponding to httpOnly : bool | CookieWithoutHttpOnly.go:171:2:171:8 | implicit dereference : Session |
-| CookieWithoutHttpOnly.go:169:56:169:63 | argument corresponding to httpOnly : bool | CookieWithoutHttpOnly.go:173:2:173:8 | implicit dereference : Session |
-| CookieWithoutHttpOnly.go:169:56:169:63 | argument corresponding to httpOnly : bool | CookieWithoutHttpOnly.go:178:2:178:8 | session |
-| CookieWithoutHttpOnly.go:169:56:169:63 | definition of httpOnly : bool | CookieWithoutHttpOnly.go:171:2:171:8 | implicit dereference : Session |
-| CookieWithoutHttpOnly.go:169:56:169:63 | definition of httpOnly : bool | CookieWithoutHttpOnly.go:173:2:173:8 | implicit dereference : Session |
-| CookieWithoutHttpOnly.go:169:56:169:63 | definition of httpOnly : bool | CookieWithoutHttpOnly.go:178:2:178:8 | session |
-| CookieWithoutHttpOnly.go:170:2:170:8 | definition of session [pointer] : Session | CookieWithoutHttpOnly.go:171:2:171:8 | session [pointer] : Session |
-| CookieWithoutHttpOnly.go:170:2:170:8 | definition of session [pointer] : Session | CookieWithoutHttpOnly.go:171:2:171:8 | session [pointer] : Session |
-| CookieWithoutHttpOnly.go:170:2:170:8 | definition of session [pointer] : Session | CookieWithoutHttpOnly.go:173:2:173:8 | session [pointer] : Session |
-| CookieWithoutHttpOnly.go:170:2:170:8 | definition of session [pointer] : Session | CookieWithoutHttpOnly.go:173:2:173:8 | session [pointer] : Session |
-| CookieWithoutHttpOnly.go:170:2:170:8 | definition of session [pointer] : Session | CookieWithoutHttpOnly.go:178:2:178:8 | session |
-| CookieWithoutHttpOnly.go:170:2:170:8 | definition of session [pointer] : Session | CookieWithoutHttpOnly.go:178:2:178:8 | session |
-| CookieWithoutHttpOnly.go:170:16:170:20 | store : pointer type | CookieWithoutHttpOnly.go:178:2:178:8 | session |
-| CookieWithoutHttpOnly.go:171:2:171:8 | implicit dereference : Session | CookieWithoutHttpOnly.go:170:2:170:8 | definition of session [pointer] : Session |
-| CookieWithoutHttpOnly.go:171:2:171:8 | implicit dereference : Session | CookieWithoutHttpOnly.go:170:2:170:8 | definition of session [pointer] : Session |
-| CookieWithoutHttpOnly.go:171:2:171:8 | implicit dereference : Session | CookieWithoutHttpOnly.go:171:2:171:8 | implicit dereference : Session |
-| CookieWithoutHttpOnly.go:171:2:171:8 | implicit dereference : Session | CookieWithoutHttpOnly.go:171:2:171:8 | implicit dereference : Session |
-| CookieWithoutHttpOnly.go:171:2:171:8 | implicit dereference : Session | CookieWithoutHttpOnly.go:173:2:173:8 | implicit dereference : Session |
-| CookieWithoutHttpOnly.go:171:2:171:8 | implicit dereference : Session | CookieWithoutHttpOnly.go:173:2:173:8 | implicit dereference : Session |
-| CookieWithoutHttpOnly.go:171:2:171:8 | implicit dereference : Session | CookieWithoutHttpOnly.go:178:2:178:8 | session |
-| CookieWithoutHttpOnly.go:171:2:171:8 | implicit dereference : Session | CookieWithoutHttpOnly.go:178:2:178:8 | session |
-| CookieWithoutHttpOnly.go:171:2:171:8 | session [pointer] : Session | CookieWithoutHttpOnly.go:171:2:171:8 | implicit dereference : Session |
-| CookieWithoutHttpOnly.go:171:2:171:8 | session [pointer] : Session | CookieWithoutHttpOnly.go:171:2:171:8 | implicit dereference : Session |
-| CookieWithoutHttpOnly.go:173:2:173:8 | implicit dereference : Session | CookieWithoutHttpOnly.go:170:2:170:8 | definition of session [pointer] : Session |
-| CookieWithoutHttpOnly.go:173:2:173:8 | implicit dereference : Session | CookieWithoutHttpOnly.go:170:2:170:8 | definition of session [pointer] : Session |
-| CookieWithoutHttpOnly.go:173:2:173:8 | implicit dereference : Session | CookieWithoutHttpOnly.go:171:2:171:8 | implicit dereference : Session |
-| CookieWithoutHttpOnly.go:173:2:173:8 | implicit dereference : Session | CookieWithoutHttpOnly.go:171:2:171:8 | implicit dereference : Session |
-| CookieWithoutHttpOnly.go:173:2:173:8 | implicit dereference : Session | CookieWithoutHttpOnly.go:173:2:173:8 | implicit dereference : Session |
-| CookieWithoutHttpOnly.go:173:2:173:8 | implicit dereference : Session | CookieWithoutHttpOnly.go:173:2:173:8 | implicit dereference : Session |
-| CookieWithoutHttpOnly.go:173:2:173:8 | implicit dereference : Session | CookieWithoutHttpOnly.go:178:2:178:8 | session |
-| CookieWithoutHttpOnly.go:173:2:173:8 | implicit dereference : Session | CookieWithoutHttpOnly.go:178:2:178:8 | session |
-| CookieWithoutHttpOnly.go:173:2:173:8 | session [pointer] : Session | CookieWithoutHttpOnly.go:173:2:173:8 | implicit dereference : Session |
-| CookieWithoutHttpOnly.go:173:2:173:8 | session [pointer] : Session | CookieWithoutHttpOnly.go:173:2:173:8 | implicit dereference : Session |
-| CookieWithoutHttpOnly.go:173:21:176:2 | struct literal : Options | CookieWithoutHttpOnly.go:171:2:171:8 | implicit dereference : Session |
-| CookieWithoutHttpOnly.go:173:21:176:2 | struct literal : Options | CookieWithoutHttpOnly.go:173:2:173:8 | implicit dereference : Session |
-| CookieWithoutHttpOnly.go:173:21:176:2 | struct literal : Options | CookieWithoutHttpOnly.go:178:2:178:8 | session |
-| CookieWithoutHttpOnly.go:175:13:175:20 | httpOnly : bool | CookieWithoutHttpOnly.go:171:2:171:8 | implicit dereference : Session |
-| CookieWithoutHttpOnly.go:175:13:175:20 | httpOnly : bool | CookieWithoutHttpOnly.go:173:2:173:8 | implicit dereference : Session |
-| CookieWithoutHttpOnly.go:175:13:175:20 | httpOnly : bool | CookieWithoutHttpOnly.go:178:2:178:8 | session |
-| CookieWithoutHttpOnly.go:183:16:183:20 | store : pointer type | CookieWithoutHttpOnly.go:191:19:191:25 | session |
-| CookieWithoutHttpOnly.go:195:16:195:20 | store : pointer type | CookieWithoutHttpOnly.go:202:19:202:25 | session |
+| CookieWithoutHttpOnly.go:12:10:12:18 | "session" | CookieWithoutHttpOnly.go:15:20:15:21 | &... |
+| CookieWithoutHttpOnly.go:12:10:12:18 | "session" | CookieWithoutHttpOnly.go:15:20:15:21 | &... |
+| CookieWithoutHttpOnly.go:12:10:12:18 | "session" | CookieWithoutHttpOnly.go:15:21:15:21 | c |
+| CookieWithoutHttpOnly.go:15:20:15:21 | &... | CookieWithoutHttpOnly.go:15:20:15:21 | &... |
+| CookieWithoutHttpOnly.go:15:20:15:21 | &... | CookieWithoutHttpOnly.go:15:20:15:21 | &... |
+| CookieWithoutHttpOnly.go:15:20:15:21 | &... | CookieWithoutHttpOnly.go:15:21:15:21 | c |
+| CookieWithoutHttpOnly.go:15:20:15:21 | &... [pointer] | CookieWithoutHttpOnly.go:15:20:15:21 | &... |
+| CookieWithoutHttpOnly.go:15:20:15:21 | &... [pointer] | CookieWithoutHttpOnly.go:15:20:15:21 | &... |
+| CookieWithoutHttpOnly.go:15:20:15:21 | &... [pointer] | CookieWithoutHttpOnly.go:15:21:15:21 | c |
+| CookieWithoutHttpOnly.go:15:21:15:21 | c | CookieWithoutHttpOnly.go:15:20:15:21 | &... [pointer] |
+| CookieWithoutHttpOnly.go:20:13:20:21 | "session" | CookieWithoutHttpOnly.go:24:20:24:21 | &... |
+| CookieWithoutHttpOnly.go:20:13:20:21 | "session" | CookieWithoutHttpOnly.go:24:20:24:21 | &... |
+| CookieWithoutHttpOnly.go:20:13:20:21 | "session" | CookieWithoutHttpOnly.go:24:21:24:21 | c |
+| CookieWithoutHttpOnly.go:22:13:22:17 | false | CookieWithoutHttpOnly.go:24:20:24:21 | &... |
+| CookieWithoutHttpOnly.go:22:13:22:17 | false | CookieWithoutHttpOnly.go:24:20:24:21 | &... |
+| CookieWithoutHttpOnly.go:22:13:22:17 | false | CookieWithoutHttpOnly.go:24:21:24:21 | c |
+| CookieWithoutHttpOnly.go:24:20:24:21 | &... | CookieWithoutHttpOnly.go:24:20:24:21 | &... |
+| CookieWithoutHttpOnly.go:24:20:24:21 | &... | CookieWithoutHttpOnly.go:24:20:24:21 | &... |
+| CookieWithoutHttpOnly.go:24:20:24:21 | &... | CookieWithoutHttpOnly.go:24:20:24:21 | &... |
+| CookieWithoutHttpOnly.go:24:20:24:21 | &... | CookieWithoutHttpOnly.go:24:20:24:21 | &... |
+| CookieWithoutHttpOnly.go:24:20:24:21 | &... | CookieWithoutHttpOnly.go:24:21:24:21 | c |
+| CookieWithoutHttpOnly.go:24:20:24:21 | &... | CookieWithoutHttpOnly.go:24:21:24:21 | c |
+| CookieWithoutHttpOnly.go:24:20:24:21 | &... [pointer] | CookieWithoutHttpOnly.go:24:20:24:21 | &... |
+| CookieWithoutHttpOnly.go:24:20:24:21 | &... [pointer] | CookieWithoutHttpOnly.go:24:20:24:21 | &... |
+| CookieWithoutHttpOnly.go:24:20:24:21 | &... [pointer] | CookieWithoutHttpOnly.go:24:20:24:21 | &... |
+| CookieWithoutHttpOnly.go:24:20:24:21 | &... [pointer] | CookieWithoutHttpOnly.go:24:20:24:21 | &... |
+| CookieWithoutHttpOnly.go:24:20:24:21 | &... [pointer] | CookieWithoutHttpOnly.go:24:21:24:21 | c |
+| CookieWithoutHttpOnly.go:24:20:24:21 | &... [pointer] | CookieWithoutHttpOnly.go:24:21:24:21 | c |
+| CookieWithoutHttpOnly.go:24:21:24:21 | c | CookieWithoutHttpOnly.go:24:20:24:21 | &... [pointer] |
+| CookieWithoutHttpOnly.go:24:21:24:21 | c | CookieWithoutHttpOnly.go:24:20:24:21 | &... [pointer] |
+| CookieWithoutHttpOnly.go:29:13:29:21 | "session" | CookieWithoutHttpOnly.go:33:20:33:21 | &... |
+| CookieWithoutHttpOnly.go:29:13:29:21 | "session" | CookieWithoutHttpOnly.go:33:20:33:21 | &... |
+| CookieWithoutHttpOnly.go:29:13:29:21 | "session" | CookieWithoutHttpOnly.go:33:21:33:21 | c |
+| CookieWithoutHttpOnly.go:31:13:31:16 | true | CookieWithoutHttpOnly.go:33:20:33:21 | &... |
+| CookieWithoutHttpOnly.go:31:13:31:16 | true | CookieWithoutHttpOnly.go:33:20:33:21 | &... |
+| CookieWithoutHttpOnly.go:31:13:31:16 | true | CookieWithoutHttpOnly.go:33:21:33:21 | c |
+| CookieWithoutHttpOnly.go:33:20:33:21 | &... | CookieWithoutHttpOnly.go:33:20:33:21 | &... |
+| CookieWithoutHttpOnly.go:33:20:33:21 | &... | CookieWithoutHttpOnly.go:33:20:33:21 | &... |
+| CookieWithoutHttpOnly.go:33:20:33:21 | &... | CookieWithoutHttpOnly.go:33:20:33:21 | &... |
+| CookieWithoutHttpOnly.go:33:20:33:21 | &... | CookieWithoutHttpOnly.go:33:20:33:21 | &... |
+| CookieWithoutHttpOnly.go:33:20:33:21 | &... | CookieWithoutHttpOnly.go:33:21:33:21 | c |
+| CookieWithoutHttpOnly.go:33:20:33:21 | &... | CookieWithoutHttpOnly.go:33:21:33:21 | c |
+| CookieWithoutHttpOnly.go:33:20:33:21 | &... [pointer] | CookieWithoutHttpOnly.go:33:20:33:21 | &... |
+| CookieWithoutHttpOnly.go:33:20:33:21 | &... [pointer] | CookieWithoutHttpOnly.go:33:20:33:21 | &... |
+| CookieWithoutHttpOnly.go:33:20:33:21 | &... [pointer] | CookieWithoutHttpOnly.go:33:20:33:21 | &... |
+| CookieWithoutHttpOnly.go:33:20:33:21 | &... [pointer] | CookieWithoutHttpOnly.go:33:20:33:21 | &... |
+| CookieWithoutHttpOnly.go:33:20:33:21 | &... [pointer] | CookieWithoutHttpOnly.go:33:21:33:21 | c |
+| CookieWithoutHttpOnly.go:33:20:33:21 | &... [pointer] | CookieWithoutHttpOnly.go:33:21:33:21 | c |
+| CookieWithoutHttpOnly.go:33:21:33:21 | c | CookieWithoutHttpOnly.go:33:20:33:21 | &... [pointer] |
+| CookieWithoutHttpOnly.go:33:21:33:21 | c | CookieWithoutHttpOnly.go:33:20:33:21 | &... [pointer] |
+| CookieWithoutHttpOnly.go:38:10:38:18 | "session" | CookieWithoutHttpOnly.go:42:20:42:21 | &... |
+| CookieWithoutHttpOnly.go:38:10:38:18 | "session" | CookieWithoutHttpOnly.go:42:20:42:21 | &... |
+| CookieWithoutHttpOnly.go:38:10:38:18 | "session" | CookieWithoutHttpOnly.go:42:21:42:21 | c |
+| CookieWithoutHttpOnly.go:41:15:41:18 | true | CookieWithoutHttpOnly.go:42:20:42:21 | &... |
+| CookieWithoutHttpOnly.go:41:15:41:18 | true | CookieWithoutHttpOnly.go:42:20:42:21 | &... |
+| CookieWithoutHttpOnly.go:41:15:41:18 | true | CookieWithoutHttpOnly.go:42:21:42:21 | c |
+| CookieWithoutHttpOnly.go:42:20:42:21 | &... | CookieWithoutHttpOnly.go:42:20:42:21 | &... |
+| CookieWithoutHttpOnly.go:42:20:42:21 | &... | CookieWithoutHttpOnly.go:42:20:42:21 | &... |
+| CookieWithoutHttpOnly.go:42:20:42:21 | &... | CookieWithoutHttpOnly.go:42:20:42:21 | &... |
+| CookieWithoutHttpOnly.go:42:20:42:21 | &... | CookieWithoutHttpOnly.go:42:20:42:21 | &... |
+| CookieWithoutHttpOnly.go:42:20:42:21 | &... | CookieWithoutHttpOnly.go:42:21:42:21 | c |
+| CookieWithoutHttpOnly.go:42:20:42:21 | &... | CookieWithoutHttpOnly.go:42:21:42:21 | c |
+| CookieWithoutHttpOnly.go:42:20:42:21 | &... [pointer] | CookieWithoutHttpOnly.go:42:20:42:21 | &... |
+| CookieWithoutHttpOnly.go:42:20:42:21 | &... [pointer] | CookieWithoutHttpOnly.go:42:20:42:21 | &... |
+| CookieWithoutHttpOnly.go:42:20:42:21 | &... [pointer] | CookieWithoutHttpOnly.go:42:20:42:21 | &... |
+| CookieWithoutHttpOnly.go:42:20:42:21 | &... [pointer] | CookieWithoutHttpOnly.go:42:20:42:21 | &... |
+| CookieWithoutHttpOnly.go:42:20:42:21 | &... [pointer] | CookieWithoutHttpOnly.go:42:21:42:21 | c |
+| CookieWithoutHttpOnly.go:42:20:42:21 | &... [pointer] | CookieWithoutHttpOnly.go:42:21:42:21 | c |
+| CookieWithoutHttpOnly.go:42:21:42:21 | c | CookieWithoutHttpOnly.go:42:20:42:21 | &... [pointer] |
+| CookieWithoutHttpOnly.go:42:21:42:21 | c | CookieWithoutHttpOnly.go:42:20:42:21 | &... [pointer] |
+| CookieWithoutHttpOnly.go:47:10:47:18 | "session" | CookieWithoutHttpOnly.go:51:20:51:21 | &... |
+| CookieWithoutHttpOnly.go:47:10:47:18 | "session" | CookieWithoutHttpOnly.go:51:20:51:21 | &... |
+| CookieWithoutHttpOnly.go:47:10:47:18 | "session" | CookieWithoutHttpOnly.go:51:21:51:21 | c |
+| CookieWithoutHttpOnly.go:50:15:50:19 | false | CookieWithoutHttpOnly.go:51:20:51:21 | &... |
+| CookieWithoutHttpOnly.go:50:15:50:19 | false | CookieWithoutHttpOnly.go:51:20:51:21 | &... |
+| CookieWithoutHttpOnly.go:50:15:50:19 | false | CookieWithoutHttpOnly.go:51:21:51:21 | c |
+| CookieWithoutHttpOnly.go:51:20:51:21 | &... | CookieWithoutHttpOnly.go:51:20:51:21 | &... |
+| CookieWithoutHttpOnly.go:51:20:51:21 | &... | CookieWithoutHttpOnly.go:51:20:51:21 | &... |
+| CookieWithoutHttpOnly.go:51:20:51:21 | &... | CookieWithoutHttpOnly.go:51:20:51:21 | &... |
+| CookieWithoutHttpOnly.go:51:20:51:21 | &... | CookieWithoutHttpOnly.go:51:20:51:21 | &... |
+| CookieWithoutHttpOnly.go:51:20:51:21 | &... | CookieWithoutHttpOnly.go:51:21:51:21 | c |
+| CookieWithoutHttpOnly.go:51:20:51:21 | &... | CookieWithoutHttpOnly.go:51:21:51:21 | c |
+| CookieWithoutHttpOnly.go:51:20:51:21 | &... [pointer] | CookieWithoutHttpOnly.go:51:20:51:21 | &... |
+| CookieWithoutHttpOnly.go:51:20:51:21 | &... [pointer] | CookieWithoutHttpOnly.go:51:20:51:21 | &... |
+| CookieWithoutHttpOnly.go:51:20:51:21 | &... [pointer] | CookieWithoutHttpOnly.go:51:20:51:21 | &... |
+| CookieWithoutHttpOnly.go:51:20:51:21 | &... [pointer] | CookieWithoutHttpOnly.go:51:20:51:21 | &... |
+| CookieWithoutHttpOnly.go:51:20:51:21 | &... [pointer] | CookieWithoutHttpOnly.go:51:21:51:21 | c |
+| CookieWithoutHttpOnly.go:51:20:51:21 | &... [pointer] | CookieWithoutHttpOnly.go:51:21:51:21 | c |
+| CookieWithoutHttpOnly.go:51:21:51:21 | c | CookieWithoutHttpOnly.go:51:20:51:21 | &... [pointer] |
+| CookieWithoutHttpOnly.go:51:21:51:21 | c | CookieWithoutHttpOnly.go:51:20:51:21 | &... [pointer] |
+| CookieWithoutHttpOnly.go:55:2:55:4 | definition of val | CookieWithoutHttpOnly.go:61:20:61:21 | &... |
+| CookieWithoutHttpOnly.go:55:2:55:4 | definition of val | CookieWithoutHttpOnly.go:61:20:61:21 | &... |
+| CookieWithoutHttpOnly.go:55:2:55:4 | definition of val | CookieWithoutHttpOnly.go:61:21:61:21 | c |
+| CookieWithoutHttpOnly.go:55:9:55:13 | false | CookieWithoutHttpOnly.go:61:20:61:21 | &... |
+| CookieWithoutHttpOnly.go:55:9:55:13 | false | CookieWithoutHttpOnly.go:61:20:61:21 | &... |
+| CookieWithoutHttpOnly.go:55:9:55:13 | false | CookieWithoutHttpOnly.go:61:21:61:21 | c |
+| CookieWithoutHttpOnly.go:57:13:57:21 | "session" | CookieWithoutHttpOnly.go:61:20:61:21 | &... |
+| CookieWithoutHttpOnly.go:57:13:57:21 | "session" | CookieWithoutHttpOnly.go:61:20:61:21 | &... |
+| CookieWithoutHttpOnly.go:57:13:57:21 | "session" | CookieWithoutHttpOnly.go:61:21:61:21 | c |
+| CookieWithoutHttpOnly.go:59:13:59:15 | val | CookieWithoutHttpOnly.go:61:20:61:21 | &... |
+| CookieWithoutHttpOnly.go:59:13:59:15 | val | CookieWithoutHttpOnly.go:61:20:61:21 | &... |
+| CookieWithoutHttpOnly.go:59:13:59:15 | val | CookieWithoutHttpOnly.go:61:21:61:21 | c |
+| CookieWithoutHttpOnly.go:61:20:61:21 | &... | CookieWithoutHttpOnly.go:61:20:61:21 | &... |
+| CookieWithoutHttpOnly.go:61:20:61:21 | &... | CookieWithoutHttpOnly.go:61:20:61:21 | &... |
+| CookieWithoutHttpOnly.go:61:20:61:21 | &... | CookieWithoutHttpOnly.go:61:20:61:21 | &... |
+| CookieWithoutHttpOnly.go:61:20:61:21 | &... | CookieWithoutHttpOnly.go:61:20:61:21 | &... |
+| CookieWithoutHttpOnly.go:61:20:61:21 | &... | CookieWithoutHttpOnly.go:61:21:61:21 | c |
+| CookieWithoutHttpOnly.go:61:20:61:21 | &... | CookieWithoutHttpOnly.go:61:21:61:21 | c |
+| CookieWithoutHttpOnly.go:61:20:61:21 | &... [pointer] | CookieWithoutHttpOnly.go:61:20:61:21 | &... |
+| CookieWithoutHttpOnly.go:61:20:61:21 | &... [pointer] | CookieWithoutHttpOnly.go:61:20:61:21 | &... |
+| CookieWithoutHttpOnly.go:61:20:61:21 | &... [pointer] | CookieWithoutHttpOnly.go:61:20:61:21 | &... |
+| CookieWithoutHttpOnly.go:61:20:61:21 | &... [pointer] | CookieWithoutHttpOnly.go:61:20:61:21 | &... |
+| CookieWithoutHttpOnly.go:61:20:61:21 | &... [pointer] | CookieWithoutHttpOnly.go:61:21:61:21 | c |
+| CookieWithoutHttpOnly.go:61:20:61:21 | &... [pointer] | CookieWithoutHttpOnly.go:61:21:61:21 | c |
+| CookieWithoutHttpOnly.go:61:21:61:21 | c | CookieWithoutHttpOnly.go:61:20:61:21 | &... [pointer] |
+| CookieWithoutHttpOnly.go:61:21:61:21 | c | CookieWithoutHttpOnly.go:61:20:61:21 | &... [pointer] |
+| CookieWithoutHttpOnly.go:65:2:65:4 | definition of val | CookieWithoutHttpOnly.go:71:20:71:21 | &... |
+| CookieWithoutHttpOnly.go:65:2:65:4 | definition of val | CookieWithoutHttpOnly.go:71:20:71:21 | &... |
+| CookieWithoutHttpOnly.go:65:2:65:4 | definition of val | CookieWithoutHttpOnly.go:71:21:71:21 | c |
+| CookieWithoutHttpOnly.go:65:9:65:12 | true | CookieWithoutHttpOnly.go:71:20:71:21 | &... |
+| CookieWithoutHttpOnly.go:65:9:65:12 | true | CookieWithoutHttpOnly.go:71:20:71:21 | &... |
+| CookieWithoutHttpOnly.go:65:9:65:12 | true | CookieWithoutHttpOnly.go:71:21:71:21 | c |
+| CookieWithoutHttpOnly.go:67:13:67:21 | "session" | CookieWithoutHttpOnly.go:71:20:71:21 | &... |
+| CookieWithoutHttpOnly.go:67:13:67:21 | "session" | CookieWithoutHttpOnly.go:71:20:71:21 | &... |
+| CookieWithoutHttpOnly.go:67:13:67:21 | "session" | CookieWithoutHttpOnly.go:71:21:71:21 | c |
+| CookieWithoutHttpOnly.go:69:13:69:15 | val | CookieWithoutHttpOnly.go:71:20:71:21 | &... |
+| CookieWithoutHttpOnly.go:69:13:69:15 | val | CookieWithoutHttpOnly.go:71:20:71:21 | &... |
+| CookieWithoutHttpOnly.go:69:13:69:15 | val | CookieWithoutHttpOnly.go:71:21:71:21 | c |
+| CookieWithoutHttpOnly.go:71:20:71:21 | &... | CookieWithoutHttpOnly.go:71:20:71:21 | &... |
+| CookieWithoutHttpOnly.go:71:20:71:21 | &... | CookieWithoutHttpOnly.go:71:20:71:21 | &... |
+| CookieWithoutHttpOnly.go:71:20:71:21 | &... | CookieWithoutHttpOnly.go:71:20:71:21 | &... |
+| CookieWithoutHttpOnly.go:71:20:71:21 | &... | CookieWithoutHttpOnly.go:71:20:71:21 | &... |
+| CookieWithoutHttpOnly.go:71:20:71:21 | &... | CookieWithoutHttpOnly.go:71:21:71:21 | c |
+| CookieWithoutHttpOnly.go:71:20:71:21 | &... | CookieWithoutHttpOnly.go:71:21:71:21 | c |
+| CookieWithoutHttpOnly.go:71:20:71:21 | &... [pointer] | CookieWithoutHttpOnly.go:71:20:71:21 | &... |
+| CookieWithoutHttpOnly.go:71:20:71:21 | &... [pointer] | CookieWithoutHttpOnly.go:71:20:71:21 | &... |
+| CookieWithoutHttpOnly.go:71:20:71:21 | &... [pointer] | CookieWithoutHttpOnly.go:71:20:71:21 | &... |
+| CookieWithoutHttpOnly.go:71:20:71:21 | &... [pointer] | CookieWithoutHttpOnly.go:71:20:71:21 | &... |
+| CookieWithoutHttpOnly.go:71:20:71:21 | &... [pointer] | CookieWithoutHttpOnly.go:71:21:71:21 | c |
+| CookieWithoutHttpOnly.go:71:20:71:21 | &... [pointer] | CookieWithoutHttpOnly.go:71:21:71:21 | c |
+| CookieWithoutHttpOnly.go:71:21:71:21 | c | CookieWithoutHttpOnly.go:71:20:71:21 | &... [pointer] |
+| CookieWithoutHttpOnly.go:71:21:71:21 | c | CookieWithoutHttpOnly.go:71:20:71:21 | &... [pointer] |
+| CookieWithoutHttpOnly.go:75:2:75:4 | definition of val | CookieWithoutHttpOnly.go:81:20:81:21 | &... |
+| CookieWithoutHttpOnly.go:75:2:75:4 | definition of val | CookieWithoutHttpOnly.go:81:20:81:21 | &... |
+| CookieWithoutHttpOnly.go:75:2:75:4 | definition of val | CookieWithoutHttpOnly.go:81:21:81:21 | c |
+| CookieWithoutHttpOnly.go:75:9:75:12 | true | CookieWithoutHttpOnly.go:81:20:81:21 | &... |
+| CookieWithoutHttpOnly.go:75:9:75:12 | true | CookieWithoutHttpOnly.go:81:20:81:21 | &... |
+| CookieWithoutHttpOnly.go:75:9:75:12 | true | CookieWithoutHttpOnly.go:81:21:81:21 | c |
+| CookieWithoutHttpOnly.go:77:10:77:18 | "session" | CookieWithoutHttpOnly.go:81:20:81:21 | &... |
+| CookieWithoutHttpOnly.go:77:10:77:18 | "session" | CookieWithoutHttpOnly.go:81:20:81:21 | &... |
+| CookieWithoutHttpOnly.go:77:10:77:18 | "session" | CookieWithoutHttpOnly.go:81:21:81:21 | c |
+| CookieWithoutHttpOnly.go:80:15:80:17 | val | CookieWithoutHttpOnly.go:81:20:81:21 | &... |
+| CookieWithoutHttpOnly.go:80:15:80:17 | val | CookieWithoutHttpOnly.go:81:20:81:21 | &... |
+| CookieWithoutHttpOnly.go:80:15:80:17 | val | CookieWithoutHttpOnly.go:81:21:81:21 | c |
+| CookieWithoutHttpOnly.go:81:20:81:21 | &... | CookieWithoutHttpOnly.go:81:20:81:21 | &... |
+| CookieWithoutHttpOnly.go:81:20:81:21 | &... | CookieWithoutHttpOnly.go:81:20:81:21 | &... |
+| CookieWithoutHttpOnly.go:81:20:81:21 | &... | CookieWithoutHttpOnly.go:81:20:81:21 | &... |
+| CookieWithoutHttpOnly.go:81:20:81:21 | &... | CookieWithoutHttpOnly.go:81:20:81:21 | &... |
+| CookieWithoutHttpOnly.go:81:20:81:21 | &... | CookieWithoutHttpOnly.go:81:21:81:21 | c |
+| CookieWithoutHttpOnly.go:81:20:81:21 | &... | CookieWithoutHttpOnly.go:81:21:81:21 | c |
+| CookieWithoutHttpOnly.go:81:20:81:21 | &... [pointer] | CookieWithoutHttpOnly.go:81:20:81:21 | &... |
+| CookieWithoutHttpOnly.go:81:20:81:21 | &... [pointer] | CookieWithoutHttpOnly.go:81:20:81:21 | &... |
+| CookieWithoutHttpOnly.go:81:20:81:21 | &... [pointer] | CookieWithoutHttpOnly.go:81:20:81:21 | &... |
+| CookieWithoutHttpOnly.go:81:20:81:21 | &... [pointer] | CookieWithoutHttpOnly.go:81:20:81:21 | &... |
+| CookieWithoutHttpOnly.go:81:20:81:21 | &... [pointer] | CookieWithoutHttpOnly.go:81:21:81:21 | c |
+| CookieWithoutHttpOnly.go:81:20:81:21 | &... [pointer] | CookieWithoutHttpOnly.go:81:21:81:21 | c |
+| CookieWithoutHttpOnly.go:81:21:81:21 | c | CookieWithoutHttpOnly.go:81:20:81:21 | &... [pointer] |
+| CookieWithoutHttpOnly.go:81:21:81:21 | c | CookieWithoutHttpOnly.go:81:20:81:21 | &... [pointer] |
+| CookieWithoutHttpOnly.go:85:2:85:4 | definition of val | CookieWithoutHttpOnly.go:91:20:91:21 | &... |
+| CookieWithoutHttpOnly.go:85:2:85:4 | definition of val | CookieWithoutHttpOnly.go:91:20:91:21 | &... |
+| CookieWithoutHttpOnly.go:85:2:85:4 | definition of val | CookieWithoutHttpOnly.go:91:21:91:21 | c |
+| CookieWithoutHttpOnly.go:85:9:85:13 | false | CookieWithoutHttpOnly.go:91:20:91:21 | &... |
+| CookieWithoutHttpOnly.go:85:9:85:13 | false | CookieWithoutHttpOnly.go:91:20:91:21 | &... |
+| CookieWithoutHttpOnly.go:85:9:85:13 | false | CookieWithoutHttpOnly.go:91:21:91:21 | c |
+| CookieWithoutHttpOnly.go:87:10:87:18 | "session" | CookieWithoutHttpOnly.go:91:20:91:21 | &... |
+| CookieWithoutHttpOnly.go:87:10:87:18 | "session" | CookieWithoutHttpOnly.go:91:20:91:21 | &... |
+| CookieWithoutHttpOnly.go:87:10:87:18 | "session" | CookieWithoutHttpOnly.go:91:21:91:21 | c |
+| CookieWithoutHttpOnly.go:90:15:90:17 | val | CookieWithoutHttpOnly.go:91:20:91:21 | &... |
+| CookieWithoutHttpOnly.go:90:15:90:17 | val | CookieWithoutHttpOnly.go:91:20:91:21 | &... |
+| CookieWithoutHttpOnly.go:90:15:90:17 | val | CookieWithoutHttpOnly.go:91:21:91:21 | c |
+| CookieWithoutHttpOnly.go:91:20:91:21 | &... | CookieWithoutHttpOnly.go:91:20:91:21 | &... |
+| CookieWithoutHttpOnly.go:91:20:91:21 | &... | CookieWithoutHttpOnly.go:91:20:91:21 | &... |
+| CookieWithoutHttpOnly.go:91:20:91:21 | &... | CookieWithoutHttpOnly.go:91:20:91:21 | &... |
+| CookieWithoutHttpOnly.go:91:20:91:21 | &... | CookieWithoutHttpOnly.go:91:20:91:21 | &... |
+| CookieWithoutHttpOnly.go:91:20:91:21 | &... | CookieWithoutHttpOnly.go:91:21:91:21 | c |
+| CookieWithoutHttpOnly.go:91:20:91:21 | &... | CookieWithoutHttpOnly.go:91:21:91:21 | c |
+| CookieWithoutHttpOnly.go:91:20:91:21 | &... [pointer] | CookieWithoutHttpOnly.go:91:20:91:21 | &... |
+| CookieWithoutHttpOnly.go:91:20:91:21 | &... [pointer] | CookieWithoutHttpOnly.go:91:20:91:21 | &... |
+| CookieWithoutHttpOnly.go:91:20:91:21 | &... [pointer] | CookieWithoutHttpOnly.go:91:20:91:21 | &... |
+| CookieWithoutHttpOnly.go:91:20:91:21 | &... [pointer] | CookieWithoutHttpOnly.go:91:20:91:21 | &... |
+| CookieWithoutHttpOnly.go:91:20:91:21 | &... [pointer] | CookieWithoutHttpOnly.go:91:21:91:21 | c |
+| CookieWithoutHttpOnly.go:91:20:91:21 | &... [pointer] | CookieWithoutHttpOnly.go:91:21:91:21 | c |
+| CookieWithoutHttpOnly.go:91:21:91:21 | c | CookieWithoutHttpOnly.go:91:20:91:21 | &... [pointer] |
+| CookieWithoutHttpOnly.go:91:21:91:21 | c | CookieWithoutHttpOnly.go:91:20:91:21 | &... [pointer] |
+| CookieWithoutHttpOnly.go:99:15:99:19 | false | CookieWithoutHttpOnly.go:100:20:100:21 | &... |
+| CookieWithoutHttpOnly.go:99:15:99:19 | false | CookieWithoutHttpOnly.go:100:20:100:21 | &... |
+| CookieWithoutHttpOnly.go:99:15:99:19 | false | CookieWithoutHttpOnly.go:100:21:100:21 | c |
+| CookieWithoutHttpOnly.go:100:20:100:21 | &... | CookieWithoutHttpOnly.go:100:20:100:21 | &... |
+| CookieWithoutHttpOnly.go:100:20:100:21 | &... | CookieWithoutHttpOnly.go:100:20:100:21 | &... |
+| CookieWithoutHttpOnly.go:100:20:100:21 | &... | CookieWithoutHttpOnly.go:100:21:100:21 | c |
+| CookieWithoutHttpOnly.go:100:20:100:21 | &... [pointer] | CookieWithoutHttpOnly.go:100:20:100:21 | &... |
+| CookieWithoutHttpOnly.go:100:20:100:21 | &... [pointer] | CookieWithoutHttpOnly.go:100:20:100:21 | &... |
+| CookieWithoutHttpOnly.go:100:20:100:21 | &... [pointer] | CookieWithoutHttpOnly.go:100:21:100:21 | c |
+| CookieWithoutHttpOnly.go:100:21:100:21 | c | CookieWithoutHttpOnly.go:100:20:100:21 | &... [pointer] |
+| CookieWithoutHttpOnly.go:104:10:104:18 | "session" | CookieWithoutHttpOnly.go:110:20:110:21 | &... |
+| CookieWithoutHttpOnly.go:104:10:104:18 | "session" | CookieWithoutHttpOnly.go:110:20:110:21 | &... |
+| CookieWithoutHttpOnly.go:104:10:104:18 | "session" | CookieWithoutHttpOnly.go:110:21:110:21 | c |
+| CookieWithoutHttpOnly.go:109:15:109:19 | false | CookieWithoutHttpOnly.go:110:20:110:21 | &... |
+| CookieWithoutHttpOnly.go:109:15:109:19 | false | CookieWithoutHttpOnly.go:110:20:110:21 | &... |
+| CookieWithoutHttpOnly.go:109:15:109:19 | false | CookieWithoutHttpOnly.go:110:21:110:21 | c |
+| CookieWithoutHttpOnly.go:110:20:110:21 | &... | CookieWithoutHttpOnly.go:110:20:110:21 | &... |
+| CookieWithoutHttpOnly.go:110:20:110:21 | &... | CookieWithoutHttpOnly.go:110:20:110:21 | &... |
+| CookieWithoutHttpOnly.go:110:20:110:21 | &... | CookieWithoutHttpOnly.go:110:20:110:21 | &... |
+| CookieWithoutHttpOnly.go:110:20:110:21 | &... | CookieWithoutHttpOnly.go:110:20:110:21 | &... |
+| CookieWithoutHttpOnly.go:110:20:110:21 | &... | CookieWithoutHttpOnly.go:110:21:110:21 | c |
+| CookieWithoutHttpOnly.go:110:20:110:21 | &... | CookieWithoutHttpOnly.go:110:21:110:21 | c |
+| CookieWithoutHttpOnly.go:110:20:110:21 | &... [pointer] | CookieWithoutHttpOnly.go:110:20:110:21 | &... |
+| CookieWithoutHttpOnly.go:110:20:110:21 | &... [pointer] | CookieWithoutHttpOnly.go:110:20:110:21 | &... |
+| CookieWithoutHttpOnly.go:110:20:110:21 | &... [pointer] | CookieWithoutHttpOnly.go:110:20:110:21 | &... |
+| CookieWithoutHttpOnly.go:110:20:110:21 | &... [pointer] | CookieWithoutHttpOnly.go:110:20:110:21 | &... |
+| CookieWithoutHttpOnly.go:110:20:110:21 | &... [pointer] | CookieWithoutHttpOnly.go:110:21:110:21 | c |
+| CookieWithoutHttpOnly.go:110:20:110:21 | &... [pointer] | CookieWithoutHttpOnly.go:110:21:110:21 | c |
+| CookieWithoutHttpOnly.go:110:21:110:21 | c | CookieWithoutHttpOnly.go:110:20:110:21 | &... [pointer] |
+| CookieWithoutHttpOnly.go:110:21:110:21 | c | CookieWithoutHttpOnly.go:110:20:110:21 | &... [pointer] |
+| CookieWithoutHttpOnly.go:114:13:114:24 | "login_name" | CookieWithoutHttpOnly.go:120:20:120:21 | &... |
+| CookieWithoutHttpOnly.go:114:13:114:24 | "login_name" | CookieWithoutHttpOnly.go:120:20:120:21 | &... |
+| CookieWithoutHttpOnly.go:114:13:114:24 | "login_name" | CookieWithoutHttpOnly.go:120:21:120:21 | c |
+| CookieWithoutHttpOnly.go:116:10:116:16 | session | CookieWithoutHttpOnly.go:120:20:120:21 | &... |
+| CookieWithoutHttpOnly.go:116:10:116:16 | session | CookieWithoutHttpOnly.go:120:20:120:21 | &... |
+| CookieWithoutHttpOnly.go:116:10:116:16 | session | CookieWithoutHttpOnly.go:120:21:120:21 | c |
+| CookieWithoutHttpOnly.go:119:15:119:19 | false | CookieWithoutHttpOnly.go:120:20:120:21 | &... |
+| CookieWithoutHttpOnly.go:119:15:119:19 | false | CookieWithoutHttpOnly.go:120:20:120:21 | &... |
+| CookieWithoutHttpOnly.go:119:15:119:19 | false | CookieWithoutHttpOnly.go:120:21:120:21 | c |
+| CookieWithoutHttpOnly.go:120:20:120:21 | &... | CookieWithoutHttpOnly.go:120:20:120:21 | &... |
+| CookieWithoutHttpOnly.go:120:20:120:21 | &... | CookieWithoutHttpOnly.go:120:20:120:21 | &... |
+| CookieWithoutHttpOnly.go:120:20:120:21 | &... | CookieWithoutHttpOnly.go:120:20:120:21 | &... |
+| CookieWithoutHttpOnly.go:120:20:120:21 | &... | CookieWithoutHttpOnly.go:120:20:120:21 | &... |
+| CookieWithoutHttpOnly.go:120:20:120:21 | &... | CookieWithoutHttpOnly.go:120:21:120:21 | c |
+| CookieWithoutHttpOnly.go:120:20:120:21 | &... | CookieWithoutHttpOnly.go:120:21:120:21 | c |
+| CookieWithoutHttpOnly.go:120:20:120:21 | &... [pointer] | CookieWithoutHttpOnly.go:120:20:120:21 | &... |
+| CookieWithoutHttpOnly.go:120:20:120:21 | &... [pointer] | CookieWithoutHttpOnly.go:120:20:120:21 | &... |
+| CookieWithoutHttpOnly.go:120:20:120:21 | &... [pointer] | CookieWithoutHttpOnly.go:120:20:120:21 | &... |
+| CookieWithoutHttpOnly.go:120:20:120:21 | &... [pointer] | CookieWithoutHttpOnly.go:120:20:120:21 | &... |
+| CookieWithoutHttpOnly.go:120:20:120:21 | &... [pointer] | CookieWithoutHttpOnly.go:120:21:120:21 | c |
+| CookieWithoutHttpOnly.go:120:20:120:21 | &... [pointer] | CookieWithoutHttpOnly.go:120:21:120:21 | c |
+| CookieWithoutHttpOnly.go:120:21:120:21 | c | CookieWithoutHttpOnly.go:120:20:120:21 | &... [pointer] |
+| CookieWithoutHttpOnly.go:120:21:120:21 | c | CookieWithoutHttpOnly.go:120:20:120:21 | &... [pointer] |
+| CookieWithoutHttpOnly.go:123:13:123:49 | call to NewCookieStore | CookieWithoutHttpOnly.go:126:16:126:20 | store |
+| CookieWithoutHttpOnly.go:123:13:123:49 | call to NewCookieStore | CookieWithoutHttpOnly.go:134:16:134:20 | store |
+| CookieWithoutHttpOnly.go:123:13:123:49 | call to NewCookieStore | CookieWithoutHttpOnly.go:146:16:146:20 | store |
+| CookieWithoutHttpOnly.go:123:13:123:49 | call to NewCookieStore | CookieWithoutHttpOnly.go:158:16:158:20 | store |
+| CookieWithoutHttpOnly.go:123:13:123:49 | call to NewCookieStore | CookieWithoutHttpOnly.go:170:16:170:20 | store |
+| CookieWithoutHttpOnly.go:123:13:123:49 | call to NewCookieStore | CookieWithoutHttpOnly.go:183:16:183:20 | store |
+| CookieWithoutHttpOnly.go:123:13:123:49 | call to NewCookieStore | CookieWithoutHttpOnly.go:195:16:195:20 | store |
+| CookieWithoutHttpOnly.go:126:16:126:20 | store | CookieWithoutHttpOnly.go:129:2:129:8 | session |
+| CookieWithoutHttpOnly.go:133:2:133:9 | definition of httpOnly | CookieWithoutHttpOnly.go:135:2:135:8 | implicit dereference |
+| CookieWithoutHttpOnly.go:133:2:133:9 | definition of httpOnly | CookieWithoutHttpOnly.go:137:2:137:8 | implicit dereference |
+| CookieWithoutHttpOnly.go:133:2:133:9 | definition of httpOnly | CookieWithoutHttpOnly.go:142:2:142:8 | session |
+| CookieWithoutHttpOnly.go:133:14:133:18 | false | CookieWithoutHttpOnly.go:135:2:135:8 | implicit dereference |
+| CookieWithoutHttpOnly.go:133:14:133:18 | false | CookieWithoutHttpOnly.go:137:2:137:8 | implicit dereference |
+| CookieWithoutHttpOnly.go:133:14:133:18 | false | CookieWithoutHttpOnly.go:142:2:142:8 | session |
+| CookieWithoutHttpOnly.go:134:2:134:8 | definition of session [pointer] | CookieWithoutHttpOnly.go:135:2:135:8 | session [pointer] |
+| CookieWithoutHttpOnly.go:134:2:134:8 | definition of session [pointer] | CookieWithoutHttpOnly.go:135:2:135:8 | session [pointer] |
+| CookieWithoutHttpOnly.go:134:2:134:8 | definition of session [pointer] | CookieWithoutHttpOnly.go:137:2:137:8 | session [pointer] |
+| CookieWithoutHttpOnly.go:134:2:134:8 | definition of session [pointer] | CookieWithoutHttpOnly.go:137:2:137:8 | session [pointer] |
+| CookieWithoutHttpOnly.go:134:2:134:8 | definition of session [pointer] | CookieWithoutHttpOnly.go:142:2:142:8 | session |
+| CookieWithoutHttpOnly.go:134:2:134:8 | definition of session [pointer] | CookieWithoutHttpOnly.go:142:2:142:8 | session |
+| CookieWithoutHttpOnly.go:134:16:134:20 | store | CookieWithoutHttpOnly.go:142:2:142:8 | session |
+| CookieWithoutHttpOnly.go:135:2:135:8 | implicit dereference | CookieWithoutHttpOnly.go:134:2:134:8 | definition of session [pointer] |
+| CookieWithoutHttpOnly.go:135:2:135:8 | implicit dereference | CookieWithoutHttpOnly.go:134:2:134:8 | definition of session [pointer] |
+| CookieWithoutHttpOnly.go:135:2:135:8 | implicit dereference | CookieWithoutHttpOnly.go:135:2:135:8 | implicit dereference |
+| CookieWithoutHttpOnly.go:135:2:135:8 | implicit dereference | CookieWithoutHttpOnly.go:135:2:135:8 | implicit dereference |
+| CookieWithoutHttpOnly.go:135:2:135:8 | implicit dereference | CookieWithoutHttpOnly.go:137:2:137:8 | implicit dereference |
+| CookieWithoutHttpOnly.go:135:2:135:8 | implicit dereference | CookieWithoutHttpOnly.go:137:2:137:8 | implicit dereference |
+| CookieWithoutHttpOnly.go:135:2:135:8 | implicit dereference | CookieWithoutHttpOnly.go:142:2:142:8 | session |
+| CookieWithoutHttpOnly.go:135:2:135:8 | implicit dereference | CookieWithoutHttpOnly.go:142:2:142:8 | session |
+| CookieWithoutHttpOnly.go:135:2:135:8 | session [pointer] | CookieWithoutHttpOnly.go:135:2:135:8 | implicit dereference |
+| CookieWithoutHttpOnly.go:135:2:135:8 | session [pointer] | CookieWithoutHttpOnly.go:135:2:135:8 | implicit dereference |
+| CookieWithoutHttpOnly.go:137:2:137:8 | implicit dereference | CookieWithoutHttpOnly.go:134:2:134:8 | definition of session [pointer] |
+| CookieWithoutHttpOnly.go:137:2:137:8 | implicit dereference | CookieWithoutHttpOnly.go:134:2:134:8 | definition of session [pointer] |
+| CookieWithoutHttpOnly.go:137:2:137:8 | implicit dereference | CookieWithoutHttpOnly.go:135:2:135:8 | implicit dereference |
+| CookieWithoutHttpOnly.go:137:2:137:8 | implicit dereference | CookieWithoutHttpOnly.go:135:2:135:8 | implicit dereference |
+| CookieWithoutHttpOnly.go:137:2:137:8 | implicit dereference | CookieWithoutHttpOnly.go:137:2:137:8 | implicit dereference |
+| CookieWithoutHttpOnly.go:137:2:137:8 | implicit dereference | CookieWithoutHttpOnly.go:137:2:137:8 | implicit dereference |
+| CookieWithoutHttpOnly.go:137:2:137:8 | implicit dereference | CookieWithoutHttpOnly.go:142:2:142:8 | session |
+| CookieWithoutHttpOnly.go:137:2:137:8 | implicit dereference | CookieWithoutHttpOnly.go:142:2:142:8 | session |
+| CookieWithoutHttpOnly.go:137:2:137:8 | session [pointer] | CookieWithoutHttpOnly.go:137:2:137:8 | implicit dereference |
+| CookieWithoutHttpOnly.go:137:2:137:8 | session [pointer] | CookieWithoutHttpOnly.go:137:2:137:8 | implicit dereference |
+| CookieWithoutHttpOnly.go:137:21:140:2 | struct literal | CookieWithoutHttpOnly.go:135:2:135:8 | implicit dereference |
+| CookieWithoutHttpOnly.go:137:21:140:2 | struct literal | CookieWithoutHttpOnly.go:137:2:137:8 | implicit dereference |
+| CookieWithoutHttpOnly.go:137:21:140:2 | struct literal | CookieWithoutHttpOnly.go:142:2:142:8 | session |
+| CookieWithoutHttpOnly.go:139:13:139:20 | httpOnly | CookieWithoutHttpOnly.go:135:2:135:8 | implicit dereference |
+| CookieWithoutHttpOnly.go:139:13:139:20 | httpOnly | CookieWithoutHttpOnly.go:137:2:137:8 | implicit dereference |
+| CookieWithoutHttpOnly.go:139:13:139:20 | httpOnly | CookieWithoutHttpOnly.go:142:2:142:8 | session |
+| CookieWithoutHttpOnly.go:146:2:146:8 | definition of session [pointer] | CookieWithoutHttpOnly.go:147:2:147:8 | session [pointer] |
+| CookieWithoutHttpOnly.go:146:2:146:8 | definition of session [pointer] | CookieWithoutHttpOnly.go:149:2:149:8 | session [pointer] |
+| CookieWithoutHttpOnly.go:146:2:146:8 | definition of session [pointer] | CookieWithoutHttpOnly.go:153:2:153:8 | session |
+| CookieWithoutHttpOnly.go:146:16:146:20 | store | CookieWithoutHttpOnly.go:153:2:153:8 | session |
+| CookieWithoutHttpOnly.go:147:2:147:8 | implicit dereference | CookieWithoutHttpOnly.go:146:2:146:8 | definition of session [pointer] |
+| CookieWithoutHttpOnly.go:147:2:147:8 | implicit dereference | CookieWithoutHttpOnly.go:147:2:147:8 | implicit dereference |
+| CookieWithoutHttpOnly.go:147:2:147:8 | implicit dereference | CookieWithoutHttpOnly.go:149:2:149:8 | implicit dereference |
+| CookieWithoutHttpOnly.go:147:2:147:8 | implicit dereference | CookieWithoutHttpOnly.go:153:2:153:8 | session |
+| CookieWithoutHttpOnly.go:147:2:147:8 | session [pointer] | CookieWithoutHttpOnly.go:147:2:147:8 | implicit dereference |
+| CookieWithoutHttpOnly.go:149:2:149:8 | implicit dereference | CookieWithoutHttpOnly.go:146:2:146:8 | definition of session [pointer] |
+| CookieWithoutHttpOnly.go:149:2:149:8 | implicit dereference | CookieWithoutHttpOnly.go:147:2:147:8 | implicit dereference |
+| CookieWithoutHttpOnly.go:149:2:149:8 | implicit dereference | CookieWithoutHttpOnly.go:149:2:149:8 | implicit dereference |
+| CookieWithoutHttpOnly.go:149:2:149:8 | implicit dereference | CookieWithoutHttpOnly.go:153:2:153:8 | session |
+| CookieWithoutHttpOnly.go:149:2:149:8 | session [pointer] | CookieWithoutHttpOnly.go:149:2:149:8 | implicit dereference |
+| CookieWithoutHttpOnly.go:149:21:151:2 | struct literal | CookieWithoutHttpOnly.go:147:2:147:8 | implicit dereference |
+| CookieWithoutHttpOnly.go:149:21:151:2 | struct literal | CookieWithoutHttpOnly.go:149:2:149:8 | implicit dereference |
+| CookieWithoutHttpOnly.go:149:21:151:2 | struct literal | CookieWithoutHttpOnly.go:153:2:153:8 | session |
+| CookieWithoutHttpOnly.go:157:2:157:9 | definition of httpOnly | CookieWithoutHttpOnly.go:159:2:159:8 | implicit dereference |
+| CookieWithoutHttpOnly.go:157:2:157:9 | definition of httpOnly | CookieWithoutHttpOnly.go:161:2:161:8 | implicit dereference |
+| CookieWithoutHttpOnly.go:157:2:157:9 | definition of httpOnly | CookieWithoutHttpOnly.go:166:2:166:8 | session |
+| CookieWithoutHttpOnly.go:157:14:157:17 | true | CookieWithoutHttpOnly.go:159:2:159:8 | implicit dereference |
+| CookieWithoutHttpOnly.go:157:14:157:17 | true | CookieWithoutHttpOnly.go:161:2:161:8 | implicit dereference |
+| CookieWithoutHttpOnly.go:157:14:157:17 | true | CookieWithoutHttpOnly.go:166:2:166:8 | session |
+| CookieWithoutHttpOnly.go:158:2:158:8 | definition of session [pointer] | CookieWithoutHttpOnly.go:159:2:159:8 | session [pointer] |
+| CookieWithoutHttpOnly.go:158:2:158:8 | definition of session [pointer] | CookieWithoutHttpOnly.go:159:2:159:8 | session [pointer] |
+| CookieWithoutHttpOnly.go:158:2:158:8 | definition of session [pointer] | CookieWithoutHttpOnly.go:161:2:161:8 | session [pointer] |
+| CookieWithoutHttpOnly.go:158:2:158:8 | definition of session [pointer] | CookieWithoutHttpOnly.go:161:2:161:8 | session [pointer] |
+| CookieWithoutHttpOnly.go:158:2:158:8 | definition of session [pointer] | CookieWithoutHttpOnly.go:166:2:166:8 | session |
+| CookieWithoutHttpOnly.go:158:2:158:8 | definition of session [pointer] | CookieWithoutHttpOnly.go:166:2:166:8 | session |
+| CookieWithoutHttpOnly.go:158:16:158:20 | store | CookieWithoutHttpOnly.go:166:2:166:8 | session |
+| CookieWithoutHttpOnly.go:159:2:159:8 | implicit dereference | CookieWithoutHttpOnly.go:158:2:158:8 | definition of session [pointer] |
+| CookieWithoutHttpOnly.go:159:2:159:8 | implicit dereference | CookieWithoutHttpOnly.go:158:2:158:8 | definition of session [pointer] |
+| CookieWithoutHttpOnly.go:159:2:159:8 | implicit dereference | CookieWithoutHttpOnly.go:159:2:159:8 | implicit dereference |
+| CookieWithoutHttpOnly.go:159:2:159:8 | implicit dereference | CookieWithoutHttpOnly.go:159:2:159:8 | implicit dereference |
+| CookieWithoutHttpOnly.go:159:2:159:8 | implicit dereference | CookieWithoutHttpOnly.go:161:2:161:8 | implicit dereference |
+| CookieWithoutHttpOnly.go:159:2:159:8 | implicit dereference | CookieWithoutHttpOnly.go:161:2:161:8 | implicit dereference |
+| CookieWithoutHttpOnly.go:159:2:159:8 | implicit dereference | CookieWithoutHttpOnly.go:166:2:166:8 | session |
+| CookieWithoutHttpOnly.go:159:2:159:8 | implicit dereference | CookieWithoutHttpOnly.go:166:2:166:8 | session |
+| CookieWithoutHttpOnly.go:159:2:159:8 | session [pointer] | CookieWithoutHttpOnly.go:159:2:159:8 | implicit dereference |
+| CookieWithoutHttpOnly.go:159:2:159:8 | session [pointer] | CookieWithoutHttpOnly.go:159:2:159:8 | implicit dereference |
+| CookieWithoutHttpOnly.go:161:2:161:8 | implicit dereference | CookieWithoutHttpOnly.go:158:2:158:8 | definition of session [pointer] |
+| CookieWithoutHttpOnly.go:161:2:161:8 | implicit dereference | CookieWithoutHttpOnly.go:158:2:158:8 | definition of session [pointer] |
+| CookieWithoutHttpOnly.go:161:2:161:8 | implicit dereference | CookieWithoutHttpOnly.go:159:2:159:8 | implicit dereference |
+| CookieWithoutHttpOnly.go:161:2:161:8 | implicit dereference | CookieWithoutHttpOnly.go:159:2:159:8 | implicit dereference |
+| CookieWithoutHttpOnly.go:161:2:161:8 | implicit dereference | CookieWithoutHttpOnly.go:161:2:161:8 | implicit dereference |
+| CookieWithoutHttpOnly.go:161:2:161:8 | implicit dereference | CookieWithoutHttpOnly.go:161:2:161:8 | implicit dereference |
+| CookieWithoutHttpOnly.go:161:2:161:8 | implicit dereference | CookieWithoutHttpOnly.go:166:2:166:8 | session |
+| CookieWithoutHttpOnly.go:161:2:161:8 | implicit dereference | CookieWithoutHttpOnly.go:166:2:166:8 | session |
+| CookieWithoutHttpOnly.go:161:2:161:8 | session [pointer] | CookieWithoutHttpOnly.go:161:2:161:8 | implicit dereference |
+| CookieWithoutHttpOnly.go:161:2:161:8 | session [pointer] | CookieWithoutHttpOnly.go:161:2:161:8 | implicit dereference |
+| CookieWithoutHttpOnly.go:161:21:164:2 | struct literal | CookieWithoutHttpOnly.go:159:2:159:8 | implicit dereference |
+| CookieWithoutHttpOnly.go:161:21:164:2 | struct literal | CookieWithoutHttpOnly.go:161:2:161:8 | implicit dereference |
+| CookieWithoutHttpOnly.go:161:21:164:2 | struct literal | CookieWithoutHttpOnly.go:166:2:166:8 | session |
+| CookieWithoutHttpOnly.go:163:13:163:20 | httpOnly | CookieWithoutHttpOnly.go:159:2:159:8 | implicit dereference |
+| CookieWithoutHttpOnly.go:163:13:163:20 | httpOnly | CookieWithoutHttpOnly.go:161:2:161:8 | implicit dereference |
+| CookieWithoutHttpOnly.go:163:13:163:20 | httpOnly | CookieWithoutHttpOnly.go:166:2:166:8 | session |
+| CookieWithoutHttpOnly.go:169:56:169:63 | argument corresponding to httpOnly | CookieWithoutHttpOnly.go:171:2:171:8 | implicit dereference |
+| CookieWithoutHttpOnly.go:169:56:169:63 | argument corresponding to httpOnly | CookieWithoutHttpOnly.go:173:2:173:8 | implicit dereference |
+| CookieWithoutHttpOnly.go:169:56:169:63 | argument corresponding to httpOnly | CookieWithoutHttpOnly.go:178:2:178:8 | session |
+| CookieWithoutHttpOnly.go:169:56:169:63 | definition of httpOnly | CookieWithoutHttpOnly.go:171:2:171:8 | implicit dereference |
+| CookieWithoutHttpOnly.go:169:56:169:63 | definition of httpOnly | CookieWithoutHttpOnly.go:173:2:173:8 | implicit dereference |
+| CookieWithoutHttpOnly.go:169:56:169:63 | definition of httpOnly | CookieWithoutHttpOnly.go:178:2:178:8 | session |
+| CookieWithoutHttpOnly.go:170:2:170:8 | definition of session [pointer] | CookieWithoutHttpOnly.go:171:2:171:8 | session [pointer] |
+| CookieWithoutHttpOnly.go:170:2:170:8 | definition of session [pointer] | CookieWithoutHttpOnly.go:171:2:171:8 | session [pointer] |
+| CookieWithoutHttpOnly.go:170:2:170:8 | definition of session [pointer] | CookieWithoutHttpOnly.go:173:2:173:8 | session [pointer] |
+| CookieWithoutHttpOnly.go:170:2:170:8 | definition of session [pointer] | CookieWithoutHttpOnly.go:173:2:173:8 | session [pointer] |
+| CookieWithoutHttpOnly.go:170:2:170:8 | definition of session [pointer] | CookieWithoutHttpOnly.go:178:2:178:8 | session |
+| CookieWithoutHttpOnly.go:170:2:170:8 | definition of session [pointer] | CookieWithoutHttpOnly.go:178:2:178:8 | session |
+| CookieWithoutHttpOnly.go:170:16:170:20 | store | CookieWithoutHttpOnly.go:178:2:178:8 | session |
+| CookieWithoutHttpOnly.go:171:2:171:8 | implicit dereference | CookieWithoutHttpOnly.go:170:2:170:8 | definition of session [pointer] |
+| CookieWithoutHttpOnly.go:171:2:171:8 | implicit dereference | CookieWithoutHttpOnly.go:170:2:170:8 | definition of session [pointer] |
+| CookieWithoutHttpOnly.go:171:2:171:8 | implicit dereference | CookieWithoutHttpOnly.go:171:2:171:8 | implicit dereference |
+| CookieWithoutHttpOnly.go:171:2:171:8 | implicit dereference | CookieWithoutHttpOnly.go:171:2:171:8 | implicit dereference |
+| CookieWithoutHttpOnly.go:171:2:171:8 | implicit dereference | CookieWithoutHttpOnly.go:173:2:173:8 | implicit dereference |
+| CookieWithoutHttpOnly.go:171:2:171:8 | implicit dereference | CookieWithoutHttpOnly.go:173:2:173:8 | implicit dereference |
+| CookieWithoutHttpOnly.go:171:2:171:8 | implicit dereference | CookieWithoutHttpOnly.go:178:2:178:8 | session |
+| CookieWithoutHttpOnly.go:171:2:171:8 | implicit dereference | CookieWithoutHttpOnly.go:178:2:178:8 | session |
+| CookieWithoutHttpOnly.go:171:2:171:8 | session [pointer] | CookieWithoutHttpOnly.go:171:2:171:8 | implicit dereference |
+| CookieWithoutHttpOnly.go:171:2:171:8 | session [pointer] | CookieWithoutHttpOnly.go:171:2:171:8 | implicit dereference |
+| CookieWithoutHttpOnly.go:173:2:173:8 | implicit dereference | CookieWithoutHttpOnly.go:170:2:170:8 | definition of session [pointer] |
+| CookieWithoutHttpOnly.go:173:2:173:8 | implicit dereference | CookieWithoutHttpOnly.go:170:2:170:8 | definition of session [pointer] |
+| CookieWithoutHttpOnly.go:173:2:173:8 | implicit dereference | CookieWithoutHttpOnly.go:171:2:171:8 | implicit dereference |
+| CookieWithoutHttpOnly.go:173:2:173:8 | implicit dereference | CookieWithoutHttpOnly.go:171:2:171:8 | implicit dereference |
+| CookieWithoutHttpOnly.go:173:2:173:8 | implicit dereference | CookieWithoutHttpOnly.go:173:2:173:8 | implicit dereference |
+| CookieWithoutHttpOnly.go:173:2:173:8 | implicit dereference | CookieWithoutHttpOnly.go:173:2:173:8 | implicit dereference |
+| CookieWithoutHttpOnly.go:173:2:173:8 | implicit dereference | CookieWithoutHttpOnly.go:178:2:178:8 | session |
+| CookieWithoutHttpOnly.go:173:2:173:8 | implicit dereference | CookieWithoutHttpOnly.go:178:2:178:8 | session |
+| CookieWithoutHttpOnly.go:173:2:173:8 | session [pointer] | CookieWithoutHttpOnly.go:173:2:173:8 | implicit dereference |
+| CookieWithoutHttpOnly.go:173:2:173:8 | session [pointer] | CookieWithoutHttpOnly.go:173:2:173:8 | implicit dereference |
+| CookieWithoutHttpOnly.go:173:21:176:2 | struct literal | CookieWithoutHttpOnly.go:171:2:171:8 | implicit dereference |
+| CookieWithoutHttpOnly.go:173:21:176:2 | struct literal | CookieWithoutHttpOnly.go:173:2:173:8 | implicit dereference |
+| CookieWithoutHttpOnly.go:173:21:176:2 | struct literal | CookieWithoutHttpOnly.go:178:2:178:8 | session |
+| CookieWithoutHttpOnly.go:175:13:175:20 | httpOnly | CookieWithoutHttpOnly.go:171:2:171:8 | implicit dereference |
+| CookieWithoutHttpOnly.go:175:13:175:20 | httpOnly | CookieWithoutHttpOnly.go:173:2:173:8 | implicit dereference |
+| CookieWithoutHttpOnly.go:175:13:175:20 | httpOnly | CookieWithoutHttpOnly.go:178:2:178:8 | session |
+| CookieWithoutHttpOnly.go:183:16:183:20 | store | CookieWithoutHttpOnly.go:191:19:191:25 | session |
+| CookieWithoutHttpOnly.go:195:16:195:20 | store | CookieWithoutHttpOnly.go:202:19:202:25 | session |
 nodes
-| CookieWithoutHttpOnly.go:12:10:12:18 | "session" : string | semmle.label | "session" : string |
+| CookieWithoutHttpOnly.go:12:10:12:18 | "session" | semmle.label | "session" |
 | CookieWithoutHttpOnly.go:15:20:15:21 | &... | semmle.label | &... |
-| CookieWithoutHttpOnly.go:15:20:15:21 | &... : pointer type | semmle.label | &... : pointer type |
-| CookieWithoutHttpOnly.go:15:20:15:21 | &... [pointer] : Cookie | semmle.label | &... [pointer] : Cookie |
-| CookieWithoutHttpOnly.go:15:21:15:21 | c : Cookie | semmle.label | c : Cookie |
-| CookieWithoutHttpOnly.go:20:13:20:21 | "session" : string | semmle.label | "session" : string |
-| CookieWithoutHttpOnly.go:22:13:22:17 | false : bool | semmle.label | false : bool |
+| CookieWithoutHttpOnly.go:15:20:15:21 | &... | semmle.label | &... |
+| CookieWithoutHttpOnly.go:15:20:15:21 | &... [pointer] | semmle.label | &... [pointer] |
+| CookieWithoutHttpOnly.go:15:21:15:21 | c | semmle.label | c |
+| CookieWithoutHttpOnly.go:20:13:20:21 | "session" | semmle.label | "session" |
+| CookieWithoutHttpOnly.go:22:13:22:17 | false | semmle.label | false |
 | CookieWithoutHttpOnly.go:24:20:24:21 | &... | semmle.label | &... |
 | CookieWithoutHttpOnly.go:24:20:24:21 | &... | semmle.label | &... |
-| CookieWithoutHttpOnly.go:24:20:24:21 | &... : pointer type | semmle.label | &... : pointer type |
-| CookieWithoutHttpOnly.go:24:20:24:21 | &... : pointer type | semmle.label | &... : pointer type |
-| CookieWithoutHttpOnly.go:24:20:24:21 | &... [pointer] : Cookie | semmle.label | &... [pointer] : Cookie |
-| CookieWithoutHttpOnly.go:24:20:24:21 | &... [pointer] : Cookie | semmle.label | &... [pointer] : Cookie |
-| CookieWithoutHttpOnly.go:24:21:24:21 | c : Cookie | semmle.label | c : Cookie |
-| CookieWithoutHttpOnly.go:24:21:24:21 | c : Cookie | semmle.label | c : Cookie |
-| CookieWithoutHttpOnly.go:29:13:29:21 | "session" : string | semmle.label | "session" : string |
-| CookieWithoutHttpOnly.go:31:13:31:16 | true : bool | semmle.label | true : bool |
+| CookieWithoutHttpOnly.go:24:20:24:21 | &... | semmle.label | &... |
+| CookieWithoutHttpOnly.go:24:20:24:21 | &... | semmle.label | &... |
+| CookieWithoutHttpOnly.go:24:20:24:21 | &... [pointer] | semmle.label | &... [pointer] |
+| CookieWithoutHttpOnly.go:24:20:24:21 | &... [pointer] | semmle.label | &... [pointer] |
+| CookieWithoutHttpOnly.go:24:21:24:21 | c | semmle.label | c |
+| CookieWithoutHttpOnly.go:24:21:24:21 | c | semmle.label | c |
+| CookieWithoutHttpOnly.go:29:13:29:21 | "session" | semmle.label | "session" |
+| CookieWithoutHttpOnly.go:31:13:31:16 | true | semmle.label | true |
 | CookieWithoutHttpOnly.go:33:20:33:21 | &... | semmle.label | &... |
 | CookieWithoutHttpOnly.go:33:20:33:21 | &... | semmle.label | &... |
-| CookieWithoutHttpOnly.go:33:20:33:21 | &... : pointer type | semmle.label | &... : pointer type |
-| CookieWithoutHttpOnly.go:33:20:33:21 | &... : pointer type | semmle.label | &... : pointer type |
-| CookieWithoutHttpOnly.go:33:20:33:21 | &... [pointer] : Cookie | semmle.label | &... [pointer] : Cookie |
-| CookieWithoutHttpOnly.go:33:20:33:21 | &... [pointer] : Cookie | semmle.label | &... [pointer] : Cookie |
-| CookieWithoutHttpOnly.go:33:21:33:21 | c : Cookie | semmle.label | c : Cookie |
-| CookieWithoutHttpOnly.go:33:21:33:21 | c : Cookie | semmle.label | c : Cookie |
-| CookieWithoutHttpOnly.go:38:10:38:18 | "session" : string | semmle.label | "session" : string |
-| CookieWithoutHttpOnly.go:41:15:41:18 | true : bool | semmle.label | true : bool |
+| CookieWithoutHttpOnly.go:33:20:33:21 | &... | semmle.label | &... |
+| CookieWithoutHttpOnly.go:33:20:33:21 | &... | semmle.label | &... |
+| CookieWithoutHttpOnly.go:33:20:33:21 | &... [pointer] | semmle.label | &... [pointer] |
+| CookieWithoutHttpOnly.go:33:20:33:21 | &... [pointer] | semmle.label | &... [pointer] |
+| CookieWithoutHttpOnly.go:33:21:33:21 | c | semmle.label | c |
+| CookieWithoutHttpOnly.go:33:21:33:21 | c | semmle.label | c |
+| CookieWithoutHttpOnly.go:38:10:38:18 | "session" | semmle.label | "session" |
+| CookieWithoutHttpOnly.go:41:15:41:18 | true | semmle.label | true |
 | CookieWithoutHttpOnly.go:42:20:42:21 | &... | semmle.label | &... |
 | CookieWithoutHttpOnly.go:42:20:42:21 | &... | semmle.label | &... |
-| CookieWithoutHttpOnly.go:42:20:42:21 | &... : pointer type | semmle.label | &... : pointer type |
-| CookieWithoutHttpOnly.go:42:20:42:21 | &... : pointer type | semmle.label | &... : pointer type |
-| CookieWithoutHttpOnly.go:42:20:42:21 | &... [pointer] : Cookie | semmle.label | &... [pointer] : Cookie |
-| CookieWithoutHttpOnly.go:42:20:42:21 | &... [pointer] : Cookie | semmle.label | &... [pointer] : Cookie |
-| CookieWithoutHttpOnly.go:42:21:42:21 | c : Cookie | semmle.label | c : Cookie |
-| CookieWithoutHttpOnly.go:42:21:42:21 | c : Cookie | semmle.label | c : Cookie |
-| CookieWithoutHttpOnly.go:47:10:47:18 | "session" : string | semmle.label | "session" : string |
-| CookieWithoutHttpOnly.go:50:15:50:19 | false : bool | semmle.label | false : bool |
+| CookieWithoutHttpOnly.go:42:20:42:21 | &... | semmle.label | &... |
+| CookieWithoutHttpOnly.go:42:20:42:21 | &... | semmle.label | &... |
+| CookieWithoutHttpOnly.go:42:20:42:21 | &... [pointer] | semmle.label | &... [pointer] |
+| CookieWithoutHttpOnly.go:42:20:42:21 | &... [pointer] | semmle.label | &... [pointer] |
+| CookieWithoutHttpOnly.go:42:21:42:21 | c | semmle.label | c |
+| CookieWithoutHttpOnly.go:42:21:42:21 | c | semmle.label | c |
+| CookieWithoutHttpOnly.go:47:10:47:18 | "session" | semmle.label | "session" |
+| CookieWithoutHttpOnly.go:50:15:50:19 | false | semmle.label | false |
 | CookieWithoutHttpOnly.go:51:20:51:21 | &... | semmle.label | &... |
 | CookieWithoutHttpOnly.go:51:20:51:21 | &... | semmle.label | &... |
-| CookieWithoutHttpOnly.go:51:20:51:21 | &... : pointer type | semmle.label | &... : pointer type |
-| CookieWithoutHttpOnly.go:51:20:51:21 | &... : pointer type | semmle.label | &... : pointer type |
-| CookieWithoutHttpOnly.go:51:20:51:21 | &... [pointer] : Cookie | semmle.label | &... [pointer] : Cookie |
-| CookieWithoutHttpOnly.go:51:20:51:21 | &... [pointer] : Cookie | semmle.label | &... [pointer] : Cookie |
-| CookieWithoutHttpOnly.go:51:21:51:21 | c : Cookie | semmle.label | c : Cookie |
-| CookieWithoutHttpOnly.go:51:21:51:21 | c : Cookie | semmle.label | c : Cookie |
-| CookieWithoutHttpOnly.go:55:2:55:4 | definition of val : bool | semmle.label | definition of val : bool |
-| CookieWithoutHttpOnly.go:55:9:55:13 | false : bool | semmle.label | false : bool |
-| CookieWithoutHttpOnly.go:57:13:57:21 | "session" : string | semmle.label | "session" : string |
-| CookieWithoutHttpOnly.go:59:13:59:15 | val : bool | semmle.label | val : bool |
+| CookieWithoutHttpOnly.go:51:20:51:21 | &... | semmle.label | &... |
+| CookieWithoutHttpOnly.go:51:20:51:21 | &... | semmle.label | &... |
+| CookieWithoutHttpOnly.go:51:20:51:21 | &... [pointer] | semmle.label | &... [pointer] |
+| CookieWithoutHttpOnly.go:51:20:51:21 | &... [pointer] | semmle.label | &... [pointer] |
+| CookieWithoutHttpOnly.go:51:21:51:21 | c | semmle.label | c |
+| CookieWithoutHttpOnly.go:51:21:51:21 | c | semmle.label | c |
+| CookieWithoutHttpOnly.go:55:2:55:4 | definition of val | semmle.label | definition of val |
+| CookieWithoutHttpOnly.go:55:9:55:13 | false | semmle.label | false |
+| CookieWithoutHttpOnly.go:57:13:57:21 | "session" | semmle.label | "session" |
+| CookieWithoutHttpOnly.go:59:13:59:15 | val | semmle.label | val |
 | CookieWithoutHttpOnly.go:61:20:61:21 | &... | semmle.label | &... |
 | CookieWithoutHttpOnly.go:61:20:61:21 | &... | semmle.label | &... |
-| CookieWithoutHttpOnly.go:61:20:61:21 | &... : pointer type | semmle.label | &... : pointer type |
-| CookieWithoutHttpOnly.go:61:20:61:21 | &... : pointer type | semmle.label | &... : pointer type |
-| CookieWithoutHttpOnly.go:61:20:61:21 | &... [pointer] : Cookie | semmle.label | &... [pointer] : Cookie |
-| CookieWithoutHttpOnly.go:61:20:61:21 | &... [pointer] : Cookie | semmle.label | &... [pointer] : Cookie |
-| CookieWithoutHttpOnly.go:61:21:61:21 | c : Cookie | semmle.label | c : Cookie |
-| CookieWithoutHttpOnly.go:61:21:61:21 | c : Cookie | semmle.label | c : Cookie |
-| CookieWithoutHttpOnly.go:65:2:65:4 | definition of val : bool | semmle.label | definition of val : bool |
-| CookieWithoutHttpOnly.go:65:9:65:12 | true : bool | semmle.label | true : bool |
-| CookieWithoutHttpOnly.go:67:13:67:21 | "session" : string | semmle.label | "session" : string |
-| CookieWithoutHttpOnly.go:69:13:69:15 | val : bool | semmle.label | val : bool |
+| CookieWithoutHttpOnly.go:61:20:61:21 | &... | semmle.label | &... |
+| CookieWithoutHttpOnly.go:61:20:61:21 | &... | semmle.label | &... |
+| CookieWithoutHttpOnly.go:61:20:61:21 | &... [pointer] | semmle.label | &... [pointer] |
+| CookieWithoutHttpOnly.go:61:20:61:21 | &... [pointer] | semmle.label | &... [pointer] |
+| CookieWithoutHttpOnly.go:61:21:61:21 | c | semmle.label | c |
+| CookieWithoutHttpOnly.go:61:21:61:21 | c | semmle.label | c |
+| CookieWithoutHttpOnly.go:65:2:65:4 | definition of val | semmle.label | definition of val |
+| CookieWithoutHttpOnly.go:65:9:65:12 | true | semmle.label | true |
+| CookieWithoutHttpOnly.go:67:13:67:21 | "session" | semmle.label | "session" |
+| CookieWithoutHttpOnly.go:69:13:69:15 | val | semmle.label | val |
 | CookieWithoutHttpOnly.go:71:20:71:21 | &... | semmle.label | &... |
 | CookieWithoutHttpOnly.go:71:20:71:21 | &... | semmle.label | &... |
-| CookieWithoutHttpOnly.go:71:20:71:21 | &... : pointer type | semmle.label | &... : pointer type |
-| CookieWithoutHttpOnly.go:71:20:71:21 | &... : pointer type | semmle.label | &... : pointer type |
-| CookieWithoutHttpOnly.go:71:20:71:21 | &... [pointer] : Cookie | semmle.label | &... [pointer] : Cookie |
-| CookieWithoutHttpOnly.go:71:20:71:21 | &... [pointer] : Cookie | semmle.label | &... [pointer] : Cookie |
-| CookieWithoutHttpOnly.go:71:21:71:21 | c : Cookie | semmle.label | c : Cookie |
-| CookieWithoutHttpOnly.go:71:21:71:21 | c : Cookie | semmle.label | c : Cookie |
-| CookieWithoutHttpOnly.go:75:2:75:4 | definition of val : bool | semmle.label | definition of val : bool |
-| CookieWithoutHttpOnly.go:75:9:75:12 | true : bool | semmle.label | true : bool |
-| CookieWithoutHttpOnly.go:77:10:77:18 | "session" : string | semmle.label | "session" : string |
-| CookieWithoutHttpOnly.go:80:15:80:17 | val : bool | semmle.label | val : bool |
+| CookieWithoutHttpOnly.go:71:20:71:21 | &... | semmle.label | &... |
+| CookieWithoutHttpOnly.go:71:20:71:21 | &... | semmle.label | &... |
+| CookieWithoutHttpOnly.go:71:20:71:21 | &... [pointer] | semmle.label | &... [pointer] |
+| CookieWithoutHttpOnly.go:71:20:71:21 | &... [pointer] | semmle.label | &... [pointer] |
+| CookieWithoutHttpOnly.go:71:21:71:21 | c | semmle.label | c |
+| CookieWithoutHttpOnly.go:71:21:71:21 | c | semmle.label | c |
+| CookieWithoutHttpOnly.go:75:2:75:4 | definition of val | semmle.label | definition of val |
+| CookieWithoutHttpOnly.go:75:9:75:12 | true | semmle.label | true |
+| CookieWithoutHttpOnly.go:77:10:77:18 | "session" | semmle.label | "session" |
+| CookieWithoutHttpOnly.go:80:15:80:17 | val | semmle.label | val |
 | CookieWithoutHttpOnly.go:81:20:81:21 | &... | semmle.label | &... |
 | CookieWithoutHttpOnly.go:81:20:81:21 | &... | semmle.label | &... |
-| CookieWithoutHttpOnly.go:81:20:81:21 | &... : pointer type | semmle.label | &... : pointer type |
-| CookieWithoutHttpOnly.go:81:20:81:21 | &... : pointer type | semmle.label | &... : pointer type |
-| CookieWithoutHttpOnly.go:81:20:81:21 | &... [pointer] : Cookie | semmle.label | &... [pointer] : Cookie |
-| CookieWithoutHttpOnly.go:81:20:81:21 | &... [pointer] : Cookie | semmle.label | &... [pointer] : Cookie |
-| CookieWithoutHttpOnly.go:81:21:81:21 | c : Cookie | semmle.label | c : Cookie |
-| CookieWithoutHttpOnly.go:81:21:81:21 | c : Cookie | semmle.label | c : Cookie |
-| CookieWithoutHttpOnly.go:85:2:85:4 | definition of val : bool | semmle.label | definition of val : bool |
-| CookieWithoutHttpOnly.go:85:9:85:13 | false : bool | semmle.label | false : bool |
-| CookieWithoutHttpOnly.go:87:10:87:18 | "session" : string | semmle.label | "session" : string |
-| CookieWithoutHttpOnly.go:90:15:90:17 | val : bool | semmle.label | val : bool |
+| CookieWithoutHttpOnly.go:81:20:81:21 | &... | semmle.label | &... |
+| CookieWithoutHttpOnly.go:81:20:81:21 | &... | semmle.label | &... |
+| CookieWithoutHttpOnly.go:81:20:81:21 | &... [pointer] | semmle.label | &... [pointer] |
+| CookieWithoutHttpOnly.go:81:20:81:21 | &... [pointer] | semmle.label | &... [pointer] |
+| CookieWithoutHttpOnly.go:81:21:81:21 | c | semmle.label | c |
+| CookieWithoutHttpOnly.go:81:21:81:21 | c | semmle.label | c |
+| CookieWithoutHttpOnly.go:85:2:85:4 | definition of val | semmle.label | definition of val |
+| CookieWithoutHttpOnly.go:85:9:85:13 | false | semmle.label | false |
+| CookieWithoutHttpOnly.go:87:10:87:18 | "session" | semmle.label | "session" |
+| CookieWithoutHttpOnly.go:90:15:90:17 | val | semmle.label | val |
 | CookieWithoutHttpOnly.go:91:20:91:21 | &... | semmle.label | &... |
 | CookieWithoutHttpOnly.go:91:20:91:21 | &... | semmle.label | &... |
-| CookieWithoutHttpOnly.go:91:20:91:21 | &... : pointer type | semmle.label | &... : pointer type |
-| CookieWithoutHttpOnly.go:91:20:91:21 | &... : pointer type | semmle.label | &... : pointer type |
-| CookieWithoutHttpOnly.go:91:20:91:21 | &... [pointer] : Cookie | semmle.label | &... [pointer] : Cookie |
-| CookieWithoutHttpOnly.go:91:20:91:21 | &... [pointer] : Cookie | semmle.label | &... [pointer] : Cookie |
-| CookieWithoutHttpOnly.go:91:21:91:21 | c : Cookie | semmle.label | c : Cookie |
-| CookieWithoutHttpOnly.go:91:21:91:21 | c : Cookie | semmle.label | c : Cookie |
-| CookieWithoutHttpOnly.go:99:15:99:19 | false : bool | semmle.label | false : bool |
+| CookieWithoutHttpOnly.go:91:20:91:21 | &... | semmle.label | &... |
+| CookieWithoutHttpOnly.go:91:20:91:21 | &... | semmle.label | &... |
+| CookieWithoutHttpOnly.go:91:20:91:21 | &... [pointer] | semmle.label | &... [pointer] |
+| CookieWithoutHttpOnly.go:91:20:91:21 | &... [pointer] | semmle.label | &... [pointer] |
+| CookieWithoutHttpOnly.go:91:21:91:21 | c | semmle.label | c |
+| CookieWithoutHttpOnly.go:91:21:91:21 | c | semmle.label | c |
+| CookieWithoutHttpOnly.go:99:15:99:19 | false | semmle.label | false |
 | CookieWithoutHttpOnly.go:100:20:100:21 | &... | semmle.label | &... |
-| CookieWithoutHttpOnly.go:100:20:100:21 | &... : pointer type | semmle.label | &... : pointer type |
-| CookieWithoutHttpOnly.go:100:20:100:21 | &... [pointer] : Cookie | semmle.label | &... [pointer] : Cookie |
-| CookieWithoutHttpOnly.go:100:21:100:21 | c : Cookie | semmle.label | c : Cookie |
-| CookieWithoutHttpOnly.go:104:10:104:18 | "session" : string | semmle.label | "session" : string |
-| CookieWithoutHttpOnly.go:109:15:109:19 | false : bool | semmle.label | false : bool |
+| CookieWithoutHttpOnly.go:100:20:100:21 | &... | semmle.label | &... |
+| CookieWithoutHttpOnly.go:100:20:100:21 | &... [pointer] | semmle.label | &... [pointer] |
+| CookieWithoutHttpOnly.go:100:21:100:21 | c | semmle.label | c |
+| CookieWithoutHttpOnly.go:104:10:104:18 | "session" | semmle.label | "session" |
+| CookieWithoutHttpOnly.go:109:15:109:19 | false | semmle.label | false |
 | CookieWithoutHttpOnly.go:110:20:110:21 | &... | semmle.label | &... |
 | CookieWithoutHttpOnly.go:110:20:110:21 | &... | semmle.label | &... |
-| CookieWithoutHttpOnly.go:110:20:110:21 | &... : pointer type | semmle.label | &... : pointer type |
-| CookieWithoutHttpOnly.go:110:20:110:21 | &... : pointer type | semmle.label | &... : pointer type |
-| CookieWithoutHttpOnly.go:110:20:110:21 | &... [pointer] : Cookie | semmle.label | &... [pointer] : Cookie |
-| CookieWithoutHttpOnly.go:110:20:110:21 | &... [pointer] : Cookie | semmle.label | &... [pointer] : Cookie |
-| CookieWithoutHttpOnly.go:110:21:110:21 | c : Cookie | semmle.label | c : Cookie |
-| CookieWithoutHttpOnly.go:110:21:110:21 | c : Cookie | semmle.label | c : Cookie |
-| CookieWithoutHttpOnly.go:114:13:114:24 | "login_name" : string | semmle.label | "login_name" : string |
-| CookieWithoutHttpOnly.go:116:10:116:16 | session : string | semmle.label | session : string |
-| CookieWithoutHttpOnly.go:119:15:119:19 | false : bool | semmle.label | false : bool |
+| CookieWithoutHttpOnly.go:110:20:110:21 | &... | semmle.label | &... |
+| CookieWithoutHttpOnly.go:110:20:110:21 | &... | semmle.label | &... |
+| CookieWithoutHttpOnly.go:110:20:110:21 | &... [pointer] | semmle.label | &... [pointer] |
+| CookieWithoutHttpOnly.go:110:20:110:21 | &... [pointer] | semmle.label | &... [pointer] |
+| CookieWithoutHttpOnly.go:110:21:110:21 | c | semmle.label | c |
+| CookieWithoutHttpOnly.go:110:21:110:21 | c | semmle.label | c |
+| CookieWithoutHttpOnly.go:114:13:114:24 | "login_name" | semmle.label | "login_name" |
+| CookieWithoutHttpOnly.go:116:10:116:16 | session | semmle.label | session |
+| CookieWithoutHttpOnly.go:119:15:119:19 | false | semmle.label | false |
 | CookieWithoutHttpOnly.go:120:20:120:21 | &... | semmle.label | &... |
 | CookieWithoutHttpOnly.go:120:20:120:21 | &... | semmle.label | &... |
-| CookieWithoutHttpOnly.go:120:20:120:21 | &... : pointer type | semmle.label | &... : pointer type |
-| CookieWithoutHttpOnly.go:120:20:120:21 | &... : pointer type | semmle.label | &... : pointer type |
-| CookieWithoutHttpOnly.go:120:20:120:21 | &... [pointer] : Cookie | semmle.label | &... [pointer] : Cookie |
-| CookieWithoutHttpOnly.go:120:20:120:21 | &... [pointer] : Cookie | semmle.label | &... [pointer] : Cookie |
-| CookieWithoutHttpOnly.go:120:21:120:21 | c : Cookie | semmle.label | c : Cookie |
-| CookieWithoutHttpOnly.go:120:21:120:21 | c : Cookie | semmle.label | c : Cookie |
-| CookieWithoutHttpOnly.go:123:13:123:49 | call to NewCookieStore : pointer type | semmle.label | call to NewCookieStore : pointer type |
-| CookieWithoutHttpOnly.go:126:16:126:20 | store : pointer type | semmle.label | store : pointer type |
+| CookieWithoutHttpOnly.go:120:20:120:21 | &... | semmle.label | &... |
+| CookieWithoutHttpOnly.go:120:20:120:21 | &... | semmle.label | &... |
+| CookieWithoutHttpOnly.go:120:20:120:21 | &... [pointer] | semmle.label | &... [pointer] |
+| CookieWithoutHttpOnly.go:120:20:120:21 | &... [pointer] | semmle.label | &... [pointer] |
+| CookieWithoutHttpOnly.go:120:21:120:21 | c | semmle.label | c |
+| CookieWithoutHttpOnly.go:120:21:120:21 | c | semmle.label | c |
+| CookieWithoutHttpOnly.go:123:13:123:49 | call to NewCookieStore | semmle.label | call to NewCookieStore |
+| CookieWithoutHttpOnly.go:126:16:126:20 | store | semmle.label | store |
 | CookieWithoutHttpOnly.go:129:2:129:8 | session | semmle.label | session |
-| CookieWithoutHttpOnly.go:133:2:133:9 | definition of httpOnly : bool | semmle.label | definition of httpOnly : bool |
-| CookieWithoutHttpOnly.go:133:14:133:18 | false : bool | semmle.label | false : bool |
-| CookieWithoutHttpOnly.go:134:2:134:8 | definition of session [pointer] : Session | semmle.label | definition of session [pointer] : Session |
-| CookieWithoutHttpOnly.go:134:2:134:8 | definition of session [pointer] : Session | semmle.label | definition of session [pointer] : Session |
-| CookieWithoutHttpOnly.go:134:16:134:20 | store : pointer type | semmle.label | store : pointer type |
-| CookieWithoutHttpOnly.go:135:2:135:8 | implicit dereference : Session | semmle.label | implicit dereference : Session |
-| CookieWithoutHttpOnly.go:135:2:135:8 | implicit dereference : Session | semmle.label | implicit dereference : Session |
-| CookieWithoutHttpOnly.go:135:2:135:8 | session [pointer] : Session | semmle.label | session [pointer] : Session |
-| CookieWithoutHttpOnly.go:135:2:135:8 | session [pointer] : Session | semmle.label | session [pointer] : Session |
-| CookieWithoutHttpOnly.go:137:2:137:8 | implicit dereference : Session | semmle.label | implicit dereference : Session |
-| CookieWithoutHttpOnly.go:137:2:137:8 | implicit dereference : Session | semmle.label | implicit dereference : Session |
-| CookieWithoutHttpOnly.go:137:2:137:8 | session [pointer] : Session | semmle.label | session [pointer] : Session |
-| CookieWithoutHttpOnly.go:137:2:137:8 | session [pointer] : Session | semmle.label | session [pointer] : Session |
-| CookieWithoutHttpOnly.go:137:21:140:2 | struct literal : Options | semmle.label | struct literal : Options |
-| CookieWithoutHttpOnly.go:139:13:139:20 | httpOnly : bool | semmle.label | httpOnly : bool |
+| CookieWithoutHttpOnly.go:133:2:133:9 | definition of httpOnly | semmle.label | definition of httpOnly |
+| CookieWithoutHttpOnly.go:133:14:133:18 | false | semmle.label | false |
+| CookieWithoutHttpOnly.go:134:2:134:8 | definition of session [pointer] | semmle.label | definition of session [pointer] |
+| CookieWithoutHttpOnly.go:134:2:134:8 | definition of session [pointer] | semmle.label | definition of session [pointer] |
+| CookieWithoutHttpOnly.go:134:16:134:20 | store | semmle.label | store |
+| CookieWithoutHttpOnly.go:135:2:135:8 | implicit dereference | semmle.label | implicit dereference |
+| CookieWithoutHttpOnly.go:135:2:135:8 | implicit dereference | semmle.label | implicit dereference |
+| CookieWithoutHttpOnly.go:135:2:135:8 | session [pointer] | semmle.label | session [pointer] |
+| CookieWithoutHttpOnly.go:135:2:135:8 | session [pointer] | semmle.label | session [pointer] |
+| CookieWithoutHttpOnly.go:137:2:137:8 | implicit dereference | semmle.label | implicit dereference |
+| CookieWithoutHttpOnly.go:137:2:137:8 | implicit dereference | semmle.label | implicit dereference |
+| CookieWithoutHttpOnly.go:137:2:137:8 | session [pointer] | semmle.label | session [pointer] |
+| CookieWithoutHttpOnly.go:137:2:137:8 | session [pointer] | semmle.label | session [pointer] |
+| CookieWithoutHttpOnly.go:137:21:140:2 | struct literal | semmle.label | struct literal |
+| CookieWithoutHttpOnly.go:139:13:139:20 | httpOnly | semmle.label | httpOnly |
 | CookieWithoutHttpOnly.go:142:2:142:8 | session | semmle.label | session |
 | CookieWithoutHttpOnly.go:142:2:142:8 | session | semmle.label | session |
 | CookieWithoutHttpOnly.go:142:2:142:8 | session | semmle.label | session |
-| CookieWithoutHttpOnly.go:146:2:146:8 | definition of session [pointer] : Session | semmle.label | definition of session [pointer] : Session |
-| CookieWithoutHttpOnly.go:146:16:146:20 | store : pointer type | semmle.label | store : pointer type |
-| CookieWithoutHttpOnly.go:147:2:147:8 | implicit dereference : Session | semmle.label | implicit dereference : Session |
-| CookieWithoutHttpOnly.go:147:2:147:8 | session [pointer] : Session | semmle.label | session [pointer] : Session |
-| CookieWithoutHttpOnly.go:149:2:149:8 | implicit dereference : Session | semmle.label | implicit dereference : Session |
-| CookieWithoutHttpOnly.go:149:2:149:8 | session [pointer] : Session | semmle.label | session [pointer] : Session |
-| CookieWithoutHttpOnly.go:149:21:151:2 | struct literal : Options | semmle.label | struct literal : Options |
+| CookieWithoutHttpOnly.go:146:2:146:8 | definition of session [pointer] | semmle.label | definition of session [pointer] |
+| CookieWithoutHttpOnly.go:146:16:146:20 | store | semmle.label | store |
+| CookieWithoutHttpOnly.go:147:2:147:8 | implicit dereference | semmle.label | implicit dereference |
+| CookieWithoutHttpOnly.go:147:2:147:8 | session [pointer] | semmle.label | session [pointer] |
+| CookieWithoutHttpOnly.go:149:2:149:8 | implicit dereference | semmle.label | implicit dereference |
+| CookieWithoutHttpOnly.go:149:2:149:8 | session [pointer] | semmle.label | session [pointer] |
+| CookieWithoutHttpOnly.go:149:21:151:2 | struct literal | semmle.label | struct literal |
 | CookieWithoutHttpOnly.go:153:2:153:8 | session | semmle.label | session |
 | CookieWithoutHttpOnly.go:153:2:153:8 | session | semmle.label | session |
-| CookieWithoutHttpOnly.go:157:2:157:9 | definition of httpOnly : bool | semmle.label | definition of httpOnly : bool |
-| CookieWithoutHttpOnly.go:157:14:157:17 | true : bool | semmle.label | true : bool |
-| CookieWithoutHttpOnly.go:158:2:158:8 | definition of session [pointer] : Session | semmle.label | definition of session [pointer] : Session |
-| CookieWithoutHttpOnly.go:158:2:158:8 | definition of session [pointer] : Session | semmle.label | definition of session [pointer] : Session |
-| CookieWithoutHttpOnly.go:158:16:158:20 | store : pointer type | semmle.label | store : pointer type |
-| CookieWithoutHttpOnly.go:159:2:159:8 | implicit dereference : Session | semmle.label | implicit dereference : Session |
-| CookieWithoutHttpOnly.go:159:2:159:8 | implicit dereference : Session | semmle.label | implicit dereference : Session |
-| CookieWithoutHttpOnly.go:159:2:159:8 | session [pointer] : Session | semmle.label | session [pointer] : Session |
-| CookieWithoutHttpOnly.go:159:2:159:8 | session [pointer] : Session | semmle.label | session [pointer] : Session |
-| CookieWithoutHttpOnly.go:161:2:161:8 | implicit dereference : Session | semmle.label | implicit dereference : Session |
-| CookieWithoutHttpOnly.go:161:2:161:8 | implicit dereference : Session | semmle.label | implicit dereference : Session |
-| CookieWithoutHttpOnly.go:161:2:161:8 | session [pointer] : Session | semmle.label | session [pointer] : Session |
-| CookieWithoutHttpOnly.go:161:2:161:8 | session [pointer] : Session | semmle.label | session [pointer] : Session |
-| CookieWithoutHttpOnly.go:161:21:164:2 | struct literal : Options | semmle.label | struct literal : Options |
-| CookieWithoutHttpOnly.go:163:13:163:20 | httpOnly : bool | semmle.label | httpOnly : bool |
+| CookieWithoutHttpOnly.go:157:2:157:9 | definition of httpOnly | semmle.label | definition of httpOnly |
+| CookieWithoutHttpOnly.go:157:14:157:17 | true | semmle.label | true |
+| CookieWithoutHttpOnly.go:158:2:158:8 | definition of session [pointer] | semmle.label | definition of session [pointer] |
+| CookieWithoutHttpOnly.go:158:2:158:8 | definition of session [pointer] | semmle.label | definition of session [pointer] |
+| CookieWithoutHttpOnly.go:158:16:158:20 | store | semmle.label | store |
+| CookieWithoutHttpOnly.go:159:2:159:8 | implicit dereference | semmle.label | implicit dereference |
+| CookieWithoutHttpOnly.go:159:2:159:8 | implicit dereference | semmle.label | implicit dereference |
+| CookieWithoutHttpOnly.go:159:2:159:8 | session [pointer] | semmle.label | session [pointer] |
+| CookieWithoutHttpOnly.go:159:2:159:8 | session [pointer] | semmle.label | session [pointer] |
+| CookieWithoutHttpOnly.go:161:2:161:8 | implicit dereference | semmle.label | implicit dereference |
+| CookieWithoutHttpOnly.go:161:2:161:8 | implicit dereference | semmle.label | implicit dereference |
+| CookieWithoutHttpOnly.go:161:2:161:8 | session [pointer] | semmle.label | session [pointer] |
+| CookieWithoutHttpOnly.go:161:2:161:8 | session [pointer] | semmle.label | session [pointer] |
+| CookieWithoutHttpOnly.go:161:21:164:2 | struct literal | semmle.label | struct literal |
+| CookieWithoutHttpOnly.go:163:13:163:20 | httpOnly | semmle.label | httpOnly |
 | CookieWithoutHttpOnly.go:166:2:166:8 | session | semmle.label | session |
 | CookieWithoutHttpOnly.go:166:2:166:8 | session | semmle.label | session |
 | CookieWithoutHttpOnly.go:166:2:166:8 | session | semmle.label | session |
-| CookieWithoutHttpOnly.go:169:56:169:63 | argument corresponding to httpOnly : bool | semmle.label | argument corresponding to httpOnly : bool |
-| CookieWithoutHttpOnly.go:169:56:169:63 | definition of httpOnly : bool | semmle.label | definition of httpOnly : bool |
-| CookieWithoutHttpOnly.go:170:2:170:8 | definition of session [pointer] : Session | semmle.label | definition of session [pointer] : Session |
-| CookieWithoutHttpOnly.go:170:2:170:8 | definition of session [pointer] : Session | semmle.label | definition of session [pointer] : Session |
-| CookieWithoutHttpOnly.go:170:16:170:20 | store : pointer type | semmle.label | store : pointer type |
-| CookieWithoutHttpOnly.go:171:2:171:8 | implicit dereference : Session | semmle.label | implicit dereference : Session |
-| CookieWithoutHttpOnly.go:171:2:171:8 | implicit dereference : Session | semmle.label | implicit dereference : Session |
-| CookieWithoutHttpOnly.go:171:2:171:8 | session [pointer] : Session | semmle.label | session [pointer] : Session |
-| CookieWithoutHttpOnly.go:171:2:171:8 | session [pointer] : Session | semmle.label | session [pointer] : Session |
-| CookieWithoutHttpOnly.go:173:2:173:8 | implicit dereference : Session | semmle.label | implicit dereference : Session |
-| CookieWithoutHttpOnly.go:173:2:173:8 | implicit dereference : Session | semmle.label | implicit dereference : Session |
-| CookieWithoutHttpOnly.go:173:2:173:8 | session [pointer] : Session | semmle.label | session [pointer] : Session |
-| CookieWithoutHttpOnly.go:173:2:173:8 | session [pointer] : Session | semmle.label | session [pointer] : Session |
-| CookieWithoutHttpOnly.go:173:21:176:2 | struct literal : Options | semmle.label | struct literal : Options |
-| CookieWithoutHttpOnly.go:175:13:175:20 | httpOnly : bool | semmle.label | httpOnly : bool |
+| CookieWithoutHttpOnly.go:169:56:169:63 | argument corresponding to httpOnly | semmle.label | argument corresponding to httpOnly |
+| CookieWithoutHttpOnly.go:169:56:169:63 | definition of httpOnly | semmle.label | definition of httpOnly |
+| CookieWithoutHttpOnly.go:170:2:170:8 | definition of session [pointer] | semmle.label | definition of session [pointer] |
+| CookieWithoutHttpOnly.go:170:2:170:8 | definition of session [pointer] | semmle.label | definition of session [pointer] |
+| CookieWithoutHttpOnly.go:170:16:170:20 | store | semmle.label | store |
+| CookieWithoutHttpOnly.go:171:2:171:8 | implicit dereference | semmle.label | implicit dereference |
+| CookieWithoutHttpOnly.go:171:2:171:8 | implicit dereference | semmle.label | implicit dereference |
+| CookieWithoutHttpOnly.go:171:2:171:8 | session [pointer] | semmle.label | session [pointer] |
+| CookieWithoutHttpOnly.go:171:2:171:8 | session [pointer] | semmle.label | session [pointer] |
+| CookieWithoutHttpOnly.go:173:2:173:8 | implicit dereference | semmle.label | implicit dereference |
+| CookieWithoutHttpOnly.go:173:2:173:8 | implicit dereference | semmle.label | implicit dereference |
+| CookieWithoutHttpOnly.go:173:2:173:8 | session [pointer] | semmle.label | session [pointer] |
+| CookieWithoutHttpOnly.go:173:2:173:8 | session [pointer] | semmle.label | session [pointer] |
+| CookieWithoutHttpOnly.go:173:21:176:2 | struct literal | semmle.label | struct literal |
+| CookieWithoutHttpOnly.go:175:13:175:20 | httpOnly | semmle.label | httpOnly |
 | CookieWithoutHttpOnly.go:178:2:178:8 | session | semmle.label | session |
 | CookieWithoutHttpOnly.go:178:2:178:8 | session | semmle.label | session |
 | CookieWithoutHttpOnly.go:178:2:178:8 | session | semmle.label | session |
-| CookieWithoutHttpOnly.go:183:16:183:20 | store : pointer type | semmle.label | store : pointer type |
+| CookieWithoutHttpOnly.go:183:16:183:20 | store | semmle.label | store |
 | CookieWithoutHttpOnly.go:191:19:191:25 | session | semmle.label | session |
-| CookieWithoutHttpOnly.go:195:16:195:20 | store : pointer type | semmle.label | store : pointer type |
+| CookieWithoutHttpOnly.go:195:16:195:20 | store | semmle.label | store |
 | CookieWithoutHttpOnly.go:202:19:202:25 | session | semmle.label | session |
 | CookieWithoutHttpOnly.go:214:66:214:70 | false | semmle.label | false |
 subpaths
 #select
-| CookieWithoutHttpOnly.go:15:20:15:21 | &... | CookieWithoutHttpOnly.go:12:10:12:18 | "session" : string | CookieWithoutHttpOnly.go:15:20:15:21 | &... | Cookie attribute 'HttpOnly' is not set to true. |
-| CookieWithoutHttpOnly.go:24:20:24:21 | &... | CookieWithoutHttpOnly.go:22:13:22:17 | false : bool | CookieWithoutHttpOnly.go:24:20:24:21 | &... | Cookie attribute 'HttpOnly' is not set to true. |
-| CookieWithoutHttpOnly.go:51:20:51:21 | &... | CookieWithoutHttpOnly.go:50:15:50:19 | false : bool | CookieWithoutHttpOnly.go:51:20:51:21 | &... | Cookie attribute 'HttpOnly' is not set to true. |
-| CookieWithoutHttpOnly.go:61:20:61:21 | &... | CookieWithoutHttpOnly.go:55:9:55:13 | false : bool | CookieWithoutHttpOnly.go:61:20:61:21 | &... | Cookie attribute 'HttpOnly' is not set to true. |
-| CookieWithoutHttpOnly.go:91:20:91:21 | &... | CookieWithoutHttpOnly.go:85:9:85:13 | false : bool | CookieWithoutHttpOnly.go:91:20:91:21 | &... | Cookie attribute 'HttpOnly' is not set to true. |
-| CookieWithoutHttpOnly.go:110:20:110:21 | &... | CookieWithoutHttpOnly.go:109:15:109:19 | false : bool | CookieWithoutHttpOnly.go:110:20:110:21 | &... | Cookie attribute 'HttpOnly' is not set to true. |
-| CookieWithoutHttpOnly.go:120:20:120:21 | &... | CookieWithoutHttpOnly.go:119:15:119:19 | false : bool | CookieWithoutHttpOnly.go:120:20:120:21 | &... | Cookie attribute 'HttpOnly' is not set to true. |
-| CookieWithoutHttpOnly.go:129:2:129:8 | session | CookieWithoutHttpOnly.go:123:13:123:49 | call to NewCookieStore : pointer type | CookieWithoutHttpOnly.go:129:2:129:8 | session | Cookie attribute 'HttpOnly' is not set to true. |
-| CookieWithoutHttpOnly.go:142:2:142:8 | session | CookieWithoutHttpOnly.go:133:14:133:18 | false : bool | CookieWithoutHttpOnly.go:142:2:142:8 | session | Cookie attribute 'HttpOnly' is not set to true. |
-| CookieWithoutHttpOnly.go:153:2:153:8 | session | CookieWithoutHttpOnly.go:149:21:151:2 | struct literal : Options | CookieWithoutHttpOnly.go:153:2:153:8 | session | Cookie attribute 'HttpOnly' is not set to true. |
-| CookieWithoutHttpOnly.go:191:19:191:25 | session | CookieWithoutHttpOnly.go:123:13:123:49 | call to NewCookieStore : pointer type | CookieWithoutHttpOnly.go:191:19:191:25 | session | Cookie attribute 'HttpOnly' is not set to true. |
-| CookieWithoutHttpOnly.go:202:19:202:25 | session | CookieWithoutHttpOnly.go:123:13:123:49 | call to NewCookieStore : pointer type | CookieWithoutHttpOnly.go:202:19:202:25 | session | Cookie attribute 'HttpOnly' is not set to true. |
+| CookieWithoutHttpOnly.go:15:20:15:21 | &... | CookieWithoutHttpOnly.go:12:10:12:18 | "session" | CookieWithoutHttpOnly.go:15:20:15:21 | &... | Cookie attribute 'HttpOnly' is not set to true. |
+| CookieWithoutHttpOnly.go:24:20:24:21 | &... | CookieWithoutHttpOnly.go:22:13:22:17 | false | CookieWithoutHttpOnly.go:24:20:24:21 | &... | Cookie attribute 'HttpOnly' is not set to true. |
+| CookieWithoutHttpOnly.go:51:20:51:21 | &... | CookieWithoutHttpOnly.go:50:15:50:19 | false | CookieWithoutHttpOnly.go:51:20:51:21 | &... | Cookie attribute 'HttpOnly' is not set to true. |
+| CookieWithoutHttpOnly.go:61:20:61:21 | &... | CookieWithoutHttpOnly.go:55:9:55:13 | false | CookieWithoutHttpOnly.go:61:20:61:21 | &... | Cookie attribute 'HttpOnly' is not set to true. |
+| CookieWithoutHttpOnly.go:91:20:91:21 | &... | CookieWithoutHttpOnly.go:85:9:85:13 | false | CookieWithoutHttpOnly.go:91:20:91:21 | &... | Cookie attribute 'HttpOnly' is not set to true. |
+| CookieWithoutHttpOnly.go:110:20:110:21 | &... | CookieWithoutHttpOnly.go:109:15:109:19 | false | CookieWithoutHttpOnly.go:110:20:110:21 | &... | Cookie attribute 'HttpOnly' is not set to true. |
+| CookieWithoutHttpOnly.go:120:20:120:21 | &... | CookieWithoutHttpOnly.go:119:15:119:19 | false | CookieWithoutHttpOnly.go:120:20:120:21 | &... | Cookie attribute 'HttpOnly' is not set to true. |
+| CookieWithoutHttpOnly.go:129:2:129:8 | session | CookieWithoutHttpOnly.go:123:13:123:49 | call to NewCookieStore | CookieWithoutHttpOnly.go:129:2:129:8 | session | Cookie attribute 'HttpOnly' is not set to true. |
+| CookieWithoutHttpOnly.go:142:2:142:8 | session | CookieWithoutHttpOnly.go:133:14:133:18 | false | CookieWithoutHttpOnly.go:142:2:142:8 | session | Cookie attribute 'HttpOnly' is not set to true. |
+| CookieWithoutHttpOnly.go:153:2:153:8 | session | CookieWithoutHttpOnly.go:149:21:151:2 | struct literal | CookieWithoutHttpOnly.go:153:2:153:8 | session | Cookie attribute 'HttpOnly' is not set to true. |
+| CookieWithoutHttpOnly.go:191:19:191:25 | session | CookieWithoutHttpOnly.go:123:13:123:49 | call to NewCookieStore | CookieWithoutHttpOnly.go:191:19:191:25 | session | Cookie attribute 'HttpOnly' is not set to true. |
+| CookieWithoutHttpOnly.go:202:19:202:25 | session | CookieWithoutHttpOnly.go:123:13:123:49 | call to NewCookieStore | CookieWithoutHttpOnly.go:202:19:202:25 | session | Cookie attribute 'HttpOnly' is not set to true. |
 | CookieWithoutHttpOnly.go:214:66:214:70 | false | CookieWithoutHttpOnly.go:214:66:214:70 | false | CookieWithoutHttpOnly.go:214:66:214:70 | false | Cookie attribute 'HttpOnly' is not set to true. |
diff --git a/go/ql/test/experimental/CWE-321/HardcodedKeys.expected b/go/ql/test/experimental/CWE-321/HardcodedKeys.expected
index 23b79ccb2a9..fe0fb2d238d 100644
--- a/go/ql/test/experimental/CWE-321/HardcodedKeys.expected
+++ b/go/ql/test/experimental/CWE-321/HardcodedKeys.expected
@@ -1,74 +1,74 @@
 edges
-| HardcodedKeysBad.go:11:18:11:38 | type conversion : string | HardcodedKeysBad.go:19:28:19:39 | mySigningKey |
-| HardcodedKeysBad.go:11:25:11:37 | "AllYourBase" : string | HardcodedKeysBad.go:11:18:11:38 | type conversion : string |
-| main.go:25:18:25:31 | type conversion : string | main.go:34:28:34:39 | mySigningKey |
-| main.go:25:25:25:30 | "key1" : string | main.go:25:18:25:31 | type conversion : string |
-| main.go:42:23:42:28 | "key2" : string | main.go:42:16:42:29 | type conversion |
-| main.go:60:9:60:22 | type conversion : string | main.go:61:44:61:46 | key |
-| main.go:60:16:60:21 | `key3` : string | main.go:60:9:60:22 | type conversion : string |
-| main.go:65:9:65:22 | type conversion : string | main.go:66:66:66:68 | key |
-| main.go:65:16:65:21 | "key4" : string | main.go:65:9:65:22 | type conversion : string |
-| main.go:69:10:69:23 | type conversion : string | main.go:74:15:74:18 | key2 |
-| main.go:69:17:69:22 | "key5" : string | main.go:69:10:69:23 | type conversion : string |
-| main.go:80:9:80:22 | type conversion : string | main.go:84:41:84:43 | key |
-| main.go:80:16:80:21 | "key6" : string | main.go:80:9:80:22 | type conversion : string |
-| main.go:89:10:89:23 | type conversion : string | main.go:91:66:91:69 | key2 |
-| main.go:89:17:89:22 | "key7" : string | main.go:89:10:89:23 | type conversion : string |
-| main.go:97:9:97:22 | type conversion : string | main.go:102:30:102:32 | key |
-| main.go:97:16:97:21 | "key8" : string | main.go:97:9:97:22 | type conversion : string |
-| main.go:106:15:106:28 | type conversion : string | main.go:107:16:107:24 | sharedKey |
-| main.go:106:22:106:27 | "key9" : string | main.go:106:15:106:28 | type conversion : string |
-| main.go:110:23:110:37 | type conversion : string | main.go:113:16:113:30 | sharedKeyglobal |
-| main.go:110:30:110:36 | "key10" : string | main.go:110:23:110:37 | type conversion : string |
-| sanitizer.go:17:9:17:21 | type conversion : string | sanitizer.go:18:44:18:46 | key |
-| sanitizer.go:17:16:17:20 | `key` : string | sanitizer.go:17:9:17:21 | type conversion : string |
+| HardcodedKeysBad.go:11:18:11:38 | type conversion | HardcodedKeysBad.go:19:28:19:39 | mySigningKey |
+| HardcodedKeysBad.go:11:25:11:37 | "AllYourBase" | HardcodedKeysBad.go:11:18:11:38 | type conversion |
+| main.go:25:18:25:31 | type conversion | main.go:34:28:34:39 | mySigningKey |
+| main.go:25:25:25:30 | "key1" | main.go:25:18:25:31 | type conversion |
+| main.go:42:23:42:28 | "key2" | main.go:42:16:42:29 | type conversion |
+| main.go:60:9:60:22 | type conversion | main.go:61:44:61:46 | key |
+| main.go:60:16:60:21 | `key3` | main.go:60:9:60:22 | type conversion |
+| main.go:65:9:65:22 | type conversion | main.go:66:66:66:68 | key |
+| main.go:65:16:65:21 | "key4" | main.go:65:9:65:22 | type conversion |
+| main.go:69:10:69:23 | type conversion | main.go:74:15:74:18 | key2 |
+| main.go:69:17:69:22 | "key5" | main.go:69:10:69:23 | type conversion |
+| main.go:80:9:80:22 | type conversion | main.go:84:41:84:43 | key |
+| main.go:80:16:80:21 | "key6" | main.go:80:9:80:22 | type conversion |
+| main.go:89:10:89:23 | type conversion | main.go:91:66:91:69 | key2 |
+| main.go:89:17:89:22 | "key7" | main.go:89:10:89:23 | type conversion |
+| main.go:97:9:97:22 | type conversion | main.go:102:30:102:32 | key |
+| main.go:97:16:97:21 | "key8" | main.go:97:9:97:22 | type conversion |
+| main.go:106:15:106:28 | type conversion | main.go:107:16:107:24 | sharedKey |
+| main.go:106:22:106:27 | "key9" | main.go:106:15:106:28 | type conversion |
+| main.go:110:23:110:37 | type conversion | main.go:113:16:113:30 | sharedKeyglobal |
+| main.go:110:30:110:36 | "key10" | main.go:110:23:110:37 | type conversion |
+| sanitizer.go:17:9:17:21 | type conversion | sanitizer.go:18:44:18:46 | key |
+| sanitizer.go:17:16:17:20 | `key` | sanitizer.go:17:9:17:21 | type conversion |
 nodes
-| HardcodedKeysBad.go:11:18:11:38 | type conversion : string | semmle.label | type conversion : string |
-| HardcodedKeysBad.go:11:25:11:37 | "AllYourBase" : string | semmle.label | "AllYourBase" : string |
+| HardcodedKeysBad.go:11:18:11:38 | type conversion | semmle.label | type conversion |
+| HardcodedKeysBad.go:11:25:11:37 | "AllYourBase" | semmle.label | "AllYourBase" |
 | HardcodedKeysBad.go:19:28:19:39 | mySigningKey | semmle.label | mySigningKey |
-| main.go:25:18:25:31 | type conversion : string | semmle.label | type conversion : string |
-| main.go:25:25:25:30 | "key1" : string | semmle.label | "key1" : string |
+| main.go:25:18:25:31 | type conversion | semmle.label | type conversion |
+| main.go:25:25:25:30 | "key1" | semmle.label | "key1" |
 | main.go:34:28:34:39 | mySigningKey | semmle.label | mySigningKey |
 | main.go:42:16:42:29 | type conversion | semmle.label | type conversion |
-| main.go:42:23:42:28 | "key2" : string | semmle.label | "key2" : string |
-| main.go:60:9:60:22 | type conversion : string | semmle.label | type conversion : string |
-| main.go:60:16:60:21 | `key3` : string | semmle.label | `key3` : string |
+| main.go:42:23:42:28 | "key2" | semmle.label | "key2" |
+| main.go:60:9:60:22 | type conversion | semmle.label | type conversion |
+| main.go:60:16:60:21 | `key3` | semmle.label | `key3` |
 | main.go:61:44:61:46 | key | semmle.label | key |
-| main.go:65:9:65:22 | type conversion : string | semmle.label | type conversion : string |
-| main.go:65:16:65:21 | "key4" : string | semmle.label | "key4" : string |
+| main.go:65:9:65:22 | type conversion | semmle.label | type conversion |
+| main.go:65:16:65:21 | "key4" | semmle.label | "key4" |
 | main.go:66:66:66:68 | key | semmle.label | key |
-| main.go:69:10:69:23 | type conversion : string | semmle.label | type conversion : string |
-| main.go:69:17:69:22 | "key5" : string | semmle.label | "key5" : string |
+| main.go:69:10:69:23 | type conversion | semmle.label | type conversion |
+| main.go:69:17:69:22 | "key5" | semmle.label | "key5" |
 | main.go:74:15:74:18 | key2 | semmle.label | key2 |
-| main.go:80:9:80:22 | type conversion : string | semmle.label | type conversion : string |
-| main.go:80:16:80:21 | "key6" : string | semmle.label | "key6" : string |
+| main.go:80:9:80:22 | type conversion | semmle.label | type conversion |
+| main.go:80:16:80:21 | "key6" | semmle.label | "key6" |
 | main.go:84:41:84:43 | key | semmle.label | key |
-| main.go:89:10:89:23 | type conversion : string | semmle.label | type conversion : string |
-| main.go:89:17:89:22 | "key7" : string | semmle.label | "key7" : string |
+| main.go:89:10:89:23 | type conversion | semmle.label | type conversion |
+| main.go:89:17:89:22 | "key7" | semmle.label | "key7" |
 | main.go:91:66:91:69 | key2 | semmle.label | key2 |
-| main.go:97:9:97:22 | type conversion : string | semmle.label | type conversion : string |
-| main.go:97:16:97:21 | "key8" : string | semmle.label | "key8" : string |
+| main.go:97:9:97:22 | type conversion | semmle.label | type conversion |
+| main.go:97:16:97:21 | "key8" | semmle.label | "key8" |
 | main.go:102:30:102:32 | key | semmle.label | key |
-| main.go:106:15:106:28 | type conversion : string | semmle.label | type conversion : string |
-| main.go:106:22:106:27 | "key9" : string | semmle.label | "key9" : string |
+| main.go:106:15:106:28 | type conversion | semmle.label | type conversion |
+| main.go:106:22:106:27 | "key9" | semmle.label | "key9" |
 | main.go:107:16:107:24 | sharedKey | semmle.label | sharedKey |
-| main.go:110:23:110:37 | type conversion : string | semmle.label | type conversion : string |
-| main.go:110:30:110:36 | "key10" : string | semmle.label | "key10" : string |
+| main.go:110:23:110:37 | type conversion | semmle.label | type conversion |
+| main.go:110:30:110:36 | "key10" | semmle.label | "key10" |
 | main.go:113:16:113:30 | sharedKeyglobal | semmle.label | sharedKeyglobal |
-| sanitizer.go:17:9:17:21 | type conversion : string | semmle.label | type conversion : string |
-| sanitizer.go:17:16:17:20 | `key` : string | semmle.label | `key` : string |
+| sanitizer.go:17:9:17:21 | type conversion | semmle.label | type conversion |
+| sanitizer.go:17:16:17:20 | `key` | semmle.label | `key` |
 | sanitizer.go:18:44:18:46 | key | semmle.label | key |
 subpaths
 #select
-| HardcodedKeysBad.go:19:28:19:39 | mySigningKey | HardcodedKeysBad.go:11:25:11:37 | "AllYourBase" : string | HardcodedKeysBad.go:19:28:19:39 | mySigningKey | $@ is used to sign a JWT token. | HardcodedKeysBad.go:11:25:11:37 | "AllYourBase" | Hardcoded String |
-| main.go:34:28:34:39 | mySigningKey | main.go:25:25:25:30 | "key1" : string | main.go:34:28:34:39 | mySigningKey | $@ is used to sign a JWT token. | main.go:25:25:25:30 | "key1" | Hardcoded String |
-| main.go:42:16:42:29 | type conversion | main.go:42:23:42:28 | "key2" : string | main.go:42:16:42:29 | type conversion | $@ is used to sign a JWT token. | main.go:42:23:42:28 | "key2" | Hardcoded String |
-| main.go:61:44:61:46 | key | main.go:60:16:60:21 | `key3` : string | main.go:61:44:61:46 | key | $@ is used to sign a JWT token. | main.go:60:16:60:21 | `key3` | Hardcoded String |
-| main.go:66:66:66:68 | key | main.go:65:16:65:21 | "key4" : string | main.go:66:66:66:68 | key | $@ is used to sign a JWT token. | main.go:65:16:65:21 | "key4" | Hardcoded String |
-| main.go:74:15:74:18 | key2 | main.go:69:17:69:22 | "key5" : string | main.go:74:15:74:18 | key2 | $@ is used to sign a JWT token. | main.go:69:17:69:22 | "key5" | Hardcoded String |
-| main.go:84:41:84:43 | key | main.go:80:16:80:21 | "key6" : string | main.go:84:41:84:43 | key | $@ is used to sign a JWT token. | main.go:80:16:80:21 | "key6" | Hardcoded String |
-| main.go:91:66:91:69 | key2 | main.go:89:17:89:22 | "key7" : string | main.go:91:66:91:69 | key2 | $@ is used to sign a JWT token. | main.go:89:17:89:22 | "key7" | Hardcoded String |
-| main.go:102:30:102:32 | key | main.go:97:16:97:21 | "key8" : string | main.go:102:30:102:32 | key | $@ is used to sign a JWT token. | main.go:97:16:97:21 | "key8" | Hardcoded String |
-| main.go:107:16:107:24 | sharedKey | main.go:106:22:106:27 | "key9" : string | main.go:107:16:107:24 | sharedKey | $@ is used to sign a JWT token. | main.go:106:22:106:27 | "key9" | Hardcoded String |
-| main.go:113:16:113:30 | sharedKeyglobal | main.go:110:30:110:36 | "key10" : string | main.go:113:16:113:30 | sharedKeyglobal | $@ is used to sign a JWT token. | main.go:110:30:110:36 | "key10" | Hardcoded String |
-| sanitizer.go:18:44:18:46 | key | sanitizer.go:17:16:17:20 | `key` : string | sanitizer.go:18:44:18:46 | key | $@ is used to sign a JWT token. | sanitizer.go:17:16:17:20 | `key` | Hardcoded String |
+| HardcodedKeysBad.go:19:28:19:39 | mySigningKey | HardcodedKeysBad.go:11:25:11:37 | "AllYourBase" | HardcodedKeysBad.go:19:28:19:39 | mySigningKey | $@ is used to sign a JWT token. | HardcodedKeysBad.go:11:25:11:37 | "AllYourBase" | Hardcoded String |
+| main.go:34:28:34:39 | mySigningKey | main.go:25:25:25:30 | "key1" | main.go:34:28:34:39 | mySigningKey | $@ is used to sign a JWT token. | main.go:25:25:25:30 | "key1" | Hardcoded String |
+| main.go:42:16:42:29 | type conversion | main.go:42:23:42:28 | "key2" | main.go:42:16:42:29 | type conversion | $@ is used to sign a JWT token. | main.go:42:23:42:28 | "key2" | Hardcoded String |
+| main.go:61:44:61:46 | key | main.go:60:16:60:21 | `key3` | main.go:61:44:61:46 | key | $@ is used to sign a JWT token. | main.go:60:16:60:21 | `key3` | Hardcoded String |
+| main.go:66:66:66:68 | key | main.go:65:16:65:21 | "key4" | main.go:66:66:66:68 | key | $@ is used to sign a JWT token. | main.go:65:16:65:21 | "key4" | Hardcoded String |
+| main.go:74:15:74:18 | key2 | main.go:69:17:69:22 | "key5" | main.go:74:15:74:18 | key2 | $@ is used to sign a JWT token. | main.go:69:17:69:22 | "key5" | Hardcoded String |
+| main.go:84:41:84:43 | key | main.go:80:16:80:21 | "key6" | main.go:84:41:84:43 | key | $@ is used to sign a JWT token. | main.go:80:16:80:21 | "key6" | Hardcoded String |
+| main.go:91:66:91:69 | key2 | main.go:89:17:89:22 | "key7" | main.go:91:66:91:69 | key2 | $@ is used to sign a JWT token. | main.go:89:17:89:22 | "key7" | Hardcoded String |
+| main.go:102:30:102:32 | key | main.go:97:16:97:21 | "key8" | main.go:102:30:102:32 | key | $@ is used to sign a JWT token. | main.go:97:16:97:21 | "key8" | Hardcoded String |
+| main.go:107:16:107:24 | sharedKey | main.go:106:22:106:27 | "key9" | main.go:107:16:107:24 | sharedKey | $@ is used to sign a JWT token. | main.go:106:22:106:27 | "key9" | Hardcoded String |
+| main.go:113:16:113:30 | sharedKeyglobal | main.go:110:30:110:36 | "key10" | main.go:113:16:113:30 | sharedKeyglobal | $@ is used to sign a JWT token. | main.go:110:30:110:36 | "key10" | Hardcoded String |
+| sanitizer.go:18:44:18:46 | key | sanitizer.go:17:16:17:20 | `key` | sanitizer.go:18:44:18:46 | key | $@ is used to sign a JWT token. | sanitizer.go:17:16:17:20 | `key` | Hardcoded String |
diff --git a/go/ql/test/experimental/CWE-369/DivideByZero.expected b/go/ql/test/experimental/CWE-369/DivideByZero.expected
index e80e3295c22..081dac5ec37 100644
--- a/go/ql/test/experimental/CWE-369/DivideByZero.expected
+++ b/go/ql/test/experimental/CWE-369/DivideByZero.expected
@@ -1,32 +1,32 @@
 edges
-| DivideByZero.go:10:12:10:16 | selection of URL : pointer type | DivideByZero.go:12:16:12:20 | value |
-| DivideByZero.go:17:12:17:16 | selection of URL : pointer type | DivideByZero.go:18:11:18:24 | type conversion : uint8 |
-| DivideByZero.go:18:11:18:24 | type conversion : uint8 | DivideByZero.go:19:16:19:20 | value |
-| DivideByZero.go:24:12:24:16 | selection of URL : pointer type | DivideByZero.go:26:16:26:20 | value |
-| DivideByZero.go:31:12:31:16 | selection of URL : pointer type | DivideByZero.go:33:16:33:20 | value |
-| DivideByZero.go:38:12:38:16 | selection of URL : pointer type | DivideByZero.go:40:16:40:20 | value |
-| DivideByZero.go:54:12:54:16 | selection of URL : pointer type | DivideByZero.go:55:11:55:24 | type conversion : uint8 |
-| DivideByZero.go:55:11:55:24 | type conversion : uint8 | DivideByZero.go:57:17:57:21 | value |
+| DivideByZero.go:10:12:10:16 | selection of URL | DivideByZero.go:12:16:12:20 | value |
+| DivideByZero.go:17:12:17:16 | selection of URL | DivideByZero.go:18:11:18:24 | type conversion |
+| DivideByZero.go:18:11:18:24 | type conversion | DivideByZero.go:19:16:19:20 | value |
+| DivideByZero.go:24:12:24:16 | selection of URL | DivideByZero.go:26:16:26:20 | value |
+| DivideByZero.go:31:12:31:16 | selection of URL | DivideByZero.go:33:16:33:20 | value |
+| DivideByZero.go:38:12:38:16 | selection of URL | DivideByZero.go:40:16:40:20 | value |
+| DivideByZero.go:54:12:54:16 | selection of URL | DivideByZero.go:55:11:55:24 | type conversion |
+| DivideByZero.go:55:11:55:24 | type conversion | DivideByZero.go:57:17:57:21 | value |
 nodes
-| DivideByZero.go:10:12:10:16 | selection of URL : pointer type | semmle.label | selection of URL : pointer type |
+| DivideByZero.go:10:12:10:16 | selection of URL | semmle.label | selection of URL |
 | DivideByZero.go:12:16:12:20 | value | semmle.label | value |
-| DivideByZero.go:17:12:17:16 | selection of URL : pointer type | semmle.label | selection of URL : pointer type |
-| DivideByZero.go:18:11:18:24 | type conversion : uint8 | semmle.label | type conversion : uint8 |
+| DivideByZero.go:17:12:17:16 | selection of URL | semmle.label | selection of URL |
+| DivideByZero.go:18:11:18:24 | type conversion | semmle.label | type conversion |
 | DivideByZero.go:19:16:19:20 | value | semmle.label | value |
-| DivideByZero.go:24:12:24:16 | selection of URL : pointer type | semmle.label | selection of URL : pointer type |
+| DivideByZero.go:24:12:24:16 | selection of URL | semmle.label | selection of URL |
 | DivideByZero.go:26:16:26:20 | value | semmle.label | value |
-| DivideByZero.go:31:12:31:16 | selection of URL : pointer type | semmle.label | selection of URL : pointer type |
+| DivideByZero.go:31:12:31:16 | selection of URL | semmle.label | selection of URL |
 | DivideByZero.go:33:16:33:20 | value | semmle.label | value |
-| DivideByZero.go:38:12:38:16 | selection of URL : pointer type | semmle.label | selection of URL : pointer type |
+| DivideByZero.go:38:12:38:16 | selection of URL | semmle.label | selection of URL |
 | DivideByZero.go:40:16:40:20 | value | semmle.label | value |
-| DivideByZero.go:54:12:54:16 | selection of URL : pointer type | semmle.label | selection of URL : pointer type |
-| DivideByZero.go:55:11:55:24 | type conversion : uint8 | semmle.label | type conversion : uint8 |
+| DivideByZero.go:54:12:54:16 | selection of URL | semmle.label | selection of URL |
+| DivideByZero.go:55:11:55:24 | type conversion | semmle.label | type conversion |
 | DivideByZero.go:57:17:57:21 | value | semmle.label | value |
 subpaths
 #select
-| DivideByZero.go:12:16:12:20 | value | DivideByZero.go:10:12:10:16 | selection of URL : pointer type | DivideByZero.go:12:16:12:20 | value | This variable might be zero leading to a division-by-zero panic. |
-| DivideByZero.go:19:16:19:20 | value | DivideByZero.go:17:12:17:16 | selection of URL : pointer type | DivideByZero.go:19:16:19:20 | value | This variable might be zero leading to a division-by-zero panic. |
-| DivideByZero.go:26:16:26:20 | value | DivideByZero.go:24:12:24:16 | selection of URL : pointer type | DivideByZero.go:26:16:26:20 | value | This variable might be zero leading to a division-by-zero panic. |
-| DivideByZero.go:33:16:33:20 | value | DivideByZero.go:31:12:31:16 | selection of URL : pointer type | DivideByZero.go:33:16:33:20 | value | This variable might be zero leading to a division-by-zero panic. |
-| DivideByZero.go:40:16:40:20 | value | DivideByZero.go:38:12:38:16 | selection of URL : pointer type | DivideByZero.go:40:16:40:20 | value | This variable might be zero leading to a division-by-zero panic. |
-| DivideByZero.go:57:17:57:21 | value | DivideByZero.go:54:12:54:16 | selection of URL : pointer type | DivideByZero.go:57:17:57:21 | value | This variable might be zero leading to a division-by-zero panic. |
+| DivideByZero.go:12:16:12:20 | value | DivideByZero.go:10:12:10:16 | selection of URL | DivideByZero.go:12:16:12:20 | value | This variable might be zero leading to a division-by-zero panic. |
+| DivideByZero.go:19:16:19:20 | value | DivideByZero.go:17:12:17:16 | selection of URL | DivideByZero.go:19:16:19:20 | value | This variable might be zero leading to a division-by-zero panic. |
+| DivideByZero.go:26:16:26:20 | value | DivideByZero.go:24:12:24:16 | selection of URL | DivideByZero.go:26:16:26:20 | value | This variable might be zero leading to a division-by-zero panic. |
+| DivideByZero.go:33:16:33:20 | value | DivideByZero.go:31:12:31:16 | selection of URL | DivideByZero.go:33:16:33:20 | value | This variable might be zero leading to a division-by-zero panic. |
+| DivideByZero.go:40:16:40:20 | value | DivideByZero.go:38:12:38:16 | selection of URL | DivideByZero.go:40:16:40:20 | value | This variable might be zero leading to a division-by-zero panic. |
+| DivideByZero.go:57:17:57:21 | value | DivideByZero.go:54:12:54:16 | selection of URL | DivideByZero.go:57:17:57:21 | value | This variable might be zero leading to a division-by-zero panic. |
diff --git a/go/ql/test/experimental/CWE-79/HTMLTemplateEscapingPassthrough.expected b/go/ql/test/experimental/CWE-79/HTMLTemplateEscapingPassthrough.expected
index ff2053dd942..77cd46d64e6 100644
--- a/go/ql/test/experimental/CWE-79/HTMLTemplateEscapingPassthrough.expected
+++ b/go/ql/test/experimental/CWE-79/HTMLTemplateEscapingPassthrough.expected
@@ -1,117 +1,117 @@
 edges
-| HTMLTemplateEscapingPassthrough.go:28:12:28:41 | type conversion : HTML | HTMLTemplateEscapingPassthrough.go:29:39:29:39 | a |
-| HTMLTemplateEscapingPassthrough.go:28:12:28:41 | type conversion : HTML | HTMLTemplateEscapingPassthrough.go:29:39:29:39 | a |
-| HTMLTemplateEscapingPassthrough.go:28:12:28:41 | type conversion : HTML | HTMLTemplateEscapingPassthrough.go:29:39:29:39 | a |
-| HTMLTemplateEscapingPassthrough.go:28:12:28:41 | type conversion : HTML | HTMLTemplateEscapingPassthrough.go:29:39:29:39 | a |
-| HTMLTemplateEscapingPassthrough.go:28:12:28:41 | type conversion : HTML | HTMLTemplateEscapingPassthrough.go:29:39:29:39 | a |
-| HTMLTemplateEscapingPassthrough.go:28:12:28:41 | type conversion : HTML | HTMLTemplateEscapingPassthrough.go:29:39:29:39 | a |
-| HTMLTemplateEscapingPassthrough.go:28:12:28:41 | type conversion : HTML | HTMLTemplateEscapingPassthrough.go:29:39:29:39 | a |
-| HTMLTemplateEscapingPassthrough.go:28:12:28:41 | type conversion : string | HTMLTemplateEscapingPassthrough.go:29:39:29:39 | a |
-| HTMLTemplateEscapingPassthrough.go:28:26:28:40 | call to UserAgent : string | HTMLTemplateEscapingPassthrough.go:28:12:28:41 | type conversion |
-| HTMLTemplateEscapingPassthrough.go:28:26:28:40 | call to UserAgent : string | HTMLTemplateEscapingPassthrough.go:28:12:28:41 | type conversion : string |
-| HTMLTemplateEscapingPassthrough.go:34:9:34:38 | type conversion : HTML | HTMLTemplateEscapingPassthrough.go:35:40:35:40 | a |
-| HTMLTemplateEscapingPassthrough.go:34:9:34:38 | type conversion : HTML | HTMLTemplateEscapingPassthrough.go:35:40:35:40 | a |
-| HTMLTemplateEscapingPassthrough.go:34:9:34:38 | type conversion : HTML | HTMLTemplateEscapingPassthrough.go:35:40:35:40 | a |
-| HTMLTemplateEscapingPassthrough.go:34:9:34:38 | type conversion : HTML | HTMLTemplateEscapingPassthrough.go:35:40:35:40 | a |
-| HTMLTemplateEscapingPassthrough.go:34:9:34:38 | type conversion : HTML | HTMLTemplateEscapingPassthrough.go:35:40:35:40 | a |
-| HTMLTemplateEscapingPassthrough.go:34:9:34:38 | type conversion : HTML | HTMLTemplateEscapingPassthrough.go:35:40:35:40 | a |
-| HTMLTemplateEscapingPassthrough.go:34:9:34:38 | type conversion : HTML | HTMLTemplateEscapingPassthrough.go:35:40:35:40 | a |
-| HTMLTemplateEscapingPassthrough.go:34:9:34:38 | type conversion : string | HTMLTemplateEscapingPassthrough.go:35:40:35:40 | a |
-| HTMLTemplateEscapingPassthrough.go:34:23:34:37 | call to UserAgent : string | HTMLTemplateEscapingPassthrough.go:34:9:34:38 | type conversion |
-| HTMLTemplateEscapingPassthrough.go:34:23:34:37 | call to UserAgent : string | HTMLTemplateEscapingPassthrough.go:34:9:34:38 | type conversion : string |
-| HTMLTemplateEscapingPassthrough.go:39:9:39:34 | type conversion : HTML | HTMLTemplateEscapingPassthrough.go:40:40:40:40 | a |
-| HTMLTemplateEscapingPassthrough.go:39:9:39:34 | type conversion : HTML | HTMLTemplateEscapingPassthrough.go:40:40:40:40 | a |
-| HTMLTemplateEscapingPassthrough.go:39:9:39:34 | type conversion : HTML | HTMLTemplateEscapingPassthrough.go:40:40:40:40 | a |
-| HTMLTemplateEscapingPassthrough.go:39:9:39:34 | type conversion : HTML | HTMLTemplateEscapingPassthrough.go:40:40:40:40 | a |
-| HTMLTemplateEscapingPassthrough.go:39:9:39:34 | type conversion : HTML | HTMLTemplateEscapingPassthrough.go:40:40:40:40 | a |
-| HTMLTemplateEscapingPassthrough.go:39:9:39:34 | type conversion : HTML | HTMLTemplateEscapingPassthrough.go:40:40:40:40 | a |
-| HTMLTemplateEscapingPassthrough.go:39:9:39:34 | type conversion : HTML | HTMLTemplateEscapingPassthrough.go:40:40:40:40 | a |
-| HTMLTemplateEscapingPassthrough.go:39:9:39:34 | type conversion : string | HTMLTemplateEscapingPassthrough.go:40:40:40:40 | a |
-| HTMLTemplateEscapingPassthrough.go:39:19:39:33 | call to UserAgent : string | HTMLTemplateEscapingPassthrough.go:39:9:39:34 | type conversion |
-| HTMLTemplateEscapingPassthrough.go:39:19:39:33 | call to UserAgent : string | HTMLTemplateEscapingPassthrough.go:39:9:39:34 | type conversion : string |
-| HTMLTemplateEscapingPassthrough.go:45:11:45:44 | type conversion : HTMLAttr | HTMLTemplateEscapingPassthrough.go:46:41:46:41 | c |
-| HTMLTemplateEscapingPassthrough.go:45:11:45:44 | type conversion : HTMLAttr | HTMLTemplateEscapingPassthrough.go:46:41:46:41 | c |
-| HTMLTemplateEscapingPassthrough.go:45:11:45:44 | type conversion : HTMLAttr | HTMLTemplateEscapingPassthrough.go:46:41:46:41 | c |
-| HTMLTemplateEscapingPassthrough.go:45:11:45:44 | type conversion : HTMLAttr | HTMLTemplateEscapingPassthrough.go:46:41:46:41 | c |
-| HTMLTemplateEscapingPassthrough.go:45:11:45:44 | type conversion : HTMLAttr | HTMLTemplateEscapingPassthrough.go:46:41:46:41 | c |
-| HTMLTemplateEscapingPassthrough.go:45:11:45:44 | type conversion : HTMLAttr | HTMLTemplateEscapingPassthrough.go:46:41:46:41 | c |
-| HTMLTemplateEscapingPassthrough.go:45:11:45:44 | type conversion : HTMLAttr | HTMLTemplateEscapingPassthrough.go:46:41:46:41 | c |
-| HTMLTemplateEscapingPassthrough.go:45:11:45:44 | type conversion : string | HTMLTemplateEscapingPassthrough.go:46:41:46:41 | c |
-| HTMLTemplateEscapingPassthrough.go:45:29:45:43 | call to UserAgent : string | HTMLTemplateEscapingPassthrough.go:45:11:45:44 | type conversion |
-| HTMLTemplateEscapingPassthrough.go:45:29:45:43 | call to UserAgent : string | HTMLTemplateEscapingPassthrough.go:45:11:45:44 | type conversion : string |
-| HTMLTemplateEscapingPassthrough.go:49:11:49:38 | type conversion : JS | HTMLTemplateEscapingPassthrough.go:50:44:50:44 | d |
-| HTMLTemplateEscapingPassthrough.go:49:11:49:38 | type conversion : JS | HTMLTemplateEscapingPassthrough.go:50:44:50:44 | d |
-| HTMLTemplateEscapingPassthrough.go:49:11:49:38 | type conversion : JS | HTMLTemplateEscapingPassthrough.go:50:44:50:44 | d |
-| HTMLTemplateEscapingPassthrough.go:49:11:49:38 | type conversion : JS | HTMLTemplateEscapingPassthrough.go:50:44:50:44 | d |
-| HTMLTemplateEscapingPassthrough.go:49:11:49:38 | type conversion : JS | HTMLTemplateEscapingPassthrough.go:50:44:50:44 | d |
-| HTMLTemplateEscapingPassthrough.go:49:11:49:38 | type conversion : JS | HTMLTemplateEscapingPassthrough.go:50:44:50:44 | d |
-| HTMLTemplateEscapingPassthrough.go:49:11:49:38 | type conversion : JS | HTMLTemplateEscapingPassthrough.go:50:44:50:44 | d |
-| HTMLTemplateEscapingPassthrough.go:49:11:49:38 | type conversion : string | HTMLTemplateEscapingPassthrough.go:50:44:50:44 | d |
-| HTMLTemplateEscapingPassthrough.go:49:23:49:37 | call to UserAgent : string | HTMLTemplateEscapingPassthrough.go:49:11:49:38 | type conversion |
-| HTMLTemplateEscapingPassthrough.go:49:23:49:37 | call to UserAgent : string | HTMLTemplateEscapingPassthrough.go:49:11:49:38 | type conversion : string |
-| HTMLTemplateEscapingPassthrough.go:53:11:53:41 | type conversion : JSStr | HTMLTemplateEscapingPassthrough.go:54:44:54:44 | e |
-| HTMLTemplateEscapingPassthrough.go:53:11:53:41 | type conversion : JSStr | HTMLTemplateEscapingPassthrough.go:54:44:54:44 | e |
-| HTMLTemplateEscapingPassthrough.go:53:11:53:41 | type conversion : JSStr | HTMLTemplateEscapingPassthrough.go:54:44:54:44 | e |
-| HTMLTemplateEscapingPassthrough.go:53:11:53:41 | type conversion : JSStr | HTMLTemplateEscapingPassthrough.go:54:44:54:44 | e |
-| HTMLTemplateEscapingPassthrough.go:53:11:53:41 | type conversion : JSStr | HTMLTemplateEscapingPassthrough.go:54:44:54:44 | e |
-| HTMLTemplateEscapingPassthrough.go:53:11:53:41 | type conversion : JSStr | HTMLTemplateEscapingPassthrough.go:54:44:54:44 | e |
-| HTMLTemplateEscapingPassthrough.go:53:11:53:41 | type conversion : JSStr | HTMLTemplateEscapingPassthrough.go:54:44:54:44 | e |
-| HTMLTemplateEscapingPassthrough.go:53:11:53:41 | type conversion : string | HTMLTemplateEscapingPassthrough.go:54:44:54:44 | e |
-| HTMLTemplateEscapingPassthrough.go:53:26:53:40 | call to UserAgent : string | HTMLTemplateEscapingPassthrough.go:53:11:53:41 | type conversion |
-| HTMLTemplateEscapingPassthrough.go:53:26:53:40 | call to UserAgent : string | HTMLTemplateEscapingPassthrough.go:53:11:53:41 | type conversion : string |
-| HTMLTemplateEscapingPassthrough.go:57:11:57:39 | type conversion : CSS | HTMLTemplateEscapingPassthrough.go:58:38:58:38 | b |
-| HTMLTemplateEscapingPassthrough.go:57:11:57:39 | type conversion : CSS | HTMLTemplateEscapingPassthrough.go:58:38:58:38 | b |
-| HTMLTemplateEscapingPassthrough.go:57:11:57:39 | type conversion : CSS | HTMLTemplateEscapingPassthrough.go:58:38:58:38 | b |
-| HTMLTemplateEscapingPassthrough.go:57:11:57:39 | type conversion : CSS | HTMLTemplateEscapingPassthrough.go:58:38:58:38 | b |
-| HTMLTemplateEscapingPassthrough.go:57:11:57:39 | type conversion : CSS | HTMLTemplateEscapingPassthrough.go:58:38:58:38 | b |
-| HTMLTemplateEscapingPassthrough.go:57:11:57:39 | type conversion : CSS | HTMLTemplateEscapingPassthrough.go:58:38:58:38 | b |
-| HTMLTemplateEscapingPassthrough.go:57:11:57:39 | type conversion : CSS | HTMLTemplateEscapingPassthrough.go:58:38:58:38 | b |
-| HTMLTemplateEscapingPassthrough.go:57:11:57:39 | type conversion : string | HTMLTemplateEscapingPassthrough.go:58:38:58:38 | b |
-| HTMLTemplateEscapingPassthrough.go:57:24:57:38 | call to UserAgent : string | HTMLTemplateEscapingPassthrough.go:57:11:57:39 | type conversion |
-| HTMLTemplateEscapingPassthrough.go:57:24:57:38 | call to UserAgent : string | HTMLTemplateEscapingPassthrough.go:57:11:57:39 | type conversion : string |
-| HTMLTemplateEscapingPassthrough.go:61:11:61:42 | type conversion : Srcset | HTMLTemplateEscapingPassthrough.go:62:44:62:44 | f |
-| HTMLTemplateEscapingPassthrough.go:61:11:61:42 | type conversion : Srcset | HTMLTemplateEscapingPassthrough.go:62:44:62:44 | f |
-| HTMLTemplateEscapingPassthrough.go:61:11:61:42 | type conversion : Srcset | HTMLTemplateEscapingPassthrough.go:62:44:62:44 | f |
-| HTMLTemplateEscapingPassthrough.go:61:11:61:42 | type conversion : Srcset | HTMLTemplateEscapingPassthrough.go:62:44:62:44 | f |
-| HTMLTemplateEscapingPassthrough.go:61:11:61:42 | type conversion : Srcset | HTMLTemplateEscapingPassthrough.go:62:44:62:44 | f |
-| HTMLTemplateEscapingPassthrough.go:61:11:61:42 | type conversion : Srcset | HTMLTemplateEscapingPassthrough.go:62:44:62:44 | f |
-| HTMLTemplateEscapingPassthrough.go:61:11:61:42 | type conversion : Srcset | HTMLTemplateEscapingPassthrough.go:62:44:62:44 | f |
-| HTMLTemplateEscapingPassthrough.go:61:11:61:42 | type conversion : string | HTMLTemplateEscapingPassthrough.go:62:44:62:44 | f |
-| HTMLTemplateEscapingPassthrough.go:61:27:61:41 | call to UserAgent : string | HTMLTemplateEscapingPassthrough.go:61:11:61:42 | type conversion |
-| HTMLTemplateEscapingPassthrough.go:61:27:61:41 | call to UserAgent : string | HTMLTemplateEscapingPassthrough.go:61:11:61:42 | type conversion : string |
-| HTMLTemplateEscapingPassthrough.go:65:11:65:39 | type conversion : URL | HTMLTemplateEscapingPassthrough.go:66:38:66:38 | g |
-| HTMLTemplateEscapingPassthrough.go:65:11:65:39 | type conversion : URL | HTMLTemplateEscapingPassthrough.go:66:38:66:38 | g |
-| HTMLTemplateEscapingPassthrough.go:65:11:65:39 | type conversion : URL | HTMLTemplateEscapingPassthrough.go:66:38:66:38 | g |
-| HTMLTemplateEscapingPassthrough.go:65:11:65:39 | type conversion : URL | HTMLTemplateEscapingPassthrough.go:66:38:66:38 | g |
-| HTMLTemplateEscapingPassthrough.go:65:11:65:39 | type conversion : URL | HTMLTemplateEscapingPassthrough.go:66:38:66:38 | g |
-| HTMLTemplateEscapingPassthrough.go:65:11:65:39 | type conversion : URL | HTMLTemplateEscapingPassthrough.go:66:38:66:38 | g |
-| HTMLTemplateEscapingPassthrough.go:65:11:65:39 | type conversion : URL | HTMLTemplateEscapingPassthrough.go:66:38:66:38 | g |
-| HTMLTemplateEscapingPassthrough.go:65:11:65:39 | type conversion : string | HTMLTemplateEscapingPassthrough.go:66:38:66:38 | g |
-| HTMLTemplateEscapingPassthrough.go:65:24:65:38 | call to UserAgent : string | HTMLTemplateEscapingPassthrough.go:65:11:65:39 | type conversion |
-| HTMLTemplateEscapingPassthrough.go:65:24:65:38 | call to UserAgent : string | HTMLTemplateEscapingPassthrough.go:65:11:65:39 | type conversion : string |
-| HTMLTemplateEscapingPassthrough.go:74:17:74:31 | call to UserAgent : string | HTMLTemplateEscapingPassthrough.go:75:38:75:44 | escaped |
-| HTMLTemplateEscapingPassthrough.go:80:10:80:24 | call to UserAgent : string | HTMLTemplateEscapingPassthrough.go:81:16:81:33 | type conversion |
-| HTMLTemplateEscapingPassthrough.go:80:10:80:24 | call to UserAgent : string | HTMLTemplateEscapingPassthrough.go:83:38:83:40 | src |
-| HTMLTemplateEscapingPassthrough.go:88:10:88:24 | call to UserAgent : string | HTMLTemplateEscapingPassthrough.go:90:16:90:77 | type conversion |
-| HTMLTemplateEscapingPassthrough.go:90:16:90:77 | type conversion : HTML | HTMLTemplateEscapingPassthrough.go:91:38:91:46 | converted |
-| HTMLTemplateEscapingPassthrough.go:90:16:90:77 | type conversion : HTML | HTMLTemplateEscapingPassthrough.go:91:38:91:46 | converted |
-| HTMLTemplateEscapingPassthrough.go:90:16:90:77 | type conversion : HTML | HTMLTemplateEscapingPassthrough.go:91:38:91:46 | converted |
-| HTMLTemplateEscapingPassthrough.go:90:16:90:77 | type conversion : HTML | HTMLTemplateEscapingPassthrough.go:91:38:91:46 | converted |
-| HTMLTemplateEscapingPassthrough.go:90:16:90:77 | type conversion : HTML | HTMLTemplateEscapingPassthrough.go:91:38:91:46 | converted |
-| HTMLTemplateEscapingPassthrough.go:90:16:90:77 | type conversion : HTML | HTMLTemplateEscapingPassthrough.go:91:38:91:46 | converted |
-| HTMLTemplateEscapingPassthrough.go:90:16:90:77 | type conversion : HTML | HTMLTemplateEscapingPassthrough.go:91:38:91:46 | converted |
+| HTMLTemplateEscapingPassthrough.go:28:12:28:41 | type conversion | HTMLTemplateEscapingPassthrough.go:29:39:29:39 | a |
+| HTMLTemplateEscapingPassthrough.go:28:12:28:41 | type conversion | HTMLTemplateEscapingPassthrough.go:29:39:29:39 | a |
+| HTMLTemplateEscapingPassthrough.go:28:12:28:41 | type conversion | HTMLTemplateEscapingPassthrough.go:29:39:29:39 | a |
+| HTMLTemplateEscapingPassthrough.go:28:12:28:41 | type conversion | HTMLTemplateEscapingPassthrough.go:29:39:29:39 | a |
+| HTMLTemplateEscapingPassthrough.go:28:12:28:41 | type conversion | HTMLTemplateEscapingPassthrough.go:29:39:29:39 | a |
+| HTMLTemplateEscapingPassthrough.go:28:12:28:41 | type conversion | HTMLTemplateEscapingPassthrough.go:29:39:29:39 | a |
+| HTMLTemplateEscapingPassthrough.go:28:12:28:41 | type conversion | HTMLTemplateEscapingPassthrough.go:29:39:29:39 | a |
+| HTMLTemplateEscapingPassthrough.go:28:12:28:41 | type conversion | HTMLTemplateEscapingPassthrough.go:29:39:29:39 | a |
+| HTMLTemplateEscapingPassthrough.go:28:26:28:40 | call to UserAgent | HTMLTemplateEscapingPassthrough.go:28:12:28:41 | type conversion |
+| HTMLTemplateEscapingPassthrough.go:28:26:28:40 | call to UserAgent | HTMLTemplateEscapingPassthrough.go:28:12:28:41 | type conversion |
+| HTMLTemplateEscapingPassthrough.go:34:9:34:38 | type conversion | HTMLTemplateEscapingPassthrough.go:35:40:35:40 | a |
+| HTMLTemplateEscapingPassthrough.go:34:9:34:38 | type conversion | HTMLTemplateEscapingPassthrough.go:35:40:35:40 | a |
+| HTMLTemplateEscapingPassthrough.go:34:9:34:38 | type conversion | HTMLTemplateEscapingPassthrough.go:35:40:35:40 | a |
+| HTMLTemplateEscapingPassthrough.go:34:9:34:38 | type conversion | HTMLTemplateEscapingPassthrough.go:35:40:35:40 | a |
+| HTMLTemplateEscapingPassthrough.go:34:9:34:38 | type conversion | HTMLTemplateEscapingPassthrough.go:35:40:35:40 | a |
+| HTMLTemplateEscapingPassthrough.go:34:9:34:38 | type conversion | HTMLTemplateEscapingPassthrough.go:35:40:35:40 | a |
+| HTMLTemplateEscapingPassthrough.go:34:9:34:38 | type conversion | HTMLTemplateEscapingPassthrough.go:35:40:35:40 | a |
+| HTMLTemplateEscapingPassthrough.go:34:9:34:38 | type conversion | HTMLTemplateEscapingPassthrough.go:35:40:35:40 | a |
+| HTMLTemplateEscapingPassthrough.go:34:23:34:37 | call to UserAgent | HTMLTemplateEscapingPassthrough.go:34:9:34:38 | type conversion |
+| HTMLTemplateEscapingPassthrough.go:34:23:34:37 | call to UserAgent | HTMLTemplateEscapingPassthrough.go:34:9:34:38 | type conversion |
+| HTMLTemplateEscapingPassthrough.go:39:9:39:34 | type conversion | HTMLTemplateEscapingPassthrough.go:40:40:40:40 | a |
+| HTMLTemplateEscapingPassthrough.go:39:9:39:34 | type conversion | HTMLTemplateEscapingPassthrough.go:40:40:40:40 | a |
+| HTMLTemplateEscapingPassthrough.go:39:9:39:34 | type conversion | HTMLTemplateEscapingPassthrough.go:40:40:40:40 | a |
+| HTMLTemplateEscapingPassthrough.go:39:9:39:34 | type conversion | HTMLTemplateEscapingPassthrough.go:40:40:40:40 | a |
+| HTMLTemplateEscapingPassthrough.go:39:9:39:34 | type conversion | HTMLTemplateEscapingPassthrough.go:40:40:40:40 | a |
+| HTMLTemplateEscapingPassthrough.go:39:9:39:34 | type conversion | HTMLTemplateEscapingPassthrough.go:40:40:40:40 | a |
+| HTMLTemplateEscapingPassthrough.go:39:9:39:34 | type conversion | HTMLTemplateEscapingPassthrough.go:40:40:40:40 | a |
+| HTMLTemplateEscapingPassthrough.go:39:9:39:34 | type conversion | HTMLTemplateEscapingPassthrough.go:40:40:40:40 | a |
+| HTMLTemplateEscapingPassthrough.go:39:19:39:33 | call to UserAgent | HTMLTemplateEscapingPassthrough.go:39:9:39:34 | type conversion |
+| HTMLTemplateEscapingPassthrough.go:39:19:39:33 | call to UserAgent | HTMLTemplateEscapingPassthrough.go:39:9:39:34 | type conversion |
+| HTMLTemplateEscapingPassthrough.go:45:11:45:44 | type conversion | HTMLTemplateEscapingPassthrough.go:46:41:46:41 | c |
+| HTMLTemplateEscapingPassthrough.go:45:11:45:44 | type conversion | HTMLTemplateEscapingPassthrough.go:46:41:46:41 | c |
+| HTMLTemplateEscapingPassthrough.go:45:11:45:44 | type conversion | HTMLTemplateEscapingPassthrough.go:46:41:46:41 | c |
+| HTMLTemplateEscapingPassthrough.go:45:11:45:44 | type conversion | HTMLTemplateEscapingPassthrough.go:46:41:46:41 | c |
+| HTMLTemplateEscapingPassthrough.go:45:11:45:44 | type conversion | HTMLTemplateEscapingPassthrough.go:46:41:46:41 | c |
+| HTMLTemplateEscapingPassthrough.go:45:11:45:44 | type conversion | HTMLTemplateEscapingPassthrough.go:46:41:46:41 | c |
+| HTMLTemplateEscapingPassthrough.go:45:11:45:44 | type conversion | HTMLTemplateEscapingPassthrough.go:46:41:46:41 | c |
+| HTMLTemplateEscapingPassthrough.go:45:11:45:44 | type conversion | HTMLTemplateEscapingPassthrough.go:46:41:46:41 | c |
+| HTMLTemplateEscapingPassthrough.go:45:29:45:43 | call to UserAgent | HTMLTemplateEscapingPassthrough.go:45:11:45:44 | type conversion |
+| HTMLTemplateEscapingPassthrough.go:45:29:45:43 | call to UserAgent | HTMLTemplateEscapingPassthrough.go:45:11:45:44 | type conversion |
+| HTMLTemplateEscapingPassthrough.go:49:11:49:38 | type conversion | HTMLTemplateEscapingPassthrough.go:50:44:50:44 | d |
+| HTMLTemplateEscapingPassthrough.go:49:11:49:38 | type conversion | HTMLTemplateEscapingPassthrough.go:50:44:50:44 | d |
+| HTMLTemplateEscapingPassthrough.go:49:11:49:38 | type conversion | HTMLTemplateEscapingPassthrough.go:50:44:50:44 | d |
+| HTMLTemplateEscapingPassthrough.go:49:11:49:38 | type conversion | HTMLTemplateEscapingPassthrough.go:50:44:50:44 | d |
+| HTMLTemplateEscapingPassthrough.go:49:11:49:38 | type conversion | HTMLTemplateEscapingPassthrough.go:50:44:50:44 | d |
+| HTMLTemplateEscapingPassthrough.go:49:11:49:38 | type conversion | HTMLTemplateEscapingPassthrough.go:50:44:50:44 | d |
+| HTMLTemplateEscapingPassthrough.go:49:11:49:38 | type conversion | HTMLTemplateEscapingPassthrough.go:50:44:50:44 | d |
+| HTMLTemplateEscapingPassthrough.go:49:11:49:38 | type conversion | HTMLTemplateEscapingPassthrough.go:50:44:50:44 | d |
+| HTMLTemplateEscapingPassthrough.go:49:23:49:37 | call to UserAgent | HTMLTemplateEscapingPassthrough.go:49:11:49:38 | type conversion |
+| HTMLTemplateEscapingPassthrough.go:49:23:49:37 | call to UserAgent | HTMLTemplateEscapingPassthrough.go:49:11:49:38 | type conversion |
+| HTMLTemplateEscapingPassthrough.go:53:11:53:41 | type conversion | HTMLTemplateEscapingPassthrough.go:54:44:54:44 | e |
+| HTMLTemplateEscapingPassthrough.go:53:11:53:41 | type conversion | HTMLTemplateEscapingPassthrough.go:54:44:54:44 | e |
+| HTMLTemplateEscapingPassthrough.go:53:11:53:41 | type conversion | HTMLTemplateEscapingPassthrough.go:54:44:54:44 | e |
+| HTMLTemplateEscapingPassthrough.go:53:11:53:41 | type conversion | HTMLTemplateEscapingPassthrough.go:54:44:54:44 | e |
+| HTMLTemplateEscapingPassthrough.go:53:11:53:41 | type conversion | HTMLTemplateEscapingPassthrough.go:54:44:54:44 | e |
+| HTMLTemplateEscapingPassthrough.go:53:11:53:41 | type conversion | HTMLTemplateEscapingPassthrough.go:54:44:54:44 | e |
+| HTMLTemplateEscapingPassthrough.go:53:11:53:41 | type conversion | HTMLTemplateEscapingPassthrough.go:54:44:54:44 | e |
+| HTMLTemplateEscapingPassthrough.go:53:11:53:41 | type conversion | HTMLTemplateEscapingPassthrough.go:54:44:54:44 | e |
+| HTMLTemplateEscapingPassthrough.go:53:26:53:40 | call to UserAgent | HTMLTemplateEscapingPassthrough.go:53:11:53:41 | type conversion |
+| HTMLTemplateEscapingPassthrough.go:53:26:53:40 | call to UserAgent | HTMLTemplateEscapingPassthrough.go:53:11:53:41 | type conversion |
+| HTMLTemplateEscapingPassthrough.go:57:11:57:39 | type conversion | HTMLTemplateEscapingPassthrough.go:58:38:58:38 | b |
+| HTMLTemplateEscapingPassthrough.go:57:11:57:39 | type conversion | HTMLTemplateEscapingPassthrough.go:58:38:58:38 | b |
+| HTMLTemplateEscapingPassthrough.go:57:11:57:39 | type conversion | HTMLTemplateEscapingPassthrough.go:58:38:58:38 | b |
+| HTMLTemplateEscapingPassthrough.go:57:11:57:39 | type conversion | HTMLTemplateEscapingPassthrough.go:58:38:58:38 | b |
+| HTMLTemplateEscapingPassthrough.go:57:11:57:39 | type conversion | HTMLTemplateEscapingPassthrough.go:58:38:58:38 | b |
+| HTMLTemplateEscapingPassthrough.go:57:11:57:39 | type conversion | HTMLTemplateEscapingPassthrough.go:58:38:58:38 | b |
+| HTMLTemplateEscapingPassthrough.go:57:11:57:39 | type conversion | HTMLTemplateEscapingPassthrough.go:58:38:58:38 | b |
+| HTMLTemplateEscapingPassthrough.go:57:11:57:39 | type conversion | HTMLTemplateEscapingPassthrough.go:58:38:58:38 | b |
+| HTMLTemplateEscapingPassthrough.go:57:24:57:38 | call to UserAgent | HTMLTemplateEscapingPassthrough.go:57:11:57:39 | type conversion |
+| HTMLTemplateEscapingPassthrough.go:57:24:57:38 | call to UserAgent | HTMLTemplateEscapingPassthrough.go:57:11:57:39 | type conversion |
+| HTMLTemplateEscapingPassthrough.go:61:11:61:42 | type conversion | HTMLTemplateEscapingPassthrough.go:62:44:62:44 | f |
+| HTMLTemplateEscapingPassthrough.go:61:11:61:42 | type conversion | HTMLTemplateEscapingPassthrough.go:62:44:62:44 | f |
+| HTMLTemplateEscapingPassthrough.go:61:11:61:42 | type conversion | HTMLTemplateEscapingPassthrough.go:62:44:62:44 | f |
+| HTMLTemplateEscapingPassthrough.go:61:11:61:42 | type conversion | HTMLTemplateEscapingPassthrough.go:62:44:62:44 | f |
+| HTMLTemplateEscapingPassthrough.go:61:11:61:42 | type conversion | HTMLTemplateEscapingPassthrough.go:62:44:62:44 | f |
+| HTMLTemplateEscapingPassthrough.go:61:11:61:42 | type conversion | HTMLTemplateEscapingPassthrough.go:62:44:62:44 | f |
+| HTMLTemplateEscapingPassthrough.go:61:11:61:42 | type conversion | HTMLTemplateEscapingPassthrough.go:62:44:62:44 | f |
+| HTMLTemplateEscapingPassthrough.go:61:11:61:42 | type conversion | HTMLTemplateEscapingPassthrough.go:62:44:62:44 | f |
+| HTMLTemplateEscapingPassthrough.go:61:27:61:41 | call to UserAgent | HTMLTemplateEscapingPassthrough.go:61:11:61:42 | type conversion |
+| HTMLTemplateEscapingPassthrough.go:61:27:61:41 | call to UserAgent | HTMLTemplateEscapingPassthrough.go:61:11:61:42 | type conversion |
+| HTMLTemplateEscapingPassthrough.go:65:11:65:39 | type conversion | HTMLTemplateEscapingPassthrough.go:66:38:66:38 | g |
+| HTMLTemplateEscapingPassthrough.go:65:11:65:39 | type conversion | HTMLTemplateEscapingPassthrough.go:66:38:66:38 | g |
+| HTMLTemplateEscapingPassthrough.go:65:11:65:39 | type conversion | HTMLTemplateEscapingPassthrough.go:66:38:66:38 | g |
+| HTMLTemplateEscapingPassthrough.go:65:11:65:39 | type conversion | HTMLTemplateEscapingPassthrough.go:66:38:66:38 | g |
+| HTMLTemplateEscapingPassthrough.go:65:11:65:39 | type conversion | HTMLTemplateEscapingPassthrough.go:66:38:66:38 | g |
+| HTMLTemplateEscapingPassthrough.go:65:11:65:39 | type conversion | HTMLTemplateEscapingPassthrough.go:66:38:66:38 | g |
+| HTMLTemplateEscapingPassthrough.go:65:11:65:39 | type conversion | HTMLTemplateEscapingPassthrough.go:66:38:66:38 | g |
+| HTMLTemplateEscapingPassthrough.go:65:11:65:39 | type conversion | HTMLTemplateEscapingPassthrough.go:66:38:66:38 | g |
+| HTMLTemplateEscapingPassthrough.go:65:24:65:38 | call to UserAgent | HTMLTemplateEscapingPassthrough.go:65:11:65:39 | type conversion |
+| HTMLTemplateEscapingPassthrough.go:65:24:65:38 | call to UserAgent | HTMLTemplateEscapingPassthrough.go:65:11:65:39 | type conversion |
+| HTMLTemplateEscapingPassthrough.go:74:17:74:31 | call to UserAgent | HTMLTemplateEscapingPassthrough.go:75:38:75:44 | escaped |
+| HTMLTemplateEscapingPassthrough.go:80:10:80:24 | call to UserAgent | HTMLTemplateEscapingPassthrough.go:81:16:81:33 | type conversion |
+| HTMLTemplateEscapingPassthrough.go:80:10:80:24 | call to UserAgent | HTMLTemplateEscapingPassthrough.go:83:38:83:40 | src |
+| HTMLTemplateEscapingPassthrough.go:88:10:88:24 | call to UserAgent | HTMLTemplateEscapingPassthrough.go:90:16:90:77 | type conversion |
+| HTMLTemplateEscapingPassthrough.go:90:16:90:77 | type conversion | HTMLTemplateEscapingPassthrough.go:91:38:91:46 | converted |
+| HTMLTemplateEscapingPassthrough.go:90:16:90:77 | type conversion | HTMLTemplateEscapingPassthrough.go:91:38:91:46 | converted |
+| HTMLTemplateEscapingPassthrough.go:90:16:90:77 | type conversion | HTMLTemplateEscapingPassthrough.go:91:38:91:46 | converted |
+| HTMLTemplateEscapingPassthrough.go:90:16:90:77 | type conversion | HTMLTemplateEscapingPassthrough.go:91:38:91:46 | converted |
+| HTMLTemplateEscapingPassthrough.go:90:16:90:77 | type conversion | HTMLTemplateEscapingPassthrough.go:91:38:91:46 | converted |
+| HTMLTemplateEscapingPassthrough.go:90:16:90:77 | type conversion | HTMLTemplateEscapingPassthrough.go:91:38:91:46 | converted |
+| HTMLTemplateEscapingPassthrough.go:90:16:90:77 | type conversion | HTMLTemplateEscapingPassthrough.go:91:38:91:46 | converted |
 nodes
 | HTMLTemplateEscapingPassthrough.go:28:12:28:41 | type conversion | semmle.label | type conversion |
-| HTMLTemplateEscapingPassthrough.go:28:12:28:41 | type conversion : HTML | semmle.label | type conversion : HTML |
-| HTMLTemplateEscapingPassthrough.go:28:12:28:41 | type conversion : HTML | semmle.label | type conversion : HTML |
-| HTMLTemplateEscapingPassthrough.go:28:12:28:41 | type conversion : HTML | semmle.label | type conversion : HTML |
-| HTMLTemplateEscapingPassthrough.go:28:12:28:41 | type conversion : HTML | semmle.label | type conversion : HTML |
-| HTMLTemplateEscapingPassthrough.go:28:12:28:41 | type conversion : HTML | semmle.label | type conversion : HTML |
-| HTMLTemplateEscapingPassthrough.go:28:12:28:41 | type conversion : HTML | semmle.label | type conversion : HTML |
-| HTMLTemplateEscapingPassthrough.go:28:12:28:41 | type conversion : HTML | semmle.label | type conversion : HTML |
-| HTMLTemplateEscapingPassthrough.go:28:12:28:41 | type conversion : string | semmle.label | type conversion : string |
-| HTMLTemplateEscapingPassthrough.go:28:26:28:40 | call to UserAgent : string | semmle.label | call to UserAgent : string |
-| HTMLTemplateEscapingPassthrough.go:28:26:28:40 | call to UserAgent : string | semmle.label | call to UserAgent : string |
+| HTMLTemplateEscapingPassthrough.go:28:12:28:41 | type conversion | semmle.label | type conversion |
+| HTMLTemplateEscapingPassthrough.go:28:12:28:41 | type conversion | semmle.label | type conversion |
+| HTMLTemplateEscapingPassthrough.go:28:12:28:41 | type conversion | semmle.label | type conversion |
+| HTMLTemplateEscapingPassthrough.go:28:12:28:41 | type conversion | semmle.label | type conversion |
+| HTMLTemplateEscapingPassthrough.go:28:12:28:41 | type conversion | semmle.label | type conversion |
+| HTMLTemplateEscapingPassthrough.go:28:12:28:41 | type conversion | semmle.label | type conversion |
+| HTMLTemplateEscapingPassthrough.go:28:12:28:41 | type conversion | semmle.label | type conversion |
+| HTMLTemplateEscapingPassthrough.go:28:12:28:41 | type conversion | semmle.label | type conversion |
+| HTMLTemplateEscapingPassthrough.go:28:26:28:40 | call to UserAgent | semmle.label | call to UserAgent |
+| HTMLTemplateEscapingPassthrough.go:28:26:28:40 | call to UserAgent | semmle.label | call to UserAgent |
 | HTMLTemplateEscapingPassthrough.go:29:39:29:39 | a | semmle.label | a |
 | HTMLTemplateEscapingPassthrough.go:29:39:29:39 | a | semmle.label | a |
 | HTMLTemplateEscapingPassthrough.go:29:39:29:39 | a | semmle.label | a |
@@ -121,16 +121,16 @@ nodes
 | HTMLTemplateEscapingPassthrough.go:29:39:29:39 | a | semmle.label | a |
 | HTMLTemplateEscapingPassthrough.go:29:39:29:39 | a | semmle.label | a |
 | HTMLTemplateEscapingPassthrough.go:34:9:34:38 | type conversion | semmle.label | type conversion |
-| HTMLTemplateEscapingPassthrough.go:34:9:34:38 | type conversion : HTML | semmle.label | type conversion : HTML |
-| HTMLTemplateEscapingPassthrough.go:34:9:34:38 | type conversion : HTML | semmle.label | type conversion : HTML |
-| HTMLTemplateEscapingPassthrough.go:34:9:34:38 | type conversion : HTML | semmle.label | type conversion : HTML |
-| HTMLTemplateEscapingPassthrough.go:34:9:34:38 | type conversion : HTML | semmle.label | type conversion : HTML |
-| HTMLTemplateEscapingPassthrough.go:34:9:34:38 | type conversion : HTML | semmle.label | type conversion : HTML |
-| HTMLTemplateEscapingPassthrough.go:34:9:34:38 | type conversion : HTML | semmle.label | type conversion : HTML |
-| HTMLTemplateEscapingPassthrough.go:34:9:34:38 | type conversion : HTML | semmle.label | type conversion : HTML |
-| HTMLTemplateEscapingPassthrough.go:34:9:34:38 | type conversion : string | semmle.label | type conversion : string |
-| HTMLTemplateEscapingPassthrough.go:34:23:34:37 | call to UserAgent : string | semmle.label | call to UserAgent : string |
-| HTMLTemplateEscapingPassthrough.go:34:23:34:37 | call to UserAgent : string | semmle.label | call to UserAgent : string |
+| HTMLTemplateEscapingPassthrough.go:34:9:34:38 | type conversion | semmle.label | type conversion |
+| HTMLTemplateEscapingPassthrough.go:34:9:34:38 | type conversion | semmle.label | type conversion |
+| HTMLTemplateEscapingPassthrough.go:34:9:34:38 | type conversion | semmle.label | type conversion |
+| HTMLTemplateEscapingPassthrough.go:34:9:34:38 | type conversion | semmle.label | type conversion |
+| HTMLTemplateEscapingPassthrough.go:34:9:34:38 | type conversion | semmle.label | type conversion |
+| HTMLTemplateEscapingPassthrough.go:34:9:34:38 | type conversion | semmle.label | type conversion |
+| HTMLTemplateEscapingPassthrough.go:34:9:34:38 | type conversion | semmle.label | type conversion |
+| HTMLTemplateEscapingPassthrough.go:34:9:34:38 | type conversion | semmle.label | type conversion |
+| HTMLTemplateEscapingPassthrough.go:34:23:34:37 | call to UserAgent | semmle.label | call to UserAgent |
+| HTMLTemplateEscapingPassthrough.go:34:23:34:37 | call to UserAgent | semmle.label | call to UserAgent |
 | HTMLTemplateEscapingPassthrough.go:35:40:35:40 | a | semmle.label | a |
 | HTMLTemplateEscapingPassthrough.go:35:40:35:40 | a | semmle.label | a |
 | HTMLTemplateEscapingPassthrough.go:35:40:35:40 | a | semmle.label | a |
@@ -140,16 +140,16 @@ nodes
 | HTMLTemplateEscapingPassthrough.go:35:40:35:40 | a | semmle.label | a |
 | HTMLTemplateEscapingPassthrough.go:35:40:35:40 | a | semmle.label | a |
 | HTMLTemplateEscapingPassthrough.go:39:9:39:34 | type conversion | semmle.label | type conversion |
-| HTMLTemplateEscapingPassthrough.go:39:9:39:34 | type conversion : HTML | semmle.label | type conversion : HTML |
-| HTMLTemplateEscapingPassthrough.go:39:9:39:34 | type conversion : HTML | semmle.label | type conversion : HTML |
-| HTMLTemplateEscapingPassthrough.go:39:9:39:34 | type conversion : HTML | semmle.label | type conversion : HTML |
-| HTMLTemplateEscapingPassthrough.go:39:9:39:34 | type conversion : HTML | semmle.label | type conversion : HTML |
-| HTMLTemplateEscapingPassthrough.go:39:9:39:34 | type conversion : HTML | semmle.label | type conversion : HTML |
-| HTMLTemplateEscapingPassthrough.go:39:9:39:34 | type conversion : HTML | semmle.label | type conversion : HTML |
-| HTMLTemplateEscapingPassthrough.go:39:9:39:34 | type conversion : HTML | semmle.label | type conversion : HTML |
-| HTMLTemplateEscapingPassthrough.go:39:9:39:34 | type conversion : string | semmle.label | type conversion : string |
-| HTMLTemplateEscapingPassthrough.go:39:19:39:33 | call to UserAgent : string | semmle.label | call to UserAgent : string |
-| HTMLTemplateEscapingPassthrough.go:39:19:39:33 | call to UserAgent : string | semmle.label | call to UserAgent : string |
+| HTMLTemplateEscapingPassthrough.go:39:9:39:34 | type conversion | semmle.label | type conversion |
+| HTMLTemplateEscapingPassthrough.go:39:9:39:34 | type conversion | semmle.label | type conversion |
+| HTMLTemplateEscapingPassthrough.go:39:9:39:34 | type conversion | semmle.label | type conversion |
+| HTMLTemplateEscapingPassthrough.go:39:9:39:34 | type conversion | semmle.label | type conversion |
+| HTMLTemplateEscapingPassthrough.go:39:9:39:34 | type conversion | semmle.label | type conversion |
+| HTMLTemplateEscapingPassthrough.go:39:9:39:34 | type conversion | semmle.label | type conversion |
+| HTMLTemplateEscapingPassthrough.go:39:9:39:34 | type conversion | semmle.label | type conversion |
+| HTMLTemplateEscapingPassthrough.go:39:9:39:34 | type conversion | semmle.label | type conversion |
+| HTMLTemplateEscapingPassthrough.go:39:19:39:33 | call to UserAgent | semmle.label | call to UserAgent |
+| HTMLTemplateEscapingPassthrough.go:39:19:39:33 | call to UserAgent | semmle.label | call to UserAgent |
 | HTMLTemplateEscapingPassthrough.go:40:40:40:40 | a | semmle.label | a |
 | HTMLTemplateEscapingPassthrough.go:40:40:40:40 | a | semmle.label | a |
 | HTMLTemplateEscapingPassthrough.go:40:40:40:40 | a | semmle.label | a |
@@ -159,16 +159,16 @@ nodes
 | HTMLTemplateEscapingPassthrough.go:40:40:40:40 | a | semmle.label | a |
 | HTMLTemplateEscapingPassthrough.go:40:40:40:40 | a | semmle.label | a |
 | HTMLTemplateEscapingPassthrough.go:45:11:45:44 | type conversion | semmle.label | type conversion |
-| HTMLTemplateEscapingPassthrough.go:45:11:45:44 | type conversion : HTMLAttr | semmle.label | type conversion : HTMLAttr |
-| HTMLTemplateEscapingPassthrough.go:45:11:45:44 | type conversion : HTMLAttr | semmle.label | type conversion : HTMLAttr |
-| HTMLTemplateEscapingPassthrough.go:45:11:45:44 | type conversion : HTMLAttr | semmle.label | type conversion : HTMLAttr |
-| HTMLTemplateEscapingPassthrough.go:45:11:45:44 | type conversion : HTMLAttr | semmle.label | type conversion : HTMLAttr |
-| HTMLTemplateEscapingPassthrough.go:45:11:45:44 | type conversion : HTMLAttr | semmle.label | type conversion : HTMLAttr |
-| HTMLTemplateEscapingPassthrough.go:45:11:45:44 | type conversion : HTMLAttr | semmle.label | type conversion : HTMLAttr |
-| HTMLTemplateEscapingPassthrough.go:45:11:45:44 | type conversion : HTMLAttr | semmle.label | type conversion : HTMLAttr |
-| HTMLTemplateEscapingPassthrough.go:45:11:45:44 | type conversion : string | semmle.label | type conversion : string |
-| HTMLTemplateEscapingPassthrough.go:45:29:45:43 | call to UserAgent : string | semmle.label | call to UserAgent : string |
-| HTMLTemplateEscapingPassthrough.go:45:29:45:43 | call to UserAgent : string | semmle.label | call to UserAgent : string |
+| HTMLTemplateEscapingPassthrough.go:45:11:45:44 | type conversion | semmle.label | type conversion |
+| HTMLTemplateEscapingPassthrough.go:45:11:45:44 | type conversion | semmle.label | type conversion |
+| HTMLTemplateEscapingPassthrough.go:45:11:45:44 | type conversion | semmle.label | type conversion |
+| HTMLTemplateEscapingPassthrough.go:45:11:45:44 | type conversion | semmle.label | type conversion |
+| HTMLTemplateEscapingPassthrough.go:45:11:45:44 | type conversion | semmle.label | type conversion |
+| HTMLTemplateEscapingPassthrough.go:45:11:45:44 | type conversion | semmle.label | type conversion |
+| HTMLTemplateEscapingPassthrough.go:45:11:45:44 | type conversion | semmle.label | type conversion |
+| HTMLTemplateEscapingPassthrough.go:45:11:45:44 | type conversion | semmle.label | type conversion |
+| HTMLTemplateEscapingPassthrough.go:45:29:45:43 | call to UserAgent | semmle.label | call to UserAgent |
+| HTMLTemplateEscapingPassthrough.go:45:29:45:43 | call to UserAgent | semmle.label | call to UserAgent |
 | HTMLTemplateEscapingPassthrough.go:46:41:46:41 | c | semmle.label | c |
 | HTMLTemplateEscapingPassthrough.go:46:41:46:41 | c | semmle.label | c |
 | HTMLTemplateEscapingPassthrough.go:46:41:46:41 | c | semmle.label | c |
@@ -178,16 +178,16 @@ nodes
 | HTMLTemplateEscapingPassthrough.go:46:41:46:41 | c | semmle.label | c |
 | HTMLTemplateEscapingPassthrough.go:46:41:46:41 | c | semmle.label | c |
 | HTMLTemplateEscapingPassthrough.go:49:11:49:38 | type conversion | semmle.label | type conversion |
-| HTMLTemplateEscapingPassthrough.go:49:11:49:38 | type conversion : JS | semmle.label | type conversion : JS |
-| HTMLTemplateEscapingPassthrough.go:49:11:49:38 | type conversion : JS | semmle.label | type conversion : JS |
-| HTMLTemplateEscapingPassthrough.go:49:11:49:38 | type conversion : JS | semmle.label | type conversion : JS |
-| HTMLTemplateEscapingPassthrough.go:49:11:49:38 | type conversion : JS | semmle.label | type conversion : JS |
-| HTMLTemplateEscapingPassthrough.go:49:11:49:38 | type conversion : JS | semmle.label | type conversion : JS |
-| HTMLTemplateEscapingPassthrough.go:49:11:49:38 | type conversion : JS | semmle.label | type conversion : JS |
-| HTMLTemplateEscapingPassthrough.go:49:11:49:38 | type conversion : JS | semmle.label | type conversion : JS |
-| HTMLTemplateEscapingPassthrough.go:49:11:49:38 | type conversion : string | semmle.label | type conversion : string |
-| HTMLTemplateEscapingPassthrough.go:49:23:49:37 | call to UserAgent : string | semmle.label | call to UserAgent : string |
-| HTMLTemplateEscapingPassthrough.go:49:23:49:37 | call to UserAgent : string | semmle.label | call to UserAgent : string |
+| HTMLTemplateEscapingPassthrough.go:49:11:49:38 | type conversion | semmle.label | type conversion |
+| HTMLTemplateEscapingPassthrough.go:49:11:49:38 | type conversion | semmle.label | type conversion |
+| HTMLTemplateEscapingPassthrough.go:49:11:49:38 | type conversion | semmle.label | type conversion |
+| HTMLTemplateEscapingPassthrough.go:49:11:49:38 | type conversion | semmle.label | type conversion |
+| HTMLTemplateEscapingPassthrough.go:49:11:49:38 | type conversion | semmle.label | type conversion |
+| HTMLTemplateEscapingPassthrough.go:49:11:49:38 | type conversion | semmle.label | type conversion |
+| HTMLTemplateEscapingPassthrough.go:49:11:49:38 | type conversion | semmle.label | type conversion |
+| HTMLTemplateEscapingPassthrough.go:49:11:49:38 | type conversion | semmle.label | type conversion |
+| HTMLTemplateEscapingPassthrough.go:49:23:49:37 | call to UserAgent | semmle.label | call to UserAgent |
+| HTMLTemplateEscapingPassthrough.go:49:23:49:37 | call to UserAgent | semmle.label | call to UserAgent |
 | HTMLTemplateEscapingPassthrough.go:50:44:50:44 | d | semmle.label | d |
 | HTMLTemplateEscapingPassthrough.go:50:44:50:44 | d | semmle.label | d |
 | HTMLTemplateEscapingPassthrough.go:50:44:50:44 | d | semmle.label | d |
@@ -197,16 +197,16 @@ nodes
 | HTMLTemplateEscapingPassthrough.go:50:44:50:44 | d | semmle.label | d |
 | HTMLTemplateEscapingPassthrough.go:50:44:50:44 | d | semmle.label | d |
 | HTMLTemplateEscapingPassthrough.go:53:11:53:41 | type conversion | semmle.label | type conversion |
-| HTMLTemplateEscapingPassthrough.go:53:11:53:41 | type conversion : JSStr | semmle.label | type conversion : JSStr |
-| HTMLTemplateEscapingPassthrough.go:53:11:53:41 | type conversion : JSStr | semmle.label | type conversion : JSStr |
-| HTMLTemplateEscapingPassthrough.go:53:11:53:41 | type conversion : JSStr | semmle.label | type conversion : JSStr |
-| HTMLTemplateEscapingPassthrough.go:53:11:53:41 | type conversion : JSStr | semmle.label | type conversion : JSStr |
-| HTMLTemplateEscapingPassthrough.go:53:11:53:41 | type conversion : JSStr | semmle.label | type conversion : JSStr |
-| HTMLTemplateEscapingPassthrough.go:53:11:53:41 | type conversion : JSStr | semmle.label | type conversion : JSStr |
-| HTMLTemplateEscapingPassthrough.go:53:11:53:41 | type conversion : JSStr | semmle.label | type conversion : JSStr |
-| HTMLTemplateEscapingPassthrough.go:53:11:53:41 | type conversion : string | semmle.label | type conversion : string |
-| HTMLTemplateEscapingPassthrough.go:53:26:53:40 | call to UserAgent : string | semmle.label | call to UserAgent : string |
-| HTMLTemplateEscapingPassthrough.go:53:26:53:40 | call to UserAgent : string | semmle.label | call to UserAgent : string |
+| HTMLTemplateEscapingPassthrough.go:53:11:53:41 | type conversion | semmle.label | type conversion |
+| HTMLTemplateEscapingPassthrough.go:53:11:53:41 | type conversion | semmle.label | type conversion |
+| HTMLTemplateEscapingPassthrough.go:53:11:53:41 | type conversion | semmle.label | type conversion |
+| HTMLTemplateEscapingPassthrough.go:53:11:53:41 | type conversion | semmle.label | type conversion |
+| HTMLTemplateEscapingPassthrough.go:53:11:53:41 | type conversion | semmle.label | type conversion |
+| HTMLTemplateEscapingPassthrough.go:53:11:53:41 | type conversion | semmle.label | type conversion |
+| HTMLTemplateEscapingPassthrough.go:53:11:53:41 | type conversion | semmle.label | type conversion |
+| HTMLTemplateEscapingPassthrough.go:53:11:53:41 | type conversion | semmle.label | type conversion |
+| HTMLTemplateEscapingPassthrough.go:53:26:53:40 | call to UserAgent | semmle.label | call to UserAgent |
+| HTMLTemplateEscapingPassthrough.go:53:26:53:40 | call to UserAgent | semmle.label | call to UserAgent |
 | HTMLTemplateEscapingPassthrough.go:54:44:54:44 | e | semmle.label | e |
 | HTMLTemplateEscapingPassthrough.go:54:44:54:44 | e | semmle.label | e |
 | HTMLTemplateEscapingPassthrough.go:54:44:54:44 | e | semmle.label | e |
@@ -216,16 +216,16 @@ nodes
 | HTMLTemplateEscapingPassthrough.go:54:44:54:44 | e | semmle.label | e |
 | HTMLTemplateEscapingPassthrough.go:54:44:54:44 | e | semmle.label | e |
 | HTMLTemplateEscapingPassthrough.go:57:11:57:39 | type conversion | semmle.label | type conversion |
-| HTMLTemplateEscapingPassthrough.go:57:11:57:39 | type conversion : CSS | semmle.label | type conversion : CSS |
-| HTMLTemplateEscapingPassthrough.go:57:11:57:39 | type conversion : CSS | semmle.label | type conversion : CSS |
-| HTMLTemplateEscapingPassthrough.go:57:11:57:39 | type conversion : CSS | semmle.label | type conversion : CSS |
-| HTMLTemplateEscapingPassthrough.go:57:11:57:39 | type conversion : CSS | semmle.label | type conversion : CSS |
-| HTMLTemplateEscapingPassthrough.go:57:11:57:39 | type conversion : CSS | semmle.label | type conversion : CSS |
-| HTMLTemplateEscapingPassthrough.go:57:11:57:39 | type conversion : CSS | semmle.label | type conversion : CSS |
-| HTMLTemplateEscapingPassthrough.go:57:11:57:39 | type conversion : CSS | semmle.label | type conversion : CSS |
-| HTMLTemplateEscapingPassthrough.go:57:11:57:39 | type conversion : string | semmle.label | type conversion : string |
-| HTMLTemplateEscapingPassthrough.go:57:24:57:38 | call to UserAgent : string | semmle.label | call to UserAgent : string |
-| HTMLTemplateEscapingPassthrough.go:57:24:57:38 | call to UserAgent : string | semmle.label | call to UserAgent : string |
+| HTMLTemplateEscapingPassthrough.go:57:11:57:39 | type conversion | semmle.label | type conversion |
+| HTMLTemplateEscapingPassthrough.go:57:11:57:39 | type conversion | semmle.label | type conversion |
+| HTMLTemplateEscapingPassthrough.go:57:11:57:39 | type conversion | semmle.label | type conversion |
+| HTMLTemplateEscapingPassthrough.go:57:11:57:39 | type conversion | semmle.label | type conversion |
+| HTMLTemplateEscapingPassthrough.go:57:11:57:39 | type conversion | semmle.label | type conversion |
+| HTMLTemplateEscapingPassthrough.go:57:11:57:39 | type conversion | semmle.label | type conversion |
+| HTMLTemplateEscapingPassthrough.go:57:11:57:39 | type conversion | semmle.label | type conversion |
+| HTMLTemplateEscapingPassthrough.go:57:11:57:39 | type conversion | semmle.label | type conversion |
+| HTMLTemplateEscapingPassthrough.go:57:24:57:38 | call to UserAgent | semmle.label | call to UserAgent |
+| HTMLTemplateEscapingPassthrough.go:57:24:57:38 | call to UserAgent | semmle.label | call to UserAgent |
 | HTMLTemplateEscapingPassthrough.go:58:38:58:38 | b | semmle.label | b |
 | HTMLTemplateEscapingPassthrough.go:58:38:58:38 | b | semmle.label | b |
 | HTMLTemplateEscapingPassthrough.go:58:38:58:38 | b | semmle.label | b |
@@ -235,16 +235,16 @@ nodes
 | HTMLTemplateEscapingPassthrough.go:58:38:58:38 | b | semmle.label | b |
 | HTMLTemplateEscapingPassthrough.go:58:38:58:38 | b | semmle.label | b |
 | HTMLTemplateEscapingPassthrough.go:61:11:61:42 | type conversion | semmle.label | type conversion |
-| HTMLTemplateEscapingPassthrough.go:61:11:61:42 | type conversion : Srcset | semmle.label | type conversion : Srcset |
-| HTMLTemplateEscapingPassthrough.go:61:11:61:42 | type conversion : Srcset | semmle.label | type conversion : Srcset |
-| HTMLTemplateEscapingPassthrough.go:61:11:61:42 | type conversion : Srcset | semmle.label | type conversion : Srcset |
-| HTMLTemplateEscapingPassthrough.go:61:11:61:42 | type conversion : Srcset | semmle.label | type conversion : Srcset |
-| HTMLTemplateEscapingPassthrough.go:61:11:61:42 | type conversion : Srcset | semmle.label | type conversion : Srcset |
-| HTMLTemplateEscapingPassthrough.go:61:11:61:42 | type conversion : Srcset | semmle.label | type conversion : Srcset |
-| HTMLTemplateEscapingPassthrough.go:61:11:61:42 | type conversion : Srcset | semmle.label | type conversion : Srcset |
-| HTMLTemplateEscapingPassthrough.go:61:11:61:42 | type conversion : string | semmle.label | type conversion : string |
-| HTMLTemplateEscapingPassthrough.go:61:27:61:41 | call to UserAgent : string | semmle.label | call to UserAgent : string |
-| HTMLTemplateEscapingPassthrough.go:61:27:61:41 | call to UserAgent : string | semmle.label | call to UserAgent : string |
+| HTMLTemplateEscapingPassthrough.go:61:11:61:42 | type conversion | semmle.label | type conversion |
+| HTMLTemplateEscapingPassthrough.go:61:11:61:42 | type conversion | semmle.label | type conversion |
+| HTMLTemplateEscapingPassthrough.go:61:11:61:42 | type conversion | semmle.label | type conversion |
+| HTMLTemplateEscapingPassthrough.go:61:11:61:42 | type conversion | semmle.label | type conversion |
+| HTMLTemplateEscapingPassthrough.go:61:11:61:42 | type conversion | semmle.label | type conversion |
+| HTMLTemplateEscapingPassthrough.go:61:11:61:42 | type conversion | semmle.label | type conversion |
+| HTMLTemplateEscapingPassthrough.go:61:11:61:42 | type conversion | semmle.label | type conversion |
+| HTMLTemplateEscapingPassthrough.go:61:11:61:42 | type conversion | semmle.label | type conversion |
+| HTMLTemplateEscapingPassthrough.go:61:27:61:41 | call to UserAgent | semmle.label | call to UserAgent |
+| HTMLTemplateEscapingPassthrough.go:61:27:61:41 | call to UserAgent | semmle.label | call to UserAgent |
 | HTMLTemplateEscapingPassthrough.go:62:44:62:44 | f | semmle.label | f |
 | HTMLTemplateEscapingPassthrough.go:62:44:62:44 | f | semmle.label | f |
 | HTMLTemplateEscapingPassthrough.go:62:44:62:44 | f | semmle.label | f |
@@ -254,16 +254,16 @@ nodes
 | HTMLTemplateEscapingPassthrough.go:62:44:62:44 | f | semmle.label | f |
 | HTMLTemplateEscapingPassthrough.go:62:44:62:44 | f | semmle.label | f |
 | HTMLTemplateEscapingPassthrough.go:65:11:65:39 | type conversion | semmle.label | type conversion |
-| HTMLTemplateEscapingPassthrough.go:65:11:65:39 | type conversion : URL | semmle.label | type conversion : URL |
-| HTMLTemplateEscapingPassthrough.go:65:11:65:39 | type conversion : URL | semmle.label | type conversion : URL |
-| HTMLTemplateEscapingPassthrough.go:65:11:65:39 | type conversion : URL | semmle.label | type conversion : URL |
-| HTMLTemplateEscapingPassthrough.go:65:11:65:39 | type conversion : URL | semmle.label | type conversion : URL |
-| HTMLTemplateEscapingPassthrough.go:65:11:65:39 | type conversion : URL | semmle.label | type conversion : URL |
-| HTMLTemplateEscapingPassthrough.go:65:11:65:39 | type conversion : URL | semmle.label | type conversion : URL |
-| HTMLTemplateEscapingPassthrough.go:65:11:65:39 | type conversion : URL | semmle.label | type conversion : URL |
-| HTMLTemplateEscapingPassthrough.go:65:11:65:39 | type conversion : string | semmle.label | type conversion : string |
-| HTMLTemplateEscapingPassthrough.go:65:24:65:38 | call to UserAgent : string | semmle.label | call to UserAgent : string |
-| HTMLTemplateEscapingPassthrough.go:65:24:65:38 | call to UserAgent : string | semmle.label | call to UserAgent : string |
+| HTMLTemplateEscapingPassthrough.go:65:11:65:39 | type conversion | semmle.label | type conversion |
+| HTMLTemplateEscapingPassthrough.go:65:11:65:39 | type conversion | semmle.label | type conversion |
+| HTMLTemplateEscapingPassthrough.go:65:11:65:39 | type conversion | semmle.label | type conversion |
+| HTMLTemplateEscapingPassthrough.go:65:11:65:39 | type conversion | semmle.label | type conversion |
+| HTMLTemplateEscapingPassthrough.go:65:11:65:39 | type conversion | semmle.label | type conversion |
+| HTMLTemplateEscapingPassthrough.go:65:11:65:39 | type conversion | semmle.label | type conversion |
+| HTMLTemplateEscapingPassthrough.go:65:11:65:39 | type conversion | semmle.label | type conversion |
+| HTMLTemplateEscapingPassthrough.go:65:11:65:39 | type conversion | semmle.label | type conversion |
+| HTMLTemplateEscapingPassthrough.go:65:24:65:38 | call to UserAgent | semmle.label | call to UserAgent |
+| HTMLTemplateEscapingPassthrough.go:65:24:65:38 | call to UserAgent | semmle.label | call to UserAgent |
 | HTMLTemplateEscapingPassthrough.go:66:38:66:38 | g | semmle.label | g |
 | HTMLTemplateEscapingPassthrough.go:66:38:66:38 | g | semmle.label | g |
 | HTMLTemplateEscapingPassthrough.go:66:38:66:38 | g | semmle.label | g |
@@ -272,21 +272,21 @@ nodes
 | HTMLTemplateEscapingPassthrough.go:66:38:66:38 | g | semmle.label | g |
 | HTMLTemplateEscapingPassthrough.go:66:38:66:38 | g | semmle.label | g |
 | HTMLTemplateEscapingPassthrough.go:66:38:66:38 | g | semmle.label | g |
-| HTMLTemplateEscapingPassthrough.go:74:17:74:31 | call to UserAgent : string | semmle.label | call to UserAgent : string |
+| HTMLTemplateEscapingPassthrough.go:74:17:74:31 | call to UserAgent | semmle.label | call to UserAgent |
 | HTMLTemplateEscapingPassthrough.go:75:38:75:44 | escaped | semmle.label | escaped |
-| HTMLTemplateEscapingPassthrough.go:80:10:80:24 | call to UserAgent : string | semmle.label | call to UserAgent : string |
-| HTMLTemplateEscapingPassthrough.go:80:10:80:24 | call to UserAgent : string | semmle.label | call to UserAgent : string |
+| HTMLTemplateEscapingPassthrough.go:80:10:80:24 | call to UserAgent | semmle.label | call to UserAgent |
+| HTMLTemplateEscapingPassthrough.go:80:10:80:24 | call to UserAgent | semmle.label | call to UserAgent |
 | HTMLTemplateEscapingPassthrough.go:81:16:81:33 | type conversion | semmle.label | type conversion |
 | HTMLTemplateEscapingPassthrough.go:83:38:83:40 | src | semmle.label | src |
-| HTMLTemplateEscapingPassthrough.go:88:10:88:24 | call to UserAgent : string | semmle.label | call to UserAgent : string |
+| HTMLTemplateEscapingPassthrough.go:88:10:88:24 | call to UserAgent | semmle.label | call to UserAgent |
+| HTMLTemplateEscapingPassthrough.go:90:16:90:77 | type conversion | semmle.label | type conversion |
+| HTMLTemplateEscapingPassthrough.go:90:16:90:77 | type conversion | semmle.label | type conversion |
+| HTMLTemplateEscapingPassthrough.go:90:16:90:77 | type conversion | semmle.label | type conversion |
+| HTMLTemplateEscapingPassthrough.go:90:16:90:77 | type conversion | semmle.label | type conversion |
+| HTMLTemplateEscapingPassthrough.go:90:16:90:77 | type conversion | semmle.label | type conversion |
+| HTMLTemplateEscapingPassthrough.go:90:16:90:77 | type conversion | semmle.label | type conversion |
+| HTMLTemplateEscapingPassthrough.go:90:16:90:77 | type conversion | semmle.label | type conversion |
 | HTMLTemplateEscapingPassthrough.go:90:16:90:77 | type conversion | semmle.label | type conversion |
-| HTMLTemplateEscapingPassthrough.go:90:16:90:77 | type conversion : HTML | semmle.label | type conversion : HTML |
-| HTMLTemplateEscapingPassthrough.go:90:16:90:77 | type conversion : HTML | semmle.label | type conversion : HTML |
-| HTMLTemplateEscapingPassthrough.go:90:16:90:77 | type conversion : HTML | semmle.label | type conversion : HTML |
-| HTMLTemplateEscapingPassthrough.go:90:16:90:77 | type conversion : HTML | semmle.label | type conversion : HTML |
-| HTMLTemplateEscapingPassthrough.go:90:16:90:77 | type conversion : HTML | semmle.label | type conversion : HTML |
-| HTMLTemplateEscapingPassthrough.go:90:16:90:77 | type conversion : HTML | semmle.label | type conversion : HTML |
-| HTMLTemplateEscapingPassthrough.go:90:16:90:77 | type conversion : HTML | semmle.label | type conversion : HTML |
 | HTMLTemplateEscapingPassthrough.go:91:38:91:46 | converted | semmle.label | converted |
 | HTMLTemplateEscapingPassthrough.go:91:38:91:46 | converted | semmle.label | converted |
 | HTMLTemplateEscapingPassthrough.go:91:38:91:46 | converted | semmle.label | converted |
@@ -296,12 +296,12 @@ nodes
 | HTMLTemplateEscapingPassthrough.go:91:38:91:46 | converted | semmle.label | converted |
 subpaths
 #select
-| HTMLTemplateEscapingPassthrough.go:29:39:29:39 | a | HTMLTemplateEscapingPassthrough.go:28:26:28:40 | call to UserAgent : string | HTMLTemplateEscapingPassthrough.go:29:39:29:39 | a | Data from an $@ will not be auto-escaped because it was $@ to template.HTML | HTMLTemplateEscapingPassthrough.go:28:26:28:40 | call to UserAgent | untrusted source | HTMLTemplateEscapingPassthrough.go:28:12:28:41 | type conversion | converted |
-| HTMLTemplateEscapingPassthrough.go:35:40:35:40 | a | HTMLTemplateEscapingPassthrough.go:34:23:34:37 | call to UserAgent : string | HTMLTemplateEscapingPassthrough.go:35:40:35:40 | a | Data from an $@ will not be auto-escaped because it was $@ to template.HTML | HTMLTemplateEscapingPassthrough.go:34:23:34:37 | call to UserAgent | untrusted source | HTMLTemplateEscapingPassthrough.go:34:9:34:38 | type conversion | converted |
-| HTMLTemplateEscapingPassthrough.go:40:40:40:40 | a | HTMLTemplateEscapingPassthrough.go:39:19:39:33 | call to UserAgent : string | HTMLTemplateEscapingPassthrough.go:40:40:40:40 | a | Data from an $@ will not be auto-escaped because it was $@ to template.HTML | HTMLTemplateEscapingPassthrough.go:39:19:39:33 | call to UserAgent | untrusted source | HTMLTemplateEscapingPassthrough.go:39:9:39:34 | type conversion | converted |
-| HTMLTemplateEscapingPassthrough.go:46:41:46:41 | c | HTMLTemplateEscapingPassthrough.go:45:29:45:43 | call to UserAgent : string | HTMLTemplateEscapingPassthrough.go:46:41:46:41 | c | Data from an $@ will not be auto-escaped because it was $@ to template.HTMLAttr | HTMLTemplateEscapingPassthrough.go:45:29:45:43 | call to UserAgent | untrusted source | HTMLTemplateEscapingPassthrough.go:45:11:45:44 | type conversion | converted |
-| HTMLTemplateEscapingPassthrough.go:50:44:50:44 | d | HTMLTemplateEscapingPassthrough.go:49:23:49:37 | call to UserAgent : string | HTMLTemplateEscapingPassthrough.go:50:44:50:44 | d | Data from an $@ will not be auto-escaped because it was $@ to template.JS | HTMLTemplateEscapingPassthrough.go:49:23:49:37 | call to UserAgent | untrusted source | HTMLTemplateEscapingPassthrough.go:49:11:49:38 | type conversion | converted |
-| HTMLTemplateEscapingPassthrough.go:54:44:54:44 | e | HTMLTemplateEscapingPassthrough.go:53:26:53:40 | call to UserAgent : string | HTMLTemplateEscapingPassthrough.go:54:44:54:44 | e | Data from an $@ will not be auto-escaped because it was $@ to template.JSStr | HTMLTemplateEscapingPassthrough.go:53:26:53:40 | call to UserAgent | untrusted source | HTMLTemplateEscapingPassthrough.go:53:11:53:41 | type conversion | converted |
-| HTMLTemplateEscapingPassthrough.go:58:38:58:38 | b | HTMLTemplateEscapingPassthrough.go:57:24:57:38 | call to UserAgent : string | HTMLTemplateEscapingPassthrough.go:58:38:58:38 | b | Data from an $@ will not be auto-escaped because it was $@ to template.CSS | HTMLTemplateEscapingPassthrough.go:57:24:57:38 | call to UserAgent | untrusted source | HTMLTemplateEscapingPassthrough.go:57:11:57:39 | type conversion | converted |
-| HTMLTemplateEscapingPassthrough.go:62:44:62:44 | f | HTMLTemplateEscapingPassthrough.go:61:27:61:41 | call to UserAgent : string | HTMLTemplateEscapingPassthrough.go:62:44:62:44 | f | Data from an $@ will not be auto-escaped because it was $@ to template.Srcset | HTMLTemplateEscapingPassthrough.go:61:27:61:41 | call to UserAgent | untrusted source | HTMLTemplateEscapingPassthrough.go:61:11:61:42 | type conversion | converted |
-| HTMLTemplateEscapingPassthrough.go:66:38:66:38 | g | HTMLTemplateEscapingPassthrough.go:65:24:65:38 | call to UserAgent : string | HTMLTemplateEscapingPassthrough.go:66:38:66:38 | g | Data from an $@ will not be auto-escaped because it was $@ to template.URL | HTMLTemplateEscapingPassthrough.go:65:24:65:38 | call to UserAgent | untrusted source | HTMLTemplateEscapingPassthrough.go:65:11:65:39 | type conversion | converted |
+| HTMLTemplateEscapingPassthrough.go:29:39:29:39 | a | HTMLTemplateEscapingPassthrough.go:28:26:28:40 | call to UserAgent | HTMLTemplateEscapingPassthrough.go:29:39:29:39 | a | Data from an $@ will not be auto-escaped because it was $@ to template.HTML | HTMLTemplateEscapingPassthrough.go:28:26:28:40 | call to UserAgent | untrusted source | HTMLTemplateEscapingPassthrough.go:28:12:28:41 | type conversion | converted |
+| HTMLTemplateEscapingPassthrough.go:35:40:35:40 | a | HTMLTemplateEscapingPassthrough.go:34:23:34:37 | call to UserAgent | HTMLTemplateEscapingPassthrough.go:35:40:35:40 | a | Data from an $@ will not be auto-escaped because it was $@ to template.HTML | HTMLTemplateEscapingPassthrough.go:34:23:34:37 | call to UserAgent | untrusted source | HTMLTemplateEscapingPassthrough.go:34:9:34:38 | type conversion | converted |
+| HTMLTemplateEscapingPassthrough.go:40:40:40:40 | a | HTMLTemplateEscapingPassthrough.go:39:19:39:33 | call to UserAgent | HTMLTemplateEscapingPassthrough.go:40:40:40:40 | a | Data from an $@ will not be auto-escaped because it was $@ to template.HTML | HTMLTemplateEscapingPassthrough.go:39:19:39:33 | call to UserAgent | untrusted source | HTMLTemplateEscapingPassthrough.go:39:9:39:34 | type conversion | converted |
+| HTMLTemplateEscapingPassthrough.go:46:41:46:41 | c | HTMLTemplateEscapingPassthrough.go:45:29:45:43 | call to UserAgent | HTMLTemplateEscapingPassthrough.go:46:41:46:41 | c | Data from an $@ will not be auto-escaped because it was $@ to template.HTMLAttr | HTMLTemplateEscapingPassthrough.go:45:29:45:43 | call to UserAgent | untrusted source | HTMLTemplateEscapingPassthrough.go:45:11:45:44 | type conversion | converted |
+| HTMLTemplateEscapingPassthrough.go:50:44:50:44 | d | HTMLTemplateEscapingPassthrough.go:49:23:49:37 | call to UserAgent | HTMLTemplateEscapingPassthrough.go:50:44:50:44 | d | Data from an $@ will not be auto-escaped because it was $@ to template.JS | HTMLTemplateEscapingPassthrough.go:49:23:49:37 | call to UserAgent | untrusted source | HTMLTemplateEscapingPassthrough.go:49:11:49:38 | type conversion | converted |
+| HTMLTemplateEscapingPassthrough.go:54:44:54:44 | e | HTMLTemplateEscapingPassthrough.go:53:26:53:40 | call to UserAgent | HTMLTemplateEscapingPassthrough.go:54:44:54:44 | e | Data from an $@ will not be auto-escaped because it was $@ to template.JSStr | HTMLTemplateEscapingPassthrough.go:53:26:53:40 | call to UserAgent | untrusted source | HTMLTemplateEscapingPassthrough.go:53:11:53:41 | type conversion | converted |
+| HTMLTemplateEscapingPassthrough.go:58:38:58:38 | b | HTMLTemplateEscapingPassthrough.go:57:24:57:38 | call to UserAgent | HTMLTemplateEscapingPassthrough.go:58:38:58:38 | b | Data from an $@ will not be auto-escaped because it was $@ to template.CSS | HTMLTemplateEscapingPassthrough.go:57:24:57:38 | call to UserAgent | untrusted source | HTMLTemplateEscapingPassthrough.go:57:11:57:39 | type conversion | converted |
+| HTMLTemplateEscapingPassthrough.go:62:44:62:44 | f | HTMLTemplateEscapingPassthrough.go:61:27:61:41 | call to UserAgent | HTMLTemplateEscapingPassthrough.go:62:44:62:44 | f | Data from an $@ will not be auto-escaped because it was $@ to template.Srcset | HTMLTemplateEscapingPassthrough.go:61:27:61:41 | call to UserAgent | untrusted source | HTMLTemplateEscapingPassthrough.go:61:11:61:42 | type conversion | converted |
+| HTMLTemplateEscapingPassthrough.go:66:38:66:38 | g | HTMLTemplateEscapingPassthrough.go:65:24:65:38 | call to UserAgent | HTMLTemplateEscapingPassthrough.go:66:38:66:38 | g | Data from an $@ will not be auto-escaped because it was $@ to template.URL | HTMLTemplateEscapingPassthrough.go:65:24:65:38 | call to UserAgent | untrusted source | HTMLTemplateEscapingPassthrough.go:65:11:65:39 | type conversion | converted |
diff --git a/go/ql/test/experimental/CWE-918/SSRF.expected b/go/ql/test/experimental/CWE-918/SSRF.expected
index 31b9e81ff89..6617c2ee474 100644
--- a/go/ql/test/experimental/CWE-918/SSRF.expected
+++ b/go/ql/test/experimental/CWE-918/SSRF.expected
@@ -1,68 +1,68 @@
 edges
-| builtin.go:19:12:19:34 | call to FormValue : string | builtin.go:22:21:22:62 | ...+... |
-| builtin.go:83:21:83:31 | call to Referer : string | builtin.go:88:27:88:40 | untrustedInput |
-| builtin.go:97:21:97:31 | call to Referer : string | builtin.go:101:36:101:49 | untrustedInput |
-| builtin.go:111:21:111:31 | call to Referer : string | builtin.go:114:15:114:28 | untrustedInput |
-| builtin.go:129:21:129:31 | call to Referer : string | builtin.go:132:38:132:51 | untrustedInput |
-| new-tests.go:26:26:26:30 | &... : pointer type | new-tests.go:31:11:31:57 | call to Sprintf |
-| new-tests.go:26:26:26:30 | &... : pointer type | new-tests.go:32:11:32:57 | call to Sprintf |
-| new-tests.go:26:26:26:30 | &... : pointer type | new-tests.go:35:12:35:58 | call to Sprintf |
-| new-tests.go:39:18:39:30 | call to Param : string | new-tests.go:47:11:47:46 | ...+... |
-| new-tests.go:49:18:49:30 | call to Query : string | new-tests.go:50:11:50:46 | ...+... |
-| new-tests.go:62:31:62:38 | selection of Body : ReadCloser | new-tests.go:68:11:68:57 | call to Sprintf |
-| new-tests.go:62:31:62:38 | selection of Body : ReadCloser | new-tests.go:69:11:69:57 | call to Sprintf |
-| new-tests.go:62:31:62:38 | selection of Body : ReadCloser | new-tests.go:74:12:74:58 | call to Sprintf |
-| new-tests.go:78:18:78:24 | selection of URL : pointer type | new-tests.go:79:11:79:46 | ...+... |
-| new-tests.go:81:37:81:43 | selection of URL : pointer type | new-tests.go:82:11:82:46 | ...+... |
-| new-tests.go:86:10:86:20 | call to Vars : map type | new-tests.go:88:11:88:46 | ...+... |
-| new-tests.go:95:18:95:45 | call to URLParam : string | new-tests.go:96:11:96:46 | ...+... |
+| builtin.go:19:12:19:34 | call to FormValue | builtin.go:22:21:22:62 | ...+... |
+| builtin.go:83:21:83:31 | call to Referer | builtin.go:88:27:88:40 | untrustedInput |
+| builtin.go:97:21:97:31 | call to Referer | builtin.go:101:36:101:49 | untrustedInput |
+| builtin.go:111:21:111:31 | call to Referer | builtin.go:114:15:114:28 | untrustedInput |
+| builtin.go:129:21:129:31 | call to Referer | builtin.go:132:38:132:51 | untrustedInput |
+| new-tests.go:26:26:26:30 | &... | new-tests.go:31:11:31:57 | call to Sprintf |
+| new-tests.go:26:26:26:30 | &... | new-tests.go:32:11:32:57 | call to Sprintf |
+| new-tests.go:26:26:26:30 | &... | new-tests.go:35:12:35:58 | call to Sprintf |
+| new-tests.go:39:18:39:30 | call to Param | new-tests.go:47:11:47:46 | ...+... |
+| new-tests.go:49:18:49:30 | call to Query | new-tests.go:50:11:50:46 | ...+... |
+| new-tests.go:62:31:62:38 | selection of Body | new-tests.go:68:11:68:57 | call to Sprintf |
+| new-tests.go:62:31:62:38 | selection of Body | new-tests.go:69:11:69:57 | call to Sprintf |
+| new-tests.go:62:31:62:38 | selection of Body | new-tests.go:74:12:74:58 | call to Sprintf |
+| new-tests.go:78:18:78:24 | selection of URL | new-tests.go:79:11:79:46 | ...+... |
+| new-tests.go:81:37:81:43 | selection of URL | new-tests.go:82:11:82:46 | ...+... |
+| new-tests.go:86:10:86:20 | call to Vars | new-tests.go:88:11:88:46 | ...+... |
+| new-tests.go:95:18:95:45 | call to URLParam | new-tests.go:96:11:96:46 | ...+... |
 nodes
-| builtin.go:19:12:19:34 | call to FormValue : string | semmle.label | call to FormValue : string |
+| builtin.go:19:12:19:34 | call to FormValue | semmle.label | call to FormValue |
 | builtin.go:22:21:22:62 | ...+... | semmle.label | ...+... |
-| builtin.go:83:21:83:31 | call to Referer : string | semmle.label | call to Referer : string |
+| builtin.go:83:21:83:31 | call to Referer | semmle.label | call to Referer |
 | builtin.go:88:27:88:40 | untrustedInput | semmle.label | untrustedInput |
-| builtin.go:97:21:97:31 | call to Referer : string | semmle.label | call to Referer : string |
+| builtin.go:97:21:97:31 | call to Referer | semmle.label | call to Referer |
 | builtin.go:101:36:101:49 | untrustedInput | semmle.label | untrustedInput |
-| builtin.go:111:21:111:31 | call to Referer : string | semmle.label | call to Referer : string |
+| builtin.go:111:21:111:31 | call to Referer | semmle.label | call to Referer |
 | builtin.go:114:15:114:28 | untrustedInput | semmle.label | untrustedInput |
-| builtin.go:129:21:129:31 | call to Referer : string | semmle.label | call to Referer : string |
+| builtin.go:129:21:129:31 | call to Referer | semmle.label | call to Referer |
 | builtin.go:132:38:132:51 | untrustedInput | semmle.label | untrustedInput |
-| new-tests.go:26:26:26:30 | &... : pointer type | semmle.label | &... : pointer type |
+| new-tests.go:26:26:26:30 | &... | semmle.label | &... |
 | new-tests.go:31:11:31:57 | call to Sprintf | semmle.label | call to Sprintf |
 | new-tests.go:32:11:32:57 | call to Sprintf | semmle.label | call to Sprintf |
 | new-tests.go:35:12:35:58 | call to Sprintf | semmle.label | call to Sprintf |
-| new-tests.go:39:18:39:30 | call to Param : string | semmle.label | call to Param : string |
+| new-tests.go:39:18:39:30 | call to Param | semmle.label | call to Param |
 | new-tests.go:47:11:47:46 | ...+... | semmle.label | ...+... |
-| new-tests.go:49:18:49:30 | call to Query : string | semmle.label | call to Query : string |
+| new-tests.go:49:18:49:30 | call to Query | semmle.label | call to Query |
 | new-tests.go:50:11:50:46 | ...+... | semmle.label | ...+... |
-| new-tests.go:62:31:62:38 | selection of Body : ReadCloser | semmle.label | selection of Body : ReadCloser |
+| new-tests.go:62:31:62:38 | selection of Body | semmle.label | selection of Body |
 | new-tests.go:68:11:68:57 | call to Sprintf | semmle.label | call to Sprintf |
 | new-tests.go:69:11:69:57 | call to Sprintf | semmle.label | call to Sprintf |
 | new-tests.go:74:12:74:58 | call to Sprintf | semmle.label | call to Sprintf |
-| new-tests.go:78:18:78:24 | selection of URL : pointer type | semmle.label | selection of URL : pointer type |
+| new-tests.go:78:18:78:24 | selection of URL | semmle.label | selection of URL |
 | new-tests.go:79:11:79:46 | ...+... | semmle.label | ...+... |
-| new-tests.go:81:37:81:43 | selection of URL : pointer type | semmle.label | selection of URL : pointer type |
+| new-tests.go:81:37:81:43 | selection of URL | semmle.label | selection of URL |
 | new-tests.go:82:11:82:46 | ...+... | semmle.label | ...+... |
-| new-tests.go:86:10:86:20 | call to Vars : map type | semmle.label | call to Vars : map type |
+| new-tests.go:86:10:86:20 | call to Vars | semmle.label | call to Vars |
 | new-tests.go:88:11:88:46 | ...+... | semmle.label | ...+... |
-| new-tests.go:95:18:95:45 | call to URLParam : string | semmle.label | call to URLParam : string |
+| new-tests.go:95:18:95:45 | call to URLParam | semmle.label | call to URLParam |
 | new-tests.go:96:11:96:46 | ...+... | semmle.label | ...+... |
 subpaths
 #select
-| builtin.go:22:12:22:63 | call to Get | builtin.go:19:12:19:34 | call to FormValue : string | builtin.go:22:21:22:62 | ...+... | The URL of this request depends on a user-provided value. |
-| builtin.go:88:12:88:53 | call to Dial | builtin.go:83:21:83:31 | call to Referer : string | builtin.go:88:27:88:40 | untrustedInput | The URL of this request depends on a user-provided value. |
-| builtin.go:102:13:102:40 | call to DialConfig | builtin.go:97:21:97:31 | call to Referer : string | builtin.go:101:36:101:49 | untrustedInput | The URL of this request depends on a user-provided value. |
-| builtin.go:114:3:114:39 | call to Dial | builtin.go:111:21:111:31 | call to Referer : string | builtin.go:114:15:114:28 | untrustedInput | The URL of this request depends on a user-provided value. |
-| builtin.go:132:3:132:62 | call to DialContext | builtin.go:129:21:129:31 | call to Referer : string | builtin.go:132:38:132:51 | untrustedInput | The URL of this request depends on a user-provided value. |
-| new-tests.go:31:2:31:58 | call to Get | new-tests.go:26:26:26:30 | &... : pointer type | new-tests.go:31:11:31:57 | call to Sprintf | The URL of this request depends on a user-provided value. |
-| new-tests.go:32:2:32:58 | call to Get | new-tests.go:26:26:26:30 | &... : pointer type | new-tests.go:32:11:32:57 | call to Sprintf | The URL of this request depends on a user-provided value. |
-| new-tests.go:35:3:35:59 | call to Get | new-tests.go:26:26:26:30 | &... : pointer type | new-tests.go:35:12:35:58 | call to Sprintf | The URL of this request depends on a user-provided value. |
-| new-tests.go:47:2:47:47 | call to Get | new-tests.go:39:18:39:30 | call to Param : string | new-tests.go:47:11:47:46 | ...+... | The URL of this request depends on a user-provided value. |
-| new-tests.go:50:2:50:47 | call to Get | new-tests.go:49:18:49:30 | call to Query : string | new-tests.go:50:11:50:46 | ...+... | The URL of this request depends on a user-provided value. |
-| new-tests.go:68:2:68:58 | call to Get | new-tests.go:62:31:62:38 | selection of Body : ReadCloser | new-tests.go:68:11:68:57 | call to Sprintf | The URL of this request depends on a user-provided value. |
-| new-tests.go:69:2:69:58 | call to Get | new-tests.go:62:31:62:38 | selection of Body : ReadCloser | new-tests.go:69:11:69:57 | call to Sprintf | The URL of this request depends on a user-provided value. |
-| new-tests.go:74:3:74:59 | call to Get | new-tests.go:62:31:62:38 | selection of Body : ReadCloser | new-tests.go:74:12:74:58 | call to Sprintf | The URL of this request depends on a user-provided value. |
-| new-tests.go:79:2:79:47 | call to Get | new-tests.go:78:18:78:24 | selection of URL : pointer type | new-tests.go:79:11:79:46 | ...+... | The URL of this request depends on a user-provided value. |
-| new-tests.go:82:2:82:47 | call to Get | new-tests.go:81:37:81:43 | selection of URL : pointer type | new-tests.go:82:11:82:46 | ...+... | The URL of this request depends on a user-provided value. |
-| new-tests.go:88:2:88:47 | call to Get | new-tests.go:86:10:86:20 | call to Vars : map type | new-tests.go:88:11:88:46 | ...+... | The URL of this request depends on a user-provided value. |
-| new-tests.go:96:2:96:47 | call to Get | new-tests.go:95:18:95:45 | call to URLParam : string | new-tests.go:96:11:96:46 | ...+... | The URL of this request depends on a user-provided value. |
+| builtin.go:22:12:22:63 | call to Get | builtin.go:19:12:19:34 | call to FormValue | builtin.go:22:21:22:62 | ...+... | The URL of this request depends on a user-provided value. |
+| builtin.go:88:12:88:53 | call to Dial | builtin.go:83:21:83:31 | call to Referer | builtin.go:88:27:88:40 | untrustedInput | The URL of this request depends on a user-provided value. |
+| builtin.go:102:13:102:40 | call to DialConfig | builtin.go:97:21:97:31 | call to Referer | builtin.go:101:36:101:49 | untrustedInput | The URL of this request depends on a user-provided value. |
+| builtin.go:114:3:114:39 | call to Dial | builtin.go:111:21:111:31 | call to Referer | builtin.go:114:15:114:28 | untrustedInput | The URL of this request depends on a user-provided value. |
+| builtin.go:132:3:132:62 | call to DialContext | builtin.go:129:21:129:31 | call to Referer | builtin.go:132:38:132:51 | untrustedInput | The URL of this request depends on a user-provided value. |
+| new-tests.go:31:2:31:58 | call to Get | new-tests.go:26:26:26:30 | &... | new-tests.go:31:11:31:57 | call to Sprintf | The URL of this request depends on a user-provided value. |
+| new-tests.go:32:2:32:58 | call to Get | new-tests.go:26:26:26:30 | &... | new-tests.go:32:11:32:57 | call to Sprintf | The URL of this request depends on a user-provided value. |
+| new-tests.go:35:3:35:59 | call to Get | new-tests.go:26:26:26:30 | &... | new-tests.go:35:12:35:58 | call to Sprintf | The URL of this request depends on a user-provided value. |
+| new-tests.go:47:2:47:47 | call to Get | new-tests.go:39:18:39:30 | call to Param | new-tests.go:47:11:47:46 | ...+... | The URL of this request depends on a user-provided value. |
+| new-tests.go:50:2:50:47 | call to Get | new-tests.go:49:18:49:30 | call to Query | new-tests.go:50:11:50:46 | ...+... | The URL of this request depends on a user-provided value. |
+| new-tests.go:68:2:68:58 | call to Get | new-tests.go:62:31:62:38 | selection of Body | new-tests.go:68:11:68:57 | call to Sprintf | The URL of this request depends on a user-provided value. |
+| new-tests.go:69:2:69:58 | call to Get | new-tests.go:62:31:62:38 | selection of Body | new-tests.go:69:11:69:57 | call to Sprintf | The URL of this request depends on a user-provided value. |
+| new-tests.go:74:3:74:59 | call to Get | new-tests.go:62:31:62:38 | selection of Body | new-tests.go:74:12:74:58 | call to Sprintf | The URL of this request depends on a user-provided value. |
+| new-tests.go:79:2:79:47 | call to Get | new-tests.go:78:18:78:24 | selection of URL | new-tests.go:79:11:79:46 | ...+... | The URL of this request depends on a user-provided value. |
+| new-tests.go:82:2:82:47 | call to Get | new-tests.go:81:37:81:43 | selection of URL | new-tests.go:82:11:82:46 | ...+... | The URL of this request depends on a user-provided value. |
+| new-tests.go:88:2:88:47 | call to Get | new-tests.go:86:10:86:20 | call to Vars | new-tests.go:88:11:88:46 | ...+... | The URL of this request depends on a user-provided value. |
+| new-tests.go:96:2:96:47 | call to Get | new-tests.go:95:18:95:45 | call to URLParam | new-tests.go:96:11:96:46 | ...+... | The URL of this request depends on a user-provided value. |
diff --git a/go/ql/test/experimental/Unsafe/WrongUsageOfUnsafe.expected b/go/ql/test/experimental/Unsafe/WrongUsageOfUnsafe.expected
index 277a4b6df90..612c6ef1e51 100644
--- a/go/ql/test/experimental/Unsafe/WrongUsageOfUnsafe.expected
+++ b/go/ql/test/experimental/Unsafe/WrongUsageOfUnsafe.expected
@@ -1,62 +1,62 @@
 edges
-| WrongUsageOfUnsafe.go:17:24:17:48 | type conversion : unsafe.Pointer | WrongUsageOfUnsafe.go:17:13:17:49 | type conversion |
-| WrongUsageOfUnsafe.go:34:24:34:51 | type conversion : unsafe.Pointer | WrongUsageOfUnsafe.go:34:13:34:52 | type conversion |
-| WrongUsageOfUnsafe.go:55:24:55:51 | type conversion : unsafe.Pointer | WrongUsageOfUnsafe.go:55:13:55:52 | type conversion |
-| WrongUsageOfUnsafe.go:77:27:77:54 | type conversion : unsafe.Pointer | WrongUsageOfUnsafe.go:77:16:77:55 | type conversion |
-| WrongUsageOfUnsafe.go:93:20:93:44 | type conversion : unsafe.Pointer | WrongUsageOfUnsafe.go:93:13:93:45 | type conversion |
-| WrongUsageOfUnsafe.go:111:31:111:58 | type conversion : unsafe.Pointer | WrongUsageOfUnsafe.go:111:16:111:59 | type conversion |
-| WrongUsageOfUnsafe.go:129:31:129:55 | type conversion : unsafe.Pointer | WrongUsageOfUnsafe.go:129:16:129:56 | type conversion |
-| WrongUsageOfUnsafe.go:149:31:149:55 | type conversion : unsafe.Pointer | WrongUsageOfUnsafe.go:149:16:149:56 | type conversion |
-| WrongUsageOfUnsafe.go:166:33:166:57 | type conversion : unsafe.Pointer | WrongUsageOfUnsafe.go:166:16:166:58 | type conversion |
-| WrongUsageOfUnsafe.go:189:31:189:55 | type conversion : unsafe.Pointer | WrongUsageOfUnsafe.go:189:16:189:56 | type conversion |
-| WrongUsageOfUnsafe.go:211:31:211:60 | type conversion : unsafe.Pointer | WrongUsageOfUnsafe.go:211:16:211:61 | type conversion |
-| WrongUsageOfUnsafe.go:227:31:227:55 | type conversion : unsafe.Pointer | WrongUsageOfUnsafe.go:236:21:236:23 | definition of req : unsafe.Pointer |
-| WrongUsageOfUnsafe.go:236:21:236:23 | definition of req : unsafe.Pointer | WrongUsageOfUnsafe.go:243:9:243:27 | type conversion |
-| WrongUsageOfUnsafe.go:256:28:256:52 | type conversion : unsafe.Pointer | WrongUsageOfUnsafe.go:256:16:256:53 | type conversion |
-| WrongUsageOfUnsafe.go:274:25:274:49 | type conversion : unsafe.Pointer | WrongUsageOfUnsafe.go:274:16:274:50 | type conversion |
-| WrongUsageOfUnsafe.go:292:23:292:47 | type conversion : unsafe.Pointer | WrongUsageOfUnsafe.go:292:16:292:48 | type conversion |
+| WrongUsageOfUnsafe.go:17:24:17:48 | type conversion | WrongUsageOfUnsafe.go:17:13:17:49 | type conversion |
+| WrongUsageOfUnsafe.go:34:24:34:51 | type conversion | WrongUsageOfUnsafe.go:34:13:34:52 | type conversion |
+| WrongUsageOfUnsafe.go:55:24:55:51 | type conversion | WrongUsageOfUnsafe.go:55:13:55:52 | type conversion |
+| WrongUsageOfUnsafe.go:77:27:77:54 | type conversion | WrongUsageOfUnsafe.go:77:16:77:55 | type conversion |
+| WrongUsageOfUnsafe.go:93:20:93:44 | type conversion | WrongUsageOfUnsafe.go:93:13:93:45 | type conversion |
+| WrongUsageOfUnsafe.go:111:31:111:58 | type conversion | WrongUsageOfUnsafe.go:111:16:111:59 | type conversion |
+| WrongUsageOfUnsafe.go:129:31:129:55 | type conversion | WrongUsageOfUnsafe.go:129:16:129:56 | type conversion |
+| WrongUsageOfUnsafe.go:149:31:149:55 | type conversion | WrongUsageOfUnsafe.go:149:16:149:56 | type conversion |
+| WrongUsageOfUnsafe.go:166:33:166:57 | type conversion | WrongUsageOfUnsafe.go:166:16:166:58 | type conversion |
+| WrongUsageOfUnsafe.go:189:31:189:55 | type conversion | WrongUsageOfUnsafe.go:189:16:189:56 | type conversion |
+| WrongUsageOfUnsafe.go:211:31:211:60 | type conversion | WrongUsageOfUnsafe.go:211:16:211:61 | type conversion |
+| WrongUsageOfUnsafe.go:227:31:227:55 | type conversion | WrongUsageOfUnsafe.go:236:21:236:23 | definition of req |
+| WrongUsageOfUnsafe.go:236:21:236:23 | definition of req | WrongUsageOfUnsafe.go:243:9:243:27 | type conversion |
+| WrongUsageOfUnsafe.go:256:28:256:52 | type conversion | WrongUsageOfUnsafe.go:256:16:256:53 | type conversion |
+| WrongUsageOfUnsafe.go:274:25:274:49 | type conversion | WrongUsageOfUnsafe.go:274:16:274:50 | type conversion |
+| WrongUsageOfUnsafe.go:292:23:292:47 | type conversion | WrongUsageOfUnsafe.go:292:16:292:48 | type conversion |
 nodes
 | WrongUsageOfUnsafe.go:17:13:17:49 | type conversion | semmle.label | type conversion |
-| WrongUsageOfUnsafe.go:17:24:17:48 | type conversion : unsafe.Pointer | semmle.label | type conversion : unsafe.Pointer |
+| WrongUsageOfUnsafe.go:17:24:17:48 | type conversion | semmle.label | type conversion |
 | WrongUsageOfUnsafe.go:34:13:34:52 | type conversion | semmle.label | type conversion |
-| WrongUsageOfUnsafe.go:34:24:34:51 | type conversion : unsafe.Pointer | semmle.label | type conversion : unsafe.Pointer |
+| WrongUsageOfUnsafe.go:34:24:34:51 | type conversion | semmle.label | type conversion |
 | WrongUsageOfUnsafe.go:55:13:55:52 | type conversion | semmle.label | type conversion |
-| WrongUsageOfUnsafe.go:55:24:55:51 | type conversion : unsafe.Pointer | semmle.label | type conversion : unsafe.Pointer |
+| WrongUsageOfUnsafe.go:55:24:55:51 | type conversion | semmle.label | type conversion |
 | WrongUsageOfUnsafe.go:77:16:77:55 | type conversion | semmle.label | type conversion |
-| WrongUsageOfUnsafe.go:77:27:77:54 | type conversion : unsafe.Pointer | semmle.label | type conversion : unsafe.Pointer |
+| WrongUsageOfUnsafe.go:77:27:77:54 | type conversion | semmle.label | type conversion |
 | WrongUsageOfUnsafe.go:93:13:93:45 | type conversion | semmle.label | type conversion |
-| WrongUsageOfUnsafe.go:93:20:93:44 | type conversion : unsafe.Pointer | semmle.label | type conversion : unsafe.Pointer |
+| WrongUsageOfUnsafe.go:93:20:93:44 | type conversion | semmle.label | type conversion |
 | WrongUsageOfUnsafe.go:111:16:111:59 | type conversion | semmle.label | type conversion |
-| WrongUsageOfUnsafe.go:111:31:111:58 | type conversion : unsafe.Pointer | semmle.label | type conversion : unsafe.Pointer |
+| WrongUsageOfUnsafe.go:111:31:111:58 | type conversion | semmle.label | type conversion |
 | WrongUsageOfUnsafe.go:129:16:129:56 | type conversion | semmle.label | type conversion |
-| WrongUsageOfUnsafe.go:129:31:129:55 | type conversion : unsafe.Pointer | semmle.label | type conversion : unsafe.Pointer |
+| WrongUsageOfUnsafe.go:129:31:129:55 | type conversion | semmle.label | type conversion |
 | WrongUsageOfUnsafe.go:149:16:149:56 | type conversion | semmle.label | type conversion |
-| WrongUsageOfUnsafe.go:149:31:149:55 | type conversion : unsafe.Pointer | semmle.label | type conversion : unsafe.Pointer |
+| WrongUsageOfUnsafe.go:149:31:149:55 | type conversion | semmle.label | type conversion |
 | WrongUsageOfUnsafe.go:166:16:166:58 | type conversion | semmle.label | type conversion |
-| WrongUsageOfUnsafe.go:166:33:166:57 | type conversion : unsafe.Pointer | semmle.label | type conversion : unsafe.Pointer |
+| WrongUsageOfUnsafe.go:166:33:166:57 | type conversion | semmle.label | type conversion |
 | WrongUsageOfUnsafe.go:189:16:189:56 | type conversion | semmle.label | type conversion |
-| WrongUsageOfUnsafe.go:189:31:189:55 | type conversion : unsafe.Pointer | semmle.label | type conversion : unsafe.Pointer |
+| WrongUsageOfUnsafe.go:189:31:189:55 | type conversion | semmle.label | type conversion |
 | WrongUsageOfUnsafe.go:211:16:211:61 | type conversion | semmle.label | type conversion |
-| WrongUsageOfUnsafe.go:211:31:211:60 | type conversion : unsafe.Pointer | semmle.label | type conversion : unsafe.Pointer |
-| WrongUsageOfUnsafe.go:227:31:227:55 | type conversion : unsafe.Pointer | semmle.label | type conversion : unsafe.Pointer |
-| WrongUsageOfUnsafe.go:236:21:236:23 | definition of req : unsafe.Pointer | semmle.label | definition of req : unsafe.Pointer |
+| WrongUsageOfUnsafe.go:211:31:211:60 | type conversion | semmle.label | type conversion |
+| WrongUsageOfUnsafe.go:227:31:227:55 | type conversion | semmle.label | type conversion |
+| WrongUsageOfUnsafe.go:236:21:236:23 | definition of req | semmle.label | definition of req |
 | WrongUsageOfUnsafe.go:243:9:243:27 | type conversion | semmle.label | type conversion |
 | WrongUsageOfUnsafe.go:256:16:256:53 | type conversion | semmle.label | type conversion |
-| WrongUsageOfUnsafe.go:256:28:256:52 | type conversion : unsafe.Pointer | semmle.label | type conversion : unsafe.Pointer |
+| WrongUsageOfUnsafe.go:256:28:256:52 | type conversion | semmle.label | type conversion |
 | WrongUsageOfUnsafe.go:274:16:274:50 | type conversion | semmle.label | type conversion |
-| WrongUsageOfUnsafe.go:274:25:274:49 | type conversion : unsafe.Pointer | semmle.label | type conversion : unsafe.Pointer |
+| WrongUsageOfUnsafe.go:274:25:274:49 | type conversion | semmle.label | type conversion |
 | WrongUsageOfUnsafe.go:292:16:292:48 | type conversion | semmle.label | type conversion |
-| WrongUsageOfUnsafe.go:292:23:292:47 | type conversion : unsafe.Pointer | semmle.label | type conversion : unsafe.Pointer |
+| WrongUsageOfUnsafe.go:292:23:292:47 | type conversion | semmle.label | type conversion |
 subpaths
 #select
-| WrongUsageOfUnsafe.go:77:16:77:55 | type conversion | WrongUsageOfUnsafe.go:77:27:77:54 | type conversion : unsafe.Pointer | WrongUsageOfUnsafe.go:77:16:77:55 | type conversion | $@. | WrongUsageOfUnsafe.go:77:27:77:54 | type conversion | Dangerous array type casting to [8]uint8 from an index expression ([8]uint8)[2] (the destination type is 2 elements longer) |
-| WrongUsageOfUnsafe.go:111:16:111:59 | type conversion | WrongUsageOfUnsafe.go:111:31:111:58 | type conversion : unsafe.Pointer | WrongUsageOfUnsafe.go:111:16:111:59 | type conversion | $@. | WrongUsageOfUnsafe.go:111:31:111:58 | type conversion | Dangerous array type casting to [17]uint8 from an index expression ([8]uint8)[0] (the destination type is 9 elements longer) |
-| WrongUsageOfUnsafe.go:129:16:129:56 | type conversion | WrongUsageOfUnsafe.go:129:31:129:55 | type conversion : unsafe.Pointer | WrongUsageOfUnsafe.go:129:16:129:56 | type conversion | $@. | WrongUsageOfUnsafe.go:129:31:129:55 | type conversion | Dangerous array type casting to [17]uint8 from [8]uint8 |
-| WrongUsageOfUnsafe.go:149:16:149:56 | type conversion | WrongUsageOfUnsafe.go:149:31:149:55 | type conversion : unsafe.Pointer | WrongUsageOfUnsafe.go:149:16:149:56 | type conversion | $@. | WrongUsageOfUnsafe.go:149:31:149:55 | type conversion | Dangerous array type casting to [17]uint8 from [8]uint8 |
-| WrongUsageOfUnsafe.go:166:16:166:58 | type conversion | WrongUsageOfUnsafe.go:166:33:166:57 | type conversion : unsafe.Pointer | WrongUsageOfUnsafe.go:166:16:166:58 | type conversion | $@. | WrongUsageOfUnsafe.go:166:33:166:57 | type conversion | Dangerous array type casting to [17]string from [8]string |
-| WrongUsageOfUnsafe.go:189:16:189:56 | type conversion | WrongUsageOfUnsafe.go:189:31:189:55 | type conversion : unsafe.Pointer | WrongUsageOfUnsafe.go:189:16:189:56 | type conversion | $@. | WrongUsageOfUnsafe.go:189:31:189:55 | type conversion | Dangerous type up-casting to [17]uint8 from struct type |
-| WrongUsageOfUnsafe.go:211:16:211:61 | type conversion | WrongUsageOfUnsafe.go:211:31:211:60 | type conversion : unsafe.Pointer | WrongUsageOfUnsafe.go:211:16:211:61 | type conversion | $@. | WrongUsageOfUnsafe.go:211:31:211:60 | type conversion | Dangerous array type casting to [17]uint8 from [8]uint8 |
-| WrongUsageOfUnsafe.go:243:9:243:27 | type conversion | WrongUsageOfUnsafe.go:227:31:227:55 | type conversion : unsafe.Pointer | WrongUsageOfUnsafe.go:243:9:243:27 | type conversion | $@. | WrongUsageOfUnsafe.go:227:31:227:55 | type conversion | Dangerous array type casting to [17]uint8 from [8]uint8 |
-| WrongUsageOfUnsafe.go:256:16:256:53 | type conversion | WrongUsageOfUnsafe.go:256:28:256:52 | type conversion : unsafe.Pointer | WrongUsageOfUnsafe.go:256:16:256:53 | type conversion | $@. | WrongUsageOfUnsafe.go:256:28:256:52 | type conversion | Dangerous array type casting to [4]int64 from [1]int64 |
-| WrongUsageOfUnsafe.go:274:16:274:50 | type conversion | WrongUsageOfUnsafe.go:274:25:274:49 | type conversion : unsafe.Pointer | WrongUsageOfUnsafe.go:274:16:274:50 | type conversion | $@. | WrongUsageOfUnsafe.go:274:25:274:49 | type conversion | Dangerous numeric type casting to int64 from int8 |
-| WrongUsageOfUnsafe.go:292:16:292:48 | type conversion | WrongUsageOfUnsafe.go:292:23:292:47 | type conversion : unsafe.Pointer | WrongUsageOfUnsafe.go:292:16:292:48 | type conversion | $@. | WrongUsageOfUnsafe.go:292:23:292:47 | type conversion | Dangerous numeric type casting to int from int8 |
+| WrongUsageOfUnsafe.go:77:16:77:55 | type conversion | WrongUsageOfUnsafe.go:77:27:77:54 | type conversion | WrongUsageOfUnsafe.go:77:16:77:55 | type conversion | $@. | WrongUsageOfUnsafe.go:77:27:77:54 | type conversion | Dangerous array type casting to [8]uint8 from an index expression ([8]uint8)[2] (the destination type is 2 elements longer) |
+| WrongUsageOfUnsafe.go:111:16:111:59 | type conversion | WrongUsageOfUnsafe.go:111:31:111:58 | type conversion | WrongUsageOfUnsafe.go:111:16:111:59 | type conversion | $@. | WrongUsageOfUnsafe.go:111:31:111:58 | type conversion | Dangerous array type casting to [17]uint8 from an index expression ([8]uint8)[0] (the destination type is 9 elements longer) |
+| WrongUsageOfUnsafe.go:129:16:129:56 | type conversion | WrongUsageOfUnsafe.go:129:31:129:55 | type conversion | WrongUsageOfUnsafe.go:129:16:129:56 | type conversion | $@. | WrongUsageOfUnsafe.go:129:31:129:55 | type conversion | Dangerous array type casting to [17]uint8 from [8]uint8 |
+| WrongUsageOfUnsafe.go:149:16:149:56 | type conversion | WrongUsageOfUnsafe.go:149:31:149:55 | type conversion | WrongUsageOfUnsafe.go:149:16:149:56 | type conversion | $@. | WrongUsageOfUnsafe.go:149:31:149:55 | type conversion | Dangerous array type casting to [17]uint8 from [8]uint8 |
+| WrongUsageOfUnsafe.go:166:16:166:58 | type conversion | WrongUsageOfUnsafe.go:166:33:166:57 | type conversion | WrongUsageOfUnsafe.go:166:16:166:58 | type conversion | $@. | WrongUsageOfUnsafe.go:166:33:166:57 | type conversion | Dangerous array type casting to [17]string from [8]string |
+| WrongUsageOfUnsafe.go:189:16:189:56 | type conversion | WrongUsageOfUnsafe.go:189:31:189:55 | type conversion | WrongUsageOfUnsafe.go:189:16:189:56 | type conversion | $@. | WrongUsageOfUnsafe.go:189:31:189:55 | type conversion | Dangerous type up-casting to [17]uint8 from struct type |
+| WrongUsageOfUnsafe.go:211:16:211:61 | type conversion | WrongUsageOfUnsafe.go:211:31:211:60 | type conversion | WrongUsageOfUnsafe.go:211:16:211:61 | type conversion | $@. | WrongUsageOfUnsafe.go:211:31:211:60 | type conversion | Dangerous array type casting to [17]uint8 from [8]uint8 |
+| WrongUsageOfUnsafe.go:243:9:243:27 | type conversion | WrongUsageOfUnsafe.go:227:31:227:55 | type conversion | WrongUsageOfUnsafe.go:243:9:243:27 | type conversion | $@. | WrongUsageOfUnsafe.go:227:31:227:55 | type conversion | Dangerous array type casting to [17]uint8 from [8]uint8 |
+| WrongUsageOfUnsafe.go:256:16:256:53 | type conversion | WrongUsageOfUnsafe.go:256:28:256:52 | type conversion | WrongUsageOfUnsafe.go:256:16:256:53 | type conversion | $@. | WrongUsageOfUnsafe.go:256:28:256:52 | type conversion | Dangerous array type casting to [4]int64 from [1]int64 |
+| WrongUsageOfUnsafe.go:274:16:274:50 | type conversion | WrongUsageOfUnsafe.go:274:25:274:49 | type conversion | WrongUsageOfUnsafe.go:274:16:274:50 | type conversion | $@. | WrongUsageOfUnsafe.go:274:25:274:49 | type conversion | Dangerous numeric type casting to int64 from int8 |
+| WrongUsageOfUnsafe.go:292:16:292:48 | type conversion | WrongUsageOfUnsafe.go:292:23:292:47 | type conversion | WrongUsageOfUnsafe.go:292:16:292:48 | type conversion | $@. | WrongUsageOfUnsafe.go:292:23:292:47 | type conversion | Dangerous numeric type casting to int from int8 |
diff --git a/go/ql/test/library-tests/semmle/go/dataflow/ChannelField/test.expected b/go/ql/test/library-tests/semmle/go/dataflow/ChannelField/test.expected
index f8721f61972..523d27be250 100644
--- a/go/ql/test/library-tests/semmle/go/dataflow/ChannelField/test.expected
+++ b/go/ql/test/library-tests/semmle/go/dataflow/ChannelField/test.expected
@@ -1,22 +1,22 @@
 edges
-| test.go:9:9:9:11 | selection of c [collection] : string | test.go:9:7:9:11 | <-... |
-| test.go:13:16:13:16 | definition of s [pointer, c, collection] : string | test.go:16:2:16:2 | s [pointer, c, collection] : string |
-| test.go:15:10:15:17 | call to source : string | test.go:16:9:16:12 | data : string |
-| test.go:16:2:16:2 | implicit dereference [c, collection] : string | test.go:13:16:13:16 | definition of s [pointer, c, collection] : string |
-| test.go:16:2:16:2 | implicit dereference [c, collection] : string | test.go:16:2:16:4 | selection of c [collection] : string |
-| test.go:16:2:16:2 | s [pointer, c, collection] : string | test.go:16:2:16:2 | implicit dereference [c, collection] : string |
-| test.go:16:2:16:4 | selection of c [collection] : string | test.go:9:9:9:11 | selection of c [collection] : string |
-| test.go:16:2:16:4 | selection of c [collection] : string | test.go:16:2:16:2 | implicit dereference [c, collection] : string |
-| test.go:16:9:16:12 | data : string | test.go:16:2:16:4 | selection of c [collection] : string |
+| test.go:9:9:9:11 | selection of c [collection] | test.go:9:7:9:11 | <-... |
+| test.go:13:16:13:16 | definition of s [pointer, c, collection] | test.go:16:2:16:2 | s [pointer, c, collection] |
+| test.go:15:10:15:17 | call to source | test.go:16:9:16:12 | data |
+| test.go:16:2:16:2 | implicit dereference [c, collection] | test.go:13:16:13:16 | definition of s [pointer, c, collection] |
+| test.go:16:2:16:2 | implicit dereference [c, collection] | test.go:16:2:16:4 | selection of c [collection] |
+| test.go:16:2:16:2 | s [pointer, c, collection] | test.go:16:2:16:2 | implicit dereference [c, collection] |
+| test.go:16:2:16:4 | selection of c [collection] | test.go:9:9:9:11 | selection of c [collection] |
+| test.go:16:2:16:4 | selection of c [collection] | test.go:16:2:16:2 | implicit dereference [c, collection] |
+| test.go:16:9:16:12 | data | test.go:16:2:16:4 | selection of c [collection] |
 nodes
 | test.go:9:7:9:11 | <-... | semmle.label | <-... |
-| test.go:9:9:9:11 | selection of c [collection] : string | semmle.label | selection of c [collection] : string |
-| test.go:13:16:13:16 | definition of s [pointer, c, collection] : string | semmle.label | definition of s [pointer, c, collection] : string |
-| test.go:15:10:15:17 | call to source : string | semmle.label | call to source : string |
-| test.go:16:2:16:2 | implicit dereference [c, collection] : string | semmle.label | implicit dereference [c, collection] : string |
-| test.go:16:2:16:2 | s [pointer, c, collection] : string | semmle.label | s [pointer, c, collection] : string |
-| test.go:16:2:16:4 | selection of c [collection] : string | semmle.label | selection of c [collection] : string |
-| test.go:16:9:16:12 | data : string | semmle.label | data : string |
+| test.go:9:9:9:11 | selection of c [collection] | semmle.label | selection of c [collection] |
+| test.go:13:16:13:16 | definition of s [pointer, c, collection] | semmle.label | definition of s [pointer, c, collection] |
+| test.go:15:10:15:17 | call to source | semmle.label | call to source |
+| test.go:16:2:16:2 | implicit dereference [c, collection] | semmle.label | implicit dereference [c, collection] |
+| test.go:16:2:16:2 | s [pointer, c, collection] | semmle.label | s [pointer, c, collection] |
+| test.go:16:2:16:4 | selection of c [collection] | semmle.label | selection of c [collection] |
+| test.go:16:9:16:12 | data | semmle.label | data |
 subpaths
 #select
-| test.go:15:10:15:17 | call to source : string | test.go:15:10:15:17 | call to source : string | test.go:9:7:9:11 | <-... | path |
+| test.go:15:10:15:17 | call to source | test.go:15:10:15:17 | call to source | test.go:9:7:9:11 | <-... | path |
diff --git a/go/ql/test/library-tests/semmle/go/frameworks/Beego/ReflectedXss.expected b/go/ql/test/library-tests/semmle/go/frameworks/Beego/ReflectedXss.expected
index 6af1a75cbbd..37feb5ef6f5 100644
--- a/go/ql/test/library-tests/semmle/go/frameworks/Beego/ReflectedXss.expected
+++ b/go/ql/test/library-tests/semmle/go/frameworks/Beego/ReflectedXss.expected
@@ -1,123 +1,123 @@
 edges
-| test.go:27:6:27:10 | definition of bound : bindMe | test.go:29:13:29:30 | type conversion |
-| test.go:27:6:27:10 | definition of bound : bindMe | test.go:30:13:30:27 | type conversion |
-| test.go:27:6:27:10 | definition of bound : bindMe | test.go:31:13:31:29 | type conversion |
-| test.go:36:20:36:42 | call to Cookie : string | test.go:36:13:36:43 | type conversion |
-| test.go:41:20:41:31 | call to Data : map type | test.go:41:13:41:52 | type conversion |
-| test.go:46:20:46:43 | call to GetData : basic interface type | test.go:46:13:46:53 | type conversion |
-| test.go:51:20:51:42 | call to Header : string | test.go:51:13:51:43 | type conversion |
-| test.go:56:20:56:41 | call to Param : string | test.go:56:13:56:42 | type conversion |
-| test.go:61:20:61:33 | call to Params : map type | test.go:61:13:61:45 | type conversion |
-| test.go:66:20:66:41 | call to Query : string | test.go:66:13:66:42 | type conversion |
-| test.go:71:20:71:32 | call to Refer : string | test.go:71:13:71:33 | type conversion |
-| test.go:76:20:76:34 | call to Referer : string | test.go:76:13:76:35 | type conversion |
-| test.go:81:20:81:30 | call to URI : string | test.go:81:13:81:31 | type conversion |
-| test.go:86:20:86:30 | call to URL : string | test.go:86:13:86:31 | type conversion |
-| test.go:91:20:91:36 | call to UserAgent : string | test.go:91:13:91:37 | type conversion |
-| test.go:96:14:96:25 | call to Data : map type | test.go:96:14:96:45 | type assertion |
-| test.go:108:14:108:25 | call to Data : map type | test.go:108:14:108:45 | type assertion |
-| test.go:120:14:120:25 | call to Data : map type | test.go:120:14:120:45 | type assertion |
-| test.go:137:23:137:42 | call to Data : map type | test.go:137:23:137:62 | type assertion |
-| test.go:193:15:193:26 | call to Data : map type | test.go:194:14:194:55 | type conversion |
-| test.go:193:15:193:26 | call to Data : map type | test.go:195:14:195:58 | type conversion |
-| test.go:193:15:193:26 | call to Data : map type | test.go:197:14:197:28 | type assertion |
-| test.go:193:15:193:26 | call to Data : map type | test.go:198:14:198:55 | type conversion |
-| test.go:193:15:193:26 | call to Data : map type | test.go:199:14:199:59 | type conversion |
-| test.go:202:18:202:33 | selection of Form : Values | test.go:203:14:203:28 | type conversion |
-| test.go:217:2:217:34 | ... := ...[0] : File | test.go:220:14:220:20 | content |
-| test.go:217:2:217:34 | ... := ...[1] : pointer type | test.go:218:14:218:32 | type conversion |
-| test.go:222:2:222:40 | ... := ...[0] : slice type | test.go:223:14:223:38 | type conversion |
-| test.go:225:7:225:28 | call to GetString : string | test.go:226:14:226:22 | type conversion |
-| test.go:228:8:228:35 | call to GetStrings : slice type | test.go:229:14:229:26 | type conversion |
-| test.go:231:9:231:17 | call to Input : Values | test.go:232:14:232:27 | type conversion |
-| test.go:234:6:234:8 | definition of str : myStruct | test.go:236:14:236:30 | type conversion |
-| test.go:240:15:240:36 | call to GetString : string | test.go:243:21:243:29 | untrusted |
-| test.go:253:23:253:44 | call to GetCookie : string | test.go:253:16:253:45 | type conversion |
-| test.go:264:62:264:83 | call to GetCookie : string | test.go:264:55:264:84 | type conversion |
-| test.go:269:2:269:40 | ... := ...[0] : slice type | test.go:277:21:277:61 | call to GetDisplayString |
-| test.go:269:2:269:40 | ... := ...[0] : slice type | test.go:278:21:278:92 | selection of Filename |
-| test.go:269:2:269:40 | ... := ...[0] : slice type | test.go:279:21:279:96 | selection of Filename |
-| test.go:269:2:269:40 | ... := ...[0] : slice type | test.go:284:3:286:80 | selection of Filename |
-| test.go:269:2:269:40 | ... := ...[0] : slice type | test.go:287:21:287:101 | selection of Filename |
-| test.go:269:2:269:40 | ... := ...[0] : slice type | test.go:288:21:288:101 | selection of Filename |
-| test.go:269:2:269:40 | ... := ...[0] : slice type | test.go:289:21:289:97 | selection of Filename |
-| test.go:269:2:269:40 | ... := ...[0] : slice type | test.go:290:21:290:97 | selection of Filename |
-| test.go:269:2:269:40 | ... := ...[0] : slice type | test.go:291:21:291:102 | selection of Filename |
-| test.go:269:2:269:40 | ... := ...[0] : slice type | test.go:292:21:292:102 | selection of Filename |
-| test.go:269:2:269:40 | ... := ...[0] : slice type | test.go:293:21:293:82 | selection of Filename |
-| test.go:269:2:269:40 | ... := ...[0] : slice type | test.go:295:21:295:133 | selection of Filename |
-| test.go:269:2:269:40 | ... := ...[0] : slice type | test.go:296:21:296:88 | selection of Filename |
-| test.go:269:2:269:40 | ... := ...[0] : slice type | test.go:297:21:297:87 | selection of Filename |
-| test.go:303:15:303:36 | call to GetString : string | test.go:305:21:305:48 | type assertion |
-| test.go:303:15:303:36 | call to GetString : string | test.go:306:21:306:52 | type assertion |
+| test.go:27:6:27:10 | definition of bound | test.go:29:13:29:30 | type conversion |
+| test.go:27:6:27:10 | definition of bound | test.go:30:13:30:27 | type conversion |
+| test.go:27:6:27:10 | definition of bound | test.go:31:13:31:29 | type conversion |
+| test.go:36:20:36:42 | call to Cookie | test.go:36:13:36:43 | type conversion |
+| test.go:41:20:41:31 | call to Data | test.go:41:13:41:52 | type conversion |
+| test.go:46:20:46:43 | call to GetData | test.go:46:13:46:53 | type conversion |
+| test.go:51:20:51:42 | call to Header | test.go:51:13:51:43 | type conversion |
+| test.go:56:20:56:41 | call to Param | test.go:56:13:56:42 | type conversion |
+| test.go:61:20:61:33 | call to Params | test.go:61:13:61:45 | type conversion |
+| test.go:66:20:66:41 | call to Query | test.go:66:13:66:42 | type conversion |
+| test.go:71:20:71:32 | call to Refer | test.go:71:13:71:33 | type conversion |
+| test.go:76:20:76:34 | call to Referer | test.go:76:13:76:35 | type conversion |
+| test.go:81:20:81:30 | call to URI | test.go:81:13:81:31 | type conversion |
+| test.go:86:20:86:30 | call to URL | test.go:86:13:86:31 | type conversion |
+| test.go:91:20:91:36 | call to UserAgent | test.go:91:13:91:37 | type conversion |
+| test.go:96:14:96:25 | call to Data | test.go:96:14:96:45 | type assertion |
+| test.go:108:14:108:25 | call to Data | test.go:108:14:108:45 | type assertion |
+| test.go:120:14:120:25 | call to Data | test.go:120:14:120:45 | type assertion |
+| test.go:137:23:137:42 | call to Data | test.go:137:23:137:62 | type assertion |
+| test.go:193:15:193:26 | call to Data | test.go:194:14:194:55 | type conversion |
+| test.go:193:15:193:26 | call to Data | test.go:195:14:195:58 | type conversion |
+| test.go:193:15:193:26 | call to Data | test.go:197:14:197:28 | type assertion |
+| test.go:193:15:193:26 | call to Data | test.go:198:14:198:55 | type conversion |
+| test.go:193:15:193:26 | call to Data | test.go:199:14:199:59 | type conversion |
+| test.go:202:18:202:33 | selection of Form | test.go:203:14:203:28 | type conversion |
+| test.go:217:2:217:34 | ... := ...[0] | test.go:220:14:220:20 | content |
+| test.go:217:2:217:34 | ... := ...[1] | test.go:218:14:218:32 | type conversion |
+| test.go:222:2:222:40 | ... := ...[0] | test.go:223:14:223:38 | type conversion |
+| test.go:225:7:225:28 | call to GetString | test.go:226:14:226:22 | type conversion |
+| test.go:228:8:228:35 | call to GetStrings | test.go:229:14:229:26 | type conversion |
+| test.go:231:9:231:17 | call to Input | test.go:232:14:232:27 | type conversion |
+| test.go:234:6:234:8 | definition of str | test.go:236:14:236:30 | type conversion |
+| test.go:240:15:240:36 | call to GetString | test.go:243:21:243:29 | untrusted |
+| test.go:253:23:253:44 | call to GetCookie | test.go:253:16:253:45 | type conversion |
+| test.go:264:62:264:83 | call to GetCookie | test.go:264:55:264:84 | type conversion |
+| test.go:269:2:269:40 | ... := ...[0] | test.go:277:21:277:61 | call to GetDisplayString |
+| test.go:269:2:269:40 | ... := ...[0] | test.go:278:21:278:92 | selection of Filename |
+| test.go:269:2:269:40 | ... := ...[0] | test.go:279:21:279:96 | selection of Filename |
+| test.go:269:2:269:40 | ... := ...[0] | test.go:284:3:286:80 | selection of Filename |
+| test.go:269:2:269:40 | ... := ...[0] | test.go:287:21:287:101 | selection of Filename |
+| test.go:269:2:269:40 | ... := ...[0] | test.go:288:21:288:101 | selection of Filename |
+| test.go:269:2:269:40 | ... := ...[0] | test.go:289:21:289:97 | selection of Filename |
+| test.go:269:2:269:40 | ... := ...[0] | test.go:290:21:290:97 | selection of Filename |
+| test.go:269:2:269:40 | ... := ...[0] | test.go:291:21:291:102 | selection of Filename |
+| test.go:269:2:269:40 | ... := ...[0] | test.go:292:21:292:102 | selection of Filename |
+| test.go:269:2:269:40 | ... := ...[0] | test.go:293:21:293:82 | selection of Filename |
+| test.go:269:2:269:40 | ... := ...[0] | test.go:295:21:295:133 | selection of Filename |
+| test.go:269:2:269:40 | ... := ...[0] | test.go:296:21:296:88 | selection of Filename |
+| test.go:269:2:269:40 | ... := ...[0] | test.go:297:21:297:87 | selection of Filename |
+| test.go:303:15:303:36 | call to GetString | test.go:305:21:305:48 | type assertion |
+| test.go:303:15:303:36 | call to GetString | test.go:306:21:306:52 | type assertion |
 nodes
-| test.go:27:6:27:10 | definition of bound : bindMe | semmle.label | definition of bound : bindMe |
+| test.go:27:6:27:10 | definition of bound | semmle.label | definition of bound |
 | test.go:29:13:29:30 | type conversion | semmle.label | type conversion |
 | test.go:30:13:30:27 | type conversion | semmle.label | type conversion |
 | test.go:31:13:31:29 | type conversion | semmle.label | type conversion |
 | test.go:36:13:36:43 | type conversion | semmle.label | type conversion |
-| test.go:36:20:36:42 | call to Cookie : string | semmle.label | call to Cookie : string |
+| test.go:36:20:36:42 | call to Cookie | semmle.label | call to Cookie |
 | test.go:41:13:41:52 | type conversion | semmle.label | type conversion |
-| test.go:41:20:41:31 | call to Data : map type | semmle.label | call to Data : map type |
+| test.go:41:20:41:31 | call to Data | semmle.label | call to Data |
 | test.go:46:13:46:53 | type conversion | semmle.label | type conversion |
-| test.go:46:20:46:43 | call to GetData : basic interface type | semmle.label | call to GetData : basic interface type |
+| test.go:46:20:46:43 | call to GetData | semmle.label | call to GetData |
 | test.go:51:13:51:43 | type conversion | semmle.label | type conversion |
-| test.go:51:20:51:42 | call to Header : string | semmle.label | call to Header : string |
+| test.go:51:20:51:42 | call to Header | semmle.label | call to Header |
 | test.go:56:13:56:42 | type conversion | semmle.label | type conversion |
-| test.go:56:20:56:41 | call to Param : string | semmle.label | call to Param : string |
+| test.go:56:20:56:41 | call to Param | semmle.label | call to Param |
 | test.go:61:13:61:45 | type conversion | semmle.label | type conversion |
-| test.go:61:20:61:33 | call to Params : map type | semmle.label | call to Params : map type |
+| test.go:61:20:61:33 | call to Params | semmle.label | call to Params |
 | test.go:66:13:66:42 | type conversion | semmle.label | type conversion |
-| test.go:66:20:66:41 | call to Query : string | semmle.label | call to Query : string |
+| test.go:66:20:66:41 | call to Query | semmle.label | call to Query |
 | test.go:71:13:71:33 | type conversion | semmle.label | type conversion |
-| test.go:71:20:71:32 | call to Refer : string | semmle.label | call to Refer : string |
+| test.go:71:20:71:32 | call to Refer | semmle.label | call to Refer |
 | test.go:76:13:76:35 | type conversion | semmle.label | type conversion |
-| test.go:76:20:76:34 | call to Referer : string | semmle.label | call to Referer : string |
+| test.go:76:20:76:34 | call to Referer | semmle.label | call to Referer |
 | test.go:81:13:81:31 | type conversion | semmle.label | type conversion |
-| test.go:81:20:81:30 | call to URI : string | semmle.label | call to URI : string |
+| test.go:81:20:81:30 | call to URI | semmle.label | call to URI |
 | test.go:86:13:86:31 | type conversion | semmle.label | type conversion |
-| test.go:86:20:86:30 | call to URL : string | semmle.label | call to URL : string |
+| test.go:86:20:86:30 | call to URL | semmle.label | call to URL |
 | test.go:91:13:91:37 | type conversion | semmle.label | type conversion |
-| test.go:91:20:91:36 | call to UserAgent : string | semmle.label | call to UserAgent : string |
-| test.go:96:14:96:25 | call to Data : map type | semmle.label | call to Data : map type |
+| test.go:91:20:91:36 | call to UserAgent | semmle.label | call to UserAgent |
+| test.go:96:14:96:25 | call to Data | semmle.label | call to Data |
 | test.go:96:14:96:45 | type assertion | semmle.label | type assertion |
-| test.go:108:14:108:25 | call to Data : map type | semmle.label | call to Data : map type |
+| test.go:108:14:108:25 | call to Data | semmle.label | call to Data |
 | test.go:108:14:108:45 | type assertion | semmle.label | type assertion |
-| test.go:120:14:120:25 | call to Data : map type | semmle.label | call to Data : map type |
+| test.go:120:14:120:25 | call to Data | semmle.label | call to Data |
 | test.go:120:14:120:45 | type assertion | semmle.label | type assertion |
-| test.go:137:23:137:42 | call to Data : map type | semmle.label | call to Data : map type |
+| test.go:137:23:137:42 | call to Data | semmle.label | call to Data |
 | test.go:137:23:137:62 | type assertion | semmle.label | type assertion |
-| test.go:193:15:193:26 | call to Data : map type | semmle.label | call to Data : map type |
+| test.go:193:15:193:26 | call to Data | semmle.label | call to Data |
 | test.go:194:14:194:55 | type conversion | semmle.label | type conversion |
 | test.go:195:14:195:58 | type conversion | semmle.label | type conversion |
 | test.go:197:14:197:28 | type assertion | semmle.label | type assertion |
 | test.go:198:14:198:55 | type conversion | semmle.label | type conversion |
 | test.go:199:14:199:59 | type conversion | semmle.label | type conversion |
-| test.go:202:18:202:33 | selection of Form : Values | semmle.label | selection of Form : Values |
+| test.go:202:18:202:33 | selection of Form | semmle.label | selection of Form |
 | test.go:203:14:203:28 | type conversion | semmle.label | type conversion |
-| test.go:217:2:217:34 | ... := ...[0] : File | semmle.label | ... := ...[0] : File |
-| test.go:217:2:217:34 | ... := ...[1] : pointer type | semmle.label | ... := ...[1] : pointer type |
+| test.go:217:2:217:34 | ... := ...[0] | semmle.label | ... := ...[0] |
+| test.go:217:2:217:34 | ... := ...[1] | semmle.label | ... := ...[1] |
 | test.go:218:14:218:32 | type conversion | semmle.label | type conversion |
 | test.go:220:14:220:20 | content | semmle.label | content |
-| test.go:222:2:222:40 | ... := ...[0] : slice type | semmle.label | ... := ...[0] : slice type |
+| test.go:222:2:222:40 | ... := ...[0] | semmle.label | ... := ...[0] |
 | test.go:223:14:223:38 | type conversion | semmle.label | type conversion |
-| test.go:225:7:225:28 | call to GetString : string | semmle.label | call to GetString : string |
+| test.go:225:7:225:28 | call to GetString | semmle.label | call to GetString |
 | test.go:226:14:226:22 | type conversion | semmle.label | type conversion |
-| test.go:228:8:228:35 | call to GetStrings : slice type | semmle.label | call to GetStrings : slice type |
+| test.go:228:8:228:35 | call to GetStrings | semmle.label | call to GetStrings |
 | test.go:229:14:229:26 | type conversion | semmle.label | type conversion |
-| test.go:231:9:231:17 | call to Input : Values | semmle.label | call to Input : Values |
+| test.go:231:9:231:17 | call to Input | semmle.label | call to Input |
 | test.go:232:14:232:27 | type conversion | semmle.label | type conversion |
-| test.go:234:6:234:8 | definition of str : myStruct | semmle.label | definition of str : myStruct |
+| test.go:234:6:234:8 | definition of str | semmle.label | definition of str |
 | test.go:236:14:236:30 | type conversion | semmle.label | type conversion |
-| test.go:240:15:240:36 | call to GetString : string | semmle.label | call to GetString : string |
+| test.go:240:15:240:36 | call to GetString | semmle.label | call to GetString |
 | test.go:243:21:243:29 | untrusted | semmle.label | untrusted |
 | test.go:253:16:253:45 | type conversion | semmle.label | type conversion |
-| test.go:253:23:253:44 | call to GetCookie : string | semmle.label | call to GetCookie : string |
+| test.go:253:23:253:44 | call to GetCookie | semmle.label | call to GetCookie |
 | test.go:258:16:258:37 | call to GetCookie | semmle.label | call to GetCookie |
 | test.go:259:15:259:41 | call to GetCookie | semmle.label | call to GetCookie |
 | test.go:264:55:264:84 | type conversion | semmle.label | type conversion |
-| test.go:264:62:264:83 | call to GetCookie : string | semmle.label | call to GetCookie : string |
-| test.go:269:2:269:40 | ... := ...[0] : slice type | semmle.label | ... := ...[0] : slice type |
+| test.go:264:62:264:83 | call to GetCookie | semmle.label | call to GetCookie |
+| test.go:269:2:269:40 | ... := ...[0] | semmle.label | ... := ...[0] |
 | test.go:277:21:277:61 | call to GetDisplayString | semmle.label | call to GetDisplayString |
 | test.go:278:21:278:92 | selection of Filename | semmle.label | selection of Filename |
 | test.go:279:21:279:96 | selection of Filename | semmle.label | selection of Filename |
@@ -132,61 +132,61 @@ nodes
 | test.go:295:21:295:133 | selection of Filename | semmle.label | selection of Filename |
 | test.go:296:21:296:88 | selection of Filename | semmle.label | selection of Filename |
 | test.go:297:21:297:87 | selection of Filename | semmle.label | selection of Filename |
-| test.go:303:15:303:36 | call to GetString : string | semmle.label | call to GetString : string |
+| test.go:303:15:303:36 | call to GetString | semmle.label | call to GetString |
 | test.go:305:21:305:48 | type assertion | semmle.label | type assertion |
 | test.go:306:21:306:52 | type assertion | semmle.label | type assertion |
 subpaths
 #select
-| test.go:29:13:29:30 | type conversion | test.go:27:6:27:10 | definition of bound : bindMe | test.go:29:13:29:30 | type conversion | Cross-site scripting vulnerability due to $@. | test.go:27:6:27:10 | definition of bound | user-provided value | test.go:0:0:0:0 | test.go |  |
-| test.go:30:13:30:27 | type conversion | test.go:27:6:27:10 | definition of bound : bindMe | test.go:30:13:30:27 | type conversion | Cross-site scripting vulnerability due to $@. | test.go:27:6:27:10 | definition of bound | user-provided value | test.go:0:0:0:0 | test.go |  |
-| test.go:31:13:31:29 | type conversion | test.go:27:6:27:10 | definition of bound : bindMe | test.go:31:13:31:29 | type conversion | Cross-site scripting vulnerability due to $@. | test.go:27:6:27:10 | definition of bound | user-provided value | test.go:0:0:0:0 | test.go |  |
-| test.go:36:13:36:43 | type conversion | test.go:36:20:36:42 | call to Cookie : string | test.go:36:13:36:43 | type conversion | Cross-site scripting vulnerability due to $@. | test.go:36:20:36:42 | call to Cookie | user-provided value | test.go:0:0:0:0 | test.go |  |
-| test.go:41:13:41:52 | type conversion | test.go:41:20:41:31 | call to Data : map type | test.go:41:13:41:52 | type conversion | Cross-site scripting vulnerability due to $@. | test.go:41:20:41:31 | call to Data | user-provided value | test.go:0:0:0:0 | test.go |  |
-| test.go:46:13:46:53 | type conversion | test.go:46:20:46:43 | call to GetData : basic interface type | test.go:46:13:46:53 | type conversion | Cross-site scripting vulnerability due to $@. | test.go:46:20:46:43 | call to GetData | user-provided value | test.go:0:0:0:0 | test.go |  |
-| test.go:51:13:51:43 | type conversion | test.go:51:20:51:42 | call to Header : string | test.go:51:13:51:43 | type conversion | Cross-site scripting vulnerability due to $@. | test.go:51:20:51:42 | call to Header | user-provided value | test.go:0:0:0:0 | test.go |  |
-| test.go:56:13:56:42 | type conversion | test.go:56:20:56:41 | call to Param : string | test.go:56:13:56:42 | type conversion | Cross-site scripting vulnerability due to $@. | test.go:56:20:56:41 | call to Param | user-provided value | test.go:0:0:0:0 | test.go |  |
-| test.go:61:13:61:45 | type conversion | test.go:61:20:61:33 | call to Params : map type | test.go:61:13:61:45 | type conversion | Cross-site scripting vulnerability due to $@. | test.go:61:20:61:33 | call to Params | user-provided value | test.go:0:0:0:0 | test.go |  |
-| test.go:66:13:66:42 | type conversion | test.go:66:20:66:41 | call to Query : string | test.go:66:13:66:42 | type conversion | Cross-site scripting vulnerability due to $@. | test.go:66:20:66:41 | call to Query | user-provided value | test.go:0:0:0:0 | test.go |  |
-| test.go:71:13:71:33 | type conversion | test.go:71:20:71:32 | call to Refer : string | test.go:71:13:71:33 | type conversion | Cross-site scripting vulnerability due to $@. | test.go:71:20:71:32 | call to Refer | user-provided value | test.go:0:0:0:0 | test.go |  |
-| test.go:76:13:76:35 | type conversion | test.go:76:20:76:34 | call to Referer : string | test.go:76:13:76:35 | type conversion | Cross-site scripting vulnerability due to $@. | test.go:76:20:76:34 | call to Referer | user-provided value | test.go:0:0:0:0 | test.go |  |
-| test.go:81:13:81:31 | type conversion | test.go:81:20:81:30 | call to URI : string | test.go:81:13:81:31 | type conversion | Cross-site scripting vulnerability due to $@. | test.go:81:20:81:30 | call to URI | user-provided value | test.go:0:0:0:0 | test.go |  |
-| test.go:86:13:86:31 | type conversion | test.go:86:20:86:30 | call to URL : string | test.go:86:13:86:31 | type conversion | Cross-site scripting vulnerability due to $@. | test.go:86:20:86:30 | call to URL | user-provided value | test.go:0:0:0:0 | test.go |  |
-| test.go:91:13:91:37 | type conversion | test.go:91:20:91:36 | call to UserAgent : string | test.go:91:13:91:37 | type conversion | Cross-site scripting vulnerability due to $@. | test.go:91:20:91:36 | call to UserAgent | user-provided value | test.go:0:0:0:0 | test.go |  |
-| test.go:96:14:96:45 | type assertion | test.go:96:14:96:25 | call to Data : map type | test.go:96:14:96:45 | type assertion | Cross-site scripting vulnerability due to $@. | test.go:96:14:96:25 | call to Data | user-provided value | test.go:0:0:0:0 | test.go |  |
-| test.go:108:14:108:45 | type assertion | test.go:108:14:108:25 | call to Data : map type | test.go:108:14:108:45 | type assertion | Cross-site scripting vulnerability due to $@. | test.go:108:14:108:25 | call to Data | user-provided value | test.go:0:0:0:0 | test.go |  |
-| test.go:120:14:120:45 | type assertion | test.go:120:14:120:25 | call to Data : map type | test.go:120:14:120:45 | type assertion | Cross-site scripting vulnerability due to $@. | test.go:120:14:120:25 | call to Data | user-provided value | test.go:0:0:0:0 | test.go |  |
-| test.go:137:23:137:62 | type assertion | test.go:137:23:137:42 | call to Data : map type | test.go:137:23:137:62 | type assertion | Cross-site scripting vulnerability due to $@. | test.go:137:23:137:42 | call to Data | user-provided value | test.go:0:0:0:0 | test.go |  |
-| test.go:194:14:194:55 | type conversion | test.go:193:15:193:26 | call to Data : map type | test.go:194:14:194:55 | type conversion | Cross-site scripting vulnerability due to $@. | test.go:193:15:193:26 | call to Data | user-provided value | test.go:0:0:0:0 | test.go |  |
-| test.go:195:14:195:58 | type conversion | test.go:193:15:193:26 | call to Data : map type | test.go:195:14:195:58 | type conversion | Cross-site scripting vulnerability due to $@. | test.go:193:15:193:26 | call to Data | user-provided value | test.go:0:0:0:0 | test.go |  |
-| test.go:197:14:197:28 | type assertion | test.go:193:15:193:26 | call to Data : map type | test.go:197:14:197:28 | type assertion | Cross-site scripting vulnerability due to $@. | test.go:193:15:193:26 | call to Data | user-provided value | test.go:0:0:0:0 | test.go |  |
-| test.go:198:14:198:55 | type conversion | test.go:193:15:193:26 | call to Data : map type | test.go:198:14:198:55 | type conversion | Cross-site scripting vulnerability due to $@. | test.go:193:15:193:26 | call to Data | user-provided value | test.go:0:0:0:0 | test.go |  |
-| test.go:199:14:199:59 | type conversion | test.go:193:15:193:26 | call to Data : map type | test.go:199:14:199:59 | type conversion | Cross-site scripting vulnerability due to $@. | test.go:193:15:193:26 | call to Data | user-provided value | test.go:0:0:0:0 | test.go |  |
-| test.go:203:14:203:28 | type conversion | test.go:202:18:202:33 | selection of Form : Values | test.go:203:14:203:28 | type conversion | Cross-site scripting vulnerability due to $@. | test.go:202:18:202:33 | selection of Form | user-provided value | test.go:0:0:0:0 | test.go |  |
-| test.go:218:14:218:32 | type conversion | test.go:217:2:217:34 | ... := ...[1] : pointer type | test.go:218:14:218:32 | type conversion | Cross-site scripting vulnerability due to $@. | test.go:217:2:217:34 | ... := ...[1] | user-provided value | test.go:0:0:0:0 | test.go |  |
-| test.go:220:14:220:20 | content | test.go:217:2:217:34 | ... := ...[0] : File | test.go:220:14:220:20 | content | Cross-site scripting vulnerability due to $@. | test.go:217:2:217:34 | ... := ...[0] | user-provided value | test.go:0:0:0:0 | test.go |  |
-| test.go:223:14:223:38 | type conversion | test.go:222:2:222:40 | ... := ...[0] : slice type | test.go:223:14:223:38 | type conversion | Cross-site scripting vulnerability due to $@. | test.go:222:2:222:40 | ... := ...[0] | user-provided value | test.go:0:0:0:0 | test.go |  |
-| test.go:226:14:226:22 | type conversion | test.go:225:7:225:28 | call to GetString : string | test.go:226:14:226:22 | type conversion | Cross-site scripting vulnerability due to $@. | test.go:225:7:225:28 | call to GetString | user-provided value | test.go:0:0:0:0 | test.go |  |
-| test.go:229:14:229:26 | type conversion | test.go:228:8:228:35 | call to GetStrings : slice type | test.go:229:14:229:26 | type conversion | Cross-site scripting vulnerability due to $@. | test.go:228:8:228:35 | call to GetStrings | user-provided value | test.go:0:0:0:0 | test.go |  |
-| test.go:232:14:232:27 | type conversion | test.go:231:9:231:17 | call to Input : Values | test.go:232:14:232:27 | type conversion | Cross-site scripting vulnerability due to $@. | test.go:231:9:231:17 | call to Input | user-provided value | test.go:0:0:0:0 | test.go |  |
-| test.go:236:14:236:30 | type conversion | test.go:234:6:234:8 | definition of str : myStruct | test.go:236:14:236:30 | type conversion | Cross-site scripting vulnerability due to $@. | test.go:234:6:234:8 | definition of str | user-provided value | test.go:0:0:0:0 | test.go |  |
-| test.go:243:21:243:29 | untrusted | test.go:240:15:240:36 | call to GetString : string | test.go:243:21:243:29 | untrusted | Cross-site scripting vulnerability due to $@. | test.go:240:15:240:36 | call to GetString | user-provided value | test.go:0:0:0:0 | test.go |  |
-| test.go:253:16:253:45 | type conversion | test.go:253:23:253:44 | call to GetCookie : string | test.go:253:16:253:45 | type conversion | Cross-site scripting vulnerability due to $@. | test.go:253:23:253:44 | call to GetCookie | user-provided value | test.go:0:0:0:0 | test.go |  |
+| test.go:29:13:29:30 | type conversion | test.go:27:6:27:10 | definition of bound | test.go:29:13:29:30 | type conversion | Cross-site scripting vulnerability due to $@. | test.go:27:6:27:10 | definition of bound | user-provided value | test.go:0:0:0:0 | test.go |  |
+| test.go:30:13:30:27 | type conversion | test.go:27:6:27:10 | definition of bound | test.go:30:13:30:27 | type conversion | Cross-site scripting vulnerability due to $@. | test.go:27:6:27:10 | definition of bound | user-provided value | test.go:0:0:0:0 | test.go |  |
+| test.go:31:13:31:29 | type conversion | test.go:27:6:27:10 | definition of bound | test.go:31:13:31:29 | type conversion | Cross-site scripting vulnerability due to $@. | test.go:27:6:27:10 | definition of bound | user-provided value | test.go:0:0:0:0 | test.go |  |
+| test.go:36:13:36:43 | type conversion | test.go:36:20:36:42 | call to Cookie | test.go:36:13:36:43 | type conversion | Cross-site scripting vulnerability due to $@. | test.go:36:20:36:42 | call to Cookie | user-provided value | test.go:0:0:0:0 | test.go |  |
+| test.go:41:13:41:52 | type conversion | test.go:41:20:41:31 | call to Data | test.go:41:13:41:52 | type conversion | Cross-site scripting vulnerability due to $@. | test.go:41:20:41:31 | call to Data | user-provided value | test.go:0:0:0:0 | test.go |  |
+| test.go:46:13:46:53 | type conversion | test.go:46:20:46:43 | call to GetData | test.go:46:13:46:53 | type conversion | Cross-site scripting vulnerability due to $@. | test.go:46:20:46:43 | call to GetData | user-provided value | test.go:0:0:0:0 | test.go |  |
+| test.go:51:13:51:43 | type conversion | test.go:51:20:51:42 | call to Header | test.go:51:13:51:43 | type conversion | Cross-site scripting vulnerability due to $@. | test.go:51:20:51:42 | call to Header | user-provided value | test.go:0:0:0:0 | test.go |  |
+| test.go:56:13:56:42 | type conversion | test.go:56:20:56:41 | call to Param | test.go:56:13:56:42 | type conversion | Cross-site scripting vulnerability due to $@. | test.go:56:20:56:41 | call to Param | user-provided value | test.go:0:0:0:0 | test.go |  |
+| test.go:61:13:61:45 | type conversion | test.go:61:20:61:33 | call to Params | test.go:61:13:61:45 | type conversion | Cross-site scripting vulnerability due to $@. | test.go:61:20:61:33 | call to Params | user-provided value | test.go:0:0:0:0 | test.go |  |
+| test.go:66:13:66:42 | type conversion | test.go:66:20:66:41 | call to Query | test.go:66:13:66:42 | type conversion | Cross-site scripting vulnerability due to $@. | test.go:66:20:66:41 | call to Query | user-provided value | test.go:0:0:0:0 | test.go |  |
+| test.go:71:13:71:33 | type conversion | test.go:71:20:71:32 | call to Refer | test.go:71:13:71:33 | type conversion | Cross-site scripting vulnerability due to $@. | test.go:71:20:71:32 | call to Refer | user-provided value | test.go:0:0:0:0 | test.go |  |
+| test.go:76:13:76:35 | type conversion | test.go:76:20:76:34 | call to Referer | test.go:76:13:76:35 | type conversion | Cross-site scripting vulnerability due to $@. | test.go:76:20:76:34 | call to Referer | user-provided value | test.go:0:0:0:0 | test.go |  |
+| test.go:81:13:81:31 | type conversion | test.go:81:20:81:30 | call to URI | test.go:81:13:81:31 | type conversion | Cross-site scripting vulnerability due to $@. | test.go:81:20:81:30 | call to URI | user-provided value | test.go:0:0:0:0 | test.go |  |
+| test.go:86:13:86:31 | type conversion | test.go:86:20:86:30 | call to URL | test.go:86:13:86:31 | type conversion | Cross-site scripting vulnerability due to $@. | test.go:86:20:86:30 | call to URL | user-provided value | test.go:0:0:0:0 | test.go |  |
+| test.go:91:13:91:37 | type conversion | test.go:91:20:91:36 | call to UserAgent | test.go:91:13:91:37 | type conversion | Cross-site scripting vulnerability due to $@. | test.go:91:20:91:36 | call to UserAgent | user-provided value | test.go:0:0:0:0 | test.go |  |
+| test.go:96:14:96:45 | type assertion | test.go:96:14:96:25 | call to Data | test.go:96:14:96:45 | type assertion | Cross-site scripting vulnerability due to $@. | test.go:96:14:96:25 | call to Data | user-provided value | test.go:0:0:0:0 | test.go |  |
+| test.go:108:14:108:45 | type assertion | test.go:108:14:108:25 | call to Data | test.go:108:14:108:45 | type assertion | Cross-site scripting vulnerability due to $@. | test.go:108:14:108:25 | call to Data | user-provided value | test.go:0:0:0:0 | test.go |  |
+| test.go:120:14:120:45 | type assertion | test.go:120:14:120:25 | call to Data | test.go:120:14:120:45 | type assertion | Cross-site scripting vulnerability due to $@. | test.go:120:14:120:25 | call to Data | user-provided value | test.go:0:0:0:0 | test.go |  |
+| test.go:137:23:137:62 | type assertion | test.go:137:23:137:42 | call to Data | test.go:137:23:137:62 | type assertion | Cross-site scripting vulnerability due to $@. | test.go:137:23:137:42 | call to Data | user-provided value | test.go:0:0:0:0 | test.go |  |
+| test.go:194:14:194:55 | type conversion | test.go:193:15:193:26 | call to Data | test.go:194:14:194:55 | type conversion | Cross-site scripting vulnerability due to $@. | test.go:193:15:193:26 | call to Data | user-provided value | test.go:0:0:0:0 | test.go |  |
+| test.go:195:14:195:58 | type conversion | test.go:193:15:193:26 | call to Data | test.go:195:14:195:58 | type conversion | Cross-site scripting vulnerability due to $@. | test.go:193:15:193:26 | call to Data | user-provided value | test.go:0:0:0:0 | test.go |  |
+| test.go:197:14:197:28 | type assertion | test.go:193:15:193:26 | call to Data | test.go:197:14:197:28 | type assertion | Cross-site scripting vulnerability due to $@. | test.go:193:15:193:26 | call to Data | user-provided value | test.go:0:0:0:0 | test.go |  |
+| test.go:198:14:198:55 | type conversion | test.go:193:15:193:26 | call to Data | test.go:198:14:198:55 | type conversion | Cross-site scripting vulnerability due to $@. | test.go:193:15:193:26 | call to Data | user-provided value | test.go:0:0:0:0 | test.go |  |
+| test.go:199:14:199:59 | type conversion | test.go:193:15:193:26 | call to Data | test.go:199:14:199:59 | type conversion | Cross-site scripting vulnerability due to $@. | test.go:193:15:193:26 | call to Data | user-provided value | test.go:0:0:0:0 | test.go |  |
+| test.go:203:14:203:28 | type conversion | test.go:202:18:202:33 | selection of Form | test.go:203:14:203:28 | type conversion | Cross-site scripting vulnerability due to $@. | test.go:202:18:202:33 | selection of Form | user-provided value | test.go:0:0:0:0 | test.go |  |
+| test.go:218:14:218:32 | type conversion | test.go:217:2:217:34 | ... := ...[1] | test.go:218:14:218:32 | type conversion | Cross-site scripting vulnerability due to $@. | test.go:217:2:217:34 | ... := ...[1] | user-provided value | test.go:0:0:0:0 | test.go |  |
+| test.go:220:14:220:20 | content | test.go:217:2:217:34 | ... := ...[0] | test.go:220:14:220:20 | content | Cross-site scripting vulnerability due to $@. | test.go:217:2:217:34 | ... := ...[0] | user-provided value | test.go:0:0:0:0 | test.go |  |
+| test.go:223:14:223:38 | type conversion | test.go:222:2:222:40 | ... := ...[0] | test.go:223:14:223:38 | type conversion | Cross-site scripting vulnerability due to $@. | test.go:222:2:222:40 | ... := ...[0] | user-provided value | test.go:0:0:0:0 | test.go |  |
+| test.go:226:14:226:22 | type conversion | test.go:225:7:225:28 | call to GetString | test.go:226:14:226:22 | type conversion | Cross-site scripting vulnerability due to $@. | test.go:225:7:225:28 | call to GetString | user-provided value | test.go:0:0:0:0 | test.go |  |
+| test.go:229:14:229:26 | type conversion | test.go:228:8:228:35 | call to GetStrings | test.go:229:14:229:26 | type conversion | Cross-site scripting vulnerability due to $@. | test.go:228:8:228:35 | call to GetStrings | user-provided value | test.go:0:0:0:0 | test.go |  |
+| test.go:232:14:232:27 | type conversion | test.go:231:9:231:17 | call to Input | test.go:232:14:232:27 | type conversion | Cross-site scripting vulnerability due to $@. | test.go:231:9:231:17 | call to Input | user-provided value | test.go:0:0:0:0 | test.go |  |
+| test.go:236:14:236:30 | type conversion | test.go:234:6:234:8 | definition of str | test.go:236:14:236:30 | type conversion | Cross-site scripting vulnerability due to $@. | test.go:234:6:234:8 | definition of str | user-provided value | test.go:0:0:0:0 | test.go |  |
+| test.go:243:21:243:29 | untrusted | test.go:240:15:240:36 | call to GetString | test.go:243:21:243:29 | untrusted | Cross-site scripting vulnerability due to $@. | test.go:240:15:240:36 | call to GetString | user-provided value | test.go:0:0:0:0 | test.go |  |
+| test.go:253:16:253:45 | type conversion | test.go:253:23:253:44 | call to GetCookie | test.go:253:16:253:45 | type conversion | Cross-site scripting vulnerability due to $@. | test.go:253:23:253:44 | call to GetCookie | user-provided value | test.go:0:0:0:0 | test.go |  |
 | test.go:258:16:258:37 | call to GetCookie | test.go:258:16:258:37 | call to GetCookie | test.go:258:16:258:37 | call to GetCookie | Cross-site scripting vulnerability due to $@. | test.go:258:16:258:37 | call to GetCookie | user-provided value | test.go:0:0:0:0 | test.go |  |
 | test.go:259:15:259:41 | call to GetCookie | test.go:259:15:259:41 | call to GetCookie | test.go:259:15:259:41 | call to GetCookie | Cross-site scripting vulnerability due to $@. | test.go:259:15:259:41 | call to GetCookie | user-provided value | test.go:0:0:0:0 | test.go |  |
-| test.go:264:55:264:84 | type conversion | test.go:264:62:264:83 | call to GetCookie : string | test.go:264:55:264:84 | type conversion | Cross-site scripting vulnerability due to $@. | test.go:264:62:264:83 | call to GetCookie | user-provided value | test.go:0:0:0:0 | test.go |  |
-| test.go:277:21:277:61 | call to GetDisplayString | test.go:269:2:269:40 | ... := ...[0] : slice type | test.go:277:21:277:61 | call to GetDisplayString | Cross-site scripting vulnerability due to $@. | test.go:269:2:269:40 | ... := ...[0] | user-provided value | test.go:0:0:0:0 | test.go |  |
-| test.go:278:21:278:92 | selection of Filename | test.go:269:2:269:40 | ... := ...[0] : slice type | test.go:278:21:278:92 | selection of Filename | Cross-site scripting vulnerability due to $@. | test.go:269:2:269:40 | ... := ...[0] | user-provided value | test.go:0:0:0:0 | test.go |  |
-| test.go:279:21:279:96 | selection of Filename | test.go:269:2:269:40 | ... := ...[0] : slice type | test.go:279:21:279:96 | selection of Filename | Cross-site scripting vulnerability due to $@. | test.go:269:2:269:40 | ... := ...[0] | user-provided value | test.go:0:0:0:0 | test.go |  |
-| test.go:284:3:286:80 | selection of Filename | test.go:269:2:269:40 | ... := ...[0] : slice type | test.go:284:3:286:80 | selection of Filename | Cross-site scripting vulnerability due to $@. | test.go:269:2:269:40 | ... := ...[0] | user-provided value | test.go:0:0:0:0 | test.go |  |
-| test.go:287:21:287:101 | selection of Filename | test.go:269:2:269:40 | ... := ...[0] : slice type | test.go:287:21:287:101 | selection of Filename | Cross-site scripting vulnerability due to $@. | test.go:269:2:269:40 | ... := ...[0] | user-provided value | test.go:0:0:0:0 | test.go |  |
-| test.go:288:21:288:101 | selection of Filename | test.go:269:2:269:40 | ... := ...[0] : slice type | test.go:288:21:288:101 | selection of Filename | Cross-site scripting vulnerability due to $@. | test.go:269:2:269:40 | ... := ...[0] | user-provided value | test.go:0:0:0:0 | test.go |  |
-| test.go:289:21:289:97 | selection of Filename | test.go:269:2:269:40 | ... := ...[0] : slice type | test.go:289:21:289:97 | selection of Filename | Cross-site scripting vulnerability due to $@. | test.go:269:2:269:40 | ... := ...[0] | user-provided value | test.go:0:0:0:0 | test.go |  |
-| test.go:290:21:290:97 | selection of Filename | test.go:269:2:269:40 | ... := ...[0] : slice type | test.go:290:21:290:97 | selection of Filename | Cross-site scripting vulnerability due to $@. | test.go:269:2:269:40 | ... := ...[0] | user-provided value | test.go:0:0:0:0 | test.go |  |
-| test.go:291:21:291:102 | selection of Filename | test.go:269:2:269:40 | ... := ...[0] : slice type | test.go:291:21:291:102 | selection of Filename | Cross-site scripting vulnerability due to $@. | test.go:269:2:269:40 | ... := ...[0] | user-provided value | test.go:0:0:0:0 | test.go |  |
-| test.go:292:21:292:102 | selection of Filename | test.go:269:2:269:40 | ... := ...[0] : slice type | test.go:292:21:292:102 | selection of Filename | Cross-site scripting vulnerability due to $@. | test.go:269:2:269:40 | ... := ...[0] | user-provided value | test.go:0:0:0:0 | test.go |  |
-| test.go:293:21:293:82 | selection of Filename | test.go:269:2:269:40 | ... := ...[0] : slice type | test.go:293:21:293:82 | selection of Filename | Cross-site scripting vulnerability due to $@. | test.go:269:2:269:40 | ... := ...[0] | user-provided value | test.go:0:0:0:0 | test.go |  |
-| test.go:295:21:295:133 | selection of Filename | test.go:269:2:269:40 | ... := ...[0] : slice type | test.go:295:21:295:133 | selection of Filename | Cross-site scripting vulnerability due to $@. | test.go:269:2:269:40 | ... := ...[0] | user-provided value | test.go:0:0:0:0 | test.go |  |
-| test.go:296:21:296:88 | selection of Filename | test.go:269:2:269:40 | ... := ...[0] : slice type | test.go:296:21:296:88 | selection of Filename | Cross-site scripting vulnerability due to $@. | test.go:269:2:269:40 | ... := ...[0] | user-provided value | test.go:0:0:0:0 | test.go |  |
-| test.go:297:21:297:87 | selection of Filename | test.go:269:2:269:40 | ... := ...[0] : slice type | test.go:297:21:297:87 | selection of Filename | Cross-site scripting vulnerability due to $@. | test.go:269:2:269:40 | ... := ...[0] | user-provided value | test.go:0:0:0:0 | test.go |  |
-| test.go:305:21:305:48 | type assertion | test.go:303:15:303:36 | call to GetString : string | test.go:305:21:305:48 | type assertion | Cross-site scripting vulnerability due to $@. | test.go:303:15:303:36 | call to GetString | user-provided value | test.go:0:0:0:0 | test.go |  |
-| test.go:306:21:306:52 | type assertion | test.go:303:15:303:36 | call to GetString : string | test.go:306:21:306:52 | type assertion | Cross-site scripting vulnerability due to $@. | test.go:303:15:303:36 | call to GetString | user-provided value | test.go:0:0:0:0 | test.go |  |
+| test.go:264:55:264:84 | type conversion | test.go:264:62:264:83 | call to GetCookie | test.go:264:55:264:84 | type conversion | Cross-site scripting vulnerability due to $@. | test.go:264:62:264:83 | call to GetCookie | user-provided value | test.go:0:0:0:0 | test.go |  |
+| test.go:277:21:277:61 | call to GetDisplayString | test.go:269:2:269:40 | ... := ...[0] | test.go:277:21:277:61 | call to GetDisplayString | Cross-site scripting vulnerability due to $@. | test.go:269:2:269:40 | ... := ...[0] | user-provided value | test.go:0:0:0:0 | test.go |  |
+| test.go:278:21:278:92 | selection of Filename | test.go:269:2:269:40 | ... := ...[0] | test.go:278:21:278:92 | selection of Filename | Cross-site scripting vulnerability due to $@. | test.go:269:2:269:40 | ... := ...[0] | user-provided value | test.go:0:0:0:0 | test.go |  |
+| test.go:279:21:279:96 | selection of Filename | test.go:269:2:269:40 | ... := ...[0] | test.go:279:21:279:96 | selection of Filename | Cross-site scripting vulnerability due to $@. | test.go:269:2:269:40 | ... := ...[0] | user-provided value | test.go:0:0:0:0 | test.go |  |
+| test.go:284:3:286:80 | selection of Filename | test.go:269:2:269:40 | ... := ...[0] | test.go:284:3:286:80 | selection of Filename | Cross-site scripting vulnerability due to $@. | test.go:269:2:269:40 | ... := ...[0] | user-provided value | test.go:0:0:0:0 | test.go |  |
+| test.go:287:21:287:101 | selection of Filename | test.go:269:2:269:40 | ... := ...[0] | test.go:287:21:287:101 | selection of Filename | Cross-site scripting vulnerability due to $@. | test.go:269:2:269:40 | ... := ...[0] | user-provided value | test.go:0:0:0:0 | test.go |  |
+| test.go:288:21:288:101 | selection of Filename | test.go:269:2:269:40 | ... := ...[0] | test.go:288:21:288:101 | selection of Filename | Cross-site scripting vulnerability due to $@. | test.go:269:2:269:40 | ... := ...[0] | user-provided value | test.go:0:0:0:0 | test.go |  |
+| test.go:289:21:289:97 | selection of Filename | test.go:269:2:269:40 | ... := ...[0] | test.go:289:21:289:97 | selection of Filename | Cross-site scripting vulnerability due to $@. | test.go:269:2:269:40 | ... := ...[0] | user-provided value | test.go:0:0:0:0 | test.go |  |
+| test.go:290:21:290:97 | selection of Filename | test.go:269:2:269:40 | ... := ...[0] | test.go:290:21:290:97 | selection of Filename | Cross-site scripting vulnerability due to $@. | test.go:269:2:269:40 | ... := ...[0] | user-provided value | test.go:0:0:0:0 | test.go |  |
+| test.go:291:21:291:102 | selection of Filename | test.go:269:2:269:40 | ... := ...[0] | test.go:291:21:291:102 | selection of Filename | Cross-site scripting vulnerability due to $@. | test.go:269:2:269:40 | ... := ...[0] | user-provided value | test.go:0:0:0:0 | test.go |  |
+| test.go:292:21:292:102 | selection of Filename | test.go:269:2:269:40 | ... := ...[0] | test.go:292:21:292:102 | selection of Filename | Cross-site scripting vulnerability due to $@. | test.go:269:2:269:40 | ... := ...[0] | user-provided value | test.go:0:0:0:0 | test.go |  |
+| test.go:293:21:293:82 | selection of Filename | test.go:269:2:269:40 | ... := ...[0] | test.go:293:21:293:82 | selection of Filename | Cross-site scripting vulnerability due to $@. | test.go:269:2:269:40 | ... := ...[0] | user-provided value | test.go:0:0:0:0 | test.go |  |
+| test.go:295:21:295:133 | selection of Filename | test.go:269:2:269:40 | ... := ...[0] | test.go:295:21:295:133 | selection of Filename | Cross-site scripting vulnerability due to $@. | test.go:269:2:269:40 | ... := ...[0] | user-provided value | test.go:0:0:0:0 | test.go |  |
+| test.go:296:21:296:88 | selection of Filename | test.go:269:2:269:40 | ... := ...[0] | test.go:296:21:296:88 | selection of Filename | Cross-site scripting vulnerability due to $@. | test.go:269:2:269:40 | ... := ...[0] | user-provided value | test.go:0:0:0:0 | test.go |  |
+| test.go:297:21:297:87 | selection of Filename | test.go:269:2:269:40 | ... := ...[0] | test.go:297:21:297:87 | selection of Filename | Cross-site scripting vulnerability due to $@. | test.go:269:2:269:40 | ... := ...[0] | user-provided value | test.go:0:0:0:0 | test.go |  |
+| test.go:305:21:305:48 | type assertion | test.go:303:15:303:36 | call to GetString | test.go:305:21:305:48 | type assertion | Cross-site scripting vulnerability due to $@. | test.go:303:15:303:36 | call to GetString | user-provided value | test.go:0:0:0:0 | test.go |  |
+| test.go:306:21:306:52 | type assertion | test.go:303:15:303:36 | call to GetString | test.go:306:21:306:52 | type assertion | Cross-site scripting vulnerability due to $@. | test.go:303:15:303:36 | call to GetString | user-provided value | test.go:0:0:0:0 | test.go |  |
diff --git a/go/ql/test/library-tests/semmle/go/frameworks/Beego/TaintedPath.expected b/go/ql/test/library-tests/semmle/go/frameworks/Beego/TaintedPath.expected
index 116d5d44a6d..a84489df5bc 100644
--- a/go/ql/test/library-tests/semmle/go/frameworks/Beego/TaintedPath.expected
+++ b/go/ql/test/library-tests/semmle/go/frameworks/Beego/TaintedPath.expected
@@ -1,18 +1,18 @@
 edges
-| test.go:209:15:209:26 | call to Data : map type | test.go:210:18:210:26 | untrusted |
-| test.go:209:15:209:26 | call to Data : map type | test.go:211:10:211:18 | untrusted |
-| test.go:209:15:209:26 | call to Data : map type | test.go:212:35:212:43 | untrusted |
-| test.go:318:17:318:37 | selection of RequestBody : slice type | test.go:320:35:320:43 | untrusted |
+| test.go:209:15:209:26 | call to Data | test.go:210:18:210:26 | untrusted |
+| test.go:209:15:209:26 | call to Data | test.go:211:10:211:18 | untrusted |
+| test.go:209:15:209:26 | call to Data | test.go:212:35:212:43 | untrusted |
+| test.go:318:17:318:37 | selection of RequestBody | test.go:320:35:320:43 | untrusted |
 nodes
-| test.go:209:15:209:26 | call to Data : map type | semmle.label | call to Data : map type |
+| test.go:209:15:209:26 | call to Data | semmle.label | call to Data |
 | test.go:210:18:210:26 | untrusted | semmle.label | untrusted |
 | test.go:211:10:211:18 | untrusted | semmle.label | untrusted |
 | test.go:212:35:212:43 | untrusted | semmle.label | untrusted |
-| test.go:318:17:318:37 | selection of RequestBody : slice type | semmle.label | selection of RequestBody : slice type |
+| test.go:318:17:318:37 | selection of RequestBody | semmle.label | selection of RequestBody |
 | test.go:320:35:320:43 | untrusted | semmle.label | untrusted |
 subpaths
 #select
-| test.go:210:18:210:26 | untrusted | test.go:209:15:209:26 | call to Data : map type | test.go:210:18:210:26 | untrusted | This path depends on a $@. | test.go:209:15:209:26 | call to Data | user-provided value |
-| test.go:211:10:211:18 | untrusted | test.go:209:15:209:26 | call to Data : map type | test.go:211:10:211:18 | untrusted | This path depends on a $@. | test.go:209:15:209:26 | call to Data | user-provided value |
-| test.go:212:35:212:43 | untrusted | test.go:209:15:209:26 | call to Data : map type | test.go:212:35:212:43 | untrusted | This path depends on a $@. | test.go:209:15:209:26 | call to Data | user-provided value |
-| test.go:320:35:320:43 | untrusted | test.go:318:17:318:37 | selection of RequestBody : slice type | test.go:320:35:320:43 | untrusted | This path depends on a $@. | test.go:318:17:318:37 | selection of RequestBody | user-provided value |
+| test.go:210:18:210:26 | untrusted | test.go:209:15:209:26 | call to Data | test.go:210:18:210:26 | untrusted | This path depends on a $@. | test.go:209:15:209:26 | call to Data | user-provided value |
+| test.go:211:10:211:18 | untrusted | test.go:209:15:209:26 | call to Data | test.go:211:10:211:18 | untrusted | This path depends on a $@. | test.go:209:15:209:26 | call to Data | user-provided value |
+| test.go:212:35:212:43 | untrusted | test.go:209:15:209:26 | call to Data | test.go:212:35:212:43 | untrusted | This path depends on a $@. | test.go:209:15:209:26 | call to Data | user-provided value |
+| test.go:320:35:320:43 | untrusted | test.go:318:17:318:37 | selection of RequestBody | test.go:320:35:320:43 | untrusted | This path depends on a $@. | test.go:318:17:318:37 | selection of RequestBody | user-provided value |
diff --git a/go/ql/test/library-tests/semmle/go/frameworks/BeegoOrm/SqlInjection.expected b/go/ql/test/library-tests/semmle/go/frameworks/BeegoOrm/SqlInjection.expected
index 873eed34f41..f9668a6f723 100644
--- a/go/ql/test/library-tests/semmle/go/frameworks/BeegoOrm/SqlInjection.expected
+++ b/go/ql/test/library-tests/semmle/go/frameworks/BeegoOrm/SqlInjection.expected
@@ -1,38 +1,38 @@
 edges
-| test.go:10:15:10:41 | call to UserAgent : string | test.go:12:11:12:19 | untrusted |
-| test.go:10:15:10:41 | call to UserAgent : string | test.go:13:23:13:31 | untrusted |
-| test.go:10:15:10:41 | call to UserAgent : string | test.go:14:14:14:22 | untrusted |
-| test.go:10:15:10:41 | call to UserAgent : string | test.go:15:26:15:34 | untrusted |
-| test.go:10:15:10:41 | call to UserAgent : string | test.go:16:12:16:20 | untrusted |
-| test.go:10:15:10:41 | call to UserAgent : string | test.go:17:24:17:32 | untrusted |
-| test.go:10:15:10:41 | call to UserAgent : string | test.go:18:15:18:23 | untrusted |
-| test.go:10:15:10:41 | call to UserAgent : string | test.go:19:27:19:35 | untrusted |
-| test.go:24:15:24:41 | call to UserAgent : string | test.go:26:12:26:20 | untrusted |
-| test.go:24:15:24:41 | call to UserAgent : string | test.go:27:10:27:18 | untrusted |
-| test.go:24:15:24:41 | call to UserAgent : string | test.go:28:15:28:23 | untrusted |
-| test.go:24:15:24:41 | call to UserAgent : string | test.go:29:14:29:22 | untrusted |
-| test.go:24:15:24:41 | call to UserAgent : string | test.go:30:15:30:23 | untrusted |
-| test.go:24:15:24:41 | call to UserAgent : string | test.go:31:8:31:16 | untrusted |
-| test.go:24:15:24:41 | call to UserAgent : string | test.go:32:11:32:19 | untrusted |
-| test.go:24:15:24:41 | call to UserAgent : string | test.go:33:9:33:17 | untrusted |
-| test.go:24:15:24:41 | call to UserAgent : string | test.go:34:8:34:16 | untrusted |
-| test.go:24:15:24:41 | call to UserAgent : string | test.go:35:8:35:16 | untrusted |
-| test.go:24:15:24:41 | call to UserAgent : string | test.go:36:13:36:21 | untrusted |
-| test.go:24:15:24:41 | call to UserAgent : string | test.go:37:13:37:21 | untrusted |
-| test.go:24:15:24:41 | call to UserAgent : string | test.go:38:12:38:20 | untrusted |
-| test.go:24:15:24:41 | call to UserAgent : string | test.go:39:12:39:20 | untrusted |
-| test.go:24:15:24:41 | call to UserAgent : string | test.go:40:9:40:17 | untrusted |
-| test.go:24:15:24:41 | call to UserAgent : string | test.go:41:12:41:20 | untrusted |
-| test.go:24:15:24:41 | call to UserAgent : string | test.go:42:16:42:24 | untrusted |
-| test.go:24:15:24:41 | call to UserAgent : string | test.go:42:27:42:35 | untrusted |
-| test.go:24:15:24:41 | call to UserAgent : string | test.go:43:12:43:20 | untrusted |
-| test.go:24:15:24:41 | call to UserAgent : string | test.go:44:14:44:22 | untrusted |
-| test.go:24:15:24:41 | call to UserAgent : string | test.go:44:25:44:33 | untrusted |
-| test.go:48:15:48:41 | call to UserAgent : string | test.go:49:12:49:20 | untrusted |
-| test.go:54:15:54:41 | call to UserAgent : string | test.go:56:31:56:39 | untrusted |
-| test.go:60:15:60:41 | call to UserAgent : string | test.go:62:19:62:27 | untrusted |
+| test.go:10:15:10:41 | call to UserAgent | test.go:12:11:12:19 | untrusted |
+| test.go:10:15:10:41 | call to UserAgent | test.go:13:23:13:31 | untrusted |
+| test.go:10:15:10:41 | call to UserAgent | test.go:14:14:14:22 | untrusted |
+| test.go:10:15:10:41 | call to UserAgent | test.go:15:26:15:34 | untrusted |
+| test.go:10:15:10:41 | call to UserAgent | test.go:16:12:16:20 | untrusted |
+| test.go:10:15:10:41 | call to UserAgent | test.go:17:24:17:32 | untrusted |
+| test.go:10:15:10:41 | call to UserAgent | test.go:18:15:18:23 | untrusted |
+| test.go:10:15:10:41 | call to UserAgent | test.go:19:27:19:35 | untrusted |
+| test.go:24:15:24:41 | call to UserAgent | test.go:26:12:26:20 | untrusted |
+| test.go:24:15:24:41 | call to UserAgent | test.go:27:10:27:18 | untrusted |
+| test.go:24:15:24:41 | call to UserAgent | test.go:28:15:28:23 | untrusted |
+| test.go:24:15:24:41 | call to UserAgent | test.go:29:14:29:22 | untrusted |
+| test.go:24:15:24:41 | call to UserAgent | test.go:30:15:30:23 | untrusted |
+| test.go:24:15:24:41 | call to UserAgent | test.go:31:8:31:16 | untrusted |
+| test.go:24:15:24:41 | call to UserAgent | test.go:32:11:32:19 | untrusted |
+| test.go:24:15:24:41 | call to UserAgent | test.go:33:9:33:17 | untrusted |
+| test.go:24:15:24:41 | call to UserAgent | test.go:34:8:34:16 | untrusted |
+| test.go:24:15:24:41 | call to UserAgent | test.go:35:8:35:16 | untrusted |
+| test.go:24:15:24:41 | call to UserAgent | test.go:36:13:36:21 | untrusted |
+| test.go:24:15:24:41 | call to UserAgent | test.go:37:13:37:21 | untrusted |
+| test.go:24:15:24:41 | call to UserAgent | test.go:38:12:38:20 | untrusted |
+| test.go:24:15:24:41 | call to UserAgent | test.go:39:12:39:20 | untrusted |
+| test.go:24:15:24:41 | call to UserAgent | test.go:40:9:40:17 | untrusted |
+| test.go:24:15:24:41 | call to UserAgent | test.go:41:12:41:20 | untrusted |
+| test.go:24:15:24:41 | call to UserAgent | test.go:42:16:42:24 | untrusted |
+| test.go:24:15:24:41 | call to UserAgent | test.go:42:27:42:35 | untrusted |
+| test.go:24:15:24:41 | call to UserAgent | test.go:43:12:43:20 | untrusted |
+| test.go:24:15:24:41 | call to UserAgent | test.go:44:14:44:22 | untrusted |
+| test.go:24:15:24:41 | call to UserAgent | test.go:44:25:44:33 | untrusted |
+| test.go:48:15:48:41 | call to UserAgent | test.go:49:12:49:20 | untrusted |
+| test.go:54:15:54:41 | call to UserAgent | test.go:56:31:56:39 | untrusted |
+| test.go:60:15:60:41 | call to UserAgent | test.go:62:19:62:27 | untrusted |
 nodes
-| test.go:10:15:10:41 | call to UserAgent : string | semmle.label | call to UserAgent : string |
+| test.go:10:15:10:41 | call to UserAgent | semmle.label | call to UserAgent |
 | test.go:12:11:12:19 | untrusted | semmle.label | untrusted |
 | test.go:13:23:13:31 | untrusted | semmle.label | untrusted |
 | test.go:14:14:14:22 | untrusted | semmle.label | untrusted |
@@ -41,7 +41,7 @@ nodes
 | test.go:17:24:17:32 | untrusted | semmle.label | untrusted |
 | test.go:18:15:18:23 | untrusted | semmle.label | untrusted |
 | test.go:19:27:19:35 | untrusted | semmle.label | untrusted |
-| test.go:24:15:24:41 | call to UserAgent : string | semmle.label | call to UserAgent : string |
+| test.go:24:15:24:41 | call to UserAgent | semmle.label | call to UserAgent |
 | test.go:26:12:26:20 | untrusted | semmle.label | untrusted |
 | test.go:27:10:27:18 | untrusted | semmle.label | untrusted |
 | test.go:28:15:28:23 | untrusted | semmle.label | untrusted |
@@ -63,43 +63,43 @@ nodes
 | test.go:43:12:43:20 | untrusted | semmle.label | untrusted |
 | test.go:44:14:44:22 | untrusted | semmle.label | untrusted |
 | test.go:44:25:44:33 | untrusted | semmle.label | untrusted |
-| test.go:48:15:48:41 | call to UserAgent : string | semmle.label | call to UserAgent : string |
+| test.go:48:15:48:41 | call to UserAgent | semmle.label | call to UserAgent |
 | test.go:49:12:49:20 | untrusted | semmle.label | untrusted |
-| test.go:54:15:54:41 | call to UserAgent : string | semmle.label | call to UserAgent : string |
+| test.go:54:15:54:41 | call to UserAgent | semmle.label | call to UserAgent |
 | test.go:56:31:56:39 | untrusted | semmle.label | untrusted |
-| test.go:60:15:60:41 | call to UserAgent : string | semmle.label | call to UserAgent : string |
+| test.go:60:15:60:41 | call to UserAgent | semmle.label | call to UserAgent |
 | test.go:62:19:62:27 | untrusted | semmle.label | untrusted |
 subpaths
 #select
-| test.go:12:11:12:19 | untrusted | test.go:10:15:10:41 | call to UserAgent : string | test.go:12:11:12:19 | untrusted | This query depends on a $@. | test.go:10:15:10:41 | call to UserAgent | user-provided value |
-| test.go:13:23:13:31 | untrusted | test.go:10:15:10:41 | call to UserAgent : string | test.go:13:23:13:31 | untrusted | This query depends on a $@. | test.go:10:15:10:41 | call to UserAgent | user-provided value |
-| test.go:14:14:14:22 | untrusted | test.go:10:15:10:41 | call to UserAgent : string | test.go:14:14:14:22 | untrusted | This query depends on a $@. | test.go:10:15:10:41 | call to UserAgent | user-provided value |
-| test.go:15:26:15:34 | untrusted | test.go:10:15:10:41 | call to UserAgent : string | test.go:15:26:15:34 | untrusted | This query depends on a $@. | test.go:10:15:10:41 | call to UserAgent | user-provided value |
-| test.go:16:12:16:20 | untrusted | test.go:10:15:10:41 | call to UserAgent : string | test.go:16:12:16:20 | untrusted | This query depends on a $@. | test.go:10:15:10:41 | call to UserAgent | user-provided value |
-| test.go:17:24:17:32 | untrusted | test.go:10:15:10:41 | call to UserAgent : string | test.go:17:24:17:32 | untrusted | This query depends on a $@. | test.go:10:15:10:41 | call to UserAgent | user-provided value |
-| test.go:18:15:18:23 | untrusted | test.go:10:15:10:41 | call to UserAgent : string | test.go:18:15:18:23 | untrusted | This query depends on a $@. | test.go:10:15:10:41 | call to UserAgent | user-provided value |
-| test.go:19:27:19:35 | untrusted | test.go:10:15:10:41 | call to UserAgent : string | test.go:19:27:19:35 | untrusted | This query depends on a $@. | test.go:10:15:10:41 | call to UserAgent | user-provided value |
-| test.go:26:12:26:20 | untrusted | test.go:24:15:24:41 | call to UserAgent : string | test.go:26:12:26:20 | untrusted | This query depends on a $@. | test.go:24:15:24:41 | call to UserAgent | user-provided value |
-| test.go:27:10:27:18 | untrusted | test.go:24:15:24:41 | call to UserAgent : string | test.go:27:10:27:18 | untrusted | This query depends on a $@. | test.go:24:15:24:41 | call to UserAgent | user-provided value |
-| test.go:28:15:28:23 | untrusted | test.go:24:15:24:41 | call to UserAgent : string | test.go:28:15:28:23 | untrusted | This query depends on a $@. | test.go:24:15:24:41 | call to UserAgent | user-provided value |
-| test.go:29:14:29:22 | untrusted | test.go:24:15:24:41 | call to UserAgent : string | test.go:29:14:29:22 | untrusted | This query depends on a $@. | test.go:24:15:24:41 | call to UserAgent | user-provided value |
-| test.go:30:15:30:23 | untrusted | test.go:24:15:24:41 | call to UserAgent : string | test.go:30:15:30:23 | untrusted | This query depends on a $@. | test.go:24:15:24:41 | call to UserAgent | user-provided value |
-| test.go:31:8:31:16 | untrusted | test.go:24:15:24:41 | call to UserAgent : string | test.go:31:8:31:16 | untrusted | This query depends on a $@. | test.go:24:15:24:41 | call to UserAgent | user-provided value |
-| test.go:32:11:32:19 | untrusted | test.go:24:15:24:41 | call to UserAgent : string | test.go:32:11:32:19 | untrusted | This query depends on a $@. | test.go:24:15:24:41 | call to UserAgent | user-provided value |
-| test.go:33:9:33:17 | untrusted | test.go:24:15:24:41 | call to UserAgent : string | test.go:33:9:33:17 | untrusted | This query depends on a $@. | test.go:24:15:24:41 | call to UserAgent | user-provided value |
-| test.go:34:8:34:16 | untrusted | test.go:24:15:24:41 | call to UserAgent : string | test.go:34:8:34:16 | untrusted | This query depends on a $@. | test.go:24:15:24:41 | call to UserAgent | user-provided value |
-| test.go:35:8:35:16 | untrusted | test.go:24:15:24:41 | call to UserAgent : string | test.go:35:8:35:16 | untrusted | This query depends on a $@. | test.go:24:15:24:41 | call to UserAgent | user-provided value |
-| test.go:36:13:36:21 | untrusted | test.go:24:15:24:41 | call to UserAgent : string | test.go:36:13:36:21 | untrusted | This query depends on a $@. | test.go:24:15:24:41 | call to UserAgent | user-provided value |
-| test.go:37:13:37:21 | untrusted | test.go:24:15:24:41 | call to UserAgent : string | test.go:37:13:37:21 | untrusted | This query depends on a $@. | test.go:24:15:24:41 | call to UserAgent | user-provided value |
-| test.go:38:12:38:20 | untrusted | test.go:24:15:24:41 | call to UserAgent : string | test.go:38:12:38:20 | untrusted | This query depends on a $@. | test.go:24:15:24:41 | call to UserAgent | user-provided value |
-| test.go:39:12:39:20 | untrusted | test.go:24:15:24:41 | call to UserAgent : string | test.go:39:12:39:20 | untrusted | This query depends on a $@. | test.go:24:15:24:41 | call to UserAgent | user-provided value |
-| test.go:40:9:40:17 | untrusted | test.go:24:15:24:41 | call to UserAgent : string | test.go:40:9:40:17 | untrusted | This query depends on a $@. | test.go:24:15:24:41 | call to UserAgent | user-provided value |
-| test.go:41:12:41:20 | untrusted | test.go:24:15:24:41 | call to UserAgent : string | test.go:41:12:41:20 | untrusted | This query depends on a $@. | test.go:24:15:24:41 | call to UserAgent | user-provided value |
-| test.go:42:16:42:24 | untrusted | test.go:24:15:24:41 | call to UserAgent : string | test.go:42:16:42:24 | untrusted | This query depends on a $@. | test.go:24:15:24:41 | call to UserAgent | user-provided value |
-| test.go:42:27:42:35 | untrusted | test.go:24:15:24:41 | call to UserAgent : string | test.go:42:27:42:35 | untrusted | This query depends on a $@. | test.go:24:15:24:41 | call to UserAgent | user-provided value |
-| test.go:43:12:43:20 | untrusted | test.go:24:15:24:41 | call to UserAgent : string | test.go:43:12:43:20 | untrusted | This query depends on a $@. | test.go:24:15:24:41 | call to UserAgent | user-provided value |
-| test.go:44:14:44:22 | untrusted | test.go:24:15:24:41 | call to UserAgent : string | test.go:44:14:44:22 | untrusted | This query depends on a $@. | test.go:24:15:24:41 | call to UserAgent | user-provided value |
-| test.go:44:25:44:33 | untrusted | test.go:24:15:24:41 | call to UserAgent : string | test.go:44:25:44:33 | untrusted | This query depends on a $@. | test.go:24:15:24:41 | call to UserAgent | user-provided value |
-| test.go:49:12:49:20 | untrusted | test.go:48:15:48:41 | call to UserAgent : string | test.go:49:12:49:20 | untrusted | This query depends on a $@. | test.go:48:15:48:41 | call to UserAgent | user-provided value |
-| test.go:56:31:56:39 | untrusted | test.go:54:15:54:41 | call to UserAgent : string | test.go:56:31:56:39 | untrusted | This query depends on a $@. | test.go:54:15:54:41 | call to UserAgent | user-provided value |
-| test.go:62:19:62:27 | untrusted | test.go:60:15:60:41 | call to UserAgent : string | test.go:62:19:62:27 | untrusted | This query depends on a $@. | test.go:60:15:60:41 | call to UserAgent | user-provided value |
+| test.go:12:11:12:19 | untrusted | test.go:10:15:10:41 | call to UserAgent | test.go:12:11:12:19 | untrusted | This query depends on a $@. | test.go:10:15:10:41 | call to UserAgent | user-provided value |
+| test.go:13:23:13:31 | untrusted | test.go:10:15:10:41 | call to UserAgent | test.go:13:23:13:31 | untrusted | This query depends on a $@. | test.go:10:15:10:41 | call to UserAgent | user-provided value |
+| test.go:14:14:14:22 | untrusted | test.go:10:15:10:41 | call to UserAgent | test.go:14:14:14:22 | untrusted | This query depends on a $@. | test.go:10:15:10:41 | call to UserAgent | user-provided value |
+| test.go:15:26:15:34 | untrusted | test.go:10:15:10:41 | call to UserAgent | test.go:15:26:15:34 | untrusted | This query depends on a $@. | test.go:10:15:10:41 | call to UserAgent | user-provided value |
+| test.go:16:12:16:20 | untrusted | test.go:10:15:10:41 | call to UserAgent | test.go:16:12:16:20 | untrusted | This query depends on a $@. | test.go:10:15:10:41 | call to UserAgent | user-provided value |
+| test.go:17:24:17:32 | untrusted | test.go:10:15:10:41 | call to UserAgent | test.go:17:24:17:32 | untrusted | This query depends on a $@. | test.go:10:15:10:41 | call to UserAgent | user-provided value |
+| test.go:18:15:18:23 | untrusted | test.go:10:15:10:41 | call to UserAgent | test.go:18:15:18:23 | untrusted | This query depends on a $@. | test.go:10:15:10:41 | call to UserAgent | user-provided value |
+| test.go:19:27:19:35 | untrusted | test.go:10:15:10:41 | call to UserAgent | test.go:19:27:19:35 | untrusted | This query depends on a $@. | test.go:10:15:10:41 | call to UserAgent | user-provided value |
+| test.go:26:12:26:20 | untrusted | test.go:24:15:24:41 | call to UserAgent | test.go:26:12:26:20 | untrusted | This query depends on a $@. | test.go:24:15:24:41 | call to UserAgent | user-provided value |
+| test.go:27:10:27:18 | untrusted | test.go:24:15:24:41 | call to UserAgent | test.go:27:10:27:18 | untrusted | This query depends on a $@. | test.go:24:15:24:41 | call to UserAgent | user-provided value |
+| test.go:28:15:28:23 | untrusted | test.go:24:15:24:41 | call to UserAgent | test.go:28:15:28:23 | untrusted | This query depends on a $@. | test.go:24:15:24:41 | call to UserAgent | user-provided value |
+| test.go:29:14:29:22 | untrusted | test.go:24:15:24:41 | call to UserAgent | test.go:29:14:29:22 | untrusted | This query depends on a $@. | test.go:24:15:24:41 | call to UserAgent | user-provided value |
+| test.go:30:15:30:23 | untrusted | test.go:24:15:24:41 | call to UserAgent | test.go:30:15:30:23 | untrusted | This query depends on a $@. | test.go:24:15:24:41 | call to UserAgent | user-provided value |
+| test.go:31:8:31:16 | untrusted | test.go:24:15:24:41 | call to UserAgent | test.go:31:8:31:16 | untrusted | This query depends on a $@. | test.go:24:15:24:41 | call to UserAgent | user-provided value |
+| test.go:32:11:32:19 | untrusted | test.go:24:15:24:41 | call to UserAgent | test.go:32:11:32:19 | untrusted | This query depends on a $@. | test.go:24:15:24:41 | call to UserAgent | user-provided value |
+| test.go:33:9:33:17 | untrusted | test.go:24:15:24:41 | call to UserAgent | test.go:33:9:33:17 | untrusted | This query depends on a $@. | test.go:24:15:24:41 | call to UserAgent | user-provided value |
+| test.go:34:8:34:16 | untrusted | test.go:24:15:24:41 | call to UserAgent | test.go:34:8:34:16 | untrusted | This query depends on a $@. | test.go:24:15:24:41 | call to UserAgent | user-provided value |
+| test.go:35:8:35:16 | untrusted | test.go:24:15:24:41 | call to UserAgent | test.go:35:8:35:16 | untrusted | This query depends on a $@. | test.go:24:15:24:41 | call to UserAgent | user-provided value |
+| test.go:36:13:36:21 | untrusted | test.go:24:15:24:41 | call to UserAgent | test.go:36:13:36:21 | untrusted | This query depends on a $@. | test.go:24:15:24:41 | call to UserAgent | user-provided value |
+| test.go:37:13:37:21 | untrusted | test.go:24:15:24:41 | call to UserAgent | test.go:37:13:37:21 | untrusted | This query depends on a $@. | test.go:24:15:24:41 | call to UserAgent | user-provided value |
+| test.go:38:12:38:20 | untrusted | test.go:24:15:24:41 | call to UserAgent | test.go:38:12:38:20 | untrusted | This query depends on a $@. | test.go:24:15:24:41 | call to UserAgent | user-provided value |
+| test.go:39:12:39:20 | untrusted | test.go:24:15:24:41 | call to UserAgent | test.go:39:12:39:20 | untrusted | This query depends on a $@. | test.go:24:15:24:41 | call to UserAgent | user-provided value |
+| test.go:40:9:40:17 | untrusted | test.go:24:15:24:41 | call to UserAgent | test.go:40:9:40:17 | untrusted | This query depends on a $@. | test.go:24:15:24:41 | call to UserAgent | user-provided value |
+| test.go:41:12:41:20 | untrusted | test.go:24:15:24:41 | call to UserAgent | test.go:41:12:41:20 | untrusted | This query depends on a $@. | test.go:24:15:24:41 | call to UserAgent | user-provided value |
+| test.go:42:16:42:24 | untrusted | test.go:24:15:24:41 | call to UserAgent | test.go:42:16:42:24 | untrusted | This query depends on a $@. | test.go:24:15:24:41 | call to UserAgent | user-provided value |
+| test.go:42:27:42:35 | untrusted | test.go:24:15:24:41 | call to UserAgent | test.go:42:27:42:35 | untrusted | This query depends on a $@. | test.go:24:15:24:41 | call to UserAgent | user-provided value |
+| test.go:43:12:43:20 | untrusted | test.go:24:15:24:41 | call to UserAgent | test.go:43:12:43:20 | untrusted | This query depends on a $@. | test.go:24:15:24:41 | call to UserAgent | user-provided value |
+| test.go:44:14:44:22 | untrusted | test.go:24:15:24:41 | call to UserAgent | test.go:44:14:44:22 | untrusted | This query depends on a $@. | test.go:24:15:24:41 | call to UserAgent | user-provided value |
+| test.go:44:25:44:33 | untrusted | test.go:24:15:24:41 | call to UserAgent | test.go:44:25:44:33 | untrusted | This query depends on a $@. | test.go:24:15:24:41 | call to UserAgent | user-provided value |
+| test.go:49:12:49:20 | untrusted | test.go:48:15:48:41 | call to UserAgent | test.go:49:12:49:20 | untrusted | This query depends on a $@. | test.go:48:15:48:41 | call to UserAgent | user-provided value |
+| test.go:56:31:56:39 | untrusted | test.go:54:15:54:41 | call to UserAgent | test.go:56:31:56:39 | untrusted | This query depends on a $@. | test.go:54:15:54:41 | call to UserAgent | user-provided value |
+| test.go:62:19:62:27 | untrusted | test.go:60:15:60:41 | call to UserAgent | test.go:62:19:62:27 | untrusted | This query depends on a $@. | test.go:60:15:60:41 | call to UserAgent | user-provided value |
diff --git a/go/ql/test/library-tests/semmle/go/frameworks/BeegoOrm/StoredXss.expected b/go/ql/test/library-tests/semmle/go/frameworks/BeegoOrm/StoredXss.expected
index 502de21a22e..09a41c42fb2 100644
--- a/go/ql/test/library-tests/semmle/go/frameworks/BeegoOrm/StoredXss.expected
+++ b/go/ql/test/library-tests/semmle/go/frameworks/BeegoOrm/StoredXss.expected
@@ -1,111 +1,111 @@
 edges
-| test.go:77:13:77:16 | &... : pointer type | test.go:78:13:78:29 | type conversion |
-| test.go:77:13:77:16 | &... : pointer type | test.go:79:13:79:43 | type conversion |
-| test.go:82:22:82:26 | &... : pointer type | test.go:83:13:83:30 | type conversion |
-| test.go:86:21:86:25 | &... : pointer type | test.go:87:13:87:30 | type conversion |
-| test.go:92:20:92:36 | call to Value : string | test.go:92:13:92:37 | type conversion |
-| test.go:93:20:93:39 | call to RawValue : basic interface type | test.go:93:13:93:49 | type conversion |
-| test.go:94:20:94:37 | call to String : string | test.go:94:13:94:38 | type conversion |
-| test.go:95:20:95:36 | call to Value : string | test.go:95:13:95:37 | type conversion |
-| test.go:96:20:96:39 | call to RawValue : basic interface type | test.go:96:13:96:49 | type conversion |
-| test.go:97:20:97:37 | call to String : string | test.go:97:13:97:38 | type conversion |
-| test.go:98:20:98:37 | call to Value : string | test.go:98:13:98:38 | type conversion |
-| test.go:99:20:99:40 | call to RawValue : basic interface type | test.go:99:13:99:50 | type conversion |
-| test.go:100:20:100:38 | call to String : string | test.go:100:13:100:39 | type conversion |
-| test.go:106:9:106:13 | &... : pointer type | test.go:107:13:107:33 | type conversion |
-| test.go:110:9:110:12 | &... : pointer type | test.go:111:13:111:29 | type conversion |
-| test.go:114:12:114:19 | &... : pointer type | test.go:115:13:115:48 | type conversion |
-| test.go:118:16:118:24 | &... : pointer type | test.go:119:13:119:43 | type conversion |
-| test.go:122:16:122:23 | &... : pointer type | test.go:123:13:123:39 | type conversion |
-| test.go:126:15:126:24 | &... : pointer type | test.go:127:13:127:47 | type conversion |
-| test.go:130:18:130:30 | &... : pointer type | test.go:131:13:131:38 | type conversion |
-| test.go:137:12:137:19 | &... : pointer type | test.go:138:13:138:48 | type conversion |
-| test.go:141:16:141:24 | &... : pointer type | test.go:142:13:142:43 | type conversion |
-| test.go:145:16:145:23 | &... : pointer type | test.go:146:13:146:39 | type conversion |
-| test.go:149:15:149:24 | &... : pointer type | test.go:150:13:150:47 | type conversion |
-| test.go:153:18:153:30 | &... : pointer type | test.go:154:13:154:38 | type conversion |
-| test.go:157:14:157:22 | &... : pointer type | test.go:158:13:158:28 | type conversion |
-| test.go:161:15:161:24 | &... : pointer type | test.go:162:13:162:32 | type conversion |
+| test.go:77:13:77:16 | &... | test.go:78:13:78:29 | type conversion |
+| test.go:77:13:77:16 | &... | test.go:79:13:79:43 | type conversion |
+| test.go:82:22:82:26 | &... | test.go:83:13:83:30 | type conversion |
+| test.go:86:21:86:25 | &... | test.go:87:13:87:30 | type conversion |
+| test.go:92:20:92:36 | call to Value | test.go:92:13:92:37 | type conversion |
+| test.go:93:20:93:39 | call to RawValue | test.go:93:13:93:49 | type conversion |
+| test.go:94:20:94:37 | call to String | test.go:94:13:94:38 | type conversion |
+| test.go:95:20:95:36 | call to Value | test.go:95:13:95:37 | type conversion |
+| test.go:96:20:96:39 | call to RawValue | test.go:96:13:96:49 | type conversion |
+| test.go:97:20:97:37 | call to String | test.go:97:13:97:38 | type conversion |
+| test.go:98:20:98:37 | call to Value | test.go:98:13:98:38 | type conversion |
+| test.go:99:20:99:40 | call to RawValue | test.go:99:13:99:50 | type conversion |
+| test.go:100:20:100:38 | call to String | test.go:100:13:100:39 | type conversion |
+| test.go:106:9:106:13 | &... | test.go:107:13:107:33 | type conversion |
+| test.go:110:9:110:12 | &... | test.go:111:13:111:29 | type conversion |
+| test.go:114:12:114:19 | &... | test.go:115:13:115:48 | type conversion |
+| test.go:118:16:118:24 | &... | test.go:119:13:119:43 | type conversion |
+| test.go:122:16:122:23 | &... | test.go:123:13:123:39 | type conversion |
+| test.go:126:15:126:24 | &... | test.go:127:13:127:47 | type conversion |
+| test.go:130:18:130:30 | &... | test.go:131:13:131:38 | type conversion |
+| test.go:137:12:137:19 | &... | test.go:138:13:138:48 | type conversion |
+| test.go:141:16:141:24 | &... | test.go:142:13:142:43 | type conversion |
+| test.go:145:16:145:23 | &... | test.go:146:13:146:39 | type conversion |
+| test.go:149:15:149:24 | &... | test.go:150:13:150:47 | type conversion |
+| test.go:153:18:153:30 | &... | test.go:154:13:154:38 | type conversion |
+| test.go:157:14:157:22 | &... | test.go:158:13:158:28 | type conversion |
+| test.go:161:15:161:24 | &... | test.go:162:13:162:32 | type conversion |
 nodes
-| test.go:77:13:77:16 | &... : pointer type | semmle.label | &... : pointer type |
+| test.go:77:13:77:16 | &... | semmle.label | &... |
 | test.go:78:13:78:29 | type conversion | semmle.label | type conversion |
 | test.go:79:13:79:43 | type conversion | semmle.label | type conversion |
-| test.go:82:22:82:26 | &... : pointer type | semmle.label | &... : pointer type |
+| test.go:82:22:82:26 | &... | semmle.label | &... |
 | test.go:83:13:83:30 | type conversion | semmle.label | type conversion |
-| test.go:86:21:86:25 | &... : pointer type | semmle.label | &... : pointer type |
+| test.go:86:21:86:25 | &... | semmle.label | &... |
 | test.go:87:13:87:30 | type conversion | semmle.label | type conversion |
 | test.go:92:13:92:37 | type conversion | semmle.label | type conversion |
-| test.go:92:20:92:36 | call to Value : string | semmle.label | call to Value : string |
+| test.go:92:20:92:36 | call to Value | semmle.label | call to Value |
 | test.go:93:13:93:49 | type conversion | semmle.label | type conversion |
-| test.go:93:20:93:39 | call to RawValue : basic interface type | semmle.label | call to RawValue : basic interface type |
+| test.go:93:20:93:39 | call to RawValue | semmle.label | call to RawValue |
 | test.go:94:13:94:38 | type conversion | semmle.label | type conversion |
-| test.go:94:20:94:37 | call to String : string | semmle.label | call to String : string |
+| test.go:94:20:94:37 | call to String | semmle.label | call to String |
 | test.go:95:13:95:37 | type conversion | semmle.label | type conversion |
-| test.go:95:20:95:36 | call to Value : string | semmle.label | call to Value : string |
+| test.go:95:20:95:36 | call to Value | semmle.label | call to Value |
 | test.go:96:13:96:49 | type conversion | semmle.label | type conversion |
-| test.go:96:20:96:39 | call to RawValue : basic interface type | semmle.label | call to RawValue : basic interface type |
+| test.go:96:20:96:39 | call to RawValue | semmle.label | call to RawValue |
 | test.go:97:13:97:38 | type conversion | semmle.label | type conversion |
-| test.go:97:20:97:37 | call to String : string | semmle.label | call to String : string |
+| test.go:97:20:97:37 | call to String | semmle.label | call to String |
 | test.go:98:13:98:38 | type conversion | semmle.label | type conversion |
-| test.go:98:20:98:37 | call to Value : string | semmle.label | call to Value : string |
+| test.go:98:20:98:37 | call to Value | semmle.label | call to Value |
 | test.go:99:13:99:50 | type conversion | semmle.label | type conversion |
-| test.go:99:20:99:40 | call to RawValue : basic interface type | semmle.label | call to RawValue : basic interface type |
+| test.go:99:20:99:40 | call to RawValue | semmle.label | call to RawValue |
 | test.go:100:13:100:39 | type conversion | semmle.label | type conversion |
-| test.go:100:20:100:38 | call to String : string | semmle.label | call to String : string |
-| test.go:106:9:106:13 | &... : pointer type | semmle.label | &... : pointer type |
+| test.go:100:20:100:38 | call to String | semmle.label | call to String |
+| test.go:106:9:106:13 | &... | semmle.label | &... |
 | test.go:107:13:107:33 | type conversion | semmle.label | type conversion |
-| test.go:110:9:110:12 | &... : pointer type | semmle.label | &... : pointer type |
+| test.go:110:9:110:12 | &... | semmle.label | &... |
 | test.go:111:13:111:29 | type conversion | semmle.label | type conversion |
-| test.go:114:12:114:19 | &... : pointer type | semmle.label | &... : pointer type |
+| test.go:114:12:114:19 | &... | semmle.label | &... |
 | test.go:115:13:115:48 | type conversion | semmle.label | type conversion |
-| test.go:118:16:118:24 | &... : pointer type | semmle.label | &... : pointer type |
+| test.go:118:16:118:24 | &... | semmle.label | &... |
 | test.go:119:13:119:43 | type conversion | semmle.label | type conversion |
-| test.go:122:16:122:23 | &... : pointer type | semmle.label | &... : pointer type |
+| test.go:122:16:122:23 | &... | semmle.label | &... |
 | test.go:123:13:123:39 | type conversion | semmle.label | type conversion |
-| test.go:126:15:126:24 | &... : pointer type | semmle.label | &... : pointer type |
+| test.go:126:15:126:24 | &... | semmle.label | &... |
 | test.go:127:13:127:47 | type conversion | semmle.label | type conversion |
-| test.go:130:18:130:30 | &... : pointer type | semmle.label | &... : pointer type |
+| test.go:130:18:130:30 | &... | semmle.label | &... |
 | test.go:131:13:131:38 | type conversion | semmle.label | type conversion |
-| test.go:137:12:137:19 | &... : pointer type | semmle.label | &... : pointer type |
+| test.go:137:12:137:19 | &... | semmle.label | &... |
 | test.go:138:13:138:48 | type conversion | semmle.label | type conversion |
-| test.go:141:16:141:24 | &... : pointer type | semmle.label | &... : pointer type |
+| test.go:141:16:141:24 | &... | semmle.label | &... |
 | test.go:142:13:142:43 | type conversion | semmle.label | type conversion |
-| test.go:145:16:145:23 | &... : pointer type | semmle.label | &... : pointer type |
+| test.go:145:16:145:23 | &... | semmle.label | &... |
 | test.go:146:13:146:39 | type conversion | semmle.label | type conversion |
-| test.go:149:15:149:24 | &... : pointer type | semmle.label | &... : pointer type |
+| test.go:149:15:149:24 | &... | semmle.label | &... |
 | test.go:150:13:150:47 | type conversion | semmle.label | type conversion |
-| test.go:153:18:153:30 | &... : pointer type | semmle.label | &... : pointer type |
+| test.go:153:18:153:30 | &... | semmle.label | &... |
 | test.go:154:13:154:38 | type conversion | semmle.label | type conversion |
-| test.go:157:14:157:22 | &... : pointer type | semmle.label | &... : pointer type |
+| test.go:157:14:157:22 | &... | semmle.label | &... |
 | test.go:158:13:158:28 | type conversion | semmle.label | type conversion |
-| test.go:161:15:161:24 | &... : pointer type | semmle.label | &... : pointer type |
+| test.go:161:15:161:24 | &... | semmle.label | &... |
 | test.go:162:13:162:32 | type conversion | semmle.label | type conversion |
 subpaths
 #select
-| test.go:78:13:78:29 | type conversion | test.go:77:13:77:16 | &... : pointer type | test.go:78:13:78:29 | type conversion | Stored cross-site scripting vulnerability due to $@. | test.go:77:13:77:16 | &... | stored value |
-| test.go:79:13:79:43 | type conversion | test.go:77:13:77:16 | &... : pointer type | test.go:79:13:79:43 | type conversion | Stored cross-site scripting vulnerability due to $@. | test.go:77:13:77:16 | &... | stored value |
-| test.go:83:13:83:30 | type conversion | test.go:82:22:82:26 | &... : pointer type | test.go:83:13:83:30 | type conversion | Stored cross-site scripting vulnerability due to $@. | test.go:82:22:82:26 | &... | stored value |
-| test.go:87:13:87:30 | type conversion | test.go:86:21:86:25 | &... : pointer type | test.go:87:13:87:30 | type conversion | Stored cross-site scripting vulnerability due to $@. | test.go:86:21:86:25 | &... | stored value |
-| test.go:92:13:92:37 | type conversion | test.go:92:20:92:36 | call to Value : string | test.go:92:13:92:37 | type conversion | Stored cross-site scripting vulnerability due to $@. | test.go:92:20:92:36 | call to Value | stored value |
-| test.go:93:13:93:49 | type conversion | test.go:93:20:93:39 | call to RawValue : basic interface type | test.go:93:13:93:49 | type conversion | Stored cross-site scripting vulnerability due to $@. | test.go:93:20:93:39 | call to RawValue | stored value |
-| test.go:94:13:94:38 | type conversion | test.go:94:20:94:37 | call to String : string | test.go:94:13:94:38 | type conversion | Stored cross-site scripting vulnerability due to $@. | test.go:94:20:94:37 | call to String | stored value |
-| test.go:95:13:95:37 | type conversion | test.go:95:20:95:36 | call to Value : string | test.go:95:13:95:37 | type conversion | Stored cross-site scripting vulnerability due to $@. | test.go:95:20:95:36 | call to Value | stored value |
-| test.go:96:13:96:49 | type conversion | test.go:96:20:96:39 | call to RawValue : basic interface type | test.go:96:13:96:49 | type conversion | Stored cross-site scripting vulnerability due to $@. | test.go:96:20:96:39 | call to RawValue | stored value |
-| test.go:97:13:97:38 | type conversion | test.go:97:20:97:37 | call to String : string | test.go:97:13:97:38 | type conversion | Stored cross-site scripting vulnerability due to $@. | test.go:97:20:97:37 | call to String | stored value |
-| test.go:98:13:98:38 | type conversion | test.go:98:20:98:37 | call to Value : string | test.go:98:13:98:38 | type conversion | Stored cross-site scripting vulnerability due to $@. | test.go:98:20:98:37 | call to Value | stored value |
-| test.go:99:13:99:50 | type conversion | test.go:99:20:99:40 | call to RawValue : basic interface type | test.go:99:13:99:50 | type conversion | Stored cross-site scripting vulnerability due to $@. | test.go:99:20:99:40 | call to RawValue | stored value |
-| test.go:100:13:100:39 | type conversion | test.go:100:20:100:38 | call to String : string | test.go:100:13:100:39 | type conversion | Stored cross-site scripting vulnerability due to $@. | test.go:100:20:100:38 | call to String | stored value |
-| test.go:107:13:107:33 | type conversion | test.go:106:9:106:13 | &... : pointer type | test.go:107:13:107:33 | type conversion | Stored cross-site scripting vulnerability due to $@. | test.go:106:9:106:13 | &... | stored value |
-| test.go:111:13:111:29 | type conversion | test.go:110:9:110:12 | &... : pointer type | test.go:111:13:111:29 | type conversion | Stored cross-site scripting vulnerability due to $@. | test.go:110:9:110:12 | &... | stored value |
-| test.go:115:13:115:48 | type conversion | test.go:114:12:114:19 | &... : pointer type | test.go:115:13:115:48 | type conversion | Stored cross-site scripting vulnerability due to $@. | test.go:114:12:114:19 | &... | stored value |
-| test.go:119:13:119:43 | type conversion | test.go:118:16:118:24 | &... : pointer type | test.go:119:13:119:43 | type conversion | Stored cross-site scripting vulnerability due to $@. | test.go:118:16:118:24 | &... | stored value |
-| test.go:123:13:123:39 | type conversion | test.go:122:16:122:23 | &... : pointer type | test.go:123:13:123:39 | type conversion | Stored cross-site scripting vulnerability due to $@. | test.go:122:16:122:23 | &... | stored value |
-| test.go:127:13:127:47 | type conversion | test.go:126:15:126:24 | &... : pointer type | test.go:127:13:127:47 | type conversion | Stored cross-site scripting vulnerability due to $@. | test.go:126:15:126:24 | &... | stored value |
-| test.go:131:13:131:38 | type conversion | test.go:130:18:130:30 | &... : pointer type | test.go:131:13:131:38 | type conversion | Stored cross-site scripting vulnerability due to $@. | test.go:130:18:130:30 | &... | stored value |
-| test.go:138:13:138:48 | type conversion | test.go:137:12:137:19 | &... : pointer type | test.go:138:13:138:48 | type conversion | Stored cross-site scripting vulnerability due to $@. | test.go:137:12:137:19 | &... | stored value |
-| test.go:142:13:142:43 | type conversion | test.go:141:16:141:24 | &... : pointer type | test.go:142:13:142:43 | type conversion | Stored cross-site scripting vulnerability due to $@. | test.go:141:16:141:24 | &... | stored value |
-| test.go:146:13:146:39 | type conversion | test.go:145:16:145:23 | &... : pointer type | test.go:146:13:146:39 | type conversion | Stored cross-site scripting vulnerability due to $@. | test.go:145:16:145:23 | &... | stored value |
-| test.go:150:13:150:47 | type conversion | test.go:149:15:149:24 | &... : pointer type | test.go:150:13:150:47 | type conversion | Stored cross-site scripting vulnerability due to $@. | test.go:149:15:149:24 | &... | stored value |
-| test.go:154:13:154:38 | type conversion | test.go:153:18:153:30 | &... : pointer type | test.go:154:13:154:38 | type conversion | Stored cross-site scripting vulnerability due to $@. | test.go:153:18:153:30 | &... | stored value |
-| test.go:158:13:158:28 | type conversion | test.go:157:14:157:22 | &... : pointer type | test.go:158:13:158:28 | type conversion | Stored cross-site scripting vulnerability due to $@. | test.go:157:14:157:22 | &... | stored value |
-| test.go:162:13:162:32 | type conversion | test.go:161:15:161:24 | &... : pointer type | test.go:162:13:162:32 | type conversion | Stored cross-site scripting vulnerability due to $@. | test.go:161:15:161:24 | &... | stored value |
+| test.go:78:13:78:29 | type conversion | test.go:77:13:77:16 | &... | test.go:78:13:78:29 | type conversion | Stored cross-site scripting vulnerability due to $@. | test.go:77:13:77:16 | &... | stored value |
+| test.go:79:13:79:43 | type conversion | test.go:77:13:77:16 | &... | test.go:79:13:79:43 | type conversion | Stored cross-site scripting vulnerability due to $@. | test.go:77:13:77:16 | &... | stored value |
+| test.go:83:13:83:30 | type conversion | test.go:82:22:82:26 | &... | test.go:83:13:83:30 | type conversion | Stored cross-site scripting vulnerability due to $@. | test.go:82:22:82:26 | &... | stored value |
+| test.go:87:13:87:30 | type conversion | test.go:86:21:86:25 | &... | test.go:87:13:87:30 | type conversion | Stored cross-site scripting vulnerability due to $@. | test.go:86:21:86:25 | &... | stored value |
+| test.go:92:13:92:37 | type conversion | test.go:92:20:92:36 | call to Value | test.go:92:13:92:37 | type conversion | Stored cross-site scripting vulnerability due to $@. | test.go:92:20:92:36 | call to Value | stored value |
+| test.go:93:13:93:49 | type conversion | test.go:93:20:93:39 | call to RawValue | test.go:93:13:93:49 | type conversion | Stored cross-site scripting vulnerability due to $@. | test.go:93:20:93:39 | call to RawValue | stored value |
+| test.go:94:13:94:38 | type conversion | test.go:94:20:94:37 | call to String | test.go:94:13:94:38 | type conversion | Stored cross-site scripting vulnerability due to $@. | test.go:94:20:94:37 | call to String | stored value |
+| test.go:95:13:95:37 | type conversion | test.go:95:20:95:36 | call to Value | test.go:95:13:95:37 | type conversion | Stored cross-site scripting vulnerability due to $@. | test.go:95:20:95:36 | call to Value | stored value |
+| test.go:96:13:96:49 | type conversion | test.go:96:20:96:39 | call to RawValue | test.go:96:13:96:49 | type conversion | Stored cross-site scripting vulnerability due to $@. | test.go:96:20:96:39 | call to RawValue | stored value |
+| test.go:97:13:97:38 | type conversion | test.go:97:20:97:37 | call to String | test.go:97:13:97:38 | type conversion | Stored cross-site scripting vulnerability due to $@. | test.go:97:20:97:37 | call to String | stored value |
+| test.go:98:13:98:38 | type conversion | test.go:98:20:98:37 | call to Value | test.go:98:13:98:38 | type conversion | Stored cross-site scripting vulnerability due to $@. | test.go:98:20:98:37 | call to Value | stored value |
+| test.go:99:13:99:50 | type conversion | test.go:99:20:99:40 | call to RawValue | test.go:99:13:99:50 | type conversion | Stored cross-site scripting vulnerability due to $@. | test.go:99:20:99:40 | call to RawValue | stored value |
+| test.go:100:13:100:39 | type conversion | test.go:100:20:100:38 | call to String | test.go:100:13:100:39 | type conversion | Stored cross-site scripting vulnerability due to $@. | test.go:100:20:100:38 | call to String | stored value |
+| test.go:107:13:107:33 | type conversion | test.go:106:9:106:13 | &... | test.go:107:13:107:33 | type conversion | Stored cross-site scripting vulnerability due to $@. | test.go:106:9:106:13 | &... | stored value |
+| test.go:111:13:111:29 | type conversion | test.go:110:9:110:12 | &... | test.go:111:13:111:29 | type conversion | Stored cross-site scripting vulnerability due to $@. | test.go:110:9:110:12 | &... | stored value |
+| test.go:115:13:115:48 | type conversion | test.go:114:12:114:19 | &... | test.go:115:13:115:48 | type conversion | Stored cross-site scripting vulnerability due to $@. | test.go:114:12:114:19 | &... | stored value |
+| test.go:119:13:119:43 | type conversion | test.go:118:16:118:24 | &... | test.go:119:13:119:43 | type conversion | Stored cross-site scripting vulnerability due to $@. | test.go:118:16:118:24 | &... | stored value |
+| test.go:123:13:123:39 | type conversion | test.go:122:16:122:23 | &... | test.go:123:13:123:39 | type conversion | Stored cross-site scripting vulnerability due to $@. | test.go:122:16:122:23 | &... | stored value |
+| test.go:127:13:127:47 | type conversion | test.go:126:15:126:24 | &... | test.go:127:13:127:47 | type conversion | Stored cross-site scripting vulnerability due to $@. | test.go:126:15:126:24 | &... | stored value |
+| test.go:131:13:131:38 | type conversion | test.go:130:18:130:30 | &... | test.go:131:13:131:38 | type conversion | Stored cross-site scripting vulnerability due to $@. | test.go:130:18:130:30 | &... | stored value |
+| test.go:138:13:138:48 | type conversion | test.go:137:12:137:19 | &... | test.go:138:13:138:48 | type conversion | Stored cross-site scripting vulnerability due to $@. | test.go:137:12:137:19 | &... | stored value |
+| test.go:142:13:142:43 | type conversion | test.go:141:16:141:24 | &... | test.go:142:13:142:43 | type conversion | Stored cross-site scripting vulnerability due to $@. | test.go:141:16:141:24 | &... | stored value |
+| test.go:146:13:146:39 | type conversion | test.go:145:16:145:23 | &... | test.go:146:13:146:39 | type conversion | Stored cross-site scripting vulnerability due to $@. | test.go:145:16:145:23 | &... | stored value |
+| test.go:150:13:150:47 | type conversion | test.go:149:15:149:24 | &... | test.go:150:13:150:47 | type conversion | Stored cross-site scripting vulnerability due to $@. | test.go:149:15:149:24 | &... | stored value |
+| test.go:154:13:154:38 | type conversion | test.go:153:18:153:30 | &... | test.go:154:13:154:38 | type conversion | Stored cross-site scripting vulnerability due to $@. | test.go:153:18:153:30 | &... | stored value |
+| test.go:158:13:158:28 | type conversion | test.go:157:14:157:22 | &... | test.go:158:13:158:28 | type conversion | Stored cross-site scripting vulnerability due to $@. | test.go:157:14:157:22 | &... | stored value |
+| test.go:162:13:162:32 | type conversion | test.go:161:15:161:24 | &... | test.go:162:13:162:32 | type conversion | Stored cross-site scripting vulnerability due to $@. | test.go:161:15:161:24 | &... | stored value |
diff --git a/go/ql/test/library-tests/semmle/go/frameworks/Chi/ReflectedXss.expected b/go/ql/test/library-tests/semmle/go/frameworks/Chi/ReflectedXss.expected
index 3c2812ee51a..cc6d95f8717 100644
--- a/go/ql/test/library-tests/semmle/go/frameworks/Chi/ReflectedXss.expected
+++ b/go/ql/test/library-tests/semmle/go/frameworks/Chi/ReflectedXss.expected
@@ -1,24 +1,24 @@
 edges
-| test.go:13:12:13:16 | selection of URL : pointer type | test.go:13:12:13:21 | selection of Path : string |
-| test.go:13:12:13:21 | selection of Path : string | test.go:21:18:21:23 | hidden : string |
-| test.go:21:18:21:23 | hidden : string | test.go:21:11:21:24 | type conversion |
-| test.go:22:18:22:45 | call to URLParam : string | test.go:22:11:22:46 | type conversion |
-| test.go:23:18:23:60 | call to URLParamFromCtx : string | test.go:23:11:23:61 | type conversion |
-| test.go:24:18:24:71 | call to URLParam : string | test.go:24:11:24:72 | type conversion |
+| test.go:13:12:13:16 | selection of URL | test.go:13:12:13:21 | selection of Path |
+| test.go:13:12:13:21 | selection of Path | test.go:21:18:21:23 | hidden |
+| test.go:21:18:21:23 | hidden | test.go:21:11:21:24 | type conversion |
+| test.go:22:18:22:45 | call to URLParam | test.go:22:11:22:46 | type conversion |
+| test.go:23:18:23:60 | call to URLParamFromCtx | test.go:23:11:23:61 | type conversion |
+| test.go:24:18:24:71 | call to URLParam | test.go:24:11:24:72 | type conversion |
 nodes
-| test.go:13:12:13:16 | selection of URL : pointer type | semmle.label | selection of URL : pointer type |
-| test.go:13:12:13:21 | selection of Path : string | semmle.label | selection of Path : string |
+| test.go:13:12:13:16 | selection of URL | semmle.label | selection of URL |
+| test.go:13:12:13:21 | selection of Path | semmle.label | selection of Path |
 | test.go:21:11:21:24 | type conversion | semmle.label | type conversion |
-| test.go:21:18:21:23 | hidden : string | semmle.label | hidden : string |
+| test.go:21:18:21:23 | hidden | semmle.label | hidden |
 | test.go:22:11:22:46 | type conversion | semmle.label | type conversion |
-| test.go:22:18:22:45 | call to URLParam : string | semmle.label | call to URLParam : string |
+| test.go:22:18:22:45 | call to URLParam | semmle.label | call to URLParam |
 | test.go:23:11:23:61 | type conversion | semmle.label | type conversion |
-| test.go:23:18:23:60 | call to URLParamFromCtx : string | semmle.label | call to URLParamFromCtx : string |
+| test.go:23:18:23:60 | call to URLParamFromCtx | semmle.label | call to URLParamFromCtx |
 | test.go:24:11:24:72 | type conversion | semmle.label | type conversion |
-| test.go:24:18:24:71 | call to URLParam : string | semmle.label | call to URLParam : string |
+| test.go:24:18:24:71 | call to URLParam | semmle.label | call to URLParam |
 subpaths
 #select
-| test.go:21:11:21:24 | type conversion | test.go:13:12:13:16 | selection of URL : pointer type | test.go:21:11:21:24 | type conversion | Cross-site scripting vulnerability due to $@. | test.go:13:12:13:16 | selection of URL | user-provided value | test.go:0:0:0:0 | test.go |  |
-| test.go:22:11:22:46 | type conversion | test.go:22:18:22:45 | call to URLParam : string | test.go:22:11:22:46 | type conversion | Cross-site scripting vulnerability due to $@. | test.go:22:18:22:45 | call to URLParam | user-provided value | test.go:0:0:0:0 | test.go |  |
-| test.go:23:11:23:61 | type conversion | test.go:23:18:23:60 | call to URLParamFromCtx : string | test.go:23:11:23:61 | type conversion | Cross-site scripting vulnerability due to $@. | test.go:23:18:23:60 | call to URLParamFromCtx | user-provided value | test.go:0:0:0:0 | test.go |  |
-| test.go:24:11:24:72 | type conversion | test.go:24:18:24:71 | call to URLParam : string | test.go:24:11:24:72 | type conversion | Cross-site scripting vulnerability due to $@. | test.go:24:18:24:71 | call to URLParam | user-provided value | test.go:0:0:0:0 | test.go |  |
+| test.go:21:11:21:24 | type conversion | test.go:13:12:13:16 | selection of URL | test.go:21:11:21:24 | type conversion | Cross-site scripting vulnerability due to $@. | test.go:13:12:13:16 | selection of URL | user-provided value | test.go:0:0:0:0 | test.go |  |
+| test.go:22:11:22:46 | type conversion | test.go:22:18:22:45 | call to URLParam | test.go:22:11:22:46 | type conversion | Cross-site scripting vulnerability due to $@. | test.go:22:18:22:45 | call to URLParam | user-provided value | test.go:0:0:0:0 | test.go |  |
+| test.go:23:11:23:61 | type conversion | test.go:23:18:23:60 | call to URLParamFromCtx | test.go:23:11:23:61 | type conversion | Cross-site scripting vulnerability due to $@. | test.go:23:18:23:60 | call to URLParamFromCtx | user-provided value | test.go:0:0:0:0 | test.go |  |
+| test.go:24:11:24:72 | type conversion | test.go:24:18:24:71 | call to URLParam | test.go:24:11:24:72 | type conversion | Cross-site scripting vulnerability due to $@. | test.go:24:18:24:71 | call to URLParam | user-provided value | test.go:0:0:0:0 | test.go |  |
diff --git a/go/ql/test/library-tests/semmle/go/frameworks/Echo/OpenRedirect.expected b/go/ql/test/library-tests/semmle/go/frameworks/Echo/OpenRedirect.expected
index a51104dfa47..10ad0046423 100644
--- a/go/ql/test/library-tests/semmle/go/frameworks/Echo/OpenRedirect.expected
+++ b/go/ql/test/library-tests/semmle/go/frameworks/Echo/OpenRedirect.expected
@@ -1,18 +1,18 @@
 edges
-| test.go:170:11:170:32 | call to Param : string | test.go:171:20:171:24 | param |
-| test.go:176:11:176:32 | call to Param : string | test.go:180:20:180:28 | ...+... |
-| test.go:188:10:188:26 | selection of URL : pointer type | test.go:191:21:191:32 | call to String |
-| test.go:188:10:188:26 | selection of URL : pointer type | test.go:191:21:191:32 | call to String |
+| test.go:170:11:170:32 | call to Param | test.go:171:20:171:24 | param |
+| test.go:176:11:176:32 | call to Param | test.go:180:20:180:28 | ...+... |
+| test.go:188:10:188:26 | selection of URL | test.go:191:21:191:32 | call to String |
+| test.go:188:10:188:26 | selection of URL | test.go:191:21:191:32 | call to String |
 nodes
-| test.go:170:11:170:32 | call to Param : string | semmle.label | call to Param : string |
+| test.go:170:11:170:32 | call to Param | semmle.label | call to Param |
 | test.go:171:20:171:24 | param | semmle.label | param |
-| test.go:176:11:176:32 | call to Param : string | semmle.label | call to Param : string |
+| test.go:176:11:176:32 | call to Param | semmle.label | call to Param |
 | test.go:180:20:180:28 | ...+... | semmle.label | ...+... |
-| test.go:188:10:188:26 | selection of URL : pointer type | semmle.label | selection of URL : pointer type |
-| test.go:188:10:188:26 | selection of URL : pointer type | semmle.label | selection of URL : pointer type |
+| test.go:188:10:188:26 | selection of URL | semmle.label | selection of URL |
+| test.go:188:10:188:26 | selection of URL | semmle.label | selection of URL |
 | test.go:191:21:191:32 | call to String | semmle.label | call to String |
 | test.go:191:21:191:32 | call to String | semmle.label | call to String |
 subpaths
 #select
-| test.go:171:20:171:24 | param | test.go:170:11:170:32 | call to Param : string | test.go:171:20:171:24 | param | Untrusted URL redirection depends on a $@. | test.go:170:11:170:32 | call to Param | user-provided value |
-| test.go:180:20:180:28 | ...+... | test.go:176:11:176:32 | call to Param : string | test.go:180:20:180:28 | ...+... | Untrusted URL redirection depends on a $@. | test.go:176:11:176:32 | call to Param | user-provided value |
+| test.go:171:20:171:24 | param | test.go:170:11:170:32 | call to Param | test.go:171:20:171:24 | param | Untrusted URL redirection depends on a $@. | test.go:170:11:170:32 | call to Param | user-provided value |
+| test.go:180:20:180:28 | ...+... | test.go:176:11:176:32 | call to Param | test.go:180:20:180:28 | ...+... | Untrusted URL redirection depends on a $@. | test.go:176:11:176:32 | call to Param | user-provided value |
diff --git a/go/ql/test/library-tests/semmle/go/frameworks/Echo/ReflectedXss.expected b/go/ql/test/library-tests/semmle/go/frameworks/Echo/ReflectedXss.expected
index 1e7a86c70cd..641ceddb08f 100644
--- a/go/ql/test/library-tests/semmle/go/frameworks/Echo/ReflectedXss.expected
+++ b/go/ql/test/library-tests/semmle/go/frameworks/Echo/ReflectedXss.expected
@@ -1,80 +1,80 @@
 edges
-| test.go:13:11:13:32 | call to Param : string | test.go:14:16:14:20 | param |
-| test.go:19:11:19:27 | call to ParamValues : slice type | test.go:20:16:20:20 | param |
-| test.go:25:11:25:37 | call to QueryParam : string | test.go:26:16:26:20 | param |
-| test.go:31:11:31:27 | call to QueryParams : Values | test.go:32:16:32:20 | param |
-| test.go:37:10:37:26 | call to QueryString : string | test.go:38:16:38:19 | qstr |
-| test.go:43:9:43:34 | call to FormValue : string | test.go:44:16:44:18 | val |
-| test.go:49:2:49:30 | ... := ...[0] : Values | test.go:50:16:50:37 | index expression |
-| test.go:55:2:55:46 | ... := ...[0] : pointer type | test.go:59:20:59:25 | buffer |
-| test.go:64:2:64:31 | ... := ...[0] : pointer type | test.go:65:16:65:41 | index expression |
-| test.go:70:2:70:31 | ... := ...[0] : pointer type | test.go:75:20:75:25 | buffer |
-| test.go:80:2:80:32 | ... := ...[0] : pointer type | test.go:81:16:81:24 | selection of Value |
-| test.go:86:13:86:25 | call to Cookies : slice type | test.go:87:16:87:31 | selection of Value |
-| test.go:97:11:97:15 | &... : pointer type | test.go:98:16:98:21 | selection of s |
-| test.go:111:21:111:42 | call to Param : string | test.go:112:16:112:42 | type assertion |
-| test.go:122:11:122:32 | call to Param : string | test.go:123:16:123:20 | param |
-| test.go:128:11:128:32 | call to Param : string | test.go:129:20:129:32 | type conversion |
-| test.go:134:11:134:32 | call to Param : string | test.go:135:29:135:41 | type conversion |
-| test.go:146:11:146:32 | call to Param : string | test.go:148:31:148:36 | reader |
-| test.go:162:11:162:32 | call to Param : string | test.go:163:23:163:35 | type conversion |
+| test.go:13:11:13:32 | call to Param | test.go:14:16:14:20 | param |
+| test.go:19:11:19:27 | call to ParamValues | test.go:20:16:20:20 | param |
+| test.go:25:11:25:37 | call to QueryParam | test.go:26:16:26:20 | param |
+| test.go:31:11:31:27 | call to QueryParams | test.go:32:16:32:20 | param |
+| test.go:37:10:37:26 | call to QueryString | test.go:38:16:38:19 | qstr |
+| test.go:43:9:43:34 | call to FormValue | test.go:44:16:44:18 | val |
+| test.go:49:2:49:30 | ... := ...[0] | test.go:50:16:50:37 | index expression |
+| test.go:55:2:55:46 | ... := ...[0] | test.go:59:20:59:25 | buffer |
+| test.go:64:2:64:31 | ... := ...[0] | test.go:65:16:65:41 | index expression |
+| test.go:70:2:70:31 | ... := ...[0] | test.go:75:20:75:25 | buffer |
+| test.go:80:2:80:32 | ... := ...[0] | test.go:81:16:81:24 | selection of Value |
+| test.go:86:13:86:25 | call to Cookies | test.go:87:16:87:31 | selection of Value |
+| test.go:97:11:97:15 | &... | test.go:98:16:98:21 | selection of s |
+| test.go:111:21:111:42 | call to Param | test.go:112:16:112:42 | type assertion |
+| test.go:122:11:122:32 | call to Param | test.go:123:16:123:20 | param |
+| test.go:128:11:128:32 | call to Param | test.go:129:20:129:32 | type conversion |
+| test.go:134:11:134:32 | call to Param | test.go:135:29:135:41 | type conversion |
+| test.go:146:11:146:32 | call to Param | test.go:148:31:148:36 | reader |
+| test.go:162:11:162:32 | call to Param | test.go:163:23:163:35 | type conversion |
 nodes
-| test.go:13:11:13:32 | call to Param : string | semmle.label | call to Param : string |
+| test.go:13:11:13:32 | call to Param | semmle.label | call to Param |
 | test.go:14:16:14:20 | param | semmle.label | param |
-| test.go:19:11:19:27 | call to ParamValues : slice type | semmle.label | call to ParamValues : slice type |
+| test.go:19:11:19:27 | call to ParamValues | semmle.label | call to ParamValues |
 | test.go:20:16:20:20 | param | semmle.label | param |
-| test.go:25:11:25:37 | call to QueryParam : string | semmle.label | call to QueryParam : string |
+| test.go:25:11:25:37 | call to QueryParam | semmle.label | call to QueryParam |
 | test.go:26:16:26:20 | param | semmle.label | param |
-| test.go:31:11:31:27 | call to QueryParams : Values | semmle.label | call to QueryParams : Values |
+| test.go:31:11:31:27 | call to QueryParams | semmle.label | call to QueryParams |
 | test.go:32:16:32:20 | param | semmle.label | param |
-| test.go:37:10:37:26 | call to QueryString : string | semmle.label | call to QueryString : string |
+| test.go:37:10:37:26 | call to QueryString | semmle.label | call to QueryString |
 | test.go:38:16:38:19 | qstr | semmle.label | qstr |
-| test.go:43:9:43:34 | call to FormValue : string | semmle.label | call to FormValue : string |
+| test.go:43:9:43:34 | call to FormValue | semmle.label | call to FormValue |
 | test.go:44:16:44:18 | val | semmle.label | val |
-| test.go:49:2:49:30 | ... := ...[0] : Values | semmle.label | ... := ...[0] : Values |
+| test.go:49:2:49:30 | ... := ...[0] | semmle.label | ... := ...[0] |
 | test.go:50:16:50:37 | index expression | semmle.label | index expression |
-| test.go:55:2:55:46 | ... := ...[0] : pointer type | semmle.label | ... := ...[0] : pointer type |
+| test.go:55:2:55:46 | ... := ...[0] | semmle.label | ... := ...[0] |
 | test.go:59:20:59:25 | buffer | semmle.label | buffer |
-| test.go:64:2:64:31 | ... := ...[0] : pointer type | semmle.label | ... := ...[0] : pointer type |
+| test.go:64:2:64:31 | ... := ...[0] | semmle.label | ... := ...[0] |
 | test.go:65:16:65:41 | index expression | semmle.label | index expression |
-| test.go:70:2:70:31 | ... := ...[0] : pointer type | semmle.label | ... := ...[0] : pointer type |
+| test.go:70:2:70:31 | ... := ...[0] | semmle.label | ... := ...[0] |
 | test.go:75:20:75:25 | buffer | semmle.label | buffer |
-| test.go:80:2:80:32 | ... := ...[0] : pointer type | semmle.label | ... := ...[0] : pointer type |
+| test.go:80:2:80:32 | ... := ...[0] | semmle.label | ... := ...[0] |
 | test.go:81:16:81:24 | selection of Value | semmle.label | selection of Value |
-| test.go:86:13:86:25 | call to Cookies : slice type | semmle.label | call to Cookies : slice type |
+| test.go:86:13:86:25 | call to Cookies | semmle.label | call to Cookies |
 | test.go:87:16:87:31 | selection of Value | semmle.label | selection of Value |
-| test.go:97:11:97:15 | &... : pointer type | semmle.label | &... : pointer type |
+| test.go:97:11:97:15 | &... | semmle.label | &... |
 | test.go:98:16:98:21 | selection of s | semmle.label | selection of s |
-| test.go:111:21:111:42 | call to Param : string | semmle.label | call to Param : string |
+| test.go:111:21:111:42 | call to Param | semmle.label | call to Param |
 | test.go:112:16:112:42 | type assertion | semmle.label | type assertion |
-| test.go:122:11:122:32 | call to Param : string | semmle.label | call to Param : string |
+| test.go:122:11:122:32 | call to Param | semmle.label | call to Param |
 | test.go:123:16:123:20 | param | semmle.label | param |
-| test.go:128:11:128:32 | call to Param : string | semmle.label | call to Param : string |
+| test.go:128:11:128:32 | call to Param | semmle.label | call to Param |
 | test.go:129:20:129:32 | type conversion | semmle.label | type conversion |
-| test.go:134:11:134:32 | call to Param : string | semmle.label | call to Param : string |
+| test.go:134:11:134:32 | call to Param | semmle.label | call to Param |
 | test.go:135:29:135:41 | type conversion | semmle.label | type conversion |
-| test.go:146:11:146:32 | call to Param : string | semmle.label | call to Param : string |
+| test.go:146:11:146:32 | call to Param | semmle.label | call to Param |
 | test.go:148:31:148:36 | reader | semmle.label | reader |
-| test.go:162:11:162:32 | call to Param : string | semmle.label | call to Param : string |
+| test.go:162:11:162:32 | call to Param | semmle.label | call to Param |
 | test.go:163:23:163:35 | type conversion | semmle.label | type conversion |
 subpaths
 #select
-| test.go:14:16:14:20 | param | test.go:13:11:13:32 | call to Param : string | test.go:14:16:14:20 | param | Cross-site scripting vulnerability due to $@. | test.go:13:11:13:32 | call to Param | user-provided value | test.go:0:0:0:0 | test.go |  |
-| test.go:20:16:20:20 | param | test.go:19:11:19:27 | call to ParamValues : slice type | test.go:20:16:20:20 | param | Cross-site scripting vulnerability due to $@. | test.go:19:11:19:27 | call to ParamValues | user-provided value | test.go:0:0:0:0 | test.go |  |
-| test.go:26:16:26:20 | param | test.go:25:11:25:37 | call to QueryParam : string | test.go:26:16:26:20 | param | Cross-site scripting vulnerability due to $@. | test.go:25:11:25:37 | call to QueryParam | user-provided value | test.go:0:0:0:0 | test.go |  |
-| test.go:32:16:32:20 | param | test.go:31:11:31:27 | call to QueryParams : Values | test.go:32:16:32:20 | param | Cross-site scripting vulnerability due to $@. | test.go:31:11:31:27 | call to QueryParams | user-provided value | test.go:0:0:0:0 | test.go |  |
-| test.go:38:16:38:19 | qstr | test.go:37:10:37:26 | call to QueryString : string | test.go:38:16:38:19 | qstr | Cross-site scripting vulnerability due to $@. | test.go:37:10:37:26 | call to QueryString | user-provided value | test.go:0:0:0:0 | test.go |  |
-| test.go:44:16:44:18 | val | test.go:43:9:43:34 | call to FormValue : string | test.go:44:16:44:18 | val | Cross-site scripting vulnerability due to $@. | test.go:43:9:43:34 | call to FormValue | user-provided value | test.go:0:0:0:0 | test.go |  |
-| test.go:50:16:50:37 | index expression | test.go:49:2:49:30 | ... := ...[0] : Values | test.go:50:16:50:37 | index expression | Cross-site scripting vulnerability due to $@. | test.go:49:2:49:30 | ... := ...[0] | user-provided value | test.go:0:0:0:0 | test.go |  |
-| test.go:59:20:59:25 | buffer | test.go:55:2:55:46 | ... := ...[0] : pointer type | test.go:59:20:59:25 | buffer | Cross-site scripting vulnerability due to $@. | test.go:55:2:55:46 | ... := ...[0] | user-provided value | test.go:0:0:0:0 | test.go |  |
-| test.go:65:16:65:41 | index expression | test.go:64:2:64:31 | ... := ...[0] : pointer type | test.go:65:16:65:41 | index expression | Cross-site scripting vulnerability due to $@. | test.go:64:2:64:31 | ... := ...[0] | user-provided value | test.go:0:0:0:0 | test.go |  |
-| test.go:75:20:75:25 | buffer | test.go:70:2:70:31 | ... := ...[0] : pointer type | test.go:75:20:75:25 | buffer | Cross-site scripting vulnerability due to $@. | test.go:70:2:70:31 | ... := ...[0] | user-provided value | test.go:0:0:0:0 | test.go |  |
-| test.go:81:16:81:24 | selection of Value | test.go:80:2:80:32 | ... := ...[0] : pointer type | test.go:81:16:81:24 | selection of Value | Cross-site scripting vulnerability due to $@. | test.go:80:2:80:32 | ... := ...[0] | user-provided value | test.go:0:0:0:0 | test.go |  |
-| test.go:87:16:87:31 | selection of Value | test.go:86:13:86:25 | call to Cookies : slice type | test.go:87:16:87:31 | selection of Value | Cross-site scripting vulnerability due to $@. | test.go:86:13:86:25 | call to Cookies | user-provided value | test.go:0:0:0:0 | test.go |  |
-| test.go:98:16:98:21 | selection of s | test.go:97:11:97:15 | &... : pointer type | test.go:98:16:98:21 | selection of s | Cross-site scripting vulnerability due to $@. | test.go:97:11:97:15 | &... | user-provided value | test.go:0:0:0:0 | test.go |  |
-| test.go:112:16:112:42 | type assertion | test.go:111:21:111:42 | call to Param : string | test.go:112:16:112:42 | type assertion | Cross-site scripting vulnerability due to $@. | test.go:111:21:111:42 | call to Param | user-provided value | test.go:0:0:0:0 | test.go |  |
-| test.go:123:16:123:20 | param | test.go:122:11:122:32 | call to Param : string | test.go:123:16:123:20 | param | Cross-site scripting vulnerability due to $@. | test.go:122:11:122:32 | call to Param | user-provided value | test.go:0:0:0:0 | test.go |  |
-| test.go:129:20:129:32 | type conversion | test.go:128:11:128:32 | call to Param : string | test.go:129:20:129:32 | type conversion | Cross-site scripting vulnerability due to $@. | test.go:128:11:128:32 | call to Param | user-provided value | test.go:0:0:0:0 | test.go |  |
-| test.go:135:29:135:41 | type conversion | test.go:134:11:134:32 | call to Param : string | test.go:135:29:135:41 | type conversion | Cross-site scripting vulnerability due to $@. | test.go:134:11:134:32 | call to Param | user-provided value | test.go:0:0:0:0 | test.go |  |
-| test.go:148:31:148:36 | reader | test.go:146:11:146:32 | call to Param : string | test.go:148:31:148:36 | reader | Cross-site scripting vulnerability due to $@. | test.go:146:11:146:32 | call to Param | user-provided value | test.go:0:0:0:0 | test.go |  |
-| test.go:163:23:163:35 | type conversion | test.go:162:11:162:32 | call to Param : string | test.go:163:23:163:35 | type conversion | Cross-site scripting vulnerability due to $@. | test.go:162:11:162:32 | call to Param | user-provided value | test.go:0:0:0:0 | test.go |  |
+| test.go:14:16:14:20 | param | test.go:13:11:13:32 | call to Param | test.go:14:16:14:20 | param | Cross-site scripting vulnerability due to $@. | test.go:13:11:13:32 | call to Param | user-provided value | test.go:0:0:0:0 | test.go |  |
+| test.go:20:16:20:20 | param | test.go:19:11:19:27 | call to ParamValues | test.go:20:16:20:20 | param | Cross-site scripting vulnerability due to $@. | test.go:19:11:19:27 | call to ParamValues | user-provided value | test.go:0:0:0:0 | test.go |  |
+| test.go:26:16:26:20 | param | test.go:25:11:25:37 | call to QueryParam | test.go:26:16:26:20 | param | Cross-site scripting vulnerability due to $@. | test.go:25:11:25:37 | call to QueryParam | user-provided value | test.go:0:0:0:0 | test.go |  |
+| test.go:32:16:32:20 | param | test.go:31:11:31:27 | call to QueryParams | test.go:32:16:32:20 | param | Cross-site scripting vulnerability due to $@. | test.go:31:11:31:27 | call to QueryParams | user-provided value | test.go:0:0:0:0 | test.go |  |
+| test.go:38:16:38:19 | qstr | test.go:37:10:37:26 | call to QueryString | test.go:38:16:38:19 | qstr | Cross-site scripting vulnerability due to $@. | test.go:37:10:37:26 | call to QueryString | user-provided value | test.go:0:0:0:0 | test.go |  |
+| test.go:44:16:44:18 | val | test.go:43:9:43:34 | call to FormValue | test.go:44:16:44:18 | val | Cross-site scripting vulnerability due to $@. | test.go:43:9:43:34 | call to FormValue | user-provided value | test.go:0:0:0:0 | test.go |  |
+| test.go:50:16:50:37 | index expression | test.go:49:2:49:30 | ... := ...[0] | test.go:50:16:50:37 | index expression | Cross-site scripting vulnerability due to $@. | test.go:49:2:49:30 | ... := ...[0] | user-provided value | test.go:0:0:0:0 | test.go |  |
+| test.go:59:20:59:25 | buffer | test.go:55:2:55:46 | ... := ...[0] | test.go:59:20:59:25 | buffer | Cross-site scripting vulnerability due to $@. | test.go:55:2:55:46 | ... := ...[0] | user-provided value | test.go:0:0:0:0 | test.go |  |
+| test.go:65:16:65:41 | index expression | test.go:64:2:64:31 | ... := ...[0] | test.go:65:16:65:41 | index expression | Cross-site scripting vulnerability due to $@. | test.go:64:2:64:31 | ... := ...[0] | user-provided value | test.go:0:0:0:0 | test.go |  |
+| test.go:75:20:75:25 | buffer | test.go:70:2:70:31 | ... := ...[0] | test.go:75:20:75:25 | buffer | Cross-site scripting vulnerability due to $@. | test.go:70:2:70:31 | ... := ...[0] | user-provided value | test.go:0:0:0:0 | test.go |  |
+| test.go:81:16:81:24 | selection of Value | test.go:80:2:80:32 | ... := ...[0] | test.go:81:16:81:24 | selection of Value | Cross-site scripting vulnerability due to $@. | test.go:80:2:80:32 | ... := ...[0] | user-provided value | test.go:0:0:0:0 | test.go |  |
+| test.go:87:16:87:31 | selection of Value | test.go:86:13:86:25 | call to Cookies | test.go:87:16:87:31 | selection of Value | Cross-site scripting vulnerability due to $@. | test.go:86:13:86:25 | call to Cookies | user-provided value | test.go:0:0:0:0 | test.go |  |
+| test.go:98:16:98:21 | selection of s | test.go:97:11:97:15 | &... | test.go:98:16:98:21 | selection of s | Cross-site scripting vulnerability due to $@. | test.go:97:11:97:15 | &... | user-provided value | test.go:0:0:0:0 | test.go |  |
+| test.go:112:16:112:42 | type assertion | test.go:111:21:111:42 | call to Param | test.go:112:16:112:42 | type assertion | Cross-site scripting vulnerability due to $@. | test.go:111:21:111:42 | call to Param | user-provided value | test.go:0:0:0:0 | test.go |  |
+| test.go:123:16:123:20 | param | test.go:122:11:122:32 | call to Param | test.go:123:16:123:20 | param | Cross-site scripting vulnerability due to $@. | test.go:122:11:122:32 | call to Param | user-provided value | test.go:0:0:0:0 | test.go |  |
+| test.go:129:20:129:32 | type conversion | test.go:128:11:128:32 | call to Param | test.go:129:20:129:32 | type conversion | Cross-site scripting vulnerability due to $@. | test.go:128:11:128:32 | call to Param | user-provided value | test.go:0:0:0:0 | test.go |  |
+| test.go:135:29:135:41 | type conversion | test.go:134:11:134:32 | call to Param | test.go:135:29:135:41 | type conversion | Cross-site scripting vulnerability due to $@. | test.go:134:11:134:32 | call to Param | user-provided value | test.go:0:0:0:0 | test.go |  |
+| test.go:148:31:148:36 | reader | test.go:146:11:146:32 | call to Param | test.go:148:31:148:36 | reader | Cross-site scripting vulnerability due to $@. | test.go:146:11:146:32 | call to Param | user-provided value | test.go:0:0:0:0 | test.go |  |
+| test.go:163:23:163:35 | type conversion | test.go:162:11:162:32 | call to Param | test.go:163:23:163:35 | type conversion | Cross-site scripting vulnerability due to $@. | test.go:162:11:162:32 | call to Param | user-provided value | test.go:0:0:0:0 | test.go |  |
diff --git a/go/ql/test/library-tests/semmle/go/frameworks/Encoding/jsoniter.expected b/go/ql/test/library-tests/semmle/go/frameworks/Encoding/jsoniter.expected
index af6b671225b..54d739e8a90 100644
--- a/go/ql/test/library-tests/semmle/go/frameworks/Encoding/jsoniter.expected
+++ b/go/ql/test/library-tests/semmle/go/frameworks/Encoding/jsoniter.expected
@@ -1,4 +1,4 @@
-| jsoniter.go:28:15:28:24 | selection of field | jsoniter.go:23:20:23:38 | call to getUntrustedBytes : slice type | jsoniter.go:28:15:28:24 | selection of field | This command depends on $@. | jsoniter.go:23:20:23:38 | call to getUntrustedBytes | a user-provided value |
-| jsoniter.go:32:15:32:25 | selection of field | jsoniter.go:23:20:23:38 | call to getUntrustedBytes : slice type | jsoniter.go:32:15:32:25 | selection of field | This command depends on $@. | jsoniter.go:23:20:23:38 | call to getUntrustedBytes | a user-provided value |
-| jsoniter.go:36:15:36:25 | selection of field | jsoniter.go:24:21:24:40 | call to getUntrustedString : string | jsoniter.go:36:15:36:25 | selection of field | This command depends on $@. | jsoniter.go:24:21:24:40 | call to getUntrustedString | a user-provided value |
-| jsoniter.go:40:15:40:25 | selection of field | jsoniter.go:24:21:24:40 | call to getUntrustedString : string | jsoniter.go:40:15:40:25 | selection of field | This command depends on $@. | jsoniter.go:24:21:24:40 | call to getUntrustedString | a user-provided value |
+| jsoniter.go:28:15:28:24 | selection of field | jsoniter.go:23:20:23:38 | call to getUntrustedBytes | jsoniter.go:28:15:28:24 | selection of field | This command depends on $@. | jsoniter.go:23:20:23:38 | call to getUntrustedBytes | a user-provided value |
+| jsoniter.go:32:15:32:25 | selection of field | jsoniter.go:23:20:23:38 | call to getUntrustedBytes | jsoniter.go:32:15:32:25 | selection of field | This command depends on $@. | jsoniter.go:23:20:23:38 | call to getUntrustedBytes | a user-provided value |
+| jsoniter.go:36:15:36:25 | selection of field | jsoniter.go:24:21:24:40 | call to getUntrustedString | jsoniter.go:36:15:36:25 | selection of field | This command depends on $@. | jsoniter.go:24:21:24:40 | call to getUntrustedString | a user-provided value |
+| jsoniter.go:40:15:40:25 | selection of field | jsoniter.go:24:21:24:40 | call to getUntrustedString | jsoniter.go:40:15:40:25 | selection of field | This command depends on $@. | jsoniter.go:24:21:24:40 | call to getUntrustedString | a user-provided value |
diff --git a/go/ql/test/library-tests/semmle/go/frameworks/Gorestful/gorestful.expected b/go/ql/test/library-tests/semmle/go/frameworks/Gorestful/gorestful.expected
index 4c252dadb93..e60cc051e17 100644
--- a/go/ql/test/library-tests/semmle/go/frameworks/Gorestful/gorestful.expected
+++ b/go/ql/test/library-tests/semmle/go/frameworks/Gorestful/gorestful.expected
@@ -1,14 +1,14 @@
-| gorestful.go:15:15:15:47 | index expression | gorestful.go:15:15:15:44 | call to QueryParameters : slice type | gorestful.go:15:15:15:47 | index expression | This command depends on $@. | gorestful.go:15:15:15:44 | call to QueryParameters | a user-provided value |
+| gorestful.go:15:15:15:47 | index expression | gorestful.go:15:15:15:44 | call to QueryParameters | gorestful.go:15:15:15:47 | index expression | This command depends on $@. | gorestful.go:15:15:15:44 | call to QueryParameters | a user-provided value |
 | gorestful.go:16:15:16:43 | call to QueryParameter | gorestful.go:16:15:16:43 | call to QueryParameter | gorestful.go:16:15:16:43 | call to QueryParameter | This command depends on $@. | gorestful.go:16:15:16:43 | call to QueryParameter | a user-provided value |
-| gorestful.go:18:15:18:17 | val | gorestful.go:17:12:17:39 | call to BodyParameter : tuple type | gorestful.go:18:15:18:17 | val | This command depends on $@. | gorestful.go:17:12:17:39 | call to BodyParameter | a user-provided value |
+| gorestful.go:18:15:18:17 | val | gorestful.go:17:12:17:39 | call to BodyParameter | gorestful.go:18:15:18:17 | val | This command depends on $@. | gorestful.go:17:12:17:39 | call to BodyParameter | a user-provided value |
 | gorestful.go:19:15:19:44 | call to HeaderParameter | gorestful.go:19:15:19:44 | call to HeaderParameter | gorestful.go:19:15:19:44 | call to HeaderParameter | This command depends on $@. | gorestful.go:19:15:19:44 | call to HeaderParameter | a user-provided value |
 | gorestful.go:20:15:20:42 | call to PathParameter | gorestful.go:20:15:20:42 | call to PathParameter | gorestful.go:20:15:20:42 | call to PathParameter | This command depends on $@. | gorestful.go:20:15:20:42 | call to PathParameter | a user-provided value |
-| gorestful.go:21:15:21:45 | index expression | gorestful.go:21:15:21:38 | call to PathParameters : map type | gorestful.go:21:15:21:45 | index expression | This command depends on $@. | gorestful.go:21:15:21:38 | call to PathParameters | a user-provided value |
-| gorestful.go:24:15:24:21 | selection of cmd | gorestful.go:23:21:23:24 | &... : pointer type | gorestful.go:24:15:24:21 | selection of cmd | This command depends on $@. | gorestful.go:23:21:23:24 | &... | a user-provided value |
-| gorestful_v2.go:15:15:15:47 | index expression | gorestful_v2.go:15:15:15:44 | call to QueryParameters : slice type | gorestful_v2.go:15:15:15:47 | index expression | This command depends on $@. | gorestful_v2.go:15:15:15:44 | call to QueryParameters | a user-provided value |
+| gorestful.go:21:15:21:45 | index expression | gorestful.go:21:15:21:38 | call to PathParameters | gorestful.go:21:15:21:45 | index expression | This command depends on $@. | gorestful.go:21:15:21:38 | call to PathParameters | a user-provided value |
+| gorestful.go:24:15:24:21 | selection of cmd | gorestful.go:23:21:23:24 | &... | gorestful.go:24:15:24:21 | selection of cmd | This command depends on $@. | gorestful.go:23:21:23:24 | &... | a user-provided value |
+| gorestful_v2.go:15:15:15:47 | index expression | gorestful_v2.go:15:15:15:44 | call to QueryParameters | gorestful_v2.go:15:15:15:47 | index expression | This command depends on $@. | gorestful_v2.go:15:15:15:44 | call to QueryParameters | a user-provided value |
 | gorestful_v2.go:16:15:16:43 | call to QueryParameter | gorestful_v2.go:16:15:16:43 | call to QueryParameter | gorestful_v2.go:16:15:16:43 | call to QueryParameter | This command depends on $@. | gorestful_v2.go:16:15:16:43 | call to QueryParameter | a user-provided value |
-| gorestful_v2.go:18:15:18:17 | val | gorestful_v2.go:17:12:17:39 | call to BodyParameter : tuple type | gorestful_v2.go:18:15:18:17 | val | This command depends on $@. | gorestful_v2.go:17:12:17:39 | call to BodyParameter | a user-provided value |
+| gorestful_v2.go:18:15:18:17 | val | gorestful_v2.go:17:12:17:39 | call to BodyParameter | gorestful_v2.go:18:15:18:17 | val | This command depends on $@. | gorestful_v2.go:17:12:17:39 | call to BodyParameter | a user-provided value |
 | gorestful_v2.go:19:15:19:44 | call to HeaderParameter | gorestful_v2.go:19:15:19:44 | call to HeaderParameter | gorestful_v2.go:19:15:19:44 | call to HeaderParameter | This command depends on $@. | gorestful_v2.go:19:15:19:44 | call to HeaderParameter | a user-provided value |
 | gorestful_v2.go:20:15:20:42 | call to PathParameter | gorestful_v2.go:20:15:20:42 | call to PathParameter | gorestful_v2.go:20:15:20:42 | call to PathParameter | This command depends on $@. | gorestful_v2.go:20:15:20:42 | call to PathParameter | a user-provided value |
-| gorestful_v2.go:21:15:21:45 | index expression | gorestful_v2.go:21:15:21:38 | call to PathParameters : map type | gorestful_v2.go:21:15:21:45 | index expression | This command depends on $@. | gorestful_v2.go:21:15:21:38 | call to PathParameters | a user-provided value |
-| gorestful_v2.go:24:15:24:21 | selection of cmd | gorestful_v2.go:23:21:23:24 | &... : pointer type | gorestful_v2.go:24:15:24:21 | selection of cmd | This command depends on $@. | gorestful_v2.go:23:21:23:24 | &... | a user-provided value |
+| gorestful_v2.go:21:15:21:45 | index expression | gorestful_v2.go:21:15:21:38 | call to PathParameters | gorestful_v2.go:21:15:21:45 | index expression | This command depends on $@. | gorestful_v2.go:21:15:21:38 | call to PathParameters | a user-provided value |
+| gorestful_v2.go:24:15:24:21 | selection of cmd | gorestful_v2.go:23:21:23:24 | &... | gorestful_v2.go:24:15:24:21 | selection of cmd | This command depends on $@. | gorestful_v2.go:23:21:23:24 | &... | a user-provided value |
diff --git a/go/ql/test/library-tests/semmle/go/frameworks/Protobuf/TaintFlows.expected b/go/ql/test/library-tests/semmle/go/frameworks/Protobuf/TaintFlows.expected
index b8d9451ba37..4c70d92720b 100644
--- a/go/ql/test/library-tests/semmle/go/frameworks/Protobuf/TaintFlows.expected
+++ b/go/ql/test/library-tests/semmle/go/frameworks/Protobuf/TaintFlows.expected
@@ -1,33 +1,33 @@
-| testDeprecatedApi.go:22:22:22:41 | call to getUntrustedString : string | testDeprecatedApi.go:26:12:26:21 | serialized |
-| testDeprecatedApi.go:31:22:31:41 | call to getUntrustedString : string | testDeprecatedApi.go:37:12:37:21 | serialized |
-| testDeprecatedApi.go:41:25:41:43 | call to getUntrustedBytes : slice type | testDeprecatedApi.go:45:13:45:29 | selection of Description |
-| testDeprecatedApi.go:49:25:49:43 | call to getUntrustedBytes : slice type | testDeprecatedApi.go:53:13:53:34 | call to GetDescription |
-| testDeprecatedApi.go:58:23:58:42 | call to getUntrustedString : string | testDeprecatedApi.go:65:12:65:21 | serialized |
-| testDeprecatedApi.go:70:14:70:33 | call to getUntrustedString : string | testDeprecatedApi.go:77:12:77:21 | serialized |
-| testDeprecatedApi.go:85:24:85:43 | call to getUntrustedString : string | testDeprecatedApi.go:89:12:89:21 | serialized |
-| testDeprecatedApi.go:93:25:93:43 | call to getUntrustedBytes : slice type | testDeprecatedApi.go:97:13:97:31 | selection of Msg |
-| testDeprecatedApi.go:104:22:104:41 | call to getUntrustedString : string | testDeprecatedApi.go:105:13:105:20 | selection of Id |
-| testDeprecatedApi.go:112:22:112:41 | call to getUntrustedString : string | testDeprecatedApi.go:117:12:117:21 | serialized |
-| testDeprecatedApi.go:133:29:133:48 | call to getUntrustedString : string | testDeprecatedApi.go:137:12:137:21 | serialized |
-| testDeprecatedApi.go:143:20:143:39 | call to getUntrustedString : string | testDeprecatedApi.go:148:12:148:21 | serialized |
-| testDeprecatedApi.go:152:25:152:43 | call to getUntrustedBytes : slice type | testDeprecatedApi.go:157:13:157:36 | index expression |
-| testDeprecatedApi.go:161:25:161:43 | call to getUntrustedBytes : slice type | testDeprecatedApi.go:168:13:168:25 | index expression |
-| testDeprecatedApi.go:176:24:176:43 | call to getUntrustedString : string | testDeprecatedApi.go:180:12:180:21 | serialized |
-| testModernApi.go:11:22:11:41 | call to getUntrustedString : string | testModernApi.go:15:12:15:21 | serialized |
-| testModernApi.go:20:22:20:41 | call to getUntrustedString : string | testModernApi.go:26:12:26:21 | serialized |
-| testModernApi.go:30:25:30:43 | call to getUntrustedBytes : slice type | testModernApi.go:34:13:34:29 | selection of Description |
-| testModernApi.go:38:25:38:43 | call to getUntrustedBytes : slice type | testModernApi.go:42:13:42:34 | call to GetDescription |
-| testModernApi.go:47:23:47:42 | call to getUntrustedString : string | testModernApi.go:54:12:54:21 | serialized |
-| testModernApi.go:59:22:59:41 | call to getUntrustedString : string | testModernApi.go:64:12:64:21 | serialized |
-| testModernApi.go:71:22:71:41 | call to getUntrustedString : string | testModernApi.go:77:12:77:21 | serialized |
-| testModernApi.go:98:14:98:33 | call to getUntrustedString : string | testModernApi.go:105:12:105:21 | serialized |
-| testModernApi.go:113:24:113:43 | call to getUntrustedString : string | testModernApi.go:117:12:117:21 | serialized |
-| testModernApi.go:121:25:121:43 | call to getUntrustedBytes : slice type | testModernApi.go:125:13:125:31 | selection of Msg |
-| testModernApi.go:131:25:131:43 | call to getUntrustedBytes : slice type | testModernApi.go:135:13:135:29 | selection of Description |
-| testModernApi.go:142:22:142:41 | call to getUntrustedString : string | testModernApi.go:143:13:143:20 | selection of Id |
-| testModernApi.go:150:22:150:41 | call to getUntrustedString : string | testModernApi.go:155:12:155:21 | serialized |
-| testModernApi.go:190:29:190:48 | call to getUntrustedString : string | testModernApi.go:194:12:194:21 | serialized |
-| testModernApi.go:200:20:200:39 | call to getUntrustedString : string | testModernApi.go:205:12:205:21 | serialized |
-| testModernApi.go:209:25:209:43 | call to getUntrustedBytes : slice type | testModernApi.go:214:13:214:36 | index expression |
-| testModernApi.go:218:25:218:43 | call to getUntrustedBytes : slice type | testModernApi.go:225:13:225:25 | index expression |
-| testModernApi.go:233:24:233:43 | call to getUntrustedString : string | testModernApi.go:237:12:237:21 | serialized |
+| testDeprecatedApi.go:22:22:22:41 | call to getUntrustedString | testDeprecatedApi.go:26:12:26:21 | serialized |
+| testDeprecatedApi.go:31:22:31:41 | call to getUntrustedString | testDeprecatedApi.go:37:12:37:21 | serialized |
+| testDeprecatedApi.go:41:25:41:43 | call to getUntrustedBytes | testDeprecatedApi.go:45:13:45:29 | selection of Description |
+| testDeprecatedApi.go:49:25:49:43 | call to getUntrustedBytes | testDeprecatedApi.go:53:13:53:34 | call to GetDescription |
+| testDeprecatedApi.go:58:23:58:42 | call to getUntrustedString | testDeprecatedApi.go:65:12:65:21 | serialized |
+| testDeprecatedApi.go:70:14:70:33 | call to getUntrustedString | testDeprecatedApi.go:77:12:77:21 | serialized |
+| testDeprecatedApi.go:85:24:85:43 | call to getUntrustedString | testDeprecatedApi.go:89:12:89:21 | serialized |
+| testDeprecatedApi.go:93:25:93:43 | call to getUntrustedBytes | testDeprecatedApi.go:97:13:97:31 | selection of Msg |
+| testDeprecatedApi.go:104:22:104:41 | call to getUntrustedString | testDeprecatedApi.go:105:13:105:20 | selection of Id |
+| testDeprecatedApi.go:112:22:112:41 | call to getUntrustedString | testDeprecatedApi.go:117:12:117:21 | serialized |
+| testDeprecatedApi.go:133:29:133:48 | call to getUntrustedString | testDeprecatedApi.go:137:12:137:21 | serialized |
+| testDeprecatedApi.go:143:20:143:39 | call to getUntrustedString | testDeprecatedApi.go:148:12:148:21 | serialized |
+| testDeprecatedApi.go:152:25:152:43 | call to getUntrustedBytes | testDeprecatedApi.go:157:13:157:36 | index expression |
+| testDeprecatedApi.go:161:25:161:43 | call to getUntrustedBytes | testDeprecatedApi.go:168:13:168:25 | index expression |
+| testDeprecatedApi.go:176:24:176:43 | call to getUntrustedString | testDeprecatedApi.go:180:12:180:21 | serialized |
+| testModernApi.go:11:22:11:41 | call to getUntrustedString | testModernApi.go:15:12:15:21 | serialized |
+| testModernApi.go:20:22:20:41 | call to getUntrustedString | testModernApi.go:26:12:26:21 | serialized |
+| testModernApi.go:30:25:30:43 | call to getUntrustedBytes | testModernApi.go:34:13:34:29 | selection of Description |
+| testModernApi.go:38:25:38:43 | call to getUntrustedBytes | testModernApi.go:42:13:42:34 | call to GetDescription |
+| testModernApi.go:47:23:47:42 | call to getUntrustedString | testModernApi.go:54:12:54:21 | serialized |
+| testModernApi.go:59:22:59:41 | call to getUntrustedString | testModernApi.go:64:12:64:21 | serialized |
+| testModernApi.go:71:22:71:41 | call to getUntrustedString | testModernApi.go:77:12:77:21 | serialized |
+| testModernApi.go:98:14:98:33 | call to getUntrustedString | testModernApi.go:105:12:105:21 | serialized |
+| testModernApi.go:113:24:113:43 | call to getUntrustedString | testModernApi.go:117:12:117:21 | serialized |
+| testModernApi.go:121:25:121:43 | call to getUntrustedBytes | testModernApi.go:125:13:125:31 | selection of Msg |
+| testModernApi.go:131:25:131:43 | call to getUntrustedBytes | testModernApi.go:135:13:135:29 | selection of Description |
+| testModernApi.go:142:22:142:41 | call to getUntrustedString | testModernApi.go:143:13:143:20 | selection of Id |
+| testModernApi.go:150:22:150:41 | call to getUntrustedString | testModernApi.go:155:12:155:21 | serialized |
+| testModernApi.go:190:29:190:48 | call to getUntrustedString | testModernApi.go:194:12:194:21 | serialized |
+| testModernApi.go:200:20:200:39 | call to getUntrustedString | testModernApi.go:205:12:205:21 | serialized |
+| testModernApi.go:209:25:209:43 | call to getUntrustedBytes | testModernApi.go:214:13:214:36 | index expression |
+| testModernApi.go:218:25:218:43 | call to getUntrustedBytes | testModernApi.go:225:13:225:25 | index expression |
+| testModernApi.go:233:24:233:43 | call to getUntrustedString | testModernApi.go:237:12:237:21 | serialized |
diff --git a/go/ql/test/library-tests/semmle/go/frameworks/Revel/OpenRedirect.expected b/go/ql/test/library-tests/semmle/go/frameworks/Revel/OpenRedirect.expected
index f0411268af8..77436c0d149 100644
--- a/go/ql/test/library-tests/semmle/go/frameworks/Revel/OpenRedirect.expected
+++ b/go/ql/test/library-tests/semmle/go/frameworks/Revel/OpenRedirect.expected
@@ -1,8 +1,8 @@
 edges
-| EndToEnd.go:94:20:94:27 | selection of Params : pointer type | EndToEnd.go:94:20:94:49 | call to Get |
+| EndToEnd.go:94:20:94:27 | selection of Params | EndToEnd.go:94:20:94:49 | call to Get |
 nodes
-| EndToEnd.go:94:20:94:27 | selection of Params : pointer type | semmle.label | selection of Params : pointer type |
+| EndToEnd.go:94:20:94:27 | selection of Params | semmle.label | selection of Params |
 | EndToEnd.go:94:20:94:49 | call to Get | semmle.label | call to Get |
 subpaths
 #select
-| EndToEnd.go:94:20:94:49 | call to Get | EndToEnd.go:94:20:94:27 | selection of Params : pointer type | EndToEnd.go:94:20:94:49 | call to Get | Untrusted URL redirection depends on a $@. | EndToEnd.go:94:20:94:27 | selection of Params | user-provided value |
+| EndToEnd.go:94:20:94:49 | call to Get | EndToEnd.go:94:20:94:27 | selection of Params | EndToEnd.go:94:20:94:49 | call to Get | Untrusted URL redirection depends on a $@. | EndToEnd.go:94:20:94:27 | selection of Params | user-provided value |
diff --git a/go/ql/test/library-tests/semmle/go/frameworks/Revel/ReflectedXss.expected b/go/ql/test/library-tests/semmle/go/frameworks/Revel/ReflectedXss.expected
index 8d8c3bc3360..7a11d9bd08e 100644
--- a/go/ql/test/library-tests/semmle/go/frameworks/Revel/ReflectedXss.expected
+++ b/go/ql/test/library-tests/semmle/go/frameworks/Revel/ReflectedXss.expected
@@ -1,24 +1,24 @@
 edges
-| EndToEnd.go:36:18:36:25 | selection of Params : pointer type | EndToEnd.go:37:24:37:26 | buf |
-| EndToEnd.go:69:22:69:29 | selection of Params : pointer type | EndToEnd.go:69:22:69:51 | call to Get |
-| Revel.go:70:22:70:29 | selection of Params : pointer type | Revel.go:70:22:70:35 | selection of Query |
-| examples/booking/app/init.go:36:44:36:48 | selection of URL : pointer type | examples/booking/app/init.go:36:44:36:53 | selection of Path |
-| examples/booking/app/init.go:40:49:40:53 | selection of URL : pointer type | examples/booking/app/init.go:40:49:40:58 | selection of Path |
+| EndToEnd.go:36:18:36:25 | selection of Params | EndToEnd.go:37:24:37:26 | buf |
+| EndToEnd.go:69:22:69:29 | selection of Params | EndToEnd.go:69:22:69:51 | call to Get |
+| Revel.go:70:22:70:29 | selection of Params | Revel.go:70:22:70:35 | selection of Query |
+| examples/booking/app/init.go:36:44:36:48 | selection of URL | examples/booking/app/init.go:36:44:36:53 | selection of Path |
+| examples/booking/app/init.go:40:49:40:53 | selection of URL | examples/booking/app/init.go:40:49:40:58 | selection of Path |
 nodes
-| EndToEnd.go:36:18:36:25 | selection of Params : pointer type | semmle.label | selection of Params : pointer type |
+| EndToEnd.go:36:18:36:25 | selection of Params | semmle.label | selection of Params |
 | EndToEnd.go:37:24:37:26 | buf | semmle.label | buf |
-| EndToEnd.go:69:22:69:29 | selection of Params : pointer type | semmle.label | selection of Params : pointer type |
+| EndToEnd.go:69:22:69:29 | selection of Params | semmle.label | selection of Params |
 | EndToEnd.go:69:22:69:51 | call to Get | semmle.label | call to Get |
-| Revel.go:70:22:70:29 | selection of Params : pointer type | semmle.label | selection of Params : pointer type |
+| Revel.go:70:22:70:29 | selection of Params | semmle.label | selection of Params |
 | Revel.go:70:22:70:35 | selection of Query | semmle.label | selection of Query |
-| examples/booking/app/init.go:36:44:36:48 | selection of URL : pointer type | semmle.label | selection of URL : pointer type |
+| examples/booking/app/init.go:36:44:36:48 | selection of URL | semmle.label | selection of URL |
 | examples/booking/app/init.go:36:44:36:53 | selection of Path | semmle.label | selection of Path |
-| examples/booking/app/init.go:40:49:40:53 | selection of URL : pointer type | semmle.label | selection of URL : pointer type |
+| examples/booking/app/init.go:40:49:40:53 | selection of URL | semmle.label | selection of URL |
 | examples/booking/app/init.go:40:49:40:58 | selection of Path | semmle.label | selection of Path |
 subpaths
 #select
-| EndToEnd.go:37:24:37:26 | buf | EndToEnd.go:36:18:36:25 | selection of Params : pointer type | EndToEnd.go:37:24:37:26 | buf | Cross-site scripting vulnerability due to $@. | EndToEnd.go:36:18:36:25 | selection of Params | user-provided value | EndToEnd.go:0:0:0:0 | EndToEnd.go |  |
-| EndToEnd.go:69:22:69:51 | call to Get | EndToEnd.go:69:22:69:29 | selection of Params : pointer type | EndToEnd.go:69:22:69:51 | call to Get | Cross-site scripting vulnerability due to $@. | EndToEnd.go:69:22:69:29 | selection of Params | user-provided value | EndToEnd.go:0:0:0:0 | EndToEnd.go |  |
-| Revel.go:70:22:70:35 | selection of Query | Revel.go:70:22:70:29 | selection of Params : pointer type | Revel.go:70:22:70:35 | selection of Query | Cross-site scripting vulnerability due to $@. The value is $@. | Revel.go:70:22:70:29 | selection of Params | user-provided value | views/myAppController/rawRead.html:1:1:2:9 | {{raw .Foo}}\n{{.Bar}}\n | instantiated as a raw template |
-| examples/booking/app/init.go:36:44:36:53 | selection of Path | examples/booking/app/init.go:36:44:36:48 | selection of URL : pointer type | examples/booking/app/init.go:36:44:36:53 | selection of Path | Cross-site scripting vulnerability due to $@. | examples/booking/app/init.go:36:44:36:48 | selection of URL | user-provided value | examples/booking/app/init.go:0:0:0:0 | examples/booking/app/init.go |  |
-| examples/booking/app/init.go:40:49:40:58 | selection of Path | examples/booking/app/init.go:40:49:40:53 | selection of URL : pointer type | examples/booking/app/init.go:40:49:40:58 | selection of Path | Cross-site scripting vulnerability due to $@. | examples/booking/app/init.go:40:49:40:53 | selection of URL | user-provided value | examples/booking/app/init.go:0:0:0:0 | examples/booking/app/init.go |  |
+| EndToEnd.go:37:24:37:26 | buf | EndToEnd.go:36:18:36:25 | selection of Params | EndToEnd.go:37:24:37:26 | buf | Cross-site scripting vulnerability due to $@. | EndToEnd.go:36:18:36:25 | selection of Params | user-provided value | EndToEnd.go:0:0:0:0 | EndToEnd.go |  |
+| EndToEnd.go:69:22:69:51 | call to Get | EndToEnd.go:69:22:69:29 | selection of Params | EndToEnd.go:69:22:69:51 | call to Get | Cross-site scripting vulnerability due to $@. | EndToEnd.go:69:22:69:29 | selection of Params | user-provided value | EndToEnd.go:0:0:0:0 | EndToEnd.go |  |
+| Revel.go:70:22:70:35 | selection of Query | Revel.go:70:22:70:29 | selection of Params | Revel.go:70:22:70:35 | selection of Query | Cross-site scripting vulnerability due to $@. The value is $@. | Revel.go:70:22:70:29 | selection of Params | user-provided value | views/myAppController/rawRead.html:1:1:2:9 | {{raw .Foo}}\n{{.Bar}}\n | instantiated as a raw template |
+| examples/booking/app/init.go:36:44:36:53 | selection of Path | examples/booking/app/init.go:36:44:36:48 | selection of URL | examples/booking/app/init.go:36:44:36:53 | selection of Path | Cross-site scripting vulnerability due to $@. | examples/booking/app/init.go:36:44:36:48 | selection of URL | user-provided value | examples/booking/app/init.go:0:0:0:0 | examples/booking/app/init.go |  |
+| examples/booking/app/init.go:40:49:40:58 | selection of Path | examples/booking/app/init.go:40:49:40:53 | selection of URL | examples/booking/app/init.go:40:49:40:58 | selection of Path | Cross-site scripting vulnerability due to $@. | examples/booking/app/init.go:40:49:40:53 | selection of URL | user-provided value | examples/booking/app/init.go:0:0:0:0 | examples/booking/app/init.go |  |
diff --git a/go/ql/test/library-tests/semmle/go/frameworks/Revel/TaintedPath.expected b/go/ql/test/library-tests/semmle/go/frameworks/Revel/TaintedPath.expected
index 97e912afcc9..5cce1e37d95 100644
--- a/go/ql/test/library-tests/semmle/go/frameworks/Revel/TaintedPath.expected
+++ b/go/ql/test/library-tests/semmle/go/frameworks/Revel/TaintedPath.expected
@@ -1,12 +1,12 @@
 edges
-| EndToEnd.go:58:18:58:25 | selection of Params : pointer type | EndToEnd.go:58:18:58:47 | call to Get |
-| EndToEnd.go:64:26:64:33 | selection of Params : pointer type | EndToEnd.go:64:26:64:55 | call to Get |
+| EndToEnd.go:58:18:58:25 | selection of Params | EndToEnd.go:58:18:58:47 | call to Get |
+| EndToEnd.go:64:26:64:33 | selection of Params | EndToEnd.go:64:26:64:55 | call to Get |
 nodes
-| EndToEnd.go:58:18:58:25 | selection of Params : pointer type | semmle.label | selection of Params : pointer type |
+| EndToEnd.go:58:18:58:25 | selection of Params | semmle.label | selection of Params |
 | EndToEnd.go:58:18:58:47 | call to Get | semmle.label | call to Get |
-| EndToEnd.go:64:26:64:33 | selection of Params : pointer type | semmle.label | selection of Params : pointer type |
+| EndToEnd.go:64:26:64:33 | selection of Params | semmle.label | selection of Params |
 | EndToEnd.go:64:26:64:55 | call to Get | semmle.label | call to Get |
 subpaths
 #select
-| EndToEnd.go:58:18:58:47 | call to Get | EndToEnd.go:58:18:58:25 | selection of Params : pointer type | EndToEnd.go:58:18:58:47 | call to Get | This path depends on a $@. | EndToEnd.go:58:18:58:25 | selection of Params | user-provided value |
-| EndToEnd.go:64:26:64:55 | call to Get | EndToEnd.go:64:26:64:33 | selection of Params : pointer type | EndToEnd.go:64:26:64:55 | call to Get | This path depends on a $@. | EndToEnd.go:64:26:64:33 | selection of Params | user-provided value |
+| EndToEnd.go:58:18:58:47 | call to Get | EndToEnd.go:58:18:58:25 | selection of Params | EndToEnd.go:58:18:58:47 | call to Get | This path depends on a $@. | EndToEnd.go:58:18:58:25 | selection of Params | user-provided value |
+| EndToEnd.go:64:26:64:55 | call to Get | EndToEnd.go:64:26:64:33 | selection of Params | EndToEnd.go:64:26:64:55 | call to Get | This path depends on a $@. | EndToEnd.go:64:26:64:33 | selection of Params | user-provided value |
diff --git a/go/ql/test/library-tests/semmle/go/frameworks/Spew/TaintFlows.expected b/go/ql/test/library-tests/semmle/go/frameworks/Spew/TaintFlows.expected
index f24231f8566..404524ec3d6 100644
--- a/go/ql/test/library-tests/semmle/go/frameworks/Spew/TaintFlows.expected
+++ b/go/ql/test/library-tests/semmle/go/frameworks/Spew/TaintFlows.expected
@@ -1,17 +1,17 @@
-| test.go:26:16:26:35 | call to getUntrustedString : string | test.go:33:14:33:23 | sUntrusted |
-| test.go:26:16:26:35 | call to getUntrustedString : string | test.go:35:14:35:23 | sUntrusted |
-| test.go:26:16:26:35 | call to getUntrustedString : string | test.go:41:18:41:27 | sUntrusted |
-| test.go:26:16:26:35 | call to getUntrustedString : string | test.go:51:13:51:16 | str3 |
-| test.go:28:16:28:35 | call to getUntrustedStruct : Person | test.go:30:12:30:21 | pUntrusted |
-| test.go:28:16:28:35 | call to getUntrustedStruct : Person | test.go:31:13:31:22 | pUntrusted |
-| test.go:28:16:28:35 | call to getUntrustedStruct : Person | test.go:32:15:32:24 | pUntrusted |
-| test.go:28:16:28:35 | call to getUntrustedStruct : Person | test.go:34:17:34:26 | pUntrusted |
-| test.go:28:16:28:35 | call to getUntrustedStruct : Person | test.go:36:17:36:26 | pUntrusted |
-| test.go:28:16:28:35 | call to getUntrustedStruct : Person | test.go:38:16:38:25 | pUntrusted |
-| test.go:28:16:28:35 | call to getUntrustedStruct : Person | test.go:39:17:39:26 | pUntrusted |
-| test.go:28:16:28:35 | call to getUntrustedStruct : Person | test.go:40:19:40:28 | pUntrusted |
-| test.go:28:16:28:35 | call to getUntrustedStruct : Person | test.go:42:21:42:30 | pUntrusted |
-| test.go:28:16:28:35 | call to getUntrustedStruct : Person | test.go:45:13:45:16 | str1 |
-| test.go:28:16:28:35 | call to getUntrustedStruct : Person | test.go:48:13:48:16 | str2 |
-| test.go:28:16:28:35 | call to getUntrustedStruct : Person | test.go:54:13:54:16 | str4 |
-| test.go:28:16:28:35 | call to getUntrustedStruct : Person | test.go:57:13:57:16 | str5 |
+| test.go:26:16:26:35 | call to getUntrustedString | test.go:33:14:33:23 | sUntrusted |
+| test.go:26:16:26:35 | call to getUntrustedString | test.go:35:14:35:23 | sUntrusted |
+| test.go:26:16:26:35 | call to getUntrustedString | test.go:41:18:41:27 | sUntrusted |
+| test.go:26:16:26:35 | call to getUntrustedString | test.go:51:13:51:16 | str3 |
+| test.go:28:16:28:35 | call to getUntrustedStruct | test.go:30:12:30:21 | pUntrusted |
+| test.go:28:16:28:35 | call to getUntrustedStruct | test.go:31:13:31:22 | pUntrusted |
+| test.go:28:16:28:35 | call to getUntrustedStruct | test.go:32:15:32:24 | pUntrusted |
+| test.go:28:16:28:35 | call to getUntrustedStruct | test.go:34:17:34:26 | pUntrusted |
+| test.go:28:16:28:35 | call to getUntrustedStruct | test.go:36:17:36:26 | pUntrusted |
+| test.go:28:16:28:35 | call to getUntrustedStruct | test.go:38:16:38:25 | pUntrusted |
+| test.go:28:16:28:35 | call to getUntrustedStruct | test.go:39:17:39:26 | pUntrusted |
+| test.go:28:16:28:35 | call to getUntrustedStruct | test.go:40:19:40:28 | pUntrusted |
+| test.go:28:16:28:35 | call to getUntrustedStruct | test.go:42:21:42:30 | pUntrusted |
+| test.go:28:16:28:35 | call to getUntrustedStruct | test.go:45:13:45:16 | str1 |
+| test.go:28:16:28:35 | call to getUntrustedStruct | test.go:48:13:48:16 | str2 |
+| test.go:28:16:28:35 | call to getUntrustedStruct | test.go:54:13:54:16 | str4 |
+| test.go:28:16:28:35 | call to getUntrustedStruct | test.go:57:13:57:16 | str5 |
diff --git a/go/ql/test/library-tests/semmle/go/frameworks/XNetHtml/ReflectedXss.expected b/go/ql/test/library-tests/semmle/go/frameworks/XNetHtml/ReflectedXss.expected
index ca8c2655274..aa0daf2d591 100644
--- a/go/ql/test/library-tests/semmle/go/frameworks/XNetHtml/ReflectedXss.expected
+++ b/go/ql/test/library-tests/semmle/go/frameworks/XNetHtml/ReflectedXss.expected
@@ -1,28 +1,28 @@
 edges
-| test.go:10:2:10:42 | ... := ...[0] : pointer type | test.go:14:15:14:55 | type conversion |
-| test.go:16:24:16:35 | selection of Body : ReadCloser | test.go:17:15:17:31 | type conversion |
-| test.go:16:24:16:35 | selection of Body : ReadCloser | test.go:28:22:28:25 | node |
-| test.go:19:36:19:47 | selection of Body : ReadCloser | test.go:20:15:20:32 | type conversion |
-| test.go:22:33:22:44 | selection of Body : ReadCloser | test.go:23:15:23:35 | type conversion |
-| test.go:25:45:25:56 | selection of Body : ReadCloser | test.go:26:15:26:36 | type conversion |
-| test.go:30:33:30:44 | selection of Body : ReadCloser | test.go:31:15:31:34 | call to Buffered |
-| test.go:30:33:30:44 | selection of Body : ReadCloser | test.go:32:15:32:29 | call to Raw |
-| test.go:30:33:30:44 | selection of Body : ReadCloser | test.go:34:15:34:19 | value |
-| test.go:30:33:30:44 | selection of Body : ReadCloser | test.go:35:15:35:30 | call to Text |
-| test.go:30:33:30:44 | selection of Body : ReadCloser | test.go:36:15:36:44 | type conversion |
+| test.go:10:2:10:42 | ... := ...[0] | test.go:14:15:14:55 | type conversion |
+| test.go:16:24:16:35 | selection of Body | test.go:17:15:17:31 | type conversion |
+| test.go:16:24:16:35 | selection of Body | test.go:28:22:28:25 | node |
+| test.go:19:36:19:47 | selection of Body | test.go:20:15:20:32 | type conversion |
+| test.go:22:33:22:44 | selection of Body | test.go:23:15:23:35 | type conversion |
+| test.go:25:45:25:56 | selection of Body | test.go:26:15:26:36 | type conversion |
+| test.go:30:33:30:44 | selection of Body | test.go:31:15:31:34 | call to Buffered |
+| test.go:30:33:30:44 | selection of Body | test.go:32:15:32:29 | call to Raw |
+| test.go:30:33:30:44 | selection of Body | test.go:34:15:34:19 | value |
+| test.go:30:33:30:44 | selection of Body | test.go:35:15:35:30 | call to Text |
+| test.go:30:33:30:44 | selection of Body | test.go:36:15:36:44 | type conversion |
 nodes
-| test.go:10:2:10:42 | ... := ...[0] : pointer type | semmle.label | ... := ...[0] : pointer type |
+| test.go:10:2:10:42 | ... := ...[0] | semmle.label | ... := ...[0] |
 | test.go:14:15:14:55 | type conversion | semmle.label | type conversion |
-| test.go:16:24:16:35 | selection of Body : ReadCloser | semmle.label | selection of Body : ReadCloser |
+| test.go:16:24:16:35 | selection of Body | semmle.label | selection of Body |
 | test.go:17:15:17:31 | type conversion | semmle.label | type conversion |
-| test.go:19:36:19:47 | selection of Body : ReadCloser | semmle.label | selection of Body : ReadCloser |
+| test.go:19:36:19:47 | selection of Body | semmle.label | selection of Body |
 | test.go:20:15:20:32 | type conversion | semmle.label | type conversion |
-| test.go:22:33:22:44 | selection of Body : ReadCloser | semmle.label | selection of Body : ReadCloser |
+| test.go:22:33:22:44 | selection of Body | semmle.label | selection of Body |
 | test.go:23:15:23:35 | type conversion | semmle.label | type conversion |
-| test.go:25:45:25:56 | selection of Body : ReadCloser | semmle.label | selection of Body : ReadCloser |
+| test.go:25:45:25:56 | selection of Body | semmle.label | selection of Body |
 | test.go:26:15:26:36 | type conversion | semmle.label | type conversion |
 | test.go:28:22:28:25 | node | semmle.label | node |
-| test.go:30:33:30:44 | selection of Body : ReadCloser | semmle.label | selection of Body : ReadCloser |
+| test.go:30:33:30:44 | selection of Body | semmle.label | selection of Body |
 | test.go:31:15:31:34 | call to Buffered | semmle.label | call to Buffered |
 | test.go:32:15:32:29 | call to Raw | semmle.label | call to Raw |
 | test.go:34:15:34:19 | value | semmle.label | value |
@@ -30,14 +30,14 @@ nodes
 | test.go:36:15:36:44 | type conversion | semmle.label | type conversion |
 subpaths
 #select
-| test.go:14:15:14:55 | type conversion | test.go:10:2:10:42 | ... := ...[0] : pointer type | test.go:14:15:14:55 | type conversion | Cross-site scripting vulnerability due to $@. | test.go:10:2:10:42 | ... := ...[0] | user-provided value | test.go:0:0:0:0 | test.go |  |
-| test.go:17:15:17:31 | type conversion | test.go:16:24:16:35 | selection of Body : ReadCloser | test.go:17:15:17:31 | type conversion | Cross-site scripting vulnerability due to $@. | test.go:16:24:16:35 | selection of Body | user-provided value | test.go:0:0:0:0 | test.go |  |
-| test.go:20:15:20:32 | type conversion | test.go:19:36:19:47 | selection of Body : ReadCloser | test.go:20:15:20:32 | type conversion | Cross-site scripting vulnerability due to $@. | test.go:19:36:19:47 | selection of Body | user-provided value | test.go:0:0:0:0 | test.go |  |
-| test.go:23:15:23:35 | type conversion | test.go:22:33:22:44 | selection of Body : ReadCloser | test.go:23:15:23:35 | type conversion | Cross-site scripting vulnerability due to $@. | test.go:22:33:22:44 | selection of Body | user-provided value | test.go:0:0:0:0 | test.go |  |
-| test.go:26:15:26:36 | type conversion | test.go:25:45:25:56 | selection of Body : ReadCloser | test.go:26:15:26:36 | type conversion | Cross-site scripting vulnerability due to $@. | test.go:25:45:25:56 | selection of Body | user-provided value | test.go:0:0:0:0 | test.go |  |
-| test.go:28:22:28:25 | node | test.go:16:24:16:35 | selection of Body : ReadCloser | test.go:28:22:28:25 | node | Cross-site scripting vulnerability due to $@. | test.go:16:24:16:35 | selection of Body | user-provided value | test.go:0:0:0:0 | test.go |  |
-| test.go:31:15:31:34 | call to Buffered | test.go:30:33:30:44 | selection of Body : ReadCloser | test.go:31:15:31:34 | call to Buffered | Cross-site scripting vulnerability due to $@. | test.go:30:33:30:44 | selection of Body | user-provided value | test.go:0:0:0:0 | test.go |  |
-| test.go:32:15:32:29 | call to Raw | test.go:30:33:30:44 | selection of Body : ReadCloser | test.go:32:15:32:29 | call to Raw | Cross-site scripting vulnerability due to $@. | test.go:30:33:30:44 | selection of Body | user-provided value | test.go:0:0:0:0 | test.go |  |
-| test.go:34:15:34:19 | value | test.go:30:33:30:44 | selection of Body : ReadCloser | test.go:34:15:34:19 | value | Cross-site scripting vulnerability due to $@. | test.go:30:33:30:44 | selection of Body | user-provided value | test.go:0:0:0:0 | test.go |  |
-| test.go:35:15:35:30 | call to Text | test.go:30:33:30:44 | selection of Body : ReadCloser | test.go:35:15:35:30 | call to Text | Cross-site scripting vulnerability due to $@. | test.go:30:33:30:44 | selection of Body | user-provided value | test.go:0:0:0:0 | test.go |  |
-| test.go:36:15:36:44 | type conversion | test.go:30:33:30:44 | selection of Body : ReadCloser | test.go:36:15:36:44 | type conversion | Cross-site scripting vulnerability due to $@. | test.go:30:33:30:44 | selection of Body | user-provided value | test.go:0:0:0:0 | test.go |  |
+| test.go:14:15:14:55 | type conversion | test.go:10:2:10:42 | ... := ...[0] | test.go:14:15:14:55 | type conversion | Cross-site scripting vulnerability due to $@. | test.go:10:2:10:42 | ... := ...[0] | user-provided value | test.go:0:0:0:0 | test.go |  |
+| test.go:17:15:17:31 | type conversion | test.go:16:24:16:35 | selection of Body | test.go:17:15:17:31 | type conversion | Cross-site scripting vulnerability due to $@. | test.go:16:24:16:35 | selection of Body | user-provided value | test.go:0:0:0:0 | test.go |  |
+| test.go:20:15:20:32 | type conversion | test.go:19:36:19:47 | selection of Body | test.go:20:15:20:32 | type conversion | Cross-site scripting vulnerability due to $@. | test.go:19:36:19:47 | selection of Body | user-provided value | test.go:0:0:0:0 | test.go |  |
+| test.go:23:15:23:35 | type conversion | test.go:22:33:22:44 | selection of Body | test.go:23:15:23:35 | type conversion | Cross-site scripting vulnerability due to $@. | test.go:22:33:22:44 | selection of Body | user-provided value | test.go:0:0:0:0 | test.go |  |
+| test.go:26:15:26:36 | type conversion | test.go:25:45:25:56 | selection of Body | test.go:26:15:26:36 | type conversion | Cross-site scripting vulnerability due to $@. | test.go:25:45:25:56 | selection of Body | user-provided value | test.go:0:0:0:0 | test.go |  |
+| test.go:28:22:28:25 | node | test.go:16:24:16:35 | selection of Body | test.go:28:22:28:25 | node | Cross-site scripting vulnerability due to $@. | test.go:16:24:16:35 | selection of Body | user-provided value | test.go:0:0:0:0 | test.go |  |
+| test.go:31:15:31:34 | call to Buffered | test.go:30:33:30:44 | selection of Body | test.go:31:15:31:34 | call to Buffered | Cross-site scripting vulnerability due to $@. | test.go:30:33:30:44 | selection of Body | user-provided value | test.go:0:0:0:0 | test.go |  |
+| test.go:32:15:32:29 | call to Raw | test.go:30:33:30:44 | selection of Body | test.go:32:15:32:29 | call to Raw | Cross-site scripting vulnerability due to $@. | test.go:30:33:30:44 | selection of Body | user-provided value | test.go:0:0:0:0 | test.go |  |
+| test.go:34:15:34:19 | value | test.go:30:33:30:44 | selection of Body | test.go:34:15:34:19 | value | Cross-site scripting vulnerability due to $@. | test.go:30:33:30:44 | selection of Body | user-provided value | test.go:0:0:0:0 | test.go |  |
+| test.go:35:15:35:30 | call to Text | test.go:30:33:30:44 | selection of Body | test.go:35:15:35:30 | call to Text | Cross-site scripting vulnerability due to $@. | test.go:30:33:30:44 | selection of Body | user-provided value | test.go:0:0:0:0 | test.go |  |
+| test.go:36:15:36:44 | type conversion | test.go:30:33:30:44 | selection of Body | test.go:36:15:36:44 | type conversion | Cross-site scripting vulnerability due to $@. | test.go:30:33:30:44 | selection of Body | user-provided value | test.go:0:0:0:0 | test.go |  |
diff --git a/go/ql/test/query-tests/Security/CWE-020/IncompleteHostnameRegexp/IncompleteHostnameRegexp.expected b/go/ql/test/query-tests/Security/CWE-020/IncompleteHostnameRegexp/IncompleteHostnameRegexp.expected
index f73dd03f976..029366069d2 100644
--- a/go/ql/test/query-tests/Security/CWE-020/IncompleteHostnameRegexp/IncompleteHostnameRegexp.expected
+++ b/go/ql/test/query-tests/Security/CWE-020/IncompleteHostnameRegexp/IncompleteHostnameRegexp.expected
@@ -1,12 +1,12 @@
 edges
-| IncompleteHostnameRegexp.go:11:8:11:36 | "^((www\|beta).)?example.com/" : string | IncompleteHostnameRegexp.go:12:38:12:39 | re |
+| IncompleteHostnameRegexp.go:11:8:11:36 | "^((www\|beta).)?example.com/" | IncompleteHostnameRegexp.go:12:38:12:39 | re |
 nodes
-| IncompleteHostnameRegexp.go:11:8:11:36 | "^((www\|beta).)?example.com/" : string | semmle.label | "^((www\|beta).)?example.com/" : string |
+| IncompleteHostnameRegexp.go:11:8:11:36 | "^((www\|beta).)?example.com/" | semmle.label | "^((www\|beta).)?example.com/" |
 | IncompleteHostnameRegexp.go:12:38:12:39 | re | semmle.label | re |
 | main.go:39:60:39:79 | "^test2.github.com$" | semmle.label | "^test2.github.com$" |
 | main.go:44:15:44:39 | `https://www.example.com` | semmle.label | `https://www.example.com` |
 subpaths
 #select
-| IncompleteHostnameRegexp.go:11:8:11:36 | "^((www\|beta).)?example.com/" : string | IncompleteHostnameRegexp.go:11:8:11:36 | "^((www\|beta).)?example.com/" : string | IncompleteHostnameRegexp.go:12:38:12:39 | re | This regular expression has an unescaped dot before ')?example.com', so it might match more hosts than expected when $@. | IncompleteHostnameRegexp.go:12:38:12:39 | re | the regular expression is used |
+| IncompleteHostnameRegexp.go:11:8:11:36 | "^((www\|beta).)?example.com/" | IncompleteHostnameRegexp.go:11:8:11:36 | "^((www\|beta).)?example.com/" | IncompleteHostnameRegexp.go:12:38:12:39 | re | This regular expression has an unescaped dot before ')?example.com', so it might match more hosts than expected when $@. | IncompleteHostnameRegexp.go:12:38:12:39 | re | the regular expression is used |
 | main.go:39:60:39:79 | "^test2.github.com$" | main.go:39:60:39:79 | "^test2.github.com$" | main.go:39:60:39:79 | "^test2.github.com$" | This regular expression has an unescaped dot before 'github.com', so it might match more hosts than expected when $@. | main.go:39:60:39:79 | "^test2.github.com$" | the regular expression is used |
 | main.go:44:15:44:39 | `https://www.example.com` | main.go:44:15:44:39 | `https://www.example.com` | main.go:44:15:44:39 | `https://www.example.com` | This regular expression has an unescaped dot before 'example.com', so it might match more hosts than expected when $@. | main.go:44:15:44:39 | `https://www.example.com` | the regular expression is used |
diff --git a/go/ql/test/query-tests/Security/CWE-022/TaintedPath.expected b/go/ql/test/query-tests/Security/CWE-022/TaintedPath.expected
index 568ba70ff81..3e26f767b5e 100644
--- a/go/ql/test/query-tests/Security/CWE-022/TaintedPath.expected
+++ b/go/ql/test/query-tests/Security/CWE-022/TaintedPath.expected
@@ -1,15 +1,15 @@
 edges
-| TaintedPath.go:13:18:13:22 | selection of URL : pointer type | TaintedPath.go:16:29:16:40 | tainted_path |
-| TaintedPath.go:13:18:13:22 | selection of URL : pointer type | TaintedPath.go:20:28:20:69 | call to Join |
-| tst.go:14:2:14:39 | ... := ...[1] : pointer type | tst.go:17:41:17:56 | selection of Filename |
+| TaintedPath.go:13:18:13:22 | selection of URL | TaintedPath.go:16:29:16:40 | tainted_path |
+| TaintedPath.go:13:18:13:22 | selection of URL | TaintedPath.go:20:28:20:69 | call to Join |
+| tst.go:14:2:14:39 | ... := ...[1] | tst.go:17:41:17:56 | selection of Filename |
 nodes
-| TaintedPath.go:13:18:13:22 | selection of URL : pointer type | semmle.label | selection of URL : pointer type |
+| TaintedPath.go:13:18:13:22 | selection of URL | semmle.label | selection of URL |
 | TaintedPath.go:16:29:16:40 | tainted_path | semmle.label | tainted_path |
 | TaintedPath.go:20:28:20:69 | call to Join | semmle.label | call to Join |
-| tst.go:14:2:14:39 | ... := ...[1] : pointer type | semmle.label | ... := ...[1] : pointer type |
+| tst.go:14:2:14:39 | ... := ...[1] | semmle.label | ... := ...[1] |
 | tst.go:17:41:17:56 | selection of Filename | semmle.label | selection of Filename |
 subpaths
 #select
-| TaintedPath.go:16:29:16:40 | tainted_path | TaintedPath.go:13:18:13:22 | selection of URL : pointer type | TaintedPath.go:16:29:16:40 | tainted_path | This path depends on a $@. | TaintedPath.go:13:18:13:22 | selection of URL | user-provided value |
-| TaintedPath.go:20:28:20:69 | call to Join | TaintedPath.go:13:18:13:22 | selection of URL : pointer type | TaintedPath.go:20:28:20:69 | call to Join | This path depends on a $@. | TaintedPath.go:13:18:13:22 | selection of URL | user-provided value |
-| tst.go:17:41:17:56 | selection of Filename | tst.go:14:2:14:39 | ... := ...[1] : pointer type | tst.go:17:41:17:56 | selection of Filename | This path depends on a $@. | tst.go:14:2:14:39 | ... := ...[1] | user-provided value |
+| TaintedPath.go:16:29:16:40 | tainted_path | TaintedPath.go:13:18:13:22 | selection of URL | TaintedPath.go:16:29:16:40 | tainted_path | This path depends on a $@. | TaintedPath.go:13:18:13:22 | selection of URL | user-provided value |
+| TaintedPath.go:20:28:20:69 | call to Join | TaintedPath.go:13:18:13:22 | selection of URL | TaintedPath.go:20:28:20:69 | call to Join | This path depends on a $@. | TaintedPath.go:13:18:13:22 | selection of URL | user-provided value |
+| tst.go:17:41:17:56 | selection of Filename | tst.go:14:2:14:39 | ... := ...[1] | tst.go:17:41:17:56 | selection of Filename | This path depends on a $@. | tst.go:14:2:14:39 | ... := ...[1] | user-provided value |
diff --git a/go/ql/test/query-tests/Security/CWE-022/UnsafeUnzipSymlink.expected b/go/ql/test/query-tests/Security/CWE-022/UnsafeUnzipSymlink.expected
index f44b118d7d5..da8dc7ed50e 100644
--- a/go/ql/test/query-tests/Security/CWE-022/UnsafeUnzipSymlink.expected
+++ b/go/ql/test/query-tests/Security/CWE-022/UnsafeUnzipSymlink.expected
@@ -1,22 +1,22 @@
 edges
-| UnsafeUnzipSymlink.go:111:19:111:26 | definition of linkName : string | UnsafeUnzipSymlink.go:112:13:112:20 | linkName |
-| UnsafeUnzipSymlink.go:111:29:111:36 | definition of fileName : string | UnsafeUnzipSymlink.go:112:23:112:30 | fileName |
-| UnsafeUnzipSymlink.go:126:17:126:31 | selection of Linkname : string | UnsafeUnzipSymlink.go:111:19:111:26 | definition of linkName : string |
-| UnsafeUnzipSymlink.go:126:34:126:44 | selection of Name : string | UnsafeUnzipSymlink.go:111:29:111:36 | definition of fileName : string |
+| UnsafeUnzipSymlink.go:111:19:111:26 | definition of linkName | UnsafeUnzipSymlink.go:112:13:112:20 | linkName |
+| UnsafeUnzipSymlink.go:111:29:111:36 | definition of fileName | UnsafeUnzipSymlink.go:112:23:112:30 | fileName |
+| UnsafeUnzipSymlink.go:126:17:126:31 | selection of Linkname | UnsafeUnzipSymlink.go:111:19:111:26 | definition of linkName |
+| UnsafeUnzipSymlink.go:126:34:126:44 | selection of Name | UnsafeUnzipSymlink.go:111:29:111:36 | definition of fileName |
 nodes
 | UnsafeUnzipSymlink.go:31:15:31:29 | selection of Linkname | semmle.label | selection of Linkname |
 | UnsafeUnzipSymlink.go:31:32:31:42 | selection of Name | semmle.label | selection of Name |
 | UnsafeUnzipSymlink.go:43:25:43:35 | selection of Name | semmle.label | selection of Name |
-| UnsafeUnzipSymlink.go:111:19:111:26 | definition of linkName : string | semmle.label | definition of linkName : string |
-| UnsafeUnzipSymlink.go:111:29:111:36 | definition of fileName : string | semmle.label | definition of fileName : string |
+| UnsafeUnzipSymlink.go:111:19:111:26 | definition of linkName | semmle.label | definition of linkName |
+| UnsafeUnzipSymlink.go:111:29:111:36 | definition of fileName | semmle.label | definition of fileName |
 | UnsafeUnzipSymlink.go:112:13:112:20 | linkName | semmle.label | linkName |
 | UnsafeUnzipSymlink.go:112:23:112:30 | fileName | semmle.label | fileName |
-| UnsafeUnzipSymlink.go:126:17:126:31 | selection of Linkname : string | semmle.label | selection of Linkname : string |
-| UnsafeUnzipSymlink.go:126:34:126:44 | selection of Name : string | semmle.label | selection of Name : string |
+| UnsafeUnzipSymlink.go:126:17:126:31 | selection of Linkname | semmle.label | selection of Linkname |
+| UnsafeUnzipSymlink.go:126:34:126:44 | selection of Name | semmle.label | selection of Name |
 subpaths
 #select
 | UnsafeUnzipSymlink.go:31:15:31:29 | selection of Linkname | UnsafeUnzipSymlink.go:31:15:31:29 | selection of Linkname | UnsafeUnzipSymlink.go:31:15:31:29 | selection of Linkname | Unresolved path from an archive header, which may point outside the archive root, is used in $@. | UnsafeUnzipSymlink.go:31:15:31:29 | selection of Linkname | symlink creation |
 | UnsafeUnzipSymlink.go:31:32:31:42 | selection of Name | UnsafeUnzipSymlink.go:31:32:31:42 | selection of Name | UnsafeUnzipSymlink.go:31:32:31:42 | selection of Name | Unresolved path from an archive header, which may point outside the archive root, is used in $@. | UnsafeUnzipSymlink.go:31:32:31:42 | selection of Name | symlink creation |
 | UnsafeUnzipSymlink.go:43:25:43:35 | selection of Name | UnsafeUnzipSymlink.go:43:25:43:35 | selection of Name | UnsafeUnzipSymlink.go:43:25:43:35 | selection of Name | Unresolved path from an archive header, which may point outside the archive root, is used in $@. | UnsafeUnzipSymlink.go:43:25:43:35 | selection of Name | symlink creation |
-| UnsafeUnzipSymlink.go:126:17:126:31 | selection of Linkname | UnsafeUnzipSymlink.go:126:17:126:31 | selection of Linkname : string | UnsafeUnzipSymlink.go:112:13:112:20 | linkName | Unresolved path from an archive header, which may point outside the archive root, is used in $@. | UnsafeUnzipSymlink.go:112:13:112:20 | linkName | symlink creation |
-| UnsafeUnzipSymlink.go:126:34:126:44 | selection of Name | UnsafeUnzipSymlink.go:126:34:126:44 | selection of Name : string | UnsafeUnzipSymlink.go:112:23:112:30 | fileName | Unresolved path from an archive header, which may point outside the archive root, is used in $@. | UnsafeUnzipSymlink.go:112:23:112:30 | fileName | symlink creation |
+| UnsafeUnzipSymlink.go:126:17:126:31 | selection of Linkname | UnsafeUnzipSymlink.go:126:17:126:31 | selection of Linkname | UnsafeUnzipSymlink.go:112:13:112:20 | linkName | Unresolved path from an archive header, which may point outside the archive root, is used in $@. | UnsafeUnzipSymlink.go:112:13:112:20 | linkName | symlink creation |
+| UnsafeUnzipSymlink.go:126:34:126:44 | selection of Name | UnsafeUnzipSymlink.go:126:34:126:44 | selection of Name | UnsafeUnzipSymlink.go:112:23:112:30 | fileName | Unresolved path from an archive header, which may point outside the archive root, is used in $@. | UnsafeUnzipSymlink.go:112:23:112:30 | fileName | symlink creation |
diff --git a/go/ql/test/query-tests/Security/CWE-022/ZipSlip.expected b/go/ql/test/query-tests/Security/CWE-022/ZipSlip.expected
index 2a58d80fe26..1506632f5c5 100644
--- a/go/ql/test/query-tests/Security/CWE-022/ZipSlip.expected
+++ b/go/ql/test/query-tests/Security/CWE-022/ZipSlip.expected
@@ -1,27 +1,27 @@
 edges
-| UnsafeUnzipSymlinkGood.go:52:24:52:32 | definition of candidate : string | UnsafeUnzipSymlinkGood.go:61:31:61:62 | call to Join |
-| UnsafeUnzipSymlinkGood.go:72:3:72:25 | ... := ...[0] : pointer type | UnsafeUnzipSymlinkGood.go:76:24:76:38 | selection of Linkname : string |
-| UnsafeUnzipSymlinkGood.go:72:3:72:25 | ... := ...[0] : pointer type | UnsafeUnzipSymlinkGood.go:76:70:76:80 | selection of Name : string |
-| UnsafeUnzipSymlinkGood.go:76:24:76:38 | selection of Linkname : string | UnsafeUnzipSymlinkGood.go:52:24:52:32 | definition of candidate : string |
-| UnsafeUnzipSymlinkGood.go:76:70:76:80 | selection of Name : string | UnsafeUnzipSymlinkGood.go:52:24:52:32 | definition of candidate : string |
-| ZipSlip.go:11:2:15:2 | range statement[1] : pointer type | ZipSlip.go:14:20:14:20 | p |
-| tarslip.go:15:2:15:30 | ... := ...[0] : pointer type | tarslip.go:16:14:16:34 | call to Dir |
-| tst.go:23:2:43:2 | range statement[1] : pointer type | tst.go:29:20:29:23 | path |
+| UnsafeUnzipSymlinkGood.go:52:24:52:32 | definition of candidate | UnsafeUnzipSymlinkGood.go:61:31:61:62 | call to Join |
+| UnsafeUnzipSymlinkGood.go:72:3:72:25 | ... := ...[0] | UnsafeUnzipSymlinkGood.go:76:24:76:38 | selection of Linkname |
+| UnsafeUnzipSymlinkGood.go:72:3:72:25 | ... := ...[0] | UnsafeUnzipSymlinkGood.go:76:70:76:80 | selection of Name |
+| UnsafeUnzipSymlinkGood.go:76:24:76:38 | selection of Linkname | UnsafeUnzipSymlinkGood.go:52:24:52:32 | definition of candidate |
+| UnsafeUnzipSymlinkGood.go:76:70:76:80 | selection of Name | UnsafeUnzipSymlinkGood.go:52:24:52:32 | definition of candidate |
+| ZipSlip.go:11:2:15:2 | range statement[1] | ZipSlip.go:14:20:14:20 | p |
+| tarslip.go:15:2:15:30 | ... := ...[0] | tarslip.go:16:14:16:34 | call to Dir |
+| tst.go:23:2:43:2 | range statement[1] | tst.go:29:20:29:23 | path |
 nodes
-| UnsafeUnzipSymlinkGood.go:52:24:52:32 | definition of candidate : string | semmle.label | definition of candidate : string |
+| UnsafeUnzipSymlinkGood.go:52:24:52:32 | definition of candidate | semmle.label | definition of candidate |
 | UnsafeUnzipSymlinkGood.go:61:31:61:62 | call to Join | semmle.label | call to Join |
-| UnsafeUnzipSymlinkGood.go:72:3:72:25 | ... := ...[0] : pointer type | semmle.label | ... := ...[0] : pointer type |
-| UnsafeUnzipSymlinkGood.go:76:24:76:38 | selection of Linkname : string | semmle.label | selection of Linkname : string |
-| UnsafeUnzipSymlinkGood.go:76:70:76:80 | selection of Name : string | semmle.label | selection of Name : string |
-| ZipSlip.go:11:2:15:2 | range statement[1] : pointer type | semmle.label | range statement[1] : pointer type |
+| UnsafeUnzipSymlinkGood.go:72:3:72:25 | ... := ...[0] | semmle.label | ... := ...[0] |
+| UnsafeUnzipSymlinkGood.go:76:24:76:38 | selection of Linkname | semmle.label | selection of Linkname |
+| UnsafeUnzipSymlinkGood.go:76:70:76:80 | selection of Name | semmle.label | selection of Name |
+| ZipSlip.go:11:2:15:2 | range statement[1] | semmle.label | range statement[1] |
 | ZipSlip.go:14:20:14:20 | p | semmle.label | p |
-| tarslip.go:15:2:15:30 | ... := ...[0] : pointer type | semmle.label | ... := ...[0] : pointer type |
+| tarslip.go:15:2:15:30 | ... := ...[0] | semmle.label | ... := ...[0] |
 | tarslip.go:16:14:16:34 | call to Dir | semmle.label | call to Dir |
-| tst.go:23:2:43:2 | range statement[1] : pointer type | semmle.label | range statement[1] : pointer type |
+| tst.go:23:2:43:2 | range statement[1] | semmle.label | range statement[1] |
 | tst.go:29:20:29:23 | path | semmle.label | path |
 subpaths
 #select
-| UnsafeUnzipSymlinkGood.go:72:3:72:25 | ... := ...[0] | UnsafeUnzipSymlinkGood.go:72:3:72:25 | ... := ...[0] : pointer type | UnsafeUnzipSymlinkGood.go:61:31:61:62 | call to Join | Unsanitized archive entry, which may contain '..', is used in a $@. | UnsafeUnzipSymlinkGood.go:61:31:61:62 | call to Join | file system operation |
-| ZipSlip.go:11:2:15:2 | range statement[1] | ZipSlip.go:11:2:15:2 | range statement[1] : pointer type | ZipSlip.go:14:20:14:20 | p | Unsanitized archive entry, which may contain '..', is used in a $@. | ZipSlip.go:14:20:14:20 | p | file system operation |
-| tarslip.go:15:2:15:30 | ... := ...[0] | tarslip.go:15:2:15:30 | ... := ...[0] : pointer type | tarslip.go:16:14:16:34 | call to Dir | Unsanitized archive entry, which may contain '..', is used in a $@. | tarslip.go:16:14:16:34 | call to Dir | file system operation |
-| tst.go:23:2:43:2 | range statement[1] | tst.go:23:2:43:2 | range statement[1] : pointer type | tst.go:29:20:29:23 | path | Unsanitized archive entry, which may contain '..', is used in a $@. | tst.go:29:20:29:23 | path | file system operation |
+| UnsafeUnzipSymlinkGood.go:72:3:72:25 | ... := ...[0] | UnsafeUnzipSymlinkGood.go:72:3:72:25 | ... := ...[0] | UnsafeUnzipSymlinkGood.go:61:31:61:62 | call to Join | Unsanitized archive entry, which may contain '..', is used in a $@. | UnsafeUnzipSymlinkGood.go:61:31:61:62 | call to Join | file system operation |
+| ZipSlip.go:11:2:15:2 | range statement[1] | ZipSlip.go:11:2:15:2 | range statement[1] | ZipSlip.go:14:20:14:20 | p | Unsanitized archive entry, which may contain '..', is used in a $@. | ZipSlip.go:14:20:14:20 | p | file system operation |
+| tarslip.go:15:2:15:30 | ... := ...[0] | tarslip.go:15:2:15:30 | ... := ...[0] | tarslip.go:16:14:16:34 | call to Dir | Unsanitized archive entry, which may contain '..', is used in a $@. | tarslip.go:16:14:16:34 | call to Dir | file system operation |
+| tst.go:23:2:43:2 | range statement[1] | tst.go:23:2:43:2 | range statement[1] | tst.go:29:20:29:23 | path | Unsanitized archive entry, which may contain '..', is used in a $@. | tst.go:29:20:29:23 | path | file system operation |
diff --git a/go/ql/test/query-tests/Security/CWE-078/CommandInjection.expected b/go/ql/test/query-tests/Security/CWE-078/CommandInjection.expected
index 3c93a4657ca..b55f04d6eed 100644
--- a/go/ql/test/query-tests/Security/CWE-078/CommandInjection.expected
+++ b/go/ql/test/query-tests/Security/CWE-078/CommandInjection.expected
@@ -1,52 +1,52 @@
 edges
-| ArgumentInjection.go:9:10:9:16 | selection of URL : pointer type | ArgumentInjection.go:10:31:10:34 | path |
-| CommandInjection.go:9:13:9:19 | selection of URL : pointer type | CommandInjection.go:10:22:10:28 | cmdName |
-| GitSubcommands.go:10:13:10:19 | selection of URL : pointer type | GitSubcommands.go:12:31:12:37 | tainted |
-| GitSubcommands.go:10:13:10:19 | selection of URL : pointer type | GitSubcommands.go:13:31:13:37 | tainted |
-| GitSubcommands.go:10:13:10:19 | selection of URL : pointer type | GitSubcommands.go:14:30:14:36 | tainted |
-| GitSubcommands.go:10:13:10:19 | selection of URL : pointer type | GitSubcommands.go:15:35:15:41 | tainted |
-| GitSubcommands.go:10:13:10:19 | selection of URL : pointer type | GitSubcommands.go:16:36:16:42 | tainted |
-| SanitizingDoubleDash.go:9:13:9:19 | selection of URL : pointer type | SanitizingDoubleDash.go:14:23:14:33 | slice expression |
-| SanitizingDoubleDash.go:9:13:9:19 | selection of URL : pointer type | SanitizingDoubleDash.go:40:23:40:30 | arrayLit |
-| SanitizingDoubleDash.go:9:13:9:19 | selection of URL : pointer type | SanitizingDoubleDash.go:54:23:54:30 | arrayLit |
-| SanitizingDoubleDash.go:9:13:9:19 | selection of URL : pointer type | SanitizingDoubleDash.go:70:23:70:30 | arrayLit |
-| SanitizingDoubleDash.go:9:13:9:19 | selection of URL : pointer type | SanitizingDoubleDash.go:80:23:80:29 | tainted |
-| SanitizingDoubleDash.go:92:13:92:19 | selection of URL : pointer type | SanitizingDoubleDash.go:96:24:96:34 | slice expression |
-| SanitizingDoubleDash.go:92:13:92:19 | selection of URL : pointer type | SanitizingDoubleDash.go:101:24:101:34 | slice expression |
-| SanitizingDoubleDash.go:92:13:92:19 | selection of URL : pointer type | SanitizingDoubleDash.go:105:30:105:36 | tainted : string |
-| SanitizingDoubleDash.go:92:13:92:19 | selection of URL : pointer type | SanitizingDoubleDash.go:106:24:106:31 | arrayLit |
-| SanitizingDoubleDash.go:92:13:92:19 | selection of URL : pointer type | SanitizingDoubleDash.go:112:24:112:31 | arrayLit |
-| SanitizingDoubleDash.go:92:13:92:19 | selection of URL : pointer type | SanitizingDoubleDash.go:118:24:118:31 | arrayLit |
-| SanitizingDoubleDash.go:92:13:92:19 | selection of URL : pointer type | SanitizingDoubleDash.go:124:24:124:31 | arrayLit |
-| SanitizingDoubleDash.go:92:13:92:19 | selection of URL : pointer type | SanitizingDoubleDash.go:130:24:130:31 | arrayLit |
-| SanitizingDoubleDash.go:92:13:92:19 | selection of URL : pointer type | SanitizingDoubleDash.go:137:24:137:31 | arrayLit |
-| SanitizingDoubleDash.go:92:13:92:19 | selection of URL : pointer type | SanitizingDoubleDash.go:144:24:144:31 | arrayLit |
-| SanitizingDoubleDash.go:92:13:92:19 | selection of URL : pointer type | SanitizingDoubleDash.go:148:30:148:36 | tainted |
-| SanitizingDoubleDash.go:92:13:92:19 | selection of URL : pointer type | SanitizingDoubleDash.go:152:24:152:30 | tainted |
-| SanitizingDoubleDash.go:105:15:105:37 | slice literal [array] : string | SanitizingDoubleDash.go:106:24:106:31 | arrayLit |
-| SanitizingDoubleDash.go:105:30:105:36 | tainted : string | SanitizingDoubleDash.go:105:15:105:37 | slice literal [array] : string |
+| ArgumentInjection.go:9:10:9:16 | selection of URL | ArgumentInjection.go:10:31:10:34 | path |
+| CommandInjection.go:9:13:9:19 | selection of URL | CommandInjection.go:10:22:10:28 | cmdName |
+| GitSubcommands.go:10:13:10:19 | selection of URL | GitSubcommands.go:12:31:12:37 | tainted |
+| GitSubcommands.go:10:13:10:19 | selection of URL | GitSubcommands.go:13:31:13:37 | tainted |
+| GitSubcommands.go:10:13:10:19 | selection of URL | GitSubcommands.go:14:30:14:36 | tainted |
+| GitSubcommands.go:10:13:10:19 | selection of URL | GitSubcommands.go:15:35:15:41 | tainted |
+| GitSubcommands.go:10:13:10:19 | selection of URL | GitSubcommands.go:16:36:16:42 | tainted |
+| SanitizingDoubleDash.go:9:13:9:19 | selection of URL | SanitizingDoubleDash.go:14:23:14:33 | slice expression |
+| SanitizingDoubleDash.go:9:13:9:19 | selection of URL | SanitizingDoubleDash.go:40:23:40:30 | arrayLit |
+| SanitizingDoubleDash.go:9:13:9:19 | selection of URL | SanitizingDoubleDash.go:54:23:54:30 | arrayLit |
+| SanitizingDoubleDash.go:9:13:9:19 | selection of URL | SanitizingDoubleDash.go:70:23:70:30 | arrayLit |
+| SanitizingDoubleDash.go:9:13:9:19 | selection of URL | SanitizingDoubleDash.go:80:23:80:29 | tainted |
+| SanitizingDoubleDash.go:92:13:92:19 | selection of URL | SanitizingDoubleDash.go:96:24:96:34 | slice expression |
+| SanitizingDoubleDash.go:92:13:92:19 | selection of URL | SanitizingDoubleDash.go:101:24:101:34 | slice expression |
+| SanitizingDoubleDash.go:92:13:92:19 | selection of URL | SanitizingDoubleDash.go:105:30:105:36 | tainted |
+| SanitizingDoubleDash.go:92:13:92:19 | selection of URL | SanitizingDoubleDash.go:106:24:106:31 | arrayLit |
+| SanitizingDoubleDash.go:92:13:92:19 | selection of URL | SanitizingDoubleDash.go:112:24:112:31 | arrayLit |
+| SanitizingDoubleDash.go:92:13:92:19 | selection of URL | SanitizingDoubleDash.go:118:24:118:31 | arrayLit |
+| SanitizingDoubleDash.go:92:13:92:19 | selection of URL | SanitizingDoubleDash.go:124:24:124:31 | arrayLit |
+| SanitizingDoubleDash.go:92:13:92:19 | selection of URL | SanitizingDoubleDash.go:130:24:130:31 | arrayLit |
+| SanitizingDoubleDash.go:92:13:92:19 | selection of URL | SanitizingDoubleDash.go:137:24:137:31 | arrayLit |
+| SanitizingDoubleDash.go:92:13:92:19 | selection of URL | SanitizingDoubleDash.go:144:24:144:31 | arrayLit |
+| SanitizingDoubleDash.go:92:13:92:19 | selection of URL | SanitizingDoubleDash.go:148:30:148:36 | tainted |
+| SanitizingDoubleDash.go:92:13:92:19 | selection of URL | SanitizingDoubleDash.go:152:24:152:30 | tainted |
+| SanitizingDoubleDash.go:105:15:105:37 | slice literal [array] | SanitizingDoubleDash.go:106:24:106:31 | arrayLit |
+| SanitizingDoubleDash.go:105:30:105:36 | tainted | SanitizingDoubleDash.go:105:15:105:37 | slice literal [array] |
 nodes
-| ArgumentInjection.go:9:10:9:16 | selection of URL : pointer type | semmle.label | selection of URL : pointer type |
+| ArgumentInjection.go:9:10:9:16 | selection of URL | semmle.label | selection of URL |
 | ArgumentInjection.go:10:31:10:34 | path | semmle.label | path |
-| CommandInjection.go:9:13:9:19 | selection of URL : pointer type | semmle.label | selection of URL : pointer type |
+| CommandInjection.go:9:13:9:19 | selection of URL | semmle.label | selection of URL |
 | CommandInjection.go:10:22:10:28 | cmdName | semmle.label | cmdName |
-| GitSubcommands.go:10:13:10:19 | selection of URL : pointer type | semmle.label | selection of URL : pointer type |
+| GitSubcommands.go:10:13:10:19 | selection of URL | semmle.label | selection of URL |
 | GitSubcommands.go:12:31:12:37 | tainted | semmle.label | tainted |
 | GitSubcommands.go:13:31:13:37 | tainted | semmle.label | tainted |
 | GitSubcommands.go:14:30:14:36 | tainted | semmle.label | tainted |
 | GitSubcommands.go:15:35:15:41 | tainted | semmle.label | tainted |
 | GitSubcommands.go:16:36:16:42 | tainted | semmle.label | tainted |
-| SanitizingDoubleDash.go:9:13:9:19 | selection of URL : pointer type | semmle.label | selection of URL : pointer type |
+| SanitizingDoubleDash.go:9:13:9:19 | selection of URL | semmle.label | selection of URL |
 | SanitizingDoubleDash.go:14:23:14:33 | slice expression | semmle.label | slice expression |
 | SanitizingDoubleDash.go:40:23:40:30 | arrayLit | semmle.label | arrayLit |
 | SanitizingDoubleDash.go:54:23:54:30 | arrayLit | semmle.label | arrayLit |
 | SanitizingDoubleDash.go:70:23:70:30 | arrayLit | semmle.label | arrayLit |
 | SanitizingDoubleDash.go:80:23:80:29 | tainted | semmle.label | tainted |
-| SanitizingDoubleDash.go:92:13:92:19 | selection of URL : pointer type | semmle.label | selection of URL : pointer type |
+| SanitizingDoubleDash.go:92:13:92:19 | selection of URL | semmle.label | selection of URL |
 | SanitizingDoubleDash.go:96:24:96:34 | slice expression | semmle.label | slice expression |
 | SanitizingDoubleDash.go:101:24:101:34 | slice expression | semmle.label | slice expression |
-| SanitizingDoubleDash.go:105:15:105:37 | slice literal [array] : string | semmle.label | slice literal [array] : string |
-| SanitizingDoubleDash.go:105:30:105:36 | tainted : string | semmle.label | tainted : string |
+| SanitizingDoubleDash.go:105:15:105:37 | slice literal [array] | semmle.label | slice literal [array] |
+| SanitizingDoubleDash.go:105:30:105:36 | tainted | semmle.label | tainted |
 | SanitizingDoubleDash.go:106:24:106:31 | arrayLit | semmle.label | arrayLit |
 | SanitizingDoubleDash.go:112:24:112:31 | arrayLit | semmle.label | arrayLit |
 | SanitizingDoubleDash.go:118:24:118:31 | arrayLit | semmle.label | arrayLit |
@@ -58,26 +58,26 @@ nodes
 | SanitizingDoubleDash.go:152:24:152:30 | tainted | semmle.label | tainted |
 subpaths
 #select
-| ArgumentInjection.go:10:31:10:34 | path | ArgumentInjection.go:9:10:9:16 | selection of URL : pointer type | ArgumentInjection.go:10:31:10:34 | path | This command depends on a $@. | ArgumentInjection.go:9:10:9:16 | selection of URL | user-provided value |
-| CommandInjection.go:10:22:10:28 | cmdName | CommandInjection.go:9:13:9:19 | selection of URL : pointer type | CommandInjection.go:10:22:10:28 | cmdName | This command depends on a $@. | CommandInjection.go:9:13:9:19 | selection of URL | user-provided value |
-| GitSubcommands.go:12:31:12:37 | tainted | GitSubcommands.go:10:13:10:19 | selection of URL : pointer type | GitSubcommands.go:12:31:12:37 | tainted | This command depends on a $@. | GitSubcommands.go:10:13:10:19 | selection of URL | user-provided value |
-| GitSubcommands.go:13:31:13:37 | tainted | GitSubcommands.go:10:13:10:19 | selection of URL : pointer type | GitSubcommands.go:13:31:13:37 | tainted | This command depends on a $@. | GitSubcommands.go:10:13:10:19 | selection of URL | user-provided value |
-| GitSubcommands.go:14:30:14:36 | tainted | GitSubcommands.go:10:13:10:19 | selection of URL : pointer type | GitSubcommands.go:14:30:14:36 | tainted | This command depends on a $@. | GitSubcommands.go:10:13:10:19 | selection of URL | user-provided value |
-| GitSubcommands.go:15:35:15:41 | tainted | GitSubcommands.go:10:13:10:19 | selection of URL : pointer type | GitSubcommands.go:15:35:15:41 | tainted | This command depends on a $@. | GitSubcommands.go:10:13:10:19 | selection of URL | user-provided value |
-| GitSubcommands.go:16:36:16:42 | tainted | GitSubcommands.go:10:13:10:19 | selection of URL : pointer type | GitSubcommands.go:16:36:16:42 | tainted | This command depends on a $@. | GitSubcommands.go:10:13:10:19 | selection of URL | user-provided value |
-| SanitizingDoubleDash.go:14:23:14:33 | slice expression | SanitizingDoubleDash.go:9:13:9:19 | selection of URL : pointer type | SanitizingDoubleDash.go:14:23:14:33 | slice expression | This command depends on a $@. | SanitizingDoubleDash.go:9:13:9:19 | selection of URL | user-provided value |
-| SanitizingDoubleDash.go:40:23:40:30 | arrayLit | SanitizingDoubleDash.go:9:13:9:19 | selection of URL : pointer type | SanitizingDoubleDash.go:40:23:40:30 | arrayLit | This command depends on a $@. | SanitizingDoubleDash.go:9:13:9:19 | selection of URL | user-provided value |
-| SanitizingDoubleDash.go:54:23:54:30 | arrayLit | SanitizingDoubleDash.go:9:13:9:19 | selection of URL : pointer type | SanitizingDoubleDash.go:54:23:54:30 | arrayLit | This command depends on a $@. | SanitizingDoubleDash.go:9:13:9:19 | selection of URL | user-provided value |
-| SanitizingDoubleDash.go:70:23:70:30 | arrayLit | SanitizingDoubleDash.go:9:13:9:19 | selection of URL : pointer type | SanitizingDoubleDash.go:70:23:70:30 | arrayLit | This command depends on a $@. | SanitizingDoubleDash.go:9:13:9:19 | selection of URL | user-provided value |
-| SanitizingDoubleDash.go:80:23:80:29 | tainted | SanitizingDoubleDash.go:9:13:9:19 | selection of URL : pointer type | SanitizingDoubleDash.go:80:23:80:29 | tainted | This command depends on a $@. | SanitizingDoubleDash.go:9:13:9:19 | selection of URL | user-provided value |
-| SanitizingDoubleDash.go:96:24:96:34 | slice expression | SanitizingDoubleDash.go:92:13:92:19 | selection of URL : pointer type | SanitizingDoubleDash.go:96:24:96:34 | slice expression | This command depends on a $@. | SanitizingDoubleDash.go:92:13:92:19 | selection of URL | user-provided value |
-| SanitizingDoubleDash.go:101:24:101:34 | slice expression | SanitizingDoubleDash.go:92:13:92:19 | selection of URL : pointer type | SanitizingDoubleDash.go:101:24:101:34 | slice expression | This command depends on a $@. | SanitizingDoubleDash.go:92:13:92:19 | selection of URL | user-provided value |
-| SanitizingDoubleDash.go:106:24:106:31 | arrayLit | SanitizingDoubleDash.go:92:13:92:19 | selection of URL : pointer type | SanitizingDoubleDash.go:106:24:106:31 | arrayLit | This command depends on a $@. | SanitizingDoubleDash.go:92:13:92:19 | selection of URL | user-provided value |
-| SanitizingDoubleDash.go:112:24:112:31 | arrayLit | SanitizingDoubleDash.go:92:13:92:19 | selection of URL : pointer type | SanitizingDoubleDash.go:112:24:112:31 | arrayLit | This command depends on a $@. | SanitizingDoubleDash.go:92:13:92:19 | selection of URL | user-provided value |
-| SanitizingDoubleDash.go:118:24:118:31 | arrayLit | SanitizingDoubleDash.go:92:13:92:19 | selection of URL : pointer type | SanitizingDoubleDash.go:118:24:118:31 | arrayLit | This command depends on a $@. | SanitizingDoubleDash.go:92:13:92:19 | selection of URL | user-provided value |
-| SanitizingDoubleDash.go:124:24:124:31 | arrayLit | SanitizingDoubleDash.go:92:13:92:19 | selection of URL : pointer type | SanitizingDoubleDash.go:124:24:124:31 | arrayLit | This command depends on a $@. | SanitizingDoubleDash.go:92:13:92:19 | selection of URL | user-provided value |
-| SanitizingDoubleDash.go:130:24:130:31 | arrayLit | SanitizingDoubleDash.go:92:13:92:19 | selection of URL : pointer type | SanitizingDoubleDash.go:130:24:130:31 | arrayLit | This command depends on a $@. | SanitizingDoubleDash.go:92:13:92:19 | selection of URL | user-provided value |
-| SanitizingDoubleDash.go:137:24:137:31 | arrayLit | SanitizingDoubleDash.go:92:13:92:19 | selection of URL : pointer type | SanitizingDoubleDash.go:137:24:137:31 | arrayLit | This command depends on a $@. | SanitizingDoubleDash.go:92:13:92:19 | selection of URL | user-provided value |
-| SanitizingDoubleDash.go:144:24:144:31 | arrayLit | SanitizingDoubleDash.go:92:13:92:19 | selection of URL : pointer type | SanitizingDoubleDash.go:144:24:144:31 | arrayLit | This command depends on a $@. | SanitizingDoubleDash.go:92:13:92:19 | selection of URL | user-provided value |
-| SanitizingDoubleDash.go:148:30:148:36 | tainted | SanitizingDoubleDash.go:92:13:92:19 | selection of URL : pointer type | SanitizingDoubleDash.go:148:30:148:36 | tainted | This command depends on a $@. | SanitizingDoubleDash.go:92:13:92:19 | selection of URL | user-provided value |
-| SanitizingDoubleDash.go:152:24:152:30 | tainted | SanitizingDoubleDash.go:92:13:92:19 | selection of URL : pointer type | SanitizingDoubleDash.go:152:24:152:30 | tainted | This command depends on a $@. | SanitizingDoubleDash.go:92:13:92:19 | selection of URL | user-provided value |
+| ArgumentInjection.go:10:31:10:34 | path | ArgumentInjection.go:9:10:9:16 | selection of URL | ArgumentInjection.go:10:31:10:34 | path | This command depends on a $@. | ArgumentInjection.go:9:10:9:16 | selection of URL | user-provided value |
+| CommandInjection.go:10:22:10:28 | cmdName | CommandInjection.go:9:13:9:19 | selection of URL | CommandInjection.go:10:22:10:28 | cmdName | This command depends on a $@. | CommandInjection.go:9:13:9:19 | selection of URL | user-provided value |
+| GitSubcommands.go:12:31:12:37 | tainted | GitSubcommands.go:10:13:10:19 | selection of URL | GitSubcommands.go:12:31:12:37 | tainted | This command depends on a $@. | GitSubcommands.go:10:13:10:19 | selection of URL | user-provided value |
+| GitSubcommands.go:13:31:13:37 | tainted | GitSubcommands.go:10:13:10:19 | selection of URL | GitSubcommands.go:13:31:13:37 | tainted | This command depends on a $@. | GitSubcommands.go:10:13:10:19 | selection of URL | user-provided value |
+| GitSubcommands.go:14:30:14:36 | tainted | GitSubcommands.go:10:13:10:19 | selection of URL | GitSubcommands.go:14:30:14:36 | tainted | This command depends on a $@. | GitSubcommands.go:10:13:10:19 | selection of URL | user-provided value |
+| GitSubcommands.go:15:35:15:41 | tainted | GitSubcommands.go:10:13:10:19 | selection of URL | GitSubcommands.go:15:35:15:41 | tainted | This command depends on a $@. | GitSubcommands.go:10:13:10:19 | selection of URL | user-provided value |
+| GitSubcommands.go:16:36:16:42 | tainted | GitSubcommands.go:10:13:10:19 | selection of URL | GitSubcommands.go:16:36:16:42 | tainted | This command depends on a $@. | GitSubcommands.go:10:13:10:19 | selection of URL | user-provided value |
+| SanitizingDoubleDash.go:14:23:14:33 | slice expression | SanitizingDoubleDash.go:9:13:9:19 | selection of URL | SanitizingDoubleDash.go:14:23:14:33 | slice expression | This command depends on a $@. | SanitizingDoubleDash.go:9:13:9:19 | selection of URL | user-provided value |
+| SanitizingDoubleDash.go:40:23:40:30 | arrayLit | SanitizingDoubleDash.go:9:13:9:19 | selection of URL | SanitizingDoubleDash.go:40:23:40:30 | arrayLit | This command depends on a $@. | SanitizingDoubleDash.go:9:13:9:19 | selection of URL | user-provided value |
+| SanitizingDoubleDash.go:54:23:54:30 | arrayLit | SanitizingDoubleDash.go:9:13:9:19 | selection of URL | SanitizingDoubleDash.go:54:23:54:30 | arrayLit | This command depends on a $@. | SanitizingDoubleDash.go:9:13:9:19 | selection of URL | user-provided value |
+| SanitizingDoubleDash.go:70:23:70:30 | arrayLit | SanitizingDoubleDash.go:9:13:9:19 | selection of URL | SanitizingDoubleDash.go:70:23:70:30 | arrayLit | This command depends on a $@. | SanitizingDoubleDash.go:9:13:9:19 | selection of URL | user-provided value |
+| SanitizingDoubleDash.go:80:23:80:29 | tainted | SanitizingDoubleDash.go:9:13:9:19 | selection of URL | SanitizingDoubleDash.go:80:23:80:29 | tainted | This command depends on a $@. | SanitizingDoubleDash.go:9:13:9:19 | selection of URL | user-provided value |
+| SanitizingDoubleDash.go:96:24:96:34 | slice expression | SanitizingDoubleDash.go:92:13:92:19 | selection of URL | SanitizingDoubleDash.go:96:24:96:34 | slice expression | This command depends on a $@. | SanitizingDoubleDash.go:92:13:92:19 | selection of URL | user-provided value |
+| SanitizingDoubleDash.go:101:24:101:34 | slice expression | SanitizingDoubleDash.go:92:13:92:19 | selection of URL | SanitizingDoubleDash.go:101:24:101:34 | slice expression | This command depends on a $@. | SanitizingDoubleDash.go:92:13:92:19 | selection of URL | user-provided value |
+| SanitizingDoubleDash.go:106:24:106:31 | arrayLit | SanitizingDoubleDash.go:92:13:92:19 | selection of URL | SanitizingDoubleDash.go:106:24:106:31 | arrayLit | This command depends on a $@. | SanitizingDoubleDash.go:92:13:92:19 | selection of URL | user-provided value |
+| SanitizingDoubleDash.go:112:24:112:31 | arrayLit | SanitizingDoubleDash.go:92:13:92:19 | selection of URL | SanitizingDoubleDash.go:112:24:112:31 | arrayLit | This command depends on a $@. | SanitizingDoubleDash.go:92:13:92:19 | selection of URL | user-provided value |
+| SanitizingDoubleDash.go:118:24:118:31 | arrayLit | SanitizingDoubleDash.go:92:13:92:19 | selection of URL | SanitizingDoubleDash.go:118:24:118:31 | arrayLit | This command depends on a $@. | SanitizingDoubleDash.go:92:13:92:19 | selection of URL | user-provided value |
+| SanitizingDoubleDash.go:124:24:124:31 | arrayLit | SanitizingDoubleDash.go:92:13:92:19 | selection of URL | SanitizingDoubleDash.go:124:24:124:31 | arrayLit | This command depends on a $@. | SanitizingDoubleDash.go:92:13:92:19 | selection of URL | user-provided value |
+| SanitizingDoubleDash.go:130:24:130:31 | arrayLit | SanitizingDoubleDash.go:92:13:92:19 | selection of URL | SanitizingDoubleDash.go:130:24:130:31 | arrayLit | This command depends on a $@. | SanitizingDoubleDash.go:92:13:92:19 | selection of URL | user-provided value |
+| SanitizingDoubleDash.go:137:24:137:31 | arrayLit | SanitizingDoubleDash.go:92:13:92:19 | selection of URL | SanitizingDoubleDash.go:137:24:137:31 | arrayLit | This command depends on a $@. | SanitizingDoubleDash.go:92:13:92:19 | selection of URL | user-provided value |
+| SanitizingDoubleDash.go:144:24:144:31 | arrayLit | SanitizingDoubleDash.go:92:13:92:19 | selection of URL | SanitizingDoubleDash.go:144:24:144:31 | arrayLit | This command depends on a $@. | SanitizingDoubleDash.go:92:13:92:19 | selection of URL | user-provided value |
+| SanitizingDoubleDash.go:148:30:148:36 | tainted | SanitizingDoubleDash.go:92:13:92:19 | selection of URL | SanitizingDoubleDash.go:148:30:148:36 | tainted | This command depends on a $@. | SanitizingDoubleDash.go:92:13:92:19 | selection of URL | user-provided value |
+| SanitizingDoubleDash.go:152:24:152:30 | tainted | SanitizingDoubleDash.go:92:13:92:19 | selection of URL | SanitizingDoubleDash.go:152:24:152:30 | tainted | This command depends on a $@. | SanitizingDoubleDash.go:92:13:92:19 | selection of URL | user-provided value |
diff --git a/go/ql/test/query-tests/Security/CWE-078/StoredCommand.expected b/go/ql/test/query-tests/Security/CWE-078/StoredCommand.expected
index a01ffb68838..ea667480966 100644
--- a/go/ql/test/query-tests/Security/CWE-078/StoredCommand.expected
+++ b/go/ql/test/query-tests/Security/CWE-078/StoredCommand.expected
@@ -1,8 +1,8 @@
 edges
-| StoredCommand.go:11:2:11:27 | ... := ...[0] : pointer type | StoredCommand.go:14:22:14:28 | cmdName |
+| StoredCommand.go:11:2:11:27 | ... := ...[0] | StoredCommand.go:14:22:14:28 | cmdName |
 nodes
-| StoredCommand.go:11:2:11:27 | ... := ...[0] : pointer type | semmle.label | ... := ...[0] : pointer type |
+| StoredCommand.go:11:2:11:27 | ... := ...[0] | semmle.label | ... := ...[0] |
 | StoredCommand.go:14:22:14:28 | cmdName | semmle.label | cmdName |
 subpaths
 #select
-| StoredCommand.go:14:22:14:28 | cmdName | StoredCommand.go:11:2:11:27 | ... := ...[0] : pointer type | StoredCommand.go:14:22:14:28 | cmdName | This command depends on a $@. | StoredCommand.go:11:2:11:27 | ... := ...[0] | stored value |
+| StoredCommand.go:14:22:14:28 | cmdName | StoredCommand.go:11:2:11:27 | ... := ...[0] | StoredCommand.go:14:22:14:28 | cmdName | This command depends on a $@. | StoredCommand.go:11:2:11:27 | ... := ...[0] | stored value |
diff --git a/go/ql/test/query-tests/Security/CWE-079/ReflectedXss.expected b/go/ql/test/query-tests/Security/CWE-079/ReflectedXss.expected
index a5a5028447a..428f3e9edd3 100644
--- a/go/ql/test/query-tests/Security/CWE-079/ReflectedXss.expected
+++ b/go/ql/test/query-tests/Security/CWE-079/ReflectedXss.expected
@@ -1,87 +1,87 @@
 edges
-| ReflectedXss.go:11:15:11:20 | selection of Form : Values | ReflectedXss.go:14:44:14:51 | username |
-| contenttype.go:11:11:11:16 | selection of Form : Values | contenttype.go:17:11:17:22 | type conversion |
-| contenttype.go:49:11:49:16 | selection of Form : Values | contenttype.go:53:34:53:37 | data |
-| contenttype.go:63:10:63:28 | call to FormValue : string | contenttype.go:64:52:64:55 | data |
-| contenttype.go:73:10:73:28 | call to FormValue : string | contenttype.go:79:11:79:14 | data |
-| contenttype.go:88:10:88:28 | call to FormValue : string | contenttype.go:91:4:91:7 | data |
-| contenttype.go:113:10:113:28 | call to FormValue : string | contenttype.go:114:50:114:53 | data |
-| reflectedxsstest.go:27:2:27:38 | ... := ...[0] : pointer type | reflectedxsstest.go:28:10:28:57 | type conversion |
-| reflectedxsstest.go:31:2:31:44 | ... := ...[0] : File | reflectedxsstest.go:33:10:33:57 | type conversion |
-| reflectedxsstest.go:31:2:31:44 | ... := ...[1] : pointer type | reflectedxsstest.go:34:10:34:62 | type conversion |
-| reflectedxsstest.go:38:2:38:35 | ... := ...[0] : pointer type | reflectedxsstest.go:44:10:44:55 | type conversion |
-| reflectedxsstest.go:38:2:38:35 | ... := ...[0] : pointer type | reflectedxsstest.go:45:10:45:18 | byteSlice |
-| reflectedxsstest.go:51:14:51:18 | selection of URL : pointer type | reflectedxsstest.go:54:11:54:21 | type conversion |
-| tst.go:14:15:14:20 | selection of Form : Values | tst.go:18:12:18:39 | type conversion |
-| tst.go:48:14:48:19 | selection of Form : Values | tst.go:53:12:53:26 | type conversion |
-| websocketXss.go:30:7:30:10 | definition of xnet : slice type | websocketXss.go:32:24:32:27 | xnet |
-| websocketXss.go:34:3:34:7 | definition of xnet2 : slice type | websocketXss.go:36:24:36:28 | xnet2 |
-| websocketXss.go:40:3:40:40 | ... := ...[1] : slice type | websocketXss.go:41:24:41:29 | nhooyr |
-| websocketXss.go:46:7:46:16 | definition of gorillaMsg : slice type | websocketXss.go:48:24:48:33 | gorillaMsg |
-| websocketXss.go:50:3:50:10 | definition of gorilla2 : slice type | websocketXss.go:52:24:52:31 | gorilla2 |
-| websocketXss.go:54:3:54:38 | ... := ...[1] : slice type | websocketXss.go:55:24:55:31 | gorilla3 |
+| ReflectedXss.go:11:15:11:20 | selection of Form | ReflectedXss.go:14:44:14:51 | username |
+| contenttype.go:11:11:11:16 | selection of Form | contenttype.go:17:11:17:22 | type conversion |
+| contenttype.go:49:11:49:16 | selection of Form | contenttype.go:53:34:53:37 | data |
+| contenttype.go:63:10:63:28 | call to FormValue | contenttype.go:64:52:64:55 | data |
+| contenttype.go:73:10:73:28 | call to FormValue | contenttype.go:79:11:79:14 | data |
+| contenttype.go:88:10:88:28 | call to FormValue | contenttype.go:91:4:91:7 | data |
+| contenttype.go:113:10:113:28 | call to FormValue | contenttype.go:114:50:114:53 | data |
+| reflectedxsstest.go:27:2:27:38 | ... := ...[0] | reflectedxsstest.go:28:10:28:57 | type conversion |
+| reflectedxsstest.go:31:2:31:44 | ... := ...[0] | reflectedxsstest.go:33:10:33:57 | type conversion |
+| reflectedxsstest.go:31:2:31:44 | ... := ...[1] | reflectedxsstest.go:34:10:34:62 | type conversion |
+| reflectedxsstest.go:38:2:38:35 | ... := ...[0] | reflectedxsstest.go:44:10:44:55 | type conversion |
+| reflectedxsstest.go:38:2:38:35 | ... := ...[0] | reflectedxsstest.go:45:10:45:18 | byteSlice |
+| reflectedxsstest.go:51:14:51:18 | selection of URL | reflectedxsstest.go:54:11:54:21 | type conversion |
+| tst.go:14:15:14:20 | selection of Form | tst.go:18:12:18:39 | type conversion |
+| tst.go:48:14:48:19 | selection of Form | tst.go:53:12:53:26 | type conversion |
+| websocketXss.go:30:7:30:10 | definition of xnet | websocketXss.go:32:24:32:27 | xnet |
+| websocketXss.go:34:3:34:7 | definition of xnet2 | websocketXss.go:36:24:36:28 | xnet2 |
+| websocketXss.go:40:3:40:40 | ... := ...[1] | websocketXss.go:41:24:41:29 | nhooyr |
+| websocketXss.go:46:7:46:16 | definition of gorillaMsg | websocketXss.go:48:24:48:33 | gorillaMsg |
+| websocketXss.go:50:3:50:10 | definition of gorilla2 | websocketXss.go:52:24:52:31 | gorilla2 |
+| websocketXss.go:54:3:54:38 | ... := ...[1] | websocketXss.go:55:24:55:31 | gorilla3 |
 nodes
-| ReflectedXss.go:11:15:11:20 | selection of Form : Values | semmle.label | selection of Form : Values |
+| ReflectedXss.go:11:15:11:20 | selection of Form | semmle.label | selection of Form |
 | ReflectedXss.go:14:44:14:51 | username | semmle.label | username |
-| contenttype.go:11:11:11:16 | selection of Form : Values | semmle.label | selection of Form : Values |
+| contenttype.go:11:11:11:16 | selection of Form | semmle.label | selection of Form |
 | contenttype.go:17:11:17:22 | type conversion | semmle.label | type conversion |
-| contenttype.go:49:11:49:16 | selection of Form : Values | semmle.label | selection of Form : Values |
+| contenttype.go:49:11:49:16 | selection of Form | semmle.label | selection of Form |
 | contenttype.go:53:34:53:37 | data | semmle.label | data |
-| contenttype.go:63:10:63:28 | call to FormValue : string | semmle.label | call to FormValue : string |
+| contenttype.go:63:10:63:28 | call to FormValue | semmle.label | call to FormValue |
 | contenttype.go:64:52:64:55 | data | semmle.label | data |
-| contenttype.go:73:10:73:28 | call to FormValue : string | semmle.label | call to FormValue : string |
+| contenttype.go:73:10:73:28 | call to FormValue | semmle.label | call to FormValue |
 | contenttype.go:79:11:79:14 | data | semmle.label | data |
-| contenttype.go:88:10:88:28 | call to FormValue : string | semmle.label | call to FormValue : string |
+| contenttype.go:88:10:88:28 | call to FormValue | semmle.label | call to FormValue |
 | contenttype.go:91:4:91:7 | data | semmle.label | data |
-| contenttype.go:113:10:113:28 | call to FormValue : string | semmle.label | call to FormValue : string |
+| contenttype.go:113:10:113:28 | call to FormValue | semmle.label | call to FormValue |
 | contenttype.go:114:50:114:53 | data | semmle.label | data |
-| reflectedxsstest.go:27:2:27:38 | ... := ...[0] : pointer type | semmle.label | ... := ...[0] : pointer type |
+| reflectedxsstest.go:27:2:27:38 | ... := ...[0] | semmle.label | ... := ...[0] |
 | reflectedxsstest.go:28:10:28:57 | type conversion | semmle.label | type conversion |
-| reflectedxsstest.go:31:2:31:44 | ... := ...[0] : File | semmle.label | ... := ...[0] : File |
-| reflectedxsstest.go:31:2:31:44 | ... := ...[1] : pointer type | semmle.label | ... := ...[1] : pointer type |
+| reflectedxsstest.go:31:2:31:44 | ... := ...[0] | semmle.label | ... := ...[0] |
+| reflectedxsstest.go:31:2:31:44 | ... := ...[1] | semmle.label | ... := ...[1] |
 | reflectedxsstest.go:33:10:33:57 | type conversion | semmle.label | type conversion |
 | reflectedxsstest.go:34:10:34:62 | type conversion | semmle.label | type conversion |
-| reflectedxsstest.go:38:2:38:35 | ... := ...[0] : pointer type | semmle.label | ... := ...[0] : pointer type |
+| reflectedxsstest.go:38:2:38:35 | ... := ...[0] | semmle.label | ... := ...[0] |
 | reflectedxsstest.go:44:10:44:55 | type conversion | semmle.label | type conversion |
 | reflectedxsstest.go:45:10:45:18 | byteSlice | semmle.label | byteSlice |
-| reflectedxsstest.go:51:14:51:18 | selection of URL : pointer type | semmle.label | selection of URL : pointer type |
+| reflectedxsstest.go:51:14:51:18 | selection of URL | semmle.label | selection of URL |
 | reflectedxsstest.go:54:11:54:21 | type conversion | semmle.label | type conversion |
-| tst.go:14:15:14:20 | selection of Form : Values | semmle.label | selection of Form : Values |
+| tst.go:14:15:14:20 | selection of Form | semmle.label | selection of Form |
 | tst.go:18:12:18:39 | type conversion | semmle.label | type conversion |
-| tst.go:48:14:48:19 | selection of Form : Values | semmle.label | selection of Form : Values |
+| tst.go:48:14:48:19 | selection of Form | semmle.label | selection of Form |
 | tst.go:53:12:53:26 | type conversion | semmle.label | type conversion |
-| websocketXss.go:30:7:30:10 | definition of xnet : slice type | semmle.label | definition of xnet : slice type |
+| websocketXss.go:30:7:30:10 | definition of xnet | semmle.label | definition of xnet |
 | websocketXss.go:32:24:32:27 | xnet | semmle.label | xnet |
-| websocketXss.go:34:3:34:7 | definition of xnet2 : slice type | semmle.label | definition of xnet2 : slice type |
+| websocketXss.go:34:3:34:7 | definition of xnet2 | semmle.label | definition of xnet2 |
 | websocketXss.go:36:24:36:28 | xnet2 | semmle.label | xnet2 |
-| websocketXss.go:40:3:40:40 | ... := ...[1] : slice type | semmle.label | ... := ...[1] : slice type |
+| websocketXss.go:40:3:40:40 | ... := ...[1] | semmle.label | ... := ...[1] |
 | websocketXss.go:41:24:41:29 | nhooyr | semmle.label | nhooyr |
-| websocketXss.go:46:7:46:16 | definition of gorillaMsg : slice type | semmle.label | definition of gorillaMsg : slice type |
+| websocketXss.go:46:7:46:16 | definition of gorillaMsg | semmle.label | definition of gorillaMsg |
 | websocketXss.go:48:24:48:33 | gorillaMsg | semmle.label | gorillaMsg |
-| websocketXss.go:50:3:50:10 | definition of gorilla2 : slice type | semmle.label | definition of gorilla2 : slice type |
+| websocketXss.go:50:3:50:10 | definition of gorilla2 | semmle.label | definition of gorilla2 |
 | websocketXss.go:52:24:52:31 | gorilla2 | semmle.label | gorilla2 |
-| websocketXss.go:54:3:54:38 | ... := ...[1] : slice type | semmle.label | ... := ...[1] : slice type |
+| websocketXss.go:54:3:54:38 | ... := ...[1] | semmle.label | ... := ...[1] |
 | websocketXss.go:55:24:55:31 | gorilla3 | semmle.label | gorilla3 |
 subpaths
 #select
-| ReflectedXss.go:14:44:14:51 | username | ReflectedXss.go:11:15:11:20 | selection of Form : Values | ReflectedXss.go:14:44:14:51 | username | Cross-site scripting vulnerability due to $@. | ReflectedXss.go:11:15:11:20 | selection of Form | user-provided value | ReflectedXss.go:0:0:0:0 | ReflectedXss.go |  |
-| contenttype.go:17:11:17:22 | type conversion | contenttype.go:11:11:11:16 | selection of Form : Values | contenttype.go:17:11:17:22 | type conversion | Cross-site scripting vulnerability due to $@. | contenttype.go:11:11:11:16 | selection of Form | user-provided value | contenttype.go:0:0:0:0 | contenttype.go |  |
-| contenttype.go:53:34:53:37 | data | contenttype.go:49:11:49:16 | selection of Form : Values | contenttype.go:53:34:53:37 | data | Cross-site scripting vulnerability due to $@. | contenttype.go:49:11:49:16 | selection of Form | user-provided value | contenttype.go:0:0:0:0 | contenttype.go |  |
-| contenttype.go:64:52:64:55 | data | contenttype.go:63:10:63:28 | call to FormValue : string | contenttype.go:64:52:64:55 | data | Cross-site scripting vulnerability due to $@. | contenttype.go:63:10:63:28 | call to FormValue | user-provided value | contenttype.go:0:0:0:0 | contenttype.go |  |
-| contenttype.go:79:11:79:14 | data | contenttype.go:73:10:73:28 | call to FormValue : string | contenttype.go:79:11:79:14 | data | Cross-site scripting vulnerability due to $@. | contenttype.go:73:10:73:28 | call to FormValue | user-provided value | contenttype.go:0:0:0:0 | contenttype.go |  |
-| contenttype.go:91:4:91:7 | data | contenttype.go:88:10:88:28 | call to FormValue : string | contenttype.go:91:4:91:7 | data | Cross-site scripting vulnerability due to $@. | contenttype.go:88:10:88:28 | call to FormValue | user-provided value | contenttype.go:0:0:0:0 | contenttype.go |  |
-| contenttype.go:114:50:114:53 | data | contenttype.go:113:10:113:28 | call to FormValue : string | contenttype.go:114:50:114:53 | data | Cross-site scripting vulnerability due to $@. | contenttype.go:113:10:113:28 | call to FormValue | user-provided value | contenttype.go:0:0:0:0 | contenttype.go |  |
-| reflectedxsstest.go:28:10:28:57 | type conversion | reflectedxsstest.go:27:2:27:38 | ... := ...[0] : pointer type | reflectedxsstest.go:28:10:28:57 | type conversion | Cross-site scripting vulnerability due to $@. | reflectedxsstest.go:27:2:27:38 | ... := ...[0] | user-provided value | reflectedxsstest.go:0:0:0:0 | reflectedxsstest.go |  |
-| reflectedxsstest.go:33:10:33:57 | type conversion | reflectedxsstest.go:31:2:31:44 | ... := ...[0] : File | reflectedxsstest.go:33:10:33:57 | type conversion | Cross-site scripting vulnerability due to $@. | reflectedxsstest.go:31:2:31:44 | ... := ...[0] | user-provided value | reflectedxsstest.go:0:0:0:0 | reflectedxsstest.go |  |
-| reflectedxsstest.go:34:10:34:62 | type conversion | reflectedxsstest.go:31:2:31:44 | ... := ...[1] : pointer type | reflectedxsstest.go:34:10:34:62 | type conversion | Cross-site scripting vulnerability due to $@. | reflectedxsstest.go:31:2:31:44 | ... := ...[1] | user-provided value | reflectedxsstest.go:0:0:0:0 | reflectedxsstest.go |  |
-| reflectedxsstest.go:44:10:44:55 | type conversion | reflectedxsstest.go:38:2:38:35 | ... := ...[0] : pointer type | reflectedxsstest.go:44:10:44:55 | type conversion | Cross-site scripting vulnerability due to $@. | reflectedxsstest.go:38:2:38:35 | ... := ...[0] | user-provided value | reflectedxsstest.go:0:0:0:0 | reflectedxsstest.go |  |
-| reflectedxsstest.go:45:10:45:18 | byteSlice | reflectedxsstest.go:38:2:38:35 | ... := ...[0] : pointer type | reflectedxsstest.go:45:10:45:18 | byteSlice | Cross-site scripting vulnerability due to $@. | reflectedxsstest.go:38:2:38:35 | ... := ...[0] | user-provided value | reflectedxsstest.go:0:0:0:0 | reflectedxsstest.go |  |
-| reflectedxsstest.go:54:11:54:21 | type conversion | reflectedxsstest.go:51:14:51:18 | selection of URL : pointer type | reflectedxsstest.go:54:11:54:21 | type conversion | Cross-site scripting vulnerability due to $@. | reflectedxsstest.go:51:14:51:18 | selection of URL | user-provided value | reflectedxsstest.go:0:0:0:0 | reflectedxsstest.go |  |
-| tst.go:18:12:18:39 | type conversion | tst.go:14:15:14:20 | selection of Form : Values | tst.go:18:12:18:39 | type conversion | Cross-site scripting vulnerability due to $@. | tst.go:14:15:14:20 | selection of Form | user-provided value | tst.go:0:0:0:0 | tst.go |  |
-| tst.go:53:12:53:26 | type conversion | tst.go:48:14:48:19 | selection of Form : Values | tst.go:53:12:53:26 | type conversion | Cross-site scripting vulnerability due to $@. | tst.go:48:14:48:19 | selection of Form | user-provided value | tst.go:0:0:0:0 | tst.go |  |
-| websocketXss.go:32:24:32:27 | xnet | websocketXss.go:30:7:30:10 | definition of xnet : slice type | websocketXss.go:32:24:32:27 | xnet | Cross-site scripting vulnerability due to $@. | websocketXss.go:30:7:30:10 | definition of xnet | user-provided value | websocketXss.go:0:0:0:0 | websocketXss.go |  |
-| websocketXss.go:36:24:36:28 | xnet2 | websocketXss.go:34:3:34:7 | definition of xnet2 : slice type | websocketXss.go:36:24:36:28 | xnet2 | Cross-site scripting vulnerability due to $@. | websocketXss.go:34:3:34:7 | definition of xnet2 | user-provided value | websocketXss.go:0:0:0:0 | websocketXss.go |  |
-| websocketXss.go:41:24:41:29 | nhooyr | websocketXss.go:40:3:40:40 | ... := ...[1] : slice type | websocketXss.go:41:24:41:29 | nhooyr | Cross-site scripting vulnerability due to $@. | websocketXss.go:40:3:40:40 | ... := ...[1] | user-provided value | websocketXss.go:0:0:0:0 | websocketXss.go |  |
-| websocketXss.go:48:24:48:33 | gorillaMsg | websocketXss.go:46:7:46:16 | definition of gorillaMsg : slice type | websocketXss.go:48:24:48:33 | gorillaMsg | Cross-site scripting vulnerability due to $@. | websocketXss.go:46:7:46:16 | definition of gorillaMsg | user-provided value | websocketXss.go:0:0:0:0 | websocketXss.go |  |
-| websocketXss.go:52:24:52:31 | gorilla2 | websocketXss.go:50:3:50:10 | definition of gorilla2 : slice type | websocketXss.go:52:24:52:31 | gorilla2 | Cross-site scripting vulnerability due to $@. | websocketXss.go:50:3:50:10 | definition of gorilla2 | user-provided value | websocketXss.go:0:0:0:0 | websocketXss.go |  |
-| websocketXss.go:55:24:55:31 | gorilla3 | websocketXss.go:54:3:54:38 | ... := ...[1] : slice type | websocketXss.go:55:24:55:31 | gorilla3 | Cross-site scripting vulnerability due to $@. | websocketXss.go:54:3:54:38 | ... := ...[1] | user-provided value | websocketXss.go:0:0:0:0 | websocketXss.go |  |
+| ReflectedXss.go:14:44:14:51 | username | ReflectedXss.go:11:15:11:20 | selection of Form | ReflectedXss.go:14:44:14:51 | username | Cross-site scripting vulnerability due to $@. | ReflectedXss.go:11:15:11:20 | selection of Form | user-provided value | ReflectedXss.go:0:0:0:0 | ReflectedXss.go |  |
+| contenttype.go:17:11:17:22 | type conversion | contenttype.go:11:11:11:16 | selection of Form | contenttype.go:17:11:17:22 | type conversion | Cross-site scripting vulnerability due to $@. | contenttype.go:11:11:11:16 | selection of Form | user-provided value | contenttype.go:0:0:0:0 | contenttype.go |  |
+| contenttype.go:53:34:53:37 | data | contenttype.go:49:11:49:16 | selection of Form | contenttype.go:53:34:53:37 | data | Cross-site scripting vulnerability due to $@. | contenttype.go:49:11:49:16 | selection of Form | user-provided value | contenttype.go:0:0:0:0 | contenttype.go |  |
+| contenttype.go:64:52:64:55 | data | contenttype.go:63:10:63:28 | call to FormValue | contenttype.go:64:52:64:55 | data | Cross-site scripting vulnerability due to $@. | contenttype.go:63:10:63:28 | call to FormValue | user-provided value | contenttype.go:0:0:0:0 | contenttype.go |  |
+| contenttype.go:79:11:79:14 | data | contenttype.go:73:10:73:28 | call to FormValue | contenttype.go:79:11:79:14 | data | Cross-site scripting vulnerability due to $@. | contenttype.go:73:10:73:28 | call to FormValue | user-provided value | contenttype.go:0:0:0:0 | contenttype.go |  |
+| contenttype.go:91:4:91:7 | data | contenttype.go:88:10:88:28 | call to FormValue | contenttype.go:91:4:91:7 | data | Cross-site scripting vulnerability due to $@. | contenttype.go:88:10:88:28 | call to FormValue | user-provided value | contenttype.go:0:0:0:0 | contenttype.go |  |
+| contenttype.go:114:50:114:53 | data | contenttype.go:113:10:113:28 | call to FormValue | contenttype.go:114:50:114:53 | data | Cross-site scripting vulnerability due to $@. | contenttype.go:113:10:113:28 | call to FormValue | user-provided value | contenttype.go:0:0:0:0 | contenttype.go |  |
+| reflectedxsstest.go:28:10:28:57 | type conversion | reflectedxsstest.go:27:2:27:38 | ... := ...[0] | reflectedxsstest.go:28:10:28:57 | type conversion | Cross-site scripting vulnerability due to $@. | reflectedxsstest.go:27:2:27:38 | ... := ...[0] | user-provided value | reflectedxsstest.go:0:0:0:0 | reflectedxsstest.go |  |
+| reflectedxsstest.go:33:10:33:57 | type conversion | reflectedxsstest.go:31:2:31:44 | ... := ...[0] | reflectedxsstest.go:33:10:33:57 | type conversion | Cross-site scripting vulnerability due to $@. | reflectedxsstest.go:31:2:31:44 | ... := ...[0] | user-provided value | reflectedxsstest.go:0:0:0:0 | reflectedxsstest.go |  |
+| reflectedxsstest.go:34:10:34:62 | type conversion | reflectedxsstest.go:31:2:31:44 | ... := ...[1] | reflectedxsstest.go:34:10:34:62 | type conversion | Cross-site scripting vulnerability due to $@. | reflectedxsstest.go:31:2:31:44 | ... := ...[1] | user-provided value | reflectedxsstest.go:0:0:0:0 | reflectedxsstest.go |  |
+| reflectedxsstest.go:44:10:44:55 | type conversion | reflectedxsstest.go:38:2:38:35 | ... := ...[0] | reflectedxsstest.go:44:10:44:55 | type conversion | Cross-site scripting vulnerability due to $@. | reflectedxsstest.go:38:2:38:35 | ... := ...[0] | user-provided value | reflectedxsstest.go:0:0:0:0 | reflectedxsstest.go |  |
+| reflectedxsstest.go:45:10:45:18 | byteSlice | reflectedxsstest.go:38:2:38:35 | ... := ...[0] | reflectedxsstest.go:45:10:45:18 | byteSlice | Cross-site scripting vulnerability due to $@. | reflectedxsstest.go:38:2:38:35 | ... := ...[0] | user-provided value | reflectedxsstest.go:0:0:0:0 | reflectedxsstest.go |  |
+| reflectedxsstest.go:54:11:54:21 | type conversion | reflectedxsstest.go:51:14:51:18 | selection of URL | reflectedxsstest.go:54:11:54:21 | type conversion | Cross-site scripting vulnerability due to $@. | reflectedxsstest.go:51:14:51:18 | selection of URL | user-provided value | reflectedxsstest.go:0:0:0:0 | reflectedxsstest.go |  |
+| tst.go:18:12:18:39 | type conversion | tst.go:14:15:14:20 | selection of Form | tst.go:18:12:18:39 | type conversion | Cross-site scripting vulnerability due to $@. | tst.go:14:15:14:20 | selection of Form | user-provided value | tst.go:0:0:0:0 | tst.go |  |
+| tst.go:53:12:53:26 | type conversion | tst.go:48:14:48:19 | selection of Form | tst.go:53:12:53:26 | type conversion | Cross-site scripting vulnerability due to $@. | tst.go:48:14:48:19 | selection of Form | user-provided value | tst.go:0:0:0:0 | tst.go |  |
+| websocketXss.go:32:24:32:27 | xnet | websocketXss.go:30:7:30:10 | definition of xnet | websocketXss.go:32:24:32:27 | xnet | Cross-site scripting vulnerability due to $@. | websocketXss.go:30:7:30:10 | definition of xnet | user-provided value | websocketXss.go:0:0:0:0 | websocketXss.go |  |
+| websocketXss.go:36:24:36:28 | xnet2 | websocketXss.go:34:3:34:7 | definition of xnet2 | websocketXss.go:36:24:36:28 | xnet2 | Cross-site scripting vulnerability due to $@. | websocketXss.go:34:3:34:7 | definition of xnet2 | user-provided value | websocketXss.go:0:0:0:0 | websocketXss.go |  |
+| websocketXss.go:41:24:41:29 | nhooyr | websocketXss.go:40:3:40:40 | ... := ...[1] | websocketXss.go:41:24:41:29 | nhooyr | Cross-site scripting vulnerability due to $@. | websocketXss.go:40:3:40:40 | ... := ...[1] | user-provided value | websocketXss.go:0:0:0:0 | websocketXss.go |  |
+| websocketXss.go:48:24:48:33 | gorillaMsg | websocketXss.go:46:7:46:16 | definition of gorillaMsg | websocketXss.go:48:24:48:33 | gorillaMsg | Cross-site scripting vulnerability due to $@. | websocketXss.go:46:7:46:16 | definition of gorillaMsg | user-provided value | websocketXss.go:0:0:0:0 | websocketXss.go |  |
+| websocketXss.go:52:24:52:31 | gorilla2 | websocketXss.go:50:3:50:10 | definition of gorilla2 | websocketXss.go:52:24:52:31 | gorilla2 | Cross-site scripting vulnerability due to $@. | websocketXss.go:50:3:50:10 | definition of gorilla2 | user-provided value | websocketXss.go:0:0:0:0 | websocketXss.go |  |
+| websocketXss.go:55:24:55:31 | gorilla3 | websocketXss.go:54:3:54:38 | ... := ...[1] | websocketXss.go:55:24:55:31 | gorilla3 | Cross-site scripting vulnerability due to $@. | websocketXss.go:54:3:54:38 | ... := ...[1] | user-provided value | websocketXss.go:0:0:0:0 | websocketXss.go |  |
diff --git a/go/ql/test/query-tests/Security/CWE-079/StoredXss.expected b/go/ql/test/query-tests/Security/CWE-079/StoredXss.expected
index b93e7c74201..1e513a5d4a9 100644
--- a/go/ql/test/query-tests/Security/CWE-079/StoredXss.expected
+++ b/go/ql/test/query-tests/Security/CWE-079/StoredXss.expected
@@ -1,16 +1,16 @@
 edges
-| StoredXss.go:13:21:13:31 | call to Name : string | StoredXss.go:13:21:13:36 | ...+... |
-| stored.go:18:3:18:28 | ... := ...[0] : pointer type | stored.go:30:22:30:25 | name |
-| stored.go:59:30:59:33 | definition of path : string | stored.go:61:22:61:25 | path |
+| StoredXss.go:13:21:13:31 | call to Name | StoredXss.go:13:21:13:36 | ...+... |
+| stored.go:18:3:18:28 | ... := ...[0] | stored.go:30:22:30:25 | name |
+| stored.go:59:30:59:33 | definition of path | stored.go:61:22:61:25 | path |
 nodes
-| StoredXss.go:13:21:13:31 | call to Name : string | semmle.label | call to Name : string |
+| StoredXss.go:13:21:13:31 | call to Name | semmle.label | call to Name |
 | StoredXss.go:13:21:13:36 | ...+... | semmle.label | ...+... |
-| stored.go:18:3:18:28 | ... := ...[0] : pointer type | semmle.label | ... := ...[0] : pointer type |
+| stored.go:18:3:18:28 | ... := ...[0] | semmle.label | ... := ...[0] |
 | stored.go:30:22:30:25 | name | semmle.label | name |
-| stored.go:59:30:59:33 | definition of path : string | semmle.label | definition of path : string |
+| stored.go:59:30:59:33 | definition of path | semmle.label | definition of path |
 | stored.go:61:22:61:25 | path | semmle.label | path |
 subpaths
 #select
-| StoredXss.go:13:21:13:36 | ...+... | StoredXss.go:13:21:13:31 | call to Name : string | StoredXss.go:13:21:13:36 | ...+... | Stored cross-site scripting vulnerability due to $@. | StoredXss.go:13:21:13:31 | call to Name | stored value |
-| stored.go:30:22:30:25 | name | stored.go:18:3:18:28 | ... := ...[0] : pointer type | stored.go:30:22:30:25 | name | Stored cross-site scripting vulnerability due to $@. | stored.go:18:3:18:28 | ... := ...[0] | stored value |
-| stored.go:61:22:61:25 | path | stored.go:59:30:59:33 | definition of path : string | stored.go:61:22:61:25 | path | Stored cross-site scripting vulnerability due to $@. | stored.go:59:30:59:33 | definition of path | stored value |
+| StoredXss.go:13:21:13:36 | ...+... | StoredXss.go:13:21:13:31 | call to Name | StoredXss.go:13:21:13:36 | ...+... | Stored cross-site scripting vulnerability due to $@. | StoredXss.go:13:21:13:31 | call to Name | stored value |
+| stored.go:30:22:30:25 | name | stored.go:18:3:18:28 | ... := ...[0] | stored.go:30:22:30:25 | name | Stored cross-site scripting vulnerability due to $@. | stored.go:18:3:18:28 | ... := ...[0] | stored value |
+| stored.go:61:22:61:25 | path | stored.go:59:30:59:33 | definition of path | stored.go:61:22:61:25 | path | Stored cross-site scripting vulnerability due to $@. | stored.go:59:30:59:33 | definition of path | stored value |
diff --git a/go/ql/test/query-tests/Security/CWE-089/SqlInjection.expected b/go/ql/test/query-tests/Security/CWE-089/SqlInjection.expected
index 521824433a2..7f9f8a8f19f 100644
--- a/go/ql/test/query-tests/Security/CWE-089/SqlInjection.expected
+++ b/go/ql/test/query-tests/Security/CWE-089/SqlInjection.expected
@@ -1,112 +1,112 @@
 edges
-| SqlInjection.go:11:3:11:9 | selection of URL : pointer type | SqlInjection.go:12:11:12:11 | q |
-| issue48.go:17:25:17:32 | selection of Body : ReadCloser | issue48.go:22:11:22:12 | q3 |
-| issue48.go:27:26:27:33 | selection of Body : ReadCloser | issue48.go:32:11:32:12 | q4 |
-| issue48.go:37:17:37:50 | type conversion : string | issue48.go:41:11:41:12 | q5 |
-| issue48.go:37:24:37:30 | selection of URL : pointer type | issue48.go:37:17:37:50 | type conversion : string |
-| main.go:10:11:10:16 | selection of Form : Values | main.go:10:11:10:28 | index expression |
-| main.go:14:63:14:67 | selection of URL : pointer type | main.go:14:11:14:84 | call to Sprintf |
-| main.go:15:63:15:70 | selection of Header : Header | main.go:15:11:15:85 | call to Sprintf |
-| main.go:27:17:30:2 | &... [pointer, Category] : slice type | main.go:33:3:33:13 | RequestData [pointer, Category] : slice type |
-| main.go:27:18:30:2 | struct literal [Category] : slice type | main.go:27:17:30:2 | &... [pointer, Category] : slice type |
-| main.go:29:13:29:19 | selection of URL : pointer type | main.go:29:13:29:39 | index expression : slice type |
-| main.go:29:13:29:39 | index expression : slice type | main.go:27:18:30:2 | struct literal [Category] : slice type |
-| main.go:33:3:33:13 | RequestData [pointer, Category] : slice type | main.go:33:3:33:13 | implicit dereference [Category] : slice type |
-| main.go:33:3:33:13 | implicit dereference [Category] : slice type | main.go:33:3:33:22 | selection of Category : slice type |
-| main.go:33:3:33:22 | selection of Category : slice type | main.go:34:11:34:11 | q |
-| main.go:38:2:38:12 | definition of RequestData [pointer, Category] : slice type | main.go:39:2:39:12 | RequestData [pointer, Category] : slice type |
-| main.go:38:2:38:12 | definition of RequestData [pointer, Category] : slice type | main.go:42:3:42:13 | RequestData [pointer, Category] : slice type |
-| main.go:39:2:39:12 | RequestData [pointer, Category] : slice type | main.go:39:2:39:12 | implicit dereference [Category] : slice type |
-| main.go:39:2:39:12 | implicit dereference [Category] : slice type | main.go:38:2:38:12 | definition of RequestData [pointer, Category] : slice type |
-| main.go:39:25:39:31 | selection of URL : pointer type | main.go:39:25:39:51 | index expression : slice type |
-| main.go:39:25:39:51 | index expression : slice type | main.go:39:2:39:12 | implicit dereference [Category] : slice type |
-| main.go:42:3:42:13 | RequestData [pointer, Category] : slice type | main.go:42:3:42:13 | implicit dereference [Category] : slice type |
-| main.go:42:3:42:13 | implicit dereference [Category] : slice type | main.go:42:3:42:22 | selection of Category : slice type |
-| main.go:42:3:42:22 | selection of Category : slice type | main.go:43:11:43:11 | q |
-| main.go:47:2:47:12 | definition of RequestData [pointer, Category] : slice type | main.go:48:4:48:14 | RequestData [pointer, Category] : slice type |
-| main.go:47:2:47:12 | definition of RequestData [pointer, Category] : slice type | main.go:51:3:51:13 | RequestData [pointer, Category] : slice type |
-| main.go:48:3:48:14 | star expression [Category] : slice type | main.go:47:2:47:12 | definition of RequestData [pointer, Category] : slice type |
-| main.go:48:4:48:14 | RequestData [pointer, Category] : slice type | main.go:48:3:48:14 | star expression [Category] : slice type |
-| main.go:48:28:48:34 | selection of URL : pointer type | main.go:48:28:48:54 | index expression : slice type |
-| main.go:48:28:48:54 | index expression : slice type | main.go:48:3:48:14 | star expression [Category] : slice type |
-| main.go:51:3:51:13 | RequestData [pointer, Category] : slice type | main.go:51:3:51:13 | implicit dereference [Category] : slice type |
-| main.go:51:3:51:13 | implicit dereference [Category] : slice type | main.go:51:3:51:22 | selection of Category : slice type |
-| main.go:51:3:51:22 | selection of Category : slice type | main.go:52:11:52:11 | q |
-| main.go:56:2:56:12 | definition of RequestData [pointer, Category] : slice type | main.go:57:4:57:14 | RequestData [pointer, Category] : slice type |
-| main.go:56:2:56:12 | definition of RequestData [pointer, Category] : slice type | main.go:60:5:60:15 | RequestData [pointer, Category] : slice type |
-| main.go:57:3:57:14 | star expression [Category] : slice type | main.go:56:2:56:12 | definition of RequestData [pointer, Category] : slice type |
-| main.go:57:4:57:14 | RequestData [pointer, Category] : slice type | main.go:57:3:57:14 | star expression [Category] : slice type |
-| main.go:57:28:57:34 | selection of URL : pointer type | main.go:57:28:57:54 | index expression : slice type |
-| main.go:57:28:57:54 | index expression : slice type | main.go:57:3:57:14 | star expression [Category] : slice type |
-| main.go:60:3:60:25 | selection of Category : slice type | main.go:61:11:61:11 | q |
-| main.go:60:4:60:15 | star expression [Category] : slice type | main.go:60:3:60:25 | selection of Category : slice type |
-| main.go:60:5:60:15 | RequestData [pointer, Category] : slice type | main.go:60:4:60:15 | star expression [Category] : slice type |
-| mongoDB.go:40:20:40:30 | call to Referer : string | mongoDB.go:57:22:57:29 | pipeline |
-| mongoDB.go:40:20:40:30 | call to Referer : string | mongoDB.go:61:27:61:32 | filter |
-| mongoDB.go:40:20:40:30 | call to Referer : string | mongoDB.go:63:23:63:28 | filter |
-| mongoDB.go:40:20:40:30 | call to Referer : string | mongoDB.go:64:22:64:27 | filter |
-| mongoDB.go:40:20:40:30 | call to Referer : string | mongoDB.go:66:32:66:37 | filter |
-| mongoDB.go:40:20:40:30 | call to Referer : string | mongoDB.go:69:17:69:22 | filter |
-| mongoDB.go:40:20:40:30 | call to Referer : string | mongoDB.go:70:20:70:25 | filter |
-| mongoDB.go:40:20:40:30 | call to Referer : string | mongoDB.go:71:29:71:34 | filter |
-| mongoDB.go:40:20:40:30 | call to Referer : string | mongoDB.go:72:30:72:35 | filter |
-| mongoDB.go:40:20:40:30 | call to Referer : string | mongoDB.go:73:29:73:34 | filter |
-| mongoDB.go:40:20:40:30 | call to Referer : string | mongoDB.go:78:23:78:28 | filter |
-| mongoDB.go:40:20:40:30 | call to Referer : string | mongoDB.go:79:23:79:28 | filter |
-| mongoDB.go:40:20:40:30 | call to Referer : string | mongoDB.go:80:22:80:27 | filter |
-| mongoDB.go:40:20:40:30 | call to Referer : string | mongoDB.go:81:18:81:25 | pipeline |
+| SqlInjection.go:11:3:11:9 | selection of URL | SqlInjection.go:12:11:12:11 | q |
+| issue48.go:17:25:17:32 | selection of Body | issue48.go:22:11:22:12 | q3 |
+| issue48.go:27:26:27:33 | selection of Body | issue48.go:32:11:32:12 | q4 |
+| issue48.go:37:17:37:50 | type conversion | issue48.go:41:11:41:12 | q5 |
+| issue48.go:37:24:37:30 | selection of URL | issue48.go:37:17:37:50 | type conversion |
+| main.go:10:11:10:16 | selection of Form | main.go:10:11:10:28 | index expression |
+| main.go:14:63:14:67 | selection of URL | main.go:14:11:14:84 | call to Sprintf |
+| main.go:15:63:15:70 | selection of Header | main.go:15:11:15:85 | call to Sprintf |
+| main.go:27:17:30:2 | &... [pointer, Category] | main.go:33:3:33:13 | RequestData [pointer, Category] |
+| main.go:27:18:30:2 | struct literal [Category] | main.go:27:17:30:2 | &... [pointer, Category] |
+| main.go:29:13:29:19 | selection of URL | main.go:29:13:29:39 | index expression |
+| main.go:29:13:29:39 | index expression | main.go:27:18:30:2 | struct literal [Category] |
+| main.go:33:3:33:13 | RequestData [pointer, Category] | main.go:33:3:33:13 | implicit dereference [Category] |
+| main.go:33:3:33:13 | implicit dereference [Category] | main.go:33:3:33:22 | selection of Category |
+| main.go:33:3:33:22 | selection of Category | main.go:34:11:34:11 | q |
+| main.go:38:2:38:12 | definition of RequestData [pointer, Category] | main.go:39:2:39:12 | RequestData [pointer, Category] |
+| main.go:38:2:38:12 | definition of RequestData [pointer, Category] | main.go:42:3:42:13 | RequestData [pointer, Category] |
+| main.go:39:2:39:12 | RequestData [pointer, Category] | main.go:39:2:39:12 | implicit dereference [Category] |
+| main.go:39:2:39:12 | implicit dereference [Category] | main.go:38:2:38:12 | definition of RequestData [pointer, Category] |
+| main.go:39:25:39:31 | selection of URL | main.go:39:25:39:51 | index expression |
+| main.go:39:25:39:51 | index expression | main.go:39:2:39:12 | implicit dereference [Category] |
+| main.go:42:3:42:13 | RequestData [pointer, Category] | main.go:42:3:42:13 | implicit dereference [Category] |
+| main.go:42:3:42:13 | implicit dereference [Category] | main.go:42:3:42:22 | selection of Category |
+| main.go:42:3:42:22 | selection of Category | main.go:43:11:43:11 | q |
+| main.go:47:2:47:12 | definition of RequestData [pointer, Category] | main.go:48:4:48:14 | RequestData [pointer, Category] |
+| main.go:47:2:47:12 | definition of RequestData [pointer, Category] | main.go:51:3:51:13 | RequestData [pointer, Category] |
+| main.go:48:3:48:14 | star expression [Category] | main.go:47:2:47:12 | definition of RequestData [pointer, Category] |
+| main.go:48:4:48:14 | RequestData [pointer, Category] | main.go:48:3:48:14 | star expression [Category] |
+| main.go:48:28:48:34 | selection of URL | main.go:48:28:48:54 | index expression |
+| main.go:48:28:48:54 | index expression | main.go:48:3:48:14 | star expression [Category] |
+| main.go:51:3:51:13 | RequestData [pointer, Category] | main.go:51:3:51:13 | implicit dereference [Category] |
+| main.go:51:3:51:13 | implicit dereference [Category] | main.go:51:3:51:22 | selection of Category |
+| main.go:51:3:51:22 | selection of Category | main.go:52:11:52:11 | q |
+| main.go:56:2:56:12 | definition of RequestData [pointer, Category] | main.go:57:4:57:14 | RequestData [pointer, Category] |
+| main.go:56:2:56:12 | definition of RequestData [pointer, Category] | main.go:60:5:60:15 | RequestData [pointer, Category] |
+| main.go:57:3:57:14 | star expression [Category] | main.go:56:2:56:12 | definition of RequestData [pointer, Category] |
+| main.go:57:4:57:14 | RequestData [pointer, Category] | main.go:57:3:57:14 | star expression [Category] |
+| main.go:57:28:57:34 | selection of URL | main.go:57:28:57:54 | index expression |
+| main.go:57:28:57:54 | index expression | main.go:57:3:57:14 | star expression [Category] |
+| main.go:60:3:60:25 | selection of Category | main.go:61:11:61:11 | q |
+| main.go:60:4:60:15 | star expression [Category] | main.go:60:3:60:25 | selection of Category |
+| main.go:60:5:60:15 | RequestData [pointer, Category] | main.go:60:4:60:15 | star expression [Category] |
+| mongoDB.go:40:20:40:30 | call to Referer | mongoDB.go:57:22:57:29 | pipeline |
+| mongoDB.go:40:20:40:30 | call to Referer | mongoDB.go:61:27:61:32 | filter |
+| mongoDB.go:40:20:40:30 | call to Referer | mongoDB.go:63:23:63:28 | filter |
+| mongoDB.go:40:20:40:30 | call to Referer | mongoDB.go:64:22:64:27 | filter |
+| mongoDB.go:40:20:40:30 | call to Referer | mongoDB.go:66:32:66:37 | filter |
+| mongoDB.go:40:20:40:30 | call to Referer | mongoDB.go:69:17:69:22 | filter |
+| mongoDB.go:40:20:40:30 | call to Referer | mongoDB.go:70:20:70:25 | filter |
+| mongoDB.go:40:20:40:30 | call to Referer | mongoDB.go:71:29:71:34 | filter |
+| mongoDB.go:40:20:40:30 | call to Referer | mongoDB.go:72:30:72:35 | filter |
+| mongoDB.go:40:20:40:30 | call to Referer | mongoDB.go:73:29:73:34 | filter |
+| mongoDB.go:40:20:40:30 | call to Referer | mongoDB.go:78:23:78:28 | filter |
+| mongoDB.go:40:20:40:30 | call to Referer | mongoDB.go:79:23:79:28 | filter |
+| mongoDB.go:40:20:40:30 | call to Referer | mongoDB.go:80:22:80:27 | filter |
+| mongoDB.go:40:20:40:30 | call to Referer | mongoDB.go:81:18:81:25 | pipeline |
 nodes
-| SqlInjection.go:11:3:11:9 | selection of URL : pointer type | semmle.label | selection of URL : pointer type |
+| SqlInjection.go:11:3:11:9 | selection of URL | semmle.label | selection of URL |
 | SqlInjection.go:12:11:12:11 | q | semmle.label | q |
-| issue48.go:17:25:17:32 | selection of Body : ReadCloser | semmle.label | selection of Body : ReadCloser |
+| issue48.go:17:25:17:32 | selection of Body | semmle.label | selection of Body |
 | issue48.go:22:11:22:12 | q3 | semmle.label | q3 |
-| issue48.go:27:26:27:33 | selection of Body : ReadCloser | semmle.label | selection of Body : ReadCloser |
+| issue48.go:27:26:27:33 | selection of Body | semmle.label | selection of Body |
 | issue48.go:32:11:32:12 | q4 | semmle.label | q4 |
-| issue48.go:37:17:37:50 | type conversion : string | semmle.label | type conversion : string |
-| issue48.go:37:24:37:30 | selection of URL : pointer type | semmle.label | selection of URL : pointer type |
+| issue48.go:37:17:37:50 | type conversion | semmle.label | type conversion |
+| issue48.go:37:24:37:30 | selection of URL | semmle.label | selection of URL |
 | issue48.go:41:11:41:12 | q5 | semmle.label | q5 |
-| main.go:10:11:10:16 | selection of Form : Values | semmle.label | selection of Form : Values |
+| main.go:10:11:10:16 | selection of Form | semmle.label | selection of Form |
 | main.go:10:11:10:28 | index expression | semmle.label | index expression |
 | main.go:14:11:14:84 | call to Sprintf | semmle.label | call to Sprintf |
-| main.go:14:63:14:67 | selection of URL : pointer type | semmle.label | selection of URL : pointer type |
+| main.go:14:63:14:67 | selection of URL | semmle.label | selection of URL |
 | main.go:15:11:15:85 | call to Sprintf | semmle.label | call to Sprintf |
-| main.go:15:63:15:70 | selection of Header : Header | semmle.label | selection of Header : Header |
-| main.go:27:17:30:2 | &... [pointer, Category] : slice type | semmle.label | &... [pointer, Category] : slice type |
-| main.go:27:18:30:2 | struct literal [Category] : slice type | semmle.label | struct literal [Category] : slice type |
-| main.go:29:13:29:19 | selection of URL : pointer type | semmle.label | selection of URL : pointer type |
-| main.go:29:13:29:39 | index expression : slice type | semmle.label | index expression : slice type |
-| main.go:33:3:33:13 | RequestData [pointer, Category] : slice type | semmle.label | RequestData [pointer, Category] : slice type |
-| main.go:33:3:33:13 | implicit dereference [Category] : slice type | semmle.label | implicit dereference [Category] : slice type |
-| main.go:33:3:33:22 | selection of Category : slice type | semmle.label | selection of Category : slice type |
+| main.go:15:63:15:70 | selection of Header | semmle.label | selection of Header |
+| main.go:27:17:30:2 | &... [pointer, Category] | semmle.label | &... [pointer, Category] |
+| main.go:27:18:30:2 | struct literal [Category] | semmle.label | struct literal [Category] |
+| main.go:29:13:29:19 | selection of URL | semmle.label | selection of URL |
+| main.go:29:13:29:39 | index expression | semmle.label | index expression |
+| main.go:33:3:33:13 | RequestData [pointer, Category] | semmle.label | RequestData [pointer, Category] |
+| main.go:33:3:33:13 | implicit dereference [Category] | semmle.label | implicit dereference [Category] |
+| main.go:33:3:33:22 | selection of Category | semmle.label | selection of Category |
 | main.go:34:11:34:11 | q | semmle.label | q |
-| main.go:38:2:38:12 | definition of RequestData [pointer, Category] : slice type | semmle.label | definition of RequestData [pointer, Category] : slice type |
-| main.go:39:2:39:12 | RequestData [pointer, Category] : slice type | semmle.label | RequestData [pointer, Category] : slice type |
-| main.go:39:2:39:12 | implicit dereference [Category] : slice type | semmle.label | implicit dereference [Category] : slice type |
-| main.go:39:25:39:31 | selection of URL : pointer type | semmle.label | selection of URL : pointer type |
-| main.go:39:25:39:51 | index expression : slice type | semmle.label | index expression : slice type |
-| main.go:42:3:42:13 | RequestData [pointer, Category] : slice type | semmle.label | RequestData [pointer, Category] : slice type |
-| main.go:42:3:42:13 | implicit dereference [Category] : slice type | semmle.label | implicit dereference [Category] : slice type |
-| main.go:42:3:42:22 | selection of Category : slice type | semmle.label | selection of Category : slice type |
+| main.go:38:2:38:12 | definition of RequestData [pointer, Category] | semmle.label | definition of RequestData [pointer, Category] |
+| main.go:39:2:39:12 | RequestData [pointer, Category] | semmle.label | RequestData [pointer, Category] |
+| main.go:39:2:39:12 | implicit dereference [Category] | semmle.label | implicit dereference [Category] |
+| main.go:39:25:39:31 | selection of URL | semmle.label | selection of URL |
+| main.go:39:25:39:51 | index expression | semmle.label | index expression |
+| main.go:42:3:42:13 | RequestData [pointer, Category] | semmle.label | RequestData [pointer, Category] |
+| main.go:42:3:42:13 | implicit dereference [Category] | semmle.label | implicit dereference [Category] |
+| main.go:42:3:42:22 | selection of Category | semmle.label | selection of Category |
 | main.go:43:11:43:11 | q | semmle.label | q |
-| main.go:47:2:47:12 | definition of RequestData [pointer, Category] : slice type | semmle.label | definition of RequestData [pointer, Category] : slice type |
-| main.go:48:3:48:14 | star expression [Category] : slice type | semmle.label | star expression [Category] : slice type |
-| main.go:48:4:48:14 | RequestData [pointer, Category] : slice type | semmle.label | RequestData [pointer, Category] : slice type |
-| main.go:48:28:48:34 | selection of URL : pointer type | semmle.label | selection of URL : pointer type |
-| main.go:48:28:48:54 | index expression : slice type | semmle.label | index expression : slice type |
-| main.go:51:3:51:13 | RequestData [pointer, Category] : slice type | semmle.label | RequestData [pointer, Category] : slice type |
-| main.go:51:3:51:13 | implicit dereference [Category] : slice type | semmle.label | implicit dereference [Category] : slice type |
-| main.go:51:3:51:22 | selection of Category : slice type | semmle.label | selection of Category : slice type |
+| main.go:47:2:47:12 | definition of RequestData [pointer, Category] | semmle.label | definition of RequestData [pointer, Category] |
+| main.go:48:3:48:14 | star expression [Category] | semmle.label | star expression [Category] |
+| main.go:48:4:48:14 | RequestData [pointer, Category] | semmle.label | RequestData [pointer, Category] |
+| main.go:48:28:48:34 | selection of URL | semmle.label | selection of URL |
+| main.go:48:28:48:54 | index expression | semmle.label | index expression |
+| main.go:51:3:51:13 | RequestData [pointer, Category] | semmle.label | RequestData [pointer, Category] |
+| main.go:51:3:51:13 | implicit dereference [Category] | semmle.label | implicit dereference [Category] |
+| main.go:51:3:51:22 | selection of Category | semmle.label | selection of Category |
 | main.go:52:11:52:11 | q | semmle.label | q |
-| main.go:56:2:56:12 | definition of RequestData [pointer, Category] : slice type | semmle.label | definition of RequestData [pointer, Category] : slice type |
-| main.go:57:3:57:14 | star expression [Category] : slice type | semmle.label | star expression [Category] : slice type |
-| main.go:57:4:57:14 | RequestData [pointer, Category] : slice type | semmle.label | RequestData [pointer, Category] : slice type |
-| main.go:57:28:57:34 | selection of URL : pointer type | semmle.label | selection of URL : pointer type |
-| main.go:57:28:57:54 | index expression : slice type | semmle.label | index expression : slice type |
-| main.go:60:3:60:25 | selection of Category : slice type | semmle.label | selection of Category : slice type |
-| main.go:60:4:60:15 | star expression [Category] : slice type | semmle.label | star expression [Category] : slice type |
-| main.go:60:5:60:15 | RequestData [pointer, Category] : slice type | semmle.label | RequestData [pointer, Category] : slice type |
+| main.go:56:2:56:12 | definition of RequestData [pointer, Category] | semmle.label | definition of RequestData [pointer, Category] |
+| main.go:57:3:57:14 | star expression [Category] | semmle.label | star expression [Category] |
+| main.go:57:4:57:14 | RequestData [pointer, Category] | semmle.label | RequestData [pointer, Category] |
+| main.go:57:28:57:34 | selection of URL | semmle.label | selection of URL |
+| main.go:57:28:57:54 | index expression | semmle.label | index expression |
+| main.go:60:3:60:25 | selection of Category | semmle.label | selection of Category |
+| main.go:60:4:60:15 | star expression [Category] | semmle.label | star expression [Category] |
+| main.go:60:5:60:15 | RequestData [pointer, Category] | semmle.label | RequestData [pointer, Category] |
 | main.go:61:11:61:11 | q | semmle.label | q |
-| mongoDB.go:40:20:40:30 | call to Referer : string | semmle.label | call to Referer : string |
+| mongoDB.go:40:20:40:30 | call to Referer | semmle.label | call to Referer |
 | mongoDB.go:57:22:57:29 | pipeline | semmle.label | pipeline |
 | mongoDB.go:61:27:61:32 | filter | semmle.label | filter |
 | mongoDB.go:63:23:63:28 | filter | semmle.label | filter |
@@ -123,28 +123,28 @@ nodes
 | mongoDB.go:81:18:81:25 | pipeline | semmle.label | pipeline |
 subpaths
 #select
-| SqlInjection.go:12:11:12:11 | q | SqlInjection.go:11:3:11:9 | selection of URL : pointer type | SqlInjection.go:12:11:12:11 | q | This query depends on a $@. | SqlInjection.go:11:3:11:9 | selection of URL | user-provided value |
-| issue48.go:22:11:22:12 | q3 | issue48.go:17:25:17:32 | selection of Body : ReadCloser | issue48.go:22:11:22:12 | q3 | This query depends on a $@. | issue48.go:17:25:17:32 | selection of Body | user-provided value |
-| issue48.go:32:11:32:12 | q4 | issue48.go:27:26:27:33 | selection of Body : ReadCloser | issue48.go:32:11:32:12 | q4 | This query depends on a $@. | issue48.go:27:26:27:33 | selection of Body | user-provided value |
-| issue48.go:41:11:41:12 | q5 | issue48.go:37:24:37:30 | selection of URL : pointer type | issue48.go:41:11:41:12 | q5 | This query depends on a $@. | issue48.go:37:24:37:30 | selection of URL | user-provided value |
-| main.go:10:11:10:28 | index expression | main.go:10:11:10:16 | selection of Form : Values | main.go:10:11:10:28 | index expression | This query depends on a $@. | main.go:10:11:10:16 | selection of Form | user-provided value |
-| main.go:14:11:14:84 | call to Sprintf | main.go:14:63:14:67 | selection of URL : pointer type | main.go:14:11:14:84 | call to Sprintf | This query depends on a $@. | main.go:14:63:14:67 | selection of URL | user-provided value |
-| main.go:15:11:15:85 | call to Sprintf | main.go:15:63:15:70 | selection of Header : Header | main.go:15:11:15:85 | call to Sprintf | This query depends on a $@. | main.go:15:63:15:70 | selection of Header | user-provided value |
-| main.go:34:11:34:11 | q | main.go:29:13:29:19 | selection of URL : pointer type | main.go:34:11:34:11 | q | This query depends on a $@. | main.go:29:13:29:19 | selection of URL | user-provided value |
-| main.go:43:11:43:11 | q | main.go:39:25:39:31 | selection of URL : pointer type | main.go:43:11:43:11 | q | This query depends on a $@. | main.go:39:25:39:31 | selection of URL | user-provided value |
-| main.go:52:11:52:11 | q | main.go:48:28:48:34 | selection of URL : pointer type | main.go:52:11:52:11 | q | This query depends on a $@. | main.go:48:28:48:34 | selection of URL | user-provided value |
-| main.go:61:11:61:11 | q | main.go:57:28:57:34 | selection of URL : pointer type | main.go:61:11:61:11 | q | This query depends on a $@. | main.go:57:28:57:34 | selection of URL | user-provided value |
-| mongoDB.go:57:22:57:29 | pipeline | mongoDB.go:40:20:40:30 | call to Referer : string | mongoDB.go:57:22:57:29 | pipeline | This query depends on a $@. | mongoDB.go:40:20:40:30 | call to Referer | user-provided value |
-| mongoDB.go:61:27:61:32 | filter | mongoDB.go:40:20:40:30 | call to Referer : string | mongoDB.go:61:27:61:32 | filter | This query depends on a $@. | mongoDB.go:40:20:40:30 | call to Referer | user-provided value |
-| mongoDB.go:63:23:63:28 | filter | mongoDB.go:40:20:40:30 | call to Referer : string | mongoDB.go:63:23:63:28 | filter | This query depends on a $@. | mongoDB.go:40:20:40:30 | call to Referer | user-provided value |
-| mongoDB.go:64:22:64:27 | filter | mongoDB.go:40:20:40:30 | call to Referer : string | mongoDB.go:64:22:64:27 | filter | This query depends on a $@. | mongoDB.go:40:20:40:30 | call to Referer | user-provided value |
-| mongoDB.go:66:32:66:37 | filter | mongoDB.go:40:20:40:30 | call to Referer : string | mongoDB.go:66:32:66:37 | filter | This query depends on a $@. | mongoDB.go:40:20:40:30 | call to Referer | user-provided value |
-| mongoDB.go:69:17:69:22 | filter | mongoDB.go:40:20:40:30 | call to Referer : string | mongoDB.go:69:17:69:22 | filter | This query depends on a $@. | mongoDB.go:40:20:40:30 | call to Referer | user-provided value |
-| mongoDB.go:70:20:70:25 | filter | mongoDB.go:40:20:40:30 | call to Referer : string | mongoDB.go:70:20:70:25 | filter | This query depends on a $@. | mongoDB.go:40:20:40:30 | call to Referer | user-provided value |
-| mongoDB.go:71:29:71:34 | filter | mongoDB.go:40:20:40:30 | call to Referer : string | mongoDB.go:71:29:71:34 | filter | This query depends on a $@. | mongoDB.go:40:20:40:30 | call to Referer | user-provided value |
-| mongoDB.go:72:30:72:35 | filter | mongoDB.go:40:20:40:30 | call to Referer : string | mongoDB.go:72:30:72:35 | filter | This query depends on a $@. | mongoDB.go:40:20:40:30 | call to Referer | user-provided value |
-| mongoDB.go:73:29:73:34 | filter | mongoDB.go:40:20:40:30 | call to Referer : string | mongoDB.go:73:29:73:34 | filter | This query depends on a $@. | mongoDB.go:40:20:40:30 | call to Referer | user-provided value |
-| mongoDB.go:78:23:78:28 | filter | mongoDB.go:40:20:40:30 | call to Referer : string | mongoDB.go:78:23:78:28 | filter | This query depends on a $@. | mongoDB.go:40:20:40:30 | call to Referer | user-provided value |
-| mongoDB.go:79:23:79:28 | filter | mongoDB.go:40:20:40:30 | call to Referer : string | mongoDB.go:79:23:79:28 | filter | This query depends on a $@. | mongoDB.go:40:20:40:30 | call to Referer | user-provided value |
-| mongoDB.go:80:22:80:27 | filter | mongoDB.go:40:20:40:30 | call to Referer : string | mongoDB.go:80:22:80:27 | filter | This query depends on a $@. | mongoDB.go:40:20:40:30 | call to Referer | user-provided value |
-| mongoDB.go:81:18:81:25 | pipeline | mongoDB.go:40:20:40:30 | call to Referer : string | mongoDB.go:81:18:81:25 | pipeline | This query depends on a $@. | mongoDB.go:40:20:40:30 | call to Referer | user-provided value |
+| SqlInjection.go:12:11:12:11 | q | SqlInjection.go:11:3:11:9 | selection of URL | SqlInjection.go:12:11:12:11 | q | This query depends on a $@. | SqlInjection.go:11:3:11:9 | selection of URL | user-provided value |
+| issue48.go:22:11:22:12 | q3 | issue48.go:17:25:17:32 | selection of Body | issue48.go:22:11:22:12 | q3 | This query depends on a $@. | issue48.go:17:25:17:32 | selection of Body | user-provided value |
+| issue48.go:32:11:32:12 | q4 | issue48.go:27:26:27:33 | selection of Body | issue48.go:32:11:32:12 | q4 | This query depends on a $@. | issue48.go:27:26:27:33 | selection of Body | user-provided value |
+| issue48.go:41:11:41:12 | q5 | issue48.go:37:24:37:30 | selection of URL | issue48.go:41:11:41:12 | q5 | This query depends on a $@. | issue48.go:37:24:37:30 | selection of URL | user-provided value |
+| main.go:10:11:10:28 | index expression | main.go:10:11:10:16 | selection of Form | main.go:10:11:10:28 | index expression | This query depends on a $@. | main.go:10:11:10:16 | selection of Form | user-provided value |
+| main.go:14:11:14:84 | call to Sprintf | main.go:14:63:14:67 | selection of URL | main.go:14:11:14:84 | call to Sprintf | This query depends on a $@. | main.go:14:63:14:67 | selection of URL | user-provided value |
+| main.go:15:11:15:85 | call to Sprintf | main.go:15:63:15:70 | selection of Header | main.go:15:11:15:85 | call to Sprintf | This query depends on a $@. | main.go:15:63:15:70 | selection of Header | user-provided value |
+| main.go:34:11:34:11 | q | main.go:29:13:29:19 | selection of URL | main.go:34:11:34:11 | q | This query depends on a $@. | main.go:29:13:29:19 | selection of URL | user-provided value |
+| main.go:43:11:43:11 | q | main.go:39:25:39:31 | selection of URL | main.go:43:11:43:11 | q | This query depends on a $@. | main.go:39:25:39:31 | selection of URL | user-provided value |
+| main.go:52:11:52:11 | q | main.go:48:28:48:34 | selection of URL | main.go:52:11:52:11 | q | This query depends on a $@. | main.go:48:28:48:34 | selection of URL | user-provided value |
+| main.go:61:11:61:11 | q | main.go:57:28:57:34 | selection of URL | main.go:61:11:61:11 | q | This query depends on a $@. | main.go:57:28:57:34 | selection of URL | user-provided value |
+| mongoDB.go:57:22:57:29 | pipeline | mongoDB.go:40:20:40:30 | call to Referer | mongoDB.go:57:22:57:29 | pipeline | This query depends on a $@. | mongoDB.go:40:20:40:30 | call to Referer | user-provided value |
+| mongoDB.go:61:27:61:32 | filter | mongoDB.go:40:20:40:30 | call to Referer | mongoDB.go:61:27:61:32 | filter | This query depends on a $@. | mongoDB.go:40:20:40:30 | call to Referer | user-provided value |
+| mongoDB.go:63:23:63:28 | filter | mongoDB.go:40:20:40:30 | call to Referer | mongoDB.go:63:23:63:28 | filter | This query depends on a $@. | mongoDB.go:40:20:40:30 | call to Referer | user-provided value |
+| mongoDB.go:64:22:64:27 | filter | mongoDB.go:40:20:40:30 | call to Referer | mongoDB.go:64:22:64:27 | filter | This query depends on a $@. | mongoDB.go:40:20:40:30 | call to Referer | user-provided value |
+| mongoDB.go:66:32:66:37 | filter | mongoDB.go:40:20:40:30 | call to Referer | mongoDB.go:66:32:66:37 | filter | This query depends on a $@. | mongoDB.go:40:20:40:30 | call to Referer | user-provided value |
+| mongoDB.go:69:17:69:22 | filter | mongoDB.go:40:20:40:30 | call to Referer | mongoDB.go:69:17:69:22 | filter | This query depends on a $@. | mongoDB.go:40:20:40:30 | call to Referer | user-provided value |
+| mongoDB.go:70:20:70:25 | filter | mongoDB.go:40:20:40:30 | call to Referer | mongoDB.go:70:20:70:25 | filter | This query depends on a $@. | mongoDB.go:40:20:40:30 | call to Referer | user-provided value |
+| mongoDB.go:71:29:71:34 | filter | mongoDB.go:40:20:40:30 | call to Referer | mongoDB.go:71:29:71:34 | filter | This query depends on a $@. | mongoDB.go:40:20:40:30 | call to Referer | user-provided value |
+| mongoDB.go:72:30:72:35 | filter | mongoDB.go:40:20:40:30 | call to Referer | mongoDB.go:72:30:72:35 | filter | This query depends on a $@. | mongoDB.go:40:20:40:30 | call to Referer | user-provided value |
+| mongoDB.go:73:29:73:34 | filter | mongoDB.go:40:20:40:30 | call to Referer | mongoDB.go:73:29:73:34 | filter | This query depends on a $@. | mongoDB.go:40:20:40:30 | call to Referer | user-provided value |
+| mongoDB.go:78:23:78:28 | filter | mongoDB.go:40:20:40:30 | call to Referer | mongoDB.go:78:23:78:28 | filter | This query depends on a $@. | mongoDB.go:40:20:40:30 | call to Referer | user-provided value |
+| mongoDB.go:79:23:79:28 | filter | mongoDB.go:40:20:40:30 | call to Referer | mongoDB.go:79:23:79:28 | filter | This query depends on a $@. | mongoDB.go:40:20:40:30 | call to Referer | user-provided value |
+| mongoDB.go:80:22:80:27 | filter | mongoDB.go:40:20:40:30 | call to Referer | mongoDB.go:80:22:80:27 | filter | This query depends on a $@. | mongoDB.go:40:20:40:30 | call to Referer | user-provided value |
+| mongoDB.go:81:18:81:25 | pipeline | mongoDB.go:40:20:40:30 | call to Referer | mongoDB.go:81:18:81:25 | pipeline | This query depends on a $@. | mongoDB.go:40:20:40:30 | call to Referer | user-provided value |
diff --git a/go/ql/test/query-tests/Security/CWE-089/StringBreak.expected b/go/ql/test/query-tests/Security/CWE-089/StringBreak.expected
index cf3f362ead9..52c76ed52ce 100644
--- a/go/ql/test/query-tests/Security/CWE-089/StringBreak.expected
+++ b/go/ql/test/query-tests/Security/CWE-089/StringBreak.expected
@@ -1,20 +1,20 @@
 edges
-| StringBreak.go:10:2:10:40 | ... := ...[0] : slice type | StringBreak.go:14:47:14:57 | versionJSON |
-| StringBreakMismatched.go:12:2:12:40 | ... := ...[0] : slice type | StringBreakMismatched.go:13:29:13:47 | type conversion : slice type |
-| StringBreakMismatched.go:13:29:13:47 | type conversion : slice type | StringBreakMismatched.go:17:26:17:32 | escaped |
-| StringBreakMismatched.go:24:2:24:40 | ... := ...[0] : slice type | StringBreakMismatched.go:25:29:25:47 | type conversion : slice type |
-| StringBreakMismatched.go:25:29:25:47 | type conversion : slice type | StringBreakMismatched.go:29:27:29:33 | escaped |
+| StringBreak.go:10:2:10:40 | ... := ...[0] | StringBreak.go:14:47:14:57 | versionJSON |
+| StringBreakMismatched.go:12:2:12:40 | ... := ...[0] | StringBreakMismatched.go:13:29:13:47 | type conversion |
+| StringBreakMismatched.go:13:29:13:47 | type conversion | StringBreakMismatched.go:17:26:17:32 | escaped |
+| StringBreakMismatched.go:24:2:24:40 | ... := ...[0] | StringBreakMismatched.go:25:29:25:47 | type conversion |
+| StringBreakMismatched.go:25:29:25:47 | type conversion | StringBreakMismatched.go:29:27:29:33 | escaped |
 nodes
-| StringBreak.go:10:2:10:40 | ... := ...[0] : slice type | semmle.label | ... := ...[0] : slice type |
+| StringBreak.go:10:2:10:40 | ... := ...[0] | semmle.label | ... := ...[0] |
 | StringBreak.go:14:47:14:57 | versionJSON | semmle.label | versionJSON |
-| StringBreakMismatched.go:12:2:12:40 | ... := ...[0] : slice type | semmle.label | ... := ...[0] : slice type |
-| StringBreakMismatched.go:13:29:13:47 | type conversion : slice type | semmle.label | type conversion : slice type |
+| StringBreakMismatched.go:12:2:12:40 | ... := ...[0] | semmle.label | ... := ...[0] |
+| StringBreakMismatched.go:13:29:13:47 | type conversion | semmle.label | type conversion |
 | StringBreakMismatched.go:17:26:17:32 | escaped | semmle.label | escaped |
-| StringBreakMismatched.go:24:2:24:40 | ... := ...[0] : slice type | semmle.label | ... := ...[0] : slice type |
-| StringBreakMismatched.go:25:29:25:47 | type conversion : slice type | semmle.label | type conversion : slice type |
+| StringBreakMismatched.go:24:2:24:40 | ... := ...[0] | semmle.label | ... := ...[0] |
+| StringBreakMismatched.go:25:29:25:47 | type conversion | semmle.label | type conversion |
 | StringBreakMismatched.go:29:27:29:33 | escaped | semmle.label | escaped |
 subpaths
 #select
-| StringBreak.go:14:47:14:57 | versionJSON | StringBreak.go:10:2:10:40 | ... := ...[0] : slice type | StringBreak.go:14:47:14:57 | versionJSON | If this $@ contains a single quote, it could break out of the enclosing quotes. | StringBreak.go:10:2:10:40 | ... := ...[0] | JSON value |
-| StringBreakMismatched.go:17:26:17:32 | escaped | StringBreakMismatched.go:12:2:12:40 | ... := ...[0] : slice type | StringBreakMismatched.go:17:26:17:32 | escaped | If this $@ contains a single quote, it could break out of the enclosing quotes. | StringBreakMismatched.go:12:2:12:40 | ... := ...[0] | JSON value |
-| StringBreakMismatched.go:29:27:29:33 | escaped | StringBreakMismatched.go:24:2:24:40 | ... := ...[0] : slice type | StringBreakMismatched.go:29:27:29:33 | escaped | If this $@ contains a double quote, it could break out of the enclosing quotes. | StringBreakMismatched.go:24:2:24:40 | ... := ...[0] | JSON value |
+| StringBreak.go:14:47:14:57 | versionJSON | StringBreak.go:10:2:10:40 | ... := ...[0] | StringBreak.go:14:47:14:57 | versionJSON | If this $@ contains a single quote, it could break out of the enclosing quotes. | StringBreak.go:10:2:10:40 | ... := ...[0] | JSON value |
+| StringBreakMismatched.go:17:26:17:32 | escaped | StringBreakMismatched.go:12:2:12:40 | ... := ...[0] | StringBreakMismatched.go:17:26:17:32 | escaped | If this $@ contains a single quote, it could break out of the enclosing quotes. | StringBreakMismatched.go:12:2:12:40 | ... := ...[0] | JSON value |
+| StringBreakMismatched.go:29:27:29:33 | escaped | StringBreakMismatched.go:24:2:24:40 | ... := ...[0] | StringBreakMismatched.go:29:27:29:33 | escaped | If this $@ contains a double quote, it could break out of the enclosing quotes. | StringBreakMismatched.go:24:2:24:40 | ... := ...[0] | JSON value |
diff --git a/go/ql/test/query-tests/Security/CWE-190/AllocationSizeOverflow.expected b/go/ql/test/query-tests/Security/CWE-190/AllocationSizeOverflow.expected
index 474cc5aa42c..4dd0a7d7cf4 100644
--- a/go/ql/test/query-tests/Security/CWE-190/AllocationSizeOverflow.expected
+++ b/go/ql/test/query-tests/Security/CWE-190/AllocationSizeOverflow.expected
@@ -1,42 +1,42 @@
 edges
-| AllocationSizeOverflow.go:6:2:6:33 | ... := ...[0] : slice type | AllocationSizeOverflow.go:10:10:10:22 | call to len |
-| tst2.go:9:2:9:37 | ... := ...[0] : slice type | tst2.go:10:22:10:30 | call to len |
-| tst2.go:14:2:14:29 | ... := ...[0] : slice type | tst2.go:15:22:15:30 | call to len |
-| tst3.go:6:2:6:31 | ... := ...[0] : slice type | tst3.go:7:22:7:34 | call to len |
-| tst3.go:6:2:6:31 | ... := ...[0] : slice type | tst3.go:24:16:24:28 | call to len |
-| tst3.go:6:2:6:31 | ... := ...[0] : slice type | tst3.go:32:16:32:28 | call to len |
-| tst.go:14:2:14:30 | ... = ...[0] : slice type | tst.go:15:22:15:34 | call to len |
-| tst.go:20:2:20:31 | ... = ...[0] : slice type | tst.go:21:22:21:34 | call to len |
-| tst.go:26:2:26:31 | ... = ...[0] : slice type | tst.go:27:26:27:38 | call to len |
-| tst.go:34:2:34:30 | ... = ...[0] : slice type | tst.go:35:22:35:34 | call to len |
+| AllocationSizeOverflow.go:6:2:6:33 | ... := ...[0] | AllocationSizeOverflow.go:10:10:10:22 | call to len |
+| tst2.go:9:2:9:37 | ... := ...[0] | tst2.go:10:22:10:30 | call to len |
+| tst2.go:14:2:14:29 | ... := ...[0] | tst2.go:15:22:15:30 | call to len |
+| tst3.go:6:2:6:31 | ... := ...[0] | tst3.go:7:22:7:34 | call to len |
+| tst3.go:6:2:6:31 | ... := ...[0] | tst3.go:24:16:24:28 | call to len |
+| tst3.go:6:2:6:31 | ... := ...[0] | tst3.go:32:16:32:28 | call to len |
+| tst.go:14:2:14:30 | ... = ...[0] | tst.go:15:22:15:34 | call to len |
+| tst.go:20:2:20:31 | ... = ...[0] | tst.go:21:22:21:34 | call to len |
+| tst.go:26:2:26:31 | ... = ...[0] | tst.go:27:26:27:38 | call to len |
+| tst.go:34:2:34:30 | ... = ...[0] | tst.go:35:22:35:34 | call to len |
 nodes
-| AllocationSizeOverflow.go:6:2:6:33 | ... := ...[0] : slice type | semmle.label | ... := ...[0] : slice type |
+| AllocationSizeOverflow.go:6:2:6:33 | ... := ...[0] | semmle.label | ... := ...[0] |
 | AllocationSizeOverflow.go:10:10:10:22 | call to len | semmle.label | call to len |
-| tst2.go:9:2:9:37 | ... := ...[0] : slice type | semmle.label | ... := ...[0] : slice type |
+| tst2.go:9:2:9:37 | ... := ...[0] | semmle.label | ... := ...[0] |
 | tst2.go:10:22:10:30 | call to len | semmle.label | call to len |
-| tst2.go:14:2:14:29 | ... := ...[0] : slice type | semmle.label | ... := ...[0] : slice type |
+| tst2.go:14:2:14:29 | ... := ...[0] | semmle.label | ... := ...[0] |
 | tst2.go:15:22:15:30 | call to len | semmle.label | call to len |
-| tst3.go:6:2:6:31 | ... := ...[0] : slice type | semmle.label | ... := ...[0] : slice type |
+| tst3.go:6:2:6:31 | ... := ...[0] | semmle.label | ... := ...[0] |
 | tst3.go:7:22:7:34 | call to len | semmle.label | call to len |
 | tst3.go:24:16:24:28 | call to len | semmle.label | call to len |
 | tst3.go:32:16:32:28 | call to len | semmle.label | call to len |
-| tst.go:14:2:14:30 | ... = ...[0] : slice type | semmle.label | ... = ...[0] : slice type |
+| tst.go:14:2:14:30 | ... = ...[0] | semmle.label | ... = ...[0] |
 | tst.go:15:22:15:34 | call to len | semmle.label | call to len |
-| tst.go:20:2:20:31 | ... = ...[0] : slice type | semmle.label | ... = ...[0] : slice type |
+| tst.go:20:2:20:31 | ... = ...[0] | semmle.label | ... = ...[0] |
 | tst.go:21:22:21:34 | call to len | semmle.label | call to len |
-| tst.go:26:2:26:31 | ... = ...[0] : slice type | semmle.label | ... = ...[0] : slice type |
+| tst.go:26:2:26:31 | ... = ...[0] | semmle.label | ... = ...[0] |
 | tst.go:27:26:27:38 | call to len | semmle.label | call to len |
-| tst.go:34:2:34:30 | ... = ...[0] : slice type | semmle.label | ... = ...[0] : slice type |
+| tst.go:34:2:34:30 | ... = ...[0] | semmle.label | ... = ...[0] |
 | tst.go:35:22:35:34 | call to len | semmle.label | call to len |
 subpaths
 #select
-| AllocationSizeOverflow.go:10:10:10:22 | call to len | AllocationSizeOverflow.go:6:2:6:33 | ... := ...[0] : slice type | AllocationSizeOverflow.go:10:10:10:22 | call to len | This operation, which is used in an $@, involves a $@ and might overflow. | AllocationSizeOverflow.go:11:25:11:28 | size | allocation | AllocationSizeOverflow.go:6:2:6:33 | ... := ...[0] : slice type | potentially large value |
-| tst2.go:10:22:10:30 | call to len | tst2.go:9:2:9:37 | ... := ...[0] : slice type | tst2.go:10:22:10:30 | call to len | This operation, which is used in an $@, involves a $@ and might overflow. | tst2.go:10:22:10:32 | ...+... | allocation | tst2.go:9:2:9:37 | ... := ...[0] : slice type | potentially large value |
-| tst2.go:15:22:15:30 | call to len | tst2.go:14:2:14:29 | ... := ...[0] : slice type | tst2.go:15:22:15:30 | call to len | This operation, which is used in an $@, involves a $@ and might overflow. | tst2.go:15:22:15:32 | ...+... | allocation | tst2.go:14:2:14:29 | ... := ...[0] : slice type | potentially large value |
-| tst3.go:7:22:7:34 | call to len | tst3.go:6:2:6:31 | ... := ...[0] : slice type | tst3.go:7:22:7:34 | call to len | This operation, which is used in an $@, involves a $@ and might overflow. | tst3.go:7:22:7:36 | ...+... | allocation | tst3.go:6:2:6:31 | ... := ...[0] : slice type | potentially large value |
-| tst3.go:24:16:24:28 | call to len | tst3.go:6:2:6:31 | ... := ...[0] : slice type | tst3.go:24:16:24:28 | call to len | This operation, which is used in an $@, involves a $@ and might overflow. | tst3.go:27:24:27:32 | newlength | allocation | tst3.go:6:2:6:31 | ... := ...[0] : slice type | potentially large value |
-| tst3.go:32:16:32:28 | call to len | tst3.go:6:2:6:31 | ... := ...[0] : slice type | tst3.go:32:16:32:28 | call to len | This operation, which is used in an $@, involves a $@ and might overflow. | tst3.go:36:23:36:31 | newlength | allocation | tst3.go:6:2:6:31 | ... := ...[0] : slice type | potentially large value |
-| tst.go:15:22:15:34 | call to len | tst.go:14:2:14:30 | ... = ...[0] : slice type | tst.go:15:22:15:34 | call to len | This operation, which is used in an $@, involves a $@ and might overflow. | tst.go:15:22:15:36 | ...+... | allocation | tst.go:14:2:14:30 | ... = ...[0] : slice type | potentially large value |
-| tst.go:21:22:21:34 | call to len | tst.go:20:2:20:31 | ... = ...[0] : slice type | tst.go:21:22:21:34 | call to len | This operation, which is used in an $@, involves a $@ and might overflow. | tst.go:21:22:21:36 | ...+... | allocation | tst.go:20:2:20:31 | ... = ...[0] : slice type | potentially large value |
-| tst.go:27:26:27:38 | call to len | tst.go:26:2:26:31 | ... = ...[0] : slice type | tst.go:27:26:27:38 | call to len | This operation, which is used in an $@, involves a $@ and might overflow. | tst.go:27:26:27:40 | ...+... | allocation | tst.go:26:2:26:31 | ... = ...[0] : slice type | potentially large value |
-| tst.go:35:22:35:34 | call to len | tst.go:34:2:34:30 | ... = ...[0] : slice type | tst.go:35:22:35:34 | call to len | This operation, which is used in an $@, involves a $@ and might overflow. | tst.go:35:22:35:36 | ...+... | allocation | tst.go:34:2:34:30 | ... = ...[0] : slice type | potentially large value |
+| AllocationSizeOverflow.go:10:10:10:22 | call to len | AllocationSizeOverflow.go:6:2:6:33 | ... := ...[0] | AllocationSizeOverflow.go:10:10:10:22 | call to len | This operation, which is used in an $@, involves a $@ and might overflow. | AllocationSizeOverflow.go:11:25:11:28 | size | allocation | AllocationSizeOverflow.go:6:2:6:33 | ... := ...[0] | potentially large value |
+| tst2.go:10:22:10:30 | call to len | tst2.go:9:2:9:37 | ... := ...[0] | tst2.go:10:22:10:30 | call to len | This operation, which is used in an $@, involves a $@ and might overflow. | tst2.go:10:22:10:32 | ...+... | allocation | tst2.go:9:2:9:37 | ... := ...[0] | potentially large value |
+| tst2.go:15:22:15:30 | call to len | tst2.go:14:2:14:29 | ... := ...[0] | tst2.go:15:22:15:30 | call to len | This operation, which is used in an $@, involves a $@ and might overflow. | tst2.go:15:22:15:32 | ...+... | allocation | tst2.go:14:2:14:29 | ... := ...[0] | potentially large value |
+| tst3.go:7:22:7:34 | call to len | tst3.go:6:2:6:31 | ... := ...[0] | tst3.go:7:22:7:34 | call to len | This operation, which is used in an $@, involves a $@ and might overflow. | tst3.go:7:22:7:36 | ...+... | allocation | tst3.go:6:2:6:31 | ... := ...[0] | potentially large value |
+| tst3.go:24:16:24:28 | call to len | tst3.go:6:2:6:31 | ... := ...[0] | tst3.go:24:16:24:28 | call to len | This operation, which is used in an $@, involves a $@ and might overflow. | tst3.go:27:24:27:32 | newlength | allocation | tst3.go:6:2:6:31 | ... := ...[0] | potentially large value |
+| tst3.go:32:16:32:28 | call to len | tst3.go:6:2:6:31 | ... := ...[0] | tst3.go:32:16:32:28 | call to len | This operation, which is used in an $@, involves a $@ and might overflow. | tst3.go:36:23:36:31 | newlength | allocation | tst3.go:6:2:6:31 | ... := ...[0] | potentially large value |
+| tst.go:15:22:15:34 | call to len | tst.go:14:2:14:30 | ... = ...[0] | tst.go:15:22:15:34 | call to len | This operation, which is used in an $@, involves a $@ and might overflow. | tst.go:15:22:15:36 | ...+... | allocation | tst.go:14:2:14:30 | ... = ...[0] | potentially large value |
+| tst.go:21:22:21:34 | call to len | tst.go:20:2:20:31 | ... = ...[0] | tst.go:21:22:21:34 | call to len | This operation, which is used in an $@, involves a $@ and might overflow. | tst.go:21:22:21:36 | ...+... | allocation | tst.go:20:2:20:31 | ... = ...[0] | potentially large value |
+| tst.go:27:26:27:38 | call to len | tst.go:26:2:26:31 | ... = ...[0] | tst.go:27:26:27:38 | call to len | This operation, which is used in an $@, involves a $@ and might overflow. | tst.go:27:26:27:40 | ...+... | allocation | tst.go:26:2:26:31 | ... = ...[0] | potentially large value |
+| tst.go:35:22:35:34 | call to len | tst.go:34:2:34:30 | ... = ...[0] | tst.go:35:22:35:34 | call to len | This operation, which is used in an $@, involves a $@ and might overflow. | tst.go:35:22:35:36 | ...+... | allocation | tst.go:34:2:34:30 | ... = ...[0] | potentially large value |
diff --git a/go/ql/test/query-tests/Security/CWE-209/StackTraceExposure.expected b/go/ql/test/query-tests/Security/CWE-209/StackTraceExposure.expected
index ff8c7a9f72f..99042f7a497 100644
--- a/go/ql/test/query-tests/Security/CWE-209/StackTraceExposure.expected
+++ b/go/ql/test/query-tests/Security/CWE-209/StackTraceExposure.expected
@@ -1,8 +1,8 @@
 edges
-| test.go:14:2:14:4 | definition of buf : slice type | test.go:17:10:17:12 | buf |
+| test.go:14:2:14:4 | definition of buf | test.go:17:10:17:12 | buf |
 nodes
-| test.go:14:2:14:4 | definition of buf : slice type | semmle.label | definition of buf : slice type |
+| test.go:14:2:14:4 | definition of buf | semmle.label | definition of buf |
 | test.go:17:10:17:12 | buf | semmle.label | buf |
 subpaths
 #select
-| test.go:17:10:17:12 | buf | test.go:14:2:14:4 | definition of buf : slice type | test.go:17:10:17:12 | buf | HTTP response depends on $@ and may be exposed to an external user. | test.go:14:2:14:4 | definition of buf | stack trace information |
+| test.go:17:10:17:12 | buf | test.go:14:2:14:4 | definition of buf | test.go:17:10:17:12 | buf | HTTP response depends on $@ and may be exposed to an external user. | test.go:14:2:14:4 | definition of buf | stack trace information |
diff --git a/go/ql/test/query-tests/Security/CWE-312/CleartextLogging.expected b/go/ql/test/query-tests/Security/CWE-312/CleartextLogging.expected
index 698779c4ad0..5daa517378e 100644
--- a/go/ql/test/query-tests/Security/CWE-312/CleartextLogging.expected
+++ b/go/ql/test/query-tests/Security/CWE-312/CleartextLogging.expected
@@ -1,135 +1,135 @@
 edges
-| klog.go:20:30:20:37 | selection of Header : Header | klog.go:22:15:22:20 | header |
-| klog.go:28:13:28:20 | selection of Header : Header | klog.go:28:13:28:41 | call to Get |
-| main.go:21:19:21:26 | password : string | main.go:22:29:22:34 | fields |
-| overrides.go:9:9:9:16 | password : string | overrides.go:13:14:13:23 | call to String |
-| passwords.go:8:12:8:12 | definition of x : string | passwords.go:9:14:9:14 | x |
-| passwords.go:30:8:30:15 | password : string | passwords.go:8:12:8:12 | definition of x : string |
-| passwords.go:34:28:34:35 | password : string | passwords.go:34:14:34:35 | ...+... |
-| passwords.go:37:13:37:13 | x : string | passwords.go:39:14:39:17 | obj1 |
-| passwords.go:42:6:42:13 | password : string | passwords.go:44:14:44:17 | obj2 |
-| passwords.go:48:11:48:18 | password : string | passwords.go:47:14:47:17 | obj3 |
-| passwords.go:86:16:86:36 | call to make : map type | passwords.go:88:14:88:26 | utilityObject |
-| passwords.go:90:12:90:19 | password : string | passwords.go:91:23:91:28 | secret |
-| passwords.go:101:33:101:40 | password : string | passwords.go:101:15:101:40 | ...+... |
-| passwords.go:107:34:107:41 | password : string | passwords.go:107:16:107:41 | ...+... |
-| passwords.go:112:33:112:40 | password : string | passwords.go:112:15:112:40 | ...+... |
-| passwords.go:116:28:116:36 | password1 : stringable | passwords.go:116:14:116:45 | ...+... |
-| passwords.go:118:12:123:2 | struct literal [x] : string | passwords.go:126:14:126:19 | config [x] : string |
-| passwords.go:118:12:123:2 | struct literal [y] : string | passwords.go:127:14:127:19 | config [y] : string |
-| passwords.go:119:13:119:13 | x : string | passwords.go:125:14:125:19 | config |
-| passwords.go:121:13:121:20 | password : string | passwords.go:118:12:123:2 | struct literal [x] : string |
-| passwords.go:121:13:121:20 | password : string | passwords.go:125:14:125:19 | config |
-| passwords.go:122:13:122:25 | call to getPassword : string | passwords.go:118:12:123:2 | struct literal [y] : string |
-| passwords.go:122:13:122:25 | call to getPassword : string | passwords.go:125:14:125:19 | config |
-| passwords.go:126:14:126:19 | config [x] : string | passwords.go:126:14:126:21 | selection of x |
-| passwords.go:127:14:127:19 | config [y] : string | passwords.go:127:14:127:21 | selection of y |
-| protobuf.go:11:2:11:6 | definition of query [pointer, Description] : string | protobuf.go:12:2:12:6 | query [pointer, Description] : string |
-| protobuf.go:11:2:11:6 | definition of query [pointer, Description] : string | protobuf.go:14:14:14:18 | query [pointer, Description] : string |
-| protobuf.go:12:2:12:6 | implicit dereference [Description] : string | protobuf.go:11:2:11:6 | definition of query [pointer, Description] : string |
-| protobuf.go:12:2:12:6 | query [pointer, Description] : string | protobuf.go:12:2:12:6 | implicit dereference [Description] : string |
-| protobuf.go:12:22:12:29 | password : string | protobuf.go:12:2:12:6 | implicit dereference [Description] : string |
-| protobuf.go:14:14:14:18 | query [pointer, Description] : string | protobuf.go:14:14:14:35 | call to GetDescription |
-| protobuf.go:14:14:14:18 | query [pointer, Description] : string | protos/query/query.pb.go:117:7:117:7 | definition of x [pointer, Description] : string |
-| protos/query/query.pb.go:117:7:117:7 | definition of x [pointer, Description] : string | protos/query/query.pb.go:119:10:119:10 | x [pointer, Description] : string |
-| protos/query/query.pb.go:119:10:119:10 | implicit dereference [Description] : string | protos/query/query.pb.go:119:10:119:22 | selection of Description : string |
-| protos/query/query.pb.go:119:10:119:10 | x [pointer, Description] : string | protos/query/query.pb.go:119:10:119:10 | implicit dereference [Description] : string |
-| util.go:16:9:16:18 | selection of password : string | passwords.go:28:14:28:28 | call to getPassword |
+| klog.go:20:30:20:37 | selection of Header | klog.go:22:15:22:20 | header |
+| klog.go:28:13:28:20 | selection of Header | klog.go:28:13:28:41 | call to Get |
+| main.go:21:19:21:26 | password | main.go:22:29:22:34 | fields |
+| overrides.go:9:9:9:16 | password | overrides.go:13:14:13:23 | call to String |
+| passwords.go:8:12:8:12 | definition of x | passwords.go:9:14:9:14 | x |
+| passwords.go:30:8:30:15 | password | passwords.go:8:12:8:12 | definition of x |
+| passwords.go:34:28:34:35 | password | passwords.go:34:14:34:35 | ...+... |
+| passwords.go:37:13:37:13 | x | passwords.go:39:14:39:17 | obj1 |
+| passwords.go:42:6:42:13 | password | passwords.go:44:14:44:17 | obj2 |
+| passwords.go:48:11:48:18 | password | passwords.go:47:14:47:17 | obj3 |
+| passwords.go:86:16:86:36 | call to make | passwords.go:88:14:88:26 | utilityObject |
+| passwords.go:90:12:90:19 | password | passwords.go:91:23:91:28 | secret |
+| passwords.go:101:33:101:40 | password | passwords.go:101:15:101:40 | ...+... |
+| passwords.go:107:34:107:41 | password | passwords.go:107:16:107:41 | ...+... |
+| passwords.go:112:33:112:40 | password | passwords.go:112:15:112:40 | ...+... |
+| passwords.go:116:28:116:36 | password1 | passwords.go:116:14:116:45 | ...+... |
+| passwords.go:118:12:123:2 | struct literal [x] | passwords.go:126:14:126:19 | config [x] |
+| passwords.go:118:12:123:2 | struct literal [y] | passwords.go:127:14:127:19 | config [y] |
+| passwords.go:119:13:119:13 | x | passwords.go:125:14:125:19 | config |
+| passwords.go:121:13:121:20 | password | passwords.go:118:12:123:2 | struct literal [x] |
+| passwords.go:121:13:121:20 | password | passwords.go:125:14:125:19 | config |
+| passwords.go:122:13:122:25 | call to getPassword | passwords.go:118:12:123:2 | struct literal [y] |
+| passwords.go:122:13:122:25 | call to getPassword | passwords.go:125:14:125:19 | config |
+| passwords.go:126:14:126:19 | config [x] | passwords.go:126:14:126:21 | selection of x |
+| passwords.go:127:14:127:19 | config [y] | passwords.go:127:14:127:21 | selection of y |
+| protobuf.go:11:2:11:6 | definition of query [pointer, Description] | protobuf.go:12:2:12:6 | query [pointer, Description] |
+| protobuf.go:11:2:11:6 | definition of query [pointer, Description] | protobuf.go:14:14:14:18 | query [pointer, Description] |
+| protobuf.go:12:2:12:6 | implicit dereference [Description] | protobuf.go:11:2:11:6 | definition of query [pointer, Description] |
+| protobuf.go:12:2:12:6 | query [pointer, Description] | protobuf.go:12:2:12:6 | implicit dereference [Description] |
+| protobuf.go:12:22:12:29 | password | protobuf.go:12:2:12:6 | implicit dereference [Description] |
+| protobuf.go:14:14:14:18 | query [pointer, Description] | protobuf.go:14:14:14:35 | call to GetDescription |
+| protobuf.go:14:14:14:18 | query [pointer, Description] | protos/query/query.pb.go:117:7:117:7 | definition of x [pointer, Description] |
+| protos/query/query.pb.go:117:7:117:7 | definition of x [pointer, Description] | protos/query/query.pb.go:119:10:119:10 | x [pointer, Description] |
+| protos/query/query.pb.go:119:10:119:10 | implicit dereference [Description] | protos/query/query.pb.go:119:10:119:22 | selection of Description |
+| protos/query/query.pb.go:119:10:119:10 | x [pointer, Description] | protos/query/query.pb.go:119:10:119:10 | implicit dereference [Description] |
+| util.go:16:9:16:18 | selection of password | passwords.go:28:14:28:28 | call to getPassword |
 nodes
-| klog.go:20:30:20:37 | selection of Header : Header | semmle.label | selection of Header : Header |
+| klog.go:20:30:20:37 | selection of Header | semmle.label | selection of Header |
 | klog.go:22:15:22:20 | header | semmle.label | header |
-| klog.go:28:13:28:20 | selection of Header : Header | semmle.label | selection of Header : Header |
+| klog.go:28:13:28:20 | selection of Header | semmle.label | selection of Header |
 | klog.go:28:13:28:41 | call to Get | semmle.label | call to Get |
 | main.go:15:14:15:21 | password | semmle.label | password |
 | main.go:17:12:17:19 | password | semmle.label | password |
 | main.go:18:17:18:24 | password | semmle.label | password |
-| main.go:21:19:21:26 | password : string | semmle.label | password : string |
+| main.go:21:19:21:26 | password | semmle.label | password |
 | main.go:22:29:22:34 | fields | semmle.label | fields |
 | main.go:25:35:25:42 | password | semmle.label | password |
-| overrides.go:9:9:9:16 | password : string | semmle.label | password : string |
+| overrides.go:9:9:9:16 | password | semmle.label | password |
 | overrides.go:13:14:13:23 | call to String | semmle.label | call to String |
-| passwords.go:8:12:8:12 | definition of x : string | semmle.label | definition of x : string |
+| passwords.go:8:12:8:12 | definition of x | semmle.label | definition of x |
 | passwords.go:9:14:9:14 | x | semmle.label | x |
 | passwords.go:25:14:25:21 | password | semmle.label | password |
 | passwords.go:26:14:26:23 | selection of password | semmle.label | selection of password |
 | passwords.go:27:14:27:26 | call to getPassword | semmle.label | call to getPassword |
 | passwords.go:28:14:28:28 | call to getPassword | semmle.label | call to getPassword |
-| passwords.go:30:8:30:15 | password : string | semmle.label | password : string |
+| passwords.go:30:8:30:15 | password | semmle.label | password |
 | passwords.go:32:12:32:19 | password | semmle.label | password |
 | passwords.go:34:14:34:35 | ...+... | semmle.label | ...+... |
-| passwords.go:34:28:34:35 | password : string | semmle.label | password : string |
-| passwords.go:37:13:37:13 | x : string | semmle.label | x : string |
+| passwords.go:34:28:34:35 | password | semmle.label | password |
+| passwords.go:37:13:37:13 | x | semmle.label | x |
 | passwords.go:39:14:39:17 | obj1 | semmle.label | obj1 |
-| passwords.go:42:6:42:13 | password : string | semmle.label | password : string |
+| passwords.go:42:6:42:13 | password | semmle.label | password |
 | passwords.go:44:14:44:17 | obj2 | semmle.label | obj2 |
 | passwords.go:47:14:47:17 | obj3 | semmle.label | obj3 |
-| passwords.go:48:11:48:18 | password : string | semmle.label | password : string |
+| passwords.go:48:11:48:18 | password | semmle.label | password |
 | passwords.go:51:14:51:27 | fixed_password | semmle.label | fixed_password |
-| passwords.go:86:16:86:36 | call to make : map type | semmle.label | call to make : map type |
+| passwords.go:86:16:86:36 | call to make | semmle.label | call to make |
 | passwords.go:88:14:88:26 | utilityObject | semmle.label | utilityObject |
-| passwords.go:90:12:90:19 | password : string | semmle.label | password : string |
+| passwords.go:90:12:90:19 | password | semmle.label | password |
 | passwords.go:91:23:91:28 | secret | semmle.label | secret |
 | passwords.go:101:15:101:40 | ...+... | semmle.label | ...+... |
-| passwords.go:101:33:101:40 | password : string | semmle.label | password : string |
+| passwords.go:101:33:101:40 | password | semmle.label | password |
 | passwords.go:107:16:107:41 | ...+... | semmle.label | ...+... |
-| passwords.go:107:34:107:41 | password : string | semmle.label | password : string |
+| passwords.go:107:34:107:41 | password | semmle.label | password |
 | passwords.go:112:15:112:40 | ...+... | semmle.label | ...+... |
-| passwords.go:112:33:112:40 | password : string | semmle.label | password : string |
+| passwords.go:112:33:112:40 | password | semmle.label | password |
 | passwords.go:116:14:116:45 | ...+... | semmle.label | ...+... |
-| passwords.go:116:28:116:36 | password1 : stringable | semmle.label | password1 : stringable |
-| passwords.go:118:12:123:2 | struct literal [x] : string | semmle.label | struct literal [x] : string |
-| passwords.go:118:12:123:2 | struct literal [y] : string | semmle.label | struct literal [y] : string |
-| passwords.go:119:13:119:13 | x : string | semmle.label | x : string |
-| passwords.go:121:13:121:20 | password : string | semmle.label | password : string |
-| passwords.go:122:13:122:25 | call to getPassword : string | semmle.label | call to getPassword : string |
+| passwords.go:116:28:116:36 | password1 | semmle.label | password1 |
+| passwords.go:118:12:123:2 | struct literal [x] | semmle.label | struct literal [x] |
+| passwords.go:118:12:123:2 | struct literal [y] | semmle.label | struct literal [y] |
+| passwords.go:119:13:119:13 | x | semmle.label | x |
+| passwords.go:121:13:121:20 | password | semmle.label | password |
+| passwords.go:122:13:122:25 | call to getPassword | semmle.label | call to getPassword |
 | passwords.go:125:14:125:19 | config | semmle.label | config |
-| passwords.go:126:14:126:19 | config [x] : string | semmle.label | config [x] : string |
+| passwords.go:126:14:126:19 | config [x] | semmle.label | config [x] |
 | passwords.go:126:14:126:21 | selection of x | semmle.label | selection of x |
-| passwords.go:127:14:127:19 | config [y] : string | semmle.label | config [y] : string |
+| passwords.go:127:14:127:19 | config [y] | semmle.label | config [y] |
 | passwords.go:127:14:127:21 | selection of y | semmle.label | selection of y |
-| protobuf.go:11:2:11:6 | definition of query [pointer, Description] : string | semmle.label | definition of query [pointer, Description] : string |
-| protobuf.go:12:2:12:6 | implicit dereference [Description] : string | semmle.label | implicit dereference [Description] : string |
-| protobuf.go:12:2:12:6 | query [pointer, Description] : string | semmle.label | query [pointer, Description] : string |
-| protobuf.go:12:22:12:29 | password : string | semmle.label | password : string |
-| protobuf.go:14:14:14:18 | query [pointer, Description] : string | semmle.label | query [pointer, Description] : string |
+| protobuf.go:11:2:11:6 | definition of query [pointer, Description] | semmle.label | definition of query [pointer, Description] |
+| protobuf.go:12:2:12:6 | implicit dereference [Description] | semmle.label | implicit dereference [Description] |
+| protobuf.go:12:2:12:6 | query [pointer, Description] | semmle.label | query [pointer, Description] |
+| protobuf.go:12:22:12:29 | password | semmle.label | password |
+| protobuf.go:14:14:14:18 | query [pointer, Description] | semmle.label | query [pointer, Description] |
 | protobuf.go:14:14:14:35 | call to GetDescription | semmle.label | call to GetDescription |
-| protos/query/query.pb.go:117:7:117:7 | definition of x [pointer, Description] : string | semmle.label | definition of x [pointer, Description] : string |
-| protos/query/query.pb.go:119:10:119:10 | implicit dereference [Description] : string | semmle.label | implicit dereference [Description] : string |
-| protos/query/query.pb.go:119:10:119:10 | x [pointer, Description] : string | semmle.label | x [pointer, Description] : string |
-| protos/query/query.pb.go:119:10:119:22 | selection of Description : string | semmle.label | selection of Description : string |
-| util.go:16:9:16:18 | selection of password : string | semmle.label | selection of password : string |
+| protos/query/query.pb.go:117:7:117:7 | definition of x [pointer, Description] | semmle.label | definition of x [pointer, Description] |
+| protos/query/query.pb.go:119:10:119:10 | implicit dereference [Description] | semmle.label | implicit dereference [Description] |
+| protos/query/query.pb.go:119:10:119:10 | x [pointer, Description] | semmle.label | x [pointer, Description] |
+| protos/query/query.pb.go:119:10:119:22 | selection of Description | semmle.label | selection of Description |
+| util.go:16:9:16:18 | selection of password | semmle.label | selection of password |
 subpaths
-| protobuf.go:14:14:14:18 | query [pointer, Description] : string | protos/query/query.pb.go:117:7:117:7 | definition of x [pointer, Description] : string | protos/query/query.pb.go:119:10:119:22 | selection of Description : string | protobuf.go:14:14:14:35 | call to GetDescription |
+| protobuf.go:14:14:14:18 | query [pointer, Description] | protos/query/query.pb.go:117:7:117:7 | definition of x [pointer, Description] | protos/query/query.pb.go:119:10:119:22 | selection of Description | protobuf.go:14:14:14:35 | call to GetDescription |
 #select
-| klog.go:22:15:22:20 | header | klog.go:20:30:20:37 | selection of Header : Header | klog.go:22:15:22:20 | header | $@ flows to a logging call. | klog.go:20:30:20:37 | selection of Header | Sensitive data returned by HTTP request headers |
-| klog.go:28:13:28:41 | call to Get | klog.go:28:13:28:20 | selection of Header : Header | klog.go:28:13:28:41 | call to Get | $@ flows to a logging call. | klog.go:28:13:28:20 | selection of Header | Sensitive data returned by HTTP request headers |
+| klog.go:22:15:22:20 | header | klog.go:20:30:20:37 | selection of Header | klog.go:22:15:22:20 | header | $@ flows to a logging call. | klog.go:20:30:20:37 | selection of Header | Sensitive data returned by HTTP request headers |
+| klog.go:28:13:28:41 | call to Get | klog.go:28:13:28:20 | selection of Header | klog.go:28:13:28:41 | call to Get | $@ flows to a logging call. | klog.go:28:13:28:20 | selection of Header | Sensitive data returned by HTTP request headers |
 | main.go:15:14:15:21 | password | main.go:15:14:15:21 | password | main.go:15:14:15:21 | password | $@ flows to a logging call. | main.go:15:14:15:21 | password | Sensitive data returned by an access to password |
 | main.go:17:12:17:19 | password | main.go:17:12:17:19 | password | main.go:17:12:17:19 | password | $@ flows to a logging call. | main.go:17:12:17:19 | password | Sensitive data returned by an access to password |
 | main.go:18:17:18:24 | password | main.go:18:17:18:24 | password | main.go:18:17:18:24 | password | $@ flows to a logging call. | main.go:18:17:18:24 | password | Sensitive data returned by an access to password |
-| main.go:22:29:22:34 | fields | main.go:21:19:21:26 | password : string | main.go:22:29:22:34 | fields | $@ flows to a logging call. | main.go:21:19:21:26 | password | Sensitive data returned by an access to password |
+| main.go:22:29:22:34 | fields | main.go:21:19:21:26 | password | main.go:22:29:22:34 | fields | $@ flows to a logging call. | main.go:21:19:21:26 | password | Sensitive data returned by an access to password |
 | main.go:25:35:25:42 | password | main.go:25:35:25:42 | password | main.go:25:35:25:42 | password | $@ flows to a logging call. | main.go:25:35:25:42 | password | Sensitive data returned by an access to password |
-| overrides.go:13:14:13:23 | call to String | overrides.go:9:9:9:16 | password : string | overrides.go:13:14:13:23 | call to String | $@ flows to a logging call. | overrides.go:9:9:9:16 | password | Sensitive data returned by an access to password |
-| passwords.go:9:14:9:14 | x | passwords.go:30:8:30:15 | password : string | passwords.go:9:14:9:14 | x | $@ flows to a logging call. | passwords.go:30:8:30:15 | password | Sensitive data returned by an access to password |
+| overrides.go:13:14:13:23 | call to String | overrides.go:9:9:9:16 | password | overrides.go:13:14:13:23 | call to String | $@ flows to a logging call. | overrides.go:9:9:9:16 | password | Sensitive data returned by an access to password |
+| passwords.go:9:14:9:14 | x | passwords.go:30:8:30:15 | password | passwords.go:9:14:9:14 | x | $@ flows to a logging call. | passwords.go:30:8:30:15 | password | Sensitive data returned by an access to password |
 | passwords.go:25:14:25:21 | password | passwords.go:25:14:25:21 | password | passwords.go:25:14:25:21 | password | $@ flows to a logging call. | passwords.go:25:14:25:21 | password | Sensitive data returned by an access to password |
 | passwords.go:26:14:26:23 | selection of password | passwords.go:26:14:26:23 | selection of password | passwords.go:26:14:26:23 | selection of password | $@ flows to a logging call. | passwords.go:26:14:26:23 | selection of password | Sensitive data returned by an access to password |
 | passwords.go:27:14:27:26 | call to getPassword | passwords.go:27:14:27:26 | call to getPassword | passwords.go:27:14:27:26 | call to getPassword | $@ flows to a logging call. | passwords.go:27:14:27:26 | call to getPassword | Sensitive data returned by a call to getPassword |
 | passwords.go:28:14:28:28 | call to getPassword | passwords.go:28:14:28:28 | call to getPassword | passwords.go:28:14:28:28 | call to getPassword | $@ flows to a logging call. | passwords.go:28:14:28:28 | call to getPassword | Sensitive data returned by a call to getPassword |
-| passwords.go:28:14:28:28 | call to getPassword | util.go:16:9:16:18 | selection of password : string | passwords.go:28:14:28:28 | call to getPassword | $@ flows to a logging call. | util.go:16:9:16:18 | selection of password | Sensitive data returned by an access to password |
+| passwords.go:28:14:28:28 | call to getPassword | util.go:16:9:16:18 | selection of password | passwords.go:28:14:28:28 | call to getPassword | $@ flows to a logging call. | util.go:16:9:16:18 | selection of password | Sensitive data returned by an access to password |
 | passwords.go:32:12:32:19 | password | passwords.go:32:12:32:19 | password | passwords.go:32:12:32:19 | password | $@ flows to a logging call. | passwords.go:32:12:32:19 | password | Sensitive data returned by an access to password |
-| passwords.go:34:14:34:35 | ...+... | passwords.go:34:28:34:35 | password : string | passwords.go:34:14:34:35 | ...+... | $@ flows to a logging call. | passwords.go:34:28:34:35 | password | Sensitive data returned by an access to password |
-| passwords.go:39:14:39:17 | obj1 | passwords.go:37:13:37:13 | x : string | passwords.go:39:14:39:17 | obj1 | $@ flows to a logging call. | passwords.go:37:13:37:13 | x | Sensitive data returned by an access to password |
-| passwords.go:44:14:44:17 | obj2 | passwords.go:42:6:42:13 | password : string | passwords.go:44:14:44:17 | obj2 | $@ flows to a logging call. | passwords.go:42:6:42:13 | password | Sensitive data returned by an access to password |
-| passwords.go:47:14:47:17 | obj3 | passwords.go:48:11:48:18 | password : string | passwords.go:47:14:47:17 | obj3 | $@ flows to a logging call. | passwords.go:48:11:48:18 | password | Sensitive data returned by an access to password |
+| passwords.go:34:14:34:35 | ...+... | passwords.go:34:28:34:35 | password | passwords.go:34:14:34:35 | ...+... | $@ flows to a logging call. | passwords.go:34:28:34:35 | password | Sensitive data returned by an access to password |
+| passwords.go:39:14:39:17 | obj1 | passwords.go:37:13:37:13 | x | passwords.go:39:14:39:17 | obj1 | $@ flows to a logging call. | passwords.go:37:13:37:13 | x | Sensitive data returned by an access to password |
+| passwords.go:44:14:44:17 | obj2 | passwords.go:42:6:42:13 | password | passwords.go:44:14:44:17 | obj2 | $@ flows to a logging call. | passwords.go:42:6:42:13 | password | Sensitive data returned by an access to password |
+| passwords.go:47:14:47:17 | obj3 | passwords.go:48:11:48:18 | password | passwords.go:47:14:47:17 | obj3 | $@ flows to a logging call. | passwords.go:48:11:48:18 | password | Sensitive data returned by an access to password |
 | passwords.go:51:14:51:27 | fixed_password | passwords.go:51:14:51:27 | fixed_password | passwords.go:51:14:51:27 | fixed_password | $@ flows to a logging call. | passwords.go:51:14:51:27 | fixed_password | Sensitive data returned by an access to fixed_password |
-| passwords.go:88:14:88:26 | utilityObject | passwords.go:86:16:86:36 | call to make : map type | passwords.go:88:14:88:26 | utilityObject | $@ flows to a logging call. | passwords.go:86:16:86:36 | call to make | Sensitive data returned by an access to passwordSet |
-| passwords.go:91:23:91:28 | secret | passwords.go:90:12:90:19 | password : string | passwords.go:91:23:91:28 | secret | $@ flows to a logging call. | passwords.go:90:12:90:19 | password | Sensitive data returned by an access to password |
-| passwords.go:101:15:101:40 | ...+... | passwords.go:101:33:101:40 | password : string | passwords.go:101:15:101:40 | ...+... | $@ flows to a logging call. | passwords.go:101:33:101:40 | password | Sensitive data returned by an access to password |
-| passwords.go:107:16:107:41 | ...+... | passwords.go:107:34:107:41 | password : string | passwords.go:107:16:107:41 | ...+... | $@ flows to a logging call. | passwords.go:107:34:107:41 | password | Sensitive data returned by an access to password |
-| passwords.go:112:15:112:40 | ...+... | passwords.go:112:33:112:40 | password : string | passwords.go:112:15:112:40 | ...+... | $@ flows to a logging call. | passwords.go:112:33:112:40 | password | Sensitive data returned by an access to password |
-| passwords.go:116:14:116:45 | ...+... | passwords.go:116:28:116:36 | password1 : stringable | passwords.go:116:14:116:45 | ...+... | $@ flows to a logging call. | passwords.go:116:28:116:36 | password1 | Sensitive data returned by an access to password1 |
-| passwords.go:125:14:125:19 | config | passwords.go:119:13:119:13 | x : string | passwords.go:125:14:125:19 | config | $@ flows to a logging call. | passwords.go:119:13:119:13 | x | Sensitive data returned by an access to password |
-| passwords.go:125:14:125:19 | config | passwords.go:121:13:121:20 | password : string | passwords.go:125:14:125:19 | config | $@ flows to a logging call. | passwords.go:121:13:121:20 | password | Sensitive data returned by an access to password |
-| passwords.go:125:14:125:19 | config | passwords.go:122:13:122:25 | call to getPassword : string | passwords.go:125:14:125:19 | config | $@ flows to a logging call. | passwords.go:122:13:122:25 | call to getPassword | Sensitive data returned by a call to getPassword |
-| passwords.go:126:14:126:21 | selection of x | passwords.go:121:13:121:20 | password : string | passwords.go:126:14:126:21 | selection of x | $@ flows to a logging call. | passwords.go:121:13:121:20 | password | Sensitive data returned by an access to password |
-| passwords.go:127:14:127:21 | selection of y | passwords.go:122:13:122:25 | call to getPassword : string | passwords.go:127:14:127:21 | selection of y | $@ flows to a logging call. | passwords.go:122:13:122:25 | call to getPassword | Sensitive data returned by a call to getPassword |
-| protobuf.go:14:14:14:35 | call to GetDescription | protobuf.go:12:22:12:29 | password : string | protobuf.go:14:14:14:35 | call to GetDescription | $@ flows to a logging call. | protobuf.go:12:22:12:29 | password | Sensitive data returned by an access to password |
+| passwords.go:88:14:88:26 | utilityObject | passwords.go:86:16:86:36 | call to make | passwords.go:88:14:88:26 | utilityObject | $@ flows to a logging call. | passwords.go:86:16:86:36 | call to make | Sensitive data returned by an access to passwordSet |
+| passwords.go:91:23:91:28 | secret | passwords.go:90:12:90:19 | password | passwords.go:91:23:91:28 | secret | $@ flows to a logging call. | passwords.go:90:12:90:19 | password | Sensitive data returned by an access to password |
+| passwords.go:101:15:101:40 | ...+... | passwords.go:101:33:101:40 | password | passwords.go:101:15:101:40 | ...+... | $@ flows to a logging call. | passwords.go:101:33:101:40 | password | Sensitive data returned by an access to password |
+| passwords.go:107:16:107:41 | ...+... | passwords.go:107:34:107:41 | password | passwords.go:107:16:107:41 | ...+... | $@ flows to a logging call. | passwords.go:107:34:107:41 | password | Sensitive data returned by an access to password |
+| passwords.go:112:15:112:40 | ...+... | passwords.go:112:33:112:40 | password | passwords.go:112:15:112:40 | ...+... | $@ flows to a logging call. | passwords.go:112:33:112:40 | password | Sensitive data returned by an access to password |
+| passwords.go:116:14:116:45 | ...+... | passwords.go:116:28:116:36 | password1 | passwords.go:116:14:116:45 | ...+... | $@ flows to a logging call. | passwords.go:116:28:116:36 | password1 | Sensitive data returned by an access to password1 |
+| passwords.go:125:14:125:19 | config | passwords.go:119:13:119:13 | x | passwords.go:125:14:125:19 | config | $@ flows to a logging call. | passwords.go:119:13:119:13 | x | Sensitive data returned by an access to password |
+| passwords.go:125:14:125:19 | config | passwords.go:121:13:121:20 | password | passwords.go:125:14:125:19 | config | $@ flows to a logging call. | passwords.go:121:13:121:20 | password | Sensitive data returned by an access to password |
+| passwords.go:125:14:125:19 | config | passwords.go:122:13:122:25 | call to getPassword | passwords.go:125:14:125:19 | config | $@ flows to a logging call. | passwords.go:122:13:122:25 | call to getPassword | Sensitive data returned by a call to getPassword |
+| passwords.go:126:14:126:21 | selection of x | passwords.go:121:13:121:20 | password | passwords.go:126:14:126:21 | selection of x | $@ flows to a logging call. | passwords.go:121:13:121:20 | password | Sensitive data returned by an access to password |
+| passwords.go:127:14:127:21 | selection of y | passwords.go:122:13:122:25 | call to getPassword | passwords.go:127:14:127:21 | selection of y | $@ flows to a logging call. | passwords.go:122:13:122:25 | call to getPassword | Sensitive data returned by a call to getPassword |
+| protobuf.go:14:14:14:35 | call to GetDescription | protobuf.go:12:22:12:29 | password | protobuf.go:14:14:14:35 | call to GetDescription | $@ flows to a logging call. | protobuf.go:12:22:12:29 | password | Sensitive data returned by an access to password |
diff --git a/go/ql/test/query-tests/Security/CWE-322/InsecureHostKeyCallback.expected b/go/ql/test/query-tests/Security/CWE-322/InsecureHostKeyCallback.expected
index e7fbbc39fb2..2376ab7a7cf 100644
--- a/go/ql/test/query-tests/Security/CWE-322/InsecureHostKeyCallback.expected
+++ b/go/ql/test/query-tests/Security/CWE-322/InsecureHostKeyCallback.expected
@@ -1,50 +1,48 @@
 edges
-| InsecureHostKeyCallbackExample.go:16:4:18:4 | function literal : signature type | InsecureHostKeyCallbackExample.go:15:20:18:5 | type conversion |
-| InsecureHostKeyCallbackExample.go:31:14:34:4 | type conversion : signature type | InsecureHostKeyCallbackExample.go:39:20:39:27 | callback |
-| InsecureHostKeyCallbackExample.go:32:3:34:3 | function literal : signature type | InsecureHostKeyCallbackExample.go:31:14:34:4 | type conversion : signature type |
-| InsecureHostKeyCallbackExample.go:45:3:47:3 | function literal : signature type | InsecureHostKeyCallbackExample.go:52:20:52:48 | type conversion |
-| InsecureHostKeyCallbackExample.go:58:39:58:46 | definition of callback : HostKeyCallback | InsecureHostKeyCallbackExample.go:62:20:62:27 | callback |
-| InsecureHostKeyCallbackExample.go:58:39:58:46 | definition of callback : signature type | InsecureHostKeyCallbackExample.go:62:20:62:27 | callback |
-| InsecureHostKeyCallbackExample.go:68:48:68:55 | definition of callback : signature type | InsecureHostKeyCallbackExample.go:78:28:78:35 | callback |
-| InsecureHostKeyCallbackExample.go:94:3:94:43 | ... := ...[0] : HostKeyCallback | InsecureHostKeyCallbackExample.go:95:28:95:35 | callback |
-| InsecureHostKeyCallbackExample.go:102:22:105:4 | type conversion : signature type | InsecureHostKeyCallbackExample.go:107:35:107:50 | insecureCallback : signature type |
-| InsecureHostKeyCallbackExample.go:103:3:105:3 | function literal : signature type | InsecureHostKeyCallbackExample.go:102:22:105:4 | type conversion : signature type |
-| InsecureHostKeyCallbackExample.go:107:35:107:50 | insecureCallback : signature type | InsecureHostKeyCallbackExample.go:58:39:58:46 | definition of callback : signature type |
-| InsecureHostKeyCallbackExample.go:109:31:115:4 | type conversion : signature type | InsecureHostKeyCallbackExample.go:117:35:117:59 | potentiallySecureCallback : signature type |
-| InsecureHostKeyCallbackExample.go:109:31:115:4 | type conversion : signature type | InsecureHostKeyCallbackExample.go:120:44:120:68 | potentiallySecureCallback : signature type |
-| InsecureHostKeyCallbackExample.go:110:3:115:3 | function literal : signature type | InsecureHostKeyCallbackExample.go:109:31:115:4 | type conversion : signature type |
-| InsecureHostKeyCallbackExample.go:117:35:117:59 | potentiallySecureCallback : signature type | InsecureHostKeyCallbackExample.go:58:39:58:46 | definition of callback : signature type |
-| InsecureHostKeyCallbackExample.go:118:35:118:61 | call to InsecureIgnoreHostKey : HostKeyCallback | InsecureHostKeyCallbackExample.go:58:39:58:46 | definition of callback : HostKeyCallback |
-| InsecureHostKeyCallbackExample.go:120:44:120:68 | potentiallySecureCallback : signature type | InsecureHostKeyCallbackExample.go:68:48:68:55 | definition of callback : signature type |
+| InsecureHostKeyCallbackExample.go:16:4:18:4 | function literal | InsecureHostKeyCallbackExample.go:15:20:18:5 | type conversion |
+| InsecureHostKeyCallbackExample.go:31:14:34:4 | type conversion | InsecureHostKeyCallbackExample.go:39:20:39:27 | callback |
+| InsecureHostKeyCallbackExample.go:32:3:34:3 | function literal | InsecureHostKeyCallbackExample.go:31:14:34:4 | type conversion |
+| InsecureHostKeyCallbackExample.go:45:3:47:3 | function literal | InsecureHostKeyCallbackExample.go:52:20:52:48 | type conversion |
+| InsecureHostKeyCallbackExample.go:58:39:58:46 | definition of callback | InsecureHostKeyCallbackExample.go:62:20:62:27 | callback |
+| InsecureHostKeyCallbackExample.go:68:48:68:55 | definition of callback | InsecureHostKeyCallbackExample.go:78:28:78:35 | callback |
+| InsecureHostKeyCallbackExample.go:94:3:94:43 | ... := ...[0] | InsecureHostKeyCallbackExample.go:95:28:95:35 | callback |
+| InsecureHostKeyCallbackExample.go:102:22:105:4 | type conversion | InsecureHostKeyCallbackExample.go:107:35:107:50 | insecureCallback |
+| InsecureHostKeyCallbackExample.go:103:3:105:3 | function literal | InsecureHostKeyCallbackExample.go:102:22:105:4 | type conversion |
+| InsecureHostKeyCallbackExample.go:107:35:107:50 | insecureCallback | InsecureHostKeyCallbackExample.go:58:39:58:46 | definition of callback |
+| InsecureHostKeyCallbackExample.go:109:31:115:4 | type conversion | InsecureHostKeyCallbackExample.go:117:35:117:59 | potentiallySecureCallback |
+| InsecureHostKeyCallbackExample.go:109:31:115:4 | type conversion | InsecureHostKeyCallbackExample.go:120:44:120:68 | potentiallySecureCallback |
+| InsecureHostKeyCallbackExample.go:110:3:115:3 | function literal | InsecureHostKeyCallbackExample.go:109:31:115:4 | type conversion |
+| InsecureHostKeyCallbackExample.go:117:35:117:59 | potentiallySecureCallback | InsecureHostKeyCallbackExample.go:58:39:58:46 | definition of callback |
+| InsecureHostKeyCallbackExample.go:118:35:118:61 | call to InsecureIgnoreHostKey | InsecureHostKeyCallbackExample.go:58:39:58:46 | definition of callback |
+| InsecureHostKeyCallbackExample.go:120:44:120:68 | potentiallySecureCallback | InsecureHostKeyCallbackExample.go:68:48:68:55 | definition of callback |
 nodes
 | InsecureHostKeyCallbackExample.go:15:20:18:5 | type conversion | semmle.label | type conversion |
-| InsecureHostKeyCallbackExample.go:16:4:18:4 | function literal : signature type | semmle.label | function literal : signature type |
+| InsecureHostKeyCallbackExample.go:16:4:18:4 | function literal | semmle.label | function literal |
 | InsecureHostKeyCallbackExample.go:26:20:26:46 | call to InsecureIgnoreHostKey | semmle.label | call to InsecureIgnoreHostKey |
-| InsecureHostKeyCallbackExample.go:31:14:34:4 | type conversion : signature type | semmle.label | type conversion : signature type |
-| InsecureHostKeyCallbackExample.go:32:3:34:3 | function literal : signature type | semmle.label | function literal : signature type |
+| InsecureHostKeyCallbackExample.go:31:14:34:4 | type conversion | semmle.label | type conversion |
+| InsecureHostKeyCallbackExample.go:32:3:34:3 | function literal | semmle.label | function literal |
 | InsecureHostKeyCallbackExample.go:39:20:39:27 | callback | semmle.label | callback |
-| InsecureHostKeyCallbackExample.go:45:3:47:3 | function literal : signature type | semmle.label | function literal : signature type |
+| InsecureHostKeyCallbackExample.go:45:3:47:3 | function literal | semmle.label | function literal |
 | InsecureHostKeyCallbackExample.go:52:20:52:48 | type conversion | semmle.label | type conversion |
-| InsecureHostKeyCallbackExample.go:58:39:58:46 | definition of callback : HostKeyCallback | semmle.label | definition of callback : HostKeyCallback |
-| InsecureHostKeyCallbackExample.go:58:39:58:46 | definition of callback : signature type | semmle.label | definition of callback : signature type |
+| InsecureHostKeyCallbackExample.go:58:39:58:46 | definition of callback | semmle.label | definition of callback |
 | InsecureHostKeyCallbackExample.go:62:20:62:27 | callback | semmle.label | callback |
-| InsecureHostKeyCallbackExample.go:68:48:68:55 | definition of callback : signature type | semmle.label | definition of callback : signature type |
+| InsecureHostKeyCallbackExample.go:68:48:68:55 | definition of callback | semmle.label | definition of callback |
 | InsecureHostKeyCallbackExample.go:76:28:76:54 | call to InsecureIgnoreHostKey | semmle.label | call to InsecureIgnoreHostKey |
 | InsecureHostKeyCallbackExample.go:78:28:78:35 | callback | semmle.label | callback |
 | InsecureHostKeyCallbackExample.go:92:28:92:54 | call to InsecureIgnoreHostKey | semmle.label | call to InsecureIgnoreHostKey |
-| InsecureHostKeyCallbackExample.go:94:3:94:43 | ... := ...[0] : HostKeyCallback | semmle.label | ... := ...[0] : HostKeyCallback |
+| InsecureHostKeyCallbackExample.go:94:3:94:43 | ... := ...[0] | semmle.label | ... := ...[0] |
 | InsecureHostKeyCallbackExample.go:95:28:95:35 | callback | semmle.label | callback |
-| InsecureHostKeyCallbackExample.go:102:22:105:4 | type conversion : signature type | semmle.label | type conversion : signature type |
-| InsecureHostKeyCallbackExample.go:103:3:105:3 | function literal : signature type | semmle.label | function literal : signature type |
-| InsecureHostKeyCallbackExample.go:107:35:107:50 | insecureCallback : signature type | semmle.label | insecureCallback : signature type |
-| InsecureHostKeyCallbackExample.go:109:31:115:4 | type conversion : signature type | semmle.label | type conversion : signature type |
-| InsecureHostKeyCallbackExample.go:110:3:115:3 | function literal : signature type | semmle.label | function literal : signature type |
-| InsecureHostKeyCallbackExample.go:117:35:117:59 | potentiallySecureCallback : signature type | semmle.label | potentiallySecureCallback : signature type |
-| InsecureHostKeyCallbackExample.go:118:35:118:61 | call to InsecureIgnoreHostKey : HostKeyCallback | semmle.label | call to InsecureIgnoreHostKey : HostKeyCallback |
-| InsecureHostKeyCallbackExample.go:120:44:120:68 | potentiallySecureCallback : signature type | semmle.label | potentiallySecureCallback : signature type |
+| InsecureHostKeyCallbackExample.go:102:22:105:4 | type conversion | semmle.label | type conversion |
+| InsecureHostKeyCallbackExample.go:103:3:105:3 | function literal | semmle.label | function literal |
+| InsecureHostKeyCallbackExample.go:107:35:107:50 | insecureCallback | semmle.label | insecureCallback |
+| InsecureHostKeyCallbackExample.go:109:31:115:4 | type conversion | semmle.label | type conversion |
+| InsecureHostKeyCallbackExample.go:110:3:115:3 | function literal | semmle.label | function literal |
+| InsecureHostKeyCallbackExample.go:117:35:117:59 | potentiallySecureCallback | semmle.label | potentiallySecureCallback |
+| InsecureHostKeyCallbackExample.go:118:35:118:61 | call to InsecureIgnoreHostKey | semmle.label | call to InsecureIgnoreHostKey |
+| InsecureHostKeyCallbackExample.go:120:44:120:68 | potentiallySecureCallback | semmle.label | potentiallySecureCallback |
 subpaths
 #select
-| InsecureHostKeyCallbackExample.go:15:20:18:5 | type conversion | InsecureHostKeyCallbackExample.go:16:4:18:4 | function literal : signature type | InsecureHostKeyCallbackExample.go:15:20:18:5 | type conversion | Configuring SSH ClientConfig with insecure HostKeyCallback implementation from $@. | InsecureHostKeyCallbackExample.go:16:4:18:4 | function literal | this source |
+| InsecureHostKeyCallbackExample.go:15:20:18:5 | type conversion | InsecureHostKeyCallbackExample.go:16:4:18:4 | function literal | InsecureHostKeyCallbackExample.go:15:20:18:5 | type conversion | Configuring SSH ClientConfig with insecure HostKeyCallback implementation from $@. | InsecureHostKeyCallbackExample.go:16:4:18:4 | function literal | this source |
 | InsecureHostKeyCallbackExample.go:26:20:26:46 | call to InsecureIgnoreHostKey | InsecureHostKeyCallbackExample.go:26:20:26:46 | call to InsecureIgnoreHostKey | InsecureHostKeyCallbackExample.go:26:20:26:46 | call to InsecureIgnoreHostKey | Configuring SSH ClientConfig with insecure HostKeyCallback implementation from $@. | InsecureHostKeyCallbackExample.go:26:20:26:46 | call to InsecureIgnoreHostKey | this source |
-| InsecureHostKeyCallbackExample.go:39:20:39:27 | callback | InsecureHostKeyCallbackExample.go:32:3:34:3 | function literal : signature type | InsecureHostKeyCallbackExample.go:39:20:39:27 | callback | Configuring SSH ClientConfig with insecure HostKeyCallback implementation from $@. | InsecureHostKeyCallbackExample.go:32:3:34:3 | function literal | this source |
-| InsecureHostKeyCallbackExample.go:52:20:52:48 | type conversion | InsecureHostKeyCallbackExample.go:45:3:47:3 | function literal : signature type | InsecureHostKeyCallbackExample.go:52:20:52:48 | type conversion | Configuring SSH ClientConfig with insecure HostKeyCallback implementation from $@. | InsecureHostKeyCallbackExample.go:45:3:47:3 | function literal | this source |
+| InsecureHostKeyCallbackExample.go:39:20:39:27 | callback | InsecureHostKeyCallbackExample.go:32:3:34:3 | function literal | InsecureHostKeyCallbackExample.go:39:20:39:27 | callback | Configuring SSH ClientConfig with insecure HostKeyCallback implementation from $@. | InsecureHostKeyCallbackExample.go:32:3:34:3 | function literal | this source |
+| InsecureHostKeyCallbackExample.go:52:20:52:48 | type conversion | InsecureHostKeyCallbackExample.go:45:3:47:3 | function literal | InsecureHostKeyCallbackExample.go:52:20:52:48 | type conversion | Configuring SSH ClientConfig with insecure HostKeyCallback implementation from $@. | InsecureHostKeyCallbackExample.go:45:3:47:3 | function literal | this source |
diff --git a/go/ql/test/query-tests/Security/CWE-326/InsufficientKeySize.expected b/go/ql/test/query-tests/Security/CWE-326/InsufficientKeySize.expected
index fb9488b7165..fb1058af01c 100644
--- a/go/ql/test/query-tests/Security/CWE-326/InsufficientKeySize.expected
+++ b/go/ql/test/query-tests/Security/CWE-326/InsufficientKeySize.expected
@@ -1,28 +1,28 @@
 edges
-| InsufficientKeySize.go:13:10:13:13 | 1024 : int | InsufficientKeySize.go:14:31:14:34 | size |
-| InsufficientKeySize.go:18:7:18:10 | 1024 : int | InsufficientKeySize.go:25:11:25:14 | definition of size : int |
-| InsufficientKeySize.go:25:11:25:14 | definition of size : int | InsufficientKeySize.go:26:31:26:34 | size |
-| InsufficientKeySize.go:30:13:30:16 | 1024 : int | InsufficientKeySize.go:32:32:32:38 | keyBits |
-| InsufficientKeySize.go:44:13:44:16 | 1024 : int | InsufficientKeySize.go:47:32:47:38 | keyBits |
-| InsufficientKeySize.go:61:21:61:24 | 1024 : int | InsufficientKeySize.go:67:31:67:37 | keyBits |
+| InsufficientKeySize.go:13:10:13:13 | 1024 | InsufficientKeySize.go:14:31:14:34 | size |
+| InsufficientKeySize.go:18:7:18:10 | 1024 | InsufficientKeySize.go:25:11:25:14 | definition of size |
+| InsufficientKeySize.go:25:11:25:14 | definition of size | InsufficientKeySize.go:26:31:26:34 | size |
+| InsufficientKeySize.go:30:13:30:16 | 1024 | InsufficientKeySize.go:32:32:32:38 | keyBits |
+| InsufficientKeySize.go:44:13:44:16 | 1024 | InsufficientKeySize.go:47:32:47:38 | keyBits |
+| InsufficientKeySize.go:61:21:61:24 | 1024 | InsufficientKeySize.go:67:31:67:37 | keyBits |
 nodes
 | InsufficientKeySize.go:9:31:9:34 | 1024 | semmle.label | 1024 |
-| InsufficientKeySize.go:13:10:13:13 | 1024 : int | semmle.label | 1024 : int |
+| InsufficientKeySize.go:13:10:13:13 | 1024 | semmle.label | 1024 |
 | InsufficientKeySize.go:14:31:14:34 | size | semmle.label | size |
-| InsufficientKeySize.go:18:7:18:10 | 1024 : int | semmle.label | 1024 : int |
-| InsufficientKeySize.go:25:11:25:14 | definition of size : int | semmle.label | definition of size : int |
+| InsufficientKeySize.go:18:7:18:10 | 1024 | semmle.label | 1024 |
+| InsufficientKeySize.go:25:11:25:14 | definition of size | semmle.label | definition of size |
 | InsufficientKeySize.go:26:31:26:34 | size | semmle.label | size |
-| InsufficientKeySize.go:30:13:30:16 | 1024 : int | semmle.label | 1024 : int |
+| InsufficientKeySize.go:30:13:30:16 | 1024 | semmle.label | 1024 |
 | InsufficientKeySize.go:32:32:32:38 | keyBits | semmle.label | keyBits |
-| InsufficientKeySize.go:44:13:44:16 | 1024 : int | semmle.label | 1024 : int |
+| InsufficientKeySize.go:44:13:44:16 | 1024 | semmle.label | 1024 |
 | InsufficientKeySize.go:47:32:47:38 | keyBits | semmle.label | keyBits |
-| InsufficientKeySize.go:61:21:61:24 | 1024 : int | semmle.label | 1024 : int |
+| InsufficientKeySize.go:61:21:61:24 | 1024 | semmle.label | 1024 |
 | InsufficientKeySize.go:67:31:67:37 | keyBits | semmle.label | keyBits |
 subpaths
 #select
 | InsufficientKeySize.go:9:31:9:34 | 1024 | InsufficientKeySize.go:9:31:9:34 | 1024 | InsufficientKeySize.go:9:31:9:34 | 1024 | The size of this RSA key should be at least 2048 bits. |
-| InsufficientKeySize.go:14:31:14:34 | size | InsufficientKeySize.go:13:10:13:13 | 1024 : int | InsufficientKeySize.go:14:31:14:34 | size | The size of this RSA key should be at least 2048 bits. |
-| InsufficientKeySize.go:26:31:26:34 | size | InsufficientKeySize.go:18:7:18:10 | 1024 : int | InsufficientKeySize.go:26:31:26:34 | size | The size of this RSA key should be at least 2048 bits. |
-| InsufficientKeySize.go:32:32:32:38 | keyBits | InsufficientKeySize.go:30:13:30:16 | 1024 : int | InsufficientKeySize.go:32:32:32:38 | keyBits | The size of this RSA key should be at least 2048 bits. |
-| InsufficientKeySize.go:47:32:47:38 | keyBits | InsufficientKeySize.go:44:13:44:16 | 1024 : int | InsufficientKeySize.go:47:32:47:38 | keyBits | The size of this RSA key should be at least 2048 bits. |
-| InsufficientKeySize.go:67:31:67:37 | keyBits | InsufficientKeySize.go:61:21:61:24 | 1024 : int | InsufficientKeySize.go:67:31:67:37 | keyBits | The size of this RSA key should be at least 2048 bits. |
+| InsufficientKeySize.go:14:31:14:34 | size | InsufficientKeySize.go:13:10:13:13 | 1024 | InsufficientKeySize.go:14:31:14:34 | size | The size of this RSA key should be at least 2048 bits. |
+| InsufficientKeySize.go:26:31:26:34 | size | InsufficientKeySize.go:18:7:18:10 | 1024 | InsufficientKeySize.go:26:31:26:34 | size | The size of this RSA key should be at least 2048 bits. |
+| InsufficientKeySize.go:32:32:32:38 | keyBits | InsufficientKeySize.go:30:13:30:16 | 1024 | InsufficientKeySize.go:32:32:32:38 | keyBits | The size of this RSA key should be at least 2048 bits. |
+| InsufficientKeySize.go:47:32:47:38 | keyBits | InsufficientKeySize.go:44:13:44:16 | 1024 | InsufficientKeySize.go:47:32:47:38 | keyBits | The size of this RSA key should be at least 2048 bits. |
+| InsufficientKeySize.go:67:31:67:37 | keyBits | InsufficientKeySize.go:61:21:61:24 | 1024 | InsufficientKeySize.go:67:31:67:37 | keyBits | The size of this RSA key should be at least 2048 bits. |
diff --git a/go/ql/test/query-tests/Security/CWE-327/UnsafeTLS.expected b/go/ql/test/query-tests/Security/CWE-327/UnsafeTLS.expected
index 78bb9148a09..ba37534511a 100644
--- a/go/ql/test/query-tests/Security/CWE-327/UnsafeTLS.expected
+++ b/go/ql/test/query-tests/Security/CWE-327/UnsafeTLS.expected
@@ -1,35 +1,35 @@
 edges
-| UnsafeTLS.go:131:14:131:29 | selection of VersionTLS13 : uint16 | UnsafeTLS.go:136:16:136:22 | version |
-| UnsafeTLS.go:133:14:133:29 | selection of VersionSSL30 : uint16 | UnsafeTLS.go:136:16:136:22 | version |
-| UnsafeTLS.go:260:5:260:32 | selection of TLS_RSA_WITH_RC4_128_SHA : uint16 | UnsafeTLS.go:259:18:266:4 | slice literal |
-| UnsafeTLS.go:261:5:261:39 | selection of TLS_RSA_WITH_AES_128_CBC_SHA256 : uint16 | UnsafeTLS.go:259:18:266:4 | slice literal |
-| UnsafeTLS.go:262:5:262:40 | selection of TLS_ECDHE_ECDSA_WITH_RC4_128_SHA : uint16 | UnsafeTLS.go:259:18:266:4 | slice literal |
-| UnsafeTLS.go:263:5:263:38 | selection of TLS_ECDHE_RSA_WITH_RC4_128_SHA : uint16 | UnsafeTLS.go:259:18:266:4 | slice literal |
-| UnsafeTLS.go:264:5:264:47 | selection of TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 : uint16 | UnsafeTLS.go:259:18:266:4 | slice literal |
-| UnsafeTLS.go:265:5:265:45 | selection of TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256 : uint16 | UnsafeTLS.go:259:18:266:4 | slice literal |
-| UnsafeTLS.go:273:5:273:32 | selection of TLS_RSA_WITH_RC4_128_SHA : uint16 | UnsafeTLS.go:272:18:274:4 | slice literal |
-| UnsafeTLS.go:281:5:281:39 | selection of TLS_RSA_WITH_AES_128_CBC_SHA256 : uint16 | UnsafeTLS.go:280:18:282:4 | slice literal |
-| UnsafeTLS.go:289:5:289:40 | selection of TLS_ECDHE_ECDSA_WITH_RC4_128_SHA : uint16 | UnsafeTLS.go:288:18:290:4 | slice literal |
-| UnsafeTLS.go:297:5:297:38 | selection of TLS_ECDHE_RSA_WITH_RC4_128_SHA : uint16 | UnsafeTLS.go:296:18:298:4 | slice literal |
-| UnsafeTLS.go:305:5:305:47 | selection of TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 : uint16 | UnsafeTLS.go:304:18:306:4 | slice literal |
-| UnsafeTLS.go:313:5:313:45 | selection of TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256 : uint16 | UnsafeTLS.go:312:18:314:4 | slice literal |
-| UnsafeTLS.go:329:53:329:93 | selection of TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256 : uint16 | UnsafeTLS.go:329:25:329:94 | call to append |
-| UnsafeTLS.go:334:13:334:38 | call to InsecureCipherSuites : slice type | UnsafeTLS.go:336:26:336:58 | call to append |
-| UnsafeTLS.go:342:13:342:38 | call to InsecureCipherSuites : slice type | UnsafeTLS.go:346:25:346:36 | cipherSuites |
-| UnsafeTLS.go:351:13:351:38 | call to InsecureCipherSuites : slice type | UnsafeTLS.go:355:25:355:36 | cipherSuites |
-| UnsafeTLS.go:363:5:363:47 | selection of TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 : uint16 | UnsafeTLS.go:362:18:364:4 | slice literal |
-| UnsafeTLS.go:371:5:371:47 | selection of TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 : uint16 | UnsafeTLS.go:370:18:372:4 | slice literal |
-| UnsafeTLS.go:379:5:379:47 | selection of TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 : uint16 | UnsafeTLS.go:378:18:380:4 | slice literal |
-| UnsafeTLS.go:387:5:387:47 | selection of TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 : uint16 | UnsafeTLS.go:386:18:388:4 | slice literal |
-| UnsafeTLS.go:395:5:395:47 | selection of TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 : uint16 | UnsafeTLS.go:394:18:396:4 | slice literal |
-| UnsafeTLS.go:403:4:403:46 | selection of TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 : uint16 | UnsafeTLS.go:402:33:404:3 | slice literal |
-| UnsafeTLS.go:410:4:410:46 | selection of TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 : uint16 | UnsafeTLS.go:409:31:411:3 | slice literal |
-| UnsafeTLS.go:419:6:419:48 | selection of TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 : uint16 | UnsafeTLS.go:418:19:420:5 | slice literal |
-| UnsafeTLS.go:426:6:426:48 | selection of TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 : uint16 | UnsafeTLS.go:425:19:427:5 | slice literal |
-| UnsafeTLS.go:433:6:433:48 | selection of TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 : uint16 | UnsafeTLS.go:432:19:434:5 | slice literal |
-| UnsafeTLS.go:443:6:443:48 | selection of TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 : uint16 | UnsafeTLS.go:442:19:444:5 | slice literal |
-| UnsafeTLS.go:450:6:450:48 | selection of TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 : uint16 | UnsafeTLS.go:449:19:451:5 | slice literal |
-| UnsafeTLS.go:457:6:457:48 | selection of TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 : uint16 | UnsafeTLS.go:456:19:458:5 | slice literal |
+| UnsafeTLS.go:131:14:131:29 | selection of VersionTLS13 | UnsafeTLS.go:136:16:136:22 | version |
+| UnsafeTLS.go:133:14:133:29 | selection of VersionSSL30 | UnsafeTLS.go:136:16:136:22 | version |
+| UnsafeTLS.go:260:5:260:32 | selection of TLS_RSA_WITH_RC4_128_SHA | UnsafeTLS.go:259:18:266:4 | slice literal |
+| UnsafeTLS.go:261:5:261:39 | selection of TLS_RSA_WITH_AES_128_CBC_SHA256 | UnsafeTLS.go:259:18:266:4 | slice literal |
+| UnsafeTLS.go:262:5:262:40 | selection of TLS_ECDHE_ECDSA_WITH_RC4_128_SHA | UnsafeTLS.go:259:18:266:4 | slice literal |
+| UnsafeTLS.go:263:5:263:38 | selection of TLS_ECDHE_RSA_WITH_RC4_128_SHA | UnsafeTLS.go:259:18:266:4 | slice literal |
+| UnsafeTLS.go:264:5:264:47 | selection of TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 | UnsafeTLS.go:259:18:266:4 | slice literal |
+| UnsafeTLS.go:265:5:265:45 | selection of TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256 | UnsafeTLS.go:259:18:266:4 | slice literal |
+| UnsafeTLS.go:273:5:273:32 | selection of TLS_RSA_WITH_RC4_128_SHA | UnsafeTLS.go:272:18:274:4 | slice literal |
+| UnsafeTLS.go:281:5:281:39 | selection of TLS_RSA_WITH_AES_128_CBC_SHA256 | UnsafeTLS.go:280:18:282:4 | slice literal |
+| UnsafeTLS.go:289:5:289:40 | selection of TLS_ECDHE_ECDSA_WITH_RC4_128_SHA | UnsafeTLS.go:288:18:290:4 | slice literal |
+| UnsafeTLS.go:297:5:297:38 | selection of TLS_ECDHE_RSA_WITH_RC4_128_SHA | UnsafeTLS.go:296:18:298:4 | slice literal |
+| UnsafeTLS.go:305:5:305:47 | selection of TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 | UnsafeTLS.go:304:18:306:4 | slice literal |
+| UnsafeTLS.go:313:5:313:45 | selection of TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256 | UnsafeTLS.go:312:18:314:4 | slice literal |
+| UnsafeTLS.go:329:53:329:93 | selection of TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256 | UnsafeTLS.go:329:25:329:94 | call to append |
+| UnsafeTLS.go:334:13:334:38 | call to InsecureCipherSuites | UnsafeTLS.go:336:26:336:58 | call to append |
+| UnsafeTLS.go:342:13:342:38 | call to InsecureCipherSuites | UnsafeTLS.go:346:25:346:36 | cipherSuites |
+| UnsafeTLS.go:351:13:351:38 | call to InsecureCipherSuites | UnsafeTLS.go:355:25:355:36 | cipherSuites |
+| UnsafeTLS.go:363:5:363:47 | selection of TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 | UnsafeTLS.go:362:18:364:4 | slice literal |
+| UnsafeTLS.go:371:5:371:47 | selection of TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 | UnsafeTLS.go:370:18:372:4 | slice literal |
+| UnsafeTLS.go:379:5:379:47 | selection of TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 | UnsafeTLS.go:378:18:380:4 | slice literal |
+| UnsafeTLS.go:387:5:387:47 | selection of TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 | UnsafeTLS.go:386:18:388:4 | slice literal |
+| UnsafeTLS.go:395:5:395:47 | selection of TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 | UnsafeTLS.go:394:18:396:4 | slice literal |
+| UnsafeTLS.go:403:4:403:46 | selection of TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 | UnsafeTLS.go:402:33:404:3 | slice literal |
+| UnsafeTLS.go:410:4:410:46 | selection of TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 | UnsafeTLS.go:409:31:411:3 | slice literal |
+| UnsafeTLS.go:419:6:419:48 | selection of TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 | UnsafeTLS.go:418:19:420:5 | slice literal |
+| UnsafeTLS.go:426:6:426:48 | selection of TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 | UnsafeTLS.go:425:19:427:5 | slice literal |
+| UnsafeTLS.go:433:6:433:48 | selection of TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 | UnsafeTLS.go:432:19:434:5 | slice literal |
+| UnsafeTLS.go:443:6:443:48 | selection of TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 | UnsafeTLS.go:442:19:444:5 | slice literal |
+| UnsafeTLS.go:450:6:450:48 | selection of TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 | UnsafeTLS.go:449:19:451:5 | slice literal |
+| UnsafeTLS.go:457:6:457:48 | selection of TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 | UnsafeTLS.go:456:19:458:5 | slice literal |
 nodes
 | UnsafeTLS.go:21:23:21:23 | 0 | semmle.label | 0 |
 | UnsafeTLS.go:25:23:25:23 | 0 | semmle.label | 0 |
@@ -50,8 +50,8 @@ nodes
 | UnsafeTLS.go:111:16:111:16 | 0 | semmle.label | 0 |
 | UnsafeTLS.go:117:16:117:16 | 0 | semmle.label | 0 |
 | UnsafeTLS.go:123:16:123:16 | 0 | semmle.label | 0 |
-| UnsafeTLS.go:131:14:131:29 | selection of VersionTLS13 : uint16 | semmle.label | selection of VersionTLS13 : uint16 |
-| UnsafeTLS.go:133:14:133:29 | selection of VersionSSL30 : uint16 | semmle.label | selection of VersionSSL30 : uint16 |
+| UnsafeTLS.go:131:14:131:29 | selection of VersionTLS13 | semmle.label | selection of VersionTLS13 |
+| UnsafeTLS.go:133:14:133:29 | selection of VersionSSL30 | semmle.label | selection of VersionSSL30 |
 | UnsafeTLS.go:136:16:136:22 | version | semmle.label | version |
 | UnsafeTLS.go:144:24:144:39 | selection of VersionTLS13 | semmle.label | selection of VersionTLS13 |
 | UnsafeTLS.go:146:24:146:39 | selection of VersionSSL30 | semmle.label | selection of VersionSSL30 |
@@ -72,58 +72,58 @@ nodes
 | UnsafeTLS.go:243:16:243:16 | 0 | semmle.label | 0 |
 | UnsafeTLS.go:250:16:250:16 | 0 | semmle.label | 0 |
 | UnsafeTLS.go:259:18:266:4 | slice literal | semmle.label | slice literal |
-| UnsafeTLS.go:260:5:260:32 | selection of TLS_RSA_WITH_RC4_128_SHA : uint16 | semmle.label | selection of TLS_RSA_WITH_RC4_128_SHA : uint16 |
-| UnsafeTLS.go:261:5:261:39 | selection of TLS_RSA_WITH_AES_128_CBC_SHA256 : uint16 | semmle.label | selection of TLS_RSA_WITH_AES_128_CBC_SHA256 : uint16 |
-| UnsafeTLS.go:262:5:262:40 | selection of TLS_ECDHE_ECDSA_WITH_RC4_128_SHA : uint16 | semmle.label | selection of TLS_ECDHE_ECDSA_WITH_RC4_128_SHA : uint16 |
-| UnsafeTLS.go:263:5:263:38 | selection of TLS_ECDHE_RSA_WITH_RC4_128_SHA : uint16 | semmle.label | selection of TLS_ECDHE_RSA_WITH_RC4_128_SHA : uint16 |
-| UnsafeTLS.go:264:5:264:47 | selection of TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 : uint16 | semmle.label | selection of TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 : uint16 |
-| UnsafeTLS.go:265:5:265:45 | selection of TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256 : uint16 | semmle.label | selection of TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256 : uint16 |
+| UnsafeTLS.go:260:5:260:32 | selection of TLS_RSA_WITH_RC4_128_SHA | semmle.label | selection of TLS_RSA_WITH_RC4_128_SHA |
+| UnsafeTLS.go:261:5:261:39 | selection of TLS_RSA_WITH_AES_128_CBC_SHA256 | semmle.label | selection of TLS_RSA_WITH_AES_128_CBC_SHA256 |
+| UnsafeTLS.go:262:5:262:40 | selection of TLS_ECDHE_ECDSA_WITH_RC4_128_SHA | semmle.label | selection of TLS_ECDHE_ECDSA_WITH_RC4_128_SHA |
+| UnsafeTLS.go:263:5:263:38 | selection of TLS_ECDHE_RSA_WITH_RC4_128_SHA | semmle.label | selection of TLS_ECDHE_RSA_WITH_RC4_128_SHA |
+| UnsafeTLS.go:264:5:264:47 | selection of TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 | semmle.label | selection of TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 |
+| UnsafeTLS.go:265:5:265:45 | selection of TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256 | semmle.label | selection of TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256 |
 | UnsafeTLS.go:272:18:274:4 | slice literal | semmle.label | slice literal |
-| UnsafeTLS.go:273:5:273:32 | selection of TLS_RSA_WITH_RC4_128_SHA : uint16 | semmle.label | selection of TLS_RSA_WITH_RC4_128_SHA : uint16 |
+| UnsafeTLS.go:273:5:273:32 | selection of TLS_RSA_WITH_RC4_128_SHA | semmle.label | selection of TLS_RSA_WITH_RC4_128_SHA |
 | UnsafeTLS.go:280:18:282:4 | slice literal | semmle.label | slice literal |
-| UnsafeTLS.go:281:5:281:39 | selection of TLS_RSA_WITH_AES_128_CBC_SHA256 : uint16 | semmle.label | selection of TLS_RSA_WITH_AES_128_CBC_SHA256 : uint16 |
+| UnsafeTLS.go:281:5:281:39 | selection of TLS_RSA_WITH_AES_128_CBC_SHA256 | semmle.label | selection of TLS_RSA_WITH_AES_128_CBC_SHA256 |
 | UnsafeTLS.go:288:18:290:4 | slice literal | semmle.label | slice literal |
-| UnsafeTLS.go:289:5:289:40 | selection of TLS_ECDHE_ECDSA_WITH_RC4_128_SHA : uint16 | semmle.label | selection of TLS_ECDHE_ECDSA_WITH_RC4_128_SHA : uint16 |
+| UnsafeTLS.go:289:5:289:40 | selection of TLS_ECDHE_ECDSA_WITH_RC4_128_SHA | semmle.label | selection of TLS_ECDHE_ECDSA_WITH_RC4_128_SHA |
 | UnsafeTLS.go:296:18:298:4 | slice literal | semmle.label | slice literal |
-| UnsafeTLS.go:297:5:297:38 | selection of TLS_ECDHE_RSA_WITH_RC4_128_SHA : uint16 | semmle.label | selection of TLS_ECDHE_RSA_WITH_RC4_128_SHA : uint16 |
+| UnsafeTLS.go:297:5:297:38 | selection of TLS_ECDHE_RSA_WITH_RC4_128_SHA | semmle.label | selection of TLS_ECDHE_RSA_WITH_RC4_128_SHA |
 | UnsafeTLS.go:304:18:306:4 | slice literal | semmle.label | slice literal |
-| UnsafeTLS.go:305:5:305:47 | selection of TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 : uint16 | semmle.label | selection of TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 : uint16 |
+| UnsafeTLS.go:305:5:305:47 | selection of TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 | semmle.label | selection of TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 |
 | UnsafeTLS.go:312:18:314:4 | slice literal | semmle.label | slice literal |
-| UnsafeTLS.go:313:5:313:45 | selection of TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256 : uint16 | semmle.label | selection of TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256 : uint16 |
+| UnsafeTLS.go:313:5:313:45 | selection of TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256 | semmle.label | selection of TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256 |
 | UnsafeTLS.go:329:25:329:94 | call to append | semmle.label | call to append |
-| UnsafeTLS.go:329:53:329:93 | selection of TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256 : uint16 | semmle.label | selection of TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256 : uint16 |
-| UnsafeTLS.go:334:13:334:38 | call to InsecureCipherSuites : slice type | semmle.label | call to InsecureCipherSuites : slice type |
+| UnsafeTLS.go:329:53:329:93 | selection of TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256 | semmle.label | selection of TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256 |
+| UnsafeTLS.go:334:13:334:38 | call to InsecureCipherSuites | semmle.label | call to InsecureCipherSuites |
 | UnsafeTLS.go:336:26:336:58 | call to append | semmle.label | call to append |
-| UnsafeTLS.go:342:13:342:38 | call to InsecureCipherSuites : slice type | semmle.label | call to InsecureCipherSuites : slice type |
+| UnsafeTLS.go:342:13:342:38 | call to InsecureCipherSuites | semmle.label | call to InsecureCipherSuites |
 | UnsafeTLS.go:346:25:346:36 | cipherSuites | semmle.label | cipherSuites |
-| UnsafeTLS.go:351:13:351:38 | call to InsecureCipherSuites : slice type | semmle.label | call to InsecureCipherSuites : slice type |
+| UnsafeTLS.go:351:13:351:38 | call to InsecureCipherSuites | semmle.label | call to InsecureCipherSuites |
 | UnsafeTLS.go:355:25:355:36 | cipherSuites | semmle.label | cipherSuites |
 | UnsafeTLS.go:362:18:364:4 | slice literal | semmle.label | slice literal |
-| UnsafeTLS.go:363:5:363:47 | selection of TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 : uint16 | semmle.label | selection of TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 : uint16 |
+| UnsafeTLS.go:363:5:363:47 | selection of TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 | semmle.label | selection of TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 |
 | UnsafeTLS.go:370:18:372:4 | slice literal | semmle.label | slice literal |
-| UnsafeTLS.go:371:5:371:47 | selection of TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 : uint16 | semmle.label | selection of TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 : uint16 |
+| UnsafeTLS.go:371:5:371:47 | selection of TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 | semmle.label | selection of TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 |
 | UnsafeTLS.go:378:18:380:4 | slice literal | semmle.label | slice literal |
-| UnsafeTLS.go:379:5:379:47 | selection of TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 : uint16 | semmle.label | selection of TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 : uint16 |
+| UnsafeTLS.go:379:5:379:47 | selection of TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 | semmle.label | selection of TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 |
 | UnsafeTLS.go:386:18:388:4 | slice literal | semmle.label | slice literal |
-| UnsafeTLS.go:387:5:387:47 | selection of TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 : uint16 | semmle.label | selection of TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 : uint16 |
+| UnsafeTLS.go:387:5:387:47 | selection of TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 | semmle.label | selection of TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 |
 | UnsafeTLS.go:394:18:396:4 | slice literal | semmle.label | slice literal |
-| UnsafeTLS.go:395:5:395:47 | selection of TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 : uint16 | semmle.label | selection of TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 : uint16 |
+| UnsafeTLS.go:395:5:395:47 | selection of TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 | semmle.label | selection of TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 |
 | UnsafeTLS.go:402:33:404:3 | slice literal | semmle.label | slice literal |
-| UnsafeTLS.go:403:4:403:46 | selection of TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 : uint16 | semmle.label | selection of TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 : uint16 |
+| UnsafeTLS.go:403:4:403:46 | selection of TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 | semmle.label | selection of TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 |
 | UnsafeTLS.go:409:31:411:3 | slice literal | semmle.label | slice literal |
-| UnsafeTLS.go:410:4:410:46 | selection of TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 : uint16 | semmle.label | selection of TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 : uint16 |
+| UnsafeTLS.go:410:4:410:46 | selection of TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 | semmle.label | selection of TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 |
 | UnsafeTLS.go:418:19:420:5 | slice literal | semmle.label | slice literal |
-| UnsafeTLS.go:419:6:419:48 | selection of TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 : uint16 | semmle.label | selection of TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 : uint16 |
+| UnsafeTLS.go:419:6:419:48 | selection of TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 | semmle.label | selection of TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 |
 | UnsafeTLS.go:425:19:427:5 | slice literal | semmle.label | slice literal |
-| UnsafeTLS.go:426:6:426:48 | selection of TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 : uint16 | semmle.label | selection of TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 : uint16 |
+| UnsafeTLS.go:426:6:426:48 | selection of TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 | semmle.label | selection of TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 |
 | UnsafeTLS.go:432:19:434:5 | slice literal | semmle.label | slice literal |
-| UnsafeTLS.go:433:6:433:48 | selection of TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 : uint16 | semmle.label | selection of TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 : uint16 |
+| UnsafeTLS.go:433:6:433:48 | selection of TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 | semmle.label | selection of TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 |
 | UnsafeTLS.go:442:19:444:5 | slice literal | semmle.label | slice literal |
-| UnsafeTLS.go:443:6:443:48 | selection of TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 : uint16 | semmle.label | selection of TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 : uint16 |
+| UnsafeTLS.go:443:6:443:48 | selection of TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 | semmle.label | selection of TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 |
 | UnsafeTLS.go:449:19:451:5 | slice literal | semmle.label | slice literal |
-| UnsafeTLS.go:450:6:450:48 | selection of TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 : uint16 | semmle.label | selection of TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 : uint16 |
+| UnsafeTLS.go:450:6:450:48 | selection of TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 | semmle.label | selection of TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 |
 | UnsafeTLS.go:456:19:458:5 | slice literal | semmle.label | slice literal |
-| UnsafeTLS.go:457:6:457:48 | selection of TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 : uint16 | semmle.label | selection of TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 : uint16 |
+| UnsafeTLS.go:457:6:457:48 | selection of TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 | semmle.label | selection of TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 |
 subpaths
 #select
 | UnsafeTLS.go:21:23:21:23 | 0 | UnsafeTLS.go:21:23:21:23 | 0 | UnsafeTLS.go:21:23:21:23 | 0 | Using lowest TLS version for MinVersion. |
@@ -141,22 +141,22 @@ subpaths
 | UnsafeTLS.go:111:16:111:16 | 0 | UnsafeTLS.go:111:16:111:16 | 0 | UnsafeTLS.go:111:16:111:16 | 0 | Using lowest TLS version for MinVersion. |
 | UnsafeTLS.go:201:17:201:17 | 0 | UnsafeTLS.go:201:17:201:17 | 0 | UnsafeTLS.go:201:17:201:17 | 0 | Using lowest TLS version for MinVersion. |
 | UnsafeTLS.go:219:17:219:17 | 0 | UnsafeTLS.go:219:17:219:17 | 0 | UnsafeTLS.go:219:17:219:17 | 0 | Using lowest TLS version for MinVersion. |
-| UnsafeTLS.go:259:18:266:4 | slice literal | UnsafeTLS.go:260:5:260:32 | selection of TLS_RSA_WITH_RC4_128_SHA : uint16 | UnsafeTLS.go:259:18:266:4 | slice literal | Use of an insecure cipher suite: TLS_RSA_WITH_RC4_128_SHA. |
-| UnsafeTLS.go:259:18:266:4 | slice literal | UnsafeTLS.go:261:5:261:39 | selection of TLS_RSA_WITH_AES_128_CBC_SHA256 : uint16 | UnsafeTLS.go:259:18:266:4 | slice literal | Use of an insecure cipher suite: TLS_RSA_WITH_AES_128_CBC_SHA256. |
-| UnsafeTLS.go:259:18:266:4 | slice literal | UnsafeTLS.go:262:5:262:40 | selection of TLS_ECDHE_ECDSA_WITH_RC4_128_SHA : uint16 | UnsafeTLS.go:259:18:266:4 | slice literal | Use of an insecure cipher suite: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA. |
-| UnsafeTLS.go:259:18:266:4 | slice literal | UnsafeTLS.go:263:5:263:38 | selection of TLS_ECDHE_RSA_WITH_RC4_128_SHA : uint16 | UnsafeTLS.go:259:18:266:4 | slice literal | Use of an insecure cipher suite: TLS_ECDHE_RSA_WITH_RC4_128_SHA. |
-| UnsafeTLS.go:259:18:266:4 | slice literal | UnsafeTLS.go:264:5:264:47 | selection of TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 : uint16 | UnsafeTLS.go:259:18:266:4 | slice literal | Use of an insecure cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256. |
-| UnsafeTLS.go:259:18:266:4 | slice literal | UnsafeTLS.go:265:5:265:45 | selection of TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256 : uint16 | UnsafeTLS.go:259:18:266:4 | slice literal | Use of an insecure cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256. |
-| UnsafeTLS.go:272:18:274:4 | slice literal | UnsafeTLS.go:273:5:273:32 | selection of TLS_RSA_WITH_RC4_128_SHA : uint16 | UnsafeTLS.go:272:18:274:4 | slice literal | Use of an insecure cipher suite: TLS_RSA_WITH_RC4_128_SHA. |
-| UnsafeTLS.go:280:18:282:4 | slice literal | UnsafeTLS.go:281:5:281:39 | selection of TLS_RSA_WITH_AES_128_CBC_SHA256 : uint16 | UnsafeTLS.go:280:18:282:4 | slice literal | Use of an insecure cipher suite: TLS_RSA_WITH_AES_128_CBC_SHA256. |
-| UnsafeTLS.go:288:18:290:4 | slice literal | UnsafeTLS.go:289:5:289:40 | selection of TLS_ECDHE_ECDSA_WITH_RC4_128_SHA : uint16 | UnsafeTLS.go:288:18:290:4 | slice literal | Use of an insecure cipher suite: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA. |
-| UnsafeTLS.go:296:18:298:4 | slice literal | UnsafeTLS.go:297:5:297:38 | selection of TLS_ECDHE_RSA_WITH_RC4_128_SHA : uint16 | UnsafeTLS.go:296:18:298:4 | slice literal | Use of an insecure cipher suite: TLS_ECDHE_RSA_WITH_RC4_128_SHA. |
-| UnsafeTLS.go:304:18:306:4 | slice literal | UnsafeTLS.go:305:5:305:47 | selection of TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 : uint16 | UnsafeTLS.go:304:18:306:4 | slice literal | Use of an insecure cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256. |
-| UnsafeTLS.go:312:18:314:4 | slice literal | UnsafeTLS.go:313:5:313:45 | selection of TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256 : uint16 | UnsafeTLS.go:312:18:314:4 | slice literal | Use of an insecure cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256. |
-| UnsafeTLS.go:329:25:329:94 | call to append | UnsafeTLS.go:329:53:329:93 | selection of TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256 : uint16 | UnsafeTLS.go:329:25:329:94 | call to append | Use of an insecure cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256. |
-| UnsafeTLS.go:336:26:336:58 | call to append | UnsafeTLS.go:334:13:334:38 | call to InsecureCipherSuites : slice type | UnsafeTLS.go:336:26:336:58 | call to append | Use of an insecure cipher suite. |
-| UnsafeTLS.go:346:25:346:36 | cipherSuites | UnsafeTLS.go:342:13:342:38 | call to InsecureCipherSuites : slice type | UnsafeTLS.go:346:25:346:36 | cipherSuites | Use of an insecure cipher suite. |
-| UnsafeTLS.go:355:25:355:36 | cipherSuites | UnsafeTLS.go:351:13:351:38 | call to InsecureCipherSuites : slice type | UnsafeTLS.go:355:25:355:36 | cipherSuites | Use of an insecure cipher suite. |
-| UnsafeTLS.go:362:18:364:4 | slice literal | UnsafeTLS.go:363:5:363:47 | selection of TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 : uint16 | UnsafeTLS.go:362:18:364:4 | slice literal | Use of an insecure cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256. |
-| UnsafeTLS.go:432:19:434:5 | slice literal | UnsafeTLS.go:433:6:433:48 | selection of TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 : uint16 | UnsafeTLS.go:432:19:434:5 | slice literal | Use of an insecure cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256. |
-| UnsafeTLS.go:456:19:458:5 | slice literal | UnsafeTLS.go:457:6:457:48 | selection of TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 : uint16 | UnsafeTLS.go:456:19:458:5 | slice literal | Use of an insecure cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256. |
+| UnsafeTLS.go:259:18:266:4 | slice literal | UnsafeTLS.go:260:5:260:32 | selection of TLS_RSA_WITH_RC4_128_SHA | UnsafeTLS.go:259:18:266:4 | slice literal | Use of an insecure cipher suite: TLS_RSA_WITH_RC4_128_SHA. |
+| UnsafeTLS.go:259:18:266:4 | slice literal | UnsafeTLS.go:261:5:261:39 | selection of TLS_RSA_WITH_AES_128_CBC_SHA256 | UnsafeTLS.go:259:18:266:4 | slice literal | Use of an insecure cipher suite: TLS_RSA_WITH_AES_128_CBC_SHA256. |
+| UnsafeTLS.go:259:18:266:4 | slice literal | UnsafeTLS.go:262:5:262:40 | selection of TLS_ECDHE_ECDSA_WITH_RC4_128_SHA | UnsafeTLS.go:259:18:266:4 | slice literal | Use of an insecure cipher suite: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA. |
+| UnsafeTLS.go:259:18:266:4 | slice literal | UnsafeTLS.go:263:5:263:38 | selection of TLS_ECDHE_RSA_WITH_RC4_128_SHA | UnsafeTLS.go:259:18:266:4 | slice literal | Use of an insecure cipher suite: TLS_ECDHE_RSA_WITH_RC4_128_SHA. |
+| UnsafeTLS.go:259:18:266:4 | slice literal | UnsafeTLS.go:264:5:264:47 | selection of TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 | UnsafeTLS.go:259:18:266:4 | slice literal | Use of an insecure cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256. |
+| UnsafeTLS.go:259:18:266:4 | slice literal | UnsafeTLS.go:265:5:265:45 | selection of TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256 | UnsafeTLS.go:259:18:266:4 | slice literal | Use of an insecure cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256. |
+| UnsafeTLS.go:272:18:274:4 | slice literal | UnsafeTLS.go:273:5:273:32 | selection of TLS_RSA_WITH_RC4_128_SHA | UnsafeTLS.go:272:18:274:4 | slice literal | Use of an insecure cipher suite: TLS_RSA_WITH_RC4_128_SHA. |
+| UnsafeTLS.go:280:18:282:4 | slice literal | UnsafeTLS.go:281:5:281:39 | selection of TLS_RSA_WITH_AES_128_CBC_SHA256 | UnsafeTLS.go:280:18:282:4 | slice literal | Use of an insecure cipher suite: TLS_RSA_WITH_AES_128_CBC_SHA256. |
+| UnsafeTLS.go:288:18:290:4 | slice literal | UnsafeTLS.go:289:5:289:40 | selection of TLS_ECDHE_ECDSA_WITH_RC4_128_SHA | UnsafeTLS.go:288:18:290:4 | slice literal | Use of an insecure cipher suite: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA. |
+| UnsafeTLS.go:296:18:298:4 | slice literal | UnsafeTLS.go:297:5:297:38 | selection of TLS_ECDHE_RSA_WITH_RC4_128_SHA | UnsafeTLS.go:296:18:298:4 | slice literal | Use of an insecure cipher suite: TLS_ECDHE_RSA_WITH_RC4_128_SHA. |
+| UnsafeTLS.go:304:18:306:4 | slice literal | UnsafeTLS.go:305:5:305:47 | selection of TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 | UnsafeTLS.go:304:18:306:4 | slice literal | Use of an insecure cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256. |
+| UnsafeTLS.go:312:18:314:4 | slice literal | UnsafeTLS.go:313:5:313:45 | selection of TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256 | UnsafeTLS.go:312:18:314:4 | slice literal | Use of an insecure cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256. |
+| UnsafeTLS.go:329:25:329:94 | call to append | UnsafeTLS.go:329:53:329:93 | selection of TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256 | UnsafeTLS.go:329:25:329:94 | call to append | Use of an insecure cipher suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256. |
+| UnsafeTLS.go:336:26:336:58 | call to append | UnsafeTLS.go:334:13:334:38 | call to InsecureCipherSuites | UnsafeTLS.go:336:26:336:58 | call to append | Use of an insecure cipher suite. |
+| UnsafeTLS.go:346:25:346:36 | cipherSuites | UnsafeTLS.go:342:13:342:38 | call to InsecureCipherSuites | UnsafeTLS.go:346:25:346:36 | cipherSuites | Use of an insecure cipher suite. |
+| UnsafeTLS.go:355:25:355:36 | cipherSuites | UnsafeTLS.go:351:13:351:38 | call to InsecureCipherSuites | UnsafeTLS.go:355:25:355:36 | cipherSuites | Use of an insecure cipher suite. |
+| UnsafeTLS.go:362:18:364:4 | slice literal | UnsafeTLS.go:363:5:363:47 | selection of TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 | UnsafeTLS.go:362:18:364:4 | slice literal | Use of an insecure cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256. |
+| UnsafeTLS.go:432:19:434:5 | slice literal | UnsafeTLS.go:433:6:433:48 | selection of TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 | UnsafeTLS.go:432:19:434:5 | slice literal | Use of an insecure cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256. |
+| UnsafeTLS.go:456:19:458:5 | slice literal | UnsafeTLS.go:457:6:457:48 | selection of TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 | UnsafeTLS.go:456:19:458:5 | slice literal | Use of an insecure cipher suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256. |
diff --git a/go/ql/test/query-tests/Security/CWE-327/WeakCryptoAlgorithm.expected b/go/ql/test/query-tests/Security/CWE-327/WeakCryptoAlgorithm.expected
index 50d09ac532d..a107cd75df0 100644
--- a/go/ql/test/query-tests/Security/CWE-327/WeakCryptoAlgorithm.expected
+++ b/go/ql/test/query-tests/Security/CWE-327/WeakCryptoAlgorithm.expected
@@ -1,17 +1,17 @@
 edges
-| Crypto.go:16:9:16:16 | password : slice type | Crypto.go:19:25:19:27 | buf |
-| Crypto.go:16:9:16:16 | password : slice type | Crypto.go:22:10:22:12 | buf |
-| Crypto.go:16:9:16:16 | password : slice type | Crypto.go:25:16:25:18 | buf |
-| Crypto.go:16:9:16:16 | password : slice type | Crypto.go:28:11:28:13 | buf |
+| Crypto.go:16:9:16:16 | password | Crypto.go:19:25:19:27 | buf |
+| Crypto.go:16:9:16:16 | password | Crypto.go:22:10:22:12 | buf |
+| Crypto.go:16:9:16:16 | password | Crypto.go:25:16:25:18 | buf |
+| Crypto.go:16:9:16:16 | password | Crypto.go:28:11:28:13 | buf |
 nodes
-| Crypto.go:16:9:16:16 | password : slice type | semmle.label | password : slice type |
+| Crypto.go:16:9:16:16 | password | semmle.label | password |
 | Crypto.go:19:25:19:27 | buf | semmle.label | buf |
 | Crypto.go:22:10:22:12 | buf | semmle.label | buf |
 | Crypto.go:25:16:25:18 | buf | semmle.label | buf |
 | Crypto.go:28:11:28:13 | buf | semmle.label | buf |
 subpaths
 #select
-| Crypto.go:19:25:19:27 | buf | Crypto.go:16:9:16:16 | password : slice type | Crypto.go:19:25:19:27 | buf | $@ is used in a weak cryptographic algorithm. | Crypto.go:16:9:16:16 | password | Sensitive data |
-| Crypto.go:22:10:22:12 | buf | Crypto.go:16:9:16:16 | password : slice type | Crypto.go:22:10:22:12 | buf | $@ is used in a weak cryptographic algorithm. | Crypto.go:16:9:16:16 | password | Sensitive data |
-| Crypto.go:25:16:25:18 | buf | Crypto.go:16:9:16:16 | password : slice type | Crypto.go:25:16:25:18 | buf | $@ is used in a weak cryptographic algorithm. | Crypto.go:16:9:16:16 | password | Sensitive data |
-| Crypto.go:28:11:28:13 | buf | Crypto.go:16:9:16:16 | password : slice type | Crypto.go:28:11:28:13 | buf | $@ is used in a weak cryptographic algorithm. | Crypto.go:16:9:16:16 | password | Sensitive data |
+| Crypto.go:19:25:19:27 | buf | Crypto.go:16:9:16:16 | password | Crypto.go:19:25:19:27 | buf | $@ is used in a weak cryptographic algorithm. | Crypto.go:16:9:16:16 | password | Sensitive data |
+| Crypto.go:22:10:22:12 | buf | Crypto.go:16:9:16:16 | password | Crypto.go:22:10:22:12 | buf | $@ is used in a weak cryptographic algorithm. | Crypto.go:16:9:16:16 | password | Sensitive data |
+| Crypto.go:25:16:25:18 | buf | Crypto.go:16:9:16:16 | password | Crypto.go:25:16:25:18 | buf | $@ is used in a weak cryptographic algorithm. | Crypto.go:16:9:16:16 | password | Sensitive data |
+| Crypto.go:28:11:28:13 | buf | Crypto.go:16:9:16:16 | password | Crypto.go:28:11:28:13 | buf | $@ is used in a weak cryptographic algorithm. | Crypto.go:16:9:16:16 | password | Sensitive data |
diff --git a/go/ql/test/query-tests/Security/CWE-338/InsecureRandomness/InsecureRandomness.expected b/go/ql/test/query-tests/Security/CWE-338/InsecureRandomness/InsecureRandomness.expected
index 2ba310c6ee1..9e767daf186 100644
--- a/go/ql/test/query-tests/Security/CWE-338/InsecureRandomness/InsecureRandomness.expected
+++ b/go/ql/test/query-tests/Security/CWE-338/InsecureRandomness/InsecureRandomness.expected
@@ -1,16 +1,16 @@
 edges
-| sample.go:15:24:15:63 | type conversion : string | sample.go:16:9:16:15 | slice expression : slice type |
-| sample.go:15:49:15:61 | call to Uint32 : uint32 | sample.go:15:24:15:63 | type conversion : string |
-| sample.go:16:9:16:15 | slice expression : slice type | sample.go:26:25:26:30 | call to Guid |
-| sample.go:34:12:34:40 | call to New : pointer type | sample.go:37:25:37:29 | nonce |
-| sample.go:34:12:34:40 | call to New : pointer type | sample.go:37:32:37:36 | nonce |
+| sample.go:15:24:15:63 | type conversion | sample.go:16:9:16:15 | slice expression |
+| sample.go:15:49:15:61 | call to Uint32 | sample.go:15:24:15:63 | type conversion |
+| sample.go:16:9:16:15 | slice expression | sample.go:26:25:26:30 | call to Guid |
+| sample.go:34:12:34:40 | call to New | sample.go:37:25:37:29 | nonce |
+| sample.go:34:12:34:40 | call to New | sample.go:37:32:37:36 | nonce |
 nodes
 | InsecureRandomness.go:12:18:12:40 | call to Intn | semmle.label | call to Intn |
-| sample.go:15:24:15:63 | type conversion : string | semmle.label | type conversion : string |
-| sample.go:15:49:15:61 | call to Uint32 : uint32 | semmle.label | call to Uint32 : uint32 |
-| sample.go:16:9:16:15 | slice expression : slice type | semmle.label | slice expression : slice type |
+| sample.go:15:24:15:63 | type conversion | semmle.label | type conversion |
+| sample.go:15:49:15:61 | call to Uint32 | semmle.label | call to Uint32 |
+| sample.go:16:9:16:15 | slice expression | semmle.label | slice expression |
 | sample.go:26:25:26:30 | call to Guid | semmle.label | call to Guid |
-| sample.go:34:12:34:40 | call to New : pointer type | semmle.label | call to New : pointer type |
+| sample.go:34:12:34:40 | call to New | semmle.label | call to New |
 | sample.go:37:25:37:29 | nonce | semmle.label | nonce |
 | sample.go:37:32:37:36 | nonce | semmle.label | nonce |
 | sample.go:43:17:43:39 | call to Intn | semmle.label | call to Intn |
@@ -21,7 +21,7 @@ nodes
 subpaths
 #select
 | InsecureRandomness.go:12:18:12:40 | call to Intn | InsecureRandomness.go:12:18:12:40 | call to Intn | InsecureRandomness.go:12:18:12:40 | call to Intn | A password-related function depends on a $@ generated with a cryptographically weak RNG. | InsecureRandomness.go:12:18:12:40 | call to Intn | random number |
-| sample.go:26:25:26:30 | call to Guid | sample.go:15:49:15:61 | call to Uint32 : uint32 | sample.go:26:25:26:30 | call to Guid | This cryptographic algorithm depends on a $@ generated with a cryptographically weak RNG. | sample.go:15:49:15:61 | call to Uint32 | random number |
-| sample.go:37:25:37:29 | nonce | sample.go:34:12:34:40 | call to New : pointer type | sample.go:37:25:37:29 | nonce | This cryptographic algorithm depends on a $@ generated with a cryptographically weak RNG. | sample.go:34:12:34:40 | call to New | random number |
-| sample.go:37:32:37:36 | nonce | sample.go:34:12:34:40 | call to New : pointer type | sample.go:37:32:37:36 | nonce | This cryptographic algorithm depends on a $@ generated with a cryptographically weak RNG. | sample.go:34:12:34:40 | call to New | random number |
+| sample.go:26:25:26:30 | call to Guid | sample.go:15:49:15:61 | call to Uint32 | sample.go:26:25:26:30 | call to Guid | This cryptographic algorithm depends on a $@ generated with a cryptographically weak RNG. | sample.go:15:49:15:61 | call to Uint32 | random number |
+| sample.go:37:25:37:29 | nonce | sample.go:34:12:34:40 | call to New | sample.go:37:25:37:29 | nonce | This cryptographic algorithm depends on a $@ generated with a cryptographically weak RNG. | sample.go:34:12:34:40 | call to New | random number |
+| sample.go:37:32:37:36 | nonce | sample.go:34:12:34:40 | call to New | sample.go:37:32:37:36 | nonce | This cryptographic algorithm depends on a $@ generated with a cryptographically weak RNG. | sample.go:34:12:34:40 | call to New | random number |
 | sample.go:43:17:43:39 | call to Intn | sample.go:43:17:43:39 | call to Intn | sample.go:43:17:43:39 | call to Intn | A password-related function depends on a $@ generated with a cryptographically weak RNG. | sample.go:43:17:43:39 | call to Intn | random number |
diff --git a/go/ql/test/query-tests/Security/CWE-352/ConstantOauth2State.expected b/go/ql/test/query-tests/Security/CWE-352/ConstantOauth2State.expected
index 06cc9c6618e..c21e28717c7 100644
--- a/go/ql/test/query-tests/Security/CWE-352/ConstantOauth2State.expected
+++ b/go/ql/test/query-tests/Security/CWE-352/ConstantOauth2State.expected
@@ -1,61 +1,61 @@
 edges
-| ConstantOauth2State.go:20:26:20:32 | "state" : string literal | ConstantOauth2State.go:50:26:50:41 | stateStringConst |
-| ConstantOauth2State.go:20:26:20:32 | "state" : string literal | ConstantOauth2State.go:147:26:147:41 | stateStringConst |
-| ConstantOauth2State.go:20:26:20:32 | "state" : string literal | ConstantOauth2State.go:169:26:169:41 | stateStringConst |
-| ConstantOauth2State.go:20:26:20:32 | "state" : string literal | ConstantOauth2State.go:191:26:191:41 | stateStringConst |
-| ConstantOauth2State.go:20:26:20:32 | "state" : string literal | ConstantOauth2State.go:210:26:210:41 | stateStringConst |
-| ConstantOauth2State.go:20:26:20:32 | "state" : string literal | ConstantOauth2State.go:232:26:232:41 | stateStringConst |
-| ConstantOauth2State.go:20:26:20:32 | "state" : string literal | ConstantOauth2State.go:249:26:249:41 | stateStringConst |
-| ConstantOauth2State.go:20:26:20:32 | "state" : string literal | ConstantOauth2State.go:266:26:266:41 | stateStringConst |
-| ConstantOauth2State.go:20:26:20:32 | "state" : string literal | ConstantOauth2State.go:282:26:282:41 | stateStringConst |
-| ConstantOauth2State.go:22:22:22:28 | "state" : string | ConstantOauth2State.go:65:26:65:39 | stateStringVar |
-| ConstantOauth2State.go:80:11:80:25 | call to newFixedState : string | ConstantOauth2State.go:81:26:81:30 | state |
-| ConstantOauth2State.go:86:9:86:15 | "state" : string | ConstantOauth2State.go:80:11:80:25 | call to newFixedState : string |
-| ConstantOauth2State.go:147:9:147:42 | call to AuthCodeURL : string | ConstantOauth2State.go:148:54:148:56 | url |
-| ConstantOauth2State.go:169:9:169:42 | call to AuthCodeURL : string | ConstantOauth2State.go:170:54:170:56 | url |
-| ConstantOauth2State.go:191:9:191:42 | call to AuthCodeURL : string | ConstantOauth2State.go:192:54:192:56 | url |
-| ConstantOauth2State.go:210:9:210:42 | call to AuthCodeURL : string | ConstantOauth2State.go:211:54:211:56 | url |
-| ConstantOauth2State.go:232:9:232:42 | call to AuthCodeURL : string | ConstantOauth2State.go:233:28:233:30 | url |
-| ConstantOauth2State.go:239:17:239:39 | "http://localhost:8080" : string | ConstantOauth2State.go:249:9:249:12 | conf |
-| ConstantOauth2State.go:256:38:256:60 | "http://localhost:8080" : string | ConstantOauth2State.go:266:9:266:12 | conf |
-| ConstantOauth2State.go:272:17:272:21 | "oob" : string | ConstantOauth2State.go:282:9:282:12 | conf |
+| ConstantOauth2State.go:20:26:20:32 | "state" | ConstantOauth2State.go:50:26:50:41 | stateStringConst |
+| ConstantOauth2State.go:20:26:20:32 | "state" | ConstantOauth2State.go:147:26:147:41 | stateStringConst |
+| ConstantOauth2State.go:20:26:20:32 | "state" | ConstantOauth2State.go:169:26:169:41 | stateStringConst |
+| ConstantOauth2State.go:20:26:20:32 | "state" | ConstantOauth2State.go:191:26:191:41 | stateStringConst |
+| ConstantOauth2State.go:20:26:20:32 | "state" | ConstantOauth2State.go:210:26:210:41 | stateStringConst |
+| ConstantOauth2State.go:20:26:20:32 | "state" | ConstantOauth2State.go:232:26:232:41 | stateStringConst |
+| ConstantOauth2State.go:20:26:20:32 | "state" | ConstantOauth2State.go:249:26:249:41 | stateStringConst |
+| ConstantOauth2State.go:20:26:20:32 | "state" | ConstantOauth2State.go:266:26:266:41 | stateStringConst |
+| ConstantOauth2State.go:20:26:20:32 | "state" | ConstantOauth2State.go:282:26:282:41 | stateStringConst |
+| ConstantOauth2State.go:22:22:22:28 | "state" | ConstantOauth2State.go:65:26:65:39 | stateStringVar |
+| ConstantOauth2State.go:80:11:80:25 | call to newFixedState | ConstantOauth2State.go:81:26:81:30 | state |
+| ConstantOauth2State.go:86:9:86:15 | "state" | ConstantOauth2State.go:80:11:80:25 | call to newFixedState |
+| ConstantOauth2State.go:147:9:147:42 | call to AuthCodeURL | ConstantOauth2State.go:148:54:148:56 | url |
+| ConstantOauth2State.go:169:9:169:42 | call to AuthCodeURL | ConstantOauth2State.go:170:54:170:56 | url |
+| ConstantOauth2State.go:191:9:191:42 | call to AuthCodeURL | ConstantOauth2State.go:192:54:192:56 | url |
+| ConstantOauth2State.go:210:9:210:42 | call to AuthCodeURL | ConstantOauth2State.go:211:54:211:56 | url |
+| ConstantOauth2State.go:232:9:232:42 | call to AuthCodeURL | ConstantOauth2State.go:233:28:233:30 | url |
+| ConstantOauth2State.go:239:17:239:39 | "http://localhost:8080" | ConstantOauth2State.go:249:9:249:12 | conf |
+| ConstantOauth2State.go:256:38:256:60 | "http://localhost:8080" | ConstantOauth2State.go:266:9:266:12 | conf |
+| ConstantOauth2State.go:272:17:272:21 | "oob" | ConstantOauth2State.go:282:9:282:12 | conf |
 nodes
-| ConstantOauth2State.go:20:26:20:32 | "state" : string literal | semmle.label | "state" : string literal |
-| ConstantOauth2State.go:22:22:22:28 | "state" : string | semmle.label | "state" : string |
+| ConstantOauth2State.go:20:26:20:32 | "state" | semmle.label | "state" |
+| ConstantOauth2State.go:22:22:22:28 | "state" | semmle.label | "state" |
 | ConstantOauth2State.go:35:26:35:32 | "state" | semmle.label | "state" |
 | ConstantOauth2State.go:50:26:50:41 | stateStringConst | semmle.label | stateStringConst |
 | ConstantOauth2State.go:65:26:65:39 | stateStringVar | semmle.label | stateStringVar |
-| ConstantOauth2State.go:80:11:80:25 | call to newFixedState : string | semmle.label | call to newFixedState : string |
+| ConstantOauth2State.go:80:11:80:25 | call to newFixedState | semmle.label | call to newFixedState |
 | ConstantOauth2State.go:81:26:81:30 | state | semmle.label | state |
-| ConstantOauth2State.go:86:9:86:15 | "state" : string | semmle.label | "state" : string |
-| ConstantOauth2State.go:147:9:147:42 | call to AuthCodeURL : string | semmle.label | call to AuthCodeURL : string |
+| ConstantOauth2State.go:86:9:86:15 | "state" | semmle.label | "state" |
+| ConstantOauth2State.go:147:9:147:42 | call to AuthCodeURL | semmle.label | call to AuthCodeURL |
 | ConstantOauth2State.go:147:26:147:41 | stateStringConst | semmle.label | stateStringConst |
 | ConstantOauth2State.go:148:54:148:56 | url | semmle.label | url |
-| ConstantOauth2State.go:169:9:169:42 | call to AuthCodeURL : string | semmle.label | call to AuthCodeURL : string |
+| ConstantOauth2State.go:169:9:169:42 | call to AuthCodeURL | semmle.label | call to AuthCodeURL |
 | ConstantOauth2State.go:169:26:169:41 | stateStringConst | semmle.label | stateStringConst |
 | ConstantOauth2State.go:170:54:170:56 | url | semmle.label | url |
-| ConstantOauth2State.go:191:9:191:42 | call to AuthCodeURL : string | semmle.label | call to AuthCodeURL : string |
+| ConstantOauth2State.go:191:9:191:42 | call to AuthCodeURL | semmle.label | call to AuthCodeURL |
 | ConstantOauth2State.go:191:26:191:41 | stateStringConst | semmle.label | stateStringConst |
 | ConstantOauth2State.go:192:54:192:56 | url | semmle.label | url |
-| ConstantOauth2State.go:210:9:210:42 | call to AuthCodeURL : string | semmle.label | call to AuthCodeURL : string |
+| ConstantOauth2State.go:210:9:210:42 | call to AuthCodeURL | semmle.label | call to AuthCodeURL |
 | ConstantOauth2State.go:210:26:210:41 | stateStringConst | semmle.label | stateStringConst |
 | ConstantOauth2State.go:211:54:211:56 | url | semmle.label | url |
-| ConstantOauth2State.go:232:9:232:42 | call to AuthCodeURL : string | semmle.label | call to AuthCodeURL : string |
+| ConstantOauth2State.go:232:9:232:42 | call to AuthCodeURL | semmle.label | call to AuthCodeURL |
 | ConstantOauth2State.go:232:26:232:41 | stateStringConst | semmle.label | stateStringConst |
 | ConstantOauth2State.go:233:28:233:30 | url | semmle.label | url |
-| ConstantOauth2State.go:239:17:239:39 | "http://localhost:8080" : string | semmle.label | "http://localhost:8080" : string |
+| ConstantOauth2State.go:239:17:239:39 | "http://localhost:8080" | semmle.label | "http://localhost:8080" |
 | ConstantOauth2State.go:249:9:249:12 | conf | semmle.label | conf |
 | ConstantOauth2State.go:249:26:249:41 | stateStringConst | semmle.label | stateStringConst |
-| ConstantOauth2State.go:256:38:256:60 | "http://localhost:8080" : string | semmle.label | "http://localhost:8080" : string |
+| ConstantOauth2State.go:256:38:256:60 | "http://localhost:8080" | semmle.label | "http://localhost:8080" |
 | ConstantOauth2State.go:266:9:266:12 | conf | semmle.label | conf |
 | ConstantOauth2State.go:266:26:266:41 | stateStringConst | semmle.label | stateStringConst |
-| ConstantOauth2State.go:272:17:272:21 | "oob" : string | semmle.label | "oob" : string |
+| ConstantOauth2State.go:272:17:272:21 | "oob" | semmle.label | "oob" |
 | ConstantOauth2State.go:282:9:282:12 | conf | semmle.label | conf |
 | ConstantOauth2State.go:282:26:282:41 | stateStringConst | semmle.label | stateStringConst |
 subpaths
 #select
 | ConstantOauth2State.go:35:26:35:32 | "state" | ConstantOauth2State.go:35:26:35:32 | "state" | ConstantOauth2State.go:35:26:35:32 | "state" | Using a constant $@ to create oauth2 URLs. | ConstantOauth2State.go:35:26:35:32 | "state" | state string |
-| ConstantOauth2State.go:50:26:50:41 | stateStringConst | ConstantOauth2State.go:20:26:20:32 | "state" : string literal | ConstantOauth2State.go:50:26:50:41 | stateStringConst | Using a constant $@ to create oauth2 URLs. | ConstantOauth2State.go:20:26:20:32 | "state" | state string |
-| ConstantOauth2State.go:65:26:65:39 | stateStringVar | ConstantOauth2State.go:22:22:22:28 | "state" : string | ConstantOauth2State.go:65:26:65:39 | stateStringVar | Using a constant $@ to create oauth2 URLs. | ConstantOauth2State.go:22:22:22:28 | "state" | state string |
-| ConstantOauth2State.go:81:26:81:30 | state | ConstantOauth2State.go:86:9:86:15 | "state" : string | ConstantOauth2State.go:81:26:81:30 | state | Using a constant $@ to create oauth2 URLs. | ConstantOauth2State.go:86:9:86:15 | "state" | state string |
-| ConstantOauth2State.go:232:26:232:41 | stateStringConst | ConstantOauth2State.go:20:26:20:32 | "state" : string literal | ConstantOauth2State.go:232:26:232:41 | stateStringConst | Using a constant $@ to create oauth2 URLs. | ConstantOauth2State.go:20:26:20:32 | "state" | state string |
+| ConstantOauth2State.go:50:26:50:41 | stateStringConst | ConstantOauth2State.go:20:26:20:32 | "state" | ConstantOauth2State.go:50:26:50:41 | stateStringConst | Using a constant $@ to create oauth2 URLs. | ConstantOauth2State.go:20:26:20:32 | "state" | state string |
+| ConstantOauth2State.go:65:26:65:39 | stateStringVar | ConstantOauth2State.go:22:22:22:28 | "state" | ConstantOauth2State.go:65:26:65:39 | stateStringVar | Using a constant $@ to create oauth2 URLs. | ConstantOauth2State.go:22:22:22:28 | "state" | state string |
+| ConstantOauth2State.go:81:26:81:30 | state | ConstantOauth2State.go:86:9:86:15 | "state" | ConstantOauth2State.go:81:26:81:30 | state | Using a constant $@ to create oauth2 URLs. | ConstantOauth2State.go:86:9:86:15 | "state" | state string |
+| ConstantOauth2State.go:232:26:232:41 | stateStringConst | ConstantOauth2State.go:20:26:20:32 | "state" | ConstantOauth2State.go:232:26:232:41 | stateStringConst | Using a constant $@ to create oauth2 URLs. | ConstantOauth2State.go:20:26:20:32 | "state" | state string |
diff --git a/go/ql/test/query-tests/Security/CWE-601/BadRedirectCheck/BadRedirectCheck.expected b/go/ql/test/query-tests/Security/CWE-601/BadRedirectCheck/BadRedirectCheck.expected
index 240c71fb6c1..df3c6383bc4 100644
--- a/go/ql/test/query-tests/Security/CWE-601/BadRedirectCheck/BadRedirectCheck.expected
+++ b/go/ql/test/query-tests/Security/CWE-601/BadRedirectCheck/BadRedirectCheck.expected
@@ -1,56 +1,56 @@
 edges
-| BadRedirectCheck.go:3:18:3:22 | argument corresponding to redir : string | BadRedirectCheck.go:5:10:5:14 | redir : string |
-| BadRedirectCheck.go:3:18:3:22 | definition of redir : string | BadRedirectCheck.go:5:10:5:14 | redir : string |
-| BadRedirectCheck.go:5:10:5:14 | redir : string | main.go:11:25:11:45 | call to sanitizeUrl |
-| cves.go:14:23:14:25 | argument corresponding to url : string | cves.go:16:26:16:28 | url |
-| cves.go:33:14:33:34 | call to Get : string | cves.go:37:25:37:32 | redirect |
-| cves.go:41:14:41:34 | call to Get : string | cves.go:45:25:45:32 | redirect |
-| main.go:10:18:10:25 | argument corresponding to redirect : string | main.go:11:37:11:44 | redirect : string |
-| main.go:11:37:11:44 | redirect : string | BadRedirectCheck.go:3:18:3:22 | definition of redir : string |
-| main.go:11:37:11:44 | redirect : string | main.go:11:25:11:45 | call to sanitizeUrl |
-| main.go:32:24:32:26 | argument corresponding to url : string | main.go:34:26:34:28 | url |
-| main.go:68:17:68:24 | argument corresponding to redirect : string | main.go:73:9:73:28 | call to Clean : string |
-| main.go:68:17:68:24 | definition of redirect : string | main.go:73:9:73:28 | call to Clean : string |
-| main.go:73:9:73:28 | call to Clean : string | main.go:77:25:77:39 | call to getTarget1 |
-| main.go:76:19:76:21 | argument corresponding to url : string | main.go:77:36:77:38 | url : string |
-| main.go:77:36:77:38 | url : string | main.go:68:17:68:24 | definition of redirect : string |
-| main.go:77:36:77:38 | url : string | main.go:77:25:77:39 | call to getTarget1 |
-| main.go:87:9:87:14 | selection of Path : string | main.go:91:25:91:39 | call to getTarget2 |
+| BadRedirectCheck.go:3:18:3:22 | argument corresponding to redir | BadRedirectCheck.go:5:10:5:14 | redir |
+| BadRedirectCheck.go:3:18:3:22 | definition of redir | BadRedirectCheck.go:5:10:5:14 | redir |
+| BadRedirectCheck.go:5:10:5:14 | redir | main.go:11:25:11:45 | call to sanitizeUrl |
+| cves.go:14:23:14:25 | argument corresponding to url | cves.go:16:26:16:28 | url |
+| cves.go:33:14:33:34 | call to Get | cves.go:37:25:37:32 | redirect |
+| cves.go:41:14:41:34 | call to Get | cves.go:45:25:45:32 | redirect |
+| main.go:10:18:10:25 | argument corresponding to redirect | main.go:11:37:11:44 | redirect |
+| main.go:11:37:11:44 | redirect | BadRedirectCheck.go:3:18:3:22 | definition of redir |
+| main.go:11:37:11:44 | redirect | main.go:11:25:11:45 | call to sanitizeUrl |
+| main.go:32:24:32:26 | argument corresponding to url | main.go:34:26:34:28 | url |
+| main.go:68:17:68:24 | argument corresponding to redirect | main.go:73:9:73:28 | call to Clean |
+| main.go:68:17:68:24 | definition of redirect | main.go:73:9:73:28 | call to Clean |
+| main.go:73:9:73:28 | call to Clean | main.go:77:25:77:39 | call to getTarget1 |
+| main.go:76:19:76:21 | argument corresponding to url | main.go:77:36:77:38 | url |
+| main.go:77:36:77:38 | url | main.go:68:17:68:24 | definition of redirect |
+| main.go:77:36:77:38 | url | main.go:77:25:77:39 | call to getTarget1 |
+| main.go:87:9:87:14 | selection of Path | main.go:91:25:91:39 | call to getTarget2 |
 nodes
-| BadRedirectCheck.go:3:18:3:22 | argument corresponding to redir : string | semmle.label | argument corresponding to redir : string |
-| BadRedirectCheck.go:3:18:3:22 | definition of redir : string | semmle.label | definition of redir : string |
-| BadRedirectCheck.go:5:10:5:14 | redir : string | semmle.label | redir : string |
-| BadRedirectCheck.go:5:10:5:14 | redir : string | semmle.label | redir : string |
-| cves.go:14:23:14:25 | argument corresponding to url : string | semmle.label | argument corresponding to url : string |
+| BadRedirectCheck.go:3:18:3:22 | argument corresponding to redir | semmle.label | argument corresponding to redir |
+| BadRedirectCheck.go:3:18:3:22 | definition of redir | semmle.label | definition of redir |
+| BadRedirectCheck.go:5:10:5:14 | redir | semmle.label | redir |
+| BadRedirectCheck.go:5:10:5:14 | redir | semmle.label | redir |
+| cves.go:14:23:14:25 | argument corresponding to url | semmle.label | argument corresponding to url |
 | cves.go:16:26:16:28 | url | semmle.label | url |
-| cves.go:33:14:33:34 | call to Get : string | semmle.label | call to Get : string |
+| cves.go:33:14:33:34 | call to Get | semmle.label | call to Get |
 | cves.go:37:25:37:32 | redirect | semmle.label | redirect |
-| cves.go:41:14:41:34 | call to Get : string | semmle.label | call to Get : string |
+| cves.go:41:14:41:34 | call to Get | semmle.label | call to Get |
 | cves.go:45:25:45:32 | redirect | semmle.label | redirect |
-| main.go:10:18:10:25 | argument corresponding to redirect : string | semmle.label | argument corresponding to redirect : string |
+| main.go:10:18:10:25 | argument corresponding to redirect | semmle.label | argument corresponding to redirect |
 | main.go:11:25:11:45 | call to sanitizeUrl | semmle.label | call to sanitizeUrl |
-| main.go:11:37:11:44 | redirect : string | semmle.label | redirect : string |
-| main.go:32:24:32:26 | argument corresponding to url : string | semmle.label | argument corresponding to url : string |
+| main.go:11:37:11:44 | redirect | semmle.label | redirect |
+| main.go:32:24:32:26 | argument corresponding to url | semmle.label | argument corresponding to url |
 | main.go:34:26:34:28 | url | semmle.label | url |
-| main.go:68:17:68:24 | argument corresponding to redirect : string | semmle.label | argument corresponding to redirect : string |
-| main.go:68:17:68:24 | definition of redirect : string | semmle.label | definition of redirect : string |
-| main.go:73:9:73:28 | call to Clean : string | semmle.label | call to Clean : string |
-| main.go:73:9:73:28 | call to Clean : string | semmle.label | call to Clean : string |
-| main.go:76:19:76:21 | argument corresponding to url : string | semmle.label | argument corresponding to url : string |
+| main.go:68:17:68:24 | argument corresponding to redirect | semmle.label | argument corresponding to redirect |
+| main.go:68:17:68:24 | definition of redirect | semmle.label | definition of redirect |
+| main.go:73:9:73:28 | call to Clean | semmle.label | call to Clean |
+| main.go:73:9:73:28 | call to Clean | semmle.label | call to Clean |
+| main.go:76:19:76:21 | argument corresponding to url | semmle.label | argument corresponding to url |
 | main.go:77:25:77:39 | call to getTarget1 | semmle.label | call to getTarget1 |
-| main.go:77:36:77:38 | url : string | semmle.label | url : string |
-| main.go:87:9:87:14 | selection of Path : string | semmle.label | selection of Path : string |
+| main.go:77:36:77:38 | url | semmle.label | url |
+| main.go:87:9:87:14 | selection of Path | semmle.label | selection of Path |
 | main.go:91:25:91:39 | call to getTarget2 | semmle.label | call to getTarget2 |
 subpaths
-| main.go:11:37:11:44 | redirect : string | BadRedirectCheck.go:3:18:3:22 | definition of redir : string | BadRedirectCheck.go:5:10:5:14 | redir : string | main.go:11:25:11:45 | call to sanitizeUrl |
-| main.go:77:36:77:38 | url : string | main.go:68:17:68:24 | definition of redirect : string | main.go:73:9:73:28 | call to Clean : string | main.go:77:25:77:39 | call to getTarget1 |
+| main.go:11:37:11:44 | redirect | BadRedirectCheck.go:3:18:3:22 | definition of redir | BadRedirectCheck.go:5:10:5:14 | redir | main.go:11:25:11:45 | call to sanitizeUrl |
+| main.go:77:36:77:38 | url | main.go:68:17:68:24 | definition of redirect | main.go:73:9:73:28 | call to Clean | main.go:77:25:77:39 | call to getTarget1 |
 #select
-| BadRedirectCheck.go:4:23:4:37 | ...==... | BadRedirectCheck.go:3:18:3:22 | argument corresponding to redir : string | main.go:11:25:11:45 | call to sanitizeUrl | This is a check that $@, which flows into a $@, has a leading slash, but not that it does not have '/' or '\\' in its second position. | BadRedirectCheck.go:3:18:3:22 | argument corresponding to redir | this value | main.go:11:25:11:45 | call to sanitizeUrl | redirect |
-| BadRedirectCheck.go:4:23:4:37 | ...==... | main.go:10:18:10:25 | argument corresponding to redirect : string | main.go:11:25:11:45 | call to sanitizeUrl | This is a check that $@, which flows into a $@, has a leading slash, but not that it does not have '/' or '\\' in its second position. | main.go:10:18:10:25 | argument corresponding to redirect | this value | main.go:11:25:11:45 | call to sanitizeUrl | redirect |
-| cves.go:11:26:11:38 | ...==... | cves.go:14:23:14:25 | argument corresponding to url : string | cves.go:16:26:16:28 | url | This is a check that $@, which flows into a $@, has a leading slash, but not that it does not have '/' or '\\' in its second position. | cves.go:14:23:14:25 | argument corresponding to url | this value | cves.go:16:26:16:28 | url | redirect |
-| cves.go:34:6:34:37 | call to HasPrefix | cves.go:33:14:33:34 | call to Get : string | cves.go:37:25:37:32 | redirect | This is a check that $@, which flows into a $@, has a leading slash, but not that it does not have '/' or '\\' in its second position. | cves.go:33:14:33:34 | call to Get | this value | cves.go:37:25:37:32 | redirect | redirect |
-| cves.go:42:6:42:37 | call to HasPrefix | cves.go:41:14:41:34 | call to Get : string | cves.go:45:25:45:32 | redirect | This is a check that $@, which flows into a $@, has a leading slash, but not that it does not have '/' or '\\' in its second position. | cves.go:41:14:41:34 | call to Get | this value | cves.go:45:25:45:32 | redirect | redirect |
-| main.go:25:7:25:38 | call to HasPrefix | main.go:32:24:32:26 | argument corresponding to url : string | main.go:34:26:34:28 | url | This is a check that $@, which flows into a $@, has a leading slash, but not that it does not have '/' or '\\' in its second position. | main.go:32:24:32:26 | argument corresponding to url | this value | main.go:34:26:34:28 | url | redirect |
-| main.go:69:5:69:22 | ...!=... | main.go:68:17:68:24 | argument corresponding to redirect : string | main.go:77:25:77:39 | call to getTarget1 | This is a check that $@, which flows into a $@, has a leading slash, but not that it does not have '/' or '\\' in its second position. | main.go:68:17:68:24 | argument corresponding to redirect | this value | main.go:77:25:77:39 | call to getTarget1 | redirect |
-| main.go:69:5:69:22 | ...!=... | main.go:76:19:76:21 | argument corresponding to url : string | main.go:77:25:77:39 | call to getTarget1 | This is a check that $@, which flows into a $@, has a leading slash, but not that it does not have '/' or '\\' in its second position. | main.go:76:19:76:21 | argument corresponding to url | this value | main.go:77:25:77:39 | call to getTarget1 | redirect |
-| main.go:83:5:83:20 | ...!=... | main.go:87:9:87:14 | selection of Path : string | main.go:91:25:91:39 | call to getTarget2 | This is a check that $@, which flows into a $@, has a leading slash, but not that it does not have '/' or '\\' in its second position. | main.go:87:9:87:14 | selection of Path | this value | main.go:91:25:91:39 | call to getTarget2 | redirect |
+| BadRedirectCheck.go:4:23:4:37 | ...==... | BadRedirectCheck.go:3:18:3:22 | argument corresponding to redir | main.go:11:25:11:45 | call to sanitizeUrl | This is a check that $@, which flows into a $@, has a leading slash, but not that it does not have '/' or '\\' in its second position. | BadRedirectCheck.go:3:18:3:22 | argument corresponding to redir | this value | main.go:11:25:11:45 | call to sanitizeUrl | redirect |
+| BadRedirectCheck.go:4:23:4:37 | ...==... | main.go:10:18:10:25 | argument corresponding to redirect | main.go:11:25:11:45 | call to sanitizeUrl | This is a check that $@, which flows into a $@, has a leading slash, but not that it does not have '/' or '\\' in its second position. | main.go:10:18:10:25 | argument corresponding to redirect | this value | main.go:11:25:11:45 | call to sanitizeUrl | redirect |
+| cves.go:11:26:11:38 | ...==... | cves.go:14:23:14:25 | argument corresponding to url | cves.go:16:26:16:28 | url | This is a check that $@, which flows into a $@, has a leading slash, but not that it does not have '/' or '\\' in its second position. | cves.go:14:23:14:25 | argument corresponding to url | this value | cves.go:16:26:16:28 | url | redirect |
+| cves.go:34:6:34:37 | call to HasPrefix | cves.go:33:14:33:34 | call to Get | cves.go:37:25:37:32 | redirect | This is a check that $@, which flows into a $@, has a leading slash, but not that it does not have '/' or '\\' in its second position. | cves.go:33:14:33:34 | call to Get | this value | cves.go:37:25:37:32 | redirect | redirect |
+| cves.go:42:6:42:37 | call to HasPrefix | cves.go:41:14:41:34 | call to Get | cves.go:45:25:45:32 | redirect | This is a check that $@, which flows into a $@, has a leading slash, but not that it does not have '/' or '\\' in its second position. | cves.go:41:14:41:34 | call to Get | this value | cves.go:45:25:45:32 | redirect | redirect |
+| main.go:25:7:25:38 | call to HasPrefix | main.go:32:24:32:26 | argument corresponding to url | main.go:34:26:34:28 | url | This is a check that $@, which flows into a $@, has a leading slash, but not that it does not have '/' or '\\' in its second position. | main.go:32:24:32:26 | argument corresponding to url | this value | main.go:34:26:34:28 | url | redirect |
+| main.go:69:5:69:22 | ...!=... | main.go:68:17:68:24 | argument corresponding to redirect | main.go:77:25:77:39 | call to getTarget1 | This is a check that $@, which flows into a $@, has a leading slash, but not that it does not have '/' or '\\' in its second position. | main.go:68:17:68:24 | argument corresponding to redirect | this value | main.go:77:25:77:39 | call to getTarget1 | redirect |
+| main.go:69:5:69:22 | ...!=... | main.go:76:19:76:21 | argument corresponding to url | main.go:77:25:77:39 | call to getTarget1 | This is a check that $@, which flows into a $@, has a leading slash, but not that it does not have '/' or '\\' in its second position. | main.go:76:19:76:21 | argument corresponding to url | this value | main.go:77:25:77:39 | call to getTarget1 | redirect |
+| main.go:83:5:83:20 | ...!=... | main.go:87:9:87:14 | selection of Path | main.go:91:25:91:39 | call to getTarget2 | This is a check that $@, which flows into a $@, has a leading slash, but not that it does not have '/' or '\\' in its second position. | main.go:87:9:87:14 | selection of Path | this value | main.go:91:25:91:39 | call to getTarget2 | redirect |
diff --git a/go/ql/test/query-tests/Security/CWE-601/OpenUrlRedirect/OpenUrlRedirect.expected b/go/ql/test/query-tests/Security/CWE-601/OpenUrlRedirect/OpenUrlRedirect.expected
index 7cf22603fb1..f7e2677efef 100644
--- a/go/ql/test/query-tests/Security/CWE-601/OpenUrlRedirect/OpenUrlRedirect.expected
+++ b/go/ql/test/query-tests/Security/CWE-601/OpenUrlRedirect/OpenUrlRedirect.expected
@@ -1,125 +1,125 @@
 edges
-| OpenUrlRedirect.go:10:23:10:28 | selection of Form : Values | OpenUrlRedirect.go:10:23:10:42 | call to Get |
-| stdlib.go:13:13:13:18 | selection of Form : Values | stdlib.go:15:30:15:35 | target |
-| stdlib.go:22:13:22:18 | selection of Form : Values | stdlib.go:24:30:24:35 | target |
-| stdlib.go:31:13:31:18 | selection of Form : Values | stdlib.go:35:30:35:39 | ...+... |
-| stdlib.go:44:13:44:18 | selection of Form : Values | stdlib.go:46:23:46:28 | target |
-| stdlib.go:64:13:64:18 | selection of Form : Values | stdlib.go:67:23:67:40 | ...+... |
-| stdlib.go:89:13:89:18 | selection of Form : Values | stdlib.go:92:23:92:28 | target |
-| stdlib.go:107:54:107:54 | definition of r [pointer, URL, pointer] : URL | stdlib.go:112:4:112:4 | r [pointer, URL, pointer] : URL |
-| stdlib.go:107:54:107:54 | definition of r [pointer, URL, pointer] : URL | stdlib.go:112:4:112:4 | r [pointer, URL, pointer] : URL |
-| stdlib.go:107:54:107:54 | definition of r [pointer, URL] : pointer type | stdlib.go:112:4:112:4 | r [pointer, URL] : pointer type |
-| stdlib.go:107:54:107:54 | definition of r [pointer, URL] : pointer type | stdlib.go:112:4:112:4 | r [pointer, URL] : pointer type |
-| stdlib.go:107:54:107:54 | definition of r [pointer, URL] : pointer type | stdlib.go:113:24:113:24 | r [pointer, URL] : pointer type |
-| stdlib.go:107:54:107:54 | definition of r [pointer, URL] : pointer type | stdlib.go:113:24:113:24 | r [pointer, URL] : pointer type |
-| stdlib.go:112:4:112:4 | implicit dereference [URL, pointer] : URL | stdlib.go:107:54:107:54 | definition of r [pointer, URL, pointer] : URL |
-| stdlib.go:112:4:112:4 | implicit dereference [URL, pointer] : URL | stdlib.go:107:54:107:54 | definition of r [pointer, URL, pointer] : URL |
-| stdlib.go:112:4:112:4 | implicit dereference [URL, pointer] : URL | stdlib.go:112:4:112:8 | selection of URL [pointer] : URL |
-| stdlib.go:112:4:112:4 | implicit dereference [URL, pointer] : URL | stdlib.go:112:4:112:8 | selection of URL [pointer] : URL |
-| stdlib.go:112:4:112:4 | implicit dereference [URL] : pointer type | stdlib.go:107:54:107:54 | definition of r [pointer, URL] : pointer type |
-| stdlib.go:112:4:112:4 | implicit dereference [URL] : pointer type | stdlib.go:107:54:107:54 | definition of r [pointer, URL] : pointer type |
-| stdlib.go:112:4:112:4 | implicit dereference [URL] : pointer type | stdlib.go:112:4:112:8 | selection of URL : pointer type |
-| stdlib.go:112:4:112:4 | implicit dereference [URL] : pointer type | stdlib.go:112:4:112:8 | selection of URL : pointer type |
-| stdlib.go:112:4:112:4 | r [pointer, URL, pointer] : URL | stdlib.go:112:4:112:4 | implicit dereference [URL, pointer] : URL |
-| stdlib.go:112:4:112:4 | r [pointer, URL, pointer] : URL | stdlib.go:112:4:112:4 | implicit dereference [URL, pointer] : URL |
-| stdlib.go:112:4:112:4 | r [pointer, URL] : pointer type | stdlib.go:112:4:112:4 | implicit dereference [URL] : pointer type |
-| stdlib.go:112:4:112:4 | r [pointer, URL] : pointer type | stdlib.go:112:4:112:4 | implicit dereference [URL] : pointer type |
-| stdlib.go:112:4:112:8 | implicit dereference : URL | stdlib.go:112:4:112:8 | implicit dereference : URL |
-| stdlib.go:112:4:112:8 | implicit dereference : URL | stdlib.go:112:4:112:8 | implicit dereference : URL |
-| stdlib.go:112:4:112:8 | implicit dereference : URL | stdlib.go:112:4:112:8 | selection of URL : pointer type |
-| stdlib.go:112:4:112:8 | implicit dereference : URL | stdlib.go:112:4:112:8 | selection of URL : pointer type |
-| stdlib.go:112:4:112:8 | implicit dereference : URL | stdlib.go:112:4:112:8 | selection of URL [pointer] : URL |
-| stdlib.go:112:4:112:8 | implicit dereference : URL | stdlib.go:112:4:112:8 | selection of URL [pointer] : URL |
-| stdlib.go:112:4:112:8 | selection of URL : pointer type | stdlib.go:112:4:112:4 | implicit dereference [URL] : pointer type |
-| stdlib.go:112:4:112:8 | selection of URL : pointer type | stdlib.go:112:4:112:4 | implicit dereference [URL] : pointer type |
-| stdlib.go:112:4:112:8 | selection of URL : pointer type | stdlib.go:112:4:112:8 | implicit dereference : URL |
-| stdlib.go:112:4:112:8 | selection of URL : pointer type | stdlib.go:112:4:112:8 | implicit dereference : URL |
-| stdlib.go:112:4:112:8 | selection of URL : pointer type | stdlib.go:112:4:112:8 | selection of URL : pointer type |
-| stdlib.go:112:4:112:8 | selection of URL : pointer type | stdlib.go:112:4:112:8 | selection of URL : pointer type |
-| stdlib.go:112:4:112:8 | selection of URL [pointer] : URL | stdlib.go:112:4:112:4 | implicit dereference [URL, pointer] : URL |
-| stdlib.go:112:4:112:8 | selection of URL [pointer] : URL | stdlib.go:112:4:112:4 | implicit dereference [URL, pointer] : URL |
-| stdlib.go:112:4:112:8 | selection of URL [pointer] : URL | stdlib.go:112:4:112:8 | implicit dereference : URL |
-| stdlib.go:112:4:112:8 | selection of URL [pointer] : URL | stdlib.go:112:4:112:8 | implicit dereference : URL |
-| stdlib.go:113:24:113:24 | implicit dereference [URL] : pointer type | stdlib.go:113:24:113:28 | selection of URL : pointer type |
-| stdlib.go:113:24:113:24 | implicit dereference [URL] : pointer type | stdlib.go:113:24:113:28 | selection of URL : pointer type |
-| stdlib.go:113:24:113:24 | r [pointer, URL] : pointer type | stdlib.go:113:24:113:24 | implicit dereference [URL] : pointer type |
-| stdlib.go:113:24:113:24 | r [pointer, URL] : pointer type | stdlib.go:113:24:113:24 | implicit dereference [URL] : pointer type |
-| stdlib.go:113:24:113:28 | selection of URL : pointer type | stdlib.go:113:24:113:37 | call to String |
-| stdlib.go:113:24:113:28 | selection of URL : pointer type | stdlib.go:113:24:113:37 | call to String |
-| stdlib.go:146:13:146:18 | selection of Form : Values | stdlib.go:152:23:152:28 | target |
-| stdlib.go:159:11:159:15 | selection of URL : pointer type | stdlib.go:162:24:162:35 | call to String |
-| stdlib.go:159:11:159:15 | selection of URL : pointer type | stdlib.go:162:24:162:35 | call to String |
-| stdlib.go:173:35:173:39 | selection of URL : pointer type | stdlib.go:173:24:173:52 | ...+... |
-| stdlib.go:173:35:173:39 | selection of URL : pointer type | stdlib.go:173:24:173:52 | ...+... |
-| stdlib.go:182:13:182:33 | call to FormValue : string | stdlib.go:184:23:184:28 | target |
-| stdlib.go:190:36:190:56 | call to FormValue : string | stdlib.go:192:23:192:33 | selection of Path |
-| stdlib.go:190:36:190:56 | call to FormValue : string | stdlib.go:194:23:194:42 | call to EscapedPath |
+| OpenUrlRedirect.go:10:23:10:28 | selection of Form | OpenUrlRedirect.go:10:23:10:42 | call to Get |
+| stdlib.go:13:13:13:18 | selection of Form | stdlib.go:15:30:15:35 | target |
+| stdlib.go:22:13:22:18 | selection of Form | stdlib.go:24:30:24:35 | target |
+| stdlib.go:31:13:31:18 | selection of Form | stdlib.go:35:30:35:39 | ...+... |
+| stdlib.go:44:13:44:18 | selection of Form | stdlib.go:46:23:46:28 | target |
+| stdlib.go:64:13:64:18 | selection of Form | stdlib.go:67:23:67:40 | ...+... |
+| stdlib.go:89:13:89:18 | selection of Form | stdlib.go:92:23:92:28 | target |
+| stdlib.go:107:54:107:54 | definition of r [pointer, URL, pointer] | stdlib.go:112:4:112:4 | r [pointer, URL, pointer] |
+| stdlib.go:107:54:107:54 | definition of r [pointer, URL, pointer] | stdlib.go:112:4:112:4 | r [pointer, URL, pointer] |
+| stdlib.go:107:54:107:54 | definition of r [pointer, URL] | stdlib.go:112:4:112:4 | r [pointer, URL] |
+| stdlib.go:107:54:107:54 | definition of r [pointer, URL] | stdlib.go:112:4:112:4 | r [pointer, URL] |
+| stdlib.go:107:54:107:54 | definition of r [pointer, URL] | stdlib.go:113:24:113:24 | r [pointer, URL] |
+| stdlib.go:107:54:107:54 | definition of r [pointer, URL] | stdlib.go:113:24:113:24 | r [pointer, URL] |
+| stdlib.go:112:4:112:4 | implicit dereference [URL, pointer] | stdlib.go:107:54:107:54 | definition of r [pointer, URL, pointer] |
+| stdlib.go:112:4:112:4 | implicit dereference [URL, pointer] | stdlib.go:107:54:107:54 | definition of r [pointer, URL, pointer] |
+| stdlib.go:112:4:112:4 | implicit dereference [URL, pointer] | stdlib.go:112:4:112:8 | selection of URL [pointer] |
+| stdlib.go:112:4:112:4 | implicit dereference [URL, pointer] | stdlib.go:112:4:112:8 | selection of URL [pointer] |
+| stdlib.go:112:4:112:4 | implicit dereference [URL] | stdlib.go:107:54:107:54 | definition of r [pointer, URL] |
+| stdlib.go:112:4:112:4 | implicit dereference [URL] | stdlib.go:107:54:107:54 | definition of r [pointer, URL] |
+| stdlib.go:112:4:112:4 | implicit dereference [URL] | stdlib.go:112:4:112:8 | selection of URL |
+| stdlib.go:112:4:112:4 | implicit dereference [URL] | stdlib.go:112:4:112:8 | selection of URL |
+| stdlib.go:112:4:112:4 | r [pointer, URL, pointer] | stdlib.go:112:4:112:4 | implicit dereference [URL, pointer] |
+| stdlib.go:112:4:112:4 | r [pointer, URL, pointer] | stdlib.go:112:4:112:4 | implicit dereference [URL, pointer] |
+| stdlib.go:112:4:112:4 | r [pointer, URL] | stdlib.go:112:4:112:4 | implicit dereference [URL] |
+| stdlib.go:112:4:112:4 | r [pointer, URL] | stdlib.go:112:4:112:4 | implicit dereference [URL] |
+| stdlib.go:112:4:112:8 | implicit dereference | stdlib.go:112:4:112:8 | implicit dereference |
+| stdlib.go:112:4:112:8 | implicit dereference | stdlib.go:112:4:112:8 | implicit dereference |
+| stdlib.go:112:4:112:8 | implicit dereference | stdlib.go:112:4:112:8 | selection of URL |
+| stdlib.go:112:4:112:8 | implicit dereference | stdlib.go:112:4:112:8 | selection of URL |
+| stdlib.go:112:4:112:8 | implicit dereference | stdlib.go:112:4:112:8 | selection of URL [pointer] |
+| stdlib.go:112:4:112:8 | implicit dereference | stdlib.go:112:4:112:8 | selection of URL [pointer] |
+| stdlib.go:112:4:112:8 | selection of URL | stdlib.go:112:4:112:4 | implicit dereference [URL] |
+| stdlib.go:112:4:112:8 | selection of URL | stdlib.go:112:4:112:4 | implicit dereference [URL] |
+| stdlib.go:112:4:112:8 | selection of URL | stdlib.go:112:4:112:8 | implicit dereference |
+| stdlib.go:112:4:112:8 | selection of URL | stdlib.go:112:4:112:8 | implicit dereference |
+| stdlib.go:112:4:112:8 | selection of URL | stdlib.go:112:4:112:8 | selection of URL |
+| stdlib.go:112:4:112:8 | selection of URL | stdlib.go:112:4:112:8 | selection of URL |
+| stdlib.go:112:4:112:8 | selection of URL [pointer] | stdlib.go:112:4:112:4 | implicit dereference [URL, pointer] |
+| stdlib.go:112:4:112:8 | selection of URL [pointer] | stdlib.go:112:4:112:4 | implicit dereference [URL, pointer] |
+| stdlib.go:112:4:112:8 | selection of URL [pointer] | stdlib.go:112:4:112:8 | implicit dereference |
+| stdlib.go:112:4:112:8 | selection of URL [pointer] | stdlib.go:112:4:112:8 | implicit dereference |
+| stdlib.go:113:24:113:24 | implicit dereference [URL] | stdlib.go:113:24:113:28 | selection of URL |
+| stdlib.go:113:24:113:24 | implicit dereference [URL] | stdlib.go:113:24:113:28 | selection of URL |
+| stdlib.go:113:24:113:24 | r [pointer, URL] | stdlib.go:113:24:113:24 | implicit dereference [URL] |
+| stdlib.go:113:24:113:24 | r [pointer, URL] | stdlib.go:113:24:113:24 | implicit dereference [URL] |
+| stdlib.go:113:24:113:28 | selection of URL | stdlib.go:113:24:113:37 | call to String |
+| stdlib.go:113:24:113:28 | selection of URL | stdlib.go:113:24:113:37 | call to String |
+| stdlib.go:146:13:146:18 | selection of Form | stdlib.go:152:23:152:28 | target |
+| stdlib.go:159:11:159:15 | selection of URL | stdlib.go:162:24:162:35 | call to String |
+| stdlib.go:159:11:159:15 | selection of URL | stdlib.go:162:24:162:35 | call to String |
+| stdlib.go:173:35:173:39 | selection of URL | stdlib.go:173:24:173:52 | ...+... |
+| stdlib.go:173:35:173:39 | selection of URL | stdlib.go:173:24:173:52 | ...+... |
+| stdlib.go:182:13:182:33 | call to FormValue | stdlib.go:184:23:184:28 | target |
+| stdlib.go:190:36:190:56 | call to FormValue | stdlib.go:192:23:192:33 | selection of Path |
+| stdlib.go:190:36:190:56 | call to FormValue | stdlib.go:194:23:194:42 | call to EscapedPath |
 nodes
-| OpenUrlRedirect.go:10:23:10:28 | selection of Form : Values | semmle.label | selection of Form : Values |
+| OpenUrlRedirect.go:10:23:10:28 | selection of Form | semmle.label | selection of Form |
 | OpenUrlRedirect.go:10:23:10:42 | call to Get | semmle.label | call to Get |
-| stdlib.go:13:13:13:18 | selection of Form : Values | semmle.label | selection of Form : Values |
+| stdlib.go:13:13:13:18 | selection of Form | semmle.label | selection of Form |
 | stdlib.go:15:30:15:35 | target | semmle.label | target |
-| stdlib.go:22:13:22:18 | selection of Form : Values | semmle.label | selection of Form : Values |
+| stdlib.go:22:13:22:18 | selection of Form | semmle.label | selection of Form |
 | stdlib.go:24:30:24:35 | target | semmle.label | target |
-| stdlib.go:31:13:31:18 | selection of Form : Values | semmle.label | selection of Form : Values |
+| stdlib.go:31:13:31:18 | selection of Form | semmle.label | selection of Form |
 | stdlib.go:35:30:35:39 | ...+... | semmle.label | ...+... |
-| stdlib.go:44:13:44:18 | selection of Form : Values | semmle.label | selection of Form : Values |
+| stdlib.go:44:13:44:18 | selection of Form | semmle.label | selection of Form |
 | stdlib.go:46:23:46:28 | target | semmle.label | target |
-| stdlib.go:64:13:64:18 | selection of Form : Values | semmle.label | selection of Form : Values |
+| stdlib.go:64:13:64:18 | selection of Form | semmle.label | selection of Form |
 | stdlib.go:67:23:67:40 | ...+... | semmle.label | ...+... |
-| stdlib.go:89:13:89:18 | selection of Form : Values | semmle.label | selection of Form : Values |
+| stdlib.go:89:13:89:18 | selection of Form | semmle.label | selection of Form |
 | stdlib.go:92:23:92:28 | target | semmle.label | target |
-| stdlib.go:107:54:107:54 | definition of r [pointer, URL, pointer] : URL | semmle.label | definition of r [pointer, URL, pointer] : URL |
-| stdlib.go:107:54:107:54 | definition of r [pointer, URL, pointer] : URL | semmle.label | definition of r [pointer, URL, pointer] : URL |
-| stdlib.go:107:54:107:54 | definition of r [pointer, URL] : pointer type | semmle.label | definition of r [pointer, URL] : pointer type |
-| stdlib.go:107:54:107:54 | definition of r [pointer, URL] : pointer type | semmle.label | definition of r [pointer, URL] : pointer type |
-| stdlib.go:112:4:112:4 | implicit dereference [URL, pointer] : URL | semmle.label | implicit dereference [URL, pointer] : URL |
-| stdlib.go:112:4:112:4 | implicit dereference [URL, pointer] : URL | semmle.label | implicit dereference [URL, pointer] : URL |
-| stdlib.go:112:4:112:4 | implicit dereference [URL] : pointer type | semmle.label | implicit dereference [URL] : pointer type |
-| stdlib.go:112:4:112:4 | implicit dereference [URL] : pointer type | semmle.label | implicit dereference [URL] : pointer type |
-| stdlib.go:112:4:112:4 | r [pointer, URL, pointer] : URL | semmle.label | r [pointer, URL, pointer] : URL |
-| stdlib.go:112:4:112:4 | r [pointer, URL, pointer] : URL | semmle.label | r [pointer, URL, pointer] : URL |
-| stdlib.go:112:4:112:4 | r [pointer, URL] : pointer type | semmle.label | r [pointer, URL] : pointer type |
-| stdlib.go:112:4:112:4 | r [pointer, URL] : pointer type | semmle.label | r [pointer, URL] : pointer type |
-| stdlib.go:112:4:112:8 | implicit dereference : URL | semmle.label | implicit dereference : URL |
-| stdlib.go:112:4:112:8 | implicit dereference : URL | semmle.label | implicit dereference : URL |
-| stdlib.go:112:4:112:8 | selection of URL : pointer type | semmle.label | selection of URL : pointer type |
-| stdlib.go:112:4:112:8 | selection of URL : pointer type | semmle.label | selection of URL : pointer type |
-| stdlib.go:112:4:112:8 | selection of URL [pointer] : URL | semmle.label | selection of URL [pointer] : URL |
-| stdlib.go:112:4:112:8 | selection of URL [pointer] : URL | semmle.label | selection of URL [pointer] : URL |
-| stdlib.go:113:24:113:24 | implicit dereference [URL] : pointer type | semmle.label | implicit dereference [URL] : pointer type |
-| stdlib.go:113:24:113:24 | implicit dereference [URL] : pointer type | semmle.label | implicit dereference [URL] : pointer type |
-| stdlib.go:113:24:113:24 | r [pointer, URL] : pointer type | semmle.label | r [pointer, URL] : pointer type |
-| stdlib.go:113:24:113:24 | r [pointer, URL] : pointer type | semmle.label | r [pointer, URL] : pointer type |
-| stdlib.go:113:24:113:28 | selection of URL : pointer type | semmle.label | selection of URL : pointer type |
-| stdlib.go:113:24:113:28 | selection of URL : pointer type | semmle.label | selection of URL : pointer type |
+| stdlib.go:107:54:107:54 | definition of r [pointer, URL, pointer] | semmle.label | definition of r [pointer, URL, pointer] |
+| stdlib.go:107:54:107:54 | definition of r [pointer, URL, pointer] | semmle.label | definition of r [pointer, URL, pointer] |
+| stdlib.go:107:54:107:54 | definition of r [pointer, URL] | semmle.label | definition of r [pointer, URL] |
+| stdlib.go:107:54:107:54 | definition of r [pointer, URL] | semmle.label | definition of r [pointer, URL] |
+| stdlib.go:112:4:112:4 | implicit dereference [URL, pointer] | semmle.label | implicit dereference [URL, pointer] |
+| stdlib.go:112:4:112:4 | implicit dereference [URL, pointer] | semmle.label | implicit dereference [URL, pointer] |
+| stdlib.go:112:4:112:4 | implicit dereference [URL] | semmle.label | implicit dereference [URL] |
+| stdlib.go:112:4:112:4 | implicit dereference [URL] | semmle.label | implicit dereference [URL] |
+| stdlib.go:112:4:112:4 | r [pointer, URL, pointer] | semmle.label | r [pointer, URL, pointer] |
+| stdlib.go:112:4:112:4 | r [pointer, URL, pointer] | semmle.label | r [pointer, URL, pointer] |
+| stdlib.go:112:4:112:4 | r [pointer, URL] | semmle.label | r [pointer, URL] |
+| stdlib.go:112:4:112:4 | r [pointer, URL] | semmle.label | r [pointer, URL] |
+| stdlib.go:112:4:112:8 | implicit dereference | semmle.label | implicit dereference |
+| stdlib.go:112:4:112:8 | implicit dereference | semmle.label | implicit dereference |
+| stdlib.go:112:4:112:8 | selection of URL | semmle.label | selection of URL |
+| stdlib.go:112:4:112:8 | selection of URL | semmle.label | selection of URL |
+| stdlib.go:112:4:112:8 | selection of URL [pointer] | semmle.label | selection of URL [pointer] |
+| stdlib.go:112:4:112:8 | selection of URL [pointer] | semmle.label | selection of URL [pointer] |
+| stdlib.go:113:24:113:24 | implicit dereference [URL] | semmle.label | implicit dereference [URL] |
+| stdlib.go:113:24:113:24 | implicit dereference [URL] | semmle.label | implicit dereference [URL] |
+| stdlib.go:113:24:113:24 | r [pointer, URL] | semmle.label | r [pointer, URL] |
+| stdlib.go:113:24:113:24 | r [pointer, URL] | semmle.label | r [pointer, URL] |
+| stdlib.go:113:24:113:28 | selection of URL | semmle.label | selection of URL |
+| stdlib.go:113:24:113:28 | selection of URL | semmle.label | selection of URL |
 | stdlib.go:113:24:113:37 | call to String | semmle.label | call to String |
 | stdlib.go:113:24:113:37 | call to String | semmle.label | call to String |
-| stdlib.go:146:13:146:18 | selection of Form : Values | semmle.label | selection of Form : Values |
+| stdlib.go:146:13:146:18 | selection of Form | semmle.label | selection of Form |
 | stdlib.go:152:23:152:28 | target | semmle.label | target |
-| stdlib.go:159:11:159:15 | selection of URL : pointer type | semmle.label | selection of URL : pointer type |
-| stdlib.go:159:11:159:15 | selection of URL : pointer type | semmle.label | selection of URL : pointer type |
+| stdlib.go:159:11:159:15 | selection of URL | semmle.label | selection of URL |
+| stdlib.go:159:11:159:15 | selection of URL | semmle.label | selection of URL |
 | stdlib.go:162:24:162:35 | call to String | semmle.label | call to String |
 | stdlib.go:162:24:162:35 | call to String | semmle.label | call to String |
 | stdlib.go:173:24:173:52 | ...+... | semmle.label | ...+... |
 | stdlib.go:173:24:173:52 | ...+... | semmle.label | ...+... |
-| stdlib.go:173:35:173:39 | selection of URL : pointer type | semmle.label | selection of URL : pointer type |
-| stdlib.go:173:35:173:39 | selection of URL : pointer type | semmle.label | selection of URL : pointer type |
-| stdlib.go:182:13:182:33 | call to FormValue : string | semmle.label | call to FormValue : string |
+| stdlib.go:173:35:173:39 | selection of URL | semmle.label | selection of URL |
+| stdlib.go:173:35:173:39 | selection of URL | semmle.label | selection of URL |
+| stdlib.go:182:13:182:33 | call to FormValue | semmle.label | call to FormValue |
 | stdlib.go:184:23:184:28 | target | semmle.label | target |
-| stdlib.go:190:36:190:56 | call to FormValue : string | semmle.label | call to FormValue : string |
+| stdlib.go:190:36:190:56 | call to FormValue | semmle.label | call to FormValue |
 | stdlib.go:192:23:192:33 | selection of Path | semmle.label | selection of Path |
 | stdlib.go:194:23:194:42 | call to EscapedPath | semmle.label | call to EscapedPath |
 subpaths
 #select
-| OpenUrlRedirect.go:10:23:10:42 | call to Get | OpenUrlRedirect.go:10:23:10:28 | selection of Form : Values | OpenUrlRedirect.go:10:23:10:42 | call to Get | Untrusted URL redirection depends on a $@. | OpenUrlRedirect.go:10:23:10:28 | selection of Form | user-provided value |
-| stdlib.go:15:30:15:35 | target | stdlib.go:13:13:13:18 | selection of Form : Values | stdlib.go:15:30:15:35 | target | Untrusted URL redirection depends on a $@. | stdlib.go:13:13:13:18 | selection of Form | user-provided value |
-| stdlib.go:24:30:24:35 | target | stdlib.go:22:13:22:18 | selection of Form : Values | stdlib.go:24:30:24:35 | target | Untrusted URL redirection depends on a $@. | stdlib.go:22:13:22:18 | selection of Form | user-provided value |
-| stdlib.go:35:30:35:39 | ...+... | stdlib.go:31:13:31:18 | selection of Form : Values | stdlib.go:35:30:35:39 | ...+... | Untrusted URL redirection depends on a $@. | stdlib.go:31:13:31:18 | selection of Form | user-provided value |
-| stdlib.go:46:23:46:28 | target | stdlib.go:44:13:44:18 | selection of Form : Values | stdlib.go:46:23:46:28 | target | Untrusted URL redirection depends on a $@. | stdlib.go:44:13:44:18 | selection of Form | user-provided value |
-| stdlib.go:67:23:67:40 | ...+... | stdlib.go:64:13:64:18 | selection of Form : Values | stdlib.go:67:23:67:40 | ...+... | Untrusted URL redirection depends on a $@. | stdlib.go:64:13:64:18 | selection of Form | user-provided value |
-| stdlib.go:92:23:92:28 | target | stdlib.go:89:13:89:18 | selection of Form : Values | stdlib.go:92:23:92:28 | target | Untrusted URL redirection depends on a $@. | stdlib.go:89:13:89:18 | selection of Form | user-provided value |
-| stdlib.go:152:23:152:28 | target | stdlib.go:146:13:146:18 | selection of Form : Values | stdlib.go:152:23:152:28 | target | Untrusted URL redirection depends on a $@. | stdlib.go:146:13:146:18 | selection of Form | user-provided value |
-| stdlib.go:184:23:184:28 | target | stdlib.go:182:13:182:33 | call to FormValue : string | stdlib.go:184:23:184:28 | target | Untrusted URL redirection depends on a $@. | stdlib.go:182:13:182:33 | call to FormValue | user-provided value |
-| stdlib.go:192:23:192:33 | selection of Path | stdlib.go:190:36:190:56 | call to FormValue : string | stdlib.go:192:23:192:33 | selection of Path | Untrusted URL redirection depends on a $@. | stdlib.go:190:36:190:56 | call to FormValue | user-provided value |
-| stdlib.go:194:23:194:42 | call to EscapedPath | stdlib.go:190:36:190:56 | call to FormValue : string | stdlib.go:194:23:194:42 | call to EscapedPath | Untrusted URL redirection depends on a $@. | stdlib.go:190:36:190:56 | call to FormValue | user-provided value |
+| OpenUrlRedirect.go:10:23:10:42 | call to Get | OpenUrlRedirect.go:10:23:10:28 | selection of Form | OpenUrlRedirect.go:10:23:10:42 | call to Get | Untrusted URL redirection depends on a $@. | OpenUrlRedirect.go:10:23:10:28 | selection of Form | user-provided value |
+| stdlib.go:15:30:15:35 | target | stdlib.go:13:13:13:18 | selection of Form | stdlib.go:15:30:15:35 | target | Untrusted URL redirection depends on a $@. | stdlib.go:13:13:13:18 | selection of Form | user-provided value |
+| stdlib.go:24:30:24:35 | target | stdlib.go:22:13:22:18 | selection of Form | stdlib.go:24:30:24:35 | target | Untrusted URL redirection depends on a $@. | stdlib.go:22:13:22:18 | selection of Form | user-provided value |
+| stdlib.go:35:30:35:39 | ...+... | stdlib.go:31:13:31:18 | selection of Form | stdlib.go:35:30:35:39 | ...+... | Untrusted URL redirection depends on a $@. | stdlib.go:31:13:31:18 | selection of Form | user-provided value |
+| stdlib.go:46:23:46:28 | target | stdlib.go:44:13:44:18 | selection of Form | stdlib.go:46:23:46:28 | target | Untrusted URL redirection depends on a $@. | stdlib.go:44:13:44:18 | selection of Form | user-provided value |
+| stdlib.go:67:23:67:40 | ...+... | stdlib.go:64:13:64:18 | selection of Form | stdlib.go:67:23:67:40 | ...+... | Untrusted URL redirection depends on a $@. | stdlib.go:64:13:64:18 | selection of Form | user-provided value |
+| stdlib.go:92:23:92:28 | target | stdlib.go:89:13:89:18 | selection of Form | stdlib.go:92:23:92:28 | target | Untrusted URL redirection depends on a $@. | stdlib.go:89:13:89:18 | selection of Form | user-provided value |
+| stdlib.go:152:23:152:28 | target | stdlib.go:146:13:146:18 | selection of Form | stdlib.go:152:23:152:28 | target | Untrusted URL redirection depends on a $@. | stdlib.go:146:13:146:18 | selection of Form | user-provided value |
+| stdlib.go:184:23:184:28 | target | stdlib.go:182:13:182:33 | call to FormValue | stdlib.go:184:23:184:28 | target | Untrusted URL redirection depends on a $@. | stdlib.go:182:13:182:33 | call to FormValue | user-provided value |
+| stdlib.go:192:23:192:33 | selection of Path | stdlib.go:190:36:190:56 | call to FormValue | stdlib.go:192:23:192:33 | selection of Path | Untrusted URL redirection depends on a $@. | stdlib.go:190:36:190:56 | call to FormValue | user-provided value |
+| stdlib.go:194:23:194:42 | call to EscapedPath | stdlib.go:190:36:190:56 | call to FormValue | stdlib.go:194:23:194:42 | call to EscapedPath | Untrusted URL redirection depends on a $@. | stdlib.go:190:36:190:56 | call to FormValue | user-provided value |
diff --git a/go/ql/test/query-tests/Security/CWE-640/EmailInjection.expected b/go/ql/test/query-tests/Security/CWE-640/EmailInjection.expected
index 2061b253cdc..797d06f208e 100644
--- a/go/ql/test/query-tests/Security/CWE-640/EmailInjection.expected
+++ b/go/ql/test/query-tests/Security/CWE-640/EmailInjection.expected
@@ -1,44 +1,44 @@
 edges
-| EmailBad.go:9:10:9:17 | selection of Header : Header | EmailBad.go:12:56:12:67 | type conversion |
-| main.go:29:21:29:31 | call to Referer : string | main.go:31:57:31:78 | type conversion |
-| main.go:37:21:37:31 | call to Referer : string | main.go:40:3:40:7 | definition of write |
-| main.go:46:21:46:31 | call to Referer : string | main.go:52:46:52:59 | untrustedInput |
-| main.go:46:21:46:31 | call to Referer : string | main.go:53:52:53:65 | untrustedInput |
-| main.go:58:21:58:31 | call to Referer : string | main.go:63:16:63:22 | content |
-| main.go:68:21:68:31 | call to Referer : string | main.go:76:50:76:56 | content |
-| main.go:68:21:68:31 | call to Referer : string | main.go:76:59:76:65 | content |
-| main.go:68:21:68:31 | call to Referer : string | main.go:77:16:77:22 | content |
-| main.go:82:21:82:31 | call to Referer : string | main.go:89:37:89:50 | untrustedInput |
-| main.go:82:21:82:31 | call to Referer : string | main.go:93:16:93:23 | content2 |
+| EmailBad.go:9:10:9:17 | selection of Header | EmailBad.go:12:56:12:67 | type conversion |
+| main.go:29:21:29:31 | call to Referer | main.go:31:57:31:78 | type conversion |
+| main.go:37:21:37:31 | call to Referer | main.go:40:3:40:7 | definition of write |
+| main.go:46:21:46:31 | call to Referer | main.go:52:46:52:59 | untrustedInput |
+| main.go:46:21:46:31 | call to Referer | main.go:53:52:53:65 | untrustedInput |
+| main.go:58:21:58:31 | call to Referer | main.go:63:16:63:22 | content |
+| main.go:68:21:68:31 | call to Referer | main.go:76:50:76:56 | content |
+| main.go:68:21:68:31 | call to Referer | main.go:76:59:76:65 | content |
+| main.go:68:21:68:31 | call to Referer | main.go:77:16:77:22 | content |
+| main.go:82:21:82:31 | call to Referer | main.go:89:37:89:50 | untrustedInput |
+| main.go:82:21:82:31 | call to Referer | main.go:93:16:93:23 | content2 |
 nodes
-| EmailBad.go:9:10:9:17 | selection of Header : Header | semmle.label | selection of Header : Header |
+| EmailBad.go:9:10:9:17 | selection of Header | semmle.label | selection of Header |
 | EmailBad.go:12:56:12:67 | type conversion | semmle.label | type conversion |
-| main.go:29:21:29:31 | call to Referer : string | semmle.label | call to Referer : string |
+| main.go:29:21:29:31 | call to Referer | semmle.label | call to Referer |
 | main.go:31:57:31:78 | type conversion | semmle.label | type conversion |
-| main.go:37:21:37:31 | call to Referer : string | semmle.label | call to Referer : string |
+| main.go:37:21:37:31 | call to Referer | semmle.label | call to Referer |
 | main.go:40:3:40:7 | definition of write | semmle.label | definition of write |
-| main.go:46:21:46:31 | call to Referer : string | semmle.label | call to Referer : string |
+| main.go:46:21:46:31 | call to Referer | semmle.label | call to Referer |
 | main.go:52:46:52:59 | untrustedInput | semmle.label | untrustedInput |
 | main.go:53:52:53:65 | untrustedInput | semmle.label | untrustedInput |
-| main.go:58:21:58:31 | call to Referer : string | semmle.label | call to Referer : string |
+| main.go:58:21:58:31 | call to Referer | semmle.label | call to Referer |
 | main.go:63:16:63:22 | content | semmle.label | content |
-| main.go:68:21:68:31 | call to Referer : string | semmle.label | call to Referer : string |
+| main.go:68:21:68:31 | call to Referer | semmle.label | call to Referer |
 | main.go:76:50:76:56 | content | semmle.label | content |
 | main.go:76:59:76:65 | content | semmle.label | content |
 | main.go:77:16:77:22 | content | semmle.label | content |
-| main.go:82:21:82:31 | call to Referer : string | semmle.label | call to Referer : string |
+| main.go:82:21:82:31 | call to Referer | semmle.label | call to Referer |
 | main.go:89:37:89:50 | untrustedInput | semmle.label | untrustedInput |
 | main.go:93:16:93:23 | content2 | semmle.label | content2 |
 subpaths
 #select
-| EmailBad.go:12:56:12:67 | type conversion | EmailBad.go:9:10:9:17 | selection of Header : Header | EmailBad.go:12:56:12:67 | type conversion | Email content may contain $@. | EmailBad.go:9:10:9:17 | selection of Header | untrusted input |
-| main.go:31:57:31:78 | type conversion | main.go:29:21:29:31 | call to Referer : string | main.go:31:57:31:78 | type conversion | Email content may contain $@. | main.go:29:21:29:31 | call to Referer | untrusted input |
-| main.go:40:3:40:7 | definition of write | main.go:37:21:37:31 | call to Referer : string | main.go:40:3:40:7 | definition of write | Email content may contain $@. | main.go:37:21:37:31 | call to Referer | untrusted input |
-| main.go:52:46:52:59 | untrustedInput | main.go:46:21:46:31 | call to Referer : string | main.go:52:46:52:59 | untrustedInput | Email content may contain $@. | main.go:46:21:46:31 | call to Referer | untrusted input |
-| main.go:53:52:53:65 | untrustedInput | main.go:46:21:46:31 | call to Referer : string | main.go:53:52:53:65 | untrustedInput | Email content may contain $@. | main.go:46:21:46:31 | call to Referer | untrusted input |
-| main.go:63:16:63:22 | content | main.go:58:21:58:31 | call to Referer : string | main.go:63:16:63:22 | content | Email content may contain $@. | main.go:58:21:58:31 | call to Referer | untrusted input |
-| main.go:76:50:76:56 | content | main.go:68:21:68:31 | call to Referer : string | main.go:76:50:76:56 | content | Email content may contain $@. | main.go:68:21:68:31 | call to Referer | untrusted input |
-| main.go:76:59:76:65 | content | main.go:68:21:68:31 | call to Referer : string | main.go:76:59:76:65 | content | Email content may contain $@. | main.go:68:21:68:31 | call to Referer | untrusted input |
-| main.go:77:16:77:22 | content | main.go:68:21:68:31 | call to Referer : string | main.go:77:16:77:22 | content | Email content may contain $@. | main.go:68:21:68:31 | call to Referer | untrusted input |
-| main.go:89:37:89:50 | untrustedInput | main.go:82:21:82:31 | call to Referer : string | main.go:89:37:89:50 | untrustedInput | Email content may contain $@. | main.go:82:21:82:31 | call to Referer | untrusted input |
-| main.go:93:16:93:23 | content2 | main.go:82:21:82:31 | call to Referer : string | main.go:93:16:93:23 | content2 | Email content may contain $@. | main.go:82:21:82:31 | call to Referer | untrusted input |
+| EmailBad.go:12:56:12:67 | type conversion | EmailBad.go:9:10:9:17 | selection of Header | EmailBad.go:12:56:12:67 | type conversion | Email content may contain $@. | EmailBad.go:9:10:9:17 | selection of Header | untrusted input |
+| main.go:31:57:31:78 | type conversion | main.go:29:21:29:31 | call to Referer | main.go:31:57:31:78 | type conversion | Email content may contain $@. | main.go:29:21:29:31 | call to Referer | untrusted input |
+| main.go:40:3:40:7 | definition of write | main.go:37:21:37:31 | call to Referer | main.go:40:3:40:7 | definition of write | Email content may contain $@. | main.go:37:21:37:31 | call to Referer | untrusted input |
+| main.go:52:46:52:59 | untrustedInput | main.go:46:21:46:31 | call to Referer | main.go:52:46:52:59 | untrustedInput | Email content may contain $@. | main.go:46:21:46:31 | call to Referer | untrusted input |
+| main.go:53:52:53:65 | untrustedInput | main.go:46:21:46:31 | call to Referer | main.go:53:52:53:65 | untrustedInput | Email content may contain $@. | main.go:46:21:46:31 | call to Referer | untrusted input |
+| main.go:63:16:63:22 | content | main.go:58:21:58:31 | call to Referer | main.go:63:16:63:22 | content | Email content may contain $@. | main.go:58:21:58:31 | call to Referer | untrusted input |
+| main.go:76:50:76:56 | content | main.go:68:21:68:31 | call to Referer | main.go:76:50:76:56 | content | Email content may contain $@. | main.go:68:21:68:31 | call to Referer | untrusted input |
+| main.go:76:59:76:65 | content | main.go:68:21:68:31 | call to Referer | main.go:76:59:76:65 | content | Email content may contain $@. | main.go:68:21:68:31 | call to Referer | untrusted input |
+| main.go:77:16:77:22 | content | main.go:68:21:68:31 | call to Referer | main.go:77:16:77:22 | content | Email content may contain $@. | main.go:68:21:68:31 | call to Referer | untrusted input |
+| main.go:89:37:89:50 | untrustedInput | main.go:82:21:82:31 | call to Referer | main.go:89:37:89:50 | untrustedInput | Email content may contain $@. | main.go:82:21:82:31 | call to Referer | untrusted input |
+| main.go:93:16:93:23 | content2 | main.go:82:21:82:31 | call to Referer | main.go:93:16:93:23 | content2 | Email content may contain $@. | main.go:82:21:82:31 | call to Referer | untrusted input |
diff --git a/go/ql/test/query-tests/Security/CWE-643/XPathInjection.expected b/go/ql/test/query-tests/Security/CWE-643/XPathInjection.expected
index 081b1a2cdba..a391fe96b64 100644
--- a/go/ql/test/query-tests/Security/CWE-643/XPathInjection.expected
+++ b/go/ql/test/query-tests/Security/CWE-643/XPathInjection.expected
@@ -1,57 +1,57 @@
 edges
-| XPathInjection.go:13:14:13:19 | selection of Form : Values | XPathInjection.go:16:29:16:91 | ...+... |
-| tst.go:32:14:32:19 | selection of Form : Values | tst.go:35:23:35:85 | ...+... |
-| tst.go:32:14:32:19 | selection of Form : Values | tst.go:38:24:38:86 | ...+... |
-| tst.go:32:14:32:19 | selection of Form : Values | tst.go:41:24:41:82 | ...+... |
-| tst.go:46:14:46:19 | selection of Form : Values | tst.go:49:26:49:84 | ...+... |
-| tst.go:46:14:46:19 | selection of Form : Values | tst.go:52:29:52:87 | ...+... |
-| tst.go:46:14:46:19 | selection of Form : Values | tst.go:55:33:55:91 | ...+... |
-| tst.go:46:14:46:19 | selection of Form : Values | tst.go:58:30:58:88 | ...+... |
-| tst.go:63:14:63:19 | selection of Form : Values | tst.go:66:25:66:83 | ...+... |
-| tst.go:63:14:63:19 | selection of Form : Values | tst.go:69:28:69:86 | ...+... |
-| tst.go:63:14:63:19 | selection of Form : Values | tst.go:72:25:72:83 | ...+... |
-| tst.go:63:14:63:19 | selection of Form : Values | tst.go:75:34:75:92 | ...+... |
-| tst.go:63:14:63:19 | selection of Form : Values | tst.go:78:32:78:90 | ...+... |
-| tst.go:63:14:63:19 | selection of Form : Values | tst.go:81:29:81:87 | ...+... |
-| tst.go:63:14:63:19 | selection of Form : Values | tst.go:84:23:84:85 | ...+... |
-| tst.go:63:14:63:19 | selection of Form : Values | tst.go:87:22:87:84 | ...+... |
-| tst.go:92:14:92:19 | selection of Form : Values | tst.go:95:26:95:84 | ...+... |
-| tst.go:92:14:92:19 | selection of Form : Values | tst.go:98:29:98:87 | ...+... |
-| tst.go:92:14:92:19 | selection of Form : Values | tst.go:101:33:101:91 | ...+... |
-| tst.go:92:14:92:19 | selection of Form : Values | tst.go:104:30:104:88 | ...+... |
-| tst.go:109:14:109:19 | selection of Form : Values | tst.go:112:25:112:87 | ...+... |
-| tst.go:109:14:109:19 | selection of Form : Values | tst.go:115:26:115:88 | ...+... |
-| tst.go:120:14:120:19 | selection of Form : Values | tst.go:124:23:124:126 | ...+... |
-| tst.go:120:14:120:19 | selection of Form : Values | tst.go:127:24:127:127 | ...+... |
-| tst.go:120:14:120:19 | selection of Form : Values | tst.go:130:27:130:122 | ...+... |
-| tst.go:121:14:121:19 | selection of Form : Values | tst.go:124:23:124:126 | ...+... |
-| tst.go:121:14:121:19 | selection of Form : Values | tst.go:127:24:127:127 | ...+... |
-| tst.go:121:14:121:19 | selection of Form : Values | tst.go:130:27:130:122 | ...+... |
-| tst.go:138:14:138:19 | selection of Form : Values | tst.go:141:27:141:89 | ...+... |
-| tst.go:138:14:138:19 | selection of Form : Values | tst.go:144:28:144:90 | ...+... |
-| tst.go:149:14:149:19 | selection of Form : Values | tst.go:153:33:153:136 | ...+... |
-| tst.go:149:14:149:19 | selection of Form : Values | tst.go:156:18:156:121 | ...+... |
-| tst.go:149:14:149:19 | selection of Form : Values | tst.go:162:31:162:126 | ...+... |
-| tst.go:149:14:149:19 | selection of Form : Values | tst.go:171:21:171:116 | ...+... |
-| tst.go:149:14:149:19 | selection of Form : Values | tst.go:180:27:180:122 | ...+... |
-| tst.go:150:14:150:19 | selection of Form : Values | tst.go:153:33:153:136 | ...+... |
-| tst.go:150:14:150:19 | selection of Form : Values | tst.go:156:18:156:121 | ...+... |
-| tst.go:150:14:150:19 | selection of Form : Values | tst.go:162:31:162:126 | ...+... |
-| tst.go:150:14:150:19 | selection of Form : Values | tst.go:171:21:171:116 | ...+... |
-| tst.go:150:14:150:19 | selection of Form : Values | tst.go:180:27:180:122 | ...+... |
+| XPathInjection.go:13:14:13:19 | selection of Form | XPathInjection.go:16:29:16:91 | ...+... |
+| tst.go:32:14:32:19 | selection of Form | tst.go:35:23:35:85 | ...+... |
+| tst.go:32:14:32:19 | selection of Form | tst.go:38:24:38:86 | ...+... |
+| tst.go:32:14:32:19 | selection of Form | tst.go:41:24:41:82 | ...+... |
+| tst.go:46:14:46:19 | selection of Form | tst.go:49:26:49:84 | ...+... |
+| tst.go:46:14:46:19 | selection of Form | tst.go:52:29:52:87 | ...+... |
+| tst.go:46:14:46:19 | selection of Form | tst.go:55:33:55:91 | ...+... |
+| tst.go:46:14:46:19 | selection of Form | tst.go:58:30:58:88 | ...+... |
+| tst.go:63:14:63:19 | selection of Form | tst.go:66:25:66:83 | ...+... |
+| tst.go:63:14:63:19 | selection of Form | tst.go:69:28:69:86 | ...+... |
+| tst.go:63:14:63:19 | selection of Form | tst.go:72:25:72:83 | ...+... |
+| tst.go:63:14:63:19 | selection of Form | tst.go:75:34:75:92 | ...+... |
+| tst.go:63:14:63:19 | selection of Form | tst.go:78:32:78:90 | ...+... |
+| tst.go:63:14:63:19 | selection of Form | tst.go:81:29:81:87 | ...+... |
+| tst.go:63:14:63:19 | selection of Form | tst.go:84:23:84:85 | ...+... |
+| tst.go:63:14:63:19 | selection of Form | tst.go:87:22:87:84 | ...+... |
+| tst.go:92:14:92:19 | selection of Form | tst.go:95:26:95:84 | ...+... |
+| tst.go:92:14:92:19 | selection of Form | tst.go:98:29:98:87 | ...+... |
+| tst.go:92:14:92:19 | selection of Form | tst.go:101:33:101:91 | ...+... |
+| tst.go:92:14:92:19 | selection of Form | tst.go:104:30:104:88 | ...+... |
+| tst.go:109:14:109:19 | selection of Form | tst.go:112:25:112:87 | ...+... |
+| tst.go:109:14:109:19 | selection of Form | tst.go:115:26:115:88 | ...+... |
+| tst.go:120:14:120:19 | selection of Form | tst.go:124:23:124:126 | ...+... |
+| tst.go:120:14:120:19 | selection of Form | tst.go:127:24:127:127 | ...+... |
+| tst.go:120:14:120:19 | selection of Form | tst.go:130:27:130:122 | ...+... |
+| tst.go:121:14:121:19 | selection of Form | tst.go:124:23:124:126 | ...+... |
+| tst.go:121:14:121:19 | selection of Form | tst.go:127:24:127:127 | ...+... |
+| tst.go:121:14:121:19 | selection of Form | tst.go:130:27:130:122 | ...+... |
+| tst.go:138:14:138:19 | selection of Form | tst.go:141:27:141:89 | ...+... |
+| tst.go:138:14:138:19 | selection of Form | tst.go:144:28:144:90 | ...+... |
+| tst.go:149:14:149:19 | selection of Form | tst.go:153:33:153:136 | ...+... |
+| tst.go:149:14:149:19 | selection of Form | tst.go:156:18:156:121 | ...+... |
+| tst.go:149:14:149:19 | selection of Form | tst.go:162:31:162:126 | ...+... |
+| tst.go:149:14:149:19 | selection of Form | tst.go:171:21:171:116 | ...+... |
+| tst.go:149:14:149:19 | selection of Form | tst.go:180:27:180:122 | ...+... |
+| tst.go:150:14:150:19 | selection of Form | tst.go:153:33:153:136 | ...+... |
+| tst.go:150:14:150:19 | selection of Form | tst.go:156:18:156:121 | ...+... |
+| tst.go:150:14:150:19 | selection of Form | tst.go:162:31:162:126 | ...+... |
+| tst.go:150:14:150:19 | selection of Form | tst.go:171:21:171:116 | ...+... |
+| tst.go:150:14:150:19 | selection of Form | tst.go:180:27:180:122 | ...+... |
 nodes
-| XPathInjection.go:13:14:13:19 | selection of Form : Values | semmle.label | selection of Form : Values |
+| XPathInjection.go:13:14:13:19 | selection of Form | semmle.label | selection of Form |
 | XPathInjection.go:16:29:16:91 | ...+... | semmle.label | ...+... |
-| tst.go:32:14:32:19 | selection of Form : Values | semmle.label | selection of Form : Values |
+| tst.go:32:14:32:19 | selection of Form | semmle.label | selection of Form |
 | tst.go:35:23:35:85 | ...+... | semmle.label | ...+... |
 | tst.go:38:24:38:86 | ...+... | semmle.label | ...+... |
 | tst.go:41:24:41:82 | ...+... | semmle.label | ...+... |
-| tst.go:46:14:46:19 | selection of Form : Values | semmle.label | selection of Form : Values |
+| tst.go:46:14:46:19 | selection of Form | semmle.label | selection of Form |
 | tst.go:49:26:49:84 | ...+... | semmle.label | ...+... |
 | tst.go:52:29:52:87 | ...+... | semmle.label | ...+... |
 | tst.go:55:33:55:91 | ...+... | semmle.label | ...+... |
 | tst.go:58:30:58:88 | ...+... | semmle.label | ...+... |
-| tst.go:63:14:63:19 | selection of Form : Values | semmle.label | selection of Form : Values |
+| tst.go:63:14:63:19 | selection of Form | semmle.label | selection of Form |
 | tst.go:66:25:66:83 | ...+... | semmle.label | ...+... |
 | tst.go:69:28:69:86 | ...+... | semmle.label | ...+... |
 | tst.go:72:25:72:83 | ...+... | semmle.label | ...+... |
@@ -60,24 +60,24 @@ nodes
 | tst.go:81:29:81:87 | ...+... | semmle.label | ...+... |
 | tst.go:84:23:84:85 | ...+... | semmle.label | ...+... |
 | tst.go:87:22:87:84 | ...+... | semmle.label | ...+... |
-| tst.go:92:14:92:19 | selection of Form : Values | semmle.label | selection of Form : Values |
+| tst.go:92:14:92:19 | selection of Form | semmle.label | selection of Form |
 | tst.go:95:26:95:84 | ...+... | semmle.label | ...+... |
 | tst.go:98:29:98:87 | ...+... | semmle.label | ...+... |
 | tst.go:101:33:101:91 | ...+... | semmle.label | ...+... |
 | tst.go:104:30:104:88 | ...+... | semmle.label | ...+... |
-| tst.go:109:14:109:19 | selection of Form : Values | semmle.label | selection of Form : Values |
+| tst.go:109:14:109:19 | selection of Form | semmle.label | selection of Form |
 | tst.go:112:25:112:87 | ...+... | semmle.label | ...+... |
 | tst.go:115:26:115:88 | ...+... | semmle.label | ...+... |
-| tst.go:120:14:120:19 | selection of Form : Values | semmle.label | selection of Form : Values |
-| tst.go:121:14:121:19 | selection of Form : Values | semmle.label | selection of Form : Values |
+| tst.go:120:14:120:19 | selection of Form | semmle.label | selection of Form |
+| tst.go:121:14:121:19 | selection of Form | semmle.label | selection of Form |
 | tst.go:124:23:124:126 | ...+... | semmle.label | ...+... |
 | tst.go:127:24:127:127 | ...+... | semmle.label | ...+... |
 | tst.go:130:27:130:122 | ...+... | semmle.label | ...+... |
-| tst.go:138:14:138:19 | selection of Form : Values | semmle.label | selection of Form : Values |
+| tst.go:138:14:138:19 | selection of Form | semmle.label | selection of Form |
 | tst.go:141:27:141:89 | ...+... | semmle.label | ...+... |
 | tst.go:144:28:144:90 | ...+... | semmle.label | ...+... |
-| tst.go:149:14:149:19 | selection of Form : Values | semmle.label | selection of Form : Values |
-| tst.go:150:14:150:19 | selection of Form : Values | semmle.label | selection of Form : Values |
+| tst.go:149:14:149:19 | selection of Form | semmle.label | selection of Form |
+| tst.go:150:14:150:19 | selection of Form | semmle.label | selection of Form |
 | tst.go:153:33:153:136 | ...+... | semmle.label | ...+... |
 | tst.go:156:18:156:121 | ...+... | semmle.label | ...+... |
 | tst.go:162:31:162:126 | ...+... | semmle.label | ...+... |
@@ -85,43 +85,43 @@ nodes
 | tst.go:180:27:180:122 | ...+... | semmle.label | ...+... |
 subpaths
 #select
-| XPathInjection.go:16:29:16:91 | ...+... | XPathInjection.go:13:14:13:19 | selection of Form : Values | XPathInjection.go:16:29:16:91 | ...+... | XPath expression depends on a $@. | XPathInjection.go:13:14:13:19 | selection of Form | user-provided value |
-| tst.go:35:23:35:85 | ...+... | tst.go:32:14:32:19 | selection of Form : Values | tst.go:35:23:35:85 | ...+... | XPath expression depends on a $@. | tst.go:32:14:32:19 | selection of Form | user-provided value |
-| tst.go:38:24:38:86 | ...+... | tst.go:32:14:32:19 | selection of Form : Values | tst.go:38:24:38:86 | ...+... | XPath expression depends on a $@. | tst.go:32:14:32:19 | selection of Form | user-provided value |
-| tst.go:41:24:41:82 | ...+... | tst.go:32:14:32:19 | selection of Form : Values | tst.go:41:24:41:82 | ...+... | XPath expression depends on a $@. | tst.go:32:14:32:19 | selection of Form | user-provided value |
-| tst.go:49:26:49:84 | ...+... | tst.go:46:14:46:19 | selection of Form : Values | tst.go:49:26:49:84 | ...+... | XPath expression depends on a $@. | tst.go:46:14:46:19 | selection of Form | user-provided value |
-| tst.go:52:29:52:87 | ...+... | tst.go:46:14:46:19 | selection of Form : Values | tst.go:52:29:52:87 | ...+... | XPath expression depends on a $@. | tst.go:46:14:46:19 | selection of Form | user-provided value |
-| tst.go:55:33:55:91 | ...+... | tst.go:46:14:46:19 | selection of Form : Values | tst.go:55:33:55:91 | ...+... | XPath expression depends on a $@. | tst.go:46:14:46:19 | selection of Form | user-provided value |
-| tst.go:58:30:58:88 | ...+... | tst.go:46:14:46:19 | selection of Form : Values | tst.go:58:30:58:88 | ...+... | XPath expression depends on a $@. | tst.go:46:14:46:19 | selection of Form | user-provided value |
-| tst.go:66:25:66:83 | ...+... | tst.go:63:14:63:19 | selection of Form : Values | tst.go:66:25:66:83 | ...+... | XPath expression depends on a $@. | tst.go:63:14:63:19 | selection of Form | user-provided value |
-| tst.go:69:28:69:86 | ...+... | tst.go:63:14:63:19 | selection of Form : Values | tst.go:69:28:69:86 | ...+... | XPath expression depends on a $@. | tst.go:63:14:63:19 | selection of Form | user-provided value |
-| tst.go:72:25:72:83 | ...+... | tst.go:63:14:63:19 | selection of Form : Values | tst.go:72:25:72:83 | ...+... | XPath expression depends on a $@. | tst.go:63:14:63:19 | selection of Form | user-provided value |
-| tst.go:75:34:75:92 | ...+... | tst.go:63:14:63:19 | selection of Form : Values | tst.go:75:34:75:92 | ...+... | XPath expression depends on a $@. | tst.go:63:14:63:19 | selection of Form | user-provided value |
-| tst.go:78:32:78:90 | ...+... | tst.go:63:14:63:19 | selection of Form : Values | tst.go:78:32:78:90 | ...+... | XPath expression depends on a $@. | tst.go:63:14:63:19 | selection of Form | user-provided value |
-| tst.go:81:29:81:87 | ...+... | tst.go:63:14:63:19 | selection of Form : Values | tst.go:81:29:81:87 | ...+... | XPath expression depends on a $@. | tst.go:63:14:63:19 | selection of Form | user-provided value |
-| tst.go:84:23:84:85 | ...+... | tst.go:63:14:63:19 | selection of Form : Values | tst.go:84:23:84:85 | ...+... | XPath expression depends on a $@. | tst.go:63:14:63:19 | selection of Form | user-provided value |
-| tst.go:87:22:87:84 | ...+... | tst.go:63:14:63:19 | selection of Form : Values | tst.go:87:22:87:84 | ...+... | XPath expression depends on a $@. | tst.go:63:14:63:19 | selection of Form | user-provided value |
-| tst.go:95:26:95:84 | ...+... | tst.go:92:14:92:19 | selection of Form : Values | tst.go:95:26:95:84 | ...+... | XPath expression depends on a $@. | tst.go:92:14:92:19 | selection of Form | user-provided value |
-| tst.go:98:29:98:87 | ...+... | tst.go:92:14:92:19 | selection of Form : Values | tst.go:98:29:98:87 | ...+... | XPath expression depends on a $@. | tst.go:92:14:92:19 | selection of Form | user-provided value |
-| tst.go:101:33:101:91 | ...+... | tst.go:92:14:92:19 | selection of Form : Values | tst.go:101:33:101:91 | ...+... | XPath expression depends on a $@. | tst.go:92:14:92:19 | selection of Form | user-provided value |
-| tst.go:104:30:104:88 | ...+... | tst.go:92:14:92:19 | selection of Form : Values | tst.go:104:30:104:88 | ...+... | XPath expression depends on a $@. | tst.go:92:14:92:19 | selection of Form | user-provided value |
-| tst.go:112:25:112:87 | ...+... | tst.go:109:14:109:19 | selection of Form : Values | tst.go:112:25:112:87 | ...+... | XPath expression depends on a $@. | tst.go:109:14:109:19 | selection of Form | user-provided value |
-| tst.go:115:26:115:88 | ...+... | tst.go:109:14:109:19 | selection of Form : Values | tst.go:115:26:115:88 | ...+... | XPath expression depends on a $@. | tst.go:109:14:109:19 | selection of Form | user-provided value |
-| tst.go:124:23:124:126 | ...+... | tst.go:120:14:120:19 | selection of Form : Values | tst.go:124:23:124:126 | ...+... | XPath expression depends on a $@. | tst.go:120:14:120:19 | selection of Form | user-provided value |
-| tst.go:124:23:124:126 | ...+... | tst.go:121:14:121:19 | selection of Form : Values | tst.go:124:23:124:126 | ...+... | XPath expression depends on a $@. | tst.go:121:14:121:19 | selection of Form | user-provided value |
-| tst.go:127:24:127:127 | ...+... | tst.go:120:14:120:19 | selection of Form : Values | tst.go:127:24:127:127 | ...+... | XPath expression depends on a $@. | tst.go:120:14:120:19 | selection of Form | user-provided value |
-| tst.go:127:24:127:127 | ...+... | tst.go:121:14:121:19 | selection of Form : Values | tst.go:127:24:127:127 | ...+... | XPath expression depends on a $@. | tst.go:121:14:121:19 | selection of Form | user-provided value |
-| tst.go:130:27:130:122 | ...+... | tst.go:120:14:120:19 | selection of Form : Values | tst.go:130:27:130:122 | ...+... | XPath expression depends on a $@. | tst.go:120:14:120:19 | selection of Form | user-provided value |
-| tst.go:130:27:130:122 | ...+... | tst.go:121:14:121:19 | selection of Form : Values | tst.go:130:27:130:122 | ...+... | XPath expression depends on a $@. | tst.go:121:14:121:19 | selection of Form | user-provided value |
-| tst.go:141:27:141:89 | ...+... | tst.go:138:14:138:19 | selection of Form : Values | tst.go:141:27:141:89 | ...+... | XPath expression depends on a $@. | tst.go:138:14:138:19 | selection of Form | user-provided value |
-| tst.go:144:28:144:90 | ...+... | tst.go:138:14:138:19 | selection of Form : Values | tst.go:144:28:144:90 | ...+... | XPath expression depends on a $@. | tst.go:138:14:138:19 | selection of Form | user-provided value |
-| tst.go:153:33:153:136 | ...+... | tst.go:149:14:149:19 | selection of Form : Values | tst.go:153:33:153:136 | ...+... | XPath expression depends on a $@. | tst.go:149:14:149:19 | selection of Form | user-provided value |
-| tst.go:153:33:153:136 | ...+... | tst.go:150:14:150:19 | selection of Form : Values | tst.go:153:33:153:136 | ...+... | XPath expression depends on a $@. | tst.go:150:14:150:19 | selection of Form | user-provided value |
-| tst.go:156:18:156:121 | ...+... | tst.go:149:14:149:19 | selection of Form : Values | tst.go:156:18:156:121 | ...+... | XPath expression depends on a $@. | tst.go:149:14:149:19 | selection of Form | user-provided value |
-| tst.go:156:18:156:121 | ...+... | tst.go:150:14:150:19 | selection of Form : Values | tst.go:156:18:156:121 | ...+... | XPath expression depends on a $@. | tst.go:150:14:150:19 | selection of Form | user-provided value |
-| tst.go:162:31:162:126 | ...+... | tst.go:149:14:149:19 | selection of Form : Values | tst.go:162:31:162:126 | ...+... | XPath expression depends on a $@. | tst.go:149:14:149:19 | selection of Form | user-provided value |
-| tst.go:162:31:162:126 | ...+... | tst.go:150:14:150:19 | selection of Form : Values | tst.go:162:31:162:126 | ...+... | XPath expression depends on a $@. | tst.go:150:14:150:19 | selection of Form | user-provided value |
-| tst.go:171:21:171:116 | ...+... | tst.go:149:14:149:19 | selection of Form : Values | tst.go:171:21:171:116 | ...+... | XPath expression depends on a $@. | tst.go:149:14:149:19 | selection of Form | user-provided value |
-| tst.go:171:21:171:116 | ...+... | tst.go:150:14:150:19 | selection of Form : Values | tst.go:171:21:171:116 | ...+... | XPath expression depends on a $@. | tst.go:150:14:150:19 | selection of Form | user-provided value |
-| tst.go:180:27:180:122 | ...+... | tst.go:149:14:149:19 | selection of Form : Values | tst.go:180:27:180:122 | ...+... | XPath expression depends on a $@. | tst.go:149:14:149:19 | selection of Form | user-provided value |
-| tst.go:180:27:180:122 | ...+... | tst.go:150:14:150:19 | selection of Form : Values | tst.go:180:27:180:122 | ...+... | XPath expression depends on a $@. | tst.go:150:14:150:19 | selection of Form | user-provided value |
+| XPathInjection.go:16:29:16:91 | ...+... | XPathInjection.go:13:14:13:19 | selection of Form | XPathInjection.go:16:29:16:91 | ...+... | XPath expression depends on a $@. | XPathInjection.go:13:14:13:19 | selection of Form | user-provided value |
+| tst.go:35:23:35:85 | ...+... | tst.go:32:14:32:19 | selection of Form | tst.go:35:23:35:85 | ...+... | XPath expression depends on a $@. | tst.go:32:14:32:19 | selection of Form | user-provided value |
+| tst.go:38:24:38:86 | ...+... | tst.go:32:14:32:19 | selection of Form | tst.go:38:24:38:86 | ...+... | XPath expression depends on a $@. | tst.go:32:14:32:19 | selection of Form | user-provided value |
+| tst.go:41:24:41:82 | ...+... | tst.go:32:14:32:19 | selection of Form | tst.go:41:24:41:82 | ...+... | XPath expression depends on a $@. | tst.go:32:14:32:19 | selection of Form | user-provided value |
+| tst.go:49:26:49:84 | ...+... | tst.go:46:14:46:19 | selection of Form | tst.go:49:26:49:84 | ...+... | XPath expression depends on a $@. | tst.go:46:14:46:19 | selection of Form | user-provided value |
+| tst.go:52:29:52:87 | ...+... | tst.go:46:14:46:19 | selection of Form | tst.go:52:29:52:87 | ...+... | XPath expression depends on a $@. | tst.go:46:14:46:19 | selection of Form | user-provided value |
+| tst.go:55:33:55:91 | ...+... | tst.go:46:14:46:19 | selection of Form | tst.go:55:33:55:91 | ...+... | XPath expression depends on a $@. | tst.go:46:14:46:19 | selection of Form | user-provided value |
+| tst.go:58:30:58:88 | ...+... | tst.go:46:14:46:19 | selection of Form | tst.go:58:30:58:88 | ...+... | XPath expression depends on a $@. | tst.go:46:14:46:19 | selection of Form | user-provided value |
+| tst.go:66:25:66:83 | ...+... | tst.go:63:14:63:19 | selection of Form | tst.go:66:25:66:83 | ...+... | XPath expression depends on a $@. | tst.go:63:14:63:19 | selection of Form | user-provided value |
+| tst.go:69:28:69:86 | ...+... | tst.go:63:14:63:19 | selection of Form | tst.go:69:28:69:86 | ...+... | XPath expression depends on a $@. | tst.go:63:14:63:19 | selection of Form | user-provided value |
+| tst.go:72:25:72:83 | ...+... | tst.go:63:14:63:19 | selection of Form | tst.go:72:25:72:83 | ...+... | XPath expression depends on a $@. | tst.go:63:14:63:19 | selection of Form | user-provided value |
+| tst.go:75:34:75:92 | ...+... | tst.go:63:14:63:19 | selection of Form | tst.go:75:34:75:92 | ...+... | XPath expression depends on a $@. | tst.go:63:14:63:19 | selection of Form | user-provided value |
+| tst.go:78:32:78:90 | ...+... | tst.go:63:14:63:19 | selection of Form | tst.go:78:32:78:90 | ...+... | XPath expression depends on a $@. | tst.go:63:14:63:19 | selection of Form | user-provided value |
+| tst.go:81:29:81:87 | ...+... | tst.go:63:14:63:19 | selection of Form | tst.go:81:29:81:87 | ...+... | XPath expression depends on a $@. | tst.go:63:14:63:19 | selection of Form | user-provided value |
+| tst.go:84:23:84:85 | ...+... | tst.go:63:14:63:19 | selection of Form | tst.go:84:23:84:85 | ...+... | XPath expression depends on a $@. | tst.go:63:14:63:19 | selection of Form | user-provided value |
+| tst.go:87:22:87:84 | ...+... | tst.go:63:14:63:19 | selection of Form | tst.go:87:22:87:84 | ...+... | XPath expression depends on a $@. | tst.go:63:14:63:19 | selection of Form | user-provided value |
+| tst.go:95:26:95:84 | ...+... | tst.go:92:14:92:19 | selection of Form | tst.go:95:26:95:84 | ...+... | XPath expression depends on a $@. | tst.go:92:14:92:19 | selection of Form | user-provided value |
+| tst.go:98:29:98:87 | ...+... | tst.go:92:14:92:19 | selection of Form | tst.go:98:29:98:87 | ...+... | XPath expression depends on a $@. | tst.go:92:14:92:19 | selection of Form | user-provided value |
+| tst.go:101:33:101:91 | ...+... | tst.go:92:14:92:19 | selection of Form | tst.go:101:33:101:91 | ...+... | XPath expression depends on a $@. | tst.go:92:14:92:19 | selection of Form | user-provided value |
+| tst.go:104:30:104:88 | ...+... | tst.go:92:14:92:19 | selection of Form | tst.go:104:30:104:88 | ...+... | XPath expression depends on a $@. | tst.go:92:14:92:19 | selection of Form | user-provided value |
+| tst.go:112:25:112:87 | ...+... | tst.go:109:14:109:19 | selection of Form | tst.go:112:25:112:87 | ...+... | XPath expression depends on a $@. | tst.go:109:14:109:19 | selection of Form | user-provided value |
+| tst.go:115:26:115:88 | ...+... | tst.go:109:14:109:19 | selection of Form | tst.go:115:26:115:88 | ...+... | XPath expression depends on a $@. | tst.go:109:14:109:19 | selection of Form | user-provided value |
+| tst.go:124:23:124:126 | ...+... | tst.go:120:14:120:19 | selection of Form | tst.go:124:23:124:126 | ...+... | XPath expression depends on a $@. | tst.go:120:14:120:19 | selection of Form | user-provided value |
+| tst.go:124:23:124:126 | ...+... | tst.go:121:14:121:19 | selection of Form | tst.go:124:23:124:126 | ...+... | XPath expression depends on a $@. | tst.go:121:14:121:19 | selection of Form | user-provided value |
+| tst.go:127:24:127:127 | ...+... | tst.go:120:14:120:19 | selection of Form | tst.go:127:24:127:127 | ...+... | XPath expression depends on a $@. | tst.go:120:14:120:19 | selection of Form | user-provided value |
+| tst.go:127:24:127:127 | ...+... | tst.go:121:14:121:19 | selection of Form | tst.go:127:24:127:127 | ...+... | XPath expression depends on a $@. | tst.go:121:14:121:19 | selection of Form | user-provided value |
+| tst.go:130:27:130:122 | ...+... | tst.go:120:14:120:19 | selection of Form | tst.go:130:27:130:122 | ...+... | XPath expression depends on a $@. | tst.go:120:14:120:19 | selection of Form | user-provided value |
+| tst.go:130:27:130:122 | ...+... | tst.go:121:14:121:19 | selection of Form | tst.go:130:27:130:122 | ...+... | XPath expression depends on a $@. | tst.go:121:14:121:19 | selection of Form | user-provided value |
+| tst.go:141:27:141:89 | ...+... | tst.go:138:14:138:19 | selection of Form | tst.go:141:27:141:89 | ...+... | XPath expression depends on a $@. | tst.go:138:14:138:19 | selection of Form | user-provided value |
+| tst.go:144:28:144:90 | ...+... | tst.go:138:14:138:19 | selection of Form | tst.go:144:28:144:90 | ...+... | XPath expression depends on a $@. | tst.go:138:14:138:19 | selection of Form | user-provided value |
+| tst.go:153:33:153:136 | ...+... | tst.go:149:14:149:19 | selection of Form | tst.go:153:33:153:136 | ...+... | XPath expression depends on a $@. | tst.go:149:14:149:19 | selection of Form | user-provided value |
+| tst.go:153:33:153:136 | ...+... | tst.go:150:14:150:19 | selection of Form | tst.go:153:33:153:136 | ...+... | XPath expression depends on a $@. | tst.go:150:14:150:19 | selection of Form | user-provided value |
+| tst.go:156:18:156:121 | ...+... | tst.go:149:14:149:19 | selection of Form | tst.go:156:18:156:121 | ...+... | XPath expression depends on a $@. | tst.go:149:14:149:19 | selection of Form | user-provided value |
+| tst.go:156:18:156:121 | ...+... | tst.go:150:14:150:19 | selection of Form | tst.go:156:18:156:121 | ...+... | XPath expression depends on a $@. | tst.go:150:14:150:19 | selection of Form | user-provided value |
+| tst.go:162:31:162:126 | ...+... | tst.go:149:14:149:19 | selection of Form | tst.go:162:31:162:126 | ...+... | XPath expression depends on a $@. | tst.go:149:14:149:19 | selection of Form | user-provided value |
+| tst.go:162:31:162:126 | ...+... | tst.go:150:14:150:19 | selection of Form | tst.go:162:31:162:126 | ...+... | XPath expression depends on a $@. | tst.go:150:14:150:19 | selection of Form | user-provided value |
+| tst.go:171:21:171:116 | ...+... | tst.go:149:14:149:19 | selection of Form | tst.go:171:21:171:116 | ...+... | XPath expression depends on a $@. | tst.go:149:14:149:19 | selection of Form | user-provided value |
+| tst.go:171:21:171:116 | ...+... | tst.go:150:14:150:19 | selection of Form | tst.go:171:21:171:116 | ...+... | XPath expression depends on a $@. | tst.go:150:14:150:19 | selection of Form | user-provided value |
+| tst.go:180:27:180:122 | ...+... | tst.go:149:14:149:19 | selection of Form | tst.go:180:27:180:122 | ...+... | XPath expression depends on a $@. | tst.go:149:14:149:19 | selection of Form | user-provided value |
+| tst.go:180:27:180:122 | ...+... | tst.go:150:14:150:19 | selection of Form | tst.go:180:27:180:122 | ...+... | XPath expression depends on a $@. | tst.go:150:14:150:19 | selection of Form | user-provided value |
diff --git a/go/ql/test/query-tests/Security/CWE-918/RequestForgery.expected b/go/ql/test/query-tests/Security/CWE-918/RequestForgery.expected
index 7751054abbd..d6bb8bbf7af 100644
--- a/go/ql/test/query-tests/Security/CWE-918/RequestForgery.expected
+++ b/go/ql/test/query-tests/Security/CWE-918/RequestForgery.expected
@@ -1,75 +1,75 @@
 edges
-| RequestForgery.go:8:12:8:34 | call to FormValue : string | RequestForgery.go:11:24:11:65 | ...+... |
-| tst.go:10:13:10:35 | call to FormValue : string | tst.go:14:11:14:17 | tainted |
-| tst.go:10:13:10:35 | call to FormValue : string | tst.go:18:12:18:18 | tainted |
-| tst.go:10:13:10:35 | call to FormValue : string | tst.go:21:34:21:40 | tainted |
-| tst.go:10:13:10:35 | call to FormValue : string | tst.go:24:66:24:72 | tainted |
-| tst.go:10:13:10:35 | call to FormValue : string | tst.go:27:11:27:29 | ...+... |
-| tst.go:10:13:10:35 | call to FormValue : string | tst.go:29:11:29:40 | ...+... |
-| tst.go:10:13:10:35 | call to FormValue : string | tst.go:36:2:36:2 | implicit dereference : URL |
-| tst.go:10:13:10:35 | call to FormValue : string | tst.go:37:11:37:20 | call to String |
-| tst.go:35:2:35:2 | definition of u [pointer] : URL | tst.go:36:2:36:2 | u [pointer] : URL |
-| tst.go:36:2:36:2 | implicit dereference : URL | tst.go:35:2:35:2 | definition of u [pointer] : URL |
-| tst.go:36:2:36:2 | implicit dereference : URL | tst.go:36:2:36:2 | implicit dereference : URL |
-| tst.go:36:2:36:2 | implicit dereference : URL | tst.go:37:11:37:20 | call to String |
-| tst.go:36:2:36:2 | u [pointer] : URL | tst.go:36:2:36:2 | implicit dereference : URL |
-| websocket.go:60:21:60:31 | call to Referer : string | websocket.go:65:27:65:40 | untrustedInput |
-| websocket.go:74:21:74:31 | call to Referer : string | websocket.go:78:36:78:49 | untrustedInput |
-| websocket.go:88:21:88:31 | call to Referer : string | websocket.go:91:31:91:44 | untrustedInput |
-| websocket.go:107:21:107:31 | call to Referer : string | websocket.go:110:15:110:28 | untrustedInput |
-| websocket.go:126:21:126:31 | call to Referer : string | websocket.go:129:38:129:51 | untrustedInput |
-| websocket.go:154:21:154:31 | call to Referer : string | websocket.go:155:31:155:44 | untrustedInput |
-| websocket.go:160:21:160:31 | call to Referer : string | websocket.go:162:31:162:44 | untrustedInput |
-| websocket.go:195:21:195:31 | call to Referer : string | websocket.go:197:18:197:31 | untrustedInput |
-| websocket.go:202:21:202:31 | call to Referer : string | websocket.go:204:11:204:24 | untrustedInput |
+| RequestForgery.go:8:12:8:34 | call to FormValue | RequestForgery.go:11:24:11:65 | ...+... |
+| tst.go:10:13:10:35 | call to FormValue | tst.go:14:11:14:17 | tainted |
+| tst.go:10:13:10:35 | call to FormValue | tst.go:18:12:18:18 | tainted |
+| tst.go:10:13:10:35 | call to FormValue | tst.go:21:34:21:40 | tainted |
+| tst.go:10:13:10:35 | call to FormValue | tst.go:24:66:24:72 | tainted |
+| tst.go:10:13:10:35 | call to FormValue | tst.go:27:11:27:29 | ...+... |
+| tst.go:10:13:10:35 | call to FormValue | tst.go:29:11:29:40 | ...+... |
+| tst.go:10:13:10:35 | call to FormValue | tst.go:36:2:36:2 | implicit dereference |
+| tst.go:10:13:10:35 | call to FormValue | tst.go:37:11:37:20 | call to String |
+| tst.go:35:2:35:2 | definition of u [pointer] | tst.go:36:2:36:2 | u [pointer] |
+| tst.go:36:2:36:2 | implicit dereference | tst.go:35:2:35:2 | definition of u [pointer] |
+| tst.go:36:2:36:2 | implicit dereference | tst.go:36:2:36:2 | implicit dereference |
+| tst.go:36:2:36:2 | implicit dereference | tst.go:37:11:37:20 | call to String |
+| tst.go:36:2:36:2 | u [pointer] | tst.go:36:2:36:2 | implicit dereference |
+| websocket.go:60:21:60:31 | call to Referer | websocket.go:65:27:65:40 | untrustedInput |
+| websocket.go:74:21:74:31 | call to Referer | websocket.go:78:36:78:49 | untrustedInput |
+| websocket.go:88:21:88:31 | call to Referer | websocket.go:91:31:91:44 | untrustedInput |
+| websocket.go:107:21:107:31 | call to Referer | websocket.go:110:15:110:28 | untrustedInput |
+| websocket.go:126:21:126:31 | call to Referer | websocket.go:129:38:129:51 | untrustedInput |
+| websocket.go:154:21:154:31 | call to Referer | websocket.go:155:31:155:44 | untrustedInput |
+| websocket.go:160:21:160:31 | call to Referer | websocket.go:162:31:162:44 | untrustedInput |
+| websocket.go:195:21:195:31 | call to Referer | websocket.go:197:18:197:31 | untrustedInput |
+| websocket.go:202:21:202:31 | call to Referer | websocket.go:204:11:204:24 | untrustedInput |
 nodes
-| RequestForgery.go:8:12:8:34 | call to FormValue : string | semmle.label | call to FormValue : string |
+| RequestForgery.go:8:12:8:34 | call to FormValue | semmle.label | call to FormValue |
 | RequestForgery.go:11:24:11:65 | ...+... | semmle.label | ...+... |
-| tst.go:10:13:10:35 | call to FormValue : string | semmle.label | call to FormValue : string |
+| tst.go:10:13:10:35 | call to FormValue | semmle.label | call to FormValue |
 | tst.go:14:11:14:17 | tainted | semmle.label | tainted |
 | tst.go:18:12:18:18 | tainted | semmle.label | tainted |
 | tst.go:21:34:21:40 | tainted | semmle.label | tainted |
 | tst.go:24:66:24:72 | tainted | semmle.label | tainted |
 | tst.go:27:11:27:29 | ...+... | semmle.label | ...+... |
 | tst.go:29:11:29:40 | ...+... | semmle.label | ...+... |
-| tst.go:35:2:35:2 | definition of u [pointer] : URL | semmle.label | definition of u [pointer] : URL |
-| tst.go:36:2:36:2 | implicit dereference : URL | semmle.label | implicit dereference : URL |
-| tst.go:36:2:36:2 | u [pointer] : URL | semmle.label | u [pointer] : URL |
+| tst.go:35:2:35:2 | definition of u [pointer] | semmle.label | definition of u [pointer] |
+| tst.go:36:2:36:2 | implicit dereference | semmle.label | implicit dereference |
+| tst.go:36:2:36:2 | u [pointer] | semmle.label | u [pointer] |
 | tst.go:37:11:37:20 | call to String | semmle.label | call to String |
-| websocket.go:60:21:60:31 | call to Referer : string | semmle.label | call to Referer : string |
+| websocket.go:60:21:60:31 | call to Referer | semmle.label | call to Referer |
 | websocket.go:65:27:65:40 | untrustedInput | semmle.label | untrustedInput |
-| websocket.go:74:21:74:31 | call to Referer : string | semmle.label | call to Referer : string |
+| websocket.go:74:21:74:31 | call to Referer | semmle.label | call to Referer |
 | websocket.go:78:36:78:49 | untrustedInput | semmle.label | untrustedInput |
-| websocket.go:88:21:88:31 | call to Referer : string | semmle.label | call to Referer : string |
+| websocket.go:88:21:88:31 | call to Referer | semmle.label | call to Referer |
 | websocket.go:91:31:91:44 | untrustedInput | semmle.label | untrustedInput |
-| websocket.go:107:21:107:31 | call to Referer : string | semmle.label | call to Referer : string |
+| websocket.go:107:21:107:31 | call to Referer | semmle.label | call to Referer |
 | websocket.go:110:15:110:28 | untrustedInput | semmle.label | untrustedInput |
-| websocket.go:126:21:126:31 | call to Referer : string | semmle.label | call to Referer : string |
+| websocket.go:126:21:126:31 | call to Referer | semmle.label | call to Referer |
 | websocket.go:129:38:129:51 | untrustedInput | semmle.label | untrustedInput |
-| websocket.go:154:21:154:31 | call to Referer : string | semmle.label | call to Referer : string |
+| websocket.go:154:21:154:31 | call to Referer | semmle.label | call to Referer |
 | websocket.go:155:31:155:44 | untrustedInput | semmle.label | untrustedInput |
-| websocket.go:160:21:160:31 | call to Referer : string | semmle.label | call to Referer : string |
+| websocket.go:160:21:160:31 | call to Referer | semmle.label | call to Referer |
 | websocket.go:162:31:162:44 | untrustedInput | semmle.label | untrustedInput |
-| websocket.go:195:21:195:31 | call to Referer : string | semmle.label | call to Referer : string |
+| websocket.go:195:21:195:31 | call to Referer | semmle.label | call to Referer |
 | websocket.go:197:18:197:31 | untrustedInput | semmle.label | untrustedInput |
-| websocket.go:202:21:202:31 | call to Referer : string | semmle.label | call to Referer : string |
+| websocket.go:202:21:202:31 | call to Referer | semmle.label | call to Referer |
 | websocket.go:204:11:204:24 | untrustedInput | semmle.label | untrustedInput |
 subpaths
 #select
-| RequestForgery.go:11:15:11:66 | call to Get | RequestForgery.go:8:12:8:34 | call to FormValue : string | RequestForgery.go:11:24:11:65 | ...+... | The $@ of this request depends on a $@. | RequestForgery.go:11:24:11:65 | ...+... | URL | RequestForgery.go:8:12:8:34 | call to FormValue : string | user-provided value |
-| tst.go:14:2:14:18 | call to Get | tst.go:10:13:10:35 | call to FormValue : string | tst.go:14:11:14:17 | tainted | The $@ of this request depends on a $@. | tst.go:14:11:14:17 | tainted | URL | tst.go:10:13:10:35 | call to FormValue : string | user-provided value |
-| tst.go:18:2:18:38 | call to Post | tst.go:10:13:10:35 | call to FormValue : string | tst.go:18:12:18:18 | tainted | The $@ of this request depends on a $@. | tst.go:18:12:18:18 | tainted | URL | tst.go:10:13:10:35 | call to FormValue : string | user-provided value |
-| tst.go:22:2:22:14 | call to Do | tst.go:10:13:10:35 | call to FormValue : string | tst.go:21:34:21:40 | tainted | The $@ of this request depends on a $@. | tst.go:21:34:21:40 | tainted | URL | tst.go:10:13:10:35 | call to FormValue : string | user-provided value |
-| tst.go:25:2:25:14 | call to Do | tst.go:10:13:10:35 | call to FormValue : string | tst.go:24:66:24:72 | tainted | The $@ of this request depends on a $@. | tst.go:24:66:24:72 | tainted | URL | tst.go:10:13:10:35 | call to FormValue : string | user-provided value |
-| tst.go:27:2:27:30 | call to Get | tst.go:10:13:10:35 | call to FormValue : string | tst.go:27:11:27:29 | ...+... | The $@ of this request depends on a $@. | tst.go:27:11:27:29 | ...+... | URL | tst.go:10:13:10:35 | call to FormValue : string | user-provided value |
-| tst.go:29:2:29:41 | call to Get | tst.go:10:13:10:35 | call to FormValue : string | tst.go:29:11:29:40 | ...+... | The $@ of this request depends on a $@. | tst.go:29:11:29:40 | ...+... | URL | tst.go:10:13:10:35 | call to FormValue : string | user-provided value |
-| tst.go:37:2:37:21 | call to Get | tst.go:10:13:10:35 | call to FormValue : string | tst.go:37:11:37:20 | call to String | The $@ of this request depends on a $@. | tst.go:37:11:37:20 | call to String | URL | tst.go:10:13:10:35 | call to FormValue : string | user-provided value |
-| websocket.go:65:12:65:53 | call to Dial | websocket.go:60:21:60:31 | call to Referer : string | websocket.go:65:27:65:40 | untrustedInput | The $@ of this request depends on a $@. | websocket.go:65:27:65:40 | untrustedInput | WebSocket URL | websocket.go:60:21:60:31 | call to Referer : string | user-provided value |
-| websocket.go:79:13:79:40 | call to DialConfig | websocket.go:74:21:74:31 | call to Referer : string | websocket.go:78:36:78:49 | untrustedInput | The $@ of this request depends on a $@. | websocket.go:78:36:78:49 | untrustedInput | WebSocket URL | websocket.go:74:21:74:31 | call to Referer : string | user-provided value |
-| websocket.go:91:3:91:50 | call to Dial | websocket.go:88:21:88:31 | call to Referer : string | websocket.go:91:31:91:44 | untrustedInput | The $@ of this request depends on a $@. | websocket.go:91:31:91:44 | untrustedInput | WebSocket URL | websocket.go:88:21:88:31 | call to Referer : string | user-provided value |
-| websocket.go:110:3:110:39 | call to Dial | websocket.go:107:21:107:31 | call to Referer : string | websocket.go:110:15:110:28 | untrustedInput | The $@ of this request depends on a $@. | websocket.go:110:15:110:28 | untrustedInput | WebSocket URL | websocket.go:107:21:107:31 | call to Referer : string | user-provided value |
-| websocket.go:129:3:129:62 | call to DialContext | websocket.go:126:21:126:31 | call to Referer : string | websocket.go:129:38:129:51 | untrustedInput | The $@ of this request depends on a $@. | websocket.go:129:38:129:51 | untrustedInput | WebSocket URL | websocket.go:126:21:126:31 | call to Referer : string | user-provided value |
-| websocket.go:155:3:155:45 | call to Dial | websocket.go:154:21:154:31 | call to Referer : string | websocket.go:155:31:155:44 | untrustedInput | The $@ of this request depends on a $@. | websocket.go:155:31:155:44 | untrustedInput | WebSocket URL | websocket.go:154:21:154:31 | call to Referer : string | user-provided value |
-| websocket.go:162:3:162:45 | call to Dial | websocket.go:160:21:160:31 | call to Referer : string | websocket.go:162:31:162:44 | untrustedInput | The $@ of this request depends on a $@. | websocket.go:162:31:162:44 | untrustedInput | WebSocket URL | websocket.go:160:21:160:31 | call to Referer : string | user-provided value |
-| websocket.go:197:3:197:32 | call to BuildProxy | websocket.go:195:21:195:31 | call to Referer : string | websocket.go:197:18:197:31 | untrustedInput | The $@ of this request depends on a $@. | websocket.go:197:18:197:31 | untrustedInput | WebSocket URL | websocket.go:195:21:195:31 | call to Referer : string | user-provided value |
-| websocket.go:204:3:204:25 | call to New | websocket.go:202:21:202:31 | call to Referer : string | websocket.go:204:11:204:24 | untrustedInput | The $@ of this request depends on a $@. | websocket.go:204:11:204:24 | untrustedInput | WebSocket URL | websocket.go:202:21:202:31 | call to Referer : string | user-provided value |
+| RequestForgery.go:11:15:11:66 | call to Get | RequestForgery.go:8:12:8:34 | call to FormValue | RequestForgery.go:11:24:11:65 | ...+... | The $@ of this request depends on a $@. | RequestForgery.go:11:24:11:65 | ...+... | URL | RequestForgery.go:8:12:8:34 | call to FormValue | user-provided value |
+| tst.go:14:2:14:18 | call to Get | tst.go:10:13:10:35 | call to FormValue | tst.go:14:11:14:17 | tainted | The $@ of this request depends on a $@. | tst.go:14:11:14:17 | tainted | URL | tst.go:10:13:10:35 | call to FormValue | user-provided value |
+| tst.go:18:2:18:38 | call to Post | tst.go:10:13:10:35 | call to FormValue | tst.go:18:12:18:18 | tainted | The $@ of this request depends on a $@. | tst.go:18:12:18:18 | tainted | URL | tst.go:10:13:10:35 | call to FormValue | user-provided value |
+| tst.go:22:2:22:14 | call to Do | tst.go:10:13:10:35 | call to FormValue | tst.go:21:34:21:40 | tainted | The $@ of this request depends on a $@. | tst.go:21:34:21:40 | tainted | URL | tst.go:10:13:10:35 | call to FormValue | user-provided value |
+| tst.go:25:2:25:14 | call to Do | tst.go:10:13:10:35 | call to FormValue | tst.go:24:66:24:72 | tainted | The $@ of this request depends on a $@. | tst.go:24:66:24:72 | tainted | URL | tst.go:10:13:10:35 | call to FormValue | user-provided value |
+| tst.go:27:2:27:30 | call to Get | tst.go:10:13:10:35 | call to FormValue | tst.go:27:11:27:29 | ...+... | The $@ of this request depends on a $@. | tst.go:27:11:27:29 | ...+... | URL | tst.go:10:13:10:35 | call to FormValue | user-provided value |
+| tst.go:29:2:29:41 | call to Get | tst.go:10:13:10:35 | call to FormValue | tst.go:29:11:29:40 | ...+... | The $@ of this request depends on a $@. | tst.go:29:11:29:40 | ...+... | URL | tst.go:10:13:10:35 | call to FormValue | user-provided value |
+| tst.go:37:2:37:21 | call to Get | tst.go:10:13:10:35 | call to FormValue | tst.go:37:11:37:20 | call to String | The $@ of this request depends on a $@. | tst.go:37:11:37:20 | call to String | URL | tst.go:10:13:10:35 | call to FormValue | user-provided value |
+| websocket.go:65:12:65:53 | call to Dial | websocket.go:60:21:60:31 | call to Referer | websocket.go:65:27:65:40 | untrustedInput | The $@ of this request depends on a $@. | websocket.go:65:27:65:40 | untrustedInput | WebSocket URL | websocket.go:60:21:60:31 | call to Referer | user-provided value |
+| websocket.go:79:13:79:40 | call to DialConfig | websocket.go:74:21:74:31 | call to Referer | websocket.go:78:36:78:49 | untrustedInput | The $@ of this request depends on a $@. | websocket.go:78:36:78:49 | untrustedInput | WebSocket URL | websocket.go:74:21:74:31 | call to Referer | user-provided value |
+| websocket.go:91:3:91:50 | call to Dial | websocket.go:88:21:88:31 | call to Referer | websocket.go:91:31:91:44 | untrustedInput | The $@ of this request depends on a $@. | websocket.go:91:31:91:44 | untrustedInput | WebSocket URL | websocket.go:88:21:88:31 | call to Referer | user-provided value |
+| websocket.go:110:3:110:39 | call to Dial | websocket.go:107:21:107:31 | call to Referer | websocket.go:110:15:110:28 | untrustedInput | The $@ of this request depends on a $@. | websocket.go:110:15:110:28 | untrustedInput | WebSocket URL | websocket.go:107:21:107:31 | call to Referer | user-provided value |
+| websocket.go:129:3:129:62 | call to DialContext | websocket.go:126:21:126:31 | call to Referer | websocket.go:129:38:129:51 | untrustedInput | The $@ of this request depends on a $@. | websocket.go:129:38:129:51 | untrustedInput | WebSocket URL | websocket.go:126:21:126:31 | call to Referer | user-provided value |
+| websocket.go:155:3:155:45 | call to Dial | websocket.go:154:21:154:31 | call to Referer | websocket.go:155:31:155:44 | untrustedInput | The $@ of this request depends on a $@. | websocket.go:155:31:155:44 | untrustedInput | WebSocket URL | websocket.go:154:21:154:31 | call to Referer | user-provided value |
+| websocket.go:162:3:162:45 | call to Dial | websocket.go:160:21:160:31 | call to Referer | websocket.go:162:31:162:44 | untrustedInput | The $@ of this request depends on a $@. | websocket.go:162:31:162:44 | untrustedInput | WebSocket URL | websocket.go:160:21:160:31 | call to Referer | user-provided value |
+| websocket.go:197:3:197:32 | call to BuildProxy | websocket.go:195:21:195:31 | call to Referer | websocket.go:197:18:197:31 | untrustedInput | The $@ of this request depends on a $@. | websocket.go:197:18:197:31 | untrustedInput | WebSocket URL | websocket.go:195:21:195:31 | call to Referer | user-provided value |
+| websocket.go:204:3:204:25 | call to New | websocket.go:202:21:202:31 | call to Referer | websocket.go:204:11:204:24 | untrustedInput | The $@ of this request depends on a $@. | websocket.go:204:11:204:24 | untrustedInput | WebSocket URL | websocket.go:202:21:202:31 | call to Referer | user-provided value |

From 4cf7299d795c1f4e5fb6d10a9b3648dddfa4cb80 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Alvaro=20Mu=C3=B1oz?= <pwntester@github.com>
Date: Wed, 14 Dec 2022 15:41:53 +0100
Subject: [PATCH 1363/1420] restore Spife.qll to working status

---
 .../semmle/javascript/frameworks/Spife.qll    | 31 ++++++++++++-------
 1 file changed, 19 insertions(+), 12 deletions(-)

diff --git a/javascript/ql/lib/semmle/javascript/frameworks/Spife.qll b/javascript/ql/lib/semmle/javascript/frameworks/Spife.qll
index a32accffd48..cf1202fbe09 100644
--- a/javascript/ql/lib/semmle/javascript/frameworks/Spife.qll
+++ b/javascript/ql/lib/semmle/javascript/frameworks/Spife.qll
@@ -9,23 +9,32 @@ import semmle.javascript.frameworks.HTTP
  * Provides classes for working with [Spife](https://github.com/npm/spife) applications.
  */
 module Spife {
+  private class TaggedTemplateEntryPoint extends API::EntryPoint {
+    TaggedTemplateEntryPoint() { this = "TaggedTemplateEntryPoint" }
+
+    override DataFlow::SourceNode getASource() { result.asExpr() instanceof TaggedTemplateExpr }
+  }
+
   /**
    * A call to a Spife method that sets up a route.
    */
-  private class RouteSetup extends DataFlow::CallNode, Http::Servers::StandardRouteSetup {
+  private class RouteSetup extends API::CallNode, Http::Servers::StandardRouteSetup {
     TaggedTemplateExpr template;
 
     RouteSetup() {
-      this.getCalleeNode().asExpr() = template and
-      API::moduleImport(["@npm/spife/routing", "spife/routing"])
-          .asSource()
-          .flowsToExpr(template.getTag())
+      exists(CallExpr templateCall |
+        this.getCalleeNode().asExpr() = template and
+        API::moduleImport(["@npm/spife/routing", "spife/routing"])
+            .asSource()
+            .flowsToExpr(template.getTag()) and
+        templateCall.getAChild() = template
+      )
     }
 
     private string getRoutePattern() {
       // Concatenate the constant parts of the expression
       result =
-        strictconcat(Expr e, int i |
+        concat(Expr e, int i |
           e = template.getTemplate().getElement(i) and exists(e.getStringValue())
         |
           e.getStringValue() order by i
@@ -44,11 +53,9 @@ module Spife {
       )
     }
 
-    DataFlow::Node getHandlerByName(string name) {
-      result = DataFlow::parameterNode(this.getACallee().getParameter(0)).getAPropertyRead(name)
-    }
+    API::Node getHandlerByName(string name) { result = this.getParameter(0).getMember(name) }
 
-    DataFlow::Node getHandlerByRoute(string method, string path) {
+    API::Node getHandlerByRoute(string method, string path) {
       exists(string handlerName |
         this.hasLine(method, path, handlerName) and
         result = this.getHandlerByName(handlerName)
@@ -56,10 +63,10 @@ module Spife {
     }
 
     override DataFlow::SourceNode getARouteHandler() {
-      result = this.getHandlerByRoute(_, _).getALocalSource().(DataFlow::FunctionNode)
+      result = this.getHandlerByRoute(_, _).getAValueReachingSink().(DataFlow::FunctionNode)
       or
       exists(DataFlow::MethodCallNode validation |
-        validation = this.getHandlerByRoute(_, _).getALocalSource() and
+        validation = this.getHandlerByRoute(_, _).getAValueReachingSink() and
         result = validation.getArgument(1).getAFunctionValue()
       )
     }

From 818c2da1aa255b0bd20937a9538d4bd25613ec31 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Alvaro=20Mu=C3=B1oz?= <pwntester@github.com>
Date: Wed, 14 Dec 2022 15:42:27 +0100
Subject: [PATCH 1364/1420] fix Spife tests (without heuristics)

---
 .../ql/test/library-tests/frameworks/Spife/lib/views/index.js | 2 +-
 .../ql/test/library-tests/frameworks/Spife/tests.expected     | 4 ----
 javascript/ql/test/library-tests/frameworks/Spife/tests.ql    | 1 -
 3 files changed, 1 insertion(+), 6 deletions(-)

diff --git a/javascript/ql/test/library-tests/frameworks/Spife/lib/views/index.js b/javascript/ql/test/library-tests/frameworks/Spife/lib/views/index.js
index 3f8706f46b3..51fe2622603 100644
--- a/javascript/ql/test/library-tests/frameworks/Spife/lib/views/index.js
+++ b/javascript/ql/test/library-tests/frameworks/Spife/lib/views/index.js
@@ -80,7 +80,7 @@ function test2(req, context) { // test: handler
 }
 
 function test3(req, context) { // test: candidateHandler
-  return reply('<p>' + req.query.name + '</p>') // test: source, stackTraceExposureSink, !xssSink, !xss
+  return reply('<p>' + req.query.name + '</p>')
 }
 
 function test4(req, context) { // test: handler
diff --git a/javascript/ql/test/library-tests/frameworks/Spife/tests.expected b/javascript/ql/test/library-tests/frameworks/Spife/tests.expected
index 9f5a8b65307..e264b573792 100644
--- a/javascript/ql/test/library-tests/frameworks/Spife/tests.expected
+++ b/javascript/ql/test/library-tests/frameworks/Spife/tests.expected
@@ -50,7 +50,6 @@ passingPositiveTests
 | PASSED | source | lib/views/index.js:67:94:67:184 | // test ... inition |
 | PASSED | source | lib/views/index.js:75:41:75:79 | // test ... ureSink |
 | PASSED | source | lib/views/index.js:77:94:77:166 | // test ... inition |
-| PASSED | source | lib/views/index.js:83:49:83:103 | // test ... k, !xss |
 | PASSED | source | lib/views/index.js:87:25:87:39 | // test: source |
 | PASSED | source | lib/views/index.js:94:25:94:39 | // test: source |
 | PASSED | source | lib/views/index.js:101:25:101:39 | // test: source |
@@ -63,7 +62,6 @@ passingPositiveTests
 | PASSED | stackTraceExposureSink | lib/views/index.js:67:94:67:184 | // test ... inition |
 | PASSED | stackTraceExposureSink | lib/views/index.js:75:41:75:79 | // test ... ureSink |
 | PASSED | stackTraceExposureSink | lib/views/index.js:77:94:77:166 | // test ... inition |
-| PASSED | stackTraceExposureSink | lib/views/index.js:83:49:83:103 | // test ... k, !xss |
 | PASSED | stackTraceExposureSink | lib/views/index.js:90:57:90:121 | // test ... inition |
 | PASSED | stackTraceExposureSink | lib/views/index.js:97:30:97:76 | // test ... k, !xss |
 | PASSED | stackTraceExposureSink | lib/views/index.js:105:59:105:123 | // test ... inition |
@@ -80,13 +78,11 @@ failingPositiveTests
 passingNegativeTests
 | PASSED | !xss | lib/views/index.js:67:94:67:184 | // test ... inition |
 | PASSED | !xss | lib/views/index.js:77:94:77:166 | // test ... inition |
-| PASSED | !xss | lib/views/index.js:83:49:83:103 | // test ... k, !xss |
 | PASSED | !xss | lib/views/index.js:90:57:90:121 | // test ... inition |
 | PASSED | !xss | lib/views/index.js:97:30:97:76 | // test ... k, !xss |
 | PASSED | !xss | lib/views/index.js:105:59:105:123 | // test ... inition |
 | PASSED | !xssSink | lib/views/index.js:67:94:67:184 | // test ... inition |
 | PASSED | !xssSink | lib/views/index.js:77:94:77:166 | // test ... inition |
-| PASSED | !xssSink | lib/views/index.js:83:49:83:103 | // test ... k, !xss |
 | PASSED | !xssSink | lib/views/index.js:90:57:90:121 | // test ... inition |
 | PASSED | !xssSink | lib/views/index.js:97:30:97:76 | // test ... k, !xss |
 | PASSED | !xssSink | lib/views/index.js:105:59:105:123 | // test ... inition |
diff --git a/javascript/ql/test/library-tests/frameworks/Spife/tests.ql b/javascript/ql/test/library-tests/frameworks/Spife/tests.ql
index 656dee45b98..ef785a2860b 100644
--- a/javascript/ql/test/library-tests/frameworks/Spife/tests.ql
+++ b/javascript/ql/test/library-tests/frameworks/Spife/tests.ql
@@ -6,7 +6,6 @@ import semmle.javascript.security.dataflow.ServerSideUrlRedirectCustomizations
 import semmle.javascript.security.dataflow.RequestForgeryCustomizations
 import semmle.javascript.security.dataflow.ReflectedXssCustomizations
 import semmle.javascript.security.dataflow.ReflectedXssQuery as XssConfig
-import semmle.javascript.heuristics.AdditionalRouteHandlers
 
 class InlineTest extends LineComment {
   string tests;

From d18179c2438e5da23d87919a5dc8d5b586931a10 Mon Sep 17 00:00:00 2001
From: Owen Mansel-Chan <owen-mc@github.com>
Date: Wed, 14 Dec 2022 14:56:54 +0000
Subject: [PATCH 1365/1420] Add QLDoc for `toString` on `DataFlowType`

---
 go/ql/lib/semmle/go/dataflow/internal/DataFlowPrivate.qll | 1 +
 1 file changed, 1 insertion(+)

diff --git a/go/ql/lib/semmle/go/dataflow/internal/DataFlowPrivate.qll b/go/ql/lib/semmle/go/dataflow/internal/DataFlowPrivate.qll
index d2bb6bfdb25..aceb53cbe1d 100644
--- a/go/ql/lib/semmle/go/dataflow/internal/DataFlowPrivate.qll
+++ b/go/ql/lib/semmle/go/dataflow/internal/DataFlowPrivate.qll
@@ -228,6 +228,7 @@ private newtype TDataFlowType =
   TTodoDataFlowType2() // Add a dummy value to prevent bad functionality-induced joins arising from a type of size 1.
 
 class DataFlowType extends TDataFlowType {
+  /** Gets a textual representation of this element. */
   string toString() { result = "" }
 }
 

From 6ef677b606df0e36dd82f3d748a54b057c838f47 Mon Sep 17 00:00:00 2001
From: Owen Mansel-Chan <owen-mc@github.com>
Date: Wed, 14 Dec 2022 15:20:02 +0000
Subject: [PATCH 1366/1420] Fix test to use hasQualifiedName/2

---
 .../Types/Method_hasQualifiedName2.expected   | 118 +++++++++---------
 .../go/Types/Method_hasQualifiedName2.ql      |   6 +-
 2 files changed, 62 insertions(+), 62 deletions(-)

diff --git a/go/ql/test/library-tests/semmle/go/Types/Method_hasQualifiedName2.expected b/go/ql/test/library-tests/semmle/go/Types/Method_hasQualifiedName2.expected
index 24eac7cebc1..bf1bd76aa33 100644
--- a/go/ql/test/library-tests/semmle/go/Types/Method_hasQualifiedName2.expected
+++ b/go/ql/test/library-tests/semmle/go/Types/Method_hasQualifiedName2.expected
@@ -1,59 +1,59 @@
-| generic.go:33:2:33:5 | GetT | github.com/github/codeql-go/ql/test/library-tests/semmle/go/Types | GenericInterface | GetT |
-| generic.go:48:2:48:6 | clone | github.com/github/codeql-go/ql/test/library-tests/semmle/go/Types | MyInterface | clone |
-| generic.go:49:2:49:7 | dummy1 | github.com/github/codeql-go/ql/test/library-tests/semmle/go/Types | MyInterface | dummy1 |
-| generic.go:50:2:50:7 | dummy2 | github.com/github/codeql-go/ql/test/library-tests/semmle/go/Types | MyInterface | dummy2 |
-| generic.go:51:2:51:7 | dummy3 | github.com/github/codeql-go/ql/test/library-tests/semmle/go/Types | MyInterface | dummy3 |
-| generic.go:52:2:52:7 | dummy4 | github.com/github/codeql-go/ql/test/library-tests/semmle/go/Types | MyInterface | dummy4 |
-| generic.go:53:2:53:7 | dummy5 | github.com/github/codeql-go/ql/test/library-tests/semmle/go/Types | MyInterface | dummy5 |
-| generic.go:54:2:54:7 | dummy6 | github.com/github/codeql-go/ql/test/library-tests/semmle/go/Types | MyInterface | dummy6 |
-| generic.go:55:2:55:7 | dummy7 | github.com/github/codeql-go/ql/test/library-tests/semmle/go/Types | MyInterface | dummy7 |
-| generic.go:56:2:56:8 | dummy11 | github.com/github/codeql-go/ql/test/library-tests/semmle/go/Types | MyInterface | dummy11 |
-| generic.go:57:2:57:8 | dummy12 | github.com/github/codeql-go/ql/test/library-tests/semmle/go/Types | MyInterface | dummy12 |
-| generic.go:58:2:58:8 | dummy13 | github.com/github/codeql-go/ql/test/library-tests/semmle/go/Types | MyInterface | dummy13 |
-| generic.go:59:2:59:8 | dummy14 | github.com/github/codeql-go/ql/test/library-tests/semmle/go/Types | MyInterface | dummy14 |
-| generic.go:60:2:60:8 | dummy15 | github.com/github/codeql-go/ql/test/library-tests/semmle/go/Types | MyInterface | dummy15 |
-| generic.go:61:2:61:8 | dummy17 | github.com/github/codeql-go/ql/test/library-tests/semmle/go/Types | MyInterface | dummy17 |
-| generic.go:62:2:62:8 | dummy18 | github.com/github/codeql-go/ql/test/library-tests/semmle/go/Types | MyInterface | dummy18 |
-| generic.go:63:2:63:8 | dummy19 | github.com/github/codeql-go/ql/test/library-tests/semmle/go/Types | MyInterface | dummy19 |
-| generic.go:64:2:64:8 | dummy20 | github.com/github/codeql-go/ql/test/library-tests/semmle/go/Types | MyInterface | dummy20 |
-| interface.go:30:2:30:7 | String | github.com/github/codeql-go/ql/test/library-tests/semmle/go/Types | i6 | String |
-| interface.go:30:2:30:7 | String | github.com/github/codeql-go/ql/test/library-tests/semmle/go/Types | i8 | String |
-| interface.go:30:2:30:7 | String | github.com/github/codeql-go/ql/test/library-tests/semmle/go/Types | i9 | String |
-| interface.go:30:2:30:7 | String | github.com/github/codeql-go/ql/test/library-tests/semmle/go/Types | i14 | String |
-| interface.go:30:2:30:7 | String | github.com/github/codeql-go/ql/test/library-tests/semmle/go/Types | i15 | String |
-| interface.go:37:2:37:7 | String | github.com/github/codeql-go/ql/test/library-tests/semmle/go/Types | i7 | String |
-| interface.go:43:2:43:8 | StringA | github.com/github/codeql-go/ql/test/library-tests/semmle/go/Types | i8 | StringA |
-| interface.go:43:2:43:8 | StringA | github.com/github/codeql-go/ql/test/library-tests/semmle/go/Types | i14 | StringA |
-| interface.go:49:2:49:8 | StringB | github.com/github/codeql-go/ql/test/library-tests/semmle/go/Types | i9 | StringB |
-| interface.go:49:2:49:8 | StringB | github.com/github/codeql-go/ql/test/library-tests/semmle/go/Types | i15 | StringB |
-| interface.go:92:2:92:8 | StringA | github.com/github/codeql-go/ql/test/library-tests/semmle/go/Types | i17 | StringA |
-| interface.go:97:2:97:8 | StringA | github.com/github/codeql-go/ql/test/library-tests/semmle/go/Types | i18 | StringA |
-| interface.go:102:2:102:8 | StringB | github.com/github/codeql-go/ql/test/library-tests/semmle/go/Types | i19 | StringB |
-| interface.go:107:2:107:8 | StringB | github.com/github/codeql-go/ql/test/library-tests/semmle/go/Types | i20 | StringB |
-| pkg1/embedding.go:10:13:10:13 | f | github.com/github/codeql-go/ql/test/library-tests/semmle/go/Types/pkg1 | base | f |
-| pkg1/embedding.go:10:13:10:13 | f | github.com/github/codeql-go/ql/test/library-tests/semmle/go/Types/pkg1 | embedder | f |
-| pkg1/embedding.go:10:13:10:13 | f | github.com/github/codeql-go/ql/test/library-tests/semmle/go/Types/pkg1 | embedder2 | f |
-| pkg1/embedding.go:10:13:10:13 | f | github.com/github/codeql-go/ql/test/library-tests/semmle/go/Types/pkg1 | ptrembedder | f |
-| pkg1/embedding.go:14:14:14:14 | g | github.com/github/codeql-go/ql/test/library-tests/semmle/go/Types/pkg1 | base | g |
-| pkg1/embedding.go:14:14:14:14 | g | github.com/github/codeql-go/ql/test/library-tests/semmle/go/Types/pkg1 | embedder | g |
-| pkg1/embedding.go:14:14:14:14 | g | github.com/github/codeql-go/ql/test/library-tests/semmle/go/Types/pkg1 | embedder2 | g |
-| pkg1/embedding.go:14:14:14:14 | g | github.com/github/codeql-go/ql/test/library-tests/semmle/go/Types/pkg1 | embedder3 | g |
-| pkg1/embedding.go:14:14:14:14 | g | github.com/github/codeql-go/ql/test/library-tests/semmle/go/Types/pkg1 | embedder4 | g |
-| pkg1/embedding.go:14:14:14:14 | g | github.com/github/codeql-go/ql/test/library-tests/semmle/go/Types/pkg1 | ptrembedder | g |
-| pkg1/embedding.go:30:18:30:18 | f | github.com/github/codeql-go/ql/test/library-tests/semmle/go/Types/pkg1 | embedder3 | f |
-| pkg1/interfaces.go:4:2:4:2 | m | github.com/github/codeql-go/ql/test/library-tests/semmle/go/Types/pkg1 | A | m |
-| pkg1/interfaces.go:4:2:4:2 | m | github.com/github/codeql-go/ql/test/library-tests/semmle/go/Types/pkg1 | AC | m |
-| pkg1/interfaces.go:4:2:4:2 | m | github.com/github/codeql-go/ql/test/library-tests/semmle/go/Types/pkg1 | AEmbedded | m |
-| pkg1/interfaces.go:4:2:4:2 | m | github.com/github/codeql-go/ql/test/library-tests/semmle/go/Types/pkg1 | AExtended | m |
-| pkg1/interfaces.go:8:2:8:2 | m | github.com/github/codeql-go/ql/test/library-tests/semmle/go/Types/pkg1 | B | m |
-| pkg1/interfaces.go:9:2:9:2 | n | github.com/github/codeql-go/ql/test/library-tests/semmle/go/Types/pkg1 | B | n |
-| pkg1/interfaces.go:13:2:13:2 | n | github.com/github/codeql-go/ql/test/library-tests/semmle/go/Types/pkg1 | AC | n |
-| pkg1/interfaces.go:13:2:13:2 | n | github.com/github/codeql-go/ql/test/library-tests/semmle/go/Types/pkg1 | C | n |
-| pkg1/interfaces.go:14:2:14:2 | o | github.com/github/codeql-go/ql/test/library-tests/semmle/go/Types/pkg1 | AC | o |
-| pkg1/interfaces.go:14:2:14:2 | o | github.com/github/codeql-go/ql/test/library-tests/semmle/go/Types/pkg1 | C | o |
-| pkg1/interfaces.go:28:2:28:2 | n | github.com/github/codeql-go/ql/test/library-tests/semmle/go/Types/pkg1 | AExtended | n |
-| pkg1/interfaces.go:32:2:32:2 | m | github.com/github/codeql-go/ql/test/library-tests/semmle/go/Types/pkg1 | A2 | m |
-| pkg1/tst.go:33:16:33:19 | half | github.com/github/codeql-go/ql/test/library-tests/semmle/go/Types/pkg1 | Foo | half |
-| pkg1/tst.go:33:16:33:19 | half | github.com/github/codeql-go/ql/test/library-tests/semmle/go/Types/pkg1 | T | half |
-| pkg1/tst.go:33:16:33:19 | half | github.com/github/codeql-go/ql/test/library-tests/semmle/go/Types/pkg1 | T3 | half |
-| pkg1/tst.go:33:16:33:19 | half | github.com/github/codeql-go/ql/test/library-tests/semmle/go/Types/pkg1 | T4 | half |
+| generic.go:33:2:33:5 | GetT | github.com/github/codeql-go/ql/test/library-tests/semmle/go/Types.GenericInterface | GetT |
+| generic.go:48:2:48:6 | clone | github.com/github/codeql-go/ql/test/library-tests/semmle/go/Types.MyInterface | clone |
+| generic.go:49:2:49:7 | dummy1 | github.com/github/codeql-go/ql/test/library-tests/semmle/go/Types.MyInterface | dummy1 |
+| generic.go:50:2:50:7 | dummy2 | github.com/github/codeql-go/ql/test/library-tests/semmle/go/Types.MyInterface | dummy2 |
+| generic.go:51:2:51:7 | dummy3 | github.com/github/codeql-go/ql/test/library-tests/semmle/go/Types.MyInterface | dummy3 |
+| generic.go:52:2:52:7 | dummy4 | github.com/github/codeql-go/ql/test/library-tests/semmle/go/Types.MyInterface | dummy4 |
+| generic.go:53:2:53:7 | dummy5 | github.com/github/codeql-go/ql/test/library-tests/semmle/go/Types.MyInterface | dummy5 |
+| generic.go:54:2:54:7 | dummy6 | github.com/github/codeql-go/ql/test/library-tests/semmle/go/Types.MyInterface | dummy6 |
+| generic.go:55:2:55:7 | dummy7 | github.com/github/codeql-go/ql/test/library-tests/semmle/go/Types.MyInterface | dummy7 |
+| generic.go:56:2:56:8 | dummy11 | github.com/github/codeql-go/ql/test/library-tests/semmle/go/Types.MyInterface | dummy11 |
+| generic.go:57:2:57:8 | dummy12 | github.com/github/codeql-go/ql/test/library-tests/semmle/go/Types.MyInterface | dummy12 |
+| generic.go:58:2:58:8 | dummy13 | github.com/github/codeql-go/ql/test/library-tests/semmle/go/Types.MyInterface | dummy13 |
+| generic.go:59:2:59:8 | dummy14 | github.com/github/codeql-go/ql/test/library-tests/semmle/go/Types.MyInterface | dummy14 |
+| generic.go:60:2:60:8 | dummy15 | github.com/github/codeql-go/ql/test/library-tests/semmle/go/Types.MyInterface | dummy15 |
+| generic.go:61:2:61:8 | dummy17 | github.com/github/codeql-go/ql/test/library-tests/semmle/go/Types.MyInterface | dummy17 |
+| generic.go:62:2:62:8 | dummy18 | github.com/github/codeql-go/ql/test/library-tests/semmle/go/Types.MyInterface | dummy18 |
+| generic.go:63:2:63:8 | dummy19 | github.com/github/codeql-go/ql/test/library-tests/semmle/go/Types.MyInterface | dummy19 |
+| generic.go:64:2:64:8 | dummy20 | github.com/github/codeql-go/ql/test/library-tests/semmle/go/Types.MyInterface | dummy20 |
+| interface.go:30:2:30:7 | String | github.com/github/codeql-go/ql/test/library-tests/semmle/go/Types.i6 | String |
+| interface.go:30:2:30:7 | String | github.com/github/codeql-go/ql/test/library-tests/semmle/go/Types.i8 | String |
+| interface.go:30:2:30:7 | String | github.com/github/codeql-go/ql/test/library-tests/semmle/go/Types.i9 | String |
+| interface.go:30:2:30:7 | String | github.com/github/codeql-go/ql/test/library-tests/semmle/go/Types.i14 | String |
+| interface.go:30:2:30:7 | String | github.com/github/codeql-go/ql/test/library-tests/semmle/go/Types.i15 | String |
+| interface.go:37:2:37:7 | String | github.com/github/codeql-go/ql/test/library-tests/semmle/go/Types.i7 | String |
+| interface.go:43:2:43:8 | StringA | github.com/github/codeql-go/ql/test/library-tests/semmle/go/Types.i8 | StringA |
+| interface.go:43:2:43:8 | StringA | github.com/github/codeql-go/ql/test/library-tests/semmle/go/Types.i14 | StringA |
+| interface.go:49:2:49:8 | StringB | github.com/github/codeql-go/ql/test/library-tests/semmle/go/Types.i9 | StringB |
+| interface.go:49:2:49:8 | StringB | github.com/github/codeql-go/ql/test/library-tests/semmle/go/Types.i15 | StringB |
+| interface.go:92:2:92:8 | StringA | github.com/github/codeql-go/ql/test/library-tests/semmle/go/Types.i17 | StringA |
+| interface.go:97:2:97:8 | StringA | github.com/github/codeql-go/ql/test/library-tests/semmle/go/Types.i18 | StringA |
+| interface.go:102:2:102:8 | StringB | github.com/github/codeql-go/ql/test/library-tests/semmle/go/Types.i19 | StringB |
+| interface.go:107:2:107:8 | StringB | github.com/github/codeql-go/ql/test/library-tests/semmle/go/Types.i20 | StringB |
+| pkg1/embedding.go:10:13:10:13 | f | github.com/github/codeql-go/ql/test/library-tests/semmle/go/Types/pkg1.base | f |
+| pkg1/embedding.go:10:13:10:13 | f | github.com/github/codeql-go/ql/test/library-tests/semmle/go/Types/pkg1.embedder | f |
+| pkg1/embedding.go:10:13:10:13 | f | github.com/github/codeql-go/ql/test/library-tests/semmle/go/Types/pkg1.embedder2 | f |
+| pkg1/embedding.go:10:13:10:13 | f | github.com/github/codeql-go/ql/test/library-tests/semmle/go/Types/pkg1.ptrembedder | f |
+| pkg1/embedding.go:14:14:14:14 | g | github.com/github/codeql-go/ql/test/library-tests/semmle/go/Types/pkg1.base | g |
+| pkg1/embedding.go:14:14:14:14 | g | github.com/github/codeql-go/ql/test/library-tests/semmle/go/Types/pkg1.embedder | g |
+| pkg1/embedding.go:14:14:14:14 | g | github.com/github/codeql-go/ql/test/library-tests/semmle/go/Types/pkg1.embedder2 | g |
+| pkg1/embedding.go:14:14:14:14 | g | github.com/github/codeql-go/ql/test/library-tests/semmle/go/Types/pkg1.embedder3 | g |
+| pkg1/embedding.go:14:14:14:14 | g | github.com/github/codeql-go/ql/test/library-tests/semmle/go/Types/pkg1.embedder4 | g |
+| pkg1/embedding.go:14:14:14:14 | g | github.com/github/codeql-go/ql/test/library-tests/semmle/go/Types/pkg1.ptrembedder | g |
+| pkg1/embedding.go:30:18:30:18 | f | github.com/github/codeql-go/ql/test/library-tests/semmle/go/Types/pkg1.embedder3 | f |
+| pkg1/interfaces.go:4:2:4:2 | m | github.com/github/codeql-go/ql/test/library-tests/semmle/go/Types/pkg1.A | m |
+| pkg1/interfaces.go:4:2:4:2 | m | github.com/github/codeql-go/ql/test/library-tests/semmle/go/Types/pkg1.AC | m |
+| pkg1/interfaces.go:4:2:4:2 | m | github.com/github/codeql-go/ql/test/library-tests/semmle/go/Types/pkg1.AEmbedded | m |
+| pkg1/interfaces.go:4:2:4:2 | m | github.com/github/codeql-go/ql/test/library-tests/semmle/go/Types/pkg1.AExtended | m |
+| pkg1/interfaces.go:8:2:8:2 | m | github.com/github/codeql-go/ql/test/library-tests/semmle/go/Types/pkg1.B | m |
+| pkg1/interfaces.go:9:2:9:2 | n | github.com/github/codeql-go/ql/test/library-tests/semmle/go/Types/pkg1.B | n |
+| pkg1/interfaces.go:13:2:13:2 | n | github.com/github/codeql-go/ql/test/library-tests/semmle/go/Types/pkg1.AC | n |
+| pkg1/interfaces.go:13:2:13:2 | n | github.com/github/codeql-go/ql/test/library-tests/semmle/go/Types/pkg1.C | n |
+| pkg1/interfaces.go:14:2:14:2 | o | github.com/github/codeql-go/ql/test/library-tests/semmle/go/Types/pkg1.AC | o |
+| pkg1/interfaces.go:14:2:14:2 | o | github.com/github/codeql-go/ql/test/library-tests/semmle/go/Types/pkg1.C | o |
+| pkg1/interfaces.go:28:2:28:2 | n | github.com/github/codeql-go/ql/test/library-tests/semmle/go/Types/pkg1.AExtended | n |
+| pkg1/interfaces.go:32:2:32:2 | m | github.com/github/codeql-go/ql/test/library-tests/semmle/go/Types/pkg1.A2 | m |
+| pkg1/tst.go:33:16:33:19 | half | github.com/github/codeql-go/ql/test/library-tests/semmle/go/Types/pkg1.Foo | half |
+| pkg1/tst.go:33:16:33:19 | half | github.com/github/codeql-go/ql/test/library-tests/semmle/go/Types/pkg1.T | half |
+| pkg1/tst.go:33:16:33:19 | half | github.com/github/codeql-go/ql/test/library-tests/semmle/go/Types/pkg1.T3 | half |
+| pkg1/tst.go:33:16:33:19 | half | github.com/github/codeql-go/ql/test/library-tests/semmle/go/Types/pkg1.T4 | half |
diff --git a/go/ql/test/library-tests/semmle/go/Types/Method_hasQualifiedName2.ql b/go/ql/test/library-tests/semmle/go/Types/Method_hasQualifiedName2.ql
index b8df1364fc1..e6700d82e47 100644
--- a/go/ql/test/library-tests/semmle/go/Types/Method_hasQualifiedName2.ql
+++ b/go/ql/test/library-tests/semmle/go/Types/Method_hasQualifiedName2.ql
@@ -1,5 +1,5 @@
 import go
 
-from Method meth, string pkg, string tp, string m
-where meth.hasQualifiedName(pkg, tp, m)
-select meth.getDeclaration(), pkg, tp, m
+from Method meth, string tp, string m
+where meth.hasQualifiedName(tp, m)
+select meth.getDeclaration(), tp, m

From 2af5925f389b808f40c8a1c9fc85b03dadc226f3 Mon Sep 17 00:00:00 2001
From: Alex Ford <alexrford@github.com>
Date: Wed, 14 Dec 2022 14:58:08 +0000
Subject: [PATCH 1367/1420] Ruby: improve coverage of GlobalID::Identification
 modelling

---
 .../lib/codeql/ruby/frameworks/GlobalId.qll   | 24 ++++++++--
 .../frameworks/globalid/GlobalId.expected     | 14 ++++++
 .../frameworks/globalid/globalid.rb           | 46 +++++++++++++++++++
 3 files changed, 79 insertions(+), 5 deletions(-)

diff --git a/ruby/ql/lib/codeql/ruby/frameworks/GlobalId.qll b/ruby/ql/lib/codeql/ruby/frameworks/GlobalId.qll
index 4cd53d72890..cb3a8abfd20 100644
--- a/ruby/ql/lib/codeql/ruby/frameworks/GlobalId.qll
+++ b/ruby/ql/lib/codeql/ruby/frameworks/GlobalId.qll
@@ -70,26 +70,40 @@ module GlobalId {
     }
   }
 
-  // TODO: methods in this module are available to any class that includes it, not just ActiveRecord models
   /** `GlobalID::Identification` */
   module Identification {
+    /** A `DataFlow::CallNode` against an instance of a class that includes the `GlobalID::Identification` module */
+    private class IdentificationInstanceCall extends DataFlow::CallNode {
+      IdentificationInstanceCall() {
+        this =
+          DataFlow::getConstant("GlobalID")
+              .getConstant("Identification")
+              .getADescendentModule()
+              .getAnImmediateReference()
+              .getAMethodCall(["new", "find"])
+              .getAMethodCall()
+        or
+        this instanceof ActiveRecordInstanceMethodCall
+      }
+    }
+
     /** A call to `GlobalID::Identification.to_global_id` */
-    class ToGlobalIdCall extends ActiveRecordInstanceMethodCall {
+    class ToGlobalIdCall extends IdentificationInstanceCall {
       ToGlobalIdCall() { this.getMethodName() = ["to_global_id", "to_gid"] }
     }
 
     /** A call to `GlobalID::Identification.to_gid_param` */
-    class ToGidParamCall extends ActiveRecordInstanceMethodCall {
+    class ToGidParamCall extends DataFlow::CallNode {
       ToGidParamCall() { this.getMethodName() = "to_gid_param" }
     }
 
     /** A call to `GlobalID::Identification.to_signed_global_id` */
-    class ToSignedGlobalIdCall extends ActiveRecordInstanceMethodCall {
+    class ToSignedGlobalIdCall extends DataFlow::CallNode {
       ToSignedGlobalIdCall() { this.getMethodName() = ["to_signed_global_id", "to_sgid"] }
     }
 
     /** A call to `GlobalID::Identification.to_sgid_param` */
-    class ToSgidParamCall extends ActiveRecordInstanceMethodCall {
+    class ToSgidParamCall extends DataFlow::CallNode {
       ToSgidParamCall() { this.getMethodName() = "to_sgid_param" }
     }
   }
diff --git a/ruby/ql/test/library-tests/frameworks/globalid/GlobalId.expected b/ruby/ql/test/library-tests/frameworks/globalid/GlobalId.expected
index 58edfb965d8..1a149338027 100644
--- a/ruby/ql/test/library-tests/frameworks/globalid/GlobalId.expected
+++ b/ruby/ql/test/library-tests/frameworks/globalid/GlobalId.expected
@@ -1,24 +1,38 @@
 locateCalls
 | globalid.rb:6:3:6:30 | call to locate |
 | globalid.rb:11:3:11:30 | call to locate |
+| globalid.rb:70:3:70:30 | call to locate |
 locateSignedCalls
 | globalid.rb:16:3:16:38 | call to locate_signed |
 | globalid.rb:21:3:21:38 | call to locate_signed |
+| globalid.rb:89:3:89:38 | call to locate_signed |
 toGlobalIdCalls
 | globalid.rb:5:9:5:33 | call to to_global_id |
 | globalid.rb:10:9:10:27 | call to to_gid |
+| globalid.rb:56:9:56:16 | call to to_gid |
+| globalid.rb:62:9:62:22 | call to to_global_id |
 toGidParamCalls
 | globalid.rb:35:10:35:34 | call to to_gid_param |
+| globalid.rb:68:10:68:23 | call to to_gid_param |
 toSignedGlobalIdCalls
 | globalid.rb:15:10:15:41 | call to to_signed_global_id |
 | globalid.rb:20:10:20:29 | call to to_sgid |
+| globalid.rb:75:10:75:18 | call to to_sgid |
+| globalid.rb:81:10:81:30 | call to to_signed_global_id |
 toSgidParamCalls
 | globalid.rb:41:11:41:36 | call to to_sgid_param |
+| globalid.rb:87:11:87:25 | call to to_sgid_param |
 globalIdParseCalls
 | globalid.rb:36:9:36:27 | call to parse |
+| globalid.rb:69:9:69:27 | call to parse |
 globalIdFindCalls
 | globalid.rb:37:3:37:19 | call to find |
+| globalid.rb:57:3:57:19 | call to find |
+| globalid.rb:63:3:63:19 | call to find |
 signedGlobalIdParseCalls
 | globalid.rb:42:10:42:35 | call to parse |
+| globalid.rb:88:10:88:35 | call to parse |
 signedGlobalIdFindCalls
 | globalid.rb:43:3:43:26 | call to find |
+| globalid.rb:76:3:76:26 | call to find |
+| globalid.rb:82:3:82:26 | call to find |
diff --git a/ruby/ql/test/library-tests/frameworks/globalid/globalid.rb b/ruby/ql/test/library-tests/frameworks/globalid/globalid.rb
index 04f60c9a774..f06cbd761f2 100644
--- a/ruby/ql/test/library-tests/frameworks/globalid/globalid.rb
+++ b/ruby/ql/test/library-tests/frameworks/globalid/globalid.rb
@@ -42,3 +42,49 @@ def m8
   sgid = SignedGlobalID.parse sgidp
   SignedGlobalID.find sgid
 end
+
+class Person
+  include GlobalID::Identification
+
+  def self.find(id)
+    # implementation goes here
+  end
+end
+
+def m9
+  p = Person.find(1)
+  gid = p.to_gid
+  GlobalID.find gid
+end
+
+def m10
+  p = Person.find(1)
+  gid = p.to_global_id
+  GlobalID.find gid
+end
+
+def m11
+  p = Person.find(1)
+  gidp = p.to_gid_param
+  gid = GlobalID.parse gidp
+  GlobalID::Locator.locate gid
+end
+
+def m12
+  p = Person.find(1)
+  sgid = p.to_sgid
+  SignedGlobalID.find sgid
+end
+
+def m10
+  p = Person.find(1)
+  sgid = p.to_signed_global_id
+  SignedGlobalID.find sgid
+end
+
+def m11
+  p = Person.find(1)
+  sgidp = p.to_sgid_param
+  sgid = SignedGlobalID.parse sgidp
+  GlobalID::Locator.locate_signed sgid
+end

From c04b90bc6b716141e0bf82c77a0b89573290d015 Mon Sep 17 00:00:00 2001
From: Tom Hvitved <hvitved@github.com>
Date: Wed, 14 Dec 2022 16:29:49 +0100
Subject: [PATCH 1368/1420] Add change note

---
 .../change-notes/2022-12-14-constructor-flow.md    | 14 ++++++++++++++
 1 file changed, 14 insertions(+)
 create mode 100644 ruby/ql/lib/change-notes/2022-12-14-constructor-flow.md

diff --git a/ruby/ql/lib/change-notes/2022-12-14-constructor-flow.md b/ruby/ql/lib/change-notes/2022-12-14-constructor-flow.md
new file mode 100644
index 00000000000..612c323010a
--- /dev/null
+++ b/ruby/ql/lib/change-notes/2022-12-14-constructor-flow.md
@@ -0,0 +1,14 @@
+---
+ category: majorAnalysis
+---
+ * Flow through `initialize` constructors is now taken into account. For example, in
+ ```rb
+class C
+  def initialize(x)
+    @field = x
+  end
+end
+
+C.new(y)
+```
+there will be flow from `y` to the field `@field` on the constructed `C` object.
\ No newline at end of file

From f46a8faf00d6bb95782cf43f7cc6676b3f67e660 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Alvaro=20Mu=C3=B1oz?= <pwntester@github.com>
Date: Wed, 14 Dec 2022 17:37:32 +0100
Subject: [PATCH 1369/1420] port RouteSetup API-based implementation to
 DataFlow one

---
 .../semmle/javascript/frameworks/Spife.qll    | 43 +++++++++++--------
 1 file changed, 24 insertions(+), 19 deletions(-)

diff --git a/javascript/ql/lib/semmle/javascript/frameworks/Spife.qll b/javascript/ql/lib/semmle/javascript/frameworks/Spife.qll
index cf1202fbe09..c473eadd675 100644
--- a/javascript/ql/lib/semmle/javascript/frameworks/Spife.qll
+++ b/javascript/ql/lib/semmle/javascript/frameworks/Spife.qll
@@ -4,37 +4,29 @@
 
 import javascript
 import semmle.javascript.frameworks.HTTP
+private import DataFlow
 
 /**
  * Provides classes for working with [Spife](https://github.com/npm/spife) applications.
  */
 module Spife {
-  private class TaggedTemplateEntryPoint extends API::EntryPoint {
-    TaggedTemplateEntryPoint() { this = "TaggedTemplateEntryPoint" }
-
-    override DataFlow::SourceNode getASource() { result.asExpr() instanceof TaggedTemplateExpr }
-  }
-
   /**
    * A call to a Spife method that sets up a route.
    */
-  private class RouteSetup extends API::CallNode, Http::Servers::StandardRouteSetup {
+  private class RouteSetup extends DataFlow::CallNode, Http::Servers::StandardRouteSetup {
     TaggedTemplateExpr template;
 
     RouteSetup() {
-      exists(CallExpr templateCall |
-        this.getCalleeNode().asExpr() = template and
-        API::moduleImport(["@npm/spife/routing", "spife/routing"])
-            .asSource()
-            .flowsToExpr(template.getTag()) and
-        templateCall.getAChild() = template
-      )
+      this.getCalleeNode().asExpr() = template and
+      API::moduleImport(["@npm/spife/routing", "spife/routing"])
+          .asSource()
+          .flowsToExpr(template.getTag())
     }
 
     private string getRoutePattern() {
       // Concatenate the constant parts of the expression
       result =
-        concat(Expr e, int i |
+        strictconcat(Expr e, int i |
           e = template.getTemplate().getElement(i) and exists(e.getStringValue())
         |
           e.getStringValue() order by i
@@ -53,9 +45,22 @@ module Spife {
       )
     }
 
-    API::Node getHandlerByName(string name) { result = this.getParameter(0).getMember(name) }
+    DataFlow::SourceNode getHandlerDefinitions(TypeBackTracker t) {
+      t.start() and
+      result = this.getArgument(0).getALocalSource()
+      or
+      exists(TypeBackTracker t2 | result = getHandlerDefinitions(t2).backtrack(t2, t))
+    }
 
-    API::Node getHandlerByRoute(string method, string path) {
+    DataFlow::SourceNode getHandlerDefinitions() {
+      result = getHandlerDefinitions(TypeBackTracker::end())
+    }
+
+    DataFlow::SourceNode getHandlerByName(string name) {
+      result = getHandlerDefinitions().getAPropertySource(name)
+    }
+
+    DataFlow::SourceNode getHandlerByRoute(string method, string path) {
       exists(string handlerName |
         this.hasLine(method, path, handlerName) and
         result = this.getHandlerByName(handlerName)
@@ -63,10 +68,10 @@ module Spife {
     }
 
     override DataFlow::SourceNode getARouteHandler() {
-      result = this.getHandlerByRoute(_, _).getAValueReachingSink().(DataFlow::FunctionNode)
+      result = this.getHandlerByRoute(_, _).getALocalSource().(DataFlow::FunctionNode)
       or
       exists(DataFlow::MethodCallNode validation |
-        validation = this.getHandlerByRoute(_, _).getAValueReachingSink() and
+        validation = this.getHandlerByRoute(_, _).getALocalSource() and
         result = validation.getArgument(1).getAFunctionValue()
       )
     }

From 55558120d98b89e45605964b367ad158a3a2b645 Mon Sep 17 00:00:00 2001
From: Erik Krogh Kristensen <erik-krogh@github.com>
Date: Wed, 14 Dec 2022 20:59:28 +0100
Subject: [PATCH 1370/1420] add explicit this

---
 javascript/ql/lib/semmle/javascript/frameworks/Spife.qll | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/javascript/ql/lib/semmle/javascript/frameworks/Spife.qll b/javascript/ql/lib/semmle/javascript/frameworks/Spife.qll
index c473eadd675..7435c23d8c2 100644
--- a/javascript/ql/lib/semmle/javascript/frameworks/Spife.qll
+++ b/javascript/ql/lib/semmle/javascript/frameworks/Spife.qll
@@ -49,15 +49,15 @@ module Spife {
       t.start() and
       result = this.getArgument(0).getALocalSource()
       or
-      exists(TypeBackTracker t2 | result = getHandlerDefinitions(t2).backtrack(t2, t))
+      exists(TypeBackTracker t2 | result = this.getHandlerDefinitions(t2).backtrack(t2, t))
     }
 
     DataFlow::SourceNode getHandlerDefinitions() {
-      result = getHandlerDefinitions(TypeBackTracker::end())
+      result = this.getHandlerDefinitions(TypeBackTracker::end())
     }
 
     DataFlow::SourceNode getHandlerByName(string name) {
-      result = getHandlerDefinitions().getAPropertySource(name)
+      result = this.getHandlerDefinitions().getAPropertySource(name)
     }
 
     DataFlow::SourceNode getHandlerByRoute(string method, string path) {

From 4fb43d56b378f5ff752cf905cb82a503caf616ce Mon Sep 17 00:00:00 2001
From: Jeroen Ketema <jketema@github.com>
Date: Thu, 15 Dec 2022 09:24:16 +0100
Subject: [PATCH 1371/1420] C++: Exclude deallocation functions as `scanf`
 result accesses

---
 cpp/ql/src/Critical/MissingCheckScanf.ql      | 13 +++++-
 .../MissingCheckScanf.expected                | 40 ++++++++++---------
 .../Critical/MissingCheckScanf/test.cpp       | 21 ++++++++++
 3 files changed, 54 insertions(+), 20 deletions(-)

diff --git a/cpp/ql/src/Critical/MissingCheckScanf.ql b/cpp/ql/src/Critical/MissingCheckScanf.ql
index cdb48099818..3b3fa62584b 100644
--- a/cpp/ql/src/Critical/MissingCheckScanf.ql
+++ b/cpp/ql/src/Critical/MissingCheckScanf.ql
@@ -112,10 +112,21 @@ BasicBlock blockGuardedBy(int value, string op, ScanfFunctionCall call) {
   )
 }
 
+predicate isDeallocationAccess(Access access) {
+  exists(FunctionCall deallocCall, DeallocationFunction deallocFunc |
+    deallocCall.getTarget() = deallocFunc
+  |
+    deallocCall.getArgument(deallocFunc.getFreedArg()) = access
+  )
+  or
+  exists(DeallocationExpr deallocExpr | deallocExpr.getFreedExpr() = access)
+}
+
 from ScanfOutput output, ScanfFunctionCall call, Access access
 where
   output.getCall() = call and
-  output.hasGuardedAccess(access, false)
+  output.hasGuardedAccess(access, false) and
+  not isDeallocationAccess(access)
 select access,
   "This variable is read, but may not have been written. " +
     "It should be guarded by a check that the $@ returns at least " +
diff --git a/cpp/ql/test/query-tests/Critical/MissingCheckScanf/MissingCheckScanf.expected b/cpp/ql/test/query-tests/Critical/MissingCheckScanf/MissingCheckScanf.expected
index ce11cb53c58..bbedf4ecc3f 100644
--- a/cpp/ql/test/query-tests/Critical/MissingCheckScanf/MissingCheckScanf.expected
+++ b/cpp/ql/test/query-tests/Critical/MissingCheckScanf/MissingCheckScanf.expected
@@ -1,19 +1,21 @@
-| test.cpp:30:7:30:7 | i | This variable is read, but may not have been written. It should be guarded by a check that the $@ returns at least 1. | test.cpp:29:3:29:7 | call to scanf | call to scanf |
-| test.cpp:46:7:46:7 | i | This variable is read, but may not have been written. It should be guarded by a check that the $@ returns at least 1. | test.cpp:45:3:45:7 | call to scanf | call to scanf |
-| test.cpp:63:7:63:7 | i | This variable is read, but may not have been written. It should be guarded by a check that the $@ returns at least 1. | test.cpp:62:3:62:7 | call to scanf | call to scanf |
-| test.cpp:75:7:75:7 | i | This variable is read, but may not have been written. It should be guarded by a check that the $@ returns at least 1. | test.cpp:74:3:74:7 | call to scanf | call to scanf |
-| test.cpp:87:7:87:7 | i | This variable is read, but may not have been written. It should be guarded by a check that the $@ returns at least 1. | test.cpp:86:3:86:8 | call to fscanf | call to fscanf |
-| test.cpp:94:7:94:7 | i | This variable is read, but may not have been written. It should be guarded by a check that the $@ returns at least 1. | test.cpp:93:3:93:8 | call to sscanf | call to sscanf |
-| test.cpp:143:8:143:8 | i | This variable is read, but may not have been written. It should be guarded by a check that the $@ returns at least 1. | test.cpp:141:7:141:11 | call to scanf | call to scanf |
-| test.cpp:152:8:152:8 | i | This variable is read, but may not have been written. It should be guarded by a check that the $@ returns at least 1. | test.cpp:150:7:150:11 | call to scanf | call to scanf |
-| test.cpp:184:8:184:8 | i | This variable is read, but may not have been written. It should be guarded by a check that the $@ returns at least 1. | test.cpp:183:7:183:11 | call to scanf | call to scanf |
-| test.cpp:203:8:203:8 | j | This variable is read, but may not have been written. It should be guarded by a check that the $@ returns at least 2. | test.cpp:200:7:200:11 | call to scanf | call to scanf |
-| test.cpp:227:9:227:9 | d | This variable is read, but may not have been written. It should be guarded by a check that the $@ returns at least 2. | test.cpp:225:25:225:29 | call to scanf | call to scanf |
-| test.cpp:231:9:231:9 | d | This variable is read, but may not have been written. It should be guarded by a check that the $@ returns at least 2. | test.cpp:229:14:229:18 | call to scanf | call to scanf |
-| test.cpp:243:7:243:7 | i | This variable is read, but may not have been written. It should be guarded by a check that the $@ returns at least 1. | test.cpp:242:3:242:7 | call to scanf | call to scanf |
-| test.cpp:251:7:251:7 | i | This variable is read, but may not have been written. It should be guarded by a check that the $@ returns at least 1. | test.cpp:250:3:250:7 | call to scanf | call to scanf |
-| test.cpp:259:7:259:7 | i | This variable is read, but may not have been written. It should be guarded by a check that the $@ returns at least 1. | test.cpp:258:3:258:7 | call to scanf | call to scanf |
-| test.cpp:271:7:271:7 | i | This variable is read, but may not have been written. It should be guarded by a check that the $@ returns at least 1. | test.cpp:270:3:270:7 | call to scanf | call to scanf |
-| test.cpp:281:8:281:12 | ptr_i | This variable is read, but may not have been written. It should be guarded by a check that the $@ returns at least 1. | test.cpp:280:3:280:7 | call to scanf | call to scanf |
-| test.cpp:289:7:289:7 | i | This variable is read, but may not have been written. It should be guarded by a check that the $@ returns at least 1. | test.cpp:288:3:288:7 | call to scanf | call to scanf |
-| test.cpp:383:25:383:25 | u | This variable is read, but may not have been written. It should be guarded by a check that the $@ returns at least 1. | test.cpp:382:6:382:11 | call to sscanf | call to sscanf |
+| test.cpp:35:7:35:7 | i | This variable is read, but may not have been written. It should be guarded by a check that the $@ returns at least 1. | test.cpp:34:3:34:7 | call to scanf | call to scanf |
+| test.cpp:51:7:51:7 | i | This variable is read, but may not have been written. It should be guarded by a check that the $@ returns at least 1. | test.cpp:50:3:50:7 | call to scanf | call to scanf |
+| test.cpp:68:7:68:7 | i | This variable is read, but may not have been written. It should be guarded by a check that the $@ returns at least 1. | test.cpp:67:3:67:7 | call to scanf | call to scanf |
+| test.cpp:80:7:80:7 | i | This variable is read, but may not have been written. It should be guarded by a check that the $@ returns at least 1. | test.cpp:79:3:79:7 | call to scanf | call to scanf |
+| test.cpp:90:8:90:8 | i | This variable is read, but may not have been written. It should be guarded by a check that the $@ returns at least 1. | test.cpp:89:3:89:7 | call to scanf | call to scanf |
+| test.cpp:98:8:98:8 | i | This variable is read, but may not have been written. It should be guarded by a check that the $@ returns at least 1. | test.cpp:97:3:97:7 | call to scanf | call to scanf |
+| test.cpp:108:7:108:7 | i | This variable is read, but may not have been written. It should be guarded by a check that the $@ returns at least 1. | test.cpp:107:3:107:8 | call to fscanf | call to fscanf |
+| test.cpp:115:7:115:7 | i | This variable is read, but may not have been written. It should be guarded by a check that the $@ returns at least 1. | test.cpp:114:3:114:8 | call to sscanf | call to sscanf |
+| test.cpp:164:8:164:8 | i | This variable is read, but may not have been written. It should be guarded by a check that the $@ returns at least 1. | test.cpp:162:7:162:11 | call to scanf | call to scanf |
+| test.cpp:173:8:173:8 | i | This variable is read, but may not have been written. It should be guarded by a check that the $@ returns at least 1. | test.cpp:171:7:171:11 | call to scanf | call to scanf |
+| test.cpp:205:8:205:8 | i | This variable is read, but may not have been written. It should be guarded by a check that the $@ returns at least 1. | test.cpp:204:7:204:11 | call to scanf | call to scanf |
+| test.cpp:224:8:224:8 | j | This variable is read, but may not have been written. It should be guarded by a check that the $@ returns at least 2. | test.cpp:221:7:221:11 | call to scanf | call to scanf |
+| test.cpp:248:9:248:9 | d | This variable is read, but may not have been written. It should be guarded by a check that the $@ returns at least 2. | test.cpp:246:25:246:29 | call to scanf | call to scanf |
+| test.cpp:252:9:252:9 | d | This variable is read, but may not have been written. It should be guarded by a check that the $@ returns at least 2. | test.cpp:250:14:250:18 | call to scanf | call to scanf |
+| test.cpp:264:7:264:7 | i | This variable is read, but may not have been written. It should be guarded by a check that the $@ returns at least 1. | test.cpp:263:3:263:7 | call to scanf | call to scanf |
+| test.cpp:272:7:272:7 | i | This variable is read, but may not have been written. It should be guarded by a check that the $@ returns at least 1. | test.cpp:271:3:271:7 | call to scanf | call to scanf |
+| test.cpp:280:7:280:7 | i | This variable is read, but may not have been written. It should be guarded by a check that the $@ returns at least 1. | test.cpp:279:3:279:7 | call to scanf | call to scanf |
+| test.cpp:292:7:292:7 | i | This variable is read, but may not have been written. It should be guarded by a check that the $@ returns at least 1. | test.cpp:291:3:291:7 | call to scanf | call to scanf |
+| test.cpp:302:8:302:12 | ptr_i | This variable is read, but may not have been written. It should be guarded by a check that the $@ returns at least 1. | test.cpp:301:3:301:7 | call to scanf | call to scanf |
+| test.cpp:310:7:310:7 | i | This variable is read, but may not have been written. It should be guarded by a check that the $@ returns at least 1. | test.cpp:309:3:309:7 | call to scanf | call to scanf |
+| test.cpp:404:25:404:25 | u | This variable is read, but may not have been written. It should be guarded by a check that the $@ returns at least 1. | test.cpp:403:6:403:11 | call to sscanf | call to sscanf |
diff --git a/cpp/ql/test/query-tests/Critical/MissingCheckScanf/test.cpp b/cpp/ql/test/query-tests/Critical/MissingCheckScanf/test.cpp
index e621936dc33..38af4d7efcd 100644
--- a/cpp/ql/test/query-tests/Critical/MissingCheckScanf/test.cpp
+++ b/cpp/ql/test/query-tests/Critical/MissingCheckScanf/test.cpp
@@ -19,6 +19,11 @@ FILE *get_a_stream();
 const char *get_a_string();
 extern locale_t get_a_locale();
 
+typedef long size_t;
+
+void *malloc(size_t size);
+void free(void *ptr);
+
 int main()
 {
 	// --- simple cases ---
@@ -78,6 +83,22 @@ int main()
 		use(i); // GOOD
 	}
 
+	{
+		int *i = (int*)malloc(sizeof(int)); // Allocated variable
+
+		scanf("%d", i);
+		use(*i); // BAD
+		free(i); // GOOD
+	}
+
+	{
+		int *i = new int; // Allocated variable
+
+		scanf("%d", i);
+		use(*i); // BAD
+		delete i; // GOOD
+	}
+
 	// --- different scanf functions ---
 
 	{

From 12c1ebd81cb914968f6ef9fdb5012376d6d10b85 Mon Sep 17 00:00:00 2001
From: Michael Nebel <michaelnebel@github.com>
Date: Thu, 15 Dec 2022 09:41:14 +0100
Subject: [PATCH 1372/1420] C#/Java: Add change note.

---
 .../ql/src/change-notes/2022-12-15-rename-mad-extensibles.md  | 4 ++++
 java/ql/src/change-notes/2022-12-15-rename-mad-extensibles.md | 4 ++++
 2 files changed, 8 insertions(+)
 create mode 100644 csharp/ql/src/change-notes/2022-12-15-rename-mad-extensibles.md
 create mode 100644 java/ql/src/change-notes/2022-12-15-rename-mad-extensibles.md

diff --git a/csharp/ql/src/change-notes/2022-12-15-rename-mad-extensibles.md b/csharp/ql/src/change-notes/2022-12-15-rename-mad-extensibles.md
new file mode 100644
index 00000000000..39532da22c8
--- /dev/null
+++ b/csharp/ql/src/change-notes/2022-12-15-rename-mad-extensibles.md
@@ -0,0 +1,4 @@
+---
+category: minorAnalysis
+---
+* The extensible predicates for Models as Data have been renamed (the `ext` prefix has been removed). As an example `extSummaryModel` has been renamed to `summaryModel`.
\ No newline at end of file
diff --git a/java/ql/src/change-notes/2022-12-15-rename-mad-extensibles.md b/java/ql/src/change-notes/2022-12-15-rename-mad-extensibles.md
new file mode 100644
index 00000000000..39532da22c8
--- /dev/null
+++ b/java/ql/src/change-notes/2022-12-15-rename-mad-extensibles.md
@@ -0,0 +1,4 @@
+---
+category: minorAnalysis
+---
+* The extensible predicates for Models as Data have been renamed (the `ext` prefix has been removed). As an example `extSummaryModel` has been renamed to `summaryModel`.
\ No newline at end of file

From b3feb4f29574597e8f62c560421158e1c9e3b303 Mon Sep 17 00:00:00 2001
From: Tom Hvitved <hvitved@github.com>
Date: Thu, 15 Dec 2022 10:46:06 +0100
Subject: [PATCH 1373/1420] Update
 ruby/ql/lib/codeql/ruby/typetracking/TypeTrackerSpecific.qll

Co-authored-by: Asger F <asgerf@github.com>
---
 ruby/ql/lib/codeql/ruby/typetracking/TypeTrackerSpecific.qll | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/ruby/ql/lib/codeql/ruby/typetracking/TypeTrackerSpecific.qll b/ruby/ql/lib/codeql/ruby/typetracking/TypeTrackerSpecific.qll
index 9cb7ee7fef5..cc11b6b2a87 100644
--- a/ruby/ql/lib/codeql/ruby/typetracking/TypeTrackerSpecific.qll
+++ b/ruby/ql/lib/codeql/ruby/typetracking/TypeTrackerSpecific.qll
@@ -233,8 +233,8 @@ predicate returnStep(Node nodeFrom, Node nodeTo) {
   exists(ExprNodes::CallCfgNode call |
     nodeFrom instanceof DataFlowPrivate::ReturnNode and
     nodeFrom.(DataFlowPrivate::NodeImpl).getCfgScope() = DataFlowDispatch::getTarget(call) and
-    // deliberately do not include `getInitializeTarget`, since there is no direct
-    // flow out (only side-effects on `self`). Any fields being set in the initializer
+    // deliberately do not include `getInitializeTarget`, since calls to `new` should not
+    // get the return value from `initialize`. Any fields being set in the initializer
     // will reach all reads via `callStep` and `localFieldStep`.
     nodeTo.asExpr().getNode() = call.getNode()
   )

From 0b4c4fd58081431e6f986ca241f9a7b94413c295 Mon Sep 17 00:00:00 2001
From: Jeroen Ketema <jketema@github.com>
Date: Thu, 15 Dec 2022 12:46:32 +0100
Subject: [PATCH 1374/1420] C++: Simplify deallocation check

---
 cpp/ql/src/Critical/MissingCheckScanf.ql | 12 +-----------
 1 file changed, 1 insertion(+), 11 deletions(-)

diff --git a/cpp/ql/src/Critical/MissingCheckScanf.ql b/cpp/ql/src/Critical/MissingCheckScanf.ql
index 3b3fa62584b..29f1c2b07ad 100644
--- a/cpp/ql/src/Critical/MissingCheckScanf.ql
+++ b/cpp/ql/src/Critical/MissingCheckScanf.ql
@@ -112,21 +112,11 @@ BasicBlock blockGuardedBy(int value, string op, ScanfFunctionCall call) {
   )
 }
 
-predicate isDeallocationAccess(Access access) {
-  exists(FunctionCall deallocCall, DeallocationFunction deallocFunc |
-    deallocCall.getTarget() = deallocFunc
-  |
-    deallocCall.getArgument(deallocFunc.getFreedArg()) = access
-  )
-  or
-  exists(DeallocationExpr deallocExpr | deallocExpr.getFreedExpr() = access)
-}
-
 from ScanfOutput output, ScanfFunctionCall call, Access access
 where
   output.getCall() = call and
   output.hasGuardedAccess(access, false) and
-  not isDeallocationAccess(access)
+  not exists(DeallocationExpr dealloc | dealloc.getFreedExpr() = access)
 select access,
   "This variable is read, but may not have been written. " +
     "It should be guarded by a check that the $@ returns at least " +

From ef61d14e9cfdf6dbc47f3e2a077d10280d41fdaa Mon Sep 17 00:00:00 2001
From: Jeroen Ketema <jketema@github.com>
Date: Thu, 15 Dec 2022 12:57:13 +0100
Subject: [PATCH 1375/1420] C++: Add change note

---
 .../2022-12-15-no-scanf-buffer-allocation-warnings.md         | 4 ++++
 1 file changed, 4 insertions(+)
 create mode 100644 cpp/ql/src/change-notes/2022-12-15-no-scanf-buffer-allocation-warnings.md

diff --git a/cpp/ql/src/change-notes/2022-12-15-no-scanf-buffer-allocation-warnings.md b/cpp/ql/src/change-notes/2022-12-15-no-scanf-buffer-allocation-warnings.md
new file mode 100644
index 00000000000..fc02f7cbf3a
--- /dev/null
+++ b/cpp/ql/src/change-notes/2022-12-15-no-scanf-buffer-allocation-warnings.md
@@ -0,0 +1,4 @@
+---
+category: minorAnalysis
+---
+* The `cpp/missing-check-scanf` query no longer reports the free'ing of `scanf` output variables as potential reads.
\ No newline at end of file

From 100f64c09a67a833900bd32d1e41079915b79e1b Mon Sep 17 00:00:00 2001
From: Michael Nebel <michaelnebel@github.com>
Date: Thu, 15 Dec 2022 13:11:09 +0100
Subject: [PATCH 1376/1420] C#: Migrate tests to use the implicitly loaded
 .ext.yml data extensions.

---
 .../external-models/ExternalFlow.ext.yml      | 31 +++++++
 .../external-models/ext/test.model.yml        | 85 -------------------
 .../dataflow/external-models/sinks.ext.yml    | 11 +++
 .../dataflow/external-models/srcs.ext.yml     | 20 +++++
 .../dataflow/external-models/steps.ext.yml    | 20 +++++
 .../dataflow/external-models/steps.ql         | 18 ++--
 csharp/ql/test/qlpack.yml                     |  2 -
 7 files changed, 88 insertions(+), 99 deletions(-)
 create mode 100644 csharp/ql/test/library-tests/dataflow/external-models/ExternalFlow.ext.yml
 delete mode 100644 csharp/ql/test/library-tests/dataflow/external-models/ext/test.model.yml
 create mode 100644 csharp/ql/test/library-tests/dataflow/external-models/sinks.ext.yml
 create mode 100644 csharp/ql/test/library-tests/dataflow/external-models/srcs.ext.yml
 create mode 100644 csharp/ql/test/library-tests/dataflow/external-models/steps.ext.yml

diff --git a/csharp/ql/test/library-tests/dataflow/external-models/ExternalFlow.ext.yml b/csharp/ql/test/library-tests/dataflow/external-models/ExternalFlow.ext.yml
new file mode 100644
index 00000000000..a1c2a2d4d66
--- /dev/null
+++ b/csharp/ql/test/library-tests/dataflow/external-models/ExternalFlow.ext.yml
@@ -0,0 +1,31 @@
+extensions:
+  - addsTo:
+      pack: codeql/csharp-all
+      extensible: summaryModel
+    data:
+    # "namespace", "type", "overrides", "name", "signature", "ext", "inputspec", "outputspec", "kind", "provenance"
+      - ["My.Qltest", "D", false, "StepArgRes", "(System.Object)","", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["My.Qltest", "D", false, "StepArgArg", "(System.Object,System.Object)", "", "Argument[0]", "Argument[1]", "taint", "manual"]
+      - ["My.Qltest", "D", false, "StepArgQual", "(System.Object)", "", "Argument[0]", "Argument[this]", "taint", "manual"]
+      - ["My.Qltest", "D", false, "StepFieldGetter", "()", "", "Argument[this].Field[My.Qltest.D.Field]", "ReturnValue", "value", "manual"]
+      - ["My.Qltest", "D", false, "StepFieldSetter", "(System.Object)", "", "Argument[0]", "Argument[this].Field[My.Qltest.D.Field]", "value", "manual"]
+      - ["My.Qltest", "D", false, "StepFieldSetter", "(System.Object)", "", "Argument[this]", "ReturnValue.Field[My.Qltest.D.Field2]", "value", "manual"]
+      - ["My.Qltest", "D", false, "StepPropertyGetter", "()", "", "Argument[this].Property[My.Qltest.D.Property]", "ReturnValue", "value", "manual"]
+      - ["My.Qltest", "D", false, "StepPropertySetter", "(System.Object)", "", "Argument[0]", "Argument[this].Property[My.Qltest.D.Property]", "value", "manual"]
+      - ["My.Qltest", "D", false, "StepElementGetter", "()", "", "Argument[this].Element", "ReturnValue", "value", "manual"]
+      - ["My.Qltest", "D", false, "StepElementSetter", "(System.Object)", "", "Argument[0]", "Argument[this].Element", "value", "manual"]
+      - ["My.Qltest", "D", false, "Apply<,>", "(System.Func<S,T>,S)", "", "Argument[1]", "Argument[0].Parameter[0]", "value", "manual"]
+      - ["My.Qltest", "D", false, "Apply<,>", "(System.Func<S,T>,S)", "", "Argument[0].ReturnValue", "ReturnValue", "value", "manual"]
+      - ["My.Qltest", "D", false, "Apply2<>", "(System.Action<S>,S,S)", "", "Argument[1].Field[My.Qltest.D.Field]", "Argument[0].Parameter[0]", "value", "manual"]
+      - ["My.Qltest", "D", false, "Apply2<>", "(System.Action<S>,S,S)", "", "Argument[2].Field[My.Qltest.D.Field2]", "Argument[0].Parameter[0]", "value", "manual"]
+      - ["My.Qltest", "D", false, "Map<,>", "(S[],System.Func<S,T>)", "", "Argument[0].Element", "Argument[1].Parameter[0]", "value", "manual"]
+      - ["My.Qltest", "D", false, "Map<,>", "(S[],System.Func<S,T>)", "", "Argument[1].ReturnValue", "ReturnValue.Element", "value", "manual"]
+      - ["My.Qltest", "D", false, "Parse", "(System.String,System.Int32)", "", "Argument[0]", "Argument[1]", "taint", "manual"]
+      - ["My.Qltest", "D", false, "Reverse", "(System.Object[])", "", "Argument[0].WithElement", "ReturnValue", "value", "manual"]
+      - ["My.Qltest", "E", true, "get_MyProp", "()", "", "Argument[this].Field[My.Qltest.E.MyField]", "ReturnValue", "value", "manual"]
+      - ["My.Qltest", "E", true, "set_MyProp", "(System.Object)", "", "Argument[0]", "Argument[this].Field[My.Qltest.E.MyField]", "value", "manual"]
+      - ["My.Qltest", "G", false, "GeneratedFlow", "(System.Object)", "", "Argument[0]", "ReturnValue", "value", "generated"]
+      - ["My.Qltest", "G", false, "GeneratedFlowArgs", "(System.Object,System.Object)", "", "Argument[0]", "ReturnValue", "value", "generated"]
+      - ["My.Qltest", "G", false, "GeneratedFlowArgs", "(System.Object,System.Object)", "", "Argument[1]", "ReturnValue", "value", "generated"]
+      - ["My.Qltest", "G", false, "MixedFlowArgs", "(System.Object,System.Object)", "", "Argument[0]", "ReturnValue", "value", "generated"]
+      - ["My.Qltest", "G", false, "MixedFlowArgs", "(System.Object,System.Object)", "", "Argument[1]", "ReturnValue", "value", "manual"]
diff --git a/csharp/ql/test/library-tests/dataflow/external-models/ext/test.model.yml b/csharp/ql/test/library-tests/dataflow/external-models/ext/test.model.yml
deleted file mode 100644
index 7d2751f4ba1..00000000000
--- a/csharp/ql/test/library-tests/dataflow/external-models/ext/test.model.yml
+++ /dev/null
@@ -1,85 +0,0 @@
-extensions:
-
-  - addsTo:
-      pack: codeql/csharp-all
-      extensible: sourceModel
-    data:
-    # "namespace", "type", "overrides", "name", "signature", "ext", "spec", "kind", "provenance",
-      - ["My.Qltest", "A", false, "Src1", "()", "", "ReturnValue", "local", "manual"]
-      - ["My.Qltest", "A", false, "Src1", "(System.String)", "", "ReturnValue", "local", "manual"]
-      - ["My.Qltest", "A", false, "Src1", "", "", "ReturnValue", "local", "manual"]
-      - ["My.Qltest", "A", false, "Src2", "()", "", "ReturnValue", "local", "manual"]
-      - ["My.Qltest", "A", false, "Src3", "()", "", "ReturnValue", "local", "manual"]
-      - ["My.Qltest", "A", true, "Src2", "()", "", "ReturnValue", "local", "manual"]
-      - ["My.Qltest", "A", true, "Src3", "()", "", "ReturnValue", "local", "manual"]
-      - ["My.Qltest", "A", false, "SrcArg", "(System.Object)", "", "Argument[0]", "local", "manual"]
-      - ["My.Qltest", "A", false, "SrcArg", "(System.Object)", "", "Argument", "local", "manual"]
-      - ["My.Qltest", "A", true, "SrcParam", "(System.Object)", "", "Parameter[0]", "local", "manual"]
-      - ["My.Qltest", "SourceAttribute", false, "", "", "Attribute", "ReturnValue", "local", "manual"]
-      - ["My.Qltest", "SourceAttribute", false, "", "", "Attribute", "Parameter", "local", "manual"]
-      - ["My.Qltest", "SourceAttribute", false, "", "", "Attribute", "", "local", "manual"]
-      - ["My.Qltest", "A", false, "SrcTwoArg", "(System.String,System.String)", "", "ReturnValue", "local", "manual"]
-
-  - addsTo:
-      pack: codeql/csharp-all
-      extensible: sinkModel
-    data:
-    # "namespace", "type", "overrides", "name", "signature", "ext", "spec", "kind", "provenance"
-      - ["My.Qltest", "B", false, "Sink1", "(System.Object)", "", "Argument[0]", "code", "manual"]
-      - ["My.Qltest", "B", false, "SinkMethod", "()", "", "ReturnValue", "xss", "manual"]
-      - ["My.Qltest", "SinkAttribute", false, "", "", "Attribute", "ReturnValue", "html", "manual"]
-      - ["My.Qltest", "SinkAttribute", false, "", "", "Attribute", "Argument", "remote", "manual"]
-      - ["My.Qltest", "SinkAttribute", false, "", "", "Attribute", "", "sql", "manual"]
-
-  # Summaries relevant for the ExternalFlow testcase.
-  - addsTo:
-      pack: codeql/csharp-all
-      extensible: summaryModel
-    data:
-    # "namespace", "type", "overrides", "name", "signature", "ext", "inputspec", "outputspec", "kind", "provenance"
-      - ["My.Qltest", "D", false, "StepArgRes", "(System.Object)","", "Argument[0]", "ReturnValue", "taint", "manual"]
-      - ["My.Qltest", "D", false, "StepArgArg", "(System.Object,System.Object)", "", "Argument[0]", "Argument[1]", "taint", "manual"]
-      - ["My.Qltest", "D", false, "StepArgQual", "(System.Object)", "", "Argument[0]", "Argument[this]", "taint", "manual"]
-      - ["My.Qltest", "D", false, "StepFieldGetter", "()", "", "Argument[this].Field[My.Qltest.D.Field]", "ReturnValue", "value", "manual"]
-      - ["My.Qltest", "D", false, "StepFieldSetter", "(System.Object)", "", "Argument[0]", "Argument[this].Field[My.Qltest.D.Field]", "value", "manual"]
-      - ["My.Qltest", "D", false, "StepFieldSetter", "(System.Object)", "", "Argument[this]", "ReturnValue.Field[My.Qltest.D.Field2]", "value", "manual"]
-      - ["My.Qltest", "D", false, "StepPropertyGetter", "()", "", "Argument[this].Property[My.Qltest.D.Property]", "ReturnValue", "value", "manual"]
-      - ["My.Qltest", "D", false, "StepPropertySetter", "(System.Object)", "", "Argument[0]", "Argument[this].Property[My.Qltest.D.Property]", "value", "manual"]
-      - ["My.Qltest", "D", false, "StepElementGetter", "()", "", "Argument[this].Element", "ReturnValue", "value", "manual"]
-      - ["My.Qltest", "D", false, "StepElementSetter", "(System.Object)", "", "Argument[0]", "Argument[this].Element", "value", "manual"]
-      - ["My.Qltest", "D", false, "Apply<,>", "(System.Func<S,T>,S)", "", "Argument[1]", "Argument[0].Parameter[0]", "value", "manual"]
-      - ["My.Qltest", "D", false, "Apply<,>", "(System.Func<S,T>,S)", "", "Argument[0].ReturnValue", "ReturnValue", "value", "manual"]
-      - ["My.Qltest", "D", false, "Apply2<>", "(System.Action<S>,S,S)", "", "Argument[1].Field[My.Qltest.D.Field]", "Argument[0].Parameter[0]", "value", "manual"]
-      - ["My.Qltest", "D", false, "Apply2<>", "(System.Action<S>,S,S)", "", "Argument[2].Field[My.Qltest.D.Field2]", "Argument[0].Parameter[0]", "value", "manual"]
-      - ["My.Qltest", "D", false, "Map<,>", "(S[],System.Func<S,T>)", "", "Argument[0].Element", "Argument[1].Parameter[0]", "value", "manual"]
-      - ["My.Qltest", "D", false, "Map<,>", "(S[],System.Func<S,T>)", "", "Argument[1].ReturnValue", "ReturnValue.Element", "value", "manual"]
-      - ["My.Qltest", "D", false, "Parse", "(System.String,System.Int32)", "", "Argument[0]", "Argument[1]", "taint", "manual"]
-      - ["My.Qltest", "D", false, "Reverse", "(System.Object[])", "", "Argument[0].WithElement", "ReturnValue", "value", "manual"]
-      - ["My.Qltest", "E", true, "get_MyProp", "()", "", "Argument[this].Field[My.Qltest.E.MyField]", "ReturnValue", "value", "manual"]
-      - ["My.Qltest", "E", true, "set_MyProp", "(System.Object)", "", "Argument[0]", "Argument[this].Field[My.Qltest.E.MyField]", "value", "manual"]
-      - ["My.Qltest", "G", false, "GeneratedFlow", "(System.Object)", "", "Argument[0]", "ReturnValue", "value", "generated"]
-      - ["My.Qltest", "G", false, "GeneratedFlowArgs", "(System.Object,System.Object)", "", "Argument[0]", "ReturnValue", "value", "generated"]
-      - ["My.Qltest", "G", false, "GeneratedFlowArgs", "(System.Object,System.Object)", "", "Argument[1]", "ReturnValue", "value", "generated"]
-      - ["My.Qltest", "G", false, "MixedFlowArgs", "(System.Object,System.Object)", "", "Argument[0]", "ReturnValue", "value", "generated"]
-      - ["My.Qltest", "G", false, "MixedFlowArgs", "(System.Object,System.Object)", "", "Argument[1]", "ReturnValue", "value", "manual"]
-
-  # Summaries relevant for the Steps testcase.
-  - addsTo:
-      pack: codeql/csharp-all
-      extensible: summaryModel
-      # "namespace", "type", "overrides", "name", "signature", "ext", "inputspec", "outputspec", "kind", "provenance"
-    data:
-      - ["My.Qltest", "C", false, "StepArgRes", "(System.Object)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
-      - ["My.Qltest", "C", false, "StepArgArg", "(System.Object,System.Object)", "", "Argument[0]", "Argument[1]", "taint", "manual"]
-      - ["My.Qltest", "C", false, "StepArgQual", "(System.Object)", "", "Argument[0]", "Argument[this]", "taint", "manual"]
-      - ["My.Qltest", "C", false, "StepQualRes", "()", "", "Argument[this]", "ReturnValue", "taint", "manual"]
-      - ["My.Qltest", "C", false, "StepQualArg", "(System.Object)", "", "Argument[this]", "Argument[0]", "taint", "manual"]
-      - ["My.Qltest", "C", false, "StepFieldGetter", "()", "", "Argument[this].Field[My.Qltest.C.Field]", "ReturnValue", "value", "manual"]
-      - ["My.Qltest", "C", false, "StepFieldSetter", "(System.Int32)", "", "Argument[0]", "Argument[this].Field[My.Qltest.C.Field]", "value", "manual"]
-      - ["My.Qltest", "C", false, "StepPropertyGetter", "()", "", "Argument[this].Property[My.Qltest.C.Property]", "ReturnValue", "value", "manual"]
-      - ["My.Qltest", "C", false, "StepPropertySetter", "(System.Int32)", "", "Argument[0]", "Argument[this].Property[My.Qltest.C.Property]", "value", "manual"]
-      - ["My.Qltest", "C", false, "StepElementGetter", "()", "", "Argument[this].Element", "ReturnValue", "value", "manual"]
-      - ["My.Qltest", "C", false, "StepElementSetter", "(System.Int32)", "", "Argument[0]", "Argument[this].Element", "value", "manual"]
-      - ["My.Qltest", "C+Generic<,>", false, "StepGeneric", "(T)", "", "Argument[0]", "ReturnValue", "value", "manual"]
-      - ["My.Qltest", "C+Generic<,>", false, "StepGeneric2<>", "(S)", "", "Argument[0]", "ReturnValue", "value", "manual"]
-      - ["My.Qltest", "C+Base<>", true, "StepOverride", "(T)", "", "Argument[0]", "ReturnValue", "value", "manual"]
diff --git a/csharp/ql/test/library-tests/dataflow/external-models/sinks.ext.yml b/csharp/ql/test/library-tests/dataflow/external-models/sinks.ext.yml
new file mode 100644
index 00000000000..3198057f42c
--- /dev/null
+++ b/csharp/ql/test/library-tests/dataflow/external-models/sinks.ext.yml
@@ -0,0 +1,11 @@
+extensions:
+  - addsTo:
+      pack: codeql/csharp-all
+      extensible: sinkModel
+    data:
+    # "namespace", "type", "overrides", "name", "signature", "ext", "spec", "kind", "provenance"
+      - ["My.Qltest", "B", false, "Sink1", "(System.Object)", "", "Argument[0]", "code", "manual"]
+      - ["My.Qltest", "B", false, "SinkMethod", "()", "", "ReturnValue", "xss", "manual"]
+      - ["My.Qltest", "SinkAttribute", false, "", "", "Attribute", "ReturnValue", "html", "manual"]
+      - ["My.Qltest", "SinkAttribute", false, "", "", "Attribute", "Argument", "remote", "manual"]
+      - ["My.Qltest", "SinkAttribute", false, "", "", "Attribute", "", "sql", "manual"]
diff --git a/csharp/ql/test/library-tests/dataflow/external-models/srcs.ext.yml b/csharp/ql/test/library-tests/dataflow/external-models/srcs.ext.yml
new file mode 100644
index 00000000000..163d2636ab0
--- /dev/null
+++ b/csharp/ql/test/library-tests/dataflow/external-models/srcs.ext.yml
@@ -0,0 +1,20 @@
+extensions:
+  - addsTo:
+      pack: codeql/csharp-all
+      extensible: sourceModel
+    data:
+    # "namespace", "type", "overrides", "name", "signature", "ext", "spec", "kind", "provenance",
+      - ["My.Qltest", "A", false, "Src1", "()", "", "ReturnValue", "local", "manual"]
+      - ["My.Qltest", "A", false, "Src1", "(System.String)", "", "ReturnValue", "local", "manual"]
+      - ["My.Qltest", "A", false, "Src1", "", "", "ReturnValue", "local", "manual"]
+      - ["My.Qltest", "A", false, "Src2", "()", "", "ReturnValue", "local", "manual"]
+      - ["My.Qltest", "A", false, "Src3", "()", "", "ReturnValue", "local", "manual"]
+      - ["My.Qltest", "A", true, "Src2", "()", "", "ReturnValue", "local", "manual"]
+      - ["My.Qltest", "A", true, "Src3", "()", "", "ReturnValue", "local", "manual"]
+      - ["My.Qltest", "A", false, "SrcArg", "(System.Object)", "", "Argument[0]", "local", "manual"]
+      - ["My.Qltest", "A", false, "SrcArg", "(System.Object)", "", "Argument", "local", "manual"]
+      - ["My.Qltest", "A", true, "SrcParam", "(System.Object)", "", "Parameter[0]", "local", "manual"]
+      - ["My.Qltest", "SourceAttribute", false, "", "", "Attribute", "ReturnValue", "local", "manual"]
+      - ["My.Qltest", "SourceAttribute", false, "", "", "Attribute", "Parameter", "local", "manual"]
+      - ["My.Qltest", "SourceAttribute", false, "", "", "Attribute", "", "local", "manual"]
+      - ["My.Qltest", "A", false, "SrcTwoArg", "(System.String,System.String)", "", "ReturnValue", "local", "manual"]
\ No newline at end of file
diff --git a/csharp/ql/test/library-tests/dataflow/external-models/steps.ext.yml b/csharp/ql/test/library-tests/dataflow/external-models/steps.ext.yml
new file mode 100644
index 00000000000..7507f5a8883
--- /dev/null
+++ b/csharp/ql/test/library-tests/dataflow/external-models/steps.ext.yml
@@ -0,0 +1,20 @@
+extensions:
+  - addsTo:
+      pack: codeql/csharp-all
+      extensible: summaryModel
+      # "namespace", "type", "overrides", "name", "signature", "ext", "inputspec", "outputspec", "kind", "provenance"
+    data:
+      - ["My.Qltest", "C", false, "StepArgRes", "(System.Object)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["My.Qltest", "C", false, "StepArgArg", "(System.Object,System.Object)", "", "Argument[0]", "Argument[1]", "taint", "manual"]
+      - ["My.Qltest", "C", false, "StepArgQual", "(System.Object)", "", "Argument[0]", "Argument[this]", "taint", "manual"]
+      - ["My.Qltest", "C", false, "StepQualRes", "()", "", "Argument[this]", "ReturnValue", "taint", "manual"]
+      - ["My.Qltest", "C", false, "StepQualArg", "(System.Object)", "", "Argument[this]", "Argument[0]", "taint", "manual"]
+      - ["My.Qltest", "C", false, "StepFieldGetter", "()", "", "Argument[this].Field[My.Qltest.C.Field]", "ReturnValue", "value", "manual"]
+      - ["My.Qltest", "C", false, "StepFieldSetter", "(System.Int32)", "", "Argument[0]", "Argument[this].Field[My.Qltest.C.Field]", "value", "manual"]
+      - ["My.Qltest", "C", false, "StepPropertyGetter", "()", "", "Argument[this].Property[My.Qltest.C.Property]", "ReturnValue", "value", "manual"]
+      - ["My.Qltest", "C", false, "StepPropertySetter", "(System.Int32)", "", "Argument[0]", "Argument[this].Property[My.Qltest.C.Property]", "value", "manual"]
+      - ["My.Qltest", "C", false, "StepElementGetter", "()", "", "Argument[this].Element", "ReturnValue", "value", "manual"]
+      - ["My.Qltest", "C", false, "StepElementSetter", "(System.Int32)", "", "Argument[0]", "Argument[this].Element", "value", "manual"]
+      - ["My.Qltest", "C+Generic<,>", false, "StepGeneric", "(T)", "", "Argument[0]", "ReturnValue", "value", "manual"]
+      - ["My.Qltest", "C+Generic<,>", false, "StepGeneric2<>", "(S)", "", "Argument[0]", "ReturnValue", "value", "manual"]
+      - ["My.Qltest", "C+Base<>", true, "StepOverride", "(T)", "", "Argument[0]", "ReturnValue", "value", "manual"]
diff --git a/csharp/ql/test/library-tests/dataflow/external-models/steps.ql b/csharp/ql/test/library-tests/dataflow/external-models/steps.ql
index 2e216a672d7..f7635eae882 100644
--- a/csharp/ql/test/library-tests/dataflow/external-models/steps.ql
+++ b/csharp/ql/test/library-tests/dataflow/external-models/steps.ql
@@ -6,30 +6,24 @@ import semmle.code.csharp.dataflow.FlowSummary
 import semmle.code.csharp.dataflow.internal.DataFlowDispatch as DataFlowDispatch
 import semmle.code.csharp.dataflow.internal.FlowSummaryImpl as FlowSummaryImpl
 
-private SummarizedCallable getRelevantSummarizedCallable() {
-  exists(SummarizedCallable sc |
-    sc.getDeclaringType*().getName() = "C" and
-    sc instanceof DataFlowDispatch::DataFlowSummarizedCallable and
-    result = sc
-  )
-}
-
 query predicate summaryThroughStep(
   DataFlow::Node node1, DataFlow::Node node2, boolean preservesValue
 ) {
   FlowSummaryImpl::Private::Steps::summaryThroughStepValue(node1, node2,
-    getRelevantSummarizedCallable()) and
+    any(DataFlowDispatch::DataFlowSummarizedCallable sc)) and
   preservesValue = true
   or
   FlowSummaryImpl::Private::Steps::summaryThroughStepTaint(node1, node2,
-    getRelevantSummarizedCallable()) and
+    any(DataFlowDispatch::DataFlowSummarizedCallable sc)) and
   preservesValue = false
 }
 
 query predicate summaryGetterStep(DataFlow::Node arg, DataFlow::Node out, Content c) {
-  FlowSummaryImpl::Private::Steps::summaryGetterStep(arg, c, out, getRelevantSummarizedCallable())
+  FlowSummaryImpl::Private::Steps::summaryGetterStep(arg, c, out,
+    any(DataFlowDispatch::DataFlowSummarizedCallable sc))
 }
 
 query predicate summarySetterStep(DataFlow::Node arg, DataFlow::Node out, Content c) {
-  FlowSummaryImpl::Private::Steps::summarySetterStep(arg, c, out, getRelevantSummarizedCallable())
+  FlowSummaryImpl::Private::Steps::summarySetterStep(arg, c, out,
+    any(DataFlowDispatch::DataFlowSummarizedCallable sc))
 }
diff --git a/csharp/ql/test/qlpack.yml b/csharp/ql/test/qlpack.yml
index 3e526fe5800..b0ce8ef1920 100644
--- a/csharp/ql/test/qlpack.yml
+++ b/csharp/ql/test/qlpack.yml
@@ -4,6 +4,4 @@ dependencies:
   codeql/csharp-all: ${workspace}
   codeql/csharp-queries: ${workspace}
 extractor: csharp
-dataExtensions:
-  - library-tests/dataflow/external-models/ext/*.model.yml
 tests: .

From 1a1b6a1b931de664c8c3f3db3d704248fef8b411 Mon Sep 17 00:00:00 2001
From: Owen Mansel-Chan <owen-mc@github.com>
Date: Thu, 15 Dec 2022 12:11:55 +0000
Subject: [PATCH 1377/1420] Use any() to stub getCallbackParameter/ReturnType

This is used in all other languages not currently using dataflow type
pruning.
---
 .../semmle/go/dataflow/internal/FlowSummaryImplSpecific.qll  | 5 +++--
 1 file changed, 3 insertions(+), 2 deletions(-)

diff --git a/go/ql/lib/semmle/go/dataflow/internal/FlowSummaryImplSpecific.qll b/go/ql/lib/semmle/go/dataflow/internal/FlowSummaryImplSpecific.qll
index 5ecf73fe3df..0c461ea63ab 100644
--- a/go/ql/lib/semmle/go/dataflow/internal/FlowSummaryImplSpecific.qll
+++ b/go/ql/lib/semmle/go/dataflow/internal/FlowSummaryImplSpecific.qll
@@ -46,13 +46,14 @@ DataFlowType getReturnType(SummarizedCallable c, ReturnKind rk) { any() }
  * Gets the type of the `i`th parameter in a synthesized call that targets a
  * callback of type `t`.
  */
-DataFlowType getCallbackParameterType(DataFlowType t, int i) { none() }
+bindingset[t, pos]
+DataFlowType getCallbackParameterType(DataFlowType t, ArgumentPosition pos) { any() }
 
 /**
  * Gets the return type of kind `rk` in a synthesized call that targets a
  * callback of type `t`.
  */
-DataFlowType getCallbackReturnType(DataFlowType t, ReturnKind rk) { none() }
+DataFlowType getCallbackReturnType(DataFlowType t, ReturnKind rk) { any() }
 
 /** Gets the type of synthetic global `sg`. */
 DataFlowType getSyntheticGlobalType(SummaryComponent::SyntheticGlobal sg) { none() }

From 76a3fa856f4acddf5764536bd9ed6a3f02f2a17e Mon Sep 17 00:00:00 2001
From: Owen Mansel-Chan <owen-mc@github.com>
Date: Thu, 15 Dec 2022 12:13:30 +0000
Subject: [PATCH 1378/1420] Use any() to stub getSyntheticGlobalType

This is used in all other languages not currently using dataflow type
pruning.
---
 .../lib/semmle/go/dataflow/internal/FlowSummaryImplSpecific.qll | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/go/ql/lib/semmle/go/dataflow/internal/FlowSummaryImplSpecific.qll b/go/ql/lib/semmle/go/dataflow/internal/FlowSummaryImplSpecific.qll
index 0c461ea63ab..fd82938968a 100644
--- a/go/ql/lib/semmle/go/dataflow/internal/FlowSummaryImplSpecific.qll
+++ b/go/ql/lib/semmle/go/dataflow/internal/FlowSummaryImplSpecific.qll
@@ -56,7 +56,7 @@ DataFlowType getCallbackParameterType(DataFlowType t, ArgumentPosition pos) { an
 DataFlowType getCallbackReturnType(DataFlowType t, ReturnKind rk) { any() }
 
 /** Gets the type of synthetic global `sg`. */
-DataFlowType getSyntheticGlobalType(SummaryComponent::SyntheticGlobal sg) { none() }
+DataFlowType getSyntheticGlobalType(SummaryComponent::SyntheticGlobal sg) { any() }
 
 /**
  * Holds if an external flow summary exists for `c` with input specification

From 8e61c78ce630df7d3f2e7be1768fa9de07932beb Mon Sep 17 00:00:00 2001
From: Geoffrey White <40627776+geoffw0@users.noreply.github.com>
Date: Thu, 15 Dec 2022 12:36:32 +0000
Subject: [PATCH 1379/1420] Swift: Fix RemoteFlowSource performance issue.

---
 .../ql/lib/codeql/swift/frameworks/StandardLibrary/WebView.qll | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/swift/ql/lib/codeql/swift/frameworks/StandardLibrary/WebView.qll b/swift/ql/lib/codeql/swift/frameworks/StandardLibrary/WebView.qll
index b16c6aba370..702933644e5 100644
--- a/swift/ql/lib/codeql/swift/frameworks/StandardLibrary/WebView.qll
+++ b/swift/ql/lib/codeql/swift/frameworks/StandardLibrary/WebView.qll
@@ -125,7 +125,8 @@ private class JsExportedSource extends RemoteFlowSource {
       base.getEnclosingDecl() instanceof JsExportedProto and
       adopter.getEnclosingDecl() instanceof JsExportedType
     |
-      this.asExpr().(MemberRefExpr).getMember() = adopter and adopter.getName() = base.getName()
+      this.asExpr().(MemberRefExpr).getMember() = adopter and
+      pragma[only_bind_out](adopter.getName()) = pragma[only_bind_out](base.getName())
     )
   }
 

From e7ea0d7ee917104247e06e35ee128d2a46be5046 Mon Sep 17 00:00:00 2001
From: Geoffrey White <40627776+geoffw0@users.noreply.github.com>
Date: Thu, 15 Dec 2022 13:05:56 +0000
Subject: [PATCH 1380/1420] C++: Attempt to clarify the way Allocation.qll and
 Deallocation.qll should be used.

---
 .../code/cpp/models/interfaces/Allocation.qll | 67 ++++++++++---------
 .../cpp/models/interfaces/Deallocation.qll    | 23 ++++---
 2 files changed, 48 insertions(+), 42 deletions(-)

diff --git a/cpp/ql/lib/semmle/code/cpp/models/interfaces/Allocation.qll b/cpp/ql/lib/semmle/code/cpp/models/interfaces/Allocation.qll
index 00281f0f756..38a3ce235fb 100644
--- a/cpp/ql/lib/semmle/code/cpp/models/interfaces/Allocation.qll
+++ b/cpp/ql/lib/semmle/code/cpp/models/interfaces/Allocation.qll
@@ -11,38 +11,6 @@
 import semmle.code.cpp.Function
 import semmle.code.cpp.models.Models
 
-/**
- * An allocation function such as `malloc`.
- */
-abstract class AllocationFunction extends Function {
-  /**
-   * Gets the index of the argument for the allocation size, if any. The actual
-   * allocation size is the value of this argument multiplied by the result of
-   * `getSizeMult()`, in bytes.
-   */
-  int getSizeArg() { none() }
-
-  /**
-   * Gets the index of an argument that multiplies the allocation size given by
-   * `getSizeArg`, if any.
-   */
-  int getSizeMult() { none() }
-
-  /**
-   * Gets the index of the input pointer argument to be reallocated, if this
-   * is a `realloc` function.
-   */
-  int getReallocPtrArg() { none() }
-
-  /**
-   * Whether or not this allocation requires a corresponding deallocation of
-   * some sort (most do, but `alloca` for example does not).  If it is unclear,
-   * we default to no (for example a placement `new` allocation may or may not
-   * require a corresponding `delete`).
-   */
-  predicate requiresDealloc() { any() }
-}
-
 /**
  * An allocation expression such as call to `malloc` or a `new` expression.
  */
@@ -86,6 +54,41 @@ abstract class AllocationExpr extends Expr {
   predicate requiresDealloc() { any() }
 }
 
+/**
+ * An allocation function such as `malloc`.
+ *
+ * Note: `AllocationExpr` includes calls to allocation functions, so prefer
+ * to use that class unless you specifically need to reason about functions.
+ */
+abstract class AllocationFunction extends Function {
+  /**
+   * Gets the index of the argument for the allocation size, if any. The actual
+   * allocation size is the value of this argument multiplied by the result of
+   * `getSizeMult()`, in bytes.
+   */
+  int getSizeArg() { none() }
+
+  /**
+   * Gets the index of an argument that multiplies the allocation size given by
+   * `getSizeArg`, if any.
+   */
+  int getSizeMult() { none() }
+
+  /**
+   * Gets the index of the input pointer argument to be reallocated, if this
+   * is a `realloc` function.
+   */
+  int getReallocPtrArg() { none() }
+
+  /**
+   * Whether or not this allocation requires a corresponding deallocation of
+   * some sort (most do, but `alloca` for example does not).  If it is unclear,
+   * we default to no (for example a placement `new` allocation may or may not
+   * require a corresponding `delete`).
+   */
+  predicate requiresDealloc() { any() }
+}
+
 /**
  * An `operator new` or `operator new[]` function that may be associated with
  * `new` or `new[]` expressions.  Note that `new` and `new[]` are not function
diff --git a/cpp/ql/lib/semmle/code/cpp/models/interfaces/Deallocation.qll b/cpp/ql/lib/semmle/code/cpp/models/interfaces/Deallocation.qll
index 9c74102e99c..569caebe36f 100644
--- a/cpp/ql/lib/semmle/code/cpp/models/interfaces/Deallocation.qll
+++ b/cpp/ql/lib/semmle/code/cpp/models/interfaces/Deallocation.qll
@@ -11,16 +11,6 @@
 import semmle.code.cpp.Function
 import semmle.code.cpp.models.Models
 
-/**
- * A deallocation function such as `free`.
- */
-abstract class DeallocationFunction extends Function {
-  /**
-   * Gets the index of the argument that is freed by this function.
-   */
-  int getFreedArg() { none() }
-}
-
 /**
  * An deallocation expression such as call to `free` or a `delete` expression.
  */
@@ -31,6 +21,19 @@ abstract class DeallocationExpr extends Expr {
   Expr getFreedExpr() { none() }
 }
 
+/**
+ * A deallocation function such as `free`.
+ *
+ * Note: `DeallocationExpr` includes calls to deallocation functions, so prefer
+ * to use that class unless you specifically need to reason about functions.
+ */
+abstract class DeallocationFunction extends Function {
+  /**
+   * Gets the index of the argument that is freed by this function.
+   */
+  int getFreedArg() { none() }
+}
+
 /**
  * An `operator delete` or `operator delete[]` function that may be associated
  * with `delete` or `delete[]` expressions.  Note that `delete` and `delete[]`

From 6dc798f97046f924eb985388e4f2127aedee6aff Mon Sep 17 00:00:00 2001
From: Michael Nebel <michaelnebel@github.com>
Date: Thu, 15 Dec 2022 13:35:05 +0100
Subject: [PATCH 1381/1420] Java: Migrate tests to use implicit ext.yml data
 extensions.

---
 java/ql/test/ext/test.model.yml               | 145 ------------------
 .../dataflow/notnullexpr/test.ext.yml         |   6 +
 .../dataflow/whenexpr/test.ext.yml            |   6 +
 .../dataflow/callback-dispatch/test.ext.yml   |  18 +++
 .../collections/containerflow.ext.yml         |   7 +
 .../dataflow/external-models/sinks.ext.yml    |  10 ++
 .../dataflow/external-models/srcs.ext.yml     |  21 +++
 .../dataflow/external-models/steps.ext.yml    |  13 ++
 .../dataflow/synth-global/test.ext.yml        |  10 ++
 .../content-provider-summaries/test.ext.yml   |   9 ++
 .../frameworks/android/intent/test.ext.yml    |   9 ++
 .../android/notification/test.ext.yml         |   6 +
 .../apache-collections/test.ext.yml           |   7 +
 .../guava/generated/collect/test.ext.yml      |   8 +
 .../frameworks/stream/test.ext.yml            |   6 +
 .../test/library-tests/optional/test.ext.yml  |   6 +
 java/ql/test/qlpack.yml                       |   2 -
 17 files changed, 142 insertions(+), 147 deletions(-)
 delete mode 100644 java/ql/test/ext/test.model.yml
 create mode 100644 java/ql/test/kotlin/library-tests/dataflow/notnullexpr/test.ext.yml
 create mode 100644 java/ql/test/kotlin/library-tests/dataflow/whenexpr/test.ext.yml
 create mode 100644 java/ql/test/library-tests/dataflow/callback-dispatch/test.ext.yml
 create mode 100644 java/ql/test/library-tests/dataflow/collections/containerflow.ext.yml
 create mode 100644 java/ql/test/library-tests/dataflow/external-models/sinks.ext.yml
 create mode 100644 java/ql/test/library-tests/dataflow/external-models/srcs.ext.yml
 create mode 100644 java/ql/test/library-tests/dataflow/external-models/steps.ext.yml
 create mode 100644 java/ql/test/library-tests/dataflow/synth-global/test.ext.yml
 create mode 100644 java/ql/test/library-tests/frameworks/android/content-provider-summaries/test.ext.yml
 create mode 100644 java/ql/test/library-tests/frameworks/android/intent/test.ext.yml
 create mode 100644 java/ql/test/library-tests/frameworks/android/notification/test.ext.yml
 create mode 100644 java/ql/test/library-tests/frameworks/apache-collections/test.ext.yml
 create mode 100644 java/ql/test/library-tests/frameworks/guava/generated/collect/test.ext.yml
 create mode 100644 java/ql/test/library-tests/frameworks/stream/test.ext.yml
 create mode 100644 java/ql/test/library-tests/optional/test.ext.yml

diff --git a/java/ql/test/ext/test.model.yml b/java/ql/test/ext/test.model.yml
deleted file mode 100644
index e4d92164a07..00000000000
--- a/java/ql/test/ext/test.model.yml
+++ /dev/null
@@ -1,145 +0,0 @@
-extensions:
-  # Model(s) for Kotlin - dataflow/notnullexpr and dataflow/whenexpr test cases.
-  - addsTo:
-      pack: codeql/java-tests
-      extensible: summaryModel
-    data:
-      - ["", "Uri", False, "getQueryParameter", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
-
-  # Model(s) for Java - dataflow/callback-dispatch test case.
-  - addsTo:
-      pack: codeql/java-tests
-      extensible: summaryModel
-    data:
-      - ["my.callback.qltest", "A", False, "applyConsumer1", "(Object,Consumer1)", "", "Argument[0]", "Argument[1].Parameter[0]", "value", "manual"]
-      - ["my.callback.qltest", "A", False, "applyConsumer1Field1Field2", "(A,A,Consumer1)", "", "Argument[0].Field[my.callback.qltest.A.field1]", "Argument[2].Parameter[0]", "value", "manual"]
-      - ["my.callback.qltest", "A", False, "applyConsumer1Field1Field2", "(A,A,Consumer1)", "", "Argument[1].Field[my.callback.qltest.A.field2]", "Argument[2].Parameter[0]", "value", "manual"]
-      - ["my.callback.qltest", "A", False, "applyConsumer2", "(Object,Consumer2)", "", "Argument[0]", "Argument[1].Parameter[0]", "value", "manual"]
-      - ["my.callback.qltest", "A", False, "applyConsumer3", "(Object,Consumer3)", "", "Argument[0]", "Argument[1].Parameter[0]", "value", "manual"]
-      - ["my.callback.qltest", "A", False, "applyConsumer3_ret_postup", "(Consumer3)", "", "Argument[0].Parameter[0]", "ReturnValue", "value", "manual"]
-      - ["my.callback.qltest", "A", False, "forEach", "(Object[],Consumer3)", "", "Argument[0].ArrayElement", "Argument[1].Parameter[0]", "value", "manual"]
-      - ["my.callback.qltest", "A", False, "applyProducer1", "(Producer1)", "", "Argument[0].ReturnValue", "ReturnValue", "value", "manual"]
-      - ["my.callback.qltest", "A", False, "produceConsume", "(Producer1,Consumer3)", "", "Argument[0].ReturnValue", "Argument[1].Parameter[0]", "value", "manual"]
-      - ["my.callback.qltest", "A", False, "produceConsume", "(Producer1,Consumer3)", "", "Argument[1].Parameter[0]", "ReturnValue", "value", "manual"]
-      - ["my.callback.qltest", "A", False, "applyConverter1", "(Object,Converter1)", "", "Argument[0]", "Argument[1].Parameter[0]", "value", "manual"]
-      - ["my.callback.qltest", "A", False, "applyConverter1", "(Object,Converter1)", "", "Argument[1].ReturnValue", "ReturnValue", "value", "manual"]
-
-  # Model(s) for Java - dataflow/collections test case.
-  - addsTo:
-      pack: codeql/java-tests
-      extensible: summaryModel
-    data:
-      - ["", "B", False, "readElement", "(Spliterator)", "", "Argument[0].Element", "ReturnValue", "value", "manual"]
-      - ["", "B", False, "readElement", "(Stream)", "", "Argument[0].Element", "ReturnValue", "value", "manual"]
-
-  # Model(s) for Java - dataflow/external-models test cases.
-  - addsTo:
-      pack: codeql/java-tests
-      extensible: sourceModel
-    data:
-      - ["my.qltest", "A", False, "src1", "()", "", "ReturnValue", "qltest", "manual"]
-      - ["my.qltest", "A", False, "src1", "(String)", "", "ReturnValue", "qltest", "manual"]
-      - ["my.qltest", "A", False, "src1", "(java.lang.String)", "", "ReturnValue", "qltest-alt", "manual"]
-      - ["my.qltest", "A", False, "src1", "", "", "ReturnValue", "qltest-all-overloads", "manual"]
-      - ["my.qltest", "A", False, "src2", "()", "", "ReturnValue", "qltest", "manual"]
-      - ["my.qltest", "A", False, "src3", "()", "", "ReturnValue", "qltest", "manual"]
-      - ["my.qltest", "A", True, "src2", "()", "", "ReturnValue", "qltest-w-subtypes", "manual"]
-      - ["my.qltest", "A", True, "src3", "()", "", "ReturnValue", "qltest-w-subtypes", "manual"]
-      - ["my.qltest", "A", False, "srcArg", "(Object)", "", "Argument[0]", "qltest-argnum", "manual"]
-      - ["my.qltest", "A", False, "srcArg", "(Object)", "", "Argument", "qltest-argany", "manual"]
-      - ["my.qltest", "A$Handler", True, "handle", "(Object)", "", "Parameter[0]", "qltest-param-override", "manual"]
-      - ["my.qltest", "A$Tag", False, "", "", "Annotated", "ReturnValue", "qltest-retval", "manual"]
-      - ["my.qltest", "A$Tag", False, "", "", "Annotated", "Parameter", "qltest-param", "manual"]
-      - ["my.qltest", "A$Tag", False, "", "", "Annotated", "", "qltest-nospec", "manual"]
-      - ["my.qltest", "A", False, "srcTwoArg", "(String,String)", "", "ReturnValue", "qltest-shortsig", "manual"]
-      - ["my.qltest", "A", False, "srcTwoArg", "(java.lang.String,java.lang.String)", "", "ReturnValue", "qltest-longsig", "manual"]
-  - addsTo:
-      pack: codeql/java-tests
-      extensible: sinkModel
-    data:
-      - ["my.qltest", "B", False, "sink1", "(Object)", "", "Argument[0]", "qltest", "manual"]
-      - ["my.qltest", "B", False, "sinkMethod", "()", "", "ReturnValue", "qltest", "manual"]
-      - ["my.qltest", "B$Tag", False, "", "", "Annotated", "ReturnValue", "qltest-retval", "manual"]
-      - ["my.qltest", "B$Tag", False, "", "", "Annotated", "Argument", "qltest-arg", "manual"]
-      - ["my.qltest", "B$Tag", False, "", "", "Annotated", "", "qltest-nospec", "manual"]
-  - addsTo:
-      pack: codeql/java-tests
-      extensible: summaryModel
-    data:
-      - ["my.qltest", "C", False, "stepArgRes", "(Object)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
-      - ["my.qltest", "C", False, "stepArgArg", "(Object,Object)", "", "Argument[0]", "Argument[1]", "taint", "manual"]
-      - ["my.qltest", "C", False, "stepArgQual", "(Object)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
-      - ["my.qltest", "C", False, "stepQualRes", "()", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
-      - ["my.qltest", "C", False, "stepQualArg", "(Object)", "", "Argument[-1]", "Argument[0]", "taint", "manual"]
-      - ["my.qltest", "C", False, "stepArgResGenerated", "(Object)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
-      - ["my.qltest", "C", False, "stepArgResGeneratedIgnored", "(Object,Object)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
-      - ["my.qltest", "C", False, "stepArgResGeneratedIgnored", "(Object,Object)", "", "Argument[1]", "ReturnValue", "taint", "manual"]
-
-  # Model(s) for Java - dataflow/synth-global test case.
-  - addsTo:
-      pack: codeql/java-tests
-      extensible: summaryModel
-    data:
-      - ["my.qltest.synth", "A", False, "storeInArray", "(String)", "", "Argument[0]", "SyntheticGlobal[db1].ArrayElement", "value", "manual"]
-      - ["my.qltest.synth", "A", False, "storeTaintInArray", "(String)", "", "Argument[0]", "SyntheticGlobal[db1].ArrayElement", "taint", "manual"]
-      - ["my.qltest.synth", "A", False, "storeValue", "(String)", "", "Argument[0]", "SyntheticGlobal[db1]", "value", "manual"]
-      - ["my.qltest.synth", "A", False, "readValue", "()", "", "SyntheticGlobal[db1]", "ReturnValue", "value", "manual"]
-      - ["my.qltest.synth", "A", False, "readArray", "()", "", "SyntheticGlobal[db1].ArrayElement", "ReturnValue", "value", "manual"]
-
-  # Model(s) for Java - frameworks/android/content-provider-summaries test case.
-  - addsTo:
-      pack: codeql/java-tests
-      extensible: summaryModel
-    data:
-      - ["generatedtest", "Test", False, "newWithMapValueDefault", "(Object)", "", "Argument[0]", "ReturnValue.MapValue", "value", "manual"]
-      - ["generatedtest", "Test", False, "newWithMapKeyDefault", "(Object)", "", "Argument[0]", "ReturnValue.MapKey", "value", "manual"]
-      - ["generatedtest", "Test", False, "getMapValueDefault", "(Object)", "", "Argument[0].MapValue", "ReturnValue", "value", "manual"]
-      - ["generatedtest", "Test", False, "getMapKeyDefault", "(Object)", "", "Argument[0].MapKey", "ReturnValue", "value", "manual"]
-
-  # Model(s) for Java - frameworks/android/intent test case.
-  - addsTo:
-      pack: codeql/java-tests
-      extensible: summaryModel
-    data:
-      - ["generatedtest", "Test", False, "newBundleWithMapValue", "(Object)", "", "Argument[0]", "ReturnValue.MapValue", "value", "manual"]
-      - ["generatedtest", "Test", False, "newPersistableBundleWithMapValue", "(Object)", "", "Argument[0]", "ReturnValue.MapValue", "value", "manual"]
-      - ["generatedtest", "Test", False, "getMapValue", "(BaseBundle)", "", "Argument[0].MapValue", "ReturnValue", "value", "manual"]
-      - ["generatedtest", "Test", False, "newWithIntent_extras", "(Bundle)", "", "Argument[0]", "ReturnValue.SyntheticField[android.content.Intent.extras]", "value", "manual"]
-
-  # Model(s) for Java - frameworks/android/notification test case.
-  - addsTo:
-      pack: codeql/java-tests
-      extensible: summaryModel
-    data:
-      - ["generatedtest", "Test", False, "getMapKeyDefault", "(Bundle)", "", "Argument[0].MapKey", "ReturnValue", "value", "manual"]
-
-  # Model(s) for Java - frameworks/apache-collections test case.
-  - addsTo:
-      pack: codeql/java-tests
-      extensible: summaryModel
-    data:
-      - ["generatedtest", "Test", False, "newRBWithMapValue", "", "", "Argument[0]", "ReturnValue.MapValue", "value", "manual"]
-      - ["generatedtest", "Test", False, "newRBWithMapKey", "", "", "Argument[0]", "ReturnValue.MapKey", "value", "manual"]
-
-  # Model(s) for Java - frameworks/guave/generated/collect test case.
-  - addsTo:
-      pack: codeql/java-tests
-      extensible: summaryModel
-    data:
-      - ["generatedtest", "Test", False, "newWithElementDefault", "(Object)", "", "Argument[0]", "ReturnValue.Element", "value", "manual"]
-      - ["generatedtest", "Test", False, "newWithMapKeyDefault", "(Object)", "", "Argument[0]", "ReturnValue.MapKey", "value", "manual"]
-      - ["generatedtest", "Test", False, "newWithMapValueDefault", "(Object)", "", "Argument[0]", "ReturnValue.MapValue", "value", "manual"]
-
-  # Model(s) for Java - frameworks/stream test case.
-  - addsTo:
-      pack: codeql/java-tests
-      extensible: summaryModel
-    data:
-      - ["generatedtest", "Test", False, "getElementSpliterator", "(Spliterator)", "", "Argument[0].Element", "ReturnValue", "value", "manual"]
-
-  # Model(s) for Java - frameworks/stream test case.
-  - addsTo:
-      pack: codeql/java-tests
-      extensible: summaryModel
-    data:
-      - ["generatedtest", "Test", False, "getStreamElement", "", "", "Argument[0].Element", "ReturnValue", "value", "manual"]
diff --git a/java/ql/test/kotlin/library-tests/dataflow/notnullexpr/test.ext.yml b/java/ql/test/kotlin/library-tests/dataflow/notnullexpr/test.ext.yml
new file mode 100644
index 00000000000..7e049c5de11
--- /dev/null
+++ b/java/ql/test/kotlin/library-tests/dataflow/notnullexpr/test.ext.yml
@@ -0,0 +1,6 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-tests
+      extensible: summaryModel
+    data:
+      - ["", "Uri", False, "getQueryParameter", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
diff --git a/java/ql/test/kotlin/library-tests/dataflow/whenexpr/test.ext.yml b/java/ql/test/kotlin/library-tests/dataflow/whenexpr/test.ext.yml
new file mode 100644
index 00000000000..7e049c5de11
--- /dev/null
+++ b/java/ql/test/kotlin/library-tests/dataflow/whenexpr/test.ext.yml
@@ -0,0 +1,6 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-tests
+      extensible: summaryModel
+    data:
+      - ["", "Uri", False, "getQueryParameter", "", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
diff --git a/java/ql/test/library-tests/dataflow/callback-dispatch/test.ext.yml b/java/ql/test/library-tests/dataflow/callback-dispatch/test.ext.yml
new file mode 100644
index 00000000000..5f35c923ad0
--- /dev/null
+++ b/java/ql/test/library-tests/dataflow/callback-dispatch/test.ext.yml
@@ -0,0 +1,18 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-tests
+      extensible: summaryModel
+    data:
+      - ["my.callback.qltest", "A", False, "applyConsumer1", "(Object,Consumer1)", "", "Argument[0]", "Argument[1].Parameter[0]", "value", "manual"]
+      - ["my.callback.qltest", "A", False, "applyConsumer1Field1Field2", "(A,A,Consumer1)", "", "Argument[0].Field[my.callback.qltest.A.field1]", "Argument[2].Parameter[0]", "value", "manual"]
+      - ["my.callback.qltest", "A", False, "applyConsumer1Field1Field2", "(A,A,Consumer1)", "", "Argument[1].Field[my.callback.qltest.A.field2]", "Argument[2].Parameter[0]", "value", "manual"]
+      - ["my.callback.qltest", "A", False, "applyConsumer2", "(Object,Consumer2)", "", "Argument[0]", "Argument[1].Parameter[0]", "value", "manual"]
+      - ["my.callback.qltest", "A", False, "applyConsumer3", "(Object,Consumer3)", "", "Argument[0]", "Argument[1].Parameter[0]", "value", "manual"]
+      - ["my.callback.qltest", "A", False, "applyConsumer3_ret_postup", "(Consumer3)", "", "Argument[0].Parameter[0]", "ReturnValue", "value", "manual"]
+      - ["my.callback.qltest", "A", False, "forEach", "(Object[],Consumer3)", "", "Argument[0].ArrayElement", "Argument[1].Parameter[0]", "value", "manual"]
+      - ["my.callback.qltest", "A", False, "applyProducer1", "(Producer1)", "", "Argument[0].ReturnValue", "ReturnValue", "value", "manual"]
+      - ["my.callback.qltest", "A", False, "produceConsume", "(Producer1,Consumer3)", "", "Argument[0].ReturnValue", "Argument[1].Parameter[0]", "value", "manual"]
+      - ["my.callback.qltest", "A", False, "produceConsume", "(Producer1,Consumer3)", "", "Argument[1].Parameter[0]", "ReturnValue", "value", "manual"]
+      - ["my.callback.qltest", "A", False, "applyConverter1", "(Object,Converter1)", "", "Argument[0]", "Argument[1].Parameter[0]", "value", "manual"]
+      - ["my.callback.qltest", "A", False, "applyConverter1", "(Object,Converter1)", "", "Argument[1].ReturnValue", "ReturnValue", "value", "manual"]
+
diff --git a/java/ql/test/library-tests/dataflow/collections/containerflow.ext.yml b/java/ql/test/library-tests/dataflow/collections/containerflow.ext.yml
new file mode 100644
index 00000000000..ebe7e3b6ea5
--- /dev/null
+++ b/java/ql/test/library-tests/dataflow/collections/containerflow.ext.yml
@@ -0,0 +1,7 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-tests
+      extensible: summaryModel
+    data:
+      - ["", "B", False, "readElement", "(Spliterator)", "", "Argument[0].Element", "ReturnValue", "value", "manual"]
+      - ["", "B", False, "readElement", "(Stream)", "", "Argument[0].Element", "ReturnValue", "value", "manual"]
diff --git a/java/ql/test/library-tests/dataflow/external-models/sinks.ext.yml b/java/ql/test/library-tests/dataflow/external-models/sinks.ext.yml
new file mode 100644
index 00000000000..55a76b79b21
--- /dev/null
+++ b/java/ql/test/library-tests/dataflow/external-models/sinks.ext.yml
@@ -0,0 +1,10 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-tests
+      extensible: sinkModel
+    data:
+      - ["my.qltest", "B", False, "sink1", "(Object)", "", "Argument[0]", "qltest", "manual"]
+      - ["my.qltest", "B", False, "sinkMethod", "()", "", "ReturnValue", "qltest", "manual"]
+      - ["my.qltest", "B$Tag", False, "", "", "Annotated", "ReturnValue", "qltest-retval", "manual"]
+      - ["my.qltest", "B$Tag", False, "", "", "Annotated", "Argument", "qltest-arg", "manual"]
+      - ["my.qltest", "B$Tag", False, "", "", "Annotated", "", "qltest-nospec", "manual"]
diff --git a/java/ql/test/library-tests/dataflow/external-models/srcs.ext.yml b/java/ql/test/library-tests/dataflow/external-models/srcs.ext.yml
new file mode 100644
index 00000000000..7730d41e549
--- /dev/null
+++ b/java/ql/test/library-tests/dataflow/external-models/srcs.ext.yml
@@ -0,0 +1,21 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-tests
+      extensible: sourceModel
+    data:
+      - ["my.qltest", "A", False, "src1", "()", "", "ReturnValue", "qltest", "manual"]
+      - ["my.qltest", "A", False, "src1", "(String)", "", "ReturnValue", "qltest", "manual"]
+      - ["my.qltest", "A", False, "src1", "(java.lang.String)", "", "ReturnValue", "qltest-alt", "manual"]
+      - ["my.qltest", "A", False, "src1", "", "", "ReturnValue", "qltest-all-overloads", "manual"]
+      - ["my.qltest", "A", False, "src2", "()", "", "ReturnValue", "qltest", "manual"]
+      - ["my.qltest", "A", False, "src3", "()", "", "ReturnValue", "qltest", "manual"]
+      - ["my.qltest", "A", True, "src2", "()", "", "ReturnValue", "qltest-w-subtypes", "manual"]
+      - ["my.qltest", "A", True, "src3", "()", "", "ReturnValue", "qltest-w-subtypes", "manual"]
+      - ["my.qltest", "A", False, "srcArg", "(Object)", "", "Argument[0]", "qltest-argnum", "manual"]
+      - ["my.qltest", "A", False, "srcArg", "(Object)", "", "Argument", "qltest-argany", "manual"]
+      - ["my.qltest", "A$Handler", True, "handle", "(Object)", "", "Parameter[0]", "qltest-param-override", "manual"]
+      - ["my.qltest", "A$Tag", False, "", "", "Annotated", "ReturnValue", "qltest-retval", "manual"]
+      - ["my.qltest", "A$Tag", False, "", "", "Annotated", "Parameter", "qltest-param", "manual"]
+      - ["my.qltest", "A$Tag", False, "", "", "Annotated", "", "qltest-nospec", "manual"]
+      - ["my.qltest", "A", False, "srcTwoArg", "(String,String)", "", "ReturnValue", "qltest-shortsig", "manual"]
+      - ["my.qltest", "A", False, "srcTwoArg", "(java.lang.String,java.lang.String)", "", "ReturnValue", "qltest-longsig", "manual"]
diff --git a/java/ql/test/library-tests/dataflow/external-models/steps.ext.yml b/java/ql/test/library-tests/dataflow/external-models/steps.ext.yml
new file mode 100644
index 00000000000..d68e50ce558
--- /dev/null
+++ b/java/ql/test/library-tests/dataflow/external-models/steps.ext.yml
@@ -0,0 +1,13 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-tests
+      extensible: summaryModel
+    data:
+      - ["my.qltest", "C", False, "stepArgRes", "(Object)", "", "Argument[0]", "ReturnValue", "taint", "manual"]
+      - ["my.qltest", "C", False, "stepArgArg", "(Object,Object)", "", "Argument[0]", "Argument[1]", "taint", "manual"]
+      - ["my.qltest", "C", False, "stepArgQual", "(Object)", "", "Argument[0]", "Argument[-1]", "taint", "manual"]
+      - ["my.qltest", "C", False, "stepQualRes", "()", "", "Argument[-1]", "ReturnValue", "taint", "manual"]
+      - ["my.qltest", "C", False, "stepQualArg", "(Object)", "", "Argument[-1]", "Argument[0]", "taint", "manual"]
+      - ["my.qltest", "C", False, "stepArgResGenerated", "(Object)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["my.qltest", "C", False, "stepArgResGeneratedIgnored", "(Object,Object)", "", "Argument[0]", "ReturnValue", "taint", "generated"]
+      - ["my.qltest", "C", False, "stepArgResGeneratedIgnored", "(Object,Object)", "", "Argument[1]", "ReturnValue", "taint", "manual"]
diff --git a/java/ql/test/library-tests/dataflow/synth-global/test.ext.yml b/java/ql/test/library-tests/dataflow/synth-global/test.ext.yml
new file mode 100644
index 00000000000..3d3bbe9fd47
--- /dev/null
+++ b/java/ql/test/library-tests/dataflow/synth-global/test.ext.yml
@@ -0,0 +1,10 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-tests
+      extensible: summaryModel
+    data:
+      - ["my.qltest.synth", "A", False, "storeInArray", "(String)", "", "Argument[0]", "SyntheticGlobal[db1].ArrayElement", "value", "manual"]
+      - ["my.qltest.synth", "A", False, "storeTaintInArray", "(String)", "", "Argument[0]", "SyntheticGlobal[db1].ArrayElement", "taint", "manual"]
+      - ["my.qltest.synth", "A", False, "storeValue", "(String)", "", "Argument[0]", "SyntheticGlobal[db1]", "value", "manual"]
+      - ["my.qltest.synth", "A", False, "readValue", "()", "", "SyntheticGlobal[db1]", "ReturnValue", "value", "manual"]
+      - ["my.qltest.synth", "A", False, "readArray", "()", "", "SyntheticGlobal[db1].ArrayElement", "ReturnValue", "value", "manual"]
diff --git a/java/ql/test/library-tests/frameworks/android/content-provider-summaries/test.ext.yml b/java/ql/test/library-tests/frameworks/android/content-provider-summaries/test.ext.yml
new file mode 100644
index 00000000000..cf5c80bc456
--- /dev/null
+++ b/java/ql/test/library-tests/frameworks/android/content-provider-summaries/test.ext.yml
@@ -0,0 +1,9 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-tests
+      extensible: summaryModel
+    data:
+      - ["generatedtest", "Test", False, "newWithMapValueDefault", "(Object)", "", "Argument[0]", "ReturnValue.MapValue", "value", "manual"]
+      - ["generatedtest", "Test", False, "newWithMapKeyDefault", "(Object)", "", "Argument[0]", "ReturnValue.MapKey", "value", "manual"]
+      - ["generatedtest", "Test", False, "getMapValueDefault", "(Object)", "", "Argument[0].MapValue", "ReturnValue", "value", "manual"]
+      - ["generatedtest", "Test", False, "getMapKeyDefault", "(Object)", "", "Argument[0].MapKey", "ReturnValue", "value", "manual"]
diff --git a/java/ql/test/library-tests/frameworks/android/intent/test.ext.yml b/java/ql/test/library-tests/frameworks/android/intent/test.ext.yml
new file mode 100644
index 00000000000..31321102a46
--- /dev/null
+++ b/java/ql/test/library-tests/frameworks/android/intent/test.ext.yml
@@ -0,0 +1,9 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-tests
+      extensible: summaryModel
+    data:
+      - ["generatedtest", "Test", False, "newBundleWithMapValue", "(Object)", "", "Argument[0]", "ReturnValue.MapValue", "value", "manual"]
+      - ["generatedtest", "Test", False, "newPersistableBundleWithMapValue", "(Object)", "", "Argument[0]", "ReturnValue.MapValue", "value", "manual"]
+      - ["generatedtest", "Test", False, "getMapValue", "(BaseBundle)", "", "Argument[0].MapValue", "ReturnValue", "value", "manual"]
+      - ["generatedtest", "Test", False, "newWithIntent_extras", "(Bundle)", "", "Argument[0]", "ReturnValue.SyntheticField[android.content.Intent.extras]", "value", "manual"]
diff --git a/java/ql/test/library-tests/frameworks/android/notification/test.ext.yml b/java/ql/test/library-tests/frameworks/android/notification/test.ext.yml
new file mode 100644
index 00000000000..bd5c804fddc
--- /dev/null
+++ b/java/ql/test/library-tests/frameworks/android/notification/test.ext.yml
@@ -0,0 +1,6 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-tests
+      extensible: summaryModel
+    data:
+      - ["generatedtest", "Test", False, "getMapKeyDefault", "(Bundle)", "", "Argument[0].MapKey", "ReturnValue", "value", "manual"]
diff --git a/java/ql/test/library-tests/frameworks/apache-collections/test.ext.yml b/java/ql/test/library-tests/frameworks/apache-collections/test.ext.yml
new file mode 100644
index 00000000000..a5d1cc8e1ab
--- /dev/null
+++ b/java/ql/test/library-tests/frameworks/apache-collections/test.ext.yml
@@ -0,0 +1,7 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-tests
+      extensible: summaryModel
+    data:
+      - ["generatedtest", "Test", False, "newRBWithMapValue", "", "", "Argument[0]", "ReturnValue.MapValue", "value", "manual"]
+      - ["generatedtest", "Test", False, "newRBWithMapKey", "", "", "Argument[0]", "ReturnValue.MapKey", "value", "manual"]
diff --git a/java/ql/test/library-tests/frameworks/guava/generated/collect/test.ext.yml b/java/ql/test/library-tests/frameworks/guava/generated/collect/test.ext.yml
new file mode 100644
index 00000000000..153b649a3e6
--- /dev/null
+++ b/java/ql/test/library-tests/frameworks/guava/generated/collect/test.ext.yml
@@ -0,0 +1,8 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-tests
+      extensible: summaryModel
+    data:
+      - ["generatedtest", "Test", False, "newWithElementDefault", "(Object)", "", "Argument[0]", "ReturnValue.Element", "value", "manual"]
+      - ["generatedtest", "Test", False, "newWithMapKeyDefault", "(Object)", "", "Argument[0]", "ReturnValue.MapKey", "value", "manual"]
+      - ["generatedtest", "Test", False, "newWithMapValueDefault", "(Object)", "", "Argument[0]", "ReturnValue.MapValue", "value", "manual"]
diff --git a/java/ql/test/library-tests/frameworks/stream/test.ext.yml b/java/ql/test/library-tests/frameworks/stream/test.ext.yml
new file mode 100644
index 00000000000..4f1cc3e38ac
--- /dev/null
+++ b/java/ql/test/library-tests/frameworks/stream/test.ext.yml
@@ -0,0 +1,6 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-tests
+      extensible: summaryModel
+    data:
+      - ["generatedtest", "Test", False, "getElementSpliterator", "(Spliterator)", "", "Argument[0].Element", "ReturnValue", "value", "manual"]
diff --git a/java/ql/test/library-tests/optional/test.ext.yml b/java/ql/test/library-tests/optional/test.ext.yml
new file mode 100644
index 00000000000..2aebf3bdb97
--- /dev/null
+++ b/java/ql/test/library-tests/optional/test.ext.yml
@@ -0,0 +1,6 @@
+extensions:
+  - addsTo:
+      pack: codeql/java-tests
+      extensible: summaryModel
+    data:
+      - ["generatedtest", "Test", False, "getStreamElement", "", "", "Argument[0].Element", "ReturnValue", "value", "manual"]
diff --git a/java/ql/test/qlpack.yml b/java/ql/test/qlpack.yml
index 76f524125f5..d1fe5254a38 100644
--- a/java/ql/test/qlpack.yml
+++ b/java/ql/test/qlpack.yml
@@ -5,5 +5,3 @@ dependencies:
     codeql/java-queries: ${workspace}
 extractor: java
 tests: .
-dataExtensions:
-  - ext/*.model.yml

From 31c60e545e2175d4f91ee67820d3db7e145f6f19 Mon Sep 17 00:00:00 2001
From: Michael Nebel <michaelnebel@github.com>
Date: Thu, 15 Dec 2022 14:46:20 +0100
Subject: [PATCH 1382/1420] Java: Update the flow test generator to create
 ext.yml files.

---
 .../GenerateFlowTestCase.py                   | 23 ++++---------------
 1 file changed, 5 insertions(+), 18 deletions(-)

diff --git a/java/ql/src/utils/flowtestcasegenerator/GenerateFlowTestCase.py b/java/ql/src/utils/flowtestcasegenerator/GenerateFlowTestCase.py
index ee9cf94f0ab..fb10c934afd 100755
--- a/java/ql/src/utils/flowtestcasegenerator/GenerateFlowTestCase.py
+++ b/java/ql/src/utils/flowtestcasegenerator/GenerateFlowTestCase.py
@@ -16,7 +16,7 @@ if any(s == "--help" for s in sys.argv):
 GenerateFlowTestCase.py specsToTest.csv projectPom.xml outdir [--force]
 
 This generates test cases exercising function model specifications found in specsToTest.csv
-producing files Test.java, test.ql and test.expected in outdir.
+producing files Test.java, test.ql, test.ext.yml and test.expected in outdir.
 
 projectPom.xml should be a Maven pom sufficient to resolve the classes named in specsToTest.csv.
 Typically this means supplying a skeleton POM <dependencies> section that retrieves whatever jars
@@ -54,12 +54,11 @@ except Exception as e:
 
 resultJava = os.path.join(sys.argv[3], "Test.java")
 resultQl = os.path.join(sys.argv[3], "test.ql")
-resultYml = os.path.join(sys.argv[3], "test.model.yml")
-resultPack = os.path.join(sys.argv[3], "qlpack.yml")
+resultYml = os.path.join(sys.argv[3], "test.ext.yml")
 
-if not force and (os.path.exists(resultJava) or os.path.exists(resultQl) or os.path.exists(resultYml) or os.path.exists(resultPack)):
-    print("Won't overwrite existing files '%s', '%s', '%s' or '%s'." %
-          (resultJava, resultQl, resultYml, resultPack), file=sys.stderr)
+if not force and (os.path.exists(resultJava) or os.path.exists(resultQl) or os.path.exists(resultYml)):
+    print("Won't overwrite existing files '%s', '%s' or '%s'." %
+          (resultJava, resultQl, resultYml), file=sys.stderr)
     sys.exit(1)
 
 workDir = tempfile.mkdtemp()
@@ -231,18 +230,6 @@ if len(supportModelRows) != 0:
 {models}
 """
         f.write(dataextensions)
-    # Make a qlpack file such that the extension will be picked up
-    with open(resultPack, "w") as f:
-        f.write("""name: example-test-pack
-version: 0.0.0
-extractor: java
-dependencies:
-  codeql/java-all: '*'
-  codeql/java-queries: '*'
-  codeql/java-tests: '*'
-dataExtensions:
-  - test.model.yml
-""")
 
 # Make an empty .expected file, since this is an inline-exectations test
 with open(os.path.join(sys.argv[3], "test.expected"), "w"):

From 00354a2f08d80c8394e3d2109c3e74a539b96eef Mon Sep 17 00:00:00 2001
From: Michael Nebel <michaelnebel@github.com>
Date: Wed, 7 Dec 2022 15:46:56 +0100
Subject: [PATCH 1383/1420] C#: Add list- and slice pattern expression kinds
 and re-generate ExprKind.cs.

---
 csharp/extractor/Semmle.Extraction.CSharp/Kinds/ExprKind.cs | 4 +++-
 csharp/ql/lib/semmlecode.csharp.dbscheme                    | 3 +++
 2 files changed, 6 insertions(+), 1 deletion(-)

diff --git a/csharp/extractor/Semmle.Extraction.CSharp/Kinds/ExprKind.cs b/csharp/extractor/Semmle.Extraction.CSharp/Kinds/ExprKind.cs
index de48df1dc71..a56ccf4c746 100644
--- a/csharp/extractor/Semmle.Extraction.CSharp/Kinds/ExprKind.cs
+++ b/csharp/extractor/Semmle.Extraction.CSharp/Kinds/ExprKind.cs
@@ -125,6 +125,8 @@ namespace Semmle.Extraction.Kinds
         OR_PATTERN = 128,
         FUNCTION_POINTER_INVOCATION = 129,
         WITH = 130,
-        DEFINE_SYMBOL = 999
+        LIST_PATTERN = 131,
+        SLICE_PATTERN = 132,
+        DEFINE_SYMBOL = 999,
     }
 }
diff --git a/csharp/ql/lib/semmlecode.csharp.dbscheme b/csharp/ql/lib/semmlecode.csharp.dbscheme
index 4ac7d8bcac6..83aca6b3e4f 100644
--- a/csharp/ql/lib/semmlecode.csharp.dbscheme
+++ b/csharp/ql/lib/semmlecode.csharp.dbscheme
@@ -1134,6 +1134,9 @@ case @expr.kind of
 | 128 = @or_pattern_expr
 | 129 = @function_pointer_invocation_expr
 | 130 = @with_expr
+/* C# 11.0 */
+| 131 = @list_pattern_expr
+| 132 = @slice_pattern_expr
 /* Preprocessor */
 | 999 = @define_symbol_expr
 ;

From cfd3c1fcbe2ed880e42e484209c3dccd89c9c06f Mon Sep 17 00:00:00 2001
From: Michael Nebel <michaelnebel@github.com>
Date: Wed, 7 Dec 2022 16:26:28 +0100
Subject: [PATCH 1384/1420] C#: Add extractor support for list- and slice
 patterns.

---
 .../Expressions/Patterns/ListPattern.cs         | 15 +++++++++++++++
 .../Entities/Expressions/Patterns/Pattern.cs    |  6 ++++++
 .../Expressions/Patterns/SlicePattern.cs        | 17 +++++++++++++++++
 .../Semmle.Util/IEnumerableExtensions.cs        | 13 +++++++++++++
 4 files changed, 51 insertions(+)
 create mode 100644 csharp/extractor/Semmle.Extraction.CSharp/Entities/Expressions/Patterns/ListPattern.cs
 create mode 100644 csharp/extractor/Semmle.Extraction.CSharp/Entities/Expressions/Patterns/SlicePattern.cs

diff --git a/csharp/extractor/Semmle.Extraction.CSharp/Entities/Expressions/Patterns/ListPattern.cs b/csharp/extractor/Semmle.Extraction.CSharp/Entities/Expressions/Patterns/ListPattern.cs
new file mode 100644
index 00000000000..37e19b41aa7
--- /dev/null
+++ b/csharp/extractor/Semmle.Extraction.CSharp/Entities/Expressions/Patterns/ListPattern.cs
@@ -0,0 +1,15 @@
+using Microsoft.CodeAnalysis.CSharp.Syntax;
+using Semmle.Extraction.Kinds;
+using Semmle.Util;
+
+namespace Semmle.Extraction.CSharp.Entities.Expressions
+{
+    internal class ListPattern : Expression
+    {
+        internal ListPattern(Context cx, ListPatternSyntax syntax, IExpressionParentEntity parent, int child) :
+            base(new ExpressionInfo(cx, null, cx.CreateLocation(syntax.GetLocation()), ExprKind.LIST_PATTERN, parent, child, false, null))
+        {
+            syntax.Patterns.ForEach((p, i) => Pattern.Create(cx, p, this, i));
+        }
+    }
+}
\ No newline at end of file
diff --git a/csharp/extractor/Semmle.Extraction.CSharp/Entities/Expressions/Patterns/Pattern.cs b/csharp/extractor/Semmle.Extraction.CSharp/Entities/Expressions/Patterns/Pattern.cs
index d883995d062..304158d0a12 100644
--- a/csharp/extractor/Semmle.Extraction.CSharp/Entities/Expressions/Patterns/Pattern.cs
+++ b/csharp/extractor/Semmle.Extraction.CSharp/Entities/Expressions/Patterns/Pattern.cs
@@ -74,6 +74,12 @@ namespace Semmle.Extraction.CSharp.Entities.Expressions
                 case DiscardPatternSyntax dp:
                     return new Discard(cx, dp, parent, child);
 
+                case ListPatternSyntax listPattern:
+                    return new ListPattern(cx, listPattern, parent, child);
+
+                case SlicePatternSyntax slicePattern:
+                    return new SlicePattern(cx, slicePattern, parent, child);
+
                 default:
                     throw new InternalError(syntax, "Pattern not handled");
             }
diff --git a/csharp/extractor/Semmle.Extraction.CSharp/Entities/Expressions/Patterns/SlicePattern.cs b/csharp/extractor/Semmle.Extraction.CSharp/Entities/Expressions/Patterns/SlicePattern.cs
new file mode 100644
index 00000000000..d52af4f54f4
--- /dev/null
+++ b/csharp/extractor/Semmle.Extraction.CSharp/Entities/Expressions/Patterns/SlicePattern.cs
@@ -0,0 +1,17 @@
+using Microsoft.CodeAnalysis.CSharp.Syntax;
+using Semmle.Extraction.Kinds;
+
+namespace Semmle.Extraction.CSharp.Entities.Expressions
+{
+    internal class SlicePattern : Expression
+    {
+        public SlicePattern(Context cx, SlicePatternSyntax syntax, IExpressionParentEntity parent, int child) :
+            base(new ExpressionInfo(cx, null, cx.CreateLocation(syntax.GetLocation()), ExprKind.SLICE_PATTERN, parent, child, false, null))
+        {
+            if (syntax.Pattern is not null)
+            {
+                Pattern.Create(cx, syntax.Pattern, this, 0);
+            }
+        }
+    }
+}
\ No newline at end of file
diff --git a/csharp/extractor/Semmle.Util/IEnumerableExtensions.cs b/csharp/extractor/Semmle.Util/IEnumerableExtensions.cs
index 06be296d255..4e40288d88c 100644
--- a/csharp/extractor/Semmle.Util/IEnumerableExtensions.cs
+++ b/csharp/extractor/Semmle.Util/IEnumerableExtensions.cs
@@ -79,6 +79,19 @@ namespace Semmle.Util
                 a(item);
         }
 
+        /// <summary>
+        /// Applies the action <paramref name="a"/> to each item and its index in this collection.
+        /// </summary>
+        public static void ForEach<T>(this IEnumerable<T> items, Action<T, int> a)
+        {
+            var i = 0;
+            foreach (var item in items)
+            {
+                a(item, i);
+                i++;
+            }
+        }
+
         /// <summary>
         /// Forces enumeration of this collection and discards the result.
         /// </summary>

From 98e125fa98bd246add470115a94cb9ba85e08bb2 Mon Sep 17 00:00:00 2001
From: Michael Nebel <michaelnebel@github.com>
Date: Thu, 8 Dec 2022 10:45:05 +0100
Subject: [PATCH 1385/1420] C#: Add library support for list- and slice
 patterns.

---
 .../ql/lib/semmle/code/csharp/exprs/Expr.qll  | 32 +++++++++++++++++++
 1 file changed, 32 insertions(+)

diff --git a/csharp/ql/lib/semmle/code/csharp/exprs/Expr.qll b/csharp/ql/lib/semmle/code/csharp/exprs/Expr.qll
index 03a24b37345..4251a7ae8b6 100644
--- a/csharp/ql/lib/semmle/code/csharp/exprs/Expr.qll
+++ b/csharp/ql/lib/semmle/code/csharp/exprs/Expr.qll
@@ -321,6 +321,18 @@ private predicate hasChildPattern(ControlFlowElement pm, Expr child) {
     mid instanceof @tuple_expr and
     child = mid.getAChildExpr()
   )
+  or
+  exists(Expr mid |
+    hasChildPattern(pm, mid) and
+    mid instanceof @list_pattern_expr and
+    child = mid.getAChildExpr()
+  )
+  or
+  exists(Expr mid |
+    hasChildPattern(pm, mid) and
+    mid instanceof @slice_pattern_expr and
+    child = mid.getAChildExpr()
+  )
 }
 
 /**
@@ -506,6 +518,26 @@ class PositionalPatternExpr extends PatternExpr, @positional_pattern_expr {
   override string getAPrimaryQlClass() { result = "PositionalPatternExpr" }
 }
 
+/** A list pattern. For example `[1, 2, int y]` in `x is [1, 2, int y]`. */
+class ListPatternExpr extends PatternExpr, @list_pattern_expr {
+  override string toString() { result = "[ ... ]" }
+
+  /** Gets the `n`th pattern. */
+  PatternExpr getPattern(int n) { result = this.getChild(n) }
+
+  override string getAPrimaryQlClass() { result = "ListPatternExpr" }
+}
+
+/** A slice pattern. For example `..` in `x is [1, .., 2]. */
+class SlicePatternExpr extends PatternExpr, @slice_pattern_expr {
+  override string toString() { result = ".." }
+
+  /** Gets the subpattern, if any. */
+  PatternExpr getPattern() { result = this.getChild(0) }
+
+  override string getAPrimaryQlClass() { result = "SlicePatternExpr" }
+}
+
 /** A unary pattern. For example, `not 1`. */
 class UnaryPatternExpr extends PatternExpr, @unary_pattern_expr {
   /** Gets the underlying pattern. */

From e6b4055a5f3327acac330ff2f6f11142951d4b64 Mon Sep 17 00:00:00 2001
From: Michael Nebel <michaelnebel@github.com>
Date: Thu, 8 Dec 2022 10:45:37 +0100
Subject: [PATCH 1386/1420] C#: Add list pattern sample file.

---
 .../library-tests/csharp11/ListPattern.cs     | 38 +++++++++++++++++++
 1 file changed, 38 insertions(+)
 create mode 100644 csharp/ql/test/library-tests/csharp11/ListPattern.cs

diff --git a/csharp/ql/test/library-tests/csharp11/ListPattern.cs b/csharp/ql/test/library-tests/csharp11/ListPattern.cs
new file mode 100644
index 00000000000..2bede367969
--- /dev/null
+++ b/csharp/ql/test/library-tests/csharp11/ListPattern.cs
@@ -0,0 +1,38 @@
+using System.Collections.Generic;
+
+class ListPattern
+{
+    public void M1(int[] x)
+    {
+        if (x is []) { }
+        if (x is [1]) { }
+        if (x is [_, 2]) { }
+        if (x is [var y, 3, 4]) { }
+        if (x is [5 or 6, _, 7]) { }
+        if (x is [var a, .., 2]) { }
+        if (x is [var b, .. { Length: 2 or 5 }, 2]) { }
+    }
+
+    public void M2(string[] x)
+    {
+        switch (x)
+        {
+            case []:
+                break;
+            case ["A"]:
+                break;
+            case [_, "B"]:
+                break;
+            case [var y, "C", "D"]:
+                break;
+            case ["E" or "F", _, "G"]:
+                break;
+            case [var a, .., "H"]:
+                break;
+            case [var b, .. var c, "I"]:
+                break;
+            default:
+                break;
+        }
+    }
+}
\ No newline at end of file

From 88c8eceb4d12c3c1582fd243f30a16bf330bafa3 Mon Sep 17 00:00:00 2001
From: Michael Nebel <michaelnebel@github.com>
Date: Thu, 8 Dec 2022 10:46:28 +0100
Subject: [PATCH 1387/1420] C#: Add list pattern test and expected results.

---
 .../csharp11/listPattern.expected             | 20 +++++++++++++++++++
 .../library-tests/csharp11/listPattern.ql     | 19 ++++++++++++++++++
 2 files changed, 39 insertions(+)
 create mode 100644 csharp/ql/test/library-tests/csharp11/listPattern.expected
 create mode 100644 csharp/ql/test/library-tests/csharp11/listPattern.ql

diff --git a/csharp/ql/test/library-tests/csharp11/listPattern.expected b/csharp/ql/test/library-tests/csharp11/listPattern.expected
new file mode 100644
index 00000000000..7fcaa6be75c
--- /dev/null
+++ b/csharp/ql/test/library-tests/csharp11/listPattern.expected
@@ -0,0 +1,20 @@
+listPattern
+| ListPattern.cs:7:18:7:19 | [ ... ] |  |
+| ListPattern.cs:8:18:8:20 | [ ... ] | 1 |
+| ListPattern.cs:9:18:9:23 | [ ... ] | _, 2 |
+| ListPattern.cs:10:18:10:30 | [ ... ] | Int32 y, 3, 4 |
+| ListPattern.cs:11:18:11:31 | [ ... ] | ... or ..., _, 7 |
+| ListPattern.cs:12:18:12:31 | [ ... ] | Int32 a, .., 2 |
+| ListPattern.cs:13:18:13:50 | [ ... ] | Int32 b, .., 2 |
+| ListPattern.cs:20:18:20:19 | [ ... ] |  |
+| ListPattern.cs:22:18:22:22 | [ ... ] | "A" |
+| ListPattern.cs:24:18:24:25 | [ ... ] | _, "B" |
+| ListPattern.cs:26:18:26:34 | [ ... ] | String y, "C", "D" |
+| ListPattern.cs:28:18:28:37 | [ ... ] | ... or ..., _, "G" |
+| ListPattern.cs:30:18:30:33 | [ ... ] | String a, .., "H" |
+| ListPattern.cs:32:18:32:39 | [ ... ] | String b, .., "I" |
+slicePattern
+| ListPattern.cs:12:26:12:27 | .. | ..: |
+| ListPattern.cs:13:26:13:46 | .. | ..:{ ... } |
+| ListPattern.cs:30:26:30:27 | .. | ..: |
+| ListPattern.cs:32:26:32:33 | .. | ..:String[] c |
diff --git a/csharp/ql/test/library-tests/csharp11/listPattern.ql b/csharp/ql/test/library-tests/csharp11/listPattern.ql
new file mode 100644
index 00000000000..005530f2c24
--- /dev/null
+++ b/csharp/ql/test/library-tests/csharp11/listPattern.ql
@@ -0,0 +1,19 @@
+import csharp
+
+private string childPatterns(ListPatternExpr e) {
+  result = concat(string child, int n | child = e.getPattern(n).toString() | child, ", " order by n)
+}
+
+query predicate listPattern(ListPatternExpr pattern, string children) {
+  pattern.getFile().getStem() = "ListPattern" and
+  children = childPatterns(pattern)
+}
+
+query predicate slicePattern(SlicePatternExpr pattern, string s) {
+  pattern.getFile().getStem() = "ListPattern" and
+  exists(string child |
+    if exists(pattern.getPattern()) then child = pattern.getPattern().toString() else child = ""
+  |
+    s = pattern.toString() + ":" + child
+  )
+}

From 2c9e8bcb2da46a42e549e19eb3dd70f85465c569 Mon Sep 17 00:00:00 2001
From: Michael Nebel <michaelnebel@github.com>
Date: Thu, 8 Dec 2022 14:09:30 +0100
Subject: [PATCH 1388/1420] C#: Add upgrade script.

---
 .../old.dbscheme                              | 2064 ++++++++++++++++
 .../semmlecode.csharp.dbscheme                | 2067 +++++++++++++++++
 .../upgrade.properties                        |    2 +
 3 files changed, 4133 insertions(+)
 create mode 100644 csharp/ql/lib/upgrades/4ac7d8bcac6f664b1e83c858aa71f8dc761cc603/old.dbscheme
 create mode 100644 csharp/ql/lib/upgrades/4ac7d8bcac6f664b1e83c858aa71f8dc761cc603/semmlecode.csharp.dbscheme
 create mode 100644 csharp/ql/lib/upgrades/4ac7d8bcac6f664b1e83c858aa71f8dc761cc603/upgrade.properties

diff --git a/csharp/ql/lib/upgrades/4ac7d8bcac6f664b1e83c858aa71f8dc761cc603/old.dbscheme b/csharp/ql/lib/upgrades/4ac7d8bcac6f664b1e83c858aa71f8dc761cc603/old.dbscheme
new file mode 100644
index 00000000000..4ac7d8bcac6
--- /dev/null
+++ b/csharp/ql/lib/upgrades/4ac7d8bcac6f664b1e83c858aa71f8dc761cc603/old.dbscheme
@@ -0,0 +1,2064 @@
+/* This is a dummy line to alter the dbscheme, so we can make a database upgrade
+ * without actually changing any of the dbscheme predicates. It contains a date
+ * to allow for such updates in the future as well.
+ *
+ * 2021-07-14
+ *
+ * DO NOT remove this comment carelessly, since it can revert the dbscheme back to a
+ * previously seen state (matching a previously seen SHA), which would make the upgrade
+ * mechanism not work properly.
+ */
+
+/**
+ * An invocation of the compiler. Note that more than one file may be
+ * compiled per invocation. For example, this command compiles three
+ * source files:
+ *
+ *   csc f1.cs f2.cs f3.cs
+ *
+ * The `id` simply identifies the invocation, while `cwd` is the working
+ * directory from which the compiler was invoked.
+ */
+compilations(
+    unique int id : @compilation,
+    string cwd : string ref
+);
+
+/**
+ * The arguments that were passed to the extractor for a compiler
+ * invocation. If `id` is for the compiler invocation
+ *
+ *   csc f1.cs f2.cs f3.cs
+ *
+ * then typically there will be rows for
+ *
+ * num | arg
+ * --- | ---
+ * 0   | --compiler
+ * 1   | *path to compiler*
+ * 2   | f1.cs
+ * 3   | f2.cs
+ * 4   | f3.cs
+ */
+#keyset[id, num]
+compilation_args(
+    int id : @compilation ref,
+    int num : int ref,
+    string arg : string ref
+);
+
+/**
+ * The source files that are compiled by a compiler invocation.
+ * If `id` is for the compiler invocation
+ *
+ *   csc f1.cs f2.cs f3.cs
+ *
+ * then there will be rows for
+ *
+ * num | arg
+ * --- | ---
+ * 0   | f1.cs
+ * 1   | f2.cs
+ * 2   | f3.cs
+ */
+#keyset[id, num]
+compilation_compiling_files(
+    int id : @compilation ref,
+    int num : int ref,
+    int file : @file ref
+);
+
+/**
+ * The references used by a compiler invocation.
+ * If `id` is for the compiler invocation
+ *
+ *   csc f1.cs f2.cs f3.cs /r:ref1.dll /r:ref2.dll /r:ref3.dll
+ *
+ * then there will be rows for
+ *
+ * num | arg
+ * --- | ---
+ * 0   | ref1.dll
+ * 1   | ref2.dll
+ * 2   | ref3.dll
+ */
+#keyset[id, num]
+compilation_referencing_files(
+    int id : @compilation ref,
+    int num : int ref,
+    int file : @file ref
+);
+
+/**
+ * The time taken by the extractor for a compiler invocation.
+ *
+ * For each file `num`, there will be rows for
+ *
+ * kind | seconds
+ * ---- | ---
+ * 1    | CPU seconds used by the extractor frontend
+ * 2    | Elapsed seconds during the extractor frontend
+ * 3    | CPU seconds used by the extractor backend
+ * 4    | Elapsed seconds during the extractor backend
+ */
+#keyset[id, num, kind]
+compilation_time(
+    int id : @compilation ref,
+    int num : int ref,
+    /* kind:
+       1 = frontend_cpu_seconds
+       2 = frontend_elapsed_seconds
+       3 = extractor_cpu_seconds
+       4 = extractor_elapsed_seconds
+    */
+    int kind : int ref,
+    float seconds : float ref
+);
+
+/**
+ * An error or warning generated by the extractor.
+ * The diagnostic message `diagnostic` was generated during compiler
+ * invocation `compilation`, and is the `file_number_diagnostic_number`th
+ * message generated while extracting the `file_number`th file of that
+ * invocation.
+ */
+#keyset[compilation, file_number, file_number_diagnostic_number]
+diagnostic_for(
+    unique int diagnostic : @diagnostic ref,
+    int compilation : @compilation ref,
+    int file_number : int ref,
+    int file_number_diagnostic_number : int ref
+);
+
+diagnostics(
+    unique int id: @diagnostic,
+    int severity: int ref,
+    string error_tag: string ref,
+    string error_message: string ref,
+    string full_error_message: string ref,
+    int location: @location_default ref
+);
+
+extractor_messages(
+    unique int id: @extractor_message,
+    int severity: int ref,
+    string origin : string ref,
+    string text : string ref,
+    string entity : string ref,
+    int location: @location_default ref,
+    string stack_trace : string ref
+);
+
+/**
+ * If extraction was successful, then `cpu_seconds` and
+ * `elapsed_seconds` are the CPU time and elapsed time (respectively)
+ * that extraction took for compiler invocation `id`.
+ */
+compilation_finished(
+    unique int id : @compilation ref,
+    float cpu_seconds : float ref,
+    float elapsed_seconds : float ref
+);
+
+compilation_assembly(
+  unique int id : @compilation ref,
+  int assembly: @assembly ref
+)
+
+// Populated by the CSV extractor
+externalData(
+   int id: @externalDataElement,
+   string path: string ref,
+   int column: int ref,
+   string value: string ref);
+
+sourceLocationPrefix(
+  string prefix: string ref);
+
+/*
+ * C# dbscheme
+ */
+
+/** ELEMENTS **/
+
+@element = @declaration | @stmt | @expr | @modifier | @attribute | @namespace_declaration
+         | @using_directive | @type_parameter_constraints | @externalDataElement
+         | @xmllocatable | @asp_element | @namespace | @preprocessor_directive;
+
+@declaration = @callable | @generic | @assignable | @namespace;
+
+@named_element = @namespace | @declaration;
+
+@declaration_with_accessors = @property | @indexer | @event;
+
+@assignable = @variable | @assignable_with_accessors | @event;
+
+@assignable_with_accessors = @property | @indexer;
+
+@attributable = @assembly | @field | @parameter | @operator | @method | @constructor
+              | @destructor | @callable_accessor | @value_or_ref_type | @declaration_with_accessors
+              | @local_function | @lambda_expr;
+
+/** LOCATIONS, ASEMMBLIES, MODULES, FILES and FOLDERS **/
+
+@location = @location_default | @assembly;
+
+locations_default(
+  unique int id: @location_default,
+  int file: @file ref,
+  int beginLine: int ref,
+  int beginColumn: int ref,
+  int endLine: int ref,
+  int endColumn: int ref);
+
+locations_mapped(
+  unique int id: @location_default ref,
+  int mapped_to: @location_default ref);
+
+@sourceline = @file | @callable | @xmllocatable;
+
+numlines(
+  int element_id: @sourceline ref,
+  int num_lines: int ref,
+  int num_code: int ref,
+  int num_comment: int ref);
+
+assemblies(
+  unique int id: @assembly,
+  int file: @file ref,
+  string fullname: string ref,
+  string name: string ref,
+  string version: string ref);
+
+files(
+  unique int id: @file,
+  string name: string ref);
+
+folders(
+  unique int id: @folder,
+  string name: string ref);
+
+@container = @folder | @file ;
+
+containerparent(
+  int parent: @container ref,
+  unique int child: @container ref);
+
+file_extraction_mode(
+  unique int file: @file ref,
+  int mode: int ref
+  /* 0 = normal, 1 = standalone extractor */
+  );
+
+/** NAMESPACES **/
+
+@type_container = @namespace | @type;
+
+namespaces(
+  unique int id: @namespace,
+  string name: string ref);
+
+namespace_declarations(
+  unique int id: @namespace_declaration,
+  int namespace_id: @namespace ref);
+
+namespace_declaration_location(
+  unique int id: @namespace_declaration ref,
+  int loc: @location ref);
+
+parent_namespace(
+  unique int child_id: @type_container ref,
+  int namespace_id: @namespace ref);
+
+@declaration_or_directive = @namespace_declaration | @type | @using_directive;
+
+parent_namespace_declaration(
+  int child_id: @declaration_or_directive ref, // cannot be unique because of partial classes
+  int namespace_id: @namespace_declaration ref);
+
+@using_directive = @using_namespace_directive | @using_static_directive;
+
+using_global(
+  unique int id: @using_directive ref
+);
+
+using_namespace_directives(
+  unique int id: @using_namespace_directive,
+  int namespace_id: @namespace ref);
+
+using_static_directives(
+  unique int id: @using_static_directive,
+  int type_id: @type_or_ref ref);
+
+using_directive_location(
+  unique int id: @using_directive ref,
+  int loc: @location ref);
+
+@preprocessor_directive = @pragma_warning | @pragma_checksum | @directive_define | @directive_undefine | @directive_warning
+  | @directive_error | @directive_nullable | @directive_line | @directive_region | @directive_endregion | @directive_if
+  | @directive_elif | @directive_else | @directive_endif;
+
+@conditional_directive = @directive_if | @directive_elif;
+@branch_directive = @directive_if | @directive_elif | @directive_else;
+
+directive_ifs(
+  unique int id: @directive_if,
+  int branchTaken: int ref,     /* 0: false, 1: true */
+  int conditionValue: int ref); /* 0: false, 1: true */
+
+directive_elifs(
+  unique int id: @directive_elif,
+  int branchTaken: int ref,     /* 0: false, 1: true */
+  int conditionValue: int ref,  /* 0: false, 1: true */
+  int parent: @directive_if ref,
+  int index: int ref);
+
+directive_elses(
+  unique int id: @directive_else,
+  int branchTaken: int ref,   /* 0: false, 1: true */
+  int parent: @directive_if ref,
+  int index: int ref);
+
+#keyset[id, start]
+directive_endifs(
+  unique int id: @directive_endif,
+  unique int start: @directive_if ref);
+
+directive_define_symbols(
+  unique int id: @define_symbol_expr ref,
+  string name: string ref);
+
+directive_regions(
+  unique int id: @directive_region,
+  string name: string ref);
+
+#keyset[id, start]
+directive_endregions(
+  unique int id: @directive_endregion,
+  unique int start: @directive_region ref);
+
+directive_lines(
+  unique int id: @directive_line,
+  int kind: int ref); /* 0: default, 1: hidden, 2: numeric, 3: span */
+
+directive_line_value(
+  unique int id: @directive_line ref,
+  int line: int ref);
+
+directive_line_file(
+  unique int id: @directive_line ref,
+  int file: @file ref);
+
+directive_line_offset(
+  unique int id: @directive_line ref,
+  int offset: int ref);
+
+directive_line_span(
+  unique int id: @directive_line ref,
+  int startLine: int ref,
+  int startColumn: int ref,
+  int endLine: int ref,
+  int endColumn: int ref);
+
+directive_nullables(
+  unique int id: @directive_nullable,
+  int setting: int ref, /* 0: disable, 1: enable, 2: restore */
+  int target: int ref); /* 0: none, 1: annotations, 2: warnings */
+
+directive_warnings(
+  unique int id: @directive_warning,
+  string message: string ref);
+
+directive_errors(
+  unique int id: @directive_error,
+  string message: string ref);
+
+directive_undefines(
+  unique int id: @directive_undefine,
+  string name: string ref);
+
+directive_defines(
+  unique int id: @directive_define,
+  string name: string ref);
+
+pragma_checksums(
+  unique int id: @pragma_checksum,
+  int file: @file ref,
+  string guid: string ref,
+  string bytes: string ref);
+
+pragma_warnings(
+  unique int id: @pragma_warning,
+  int kind: int ref /* 0 = disable, 1 = restore */);
+
+#keyset[id, index]
+pragma_warning_error_codes(
+  int id: @pragma_warning ref,
+  string errorCode: string ref,
+  int index: int ref);
+
+preprocessor_directive_location(
+  unique int id: @preprocessor_directive ref,
+  int loc: @location ref);
+
+preprocessor_directive_compilation(
+  unique int id: @preprocessor_directive ref,
+  int compilation: @compilation ref);
+
+preprocessor_directive_active(
+  unique int id: @preprocessor_directive ref,
+  int active: int ref);  /* 0: false, 1: true */
+
+/** TYPES **/
+
+types(
+  unique int id: @type,
+  int kind: int ref,
+  string name: string ref);
+
+case @type.kind of
+   1 = @bool_type
+|  2 = @char_type
+|  3 = @decimal_type
+|  4 = @sbyte_type
+|  5 = @short_type
+|  6 = @int_type
+|  7 = @long_type
+|  8 = @byte_type
+|  9 = @ushort_type
+| 10 = @uint_type
+| 11 = @ulong_type
+| 12 = @float_type
+| 13 = @double_type
+| 14 = @enum_type
+| 15 = @struct_type
+| 17 = @class_type
+| 19 = @interface_type
+| 20 = @delegate_type
+| 21 = @null_type
+| 22 = @type_parameter
+| 23 = @pointer_type
+| 24 = @nullable_type
+| 25 = @array_type
+| 26 = @void_type
+| 27 = @int_ptr_type
+| 28 = @uint_ptr_type
+| 29 = @dynamic_type
+| 30 = @arglist_type
+| 31 = @unknown_type
+| 32 = @tuple_type
+| 33 = @function_pointer_type
+  ;
+
+@simple_type = @bool_type | @char_type | @integral_type | @floating_point_type | @decimal_type;
+@integral_type = @signed_integral_type | @unsigned_integral_type;
+@signed_integral_type = @sbyte_type | @short_type | @int_type | @long_type;
+@unsigned_integral_type = @byte_type  | @ushort_type | @uint_type | @ulong_type;
+@floating_point_type = @float_type | @double_type;
+@value_type = @simple_type | @enum_type | @struct_type | @nullable_type | @int_ptr_type
+            | @uint_ptr_type | @tuple_type;
+@ref_type = @class_type | @interface_type | @array_type | @delegate_type | @null_type
+          | @dynamic_type;
+@value_or_ref_type = @value_type | @ref_type;
+
+typerefs(
+  unique int id: @typeref,
+  string name: string ref);
+
+typeref_type(
+  int id: @typeref ref,
+  unique int typeId: @type ref);
+
+@type_or_ref = @type | @typeref;
+
+array_element_type(
+  unique int array: @array_type ref,
+  int dimension: int ref,
+  int rank: int ref,
+  int element: @type_or_ref ref);
+
+nullable_underlying_type(
+  unique int nullable: @nullable_type ref,
+  int underlying: @type_or_ref ref);
+
+pointer_referent_type(
+  unique int pointer: @pointer_type ref,
+  int referent: @type_or_ref ref);
+
+enum_underlying_type(
+  unique int enum_id: @enum_type ref,
+  int underlying_type_id: @type_or_ref ref);
+
+delegate_return_type(
+  unique int delegate_id: @delegate_type ref,
+  int return_type_id: @type_or_ref ref);
+
+function_pointer_return_type(
+    unique int function_pointer_id: @function_pointer_type ref,
+    int return_type_id: @type_or_ref ref);
+
+extend(
+  int sub: @type ref,
+  int super: @type_or_ref ref);
+
+anonymous_types(
+  unique int id: @type ref);
+
+@interface_or_ref = @interface_type | @typeref;
+
+implement(
+  int sub: @type ref,
+  int super: @type_or_ref ref);
+
+type_location(
+  int id: @type ref,
+  int loc: @location ref);
+
+tuple_underlying_type(
+  unique int tuple: @tuple_type ref,
+  int struct: @type_or_ref ref);
+
+#keyset[tuple, index]
+tuple_element(
+  int tuple: @tuple_type ref,
+  int index: int ref,
+  unique int field: @field ref);
+
+attributes(
+  unique int id: @attribute,
+  int kind: int ref,
+  int type_id: @type_or_ref ref,
+  int target:  @attributable ref);
+
+case @attribute.kind of
+  0 = @attribute_default
+| 1 = @attribute_return
+| 2 = @attribute_assembly
+| 3 = @attribute_module
+;
+
+attribute_location(
+  int id: @attribute ref,
+  int loc: @location ref);
+
+@type_mention_parent = @element | @type_mention;
+
+type_mention(
+  unique int id: @type_mention,
+  int type_id: @type_or_ref ref,
+  int parent: @type_mention_parent ref);
+
+type_mention_location(
+  unique int id: @type_mention ref,
+  int loc: @location ref);
+
+@has_type_annotation = @assignable | @type_parameter | @callable | @expr | @delegate_type | @generic | @function_pointer_type;
+
+/**
+ * A direct annotation on an entity, for example `string? x;`.
+ *
+ * Annotations:
+ * 2 = reftype is not annotated "!"
+ * 3 = reftype is annotated "?"
+ * 4 = readonly ref type / in parameter
+ * 5 = ref type parameter, return or local variable
+ * 6 = out parameter
+ *
+ * Note that the annotation depends on the element it annotates.
+ * @assignable: The annotation is on the type of the assignable, for example the variable type.
+ * @type_parameter: The annotation is on the reftype constraint
+ * @callable: The annotation is on the return type
+ * @array_type: The annotation is on the element type
+ */
+type_annotation(int id: @has_type_annotation ref, int annotation: int ref);
+
+nullability(unique int nullability: @nullability, int kind: int ref);
+
+case @nullability.kind of
+  0 = @oblivious
+| 1 = @not_annotated
+| 2 = @annotated
+;
+
+#keyset[parent, index]
+nullability_parent(int nullability: @nullability ref, int index: int ref, int parent: @nullability ref)
+
+type_nullability(int id: @has_type_annotation ref, int nullability: @nullability ref);
+
+/**
+ * The nullable flow state of an expression, as determined by Roslyn.
+ *   0 = none (default, not populated)
+ *   1 = not null
+ *   2 = maybe null
+ */
+expr_flowstate(unique int id: @expr ref, int state: int ref);
+
+/** GENERICS **/
+
+@generic = @type | @method | @local_function;
+
+type_parameters(
+  unique int id: @type_parameter ref,
+  int index: int ref,
+  int generic_id: @generic ref,
+  int variance: int ref /* none = 0, out = 1, in = 2 */);
+
+#keyset[constructed_id, index]
+type_arguments(
+  int id: @type_or_ref ref,
+  int index: int ref,
+  int constructed_id: @generic_or_ref ref);
+
+@generic_or_ref = @generic | @typeref;
+
+constructed_generic(
+  unique int constructed: @generic ref,
+  int generic: @generic_or_ref ref);
+
+type_parameter_constraints(
+  unique int id: @type_parameter_constraints,
+  int param_id: @type_parameter ref);
+
+type_parameter_constraints_location(
+  int id: @type_parameter_constraints ref,
+  int loc: @location ref);
+
+general_type_parameter_constraints(
+  int id: @type_parameter_constraints ref,
+  int kind: int ref /* class = 1, struct = 2, new = 3 */);
+
+specific_type_parameter_constraints(
+  int id: @type_parameter_constraints ref,
+  int base_id: @type_or_ref ref);
+
+specific_type_parameter_nullability(
+  int id: @type_parameter_constraints ref,
+  int base_id: @type_or_ref ref,
+  int nullability: @nullability ref);
+
+/** FUNCTION POINTERS */
+
+function_pointer_calling_conventions(
+  int id: @function_pointer_type ref,
+  int kind: int ref);
+
+#keyset[id, index]
+has_unmanaged_calling_conventions(
+  int id: @function_pointer_type ref,
+  int index: int ref,
+  int conv_id: @type_or_ref ref);
+
+/** MODIFIERS */
+
+@modifiable = @modifiable_direct | @event_accessor;
+
+@modifiable_direct = @member | @accessor | @local_function | @anonymous_function_expr;
+
+modifiers(
+  unique int id: @modifier,
+  string name: string ref);
+
+has_modifiers(
+  int id: @modifiable_direct ref,
+  int mod_id: @modifier ref);
+
+compiler_generated(unique int id: @modifiable ref);
+
+/** MEMBERS **/
+
+@member = @method | @constructor | @destructor | @field | @property | @event | @operator | @indexer | @type;
+
+@named_exprorstmt = @goto_stmt | @labeled_stmt | @expr;
+
+@virtualizable = @method | @property | @indexer | @event;
+
+exprorstmt_name(
+  unique int parent_id: @named_exprorstmt ref,
+  string name: string ref);
+
+nested_types(
+  unique int id: @type ref,
+  int declaring_type_id: @type ref,
+  int unbound_id: @type ref);
+
+properties(
+  unique int id: @property,
+  string name: string ref,
+  int declaring_type_id: @type ref,
+  int type_id: @type_or_ref ref,
+  int unbound_id: @property ref);
+
+property_location(
+  int id: @property ref,
+  int loc: @location ref);
+
+indexers(
+  unique int id: @indexer,
+  string name: string ref,
+  int declaring_type_id: @type ref,
+  int type_id: @type_or_ref ref,
+  int unbound_id: @indexer ref);
+
+indexer_location(
+  int id: @indexer ref,
+  int loc: @location ref);
+
+accessors(
+  unique int id: @accessor,
+  int kind: int ref,
+  string name: string ref,
+  int declaring_member_id: @member ref,
+  int unbound_id: @accessor ref);
+
+case @accessor.kind of
+  1 = @getter
+| 2 = @setter
+  ;
+
+init_only_accessors(
+  unique int id: @accessor ref);
+
+accessor_location(
+  int id: @accessor ref,
+  int loc: @location ref);
+
+events(
+  unique int id: @event,
+  string name: string ref,
+  int declaring_type_id: @type ref,
+  int type_id: @type_or_ref ref,
+  int unbound_id: @event ref);
+
+event_location(
+  int id: @event ref,
+  int loc: @location ref);
+
+event_accessors(
+  unique int id: @event_accessor,
+  int kind: int ref,
+  string name: string ref,
+  int declaring_event_id: @event ref,
+  int unbound_id: @event_accessor ref);
+
+case @event_accessor.kind of
+  1 = @add_event_accessor
+| 2 = @remove_event_accessor
+  ;
+
+event_accessor_location(
+  int id: @event_accessor ref,
+  int loc: @location ref);
+
+operators(
+  unique int id: @operator,
+  string name: string ref,
+  string symbol: string ref,
+  int declaring_type_id: @type ref,
+  int type_id: @type_or_ref ref,
+  int unbound_id: @operator ref);
+
+operator_location(
+  int id: @operator ref,
+  int loc: @location ref);
+
+constant_value(
+  int id: @variable ref,
+  string value: string ref);
+
+/** CALLABLES **/
+
+@callable = @method | @constructor | @destructor | @operator | @callable_accessor | @anonymous_function_expr | @local_function;
+
+@callable_accessor = @accessor | @event_accessor;
+
+methods(
+  unique int id: @method,
+  string name: string ref,
+  int declaring_type_id: @type ref,
+  int type_id: @type_or_ref ref,
+  int unbound_id: @method ref);
+
+method_location(
+  int id: @method ref,
+  int loc: @location ref);
+
+constructors(
+  unique int id: @constructor,
+  string name: string ref,
+  int declaring_type_id: @type ref,
+  int unbound_id: @constructor ref);
+
+constructor_location(
+  int id: @constructor ref,
+  int loc: @location ref);
+
+destructors(
+  unique int id: @destructor,
+  string name: string ref,
+  int declaring_type_id: @type ref,
+  int unbound_id: @destructor ref);
+
+destructor_location(
+  int id: @destructor ref,
+  int loc: @location ref);
+
+overrides(
+  int id: @callable ref,
+  int base_id: @callable ref);
+
+explicitly_implements(
+  int id: @member ref,
+  int interface_id: @interface_or_ref ref);
+
+local_functions(
+    unique int id: @local_function,
+    string name: string ref,
+    int return_type: @type ref,
+    int unbound_id: @local_function ref);
+
+local_function_stmts(
+    unique int fn: @local_function_stmt ref,
+    int stmt: @local_function ref);
+
+/** VARIABLES **/
+
+@variable = @local_scope_variable | @field;
+
+@local_scope_variable = @local_variable | @parameter;
+
+fields(
+  unique int id: @field,
+  int kind: int ref,
+  string name: string ref,
+  int declaring_type_id: @type ref,
+  int type_id: @type_or_ref ref,
+  int unbound_id: @field ref);
+
+case @field.kind of
+  1 = @addressable_field
+| 2 = @constant
+  ;
+
+field_location(
+  int id: @field ref,
+  int loc: @location ref);
+
+localvars(
+  unique int id: @local_variable,
+  int kind: int ref,
+  string name: string ref,
+  int implicitly_typed: int ref /* 0 = no, 1 = yes */,
+  int type_id: @type_or_ref ref,
+  int parent_id: @local_var_decl_expr ref);
+
+case @local_variable.kind of
+  1 = @addressable_local_variable
+| 2 = @local_constant
+| 3 = @local_variable_ref
+  ;
+
+localvar_location(
+  unique int id: @local_variable ref,
+  int loc: @location ref);
+
+@parameterizable = @callable | @delegate_type | @indexer | @function_pointer_type;
+
+#keyset[name, parent_id]
+#keyset[index, parent_id]
+params(
+  unique int id: @parameter,
+  string name: string ref,
+  int type_id: @type_or_ref ref,
+  int index: int ref,
+  int mode: int ref, /* value = 0, ref = 1, out = 2, array = 3, this = 4 */
+  int parent_id: @parameterizable ref,
+  int unbound_id: @parameter ref);
+
+param_location(
+  int id: @parameter ref,
+  int loc: @location ref);
+
+/** STATEMENTS **/
+
+@exprorstmt_parent = @control_flow_element | @top_level_exprorstmt_parent;
+
+statements(
+  unique int id: @stmt,
+  int kind: int ref);
+
+#keyset[index, parent]
+stmt_parent(
+  unique int stmt: @stmt ref,
+  int index: int ref,
+  int parent: @control_flow_element ref);
+
+@top_level_stmt_parent = @callable;
+
+// [index, parent] is not a keyset because the same parent may be compiled multiple times
+stmt_parent_top_level(
+  unique int stmt: @stmt ref,
+  int index: int ref,
+  int parent: @top_level_stmt_parent ref);
+
+case @stmt.kind of
+   1 = @block_stmt
+|  2 = @expr_stmt
+|  3 = @if_stmt
+|  4 = @switch_stmt
+|  5 = @while_stmt
+|  6 = @do_stmt
+|  7 = @for_stmt
+|  8 = @foreach_stmt
+|  9 = @break_stmt
+| 10 = @continue_stmt
+| 11 = @goto_stmt
+| 12 = @goto_case_stmt
+| 13 = @goto_default_stmt
+| 14 = @throw_stmt
+| 15 = @return_stmt
+| 16 = @yield_stmt
+| 17 = @try_stmt
+| 18 = @checked_stmt
+| 19 = @unchecked_stmt
+| 20 = @lock_stmt
+| 21 = @using_block_stmt
+| 22 = @var_decl_stmt
+| 23 = @const_decl_stmt
+| 24 = @empty_stmt
+| 25 = @unsafe_stmt
+| 26 = @fixed_stmt
+| 27 = @label_stmt
+| 28 = @catch
+| 29 = @case_stmt
+| 30 = @local_function_stmt
+| 31 = @using_decl_stmt
+  ;
+
+@using_stmt = @using_block_stmt | @using_decl_stmt;
+
+@labeled_stmt = @label_stmt | @case;
+
+@decl_stmt = @var_decl_stmt | @const_decl_stmt | @using_decl_stmt;
+
+@cond_stmt = @if_stmt | @switch_stmt;
+
+@loop_stmt = @while_stmt | @do_stmt | @for_stmt | @foreach_stmt;
+
+@jump_stmt = @break_stmt | @goto_any_stmt | @continue_stmt | @throw_stmt | @return_stmt
+           | @yield_stmt;
+
+@goto_any_stmt = @goto_default_stmt | @goto_case_stmt | @goto_stmt;
+
+
+stmt_location(
+  unique int id: @stmt ref,
+  int loc: @location ref);
+
+catch_type(
+  unique int catch_id: @catch ref,
+  int type_id: @type_or_ref ref,
+  int kind: int ref /* explicit = 1, implicit = 2 */);
+
+foreach_stmt_info(
+  unique int id: @foreach_stmt ref,
+  int kind: int ref /* non-async = 1, async = 2 */);
+
+@foreach_symbol =  @method | @property | @type_or_ref;
+
+#keyset[id, kind]
+foreach_stmt_desugar(
+  int id: @foreach_stmt ref,
+  int symbol: @foreach_symbol ref,
+  int kind: int ref /* GetEnumeratorMethod = 1, CurrentProperty = 2, MoveNextMethod = 3, DisposeMethod = 4, ElementType = 5 */);
+
+/** EXPRESSIONS **/
+
+expressions(
+  unique int id: @expr,
+  int kind: int ref,
+  int type_id: @type_or_ref ref);
+
+#keyset[index, parent]
+expr_parent(
+  unique int expr: @expr ref,
+  int index: int ref,
+  int parent: @control_flow_element ref);
+
+@top_level_expr_parent = @attribute | @field | @property | @indexer | @parameter | @directive_if | @directive_elif;
+
+@top_level_exprorstmt_parent = @top_level_expr_parent | @top_level_stmt_parent;
+
+// [index, parent] is not a keyset because the same parent may be compiled multiple times
+expr_parent_top_level(
+  unique int expr: @expr ref,
+  int index: int ref,
+  int parent: @top_level_exprorstmt_parent ref);
+
+case @expr.kind of
+/* literal */
+   1 = @bool_literal_expr
+|  2 = @char_literal_expr
+|  3 = @decimal_literal_expr
+|  4 = @int_literal_expr
+|  5 = @long_literal_expr
+|  6 = @uint_literal_expr
+|  7 = @ulong_literal_expr
+|  8 = @float_literal_expr
+|  9 = @double_literal_expr
+| 10 = @string_literal_expr
+| 11 = @null_literal_expr
+/* primary & unary */
+| 12 = @this_access_expr
+| 13 = @base_access_expr
+| 14 = @local_variable_access_expr
+| 15 = @parameter_access_expr
+| 16 = @field_access_expr
+| 17 = @property_access_expr
+| 18 = @method_access_expr
+| 19 = @event_access_expr
+| 20 = @indexer_access_expr
+| 21 = @array_access_expr
+| 22 = @type_access_expr
+| 23 = @typeof_expr
+| 24 = @method_invocation_expr
+| 25 = @delegate_invocation_expr
+| 26 = @operator_invocation_expr
+| 27 = @cast_expr
+| 28 = @object_creation_expr
+| 29 = @explicit_delegate_creation_expr
+| 30 = @implicit_delegate_creation_expr
+| 31 = @array_creation_expr
+| 32 = @default_expr
+| 33 = @plus_expr
+| 34 = @minus_expr
+| 35 = @bit_not_expr
+| 36 = @log_not_expr
+| 37 = @post_incr_expr
+| 38 = @post_decr_expr
+| 39 = @pre_incr_expr
+| 40 = @pre_decr_expr
+/* multiplicative */
+| 41 = @mul_expr
+| 42 = @div_expr
+| 43 = @rem_expr
+/* additive */
+| 44 = @add_expr
+| 45 = @sub_expr
+/* shift */
+| 46 = @lshift_expr
+| 47 = @rshift_expr
+/* relational */
+| 48 = @lt_expr
+| 49 = @gt_expr
+| 50 = @le_expr
+| 51 = @ge_expr
+/* equality */
+| 52 = @eq_expr
+| 53 = @ne_expr
+/* logical */
+| 54 = @bit_and_expr
+| 55 = @bit_xor_expr
+| 56 = @bit_or_expr
+| 57 = @log_and_expr
+| 58 = @log_or_expr
+/* type testing */
+| 59 = @is_expr
+| 60 = @as_expr
+/* null coalescing */
+| 61 = @null_coalescing_expr
+/* conditional */
+| 62 = @conditional_expr
+/* assignment */
+| 63 = @simple_assign_expr
+| 64 = @assign_add_expr
+| 65 = @assign_sub_expr
+| 66 = @assign_mul_expr
+| 67 = @assign_div_expr
+| 68 = @assign_rem_expr
+| 69 = @assign_and_expr
+| 70 = @assign_xor_expr
+| 71 = @assign_or_expr
+| 72 = @assign_lshift_expr
+| 73 = @assign_rshift_expr
+/* more */
+| 74 = @object_init_expr
+| 75 = @collection_init_expr
+| 76 = @array_init_expr
+| 77 = @checked_expr
+| 78 = @unchecked_expr
+| 79 = @constructor_init_expr
+| 80 = @add_event_expr
+| 81 = @remove_event_expr
+| 82 = @par_expr
+| 83 = @local_var_decl_expr
+| 84 = @lambda_expr
+| 85 = @anonymous_method_expr
+| 86 = @namespace_expr
+/* dynamic */
+| 92 = @dynamic_element_access_expr
+| 93 = @dynamic_member_access_expr
+/* unsafe */
+| 100 = @pointer_indirection_expr
+| 101 = @address_of_expr
+| 102 = @sizeof_expr
+/* async */
+| 103 = @await_expr
+/* C# 6.0 */
+| 104 = @nameof_expr
+| 105 = @interpolated_string_expr
+| 106 = @unknown_expr
+/* C# 7.0 */
+| 107 = @throw_expr
+| 108 = @tuple_expr
+| 109 = @local_function_invocation_expr
+| 110 = @ref_expr
+| 111 = @discard_expr
+/* C# 8.0 */
+| 112 = @range_expr
+| 113 = @index_expr
+| 114 = @switch_expr
+| 115 = @recursive_pattern_expr
+| 116 = @property_pattern_expr
+| 117 = @positional_pattern_expr
+| 118 = @switch_case_expr
+| 119 = @assign_coalesce_expr
+| 120 = @suppress_nullable_warning_expr
+| 121 = @namespace_access_expr
+/* C# 9.0 */
+| 122 = @lt_pattern_expr
+| 123 = @gt_pattern_expr
+| 124 = @le_pattern_expr
+| 125 = @ge_pattern_expr
+| 126 = @not_pattern_expr
+| 127 = @and_pattern_expr
+| 128 = @or_pattern_expr
+| 129 = @function_pointer_invocation_expr
+| 130 = @with_expr
+/* Preprocessor */
+| 999 = @define_symbol_expr
+;
+
+@switch = @switch_stmt | @switch_expr;
+@case = @case_stmt | @switch_case_expr;
+@pattern_match = @case | @is_expr;
+@unary_pattern_expr = @not_pattern_expr;
+@relational_pattern_expr = @gt_pattern_expr | @lt_pattern_expr | @ge_pattern_expr | @le_pattern_expr;
+@binary_pattern_expr = @and_pattern_expr | @or_pattern_expr;
+
+@integer_literal_expr = @int_literal_expr | @long_literal_expr | @uint_literal_expr | @ulong_literal_expr;
+@real_literal_expr = @float_literal_expr | @double_literal_expr | @decimal_literal_expr;
+@literal_expr = @bool_literal_expr | @char_literal_expr | @integer_literal_expr | @real_literal_expr
+              | @string_literal_expr | @null_literal_expr;
+
+@assign_expr = @simple_assign_expr | @assign_op_expr | @local_var_decl_expr;
+@assign_op_expr =  @assign_arith_expr | @assign_bitwise_expr | @assign_event_expr | @assign_coalesce_expr;
+@assign_event_expr = @add_event_expr | @remove_event_expr;
+
+@assign_arith_expr = @assign_add_expr | @assign_sub_expr | @assign_mul_expr | @assign_div_expr
+                   | @assign_rem_expr
+@assign_bitwise_expr = @assign_and_expr | @assign_or_expr | @assign_xor_expr
+                   | @assign_lshift_expr | @assign_rshift_expr;
+
+@member_access_expr = @field_access_expr | @property_access_expr | @indexer_access_expr | @event_access_expr
+                    | @method_access_expr | @type_access_expr | @dynamic_member_access_expr;
+@access_expr = @member_access_expr | @this_access_expr | @base_access_expr | @assignable_access_expr | @namespace_access_expr;
+@element_access_expr = @indexer_access_expr | @array_access_expr | @dynamic_element_access_expr;
+
+@local_variable_access = @local_variable_access_expr | @local_var_decl_expr;
+@local_scope_variable_access_expr = @parameter_access_expr | @local_variable_access;
+@variable_access_expr = @local_scope_variable_access_expr | @field_access_expr;
+
+@assignable_access_expr = @variable_access_expr | @property_access_expr | @element_access_expr
+                        | @event_access_expr | @dynamic_member_access_expr;
+
+@objectorcollection_init_expr = @object_init_expr | @collection_init_expr;
+
+@delegate_creation_expr = @explicit_delegate_creation_expr | @implicit_delegate_creation_expr;
+
+@bin_arith_op_expr = @mul_expr | @div_expr | @rem_expr | @add_expr | @sub_expr;
+@incr_op_expr =  @pre_incr_expr | @post_incr_expr;
+@decr_op_expr =  @pre_decr_expr | @post_decr_expr;
+@mut_op_expr = @incr_op_expr | @decr_op_expr;
+@un_arith_op_expr = @plus_expr | @minus_expr | @mut_op_expr;
+@arith_op_expr = @bin_arith_op_expr | @un_arith_op_expr;
+
+@ternary_log_op_expr = @conditional_expr;
+@bin_log_op_expr = @log_and_expr | @log_or_expr | @null_coalescing_expr;
+@un_log_op_expr = @log_not_expr;
+@log_expr = @un_log_op_expr | @bin_log_op_expr | @ternary_log_op_expr;
+
+@bin_bit_op_expr =  @bit_and_expr | @bit_or_expr | @bit_xor_expr | @lshift_expr
+                 | @rshift_expr;
+@un_bit_op_expr = @bit_not_expr;
+@bit_expr = @un_bit_op_expr | @bin_bit_op_expr;
+
+@equality_op_expr =  @eq_expr | @ne_expr;
+@rel_op_expr = @gt_expr | @lt_expr| @ge_expr | @le_expr;
+@comp_expr = @equality_op_expr | @rel_op_expr;
+
+@op_expr = @assign_expr | @un_op | @bin_op | @ternary_op;
+
+@ternary_op = @ternary_log_op_expr;
+@bin_op = @bin_arith_op_expr | @bin_log_op_expr | @bin_bit_op_expr | @comp_expr;
+@un_op = @un_arith_op_expr | @un_log_op_expr | @un_bit_op_expr | @sizeof_expr
+       | @pointer_indirection_expr | @address_of_expr;
+
+@anonymous_function_expr = @lambda_expr | @anonymous_method_expr;
+
+@call = @method_invocation_expr | @constructor_init_expr | @operator_invocation_expr
+      | @delegate_invocation_expr | @object_creation_expr | @call_access_expr
+      | @local_function_invocation_expr | @function_pointer_invocation_expr;
+
+@call_access_expr = @property_access_expr | @event_access_expr | @indexer_access_expr;
+
+@late_bindable_expr = @dynamic_element_access_expr | @dynamic_member_access_expr
+                    | @object_creation_expr | @method_invocation_expr | @operator_invocation_expr;
+
+@throw_element = @throw_expr | @throw_stmt;
+
+@implicitly_typeable_object_creation_expr = @object_creation_expr | @explicit_delegate_creation_expr;
+
+implicitly_typed_array_creation(
+  unique int id: @array_creation_expr ref);
+
+explicitly_sized_array_creation(
+  unique int id: @array_creation_expr ref);
+
+stackalloc_array_creation(
+  unique int id: @array_creation_expr ref);
+
+implicitly_typed_object_creation(
+  unique int id: @implicitly_typeable_object_creation_expr ref);
+
+mutator_invocation_mode(
+  unique int id: @operator_invocation_expr ref,
+  int mode: int ref /* prefix = 1, postfix = 2*/);
+
+expr_compiler_generated(
+  unique int id: @expr ref);
+
+expr_value(
+  unique int id: @expr ref,
+  string value: string ref);
+
+expr_call(
+  unique int caller_id: @expr ref,
+  int target_id: @callable ref);
+
+expr_access(
+  unique int accesser_id: @access_expr ref,
+  int target_id: @accessible ref);
+
+@accessible = @method | @assignable | @local_function | @namespace;
+
+expr_location(
+  unique int id: @expr ref,
+  int loc: @location ref);
+
+dynamic_member_name(
+  unique int id: @late_bindable_expr ref,
+  string name: string ref);
+
+@qualifiable_expr = @member_access_expr
+                  | @method_invocation_expr
+                  | @element_access_expr;
+
+conditional_access(
+  unique int id: @qualifiable_expr ref);
+
+expr_argument(
+  unique int id: @expr ref,
+  int mode: int ref);
+  /* mode is the same as params: value = 0, ref = 1, out = 2 */
+
+expr_argument_name(
+  unique int id: @expr ref,
+  string name: string ref);
+
+lambda_expr_return_type(
+  unique int id: @lambda_expr ref,
+  int type_id: @type_or_ref ref);
+  
+/** CONTROL/DATA FLOW **/
+
+@control_flow_element = @stmt | @expr;
+
+/* XML Files */
+
+xmlEncoding  (
+  unique int id: @file ref,
+  string encoding: string ref);
+
+xmlDTDs(
+  unique int id: @xmldtd,
+  string root: string ref,
+  string publicId: string ref,
+  string systemId: string ref,
+  int fileid: @file ref);
+
+xmlElements(
+  unique int id: @xmlelement,
+  string name: string ref,
+  int parentid: @xmlparent ref,
+  int idx: int ref,
+  int fileid: @file ref);
+
+xmlAttrs(
+  unique int id: @xmlattribute,
+  int elementid: @xmlelement ref,
+  string name: string ref,
+  string value: string ref,
+  int idx: int ref,
+  int fileid: @file ref);
+
+xmlNs(
+  int id: @xmlnamespace,
+  string prefixName: string ref,
+  string URI: string ref,
+  int fileid: @file ref);
+
+xmlHasNs(
+  int elementId: @xmlnamespaceable ref,
+  int nsId: @xmlnamespace ref,
+  int fileid: @file ref);
+
+xmlComments(
+  unique int id: @xmlcomment,
+  string text: string ref,
+  int parentid: @xmlparent ref,
+  int fileid: @file ref);
+
+xmlChars(
+  unique int id: @xmlcharacters,
+  string text: string ref,
+  int parentid: @xmlparent ref,
+  int idx: int ref,
+  int isCDATA: int ref,
+  int fileid: @file ref);
+
+@xmlparent = @file | @xmlelement;
+@xmlnamespaceable = @xmlelement | @xmlattribute;
+
+xmllocations(
+  int xmlElement: @xmllocatable ref,
+  int location: @location_default ref);
+
+@xmllocatable = @xmlcharacters | @xmlelement | @xmlcomment | @xmlattribute | @xmldtd | @file | @xmlnamespace;
+
+/* Comments */
+
+commentline(
+  unique int id: @commentline,
+  int kind: int ref,
+  string text: string ref,
+  string rawtext: string ref);
+
+case @commentline.kind of
+  0 = @singlelinecomment
+| 1 = @xmldoccomment
+| 2 = @multilinecomment;
+
+commentline_location(
+  unique int id: @commentline ref,
+  int loc: @location ref);
+
+commentblock(
+  unique int id : @commentblock);
+
+commentblock_location(
+  unique int id: @commentblock ref,
+  int loc: @location ref);
+
+commentblock_binding(
+  int id: @commentblock ref,
+  int entity: @element ref,
+  int bindtype: int ref);    /* 0: Parent, 1: Best, 2: Before, 3: After */
+
+commentblock_child(
+  int id: @commentblock ref,
+  int commentline: @commentline ref,
+  int index: int ref);
+
+/* ASP.NET */
+
+case @asp_element.kind of
+  0=@asp_close_tag
+| 1=@asp_code
+| 2=@asp_comment
+| 3=@asp_data_binding
+| 4=@asp_directive
+| 5=@asp_open_tag
+| 6=@asp_quoted_string
+| 7=@asp_text
+| 8=@asp_xml_directive;
+
+@asp_attribute = @asp_code | @asp_data_binding | @asp_quoted_string;
+
+asp_elements(
+  unique int id: @asp_element,
+  int kind: int ref,
+  int loc: @location ref);
+
+asp_comment_server(unique int comment: @asp_comment ref);
+asp_code_inline(unique int code: @asp_code ref);
+asp_directive_attribute(
+  int directive: @asp_directive ref,
+  int index: int ref,
+  string name: string ref,
+  int value: @asp_quoted_string ref);
+asp_directive_name(
+  unique int directive: @asp_directive ref,
+  string name: string ref);
+asp_element_body(
+  unique int element: @asp_element ref,
+  string body: string ref);
+asp_tag_attribute(
+  int tag: @asp_open_tag ref,
+  int index: int ref,
+  string name: string ref,
+  int attribute: @asp_attribute ref);
+asp_tag_name(
+  unique int tag: @asp_open_tag ref,
+  string name: string ref);
+asp_tag_isempty(int tag: @asp_open_tag ref);
+
+/* Common Intermediate Language - CIL */
+
+case @cil_instruction.opcode of
+  0 = @cil_nop
+| 1 = @cil_break
+| 2 = @cil_ldarg_0
+| 3 = @cil_ldarg_1
+| 4 = @cil_ldarg_2
+| 5 = @cil_ldarg_3
+| 6 = @cil_ldloc_0
+| 7 = @cil_ldloc_1
+| 8 = @cil_ldloc_2
+| 9 = @cil_ldloc_3
+| 10 = @cil_stloc_0
+| 11 = @cil_stloc_1
+| 12 = @cil_stloc_2
+| 13 = @cil_stloc_3
+| 14 = @cil_ldarg_s
+| 15 = @cil_ldarga_s
+| 16 = @cil_starg_s
+| 17 = @cil_ldloc_s
+| 18 = @cil_ldloca_s
+| 19 = @cil_stloc_s
+| 20 = @cil_ldnull
+| 21 = @cil_ldc_i4_m1
+| 22 = @cil_ldc_i4_0
+| 23 = @cil_ldc_i4_1
+| 24 = @cil_ldc_i4_2
+| 25 = @cil_ldc_i4_3
+| 26 = @cil_ldc_i4_4
+| 27 = @cil_ldc_i4_5
+| 28 = @cil_ldc_i4_6
+| 29 = @cil_ldc_i4_7
+| 30 = @cil_ldc_i4_8
+| 31 = @cil_ldc_i4_s
+| 32 = @cil_ldc_i4
+| 33 = @cil_ldc_i8
+| 34 = @cil_ldc_r4
+| 35 = @cil_ldc_r8
+| 37 = @cil_dup
+| 38 = @cil_pop
+| 39 = @cil_jmp
+| 40 = @cil_call
+| 41 = @cil_calli
+| 42 = @cil_ret
+| 43 = @cil_br_s
+| 44 = @cil_brfalse_s
+| 45 = @cil_brtrue_s
+| 46 = @cil_beq_s
+| 47 = @cil_bge_s
+| 48 = @cil_bgt_s
+| 49 = @cil_ble_s
+| 50 = @cil_blt_s
+| 51 = @cil_bne_un_s
+| 52 = @cil_bge_un_s
+| 53 = @cil_bgt_un_s
+| 54 = @cil_ble_un_s
+| 55 = @cil_blt_un_s
+| 56 = @cil_br
+| 57 = @cil_brfalse
+| 58 = @cil_brtrue
+| 59 = @cil_beq
+| 60 = @cil_bge
+| 61 = @cil_bgt
+| 62 = @cil_ble
+| 63 = @cil_blt
+| 64 = @cil_bne_un
+| 65 = @cil_bge_un
+| 66 = @cil_bgt_un
+| 67 = @cil_ble_un
+| 68 = @cil_blt_un
+| 69 = @cil_switch
+| 70 = @cil_ldind_i1
+| 71 = @cil_ldind_u1
+| 72 = @cil_ldind_i2
+| 73 = @cil_ldind_u2
+| 74 = @cil_ldind_i4
+| 75 = @cil_ldind_u4
+| 76 = @cil_ldind_i8
+| 77 = @cil_ldind_i
+| 78 = @cil_ldind_r4
+| 79 = @cil_ldind_r8
+| 80 = @cil_ldind_ref
+| 81 = @cil_stind_ref
+| 82 = @cil_stind_i1
+| 83 = @cil_stind_i2
+| 84 = @cil_stind_i4
+| 85 = @cil_stind_i8
+| 86 = @cil_stind_r4
+| 87 = @cil_stind_r8
+| 88 = @cil_add
+| 89 = @cil_sub
+| 90 = @cil_mul
+| 91 = @cil_div
+| 92 = @cil_div_un
+| 93 = @cil_rem
+| 94 = @cil_rem_un
+| 95 = @cil_and
+| 96 = @cil_or
+| 97 = @cil_xor
+| 98 = @cil_shl
+| 99 = @cil_shr
+| 100 = @cil_shr_un
+| 101 = @cil_neg
+| 102 = @cil_not
+| 103 = @cil_conv_i1
+| 104 = @cil_conv_i2
+| 105 = @cil_conv_i4
+| 106 = @cil_conv_i8
+| 107 = @cil_conv_r4
+| 108 = @cil_conv_r8
+| 109 = @cil_conv_u4
+| 110 = @cil_conv_u8
+| 111 = @cil_callvirt
+| 112 = @cil_cpobj
+| 113 = @cil_ldobj
+| 114 = @cil_ldstr
+| 115 = @cil_newobj
+| 116 = @cil_castclass
+| 117 = @cil_isinst
+| 118 = @cil_conv_r_un
+| 121 = @cil_unbox
+| 122 = @cil_throw
+| 123 = @cil_ldfld
+| 124 = @cil_ldflda
+| 125 = @cil_stfld
+| 126 = @cil_ldsfld
+| 127 = @cil_ldsflda
+| 128 = @cil_stsfld
+| 129 = @cil_stobj
+| 130 = @cil_conv_ovf_i1_un
+| 131 = @cil_conv_ovf_i2_un
+| 132 = @cil_conv_ovf_i4_un
+| 133 = @cil_conv_ovf_i8_un
+| 134 = @cil_conv_ovf_u1_un
+| 135 = @cil_conv_ovf_u2_un
+| 136 = @cil_conv_ovf_u4_un
+| 137 = @cil_conv_ovf_u8_un
+| 138 = @cil_conv_ovf_i_un
+| 139 = @cil_conv_ovf_u_un
+| 140 = @cil_box
+| 141 = @cil_newarr
+| 142 = @cil_ldlen
+| 143 = @cil_ldelema
+| 144 = @cil_ldelem_i1
+| 145 = @cil_ldelem_u1
+| 146 = @cil_ldelem_i2
+| 147 = @cil_ldelem_u2
+| 148 = @cil_ldelem_i4
+| 149 = @cil_ldelem_u4
+| 150 = @cil_ldelem_i8
+| 151 = @cil_ldelem_i
+| 152 = @cil_ldelem_r4
+| 153 = @cil_ldelem_r8
+| 154 = @cil_ldelem_ref
+| 155 = @cil_stelem_i
+| 156 = @cil_stelem_i1
+| 157 = @cil_stelem_i2
+| 158 = @cil_stelem_i4
+| 159 = @cil_stelem_i8
+| 160 = @cil_stelem_r4
+| 161 = @cil_stelem_r8
+| 162 = @cil_stelem_ref
+| 163 = @cil_ldelem
+| 164 = @cil_stelem
+| 165 = @cil_unbox_any
+| 179 = @cil_conv_ovf_i1
+| 180 = @cil_conv_ovf_u1
+| 181 = @cil_conv_ovf_i2
+| 182 = @cil_conv_ovf_u2
+| 183 = @cil_conv_ovf_i4
+| 184 = @cil_conv_ovf_u4
+| 185 = @cil_conv_ovf_i8
+| 186 = @cil_conv_ovf_u8
+| 194 = @cil_refanyval
+| 195 = @cil_ckinfinite
+| 198 = @cil_mkrefany
+| 208 = @cil_ldtoken
+| 209 = @cil_conv_u2
+| 210 = @cil_conv_u1
+| 211 = @cil_conv_i
+| 212 = @cil_conv_ovf_i
+| 213 = @cil_conv_ovf_u
+| 214 = @cil_add_ovf
+| 215 = @cil_add_ovf_un
+| 216 = @cil_mul_ovf
+| 217 = @cil_mul_ovf_un
+| 218 = @cil_sub_ovf
+| 219 = @cil_sub_ovf_un
+| 220 = @cil_endfinally
+| 221 = @cil_leave
+| 222 = @cil_leave_s
+| 223 = @cil_stind_i
+| 224 = @cil_conv_u
+| 65024 = @cil_arglist
+| 65025 = @cil_ceq
+| 65026 = @cil_cgt
+| 65027 = @cil_cgt_un
+| 65028 = @cil_clt
+| 65029 = @cil_clt_un
+| 65030 = @cil_ldftn
+| 65031 = @cil_ldvirtftn
+| 65033 = @cil_ldarg
+| 65034 = @cil_ldarga
+| 65035 = @cil_starg
+| 65036 = @cil_ldloc
+| 65037 = @cil_ldloca
+| 65038 = @cil_stloc
+| 65039 = @cil_localloc
+| 65041 = @cil_endfilter
+| 65042 = @cil_unaligned
+| 65043 = @cil_volatile
+| 65044 = @cil_tail
+| 65045 = @cil_initobj
+| 65046 = @cil_constrained
+| 65047 = @cil_cpblk
+| 65048 = @cil_initblk
+| 65050 = @cil_rethrow
+| 65052 = @cil_sizeof
+| 65053 = @cil_refanytype
+| 65054 = @cil_readonly
+;
+
+// CIL ignored instructions
+
+@cil_ignore = @cil_nop | @cil_break | @cil_volatile | @cil_unaligned;
+
+// CIL local/parameter/field access
+
+@cil_ldarg_any = @cil_ldarg_0 | @cil_ldarg_1 | @cil_ldarg_2 | @cil_ldarg_3 | @cil_ldarg_s | @cil_ldarga_s | @cil_ldarg | @cil_ldarga;
+@cil_starg_any = @cil_starg | @cil_starg_s;
+
+@cil_ldloc_any = @cil_ldloc_0 | @cil_ldloc_1 | @cil_ldloc_2 | @cil_ldloc_3 | @cil_ldloc_s | @cil_ldloca_s | @cil_ldloc | @cil_ldloca;
+@cil_stloc_any = @cil_stloc_0 | @cil_stloc_1 | @cil_stloc_2 | @cil_stloc_3 | @cil_stloc_s | @cil_stloc;
+
+@cil_ldfld_any = @cil_ldfld | @cil_ldsfld | @cil_ldsflda | @cil_ldflda;
+@cil_stfld_any = @cil_stfld | @cil_stsfld;
+
+@cil_local_access = @cil_stloc_any | @cil_ldloc_any;
+@cil_arg_access = @cil_starg_any | @cil_ldarg_any;
+@cil_read_access = @cil_ldloc_any | @cil_ldarg_any | @cil_ldfld_any;
+@cil_write_access = @cil_stloc_any | @cil_starg_any | @cil_stfld_any;
+
+@cil_stack_access = @cil_local_access | @cil_arg_access;
+@cil_field_access = @cil_ldfld_any | @cil_stfld_any;
+
+@cil_access = @cil_read_access | @cil_write_access;
+
+// CIL constant/literal instructions
+
+@cil_ldc_i = @cil_ldc_i4_any | @cil_ldc_i8;
+
+@cil_ldc_i4_any = @cil_ldc_i4_m1 | @cil_ldc_i4_0 | @cil_ldc_i4_1 | @cil_ldc_i4_2 | @cil_ldc_i4_3 |
+  @cil_ldc_i4_4 | @cil_ldc_i4_5 | @cil_ldc_i4_6 | @cil_ldc_i4_7 | @cil_ldc_i4_8 | @cil_ldc_i4_s | @cil_ldc_i4;
+
+@cil_ldc_r = @cil_ldc_r4 | @cil_ldc_r8;
+
+@cil_literal = @cil_ldnull | @cil_ldc_i | @cil_ldc_r | @cil_ldstr;
+
+// Control flow
+
+@cil_conditional_jump = @cil_binary_jump | @cil_unary_jump;
+@cil_binary_jump = @cil_beq_s | @cil_bge_s | @cil_bgt_s | @cil_ble_s | @cil_blt_s |
+    @cil_bne_un_s | @cil_bge_un_s | @cil_bgt_un_s | @cil_ble_un_s | @cil_blt_un_s |
+    @cil_beq | @cil_bge | @cil_bgt | @cil_ble | @cil_blt |
+    @cil_bne_un | @cil_bge_un | @cil_bgt_un | @cil_ble_un | @cil_blt_un;
+@cil_unary_jump = @cil_brfalse_s | @cil_brtrue_s | @cil_brfalse | @cil_brtrue | @cil_switch;
+@cil_unconditional_jump = @cil_br | @cil_br_s | @cil_leave_any;
+@cil_leave_any = @cil_leave | @cil_leave_s;
+@cil_jump = @cil_unconditional_jump | @cil_conditional_jump;
+
+// CIL call instructions
+
+@cil_call_any = @cil_jmp | @cil_call | @cil_calli | @cil_tail | @cil_callvirt | @cil_newobj;
+
+// CIL expression instructions
+
+@cil_expr = @cil_literal | @cil_binary_expr | @cil_unary_expr | @cil_call_any | @cil_read_access |
+  @cil_newarr | @cil_ldtoken | @cil_sizeof |
+  @cil_ldftn | @cil_ldvirtftn | @cil_localloc | @cil_mkrefany | @cil_refanytype | @cil_arglist | @cil_dup;
+
+@cil_unary_expr =
+  @cil_conversion_operation | @cil_unary_arithmetic_operation | @cil_unary_bitwise_operation|
+  @cil_ldlen | @cil_isinst | @cil_box | @cil_ldobj | @cil_castclass | @cil_unbox_any |
+  @cil_ldind | @cil_unbox;
+
+@cil_conversion_operation =
+  @cil_conv_i1 | @cil_conv_i2 | @cil_conv_i4 | @cil_conv_i8 |
+  @cil_conv_u1 | @cil_conv_u2 | @cil_conv_u4 | @cil_conv_u8 |
+  @cil_conv_ovf_i | @cil_conv_ovf_i_un | @cil_conv_ovf_i1 | @cil_conv_ovf_i1_un |
+  @cil_conv_ovf_i2 | @cil_conv_ovf_i2_un | @cil_conv_ovf_i4 | @cil_conv_ovf_i4_un |
+  @cil_conv_ovf_i8 | @cil_conv_ovf_i8_un | @cil_conv_ovf_u | @cil_conv_ovf_u_un |
+  @cil_conv_ovf_u1 | @cil_conv_ovf_u1_un | @cil_conv_ovf_u2 | @cil_conv_ovf_u2_un |
+  @cil_conv_ovf_u4 | @cil_conv_ovf_u4_un | @cil_conv_ovf_u8 | @cil_conv_ovf_u8_un |
+  @cil_conv_r4 | @cil_conv_r8 | @cil_conv_ovf_u2 | @cil_conv_ovf_u2_un |
+  @cil_conv_i | @cil_conv_u | @cil_conv_r_un;
+
+@cil_ldind = @cil_ldind_i | @cil_ldind_i1 | @cil_ldind_i2 | @cil_ldind_i4 | @cil_ldind_i8 |
+  @cil_ldind_r4 | @cil_ldind_r8 | @cil_ldind_ref | @cil_ldind_u1 | @cil_ldind_u2 | @cil_ldind_u4;
+
+@cil_stind = @cil_stind_i | @cil_stind_i1 | @cil_stind_i2 | @cil_stind_i4 | @cil_stind_i8 |
+  @cil_stind_r4 | @cil_stind_r8 | @cil_stind_ref;
+
+@cil_bitwise_operation = @cil_binary_bitwise_operation | @cil_unary_bitwise_operation;
+
+@cil_binary_bitwise_operation = @cil_and | @cil_or | @cil_xor | @cil_shr | @cil_shr | @cil_shr_un | @cil_shl;
+
+@cil_binary_arithmetic_operation = @cil_add | @cil_sub | @cil_mul | @cil_div | @cil_div_un |
+  @cil_rem | @cil_rem_un | @cil_add_ovf | @cil_add_ovf_un | @cil_mul_ovf | @cil_mul_ovf_un |
+  @cil_sub_ovf | @cil_sub_ovf_un;
+
+@cil_unary_bitwise_operation = @cil_not;
+
+@cil_binary_expr = @cil_binary_arithmetic_operation | @cil_binary_bitwise_operation | @cil_read_array | @cil_comparison_operation;
+
+@cil_unary_arithmetic_operation = @cil_neg;
+
+@cil_comparison_operation = @cil_cgt_un | @cil_ceq | @cil_cgt | @cil_clt | @cil_clt_un;
+
+// Elements that retrieve an address of something
+@cil_read_ref = @cil_ldloca_s | @cil_ldarga_s | @cil_ldflda | @cil_ldsflda | @cil_ldelema;
+
+// CIL array instructions
+
+@cil_read_array =
+  @cil_ldelem | @cil_ldelema | @cil_ldelem_i1 | @cil_ldelem_ref | @cil_ldelem_i |
+  @cil_ldelem_i1 | @cil_ldelem_i2 | @cil_ldelem_i4 | @cil_ldelem_i8 | @cil_ldelem_r4 |
+  @cil_ldelem_r8 | @cil_ldelem_u1 | @cil_ldelem_u2 | @cil_ldelem_u4;
+
+@cil_write_array = @cil_stelem | @cil_stelem_ref |
+  @cil_stelem_i | @cil_stelem_i1 | @cil_stelem_i2 | @cil_stelem_i4 | @cil_stelem_i8 |
+  @cil_stelem_r4 | @cil_stelem_r8;
+
+@cil_throw_any = @cil_throw | @cil_rethrow;
+
+#keyset[impl, index]
+cil_instruction(
+  unique int id: @cil_instruction,
+  int opcode: int ref,
+  int index: int ref,
+  int impl: @cil_method_implementation ref);
+
+cil_jump(
+  unique int instruction: @cil_jump ref,
+  int target: @cil_instruction ref);
+
+cil_access(
+  unique int instruction: @cil_instruction ref,
+  int target: @cil_accessible ref);
+
+cil_value(
+  unique int instruction: @cil_literal ref,
+  string value: string ref);
+
+#keyset[instruction, index]
+cil_switch(
+  int instruction: @cil_switch ref,
+  int index: int ref,
+  int target: @cil_instruction ref);
+
+cil_instruction_location(
+  unique int id: @cil_instruction ref,
+  int loc: @location ref);
+
+cil_type_location(
+  int id: @cil_type ref,
+  int loc: @location ref);
+
+cil_method_location(
+  int id: @cil_method ref,
+  int loc: @location ref);
+
+@cil_namespace = @namespace;
+
+@cil_type_container = @cil_type | @cil_namespace | @cil_method;
+
+case @cil_type.kind of
+  0 = @cil_valueorreftype
+| 1 = @cil_typeparameter
+| 2 = @cil_array_type
+| 3 = @cil_pointer_type
+| 4 = @cil_function_pointer_type
+;
+
+cil_type(
+  unique int id: @cil_type,
+  string name: string ref,
+  int kind: int ref,
+  int parent: @cil_type_container ref,
+  int sourceDecl: @cil_type ref);
+
+cil_pointer_type(
+  unique int id: @cil_pointer_type ref,
+  int pointee: @cil_type ref);
+
+cil_array_type(
+  unique int id: @cil_array_type ref,
+  int element_type: @cil_type ref,
+  int rank: int ref);
+
+cil_function_pointer_return_type(
+  unique int id: @cil_function_pointer_type ref,
+  int return_type: @cil_type ref);
+
+cil_method(
+  unique int id: @cil_method,
+  string name: string ref,
+  int parent: @cil_type ref,
+  int return_type: @cil_type ref);
+
+cil_method_source_declaration(
+  unique int method: @cil_method ref,
+  int source: @cil_method ref);
+
+cil_method_implementation(
+  unique int id: @cil_method_implementation,
+  int method: @cil_method ref,
+  int location: @assembly ref);
+
+cil_implements(
+  int id: @cil_method ref,
+  int decl: @cil_method ref);
+
+#keyset[parent, name]
+cil_field(
+  unique int id: @cil_field,
+  int parent: @cil_type ref,
+  string name: string ref,
+  int field_type: @cil_type ref);
+
+@cil_element = @cil_instruction | @cil_declaration | @cil_handler | @cil_attribute | @cil_namespace;
+@cil_named_element = @cil_declaration | @cil_namespace;
+@cil_declaration = @cil_variable | @cil_method | @cil_type | @cil_member;
+@cil_accessible = @cil_declaration;
+@cil_variable = @cil_field | @cil_stack_variable;
+@cil_stack_variable = @cil_local_variable | @cil_parameter;
+@cil_member = @cil_method | @cil_type | @cil_field | @cil_property | @cil_event;
+@cil_custom_modifier_receiver = @cil_method | @cil_property | @cil_parameter | @cil_field | @cil_function_pointer_type;
+@cil_parameterizable = @cil_method | @cil_function_pointer_type;
+@cil_has_type_annotation = @cil_stack_variable | @cil_property | @cil_method | @cil_function_pointer_type;
+
+#keyset[parameterizable, index]
+cil_parameter(
+  unique int id: @cil_parameter,
+  int parameterizable: @cil_parameterizable ref,
+  int index: int ref,
+  int param_type: @cil_type ref);
+
+cil_parameter_in(unique int id: @cil_parameter ref);
+cil_parameter_out(unique int id: @cil_parameter ref);
+
+cil_setter(unique int prop: @cil_property ref,
+  int method: @cil_method ref);
+
+#keyset[id, modifier]
+cil_custom_modifiers(
+  int id: @cil_custom_modifier_receiver ref,
+  int modifier: @cil_type ref,
+  int kind: int ref); // modreq: 1, modopt: 0
+
+cil_type_annotation(
+  int id: @cil_has_type_annotation ref,
+  int annotation: int ref);
+
+cil_getter(unique int prop: @cil_property ref,
+  int method: @cil_method ref);
+
+cil_adder(unique int event: @cil_event ref,
+  int method: @cil_method ref);
+
+cil_remover(unique int event: @cil_event ref, int method: @cil_method ref);
+
+cil_raiser(unique int event: @cil_event ref, int method: @cil_method ref);
+
+cil_property(
+  unique int id: @cil_property,
+  int parent: @cil_type ref,
+  string name: string ref,
+  int property_type: @cil_type ref);
+
+#keyset[parent, name]
+cil_event(unique int id: @cil_event,
+  int parent: @cil_type ref,
+  string name: string ref,
+  int event_type: @cil_type ref);
+
+#keyset[impl, index]
+cil_local_variable(
+  unique int id: @cil_local_variable,
+  int impl: @cil_method_implementation ref,
+  int index: int ref,
+  int var_type: @cil_type ref);
+
+cil_function_pointer_calling_conventions(
+  int id: @cil_function_pointer_type ref,
+  int kind: int ref);
+
+// CIL handlers (exception handlers etc).
+
+case @cil_handler.kind of
+  0 = @cil_catch_handler
+| 1 = @cil_filter_handler
+| 2 = @cil_finally_handler
+| 4 = @cil_fault_handler
+;
+
+#keyset[impl, index]
+cil_handler(
+  unique int id: @cil_handler,
+  int impl: @cil_method_implementation ref,
+  int index: int ref,
+  int kind: int ref,
+  int try_start: @cil_instruction ref,
+  int try_end: @cil_instruction ref,
+  int handler_start: @cil_instruction ref);
+
+cil_handler_filter(
+  unique int id: @cil_handler ref,
+  int filter_start: @cil_instruction ref);
+
+cil_handler_type(
+  unique int id: @cil_handler ref,
+  int catch_type: @cil_type ref);
+
+@cil_controlflow_node = @cil_entry_point | @cil_instruction;
+
+@cil_entry_point = @cil_method_implementation | @cil_handler;
+
+@cil_dataflow_node = @cil_instruction | @cil_variable | @cil_method;
+
+cil_method_stack_size(
+  unique int method: @cil_method_implementation ref,
+  int size: int ref);
+
+// CIL modifiers
+
+cil_public(int id: @cil_member ref);
+cil_private(int id: @cil_member ref);
+cil_protected(int id: @cil_member ref);
+cil_internal(int id: @cil_member ref);
+cil_static(int id: @cil_member ref);
+cil_sealed(int id: @cil_member ref);
+cil_virtual(int id: @cil_method ref);
+cil_abstract(int id: @cil_member ref);
+cil_class(int id: @cil_type ref);
+cil_interface(int id: @cil_type ref);
+cil_security(int id: @cil_member ref);
+cil_requiresecobject(int id: @cil_method ref);
+cil_specialname(int id: @cil_method ref);
+cil_newslot(int id: @cil_method ref);
+
+cil_base_class(unique int id: @cil_type ref, int base: @cil_type ref);
+cil_base_interface(int id: @cil_type ref, int base: @cil_type ref);
+cil_enum_underlying_type(unique int id: @cil_type ref, int underlying: @cil_type ref);
+
+#keyset[unbound, index]
+cil_type_parameter(
+  int unbound: @cil_member ref,
+  int index: int ref,
+  int param: @cil_typeparameter ref);
+
+#keyset[bound, index]
+cil_type_argument(
+  int bound: @cil_member ref,
+  int index: int ref,
+  int t: @cil_type ref);
+
+// CIL type parameter constraints
+
+cil_typeparam_covariant(int tp: @cil_typeparameter ref);
+cil_typeparam_contravariant(int tp: @cil_typeparameter ref);
+cil_typeparam_class(int tp: @cil_typeparameter ref);
+cil_typeparam_struct(int tp: @cil_typeparameter ref);
+cil_typeparam_new(int tp: @cil_typeparameter ref);
+cil_typeparam_constraint(int tp: @cil_typeparameter ref, int supertype: @cil_type ref);
+
+// CIL attributes
+
+cil_attribute(
+  unique int attributeid: @cil_attribute,
+  int element: @cil_declaration ref,
+  int constructor: @cil_method ref);
+
+#keyset[attribute_id, param]
+cil_attribute_named_argument(
+  int attribute_id: @cil_attribute ref,
+  string param: string ref,
+  string value: string ref);
+
+#keyset[attribute_id, index]
+cil_attribute_positional_argument(
+  int attribute_id: @cil_attribute ref,
+  int index: int ref,
+  string value: string ref);
+
+
+// Common .Net data model covering both C# and CIL
+
+// Common elements
+@dotnet_element = @element | @cil_element;
+@dotnet_named_element = @named_element | @cil_named_element;
+@dotnet_callable = @callable | @cil_method;
+@dotnet_variable = @variable | @cil_variable;
+@dotnet_field = @field | @cil_field;
+@dotnet_parameter = @parameter | @cil_parameter;
+@dotnet_declaration = @declaration | @cil_declaration;
+@dotnet_member = @member | @cil_member;
+@dotnet_event = @event | @cil_event;
+@dotnet_property = @property | @cil_property | @indexer;
+@dotnet_parameterizable = @parameterizable | @cil_parameterizable;
+
+// Common types
+@dotnet_type = @type | @cil_type;
+@dotnet_call = @call | @cil_call_any;
+@dotnet_throw = @throw_element | @cil_throw_any;
+@dotnet_valueorreftype = @cil_valueorreftype | @value_or_ref_type | @cil_array_type | @void_type;
+@dotnet_typeparameter = @type_parameter | @cil_typeparameter;
+@dotnet_array_type = @array_type | @cil_array_type;
+@dotnet_pointer_type = @pointer_type | @cil_pointer_type;
+@dotnet_type_parameter = @type_parameter | @cil_typeparameter;
+@dotnet_generic = @dotnet_valueorreftype | @dotnet_callable;
+
+// Attributes
+@dotnet_attribute = @attribute | @cil_attribute;
+
+// Expressions
+@dotnet_expr = @expr | @cil_expr;
+
+// Literals
+@dotnet_literal = @literal_expr | @cil_literal;
+@dotnet_string_literal = @string_literal_expr | @cil_ldstr;
+@dotnet_int_literal = @integer_literal_expr | @cil_ldc_i;
+@dotnet_float_literal = @float_literal_expr | @cil_ldc_r;
+@dotnet_null_literal = @null_literal_expr | @cil_ldnull;
+
+@metadata_entity = @cil_method | @cil_type | @cil_field | @cil_property | @field | @property |
+    @callable | @value_or_ref_type | @void_type;
+
+#keyset[entity, location]
+metadata_handle(int entity : @metadata_entity ref, int location: @assembly ref, int handle: int ref)
diff --git a/csharp/ql/lib/upgrades/4ac7d8bcac6f664b1e83c858aa71f8dc761cc603/semmlecode.csharp.dbscheme b/csharp/ql/lib/upgrades/4ac7d8bcac6f664b1e83c858aa71f8dc761cc603/semmlecode.csharp.dbscheme
new file mode 100644
index 00000000000..83aca6b3e4f
--- /dev/null
+++ b/csharp/ql/lib/upgrades/4ac7d8bcac6f664b1e83c858aa71f8dc761cc603/semmlecode.csharp.dbscheme
@@ -0,0 +1,2067 @@
+/* This is a dummy line to alter the dbscheme, so we can make a database upgrade
+ * without actually changing any of the dbscheme predicates. It contains a date
+ * to allow for such updates in the future as well.
+ *
+ * 2021-07-14
+ *
+ * DO NOT remove this comment carelessly, since it can revert the dbscheme back to a
+ * previously seen state (matching a previously seen SHA), which would make the upgrade
+ * mechanism not work properly.
+ */
+
+/**
+ * An invocation of the compiler. Note that more than one file may be
+ * compiled per invocation. For example, this command compiles three
+ * source files:
+ *
+ *   csc f1.cs f2.cs f3.cs
+ *
+ * The `id` simply identifies the invocation, while `cwd` is the working
+ * directory from which the compiler was invoked.
+ */
+compilations(
+    unique int id : @compilation,
+    string cwd : string ref
+);
+
+/**
+ * The arguments that were passed to the extractor for a compiler
+ * invocation. If `id` is for the compiler invocation
+ *
+ *   csc f1.cs f2.cs f3.cs
+ *
+ * then typically there will be rows for
+ *
+ * num | arg
+ * --- | ---
+ * 0   | --compiler
+ * 1   | *path to compiler*
+ * 2   | f1.cs
+ * 3   | f2.cs
+ * 4   | f3.cs
+ */
+#keyset[id, num]
+compilation_args(
+    int id : @compilation ref,
+    int num : int ref,
+    string arg : string ref
+);
+
+/**
+ * The source files that are compiled by a compiler invocation.
+ * If `id` is for the compiler invocation
+ *
+ *   csc f1.cs f2.cs f3.cs
+ *
+ * then there will be rows for
+ *
+ * num | arg
+ * --- | ---
+ * 0   | f1.cs
+ * 1   | f2.cs
+ * 2   | f3.cs
+ */
+#keyset[id, num]
+compilation_compiling_files(
+    int id : @compilation ref,
+    int num : int ref,
+    int file : @file ref
+);
+
+/**
+ * The references used by a compiler invocation.
+ * If `id` is for the compiler invocation
+ *
+ *   csc f1.cs f2.cs f3.cs /r:ref1.dll /r:ref2.dll /r:ref3.dll
+ *
+ * then there will be rows for
+ *
+ * num | arg
+ * --- | ---
+ * 0   | ref1.dll
+ * 1   | ref2.dll
+ * 2   | ref3.dll
+ */
+#keyset[id, num]
+compilation_referencing_files(
+    int id : @compilation ref,
+    int num : int ref,
+    int file : @file ref
+);
+
+/**
+ * The time taken by the extractor for a compiler invocation.
+ *
+ * For each file `num`, there will be rows for
+ *
+ * kind | seconds
+ * ---- | ---
+ * 1    | CPU seconds used by the extractor frontend
+ * 2    | Elapsed seconds during the extractor frontend
+ * 3    | CPU seconds used by the extractor backend
+ * 4    | Elapsed seconds during the extractor backend
+ */
+#keyset[id, num, kind]
+compilation_time(
+    int id : @compilation ref,
+    int num : int ref,
+    /* kind:
+       1 = frontend_cpu_seconds
+       2 = frontend_elapsed_seconds
+       3 = extractor_cpu_seconds
+       4 = extractor_elapsed_seconds
+    */
+    int kind : int ref,
+    float seconds : float ref
+);
+
+/**
+ * An error or warning generated by the extractor.
+ * The diagnostic message `diagnostic` was generated during compiler
+ * invocation `compilation`, and is the `file_number_diagnostic_number`th
+ * message generated while extracting the `file_number`th file of that
+ * invocation.
+ */
+#keyset[compilation, file_number, file_number_diagnostic_number]
+diagnostic_for(
+    unique int diagnostic : @diagnostic ref,
+    int compilation : @compilation ref,
+    int file_number : int ref,
+    int file_number_diagnostic_number : int ref
+);
+
+diagnostics(
+    unique int id: @diagnostic,
+    int severity: int ref,
+    string error_tag: string ref,
+    string error_message: string ref,
+    string full_error_message: string ref,
+    int location: @location_default ref
+);
+
+extractor_messages(
+    unique int id: @extractor_message,
+    int severity: int ref,
+    string origin : string ref,
+    string text : string ref,
+    string entity : string ref,
+    int location: @location_default ref,
+    string stack_trace : string ref
+);
+
+/**
+ * If extraction was successful, then `cpu_seconds` and
+ * `elapsed_seconds` are the CPU time and elapsed time (respectively)
+ * that extraction took for compiler invocation `id`.
+ */
+compilation_finished(
+    unique int id : @compilation ref,
+    float cpu_seconds : float ref,
+    float elapsed_seconds : float ref
+);
+
+compilation_assembly(
+  unique int id : @compilation ref,
+  int assembly: @assembly ref
+)
+
+// Populated by the CSV extractor
+externalData(
+   int id: @externalDataElement,
+   string path: string ref,
+   int column: int ref,
+   string value: string ref);
+
+sourceLocationPrefix(
+  string prefix: string ref);
+
+/*
+ * C# dbscheme
+ */
+
+/** ELEMENTS **/
+
+@element = @declaration | @stmt | @expr | @modifier | @attribute | @namespace_declaration
+         | @using_directive | @type_parameter_constraints | @externalDataElement
+         | @xmllocatable | @asp_element | @namespace | @preprocessor_directive;
+
+@declaration = @callable | @generic | @assignable | @namespace;
+
+@named_element = @namespace | @declaration;
+
+@declaration_with_accessors = @property | @indexer | @event;
+
+@assignable = @variable | @assignable_with_accessors | @event;
+
+@assignable_with_accessors = @property | @indexer;
+
+@attributable = @assembly | @field | @parameter | @operator | @method | @constructor
+              | @destructor | @callable_accessor | @value_or_ref_type | @declaration_with_accessors
+              | @local_function | @lambda_expr;
+
+/** LOCATIONS, ASEMMBLIES, MODULES, FILES and FOLDERS **/
+
+@location = @location_default | @assembly;
+
+locations_default(
+  unique int id: @location_default,
+  int file: @file ref,
+  int beginLine: int ref,
+  int beginColumn: int ref,
+  int endLine: int ref,
+  int endColumn: int ref);
+
+locations_mapped(
+  unique int id: @location_default ref,
+  int mapped_to: @location_default ref);
+
+@sourceline = @file | @callable | @xmllocatable;
+
+numlines(
+  int element_id: @sourceline ref,
+  int num_lines: int ref,
+  int num_code: int ref,
+  int num_comment: int ref);
+
+assemblies(
+  unique int id: @assembly,
+  int file: @file ref,
+  string fullname: string ref,
+  string name: string ref,
+  string version: string ref);
+
+files(
+  unique int id: @file,
+  string name: string ref);
+
+folders(
+  unique int id: @folder,
+  string name: string ref);
+
+@container = @folder | @file ;
+
+containerparent(
+  int parent: @container ref,
+  unique int child: @container ref);
+
+file_extraction_mode(
+  unique int file: @file ref,
+  int mode: int ref
+  /* 0 = normal, 1 = standalone extractor */
+  );
+
+/** NAMESPACES **/
+
+@type_container = @namespace | @type;
+
+namespaces(
+  unique int id: @namespace,
+  string name: string ref);
+
+namespace_declarations(
+  unique int id: @namespace_declaration,
+  int namespace_id: @namespace ref);
+
+namespace_declaration_location(
+  unique int id: @namespace_declaration ref,
+  int loc: @location ref);
+
+parent_namespace(
+  unique int child_id: @type_container ref,
+  int namespace_id: @namespace ref);
+
+@declaration_or_directive = @namespace_declaration | @type | @using_directive;
+
+parent_namespace_declaration(
+  int child_id: @declaration_or_directive ref, // cannot be unique because of partial classes
+  int namespace_id: @namespace_declaration ref);
+
+@using_directive = @using_namespace_directive | @using_static_directive;
+
+using_global(
+  unique int id: @using_directive ref
+);
+
+using_namespace_directives(
+  unique int id: @using_namespace_directive,
+  int namespace_id: @namespace ref);
+
+using_static_directives(
+  unique int id: @using_static_directive,
+  int type_id: @type_or_ref ref);
+
+using_directive_location(
+  unique int id: @using_directive ref,
+  int loc: @location ref);
+
+@preprocessor_directive = @pragma_warning | @pragma_checksum | @directive_define | @directive_undefine | @directive_warning
+  | @directive_error | @directive_nullable | @directive_line | @directive_region | @directive_endregion | @directive_if
+  | @directive_elif | @directive_else | @directive_endif;
+
+@conditional_directive = @directive_if | @directive_elif;
+@branch_directive = @directive_if | @directive_elif | @directive_else;
+
+directive_ifs(
+  unique int id: @directive_if,
+  int branchTaken: int ref,     /* 0: false, 1: true */
+  int conditionValue: int ref); /* 0: false, 1: true */
+
+directive_elifs(
+  unique int id: @directive_elif,
+  int branchTaken: int ref,     /* 0: false, 1: true */
+  int conditionValue: int ref,  /* 0: false, 1: true */
+  int parent: @directive_if ref,
+  int index: int ref);
+
+directive_elses(
+  unique int id: @directive_else,
+  int branchTaken: int ref,   /* 0: false, 1: true */
+  int parent: @directive_if ref,
+  int index: int ref);
+
+#keyset[id, start]
+directive_endifs(
+  unique int id: @directive_endif,
+  unique int start: @directive_if ref);
+
+directive_define_symbols(
+  unique int id: @define_symbol_expr ref,
+  string name: string ref);
+
+directive_regions(
+  unique int id: @directive_region,
+  string name: string ref);
+
+#keyset[id, start]
+directive_endregions(
+  unique int id: @directive_endregion,
+  unique int start: @directive_region ref);
+
+directive_lines(
+  unique int id: @directive_line,
+  int kind: int ref); /* 0: default, 1: hidden, 2: numeric, 3: span */
+
+directive_line_value(
+  unique int id: @directive_line ref,
+  int line: int ref);
+
+directive_line_file(
+  unique int id: @directive_line ref,
+  int file: @file ref);
+
+directive_line_offset(
+  unique int id: @directive_line ref,
+  int offset: int ref);
+
+directive_line_span(
+  unique int id: @directive_line ref,
+  int startLine: int ref,
+  int startColumn: int ref,
+  int endLine: int ref,
+  int endColumn: int ref);
+
+directive_nullables(
+  unique int id: @directive_nullable,
+  int setting: int ref, /* 0: disable, 1: enable, 2: restore */
+  int target: int ref); /* 0: none, 1: annotations, 2: warnings */
+
+directive_warnings(
+  unique int id: @directive_warning,
+  string message: string ref);
+
+directive_errors(
+  unique int id: @directive_error,
+  string message: string ref);
+
+directive_undefines(
+  unique int id: @directive_undefine,
+  string name: string ref);
+
+directive_defines(
+  unique int id: @directive_define,
+  string name: string ref);
+
+pragma_checksums(
+  unique int id: @pragma_checksum,
+  int file: @file ref,
+  string guid: string ref,
+  string bytes: string ref);
+
+pragma_warnings(
+  unique int id: @pragma_warning,
+  int kind: int ref /* 0 = disable, 1 = restore */);
+
+#keyset[id, index]
+pragma_warning_error_codes(
+  int id: @pragma_warning ref,
+  string errorCode: string ref,
+  int index: int ref);
+
+preprocessor_directive_location(
+  unique int id: @preprocessor_directive ref,
+  int loc: @location ref);
+
+preprocessor_directive_compilation(
+  unique int id: @preprocessor_directive ref,
+  int compilation: @compilation ref);
+
+preprocessor_directive_active(
+  unique int id: @preprocessor_directive ref,
+  int active: int ref);  /* 0: false, 1: true */
+
+/** TYPES **/
+
+types(
+  unique int id: @type,
+  int kind: int ref,
+  string name: string ref);
+
+case @type.kind of
+   1 = @bool_type
+|  2 = @char_type
+|  3 = @decimal_type
+|  4 = @sbyte_type
+|  5 = @short_type
+|  6 = @int_type
+|  7 = @long_type
+|  8 = @byte_type
+|  9 = @ushort_type
+| 10 = @uint_type
+| 11 = @ulong_type
+| 12 = @float_type
+| 13 = @double_type
+| 14 = @enum_type
+| 15 = @struct_type
+| 17 = @class_type
+| 19 = @interface_type
+| 20 = @delegate_type
+| 21 = @null_type
+| 22 = @type_parameter
+| 23 = @pointer_type
+| 24 = @nullable_type
+| 25 = @array_type
+| 26 = @void_type
+| 27 = @int_ptr_type
+| 28 = @uint_ptr_type
+| 29 = @dynamic_type
+| 30 = @arglist_type
+| 31 = @unknown_type
+| 32 = @tuple_type
+| 33 = @function_pointer_type
+  ;
+
+@simple_type = @bool_type | @char_type | @integral_type | @floating_point_type | @decimal_type;
+@integral_type = @signed_integral_type | @unsigned_integral_type;
+@signed_integral_type = @sbyte_type | @short_type | @int_type | @long_type;
+@unsigned_integral_type = @byte_type  | @ushort_type | @uint_type | @ulong_type;
+@floating_point_type = @float_type | @double_type;
+@value_type = @simple_type | @enum_type | @struct_type | @nullable_type | @int_ptr_type
+            | @uint_ptr_type | @tuple_type;
+@ref_type = @class_type | @interface_type | @array_type | @delegate_type | @null_type
+          | @dynamic_type;
+@value_or_ref_type = @value_type | @ref_type;
+
+typerefs(
+  unique int id: @typeref,
+  string name: string ref);
+
+typeref_type(
+  int id: @typeref ref,
+  unique int typeId: @type ref);
+
+@type_or_ref = @type | @typeref;
+
+array_element_type(
+  unique int array: @array_type ref,
+  int dimension: int ref,
+  int rank: int ref,
+  int element: @type_or_ref ref);
+
+nullable_underlying_type(
+  unique int nullable: @nullable_type ref,
+  int underlying: @type_or_ref ref);
+
+pointer_referent_type(
+  unique int pointer: @pointer_type ref,
+  int referent: @type_or_ref ref);
+
+enum_underlying_type(
+  unique int enum_id: @enum_type ref,
+  int underlying_type_id: @type_or_ref ref);
+
+delegate_return_type(
+  unique int delegate_id: @delegate_type ref,
+  int return_type_id: @type_or_ref ref);
+
+function_pointer_return_type(
+    unique int function_pointer_id: @function_pointer_type ref,
+    int return_type_id: @type_or_ref ref);
+
+extend(
+  int sub: @type ref,
+  int super: @type_or_ref ref);
+
+anonymous_types(
+  unique int id: @type ref);
+
+@interface_or_ref = @interface_type | @typeref;
+
+implement(
+  int sub: @type ref,
+  int super: @type_or_ref ref);
+
+type_location(
+  int id: @type ref,
+  int loc: @location ref);
+
+tuple_underlying_type(
+  unique int tuple: @tuple_type ref,
+  int struct: @type_or_ref ref);
+
+#keyset[tuple, index]
+tuple_element(
+  int tuple: @tuple_type ref,
+  int index: int ref,
+  unique int field: @field ref);
+
+attributes(
+  unique int id: @attribute,
+  int kind: int ref,
+  int type_id: @type_or_ref ref,
+  int target:  @attributable ref);
+
+case @attribute.kind of
+  0 = @attribute_default
+| 1 = @attribute_return
+| 2 = @attribute_assembly
+| 3 = @attribute_module
+;
+
+attribute_location(
+  int id: @attribute ref,
+  int loc: @location ref);
+
+@type_mention_parent = @element | @type_mention;
+
+type_mention(
+  unique int id: @type_mention,
+  int type_id: @type_or_ref ref,
+  int parent: @type_mention_parent ref);
+
+type_mention_location(
+  unique int id: @type_mention ref,
+  int loc: @location ref);
+
+@has_type_annotation = @assignable | @type_parameter | @callable | @expr | @delegate_type | @generic | @function_pointer_type;
+
+/**
+ * A direct annotation on an entity, for example `string? x;`.
+ *
+ * Annotations:
+ * 2 = reftype is not annotated "!"
+ * 3 = reftype is annotated "?"
+ * 4 = readonly ref type / in parameter
+ * 5 = ref type parameter, return or local variable
+ * 6 = out parameter
+ *
+ * Note that the annotation depends on the element it annotates.
+ * @assignable: The annotation is on the type of the assignable, for example the variable type.
+ * @type_parameter: The annotation is on the reftype constraint
+ * @callable: The annotation is on the return type
+ * @array_type: The annotation is on the element type
+ */
+type_annotation(int id: @has_type_annotation ref, int annotation: int ref);
+
+nullability(unique int nullability: @nullability, int kind: int ref);
+
+case @nullability.kind of
+  0 = @oblivious
+| 1 = @not_annotated
+| 2 = @annotated
+;
+
+#keyset[parent, index]
+nullability_parent(int nullability: @nullability ref, int index: int ref, int parent: @nullability ref)
+
+type_nullability(int id: @has_type_annotation ref, int nullability: @nullability ref);
+
+/**
+ * The nullable flow state of an expression, as determined by Roslyn.
+ *   0 = none (default, not populated)
+ *   1 = not null
+ *   2 = maybe null
+ */
+expr_flowstate(unique int id: @expr ref, int state: int ref);
+
+/** GENERICS **/
+
+@generic = @type | @method | @local_function;
+
+type_parameters(
+  unique int id: @type_parameter ref,
+  int index: int ref,
+  int generic_id: @generic ref,
+  int variance: int ref /* none = 0, out = 1, in = 2 */);
+
+#keyset[constructed_id, index]
+type_arguments(
+  int id: @type_or_ref ref,
+  int index: int ref,
+  int constructed_id: @generic_or_ref ref);
+
+@generic_or_ref = @generic | @typeref;
+
+constructed_generic(
+  unique int constructed: @generic ref,
+  int generic: @generic_or_ref ref);
+
+type_parameter_constraints(
+  unique int id: @type_parameter_constraints,
+  int param_id: @type_parameter ref);
+
+type_parameter_constraints_location(
+  int id: @type_parameter_constraints ref,
+  int loc: @location ref);
+
+general_type_parameter_constraints(
+  int id: @type_parameter_constraints ref,
+  int kind: int ref /* class = 1, struct = 2, new = 3 */);
+
+specific_type_parameter_constraints(
+  int id: @type_parameter_constraints ref,
+  int base_id: @type_or_ref ref);
+
+specific_type_parameter_nullability(
+  int id: @type_parameter_constraints ref,
+  int base_id: @type_or_ref ref,
+  int nullability: @nullability ref);
+
+/** FUNCTION POINTERS */
+
+function_pointer_calling_conventions(
+  int id: @function_pointer_type ref,
+  int kind: int ref);
+
+#keyset[id, index]
+has_unmanaged_calling_conventions(
+  int id: @function_pointer_type ref,
+  int index: int ref,
+  int conv_id: @type_or_ref ref);
+
+/** MODIFIERS */
+
+@modifiable = @modifiable_direct | @event_accessor;
+
+@modifiable_direct = @member | @accessor | @local_function | @anonymous_function_expr;
+
+modifiers(
+  unique int id: @modifier,
+  string name: string ref);
+
+has_modifiers(
+  int id: @modifiable_direct ref,
+  int mod_id: @modifier ref);
+
+compiler_generated(unique int id: @modifiable ref);
+
+/** MEMBERS **/
+
+@member = @method | @constructor | @destructor | @field | @property | @event | @operator | @indexer | @type;
+
+@named_exprorstmt = @goto_stmt | @labeled_stmt | @expr;
+
+@virtualizable = @method | @property | @indexer | @event;
+
+exprorstmt_name(
+  unique int parent_id: @named_exprorstmt ref,
+  string name: string ref);
+
+nested_types(
+  unique int id: @type ref,
+  int declaring_type_id: @type ref,
+  int unbound_id: @type ref);
+
+properties(
+  unique int id: @property,
+  string name: string ref,
+  int declaring_type_id: @type ref,
+  int type_id: @type_or_ref ref,
+  int unbound_id: @property ref);
+
+property_location(
+  int id: @property ref,
+  int loc: @location ref);
+
+indexers(
+  unique int id: @indexer,
+  string name: string ref,
+  int declaring_type_id: @type ref,
+  int type_id: @type_or_ref ref,
+  int unbound_id: @indexer ref);
+
+indexer_location(
+  int id: @indexer ref,
+  int loc: @location ref);
+
+accessors(
+  unique int id: @accessor,
+  int kind: int ref,
+  string name: string ref,
+  int declaring_member_id: @member ref,
+  int unbound_id: @accessor ref);
+
+case @accessor.kind of
+  1 = @getter
+| 2 = @setter
+  ;
+
+init_only_accessors(
+  unique int id: @accessor ref);
+
+accessor_location(
+  int id: @accessor ref,
+  int loc: @location ref);
+
+events(
+  unique int id: @event,
+  string name: string ref,
+  int declaring_type_id: @type ref,
+  int type_id: @type_or_ref ref,
+  int unbound_id: @event ref);
+
+event_location(
+  int id: @event ref,
+  int loc: @location ref);
+
+event_accessors(
+  unique int id: @event_accessor,
+  int kind: int ref,
+  string name: string ref,
+  int declaring_event_id: @event ref,
+  int unbound_id: @event_accessor ref);
+
+case @event_accessor.kind of
+  1 = @add_event_accessor
+| 2 = @remove_event_accessor
+  ;
+
+event_accessor_location(
+  int id: @event_accessor ref,
+  int loc: @location ref);
+
+operators(
+  unique int id: @operator,
+  string name: string ref,
+  string symbol: string ref,
+  int declaring_type_id: @type ref,
+  int type_id: @type_or_ref ref,
+  int unbound_id: @operator ref);
+
+operator_location(
+  int id: @operator ref,
+  int loc: @location ref);
+
+constant_value(
+  int id: @variable ref,
+  string value: string ref);
+
+/** CALLABLES **/
+
+@callable = @method | @constructor | @destructor | @operator | @callable_accessor | @anonymous_function_expr | @local_function;
+
+@callable_accessor = @accessor | @event_accessor;
+
+methods(
+  unique int id: @method,
+  string name: string ref,
+  int declaring_type_id: @type ref,
+  int type_id: @type_or_ref ref,
+  int unbound_id: @method ref);
+
+method_location(
+  int id: @method ref,
+  int loc: @location ref);
+
+constructors(
+  unique int id: @constructor,
+  string name: string ref,
+  int declaring_type_id: @type ref,
+  int unbound_id: @constructor ref);
+
+constructor_location(
+  int id: @constructor ref,
+  int loc: @location ref);
+
+destructors(
+  unique int id: @destructor,
+  string name: string ref,
+  int declaring_type_id: @type ref,
+  int unbound_id: @destructor ref);
+
+destructor_location(
+  int id: @destructor ref,
+  int loc: @location ref);
+
+overrides(
+  int id: @callable ref,
+  int base_id: @callable ref);
+
+explicitly_implements(
+  int id: @member ref,
+  int interface_id: @interface_or_ref ref);
+
+local_functions(
+    unique int id: @local_function,
+    string name: string ref,
+    int return_type: @type ref,
+    int unbound_id: @local_function ref);
+
+local_function_stmts(
+    unique int fn: @local_function_stmt ref,
+    int stmt: @local_function ref);
+
+/** VARIABLES **/
+
+@variable = @local_scope_variable | @field;
+
+@local_scope_variable = @local_variable | @parameter;
+
+fields(
+  unique int id: @field,
+  int kind: int ref,
+  string name: string ref,
+  int declaring_type_id: @type ref,
+  int type_id: @type_or_ref ref,
+  int unbound_id: @field ref);
+
+case @field.kind of
+  1 = @addressable_field
+| 2 = @constant
+  ;
+
+field_location(
+  int id: @field ref,
+  int loc: @location ref);
+
+localvars(
+  unique int id: @local_variable,
+  int kind: int ref,
+  string name: string ref,
+  int implicitly_typed: int ref /* 0 = no, 1 = yes */,
+  int type_id: @type_or_ref ref,
+  int parent_id: @local_var_decl_expr ref);
+
+case @local_variable.kind of
+  1 = @addressable_local_variable
+| 2 = @local_constant
+| 3 = @local_variable_ref
+  ;
+
+localvar_location(
+  unique int id: @local_variable ref,
+  int loc: @location ref);
+
+@parameterizable = @callable | @delegate_type | @indexer | @function_pointer_type;
+
+#keyset[name, parent_id]
+#keyset[index, parent_id]
+params(
+  unique int id: @parameter,
+  string name: string ref,
+  int type_id: @type_or_ref ref,
+  int index: int ref,
+  int mode: int ref, /* value = 0, ref = 1, out = 2, array = 3, this = 4 */
+  int parent_id: @parameterizable ref,
+  int unbound_id: @parameter ref);
+
+param_location(
+  int id: @parameter ref,
+  int loc: @location ref);
+
+/** STATEMENTS **/
+
+@exprorstmt_parent = @control_flow_element | @top_level_exprorstmt_parent;
+
+statements(
+  unique int id: @stmt,
+  int kind: int ref);
+
+#keyset[index, parent]
+stmt_parent(
+  unique int stmt: @stmt ref,
+  int index: int ref,
+  int parent: @control_flow_element ref);
+
+@top_level_stmt_parent = @callable;
+
+// [index, parent] is not a keyset because the same parent may be compiled multiple times
+stmt_parent_top_level(
+  unique int stmt: @stmt ref,
+  int index: int ref,
+  int parent: @top_level_stmt_parent ref);
+
+case @stmt.kind of
+   1 = @block_stmt
+|  2 = @expr_stmt
+|  3 = @if_stmt
+|  4 = @switch_stmt
+|  5 = @while_stmt
+|  6 = @do_stmt
+|  7 = @for_stmt
+|  8 = @foreach_stmt
+|  9 = @break_stmt
+| 10 = @continue_stmt
+| 11 = @goto_stmt
+| 12 = @goto_case_stmt
+| 13 = @goto_default_stmt
+| 14 = @throw_stmt
+| 15 = @return_stmt
+| 16 = @yield_stmt
+| 17 = @try_stmt
+| 18 = @checked_stmt
+| 19 = @unchecked_stmt
+| 20 = @lock_stmt
+| 21 = @using_block_stmt
+| 22 = @var_decl_stmt
+| 23 = @const_decl_stmt
+| 24 = @empty_stmt
+| 25 = @unsafe_stmt
+| 26 = @fixed_stmt
+| 27 = @label_stmt
+| 28 = @catch
+| 29 = @case_stmt
+| 30 = @local_function_stmt
+| 31 = @using_decl_stmt
+  ;
+
+@using_stmt = @using_block_stmt | @using_decl_stmt;
+
+@labeled_stmt = @label_stmt | @case;
+
+@decl_stmt = @var_decl_stmt | @const_decl_stmt | @using_decl_stmt;
+
+@cond_stmt = @if_stmt | @switch_stmt;
+
+@loop_stmt = @while_stmt | @do_stmt | @for_stmt | @foreach_stmt;
+
+@jump_stmt = @break_stmt | @goto_any_stmt | @continue_stmt | @throw_stmt | @return_stmt
+           | @yield_stmt;
+
+@goto_any_stmt = @goto_default_stmt | @goto_case_stmt | @goto_stmt;
+
+
+stmt_location(
+  unique int id: @stmt ref,
+  int loc: @location ref);
+
+catch_type(
+  unique int catch_id: @catch ref,
+  int type_id: @type_or_ref ref,
+  int kind: int ref /* explicit = 1, implicit = 2 */);
+
+foreach_stmt_info(
+  unique int id: @foreach_stmt ref,
+  int kind: int ref /* non-async = 1, async = 2 */);
+
+@foreach_symbol =  @method | @property | @type_or_ref;
+
+#keyset[id, kind]
+foreach_stmt_desugar(
+  int id: @foreach_stmt ref,
+  int symbol: @foreach_symbol ref,
+  int kind: int ref /* GetEnumeratorMethod = 1, CurrentProperty = 2, MoveNextMethod = 3, DisposeMethod = 4, ElementType = 5 */);
+
+/** EXPRESSIONS **/
+
+expressions(
+  unique int id: @expr,
+  int kind: int ref,
+  int type_id: @type_or_ref ref);
+
+#keyset[index, parent]
+expr_parent(
+  unique int expr: @expr ref,
+  int index: int ref,
+  int parent: @control_flow_element ref);
+
+@top_level_expr_parent = @attribute | @field | @property | @indexer | @parameter | @directive_if | @directive_elif;
+
+@top_level_exprorstmt_parent = @top_level_expr_parent | @top_level_stmt_parent;
+
+// [index, parent] is not a keyset because the same parent may be compiled multiple times
+expr_parent_top_level(
+  unique int expr: @expr ref,
+  int index: int ref,
+  int parent: @top_level_exprorstmt_parent ref);
+
+case @expr.kind of
+/* literal */
+   1 = @bool_literal_expr
+|  2 = @char_literal_expr
+|  3 = @decimal_literal_expr
+|  4 = @int_literal_expr
+|  5 = @long_literal_expr
+|  6 = @uint_literal_expr
+|  7 = @ulong_literal_expr
+|  8 = @float_literal_expr
+|  9 = @double_literal_expr
+| 10 = @string_literal_expr
+| 11 = @null_literal_expr
+/* primary & unary */
+| 12 = @this_access_expr
+| 13 = @base_access_expr
+| 14 = @local_variable_access_expr
+| 15 = @parameter_access_expr
+| 16 = @field_access_expr
+| 17 = @property_access_expr
+| 18 = @method_access_expr
+| 19 = @event_access_expr
+| 20 = @indexer_access_expr
+| 21 = @array_access_expr
+| 22 = @type_access_expr
+| 23 = @typeof_expr
+| 24 = @method_invocation_expr
+| 25 = @delegate_invocation_expr
+| 26 = @operator_invocation_expr
+| 27 = @cast_expr
+| 28 = @object_creation_expr
+| 29 = @explicit_delegate_creation_expr
+| 30 = @implicit_delegate_creation_expr
+| 31 = @array_creation_expr
+| 32 = @default_expr
+| 33 = @plus_expr
+| 34 = @minus_expr
+| 35 = @bit_not_expr
+| 36 = @log_not_expr
+| 37 = @post_incr_expr
+| 38 = @post_decr_expr
+| 39 = @pre_incr_expr
+| 40 = @pre_decr_expr
+/* multiplicative */
+| 41 = @mul_expr
+| 42 = @div_expr
+| 43 = @rem_expr
+/* additive */
+| 44 = @add_expr
+| 45 = @sub_expr
+/* shift */
+| 46 = @lshift_expr
+| 47 = @rshift_expr
+/* relational */
+| 48 = @lt_expr
+| 49 = @gt_expr
+| 50 = @le_expr
+| 51 = @ge_expr
+/* equality */
+| 52 = @eq_expr
+| 53 = @ne_expr
+/* logical */
+| 54 = @bit_and_expr
+| 55 = @bit_xor_expr
+| 56 = @bit_or_expr
+| 57 = @log_and_expr
+| 58 = @log_or_expr
+/* type testing */
+| 59 = @is_expr
+| 60 = @as_expr
+/* null coalescing */
+| 61 = @null_coalescing_expr
+/* conditional */
+| 62 = @conditional_expr
+/* assignment */
+| 63 = @simple_assign_expr
+| 64 = @assign_add_expr
+| 65 = @assign_sub_expr
+| 66 = @assign_mul_expr
+| 67 = @assign_div_expr
+| 68 = @assign_rem_expr
+| 69 = @assign_and_expr
+| 70 = @assign_xor_expr
+| 71 = @assign_or_expr
+| 72 = @assign_lshift_expr
+| 73 = @assign_rshift_expr
+/* more */
+| 74 = @object_init_expr
+| 75 = @collection_init_expr
+| 76 = @array_init_expr
+| 77 = @checked_expr
+| 78 = @unchecked_expr
+| 79 = @constructor_init_expr
+| 80 = @add_event_expr
+| 81 = @remove_event_expr
+| 82 = @par_expr
+| 83 = @local_var_decl_expr
+| 84 = @lambda_expr
+| 85 = @anonymous_method_expr
+| 86 = @namespace_expr
+/* dynamic */
+| 92 = @dynamic_element_access_expr
+| 93 = @dynamic_member_access_expr
+/* unsafe */
+| 100 = @pointer_indirection_expr
+| 101 = @address_of_expr
+| 102 = @sizeof_expr
+/* async */
+| 103 = @await_expr
+/* C# 6.0 */
+| 104 = @nameof_expr
+| 105 = @interpolated_string_expr
+| 106 = @unknown_expr
+/* C# 7.0 */
+| 107 = @throw_expr
+| 108 = @tuple_expr
+| 109 = @local_function_invocation_expr
+| 110 = @ref_expr
+| 111 = @discard_expr
+/* C# 8.0 */
+| 112 = @range_expr
+| 113 = @index_expr
+| 114 = @switch_expr
+| 115 = @recursive_pattern_expr
+| 116 = @property_pattern_expr
+| 117 = @positional_pattern_expr
+| 118 = @switch_case_expr
+| 119 = @assign_coalesce_expr
+| 120 = @suppress_nullable_warning_expr
+| 121 = @namespace_access_expr
+/* C# 9.0 */
+| 122 = @lt_pattern_expr
+| 123 = @gt_pattern_expr
+| 124 = @le_pattern_expr
+| 125 = @ge_pattern_expr
+| 126 = @not_pattern_expr
+| 127 = @and_pattern_expr
+| 128 = @or_pattern_expr
+| 129 = @function_pointer_invocation_expr
+| 130 = @with_expr
+/* C# 11.0 */
+| 131 = @list_pattern_expr
+| 132 = @slice_pattern_expr
+/* Preprocessor */
+| 999 = @define_symbol_expr
+;
+
+@switch = @switch_stmt | @switch_expr;
+@case = @case_stmt | @switch_case_expr;
+@pattern_match = @case | @is_expr;
+@unary_pattern_expr = @not_pattern_expr;
+@relational_pattern_expr = @gt_pattern_expr | @lt_pattern_expr | @ge_pattern_expr | @le_pattern_expr;
+@binary_pattern_expr = @and_pattern_expr | @or_pattern_expr;
+
+@integer_literal_expr = @int_literal_expr | @long_literal_expr | @uint_literal_expr | @ulong_literal_expr;
+@real_literal_expr = @float_literal_expr | @double_literal_expr | @decimal_literal_expr;
+@literal_expr = @bool_literal_expr | @char_literal_expr | @integer_literal_expr | @real_literal_expr
+              | @string_literal_expr | @null_literal_expr;
+
+@assign_expr = @simple_assign_expr | @assign_op_expr | @local_var_decl_expr;
+@assign_op_expr =  @assign_arith_expr | @assign_bitwise_expr | @assign_event_expr | @assign_coalesce_expr;
+@assign_event_expr = @add_event_expr | @remove_event_expr;
+
+@assign_arith_expr = @assign_add_expr | @assign_sub_expr | @assign_mul_expr | @assign_div_expr
+                   | @assign_rem_expr
+@assign_bitwise_expr = @assign_and_expr | @assign_or_expr | @assign_xor_expr
+                   | @assign_lshift_expr | @assign_rshift_expr;
+
+@member_access_expr = @field_access_expr | @property_access_expr | @indexer_access_expr | @event_access_expr
+                    | @method_access_expr | @type_access_expr | @dynamic_member_access_expr;
+@access_expr = @member_access_expr | @this_access_expr | @base_access_expr | @assignable_access_expr | @namespace_access_expr;
+@element_access_expr = @indexer_access_expr | @array_access_expr | @dynamic_element_access_expr;
+
+@local_variable_access = @local_variable_access_expr | @local_var_decl_expr;
+@local_scope_variable_access_expr = @parameter_access_expr | @local_variable_access;
+@variable_access_expr = @local_scope_variable_access_expr | @field_access_expr;
+
+@assignable_access_expr = @variable_access_expr | @property_access_expr | @element_access_expr
+                        | @event_access_expr | @dynamic_member_access_expr;
+
+@objectorcollection_init_expr = @object_init_expr | @collection_init_expr;
+
+@delegate_creation_expr = @explicit_delegate_creation_expr | @implicit_delegate_creation_expr;
+
+@bin_arith_op_expr = @mul_expr | @div_expr | @rem_expr | @add_expr | @sub_expr;
+@incr_op_expr =  @pre_incr_expr | @post_incr_expr;
+@decr_op_expr =  @pre_decr_expr | @post_decr_expr;
+@mut_op_expr = @incr_op_expr | @decr_op_expr;
+@un_arith_op_expr = @plus_expr | @minus_expr | @mut_op_expr;
+@arith_op_expr = @bin_arith_op_expr | @un_arith_op_expr;
+
+@ternary_log_op_expr = @conditional_expr;
+@bin_log_op_expr = @log_and_expr | @log_or_expr | @null_coalescing_expr;
+@un_log_op_expr = @log_not_expr;
+@log_expr = @un_log_op_expr | @bin_log_op_expr | @ternary_log_op_expr;
+
+@bin_bit_op_expr =  @bit_and_expr | @bit_or_expr | @bit_xor_expr | @lshift_expr
+                 | @rshift_expr;
+@un_bit_op_expr = @bit_not_expr;
+@bit_expr = @un_bit_op_expr | @bin_bit_op_expr;
+
+@equality_op_expr =  @eq_expr | @ne_expr;
+@rel_op_expr = @gt_expr | @lt_expr| @ge_expr | @le_expr;
+@comp_expr = @equality_op_expr | @rel_op_expr;
+
+@op_expr = @assign_expr | @un_op | @bin_op | @ternary_op;
+
+@ternary_op = @ternary_log_op_expr;
+@bin_op = @bin_arith_op_expr | @bin_log_op_expr | @bin_bit_op_expr | @comp_expr;
+@un_op = @un_arith_op_expr | @un_log_op_expr | @un_bit_op_expr | @sizeof_expr
+       | @pointer_indirection_expr | @address_of_expr;
+
+@anonymous_function_expr = @lambda_expr | @anonymous_method_expr;
+
+@call = @method_invocation_expr | @constructor_init_expr | @operator_invocation_expr
+      | @delegate_invocation_expr | @object_creation_expr | @call_access_expr
+      | @local_function_invocation_expr | @function_pointer_invocation_expr;
+
+@call_access_expr = @property_access_expr | @event_access_expr | @indexer_access_expr;
+
+@late_bindable_expr = @dynamic_element_access_expr | @dynamic_member_access_expr
+                    | @object_creation_expr | @method_invocation_expr | @operator_invocation_expr;
+
+@throw_element = @throw_expr | @throw_stmt;
+
+@implicitly_typeable_object_creation_expr = @object_creation_expr | @explicit_delegate_creation_expr;
+
+implicitly_typed_array_creation(
+  unique int id: @array_creation_expr ref);
+
+explicitly_sized_array_creation(
+  unique int id: @array_creation_expr ref);
+
+stackalloc_array_creation(
+  unique int id: @array_creation_expr ref);
+
+implicitly_typed_object_creation(
+  unique int id: @implicitly_typeable_object_creation_expr ref);
+
+mutator_invocation_mode(
+  unique int id: @operator_invocation_expr ref,
+  int mode: int ref /* prefix = 1, postfix = 2*/);
+
+expr_compiler_generated(
+  unique int id: @expr ref);
+
+expr_value(
+  unique int id: @expr ref,
+  string value: string ref);
+
+expr_call(
+  unique int caller_id: @expr ref,
+  int target_id: @callable ref);
+
+expr_access(
+  unique int accesser_id: @access_expr ref,
+  int target_id: @accessible ref);
+
+@accessible = @method | @assignable | @local_function | @namespace;
+
+expr_location(
+  unique int id: @expr ref,
+  int loc: @location ref);
+
+dynamic_member_name(
+  unique int id: @late_bindable_expr ref,
+  string name: string ref);
+
+@qualifiable_expr = @member_access_expr
+                  | @method_invocation_expr
+                  | @element_access_expr;
+
+conditional_access(
+  unique int id: @qualifiable_expr ref);
+
+expr_argument(
+  unique int id: @expr ref,
+  int mode: int ref);
+  /* mode is the same as params: value = 0, ref = 1, out = 2 */
+
+expr_argument_name(
+  unique int id: @expr ref,
+  string name: string ref);
+
+lambda_expr_return_type(
+  unique int id: @lambda_expr ref,
+  int type_id: @type_or_ref ref);
+  
+/** CONTROL/DATA FLOW **/
+
+@control_flow_element = @stmt | @expr;
+
+/* XML Files */
+
+xmlEncoding  (
+  unique int id: @file ref,
+  string encoding: string ref);
+
+xmlDTDs(
+  unique int id: @xmldtd,
+  string root: string ref,
+  string publicId: string ref,
+  string systemId: string ref,
+  int fileid: @file ref);
+
+xmlElements(
+  unique int id: @xmlelement,
+  string name: string ref,
+  int parentid: @xmlparent ref,
+  int idx: int ref,
+  int fileid: @file ref);
+
+xmlAttrs(
+  unique int id: @xmlattribute,
+  int elementid: @xmlelement ref,
+  string name: string ref,
+  string value: string ref,
+  int idx: int ref,
+  int fileid: @file ref);
+
+xmlNs(
+  int id: @xmlnamespace,
+  string prefixName: string ref,
+  string URI: string ref,
+  int fileid: @file ref);
+
+xmlHasNs(
+  int elementId: @xmlnamespaceable ref,
+  int nsId: @xmlnamespace ref,
+  int fileid: @file ref);
+
+xmlComments(
+  unique int id: @xmlcomment,
+  string text: string ref,
+  int parentid: @xmlparent ref,
+  int fileid: @file ref);
+
+xmlChars(
+  unique int id: @xmlcharacters,
+  string text: string ref,
+  int parentid: @xmlparent ref,
+  int idx: int ref,
+  int isCDATA: int ref,
+  int fileid: @file ref);
+
+@xmlparent = @file | @xmlelement;
+@xmlnamespaceable = @xmlelement | @xmlattribute;
+
+xmllocations(
+  int xmlElement: @xmllocatable ref,
+  int location: @location_default ref);
+
+@xmllocatable = @xmlcharacters | @xmlelement | @xmlcomment | @xmlattribute | @xmldtd | @file | @xmlnamespace;
+
+/* Comments */
+
+commentline(
+  unique int id: @commentline,
+  int kind: int ref,
+  string text: string ref,
+  string rawtext: string ref);
+
+case @commentline.kind of
+  0 = @singlelinecomment
+| 1 = @xmldoccomment
+| 2 = @multilinecomment;
+
+commentline_location(
+  unique int id: @commentline ref,
+  int loc: @location ref);
+
+commentblock(
+  unique int id : @commentblock);
+
+commentblock_location(
+  unique int id: @commentblock ref,
+  int loc: @location ref);
+
+commentblock_binding(
+  int id: @commentblock ref,
+  int entity: @element ref,
+  int bindtype: int ref);    /* 0: Parent, 1: Best, 2: Before, 3: After */
+
+commentblock_child(
+  int id: @commentblock ref,
+  int commentline: @commentline ref,
+  int index: int ref);
+
+/* ASP.NET */
+
+case @asp_element.kind of
+  0=@asp_close_tag
+| 1=@asp_code
+| 2=@asp_comment
+| 3=@asp_data_binding
+| 4=@asp_directive
+| 5=@asp_open_tag
+| 6=@asp_quoted_string
+| 7=@asp_text
+| 8=@asp_xml_directive;
+
+@asp_attribute = @asp_code | @asp_data_binding | @asp_quoted_string;
+
+asp_elements(
+  unique int id: @asp_element,
+  int kind: int ref,
+  int loc: @location ref);
+
+asp_comment_server(unique int comment: @asp_comment ref);
+asp_code_inline(unique int code: @asp_code ref);
+asp_directive_attribute(
+  int directive: @asp_directive ref,
+  int index: int ref,
+  string name: string ref,
+  int value: @asp_quoted_string ref);
+asp_directive_name(
+  unique int directive: @asp_directive ref,
+  string name: string ref);
+asp_element_body(
+  unique int element: @asp_element ref,
+  string body: string ref);
+asp_tag_attribute(
+  int tag: @asp_open_tag ref,
+  int index: int ref,
+  string name: string ref,
+  int attribute: @asp_attribute ref);
+asp_tag_name(
+  unique int tag: @asp_open_tag ref,
+  string name: string ref);
+asp_tag_isempty(int tag: @asp_open_tag ref);
+
+/* Common Intermediate Language - CIL */
+
+case @cil_instruction.opcode of
+  0 = @cil_nop
+| 1 = @cil_break
+| 2 = @cil_ldarg_0
+| 3 = @cil_ldarg_1
+| 4 = @cil_ldarg_2
+| 5 = @cil_ldarg_3
+| 6 = @cil_ldloc_0
+| 7 = @cil_ldloc_1
+| 8 = @cil_ldloc_2
+| 9 = @cil_ldloc_3
+| 10 = @cil_stloc_0
+| 11 = @cil_stloc_1
+| 12 = @cil_stloc_2
+| 13 = @cil_stloc_3
+| 14 = @cil_ldarg_s
+| 15 = @cil_ldarga_s
+| 16 = @cil_starg_s
+| 17 = @cil_ldloc_s
+| 18 = @cil_ldloca_s
+| 19 = @cil_stloc_s
+| 20 = @cil_ldnull
+| 21 = @cil_ldc_i4_m1
+| 22 = @cil_ldc_i4_0
+| 23 = @cil_ldc_i4_1
+| 24 = @cil_ldc_i4_2
+| 25 = @cil_ldc_i4_3
+| 26 = @cil_ldc_i4_4
+| 27 = @cil_ldc_i4_5
+| 28 = @cil_ldc_i4_6
+| 29 = @cil_ldc_i4_7
+| 30 = @cil_ldc_i4_8
+| 31 = @cil_ldc_i4_s
+| 32 = @cil_ldc_i4
+| 33 = @cil_ldc_i8
+| 34 = @cil_ldc_r4
+| 35 = @cil_ldc_r8
+| 37 = @cil_dup
+| 38 = @cil_pop
+| 39 = @cil_jmp
+| 40 = @cil_call
+| 41 = @cil_calli
+| 42 = @cil_ret
+| 43 = @cil_br_s
+| 44 = @cil_brfalse_s
+| 45 = @cil_brtrue_s
+| 46 = @cil_beq_s
+| 47 = @cil_bge_s
+| 48 = @cil_bgt_s
+| 49 = @cil_ble_s
+| 50 = @cil_blt_s
+| 51 = @cil_bne_un_s
+| 52 = @cil_bge_un_s
+| 53 = @cil_bgt_un_s
+| 54 = @cil_ble_un_s
+| 55 = @cil_blt_un_s
+| 56 = @cil_br
+| 57 = @cil_brfalse
+| 58 = @cil_brtrue
+| 59 = @cil_beq
+| 60 = @cil_bge
+| 61 = @cil_bgt
+| 62 = @cil_ble
+| 63 = @cil_blt
+| 64 = @cil_bne_un
+| 65 = @cil_bge_un
+| 66 = @cil_bgt_un
+| 67 = @cil_ble_un
+| 68 = @cil_blt_un
+| 69 = @cil_switch
+| 70 = @cil_ldind_i1
+| 71 = @cil_ldind_u1
+| 72 = @cil_ldind_i2
+| 73 = @cil_ldind_u2
+| 74 = @cil_ldind_i4
+| 75 = @cil_ldind_u4
+| 76 = @cil_ldind_i8
+| 77 = @cil_ldind_i
+| 78 = @cil_ldind_r4
+| 79 = @cil_ldind_r8
+| 80 = @cil_ldind_ref
+| 81 = @cil_stind_ref
+| 82 = @cil_stind_i1
+| 83 = @cil_stind_i2
+| 84 = @cil_stind_i4
+| 85 = @cil_stind_i8
+| 86 = @cil_stind_r4
+| 87 = @cil_stind_r8
+| 88 = @cil_add
+| 89 = @cil_sub
+| 90 = @cil_mul
+| 91 = @cil_div
+| 92 = @cil_div_un
+| 93 = @cil_rem
+| 94 = @cil_rem_un
+| 95 = @cil_and
+| 96 = @cil_or
+| 97 = @cil_xor
+| 98 = @cil_shl
+| 99 = @cil_shr
+| 100 = @cil_shr_un
+| 101 = @cil_neg
+| 102 = @cil_not
+| 103 = @cil_conv_i1
+| 104 = @cil_conv_i2
+| 105 = @cil_conv_i4
+| 106 = @cil_conv_i8
+| 107 = @cil_conv_r4
+| 108 = @cil_conv_r8
+| 109 = @cil_conv_u4
+| 110 = @cil_conv_u8
+| 111 = @cil_callvirt
+| 112 = @cil_cpobj
+| 113 = @cil_ldobj
+| 114 = @cil_ldstr
+| 115 = @cil_newobj
+| 116 = @cil_castclass
+| 117 = @cil_isinst
+| 118 = @cil_conv_r_un
+| 121 = @cil_unbox
+| 122 = @cil_throw
+| 123 = @cil_ldfld
+| 124 = @cil_ldflda
+| 125 = @cil_stfld
+| 126 = @cil_ldsfld
+| 127 = @cil_ldsflda
+| 128 = @cil_stsfld
+| 129 = @cil_stobj
+| 130 = @cil_conv_ovf_i1_un
+| 131 = @cil_conv_ovf_i2_un
+| 132 = @cil_conv_ovf_i4_un
+| 133 = @cil_conv_ovf_i8_un
+| 134 = @cil_conv_ovf_u1_un
+| 135 = @cil_conv_ovf_u2_un
+| 136 = @cil_conv_ovf_u4_un
+| 137 = @cil_conv_ovf_u8_un
+| 138 = @cil_conv_ovf_i_un
+| 139 = @cil_conv_ovf_u_un
+| 140 = @cil_box
+| 141 = @cil_newarr
+| 142 = @cil_ldlen
+| 143 = @cil_ldelema
+| 144 = @cil_ldelem_i1
+| 145 = @cil_ldelem_u1
+| 146 = @cil_ldelem_i2
+| 147 = @cil_ldelem_u2
+| 148 = @cil_ldelem_i4
+| 149 = @cil_ldelem_u4
+| 150 = @cil_ldelem_i8
+| 151 = @cil_ldelem_i
+| 152 = @cil_ldelem_r4
+| 153 = @cil_ldelem_r8
+| 154 = @cil_ldelem_ref
+| 155 = @cil_stelem_i
+| 156 = @cil_stelem_i1
+| 157 = @cil_stelem_i2
+| 158 = @cil_stelem_i4
+| 159 = @cil_stelem_i8
+| 160 = @cil_stelem_r4
+| 161 = @cil_stelem_r8
+| 162 = @cil_stelem_ref
+| 163 = @cil_ldelem
+| 164 = @cil_stelem
+| 165 = @cil_unbox_any
+| 179 = @cil_conv_ovf_i1
+| 180 = @cil_conv_ovf_u1
+| 181 = @cil_conv_ovf_i2
+| 182 = @cil_conv_ovf_u2
+| 183 = @cil_conv_ovf_i4
+| 184 = @cil_conv_ovf_u4
+| 185 = @cil_conv_ovf_i8
+| 186 = @cil_conv_ovf_u8
+| 194 = @cil_refanyval
+| 195 = @cil_ckinfinite
+| 198 = @cil_mkrefany
+| 208 = @cil_ldtoken
+| 209 = @cil_conv_u2
+| 210 = @cil_conv_u1
+| 211 = @cil_conv_i
+| 212 = @cil_conv_ovf_i
+| 213 = @cil_conv_ovf_u
+| 214 = @cil_add_ovf
+| 215 = @cil_add_ovf_un
+| 216 = @cil_mul_ovf
+| 217 = @cil_mul_ovf_un
+| 218 = @cil_sub_ovf
+| 219 = @cil_sub_ovf_un
+| 220 = @cil_endfinally
+| 221 = @cil_leave
+| 222 = @cil_leave_s
+| 223 = @cil_stind_i
+| 224 = @cil_conv_u
+| 65024 = @cil_arglist
+| 65025 = @cil_ceq
+| 65026 = @cil_cgt
+| 65027 = @cil_cgt_un
+| 65028 = @cil_clt
+| 65029 = @cil_clt_un
+| 65030 = @cil_ldftn
+| 65031 = @cil_ldvirtftn
+| 65033 = @cil_ldarg
+| 65034 = @cil_ldarga
+| 65035 = @cil_starg
+| 65036 = @cil_ldloc
+| 65037 = @cil_ldloca
+| 65038 = @cil_stloc
+| 65039 = @cil_localloc
+| 65041 = @cil_endfilter
+| 65042 = @cil_unaligned
+| 65043 = @cil_volatile
+| 65044 = @cil_tail
+| 65045 = @cil_initobj
+| 65046 = @cil_constrained
+| 65047 = @cil_cpblk
+| 65048 = @cil_initblk
+| 65050 = @cil_rethrow
+| 65052 = @cil_sizeof
+| 65053 = @cil_refanytype
+| 65054 = @cil_readonly
+;
+
+// CIL ignored instructions
+
+@cil_ignore = @cil_nop | @cil_break | @cil_volatile | @cil_unaligned;
+
+// CIL local/parameter/field access
+
+@cil_ldarg_any = @cil_ldarg_0 | @cil_ldarg_1 | @cil_ldarg_2 | @cil_ldarg_3 | @cil_ldarg_s | @cil_ldarga_s | @cil_ldarg | @cil_ldarga;
+@cil_starg_any = @cil_starg | @cil_starg_s;
+
+@cil_ldloc_any = @cil_ldloc_0 | @cil_ldloc_1 | @cil_ldloc_2 | @cil_ldloc_3 | @cil_ldloc_s | @cil_ldloca_s | @cil_ldloc | @cil_ldloca;
+@cil_stloc_any = @cil_stloc_0 | @cil_stloc_1 | @cil_stloc_2 | @cil_stloc_3 | @cil_stloc_s | @cil_stloc;
+
+@cil_ldfld_any = @cil_ldfld | @cil_ldsfld | @cil_ldsflda | @cil_ldflda;
+@cil_stfld_any = @cil_stfld | @cil_stsfld;
+
+@cil_local_access = @cil_stloc_any | @cil_ldloc_any;
+@cil_arg_access = @cil_starg_any | @cil_ldarg_any;
+@cil_read_access = @cil_ldloc_any | @cil_ldarg_any | @cil_ldfld_any;
+@cil_write_access = @cil_stloc_any | @cil_starg_any | @cil_stfld_any;
+
+@cil_stack_access = @cil_local_access | @cil_arg_access;
+@cil_field_access = @cil_ldfld_any | @cil_stfld_any;
+
+@cil_access = @cil_read_access | @cil_write_access;
+
+// CIL constant/literal instructions
+
+@cil_ldc_i = @cil_ldc_i4_any | @cil_ldc_i8;
+
+@cil_ldc_i4_any = @cil_ldc_i4_m1 | @cil_ldc_i4_0 | @cil_ldc_i4_1 | @cil_ldc_i4_2 | @cil_ldc_i4_3 |
+  @cil_ldc_i4_4 | @cil_ldc_i4_5 | @cil_ldc_i4_6 | @cil_ldc_i4_7 | @cil_ldc_i4_8 | @cil_ldc_i4_s | @cil_ldc_i4;
+
+@cil_ldc_r = @cil_ldc_r4 | @cil_ldc_r8;
+
+@cil_literal = @cil_ldnull | @cil_ldc_i | @cil_ldc_r | @cil_ldstr;
+
+// Control flow
+
+@cil_conditional_jump = @cil_binary_jump | @cil_unary_jump;
+@cil_binary_jump = @cil_beq_s | @cil_bge_s | @cil_bgt_s | @cil_ble_s | @cil_blt_s |
+    @cil_bne_un_s | @cil_bge_un_s | @cil_bgt_un_s | @cil_ble_un_s | @cil_blt_un_s |
+    @cil_beq | @cil_bge | @cil_bgt | @cil_ble | @cil_blt |
+    @cil_bne_un | @cil_bge_un | @cil_bgt_un | @cil_ble_un | @cil_blt_un;
+@cil_unary_jump = @cil_brfalse_s | @cil_brtrue_s | @cil_brfalse | @cil_brtrue | @cil_switch;
+@cil_unconditional_jump = @cil_br | @cil_br_s | @cil_leave_any;
+@cil_leave_any = @cil_leave | @cil_leave_s;
+@cil_jump = @cil_unconditional_jump | @cil_conditional_jump;
+
+// CIL call instructions
+
+@cil_call_any = @cil_jmp | @cil_call | @cil_calli | @cil_tail | @cil_callvirt | @cil_newobj;
+
+// CIL expression instructions
+
+@cil_expr = @cil_literal | @cil_binary_expr | @cil_unary_expr | @cil_call_any | @cil_read_access |
+  @cil_newarr | @cil_ldtoken | @cil_sizeof |
+  @cil_ldftn | @cil_ldvirtftn | @cil_localloc | @cil_mkrefany | @cil_refanytype | @cil_arglist | @cil_dup;
+
+@cil_unary_expr =
+  @cil_conversion_operation | @cil_unary_arithmetic_operation | @cil_unary_bitwise_operation|
+  @cil_ldlen | @cil_isinst | @cil_box | @cil_ldobj | @cil_castclass | @cil_unbox_any |
+  @cil_ldind | @cil_unbox;
+
+@cil_conversion_operation =
+  @cil_conv_i1 | @cil_conv_i2 | @cil_conv_i4 | @cil_conv_i8 |
+  @cil_conv_u1 | @cil_conv_u2 | @cil_conv_u4 | @cil_conv_u8 |
+  @cil_conv_ovf_i | @cil_conv_ovf_i_un | @cil_conv_ovf_i1 | @cil_conv_ovf_i1_un |
+  @cil_conv_ovf_i2 | @cil_conv_ovf_i2_un | @cil_conv_ovf_i4 | @cil_conv_ovf_i4_un |
+  @cil_conv_ovf_i8 | @cil_conv_ovf_i8_un | @cil_conv_ovf_u | @cil_conv_ovf_u_un |
+  @cil_conv_ovf_u1 | @cil_conv_ovf_u1_un | @cil_conv_ovf_u2 | @cil_conv_ovf_u2_un |
+  @cil_conv_ovf_u4 | @cil_conv_ovf_u4_un | @cil_conv_ovf_u8 | @cil_conv_ovf_u8_un |
+  @cil_conv_r4 | @cil_conv_r8 | @cil_conv_ovf_u2 | @cil_conv_ovf_u2_un |
+  @cil_conv_i | @cil_conv_u | @cil_conv_r_un;
+
+@cil_ldind = @cil_ldind_i | @cil_ldind_i1 | @cil_ldind_i2 | @cil_ldind_i4 | @cil_ldind_i8 |
+  @cil_ldind_r4 | @cil_ldind_r8 | @cil_ldind_ref | @cil_ldind_u1 | @cil_ldind_u2 | @cil_ldind_u4;
+
+@cil_stind = @cil_stind_i | @cil_stind_i1 | @cil_stind_i2 | @cil_stind_i4 | @cil_stind_i8 |
+  @cil_stind_r4 | @cil_stind_r8 | @cil_stind_ref;
+
+@cil_bitwise_operation = @cil_binary_bitwise_operation | @cil_unary_bitwise_operation;
+
+@cil_binary_bitwise_operation = @cil_and | @cil_or | @cil_xor | @cil_shr | @cil_shr | @cil_shr_un | @cil_shl;
+
+@cil_binary_arithmetic_operation = @cil_add | @cil_sub | @cil_mul | @cil_div | @cil_div_un |
+  @cil_rem | @cil_rem_un | @cil_add_ovf | @cil_add_ovf_un | @cil_mul_ovf | @cil_mul_ovf_un |
+  @cil_sub_ovf | @cil_sub_ovf_un;
+
+@cil_unary_bitwise_operation = @cil_not;
+
+@cil_binary_expr = @cil_binary_arithmetic_operation | @cil_binary_bitwise_operation | @cil_read_array | @cil_comparison_operation;
+
+@cil_unary_arithmetic_operation = @cil_neg;
+
+@cil_comparison_operation = @cil_cgt_un | @cil_ceq | @cil_cgt | @cil_clt | @cil_clt_un;
+
+// Elements that retrieve an address of something
+@cil_read_ref = @cil_ldloca_s | @cil_ldarga_s | @cil_ldflda | @cil_ldsflda | @cil_ldelema;
+
+// CIL array instructions
+
+@cil_read_array =
+  @cil_ldelem | @cil_ldelema | @cil_ldelem_i1 | @cil_ldelem_ref | @cil_ldelem_i |
+  @cil_ldelem_i1 | @cil_ldelem_i2 | @cil_ldelem_i4 | @cil_ldelem_i8 | @cil_ldelem_r4 |
+  @cil_ldelem_r8 | @cil_ldelem_u1 | @cil_ldelem_u2 | @cil_ldelem_u4;
+
+@cil_write_array = @cil_stelem | @cil_stelem_ref |
+  @cil_stelem_i | @cil_stelem_i1 | @cil_stelem_i2 | @cil_stelem_i4 | @cil_stelem_i8 |
+  @cil_stelem_r4 | @cil_stelem_r8;
+
+@cil_throw_any = @cil_throw | @cil_rethrow;
+
+#keyset[impl, index]
+cil_instruction(
+  unique int id: @cil_instruction,
+  int opcode: int ref,
+  int index: int ref,
+  int impl: @cil_method_implementation ref);
+
+cil_jump(
+  unique int instruction: @cil_jump ref,
+  int target: @cil_instruction ref);
+
+cil_access(
+  unique int instruction: @cil_instruction ref,
+  int target: @cil_accessible ref);
+
+cil_value(
+  unique int instruction: @cil_literal ref,
+  string value: string ref);
+
+#keyset[instruction, index]
+cil_switch(
+  int instruction: @cil_switch ref,
+  int index: int ref,
+  int target: @cil_instruction ref);
+
+cil_instruction_location(
+  unique int id: @cil_instruction ref,
+  int loc: @location ref);
+
+cil_type_location(
+  int id: @cil_type ref,
+  int loc: @location ref);
+
+cil_method_location(
+  int id: @cil_method ref,
+  int loc: @location ref);
+
+@cil_namespace = @namespace;
+
+@cil_type_container = @cil_type | @cil_namespace | @cil_method;
+
+case @cil_type.kind of
+  0 = @cil_valueorreftype
+| 1 = @cil_typeparameter
+| 2 = @cil_array_type
+| 3 = @cil_pointer_type
+| 4 = @cil_function_pointer_type
+;
+
+cil_type(
+  unique int id: @cil_type,
+  string name: string ref,
+  int kind: int ref,
+  int parent: @cil_type_container ref,
+  int sourceDecl: @cil_type ref);
+
+cil_pointer_type(
+  unique int id: @cil_pointer_type ref,
+  int pointee: @cil_type ref);
+
+cil_array_type(
+  unique int id: @cil_array_type ref,
+  int element_type: @cil_type ref,
+  int rank: int ref);
+
+cil_function_pointer_return_type(
+  unique int id: @cil_function_pointer_type ref,
+  int return_type: @cil_type ref);
+
+cil_method(
+  unique int id: @cil_method,
+  string name: string ref,
+  int parent: @cil_type ref,
+  int return_type: @cil_type ref);
+
+cil_method_source_declaration(
+  unique int method: @cil_method ref,
+  int source: @cil_method ref);
+
+cil_method_implementation(
+  unique int id: @cil_method_implementation,
+  int method: @cil_method ref,
+  int location: @assembly ref);
+
+cil_implements(
+  int id: @cil_method ref,
+  int decl: @cil_method ref);
+
+#keyset[parent, name]
+cil_field(
+  unique int id: @cil_field,
+  int parent: @cil_type ref,
+  string name: string ref,
+  int field_type: @cil_type ref);
+
+@cil_element = @cil_instruction | @cil_declaration | @cil_handler | @cil_attribute | @cil_namespace;
+@cil_named_element = @cil_declaration | @cil_namespace;
+@cil_declaration = @cil_variable | @cil_method | @cil_type | @cil_member;
+@cil_accessible = @cil_declaration;
+@cil_variable = @cil_field | @cil_stack_variable;
+@cil_stack_variable = @cil_local_variable | @cil_parameter;
+@cil_member = @cil_method | @cil_type | @cil_field | @cil_property | @cil_event;
+@cil_custom_modifier_receiver = @cil_method | @cil_property | @cil_parameter | @cil_field | @cil_function_pointer_type;
+@cil_parameterizable = @cil_method | @cil_function_pointer_type;
+@cil_has_type_annotation = @cil_stack_variable | @cil_property | @cil_method | @cil_function_pointer_type;
+
+#keyset[parameterizable, index]
+cil_parameter(
+  unique int id: @cil_parameter,
+  int parameterizable: @cil_parameterizable ref,
+  int index: int ref,
+  int param_type: @cil_type ref);
+
+cil_parameter_in(unique int id: @cil_parameter ref);
+cil_parameter_out(unique int id: @cil_parameter ref);
+
+cil_setter(unique int prop: @cil_property ref,
+  int method: @cil_method ref);
+
+#keyset[id, modifier]
+cil_custom_modifiers(
+  int id: @cil_custom_modifier_receiver ref,
+  int modifier: @cil_type ref,
+  int kind: int ref); // modreq: 1, modopt: 0
+
+cil_type_annotation(
+  int id: @cil_has_type_annotation ref,
+  int annotation: int ref);
+
+cil_getter(unique int prop: @cil_property ref,
+  int method: @cil_method ref);
+
+cil_adder(unique int event: @cil_event ref,
+  int method: @cil_method ref);
+
+cil_remover(unique int event: @cil_event ref, int method: @cil_method ref);
+
+cil_raiser(unique int event: @cil_event ref, int method: @cil_method ref);
+
+cil_property(
+  unique int id: @cil_property,
+  int parent: @cil_type ref,
+  string name: string ref,
+  int property_type: @cil_type ref);
+
+#keyset[parent, name]
+cil_event(unique int id: @cil_event,
+  int parent: @cil_type ref,
+  string name: string ref,
+  int event_type: @cil_type ref);
+
+#keyset[impl, index]
+cil_local_variable(
+  unique int id: @cil_local_variable,
+  int impl: @cil_method_implementation ref,
+  int index: int ref,
+  int var_type: @cil_type ref);
+
+cil_function_pointer_calling_conventions(
+  int id: @cil_function_pointer_type ref,
+  int kind: int ref);
+
+// CIL handlers (exception handlers etc).
+
+case @cil_handler.kind of
+  0 = @cil_catch_handler
+| 1 = @cil_filter_handler
+| 2 = @cil_finally_handler
+| 4 = @cil_fault_handler
+;
+
+#keyset[impl, index]
+cil_handler(
+  unique int id: @cil_handler,
+  int impl: @cil_method_implementation ref,
+  int index: int ref,
+  int kind: int ref,
+  int try_start: @cil_instruction ref,
+  int try_end: @cil_instruction ref,
+  int handler_start: @cil_instruction ref);
+
+cil_handler_filter(
+  unique int id: @cil_handler ref,
+  int filter_start: @cil_instruction ref);
+
+cil_handler_type(
+  unique int id: @cil_handler ref,
+  int catch_type: @cil_type ref);
+
+@cil_controlflow_node = @cil_entry_point | @cil_instruction;
+
+@cil_entry_point = @cil_method_implementation | @cil_handler;
+
+@cil_dataflow_node = @cil_instruction | @cil_variable | @cil_method;
+
+cil_method_stack_size(
+  unique int method: @cil_method_implementation ref,
+  int size: int ref);
+
+// CIL modifiers
+
+cil_public(int id: @cil_member ref);
+cil_private(int id: @cil_member ref);
+cil_protected(int id: @cil_member ref);
+cil_internal(int id: @cil_member ref);
+cil_static(int id: @cil_member ref);
+cil_sealed(int id: @cil_member ref);
+cil_virtual(int id: @cil_method ref);
+cil_abstract(int id: @cil_member ref);
+cil_class(int id: @cil_type ref);
+cil_interface(int id: @cil_type ref);
+cil_security(int id: @cil_member ref);
+cil_requiresecobject(int id: @cil_method ref);
+cil_specialname(int id: @cil_method ref);
+cil_newslot(int id: @cil_method ref);
+
+cil_base_class(unique int id: @cil_type ref, int base: @cil_type ref);
+cil_base_interface(int id: @cil_type ref, int base: @cil_type ref);
+cil_enum_underlying_type(unique int id: @cil_type ref, int underlying: @cil_type ref);
+
+#keyset[unbound, index]
+cil_type_parameter(
+  int unbound: @cil_member ref,
+  int index: int ref,
+  int param: @cil_typeparameter ref);
+
+#keyset[bound, index]
+cil_type_argument(
+  int bound: @cil_member ref,
+  int index: int ref,
+  int t: @cil_type ref);
+
+// CIL type parameter constraints
+
+cil_typeparam_covariant(int tp: @cil_typeparameter ref);
+cil_typeparam_contravariant(int tp: @cil_typeparameter ref);
+cil_typeparam_class(int tp: @cil_typeparameter ref);
+cil_typeparam_struct(int tp: @cil_typeparameter ref);
+cil_typeparam_new(int tp: @cil_typeparameter ref);
+cil_typeparam_constraint(int tp: @cil_typeparameter ref, int supertype: @cil_type ref);
+
+// CIL attributes
+
+cil_attribute(
+  unique int attributeid: @cil_attribute,
+  int element: @cil_declaration ref,
+  int constructor: @cil_method ref);
+
+#keyset[attribute_id, param]
+cil_attribute_named_argument(
+  int attribute_id: @cil_attribute ref,
+  string param: string ref,
+  string value: string ref);
+
+#keyset[attribute_id, index]
+cil_attribute_positional_argument(
+  int attribute_id: @cil_attribute ref,
+  int index: int ref,
+  string value: string ref);
+
+
+// Common .Net data model covering both C# and CIL
+
+// Common elements
+@dotnet_element = @element | @cil_element;
+@dotnet_named_element = @named_element | @cil_named_element;
+@dotnet_callable = @callable | @cil_method;
+@dotnet_variable = @variable | @cil_variable;
+@dotnet_field = @field | @cil_field;
+@dotnet_parameter = @parameter | @cil_parameter;
+@dotnet_declaration = @declaration | @cil_declaration;
+@dotnet_member = @member | @cil_member;
+@dotnet_event = @event | @cil_event;
+@dotnet_property = @property | @cil_property | @indexer;
+@dotnet_parameterizable = @parameterizable | @cil_parameterizable;
+
+// Common types
+@dotnet_type = @type | @cil_type;
+@dotnet_call = @call | @cil_call_any;
+@dotnet_throw = @throw_element | @cil_throw_any;
+@dotnet_valueorreftype = @cil_valueorreftype | @value_or_ref_type | @cil_array_type | @void_type;
+@dotnet_typeparameter = @type_parameter | @cil_typeparameter;
+@dotnet_array_type = @array_type | @cil_array_type;
+@dotnet_pointer_type = @pointer_type | @cil_pointer_type;
+@dotnet_type_parameter = @type_parameter | @cil_typeparameter;
+@dotnet_generic = @dotnet_valueorreftype | @dotnet_callable;
+
+// Attributes
+@dotnet_attribute = @attribute | @cil_attribute;
+
+// Expressions
+@dotnet_expr = @expr | @cil_expr;
+
+// Literals
+@dotnet_literal = @literal_expr | @cil_literal;
+@dotnet_string_literal = @string_literal_expr | @cil_ldstr;
+@dotnet_int_literal = @integer_literal_expr | @cil_ldc_i;
+@dotnet_float_literal = @float_literal_expr | @cil_ldc_r;
+@dotnet_null_literal = @null_literal_expr | @cil_ldnull;
+
+@metadata_entity = @cil_method | @cil_type | @cil_field | @cil_property | @field | @property |
+    @callable | @value_or_ref_type | @void_type;
+
+#keyset[entity, location]
+metadata_handle(int entity : @metadata_entity ref, int location: @assembly ref, int handle: int ref)
diff --git a/csharp/ql/lib/upgrades/4ac7d8bcac6f664b1e83c858aa71f8dc761cc603/upgrade.properties b/csharp/ql/lib/upgrades/4ac7d8bcac6f664b1e83c858aa71f8dc761cc603/upgrade.properties
new file mode 100644
index 00000000000..676f413d36d
--- /dev/null
+++ b/csharp/ql/lib/upgrades/4ac7d8bcac6f664b1e83c858aa71f8dc761cc603/upgrade.properties
@@ -0,0 +1,2 @@
+description: Add list- and slice pattern expressions kinds.
+compatibility: backwards

From b4407eefb269c94348db49ca04b6852d5a1bfe3e Mon Sep 17 00:00:00 2001
From: Michael Nebel <michaelnebel@github.com>
Date: Thu, 8 Dec 2022 14:16:49 +0100
Subject: [PATCH 1389/1420] C#: Add downgrade script.

---
 .../old.dbscheme                              | 2067 +++++++++++++++++
 .../semmlecode.csharp.dbscheme                | 2064 ++++++++++++++++
 .../upgrade.properties                        |    2 +
 3 files changed, 4133 insertions(+)
 create mode 100644 csharp/downgrades/83aca6b3e4fa38dd2b97b9b51dfc199a2ba9c7f2/old.dbscheme
 create mode 100644 csharp/downgrades/83aca6b3e4fa38dd2b97b9b51dfc199a2ba9c7f2/semmlecode.csharp.dbscheme
 create mode 100644 csharp/downgrades/83aca6b3e4fa38dd2b97b9b51dfc199a2ba9c7f2/upgrade.properties

diff --git a/csharp/downgrades/83aca6b3e4fa38dd2b97b9b51dfc199a2ba9c7f2/old.dbscheme b/csharp/downgrades/83aca6b3e4fa38dd2b97b9b51dfc199a2ba9c7f2/old.dbscheme
new file mode 100644
index 00000000000..83aca6b3e4f
--- /dev/null
+++ b/csharp/downgrades/83aca6b3e4fa38dd2b97b9b51dfc199a2ba9c7f2/old.dbscheme
@@ -0,0 +1,2067 @@
+/* This is a dummy line to alter the dbscheme, so we can make a database upgrade
+ * without actually changing any of the dbscheme predicates. It contains a date
+ * to allow for such updates in the future as well.
+ *
+ * 2021-07-14
+ *
+ * DO NOT remove this comment carelessly, since it can revert the dbscheme back to a
+ * previously seen state (matching a previously seen SHA), which would make the upgrade
+ * mechanism not work properly.
+ */
+
+/**
+ * An invocation of the compiler. Note that more than one file may be
+ * compiled per invocation. For example, this command compiles three
+ * source files:
+ *
+ *   csc f1.cs f2.cs f3.cs
+ *
+ * The `id` simply identifies the invocation, while `cwd` is the working
+ * directory from which the compiler was invoked.
+ */
+compilations(
+    unique int id : @compilation,
+    string cwd : string ref
+);
+
+/**
+ * The arguments that were passed to the extractor for a compiler
+ * invocation. If `id` is for the compiler invocation
+ *
+ *   csc f1.cs f2.cs f3.cs
+ *
+ * then typically there will be rows for
+ *
+ * num | arg
+ * --- | ---
+ * 0   | --compiler
+ * 1   | *path to compiler*
+ * 2   | f1.cs
+ * 3   | f2.cs
+ * 4   | f3.cs
+ */
+#keyset[id, num]
+compilation_args(
+    int id : @compilation ref,
+    int num : int ref,
+    string arg : string ref
+);
+
+/**
+ * The source files that are compiled by a compiler invocation.
+ * If `id` is for the compiler invocation
+ *
+ *   csc f1.cs f2.cs f3.cs
+ *
+ * then there will be rows for
+ *
+ * num | arg
+ * --- | ---
+ * 0   | f1.cs
+ * 1   | f2.cs
+ * 2   | f3.cs
+ */
+#keyset[id, num]
+compilation_compiling_files(
+    int id : @compilation ref,
+    int num : int ref,
+    int file : @file ref
+);
+
+/**
+ * The references used by a compiler invocation.
+ * If `id` is for the compiler invocation
+ *
+ *   csc f1.cs f2.cs f3.cs /r:ref1.dll /r:ref2.dll /r:ref3.dll
+ *
+ * then there will be rows for
+ *
+ * num | arg
+ * --- | ---
+ * 0   | ref1.dll
+ * 1   | ref2.dll
+ * 2   | ref3.dll
+ */
+#keyset[id, num]
+compilation_referencing_files(
+    int id : @compilation ref,
+    int num : int ref,
+    int file : @file ref
+);
+
+/**
+ * The time taken by the extractor for a compiler invocation.
+ *
+ * For each file `num`, there will be rows for
+ *
+ * kind | seconds
+ * ---- | ---
+ * 1    | CPU seconds used by the extractor frontend
+ * 2    | Elapsed seconds during the extractor frontend
+ * 3    | CPU seconds used by the extractor backend
+ * 4    | Elapsed seconds during the extractor backend
+ */
+#keyset[id, num, kind]
+compilation_time(
+    int id : @compilation ref,
+    int num : int ref,
+    /* kind:
+       1 = frontend_cpu_seconds
+       2 = frontend_elapsed_seconds
+       3 = extractor_cpu_seconds
+       4 = extractor_elapsed_seconds
+    */
+    int kind : int ref,
+    float seconds : float ref
+);
+
+/**
+ * An error or warning generated by the extractor.
+ * The diagnostic message `diagnostic` was generated during compiler
+ * invocation `compilation`, and is the `file_number_diagnostic_number`th
+ * message generated while extracting the `file_number`th file of that
+ * invocation.
+ */
+#keyset[compilation, file_number, file_number_diagnostic_number]
+diagnostic_for(
+    unique int diagnostic : @diagnostic ref,
+    int compilation : @compilation ref,
+    int file_number : int ref,
+    int file_number_diagnostic_number : int ref
+);
+
+diagnostics(
+    unique int id: @diagnostic,
+    int severity: int ref,
+    string error_tag: string ref,
+    string error_message: string ref,
+    string full_error_message: string ref,
+    int location: @location_default ref
+);
+
+extractor_messages(
+    unique int id: @extractor_message,
+    int severity: int ref,
+    string origin : string ref,
+    string text : string ref,
+    string entity : string ref,
+    int location: @location_default ref,
+    string stack_trace : string ref
+);
+
+/**
+ * If extraction was successful, then `cpu_seconds` and
+ * `elapsed_seconds` are the CPU time and elapsed time (respectively)
+ * that extraction took for compiler invocation `id`.
+ */
+compilation_finished(
+    unique int id : @compilation ref,
+    float cpu_seconds : float ref,
+    float elapsed_seconds : float ref
+);
+
+compilation_assembly(
+  unique int id : @compilation ref,
+  int assembly: @assembly ref
+)
+
+// Populated by the CSV extractor
+externalData(
+   int id: @externalDataElement,
+   string path: string ref,
+   int column: int ref,
+   string value: string ref);
+
+sourceLocationPrefix(
+  string prefix: string ref);
+
+/*
+ * C# dbscheme
+ */
+
+/** ELEMENTS **/
+
+@element = @declaration | @stmt | @expr | @modifier | @attribute | @namespace_declaration
+         | @using_directive | @type_parameter_constraints | @externalDataElement
+         | @xmllocatable | @asp_element | @namespace | @preprocessor_directive;
+
+@declaration = @callable | @generic | @assignable | @namespace;
+
+@named_element = @namespace | @declaration;
+
+@declaration_with_accessors = @property | @indexer | @event;
+
+@assignable = @variable | @assignable_with_accessors | @event;
+
+@assignable_with_accessors = @property | @indexer;
+
+@attributable = @assembly | @field | @parameter | @operator | @method | @constructor
+              | @destructor | @callable_accessor | @value_or_ref_type | @declaration_with_accessors
+              | @local_function | @lambda_expr;
+
+/** LOCATIONS, ASEMMBLIES, MODULES, FILES and FOLDERS **/
+
+@location = @location_default | @assembly;
+
+locations_default(
+  unique int id: @location_default,
+  int file: @file ref,
+  int beginLine: int ref,
+  int beginColumn: int ref,
+  int endLine: int ref,
+  int endColumn: int ref);
+
+locations_mapped(
+  unique int id: @location_default ref,
+  int mapped_to: @location_default ref);
+
+@sourceline = @file | @callable | @xmllocatable;
+
+numlines(
+  int element_id: @sourceline ref,
+  int num_lines: int ref,
+  int num_code: int ref,
+  int num_comment: int ref);
+
+assemblies(
+  unique int id: @assembly,
+  int file: @file ref,
+  string fullname: string ref,
+  string name: string ref,
+  string version: string ref);
+
+files(
+  unique int id: @file,
+  string name: string ref);
+
+folders(
+  unique int id: @folder,
+  string name: string ref);
+
+@container = @folder | @file ;
+
+containerparent(
+  int parent: @container ref,
+  unique int child: @container ref);
+
+file_extraction_mode(
+  unique int file: @file ref,
+  int mode: int ref
+  /* 0 = normal, 1 = standalone extractor */
+  );
+
+/** NAMESPACES **/
+
+@type_container = @namespace | @type;
+
+namespaces(
+  unique int id: @namespace,
+  string name: string ref);
+
+namespace_declarations(
+  unique int id: @namespace_declaration,
+  int namespace_id: @namespace ref);
+
+namespace_declaration_location(
+  unique int id: @namespace_declaration ref,
+  int loc: @location ref);
+
+parent_namespace(
+  unique int child_id: @type_container ref,
+  int namespace_id: @namespace ref);
+
+@declaration_or_directive = @namespace_declaration | @type | @using_directive;
+
+parent_namespace_declaration(
+  int child_id: @declaration_or_directive ref, // cannot be unique because of partial classes
+  int namespace_id: @namespace_declaration ref);
+
+@using_directive = @using_namespace_directive | @using_static_directive;
+
+using_global(
+  unique int id: @using_directive ref
+);
+
+using_namespace_directives(
+  unique int id: @using_namespace_directive,
+  int namespace_id: @namespace ref);
+
+using_static_directives(
+  unique int id: @using_static_directive,
+  int type_id: @type_or_ref ref);
+
+using_directive_location(
+  unique int id: @using_directive ref,
+  int loc: @location ref);
+
+@preprocessor_directive = @pragma_warning | @pragma_checksum | @directive_define | @directive_undefine | @directive_warning
+  | @directive_error | @directive_nullable | @directive_line | @directive_region | @directive_endregion | @directive_if
+  | @directive_elif | @directive_else | @directive_endif;
+
+@conditional_directive = @directive_if | @directive_elif;
+@branch_directive = @directive_if | @directive_elif | @directive_else;
+
+directive_ifs(
+  unique int id: @directive_if,
+  int branchTaken: int ref,     /* 0: false, 1: true */
+  int conditionValue: int ref); /* 0: false, 1: true */
+
+directive_elifs(
+  unique int id: @directive_elif,
+  int branchTaken: int ref,     /* 0: false, 1: true */
+  int conditionValue: int ref,  /* 0: false, 1: true */
+  int parent: @directive_if ref,
+  int index: int ref);
+
+directive_elses(
+  unique int id: @directive_else,
+  int branchTaken: int ref,   /* 0: false, 1: true */
+  int parent: @directive_if ref,
+  int index: int ref);
+
+#keyset[id, start]
+directive_endifs(
+  unique int id: @directive_endif,
+  unique int start: @directive_if ref);
+
+directive_define_symbols(
+  unique int id: @define_symbol_expr ref,
+  string name: string ref);
+
+directive_regions(
+  unique int id: @directive_region,
+  string name: string ref);
+
+#keyset[id, start]
+directive_endregions(
+  unique int id: @directive_endregion,
+  unique int start: @directive_region ref);
+
+directive_lines(
+  unique int id: @directive_line,
+  int kind: int ref); /* 0: default, 1: hidden, 2: numeric, 3: span */
+
+directive_line_value(
+  unique int id: @directive_line ref,
+  int line: int ref);
+
+directive_line_file(
+  unique int id: @directive_line ref,
+  int file: @file ref);
+
+directive_line_offset(
+  unique int id: @directive_line ref,
+  int offset: int ref);
+
+directive_line_span(
+  unique int id: @directive_line ref,
+  int startLine: int ref,
+  int startColumn: int ref,
+  int endLine: int ref,
+  int endColumn: int ref);
+
+directive_nullables(
+  unique int id: @directive_nullable,
+  int setting: int ref, /* 0: disable, 1: enable, 2: restore */
+  int target: int ref); /* 0: none, 1: annotations, 2: warnings */
+
+directive_warnings(
+  unique int id: @directive_warning,
+  string message: string ref);
+
+directive_errors(
+  unique int id: @directive_error,
+  string message: string ref);
+
+directive_undefines(
+  unique int id: @directive_undefine,
+  string name: string ref);
+
+directive_defines(
+  unique int id: @directive_define,
+  string name: string ref);
+
+pragma_checksums(
+  unique int id: @pragma_checksum,
+  int file: @file ref,
+  string guid: string ref,
+  string bytes: string ref);
+
+pragma_warnings(
+  unique int id: @pragma_warning,
+  int kind: int ref /* 0 = disable, 1 = restore */);
+
+#keyset[id, index]
+pragma_warning_error_codes(
+  int id: @pragma_warning ref,
+  string errorCode: string ref,
+  int index: int ref);
+
+preprocessor_directive_location(
+  unique int id: @preprocessor_directive ref,
+  int loc: @location ref);
+
+preprocessor_directive_compilation(
+  unique int id: @preprocessor_directive ref,
+  int compilation: @compilation ref);
+
+preprocessor_directive_active(
+  unique int id: @preprocessor_directive ref,
+  int active: int ref);  /* 0: false, 1: true */
+
+/** TYPES **/
+
+types(
+  unique int id: @type,
+  int kind: int ref,
+  string name: string ref);
+
+case @type.kind of
+   1 = @bool_type
+|  2 = @char_type
+|  3 = @decimal_type
+|  4 = @sbyte_type
+|  5 = @short_type
+|  6 = @int_type
+|  7 = @long_type
+|  8 = @byte_type
+|  9 = @ushort_type
+| 10 = @uint_type
+| 11 = @ulong_type
+| 12 = @float_type
+| 13 = @double_type
+| 14 = @enum_type
+| 15 = @struct_type
+| 17 = @class_type
+| 19 = @interface_type
+| 20 = @delegate_type
+| 21 = @null_type
+| 22 = @type_parameter
+| 23 = @pointer_type
+| 24 = @nullable_type
+| 25 = @array_type
+| 26 = @void_type
+| 27 = @int_ptr_type
+| 28 = @uint_ptr_type
+| 29 = @dynamic_type
+| 30 = @arglist_type
+| 31 = @unknown_type
+| 32 = @tuple_type
+| 33 = @function_pointer_type
+  ;
+
+@simple_type = @bool_type | @char_type | @integral_type | @floating_point_type | @decimal_type;
+@integral_type = @signed_integral_type | @unsigned_integral_type;
+@signed_integral_type = @sbyte_type | @short_type | @int_type | @long_type;
+@unsigned_integral_type = @byte_type  | @ushort_type | @uint_type | @ulong_type;
+@floating_point_type = @float_type | @double_type;
+@value_type = @simple_type | @enum_type | @struct_type | @nullable_type | @int_ptr_type
+            | @uint_ptr_type | @tuple_type;
+@ref_type = @class_type | @interface_type | @array_type | @delegate_type | @null_type
+          | @dynamic_type;
+@value_or_ref_type = @value_type | @ref_type;
+
+typerefs(
+  unique int id: @typeref,
+  string name: string ref);
+
+typeref_type(
+  int id: @typeref ref,
+  unique int typeId: @type ref);
+
+@type_or_ref = @type | @typeref;
+
+array_element_type(
+  unique int array: @array_type ref,
+  int dimension: int ref,
+  int rank: int ref,
+  int element: @type_or_ref ref);
+
+nullable_underlying_type(
+  unique int nullable: @nullable_type ref,
+  int underlying: @type_or_ref ref);
+
+pointer_referent_type(
+  unique int pointer: @pointer_type ref,
+  int referent: @type_or_ref ref);
+
+enum_underlying_type(
+  unique int enum_id: @enum_type ref,
+  int underlying_type_id: @type_or_ref ref);
+
+delegate_return_type(
+  unique int delegate_id: @delegate_type ref,
+  int return_type_id: @type_or_ref ref);
+
+function_pointer_return_type(
+    unique int function_pointer_id: @function_pointer_type ref,
+    int return_type_id: @type_or_ref ref);
+
+extend(
+  int sub: @type ref,
+  int super: @type_or_ref ref);
+
+anonymous_types(
+  unique int id: @type ref);
+
+@interface_or_ref = @interface_type | @typeref;
+
+implement(
+  int sub: @type ref,
+  int super: @type_or_ref ref);
+
+type_location(
+  int id: @type ref,
+  int loc: @location ref);
+
+tuple_underlying_type(
+  unique int tuple: @tuple_type ref,
+  int struct: @type_or_ref ref);
+
+#keyset[tuple, index]
+tuple_element(
+  int tuple: @tuple_type ref,
+  int index: int ref,
+  unique int field: @field ref);
+
+attributes(
+  unique int id: @attribute,
+  int kind: int ref,
+  int type_id: @type_or_ref ref,
+  int target:  @attributable ref);
+
+case @attribute.kind of
+  0 = @attribute_default
+| 1 = @attribute_return
+| 2 = @attribute_assembly
+| 3 = @attribute_module
+;
+
+attribute_location(
+  int id: @attribute ref,
+  int loc: @location ref);
+
+@type_mention_parent = @element | @type_mention;
+
+type_mention(
+  unique int id: @type_mention,
+  int type_id: @type_or_ref ref,
+  int parent: @type_mention_parent ref);
+
+type_mention_location(
+  unique int id: @type_mention ref,
+  int loc: @location ref);
+
+@has_type_annotation = @assignable | @type_parameter | @callable | @expr | @delegate_type | @generic | @function_pointer_type;
+
+/**
+ * A direct annotation on an entity, for example `string? x;`.
+ *
+ * Annotations:
+ * 2 = reftype is not annotated "!"
+ * 3 = reftype is annotated "?"
+ * 4 = readonly ref type / in parameter
+ * 5 = ref type parameter, return or local variable
+ * 6 = out parameter
+ *
+ * Note that the annotation depends on the element it annotates.
+ * @assignable: The annotation is on the type of the assignable, for example the variable type.
+ * @type_parameter: The annotation is on the reftype constraint
+ * @callable: The annotation is on the return type
+ * @array_type: The annotation is on the element type
+ */
+type_annotation(int id: @has_type_annotation ref, int annotation: int ref);
+
+nullability(unique int nullability: @nullability, int kind: int ref);
+
+case @nullability.kind of
+  0 = @oblivious
+| 1 = @not_annotated
+| 2 = @annotated
+;
+
+#keyset[parent, index]
+nullability_parent(int nullability: @nullability ref, int index: int ref, int parent: @nullability ref)
+
+type_nullability(int id: @has_type_annotation ref, int nullability: @nullability ref);
+
+/**
+ * The nullable flow state of an expression, as determined by Roslyn.
+ *   0 = none (default, not populated)
+ *   1 = not null
+ *   2 = maybe null
+ */
+expr_flowstate(unique int id: @expr ref, int state: int ref);
+
+/** GENERICS **/
+
+@generic = @type | @method | @local_function;
+
+type_parameters(
+  unique int id: @type_parameter ref,
+  int index: int ref,
+  int generic_id: @generic ref,
+  int variance: int ref /* none = 0, out = 1, in = 2 */);
+
+#keyset[constructed_id, index]
+type_arguments(
+  int id: @type_or_ref ref,
+  int index: int ref,
+  int constructed_id: @generic_or_ref ref);
+
+@generic_or_ref = @generic | @typeref;
+
+constructed_generic(
+  unique int constructed: @generic ref,
+  int generic: @generic_or_ref ref);
+
+type_parameter_constraints(
+  unique int id: @type_parameter_constraints,
+  int param_id: @type_parameter ref);
+
+type_parameter_constraints_location(
+  int id: @type_parameter_constraints ref,
+  int loc: @location ref);
+
+general_type_parameter_constraints(
+  int id: @type_parameter_constraints ref,
+  int kind: int ref /* class = 1, struct = 2, new = 3 */);
+
+specific_type_parameter_constraints(
+  int id: @type_parameter_constraints ref,
+  int base_id: @type_or_ref ref);
+
+specific_type_parameter_nullability(
+  int id: @type_parameter_constraints ref,
+  int base_id: @type_or_ref ref,
+  int nullability: @nullability ref);
+
+/** FUNCTION POINTERS */
+
+function_pointer_calling_conventions(
+  int id: @function_pointer_type ref,
+  int kind: int ref);
+
+#keyset[id, index]
+has_unmanaged_calling_conventions(
+  int id: @function_pointer_type ref,
+  int index: int ref,
+  int conv_id: @type_or_ref ref);
+
+/** MODIFIERS */
+
+@modifiable = @modifiable_direct | @event_accessor;
+
+@modifiable_direct = @member | @accessor | @local_function | @anonymous_function_expr;
+
+modifiers(
+  unique int id: @modifier,
+  string name: string ref);
+
+has_modifiers(
+  int id: @modifiable_direct ref,
+  int mod_id: @modifier ref);
+
+compiler_generated(unique int id: @modifiable ref);
+
+/** MEMBERS **/
+
+@member = @method | @constructor | @destructor | @field | @property | @event | @operator | @indexer | @type;
+
+@named_exprorstmt = @goto_stmt | @labeled_stmt | @expr;
+
+@virtualizable = @method | @property | @indexer | @event;
+
+exprorstmt_name(
+  unique int parent_id: @named_exprorstmt ref,
+  string name: string ref);
+
+nested_types(
+  unique int id: @type ref,
+  int declaring_type_id: @type ref,
+  int unbound_id: @type ref);
+
+properties(
+  unique int id: @property,
+  string name: string ref,
+  int declaring_type_id: @type ref,
+  int type_id: @type_or_ref ref,
+  int unbound_id: @property ref);
+
+property_location(
+  int id: @property ref,
+  int loc: @location ref);
+
+indexers(
+  unique int id: @indexer,
+  string name: string ref,
+  int declaring_type_id: @type ref,
+  int type_id: @type_or_ref ref,
+  int unbound_id: @indexer ref);
+
+indexer_location(
+  int id: @indexer ref,
+  int loc: @location ref);
+
+accessors(
+  unique int id: @accessor,
+  int kind: int ref,
+  string name: string ref,
+  int declaring_member_id: @member ref,
+  int unbound_id: @accessor ref);
+
+case @accessor.kind of
+  1 = @getter
+| 2 = @setter
+  ;
+
+init_only_accessors(
+  unique int id: @accessor ref);
+
+accessor_location(
+  int id: @accessor ref,
+  int loc: @location ref);
+
+events(
+  unique int id: @event,
+  string name: string ref,
+  int declaring_type_id: @type ref,
+  int type_id: @type_or_ref ref,
+  int unbound_id: @event ref);
+
+event_location(
+  int id: @event ref,
+  int loc: @location ref);
+
+event_accessors(
+  unique int id: @event_accessor,
+  int kind: int ref,
+  string name: string ref,
+  int declaring_event_id: @event ref,
+  int unbound_id: @event_accessor ref);
+
+case @event_accessor.kind of
+  1 = @add_event_accessor
+| 2 = @remove_event_accessor
+  ;
+
+event_accessor_location(
+  int id: @event_accessor ref,
+  int loc: @location ref);
+
+operators(
+  unique int id: @operator,
+  string name: string ref,
+  string symbol: string ref,
+  int declaring_type_id: @type ref,
+  int type_id: @type_or_ref ref,
+  int unbound_id: @operator ref);
+
+operator_location(
+  int id: @operator ref,
+  int loc: @location ref);
+
+constant_value(
+  int id: @variable ref,
+  string value: string ref);
+
+/** CALLABLES **/
+
+@callable = @method | @constructor | @destructor | @operator | @callable_accessor | @anonymous_function_expr | @local_function;
+
+@callable_accessor = @accessor | @event_accessor;
+
+methods(
+  unique int id: @method,
+  string name: string ref,
+  int declaring_type_id: @type ref,
+  int type_id: @type_or_ref ref,
+  int unbound_id: @method ref);
+
+method_location(
+  int id: @method ref,
+  int loc: @location ref);
+
+constructors(
+  unique int id: @constructor,
+  string name: string ref,
+  int declaring_type_id: @type ref,
+  int unbound_id: @constructor ref);
+
+constructor_location(
+  int id: @constructor ref,
+  int loc: @location ref);
+
+destructors(
+  unique int id: @destructor,
+  string name: string ref,
+  int declaring_type_id: @type ref,
+  int unbound_id: @destructor ref);
+
+destructor_location(
+  int id: @destructor ref,
+  int loc: @location ref);
+
+overrides(
+  int id: @callable ref,
+  int base_id: @callable ref);
+
+explicitly_implements(
+  int id: @member ref,
+  int interface_id: @interface_or_ref ref);
+
+local_functions(
+    unique int id: @local_function,
+    string name: string ref,
+    int return_type: @type ref,
+    int unbound_id: @local_function ref);
+
+local_function_stmts(
+    unique int fn: @local_function_stmt ref,
+    int stmt: @local_function ref);
+
+/** VARIABLES **/
+
+@variable = @local_scope_variable | @field;
+
+@local_scope_variable = @local_variable | @parameter;
+
+fields(
+  unique int id: @field,
+  int kind: int ref,
+  string name: string ref,
+  int declaring_type_id: @type ref,
+  int type_id: @type_or_ref ref,
+  int unbound_id: @field ref);
+
+case @field.kind of
+  1 = @addressable_field
+| 2 = @constant
+  ;
+
+field_location(
+  int id: @field ref,
+  int loc: @location ref);
+
+localvars(
+  unique int id: @local_variable,
+  int kind: int ref,
+  string name: string ref,
+  int implicitly_typed: int ref /* 0 = no, 1 = yes */,
+  int type_id: @type_or_ref ref,
+  int parent_id: @local_var_decl_expr ref);
+
+case @local_variable.kind of
+  1 = @addressable_local_variable
+| 2 = @local_constant
+| 3 = @local_variable_ref
+  ;
+
+localvar_location(
+  unique int id: @local_variable ref,
+  int loc: @location ref);
+
+@parameterizable = @callable | @delegate_type | @indexer | @function_pointer_type;
+
+#keyset[name, parent_id]
+#keyset[index, parent_id]
+params(
+  unique int id: @parameter,
+  string name: string ref,
+  int type_id: @type_or_ref ref,
+  int index: int ref,
+  int mode: int ref, /* value = 0, ref = 1, out = 2, array = 3, this = 4 */
+  int parent_id: @parameterizable ref,
+  int unbound_id: @parameter ref);
+
+param_location(
+  int id: @parameter ref,
+  int loc: @location ref);
+
+/** STATEMENTS **/
+
+@exprorstmt_parent = @control_flow_element | @top_level_exprorstmt_parent;
+
+statements(
+  unique int id: @stmt,
+  int kind: int ref);
+
+#keyset[index, parent]
+stmt_parent(
+  unique int stmt: @stmt ref,
+  int index: int ref,
+  int parent: @control_flow_element ref);
+
+@top_level_stmt_parent = @callable;
+
+// [index, parent] is not a keyset because the same parent may be compiled multiple times
+stmt_parent_top_level(
+  unique int stmt: @stmt ref,
+  int index: int ref,
+  int parent: @top_level_stmt_parent ref);
+
+case @stmt.kind of
+   1 = @block_stmt
+|  2 = @expr_stmt
+|  3 = @if_stmt
+|  4 = @switch_stmt
+|  5 = @while_stmt
+|  6 = @do_stmt
+|  7 = @for_stmt
+|  8 = @foreach_stmt
+|  9 = @break_stmt
+| 10 = @continue_stmt
+| 11 = @goto_stmt
+| 12 = @goto_case_stmt
+| 13 = @goto_default_stmt
+| 14 = @throw_stmt
+| 15 = @return_stmt
+| 16 = @yield_stmt
+| 17 = @try_stmt
+| 18 = @checked_stmt
+| 19 = @unchecked_stmt
+| 20 = @lock_stmt
+| 21 = @using_block_stmt
+| 22 = @var_decl_stmt
+| 23 = @const_decl_stmt
+| 24 = @empty_stmt
+| 25 = @unsafe_stmt
+| 26 = @fixed_stmt
+| 27 = @label_stmt
+| 28 = @catch
+| 29 = @case_stmt
+| 30 = @local_function_stmt
+| 31 = @using_decl_stmt
+  ;
+
+@using_stmt = @using_block_stmt | @using_decl_stmt;
+
+@labeled_stmt = @label_stmt | @case;
+
+@decl_stmt = @var_decl_stmt | @const_decl_stmt | @using_decl_stmt;
+
+@cond_stmt = @if_stmt | @switch_stmt;
+
+@loop_stmt = @while_stmt | @do_stmt | @for_stmt | @foreach_stmt;
+
+@jump_stmt = @break_stmt | @goto_any_stmt | @continue_stmt | @throw_stmt | @return_stmt
+           | @yield_stmt;
+
+@goto_any_stmt = @goto_default_stmt | @goto_case_stmt | @goto_stmt;
+
+
+stmt_location(
+  unique int id: @stmt ref,
+  int loc: @location ref);
+
+catch_type(
+  unique int catch_id: @catch ref,
+  int type_id: @type_or_ref ref,
+  int kind: int ref /* explicit = 1, implicit = 2 */);
+
+foreach_stmt_info(
+  unique int id: @foreach_stmt ref,
+  int kind: int ref /* non-async = 1, async = 2 */);
+
+@foreach_symbol =  @method | @property | @type_or_ref;
+
+#keyset[id, kind]
+foreach_stmt_desugar(
+  int id: @foreach_stmt ref,
+  int symbol: @foreach_symbol ref,
+  int kind: int ref /* GetEnumeratorMethod = 1, CurrentProperty = 2, MoveNextMethod = 3, DisposeMethod = 4, ElementType = 5 */);
+
+/** EXPRESSIONS **/
+
+expressions(
+  unique int id: @expr,
+  int kind: int ref,
+  int type_id: @type_or_ref ref);
+
+#keyset[index, parent]
+expr_parent(
+  unique int expr: @expr ref,
+  int index: int ref,
+  int parent: @control_flow_element ref);
+
+@top_level_expr_parent = @attribute | @field | @property | @indexer | @parameter | @directive_if | @directive_elif;
+
+@top_level_exprorstmt_parent = @top_level_expr_parent | @top_level_stmt_parent;
+
+// [index, parent] is not a keyset because the same parent may be compiled multiple times
+expr_parent_top_level(
+  unique int expr: @expr ref,
+  int index: int ref,
+  int parent: @top_level_exprorstmt_parent ref);
+
+case @expr.kind of
+/* literal */
+   1 = @bool_literal_expr
+|  2 = @char_literal_expr
+|  3 = @decimal_literal_expr
+|  4 = @int_literal_expr
+|  5 = @long_literal_expr
+|  6 = @uint_literal_expr
+|  7 = @ulong_literal_expr
+|  8 = @float_literal_expr
+|  9 = @double_literal_expr
+| 10 = @string_literal_expr
+| 11 = @null_literal_expr
+/* primary & unary */
+| 12 = @this_access_expr
+| 13 = @base_access_expr
+| 14 = @local_variable_access_expr
+| 15 = @parameter_access_expr
+| 16 = @field_access_expr
+| 17 = @property_access_expr
+| 18 = @method_access_expr
+| 19 = @event_access_expr
+| 20 = @indexer_access_expr
+| 21 = @array_access_expr
+| 22 = @type_access_expr
+| 23 = @typeof_expr
+| 24 = @method_invocation_expr
+| 25 = @delegate_invocation_expr
+| 26 = @operator_invocation_expr
+| 27 = @cast_expr
+| 28 = @object_creation_expr
+| 29 = @explicit_delegate_creation_expr
+| 30 = @implicit_delegate_creation_expr
+| 31 = @array_creation_expr
+| 32 = @default_expr
+| 33 = @plus_expr
+| 34 = @minus_expr
+| 35 = @bit_not_expr
+| 36 = @log_not_expr
+| 37 = @post_incr_expr
+| 38 = @post_decr_expr
+| 39 = @pre_incr_expr
+| 40 = @pre_decr_expr
+/* multiplicative */
+| 41 = @mul_expr
+| 42 = @div_expr
+| 43 = @rem_expr
+/* additive */
+| 44 = @add_expr
+| 45 = @sub_expr
+/* shift */
+| 46 = @lshift_expr
+| 47 = @rshift_expr
+/* relational */
+| 48 = @lt_expr
+| 49 = @gt_expr
+| 50 = @le_expr
+| 51 = @ge_expr
+/* equality */
+| 52 = @eq_expr
+| 53 = @ne_expr
+/* logical */
+| 54 = @bit_and_expr
+| 55 = @bit_xor_expr
+| 56 = @bit_or_expr
+| 57 = @log_and_expr
+| 58 = @log_or_expr
+/* type testing */
+| 59 = @is_expr
+| 60 = @as_expr
+/* null coalescing */
+| 61 = @null_coalescing_expr
+/* conditional */
+| 62 = @conditional_expr
+/* assignment */
+| 63 = @simple_assign_expr
+| 64 = @assign_add_expr
+| 65 = @assign_sub_expr
+| 66 = @assign_mul_expr
+| 67 = @assign_div_expr
+| 68 = @assign_rem_expr
+| 69 = @assign_and_expr
+| 70 = @assign_xor_expr
+| 71 = @assign_or_expr
+| 72 = @assign_lshift_expr
+| 73 = @assign_rshift_expr
+/* more */
+| 74 = @object_init_expr
+| 75 = @collection_init_expr
+| 76 = @array_init_expr
+| 77 = @checked_expr
+| 78 = @unchecked_expr
+| 79 = @constructor_init_expr
+| 80 = @add_event_expr
+| 81 = @remove_event_expr
+| 82 = @par_expr
+| 83 = @local_var_decl_expr
+| 84 = @lambda_expr
+| 85 = @anonymous_method_expr
+| 86 = @namespace_expr
+/* dynamic */
+| 92 = @dynamic_element_access_expr
+| 93 = @dynamic_member_access_expr
+/* unsafe */
+| 100 = @pointer_indirection_expr
+| 101 = @address_of_expr
+| 102 = @sizeof_expr
+/* async */
+| 103 = @await_expr
+/* C# 6.0 */
+| 104 = @nameof_expr
+| 105 = @interpolated_string_expr
+| 106 = @unknown_expr
+/* C# 7.0 */
+| 107 = @throw_expr
+| 108 = @tuple_expr
+| 109 = @local_function_invocation_expr
+| 110 = @ref_expr
+| 111 = @discard_expr
+/* C# 8.0 */
+| 112 = @range_expr
+| 113 = @index_expr
+| 114 = @switch_expr
+| 115 = @recursive_pattern_expr
+| 116 = @property_pattern_expr
+| 117 = @positional_pattern_expr
+| 118 = @switch_case_expr
+| 119 = @assign_coalesce_expr
+| 120 = @suppress_nullable_warning_expr
+| 121 = @namespace_access_expr
+/* C# 9.0 */
+| 122 = @lt_pattern_expr
+| 123 = @gt_pattern_expr
+| 124 = @le_pattern_expr
+| 125 = @ge_pattern_expr
+| 126 = @not_pattern_expr
+| 127 = @and_pattern_expr
+| 128 = @or_pattern_expr
+| 129 = @function_pointer_invocation_expr
+| 130 = @with_expr
+/* C# 11.0 */
+| 131 = @list_pattern_expr
+| 132 = @slice_pattern_expr
+/* Preprocessor */
+| 999 = @define_symbol_expr
+;
+
+@switch = @switch_stmt | @switch_expr;
+@case = @case_stmt | @switch_case_expr;
+@pattern_match = @case | @is_expr;
+@unary_pattern_expr = @not_pattern_expr;
+@relational_pattern_expr = @gt_pattern_expr | @lt_pattern_expr | @ge_pattern_expr | @le_pattern_expr;
+@binary_pattern_expr = @and_pattern_expr | @or_pattern_expr;
+
+@integer_literal_expr = @int_literal_expr | @long_literal_expr | @uint_literal_expr | @ulong_literal_expr;
+@real_literal_expr = @float_literal_expr | @double_literal_expr | @decimal_literal_expr;
+@literal_expr = @bool_literal_expr | @char_literal_expr | @integer_literal_expr | @real_literal_expr
+              | @string_literal_expr | @null_literal_expr;
+
+@assign_expr = @simple_assign_expr | @assign_op_expr | @local_var_decl_expr;
+@assign_op_expr =  @assign_arith_expr | @assign_bitwise_expr | @assign_event_expr | @assign_coalesce_expr;
+@assign_event_expr = @add_event_expr | @remove_event_expr;
+
+@assign_arith_expr = @assign_add_expr | @assign_sub_expr | @assign_mul_expr | @assign_div_expr
+                   | @assign_rem_expr
+@assign_bitwise_expr = @assign_and_expr | @assign_or_expr | @assign_xor_expr
+                   | @assign_lshift_expr | @assign_rshift_expr;
+
+@member_access_expr = @field_access_expr | @property_access_expr | @indexer_access_expr | @event_access_expr
+                    | @method_access_expr | @type_access_expr | @dynamic_member_access_expr;
+@access_expr = @member_access_expr | @this_access_expr | @base_access_expr | @assignable_access_expr | @namespace_access_expr;
+@element_access_expr = @indexer_access_expr | @array_access_expr | @dynamic_element_access_expr;
+
+@local_variable_access = @local_variable_access_expr | @local_var_decl_expr;
+@local_scope_variable_access_expr = @parameter_access_expr | @local_variable_access;
+@variable_access_expr = @local_scope_variable_access_expr | @field_access_expr;
+
+@assignable_access_expr = @variable_access_expr | @property_access_expr | @element_access_expr
+                        | @event_access_expr | @dynamic_member_access_expr;
+
+@objectorcollection_init_expr = @object_init_expr | @collection_init_expr;
+
+@delegate_creation_expr = @explicit_delegate_creation_expr | @implicit_delegate_creation_expr;
+
+@bin_arith_op_expr = @mul_expr | @div_expr | @rem_expr | @add_expr | @sub_expr;
+@incr_op_expr =  @pre_incr_expr | @post_incr_expr;
+@decr_op_expr =  @pre_decr_expr | @post_decr_expr;
+@mut_op_expr = @incr_op_expr | @decr_op_expr;
+@un_arith_op_expr = @plus_expr | @minus_expr | @mut_op_expr;
+@arith_op_expr = @bin_arith_op_expr | @un_arith_op_expr;
+
+@ternary_log_op_expr = @conditional_expr;
+@bin_log_op_expr = @log_and_expr | @log_or_expr | @null_coalescing_expr;
+@un_log_op_expr = @log_not_expr;
+@log_expr = @un_log_op_expr | @bin_log_op_expr | @ternary_log_op_expr;
+
+@bin_bit_op_expr =  @bit_and_expr | @bit_or_expr | @bit_xor_expr | @lshift_expr
+                 | @rshift_expr;
+@un_bit_op_expr = @bit_not_expr;
+@bit_expr = @un_bit_op_expr | @bin_bit_op_expr;
+
+@equality_op_expr =  @eq_expr | @ne_expr;
+@rel_op_expr = @gt_expr | @lt_expr| @ge_expr | @le_expr;
+@comp_expr = @equality_op_expr | @rel_op_expr;
+
+@op_expr = @assign_expr | @un_op | @bin_op | @ternary_op;
+
+@ternary_op = @ternary_log_op_expr;
+@bin_op = @bin_arith_op_expr | @bin_log_op_expr | @bin_bit_op_expr | @comp_expr;
+@un_op = @un_arith_op_expr | @un_log_op_expr | @un_bit_op_expr | @sizeof_expr
+       | @pointer_indirection_expr | @address_of_expr;
+
+@anonymous_function_expr = @lambda_expr | @anonymous_method_expr;
+
+@call = @method_invocation_expr | @constructor_init_expr | @operator_invocation_expr
+      | @delegate_invocation_expr | @object_creation_expr | @call_access_expr
+      | @local_function_invocation_expr | @function_pointer_invocation_expr;
+
+@call_access_expr = @property_access_expr | @event_access_expr | @indexer_access_expr;
+
+@late_bindable_expr = @dynamic_element_access_expr | @dynamic_member_access_expr
+                    | @object_creation_expr | @method_invocation_expr | @operator_invocation_expr;
+
+@throw_element = @throw_expr | @throw_stmt;
+
+@implicitly_typeable_object_creation_expr = @object_creation_expr | @explicit_delegate_creation_expr;
+
+implicitly_typed_array_creation(
+  unique int id: @array_creation_expr ref);
+
+explicitly_sized_array_creation(
+  unique int id: @array_creation_expr ref);
+
+stackalloc_array_creation(
+  unique int id: @array_creation_expr ref);
+
+implicitly_typed_object_creation(
+  unique int id: @implicitly_typeable_object_creation_expr ref);
+
+mutator_invocation_mode(
+  unique int id: @operator_invocation_expr ref,
+  int mode: int ref /* prefix = 1, postfix = 2*/);
+
+expr_compiler_generated(
+  unique int id: @expr ref);
+
+expr_value(
+  unique int id: @expr ref,
+  string value: string ref);
+
+expr_call(
+  unique int caller_id: @expr ref,
+  int target_id: @callable ref);
+
+expr_access(
+  unique int accesser_id: @access_expr ref,
+  int target_id: @accessible ref);
+
+@accessible = @method | @assignable | @local_function | @namespace;
+
+expr_location(
+  unique int id: @expr ref,
+  int loc: @location ref);
+
+dynamic_member_name(
+  unique int id: @late_bindable_expr ref,
+  string name: string ref);
+
+@qualifiable_expr = @member_access_expr
+                  | @method_invocation_expr
+                  | @element_access_expr;
+
+conditional_access(
+  unique int id: @qualifiable_expr ref);
+
+expr_argument(
+  unique int id: @expr ref,
+  int mode: int ref);
+  /* mode is the same as params: value = 0, ref = 1, out = 2 */
+
+expr_argument_name(
+  unique int id: @expr ref,
+  string name: string ref);
+
+lambda_expr_return_type(
+  unique int id: @lambda_expr ref,
+  int type_id: @type_or_ref ref);
+  
+/** CONTROL/DATA FLOW **/
+
+@control_flow_element = @stmt | @expr;
+
+/* XML Files */
+
+xmlEncoding  (
+  unique int id: @file ref,
+  string encoding: string ref);
+
+xmlDTDs(
+  unique int id: @xmldtd,
+  string root: string ref,
+  string publicId: string ref,
+  string systemId: string ref,
+  int fileid: @file ref);
+
+xmlElements(
+  unique int id: @xmlelement,
+  string name: string ref,
+  int parentid: @xmlparent ref,
+  int idx: int ref,
+  int fileid: @file ref);
+
+xmlAttrs(
+  unique int id: @xmlattribute,
+  int elementid: @xmlelement ref,
+  string name: string ref,
+  string value: string ref,
+  int idx: int ref,
+  int fileid: @file ref);
+
+xmlNs(
+  int id: @xmlnamespace,
+  string prefixName: string ref,
+  string URI: string ref,
+  int fileid: @file ref);
+
+xmlHasNs(
+  int elementId: @xmlnamespaceable ref,
+  int nsId: @xmlnamespace ref,
+  int fileid: @file ref);
+
+xmlComments(
+  unique int id: @xmlcomment,
+  string text: string ref,
+  int parentid: @xmlparent ref,
+  int fileid: @file ref);
+
+xmlChars(
+  unique int id: @xmlcharacters,
+  string text: string ref,
+  int parentid: @xmlparent ref,
+  int idx: int ref,
+  int isCDATA: int ref,
+  int fileid: @file ref);
+
+@xmlparent = @file | @xmlelement;
+@xmlnamespaceable = @xmlelement | @xmlattribute;
+
+xmllocations(
+  int xmlElement: @xmllocatable ref,
+  int location: @location_default ref);
+
+@xmllocatable = @xmlcharacters | @xmlelement | @xmlcomment | @xmlattribute | @xmldtd | @file | @xmlnamespace;
+
+/* Comments */
+
+commentline(
+  unique int id: @commentline,
+  int kind: int ref,
+  string text: string ref,
+  string rawtext: string ref);
+
+case @commentline.kind of
+  0 = @singlelinecomment
+| 1 = @xmldoccomment
+| 2 = @multilinecomment;
+
+commentline_location(
+  unique int id: @commentline ref,
+  int loc: @location ref);
+
+commentblock(
+  unique int id : @commentblock);
+
+commentblock_location(
+  unique int id: @commentblock ref,
+  int loc: @location ref);
+
+commentblock_binding(
+  int id: @commentblock ref,
+  int entity: @element ref,
+  int bindtype: int ref);    /* 0: Parent, 1: Best, 2: Before, 3: After */
+
+commentblock_child(
+  int id: @commentblock ref,
+  int commentline: @commentline ref,
+  int index: int ref);
+
+/* ASP.NET */
+
+case @asp_element.kind of
+  0=@asp_close_tag
+| 1=@asp_code
+| 2=@asp_comment
+| 3=@asp_data_binding
+| 4=@asp_directive
+| 5=@asp_open_tag
+| 6=@asp_quoted_string
+| 7=@asp_text
+| 8=@asp_xml_directive;
+
+@asp_attribute = @asp_code | @asp_data_binding | @asp_quoted_string;
+
+asp_elements(
+  unique int id: @asp_element,
+  int kind: int ref,
+  int loc: @location ref);
+
+asp_comment_server(unique int comment: @asp_comment ref);
+asp_code_inline(unique int code: @asp_code ref);
+asp_directive_attribute(
+  int directive: @asp_directive ref,
+  int index: int ref,
+  string name: string ref,
+  int value: @asp_quoted_string ref);
+asp_directive_name(
+  unique int directive: @asp_directive ref,
+  string name: string ref);
+asp_element_body(
+  unique int element: @asp_element ref,
+  string body: string ref);
+asp_tag_attribute(
+  int tag: @asp_open_tag ref,
+  int index: int ref,
+  string name: string ref,
+  int attribute: @asp_attribute ref);
+asp_tag_name(
+  unique int tag: @asp_open_tag ref,
+  string name: string ref);
+asp_tag_isempty(int tag: @asp_open_tag ref);
+
+/* Common Intermediate Language - CIL */
+
+case @cil_instruction.opcode of
+  0 = @cil_nop
+| 1 = @cil_break
+| 2 = @cil_ldarg_0
+| 3 = @cil_ldarg_1
+| 4 = @cil_ldarg_2
+| 5 = @cil_ldarg_3
+| 6 = @cil_ldloc_0
+| 7 = @cil_ldloc_1
+| 8 = @cil_ldloc_2
+| 9 = @cil_ldloc_3
+| 10 = @cil_stloc_0
+| 11 = @cil_stloc_1
+| 12 = @cil_stloc_2
+| 13 = @cil_stloc_3
+| 14 = @cil_ldarg_s
+| 15 = @cil_ldarga_s
+| 16 = @cil_starg_s
+| 17 = @cil_ldloc_s
+| 18 = @cil_ldloca_s
+| 19 = @cil_stloc_s
+| 20 = @cil_ldnull
+| 21 = @cil_ldc_i4_m1
+| 22 = @cil_ldc_i4_0
+| 23 = @cil_ldc_i4_1
+| 24 = @cil_ldc_i4_2
+| 25 = @cil_ldc_i4_3
+| 26 = @cil_ldc_i4_4
+| 27 = @cil_ldc_i4_5
+| 28 = @cil_ldc_i4_6
+| 29 = @cil_ldc_i4_7
+| 30 = @cil_ldc_i4_8
+| 31 = @cil_ldc_i4_s
+| 32 = @cil_ldc_i4
+| 33 = @cil_ldc_i8
+| 34 = @cil_ldc_r4
+| 35 = @cil_ldc_r8
+| 37 = @cil_dup
+| 38 = @cil_pop
+| 39 = @cil_jmp
+| 40 = @cil_call
+| 41 = @cil_calli
+| 42 = @cil_ret
+| 43 = @cil_br_s
+| 44 = @cil_brfalse_s
+| 45 = @cil_brtrue_s
+| 46 = @cil_beq_s
+| 47 = @cil_bge_s
+| 48 = @cil_bgt_s
+| 49 = @cil_ble_s
+| 50 = @cil_blt_s
+| 51 = @cil_bne_un_s
+| 52 = @cil_bge_un_s
+| 53 = @cil_bgt_un_s
+| 54 = @cil_ble_un_s
+| 55 = @cil_blt_un_s
+| 56 = @cil_br
+| 57 = @cil_brfalse
+| 58 = @cil_brtrue
+| 59 = @cil_beq
+| 60 = @cil_bge
+| 61 = @cil_bgt
+| 62 = @cil_ble
+| 63 = @cil_blt
+| 64 = @cil_bne_un
+| 65 = @cil_bge_un
+| 66 = @cil_bgt_un
+| 67 = @cil_ble_un
+| 68 = @cil_blt_un
+| 69 = @cil_switch
+| 70 = @cil_ldind_i1
+| 71 = @cil_ldind_u1
+| 72 = @cil_ldind_i2
+| 73 = @cil_ldind_u2
+| 74 = @cil_ldind_i4
+| 75 = @cil_ldind_u4
+| 76 = @cil_ldind_i8
+| 77 = @cil_ldind_i
+| 78 = @cil_ldind_r4
+| 79 = @cil_ldind_r8
+| 80 = @cil_ldind_ref
+| 81 = @cil_stind_ref
+| 82 = @cil_stind_i1
+| 83 = @cil_stind_i2
+| 84 = @cil_stind_i4
+| 85 = @cil_stind_i8
+| 86 = @cil_stind_r4
+| 87 = @cil_stind_r8
+| 88 = @cil_add
+| 89 = @cil_sub
+| 90 = @cil_mul
+| 91 = @cil_div
+| 92 = @cil_div_un
+| 93 = @cil_rem
+| 94 = @cil_rem_un
+| 95 = @cil_and
+| 96 = @cil_or
+| 97 = @cil_xor
+| 98 = @cil_shl
+| 99 = @cil_shr
+| 100 = @cil_shr_un
+| 101 = @cil_neg
+| 102 = @cil_not
+| 103 = @cil_conv_i1
+| 104 = @cil_conv_i2
+| 105 = @cil_conv_i4
+| 106 = @cil_conv_i8
+| 107 = @cil_conv_r4
+| 108 = @cil_conv_r8
+| 109 = @cil_conv_u4
+| 110 = @cil_conv_u8
+| 111 = @cil_callvirt
+| 112 = @cil_cpobj
+| 113 = @cil_ldobj
+| 114 = @cil_ldstr
+| 115 = @cil_newobj
+| 116 = @cil_castclass
+| 117 = @cil_isinst
+| 118 = @cil_conv_r_un
+| 121 = @cil_unbox
+| 122 = @cil_throw
+| 123 = @cil_ldfld
+| 124 = @cil_ldflda
+| 125 = @cil_stfld
+| 126 = @cil_ldsfld
+| 127 = @cil_ldsflda
+| 128 = @cil_stsfld
+| 129 = @cil_stobj
+| 130 = @cil_conv_ovf_i1_un
+| 131 = @cil_conv_ovf_i2_un
+| 132 = @cil_conv_ovf_i4_un
+| 133 = @cil_conv_ovf_i8_un
+| 134 = @cil_conv_ovf_u1_un
+| 135 = @cil_conv_ovf_u2_un
+| 136 = @cil_conv_ovf_u4_un
+| 137 = @cil_conv_ovf_u8_un
+| 138 = @cil_conv_ovf_i_un
+| 139 = @cil_conv_ovf_u_un
+| 140 = @cil_box
+| 141 = @cil_newarr
+| 142 = @cil_ldlen
+| 143 = @cil_ldelema
+| 144 = @cil_ldelem_i1
+| 145 = @cil_ldelem_u1
+| 146 = @cil_ldelem_i2
+| 147 = @cil_ldelem_u2
+| 148 = @cil_ldelem_i4
+| 149 = @cil_ldelem_u4
+| 150 = @cil_ldelem_i8
+| 151 = @cil_ldelem_i
+| 152 = @cil_ldelem_r4
+| 153 = @cil_ldelem_r8
+| 154 = @cil_ldelem_ref
+| 155 = @cil_stelem_i
+| 156 = @cil_stelem_i1
+| 157 = @cil_stelem_i2
+| 158 = @cil_stelem_i4
+| 159 = @cil_stelem_i8
+| 160 = @cil_stelem_r4
+| 161 = @cil_stelem_r8
+| 162 = @cil_stelem_ref
+| 163 = @cil_ldelem
+| 164 = @cil_stelem
+| 165 = @cil_unbox_any
+| 179 = @cil_conv_ovf_i1
+| 180 = @cil_conv_ovf_u1
+| 181 = @cil_conv_ovf_i2
+| 182 = @cil_conv_ovf_u2
+| 183 = @cil_conv_ovf_i4
+| 184 = @cil_conv_ovf_u4
+| 185 = @cil_conv_ovf_i8
+| 186 = @cil_conv_ovf_u8
+| 194 = @cil_refanyval
+| 195 = @cil_ckinfinite
+| 198 = @cil_mkrefany
+| 208 = @cil_ldtoken
+| 209 = @cil_conv_u2
+| 210 = @cil_conv_u1
+| 211 = @cil_conv_i
+| 212 = @cil_conv_ovf_i
+| 213 = @cil_conv_ovf_u
+| 214 = @cil_add_ovf
+| 215 = @cil_add_ovf_un
+| 216 = @cil_mul_ovf
+| 217 = @cil_mul_ovf_un
+| 218 = @cil_sub_ovf
+| 219 = @cil_sub_ovf_un
+| 220 = @cil_endfinally
+| 221 = @cil_leave
+| 222 = @cil_leave_s
+| 223 = @cil_stind_i
+| 224 = @cil_conv_u
+| 65024 = @cil_arglist
+| 65025 = @cil_ceq
+| 65026 = @cil_cgt
+| 65027 = @cil_cgt_un
+| 65028 = @cil_clt
+| 65029 = @cil_clt_un
+| 65030 = @cil_ldftn
+| 65031 = @cil_ldvirtftn
+| 65033 = @cil_ldarg
+| 65034 = @cil_ldarga
+| 65035 = @cil_starg
+| 65036 = @cil_ldloc
+| 65037 = @cil_ldloca
+| 65038 = @cil_stloc
+| 65039 = @cil_localloc
+| 65041 = @cil_endfilter
+| 65042 = @cil_unaligned
+| 65043 = @cil_volatile
+| 65044 = @cil_tail
+| 65045 = @cil_initobj
+| 65046 = @cil_constrained
+| 65047 = @cil_cpblk
+| 65048 = @cil_initblk
+| 65050 = @cil_rethrow
+| 65052 = @cil_sizeof
+| 65053 = @cil_refanytype
+| 65054 = @cil_readonly
+;
+
+// CIL ignored instructions
+
+@cil_ignore = @cil_nop | @cil_break | @cil_volatile | @cil_unaligned;
+
+// CIL local/parameter/field access
+
+@cil_ldarg_any = @cil_ldarg_0 | @cil_ldarg_1 | @cil_ldarg_2 | @cil_ldarg_3 | @cil_ldarg_s | @cil_ldarga_s | @cil_ldarg | @cil_ldarga;
+@cil_starg_any = @cil_starg | @cil_starg_s;
+
+@cil_ldloc_any = @cil_ldloc_0 | @cil_ldloc_1 | @cil_ldloc_2 | @cil_ldloc_3 | @cil_ldloc_s | @cil_ldloca_s | @cil_ldloc | @cil_ldloca;
+@cil_stloc_any = @cil_stloc_0 | @cil_stloc_1 | @cil_stloc_2 | @cil_stloc_3 | @cil_stloc_s | @cil_stloc;
+
+@cil_ldfld_any = @cil_ldfld | @cil_ldsfld | @cil_ldsflda | @cil_ldflda;
+@cil_stfld_any = @cil_stfld | @cil_stsfld;
+
+@cil_local_access = @cil_stloc_any | @cil_ldloc_any;
+@cil_arg_access = @cil_starg_any | @cil_ldarg_any;
+@cil_read_access = @cil_ldloc_any | @cil_ldarg_any | @cil_ldfld_any;
+@cil_write_access = @cil_stloc_any | @cil_starg_any | @cil_stfld_any;
+
+@cil_stack_access = @cil_local_access | @cil_arg_access;
+@cil_field_access = @cil_ldfld_any | @cil_stfld_any;
+
+@cil_access = @cil_read_access | @cil_write_access;
+
+// CIL constant/literal instructions
+
+@cil_ldc_i = @cil_ldc_i4_any | @cil_ldc_i8;
+
+@cil_ldc_i4_any = @cil_ldc_i4_m1 | @cil_ldc_i4_0 | @cil_ldc_i4_1 | @cil_ldc_i4_2 | @cil_ldc_i4_3 |
+  @cil_ldc_i4_4 | @cil_ldc_i4_5 | @cil_ldc_i4_6 | @cil_ldc_i4_7 | @cil_ldc_i4_8 | @cil_ldc_i4_s | @cil_ldc_i4;
+
+@cil_ldc_r = @cil_ldc_r4 | @cil_ldc_r8;
+
+@cil_literal = @cil_ldnull | @cil_ldc_i | @cil_ldc_r | @cil_ldstr;
+
+// Control flow
+
+@cil_conditional_jump = @cil_binary_jump | @cil_unary_jump;
+@cil_binary_jump = @cil_beq_s | @cil_bge_s | @cil_bgt_s | @cil_ble_s | @cil_blt_s |
+    @cil_bne_un_s | @cil_bge_un_s | @cil_bgt_un_s | @cil_ble_un_s | @cil_blt_un_s |
+    @cil_beq | @cil_bge | @cil_bgt | @cil_ble | @cil_blt |
+    @cil_bne_un | @cil_bge_un | @cil_bgt_un | @cil_ble_un | @cil_blt_un;
+@cil_unary_jump = @cil_brfalse_s | @cil_brtrue_s | @cil_brfalse | @cil_brtrue | @cil_switch;
+@cil_unconditional_jump = @cil_br | @cil_br_s | @cil_leave_any;
+@cil_leave_any = @cil_leave | @cil_leave_s;
+@cil_jump = @cil_unconditional_jump | @cil_conditional_jump;
+
+// CIL call instructions
+
+@cil_call_any = @cil_jmp | @cil_call | @cil_calli | @cil_tail | @cil_callvirt | @cil_newobj;
+
+// CIL expression instructions
+
+@cil_expr = @cil_literal | @cil_binary_expr | @cil_unary_expr | @cil_call_any | @cil_read_access |
+  @cil_newarr | @cil_ldtoken | @cil_sizeof |
+  @cil_ldftn | @cil_ldvirtftn | @cil_localloc | @cil_mkrefany | @cil_refanytype | @cil_arglist | @cil_dup;
+
+@cil_unary_expr =
+  @cil_conversion_operation | @cil_unary_arithmetic_operation | @cil_unary_bitwise_operation|
+  @cil_ldlen | @cil_isinst | @cil_box | @cil_ldobj | @cil_castclass | @cil_unbox_any |
+  @cil_ldind | @cil_unbox;
+
+@cil_conversion_operation =
+  @cil_conv_i1 | @cil_conv_i2 | @cil_conv_i4 | @cil_conv_i8 |
+  @cil_conv_u1 | @cil_conv_u2 | @cil_conv_u4 | @cil_conv_u8 |
+  @cil_conv_ovf_i | @cil_conv_ovf_i_un | @cil_conv_ovf_i1 | @cil_conv_ovf_i1_un |
+  @cil_conv_ovf_i2 | @cil_conv_ovf_i2_un | @cil_conv_ovf_i4 | @cil_conv_ovf_i4_un |
+  @cil_conv_ovf_i8 | @cil_conv_ovf_i8_un | @cil_conv_ovf_u | @cil_conv_ovf_u_un |
+  @cil_conv_ovf_u1 | @cil_conv_ovf_u1_un | @cil_conv_ovf_u2 | @cil_conv_ovf_u2_un |
+  @cil_conv_ovf_u4 | @cil_conv_ovf_u4_un | @cil_conv_ovf_u8 | @cil_conv_ovf_u8_un |
+  @cil_conv_r4 | @cil_conv_r8 | @cil_conv_ovf_u2 | @cil_conv_ovf_u2_un |
+  @cil_conv_i | @cil_conv_u | @cil_conv_r_un;
+
+@cil_ldind = @cil_ldind_i | @cil_ldind_i1 | @cil_ldind_i2 | @cil_ldind_i4 | @cil_ldind_i8 |
+  @cil_ldind_r4 | @cil_ldind_r8 | @cil_ldind_ref | @cil_ldind_u1 | @cil_ldind_u2 | @cil_ldind_u4;
+
+@cil_stind = @cil_stind_i | @cil_stind_i1 | @cil_stind_i2 | @cil_stind_i4 | @cil_stind_i8 |
+  @cil_stind_r4 | @cil_stind_r8 | @cil_stind_ref;
+
+@cil_bitwise_operation = @cil_binary_bitwise_operation | @cil_unary_bitwise_operation;
+
+@cil_binary_bitwise_operation = @cil_and | @cil_or | @cil_xor | @cil_shr | @cil_shr | @cil_shr_un | @cil_shl;
+
+@cil_binary_arithmetic_operation = @cil_add | @cil_sub | @cil_mul | @cil_div | @cil_div_un |
+  @cil_rem | @cil_rem_un | @cil_add_ovf | @cil_add_ovf_un | @cil_mul_ovf | @cil_mul_ovf_un |
+  @cil_sub_ovf | @cil_sub_ovf_un;
+
+@cil_unary_bitwise_operation = @cil_not;
+
+@cil_binary_expr = @cil_binary_arithmetic_operation | @cil_binary_bitwise_operation | @cil_read_array | @cil_comparison_operation;
+
+@cil_unary_arithmetic_operation = @cil_neg;
+
+@cil_comparison_operation = @cil_cgt_un | @cil_ceq | @cil_cgt | @cil_clt | @cil_clt_un;
+
+// Elements that retrieve an address of something
+@cil_read_ref = @cil_ldloca_s | @cil_ldarga_s | @cil_ldflda | @cil_ldsflda | @cil_ldelema;
+
+// CIL array instructions
+
+@cil_read_array =
+  @cil_ldelem | @cil_ldelema | @cil_ldelem_i1 | @cil_ldelem_ref | @cil_ldelem_i |
+  @cil_ldelem_i1 | @cil_ldelem_i2 | @cil_ldelem_i4 | @cil_ldelem_i8 | @cil_ldelem_r4 |
+  @cil_ldelem_r8 | @cil_ldelem_u1 | @cil_ldelem_u2 | @cil_ldelem_u4;
+
+@cil_write_array = @cil_stelem | @cil_stelem_ref |
+  @cil_stelem_i | @cil_stelem_i1 | @cil_stelem_i2 | @cil_stelem_i4 | @cil_stelem_i8 |
+  @cil_stelem_r4 | @cil_stelem_r8;
+
+@cil_throw_any = @cil_throw | @cil_rethrow;
+
+#keyset[impl, index]
+cil_instruction(
+  unique int id: @cil_instruction,
+  int opcode: int ref,
+  int index: int ref,
+  int impl: @cil_method_implementation ref);
+
+cil_jump(
+  unique int instruction: @cil_jump ref,
+  int target: @cil_instruction ref);
+
+cil_access(
+  unique int instruction: @cil_instruction ref,
+  int target: @cil_accessible ref);
+
+cil_value(
+  unique int instruction: @cil_literal ref,
+  string value: string ref);
+
+#keyset[instruction, index]
+cil_switch(
+  int instruction: @cil_switch ref,
+  int index: int ref,
+  int target: @cil_instruction ref);
+
+cil_instruction_location(
+  unique int id: @cil_instruction ref,
+  int loc: @location ref);
+
+cil_type_location(
+  int id: @cil_type ref,
+  int loc: @location ref);
+
+cil_method_location(
+  int id: @cil_method ref,
+  int loc: @location ref);
+
+@cil_namespace = @namespace;
+
+@cil_type_container = @cil_type | @cil_namespace | @cil_method;
+
+case @cil_type.kind of
+  0 = @cil_valueorreftype
+| 1 = @cil_typeparameter
+| 2 = @cil_array_type
+| 3 = @cil_pointer_type
+| 4 = @cil_function_pointer_type
+;
+
+cil_type(
+  unique int id: @cil_type,
+  string name: string ref,
+  int kind: int ref,
+  int parent: @cil_type_container ref,
+  int sourceDecl: @cil_type ref);
+
+cil_pointer_type(
+  unique int id: @cil_pointer_type ref,
+  int pointee: @cil_type ref);
+
+cil_array_type(
+  unique int id: @cil_array_type ref,
+  int element_type: @cil_type ref,
+  int rank: int ref);
+
+cil_function_pointer_return_type(
+  unique int id: @cil_function_pointer_type ref,
+  int return_type: @cil_type ref);
+
+cil_method(
+  unique int id: @cil_method,
+  string name: string ref,
+  int parent: @cil_type ref,
+  int return_type: @cil_type ref);
+
+cil_method_source_declaration(
+  unique int method: @cil_method ref,
+  int source: @cil_method ref);
+
+cil_method_implementation(
+  unique int id: @cil_method_implementation,
+  int method: @cil_method ref,
+  int location: @assembly ref);
+
+cil_implements(
+  int id: @cil_method ref,
+  int decl: @cil_method ref);
+
+#keyset[parent, name]
+cil_field(
+  unique int id: @cil_field,
+  int parent: @cil_type ref,
+  string name: string ref,
+  int field_type: @cil_type ref);
+
+@cil_element = @cil_instruction | @cil_declaration | @cil_handler | @cil_attribute | @cil_namespace;
+@cil_named_element = @cil_declaration | @cil_namespace;
+@cil_declaration = @cil_variable | @cil_method | @cil_type | @cil_member;
+@cil_accessible = @cil_declaration;
+@cil_variable = @cil_field | @cil_stack_variable;
+@cil_stack_variable = @cil_local_variable | @cil_parameter;
+@cil_member = @cil_method | @cil_type | @cil_field | @cil_property | @cil_event;
+@cil_custom_modifier_receiver = @cil_method | @cil_property | @cil_parameter | @cil_field | @cil_function_pointer_type;
+@cil_parameterizable = @cil_method | @cil_function_pointer_type;
+@cil_has_type_annotation = @cil_stack_variable | @cil_property | @cil_method | @cil_function_pointer_type;
+
+#keyset[parameterizable, index]
+cil_parameter(
+  unique int id: @cil_parameter,
+  int parameterizable: @cil_parameterizable ref,
+  int index: int ref,
+  int param_type: @cil_type ref);
+
+cil_parameter_in(unique int id: @cil_parameter ref);
+cil_parameter_out(unique int id: @cil_parameter ref);
+
+cil_setter(unique int prop: @cil_property ref,
+  int method: @cil_method ref);
+
+#keyset[id, modifier]
+cil_custom_modifiers(
+  int id: @cil_custom_modifier_receiver ref,
+  int modifier: @cil_type ref,
+  int kind: int ref); // modreq: 1, modopt: 0
+
+cil_type_annotation(
+  int id: @cil_has_type_annotation ref,
+  int annotation: int ref);
+
+cil_getter(unique int prop: @cil_property ref,
+  int method: @cil_method ref);
+
+cil_adder(unique int event: @cil_event ref,
+  int method: @cil_method ref);
+
+cil_remover(unique int event: @cil_event ref, int method: @cil_method ref);
+
+cil_raiser(unique int event: @cil_event ref, int method: @cil_method ref);
+
+cil_property(
+  unique int id: @cil_property,
+  int parent: @cil_type ref,
+  string name: string ref,
+  int property_type: @cil_type ref);
+
+#keyset[parent, name]
+cil_event(unique int id: @cil_event,
+  int parent: @cil_type ref,
+  string name: string ref,
+  int event_type: @cil_type ref);
+
+#keyset[impl, index]
+cil_local_variable(
+  unique int id: @cil_local_variable,
+  int impl: @cil_method_implementation ref,
+  int index: int ref,
+  int var_type: @cil_type ref);
+
+cil_function_pointer_calling_conventions(
+  int id: @cil_function_pointer_type ref,
+  int kind: int ref);
+
+// CIL handlers (exception handlers etc).
+
+case @cil_handler.kind of
+  0 = @cil_catch_handler
+| 1 = @cil_filter_handler
+| 2 = @cil_finally_handler
+| 4 = @cil_fault_handler
+;
+
+#keyset[impl, index]
+cil_handler(
+  unique int id: @cil_handler,
+  int impl: @cil_method_implementation ref,
+  int index: int ref,
+  int kind: int ref,
+  int try_start: @cil_instruction ref,
+  int try_end: @cil_instruction ref,
+  int handler_start: @cil_instruction ref);
+
+cil_handler_filter(
+  unique int id: @cil_handler ref,
+  int filter_start: @cil_instruction ref);
+
+cil_handler_type(
+  unique int id: @cil_handler ref,
+  int catch_type: @cil_type ref);
+
+@cil_controlflow_node = @cil_entry_point | @cil_instruction;
+
+@cil_entry_point = @cil_method_implementation | @cil_handler;
+
+@cil_dataflow_node = @cil_instruction | @cil_variable | @cil_method;
+
+cil_method_stack_size(
+  unique int method: @cil_method_implementation ref,
+  int size: int ref);
+
+// CIL modifiers
+
+cil_public(int id: @cil_member ref);
+cil_private(int id: @cil_member ref);
+cil_protected(int id: @cil_member ref);
+cil_internal(int id: @cil_member ref);
+cil_static(int id: @cil_member ref);
+cil_sealed(int id: @cil_member ref);
+cil_virtual(int id: @cil_method ref);
+cil_abstract(int id: @cil_member ref);
+cil_class(int id: @cil_type ref);
+cil_interface(int id: @cil_type ref);
+cil_security(int id: @cil_member ref);
+cil_requiresecobject(int id: @cil_method ref);
+cil_specialname(int id: @cil_method ref);
+cil_newslot(int id: @cil_method ref);
+
+cil_base_class(unique int id: @cil_type ref, int base: @cil_type ref);
+cil_base_interface(int id: @cil_type ref, int base: @cil_type ref);
+cil_enum_underlying_type(unique int id: @cil_type ref, int underlying: @cil_type ref);
+
+#keyset[unbound, index]
+cil_type_parameter(
+  int unbound: @cil_member ref,
+  int index: int ref,
+  int param: @cil_typeparameter ref);
+
+#keyset[bound, index]
+cil_type_argument(
+  int bound: @cil_member ref,
+  int index: int ref,
+  int t: @cil_type ref);
+
+// CIL type parameter constraints
+
+cil_typeparam_covariant(int tp: @cil_typeparameter ref);
+cil_typeparam_contravariant(int tp: @cil_typeparameter ref);
+cil_typeparam_class(int tp: @cil_typeparameter ref);
+cil_typeparam_struct(int tp: @cil_typeparameter ref);
+cil_typeparam_new(int tp: @cil_typeparameter ref);
+cil_typeparam_constraint(int tp: @cil_typeparameter ref, int supertype: @cil_type ref);
+
+// CIL attributes
+
+cil_attribute(
+  unique int attributeid: @cil_attribute,
+  int element: @cil_declaration ref,
+  int constructor: @cil_method ref);
+
+#keyset[attribute_id, param]
+cil_attribute_named_argument(
+  int attribute_id: @cil_attribute ref,
+  string param: string ref,
+  string value: string ref);
+
+#keyset[attribute_id, index]
+cil_attribute_positional_argument(
+  int attribute_id: @cil_attribute ref,
+  int index: int ref,
+  string value: string ref);
+
+
+// Common .Net data model covering both C# and CIL
+
+// Common elements
+@dotnet_element = @element | @cil_element;
+@dotnet_named_element = @named_element | @cil_named_element;
+@dotnet_callable = @callable | @cil_method;
+@dotnet_variable = @variable | @cil_variable;
+@dotnet_field = @field | @cil_field;
+@dotnet_parameter = @parameter | @cil_parameter;
+@dotnet_declaration = @declaration | @cil_declaration;
+@dotnet_member = @member | @cil_member;
+@dotnet_event = @event | @cil_event;
+@dotnet_property = @property | @cil_property | @indexer;
+@dotnet_parameterizable = @parameterizable | @cil_parameterizable;
+
+// Common types
+@dotnet_type = @type | @cil_type;
+@dotnet_call = @call | @cil_call_any;
+@dotnet_throw = @throw_element | @cil_throw_any;
+@dotnet_valueorreftype = @cil_valueorreftype | @value_or_ref_type | @cil_array_type | @void_type;
+@dotnet_typeparameter = @type_parameter | @cil_typeparameter;
+@dotnet_array_type = @array_type | @cil_array_type;
+@dotnet_pointer_type = @pointer_type | @cil_pointer_type;
+@dotnet_type_parameter = @type_parameter | @cil_typeparameter;
+@dotnet_generic = @dotnet_valueorreftype | @dotnet_callable;
+
+// Attributes
+@dotnet_attribute = @attribute | @cil_attribute;
+
+// Expressions
+@dotnet_expr = @expr | @cil_expr;
+
+// Literals
+@dotnet_literal = @literal_expr | @cil_literal;
+@dotnet_string_literal = @string_literal_expr | @cil_ldstr;
+@dotnet_int_literal = @integer_literal_expr | @cil_ldc_i;
+@dotnet_float_literal = @float_literal_expr | @cil_ldc_r;
+@dotnet_null_literal = @null_literal_expr | @cil_ldnull;
+
+@metadata_entity = @cil_method | @cil_type | @cil_field | @cil_property | @field | @property |
+    @callable | @value_or_ref_type | @void_type;
+
+#keyset[entity, location]
+metadata_handle(int entity : @metadata_entity ref, int location: @assembly ref, int handle: int ref)
diff --git a/csharp/downgrades/83aca6b3e4fa38dd2b97b9b51dfc199a2ba9c7f2/semmlecode.csharp.dbscheme b/csharp/downgrades/83aca6b3e4fa38dd2b97b9b51dfc199a2ba9c7f2/semmlecode.csharp.dbscheme
new file mode 100644
index 00000000000..4ac7d8bcac6
--- /dev/null
+++ b/csharp/downgrades/83aca6b3e4fa38dd2b97b9b51dfc199a2ba9c7f2/semmlecode.csharp.dbscheme
@@ -0,0 +1,2064 @@
+/* This is a dummy line to alter the dbscheme, so we can make a database upgrade
+ * without actually changing any of the dbscheme predicates. It contains a date
+ * to allow for such updates in the future as well.
+ *
+ * 2021-07-14
+ *
+ * DO NOT remove this comment carelessly, since it can revert the dbscheme back to a
+ * previously seen state (matching a previously seen SHA), which would make the upgrade
+ * mechanism not work properly.
+ */
+
+/**
+ * An invocation of the compiler. Note that more than one file may be
+ * compiled per invocation. For example, this command compiles three
+ * source files:
+ *
+ *   csc f1.cs f2.cs f3.cs
+ *
+ * The `id` simply identifies the invocation, while `cwd` is the working
+ * directory from which the compiler was invoked.
+ */
+compilations(
+    unique int id : @compilation,
+    string cwd : string ref
+);
+
+/**
+ * The arguments that were passed to the extractor for a compiler
+ * invocation. If `id` is for the compiler invocation
+ *
+ *   csc f1.cs f2.cs f3.cs
+ *
+ * then typically there will be rows for
+ *
+ * num | arg
+ * --- | ---
+ * 0   | --compiler
+ * 1   | *path to compiler*
+ * 2   | f1.cs
+ * 3   | f2.cs
+ * 4   | f3.cs
+ */
+#keyset[id, num]
+compilation_args(
+    int id : @compilation ref,
+    int num : int ref,
+    string arg : string ref
+);
+
+/**
+ * The source files that are compiled by a compiler invocation.
+ * If `id` is for the compiler invocation
+ *
+ *   csc f1.cs f2.cs f3.cs
+ *
+ * then there will be rows for
+ *
+ * num | arg
+ * --- | ---
+ * 0   | f1.cs
+ * 1   | f2.cs
+ * 2   | f3.cs
+ */
+#keyset[id, num]
+compilation_compiling_files(
+    int id : @compilation ref,
+    int num : int ref,
+    int file : @file ref
+);
+
+/**
+ * The references used by a compiler invocation.
+ * If `id` is for the compiler invocation
+ *
+ *   csc f1.cs f2.cs f3.cs /r:ref1.dll /r:ref2.dll /r:ref3.dll
+ *
+ * then there will be rows for
+ *
+ * num | arg
+ * --- | ---
+ * 0   | ref1.dll
+ * 1   | ref2.dll
+ * 2   | ref3.dll
+ */
+#keyset[id, num]
+compilation_referencing_files(
+    int id : @compilation ref,
+    int num : int ref,
+    int file : @file ref
+);
+
+/**
+ * The time taken by the extractor for a compiler invocation.
+ *
+ * For each file `num`, there will be rows for
+ *
+ * kind | seconds
+ * ---- | ---
+ * 1    | CPU seconds used by the extractor frontend
+ * 2    | Elapsed seconds during the extractor frontend
+ * 3    | CPU seconds used by the extractor backend
+ * 4    | Elapsed seconds during the extractor backend
+ */
+#keyset[id, num, kind]
+compilation_time(
+    int id : @compilation ref,
+    int num : int ref,
+    /* kind:
+       1 = frontend_cpu_seconds
+       2 = frontend_elapsed_seconds
+       3 = extractor_cpu_seconds
+       4 = extractor_elapsed_seconds
+    */
+    int kind : int ref,
+    float seconds : float ref
+);
+
+/**
+ * An error or warning generated by the extractor.
+ * The diagnostic message `diagnostic` was generated during compiler
+ * invocation `compilation`, and is the `file_number_diagnostic_number`th
+ * message generated while extracting the `file_number`th file of that
+ * invocation.
+ */
+#keyset[compilation, file_number, file_number_diagnostic_number]
+diagnostic_for(
+    unique int diagnostic : @diagnostic ref,
+    int compilation : @compilation ref,
+    int file_number : int ref,
+    int file_number_diagnostic_number : int ref
+);
+
+diagnostics(
+    unique int id: @diagnostic,
+    int severity: int ref,
+    string error_tag: string ref,
+    string error_message: string ref,
+    string full_error_message: string ref,
+    int location: @location_default ref
+);
+
+extractor_messages(
+    unique int id: @extractor_message,
+    int severity: int ref,
+    string origin : string ref,
+    string text : string ref,
+    string entity : string ref,
+    int location: @location_default ref,
+    string stack_trace : string ref
+);
+
+/**
+ * If extraction was successful, then `cpu_seconds` and
+ * `elapsed_seconds` are the CPU time and elapsed time (respectively)
+ * that extraction took for compiler invocation `id`.
+ */
+compilation_finished(
+    unique int id : @compilation ref,
+    float cpu_seconds : float ref,
+    float elapsed_seconds : float ref
+);
+
+compilation_assembly(
+  unique int id : @compilation ref,
+  int assembly: @assembly ref
+)
+
+// Populated by the CSV extractor
+externalData(
+   int id: @externalDataElement,
+   string path: string ref,
+   int column: int ref,
+   string value: string ref);
+
+sourceLocationPrefix(
+  string prefix: string ref);
+
+/*
+ * C# dbscheme
+ */
+
+/** ELEMENTS **/
+
+@element = @declaration | @stmt | @expr | @modifier | @attribute | @namespace_declaration
+         | @using_directive | @type_parameter_constraints | @externalDataElement
+         | @xmllocatable | @asp_element | @namespace | @preprocessor_directive;
+
+@declaration = @callable | @generic | @assignable | @namespace;
+
+@named_element = @namespace | @declaration;
+
+@declaration_with_accessors = @property | @indexer | @event;
+
+@assignable = @variable | @assignable_with_accessors | @event;
+
+@assignable_with_accessors = @property | @indexer;
+
+@attributable = @assembly | @field | @parameter | @operator | @method | @constructor
+              | @destructor | @callable_accessor | @value_or_ref_type | @declaration_with_accessors
+              | @local_function | @lambda_expr;
+
+/** LOCATIONS, ASEMMBLIES, MODULES, FILES and FOLDERS **/
+
+@location = @location_default | @assembly;
+
+locations_default(
+  unique int id: @location_default,
+  int file: @file ref,
+  int beginLine: int ref,
+  int beginColumn: int ref,
+  int endLine: int ref,
+  int endColumn: int ref);
+
+locations_mapped(
+  unique int id: @location_default ref,
+  int mapped_to: @location_default ref);
+
+@sourceline = @file | @callable | @xmllocatable;
+
+numlines(
+  int element_id: @sourceline ref,
+  int num_lines: int ref,
+  int num_code: int ref,
+  int num_comment: int ref);
+
+assemblies(
+  unique int id: @assembly,
+  int file: @file ref,
+  string fullname: string ref,
+  string name: string ref,
+  string version: string ref);
+
+files(
+  unique int id: @file,
+  string name: string ref);
+
+folders(
+  unique int id: @folder,
+  string name: string ref);
+
+@container = @folder | @file ;
+
+containerparent(
+  int parent: @container ref,
+  unique int child: @container ref);
+
+file_extraction_mode(
+  unique int file: @file ref,
+  int mode: int ref
+  /* 0 = normal, 1 = standalone extractor */
+  );
+
+/** NAMESPACES **/
+
+@type_container = @namespace | @type;
+
+namespaces(
+  unique int id: @namespace,
+  string name: string ref);
+
+namespace_declarations(
+  unique int id: @namespace_declaration,
+  int namespace_id: @namespace ref);
+
+namespace_declaration_location(
+  unique int id: @namespace_declaration ref,
+  int loc: @location ref);
+
+parent_namespace(
+  unique int child_id: @type_container ref,
+  int namespace_id: @namespace ref);
+
+@declaration_or_directive = @namespace_declaration | @type | @using_directive;
+
+parent_namespace_declaration(
+  int child_id: @declaration_or_directive ref, // cannot be unique because of partial classes
+  int namespace_id: @namespace_declaration ref);
+
+@using_directive = @using_namespace_directive | @using_static_directive;
+
+using_global(
+  unique int id: @using_directive ref
+);
+
+using_namespace_directives(
+  unique int id: @using_namespace_directive,
+  int namespace_id: @namespace ref);
+
+using_static_directives(
+  unique int id: @using_static_directive,
+  int type_id: @type_or_ref ref);
+
+using_directive_location(
+  unique int id: @using_directive ref,
+  int loc: @location ref);
+
+@preprocessor_directive = @pragma_warning | @pragma_checksum | @directive_define | @directive_undefine | @directive_warning
+  | @directive_error | @directive_nullable | @directive_line | @directive_region | @directive_endregion | @directive_if
+  | @directive_elif | @directive_else | @directive_endif;
+
+@conditional_directive = @directive_if | @directive_elif;
+@branch_directive = @directive_if | @directive_elif | @directive_else;
+
+directive_ifs(
+  unique int id: @directive_if,
+  int branchTaken: int ref,     /* 0: false, 1: true */
+  int conditionValue: int ref); /* 0: false, 1: true */
+
+directive_elifs(
+  unique int id: @directive_elif,
+  int branchTaken: int ref,     /* 0: false, 1: true */
+  int conditionValue: int ref,  /* 0: false, 1: true */
+  int parent: @directive_if ref,
+  int index: int ref);
+
+directive_elses(
+  unique int id: @directive_else,
+  int branchTaken: int ref,   /* 0: false, 1: true */
+  int parent: @directive_if ref,
+  int index: int ref);
+
+#keyset[id, start]
+directive_endifs(
+  unique int id: @directive_endif,
+  unique int start: @directive_if ref);
+
+directive_define_symbols(
+  unique int id: @define_symbol_expr ref,
+  string name: string ref);
+
+directive_regions(
+  unique int id: @directive_region,
+  string name: string ref);
+
+#keyset[id, start]
+directive_endregions(
+  unique int id: @directive_endregion,
+  unique int start: @directive_region ref);
+
+directive_lines(
+  unique int id: @directive_line,
+  int kind: int ref); /* 0: default, 1: hidden, 2: numeric, 3: span */
+
+directive_line_value(
+  unique int id: @directive_line ref,
+  int line: int ref);
+
+directive_line_file(
+  unique int id: @directive_line ref,
+  int file: @file ref);
+
+directive_line_offset(
+  unique int id: @directive_line ref,
+  int offset: int ref);
+
+directive_line_span(
+  unique int id: @directive_line ref,
+  int startLine: int ref,
+  int startColumn: int ref,
+  int endLine: int ref,
+  int endColumn: int ref);
+
+directive_nullables(
+  unique int id: @directive_nullable,
+  int setting: int ref, /* 0: disable, 1: enable, 2: restore */
+  int target: int ref); /* 0: none, 1: annotations, 2: warnings */
+
+directive_warnings(
+  unique int id: @directive_warning,
+  string message: string ref);
+
+directive_errors(
+  unique int id: @directive_error,
+  string message: string ref);
+
+directive_undefines(
+  unique int id: @directive_undefine,
+  string name: string ref);
+
+directive_defines(
+  unique int id: @directive_define,
+  string name: string ref);
+
+pragma_checksums(
+  unique int id: @pragma_checksum,
+  int file: @file ref,
+  string guid: string ref,
+  string bytes: string ref);
+
+pragma_warnings(
+  unique int id: @pragma_warning,
+  int kind: int ref /* 0 = disable, 1 = restore */);
+
+#keyset[id, index]
+pragma_warning_error_codes(
+  int id: @pragma_warning ref,
+  string errorCode: string ref,
+  int index: int ref);
+
+preprocessor_directive_location(
+  unique int id: @preprocessor_directive ref,
+  int loc: @location ref);
+
+preprocessor_directive_compilation(
+  unique int id: @preprocessor_directive ref,
+  int compilation: @compilation ref);
+
+preprocessor_directive_active(
+  unique int id: @preprocessor_directive ref,
+  int active: int ref);  /* 0: false, 1: true */
+
+/** TYPES **/
+
+types(
+  unique int id: @type,
+  int kind: int ref,
+  string name: string ref);
+
+case @type.kind of
+   1 = @bool_type
+|  2 = @char_type
+|  3 = @decimal_type
+|  4 = @sbyte_type
+|  5 = @short_type
+|  6 = @int_type
+|  7 = @long_type
+|  8 = @byte_type
+|  9 = @ushort_type
+| 10 = @uint_type
+| 11 = @ulong_type
+| 12 = @float_type
+| 13 = @double_type
+| 14 = @enum_type
+| 15 = @struct_type
+| 17 = @class_type
+| 19 = @interface_type
+| 20 = @delegate_type
+| 21 = @null_type
+| 22 = @type_parameter
+| 23 = @pointer_type
+| 24 = @nullable_type
+| 25 = @array_type
+| 26 = @void_type
+| 27 = @int_ptr_type
+| 28 = @uint_ptr_type
+| 29 = @dynamic_type
+| 30 = @arglist_type
+| 31 = @unknown_type
+| 32 = @tuple_type
+| 33 = @function_pointer_type
+  ;
+
+@simple_type = @bool_type | @char_type | @integral_type | @floating_point_type | @decimal_type;
+@integral_type = @signed_integral_type | @unsigned_integral_type;
+@signed_integral_type = @sbyte_type | @short_type | @int_type | @long_type;
+@unsigned_integral_type = @byte_type  | @ushort_type | @uint_type | @ulong_type;
+@floating_point_type = @float_type | @double_type;
+@value_type = @simple_type | @enum_type | @struct_type | @nullable_type | @int_ptr_type
+            | @uint_ptr_type | @tuple_type;
+@ref_type = @class_type | @interface_type | @array_type | @delegate_type | @null_type
+          | @dynamic_type;
+@value_or_ref_type = @value_type | @ref_type;
+
+typerefs(
+  unique int id: @typeref,
+  string name: string ref);
+
+typeref_type(
+  int id: @typeref ref,
+  unique int typeId: @type ref);
+
+@type_or_ref = @type | @typeref;
+
+array_element_type(
+  unique int array: @array_type ref,
+  int dimension: int ref,
+  int rank: int ref,
+  int element: @type_or_ref ref);
+
+nullable_underlying_type(
+  unique int nullable: @nullable_type ref,
+  int underlying: @type_or_ref ref);
+
+pointer_referent_type(
+  unique int pointer: @pointer_type ref,
+  int referent: @type_or_ref ref);
+
+enum_underlying_type(
+  unique int enum_id: @enum_type ref,
+  int underlying_type_id: @type_or_ref ref);
+
+delegate_return_type(
+  unique int delegate_id: @delegate_type ref,
+  int return_type_id: @type_or_ref ref);
+
+function_pointer_return_type(
+    unique int function_pointer_id: @function_pointer_type ref,
+    int return_type_id: @type_or_ref ref);
+
+extend(
+  int sub: @type ref,
+  int super: @type_or_ref ref);
+
+anonymous_types(
+  unique int id: @type ref);
+
+@interface_or_ref = @interface_type | @typeref;
+
+implement(
+  int sub: @type ref,
+  int super: @type_or_ref ref);
+
+type_location(
+  int id: @type ref,
+  int loc: @location ref);
+
+tuple_underlying_type(
+  unique int tuple: @tuple_type ref,
+  int struct: @type_or_ref ref);
+
+#keyset[tuple, index]
+tuple_element(
+  int tuple: @tuple_type ref,
+  int index: int ref,
+  unique int field: @field ref);
+
+attributes(
+  unique int id: @attribute,
+  int kind: int ref,
+  int type_id: @type_or_ref ref,
+  int target:  @attributable ref);
+
+case @attribute.kind of
+  0 = @attribute_default
+| 1 = @attribute_return
+| 2 = @attribute_assembly
+| 3 = @attribute_module
+;
+
+attribute_location(
+  int id: @attribute ref,
+  int loc: @location ref);
+
+@type_mention_parent = @element | @type_mention;
+
+type_mention(
+  unique int id: @type_mention,
+  int type_id: @type_or_ref ref,
+  int parent: @type_mention_parent ref);
+
+type_mention_location(
+  unique int id: @type_mention ref,
+  int loc: @location ref);
+
+@has_type_annotation = @assignable | @type_parameter | @callable | @expr | @delegate_type | @generic | @function_pointer_type;
+
+/**
+ * A direct annotation on an entity, for example `string? x;`.
+ *
+ * Annotations:
+ * 2 = reftype is not annotated "!"
+ * 3 = reftype is annotated "?"
+ * 4 = readonly ref type / in parameter
+ * 5 = ref type parameter, return or local variable
+ * 6 = out parameter
+ *
+ * Note that the annotation depends on the element it annotates.
+ * @assignable: The annotation is on the type of the assignable, for example the variable type.
+ * @type_parameter: The annotation is on the reftype constraint
+ * @callable: The annotation is on the return type
+ * @array_type: The annotation is on the element type
+ */
+type_annotation(int id: @has_type_annotation ref, int annotation: int ref);
+
+nullability(unique int nullability: @nullability, int kind: int ref);
+
+case @nullability.kind of
+  0 = @oblivious
+| 1 = @not_annotated
+| 2 = @annotated
+;
+
+#keyset[parent, index]
+nullability_parent(int nullability: @nullability ref, int index: int ref, int parent: @nullability ref)
+
+type_nullability(int id: @has_type_annotation ref, int nullability: @nullability ref);
+
+/**
+ * The nullable flow state of an expression, as determined by Roslyn.
+ *   0 = none (default, not populated)
+ *   1 = not null
+ *   2 = maybe null
+ */
+expr_flowstate(unique int id: @expr ref, int state: int ref);
+
+/** GENERICS **/
+
+@generic = @type | @method | @local_function;
+
+type_parameters(
+  unique int id: @type_parameter ref,
+  int index: int ref,
+  int generic_id: @generic ref,
+  int variance: int ref /* none = 0, out = 1, in = 2 */);
+
+#keyset[constructed_id, index]
+type_arguments(
+  int id: @type_or_ref ref,
+  int index: int ref,
+  int constructed_id: @generic_or_ref ref);
+
+@generic_or_ref = @generic | @typeref;
+
+constructed_generic(
+  unique int constructed: @generic ref,
+  int generic: @generic_or_ref ref);
+
+type_parameter_constraints(
+  unique int id: @type_parameter_constraints,
+  int param_id: @type_parameter ref);
+
+type_parameter_constraints_location(
+  int id: @type_parameter_constraints ref,
+  int loc: @location ref);
+
+general_type_parameter_constraints(
+  int id: @type_parameter_constraints ref,
+  int kind: int ref /* class = 1, struct = 2, new = 3 */);
+
+specific_type_parameter_constraints(
+  int id: @type_parameter_constraints ref,
+  int base_id: @type_or_ref ref);
+
+specific_type_parameter_nullability(
+  int id: @type_parameter_constraints ref,
+  int base_id: @type_or_ref ref,
+  int nullability: @nullability ref);
+
+/** FUNCTION POINTERS */
+
+function_pointer_calling_conventions(
+  int id: @function_pointer_type ref,
+  int kind: int ref);
+
+#keyset[id, index]
+has_unmanaged_calling_conventions(
+  int id: @function_pointer_type ref,
+  int index: int ref,
+  int conv_id: @type_or_ref ref);
+
+/** MODIFIERS */
+
+@modifiable = @modifiable_direct | @event_accessor;
+
+@modifiable_direct = @member | @accessor | @local_function | @anonymous_function_expr;
+
+modifiers(
+  unique int id: @modifier,
+  string name: string ref);
+
+has_modifiers(
+  int id: @modifiable_direct ref,
+  int mod_id: @modifier ref);
+
+compiler_generated(unique int id: @modifiable ref);
+
+/** MEMBERS **/
+
+@member = @method | @constructor | @destructor | @field | @property | @event | @operator | @indexer | @type;
+
+@named_exprorstmt = @goto_stmt | @labeled_stmt | @expr;
+
+@virtualizable = @method | @property | @indexer | @event;
+
+exprorstmt_name(
+  unique int parent_id: @named_exprorstmt ref,
+  string name: string ref);
+
+nested_types(
+  unique int id: @type ref,
+  int declaring_type_id: @type ref,
+  int unbound_id: @type ref);
+
+properties(
+  unique int id: @property,
+  string name: string ref,
+  int declaring_type_id: @type ref,
+  int type_id: @type_or_ref ref,
+  int unbound_id: @property ref);
+
+property_location(
+  int id: @property ref,
+  int loc: @location ref);
+
+indexers(
+  unique int id: @indexer,
+  string name: string ref,
+  int declaring_type_id: @type ref,
+  int type_id: @type_or_ref ref,
+  int unbound_id: @indexer ref);
+
+indexer_location(
+  int id: @indexer ref,
+  int loc: @location ref);
+
+accessors(
+  unique int id: @accessor,
+  int kind: int ref,
+  string name: string ref,
+  int declaring_member_id: @member ref,
+  int unbound_id: @accessor ref);
+
+case @accessor.kind of
+  1 = @getter
+| 2 = @setter
+  ;
+
+init_only_accessors(
+  unique int id: @accessor ref);
+
+accessor_location(
+  int id: @accessor ref,
+  int loc: @location ref);
+
+events(
+  unique int id: @event,
+  string name: string ref,
+  int declaring_type_id: @type ref,
+  int type_id: @type_or_ref ref,
+  int unbound_id: @event ref);
+
+event_location(
+  int id: @event ref,
+  int loc: @location ref);
+
+event_accessors(
+  unique int id: @event_accessor,
+  int kind: int ref,
+  string name: string ref,
+  int declaring_event_id: @event ref,
+  int unbound_id: @event_accessor ref);
+
+case @event_accessor.kind of
+  1 = @add_event_accessor
+| 2 = @remove_event_accessor
+  ;
+
+event_accessor_location(
+  int id: @event_accessor ref,
+  int loc: @location ref);
+
+operators(
+  unique int id: @operator,
+  string name: string ref,
+  string symbol: string ref,
+  int declaring_type_id: @type ref,
+  int type_id: @type_or_ref ref,
+  int unbound_id: @operator ref);
+
+operator_location(
+  int id: @operator ref,
+  int loc: @location ref);
+
+constant_value(
+  int id: @variable ref,
+  string value: string ref);
+
+/** CALLABLES **/
+
+@callable = @method | @constructor | @destructor | @operator | @callable_accessor | @anonymous_function_expr | @local_function;
+
+@callable_accessor = @accessor | @event_accessor;
+
+methods(
+  unique int id: @method,
+  string name: string ref,
+  int declaring_type_id: @type ref,
+  int type_id: @type_or_ref ref,
+  int unbound_id: @method ref);
+
+method_location(
+  int id: @method ref,
+  int loc: @location ref);
+
+constructors(
+  unique int id: @constructor,
+  string name: string ref,
+  int declaring_type_id: @type ref,
+  int unbound_id: @constructor ref);
+
+constructor_location(
+  int id: @constructor ref,
+  int loc: @location ref);
+
+destructors(
+  unique int id: @destructor,
+  string name: string ref,
+  int declaring_type_id: @type ref,
+  int unbound_id: @destructor ref);
+
+destructor_location(
+  int id: @destructor ref,
+  int loc: @location ref);
+
+overrides(
+  int id: @callable ref,
+  int base_id: @callable ref);
+
+explicitly_implements(
+  int id: @member ref,
+  int interface_id: @interface_or_ref ref);
+
+local_functions(
+    unique int id: @local_function,
+    string name: string ref,
+    int return_type: @type ref,
+    int unbound_id: @local_function ref);
+
+local_function_stmts(
+    unique int fn: @local_function_stmt ref,
+    int stmt: @local_function ref);
+
+/** VARIABLES **/
+
+@variable = @local_scope_variable | @field;
+
+@local_scope_variable = @local_variable | @parameter;
+
+fields(
+  unique int id: @field,
+  int kind: int ref,
+  string name: string ref,
+  int declaring_type_id: @type ref,
+  int type_id: @type_or_ref ref,
+  int unbound_id: @field ref);
+
+case @field.kind of
+  1 = @addressable_field
+| 2 = @constant
+  ;
+
+field_location(
+  int id: @field ref,
+  int loc: @location ref);
+
+localvars(
+  unique int id: @local_variable,
+  int kind: int ref,
+  string name: string ref,
+  int implicitly_typed: int ref /* 0 = no, 1 = yes */,
+  int type_id: @type_or_ref ref,
+  int parent_id: @local_var_decl_expr ref);
+
+case @local_variable.kind of
+  1 = @addressable_local_variable
+| 2 = @local_constant
+| 3 = @local_variable_ref
+  ;
+
+localvar_location(
+  unique int id: @local_variable ref,
+  int loc: @location ref);
+
+@parameterizable = @callable | @delegate_type | @indexer | @function_pointer_type;
+
+#keyset[name, parent_id]
+#keyset[index, parent_id]
+params(
+  unique int id: @parameter,
+  string name: string ref,
+  int type_id: @type_or_ref ref,
+  int index: int ref,
+  int mode: int ref, /* value = 0, ref = 1, out = 2, array = 3, this = 4 */
+  int parent_id: @parameterizable ref,
+  int unbound_id: @parameter ref);
+
+param_location(
+  int id: @parameter ref,
+  int loc: @location ref);
+
+/** STATEMENTS **/
+
+@exprorstmt_parent = @control_flow_element | @top_level_exprorstmt_parent;
+
+statements(
+  unique int id: @stmt,
+  int kind: int ref);
+
+#keyset[index, parent]
+stmt_parent(
+  unique int stmt: @stmt ref,
+  int index: int ref,
+  int parent: @control_flow_element ref);
+
+@top_level_stmt_parent = @callable;
+
+// [index, parent] is not a keyset because the same parent may be compiled multiple times
+stmt_parent_top_level(
+  unique int stmt: @stmt ref,
+  int index: int ref,
+  int parent: @top_level_stmt_parent ref);
+
+case @stmt.kind of
+   1 = @block_stmt
+|  2 = @expr_stmt
+|  3 = @if_stmt
+|  4 = @switch_stmt
+|  5 = @while_stmt
+|  6 = @do_stmt
+|  7 = @for_stmt
+|  8 = @foreach_stmt
+|  9 = @break_stmt
+| 10 = @continue_stmt
+| 11 = @goto_stmt
+| 12 = @goto_case_stmt
+| 13 = @goto_default_stmt
+| 14 = @throw_stmt
+| 15 = @return_stmt
+| 16 = @yield_stmt
+| 17 = @try_stmt
+| 18 = @checked_stmt
+| 19 = @unchecked_stmt
+| 20 = @lock_stmt
+| 21 = @using_block_stmt
+| 22 = @var_decl_stmt
+| 23 = @const_decl_stmt
+| 24 = @empty_stmt
+| 25 = @unsafe_stmt
+| 26 = @fixed_stmt
+| 27 = @label_stmt
+| 28 = @catch
+| 29 = @case_stmt
+| 30 = @local_function_stmt
+| 31 = @using_decl_stmt
+  ;
+
+@using_stmt = @using_block_stmt | @using_decl_stmt;
+
+@labeled_stmt = @label_stmt | @case;
+
+@decl_stmt = @var_decl_stmt | @const_decl_stmt | @using_decl_stmt;
+
+@cond_stmt = @if_stmt | @switch_stmt;
+
+@loop_stmt = @while_stmt | @do_stmt | @for_stmt | @foreach_stmt;
+
+@jump_stmt = @break_stmt | @goto_any_stmt | @continue_stmt | @throw_stmt | @return_stmt
+           | @yield_stmt;
+
+@goto_any_stmt = @goto_default_stmt | @goto_case_stmt | @goto_stmt;
+
+
+stmt_location(
+  unique int id: @stmt ref,
+  int loc: @location ref);
+
+catch_type(
+  unique int catch_id: @catch ref,
+  int type_id: @type_or_ref ref,
+  int kind: int ref /* explicit = 1, implicit = 2 */);
+
+foreach_stmt_info(
+  unique int id: @foreach_stmt ref,
+  int kind: int ref /* non-async = 1, async = 2 */);
+
+@foreach_symbol =  @method | @property | @type_or_ref;
+
+#keyset[id, kind]
+foreach_stmt_desugar(
+  int id: @foreach_stmt ref,
+  int symbol: @foreach_symbol ref,
+  int kind: int ref /* GetEnumeratorMethod = 1, CurrentProperty = 2, MoveNextMethod = 3, DisposeMethod = 4, ElementType = 5 */);
+
+/** EXPRESSIONS **/
+
+expressions(
+  unique int id: @expr,
+  int kind: int ref,
+  int type_id: @type_or_ref ref);
+
+#keyset[index, parent]
+expr_parent(
+  unique int expr: @expr ref,
+  int index: int ref,
+  int parent: @control_flow_element ref);
+
+@top_level_expr_parent = @attribute | @field | @property | @indexer | @parameter | @directive_if | @directive_elif;
+
+@top_level_exprorstmt_parent = @top_level_expr_parent | @top_level_stmt_parent;
+
+// [index, parent] is not a keyset because the same parent may be compiled multiple times
+expr_parent_top_level(
+  unique int expr: @expr ref,
+  int index: int ref,
+  int parent: @top_level_exprorstmt_parent ref);
+
+case @expr.kind of
+/* literal */
+   1 = @bool_literal_expr
+|  2 = @char_literal_expr
+|  3 = @decimal_literal_expr
+|  4 = @int_literal_expr
+|  5 = @long_literal_expr
+|  6 = @uint_literal_expr
+|  7 = @ulong_literal_expr
+|  8 = @float_literal_expr
+|  9 = @double_literal_expr
+| 10 = @string_literal_expr
+| 11 = @null_literal_expr
+/* primary & unary */
+| 12 = @this_access_expr
+| 13 = @base_access_expr
+| 14 = @local_variable_access_expr
+| 15 = @parameter_access_expr
+| 16 = @field_access_expr
+| 17 = @property_access_expr
+| 18 = @method_access_expr
+| 19 = @event_access_expr
+| 20 = @indexer_access_expr
+| 21 = @array_access_expr
+| 22 = @type_access_expr
+| 23 = @typeof_expr
+| 24 = @method_invocation_expr
+| 25 = @delegate_invocation_expr
+| 26 = @operator_invocation_expr
+| 27 = @cast_expr
+| 28 = @object_creation_expr
+| 29 = @explicit_delegate_creation_expr
+| 30 = @implicit_delegate_creation_expr
+| 31 = @array_creation_expr
+| 32 = @default_expr
+| 33 = @plus_expr
+| 34 = @minus_expr
+| 35 = @bit_not_expr
+| 36 = @log_not_expr
+| 37 = @post_incr_expr
+| 38 = @post_decr_expr
+| 39 = @pre_incr_expr
+| 40 = @pre_decr_expr
+/* multiplicative */
+| 41 = @mul_expr
+| 42 = @div_expr
+| 43 = @rem_expr
+/* additive */
+| 44 = @add_expr
+| 45 = @sub_expr
+/* shift */
+| 46 = @lshift_expr
+| 47 = @rshift_expr
+/* relational */
+| 48 = @lt_expr
+| 49 = @gt_expr
+| 50 = @le_expr
+| 51 = @ge_expr
+/* equality */
+| 52 = @eq_expr
+| 53 = @ne_expr
+/* logical */
+| 54 = @bit_and_expr
+| 55 = @bit_xor_expr
+| 56 = @bit_or_expr
+| 57 = @log_and_expr
+| 58 = @log_or_expr
+/* type testing */
+| 59 = @is_expr
+| 60 = @as_expr
+/* null coalescing */
+| 61 = @null_coalescing_expr
+/* conditional */
+| 62 = @conditional_expr
+/* assignment */
+| 63 = @simple_assign_expr
+| 64 = @assign_add_expr
+| 65 = @assign_sub_expr
+| 66 = @assign_mul_expr
+| 67 = @assign_div_expr
+| 68 = @assign_rem_expr
+| 69 = @assign_and_expr
+| 70 = @assign_xor_expr
+| 71 = @assign_or_expr
+| 72 = @assign_lshift_expr
+| 73 = @assign_rshift_expr
+/* more */
+| 74 = @object_init_expr
+| 75 = @collection_init_expr
+| 76 = @array_init_expr
+| 77 = @checked_expr
+| 78 = @unchecked_expr
+| 79 = @constructor_init_expr
+| 80 = @add_event_expr
+| 81 = @remove_event_expr
+| 82 = @par_expr
+| 83 = @local_var_decl_expr
+| 84 = @lambda_expr
+| 85 = @anonymous_method_expr
+| 86 = @namespace_expr
+/* dynamic */
+| 92 = @dynamic_element_access_expr
+| 93 = @dynamic_member_access_expr
+/* unsafe */
+| 100 = @pointer_indirection_expr
+| 101 = @address_of_expr
+| 102 = @sizeof_expr
+/* async */
+| 103 = @await_expr
+/* C# 6.0 */
+| 104 = @nameof_expr
+| 105 = @interpolated_string_expr
+| 106 = @unknown_expr
+/* C# 7.0 */
+| 107 = @throw_expr
+| 108 = @tuple_expr
+| 109 = @local_function_invocation_expr
+| 110 = @ref_expr
+| 111 = @discard_expr
+/* C# 8.0 */
+| 112 = @range_expr
+| 113 = @index_expr
+| 114 = @switch_expr
+| 115 = @recursive_pattern_expr
+| 116 = @property_pattern_expr
+| 117 = @positional_pattern_expr
+| 118 = @switch_case_expr
+| 119 = @assign_coalesce_expr
+| 120 = @suppress_nullable_warning_expr
+| 121 = @namespace_access_expr
+/* C# 9.0 */
+| 122 = @lt_pattern_expr
+| 123 = @gt_pattern_expr
+| 124 = @le_pattern_expr
+| 125 = @ge_pattern_expr
+| 126 = @not_pattern_expr
+| 127 = @and_pattern_expr
+| 128 = @or_pattern_expr
+| 129 = @function_pointer_invocation_expr
+| 130 = @with_expr
+/* Preprocessor */
+| 999 = @define_symbol_expr
+;
+
+@switch = @switch_stmt | @switch_expr;
+@case = @case_stmt | @switch_case_expr;
+@pattern_match = @case | @is_expr;
+@unary_pattern_expr = @not_pattern_expr;
+@relational_pattern_expr = @gt_pattern_expr | @lt_pattern_expr | @ge_pattern_expr | @le_pattern_expr;
+@binary_pattern_expr = @and_pattern_expr | @or_pattern_expr;
+
+@integer_literal_expr = @int_literal_expr | @long_literal_expr | @uint_literal_expr | @ulong_literal_expr;
+@real_literal_expr = @float_literal_expr | @double_literal_expr | @decimal_literal_expr;
+@literal_expr = @bool_literal_expr | @char_literal_expr | @integer_literal_expr | @real_literal_expr
+              | @string_literal_expr | @null_literal_expr;
+
+@assign_expr = @simple_assign_expr | @assign_op_expr | @local_var_decl_expr;
+@assign_op_expr =  @assign_arith_expr | @assign_bitwise_expr | @assign_event_expr | @assign_coalesce_expr;
+@assign_event_expr = @add_event_expr | @remove_event_expr;
+
+@assign_arith_expr = @assign_add_expr | @assign_sub_expr | @assign_mul_expr | @assign_div_expr
+                   | @assign_rem_expr
+@assign_bitwise_expr = @assign_and_expr | @assign_or_expr | @assign_xor_expr
+                   | @assign_lshift_expr | @assign_rshift_expr;
+
+@member_access_expr = @field_access_expr | @property_access_expr | @indexer_access_expr | @event_access_expr
+                    | @method_access_expr | @type_access_expr | @dynamic_member_access_expr;
+@access_expr = @member_access_expr | @this_access_expr | @base_access_expr | @assignable_access_expr | @namespace_access_expr;
+@element_access_expr = @indexer_access_expr | @array_access_expr | @dynamic_element_access_expr;
+
+@local_variable_access = @local_variable_access_expr | @local_var_decl_expr;
+@local_scope_variable_access_expr = @parameter_access_expr | @local_variable_access;
+@variable_access_expr = @local_scope_variable_access_expr | @field_access_expr;
+
+@assignable_access_expr = @variable_access_expr | @property_access_expr | @element_access_expr
+                        | @event_access_expr | @dynamic_member_access_expr;
+
+@objectorcollection_init_expr = @object_init_expr | @collection_init_expr;
+
+@delegate_creation_expr = @explicit_delegate_creation_expr | @implicit_delegate_creation_expr;
+
+@bin_arith_op_expr = @mul_expr | @div_expr | @rem_expr | @add_expr | @sub_expr;
+@incr_op_expr =  @pre_incr_expr | @post_incr_expr;
+@decr_op_expr =  @pre_decr_expr | @post_decr_expr;
+@mut_op_expr = @incr_op_expr | @decr_op_expr;
+@un_arith_op_expr = @plus_expr | @minus_expr | @mut_op_expr;
+@arith_op_expr = @bin_arith_op_expr | @un_arith_op_expr;
+
+@ternary_log_op_expr = @conditional_expr;
+@bin_log_op_expr = @log_and_expr | @log_or_expr | @null_coalescing_expr;
+@un_log_op_expr = @log_not_expr;
+@log_expr = @un_log_op_expr | @bin_log_op_expr | @ternary_log_op_expr;
+
+@bin_bit_op_expr =  @bit_and_expr | @bit_or_expr | @bit_xor_expr | @lshift_expr
+                 | @rshift_expr;
+@un_bit_op_expr = @bit_not_expr;
+@bit_expr = @un_bit_op_expr | @bin_bit_op_expr;
+
+@equality_op_expr =  @eq_expr | @ne_expr;
+@rel_op_expr = @gt_expr | @lt_expr| @ge_expr | @le_expr;
+@comp_expr = @equality_op_expr | @rel_op_expr;
+
+@op_expr = @assign_expr | @un_op | @bin_op | @ternary_op;
+
+@ternary_op = @ternary_log_op_expr;
+@bin_op = @bin_arith_op_expr | @bin_log_op_expr | @bin_bit_op_expr | @comp_expr;
+@un_op = @un_arith_op_expr | @un_log_op_expr | @un_bit_op_expr | @sizeof_expr
+       | @pointer_indirection_expr | @address_of_expr;
+
+@anonymous_function_expr = @lambda_expr | @anonymous_method_expr;
+
+@call = @method_invocation_expr | @constructor_init_expr | @operator_invocation_expr
+      | @delegate_invocation_expr | @object_creation_expr | @call_access_expr
+      | @local_function_invocation_expr | @function_pointer_invocation_expr;
+
+@call_access_expr = @property_access_expr | @event_access_expr | @indexer_access_expr;
+
+@late_bindable_expr = @dynamic_element_access_expr | @dynamic_member_access_expr
+                    | @object_creation_expr | @method_invocation_expr | @operator_invocation_expr;
+
+@throw_element = @throw_expr | @throw_stmt;
+
+@implicitly_typeable_object_creation_expr = @object_creation_expr | @explicit_delegate_creation_expr;
+
+implicitly_typed_array_creation(
+  unique int id: @array_creation_expr ref);
+
+explicitly_sized_array_creation(
+  unique int id: @array_creation_expr ref);
+
+stackalloc_array_creation(
+  unique int id: @array_creation_expr ref);
+
+implicitly_typed_object_creation(
+  unique int id: @implicitly_typeable_object_creation_expr ref);
+
+mutator_invocation_mode(
+  unique int id: @operator_invocation_expr ref,
+  int mode: int ref /* prefix = 1, postfix = 2*/);
+
+expr_compiler_generated(
+  unique int id: @expr ref);
+
+expr_value(
+  unique int id: @expr ref,
+  string value: string ref);
+
+expr_call(
+  unique int caller_id: @expr ref,
+  int target_id: @callable ref);
+
+expr_access(
+  unique int accesser_id: @access_expr ref,
+  int target_id: @accessible ref);
+
+@accessible = @method | @assignable | @local_function | @namespace;
+
+expr_location(
+  unique int id: @expr ref,
+  int loc: @location ref);
+
+dynamic_member_name(
+  unique int id: @late_bindable_expr ref,
+  string name: string ref);
+
+@qualifiable_expr = @member_access_expr
+                  | @method_invocation_expr
+                  | @element_access_expr;
+
+conditional_access(
+  unique int id: @qualifiable_expr ref);
+
+expr_argument(
+  unique int id: @expr ref,
+  int mode: int ref);
+  /* mode is the same as params: value = 0, ref = 1, out = 2 */
+
+expr_argument_name(
+  unique int id: @expr ref,
+  string name: string ref);
+
+lambda_expr_return_type(
+  unique int id: @lambda_expr ref,
+  int type_id: @type_or_ref ref);
+  
+/** CONTROL/DATA FLOW **/
+
+@control_flow_element = @stmt | @expr;
+
+/* XML Files */
+
+xmlEncoding  (
+  unique int id: @file ref,
+  string encoding: string ref);
+
+xmlDTDs(
+  unique int id: @xmldtd,
+  string root: string ref,
+  string publicId: string ref,
+  string systemId: string ref,
+  int fileid: @file ref);
+
+xmlElements(
+  unique int id: @xmlelement,
+  string name: string ref,
+  int parentid: @xmlparent ref,
+  int idx: int ref,
+  int fileid: @file ref);
+
+xmlAttrs(
+  unique int id: @xmlattribute,
+  int elementid: @xmlelement ref,
+  string name: string ref,
+  string value: string ref,
+  int idx: int ref,
+  int fileid: @file ref);
+
+xmlNs(
+  int id: @xmlnamespace,
+  string prefixName: string ref,
+  string URI: string ref,
+  int fileid: @file ref);
+
+xmlHasNs(
+  int elementId: @xmlnamespaceable ref,
+  int nsId: @xmlnamespace ref,
+  int fileid: @file ref);
+
+xmlComments(
+  unique int id: @xmlcomment,
+  string text: string ref,
+  int parentid: @xmlparent ref,
+  int fileid: @file ref);
+
+xmlChars(
+  unique int id: @xmlcharacters,
+  string text: string ref,
+  int parentid: @xmlparent ref,
+  int idx: int ref,
+  int isCDATA: int ref,
+  int fileid: @file ref);
+
+@xmlparent = @file | @xmlelement;
+@xmlnamespaceable = @xmlelement | @xmlattribute;
+
+xmllocations(
+  int xmlElement: @xmllocatable ref,
+  int location: @location_default ref);
+
+@xmllocatable = @xmlcharacters | @xmlelement | @xmlcomment | @xmlattribute | @xmldtd | @file | @xmlnamespace;
+
+/* Comments */
+
+commentline(
+  unique int id: @commentline,
+  int kind: int ref,
+  string text: string ref,
+  string rawtext: string ref);
+
+case @commentline.kind of
+  0 = @singlelinecomment
+| 1 = @xmldoccomment
+| 2 = @multilinecomment;
+
+commentline_location(
+  unique int id: @commentline ref,
+  int loc: @location ref);
+
+commentblock(
+  unique int id : @commentblock);
+
+commentblock_location(
+  unique int id: @commentblock ref,
+  int loc: @location ref);
+
+commentblock_binding(
+  int id: @commentblock ref,
+  int entity: @element ref,
+  int bindtype: int ref);    /* 0: Parent, 1: Best, 2: Before, 3: After */
+
+commentblock_child(
+  int id: @commentblock ref,
+  int commentline: @commentline ref,
+  int index: int ref);
+
+/* ASP.NET */
+
+case @asp_element.kind of
+  0=@asp_close_tag
+| 1=@asp_code
+| 2=@asp_comment
+| 3=@asp_data_binding
+| 4=@asp_directive
+| 5=@asp_open_tag
+| 6=@asp_quoted_string
+| 7=@asp_text
+| 8=@asp_xml_directive;
+
+@asp_attribute = @asp_code | @asp_data_binding | @asp_quoted_string;
+
+asp_elements(
+  unique int id: @asp_element,
+  int kind: int ref,
+  int loc: @location ref);
+
+asp_comment_server(unique int comment: @asp_comment ref);
+asp_code_inline(unique int code: @asp_code ref);
+asp_directive_attribute(
+  int directive: @asp_directive ref,
+  int index: int ref,
+  string name: string ref,
+  int value: @asp_quoted_string ref);
+asp_directive_name(
+  unique int directive: @asp_directive ref,
+  string name: string ref);
+asp_element_body(
+  unique int element: @asp_element ref,
+  string body: string ref);
+asp_tag_attribute(
+  int tag: @asp_open_tag ref,
+  int index: int ref,
+  string name: string ref,
+  int attribute: @asp_attribute ref);
+asp_tag_name(
+  unique int tag: @asp_open_tag ref,
+  string name: string ref);
+asp_tag_isempty(int tag: @asp_open_tag ref);
+
+/* Common Intermediate Language - CIL */
+
+case @cil_instruction.opcode of
+  0 = @cil_nop
+| 1 = @cil_break
+| 2 = @cil_ldarg_0
+| 3 = @cil_ldarg_1
+| 4 = @cil_ldarg_2
+| 5 = @cil_ldarg_3
+| 6 = @cil_ldloc_0
+| 7 = @cil_ldloc_1
+| 8 = @cil_ldloc_2
+| 9 = @cil_ldloc_3
+| 10 = @cil_stloc_0
+| 11 = @cil_stloc_1
+| 12 = @cil_stloc_2
+| 13 = @cil_stloc_3
+| 14 = @cil_ldarg_s
+| 15 = @cil_ldarga_s
+| 16 = @cil_starg_s
+| 17 = @cil_ldloc_s
+| 18 = @cil_ldloca_s
+| 19 = @cil_stloc_s
+| 20 = @cil_ldnull
+| 21 = @cil_ldc_i4_m1
+| 22 = @cil_ldc_i4_0
+| 23 = @cil_ldc_i4_1
+| 24 = @cil_ldc_i4_2
+| 25 = @cil_ldc_i4_3
+| 26 = @cil_ldc_i4_4
+| 27 = @cil_ldc_i4_5
+| 28 = @cil_ldc_i4_6
+| 29 = @cil_ldc_i4_7
+| 30 = @cil_ldc_i4_8
+| 31 = @cil_ldc_i4_s
+| 32 = @cil_ldc_i4
+| 33 = @cil_ldc_i8
+| 34 = @cil_ldc_r4
+| 35 = @cil_ldc_r8
+| 37 = @cil_dup
+| 38 = @cil_pop
+| 39 = @cil_jmp
+| 40 = @cil_call
+| 41 = @cil_calli
+| 42 = @cil_ret
+| 43 = @cil_br_s
+| 44 = @cil_brfalse_s
+| 45 = @cil_brtrue_s
+| 46 = @cil_beq_s
+| 47 = @cil_bge_s
+| 48 = @cil_bgt_s
+| 49 = @cil_ble_s
+| 50 = @cil_blt_s
+| 51 = @cil_bne_un_s
+| 52 = @cil_bge_un_s
+| 53 = @cil_bgt_un_s
+| 54 = @cil_ble_un_s
+| 55 = @cil_blt_un_s
+| 56 = @cil_br
+| 57 = @cil_brfalse
+| 58 = @cil_brtrue
+| 59 = @cil_beq
+| 60 = @cil_bge
+| 61 = @cil_bgt
+| 62 = @cil_ble
+| 63 = @cil_blt
+| 64 = @cil_bne_un
+| 65 = @cil_bge_un
+| 66 = @cil_bgt_un
+| 67 = @cil_ble_un
+| 68 = @cil_blt_un
+| 69 = @cil_switch
+| 70 = @cil_ldind_i1
+| 71 = @cil_ldind_u1
+| 72 = @cil_ldind_i2
+| 73 = @cil_ldind_u2
+| 74 = @cil_ldind_i4
+| 75 = @cil_ldind_u4
+| 76 = @cil_ldind_i8
+| 77 = @cil_ldind_i
+| 78 = @cil_ldind_r4
+| 79 = @cil_ldind_r8
+| 80 = @cil_ldind_ref
+| 81 = @cil_stind_ref
+| 82 = @cil_stind_i1
+| 83 = @cil_stind_i2
+| 84 = @cil_stind_i4
+| 85 = @cil_stind_i8
+| 86 = @cil_stind_r4
+| 87 = @cil_stind_r8
+| 88 = @cil_add
+| 89 = @cil_sub
+| 90 = @cil_mul
+| 91 = @cil_div
+| 92 = @cil_div_un
+| 93 = @cil_rem
+| 94 = @cil_rem_un
+| 95 = @cil_and
+| 96 = @cil_or
+| 97 = @cil_xor
+| 98 = @cil_shl
+| 99 = @cil_shr
+| 100 = @cil_shr_un
+| 101 = @cil_neg
+| 102 = @cil_not
+| 103 = @cil_conv_i1
+| 104 = @cil_conv_i2
+| 105 = @cil_conv_i4
+| 106 = @cil_conv_i8
+| 107 = @cil_conv_r4
+| 108 = @cil_conv_r8
+| 109 = @cil_conv_u4
+| 110 = @cil_conv_u8
+| 111 = @cil_callvirt
+| 112 = @cil_cpobj
+| 113 = @cil_ldobj
+| 114 = @cil_ldstr
+| 115 = @cil_newobj
+| 116 = @cil_castclass
+| 117 = @cil_isinst
+| 118 = @cil_conv_r_un
+| 121 = @cil_unbox
+| 122 = @cil_throw
+| 123 = @cil_ldfld
+| 124 = @cil_ldflda
+| 125 = @cil_stfld
+| 126 = @cil_ldsfld
+| 127 = @cil_ldsflda
+| 128 = @cil_stsfld
+| 129 = @cil_stobj
+| 130 = @cil_conv_ovf_i1_un
+| 131 = @cil_conv_ovf_i2_un
+| 132 = @cil_conv_ovf_i4_un
+| 133 = @cil_conv_ovf_i8_un
+| 134 = @cil_conv_ovf_u1_un
+| 135 = @cil_conv_ovf_u2_un
+| 136 = @cil_conv_ovf_u4_un
+| 137 = @cil_conv_ovf_u8_un
+| 138 = @cil_conv_ovf_i_un
+| 139 = @cil_conv_ovf_u_un
+| 140 = @cil_box
+| 141 = @cil_newarr
+| 142 = @cil_ldlen
+| 143 = @cil_ldelema
+| 144 = @cil_ldelem_i1
+| 145 = @cil_ldelem_u1
+| 146 = @cil_ldelem_i2
+| 147 = @cil_ldelem_u2
+| 148 = @cil_ldelem_i4
+| 149 = @cil_ldelem_u4
+| 150 = @cil_ldelem_i8
+| 151 = @cil_ldelem_i
+| 152 = @cil_ldelem_r4
+| 153 = @cil_ldelem_r8
+| 154 = @cil_ldelem_ref
+| 155 = @cil_stelem_i
+| 156 = @cil_stelem_i1
+| 157 = @cil_stelem_i2
+| 158 = @cil_stelem_i4
+| 159 = @cil_stelem_i8
+| 160 = @cil_stelem_r4
+| 161 = @cil_stelem_r8
+| 162 = @cil_stelem_ref
+| 163 = @cil_ldelem
+| 164 = @cil_stelem
+| 165 = @cil_unbox_any
+| 179 = @cil_conv_ovf_i1
+| 180 = @cil_conv_ovf_u1
+| 181 = @cil_conv_ovf_i2
+| 182 = @cil_conv_ovf_u2
+| 183 = @cil_conv_ovf_i4
+| 184 = @cil_conv_ovf_u4
+| 185 = @cil_conv_ovf_i8
+| 186 = @cil_conv_ovf_u8
+| 194 = @cil_refanyval
+| 195 = @cil_ckinfinite
+| 198 = @cil_mkrefany
+| 208 = @cil_ldtoken
+| 209 = @cil_conv_u2
+| 210 = @cil_conv_u1
+| 211 = @cil_conv_i
+| 212 = @cil_conv_ovf_i
+| 213 = @cil_conv_ovf_u
+| 214 = @cil_add_ovf
+| 215 = @cil_add_ovf_un
+| 216 = @cil_mul_ovf
+| 217 = @cil_mul_ovf_un
+| 218 = @cil_sub_ovf
+| 219 = @cil_sub_ovf_un
+| 220 = @cil_endfinally
+| 221 = @cil_leave
+| 222 = @cil_leave_s
+| 223 = @cil_stind_i
+| 224 = @cil_conv_u
+| 65024 = @cil_arglist
+| 65025 = @cil_ceq
+| 65026 = @cil_cgt
+| 65027 = @cil_cgt_un
+| 65028 = @cil_clt
+| 65029 = @cil_clt_un
+| 65030 = @cil_ldftn
+| 65031 = @cil_ldvirtftn
+| 65033 = @cil_ldarg
+| 65034 = @cil_ldarga
+| 65035 = @cil_starg
+| 65036 = @cil_ldloc
+| 65037 = @cil_ldloca
+| 65038 = @cil_stloc
+| 65039 = @cil_localloc
+| 65041 = @cil_endfilter
+| 65042 = @cil_unaligned
+| 65043 = @cil_volatile
+| 65044 = @cil_tail
+| 65045 = @cil_initobj
+| 65046 = @cil_constrained
+| 65047 = @cil_cpblk
+| 65048 = @cil_initblk
+| 65050 = @cil_rethrow
+| 65052 = @cil_sizeof
+| 65053 = @cil_refanytype
+| 65054 = @cil_readonly
+;
+
+// CIL ignored instructions
+
+@cil_ignore = @cil_nop | @cil_break | @cil_volatile | @cil_unaligned;
+
+// CIL local/parameter/field access
+
+@cil_ldarg_any = @cil_ldarg_0 | @cil_ldarg_1 | @cil_ldarg_2 | @cil_ldarg_3 | @cil_ldarg_s | @cil_ldarga_s | @cil_ldarg | @cil_ldarga;
+@cil_starg_any = @cil_starg | @cil_starg_s;
+
+@cil_ldloc_any = @cil_ldloc_0 | @cil_ldloc_1 | @cil_ldloc_2 | @cil_ldloc_3 | @cil_ldloc_s | @cil_ldloca_s | @cil_ldloc | @cil_ldloca;
+@cil_stloc_any = @cil_stloc_0 | @cil_stloc_1 | @cil_stloc_2 | @cil_stloc_3 | @cil_stloc_s | @cil_stloc;
+
+@cil_ldfld_any = @cil_ldfld | @cil_ldsfld | @cil_ldsflda | @cil_ldflda;
+@cil_stfld_any = @cil_stfld | @cil_stsfld;
+
+@cil_local_access = @cil_stloc_any | @cil_ldloc_any;
+@cil_arg_access = @cil_starg_any | @cil_ldarg_any;
+@cil_read_access = @cil_ldloc_any | @cil_ldarg_any | @cil_ldfld_any;
+@cil_write_access = @cil_stloc_any | @cil_starg_any | @cil_stfld_any;
+
+@cil_stack_access = @cil_local_access | @cil_arg_access;
+@cil_field_access = @cil_ldfld_any | @cil_stfld_any;
+
+@cil_access = @cil_read_access | @cil_write_access;
+
+// CIL constant/literal instructions
+
+@cil_ldc_i = @cil_ldc_i4_any | @cil_ldc_i8;
+
+@cil_ldc_i4_any = @cil_ldc_i4_m1 | @cil_ldc_i4_0 | @cil_ldc_i4_1 | @cil_ldc_i4_2 | @cil_ldc_i4_3 |
+  @cil_ldc_i4_4 | @cil_ldc_i4_5 | @cil_ldc_i4_6 | @cil_ldc_i4_7 | @cil_ldc_i4_8 | @cil_ldc_i4_s | @cil_ldc_i4;
+
+@cil_ldc_r = @cil_ldc_r4 | @cil_ldc_r8;
+
+@cil_literal = @cil_ldnull | @cil_ldc_i | @cil_ldc_r | @cil_ldstr;
+
+// Control flow
+
+@cil_conditional_jump = @cil_binary_jump | @cil_unary_jump;
+@cil_binary_jump = @cil_beq_s | @cil_bge_s | @cil_bgt_s | @cil_ble_s | @cil_blt_s |
+    @cil_bne_un_s | @cil_bge_un_s | @cil_bgt_un_s | @cil_ble_un_s | @cil_blt_un_s |
+    @cil_beq | @cil_bge | @cil_bgt | @cil_ble | @cil_blt |
+    @cil_bne_un | @cil_bge_un | @cil_bgt_un | @cil_ble_un | @cil_blt_un;
+@cil_unary_jump = @cil_brfalse_s | @cil_brtrue_s | @cil_brfalse | @cil_brtrue | @cil_switch;
+@cil_unconditional_jump = @cil_br | @cil_br_s | @cil_leave_any;
+@cil_leave_any = @cil_leave | @cil_leave_s;
+@cil_jump = @cil_unconditional_jump | @cil_conditional_jump;
+
+// CIL call instructions
+
+@cil_call_any = @cil_jmp | @cil_call | @cil_calli | @cil_tail | @cil_callvirt | @cil_newobj;
+
+// CIL expression instructions
+
+@cil_expr = @cil_literal | @cil_binary_expr | @cil_unary_expr | @cil_call_any | @cil_read_access |
+  @cil_newarr | @cil_ldtoken | @cil_sizeof |
+  @cil_ldftn | @cil_ldvirtftn | @cil_localloc | @cil_mkrefany | @cil_refanytype | @cil_arglist | @cil_dup;
+
+@cil_unary_expr =
+  @cil_conversion_operation | @cil_unary_arithmetic_operation | @cil_unary_bitwise_operation|
+  @cil_ldlen | @cil_isinst | @cil_box | @cil_ldobj | @cil_castclass | @cil_unbox_any |
+  @cil_ldind | @cil_unbox;
+
+@cil_conversion_operation =
+  @cil_conv_i1 | @cil_conv_i2 | @cil_conv_i4 | @cil_conv_i8 |
+  @cil_conv_u1 | @cil_conv_u2 | @cil_conv_u4 | @cil_conv_u8 |
+  @cil_conv_ovf_i | @cil_conv_ovf_i_un | @cil_conv_ovf_i1 | @cil_conv_ovf_i1_un |
+  @cil_conv_ovf_i2 | @cil_conv_ovf_i2_un | @cil_conv_ovf_i4 | @cil_conv_ovf_i4_un |
+  @cil_conv_ovf_i8 | @cil_conv_ovf_i8_un | @cil_conv_ovf_u | @cil_conv_ovf_u_un |
+  @cil_conv_ovf_u1 | @cil_conv_ovf_u1_un | @cil_conv_ovf_u2 | @cil_conv_ovf_u2_un |
+  @cil_conv_ovf_u4 | @cil_conv_ovf_u4_un | @cil_conv_ovf_u8 | @cil_conv_ovf_u8_un |
+  @cil_conv_r4 | @cil_conv_r8 | @cil_conv_ovf_u2 | @cil_conv_ovf_u2_un |
+  @cil_conv_i | @cil_conv_u | @cil_conv_r_un;
+
+@cil_ldind = @cil_ldind_i | @cil_ldind_i1 | @cil_ldind_i2 | @cil_ldind_i4 | @cil_ldind_i8 |
+  @cil_ldind_r4 | @cil_ldind_r8 | @cil_ldind_ref | @cil_ldind_u1 | @cil_ldind_u2 | @cil_ldind_u4;
+
+@cil_stind = @cil_stind_i | @cil_stind_i1 | @cil_stind_i2 | @cil_stind_i4 | @cil_stind_i8 |
+  @cil_stind_r4 | @cil_stind_r8 | @cil_stind_ref;
+
+@cil_bitwise_operation = @cil_binary_bitwise_operation | @cil_unary_bitwise_operation;
+
+@cil_binary_bitwise_operation = @cil_and | @cil_or | @cil_xor | @cil_shr | @cil_shr | @cil_shr_un | @cil_shl;
+
+@cil_binary_arithmetic_operation = @cil_add | @cil_sub | @cil_mul | @cil_div | @cil_div_un |
+  @cil_rem | @cil_rem_un | @cil_add_ovf | @cil_add_ovf_un | @cil_mul_ovf | @cil_mul_ovf_un |
+  @cil_sub_ovf | @cil_sub_ovf_un;
+
+@cil_unary_bitwise_operation = @cil_not;
+
+@cil_binary_expr = @cil_binary_arithmetic_operation | @cil_binary_bitwise_operation | @cil_read_array | @cil_comparison_operation;
+
+@cil_unary_arithmetic_operation = @cil_neg;
+
+@cil_comparison_operation = @cil_cgt_un | @cil_ceq | @cil_cgt | @cil_clt | @cil_clt_un;
+
+// Elements that retrieve an address of something
+@cil_read_ref = @cil_ldloca_s | @cil_ldarga_s | @cil_ldflda | @cil_ldsflda | @cil_ldelema;
+
+// CIL array instructions
+
+@cil_read_array =
+  @cil_ldelem | @cil_ldelema | @cil_ldelem_i1 | @cil_ldelem_ref | @cil_ldelem_i |
+  @cil_ldelem_i1 | @cil_ldelem_i2 | @cil_ldelem_i4 | @cil_ldelem_i8 | @cil_ldelem_r4 |
+  @cil_ldelem_r8 | @cil_ldelem_u1 | @cil_ldelem_u2 | @cil_ldelem_u4;
+
+@cil_write_array = @cil_stelem | @cil_stelem_ref |
+  @cil_stelem_i | @cil_stelem_i1 | @cil_stelem_i2 | @cil_stelem_i4 | @cil_stelem_i8 |
+  @cil_stelem_r4 | @cil_stelem_r8;
+
+@cil_throw_any = @cil_throw | @cil_rethrow;
+
+#keyset[impl, index]
+cil_instruction(
+  unique int id: @cil_instruction,
+  int opcode: int ref,
+  int index: int ref,
+  int impl: @cil_method_implementation ref);
+
+cil_jump(
+  unique int instruction: @cil_jump ref,
+  int target: @cil_instruction ref);
+
+cil_access(
+  unique int instruction: @cil_instruction ref,
+  int target: @cil_accessible ref);
+
+cil_value(
+  unique int instruction: @cil_literal ref,
+  string value: string ref);
+
+#keyset[instruction, index]
+cil_switch(
+  int instruction: @cil_switch ref,
+  int index: int ref,
+  int target: @cil_instruction ref);
+
+cil_instruction_location(
+  unique int id: @cil_instruction ref,
+  int loc: @location ref);
+
+cil_type_location(
+  int id: @cil_type ref,
+  int loc: @location ref);
+
+cil_method_location(
+  int id: @cil_method ref,
+  int loc: @location ref);
+
+@cil_namespace = @namespace;
+
+@cil_type_container = @cil_type | @cil_namespace | @cil_method;
+
+case @cil_type.kind of
+  0 = @cil_valueorreftype
+| 1 = @cil_typeparameter
+| 2 = @cil_array_type
+| 3 = @cil_pointer_type
+| 4 = @cil_function_pointer_type
+;
+
+cil_type(
+  unique int id: @cil_type,
+  string name: string ref,
+  int kind: int ref,
+  int parent: @cil_type_container ref,
+  int sourceDecl: @cil_type ref);
+
+cil_pointer_type(
+  unique int id: @cil_pointer_type ref,
+  int pointee: @cil_type ref);
+
+cil_array_type(
+  unique int id: @cil_array_type ref,
+  int element_type: @cil_type ref,
+  int rank: int ref);
+
+cil_function_pointer_return_type(
+  unique int id: @cil_function_pointer_type ref,
+  int return_type: @cil_type ref);
+
+cil_method(
+  unique int id: @cil_method,
+  string name: string ref,
+  int parent: @cil_type ref,
+  int return_type: @cil_type ref);
+
+cil_method_source_declaration(
+  unique int method: @cil_method ref,
+  int source: @cil_method ref);
+
+cil_method_implementation(
+  unique int id: @cil_method_implementation,
+  int method: @cil_method ref,
+  int location: @assembly ref);
+
+cil_implements(
+  int id: @cil_method ref,
+  int decl: @cil_method ref);
+
+#keyset[parent, name]
+cil_field(
+  unique int id: @cil_field,
+  int parent: @cil_type ref,
+  string name: string ref,
+  int field_type: @cil_type ref);
+
+@cil_element = @cil_instruction | @cil_declaration | @cil_handler | @cil_attribute | @cil_namespace;
+@cil_named_element = @cil_declaration | @cil_namespace;
+@cil_declaration = @cil_variable | @cil_method | @cil_type | @cil_member;
+@cil_accessible = @cil_declaration;
+@cil_variable = @cil_field | @cil_stack_variable;
+@cil_stack_variable = @cil_local_variable | @cil_parameter;
+@cil_member = @cil_method | @cil_type | @cil_field | @cil_property | @cil_event;
+@cil_custom_modifier_receiver = @cil_method | @cil_property | @cil_parameter | @cil_field | @cil_function_pointer_type;
+@cil_parameterizable = @cil_method | @cil_function_pointer_type;
+@cil_has_type_annotation = @cil_stack_variable | @cil_property | @cil_method | @cil_function_pointer_type;
+
+#keyset[parameterizable, index]
+cil_parameter(
+  unique int id: @cil_parameter,
+  int parameterizable: @cil_parameterizable ref,
+  int index: int ref,
+  int param_type: @cil_type ref);
+
+cil_parameter_in(unique int id: @cil_parameter ref);
+cil_parameter_out(unique int id: @cil_parameter ref);
+
+cil_setter(unique int prop: @cil_property ref,
+  int method: @cil_method ref);
+
+#keyset[id, modifier]
+cil_custom_modifiers(
+  int id: @cil_custom_modifier_receiver ref,
+  int modifier: @cil_type ref,
+  int kind: int ref); // modreq: 1, modopt: 0
+
+cil_type_annotation(
+  int id: @cil_has_type_annotation ref,
+  int annotation: int ref);
+
+cil_getter(unique int prop: @cil_property ref,
+  int method: @cil_method ref);
+
+cil_adder(unique int event: @cil_event ref,
+  int method: @cil_method ref);
+
+cil_remover(unique int event: @cil_event ref, int method: @cil_method ref);
+
+cil_raiser(unique int event: @cil_event ref, int method: @cil_method ref);
+
+cil_property(
+  unique int id: @cil_property,
+  int parent: @cil_type ref,
+  string name: string ref,
+  int property_type: @cil_type ref);
+
+#keyset[parent, name]
+cil_event(unique int id: @cil_event,
+  int parent: @cil_type ref,
+  string name: string ref,
+  int event_type: @cil_type ref);
+
+#keyset[impl, index]
+cil_local_variable(
+  unique int id: @cil_local_variable,
+  int impl: @cil_method_implementation ref,
+  int index: int ref,
+  int var_type: @cil_type ref);
+
+cil_function_pointer_calling_conventions(
+  int id: @cil_function_pointer_type ref,
+  int kind: int ref);
+
+// CIL handlers (exception handlers etc).
+
+case @cil_handler.kind of
+  0 = @cil_catch_handler
+| 1 = @cil_filter_handler
+| 2 = @cil_finally_handler
+| 4 = @cil_fault_handler
+;
+
+#keyset[impl, index]
+cil_handler(
+  unique int id: @cil_handler,
+  int impl: @cil_method_implementation ref,
+  int index: int ref,
+  int kind: int ref,
+  int try_start: @cil_instruction ref,
+  int try_end: @cil_instruction ref,
+  int handler_start: @cil_instruction ref);
+
+cil_handler_filter(
+  unique int id: @cil_handler ref,
+  int filter_start: @cil_instruction ref);
+
+cil_handler_type(
+  unique int id: @cil_handler ref,
+  int catch_type: @cil_type ref);
+
+@cil_controlflow_node = @cil_entry_point | @cil_instruction;
+
+@cil_entry_point = @cil_method_implementation | @cil_handler;
+
+@cil_dataflow_node = @cil_instruction | @cil_variable | @cil_method;
+
+cil_method_stack_size(
+  unique int method: @cil_method_implementation ref,
+  int size: int ref);
+
+// CIL modifiers
+
+cil_public(int id: @cil_member ref);
+cil_private(int id: @cil_member ref);
+cil_protected(int id: @cil_member ref);
+cil_internal(int id: @cil_member ref);
+cil_static(int id: @cil_member ref);
+cil_sealed(int id: @cil_member ref);
+cil_virtual(int id: @cil_method ref);
+cil_abstract(int id: @cil_member ref);
+cil_class(int id: @cil_type ref);
+cil_interface(int id: @cil_type ref);
+cil_security(int id: @cil_member ref);
+cil_requiresecobject(int id: @cil_method ref);
+cil_specialname(int id: @cil_method ref);
+cil_newslot(int id: @cil_method ref);
+
+cil_base_class(unique int id: @cil_type ref, int base: @cil_type ref);
+cil_base_interface(int id: @cil_type ref, int base: @cil_type ref);
+cil_enum_underlying_type(unique int id: @cil_type ref, int underlying: @cil_type ref);
+
+#keyset[unbound, index]
+cil_type_parameter(
+  int unbound: @cil_member ref,
+  int index: int ref,
+  int param: @cil_typeparameter ref);
+
+#keyset[bound, index]
+cil_type_argument(
+  int bound: @cil_member ref,
+  int index: int ref,
+  int t: @cil_type ref);
+
+// CIL type parameter constraints
+
+cil_typeparam_covariant(int tp: @cil_typeparameter ref);
+cil_typeparam_contravariant(int tp: @cil_typeparameter ref);
+cil_typeparam_class(int tp: @cil_typeparameter ref);
+cil_typeparam_struct(int tp: @cil_typeparameter ref);
+cil_typeparam_new(int tp: @cil_typeparameter ref);
+cil_typeparam_constraint(int tp: @cil_typeparameter ref, int supertype: @cil_type ref);
+
+// CIL attributes
+
+cil_attribute(
+  unique int attributeid: @cil_attribute,
+  int element: @cil_declaration ref,
+  int constructor: @cil_method ref);
+
+#keyset[attribute_id, param]
+cil_attribute_named_argument(
+  int attribute_id: @cil_attribute ref,
+  string param: string ref,
+  string value: string ref);
+
+#keyset[attribute_id, index]
+cil_attribute_positional_argument(
+  int attribute_id: @cil_attribute ref,
+  int index: int ref,
+  string value: string ref);
+
+
+// Common .Net data model covering both C# and CIL
+
+// Common elements
+@dotnet_element = @element | @cil_element;
+@dotnet_named_element = @named_element | @cil_named_element;
+@dotnet_callable = @callable | @cil_method;
+@dotnet_variable = @variable | @cil_variable;
+@dotnet_field = @field | @cil_field;
+@dotnet_parameter = @parameter | @cil_parameter;
+@dotnet_declaration = @declaration | @cil_declaration;
+@dotnet_member = @member | @cil_member;
+@dotnet_event = @event | @cil_event;
+@dotnet_property = @property | @cil_property | @indexer;
+@dotnet_parameterizable = @parameterizable | @cil_parameterizable;
+
+// Common types
+@dotnet_type = @type | @cil_type;
+@dotnet_call = @call | @cil_call_any;
+@dotnet_throw = @throw_element | @cil_throw_any;
+@dotnet_valueorreftype = @cil_valueorreftype | @value_or_ref_type | @cil_array_type | @void_type;
+@dotnet_typeparameter = @type_parameter | @cil_typeparameter;
+@dotnet_array_type = @array_type | @cil_array_type;
+@dotnet_pointer_type = @pointer_type | @cil_pointer_type;
+@dotnet_type_parameter = @type_parameter | @cil_typeparameter;
+@dotnet_generic = @dotnet_valueorreftype | @dotnet_callable;
+
+// Attributes
+@dotnet_attribute = @attribute | @cil_attribute;
+
+// Expressions
+@dotnet_expr = @expr | @cil_expr;
+
+// Literals
+@dotnet_literal = @literal_expr | @cil_literal;
+@dotnet_string_literal = @string_literal_expr | @cil_ldstr;
+@dotnet_int_literal = @integer_literal_expr | @cil_ldc_i;
+@dotnet_float_literal = @float_literal_expr | @cil_ldc_r;
+@dotnet_null_literal = @null_literal_expr | @cil_ldnull;
+
+@metadata_entity = @cil_method | @cil_type | @cil_field | @cil_property | @field | @property |
+    @callable | @value_or_ref_type | @void_type;
+
+#keyset[entity, location]
+metadata_handle(int entity : @metadata_entity ref, int location: @assembly ref, int handle: int ref)
diff --git a/csharp/downgrades/83aca6b3e4fa38dd2b97b9b51dfc199a2ba9c7f2/upgrade.properties b/csharp/downgrades/83aca6b3e4fa38dd2b97b9b51dfc199a2ba9c7f2/upgrade.properties
new file mode 100644
index 00000000000..0a3603f1ef8
--- /dev/null
+++ b/csharp/downgrades/83aca6b3e4fa38dd2b97b9b51dfc199a2ba9c7f2/upgrade.properties
@@ -0,0 +1,2 @@
+description: Remove list- and slice pattern expression kinds.
+compatibility: backwards

From 352ae7919b5ddf07cdc9c25c3791bc69b3c3bf79 Mon Sep 17 00:00:00 2001
From: Michael Nebel <michaelnebel@github.com>
Date: Thu, 8 Dec 2022 14:26:19 +0100
Subject: [PATCH 1390/1420] C#: Add change note.

---
 csharp/ql/lib/change-notes/2022-12-08-listpatterns.md | 4 ++++
 1 file changed, 4 insertions(+)
 create mode 100644 csharp/ql/lib/change-notes/2022-12-08-listpatterns.md

diff --git a/csharp/ql/lib/change-notes/2022-12-08-listpatterns.md b/csharp/ql/lib/change-notes/2022-12-08-listpatterns.md
new file mode 100644
index 00000000000..5f11d1bed81
--- /dev/null
+++ b/csharp/ql/lib/change-notes/2022-12-08-listpatterns.md
@@ -0,0 +1,4 @@
+---
+category: minorAnalysis
+---
+* C# 11: Added support for list- and slice patterns in the extractor.
\ No newline at end of file

From f8b1fb465b9238ddb536edd0016accdd3c0ac12e Mon Sep 17 00:00:00 2001
From: Michael Nebel <michaelnebel@github.com>
Date: Tue, 13 Dec 2022 14:43:36 +0100
Subject: [PATCH 1391/1420] C#: Downgrade script should convert list- and slice
 pattern to unknown expression kind.

---
 .../expressions.ql                                  | 13 +++++++++++++
 .../upgrade.properties                              |  1 +
 2 files changed, 14 insertions(+)
 create mode 100644 csharp/downgrades/83aca6b3e4fa38dd2b97b9b51dfc199a2ba9c7f2/expressions.ql

diff --git a/csharp/downgrades/83aca6b3e4fa38dd2b97b9b51dfc199a2ba9c7f2/expressions.ql b/csharp/downgrades/83aca6b3e4fa38dd2b97b9b51dfc199a2ba9c7f2/expressions.ql
new file mode 100644
index 00000000000..05b9e374f10
--- /dev/null
+++ b/csharp/downgrades/83aca6b3e4fa38dd2b97b9b51dfc199a2ba9c7f2/expressions.ql
@@ -0,0 +1,13 @@
+class Expression extends @expr {
+  string toString() { none() }
+}
+
+class TypeOrRef extends @type_or_ref {
+  string toString() { none() }
+}
+
+from Expression e, int k, int kind, TypeOrRef t
+where
+  expressions(e, k, t) and
+  if k = [131, 132] then kind = 106 else kind = k
+select e, kind, t
diff --git a/csharp/downgrades/83aca6b3e4fa38dd2b97b9b51dfc199a2ba9c7f2/upgrade.properties b/csharp/downgrades/83aca6b3e4fa38dd2b97b9b51dfc199a2ba9c7f2/upgrade.properties
index 0a3603f1ef8..f6ae8c489a2 100644
--- a/csharp/downgrades/83aca6b3e4fa38dd2b97b9b51dfc199a2ba9c7f2/upgrade.properties
+++ b/csharp/downgrades/83aca6b3e4fa38dd2b97b9b51dfc199a2ba9c7f2/upgrade.properties
@@ -1,2 +1,3 @@
 description: Remove list- and slice pattern expression kinds.
 compatibility: backwards
+expressions.rel: run expressions.qlo
\ No newline at end of file

From cb84b557cff2611ef3f59f10b08f37f847780b94 Mon Sep 17 00:00:00 2001
From: Tom Hvitved <hvitved@github.com>
Date: Tue, 13 Dec 2022 15:35:56 +0100
Subject: [PATCH 1392/1420] Data flow: Track parameter instead of parameter
 position

Reverts 70d2a0df8af532b0422c13c9d46d93085c147d84.
---
 .../ruby/dataflow/internal/DataFlowImpl.qll   | 86 +++++++++----------
 .../dataflow/internal/DataFlowImplCommon.qll  | 18 ++--
 2 files changed, 49 insertions(+), 55 deletions(-)

diff --git a/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImpl.qll b/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImpl.qll
index 6741ccc2f06..cdd61fe91ae 100644
--- a/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImpl.qll
+++ b/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImpl.qll
@@ -1327,8 +1327,8 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     additional predicate fwdFlow(
-      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      Ap ap, ApApprox apa, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      ApApprox apa, Configuration config
     ) {
       fwdFlow0(node, state, cc, summaryCtx, argAp, ap, apa, config) and
       PrevStage::revFlow(node, state, apa, config) and
@@ -1337,21 +1337,21 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[inline]
     additional predicate fwdFlow(
-      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      Ap ap, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      Configuration config
     ) {
       fwdFlow(node, state, cc, summaryCtx, argAp, ap, _, config)
     }
 
     pragma[nomagic]
     private predicate fwdFlow0(
-      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      Ap ap, ApApprox apa, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      ApApprox apa, Configuration config
     ) {
       sourceNode(node, state, config) and
       (if hasSourceCallCtx(config) then cc = ccSomeCall() else cc = ccNone()) and
       argAp = apNone() and
-      summaryCtx = TParameterPositionNone() and
+      summaryCtx = TParamNodeNone() and
       ap = getApNil(node) and
       apa = getApprox(ap)
       or
@@ -1372,7 +1372,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, apa, pragma[only_bind_into](config)) and
         jumpStep(mid, node, config) and
         cc = ccNone() and
-        summaryCtx = TParameterPositionNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone()
       )
       or
@@ -1380,7 +1380,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, state, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStep(mid, node, config) and
         cc = ccNone() and
-        summaryCtx = TParameterPositionNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone() and
         ap = getApNil(node) and
         apa = getApprox(ap)
@@ -1390,7 +1390,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, state0, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStateStep(mid, state0, node, state, config) and
         cc = ccNone() and
-        summaryCtx = TParameterPositionNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone() and
         ap = getApNil(node) and
         apa = getApprox(ap)
@@ -1414,10 +1414,10 @@ private module MkStage<StageSig PrevStage> {
       fwdFlowIn(_, node, state, _, cc, _, _, ap, apa, config) and
       if PrevStage::parameterMayFlowThrough(node, apa, config)
       then (
-        summaryCtx = TParameterPositionSome(node.(ParamNodeEx).getPosition()) and
+        summaryCtx = TParamNodeSome(node.asNode()) and
         argAp = apSome(ap)
       ) else (
-        summaryCtx = TParameterPositionNone() and argAp = apNone()
+        summaryCtx = TParamNodeNone() and argAp = apNone()
       )
       or
       // flow out of a callable
@@ -1433,7 +1433,7 @@ private module MkStage<StageSig PrevStage> {
       )
       or
       // flow through a callable
-      exists(DataFlowCall call, ParameterPosition summaryCtx0, Ap argAp0 |
+      exists(DataFlowCall call, ParamNodeEx summaryCtx0, Ap argAp0 |
         fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, apa, config) and
         fwdFlowIsEntered(call, cc, summaryCtx, argAp, summaryCtx0, argAp0, config)
       )
@@ -1442,7 +1442,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowStore(
       NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc,
-      ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
+      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
     ) {
       exists(DataFlowType contentType, ApApprox apa1 |
         fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, apa1, config) and
@@ -1473,8 +1473,8 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowRead0(
-      NodeEx node1, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      ApNonNil ap, Configuration config
+      NodeEx node1, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, ApNonNil ap,
+      Configuration config
     ) {
       fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, _, _, config)
@@ -1483,7 +1483,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowRead(
       Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc,
-      ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
+      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
     ) {
       fwdFlowRead0(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, c, node2, config) and
@@ -1493,7 +1493,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowIn(
       DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, CcCall innercc,
-      ParameterPositionOption summaryCtx, ApOption argAp, Ap ap, ApApprox apa, Configuration config
+      ParamNodeOption summaryCtx, ApOption argAp, Ap ap, ApApprox apa, Configuration config
     ) {
       exists(ArgNodeEx arg, boolean allowsFieldFlow |
         fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, apa, config) and
@@ -1505,23 +1505,22 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowRetFromArg(
-      RetNodeEx ret, FlowState state, CcCall ccc, ParameterPosition summaryCtx, ParamNodeEx p,
-      Ap argAp, ApApprox argApa, Ap ap, ApApprox apa, Configuration config
+      RetNodeEx ret, FlowState state, CcCall ccc, ParamNodeEx summaryCtx, Ap argAp, ApApprox argApa,
+      Ap ap, ApApprox apa, Configuration config
     ) {
-      exists(DataFlowCallable c, ReturnKindExt kind |
+      exists(ReturnKindExt kind |
         fwdFlow(pragma[only_bind_into](ret), state, ccc,
-          TParameterPositionSome(pragma[only_bind_into](summaryCtx)), apSome(argAp), ap, apa, config) and
+          TParamNodeSome(pragma[only_bind_into](summaryCtx.asNode())), apSome(argAp), ap, apa,
+          config) and
         getApprox(argAp) = argApa and
-        c = ret.getEnclosingCallable() and
         kind = ret.getKind() and
-        p.isParameterOf(c, pragma[only_bind_into](summaryCtx)) and
-        parameterFlowThroughAllowed(p, kind)
+        parameterFlowThroughAllowed(summaryCtx, kind)
       )
     }
 
     pragma[inline]
     private predicate fwdFlowInMayFlowThrough(
-      DataFlowCall call, Cc cc, CcCall innerCc, ParameterPositionOption summaryCtx, ApOption argAp,
+      DataFlowCall call, Cc cc, CcCall innerCc, ParamNodeOption summaryCtx, ApOption argAp,
       ParamNodeEx param, Ap ap, ApApprox apa, Configuration config
     ) {
       fwdFlowIn(call, pragma[only_bind_into](param), _, cc, innerCc, summaryCtx, argAp, ap,
@@ -1553,13 +1552,12 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowOutFromArg(
-      DataFlowCall call, NodeEx out, FlowState state, ParameterPosition summaryCtx, Ap argAp, Ap ap,
+      DataFlowCall call, NodeEx out, FlowState state, ParamNodeEx summaryCtx, Ap argAp, Ap ap,
       ApApprox apa, Configuration config
     ) {
       exists(RetNodeEx ret, boolean allowsFieldFlow, CcCall ccc, ApApprox argApa |
         fwdFlowRetFromArg(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc),
-          summaryCtx, _, argAp, pragma[only_bind_into](argApa), ap, pragma[only_bind_into](apa),
-          config) and
+          summaryCtx, argAp, pragma[only_bind_into](argApa), ap, pragma[only_bind_into](apa), config) and
         fwdFlowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, argApa, apa, config) and
         (if allowsFieldFlow = false then ap instanceof ApNil else any())
       )
@@ -1571,13 +1569,10 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate fwdFlowIsEntered(
-      DataFlowCall call, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      ParameterPosition pos, Ap ap, Configuration config
+      DataFlowCall call, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, ParamNodeEx p, Ap ap,
+      Configuration config
     ) {
-      exists(ParamNodeEx param |
-        fwdFlowInMayFlowThrough(call, cc, _, summaryCtx, argAp, param, ap, _, config) and
-        pos = param.getPosition()
-      )
+      fwdFlowInMayFlowThrough(call, cc, _, summaryCtx, argAp, p, ap, _, config)
     }
 
     pragma[nomagic]
@@ -1602,8 +1597,8 @@ private module MkStage<StageSig PrevStage> {
       Ap ap, Configuration config
     ) {
       exists(boolean allowsFieldFlow, ApApprox argApa, ApApprox apa |
-        fwdFlowRetFromArg(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc), _, p,
-          argAp, pragma[only_bind_into](argApa), ap, pragma[only_bind_into](apa), config) and
+        fwdFlowRetFromArg(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc), p, argAp,
+          pragma[only_bind_into](argApa), ap, pragma[only_bind_into](apa), config) and
         kind = ret.getKind() and
         fwdFlowThroughOutOfCall(_, ccc, ret, _, allowsFieldFlow, argApa, apa, config) and
         (if allowsFieldFlow = false then ap instanceof ApNil else any())
@@ -1967,8 +1962,9 @@ private module MkStage<StageSig PrevStage> {
       conscand = count(TypedContent f0, Ap ap | fwdConsCand(f0, ap, config)) and
       states = count(FlowState state | fwdFlow(_, state, _, _, _, _, config)) and
       tuples =
-        count(NodeEx n, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-          Ap ap | fwdFlow(n, state, cc, summaryCtx, argAp, ap, config))
+        count(NodeEx n, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap |
+          fwdFlow(n, state, cc, summaryCtx, argAp, ap, config)
+        )
       or
       fwd = false and
       nodes = count(NodeEx node | revFlow(node, _, _, _, _, config)) and
@@ -2823,13 +2819,12 @@ private Configuration unbindConf(Configuration conf) {
 
 pragma[nomagic]
 private predicate nodeMayUseSummary0(
-  NodeEx n, DataFlowCallable c, ParameterPosition pos, FlowState state, AccessPathApprox apa,
-  Configuration config
+  NodeEx n, ParamNodeEx p, FlowState state, AccessPathApprox apa, Configuration config
 ) {
   exists(AccessPathApprox apa0 |
-    c = n.getEnclosingCallable() and
+    Stage5::parameterMayFlowThrough(p, _, _) and
     Stage5::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
-    Stage5::fwdFlow(n, state, any(CallContextCall ccc), TParameterPositionSome(pos),
+    Stage5::fwdFlow(n, state, any(CallContextCall ccc), TParamNodeSome(p.asNode()),
       TAccessPathApproxSome(apa), apa0, config)
   )
 }
@@ -2838,10 +2833,9 @@ pragma[nomagic]
 private predicate nodeMayUseSummary(
   NodeEx n, FlowState state, AccessPathApprox apa, Configuration config
 ) {
-  exists(DataFlowCallable c, ParameterPosition pos, ParamNodeEx p |
+  exists(ParamNodeEx p |
     Stage5::parameterMayFlowThrough(p, apa, config) and
-    nodeMayUseSummary0(n, c, pos, state, apa, config) and
-    p.isParameterOf(c, pos)
+    nodeMayUseSummary0(n, p, state, apa, config)
   )
 }
 
diff --git a/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImplCommon.qll b/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImplCommon.qll
index c66aefced8d..28165955b68 100644
--- a/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImplCommon.qll
+++ b/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImplCommon.qll
@@ -916,9 +916,9 @@ private module Cached {
     TDataFlowCallSome(DataFlowCall call)
 
   cached
-  newtype TParameterPositionOption =
-    TParameterPositionNone() or
-    TParameterPositionSome(ParameterPosition pos)
+  newtype TParamNodeOption =
+    TParamNodeNone() or
+    TParamNodeSome(ParamNode p)
 
   cached
   newtype TReturnCtx =
@@ -1343,15 +1343,15 @@ class DataFlowCallOption extends TDataFlowCallOption {
   }
 }
 
-/** An optional `ParameterPosition`. */
-class ParameterPositionOption extends TParameterPositionOption {
+/** An optional `ParamNode`. */
+class ParamNodeOption extends TParamNodeOption {
   string toString() {
-    this = TParameterPositionNone() and
+    this = TParamNodeNone() and
     result = "(none)"
     or
-    exists(ParameterPosition pos |
-      this = TParameterPositionSome(pos) and
-      result = pos.toString()
+    exists(ParamNode p |
+      this = TParamNodeSome(p) and
+      result = p.toString()
     )
   }
 }

From 1820bb4b0bb00c724c0fef37ff3c21a4adfe134f Mon Sep 17 00:00:00 2001
From: Tom Hvitved <hvitved@github.com>
Date: Wed, 14 Dec 2022 11:19:57 +0100
Subject: [PATCH 1393/1420] Data flow: Simplify forwards flow-through pruning

---
 .../ruby/dataflow/internal/DataFlowImpl.qll   | 112 +++++++++---------
 1 file changed, 53 insertions(+), 59 deletions(-)

diff --git a/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImpl.qll b/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImpl.qll
index cdd61fe91ae..11f34b648e1 100644
--- a/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImpl.qll
+++ b/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImpl.qll
@@ -1433,9 +1433,12 @@ private module MkStage<StageSig PrevStage> {
       )
       or
       // flow through a callable
-      exists(DataFlowCall call, ParamNodeEx summaryCtx0, Ap argAp0 |
-        fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, apa, config) and
-        fwdFlowIsEntered(call, cc, summaryCtx, argAp, summaryCtx0, argAp0, config)
+      exists(
+        DataFlowCall call, CcCall ccc, RetNodeEx ret, boolean allowsFieldFlow, ApApprox innerArgApa
+      |
+        fwdFlowThrough(call, cc, state, ccc, summaryCtx, argAp, ap, apa, ret, innerArgApa, config) and
+        flowThroughOutOfCall(call, ccc, ret, node, allowsFieldFlow, innerArgApa, apa, config) and
+        if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
@@ -1505,62 +1508,40 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowRetFromArg(
-      RetNodeEx ret, FlowState state, CcCall ccc, ParamNodeEx summaryCtx, Ap argAp, ApApprox argApa,
-      Ap ap, ApApprox apa, Configuration config
+      RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, ParamNodeEx summaryCtx,
+      Ap argAp, ApApprox argApa, Ap ap, ApApprox apa, Configuration config
     ) {
-      exists(ReturnKindExt kind |
-        fwdFlow(pragma[only_bind_into](ret), state, ccc,
-          TParamNodeSome(pragma[only_bind_into](summaryCtx.asNode())), apSome(argAp), ap, apa,
-          config) and
-        getApprox(argAp) = argApa and
-        kind = ret.getKind() and
-        parameterFlowThroughAllowed(summaryCtx, kind)
-      )
+      fwdFlow(pragma[only_bind_into](ret), state, ccc,
+        TParamNodeSome(pragma[only_bind_into](summaryCtx.asNode())),
+        pragma[only_bind_into](apSome(argAp)), ap, pragma[only_bind_into](apa),
+        pragma[only_bind_into](config)) and
+      kind = ret.getKind() and
+      parameterFlowThroughAllowed(summaryCtx, kind) and
+      argApa = getApprox(argAp) and
+      PrevStage::returnMayFlowThrough(ret, argApa, apa, kind, pragma[only_bind_into](config))
     }
 
     pragma[inline]
-    private predicate fwdFlowInMayFlowThrough(
-      DataFlowCall call, Cc cc, CcCall innerCc, ParamNodeOption summaryCtx, ApOption argAp,
-      ParamNodeEx param, Ap ap, ApApprox apa, Configuration config
+    private predicate fwdFlowThrough0(
+      DataFlowCall call, Cc cc, FlowState state, CcCall ccc, ParamNodeOption summaryCtx,
+      ApOption argAp, Ap ap, ApApprox apa, RetNodeEx ret, ReturnKindExt kind,
+      ParamNodeEx innerSummaryCtx, Ap innerArgAp, ApApprox innerArgApa, Configuration config
     ) {
-      fwdFlowIn(call, pragma[only_bind_into](param), _, cc, innerCc, summaryCtx, argAp, ap,
-        pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
-      PrevStage::parameterMayFlowThrough(param, apa, config)
-    }
-
-    // dedup before joining with `flowThroughOutOfCall`
-    pragma[nomagic]
-    private predicate fwdFlowInMayFlowThroughProj(
-      DataFlowCall call, CcCall innerCc, ApApprox apa, Configuration config
-    ) {
-      fwdFlowInMayFlowThrough(call, _, innerCc, _, _, _, _, apa, config)
-    }
-
-    /**
-     * Same as `flowThroughOutOfCall`, but restricted to calls that are reached
-     * in the flow covered by `fwdFlow`, where data might flow through the target
-     * callable and back out at `call`.
-     */
-    pragma[nomagic]
-    private predicate fwdFlowThroughOutOfCall(
-      DataFlowCall call, CcCall ccc, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow,
-      ApApprox argApa, ApApprox apa, Configuration config
-    ) {
-      fwdFlowInMayFlowThroughProj(call, ccc, argApa, config) and
-      flowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, argApa, apa, config)
+      fwdFlowRetFromArg(pragma[only_bind_into](ret), kind, state, pragma[only_bind_into](ccc),
+        innerSummaryCtx, innerArgAp, innerArgApa, ap, pragma[only_bind_into](apa),
+        pragma[only_bind_into](config)) and
+      fwdFlowIsEntered(call, cc, ccc, summaryCtx, argAp, innerSummaryCtx, innerArgAp,
+        pragma[only_bind_into](config)) and
+      matchesCall(ccc, call)
     }
 
     pragma[nomagic]
-    private predicate fwdFlowOutFromArg(
-      DataFlowCall call, NodeEx out, FlowState state, ParamNodeEx summaryCtx, Ap argAp, Ap ap,
-      ApApprox apa, Configuration config
+    private predicate fwdFlowThrough(
+      DataFlowCall call, Cc cc, FlowState state, CcCall ccc, ParamNodeOption summaryCtx,
+      ApOption argAp, Ap ap, ApApprox apa, RetNodeEx ret, ApApprox innerArgApa, Configuration config
     ) {
-      exists(RetNodeEx ret, boolean allowsFieldFlow, CcCall ccc, ApApprox argApa |
-        fwdFlowRetFromArg(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc),
-          summaryCtx, argAp, pragma[only_bind_into](argApa), ap, pragma[only_bind_into](apa), config) and
-        fwdFlowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, argApa, apa, config) and
-        (if allowsFieldFlow = false then ap instanceof ApNil else any())
-      )
+      fwdFlowThrough0(call, cc, state, ccc, summaryCtx, argAp, ap, apa, ret, _, _, _, innerArgApa,
+        config)
     }
 
     /**
@@ -1569,10 +1550,15 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate fwdFlowIsEntered(
-      DataFlowCall call, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, ParamNodeEx p, Ap ap,
-      Configuration config
+      DataFlowCall call, Cc cc, CcCall innerCc, ParamNodeOption summaryCtx, ApOption argAp,
+      ParamNodeEx p, Ap ap, Configuration config
     ) {
-      fwdFlowInMayFlowThrough(call, cc, _, summaryCtx, argAp, p, ap, _, config)
+      exists(ApApprox apa |
+        fwdFlowIn(call, pragma[only_bind_into](p), _, cc, innerCc, summaryCtx, argAp, ap,
+          pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
+        PrevStage::parameterMayFlowThrough(p, apa, config) and
+        PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config))
+      )
     }
 
     pragma[nomagic]
@@ -1591,17 +1577,25 @@ private module MkStage<StageSig PrevStage> {
       fwdFlowConsCand(ap1, c, ap2, config)
     }
 
+    pragma[nomagic]
+    private predicate returnFlowsThrough0(
+      DataFlowCall call, FlowState state, CcCall ccc, Ap ap, ApApprox apa, RetNodeEx ret,
+      ReturnKindExt kind, ParamNodeEx innerSummaryCtx, Ap innerArgAp, ApApprox innerArgApa,
+      Configuration config
+    ) {
+      fwdFlowThrough0(call, _, state, ccc, _, _, ap, apa, ret, kind, innerSummaryCtx, innerArgAp,
+        innerArgApa, config)
+    }
+
     pragma[nomagic]
     private predicate returnFlowsThrough(
       RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, ParamNodeEx p, Ap argAp,
       Ap ap, Configuration config
     ) {
-      exists(boolean allowsFieldFlow, ApApprox argApa, ApApprox apa |
-        fwdFlowRetFromArg(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc), p, argAp,
-          pragma[only_bind_into](argApa), ap, pragma[only_bind_into](apa), config) and
-        kind = ret.getKind() and
-        fwdFlowThroughOutOfCall(_, ccc, ret, _, allowsFieldFlow, argApa, apa, config) and
-        (if allowsFieldFlow = false then ap instanceof ApNil else any())
+      exists(DataFlowCall call, ApApprox apa, boolean allowsFieldFlow, ApApprox innerArgApa |
+        returnFlowsThrough0(call, state, ccc, ap, apa, ret, kind, p, argAp, innerArgApa, config) and
+        flowThroughOutOfCall(call, ccc, ret, _, allowsFieldFlow, innerArgApa, apa, config) and
+        if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 

From d34901ac8cdff8f6148fec2f04e926aa6babf9fc Mon Sep 17 00:00:00 2001
From: Tom Hvitved <hvitved@github.com>
Date: Wed, 14 Dec 2022 11:41:54 +0100
Subject: [PATCH 1394/1420] Data flow: Track return position instead of return
 kind

Reverts bdb205a318618c4136cf0cfb116d98711c9250e9.
---
 .../ruby/dataflow/internal/DataFlowImpl.qll   | 106 +++++++++---------
 1 file changed, 55 insertions(+), 51 deletions(-)

diff --git a/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImpl.qll b/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImpl.qll
index 11f34b648e1..82b938457da 100644
--- a/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImpl.qll
+++ b/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImpl.qll
@@ -1508,26 +1508,28 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowRetFromArg(
-      RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, ParamNodeEx summaryCtx,
-      Ap argAp, ApApprox argApa, Ap ap, ApApprox apa, Configuration config
+      RetNodeEx ret, FlowState state, CcCall ccc, ParamNodeEx summaryCtx, Ap argAp, ApApprox argApa,
+      Ap ap, ApApprox apa, Configuration config
     ) {
-      fwdFlow(pragma[only_bind_into](ret), state, ccc,
-        TParamNodeSome(pragma[only_bind_into](summaryCtx.asNode())),
-        pragma[only_bind_into](apSome(argAp)), ap, pragma[only_bind_into](apa),
-        pragma[only_bind_into](config)) and
-      kind = ret.getKind() and
-      parameterFlowThroughAllowed(summaryCtx, kind) and
-      argApa = getApprox(argAp) and
-      PrevStage::returnMayFlowThrough(ret, argApa, apa, kind, pragma[only_bind_into](config))
+      exists(ReturnKindExt kind |
+        fwdFlow(pragma[only_bind_into](ret), state, ccc,
+          TParamNodeSome(pragma[only_bind_into](summaryCtx.asNode())),
+          pragma[only_bind_into](apSome(argAp)), ap, pragma[only_bind_into](apa),
+          pragma[only_bind_into](config)) and
+        kind = ret.getKind() and
+        parameterFlowThroughAllowed(summaryCtx, kind) and
+        argApa = getApprox(argAp) and
+        PrevStage::returnMayFlowThrough(ret, argApa, apa, kind, pragma[only_bind_into](config))
+      )
     }
 
     pragma[inline]
     private predicate fwdFlowThrough0(
       DataFlowCall call, Cc cc, FlowState state, CcCall ccc, ParamNodeOption summaryCtx,
-      ApOption argAp, Ap ap, ApApprox apa, RetNodeEx ret, ReturnKindExt kind,
-      ParamNodeEx innerSummaryCtx, Ap innerArgAp, ApApprox innerArgApa, Configuration config
+      ApOption argAp, Ap ap, ApApprox apa, RetNodeEx ret, ParamNodeEx innerSummaryCtx,
+      Ap innerArgAp, ApApprox innerArgApa, Configuration config
     ) {
-      fwdFlowRetFromArg(pragma[only_bind_into](ret), kind, state, pragma[only_bind_into](ccc),
+      fwdFlowRetFromArg(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc),
         innerSummaryCtx, innerArgAp, innerArgApa, ap, pragma[only_bind_into](apa),
         pragma[only_bind_into](config)) and
       fwdFlowIsEntered(call, cc, ccc, summaryCtx, argAp, innerSummaryCtx, innerArgAp,
@@ -1540,7 +1542,7 @@ private module MkStage<StageSig PrevStage> {
       DataFlowCall call, Cc cc, FlowState state, CcCall ccc, ParamNodeOption summaryCtx,
       ApOption argAp, Ap ap, ApApprox apa, RetNodeEx ret, ApApprox innerArgApa, Configuration config
     ) {
-      fwdFlowThrough0(call, cc, state, ccc, summaryCtx, argAp, ap, apa, ret, _, _, _, innerArgApa,
+      fwdFlowThrough0(call, cc, state, ccc, summaryCtx, argAp, ap, apa, ret, _, _, innerArgApa,
         config)
     }
 
@@ -1580,21 +1582,21 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate returnFlowsThrough0(
       DataFlowCall call, FlowState state, CcCall ccc, Ap ap, ApApprox apa, RetNodeEx ret,
-      ReturnKindExt kind, ParamNodeEx innerSummaryCtx, Ap innerArgAp, ApApprox innerArgApa,
-      Configuration config
+      ParamNodeEx innerSummaryCtx, Ap innerArgAp, ApApprox innerArgApa, Configuration config
     ) {
-      fwdFlowThrough0(call, _, state, ccc, _, _, ap, apa, ret, kind, innerSummaryCtx, innerArgAp,
+      fwdFlowThrough0(call, _, state, ccc, _, _, ap, apa, ret, innerSummaryCtx, innerArgAp,
         innerArgApa, config)
     }
 
     pragma[nomagic]
     private predicate returnFlowsThrough(
-      RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, ParamNodeEx p, Ap argAp,
+      RetNodeEx ret, ReturnPosition pos, FlowState state, CcCall ccc, ParamNodeEx p, Ap argAp,
       Ap ap, Configuration config
     ) {
       exists(DataFlowCall call, ApApprox apa, boolean allowsFieldFlow, ApApprox innerArgApa |
-        returnFlowsThrough0(call, state, ccc, ap, apa, ret, kind, p, argAp, innerArgApa, config) and
+        returnFlowsThrough0(call, state, ccc, ap, apa, ret, p, argAp, innerArgApa, config) and
         flowThroughOutOfCall(call, ccc, ret, _, allowsFieldFlow, innerArgApa, apa, config) and
+        pos = ret.getReturnPosition() and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
@@ -1628,12 +1630,13 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate flowOutOfCallAp(
-      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
+      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
       Ap ap, Configuration config
     ) {
       exists(ApApprox apa |
-        flowOutOfCallApa(call, ret, kind, out, allowsFieldFlow, apa, config) and
-        fwdFlow(ret, _, _, _, _, ap, apa, config)
+        flowOutOfCallApa(call, ret, _, out, allowsFieldFlow, apa, config) and
+        fwdFlow(ret, _, _, _, _, ap, apa, config) and
+        pos = ret.getReturnPosition()
       )
     }
 
@@ -1728,17 +1731,17 @@ private module MkStage<StageSig PrevStage> {
       )
       or
       // flow through a callable
-      exists(DataFlowCall call, ReturnKindExt returnKind0, Ap returnAp0 |
-        revFlowInToReturn(call, node, state, returnKind0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
+      exists(DataFlowCall call, ReturnPosition pos, Ap returnAp0 |
+        revFlowInToReturn(call, node, state, pos, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, pos, returnAp0, config)
       )
       or
       // flow out of a callable
-      exists(ReturnKindExt kind |
-        revFlowOut(_, node, kind, state, _, _, ap, config) and
-        if returnFlowsThrough(node, kind, state, _, _, _, ap, config)
+      exists(ReturnPosition pos |
+        revFlowOut(_, node, pos, state, _, _, ap, config) and
+        if returnFlowsThrough(node, pos, state, _, _, _, ap, config)
         then (
-          returnCtx = TReturnCtxMaybeFlowThrough(kind) and
+          returnCtx = TReturnCtxMaybeFlowThrough(pos) and
           returnAp = apSome(ap)
         ) else (
           returnCtx = TReturnCtxNoFlowThrough() and returnAp = apNone()
@@ -1771,12 +1774,12 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate revFlowOut(
-      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, FlowState state, ReturnCtx returnCtx,
+      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, FlowState state, ReturnCtx returnCtx,
       ApOption returnAp, Ap ap, Configuration config
     ) {
       exists(NodeEx out, boolean allowsFieldFlow |
         revFlow(out, state, returnCtx, returnAp, ap, config) and
-        flowOutOfCallAp(call, ret, kind, out, allowsFieldFlow, ap, config) and
+        flowOutOfCallAp(call, ret, pos, out, allowsFieldFlow, ap, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
@@ -1797,19 +1800,19 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate revFlowParamToReturn(
-      ParamNodeEx p, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap, Configuration config
+      ParamNodeEx p, FlowState state, ReturnPosition pos, Ap returnAp, Ap ap, Configuration config
     ) {
-      revFlow(p, state, TReturnCtxMaybeFlowThrough(kind), apSome(returnAp), ap, config) and
-      parameterFlowThroughAllowed(p, kind)
+      revFlow(p, state, TReturnCtxMaybeFlowThrough(pos), apSome(returnAp), ap, config) and
+      parameterFlowThroughAllowed(p, pos.getKind())
     }
 
     pragma[nomagic]
     private predicate revFlowInToReturn(
-      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap,
+      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnPosition pos, Ap returnAp, Ap ap,
       Configuration config
     ) {
       exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlowParamToReturn(p, state, kind, returnAp, ap, config) and
+        revFlowParamToReturn(p, state, pos, returnAp, ap, config) and
         revFlowThroughIntoCall(call, arg, p, allowsFieldFlow, ap, config)
       )
     }
@@ -1821,12 +1824,12 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate revFlowIsReturned(
-      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnKindExt kind, Ap ap,
+      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnPosition pos, Ap ap,
       Configuration config
     ) {
       exists(RetNodeEx ret, FlowState state, CcCall ccc |
-        revFlowOut(call, ret, kind, state, returnCtx, returnAp, ap, config) and
-        returnFlowsThrough(ret, kind, state, ccc, _, _, ap, config) and
+        revFlowOut(call, ret, pos, state, returnCtx, returnAp, ap, config) and
+        returnFlowsThrough(ret, pos, state, ccc, _, _, ap, config) and
         matchesCall(ccc, call)
       )
     }
@@ -1904,17 +1907,17 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate parameterFlowsThroughRev(
-      ParamNodeEx p, Ap ap, ReturnKindExt kind, Ap returnAp, Configuration config
+      ParamNodeEx p, Ap ap, ReturnPosition pos, Ap returnAp, Configuration config
     ) {
-      revFlow(p, _, TReturnCtxMaybeFlowThrough(kind), apSome(returnAp), ap, config) and
-      parameterFlowThroughAllowed(p, kind)
+      revFlow(p, _, TReturnCtxMaybeFlowThrough(pos), apSome(returnAp), ap, config) and
+      parameterFlowThroughAllowed(p, pos.getKind())
     }
 
     pragma[nomagic]
     predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
-      exists(RetNodeEx ret, ReturnKindExt kind |
-        returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
-        parameterFlowsThroughRev(p, ap, kind, _, config)
+      exists(RetNodeEx ret, ReturnPosition pos |
+        returnFlowsThrough(ret, pos, _, _, p, ap, _, config) and
+        parameterFlowsThroughRev(p, ap, pos, _, config)
       )
     }
 
@@ -1922,9 +1925,10 @@ private module MkStage<StageSig PrevStage> {
     predicate returnMayFlowThrough(
       RetNodeEx ret, Ap argAp, Ap ap, ReturnKindExt kind, Configuration config
     ) {
-      exists(ParamNodeEx p |
-        returnFlowsThrough(ret, kind, _, _, p, argAp, ap, config) and
-        parameterFlowsThroughRev(p, argAp, kind, ap, config)
+      exists(ParamNodeEx p, ReturnPosition pos |
+        returnFlowsThrough(ret, pos, _, _, p, argAp, ap, config) and
+        parameterFlowsThroughRev(p, argAp, pos, ap, config) and
+        kind = pos.getKind()
       )
     }
 
@@ -1933,9 +1937,9 @@ private module MkStage<StageSig PrevStage> {
       DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnCtx returnCtx, ApOption returnAp,
       Ap ap, Configuration config
     ) {
-      exists(ReturnKindExt returnKind0, Ap returnAp0 |
-        revFlowInToReturn(call, arg, state, returnKind0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
+      exists(ReturnPosition pos, Ap returnAp0 |
+        revFlowInToReturn(call, arg, state, pos, returnAp0, ap, config) and
+        revFlowIsReturned(call, returnCtx, returnAp, pos, returnAp0, config)
       )
     }
 

From adc738cb154dd19c9a45a73758cf8cbd1307758a Mon Sep 17 00:00:00 2001
From: Tom Hvitved <hvitved@github.com>
Date: Wed, 14 Dec 2022 12:53:52 +0100
Subject: [PATCH 1395/1420] Data flow: Simplify reverse flow-through pruning

---
 .../ruby/dataflow/internal/DataFlowImpl.qll   | 60 +++++++------------
 1 file changed, 21 insertions(+), 39 deletions(-)

diff --git a/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImpl.qll b/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImpl.qll
index 82b938457da..23d11a38842 100644
--- a/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImpl.qll
+++ b/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImpl.qll
@@ -1529,12 +1529,8 @@ private module MkStage<StageSig PrevStage> {
       ApOption argAp, Ap ap, ApApprox apa, RetNodeEx ret, ParamNodeEx innerSummaryCtx,
       Ap innerArgAp, ApApprox innerArgApa, Configuration config
     ) {
-      fwdFlowRetFromArg(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc),
-        innerSummaryCtx, innerArgAp, innerArgApa, ap, pragma[only_bind_into](apa),
-        pragma[only_bind_into](config)) and
-      fwdFlowIsEntered(call, cc, ccc, summaryCtx, argAp, innerSummaryCtx, innerArgAp,
-        pragma[only_bind_into](config)) and
-      matchesCall(ccc, call)
+      fwdFlowRetFromArg(ret, state, ccc, innerSummaryCtx, innerArgAp, innerArgApa, ap, apa, config) and
+      fwdFlowIsEntered(call, cc, ccc, summaryCtx, argAp, innerSummaryCtx, innerArgAp, config)
     }
 
     pragma[nomagic]
@@ -1603,7 +1599,7 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate flowThroughIntoCall(
-      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp,
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp, Ap ap,
       Configuration config
     ) {
       exists(ApApprox argApa |
@@ -1611,7 +1607,7 @@ private module MkStage<StageSig PrevStage> {
           allowsFieldFlow, argApa, pragma[only_bind_into](config)) and
         fwdFlow(arg, _, _, _, _, pragma[only_bind_into](argAp), argApa,
           pragma[only_bind_into](config)) and
-        returnFlowsThrough(_, _, _, _, p, pragma[only_bind_into](argAp), _,
+        returnFlowsThrough(_, _, _, _, p, pragma[only_bind_into](argAp), ap,
           pragma[only_bind_into](config)) and
         if allowsFieldFlow = false then argAp instanceof ApNil else any()
       )
@@ -1731,9 +1727,9 @@ private module MkStage<StageSig PrevStage> {
       )
       or
       // flow through a callable
-      exists(DataFlowCall call, ReturnPosition pos, Ap returnAp0 |
-        revFlowInToReturn(call, node, state, pos, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, pos, returnAp0, config)
+      exists(DataFlowCall call, ParamNodeEx p, ReturnPosition pos, Ap innerReturnAp |
+        revFlowThrough(call, returnCtx, p, state, pos, returnAp, ap, innerReturnAp, config) and
+        flowThroughIntoCall(call, node, p, _, ap, innerReturnAp, config)
       )
       or
       // flow out of a callable
@@ -1784,37 +1780,23 @@ private module MkStage<StageSig PrevStage> {
       )
     }
 
-    /**
-     * Same as `flowThroughIntoCall`, but restricted to calls that are reached
-     * in the flow covered by `revFlow`, where data might flow through the target
-     * callable and back out at `call`.
-     */
-    pragma[nomagic]
-    private predicate revFlowThroughIntoCall(
-      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp,
-      Configuration config
-    ) {
-      flowThroughIntoCall(call, arg, p, allowsFieldFlow, argAp, config) and
-      revFlowIsReturned(call, _, _, _, _, config)
-    }
-
     pragma[nomagic]
     private predicate revFlowParamToReturn(
       ParamNodeEx p, FlowState state, ReturnPosition pos, Ap returnAp, Ap ap, Configuration config
     ) {
-      revFlow(p, state, TReturnCtxMaybeFlowThrough(pos), apSome(returnAp), ap, config) and
-      parameterFlowThroughAllowed(p, pos.getKind())
+      revFlow(pragma[only_bind_into](p), state, TReturnCtxMaybeFlowThrough(pos), apSome(returnAp),
+        pragma[only_bind_into](ap), pragma[only_bind_into](config)) and
+      parameterFlowThroughAllowed(p, pos.getKind()) and
+      PrevStage::parameterMayFlowThrough(p, getApprox(ap), config)
     }
 
     pragma[nomagic]
-    private predicate revFlowInToReturn(
-      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnPosition pos, Ap returnAp, Ap ap,
-      Configuration config
+    private predicate revFlowThrough(
+      DataFlowCall call, ReturnCtx returnCtx, ParamNodeEx p, FlowState state, ReturnPosition pos,
+      ApOption returnAp, Ap ap, Ap innerReturnAp, Configuration config
     ) {
-      exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlowParamToReturn(p, state, pos, returnAp, ap, config) and
-        revFlowThroughIntoCall(call, arg, p, allowsFieldFlow, ap, config)
-      )
+      revFlowParamToReturn(p, state, pos, innerReturnAp, ap, config) and
+      revFlowIsReturned(call, returnCtx, returnAp, pos, innerReturnAp, config)
     }
 
     /**
@@ -1933,13 +1915,13 @@ private module MkStage<StageSig PrevStage> {
     }
 
     pragma[nomagic]
-    predicate revFlowInToReturnIsReturned(
+    private predicate revFlowThroughArg(
       DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnCtx returnCtx, ApOption returnAp,
       Ap ap, Configuration config
     ) {
-      exists(ReturnPosition pos, Ap returnAp0 |
-        revFlowInToReturn(call, arg, state, pos, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, pos, returnAp0, config)
+      exists(ParamNodeEx p, ReturnPosition pos, Ap innerReturnAp |
+        revFlowThrough(call, returnCtx, p, state, pos, returnAp, ap, innerReturnAp, config) and
+        flowThroughIntoCall(call, arg, p, _, ap, innerReturnAp, config)
       )
     }
 
@@ -1947,7 +1929,7 @@ private module MkStage<StageSig PrevStage> {
     predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
       exists(ArgNodeEx arg, FlowState state, ReturnCtx returnCtx, ApOption returnAp, Ap ap |
         revFlow(arg, state, returnCtx, returnAp, ap, config) and
-        revFlowInToReturnIsReturned(call, arg, state, returnCtx, returnAp, ap, config)
+        revFlowThroughArg(call, arg, state, returnCtx, returnAp, ap, config)
       )
     }
 

From 6eda0422293af98a764371ab13178477fa20d802 Mon Sep 17 00:00:00 2001
From: Tom Hvitved <hvitved@github.com>
Date: Tue, 13 Dec 2022 15:36:44 +0100
Subject: [PATCH 1396/1420] Data flow: Sync files

---
 .../cpp/ir/dataflow/internal/DataFlowImpl.qll | 258 ++++++++----------
 .../ir/dataflow/internal/DataFlowImpl2.qll    | 258 ++++++++----------
 .../ir/dataflow/internal/DataFlowImpl3.qll    | 258 ++++++++----------
 .../ir/dataflow/internal/DataFlowImpl4.qll    | 258 ++++++++----------
 .../dataflow/internal/DataFlowImplCommon.qll  |  28 +-
 .../cpp/dataflow/internal/DataFlowImpl.qll    | 258 ++++++++----------
 .../cpp/dataflow/internal/DataFlowImpl2.qll   | 258 ++++++++----------
 .../cpp/dataflow/internal/DataFlowImpl3.qll   | 258 ++++++++----------
 .../cpp/dataflow/internal/DataFlowImpl4.qll   | 258 ++++++++----------
 .../dataflow/internal/DataFlowImplCommon.qll  |  28 +-
 .../dataflow/internal/DataFlowImplLocal.qll   | 258 ++++++++----------
 .../cpp/ir/dataflow/internal/DataFlowImpl.qll | 258 ++++++++----------
 .../ir/dataflow/internal/DataFlowImpl2.qll    | 258 ++++++++----------
 .../ir/dataflow/internal/DataFlowImpl3.qll    | 258 ++++++++----------
 .../ir/dataflow/internal/DataFlowImpl4.qll    | 258 ++++++++----------
 .../dataflow/internal/DataFlowImplCommon.qll  |  28 +-
 .../csharp/dataflow/internal/DataFlowImpl.qll | 258 ++++++++----------
 .../dataflow/internal/DataFlowImpl2.qll       | 258 ++++++++----------
 .../dataflow/internal/DataFlowImpl3.qll       | 258 ++++++++----------
 .../dataflow/internal/DataFlowImpl4.qll       | 258 ++++++++----------
 .../dataflow/internal/DataFlowImpl5.qll       | 258 ++++++++----------
 .../dataflow/internal/DataFlowImplCommon.qll  |  28 +-
 .../DataFlowImplForContentDataFlow.qll        | 258 ++++++++----------
 .../go/dataflow/internal/DataFlowImpl.qll     | 258 ++++++++----------
 .../go/dataflow/internal/DataFlowImpl2.qll    | 258 ++++++++----------
 .../dataflow/internal/DataFlowImplCommon.qll  |  28 +-
 .../java/dataflow/internal/DataFlowImpl.qll   | 258 ++++++++----------
 .../java/dataflow/internal/DataFlowImpl2.qll  | 258 ++++++++----------
 .../java/dataflow/internal/DataFlowImpl3.qll  | 258 ++++++++----------
 .../java/dataflow/internal/DataFlowImpl4.qll  | 258 ++++++++----------
 .../java/dataflow/internal/DataFlowImpl5.qll  | 258 ++++++++----------
 .../java/dataflow/internal/DataFlowImpl6.qll  | 258 ++++++++----------
 .../dataflow/internal/DataFlowImplCommon.qll  |  28 +-
 .../DataFlowImplForOnActivityResult.qll       | 258 ++++++++----------
 .../DataFlowImplForSerializability.qll        | 258 ++++++++----------
 .../dataflow/new/internal/DataFlowImpl.qll    | 258 ++++++++----------
 .../dataflow/new/internal/DataFlowImpl2.qll   | 258 ++++++++----------
 .../dataflow/new/internal/DataFlowImpl3.qll   | 258 ++++++++----------
 .../dataflow/new/internal/DataFlowImpl4.qll   | 258 ++++++++----------
 .../new/internal/DataFlowImplCommon.qll       |  28 +-
 .../ruby/dataflow/internal/DataFlowImpl2.qll  | 258 ++++++++----------
 .../dataflow/internal/DataFlowImplCommon.qll  |  10 +-
 .../DataFlowImplForHttpClientLibraries.qll    | 258 ++++++++----------
 .../internal/DataFlowImplForPathname.qll      | 258 ++++++++----------
 .../internal/DataFlowImplForRegExp.qll        | 258 ++++++++----------
 .../swift/dataflow/internal/DataFlowImpl.qll  | 258 ++++++++----------
 .../dataflow/internal/DataFlowImplCommon.qll  |  28 +-
 47 files changed, 4525 insertions(+), 5513 deletions(-)

diff --git a/cpp/ql/lib/experimental/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl.qll b/cpp/ql/lib/experimental/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl.qll
index 6741ccc2f06..23d11a38842 100644
--- a/cpp/ql/lib/experimental/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl.qll
+++ b/cpp/ql/lib/experimental/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl.qll
@@ -1327,8 +1327,8 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     additional predicate fwdFlow(
-      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      Ap ap, ApApprox apa, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      ApApprox apa, Configuration config
     ) {
       fwdFlow0(node, state, cc, summaryCtx, argAp, ap, apa, config) and
       PrevStage::revFlow(node, state, apa, config) and
@@ -1337,21 +1337,21 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[inline]
     additional predicate fwdFlow(
-      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      Ap ap, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      Configuration config
     ) {
       fwdFlow(node, state, cc, summaryCtx, argAp, ap, _, config)
     }
 
     pragma[nomagic]
     private predicate fwdFlow0(
-      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      Ap ap, ApApprox apa, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      ApApprox apa, Configuration config
     ) {
       sourceNode(node, state, config) and
       (if hasSourceCallCtx(config) then cc = ccSomeCall() else cc = ccNone()) and
       argAp = apNone() and
-      summaryCtx = TParameterPositionNone() and
+      summaryCtx = TParamNodeNone() and
       ap = getApNil(node) and
       apa = getApprox(ap)
       or
@@ -1372,7 +1372,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, apa, pragma[only_bind_into](config)) and
         jumpStep(mid, node, config) and
         cc = ccNone() and
-        summaryCtx = TParameterPositionNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone()
       )
       or
@@ -1380,7 +1380,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, state, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStep(mid, node, config) and
         cc = ccNone() and
-        summaryCtx = TParameterPositionNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone() and
         ap = getApNil(node) and
         apa = getApprox(ap)
@@ -1390,7 +1390,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, state0, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStateStep(mid, state0, node, state, config) and
         cc = ccNone() and
-        summaryCtx = TParameterPositionNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone() and
         ap = getApNil(node) and
         apa = getApprox(ap)
@@ -1414,10 +1414,10 @@ private module MkStage<StageSig PrevStage> {
       fwdFlowIn(_, node, state, _, cc, _, _, ap, apa, config) and
       if PrevStage::parameterMayFlowThrough(node, apa, config)
       then (
-        summaryCtx = TParameterPositionSome(node.(ParamNodeEx).getPosition()) and
+        summaryCtx = TParamNodeSome(node.asNode()) and
         argAp = apSome(ap)
       ) else (
-        summaryCtx = TParameterPositionNone() and argAp = apNone()
+        summaryCtx = TParamNodeNone() and argAp = apNone()
       )
       or
       // flow out of a callable
@@ -1433,16 +1433,19 @@ private module MkStage<StageSig PrevStage> {
       )
       or
       // flow through a callable
-      exists(DataFlowCall call, ParameterPosition summaryCtx0, Ap argAp0 |
-        fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, apa, config) and
-        fwdFlowIsEntered(call, cc, summaryCtx, argAp, summaryCtx0, argAp0, config)
+      exists(
+        DataFlowCall call, CcCall ccc, RetNodeEx ret, boolean allowsFieldFlow, ApApprox innerArgApa
+      |
+        fwdFlowThrough(call, cc, state, ccc, summaryCtx, argAp, ap, apa, ret, innerArgApa, config) and
+        flowThroughOutOfCall(call, ccc, ret, node, allowsFieldFlow, innerArgApa, apa, config) and
+        if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
     pragma[nomagic]
     private predicate fwdFlowStore(
       NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc,
-      ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
+      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
     ) {
       exists(DataFlowType contentType, ApApprox apa1 |
         fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, apa1, config) and
@@ -1473,8 +1476,8 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowRead0(
-      NodeEx node1, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      ApNonNil ap, Configuration config
+      NodeEx node1, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, ApNonNil ap,
+      Configuration config
     ) {
       fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, _, _, config)
@@ -1483,7 +1486,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowRead(
       Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc,
-      ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
+      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
     ) {
       fwdFlowRead0(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, c, node2, config) and
@@ -1493,7 +1496,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowIn(
       DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, CcCall innercc,
-      ParameterPositionOption summaryCtx, ApOption argAp, Ap ap, ApApprox apa, Configuration config
+      ParamNodeOption summaryCtx, ApOption argAp, Ap ap, ApApprox apa, Configuration config
     ) {
       exists(ArgNodeEx arg, boolean allowsFieldFlow |
         fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, apa, config) and
@@ -1505,64 +1508,38 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowRetFromArg(
-      RetNodeEx ret, FlowState state, CcCall ccc, ParameterPosition summaryCtx, ParamNodeEx p,
-      Ap argAp, ApApprox argApa, Ap ap, ApApprox apa, Configuration config
+      RetNodeEx ret, FlowState state, CcCall ccc, ParamNodeEx summaryCtx, Ap argAp, ApApprox argApa,
+      Ap ap, ApApprox apa, Configuration config
     ) {
-      exists(DataFlowCallable c, ReturnKindExt kind |
+      exists(ReturnKindExt kind |
         fwdFlow(pragma[only_bind_into](ret), state, ccc,
-          TParameterPositionSome(pragma[only_bind_into](summaryCtx)), apSome(argAp), ap, apa, config) and
-        getApprox(argAp) = argApa and
-        c = ret.getEnclosingCallable() and
+          TParamNodeSome(pragma[only_bind_into](summaryCtx.asNode())),
+          pragma[only_bind_into](apSome(argAp)), ap, pragma[only_bind_into](apa),
+          pragma[only_bind_into](config)) and
         kind = ret.getKind() and
-        p.isParameterOf(c, pragma[only_bind_into](summaryCtx)) and
-        parameterFlowThroughAllowed(p, kind)
+        parameterFlowThroughAllowed(summaryCtx, kind) and
+        argApa = getApprox(argAp) and
+        PrevStage::returnMayFlowThrough(ret, argApa, apa, kind, pragma[only_bind_into](config))
       )
     }
 
     pragma[inline]
-    private predicate fwdFlowInMayFlowThrough(
-      DataFlowCall call, Cc cc, CcCall innerCc, ParameterPositionOption summaryCtx, ApOption argAp,
-      ParamNodeEx param, Ap ap, ApApprox apa, Configuration config
+    private predicate fwdFlowThrough0(
+      DataFlowCall call, Cc cc, FlowState state, CcCall ccc, ParamNodeOption summaryCtx,
+      ApOption argAp, Ap ap, ApApprox apa, RetNodeEx ret, ParamNodeEx innerSummaryCtx,
+      Ap innerArgAp, ApApprox innerArgApa, Configuration config
     ) {
-      fwdFlowIn(call, pragma[only_bind_into](param), _, cc, innerCc, summaryCtx, argAp, ap,
-        pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
-      PrevStage::parameterMayFlowThrough(param, apa, config)
-    }
-
-    // dedup before joining with `flowThroughOutOfCall`
-    pragma[nomagic]
-    private predicate fwdFlowInMayFlowThroughProj(
-      DataFlowCall call, CcCall innerCc, ApApprox apa, Configuration config
-    ) {
-      fwdFlowInMayFlowThrough(call, _, innerCc, _, _, _, _, apa, config)
-    }
-
-    /**
-     * Same as `flowThroughOutOfCall`, but restricted to calls that are reached
-     * in the flow covered by `fwdFlow`, where data might flow through the target
-     * callable and back out at `call`.
-     */
-    pragma[nomagic]
-    private predicate fwdFlowThroughOutOfCall(
-      DataFlowCall call, CcCall ccc, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow,
-      ApApprox argApa, ApApprox apa, Configuration config
-    ) {
-      fwdFlowInMayFlowThroughProj(call, ccc, argApa, config) and
-      flowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, argApa, apa, config)
+      fwdFlowRetFromArg(ret, state, ccc, innerSummaryCtx, innerArgAp, innerArgApa, ap, apa, config) and
+      fwdFlowIsEntered(call, cc, ccc, summaryCtx, argAp, innerSummaryCtx, innerArgAp, config)
     }
 
     pragma[nomagic]
-    private predicate fwdFlowOutFromArg(
-      DataFlowCall call, NodeEx out, FlowState state, ParameterPosition summaryCtx, Ap argAp, Ap ap,
-      ApApprox apa, Configuration config
+    private predicate fwdFlowThrough(
+      DataFlowCall call, Cc cc, FlowState state, CcCall ccc, ParamNodeOption summaryCtx,
+      ApOption argAp, Ap ap, ApApprox apa, RetNodeEx ret, ApApprox innerArgApa, Configuration config
     ) {
-      exists(RetNodeEx ret, boolean allowsFieldFlow, CcCall ccc, ApApprox argApa |
-        fwdFlowRetFromArg(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc),
-          summaryCtx, _, argAp, pragma[only_bind_into](argApa), ap, pragma[only_bind_into](apa),
-          config) and
-        fwdFlowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, argApa, apa, config) and
-        (if allowsFieldFlow = false then ap instanceof ApNil else any())
-      )
+      fwdFlowThrough0(call, cc, state, ccc, summaryCtx, argAp, ap, apa, ret, _, _, innerArgApa,
+        config)
     }
 
     /**
@@ -1571,12 +1548,14 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate fwdFlowIsEntered(
-      DataFlowCall call, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      ParameterPosition pos, Ap ap, Configuration config
+      DataFlowCall call, Cc cc, CcCall innerCc, ParamNodeOption summaryCtx, ApOption argAp,
+      ParamNodeEx p, Ap ap, Configuration config
     ) {
-      exists(ParamNodeEx param |
-        fwdFlowInMayFlowThrough(call, cc, _, summaryCtx, argAp, param, ap, _, config) and
-        pos = param.getPosition()
+      exists(ApApprox apa |
+        fwdFlowIn(call, pragma[only_bind_into](p), _, cc, innerCc, summaryCtx, argAp, ap,
+          pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
+        PrevStage::parameterMayFlowThrough(p, apa, config) and
+        PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config))
       )
     }
 
@@ -1596,23 +1575,31 @@ private module MkStage<StageSig PrevStage> {
       fwdFlowConsCand(ap1, c, ap2, config)
     }
 
+    pragma[nomagic]
+    private predicate returnFlowsThrough0(
+      DataFlowCall call, FlowState state, CcCall ccc, Ap ap, ApApprox apa, RetNodeEx ret,
+      ParamNodeEx innerSummaryCtx, Ap innerArgAp, ApApprox innerArgApa, Configuration config
+    ) {
+      fwdFlowThrough0(call, _, state, ccc, _, _, ap, apa, ret, innerSummaryCtx, innerArgAp,
+        innerArgApa, config)
+    }
+
     pragma[nomagic]
     private predicate returnFlowsThrough(
-      RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, ParamNodeEx p, Ap argAp,
+      RetNodeEx ret, ReturnPosition pos, FlowState state, CcCall ccc, ParamNodeEx p, Ap argAp,
       Ap ap, Configuration config
     ) {
-      exists(boolean allowsFieldFlow, ApApprox argApa, ApApprox apa |
-        fwdFlowRetFromArg(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc), _, p,
-          argAp, pragma[only_bind_into](argApa), ap, pragma[only_bind_into](apa), config) and
-        kind = ret.getKind() and
-        fwdFlowThroughOutOfCall(_, ccc, ret, _, allowsFieldFlow, argApa, apa, config) and
-        (if allowsFieldFlow = false then ap instanceof ApNil else any())
+      exists(DataFlowCall call, ApApprox apa, boolean allowsFieldFlow, ApApprox innerArgApa |
+        returnFlowsThrough0(call, state, ccc, ap, apa, ret, p, argAp, innerArgApa, config) and
+        flowThroughOutOfCall(call, ccc, ret, _, allowsFieldFlow, innerArgApa, apa, config) and
+        pos = ret.getReturnPosition() and
+        if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
     pragma[nomagic]
     private predicate flowThroughIntoCall(
-      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp,
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp, Ap ap,
       Configuration config
     ) {
       exists(ApApprox argApa |
@@ -1620,7 +1607,7 @@ private module MkStage<StageSig PrevStage> {
           allowsFieldFlow, argApa, pragma[only_bind_into](config)) and
         fwdFlow(arg, _, _, _, _, pragma[only_bind_into](argAp), argApa,
           pragma[only_bind_into](config)) and
-        returnFlowsThrough(_, _, _, _, p, pragma[only_bind_into](argAp), _,
+        returnFlowsThrough(_, _, _, _, p, pragma[only_bind_into](argAp), ap,
           pragma[only_bind_into](config)) and
         if allowsFieldFlow = false then argAp instanceof ApNil else any()
       )
@@ -1639,12 +1626,13 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate flowOutOfCallAp(
-      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
+      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
       Ap ap, Configuration config
     ) {
       exists(ApApprox apa |
-        flowOutOfCallApa(call, ret, kind, out, allowsFieldFlow, apa, config) and
-        fwdFlow(ret, _, _, _, _, ap, apa, config)
+        flowOutOfCallApa(call, ret, _, out, allowsFieldFlow, apa, config) and
+        fwdFlow(ret, _, _, _, _, ap, apa, config) and
+        pos = ret.getReturnPosition()
       )
     }
 
@@ -1739,17 +1727,17 @@ private module MkStage<StageSig PrevStage> {
       )
       or
       // flow through a callable
-      exists(DataFlowCall call, ReturnKindExt returnKind0, Ap returnAp0 |
-        revFlowInToReturn(call, node, state, returnKind0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
+      exists(DataFlowCall call, ParamNodeEx p, ReturnPosition pos, Ap innerReturnAp |
+        revFlowThrough(call, returnCtx, p, state, pos, returnAp, ap, innerReturnAp, config) and
+        flowThroughIntoCall(call, node, p, _, ap, innerReturnAp, config)
       )
       or
       // flow out of a callable
-      exists(ReturnKindExt kind |
-        revFlowOut(_, node, kind, state, _, _, ap, config) and
-        if returnFlowsThrough(node, kind, state, _, _, _, ap, config)
+      exists(ReturnPosition pos |
+        revFlowOut(_, node, pos, state, _, _, ap, config) and
+        if returnFlowsThrough(node, pos, state, _, _, _, ap, config)
         then (
-          returnCtx = TReturnCtxMaybeFlowThrough(kind) and
+          returnCtx = TReturnCtxMaybeFlowThrough(pos) and
           returnAp = apSome(ap)
         ) else (
           returnCtx = TReturnCtxNoFlowThrough() and returnAp = apNone()
@@ -1782,47 +1770,33 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate revFlowOut(
-      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, FlowState state, ReturnCtx returnCtx,
+      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, FlowState state, ReturnCtx returnCtx,
       ApOption returnAp, Ap ap, Configuration config
     ) {
       exists(NodeEx out, boolean allowsFieldFlow |
         revFlow(out, state, returnCtx, returnAp, ap, config) and
-        flowOutOfCallAp(call, ret, kind, out, allowsFieldFlow, ap, config) and
+        flowOutOfCallAp(call, ret, pos, out, allowsFieldFlow, ap, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
-    /**
-     * Same as `flowThroughIntoCall`, but restricted to calls that are reached
-     * in the flow covered by `revFlow`, where data might flow through the target
-     * callable and back out at `call`.
-     */
-    pragma[nomagic]
-    private predicate revFlowThroughIntoCall(
-      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp,
-      Configuration config
-    ) {
-      flowThroughIntoCall(call, arg, p, allowsFieldFlow, argAp, config) and
-      revFlowIsReturned(call, _, _, _, _, config)
-    }
-
     pragma[nomagic]
     private predicate revFlowParamToReturn(
-      ParamNodeEx p, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap, Configuration config
+      ParamNodeEx p, FlowState state, ReturnPosition pos, Ap returnAp, Ap ap, Configuration config
     ) {
-      revFlow(p, state, TReturnCtxMaybeFlowThrough(kind), apSome(returnAp), ap, config) and
-      parameterFlowThroughAllowed(p, kind)
+      revFlow(pragma[only_bind_into](p), state, TReturnCtxMaybeFlowThrough(pos), apSome(returnAp),
+        pragma[only_bind_into](ap), pragma[only_bind_into](config)) and
+      parameterFlowThroughAllowed(p, pos.getKind()) and
+      PrevStage::parameterMayFlowThrough(p, getApprox(ap), config)
     }
 
     pragma[nomagic]
-    private predicate revFlowInToReturn(
-      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap,
-      Configuration config
+    private predicate revFlowThrough(
+      DataFlowCall call, ReturnCtx returnCtx, ParamNodeEx p, FlowState state, ReturnPosition pos,
+      ApOption returnAp, Ap ap, Ap innerReturnAp, Configuration config
     ) {
-      exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlowParamToReturn(p, state, kind, returnAp, ap, config) and
-        revFlowThroughIntoCall(call, arg, p, allowsFieldFlow, ap, config)
-      )
+      revFlowParamToReturn(p, state, pos, innerReturnAp, ap, config) and
+      revFlowIsReturned(call, returnCtx, returnAp, pos, innerReturnAp, config)
     }
 
     /**
@@ -1832,12 +1806,12 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate revFlowIsReturned(
-      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnKindExt kind, Ap ap,
+      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnPosition pos, Ap ap,
       Configuration config
     ) {
       exists(RetNodeEx ret, FlowState state, CcCall ccc |
-        revFlowOut(call, ret, kind, state, returnCtx, returnAp, ap, config) and
-        returnFlowsThrough(ret, kind, state, ccc, _, _, ap, config) and
+        revFlowOut(call, ret, pos, state, returnCtx, returnAp, ap, config) and
+        returnFlowsThrough(ret, pos, state, ccc, _, _, ap, config) and
         matchesCall(ccc, call)
       )
     }
@@ -1915,17 +1889,17 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate parameterFlowsThroughRev(
-      ParamNodeEx p, Ap ap, ReturnKindExt kind, Ap returnAp, Configuration config
+      ParamNodeEx p, Ap ap, ReturnPosition pos, Ap returnAp, Configuration config
     ) {
-      revFlow(p, _, TReturnCtxMaybeFlowThrough(kind), apSome(returnAp), ap, config) and
-      parameterFlowThroughAllowed(p, kind)
+      revFlow(p, _, TReturnCtxMaybeFlowThrough(pos), apSome(returnAp), ap, config) and
+      parameterFlowThroughAllowed(p, pos.getKind())
     }
 
     pragma[nomagic]
     predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
-      exists(RetNodeEx ret, ReturnKindExt kind |
-        returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
-        parameterFlowsThroughRev(p, ap, kind, _, config)
+      exists(RetNodeEx ret, ReturnPosition pos |
+        returnFlowsThrough(ret, pos, _, _, p, ap, _, config) and
+        parameterFlowsThroughRev(p, ap, pos, _, config)
       )
     }
 
@@ -1933,20 +1907,21 @@ private module MkStage<StageSig PrevStage> {
     predicate returnMayFlowThrough(
       RetNodeEx ret, Ap argAp, Ap ap, ReturnKindExt kind, Configuration config
     ) {
-      exists(ParamNodeEx p |
-        returnFlowsThrough(ret, kind, _, _, p, argAp, ap, config) and
-        parameterFlowsThroughRev(p, argAp, kind, ap, config)
+      exists(ParamNodeEx p, ReturnPosition pos |
+        returnFlowsThrough(ret, pos, _, _, p, argAp, ap, config) and
+        parameterFlowsThroughRev(p, argAp, pos, ap, config) and
+        kind = pos.getKind()
       )
     }
 
     pragma[nomagic]
-    predicate revFlowInToReturnIsReturned(
+    private predicate revFlowThroughArg(
       DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnCtx returnCtx, ApOption returnAp,
       Ap ap, Configuration config
     ) {
-      exists(ReturnKindExt returnKind0, Ap returnAp0 |
-        revFlowInToReturn(call, arg, state, returnKind0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
+      exists(ParamNodeEx p, ReturnPosition pos, Ap innerReturnAp |
+        revFlowThrough(call, returnCtx, p, state, pos, returnAp, ap, innerReturnAp, config) and
+        flowThroughIntoCall(call, arg, p, _, ap, innerReturnAp, config)
       )
     }
 
@@ -1954,7 +1929,7 @@ private module MkStage<StageSig PrevStage> {
     predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
       exists(ArgNodeEx arg, FlowState state, ReturnCtx returnCtx, ApOption returnAp, Ap ap |
         revFlow(arg, state, returnCtx, returnAp, ap, config) and
-        revFlowInToReturnIsReturned(call, arg, state, returnCtx, returnAp, ap, config)
+        revFlowThroughArg(call, arg, state, returnCtx, returnAp, ap, config)
       )
     }
 
@@ -1967,8 +1942,9 @@ private module MkStage<StageSig PrevStage> {
       conscand = count(TypedContent f0, Ap ap | fwdConsCand(f0, ap, config)) and
       states = count(FlowState state | fwdFlow(_, state, _, _, _, _, config)) and
       tuples =
-        count(NodeEx n, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-          Ap ap | fwdFlow(n, state, cc, summaryCtx, argAp, ap, config))
+        count(NodeEx n, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap |
+          fwdFlow(n, state, cc, summaryCtx, argAp, ap, config)
+        )
       or
       fwd = false and
       nodes = count(NodeEx node | revFlow(node, _, _, _, _, config)) and
@@ -2823,13 +2799,12 @@ private Configuration unbindConf(Configuration conf) {
 
 pragma[nomagic]
 private predicate nodeMayUseSummary0(
-  NodeEx n, DataFlowCallable c, ParameterPosition pos, FlowState state, AccessPathApprox apa,
-  Configuration config
+  NodeEx n, ParamNodeEx p, FlowState state, AccessPathApprox apa, Configuration config
 ) {
   exists(AccessPathApprox apa0 |
-    c = n.getEnclosingCallable() and
+    Stage5::parameterMayFlowThrough(p, _, _) and
     Stage5::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
-    Stage5::fwdFlow(n, state, any(CallContextCall ccc), TParameterPositionSome(pos),
+    Stage5::fwdFlow(n, state, any(CallContextCall ccc), TParamNodeSome(p.asNode()),
       TAccessPathApproxSome(apa), apa0, config)
   )
 }
@@ -2838,10 +2813,9 @@ pragma[nomagic]
 private predicate nodeMayUseSummary(
   NodeEx n, FlowState state, AccessPathApprox apa, Configuration config
 ) {
-  exists(DataFlowCallable c, ParameterPosition pos, ParamNodeEx p |
+  exists(ParamNodeEx p |
     Stage5::parameterMayFlowThrough(p, apa, config) and
-    nodeMayUseSummary0(n, c, pos, state, apa, config) and
-    p.isParameterOf(c, pos)
+    nodeMayUseSummary0(n, p, state, apa, config)
   )
 }
 
diff --git a/cpp/ql/lib/experimental/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl2.qll b/cpp/ql/lib/experimental/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl2.qll
index 6741ccc2f06..23d11a38842 100644
--- a/cpp/ql/lib/experimental/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl2.qll
+++ b/cpp/ql/lib/experimental/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl2.qll
@@ -1327,8 +1327,8 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     additional predicate fwdFlow(
-      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      Ap ap, ApApprox apa, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      ApApprox apa, Configuration config
     ) {
       fwdFlow0(node, state, cc, summaryCtx, argAp, ap, apa, config) and
       PrevStage::revFlow(node, state, apa, config) and
@@ -1337,21 +1337,21 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[inline]
     additional predicate fwdFlow(
-      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      Ap ap, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      Configuration config
     ) {
       fwdFlow(node, state, cc, summaryCtx, argAp, ap, _, config)
     }
 
     pragma[nomagic]
     private predicate fwdFlow0(
-      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      Ap ap, ApApprox apa, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      ApApprox apa, Configuration config
     ) {
       sourceNode(node, state, config) and
       (if hasSourceCallCtx(config) then cc = ccSomeCall() else cc = ccNone()) and
       argAp = apNone() and
-      summaryCtx = TParameterPositionNone() and
+      summaryCtx = TParamNodeNone() and
       ap = getApNil(node) and
       apa = getApprox(ap)
       or
@@ -1372,7 +1372,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, apa, pragma[only_bind_into](config)) and
         jumpStep(mid, node, config) and
         cc = ccNone() and
-        summaryCtx = TParameterPositionNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone()
       )
       or
@@ -1380,7 +1380,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, state, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStep(mid, node, config) and
         cc = ccNone() and
-        summaryCtx = TParameterPositionNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone() and
         ap = getApNil(node) and
         apa = getApprox(ap)
@@ -1390,7 +1390,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, state0, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStateStep(mid, state0, node, state, config) and
         cc = ccNone() and
-        summaryCtx = TParameterPositionNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone() and
         ap = getApNil(node) and
         apa = getApprox(ap)
@@ -1414,10 +1414,10 @@ private module MkStage<StageSig PrevStage> {
       fwdFlowIn(_, node, state, _, cc, _, _, ap, apa, config) and
       if PrevStage::parameterMayFlowThrough(node, apa, config)
       then (
-        summaryCtx = TParameterPositionSome(node.(ParamNodeEx).getPosition()) and
+        summaryCtx = TParamNodeSome(node.asNode()) and
         argAp = apSome(ap)
       ) else (
-        summaryCtx = TParameterPositionNone() and argAp = apNone()
+        summaryCtx = TParamNodeNone() and argAp = apNone()
       )
       or
       // flow out of a callable
@@ -1433,16 +1433,19 @@ private module MkStage<StageSig PrevStage> {
       )
       or
       // flow through a callable
-      exists(DataFlowCall call, ParameterPosition summaryCtx0, Ap argAp0 |
-        fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, apa, config) and
-        fwdFlowIsEntered(call, cc, summaryCtx, argAp, summaryCtx0, argAp0, config)
+      exists(
+        DataFlowCall call, CcCall ccc, RetNodeEx ret, boolean allowsFieldFlow, ApApprox innerArgApa
+      |
+        fwdFlowThrough(call, cc, state, ccc, summaryCtx, argAp, ap, apa, ret, innerArgApa, config) and
+        flowThroughOutOfCall(call, ccc, ret, node, allowsFieldFlow, innerArgApa, apa, config) and
+        if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
     pragma[nomagic]
     private predicate fwdFlowStore(
       NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc,
-      ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
+      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
     ) {
       exists(DataFlowType contentType, ApApprox apa1 |
         fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, apa1, config) and
@@ -1473,8 +1476,8 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowRead0(
-      NodeEx node1, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      ApNonNil ap, Configuration config
+      NodeEx node1, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, ApNonNil ap,
+      Configuration config
     ) {
       fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, _, _, config)
@@ -1483,7 +1486,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowRead(
       Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc,
-      ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
+      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
     ) {
       fwdFlowRead0(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, c, node2, config) and
@@ -1493,7 +1496,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowIn(
       DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, CcCall innercc,
-      ParameterPositionOption summaryCtx, ApOption argAp, Ap ap, ApApprox apa, Configuration config
+      ParamNodeOption summaryCtx, ApOption argAp, Ap ap, ApApprox apa, Configuration config
     ) {
       exists(ArgNodeEx arg, boolean allowsFieldFlow |
         fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, apa, config) and
@@ -1505,64 +1508,38 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowRetFromArg(
-      RetNodeEx ret, FlowState state, CcCall ccc, ParameterPosition summaryCtx, ParamNodeEx p,
-      Ap argAp, ApApprox argApa, Ap ap, ApApprox apa, Configuration config
+      RetNodeEx ret, FlowState state, CcCall ccc, ParamNodeEx summaryCtx, Ap argAp, ApApprox argApa,
+      Ap ap, ApApprox apa, Configuration config
     ) {
-      exists(DataFlowCallable c, ReturnKindExt kind |
+      exists(ReturnKindExt kind |
         fwdFlow(pragma[only_bind_into](ret), state, ccc,
-          TParameterPositionSome(pragma[only_bind_into](summaryCtx)), apSome(argAp), ap, apa, config) and
-        getApprox(argAp) = argApa and
-        c = ret.getEnclosingCallable() and
+          TParamNodeSome(pragma[only_bind_into](summaryCtx.asNode())),
+          pragma[only_bind_into](apSome(argAp)), ap, pragma[only_bind_into](apa),
+          pragma[only_bind_into](config)) and
         kind = ret.getKind() and
-        p.isParameterOf(c, pragma[only_bind_into](summaryCtx)) and
-        parameterFlowThroughAllowed(p, kind)
+        parameterFlowThroughAllowed(summaryCtx, kind) and
+        argApa = getApprox(argAp) and
+        PrevStage::returnMayFlowThrough(ret, argApa, apa, kind, pragma[only_bind_into](config))
       )
     }
 
     pragma[inline]
-    private predicate fwdFlowInMayFlowThrough(
-      DataFlowCall call, Cc cc, CcCall innerCc, ParameterPositionOption summaryCtx, ApOption argAp,
-      ParamNodeEx param, Ap ap, ApApprox apa, Configuration config
+    private predicate fwdFlowThrough0(
+      DataFlowCall call, Cc cc, FlowState state, CcCall ccc, ParamNodeOption summaryCtx,
+      ApOption argAp, Ap ap, ApApprox apa, RetNodeEx ret, ParamNodeEx innerSummaryCtx,
+      Ap innerArgAp, ApApprox innerArgApa, Configuration config
     ) {
-      fwdFlowIn(call, pragma[only_bind_into](param), _, cc, innerCc, summaryCtx, argAp, ap,
-        pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
-      PrevStage::parameterMayFlowThrough(param, apa, config)
-    }
-
-    // dedup before joining with `flowThroughOutOfCall`
-    pragma[nomagic]
-    private predicate fwdFlowInMayFlowThroughProj(
-      DataFlowCall call, CcCall innerCc, ApApprox apa, Configuration config
-    ) {
-      fwdFlowInMayFlowThrough(call, _, innerCc, _, _, _, _, apa, config)
-    }
-
-    /**
-     * Same as `flowThroughOutOfCall`, but restricted to calls that are reached
-     * in the flow covered by `fwdFlow`, where data might flow through the target
-     * callable and back out at `call`.
-     */
-    pragma[nomagic]
-    private predicate fwdFlowThroughOutOfCall(
-      DataFlowCall call, CcCall ccc, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow,
-      ApApprox argApa, ApApprox apa, Configuration config
-    ) {
-      fwdFlowInMayFlowThroughProj(call, ccc, argApa, config) and
-      flowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, argApa, apa, config)
+      fwdFlowRetFromArg(ret, state, ccc, innerSummaryCtx, innerArgAp, innerArgApa, ap, apa, config) and
+      fwdFlowIsEntered(call, cc, ccc, summaryCtx, argAp, innerSummaryCtx, innerArgAp, config)
     }
 
     pragma[nomagic]
-    private predicate fwdFlowOutFromArg(
-      DataFlowCall call, NodeEx out, FlowState state, ParameterPosition summaryCtx, Ap argAp, Ap ap,
-      ApApprox apa, Configuration config
+    private predicate fwdFlowThrough(
+      DataFlowCall call, Cc cc, FlowState state, CcCall ccc, ParamNodeOption summaryCtx,
+      ApOption argAp, Ap ap, ApApprox apa, RetNodeEx ret, ApApprox innerArgApa, Configuration config
     ) {
-      exists(RetNodeEx ret, boolean allowsFieldFlow, CcCall ccc, ApApprox argApa |
-        fwdFlowRetFromArg(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc),
-          summaryCtx, _, argAp, pragma[only_bind_into](argApa), ap, pragma[only_bind_into](apa),
-          config) and
-        fwdFlowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, argApa, apa, config) and
-        (if allowsFieldFlow = false then ap instanceof ApNil else any())
-      )
+      fwdFlowThrough0(call, cc, state, ccc, summaryCtx, argAp, ap, apa, ret, _, _, innerArgApa,
+        config)
     }
 
     /**
@@ -1571,12 +1548,14 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate fwdFlowIsEntered(
-      DataFlowCall call, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      ParameterPosition pos, Ap ap, Configuration config
+      DataFlowCall call, Cc cc, CcCall innerCc, ParamNodeOption summaryCtx, ApOption argAp,
+      ParamNodeEx p, Ap ap, Configuration config
     ) {
-      exists(ParamNodeEx param |
-        fwdFlowInMayFlowThrough(call, cc, _, summaryCtx, argAp, param, ap, _, config) and
-        pos = param.getPosition()
+      exists(ApApprox apa |
+        fwdFlowIn(call, pragma[only_bind_into](p), _, cc, innerCc, summaryCtx, argAp, ap,
+          pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
+        PrevStage::parameterMayFlowThrough(p, apa, config) and
+        PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config))
       )
     }
 
@@ -1596,23 +1575,31 @@ private module MkStage<StageSig PrevStage> {
       fwdFlowConsCand(ap1, c, ap2, config)
     }
 
+    pragma[nomagic]
+    private predicate returnFlowsThrough0(
+      DataFlowCall call, FlowState state, CcCall ccc, Ap ap, ApApprox apa, RetNodeEx ret,
+      ParamNodeEx innerSummaryCtx, Ap innerArgAp, ApApprox innerArgApa, Configuration config
+    ) {
+      fwdFlowThrough0(call, _, state, ccc, _, _, ap, apa, ret, innerSummaryCtx, innerArgAp,
+        innerArgApa, config)
+    }
+
     pragma[nomagic]
     private predicate returnFlowsThrough(
-      RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, ParamNodeEx p, Ap argAp,
+      RetNodeEx ret, ReturnPosition pos, FlowState state, CcCall ccc, ParamNodeEx p, Ap argAp,
       Ap ap, Configuration config
     ) {
-      exists(boolean allowsFieldFlow, ApApprox argApa, ApApprox apa |
-        fwdFlowRetFromArg(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc), _, p,
-          argAp, pragma[only_bind_into](argApa), ap, pragma[only_bind_into](apa), config) and
-        kind = ret.getKind() and
-        fwdFlowThroughOutOfCall(_, ccc, ret, _, allowsFieldFlow, argApa, apa, config) and
-        (if allowsFieldFlow = false then ap instanceof ApNil else any())
+      exists(DataFlowCall call, ApApprox apa, boolean allowsFieldFlow, ApApprox innerArgApa |
+        returnFlowsThrough0(call, state, ccc, ap, apa, ret, p, argAp, innerArgApa, config) and
+        flowThroughOutOfCall(call, ccc, ret, _, allowsFieldFlow, innerArgApa, apa, config) and
+        pos = ret.getReturnPosition() and
+        if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
     pragma[nomagic]
     private predicate flowThroughIntoCall(
-      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp,
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp, Ap ap,
       Configuration config
     ) {
       exists(ApApprox argApa |
@@ -1620,7 +1607,7 @@ private module MkStage<StageSig PrevStage> {
           allowsFieldFlow, argApa, pragma[only_bind_into](config)) and
         fwdFlow(arg, _, _, _, _, pragma[only_bind_into](argAp), argApa,
           pragma[only_bind_into](config)) and
-        returnFlowsThrough(_, _, _, _, p, pragma[only_bind_into](argAp), _,
+        returnFlowsThrough(_, _, _, _, p, pragma[only_bind_into](argAp), ap,
           pragma[only_bind_into](config)) and
         if allowsFieldFlow = false then argAp instanceof ApNil else any()
       )
@@ -1639,12 +1626,13 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate flowOutOfCallAp(
-      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
+      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
       Ap ap, Configuration config
     ) {
       exists(ApApprox apa |
-        flowOutOfCallApa(call, ret, kind, out, allowsFieldFlow, apa, config) and
-        fwdFlow(ret, _, _, _, _, ap, apa, config)
+        flowOutOfCallApa(call, ret, _, out, allowsFieldFlow, apa, config) and
+        fwdFlow(ret, _, _, _, _, ap, apa, config) and
+        pos = ret.getReturnPosition()
       )
     }
 
@@ -1739,17 +1727,17 @@ private module MkStage<StageSig PrevStage> {
       )
       or
       // flow through a callable
-      exists(DataFlowCall call, ReturnKindExt returnKind0, Ap returnAp0 |
-        revFlowInToReturn(call, node, state, returnKind0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
+      exists(DataFlowCall call, ParamNodeEx p, ReturnPosition pos, Ap innerReturnAp |
+        revFlowThrough(call, returnCtx, p, state, pos, returnAp, ap, innerReturnAp, config) and
+        flowThroughIntoCall(call, node, p, _, ap, innerReturnAp, config)
       )
       or
       // flow out of a callable
-      exists(ReturnKindExt kind |
-        revFlowOut(_, node, kind, state, _, _, ap, config) and
-        if returnFlowsThrough(node, kind, state, _, _, _, ap, config)
+      exists(ReturnPosition pos |
+        revFlowOut(_, node, pos, state, _, _, ap, config) and
+        if returnFlowsThrough(node, pos, state, _, _, _, ap, config)
         then (
-          returnCtx = TReturnCtxMaybeFlowThrough(kind) and
+          returnCtx = TReturnCtxMaybeFlowThrough(pos) and
           returnAp = apSome(ap)
         ) else (
           returnCtx = TReturnCtxNoFlowThrough() and returnAp = apNone()
@@ -1782,47 +1770,33 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate revFlowOut(
-      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, FlowState state, ReturnCtx returnCtx,
+      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, FlowState state, ReturnCtx returnCtx,
       ApOption returnAp, Ap ap, Configuration config
     ) {
       exists(NodeEx out, boolean allowsFieldFlow |
         revFlow(out, state, returnCtx, returnAp, ap, config) and
-        flowOutOfCallAp(call, ret, kind, out, allowsFieldFlow, ap, config) and
+        flowOutOfCallAp(call, ret, pos, out, allowsFieldFlow, ap, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
-    /**
-     * Same as `flowThroughIntoCall`, but restricted to calls that are reached
-     * in the flow covered by `revFlow`, where data might flow through the target
-     * callable and back out at `call`.
-     */
-    pragma[nomagic]
-    private predicate revFlowThroughIntoCall(
-      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp,
-      Configuration config
-    ) {
-      flowThroughIntoCall(call, arg, p, allowsFieldFlow, argAp, config) and
-      revFlowIsReturned(call, _, _, _, _, config)
-    }
-
     pragma[nomagic]
     private predicate revFlowParamToReturn(
-      ParamNodeEx p, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap, Configuration config
+      ParamNodeEx p, FlowState state, ReturnPosition pos, Ap returnAp, Ap ap, Configuration config
     ) {
-      revFlow(p, state, TReturnCtxMaybeFlowThrough(kind), apSome(returnAp), ap, config) and
-      parameterFlowThroughAllowed(p, kind)
+      revFlow(pragma[only_bind_into](p), state, TReturnCtxMaybeFlowThrough(pos), apSome(returnAp),
+        pragma[only_bind_into](ap), pragma[only_bind_into](config)) and
+      parameterFlowThroughAllowed(p, pos.getKind()) and
+      PrevStage::parameterMayFlowThrough(p, getApprox(ap), config)
     }
 
     pragma[nomagic]
-    private predicate revFlowInToReturn(
-      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap,
-      Configuration config
+    private predicate revFlowThrough(
+      DataFlowCall call, ReturnCtx returnCtx, ParamNodeEx p, FlowState state, ReturnPosition pos,
+      ApOption returnAp, Ap ap, Ap innerReturnAp, Configuration config
     ) {
-      exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlowParamToReturn(p, state, kind, returnAp, ap, config) and
-        revFlowThroughIntoCall(call, arg, p, allowsFieldFlow, ap, config)
-      )
+      revFlowParamToReturn(p, state, pos, innerReturnAp, ap, config) and
+      revFlowIsReturned(call, returnCtx, returnAp, pos, innerReturnAp, config)
     }
 
     /**
@@ -1832,12 +1806,12 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate revFlowIsReturned(
-      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnKindExt kind, Ap ap,
+      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnPosition pos, Ap ap,
       Configuration config
     ) {
       exists(RetNodeEx ret, FlowState state, CcCall ccc |
-        revFlowOut(call, ret, kind, state, returnCtx, returnAp, ap, config) and
-        returnFlowsThrough(ret, kind, state, ccc, _, _, ap, config) and
+        revFlowOut(call, ret, pos, state, returnCtx, returnAp, ap, config) and
+        returnFlowsThrough(ret, pos, state, ccc, _, _, ap, config) and
         matchesCall(ccc, call)
       )
     }
@@ -1915,17 +1889,17 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate parameterFlowsThroughRev(
-      ParamNodeEx p, Ap ap, ReturnKindExt kind, Ap returnAp, Configuration config
+      ParamNodeEx p, Ap ap, ReturnPosition pos, Ap returnAp, Configuration config
     ) {
-      revFlow(p, _, TReturnCtxMaybeFlowThrough(kind), apSome(returnAp), ap, config) and
-      parameterFlowThroughAllowed(p, kind)
+      revFlow(p, _, TReturnCtxMaybeFlowThrough(pos), apSome(returnAp), ap, config) and
+      parameterFlowThroughAllowed(p, pos.getKind())
     }
 
     pragma[nomagic]
     predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
-      exists(RetNodeEx ret, ReturnKindExt kind |
-        returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
-        parameterFlowsThroughRev(p, ap, kind, _, config)
+      exists(RetNodeEx ret, ReturnPosition pos |
+        returnFlowsThrough(ret, pos, _, _, p, ap, _, config) and
+        parameterFlowsThroughRev(p, ap, pos, _, config)
       )
     }
 
@@ -1933,20 +1907,21 @@ private module MkStage<StageSig PrevStage> {
     predicate returnMayFlowThrough(
       RetNodeEx ret, Ap argAp, Ap ap, ReturnKindExt kind, Configuration config
     ) {
-      exists(ParamNodeEx p |
-        returnFlowsThrough(ret, kind, _, _, p, argAp, ap, config) and
-        parameterFlowsThroughRev(p, argAp, kind, ap, config)
+      exists(ParamNodeEx p, ReturnPosition pos |
+        returnFlowsThrough(ret, pos, _, _, p, argAp, ap, config) and
+        parameterFlowsThroughRev(p, argAp, pos, ap, config) and
+        kind = pos.getKind()
       )
     }
 
     pragma[nomagic]
-    predicate revFlowInToReturnIsReturned(
+    private predicate revFlowThroughArg(
       DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnCtx returnCtx, ApOption returnAp,
       Ap ap, Configuration config
     ) {
-      exists(ReturnKindExt returnKind0, Ap returnAp0 |
-        revFlowInToReturn(call, arg, state, returnKind0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
+      exists(ParamNodeEx p, ReturnPosition pos, Ap innerReturnAp |
+        revFlowThrough(call, returnCtx, p, state, pos, returnAp, ap, innerReturnAp, config) and
+        flowThroughIntoCall(call, arg, p, _, ap, innerReturnAp, config)
       )
     }
 
@@ -1954,7 +1929,7 @@ private module MkStage<StageSig PrevStage> {
     predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
       exists(ArgNodeEx arg, FlowState state, ReturnCtx returnCtx, ApOption returnAp, Ap ap |
         revFlow(arg, state, returnCtx, returnAp, ap, config) and
-        revFlowInToReturnIsReturned(call, arg, state, returnCtx, returnAp, ap, config)
+        revFlowThroughArg(call, arg, state, returnCtx, returnAp, ap, config)
       )
     }
 
@@ -1967,8 +1942,9 @@ private module MkStage<StageSig PrevStage> {
       conscand = count(TypedContent f0, Ap ap | fwdConsCand(f0, ap, config)) and
       states = count(FlowState state | fwdFlow(_, state, _, _, _, _, config)) and
       tuples =
-        count(NodeEx n, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-          Ap ap | fwdFlow(n, state, cc, summaryCtx, argAp, ap, config))
+        count(NodeEx n, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap |
+          fwdFlow(n, state, cc, summaryCtx, argAp, ap, config)
+        )
       or
       fwd = false and
       nodes = count(NodeEx node | revFlow(node, _, _, _, _, config)) and
@@ -2823,13 +2799,12 @@ private Configuration unbindConf(Configuration conf) {
 
 pragma[nomagic]
 private predicate nodeMayUseSummary0(
-  NodeEx n, DataFlowCallable c, ParameterPosition pos, FlowState state, AccessPathApprox apa,
-  Configuration config
+  NodeEx n, ParamNodeEx p, FlowState state, AccessPathApprox apa, Configuration config
 ) {
   exists(AccessPathApprox apa0 |
-    c = n.getEnclosingCallable() and
+    Stage5::parameterMayFlowThrough(p, _, _) and
     Stage5::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
-    Stage5::fwdFlow(n, state, any(CallContextCall ccc), TParameterPositionSome(pos),
+    Stage5::fwdFlow(n, state, any(CallContextCall ccc), TParamNodeSome(p.asNode()),
       TAccessPathApproxSome(apa), apa0, config)
   )
 }
@@ -2838,10 +2813,9 @@ pragma[nomagic]
 private predicate nodeMayUseSummary(
   NodeEx n, FlowState state, AccessPathApprox apa, Configuration config
 ) {
-  exists(DataFlowCallable c, ParameterPosition pos, ParamNodeEx p |
+  exists(ParamNodeEx p |
     Stage5::parameterMayFlowThrough(p, apa, config) and
-    nodeMayUseSummary0(n, c, pos, state, apa, config) and
-    p.isParameterOf(c, pos)
+    nodeMayUseSummary0(n, p, state, apa, config)
   )
 }
 
diff --git a/cpp/ql/lib/experimental/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl3.qll b/cpp/ql/lib/experimental/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl3.qll
index 6741ccc2f06..23d11a38842 100644
--- a/cpp/ql/lib/experimental/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl3.qll
+++ b/cpp/ql/lib/experimental/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl3.qll
@@ -1327,8 +1327,8 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     additional predicate fwdFlow(
-      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      Ap ap, ApApprox apa, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      ApApprox apa, Configuration config
     ) {
       fwdFlow0(node, state, cc, summaryCtx, argAp, ap, apa, config) and
       PrevStage::revFlow(node, state, apa, config) and
@@ -1337,21 +1337,21 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[inline]
     additional predicate fwdFlow(
-      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      Ap ap, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      Configuration config
     ) {
       fwdFlow(node, state, cc, summaryCtx, argAp, ap, _, config)
     }
 
     pragma[nomagic]
     private predicate fwdFlow0(
-      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      Ap ap, ApApprox apa, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      ApApprox apa, Configuration config
     ) {
       sourceNode(node, state, config) and
       (if hasSourceCallCtx(config) then cc = ccSomeCall() else cc = ccNone()) and
       argAp = apNone() and
-      summaryCtx = TParameterPositionNone() and
+      summaryCtx = TParamNodeNone() and
       ap = getApNil(node) and
       apa = getApprox(ap)
       or
@@ -1372,7 +1372,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, apa, pragma[only_bind_into](config)) and
         jumpStep(mid, node, config) and
         cc = ccNone() and
-        summaryCtx = TParameterPositionNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone()
       )
       or
@@ -1380,7 +1380,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, state, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStep(mid, node, config) and
         cc = ccNone() and
-        summaryCtx = TParameterPositionNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone() and
         ap = getApNil(node) and
         apa = getApprox(ap)
@@ -1390,7 +1390,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, state0, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStateStep(mid, state0, node, state, config) and
         cc = ccNone() and
-        summaryCtx = TParameterPositionNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone() and
         ap = getApNil(node) and
         apa = getApprox(ap)
@@ -1414,10 +1414,10 @@ private module MkStage<StageSig PrevStage> {
       fwdFlowIn(_, node, state, _, cc, _, _, ap, apa, config) and
       if PrevStage::parameterMayFlowThrough(node, apa, config)
       then (
-        summaryCtx = TParameterPositionSome(node.(ParamNodeEx).getPosition()) and
+        summaryCtx = TParamNodeSome(node.asNode()) and
         argAp = apSome(ap)
       ) else (
-        summaryCtx = TParameterPositionNone() and argAp = apNone()
+        summaryCtx = TParamNodeNone() and argAp = apNone()
       )
       or
       // flow out of a callable
@@ -1433,16 +1433,19 @@ private module MkStage<StageSig PrevStage> {
       )
       or
       // flow through a callable
-      exists(DataFlowCall call, ParameterPosition summaryCtx0, Ap argAp0 |
-        fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, apa, config) and
-        fwdFlowIsEntered(call, cc, summaryCtx, argAp, summaryCtx0, argAp0, config)
+      exists(
+        DataFlowCall call, CcCall ccc, RetNodeEx ret, boolean allowsFieldFlow, ApApprox innerArgApa
+      |
+        fwdFlowThrough(call, cc, state, ccc, summaryCtx, argAp, ap, apa, ret, innerArgApa, config) and
+        flowThroughOutOfCall(call, ccc, ret, node, allowsFieldFlow, innerArgApa, apa, config) and
+        if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
     pragma[nomagic]
     private predicate fwdFlowStore(
       NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc,
-      ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
+      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
     ) {
       exists(DataFlowType contentType, ApApprox apa1 |
         fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, apa1, config) and
@@ -1473,8 +1476,8 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowRead0(
-      NodeEx node1, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      ApNonNil ap, Configuration config
+      NodeEx node1, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, ApNonNil ap,
+      Configuration config
     ) {
       fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, _, _, config)
@@ -1483,7 +1486,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowRead(
       Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc,
-      ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
+      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
     ) {
       fwdFlowRead0(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, c, node2, config) and
@@ -1493,7 +1496,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowIn(
       DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, CcCall innercc,
-      ParameterPositionOption summaryCtx, ApOption argAp, Ap ap, ApApprox apa, Configuration config
+      ParamNodeOption summaryCtx, ApOption argAp, Ap ap, ApApprox apa, Configuration config
     ) {
       exists(ArgNodeEx arg, boolean allowsFieldFlow |
         fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, apa, config) and
@@ -1505,64 +1508,38 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowRetFromArg(
-      RetNodeEx ret, FlowState state, CcCall ccc, ParameterPosition summaryCtx, ParamNodeEx p,
-      Ap argAp, ApApprox argApa, Ap ap, ApApprox apa, Configuration config
+      RetNodeEx ret, FlowState state, CcCall ccc, ParamNodeEx summaryCtx, Ap argAp, ApApprox argApa,
+      Ap ap, ApApprox apa, Configuration config
     ) {
-      exists(DataFlowCallable c, ReturnKindExt kind |
+      exists(ReturnKindExt kind |
         fwdFlow(pragma[only_bind_into](ret), state, ccc,
-          TParameterPositionSome(pragma[only_bind_into](summaryCtx)), apSome(argAp), ap, apa, config) and
-        getApprox(argAp) = argApa and
-        c = ret.getEnclosingCallable() and
+          TParamNodeSome(pragma[only_bind_into](summaryCtx.asNode())),
+          pragma[only_bind_into](apSome(argAp)), ap, pragma[only_bind_into](apa),
+          pragma[only_bind_into](config)) and
         kind = ret.getKind() and
-        p.isParameterOf(c, pragma[only_bind_into](summaryCtx)) and
-        parameterFlowThroughAllowed(p, kind)
+        parameterFlowThroughAllowed(summaryCtx, kind) and
+        argApa = getApprox(argAp) and
+        PrevStage::returnMayFlowThrough(ret, argApa, apa, kind, pragma[only_bind_into](config))
       )
     }
 
     pragma[inline]
-    private predicate fwdFlowInMayFlowThrough(
-      DataFlowCall call, Cc cc, CcCall innerCc, ParameterPositionOption summaryCtx, ApOption argAp,
-      ParamNodeEx param, Ap ap, ApApprox apa, Configuration config
+    private predicate fwdFlowThrough0(
+      DataFlowCall call, Cc cc, FlowState state, CcCall ccc, ParamNodeOption summaryCtx,
+      ApOption argAp, Ap ap, ApApprox apa, RetNodeEx ret, ParamNodeEx innerSummaryCtx,
+      Ap innerArgAp, ApApprox innerArgApa, Configuration config
     ) {
-      fwdFlowIn(call, pragma[only_bind_into](param), _, cc, innerCc, summaryCtx, argAp, ap,
-        pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
-      PrevStage::parameterMayFlowThrough(param, apa, config)
-    }
-
-    // dedup before joining with `flowThroughOutOfCall`
-    pragma[nomagic]
-    private predicate fwdFlowInMayFlowThroughProj(
-      DataFlowCall call, CcCall innerCc, ApApprox apa, Configuration config
-    ) {
-      fwdFlowInMayFlowThrough(call, _, innerCc, _, _, _, _, apa, config)
-    }
-
-    /**
-     * Same as `flowThroughOutOfCall`, but restricted to calls that are reached
-     * in the flow covered by `fwdFlow`, where data might flow through the target
-     * callable and back out at `call`.
-     */
-    pragma[nomagic]
-    private predicate fwdFlowThroughOutOfCall(
-      DataFlowCall call, CcCall ccc, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow,
-      ApApprox argApa, ApApprox apa, Configuration config
-    ) {
-      fwdFlowInMayFlowThroughProj(call, ccc, argApa, config) and
-      flowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, argApa, apa, config)
+      fwdFlowRetFromArg(ret, state, ccc, innerSummaryCtx, innerArgAp, innerArgApa, ap, apa, config) and
+      fwdFlowIsEntered(call, cc, ccc, summaryCtx, argAp, innerSummaryCtx, innerArgAp, config)
     }
 
     pragma[nomagic]
-    private predicate fwdFlowOutFromArg(
-      DataFlowCall call, NodeEx out, FlowState state, ParameterPosition summaryCtx, Ap argAp, Ap ap,
-      ApApprox apa, Configuration config
+    private predicate fwdFlowThrough(
+      DataFlowCall call, Cc cc, FlowState state, CcCall ccc, ParamNodeOption summaryCtx,
+      ApOption argAp, Ap ap, ApApprox apa, RetNodeEx ret, ApApprox innerArgApa, Configuration config
     ) {
-      exists(RetNodeEx ret, boolean allowsFieldFlow, CcCall ccc, ApApprox argApa |
-        fwdFlowRetFromArg(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc),
-          summaryCtx, _, argAp, pragma[only_bind_into](argApa), ap, pragma[only_bind_into](apa),
-          config) and
-        fwdFlowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, argApa, apa, config) and
-        (if allowsFieldFlow = false then ap instanceof ApNil else any())
-      )
+      fwdFlowThrough0(call, cc, state, ccc, summaryCtx, argAp, ap, apa, ret, _, _, innerArgApa,
+        config)
     }
 
     /**
@@ -1571,12 +1548,14 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate fwdFlowIsEntered(
-      DataFlowCall call, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      ParameterPosition pos, Ap ap, Configuration config
+      DataFlowCall call, Cc cc, CcCall innerCc, ParamNodeOption summaryCtx, ApOption argAp,
+      ParamNodeEx p, Ap ap, Configuration config
     ) {
-      exists(ParamNodeEx param |
-        fwdFlowInMayFlowThrough(call, cc, _, summaryCtx, argAp, param, ap, _, config) and
-        pos = param.getPosition()
+      exists(ApApprox apa |
+        fwdFlowIn(call, pragma[only_bind_into](p), _, cc, innerCc, summaryCtx, argAp, ap,
+          pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
+        PrevStage::parameterMayFlowThrough(p, apa, config) and
+        PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config))
       )
     }
 
@@ -1596,23 +1575,31 @@ private module MkStage<StageSig PrevStage> {
       fwdFlowConsCand(ap1, c, ap2, config)
     }
 
+    pragma[nomagic]
+    private predicate returnFlowsThrough0(
+      DataFlowCall call, FlowState state, CcCall ccc, Ap ap, ApApprox apa, RetNodeEx ret,
+      ParamNodeEx innerSummaryCtx, Ap innerArgAp, ApApprox innerArgApa, Configuration config
+    ) {
+      fwdFlowThrough0(call, _, state, ccc, _, _, ap, apa, ret, innerSummaryCtx, innerArgAp,
+        innerArgApa, config)
+    }
+
     pragma[nomagic]
     private predicate returnFlowsThrough(
-      RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, ParamNodeEx p, Ap argAp,
+      RetNodeEx ret, ReturnPosition pos, FlowState state, CcCall ccc, ParamNodeEx p, Ap argAp,
       Ap ap, Configuration config
     ) {
-      exists(boolean allowsFieldFlow, ApApprox argApa, ApApprox apa |
-        fwdFlowRetFromArg(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc), _, p,
-          argAp, pragma[only_bind_into](argApa), ap, pragma[only_bind_into](apa), config) and
-        kind = ret.getKind() and
-        fwdFlowThroughOutOfCall(_, ccc, ret, _, allowsFieldFlow, argApa, apa, config) and
-        (if allowsFieldFlow = false then ap instanceof ApNil else any())
+      exists(DataFlowCall call, ApApprox apa, boolean allowsFieldFlow, ApApprox innerArgApa |
+        returnFlowsThrough0(call, state, ccc, ap, apa, ret, p, argAp, innerArgApa, config) and
+        flowThroughOutOfCall(call, ccc, ret, _, allowsFieldFlow, innerArgApa, apa, config) and
+        pos = ret.getReturnPosition() and
+        if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
     pragma[nomagic]
     private predicate flowThroughIntoCall(
-      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp,
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp, Ap ap,
       Configuration config
     ) {
       exists(ApApprox argApa |
@@ -1620,7 +1607,7 @@ private module MkStage<StageSig PrevStage> {
           allowsFieldFlow, argApa, pragma[only_bind_into](config)) and
         fwdFlow(arg, _, _, _, _, pragma[only_bind_into](argAp), argApa,
           pragma[only_bind_into](config)) and
-        returnFlowsThrough(_, _, _, _, p, pragma[only_bind_into](argAp), _,
+        returnFlowsThrough(_, _, _, _, p, pragma[only_bind_into](argAp), ap,
           pragma[only_bind_into](config)) and
         if allowsFieldFlow = false then argAp instanceof ApNil else any()
       )
@@ -1639,12 +1626,13 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate flowOutOfCallAp(
-      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
+      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
       Ap ap, Configuration config
     ) {
       exists(ApApprox apa |
-        flowOutOfCallApa(call, ret, kind, out, allowsFieldFlow, apa, config) and
-        fwdFlow(ret, _, _, _, _, ap, apa, config)
+        flowOutOfCallApa(call, ret, _, out, allowsFieldFlow, apa, config) and
+        fwdFlow(ret, _, _, _, _, ap, apa, config) and
+        pos = ret.getReturnPosition()
       )
     }
 
@@ -1739,17 +1727,17 @@ private module MkStage<StageSig PrevStage> {
       )
       or
       // flow through a callable
-      exists(DataFlowCall call, ReturnKindExt returnKind0, Ap returnAp0 |
-        revFlowInToReturn(call, node, state, returnKind0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
+      exists(DataFlowCall call, ParamNodeEx p, ReturnPosition pos, Ap innerReturnAp |
+        revFlowThrough(call, returnCtx, p, state, pos, returnAp, ap, innerReturnAp, config) and
+        flowThroughIntoCall(call, node, p, _, ap, innerReturnAp, config)
       )
       or
       // flow out of a callable
-      exists(ReturnKindExt kind |
-        revFlowOut(_, node, kind, state, _, _, ap, config) and
-        if returnFlowsThrough(node, kind, state, _, _, _, ap, config)
+      exists(ReturnPosition pos |
+        revFlowOut(_, node, pos, state, _, _, ap, config) and
+        if returnFlowsThrough(node, pos, state, _, _, _, ap, config)
         then (
-          returnCtx = TReturnCtxMaybeFlowThrough(kind) and
+          returnCtx = TReturnCtxMaybeFlowThrough(pos) and
           returnAp = apSome(ap)
         ) else (
           returnCtx = TReturnCtxNoFlowThrough() and returnAp = apNone()
@@ -1782,47 +1770,33 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate revFlowOut(
-      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, FlowState state, ReturnCtx returnCtx,
+      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, FlowState state, ReturnCtx returnCtx,
       ApOption returnAp, Ap ap, Configuration config
     ) {
       exists(NodeEx out, boolean allowsFieldFlow |
         revFlow(out, state, returnCtx, returnAp, ap, config) and
-        flowOutOfCallAp(call, ret, kind, out, allowsFieldFlow, ap, config) and
+        flowOutOfCallAp(call, ret, pos, out, allowsFieldFlow, ap, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
-    /**
-     * Same as `flowThroughIntoCall`, but restricted to calls that are reached
-     * in the flow covered by `revFlow`, where data might flow through the target
-     * callable and back out at `call`.
-     */
-    pragma[nomagic]
-    private predicate revFlowThroughIntoCall(
-      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp,
-      Configuration config
-    ) {
-      flowThroughIntoCall(call, arg, p, allowsFieldFlow, argAp, config) and
-      revFlowIsReturned(call, _, _, _, _, config)
-    }
-
     pragma[nomagic]
     private predicate revFlowParamToReturn(
-      ParamNodeEx p, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap, Configuration config
+      ParamNodeEx p, FlowState state, ReturnPosition pos, Ap returnAp, Ap ap, Configuration config
     ) {
-      revFlow(p, state, TReturnCtxMaybeFlowThrough(kind), apSome(returnAp), ap, config) and
-      parameterFlowThroughAllowed(p, kind)
+      revFlow(pragma[only_bind_into](p), state, TReturnCtxMaybeFlowThrough(pos), apSome(returnAp),
+        pragma[only_bind_into](ap), pragma[only_bind_into](config)) and
+      parameterFlowThroughAllowed(p, pos.getKind()) and
+      PrevStage::parameterMayFlowThrough(p, getApprox(ap), config)
     }
 
     pragma[nomagic]
-    private predicate revFlowInToReturn(
-      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap,
-      Configuration config
+    private predicate revFlowThrough(
+      DataFlowCall call, ReturnCtx returnCtx, ParamNodeEx p, FlowState state, ReturnPosition pos,
+      ApOption returnAp, Ap ap, Ap innerReturnAp, Configuration config
     ) {
-      exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlowParamToReturn(p, state, kind, returnAp, ap, config) and
-        revFlowThroughIntoCall(call, arg, p, allowsFieldFlow, ap, config)
-      )
+      revFlowParamToReturn(p, state, pos, innerReturnAp, ap, config) and
+      revFlowIsReturned(call, returnCtx, returnAp, pos, innerReturnAp, config)
     }
 
     /**
@@ -1832,12 +1806,12 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate revFlowIsReturned(
-      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnKindExt kind, Ap ap,
+      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnPosition pos, Ap ap,
       Configuration config
     ) {
       exists(RetNodeEx ret, FlowState state, CcCall ccc |
-        revFlowOut(call, ret, kind, state, returnCtx, returnAp, ap, config) and
-        returnFlowsThrough(ret, kind, state, ccc, _, _, ap, config) and
+        revFlowOut(call, ret, pos, state, returnCtx, returnAp, ap, config) and
+        returnFlowsThrough(ret, pos, state, ccc, _, _, ap, config) and
         matchesCall(ccc, call)
       )
     }
@@ -1915,17 +1889,17 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate parameterFlowsThroughRev(
-      ParamNodeEx p, Ap ap, ReturnKindExt kind, Ap returnAp, Configuration config
+      ParamNodeEx p, Ap ap, ReturnPosition pos, Ap returnAp, Configuration config
     ) {
-      revFlow(p, _, TReturnCtxMaybeFlowThrough(kind), apSome(returnAp), ap, config) and
-      parameterFlowThroughAllowed(p, kind)
+      revFlow(p, _, TReturnCtxMaybeFlowThrough(pos), apSome(returnAp), ap, config) and
+      parameterFlowThroughAllowed(p, pos.getKind())
     }
 
     pragma[nomagic]
     predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
-      exists(RetNodeEx ret, ReturnKindExt kind |
-        returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
-        parameterFlowsThroughRev(p, ap, kind, _, config)
+      exists(RetNodeEx ret, ReturnPosition pos |
+        returnFlowsThrough(ret, pos, _, _, p, ap, _, config) and
+        parameterFlowsThroughRev(p, ap, pos, _, config)
       )
     }
 
@@ -1933,20 +1907,21 @@ private module MkStage<StageSig PrevStage> {
     predicate returnMayFlowThrough(
       RetNodeEx ret, Ap argAp, Ap ap, ReturnKindExt kind, Configuration config
     ) {
-      exists(ParamNodeEx p |
-        returnFlowsThrough(ret, kind, _, _, p, argAp, ap, config) and
-        parameterFlowsThroughRev(p, argAp, kind, ap, config)
+      exists(ParamNodeEx p, ReturnPosition pos |
+        returnFlowsThrough(ret, pos, _, _, p, argAp, ap, config) and
+        parameterFlowsThroughRev(p, argAp, pos, ap, config) and
+        kind = pos.getKind()
       )
     }
 
     pragma[nomagic]
-    predicate revFlowInToReturnIsReturned(
+    private predicate revFlowThroughArg(
       DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnCtx returnCtx, ApOption returnAp,
       Ap ap, Configuration config
     ) {
-      exists(ReturnKindExt returnKind0, Ap returnAp0 |
-        revFlowInToReturn(call, arg, state, returnKind0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
+      exists(ParamNodeEx p, ReturnPosition pos, Ap innerReturnAp |
+        revFlowThrough(call, returnCtx, p, state, pos, returnAp, ap, innerReturnAp, config) and
+        flowThroughIntoCall(call, arg, p, _, ap, innerReturnAp, config)
       )
     }
 
@@ -1954,7 +1929,7 @@ private module MkStage<StageSig PrevStage> {
     predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
       exists(ArgNodeEx arg, FlowState state, ReturnCtx returnCtx, ApOption returnAp, Ap ap |
         revFlow(arg, state, returnCtx, returnAp, ap, config) and
-        revFlowInToReturnIsReturned(call, arg, state, returnCtx, returnAp, ap, config)
+        revFlowThroughArg(call, arg, state, returnCtx, returnAp, ap, config)
       )
     }
 
@@ -1967,8 +1942,9 @@ private module MkStage<StageSig PrevStage> {
       conscand = count(TypedContent f0, Ap ap | fwdConsCand(f0, ap, config)) and
       states = count(FlowState state | fwdFlow(_, state, _, _, _, _, config)) and
       tuples =
-        count(NodeEx n, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-          Ap ap | fwdFlow(n, state, cc, summaryCtx, argAp, ap, config))
+        count(NodeEx n, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap |
+          fwdFlow(n, state, cc, summaryCtx, argAp, ap, config)
+        )
       or
       fwd = false and
       nodes = count(NodeEx node | revFlow(node, _, _, _, _, config)) and
@@ -2823,13 +2799,12 @@ private Configuration unbindConf(Configuration conf) {
 
 pragma[nomagic]
 private predicate nodeMayUseSummary0(
-  NodeEx n, DataFlowCallable c, ParameterPosition pos, FlowState state, AccessPathApprox apa,
-  Configuration config
+  NodeEx n, ParamNodeEx p, FlowState state, AccessPathApprox apa, Configuration config
 ) {
   exists(AccessPathApprox apa0 |
-    c = n.getEnclosingCallable() and
+    Stage5::parameterMayFlowThrough(p, _, _) and
     Stage5::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
-    Stage5::fwdFlow(n, state, any(CallContextCall ccc), TParameterPositionSome(pos),
+    Stage5::fwdFlow(n, state, any(CallContextCall ccc), TParamNodeSome(p.asNode()),
       TAccessPathApproxSome(apa), apa0, config)
   )
 }
@@ -2838,10 +2813,9 @@ pragma[nomagic]
 private predicate nodeMayUseSummary(
   NodeEx n, FlowState state, AccessPathApprox apa, Configuration config
 ) {
-  exists(DataFlowCallable c, ParameterPosition pos, ParamNodeEx p |
+  exists(ParamNodeEx p |
     Stage5::parameterMayFlowThrough(p, apa, config) and
-    nodeMayUseSummary0(n, c, pos, state, apa, config) and
-    p.isParameterOf(c, pos)
+    nodeMayUseSummary0(n, p, state, apa, config)
   )
 }
 
diff --git a/cpp/ql/lib/experimental/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl4.qll b/cpp/ql/lib/experimental/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl4.qll
index 6741ccc2f06..23d11a38842 100644
--- a/cpp/ql/lib/experimental/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl4.qll
+++ b/cpp/ql/lib/experimental/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl4.qll
@@ -1327,8 +1327,8 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     additional predicate fwdFlow(
-      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      Ap ap, ApApprox apa, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      ApApprox apa, Configuration config
     ) {
       fwdFlow0(node, state, cc, summaryCtx, argAp, ap, apa, config) and
       PrevStage::revFlow(node, state, apa, config) and
@@ -1337,21 +1337,21 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[inline]
     additional predicate fwdFlow(
-      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      Ap ap, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      Configuration config
     ) {
       fwdFlow(node, state, cc, summaryCtx, argAp, ap, _, config)
     }
 
     pragma[nomagic]
     private predicate fwdFlow0(
-      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      Ap ap, ApApprox apa, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      ApApprox apa, Configuration config
     ) {
       sourceNode(node, state, config) and
       (if hasSourceCallCtx(config) then cc = ccSomeCall() else cc = ccNone()) and
       argAp = apNone() and
-      summaryCtx = TParameterPositionNone() and
+      summaryCtx = TParamNodeNone() and
       ap = getApNil(node) and
       apa = getApprox(ap)
       or
@@ -1372,7 +1372,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, apa, pragma[only_bind_into](config)) and
         jumpStep(mid, node, config) and
         cc = ccNone() and
-        summaryCtx = TParameterPositionNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone()
       )
       or
@@ -1380,7 +1380,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, state, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStep(mid, node, config) and
         cc = ccNone() and
-        summaryCtx = TParameterPositionNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone() and
         ap = getApNil(node) and
         apa = getApprox(ap)
@@ -1390,7 +1390,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, state0, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStateStep(mid, state0, node, state, config) and
         cc = ccNone() and
-        summaryCtx = TParameterPositionNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone() and
         ap = getApNil(node) and
         apa = getApprox(ap)
@@ -1414,10 +1414,10 @@ private module MkStage<StageSig PrevStage> {
       fwdFlowIn(_, node, state, _, cc, _, _, ap, apa, config) and
       if PrevStage::parameterMayFlowThrough(node, apa, config)
       then (
-        summaryCtx = TParameterPositionSome(node.(ParamNodeEx).getPosition()) and
+        summaryCtx = TParamNodeSome(node.asNode()) and
         argAp = apSome(ap)
       ) else (
-        summaryCtx = TParameterPositionNone() and argAp = apNone()
+        summaryCtx = TParamNodeNone() and argAp = apNone()
       )
       or
       // flow out of a callable
@@ -1433,16 +1433,19 @@ private module MkStage<StageSig PrevStage> {
       )
       or
       // flow through a callable
-      exists(DataFlowCall call, ParameterPosition summaryCtx0, Ap argAp0 |
-        fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, apa, config) and
-        fwdFlowIsEntered(call, cc, summaryCtx, argAp, summaryCtx0, argAp0, config)
+      exists(
+        DataFlowCall call, CcCall ccc, RetNodeEx ret, boolean allowsFieldFlow, ApApprox innerArgApa
+      |
+        fwdFlowThrough(call, cc, state, ccc, summaryCtx, argAp, ap, apa, ret, innerArgApa, config) and
+        flowThroughOutOfCall(call, ccc, ret, node, allowsFieldFlow, innerArgApa, apa, config) and
+        if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
     pragma[nomagic]
     private predicate fwdFlowStore(
       NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc,
-      ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
+      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
     ) {
       exists(DataFlowType contentType, ApApprox apa1 |
         fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, apa1, config) and
@@ -1473,8 +1476,8 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowRead0(
-      NodeEx node1, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      ApNonNil ap, Configuration config
+      NodeEx node1, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, ApNonNil ap,
+      Configuration config
     ) {
       fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, _, _, config)
@@ -1483,7 +1486,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowRead(
       Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc,
-      ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
+      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
     ) {
       fwdFlowRead0(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, c, node2, config) and
@@ -1493,7 +1496,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowIn(
       DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, CcCall innercc,
-      ParameterPositionOption summaryCtx, ApOption argAp, Ap ap, ApApprox apa, Configuration config
+      ParamNodeOption summaryCtx, ApOption argAp, Ap ap, ApApprox apa, Configuration config
     ) {
       exists(ArgNodeEx arg, boolean allowsFieldFlow |
         fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, apa, config) and
@@ -1505,64 +1508,38 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowRetFromArg(
-      RetNodeEx ret, FlowState state, CcCall ccc, ParameterPosition summaryCtx, ParamNodeEx p,
-      Ap argAp, ApApprox argApa, Ap ap, ApApprox apa, Configuration config
+      RetNodeEx ret, FlowState state, CcCall ccc, ParamNodeEx summaryCtx, Ap argAp, ApApprox argApa,
+      Ap ap, ApApprox apa, Configuration config
     ) {
-      exists(DataFlowCallable c, ReturnKindExt kind |
+      exists(ReturnKindExt kind |
         fwdFlow(pragma[only_bind_into](ret), state, ccc,
-          TParameterPositionSome(pragma[only_bind_into](summaryCtx)), apSome(argAp), ap, apa, config) and
-        getApprox(argAp) = argApa and
-        c = ret.getEnclosingCallable() and
+          TParamNodeSome(pragma[only_bind_into](summaryCtx.asNode())),
+          pragma[only_bind_into](apSome(argAp)), ap, pragma[only_bind_into](apa),
+          pragma[only_bind_into](config)) and
         kind = ret.getKind() and
-        p.isParameterOf(c, pragma[only_bind_into](summaryCtx)) and
-        parameterFlowThroughAllowed(p, kind)
+        parameterFlowThroughAllowed(summaryCtx, kind) and
+        argApa = getApprox(argAp) and
+        PrevStage::returnMayFlowThrough(ret, argApa, apa, kind, pragma[only_bind_into](config))
       )
     }
 
     pragma[inline]
-    private predicate fwdFlowInMayFlowThrough(
-      DataFlowCall call, Cc cc, CcCall innerCc, ParameterPositionOption summaryCtx, ApOption argAp,
-      ParamNodeEx param, Ap ap, ApApprox apa, Configuration config
+    private predicate fwdFlowThrough0(
+      DataFlowCall call, Cc cc, FlowState state, CcCall ccc, ParamNodeOption summaryCtx,
+      ApOption argAp, Ap ap, ApApprox apa, RetNodeEx ret, ParamNodeEx innerSummaryCtx,
+      Ap innerArgAp, ApApprox innerArgApa, Configuration config
     ) {
-      fwdFlowIn(call, pragma[only_bind_into](param), _, cc, innerCc, summaryCtx, argAp, ap,
-        pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
-      PrevStage::parameterMayFlowThrough(param, apa, config)
-    }
-
-    // dedup before joining with `flowThroughOutOfCall`
-    pragma[nomagic]
-    private predicate fwdFlowInMayFlowThroughProj(
-      DataFlowCall call, CcCall innerCc, ApApprox apa, Configuration config
-    ) {
-      fwdFlowInMayFlowThrough(call, _, innerCc, _, _, _, _, apa, config)
-    }
-
-    /**
-     * Same as `flowThroughOutOfCall`, but restricted to calls that are reached
-     * in the flow covered by `fwdFlow`, where data might flow through the target
-     * callable and back out at `call`.
-     */
-    pragma[nomagic]
-    private predicate fwdFlowThroughOutOfCall(
-      DataFlowCall call, CcCall ccc, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow,
-      ApApprox argApa, ApApprox apa, Configuration config
-    ) {
-      fwdFlowInMayFlowThroughProj(call, ccc, argApa, config) and
-      flowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, argApa, apa, config)
+      fwdFlowRetFromArg(ret, state, ccc, innerSummaryCtx, innerArgAp, innerArgApa, ap, apa, config) and
+      fwdFlowIsEntered(call, cc, ccc, summaryCtx, argAp, innerSummaryCtx, innerArgAp, config)
     }
 
     pragma[nomagic]
-    private predicate fwdFlowOutFromArg(
-      DataFlowCall call, NodeEx out, FlowState state, ParameterPosition summaryCtx, Ap argAp, Ap ap,
-      ApApprox apa, Configuration config
+    private predicate fwdFlowThrough(
+      DataFlowCall call, Cc cc, FlowState state, CcCall ccc, ParamNodeOption summaryCtx,
+      ApOption argAp, Ap ap, ApApprox apa, RetNodeEx ret, ApApprox innerArgApa, Configuration config
     ) {
-      exists(RetNodeEx ret, boolean allowsFieldFlow, CcCall ccc, ApApprox argApa |
-        fwdFlowRetFromArg(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc),
-          summaryCtx, _, argAp, pragma[only_bind_into](argApa), ap, pragma[only_bind_into](apa),
-          config) and
-        fwdFlowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, argApa, apa, config) and
-        (if allowsFieldFlow = false then ap instanceof ApNil else any())
-      )
+      fwdFlowThrough0(call, cc, state, ccc, summaryCtx, argAp, ap, apa, ret, _, _, innerArgApa,
+        config)
     }
 
     /**
@@ -1571,12 +1548,14 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate fwdFlowIsEntered(
-      DataFlowCall call, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      ParameterPosition pos, Ap ap, Configuration config
+      DataFlowCall call, Cc cc, CcCall innerCc, ParamNodeOption summaryCtx, ApOption argAp,
+      ParamNodeEx p, Ap ap, Configuration config
     ) {
-      exists(ParamNodeEx param |
-        fwdFlowInMayFlowThrough(call, cc, _, summaryCtx, argAp, param, ap, _, config) and
-        pos = param.getPosition()
+      exists(ApApprox apa |
+        fwdFlowIn(call, pragma[only_bind_into](p), _, cc, innerCc, summaryCtx, argAp, ap,
+          pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
+        PrevStage::parameterMayFlowThrough(p, apa, config) and
+        PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config))
       )
     }
 
@@ -1596,23 +1575,31 @@ private module MkStage<StageSig PrevStage> {
       fwdFlowConsCand(ap1, c, ap2, config)
     }
 
+    pragma[nomagic]
+    private predicate returnFlowsThrough0(
+      DataFlowCall call, FlowState state, CcCall ccc, Ap ap, ApApprox apa, RetNodeEx ret,
+      ParamNodeEx innerSummaryCtx, Ap innerArgAp, ApApprox innerArgApa, Configuration config
+    ) {
+      fwdFlowThrough0(call, _, state, ccc, _, _, ap, apa, ret, innerSummaryCtx, innerArgAp,
+        innerArgApa, config)
+    }
+
     pragma[nomagic]
     private predicate returnFlowsThrough(
-      RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, ParamNodeEx p, Ap argAp,
+      RetNodeEx ret, ReturnPosition pos, FlowState state, CcCall ccc, ParamNodeEx p, Ap argAp,
       Ap ap, Configuration config
     ) {
-      exists(boolean allowsFieldFlow, ApApprox argApa, ApApprox apa |
-        fwdFlowRetFromArg(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc), _, p,
-          argAp, pragma[only_bind_into](argApa), ap, pragma[only_bind_into](apa), config) and
-        kind = ret.getKind() and
-        fwdFlowThroughOutOfCall(_, ccc, ret, _, allowsFieldFlow, argApa, apa, config) and
-        (if allowsFieldFlow = false then ap instanceof ApNil else any())
+      exists(DataFlowCall call, ApApprox apa, boolean allowsFieldFlow, ApApprox innerArgApa |
+        returnFlowsThrough0(call, state, ccc, ap, apa, ret, p, argAp, innerArgApa, config) and
+        flowThroughOutOfCall(call, ccc, ret, _, allowsFieldFlow, innerArgApa, apa, config) and
+        pos = ret.getReturnPosition() and
+        if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
     pragma[nomagic]
     private predicate flowThroughIntoCall(
-      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp,
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp, Ap ap,
       Configuration config
     ) {
       exists(ApApprox argApa |
@@ -1620,7 +1607,7 @@ private module MkStage<StageSig PrevStage> {
           allowsFieldFlow, argApa, pragma[only_bind_into](config)) and
         fwdFlow(arg, _, _, _, _, pragma[only_bind_into](argAp), argApa,
           pragma[only_bind_into](config)) and
-        returnFlowsThrough(_, _, _, _, p, pragma[only_bind_into](argAp), _,
+        returnFlowsThrough(_, _, _, _, p, pragma[only_bind_into](argAp), ap,
           pragma[only_bind_into](config)) and
         if allowsFieldFlow = false then argAp instanceof ApNil else any()
       )
@@ -1639,12 +1626,13 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate flowOutOfCallAp(
-      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
+      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
       Ap ap, Configuration config
     ) {
       exists(ApApprox apa |
-        flowOutOfCallApa(call, ret, kind, out, allowsFieldFlow, apa, config) and
-        fwdFlow(ret, _, _, _, _, ap, apa, config)
+        flowOutOfCallApa(call, ret, _, out, allowsFieldFlow, apa, config) and
+        fwdFlow(ret, _, _, _, _, ap, apa, config) and
+        pos = ret.getReturnPosition()
       )
     }
 
@@ -1739,17 +1727,17 @@ private module MkStage<StageSig PrevStage> {
       )
       or
       // flow through a callable
-      exists(DataFlowCall call, ReturnKindExt returnKind0, Ap returnAp0 |
-        revFlowInToReturn(call, node, state, returnKind0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
+      exists(DataFlowCall call, ParamNodeEx p, ReturnPosition pos, Ap innerReturnAp |
+        revFlowThrough(call, returnCtx, p, state, pos, returnAp, ap, innerReturnAp, config) and
+        flowThroughIntoCall(call, node, p, _, ap, innerReturnAp, config)
       )
       or
       // flow out of a callable
-      exists(ReturnKindExt kind |
-        revFlowOut(_, node, kind, state, _, _, ap, config) and
-        if returnFlowsThrough(node, kind, state, _, _, _, ap, config)
+      exists(ReturnPosition pos |
+        revFlowOut(_, node, pos, state, _, _, ap, config) and
+        if returnFlowsThrough(node, pos, state, _, _, _, ap, config)
         then (
-          returnCtx = TReturnCtxMaybeFlowThrough(kind) and
+          returnCtx = TReturnCtxMaybeFlowThrough(pos) and
           returnAp = apSome(ap)
         ) else (
           returnCtx = TReturnCtxNoFlowThrough() and returnAp = apNone()
@@ -1782,47 +1770,33 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate revFlowOut(
-      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, FlowState state, ReturnCtx returnCtx,
+      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, FlowState state, ReturnCtx returnCtx,
       ApOption returnAp, Ap ap, Configuration config
     ) {
       exists(NodeEx out, boolean allowsFieldFlow |
         revFlow(out, state, returnCtx, returnAp, ap, config) and
-        flowOutOfCallAp(call, ret, kind, out, allowsFieldFlow, ap, config) and
+        flowOutOfCallAp(call, ret, pos, out, allowsFieldFlow, ap, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
-    /**
-     * Same as `flowThroughIntoCall`, but restricted to calls that are reached
-     * in the flow covered by `revFlow`, where data might flow through the target
-     * callable and back out at `call`.
-     */
-    pragma[nomagic]
-    private predicate revFlowThroughIntoCall(
-      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp,
-      Configuration config
-    ) {
-      flowThroughIntoCall(call, arg, p, allowsFieldFlow, argAp, config) and
-      revFlowIsReturned(call, _, _, _, _, config)
-    }
-
     pragma[nomagic]
     private predicate revFlowParamToReturn(
-      ParamNodeEx p, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap, Configuration config
+      ParamNodeEx p, FlowState state, ReturnPosition pos, Ap returnAp, Ap ap, Configuration config
     ) {
-      revFlow(p, state, TReturnCtxMaybeFlowThrough(kind), apSome(returnAp), ap, config) and
-      parameterFlowThroughAllowed(p, kind)
+      revFlow(pragma[only_bind_into](p), state, TReturnCtxMaybeFlowThrough(pos), apSome(returnAp),
+        pragma[only_bind_into](ap), pragma[only_bind_into](config)) and
+      parameterFlowThroughAllowed(p, pos.getKind()) and
+      PrevStage::parameterMayFlowThrough(p, getApprox(ap), config)
     }
 
     pragma[nomagic]
-    private predicate revFlowInToReturn(
-      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap,
-      Configuration config
+    private predicate revFlowThrough(
+      DataFlowCall call, ReturnCtx returnCtx, ParamNodeEx p, FlowState state, ReturnPosition pos,
+      ApOption returnAp, Ap ap, Ap innerReturnAp, Configuration config
     ) {
-      exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlowParamToReturn(p, state, kind, returnAp, ap, config) and
-        revFlowThroughIntoCall(call, arg, p, allowsFieldFlow, ap, config)
-      )
+      revFlowParamToReturn(p, state, pos, innerReturnAp, ap, config) and
+      revFlowIsReturned(call, returnCtx, returnAp, pos, innerReturnAp, config)
     }
 
     /**
@@ -1832,12 +1806,12 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate revFlowIsReturned(
-      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnKindExt kind, Ap ap,
+      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnPosition pos, Ap ap,
       Configuration config
     ) {
       exists(RetNodeEx ret, FlowState state, CcCall ccc |
-        revFlowOut(call, ret, kind, state, returnCtx, returnAp, ap, config) and
-        returnFlowsThrough(ret, kind, state, ccc, _, _, ap, config) and
+        revFlowOut(call, ret, pos, state, returnCtx, returnAp, ap, config) and
+        returnFlowsThrough(ret, pos, state, ccc, _, _, ap, config) and
         matchesCall(ccc, call)
       )
     }
@@ -1915,17 +1889,17 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate parameterFlowsThroughRev(
-      ParamNodeEx p, Ap ap, ReturnKindExt kind, Ap returnAp, Configuration config
+      ParamNodeEx p, Ap ap, ReturnPosition pos, Ap returnAp, Configuration config
     ) {
-      revFlow(p, _, TReturnCtxMaybeFlowThrough(kind), apSome(returnAp), ap, config) and
-      parameterFlowThroughAllowed(p, kind)
+      revFlow(p, _, TReturnCtxMaybeFlowThrough(pos), apSome(returnAp), ap, config) and
+      parameterFlowThroughAllowed(p, pos.getKind())
     }
 
     pragma[nomagic]
     predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
-      exists(RetNodeEx ret, ReturnKindExt kind |
-        returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
-        parameterFlowsThroughRev(p, ap, kind, _, config)
+      exists(RetNodeEx ret, ReturnPosition pos |
+        returnFlowsThrough(ret, pos, _, _, p, ap, _, config) and
+        parameterFlowsThroughRev(p, ap, pos, _, config)
       )
     }
 
@@ -1933,20 +1907,21 @@ private module MkStage<StageSig PrevStage> {
     predicate returnMayFlowThrough(
       RetNodeEx ret, Ap argAp, Ap ap, ReturnKindExt kind, Configuration config
     ) {
-      exists(ParamNodeEx p |
-        returnFlowsThrough(ret, kind, _, _, p, argAp, ap, config) and
-        parameterFlowsThroughRev(p, argAp, kind, ap, config)
+      exists(ParamNodeEx p, ReturnPosition pos |
+        returnFlowsThrough(ret, pos, _, _, p, argAp, ap, config) and
+        parameterFlowsThroughRev(p, argAp, pos, ap, config) and
+        kind = pos.getKind()
       )
     }
 
     pragma[nomagic]
-    predicate revFlowInToReturnIsReturned(
+    private predicate revFlowThroughArg(
       DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnCtx returnCtx, ApOption returnAp,
       Ap ap, Configuration config
     ) {
-      exists(ReturnKindExt returnKind0, Ap returnAp0 |
-        revFlowInToReturn(call, arg, state, returnKind0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
+      exists(ParamNodeEx p, ReturnPosition pos, Ap innerReturnAp |
+        revFlowThrough(call, returnCtx, p, state, pos, returnAp, ap, innerReturnAp, config) and
+        flowThroughIntoCall(call, arg, p, _, ap, innerReturnAp, config)
       )
     }
 
@@ -1954,7 +1929,7 @@ private module MkStage<StageSig PrevStage> {
     predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
       exists(ArgNodeEx arg, FlowState state, ReturnCtx returnCtx, ApOption returnAp, Ap ap |
         revFlow(arg, state, returnCtx, returnAp, ap, config) and
-        revFlowInToReturnIsReturned(call, arg, state, returnCtx, returnAp, ap, config)
+        revFlowThroughArg(call, arg, state, returnCtx, returnAp, ap, config)
       )
     }
 
@@ -1967,8 +1942,9 @@ private module MkStage<StageSig PrevStage> {
       conscand = count(TypedContent f0, Ap ap | fwdConsCand(f0, ap, config)) and
       states = count(FlowState state | fwdFlow(_, state, _, _, _, _, config)) and
       tuples =
-        count(NodeEx n, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-          Ap ap | fwdFlow(n, state, cc, summaryCtx, argAp, ap, config))
+        count(NodeEx n, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap |
+          fwdFlow(n, state, cc, summaryCtx, argAp, ap, config)
+        )
       or
       fwd = false and
       nodes = count(NodeEx node | revFlow(node, _, _, _, _, config)) and
@@ -2823,13 +2799,12 @@ private Configuration unbindConf(Configuration conf) {
 
 pragma[nomagic]
 private predicate nodeMayUseSummary0(
-  NodeEx n, DataFlowCallable c, ParameterPosition pos, FlowState state, AccessPathApprox apa,
-  Configuration config
+  NodeEx n, ParamNodeEx p, FlowState state, AccessPathApprox apa, Configuration config
 ) {
   exists(AccessPathApprox apa0 |
-    c = n.getEnclosingCallable() and
+    Stage5::parameterMayFlowThrough(p, _, _) and
     Stage5::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
-    Stage5::fwdFlow(n, state, any(CallContextCall ccc), TParameterPositionSome(pos),
+    Stage5::fwdFlow(n, state, any(CallContextCall ccc), TParamNodeSome(p.asNode()),
       TAccessPathApproxSome(apa), apa0, config)
   )
 }
@@ -2838,10 +2813,9 @@ pragma[nomagic]
 private predicate nodeMayUseSummary(
   NodeEx n, FlowState state, AccessPathApprox apa, Configuration config
 ) {
-  exists(DataFlowCallable c, ParameterPosition pos, ParamNodeEx p |
+  exists(ParamNodeEx p |
     Stage5::parameterMayFlowThrough(p, apa, config) and
-    nodeMayUseSummary0(n, c, pos, state, apa, config) and
-    p.isParameterOf(c, pos)
+    nodeMayUseSummary0(n, p, state, apa, config)
   )
 }
 
diff --git a/cpp/ql/lib/experimental/semmle/code/cpp/ir/dataflow/internal/DataFlowImplCommon.qll b/cpp/ql/lib/experimental/semmle/code/cpp/ir/dataflow/internal/DataFlowImplCommon.qll
index c66aefced8d..9aa6a529a5b 100644
--- a/cpp/ql/lib/experimental/semmle/code/cpp/ir/dataflow/internal/DataFlowImplCommon.qll
+++ b/cpp/ql/lib/experimental/semmle/code/cpp/ir/dataflow/internal/DataFlowImplCommon.qll
@@ -916,15 +916,15 @@ private module Cached {
     TDataFlowCallSome(DataFlowCall call)
 
   cached
-  newtype TParameterPositionOption =
-    TParameterPositionNone() or
-    TParameterPositionSome(ParameterPosition pos)
+  newtype TParamNodeOption =
+    TParamNodeNone() or
+    TParamNodeSome(ParamNode p)
 
   cached
   newtype TReturnCtx =
     TReturnCtxNone() or
     TReturnCtxNoFlowThrough() or
-    TReturnCtxMaybeFlowThrough(ReturnKindExt kind)
+    TReturnCtxMaybeFlowThrough(ReturnPosition pos)
 
   cached
   newtype TTypedContentApprox =
@@ -1343,15 +1343,15 @@ class DataFlowCallOption extends TDataFlowCallOption {
   }
 }
 
-/** An optional `ParameterPosition`. */
-class ParameterPositionOption extends TParameterPositionOption {
+/** An optional `ParamNode`. */
+class ParamNodeOption extends TParamNodeOption {
   string toString() {
-    this = TParameterPositionNone() and
+    this = TParamNodeNone() and
     result = "(none)"
     or
-    exists(ParameterPosition pos |
-      this = TParameterPositionSome(pos) and
-      result = pos.toString()
+    exists(ParamNode p |
+      this = TParamNodeSome(p) and
+      result = p.toString()
     )
   }
 }
@@ -1363,7 +1363,7 @@ class ParameterPositionOption extends TParameterPositionOption {
  *
  * - `TReturnCtxNone()`: no return flow.
  * - `TReturnCtxNoFlowThrough()`: return flow, but flow through is not possible.
- * - `TReturnCtxMaybeFlowThrough(ReturnKindExt kind)`: return flow, of kind `kind`, and
+ * - `TReturnCtxMaybeFlowThrough(ReturnPosition pos)`: return flow, of kind `pos`, and
  *    flow through may be possible.
  */
 class ReturnCtx extends TReturnCtx {
@@ -1374,9 +1374,9 @@ class ReturnCtx extends TReturnCtx {
     this = TReturnCtxNoFlowThrough() and
     result = "(no flow through)"
     or
-    exists(ReturnKindExt kind |
-      this = TReturnCtxMaybeFlowThrough(kind) and
-      result = kind.toString()
+    exists(ReturnPosition pos |
+      this = TReturnCtxMaybeFlowThrough(pos) and
+      result = pos.toString()
     )
   }
 }
diff --git a/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImpl.qll b/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImpl.qll
index 6741ccc2f06..23d11a38842 100644
--- a/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImpl.qll
+++ b/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImpl.qll
@@ -1327,8 +1327,8 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     additional predicate fwdFlow(
-      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      Ap ap, ApApprox apa, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      ApApprox apa, Configuration config
     ) {
       fwdFlow0(node, state, cc, summaryCtx, argAp, ap, apa, config) and
       PrevStage::revFlow(node, state, apa, config) and
@@ -1337,21 +1337,21 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[inline]
     additional predicate fwdFlow(
-      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      Ap ap, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      Configuration config
     ) {
       fwdFlow(node, state, cc, summaryCtx, argAp, ap, _, config)
     }
 
     pragma[nomagic]
     private predicate fwdFlow0(
-      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      Ap ap, ApApprox apa, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      ApApprox apa, Configuration config
     ) {
       sourceNode(node, state, config) and
       (if hasSourceCallCtx(config) then cc = ccSomeCall() else cc = ccNone()) and
       argAp = apNone() and
-      summaryCtx = TParameterPositionNone() and
+      summaryCtx = TParamNodeNone() and
       ap = getApNil(node) and
       apa = getApprox(ap)
       or
@@ -1372,7 +1372,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, apa, pragma[only_bind_into](config)) and
         jumpStep(mid, node, config) and
         cc = ccNone() and
-        summaryCtx = TParameterPositionNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone()
       )
       or
@@ -1380,7 +1380,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, state, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStep(mid, node, config) and
         cc = ccNone() and
-        summaryCtx = TParameterPositionNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone() and
         ap = getApNil(node) and
         apa = getApprox(ap)
@@ -1390,7 +1390,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, state0, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStateStep(mid, state0, node, state, config) and
         cc = ccNone() and
-        summaryCtx = TParameterPositionNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone() and
         ap = getApNil(node) and
         apa = getApprox(ap)
@@ -1414,10 +1414,10 @@ private module MkStage<StageSig PrevStage> {
       fwdFlowIn(_, node, state, _, cc, _, _, ap, apa, config) and
       if PrevStage::parameterMayFlowThrough(node, apa, config)
       then (
-        summaryCtx = TParameterPositionSome(node.(ParamNodeEx).getPosition()) and
+        summaryCtx = TParamNodeSome(node.asNode()) and
         argAp = apSome(ap)
       ) else (
-        summaryCtx = TParameterPositionNone() and argAp = apNone()
+        summaryCtx = TParamNodeNone() and argAp = apNone()
       )
       or
       // flow out of a callable
@@ -1433,16 +1433,19 @@ private module MkStage<StageSig PrevStage> {
       )
       or
       // flow through a callable
-      exists(DataFlowCall call, ParameterPosition summaryCtx0, Ap argAp0 |
-        fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, apa, config) and
-        fwdFlowIsEntered(call, cc, summaryCtx, argAp, summaryCtx0, argAp0, config)
+      exists(
+        DataFlowCall call, CcCall ccc, RetNodeEx ret, boolean allowsFieldFlow, ApApprox innerArgApa
+      |
+        fwdFlowThrough(call, cc, state, ccc, summaryCtx, argAp, ap, apa, ret, innerArgApa, config) and
+        flowThroughOutOfCall(call, ccc, ret, node, allowsFieldFlow, innerArgApa, apa, config) and
+        if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
     pragma[nomagic]
     private predicate fwdFlowStore(
       NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc,
-      ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
+      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
     ) {
       exists(DataFlowType contentType, ApApprox apa1 |
         fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, apa1, config) and
@@ -1473,8 +1476,8 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowRead0(
-      NodeEx node1, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      ApNonNil ap, Configuration config
+      NodeEx node1, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, ApNonNil ap,
+      Configuration config
     ) {
       fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, _, _, config)
@@ -1483,7 +1486,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowRead(
       Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc,
-      ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
+      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
     ) {
       fwdFlowRead0(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, c, node2, config) and
@@ -1493,7 +1496,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowIn(
       DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, CcCall innercc,
-      ParameterPositionOption summaryCtx, ApOption argAp, Ap ap, ApApprox apa, Configuration config
+      ParamNodeOption summaryCtx, ApOption argAp, Ap ap, ApApprox apa, Configuration config
     ) {
       exists(ArgNodeEx arg, boolean allowsFieldFlow |
         fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, apa, config) and
@@ -1505,64 +1508,38 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowRetFromArg(
-      RetNodeEx ret, FlowState state, CcCall ccc, ParameterPosition summaryCtx, ParamNodeEx p,
-      Ap argAp, ApApprox argApa, Ap ap, ApApprox apa, Configuration config
+      RetNodeEx ret, FlowState state, CcCall ccc, ParamNodeEx summaryCtx, Ap argAp, ApApprox argApa,
+      Ap ap, ApApprox apa, Configuration config
     ) {
-      exists(DataFlowCallable c, ReturnKindExt kind |
+      exists(ReturnKindExt kind |
         fwdFlow(pragma[only_bind_into](ret), state, ccc,
-          TParameterPositionSome(pragma[only_bind_into](summaryCtx)), apSome(argAp), ap, apa, config) and
-        getApprox(argAp) = argApa and
-        c = ret.getEnclosingCallable() and
+          TParamNodeSome(pragma[only_bind_into](summaryCtx.asNode())),
+          pragma[only_bind_into](apSome(argAp)), ap, pragma[only_bind_into](apa),
+          pragma[only_bind_into](config)) and
         kind = ret.getKind() and
-        p.isParameterOf(c, pragma[only_bind_into](summaryCtx)) and
-        parameterFlowThroughAllowed(p, kind)
+        parameterFlowThroughAllowed(summaryCtx, kind) and
+        argApa = getApprox(argAp) and
+        PrevStage::returnMayFlowThrough(ret, argApa, apa, kind, pragma[only_bind_into](config))
       )
     }
 
     pragma[inline]
-    private predicate fwdFlowInMayFlowThrough(
-      DataFlowCall call, Cc cc, CcCall innerCc, ParameterPositionOption summaryCtx, ApOption argAp,
-      ParamNodeEx param, Ap ap, ApApprox apa, Configuration config
+    private predicate fwdFlowThrough0(
+      DataFlowCall call, Cc cc, FlowState state, CcCall ccc, ParamNodeOption summaryCtx,
+      ApOption argAp, Ap ap, ApApprox apa, RetNodeEx ret, ParamNodeEx innerSummaryCtx,
+      Ap innerArgAp, ApApprox innerArgApa, Configuration config
     ) {
-      fwdFlowIn(call, pragma[only_bind_into](param), _, cc, innerCc, summaryCtx, argAp, ap,
-        pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
-      PrevStage::parameterMayFlowThrough(param, apa, config)
-    }
-
-    // dedup before joining with `flowThroughOutOfCall`
-    pragma[nomagic]
-    private predicate fwdFlowInMayFlowThroughProj(
-      DataFlowCall call, CcCall innerCc, ApApprox apa, Configuration config
-    ) {
-      fwdFlowInMayFlowThrough(call, _, innerCc, _, _, _, _, apa, config)
-    }
-
-    /**
-     * Same as `flowThroughOutOfCall`, but restricted to calls that are reached
-     * in the flow covered by `fwdFlow`, where data might flow through the target
-     * callable and back out at `call`.
-     */
-    pragma[nomagic]
-    private predicate fwdFlowThroughOutOfCall(
-      DataFlowCall call, CcCall ccc, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow,
-      ApApprox argApa, ApApprox apa, Configuration config
-    ) {
-      fwdFlowInMayFlowThroughProj(call, ccc, argApa, config) and
-      flowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, argApa, apa, config)
+      fwdFlowRetFromArg(ret, state, ccc, innerSummaryCtx, innerArgAp, innerArgApa, ap, apa, config) and
+      fwdFlowIsEntered(call, cc, ccc, summaryCtx, argAp, innerSummaryCtx, innerArgAp, config)
     }
 
     pragma[nomagic]
-    private predicate fwdFlowOutFromArg(
-      DataFlowCall call, NodeEx out, FlowState state, ParameterPosition summaryCtx, Ap argAp, Ap ap,
-      ApApprox apa, Configuration config
+    private predicate fwdFlowThrough(
+      DataFlowCall call, Cc cc, FlowState state, CcCall ccc, ParamNodeOption summaryCtx,
+      ApOption argAp, Ap ap, ApApprox apa, RetNodeEx ret, ApApprox innerArgApa, Configuration config
     ) {
-      exists(RetNodeEx ret, boolean allowsFieldFlow, CcCall ccc, ApApprox argApa |
-        fwdFlowRetFromArg(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc),
-          summaryCtx, _, argAp, pragma[only_bind_into](argApa), ap, pragma[only_bind_into](apa),
-          config) and
-        fwdFlowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, argApa, apa, config) and
-        (if allowsFieldFlow = false then ap instanceof ApNil else any())
-      )
+      fwdFlowThrough0(call, cc, state, ccc, summaryCtx, argAp, ap, apa, ret, _, _, innerArgApa,
+        config)
     }
 
     /**
@@ -1571,12 +1548,14 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate fwdFlowIsEntered(
-      DataFlowCall call, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      ParameterPosition pos, Ap ap, Configuration config
+      DataFlowCall call, Cc cc, CcCall innerCc, ParamNodeOption summaryCtx, ApOption argAp,
+      ParamNodeEx p, Ap ap, Configuration config
     ) {
-      exists(ParamNodeEx param |
-        fwdFlowInMayFlowThrough(call, cc, _, summaryCtx, argAp, param, ap, _, config) and
-        pos = param.getPosition()
+      exists(ApApprox apa |
+        fwdFlowIn(call, pragma[only_bind_into](p), _, cc, innerCc, summaryCtx, argAp, ap,
+          pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
+        PrevStage::parameterMayFlowThrough(p, apa, config) and
+        PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config))
       )
     }
 
@@ -1596,23 +1575,31 @@ private module MkStage<StageSig PrevStage> {
       fwdFlowConsCand(ap1, c, ap2, config)
     }
 
+    pragma[nomagic]
+    private predicate returnFlowsThrough0(
+      DataFlowCall call, FlowState state, CcCall ccc, Ap ap, ApApprox apa, RetNodeEx ret,
+      ParamNodeEx innerSummaryCtx, Ap innerArgAp, ApApprox innerArgApa, Configuration config
+    ) {
+      fwdFlowThrough0(call, _, state, ccc, _, _, ap, apa, ret, innerSummaryCtx, innerArgAp,
+        innerArgApa, config)
+    }
+
     pragma[nomagic]
     private predicate returnFlowsThrough(
-      RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, ParamNodeEx p, Ap argAp,
+      RetNodeEx ret, ReturnPosition pos, FlowState state, CcCall ccc, ParamNodeEx p, Ap argAp,
       Ap ap, Configuration config
     ) {
-      exists(boolean allowsFieldFlow, ApApprox argApa, ApApprox apa |
-        fwdFlowRetFromArg(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc), _, p,
-          argAp, pragma[only_bind_into](argApa), ap, pragma[only_bind_into](apa), config) and
-        kind = ret.getKind() and
-        fwdFlowThroughOutOfCall(_, ccc, ret, _, allowsFieldFlow, argApa, apa, config) and
-        (if allowsFieldFlow = false then ap instanceof ApNil else any())
+      exists(DataFlowCall call, ApApprox apa, boolean allowsFieldFlow, ApApprox innerArgApa |
+        returnFlowsThrough0(call, state, ccc, ap, apa, ret, p, argAp, innerArgApa, config) and
+        flowThroughOutOfCall(call, ccc, ret, _, allowsFieldFlow, innerArgApa, apa, config) and
+        pos = ret.getReturnPosition() and
+        if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
     pragma[nomagic]
     private predicate flowThroughIntoCall(
-      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp,
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp, Ap ap,
       Configuration config
     ) {
       exists(ApApprox argApa |
@@ -1620,7 +1607,7 @@ private module MkStage<StageSig PrevStage> {
           allowsFieldFlow, argApa, pragma[only_bind_into](config)) and
         fwdFlow(arg, _, _, _, _, pragma[only_bind_into](argAp), argApa,
           pragma[only_bind_into](config)) and
-        returnFlowsThrough(_, _, _, _, p, pragma[only_bind_into](argAp), _,
+        returnFlowsThrough(_, _, _, _, p, pragma[only_bind_into](argAp), ap,
           pragma[only_bind_into](config)) and
         if allowsFieldFlow = false then argAp instanceof ApNil else any()
       )
@@ -1639,12 +1626,13 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate flowOutOfCallAp(
-      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
+      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
       Ap ap, Configuration config
     ) {
       exists(ApApprox apa |
-        flowOutOfCallApa(call, ret, kind, out, allowsFieldFlow, apa, config) and
-        fwdFlow(ret, _, _, _, _, ap, apa, config)
+        flowOutOfCallApa(call, ret, _, out, allowsFieldFlow, apa, config) and
+        fwdFlow(ret, _, _, _, _, ap, apa, config) and
+        pos = ret.getReturnPosition()
       )
     }
 
@@ -1739,17 +1727,17 @@ private module MkStage<StageSig PrevStage> {
       )
       or
       // flow through a callable
-      exists(DataFlowCall call, ReturnKindExt returnKind0, Ap returnAp0 |
-        revFlowInToReturn(call, node, state, returnKind0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
+      exists(DataFlowCall call, ParamNodeEx p, ReturnPosition pos, Ap innerReturnAp |
+        revFlowThrough(call, returnCtx, p, state, pos, returnAp, ap, innerReturnAp, config) and
+        flowThroughIntoCall(call, node, p, _, ap, innerReturnAp, config)
       )
       or
       // flow out of a callable
-      exists(ReturnKindExt kind |
-        revFlowOut(_, node, kind, state, _, _, ap, config) and
-        if returnFlowsThrough(node, kind, state, _, _, _, ap, config)
+      exists(ReturnPosition pos |
+        revFlowOut(_, node, pos, state, _, _, ap, config) and
+        if returnFlowsThrough(node, pos, state, _, _, _, ap, config)
         then (
-          returnCtx = TReturnCtxMaybeFlowThrough(kind) and
+          returnCtx = TReturnCtxMaybeFlowThrough(pos) and
           returnAp = apSome(ap)
         ) else (
           returnCtx = TReturnCtxNoFlowThrough() and returnAp = apNone()
@@ -1782,47 +1770,33 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate revFlowOut(
-      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, FlowState state, ReturnCtx returnCtx,
+      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, FlowState state, ReturnCtx returnCtx,
       ApOption returnAp, Ap ap, Configuration config
     ) {
       exists(NodeEx out, boolean allowsFieldFlow |
         revFlow(out, state, returnCtx, returnAp, ap, config) and
-        flowOutOfCallAp(call, ret, kind, out, allowsFieldFlow, ap, config) and
+        flowOutOfCallAp(call, ret, pos, out, allowsFieldFlow, ap, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
-    /**
-     * Same as `flowThroughIntoCall`, but restricted to calls that are reached
-     * in the flow covered by `revFlow`, where data might flow through the target
-     * callable and back out at `call`.
-     */
-    pragma[nomagic]
-    private predicate revFlowThroughIntoCall(
-      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp,
-      Configuration config
-    ) {
-      flowThroughIntoCall(call, arg, p, allowsFieldFlow, argAp, config) and
-      revFlowIsReturned(call, _, _, _, _, config)
-    }
-
     pragma[nomagic]
     private predicate revFlowParamToReturn(
-      ParamNodeEx p, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap, Configuration config
+      ParamNodeEx p, FlowState state, ReturnPosition pos, Ap returnAp, Ap ap, Configuration config
     ) {
-      revFlow(p, state, TReturnCtxMaybeFlowThrough(kind), apSome(returnAp), ap, config) and
-      parameterFlowThroughAllowed(p, kind)
+      revFlow(pragma[only_bind_into](p), state, TReturnCtxMaybeFlowThrough(pos), apSome(returnAp),
+        pragma[only_bind_into](ap), pragma[only_bind_into](config)) and
+      parameterFlowThroughAllowed(p, pos.getKind()) and
+      PrevStage::parameterMayFlowThrough(p, getApprox(ap), config)
     }
 
     pragma[nomagic]
-    private predicate revFlowInToReturn(
-      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap,
-      Configuration config
+    private predicate revFlowThrough(
+      DataFlowCall call, ReturnCtx returnCtx, ParamNodeEx p, FlowState state, ReturnPosition pos,
+      ApOption returnAp, Ap ap, Ap innerReturnAp, Configuration config
     ) {
-      exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlowParamToReturn(p, state, kind, returnAp, ap, config) and
-        revFlowThroughIntoCall(call, arg, p, allowsFieldFlow, ap, config)
-      )
+      revFlowParamToReturn(p, state, pos, innerReturnAp, ap, config) and
+      revFlowIsReturned(call, returnCtx, returnAp, pos, innerReturnAp, config)
     }
 
     /**
@@ -1832,12 +1806,12 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate revFlowIsReturned(
-      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnKindExt kind, Ap ap,
+      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnPosition pos, Ap ap,
       Configuration config
     ) {
       exists(RetNodeEx ret, FlowState state, CcCall ccc |
-        revFlowOut(call, ret, kind, state, returnCtx, returnAp, ap, config) and
-        returnFlowsThrough(ret, kind, state, ccc, _, _, ap, config) and
+        revFlowOut(call, ret, pos, state, returnCtx, returnAp, ap, config) and
+        returnFlowsThrough(ret, pos, state, ccc, _, _, ap, config) and
         matchesCall(ccc, call)
       )
     }
@@ -1915,17 +1889,17 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate parameterFlowsThroughRev(
-      ParamNodeEx p, Ap ap, ReturnKindExt kind, Ap returnAp, Configuration config
+      ParamNodeEx p, Ap ap, ReturnPosition pos, Ap returnAp, Configuration config
     ) {
-      revFlow(p, _, TReturnCtxMaybeFlowThrough(kind), apSome(returnAp), ap, config) and
-      parameterFlowThroughAllowed(p, kind)
+      revFlow(p, _, TReturnCtxMaybeFlowThrough(pos), apSome(returnAp), ap, config) and
+      parameterFlowThroughAllowed(p, pos.getKind())
     }
 
     pragma[nomagic]
     predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
-      exists(RetNodeEx ret, ReturnKindExt kind |
-        returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
-        parameterFlowsThroughRev(p, ap, kind, _, config)
+      exists(RetNodeEx ret, ReturnPosition pos |
+        returnFlowsThrough(ret, pos, _, _, p, ap, _, config) and
+        parameterFlowsThroughRev(p, ap, pos, _, config)
       )
     }
 
@@ -1933,20 +1907,21 @@ private module MkStage<StageSig PrevStage> {
     predicate returnMayFlowThrough(
       RetNodeEx ret, Ap argAp, Ap ap, ReturnKindExt kind, Configuration config
     ) {
-      exists(ParamNodeEx p |
-        returnFlowsThrough(ret, kind, _, _, p, argAp, ap, config) and
-        parameterFlowsThroughRev(p, argAp, kind, ap, config)
+      exists(ParamNodeEx p, ReturnPosition pos |
+        returnFlowsThrough(ret, pos, _, _, p, argAp, ap, config) and
+        parameterFlowsThroughRev(p, argAp, pos, ap, config) and
+        kind = pos.getKind()
       )
     }
 
     pragma[nomagic]
-    predicate revFlowInToReturnIsReturned(
+    private predicate revFlowThroughArg(
       DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnCtx returnCtx, ApOption returnAp,
       Ap ap, Configuration config
     ) {
-      exists(ReturnKindExt returnKind0, Ap returnAp0 |
-        revFlowInToReturn(call, arg, state, returnKind0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
+      exists(ParamNodeEx p, ReturnPosition pos, Ap innerReturnAp |
+        revFlowThrough(call, returnCtx, p, state, pos, returnAp, ap, innerReturnAp, config) and
+        flowThroughIntoCall(call, arg, p, _, ap, innerReturnAp, config)
       )
     }
 
@@ -1954,7 +1929,7 @@ private module MkStage<StageSig PrevStage> {
     predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
       exists(ArgNodeEx arg, FlowState state, ReturnCtx returnCtx, ApOption returnAp, Ap ap |
         revFlow(arg, state, returnCtx, returnAp, ap, config) and
-        revFlowInToReturnIsReturned(call, arg, state, returnCtx, returnAp, ap, config)
+        revFlowThroughArg(call, arg, state, returnCtx, returnAp, ap, config)
       )
     }
 
@@ -1967,8 +1942,9 @@ private module MkStage<StageSig PrevStage> {
       conscand = count(TypedContent f0, Ap ap | fwdConsCand(f0, ap, config)) and
       states = count(FlowState state | fwdFlow(_, state, _, _, _, _, config)) and
       tuples =
-        count(NodeEx n, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-          Ap ap | fwdFlow(n, state, cc, summaryCtx, argAp, ap, config))
+        count(NodeEx n, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap |
+          fwdFlow(n, state, cc, summaryCtx, argAp, ap, config)
+        )
       or
       fwd = false and
       nodes = count(NodeEx node | revFlow(node, _, _, _, _, config)) and
@@ -2823,13 +2799,12 @@ private Configuration unbindConf(Configuration conf) {
 
 pragma[nomagic]
 private predicate nodeMayUseSummary0(
-  NodeEx n, DataFlowCallable c, ParameterPosition pos, FlowState state, AccessPathApprox apa,
-  Configuration config
+  NodeEx n, ParamNodeEx p, FlowState state, AccessPathApprox apa, Configuration config
 ) {
   exists(AccessPathApprox apa0 |
-    c = n.getEnclosingCallable() and
+    Stage5::parameterMayFlowThrough(p, _, _) and
     Stage5::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
-    Stage5::fwdFlow(n, state, any(CallContextCall ccc), TParameterPositionSome(pos),
+    Stage5::fwdFlow(n, state, any(CallContextCall ccc), TParamNodeSome(p.asNode()),
       TAccessPathApproxSome(apa), apa0, config)
   )
 }
@@ -2838,10 +2813,9 @@ pragma[nomagic]
 private predicate nodeMayUseSummary(
   NodeEx n, FlowState state, AccessPathApprox apa, Configuration config
 ) {
-  exists(DataFlowCallable c, ParameterPosition pos, ParamNodeEx p |
+  exists(ParamNodeEx p |
     Stage5::parameterMayFlowThrough(p, apa, config) and
-    nodeMayUseSummary0(n, c, pos, state, apa, config) and
-    p.isParameterOf(c, pos)
+    nodeMayUseSummary0(n, p, state, apa, config)
   )
 }
 
diff --git a/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImpl2.qll b/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImpl2.qll
index 6741ccc2f06..23d11a38842 100644
--- a/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImpl2.qll
+++ b/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImpl2.qll
@@ -1327,8 +1327,8 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     additional predicate fwdFlow(
-      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      Ap ap, ApApprox apa, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      ApApprox apa, Configuration config
     ) {
       fwdFlow0(node, state, cc, summaryCtx, argAp, ap, apa, config) and
       PrevStage::revFlow(node, state, apa, config) and
@@ -1337,21 +1337,21 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[inline]
     additional predicate fwdFlow(
-      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      Ap ap, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      Configuration config
     ) {
       fwdFlow(node, state, cc, summaryCtx, argAp, ap, _, config)
     }
 
     pragma[nomagic]
     private predicate fwdFlow0(
-      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      Ap ap, ApApprox apa, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      ApApprox apa, Configuration config
     ) {
       sourceNode(node, state, config) and
       (if hasSourceCallCtx(config) then cc = ccSomeCall() else cc = ccNone()) and
       argAp = apNone() and
-      summaryCtx = TParameterPositionNone() and
+      summaryCtx = TParamNodeNone() and
       ap = getApNil(node) and
       apa = getApprox(ap)
       or
@@ -1372,7 +1372,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, apa, pragma[only_bind_into](config)) and
         jumpStep(mid, node, config) and
         cc = ccNone() and
-        summaryCtx = TParameterPositionNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone()
       )
       or
@@ -1380,7 +1380,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, state, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStep(mid, node, config) and
         cc = ccNone() and
-        summaryCtx = TParameterPositionNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone() and
         ap = getApNil(node) and
         apa = getApprox(ap)
@@ -1390,7 +1390,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, state0, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStateStep(mid, state0, node, state, config) and
         cc = ccNone() and
-        summaryCtx = TParameterPositionNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone() and
         ap = getApNil(node) and
         apa = getApprox(ap)
@@ -1414,10 +1414,10 @@ private module MkStage<StageSig PrevStage> {
       fwdFlowIn(_, node, state, _, cc, _, _, ap, apa, config) and
       if PrevStage::parameterMayFlowThrough(node, apa, config)
       then (
-        summaryCtx = TParameterPositionSome(node.(ParamNodeEx).getPosition()) and
+        summaryCtx = TParamNodeSome(node.asNode()) and
         argAp = apSome(ap)
       ) else (
-        summaryCtx = TParameterPositionNone() and argAp = apNone()
+        summaryCtx = TParamNodeNone() and argAp = apNone()
       )
       or
       // flow out of a callable
@@ -1433,16 +1433,19 @@ private module MkStage<StageSig PrevStage> {
       )
       or
       // flow through a callable
-      exists(DataFlowCall call, ParameterPosition summaryCtx0, Ap argAp0 |
-        fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, apa, config) and
-        fwdFlowIsEntered(call, cc, summaryCtx, argAp, summaryCtx0, argAp0, config)
+      exists(
+        DataFlowCall call, CcCall ccc, RetNodeEx ret, boolean allowsFieldFlow, ApApprox innerArgApa
+      |
+        fwdFlowThrough(call, cc, state, ccc, summaryCtx, argAp, ap, apa, ret, innerArgApa, config) and
+        flowThroughOutOfCall(call, ccc, ret, node, allowsFieldFlow, innerArgApa, apa, config) and
+        if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
     pragma[nomagic]
     private predicate fwdFlowStore(
       NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc,
-      ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
+      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
     ) {
       exists(DataFlowType contentType, ApApprox apa1 |
         fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, apa1, config) and
@@ -1473,8 +1476,8 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowRead0(
-      NodeEx node1, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      ApNonNil ap, Configuration config
+      NodeEx node1, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, ApNonNil ap,
+      Configuration config
     ) {
       fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, _, _, config)
@@ -1483,7 +1486,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowRead(
       Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc,
-      ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
+      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
     ) {
       fwdFlowRead0(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, c, node2, config) and
@@ -1493,7 +1496,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowIn(
       DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, CcCall innercc,
-      ParameterPositionOption summaryCtx, ApOption argAp, Ap ap, ApApprox apa, Configuration config
+      ParamNodeOption summaryCtx, ApOption argAp, Ap ap, ApApprox apa, Configuration config
     ) {
       exists(ArgNodeEx arg, boolean allowsFieldFlow |
         fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, apa, config) and
@@ -1505,64 +1508,38 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowRetFromArg(
-      RetNodeEx ret, FlowState state, CcCall ccc, ParameterPosition summaryCtx, ParamNodeEx p,
-      Ap argAp, ApApprox argApa, Ap ap, ApApprox apa, Configuration config
+      RetNodeEx ret, FlowState state, CcCall ccc, ParamNodeEx summaryCtx, Ap argAp, ApApprox argApa,
+      Ap ap, ApApprox apa, Configuration config
     ) {
-      exists(DataFlowCallable c, ReturnKindExt kind |
+      exists(ReturnKindExt kind |
         fwdFlow(pragma[only_bind_into](ret), state, ccc,
-          TParameterPositionSome(pragma[only_bind_into](summaryCtx)), apSome(argAp), ap, apa, config) and
-        getApprox(argAp) = argApa and
-        c = ret.getEnclosingCallable() and
+          TParamNodeSome(pragma[only_bind_into](summaryCtx.asNode())),
+          pragma[only_bind_into](apSome(argAp)), ap, pragma[only_bind_into](apa),
+          pragma[only_bind_into](config)) and
         kind = ret.getKind() and
-        p.isParameterOf(c, pragma[only_bind_into](summaryCtx)) and
-        parameterFlowThroughAllowed(p, kind)
+        parameterFlowThroughAllowed(summaryCtx, kind) and
+        argApa = getApprox(argAp) and
+        PrevStage::returnMayFlowThrough(ret, argApa, apa, kind, pragma[only_bind_into](config))
       )
     }
 
     pragma[inline]
-    private predicate fwdFlowInMayFlowThrough(
-      DataFlowCall call, Cc cc, CcCall innerCc, ParameterPositionOption summaryCtx, ApOption argAp,
-      ParamNodeEx param, Ap ap, ApApprox apa, Configuration config
+    private predicate fwdFlowThrough0(
+      DataFlowCall call, Cc cc, FlowState state, CcCall ccc, ParamNodeOption summaryCtx,
+      ApOption argAp, Ap ap, ApApprox apa, RetNodeEx ret, ParamNodeEx innerSummaryCtx,
+      Ap innerArgAp, ApApprox innerArgApa, Configuration config
     ) {
-      fwdFlowIn(call, pragma[only_bind_into](param), _, cc, innerCc, summaryCtx, argAp, ap,
-        pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
-      PrevStage::parameterMayFlowThrough(param, apa, config)
-    }
-
-    // dedup before joining with `flowThroughOutOfCall`
-    pragma[nomagic]
-    private predicate fwdFlowInMayFlowThroughProj(
-      DataFlowCall call, CcCall innerCc, ApApprox apa, Configuration config
-    ) {
-      fwdFlowInMayFlowThrough(call, _, innerCc, _, _, _, _, apa, config)
-    }
-
-    /**
-     * Same as `flowThroughOutOfCall`, but restricted to calls that are reached
-     * in the flow covered by `fwdFlow`, where data might flow through the target
-     * callable and back out at `call`.
-     */
-    pragma[nomagic]
-    private predicate fwdFlowThroughOutOfCall(
-      DataFlowCall call, CcCall ccc, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow,
-      ApApprox argApa, ApApprox apa, Configuration config
-    ) {
-      fwdFlowInMayFlowThroughProj(call, ccc, argApa, config) and
-      flowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, argApa, apa, config)
+      fwdFlowRetFromArg(ret, state, ccc, innerSummaryCtx, innerArgAp, innerArgApa, ap, apa, config) and
+      fwdFlowIsEntered(call, cc, ccc, summaryCtx, argAp, innerSummaryCtx, innerArgAp, config)
     }
 
     pragma[nomagic]
-    private predicate fwdFlowOutFromArg(
-      DataFlowCall call, NodeEx out, FlowState state, ParameterPosition summaryCtx, Ap argAp, Ap ap,
-      ApApprox apa, Configuration config
+    private predicate fwdFlowThrough(
+      DataFlowCall call, Cc cc, FlowState state, CcCall ccc, ParamNodeOption summaryCtx,
+      ApOption argAp, Ap ap, ApApprox apa, RetNodeEx ret, ApApprox innerArgApa, Configuration config
     ) {
-      exists(RetNodeEx ret, boolean allowsFieldFlow, CcCall ccc, ApApprox argApa |
-        fwdFlowRetFromArg(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc),
-          summaryCtx, _, argAp, pragma[only_bind_into](argApa), ap, pragma[only_bind_into](apa),
-          config) and
-        fwdFlowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, argApa, apa, config) and
-        (if allowsFieldFlow = false then ap instanceof ApNil else any())
-      )
+      fwdFlowThrough0(call, cc, state, ccc, summaryCtx, argAp, ap, apa, ret, _, _, innerArgApa,
+        config)
     }
 
     /**
@@ -1571,12 +1548,14 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate fwdFlowIsEntered(
-      DataFlowCall call, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      ParameterPosition pos, Ap ap, Configuration config
+      DataFlowCall call, Cc cc, CcCall innerCc, ParamNodeOption summaryCtx, ApOption argAp,
+      ParamNodeEx p, Ap ap, Configuration config
     ) {
-      exists(ParamNodeEx param |
-        fwdFlowInMayFlowThrough(call, cc, _, summaryCtx, argAp, param, ap, _, config) and
-        pos = param.getPosition()
+      exists(ApApprox apa |
+        fwdFlowIn(call, pragma[only_bind_into](p), _, cc, innerCc, summaryCtx, argAp, ap,
+          pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
+        PrevStage::parameterMayFlowThrough(p, apa, config) and
+        PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config))
       )
     }
 
@@ -1596,23 +1575,31 @@ private module MkStage<StageSig PrevStage> {
       fwdFlowConsCand(ap1, c, ap2, config)
     }
 
+    pragma[nomagic]
+    private predicate returnFlowsThrough0(
+      DataFlowCall call, FlowState state, CcCall ccc, Ap ap, ApApprox apa, RetNodeEx ret,
+      ParamNodeEx innerSummaryCtx, Ap innerArgAp, ApApprox innerArgApa, Configuration config
+    ) {
+      fwdFlowThrough0(call, _, state, ccc, _, _, ap, apa, ret, innerSummaryCtx, innerArgAp,
+        innerArgApa, config)
+    }
+
     pragma[nomagic]
     private predicate returnFlowsThrough(
-      RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, ParamNodeEx p, Ap argAp,
+      RetNodeEx ret, ReturnPosition pos, FlowState state, CcCall ccc, ParamNodeEx p, Ap argAp,
       Ap ap, Configuration config
     ) {
-      exists(boolean allowsFieldFlow, ApApprox argApa, ApApprox apa |
-        fwdFlowRetFromArg(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc), _, p,
-          argAp, pragma[only_bind_into](argApa), ap, pragma[only_bind_into](apa), config) and
-        kind = ret.getKind() and
-        fwdFlowThroughOutOfCall(_, ccc, ret, _, allowsFieldFlow, argApa, apa, config) and
-        (if allowsFieldFlow = false then ap instanceof ApNil else any())
+      exists(DataFlowCall call, ApApprox apa, boolean allowsFieldFlow, ApApprox innerArgApa |
+        returnFlowsThrough0(call, state, ccc, ap, apa, ret, p, argAp, innerArgApa, config) and
+        flowThroughOutOfCall(call, ccc, ret, _, allowsFieldFlow, innerArgApa, apa, config) and
+        pos = ret.getReturnPosition() and
+        if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
     pragma[nomagic]
     private predicate flowThroughIntoCall(
-      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp,
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp, Ap ap,
       Configuration config
     ) {
       exists(ApApprox argApa |
@@ -1620,7 +1607,7 @@ private module MkStage<StageSig PrevStage> {
           allowsFieldFlow, argApa, pragma[only_bind_into](config)) and
         fwdFlow(arg, _, _, _, _, pragma[only_bind_into](argAp), argApa,
           pragma[only_bind_into](config)) and
-        returnFlowsThrough(_, _, _, _, p, pragma[only_bind_into](argAp), _,
+        returnFlowsThrough(_, _, _, _, p, pragma[only_bind_into](argAp), ap,
           pragma[only_bind_into](config)) and
         if allowsFieldFlow = false then argAp instanceof ApNil else any()
       )
@@ -1639,12 +1626,13 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate flowOutOfCallAp(
-      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
+      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
       Ap ap, Configuration config
     ) {
       exists(ApApprox apa |
-        flowOutOfCallApa(call, ret, kind, out, allowsFieldFlow, apa, config) and
-        fwdFlow(ret, _, _, _, _, ap, apa, config)
+        flowOutOfCallApa(call, ret, _, out, allowsFieldFlow, apa, config) and
+        fwdFlow(ret, _, _, _, _, ap, apa, config) and
+        pos = ret.getReturnPosition()
       )
     }
 
@@ -1739,17 +1727,17 @@ private module MkStage<StageSig PrevStage> {
       )
       or
       // flow through a callable
-      exists(DataFlowCall call, ReturnKindExt returnKind0, Ap returnAp0 |
-        revFlowInToReturn(call, node, state, returnKind0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
+      exists(DataFlowCall call, ParamNodeEx p, ReturnPosition pos, Ap innerReturnAp |
+        revFlowThrough(call, returnCtx, p, state, pos, returnAp, ap, innerReturnAp, config) and
+        flowThroughIntoCall(call, node, p, _, ap, innerReturnAp, config)
       )
       or
       // flow out of a callable
-      exists(ReturnKindExt kind |
-        revFlowOut(_, node, kind, state, _, _, ap, config) and
-        if returnFlowsThrough(node, kind, state, _, _, _, ap, config)
+      exists(ReturnPosition pos |
+        revFlowOut(_, node, pos, state, _, _, ap, config) and
+        if returnFlowsThrough(node, pos, state, _, _, _, ap, config)
         then (
-          returnCtx = TReturnCtxMaybeFlowThrough(kind) and
+          returnCtx = TReturnCtxMaybeFlowThrough(pos) and
           returnAp = apSome(ap)
         ) else (
           returnCtx = TReturnCtxNoFlowThrough() and returnAp = apNone()
@@ -1782,47 +1770,33 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate revFlowOut(
-      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, FlowState state, ReturnCtx returnCtx,
+      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, FlowState state, ReturnCtx returnCtx,
       ApOption returnAp, Ap ap, Configuration config
     ) {
       exists(NodeEx out, boolean allowsFieldFlow |
         revFlow(out, state, returnCtx, returnAp, ap, config) and
-        flowOutOfCallAp(call, ret, kind, out, allowsFieldFlow, ap, config) and
+        flowOutOfCallAp(call, ret, pos, out, allowsFieldFlow, ap, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
-    /**
-     * Same as `flowThroughIntoCall`, but restricted to calls that are reached
-     * in the flow covered by `revFlow`, where data might flow through the target
-     * callable and back out at `call`.
-     */
-    pragma[nomagic]
-    private predicate revFlowThroughIntoCall(
-      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp,
-      Configuration config
-    ) {
-      flowThroughIntoCall(call, arg, p, allowsFieldFlow, argAp, config) and
-      revFlowIsReturned(call, _, _, _, _, config)
-    }
-
     pragma[nomagic]
     private predicate revFlowParamToReturn(
-      ParamNodeEx p, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap, Configuration config
+      ParamNodeEx p, FlowState state, ReturnPosition pos, Ap returnAp, Ap ap, Configuration config
     ) {
-      revFlow(p, state, TReturnCtxMaybeFlowThrough(kind), apSome(returnAp), ap, config) and
-      parameterFlowThroughAllowed(p, kind)
+      revFlow(pragma[only_bind_into](p), state, TReturnCtxMaybeFlowThrough(pos), apSome(returnAp),
+        pragma[only_bind_into](ap), pragma[only_bind_into](config)) and
+      parameterFlowThroughAllowed(p, pos.getKind()) and
+      PrevStage::parameterMayFlowThrough(p, getApprox(ap), config)
     }
 
     pragma[nomagic]
-    private predicate revFlowInToReturn(
-      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap,
-      Configuration config
+    private predicate revFlowThrough(
+      DataFlowCall call, ReturnCtx returnCtx, ParamNodeEx p, FlowState state, ReturnPosition pos,
+      ApOption returnAp, Ap ap, Ap innerReturnAp, Configuration config
     ) {
-      exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlowParamToReturn(p, state, kind, returnAp, ap, config) and
-        revFlowThroughIntoCall(call, arg, p, allowsFieldFlow, ap, config)
-      )
+      revFlowParamToReturn(p, state, pos, innerReturnAp, ap, config) and
+      revFlowIsReturned(call, returnCtx, returnAp, pos, innerReturnAp, config)
     }
 
     /**
@@ -1832,12 +1806,12 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate revFlowIsReturned(
-      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnKindExt kind, Ap ap,
+      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnPosition pos, Ap ap,
       Configuration config
     ) {
       exists(RetNodeEx ret, FlowState state, CcCall ccc |
-        revFlowOut(call, ret, kind, state, returnCtx, returnAp, ap, config) and
-        returnFlowsThrough(ret, kind, state, ccc, _, _, ap, config) and
+        revFlowOut(call, ret, pos, state, returnCtx, returnAp, ap, config) and
+        returnFlowsThrough(ret, pos, state, ccc, _, _, ap, config) and
         matchesCall(ccc, call)
       )
     }
@@ -1915,17 +1889,17 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate parameterFlowsThroughRev(
-      ParamNodeEx p, Ap ap, ReturnKindExt kind, Ap returnAp, Configuration config
+      ParamNodeEx p, Ap ap, ReturnPosition pos, Ap returnAp, Configuration config
     ) {
-      revFlow(p, _, TReturnCtxMaybeFlowThrough(kind), apSome(returnAp), ap, config) and
-      parameterFlowThroughAllowed(p, kind)
+      revFlow(p, _, TReturnCtxMaybeFlowThrough(pos), apSome(returnAp), ap, config) and
+      parameterFlowThroughAllowed(p, pos.getKind())
     }
 
     pragma[nomagic]
     predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
-      exists(RetNodeEx ret, ReturnKindExt kind |
-        returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
-        parameterFlowsThroughRev(p, ap, kind, _, config)
+      exists(RetNodeEx ret, ReturnPosition pos |
+        returnFlowsThrough(ret, pos, _, _, p, ap, _, config) and
+        parameterFlowsThroughRev(p, ap, pos, _, config)
       )
     }
 
@@ -1933,20 +1907,21 @@ private module MkStage<StageSig PrevStage> {
     predicate returnMayFlowThrough(
       RetNodeEx ret, Ap argAp, Ap ap, ReturnKindExt kind, Configuration config
     ) {
-      exists(ParamNodeEx p |
-        returnFlowsThrough(ret, kind, _, _, p, argAp, ap, config) and
-        parameterFlowsThroughRev(p, argAp, kind, ap, config)
+      exists(ParamNodeEx p, ReturnPosition pos |
+        returnFlowsThrough(ret, pos, _, _, p, argAp, ap, config) and
+        parameterFlowsThroughRev(p, argAp, pos, ap, config) and
+        kind = pos.getKind()
       )
     }
 
     pragma[nomagic]
-    predicate revFlowInToReturnIsReturned(
+    private predicate revFlowThroughArg(
       DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnCtx returnCtx, ApOption returnAp,
       Ap ap, Configuration config
     ) {
-      exists(ReturnKindExt returnKind0, Ap returnAp0 |
-        revFlowInToReturn(call, arg, state, returnKind0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
+      exists(ParamNodeEx p, ReturnPosition pos, Ap innerReturnAp |
+        revFlowThrough(call, returnCtx, p, state, pos, returnAp, ap, innerReturnAp, config) and
+        flowThroughIntoCall(call, arg, p, _, ap, innerReturnAp, config)
       )
     }
 
@@ -1954,7 +1929,7 @@ private module MkStage<StageSig PrevStage> {
     predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
       exists(ArgNodeEx arg, FlowState state, ReturnCtx returnCtx, ApOption returnAp, Ap ap |
         revFlow(arg, state, returnCtx, returnAp, ap, config) and
-        revFlowInToReturnIsReturned(call, arg, state, returnCtx, returnAp, ap, config)
+        revFlowThroughArg(call, arg, state, returnCtx, returnAp, ap, config)
       )
     }
 
@@ -1967,8 +1942,9 @@ private module MkStage<StageSig PrevStage> {
       conscand = count(TypedContent f0, Ap ap | fwdConsCand(f0, ap, config)) and
       states = count(FlowState state | fwdFlow(_, state, _, _, _, _, config)) and
       tuples =
-        count(NodeEx n, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-          Ap ap | fwdFlow(n, state, cc, summaryCtx, argAp, ap, config))
+        count(NodeEx n, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap |
+          fwdFlow(n, state, cc, summaryCtx, argAp, ap, config)
+        )
       or
       fwd = false and
       nodes = count(NodeEx node | revFlow(node, _, _, _, _, config)) and
@@ -2823,13 +2799,12 @@ private Configuration unbindConf(Configuration conf) {
 
 pragma[nomagic]
 private predicate nodeMayUseSummary0(
-  NodeEx n, DataFlowCallable c, ParameterPosition pos, FlowState state, AccessPathApprox apa,
-  Configuration config
+  NodeEx n, ParamNodeEx p, FlowState state, AccessPathApprox apa, Configuration config
 ) {
   exists(AccessPathApprox apa0 |
-    c = n.getEnclosingCallable() and
+    Stage5::parameterMayFlowThrough(p, _, _) and
     Stage5::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
-    Stage5::fwdFlow(n, state, any(CallContextCall ccc), TParameterPositionSome(pos),
+    Stage5::fwdFlow(n, state, any(CallContextCall ccc), TParamNodeSome(p.asNode()),
       TAccessPathApproxSome(apa), apa0, config)
   )
 }
@@ -2838,10 +2813,9 @@ pragma[nomagic]
 private predicate nodeMayUseSummary(
   NodeEx n, FlowState state, AccessPathApprox apa, Configuration config
 ) {
-  exists(DataFlowCallable c, ParameterPosition pos, ParamNodeEx p |
+  exists(ParamNodeEx p |
     Stage5::parameterMayFlowThrough(p, apa, config) and
-    nodeMayUseSummary0(n, c, pos, state, apa, config) and
-    p.isParameterOf(c, pos)
+    nodeMayUseSummary0(n, p, state, apa, config)
   )
 }
 
diff --git a/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImpl3.qll b/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImpl3.qll
index 6741ccc2f06..23d11a38842 100644
--- a/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImpl3.qll
+++ b/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImpl3.qll
@@ -1327,8 +1327,8 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     additional predicate fwdFlow(
-      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      Ap ap, ApApprox apa, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      ApApprox apa, Configuration config
     ) {
       fwdFlow0(node, state, cc, summaryCtx, argAp, ap, apa, config) and
       PrevStage::revFlow(node, state, apa, config) and
@@ -1337,21 +1337,21 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[inline]
     additional predicate fwdFlow(
-      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      Ap ap, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      Configuration config
     ) {
       fwdFlow(node, state, cc, summaryCtx, argAp, ap, _, config)
     }
 
     pragma[nomagic]
     private predicate fwdFlow0(
-      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      Ap ap, ApApprox apa, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      ApApprox apa, Configuration config
     ) {
       sourceNode(node, state, config) and
       (if hasSourceCallCtx(config) then cc = ccSomeCall() else cc = ccNone()) and
       argAp = apNone() and
-      summaryCtx = TParameterPositionNone() and
+      summaryCtx = TParamNodeNone() and
       ap = getApNil(node) and
       apa = getApprox(ap)
       or
@@ -1372,7 +1372,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, apa, pragma[only_bind_into](config)) and
         jumpStep(mid, node, config) and
         cc = ccNone() and
-        summaryCtx = TParameterPositionNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone()
       )
       or
@@ -1380,7 +1380,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, state, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStep(mid, node, config) and
         cc = ccNone() and
-        summaryCtx = TParameterPositionNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone() and
         ap = getApNil(node) and
         apa = getApprox(ap)
@@ -1390,7 +1390,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, state0, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStateStep(mid, state0, node, state, config) and
         cc = ccNone() and
-        summaryCtx = TParameterPositionNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone() and
         ap = getApNil(node) and
         apa = getApprox(ap)
@@ -1414,10 +1414,10 @@ private module MkStage<StageSig PrevStage> {
       fwdFlowIn(_, node, state, _, cc, _, _, ap, apa, config) and
       if PrevStage::parameterMayFlowThrough(node, apa, config)
       then (
-        summaryCtx = TParameterPositionSome(node.(ParamNodeEx).getPosition()) and
+        summaryCtx = TParamNodeSome(node.asNode()) and
         argAp = apSome(ap)
       ) else (
-        summaryCtx = TParameterPositionNone() and argAp = apNone()
+        summaryCtx = TParamNodeNone() and argAp = apNone()
       )
       or
       // flow out of a callable
@@ -1433,16 +1433,19 @@ private module MkStage<StageSig PrevStage> {
       )
       or
       // flow through a callable
-      exists(DataFlowCall call, ParameterPosition summaryCtx0, Ap argAp0 |
-        fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, apa, config) and
-        fwdFlowIsEntered(call, cc, summaryCtx, argAp, summaryCtx0, argAp0, config)
+      exists(
+        DataFlowCall call, CcCall ccc, RetNodeEx ret, boolean allowsFieldFlow, ApApprox innerArgApa
+      |
+        fwdFlowThrough(call, cc, state, ccc, summaryCtx, argAp, ap, apa, ret, innerArgApa, config) and
+        flowThroughOutOfCall(call, ccc, ret, node, allowsFieldFlow, innerArgApa, apa, config) and
+        if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
     pragma[nomagic]
     private predicate fwdFlowStore(
       NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc,
-      ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
+      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
     ) {
       exists(DataFlowType contentType, ApApprox apa1 |
         fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, apa1, config) and
@@ -1473,8 +1476,8 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowRead0(
-      NodeEx node1, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      ApNonNil ap, Configuration config
+      NodeEx node1, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, ApNonNil ap,
+      Configuration config
     ) {
       fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, _, _, config)
@@ -1483,7 +1486,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowRead(
       Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc,
-      ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
+      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
     ) {
       fwdFlowRead0(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, c, node2, config) and
@@ -1493,7 +1496,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowIn(
       DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, CcCall innercc,
-      ParameterPositionOption summaryCtx, ApOption argAp, Ap ap, ApApprox apa, Configuration config
+      ParamNodeOption summaryCtx, ApOption argAp, Ap ap, ApApprox apa, Configuration config
     ) {
       exists(ArgNodeEx arg, boolean allowsFieldFlow |
         fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, apa, config) and
@@ -1505,64 +1508,38 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowRetFromArg(
-      RetNodeEx ret, FlowState state, CcCall ccc, ParameterPosition summaryCtx, ParamNodeEx p,
-      Ap argAp, ApApprox argApa, Ap ap, ApApprox apa, Configuration config
+      RetNodeEx ret, FlowState state, CcCall ccc, ParamNodeEx summaryCtx, Ap argAp, ApApprox argApa,
+      Ap ap, ApApprox apa, Configuration config
     ) {
-      exists(DataFlowCallable c, ReturnKindExt kind |
+      exists(ReturnKindExt kind |
         fwdFlow(pragma[only_bind_into](ret), state, ccc,
-          TParameterPositionSome(pragma[only_bind_into](summaryCtx)), apSome(argAp), ap, apa, config) and
-        getApprox(argAp) = argApa and
-        c = ret.getEnclosingCallable() and
+          TParamNodeSome(pragma[only_bind_into](summaryCtx.asNode())),
+          pragma[only_bind_into](apSome(argAp)), ap, pragma[only_bind_into](apa),
+          pragma[only_bind_into](config)) and
         kind = ret.getKind() and
-        p.isParameterOf(c, pragma[only_bind_into](summaryCtx)) and
-        parameterFlowThroughAllowed(p, kind)
+        parameterFlowThroughAllowed(summaryCtx, kind) and
+        argApa = getApprox(argAp) and
+        PrevStage::returnMayFlowThrough(ret, argApa, apa, kind, pragma[only_bind_into](config))
       )
     }
 
     pragma[inline]
-    private predicate fwdFlowInMayFlowThrough(
-      DataFlowCall call, Cc cc, CcCall innerCc, ParameterPositionOption summaryCtx, ApOption argAp,
-      ParamNodeEx param, Ap ap, ApApprox apa, Configuration config
+    private predicate fwdFlowThrough0(
+      DataFlowCall call, Cc cc, FlowState state, CcCall ccc, ParamNodeOption summaryCtx,
+      ApOption argAp, Ap ap, ApApprox apa, RetNodeEx ret, ParamNodeEx innerSummaryCtx,
+      Ap innerArgAp, ApApprox innerArgApa, Configuration config
     ) {
-      fwdFlowIn(call, pragma[only_bind_into](param), _, cc, innerCc, summaryCtx, argAp, ap,
-        pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
-      PrevStage::parameterMayFlowThrough(param, apa, config)
-    }
-
-    // dedup before joining with `flowThroughOutOfCall`
-    pragma[nomagic]
-    private predicate fwdFlowInMayFlowThroughProj(
-      DataFlowCall call, CcCall innerCc, ApApprox apa, Configuration config
-    ) {
-      fwdFlowInMayFlowThrough(call, _, innerCc, _, _, _, _, apa, config)
-    }
-
-    /**
-     * Same as `flowThroughOutOfCall`, but restricted to calls that are reached
-     * in the flow covered by `fwdFlow`, where data might flow through the target
-     * callable and back out at `call`.
-     */
-    pragma[nomagic]
-    private predicate fwdFlowThroughOutOfCall(
-      DataFlowCall call, CcCall ccc, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow,
-      ApApprox argApa, ApApprox apa, Configuration config
-    ) {
-      fwdFlowInMayFlowThroughProj(call, ccc, argApa, config) and
-      flowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, argApa, apa, config)
+      fwdFlowRetFromArg(ret, state, ccc, innerSummaryCtx, innerArgAp, innerArgApa, ap, apa, config) and
+      fwdFlowIsEntered(call, cc, ccc, summaryCtx, argAp, innerSummaryCtx, innerArgAp, config)
     }
 
     pragma[nomagic]
-    private predicate fwdFlowOutFromArg(
-      DataFlowCall call, NodeEx out, FlowState state, ParameterPosition summaryCtx, Ap argAp, Ap ap,
-      ApApprox apa, Configuration config
+    private predicate fwdFlowThrough(
+      DataFlowCall call, Cc cc, FlowState state, CcCall ccc, ParamNodeOption summaryCtx,
+      ApOption argAp, Ap ap, ApApprox apa, RetNodeEx ret, ApApprox innerArgApa, Configuration config
     ) {
-      exists(RetNodeEx ret, boolean allowsFieldFlow, CcCall ccc, ApApprox argApa |
-        fwdFlowRetFromArg(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc),
-          summaryCtx, _, argAp, pragma[only_bind_into](argApa), ap, pragma[only_bind_into](apa),
-          config) and
-        fwdFlowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, argApa, apa, config) and
-        (if allowsFieldFlow = false then ap instanceof ApNil else any())
-      )
+      fwdFlowThrough0(call, cc, state, ccc, summaryCtx, argAp, ap, apa, ret, _, _, innerArgApa,
+        config)
     }
 
     /**
@@ -1571,12 +1548,14 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate fwdFlowIsEntered(
-      DataFlowCall call, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      ParameterPosition pos, Ap ap, Configuration config
+      DataFlowCall call, Cc cc, CcCall innerCc, ParamNodeOption summaryCtx, ApOption argAp,
+      ParamNodeEx p, Ap ap, Configuration config
     ) {
-      exists(ParamNodeEx param |
-        fwdFlowInMayFlowThrough(call, cc, _, summaryCtx, argAp, param, ap, _, config) and
-        pos = param.getPosition()
+      exists(ApApprox apa |
+        fwdFlowIn(call, pragma[only_bind_into](p), _, cc, innerCc, summaryCtx, argAp, ap,
+          pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
+        PrevStage::parameterMayFlowThrough(p, apa, config) and
+        PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config))
       )
     }
 
@@ -1596,23 +1575,31 @@ private module MkStage<StageSig PrevStage> {
       fwdFlowConsCand(ap1, c, ap2, config)
     }
 
+    pragma[nomagic]
+    private predicate returnFlowsThrough0(
+      DataFlowCall call, FlowState state, CcCall ccc, Ap ap, ApApprox apa, RetNodeEx ret,
+      ParamNodeEx innerSummaryCtx, Ap innerArgAp, ApApprox innerArgApa, Configuration config
+    ) {
+      fwdFlowThrough0(call, _, state, ccc, _, _, ap, apa, ret, innerSummaryCtx, innerArgAp,
+        innerArgApa, config)
+    }
+
     pragma[nomagic]
     private predicate returnFlowsThrough(
-      RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, ParamNodeEx p, Ap argAp,
+      RetNodeEx ret, ReturnPosition pos, FlowState state, CcCall ccc, ParamNodeEx p, Ap argAp,
       Ap ap, Configuration config
     ) {
-      exists(boolean allowsFieldFlow, ApApprox argApa, ApApprox apa |
-        fwdFlowRetFromArg(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc), _, p,
-          argAp, pragma[only_bind_into](argApa), ap, pragma[only_bind_into](apa), config) and
-        kind = ret.getKind() and
-        fwdFlowThroughOutOfCall(_, ccc, ret, _, allowsFieldFlow, argApa, apa, config) and
-        (if allowsFieldFlow = false then ap instanceof ApNil else any())
+      exists(DataFlowCall call, ApApprox apa, boolean allowsFieldFlow, ApApprox innerArgApa |
+        returnFlowsThrough0(call, state, ccc, ap, apa, ret, p, argAp, innerArgApa, config) and
+        flowThroughOutOfCall(call, ccc, ret, _, allowsFieldFlow, innerArgApa, apa, config) and
+        pos = ret.getReturnPosition() and
+        if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
     pragma[nomagic]
     private predicate flowThroughIntoCall(
-      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp,
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp, Ap ap,
       Configuration config
     ) {
       exists(ApApprox argApa |
@@ -1620,7 +1607,7 @@ private module MkStage<StageSig PrevStage> {
           allowsFieldFlow, argApa, pragma[only_bind_into](config)) and
         fwdFlow(arg, _, _, _, _, pragma[only_bind_into](argAp), argApa,
           pragma[only_bind_into](config)) and
-        returnFlowsThrough(_, _, _, _, p, pragma[only_bind_into](argAp), _,
+        returnFlowsThrough(_, _, _, _, p, pragma[only_bind_into](argAp), ap,
           pragma[only_bind_into](config)) and
         if allowsFieldFlow = false then argAp instanceof ApNil else any()
       )
@@ -1639,12 +1626,13 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate flowOutOfCallAp(
-      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
+      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
       Ap ap, Configuration config
     ) {
       exists(ApApprox apa |
-        flowOutOfCallApa(call, ret, kind, out, allowsFieldFlow, apa, config) and
-        fwdFlow(ret, _, _, _, _, ap, apa, config)
+        flowOutOfCallApa(call, ret, _, out, allowsFieldFlow, apa, config) and
+        fwdFlow(ret, _, _, _, _, ap, apa, config) and
+        pos = ret.getReturnPosition()
       )
     }
 
@@ -1739,17 +1727,17 @@ private module MkStage<StageSig PrevStage> {
       )
       or
       // flow through a callable
-      exists(DataFlowCall call, ReturnKindExt returnKind0, Ap returnAp0 |
-        revFlowInToReturn(call, node, state, returnKind0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
+      exists(DataFlowCall call, ParamNodeEx p, ReturnPosition pos, Ap innerReturnAp |
+        revFlowThrough(call, returnCtx, p, state, pos, returnAp, ap, innerReturnAp, config) and
+        flowThroughIntoCall(call, node, p, _, ap, innerReturnAp, config)
       )
       or
       // flow out of a callable
-      exists(ReturnKindExt kind |
-        revFlowOut(_, node, kind, state, _, _, ap, config) and
-        if returnFlowsThrough(node, kind, state, _, _, _, ap, config)
+      exists(ReturnPosition pos |
+        revFlowOut(_, node, pos, state, _, _, ap, config) and
+        if returnFlowsThrough(node, pos, state, _, _, _, ap, config)
         then (
-          returnCtx = TReturnCtxMaybeFlowThrough(kind) and
+          returnCtx = TReturnCtxMaybeFlowThrough(pos) and
           returnAp = apSome(ap)
         ) else (
           returnCtx = TReturnCtxNoFlowThrough() and returnAp = apNone()
@@ -1782,47 +1770,33 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate revFlowOut(
-      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, FlowState state, ReturnCtx returnCtx,
+      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, FlowState state, ReturnCtx returnCtx,
       ApOption returnAp, Ap ap, Configuration config
     ) {
       exists(NodeEx out, boolean allowsFieldFlow |
         revFlow(out, state, returnCtx, returnAp, ap, config) and
-        flowOutOfCallAp(call, ret, kind, out, allowsFieldFlow, ap, config) and
+        flowOutOfCallAp(call, ret, pos, out, allowsFieldFlow, ap, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
-    /**
-     * Same as `flowThroughIntoCall`, but restricted to calls that are reached
-     * in the flow covered by `revFlow`, where data might flow through the target
-     * callable and back out at `call`.
-     */
-    pragma[nomagic]
-    private predicate revFlowThroughIntoCall(
-      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp,
-      Configuration config
-    ) {
-      flowThroughIntoCall(call, arg, p, allowsFieldFlow, argAp, config) and
-      revFlowIsReturned(call, _, _, _, _, config)
-    }
-
     pragma[nomagic]
     private predicate revFlowParamToReturn(
-      ParamNodeEx p, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap, Configuration config
+      ParamNodeEx p, FlowState state, ReturnPosition pos, Ap returnAp, Ap ap, Configuration config
     ) {
-      revFlow(p, state, TReturnCtxMaybeFlowThrough(kind), apSome(returnAp), ap, config) and
-      parameterFlowThroughAllowed(p, kind)
+      revFlow(pragma[only_bind_into](p), state, TReturnCtxMaybeFlowThrough(pos), apSome(returnAp),
+        pragma[only_bind_into](ap), pragma[only_bind_into](config)) and
+      parameterFlowThroughAllowed(p, pos.getKind()) and
+      PrevStage::parameterMayFlowThrough(p, getApprox(ap), config)
     }
 
     pragma[nomagic]
-    private predicate revFlowInToReturn(
-      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap,
-      Configuration config
+    private predicate revFlowThrough(
+      DataFlowCall call, ReturnCtx returnCtx, ParamNodeEx p, FlowState state, ReturnPosition pos,
+      ApOption returnAp, Ap ap, Ap innerReturnAp, Configuration config
     ) {
-      exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlowParamToReturn(p, state, kind, returnAp, ap, config) and
-        revFlowThroughIntoCall(call, arg, p, allowsFieldFlow, ap, config)
-      )
+      revFlowParamToReturn(p, state, pos, innerReturnAp, ap, config) and
+      revFlowIsReturned(call, returnCtx, returnAp, pos, innerReturnAp, config)
     }
 
     /**
@@ -1832,12 +1806,12 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate revFlowIsReturned(
-      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnKindExt kind, Ap ap,
+      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnPosition pos, Ap ap,
       Configuration config
     ) {
       exists(RetNodeEx ret, FlowState state, CcCall ccc |
-        revFlowOut(call, ret, kind, state, returnCtx, returnAp, ap, config) and
-        returnFlowsThrough(ret, kind, state, ccc, _, _, ap, config) and
+        revFlowOut(call, ret, pos, state, returnCtx, returnAp, ap, config) and
+        returnFlowsThrough(ret, pos, state, ccc, _, _, ap, config) and
         matchesCall(ccc, call)
       )
     }
@@ -1915,17 +1889,17 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate parameterFlowsThroughRev(
-      ParamNodeEx p, Ap ap, ReturnKindExt kind, Ap returnAp, Configuration config
+      ParamNodeEx p, Ap ap, ReturnPosition pos, Ap returnAp, Configuration config
     ) {
-      revFlow(p, _, TReturnCtxMaybeFlowThrough(kind), apSome(returnAp), ap, config) and
-      parameterFlowThroughAllowed(p, kind)
+      revFlow(p, _, TReturnCtxMaybeFlowThrough(pos), apSome(returnAp), ap, config) and
+      parameterFlowThroughAllowed(p, pos.getKind())
     }
 
     pragma[nomagic]
     predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
-      exists(RetNodeEx ret, ReturnKindExt kind |
-        returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
-        parameterFlowsThroughRev(p, ap, kind, _, config)
+      exists(RetNodeEx ret, ReturnPosition pos |
+        returnFlowsThrough(ret, pos, _, _, p, ap, _, config) and
+        parameterFlowsThroughRev(p, ap, pos, _, config)
       )
     }
 
@@ -1933,20 +1907,21 @@ private module MkStage<StageSig PrevStage> {
     predicate returnMayFlowThrough(
       RetNodeEx ret, Ap argAp, Ap ap, ReturnKindExt kind, Configuration config
     ) {
-      exists(ParamNodeEx p |
-        returnFlowsThrough(ret, kind, _, _, p, argAp, ap, config) and
-        parameterFlowsThroughRev(p, argAp, kind, ap, config)
+      exists(ParamNodeEx p, ReturnPosition pos |
+        returnFlowsThrough(ret, pos, _, _, p, argAp, ap, config) and
+        parameterFlowsThroughRev(p, argAp, pos, ap, config) and
+        kind = pos.getKind()
       )
     }
 
     pragma[nomagic]
-    predicate revFlowInToReturnIsReturned(
+    private predicate revFlowThroughArg(
       DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnCtx returnCtx, ApOption returnAp,
       Ap ap, Configuration config
     ) {
-      exists(ReturnKindExt returnKind0, Ap returnAp0 |
-        revFlowInToReturn(call, arg, state, returnKind0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
+      exists(ParamNodeEx p, ReturnPosition pos, Ap innerReturnAp |
+        revFlowThrough(call, returnCtx, p, state, pos, returnAp, ap, innerReturnAp, config) and
+        flowThroughIntoCall(call, arg, p, _, ap, innerReturnAp, config)
       )
     }
 
@@ -1954,7 +1929,7 @@ private module MkStage<StageSig PrevStage> {
     predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
       exists(ArgNodeEx arg, FlowState state, ReturnCtx returnCtx, ApOption returnAp, Ap ap |
         revFlow(arg, state, returnCtx, returnAp, ap, config) and
-        revFlowInToReturnIsReturned(call, arg, state, returnCtx, returnAp, ap, config)
+        revFlowThroughArg(call, arg, state, returnCtx, returnAp, ap, config)
       )
     }
 
@@ -1967,8 +1942,9 @@ private module MkStage<StageSig PrevStage> {
       conscand = count(TypedContent f0, Ap ap | fwdConsCand(f0, ap, config)) and
       states = count(FlowState state | fwdFlow(_, state, _, _, _, _, config)) and
       tuples =
-        count(NodeEx n, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-          Ap ap | fwdFlow(n, state, cc, summaryCtx, argAp, ap, config))
+        count(NodeEx n, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap |
+          fwdFlow(n, state, cc, summaryCtx, argAp, ap, config)
+        )
       or
       fwd = false and
       nodes = count(NodeEx node | revFlow(node, _, _, _, _, config)) and
@@ -2823,13 +2799,12 @@ private Configuration unbindConf(Configuration conf) {
 
 pragma[nomagic]
 private predicate nodeMayUseSummary0(
-  NodeEx n, DataFlowCallable c, ParameterPosition pos, FlowState state, AccessPathApprox apa,
-  Configuration config
+  NodeEx n, ParamNodeEx p, FlowState state, AccessPathApprox apa, Configuration config
 ) {
   exists(AccessPathApprox apa0 |
-    c = n.getEnclosingCallable() and
+    Stage5::parameterMayFlowThrough(p, _, _) and
     Stage5::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
-    Stage5::fwdFlow(n, state, any(CallContextCall ccc), TParameterPositionSome(pos),
+    Stage5::fwdFlow(n, state, any(CallContextCall ccc), TParamNodeSome(p.asNode()),
       TAccessPathApproxSome(apa), apa0, config)
   )
 }
@@ -2838,10 +2813,9 @@ pragma[nomagic]
 private predicate nodeMayUseSummary(
   NodeEx n, FlowState state, AccessPathApprox apa, Configuration config
 ) {
-  exists(DataFlowCallable c, ParameterPosition pos, ParamNodeEx p |
+  exists(ParamNodeEx p |
     Stage5::parameterMayFlowThrough(p, apa, config) and
-    nodeMayUseSummary0(n, c, pos, state, apa, config) and
-    p.isParameterOf(c, pos)
+    nodeMayUseSummary0(n, p, state, apa, config)
   )
 }
 
diff --git a/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImpl4.qll b/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImpl4.qll
index 6741ccc2f06..23d11a38842 100644
--- a/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImpl4.qll
+++ b/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImpl4.qll
@@ -1327,8 +1327,8 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     additional predicate fwdFlow(
-      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      Ap ap, ApApprox apa, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      ApApprox apa, Configuration config
     ) {
       fwdFlow0(node, state, cc, summaryCtx, argAp, ap, apa, config) and
       PrevStage::revFlow(node, state, apa, config) and
@@ -1337,21 +1337,21 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[inline]
     additional predicate fwdFlow(
-      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      Ap ap, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      Configuration config
     ) {
       fwdFlow(node, state, cc, summaryCtx, argAp, ap, _, config)
     }
 
     pragma[nomagic]
     private predicate fwdFlow0(
-      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      Ap ap, ApApprox apa, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      ApApprox apa, Configuration config
     ) {
       sourceNode(node, state, config) and
       (if hasSourceCallCtx(config) then cc = ccSomeCall() else cc = ccNone()) and
       argAp = apNone() and
-      summaryCtx = TParameterPositionNone() and
+      summaryCtx = TParamNodeNone() and
       ap = getApNil(node) and
       apa = getApprox(ap)
       or
@@ -1372,7 +1372,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, apa, pragma[only_bind_into](config)) and
         jumpStep(mid, node, config) and
         cc = ccNone() and
-        summaryCtx = TParameterPositionNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone()
       )
       or
@@ -1380,7 +1380,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, state, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStep(mid, node, config) and
         cc = ccNone() and
-        summaryCtx = TParameterPositionNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone() and
         ap = getApNil(node) and
         apa = getApprox(ap)
@@ -1390,7 +1390,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, state0, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStateStep(mid, state0, node, state, config) and
         cc = ccNone() and
-        summaryCtx = TParameterPositionNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone() and
         ap = getApNil(node) and
         apa = getApprox(ap)
@@ -1414,10 +1414,10 @@ private module MkStage<StageSig PrevStage> {
       fwdFlowIn(_, node, state, _, cc, _, _, ap, apa, config) and
       if PrevStage::parameterMayFlowThrough(node, apa, config)
       then (
-        summaryCtx = TParameterPositionSome(node.(ParamNodeEx).getPosition()) and
+        summaryCtx = TParamNodeSome(node.asNode()) and
         argAp = apSome(ap)
       ) else (
-        summaryCtx = TParameterPositionNone() and argAp = apNone()
+        summaryCtx = TParamNodeNone() and argAp = apNone()
       )
       or
       // flow out of a callable
@@ -1433,16 +1433,19 @@ private module MkStage<StageSig PrevStage> {
       )
       or
       // flow through a callable
-      exists(DataFlowCall call, ParameterPosition summaryCtx0, Ap argAp0 |
-        fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, apa, config) and
-        fwdFlowIsEntered(call, cc, summaryCtx, argAp, summaryCtx0, argAp0, config)
+      exists(
+        DataFlowCall call, CcCall ccc, RetNodeEx ret, boolean allowsFieldFlow, ApApprox innerArgApa
+      |
+        fwdFlowThrough(call, cc, state, ccc, summaryCtx, argAp, ap, apa, ret, innerArgApa, config) and
+        flowThroughOutOfCall(call, ccc, ret, node, allowsFieldFlow, innerArgApa, apa, config) and
+        if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
     pragma[nomagic]
     private predicate fwdFlowStore(
       NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc,
-      ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
+      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
     ) {
       exists(DataFlowType contentType, ApApprox apa1 |
         fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, apa1, config) and
@@ -1473,8 +1476,8 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowRead0(
-      NodeEx node1, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      ApNonNil ap, Configuration config
+      NodeEx node1, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, ApNonNil ap,
+      Configuration config
     ) {
       fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, _, _, config)
@@ -1483,7 +1486,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowRead(
       Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc,
-      ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
+      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
     ) {
       fwdFlowRead0(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, c, node2, config) and
@@ -1493,7 +1496,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowIn(
       DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, CcCall innercc,
-      ParameterPositionOption summaryCtx, ApOption argAp, Ap ap, ApApprox apa, Configuration config
+      ParamNodeOption summaryCtx, ApOption argAp, Ap ap, ApApprox apa, Configuration config
     ) {
       exists(ArgNodeEx arg, boolean allowsFieldFlow |
         fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, apa, config) and
@@ -1505,64 +1508,38 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowRetFromArg(
-      RetNodeEx ret, FlowState state, CcCall ccc, ParameterPosition summaryCtx, ParamNodeEx p,
-      Ap argAp, ApApprox argApa, Ap ap, ApApprox apa, Configuration config
+      RetNodeEx ret, FlowState state, CcCall ccc, ParamNodeEx summaryCtx, Ap argAp, ApApprox argApa,
+      Ap ap, ApApprox apa, Configuration config
     ) {
-      exists(DataFlowCallable c, ReturnKindExt kind |
+      exists(ReturnKindExt kind |
         fwdFlow(pragma[only_bind_into](ret), state, ccc,
-          TParameterPositionSome(pragma[only_bind_into](summaryCtx)), apSome(argAp), ap, apa, config) and
-        getApprox(argAp) = argApa and
-        c = ret.getEnclosingCallable() and
+          TParamNodeSome(pragma[only_bind_into](summaryCtx.asNode())),
+          pragma[only_bind_into](apSome(argAp)), ap, pragma[only_bind_into](apa),
+          pragma[only_bind_into](config)) and
         kind = ret.getKind() and
-        p.isParameterOf(c, pragma[only_bind_into](summaryCtx)) and
-        parameterFlowThroughAllowed(p, kind)
+        parameterFlowThroughAllowed(summaryCtx, kind) and
+        argApa = getApprox(argAp) and
+        PrevStage::returnMayFlowThrough(ret, argApa, apa, kind, pragma[only_bind_into](config))
       )
     }
 
     pragma[inline]
-    private predicate fwdFlowInMayFlowThrough(
-      DataFlowCall call, Cc cc, CcCall innerCc, ParameterPositionOption summaryCtx, ApOption argAp,
-      ParamNodeEx param, Ap ap, ApApprox apa, Configuration config
+    private predicate fwdFlowThrough0(
+      DataFlowCall call, Cc cc, FlowState state, CcCall ccc, ParamNodeOption summaryCtx,
+      ApOption argAp, Ap ap, ApApprox apa, RetNodeEx ret, ParamNodeEx innerSummaryCtx,
+      Ap innerArgAp, ApApprox innerArgApa, Configuration config
     ) {
-      fwdFlowIn(call, pragma[only_bind_into](param), _, cc, innerCc, summaryCtx, argAp, ap,
-        pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
-      PrevStage::parameterMayFlowThrough(param, apa, config)
-    }
-
-    // dedup before joining with `flowThroughOutOfCall`
-    pragma[nomagic]
-    private predicate fwdFlowInMayFlowThroughProj(
-      DataFlowCall call, CcCall innerCc, ApApprox apa, Configuration config
-    ) {
-      fwdFlowInMayFlowThrough(call, _, innerCc, _, _, _, _, apa, config)
-    }
-
-    /**
-     * Same as `flowThroughOutOfCall`, but restricted to calls that are reached
-     * in the flow covered by `fwdFlow`, where data might flow through the target
-     * callable and back out at `call`.
-     */
-    pragma[nomagic]
-    private predicate fwdFlowThroughOutOfCall(
-      DataFlowCall call, CcCall ccc, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow,
-      ApApprox argApa, ApApprox apa, Configuration config
-    ) {
-      fwdFlowInMayFlowThroughProj(call, ccc, argApa, config) and
-      flowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, argApa, apa, config)
+      fwdFlowRetFromArg(ret, state, ccc, innerSummaryCtx, innerArgAp, innerArgApa, ap, apa, config) and
+      fwdFlowIsEntered(call, cc, ccc, summaryCtx, argAp, innerSummaryCtx, innerArgAp, config)
     }
 
     pragma[nomagic]
-    private predicate fwdFlowOutFromArg(
-      DataFlowCall call, NodeEx out, FlowState state, ParameterPosition summaryCtx, Ap argAp, Ap ap,
-      ApApprox apa, Configuration config
+    private predicate fwdFlowThrough(
+      DataFlowCall call, Cc cc, FlowState state, CcCall ccc, ParamNodeOption summaryCtx,
+      ApOption argAp, Ap ap, ApApprox apa, RetNodeEx ret, ApApprox innerArgApa, Configuration config
     ) {
-      exists(RetNodeEx ret, boolean allowsFieldFlow, CcCall ccc, ApApprox argApa |
-        fwdFlowRetFromArg(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc),
-          summaryCtx, _, argAp, pragma[only_bind_into](argApa), ap, pragma[only_bind_into](apa),
-          config) and
-        fwdFlowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, argApa, apa, config) and
-        (if allowsFieldFlow = false then ap instanceof ApNil else any())
-      )
+      fwdFlowThrough0(call, cc, state, ccc, summaryCtx, argAp, ap, apa, ret, _, _, innerArgApa,
+        config)
     }
 
     /**
@@ -1571,12 +1548,14 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate fwdFlowIsEntered(
-      DataFlowCall call, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      ParameterPosition pos, Ap ap, Configuration config
+      DataFlowCall call, Cc cc, CcCall innerCc, ParamNodeOption summaryCtx, ApOption argAp,
+      ParamNodeEx p, Ap ap, Configuration config
     ) {
-      exists(ParamNodeEx param |
-        fwdFlowInMayFlowThrough(call, cc, _, summaryCtx, argAp, param, ap, _, config) and
-        pos = param.getPosition()
+      exists(ApApprox apa |
+        fwdFlowIn(call, pragma[only_bind_into](p), _, cc, innerCc, summaryCtx, argAp, ap,
+          pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
+        PrevStage::parameterMayFlowThrough(p, apa, config) and
+        PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config))
       )
     }
 
@@ -1596,23 +1575,31 @@ private module MkStage<StageSig PrevStage> {
       fwdFlowConsCand(ap1, c, ap2, config)
     }
 
+    pragma[nomagic]
+    private predicate returnFlowsThrough0(
+      DataFlowCall call, FlowState state, CcCall ccc, Ap ap, ApApprox apa, RetNodeEx ret,
+      ParamNodeEx innerSummaryCtx, Ap innerArgAp, ApApprox innerArgApa, Configuration config
+    ) {
+      fwdFlowThrough0(call, _, state, ccc, _, _, ap, apa, ret, innerSummaryCtx, innerArgAp,
+        innerArgApa, config)
+    }
+
     pragma[nomagic]
     private predicate returnFlowsThrough(
-      RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, ParamNodeEx p, Ap argAp,
+      RetNodeEx ret, ReturnPosition pos, FlowState state, CcCall ccc, ParamNodeEx p, Ap argAp,
       Ap ap, Configuration config
     ) {
-      exists(boolean allowsFieldFlow, ApApprox argApa, ApApprox apa |
-        fwdFlowRetFromArg(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc), _, p,
-          argAp, pragma[only_bind_into](argApa), ap, pragma[only_bind_into](apa), config) and
-        kind = ret.getKind() and
-        fwdFlowThroughOutOfCall(_, ccc, ret, _, allowsFieldFlow, argApa, apa, config) and
-        (if allowsFieldFlow = false then ap instanceof ApNil else any())
+      exists(DataFlowCall call, ApApprox apa, boolean allowsFieldFlow, ApApprox innerArgApa |
+        returnFlowsThrough0(call, state, ccc, ap, apa, ret, p, argAp, innerArgApa, config) and
+        flowThroughOutOfCall(call, ccc, ret, _, allowsFieldFlow, innerArgApa, apa, config) and
+        pos = ret.getReturnPosition() and
+        if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
     pragma[nomagic]
     private predicate flowThroughIntoCall(
-      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp,
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp, Ap ap,
       Configuration config
     ) {
       exists(ApApprox argApa |
@@ -1620,7 +1607,7 @@ private module MkStage<StageSig PrevStage> {
           allowsFieldFlow, argApa, pragma[only_bind_into](config)) and
         fwdFlow(arg, _, _, _, _, pragma[only_bind_into](argAp), argApa,
           pragma[only_bind_into](config)) and
-        returnFlowsThrough(_, _, _, _, p, pragma[only_bind_into](argAp), _,
+        returnFlowsThrough(_, _, _, _, p, pragma[only_bind_into](argAp), ap,
           pragma[only_bind_into](config)) and
         if allowsFieldFlow = false then argAp instanceof ApNil else any()
       )
@@ -1639,12 +1626,13 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate flowOutOfCallAp(
-      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
+      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
       Ap ap, Configuration config
     ) {
       exists(ApApprox apa |
-        flowOutOfCallApa(call, ret, kind, out, allowsFieldFlow, apa, config) and
-        fwdFlow(ret, _, _, _, _, ap, apa, config)
+        flowOutOfCallApa(call, ret, _, out, allowsFieldFlow, apa, config) and
+        fwdFlow(ret, _, _, _, _, ap, apa, config) and
+        pos = ret.getReturnPosition()
       )
     }
 
@@ -1739,17 +1727,17 @@ private module MkStage<StageSig PrevStage> {
       )
       or
       // flow through a callable
-      exists(DataFlowCall call, ReturnKindExt returnKind0, Ap returnAp0 |
-        revFlowInToReturn(call, node, state, returnKind0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
+      exists(DataFlowCall call, ParamNodeEx p, ReturnPosition pos, Ap innerReturnAp |
+        revFlowThrough(call, returnCtx, p, state, pos, returnAp, ap, innerReturnAp, config) and
+        flowThroughIntoCall(call, node, p, _, ap, innerReturnAp, config)
       )
       or
       // flow out of a callable
-      exists(ReturnKindExt kind |
-        revFlowOut(_, node, kind, state, _, _, ap, config) and
-        if returnFlowsThrough(node, kind, state, _, _, _, ap, config)
+      exists(ReturnPosition pos |
+        revFlowOut(_, node, pos, state, _, _, ap, config) and
+        if returnFlowsThrough(node, pos, state, _, _, _, ap, config)
         then (
-          returnCtx = TReturnCtxMaybeFlowThrough(kind) and
+          returnCtx = TReturnCtxMaybeFlowThrough(pos) and
           returnAp = apSome(ap)
         ) else (
           returnCtx = TReturnCtxNoFlowThrough() and returnAp = apNone()
@@ -1782,47 +1770,33 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate revFlowOut(
-      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, FlowState state, ReturnCtx returnCtx,
+      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, FlowState state, ReturnCtx returnCtx,
       ApOption returnAp, Ap ap, Configuration config
     ) {
       exists(NodeEx out, boolean allowsFieldFlow |
         revFlow(out, state, returnCtx, returnAp, ap, config) and
-        flowOutOfCallAp(call, ret, kind, out, allowsFieldFlow, ap, config) and
+        flowOutOfCallAp(call, ret, pos, out, allowsFieldFlow, ap, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
-    /**
-     * Same as `flowThroughIntoCall`, but restricted to calls that are reached
-     * in the flow covered by `revFlow`, where data might flow through the target
-     * callable and back out at `call`.
-     */
-    pragma[nomagic]
-    private predicate revFlowThroughIntoCall(
-      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp,
-      Configuration config
-    ) {
-      flowThroughIntoCall(call, arg, p, allowsFieldFlow, argAp, config) and
-      revFlowIsReturned(call, _, _, _, _, config)
-    }
-
     pragma[nomagic]
     private predicate revFlowParamToReturn(
-      ParamNodeEx p, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap, Configuration config
+      ParamNodeEx p, FlowState state, ReturnPosition pos, Ap returnAp, Ap ap, Configuration config
     ) {
-      revFlow(p, state, TReturnCtxMaybeFlowThrough(kind), apSome(returnAp), ap, config) and
-      parameterFlowThroughAllowed(p, kind)
+      revFlow(pragma[only_bind_into](p), state, TReturnCtxMaybeFlowThrough(pos), apSome(returnAp),
+        pragma[only_bind_into](ap), pragma[only_bind_into](config)) and
+      parameterFlowThroughAllowed(p, pos.getKind()) and
+      PrevStage::parameterMayFlowThrough(p, getApprox(ap), config)
     }
 
     pragma[nomagic]
-    private predicate revFlowInToReturn(
-      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap,
-      Configuration config
+    private predicate revFlowThrough(
+      DataFlowCall call, ReturnCtx returnCtx, ParamNodeEx p, FlowState state, ReturnPosition pos,
+      ApOption returnAp, Ap ap, Ap innerReturnAp, Configuration config
     ) {
-      exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlowParamToReturn(p, state, kind, returnAp, ap, config) and
-        revFlowThroughIntoCall(call, arg, p, allowsFieldFlow, ap, config)
-      )
+      revFlowParamToReturn(p, state, pos, innerReturnAp, ap, config) and
+      revFlowIsReturned(call, returnCtx, returnAp, pos, innerReturnAp, config)
     }
 
     /**
@@ -1832,12 +1806,12 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate revFlowIsReturned(
-      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnKindExt kind, Ap ap,
+      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnPosition pos, Ap ap,
       Configuration config
     ) {
       exists(RetNodeEx ret, FlowState state, CcCall ccc |
-        revFlowOut(call, ret, kind, state, returnCtx, returnAp, ap, config) and
-        returnFlowsThrough(ret, kind, state, ccc, _, _, ap, config) and
+        revFlowOut(call, ret, pos, state, returnCtx, returnAp, ap, config) and
+        returnFlowsThrough(ret, pos, state, ccc, _, _, ap, config) and
         matchesCall(ccc, call)
       )
     }
@@ -1915,17 +1889,17 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate parameterFlowsThroughRev(
-      ParamNodeEx p, Ap ap, ReturnKindExt kind, Ap returnAp, Configuration config
+      ParamNodeEx p, Ap ap, ReturnPosition pos, Ap returnAp, Configuration config
     ) {
-      revFlow(p, _, TReturnCtxMaybeFlowThrough(kind), apSome(returnAp), ap, config) and
-      parameterFlowThroughAllowed(p, kind)
+      revFlow(p, _, TReturnCtxMaybeFlowThrough(pos), apSome(returnAp), ap, config) and
+      parameterFlowThroughAllowed(p, pos.getKind())
     }
 
     pragma[nomagic]
     predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
-      exists(RetNodeEx ret, ReturnKindExt kind |
-        returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
-        parameterFlowsThroughRev(p, ap, kind, _, config)
+      exists(RetNodeEx ret, ReturnPosition pos |
+        returnFlowsThrough(ret, pos, _, _, p, ap, _, config) and
+        parameterFlowsThroughRev(p, ap, pos, _, config)
       )
     }
 
@@ -1933,20 +1907,21 @@ private module MkStage<StageSig PrevStage> {
     predicate returnMayFlowThrough(
       RetNodeEx ret, Ap argAp, Ap ap, ReturnKindExt kind, Configuration config
     ) {
-      exists(ParamNodeEx p |
-        returnFlowsThrough(ret, kind, _, _, p, argAp, ap, config) and
-        parameterFlowsThroughRev(p, argAp, kind, ap, config)
+      exists(ParamNodeEx p, ReturnPosition pos |
+        returnFlowsThrough(ret, pos, _, _, p, argAp, ap, config) and
+        parameterFlowsThroughRev(p, argAp, pos, ap, config) and
+        kind = pos.getKind()
       )
     }
 
     pragma[nomagic]
-    predicate revFlowInToReturnIsReturned(
+    private predicate revFlowThroughArg(
       DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnCtx returnCtx, ApOption returnAp,
       Ap ap, Configuration config
     ) {
-      exists(ReturnKindExt returnKind0, Ap returnAp0 |
-        revFlowInToReturn(call, arg, state, returnKind0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
+      exists(ParamNodeEx p, ReturnPosition pos, Ap innerReturnAp |
+        revFlowThrough(call, returnCtx, p, state, pos, returnAp, ap, innerReturnAp, config) and
+        flowThroughIntoCall(call, arg, p, _, ap, innerReturnAp, config)
       )
     }
 
@@ -1954,7 +1929,7 @@ private module MkStage<StageSig PrevStage> {
     predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
       exists(ArgNodeEx arg, FlowState state, ReturnCtx returnCtx, ApOption returnAp, Ap ap |
         revFlow(arg, state, returnCtx, returnAp, ap, config) and
-        revFlowInToReturnIsReturned(call, arg, state, returnCtx, returnAp, ap, config)
+        revFlowThroughArg(call, arg, state, returnCtx, returnAp, ap, config)
       )
     }
 
@@ -1967,8 +1942,9 @@ private module MkStage<StageSig PrevStage> {
       conscand = count(TypedContent f0, Ap ap | fwdConsCand(f0, ap, config)) and
       states = count(FlowState state | fwdFlow(_, state, _, _, _, _, config)) and
       tuples =
-        count(NodeEx n, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-          Ap ap | fwdFlow(n, state, cc, summaryCtx, argAp, ap, config))
+        count(NodeEx n, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap |
+          fwdFlow(n, state, cc, summaryCtx, argAp, ap, config)
+        )
       or
       fwd = false and
       nodes = count(NodeEx node | revFlow(node, _, _, _, _, config)) and
@@ -2823,13 +2799,12 @@ private Configuration unbindConf(Configuration conf) {
 
 pragma[nomagic]
 private predicate nodeMayUseSummary0(
-  NodeEx n, DataFlowCallable c, ParameterPosition pos, FlowState state, AccessPathApprox apa,
-  Configuration config
+  NodeEx n, ParamNodeEx p, FlowState state, AccessPathApprox apa, Configuration config
 ) {
   exists(AccessPathApprox apa0 |
-    c = n.getEnclosingCallable() and
+    Stage5::parameterMayFlowThrough(p, _, _) and
     Stage5::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
-    Stage5::fwdFlow(n, state, any(CallContextCall ccc), TParameterPositionSome(pos),
+    Stage5::fwdFlow(n, state, any(CallContextCall ccc), TParamNodeSome(p.asNode()),
       TAccessPathApproxSome(apa), apa0, config)
   )
 }
@@ -2838,10 +2813,9 @@ pragma[nomagic]
 private predicate nodeMayUseSummary(
   NodeEx n, FlowState state, AccessPathApprox apa, Configuration config
 ) {
-  exists(DataFlowCallable c, ParameterPosition pos, ParamNodeEx p |
+  exists(ParamNodeEx p |
     Stage5::parameterMayFlowThrough(p, apa, config) and
-    nodeMayUseSummary0(n, c, pos, state, apa, config) and
-    p.isParameterOf(c, pos)
+    nodeMayUseSummary0(n, p, state, apa, config)
   )
 }
 
diff --git a/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImplCommon.qll b/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImplCommon.qll
index c66aefced8d..9aa6a529a5b 100644
--- a/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImplCommon.qll
+++ b/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImplCommon.qll
@@ -916,15 +916,15 @@ private module Cached {
     TDataFlowCallSome(DataFlowCall call)
 
   cached
-  newtype TParameterPositionOption =
-    TParameterPositionNone() or
-    TParameterPositionSome(ParameterPosition pos)
+  newtype TParamNodeOption =
+    TParamNodeNone() or
+    TParamNodeSome(ParamNode p)
 
   cached
   newtype TReturnCtx =
     TReturnCtxNone() or
     TReturnCtxNoFlowThrough() or
-    TReturnCtxMaybeFlowThrough(ReturnKindExt kind)
+    TReturnCtxMaybeFlowThrough(ReturnPosition pos)
 
   cached
   newtype TTypedContentApprox =
@@ -1343,15 +1343,15 @@ class DataFlowCallOption extends TDataFlowCallOption {
   }
 }
 
-/** An optional `ParameterPosition`. */
-class ParameterPositionOption extends TParameterPositionOption {
+/** An optional `ParamNode`. */
+class ParamNodeOption extends TParamNodeOption {
   string toString() {
-    this = TParameterPositionNone() and
+    this = TParamNodeNone() and
     result = "(none)"
     or
-    exists(ParameterPosition pos |
-      this = TParameterPositionSome(pos) and
-      result = pos.toString()
+    exists(ParamNode p |
+      this = TParamNodeSome(p) and
+      result = p.toString()
     )
   }
 }
@@ -1363,7 +1363,7 @@ class ParameterPositionOption extends TParameterPositionOption {
  *
  * - `TReturnCtxNone()`: no return flow.
  * - `TReturnCtxNoFlowThrough()`: return flow, but flow through is not possible.
- * - `TReturnCtxMaybeFlowThrough(ReturnKindExt kind)`: return flow, of kind `kind`, and
+ * - `TReturnCtxMaybeFlowThrough(ReturnPosition pos)`: return flow, of kind `pos`, and
  *    flow through may be possible.
  */
 class ReturnCtx extends TReturnCtx {
@@ -1374,9 +1374,9 @@ class ReturnCtx extends TReturnCtx {
     this = TReturnCtxNoFlowThrough() and
     result = "(no flow through)"
     or
-    exists(ReturnKindExt kind |
-      this = TReturnCtxMaybeFlowThrough(kind) and
-      result = kind.toString()
+    exists(ReturnPosition pos |
+      this = TReturnCtxMaybeFlowThrough(pos) and
+      result = pos.toString()
     )
   }
 }
diff --git a/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImplLocal.qll b/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImplLocal.qll
index 6741ccc2f06..23d11a38842 100644
--- a/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImplLocal.qll
+++ b/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImplLocal.qll
@@ -1327,8 +1327,8 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     additional predicate fwdFlow(
-      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      Ap ap, ApApprox apa, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      ApApprox apa, Configuration config
     ) {
       fwdFlow0(node, state, cc, summaryCtx, argAp, ap, apa, config) and
       PrevStage::revFlow(node, state, apa, config) and
@@ -1337,21 +1337,21 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[inline]
     additional predicate fwdFlow(
-      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      Ap ap, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      Configuration config
     ) {
       fwdFlow(node, state, cc, summaryCtx, argAp, ap, _, config)
     }
 
     pragma[nomagic]
     private predicate fwdFlow0(
-      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      Ap ap, ApApprox apa, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      ApApprox apa, Configuration config
     ) {
       sourceNode(node, state, config) and
       (if hasSourceCallCtx(config) then cc = ccSomeCall() else cc = ccNone()) and
       argAp = apNone() and
-      summaryCtx = TParameterPositionNone() and
+      summaryCtx = TParamNodeNone() and
       ap = getApNil(node) and
       apa = getApprox(ap)
       or
@@ -1372,7 +1372,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, apa, pragma[only_bind_into](config)) and
         jumpStep(mid, node, config) and
         cc = ccNone() and
-        summaryCtx = TParameterPositionNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone()
       )
       or
@@ -1380,7 +1380,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, state, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStep(mid, node, config) and
         cc = ccNone() and
-        summaryCtx = TParameterPositionNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone() and
         ap = getApNil(node) and
         apa = getApprox(ap)
@@ -1390,7 +1390,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, state0, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStateStep(mid, state0, node, state, config) and
         cc = ccNone() and
-        summaryCtx = TParameterPositionNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone() and
         ap = getApNil(node) and
         apa = getApprox(ap)
@@ -1414,10 +1414,10 @@ private module MkStage<StageSig PrevStage> {
       fwdFlowIn(_, node, state, _, cc, _, _, ap, apa, config) and
       if PrevStage::parameterMayFlowThrough(node, apa, config)
       then (
-        summaryCtx = TParameterPositionSome(node.(ParamNodeEx).getPosition()) and
+        summaryCtx = TParamNodeSome(node.asNode()) and
         argAp = apSome(ap)
       ) else (
-        summaryCtx = TParameterPositionNone() and argAp = apNone()
+        summaryCtx = TParamNodeNone() and argAp = apNone()
       )
       or
       // flow out of a callable
@@ -1433,16 +1433,19 @@ private module MkStage<StageSig PrevStage> {
       )
       or
       // flow through a callable
-      exists(DataFlowCall call, ParameterPosition summaryCtx0, Ap argAp0 |
-        fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, apa, config) and
-        fwdFlowIsEntered(call, cc, summaryCtx, argAp, summaryCtx0, argAp0, config)
+      exists(
+        DataFlowCall call, CcCall ccc, RetNodeEx ret, boolean allowsFieldFlow, ApApprox innerArgApa
+      |
+        fwdFlowThrough(call, cc, state, ccc, summaryCtx, argAp, ap, apa, ret, innerArgApa, config) and
+        flowThroughOutOfCall(call, ccc, ret, node, allowsFieldFlow, innerArgApa, apa, config) and
+        if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
     pragma[nomagic]
     private predicate fwdFlowStore(
       NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc,
-      ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
+      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
     ) {
       exists(DataFlowType contentType, ApApprox apa1 |
         fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, apa1, config) and
@@ -1473,8 +1476,8 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowRead0(
-      NodeEx node1, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      ApNonNil ap, Configuration config
+      NodeEx node1, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, ApNonNil ap,
+      Configuration config
     ) {
       fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, _, _, config)
@@ -1483,7 +1486,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowRead(
       Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc,
-      ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
+      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
     ) {
       fwdFlowRead0(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, c, node2, config) and
@@ -1493,7 +1496,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowIn(
       DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, CcCall innercc,
-      ParameterPositionOption summaryCtx, ApOption argAp, Ap ap, ApApprox apa, Configuration config
+      ParamNodeOption summaryCtx, ApOption argAp, Ap ap, ApApprox apa, Configuration config
     ) {
       exists(ArgNodeEx arg, boolean allowsFieldFlow |
         fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, apa, config) and
@@ -1505,64 +1508,38 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowRetFromArg(
-      RetNodeEx ret, FlowState state, CcCall ccc, ParameterPosition summaryCtx, ParamNodeEx p,
-      Ap argAp, ApApprox argApa, Ap ap, ApApprox apa, Configuration config
+      RetNodeEx ret, FlowState state, CcCall ccc, ParamNodeEx summaryCtx, Ap argAp, ApApprox argApa,
+      Ap ap, ApApprox apa, Configuration config
     ) {
-      exists(DataFlowCallable c, ReturnKindExt kind |
+      exists(ReturnKindExt kind |
         fwdFlow(pragma[only_bind_into](ret), state, ccc,
-          TParameterPositionSome(pragma[only_bind_into](summaryCtx)), apSome(argAp), ap, apa, config) and
-        getApprox(argAp) = argApa and
-        c = ret.getEnclosingCallable() and
+          TParamNodeSome(pragma[only_bind_into](summaryCtx.asNode())),
+          pragma[only_bind_into](apSome(argAp)), ap, pragma[only_bind_into](apa),
+          pragma[only_bind_into](config)) and
         kind = ret.getKind() and
-        p.isParameterOf(c, pragma[only_bind_into](summaryCtx)) and
-        parameterFlowThroughAllowed(p, kind)
+        parameterFlowThroughAllowed(summaryCtx, kind) and
+        argApa = getApprox(argAp) and
+        PrevStage::returnMayFlowThrough(ret, argApa, apa, kind, pragma[only_bind_into](config))
       )
     }
 
     pragma[inline]
-    private predicate fwdFlowInMayFlowThrough(
-      DataFlowCall call, Cc cc, CcCall innerCc, ParameterPositionOption summaryCtx, ApOption argAp,
-      ParamNodeEx param, Ap ap, ApApprox apa, Configuration config
+    private predicate fwdFlowThrough0(
+      DataFlowCall call, Cc cc, FlowState state, CcCall ccc, ParamNodeOption summaryCtx,
+      ApOption argAp, Ap ap, ApApprox apa, RetNodeEx ret, ParamNodeEx innerSummaryCtx,
+      Ap innerArgAp, ApApprox innerArgApa, Configuration config
     ) {
-      fwdFlowIn(call, pragma[only_bind_into](param), _, cc, innerCc, summaryCtx, argAp, ap,
-        pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
-      PrevStage::parameterMayFlowThrough(param, apa, config)
-    }
-
-    // dedup before joining with `flowThroughOutOfCall`
-    pragma[nomagic]
-    private predicate fwdFlowInMayFlowThroughProj(
-      DataFlowCall call, CcCall innerCc, ApApprox apa, Configuration config
-    ) {
-      fwdFlowInMayFlowThrough(call, _, innerCc, _, _, _, _, apa, config)
-    }
-
-    /**
-     * Same as `flowThroughOutOfCall`, but restricted to calls that are reached
-     * in the flow covered by `fwdFlow`, where data might flow through the target
-     * callable and back out at `call`.
-     */
-    pragma[nomagic]
-    private predicate fwdFlowThroughOutOfCall(
-      DataFlowCall call, CcCall ccc, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow,
-      ApApprox argApa, ApApprox apa, Configuration config
-    ) {
-      fwdFlowInMayFlowThroughProj(call, ccc, argApa, config) and
-      flowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, argApa, apa, config)
+      fwdFlowRetFromArg(ret, state, ccc, innerSummaryCtx, innerArgAp, innerArgApa, ap, apa, config) and
+      fwdFlowIsEntered(call, cc, ccc, summaryCtx, argAp, innerSummaryCtx, innerArgAp, config)
     }
 
     pragma[nomagic]
-    private predicate fwdFlowOutFromArg(
-      DataFlowCall call, NodeEx out, FlowState state, ParameterPosition summaryCtx, Ap argAp, Ap ap,
-      ApApprox apa, Configuration config
+    private predicate fwdFlowThrough(
+      DataFlowCall call, Cc cc, FlowState state, CcCall ccc, ParamNodeOption summaryCtx,
+      ApOption argAp, Ap ap, ApApprox apa, RetNodeEx ret, ApApprox innerArgApa, Configuration config
     ) {
-      exists(RetNodeEx ret, boolean allowsFieldFlow, CcCall ccc, ApApprox argApa |
-        fwdFlowRetFromArg(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc),
-          summaryCtx, _, argAp, pragma[only_bind_into](argApa), ap, pragma[only_bind_into](apa),
-          config) and
-        fwdFlowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, argApa, apa, config) and
-        (if allowsFieldFlow = false then ap instanceof ApNil else any())
-      )
+      fwdFlowThrough0(call, cc, state, ccc, summaryCtx, argAp, ap, apa, ret, _, _, innerArgApa,
+        config)
     }
 
     /**
@@ -1571,12 +1548,14 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate fwdFlowIsEntered(
-      DataFlowCall call, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      ParameterPosition pos, Ap ap, Configuration config
+      DataFlowCall call, Cc cc, CcCall innerCc, ParamNodeOption summaryCtx, ApOption argAp,
+      ParamNodeEx p, Ap ap, Configuration config
     ) {
-      exists(ParamNodeEx param |
-        fwdFlowInMayFlowThrough(call, cc, _, summaryCtx, argAp, param, ap, _, config) and
-        pos = param.getPosition()
+      exists(ApApprox apa |
+        fwdFlowIn(call, pragma[only_bind_into](p), _, cc, innerCc, summaryCtx, argAp, ap,
+          pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
+        PrevStage::parameterMayFlowThrough(p, apa, config) and
+        PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config))
       )
     }
 
@@ -1596,23 +1575,31 @@ private module MkStage<StageSig PrevStage> {
       fwdFlowConsCand(ap1, c, ap2, config)
     }
 
+    pragma[nomagic]
+    private predicate returnFlowsThrough0(
+      DataFlowCall call, FlowState state, CcCall ccc, Ap ap, ApApprox apa, RetNodeEx ret,
+      ParamNodeEx innerSummaryCtx, Ap innerArgAp, ApApprox innerArgApa, Configuration config
+    ) {
+      fwdFlowThrough0(call, _, state, ccc, _, _, ap, apa, ret, innerSummaryCtx, innerArgAp,
+        innerArgApa, config)
+    }
+
     pragma[nomagic]
     private predicate returnFlowsThrough(
-      RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, ParamNodeEx p, Ap argAp,
+      RetNodeEx ret, ReturnPosition pos, FlowState state, CcCall ccc, ParamNodeEx p, Ap argAp,
       Ap ap, Configuration config
     ) {
-      exists(boolean allowsFieldFlow, ApApprox argApa, ApApprox apa |
-        fwdFlowRetFromArg(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc), _, p,
-          argAp, pragma[only_bind_into](argApa), ap, pragma[only_bind_into](apa), config) and
-        kind = ret.getKind() and
-        fwdFlowThroughOutOfCall(_, ccc, ret, _, allowsFieldFlow, argApa, apa, config) and
-        (if allowsFieldFlow = false then ap instanceof ApNil else any())
+      exists(DataFlowCall call, ApApprox apa, boolean allowsFieldFlow, ApApprox innerArgApa |
+        returnFlowsThrough0(call, state, ccc, ap, apa, ret, p, argAp, innerArgApa, config) and
+        flowThroughOutOfCall(call, ccc, ret, _, allowsFieldFlow, innerArgApa, apa, config) and
+        pos = ret.getReturnPosition() and
+        if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
     pragma[nomagic]
     private predicate flowThroughIntoCall(
-      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp,
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp, Ap ap,
       Configuration config
     ) {
       exists(ApApprox argApa |
@@ -1620,7 +1607,7 @@ private module MkStage<StageSig PrevStage> {
           allowsFieldFlow, argApa, pragma[only_bind_into](config)) and
         fwdFlow(arg, _, _, _, _, pragma[only_bind_into](argAp), argApa,
           pragma[only_bind_into](config)) and
-        returnFlowsThrough(_, _, _, _, p, pragma[only_bind_into](argAp), _,
+        returnFlowsThrough(_, _, _, _, p, pragma[only_bind_into](argAp), ap,
           pragma[only_bind_into](config)) and
         if allowsFieldFlow = false then argAp instanceof ApNil else any()
       )
@@ -1639,12 +1626,13 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate flowOutOfCallAp(
-      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
+      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
       Ap ap, Configuration config
     ) {
       exists(ApApprox apa |
-        flowOutOfCallApa(call, ret, kind, out, allowsFieldFlow, apa, config) and
-        fwdFlow(ret, _, _, _, _, ap, apa, config)
+        flowOutOfCallApa(call, ret, _, out, allowsFieldFlow, apa, config) and
+        fwdFlow(ret, _, _, _, _, ap, apa, config) and
+        pos = ret.getReturnPosition()
       )
     }
 
@@ -1739,17 +1727,17 @@ private module MkStage<StageSig PrevStage> {
       )
       or
       // flow through a callable
-      exists(DataFlowCall call, ReturnKindExt returnKind0, Ap returnAp0 |
-        revFlowInToReturn(call, node, state, returnKind0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
+      exists(DataFlowCall call, ParamNodeEx p, ReturnPosition pos, Ap innerReturnAp |
+        revFlowThrough(call, returnCtx, p, state, pos, returnAp, ap, innerReturnAp, config) and
+        flowThroughIntoCall(call, node, p, _, ap, innerReturnAp, config)
       )
       or
       // flow out of a callable
-      exists(ReturnKindExt kind |
-        revFlowOut(_, node, kind, state, _, _, ap, config) and
-        if returnFlowsThrough(node, kind, state, _, _, _, ap, config)
+      exists(ReturnPosition pos |
+        revFlowOut(_, node, pos, state, _, _, ap, config) and
+        if returnFlowsThrough(node, pos, state, _, _, _, ap, config)
         then (
-          returnCtx = TReturnCtxMaybeFlowThrough(kind) and
+          returnCtx = TReturnCtxMaybeFlowThrough(pos) and
           returnAp = apSome(ap)
         ) else (
           returnCtx = TReturnCtxNoFlowThrough() and returnAp = apNone()
@@ -1782,47 +1770,33 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate revFlowOut(
-      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, FlowState state, ReturnCtx returnCtx,
+      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, FlowState state, ReturnCtx returnCtx,
       ApOption returnAp, Ap ap, Configuration config
     ) {
       exists(NodeEx out, boolean allowsFieldFlow |
         revFlow(out, state, returnCtx, returnAp, ap, config) and
-        flowOutOfCallAp(call, ret, kind, out, allowsFieldFlow, ap, config) and
+        flowOutOfCallAp(call, ret, pos, out, allowsFieldFlow, ap, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
-    /**
-     * Same as `flowThroughIntoCall`, but restricted to calls that are reached
-     * in the flow covered by `revFlow`, where data might flow through the target
-     * callable and back out at `call`.
-     */
-    pragma[nomagic]
-    private predicate revFlowThroughIntoCall(
-      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp,
-      Configuration config
-    ) {
-      flowThroughIntoCall(call, arg, p, allowsFieldFlow, argAp, config) and
-      revFlowIsReturned(call, _, _, _, _, config)
-    }
-
     pragma[nomagic]
     private predicate revFlowParamToReturn(
-      ParamNodeEx p, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap, Configuration config
+      ParamNodeEx p, FlowState state, ReturnPosition pos, Ap returnAp, Ap ap, Configuration config
     ) {
-      revFlow(p, state, TReturnCtxMaybeFlowThrough(kind), apSome(returnAp), ap, config) and
-      parameterFlowThroughAllowed(p, kind)
+      revFlow(pragma[only_bind_into](p), state, TReturnCtxMaybeFlowThrough(pos), apSome(returnAp),
+        pragma[only_bind_into](ap), pragma[only_bind_into](config)) and
+      parameterFlowThroughAllowed(p, pos.getKind()) and
+      PrevStage::parameterMayFlowThrough(p, getApprox(ap), config)
     }
 
     pragma[nomagic]
-    private predicate revFlowInToReturn(
-      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap,
-      Configuration config
+    private predicate revFlowThrough(
+      DataFlowCall call, ReturnCtx returnCtx, ParamNodeEx p, FlowState state, ReturnPosition pos,
+      ApOption returnAp, Ap ap, Ap innerReturnAp, Configuration config
     ) {
-      exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlowParamToReturn(p, state, kind, returnAp, ap, config) and
-        revFlowThroughIntoCall(call, arg, p, allowsFieldFlow, ap, config)
-      )
+      revFlowParamToReturn(p, state, pos, innerReturnAp, ap, config) and
+      revFlowIsReturned(call, returnCtx, returnAp, pos, innerReturnAp, config)
     }
 
     /**
@@ -1832,12 +1806,12 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate revFlowIsReturned(
-      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnKindExt kind, Ap ap,
+      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnPosition pos, Ap ap,
       Configuration config
     ) {
       exists(RetNodeEx ret, FlowState state, CcCall ccc |
-        revFlowOut(call, ret, kind, state, returnCtx, returnAp, ap, config) and
-        returnFlowsThrough(ret, kind, state, ccc, _, _, ap, config) and
+        revFlowOut(call, ret, pos, state, returnCtx, returnAp, ap, config) and
+        returnFlowsThrough(ret, pos, state, ccc, _, _, ap, config) and
         matchesCall(ccc, call)
       )
     }
@@ -1915,17 +1889,17 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate parameterFlowsThroughRev(
-      ParamNodeEx p, Ap ap, ReturnKindExt kind, Ap returnAp, Configuration config
+      ParamNodeEx p, Ap ap, ReturnPosition pos, Ap returnAp, Configuration config
     ) {
-      revFlow(p, _, TReturnCtxMaybeFlowThrough(kind), apSome(returnAp), ap, config) and
-      parameterFlowThroughAllowed(p, kind)
+      revFlow(p, _, TReturnCtxMaybeFlowThrough(pos), apSome(returnAp), ap, config) and
+      parameterFlowThroughAllowed(p, pos.getKind())
     }
 
     pragma[nomagic]
     predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
-      exists(RetNodeEx ret, ReturnKindExt kind |
-        returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
-        parameterFlowsThroughRev(p, ap, kind, _, config)
+      exists(RetNodeEx ret, ReturnPosition pos |
+        returnFlowsThrough(ret, pos, _, _, p, ap, _, config) and
+        parameterFlowsThroughRev(p, ap, pos, _, config)
       )
     }
 
@@ -1933,20 +1907,21 @@ private module MkStage<StageSig PrevStage> {
     predicate returnMayFlowThrough(
       RetNodeEx ret, Ap argAp, Ap ap, ReturnKindExt kind, Configuration config
     ) {
-      exists(ParamNodeEx p |
-        returnFlowsThrough(ret, kind, _, _, p, argAp, ap, config) and
-        parameterFlowsThroughRev(p, argAp, kind, ap, config)
+      exists(ParamNodeEx p, ReturnPosition pos |
+        returnFlowsThrough(ret, pos, _, _, p, argAp, ap, config) and
+        parameterFlowsThroughRev(p, argAp, pos, ap, config) and
+        kind = pos.getKind()
       )
     }
 
     pragma[nomagic]
-    predicate revFlowInToReturnIsReturned(
+    private predicate revFlowThroughArg(
       DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnCtx returnCtx, ApOption returnAp,
       Ap ap, Configuration config
     ) {
-      exists(ReturnKindExt returnKind0, Ap returnAp0 |
-        revFlowInToReturn(call, arg, state, returnKind0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
+      exists(ParamNodeEx p, ReturnPosition pos, Ap innerReturnAp |
+        revFlowThrough(call, returnCtx, p, state, pos, returnAp, ap, innerReturnAp, config) and
+        flowThroughIntoCall(call, arg, p, _, ap, innerReturnAp, config)
       )
     }
 
@@ -1954,7 +1929,7 @@ private module MkStage<StageSig PrevStage> {
     predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
       exists(ArgNodeEx arg, FlowState state, ReturnCtx returnCtx, ApOption returnAp, Ap ap |
         revFlow(arg, state, returnCtx, returnAp, ap, config) and
-        revFlowInToReturnIsReturned(call, arg, state, returnCtx, returnAp, ap, config)
+        revFlowThroughArg(call, arg, state, returnCtx, returnAp, ap, config)
       )
     }
 
@@ -1967,8 +1942,9 @@ private module MkStage<StageSig PrevStage> {
       conscand = count(TypedContent f0, Ap ap | fwdConsCand(f0, ap, config)) and
       states = count(FlowState state | fwdFlow(_, state, _, _, _, _, config)) and
       tuples =
-        count(NodeEx n, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-          Ap ap | fwdFlow(n, state, cc, summaryCtx, argAp, ap, config))
+        count(NodeEx n, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap |
+          fwdFlow(n, state, cc, summaryCtx, argAp, ap, config)
+        )
       or
       fwd = false and
       nodes = count(NodeEx node | revFlow(node, _, _, _, _, config)) and
@@ -2823,13 +2799,12 @@ private Configuration unbindConf(Configuration conf) {
 
 pragma[nomagic]
 private predicate nodeMayUseSummary0(
-  NodeEx n, DataFlowCallable c, ParameterPosition pos, FlowState state, AccessPathApprox apa,
-  Configuration config
+  NodeEx n, ParamNodeEx p, FlowState state, AccessPathApprox apa, Configuration config
 ) {
   exists(AccessPathApprox apa0 |
-    c = n.getEnclosingCallable() and
+    Stage5::parameterMayFlowThrough(p, _, _) and
     Stage5::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
-    Stage5::fwdFlow(n, state, any(CallContextCall ccc), TParameterPositionSome(pos),
+    Stage5::fwdFlow(n, state, any(CallContextCall ccc), TParamNodeSome(p.asNode()),
       TAccessPathApproxSome(apa), apa0, config)
   )
 }
@@ -2838,10 +2813,9 @@ pragma[nomagic]
 private predicate nodeMayUseSummary(
   NodeEx n, FlowState state, AccessPathApprox apa, Configuration config
 ) {
-  exists(DataFlowCallable c, ParameterPosition pos, ParamNodeEx p |
+  exists(ParamNodeEx p |
     Stage5::parameterMayFlowThrough(p, apa, config) and
-    nodeMayUseSummary0(n, c, pos, state, apa, config) and
-    p.isParameterOf(c, pos)
+    nodeMayUseSummary0(n, p, state, apa, config)
   )
 }
 
diff --git a/cpp/ql/lib/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl.qll b/cpp/ql/lib/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl.qll
index 6741ccc2f06..23d11a38842 100644
--- a/cpp/ql/lib/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl.qll
+++ b/cpp/ql/lib/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl.qll
@@ -1327,8 +1327,8 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     additional predicate fwdFlow(
-      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      Ap ap, ApApprox apa, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      ApApprox apa, Configuration config
     ) {
       fwdFlow0(node, state, cc, summaryCtx, argAp, ap, apa, config) and
       PrevStage::revFlow(node, state, apa, config) and
@@ -1337,21 +1337,21 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[inline]
     additional predicate fwdFlow(
-      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      Ap ap, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      Configuration config
     ) {
       fwdFlow(node, state, cc, summaryCtx, argAp, ap, _, config)
     }
 
     pragma[nomagic]
     private predicate fwdFlow0(
-      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      Ap ap, ApApprox apa, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      ApApprox apa, Configuration config
     ) {
       sourceNode(node, state, config) and
       (if hasSourceCallCtx(config) then cc = ccSomeCall() else cc = ccNone()) and
       argAp = apNone() and
-      summaryCtx = TParameterPositionNone() and
+      summaryCtx = TParamNodeNone() and
       ap = getApNil(node) and
       apa = getApprox(ap)
       or
@@ -1372,7 +1372,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, apa, pragma[only_bind_into](config)) and
         jumpStep(mid, node, config) and
         cc = ccNone() and
-        summaryCtx = TParameterPositionNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone()
       )
       or
@@ -1380,7 +1380,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, state, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStep(mid, node, config) and
         cc = ccNone() and
-        summaryCtx = TParameterPositionNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone() and
         ap = getApNil(node) and
         apa = getApprox(ap)
@@ -1390,7 +1390,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, state0, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStateStep(mid, state0, node, state, config) and
         cc = ccNone() and
-        summaryCtx = TParameterPositionNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone() and
         ap = getApNil(node) and
         apa = getApprox(ap)
@@ -1414,10 +1414,10 @@ private module MkStage<StageSig PrevStage> {
       fwdFlowIn(_, node, state, _, cc, _, _, ap, apa, config) and
       if PrevStage::parameterMayFlowThrough(node, apa, config)
       then (
-        summaryCtx = TParameterPositionSome(node.(ParamNodeEx).getPosition()) and
+        summaryCtx = TParamNodeSome(node.asNode()) and
         argAp = apSome(ap)
       ) else (
-        summaryCtx = TParameterPositionNone() and argAp = apNone()
+        summaryCtx = TParamNodeNone() and argAp = apNone()
       )
       or
       // flow out of a callable
@@ -1433,16 +1433,19 @@ private module MkStage<StageSig PrevStage> {
       )
       or
       // flow through a callable
-      exists(DataFlowCall call, ParameterPosition summaryCtx0, Ap argAp0 |
-        fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, apa, config) and
-        fwdFlowIsEntered(call, cc, summaryCtx, argAp, summaryCtx0, argAp0, config)
+      exists(
+        DataFlowCall call, CcCall ccc, RetNodeEx ret, boolean allowsFieldFlow, ApApprox innerArgApa
+      |
+        fwdFlowThrough(call, cc, state, ccc, summaryCtx, argAp, ap, apa, ret, innerArgApa, config) and
+        flowThroughOutOfCall(call, ccc, ret, node, allowsFieldFlow, innerArgApa, apa, config) and
+        if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
     pragma[nomagic]
     private predicate fwdFlowStore(
       NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc,
-      ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
+      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
     ) {
       exists(DataFlowType contentType, ApApprox apa1 |
         fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, apa1, config) and
@@ -1473,8 +1476,8 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowRead0(
-      NodeEx node1, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      ApNonNil ap, Configuration config
+      NodeEx node1, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, ApNonNil ap,
+      Configuration config
     ) {
       fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, _, _, config)
@@ -1483,7 +1486,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowRead(
       Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc,
-      ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
+      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
     ) {
       fwdFlowRead0(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, c, node2, config) and
@@ -1493,7 +1496,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowIn(
       DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, CcCall innercc,
-      ParameterPositionOption summaryCtx, ApOption argAp, Ap ap, ApApprox apa, Configuration config
+      ParamNodeOption summaryCtx, ApOption argAp, Ap ap, ApApprox apa, Configuration config
     ) {
       exists(ArgNodeEx arg, boolean allowsFieldFlow |
         fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, apa, config) and
@@ -1505,64 +1508,38 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowRetFromArg(
-      RetNodeEx ret, FlowState state, CcCall ccc, ParameterPosition summaryCtx, ParamNodeEx p,
-      Ap argAp, ApApprox argApa, Ap ap, ApApprox apa, Configuration config
+      RetNodeEx ret, FlowState state, CcCall ccc, ParamNodeEx summaryCtx, Ap argAp, ApApprox argApa,
+      Ap ap, ApApprox apa, Configuration config
     ) {
-      exists(DataFlowCallable c, ReturnKindExt kind |
+      exists(ReturnKindExt kind |
         fwdFlow(pragma[only_bind_into](ret), state, ccc,
-          TParameterPositionSome(pragma[only_bind_into](summaryCtx)), apSome(argAp), ap, apa, config) and
-        getApprox(argAp) = argApa and
-        c = ret.getEnclosingCallable() and
+          TParamNodeSome(pragma[only_bind_into](summaryCtx.asNode())),
+          pragma[only_bind_into](apSome(argAp)), ap, pragma[only_bind_into](apa),
+          pragma[only_bind_into](config)) and
         kind = ret.getKind() and
-        p.isParameterOf(c, pragma[only_bind_into](summaryCtx)) and
-        parameterFlowThroughAllowed(p, kind)
+        parameterFlowThroughAllowed(summaryCtx, kind) and
+        argApa = getApprox(argAp) and
+        PrevStage::returnMayFlowThrough(ret, argApa, apa, kind, pragma[only_bind_into](config))
       )
     }
 
     pragma[inline]
-    private predicate fwdFlowInMayFlowThrough(
-      DataFlowCall call, Cc cc, CcCall innerCc, ParameterPositionOption summaryCtx, ApOption argAp,
-      ParamNodeEx param, Ap ap, ApApprox apa, Configuration config
+    private predicate fwdFlowThrough0(
+      DataFlowCall call, Cc cc, FlowState state, CcCall ccc, ParamNodeOption summaryCtx,
+      ApOption argAp, Ap ap, ApApprox apa, RetNodeEx ret, ParamNodeEx innerSummaryCtx,
+      Ap innerArgAp, ApApprox innerArgApa, Configuration config
     ) {
-      fwdFlowIn(call, pragma[only_bind_into](param), _, cc, innerCc, summaryCtx, argAp, ap,
-        pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
-      PrevStage::parameterMayFlowThrough(param, apa, config)
-    }
-
-    // dedup before joining with `flowThroughOutOfCall`
-    pragma[nomagic]
-    private predicate fwdFlowInMayFlowThroughProj(
-      DataFlowCall call, CcCall innerCc, ApApprox apa, Configuration config
-    ) {
-      fwdFlowInMayFlowThrough(call, _, innerCc, _, _, _, _, apa, config)
-    }
-
-    /**
-     * Same as `flowThroughOutOfCall`, but restricted to calls that are reached
-     * in the flow covered by `fwdFlow`, where data might flow through the target
-     * callable and back out at `call`.
-     */
-    pragma[nomagic]
-    private predicate fwdFlowThroughOutOfCall(
-      DataFlowCall call, CcCall ccc, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow,
-      ApApprox argApa, ApApprox apa, Configuration config
-    ) {
-      fwdFlowInMayFlowThroughProj(call, ccc, argApa, config) and
-      flowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, argApa, apa, config)
+      fwdFlowRetFromArg(ret, state, ccc, innerSummaryCtx, innerArgAp, innerArgApa, ap, apa, config) and
+      fwdFlowIsEntered(call, cc, ccc, summaryCtx, argAp, innerSummaryCtx, innerArgAp, config)
     }
 
     pragma[nomagic]
-    private predicate fwdFlowOutFromArg(
-      DataFlowCall call, NodeEx out, FlowState state, ParameterPosition summaryCtx, Ap argAp, Ap ap,
-      ApApprox apa, Configuration config
+    private predicate fwdFlowThrough(
+      DataFlowCall call, Cc cc, FlowState state, CcCall ccc, ParamNodeOption summaryCtx,
+      ApOption argAp, Ap ap, ApApprox apa, RetNodeEx ret, ApApprox innerArgApa, Configuration config
     ) {
-      exists(RetNodeEx ret, boolean allowsFieldFlow, CcCall ccc, ApApprox argApa |
-        fwdFlowRetFromArg(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc),
-          summaryCtx, _, argAp, pragma[only_bind_into](argApa), ap, pragma[only_bind_into](apa),
-          config) and
-        fwdFlowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, argApa, apa, config) and
-        (if allowsFieldFlow = false then ap instanceof ApNil else any())
-      )
+      fwdFlowThrough0(call, cc, state, ccc, summaryCtx, argAp, ap, apa, ret, _, _, innerArgApa,
+        config)
     }
 
     /**
@@ -1571,12 +1548,14 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate fwdFlowIsEntered(
-      DataFlowCall call, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      ParameterPosition pos, Ap ap, Configuration config
+      DataFlowCall call, Cc cc, CcCall innerCc, ParamNodeOption summaryCtx, ApOption argAp,
+      ParamNodeEx p, Ap ap, Configuration config
     ) {
-      exists(ParamNodeEx param |
-        fwdFlowInMayFlowThrough(call, cc, _, summaryCtx, argAp, param, ap, _, config) and
-        pos = param.getPosition()
+      exists(ApApprox apa |
+        fwdFlowIn(call, pragma[only_bind_into](p), _, cc, innerCc, summaryCtx, argAp, ap,
+          pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
+        PrevStage::parameterMayFlowThrough(p, apa, config) and
+        PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config))
       )
     }
 
@@ -1596,23 +1575,31 @@ private module MkStage<StageSig PrevStage> {
       fwdFlowConsCand(ap1, c, ap2, config)
     }
 
+    pragma[nomagic]
+    private predicate returnFlowsThrough0(
+      DataFlowCall call, FlowState state, CcCall ccc, Ap ap, ApApprox apa, RetNodeEx ret,
+      ParamNodeEx innerSummaryCtx, Ap innerArgAp, ApApprox innerArgApa, Configuration config
+    ) {
+      fwdFlowThrough0(call, _, state, ccc, _, _, ap, apa, ret, innerSummaryCtx, innerArgAp,
+        innerArgApa, config)
+    }
+
     pragma[nomagic]
     private predicate returnFlowsThrough(
-      RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, ParamNodeEx p, Ap argAp,
+      RetNodeEx ret, ReturnPosition pos, FlowState state, CcCall ccc, ParamNodeEx p, Ap argAp,
       Ap ap, Configuration config
     ) {
-      exists(boolean allowsFieldFlow, ApApprox argApa, ApApprox apa |
-        fwdFlowRetFromArg(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc), _, p,
-          argAp, pragma[only_bind_into](argApa), ap, pragma[only_bind_into](apa), config) and
-        kind = ret.getKind() and
-        fwdFlowThroughOutOfCall(_, ccc, ret, _, allowsFieldFlow, argApa, apa, config) and
-        (if allowsFieldFlow = false then ap instanceof ApNil else any())
+      exists(DataFlowCall call, ApApprox apa, boolean allowsFieldFlow, ApApprox innerArgApa |
+        returnFlowsThrough0(call, state, ccc, ap, apa, ret, p, argAp, innerArgApa, config) and
+        flowThroughOutOfCall(call, ccc, ret, _, allowsFieldFlow, innerArgApa, apa, config) and
+        pos = ret.getReturnPosition() and
+        if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
     pragma[nomagic]
     private predicate flowThroughIntoCall(
-      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp,
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp, Ap ap,
       Configuration config
     ) {
       exists(ApApprox argApa |
@@ -1620,7 +1607,7 @@ private module MkStage<StageSig PrevStage> {
           allowsFieldFlow, argApa, pragma[only_bind_into](config)) and
         fwdFlow(arg, _, _, _, _, pragma[only_bind_into](argAp), argApa,
           pragma[only_bind_into](config)) and
-        returnFlowsThrough(_, _, _, _, p, pragma[only_bind_into](argAp), _,
+        returnFlowsThrough(_, _, _, _, p, pragma[only_bind_into](argAp), ap,
           pragma[only_bind_into](config)) and
         if allowsFieldFlow = false then argAp instanceof ApNil else any()
       )
@@ -1639,12 +1626,13 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate flowOutOfCallAp(
-      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
+      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
       Ap ap, Configuration config
     ) {
       exists(ApApprox apa |
-        flowOutOfCallApa(call, ret, kind, out, allowsFieldFlow, apa, config) and
-        fwdFlow(ret, _, _, _, _, ap, apa, config)
+        flowOutOfCallApa(call, ret, _, out, allowsFieldFlow, apa, config) and
+        fwdFlow(ret, _, _, _, _, ap, apa, config) and
+        pos = ret.getReturnPosition()
       )
     }
 
@@ -1739,17 +1727,17 @@ private module MkStage<StageSig PrevStage> {
       )
       or
       // flow through a callable
-      exists(DataFlowCall call, ReturnKindExt returnKind0, Ap returnAp0 |
-        revFlowInToReturn(call, node, state, returnKind0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
+      exists(DataFlowCall call, ParamNodeEx p, ReturnPosition pos, Ap innerReturnAp |
+        revFlowThrough(call, returnCtx, p, state, pos, returnAp, ap, innerReturnAp, config) and
+        flowThroughIntoCall(call, node, p, _, ap, innerReturnAp, config)
       )
       or
       // flow out of a callable
-      exists(ReturnKindExt kind |
-        revFlowOut(_, node, kind, state, _, _, ap, config) and
-        if returnFlowsThrough(node, kind, state, _, _, _, ap, config)
+      exists(ReturnPosition pos |
+        revFlowOut(_, node, pos, state, _, _, ap, config) and
+        if returnFlowsThrough(node, pos, state, _, _, _, ap, config)
         then (
-          returnCtx = TReturnCtxMaybeFlowThrough(kind) and
+          returnCtx = TReturnCtxMaybeFlowThrough(pos) and
           returnAp = apSome(ap)
         ) else (
           returnCtx = TReturnCtxNoFlowThrough() and returnAp = apNone()
@@ -1782,47 +1770,33 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate revFlowOut(
-      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, FlowState state, ReturnCtx returnCtx,
+      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, FlowState state, ReturnCtx returnCtx,
       ApOption returnAp, Ap ap, Configuration config
     ) {
       exists(NodeEx out, boolean allowsFieldFlow |
         revFlow(out, state, returnCtx, returnAp, ap, config) and
-        flowOutOfCallAp(call, ret, kind, out, allowsFieldFlow, ap, config) and
+        flowOutOfCallAp(call, ret, pos, out, allowsFieldFlow, ap, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
-    /**
-     * Same as `flowThroughIntoCall`, but restricted to calls that are reached
-     * in the flow covered by `revFlow`, where data might flow through the target
-     * callable and back out at `call`.
-     */
-    pragma[nomagic]
-    private predicate revFlowThroughIntoCall(
-      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp,
-      Configuration config
-    ) {
-      flowThroughIntoCall(call, arg, p, allowsFieldFlow, argAp, config) and
-      revFlowIsReturned(call, _, _, _, _, config)
-    }
-
     pragma[nomagic]
     private predicate revFlowParamToReturn(
-      ParamNodeEx p, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap, Configuration config
+      ParamNodeEx p, FlowState state, ReturnPosition pos, Ap returnAp, Ap ap, Configuration config
     ) {
-      revFlow(p, state, TReturnCtxMaybeFlowThrough(kind), apSome(returnAp), ap, config) and
-      parameterFlowThroughAllowed(p, kind)
+      revFlow(pragma[only_bind_into](p), state, TReturnCtxMaybeFlowThrough(pos), apSome(returnAp),
+        pragma[only_bind_into](ap), pragma[only_bind_into](config)) and
+      parameterFlowThroughAllowed(p, pos.getKind()) and
+      PrevStage::parameterMayFlowThrough(p, getApprox(ap), config)
     }
 
     pragma[nomagic]
-    private predicate revFlowInToReturn(
-      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap,
-      Configuration config
+    private predicate revFlowThrough(
+      DataFlowCall call, ReturnCtx returnCtx, ParamNodeEx p, FlowState state, ReturnPosition pos,
+      ApOption returnAp, Ap ap, Ap innerReturnAp, Configuration config
     ) {
-      exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlowParamToReturn(p, state, kind, returnAp, ap, config) and
-        revFlowThroughIntoCall(call, arg, p, allowsFieldFlow, ap, config)
-      )
+      revFlowParamToReturn(p, state, pos, innerReturnAp, ap, config) and
+      revFlowIsReturned(call, returnCtx, returnAp, pos, innerReturnAp, config)
     }
 
     /**
@@ -1832,12 +1806,12 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate revFlowIsReturned(
-      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnKindExt kind, Ap ap,
+      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnPosition pos, Ap ap,
       Configuration config
     ) {
       exists(RetNodeEx ret, FlowState state, CcCall ccc |
-        revFlowOut(call, ret, kind, state, returnCtx, returnAp, ap, config) and
-        returnFlowsThrough(ret, kind, state, ccc, _, _, ap, config) and
+        revFlowOut(call, ret, pos, state, returnCtx, returnAp, ap, config) and
+        returnFlowsThrough(ret, pos, state, ccc, _, _, ap, config) and
         matchesCall(ccc, call)
       )
     }
@@ -1915,17 +1889,17 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate parameterFlowsThroughRev(
-      ParamNodeEx p, Ap ap, ReturnKindExt kind, Ap returnAp, Configuration config
+      ParamNodeEx p, Ap ap, ReturnPosition pos, Ap returnAp, Configuration config
     ) {
-      revFlow(p, _, TReturnCtxMaybeFlowThrough(kind), apSome(returnAp), ap, config) and
-      parameterFlowThroughAllowed(p, kind)
+      revFlow(p, _, TReturnCtxMaybeFlowThrough(pos), apSome(returnAp), ap, config) and
+      parameterFlowThroughAllowed(p, pos.getKind())
     }
 
     pragma[nomagic]
     predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
-      exists(RetNodeEx ret, ReturnKindExt kind |
-        returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
-        parameterFlowsThroughRev(p, ap, kind, _, config)
+      exists(RetNodeEx ret, ReturnPosition pos |
+        returnFlowsThrough(ret, pos, _, _, p, ap, _, config) and
+        parameterFlowsThroughRev(p, ap, pos, _, config)
       )
     }
 
@@ -1933,20 +1907,21 @@ private module MkStage<StageSig PrevStage> {
     predicate returnMayFlowThrough(
       RetNodeEx ret, Ap argAp, Ap ap, ReturnKindExt kind, Configuration config
     ) {
-      exists(ParamNodeEx p |
-        returnFlowsThrough(ret, kind, _, _, p, argAp, ap, config) and
-        parameterFlowsThroughRev(p, argAp, kind, ap, config)
+      exists(ParamNodeEx p, ReturnPosition pos |
+        returnFlowsThrough(ret, pos, _, _, p, argAp, ap, config) and
+        parameterFlowsThroughRev(p, argAp, pos, ap, config) and
+        kind = pos.getKind()
       )
     }
 
     pragma[nomagic]
-    predicate revFlowInToReturnIsReturned(
+    private predicate revFlowThroughArg(
       DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnCtx returnCtx, ApOption returnAp,
       Ap ap, Configuration config
     ) {
-      exists(ReturnKindExt returnKind0, Ap returnAp0 |
-        revFlowInToReturn(call, arg, state, returnKind0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
+      exists(ParamNodeEx p, ReturnPosition pos, Ap innerReturnAp |
+        revFlowThrough(call, returnCtx, p, state, pos, returnAp, ap, innerReturnAp, config) and
+        flowThroughIntoCall(call, arg, p, _, ap, innerReturnAp, config)
       )
     }
 
@@ -1954,7 +1929,7 @@ private module MkStage<StageSig PrevStage> {
     predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
       exists(ArgNodeEx arg, FlowState state, ReturnCtx returnCtx, ApOption returnAp, Ap ap |
         revFlow(arg, state, returnCtx, returnAp, ap, config) and
-        revFlowInToReturnIsReturned(call, arg, state, returnCtx, returnAp, ap, config)
+        revFlowThroughArg(call, arg, state, returnCtx, returnAp, ap, config)
       )
     }
 
@@ -1967,8 +1942,9 @@ private module MkStage<StageSig PrevStage> {
       conscand = count(TypedContent f0, Ap ap | fwdConsCand(f0, ap, config)) and
       states = count(FlowState state | fwdFlow(_, state, _, _, _, _, config)) and
       tuples =
-        count(NodeEx n, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-          Ap ap | fwdFlow(n, state, cc, summaryCtx, argAp, ap, config))
+        count(NodeEx n, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap |
+          fwdFlow(n, state, cc, summaryCtx, argAp, ap, config)
+        )
       or
       fwd = false and
       nodes = count(NodeEx node | revFlow(node, _, _, _, _, config)) and
@@ -2823,13 +2799,12 @@ private Configuration unbindConf(Configuration conf) {
 
 pragma[nomagic]
 private predicate nodeMayUseSummary0(
-  NodeEx n, DataFlowCallable c, ParameterPosition pos, FlowState state, AccessPathApprox apa,
-  Configuration config
+  NodeEx n, ParamNodeEx p, FlowState state, AccessPathApprox apa, Configuration config
 ) {
   exists(AccessPathApprox apa0 |
-    c = n.getEnclosingCallable() and
+    Stage5::parameterMayFlowThrough(p, _, _) and
     Stage5::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
-    Stage5::fwdFlow(n, state, any(CallContextCall ccc), TParameterPositionSome(pos),
+    Stage5::fwdFlow(n, state, any(CallContextCall ccc), TParamNodeSome(p.asNode()),
       TAccessPathApproxSome(apa), apa0, config)
   )
 }
@@ -2838,10 +2813,9 @@ pragma[nomagic]
 private predicate nodeMayUseSummary(
   NodeEx n, FlowState state, AccessPathApprox apa, Configuration config
 ) {
-  exists(DataFlowCallable c, ParameterPosition pos, ParamNodeEx p |
+  exists(ParamNodeEx p |
     Stage5::parameterMayFlowThrough(p, apa, config) and
-    nodeMayUseSummary0(n, c, pos, state, apa, config) and
-    p.isParameterOf(c, pos)
+    nodeMayUseSummary0(n, p, state, apa, config)
   )
 }
 
diff --git a/cpp/ql/lib/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl2.qll b/cpp/ql/lib/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl2.qll
index 6741ccc2f06..23d11a38842 100644
--- a/cpp/ql/lib/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl2.qll
+++ b/cpp/ql/lib/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl2.qll
@@ -1327,8 +1327,8 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     additional predicate fwdFlow(
-      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      Ap ap, ApApprox apa, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      ApApprox apa, Configuration config
     ) {
       fwdFlow0(node, state, cc, summaryCtx, argAp, ap, apa, config) and
       PrevStage::revFlow(node, state, apa, config) and
@@ -1337,21 +1337,21 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[inline]
     additional predicate fwdFlow(
-      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      Ap ap, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      Configuration config
     ) {
       fwdFlow(node, state, cc, summaryCtx, argAp, ap, _, config)
     }
 
     pragma[nomagic]
     private predicate fwdFlow0(
-      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      Ap ap, ApApprox apa, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      ApApprox apa, Configuration config
     ) {
       sourceNode(node, state, config) and
       (if hasSourceCallCtx(config) then cc = ccSomeCall() else cc = ccNone()) and
       argAp = apNone() and
-      summaryCtx = TParameterPositionNone() and
+      summaryCtx = TParamNodeNone() and
       ap = getApNil(node) and
       apa = getApprox(ap)
       or
@@ -1372,7 +1372,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, apa, pragma[only_bind_into](config)) and
         jumpStep(mid, node, config) and
         cc = ccNone() and
-        summaryCtx = TParameterPositionNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone()
       )
       or
@@ -1380,7 +1380,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, state, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStep(mid, node, config) and
         cc = ccNone() and
-        summaryCtx = TParameterPositionNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone() and
         ap = getApNil(node) and
         apa = getApprox(ap)
@@ -1390,7 +1390,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, state0, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStateStep(mid, state0, node, state, config) and
         cc = ccNone() and
-        summaryCtx = TParameterPositionNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone() and
         ap = getApNil(node) and
         apa = getApprox(ap)
@@ -1414,10 +1414,10 @@ private module MkStage<StageSig PrevStage> {
       fwdFlowIn(_, node, state, _, cc, _, _, ap, apa, config) and
       if PrevStage::parameterMayFlowThrough(node, apa, config)
       then (
-        summaryCtx = TParameterPositionSome(node.(ParamNodeEx).getPosition()) and
+        summaryCtx = TParamNodeSome(node.asNode()) and
         argAp = apSome(ap)
       ) else (
-        summaryCtx = TParameterPositionNone() and argAp = apNone()
+        summaryCtx = TParamNodeNone() and argAp = apNone()
       )
       or
       // flow out of a callable
@@ -1433,16 +1433,19 @@ private module MkStage<StageSig PrevStage> {
       )
       or
       // flow through a callable
-      exists(DataFlowCall call, ParameterPosition summaryCtx0, Ap argAp0 |
-        fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, apa, config) and
-        fwdFlowIsEntered(call, cc, summaryCtx, argAp, summaryCtx0, argAp0, config)
+      exists(
+        DataFlowCall call, CcCall ccc, RetNodeEx ret, boolean allowsFieldFlow, ApApprox innerArgApa
+      |
+        fwdFlowThrough(call, cc, state, ccc, summaryCtx, argAp, ap, apa, ret, innerArgApa, config) and
+        flowThroughOutOfCall(call, ccc, ret, node, allowsFieldFlow, innerArgApa, apa, config) and
+        if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
     pragma[nomagic]
     private predicate fwdFlowStore(
       NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc,
-      ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
+      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
     ) {
       exists(DataFlowType contentType, ApApprox apa1 |
         fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, apa1, config) and
@@ -1473,8 +1476,8 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowRead0(
-      NodeEx node1, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      ApNonNil ap, Configuration config
+      NodeEx node1, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, ApNonNil ap,
+      Configuration config
     ) {
       fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, _, _, config)
@@ -1483,7 +1486,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowRead(
       Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc,
-      ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
+      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
     ) {
       fwdFlowRead0(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, c, node2, config) and
@@ -1493,7 +1496,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowIn(
       DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, CcCall innercc,
-      ParameterPositionOption summaryCtx, ApOption argAp, Ap ap, ApApprox apa, Configuration config
+      ParamNodeOption summaryCtx, ApOption argAp, Ap ap, ApApprox apa, Configuration config
     ) {
       exists(ArgNodeEx arg, boolean allowsFieldFlow |
         fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, apa, config) and
@@ -1505,64 +1508,38 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowRetFromArg(
-      RetNodeEx ret, FlowState state, CcCall ccc, ParameterPosition summaryCtx, ParamNodeEx p,
-      Ap argAp, ApApprox argApa, Ap ap, ApApprox apa, Configuration config
+      RetNodeEx ret, FlowState state, CcCall ccc, ParamNodeEx summaryCtx, Ap argAp, ApApprox argApa,
+      Ap ap, ApApprox apa, Configuration config
     ) {
-      exists(DataFlowCallable c, ReturnKindExt kind |
+      exists(ReturnKindExt kind |
         fwdFlow(pragma[only_bind_into](ret), state, ccc,
-          TParameterPositionSome(pragma[only_bind_into](summaryCtx)), apSome(argAp), ap, apa, config) and
-        getApprox(argAp) = argApa and
-        c = ret.getEnclosingCallable() and
+          TParamNodeSome(pragma[only_bind_into](summaryCtx.asNode())),
+          pragma[only_bind_into](apSome(argAp)), ap, pragma[only_bind_into](apa),
+          pragma[only_bind_into](config)) and
         kind = ret.getKind() and
-        p.isParameterOf(c, pragma[only_bind_into](summaryCtx)) and
-        parameterFlowThroughAllowed(p, kind)
+        parameterFlowThroughAllowed(summaryCtx, kind) and
+        argApa = getApprox(argAp) and
+        PrevStage::returnMayFlowThrough(ret, argApa, apa, kind, pragma[only_bind_into](config))
       )
     }
 
     pragma[inline]
-    private predicate fwdFlowInMayFlowThrough(
-      DataFlowCall call, Cc cc, CcCall innerCc, ParameterPositionOption summaryCtx, ApOption argAp,
-      ParamNodeEx param, Ap ap, ApApprox apa, Configuration config
+    private predicate fwdFlowThrough0(
+      DataFlowCall call, Cc cc, FlowState state, CcCall ccc, ParamNodeOption summaryCtx,
+      ApOption argAp, Ap ap, ApApprox apa, RetNodeEx ret, ParamNodeEx innerSummaryCtx,
+      Ap innerArgAp, ApApprox innerArgApa, Configuration config
     ) {
-      fwdFlowIn(call, pragma[only_bind_into](param), _, cc, innerCc, summaryCtx, argAp, ap,
-        pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
-      PrevStage::parameterMayFlowThrough(param, apa, config)
-    }
-
-    // dedup before joining with `flowThroughOutOfCall`
-    pragma[nomagic]
-    private predicate fwdFlowInMayFlowThroughProj(
-      DataFlowCall call, CcCall innerCc, ApApprox apa, Configuration config
-    ) {
-      fwdFlowInMayFlowThrough(call, _, innerCc, _, _, _, _, apa, config)
-    }
-
-    /**
-     * Same as `flowThroughOutOfCall`, but restricted to calls that are reached
-     * in the flow covered by `fwdFlow`, where data might flow through the target
-     * callable and back out at `call`.
-     */
-    pragma[nomagic]
-    private predicate fwdFlowThroughOutOfCall(
-      DataFlowCall call, CcCall ccc, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow,
-      ApApprox argApa, ApApprox apa, Configuration config
-    ) {
-      fwdFlowInMayFlowThroughProj(call, ccc, argApa, config) and
-      flowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, argApa, apa, config)
+      fwdFlowRetFromArg(ret, state, ccc, innerSummaryCtx, innerArgAp, innerArgApa, ap, apa, config) and
+      fwdFlowIsEntered(call, cc, ccc, summaryCtx, argAp, innerSummaryCtx, innerArgAp, config)
     }
 
     pragma[nomagic]
-    private predicate fwdFlowOutFromArg(
-      DataFlowCall call, NodeEx out, FlowState state, ParameterPosition summaryCtx, Ap argAp, Ap ap,
-      ApApprox apa, Configuration config
+    private predicate fwdFlowThrough(
+      DataFlowCall call, Cc cc, FlowState state, CcCall ccc, ParamNodeOption summaryCtx,
+      ApOption argAp, Ap ap, ApApprox apa, RetNodeEx ret, ApApprox innerArgApa, Configuration config
     ) {
-      exists(RetNodeEx ret, boolean allowsFieldFlow, CcCall ccc, ApApprox argApa |
-        fwdFlowRetFromArg(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc),
-          summaryCtx, _, argAp, pragma[only_bind_into](argApa), ap, pragma[only_bind_into](apa),
-          config) and
-        fwdFlowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, argApa, apa, config) and
-        (if allowsFieldFlow = false then ap instanceof ApNil else any())
-      )
+      fwdFlowThrough0(call, cc, state, ccc, summaryCtx, argAp, ap, apa, ret, _, _, innerArgApa,
+        config)
     }
 
     /**
@@ -1571,12 +1548,14 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate fwdFlowIsEntered(
-      DataFlowCall call, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      ParameterPosition pos, Ap ap, Configuration config
+      DataFlowCall call, Cc cc, CcCall innerCc, ParamNodeOption summaryCtx, ApOption argAp,
+      ParamNodeEx p, Ap ap, Configuration config
     ) {
-      exists(ParamNodeEx param |
-        fwdFlowInMayFlowThrough(call, cc, _, summaryCtx, argAp, param, ap, _, config) and
-        pos = param.getPosition()
+      exists(ApApprox apa |
+        fwdFlowIn(call, pragma[only_bind_into](p), _, cc, innerCc, summaryCtx, argAp, ap,
+          pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
+        PrevStage::parameterMayFlowThrough(p, apa, config) and
+        PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config))
       )
     }
 
@@ -1596,23 +1575,31 @@ private module MkStage<StageSig PrevStage> {
       fwdFlowConsCand(ap1, c, ap2, config)
     }
 
+    pragma[nomagic]
+    private predicate returnFlowsThrough0(
+      DataFlowCall call, FlowState state, CcCall ccc, Ap ap, ApApprox apa, RetNodeEx ret,
+      ParamNodeEx innerSummaryCtx, Ap innerArgAp, ApApprox innerArgApa, Configuration config
+    ) {
+      fwdFlowThrough0(call, _, state, ccc, _, _, ap, apa, ret, innerSummaryCtx, innerArgAp,
+        innerArgApa, config)
+    }
+
     pragma[nomagic]
     private predicate returnFlowsThrough(
-      RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, ParamNodeEx p, Ap argAp,
+      RetNodeEx ret, ReturnPosition pos, FlowState state, CcCall ccc, ParamNodeEx p, Ap argAp,
       Ap ap, Configuration config
     ) {
-      exists(boolean allowsFieldFlow, ApApprox argApa, ApApprox apa |
-        fwdFlowRetFromArg(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc), _, p,
-          argAp, pragma[only_bind_into](argApa), ap, pragma[only_bind_into](apa), config) and
-        kind = ret.getKind() and
-        fwdFlowThroughOutOfCall(_, ccc, ret, _, allowsFieldFlow, argApa, apa, config) and
-        (if allowsFieldFlow = false then ap instanceof ApNil else any())
+      exists(DataFlowCall call, ApApprox apa, boolean allowsFieldFlow, ApApprox innerArgApa |
+        returnFlowsThrough0(call, state, ccc, ap, apa, ret, p, argAp, innerArgApa, config) and
+        flowThroughOutOfCall(call, ccc, ret, _, allowsFieldFlow, innerArgApa, apa, config) and
+        pos = ret.getReturnPosition() and
+        if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
     pragma[nomagic]
     private predicate flowThroughIntoCall(
-      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp,
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp, Ap ap,
       Configuration config
     ) {
       exists(ApApprox argApa |
@@ -1620,7 +1607,7 @@ private module MkStage<StageSig PrevStage> {
           allowsFieldFlow, argApa, pragma[only_bind_into](config)) and
         fwdFlow(arg, _, _, _, _, pragma[only_bind_into](argAp), argApa,
           pragma[only_bind_into](config)) and
-        returnFlowsThrough(_, _, _, _, p, pragma[only_bind_into](argAp), _,
+        returnFlowsThrough(_, _, _, _, p, pragma[only_bind_into](argAp), ap,
           pragma[only_bind_into](config)) and
         if allowsFieldFlow = false then argAp instanceof ApNil else any()
       )
@@ -1639,12 +1626,13 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate flowOutOfCallAp(
-      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
+      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
       Ap ap, Configuration config
     ) {
       exists(ApApprox apa |
-        flowOutOfCallApa(call, ret, kind, out, allowsFieldFlow, apa, config) and
-        fwdFlow(ret, _, _, _, _, ap, apa, config)
+        flowOutOfCallApa(call, ret, _, out, allowsFieldFlow, apa, config) and
+        fwdFlow(ret, _, _, _, _, ap, apa, config) and
+        pos = ret.getReturnPosition()
       )
     }
 
@@ -1739,17 +1727,17 @@ private module MkStage<StageSig PrevStage> {
       )
       or
       // flow through a callable
-      exists(DataFlowCall call, ReturnKindExt returnKind0, Ap returnAp0 |
-        revFlowInToReturn(call, node, state, returnKind0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
+      exists(DataFlowCall call, ParamNodeEx p, ReturnPosition pos, Ap innerReturnAp |
+        revFlowThrough(call, returnCtx, p, state, pos, returnAp, ap, innerReturnAp, config) and
+        flowThroughIntoCall(call, node, p, _, ap, innerReturnAp, config)
       )
       or
       // flow out of a callable
-      exists(ReturnKindExt kind |
-        revFlowOut(_, node, kind, state, _, _, ap, config) and
-        if returnFlowsThrough(node, kind, state, _, _, _, ap, config)
+      exists(ReturnPosition pos |
+        revFlowOut(_, node, pos, state, _, _, ap, config) and
+        if returnFlowsThrough(node, pos, state, _, _, _, ap, config)
         then (
-          returnCtx = TReturnCtxMaybeFlowThrough(kind) and
+          returnCtx = TReturnCtxMaybeFlowThrough(pos) and
           returnAp = apSome(ap)
         ) else (
           returnCtx = TReturnCtxNoFlowThrough() and returnAp = apNone()
@@ -1782,47 +1770,33 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate revFlowOut(
-      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, FlowState state, ReturnCtx returnCtx,
+      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, FlowState state, ReturnCtx returnCtx,
       ApOption returnAp, Ap ap, Configuration config
     ) {
       exists(NodeEx out, boolean allowsFieldFlow |
         revFlow(out, state, returnCtx, returnAp, ap, config) and
-        flowOutOfCallAp(call, ret, kind, out, allowsFieldFlow, ap, config) and
+        flowOutOfCallAp(call, ret, pos, out, allowsFieldFlow, ap, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
-    /**
-     * Same as `flowThroughIntoCall`, but restricted to calls that are reached
-     * in the flow covered by `revFlow`, where data might flow through the target
-     * callable and back out at `call`.
-     */
-    pragma[nomagic]
-    private predicate revFlowThroughIntoCall(
-      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp,
-      Configuration config
-    ) {
-      flowThroughIntoCall(call, arg, p, allowsFieldFlow, argAp, config) and
-      revFlowIsReturned(call, _, _, _, _, config)
-    }
-
     pragma[nomagic]
     private predicate revFlowParamToReturn(
-      ParamNodeEx p, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap, Configuration config
+      ParamNodeEx p, FlowState state, ReturnPosition pos, Ap returnAp, Ap ap, Configuration config
     ) {
-      revFlow(p, state, TReturnCtxMaybeFlowThrough(kind), apSome(returnAp), ap, config) and
-      parameterFlowThroughAllowed(p, kind)
+      revFlow(pragma[only_bind_into](p), state, TReturnCtxMaybeFlowThrough(pos), apSome(returnAp),
+        pragma[only_bind_into](ap), pragma[only_bind_into](config)) and
+      parameterFlowThroughAllowed(p, pos.getKind()) and
+      PrevStage::parameterMayFlowThrough(p, getApprox(ap), config)
     }
 
     pragma[nomagic]
-    private predicate revFlowInToReturn(
-      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap,
-      Configuration config
+    private predicate revFlowThrough(
+      DataFlowCall call, ReturnCtx returnCtx, ParamNodeEx p, FlowState state, ReturnPosition pos,
+      ApOption returnAp, Ap ap, Ap innerReturnAp, Configuration config
     ) {
-      exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlowParamToReturn(p, state, kind, returnAp, ap, config) and
-        revFlowThroughIntoCall(call, arg, p, allowsFieldFlow, ap, config)
-      )
+      revFlowParamToReturn(p, state, pos, innerReturnAp, ap, config) and
+      revFlowIsReturned(call, returnCtx, returnAp, pos, innerReturnAp, config)
     }
 
     /**
@@ -1832,12 +1806,12 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate revFlowIsReturned(
-      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnKindExt kind, Ap ap,
+      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnPosition pos, Ap ap,
       Configuration config
     ) {
       exists(RetNodeEx ret, FlowState state, CcCall ccc |
-        revFlowOut(call, ret, kind, state, returnCtx, returnAp, ap, config) and
-        returnFlowsThrough(ret, kind, state, ccc, _, _, ap, config) and
+        revFlowOut(call, ret, pos, state, returnCtx, returnAp, ap, config) and
+        returnFlowsThrough(ret, pos, state, ccc, _, _, ap, config) and
         matchesCall(ccc, call)
       )
     }
@@ -1915,17 +1889,17 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate parameterFlowsThroughRev(
-      ParamNodeEx p, Ap ap, ReturnKindExt kind, Ap returnAp, Configuration config
+      ParamNodeEx p, Ap ap, ReturnPosition pos, Ap returnAp, Configuration config
     ) {
-      revFlow(p, _, TReturnCtxMaybeFlowThrough(kind), apSome(returnAp), ap, config) and
-      parameterFlowThroughAllowed(p, kind)
+      revFlow(p, _, TReturnCtxMaybeFlowThrough(pos), apSome(returnAp), ap, config) and
+      parameterFlowThroughAllowed(p, pos.getKind())
     }
 
     pragma[nomagic]
     predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
-      exists(RetNodeEx ret, ReturnKindExt kind |
-        returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
-        parameterFlowsThroughRev(p, ap, kind, _, config)
+      exists(RetNodeEx ret, ReturnPosition pos |
+        returnFlowsThrough(ret, pos, _, _, p, ap, _, config) and
+        parameterFlowsThroughRev(p, ap, pos, _, config)
       )
     }
 
@@ -1933,20 +1907,21 @@ private module MkStage<StageSig PrevStage> {
     predicate returnMayFlowThrough(
       RetNodeEx ret, Ap argAp, Ap ap, ReturnKindExt kind, Configuration config
     ) {
-      exists(ParamNodeEx p |
-        returnFlowsThrough(ret, kind, _, _, p, argAp, ap, config) and
-        parameterFlowsThroughRev(p, argAp, kind, ap, config)
+      exists(ParamNodeEx p, ReturnPosition pos |
+        returnFlowsThrough(ret, pos, _, _, p, argAp, ap, config) and
+        parameterFlowsThroughRev(p, argAp, pos, ap, config) and
+        kind = pos.getKind()
       )
     }
 
     pragma[nomagic]
-    predicate revFlowInToReturnIsReturned(
+    private predicate revFlowThroughArg(
       DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnCtx returnCtx, ApOption returnAp,
       Ap ap, Configuration config
     ) {
-      exists(ReturnKindExt returnKind0, Ap returnAp0 |
-        revFlowInToReturn(call, arg, state, returnKind0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
+      exists(ParamNodeEx p, ReturnPosition pos, Ap innerReturnAp |
+        revFlowThrough(call, returnCtx, p, state, pos, returnAp, ap, innerReturnAp, config) and
+        flowThroughIntoCall(call, arg, p, _, ap, innerReturnAp, config)
       )
     }
 
@@ -1954,7 +1929,7 @@ private module MkStage<StageSig PrevStage> {
     predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
       exists(ArgNodeEx arg, FlowState state, ReturnCtx returnCtx, ApOption returnAp, Ap ap |
         revFlow(arg, state, returnCtx, returnAp, ap, config) and
-        revFlowInToReturnIsReturned(call, arg, state, returnCtx, returnAp, ap, config)
+        revFlowThroughArg(call, arg, state, returnCtx, returnAp, ap, config)
       )
     }
 
@@ -1967,8 +1942,9 @@ private module MkStage<StageSig PrevStage> {
       conscand = count(TypedContent f0, Ap ap | fwdConsCand(f0, ap, config)) and
       states = count(FlowState state | fwdFlow(_, state, _, _, _, _, config)) and
       tuples =
-        count(NodeEx n, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-          Ap ap | fwdFlow(n, state, cc, summaryCtx, argAp, ap, config))
+        count(NodeEx n, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap |
+          fwdFlow(n, state, cc, summaryCtx, argAp, ap, config)
+        )
       or
       fwd = false and
       nodes = count(NodeEx node | revFlow(node, _, _, _, _, config)) and
@@ -2823,13 +2799,12 @@ private Configuration unbindConf(Configuration conf) {
 
 pragma[nomagic]
 private predicate nodeMayUseSummary0(
-  NodeEx n, DataFlowCallable c, ParameterPosition pos, FlowState state, AccessPathApprox apa,
-  Configuration config
+  NodeEx n, ParamNodeEx p, FlowState state, AccessPathApprox apa, Configuration config
 ) {
   exists(AccessPathApprox apa0 |
-    c = n.getEnclosingCallable() and
+    Stage5::parameterMayFlowThrough(p, _, _) and
     Stage5::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
-    Stage5::fwdFlow(n, state, any(CallContextCall ccc), TParameterPositionSome(pos),
+    Stage5::fwdFlow(n, state, any(CallContextCall ccc), TParamNodeSome(p.asNode()),
       TAccessPathApproxSome(apa), apa0, config)
   )
 }
@@ -2838,10 +2813,9 @@ pragma[nomagic]
 private predicate nodeMayUseSummary(
   NodeEx n, FlowState state, AccessPathApprox apa, Configuration config
 ) {
-  exists(DataFlowCallable c, ParameterPosition pos, ParamNodeEx p |
+  exists(ParamNodeEx p |
     Stage5::parameterMayFlowThrough(p, apa, config) and
-    nodeMayUseSummary0(n, c, pos, state, apa, config) and
-    p.isParameterOf(c, pos)
+    nodeMayUseSummary0(n, p, state, apa, config)
   )
 }
 
diff --git a/cpp/ql/lib/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl3.qll b/cpp/ql/lib/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl3.qll
index 6741ccc2f06..23d11a38842 100644
--- a/cpp/ql/lib/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl3.qll
+++ b/cpp/ql/lib/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl3.qll
@@ -1327,8 +1327,8 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     additional predicate fwdFlow(
-      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      Ap ap, ApApprox apa, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      ApApprox apa, Configuration config
     ) {
       fwdFlow0(node, state, cc, summaryCtx, argAp, ap, apa, config) and
       PrevStage::revFlow(node, state, apa, config) and
@@ -1337,21 +1337,21 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[inline]
     additional predicate fwdFlow(
-      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      Ap ap, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      Configuration config
     ) {
       fwdFlow(node, state, cc, summaryCtx, argAp, ap, _, config)
     }
 
     pragma[nomagic]
     private predicate fwdFlow0(
-      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      Ap ap, ApApprox apa, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      ApApprox apa, Configuration config
     ) {
       sourceNode(node, state, config) and
       (if hasSourceCallCtx(config) then cc = ccSomeCall() else cc = ccNone()) and
       argAp = apNone() and
-      summaryCtx = TParameterPositionNone() and
+      summaryCtx = TParamNodeNone() and
       ap = getApNil(node) and
       apa = getApprox(ap)
       or
@@ -1372,7 +1372,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, apa, pragma[only_bind_into](config)) and
         jumpStep(mid, node, config) and
         cc = ccNone() and
-        summaryCtx = TParameterPositionNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone()
       )
       or
@@ -1380,7 +1380,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, state, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStep(mid, node, config) and
         cc = ccNone() and
-        summaryCtx = TParameterPositionNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone() and
         ap = getApNil(node) and
         apa = getApprox(ap)
@@ -1390,7 +1390,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, state0, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStateStep(mid, state0, node, state, config) and
         cc = ccNone() and
-        summaryCtx = TParameterPositionNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone() and
         ap = getApNil(node) and
         apa = getApprox(ap)
@@ -1414,10 +1414,10 @@ private module MkStage<StageSig PrevStage> {
       fwdFlowIn(_, node, state, _, cc, _, _, ap, apa, config) and
       if PrevStage::parameterMayFlowThrough(node, apa, config)
       then (
-        summaryCtx = TParameterPositionSome(node.(ParamNodeEx).getPosition()) and
+        summaryCtx = TParamNodeSome(node.asNode()) and
         argAp = apSome(ap)
       ) else (
-        summaryCtx = TParameterPositionNone() and argAp = apNone()
+        summaryCtx = TParamNodeNone() and argAp = apNone()
       )
       or
       // flow out of a callable
@@ -1433,16 +1433,19 @@ private module MkStage<StageSig PrevStage> {
       )
       or
       // flow through a callable
-      exists(DataFlowCall call, ParameterPosition summaryCtx0, Ap argAp0 |
-        fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, apa, config) and
-        fwdFlowIsEntered(call, cc, summaryCtx, argAp, summaryCtx0, argAp0, config)
+      exists(
+        DataFlowCall call, CcCall ccc, RetNodeEx ret, boolean allowsFieldFlow, ApApprox innerArgApa
+      |
+        fwdFlowThrough(call, cc, state, ccc, summaryCtx, argAp, ap, apa, ret, innerArgApa, config) and
+        flowThroughOutOfCall(call, ccc, ret, node, allowsFieldFlow, innerArgApa, apa, config) and
+        if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
     pragma[nomagic]
     private predicate fwdFlowStore(
       NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc,
-      ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
+      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
     ) {
       exists(DataFlowType contentType, ApApprox apa1 |
         fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, apa1, config) and
@@ -1473,8 +1476,8 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowRead0(
-      NodeEx node1, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      ApNonNil ap, Configuration config
+      NodeEx node1, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, ApNonNil ap,
+      Configuration config
     ) {
       fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, _, _, config)
@@ -1483,7 +1486,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowRead(
       Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc,
-      ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
+      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
     ) {
       fwdFlowRead0(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, c, node2, config) and
@@ -1493,7 +1496,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowIn(
       DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, CcCall innercc,
-      ParameterPositionOption summaryCtx, ApOption argAp, Ap ap, ApApprox apa, Configuration config
+      ParamNodeOption summaryCtx, ApOption argAp, Ap ap, ApApprox apa, Configuration config
     ) {
       exists(ArgNodeEx arg, boolean allowsFieldFlow |
         fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, apa, config) and
@@ -1505,64 +1508,38 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowRetFromArg(
-      RetNodeEx ret, FlowState state, CcCall ccc, ParameterPosition summaryCtx, ParamNodeEx p,
-      Ap argAp, ApApprox argApa, Ap ap, ApApprox apa, Configuration config
+      RetNodeEx ret, FlowState state, CcCall ccc, ParamNodeEx summaryCtx, Ap argAp, ApApprox argApa,
+      Ap ap, ApApprox apa, Configuration config
     ) {
-      exists(DataFlowCallable c, ReturnKindExt kind |
+      exists(ReturnKindExt kind |
         fwdFlow(pragma[only_bind_into](ret), state, ccc,
-          TParameterPositionSome(pragma[only_bind_into](summaryCtx)), apSome(argAp), ap, apa, config) and
-        getApprox(argAp) = argApa and
-        c = ret.getEnclosingCallable() and
+          TParamNodeSome(pragma[only_bind_into](summaryCtx.asNode())),
+          pragma[only_bind_into](apSome(argAp)), ap, pragma[only_bind_into](apa),
+          pragma[only_bind_into](config)) and
         kind = ret.getKind() and
-        p.isParameterOf(c, pragma[only_bind_into](summaryCtx)) and
-        parameterFlowThroughAllowed(p, kind)
+        parameterFlowThroughAllowed(summaryCtx, kind) and
+        argApa = getApprox(argAp) and
+        PrevStage::returnMayFlowThrough(ret, argApa, apa, kind, pragma[only_bind_into](config))
       )
     }
 
     pragma[inline]
-    private predicate fwdFlowInMayFlowThrough(
-      DataFlowCall call, Cc cc, CcCall innerCc, ParameterPositionOption summaryCtx, ApOption argAp,
-      ParamNodeEx param, Ap ap, ApApprox apa, Configuration config
+    private predicate fwdFlowThrough0(
+      DataFlowCall call, Cc cc, FlowState state, CcCall ccc, ParamNodeOption summaryCtx,
+      ApOption argAp, Ap ap, ApApprox apa, RetNodeEx ret, ParamNodeEx innerSummaryCtx,
+      Ap innerArgAp, ApApprox innerArgApa, Configuration config
     ) {
-      fwdFlowIn(call, pragma[only_bind_into](param), _, cc, innerCc, summaryCtx, argAp, ap,
-        pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
-      PrevStage::parameterMayFlowThrough(param, apa, config)
-    }
-
-    // dedup before joining with `flowThroughOutOfCall`
-    pragma[nomagic]
-    private predicate fwdFlowInMayFlowThroughProj(
-      DataFlowCall call, CcCall innerCc, ApApprox apa, Configuration config
-    ) {
-      fwdFlowInMayFlowThrough(call, _, innerCc, _, _, _, _, apa, config)
-    }
-
-    /**
-     * Same as `flowThroughOutOfCall`, but restricted to calls that are reached
-     * in the flow covered by `fwdFlow`, where data might flow through the target
-     * callable and back out at `call`.
-     */
-    pragma[nomagic]
-    private predicate fwdFlowThroughOutOfCall(
-      DataFlowCall call, CcCall ccc, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow,
-      ApApprox argApa, ApApprox apa, Configuration config
-    ) {
-      fwdFlowInMayFlowThroughProj(call, ccc, argApa, config) and
-      flowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, argApa, apa, config)
+      fwdFlowRetFromArg(ret, state, ccc, innerSummaryCtx, innerArgAp, innerArgApa, ap, apa, config) and
+      fwdFlowIsEntered(call, cc, ccc, summaryCtx, argAp, innerSummaryCtx, innerArgAp, config)
     }
 
     pragma[nomagic]
-    private predicate fwdFlowOutFromArg(
-      DataFlowCall call, NodeEx out, FlowState state, ParameterPosition summaryCtx, Ap argAp, Ap ap,
-      ApApprox apa, Configuration config
+    private predicate fwdFlowThrough(
+      DataFlowCall call, Cc cc, FlowState state, CcCall ccc, ParamNodeOption summaryCtx,
+      ApOption argAp, Ap ap, ApApprox apa, RetNodeEx ret, ApApprox innerArgApa, Configuration config
     ) {
-      exists(RetNodeEx ret, boolean allowsFieldFlow, CcCall ccc, ApApprox argApa |
-        fwdFlowRetFromArg(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc),
-          summaryCtx, _, argAp, pragma[only_bind_into](argApa), ap, pragma[only_bind_into](apa),
-          config) and
-        fwdFlowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, argApa, apa, config) and
-        (if allowsFieldFlow = false then ap instanceof ApNil else any())
-      )
+      fwdFlowThrough0(call, cc, state, ccc, summaryCtx, argAp, ap, apa, ret, _, _, innerArgApa,
+        config)
     }
 
     /**
@@ -1571,12 +1548,14 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate fwdFlowIsEntered(
-      DataFlowCall call, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      ParameterPosition pos, Ap ap, Configuration config
+      DataFlowCall call, Cc cc, CcCall innerCc, ParamNodeOption summaryCtx, ApOption argAp,
+      ParamNodeEx p, Ap ap, Configuration config
     ) {
-      exists(ParamNodeEx param |
-        fwdFlowInMayFlowThrough(call, cc, _, summaryCtx, argAp, param, ap, _, config) and
-        pos = param.getPosition()
+      exists(ApApprox apa |
+        fwdFlowIn(call, pragma[only_bind_into](p), _, cc, innerCc, summaryCtx, argAp, ap,
+          pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
+        PrevStage::parameterMayFlowThrough(p, apa, config) and
+        PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config))
       )
     }
 
@@ -1596,23 +1575,31 @@ private module MkStage<StageSig PrevStage> {
       fwdFlowConsCand(ap1, c, ap2, config)
     }
 
+    pragma[nomagic]
+    private predicate returnFlowsThrough0(
+      DataFlowCall call, FlowState state, CcCall ccc, Ap ap, ApApprox apa, RetNodeEx ret,
+      ParamNodeEx innerSummaryCtx, Ap innerArgAp, ApApprox innerArgApa, Configuration config
+    ) {
+      fwdFlowThrough0(call, _, state, ccc, _, _, ap, apa, ret, innerSummaryCtx, innerArgAp,
+        innerArgApa, config)
+    }
+
     pragma[nomagic]
     private predicate returnFlowsThrough(
-      RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, ParamNodeEx p, Ap argAp,
+      RetNodeEx ret, ReturnPosition pos, FlowState state, CcCall ccc, ParamNodeEx p, Ap argAp,
       Ap ap, Configuration config
     ) {
-      exists(boolean allowsFieldFlow, ApApprox argApa, ApApprox apa |
-        fwdFlowRetFromArg(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc), _, p,
-          argAp, pragma[only_bind_into](argApa), ap, pragma[only_bind_into](apa), config) and
-        kind = ret.getKind() and
-        fwdFlowThroughOutOfCall(_, ccc, ret, _, allowsFieldFlow, argApa, apa, config) and
-        (if allowsFieldFlow = false then ap instanceof ApNil else any())
+      exists(DataFlowCall call, ApApprox apa, boolean allowsFieldFlow, ApApprox innerArgApa |
+        returnFlowsThrough0(call, state, ccc, ap, apa, ret, p, argAp, innerArgApa, config) and
+        flowThroughOutOfCall(call, ccc, ret, _, allowsFieldFlow, innerArgApa, apa, config) and
+        pos = ret.getReturnPosition() and
+        if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
     pragma[nomagic]
     private predicate flowThroughIntoCall(
-      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp,
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp, Ap ap,
       Configuration config
     ) {
       exists(ApApprox argApa |
@@ -1620,7 +1607,7 @@ private module MkStage<StageSig PrevStage> {
           allowsFieldFlow, argApa, pragma[only_bind_into](config)) and
         fwdFlow(arg, _, _, _, _, pragma[only_bind_into](argAp), argApa,
           pragma[only_bind_into](config)) and
-        returnFlowsThrough(_, _, _, _, p, pragma[only_bind_into](argAp), _,
+        returnFlowsThrough(_, _, _, _, p, pragma[only_bind_into](argAp), ap,
           pragma[only_bind_into](config)) and
         if allowsFieldFlow = false then argAp instanceof ApNil else any()
       )
@@ -1639,12 +1626,13 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate flowOutOfCallAp(
-      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
+      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
       Ap ap, Configuration config
     ) {
       exists(ApApprox apa |
-        flowOutOfCallApa(call, ret, kind, out, allowsFieldFlow, apa, config) and
-        fwdFlow(ret, _, _, _, _, ap, apa, config)
+        flowOutOfCallApa(call, ret, _, out, allowsFieldFlow, apa, config) and
+        fwdFlow(ret, _, _, _, _, ap, apa, config) and
+        pos = ret.getReturnPosition()
       )
     }
 
@@ -1739,17 +1727,17 @@ private module MkStage<StageSig PrevStage> {
       )
       or
       // flow through a callable
-      exists(DataFlowCall call, ReturnKindExt returnKind0, Ap returnAp0 |
-        revFlowInToReturn(call, node, state, returnKind0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
+      exists(DataFlowCall call, ParamNodeEx p, ReturnPosition pos, Ap innerReturnAp |
+        revFlowThrough(call, returnCtx, p, state, pos, returnAp, ap, innerReturnAp, config) and
+        flowThroughIntoCall(call, node, p, _, ap, innerReturnAp, config)
       )
       or
       // flow out of a callable
-      exists(ReturnKindExt kind |
-        revFlowOut(_, node, kind, state, _, _, ap, config) and
-        if returnFlowsThrough(node, kind, state, _, _, _, ap, config)
+      exists(ReturnPosition pos |
+        revFlowOut(_, node, pos, state, _, _, ap, config) and
+        if returnFlowsThrough(node, pos, state, _, _, _, ap, config)
         then (
-          returnCtx = TReturnCtxMaybeFlowThrough(kind) and
+          returnCtx = TReturnCtxMaybeFlowThrough(pos) and
           returnAp = apSome(ap)
         ) else (
           returnCtx = TReturnCtxNoFlowThrough() and returnAp = apNone()
@@ -1782,47 +1770,33 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate revFlowOut(
-      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, FlowState state, ReturnCtx returnCtx,
+      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, FlowState state, ReturnCtx returnCtx,
       ApOption returnAp, Ap ap, Configuration config
     ) {
       exists(NodeEx out, boolean allowsFieldFlow |
         revFlow(out, state, returnCtx, returnAp, ap, config) and
-        flowOutOfCallAp(call, ret, kind, out, allowsFieldFlow, ap, config) and
+        flowOutOfCallAp(call, ret, pos, out, allowsFieldFlow, ap, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
-    /**
-     * Same as `flowThroughIntoCall`, but restricted to calls that are reached
-     * in the flow covered by `revFlow`, where data might flow through the target
-     * callable and back out at `call`.
-     */
-    pragma[nomagic]
-    private predicate revFlowThroughIntoCall(
-      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp,
-      Configuration config
-    ) {
-      flowThroughIntoCall(call, arg, p, allowsFieldFlow, argAp, config) and
-      revFlowIsReturned(call, _, _, _, _, config)
-    }
-
     pragma[nomagic]
     private predicate revFlowParamToReturn(
-      ParamNodeEx p, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap, Configuration config
+      ParamNodeEx p, FlowState state, ReturnPosition pos, Ap returnAp, Ap ap, Configuration config
     ) {
-      revFlow(p, state, TReturnCtxMaybeFlowThrough(kind), apSome(returnAp), ap, config) and
-      parameterFlowThroughAllowed(p, kind)
+      revFlow(pragma[only_bind_into](p), state, TReturnCtxMaybeFlowThrough(pos), apSome(returnAp),
+        pragma[only_bind_into](ap), pragma[only_bind_into](config)) and
+      parameterFlowThroughAllowed(p, pos.getKind()) and
+      PrevStage::parameterMayFlowThrough(p, getApprox(ap), config)
     }
 
     pragma[nomagic]
-    private predicate revFlowInToReturn(
-      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap,
-      Configuration config
+    private predicate revFlowThrough(
+      DataFlowCall call, ReturnCtx returnCtx, ParamNodeEx p, FlowState state, ReturnPosition pos,
+      ApOption returnAp, Ap ap, Ap innerReturnAp, Configuration config
     ) {
-      exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlowParamToReturn(p, state, kind, returnAp, ap, config) and
-        revFlowThroughIntoCall(call, arg, p, allowsFieldFlow, ap, config)
-      )
+      revFlowParamToReturn(p, state, pos, innerReturnAp, ap, config) and
+      revFlowIsReturned(call, returnCtx, returnAp, pos, innerReturnAp, config)
     }
 
     /**
@@ -1832,12 +1806,12 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate revFlowIsReturned(
-      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnKindExt kind, Ap ap,
+      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnPosition pos, Ap ap,
       Configuration config
     ) {
       exists(RetNodeEx ret, FlowState state, CcCall ccc |
-        revFlowOut(call, ret, kind, state, returnCtx, returnAp, ap, config) and
-        returnFlowsThrough(ret, kind, state, ccc, _, _, ap, config) and
+        revFlowOut(call, ret, pos, state, returnCtx, returnAp, ap, config) and
+        returnFlowsThrough(ret, pos, state, ccc, _, _, ap, config) and
         matchesCall(ccc, call)
       )
     }
@@ -1915,17 +1889,17 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate parameterFlowsThroughRev(
-      ParamNodeEx p, Ap ap, ReturnKindExt kind, Ap returnAp, Configuration config
+      ParamNodeEx p, Ap ap, ReturnPosition pos, Ap returnAp, Configuration config
     ) {
-      revFlow(p, _, TReturnCtxMaybeFlowThrough(kind), apSome(returnAp), ap, config) and
-      parameterFlowThroughAllowed(p, kind)
+      revFlow(p, _, TReturnCtxMaybeFlowThrough(pos), apSome(returnAp), ap, config) and
+      parameterFlowThroughAllowed(p, pos.getKind())
     }
 
     pragma[nomagic]
     predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
-      exists(RetNodeEx ret, ReturnKindExt kind |
-        returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
-        parameterFlowsThroughRev(p, ap, kind, _, config)
+      exists(RetNodeEx ret, ReturnPosition pos |
+        returnFlowsThrough(ret, pos, _, _, p, ap, _, config) and
+        parameterFlowsThroughRev(p, ap, pos, _, config)
       )
     }
 
@@ -1933,20 +1907,21 @@ private module MkStage<StageSig PrevStage> {
     predicate returnMayFlowThrough(
       RetNodeEx ret, Ap argAp, Ap ap, ReturnKindExt kind, Configuration config
     ) {
-      exists(ParamNodeEx p |
-        returnFlowsThrough(ret, kind, _, _, p, argAp, ap, config) and
-        parameterFlowsThroughRev(p, argAp, kind, ap, config)
+      exists(ParamNodeEx p, ReturnPosition pos |
+        returnFlowsThrough(ret, pos, _, _, p, argAp, ap, config) and
+        parameterFlowsThroughRev(p, argAp, pos, ap, config) and
+        kind = pos.getKind()
       )
     }
 
     pragma[nomagic]
-    predicate revFlowInToReturnIsReturned(
+    private predicate revFlowThroughArg(
       DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnCtx returnCtx, ApOption returnAp,
       Ap ap, Configuration config
     ) {
-      exists(ReturnKindExt returnKind0, Ap returnAp0 |
-        revFlowInToReturn(call, arg, state, returnKind0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
+      exists(ParamNodeEx p, ReturnPosition pos, Ap innerReturnAp |
+        revFlowThrough(call, returnCtx, p, state, pos, returnAp, ap, innerReturnAp, config) and
+        flowThroughIntoCall(call, arg, p, _, ap, innerReturnAp, config)
       )
     }
 
@@ -1954,7 +1929,7 @@ private module MkStage<StageSig PrevStage> {
     predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
       exists(ArgNodeEx arg, FlowState state, ReturnCtx returnCtx, ApOption returnAp, Ap ap |
         revFlow(arg, state, returnCtx, returnAp, ap, config) and
-        revFlowInToReturnIsReturned(call, arg, state, returnCtx, returnAp, ap, config)
+        revFlowThroughArg(call, arg, state, returnCtx, returnAp, ap, config)
       )
     }
 
@@ -1967,8 +1942,9 @@ private module MkStage<StageSig PrevStage> {
       conscand = count(TypedContent f0, Ap ap | fwdConsCand(f0, ap, config)) and
       states = count(FlowState state | fwdFlow(_, state, _, _, _, _, config)) and
       tuples =
-        count(NodeEx n, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-          Ap ap | fwdFlow(n, state, cc, summaryCtx, argAp, ap, config))
+        count(NodeEx n, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap |
+          fwdFlow(n, state, cc, summaryCtx, argAp, ap, config)
+        )
       or
       fwd = false and
       nodes = count(NodeEx node | revFlow(node, _, _, _, _, config)) and
@@ -2823,13 +2799,12 @@ private Configuration unbindConf(Configuration conf) {
 
 pragma[nomagic]
 private predicate nodeMayUseSummary0(
-  NodeEx n, DataFlowCallable c, ParameterPosition pos, FlowState state, AccessPathApprox apa,
-  Configuration config
+  NodeEx n, ParamNodeEx p, FlowState state, AccessPathApprox apa, Configuration config
 ) {
   exists(AccessPathApprox apa0 |
-    c = n.getEnclosingCallable() and
+    Stage5::parameterMayFlowThrough(p, _, _) and
     Stage5::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
-    Stage5::fwdFlow(n, state, any(CallContextCall ccc), TParameterPositionSome(pos),
+    Stage5::fwdFlow(n, state, any(CallContextCall ccc), TParamNodeSome(p.asNode()),
       TAccessPathApproxSome(apa), apa0, config)
   )
 }
@@ -2838,10 +2813,9 @@ pragma[nomagic]
 private predicate nodeMayUseSummary(
   NodeEx n, FlowState state, AccessPathApprox apa, Configuration config
 ) {
-  exists(DataFlowCallable c, ParameterPosition pos, ParamNodeEx p |
+  exists(ParamNodeEx p |
     Stage5::parameterMayFlowThrough(p, apa, config) and
-    nodeMayUseSummary0(n, c, pos, state, apa, config) and
-    p.isParameterOf(c, pos)
+    nodeMayUseSummary0(n, p, state, apa, config)
   )
 }
 
diff --git a/cpp/ql/lib/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl4.qll b/cpp/ql/lib/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl4.qll
index 6741ccc2f06..23d11a38842 100644
--- a/cpp/ql/lib/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl4.qll
+++ b/cpp/ql/lib/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl4.qll
@@ -1327,8 +1327,8 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     additional predicate fwdFlow(
-      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      Ap ap, ApApprox apa, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      ApApprox apa, Configuration config
     ) {
       fwdFlow0(node, state, cc, summaryCtx, argAp, ap, apa, config) and
       PrevStage::revFlow(node, state, apa, config) and
@@ -1337,21 +1337,21 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[inline]
     additional predicate fwdFlow(
-      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      Ap ap, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      Configuration config
     ) {
       fwdFlow(node, state, cc, summaryCtx, argAp, ap, _, config)
     }
 
     pragma[nomagic]
     private predicate fwdFlow0(
-      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      Ap ap, ApApprox apa, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      ApApprox apa, Configuration config
     ) {
       sourceNode(node, state, config) and
       (if hasSourceCallCtx(config) then cc = ccSomeCall() else cc = ccNone()) and
       argAp = apNone() and
-      summaryCtx = TParameterPositionNone() and
+      summaryCtx = TParamNodeNone() and
       ap = getApNil(node) and
       apa = getApprox(ap)
       or
@@ -1372,7 +1372,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, apa, pragma[only_bind_into](config)) and
         jumpStep(mid, node, config) and
         cc = ccNone() and
-        summaryCtx = TParameterPositionNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone()
       )
       or
@@ -1380,7 +1380,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, state, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStep(mid, node, config) and
         cc = ccNone() and
-        summaryCtx = TParameterPositionNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone() and
         ap = getApNil(node) and
         apa = getApprox(ap)
@@ -1390,7 +1390,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, state0, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStateStep(mid, state0, node, state, config) and
         cc = ccNone() and
-        summaryCtx = TParameterPositionNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone() and
         ap = getApNil(node) and
         apa = getApprox(ap)
@@ -1414,10 +1414,10 @@ private module MkStage<StageSig PrevStage> {
       fwdFlowIn(_, node, state, _, cc, _, _, ap, apa, config) and
       if PrevStage::parameterMayFlowThrough(node, apa, config)
       then (
-        summaryCtx = TParameterPositionSome(node.(ParamNodeEx).getPosition()) and
+        summaryCtx = TParamNodeSome(node.asNode()) and
         argAp = apSome(ap)
       ) else (
-        summaryCtx = TParameterPositionNone() and argAp = apNone()
+        summaryCtx = TParamNodeNone() and argAp = apNone()
       )
       or
       // flow out of a callable
@@ -1433,16 +1433,19 @@ private module MkStage<StageSig PrevStage> {
       )
       or
       // flow through a callable
-      exists(DataFlowCall call, ParameterPosition summaryCtx0, Ap argAp0 |
-        fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, apa, config) and
-        fwdFlowIsEntered(call, cc, summaryCtx, argAp, summaryCtx0, argAp0, config)
+      exists(
+        DataFlowCall call, CcCall ccc, RetNodeEx ret, boolean allowsFieldFlow, ApApprox innerArgApa
+      |
+        fwdFlowThrough(call, cc, state, ccc, summaryCtx, argAp, ap, apa, ret, innerArgApa, config) and
+        flowThroughOutOfCall(call, ccc, ret, node, allowsFieldFlow, innerArgApa, apa, config) and
+        if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
     pragma[nomagic]
     private predicate fwdFlowStore(
       NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc,
-      ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
+      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
     ) {
       exists(DataFlowType contentType, ApApprox apa1 |
         fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, apa1, config) and
@@ -1473,8 +1476,8 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowRead0(
-      NodeEx node1, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      ApNonNil ap, Configuration config
+      NodeEx node1, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, ApNonNil ap,
+      Configuration config
     ) {
       fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, _, _, config)
@@ -1483,7 +1486,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowRead(
       Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc,
-      ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
+      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
     ) {
       fwdFlowRead0(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, c, node2, config) and
@@ -1493,7 +1496,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowIn(
       DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, CcCall innercc,
-      ParameterPositionOption summaryCtx, ApOption argAp, Ap ap, ApApprox apa, Configuration config
+      ParamNodeOption summaryCtx, ApOption argAp, Ap ap, ApApprox apa, Configuration config
     ) {
       exists(ArgNodeEx arg, boolean allowsFieldFlow |
         fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, apa, config) and
@@ -1505,64 +1508,38 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowRetFromArg(
-      RetNodeEx ret, FlowState state, CcCall ccc, ParameterPosition summaryCtx, ParamNodeEx p,
-      Ap argAp, ApApprox argApa, Ap ap, ApApprox apa, Configuration config
+      RetNodeEx ret, FlowState state, CcCall ccc, ParamNodeEx summaryCtx, Ap argAp, ApApprox argApa,
+      Ap ap, ApApprox apa, Configuration config
     ) {
-      exists(DataFlowCallable c, ReturnKindExt kind |
+      exists(ReturnKindExt kind |
         fwdFlow(pragma[only_bind_into](ret), state, ccc,
-          TParameterPositionSome(pragma[only_bind_into](summaryCtx)), apSome(argAp), ap, apa, config) and
-        getApprox(argAp) = argApa and
-        c = ret.getEnclosingCallable() and
+          TParamNodeSome(pragma[only_bind_into](summaryCtx.asNode())),
+          pragma[only_bind_into](apSome(argAp)), ap, pragma[only_bind_into](apa),
+          pragma[only_bind_into](config)) and
         kind = ret.getKind() and
-        p.isParameterOf(c, pragma[only_bind_into](summaryCtx)) and
-        parameterFlowThroughAllowed(p, kind)
+        parameterFlowThroughAllowed(summaryCtx, kind) and
+        argApa = getApprox(argAp) and
+        PrevStage::returnMayFlowThrough(ret, argApa, apa, kind, pragma[only_bind_into](config))
       )
     }
 
     pragma[inline]
-    private predicate fwdFlowInMayFlowThrough(
-      DataFlowCall call, Cc cc, CcCall innerCc, ParameterPositionOption summaryCtx, ApOption argAp,
-      ParamNodeEx param, Ap ap, ApApprox apa, Configuration config
+    private predicate fwdFlowThrough0(
+      DataFlowCall call, Cc cc, FlowState state, CcCall ccc, ParamNodeOption summaryCtx,
+      ApOption argAp, Ap ap, ApApprox apa, RetNodeEx ret, ParamNodeEx innerSummaryCtx,
+      Ap innerArgAp, ApApprox innerArgApa, Configuration config
     ) {
-      fwdFlowIn(call, pragma[only_bind_into](param), _, cc, innerCc, summaryCtx, argAp, ap,
-        pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
-      PrevStage::parameterMayFlowThrough(param, apa, config)
-    }
-
-    // dedup before joining with `flowThroughOutOfCall`
-    pragma[nomagic]
-    private predicate fwdFlowInMayFlowThroughProj(
-      DataFlowCall call, CcCall innerCc, ApApprox apa, Configuration config
-    ) {
-      fwdFlowInMayFlowThrough(call, _, innerCc, _, _, _, _, apa, config)
-    }
-
-    /**
-     * Same as `flowThroughOutOfCall`, but restricted to calls that are reached
-     * in the flow covered by `fwdFlow`, where data might flow through the target
-     * callable and back out at `call`.
-     */
-    pragma[nomagic]
-    private predicate fwdFlowThroughOutOfCall(
-      DataFlowCall call, CcCall ccc, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow,
-      ApApprox argApa, ApApprox apa, Configuration config
-    ) {
-      fwdFlowInMayFlowThroughProj(call, ccc, argApa, config) and
-      flowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, argApa, apa, config)
+      fwdFlowRetFromArg(ret, state, ccc, innerSummaryCtx, innerArgAp, innerArgApa, ap, apa, config) and
+      fwdFlowIsEntered(call, cc, ccc, summaryCtx, argAp, innerSummaryCtx, innerArgAp, config)
     }
 
     pragma[nomagic]
-    private predicate fwdFlowOutFromArg(
-      DataFlowCall call, NodeEx out, FlowState state, ParameterPosition summaryCtx, Ap argAp, Ap ap,
-      ApApprox apa, Configuration config
+    private predicate fwdFlowThrough(
+      DataFlowCall call, Cc cc, FlowState state, CcCall ccc, ParamNodeOption summaryCtx,
+      ApOption argAp, Ap ap, ApApprox apa, RetNodeEx ret, ApApprox innerArgApa, Configuration config
     ) {
-      exists(RetNodeEx ret, boolean allowsFieldFlow, CcCall ccc, ApApprox argApa |
-        fwdFlowRetFromArg(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc),
-          summaryCtx, _, argAp, pragma[only_bind_into](argApa), ap, pragma[only_bind_into](apa),
-          config) and
-        fwdFlowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, argApa, apa, config) and
-        (if allowsFieldFlow = false then ap instanceof ApNil else any())
-      )
+      fwdFlowThrough0(call, cc, state, ccc, summaryCtx, argAp, ap, apa, ret, _, _, innerArgApa,
+        config)
     }
 
     /**
@@ -1571,12 +1548,14 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate fwdFlowIsEntered(
-      DataFlowCall call, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      ParameterPosition pos, Ap ap, Configuration config
+      DataFlowCall call, Cc cc, CcCall innerCc, ParamNodeOption summaryCtx, ApOption argAp,
+      ParamNodeEx p, Ap ap, Configuration config
     ) {
-      exists(ParamNodeEx param |
-        fwdFlowInMayFlowThrough(call, cc, _, summaryCtx, argAp, param, ap, _, config) and
-        pos = param.getPosition()
+      exists(ApApprox apa |
+        fwdFlowIn(call, pragma[only_bind_into](p), _, cc, innerCc, summaryCtx, argAp, ap,
+          pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
+        PrevStage::parameterMayFlowThrough(p, apa, config) and
+        PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config))
       )
     }
 
@@ -1596,23 +1575,31 @@ private module MkStage<StageSig PrevStage> {
       fwdFlowConsCand(ap1, c, ap2, config)
     }
 
+    pragma[nomagic]
+    private predicate returnFlowsThrough0(
+      DataFlowCall call, FlowState state, CcCall ccc, Ap ap, ApApprox apa, RetNodeEx ret,
+      ParamNodeEx innerSummaryCtx, Ap innerArgAp, ApApprox innerArgApa, Configuration config
+    ) {
+      fwdFlowThrough0(call, _, state, ccc, _, _, ap, apa, ret, innerSummaryCtx, innerArgAp,
+        innerArgApa, config)
+    }
+
     pragma[nomagic]
     private predicate returnFlowsThrough(
-      RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, ParamNodeEx p, Ap argAp,
+      RetNodeEx ret, ReturnPosition pos, FlowState state, CcCall ccc, ParamNodeEx p, Ap argAp,
       Ap ap, Configuration config
     ) {
-      exists(boolean allowsFieldFlow, ApApprox argApa, ApApprox apa |
-        fwdFlowRetFromArg(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc), _, p,
-          argAp, pragma[only_bind_into](argApa), ap, pragma[only_bind_into](apa), config) and
-        kind = ret.getKind() and
-        fwdFlowThroughOutOfCall(_, ccc, ret, _, allowsFieldFlow, argApa, apa, config) and
-        (if allowsFieldFlow = false then ap instanceof ApNil else any())
+      exists(DataFlowCall call, ApApprox apa, boolean allowsFieldFlow, ApApprox innerArgApa |
+        returnFlowsThrough0(call, state, ccc, ap, apa, ret, p, argAp, innerArgApa, config) and
+        flowThroughOutOfCall(call, ccc, ret, _, allowsFieldFlow, innerArgApa, apa, config) and
+        pos = ret.getReturnPosition() and
+        if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
     pragma[nomagic]
     private predicate flowThroughIntoCall(
-      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp,
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp, Ap ap,
       Configuration config
     ) {
       exists(ApApprox argApa |
@@ -1620,7 +1607,7 @@ private module MkStage<StageSig PrevStage> {
           allowsFieldFlow, argApa, pragma[only_bind_into](config)) and
         fwdFlow(arg, _, _, _, _, pragma[only_bind_into](argAp), argApa,
           pragma[only_bind_into](config)) and
-        returnFlowsThrough(_, _, _, _, p, pragma[only_bind_into](argAp), _,
+        returnFlowsThrough(_, _, _, _, p, pragma[only_bind_into](argAp), ap,
           pragma[only_bind_into](config)) and
         if allowsFieldFlow = false then argAp instanceof ApNil else any()
       )
@@ -1639,12 +1626,13 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate flowOutOfCallAp(
-      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
+      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
       Ap ap, Configuration config
     ) {
       exists(ApApprox apa |
-        flowOutOfCallApa(call, ret, kind, out, allowsFieldFlow, apa, config) and
-        fwdFlow(ret, _, _, _, _, ap, apa, config)
+        flowOutOfCallApa(call, ret, _, out, allowsFieldFlow, apa, config) and
+        fwdFlow(ret, _, _, _, _, ap, apa, config) and
+        pos = ret.getReturnPosition()
       )
     }
 
@@ -1739,17 +1727,17 @@ private module MkStage<StageSig PrevStage> {
       )
       or
       // flow through a callable
-      exists(DataFlowCall call, ReturnKindExt returnKind0, Ap returnAp0 |
-        revFlowInToReturn(call, node, state, returnKind0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
+      exists(DataFlowCall call, ParamNodeEx p, ReturnPosition pos, Ap innerReturnAp |
+        revFlowThrough(call, returnCtx, p, state, pos, returnAp, ap, innerReturnAp, config) and
+        flowThroughIntoCall(call, node, p, _, ap, innerReturnAp, config)
       )
       or
       // flow out of a callable
-      exists(ReturnKindExt kind |
-        revFlowOut(_, node, kind, state, _, _, ap, config) and
-        if returnFlowsThrough(node, kind, state, _, _, _, ap, config)
+      exists(ReturnPosition pos |
+        revFlowOut(_, node, pos, state, _, _, ap, config) and
+        if returnFlowsThrough(node, pos, state, _, _, _, ap, config)
         then (
-          returnCtx = TReturnCtxMaybeFlowThrough(kind) and
+          returnCtx = TReturnCtxMaybeFlowThrough(pos) and
           returnAp = apSome(ap)
         ) else (
           returnCtx = TReturnCtxNoFlowThrough() and returnAp = apNone()
@@ -1782,47 +1770,33 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate revFlowOut(
-      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, FlowState state, ReturnCtx returnCtx,
+      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, FlowState state, ReturnCtx returnCtx,
       ApOption returnAp, Ap ap, Configuration config
     ) {
       exists(NodeEx out, boolean allowsFieldFlow |
         revFlow(out, state, returnCtx, returnAp, ap, config) and
-        flowOutOfCallAp(call, ret, kind, out, allowsFieldFlow, ap, config) and
+        flowOutOfCallAp(call, ret, pos, out, allowsFieldFlow, ap, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
-    /**
-     * Same as `flowThroughIntoCall`, but restricted to calls that are reached
-     * in the flow covered by `revFlow`, where data might flow through the target
-     * callable and back out at `call`.
-     */
-    pragma[nomagic]
-    private predicate revFlowThroughIntoCall(
-      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp,
-      Configuration config
-    ) {
-      flowThroughIntoCall(call, arg, p, allowsFieldFlow, argAp, config) and
-      revFlowIsReturned(call, _, _, _, _, config)
-    }
-
     pragma[nomagic]
     private predicate revFlowParamToReturn(
-      ParamNodeEx p, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap, Configuration config
+      ParamNodeEx p, FlowState state, ReturnPosition pos, Ap returnAp, Ap ap, Configuration config
     ) {
-      revFlow(p, state, TReturnCtxMaybeFlowThrough(kind), apSome(returnAp), ap, config) and
-      parameterFlowThroughAllowed(p, kind)
+      revFlow(pragma[only_bind_into](p), state, TReturnCtxMaybeFlowThrough(pos), apSome(returnAp),
+        pragma[only_bind_into](ap), pragma[only_bind_into](config)) and
+      parameterFlowThroughAllowed(p, pos.getKind()) and
+      PrevStage::parameterMayFlowThrough(p, getApprox(ap), config)
     }
 
     pragma[nomagic]
-    private predicate revFlowInToReturn(
-      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap,
-      Configuration config
+    private predicate revFlowThrough(
+      DataFlowCall call, ReturnCtx returnCtx, ParamNodeEx p, FlowState state, ReturnPosition pos,
+      ApOption returnAp, Ap ap, Ap innerReturnAp, Configuration config
     ) {
-      exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlowParamToReturn(p, state, kind, returnAp, ap, config) and
-        revFlowThroughIntoCall(call, arg, p, allowsFieldFlow, ap, config)
-      )
+      revFlowParamToReturn(p, state, pos, innerReturnAp, ap, config) and
+      revFlowIsReturned(call, returnCtx, returnAp, pos, innerReturnAp, config)
     }
 
     /**
@@ -1832,12 +1806,12 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate revFlowIsReturned(
-      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnKindExt kind, Ap ap,
+      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnPosition pos, Ap ap,
       Configuration config
     ) {
       exists(RetNodeEx ret, FlowState state, CcCall ccc |
-        revFlowOut(call, ret, kind, state, returnCtx, returnAp, ap, config) and
-        returnFlowsThrough(ret, kind, state, ccc, _, _, ap, config) and
+        revFlowOut(call, ret, pos, state, returnCtx, returnAp, ap, config) and
+        returnFlowsThrough(ret, pos, state, ccc, _, _, ap, config) and
         matchesCall(ccc, call)
       )
     }
@@ -1915,17 +1889,17 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate parameterFlowsThroughRev(
-      ParamNodeEx p, Ap ap, ReturnKindExt kind, Ap returnAp, Configuration config
+      ParamNodeEx p, Ap ap, ReturnPosition pos, Ap returnAp, Configuration config
     ) {
-      revFlow(p, _, TReturnCtxMaybeFlowThrough(kind), apSome(returnAp), ap, config) and
-      parameterFlowThroughAllowed(p, kind)
+      revFlow(p, _, TReturnCtxMaybeFlowThrough(pos), apSome(returnAp), ap, config) and
+      parameterFlowThroughAllowed(p, pos.getKind())
     }
 
     pragma[nomagic]
     predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
-      exists(RetNodeEx ret, ReturnKindExt kind |
-        returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
-        parameterFlowsThroughRev(p, ap, kind, _, config)
+      exists(RetNodeEx ret, ReturnPosition pos |
+        returnFlowsThrough(ret, pos, _, _, p, ap, _, config) and
+        parameterFlowsThroughRev(p, ap, pos, _, config)
       )
     }
 
@@ -1933,20 +1907,21 @@ private module MkStage<StageSig PrevStage> {
     predicate returnMayFlowThrough(
       RetNodeEx ret, Ap argAp, Ap ap, ReturnKindExt kind, Configuration config
     ) {
-      exists(ParamNodeEx p |
-        returnFlowsThrough(ret, kind, _, _, p, argAp, ap, config) and
-        parameterFlowsThroughRev(p, argAp, kind, ap, config)
+      exists(ParamNodeEx p, ReturnPosition pos |
+        returnFlowsThrough(ret, pos, _, _, p, argAp, ap, config) and
+        parameterFlowsThroughRev(p, argAp, pos, ap, config) and
+        kind = pos.getKind()
       )
     }
 
     pragma[nomagic]
-    predicate revFlowInToReturnIsReturned(
+    private predicate revFlowThroughArg(
       DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnCtx returnCtx, ApOption returnAp,
       Ap ap, Configuration config
     ) {
-      exists(ReturnKindExt returnKind0, Ap returnAp0 |
-        revFlowInToReturn(call, arg, state, returnKind0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
+      exists(ParamNodeEx p, ReturnPosition pos, Ap innerReturnAp |
+        revFlowThrough(call, returnCtx, p, state, pos, returnAp, ap, innerReturnAp, config) and
+        flowThroughIntoCall(call, arg, p, _, ap, innerReturnAp, config)
       )
     }
 
@@ -1954,7 +1929,7 @@ private module MkStage<StageSig PrevStage> {
     predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
       exists(ArgNodeEx arg, FlowState state, ReturnCtx returnCtx, ApOption returnAp, Ap ap |
         revFlow(arg, state, returnCtx, returnAp, ap, config) and
-        revFlowInToReturnIsReturned(call, arg, state, returnCtx, returnAp, ap, config)
+        revFlowThroughArg(call, arg, state, returnCtx, returnAp, ap, config)
       )
     }
 
@@ -1967,8 +1942,9 @@ private module MkStage<StageSig PrevStage> {
       conscand = count(TypedContent f0, Ap ap | fwdConsCand(f0, ap, config)) and
       states = count(FlowState state | fwdFlow(_, state, _, _, _, _, config)) and
       tuples =
-        count(NodeEx n, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-          Ap ap | fwdFlow(n, state, cc, summaryCtx, argAp, ap, config))
+        count(NodeEx n, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap |
+          fwdFlow(n, state, cc, summaryCtx, argAp, ap, config)
+        )
       or
       fwd = false and
       nodes = count(NodeEx node | revFlow(node, _, _, _, _, config)) and
@@ -2823,13 +2799,12 @@ private Configuration unbindConf(Configuration conf) {
 
 pragma[nomagic]
 private predicate nodeMayUseSummary0(
-  NodeEx n, DataFlowCallable c, ParameterPosition pos, FlowState state, AccessPathApprox apa,
-  Configuration config
+  NodeEx n, ParamNodeEx p, FlowState state, AccessPathApprox apa, Configuration config
 ) {
   exists(AccessPathApprox apa0 |
-    c = n.getEnclosingCallable() and
+    Stage5::parameterMayFlowThrough(p, _, _) and
     Stage5::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
-    Stage5::fwdFlow(n, state, any(CallContextCall ccc), TParameterPositionSome(pos),
+    Stage5::fwdFlow(n, state, any(CallContextCall ccc), TParamNodeSome(p.asNode()),
       TAccessPathApproxSome(apa), apa0, config)
   )
 }
@@ -2838,10 +2813,9 @@ pragma[nomagic]
 private predicate nodeMayUseSummary(
   NodeEx n, FlowState state, AccessPathApprox apa, Configuration config
 ) {
-  exists(DataFlowCallable c, ParameterPosition pos, ParamNodeEx p |
+  exists(ParamNodeEx p |
     Stage5::parameterMayFlowThrough(p, apa, config) and
-    nodeMayUseSummary0(n, c, pos, state, apa, config) and
-    p.isParameterOf(c, pos)
+    nodeMayUseSummary0(n, p, state, apa, config)
   )
 }
 
diff --git a/cpp/ql/lib/semmle/code/cpp/ir/dataflow/internal/DataFlowImplCommon.qll b/cpp/ql/lib/semmle/code/cpp/ir/dataflow/internal/DataFlowImplCommon.qll
index c66aefced8d..9aa6a529a5b 100644
--- a/cpp/ql/lib/semmle/code/cpp/ir/dataflow/internal/DataFlowImplCommon.qll
+++ b/cpp/ql/lib/semmle/code/cpp/ir/dataflow/internal/DataFlowImplCommon.qll
@@ -916,15 +916,15 @@ private module Cached {
     TDataFlowCallSome(DataFlowCall call)
 
   cached
-  newtype TParameterPositionOption =
-    TParameterPositionNone() or
-    TParameterPositionSome(ParameterPosition pos)
+  newtype TParamNodeOption =
+    TParamNodeNone() or
+    TParamNodeSome(ParamNode p)
 
   cached
   newtype TReturnCtx =
     TReturnCtxNone() or
     TReturnCtxNoFlowThrough() or
-    TReturnCtxMaybeFlowThrough(ReturnKindExt kind)
+    TReturnCtxMaybeFlowThrough(ReturnPosition pos)
 
   cached
   newtype TTypedContentApprox =
@@ -1343,15 +1343,15 @@ class DataFlowCallOption extends TDataFlowCallOption {
   }
 }
 
-/** An optional `ParameterPosition`. */
-class ParameterPositionOption extends TParameterPositionOption {
+/** An optional `ParamNode`. */
+class ParamNodeOption extends TParamNodeOption {
   string toString() {
-    this = TParameterPositionNone() and
+    this = TParamNodeNone() and
     result = "(none)"
     or
-    exists(ParameterPosition pos |
-      this = TParameterPositionSome(pos) and
-      result = pos.toString()
+    exists(ParamNode p |
+      this = TParamNodeSome(p) and
+      result = p.toString()
     )
   }
 }
@@ -1363,7 +1363,7 @@ class ParameterPositionOption extends TParameterPositionOption {
  *
  * - `TReturnCtxNone()`: no return flow.
  * - `TReturnCtxNoFlowThrough()`: return flow, but flow through is not possible.
- * - `TReturnCtxMaybeFlowThrough(ReturnKindExt kind)`: return flow, of kind `kind`, and
+ * - `TReturnCtxMaybeFlowThrough(ReturnPosition pos)`: return flow, of kind `pos`, and
  *    flow through may be possible.
  */
 class ReturnCtx extends TReturnCtx {
@@ -1374,9 +1374,9 @@ class ReturnCtx extends TReturnCtx {
     this = TReturnCtxNoFlowThrough() and
     result = "(no flow through)"
     or
-    exists(ReturnKindExt kind |
-      this = TReturnCtxMaybeFlowThrough(kind) and
-      result = kind.toString()
+    exists(ReturnPosition pos |
+      this = TReturnCtxMaybeFlowThrough(pos) and
+      result = pos.toString()
     )
   }
 }
diff --git a/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImpl.qll b/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImpl.qll
index 6741ccc2f06..23d11a38842 100644
--- a/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImpl.qll
+++ b/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImpl.qll
@@ -1327,8 +1327,8 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     additional predicate fwdFlow(
-      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      Ap ap, ApApprox apa, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      ApApprox apa, Configuration config
     ) {
       fwdFlow0(node, state, cc, summaryCtx, argAp, ap, apa, config) and
       PrevStage::revFlow(node, state, apa, config) and
@@ -1337,21 +1337,21 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[inline]
     additional predicate fwdFlow(
-      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      Ap ap, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      Configuration config
     ) {
       fwdFlow(node, state, cc, summaryCtx, argAp, ap, _, config)
     }
 
     pragma[nomagic]
     private predicate fwdFlow0(
-      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      Ap ap, ApApprox apa, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      ApApprox apa, Configuration config
     ) {
       sourceNode(node, state, config) and
       (if hasSourceCallCtx(config) then cc = ccSomeCall() else cc = ccNone()) and
       argAp = apNone() and
-      summaryCtx = TParameterPositionNone() and
+      summaryCtx = TParamNodeNone() and
       ap = getApNil(node) and
       apa = getApprox(ap)
       or
@@ -1372,7 +1372,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, apa, pragma[only_bind_into](config)) and
         jumpStep(mid, node, config) and
         cc = ccNone() and
-        summaryCtx = TParameterPositionNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone()
       )
       or
@@ -1380,7 +1380,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, state, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStep(mid, node, config) and
         cc = ccNone() and
-        summaryCtx = TParameterPositionNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone() and
         ap = getApNil(node) and
         apa = getApprox(ap)
@@ -1390,7 +1390,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, state0, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStateStep(mid, state0, node, state, config) and
         cc = ccNone() and
-        summaryCtx = TParameterPositionNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone() and
         ap = getApNil(node) and
         apa = getApprox(ap)
@@ -1414,10 +1414,10 @@ private module MkStage<StageSig PrevStage> {
       fwdFlowIn(_, node, state, _, cc, _, _, ap, apa, config) and
       if PrevStage::parameterMayFlowThrough(node, apa, config)
       then (
-        summaryCtx = TParameterPositionSome(node.(ParamNodeEx).getPosition()) and
+        summaryCtx = TParamNodeSome(node.asNode()) and
         argAp = apSome(ap)
       ) else (
-        summaryCtx = TParameterPositionNone() and argAp = apNone()
+        summaryCtx = TParamNodeNone() and argAp = apNone()
       )
       or
       // flow out of a callable
@@ -1433,16 +1433,19 @@ private module MkStage<StageSig PrevStage> {
       )
       or
       // flow through a callable
-      exists(DataFlowCall call, ParameterPosition summaryCtx0, Ap argAp0 |
-        fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, apa, config) and
-        fwdFlowIsEntered(call, cc, summaryCtx, argAp, summaryCtx0, argAp0, config)
+      exists(
+        DataFlowCall call, CcCall ccc, RetNodeEx ret, boolean allowsFieldFlow, ApApprox innerArgApa
+      |
+        fwdFlowThrough(call, cc, state, ccc, summaryCtx, argAp, ap, apa, ret, innerArgApa, config) and
+        flowThroughOutOfCall(call, ccc, ret, node, allowsFieldFlow, innerArgApa, apa, config) and
+        if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
     pragma[nomagic]
     private predicate fwdFlowStore(
       NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc,
-      ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
+      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
     ) {
       exists(DataFlowType contentType, ApApprox apa1 |
         fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, apa1, config) and
@@ -1473,8 +1476,8 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowRead0(
-      NodeEx node1, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      ApNonNil ap, Configuration config
+      NodeEx node1, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, ApNonNil ap,
+      Configuration config
     ) {
       fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, _, _, config)
@@ -1483,7 +1486,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowRead(
       Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc,
-      ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
+      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
     ) {
       fwdFlowRead0(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, c, node2, config) and
@@ -1493,7 +1496,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowIn(
       DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, CcCall innercc,
-      ParameterPositionOption summaryCtx, ApOption argAp, Ap ap, ApApprox apa, Configuration config
+      ParamNodeOption summaryCtx, ApOption argAp, Ap ap, ApApprox apa, Configuration config
     ) {
       exists(ArgNodeEx arg, boolean allowsFieldFlow |
         fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, apa, config) and
@@ -1505,64 +1508,38 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowRetFromArg(
-      RetNodeEx ret, FlowState state, CcCall ccc, ParameterPosition summaryCtx, ParamNodeEx p,
-      Ap argAp, ApApprox argApa, Ap ap, ApApprox apa, Configuration config
+      RetNodeEx ret, FlowState state, CcCall ccc, ParamNodeEx summaryCtx, Ap argAp, ApApprox argApa,
+      Ap ap, ApApprox apa, Configuration config
     ) {
-      exists(DataFlowCallable c, ReturnKindExt kind |
+      exists(ReturnKindExt kind |
         fwdFlow(pragma[only_bind_into](ret), state, ccc,
-          TParameterPositionSome(pragma[only_bind_into](summaryCtx)), apSome(argAp), ap, apa, config) and
-        getApprox(argAp) = argApa and
-        c = ret.getEnclosingCallable() and
+          TParamNodeSome(pragma[only_bind_into](summaryCtx.asNode())),
+          pragma[only_bind_into](apSome(argAp)), ap, pragma[only_bind_into](apa),
+          pragma[only_bind_into](config)) and
         kind = ret.getKind() and
-        p.isParameterOf(c, pragma[only_bind_into](summaryCtx)) and
-        parameterFlowThroughAllowed(p, kind)
+        parameterFlowThroughAllowed(summaryCtx, kind) and
+        argApa = getApprox(argAp) and
+        PrevStage::returnMayFlowThrough(ret, argApa, apa, kind, pragma[only_bind_into](config))
       )
     }
 
     pragma[inline]
-    private predicate fwdFlowInMayFlowThrough(
-      DataFlowCall call, Cc cc, CcCall innerCc, ParameterPositionOption summaryCtx, ApOption argAp,
-      ParamNodeEx param, Ap ap, ApApprox apa, Configuration config
+    private predicate fwdFlowThrough0(
+      DataFlowCall call, Cc cc, FlowState state, CcCall ccc, ParamNodeOption summaryCtx,
+      ApOption argAp, Ap ap, ApApprox apa, RetNodeEx ret, ParamNodeEx innerSummaryCtx,
+      Ap innerArgAp, ApApprox innerArgApa, Configuration config
     ) {
-      fwdFlowIn(call, pragma[only_bind_into](param), _, cc, innerCc, summaryCtx, argAp, ap,
-        pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
-      PrevStage::parameterMayFlowThrough(param, apa, config)
-    }
-
-    // dedup before joining with `flowThroughOutOfCall`
-    pragma[nomagic]
-    private predicate fwdFlowInMayFlowThroughProj(
-      DataFlowCall call, CcCall innerCc, ApApprox apa, Configuration config
-    ) {
-      fwdFlowInMayFlowThrough(call, _, innerCc, _, _, _, _, apa, config)
-    }
-
-    /**
-     * Same as `flowThroughOutOfCall`, but restricted to calls that are reached
-     * in the flow covered by `fwdFlow`, where data might flow through the target
-     * callable and back out at `call`.
-     */
-    pragma[nomagic]
-    private predicate fwdFlowThroughOutOfCall(
-      DataFlowCall call, CcCall ccc, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow,
-      ApApprox argApa, ApApprox apa, Configuration config
-    ) {
-      fwdFlowInMayFlowThroughProj(call, ccc, argApa, config) and
-      flowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, argApa, apa, config)
+      fwdFlowRetFromArg(ret, state, ccc, innerSummaryCtx, innerArgAp, innerArgApa, ap, apa, config) and
+      fwdFlowIsEntered(call, cc, ccc, summaryCtx, argAp, innerSummaryCtx, innerArgAp, config)
     }
 
     pragma[nomagic]
-    private predicate fwdFlowOutFromArg(
-      DataFlowCall call, NodeEx out, FlowState state, ParameterPosition summaryCtx, Ap argAp, Ap ap,
-      ApApprox apa, Configuration config
+    private predicate fwdFlowThrough(
+      DataFlowCall call, Cc cc, FlowState state, CcCall ccc, ParamNodeOption summaryCtx,
+      ApOption argAp, Ap ap, ApApprox apa, RetNodeEx ret, ApApprox innerArgApa, Configuration config
     ) {
-      exists(RetNodeEx ret, boolean allowsFieldFlow, CcCall ccc, ApApprox argApa |
-        fwdFlowRetFromArg(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc),
-          summaryCtx, _, argAp, pragma[only_bind_into](argApa), ap, pragma[only_bind_into](apa),
-          config) and
-        fwdFlowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, argApa, apa, config) and
-        (if allowsFieldFlow = false then ap instanceof ApNil else any())
-      )
+      fwdFlowThrough0(call, cc, state, ccc, summaryCtx, argAp, ap, apa, ret, _, _, innerArgApa,
+        config)
     }
 
     /**
@@ -1571,12 +1548,14 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate fwdFlowIsEntered(
-      DataFlowCall call, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      ParameterPosition pos, Ap ap, Configuration config
+      DataFlowCall call, Cc cc, CcCall innerCc, ParamNodeOption summaryCtx, ApOption argAp,
+      ParamNodeEx p, Ap ap, Configuration config
     ) {
-      exists(ParamNodeEx param |
-        fwdFlowInMayFlowThrough(call, cc, _, summaryCtx, argAp, param, ap, _, config) and
-        pos = param.getPosition()
+      exists(ApApprox apa |
+        fwdFlowIn(call, pragma[only_bind_into](p), _, cc, innerCc, summaryCtx, argAp, ap,
+          pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
+        PrevStage::parameterMayFlowThrough(p, apa, config) and
+        PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config))
       )
     }
 
@@ -1596,23 +1575,31 @@ private module MkStage<StageSig PrevStage> {
       fwdFlowConsCand(ap1, c, ap2, config)
     }
 
+    pragma[nomagic]
+    private predicate returnFlowsThrough0(
+      DataFlowCall call, FlowState state, CcCall ccc, Ap ap, ApApprox apa, RetNodeEx ret,
+      ParamNodeEx innerSummaryCtx, Ap innerArgAp, ApApprox innerArgApa, Configuration config
+    ) {
+      fwdFlowThrough0(call, _, state, ccc, _, _, ap, apa, ret, innerSummaryCtx, innerArgAp,
+        innerArgApa, config)
+    }
+
     pragma[nomagic]
     private predicate returnFlowsThrough(
-      RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, ParamNodeEx p, Ap argAp,
+      RetNodeEx ret, ReturnPosition pos, FlowState state, CcCall ccc, ParamNodeEx p, Ap argAp,
       Ap ap, Configuration config
     ) {
-      exists(boolean allowsFieldFlow, ApApprox argApa, ApApprox apa |
-        fwdFlowRetFromArg(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc), _, p,
-          argAp, pragma[only_bind_into](argApa), ap, pragma[only_bind_into](apa), config) and
-        kind = ret.getKind() and
-        fwdFlowThroughOutOfCall(_, ccc, ret, _, allowsFieldFlow, argApa, apa, config) and
-        (if allowsFieldFlow = false then ap instanceof ApNil else any())
+      exists(DataFlowCall call, ApApprox apa, boolean allowsFieldFlow, ApApprox innerArgApa |
+        returnFlowsThrough0(call, state, ccc, ap, apa, ret, p, argAp, innerArgApa, config) and
+        flowThroughOutOfCall(call, ccc, ret, _, allowsFieldFlow, innerArgApa, apa, config) and
+        pos = ret.getReturnPosition() and
+        if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
     pragma[nomagic]
     private predicate flowThroughIntoCall(
-      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp,
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp, Ap ap,
       Configuration config
     ) {
       exists(ApApprox argApa |
@@ -1620,7 +1607,7 @@ private module MkStage<StageSig PrevStage> {
           allowsFieldFlow, argApa, pragma[only_bind_into](config)) and
         fwdFlow(arg, _, _, _, _, pragma[only_bind_into](argAp), argApa,
           pragma[only_bind_into](config)) and
-        returnFlowsThrough(_, _, _, _, p, pragma[only_bind_into](argAp), _,
+        returnFlowsThrough(_, _, _, _, p, pragma[only_bind_into](argAp), ap,
           pragma[only_bind_into](config)) and
         if allowsFieldFlow = false then argAp instanceof ApNil else any()
       )
@@ -1639,12 +1626,13 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate flowOutOfCallAp(
-      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
+      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
       Ap ap, Configuration config
     ) {
       exists(ApApprox apa |
-        flowOutOfCallApa(call, ret, kind, out, allowsFieldFlow, apa, config) and
-        fwdFlow(ret, _, _, _, _, ap, apa, config)
+        flowOutOfCallApa(call, ret, _, out, allowsFieldFlow, apa, config) and
+        fwdFlow(ret, _, _, _, _, ap, apa, config) and
+        pos = ret.getReturnPosition()
       )
     }
 
@@ -1739,17 +1727,17 @@ private module MkStage<StageSig PrevStage> {
       )
       or
       // flow through a callable
-      exists(DataFlowCall call, ReturnKindExt returnKind0, Ap returnAp0 |
-        revFlowInToReturn(call, node, state, returnKind0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
+      exists(DataFlowCall call, ParamNodeEx p, ReturnPosition pos, Ap innerReturnAp |
+        revFlowThrough(call, returnCtx, p, state, pos, returnAp, ap, innerReturnAp, config) and
+        flowThroughIntoCall(call, node, p, _, ap, innerReturnAp, config)
       )
       or
       // flow out of a callable
-      exists(ReturnKindExt kind |
-        revFlowOut(_, node, kind, state, _, _, ap, config) and
-        if returnFlowsThrough(node, kind, state, _, _, _, ap, config)
+      exists(ReturnPosition pos |
+        revFlowOut(_, node, pos, state, _, _, ap, config) and
+        if returnFlowsThrough(node, pos, state, _, _, _, ap, config)
         then (
-          returnCtx = TReturnCtxMaybeFlowThrough(kind) and
+          returnCtx = TReturnCtxMaybeFlowThrough(pos) and
           returnAp = apSome(ap)
         ) else (
           returnCtx = TReturnCtxNoFlowThrough() and returnAp = apNone()
@@ -1782,47 +1770,33 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate revFlowOut(
-      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, FlowState state, ReturnCtx returnCtx,
+      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, FlowState state, ReturnCtx returnCtx,
       ApOption returnAp, Ap ap, Configuration config
     ) {
       exists(NodeEx out, boolean allowsFieldFlow |
         revFlow(out, state, returnCtx, returnAp, ap, config) and
-        flowOutOfCallAp(call, ret, kind, out, allowsFieldFlow, ap, config) and
+        flowOutOfCallAp(call, ret, pos, out, allowsFieldFlow, ap, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
-    /**
-     * Same as `flowThroughIntoCall`, but restricted to calls that are reached
-     * in the flow covered by `revFlow`, where data might flow through the target
-     * callable and back out at `call`.
-     */
-    pragma[nomagic]
-    private predicate revFlowThroughIntoCall(
-      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp,
-      Configuration config
-    ) {
-      flowThroughIntoCall(call, arg, p, allowsFieldFlow, argAp, config) and
-      revFlowIsReturned(call, _, _, _, _, config)
-    }
-
     pragma[nomagic]
     private predicate revFlowParamToReturn(
-      ParamNodeEx p, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap, Configuration config
+      ParamNodeEx p, FlowState state, ReturnPosition pos, Ap returnAp, Ap ap, Configuration config
     ) {
-      revFlow(p, state, TReturnCtxMaybeFlowThrough(kind), apSome(returnAp), ap, config) and
-      parameterFlowThroughAllowed(p, kind)
+      revFlow(pragma[only_bind_into](p), state, TReturnCtxMaybeFlowThrough(pos), apSome(returnAp),
+        pragma[only_bind_into](ap), pragma[only_bind_into](config)) and
+      parameterFlowThroughAllowed(p, pos.getKind()) and
+      PrevStage::parameterMayFlowThrough(p, getApprox(ap), config)
     }
 
     pragma[nomagic]
-    private predicate revFlowInToReturn(
-      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap,
-      Configuration config
+    private predicate revFlowThrough(
+      DataFlowCall call, ReturnCtx returnCtx, ParamNodeEx p, FlowState state, ReturnPosition pos,
+      ApOption returnAp, Ap ap, Ap innerReturnAp, Configuration config
     ) {
-      exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlowParamToReturn(p, state, kind, returnAp, ap, config) and
-        revFlowThroughIntoCall(call, arg, p, allowsFieldFlow, ap, config)
-      )
+      revFlowParamToReturn(p, state, pos, innerReturnAp, ap, config) and
+      revFlowIsReturned(call, returnCtx, returnAp, pos, innerReturnAp, config)
     }
 
     /**
@@ -1832,12 +1806,12 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate revFlowIsReturned(
-      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnKindExt kind, Ap ap,
+      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnPosition pos, Ap ap,
       Configuration config
     ) {
       exists(RetNodeEx ret, FlowState state, CcCall ccc |
-        revFlowOut(call, ret, kind, state, returnCtx, returnAp, ap, config) and
-        returnFlowsThrough(ret, kind, state, ccc, _, _, ap, config) and
+        revFlowOut(call, ret, pos, state, returnCtx, returnAp, ap, config) and
+        returnFlowsThrough(ret, pos, state, ccc, _, _, ap, config) and
         matchesCall(ccc, call)
       )
     }
@@ -1915,17 +1889,17 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate parameterFlowsThroughRev(
-      ParamNodeEx p, Ap ap, ReturnKindExt kind, Ap returnAp, Configuration config
+      ParamNodeEx p, Ap ap, ReturnPosition pos, Ap returnAp, Configuration config
     ) {
-      revFlow(p, _, TReturnCtxMaybeFlowThrough(kind), apSome(returnAp), ap, config) and
-      parameterFlowThroughAllowed(p, kind)
+      revFlow(p, _, TReturnCtxMaybeFlowThrough(pos), apSome(returnAp), ap, config) and
+      parameterFlowThroughAllowed(p, pos.getKind())
     }
 
     pragma[nomagic]
     predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
-      exists(RetNodeEx ret, ReturnKindExt kind |
-        returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
-        parameterFlowsThroughRev(p, ap, kind, _, config)
+      exists(RetNodeEx ret, ReturnPosition pos |
+        returnFlowsThrough(ret, pos, _, _, p, ap, _, config) and
+        parameterFlowsThroughRev(p, ap, pos, _, config)
       )
     }
 
@@ -1933,20 +1907,21 @@ private module MkStage<StageSig PrevStage> {
     predicate returnMayFlowThrough(
       RetNodeEx ret, Ap argAp, Ap ap, ReturnKindExt kind, Configuration config
     ) {
-      exists(ParamNodeEx p |
-        returnFlowsThrough(ret, kind, _, _, p, argAp, ap, config) and
-        parameterFlowsThroughRev(p, argAp, kind, ap, config)
+      exists(ParamNodeEx p, ReturnPosition pos |
+        returnFlowsThrough(ret, pos, _, _, p, argAp, ap, config) and
+        parameterFlowsThroughRev(p, argAp, pos, ap, config) and
+        kind = pos.getKind()
       )
     }
 
     pragma[nomagic]
-    predicate revFlowInToReturnIsReturned(
+    private predicate revFlowThroughArg(
       DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnCtx returnCtx, ApOption returnAp,
       Ap ap, Configuration config
     ) {
-      exists(ReturnKindExt returnKind0, Ap returnAp0 |
-        revFlowInToReturn(call, arg, state, returnKind0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
+      exists(ParamNodeEx p, ReturnPosition pos, Ap innerReturnAp |
+        revFlowThrough(call, returnCtx, p, state, pos, returnAp, ap, innerReturnAp, config) and
+        flowThroughIntoCall(call, arg, p, _, ap, innerReturnAp, config)
       )
     }
 
@@ -1954,7 +1929,7 @@ private module MkStage<StageSig PrevStage> {
     predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
       exists(ArgNodeEx arg, FlowState state, ReturnCtx returnCtx, ApOption returnAp, Ap ap |
         revFlow(arg, state, returnCtx, returnAp, ap, config) and
-        revFlowInToReturnIsReturned(call, arg, state, returnCtx, returnAp, ap, config)
+        revFlowThroughArg(call, arg, state, returnCtx, returnAp, ap, config)
       )
     }
 
@@ -1967,8 +1942,9 @@ private module MkStage<StageSig PrevStage> {
       conscand = count(TypedContent f0, Ap ap | fwdConsCand(f0, ap, config)) and
       states = count(FlowState state | fwdFlow(_, state, _, _, _, _, config)) and
       tuples =
-        count(NodeEx n, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-          Ap ap | fwdFlow(n, state, cc, summaryCtx, argAp, ap, config))
+        count(NodeEx n, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap |
+          fwdFlow(n, state, cc, summaryCtx, argAp, ap, config)
+        )
       or
       fwd = false and
       nodes = count(NodeEx node | revFlow(node, _, _, _, _, config)) and
@@ -2823,13 +2799,12 @@ private Configuration unbindConf(Configuration conf) {
 
 pragma[nomagic]
 private predicate nodeMayUseSummary0(
-  NodeEx n, DataFlowCallable c, ParameterPosition pos, FlowState state, AccessPathApprox apa,
-  Configuration config
+  NodeEx n, ParamNodeEx p, FlowState state, AccessPathApprox apa, Configuration config
 ) {
   exists(AccessPathApprox apa0 |
-    c = n.getEnclosingCallable() and
+    Stage5::parameterMayFlowThrough(p, _, _) and
     Stage5::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
-    Stage5::fwdFlow(n, state, any(CallContextCall ccc), TParameterPositionSome(pos),
+    Stage5::fwdFlow(n, state, any(CallContextCall ccc), TParamNodeSome(p.asNode()),
       TAccessPathApproxSome(apa), apa0, config)
   )
 }
@@ -2838,10 +2813,9 @@ pragma[nomagic]
 private predicate nodeMayUseSummary(
   NodeEx n, FlowState state, AccessPathApprox apa, Configuration config
 ) {
-  exists(DataFlowCallable c, ParameterPosition pos, ParamNodeEx p |
+  exists(ParamNodeEx p |
     Stage5::parameterMayFlowThrough(p, apa, config) and
-    nodeMayUseSummary0(n, c, pos, state, apa, config) and
-    p.isParameterOf(c, pos)
+    nodeMayUseSummary0(n, p, state, apa, config)
   )
 }
 
diff --git a/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImpl2.qll b/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImpl2.qll
index 6741ccc2f06..23d11a38842 100644
--- a/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImpl2.qll
+++ b/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImpl2.qll
@@ -1327,8 +1327,8 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     additional predicate fwdFlow(
-      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      Ap ap, ApApprox apa, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      ApApprox apa, Configuration config
     ) {
       fwdFlow0(node, state, cc, summaryCtx, argAp, ap, apa, config) and
       PrevStage::revFlow(node, state, apa, config) and
@@ -1337,21 +1337,21 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[inline]
     additional predicate fwdFlow(
-      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      Ap ap, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      Configuration config
     ) {
       fwdFlow(node, state, cc, summaryCtx, argAp, ap, _, config)
     }
 
     pragma[nomagic]
     private predicate fwdFlow0(
-      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      Ap ap, ApApprox apa, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      ApApprox apa, Configuration config
     ) {
       sourceNode(node, state, config) and
       (if hasSourceCallCtx(config) then cc = ccSomeCall() else cc = ccNone()) and
       argAp = apNone() and
-      summaryCtx = TParameterPositionNone() and
+      summaryCtx = TParamNodeNone() and
       ap = getApNil(node) and
       apa = getApprox(ap)
       or
@@ -1372,7 +1372,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, apa, pragma[only_bind_into](config)) and
         jumpStep(mid, node, config) and
         cc = ccNone() and
-        summaryCtx = TParameterPositionNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone()
       )
       or
@@ -1380,7 +1380,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, state, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStep(mid, node, config) and
         cc = ccNone() and
-        summaryCtx = TParameterPositionNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone() and
         ap = getApNil(node) and
         apa = getApprox(ap)
@@ -1390,7 +1390,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, state0, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStateStep(mid, state0, node, state, config) and
         cc = ccNone() and
-        summaryCtx = TParameterPositionNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone() and
         ap = getApNil(node) and
         apa = getApprox(ap)
@@ -1414,10 +1414,10 @@ private module MkStage<StageSig PrevStage> {
       fwdFlowIn(_, node, state, _, cc, _, _, ap, apa, config) and
       if PrevStage::parameterMayFlowThrough(node, apa, config)
       then (
-        summaryCtx = TParameterPositionSome(node.(ParamNodeEx).getPosition()) and
+        summaryCtx = TParamNodeSome(node.asNode()) and
         argAp = apSome(ap)
       ) else (
-        summaryCtx = TParameterPositionNone() and argAp = apNone()
+        summaryCtx = TParamNodeNone() and argAp = apNone()
       )
       or
       // flow out of a callable
@@ -1433,16 +1433,19 @@ private module MkStage<StageSig PrevStage> {
       )
       or
       // flow through a callable
-      exists(DataFlowCall call, ParameterPosition summaryCtx0, Ap argAp0 |
-        fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, apa, config) and
-        fwdFlowIsEntered(call, cc, summaryCtx, argAp, summaryCtx0, argAp0, config)
+      exists(
+        DataFlowCall call, CcCall ccc, RetNodeEx ret, boolean allowsFieldFlow, ApApprox innerArgApa
+      |
+        fwdFlowThrough(call, cc, state, ccc, summaryCtx, argAp, ap, apa, ret, innerArgApa, config) and
+        flowThroughOutOfCall(call, ccc, ret, node, allowsFieldFlow, innerArgApa, apa, config) and
+        if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
     pragma[nomagic]
     private predicate fwdFlowStore(
       NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc,
-      ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
+      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
     ) {
       exists(DataFlowType contentType, ApApprox apa1 |
         fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, apa1, config) and
@@ -1473,8 +1476,8 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowRead0(
-      NodeEx node1, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      ApNonNil ap, Configuration config
+      NodeEx node1, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, ApNonNil ap,
+      Configuration config
     ) {
       fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, _, _, config)
@@ -1483,7 +1486,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowRead(
       Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc,
-      ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
+      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
     ) {
       fwdFlowRead0(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, c, node2, config) and
@@ -1493,7 +1496,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowIn(
       DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, CcCall innercc,
-      ParameterPositionOption summaryCtx, ApOption argAp, Ap ap, ApApprox apa, Configuration config
+      ParamNodeOption summaryCtx, ApOption argAp, Ap ap, ApApprox apa, Configuration config
     ) {
       exists(ArgNodeEx arg, boolean allowsFieldFlow |
         fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, apa, config) and
@@ -1505,64 +1508,38 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowRetFromArg(
-      RetNodeEx ret, FlowState state, CcCall ccc, ParameterPosition summaryCtx, ParamNodeEx p,
-      Ap argAp, ApApprox argApa, Ap ap, ApApprox apa, Configuration config
+      RetNodeEx ret, FlowState state, CcCall ccc, ParamNodeEx summaryCtx, Ap argAp, ApApprox argApa,
+      Ap ap, ApApprox apa, Configuration config
     ) {
-      exists(DataFlowCallable c, ReturnKindExt kind |
+      exists(ReturnKindExt kind |
         fwdFlow(pragma[only_bind_into](ret), state, ccc,
-          TParameterPositionSome(pragma[only_bind_into](summaryCtx)), apSome(argAp), ap, apa, config) and
-        getApprox(argAp) = argApa and
-        c = ret.getEnclosingCallable() and
+          TParamNodeSome(pragma[only_bind_into](summaryCtx.asNode())),
+          pragma[only_bind_into](apSome(argAp)), ap, pragma[only_bind_into](apa),
+          pragma[only_bind_into](config)) and
         kind = ret.getKind() and
-        p.isParameterOf(c, pragma[only_bind_into](summaryCtx)) and
-        parameterFlowThroughAllowed(p, kind)
+        parameterFlowThroughAllowed(summaryCtx, kind) and
+        argApa = getApprox(argAp) and
+        PrevStage::returnMayFlowThrough(ret, argApa, apa, kind, pragma[only_bind_into](config))
       )
     }
 
     pragma[inline]
-    private predicate fwdFlowInMayFlowThrough(
-      DataFlowCall call, Cc cc, CcCall innerCc, ParameterPositionOption summaryCtx, ApOption argAp,
-      ParamNodeEx param, Ap ap, ApApprox apa, Configuration config
+    private predicate fwdFlowThrough0(
+      DataFlowCall call, Cc cc, FlowState state, CcCall ccc, ParamNodeOption summaryCtx,
+      ApOption argAp, Ap ap, ApApprox apa, RetNodeEx ret, ParamNodeEx innerSummaryCtx,
+      Ap innerArgAp, ApApprox innerArgApa, Configuration config
     ) {
-      fwdFlowIn(call, pragma[only_bind_into](param), _, cc, innerCc, summaryCtx, argAp, ap,
-        pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
-      PrevStage::parameterMayFlowThrough(param, apa, config)
-    }
-
-    // dedup before joining with `flowThroughOutOfCall`
-    pragma[nomagic]
-    private predicate fwdFlowInMayFlowThroughProj(
-      DataFlowCall call, CcCall innerCc, ApApprox apa, Configuration config
-    ) {
-      fwdFlowInMayFlowThrough(call, _, innerCc, _, _, _, _, apa, config)
-    }
-
-    /**
-     * Same as `flowThroughOutOfCall`, but restricted to calls that are reached
-     * in the flow covered by `fwdFlow`, where data might flow through the target
-     * callable and back out at `call`.
-     */
-    pragma[nomagic]
-    private predicate fwdFlowThroughOutOfCall(
-      DataFlowCall call, CcCall ccc, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow,
-      ApApprox argApa, ApApprox apa, Configuration config
-    ) {
-      fwdFlowInMayFlowThroughProj(call, ccc, argApa, config) and
-      flowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, argApa, apa, config)
+      fwdFlowRetFromArg(ret, state, ccc, innerSummaryCtx, innerArgAp, innerArgApa, ap, apa, config) and
+      fwdFlowIsEntered(call, cc, ccc, summaryCtx, argAp, innerSummaryCtx, innerArgAp, config)
     }
 
     pragma[nomagic]
-    private predicate fwdFlowOutFromArg(
-      DataFlowCall call, NodeEx out, FlowState state, ParameterPosition summaryCtx, Ap argAp, Ap ap,
-      ApApprox apa, Configuration config
+    private predicate fwdFlowThrough(
+      DataFlowCall call, Cc cc, FlowState state, CcCall ccc, ParamNodeOption summaryCtx,
+      ApOption argAp, Ap ap, ApApprox apa, RetNodeEx ret, ApApprox innerArgApa, Configuration config
     ) {
-      exists(RetNodeEx ret, boolean allowsFieldFlow, CcCall ccc, ApApprox argApa |
-        fwdFlowRetFromArg(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc),
-          summaryCtx, _, argAp, pragma[only_bind_into](argApa), ap, pragma[only_bind_into](apa),
-          config) and
-        fwdFlowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, argApa, apa, config) and
-        (if allowsFieldFlow = false then ap instanceof ApNil else any())
-      )
+      fwdFlowThrough0(call, cc, state, ccc, summaryCtx, argAp, ap, apa, ret, _, _, innerArgApa,
+        config)
     }
 
     /**
@@ -1571,12 +1548,14 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate fwdFlowIsEntered(
-      DataFlowCall call, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      ParameterPosition pos, Ap ap, Configuration config
+      DataFlowCall call, Cc cc, CcCall innerCc, ParamNodeOption summaryCtx, ApOption argAp,
+      ParamNodeEx p, Ap ap, Configuration config
     ) {
-      exists(ParamNodeEx param |
-        fwdFlowInMayFlowThrough(call, cc, _, summaryCtx, argAp, param, ap, _, config) and
-        pos = param.getPosition()
+      exists(ApApprox apa |
+        fwdFlowIn(call, pragma[only_bind_into](p), _, cc, innerCc, summaryCtx, argAp, ap,
+          pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
+        PrevStage::parameterMayFlowThrough(p, apa, config) and
+        PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config))
       )
     }
 
@@ -1596,23 +1575,31 @@ private module MkStage<StageSig PrevStage> {
       fwdFlowConsCand(ap1, c, ap2, config)
     }
 
+    pragma[nomagic]
+    private predicate returnFlowsThrough0(
+      DataFlowCall call, FlowState state, CcCall ccc, Ap ap, ApApprox apa, RetNodeEx ret,
+      ParamNodeEx innerSummaryCtx, Ap innerArgAp, ApApprox innerArgApa, Configuration config
+    ) {
+      fwdFlowThrough0(call, _, state, ccc, _, _, ap, apa, ret, innerSummaryCtx, innerArgAp,
+        innerArgApa, config)
+    }
+
     pragma[nomagic]
     private predicate returnFlowsThrough(
-      RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, ParamNodeEx p, Ap argAp,
+      RetNodeEx ret, ReturnPosition pos, FlowState state, CcCall ccc, ParamNodeEx p, Ap argAp,
       Ap ap, Configuration config
     ) {
-      exists(boolean allowsFieldFlow, ApApprox argApa, ApApprox apa |
-        fwdFlowRetFromArg(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc), _, p,
-          argAp, pragma[only_bind_into](argApa), ap, pragma[only_bind_into](apa), config) and
-        kind = ret.getKind() and
-        fwdFlowThroughOutOfCall(_, ccc, ret, _, allowsFieldFlow, argApa, apa, config) and
-        (if allowsFieldFlow = false then ap instanceof ApNil else any())
+      exists(DataFlowCall call, ApApprox apa, boolean allowsFieldFlow, ApApprox innerArgApa |
+        returnFlowsThrough0(call, state, ccc, ap, apa, ret, p, argAp, innerArgApa, config) and
+        flowThroughOutOfCall(call, ccc, ret, _, allowsFieldFlow, innerArgApa, apa, config) and
+        pos = ret.getReturnPosition() and
+        if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
     pragma[nomagic]
     private predicate flowThroughIntoCall(
-      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp,
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp, Ap ap,
       Configuration config
     ) {
       exists(ApApprox argApa |
@@ -1620,7 +1607,7 @@ private module MkStage<StageSig PrevStage> {
           allowsFieldFlow, argApa, pragma[only_bind_into](config)) and
         fwdFlow(arg, _, _, _, _, pragma[only_bind_into](argAp), argApa,
           pragma[only_bind_into](config)) and
-        returnFlowsThrough(_, _, _, _, p, pragma[only_bind_into](argAp), _,
+        returnFlowsThrough(_, _, _, _, p, pragma[only_bind_into](argAp), ap,
           pragma[only_bind_into](config)) and
         if allowsFieldFlow = false then argAp instanceof ApNil else any()
       )
@@ -1639,12 +1626,13 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate flowOutOfCallAp(
-      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
+      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
       Ap ap, Configuration config
     ) {
       exists(ApApprox apa |
-        flowOutOfCallApa(call, ret, kind, out, allowsFieldFlow, apa, config) and
-        fwdFlow(ret, _, _, _, _, ap, apa, config)
+        flowOutOfCallApa(call, ret, _, out, allowsFieldFlow, apa, config) and
+        fwdFlow(ret, _, _, _, _, ap, apa, config) and
+        pos = ret.getReturnPosition()
       )
     }
 
@@ -1739,17 +1727,17 @@ private module MkStage<StageSig PrevStage> {
       )
       or
       // flow through a callable
-      exists(DataFlowCall call, ReturnKindExt returnKind0, Ap returnAp0 |
-        revFlowInToReturn(call, node, state, returnKind0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
+      exists(DataFlowCall call, ParamNodeEx p, ReturnPosition pos, Ap innerReturnAp |
+        revFlowThrough(call, returnCtx, p, state, pos, returnAp, ap, innerReturnAp, config) and
+        flowThroughIntoCall(call, node, p, _, ap, innerReturnAp, config)
       )
       or
       // flow out of a callable
-      exists(ReturnKindExt kind |
-        revFlowOut(_, node, kind, state, _, _, ap, config) and
-        if returnFlowsThrough(node, kind, state, _, _, _, ap, config)
+      exists(ReturnPosition pos |
+        revFlowOut(_, node, pos, state, _, _, ap, config) and
+        if returnFlowsThrough(node, pos, state, _, _, _, ap, config)
         then (
-          returnCtx = TReturnCtxMaybeFlowThrough(kind) and
+          returnCtx = TReturnCtxMaybeFlowThrough(pos) and
           returnAp = apSome(ap)
         ) else (
           returnCtx = TReturnCtxNoFlowThrough() and returnAp = apNone()
@@ -1782,47 +1770,33 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate revFlowOut(
-      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, FlowState state, ReturnCtx returnCtx,
+      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, FlowState state, ReturnCtx returnCtx,
       ApOption returnAp, Ap ap, Configuration config
     ) {
       exists(NodeEx out, boolean allowsFieldFlow |
         revFlow(out, state, returnCtx, returnAp, ap, config) and
-        flowOutOfCallAp(call, ret, kind, out, allowsFieldFlow, ap, config) and
+        flowOutOfCallAp(call, ret, pos, out, allowsFieldFlow, ap, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
-    /**
-     * Same as `flowThroughIntoCall`, but restricted to calls that are reached
-     * in the flow covered by `revFlow`, where data might flow through the target
-     * callable and back out at `call`.
-     */
-    pragma[nomagic]
-    private predicate revFlowThroughIntoCall(
-      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp,
-      Configuration config
-    ) {
-      flowThroughIntoCall(call, arg, p, allowsFieldFlow, argAp, config) and
-      revFlowIsReturned(call, _, _, _, _, config)
-    }
-
     pragma[nomagic]
     private predicate revFlowParamToReturn(
-      ParamNodeEx p, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap, Configuration config
+      ParamNodeEx p, FlowState state, ReturnPosition pos, Ap returnAp, Ap ap, Configuration config
     ) {
-      revFlow(p, state, TReturnCtxMaybeFlowThrough(kind), apSome(returnAp), ap, config) and
-      parameterFlowThroughAllowed(p, kind)
+      revFlow(pragma[only_bind_into](p), state, TReturnCtxMaybeFlowThrough(pos), apSome(returnAp),
+        pragma[only_bind_into](ap), pragma[only_bind_into](config)) and
+      parameterFlowThroughAllowed(p, pos.getKind()) and
+      PrevStage::parameterMayFlowThrough(p, getApprox(ap), config)
     }
 
     pragma[nomagic]
-    private predicate revFlowInToReturn(
-      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap,
-      Configuration config
+    private predicate revFlowThrough(
+      DataFlowCall call, ReturnCtx returnCtx, ParamNodeEx p, FlowState state, ReturnPosition pos,
+      ApOption returnAp, Ap ap, Ap innerReturnAp, Configuration config
     ) {
-      exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlowParamToReturn(p, state, kind, returnAp, ap, config) and
-        revFlowThroughIntoCall(call, arg, p, allowsFieldFlow, ap, config)
-      )
+      revFlowParamToReturn(p, state, pos, innerReturnAp, ap, config) and
+      revFlowIsReturned(call, returnCtx, returnAp, pos, innerReturnAp, config)
     }
 
     /**
@@ -1832,12 +1806,12 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate revFlowIsReturned(
-      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnKindExt kind, Ap ap,
+      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnPosition pos, Ap ap,
       Configuration config
     ) {
       exists(RetNodeEx ret, FlowState state, CcCall ccc |
-        revFlowOut(call, ret, kind, state, returnCtx, returnAp, ap, config) and
-        returnFlowsThrough(ret, kind, state, ccc, _, _, ap, config) and
+        revFlowOut(call, ret, pos, state, returnCtx, returnAp, ap, config) and
+        returnFlowsThrough(ret, pos, state, ccc, _, _, ap, config) and
         matchesCall(ccc, call)
       )
     }
@@ -1915,17 +1889,17 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate parameterFlowsThroughRev(
-      ParamNodeEx p, Ap ap, ReturnKindExt kind, Ap returnAp, Configuration config
+      ParamNodeEx p, Ap ap, ReturnPosition pos, Ap returnAp, Configuration config
     ) {
-      revFlow(p, _, TReturnCtxMaybeFlowThrough(kind), apSome(returnAp), ap, config) and
-      parameterFlowThroughAllowed(p, kind)
+      revFlow(p, _, TReturnCtxMaybeFlowThrough(pos), apSome(returnAp), ap, config) and
+      parameterFlowThroughAllowed(p, pos.getKind())
     }
 
     pragma[nomagic]
     predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
-      exists(RetNodeEx ret, ReturnKindExt kind |
-        returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
-        parameterFlowsThroughRev(p, ap, kind, _, config)
+      exists(RetNodeEx ret, ReturnPosition pos |
+        returnFlowsThrough(ret, pos, _, _, p, ap, _, config) and
+        parameterFlowsThroughRev(p, ap, pos, _, config)
       )
     }
 
@@ -1933,20 +1907,21 @@ private module MkStage<StageSig PrevStage> {
     predicate returnMayFlowThrough(
       RetNodeEx ret, Ap argAp, Ap ap, ReturnKindExt kind, Configuration config
     ) {
-      exists(ParamNodeEx p |
-        returnFlowsThrough(ret, kind, _, _, p, argAp, ap, config) and
-        parameterFlowsThroughRev(p, argAp, kind, ap, config)
+      exists(ParamNodeEx p, ReturnPosition pos |
+        returnFlowsThrough(ret, pos, _, _, p, argAp, ap, config) and
+        parameterFlowsThroughRev(p, argAp, pos, ap, config) and
+        kind = pos.getKind()
       )
     }
 
     pragma[nomagic]
-    predicate revFlowInToReturnIsReturned(
+    private predicate revFlowThroughArg(
       DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnCtx returnCtx, ApOption returnAp,
       Ap ap, Configuration config
     ) {
-      exists(ReturnKindExt returnKind0, Ap returnAp0 |
-        revFlowInToReturn(call, arg, state, returnKind0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
+      exists(ParamNodeEx p, ReturnPosition pos, Ap innerReturnAp |
+        revFlowThrough(call, returnCtx, p, state, pos, returnAp, ap, innerReturnAp, config) and
+        flowThroughIntoCall(call, arg, p, _, ap, innerReturnAp, config)
       )
     }
 
@@ -1954,7 +1929,7 @@ private module MkStage<StageSig PrevStage> {
     predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
       exists(ArgNodeEx arg, FlowState state, ReturnCtx returnCtx, ApOption returnAp, Ap ap |
         revFlow(arg, state, returnCtx, returnAp, ap, config) and
-        revFlowInToReturnIsReturned(call, arg, state, returnCtx, returnAp, ap, config)
+        revFlowThroughArg(call, arg, state, returnCtx, returnAp, ap, config)
       )
     }
 
@@ -1967,8 +1942,9 @@ private module MkStage<StageSig PrevStage> {
       conscand = count(TypedContent f0, Ap ap | fwdConsCand(f0, ap, config)) and
       states = count(FlowState state | fwdFlow(_, state, _, _, _, _, config)) and
       tuples =
-        count(NodeEx n, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-          Ap ap | fwdFlow(n, state, cc, summaryCtx, argAp, ap, config))
+        count(NodeEx n, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap |
+          fwdFlow(n, state, cc, summaryCtx, argAp, ap, config)
+        )
       or
       fwd = false and
       nodes = count(NodeEx node | revFlow(node, _, _, _, _, config)) and
@@ -2823,13 +2799,12 @@ private Configuration unbindConf(Configuration conf) {
 
 pragma[nomagic]
 private predicate nodeMayUseSummary0(
-  NodeEx n, DataFlowCallable c, ParameterPosition pos, FlowState state, AccessPathApprox apa,
-  Configuration config
+  NodeEx n, ParamNodeEx p, FlowState state, AccessPathApprox apa, Configuration config
 ) {
   exists(AccessPathApprox apa0 |
-    c = n.getEnclosingCallable() and
+    Stage5::parameterMayFlowThrough(p, _, _) and
     Stage5::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
-    Stage5::fwdFlow(n, state, any(CallContextCall ccc), TParameterPositionSome(pos),
+    Stage5::fwdFlow(n, state, any(CallContextCall ccc), TParamNodeSome(p.asNode()),
       TAccessPathApproxSome(apa), apa0, config)
   )
 }
@@ -2838,10 +2813,9 @@ pragma[nomagic]
 private predicate nodeMayUseSummary(
   NodeEx n, FlowState state, AccessPathApprox apa, Configuration config
 ) {
-  exists(DataFlowCallable c, ParameterPosition pos, ParamNodeEx p |
+  exists(ParamNodeEx p |
     Stage5::parameterMayFlowThrough(p, apa, config) and
-    nodeMayUseSummary0(n, c, pos, state, apa, config) and
-    p.isParameterOf(c, pos)
+    nodeMayUseSummary0(n, p, state, apa, config)
   )
 }
 
diff --git a/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImpl3.qll b/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImpl3.qll
index 6741ccc2f06..23d11a38842 100644
--- a/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImpl3.qll
+++ b/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImpl3.qll
@@ -1327,8 +1327,8 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     additional predicate fwdFlow(
-      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      Ap ap, ApApprox apa, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      ApApprox apa, Configuration config
     ) {
       fwdFlow0(node, state, cc, summaryCtx, argAp, ap, apa, config) and
       PrevStage::revFlow(node, state, apa, config) and
@@ -1337,21 +1337,21 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[inline]
     additional predicate fwdFlow(
-      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      Ap ap, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      Configuration config
     ) {
       fwdFlow(node, state, cc, summaryCtx, argAp, ap, _, config)
     }
 
     pragma[nomagic]
     private predicate fwdFlow0(
-      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      Ap ap, ApApprox apa, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      ApApprox apa, Configuration config
     ) {
       sourceNode(node, state, config) and
       (if hasSourceCallCtx(config) then cc = ccSomeCall() else cc = ccNone()) and
       argAp = apNone() and
-      summaryCtx = TParameterPositionNone() and
+      summaryCtx = TParamNodeNone() and
       ap = getApNil(node) and
       apa = getApprox(ap)
       or
@@ -1372,7 +1372,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, apa, pragma[only_bind_into](config)) and
         jumpStep(mid, node, config) and
         cc = ccNone() and
-        summaryCtx = TParameterPositionNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone()
       )
       or
@@ -1380,7 +1380,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, state, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStep(mid, node, config) and
         cc = ccNone() and
-        summaryCtx = TParameterPositionNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone() and
         ap = getApNil(node) and
         apa = getApprox(ap)
@@ -1390,7 +1390,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, state0, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStateStep(mid, state0, node, state, config) and
         cc = ccNone() and
-        summaryCtx = TParameterPositionNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone() and
         ap = getApNil(node) and
         apa = getApprox(ap)
@@ -1414,10 +1414,10 @@ private module MkStage<StageSig PrevStage> {
       fwdFlowIn(_, node, state, _, cc, _, _, ap, apa, config) and
       if PrevStage::parameterMayFlowThrough(node, apa, config)
       then (
-        summaryCtx = TParameterPositionSome(node.(ParamNodeEx).getPosition()) and
+        summaryCtx = TParamNodeSome(node.asNode()) and
         argAp = apSome(ap)
       ) else (
-        summaryCtx = TParameterPositionNone() and argAp = apNone()
+        summaryCtx = TParamNodeNone() and argAp = apNone()
       )
       or
       // flow out of a callable
@@ -1433,16 +1433,19 @@ private module MkStage<StageSig PrevStage> {
       )
       or
       // flow through a callable
-      exists(DataFlowCall call, ParameterPosition summaryCtx0, Ap argAp0 |
-        fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, apa, config) and
-        fwdFlowIsEntered(call, cc, summaryCtx, argAp, summaryCtx0, argAp0, config)
+      exists(
+        DataFlowCall call, CcCall ccc, RetNodeEx ret, boolean allowsFieldFlow, ApApprox innerArgApa
+      |
+        fwdFlowThrough(call, cc, state, ccc, summaryCtx, argAp, ap, apa, ret, innerArgApa, config) and
+        flowThroughOutOfCall(call, ccc, ret, node, allowsFieldFlow, innerArgApa, apa, config) and
+        if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
     pragma[nomagic]
     private predicate fwdFlowStore(
       NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc,
-      ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
+      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
     ) {
       exists(DataFlowType contentType, ApApprox apa1 |
         fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, apa1, config) and
@@ -1473,8 +1476,8 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowRead0(
-      NodeEx node1, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      ApNonNil ap, Configuration config
+      NodeEx node1, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, ApNonNil ap,
+      Configuration config
     ) {
       fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, _, _, config)
@@ -1483,7 +1486,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowRead(
       Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc,
-      ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
+      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
     ) {
       fwdFlowRead0(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, c, node2, config) and
@@ -1493,7 +1496,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowIn(
       DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, CcCall innercc,
-      ParameterPositionOption summaryCtx, ApOption argAp, Ap ap, ApApprox apa, Configuration config
+      ParamNodeOption summaryCtx, ApOption argAp, Ap ap, ApApprox apa, Configuration config
     ) {
       exists(ArgNodeEx arg, boolean allowsFieldFlow |
         fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, apa, config) and
@@ -1505,64 +1508,38 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowRetFromArg(
-      RetNodeEx ret, FlowState state, CcCall ccc, ParameterPosition summaryCtx, ParamNodeEx p,
-      Ap argAp, ApApprox argApa, Ap ap, ApApprox apa, Configuration config
+      RetNodeEx ret, FlowState state, CcCall ccc, ParamNodeEx summaryCtx, Ap argAp, ApApprox argApa,
+      Ap ap, ApApprox apa, Configuration config
     ) {
-      exists(DataFlowCallable c, ReturnKindExt kind |
+      exists(ReturnKindExt kind |
         fwdFlow(pragma[only_bind_into](ret), state, ccc,
-          TParameterPositionSome(pragma[only_bind_into](summaryCtx)), apSome(argAp), ap, apa, config) and
-        getApprox(argAp) = argApa and
-        c = ret.getEnclosingCallable() and
+          TParamNodeSome(pragma[only_bind_into](summaryCtx.asNode())),
+          pragma[only_bind_into](apSome(argAp)), ap, pragma[only_bind_into](apa),
+          pragma[only_bind_into](config)) and
         kind = ret.getKind() and
-        p.isParameterOf(c, pragma[only_bind_into](summaryCtx)) and
-        parameterFlowThroughAllowed(p, kind)
+        parameterFlowThroughAllowed(summaryCtx, kind) and
+        argApa = getApprox(argAp) and
+        PrevStage::returnMayFlowThrough(ret, argApa, apa, kind, pragma[only_bind_into](config))
       )
     }
 
     pragma[inline]
-    private predicate fwdFlowInMayFlowThrough(
-      DataFlowCall call, Cc cc, CcCall innerCc, ParameterPositionOption summaryCtx, ApOption argAp,
-      ParamNodeEx param, Ap ap, ApApprox apa, Configuration config
+    private predicate fwdFlowThrough0(
+      DataFlowCall call, Cc cc, FlowState state, CcCall ccc, ParamNodeOption summaryCtx,
+      ApOption argAp, Ap ap, ApApprox apa, RetNodeEx ret, ParamNodeEx innerSummaryCtx,
+      Ap innerArgAp, ApApprox innerArgApa, Configuration config
     ) {
-      fwdFlowIn(call, pragma[only_bind_into](param), _, cc, innerCc, summaryCtx, argAp, ap,
-        pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
-      PrevStage::parameterMayFlowThrough(param, apa, config)
-    }
-
-    // dedup before joining with `flowThroughOutOfCall`
-    pragma[nomagic]
-    private predicate fwdFlowInMayFlowThroughProj(
-      DataFlowCall call, CcCall innerCc, ApApprox apa, Configuration config
-    ) {
-      fwdFlowInMayFlowThrough(call, _, innerCc, _, _, _, _, apa, config)
-    }
-
-    /**
-     * Same as `flowThroughOutOfCall`, but restricted to calls that are reached
-     * in the flow covered by `fwdFlow`, where data might flow through the target
-     * callable and back out at `call`.
-     */
-    pragma[nomagic]
-    private predicate fwdFlowThroughOutOfCall(
-      DataFlowCall call, CcCall ccc, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow,
-      ApApprox argApa, ApApprox apa, Configuration config
-    ) {
-      fwdFlowInMayFlowThroughProj(call, ccc, argApa, config) and
-      flowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, argApa, apa, config)
+      fwdFlowRetFromArg(ret, state, ccc, innerSummaryCtx, innerArgAp, innerArgApa, ap, apa, config) and
+      fwdFlowIsEntered(call, cc, ccc, summaryCtx, argAp, innerSummaryCtx, innerArgAp, config)
     }
 
     pragma[nomagic]
-    private predicate fwdFlowOutFromArg(
-      DataFlowCall call, NodeEx out, FlowState state, ParameterPosition summaryCtx, Ap argAp, Ap ap,
-      ApApprox apa, Configuration config
+    private predicate fwdFlowThrough(
+      DataFlowCall call, Cc cc, FlowState state, CcCall ccc, ParamNodeOption summaryCtx,
+      ApOption argAp, Ap ap, ApApprox apa, RetNodeEx ret, ApApprox innerArgApa, Configuration config
     ) {
-      exists(RetNodeEx ret, boolean allowsFieldFlow, CcCall ccc, ApApprox argApa |
-        fwdFlowRetFromArg(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc),
-          summaryCtx, _, argAp, pragma[only_bind_into](argApa), ap, pragma[only_bind_into](apa),
-          config) and
-        fwdFlowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, argApa, apa, config) and
-        (if allowsFieldFlow = false then ap instanceof ApNil else any())
-      )
+      fwdFlowThrough0(call, cc, state, ccc, summaryCtx, argAp, ap, apa, ret, _, _, innerArgApa,
+        config)
     }
 
     /**
@@ -1571,12 +1548,14 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate fwdFlowIsEntered(
-      DataFlowCall call, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      ParameterPosition pos, Ap ap, Configuration config
+      DataFlowCall call, Cc cc, CcCall innerCc, ParamNodeOption summaryCtx, ApOption argAp,
+      ParamNodeEx p, Ap ap, Configuration config
     ) {
-      exists(ParamNodeEx param |
-        fwdFlowInMayFlowThrough(call, cc, _, summaryCtx, argAp, param, ap, _, config) and
-        pos = param.getPosition()
+      exists(ApApprox apa |
+        fwdFlowIn(call, pragma[only_bind_into](p), _, cc, innerCc, summaryCtx, argAp, ap,
+          pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
+        PrevStage::parameterMayFlowThrough(p, apa, config) and
+        PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config))
       )
     }
 
@@ -1596,23 +1575,31 @@ private module MkStage<StageSig PrevStage> {
       fwdFlowConsCand(ap1, c, ap2, config)
     }
 
+    pragma[nomagic]
+    private predicate returnFlowsThrough0(
+      DataFlowCall call, FlowState state, CcCall ccc, Ap ap, ApApprox apa, RetNodeEx ret,
+      ParamNodeEx innerSummaryCtx, Ap innerArgAp, ApApprox innerArgApa, Configuration config
+    ) {
+      fwdFlowThrough0(call, _, state, ccc, _, _, ap, apa, ret, innerSummaryCtx, innerArgAp,
+        innerArgApa, config)
+    }
+
     pragma[nomagic]
     private predicate returnFlowsThrough(
-      RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, ParamNodeEx p, Ap argAp,
+      RetNodeEx ret, ReturnPosition pos, FlowState state, CcCall ccc, ParamNodeEx p, Ap argAp,
       Ap ap, Configuration config
     ) {
-      exists(boolean allowsFieldFlow, ApApprox argApa, ApApprox apa |
-        fwdFlowRetFromArg(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc), _, p,
-          argAp, pragma[only_bind_into](argApa), ap, pragma[only_bind_into](apa), config) and
-        kind = ret.getKind() and
-        fwdFlowThroughOutOfCall(_, ccc, ret, _, allowsFieldFlow, argApa, apa, config) and
-        (if allowsFieldFlow = false then ap instanceof ApNil else any())
+      exists(DataFlowCall call, ApApprox apa, boolean allowsFieldFlow, ApApprox innerArgApa |
+        returnFlowsThrough0(call, state, ccc, ap, apa, ret, p, argAp, innerArgApa, config) and
+        flowThroughOutOfCall(call, ccc, ret, _, allowsFieldFlow, innerArgApa, apa, config) and
+        pos = ret.getReturnPosition() and
+        if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
     pragma[nomagic]
     private predicate flowThroughIntoCall(
-      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp,
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp, Ap ap,
       Configuration config
     ) {
       exists(ApApprox argApa |
@@ -1620,7 +1607,7 @@ private module MkStage<StageSig PrevStage> {
           allowsFieldFlow, argApa, pragma[only_bind_into](config)) and
         fwdFlow(arg, _, _, _, _, pragma[only_bind_into](argAp), argApa,
           pragma[only_bind_into](config)) and
-        returnFlowsThrough(_, _, _, _, p, pragma[only_bind_into](argAp), _,
+        returnFlowsThrough(_, _, _, _, p, pragma[only_bind_into](argAp), ap,
           pragma[only_bind_into](config)) and
         if allowsFieldFlow = false then argAp instanceof ApNil else any()
       )
@@ -1639,12 +1626,13 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate flowOutOfCallAp(
-      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
+      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
       Ap ap, Configuration config
     ) {
       exists(ApApprox apa |
-        flowOutOfCallApa(call, ret, kind, out, allowsFieldFlow, apa, config) and
-        fwdFlow(ret, _, _, _, _, ap, apa, config)
+        flowOutOfCallApa(call, ret, _, out, allowsFieldFlow, apa, config) and
+        fwdFlow(ret, _, _, _, _, ap, apa, config) and
+        pos = ret.getReturnPosition()
       )
     }
 
@@ -1739,17 +1727,17 @@ private module MkStage<StageSig PrevStage> {
       )
       or
       // flow through a callable
-      exists(DataFlowCall call, ReturnKindExt returnKind0, Ap returnAp0 |
-        revFlowInToReturn(call, node, state, returnKind0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
+      exists(DataFlowCall call, ParamNodeEx p, ReturnPosition pos, Ap innerReturnAp |
+        revFlowThrough(call, returnCtx, p, state, pos, returnAp, ap, innerReturnAp, config) and
+        flowThroughIntoCall(call, node, p, _, ap, innerReturnAp, config)
       )
       or
       // flow out of a callable
-      exists(ReturnKindExt kind |
-        revFlowOut(_, node, kind, state, _, _, ap, config) and
-        if returnFlowsThrough(node, kind, state, _, _, _, ap, config)
+      exists(ReturnPosition pos |
+        revFlowOut(_, node, pos, state, _, _, ap, config) and
+        if returnFlowsThrough(node, pos, state, _, _, _, ap, config)
         then (
-          returnCtx = TReturnCtxMaybeFlowThrough(kind) and
+          returnCtx = TReturnCtxMaybeFlowThrough(pos) and
           returnAp = apSome(ap)
         ) else (
           returnCtx = TReturnCtxNoFlowThrough() and returnAp = apNone()
@@ -1782,47 +1770,33 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate revFlowOut(
-      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, FlowState state, ReturnCtx returnCtx,
+      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, FlowState state, ReturnCtx returnCtx,
       ApOption returnAp, Ap ap, Configuration config
     ) {
       exists(NodeEx out, boolean allowsFieldFlow |
         revFlow(out, state, returnCtx, returnAp, ap, config) and
-        flowOutOfCallAp(call, ret, kind, out, allowsFieldFlow, ap, config) and
+        flowOutOfCallAp(call, ret, pos, out, allowsFieldFlow, ap, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
-    /**
-     * Same as `flowThroughIntoCall`, but restricted to calls that are reached
-     * in the flow covered by `revFlow`, where data might flow through the target
-     * callable and back out at `call`.
-     */
-    pragma[nomagic]
-    private predicate revFlowThroughIntoCall(
-      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp,
-      Configuration config
-    ) {
-      flowThroughIntoCall(call, arg, p, allowsFieldFlow, argAp, config) and
-      revFlowIsReturned(call, _, _, _, _, config)
-    }
-
     pragma[nomagic]
     private predicate revFlowParamToReturn(
-      ParamNodeEx p, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap, Configuration config
+      ParamNodeEx p, FlowState state, ReturnPosition pos, Ap returnAp, Ap ap, Configuration config
     ) {
-      revFlow(p, state, TReturnCtxMaybeFlowThrough(kind), apSome(returnAp), ap, config) and
-      parameterFlowThroughAllowed(p, kind)
+      revFlow(pragma[only_bind_into](p), state, TReturnCtxMaybeFlowThrough(pos), apSome(returnAp),
+        pragma[only_bind_into](ap), pragma[only_bind_into](config)) and
+      parameterFlowThroughAllowed(p, pos.getKind()) and
+      PrevStage::parameterMayFlowThrough(p, getApprox(ap), config)
     }
 
     pragma[nomagic]
-    private predicate revFlowInToReturn(
-      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap,
-      Configuration config
+    private predicate revFlowThrough(
+      DataFlowCall call, ReturnCtx returnCtx, ParamNodeEx p, FlowState state, ReturnPosition pos,
+      ApOption returnAp, Ap ap, Ap innerReturnAp, Configuration config
     ) {
-      exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlowParamToReturn(p, state, kind, returnAp, ap, config) and
-        revFlowThroughIntoCall(call, arg, p, allowsFieldFlow, ap, config)
-      )
+      revFlowParamToReturn(p, state, pos, innerReturnAp, ap, config) and
+      revFlowIsReturned(call, returnCtx, returnAp, pos, innerReturnAp, config)
     }
 
     /**
@@ -1832,12 +1806,12 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate revFlowIsReturned(
-      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnKindExt kind, Ap ap,
+      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnPosition pos, Ap ap,
       Configuration config
     ) {
       exists(RetNodeEx ret, FlowState state, CcCall ccc |
-        revFlowOut(call, ret, kind, state, returnCtx, returnAp, ap, config) and
-        returnFlowsThrough(ret, kind, state, ccc, _, _, ap, config) and
+        revFlowOut(call, ret, pos, state, returnCtx, returnAp, ap, config) and
+        returnFlowsThrough(ret, pos, state, ccc, _, _, ap, config) and
         matchesCall(ccc, call)
       )
     }
@@ -1915,17 +1889,17 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate parameterFlowsThroughRev(
-      ParamNodeEx p, Ap ap, ReturnKindExt kind, Ap returnAp, Configuration config
+      ParamNodeEx p, Ap ap, ReturnPosition pos, Ap returnAp, Configuration config
     ) {
-      revFlow(p, _, TReturnCtxMaybeFlowThrough(kind), apSome(returnAp), ap, config) and
-      parameterFlowThroughAllowed(p, kind)
+      revFlow(p, _, TReturnCtxMaybeFlowThrough(pos), apSome(returnAp), ap, config) and
+      parameterFlowThroughAllowed(p, pos.getKind())
     }
 
     pragma[nomagic]
     predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
-      exists(RetNodeEx ret, ReturnKindExt kind |
-        returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
-        parameterFlowsThroughRev(p, ap, kind, _, config)
+      exists(RetNodeEx ret, ReturnPosition pos |
+        returnFlowsThrough(ret, pos, _, _, p, ap, _, config) and
+        parameterFlowsThroughRev(p, ap, pos, _, config)
       )
     }
 
@@ -1933,20 +1907,21 @@ private module MkStage<StageSig PrevStage> {
     predicate returnMayFlowThrough(
       RetNodeEx ret, Ap argAp, Ap ap, ReturnKindExt kind, Configuration config
     ) {
-      exists(ParamNodeEx p |
-        returnFlowsThrough(ret, kind, _, _, p, argAp, ap, config) and
-        parameterFlowsThroughRev(p, argAp, kind, ap, config)
+      exists(ParamNodeEx p, ReturnPosition pos |
+        returnFlowsThrough(ret, pos, _, _, p, argAp, ap, config) and
+        parameterFlowsThroughRev(p, argAp, pos, ap, config) and
+        kind = pos.getKind()
       )
     }
 
     pragma[nomagic]
-    predicate revFlowInToReturnIsReturned(
+    private predicate revFlowThroughArg(
       DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnCtx returnCtx, ApOption returnAp,
       Ap ap, Configuration config
     ) {
-      exists(ReturnKindExt returnKind0, Ap returnAp0 |
-        revFlowInToReturn(call, arg, state, returnKind0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
+      exists(ParamNodeEx p, ReturnPosition pos, Ap innerReturnAp |
+        revFlowThrough(call, returnCtx, p, state, pos, returnAp, ap, innerReturnAp, config) and
+        flowThroughIntoCall(call, arg, p, _, ap, innerReturnAp, config)
       )
     }
 
@@ -1954,7 +1929,7 @@ private module MkStage<StageSig PrevStage> {
     predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
       exists(ArgNodeEx arg, FlowState state, ReturnCtx returnCtx, ApOption returnAp, Ap ap |
         revFlow(arg, state, returnCtx, returnAp, ap, config) and
-        revFlowInToReturnIsReturned(call, arg, state, returnCtx, returnAp, ap, config)
+        revFlowThroughArg(call, arg, state, returnCtx, returnAp, ap, config)
       )
     }
 
@@ -1967,8 +1942,9 @@ private module MkStage<StageSig PrevStage> {
       conscand = count(TypedContent f0, Ap ap | fwdConsCand(f0, ap, config)) and
       states = count(FlowState state | fwdFlow(_, state, _, _, _, _, config)) and
       tuples =
-        count(NodeEx n, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-          Ap ap | fwdFlow(n, state, cc, summaryCtx, argAp, ap, config))
+        count(NodeEx n, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap |
+          fwdFlow(n, state, cc, summaryCtx, argAp, ap, config)
+        )
       or
       fwd = false and
       nodes = count(NodeEx node | revFlow(node, _, _, _, _, config)) and
@@ -2823,13 +2799,12 @@ private Configuration unbindConf(Configuration conf) {
 
 pragma[nomagic]
 private predicate nodeMayUseSummary0(
-  NodeEx n, DataFlowCallable c, ParameterPosition pos, FlowState state, AccessPathApprox apa,
-  Configuration config
+  NodeEx n, ParamNodeEx p, FlowState state, AccessPathApprox apa, Configuration config
 ) {
   exists(AccessPathApprox apa0 |
-    c = n.getEnclosingCallable() and
+    Stage5::parameterMayFlowThrough(p, _, _) and
     Stage5::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
-    Stage5::fwdFlow(n, state, any(CallContextCall ccc), TParameterPositionSome(pos),
+    Stage5::fwdFlow(n, state, any(CallContextCall ccc), TParamNodeSome(p.asNode()),
       TAccessPathApproxSome(apa), apa0, config)
   )
 }
@@ -2838,10 +2813,9 @@ pragma[nomagic]
 private predicate nodeMayUseSummary(
   NodeEx n, FlowState state, AccessPathApprox apa, Configuration config
 ) {
-  exists(DataFlowCallable c, ParameterPosition pos, ParamNodeEx p |
+  exists(ParamNodeEx p |
     Stage5::parameterMayFlowThrough(p, apa, config) and
-    nodeMayUseSummary0(n, c, pos, state, apa, config) and
-    p.isParameterOf(c, pos)
+    nodeMayUseSummary0(n, p, state, apa, config)
   )
 }
 
diff --git a/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImpl4.qll b/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImpl4.qll
index 6741ccc2f06..23d11a38842 100644
--- a/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImpl4.qll
+++ b/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImpl4.qll
@@ -1327,8 +1327,8 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     additional predicate fwdFlow(
-      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      Ap ap, ApApprox apa, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      ApApprox apa, Configuration config
     ) {
       fwdFlow0(node, state, cc, summaryCtx, argAp, ap, apa, config) and
       PrevStage::revFlow(node, state, apa, config) and
@@ -1337,21 +1337,21 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[inline]
     additional predicate fwdFlow(
-      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      Ap ap, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      Configuration config
     ) {
       fwdFlow(node, state, cc, summaryCtx, argAp, ap, _, config)
     }
 
     pragma[nomagic]
     private predicate fwdFlow0(
-      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      Ap ap, ApApprox apa, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      ApApprox apa, Configuration config
     ) {
       sourceNode(node, state, config) and
       (if hasSourceCallCtx(config) then cc = ccSomeCall() else cc = ccNone()) and
       argAp = apNone() and
-      summaryCtx = TParameterPositionNone() and
+      summaryCtx = TParamNodeNone() and
       ap = getApNil(node) and
       apa = getApprox(ap)
       or
@@ -1372,7 +1372,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, apa, pragma[only_bind_into](config)) and
         jumpStep(mid, node, config) and
         cc = ccNone() and
-        summaryCtx = TParameterPositionNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone()
       )
       or
@@ -1380,7 +1380,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, state, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStep(mid, node, config) and
         cc = ccNone() and
-        summaryCtx = TParameterPositionNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone() and
         ap = getApNil(node) and
         apa = getApprox(ap)
@@ -1390,7 +1390,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, state0, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStateStep(mid, state0, node, state, config) and
         cc = ccNone() and
-        summaryCtx = TParameterPositionNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone() and
         ap = getApNil(node) and
         apa = getApprox(ap)
@@ -1414,10 +1414,10 @@ private module MkStage<StageSig PrevStage> {
       fwdFlowIn(_, node, state, _, cc, _, _, ap, apa, config) and
       if PrevStage::parameterMayFlowThrough(node, apa, config)
       then (
-        summaryCtx = TParameterPositionSome(node.(ParamNodeEx).getPosition()) and
+        summaryCtx = TParamNodeSome(node.asNode()) and
         argAp = apSome(ap)
       ) else (
-        summaryCtx = TParameterPositionNone() and argAp = apNone()
+        summaryCtx = TParamNodeNone() and argAp = apNone()
       )
       or
       // flow out of a callable
@@ -1433,16 +1433,19 @@ private module MkStage<StageSig PrevStage> {
       )
       or
       // flow through a callable
-      exists(DataFlowCall call, ParameterPosition summaryCtx0, Ap argAp0 |
-        fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, apa, config) and
-        fwdFlowIsEntered(call, cc, summaryCtx, argAp, summaryCtx0, argAp0, config)
+      exists(
+        DataFlowCall call, CcCall ccc, RetNodeEx ret, boolean allowsFieldFlow, ApApprox innerArgApa
+      |
+        fwdFlowThrough(call, cc, state, ccc, summaryCtx, argAp, ap, apa, ret, innerArgApa, config) and
+        flowThroughOutOfCall(call, ccc, ret, node, allowsFieldFlow, innerArgApa, apa, config) and
+        if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
     pragma[nomagic]
     private predicate fwdFlowStore(
       NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc,
-      ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
+      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
     ) {
       exists(DataFlowType contentType, ApApprox apa1 |
         fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, apa1, config) and
@@ -1473,8 +1476,8 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowRead0(
-      NodeEx node1, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      ApNonNil ap, Configuration config
+      NodeEx node1, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, ApNonNil ap,
+      Configuration config
     ) {
       fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, _, _, config)
@@ -1483,7 +1486,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowRead(
       Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc,
-      ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
+      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
     ) {
       fwdFlowRead0(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, c, node2, config) and
@@ -1493,7 +1496,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowIn(
       DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, CcCall innercc,
-      ParameterPositionOption summaryCtx, ApOption argAp, Ap ap, ApApprox apa, Configuration config
+      ParamNodeOption summaryCtx, ApOption argAp, Ap ap, ApApprox apa, Configuration config
     ) {
       exists(ArgNodeEx arg, boolean allowsFieldFlow |
         fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, apa, config) and
@@ -1505,64 +1508,38 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowRetFromArg(
-      RetNodeEx ret, FlowState state, CcCall ccc, ParameterPosition summaryCtx, ParamNodeEx p,
-      Ap argAp, ApApprox argApa, Ap ap, ApApprox apa, Configuration config
+      RetNodeEx ret, FlowState state, CcCall ccc, ParamNodeEx summaryCtx, Ap argAp, ApApprox argApa,
+      Ap ap, ApApprox apa, Configuration config
     ) {
-      exists(DataFlowCallable c, ReturnKindExt kind |
+      exists(ReturnKindExt kind |
         fwdFlow(pragma[only_bind_into](ret), state, ccc,
-          TParameterPositionSome(pragma[only_bind_into](summaryCtx)), apSome(argAp), ap, apa, config) and
-        getApprox(argAp) = argApa and
-        c = ret.getEnclosingCallable() and
+          TParamNodeSome(pragma[only_bind_into](summaryCtx.asNode())),
+          pragma[only_bind_into](apSome(argAp)), ap, pragma[only_bind_into](apa),
+          pragma[only_bind_into](config)) and
         kind = ret.getKind() and
-        p.isParameterOf(c, pragma[only_bind_into](summaryCtx)) and
-        parameterFlowThroughAllowed(p, kind)
+        parameterFlowThroughAllowed(summaryCtx, kind) and
+        argApa = getApprox(argAp) and
+        PrevStage::returnMayFlowThrough(ret, argApa, apa, kind, pragma[only_bind_into](config))
       )
     }
 
     pragma[inline]
-    private predicate fwdFlowInMayFlowThrough(
-      DataFlowCall call, Cc cc, CcCall innerCc, ParameterPositionOption summaryCtx, ApOption argAp,
-      ParamNodeEx param, Ap ap, ApApprox apa, Configuration config
+    private predicate fwdFlowThrough0(
+      DataFlowCall call, Cc cc, FlowState state, CcCall ccc, ParamNodeOption summaryCtx,
+      ApOption argAp, Ap ap, ApApprox apa, RetNodeEx ret, ParamNodeEx innerSummaryCtx,
+      Ap innerArgAp, ApApprox innerArgApa, Configuration config
     ) {
-      fwdFlowIn(call, pragma[only_bind_into](param), _, cc, innerCc, summaryCtx, argAp, ap,
-        pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
-      PrevStage::parameterMayFlowThrough(param, apa, config)
-    }
-
-    // dedup before joining with `flowThroughOutOfCall`
-    pragma[nomagic]
-    private predicate fwdFlowInMayFlowThroughProj(
-      DataFlowCall call, CcCall innerCc, ApApprox apa, Configuration config
-    ) {
-      fwdFlowInMayFlowThrough(call, _, innerCc, _, _, _, _, apa, config)
-    }
-
-    /**
-     * Same as `flowThroughOutOfCall`, but restricted to calls that are reached
-     * in the flow covered by `fwdFlow`, where data might flow through the target
-     * callable and back out at `call`.
-     */
-    pragma[nomagic]
-    private predicate fwdFlowThroughOutOfCall(
-      DataFlowCall call, CcCall ccc, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow,
-      ApApprox argApa, ApApprox apa, Configuration config
-    ) {
-      fwdFlowInMayFlowThroughProj(call, ccc, argApa, config) and
-      flowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, argApa, apa, config)
+      fwdFlowRetFromArg(ret, state, ccc, innerSummaryCtx, innerArgAp, innerArgApa, ap, apa, config) and
+      fwdFlowIsEntered(call, cc, ccc, summaryCtx, argAp, innerSummaryCtx, innerArgAp, config)
     }
 
     pragma[nomagic]
-    private predicate fwdFlowOutFromArg(
-      DataFlowCall call, NodeEx out, FlowState state, ParameterPosition summaryCtx, Ap argAp, Ap ap,
-      ApApprox apa, Configuration config
+    private predicate fwdFlowThrough(
+      DataFlowCall call, Cc cc, FlowState state, CcCall ccc, ParamNodeOption summaryCtx,
+      ApOption argAp, Ap ap, ApApprox apa, RetNodeEx ret, ApApprox innerArgApa, Configuration config
     ) {
-      exists(RetNodeEx ret, boolean allowsFieldFlow, CcCall ccc, ApApprox argApa |
-        fwdFlowRetFromArg(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc),
-          summaryCtx, _, argAp, pragma[only_bind_into](argApa), ap, pragma[only_bind_into](apa),
-          config) and
-        fwdFlowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, argApa, apa, config) and
-        (if allowsFieldFlow = false then ap instanceof ApNil else any())
-      )
+      fwdFlowThrough0(call, cc, state, ccc, summaryCtx, argAp, ap, apa, ret, _, _, innerArgApa,
+        config)
     }
 
     /**
@@ -1571,12 +1548,14 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate fwdFlowIsEntered(
-      DataFlowCall call, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      ParameterPosition pos, Ap ap, Configuration config
+      DataFlowCall call, Cc cc, CcCall innerCc, ParamNodeOption summaryCtx, ApOption argAp,
+      ParamNodeEx p, Ap ap, Configuration config
     ) {
-      exists(ParamNodeEx param |
-        fwdFlowInMayFlowThrough(call, cc, _, summaryCtx, argAp, param, ap, _, config) and
-        pos = param.getPosition()
+      exists(ApApprox apa |
+        fwdFlowIn(call, pragma[only_bind_into](p), _, cc, innerCc, summaryCtx, argAp, ap,
+          pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
+        PrevStage::parameterMayFlowThrough(p, apa, config) and
+        PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config))
       )
     }
 
@@ -1596,23 +1575,31 @@ private module MkStage<StageSig PrevStage> {
       fwdFlowConsCand(ap1, c, ap2, config)
     }
 
+    pragma[nomagic]
+    private predicate returnFlowsThrough0(
+      DataFlowCall call, FlowState state, CcCall ccc, Ap ap, ApApprox apa, RetNodeEx ret,
+      ParamNodeEx innerSummaryCtx, Ap innerArgAp, ApApprox innerArgApa, Configuration config
+    ) {
+      fwdFlowThrough0(call, _, state, ccc, _, _, ap, apa, ret, innerSummaryCtx, innerArgAp,
+        innerArgApa, config)
+    }
+
     pragma[nomagic]
     private predicate returnFlowsThrough(
-      RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, ParamNodeEx p, Ap argAp,
+      RetNodeEx ret, ReturnPosition pos, FlowState state, CcCall ccc, ParamNodeEx p, Ap argAp,
       Ap ap, Configuration config
     ) {
-      exists(boolean allowsFieldFlow, ApApprox argApa, ApApprox apa |
-        fwdFlowRetFromArg(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc), _, p,
-          argAp, pragma[only_bind_into](argApa), ap, pragma[only_bind_into](apa), config) and
-        kind = ret.getKind() and
-        fwdFlowThroughOutOfCall(_, ccc, ret, _, allowsFieldFlow, argApa, apa, config) and
-        (if allowsFieldFlow = false then ap instanceof ApNil else any())
+      exists(DataFlowCall call, ApApprox apa, boolean allowsFieldFlow, ApApprox innerArgApa |
+        returnFlowsThrough0(call, state, ccc, ap, apa, ret, p, argAp, innerArgApa, config) and
+        flowThroughOutOfCall(call, ccc, ret, _, allowsFieldFlow, innerArgApa, apa, config) and
+        pos = ret.getReturnPosition() and
+        if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
     pragma[nomagic]
     private predicate flowThroughIntoCall(
-      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp,
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp, Ap ap,
       Configuration config
     ) {
       exists(ApApprox argApa |
@@ -1620,7 +1607,7 @@ private module MkStage<StageSig PrevStage> {
           allowsFieldFlow, argApa, pragma[only_bind_into](config)) and
         fwdFlow(arg, _, _, _, _, pragma[only_bind_into](argAp), argApa,
           pragma[only_bind_into](config)) and
-        returnFlowsThrough(_, _, _, _, p, pragma[only_bind_into](argAp), _,
+        returnFlowsThrough(_, _, _, _, p, pragma[only_bind_into](argAp), ap,
           pragma[only_bind_into](config)) and
         if allowsFieldFlow = false then argAp instanceof ApNil else any()
       )
@@ -1639,12 +1626,13 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate flowOutOfCallAp(
-      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
+      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
       Ap ap, Configuration config
     ) {
       exists(ApApprox apa |
-        flowOutOfCallApa(call, ret, kind, out, allowsFieldFlow, apa, config) and
-        fwdFlow(ret, _, _, _, _, ap, apa, config)
+        flowOutOfCallApa(call, ret, _, out, allowsFieldFlow, apa, config) and
+        fwdFlow(ret, _, _, _, _, ap, apa, config) and
+        pos = ret.getReturnPosition()
       )
     }
 
@@ -1739,17 +1727,17 @@ private module MkStage<StageSig PrevStage> {
       )
       or
       // flow through a callable
-      exists(DataFlowCall call, ReturnKindExt returnKind0, Ap returnAp0 |
-        revFlowInToReturn(call, node, state, returnKind0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
+      exists(DataFlowCall call, ParamNodeEx p, ReturnPosition pos, Ap innerReturnAp |
+        revFlowThrough(call, returnCtx, p, state, pos, returnAp, ap, innerReturnAp, config) and
+        flowThroughIntoCall(call, node, p, _, ap, innerReturnAp, config)
       )
       or
       // flow out of a callable
-      exists(ReturnKindExt kind |
-        revFlowOut(_, node, kind, state, _, _, ap, config) and
-        if returnFlowsThrough(node, kind, state, _, _, _, ap, config)
+      exists(ReturnPosition pos |
+        revFlowOut(_, node, pos, state, _, _, ap, config) and
+        if returnFlowsThrough(node, pos, state, _, _, _, ap, config)
         then (
-          returnCtx = TReturnCtxMaybeFlowThrough(kind) and
+          returnCtx = TReturnCtxMaybeFlowThrough(pos) and
           returnAp = apSome(ap)
         ) else (
           returnCtx = TReturnCtxNoFlowThrough() and returnAp = apNone()
@@ -1782,47 +1770,33 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate revFlowOut(
-      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, FlowState state, ReturnCtx returnCtx,
+      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, FlowState state, ReturnCtx returnCtx,
       ApOption returnAp, Ap ap, Configuration config
     ) {
       exists(NodeEx out, boolean allowsFieldFlow |
         revFlow(out, state, returnCtx, returnAp, ap, config) and
-        flowOutOfCallAp(call, ret, kind, out, allowsFieldFlow, ap, config) and
+        flowOutOfCallAp(call, ret, pos, out, allowsFieldFlow, ap, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
-    /**
-     * Same as `flowThroughIntoCall`, but restricted to calls that are reached
-     * in the flow covered by `revFlow`, where data might flow through the target
-     * callable and back out at `call`.
-     */
-    pragma[nomagic]
-    private predicate revFlowThroughIntoCall(
-      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp,
-      Configuration config
-    ) {
-      flowThroughIntoCall(call, arg, p, allowsFieldFlow, argAp, config) and
-      revFlowIsReturned(call, _, _, _, _, config)
-    }
-
     pragma[nomagic]
     private predicate revFlowParamToReturn(
-      ParamNodeEx p, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap, Configuration config
+      ParamNodeEx p, FlowState state, ReturnPosition pos, Ap returnAp, Ap ap, Configuration config
     ) {
-      revFlow(p, state, TReturnCtxMaybeFlowThrough(kind), apSome(returnAp), ap, config) and
-      parameterFlowThroughAllowed(p, kind)
+      revFlow(pragma[only_bind_into](p), state, TReturnCtxMaybeFlowThrough(pos), apSome(returnAp),
+        pragma[only_bind_into](ap), pragma[only_bind_into](config)) and
+      parameterFlowThroughAllowed(p, pos.getKind()) and
+      PrevStage::parameterMayFlowThrough(p, getApprox(ap), config)
     }
 
     pragma[nomagic]
-    private predicate revFlowInToReturn(
-      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap,
-      Configuration config
+    private predicate revFlowThrough(
+      DataFlowCall call, ReturnCtx returnCtx, ParamNodeEx p, FlowState state, ReturnPosition pos,
+      ApOption returnAp, Ap ap, Ap innerReturnAp, Configuration config
     ) {
-      exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlowParamToReturn(p, state, kind, returnAp, ap, config) and
-        revFlowThroughIntoCall(call, arg, p, allowsFieldFlow, ap, config)
-      )
+      revFlowParamToReturn(p, state, pos, innerReturnAp, ap, config) and
+      revFlowIsReturned(call, returnCtx, returnAp, pos, innerReturnAp, config)
     }
 
     /**
@@ -1832,12 +1806,12 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate revFlowIsReturned(
-      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnKindExt kind, Ap ap,
+      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnPosition pos, Ap ap,
       Configuration config
     ) {
       exists(RetNodeEx ret, FlowState state, CcCall ccc |
-        revFlowOut(call, ret, kind, state, returnCtx, returnAp, ap, config) and
-        returnFlowsThrough(ret, kind, state, ccc, _, _, ap, config) and
+        revFlowOut(call, ret, pos, state, returnCtx, returnAp, ap, config) and
+        returnFlowsThrough(ret, pos, state, ccc, _, _, ap, config) and
         matchesCall(ccc, call)
       )
     }
@@ -1915,17 +1889,17 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate parameterFlowsThroughRev(
-      ParamNodeEx p, Ap ap, ReturnKindExt kind, Ap returnAp, Configuration config
+      ParamNodeEx p, Ap ap, ReturnPosition pos, Ap returnAp, Configuration config
     ) {
-      revFlow(p, _, TReturnCtxMaybeFlowThrough(kind), apSome(returnAp), ap, config) and
-      parameterFlowThroughAllowed(p, kind)
+      revFlow(p, _, TReturnCtxMaybeFlowThrough(pos), apSome(returnAp), ap, config) and
+      parameterFlowThroughAllowed(p, pos.getKind())
     }
 
     pragma[nomagic]
     predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
-      exists(RetNodeEx ret, ReturnKindExt kind |
-        returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
-        parameterFlowsThroughRev(p, ap, kind, _, config)
+      exists(RetNodeEx ret, ReturnPosition pos |
+        returnFlowsThrough(ret, pos, _, _, p, ap, _, config) and
+        parameterFlowsThroughRev(p, ap, pos, _, config)
       )
     }
 
@@ -1933,20 +1907,21 @@ private module MkStage<StageSig PrevStage> {
     predicate returnMayFlowThrough(
       RetNodeEx ret, Ap argAp, Ap ap, ReturnKindExt kind, Configuration config
     ) {
-      exists(ParamNodeEx p |
-        returnFlowsThrough(ret, kind, _, _, p, argAp, ap, config) and
-        parameterFlowsThroughRev(p, argAp, kind, ap, config)
+      exists(ParamNodeEx p, ReturnPosition pos |
+        returnFlowsThrough(ret, pos, _, _, p, argAp, ap, config) and
+        parameterFlowsThroughRev(p, argAp, pos, ap, config) and
+        kind = pos.getKind()
       )
     }
 
     pragma[nomagic]
-    predicate revFlowInToReturnIsReturned(
+    private predicate revFlowThroughArg(
       DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnCtx returnCtx, ApOption returnAp,
       Ap ap, Configuration config
     ) {
-      exists(ReturnKindExt returnKind0, Ap returnAp0 |
-        revFlowInToReturn(call, arg, state, returnKind0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
+      exists(ParamNodeEx p, ReturnPosition pos, Ap innerReturnAp |
+        revFlowThrough(call, returnCtx, p, state, pos, returnAp, ap, innerReturnAp, config) and
+        flowThroughIntoCall(call, arg, p, _, ap, innerReturnAp, config)
       )
     }
 
@@ -1954,7 +1929,7 @@ private module MkStage<StageSig PrevStage> {
     predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
       exists(ArgNodeEx arg, FlowState state, ReturnCtx returnCtx, ApOption returnAp, Ap ap |
         revFlow(arg, state, returnCtx, returnAp, ap, config) and
-        revFlowInToReturnIsReturned(call, arg, state, returnCtx, returnAp, ap, config)
+        revFlowThroughArg(call, arg, state, returnCtx, returnAp, ap, config)
       )
     }
 
@@ -1967,8 +1942,9 @@ private module MkStage<StageSig PrevStage> {
       conscand = count(TypedContent f0, Ap ap | fwdConsCand(f0, ap, config)) and
       states = count(FlowState state | fwdFlow(_, state, _, _, _, _, config)) and
       tuples =
-        count(NodeEx n, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-          Ap ap | fwdFlow(n, state, cc, summaryCtx, argAp, ap, config))
+        count(NodeEx n, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap |
+          fwdFlow(n, state, cc, summaryCtx, argAp, ap, config)
+        )
       or
       fwd = false and
       nodes = count(NodeEx node | revFlow(node, _, _, _, _, config)) and
@@ -2823,13 +2799,12 @@ private Configuration unbindConf(Configuration conf) {
 
 pragma[nomagic]
 private predicate nodeMayUseSummary0(
-  NodeEx n, DataFlowCallable c, ParameterPosition pos, FlowState state, AccessPathApprox apa,
-  Configuration config
+  NodeEx n, ParamNodeEx p, FlowState state, AccessPathApprox apa, Configuration config
 ) {
   exists(AccessPathApprox apa0 |
-    c = n.getEnclosingCallable() and
+    Stage5::parameterMayFlowThrough(p, _, _) and
     Stage5::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
-    Stage5::fwdFlow(n, state, any(CallContextCall ccc), TParameterPositionSome(pos),
+    Stage5::fwdFlow(n, state, any(CallContextCall ccc), TParamNodeSome(p.asNode()),
       TAccessPathApproxSome(apa), apa0, config)
   )
 }
@@ -2838,10 +2813,9 @@ pragma[nomagic]
 private predicate nodeMayUseSummary(
   NodeEx n, FlowState state, AccessPathApprox apa, Configuration config
 ) {
-  exists(DataFlowCallable c, ParameterPosition pos, ParamNodeEx p |
+  exists(ParamNodeEx p |
     Stage5::parameterMayFlowThrough(p, apa, config) and
-    nodeMayUseSummary0(n, c, pos, state, apa, config) and
-    p.isParameterOf(c, pos)
+    nodeMayUseSummary0(n, p, state, apa, config)
   )
 }
 
diff --git a/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImpl5.qll b/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImpl5.qll
index 6741ccc2f06..23d11a38842 100644
--- a/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImpl5.qll
+++ b/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImpl5.qll
@@ -1327,8 +1327,8 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     additional predicate fwdFlow(
-      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      Ap ap, ApApprox apa, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      ApApprox apa, Configuration config
     ) {
       fwdFlow0(node, state, cc, summaryCtx, argAp, ap, apa, config) and
       PrevStage::revFlow(node, state, apa, config) and
@@ -1337,21 +1337,21 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[inline]
     additional predicate fwdFlow(
-      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      Ap ap, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      Configuration config
     ) {
       fwdFlow(node, state, cc, summaryCtx, argAp, ap, _, config)
     }
 
     pragma[nomagic]
     private predicate fwdFlow0(
-      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      Ap ap, ApApprox apa, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      ApApprox apa, Configuration config
     ) {
       sourceNode(node, state, config) and
       (if hasSourceCallCtx(config) then cc = ccSomeCall() else cc = ccNone()) and
       argAp = apNone() and
-      summaryCtx = TParameterPositionNone() and
+      summaryCtx = TParamNodeNone() and
       ap = getApNil(node) and
       apa = getApprox(ap)
       or
@@ -1372,7 +1372,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, apa, pragma[only_bind_into](config)) and
         jumpStep(mid, node, config) and
         cc = ccNone() and
-        summaryCtx = TParameterPositionNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone()
       )
       or
@@ -1380,7 +1380,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, state, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStep(mid, node, config) and
         cc = ccNone() and
-        summaryCtx = TParameterPositionNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone() and
         ap = getApNil(node) and
         apa = getApprox(ap)
@@ -1390,7 +1390,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, state0, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStateStep(mid, state0, node, state, config) and
         cc = ccNone() and
-        summaryCtx = TParameterPositionNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone() and
         ap = getApNil(node) and
         apa = getApprox(ap)
@@ -1414,10 +1414,10 @@ private module MkStage<StageSig PrevStage> {
       fwdFlowIn(_, node, state, _, cc, _, _, ap, apa, config) and
       if PrevStage::parameterMayFlowThrough(node, apa, config)
       then (
-        summaryCtx = TParameterPositionSome(node.(ParamNodeEx).getPosition()) and
+        summaryCtx = TParamNodeSome(node.asNode()) and
         argAp = apSome(ap)
       ) else (
-        summaryCtx = TParameterPositionNone() and argAp = apNone()
+        summaryCtx = TParamNodeNone() and argAp = apNone()
       )
       or
       // flow out of a callable
@@ -1433,16 +1433,19 @@ private module MkStage<StageSig PrevStage> {
       )
       or
       // flow through a callable
-      exists(DataFlowCall call, ParameterPosition summaryCtx0, Ap argAp0 |
-        fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, apa, config) and
-        fwdFlowIsEntered(call, cc, summaryCtx, argAp, summaryCtx0, argAp0, config)
+      exists(
+        DataFlowCall call, CcCall ccc, RetNodeEx ret, boolean allowsFieldFlow, ApApprox innerArgApa
+      |
+        fwdFlowThrough(call, cc, state, ccc, summaryCtx, argAp, ap, apa, ret, innerArgApa, config) and
+        flowThroughOutOfCall(call, ccc, ret, node, allowsFieldFlow, innerArgApa, apa, config) and
+        if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
     pragma[nomagic]
     private predicate fwdFlowStore(
       NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc,
-      ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
+      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
     ) {
       exists(DataFlowType contentType, ApApprox apa1 |
         fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, apa1, config) and
@@ -1473,8 +1476,8 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowRead0(
-      NodeEx node1, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      ApNonNil ap, Configuration config
+      NodeEx node1, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, ApNonNil ap,
+      Configuration config
     ) {
       fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, _, _, config)
@@ -1483,7 +1486,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowRead(
       Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc,
-      ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
+      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
     ) {
       fwdFlowRead0(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, c, node2, config) and
@@ -1493,7 +1496,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowIn(
       DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, CcCall innercc,
-      ParameterPositionOption summaryCtx, ApOption argAp, Ap ap, ApApprox apa, Configuration config
+      ParamNodeOption summaryCtx, ApOption argAp, Ap ap, ApApprox apa, Configuration config
     ) {
       exists(ArgNodeEx arg, boolean allowsFieldFlow |
         fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, apa, config) and
@@ -1505,64 +1508,38 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowRetFromArg(
-      RetNodeEx ret, FlowState state, CcCall ccc, ParameterPosition summaryCtx, ParamNodeEx p,
-      Ap argAp, ApApprox argApa, Ap ap, ApApprox apa, Configuration config
+      RetNodeEx ret, FlowState state, CcCall ccc, ParamNodeEx summaryCtx, Ap argAp, ApApprox argApa,
+      Ap ap, ApApprox apa, Configuration config
     ) {
-      exists(DataFlowCallable c, ReturnKindExt kind |
+      exists(ReturnKindExt kind |
         fwdFlow(pragma[only_bind_into](ret), state, ccc,
-          TParameterPositionSome(pragma[only_bind_into](summaryCtx)), apSome(argAp), ap, apa, config) and
-        getApprox(argAp) = argApa and
-        c = ret.getEnclosingCallable() and
+          TParamNodeSome(pragma[only_bind_into](summaryCtx.asNode())),
+          pragma[only_bind_into](apSome(argAp)), ap, pragma[only_bind_into](apa),
+          pragma[only_bind_into](config)) and
         kind = ret.getKind() and
-        p.isParameterOf(c, pragma[only_bind_into](summaryCtx)) and
-        parameterFlowThroughAllowed(p, kind)
+        parameterFlowThroughAllowed(summaryCtx, kind) and
+        argApa = getApprox(argAp) and
+        PrevStage::returnMayFlowThrough(ret, argApa, apa, kind, pragma[only_bind_into](config))
       )
     }
 
     pragma[inline]
-    private predicate fwdFlowInMayFlowThrough(
-      DataFlowCall call, Cc cc, CcCall innerCc, ParameterPositionOption summaryCtx, ApOption argAp,
-      ParamNodeEx param, Ap ap, ApApprox apa, Configuration config
+    private predicate fwdFlowThrough0(
+      DataFlowCall call, Cc cc, FlowState state, CcCall ccc, ParamNodeOption summaryCtx,
+      ApOption argAp, Ap ap, ApApprox apa, RetNodeEx ret, ParamNodeEx innerSummaryCtx,
+      Ap innerArgAp, ApApprox innerArgApa, Configuration config
     ) {
-      fwdFlowIn(call, pragma[only_bind_into](param), _, cc, innerCc, summaryCtx, argAp, ap,
-        pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
-      PrevStage::parameterMayFlowThrough(param, apa, config)
-    }
-
-    // dedup before joining with `flowThroughOutOfCall`
-    pragma[nomagic]
-    private predicate fwdFlowInMayFlowThroughProj(
-      DataFlowCall call, CcCall innerCc, ApApprox apa, Configuration config
-    ) {
-      fwdFlowInMayFlowThrough(call, _, innerCc, _, _, _, _, apa, config)
-    }
-
-    /**
-     * Same as `flowThroughOutOfCall`, but restricted to calls that are reached
-     * in the flow covered by `fwdFlow`, where data might flow through the target
-     * callable and back out at `call`.
-     */
-    pragma[nomagic]
-    private predicate fwdFlowThroughOutOfCall(
-      DataFlowCall call, CcCall ccc, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow,
-      ApApprox argApa, ApApprox apa, Configuration config
-    ) {
-      fwdFlowInMayFlowThroughProj(call, ccc, argApa, config) and
-      flowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, argApa, apa, config)
+      fwdFlowRetFromArg(ret, state, ccc, innerSummaryCtx, innerArgAp, innerArgApa, ap, apa, config) and
+      fwdFlowIsEntered(call, cc, ccc, summaryCtx, argAp, innerSummaryCtx, innerArgAp, config)
     }
 
     pragma[nomagic]
-    private predicate fwdFlowOutFromArg(
-      DataFlowCall call, NodeEx out, FlowState state, ParameterPosition summaryCtx, Ap argAp, Ap ap,
-      ApApprox apa, Configuration config
+    private predicate fwdFlowThrough(
+      DataFlowCall call, Cc cc, FlowState state, CcCall ccc, ParamNodeOption summaryCtx,
+      ApOption argAp, Ap ap, ApApprox apa, RetNodeEx ret, ApApprox innerArgApa, Configuration config
     ) {
-      exists(RetNodeEx ret, boolean allowsFieldFlow, CcCall ccc, ApApprox argApa |
-        fwdFlowRetFromArg(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc),
-          summaryCtx, _, argAp, pragma[only_bind_into](argApa), ap, pragma[only_bind_into](apa),
-          config) and
-        fwdFlowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, argApa, apa, config) and
-        (if allowsFieldFlow = false then ap instanceof ApNil else any())
-      )
+      fwdFlowThrough0(call, cc, state, ccc, summaryCtx, argAp, ap, apa, ret, _, _, innerArgApa,
+        config)
     }
 
     /**
@@ -1571,12 +1548,14 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate fwdFlowIsEntered(
-      DataFlowCall call, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      ParameterPosition pos, Ap ap, Configuration config
+      DataFlowCall call, Cc cc, CcCall innerCc, ParamNodeOption summaryCtx, ApOption argAp,
+      ParamNodeEx p, Ap ap, Configuration config
     ) {
-      exists(ParamNodeEx param |
-        fwdFlowInMayFlowThrough(call, cc, _, summaryCtx, argAp, param, ap, _, config) and
-        pos = param.getPosition()
+      exists(ApApprox apa |
+        fwdFlowIn(call, pragma[only_bind_into](p), _, cc, innerCc, summaryCtx, argAp, ap,
+          pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
+        PrevStage::parameterMayFlowThrough(p, apa, config) and
+        PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config))
       )
     }
 
@@ -1596,23 +1575,31 @@ private module MkStage<StageSig PrevStage> {
       fwdFlowConsCand(ap1, c, ap2, config)
     }
 
+    pragma[nomagic]
+    private predicate returnFlowsThrough0(
+      DataFlowCall call, FlowState state, CcCall ccc, Ap ap, ApApprox apa, RetNodeEx ret,
+      ParamNodeEx innerSummaryCtx, Ap innerArgAp, ApApprox innerArgApa, Configuration config
+    ) {
+      fwdFlowThrough0(call, _, state, ccc, _, _, ap, apa, ret, innerSummaryCtx, innerArgAp,
+        innerArgApa, config)
+    }
+
     pragma[nomagic]
     private predicate returnFlowsThrough(
-      RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, ParamNodeEx p, Ap argAp,
+      RetNodeEx ret, ReturnPosition pos, FlowState state, CcCall ccc, ParamNodeEx p, Ap argAp,
       Ap ap, Configuration config
     ) {
-      exists(boolean allowsFieldFlow, ApApprox argApa, ApApprox apa |
-        fwdFlowRetFromArg(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc), _, p,
-          argAp, pragma[only_bind_into](argApa), ap, pragma[only_bind_into](apa), config) and
-        kind = ret.getKind() and
-        fwdFlowThroughOutOfCall(_, ccc, ret, _, allowsFieldFlow, argApa, apa, config) and
-        (if allowsFieldFlow = false then ap instanceof ApNil else any())
+      exists(DataFlowCall call, ApApprox apa, boolean allowsFieldFlow, ApApprox innerArgApa |
+        returnFlowsThrough0(call, state, ccc, ap, apa, ret, p, argAp, innerArgApa, config) and
+        flowThroughOutOfCall(call, ccc, ret, _, allowsFieldFlow, innerArgApa, apa, config) and
+        pos = ret.getReturnPosition() and
+        if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
     pragma[nomagic]
     private predicate flowThroughIntoCall(
-      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp,
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp, Ap ap,
       Configuration config
     ) {
       exists(ApApprox argApa |
@@ -1620,7 +1607,7 @@ private module MkStage<StageSig PrevStage> {
           allowsFieldFlow, argApa, pragma[only_bind_into](config)) and
         fwdFlow(arg, _, _, _, _, pragma[only_bind_into](argAp), argApa,
           pragma[only_bind_into](config)) and
-        returnFlowsThrough(_, _, _, _, p, pragma[only_bind_into](argAp), _,
+        returnFlowsThrough(_, _, _, _, p, pragma[only_bind_into](argAp), ap,
           pragma[only_bind_into](config)) and
         if allowsFieldFlow = false then argAp instanceof ApNil else any()
       )
@@ -1639,12 +1626,13 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate flowOutOfCallAp(
-      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
+      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
       Ap ap, Configuration config
     ) {
       exists(ApApprox apa |
-        flowOutOfCallApa(call, ret, kind, out, allowsFieldFlow, apa, config) and
-        fwdFlow(ret, _, _, _, _, ap, apa, config)
+        flowOutOfCallApa(call, ret, _, out, allowsFieldFlow, apa, config) and
+        fwdFlow(ret, _, _, _, _, ap, apa, config) and
+        pos = ret.getReturnPosition()
       )
     }
 
@@ -1739,17 +1727,17 @@ private module MkStage<StageSig PrevStage> {
       )
       or
       // flow through a callable
-      exists(DataFlowCall call, ReturnKindExt returnKind0, Ap returnAp0 |
-        revFlowInToReturn(call, node, state, returnKind0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
+      exists(DataFlowCall call, ParamNodeEx p, ReturnPosition pos, Ap innerReturnAp |
+        revFlowThrough(call, returnCtx, p, state, pos, returnAp, ap, innerReturnAp, config) and
+        flowThroughIntoCall(call, node, p, _, ap, innerReturnAp, config)
       )
       or
       // flow out of a callable
-      exists(ReturnKindExt kind |
-        revFlowOut(_, node, kind, state, _, _, ap, config) and
-        if returnFlowsThrough(node, kind, state, _, _, _, ap, config)
+      exists(ReturnPosition pos |
+        revFlowOut(_, node, pos, state, _, _, ap, config) and
+        if returnFlowsThrough(node, pos, state, _, _, _, ap, config)
         then (
-          returnCtx = TReturnCtxMaybeFlowThrough(kind) and
+          returnCtx = TReturnCtxMaybeFlowThrough(pos) and
           returnAp = apSome(ap)
         ) else (
           returnCtx = TReturnCtxNoFlowThrough() and returnAp = apNone()
@@ -1782,47 +1770,33 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate revFlowOut(
-      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, FlowState state, ReturnCtx returnCtx,
+      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, FlowState state, ReturnCtx returnCtx,
       ApOption returnAp, Ap ap, Configuration config
     ) {
       exists(NodeEx out, boolean allowsFieldFlow |
         revFlow(out, state, returnCtx, returnAp, ap, config) and
-        flowOutOfCallAp(call, ret, kind, out, allowsFieldFlow, ap, config) and
+        flowOutOfCallAp(call, ret, pos, out, allowsFieldFlow, ap, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
-    /**
-     * Same as `flowThroughIntoCall`, but restricted to calls that are reached
-     * in the flow covered by `revFlow`, where data might flow through the target
-     * callable and back out at `call`.
-     */
-    pragma[nomagic]
-    private predicate revFlowThroughIntoCall(
-      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp,
-      Configuration config
-    ) {
-      flowThroughIntoCall(call, arg, p, allowsFieldFlow, argAp, config) and
-      revFlowIsReturned(call, _, _, _, _, config)
-    }
-
     pragma[nomagic]
     private predicate revFlowParamToReturn(
-      ParamNodeEx p, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap, Configuration config
+      ParamNodeEx p, FlowState state, ReturnPosition pos, Ap returnAp, Ap ap, Configuration config
     ) {
-      revFlow(p, state, TReturnCtxMaybeFlowThrough(kind), apSome(returnAp), ap, config) and
-      parameterFlowThroughAllowed(p, kind)
+      revFlow(pragma[only_bind_into](p), state, TReturnCtxMaybeFlowThrough(pos), apSome(returnAp),
+        pragma[only_bind_into](ap), pragma[only_bind_into](config)) and
+      parameterFlowThroughAllowed(p, pos.getKind()) and
+      PrevStage::parameterMayFlowThrough(p, getApprox(ap), config)
     }
 
     pragma[nomagic]
-    private predicate revFlowInToReturn(
-      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap,
-      Configuration config
+    private predicate revFlowThrough(
+      DataFlowCall call, ReturnCtx returnCtx, ParamNodeEx p, FlowState state, ReturnPosition pos,
+      ApOption returnAp, Ap ap, Ap innerReturnAp, Configuration config
     ) {
-      exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlowParamToReturn(p, state, kind, returnAp, ap, config) and
-        revFlowThroughIntoCall(call, arg, p, allowsFieldFlow, ap, config)
-      )
+      revFlowParamToReturn(p, state, pos, innerReturnAp, ap, config) and
+      revFlowIsReturned(call, returnCtx, returnAp, pos, innerReturnAp, config)
     }
 
     /**
@@ -1832,12 +1806,12 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate revFlowIsReturned(
-      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnKindExt kind, Ap ap,
+      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnPosition pos, Ap ap,
       Configuration config
     ) {
       exists(RetNodeEx ret, FlowState state, CcCall ccc |
-        revFlowOut(call, ret, kind, state, returnCtx, returnAp, ap, config) and
-        returnFlowsThrough(ret, kind, state, ccc, _, _, ap, config) and
+        revFlowOut(call, ret, pos, state, returnCtx, returnAp, ap, config) and
+        returnFlowsThrough(ret, pos, state, ccc, _, _, ap, config) and
         matchesCall(ccc, call)
       )
     }
@@ -1915,17 +1889,17 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate parameterFlowsThroughRev(
-      ParamNodeEx p, Ap ap, ReturnKindExt kind, Ap returnAp, Configuration config
+      ParamNodeEx p, Ap ap, ReturnPosition pos, Ap returnAp, Configuration config
     ) {
-      revFlow(p, _, TReturnCtxMaybeFlowThrough(kind), apSome(returnAp), ap, config) and
-      parameterFlowThroughAllowed(p, kind)
+      revFlow(p, _, TReturnCtxMaybeFlowThrough(pos), apSome(returnAp), ap, config) and
+      parameterFlowThroughAllowed(p, pos.getKind())
     }
 
     pragma[nomagic]
     predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
-      exists(RetNodeEx ret, ReturnKindExt kind |
-        returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
-        parameterFlowsThroughRev(p, ap, kind, _, config)
+      exists(RetNodeEx ret, ReturnPosition pos |
+        returnFlowsThrough(ret, pos, _, _, p, ap, _, config) and
+        parameterFlowsThroughRev(p, ap, pos, _, config)
       )
     }
 
@@ -1933,20 +1907,21 @@ private module MkStage<StageSig PrevStage> {
     predicate returnMayFlowThrough(
       RetNodeEx ret, Ap argAp, Ap ap, ReturnKindExt kind, Configuration config
     ) {
-      exists(ParamNodeEx p |
-        returnFlowsThrough(ret, kind, _, _, p, argAp, ap, config) and
-        parameterFlowsThroughRev(p, argAp, kind, ap, config)
+      exists(ParamNodeEx p, ReturnPosition pos |
+        returnFlowsThrough(ret, pos, _, _, p, argAp, ap, config) and
+        parameterFlowsThroughRev(p, argAp, pos, ap, config) and
+        kind = pos.getKind()
       )
     }
 
     pragma[nomagic]
-    predicate revFlowInToReturnIsReturned(
+    private predicate revFlowThroughArg(
       DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnCtx returnCtx, ApOption returnAp,
       Ap ap, Configuration config
     ) {
-      exists(ReturnKindExt returnKind0, Ap returnAp0 |
-        revFlowInToReturn(call, arg, state, returnKind0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
+      exists(ParamNodeEx p, ReturnPosition pos, Ap innerReturnAp |
+        revFlowThrough(call, returnCtx, p, state, pos, returnAp, ap, innerReturnAp, config) and
+        flowThroughIntoCall(call, arg, p, _, ap, innerReturnAp, config)
       )
     }
 
@@ -1954,7 +1929,7 @@ private module MkStage<StageSig PrevStage> {
     predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
       exists(ArgNodeEx arg, FlowState state, ReturnCtx returnCtx, ApOption returnAp, Ap ap |
         revFlow(arg, state, returnCtx, returnAp, ap, config) and
-        revFlowInToReturnIsReturned(call, arg, state, returnCtx, returnAp, ap, config)
+        revFlowThroughArg(call, arg, state, returnCtx, returnAp, ap, config)
       )
     }
 
@@ -1967,8 +1942,9 @@ private module MkStage<StageSig PrevStage> {
       conscand = count(TypedContent f0, Ap ap | fwdConsCand(f0, ap, config)) and
       states = count(FlowState state | fwdFlow(_, state, _, _, _, _, config)) and
       tuples =
-        count(NodeEx n, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-          Ap ap | fwdFlow(n, state, cc, summaryCtx, argAp, ap, config))
+        count(NodeEx n, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap |
+          fwdFlow(n, state, cc, summaryCtx, argAp, ap, config)
+        )
       or
       fwd = false and
       nodes = count(NodeEx node | revFlow(node, _, _, _, _, config)) and
@@ -2823,13 +2799,12 @@ private Configuration unbindConf(Configuration conf) {
 
 pragma[nomagic]
 private predicate nodeMayUseSummary0(
-  NodeEx n, DataFlowCallable c, ParameterPosition pos, FlowState state, AccessPathApprox apa,
-  Configuration config
+  NodeEx n, ParamNodeEx p, FlowState state, AccessPathApprox apa, Configuration config
 ) {
   exists(AccessPathApprox apa0 |
-    c = n.getEnclosingCallable() and
+    Stage5::parameterMayFlowThrough(p, _, _) and
     Stage5::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
-    Stage5::fwdFlow(n, state, any(CallContextCall ccc), TParameterPositionSome(pos),
+    Stage5::fwdFlow(n, state, any(CallContextCall ccc), TParamNodeSome(p.asNode()),
       TAccessPathApproxSome(apa), apa0, config)
   )
 }
@@ -2838,10 +2813,9 @@ pragma[nomagic]
 private predicate nodeMayUseSummary(
   NodeEx n, FlowState state, AccessPathApprox apa, Configuration config
 ) {
-  exists(DataFlowCallable c, ParameterPosition pos, ParamNodeEx p |
+  exists(ParamNodeEx p |
     Stage5::parameterMayFlowThrough(p, apa, config) and
-    nodeMayUseSummary0(n, c, pos, state, apa, config) and
-    p.isParameterOf(c, pos)
+    nodeMayUseSummary0(n, p, state, apa, config)
   )
 }
 
diff --git a/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImplCommon.qll b/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImplCommon.qll
index c66aefced8d..9aa6a529a5b 100644
--- a/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImplCommon.qll
+++ b/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImplCommon.qll
@@ -916,15 +916,15 @@ private module Cached {
     TDataFlowCallSome(DataFlowCall call)
 
   cached
-  newtype TParameterPositionOption =
-    TParameterPositionNone() or
-    TParameterPositionSome(ParameterPosition pos)
+  newtype TParamNodeOption =
+    TParamNodeNone() or
+    TParamNodeSome(ParamNode p)
 
   cached
   newtype TReturnCtx =
     TReturnCtxNone() or
     TReturnCtxNoFlowThrough() or
-    TReturnCtxMaybeFlowThrough(ReturnKindExt kind)
+    TReturnCtxMaybeFlowThrough(ReturnPosition pos)
 
   cached
   newtype TTypedContentApprox =
@@ -1343,15 +1343,15 @@ class DataFlowCallOption extends TDataFlowCallOption {
   }
 }
 
-/** An optional `ParameterPosition`. */
-class ParameterPositionOption extends TParameterPositionOption {
+/** An optional `ParamNode`. */
+class ParamNodeOption extends TParamNodeOption {
   string toString() {
-    this = TParameterPositionNone() and
+    this = TParamNodeNone() and
     result = "(none)"
     or
-    exists(ParameterPosition pos |
-      this = TParameterPositionSome(pos) and
-      result = pos.toString()
+    exists(ParamNode p |
+      this = TParamNodeSome(p) and
+      result = p.toString()
     )
   }
 }
@@ -1363,7 +1363,7 @@ class ParameterPositionOption extends TParameterPositionOption {
  *
  * - `TReturnCtxNone()`: no return flow.
  * - `TReturnCtxNoFlowThrough()`: return flow, but flow through is not possible.
- * - `TReturnCtxMaybeFlowThrough(ReturnKindExt kind)`: return flow, of kind `kind`, and
+ * - `TReturnCtxMaybeFlowThrough(ReturnPosition pos)`: return flow, of kind `pos`, and
  *    flow through may be possible.
  */
 class ReturnCtx extends TReturnCtx {
@@ -1374,9 +1374,9 @@ class ReturnCtx extends TReturnCtx {
     this = TReturnCtxNoFlowThrough() and
     result = "(no flow through)"
     or
-    exists(ReturnKindExt kind |
-      this = TReturnCtxMaybeFlowThrough(kind) and
-      result = kind.toString()
+    exists(ReturnPosition pos |
+      this = TReturnCtxMaybeFlowThrough(pos) and
+      result = pos.toString()
     )
   }
 }
diff --git a/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImplForContentDataFlow.qll b/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImplForContentDataFlow.qll
index 6741ccc2f06..23d11a38842 100644
--- a/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImplForContentDataFlow.qll
+++ b/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImplForContentDataFlow.qll
@@ -1327,8 +1327,8 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     additional predicate fwdFlow(
-      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      Ap ap, ApApprox apa, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      ApApprox apa, Configuration config
     ) {
       fwdFlow0(node, state, cc, summaryCtx, argAp, ap, apa, config) and
       PrevStage::revFlow(node, state, apa, config) and
@@ -1337,21 +1337,21 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[inline]
     additional predicate fwdFlow(
-      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      Ap ap, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      Configuration config
     ) {
       fwdFlow(node, state, cc, summaryCtx, argAp, ap, _, config)
     }
 
     pragma[nomagic]
     private predicate fwdFlow0(
-      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      Ap ap, ApApprox apa, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      ApApprox apa, Configuration config
     ) {
       sourceNode(node, state, config) and
       (if hasSourceCallCtx(config) then cc = ccSomeCall() else cc = ccNone()) and
       argAp = apNone() and
-      summaryCtx = TParameterPositionNone() and
+      summaryCtx = TParamNodeNone() and
       ap = getApNil(node) and
       apa = getApprox(ap)
       or
@@ -1372,7 +1372,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, apa, pragma[only_bind_into](config)) and
         jumpStep(mid, node, config) and
         cc = ccNone() and
-        summaryCtx = TParameterPositionNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone()
       )
       or
@@ -1380,7 +1380,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, state, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStep(mid, node, config) and
         cc = ccNone() and
-        summaryCtx = TParameterPositionNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone() and
         ap = getApNil(node) and
         apa = getApprox(ap)
@@ -1390,7 +1390,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, state0, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStateStep(mid, state0, node, state, config) and
         cc = ccNone() and
-        summaryCtx = TParameterPositionNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone() and
         ap = getApNil(node) and
         apa = getApprox(ap)
@@ -1414,10 +1414,10 @@ private module MkStage<StageSig PrevStage> {
       fwdFlowIn(_, node, state, _, cc, _, _, ap, apa, config) and
       if PrevStage::parameterMayFlowThrough(node, apa, config)
       then (
-        summaryCtx = TParameterPositionSome(node.(ParamNodeEx).getPosition()) and
+        summaryCtx = TParamNodeSome(node.asNode()) and
         argAp = apSome(ap)
       ) else (
-        summaryCtx = TParameterPositionNone() and argAp = apNone()
+        summaryCtx = TParamNodeNone() and argAp = apNone()
       )
       or
       // flow out of a callable
@@ -1433,16 +1433,19 @@ private module MkStage<StageSig PrevStage> {
       )
       or
       // flow through a callable
-      exists(DataFlowCall call, ParameterPosition summaryCtx0, Ap argAp0 |
-        fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, apa, config) and
-        fwdFlowIsEntered(call, cc, summaryCtx, argAp, summaryCtx0, argAp0, config)
+      exists(
+        DataFlowCall call, CcCall ccc, RetNodeEx ret, boolean allowsFieldFlow, ApApprox innerArgApa
+      |
+        fwdFlowThrough(call, cc, state, ccc, summaryCtx, argAp, ap, apa, ret, innerArgApa, config) and
+        flowThroughOutOfCall(call, ccc, ret, node, allowsFieldFlow, innerArgApa, apa, config) and
+        if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
     pragma[nomagic]
     private predicate fwdFlowStore(
       NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc,
-      ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
+      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
     ) {
       exists(DataFlowType contentType, ApApprox apa1 |
         fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, apa1, config) and
@@ -1473,8 +1476,8 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowRead0(
-      NodeEx node1, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      ApNonNil ap, Configuration config
+      NodeEx node1, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, ApNonNil ap,
+      Configuration config
     ) {
       fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, _, _, config)
@@ -1483,7 +1486,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowRead(
       Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc,
-      ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
+      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
     ) {
       fwdFlowRead0(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, c, node2, config) and
@@ -1493,7 +1496,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowIn(
       DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, CcCall innercc,
-      ParameterPositionOption summaryCtx, ApOption argAp, Ap ap, ApApprox apa, Configuration config
+      ParamNodeOption summaryCtx, ApOption argAp, Ap ap, ApApprox apa, Configuration config
     ) {
       exists(ArgNodeEx arg, boolean allowsFieldFlow |
         fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, apa, config) and
@@ -1505,64 +1508,38 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowRetFromArg(
-      RetNodeEx ret, FlowState state, CcCall ccc, ParameterPosition summaryCtx, ParamNodeEx p,
-      Ap argAp, ApApprox argApa, Ap ap, ApApprox apa, Configuration config
+      RetNodeEx ret, FlowState state, CcCall ccc, ParamNodeEx summaryCtx, Ap argAp, ApApprox argApa,
+      Ap ap, ApApprox apa, Configuration config
     ) {
-      exists(DataFlowCallable c, ReturnKindExt kind |
+      exists(ReturnKindExt kind |
         fwdFlow(pragma[only_bind_into](ret), state, ccc,
-          TParameterPositionSome(pragma[only_bind_into](summaryCtx)), apSome(argAp), ap, apa, config) and
-        getApprox(argAp) = argApa and
-        c = ret.getEnclosingCallable() and
+          TParamNodeSome(pragma[only_bind_into](summaryCtx.asNode())),
+          pragma[only_bind_into](apSome(argAp)), ap, pragma[only_bind_into](apa),
+          pragma[only_bind_into](config)) and
         kind = ret.getKind() and
-        p.isParameterOf(c, pragma[only_bind_into](summaryCtx)) and
-        parameterFlowThroughAllowed(p, kind)
+        parameterFlowThroughAllowed(summaryCtx, kind) and
+        argApa = getApprox(argAp) and
+        PrevStage::returnMayFlowThrough(ret, argApa, apa, kind, pragma[only_bind_into](config))
       )
     }
 
     pragma[inline]
-    private predicate fwdFlowInMayFlowThrough(
-      DataFlowCall call, Cc cc, CcCall innerCc, ParameterPositionOption summaryCtx, ApOption argAp,
-      ParamNodeEx param, Ap ap, ApApprox apa, Configuration config
+    private predicate fwdFlowThrough0(
+      DataFlowCall call, Cc cc, FlowState state, CcCall ccc, ParamNodeOption summaryCtx,
+      ApOption argAp, Ap ap, ApApprox apa, RetNodeEx ret, ParamNodeEx innerSummaryCtx,
+      Ap innerArgAp, ApApprox innerArgApa, Configuration config
     ) {
-      fwdFlowIn(call, pragma[only_bind_into](param), _, cc, innerCc, summaryCtx, argAp, ap,
-        pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
-      PrevStage::parameterMayFlowThrough(param, apa, config)
-    }
-
-    // dedup before joining with `flowThroughOutOfCall`
-    pragma[nomagic]
-    private predicate fwdFlowInMayFlowThroughProj(
-      DataFlowCall call, CcCall innerCc, ApApprox apa, Configuration config
-    ) {
-      fwdFlowInMayFlowThrough(call, _, innerCc, _, _, _, _, apa, config)
-    }
-
-    /**
-     * Same as `flowThroughOutOfCall`, but restricted to calls that are reached
-     * in the flow covered by `fwdFlow`, where data might flow through the target
-     * callable and back out at `call`.
-     */
-    pragma[nomagic]
-    private predicate fwdFlowThroughOutOfCall(
-      DataFlowCall call, CcCall ccc, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow,
-      ApApprox argApa, ApApprox apa, Configuration config
-    ) {
-      fwdFlowInMayFlowThroughProj(call, ccc, argApa, config) and
-      flowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, argApa, apa, config)
+      fwdFlowRetFromArg(ret, state, ccc, innerSummaryCtx, innerArgAp, innerArgApa, ap, apa, config) and
+      fwdFlowIsEntered(call, cc, ccc, summaryCtx, argAp, innerSummaryCtx, innerArgAp, config)
     }
 
     pragma[nomagic]
-    private predicate fwdFlowOutFromArg(
-      DataFlowCall call, NodeEx out, FlowState state, ParameterPosition summaryCtx, Ap argAp, Ap ap,
-      ApApprox apa, Configuration config
+    private predicate fwdFlowThrough(
+      DataFlowCall call, Cc cc, FlowState state, CcCall ccc, ParamNodeOption summaryCtx,
+      ApOption argAp, Ap ap, ApApprox apa, RetNodeEx ret, ApApprox innerArgApa, Configuration config
     ) {
-      exists(RetNodeEx ret, boolean allowsFieldFlow, CcCall ccc, ApApprox argApa |
-        fwdFlowRetFromArg(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc),
-          summaryCtx, _, argAp, pragma[only_bind_into](argApa), ap, pragma[only_bind_into](apa),
-          config) and
-        fwdFlowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, argApa, apa, config) and
-        (if allowsFieldFlow = false then ap instanceof ApNil else any())
-      )
+      fwdFlowThrough0(call, cc, state, ccc, summaryCtx, argAp, ap, apa, ret, _, _, innerArgApa,
+        config)
     }
 
     /**
@@ -1571,12 +1548,14 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate fwdFlowIsEntered(
-      DataFlowCall call, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      ParameterPosition pos, Ap ap, Configuration config
+      DataFlowCall call, Cc cc, CcCall innerCc, ParamNodeOption summaryCtx, ApOption argAp,
+      ParamNodeEx p, Ap ap, Configuration config
     ) {
-      exists(ParamNodeEx param |
-        fwdFlowInMayFlowThrough(call, cc, _, summaryCtx, argAp, param, ap, _, config) and
-        pos = param.getPosition()
+      exists(ApApprox apa |
+        fwdFlowIn(call, pragma[only_bind_into](p), _, cc, innerCc, summaryCtx, argAp, ap,
+          pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
+        PrevStage::parameterMayFlowThrough(p, apa, config) and
+        PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config))
       )
     }
 
@@ -1596,23 +1575,31 @@ private module MkStage<StageSig PrevStage> {
       fwdFlowConsCand(ap1, c, ap2, config)
     }
 
+    pragma[nomagic]
+    private predicate returnFlowsThrough0(
+      DataFlowCall call, FlowState state, CcCall ccc, Ap ap, ApApprox apa, RetNodeEx ret,
+      ParamNodeEx innerSummaryCtx, Ap innerArgAp, ApApprox innerArgApa, Configuration config
+    ) {
+      fwdFlowThrough0(call, _, state, ccc, _, _, ap, apa, ret, innerSummaryCtx, innerArgAp,
+        innerArgApa, config)
+    }
+
     pragma[nomagic]
     private predicate returnFlowsThrough(
-      RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, ParamNodeEx p, Ap argAp,
+      RetNodeEx ret, ReturnPosition pos, FlowState state, CcCall ccc, ParamNodeEx p, Ap argAp,
       Ap ap, Configuration config
     ) {
-      exists(boolean allowsFieldFlow, ApApprox argApa, ApApprox apa |
-        fwdFlowRetFromArg(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc), _, p,
-          argAp, pragma[only_bind_into](argApa), ap, pragma[only_bind_into](apa), config) and
-        kind = ret.getKind() and
-        fwdFlowThroughOutOfCall(_, ccc, ret, _, allowsFieldFlow, argApa, apa, config) and
-        (if allowsFieldFlow = false then ap instanceof ApNil else any())
+      exists(DataFlowCall call, ApApprox apa, boolean allowsFieldFlow, ApApprox innerArgApa |
+        returnFlowsThrough0(call, state, ccc, ap, apa, ret, p, argAp, innerArgApa, config) and
+        flowThroughOutOfCall(call, ccc, ret, _, allowsFieldFlow, innerArgApa, apa, config) and
+        pos = ret.getReturnPosition() and
+        if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
     pragma[nomagic]
     private predicate flowThroughIntoCall(
-      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp,
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp, Ap ap,
       Configuration config
     ) {
       exists(ApApprox argApa |
@@ -1620,7 +1607,7 @@ private module MkStage<StageSig PrevStage> {
           allowsFieldFlow, argApa, pragma[only_bind_into](config)) and
         fwdFlow(arg, _, _, _, _, pragma[only_bind_into](argAp), argApa,
           pragma[only_bind_into](config)) and
-        returnFlowsThrough(_, _, _, _, p, pragma[only_bind_into](argAp), _,
+        returnFlowsThrough(_, _, _, _, p, pragma[only_bind_into](argAp), ap,
           pragma[only_bind_into](config)) and
         if allowsFieldFlow = false then argAp instanceof ApNil else any()
       )
@@ -1639,12 +1626,13 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate flowOutOfCallAp(
-      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
+      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
       Ap ap, Configuration config
     ) {
       exists(ApApprox apa |
-        flowOutOfCallApa(call, ret, kind, out, allowsFieldFlow, apa, config) and
-        fwdFlow(ret, _, _, _, _, ap, apa, config)
+        flowOutOfCallApa(call, ret, _, out, allowsFieldFlow, apa, config) and
+        fwdFlow(ret, _, _, _, _, ap, apa, config) and
+        pos = ret.getReturnPosition()
       )
     }
 
@@ -1739,17 +1727,17 @@ private module MkStage<StageSig PrevStage> {
       )
       or
       // flow through a callable
-      exists(DataFlowCall call, ReturnKindExt returnKind0, Ap returnAp0 |
-        revFlowInToReturn(call, node, state, returnKind0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
+      exists(DataFlowCall call, ParamNodeEx p, ReturnPosition pos, Ap innerReturnAp |
+        revFlowThrough(call, returnCtx, p, state, pos, returnAp, ap, innerReturnAp, config) and
+        flowThroughIntoCall(call, node, p, _, ap, innerReturnAp, config)
       )
       or
       // flow out of a callable
-      exists(ReturnKindExt kind |
-        revFlowOut(_, node, kind, state, _, _, ap, config) and
-        if returnFlowsThrough(node, kind, state, _, _, _, ap, config)
+      exists(ReturnPosition pos |
+        revFlowOut(_, node, pos, state, _, _, ap, config) and
+        if returnFlowsThrough(node, pos, state, _, _, _, ap, config)
         then (
-          returnCtx = TReturnCtxMaybeFlowThrough(kind) and
+          returnCtx = TReturnCtxMaybeFlowThrough(pos) and
           returnAp = apSome(ap)
         ) else (
           returnCtx = TReturnCtxNoFlowThrough() and returnAp = apNone()
@@ -1782,47 +1770,33 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate revFlowOut(
-      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, FlowState state, ReturnCtx returnCtx,
+      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, FlowState state, ReturnCtx returnCtx,
       ApOption returnAp, Ap ap, Configuration config
     ) {
       exists(NodeEx out, boolean allowsFieldFlow |
         revFlow(out, state, returnCtx, returnAp, ap, config) and
-        flowOutOfCallAp(call, ret, kind, out, allowsFieldFlow, ap, config) and
+        flowOutOfCallAp(call, ret, pos, out, allowsFieldFlow, ap, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
-    /**
-     * Same as `flowThroughIntoCall`, but restricted to calls that are reached
-     * in the flow covered by `revFlow`, where data might flow through the target
-     * callable and back out at `call`.
-     */
-    pragma[nomagic]
-    private predicate revFlowThroughIntoCall(
-      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp,
-      Configuration config
-    ) {
-      flowThroughIntoCall(call, arg, p, allowsFieldFlow, argAp, config) and
-      revFlowIsReturned(call, _, _, _, _, config)
-    }
-
     pragma[nomagic]
     private predicate revFlowParamToReturn(
-      ParamNodeEx p, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap, Configuration config
+      ParamNodeEx p, FlowState state, ReturnPosition pos, Ap returnAp, Ap ap, Configuration config
     ) {
-      revFlow(p, state, TReturnCtxMaybeFlowThrough(kind), apSome(returnAp), ap, config) and
-      parameterFlowThroughAllowed(p, kind)
+      revFlow(pragma[only_bind_into](p), state, TReturnCtxMaybeFlowThrough(pos), apSome(returnAp),
+        pragma[only_bind_into](ap), pragma[only_bind_into](config)) and
+      parameterFlowThroughAllowed(p, pos.getKind()) and
+      PrevStage::parameterMayFlowThrough(p, getApprox(ap), config)
     }
 
     pragma[nomagic]
-    private predicate revFlowInToReturn(
-      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap,
-      Configuration config
+    private predicate revFlowThrough(
+      DataFlowCall call, ReturnCtx returnCtx, ParamNodeEx p, FlowState state, ReturnPosition pos,
+      ApOption returnAp, Ap ap, Ap innerReturnAp, Configuration config
     ) {
-      exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlowParamToReturn(p, state, kind, returnAp, ap, config) and
-        revFlowThroughIntoCall(call, arg, p, allowsFieldFlow, ap, config)
-      )
+      revFlowParamToReturn(p, state, pos, innerReturnAp, ap, config) and
+      revFlowIsReturned(call, returnCtx, returnAp, pos, innerReturnAp, config)
     }
 
     /**
@@ -1832,12 +1806,12 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate revFlowIsReturned(
-      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnKindExt kind, Ap ap,
+      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnPosition pos, Ap ap,
       Configuration config
     ) {
       exists(RetNodeEx ret, FlowState state, CcCall ccc |
-        revFlowOut(call, ret, kind, state, returnCtx, returnAp, ap, config) and
-        returnFlowsThrough(ret, kind, state, ccc, _, _, ap, config) and
+        revFlowOut(call, ret, pos, state, returnCtx, returnAp, ap, config) and
+        returnFlowsThrough(ret, pos, state, ccc, _, _, ap, config) and
         matchesCall(ccc, call)
       )
     }
@@ -1915,17 +1889,17 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate parameterFlowsThroughRev(
-      ParamNodeEx p, Ap ap, ReturnKindExt kind, Ap returnAp, Configuration config
+      ParamNodeEx p, Ap ap, ReturnPosition pos, Ap returnAp, Configuration config
     ) {
-      revFlow(p, _, TReturnCtxMaybeFlowThrough(kind), apSome(returnAp), ap, config) and
-      parameterFlowThroughAllowed(p, kind)
+      revFlow(p, _, TReturnCtxMaybeFlowThrough(pos), apSome(returnAp), ap, config) and
+      parameterFlowThroughAllowed(p, pos.getKind())
     }
 
     pragma[nomagic]
     predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
-      exists(RetNodeEx ret, ReturnKindExt kind |
-        returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
-        parameterFlowsThroughRev(p, ap, kind, _, config)
+      exists(RetNodeEx ret, ReturnPosition pos |
+        returnFlowsThrough(ret, pos, _, _, p, ap, _, config) and
+        parameterFlowsThroughRev(p, ap, pos, _, config)
       )
     }
 
@@ -1933,20 +1907,21 @@ private module MkStage<StageSig PrevStage> {
     predicate returnMayFlowThrough(
       RetNodeEx ret, Ap argAp, Ap ap, ReturnKindExt kind, Configuration config
     ) {
-      exists(ParamNodeEx p |
-        returnFlowsThrough(ret, kind, _, _, p, argAp, ap, config) and
-        parameterFlowsThroughRev(p, argAp, kind, ap, config)
+      exists(ParamNodeEx p, ReturnPosition pos |
+        returnFlowsThrough(ret, pos, _, _, p, argAp, ap, config) and
+        parameterFlowsThroughRev(p, argAp, pos, ap, config) and
+        kind = pos.getKind()
       )
     }
 
     pragma[nomagic]
-    predicate revFlowInToReturnIsReturned(
+    private predicate revFlowThroughArg(
       DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnCtx returnCtx, ApOption returnAp,
       Ap ap, Configuration config
     ) {
-      exists(ReturnKindExt returnKind0, Ap returnAp0 |
-        revFlowInToReturn(call, arg, state, returnKind0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
+      exists(ParamNodeEx p, ReturnPosition pos, Ap innerReturnAp |
+        revFlowThrough(call, returnCtx, p, state, pos, returnAp, ap, innerReturnAp, config) and
+        flowThroughIntoCall(call, arg, p, _, ap, innerReturnAp, config)
       )
     }
 
@@ -1954,7 +1929,7 @@ private module MkStage<StageSig PrevStage> {
     predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
       exists(ArgNodeEx arg, FlowState state, ReturnCtx returnCtx, ApOption returnAp, Ap ap |
         revFlow(arg, state, returnCtx, returnAp, ap, config) and
-        revFlowInToReturnIsReturned(call, arg, state, returnCtx, returnAp, ap, config)
+        revFlowThroughArg(call, arg, state, returnCtx, returnAp, ap, config)
       )
     }
 
@@ -1967,8 +1942,9 @@ private module MkStage<StageSig PrevStage> {
       conscand = count(TypedContent f0, Ap ap | fwdConsCand(f0, ap, config)) and
       states = count(FlowState state | fwdFlow(_, state, _, _, _, _, config)) and
       tuples =
-        count(NodeEx n, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-          Ap ap | fwdFlow(n, state, cc, summaryCtx, argAp, ap, config))
+        count(NodeEx n, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap |
+          fwdFlow(n, state, cc, summaryCtx, argAp, ap, config)
+        )
       or
       fwd = false and
       nodes = count(NodeEx node | revFlow(node, _, _, _, _, config)) and
@@ -2823,13 +2799,12 @@ private Configuration unbindConf(Configuration conf) {
 
 pragma[nomagic]
 private predicate nodeMayUseSummary0(
-  NodeEx n, DataFlowCallable c, ParameterPosition pos, FlowState state, AccessPathApprox apa,
-  Configuration config
+  NodeEx n, ParamNodeEx p, FlowState state, AccessPathApprox apa, Configuration config
 ) {
   exists(AccessPathApprox apa0 |
-    c = n.getEnclosingCallable() and
+    Stage5::parameterMayFlowThrough(p, _, _) and
     Stage5::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
-    Stage5::fwdFlow(n, state, any(CallContextCall ccc), TParameterPositionSome(pos),
+    Stage5::fwdFlow(n, state, any(CallContextCall ccc), TParamNodeSome(p.asNode()),
       TAccessPathApproxSome(apa), apa0, config)
   )
 }
@@ -2838,10 +2813,9 @@ pragma[nomagic]
 private predicate nodeMayUseSummary(
   NodeEx n, FlowState state, AccessPathApprox apa, Configuration config
 ) {
-  exists(DataFlowCallable c, ParameterPosition pos, ParamNodeEx p |
+  exists(ParamNodeEx p |
     Stage5::parameterMayFlowThrough(p, apa, config) and
-    nodeMayUseSummary0(n, c, pos, state, apa, config) and
-    p.isParameterOf(c, pos)
+    nodeMayUseSummary0(n, p, state, apa, config)
   )
 }
 
diff --git a/go/ql/lib/semmle/go/dataflow/internal/DataFlowImpl.qll b/go/ql/lib/semmle/go/dataflow/internal/DataFlowImpl.qll
index 6741ccc2f06..23d11a38842 100644
--- a/go/ql/lib/semmle/go/dataflow/internal/DataFlowImpl.qll
+++ b/go/ql/lib/semmle/go/dataflow/internal/DataFlowImpl.qll
@@ -1327,8 +1327,8 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     additional predicate fwdFlow(
-      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      Ap ap, ApApprox apa, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      ApApprox apa, Configuration config
     ) {
       fwdFlow0(node, state, cc, summaryCtx, argAp, ap, apa, config) and
       PrevStage::revFlow(node, state, apa, config) and
@@ -1337,21 +1337,21 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[inline]
     additional predicate fwdFlow(
-      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      Ap ap, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      Configuration config
     ) {
       fwdFlow(node, state, cc, summaryCtx, argAp, ap, _, config)
     }
 
     pragma[nomagic]
     private predicate fwdFlow0(
-      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      Ap ap, ApApprox apa, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      ApApprox apa, Configuration config
     ) {
       sourceNode(node, state, config) and
       (if hasSourceCallCtx(config) then cc = ccSomeCall() else cc = ccNone()) and
       argAp = apNone() and
-      summaryCtx = TParameterPositionNone() and
+      summaryCtx = TParamNodeNone() and
       ap = getApNil(node) and
       apa = getApprox(ap)
       or
@@ -1372,7 +1372,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, apa, pragma[only_bind_into](config)) and
         jumpStep(mid, node, config) and
         cc = ccNone() and
-        summaryCtx = TParameterPositionNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone()
       )
       or
@@ -1380,7 +1380,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, state, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStep(mid, node, config) and
         cc = ccNone() and
-        summaryCtx = TParameterPositionNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone() and
         ap = getApNil(node) and
         apa = getApprox(ap)
@@ -1390,7 +1390,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, state0, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStateStep(mid, state0, node, state, config) and
         cc = ccNone() and
-        summaryCtx = TParameterPositionNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone() and
         ap = getApNil(node) and
         apa = getApprox(ap)
@@ -1414,10 +1414,10 @@ private module MkStage<StageSig PrevStage> {
       fwdFlowIn(_, node, state, _, cc, _, _, ap, apa, config) and
       if PrevStage::parameterMayFlowThrough(node, apa, config)
       then (
-        summaryCtx = TParameterPositionSome(node.(ParamNodeEx).getPosition()) and
+        summaryCtx = TParamNodeSome(node.asNode()) and
         argAp = apSome(ap)
       ) else (
-        summaryCtx = TParameterPositionNone() and argAp = apNone()
+        summaryCtx = TParamNodeNone() and argAp = apNone()
       )
       or
       // flow out of a callable
@@ -1433,16 +1433,19 @@ private module MkStage<StageSig PrevStage> {
       )
       or
       // flow through a callable
-      exists(DataFlowCall call, ParameterPosition summaryCtx0, Ap argAp0 |
-        fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, apa, config) and
-        fwdFlowIsEntered(call, cc, summaryCtx, argAp, summaryCtx0, argAp0, config)
+      exists(
+        DataFlowCall call, CcCall ccc, RetNodeEx ret, boolean allowsFieldFlow, ApApprox innerArgApa
+      |
+        fwdFlowThrough(call, cc, state, ccc, summaryCtx, argAp, ap, apa, ret, innerArgApa, config) and
+        flowThroughOutOfCall(call, ccc, ret, node, allowsFieldFlow, innerArgApa, apa, config) and
+        if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
     pragma[nomagic]
     private predicate fwdFlowStore(
       NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc,
-      ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
+      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
     ) {
       exists(DataFlowType contentType, ApApprox apa1 |
         fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, apa1, config) and
@@ -1473,8 +1476,8 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowRead0(
-      NodeEx node1, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      ApNonNil ap, Configuration config
+      NodeEx node1, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, ApNonNil ap,
+      Configuration config
     ) {
       fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, _, _, config)
@@ -1483,7 +1486,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowRead(
       Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc,
-      ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
+      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
     ) {
       fwdFlowRead0(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, c, node2, config) and
@@ -1493,7 +1496,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowIn(
       DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, CcCall innercc,
-      ParameterPositionOption summaryCtx, ApOption argAp, Ap ap, ApApprox apa, Configuration config
+      ParamNodeOption summaryCtx, ApOption argAp, Ap ap, ApApprox apa, Configuration config
     ) {
       exists(ArgNodeEx arg, boolean allowsFieldFlow |
         fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, apa, config) and
@@ -1505,64 +1508,38 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowRetFromArg(
-      RetNodeEx ret, FlowState state, CcCall ccc, ParameterPosition summaryCtx, ParamNodeEx p,
-      Ap argAp, ApApprox argApa, Ap ap, ApApprox apa, Configuration config
+      RetNodeEx ret, FlowState state, CcCall ccc, ParamNodeEx summaryCtx, Ap argAp, ApApprox argApa,
+      Ap ap, ApApprox apa, Configuration config
     ) {
-      exists(DataFlowCallable c, ReturnKindExt kind |
+      exists(ReturnKindExt kind |
         fwdFlow(pragma[only_bind_into](ret), state, ccc,
-          TParameterPositionSome(pragma[only_bind_into](summaryCtx)), apSome(argAp), ap, apa, config) and
-        getApprox(argAp) = argApa and
-        c = ret.getEnclosingCallable() and
+          TParamNodeSome(pragma[only_bind_into](summaryCtx.asNode())),
+          pragma[only_bind_into](apSome(argAp)), ap, pragma[only_bind_into](apa),
+          pragma[only_bind_into](config)) and
         kind = ret.getKind() and
-        p.isParameterOf(c, pragma[only_bind_into](summaryCtx)) and
-        parameterFlowThroughAllowed(p, kind)
+        parameterFlowThroughAllowed(summaryCtx, kind) and
+        argApa = getApprox(argAp) and
+        PrevStage::returnMayFlowThrough(ret, argApa, apa, kind, pragma[only_bind_into](config))
       )
     }
 
     pragma[inline]
-    private predicate fwdFlowInMayFlowThrough(
-      DataFlowCall call, Cc cc, CcCall innerCc, ParameterPositionOption summaryCtx, ApOption argAp,
-      ParamNodeEx param, Ap ap, ApApprox apa, Configuration config
+    private predicate fwdFlowThrough0(
+      DataFlowCall call, Cc cc, FlowState state, CcCall ccc, ParamNodeOption summaryCtx,
+      ApOption argAp, Ap ap, ApApprox apa, RetNodeEx ret, ParamNodeEx innerSummaryCtx,
+      Ap innerArgAp, ApApprox innerArgApa, Configuration config
     ) {
-      fwdFlowIn(call, pragma[only_bind_into](param), _, cc, innerCc, summaryCtx, argAp, ap,
-        pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
-      PrevStage::parameterMayFlowThrough(param, apa, config)
-    }
-
-    // dedup before joining with `flowThroughOutOfCall`
-    pragma[nomagic]
-    private predicate fwdFlowInMayFlowThroughProj(
-      DataFlowCall call, CcCall innerCc, ApApprox apa, Configuration config
-    ) {
-      fwdFlowInMayFlowThrough(call, _, innerCc, _, _, _, _, apa, config)
-    }
-
-    /**
-     * Same as `flowThroughOutOfCall`, but restricted to calls that are reached
-     * in the flow covered by `fwdFlow`, where data might flow through the target
-     * callable and back out at `call`.
-     */
-    pragma[nomagic]
-    private predicate fwdFlowThroughOutOfCall(
-      DataFlowCall call, CcCall ccc, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow,
-      ApApprox argApa, ApApprox apa, Configuration config
-    ) {
-      fwdFlowInMayFlowThroughProj(call, ccc, argApa, config) and
-      flowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, argApa, apa, config)
+      fwdFlowRetFromArg(ret, state, ccc, innerSummaryCtx, innerArgAp, innerArgApa, ap, apa, config) and
+      fwdFlowIsEntered(call, cc, ccc, summaryCtx, argAp, innerSummaryCtx, innerArgAp, config)
     }
 
     pragma[nomagic]
-    private predicate fwdFlowOutFromArg(
-      DataFlowCall call, NodeEx out, FlowState state, ParameterPosition summaryCtx, Ap argAp, Ap ap,
-      ApApprox apa, Configuration config
+    private predicate fwdFlowThrough(
+      DataFlowCall call, Cc cc, FlowState state, CcCall ccc, ParamNodeOption summaryCtx,
+      ApOption argAp, Ap ap, ApApprox apa, RetNodeEx ret, ApApprox innerArgApa, Configuration config
     ) {
-      exists(RetNodeEx ret, boolean allowsFieldFlow, CcCall ccc, ApApprox argApa |
-        fwdFlowRetFromArg(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc),
-          summaryCtx, _, argAp, pragma[only_bind_into](argApa), ap, pragma[only_bind_into](apa),
-          config) and
-        fwdFlowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, argApa, apa, config) and
-        (if allowsFieldFlow = false then ap instanceof ApNil else any())
-      )
+      fwdFlowThrough0(call, cc, state, ccc, summaryCtx, argAp, ap, apa, ret, _, _, innerArgApa,
+        config)
     }
 
     /**
@@ -1571,12 +1548,14 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate fwdFlowIsEntered(
-      DataFlowCall call, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      ParameterPosition pos, Ap ap, Configuration config
+      DataFlowCall call, Cc cc, CcCall innerCc, ParamNodeOption summaryCtx, ApOption argAp,
+      ParamNodeEx p, Ap ap, Configuration config
     ) {
-      exists(ParamNodeEx param |
-        fwdFlowInMayFlowThrough(call, cc, _, summaryCtx, argAp, param, ap, _, config) and
-        pos = param.getPosition()
+      exists(ApApprox apa |
+        fwdFlowIn(call, pragma[only_bind_into](p), _, cc, innerCc, summaryCtx, argAp, ap,
+          pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
+        PrevStage::parameterMayFlowThrough(p, apa, config) and
+        PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config))
       )
     }
 
@@ -1596,23 +1575,31 @@ private module MkStage<StageSig PrevStage> {
       fwdFlowConsCand(ap1, c, ap2, config)
     }
 
+    pragma[nomagic]
+    private predicate returnFlowsThrough0(
+      DataFlowCall call, FlowState state, CcCall ccc, Ap ap, ApApprox apa, RetNodeEx ret,
+      ParamNodeEx innerSummaryCtx, Ap innerArgAp, ApApprox innerArgApa, Configuration config
+    ) {
+      fwdFlowThrough0(call, _, state, ccc, _, _, ap, apa, ret, innerSummaryCtx, innerArgAp,
+        innerArgApa, config)
+    }
+
     pragma[nomagic]
     private predicate returnFlowsThrough(
-      RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, ParamNodeEx p, Ap argAp,
+      RetNodeEx ret, ReturnPosition pos, FlowState state, CcCall ccc, ParamNodeEx p, Ap argAp,
       Ap ap, Configuration config
     ) {
-      exists(boolean allowsFieldFlow, ApApprox argApa, ApApprox apa |
-        fwdFlowRetFromArg(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc), _, p,
-          argAp, pragma[only_bind_into](argApa), ap, pragma[only_bind_into](apa), config) and
-        kind = ret.getKind() and
-        fwdFlowThroughOutOfCall(_, ccc, ret, _, allowsFieldFlow, argApa, apa, config) and
-        (if allowsFieldFlow = false then ap instanceof ApNil else any())
+      exists(DataFlowCall call, ApApprox apa, boolean allowsFieldFlow, ApApprox innerArgApa |
+        returnFlowsThrough0(call, state, ccc, ap, apa, ret, p, argAp, innerArgApa, config) and
+        flowThroughOutOfCall(call, ccc, ret, _, allowsFieldFlow, innerArgApa, apa, config) and
+        pos = ret.getReturnPosition() and
+        if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
     pragma[nomagic]
     private predicate flowThroughIntoCall(
-      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp,
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp, Ap ap,
       Configuration config
     ) {
       exists(ApApprox argApa |
@@ -1620,7 +1607,7 @@ private module MkStage<StageSig PrevStage> {
           allowsFieldFlow, argApa, pragma[only_bind_into](config)) and
         fwdFlow(arg, _, _, _, _, pragma[only_bind_into](argAp), argApa,
           pragma[only_bind_into](config)) and
-        returnFlowsThrough(_, _, _, _, p, pragma[only_bind_into](argAp), _,
+        returnFlowsThrough(_, _, _, _, p, pragma[only_bind_into](argAp), ap,
           pragma[only_bind_into](config)) and
         if allowsFieldFlow = false then argAp instanceof ApNil else any()
       )
@@ -1639,12 +1626,13 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate flowOutOfCallAp(
-      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
+      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
       Ap ap, Configuration config
     ) {
       exists(ApApprox apa |
-        flowOutOfCallApa(call, ret, kind, out, allowsFieldFlow, apa, config) and
-        fwdFlow(ret, _, _, _, _, ap, apa, config)
+        flowOutOfCallApa(call, ret, _, out, allowsFieldFlow, apa, config) and
+        fwdFlow(ret, _, _, _, _, ap, apa, config) and
+        pos = ret.getReturnPosition()
       )
     }
 
@@ -1739,17 +1727,17 @@ private module MkStage<StageSig PrevStage> {
       )
       or
       // flow through a callable
-      exists(DataFlowCall call, ReturnKindExt returnKind0, Ap returnAp0 |
-        revFlowInToReturn(call, node, state, returnKind0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
+      exists(DataFlowCall call, ParamNodeEx p, ReturnPosition pos, Ap innerReturnAp |
+        revFlowThrough(call, returnCtx, p, state, pos, returnAp, ap, innerReturnAp, config) and
+        flowThroughIntoCall(call, node, p, _, ap, innerReturnAp, config)
       )
       or
       // flow out of a callable
-      exists(ReturnKindExt kind |
-        revFlowOut(_, node, kind, state, _, _, ap, config) and
-        if returnFlowsThrough(node, kind, state, _, _, _, ap, config)
+      exists(ReturnPosition pos |
+        revFlowOut(_, node, pos, state, _, _, ap, config) and
+        if returnFlowsThrough(node, pos, state, _, _, _, ap, config)
         then (
-          returnCtx = TReturnCtxMaybeFlowThrough(kind) and
+          returnCtx = TReturnCtxMaybeFlowThrough(pos) and
           returnAp = apSome(ap)
         ) else (
           returnCtx = TReturnCtxNoFlowThrough() and returnAp = apNone()
@@ -1782,47 +1770,33 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate revFlowOut(
-      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, FlowState state, ReturnCtx returnCtx,
+      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, FlowState state, ReturnCtx returnCtx,
       ApOption returnAp, Ap ap, Configuration config
     ) {
       exists(NodeEx out, boolean allowsFieldFlow |
         revFlow(out, state, returnCtx, returnAp, ap, config) and
-        flowOutOfCallAp(call, ret, kind, out, allowsFieldFlow, ap, config) and
+        flowOutOfCallAp(call, ret, pos, out, allowsFieldFlow, ap, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
-    /**
-     * Same as `flowThroughIntoCall`, but restricted to calls that are reached
-     * in the flow covered by `revFlow`, where data might flow through the target
-     * callable and back out at `call`.
-     */
-    pragma[nomagic]
-    private predicate revFlowThroughIntoCall(
-      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp,
-      Configuration config
-    ) {
-      flowThroughIntoCall(call, arg, p, allowsFieldFlow, argAp, config) and
-      revFlowIsReturned(call, _, _, _, _, config)
-    }
-
     pragma[nomagic]
     private predicate revFlowParamToReturn(
-      ParamNodeEx p, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap, Configuration config
+      ParamNodeEx p, FlowState state, ReturnPosition pos, Ap returnAp, Ap ap, Configuration config
     ) {
-      revFlow(p, state, TReturnCtxMaybeFlowThrough(kind), apSome(returnAp), ap, config) and
-      parameterFlowThroughAllowed(p, kind)
+      revFlow(pragma[only_bind_into](p), state, TReturnCtxMaybeFlowThrough(pos), apSome(returnAp),
+        pragma[only_bind_into](ap), pragma[only_bind_into](config)) and
+      parameterFlowThroughAllowed(p, pos.getKind()) and
+      PrevStage::parameterMayFlowThrough(p, getApprox(ap), config)
     }
 
     pragma[nomagic]
-    private predicate revFlowInToReturn(
-      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap,
-      Configuration config
+    private predicate revFlowThrough(
+      DataFlowCall call, ReturnCtx returnCtx, ParamNodeEx p, FlowState state, ReturnPosition pos,
+      ApOption returnAp, Ap ap, Ap innerReturnAp, Configuration config
     ) {
-      exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlowParamToReturn(p, state, kind, returnAp, ap, config) and
-        revFlowThroughIntoCall(call, arg, p, allowsFieldFlow, ap, config)
-      )
+      revFlowParamToReturn(p, state, pos, innerReturnAp, ap, config) and
+      revFlowIsReturned(call, returnCtx, returnAp, pos, innerReturnAp, config)
     }
 
     /**
@@ -1832,12 +1806,12 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate revFlowIsReturned(
-      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnKindExt kind, Ap ap,
+      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnPosition pos, Ap ap,
       Configuration config
     ) {
       exists(RetNodeEx ret, FlowState state, CcCall ccc |
-        revFlowOut(call, ret, kind, state, returnCtx, returnAp, ap, config) and
-        returnFlowsThrough(ret, kind, state, ccc, _, _, ap, config) and
+        revFlowOut(call, ret, pos, state, returnCtx, returnAp, ap, config) and
+        returnFlowsThrough(ret, pos, state, ccc, _, _, ap, config) and
         matchesCall(ccc, call)
       )
     }
@@ -1915,17 +1889,17 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate parameterFlowsThroughRev(
-      ParamNodeEx p, Ap ap, ReturnKindExt kind, Ap returnAp, Configuration config
+      ParamNodeEx p, Ap ap, ReturnPosition pos, Ap returnAp, Configuration config
     ) {
-      revFlow(p, _, TReturnCtxMaybeFlowThrough(kind), apSome(returnAp), ap, config) and
-      parameterFlowThroughAllowed(p, kind)
+      revFlow(p, _, TReturnCtxMaybeFlowThrough(pos), apSome(returnAp), ap, config) and
+      parameterFlowThroughAllowed(p, pos.getKind())
     }
 
     pragma[nomagic]
     predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
-      exists(RetNodeEx ret, ReturnKindExt kind |
-        returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
-        parameterFlowsThroughRev(p, ap, kind, _, config)
+      exists(RetNodeEx ret, ReturnPosition pos |
+        returnFlowsThrough(ret, pos, _, _, p, ap, _, config) and
+        parameterFlowsThroughRev(p, ap, pos, _, config)
       )
     }
 
@@ -1933,20 +1907,21 @@ private module MkStage<StageSig PrevStage> {
     predicate returnMayFlowThrough(
       RetNodeEx ret, Ap argAp, Ap ap, ReturnKindExt kind, Configuration config
     ) {
-      exists(ParamNodeEx p |
-        returnFlowsThrough(ret, kind, _, _, p, argAp, ap, config) and
-        parameterFlowsThroughRev(p, argAp, kind, ap, config)
+      exists(ParamNodeEx p, ReturnPosition pos |
+        returnFlowsThrough(ret, pos, _, _, p, argAp, ap, config) and
+        parameterFlowsThroughRev(p, argAp, pos, ap, config) and
+        kind = pos.getKind()
       )
     }
 
     pragma[nomagic]
-    predicate revFlowInToReturnIsReturned(
+    private predicate revFlowThroughArg(
       DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnCtx returnCtx, ApOption returnAp,
       Ap ap, Configuration config
     ) {
-      exists(ReturnKindExt returnKind0, Ap returnAp0 |
-        revFlowInToReturn(call, arg, state, returnKind0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
+      exists(ParamNodeEx p, ReturnPosition pos, Ap innerReturnAp |
+        revFlowThrough(call, returnCtx, p, state, pos, returnAp, ap, innerReturnAp, config) and
+        flowThroughIntoCall(call, arg, p, _, ap, innerReturnAp, config)
       )
     }
 
@@ -1954,7 +1929,7 @@ private module MkStage<StageSig PrevStage> {
     predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
       exists(ArgNodeEx arg, FlowState state, ReturnCtx returnCtx, ApOption returnAp, Ap ap |
         revFlow(arg, state, returnCtx, returnAp, ap, config) and
-        revFlowInToReturnIsReturned(call, arg, state, returnCtx, returnAp, ap, config)
+        revFlowThroughArg(call, arg, state, returnCtx, returnAp, ap, config)
       )
     }
 
@@ -1967,8 +1942,9 @@ private module MkStage<StageSig PrevStage> {
       conscand = count(TypedContent f0, Ap ap | fwdConsCand(f0, ap, config)) and
       states = count(FlowState state | fwdFlow(_, state, _, _, _, _, config)) and
       tuples =
-        count(NodeEx n, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-          Ap ap | fwdFlow(n, state, cc, summaryCtx, argAp, ap, config))
+        count(NodeEx n, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap |
+          fwdFlow(n, state, cc, summaryCtx, argAp, ap, config)
+        )
       or
       fwd = false and
       nodes = count(NodeEx node | revFlow(node, _, _, _, _, config)) and
@@ -2823,13 +2799,12 @@ private Configuration unbindConf(Configuration conf) {
 
 pragma[nomagic]
 private predicate nodeMayUseSummary0(
-  NodeEx n, DataFlowCallable c, ParameterPosition pos, FlowState state, AccessPathApprox apa,
-  Configuration config
+  NodeEx n, ParamNodeEx p, FlowState state, AccessPathApprox apa, Configuration config
 ) {
   exists(AccessPathApprox apa0 |
-    c = n.getEnclosingCallable() and
+    Stage5::parameterMayFlowThrough(p, _, _) and
     Stage5::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
-    Stage5::fwdFlow(n, state, any(CallContextCall ccc), TParameterPositionSome(pos),
+    Stage5::fwdFlow(n, state, any(CallContextCall ccc), TParamNodeSome(p.asNode()),
       TAccessPathApproxSome(apa), apa0, config)
   )
 }
@@ -2838,10 +2813,9 @@ pragma[nomagic]
 private predicate nodeMayUseSummary(
   NodeEx n, FlowState state, AccessPathApprox apa, Configuration config
 ) {
-  exists(DataFlowCallable c, ParameterPosition pos, ParamNodeEx p |
+  exists(ParamNodeEx p |
     Stage5::parameterMayFlowThrough(p, apa, config) and
-    nodeMayUseSummary0(n, c, pos, state, apa, config) and
-    p.isParameterOf(c, pos)
+    nodeMayUseSummary0(n, p, state, apa, config)
   )
 }
 
diff --git a/go/ql/lib/semmle/go/dataflow/internal/DataFlowImpl2.qll b/go/ql/lib/semmle/go/dataflow/internal/DataFlowImpl2.qll
index 6741ccc2f06..23d11a38842 100644
--- a/go/ql/lib/semmle/go/dataflow/internal/DataFlowImpl2.qll
+++ b/go/ql/lib/semmle/go/dataflow/internal/DataFlowImpl2.qll
@@ -1327,8 +1327,8 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     additional predicate fwdFlow(
-      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      Ap ap, ApApprox apa, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      ApApprox apa, Configuration config
     ) {
       fwdFlow0(node, state, cc, summaryCtx, argAp, ap, apa, config) and
       PrevStage::revFlow(node, state, apa, config) and
@@ -1337,21 +1337,21 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[inline]
     additional predicate fwdFlow(
-      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      Ap ap, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      Configuration config
     ) {
       fwdFlow(node, state, cc, summaryCtx, argAp, ap, _, config)
     }
 
     pragma[nomagic]
     private predicate fwdFlow0(
-      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      Ap ap, ApApprox apa, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      ApApprox apa, Configuration config
     ) {
       sourceNode(node, state, config) and
       (if hasSourceCallCtx(config) then cc = ccSomeCall() else cc = ccNone()) and
       argAp = apNone() and
-      summaryCtx = TParameterPositionNone() and
+      summaryCtx = TParamNodeNone() and
       ap = getApNil(node) and
       apa = getApprox(ap)
       or
@@ -1372,7 +1372,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, apa, pragma[only_bind_into](config)) and
         jumpStep(mid, node, config) and
         cc = ccNone() and
-        summaryCtx = TParameterPositionNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone()
       )
       or
@@ -1380,7 +1380,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, state, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStep(mid, node, config) and
         cc = ccNone() and
-        summaryCtx = TParameterPositionNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone() and
         ap = getApNil(node) and
         apa = getApprox(ap)
@@ -1390,7 +1390,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, state0, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStateStep(mid, state0, node, state, config) and
         cc = ccNone() and
-        summaryCtx = TParameterPositionNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone() and
         ap = getApNil(node) and
         apa = getApprox(ap)
@@ -1414,10 +1414,10 @@ private module MkStage<StageSig PrevStage> {
       fwdFlowIn(_, node, state, _, cc, _, _, ap, apa, config) and
       if PrevStage::parameterMayFlowThrough(node, apa, config)
       then (
-        summaryCtx = TParameterPositionSome(node.(ParamNodeEx).getPosition()) and
+        summaryCtx = TParamNodeSome(node.asNode()) and
         argAp = apSome(ap)
       ) else (
-        summaryCtx = TParameterPositionNone() and argAp = apNone()
+        summaryCtx = TParamNodeNone() and argAp = apNone()
       )
       or
       // flow out of a callable
@@ -1433,16 +1433,19 @@ private module MkStage<StageSig PrevStage> {
       )
       or
       // flow through a callable
-      exists(DataFlowCall call, ParameterPosition summaryCtx0, Ap argAp0 |
-        fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, apa, config) and
-        fwdFlowIsEntered(call, cc, summaryCtx, argAp, summaryCtx0, argAp0, config)
+      exists(
+        DataFlowCall call, CcCall ccc, RetNodeEx ret, boolean allowsFieldFlow, ApApprox innerArgApa
+      |
+        fwdFlowThrough(call, cc, state, ccc, summaryCtx, argAp, ap, apa, ret, innerArgApa, config) and
+        flowThroughOutOfCall(call, ccc, ret, node, allowsFieldFlow, innerArgApa, apa, config) and
+        if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
     pragma[nomagic]
     private predicate fwdFlowStore(
       NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc,
-      ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
+      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
     ) {
       exists(DataFlowType contentType, ApApprox apa1 |
         fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, apa1, config) and
@@ -1473,8 +1476,8 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowRead0(
-      NodeEx node1, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      ApNonNil ap, Configuration config
+      NodeEx node1, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, ApNonNil ap,
+      Configuration config
     ) {
       fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, _, _, config)
@@ -1483,7 +1486,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowRead(
       Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc,
-      ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
+      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
     ) {
       fwdFlowRead0(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, c, node2, config) and
@@ -1493,7 +1496,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowIn(
       DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, CcCall innercc,
-      ParameterPositionOption summaryCtx, ApOption argAp, Ap ap, ApApprox apa, Configuration config
+      ParamNodeOption summaryCtx, ApOption argAp, Ap ap, ApApprox apa, Configuration config
     ) {
       exists(ArgNodeEx arg, boolean allowsFieldFlow |
         fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, apa, config) and
@@ -1505,64 +1508,38 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowRetFromArg(
-      RetNodeEx ret, FlowState state, CcCall ccc, ParameterPosition summaryCtx, ParamNodeEx p,
-      Ap argAp, ApApprox argApa, Ap ap, ApApprox apa, Configuration config
+      RetNodeEx ret, FlowState state, CcCall ccc, ParamNodeEx summaryCtx, Ap argAp, ApApprox argApa,
+      Ap ap, ApApprox apa, Configuration config
     ) {
-      exists(DataFlowCallable c, ReturnKindExt kind |
+      exists(ReturnKindExt kind |
         fwdFlow(pragma[only_bind_into](ret), state, ccc,
-          TParameterPositionSome(pragma[only_bind_into](summaryCtx)), apSome(argAp), ap, apa, config) and
-        getApprox(argAp) = argApa and
-        c = ret.getEnclosingCallable() and
+          TParamNodeSome(pragma[only_bind_into](summaryCtx.asNode())),
+          pragma[only_bind_into](apSome(argAp)), ap, pragma[only_bind_into](apa),
+          pragma[only_bind_into](config)) and
         kind = ret.getKind() and
-        p.isParameterOf(c, pragma[only_bind_into](summaryCtx)) and
-        parameterFlowThroughAllowed(p, kind)
+        parameterFlowThroughAllowed(summaryCtx, kind) and
+        argApa = getApprox(argAp) and
+        PrevStage::returnMayFlowThrough(ret, argApa, apa, kind, pragma[only_bind_into](config))
       )
     }
 
     pragma[inline]
-    private predicate fwdFlowInMayFlowThrough(
-      DataFlowCall call, Cc cc, CcCall innerCc, ParameterPositionOption summaryCtx, ApOption argAp,
-      ParamNodeEx param, Ap ap, ApApprox apa, Configuration config
+    private predicate fwdFlowThrough0(
+      DataFlowCall call, Cc cc, FlowState state, CcCall ccc, ParamNodeOption summaryCtx,
+      ApOption argAp, Ap ap, ApApprox apa, RetNodeEx ret, ParamNodeEx innerSummaryCtx,
+      Ap innerArgAp, ApApprox innerArgApa, Configuration config
     ) {
-      fwdFlowIn(call, pragma[only_bind_into](param), _, cc, innerCc, summaryCtx, argAp, ap,
-        pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
-      PrevStage::parameterMayFlowThrough(param, apa, config)
-    }
-
-    // dedup before joining with `flowThroughOutOfCall`
-    pragma[nomagic]
-    private predicate fwdFlowInMayFlowThroughProj(
-      DataFlowCall call, CcCall innerCc, ApApprox apa, Configuration config
-    ) {
-      fwdFlowInMayFlowThrough(call, _, innerCc, _, _, _, _, apa, config)
-    }
-
-    /**
-     * Same as `flowThroughOutOfCall`, but restricted to calls that are reached
-     * in the flow covered by `fwdFlow`, where data might flow through the target
-     * callable and back out at `call`.
-     */
-    pragma[nomagic]
-    private predicate fwdFlowThroughOutOfCall(
-      DataFlowCall call, CcCall ccc, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow,
-      ApApprox argApa, ApApprox apa, Configuration config
-    ) {
-      fwdFlowInMayFlowThroughProj(call, ccc, argApa, config) and
-      flowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, argApa, apa, config)
+      fwdFlowRetFromArg(ret, state, ccc, innerSummaryCtx, innerArgAp, innerArgApa, ap, apa, config) and
+      fwdFlowIsEntered(call, cc, ccc, summaryCtx, argAp, innerSummaryCtx, innerArgAp, config)
     }
 
     pragma[nomagic]
-    private predicate fwdFlowOutFromArg(
-      DataFlowCall call, NodeEx out, FlowState state, ParameterPosition summaryCtx, Ap argAp, Ap ap,
-      ApApprox apa, Configuration config
+    private predicate fwdFlowThrough(
+      DataFlowCall call, Cc cc, FlowState state, CcCall ccc, ParamNodeOption summaryCtx,
+      ApOption argAp, Ap ap, ApApprox apa, RetNodeEx ret, ApApprox innerArgApa, Configuration config
     ) {
-      exists(RetNodeEx ret, boolean allowsFieldFlow, CcCall ccc, ApApprox argApa |
-        fwdFlowRetFromArg(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc),
-          summaryCtx, _, argAp, pragma[only_bind_into](argApa), ap, pragma[only_bind_into](apa),
-          config) and
-        fwdFlowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, argApa, apa, config) and
-        (if allowsFieldFlow = false then ap instanceof ApNil else any())
-      )
+      fwdFlowThrough0(call, cc, state, ccc, summaryCtx, argAp, ap, apa, ret, _, _, innerArgApa,
+        config)
     }
 
     /**
@@ -1571,12 +1548,14 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate fwdFlowIsEntered(
-      DataFlowCall call, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      ParameterPosition pos, Ap ap, Configuration config
+      DataFlowCall call, Cc cc, CcCall innerCc, ParamNodeOption summaryCtx, ApOption argAp,
+      ParamNodeEx p, Ap ap, Configuration config
     ) {
-      exists(ParamNodeEx param |
-        fwdFlowInMayFlowThrough(call, cc, _, summaryCtx, argAp, param, ap, _, config) and
-        pos = param.getPosition()
+      exists(ApApprox apa |
+        fwdFlowIn(call, pragma[only_bind_into](p), _, cc, innerCc, summaryCtx, argAp, ap,
+          pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
+        PrevStage::parameterMayFlowThrough(p, apa, config) and
+        PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config))
       )
     }
 
@@ -1596,23 +1575,31 @@ private module MkStage<StageSig PrevStage> {
       fwdFlowConsCand(ap1, c, ap2, config)
     }
 
+    pragma[nomagic]
+    private predicate returnFlowsThrough0(
+      DataFlowCall call, FlowState state, CcCall ccc, Ap ap, ApApprox apa, RetNodeEx ret,
+      ParamNodeEx innerSummaryCtx, Ap innerArgAp, ApApprox innerArgApa, Configuration config
+    ) {
+      fwdFlowThrough0(call, _, state, ccc, _, _, ap, apa, ret, innerSummaryCtx, innerArgAp,
+        innerArgApa, config)
+    }
+
     pragma[nomagic]
     private predicate returnFlowsThrough(
-      RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, ParamNodeEx p, Ap argAp,
+      RetNodeEx ret, ReturnPosition pos, FlowState state, CcCall ccc, ParamNodeEx p, Ap argAp,
       Ap ap, Configuration config
     ) {
-      exists(boolean allowsFieldFlow, ApApprox argApa, ApApprox apa |
-        fwdFlowRetFromArg(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc), _, p,
-          argAp, pragma[only_bind_into](argApa), ap, pragma[only_bind_into](apa), config) and
-        kind = ret.getKind() and
-        fwdFlowThroughOutOfCall(_, ccc, ret, _, allowsFieldFlow, argApa, apa, config) and
-        (if allowsFieldFlow = false then ap instanceof ApNil else any())
+      exists(DataFlowCall call, ApApprox apa, boolean allowsFieldFlow, ApApprox innerArgApa |
+        returnFlowsThrough0(call, state, ccc, ap, apa, ret, p, argAp, innerArgApa, config) and
+        flowThroughOutOfCall(call, ccc, ret, _, allowsFieldFlow, innerArgApa, apa, config) and
+        pos = ret.getReturnPosition() and
+        if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
     pragma[nomagic]
     private predicate flowThroughIntoCall(
-      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp,
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp, Ap ap,
       Configuration config
     ) {
       exists(ApApprox argApa |
@@ -1620,7 +1607,7 @@ private module MkStage<StageSig PrevStage> {
           allowsFieldFlow, argApa, pragma[only_bind_into](config)) and
         fwdFlow(arg, _, _, _, _, pragma[only_bind_into](argAp), argApa,
           pragma[only_bind_into](config)) and
-        returnFlowsThrough(_, _, _, _, p, pragma[only_bind_into](argAp), _,
+        returnFlowsThrough(_, _, _, _, p, pragma[only_bind_into](argAp), ap,
           pragma[only_bind_into](config)) and
         if allowsFieldFlow = false then argAp instanceof ApNil else any()
       )
@@ -1639,12 +1626,13 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate flowOutOfCallAp(
-      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
+      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
       Ap ap, Configuration config
     ) {
       exists(ApApprox apa |
-        flowOutOfCallApa(call, ret, kind, out, allowsFieldFlow, apa, config) and
-        fwdFlow(ret, _, _, _, _, ap, apa, config)
+        flowOutOfCallApa(call, ret, _, out, allowsFieldFlow, apa, config) and
+        fwdFlow(ret, _, _, _, _, ap, apa, config) and
+        pos = ret.getReturnPosition()
       )
     }
 
@@ -1739,17 +1727,17 @@ private module MkStage<StageSig PrevStage> {
       )
       or
       // flow through a callable
-      exists(DataFlowCall call, ReturnKindExt returnKind0, Ap returnAp0 |
-        revFlowInToReturn(call, node, state, returnKind0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
+      exists(DataFlowCall call, ParamNodeEx p, ReturnPosition pos, Ap innerReturnAp |
+        revFlowThrough(call, returnCtx, p, state, pos, returnAp, ap, innerReturnAp, config) and
+        flowThroughIntoCall(call, node, p, _, ap, innerReturnAp, config)
       )
       or
       // flow out of a callable
-      exists(ReturnKindExt kind |
-        revFlowOut(_, node, kind, state, _, _, ap, config) and
-        if returnFlowsThrough(node, kind, state, _, _, _, ap, config)
+      exists(ReturnPosition pos |
+        revFlowOut(_, node, pos, state, _, _, ap, config) and
+        if returnFlowsThrough(node, pos, state, _, _, _, ap, config)
         then (
-          returnCtx = TReturnCtxMaybeFlowThrough(kind) and
+          returnCtx = TReturnCtxMaybeFlowThrough(pos) and
           returnAp = apSome(ap)
         ) else (
           returnCtx = TReturnCtxNoFlowThrough() and returnAp = apNone()
@@ -1782,47 +1770,33 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate revFlowOut(
-      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, FlowState state, ReturnCtx returnCtx,
+      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, FlowState state, ReturnCtx returnCtx,
       ApOption returnAp, Ap ap, Configuration config
     ) {
       exists(NodeEx out, boolean allowsFieldFlow |
         revFlow(out, state, returnCtx, returnAp, ap, config) and
-        flowOutOfCallAp(call, ret, kind, out, allowsFieldFlow, ap, config) and
+        flowOutOfCallAp(call, ret, pos, out, allowsFieldFlow, ap, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
-    /**
-     * Same as `flowThroughIntoCall`, but restricted to calls that are reached
-     * in the flow covered by `revFlow`, where data might flow through the target
-     * callable and back out at `call`.
-     */
-    pragma[nomagic]
-    private predicate revFlowThroughIntoCall(
-      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp,
-      Configuration config
-    ) {
-      flowThroughIntoCall(call, arg, p, allowsFieldFlow, argAp, config) and
-      revFlowIsReturned(call, _, _, _, _, config)
-    }
-
     pragma[nomagic]
     private predicate revFlowParamToReturn(
-      ParamNodeEx p, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap, Configuration config
+      ParamNodeEx p, FlowState state, ReturnPosition pos, Ap returnAp, Ap ap, Configuration config
     ) {
-      revFlow(p, state, TReturnCtxMaybeFlowThrough(kind), apSome(returnAp), ap, config) and
-      parameterFlowThroughAllowed(p, kind)
+      revFlow(pragma[only_bind_into](p), state, TReturnCtxMaybeFlowThrough(pos), apSome(returnAp),
+        pragma[only_bind_into](ap), pragma[only_bind_into](config)) and
+      parameterFlowThroughAllowed(p, pos.getKind()) and
+      PrevStage::parameterMayFlowThrough(p, getApprox(ap), config)
     }
 
     pragma[nomagic]
-    private predicate revFlowInToReturn(
-      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap,
-      Configuration config
+    private predicate revFlowThrough(
+      DataFlowCall call, ReturnCtx returnCtx, ParamNodeEx p, FlowState state, ReturnPosition pos,
+      ApOption returnAp, Ap ap, Ap innerReturnAp, Configuration config
     ) {
-      exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlowParamToReturn(p, state, kind, returnAp, ap, config) and
-        revFlowThroughIntoCall(call, arg, p, allowsFieldFlow, ap, config)
-      )
+      revFlowParamToReturn(p, state, pos, innerReturnAp, ap, config) and
+      revFlowIsReturned(call, returnCtx, returnAp, pos, innerReturnAp, config)
     }
 
     /**
@@ -1832,12 +1806,12 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate revFlowIsReturned(
-      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnKindExt kind, Ap ap,
+      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnPosition pos, Ap ap,
       Configuration config
     ) {
       exists(RetNodeEx ret, FlowState state, CcCall ccc |
-        revFlowOut(call, ret, kind, state, returnCtx, returnAp, ap, config) and
-        returnFlowsThrough(ret, kind, state, ccc, _, _, ap, config) and
+        revFlowOut(call, ret, pos, state, returnCtx, returnAp, ap, config) and
+        returnFlowsThrough(ret, pos, state, ccc, _, _, ap, config) and
         matchesCall(ccc, call)
       )
     }
@@ -1915,17 +1889,17 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate parameterFlowsThroughRev(
-      ParamNodeEx p, Ap ap, ReturnKindExt kind, Ap returnAp, Configuration config
+      ParamNodeEx p, Ap ap, ReturnPosition pos, Ap returnAp, Configuration config
     ) {
-      revFlow(p, _, TReturnCtxMaybeFlowThrough(kind), apSome(returnAp), ap, config) and
-      parameterFlowThroughAllowed(p, kind)
+      revFlow(p, _, TReturnCtxMaybeFlowThrough(pos), apSome(returnAp), ap, config) and
+      parameterFlowThroughAllowed(p, pos.getKind())
     }
 
     pragma[nomagic]
     predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
-      exists(RetNodeEx ret, ReturnKindExt kind |
-        returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
-        parameterFlowsThroughRev(p, ap, kind, _, config)
+      exists(RetNodeEx ret, ReturnPosition pos |
+        returnFlowsThrough(ret, pos, _, _, p, ap, _, config) and
+        parameterFlowsThroughRev(p, ap, pos, _, config)
       )
     }
 
@@ -1933,20 +1907,21 @@ private module MkStage<StageSig PrevStage> {
     predicate returnMayFlowThrough(
       RetNodeEx ret, Ap argAp, Ap ap, ReturnKindExt kind, Configuration config
     ) {
-      exists(ParamNodeEx p |
-        returnFlowsThrough(ret, kind, _, _, p, argAp, ap, config) and
-        parameterFlowsThroughRev(p, argAp, kind, ap, config)
+      exists(ParamNodeEx p, ReturnPosition pos |
+        returnFlowsThrough(ret, pos, _, _, p, argAp, ap, config) and
+        parameterFlowsThroughRev(p, argAp, pos, ap, config) and
+        kind = pos.getKind()
       )
     }
 
     pragma[nomagic]
-    predicate revFlowInToReturnIsReturned(
+    private predicate revFlowThroughArg(
       DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnCtx returnCtx, ApOption returnAp,
       Ap ap, Configuration config
     ) {
-      exists(ReturnKindExt returnKind0, Ap returnAp0 |
-        revFlowInToReturn(call, arg, state, returnKind0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
+      exists(ParamNodeEx p, ReturnPosition pos, Ap innerReturnAp |
+        revFlowThrough(call, returnCtx, p, state, pos, returnAp, ap, innerReturnAp, config) and
+        flowThroughIntoCall(call, arg, p, _, ap, innerReturnAp, config)
       )
     }
 
@@ -1954,7 +1929,7 @@ private module MkStage<StageSig PrevStage> {
     predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
       exists(ArgNodeEx arg, FlowState state, ReturnCtx returnCtx, ApOption returnAp, Ap ap |
         revFlow(arg, state, returnCtx, returnAp, ap, config) and
-        revFlowInToReturnIsReturned(call, arg, state, returnCtx, returnAp, ap, config)
+        revFlowThroughArg(call, arg, state, returnCtx, returnAp, ap, config)
       )
     }
 
@@ -1967,8 +1942,9 @@ private module MkStage<StageSig PrevStage> {
       conscand = count(TypedContent f0, Ap ap | fwdConsCand(f0, ap, config)) and
       states = count(FlowState state | fwdFlow(_, state, _, _, _, _, config)) and
       tuples =
-        count(NodeEx n, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-          Ap ap | fwdFlow(n, state, cc, summaryCtx, argAp, ap, config))
+        count(NodeEx n, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap |
+          fwdFlow(n, state, cc, summaryCtx, argAp, ap, config)
+        )
       or
       fwd = false and
       nodes = count(NodeEx node | revFlow(node, _, _, _, _, config)) and
@@ -2823,13 +2799,12 @@ private Configuration unbindConf(Configuration conf) {
 
 pragma[nomagic]
 private predicate nodeMayUseSummary0(
-  NodeEx n, DataFlowCallable c, ParameterPosition pos, FlowState state, AccessPathApprox apa,
-  Configuration config
+  NodeEx n, ParamNodeEx p, FlowState state, AccessPathApprox apa, Configuration config
 ) {
   exists(AccessPathApprox apa0 |
-    c = n.getEnclosingCallable() and
+    Stage5::parameterMayFlowThrough(p, _, _) and
     Stage5::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
-    Stage5::fwdFlow(n, state, any(CallContextCall ccc), TParameterPositionSome(pos),
+    Stage5::fwdFlow(n, state, any(CallContextCall ccc), TParamNodeSome(p.asNode()),
       TAccessPathApproxSome(apa), apa0, config)
   )
 }
@@ -2838,10 +2813,9 @@ pragma[nomagic]
 private predicate nodeMayUseSummary(
   NodeEx n, FlowState state, AccessPathApprox apa, Configuration config
 ) {
-  exists(DataFlowCallable c, ParameterPosition pos, ParamNodeEx p |
+  exists(ParamNodeEx p |
     Stage5::parameterMayFlowThrough(p, apa, config) and
-    nodeMayUseSummary0(n, c, pos, state, apa, config) and
-    p.isParameterOf(c, pos)
+    nodeMayUseSummary0(n, p, state, apa, config)
   )
 }
 
diff --git a/go/ql/lib/semmle/go/dataflow/internal/DataFlowImplCommon.qll b/go/ql/lib/semmle/go/dataflow/internal/DataFlowImplCommon.qll
index c66aefced8d..9aa6a529a5b 100644
--- a/go/ql/lib/semmle/go/dataflow/internal/DataFlowImplCommon.qll
+++ b/go/ql/lib/semmle/go/dataflow/internal/DataFlowImplCommon.qll
@@ -916,15 +916,15 @@ private module Cached {
     TDataFlowCallSome(DataFlowCall call)
 
   cached
-  newtype TParameterPositionOption =
-    TParameterPositionNone() or
-    TParameterPositionSome(ParameterPosition pos)
+  newtype TParamNodeOption =
+    TParamNodeNone() or
+    TParamNodeSome(ParamNode p)
 
   cached
   newtype TReturnCtx =
     TReturnCtxNone() or
     TReturnCtxNoFlowThrough() or
-    TReturnCtxMaybeFlowThrough(ReturnKindExt kind)
+    TReturnCtxMaybeFlowThrough(ReturnPosition pos)
 
   cached
   newtype TTypedContentApprox =
@@ -1343,15 +1343,15 @@ class DataFlowCallOption extends TDataFlowCallOption {
   }
 }
 
-/** An optional `ParameterPosition`. */
-class ParameterPositionOption extends TParameterPositionOption {
+/** An optional `ParamNode`. */
+class ParamNodeOption extends TParamNodeOption {
   string toString() {
-    this = TParameterPositionNone() and
+    this = TParamNodeNone() and
     result = "(none)"
     or
-    exists(ParameterPosition pos |
-      this = TParameterPositionSome(pos) and
-      result = pos.toString()
+    exists(ParamNode p |
+      this = TParamNodeSome(p) and
+      result = p.toString()
     )
   }
 }
@@ -1363,7 +1363,7 @@ class ParameterPositionOption extends TParameterPositionOption {
  *
  * - `TReturnCtxNone()`: no return flow.
  * - `TReturnCtxNoFlowThrough()`: return flow, but flow through is not possible.
- * - `TReturnCtxMaybeFlowThrough(ReturnKindExt kind)`: return flow, of kind `kind`, and
+ * - `TReturnCtxMaybeFlowThrough(ReturnPosition pos)`: return flow, of kind `pos`, and
  *    flow through may be possible.
  */
 class ReturnCtx extends TReturnCtx {
@@ -1374,9 +1374,9 @@ class ReturnCtx extends TReturnCtx {
     this = TReturnCtxNoFlowThrough() and
     result = "(no flow through)"
     or
-    exists(ReturnKindExt kind |
-      this = TReturnCtxMaybeFlowThrough(kind) and
-      result = kind.toString()
+    exists(ReturnPosition pos |
+      this = TReturnCtxMaybeFlowThrough(pos) and
+      result = pos.toString()
     )
   }
 }
diff --git a/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl.qll b/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl.qll
index 6741ccc2f06..23d11a38842 100644
--- a/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl.qll
+++ b/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl.qll
@@ -1327,8 +1327,8 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     additional predicate fwdFlow(
-      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      Ap ap, ApApprox apa, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      ApApprox apa, Configuration config
     ) {
       fwdFlow0(node, state, cc, summaryCtx, argAp, ap, apa, config) and
       PrevStage::revFlow(node, state, apa, config) and
@@ -1337,21 +1337,21 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[inline]
     additional predicate fwdFlow(
-      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      Ap ap, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      Configuration config
     ) {
       fwdFlow(node, state, cc, summaryCtx, argAp, ap, _, config)
     }
 
     pragma[nomagic]
     private predicate fwdFlow0(
-      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      Ap ap, ApApprox apa, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      ApApprox apa, Configuration config
     ) {
       sourceNode(node, state, config) and
       (if hasSourceCallCtx(config) then cc = ccSomeCall() else cc = ccNone()) and
       argAp = apNone() and
-      summaryCtx = TParameterPositionNone() and
+      summaryCtx = TParamNodeNone() and
       ap = getApNil(node) and
       apa = getApprox(ap)
       or
@@ -1372,7 +1372,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, apa, pragma[only_bind_into](config)) and
         jumpStep(mid, node, config) and
         cc = ccNone() and
-        summaryCtx = TParameterPositionNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone()
       )
       or
@@ -1380,7 +1380,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, state, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStep(mid, node, config) and
         cc = ccNone() and
-        summaryCtx = TParameterPositionNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone() and
         ap = getApNil(node) and
         apa = getApprox(ap)
@@ -1390,7 +1390,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, state0, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStateStep(mid, state0, node, state, config) and
         cc = ccNone() and
-        summaryCtx = TParameterPositionNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone() and
         ap = getApNil(node) and
         apa = getApprox(ap)
@@ -1414,10 +1414,10 @@ private module MkStage<StageSig PrevStage> {
       fwdFlowIn(_, node, state, _, cc, _, _, ap, apa, config) and
       if PrevStage::parameterMayFlowThrough(node, apa, config)
       then (
-        summaryCtx = TParameterPositionSome(node.(ParamNodeEx).getPosition()) and
+        summaryCtx = TParamNodeSome(node.asNode()) and
         argAp = apSome(ap)
       ) else (
-        summaryCtx = TParameterPositionNone() and argAp = apNone()
+        summaryCtx = TParamNodeNone() and argAp = apNone()
       )
       or
       // flow out of a callable
@@ -1433,16 +1433,19 @@ private module MkStage<StageSig PrevStage> {
       )
       or
       // flow through a callable
-      exists(DataFlowCall call, ParameterPosition summaryCtx0, Ap argAp0 |
-        fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, apa, config) and
-        fwdFlowIsEntered(call, cc, summaryCtx, argAp, summaryCtx0, argAp0, config)
+      exists(
+        DataFlowCall call, CcCall ccc, RetNodeEx ret, boolean allowsFieldFlow, ApApprox innerArgApa
+      |
+        fwdFlowThrough(call, cc, state, ccc, summaryCtx, argAp, ap, apa, ret, innerArgApa, config) and
+        flowThroughOutOfCall(call, ccc, ret, node, allowsFieldFlow, innerArgApa, apa, config) and
+        if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
     pragma[nomagic]
     private predicate fwdFlowStore(
       NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc,
-      ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
+      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
     ) {
       exists(DataFlowType contentType, ApApprox apa1 |
         fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, apa1, config) and
@@ -1473,8 +1476,8 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowRead0(
-      NodeEx node1, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      ApNonNil ap, Configuration config
+      NodeEx node1, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, ApNonNil ap,
+      Configuration config
     ) {
       fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, _, _, config)
@@ -1483,7 +1486,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowRead(
       Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc,
-      ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
+      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
     ) {
       fwdFlowRead0(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, c, node2, config) and
@@ -1493,7 +1496,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowIn(
       DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, CcCall innercc,
-      ParameterPositionOption summaryCtx, ApOption argAp, Ap ap, ApApprox apa, Configuration config
+      ParamNodeOption summaryCtx, ApOption argAp, Ap ap, ApApprox apa, Configuration config
     ) {
       exists(ArgNodeEx arg, boolean allowsFieldFlow |
         fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, apa, config) and
@@ -1505,64 +1508,38 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowRetFromArg(
-      RetNodeEx ret, FlowState state, CcCall ccc, ParameterPosition summaryCtx, ParamNodeEx p,
-      Ap argAp, ApApprox argApa, Ap ap, ApApprox apa, Configuration config
+      RetNodeEx ret, FlowState state, CcCall ccc, ParamNodeEx summaryCtx, Ap argAp, ApApprox argApa,
+      Ap ap, ApApprox apa, Configuration config
     ) {
-      exists(DataFlowCallable c, ReturnKindExt kind |
+      exists(ReturnKindExt kind |
         fwdFlow(pragma[only_bind_into](ret), state, ccc,
-          TParameterPositionSome(pragma[only_bind_into](summaryCtx)), apSome(argAp), ap, apa, config) and
-        getApprox(argAp) = argApa and
-        c = ret.getEnclosingCallable() and
+          TParamNodeSome(pragma[only_bind_into](summaryCtx.asNode())),
+          pragma[only_bind_into](apSome(argAp)), ap, pragma[only_bind_into](apa),
+          pragma[only_bind_into](config)) and
         kind = ret.getKind() and
-        p.isParameterOf(c, pragma[only_bind_into](summaryCtx)) and
-        parameterFlowThroughAllowed(p, kind)
+        parameterFlowThroughAllowed(summaryCtx, kind) and
+        argApa = getApprox(argAp) and
+        PrevStage::returnMayFlowThrough(ret, argApa, apa, kind, pragma[only_bind_into](config))
       )
     }
 
     pragma[inline]
-    private predicate fwdFlowInMayFlowThrough(
-      DataFlowCall call, Cc cc, CcCall innerCc, ParameterPositionOption summaryCtx, ApOption argAp,
-      ParamNodeEx param, Ap ap, ApApprox apa, Configuration config
+    private predicate fwdFlowThrough0(
+      DataFlowCall call, Cc cc, FlowState state, CcCall ccc, ParamNodeOption summaryCtx,
+      ApOption argAp, Ap ap, ApApprox apa, RetNodeEx ret, ParamNodeEx innerSummaryCtx,
+      Ap innerArgAp, ApApprox innerArgApa, Configuration config
     ) {
-      fwdFlowIn(call, pragma[only_bind_into](param), _, cc, innerCc, summaryCtx, argAp, ap,
-        pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
-      PrevStage::parameterMayFlowThrough(param, apa, config)
-    }
-
-    // dedup before joining with `flowThroughOutOfCall`
-    pragma[nomagic]
-    private predicate fwdFlowInMayFlowThroughProj(
-      DataFlowCall call, CcCall innerCc, ApApprox apa, Configuration config
-    ) {
-      fwdFlowInMayFlowThrough(call, _, innerCc, _, _, _, _, apa, config)
-    }
-
-    /**
-     * Same as `flowThroughOutOfCall`, but restricted to calls that are reached
-     * in the flow covered by `fwdFlow`, where data might flow through the target
-     * callable and back out at `call`.
-     */
-    pragma[nomagic]
-    private predicate fwdFlowThroughOutOfCall(
-      DataFlowCall call, CcCall ccc, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow,
-      ApApprox argApa, ApApprox apa, Configuration config
-    ) {
-      fwdFlowInMayFlowThroughProj(call, ccc, argApa, config) and
-      flowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, argApa, apa, config)
+      fwdFlowRetFromArg(ret, state, ccc, innerSummaryCtx, innerArgAp, innerArgApa, ap, apa, config) and
+      fwdFlowIsEntered(call, cc, ccc, summaryCtx, argAp, innerSummaryCtx, innerArgAp, config)
     }
 
     pragma[nomagic]
-    private predicate fwdFlowOutFromArg(
-      DataFlowCall call, NodeEx out, FlowState state, ParameterPosition summaryCtx, Ap argAp, Ap ap,
-      ApApprox apa, Configuration config
+    private predicate fwdFlowThrough(
+      DataFlowCall call, Cc cc, FlowState state, CcCall ccc, ParamNodeOption summaryCtx,
+      ApOption argAp, Ap ap, ApApprox apa, RetNodeEx ret, ApApprox innerArgApa, Configuration config
     ) {
-      exists(RetNodeEx ret, boolean allowsFieldFlow, CcCall ccc, ApApprox argApa |
-        fwdFlowRetFromArg(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc),
-          summaryCtx, _, argAp, pragma[only_bind_into](argApa), ap, pragma[only_bind_into](apa),
-          config) and
-        fwdFlowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, argApa, apa, config) and
-        (if allowsFieldFlow = false then ap instanceof ApNil else any())
-      )
+      fwdFlowThrough0(call, cc, state, ccc, summaryCtx, argAp, ap, apa, ret, _, _, innerArgApa,
+        config)
     }
 
     /**
@@ -1571,12 +1548,14 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate fwdFlowIsEntered(
-      DataFlowCall call, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      ParameterPosition pos, Ap ap, Configuration config
+      DataFlowCall call, Cc cc, CcCall innerCc, ParamNodeOption summaryCtx, ApOption argAp,
+      ParamNodeEx p, Ap ap, Configuration config
     ) {
-      exists(ParamNodeEx param |
-        fwdFlowInMayFlowThrough(call, cc, _, summaryCtx, argAp, param, ap, _, config) and
-        pos = param.getPosition()
+      exists(ApApprox apa |
+        fwdFlowIn(call, pragma[only_bind_into](p), _, cc, innerCc, summaryCtx, argAp, ap,
+          pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
+        PrevStage::parameterMayFlowThrough(p, apa, config) and
+        PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config))
       )
     }
 
@@ -1596,23 +1575,31 @@ private module MkStage<StageSig PrevStage> {
       fwdFlowConsCand(ap1, c, ap2, config)
     }
 
+    pragma[nomagic]
+    private predicate returnFlowsThrough0(
+      DataFlowCall call, FlowState state, CcCall ccc, Ap ap, ApApprox apa, RetNodeEx ret,
+      ParamNodeEx innerSummaryCtx, Ap innerArgAp, ApApprox innerArgApa, Configuration config
+    ) {
+      fwdFlowThrough0(call, _, state, ccc, _, _, ap, apa, ret, innerSummaryCtx, innerArgAp,
+        innerArgApa, config)
+    }
+
     pragma[nomagic]
     private predicate returnFlowsThrough(
-      RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, ParamNodeEx p, Ap argAp,
+      RetNodeEx ret, ReturnPosition pos, FlowState state, CcCall ccc, ParamNodeEx p, Ap argAp,
       Ap ap, Configuration config
     ) {
-      exists(boolean allowsFieldFlow, ApApprox argApa, ApApprox apa |
-        fwdFlowRetFromArg(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc), _, p,
-          argAp, pragma[only_bind_into](argApa), ap, pragma[only_bind_into](apa), config) and
-        kind = ret.getKind() and
-        fwdFlowThroughOutOfCall(_, ccc, ret, _, allowsFieldFlow, argApa, apa, config) and
-        (if allowsFieldFlow = false then ap instanceof ApNil else any())
+      exists(DataFlowCall call, ApApprox apa, boolean allowsFieldFlow, ApApprox innerArgApa |
+        returnFlowsThrough0(call, state, ccc, ap, apa, ret, p, argAp, innerArgApa, config) and
+        flowThroughOutOfCall(call, ccc, ret, _, allowsFieldFlow, innerArgApa, apa, config) and
+        pos = ret.getReturnPosition() and
+        if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
     pragma[nomagic]
     private predicate flowThroughIntoCall(
-      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp,
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp, Ap ap,
       Configuration config
     ) {
       exists(ApApprox argApa |
@@ -1620,7 +1607,7 @@ private module MkStage<StageSig PrevStage> {
           allowsFieldFlow, argApa, pragma[only_bind_into](config)) and
         fwdFlow(arg, _, _, _, _, pragma[only_bind_into](argAp), argApa,
           pragma[only_bind_into](config)) and
-        returnFlowsThrough(_, _, _, _, p, pragma[only_bind_into](argAp), _,
+        returnFlowsThrough(_, _, _, _, p, pragma[only_bind_into](argAp), ap,
           pragma[only_bind_into](config)) and
         if allowsFieldFlow = false then argAp instanceof ApNil else any()
       )
@@ -1639,12 +1626,13 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate flowOutOfCallAp(
-      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
+      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
       Ap ap, Configuration config
     ) {
       exists(ApApprox apa |
-        flowOutOfCallApa(call, ret, kind, out, allowsFieldFlow, apa, config) and
-        fwdFlow(ret, _, _, _, _, ap, apa, config)
+        flowOutOfCallApa(call, ret, _, out, allowsFieldFlow, apa, config) and
+        fwdFlow(ret, _, _, _, _, ap, apa, config) and
+        pos = ret.getReturnPosition()
       )
     }
 
@@ -1739,17 +1727,17 @@ private module MkStage<StageSig PrevStage> {
       )
       or
       // flow through a callable
-      exists(DataFlowCall call, ReturnKindExt returnKind0, Ap returnAp0 |
-        revFlowInToReturn(call, node, state, returnKind0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
+      exists(DataFlowCall call, ParamNodeEx p, ReturnPosition pos, Ap innerReturnAp |
+        revFlowThrough(call, returnCtx, p, state, pos, returnAp, ap, innerReturnAp, config) and
+        flowThroughIntoCall(call, node, p, _, ap, innerReturnAp, config)
       )
       or
       // flow out of a callable
-      exists(ReturnKindExt kind |
-        revFlowOut(_, node, kind, state, _, _, ap, config) and
-        if returnFlowsThrough(node, kind, state, _, _, _, ap, config)
+      exists(ReturnPosition pos |
+        revFlowOut(_, node, pos, state, _, _, ap, config) and
+        if returnFlowsThrough(node, pos, state, _, _, _, ap, config)
         then (
-          returnCtx = TReturnCtxMaybeFlowThrough(kind) and
+          returnCtx = TReturnCtxMaybeFlowThrough(pos) and
           returnAp = apSome(ap)
         ) else (
           returnCtx = TReturnCtxNoFlowThrough() and returnAp = apNone()
@@ -1782,47 +1770,33 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate revFlowOut(
-      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, FlowState state, ReturnCtx returnCtx,
+      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, FlowState state, ReturnCtx returnCtx,
       ApOption returnAp, Ap ap, Configuration config
     ) {
       exists(NodeEx out, boolean allowsFieldFlow |
         revFlow(out, state, returnCtx, returnAp, ap, config) and
-        flowOutOfCallAp(call, ret, kind, out, allowsFieldFlow, ap, config) and
+        flowOutOfCallAp(call, ret, pos, out, allowsFieldFlow, ap, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
-    /**
-     * Same as `flowThroughIntoCall`, but restricted to calls that are reached
-     * in the flow covered by `revFlow`, where data might flow through the target
-     * callable and back out at `call`.
-     */
-    pragma[nomagic]
-    private predicate revFlowThroughIntoCall(
-      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp,
-      Configuration config
-    ) {
-      flowThroughIntoCall(call, arg, p, allowsFieldFlow, argAp, config) and
-      revFlowIsReturned(call, _, _, _, _, config)
-    }
-
     pragma[nomagic]
     private predicate revFlowParamToReturn(
-      ParamNodeEx p, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap, Configuration config
+      ParamNodeEx p, FlowState state, ReturnPosition pos, Ap returnAp, Ap ap, Configuration config
     ) {
-      revFlow(p, state, TReturnCtxMaybeFlowThrough(kind), apSome(returnAp), ap, config) and
-      parameterFlowThroughAllowed(p, kind)
+      revFlow(pragma[only_bind_into](p), state, TReturnCtxMaybeFlowThrough(pos), apSome(returnAp),
+        pragma[only_bind_into](ap), pragma[only_bind_into](config)) and
+      parameterFlowThroughAllowed(p, pos.getKind()) and
+      PrevStage::parameterMayFlowThrough(p, getApprox(ap), config)
     }
 
     pragma[nomagic]
-    private predicate revFlowInToReturn(
-      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap,
-      Configuration config
+    private predicate revFlowThrough(
+      DataFlowCall call, ReturnCtx returnCtx, ParamNodeEx p, FlowState state, ReturnPosition pos,
+      ApOption returnAp, Ap ap, Ap innerReturnAp, Configuration config
     ) {
-      exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlowParamToReturn(p, state, kind, returnAp, ap, config) and
-        revFlowThroughIntoCall(call, arg, p, allowsFieldFlow, ap, config)
-      )
+      revFlowParamToReturn(p, state, pos, innerReturnAp, ap, config) and
+      revFlowIsReturned(call, returnCtx, returnAp, pos, innerReturnAp, config)
     }
 
     /**
@@ -1832,12 +1806,12 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate revFlowIsReturned(
-      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnKindExt kind, Ap ap,
+      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnPosition pos, Ap ap,
       Configuration config
     ) {
       exists(RetNodeEx ret, FlowState state, CcCall ccc |
-        revFlowOut(call, ret, kind, state, returnCtx, returnAp, ap, config) and
-        returnFlowsThrough(ret, kind, state, ccc, _, _, ap, config) and
+        revFlowOut(call, ret, pos, state, returnCtx, returnAp, ap, config) and
+        returnFlowsThrough(ret, pos, state, ccc, _, _, ap, config) and
         matchesCall(ccc, call)
       )
     }
@@ -1915,17 +1889,17 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate parameterFlowsThroughRev(
-      ParamNodeEx p, Ap ap, ReturnKindExt kind, Ap returnAp, Configuration config
+      ParamNodeEx p, Ap ap, ReturnPosition pos, Ap returnAp, Configuration config
     ) {
-      revFlow(p, _, TReturnCtxMaybeFlowThrough(kind), apSome(returnAp), ap, config) and
-      parameterFlowThroughAllowed(p, kind)
+      revFlow(p, _, TReturnCtxMaybeFlowThrough(pos), apSome(returnAp), ap, config) and
+      parameterFlowThroughAllowed(p, pos.getKind())
     }
 
     pragma[nomagic]
     predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
-      exists(RetNodeEx ret, ReturnKindExt kind |
-        returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
-        parameterFlowsThroughRev(p, ap, kind, _, config)
+      exists(RetNodeEx ret, ReturnPosition pos |
+        returnFlowsThrough(ret, pos, _, _, p, ap, _, config) and
+        parameterFlowsThroughRev(p, ap, pos, _, config)
       )
     }
 
@@ -1933,20 +1907,21 @@ private module MkStage<StageSig PrevStage> {
     predicate returnMayFlowThrough(
       RetNodeEx ret, Ap argAp, Ap ap, ReturnKindExt kind, Configuration config
     ) {
-      exists(ParamNodeEx p |
-        returnFlowsThrough(ret, kind, _, _, p, argAp, ap, config) and
-        parameterFlowsThroughRev(p, argAp, kind, ap, config)
+      exists(ParamNodeEx p, ReturnPosition pos |
+        returnFlowsThrough(ret, pos, _, _, p, argAp, ap, config) and
+        parameterFlowsThroughRev(p, argAp, pos, ap, config) and
+        kind = pos.getKind()
       )
     }
 
     pragma[nomagic]
-    predicate revFlowInToReturnIsReturned(
+    private predicate revFlowThroughArg(
       DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnCtx returnCtx, ApOption returnAp,
       Ap ap, Configuration config
     ) {
-      exists(ReturnKindExt returnKind0, Ap returnAp0 |
-        revFlowInToReturn(call, arg, state, returnKind0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
+      exists(ParamNodeEx p, ReturnPosition pos, Ap innerReturnAp |
+        revFlowThrough(call, returnCtx, p, state, pos, returnAp, ap, innerReturnAp, config) and
+        flowThroughIntoCall(call, arg, p, _, ap, innerReturnAp, config)
       )
     }
 
@@ -1954,7 +1929,7 @@ private module MkStage<StageSig PrevStage> {
     predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
       exists(ArgNodeEx arg, FlowState state, ReturnCtx returnCtx, ApOption returnAp, Ap ap |
         revFlow(arg, state, returnCtx, returnAp, ap, config) and
-        revFlowInToReturnIsReturned(call, arg, state, returnCtx, returnAp, ap, config)
+        revFlowThroughArg(call, arg, state, returnCtx, returnAp, ap, config)
       )
     }
 
@@ -1967,8 +1942,9 @@ private module MkStage<StageSig PrevStage> {
       conscand = count(TypedContent f0, Ap ap | fwdConsCand(f0, ap, config)) and
       states = count(FlowState state | fwdFlow(_, state, _, _, _, _, config)) and
       tuples =
-        count(NodeEx n, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-          Ap ap | fwdFlow(n, state, cc, summaryCtx, argAp, ap, config))
+        count(NodeEx n, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap |
+          fwdFlow(n, state, cc, summaryCtx, argAp, ap, config)
+        )
       or
       fwd = false and
       nodes = count(NodeEx node | revFlow(node, _, _, _, _, config)) and
@@ -2823,13 +2799,12 @@ private Configuration unbindConf(Configuration conf) {
 
 pragma[nomagic]
 private predicate nodeMayUseSummary0(
-  NodeEx n, DataFlowCallable c, ParameterPosition pos, FlowState state, AccessPathApprox apa,
-  Configuration config
+  NodeEx n, ParamNodeEx p, FlowState state, AccessPathApprox apa, Configuration config
 ) {
   exists(AccessPathApprox apa0 |
-    c = n.getEnclosingCallable() and
+    Stage5::parameterMayFlowThrough(p, _, _) and
     Stage5::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
-    Stage5::fwdFlow(n, state, any(CallContextCall ccc), TParameterPositionSome(pos),
+    Stage5::fwdFlow(n, state, any(CallContextCall ccc), TParamNodeSome(p.asNode()),
       TAccessPathApproxSome(apa), apa0, config)
   )
 }
@@ -2838,10 +2813,9 @@ pragma[nomagic]
 private predicate nodeMayUseSummary(
   NodeEx n, FlowState state, AccessPathApprox apa, Configuration config
 ) {
-  exists(DataFlowCallable c, ParameterPosition pos, ParamNodeEx p |
+  exists(ParamNodeEx p |
     Stage5::parameterMayFlowThrough(p, apa, config) and
-    nodeMayUseSummary0(n, c, pos, state, apa, config) and
-    p.isParameterOf(c, pos)
+    nodeMayUseSummary0(n, p, state, apa, config)
   )
 }
 
diff --git a/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl2.qll b/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl2.qll
index 6741ccc2f06..23d11a38842 100644
--- a/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl2.qll
+++ b/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl2.qll
@@ -1327,8 +1327,8 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     additional predicate fwdFlow(
-      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      Ap ap, ApApprox apa, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      ApApprox apa, Configuration config
     ) {
       fwdFlow0(node, state, cc, summaryCtx, argAp, ap, apa, config) and
       PrevStage::revFlow(node, state, apa, config) and
@@ -1337,21 +1337,21 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[inline]
     additional predicate fwdFlow(
-      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      Ap ap, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      Configuration config
     ) {
       fwdFlow(node, state, cc, summaryCtx, argAp, ap, _, config)
     }
 
     pragma[nomagic]
     private predicate fwdFlow0(
-      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      Ap ap, ApApprox apa, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      ApApprox apa, Configuration config
     ) {
       sourceNode(node, state, config) and
       (if hasSourceCallCtx(config) then cc = ccSomeCall() else cc = ccNone()) and
       argAp = apNone() and
-      summaryCtx = TParameterPositionNone() and
+      summaryCtx = TParamNodeNone() and
       ap = getApNil(node) and
       apa = getApprox(ap)
       or
@@ -1372,7 +1372,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, apa, pragma[only_bind_into](config)) and
         jumpStep(mid, node, config) and
         cc = ccNone() and
-        summaryCtx = TParameterPositionNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone()
       )
       or
@@ -1380,7 +1380,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, state, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStep(mid, node, config) and
         cc = ccNone() and
-        summaryCtx = TParameterPositionNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone() and
         ap = getApNil(node) and
         apa = getApprox(ap)
@@ -1390,7 +1390,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, state0, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStateStep(mid, state0, node, state, config) and
         cc = ccNone() and
-        summaryCtx = TParameterPositionNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone() and
         ap = getApNil(node) and
         apa = getApprox(ap)
@@ -1414,10 +1414,10 @@ private module MkStage<StageSig PrevStage> {
       fwdFlowIn(_, node, state, _, cc, _, _, ap, apa, config) and
       if PrevStage::parameterMayFlowThrough(node, apa, config)
       then (
-        summaryCtx = TParameterPositionSome(node.(ParamNodeEx).getPosition()) and
+        summaryCtx = TParamNodeSome(node.asNode()) and
         argAp = apSome(ap)
       ) else (
-        summaryCtx = TParameterPositionNone() and argAp = apNone()
+        summaryCtx = TParamNodeNone() and argAp = apNone()
       )
       or
       // flow out of a callable
@@ -1433,16 +1433,19 @@ private module MkStage<StageSig PrevStage> {
       )
       or
       // flow through a callable
-      exists(DataFlowCall call, ParameterPosition summaryCtx0, Ap argAp0 |
-        fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, apa, config) and
-        fwdFlowIsEntered(call, cc, summaryCtx, argAp, summaryCtx0, argAp0, config)
+      exists(
+        DataFlowCall call, CcCall ccc, RetNodeEx ret, boolean allowsFieldFlow, ApApprox innerArgApa
+      |
+        fwdFlowThrough(call, cc, state, ccc, summaryCtx, argAp, ap, apa, ret, innerArgApa, config) and
+        flowThroughOutOfCall(call, ccc, ret, node, allowsFieldFlow, innerArgApa, apa, config) and
+        if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
     pragma[nomagic]
     private predicate fwdFlowStore(
       NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc,
-      ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
+      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
     ) {
       exists(DataFlowType contentType, ApApprox apa1 |
         fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, apa1, config) and
@@ -1473,8 +1476,8 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowRead0(
-      NodeEx node1, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      ApNonNil ap, Configuration config
+      NodeEx node1, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, ApNonNil ap,
+      Configuration config
     ) {
       fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, _, _, config)
@@ -1483,7 +1486,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowRead(
       Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc,
-      ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
+      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
     ) {
       fwdFlowRead0(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, c, node2, config) and
@@ -1493,7 +1496,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowIn(
       DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, CcCall innercc,
-      ParameterPositionOption summaryCtx, ApOption argAp, Ap ap, ApApprox apa, Configuration config
+      ParamNodeOption summaryCtx, ApOption argAp, Ap ap, ApApprox apa, Configuration config
     ) {
       exists(ArgNodeEx arg, boolean allowsFieldFlow |
         fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, apa, config) and
@@ -1505,64 +1508,38 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowRetFromArg(
-      RetNodeEx ret, FlowState state, CcCall ccc, ParameterPosition summaryCtx, ParamNodeEx p,
-      Ap argAp, ApApprox argApa, Ap ap, ApApprox apa, Configuration config
+      RetNodeEx ret, FlowState state, CcCall ccc, ParamNodeEx summaryCtx, Ap argAp, ApApprox argApa,
+      Ap ap, ApApprox apa, Configuration config
     ) {
-      exists(DataFlowCallable c, ReturnKindExt kind |
+      exists(ReturnKindExt kind |
         fwdFlow(pragma[only_bind_into](ret), state, ccc,
-          TParameterPositionSome(pragma[only_bind_into](summaryCtx)), apSome(argAp), ap, apa, config) and
-        getApprox(argAp) = argApa and
-        c = ret.getEnclosingCallable() and
+          TParamNodeSome(pragma[only_bind_into](summaryCtx.asNode())),
+          pragma[only_bind_into](apSome(argAp)), ap, pragma[only_bind_into](apa),
+          pragma[only_bind_into](config)) and
         kind = ret.getKind() and
-        p.isParameterOf(c, pragma[only_bind_into](summaryCtx)) and
-        parameterFlowThroughAllowed(p, kind)
+        parameterFlowThroughAllowed(summaryCtx, kind) and
+        argApa = getApprox(argAp) and
+        PrevStage::returnMayFlowThrough(ret, argApa, apa, kind, pragma[only_bind_into](config))
       )
     }
 
     pragma[inline]
-    private predicate fwdFlowInMayFlowThrough(
-      DataFlowCall call, Cc cc, CcCall innerCc, ParameterPositionOption summaryCtx, ApOption argAp,
-      ParamNodeEx param, Ap ap, ApApprox apa, Configuration config
+    private predicate fwdFlowThrough0(
+      DataFlowCall call, Cc cc, FlowState state, CcCall ccc, ParamNodeOption summaryCtx,
+      ApOption argAp, Ap ap, ApApprox apa, RetNodeEx ret, ParamNodeEx innerSummaryCtx,
+      Ap innerArgAp, ApApprox innerArgApa, Configuration config
     ) {
-      fwdFlowIn(call, pragma[only_bind_into](param), _, cc, innerCc, summaryCtx, argAp, ap,
-        pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
-      PrevStage::parameterMayFlowThrough(param, apa, config)
-    }
-
-    // dedup before joining with `flowThroughOutOfCall`
-    pragma[nomagic]
-    private predicate fwdFlowInMayFlowThroughProj(
-      DataFlowCall call, CcCall innerCc, ApApprox apa, Configuration config
-    ) {
-      fwdFlowInMayFlowThrough(call, _, innerCc, _, _, _, _, apa, config)
-    }
-
-    /**
-     * Same as `flowThroughOutOfCall`, but restricted to calls that are reached
-     * in the flow covered by `fwdFlow`, where data might flow through the target
-     * callable and back out at `call`.
-     */
-    pragma[nomagic]
-    private predicate fwdFlowThroughOutOfCall(
-      DataFlowCall call, CcCall ccc, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow,
-      ApApprox argApa, ApApprox apa, Configuration config
-    ) {
-      fwdFlowInMayFlowThroughProj(call, ccc, argApa, config) and
-      flowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, argApa, apa, config)
+      fwdFlowRetFromArg(ret, state, ccc, innerSummaryCtx, innerArgAp, innerArgApa, ap, apa, config) and
+      fwdFlowIsEntered(call, cc, ccc, summaryCtx, argAp, innerSummaryCtx, innerArgAp, config)
     }
 
     pragma[nomagic]
-    private predicate fwdFlowOutFromArg(
-      DataFlowCall call, NodeEx out, FlowState state, ParameterPosition summaryCtx, Ap argAp, Ap ap,
-      ApApprox apa, Configuration config
+    private predicate fwdFlowThrough(
+      DataFlowCall call, Cc cc, FlowState state, CcCall ccc, ParamNodeOption summaryCtx,
+      ApOption argAp, Ap ap, ApApprox apa, RetNodeEx ret, ApApprox innerArgApa, Configuration config
     ) {
-      exists(RetNodeEx ret, boolean allowsFieldFlow, CcCall ccc, ApApprox argApa |
-        fwdFlowRetFromArg(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc),
-          summaryCtx, _, argAp, pragma[only_bind_into](argApa), ap, pragma[only_bind_into](apa),
-          config) and
-        fwdFlowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, argApa, apa, config) and
-        (if allowsFieldFlow = false then ap instanceof ApNil else any())
-      )
+      fwdFlowThrough0(call, cc, state, ccc, summaryCtx, argAp, ap, apa, ret, _, _, innerArgApa,
+        config)
     }
 
     /**
@@ -1571,12 +1548,14 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate fwdFlowIsEntered(
-      DataFlowCall call, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      ParameterPosition pos, Ap ap, Configuration config
+      DataFlowCall call, Cc cc, CcCall innerCc, ParamNodeOption summaryCtx, ApOption argAp,
+      ParamNodeEx p, Ap ap, Configuration config
     ) {
-      exists(ParamNodeEx param |
-        fwdFlowInMayFlowThrough(call, cc, _, summaryCtx, argAp, param, ap, _, config) and
-        pos = param.getPosition()
+      exists(ApApprox apa |
+        fwdFlowIn(call, pragma[only_bind_into](p), _, cc, innerCc, summaryCtx, argAp, ap,
+          pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
+        PrevStage::parameterMayFlowThrough(p, apa, config) and
+        PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config))
       )
     }
 
@@ -1596,23 +1575,31 @@ private module MkStage<StageSig PrevStage> {
       fwdFlowConsCand(ap1, c, ap2, config)
     }
 
+    pragma[nomagic]
+    private predicate returnFlowsThrough0(
+      DataFlowCall call, FlowState state, CcCall ccc, Ap ap, ApApprox apa, RetNodeEx ret,
+      ParamNodeEx innerSummaryCtx, Ap innerArgAp, ApApprox innerArgApa, Configuration config
+    ) {
+      fwdFlowThrough0(call, _, state, ccc, _, _, ap, apa, ret, innerSummaryCtx, innerArgAp,
+        innerArgApa, config)
+    }
+
     pragma[nomagic]
     private predicate returnFlowsThrough(
-      RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, ParamNodeEx p, Ap argAp,
+      RetNodeEx ret, ReturnPosition pos, FlowState state, CcCall ccc, ParamNodeEx p, Ap argAp,
       Ap ap, Configuration config
     ) {
-      exists(boolean allowsFieldFlow, ApApprox argApa, ApApprox apa |
-        fwdFlowRetFromArg(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc), _, p,
-          argAp, pragma[only_bind_into](argApa), ap, pragma[only_bind_into](apa), config) and
-        kind = ret.getKind() and
-        fwdFlowThroughOutOfCall(_, ccc, ret, _, allowsFieldFlow, argApa, apa, config) and
-        (if allowsFieldFlow = false then ap instanceof ApNil else any())
+      exists(DataFlowCall call, ApApprox apa, boolean allowsFieldFlow, ApApprox innerArgApa |
+        returnFlowsThrough0(call, state, ccc, ap, apa, ret, p, argAp, innerArgApa, config) and
+        flowThroughOutOfCall(call, ccc, ret, _, allowsFieldFlow, innerArgApa, apa, config) and
+        pos = ret.getReturnPosition() and
+        if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
     pragma[nomagic]
     private predicate flowThroughIntoCall(
-      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp,
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp, Ap ap,
       Configuration config
     ) {
       exists(ApApprox argApa |
@@ -1620,7 +1607,7 @@ private module MkStage<StageSig PrevStage> {
           allowsFieldFlow, argApa, pragma[only_bind_into](config)) and
         fwdFlow(arg, _, _, _, _, pragma[only_bind_into](argAp), argApa,
           pragma[only_bind_into](config)) and
-        returnFlowsThrough(_, _, _, _, p, pragma[only_bind_into](argAp), _,
+        returnFlowsThrough(_, _, _, _, p, pragma[only_bind_into](argAp), ap,
           pragma[only_bind_into](config)) and
         if allowsFieldFlow = false then argAp instanceof ApNil else any()
       )
@@ -1639,12 +1626,13 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate flowOutOfCallAp(
-      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
+      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
       Ap ap, Configuration config
     ) {
       exists(ApApprox apa |
-        flowOutOfCallApa(call, ret, kind, out, allowsFieldFlow, apa, config) and
-        fwdFlow(ret, _, _, _, _, ap, apa, config)
+        flowOutOfCallApa(call, ret, _, out, allowsFieldFlow, apa, config) and
+        fwdFlow(ret, _, _, _, _, ap, apa, config) and
+        pos = ret.getReturnPosition()
       )
     }
 
@@ -1739,17 +1727,17 @@ private module MkStage<StageSig PrevStage> {
       )
       or
       // flow through a callable
-      exists(DataFlowCall call, ReturnKindExt returnKind0, Ap returnAp0 |
-        revFlowInToReturn(call, node, state, returnKind0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
+      exists(DataFlowCall call, ParamNodeEx p, ReturnPosition pos, Ap innerReturnAp |
+        revFlowThrough(call, returnCtx, p, state, pos, returnAp, ap, innerReturnAp, config) and
+        flowThroughIntoCall(call, node, p, _, ap, innerReturnAp, config)
       )
       or
       // flow out of a callable
-      exists(ReturnKindExt kind |
-        revFlowOut(_, node, kind, state, _, _, ap, config) and
-        if returnFlowsThrough(node, kind, state, _, _, _, ap, config)
+      exists(ReturnPosition pos |
+        revFlowOut(_, node, pos, state, _, _, ap, config) and
+        if returnFlowsThrough(node, pos, state, _, _, _, ap, config)
         then (
-          returnCtx = TReturnCtxMaybeFlowThrough(kind) and
+          returnCtx = TReturnCtxMaybeFlowThrough(pos) and
           returnAp = apSome(ap)
         ) else (
           returnCtx = TReturnCtxNoFlowThrough() and returnAp = apNone()
@@ -1782,47 +1770,33 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate revFlowOut(
-      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, FlowState state, ReturnCtx returnCtx,
+      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, FlowState state, ReturnCtx returnCtx,
       ApOption returnAp, Ap ap, Configuration config
     ) {
       exists(NodeEx out, boolean allowsFieldFlow |
         revFlow(out, state, returnCtx, returnAp, ap, config) and
-        flowOutOfCallAp(call, ret, kind, out, allowsFieldFlow, ap, config) and
+        flowOutOfCallAp(call, ret, pos, out, allowsFieldFlow, ap, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
-    /**
-     * Same as `flowThroughIntoCall`, but restricted to calls that are reached
-     * in the flow covered by `revFlow`, where data might flow through the target
-     * callable and back out at `call`.
-     */
-    pragma[nomagic]
-    private predicate revFlowThroughIntoCall(
-      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp,
-      Configuration config
-    ) {
-      flowThroughIntoCall(call, arg, p, allowsFieldFlow, argAp, config) and
-      revFlowIsReturned(call, _, _, _, _, config)
-    }
-
     pragma[nomagic]
     private predicate revFlowParamToReturn(
-      ParamNodeEx p, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap, Configuration config
+      ParamNodeEx p, FlowState state, ReturnPosition pos, Ap returnAp, Ap ap, Configuration config
     ) {
-      revFlow(p, state, TReturnCtxMaybeFlowThrough(kind), apSome(returnAp), ap, config) and
-      parameterFlowThroughAllowed(p, kind)
+      revFlow(pragma[only_bind_into](p), state, TReturnCtxMaybeFlowThrough(pos), apSome(returnAp),
+        pragma[only_bind_into](ap), pragma[only_bind_into](config)) and
+      parameterFlowThroughAllowed(p, pos.getKind()) and
+      PrevStage::parameterMayFlowThrough(p, getApprox(ap), config)
     }
 
     pragma[nomagic]
-    private predicate revFlowInToReturn(
-      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap,
-      Configuration config
+    private predicate revFlowThrough(
+      DataFlowCall call, ReturnCtx returnCtx, ParamNodeEx p, FlowState state, ReturnPosition pos,
+      ApOption returnAp, Ap ap, Ap innerReturnAp, Configuration config
     ) {
-      exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlowParamToReturn(p, state, kind, returnAp, ap, config) and
-        revFlowThroughIntoCall(call, arg, p, allowsFieldFlow, ap, config)
-      )
+      revFlowParamToReturn(p, state, pos, innerReturnAp, ap, config) and
+      revFlowIsReturned(call, returnCtx, returnAp, pos, innerReturnAp, config)
     }
 
     /**
@@ -1832,12 +1806,12 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate revFlowIsReturned(
-      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnKindExt kind, Ap ap,
+      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnPosition pos, Ap ap,
       Configuration config
     ) {
       exists(RetNodeEx ret, FlowState state, CcCall ccc |
-        revFlowOut(call, ret, kind, state, returnCtx, returnAp, ap, config) and
-        returnFlowsThrough(ret, kind, state, ccc, _, _, ap, config) and
+        revFlowOut(call, ret, pos, state, returnCtx, returnAp, ap, config) and
+        returnFlowsThrough(ret, pos, state, ccc, _, _, ap, config) and
         matchesCall(ccc, call)
       )
     }
@@ -1915,17 +1889,17 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate parameterFlowsThroughRev(
-      ParamNodeEx p, Ap ap, ReturnKindExt kind, Ap returnAp, Configuration config
+      ParamNodeEx p, Ap ap, ReturnPosition pos, Ap returnAp, Configuration config
     ) {
-      revFlow(p, _, TReturnCtxMaybeFlowThrough(kind), apSome(returnAp), ap, config) and
-      parameterFlowThroughAllowed(p, kind)
+      revFlow(p, _, TReturnCtxMaybeFlowThrough(pos), apSome(returnAp), ap, config) and
+      parameterFlowThroughAllowed(p, pos.getKind())
     }
 
     pragma[nomagic]
     predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
-      exists(RetNodeEx ret, ReturnKindExt kind |
-        returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
-        parameterFlowsThroughRev(p, ap, kind, _, config)
+      exists(RetNodeEx ret, ReturnPosition pos |
+        returnFlowsThrough(ret, pos, _, _, p, ap, _, config) and
+        parameterFlowsThroughRev(p, ap, pos, _, config)
       )
     }
 
@@ -1933,20 +1907,21 @@ private module MkStage<StageSig PrevStage> {
     predicate returnMayFlowThrough(
       RetNodeEx ret, Ap argAp, Ap ap, ReturnKindExt kind, Configuration config
     ) {
-      exists(ParamNodeEx p |
-        returnFlowsThrough(ret, kind, _, _, p, argAp, ap, config) and
-        parameterFlowsThroughRev(p, argAp, kind, ap, config)
+      exists(ParamNodeEx p, ReturnPosition pos |
+        returnFlowsThrough(ret, pos, _, _, p, argAp, ap, config) and
+        parameterFlowsThroughRev(p, argAp, pos, ap, config) and
+        kind = pos.getKind()
       )
     }
 
     pragma[nomagic]
-    predicate revFlowInToReturnIsReturned(
+    private predicate revFlowThroughArg(
       DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnCtx returnCtx, ApOption returnAp,
       Ap ap, Configuration config
     ) {
-      exists(ReturnKindExt returnKind0, Ap returnAp0 |
-        revFlowInToReturn(call, arg, state, returnKind0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
+      exists(ParamNodeEx p, ReturnPosition pos, Ap innerReturnAp |
+        revFlowThrough(call, returnCtx, p, state, pos, returnAp, ap, innerReturnAp, config) and
+        flowThroughIntoCall(call, arg, p, _, ap, innerReturnAp, config)
       )
     }
 
@@ -1954,7 +1929,7 @@ private module MkStage<StageSig PrevStage> {
     predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
       exists(ArgNodeEx arg, FlowState state, ReturnCtx returnCtx, ApOption returnAp, Ap ap |
         revFlow(arg, state, returnCtx, returnAp, ap, config) and
-        revFlowInToReturnIsReturned(call, arg, state, returnCtx, returnAp, ap, config)
+        revFlowThroughArg(call, arg, state, returnCtx, returnAp, ap, config)
       )
     }
 
@@ -1967,8 +1942,9 @@ private module MkStage<StageSig PrevStage> {
       conscand = count(TypedContent f0, Ap ap | fwdConsCand(f0, ap, config)) and
       states = count(FlowState state | fwdFlow(_, state, _, _, _, _, config)) and
       tuples =
-        count(NodeEx n, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-          Ap ap | fwdFlow(n, state, cc, summaryCtx, argAp, ap, config))
+        count(NodeEx n, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap |
+          fwdFlow(n, state, cc, summaryCtx, argAp, ap, config)
+        )
       or
       fwd = false and
       nodes = count(NodeEx node | revFlow(node, _, _, _, _, config)) and
@@ -2823,13 +2799,12 @@ private Configuration unbindConf(Configuration conf) {
 
 pragma[nomagic]
 private predicate nodeMayUseSummary0(
-  NodeEx n, DataFlowCallable c, ParameterPosition pos, FlowState state, AccessPathApprox apa,
-  Configuration config
+  NodeEx n, ParamNodeEx p, FlowState state, AccessPathApprox apa, Configuration config
 ) {
   exists(AccessPathApprox apa0 |
-    c = n.getEnclosingCallable() and
+    Stage5::parameterMayFlowThrough(p, _, _) and
     Stage5::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
-    Stage5::fwdFlow(n, state, any(CallContextCall ccc), TParameterPositionSome(pos),
+    Stage5::fwdFlow(n, state, any(CallContextCall ccc), TParamNodeSome(p.asNode()),
       TAccessPathApproxSome(apa), apa0, config)
   )
 }
@@ -2838,10 +2813,9 @@ pragma[nomagic]
 private predicate nodeMayUseSummary(
   NodeEx n, FlowState state, AccessPathApprox apa, Configuration config
 ) {
-  exists(DataFlowCallable c, ParameterPosition pos, ParamNodeEx p |
+  exists(ParamNodeEx p |
     Stage5::parameterMayFlowThrough(p, apa, config) and
-    nodeMayUseSummary0(n, c, pos, state, apa, config) and
-    p.isParameterOf(c, pos)
+    nodeMayUseSummary0(n, p, state, apa, config)
   )
 }
 
diff --git a/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl3.qll b/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl3.qll
index 6741ccc2f06..23d11a38842 100644
--- a/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl3.qll
+++ b/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl3.qll
@@ -1327,8 +1327,8 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     additional predicate fwdFlow(
-      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      Ap ap, ApApprox apa, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      ApApprox apa, Configuration config
     ) {
       fwdFlow0(node, state, cc, summaryCtx, argAp, ap, apa, config) and
       PrevStage::revFlow(node, state, apa, config) and
@@ -1337,21 +1337,21 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[inline]
     additional predicate fwdFlow(
-      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      Ap ap, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      Configuration config
     ) {
       fwdFlow(node, state, cc, summaryCtx, argAp, ap, _, config)
     }
 
     pragma[nomagic]
     private predicate fwdFlow0(
-      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      Ap ap, ApApprox apa, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      ApApprox apa, Configuration config
     ) {
       sourceNode(node, state, config) and
       (if hasSourceCallCtx(config) then cc = ccSomeCall() else cc = ccNone()) and
       argAp = apNone() and
-      summaryCtx = TParameterPositionNone() and
+      summaryCtx = TParamNodeNone() and
       ap = getApNil(node) and
       apa = getApprox(ap)
       or
@@ -1372,7 +1372,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, apa, pragma[only_bind_into](config)) and
         jumpStep(mid, node, config) and
         cc = ccNone() and
-        summaryCtx = TParameterPositionNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone()
       )
       or
@@ -1380,7 +1380,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, state, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStep(mid, node, config) and
         cc = ccNone() and
-        summaryCtx = TParameterPositionNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone() and
         ap = getApNil(node) and
         apa = getApprox(ap)
@@ -1390,7 +1390,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, state0, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStateStep(mid, state0, node, state, config) and
         cc = ccNone() and
-        summaryCtx = TParameterPositionNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone() and
         ap = getApNil(node) and
         apa = getApprox(ap)
@@ -1414,10 +1414,10 @@ private module MkStage<StageSig PrevStage> {
       fwdFlowIn(_, node, state, _, cc, _, _, ap, apa, config) and
       if PrevStage::parameterMayFlowThrough(node, apa, config)
       then (
-        summaryCtx = TParameterPositionSome(node.(ParamNodeEx).getPosition()) and
+        summaryCtx = TParamNodeSome(node.asNode()) and
         argAp = apSome(ap)
       ) else (
-        summaryCtx = TParameterPositionNone() and argAp = apNone()
+        summaryCtx = TParamNodeNone() and argAp = apNone()
       )
       or
       // flow out of a callable
@@ -1433,16 +1433,19 @@ private module MkStage<StageSig PrevStage> {
       )
       or
       // flow through a callable
-      exists(DataFlowCall call, ParameterPosition summaryCtx0, Ap argAp0 |
-        fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, apa, config) and
-        fwdFlowIsEntered(call, cc, summaryCtx, argAp, summaryCtx0, argAp0, config)
+      exists(
+        DataFlowCall call, CcCall ccc, RetNodeEx ret, boolean allowsFieldFlow, ApApprox innerArgApa
+      |
+        fwdFlowThrough(call, cc, state, ccc, summaryCtx, argAp, ap, apa, ret, innerArgApa, config) and
+        flowThroughOutOfCall(call, ccc, ret, node, allowsFieldFlow, innerArgApa, apa, config) and
+        if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
     pragma[nomagic]
     private predicate fwdFlowStore(
       NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc,
-      ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
+      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
     ) {
       exists(DataFlowType contentType, ApApprox apa1 |
         fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, apa1, config) and
@@ -1473,8 +1476,8 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowRead0(
-      NodeEx node1, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      ApNonNil ap, Configuration config
+      NodeEx node1, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, ApNonNil ap,
+      Configuration config
     ) {
       fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, _, _, config)
@@ -1483,7 +1486,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowRead(
       Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc,
-      ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
+      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
     ) {
       fwdFlowRead0(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, c, node2, config) and
@@ -1493,7 +1496,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowIn(
       DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, CcCall innercc,
-      ParameterPositionOption summaryCtx, ApOption argAp, Ap ap, ApApprox apa, Configuration config
+      ParamNodeOption summaryCtx, ApOption argAp, Ap ap, ApApprox apa, Configuration config
     ) {
       exists(ArgNodeEx arg, boolean allowsFieldFlow |
         fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, apa, config) and
@@ -1505,64 +1508,38 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowRetFromArg(
-      RetNodeEx ret, FlowState state, CcCall ccc, ParameterPosition summaryCtx, ParamNodeEx p,
-      Ap argAp, ApApprox argApa, Ap ap, ApApprox apa, Configuration config
+      RetNodeEx ret, FlowState state, CcCall ccc, ParamNodeEx summaryCtx, Ap argAp, ApApprox argApa,
+      Ap ap, ApApprox apa, Configuration config
     ) {
-      exists(DataFlowCallable c, ReturnKindExt kind |
+      exists(ReturnKindExt kind |
         fwdFlow(pragma[only_bind_into](ret), state, ccc,
-          TParameterPositionSome(pragma[only_bind_into](summaryCtx)), apSome(argAp), ap, apa, config) and
-        getApprox(argAp) = argApa and
-        c = ret.getEnclosingCallable() and
+          TParamNodeSome(pragma[only_bind_into](summaryCtx.asNode())),
+          pragma[only_bind_into](apSome(argAp)), ap, pragma[only_bind_into](apa),
+          pragma[only_bind_into](config)) and
         kind = ret.getKind() and
-        p.isParameterOf(c, pragma[only_bind_into](summaryCtx)) and
-        parameterFlowThroughAllowed(p, kind)
+        parameterFlowThroughAllowed(summaryCtx, kind) and
+        argApa = getApprox(argAp) and
+        PrevStage::returnMayFlowThrough(ret, argApa, apa, kind, pragma[only_bind_into](config))
       )
     }
 
     pragma[inline]
-    private predicate fwdFlowInMayFlowThrough(
-      DataFlowCall call, Cc cc, CcCall innerCc, ParameterPositionOption summaryCtx, ApOption argAp,
-      ParamNodeEx param, Ap ap, ApApprox apa, Configuration config
+    private predicate fwdFlowThrough0(
+      DataFlowCall call, Cc cc, FlowState state, CcCall ccc, ParamNodeOption summaryCtx,
+      ApOption argAp, Ap ap, ApApprox apa, RetNodeEx ret, ParamNodeEx innerSummaryCtx,
+      Ap innerArgAp, ApApprox innerArgApa, Configuration config
     ) {
-      fwdFlowIn(call, pragma[only_bind_into](param), _, cc, innerCc, summaryCtx, argAp, ap,
-        pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
-      PrevStage::parameterMayFlowThrough(param, apa, config)
-    }
-
-    // dedup before joining with `flowThroughOutOfCall`
-    pragma[nomagic]
-    private predicate fwdFlowInMayFlowThroughProj(
-      DataFlowCall call, CcCall innerCc, ApApprox apa, Configuration config
-    ) {
-      fwdFlowInMayFlowThrough(call, _, innerCc, _, _, _, _, apa, config)
-    }
-
-    /**
-     * Same as `flowThroughOutOfCall`, but restricted to calls that are reached
-     * in the flow covered by `fwdFlow`, where data might flow through the target
-     * callable and back out at `call`.
-     */
-    pragma[nomagic]
-    private predicate fwdFlowThroughOutOfCall(
-      DataFlowCall call, CcCall ccc, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow,
-      ApApprox argApa, ApApprox apa, Configuration config
-    ) {
-      fwdFlowInMayFlowThroughProj(call, ccc, argApa, config) and
-      flowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, argApa, apa, config)
+      fwdFlowRetFromArg(ret, state, ccc, innerSummaryCtx, innerArgAp, innerArgApa, ap, apa, config) and
+      fwdFlowIsEntered(call, cc, ccc, summaryCtx, argAp, innerSummaryCtx, innerArgAp, config)
     }
 
     pragma[nomagic]
-    private predicate fwdFlowOutFromArg(
-      DataFlowCall call, NodeEx out, FlowState state, ParameterPosition summaryCtx, Ap argAp, Ap ap,
-      ApApprox apa, Configuration config
+    private predicate fwdFlowThrough(
+      DataFlowCall call, Cc cc, FlowState state, CcCall ccc, ParamNodeOption summaryCtx,
+      ApOption argAp, Ap ap, ApApprox apa, RetNodeEx ret, ApApprox innerArgApa, Configuration config
     ) {
-      exists(RetNodeEx ret, boolean allowsFieldFlow, CcCall ccc, ApApprox argApa |
-        fwdFlowRetFromArg(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc),
-          summaryCtx, _, argAp, pragma[only_bind_into](argApa), ap, pragma[only_bind_into](apa),
-          config) and
-        fwdFlowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, argApa, apa, config) and
-        (if allowsFieldFlow = false then ap instanceof ApNil else any())
-      )
+      fwdFlowThrough0(call, cc, state, ccc, summaryCtx, argAp, ap, apa, ret, _, _, innerArgApa,
+        config)
     }
 
     /**
@@ -1571,12 +1548,14 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate fwdFlowIsEntered(
-      DataFlowCall call, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      ParameterPosition pos, Ap ap, Configuration config
+      DataFlowCall call, Cc cc, CcCall innerCc, ParamNodeOption summaryCtx, ApOption argAp,
+      ParamNodeEx p, Ap ap, Configuration config
     ) {
-      exists(ParamNodeEx param |
-        fwdFlowInMayFlowThrough(call, cc, _, summaryCtx, argAp, param, ap, _, config) and
-        pos = param.getPosition()
+      exists(ApApprox apa |
+        fwdFlowIn(call, pragma[only_bind_into](p), _, cc, innerCc, summaryCtx, argAp, ap,
+          pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
+        PrevStage::parameterMayFlowThrough(p, apa, config) and
+        PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config))
       )
     }
 
@@ -1596,23 +1575,31 @@ private module MkStage<StageSig PrevStage> {
       fwdFlowConsCand(ap1, c, ap2, config)
     }
 
+    pragma[nomagic]
+    private predicate returnFlowsThrough0(
+      DataFlowCall call, FlowState state, CcCall ccc, Ap ap, ApApprox apa, RetNodeEx ret,
+      ParamNodeEx innerSummaryCtx, Ap innerArgAp, ApApprox innerArgApa, Configuration config
+    ) {
+      fwdFlowThrough0(call, _, state, ccc, _, _, ap, apa, ret, innerSummaryCtx, innerArgAp,
+        innerArgApa, config)
+    }
+
     pragma[nomagic]
     private predicate returnFlowsThrough(
-      RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, ParamNodeEx p, Ap argAp,
+      RetNodeEx ret, ReturnPosition pos, FlowState state, CcCall ccc, ParamNodeEx p, Ap argAp,
       Ap ap, Configuration config
     ) {
-      exists(boolean allowsFieldFlow, ApApprox argApa, ApApprox apa |
-        fwdFlowRetFromArg(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc), _, p,
-          argAp, pragma[only_bind_into](argApa), ap, pragma[only_bind_into](apa), config) and
-        kind = ret.getKind() and
-        fwdFlowThroughOutOfCall(_, ccc, ret, _, allowsFieldFlow, argApa, apa, config) and
-        (if allowsFieldFlow = false then ap instanceof ApNil else any())
+      exists(DataFlowCall call, ApApprox apa, boolean allowsFieldFlow, ApApprox innerArgApa |
+        returnFlowsThrough0(call, state, ccc, ap, apa, ret, p, argAp, innerArgApa, config) and
+        flowThroughOutOfCall(call, ccc, ret, _, allowsFieldFlow, innerArgApa, apa, config) and
+        pos = ret.getReturnPosition() and
+        if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
     pragma[nomagic]
     private predicate flowThroughIntoCall(
-      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp,
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp, Ap ap,
       Configuration config
     ) {
       exists(ApApprox argApa |
@@ -1620,7 +1607,7 @@ private module MkStage<StageSig PrevStage> {
           allowsFieldFlow, argApa, pragma[only_bind_into](config)) and
         fwdFlow(arg, _, _, _, _, pragma[only_bind_into](argAp), argApa,
           pragma[only_bind_into](config)) and
-        returnFlowsThrough(_, _, _, _, p, pragma[only_bind_into](argAp), _,
+        returnFlowsThrough(_, _, _, _, p, pragma[only_bind_into](argAp), ap,
           pragma[only_bind_into](config)) and
         if allowsFieldFlow = false then argAp instanceof ApNil else any()
       )
@@ -1639,12 +1626,13 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate flowOutOfCallAp(
-      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
+      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
       Ap ap, Configuration config
     ) {
       exists(ApApprox apa |
-        flowOutOfCallApa(call, ret, kind, out, allowsFieldFlow, apa, config) and
-        fwdFlow(ret, _, _, _, _, ap, apa, config)
+        flowOutOfCallApa(call, ret, _, out, allowsFieldFlow, apa, config) and
+        fwdFlow(ret, _, _, _, _, ap, apa, config) and
+        pos = ret.getReturnPosition()
       )
     }
 
@@ -1739,17 +1727,17 @@ private module MkStage<StageSig PrevStage> {
       )
       or
       // flow through a callable
-      exists(DataFlowCall call, ReturnKindExt returnKind0, Ap returnAp0 |
-        revFlowInToReturn(call, node, state, returnKind0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
+      exists(DataFlowCall call, ParamNodeEx p, ReturnPosition pos, Ap innerReturnAp |
+        revFlowThrough(call, returnCtx, p, state, pos, returnAp, ap, innerReturnAp, config) and
+        flowThroughIntoCall(call, node, p, _, ap, innerReturnAp, config)
       )
       or
       // flow out of a callable
-      exists(ReturnKindExt kind |
-        revFlowOut(_, node, kind, state, _, _, ap, config) and
-        if returnFlowsThrough(node, kind, state, _, _, _, ap, config)
+      exists(ReturnPosition pos |
+        revFlowOut(_, node, pos, state, _, _, ap, config) and
+        if returnFlowsThrough(node, pos, state, _, _, _, ap, config)
         then (
-          returnCtx = TReturnCtxMaybeFlowThrough(kind) and
+          returnCtx = TReturnCtxMaybeFlowThrough(pos) and
           returnAp = apSome(ap)
         ) else (
           returnCtx = TReturnCtxNoFlowThrough() and returnAp = apNone()
@@ -1782,47 +1770,33 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate revFlowOut(
-      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, FlowState state, ReturnCtx returnCtx,
+      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, FlowState state, ReturnCtx returnCtx,
       ApOption returnAp, Ap ap, Configuration config
     ) {
       exists(NodeEx out, boolean allowsFieldFlow |
         revFlow(out, state, returnCtx, returnAp, ap, config) and
-        flowOutOfCallAp(call, ret, kind, out, allowsFieldFlow, ap, config) and
+        flowOutOfCallAp(call, ret, pos, out, allowsFieldFlow, ap, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
-    /**
-     * Same as `flowThroughIntoCall`, but restricted to calls that are reached
-     * in the flow covered by `revFlow`, where data might flow through the target
-     * callable and back out at `call`.
-     */
-    pragma[nomagic]
-    private predicate revFlowThroughIntoCall(
-      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp,
-      Configuration config
-    ) {
-      flowThroughIntoCall(call, arg, p, allowsFieldFlow, argAp, config) and
-      revFlowIsReturned(call, _, _, _, _, config)
-    }
-
     pragma[nomagic]
     private predicate revFlowParamToReturn(
-      ParamNodeEx p, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap, Configuration config
+      ParamNodeEx p, FlowState state, ReturnPosition pos, Ap returnAp, Ap ap, Configuration config
     ) {
-      revFlow(p, state, TReturnCtxMaybeFlowThrough(kind), apSome(returnAp), ap, config) and
-      parameterFlowThroughAllowed(p, kind)
+      revFlow(pragma[only_bind_into](p), state, TReturnCtxMaybeFlowThrough(pos), apSome(returnAp),
+        pragma[only_bind_into](ap), pragma[only_bind_into](config)) and
+      parameterFlowThroughAllowed(p, pos.getKind()) and
+      PrevStage::parameterMayFlowThrough(p, getApprox(ap), config)
     }
 
     pragma[nomagic]
-    private predicate revFlowInToReturn(
-      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap,
-      Configuration config
+    private predicate revFlowThrough(
+      DataFlowCall call, ReturnCtx returnCtx, ParamNodeEx p, FlowState state, ReturnPosition pos,
+      ApOption returnAp, Ap ap, Ap innerReturnAp, Configuration config
     ) {
-      exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlowParamToReturn(p, state, kind, returnAp, ap, config) and
-        revFlowThroughIntoCall(call, arg, p, allowsFieldFlow, ap, config)
-      )
+      revFlowParamToReturn(p, state, pos, innerReturnAp, ap, config) and
+      revFlowIsReturned(call, returnCtx, returnAp, pos, innerReturnAp, config)
     }
 
     /**
@@ -1832,12 +1806,12 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate revFlowIsReturned(
-      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnKindExt kind, Ap ap,
+      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnPosition pos, Ap ap,
       Configuration config
     ) {
       exists(RetNodeEx ret, FlowState state, CcCall ccc |
-        revFlowOut(call, ret, kind, state, returnCtx, returnAp, ap, config) and
-        returnFlowsThrough(ret, kind, state, ccc, _, _, ap, config) and
+        revFlowOut(call, ret, pos, state, returnCtx, returnAp, ap, config) and
+        returnFlowsThrough(ret, pos, state, ccc, _, _, ap, config) and
         matchesCall(ccc, call)
       )
     }
@@ -1915,17 +1889,17 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate parameterFlowsThroughRev(
-      ParamNodeEx p, Ap ap, ReturnKindExt kind, Ap returnAp, Configuration config
+      ParamNodeEx p, Ap ap, ReturnPosition pos, Ap returnAp, Configuration config
     ) {
-      revFlow(p, _, TReturnCtxMaybeFlowThrough(kind), apSome(returnAp), ap, config) and
-      parameterFlowThroughAllowed(p, kind)
+      revFlow(p, _, TReturnCtxMaybeFlowThrough(pos), apSome(returnAp), ap, config) and
+      parameterFlowThroughAllowed(p, pos.getKind())
     }
 
     pragma[nomagic]
     predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
-      exists(RetNodeEx ret, ReturnKindExt kind |
-        returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
-        parameterFlowsThroughRev(p, ap, kind, _, config)
+      exists(RetNodeEx ret, ReturnPosition pos |
+        returnFlowsThrough(ret, pos, _, _, p, ap, _, config) and
+        parameterFlowsThroughRev(p, ap, pos, _, config)
       )
     }
 
@@ -1933,20 +1907,21 @@ private module MkStage<StageSig PrevStage> {
     predicate returnMayFlowThrough(
       RetNodeEx ret, Ap argAp, Ap ap, ReturnKindExt kind, Configuration config
     ) {
-      exists(ParamNodeEx p |
-        returnFlowsThrough(ret, kind, _, _, p, argAp, ap, config) and
-        parameterFlowsThroughRev(p, argAp, kind, ap, config)
+      exists(ParamNodeEx p, ReturnPosition pos |
+        returnFlowsThrough(ret, pos, _, _, p, argAp, ap, config) and
+        parameterFlowsThroughRev(p, argAp, pos, ap, config) and
+        kind = pos.getKind()
       )
     }
 
     pragma[nomagic]
-    predicate revFlowInToReturnIsReturned(
+    private predicate revFlowThroughArg(
       DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnCtx returnCtx, ApOption returnAp,
       Ap ap, Configuration config
     ) {
-      exists(ReturnKindExt returnKind0, Ap returnAp0 |
-        revFlowInToReturn(call, arg, state, returnKind0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
+      exists(ParamNodeEx p, ReturnPosition pos, Ap innerReturnAp |
+        revFlowThrough(call, returnCtx, p, state, pos, returnAp, ap, innerReturnAp, config) and
+        flowThroughIntoCall(call, arg, p, _, ap, innerReturnAp, config)
       )
     }
 
@@ -1954,7 +1929,7 @@ private module MkStage<StageSig PrevStage> {
     predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
       exists(ArgNodeEx arg, FlowState state, ReturnCtx returnCtx, ApOption returnAp, Ap ap |
         revFlow(arg, state, returnCtx, returnAp, ap, config) and
-        revFlowInToReturnIsReturned(call, arg, state, returnCtx, returnAp, ap, config)
+        revFlowThroughArg(call, arg, state, returnCtx, returnAp, ap, config)
       )
     }
 
@@ -1967,8 +1942,9 @@ private module MkStage<StageSig PrevStage> {
       conscand = count(TypedContent f0, Ap ap | fwdConsCand(f0, ap, config)) and
       states = count(FlowState state | fwdFlow(_, state, _, _, _, _, config)) and
       tuples =
-        count(NodeEx n, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-          Ap ap | fwdFlow(n, state, cc, summaryCtx, argAp, ap, config))
+        count(NodeEx n, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap |
+          fwdFlow(n, state, cc, summaryCtx, argAp, ap, config)
+        )
       or
       fwd = false and
       nodes = count(NodeEx node | revFlow(node, _, _, _, _, config)) and
@@ -2823,13 +2799,12 @@ private Configuration unbindConf(Configuration conf) {
 
 pragma[nomagic]
 private predicate nodeMayUseSummary0(
-  NodeEx n, DataFlowCallable c, ParameterPosition pos, FlowState state, AccessPathApprox apa,
-  Configuration config
+  NodeEx n, ParamNodeEx p, FlowState state, AccessPathApprox apa, Configuration config
 ) {
   exists(AccessPathApprox apa0 |
-    c = n.getEnclosingCallable() and
+    Stage5::parameterMayFlowThrough(p, _, _) and
     Stage5::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
-    Stage5::fwdFlow(n, state, any(CallContextCall ccc), TParameterPositionSome(pos),
+    Stage5::fwdFlow(n, state, any(CallContextCall ccc), TParamNodeSome(p.asNode()),
       TAccessPathApproxSome(apa), apa0, config)
   )
 }
@@ -2838,10 +2813,9 @@ pragma[nomagic]
 private predicate nodeMayUseSummary(
   NodeEx n, FlowState state, AccessPathApprox apa, Configuration config
 ) {
-  exists(DataFlowCallable c, ParameterPosition pos, ParamNodeEx p |
+  exists(ParamNodeEx p |
     Stage5::parameterMayFlowThrough(p, apa, config) and
-    nodeMayUseSummary0(n, c, pos, state, apa, config) and
-    p.isParameterOf(c, pos)
+    nodeMayUseSummary0(n, p, state, apa, config)
   )
 }
 
diff --git a/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl4.qll b/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl4.qll
index 6741ccc2f06..23d11a38842 100644
--- a/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl4.qll
+++ b/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl4.qll
@@ -1327,8 +1327,8 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     additional predicate fwdFlow(
-      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      Ap ap, ApApprox apa, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      ApApprox apa, Configuration config
     ) {
       fwdFlow0(node, state, cc, summaryCtx, argAp, ap, apa, config) and
       PrevStage::revFlow(node, state, apa, config) and
@@ -1337,21 +1337,21 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[inline]
     additional predicate fwdFlow(
-      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      Ap ap, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      Configuration config
     ) {
       fwdFlow(node, state, cc, summaryCtx, argAp, ap, _, config)
     }
 
     pragma[nomagic]
     private predicate fwdFlow0(
-      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      Ap ap, ApApprox apa, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      ApApprox apa, Configuration config
     ) {
       sourceNode(node, state, config) and
       (if hasSourceCallCtx(config) then cc = ccSomeCall() else cc = ccNone()) and
       argAp = apNone() and
-      summaryCtx = TParameterPositionNone() and
+      summaryCtx = TParamNodeNone() and
       ap = getApNil(node) and
       apa = getApprox(ap)
       or
@@ -1372,7 +1372,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, apa, pragma[only_bind_into](config)) and
         jumpStep(mid, node, config) and
         cc = ccNone() and
-        summaryCtx = TParameterPositionNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone()
       )
       or
@@ -1380,7 +1380,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, state, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStep(mid, node, config) and
         cc = ccNone() and
-        summaryCtx = TParameterPositionNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone() and
         ap = getApNil(node) and
         apa = getApprox(ap)
@@ -1390,7 +1390,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, state0, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStateStep(mid, state0, node, state, config) and
         cc = ccNone() and
-        summaryCtx = TParameterPositionNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone() and
         ap = getApNil(node) and
         apa = getApprox(ap)
@@ -1414,10 +1414,10 @@ private module MkStage<StageSig PrevStage> {
       fwdFlowIn(_, node, state, _, cc, _, _, ap, apa, config) and
       if PrevStage::parameterMayFlowThrough(node, apa, config)
       then (
-        summaryCtx = TParameterPositionSome(node.(ParamNodeEx).getPosition()) and
+        summaryCtx = TParamNodeSome(node.asNode()) and
         argAp = apSome(ap)
       ) else (
-        summaryCtx = TParameterPositionNone() and argAp = apNone()
+        summaryCtx = TParamNodeNone() and argAp = apNone()
       )
       or
       // flow out of a callable
@@ -1433,16 +1433,19 @@ private module MkStage<StageSig PrevStage> {
       )
       or
       // flow through a callable
-      exists(DataFlowCall call, ParameterPosition summaryCtx0, Ap argAp0 |
-        fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, apa, config) and
-        fwdFlowIsEntered(call, cc, summaryCtx, argAp, summaryCtx0, argAp0, config)
+      exists(
+        DataFlowCall call, CcCall ccc, RetNodeEx ret, boolean allowsFieldFlow, ApApprox innerArgApa
+      |
+        fwdFlowThrough(call, cc, state, ccc, summaryCtx, argAp, ap, apa, ret, innerArgApa, config) and
+        flowThroughOutOfCall(call, ccc, ret, node, allowsFieldFlow, innerArgApa, apa, config) and
+        if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
     pragma[nomagic]
     private predicate fwdFlowStore(
       NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc,
-      ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
+      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
     ) {
       exists(DataFlowType contentType, ApApprox apa1 |
         fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, apa1, config) and
@@ -1473,8 +1476,8 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowRead0(
-      NodeEx node1, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      ApNonNil ap, Configuration config
+      NodeEx node1, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, ApNonNil ap,
+      Configuration config
     ) {
       fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, _, _, config)
@@ -1483,7 +1486,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowRead(
       Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc,
-      ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
+      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
     ) {
       fwdFlowRead0(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, c, node2, config) and
@@ -1493,7 +1496,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowIn(
       DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, CcCall innercc,
-      ParameterPositionOption summaryCtx, ApOption argAp, Ap ap, ApApprox apa, Configuration config
+      ParamNodeOption summaryCtx, ApOption argAp, Ap ap, ApApprox apa, Configuration config
     ) {
       exists(ArgNodeEx arg, boolean allowsFieldFlow |
         fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, apa, config) and
@@ -1505,64 +1508,38 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowRetFromArg(
-      RetNodeEx ret, FlowState state, CcCall ccc, ParameterPosition summaryCtx, ParamNodeEx p,
-      Ap argAp, ApApprox argApa, Ap ap, ApApprox apa, Configuration config
+      RetNodeEx ret, FlowState state, CcCall ccc, ParamNodeEx summaryCtx, Ap argAp, ApApprox argApa,
+      Ap ap, ApApprox apa, Configuration config
     ) {
-      exists(DataFlowCallable c, ReturnKindExt kind |
+      exists(ReturnKindExt kind |
         fwdFlow(pragma[only_bind_into](ret), state, ccc,
-          TParameterPositionSome(pragma[only_bind_into](summaryCtx)), apSome(argAp), ap, apa, config) and
-        getApprox(argAp) = argApa and
-        c = ret.getEnclosingCallable() and
+          TParamNodeSome(pragma[only_bind_into](summaryCtx.asNode())),
+          pragma[only_bind_into](apSome(argAp)), ap, pragma[only_bind_into](apa),
+          pragma[only_bind_into](config)) and
         kind = ret.getKind() and
-        p.isParameterOf(c, pragma[only_bind_into](summaryCtx)) and
-        parameterFlowThroughAllowed(p, kind)
+        parameterFlowThroughAllowed(summaryCtx, kind) and
+        argApa = getApprox(argAp) and
+        PrevStage::returnMayFlowThrough(ret, argApa, apa, kind, pragma[only_bind_into](config))
       )
     }
 
     pragma[inline]
-    private predicate fwdFlowInMayFlowThrough(
-      DataFlowCall call, Cc cc, CcCall innerCc, ParameterPositionOption summaryCtx, ApOption argAp,
-      ParamNodeEx param, Ap ap, ApApprox apa, Configuration config
+    private predicate fwdFlowThrough0(
+      DataFlowCall call, Cc cc, FlowState state, CcCall ccc, ParamNodeOption summaryCtx,
+      ApOption argAp, Ap ap, ApApprox apa, RetNodeEx ret, ParamNodeEx innerSummaryCtx,
+      Ap innerArgAp, ApApprox innerArgApa, Configuration config
     ) {
-      fwdFlowIn(call, pragma[only_bind_into](param), _, cc, innerCc, summaryCtx, argAp, ap,
-        pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
-      PrevStage::parameterMayFlowThrough(param, apa, config)
-    }
-
-    // dedup before joining with `flowThroughOutOfCall`
-    pragma[nomagic]
-    private predicate fwdFlowInMayFlowThroughProj(
-      DataFlowCall call, CcCall innerCc, ApApprox apa, Configuration config
-    ) {
-      fwdFlowInMayFlowThrough(call, _, innerCc, _, _, _, _, apa, config)
-    }
-
-    /**
-     * Same as `flowThroughOutOfCall`, but restricted to calls that are reached
-     * in the flow covered by `fwdFlow`, where data might flow through the target
-     * callable and back out at `call`.
-     */
-    pragma[nomagic]
-    private predicate fwdFlowThroughOutOfCall(
-      DataFlowCall call, CcCall ccc, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow,
-      ApApprox argApa, ApApprox apa, Configuration config
-    ) {
-      fwdFlowInMayFlowThroughProj(call, ccc, argApa, config) and
-      flowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, argApa, apa, config)
+      fwdFlowRetFromArg(ret, state, ccc, innerSummaryCtx, innerArgAp, innerArgApa, ap, apa, config) and
+      fwdFlowIsEntered(call, cc, ccc, summaryCtx, argAp, innerSummaryCtx, innerArgAp, config)
     }
 
     pragma[nomagic]
-    private predicate fwdFlowOutFromArg(
-      DataFlowCall call, NodeEx out, FlowState state, ParameterPosition summaryCtx, Ap argAp, Ap ap,
-      ApApprox apa, Configuration config
+    private predicate fwdFlowThrough(
+      DataFlowCall call, Cc cc, FlowState state, CcCall ccc, ParamNodeOption summaryCtx,
+      ApOption argAp, Ap ap, ApApprox apa, RetNodeEx ret, ApApprox innerArgApa, Configuration config
     ) {
-      exists(RetNodeEx ret, boolean allowsFieldFlow, CcCall ccc, ApApprox argApa |
-        fwdFlowRetFromArg(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc),
-          summaryCtx, _, argAp, pragma[only_bind_into](argApa), ap, pragma[only_bind_into](apa),
-          config) and
-        fwdFlowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, argApa, apa, config) and
-        (if allowsFieldFlow = false then ap instanceof ApNil else any())
-      )
+      fwdFlowThrough0(call, cc, state, ccc, summaryCtx, argAp, ap, apa, ret, _, _, innerArgApa,
+        config)
     }
 
     /**
@@ -1571,12 +1548,14 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate fwdFlowIsEntered(
-      DataFlowCall call, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      ParameterPosition pos, Ap ap, Configuration config
+      DataFlowCall call, Cc cc, CcCall innerCc, ParamNodeOption summaryCtx, ApOption argAp,
+      ParamNodeEx p, Ap ap, Configuration config
     ) {
-      exists(ParamNodeEx param |
-        fwdFlowInMayFlowThrough(call, cc, _, summaryCtx, argAp, param, ap, _, config) and
-        pos = param.getPosition()
+      exists(ApApprox apa |
+        fwdFlowIn(call, pragma[only_bind_into](p), _, cc, innerCc, summaryCtx, argAp, ap,
+          pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
+        PrevStage::parameterMayFlowThrough(p, apa, config) and
+        PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config))
       )
     }
 
@@ -1596,23 +1575,31 @@ private module MkStage<StageSig PrevStage> {
       fwdFlowConsCand(ap1, c, ap2, config)
     }
 
+    pragma[nomagic]
+    private predicate returnFlowsThrough0(
+      DataFlowCall call, FlowState state, CcCall ccc, Ap ap, ApApprox apa, RetNodeEx ret,
+      ParamNodeEx innerSummaryCtx, Ap innerArgAp, ApApprox innerArgApa, Configuration config
+    ) {
+      fwdFlowThrough0(call, _, state, ccc, _, _, ap, apa, ret, innerSummaryCtx, innerArgAp,
+        innerArgApa, config)
+    }
+
     pragma[nomagic]
     private predicate returnFlowsThrough(
-      RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, ParamNodeEx p, Ap argAp,
+      RetNodeEx ret, ReturnPosition pos, FlowState state, CcCall ccc, ParamNodeEx p, Ap argAp,
       Ap ap, Configuration config
     ) {
-      exists(boolean allowsFieldFlow, ApApprox argApa, ApApprox apa |
-        fwdFlowRetFromArg(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc), _, p,
-          argAp, pragma[only_bind_into](argApa), ap, pragma[only_bind_into](apa), config) and
-        kind = ret.getKind() and
-        fwdFlowThroughOutOfCall(_, ccc, ret, _, allowsFieldFlow, argApa, apa, config) and
-        (if allowsFieldFlow = false then ap instanceof ApNil else any())
+      exists(DataFlowCall call, ApApprox apa, boolean allowsFieldFlow, ApApprox innerArgApa |
+        returnFlowsThrough0(call, state, ccc, ap, apa, ret, p, argAp, innerArgApa, config) and
+        flowThroughOutOfCall(call, ccc, ret, _, allowsFieldFlow, innerArgApa, apa, config) and
+        pos = ret.getReturnPosition() and
+        if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
     pragma[nomagic]
     private predicate flowThroughIntoCall(
-      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp,
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp, Ap ap,
       Configuration config
     ) {
       exists(ApApprox argApa |
@@ -1620,7 +1607,7 @@ private module MkStage<StageSig PrevStage> {
           allowsFieldFlow, argApa, pragma[only_bind_into](config)) and
         fwdFlow(arg, _, _, _, _, pragma[only_bind_into](argAp), argApa,
           pragma[only_bind_into](config)) and
-        returnFlowsThrough(_, _, _, _, p, pragma[only_bind_into](argAp), _,
+        returnFlowsThrough(_, _, _, _, p, pragma[only_bind_into](argAp), ap,
           pragma[only_bind_into](config)) and
         if allowsFieldFlow = false then argAp instanceof ApNil else any()
       )
@@ -1639,12 +1626,13 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate flowOutOfCallAp(
-      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
+      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
       Ap ap, Configuration config
     ) {
       exists(ApApprox apa |
-        flowOutOfCallApa(call, ret, kind, out, allowsFieldFlow, apa, config) and
-        fwdFlow(ret, _, _, _, _, ap, apa, config)
+        flowOutOfCallApa(call, ret, _, out, allowsFieldFlow, apa, config) and
+        fwdFlow(ret, _, _, _, _, ap, apa, config) and
+        pos = ret.getReturnPosition()
       )
     }
 
@@ -1739,17 +1727,17 @@ private module MkStage<StageSig PrevStage> {
       )
       or
       // flow through a callable
-      exists(DataFlowCall call, ReturnKindExt returnKind0, Ap returnAp0 |
-        revFlowInToReturn(call, node, state, returnKind0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
+      exists(DataFlowCall call, ParamNodeEx p, ReturnPosition pos, Ap innerReturnAp |
+        revFlowThrough(call, returnCtx, p, state, pos, returnAp, ap, innerReturnAp, config) and
+        flowThroughIntoCall(call, node, p, _, ap, innerReturnAp, config)
       )
       or
       // flow out of a callable
-      exists(ReturnKindExt kind |
-        revFlowOut(_, node, kind, state, _, _, ap, config) and
-        if returnFlowsThrough(node, kind, state, _, _, _, ap, config)
+      exists(ReturnPosition pos |
+        revFlowOut(_, node, pos, state, _, _, ap, config) and
+        if returnFlowsThrough(node, pos, state, _, _, _, ap, config)
         then (
-          returnCtx = TReturnCtxMaybeFlowThrough(kind) and
+          returnCtx = TReturnCtxMaybeFlowThrough(pos) and
           returnAp = apSome(ap)
         ) else (
           returnCtx = TReturnCtxNoFlowThrough() and returnAp = apNone()
@@ -1782,47 +1770,33 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate revFlowOut(
-      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, FlowState state, ReturnCtx returnCtx,
+      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, FlowState state, ReturnCtx returnCtx,
       ApOption returnAp, Ap ap, Configuration config
     ) {
       exists(NodeEx out, boolean allowsFieldFlow |
         revFlow(out, state, returnCtx, returnAp, ap, config) and
-        flowOutOfCallAp(call, ret, kind, out, allowsFieldFlow, ap, config) and
+        flowOutOfCallAp(call, ret, pos, out, allowsFieldFlow, ap, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
-    /**
-     * Same as `flowThroughIntoCall`, but restricted to calls that are reached
-     * in the flow covered by `revFlow`, where data might flow through the target
-     * callable and back out at `call`.
-     */
-    pragma[nomagic]
-    private predicate revFlowThroughIntoCall(
-      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp,
-      Configuration config
-    ) {
-      flowThroughIntoCall(call, arg, p, allowsFieldFlow, argAp, config) and
-      revFlowIsReturned(call, _, _, _, _, config)
-    }
-
     pragma[nomagic]
     private predicate revFlowParamToReturn(
-      ParamNodeEx p, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap, Configuration config
+      ParamNodeEx p, FlowState state, ReturnPosition pos, Ap returnAp, Ap ap, Configuration config
     ) {
-      revFlow(p, state, TReturnCtxMaybeFlowThrough(kind), apSome(returnAp), ap, config) and
-      parameterFlowThroughAllowed(p, kind)
+      revFlow(pragma[only_bind_into](p), state, TReturnCtxMaybeFlowThrough(pos), apSome(returnAp),
+        pragma[only_bind_into](ap), pragma[only_bind_into](config)) and
+      parameterFlowThroughAllowed(p, pos.getKind()) and
+      PrevStage::parameterMayFlowThrough(p, getApprox(ap), config)
     }
 
     pragma[nomagic]
-    private predicate revFlowInToReturn(
-      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap,
-      Configuration config
+    private predicate revFlowThrough(
+      DataFlowCall call, ReturnCtx returnCtx, ParamNodeEx p, FlowState state, ReturnPosition pos,
+      ApOption returnAp, Ap ap, Ap innerReturnAp, Configuration config
     ) {
-      exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlowParamToReturn(p, state, kind, returnAp, ap, config) and
-        revFlowThroughIntoCall(call, arg, p, allowsFieldFlow, ap, config)
-      )
+      revFlowParamToReturn(p, state, pos, innerReturnAp, ap, config) and
+      revFlowIsReturned(call, returnCtx, returnAp, pos, innerReturnAp, config)
     }
 
     /**
@@ -1832,12 +1806,12 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate revFlowIsReturned(
-      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnKindExt kind, Ap ap,
+      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnPosition pos, Ap ap,
       Configuration config
     ) {
       exists(RetNodeEx ret, FlowState state, CcCall ccc |
-        revFlowOut(call, ret, kind, state, returnCtx, returnAp, ap, config) and
-        returnFlowsThrough(ret, kind, state, ccc, _, _, ap, config) and
+        revFlowOut(call, ret, pos, state, returnCtx, returnAp, ap, config) and
+        returnFlowsThrough(ret, pos, state, ccc, _, _, ap, config) and
         matchesCall(ccc, call)
       )
     }
@@ -1915,17 +1889,17 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate parameterFlowsThroughRev(
-      ParamNodeEx p, Ap ap, ReturnKindExt kind, Ap returnAp, Configuration config
+      ParamNodeEx p, Ap ap, ReturnPosition pos, Ap returnAp, Configuration config
     ) {
-      revFlow(p, _, TReturnCtxMaybeFlowThrough(kind), apSome(returnAp), ap, config) and
-      parameterFlowThroughAllowed(p, kind)
+      revFlow(p, _, TReturnCtxMaybeFlowThrough(pos), apSome(returnAp), ap, config) and
+      parameterFlowThroughAllowed(p, pos.getKind())
     }
 
     pragma[nomagic]
     predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
-      exists(RetNodeEx ret, ReturnKindExt kind |
-        returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
-        parameterFlowsThroughRev(p, ap, kind, _, config)
+      exists(RetNodeEx ret, ReturnPosition pos |
+        returnFlowsThrough(ret, pos, _, _, p, ap, _, config) and
+        parameterFlowsThroughRev(p, ap, pos, _, config)
       )
     }
 
@@ -1933,20 +1907,21 @@ private module MkStage<StageSig PrevStage> {
     predicate returnMayFlowThrough(
       RetNodeEx ret, Ap argAp, Ap ap, ReturnKindExt kind, Configuration config
     ) {
-      exists(ParamNodeEx p |
-        returnFlowsThrough(ret, kind, _, _, p, argAp, ap, config) and
-        parameterFlowsThroughRev(p, argAp, kind, ap, config)
+      exists(ParamNodeEx p, ReturnPosition pos |
+        returnFlowsThrough(ret, pos, _, _, p, argAp, ap, config) and
+        parameterFlowsThroughRev(p, argAp, pos, ap, config) and
+        kind = pos.getKind()
       )
     }
 
     pragma[nomagic]
-    predicate revFlowInToReturnIsReturned(
+    private predicate revFlowThroughArg(
       DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnCtx returnCtx, ApOption returnAp,
       Ap ap, Configuration config
     ) {
-      exists(ReturnKindExt returnKind0, Ap returnAp0 |
-        revFlowInToReturn(call, arg, state, returnKind0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
+      exists(ParamNodeEx p, ReturnPosition pos, Ap innerReturnAp |
+        revFlowThrough(call, returnCtx, p, state, pos, returnAp, ap, innerReturnAp, config) and
+        flowThroughIntoCall(call, arg, p, _, ap, innerReturnAp, config)
       )
     }
 
@@ -1954,7 +1929,7 @@ private module MkStage<StageSig PrevStage> {
     predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
       exists(ArgNodeEx arg, FlowState state, ReturnCtx returnCtx, ApOption returnAp, Ap ap |
         revFlow(arg, state, returnCtx, returnAp, ap, config) and
-        revFlowInToReturnIsReturned(call, arg, state, returnCtx, returnAp, ap, config)
+        revFlowThroughArg(call, arg, state, returnCtx, returnAp, ap, config)
       )
     }
 
@@ -1967,8 +1942,9 @@ private module MkStage<StageSig PrevStage> {
       conscand = count(TypedContent f0, Ap ap | fwdConsCand(f0, ap, config)) and
       states = count(FlowState state | fwdFlow(_, state, _, _, _, _, config)) and
       tuples =
-        count(NodeEx n, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-          Ap ap | fwdFlow(n, state, cc, summaryCtx, argAp, ap, config))
+        count(NodeEx n, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap |
+          fwdFlow(n, state, cc, summaryCtx, argAp, ap, config)
+        )
       or
       fwd = false and
       nodes = count(NodeEx node | revFlow(node, _, _, _, _, config)) and
@@ -2823,13 +2799,12 @@ private Configuration unbindConf(Configuration conf) {
 
 pragma[nomagic]
 private predicate nodeMayUseSummary0(
-  NodeEx n, DataFlowCallable c, ParameterPosition pos, FlowState state, AccessPathApprox apa,
-  Configuration config
+  NodeEx n, ParamNodeEx p, FlowState state, AccessPathApprox apa, Configuration config
 ) {
   exists(AccessPathApprox apa0 |
-    c = n.getEnclosingCallable() and
+    Stage5::parameterMayFlowThrough(p, _, _) and
     Stage5::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
-    Stage5::fwdFlow(n, state, any(CallContextCall ccc), TParameterPositionSome(pos),
+    Stage5::fwdFlow(n, state, any(CallContextCall ccc), TParamNodeSome(p.asNode()),
       TAccessPathApproxSome(apa), apa0, config)
   )
 }
@@ -2838,10 +2813,9 @@ pragma[nomagic]
 private predicate nodeMayUseSummary(
   NodeEx n, FlowState state, AccessPathApprox apa, Configuration config
 ) {
-  exists(DataFlowCallable c, ParameterPosition pos, ParamNodeEx p |
+  exists(ParamNodeEx p |
     Stage5::parameterMayFlowThrough(p, apa, config) and
-    nodeMayUseSummary0(n, c, pos, state, apa, config) and
-    p.isParameterOf(c, pos)
+    nodeMayUseSummary0(n, p, state, apa, config)
   )
 }
 
diff --git a/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl5.qll b/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl5.qll
index 6741ccc2f06..23d11a38842 100644
--- a/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl5.qll
+++ b/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl5.qll
@@ -1327,8 +1327,8 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     additional predicate fwdFlow(
-      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      Ap ap, ApApprox apa, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      ApApprox apa, Configuration config
     ) {
       fwdFlow0(node, state, cc, summaryCtx, argAp, ap, apa, config) and
       PrevStage::revFlow(node, state, apa, config) and
@@ -1337,21 +1337,21 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[inline]
     additional predicate fwdFlow(
-      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      Ap ap, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      Configuration config
     ) {
       fwdFlow(node, state, cc, summaryCtx, argAp, ap, _, config)
     }
 
     pragma[nomagic]
     private predicate fwdFlow0(
-      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      Ap ap, ApApprox apa, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      ApApprox apa, Configuration config
     ) {
       sourceNode(node, state, config) and
       (if hasSourceCallCtx(config) then cc = ccSomeCall() else cc = ccNone()) and
       argAp = apNone() and
-      summaryCtx = TParameterPositionNone() and
+      summaryCtx = TParamNodeNone() and
       ap = getApNil(node) and
       apa = getApprox(ap)
       or
@@ -1372,7 +1372,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, apa, pragma[only_bind_into](config)) and
         jumpStep(mid, node, config) and
         cc = ccNone() and
-        summaryCtx = TParameterPositionNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone()
       )
       or
@@ -1380,7 +1380,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, state, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStep(mid, node, config) and
         cc = ccNone() and
-        summaryCtx = TParameterPositionNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone() and
         ap = getApNil(node) and
         apa = getApprox(ap)
@@ -1390,7 +1390,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, state0, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStateStep(mid, state0, node, state, config) and
         cc = ccNone() and
-        summaryCtx = TParameterPositionNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone() and
         ap = getApNil(node) and
         apa = getApprox(ap)
@@ -1414,10 +1414,10 @@ private module MkStage<StageSig PrevStage> {
       fwdFlowIn(_, node, state, _, cc, _, _, ap, apa, config) and
       if PrevStage::parameterMayFlowThrough(node, apa, config)
       then (
-        summaryCtx = TParameterPositionSome(node.(ParamNodeEx).getPosition()) and
+        summaryCtx = TParamNodeSome(node.asNode()) and
         argAp = apSome(ap)
       ) else (
-        summaryCtx = TParameterPositionNone() and argAp = apNone()
+        summaryCtx = TParamNodeNone() and argAp = apNone()
       )
       or
       // flow out of a callable
@@ -1433,16 +1433,19 @@ private module MkStage<StageSig PrevStage> {
       )
       or
       // flow through a callable
-      exists(DataFlowCall call, ParameterPosition summaryCtx0, Ap argAp0 |
-        fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, apa, config) and
-        fwdFlowIsEntered(call, cc, summaryCtx, argAp, summaryCtx0, argAp0, config)
+      exists(
+        DataFlowCall call, CcCall ccc, RetNodeEx ret, boolean allowsFieldFlow, ApApprox innerArgApa
+      |
+        fwdFlowThrough(call, cc, state, ccc, summaryCtx, argAp, ap, apa, ret, innerArgApa, config) and
+        flowThroughOutOfCall(call, ccc, ret, node, allowsFieldFlow, innerArgApa, apa, config) and
+        if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
     pragma[nomagic]
     private predicate fwdFlowStore(
       NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc,
-      ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
+      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
     ) {
       exists(DataFlowType contentType, ApApprox apa1 |
         fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, apa1, config) and
@@ -1473,8 +1476,8 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowRead0(
-      NodeEx node1, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      ApNonNil ap, Configuration config
+      NodeEx node1, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, ApNonNil ap,
+      Configuration config
     ) {
       fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, _, _, config)
@@ -1483,7 +1486,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowRead(
       Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc,
-      ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
+      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
     ) {
       fwdFlowRead0(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, c, node2, config) and
@@ -1493,7 +1496,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowIn(
       DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, CcCall innercc,
-      ParameterPositionOption summaryCtx, ApOption argAp, Ap ap, ApApprox apa, Configuration config
+      ParamNodeOption summaryCtx, ApOption argAp, Ap ap, ApApprox apa, Configuration config
     ) {
       exists(ArgNodeEx arg, boolean allowsFieldFlow |
         fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, apa, config) and
@@ -1505,64 +1508,38 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowRetFromArg(
-      RetNodeEx ret, FlowState state, CcCall ccc, ParameterPosition summaryCtx, ParamNodeEx p,
-      Ap argAp, ApApprox argApa, Ap ap, ApApprox apa, Configuration config
+      RetNodeEx ret, FlowState state, CcCall ccc, ParamNodeEx summaryCtx, Ap argAp, ApApprox argApa,
+      Ap ap, ApApprox apa, Configuration config
     ) {
-      exists(DataFlowCallable c, ReturnKindExt kind |
+      exists(ReturnKindExt kind |
         fwdFlow(pragma[only_bind_into](ret), state, ccc,
-          TParameterPositionSome(pragma[only_bind_into](summaryCtx)), apSome(argAp), ap, apa, config) and
-        getApprox(argAp) = argApa and
-        c = ret.getEnclosingCallable() and
+          TParamNodeSome(pragma[only_bind_into](summaryCtx.asNode())),
+          pragma[only_bind_into](apSome(argAp)), ap, pragma[only_bind_into](apa),
+          pragma[only_bind_into](config)) and
         kind = ret.getKind() and
-        p.isParameterOf(c, pragma[only_bind_into](summaryCtx)) and
-        parameterFlowThroughAllowed(p, kind)
+        parameterFlowThroughAllowed(summaryCtx, kind) and
+        argApa = getApprox(argAp) and
+        PrevStage::returnMayFlowThrough(ret, argApa, apa, kind, pragma[only_bind_into](config))
       )
     }
 
     pragma[inline]
-    private predicate fwdFlowInMayFlowThrough(
-      DataFlowCall call, Cc cc, CcCall innerCc, ParameterPositionOption summaryCtx, ApOption argAp,
-      ParamNodeEx param, Ap ap, ApApprox apa, Configuration config
+    private predicate fwdFlowThrough0(
+      DataFlowCall call, Cc cc, FlowState state, CcCall ccc, ParamNodeOption summaryCtx,
+      ApOption argAp, Ap ap, ApApprox apa, RetNodeEx ret, ParamNodeEx innerSummaryCtx,
+      Ap innerArgAp, ApApprox innerArgApa, Configuration config
     ) {
-      fwdFlowIn(call, pragma[only_bind_into](param), _, cc, innerCc, summaryCtx, argAp, ap,
-        pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
-      PrevStage::parameterMayFlowThrough(param, apa, config)
-    }
-
-    // dedup before joining with `flowThroughOutOfCall`
-    pragma[nomagic]
-    private predicate fwdFlowInMayFlowThroughProj(
-      DataFlowCall call, CcCall innerCc, ApApprox apa, Configuration config
-    ) {
-      fwdFlowInMayFlowThrough(call, _, innerCc, _, _, _, _, apa, config)
-    }
-
-    /**
-     * Same as `flowThroughOutOfCall`, but restricted to calls that are reached
-     * in the flow covered by `fwdFlow`, where data might flow through the target
-     * callable and back out at `call`.
-     */
-    pragma[nomagic]
-    private predicate fwdFlowThroughOutOfCall(
-      DataFlowCall call, CcCall ccc, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow,
-      ApApprox argApa, ApApprox apa, Configuration config
-    ) {
-      fwdFlowInMayFlowThroughProj(call, ccc, argApa, config) and
-      flowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, argApa, apa, config)
+      fwdFlowRetFromArg(ret, state, ccc, innerSummaryCtx, innerArgAp, innerArgApa, ap, apa, config) and
+      fwdFlowIsEntered(call, cc, ccc, summaryCtx, argAp, innerSummaryCtx, innerArgAp, config)
     }
 
     pragma[nomagic]
-    private predicate fwdFlowOutFromArg(
-      DataFlowCall call, NodeEx out, FlowState state, ParameterPosition summaryCtx, Ap argAp, Ap ap,
-      ApApprox apa, Configuration config
+    private predicate fwdFlowThrough(
+      DataFlowCall call, Cc cc, FlowState state, CcCall ccc, ParamNodeOption summaryCtx,
+      ApOption argAp, Ap ap, ApApprox apa, RetNodeEx ret, ApApprox innerArgApa, Configuration config
     ) {
-      exists(RetNodeEx ret, boolean allowsFieldFlow, CcCall ccc, ApApprox argApa |
-        fwdFlowRetFromArg(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc),
-          summaryCtx, _, argAp, pragma[only_bind_into](argApa), ap, pragma[only_bind_into](apa),
-          config) and
-        fwdFlowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, argApa, apa, config) and
-        (if allowsFieldFlow = false then ap instanceof ApNil else any())
-      )
+      fwdFlowThrough0(call, cc, state, ccc, summaryCtx, argAp, ap, apa, ret, _, _, innerArgApa,
+        config)
     }
 
     /**
@@ -1571,12 +1548,14 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate fwdFlowIsEntered(
-      DataFlowCall call, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      ParameterPosition pos, Ap ap, Configuration config
+      DataFlowCall call, Cc cc, CcCall innerCc, ParamNodeOption summaryCtx, ApOption argAp,
+      ParamNodeEx p, Ap ap, Configuration config
     ) {
-      exists(ParamNodeEx param |
-        fwdFlowInMayFlowThrough(call, cc, _, summaryCtx, argAp, param, ap, _, config) and
-        pos = param.getPosition()
+      exists(ApApprox apa |
+        fwdFlowIn(call, pragma[only_bind_into](p), _, cc, innerCc, summaryCtx, argAp, ap,
+          pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
+        PrevStage::parameterMayFlowThrough(p, apa, config) and
+        PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config))
       )
     }
 
@@ -1596,23 +1575,31 @@ private module MkStage<StageSig PrevStage> {
       fwdFlowConsCand(ap1, c, ap2, config)
     }
 
+    pragma[nomagic]
+    private predicate returnFlowsThrough0(
+      DataFlowCall call, FlowState state, CcCall ccc, Ap ap, ApApprox apa, RetNodeEx ret,
+      ParamNodeEx innerSummaryCtx, Ap innerArgAp, ApApprox innerArgApa, Configuration config
+    ) {
+      fwdFlowThrough0(call, _, state, ccc, _, _, ap, apa, ret, innerSummaryCtx, innerArgAp,
+        innerArgApa, config)
+    }
+
     pragma[nomagic]
     private predicate returnFlowsThrough(
-      RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, ParamNodeEx p, Ap argAp,
+      RetNodeEx ret, ReturnPosition pos, FlowState state, CcCall ccc, ParamNodeEx p, Ap argAp,
       Ap ap, Configuration config
     ) {
-      exists(boolean allowsFieldFlow, ApApprox argApa, ApApprox apa |
-        fwdFlowRetFromArg(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc), _, p,
-          argAp, pragma[only_bind_into](argApa), ap, pragma[only_bind_into](apa), config) and
-        kind = ret.getKind() and
-        fwdFlowThroughOutOfCall(_, ccc, ret, _, allowsFieldFlow, argApa, apa, config) and
-        (if allowsFieldFlow = false then ap instanceof ApNil else any())
+      exists(DataFlowCall call, ApApprox apa, boolean allowsFieldFlow, ApApprox innerArgApa |
+        returnFlowsThrough0(call, state, ccc, ap, apa, ret, p, argAp, innerArgApa, config) and
+        flowThroughOutOfCall(call, ccc, ret, _, allowsFieldFlow, innerArgApa, apa, config) and
+        pos = ret.getReturnPosition() and
+        if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
     pragma[nomagic]
     private predicate flowThroughIntoCall(
-      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp,
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp, Ap ap,
       Configuration config
     ) {
       exists(ApApprox argApa |
@@ -1620,7 +1607,7 @@ private module MkStage<StageSig PrevStage> {
           allowsFieldFlow, argApa, pragma[only_bind_into](config)) and
         fwdFlow(arg, _, _, _, _, pragma[only_bind_into](argAp), argApa,
           pragma[only_bind_into](config)) and
-        returnFlowsThrough(_, _, _, _, p, pragma[only_bind_into](argAp), _,
+        returnFlowsThrough(_, _, _, _, p, pragma[only_bind_into](argAp), ap,
           pragma[only_bind_into](config)) and
         if allowsFieldFlow = false then argAp instanceof ApNil else any()
       )
@@ -1639,12 +1626,13 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate flowOutOfCallAp(
-      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
+      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
       Ap ap, Configuration config
     ) {
       exists(ApApprox apa |
-        flowOutOfCallApa(call, ret, kind, out, allowsFieldFlow, apa, config) and
-        fwdFlow(ret, _, _, _, _, ap, apa, config)
+        flowOutOfCallApa(call, ret, _, out, allowsFieldFlow, apa, config) and
+        fwdFlow(ret, _, _, _, _, ap, apa, config) and
+        pos = ret.getReturnPosition()
       )
     }
 
@@ -1739,17 +1727,17 @@ private module MkStage<StageSig PrevStage> {
       )
       or
       // flow through a callable
-      exists(DataFlowCall call, ReturnKindExt returnKind0, Ap returnAp0 |
-        revFlowInToReturn(call, node, state, returnKind0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
+      exists(DataFlowCall call, ParamNodeEx p, ReturnPosition pos, Ap innerReturnAp |
+        revFlowThrough(call, returnCtx, p, state, pos, returnAp, ap, innerReturnAp, config) and
+        flowThroughIntoCall(call, node, p, _, ap, innerReturnAp, config)
       )
       or
       // flow out of a callable
-      exists(ReturnKindExt kind |
-        revFlowOut(_, node, kind, state, _, _, ap, config) and
-        if returnFlowsThrough(node, kind, state, _, _, _, ap, config)
+      exists(ReturnPosition pos |
+        revFlowOut(_, node, pos, state, _, _, ap, config) and
+        if returnFlowsThrough(node, pos, state, _, _, _, ap, config)
         then (
-          returnCtx = TReturnCtxMaybeFlowThrough(kind) and
+          returnCtx = TReturnCtxMaybeFlowThrough(pos) and
           returnAp = apSome(ap)
         ) else (
           returnCtx = TReturnCtxNoFlowThrough() and returnAp = apNone()
@@ -1782,47 +1770,33 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate revFlowOut(
-      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, FlowState state, ReturnCtx returnCtx,
+      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, FlowState state, ReturnCtx returnCtx,
       ApOption returnAp, Ap ap, Configuration config
     ) {
       exists(NodeEx out, boolean allowsFieldFlow |
         revFlow(out, state, returnCtx, returnAp, ap, config) and
-        flowOutOfCallAp(call, ret, kind, out, allowsFieldFlow, ap, config) and
+        flowOutOfCallAp(call, ret, pos, out, allowsFieldFlow, ap, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
-    /**
-     * Same as `flowThroughIntoCall`, but restricted to calls that are reached
-     * in the flow covered by `revFlow`, where data might flow through the target
-     * callable and back out at `call`.
-     */
-    pragma[nomagic]
-    private predicate revFlowThroughIntoCall(
-      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp,
-      Configuration config
-    ) {
-      flowThroughIntoCall(call, arg, p, allowsFieldFlow, argAp, config) and
-      revFlowIsReturned(call, _, _, _, _, config)
-    }
-
     pragma[nomagic]
     private predicate revFlowParamToReturn(
-      ParamNodeEx p, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap, Configuration config
+      ParamNodeEx p, FlowState state, ReturnPosition pos, Ap returnAp, Ap ap, Configuration config
     ) {
-      revFlow(p, state, TReturnCtxMaybeFlowThrough(kind), apSome(returnAp), ap, config) and
-      parameterFlowThroughAllowed(p, kind)
+      revFlow(pragma[only_bind_into](p), state, TReturnCtxMaybeFlowThrough(pos), apSome(returnAp),
+        pragma[only_bind_into](ap), pragma[only_bind_into](config)) and
+      parameterFlowThroughAllowed(p, pos.getKind()) and
+      PrevStage::parameterMayFlowThrough(p, getApprox(ap), config)
     }
 
     pragma[nomagic]
-    private predicate revFlowInToReturn(
-      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap,
-      Configuration config
+    private predicate revFlowThrough(
+      DataFlowCall call, ReturnCtx returnCtx, ParamNodeEx p, FlowState state, ReturnPosition pos,
+      ApOption returnAp, Ap ap, Ap innerReturnAp, Configuration config
     ) {
-      exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlowParamToReturn(p, state, kind, returnAp, ap, config) and
-        revFlowThroughIntoCall(call, arg, p, allowsFieldFlow, ap, config)
-      )
+      revFlowParamToReturn(p, state, pos, innerReturnAp, ap, config) and
+      revFlowIsReturned(call, returnCtx, returnAp, pos, innerReturnAp, config)
     }
 
     /**
@@ -1832,12 +1806,12 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate revFlowIsReturned(
-      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnKindExt kind, Ap ap,
+      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnPosition pos, Ap ap,
       Configuration config
     ) {
       exists(RetNodeEx ret, FlowState state, CcCall ccc |
-        revFlowOut(call, ret, kind, state, returnCtx, returnAp, ap, config) and
-        returnFlowsThrough(ret, kind, state, ccc, _, _, ap, config) and
+        revFlowOut(call, ret, pos, state, returnCtx, returnAp, ap, config) and
+        returnFlowsThrough(ret, pos, state, ccc, _, _, ap, config) and
         matchesCall(ccc, call)
       )
     }
@@ -1915,17 +1889,17 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate parameterFlowsThroughRev(
-      ParamNodeEx p, Ap ap, ReturnKindExt kind, Ap returnAp, Configuration config
+      ParamNodeEx p, Ap ap, ReturnPosition pos, Ap returnAp, Configuration config
     ) {
-      revFlow(p, _, TReturnCtxMaybeFlowThrough(kind), apSome(returnAp), ap, config) and
-      parameterFlowThroughAllowed(p, kind)
+      revFlow(p, _, TReturnCtxMaybeFlowThrough(pos), apSome(returnAp), ap, config) and
+      parameterFlowThroughAllowed(p, pos.getKind())
     }
 
     pragma[nomagic]
     predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
-      exists(RetNodeEx ret, ReturnKindExt kind |
-        returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
-        parameterFlowsThroughRev(p, ap, kind, _, config)
+      exists(RetNodeEx ret, ReturnPosition pos |
+        returnFlowsThrough(ret, pos, _, _, p, ap, _, config) and
+        parameterFlowsThroughRev(p, ap, pos, _, config)
       )
     }
 
@@ -1933,20 +1907,21 @@ private module MkStage<StageSig PrevStage> {
     predicate returnMayFlowThrough(
       RetNodeEx ret, Ap argAp, Ap ap, ReturnKindExt kind, Configuration config
     ) {
-      exists(ParamNodeEx p |
-        returnFlowsThrough(ret, kind, _, _, p, argAp, ap, config) and
-        parameterFlowsThroughRev(p, argAp, kind, ap, config)
+      exists(ParamNodeEx p, ReturnPosition pos |
+        returnFlowsThrough(ret, pos, _, _, p, argAp, ap, config) and
+        parameterFlowsThroughRev(p, argAp, pos, ap, config) and
+        kind = pos.getKind()
       )
     }
 
     pragma[nomagic]
-    predicate revFlowInToReturnIsReturned(
+    private predicate revFlowThroughArg(
       DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnCtx returnCtx, ApOption returnAp,
       Ap ap, Configuration config
     ) {
-      exists(ReturnKindExt returnKind0, Ap returnAp0 |
-        revFlowInToReturn(call, arg, state, returnKind0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
+      exists(ParamNodeEx p, ReturnPosition pos, Ap innerReturnAp |
+        revFlowThrough(call, returnCtx, p, state, pos, returnAp, ap, innerReturnAp, config) and
+        flowThroughIntoCall(call, arg, p, _, ap, innerReturnAp, config)
       )
     }
 
@@ -1954,7 +1929,7 @@ private module MkStage<StageSig PrevStage> {
     predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
       exists(ArgNodeEx arg, FlowState state, ReturnCtx returnCtx, ApOption returnAp, Ap ap |
         revFlow(arg, state, returnCtx, returnAp, ap, config) and
-        revFlowInToReturnIsReturned(call, arg, state, returnCtx, returnAp, ap, config)
+        revFlowThroughArg(call, arg, state, returnCtx, returnAp, ap, config)
       )
     }
 
@@ -1967,8 +1942,9 @@ private module MkStage<StageSig PrevStage> {
       conscand = count(TypedContent f0, Ap ap | fwdConsCand(f0, ap, config)) and
       states = count(FlowState state | fwdFlow(_, state, _, _, _, _, config)) and
       tuples =
-        count(NodeEx n, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-          Ap ap | fwdFlow(n, state, cc, summaryCtx, argAp, ap, config))
+        count(NodeEx n, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap |
+          fwdFlow(n, state, cc, summaryCtx, argAp, ap, config)
+        )
       or
       fwd = false and
       nodes = count(NodeEx node | revFlow(node, _, _, _, _, config)) and
@@ -2823,13 +2799,12 @@ private Configuration unbindConf(Configuration conf) {
 
 pragma[nomagic]
 private predicate nodeMayUseSummary0(
-  NodeEx n, DataFlowCallable c, ParameterPosition pos, FlowState state, AccessPathApprox apa,
-  Configuration config
+  NodeEx n, ParamNodeEx p, FlowState state, AccessPathApprox apa, Configuration config
 ) {
   exists(AccessPathApprox apa0 |
-    c = n.getEnclosingCallable() and
+    Stage5::parameterMayFlowThrough(p, _, _) and
     Stage5::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
-    Stage5::fwdFlow(n, state, any(CallContextCall ccc), TParameterPositionSome(pos),
+    Stage5::fwdFlow(n, state, any(CallContextCall ccc), TParamNodeSome(p.asNode()),
       TAccessPathApproxSome(apa), apa0, config)
   )
 }
@@ -2838,10 +2813,9 @@ pragma[nomagic]
 private predicate nodeMayUseSummary(
   NodeEx n, FlowState state, AccessPathApprox apa, Configuration config
 ) {
-  exists(DataFlowCallable c, ParameterPosition pos, ParamNodeEx p |
+  exists(ParamNodeEx p |
     Stage5::parameterMayFlowThrough(p, apa, config) and
-    nodeMayUseSummary0(n, c, pos, state, apa, config) and
-    p.isParameterOf(c, pos)
+    nodeMayUseSummary0(n, p, state, apa, config)
   )
 }
 
diff --git a/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl6.qll b/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl6.qll
index 6741ccc2f06..23d11a38842 100644
--- a/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl6.qll
+++ b/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl6.qll
@@ -1327,8 +1327,8 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     additional predicate fwdFlow(
-      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      Ap ap, ApApprox apa, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      ApApprox apa, Configuration config
     ) {
       fwdFlow0(node, state, cc, summaryCtx, argAp, ap, apa, config) and
       PrevStage::revFlow(node, state, apa, config) and
@@ -1337,21 +1337,21 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[inline]
     additional predicate fwdFlow(
-      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      Ap ap, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      Configuration config
     ) {
       fwdFlow(node, state, cc, summaryCtx, argAp, ap, _, config)
     }
 
     pragma[nomagic]
     private predicate fwdFlow0(
-      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      Ap ap, ApApprox apa, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      ApApprox apa, Configuration config
     ) {
       sourceNode(node, state, config) and
       (if hasSourceCallCtx(config) then cc = ccSomeCall() else cc = ccNone()) and
       argAp = apNone() and
-      summaryCtx = TParameterPositionNone() and
+      summaryCtx = TParamNodeNone() and
       ap = getApNil(node) and
       apa = getApprox(ap)
       or
@@ -1372,7 +1372,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, apa, pragma[only_bind_into](config)) and
         jumpStep(mid, node, config) and
         cc = ccNone() and
-        summaryCtx = TParameterPositionNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone()
       )
       or
@@ -1380,7 +1380,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, state, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStep(mid, node, config) and
         cc = ccNone() and
-        summaryCtx = TParameterPositionNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone() and
         ap = getApNil(node) and
         apa = getApprox(ap)
@@ -1390,7 +1390,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, state0, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStateStep(mid, state0, node, state, config) and
         cc = ccNone() and
-        summaryCtx = TParameterPositionNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone() and
         ap = getApNil(node) and
         apa = getApprox(ap)
@@ -1414,10 +1414,10 @@ private module MkStage<StageSig PrevStage> {
       fwdFlowIn(_, node, state, _, cc, _, _, ap, apa, config) and
       if PrevStage::parameterMayFlowThrough(node, apa, config)
       then (
-        summaryCtx = TParameterPositionSome(node.(ParamNodeEx).getPosition()) and
+        summaryCtx = TParamNodeSome(node.asNode()) and
         argAp = apSome(ap)
       ) else (
-        summaryCtx = TParameterPositionNone() and argAp = apNone()
+        summaryCtx = TParamNodeNone() and argAp = apNone()
       )
       or
       // flow out of a callable
@@ -1433,16 +1433,19 @@ private module MkStage<StageSig PrevStage> {
       )
       or
       // flow through a callable
-      exists(DataFlowCall call, ParameterPosition summaryCtx0, Ap argAp0 |
-        fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, apa, config) and
-        fwdFlowIsEntered(call, cc, summaryCtx, argAp, summaryCtx0, argAp0, config)
+      exists(
+        DataFlowCall call, CcCall ccc, RetNodeEx ret, boolean allowsFieldFlow, ApApprox innerArgApa
+      |
+        fwdFlowThrough(call, cc, state, ccc, summaryCtx, argAp, ap, apa, ret, innerArgApa, config) and
+        flowThroughOutOfCall(call, ccc, ret, node, allowsFieldFlow, innerArgApa, apa, config) and
+        if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
     pragma[nomagic]
     private predicate fwdFlowStore(
       NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc,
-      ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
+      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
     ) {
       exists(DataFlowType contentType, ApApprox apa1 |
         fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, apa1, config) and
@@ -1473,8 +1476,8 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowRead0(
-      NodeEx node1, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      ApNonNil ap, Configuration config
+      NodeEx node1, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, ApNonNil ap,
+      Configuration config
     ) {
       fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, _, _, config)
@@ -1483,7 +1486,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowRead(
       Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc,
-      ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
+      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
     ) {
       fwdFlowRead0(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, c, node2, config) and
@@ -1493,7 +1496,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowIn(
       DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, CcCall innercc,
-      ParameterPositionOption summaryCtx, ApOption argAp, Ap ap, ApApprox apa, Configuration config
+      ParamNodeOption summaryCtx, ApOption argAp, Ap ap, ApApprox apa, Configuration config
     ) {
       exists(ArgNodeEx arg, boolean allowsFieldFlow |
         fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, apa, config) and
@@ -1505,64 +1508,38 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowRetFromArg(
-      RetNodeEx ret, FlowState state, CcCall ccc, ParameterPosition summaryCtx, ParamNodeEx p,
-      Ap argAp, ApApprox argApa, Ap ap, ApApprox apa, Configuration config
+      RetNodeEx ret, FlowState state, CcCall ccc, ParamNodeEx summaryCtx, Ap argAp, ApApprox argApa,
+      Ap ap, ApApprox apa, Configuration config
     ) {
-      exists(DataFlowCallable c, ReturnKindExt kind |
+      exists(ReturnKindExt kind |
         fwdFlow(pragma[only_bind_into](ret), state, ccc,
-          TParameterPositionSome(pragma[only_bind_into](summaryCtx)), apSome(argAp), ap, apa, config) and
-        getApprox(argAp) = argApa and
-        c = ret.getEnclosingCallable() and
+          TParamNodeSome(pragma[only_bind_into](summaryCtx.asNode())),
+          pragma[only_bind_into](apSome(argAp)), ap, pragma[only_bind_into](apa),
+          pragma[only_bind_into](config)) and
         kind = ret.getKind() and
-        p.isParameterOf(c, pragma[only_bind_into](summaryCtx)) and
-        parameterFlowThroughAllowed(p, kind)
+        parameterFlowThroughAllowed(summaryCtx, kind) and
+        argApa = getApprox(argAp) and
+        PrevStage::returnMayFlowThrough(ret, argApa, apa, kind, pragma[only_bind_into](config))
       )
     }
 
     pragma[inline]
-    private predicate fwdFlowInMayFlowThrough(
-      DataFlowCall call, Cc cc, CcCall innerCc, ParameterPositionOption summaryCtx, ApOption argAp,
-      ParamNodeEx param, Ap ap, ApApprox apa, Configuration config
+    private predicate fwdFlowThrough0(
+      DataFlowCall call, Cc cc, FlowState state, CcCall ccc, ParamNodeOption summaryCtx,
+      ApOption argAp, Ap ap, ApApprox apa, RetNodeEx ret, ParamNodeEx innerSummaryCtx,
+      Ap innerArgAp, ApApprox innerArgApa, Configuration config
     ) {
-      fwdFlowIn(call, pragma[only_bind_into](param), _, cc, innerCc, summaryCtx, argAp, ap,
-        pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
-      PrevStage::parameterMayFlowThrough(param, apa, config)
-    }
-
-    // dedup before joining with `flowThroughOutOfCall`
-    pragma[nomagic]
-    private predicate fwdFlowInMayFlowThroughProj(
-      DataFlowCall call, CcCall innerCc, ApApprox apa, Configuration config
-    ) {
-      fwdFlowInMayFlowThrough(call, _, innerCc, _, _, _, _, apa, config)
-    }
-
-    /**
-     * Same as `flowThroughOutOfCall`, but restricted to calls that are reached
-     * in the flow covered by `fwdFlow`, where data might flow through the target
-     * callable and back out at `call`.
-     */
-    pragma[nomagic]
-    private predicate fwdFlowThroughOutOfCall(
-      DataFlowCall call, CcCall ccc, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow,
-      ApApprox argApa, ApApprox apa, Configuration config
-    ) {
-      fwdFlowInMayFlowThroughProj(call, ccc, argApa, config) and
-      flowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, argApa, apa, config)
+      fwdFlowRetFromArg(ret, state, ccc, innerSummaryCtx, innerArgAp, innerArgApa, ap, apa, config) and
+      fwdFlowIsEntered(call, cc, ccc, summaryCtx, argAp, innerSummaryCtx, innerArgAp, config)
     }
 
     pragma[nomagic]
-    private predicate fwdFlowOutFromArg(
-      DataFlowCall call, NodeEx out, FlowState state, ParameterPosition summaryCtx, Ap argAp, Ap ap,
-      ApApprox apa, Configuration config
+    private predicate fwdFlowThrough(
+      DataFlowCall call, Cc cc, FlowState state, CcCall ccc, ParamNodeOption summaryCtx,
+      ApOption argAp, Ap ap, ApApprox apa, RetNodeEx ret, ApApprox innerArgApa, Configuration config
     ) {
-      exists(RetNodeEx ret, boolean allowsFieldFlow, CcCall ccc, ApApprox argApa |
-        fwdFlowRetFromArg(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc),
-          summaryCtx, _, argAp, pragma[only_bind_into](argApa), ap, pragma[only_bind_into](apa),
-          config) and
-        fwdFlowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, argApa, apa, config) and
-        (if allowsFieldFlow = false then ap instanceof ApNil else any())
-      )
+      fwdFlowThrough0(call, cc, state, ccc, summaryCtx, argAp, ap, apa, ret, _, _, innerArgApa,
+        config)
     }
 
     /**
@@ -1571,12 +1548,14 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate fwdFlowIsEntered(
-      DataFlowCall call, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      ParameterPosition pos, Ap ap, Configuration config
+      DataFlowCall call, Cc cc, CcCall innerCc, ParamNodeOption summaryCtx, ApOption argAp,
+      ParamNodeEx p, Ap ap, Configuration config
     ) {
-      exists(ParamNodeEx param |
-        fwdFlowInMayFlowThrough(call, cc, _, summaryCtx, argAp, param, ap, _, config) and
-        pos = param.getPosition()
+      exists(ApApprox apa |
+        fwdFlowIn(call, pragma[only_bind_into](p), _, cc, innerCc, summaryCtx, argAp, ap,
+          pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
+        PrevStage::parameterMayFlowThrough(p, apa, config) and
+        PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config))
       )
     }
 
@@ -1596,23 +1575,31 @@ private module MkStage<StageSig PrevStage> {
       fwdFlowConsCand(ap1, c, ap2, config)
     }
 
+    pragma[nomagic]
+    private predicate returnFlowsThrough0(
+      DataFlowCall call, FlowState state, CcCall ccc, Ap ap, ApApprox apa, RetNodeEx ret,
+      ParamNodeEx innerSummaryCtx, Ap innerArgAp, ApApprox innerArgApa, Configuration config
+    ) {
+      fwdFlowThrough0(call, _, state, ccc, _, _, ap, apa, ret, innerSummaryCtx, innerArgAp,
+        innerArgApa, config)
+    }
+
     pragma[nomagic]
     private predicate returnFlowsThrough(
-      RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, ParamNodeEx p, Ap argAp,
+      RetNodeEx ret, ReturnPosition pos, FlowState state, CcCall ccc, ParamNodeEx p, Ap argAp,
       Ap ap, Configuration config
     ) {
-      exists(boolean allowsFieldFlow, ApApprox argApa, ApApprox apa |
-        fwdFlowRetFromArg(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc), _, p,
-          argAp, pragma[only_bind_into](argApa), ap, pragma[only_bind_into](apa), config) and
-        kind = ret.getKind() and
-        fwdFlowThroughOutOfCall(_, ccc, ret, _, allowsFieldFlow, argApa, apa, config) and
-        (if allowsFieldFlow = false then ap instanceof ApNil else any())
+      exists(DataFlowCall call, ApApprox apa, boolean allowsFieldFlow, ApApprox innerArgApa |
+        returnFlowsThrough0(call, state, ccc, ap, apa, ret, p, argAp, innerArgApa, config) and
+        flowThroughOutOfCall(call, ccc, ret, _, allowsFieldFlow, innerArgApa, apa, config) and
+        pos = ret.getReturnPosition() and
+        if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
     pragma[nomagic]
     private predicate flowThroughIntoCall(
-      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp,
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp, Ap ap,
       Configuration config
     ) {
       exists(ApApprox argApa |
@@ -1620,7 +1607,7 @@ private module MkStage<StageSig PrevStage> {
           allowsFieldFlow, argApa, pragma[only_bind_into](config)) and
         fwdFlow(arg, _, _, _, _, pragma[only_bind_into](argAp), argApa,
           pragma[only_bind_into](config)) and
-        returnFlowsThrough(_, _, _, _, p, pragma[only_bind_into](argAp), _,
+        returnFlowsThrough(_, _, _, _, p, pragma[only_bind_into](argAp), ap,
           pragma[only_bind_into](config)) and
         if allowsFieldFlow = false then argAp instanceof ApNil else any()
       )
@@ -1639,12 +1626,13 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate flowOutOfCallAp(
-      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
+      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
       Ap ap, Configuration config
     ) {
       exists(ApApprox apa |
-        flowOutOfCallApa(call, ret, kind, out, allowsFieldFlow, apa, config) and
-        fwdFlow(ret, _, _, _, _, ap, apa, config)
+        flowOutOfCallApa(call, ret, _, out, allowsFieldFlow, apa, config) and
+        fwdFlow(ret, _, _, _, _, ap, apa, config) and
+        pos = ret.getReturnPosition()
       )
     }
 
@@ -1739,17 +1727,17 @@ private module MkStage<StageSig PrevStage> {
       )
       or
       // flow through a callable
-      exists(DataFlowCall call, ReturnKindExt returnKind0, Ap returnAp0 |
-        revFlowInToReturn(call, node, state, returnKind0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
+      exists(DataFlowCall call, ParamNodeEx p, ReturnPosition pos, Ap innerReturnAp |
+        revFlowThrough(call, returnCtx, p, state, pos, returnAp, ap, innerReturnAp, config) and
+        flowThroughIntoCall(call, node, p, _, ap, innerReturnAp, config)
       )
       or
       // flow out of a callable
-      exists(ReturnKindExt kind |
-        revFlowOut(_, node, kind, state, _, _, ap, config) and
-        if returnFlowsThrough(node, kind, state, _, _, _, ap, config)
+      exists(ReturnPosition pos |
+        revFlowOut(_, node, pos, state, _, _, ap, config) and
+        if returnFlowsThrough(node, pos, state, _, _, _, ap, config)
         then (
-          returnCtx = TReturnCtxMaybeFlowThrough(kind) and
+          returnCtx = TReturnCtxMaybeFlowThrough(pos) and
           returnAp = apSome(ap)
         ) else (
           returnCtx = TReturnCtxNoFlowThrough() and returnAp = apNone()
@@ -1782,47 +1770,33 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate revFlowOut(
-      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, FlowState state, ReturnCtx returnCtx,
+      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, FlowState state, ReturnCtx returnCtx,
       ApOption returnAp, Ap ap, Configuration config
     ) {
       exists(NodeEx out, boolean allowsFieldFlow |
         revFlow(out, state, returnCtx, returnAp, ap, config) and
-        flowOutOfCallAp(call, ret, kind, out, allowsFieldFlow, ap, config) and
+        flowOutOfCallAp(call, ret, pos, out, allowsFieldFlow, ap, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
-    /**
-     * Same as `flowThroughIntoCall`, but restricted to calls that are reached
-     * in the flow covered by `revFlow`, where data might flow through the target
-     * callable and back out at `call`.
-     */
-    pragma[nomagic]
-    private predicate revFlowThroughIntoCall(
-      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp,
-      Configuration config
-    ) {
-      flowThroughIntoCall(call, arg, p, allowsFieldFlow, argAp, config) and
-      revFlowIsReturned(call, _, _, _, _, config)
-    }
-
     pragma[nomagic]
     private predicate revFlowParamToReturn(
-      ParamNodeEx p, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap, Configuration config
+      ParamNodeEx p, FlowState state, ReturnPosition pos, Ap returnAp, Ap ap, Configuration config
     ) {
-      revFlow(p, state, TReturnCtxMaybeFlowThrough(kind), apSome(returnAp), ap, config) and
-      parameterFlowThroughAllowed(p, kind)
+      revFlow(pragma[only_bind_into](p), state, TReturnCtxMaybeFlowThrough(pos), apSome(returnAp),
+        pragma[only_bind_into](ap), pragma[only_bind_into](config)) and
+      parameterFlowThroughAllowed(p, pos.getKind()) and
+      PrevStage::parameterMayFlowThrough(p, getApprox(ap), config)
     }
 
     pragma[nomagic]
-    private predicate revFlowInToReturn(
-      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap,
-      Configuration config
+    private predicate revFlowThrough(
+      DataFlowCall call, ReturnCtx returnCtx, ParamNodeEx p, FlowState state, ReturnPosition pos,
+      ApOption returnAp, Ap ap, Ap innerReturnAp, Configuration config
     ) {
-      exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlowParamToReturn(p, state, kind, returnAp, ap, config) and
-        revFlowThroughIntoCall(call, arg, p, allowsFieldFlow, ap, config)
-      )
+      revFlowParamToReturn(p, state, pos, innerReturnAp, ap, config) and
+      revFlowIsReturned(call, returnCtx, returnAp, pos, innerReturnAp, config)
     }
 
     /**
@@ -1832,12 +1806,12 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate revFlowIsReturned(
-      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnKindExt kind, Ap ap,
+      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnPosition pos, Ap ap,
       Configuration config
     ) {
       exists(RetNodeEx ret, FlowState state, CcCall ccc |
-        revFlowOut(call, ret, kind, state, returnCtx, returnAp, ap, config) and
-        returnFlowsThrough(ret, kind, state, ccc, _, _, ap, config) and
+        revFlowOut(call, ret, pos, state, returnCtx, returnAp, ap, config) and
+        returnFlowsThrough(ret, pos, state, ccc, _, _, ap, config) and
         matchesCall(ccc, call)
       )
     }
@@ -1915,17 +1889,17 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate parameterFlowsThroughRev(
-      ParamNodeEx p, Ap ap, ReturnKindExt kind, Ap returnAp, Configuration config
+      ParamNodeEx p, Ap ap, ReturnPosition pos, Ap returnAp, Configuration config
     ) {
-      revFlow(p, _, TReturnCtxMaybeFlowThrough(kind), apSome(returnAp), ap, config) and
-      parameterFlowThroughAllowed(p, kind)
+      revFlow(p, _, TReturnCtxMaybeFlowThrough(pos), apSome(returnAp), ap, config) and
+      parameterFlowThroughAllowed(p, pos.getKind())
     }
 
     pragma[nomagic]
     predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
-      exists(RetNodeEx ret, ReturnKindExt kind |
-        returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
-        parameterFlowsThroughRev(p, ap, kind, _, config)
+      exists(RetNodeEx ret, ReturnPosition pos |
+        returnFlowsThrough(ret, pos, _, _, p, ap, _, config) and
+        parameterFlowsThroughRev(p, ap, pos, _, config)
       )
     }
 
@@ -1933,20 +1907,21 @@ private module MkStage<StageSig PrevStage> {
     predicate returnMayFlowThrough(
       RetNodeEx ret, Ap argAp, Ap ap, ReturnKindExt kind, Configuration config
     ) {
-      exists(ParamNodeEx p |
-        returnFlowsThrough(ret, kind, _, _, p, argAp, ap, config) and
-        parameterFlowsThroughRev(p, argAp, kind, ap, config)
+      exists(ParamNodeEx p, ReturnPosition pos |
+        returnFlowsThrough(ret, pos, _, _, p, argAp, ap, config) and
+        parameterFlowsThroughRev(p, argAp, pos, ap, config) and
+        kind = pos.getKind()
       )
     }
 
     pragma[nomagic]
-    predicate revFlowInToReturnIsReturned(
+    private predicate revFlowThroughArg(
       DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnCtx returnCtx, ApOption returnAp,
       Ap ap, Configuration config
     ) {
-      exists(ReturnKindExt returnKind0, Ap returnAp0 |
-        revFlowInToReturn(call, arg, state, returnKind0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
+      exists(ParamNodeEx p, ReturnPosition pos, Ap innerReturnAp |
+        revFlowThrough(call, returnCtx, p, state, pos, returnAp, ap, innerReturnAp, config) and
+        flowThroughIntoCall(call, arg, p, _, ap, innerReturnAp, config)
       )
     }
 
@@ -1954,7 +1929,7 @@ private module MkStage<StageSig PrevStage> {
     predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
       exists(ArgNodeEx arg, FlowState state, ReturnCtx returnCtx, ApOption returnAp, Ap ap |
         revFlow(arg, state, returnCtx, returnAp, ap, config) and
-        revFlowInToReturnIsReturned(call, arg, state, returnCtx, returnAp, ap, config)
+        revFlowThroughArg(call, arg, state, returnCtx, returnAp, ap, config)
       )
     }
 
@@ -1967,8 +1942,9 @@ private module MkStage<StageSig PrevStage> {
       conscand = count(TypedContent f0, Ap ap | fwdConsCand(f0, ap, config)) and
       states = count(FlowState state | fwdFlow(_, state, _, _, _, _, config)) and
       tuples =
-        count(NodeEx n, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-          Ap ap | fwdFlow(n, state, cc, summaryCtx, argAp, ap, config))
+        count(NodeEx n, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap |
+          fwdFlow(n, state, cc, summaryCtx, argAp, ap, config)
+        )
       or
       fwd = false and
       nodes = count(NodeEx node | revFlow(node, _, _, _, _, config)) and
@@ -2823,13 +2799,12 @@ private Configuration unbindConf(Configuration conf) {
 
 pragma[nomagic]
 private predicate nodeMayUseSummary0(
-  NodeEx n, DataFlowCallable c, ParameterPosition pos, FlowState state, AccessPathApprox apa,
-  Configuration config
+  NodeEx n, ParamNodeEx p, FlowState state, AccessPathApprox apa, Configuration config
 ) {
   exists(AccessPathApprox apa0 |
-    c = n.getEnclosingCallable() and
+    Stage5::parameterMayFlowThrough(p, _, _) and
     Stage5::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
-    Stage5::fwdFlow(n, state, any(CallContextCall ccc), TParameterPositionSome(pos),
+    Stage5::fwdFlow(n, state, any(CallContextCall ccc), TParamNodeSome(p.asNode()),
       TAccessPathApproxSome(apa), apa0, config)
   )
 }
@@ -2838,10 +2813,9 @@ pragma[nomagic]
 private predicate nodeMayUseSummary(
   NodeEx n, FlowState state, AccessPathApprox apa, Configuration config
 ) {
-  exists(DataFlowCallable c, ParameterPosition pos, ParamNodeEx p |
+  exists(ParamNodeEx p |
     Stage5::parameterMayFlowThrough(p, apa, config) and
-    nodeMayUseSummary0(n, c, pos, state, apa, config) and
-    p.isParameterOf(c, pos)
+    nodeMayUseSummary0(n, p, state, apa, config)
   )
 }
 
diff --git a/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImplCommon.qll b/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImplCommon.qll
index c66aefced8d..9aa6a529a5b 100644
--- a/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImplCommon.qll
+++ b/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImplCommon.qll
@@ -916,15 +916,15 @@ private module Cached {
     TDataFlowCallSome(DataFlowCall call)
 
   cached
-  newtype TParameterPositionOption =
-    TParameterPositionNone() or
-    TParameterPositionSome(ParameterPosition pos)
+  newtype TParamNodeOption =
+    TParamNodeNone() or
+    TParamNodeSome(ParamNode p)
 
   cached
   newtype TReturnCtx =
     TReturnCtxNone() or
     TReturnCtxNoFlowThrough() or
-    TReturnCtxMaybeFlowThrough(ReturnKindExt kind)
+    TReturnCtxMaybeFlowThrough(ReturnPosition pos)
 
   cached
   newtype TTypedContentApprox =
@@ -1343,15 +1343,15 @@ class DataFlowCallOption extends TDataFlowCallOption {
   }
 }
 
-/** An optional `ParameterPosition`. */
-class ParameterPositionOption extends TParameterPositionOption {
+/** An optional `ParamNode`. */
+class ParamNodeOption extends TParamNodeOption {
   string toString() {
-    this = TParameterPositionNone() and
+    this = TParamNodeNone() and
     result = "(none)"
     or
-    exists(ParameterPosition pos |
-      this = TParameterPositionSome(pos) and
-      result = pos.toString()
+    exists(ParamNode p |
+      this = TParamNodeSome(p) and
+      result = p.toString()
     )
   }
 }
@@ -1363,7 +1363,7 @@ class ParameterPositionOption extends TParameterPositionOption {
  *
  * - `TReturnCtxNone()`: no return flow.
  * - `TReturnCtxNoFlowThrough()`: return flow, but flow through is not possible.
- * - `TReturnCtxMaybeFlowThrough(ReturnKindExt kind)`: return flow, of kind `kind`, and
+ * - `TReturnCtxMaybeFlowThrough(ReturnPosition pos)`: return flow, of kind `pos`, and
  *    flow through may be possible.
  */
 class ReturnCtx extends TReturnCtx {
@@ -1374,9 +1374,9 @@ class ReturnCtx extends TReturnCtx {
     this = TReturnCtxNoFlowThrough() and
     result = "(no flow through)"
     or
-    exists(ReturnKindExt kind |
-      this = TReturnCtxMaybeFlowThrough(kind) and
-      result = kind.toString()
+    exists(ReturnPosition pos |
+      this = TReturnCtxMaybeFlowThrough(pos) and
+      result = pos.toString()
     )
   }
 }
diff --git a/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImplForOnActivityResult.qll b/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImplForOnActivityResult.qll
index 6741ccc2f06..23d11a38842 100644
--- a/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImplForOnActivityResult.qll
+++ b/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImplForOnActivityResult.qll
@@ -1327,8 +1327,8 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     additional predicate fwdFlow(
-      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      Ap ap, ApApprox apa, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      ApApprox apa, Configuration config
     ) {
       fwdFlow0(node, state, cc, summaryCtx, argAp, ap, apa, config) and
       PrevStage::revFlow(node, state, apa, config) and
@@ -1337,21 +1337,21 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[inline]
     additional predicate fwdFlow(
-      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      Ap ap, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      Configuration config
     ) {
       fwdFlow(node, state, cc, summaryCtx, argAp, ap, _, config)
     }
 
     pragma[nomagic]
     private predicate fwdFlow0(
-      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      Ap ap, ApApprox apa, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      ApApprox apa, Configuration config
     ) {
       sourceNode(node, state, config) and
       (if hasSourceCallCtx(config) then cc = ccSomeCall() else cc = ccNone()) and
       argAp = apNone() and
-      summaryCtx = TParameterPositionNone() and
+      summaryCtx = TParamNodeNone() and
       ap = getApNil(node) and
       apa = getApprox(ap)
       or
@@ -1372,7 +1372,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, apa, pragma[only_bind_into](config)) and
         jumpStep(mid, node, config) and
         cc = ccNone() and
-        summaryCtx = TParameterPositionNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone()
       )
       or
@@ -1380,7 +1380,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, state, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStep(mid, node, config) and
         cc = ccNone() and
-        summaryCtx = TParameterPositionNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone() and
         ap = getApNil(node) and
         apa = getApprox(ap)
@@ -1390,7 +1390,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, state0, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStateStep(mid, state0, node, state, config) and
         cc = ccNone() and
-        summaryCtx = TParameterPositionNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone() and
         ap = getApNil(node) and
         apa = getApprox(ap)
@@ -1414,10 +1414,10 @@ private module MkStage<StageSig PrevStage> {
       fwdFlowIn(_, node, state, _, cc, _, _, ap, apa, config) and
       if PrevStage::parameterMayFlowThrough(node, apa, config)
       then (
-        summaryCtx = TParameterPositionSome(node.(ParamNodeEx).getPosition()) and
+        summaryCtx = TParamNodeSome(node.asNode()) and
         argAp = apSome(ap)
       ) else (
-        summaryCtx = TParameterPositionNone() and argAp = apNone()
+        summaryCtx = TParamNodeNone() and argAp = apNone()
       )
       or
       // flow out of a callable
@@ -1433,16 +1433,19 @@ private module MkStage<StageSig PrevStage> {
       )
       or
       // flow through a callable
-      exists(DataFlowCall call, ParameterPosition summaryCtx0, Ap argAp0 |
-        fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, apa, config) and
-        fwdFlowIsEntered(call, cc, summaryCtx, argAp, summaryCtx0, argAp0, config)
+      exists(
+        DataFlowCall call, CcCall ccc, RetNodeEx ret, boolean allowsFieldFlow, ApApprox innerArgApa
+      |
+        fwdFlowThrough(call, cc, state, ccc, summaryCtx, argAp, ap, apa, ret, innerArgApa, config) and
+        flowThroughOutOfCall(call, ccc, ret, node, allowsFieldFlow, innerArgApa, apa, config) and
+        if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
     pragma[nomagic]
     private predicate fwdFlowStore(
       NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc,
-      ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
+      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
     ) {
       exists(DataFlowType contentType, ApApprox apa1 |
         fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, apa1, config) and
@@ -1473,8 +1476,8 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowRead0(
-      NodeEx node1, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      ApNonNil ap, Configuration config
+      NodeEx node1, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, ApNonNil ap,
+      Configuration config
     ) {
       fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, _, _, config)
@@ -1483,7 +1486,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowRead(
       Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc,
-      ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
+      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
     ) {
       fwdFlowRead0(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, c, node2, config) and
@@ -1493,7 +1496,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowIn(
       DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, CcCall innercc,
-      ParameterPositionOption summaryCtx, ApOption argAp, Ap ap, ApApprox apa, Configuration config
+      ParamNodeOption summaryCtx, ApOption argAp, Ap ap, ApApprox apa, Configuration config
     ) {
       exists(ArgNodeEx arg, boolean allowsFieldFlow |
         fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, apa, config) and
@@ -1505,64 +1508,38 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowRetFromArg(
-      RetNodeEx ret, FlowState state, CcCall ccc, ParameterPosition summaryCtx, ParamNodeEx p,
-      Ap argAp, ApApprox argApa, Ap ap, ApApprox apa, Configuration config
+      RetNodeEx ret, FlowState state, CcCall ccc, ParamNodeEx summaryCtx, Ap argAp, ApApprox argApa,
+      Ap ap, ApApprox apa, Configuration config
     ) {
-      exists(DataFlowCallable c, ReturnKindExt kind |
+      exists(ReturnKindExt kind |
         fwdFlow(pragma[only_bind_into](ret), state, ccc,
-          TParameterPositionSome(pragma[only_bind_into](summaryCtx)), apSome(argAp), ap, apa, config) and
-        getApprox(argAp) = argApa and
-        c = ret.getEnclosingCallable() and
+          TParamNodeSome(pragma[only_bind_into](summaryCtx.asNode())),
+          pragma[only_bind_into](apSome(argAp)), ap, pragma[only_bind_into](apa),
+          pragma[only_bind_into](config)) and
         kind = ret.getKind() and
-        p.isParameterOf(c, pragma[only_bind_into](summaryCtx)) and
-        parameterFlowThroughAllowed(p, kind)
+        parameterFlowThroughAllowed(summaryCtx, kind) and
+        argApa = getApprox(argAp) and
+        PrevStage::returnMayFlowThrough(ret, argApa, apa, kind, pragma[only_bind_into](config))
       )
     }
 
     pragma[inline]
-    private predicate fwdFlowInMayFlowThrough(
-      DataFlowCall call, Cc cc, CcCall innerCc, ParameterPositionOption summaryCtx, ApOption argAp,
-      ParamNodeEx param, Ap ap, ApApprox apa, Configuration config
+    private predicate fwdFlowThrough0(
+      DataFlowCall call, Cc cc, FlowState state, CcCall ccc, ParamNodeOption summaryCtx,
+      ApOption argAp, Ap ap, ApApprox apa, RetNodeEx ret, ParamNodeEx innerSummaryCtx,
+      Ap innerArgAp, ApApprox innerArgApa, Configuration config
     ) {
-      fwdFlowIn(call, pragma[only_bind_into](param), _, cc, innerCc, summaryCtx, argAp, ap,
-        pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
-      PrevStage::parameterMayFlowThrough(param, apa, config)
-    }
-
-    // dedup before joining with `flowThroughOutOfCall`
-    pragma[nomagic]
-    private predicate fwdFlowInMayFlowThroughProj(
-      DataFlowCall call, CcCall innerCc, ApApprox apa, Configuration config
-    ) {
-      fwdFlowInMayFlowThrough(call, _, innerCc, _, _, _, _, apa, config)
-    }
-
-    /**
-     * Same as `flowThroughOutOfCall`, but restricted to calls that are reached
-     * in the flow covered by `fwdFlow`, where data might flow through the target
-     * callable and back out at `call`.
-     */
-    pragma[nomagic]
-    private predicate fwdFlowThroughOutOfCall(
-      DataFlowCall call, CcCall ccc, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow,
-      ApApprox argApa, ApApprox apa, Configuration config
-    ) {
-      fwdFlowInMayFlowThroughProj(call, ccc, argApa, config) and
-      flowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, argApa, apa, config)
+      fwdFlowRetFromArg(ret, state, ccc, innerSummaryCtx, innerArgAp, innerArgApa, ap, apa, config) and
+      fwdFlowIsEntered(call, cc, ccc, summaryCtx, argAp, innerSummaryCtx, innerArgAp, config)
     }
 
     pragma[nomagic]
-    private predicate fwdFlowOutFromArg(
-      DataFlowCall call, NodeEx out, FlowState state, ParameterPosition summaryCtx, Ap argAp, Ap ap,
-      ApApprox apa, Configuration config
+    private predicate fwdFlowThrough(
+      DataFlowCall call, Cc cc, FlowState state, CcCall ccc, ParamNodeOption summaryCtx,
+      ApOption argAp, Ap ap, ApApprox apa, RetNodeEx ret, ApApprox innerArgApa, Configuration config
     ) {
-      exists(RetNodeEx ret, boolean allowsFieldFlow, CcCall ccc, ApApprox argApa |
-        fwdFlowRetFromArg(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc),
-          summaryCtx, _, argAp, pragma[only_bind_into](argApa), ap, pragma[only_bind_into](apa),
-          config) and
-        fwdFlowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, argApa, apa, config) and
-        (if allowsFieldFlow = false then ap instanceof ApNil else any())
-      )
+      fwdFlowThrough0(call, cc, state, ccc, summaryCtx, argAp, ap, apa, ret, _, _, innerArgApa,
+        config)
     }
 
     /**
@@ -1571,12 +1548,14 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate fwdFlowIsEntered(
-      DataFlowCall call, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      ParameterPosition pos, Ap ap, Configuration config
+      DataFlowCall call, Cc cc, CcCall innerCc, ParamNodeOption summaryCtx, ApOption argAp,
+      ParamNodeEx p, Ap ap, Configuration config
     ) {
-      exists(ParamNodeEx param |
-        fwdFlowInMayFlowThrough(call, cc, _, summaryCtx, argAp, param, ap, _, config) and
-        pos = param.getPosition()
+      exists(ApApprox apa |
+        fwdFlowIn(call, pragma[only_bind_into](p), _, cc, innerCc, summaryCtx, argAp, ap,
+          pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
+        PrevStage::parameterMayFlowThrough(p, apa, config) and
+        PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config))
       )
     }
 
@@ -1596,23 +1575,31 @@ private module MkStage<StageSig PrevStage> {
       fwdFlowConsCand(ap1, c, ap2, config)
     }
 
+    pragma[nomagic]
+    private predicate returnFlowsThrough0(
+      DataFlowCall call, FlowState state, CcCall ccc, Ap ap, ApApprox apa, RetNodeEx ret,
+      ParamNodeEx innerSummaryCtx, Ap innerArgAp, ApApprox innerArgApa, Configuration config
+    ) {
+      fwdFlowThrough0(call, _, state, ccc, _, _, ap, apa, ret, innerSummaryCtx, innerArgAp,
+        innerArgApa, config)
+    }
+
     pragma[nomagic]
     private predicate returnFlowsThrough(
-      RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, ParamNodeEx p, Ap argAp,
+      RetNodeEx ret, ReturnPosition pos, FlowState state, CcCall ccc, ParamNodeEx p, Ap argAp,
       Ap ap, Configuration config
     ) {
-      exists(boolean allowsFieldFlow, ApApprox argApa, ApApprox apa |
-        fwdFlowRetFromArg(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc), _, p,
-          argAp, pragma[only_bind_into](argApa), ap, pragma[only_bind_into](apa), config) and
-        kind = ret.getKind() and
-        fwdFlowThroughOutOfCall(_, ccc, ret, _, allowsFieldFlow, argApa, apa, config) and
-        (if allowsFieldFlow = false then ap instanceof ApNil else any())
+      exists(DataFlowCall call, ApApprox apa, boolean allowsFieldFlow, ApApprox innerArgApa |
+        returnFlowsThrough0(call, state, ccc, ap, apa, ret, p, argAp, innerArgApa, config) and
+        flowThroughOutOfCall(call, ccc, ret, _, allowsFieldFlow, innerArgApa, apa, config) and
+        pos = ret.getReturnPosition() and
+        if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
     pragma[nomagic]
     private predicate flowThroughIntoCall(
-      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp,
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp, Ap ap,
       Configuration config
     ) {
       exists(ApApprox argApa |
@@ -1620,7 +1607,7 @@ private module MkStage<StageSig PrevStage> {
           allowsFieldFlow, argApa, pragma[only_bind_into](config)) and
         fwdFlow(arg, _, _, _, _, pragma[only_bind_into](argAp), argApa,
           pragma[only_bind_into](config)) and
-        returnFlowsThrough(_, _, _, _, p, pragma[only_bind_into](argAp), _,
+        returnFlowsThrough(_, _, _, _, p, pragma[only_bind_into](argAp), ap,
           pragma[only_bind_into](config)) and
         if allowsFieldFlow = false then argAp instanceof ApNil else any()
       )
@@ -1639,12 +1626,13 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate flowOutOfCallAp(
-      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
+      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
       Ap ap, Configuration config
     ) {
       exists(ApApprox apa |
-        flowOutOfCallApa(call, ret, kind, out, allowsFieldFlow, apa, config) and
-        fwdFlow(ret, _, _, _, _, ap, apa, config)
+        flowOutOfCallApa(call, ret, _, out, allowsFieldFlow, apa, config) and
+        fwdFlow(ret, _, _, _, _, ap, apa, config) and
+        pos = ret.getReturnPosition()
       )
     }
 
@@ -1739,17 +1727,17 @@ private module MkStage<StageSig PrevStage> {
       )
       or
       // flow through a callable
-      exists(DataFlowCall call, ReturnKindExt returnKind0, Ap returnAp0 |
-        revFlowInToReturn(call, node, state, returnKind0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
+      exists(DataFlowCall call, ParamNodeEx p, ReturnPosition pos, Ap innerReturnAp |
+        revFlowThrough(call, returnCtx, p, state, pos, returnAp, ap, innerReturnAp, config) and
+        flowThroughIntoCall(call, node, p, _, ap, innerReturnAp, config)
       )
       or
       // flow out of a callable
-      exists(ReturnKindExt kind |
-        revFlowOut(_, node, kind, state, _, _, ap, config) and
-        if returnFlowsThrough(node, kind, state, _, _, _, ap, config)
+      exists(ReturnPosition pos |
+        revFlowOut(_, node, pos, state, _, _, ap, config) and
+        if returnFlowsThrough(node, pos, state, _, _, _, ap, config)
         then (
-          returnCtx = TReturnCtxMaybeFlowThrough(kind) and
+          returnCtx = TReturnCtxMaybeFlowThrough(pos) and
           returnAp = apSome(ap)
         ) else (
           returnCtx = TReturnCtxNoFlowThrough() and returnAp = apNone()
@@ -1782,47 +1770,33 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate revFlowOut(
-      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, FlowState state, ReturnCtx returnCtx,
+      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, FlowState state, ReturnCtx returnCtx,
       ApOption returnAp, Ap ap, Configuration config
     ) {
       exists(NodeEx out, boolean allowsFieldFlow |
         revFlow(out, state, returnCtx, returnAp, ap, config) and
-        flowOutOfCallAp(call, ret, kind, out, allowsFieldFlow, ap, config) and
+        flowOutOfCallAp(call, ret, pos, out, allowsFieldFlow, ap, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
-    /**
-     * Same as `flowThroughIntoCall`, but restricted to calls that are reached
-     * in the flow covered by `revFlow`, where data might flow through the target
-     * callable and back out at `call`.
-     */
-    pragma[nomagic]
-    private predicate revFlowThroughIntoCall(
-      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp,
-      Configuration config
-    ) {
-      flowThroughIntoCall(call, arg, p, allowsFieldFlow, argAp, config) and
-      revFlowIsReturned(call, _, _, _, _, config)
-    }
-
     pragma[nomagic]
     private predicate revFlowParamToReturn(
-      ParamNodeEx p, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap, Configuration config
+      ParamNodeEx p, FlowState state, ReturnPosition pos, Ap returnAp, Ap ap, Configuration config
     ) {
-      revFlow(p, state, TReturnCtxMaybeFlowThrough(kind), apSome(returnAp), ap, config) and
-      parameterFlowThroughAllowed(p, kind)
+      revFlow(pragma[only_bind_into](p), state, TReturnCtxMaybeFlowThrough(pos), apSome(returnAp),
+        pragma[only_bind_into](ap), pragma[only_bind_into](config)) and
+      parameterFlowThroughAllowed(p, pos.getKind()) and
+      PrevStage::parameterMayFlowThrough(p, getApprox(ap), config)
     }
 
     pragma[nomagic]
-    private predicate revFlowInToReturn(
-      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap,
-      Configuration config
+    private predicate revFlowThrough(
+      DataFlowCall call, ReturnCtx returnCtx, ParamNodeEx p, FlowState state, ReturnPosition pos,
+      ApOption returnAp, Ap ap, Ap innerReturnAp, Configuration config
     ) {
-      exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlowParamToReturn(p, state, kind, returnAp, ap, config) and
-        revFlowThroughIntoCall(call, arg, p, allowsFieldFlow, ap, config)
-      )
+      revFlowParamToReturn(p, state, pos, innerReturnAp, ap, config) and
+      revFlowIsReturned(call, returnCtx, returnAp, pos, innerReturnAp, config)
     }
 
     /**
@@ -1832,12 +1806,12 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate revFlowIsReturned(
-      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnKindExt kind, Ap ap,
+      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnPosition pos, Ap ap,
       Configuration config
     ) {
       exists(RetNodeEx ret, FlowState state, CcCall ccc |
-        revFlowOut(call, ret, kind, state, returnCtx, returnAp, ap, config) and
-        returnFlowsThrough(ret, kind, state, ccc, _, _, ap, config) and
+        revFlowOut(call, ret, pos, state, returnCtx, returnAp, ap, config) and
+        returnFlowsThrough(ret, pos, state, ccc, _, _, ap, config) and
         matchesCall(ccc, call)
       )
     }
@@ -1915,17 +1889,17 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate parameterFlowsThroughRev(
-      ParamNodeEx p, Ap ap, ReturnKindExt kind, Ap returnAp, Configuration config
+      ParamNodeEx p, Ap ap, ReturnPosition pos, Ap returnAp, Configuration config
     ) {
-      revFlow(p, _, TReturnCtxMaybeFlowThrough(kind), apSome(returnAp), ap, config) and
-      parameterFlowThroughAllowed(p, kind)
+      revFlow(p, _, TReturnCtxMaybeFlowThrough(pos), apSome(returnAp), ap, config) and
+      parameterFlowThroughAllowed(p, pos.getKind())
     }
 
     pragma[nomagic]
     predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
-      exists(RetNodeEx ret, ReturnKindExt kind |
-        returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
-        parameterFlowsThroughRev(p, ap, kind, _, config)
+      exists(RetNodeEx ret, ReturnPosition pos |
+        returnFlowsThrough(ret, pos, _, _, p, ap, _, config) and
+        parameterFlowsThroughRev(p, ap, pos, _, config)
       )
     }
 
@@ -1933,20 +1907,21 @@ private module MkStage<StageSig PrevStage> {
     predicate returnMayFlowThrough(
       RetNodeEx ret, Ap argAp, Ap ap, ReturnKindExt kind, Configuration config
     ) {
-      exists(ParamNodeEx p |
-        returnFlowsThrough(ret, kind, _, _, p, argAp, ap, config) and
-        parameterFlowsThroughRev(p, argAp, kind, ap, config)
+      exists(ParamNodeEx p, ReturnPosition pos |
+        returnFlowsThrough(ret, pos, _, _, p, argAp, ap, config) and
+        parameterFlowsThroughRev(p, argAp, pos, ap, config) and
+        kind = pos.getKind()
       )
     }
 
     pragma[nomagic]
-    predicate revFlowInToReturnIsReturned(
+    private predicate revFlowThroughArg(
       DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnCtx returnCtx, ApOption returnAp,
       Ap ap, Configuration config
     ) {
-      exists(ReturnKindExt returnKind0, Ap returnAp0 |
-        revFlowInToReturn(call, arg, state, returnKind0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
+      exists(ParamNodeEx p, ReturnPosition pos, Ap innerReturnAp |
+        revFlowThrough(call, returnCtx, p, state, pos, returnAp, ap, innerReturnAp, config) and
+        flowThroughIntoCall(call, arg, p, _, ap, innerReturnAp, config)
       )
     }
 
@@ -1954,7 +1929,7 @@ private module MkStage<StageSig PrevStage> {
     predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
       exists(ArgNodeEx arg, FlowState state, ReturnCtx returnCtx, ApOption returnAp, Ap ap |
         revFlow(arg, state, returnCtx, returnAp, ap, config) and
-        revFlowInToReturnIsReturned(call, arg, state, returnCtx, returnAp, ap, config)
+        revFlowThroughArg(call, arg, state, returnCtx, returnAp, ap, config)
       )
     }
 
@@ -1967,8 +1942,9 @@ private module MkStage<StageSig PrevStage> {
       conscand = count(TypedContent f0, Ap ap | fwdConsCand(f0, ap, config)) and
       states = count(FlowState state | fwdFlow(_, state, _, _, _, _, config)) and
       tuples =
-        count(NodeEx n, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-          Ap ap | fwdFlow(n, state, cc, summaryCtx, argAp, ap, config))
+        count(NodeEx n, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap |
+          fwdFlow(n, state, cc, summaryCtx, argAp, ap, config)
+        )
       or
       fwd = false and
       nodes = count(NodeEx node | revFlow(node, _, _, _, _, config)) and
@@ -2823,13 +2799,12 @@ private Configuration unbindConf(Configuration conf) {
 
 pragma[nomagic]
 private predicate nodeMayUseSummary0(
-  NodeEx n, DataFlowCallable c, ParameterPosition pos, FlowState state, AccessPathApprox apa,
-  Configuration config
+  NodeEx n, ParamNodeEx p, FlowState state, AccessPathApprox apa, Configuration config
 ) {
   exists(AccessPathApprox apa0 |
-    c = n.getEnclosingCallable() and
+    Stage5::parameterMayFlowThrough(p, _, _) and
     Stage5::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
-    Stage5::fwdFlow(n, state, any(CallContextCall ccc), TParameterPositionSome(pos),
+    Stage5::fwdFlow(n, state, any(CallContextCall ccc), TParamNodeSome(p.asNode()),
       TAccessPathApproxSome(apa), apa0, config)
   )
 }
@@ -2838,10 +2813,9 @@ pragma[nomagic]
 private predicate nodeMayUseSummary(
   NodeEx n, FlowState state, AccessPathApprox apa, Configuration config
 ) {
-  exists(DataFlowCallable c, ParameterPosition pos, ParamNodeEx p |
+  exists(ParamNodeEx p |
     Stage5::parameterMayFlowThrough(p, apa, config) and
-    nodeMayUseSummary0(n, c, pos, state, apa, config) and
-    p.isParameterOf(c, pos)
+    nodeMayUseSummary0(n, p, state, apa, config)
   )
 }
 
diff --git a/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImplForSerializability.qll b/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImplForSerializability.qll
index 6741ccc2f06..23d11a38842 100644
--- a/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImplForSerializability.qll
+++ b/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImplForSerializability.qll
@@ -1327,8 +1327,8 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     additional predicate fwdFlow(
-      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      Ap ap, ApApprox apa, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      ApApprox apa, Configuration config
     ) {
       fwdFlow0(node, state, cc, summaryCtx, argAp, ap, apa, config) and
       PrevStage::revFlow(node, state, apa, config) and
@@ -1337,21 +1337,21 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[inline]
     additional predicate fwdFlow(
-      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      Ap ap, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      Configuration config
     ) {
       fwdFlow(node, state, cc, summaryCtx, argAp, ap, _, config)
     }
 
     pragma[nomagic]
     private predicate fwdFlow0(
-      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      Ap ap, ApApprox apa, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      ApApprox apa, Configuration config
     ) {
       sourceNode(node, state, config) and
       (if hasSourceCallCtx(config) then cc = ccSomeCall() else cc = ccNone()) and
       argAp = apNone() and
-      summaryCtx = TParameterPositionNone() and
+      summaryCtx = TParamNodeNone() and
       ap = getApNil(node) and
       apa = getApprox(ap)
       or
@@ -1372,7 +1372,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, apa, pragma[only_bind_into](config)) and
         jumpStep(mid, node, config) and
         cc = ccNone() and
-        summaryCtx = TParameterPositionNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone()
       )
       or
@@ -1380,7 +1380,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, state, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStep(mid, node, config) and
         cc = ccNone() and
-        summaryCtx = TParameterPositionNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone() and
         ap = getApNil(node) and
         apa = getApprox(ap)
@@ -1390,7 +1390,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, state0, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStateStep(mid, state0, node, state, config) and
         cc = ccNone() and
-        summaryCtx = TParameterPositionNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone() and
         ap = getApNil(node) and
         apa = getApprox(ap)
@@ -1414,10 +1414,10 @@ private module MkStage<StageSig PrevStage> {
       fwdFlowIn(_, node, state, _, cc, _, _, ap, apa, config) and
       if PrevStage::parameterMayFlowThrough(node, apa, config)
       then (
-        summaryCtx = TParameterPositionSome(node.(ParamNodeEx).getPosition()) and
+        summaryCtx = TParamNodeSome(node.asNode()) and
         argAp = apSome(ap)
       ) else (
-        summaryCtx = TParameterPositionNone() and argAp = apNone()
+        summaryCtx = TParamNodeNone() and argAp = apNone()
       )
       or
       // flow out of a callable
@@ -1433,16 +1433,19 @@ private module MkStage<StageSig PrevStage> {
       )
       or
       // flow through a callable
-      exists(DataFlowCall call, ParameterPosition summaryCtx0, Ap argAp0 |
-        fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, apa, config) and
-        fwdFlowIsEntered(call, cc, summaryCtx, argAp, summaryCtx0, argAp0, config)
+      exists(
+        DataFlowCall call, CcCall ccc, RetNodeEx ret, boolean allowsFieldFlow, ApApprox innerArgApa
+      |
+        fwdFlowThrough(call, cc, state, ccc, summaryCtx, argAp, ap, apa, ret, innerArgApa, config) and
+        flowThroughOutOfCall(call, ccc, ret, node, allowsFieldFlow, innerArgApa, apa, config) and
+        if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
     pragma[nomagic]
     private predicate fwdFlowStore(
       NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc,
-      ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
+      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
     ) {
       exists(DataFlowType contentType, ApApprox apa1 |
         fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, apa1, config) and
@@ -1473,8 +1476,8 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowRead0(
-      NodeEx node1, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      ApNonNil ap, Configuration config
+      NodeEx node1, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, ApNonNil ap,
+      Configuration config
     ) {
       fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, _, _, config)
@@ -1483,7 +1486,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowRead(
       Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc,
-      ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
+      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
     ) {
       fwdFlowRead0(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, c, node2, config) and
@@ -1493,7 +1496,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowIn(
       DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, CcCall innercc,
-      ParameterPositionOption summaryCtx, ApOption argAp, Ap ap, ApApprox apa, Configuration config
+      ParamNodeOption summaryCtx, ApOption argAp, Ap ap, ApApprox apa, Configuration config
     ) {
       exists(ArgNodeEx arg, boolean allowsFieldFlow |
         fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, apa, config) and
@@ -1505,64 +1508,38 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowRetFromArg(
-      RetNodeEx ret, FlowState state, CcCall ccc, ParameterPosition summaryCtx, ParamNodeEx p,
-      Ap argAp, ApApprox argApa, Ap ap, ApApprox apa, Configuration config
+      RetNodeEx ret, FlowState state, CcCall ccc, ParamNodeEx summaryCtx, Ap argAp, ApApprox argApa,
+      Ap ap, ApApprox apa, Configuration config
     ) {
-      exists(DataFlowCallable c, ReturnKindExt kind |
+      exists(ReturnKindExt kind |
         fwdFlow(pragma[only_bind_into](ret), state, ccc,
-          TParameterPositionSome(pragma[only_bind_into](summaryCtx)), apSome(argAp), ap, apa, config) and
-        getApprox(argAp) = argApa and
-        c = ret.getEnclosingCallable() and
+          TParamNodeSome(pragma[only_bind_into](summaryCtx.asNode())),
+          pragma[only_bind_into](apSome(argAp)), ap, pragma[only_bind_into](apa),
+          pragma[only_bind_into](config)) and
         kind = ret.getKind() and
-        p.isParameterOf(c, pragma[only_bind_into](summaryCtx)) and
-        parameterFlowThroughAllowed(p, kind)
+        parameterFlowThroughAllowed(summaryCtx, kind) and
+        argApa = getApprox(argAp) and
+        PrevStage::returnMayFlowThrough(ret, argApa, apa, kind, pragma[only_bind_into](config))
       )
     }
 
     pragma[inline]
-    private predicate fwdFlowInMayFlowThrough(
-      DataFlowCall call, Cc cc, CcCall innerCc, ParameterPositionOption summaryCtx, ApOption argAp,
-      ParamNodeEx param, Ap ap, ApApprox apa, Configuration config
+    private predicate fwdFlowThrough0(
+      DataFlowCall call, Cc cc, FlowState state, CcCall ccc, ParamNodeOption summaryCtx,
+      ApOption argAp, Ap ap, ApApprox apa, RetNodeEx ret, ParamNodeEx innerSummaryCtx,
+      Ap innerArgAp, ApApprox innerArgApa, Configuration config
     ) {
-      fwdFlowIn(call, pragma[only_bind_into](param), _, cc, innerCc, summaryCtx, argAp, ap,
-        pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
-      PrevStage::parameterMayFlowThrough(param, apa, config)
-    }
-
-    // dedup before joining with `flowThroughOutOfCall`
-    pragma[nomagic]
-    private predicate fwdFlowInMayFlowThroughProj(
-      DataFlowCall call, CcCall innerCc, ApApprox apa, Configuration config
-    ) {
-      fwdFlowInMayFlowThrough(call, _, innerCc, _, _, _, _, apa, config)
-    }
-
-    /**
-     * Same as `flowThroughOutOfCall`, but restricted to calls that are reached
-     * in the flow covered by `fwdFlow`, where data might flow through the target
-     * callable and back out at `call`.
-     */
-    pragma[nomagic]
-    private predicate fwdFlowThroughOutOfCall(
-      DataFlowCall call, CcCall ccc, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow,
-      ApApprox argApa, ApApprox apa, Configuration config
-    ) {
-      fwdFlowInMayFlowThroughProj(call, ccc, argApa, config) and
-      flowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, argApa, apa, config)
+      fwdFlowRetFromArg(ret, state, ccc, innerSummaryCtx, innerArgAp, innerArgApa, ap, apa, config) and
+      fwdFlowIsEntered(call, cc, ccc, summaryCtx, argAp, innerSummaryCtx, innerArgAp, config)
     }
 
     pragma[nomagic]
-    private predicate fwdFlowOutFromArg(
-      DataFlowCall call, NodeEx out, FlowState state, ParameterPosition summaryCtx, Ap argAp, Ap ap,
-      ApApprox apa, Configuration config
+    private predicate fwdFlowThrough(
+      DataFlowCall call, Cc cc, FlowState state, CcCall ccc, ParamNodeOption summaryCtx,
+      ApOption argAp, Ap ap, ApApprox apa, RetNodeEx ret, ApApprox innerArgApa, Configuration config
     ) {
-      exists(RetNodeEx ret, boolean allowsFieldFlow, CcCall ccc, ApApprox argApa |
-        fwdFlowRetFromArg(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc),
-          summaryCtx, _, argAp, pragma[only_bind_into](argApa), ap, pragma[only_bind_into](apa),
-          config) and
-        fwdFlowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, argApa, apa, config) and
-        (if allowsFieldFlow = false then ap instanceof ApNil else any())
-      )
+      fwdFlowThrough0(call, cc, state, ccc, summaryCtx, argAp, ap, apa, ret, _, _, innerArgApa,
+        config)
     }
 
     /**
@@ -1571,12 +1548,14 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate fwdFlowIsEntered(
-      DataFlowCall call, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      ParameterPosition pos, Ap ap, Configuration config
+      DataFlowCall call, Cc cc, CcCall innerCc, ParamNodeOption summaryCtx, ApOption argAp,
+      ParamNodeEx p, Ap ap, Configuration config
     ) {
-      exists(ParamNodeEx param |
-        fwdFlowInMayFlowThrough(call, cc, _, summaryCtx, argAp, param, ap, _, config) and
-        pos = param.getPosition()
+      exists(ApApprox apa |
+        fwdFlowIn(call, pragma[only_bind_into](p), _, cc, innerCc, summaryCtx, argAp, ap,
+          pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
+        PrevStage::parameterMayFlowThrough(p, apa, config) and
+        PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config))
       )
     }
 
@@ -1596,23 +1575,31 @@ private module MkStage<StageSig PrevStage> {
       fwdFlowConsCand(ap1, c, ap2, config)
     }
 
+    pragma[nomagic]
+    private predicate returnFlowsThrough0(
+      DataFlowCall call, FlowState state, CcCall ccc, Ap ap, ApApprox apa, RetNodeEx ret,
+      ParamNodeEx innerSummaryCtx, Ap innerArgAp, ApApprox innerArgApa, Configuration config
+    ) {
+      fwdFlowThrough0(call, _, state, ccc, _, _, ap, apa, ret, innerSummaryCtx, innerArgAp,
+        innerArgApa, config)
+    }
+
     pragma[nomagic]
     private predicate returnFlowsThrough(
-      RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, ParamNodeEx p, Ap argAp,
+      RetNodeEx ret, ReturnPosition pos, FlowState state, CcCall ccc, ParamNodeEx p, Ap argAp,
       Ap ap, Configuration config
     ) {
-      exists(boolean allowsFieldFlow, ApApprox argApa, ApApprox apa |
-        fwdFlowRetFromArg(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc), _, p,
-          argAp, pragma[only_bind_into](argApa), ap, pragma[only_bind_into](apa), config) and
-        kind = ret.getKind() and
-        fwdFlowThroughOutOfCall(_, ccc, ret, _, allowsFieldFlow, argApa, apa, config) and
-        (if allowsFieldFlow = false then ap instanceof ApNil else any())
+      exists(DataFlowCall call, ApApprox apa, boolean allowsFieldFlow, ApApprox innerArgApa |
+        returnFlowsThrough0(call, state, ccc, ap, apa, ret, p, argAp, innerArgApa, config) and
+        flowThroughOutOfCall(call, ccc, ret, _, allowsFieldFlow, innerArgApa, apa, config) and
+        pos = ret.getReturnPosition() and
+        if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
     pragma[nomagic]
     private predicate flowThroughIntoCall(
-      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp,
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp, Ap ap,
       Configuration config
     ) {
       exists(ApApprox argApa |
@@ -1620,7 +1607,7 @@ private module MkStage<StageSig PrevStage> {
           allowsFieldFlow, argApa, pragma[only_bind_into](config)) and
         fwdFlow(arg, _, _, _, _, pragma[only_bind_into](argAp), argApa,
           pragma[only_bind_into](config)) and
-        returnFlowsThrough(_, _, _, _, p, pragma[only_bind_into](argAp), _,
+        returnFlowsThrough(_, _, _, _, p, pragma[only_bind_into](argAp), ap,
           pragma[only_bind_into](config)) and
         if allowsFieldFlow = false then argAp instanceof ApNil else any()
       )
@@ -1639,12 +1626,13 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate flowOutOfCallAp(
-      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
+      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
       Ap ap, Configuration config
     ) {
       exists(ApApprox apa |
-        flowOutOfCallApa(call, ret, kind, out, allowsFieldFlow, apa, config) and
-        fwdFlow(ret, _, _, _, _, ap, apa, config)
+        flowOutOfCallApa(call, ret, _, out, allowsFieldFlow, apa, config) and
+        fwdFlow(ret, _, _, _, _, ap, apa, config) and
+        pos = ret.getReturnPosition()
       )
     }
 
@@ -1739,17 +1727,17 @@ private module MkStage<StageSig PrevStage> {
       )
       or
       // flow through a callable
-      exists(DataFlowCall call, ReturnKindExt returnKind0, Ap returnAp0 |
-        revFlowInToReturn(call, node, state, returnKind0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
+      exists(DataFlowCall call, ParamNodeEx p, ReturnPosition pos, Ap innerReturnAp |
+        revFlowThrough(call, returnCtx, p, state, pos, returnAp, ap, innerReturnAp, config) and
+        flowThroughIntoCall(call, node, p, _, ap, innerReturnAp, config)
       )
       or
       // flow out of a callable
-      exists(ReturnKindExt kind |
-        revFlowOut(_, node, kind, state, _, _, ap, config) and
-        if returnFlowsThrough(node, kind, state, _, _, _, ap, config)
+      exists(ReturnPosition pos |
+        revFlowOut(_, node, pos, state, _, _, ap, config) and
+        if returnFlowsThrough(node, pos, state, _, _, _, ap, config)
         then (
-          returnCtx = TReturnCtxMaybeFlowThrough(kind) and
+          returnCtx = TReturnCtxMaybeFlowThrough(pos) and
           returnAp = apSome(ap)
         ) else (
           returnCtx = TReturnCtxNoFlowThrough() and returnAp = apNone()
@@ -1782,47 +1770,33 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate revFlowOut(
-      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, FlowState state, ReturnCtx returnCtx,
+      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, FlowState state, ReturnCtx returnCtx,
       ApOption returnAp, Ap ap, Configuration config
     ) {
       exists(NodeEx out, boolean allowsFieldFlow |
         revFlow(out, state, returnCtx, returnAp, ap, config) and
-        flowOutOfCallAp(call, ret, kind, out, allowsFieldFlow, ap, config) and
+        flowOutOfCallAp(call, ret, pos, out, allowsFieldFlow, ap, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
-    /**
-     * Same as `flowThroughIntoCall`, but restricted to calls that are reached
-     * in the flow covered by `revFlow`, where data might flow through the target
-     * callable and back out at `call`.
-     */
-    pragma[nomagic]
-    private predicate revFlowThroughIntoCall(
-      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp,
-      Configuration config
-    ) {
-      flowThroughIntoCall(call, arg, p, allowsFieldFlow, argAp, config) and
-      revFlowIsReturned(call, _, _, _, _, config)
-    }
-
     pragma[nomagic]
     private predicate revFlowParamToReturn(
-      ParamNodeEx p, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap, Configuration config
+      ParamNodeEx p, FlowState state, ReturnPosition pos, Ap returnAp, Ap ap, Configuration config
     ) {
-      revFlow(p, state, TReturnCtxMaybeFlowThrough(kind), apSome(returnAp), ap, config) and
-      parameterFlowThroughAllowed(p, kind)
+      revFlow(pragma[only_bind_into](p), state, TReturnCtxMaybeFlowThrough(pos), apSome(returnAp),
+        pragma[only_bind_into](ap), pragma[only_bind_into](config)) and
+      parameterFlowThroughAllowed(p, pos.getKind()) and
+      PrevStage::parameterMayFlowThrough(p, getApprox(ap), config)
     }
 
     pragma[nomagic]
-    private predicate revFlowInToReturn(
-      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap,
-      Configuration config
+    private predicate revFlowThrough(
+      DataFlowCall call, ReturnCtx returnCtx, ParamNodeEx p, FlowState state, ReturnPosition pos,
+      ApOption returnAp, Ap ap, Ap innerReturnAp, Configuration config
     ) {
-      exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlowParamToReturn(p, state, kind, returnAp, ap, config) and
-        revFlowThroughIntoCall(call, arg, p, allowsFieldFlow, ap, config)
-      )
+      revFlowParamToReturn(p, state, pos, innerReturnAp, ap, config) and
+      revFlowIsReturned(call, returnCtx, returnAp, pos, innerReturnAp, config)
     }
 
     /**
@@ -1832,12 +1806,12 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate revFlowIsReturned(
-      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnKindExt kind, Ap ap,
+      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnPosition pos, Ap ap,
       Configuration config
     ) {
       exists(RetNodeEx ret, FlowState state, CcCall ccc |
-        revFlowOut(call, ret, kind, state, returnCtx, returnAp, ap, config) and
-        returnFlowsThrough(ret, kind, state, ccc, _, _, ap, config) and
+        revFlowOut(call, ret, pos, state, returnCtx, returnAp, ap, config) and
+        returnFlowsThrough(ret, pos, state, ccc, _, _, ap, config) and
         matchesCall(ccc, call)
       )
     }
@@ -1915,17 +1889,17 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate parameterFlowsThroughRev(
-      ParamNodeEx p, Ap ap, ReturnKindExt kind, Ap returnAp, Configuration config
+      ParamNodeEx p, Ap ap, ReturnPosition pos, Ap returnAp, Configuration config
     ) {
-      revFlow(p, _, TReturnCtxMaybeFlowThrough(kind), apSome(returnAp), ap, config) and
-      parameterFlowThroughAllowed(p, kind)
+      revFlow(p, _, TReturnCtxMaybeFlowThrough(pos), apSome(returnAp), ap, config) and
+      parameterFlowThroughAllowed(p, pos.getKind())
     }
 
     pragma[nomagic]
     predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
-      exists(RetNodeEx ret, ReturnKindExt kind |
-        returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
-        parameterFlowsThroughRev(p, ap, kind, _, config)
+      exists(RetNodeEx ret, ReturnPosition pos |
+        returnFlowsThrough(ret, pos, _, _, p, ap, _, config) and
+        parameterFlowsThroughRev(p, ap, pos, _, config)
       )
     }
 
@@ -1933,20 +1907,21 @@ private module MkStage<StageSig PrevStage> {
     predicate returnMayFlowThrough(
       RetNodeEx ret, Ap argAp, Ap ap, ReturnKindExt kind, Configuration config
     ) {
-      exists(ParamNodeEx p |
-        returnFlowsThrough(ret, kind, _, _, p, argAp, ap, config) and
-        parameterFlowsThroughRev(p, argAp, kind, ap, config)
+      exists(ParamNodeEx p, ReturnPosition pos |
+        returnFlowsThrough(ret, pos, _, _, p, argAp, ap, config) and
+        parameterFlowsThroughRev(p, argAp, pos, ap, config) and
+        kind = pos.getKind()
       )
     }
 
     pragma[nomagic]
-    predicate revFlowInToReturnIsReturned(
+    private predicate revFlowThroughArg(
       DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnCtx returnCtx, ApOption returnAp,
       Ap ap, Configuration config
     ) {
-      exists(ReturnKindExt returnKind0, Ap returnAp0 |
-        revFlowInToReturn(call, arg, state, returnKind0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
+      exists(ParamNodeEx p, ReturnPosition pos, Ap innerReturnAp |
+        revFlowThrough(call, returnCtx, p, state, pos, returnAp, ap, innerReturnAp, config) and
+        flowThroughIntoCall(call, arg, p, _, ap, innerReturnAp, config)
       )
     }
 
@@ -1954,7 +1929,7 @@ private module MkStage<StageSig PrevStage> {
     predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
       exists(ArgNodeEx arg, FlowState state, ReturnCtx returnCtx, ApOption returnAp, Ap ap |
         revFlow(arg, state, returnCtx, returnAp, ap, config) and
-        revFlowInToReturnIsReturned(call, arg, state, returnCtx, returnAp, ap, config)
+        revFlowThroughArg(call, arg, state, returnCtx, returnAp, ap, config)
       )
     }
 
@@ -1967,8 +1942,9 @@ private module MkStage<StageSig PrevStage> {
       conscand = count(TypedContent f0, Ap ap | fwdConsCand(f0, ap, config)) and
       states = count(FlowState state | fwdFlow(_, state, _, _, _, _, config)) and
       tuples =
-        count(NodeEx n, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-          Ap ap | fwdFlow(n, state, cc, summaryCtx, argAp, ap, config))
+        count(NodeEx n, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap |
+          fwdFlow(n, state, cc, summaryCtx, argAp, ap, config)
+        )
       or
       fwd = false and
       nodes = count(NodeEx node | revFlow(node, _, _, _, _, config)) and
@@ -2823,13 +2799,12 @@ private Configuration unbindConf(Configuration conf) {
 
 pragma[nomagic]
 private predicate nodeMayUseSummary0(
-  NodeEx n, DataFlowCallable c, ParameterPosition pos, FlowState state, AccessPathApprox apa,
-  Configuration config
+  NodeEx n, ParamNodeEx p, FlowState state, AccessPathApprox apa, Configuration config
 ) {
   exists(AccessPathApprox apa0 |
-    c = n.getEnclosingCallable() and
+    Stage5::parameterMayFlowThrough(p, _, _) and
     Stage5::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
-    Stage5::fwdFlow(n, state, any(CallContextCall ccc), TParameterPositionSome(pos),
+    Stage5::fwdFlow(n, state, any(CallContextCall ccc), TParamNodeSome(p.asNode()),
       TAccessPathApproxSome(apa), apa0, config)
   )
 }
@@ -2838,10 +2813,9 @@ pragma[nomagic]
 private predicate nodeMayUseSummary(
   NodeEx n, FlowState state, AccessPathApprox apa, Configuration config
 ) {
-  exists(DataFlowCallable c, ParameterPosition pos, ParamNodeEx p |
+  exists(ParamNodeEx p |
     Stage5::parameterMayFlowThrough(p, apa, config) and
-    nodeMayUseSummary0(n, c, pos, state, apa, config) and
-    p.isParameterOf(c, pos)
+    nodeMayUseSummary0(n, p, state, apa, config)
   )
 }
 
diff --git a/python/ql/lib/semmle/python/dataflow/new/internal/DataFlowImpl.qll b/python/ql/lib/semmle/python/dataflow/new/internal/DataFlowImpl.qll
index 6741ccc2f06..23d11a38842 100644
--- a/python/ql/lib/semmle/python/dataflow/new/internal/DataFlowImpl.qll
+++ b/python/ql/lib/semmle/python/dataflow/new/internal/DataFlowImpl.qll
@@ -1327,8 +1327,8 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     additional predicate fwdFlow(
-      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      Ap ap, ApApprox apa, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      ApApprox apa, Configuration config
     ) {
       fwdFlow0(node, state, cc, summaryCtx, argAp, ap, apa, config) and
       PrevStage::revFlow(node, state, apa, config) and
@@ -1337,21 +1337,21 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[inline]
     additional predicate fwdFlow(
-      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      Ap ap, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      Configuration config
     ) {
       fwdFlow(node, state, cc, summaryCtx, argAp, ap, _, config)
     }
 
     pragma[nomagic]
     private predicate fwdFlow0(
-      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      Ap ap, ApApprox apa, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      ApApprox apa, Configuration config
     ) {
       sourceNode(node, state, config) and
       (if hasSourceCallCtx(config) then cc = ccSomeCall() else cc = ccNone()) and
       argAp = apNone() and
-      summaryCtx = TParameterPositionNone() and
+      summaryCtx = TParamNodeNone() and
       ap = getApNil(node) and
       apa = getApprox(ap)
       or
@@ -1372,7 +1372,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, apa, pragma[only_bind_into](config)) and
         jumpStep(mid, node, config) and
         cc = ccNone() and
-        summaryCtx = TParameterPositionNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone()
       )
       or
@@ -1380,7 +1380,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, state, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStep(mid, node, config) and
         cc = ccNone() and
-        summaryCtx = TParameterPositionNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone() and
         ap = getApNil(node) and
         apa = getApprox(ap)
@@ -1390,7 +1390,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, state0, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStateStep(mid, state0, node, state, config) and
         cc = ccNone() and
-        summaryCtx = TParameterPositionNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone() and
         ap = getApNil(node) and
         apa = getApprox(ap)
@@ -1414,10 +1414,10 @@ private module MkStage<StageSig PrevStage> {
       fwdFlowIn(_, node, state, _, cc, _, _, ap, apa, config) and
       if PrevStage::parameterMayFlowThrough(node, apa, config)
       then (
-        summaryCtx = TParameterPositionSome(node.(ParamNodeEx).getPosition()) and
+        summaryCtx = TParamNodeSome(node.asNode()) and
         argAp = apSome(ap)
       ) else (
-        summaryCtx = TParameterPositionNone() and argAp = apNone()
+        summaryCtx = TParamNodeNone() and argAp = apNone()
       )
       or
       // flow out of a callable
@@ -1433,16 +1433,19 @@ private module MkStage<StageSig PrevStage> {
       )
       or
       // flow through a callable
-      exists(DataFlowCall call, ParameterPosition summaryCtx0, Ap argAp0 |
-        fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, apa, config) and
-        fwdFlowIsEntered(call, cc, summaryCtx, argAp, summaryCtx0, argAp0, config)
+      exists(
+        DataFlowCall call, CcCall ccc, RetNodeEx ret, boolean allowsFieldFlow, ApApprox innerArgApa
+      |
+        fwdFlowThrough(call, cc, state, ccc, summaryCtx, argAp, ap, apa, ret, innerArgApa, config) and
+        flowThroughOutOfCall(call, ccc, ret, node, allowsFieldFlow, innerArgApa, apa, config) and
+        if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
     pragma[nomagic]
     private predicate fwdFlowStore(
       NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc,
-      ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
+      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
     ) {
       exists(DataFlowType contentType, ApApprox apa1 |
         fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, apa1, config) and
@@ -1473,8 +1476,8 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowRead0(
-      NodeEx node1, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      ApNonNil ap, Configuration config
+      NodeEx node1, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, ApNonNil ap,
+      Configuration config
     ) {
       fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, _, _, config)
@@ -1483,7 +1486,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowRead(
       Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc,
-      ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
+      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
     ) {
       fwdFlowRead0(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, c, node2, config) and
@@ -1493,7 +1496,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowIn(
       DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, CcCall innercc,
-      ParameterPositionOption summaryCtx, ApOption argAp, Ap ap, ApApprox apa, Configuration config
+      ParamNodeOption summaryCtx, ApOption argAp, Ap ap, ApApprox apa, Configuration config
     ) {
       exists(ArgNodeEx arg, boolean allowsFieldFlow |
         fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, apa, config) and
@@ -1505,64 +1508,38 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowRetFromArg(
-      RetNodeEx ret, FlowState state, CcCall ccc, ParameterPosition summaryCtx, ParamNodeEx p,
-      Ap argAp, ApApprox argApa, Ap ap, ApApprox apa, Configuration config
+      RetNodeEx ret, FlowState state, CcCall ccc, ParamNodeEx summaryCtx, Ap argAp, ApApprox argApa,
+      Ap ap, ApApprox apa, Configuration config
     ) {
-      exists(DataFlowCallable c, ReturnKindExt kind |
+      exists(ReturnKindExt kind |
         fwdFlow(pragma[only_bind_into](ret), state, ccc,
-          TParameterPositionSome(pragma[only_bind_into](summaryCtx)), apSome(argAp), ap, apa, config) and
-        getApprox(argAp) = argApa and
-        c = ret.getEnclosingCallable() and
+          TParamNodeSome(pragma[only_bind_into](summaryCtx.asNode())),
+          pragma[only_bind_into](apSome(argAp)), ap, pragma[only_bind_into](apa),
+          pragma[only_bind_into](config)) and
         kind = ret.getKind() and
-        p.isParameterOf(c, pragma[only_bind_into](summaryCtx)) and
-        parameterFlowThroughAllowed(p, kind)
+        parameterFlowThroughAllowed(summaryCtx, kind) and
+        argApa = getApprox(argAp) and
+        PrevStage::returnMayFlowThrough(ret, argApa, apa, kind, pragma[only_bind_into](config))
       )
     }
 
     pragma[inline]
-    private predicate fwdFlowInMayFlowThrough(
-      DataFlowCall call, Cc cc, CcCall innerCc, ParameterPositionOption summaryCtx, ApOption argAp,
-      ParamNodeEx param, Ap ap, ApApprox apa, Configuration config
+    private predicate fwdFlowThrough0(
+      DataFlowCall call, Cc cc, FlowState state, CcCall ccc, ParamNodeOption summaryCtx,
+      ApOption argAp, Ap ap, ApApprox apa, RetNodeEx ret, ParamNodeEx innerSummaryCtx,
+      Ap innerArgAp, ApApprox innerArgApa, Configuration config
     ) {
-      fwdFlowIn(call, pragma[only_bind_into](param), _, cc, innerCc, summaryCtx, argAp, ap,
-        pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
-      PrevStage::parameterMayFlowThrough(param, apa, config)
-    }
-
-    // dedup before joining with `flowThroughOutOfCall`
-    pragma[nomagic]
-    private predicate fwdFlowInMayFlowThroughProj(
-      DataFlowCall call, CcCall innerCc, ApApprox apa, Configuration config
-    ) {
-      fwdFlowInMayFlowThrough(call, _, innerCc, _, _, _, _, apa, config)
-    }
-
-    /**
-     * Same as `flowThroughOutOfCall`, but restricted to calls that are reached
-     * in the flow covered by `fwdFlow`, where data might flow through the target
-     * callable and back out at `call`.
-     */
-    pragma[nomagic]
-    private predicate fwdFlowThroughOutOfCall(
-      DataFlowCall call, CcCall ccc, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow,
-      ApApprox argApa, ApApprox apa, Configuration config
-    ) {
-      fwdFlowInMayFlowThroughProj(call, ccc, argApa, config) and
-      flowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, argApa, apa, config)
+      fwdFlowRetFromArg(ret, state, ccc, innerSummaryCtx, innerArgAp, innerArgApa, ap, apa, config) and
+      fwdFlowIsEntered(call, cc, ccc, summaryCtx, argAp, innerSummaryCtx, innerArgAp, config)
     }
 
     pragma[nomagic]
-    private predicate fwdFlowOutFromArg(
-      DataFlowCall call, NodeEx out, FlowState state, ParameterPosition summaryCtx, Ap argAp, Ap ap,
-      ApApprox apa, Configuration config
+    private predicate fwdFlowThrough(
+      DataFlowCall call, Cc cc, FlowState state, CcCall ccc, ParamNodeOption summaryCtx,
+      ApOption argAp, Ap ap, ApApprox apa, RetNodeEx ret, ApApprox innerArgApa, Configuration config
     ) {
-      exists(RetNodeEx ret, boolean allowsFieldFlow, CcCall ccc, ApApprox argApa |
-        fwdFlowRetFromArg(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc),
-          summaryCtx, _, argAp, pragma[only_bind_into](argApa), ap, pragma[only_bind_into](apa),
-          config) and
-        fwdFlowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, argApa, apa, config) and
-        (if allowsFieldFlow = false then ap instanceof ApNil else any())
-      )
+      fwdFlowThrough0(call, cc, state, ccc, summaryCtx, argAp, ap, apa, ret, _, _, innerArgApa,
+        config)
     }
 
     /**
@@ -1571,12 +1548,14 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate fwdFlowIsEntered(
-      DataFlowCall call, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      ParameterPosition pos, Ap ap, Configuration config
+      DataFlowCall call, Cc cc, CcCall innerCc, ParamNodeOption summaryCtx, ApOption argAp,
+      ParamNodeEx p, Ap ap, Configuration config
     ) {
-      exists(ParamNodeEx param |
-        fwdFlowInMayFlowThrough(call, cc, _, summaryCtx, argAp, param, ap, _, config) and
-        pos = param.getPosition()
+      exists(ApApprox apa |
+        fwdFlowIn(call, pragma[only_bind_into](p), _, cc, innerCc, summaryCtx, argAp, ap,
+          pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
+        PrevStage::parameterMayFlowThrough(p, apa, config) and
+        PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config))
       )
     }
 
@@ -1596,23 +1575,31 @@ private module MkStage<StageSig PrevStage> {
       fwdFlowConsCand(ap1, c, ap2, config)
     }
 
+    pragma[nomagic]
+    private predicate returnFlowsThrough0(
+      DataFlowCall call, FlowState state, CcCall ccc, Ap ap, ApApprox apa, RetNodeEx ret,
+      ParamNodeEx innerSummaryCtx, Ap innerArgAp, ApApprox innerArgApa, Configuration config
+    ) {
+      fwdFlowThrough0(call, _, state, ccc, _, _, ap, apa, ret, innerSummaryCtx, innerArgAp,
+        innerArgApa, config)
+    }
+
     pragma[nomagic]
     private predicate returnFlowsThrough(
-      RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, ParamNodeEx p, Ap argAp,
+      RetNodeEx ret, ReturnPosition pos, FlowState state, CcCall ccc, ParamNodeEx p, Ap argAp,
       Ap ap, Configuration config
     ) {
-      exists(boolean allowsFieldFlow, ApApprox argApa, ApApprox apa |
-        fwdFlowRetFromArg(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc), _, p,
-          argAp, pragma[only_bind_into](argApa), ap, pragma[only_bind_into](apa), config) and
-        kind = ret.getKind() and
-        fwdFlowThroughOutOfCall(_, ccc, ret, _, allowsFieldFlow, argApa, apa, config) and
-        (if allowsFieldFlow = false then ap instanceof ApNil else any())
+      exists(DataFlowCall call, ApApprox apa, boolean allowsFieldFlow, ApApprox innerArgApa |
+        returnFlowsThrough0(call, state, ccc, ap, apa, ret, p, argAp, innerArgApa, config) and
+        flowThroughOutOfCall(call, ccc, ret, _, allowsFieldFlow, innerArgApa, apa, config) and
+        pos = ret.getReturnPosition() and
+        if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
     pragma[nomagic]
     private predicate flowThroughIntoCall(
-      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp,
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp, Ap ap,
       Configuration config
     ) {
       exists(ApApprox argApa |
@@ -1620,7 +1607,7 @@ private module MkStage<StageSig PrevStage> {
           allowsFieldFlow, argApa, pragma[only_bind_into](config)) and
         fwdFlow(arg, _, _, _, _, pragma[only_bind_into](argAp), argApa,
           pragma[only_bind_into](config)) and
-        returnFlowsThrough(_, _, _, _, p, pragma[only_bind_into](argAp), _,
+        returnFlowsThrough(_, _, _, _, p, pragma[only_bind_into](argAp), ap,
           pragma[only_bind_into](config)) and
         if allowsFieldFlow = false then argAp instanceof ApNil else any()
       )
@@ -1639,12 +1626,13 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate flowOutOfCallAp(
-      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
+      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
       Ap ap, Configuration config
     ) {
       exists(ApApprox apa |
-        flowOutOfCallApa(call, ret, kind, out, allowsFieldFlow, apa, config) and
-        fwdFlow(ret, _, _, _, _, ap, apa, config)
+        flowOutOfCallApa(call, ret, _, out, allowsFieldFlow, apa, config) and
+        fwdFlow(ret, _, _, _, _, ap, apa, config) and
+        pos = ret.getReturnPosition()
       )
     }
 
@@ -1739,17 +1727,17 @@ private module MkStage<StageSig PrevStage> {
       )
       or
       // flow through a callable
-      exists(DataFlowCall call, ReturnKindExt returnKind0, Ap returnAp0 |
-        revFlowInToReturn(call, node, state, returnKind0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
+      exists(DataFlowCall call, ParamNodeEx p, ReturnPosition pos, Ap innerReturnAp |
+        revFlowThrough(call, returnCtx, p, state, pos, returnAp, ap, innerReturnAp, config) and
+        flowThroughIntoCall(call, node, p, _, ap, innerReturnAp, config)
       )
       or
       // flow out of a callable
-      exists(ReturnKindExt kind |
-        revFlowOut(_, node, kind, state, _, _, ap, config) and
-        if returnFlowsThrough(node, kind, state, _, _, _, ap, config)
+      exists(ReturnPosition pos |
+        revFlowOut(_, node, pos, state, _, _, ap, config) and
+        if returnFlowsThrough(node, pos, state, _, _, _, ap, config)
         then (
-          returnCtx = TReturnCtxMaybeFlowThrough(kind) and
+          returnCtx = TReturnCtxMaybeFlowThrough(pos) and
           returnAp = apSome(ap)
         ) else (
           returnCtx = TReturnCtxNoFlowThrough() and returnAp = apNone()
@@ -1782,47 +1770,33 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate revFlowOut(
-      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, FlowState state, ReturnCtx returnCtx,
+      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, FlowState state, ReturnCtx returnCtx,
       ApOption returnAp, Ap ap, Configuration config
     ) {
       exists(NodeEx out, boolean allowsFieldFlow |
         revFlow(out, state, returnCtx, returnAp, ap, config) and
-        flowOutOfCallAp(call, ret, kind, out, allowsFieldFlow, ap, config) and
+        flowOutOfCallAp(call, ret, pos, out, allowsFieldFlow, ap, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
-    /**
-     * Same as `flowThroughIntoCall`, but restricted to calls that are reached
-     * in the flow covered by `revFlow`, where data might flow through the target
-     * callable and back out at `call`.
-     */
-    pragma[nomagic]
-    private predicate revFlowThroughIntoCall(
-      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp,
-      Configuration config
-    ) {
-      flowThroughIntoCall(call, arg, p, allowsFieldFlow, argAp, config) and
-      revFlowIsReturned(call, _, _, _, _, config)
-    }
-
     pragma[nomagic]
     private predicate revFlowParamToReturn(
-      ParamNodeEx p, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap, Configuration config
+      ParamNodeEx p, FlowState state, ReturnPosition pos, Ap returnAp, Ap ap, Configuration config
     ) {
-      revFlow(p, state, TReturnCtxMaybeFlowThrough(kind), apSome(returnAp), ap, config) and
-      parameterFlowThroughAllowed(p, kind)
+      revFlow(pragma[only_bind_into](p), state, TReturnCtxMaybeFlowThrough(pos), apSome(returnAp),
+        pragma[only_bind_into](ap), pragma[only_bind_into](config)) and
+      parameterFlowThroughAllowed(p, pos.getKind()) and
+      PrevStage::parameterMayFlowThrough(p, getApprox(ap), config)
     }
 
     pragma[nomagic]
-    private predicate revFlowInToReturn(
-      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap,
-      Configuration config
+    private predicate revFlowThrough(
+      DataFlowCall call, ReturnCtx returnCtx, ParamNodeEx p, FlowState state, ReturnPosition pos,
+      ApOption returnAp, Ap ap, Ap innerReturnAp, Configuration config
     ) {
-      exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlowParamToReturn(p, state, kind, returnAp, ap, config) and
-        revFlowThroughIntoCall(call, arg, p, allowsFieldFlow, ap, config)
-      )
+      revFlowParamToReturn(p, state, pos, innerReturnAp, ap, config) and
+      revFlowIsReturned(call, returnCtx, returnAp, pos, innerReturnAp, config)
     }
 
     /**
@@ -1832,12 +1806,12 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate revFlowIsReturned(
-      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnKindExt kind, Ap ap,
+      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnPosition pos, Ap ap,
       Configuration config
     ) {
       exists(RetNodeEx ret, FlowState state, CcCall ccc |
-        revFlowOut(call, ret, kind, state, returnCtx, returnAp, ap, config) and
-        returnFlowsThrough(ret, kind, state, ccc, _, _, ap, config) and
+        revFlowOut(call, ret, pos, state, returnCtx, returnAp, ap, config) and
+        returnFlowsThrough(ret, pos, state, ccc, _, _, ap, config) and
         matchesCall(ccc, call)
       )
     }
@@ -1915,17 +1889,17 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate parameterFlowsThroughRev(
-      ParamNodeEx p, Ap ap, ReturnKindExt kind, Ap returnAp, Configuration config
+      ParamNodeEx p, Ap ap, ReturnPosition pos, Ap returnAp, Configuration config
     ) {
-      revFlow(p, _, TReturnCtxMaybeFlowThrough(kind), apSome(returnAp), ap, config) and
-      parameterFlowThroughAllowed(p, kind)
+      revFlow(p, _, TReturnCtxMaybeFlowThrough(pos), apSome(returnAp), ap, config) and
+      parameterFlowThroughAllowed(p, pos.getKind())
     }
 
     pragma[nomagic]
     predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
-      exists(RetNodeEx ret, ReturnKindExt kind |
-        returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
-        parameterFlowsThroughRev(p, ap, kind, _, config)
+      exists(RetNodeEx ret, ReturnPosition pos |
+        returnFlowsThrough(ret, pos, _, _, p, ap, _, config) and
+        parameterFlowsThroughRev(p, ap, pos, _, config)
       )
     }
 
@@ -1933,20 +1907,21 @@ private module MkStage<StageSig PrevStage> {
     predicate returnMayFlowThrough(
       RetNodeEx ret, Ap argAp, Ap ap, ReturnKindExt kind, Configuration config
     ) {
-      exists(ParamNodeEx p |
-        returnFlowsThrough(ret, kind, _, _, p, argAp, ap, config) and
-        parameterFlowsThroughRev(p, argAp, kind, ap, config)
+      exists(ParamNodeEx p, ReturnPosition pos |
+        returnFlowsThrough(ret, pos, _, _, p, argAp, ap, config) and
+        parameterFlowsThroughRev(p, argAp, pos, ap, config) and
+        kind = pos.getKind()
       )
     }
 
     pragma[nomagic]
-    predicate revFlowInToReturnIsReturned(
+    private predicate revFlowThroughArg(
       DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnCtx returnCtx, ApOption returnAp,
       Ap ap, Configuration config
     ) {
-      exists(ReturnKindExt returnKind0, Ap returnAp0 |
-        revFlowInToReturn(call, arg, state, returnKind0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
+      exists(ParamNodeEx p, ReturnPosition pos, Ap innerReturnAp |
+        revFlowThrough(call, returnCtx, p, state, pos, returnAp, ap, innerReturnAp, config) and
+        flowThroughIntoCall(call, arg, p, _, ap, innerReturnAp, config)
       )
     }
 
@@ -1954,7 +1929,7 @@ private module MkStage<StageSig PrevStage> {
     predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
       exists(ArgNodeEx arg, FlowState state, ReturnCtx returnCtx, ApOption returnAp, Ap ap |
         revFlow(arg, state, returnCtx, returnAp, ap, config) and
-        revFlowInToReturnIsReturned(call, arg, state, returnCtx, returnAp, ap, config)
+        revFlowThroughArg(call, arg, state, returnCtx, returnAp, ap, config)
       )
     }
 
@@ -1967,8 +1942,9 @@ private module MkStage<StageSig PrevStage> {
       conscand = count(TypedContent f0, Ap ap | fwdConsCand(f0, ap, config)) and
       states = count(FlowState state | fwdFlow(_, state, _, _, _, _, config)) and
       tuples =
-        count(NodeEx n, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-          Ap ap | fwdFlow(n, state, cc, summaryCtx, argAp, ap, config))
+        count(NodeEx n, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap |
+          fwdFlow(n, state, cc, summaryCtx, argAp, ap, config)
+        )
       or
       fwd = false and
       nodes = count(NodeEx node | revFlow(node, _, _, _, _, config)) and
@@ -2823,13 +2799,12 @@ private Configuration unbindConf(Configuration conf) {
 
 pragma[nomagic]
 private predicate nodeMayUseSummary0(
-  NodeEx n, DataFlowCallable c, ParameterPosition pos, FlowState state, AccessPathApprox apa,
-  Configuration config
+  NodeEx n, ParamNodeEx p, FlowState state, AccessPathApprox apa, Configuration config
 ) {
   exists(AccessPathApprox apa0 |
-    c = n.getEnclosingCallable() and
+    Stage5::parameterMayFlowThrough(p, _, _) and
     Stage5::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
-    Stage5::fwdFlow(n, state, any(CallContextCall ccc), TParameterPositionSome(pos),
+    Stage5::fwdFlow(n, state, any(CallContextCall ccc), TParamNodeSome(p.asNode()),
       TAccessPathApproxSome(apa), apa0, config)
   )
 }
@@ -2838,10 +2813,9 @@ pragma[nomagic]
 private predicate nodeMayUseSummary(
   NodeEx n, FlowState state, AccessPathApprox apa, Configuration config
 ) {
-  exists(DataFlowCallable c, ParameterPosition pos, ParamNodeEx p |
+  exists(ParamNodeEx p |
     Stage5::parameterMayFlowThrough(p, apa, config) and
-    nodeMayUseSummary0(n, c, pos, state, apa, config) and
-    p.isParameterOf(c, pos)
+    nodeMayUseSummary0(n, p, state, apa, config)
   )
 }
 
diff --git a/python/ql/lib/semmle/python/dataflow/new/internal/DataFlowImpl2.qll b/python/ql/lib/semmle/python/dataflow/new/internal/DataFlowImpl2.qll
index 6741ccc2f06..23d11a38842 100644
--- a/python/ql/lib/semmle/python/dataflow/new/internal/DataFlowImpl2.qll
+++ b/python/ql/lib/semmle/python/dataflow/new/internal/DataFlowImpl2.qll
@@ -1327,8 +1327,8 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     additional predicate fwdFlow(
-      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      Ap ap, ApApprox apa, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      ApApprox apa, Configuration config
     ) {
       fwdFlow0(node, state, cc, summaryCtx, argAp, ap, apa, config) and
       PrevStage::revFlow(node, state, apa, config) and
@@ -1337,21 +1337,21 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[inline]
     additional predicate fwdFlow(
-      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      Ap ap, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      Configuration config
     ) {
       fwdFlow(node, state, cc, summaryCtx, argAp, ap, _, config)
     }
 
     pragma[nomagic]
     private predicate fwdFlow0(
-      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      Ap ap, ApApprox apa, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      ApApprox apa, Configuration config
     ) {
       sourceNode(node, state, config) and
       (if hasSourceCallCtx(config) then cc = ccSomeCall() else cc = ccNone()) and
       argAp = apNone() and
-      summaryCtx = TParameterPositionNone() and
+      summaryCtx = TParamNodeNone() and
       ap = getApNil(node) and
       apa = getApprox(ap)
       or
@@ -1372,7 +1372,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, apa, pragma[only_bind_into](config)) and
         jumpStep(mid, node, config) and
         cc = ccNone() and
-        summaryCtx = TParameterPositionNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone()
       )
       or
@@ -1380,7 +1380,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, state, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStep(mid, node, config) and
         cc = ccNone() and
-        summaryCtx = TParameterPositionNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone() and
         ap = getApNil(node) and
         apa = getApprox(ap)
@@ -1390,7 +1390,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, state0, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStateStep(mid, state0, node, state, config) and
         cc = ccNone() and
-        summaryCtx = TParameterPositionNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone() and
         ap = getApNil(node) and
         apa = getApprox(ap)
@@ -1414,10 +1414,10 @@ private module MkStage<StageSig PrevStage> {
       fwdFlowIn(_, node, state, _, cc, _, _, ap, apa, config) and
       if PrevStage::parameterMayFlowThrough(node, apa, config)
       then (
-        summaryCtx = TParameterPositionSome(node.(ParamNodeEx).getPosition()) and
+        summaryCtx = TParamNodeSome(node.asNode()) and
         argAp = apSome(ap)
       ) else (
-        summaryCtx = TParameterPositionNone() and argAp = apNone()
+        summaryCtx = TParamNodeNone() and argAp = apNone()
       )
       or
       // flow out of a callable
@@ -1433,16 +1433,19 @@ private module MkStage<StageSig PrevStage> {
       )
       or
       // flow through a callable
-      exists(DataFlowCall call, ParameterPosition summaryCtx0, Ap argAp0 |
-        fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, apa, config) and
-        fwdFlowIsEntered(call, cc, summaryCtx, argAp, summaryCtx0, argAp0, config)
+      exists(
+        DataFlowCall call, CcCall ccc, RetNodeEx ret, boolean allowsFieldFlow, ApApprox innerArgApa
+      |
+        fwdFlowThrough(call, cc, state, ccc, summaryCtx, argAp, ap, apa, ret, innerArgApa, config) and
+        flowThroughOutOfCall(call, ccc, ret, node, allowsFieldFlow, innerArgApa, apa, config) and
+        if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
     pragma[nomagic]
     private predicate fwdFlowStore(
       NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc,
-      ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
+      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
     ) {
       exists(DataFlowType contentType, ApApprox apa1 |
         fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, apa1, config) and
@@ -1473,8 +1476,8 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowRead0(
-      NodeEx node1, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      ApNonNil ap, Configuration config
+      NodeEx node1, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, ApNonNil ap,
+      Configuration config
     ) {
       fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, _, _, config)
@@ -1483,7 +1486,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowRead(
       Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc,
-      ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
+      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
     ) {
       fwdFlowRead0(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, c, node2, config) and
@@ -1493,7 +1496,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowIn(
       DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, CcCall innercc,
-      ParameterPositionOption summaryCtx, ApOption argAp, Ap ap, ApApprox apa, Configuration config
+      ParamNodeOption summaryCtx, ApOption argAp, Ap ap, ApApprox apa, Configuration config
     ) {
       exists(ArgNodeEx arg, boolean allowsFieldFlow |
         fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, apa, config) and
@@ -1505,64 +1508,38 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowRetFromArg(
-      RetNodeEx ret, FlowState state, CcCall ccc, ParameterPosition summaryCtx, ParamNodeEx p,
-      Ap argAp, ApApprox argApa, Ap ap, ApApprox apa, Configuration config
+      RetNodeEx ret, FlowState state, CcCall ccc, ParamNodeEx summaryCtx, Ap argAp, ApApprox argApa,
+      Ap ap, ApApprox apa, Configuration config
     ) {
-      exists(DataFlowCallable c, ReturnKindExt kind |
+      exists(ReturnKindExt kind |
         fwdFlow(pragma[only_bind_into](ret), state, ccc,
-          TParameterPositionSome(pragma[only_bind_into](summaryCtx)), apSome(argAp), ap, apa, config) and
-        getApprox(argAp) = argApa and
-        c = ret.getEnclosingCallable() and
+          TParamNodeSome(pragma[only_bind_into](summaryCtx.asNode())),
+          pragma[only_bind_into](apSome(argAp)), ap, pragma[only_bind_into](apa),
+          pragma[only_bind_into](config)) and
         kind = ret.getKind() and
-        p.isParameterOf(c, pragma[only_bind_into](summaryCtx)) and
-        parameterFlowThroughAllowed(p, kind)
+        parameterFlowThroughAllowed(summaryCtx, kind) and
+        argApa = getApprox(argAp) and
+        PrevStage::returnMayFlowThrough(ret, argApa, apa, kind, pragma[only_bind_into](config))
       )
     }
 
     pragma[inline]
-    private predicate fwdFlowInMayFlowThrough(
-      DataFlowCall call, Cc cc, CcCall innerCc, ParameterPositionOption summaryCtx, ApOption argAp,
-      ParamNodeEx param, Ap ap, ApApprox apa, Configuration config
+    private predicate fwdFlowThrough0(
+      DataFlowCall call, Cc cc, FlowState state, CcCall ccc, ParamNodeOption summaryCtx,
+      ApOption argAp, Ap ap, ApApprox apa, RetNodeEx ret, ParamNodeEx innerSummaryCtx,
+      Ap innerArgAp, ApApprox innerArgApa, Configuration config
     ) {
-      fwdFlowIn(call, pragma[only_bind_into](param), _, cc, innerCc, summaryCtx, argAp, ap,
-        pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
-      PrevStage::parameterMayFlowThrough(param, apa, config)
-    }
-
-    // dedup before joining with `flowThroughOutOfCall`
-    pragma[nomagic]
-    private predicate fwdFlowInMayFlowThroughProj(
-      DataFlowCall call, CcCall innerCc, ApApprox apa, Configuration config
-    ) {
-      fwdFlowInMayFlowThrough(call, _, innerCc, _, _, _, _, apa, config)
-    }
-
-    /**
-     * Same as `flowThroughOutOfCall`, but restricted to calls that are reached
-     * in the flow covered by `fwdFlow`, where data might flow through the target
-     * callable and back out at `call`.
-     */
-    pragma[nomagic]
-    private predicate fwdFlowThroughOutOfCall(
-      DataFlowCall call, CcCall ccc, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow,
-      ApApprox argApa, ApApprox apa, Configuration config
-    ) {
-      fwdFlowInMayFlowThroughProj(call, ccc, argApa, config) and
-      flowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, argApa, apa, config)
+      fwdFlowRetFromArg(ret, state, ccc, innerSummaryCtx, innerArgAp, innerArgApa, ap, apa, config) and
+      fwdFlowIsEntered(call, cc, ccc, summaryCtx, argAp, innerSummaryCtx, innerArgAp, config)
     }
 
     pragma[nomagic]
-    private predicate fwdFlowOutFromArg(
-      DataFlowCall call, NodeEx out, FlowState state, ParameterPosition summaryCtx, Ap argAp, Ap ap,
-      ApApprox apa, Configuration config
+    private predicate fwdFlowThrough(
+      DataFlowCall call, Cc cc, FlowState state, CcCall ccc, ParamNodeOption summaryCtx,
+      ApOption argAp, Ap ap, ApApprox apa, RetNodeEx ret, ApApprox innerArgApa, Configuration config
     ) {
-      exists(RetNodeEx ret, boolean allowsFieldFlow, CcCall ccc, ApApprox argApa |
-        fwdFlowRetFromArg(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc),
-          summaryCtx, _, argAp, pragma[only_bind_into](argApa), ap, pragma[only_bind_into](apa),
-          config) and
-        fwdFlowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, argApa, apa, config) and
-        (if allowsFieldFlow = false then ap instanceof ApNil else any())
-      )
+      fwdFlowThrough0(call, cc, state, ccc, summaryCtx, argAp, ap, apa, ret, _, _, innerArgApa,
+        config)
     }
 
     /**
@@ -1571,12 +1548,14 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate fwdFlowIsEntered(
-      DataFlowCall call, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      ParameterPosition pos, Ap ap, Configuration config
+      DataFlowCall call, Cc cc, CcCall innerCc, ParamNodeOption summaryCtx, ApOption argAp,
+      ParamNodeEx p, Ap ap, Configuration config
     ) {
-      exists(ParamNodeEx param |
-        fwdFlowInMayFlowThrough(call, cc, _, summaryCtx, argAp, param, ap, _, config) and
-        pos = param.getPosition()
+      exists(ApApprox apa |
+        fwdFlowIn(call, pragma[only_bind_into](p), _, cc, innerCc, summaryCtx, argAp, ap,
+          pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
+        PrevStage::parameterMayFlowThrough(p, apa, config) and
+        PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config))
       )
     }
 
@@ -1596,23 +1575,31 @@ private module MkStage<StageSig PrevStage> {
       fwdFlowConsCand(ap1, c, ap2, config)
     }
 
+    pragma[nomagic]
+    private predicate returnFlowsThrough0(
+      DataFlowCall call, FlowState state, CcCall ccc, Ap ap, ApApprox apa, RetNodeEx ret,
+      ParamNodeEx innerSummaryCtx, Ap innerArgAp, ApApprox innerArgApa, Configuration config
+    ) {
+      fwdFlowThrough0(call, _, state, ccc, _, _, ap, apa, ret, innerSummaryCtx, innerArgAp,
+        innerArgApa, config)
+    }
+
     pragma[nomagic]
     private predicate returnFlowsThrough(
-      RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, ParamNodeEx p, Ap argAp,
+      RetNodeEx ret, ReturnPosition pos, FlowState state, CcCall ccc, ParamNodeEx p, Ap argAp,
       Ap ap, Configuration config
     ) {
-      exists(boolean allowsFieldFlow, ApApprox argApa, ApApprox apa |
-        fwdFlowRetFromArg(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc), _, p,
-          argAp, pragma[only_bind_into](argApa), ap, pragma[only_bind_into](apa), config) and
-        kind = ret.getKind() and
-        fwdFlowThroughOutOfCall(_, ccc, ret, _, allowsFieldFlow, argApa, apa, config) and
-        (if allowsFieldFlow = false then ap instanceof ApNil else any())
+      exists(DataFlowCall call, ApApprox apa, boolean allowsFieldFlow, ApApprox innerArgApa |
+        returnFlowsThrough0(call, state, ccc, ap, apa, ret, p, argAp, innerArgApa, config) and
+        flowThroughOutOfCall(call, ccc, ret, _, allowsFieldFlow, innerArgApa, apa, config) and
+        pos = ret.getReturnPosition() and
+        if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
     pragma[nomagic]
     private predicate flowThroughIntoCall(
-      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp,
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp, Ap ap,
       Configuration config
     ) {
       exists(ApApprox argApa |
@@ -1620,7 +1607,7 @@ private module MkStage<StageSig PrevStage> {
           allowsFieldFlow, argApa, pragma[only_bind_into](config)) and
         fwdFlow(arg, _, _, _, _, pragma[only_bind_into](argAp), argApa,
           pragma[only_bind_into](config)) and
-        returnFlowsThrough(_, _, _, _, p, pragma[only_bind_into](argAp), _,
+        returnFlowsThrough(_, _, _, _, p, pragma[only_bind_into](argAp), ap,
           pragma[only_bind_into](config)) and
         if allowsFieldFlow = false then argAp instanceof ApNil else any()
       )
@@ -1639,12 +1626,13 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate flowOutOfCallAp(
-      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
+      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
       Ap ap, Configuration config
     ) {
       exists(ApApprox apa |
-        flowOutOfCallApa(call, ret, kind, out, allowsFieldFlow, apa, config) and
-        fwdFlow(ret, _, _, _, _, ap, apa, config)
+        flowOutOfCallApa(call, ret, _, out, allowsFieldFlow, apa, config) and
+        fwdFlow(ret, _, _, _, _, ap, apa, config) and
+        pos = ret.getReturnPosition()
       )
     }
 
@@ -1739,17 +1727,17 @@ private module MkStage<StageSig PrevStage> {
       )
       or
       // flow through a callable
-      exists(DataFlowCall call, ReturnKindExt returnKind0, Ap returnAp0 |
-        revFlowInToReturn(call, node, state, returnKind0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
+      exists(DataFlowCall call, ParamNodeEx p, ReturnPosition pos, Ap innerReturnAp |
+        revFlowThrough(call, returnCtx, p, state, pos, returnAp, ap, innerReturnAp, config) and
+        flowThroughIntoCall(call, node, p, _, ap, innerReturnAp, config)
       )
       or
       // flow out of a callable
-      exists(ReturnKindExt kind |
-        revFlowOut(_, node, kind, state, _, _, ap, config) and
-        if returnFlowsThrough(node, kind, state, _, _, _, ap, config)
+      exists(ReturnPosition pos |
+        revFlowOut(_, node, pos, state, _, _, ap, config) and
+        if returnFlowsThrough(node, pos, state, _, _, _, ap, config)
         then (
-          returnCtx = TReturnCtxMaybeFlowThrough(kind) and
+          returnCtx = TReturnCtxMaybeFlowThrough(pos) and
           returnAp = apSome(ap)
         ) else (
           returnCtx = TReturnCtxNoFlowThrough() and returnAp = apNone()
@@ -1782,47 +1770,33 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate revFlowOut(
-      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, FlowState state, ReturnCtx returnCtx,
+      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, FlowState state, ReturnCtx returnCtx,
       ApOption returnAp, Ap ap, Configuration config
     ) {
       exists(NodeEx out, boolean allowsFieldFlow |
         revFlow(out, state, returnCtx, returnAp, ap, config) and
-        flowOutOfCallAp(call, ret, kind, out, allowsFieldFlow, ap, config) and
+        flowOutOfCallAp(call, ret, pos, out, allowsFieldFlow, ap, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
-    /**
-     * Same as `flowThroughIntoCall`, but restricted to calls that are reached
-     * in the flow covered by `revFlow`, where data might flow through the target
-     * callable and back out at `call`.
-     */
-    pragma[nomagic]
-    private predicate revFlowThroughIntoCall(
-      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp,
-      Configuration config
-    ) {
-      flowThroughIntoCall(call, arg, p, allowsFieldFlow, argAp, config) and
-      revFlowIsReturned(call, _, _, _, _, config)
-    }
-
     pragma[nomagic]
     private predicate revFlowParamToReturn(
-      ParamNodeEx p, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap, Configuration config
+      ParamNodeEx p, FlowState state, ReturnPosition pos, Ap returnAp, Ap ap, Configuration config
     ) {
-      revFlow(p, state, TReturnCtxMaybeFlowThrough(kind), apSome(returnAp), ap, config) and
-      parameterFlowThroughAllowed(p, kind)
+      revFlow(pragma[only_bind_into](p), state, TReturnCtxMaybeFlowThrough(pos), apSome(returnAp),
+        pragma[only_bind_into](ap), pragma[only_bind_into](config)) and
+      parameterFlowThroughAllowed(p, pos.getKind()) and
+      PrevStage::parameterMayFlowThrough(p, getApprox(ap), config)
     }
 
     pragma[nomagic]
-    private predicate revFlowInToReturn(
-      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap,
-      Configuration config
+    private predicate revFlowThrough(
+      DataFlowCall call, ReturnCtx returnCtx, ParamNodeEx p, FlowState state, ReturnPosition pos,
+      ApOption returnAp, Ap ap, Ap innerReturnAp, Configuration config
     ) {
-      exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlowParamToReturn(p, state, kind, returnAp, ap, config) and
-        revFlowThroughIntoCall(call, arg, p, allowsFieldFlow, ap, config)
-      )
+      revFlowParamToReturn(p, state, pos, innerReturnAp, ap, config) and
+      revFlowIsReturned(call, returnCtx, returnAp, pos, innerReturnAp, config)
     }
 
     /**
@@ -1832,12 +1806,12 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate revFlowIsReturned(
-      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnKindExt kind, Ap ap,
+      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnPosition pos, Ap ap,
       Configuration config
     ) {
       exists(RetNodeEx ret, FlowState state, CcCall ccc |
-        revFlowOut(call, ret, kind, state, returnCtx, returnAp, ap, config) and
-        returnFlowsThrough(ret, kind, state, ccc, _, _, ap, config) and
+        revFlowOut(call, ret, pos, state, returnCtx, returnAp, ap, config) and
+        returnFlowsThrough(ret, pos, state, ccc, _, _, ap, config) and
         matchesCall(ccc, call)
       )
     }
@@ -1915,17 +1889,17 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate parameterFlowsThroughRev(
-      ParamNodeEx p, Ap ap, ReturnKindExt kind, Ap returnAp, Configuration config
+      ParamNodeEx p, Ap ap, ReturnPosition pos, Ap returnAp, Configuration config
     ) {
-      revFlow(p, _, TReturnCtxMaybeFlowThrough(kind), apSome(returnAp), ap, config) and
-      parameterFlowThroughAllowed(p, kind)
+      revFlow(p, _, TReturnCtxMaybeFlowThrough(pos), apSome(returnAp), ap, config) and
+      parameterFlowThroughAllowed(p, pos.getKind())
     }
 
     pragma[nomagic]
     predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
-      exists(RetNodeEx ret, ReturnKindExt kind |
-        returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
-        parameterFlowsThroughRev(p, ap, kind, _, config)
+      exists(RetNodeEx ret, ReturnPosition pos |
+        returnFlowsThrough(ret, pos, _, _, p, ap, _, config) and
+        parameterFlowsThroughRev(p, ap, pos, _, config)
       )
     }
 
@@ -1933,20 +1907,21 @@ private module MkStage<StageSig PrevStage> {
     predicate returnMayFlowThrough(
       RetNodeEx ret, Ap argAp, Ap ap, ReturnKindExt kind, Configuration config
     ) {
-      exists(ParamNodeEx p |
-        returnFlowsThrough(ret, kind, _, _, p, argAp, ap, config) and
-        parameterFlowsThroughRev(p, argAp, kind, ap, config)
+      exists(ParamNodeEx p, ReturnPosition pos |
+        returnFlowsThrough(ret, pos, _, _, p, argAp, ap, config) and
+        parameterFlowsThroughRev(p, argAp, pos, ap, config) and
+        kind = pos.getKind()
       )
     }
 
     pragma[nomagic]
-    predicate revFlowInToReturnIsReturned(
+    private predicate revFlowThroughArg(
       DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnCtx returnCtx, ApOption returnAp,
       Ap ap, Configuration config
     ) {
-      exists(ReturnKindExt returnKind0, Ap returnAp0 |
-        revFlowInToReturn(call, arg, state, returnKind0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
+      exists(ParamNodeEx p, ReturnPosition pos, Ap innerReturnAp |
+        revFlowThrough(call, returnCtx, p, state, pos, returnAp, ap, innerReturnAp, config) and
+        flowThroughIntoCall(call, arg, p, _, ap, innerReturnAp, config)
       )
     }
 
@@ -1954,7 +1929,7 @@ private module MkStage<StageSig PrevStage> {
     predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
       exists(ArgNodeEx arg, FlowState state, ReturnCtx returnCtx, ApOption returnAp, Ap ap |
         revFlow(arg, state, returnCtx, returnAp, ap, config) and
-        revFlowInToReturnIsReturned(call, arg, state, returnCtx, returnAp, ap, config)
+        revFlowThroughArg(call, arg, state, returnCtx, returnAp, ap, config)
       )
     }
 
@@ -1967,8 +1942,9 @@ private module MkStage<StageSig PrevStage> {
       conscand = count(TypedContent f0, Ap ap | fwdConsCand(f0, ap, config)) and
       states = count(FlowState state | fwdFlow(_, state, _, _, _, _, config)) and
       tuples =
-        count(NodeEx n, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-          Ap ap | fwdFlow(n, state, cc, summaryCtx, argAp, ap, config))
+        count(NodeEx n, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap |
+          fwdFlow(n, state, cc, summaryCtx, argAp, ap, config)
+        )
       or
       fwd = false and
       nodes = count(NodeEx node | revFlow(node, _, _, _, _, config)) and
@@ -2823,13 +2799,12 @@ private Configuration unbindConf(Configuration conf) {
 
 pragma[nomagic]
 private predicate nodeMayUseSummary0(
-  NodeEx n, DataFlowCallable c, ParameterPosition pos, FlowState state, AccessPathApprox apa,
-  Configuration config
+  NodeEx n, ParamNodeEx p, FlowState state, AccessPathApprox apa, Configuration config
 ) {
   exists(AccessPathApprox apa0 |
-    c = n.getEnclosingCallable() and
+    Stage5::parameterMayFlowThrough(p, _, _) and
     Stage5::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
-    Stage5::fwdFlow(n, state, any(CallContextCall ccc), TParameterPositionSome(pos),
+    Stage5::fwdFlow(n, state, any(CallContextCall ccc), TParamNodeSome(p.asNode()),
       TAccessPathApproxSome(apa), apa0, config)
   )
 }
@@ -2838,10 +2813,9 @@ pragma[nomagic]
 private predicate nodeMayUseSummary(
   NodeEx n, FlowState state, AccessPathApprox apa, Configuration config
 ) {
-  exists(DataFlowCallable c, ParameterPosition pos, ParamNodeEx p |
+  exists(ParamNodeEx p |
     Stage5::parameterMayFlowThrough(p, apa, config) and
-    nodeMayUseSummary0(n, c, pos, state, apa, config) and
-    p.isParameterOf(c, pos)
+    nodeMayUseSummary0(n, p, state, apa, config)
   )
 }
 
diff --git a/python/ql/lib/semmle/python/dataflow/new/internal/DataFlowImpl3.qll b/python/ql/lib/semmle/python/dataflow/new/internal/DataFlowImpl3.qll
index 6741ccc2f06..23d11a38842 100644
--- a/python/ql/lib/semmle/python/dataflow/new/internal/DataFlowImpl3.qll
+++ b/python/ql/lib/semmle/python/dataflow/new/internal/DataFlowImpl3.qll
@@ -1327,8 +1327,8 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     additional predicate fwdFlow(
-      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      Ap ap, ApApprox apa, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      ApApprox apa, Configuration config
     ) {
       fwdFlow0(node, state, cc, summaryCtx, argAp, ap, apa, config) and
       PrevStage::revFlow(node, state, apa, config) and
@@ -1337,21 +1337,21 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[inline]
     additional predicate fwdFlow(
-      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      Ap ap, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      Configuration config
     ) {
       fwdFlow(node, state, cc, summaryCtx, argAp, ap, _, config)
     }
 
     pragma[nomagic]
     private predicate fwdFlow0(
-      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      Ap ap, ApApprox apa, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      ApApprox apa, Configuration config
     ) {
       sourceNode(node, state, config) and
       (if hasSourceCallCtx(config) then cc = ccSomeCall() else cc = ccNone()) and
       argAp = apNone() and
-      summaryCtx = TParameterPositionNone() and
+      summaryCtx = TParamNodeNone() and
       ap = getApNil(node) and
       apa = getApprox(ap)
       or
@@ -1372,7 +1372,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, apa, pragma[only_bind_into](config)) and
         jumpStep(mid, node, config) and
         cc = ccNone() and
-        summaryCtx = TParameterPositionNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone()
       )
       or
@@ -1380,7 +1380,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, state, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStep(mid, node, config) and
         cc = ccNone() and
-        summaryCtx = TParameterPositionNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone() and
         ap = getApNil(node) and
         apa = getApprox(ap)
@@ -1390,7 +1390,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, state0, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStateStep(mid, state0, node, state, config) and
         cc = ccNone() and
-        summaryCtx = TParameterPositionNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone() and
         ap = getApNil(node) and
         apa = getApprox(ap)
@@ -1414,10 +1414,10 @@ private module MkStage<StageSig PrevStage> {
       fwdFlowIn(_, node, state, _, cc, _, _, ap, apa, config) and
       if PrevStage::parameterMayFlowThrough(node, apa, config)
       then (
-        summaryCtx = TParameterPositionSome(node.(ParamNodeEx).getPosition()) and
+        summaryCtx = TParamNodeSome(node.asNode()) and
         argAp = apSome(ap)
       ) else (
-        summaryCtx = TParameterPositionNone() and argAp = apNone()
+        summaryCtx = TParamNodeNone() and argAp = apNone()
       )
       or
       // flow out of a callable
@@ -1433,16 +1433,19 @@ private module MkStage<StageSig PrevStage> {
       )
       or
       // flow through a callable
-      exists(DataFlowCall call, ParameterPosition summaryCtx0, Ap argAp0 |
-        fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, apa, config) and
-        fwdFlowIsEntered(call, cc, summaryCtx, argAp, summaryCtx0, argAp0, config)
+      exists(
+        DataFlowCall call, CcCall ccc, RetNodeEx ret, boolean allowsFieldFlow, ApApprox innerArgApa
+      |
+        fwdFlowThrough(call, cc, state, ccc, summaryCtx, argAp, ap, apa, ret, innerArgApa, config) and
+        flowThroughOutOfCall(call, ccc, ret, node, allowsFieldFlow, innerArgApa, apa, config) and
+        if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
     pragma[nomagic]
     private predicate fwdFlowStore(
       NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc,
-      ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
+      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
     ) {
       exists(DataFlowType contentType, ApApprox apa1 |
         fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, apa1, config) and
@@ -1473,8 +1476,8 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowRead0(
-      NodeEx node1, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      ApNonNil ap, Configuration config
+      NodeEx node1, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, ApNonNil ap,
+      Configuration config
     ) {
       fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, _, _, config)
@@ -1483,7 +1486,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowRead(
       Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc,
-      ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
+      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
     ) {
       fwdFlowRead0(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, c, node2, config) and
@@ -1493,7 +1496,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowIn(
       DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, CcCall innercc,
-      ParameterPositionOption summaryCtx, ApOption argAp, Ap ap, ApApprox apa, Configuration config
+      ParamNodeOption summaryCtx, ApOption argAp, Ap ap, ApApprox apa, Configuration config
     ) {
       exists(ArgNodeEx arg, boolean allowsFieldFlow |
         fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, apa, config) and
@@ -1505,64 +1508,38 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowRetFromArg(
-      RetNodeEx ret, FlowState state, CcCall ccc, ParameterPosition summaryCtx, ParamNodeEx p,
-      Ap argAp, ApApprox argApa, Ap ap, ApApprox apa, Configuration config
+      RetNodeEx ret, FlowState state, CcCall ccc, ParamNodeEx summaryCtx, Ap argAp, ApApprox argApa,
+      Ap ap, ApApprox apa, Configuration config
     ) {
-      exists(DataFlowCallable c, ReturnKindExt kind |
+      exists(ReturnKindExt kind |
         fwdFlow(pragma[only_bind_into](ret), state, ccc,
-          TParameterPositionSome(pragma[only_bind_into](summaryCtx)), apSome(argAp), ap, apa, config) and
-        getApprox(argAp) = argApa and
-        c = ret.getEnclosingCallable() and
+          TParamNodeSome(pragma[only_bind_into](summaryCtx.asNode())),
+          pragma[only_bind_into](apSome(argAp)), ap, pragma[only_bind_into](apa),
+          pragma[only_bind_into](config)) and
         kind = ret.getKind() and
-        p.isParameterOf(c, pragma[only_bind_into](summaryCtx)) and
-        parameterFlowThroughAllowed(p, kind)
+        parameterFlowThroughAllowed(summaryCtx, kind) and
+        argApa = getApprox(argAp) and
+        PrevStage::returnMayFlowThrough(ret, argApa, apa, kind, pragma[only_bind_into](config))
       )
     }
 
     pragma[inline]
-    private predicate fwdFlowInMayFlowThrough(
-      DataFlowCall call, Cc cc, CcCall innerCc, ParameterPositionOption summaryCtx, ApOption argAp,
-      ParamNodeEx param, Ap ap, ApApprox apa, Configuration config
+    private predicate fwdFlowThrough0(
+      DataFlowCall call, Cc cc, FlowState state, CcCall ccc, ParamNodeOption summaryCtx,
+      ApOption argAp, Ap ap, ApApprox apa, RetNodeEx ret, ParamNodeEx innerSummaryCtx,
+      Ap innerArgAp, ApApprox innerArgApa, Configuration config
     ) {
-      fwdFlowIn(call, pragma[only_bind_into](param), _, cc, innerCc, summaryCtx, argAp, ap,
-        pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
-      PrevStage::parameterMayFlowThrough(param, apa, config)
-    }
-
-    // dedup before joining with `flowThroughOutOfCall`
-    pragma[nomagic]
-    private predicate fwdFlowInMayFlowThroughProj(
-      DataFlowCall call, CcCall innerCc, ApApprox apa, Configuration config
-    ) {
-      fwdFlowInMayFlowThrough(call, _, innerCc, _, _, _, _, apa, config)
-    }
-
-    /**
-     * Same as `flowThroughOutOfCall`, but restricted to calls that are reached
-     * in the flow covered by `fwdFlow`, where data might flow through the target
-     * callable and back out at `call`.
-     */
-    pragma[nomagic]
-    private predicate fwdFlowThroughOutOfCall(
-      DataFlowCall call, CcCall ccc, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow,
-      ApApprox argApa, ApApprox apa, Configuration config
-    ) {
-      fwdFlowInMayFlowThroughProj(call, ccc, argApa, config) and
-      flowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, argApa, apa, config)
+      fwdFlowRetFromArg(ret, state, ccc, innerSummaryCtx, innerArgAp, innerArgApa, ap, apa, config) and
+      fwdFlowIsEntered(call, cc, ccc, summaryCtx, argAp, innerSummaryCtx, innerArgAp, config)
     }
 
     pragma[nomagic]
-    private predicate fwdFlowOutFromArg(
-      DataFlowCall call, NodeEx out, FlowState state, ParameterPosition summaryCtx, Ap argAp, Ap ap,
-      ApApprox apa, Configuration config
+    private predicate fwdFlowThrough(
+      DataFlowCall call, Cc cc, FlowState state, CcCall ccc, ParamNodeOption summaryCtx,
+      ApOption argAp, Ap ap, ApApprox apa, RetNodeEx ret, ApApprox innerArgApa, Configuration config
     ) {
-      exists(RetNodeEx ret, boolean allowsFieldFlow, CcCall ccc, ApApprox argApa |
-        fwdFlowRetFromArg(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc),
-          summaryCtx, _, argAp, pragma[only_bind_into](argApa), ap, pragma[only_bind_into](apa),
-          config) and
-        fwdFlowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, argApa, apa, config) and
-        (if allowsFieldFlow = false then ap instanceof ApNil else any())
-      )
+      fwdFlowThrough0(call, cc, state, ccc, summaryCtx, argAp, ap, apa, ret, _, _, innerArgApa,
+        config)
     }
 
     /**
@@ -1571,12 +1548,14 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate fwdFlowIsEntered(
-      DataFlowCall call, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      ParameterPosition pos, Ap ap, Configuration config
+      DataFlowCall call, Cc cc, CcCall innerCc, ParamNodeOption summaryCtx, ApOption argAp,
+      ParamNodeEx p, Ap ap, Configuration config
     ) {
-      exists(ParamNodeEx param |
-        fwdFlowInMayFlowThrough(call, cc, _, summaryCtx, argAp, param, ap, _, config) and
-        pos = param.getPosition()
+      exists(ApApprox apa |
+        fwdFlowIn(call, pragma[only_bind_into](p), _, cc, innerCc, summaryCtx, argAp, ap,
+          pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
+        PrevStage::parameterMayFlowThrough(p, apa, config) and
+        PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config))
       )
     }
 
@@ -1596,23 +1575,31 @@ private module MkStage<StageSig PrevStage> {
       fwdFlowConsCand(ap1, c, ap2, config)
     }
 
+    pragma[nomagic]
+    private predicate returnFlowsThrough0(
+      DataFlowCall call, FlowState state, CcCall ccc, Ap ap, ApApprox apa, RetNodeEx ret,
+      ParamNodeEx innerSummaryCtx, Ap innerArgAp, ApApprox innerArgApa, Configuration config
+    ) {
+      fwdFlowThrough0(call, _, state, ccc, _, _, ap, apa, ret, innerSummaryCtx, innerArgAp,
+        innerArgApa, config)
+    }
+
     pragma[nomagic]
     private predicate returnFlowsThrough(
-      RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, ParamNodeEx p, Ap argAp,
+      RetNodeEx ret, ReturnPosition pos, FlowState state, CcCall ccc, ParamNodeEx p, Ap argAp,
       Ap ap, Configuration config
     ) {
-      exists(boolean allowsFieldFlow, ApApprox argApa, ApApprox apa |
-        fwdFlowRetFromArg(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc), _, p,
-          argAp, pragma[only_bind_into](argApa), ap, pragma[only_bind_into](apa), config) and
-        kind = ret.getKind() and
-        fwdFlowThroughOutOfCall(_, ccc, ret, _, allowsFieldFlow, argApa, apa, config) and
-        (if allowsFieldFlow = false then ap instanceof ApNil else any())
+      exists(DataFlowCall call, ApApprox apa, boolean allowsFieldFlow, ApApprox innerArgApa |
+        returnFlowsThrough0(call, state, ccc, ap, apa, ret, p, argAp, innerArgApa, config) and
+        flowThroughOutOfCall(call, ccc, ret, _, allowsFieldFlow, innerArgApa, apa, config) and
+        pos = ret.getReturnPosition() and
+        if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
     pragma[nomagic]
     private predicate flowThroughIntoCall(
-      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp,
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp, Ap ap,
       Configuration config
     ) {
       exists(ApApprox argApa |
@@ -1620,7 +1607,7 @@ private module MkStage<StageSig PrevStage> {
           allowsFieldFlow, argApa, pragma[only_bind_into](config)) and
         fwdFlow(arg, _, _, _, _, pragma[only_bind_into](argAp), argApa,
           pragma[only_bind_into](config)) and
-        returnFlowsThrough(_, _, _, _, p, pragma[only_bind_into](argAp), _,
+        returnFlowsThrough(_, _, _, _, p, pragma[only_bind_into](argAp), ap,
           pragma[only_bind_into](config)) and
         if allowsFieldFlow = false then argAp instanceof ApNil else any()
       )
@@ -1639,12 +1626,13 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate flowOutOfCallAp(
-      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
+      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
       Ap ap, Configuration config
     ) {
       exists(ApApprox apa |
-        flowOutOfCallApa(call, ret, kind, out, allowsFieldFlow, apa, config) and
-        fwdFlow(ret, _, _, _, _, ap, apa, config)
+        flowOutOfCallApa(call, ret, _, out, allowsFieldFlow, apa, config) and
+        fwdFlow(ret, _, _, _, _, ap, apa, config) and
+        pos = ret.getReturnPosition()
       )
     }
 
@@ -1739,17 +1727,17 @@ private module MkStage<StageSig PrevStage> {
       )
       or
       // flow through a callable
-      exists(DataFlowCall call, ReturnKindExt returnKind0, Ap returnAp0 |
-        revFlowInToReturn(call, node, state, returnKind0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
+      exists(DataFlowCall call, ParamNodeEx p, ReturnPosition pos, Ap innerReturnAp |
+        revFlowThrough(call, returnCtx, p, state, pos, returnAp, ap, innerReturnAp, config) and
+        flowThroughIntoCall(call, node, p, _, ap, innerReturnAp, config)
       )
       or
       // flow out of a callable
-      exists(ReturnKindExt kind |
-        revFlowOut(_, node, kind, state, _, _, ap, config) and
-        if returnFlowsThrough(node, kind, state, _, _, _, ap, config)
+      exists(ReturnPosition pos |
+        revFlowOut(_, node, pos, state, _, _, ap, config) and
+        if returnFlowsThrough(node, pos, state, _, _, _, ap, config)
         then (
-          returnCtx = TReturnCtxMaybeFlowThrough(kind) and
+          returnCtx = TReturnCtxMaybeFlowThrough(pos) and
           returnAp = apSome(ap)
         ) else (
           returnCtx = TReturnCtxNoFlowThrough() and returnAp = apNone()
@@ -1782,47 +1770,33 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate revFlowOut(
-      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, FlowState state, ReturnCtx returnCtx,
+      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, FlowState state, ReturnCtx returnCtx,
       ApOption returnAp, Ap ap, Configuration config
     ) {
       exists(NodeEx out, boolean allowsFieldFlow |
         revFlow(out, state, returnCtx, returnAp, ap, config) and
-        flowOutOfCallAp(call, ret, kind, out, allowsFieldFlow, ap, config) and
+        flowOutOfCallAp(call, ret, pos, out, allowsFieldFlow, ap, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
-    /**
-     * Same as `flowThroughIntoCall`, but restricted to calls that are reached
-     * in the flow covered by `revFlow`, where data might flow through the target
-     * callable and back out at `call`.
-     */
-    pragma[nomagic]
-    private predicate revFlowThroughIntoCall(
-      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp,
-      Configuration config
-    ) {
-      flowThroughIntoCall(call, arg, p, allowsFieldFlow, argAp, config) and
-      revFlowIsReturned(call, _, _, _, _, config)
-    }
-
     pragma[nomagic]
     private predicate revFlowParamToReturn(
-      ParamNodeEx p, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap, Configuration config
+      ParamNodeEx p, FlowState state, ReturnPosition pos, Ap returnAp, Ap ap, Configuration config
     ) {
-      revFlow(p, state, TReturnCtxMaybeFlowThrough(kind), apSome(returnAp), ap, config) and
-      parameterFlowThroughAllowed(p, kind)
+      revFlow(pragma[only_bind_into](p), state, TReturnCtxMaybeFlowThrough(pos), apSome(returnAp),
+        pragma[only_bind_into](ap), pragma[only_bind_into](config)) and
+      parameterFlowThroughAllowed(p, pos.getKind()) and
+      PrevStage::parameterMayFlowThrough(p, getApprox(ap), config)
     }
 
     pragma[nomagic]
-    private predicate revFlowInToReturn(
-      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap,
-      Configuration config
+    private predicate revFlowThrough(
+      DataFlowCall call, ReturnCtx returnCtx, ParamNodeEx p, FlowState state, ReturnPosition pos,
+      ApOption returnAp, Ap ap, Ap innerReturnAp, Configuration config
     ) {
-      exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlowParamToReturn(p, state, kind, returnAp, ap, config) and
-        revFlowThroughIntoCall(call, arg, p, allowsFieldFlow, ap, config)
-      )
+      revFlowParamToReturn(p, state, pos, innerReturnAp, ap, config) and
+      revFlowIsReturned(call, returnCtx, returnAp, pos, innerReturnAp, config)
     }
 
     /**
@@ -1832,12 +1806,12 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate revFlowIsReturned(
-      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnKindExt kind, Ap ap,
+      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnPosition pos, Ap ap,
       Configuration config
     ) {
       exists(RetNodeEx ret, FlowState state, CcCall ccc |
-        revFlowOut(call, ret, kind, state, returnCtx, returnAp, ap, config) and
-        returnFlowsThrough(ret, kind, state, ccc, _, _, ap, config) and
+        revFlowOut(call, ret, pos, state, returnCtx, returnAp, ap, config) and
+        returnFlowsThrough(ret, pos, state, ccc, _, _, ap, config) and
         matchesCall(ccc, call)
       )
     }
@@ -1915,17 +1889,17 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate parameterFlowsThroughRev(
-      ParamNodeEx p, Ap ap, ReturnKindExt kind, Ap returnAp, Configuration config
+      ParamNodeEx p, Ap ap, ReturnPosition pos, Ap returnAp, Configuration config
     ) {
-      revFlow(p, _, TReturnCtxMaybeFlowThrough(kind), apSome(returnAp), ap, config) and
-      parameterFlowThroughAllowed(p, kind)
+      revFlow(p, _, TReturnCtxMaybeFlowThrough(pos), apSome(returnAp), ap, config) and
+      parameterFlowThroughAllowed(p, pos.getKind())
     }
 
     pragma[nomagic]
     predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
-      exists(RetNodeEx ret, ReturnKindExt kind |
-        returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
-        parameterFlowsThroughRev(p, ap, kind, _, config)
+      exists(RetNodeEx ret, ReturnPosition pos |
+        returnFlowsThrough(ret, pos, _, _, p, ap, _, config) and
+        parameterFlowsThroughRev(p, ap, pos, _, config)
       )
     }
 
@@ -1933,20 +1907,21 @@ private module MkStage<StageSig PrevStage> {
     predicate returnMayFlowThrough(
       RetNodeEx ret, Ap argAp, Ap ap, ReturnKindExt kind, Configuration config
     ) {
-      exists(ParamNodeEx p |
-        returnFlowsThrough(ret, kind, _, _, p, argAp, ap, config) and
-        parameterFlowsThroughRev(p, argAp, kind, ap, config)
+      exists(ParamNodeEx p, ReturnPosition pos |
+        returnFlowsThrough(ret, pos, _, _, p, argAp, ap, config) and
+        parameterFlowsThroughRev(p, argAp, pos, ap, config) and
+        kind = pos.getKind()
       )
     }
 
     pragma[nomagic]
-    predicate revFlowInToReturnIsReturned(
+    private predicate revFlowThroughArg(
       DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnCtx returnCtx, ApOption returnAp,
       Ap ap, Configuration config
     ) {
-      exists(ReturnKindExt returnKind0, Ap returnAp0 |
-        revFlowInToReturn(call, arg, state, returnKind0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
+      exists(ParamNodeEx p, ReturnPosition pos, Ap innerReturnAp |
+        revFlowThrough(call, returnCtx, p, state, pos, returnAp, ap, innerReturnAp, config) and
+        flowThroughIntoCall(call, arg, p, _, ap, innerReturnAp, config)
       )
     }
 
@@ -1954,7 +1929,7 @@ private module MkStage<StageSig PrevStage> {
     predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
       exists(ArgNodeEx arg, FlowState state, ReturnCtx returnCtx, ApOption returnAp, Ap ap |
         revFlow(arg, state, returnCtx, returnAp, ap, config) and
-        revFlowInToReturnIsReturned(call, arg, state, returnCtx, returnAp, ap, config)
+        revFlowThroughArg(call, arg, state, returnCtx, returnAp, ap, config)
       )
     }
 
@@ -1967,8 +1942,9 @@ private module MkStage<StageSig PrevStage> {
       conscand = count(TypedContent f0, Ap ap | fwdConsCand(f0, ap, config)) and
       states = count(FlowState state | fwdFlow(_, state, _, _, _, _, config)) and
       tuples =
-        count(NodeEx n, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-          Ap ap | fwdFlow(n, state, cc, summaryCtx, argAp, ap, config))
+        count(NodeEx n, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap |
+          fwdFlow(n, state, cc, summaryCtx, argAp, ap, config)
+        )
       or
       fwd = false and
       nodes = count(NodeEx node | revFlow(node, _, _, _, _, config)) and
@@ -2823,13 +2799,12 @@ private Configuration unbindConf(Configuration conf) {
 
 pragma[nomagic]
 private predicate nodeMayUseSummary0(
-  NodeEx n, DataFlowCallable c, ParameterPosition pos, FlowState state, AccessPathApprox apa,
-  Configuration config
+  NodeEx n, ParamNodeEx p, FlowState state, AccessPathApprox apa, Configuration config
 ) {
   exists(AccessPathApprox apa0 |
-    c = n.getEnclosingCallable() and
+    Stage5::parameterMayFlowThrough(p, _, _) and
     Stage5::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
-    Stage5::fwdFlow(n, state, any(CallContextCall ccc), TParameterPositionSome(pos),
+    Stage5::fwdFlow(n, state, any(CallContextCall ccc), TParamNodeSome(p.asNode()),
       TAccessPathApproxSome(apa), apa0, config)
   )
 }
@@ -2838,10 +2813,9 @@ pragma[nomagic]
 private predicate nodeMayUseSummary(
   NodeEx n, FlowState state, AccessPathApprox apa, Configuration config
 ) {
-  exists(DataFlowCallable c, ParameterPosition pos, ParamNodeEx p |
+  exists(ParamNodeEx p |
     Stage5::parameterMayFlowThrough(p, apa, config) and
-    nodeMayUseSummary0(n, c, pos, state, apa, config) and
-    p.isParameterOf(c, pos)
+    nodeMayUseSummary0(n, p, state, apa, config)
   )
 }
 
diff --git a/python/ql/lib/semmle/python/dataflow/new/internal/DataFlowImpl4.qll b/python/ql/lib/semmle/python/dataflow/new/internal/DataFlowImpl4.qll
index 6741ccc2f06..23d11a38842 100644
--- a/python/ql/lib/semmle/python/dataflow/new/internal/DataFlowImpl4.qll
+++ b/python/ql/lib/semmle/python/dataflow/new/internal/DataFlowImpl4.qll
@@ -1327,8 +1327,8 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     additional predicate fwdFlow(
-      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      Ap ap, ApApprox apa, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      ApApprox apa, Configuration config
     ) {
       fwdFlow0(node, state, cc, summaryCtx, argAp, ap, apa, config) and
       PrevStage::revFlow(node, state, apa, config) and
@@ -1337,21 +1337,21 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[inline]
     additional predicate fwdFlow(
-      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      Ap ap, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      Configuration config
     ) {
       fwdFlow(node, state, cc, summaryCtx, argAp, ap, _, config)
     }
 
     pragma[nomagic]
     private predicate fwdFlow0(
-      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      Ap ap, ApApprox apa, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      ApApprox apa, Configuration config
     ) {
       sourceNode(node, state, config) and
       (if hasSourceCallCtx(config) then cc = ccSomeCall() else cc = ccNone()) and
       argAp = apNone() and
-      summaryCtx = TParameterPositionNone() and
+      summaryCtx = TParamNodeNone() and
       ap = getApNil(node) and
       apa = getApprox(ap)
       or
@@ -1372,7 +1372,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, apa, pragma[only_bind_into](config)) and
         jumpStep(mid, node, config) and
         cc = ccNone() and
-        summaryCtx = TParameterPositionNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone()
       )
       or
@@ -1380,7 +1380,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, state, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStep(mid, node, config) and
         cc = ccNone() and
-        summaryCtx = TParameterPositionNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone() and
         ap = getApNil(node) and
         apa = getApprox(ap)
@@ -1390,7 +1390,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, state0, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStateStep(mid, state0, node, state, config) and
         cc = ccNone() and
-        summaryCtx = TParameterPositionNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone() and
         ap = getApNil(node) and
         apa = getApprox(ap)
@@ -1414,10 +1414,10 @@ private module MkStage<StageSig PrevStage> {
       fwdFlowIn(_, node, state, _, cc, _, _, ap, apa, config) and
       if PrevStage::parameterMayFlowThrough(node, apa, config)
       then (
-        summaryCtx = TParameterPositionSome(node.(ParamNodeEx).getPosition()) and
+        summaryCtx = TParamNodeSome(node.asNode()) and
         argAp = apSome(ap)
       ) else (
-        summaryCtx = TParameterPositionNone() and argAp = apNone()
+        summaryCtx = TParamNodeNone() and argAp = apNone()
       )
       or
       // flow out of a callable
@@ -1433,16 +1433,19 @@ private module MkStage<StageSig PrevStage> {
       )
       or
       // flow through a callable
-      exists(DataFlowCall call, ParameterPosition summaryCtx0, Ap argAp0 |
-        fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, apa, config) and
-        fwdFlowIsEntered(call, cc, summaryCtx, argAp, summaryCtx0, argAp0, config)
+      exists(
+        DataFlowCall call, CcCall ccc, RetNodeEx ret, boolean allowsFieldFlow, ApApprox innerArgApa
+      |
+        fwdFlowThrough(call, cc, state, ccc, summaryCtx, argAp, ap, apa, ret, innerArgApa, config) and
+        flowThroughOutOfCall(call, ccc, ret, node, allowsFieldFlow, innerArgApa, apa, config) and
+        if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
     pragma[nomagic]
     private predicate fwdFlowStore(
       NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc,
-      ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
+      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
     ) {
       exists(DataFlowType contentType, ApApprox apa1 |
         fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, apa1, config) and
@@ -1473,8 +1476,8 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowRead0(
-      NodeEx node1, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      ApNonNil ap, Configuration config
+      NodeEx node1, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, ApNonNil ap,
+      Configuration config
     ) {
       fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, _, _, config)
@@ -1483,7 +1486,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowRead(
       Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc,
-      ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
+      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
     ) {
       fwdFlowRead0(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, c, node2, config) and
@@ -1493,7 +1496,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowIn(
       DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, CcCall innercc,
-      ParameterPositionOption summaryCtx, ApOption argAp, Ap ap, ApApprox apa, Configuration config
+      ParamNodeOption summaryCtx, ApOption argAp, Ap ap, ApApprox apa, Configuration config
     ) {
       exists(ArgNodeEx arg, boolean allowsFieldFlow |
         fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, apa, config) and
@@ -1505,64 +1508,38 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowRetFromArg(
-      RetNodeEx ret, FlowState state, CcCall ccc, ParameterPosition summaryCtx, ParamNodeEx p,
-      Ap argAp, ApApprox argApa, Ap ap, ApApprox apa, Configuration config
+      RetNodeEx ret, FlowState state, CcCall ccc, ParamNodeEx summaryCtx, Ap argAp, ApApprox argApa,
+      Ap ap, ApApprox apa, Configuration config
     ) {
-      exists(DataFlowCallable c, ReturnKindExt kind |
+      exists(ReturnKindExt kind |
         fwdFlow(pragma[only_bind_into](ret), state, ccc,
-          TParameterPositionSome(pragma[only_bind_into](summaryCtx)), apSome(argAp), ap, apa, config) and
-        getApprox(argAp) = argApa and
-        c = ret.getEnclosingCallable() and
+          TParamNodeSome(pragma[only_bind_into](summaryCtx.asNode())),
+          pragma[only_bind_into](apSome(argAp)), ap, pragma[only_bind_into](apa),
+          pragma[only_bind_into](config)) and
         kind = ret.getKind() and
-        p.isParameterOf(c, pragma[only_bind_into](summaryCtx)) and
-        parameterFlowThroughAllowed(p, kind)
+        parameterFlowThroughAllowed(summaryCtx, kind) and
+        argApa = getApprox(argAp) and
+        PrevStage::returnMayFlowThrough(ret, argApa, apa, kind, pragma[only_bind_into](config))
       )
     }
 
     pragma[inline]
-    private predicate fwdFlowInMayFlowThrough(
-      DataFlowCall call, Cc cc, CcCall innerCc, ParameterPositionOption summaryCtx, ApOption argAp,
-      ParamNodeEx param, Ap ap, ApApprox apa, Configuration config
+    private predicate fwdFlowThrough0(
+      DataFlowCall call, Cc cc, FlowState state, CcCall ccc, ParamNodeOption summaryCtx,
+      ApOption argAp, Ap ap, ApApprox apa, RetNodeEx ret, ParamNodeEx innerSummaryCtx,
+      Ap innerArgAp, ApApprox innerArgApa, Configuration config
     ) {
-      fwdFlowIn(call, pragma[only_bind_into](param), _, cc, innerCc, summaryCtx, argAp, ap,
-        pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
-      PrevStage::parameterMayFlowThrough(param, apa, config)
-    }
-
-    // dedup before joining with `flowThroughOutOfCall`
-    pragma[nomagic]
-    private predicate fwdFlowInMayFlowThroughProj(
-      DataFlowCall call, CcCall innerCc, ApApprox apa, Configuration config
-    ) {
-      fwdFlowInMayFlowThrough(call, _, innerCc, _, _, _, _, apa, config)
-    }
-
-    /**
-     * Same as `flowThroughOutOfCall`, but restricted to calls that are reached
-     * in the flow covered by `fwdFlow`, where data might flow through the target
-     * callable and back out at `call`.
-     */
-    pragma[nomagic]
-    private predicate fwdFlowThroughOutOfCall(
-      DataFlowCall call, CcCall ccc, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow,
-      ApApprox argApa, ApApprox apa, Configuration config
-    ) {
-      fwdFlowInMayFlowThroughProj(call, ccc, argApa, config) and
-      flowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, argApa, apa, config)
+      fwdFlowRetFromArg(ret, state, ccc, innerSummaryCtx, innerArgAp, innerArgApa, ap, apa, config) and
+      fwdFlowIsEntered(call, cc, ccc, summaryCtx, argAp, innerSummaryCtx, innerArgAp, config)
     }
 
     pragma[nomagic]
-    private predicate fwdFlowOutFromArg(
-      DataFlowCall call, NodeEx out, FlowState state, ParameterPosition summaryCtx, Ap argAp, Ap ap,
-      ApApprox apa, Configuration config
+    private predicate fwdFlowThrough(
+      DataFlowCall call, Cc cc, FlowState state, CcCall ccc, ParamNodeOption summaryCtx,
+      ApOption argAp, Ap ap, ApApprox apa, RetNodeEx ret, ApApprox innerArgApa, Configuration config
     ) {
-      exists(RetNodeEx ret, boolean allowsFieldFlow, CcCall ccc, ApApprox argApa |
-        fwdFlowRetFromArg(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc),
-          summaryCtx, _, argAp, pragma[only_bind_into](argApa), ap, pragma[only_bind_into](apa),
-          config) and
-        fwdFlowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, argApa, apa, config) and
-        (if allowsFieldFlow = false then ap instanceof ApNil else any())
-      )
+      fwdFlowThrough0(call, cc, state, ccc, summaryCtx, argAp, ap, apa, ret, _, _, innerArgApa,
+        config)
     }
 
     /**
@@ -1571,12 +1548,14 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate fwdFlowIsEntered(
-      DataFlowCall call, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      ParameterPosition pos, Ap ap, Configuration config
+      DataFlowCall call, Cc cc, CcCall innerCc, ParamNodeOption summaryCtx, ApOption argAp,
+      ParamNodeEx p, Ap ap, Configuration config
     ) {
-      exists(ParamNodeEx param |
-        fwdFlowInMayFlowThrough(call, cc, _, summaryCtx, argAp, param, ap, _, config) and
-        pos = param.getPosition()
+      exists(ApApprox apa |
+        fwdFlowIn(call, pragma[only_bind_into](p), _, cc, innerCc, summaryCtx, argAp, ap,
+          pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
+        PrevStage::parameterMayFlowThrough(p, apa, config) and
+        PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config))
       )
     }
 
@@ -1596,23 +1575,31 @@ private module MkStage<StageSig PrevStage> {
       fwdFlowConsCand(ap1, c, ap2, config)
     }
 
+    pragma[nomagic]
+    private predicate returnFlowsThrough0(
+      DataFlowCall call, FlowState state, CcCall ccc, Ap ap, ApApprox apa, RetNodeEx ret,
+      ParamNodeEx innerSummaryCtx, Ap innerArgAp, ApApprox innerArgApa, Configuration config
+    ) {
+      fwdFlowThrough0(call, _, state, ccc, _, _, ap, apa, ret, innerSummaryCtx, innerArgAp,
+        innerArgApa, config)
+    }
+
     pragma[nomagic]
     private predicate returnFlowsThrough(
-      RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, ParamNodeEx p, Ap argAp,
+      RetNodeEx ret, ReturnPosition pos, FlowState state, CcCall ccc, ParamNodeEx p, Ap argAp,
       Ap ap, Configuration config
     ) {
-      exists(boolean allowsFieldFlow, ApApprox argApa, ApApprox apa |
-        fwdFlowRetFromArg(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc), _, p,
-          argAp, pragma[only_bind_into](argApa), ap, pragma[only_bind_into](apa), config) and
-        kind = ret.getKind() and
-        fwdFlowThroughOutOfCall(_, ccc, ret, _, allowsFieldFlow, argApa, apa, config) and
-        (if allowsFieldFlow = false then ap instanceof ApNil else any())
+      exists(DataFlowCall call, ApApprox apa, boolean allowsFieldFlow, ApApprox innerArgApa |
+        returnFlowsThrough0(call, state, ccc, ap, apa, ret, p, argAp, innerArgApa, config) and
+        flowThroughOutOfCall(call, ccc, ret, _, allowsFieldFlow, innerArgApa, apa, config) and
+        pos = ret.getReturnPosition() and
+        if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
     pragma[nomagic]
     private predicate flowThroughIntoCall(
-      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp,
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp, Ap ap,
       Configuration config
     ) {
       exists(ApApprox argApa |
@@ -1620,7 +1607,7 @@ private module MkStage<StageSig PrevStage> {
           allowsFieldFlow, argApa, pragma[only_bind_into](config)) and
         fwdFlow(arg, _, _, _, _, pragma[only_bind_into](argAp), argApa,
           pragma[only_bind_into](config)) and
-        returnFlowsThrough(_, _, _, _, p, pragma[only_bind_into](argAp), _,
+        returnFlowsThrough(_, _, _, _, p, pragma[only_bind_into](argAp), ap,
           pragma[only_bind_into](config)) and
         if allowsFieldFlow = false then argAp instanceof ApNil else any()
       )
@@ -1639,12 +1626,13 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate flowOutOfCallAp(
-      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
+      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
       Ap ap, Configuration config
     ) {
       exists(ApApprox apa |
-        flowOutOfCallApa(call, ret, kind, out, allowsFieldFlow, apa, config) and
-        fwdFlow(ret, _, _, _, _, ap, apa, config)
+        flowOutOfCallApa(call, ret, _, out, allowsFieldFlow, apa, config) and
+        fwdFlow(ret, _, _, _, _, ap, apa, config) and
+        pos = ret.getReturnPosition()
       )
     }
 
@@ -1739,17 +1727,17 @@ private module MkStage<StageSig PrevStage> {
       )
       or
       // flow through a callable
-      exists(DataFlowCall call, ReturnKindExt returnKind0, Ap returnAp0 |
-        revFlowInToReturn(call, node, state, returnKind0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
+      exists(DataFlowCall call, ParamNodeEx p, ReturnPosition pos, Ap innerReturnAp |
+        revFlowThrough(call, returnCtx, p, state, pos, returnAp, ap, innerReturnAp, config) and
+        flowThroughIntoCall(call, node, p, _, ap, innerReturnAp, config)
       )
       or
       // flow out of a callable
-      exists(ReturnKindExt kind |
-        revFlowOut(_, node, kind, state, _, _, ap, config) and
-        if returnFlowsThrough(node, kind, state, _, _, _, ap, config)
+      exists(ReturnPosition pos |
+        revFlowOut(_, node, pos, state, _, _, ap, config) and
+        if returnFlowsThrough(node, pos, state, _, _, _, ap, config)
         then (
-          returnCtx = TReturnCtxMaybeFlowThrough(kind) and
+          returnCtx = TReturnCtxMaybeFlowThrough(pos) and
           returnAp = apSome(ap)
         ) else (
           returnCtx = TReturnCtxNoFlowThrough() and returnAp = apNone()
@@ -1782,47 +1770,33 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate revFlowOut(
-      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, FlowState state, ReturnCtx returnCtx,
+      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, FlowState state, ReturnCtx returnCtx,
       ApOption returnAp, Ap ap, Configuration config
     ) {
       exists(NodeEx out, boolean allowsFieldFlow |
         revFlow(out, state, returnCtx, returnAp, ap, config) and
-        flowOutOfCallAp(call, ret, kind, out, allowsFieldFlow, ap, config) and
+        flowOutOfCallAp(call, ret, pos, out, allowsFieldFlow, ap, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
-    /**
-     * Same as `flowThroughIntoCall`, but restricted to calls that are reached
-     * in the flow covered by `revFlow`, where data might flow through the target
-     * callable and back out at `call`.
-     */
-    pragma[nomagic]
-    private predicate revFlowThroughIntoCall(
-      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp,
-      Configuration config
-    ) {
-      flowThroughIntoCall(call, arg, p, allowsFieldFlow, argAp, config) and
-      revFlowIsReturned(call, _, _, _, _, config)
-    }
-
     pragma[nomagic]
     private predicate revFlowParamToReturn(
-      ParamNodeEx p, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap, Configuration config
+      ParamNodeEx p, FlowState state, ReturnPosition pos, Ap returnAp, Ap ap, Configuration config
     ) {
-      revFlow(p, state, TReturnCtxMaybeFlowThrough(kind), apSome(returnAp), ap, config) and
-      parameterFlowThroughAllowed(p, kind)
+      revFlow(pragma[only_bind_into](p), state, TReturnCtxMaybeFlowThrough(pos), apSome(returnAp),
+        pragma[only_bind_into](ap), pragma[only_bind_into](config)) and
+      parameterFlowThroughAllowed(p, pos.getKind()) and
+      PrevStage::parameterMayFlowThrough(p, getApprox(ap), config)
     }
 
     pragma[nomagic]
-    private predicate revFlowInToReturn(
-      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap,
-      Configuration config
+    private predicate revFlowThrough(
+      DataFlowCall call, ReturnCtx returnCtx, ParamNodeEx p, FlowState state, ReturnPosition pos,
+      ApOption returnAp, Ap ap, Ap innerReturnAp, Configuration config
     ) {
-      exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlowParamToReturn(p, state, kind, returnAp, ap, config) and
-        revFlowThroughIntoCall(call, arg, p, allowsFieldFlow, ap, config)
-      )
+      revFlowParamToReturn(p, state, pos, innerReturnAp, ap, config) and
+      revFlowIsReturned(call, returnCtx, returnAp, pos, innerReturnAp, config)
     }
 
     /**
@@ -1832,12 +1806,12 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate revFlowIsReturned(
-      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnKindExt kind, Ap ap,
+      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnPosition pos, Ap ap,
       Configuration config
     ) {
       exists(RetNodeEx ret, FlowState state, CcCall ccc |
-        revFlowOut(call, ret, kind, state, returnCtx, returnAp, ap, config) and
-        returnFlowsThrough(ret, kind, state, ccc, _, _, ap, config) and
+        revFlowOut(call, ret, pos, state, returnCtx, returnAp, ap, config) and
+        returnFlowsThrough(ret, pos, state, ccc, _, _, ap, config) and
         matchesCall(ccc, call)
       )
     }
@@ -1915,17 +1889,17 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate parameterFlowsThroughRev(
-      ParamNodeEx p, Ap ap, ReturnKindExt kind, Ap returnAp, Configuration config
+      ParamNodeEx p, Ap ap, ReturnPosition pos, Ap returnAp, Configuration config
     ) {
-      revFlow(p, _, TReturnCtxMaybeFlowThrough(kind), apSome(returnAp), ap, config) and
-      parameterFlowThroughAllowed(p, kind)
+      revFlow(p, _, TReturnCtxMaybeFlowThrough(pos), apSome(returnAp), ap, config) and
+      parameterFlowThroughAllowed(p, pos.getKind())
     }
 
     pragma[nomagic]
     predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
-      exists(RetNodeEx ret, ReturnKindExt kind |
-        returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
-        parameterFlowsThroughRev(p, ap, kind, _, config)
+      exists(RetNodeEx ret, ReturnPosition pos |
+        returnFlowsThrough(ret, pos, _, _, p, ap, _, config) and
+        parameterFlowsThroughRev(p, ap, pos, _, config)
       )
     }
 
@@ -1933,20 +1907,21 @@ private module MkStage<StageSig PrevStage> {
     predicate returnMayFlowThrough(
       RetNodeEx ret, Ap argAp, Ap ap, ReturnKindExt kind, Configuration config
     ) {
-      exists(ParamNodeEx p |
-        returnFlowsThrough(ret, kind, _, _, p, argAp, ap, config) and
-        parameterFlowsThroughRev(p, argAp, kind, ap, config)
+      exists(ParamNodeEx p, ReturnPosition pos |
+        returnFlowsThrough(ret, pos, _, _, p, argAp, ap, config) and
+        parameterFlowsThroughRev(p, argAp, pos, ap, config) and
+        kind = pos.getKind()
       )
     }
 
     pragma[nomagic]
-    predicate revFlowInToReturnIsReturned(
+    private predicate revFlowThroughArg(
       DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnCtx returnCtx, ApOption returnAp,
       Ap ap, Configuration config
     ) {
-      exists(ReturnKindExt returnKind0, Ap returnAp0 |
-        revFlowInToReturn(call, arg, state, returnKind0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
+      exists(ParamNodeEx p, ReturnPosition pos, Ap innerReturnAp |
+        revFlowThrough(call, returnCtx, p, state, pos, returnAp, ap, innerReturnAp, config) and
+        flowThroughIntoCall(call, arg, p, _, ap, innerReturnAp, config)
       )
     }
 
@@ -1954,7 +1929,7 @@ private module MkStage<StageSig PrevStage> {
     predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
       exists(ArgNodeEx arg, FlowState state, ReturnCtx returnCtx, ApOption returnAp, Ap ap |
         revFlow(arg, state, returnCtx, returnAp, ap, config) and
-        revFlowInToReturnIsReturned(call, arg, state, returnCtx, returnAp, ap, config)
+        revFlowThroughArg(call, arg, state, returnCtx, returnAp, ap, config)
       )
     }
 
@@ -1967,8 +1942,9 @@ private module MkStage<StageSig PrevStage> {
       conscand = count(TypedContent f0, Ap ap | fwdConsCand(f0, ap, config)) and
       states = count(FlowState state | fwdFlow(_, state, _, _, _, _, config)) and
       tuples =
-        count(NodeEx n, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-          Ap ap | fwdFlow(n, state, cc, summaryCtx, argAp, ap, config))
+        count(NodeEx n, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap |
+          fwdFlow(n, state, cc, summaryCtx, argAp, ap, config)
+        )
       or
       fwd = false and
       nodes = count(NodeEx node | revFlow(node, _, _, _, _, config)) and
@@ -2823,13 +2799,12 @@ private Configuration unbindConf(Configuration conf) {
 
 pragma[nomagic]
 private predicate nodeMayUseSummary0(
-  NodeEx n, DataFlowCallable c, ParameterPosition pos, FlowState state, AccessPathApprox apa,
-  Configuration config
+  NodeEx n, ParamNodeEx p, FlowState state, AccessPathApprox apa, Configuration config
 ) {
   exists(AccessPathApprox apa0 |
-    c = n.getEnclosingCallable() and
+    Stage5::parameterMayFlowThrough(p, _, _) and
     Stage5::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
-    Stage5::fwdFlow(n, state, any(CallContextCall ccc), TParameterPositionSome(pos),
+    Stage5::fwdFlow(n, state, any(CallContextCall ccc), TParamNodeSome(p.asNode()),
       TAccessPathApproxSome(apa), apa0, config)
   )
 }
@@ -2838,10 +2813,9 @@ pragma[nomagic]
 private predicate nodeMayUseSummary(
   NodeEx n, FlowState state, AccessPathApprox apa, Configuration config
 ) {
-  exists(DataFlowCallable c, ParameterPosition pos, ParamNodeEx p |
+  exists(ParamNodeEx p |
     Stage5::parameterMayFlowThrough(p, apa, config) and
-    nodeMayUseSummary0(n, c, pos, state, apa, config) and
-    p.isParameterOf(c, pos)
+    nodeMayUseSummary0(n, p, state, apa, config)
   )
 }
 
diff --git a/python/ql/lib/semmle/python/dataflow/new/internal/DataFlowImplCommon.qll b/python/ql/lib/semmle/python/dataflow/new/internal/DataFlowImplCommon.qll
index c66aefced8d..9aa6a529a5b 100644
--- a/python/ql/lib/semmle/python/dataflow/new/internal/DataFlowImplCommon.qll
+++ b/python/ql/lib/semmle/python/dataflow/new/internal/DataFlowImplCommon.qll
@@ -916,15 +916,15 @@ private module Cached {
     TDataFlowCallSome(DataFlowCall call)
 
   cached
-  newtype TParameterPositionOption =
-    TParameterPositionNone() or
-    TParameterPositionSome(ParameterPosition pos)
+  newtype TParamNodeOption =
+    TParamNodeNone() or
+    TParamNodeSome(ParamNode p)
 
   cached
   newtype TReturnCtx =
     TReturnCtxNone() or
     TReturnCtxNoFlowThrough() or
-    TReturnCtxMaybeFlowThrough(ReturnKindExt kind)
+    TReturnCtxMaybeFlowThrough(ReturnPosition pos)
 
   cached
   newtype TTypedContentApprox =
@@ -1343,15 +1343,15 @@ class DataFlowCallOption extends TDataFlowCallOption {
   }
 }
 
-/** An optional `ParameterPosition`. */
-class ParameterPositionOption extends TParameterPositionOption {
+/** An optional `ParamNode`. */
+class ParamNodeOption extends TParamNodeOption {
   string toString() {
-    this = TParameterPositionNone() and
+    this = TParamNodeNone() and
     result = "(none)"
     or
-    exists(ParameterPosition pos |
-      this = TParameterPositionSome(pos) and
-      result = pos.toString()
+    exists(ParamNode p |
+      this = TParamNodeSome(p) and
+      result = p.toString()
     )
   }
 }
@@ -1363,7 +1363,7 @@ class ParameterPositionOption extends TParameterPositionOption {
  *
  * - `TReturnCtxNone()`: no return flow.
  * - `TReturnCtxNoFlowThrough()`: return flow, but flow through is not possible.
- * - `TReturnCtxMaybeFlowThrough(ReturnKindExt kind)`: return flow, of kind `kind`, and
+ * - `TReturnCtxMaybeFlowThrough(ReturnPosition pos)`: return flow, of kind `pos`, and
  *    flow through may be possible.
  */
 class ReturnCtx extends TReturnCtx {
@@ -1374,9 +1374,9 @@ class ReturnCtx extends TReturnCtx {
     this = TReturnCtxNoFlowThrough() and
     result = "(no flow through)"
     or
-    exists(ReturnKindExt kind |
-      this = TReturnCtxMaybeFlowThrough(kind) and
-      result = kind.toString()
+    exists(ReturnPosition pos |
+      this = TReturnCtxMaybeFlowThrough(pos) and
+      result = pos.toString()
     )
   }
 }
diff --git a/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImpl2.qll b/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImpl2.qll
index 6741ccc2f06..23d11a38842 100644
--- a/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImpl2.qll
+++ b/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImpl2.qll
@@ -1327,8 +1327,8 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     additional predicate fwdFlow(
-      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      Ap ap, ApApprox apa, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      ApApprox apa, Configuration config
     ) {
       fwdFlow0(node, state, cc, summaryCtx, argAp, ap, apa, config) and
       PrevStage::revFlow(node, state, apa, config) and
@@ -1337,21 +1337,21 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[inline]
     additional predicate fwdFlow(
-      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      Ap ap, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      Configuration config
     ) {
       fwdFlow(node, state, cc, summaryCtx, argAp, ap, _, config)
     }
 
     pragma[nomagic]
     private predicate fwdFlow0(
-      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      Ap ap, ApApprox apa, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      ApApprox apa, Configuration config
     ) {
       sourceNode(node, state, config) and
       (if hasSourceCallCtx(config) then cc = ccSomeCall() else cc = ccNone()) and
       argAp = apNone() and
-      summaryCtx = TParameterPositionNone() and
+      summaryCtx = TParamNodeNone() and
       ap = getApNil(node) and
       apa = getApprox(ap)
       or
@@ -1372,7 +1372,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, apa, pragma[only_bind_into](config)) and
         jumpStep(mid, node, config) and
         cc = ccNone() and
-        summaryCtx = TParameterPositionNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone()
       )
       or
@@ -1380,7 +1380,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, state, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStep(mid, node, config) and
         cc = ccNone() and
-        summaryCtx = TParameterPositionNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone() and
         ap = getApNil(node) and
         apa = getApprox(ap)
@@ -1390,7 +1390,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, state0, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStateStep(mid, state0, node, state, config) and
         cc = ccNone() and
-        summaryCtx = TParameterPositionNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone() and
         ap = getApNil(node) and
         apa = getApprox(ap)
@@ -1414,10 +1414,10 @@ private module MkStage<StageSig PrevStage> {
       fwdFlowIn(_, node, state, _, cc, _, _, ap, apa, config) and
       if PrevStage::parameterMayFlowThrough(node, apa, config)
       then (
-        summaryCtx = TParameterPositionSome(node.(ParamNodeEx).getPosition()) and
+        summaryCtx = TParamNodeSome(node.asNode()) and
         argAp = apSome(ap)
       ) else (
-        summaryCtx = TParameterPositionNone() and argAp = apNone()
+        summaryCtx = TParamNodeNone() and argAp = apNone()
       )
       or
       // flow out of a callable
@@ -1433,16 +1433,19 @@ private module MkStage<StageSig PrevStage> {
       )
       or
       // flow through a callable
-      exists(DataFlowCall call, ParameterPosition summaryCtx0, Ap argAp0 |
-        fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, apa, config) and
-        fwdFlowIsEntered(call, cc, summaryCtx, argAp, summaryCtx0, argAp0, config)
+      exists(
+        DataFlowCall call, CcCall ccc, RetNodeEx ret, boolean allowsFieldFlow, ApApprox innerArgApa
+      |
+        fwdFlowThrough(call, cc, state, ccc, summaryCtx, argAp, ap, apa, ret, innerArgApa, config) and
+        flowThroughOutOfCall(call, ccc, ret, node, allowsFieldFlow, innerArgApa, apa, config) and
+        if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
     pragma[nomagic]
     private predicate fwdFlowStore(
       NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc,
-      ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
+      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
     ) {
       exists(DataFlowType contentType, ApApprox apa1 |
         fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, apa1, config) and
@@ -1473,8 +1476,8 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowRead0(
-      NodeEx node1, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      ApNonNil ap, Configuration config
+      NodeEx node1, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, ApNonNil ap,
+      Configuration config
     ) {
       fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, _, _, config)
@@ -1483,7 +1486,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowRead(
       Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc,
-      ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
+      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
     ) {
       fwdFlowRead0(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, c, node2, config) and
@@ -1493,7 +1496,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowIn(
       DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, CcCall innercc,
-      ParameterPositionOption summaryCtx, ApOption argAp, Ap ap, ApApprox apa, Configuration config
+      ParamNodeOption summaryCtx, ApOption argAp, Ap ap, ApApprox apa, Configuration config
     ) {
       exists(ArgNodeEx arg, boolean allowsFieldFlow |
         fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, apa, config) and
@@ -1505,64 +1508,38 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowRetFromArg(
-      RetNodeEx ret, FlowState state, CcCall ccc, ParameterPosition summaryCtx, ParamNodeEx p,
-      Ap argAp, ApApprox argApa, Ap ap, ApApprox apa, Configuration config
+      RetNodeEx ret, FlowState state, CcCall ccc, ParamNodeEx summaryCtx, Ap argAp, ApApprox argApa,
+      Ap ap, ApApprox apa, Configuration config
     ) {
-      exists(DataFlowCallable c, ReturnKindExt kind |
+      exists(ReturnKindExt kind |
         fwdFlow(pragma[only_bind_into](ret), state, ccc,
-          TParameterPositionSome(pragma[only_bind_into](summaryCtx)), apSome(argAp), ap, apa, config) and
-        getApprox(argAp) = argApa and
-        c = ret.getEnclosingCallable() and
+          TParamNodeSome(pragma[only_bind_into](summaryCtx.asNode())),
+          pragma[only_bind_into](apSome(argAp)), ap, pragma[only_bind_into](apa),
+          pragma[only_bind_into](config)) and
         kind = ret.getKind() and
-        p.isParameterOf(c, pragma[only_bind_into](summaryCtx)) and
-        parameterFlowThroughAllowed(p, kind)
+        parameterFlowThroughAllowed(summaryCtx, kind) and
+        argApa = getApprox(argAp) and
+        PrevStage::returnMayFlowThrough(ret, argApa, apa, kind, pragma[only_bind_into](config))
       )
     }
 
     pragma[inline]
-    private predicate fwdFlowInMayFlowThrough(
-      DataFlowCall call, Cc cc, CcCall innerCc, ParameterPositionOption summaryCtx, ApOption argAp,
-      ParamNodeEx param, Ap ap, ApApprox apa, Configuration config
+    private predicate fwdFlowThrough0(
+      DataFlowCall call, Cc cc, FlowState state, CcCall ccc, ParamNodeOption summaryCtx,
+      ApOption argAp, Ap ap, ApApprox apa, RetNodeEx ret, ParamNodeEx innerSummaryCtx,
+      Ap innerArgAp, ApApprox innerArgApa, Configuration config
     ) {
-      fwdFlowIn(call, pragma[only_bind_into](param), _, cc, innerCc, summaryCtx, argAp, ap,
-        pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
-      PrevStage::parameterMayFlowThrough(param, apa, config)
-    }
-
-    // dedup before joining with `flowThroughOutOfCall`
-    pragma[nomagic]
-    private predicate fwdFlowInMayFlowThroughProj(
-      DataFlowCall call, CcCall innerCc, ApApprox apa, Configuration config
-    ) {
-      fwdFlowInMayFlowThrough(call, _, innerCc, _, _, _, _, apa, config)
-    }
-
-    /**
-     * Same as `flowThroughOutOfCall`, but restricted to calls that are reached
-     * in the flow covered by `fwdFlow`, where data might flow through the target
-     * callable and back out at `call`.
-     */
-    pragma[nomagic]
-    private predicate fwdFlowThroughOutOfCall(
-      DataFlowCall call, CcCall ccc, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow,
-      ApApprox argApa, ApApprox apa, Configuration config
-    ) {
-      fwdFlowInMayFlowThroughProj(call, ccc, argApa, config) and
-      flowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, argApa, apa, config)
+      fwdFlowRetFromArg(ret, state, ccc, innerSummaryCtx, innerArgAp, innerArgApa, ap, apa, config) and
+      fwdFlowIsEntered(call, cc, ccc, summaryCtx, argAp, innerSummaryCtx, innerArgAp, config)
     }
 
     pragma[nomagic]
-    private predicate fwdFlowOutFromArg(
-      DataFlowCall call, NodeEx out, FlowState state, ParameterPosition summaryCtx, Ap argAp, Ap ap,
-      ApApprox apa, Configuration config
+    private predicate fwdFlowThrough(
+      DataFlowCall call, Cc cc, FlowState state, CcCall ccc, ParamNodeOption summaryCtx,
+      ApOption argAp, Ap ap, ApApprox apa, RetNodeEx ret, ApApprox innerArgApa, Configuration config
     ) {
-      exists(RetNodeEx ret, boolean allowsFieldFlow, CcCall ccc, ApApprox argApa |
-        fwdFlowRetFromArg(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc),
-          summaryCtx, _, argAp, pragma[only_bind_into](argApa), ap, pragma[only_bind_into](apa),
-          config) and
-        fwdFlowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, argApa, apa, config) and
-        (if allowsFieldFlow = false then ap instanceof ApNil else any())
-      )
+      fwdFlowThrough0(call, cc, state, ccc, summaryCtx, argAp, ap, apa, ret, _, _, innerArgApa,
+        config)
     }
 
     /**
@@ -1571,12 +1548,14 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate fwdFlowIsEntered(
-      DataFlowCall call, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      ParameterPosition pos, Ap ap, Configuration config
+      DataFlowCall call, Cc cc, CcCall innerCc, ParamNodeOption summaryCtx, ApOption argAp,
+      ParamNodeEx p, Ap ap, Configuration config
     ) {
-      exists(ParamNodeEx param |
-        fwdFlowInMayFlowThrough(call, cc, _, summaryCtx, argAp, param, ap, _, config) and
-        pos = param.getPosition()
+      exists(ApApprox apa |
+        fwdFlowIn(call, pragma[only_bind_into](p), _, cc, innerCc, summaryCtx, argAp, ap,
+          pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
+        PrevStage::parameterMayFlowThrough(p, apa, config) and
+        PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config))
       )
     }
 
@@ -1596,23 +1575,31 @@ private module MkStage<StageSig PrevStage> {
       fwdFlowConsCand(ap1, c, ap2, config)
     }
 
+    pragma[nomagic]
+    private predicate returnFlowsThrough0(
+      DataFlowCall call, FlowState state, CcCall ccc, Ap ap, ApApprox apa, RetNodeEx ret,
+      ParamNodeEx innerSummaryCtx, Ap innerArgAp, ApApprox innerArgApa, Configuration config
+    ) {
+      fwdFlowThrough0(call, _, state, ccc, _, _, ap, apa, ret, innerSummaryCtx, innerArgAp,
+        innerArgApa, config)
+    }
+
     pragma[nomagic]
     private predicate returnFlowsThrough(
-      RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, ParamNodeEx p, Ap argAp,
+      RetNodeEx ret, ReturnPosition pos, FlowState state, CcCall ccc, ParamNodeEx p, Ap argAp,
       Ap ap, Configuration config
     ) {
-      exists(boolean allowsFieldFlow, ApApprox argApa, ApApprox apa |
-        fwdFlowRetFromArg(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc), _, p,
-          argAp, pragma[only_bind_into](argApa), ap, pragma[only_bind_into](apa), config) and
-        kind = ret.getKind() and
-        fwdFlowThroughOutOfCall(_, ccc, ret, _, allowsFieldFlow, argApa, apa, config) and
-        (if allowsFieldFlow = false then ap instanceof ApNil else any())
+      exists(DataFlowCall call, ApApprox apa, boolean allowsFieldFlow, ApApprox innerArgApa |
+        returnFlowsThrough0(call, state, ccc, ap, apa, ret, p, argAp, innerArgApa, config) and
+        flowThroughOutOfCall(call, ccc, ret, _, allowsFieldFlow, innerArgApa, apa, config) and
+        pos = ret.getReturnPosition() and
+        if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
     pragma[nomagic]
     private predicate flowThroughIntoCall(
-      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp,
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp, Ap ap,
       Configuration config
     ) {
       exists(ApApprox argApa |
@@ -1620,7 +1607,7 @@ private module MkStage<StageSig PrevStage> {
           allowsFieldFlow, argApa, pragma[only_bind_into](config)) and
         fwdFlow(arg, _, _, _, _, pragma[only_bind_into](argAp), argApa,
           pragma[only_bind_into](config)) and
-        returnFlowsThrough(_, _, _, _, p, pragma[only_bind_into](argAp), _,
+        returnFlowsThrough(_, _, _, _, p, pragma[only_bind_into](argAp), ap,
           pragma[only_bind_into](config)) and
         if allowsFieldFlow = false then argAp instanceof ApNil else any()
       )
@@ -1639,12 +1626,13 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate flowOutOfCallAp(
-      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
+      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
       Ap ap, Configuration config
     ) {
       exists(ApApprox apa |
-        flowOutOfCallApa(call, ret, kind, out, allowsFieldFlow, apa, config) and
-        fwdFlow(ret, _, _, _, _, ap, apa, config)
+        flowOutOfCallApa(call, ret, _, out, allowsFieldFlow, apa, config) and
+        fwdFlow(ret, _, _, _, _, ap, apa, config) and
+        pos = ret.getReturnPosition()
       )
     }
 
@@ -1739,17 +1727,17 @@ private module MkStage<StageSig PrevStage> {
       )
       or
       // flow through a callable
-      exists(DataFlowCall call, ReturnKindExt returnKind0, Ap returnAp0 |
-        revFlowInToReturn(call, node, state, returnKind0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
+      exists(DataFlowCall call, ParamNodeEx p, ReturnPosition pos, Ap innerReturnAp |
+        revFlowThrough(call, returnCtx, p, state, pos, returnAp, ap, innerReturnAp, config) and
+        flowThroughIntoCall(call, node, p, _, ap, innerReturnAp, config)
       )
       or
       // flow out of a callable
-      exists(ReturnKindExt kind |
-        revFlowOut(_, node, kind, state, _, _, ap, config) and
-        if returnFlowsThrough(node, kind, state, _, _, _, ap, config)
+      exists(ReturnPosition pos |
+        revFlowOut(_, node, pos, state, _, _, ap, config) and
+        if returnFlowsThrough(node, pos, state, _, _, _, ap, config)
         then (
-          returnCtx = TReturnCtxMaybeFlowThrough(kind) and
+          returnCtx = TReturnCtxMaybeFlowThrough(pos) and
           returnAp = apSome(ap)
         ) else (
           returnCtx = TReturnCtxNoFlowThrough() and returnAp = apNone()
@@ -1782,47 +1770,33 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate revFlowOut(
-      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, FlowState state, ReturnCtx returnCtx,
+      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, FlowState state, ReturnCtx returnCtx,
       ApOption returnAp, Ap ap, Configuration config
     ) {
       exists(NodeEx out, boolean allowsFieldFlow |
         revFlow(out, state, returnCtx, returnAp, ap, config) and
-        flowOutOfCallAp(call, ret, kind, out, allowsFieldFlow, ap, config) and
+        flowOutOfCallAp(call, ret, pos, out, allowsFieldFlow, ap, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
-    /**
-     * Same as `flowThroughIntoCall`, but restricted to calls that are reached
-     * in the flow covered by `revFlow`, where data might flow through the target
-     * callable and back out at `call`.
-     */
-    pragma[nomagic]
-    private predicate revFlowThroughIntoCall(
-      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp,
-      Configuration config
-    ) {
-      flowThroughIntoCall(call, arg, p, allowsFieldFlow, argAp, config) and
-      revFlowIsReturned(call, _, _, _, _, config)
-    }
-
     pragma[nomagic]
     private predicate revFlowParamToReturn(
-      ParamNodeEx p, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap, Configuration config
+      ParamNodeEx p, FlowState state, ReturnPosition pos, Ap returnAp, Ap ap, Configuration config
     ) {
-      revFlow(p, state, TReturnCtxMaybeFlowThrough(kind), apSome(returnAp), ap, config) and
-      parameterFlowThroughAllowed(p, kind)
+      revFlow(pragma[only_bind_into](p), state, TReturnCtxMaybeFlowThrough(pos), apSome(returnAp),
+        pragma[only_bind_into](ap), pragma[only_bind_into](config)) and
+      parameterFlowThroughAllowed(p, pos.getKind()) and
+      PrevStage::parameterMayFlowThrough(p, getApprox(ap), config)
     }
 
     pragma[nomagic]
-    private predicate revFlowInToReturn(
-      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap,
-      Configuration config
+    private predicate revFlowThrough(
+      DataFlowCall call, ReturnCtx returnCtx, ParamNodeEx p, FlowState state, ReturnPosition pos,
+      ApOption returnAp, Ap ap, Ap innerReturnAp, Configuration config
     ) {
-      exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlowParamToReturn(p, state, kind, returnAp, ap, config) and
-        revFlowThroughIntoCall(call, arg, p, allowsFieldFlow, ap, config)
-      )
+      revFlowParamToReturn(p, state, pos, innerReturnAp, ap, config) and
+      revFlowIsReturned(call, returnCtx, returnAp, pos, innerReturnAp, config)
     }
 
     /**
@@ -1832,12 +1806,12 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate revFlowIsReturned(
-      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnKindExt kind, Ap ap,
+      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnPosition pos, Ap ap,
       Configuration config
     ) {
       exists(RetNodeEx ret, FlowState state, CcCall ccc |
-        revFlowOut(call, ret, kind, state, returnCtx, returnAp, ap, config) and
-        returnFlowsThrough(ret, kind, state, ccc, _, _, ap, config) and
+        revFlowOut(call, ret, pos, state, returnCtx, returnAp, ap, config) and
+        returnFlowsThrough(ret, pos, state, ccc, _, _, ap, config) and
         matchesCall(ccc, call)
       )
     }
@@ -1915,17 +1889,17 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate parameterFlowsThroughRev(
-      ParamNodeEx p, Ap ap, ReturnKindExt kind, Ap returnAp, Configuration config
+      ParamNodeEx p, Ap ap, ReturnPosition pos, Ap returnAp, Configuration config
     ) {
-      revFlow(p, _, TReturnCtxMaybeFlowThrough(kind), apSome(returnAp), ap, config) and
-      parameterFlowThroughAllowed(p, kind)
+      revFlow(p, _, TReturnCtxMaybeFlowThrough(pos), apSome(returnAp), ap, config) and
+      parameterFlowThroughAllowed(p, pos.getKind())
     }
 
     pragma[nomagic]
     predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
-      exists(RetNodeEx ret, ReturnKindExt kind |
-        returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
-        parameterFlowsThroughRev(p, ap, kind, _, config)
+      exists(RetNodeEx ret, ReturnPosition pos |
+        returnFlowsThrough(ret, pos, _, _, p, ap, _, config) and
+        parameterFlowsThroughRev(p, ap, pos, _, config)
       )
     }
 
@@ -1933,20 +1907,21 @@ private module MkStage<StageSig PrevStage> {
     predicate returnMayFlowThrough(
       RetNodeEx ret, Ap argAp, Ap ap, ReturnKindExt kind, Configuration config
     ) {
-      exists(ParamNodeEx p |
-        returnFlowsThrough(ret, kind, _, _, p, argAp, ap, config) and
-        parameterFlowsThroughRev(p, argAp, kind, ap, config)
+      exists(ParamNodeEx p, ReturnPosition pos |
+        returnFlowsThrough(ret, pos, _, _, p, argAp, ap, config) and
+        parameterFlowsThroughRev(p, argAp, pos, ap, config) and
+        kind = pos.getKind()
       )
     }
 
     pragma[nomagic]
-    predicate revFlowInToReturnIsReturned(
+    private predicate revFlowThroughArg(
       DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnCtx returnCtx, ApOption returnAp,
       Ap ap, Configuration config
     ) {
-      exists(ReturnKindExt returnKind0, Ap returnAp0 |
-        revFlowInToReturn(call, arg, state, returnKind0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
+      exists(ParamNodeEx p, ReturnPosition pos, Ap innerReturnAp |
+        revFlowThrough(call, returnCtx, p, state, pos, returnAp, ap, innerReturnAp, config) and
+        flowThroughIntoCall(call, arg, p, _, ap, innerReturnAp, config)
       )
     }
 
@@ -1954,7 +1929,7 @@ private module MkStage<StageSig PrevStage> {
     predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
       exists(ArgNodeEx arg, FlowState state, ReturnCtx returnCtx, ApOption returnAp, Ap ap |
         revFlow(arg, state, returnCtx, returnAp, ap, config) and
-        revFlowInToReturnIsReturned(call, arg, state, returnCtx, returnAp, ap, config)
+        revFlowThroughArg(call, arg, state, returnCtx, returnAp, ap, config)
       )
     }
 
@@ -1967,8 +1942,9 @@ private module MkStage<StageSig PrevStage> {
       conscand = count(TypedContent f0, Ap ap | fwdConsCand(f0, ap, config)) and
       states = count(FlowState state | fwdFlow(_, state, _, _, _, _, config)) and
       tuples =
-        count(NodeEx n, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-          Ap ap | fwdFlow(n, state, cc, summaryCtx, argAp, ap, config))
+        count(NodeEx n, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap |
+          fwdFlow(n, state, cc, summaryCtx, argAp, ap, config)
+        )
       or
       fwd = false and
       nodes = count(NodeEx node | revFlow(node, _, _, _, _, config)) and
@@ -2823,13 +2799,12 @@ private Configuration unbindConf(Configuration conf) {
 
 pragma[nomagic]
 private predicate nodeMayUseSummary0(
-  NodeEx n, DataFlowCallable c, ParameterPosition pos, FlowState state, AccessPathApprox apa,
-  Configuration config
+  NodeEx n, ParamNodeEx p, FlowState state, AccessPathApprox apa, Configuration config
 ) {
   exists(AccessPathApprox apa0 |
-    c = n.getEnclosingCallable() and
+    Stage5::parameterMayFlowThrough(p, _, _) and
     Stage5::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
-    Stage5::fwdFlow(n, state, any(CallContextCall ccc), TParameterPositionSome(pos),
+    Stage5::fwdFlow(n, state, any(CallContextCall ccc), TParamNodeSome(p.asNode()),
       TAccessPathApproxSome(apa), apa0, config)
   )
 }
@@ -2838,10 +2813,9 @@ pragma[nomagic]
 private predicate nodeMayUseSummary(
   NodeEx n, FlowState state, AccessPathApprox apa, Configuration config
 ) {
-  exists(DataFlowCallable c, ParameterPosition pos, ParamNodeEx p |
+  exists(ParamNodeEx p |
     Stage5::parameterMayFlowThrough(p, apa, config) and
-    nodeMayUseSummary0(n, c, pos, state, apa, config) and
-    p.isParameterOf(c, pos)
+    nodeMayUseSummary0(n, p, state, apa, config)
   )
 }
 
diff --git a/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImplCommon.qll b/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImplCommon.qll
index 28165955b68..9aa6a529a5b 100644
--- a/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImplCommon.qll
+++ b/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImplCommon.qll
@@ -924,7 +924,7 @@ private module Cached {
   newtype TReturnCtx =
     TReturnCtxNone() or
     TReturnCtxNoFlowThrough() or
-    TReturnCtxMaybeFlowThrough(ReturnKindExt kind)
+    TReturnCtxMaybeFlowThrough(ReturnPosition pos)
 
   cached
   newtype TTypedContentApprox =
@@ -1363,7 +1363,7 @@ class ParamNodeOption extends TParamNodeOption {
  *
  * - `TReturnCtxNone()`: no return flow.
  * - `TReturnCtxNoFlowThrough()`: return flow, but flow through is not possible.
- * - `TReturnCtxMaybeFlowThrough(ReturnKindExt kind)`: return flow, of kind `kind`, and
+ * - `TReturnCtxMaybeFlowThrough(ReturnPosition pos)`: return flow, of kind `pos`, and
  *    flow through may be possible.
  */
 class ReturnCtx extends TReturnCtx {
@@ -1374,9 +1374,9 @@ class ReturnCtx extends TReturnCtx {
     this = TReturnCtxNoFlowThrough() and
     result = "(no flow through)"
     or
-    exists(ReturnKindExt kind |
-      this = TReturnCtxMaybeFlowThrough(kind) and
-      result = kind.toString()
+    exists(ReturnPosition pos |
+      this = TReturnCtxMaybeFlowThrough(pos) and
+      result = pos.toString()
     )
   }
 }
diff --git a/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImplForHttpClientLibraries.qll b/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImplForHttpClientLibraries.qll
index 6741ccc2f06..23d11a38842 100644
--- a/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImplForHttpClientLibraries.qll
+++ b/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImplForHttpClientLibraries.qll
@@ -1327,8 +1327,8 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     additional predicate fwdFlow(
-      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      Ap ap, ApApprox apa, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      ApApprox apa, Configuration config
     ) {
       fwdFlow0(node, state, cc, summaryCtx, argAp, ap, apa, config) and
       PrevStage::revFlow(node, state, apa, config) and
@@ -1337,21 +1337,21 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[inline]
     additional predicate fwdFlow(
-      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      Ap ap, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      Configuration config
     ) {
       fwdFlow(node, state, cc, summaryCtx, argAp, ap, _, config)
     }
 
     pragma[nomagic]
     private predicate fwdFlow0(
-      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      Ap ap, ApApprox apa, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      ApApprox apa, Configuration config
     ) {
       sourceNode(node, state, config) and
       (if hasSourceCallCtx(config) then cc = ccSomeCall() else cc = ccNone()) and
       argAp = apNone() and
-      summaryCtx = TParameterPositionNone() and
+      summaryCtx = TParamNodeNone() and
       ap = getApNil(node) and
       apa = getApprox(ap)
       or
@@ -1372,7 +1372,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, apa, pragma[only_bind_into](config)) and
         jumpStep(mid, node, config) and
         cc = ccNone() and
-        summaryCtx = TParameterPositionNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone()
       )
       or
@@ -1380,7 +1380,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, state, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStep(mid, node, config) and
         cc = ccNone() and
-        summaryCtx = TParameterPositionNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone() and
         ap = getApNil(node) and
         apa = getApprox(ap)
@@ -1390,7 +1390,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, state0, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStateStep(mid, state0, node, state, config) and
         cc = ccNone() and
-        summaryCtx = TParameterPositionNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone() and
         ap = getApNil(node) and
         apa = getApprox(ap)
@@ -1414,10 +1414,10 @@ private module MkStage<StageSig PrevStage> {
       fwdFlowIn(_, node, state, _, cc, _, _, ap, apa, config) and
       if PrevStage::parameterMayFlowThrough(node, apa, config)
       then (
-        summaryCtx = TParameterPositionSome(node.(ParamNodeEx).getPosition()) and
+        summaryCtx = TParamNodeSome(node.asNode()) and
         argAp = apSome(ap)
       ) else (
-        summaryCtx = TParameterPositionNone() and argAp = apNone()
+        summaryCtx = TParamNodeNone() and argAp = apNone()
       )
       or
       // flow out of a callable
@@ -1433,16 +1433,19 @@ private module MkStage<StageSig PrevStage> {
       )
       or
       // flow through a callable
-      exists(DataFlowCall call, ParameterPosition summaryCtx0, Ap argAp0 |
-        fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, apa, config) and
-        fwdFlowIsEntered(call, cc, summaryCtx, argAp, summaryCtx0, argAp0, config)
+      exists(
+        DataFlowCall call, CcCall ccc, RetNodeEx ret, boolean allowsFieldFlow, ApApprox innerArgApa
+      |
+        fwdFlowThrough(call, cc, state, ccc, summaryCtx, argAp, ap, apa, ret, innerArgApa, config) and
+        flowThroughOutOfCall(call, ccc, ret, node, allowsFieldFlow, innerArgApa, apa, config) and
+        if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
     pragma[nomagic]
     private predicate fwdFlowStore(
       NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc,
-      ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
+      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
     ) {
       exists(DataFlowType contentType, ApApprox apa1 |
         fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, apa1, config) and
@@ -1473,8 +1476,8 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowRead0(
-      NodeEx node1, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      ApNonNil ap, Configuration config
+      NodeEx node1, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, ApNonNil ap,
+      Configuration config
     ) {
       fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, _, _, config)
@@ -1483,7 +1486,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowRead(
       Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc,
-      ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
+      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
     ) {
       fwdFlowRead0(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, c, node2, config) and
@@ -1493,7 +1496,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowIn(
       DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, CcCall innercc,
-      ParameterPositionOption summaryCtx, ApOption argAp, Ap ap, ApApprox apa, Configuration config
+      ParamNodeOption summaryCtx, ApOption argAp, Ap ap, ApApprox apa, Configuration config
     ) {
       exists(ArgNodeEx arg, boolean allowsFieldFlow |
         fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, apa, config) and
@@ -1505,64 +1508,38 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowRetFromArg(
-      RetNodeEx ret, FlowState state, CcCall ccc, ParameterPosition summaryCtx, ParamNodeEx p,
-      Ap argAp, ApApprox argApa, Ap ap, ApApprox apa, Configuration config
+      RetNodeEx ret, FlowState state, CcCall ccc, ParamNodeEx summaryCtx, Ap argAp, ApApprox argApa,
+      Ap ap, ApApprox apa, Configuration config
     ) {
-      exists(DataFlowCallable c, ReturnKindExt kind |
+      exists(ReturnKindExt kind |
         fwdFlow(pragma[only_bind_into](ret), state, ccc,
-          TParameterPositionSome(pragma[only_bind_into](summaryCtx)), apSome(argAp), ap, apa, config) and
-        getApprox(argAp) = argApa and
-        c = ret.getEnclosingCallable() and
+          TParamNodeSome(pragma[only_bind_into](summaryCtx.asNode())),
+          pragma[only_bind_into](apSome(argAp)), ap, pragma[only_bind_into](apa),
+          pragma[only_bind_into](config)) and
         kind = ret.getKind() and
-        p.isParameterOf(c, pragma[only_bind_into](summaryCtx)) and
-        parameterFlowThroughAllowed(p, kind)
+        parameterFlowThroughAllowed(summaryCtx, kind) and
+        argApa = getApprox(argAp) and
+        PrevStage::returnMayFlowThrough(ret, argApa, apa, kind, pragma[only_bind_into](config))
       )
     }
 
     pragma[inline]
-    private predicate fwdFlowInMayFlowThrough(
-      DataFlowCall call, Cc cc, CcCall innerCc, ParameterPositionOption summaryCtx, ApOption argAp,
-      ParamNodeEx param, Ap ap, ApApprox apa, Configuration config
+    private predicate fwdFlowThrough0(
+      DataFlowCall call, Cc cc, FlowState state, CcCall ccc, ParamNodeOption summaryCtx,
+      ApOption argAp, Ap ap, ApApprox apa, RetNodeEx ret, ParamNodeEx innerSummaryCtx,
+      Ap innerArgAp, ApApprox innerArgApa, Configuration config
     ) {
-      fwdFlowIn(call, pragma[only_bind_into](param), _, cc, innerCc, summaryCtx, argAp, ap,
-        pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
-      PrevStage::parameterMayFlowThrough(param, apa, config)
-    }
-
-    // dedup before joining with `flowThroughOutOfCall`
-    pragma[nomagic]
-    private predicate fwdFlowInMayFlowThroughProj(
-      DataFlowCall call, CcCall innerCc, ApApprox apa, Configuration config
-    ) {
-      fwdFlowInMayFlowThrough(call, _, innerCc, _, _, _, _, apa, config)
-    }
-
-    /**
-     * Same as `flowThroughOutOfCall`, but restricted to calls that are reached
-     * in the flow covered by `fwdFlow`, where data might flow through the target
-     * callable and back out at `call`.
-     */
-    pragma[nomagic]
-    private predicate fwdFlowThroughOutOfCall(
-      DataFlowCall call, CcCall ccc, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow,
-      ApApprox argApa, ApApprox apa, Configuration config
-    ) {
-      fwdFlowInMayFlowThroughProj(call, ccc, argApa, config) and
-      flowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, argApa, apa, config)
+      fwdFlowRetFromArg(ret, state, ccc, innerSummaryCtx, innerArgAp, innerArgApa, ap, apa, config) and
+      fwdFlowIsEntered(call, cc, ccc, summaryCtx, argAp, innerSummaryCtx, innerArgAp, config)
     }
 
     pragma[nomagic]
-    private predicate fwdFlowOutFromArg(
-      DataFlowCall call, NodeEx out, FlowState state, ParameterPosition summaryCtx, Ap argAp, Ap ap,
-      ApApprox apa, Configuration config
+    private predicate fwdFlowThrough(
+      DataFlowCall call, Cc cc, FlowState state, CcCall ccc, ParamNodeOption summaryCtx,
+      ApOption argAp, Ap ap, ApApprox apa, RetNodeEx ret, ApApprox innerArgApa, Configuration config
     ) {
-      exists(RetNodeEx ret, boolean allowsFieldFlow, CcCall ccc, ApApprox argApa |
-        fwdFlowRetFromArg(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc),
-          summaryCtx, _, argAp, pragma[only_bind_into](argApa), ap, pragma[only_bind_into](apa),
-          config) and
-        fwdFlowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, argApa, apa, config) and
-        (if allowsFieldFlow = false then ap instanceof ApNil else any())
-      )
+      fwdFlowThrough0(call, cc, state, ccc, summaryCtx, argAp, ap, apa, ret, _, _, innerArgApa,
+        config)
     }
 
     /**
@@ -1571,12 +1548,14 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate fwdFlowIsEntered(
-      DataFlowCall call, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      ParameterPosition pos, Ap ap, Configuration config
+      DataFlowCall call, Cc cc, CcCall innerCc, ParamNodeOption summaryCtx, ApOption argAp,
+      ParamNodeEx p, Ap ap, Configuration config
     ) {
-      exists(ParamNodeEx param |
-        fwdFlowInMayFlowThrough(call, cc, _, summaryCtx, argAp, param, ap, _, config) and
-        pos = param.getPosition()
+      exists(ApApprox apa |
+        fwdFlowIn(call, pragma[only_bind_into](p), _, cc, innerCc, summaryCtx, argAp, ap,
+          pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
+        PrevStage::parameterMayFlowThrough(p, apa, config) and
+        PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config))
       )
     }
 
@@ -1596,23 +1575,31 @@ private module MkStage<StageSig PrevStage> {
       fwdFlowConsCand(ap1, c, ap2, config)
     }
 
+    pragma[nomagic]
+    private predicate returnFlowsThrough0(
+      DataFlowCall call, FlowState state, CcCall ccc, Ap ap, ApApprox apa, RetNodeEx ret,
+      ParamNodeEx innerSummaryCtx, Ap innerArgAp, ApApprox innerArgApa, Configuration config
+    ) {
+      fwdFlowThrough0(call, _, state, ccc, _, _, ap, apa, ret, innerSummaryCtx, innerArgAp,
+        innerArgApa, config)
+    }
+
     pragma[nomagic]
     private predicate returnFlowsThrough(
-      RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, ParamNodeEx p, Ap argAp,
+      RetNodeEx ret, ReturnPosition pos, FlowState state, CcCall ccc, ParamNodeEx p, Ap argAp,
       Ap ap, Configuration config
     ) {
-      exists(boolean allowsFieldFlow, ApApprox argApa, ApApprox apa |
-        fwdFlowRetFromArg(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc), _, p,
-          argAp, pragma[only_bind_into](argApa), ap, pragma[only_bind_into](apa), config) and
-        kind = ret.getKind() and
-        fwdFlowThroughOutOfCall(_, ccc, ret, _, allowsFieldFlow, argApa, apa, config) and
-        (if allowsFieldFlow = false then ap instanceof ApNil else any())
+      exists(DataFlowCall call, ApApprox apa, boolean allowsFieldFlow, ApApprox innerArgApa |
+        returnFlowsThrough0(call, state, ccc, ap, apa, ret, p, argAp, innerArgApa, config) and
+        flowThroughOutOfCall(call, ccc, ret, _, allowsFieldFlow, innerArgApa, apa, config) and
+        pos = ret.getReturnPosition() and
+        if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
     pragma[nomagic]
     private predicate flowThroughIntoCall(
-      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp,
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp, Ap ap,
       Configuration config
     ) {
       exists(ApApprox argApa |
@@ -1620,7 +1607,7 @@ private module MkStage<StageSig PrevStage> {
           allowsFieldFlow, argApa, pragma[only_bind_into](config)) and
         fwdFlow(arg, _, _, _, _, pragma[only_bind_into](argAp), argApa,
           pragma[only_bind_into](config)) and
-        returnFlowsThrough(_, _, _, _, p, pragma[only_bind_into](argAp), _,
+        returnFlowsThrough(_, _, _, _, p, pragma[only_bind_into](argAp), ap,
           pragma[only_bind_into](config)) and
         if allowsFieldFlow = false then argAp instanceof ApNil else any()
       )
@@ -1639,12 +1626,13 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate flowOutOfCallAp(
-      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
+      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
       Ap ap, Configuration config
     ) {
       exists(ApApprox apa |
-        flowOutOfCallApa(call, ret, kind, out, allowsFieldFlow, apa, config) and
-        fwdFlow(ret, _, _, _, _, ap, apa, config)
+        flowOutOfCallApa(call, ret, _, out, allowsFieldFlow, apa, config) and
+        fwdFlow(ret, _, _, _, _, ap, apa, config) and
+        pos = ret.getReturnPosition()
       )
     }
 
@@ -1739,17 +1727,17 @@ private module MkStage<StageSig PrevStage> {
       )
       or
       // flow through a callable
-      exists(DataFlowCall call, ReturnKindExt returnKind0, Ap returnAp0 |
-        revFlowInToReturn(call, node, state, returnKind0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
+      exists(DataFlowCall call, ParamNodeEx p, ReturnPosition pos, Ap innerReturnAp |
+        revFlowThrough(call, returnCtx, p, state, pos, returnAp, ap, innerReturnAp, config) and
+        flowThroughIntoCall(call, node, p, _, ap, innerReturnAp, config)
       )
       or
       // flow out of a callable
-      exists(ReturnKindExt kind |
-        revFlowOut(_, node, kind, state, _, _, ap, config) and
-        if returnFlowsThrough(node, kind, state, _, _, _, ap, config)
+      exists(ReturnPosition pos |
+        revFlowOut(_, node, pos, state, _, _, ap, config) and
+        if returnFlowsThrough(node, pos, state, _, _, _, ap, config)
         then (
-          returnCtx = TReturnCtxMaybeFlowThrough(kind) and
+          returnCtx = TReturnCtxMaybeFlowThrough(pos) and
           returnAp = apSome(ap)
         ) else (
           returnCtx = TReturnCtxNoFlowThrough() and returnAp = apNone()
@@ -1782,47 +1770,33 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate revFlowOut(
-      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, FlowState state, ReturnCtx returnCtx,
+      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, FlowState state, ReturnCtx returnCtx,
       ApOption returnAp, Ap ap, Configuration config
     ) {
       exists(NodeEx out, boolean allowsFieldFlow |
         revFlow(out, state, returnCtx, returnAp, ap, config) and
-        flowOutOfCallAp(call, ret, kind, out, allowsFieldFlow, ap, config) and
+        flowOutOfCallAp(call, ret, pos, out, allowsFieldFlow, ap, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
-    /**
-     * Same as `flowThroughIntoCall`, but restricted to calls that are reached
-     * in the flow covered by `revFlow`, where data might flow through the target
-     * callable and back out at `call`.
-     */
-    pragma[nomagic]
-    private predicate revFlowThroughIntoCall(
-      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp,
-      Configuration config
-    ) {
-      flowThroughIntoCall(call, arg, p, allowsFieldFlow, argAp, config) and
-      revFlowIsReturned(call, _, _, _, _, config)
-    }
-
     pragma[nomagic]
     private predicate revFlowParamToReturn(
-      ParamNodeEx p, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap, Configuration config
+      ParamNodeEx p, FlowState state, ReturnPosition pos, Ap returnAp, Ap ap, Configuration config
     ) {
-      revFlow(p, state, TReturnCtxMaybeFlowThrough(kind), apSome(returnAp), ap, config) and
-      parameterFlowThroughAllowed(p, kind)
+      revFlow(pragma[only_bind_into](p), state, TReturnCtxMaybeFlowThrough(pos), apSome(returnAp),
+        pragma[only_bind_into](ap), pragma[only_bind_into](config)) and
+      parameterFlowThroughAllowed(p, pos.getKind()) and
+      PrevStage::parameterMayFlowThrough(p, getApprox(ap), config)
     }
 
     pragma[nomagic]
-    private predicate revFlowInToReturn(
-      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap,
-      Configuration config
+    private predicate revFlowThrough(
+      DataFlowCall call, ReturnCtx returnCtx, ParamNodeEx p, FlowState state, ReturnPosition pos,
+      ApOption returnAp, Ap ap, Ap innerReturnAp, Configuration config
     ) {
-      exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlowParamToReturn(p, state, kind, returnAp, ap, config) and
-        revFlowThroughIntoCall(call, arg, p, allowsFieldFlow, ap, config)
-      )
+      revFlowParamToReturn(p, state, pos, innerReturnAp, ap, config) and
+      revFlowIsReturned(call, returnCtx, returnAp, pos, innerReturnAp, config)
     }
 
     /**
@@ -1832,12 +1806,12 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate revFlowIsReturned(
-      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnKindExt kind, Ap ap,
+      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnPosition pos, Ap ap,
       Configuration config
     ) {
       exists(RetNodeEx ret, FlowState state, CcCall ccc |
-        revFlowOut(call, ret, kind, state, returnCtx, returnAp, ap, config) and
-        returnFlowsThrough(ret, kind, state, ccc, _, _, ap, config) and
+        revFlowOut(call, ret, pos, state, returnCtx, returnAp, ap, config) and
+        returnFlowsThrough(ret, pos, state, ccc, _, _, ap, config) and
         matchesCall(ccc, call)
       )
     }
@@ -1915,17 +1889,17 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate parameterFlowsThroughRev(
-      ParamNodeEx p, Ap ap, ReturnKindExt kind, Ap returnAp, Configuration config
+      ParamNodeEx p, Ap ap, ReturnPosition pos, Ap returnAp, Configuration config
     ) {
-      revFlow(p, _, TReturnCtxMaybeFlowThrough(kind), apSome(returnAp), ap, config) and
-      parameterFlowThroughAllowed(p, kind)
+      revFlow(p, _, TReturnCtxMaybeFlowThrough(pos), apSome(returnAp), ap, config) and
+      parameterFlowThroughAllowed(p, pos.getKind())
     }
 
     pragma[nomagic]
     predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
-      exists(RetNodeEx ret, ReturnKindExt kind |
-        returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
-        parameterFlowsThroughRev(p, ap, kind, _, config)
+      exists(RetNodeEx ret, ReturnPosition pos |
+        returnFlowsThrough(ret, pos, _, _, p, ap, _, config) and
+        parameterFlowsThroughRev(p, ap, pos, _, config)
       )
     }
 
@@ -1933,20 +1907,21 @@ private module MkStage<StageSig PrevStage> {
     predicate returnMayFlowThrough(
       RetNodeEx ret, Ap argAp, Ap ap, ReturnKindExt kind, Configuration config
     ) {
-      exists(ParamNodeEx p |
-        returnFlowsThrough(ret, kind, _, _, p, argAp, ap, config) and
-        parameterFlowsThroughRev(p, argAp, kind, ap, config)
+      exists(ParamNodeEx p, ReturnPosition pos |
+        returnFlowsThrough(ret, pos, _, _, p, argAp, ap, config) and
+        parameterFlowsThroughRev(p, argAp, pos, ap, config) and
+        kind = pos.getKind()
       )
     }
 
     pragma[nomagic]
-    predicate revFlowInToReturnIsReturned(
+    private predicate revFlowThroughArg(
       DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnCtx returnCtx, ApOption returnAp,
       Ap ap, Configuration config
     ) {
-      exists(ReturnKindExt returnKind0, Ap returnAp0 |
-        revFlowInToReturn(call, arg, state, returnKind0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
+      exists(ParamNodeEx p, ReturnPosition pos, Ap innerReturnAp |
+        revFlowThrough(call, returnCtx, p, state, pos, returnAp, ap, innerReturnAp, config) and
+        flowThroughIntoCall(call, arg, p, _, ap, innerReturnAp, config)
       )
     }
 
@@ -1954,7 +1929,7 @@ private module MkStage<StageSig PrevStage> {
     predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
       exists(ArgNodeEx arg, FlowState state, ReturnCtx returnCtx, ApOption returnAp, Ap ap |
         revFlow(arg, state, returnCtx, returnAp, ap, config) and
-        revFlowInToReturnIsReturned(call, arg, state, returnCtx, returnAp, ap, config)
+        revFlowThroughArg(call, arg, state, returnCtx, returnAp, ap, config)
       )
     }
 
@@ -1967,8 +1942,9 @@ private module MkStage<StageSig PrevStage> {
       conscand = count(TypedContent f0, Ap ap | fwdConsCand(f0, ap, config)) and
       states = count(FlowState state | fwdFlow(_, state, _, _, _, _, config)) and
       tuples =
-        count(NodeEx n, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-          Ap ap | fwdFlow(n, state, cc, summaryCtx, argAp, ap, config))
+        count(NodeEx n, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap |
+          fwdFlow(n, state, cc, summaryCtx, argAp, ap, config)
+        )
       or
       fwd = false and
       nodes = count(NodeEx node | revFlow(node, _, _, _, _, config)) and
@@ -2823,13 +2799,12 @@ private Configuration unbindConf(Configuration conf) {
 
 pragma[nomagic]
 private predicate nodeMayUseSummary0(
-  NodeEx n, DataFlowCallable c, ParameterPosition pos, FlowState state, AccessPathApprox apa,
-  Configuration config
+  NodeEx n, ParamNodeEx p, FlowState state, AccessPathApprox apa, Configuration config
 ) {
   exists(AccessPathApprox apa0 |
-    c = n.getEnclosingCallable() and
+    Stage5::parameterMayFlowThrough(p, _, _) and
     Stage5::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
-    Stage5::fwdFlow(n, state, any(CallContextCall ccc), TParameterPositionSome(pos),
+    Stage5::fwdFlow(n, state, any(CallContextCall ccc), TParamNodeSome(p.asNode()),
       TAccessPathApproxSome(apa), apa0, config)
   )
 }
@@ -2838,10 +2813,9 @@ pragma[nomagic]
 private predicate nodeMayUseSummary(
   NodeEx n, FlowState state, AccessPathApprox apa, Configuration config
 ) {
-  exists(DataFlowCallable c, ParameterPosition pos, ParamNodeEx p |
+  exists(ParamNodeEx p |
     Stage5::parameterMayFlowThrough(p, apa, config) and
-    nodeMayUseSummary0(n, c, pos, state, apa, config) and
-    p.isParameterOf(c, pos)
+    nodeMayUseSummary0(n, p, state, apa, config)
   )
 }
 
diff --git a/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImplForPathname.qll b/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImplForPathname.qll
index 6741ccc2f06..23d11a38842 100644
--- a/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImplForPathname.qll
+++ b/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImplForPathname.qll
@@ -1327,8 +1327,8 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     additional predicate fwdFlow(
-      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      Ap ap, ApApprox apa, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      ApApprox apa, Configuration config
     ) {
       fwdFlow0(node, state, cc, summaryCtx, argAp, ap, apa, config) and
       PrevStage::revFlow(node, state, apa, config) and
@@ -1337,21 +1337,21 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[inline]
     additional predicate fwdFlow(
-      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      Ap ap, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      Configuration config
     ) {
       fwdFlow(node, state, cc, summaryCtx, argAp, ap, _, config)
     }
 
     pragma[nomagic]
     private predicate fwdFlow0(
-      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      Ap ap, ApApprox apa, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      ApApprox apa, Configuration config
     ) {
       sourceNode(node, state, config) and
       (if hasSourceCallCtx(config) then cc = ccSomeCall() else cc = ccNone()) and
       argAp = apNone() and
-      summaryCtx = TParameterPositionNone() and
+      summaryCtx = TParamNodeNone() and
       ap = getApNil(node) and
       apa = getApprox(ap)
       or
@@ -1372,7 +1372,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, apa, pragma[only_bind_into](config)) and
         jumpStep(mid, node, config) and
         cc = ccNone() and
-        summaryCtx = TParameterPositionNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone()
       )
       or
@@ -1380,7 +1380,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, state, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStep(mid, node, config) and
         cc = ccNone() and
-        summaryCtx = TParameterPositionNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone() and
         ap = getApNil(node) and
         apa = getApprox(ap)
@@ -1390,7 +1390,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, state0, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStateStep(mid, state0, node, state, config) and
         cc = ccNone() and
-        summaryCtx = TParameterPositionNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone() and
         ap = getApNil(node) and
         apa = getApprox(ap)
@@ -1414,10 +1414,10 @@ private module MkStage<StageSig PrevStage> {
       fwdFlowIn(_, node, state, _, cc, _, _, ap, apa, config) and
       if PrevStage::parameterMayFlowThrough(node, apa, config)
       then (
-        summaryCtx = TParameterPositionSome(node.(ParamNodeEx).getPosition()) and
+        summaryCtx = TParamNodeSome(node.asNode()) and
         argAp = apSome(ap)
       ) else (
-        summaryCtx = TParameterPositionNone() and argAp = apNone()
+        summaryCtx = TParamNodeNone() and argAp = apNone()
       )
       or
       // flow out of a callable
@@ -1433,16 +1433,19 @@ private module MkStage<StageSig PrevStage> {
       )
       or
       // flow through a callable
-      exists(DataFlowCall call, ParameterPosition summaryCtx0, Ap argAp0 |
-        fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, apa, config) and
-        fwdFlowIsEntered(call, cc, summaryCtx, argAp, summaryCtx0, argAp0, config)
+      exists(
+        DataFlowCall call, CcCall ccc, RetNodeEx ret, boolean allowsFieldFlow, ApApprox innerArgApa
+      |
+        fwdFlowThrough(call, cc, state, ccc, summaryCtx, argAp, ap, apa, ret, innerArgApa, config) and
+        flowThroughOutOfCall(call, ccc, ret, node, allowsFieldFlow, innerArgApa, apa, config) and
+        if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
     pragma[nomagic]
     private predicate fwdFlowStore(
       NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc,
-      ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
+      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
     ) {
       exists(DataFlowType contentType, ApApprox apa1 |
         fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, apa1, config) and
@@ -1473,8 +1476,8 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowRead0(
-      NodeEx node1, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      ApNonNil ap, Configuration config
+      NodeEx node1, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, ApNonNil ap,
+      Configuration config
     ) {
       fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, _, _, config)
@@ -1483,7 +1486,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowRead(
       Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc,
-      ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
+      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
     ) {
       fwdFlowRead0(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, c, node2, config) and
@@ -1493,7 +1496,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowIn(
       DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, CcCall innercc,
-      ParameterPositionOption summaryCtx, ApOption argAp, Ap ap, ApApprox apa, Configuration config
+      ParamNodeOption summaryCtx, ApOption argAp, Ap ap, ApApprox apa, Configuration config
     ) {
       exists(ArgNodeEx arg, boolean allowsFieldFlow |
         fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, apa, config) and
@@ -1505,64 +1508,38 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowRetFromArg(
-      RetNodeEx ret, FlowState state, CcCall ccc, ParameterPosition summaryCtx, ParamNodeEx p,
-      Ap argAp, ApApprox argApa, Ap ap, ApApprox apa, Configuration config
+      RetNodeEx ret, FlowState state, CcCall ccc, ParamNodeEx summaryCtx, Ap argAp, ApApprox argApa,
+      Ap ap, ApApprox apa, Configuration config
     ) {
-      exists(DataFlowCallable c, ReturnKindExt kind |
+      exists(ReturnKindExt kind |
         fwdFlow(pragma[only_bind_into](ret), state, ccc,
-          TParameterPositionSome(pragma[only_bind_into](summaryCtx)), apSome(argAp), ap, apa, config) and
-        getApprox(argAp) = argApa and
-        c = ret.getEnclosingCallable() and
+          TParamNodeSome(pragma[only_bind_into](summaryCtx.asNode())),
+          pragma[only_bind_into](apSome(argAp)), ap, pragma[only_bind_into](apa),
+          pragma[only_bind_into](config)) and
         kind = ret.getKind() and
-        p.isParameterOf(c, pragma[only_bind_into](summaryCtx)) and
-        parameterFlowThroughAllowed(p, kind)
+        parameterFlowThroughAllowed(summaryCtx, kind) and
+        argApa = getApprox(argAp) and
+        PrevStage::returnMayFlowThrough(ret, argApa, apa, kind, pragma[only_bind_into](config))
       )
     }
 
     pragma[inline]
-    private predicate fwdFlowInMayFlowThrough(
-      DataFlowCall call, Cc cc, CcCall innerCc, ParameterPositionOption summaryCtx, ApOption argAp,
-      ParamNodeEx param, Ap ap, ApApprox apa, Configuration config
+    private predicate fwdFlowThrough0(
+      DataFlowCall call, Cc cc, FlowState state, CcCall ccc, ParamNodeOption summaryCtx,
+      ApOption argAp, Ap ap, ApApprox apa, RetNodeEx ret, ParamNodeEx innerSummaryCtx,
+      Ap innerArgAp, ApApprox innerArgApa, Configuration config
     ) {
-      fwdFlowIn(call, pragma[only_bind_into](param), _, cc, innerCc, summaryCtx, argAp, ap,
-        pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
-      PrevStage::parameterMayFlowThrough(param, apa, config)
-    }
-
-    // dedup before joining with `flowThroughOutOfCall`
-    pragma[nomagic]
-    private predicate fwdFlowInMayFlowThroughProj(
-      DataFlowCall call, CcCall innerCc, ApApprox apa, Configuration config
-    ) {
-      fwdFlowInMayFlowThrough(call, _, innerCc, _, _, _, _, apa, config)
-    }
-
-    /**
-     * Same as `flowThroughOutOfCall`, but restricted to calls that are reached
-     * in the flow covered by `fwdFlow`, where data might flow through the target
-     * callable and back out at `call`.
-     */
-    pragma[nomagic]
-    private predicate fwdFlowThroughOutOfCall(
-      DataFlowCall call, CcCall ccc, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow,
-      ApApprox argApa, ApApprox apa, Configuration config
-    ) {
-      fwdFlowInMayFlowThroughProj(call, ccc, argApa, config) and
-      flowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, argApa, apa, config)
+      fwdFlowRetFromArg(ret, state, ccc, innerSummaryCtx, innerArgAp, innerArgApa, ap, apa, config) and
+      fwdFlowIsEntered(call, cc, ccc, summaryCtx, argAp, innerSummaryCtx, innerArgAp, config)
     }
 
     pragma[nomagic]
-    private predicate fwdFlowOutFromArg(
-      DataFlowCall call, NodeEx out, FlowState state, ParameterPosition summaryCtx, Ap argAp, Ap ap,
-      ApApprox apa, Configuration config
+    private predicate fwdFlowThrough(
+      DataFlowCall call, Cc cc, FlowState state, CcCall ccc, ParamNodeOption summaryCtx,
+      ApOption argAp, Ap ap, ApApprox apa, RetNodeEx ret, ApApprox innerArgApa, Configuration config
     ) {
-      exists(RetNodeEx ret, boolean allowsFieldFlow, CcCall ccc, ApApprox argApa |
-        fwdFlowRetFromArg(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc),
-          summaryCtx, _, argAp, pragma[only_bind_into](argApa), ap, pragma[only_bind_into](apa),
-          config) and
-        fwdFlowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, argApa, apa, config) and
-        (if allowsFieldFlow = false then ap instanceof ApNil else any())
-      )
+      fwdFlowThrough0(call, cc, state, ccc, summaryCtx, argAp, ap, apa, ret, _, _, innerArgApa,
+        config)
     }
 
     /**
@@ -1571,12 +1548,14 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate fwdFlowIsEntered(
-      DataFlowCall call, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      ParameterPosition pos, Ap ap, Configuration config
+      DataFlowCall call, Cc cc, CcCall innerCc, ParamNodeOption summaryCtx, ApOption argAp,
+      ParamNodeEx p, Ap ap, Configuration config
     ) {
-      exists(ParamNodeEx param |
-        fwdFlowInMayFlowThrough(call, cc, _, summaryCtx, argAp, param, ap, _, config) and
-        pos = param.getPosition()
+      exists(ApApprox apa |
+        fwdFlowIn(call, pragma[only_bind_into](p), _, cc, innerCc, summaryCtx, argAp, ap,
+          pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
+        PrevStage::parameterMayFlowThrough(p, apa, config) and
+        PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config))
       )
     }
 
@@ -1596,23 +1575,31 @@ private module MkStage<StageSig PrevStage> {
       fwdFlowConsCand(ap1, c, ap2, config)
     }
 
+    pragma[nomagic]
+    private predicate returnFlowsThrough0(
+      DataFlowCall call, FlowState state, CcCall ccc, Ap ap, ApApprox apa, RetNodeEx ret,
+      ParamNodeEx innerSummaryCtx, Ap innerArgAp, ApApprox innerArgApa, Configuration config
+    ) {
+      fwdFlowThrough0(call, _, state, ccc, _, _, ap, apa, ret, innerSummaryCtx, innerArgAp,
+        innerArgApa, config)
+    }
+
     pragma[nomagic]
     private predicate returnFlowsThrough(
-      RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, ParamNodeEx p, Ap argAp,
+      RetNodeEx ret, ReturnPosition pos, FlowState state, CcCall ccc, ParamNodeEx p, Ap argAp,
       Ap ap, Configuration config
     ) {
-      exists(boolean allowsFieldFlow, ApApprox argApa, ApApprox apa |
-        fwdFlowRetFromArg(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc), _, p,
-          argAp, pragma[only_bind_into](argApa), ap, pragma[only_bind_into](apa), config) and
-        kind = ret.getKind() and
-        fwdFlowThroughOutOfCall(_, ccc, ret, _, allowsFieldFlow, argApa, apa, config) and
-        (if allowsFieldFlow = false then ap instanceof ApNil else any())
+      exists(DataFlowCall call, ApApprox apa, boolean allowsFieldFlow, ApApprox innerArgApa |
+        returnFlowsThrough0(call, state, ccc, ap, apa, ret, p, argAp, innerArgApa, config) and
+        flowThroughOutOfCall(call, ccc, ret, _, allowsFieldFlow, innerArgApa, apa, config) and
+        pos = ret.getReturnPosition() and
+        if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
     pragma[nomagic]
     private predicate flowThroughIntoCall(
-      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp,
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp, Ap ap,
       Configuration config
     ) {
       exists(ApApprox argApa |
@@ -1620,7 +1607,7 @@ private module MkStage<StageSig PrevStage> {
           allowsFieldFlow, argApa, pragma[only_bind_into](config)) and
         fwdFlow(arg, _, _, _, _, pragma[only_bind_into](argAp), argApa,
           pragma[only_bind_into](config)) and
-        returnFlowsThrough(_, _, _, _, p, pragma[only_bind_into](argAp), _,
+        returnFlowsThrough(_, _, _, _, p, pragma[only_bind_into](argAp), ap,
           pragma[only_bind_into](config)) and
         if allowsFieldFlow = false then argAp instanceof ApNil else any()
       )
@@ -1639,12 +1626,13 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate flowOutOfCallAp(
-      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
+      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
       Ap ap, Configuration config
     ) {
       exists(ApApprox apa |
-        flowOutOfCallApa(call, ret, kind, out, allowsFieldFlow, apa, config) and
-        fwdFlow(ret, _, _, _, _, ap, apa, config)
+        flowOutOfCallApa(call, ret, _, out, allowsFieldFlow, apa, config) and
+        fwdFlow(ret, _, _, _, _, ap, apa, config) and
+        pos = ret.getReturnPosition()
       )
     }
 
@@ -1739,17 +1727,17 @@ private module MkStage<StageSig PrevStage> {
       )
       or
       // flow through a callable
-      exists(DataFlowCall call, ReturnKindExt returnKind0, Ap returnAp0 |
-        revFlowInToReturn(call, node, state, returnKind0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
+      exists(DataFlowCall call, ParamNodeEx p, ReturnPosition pos, Ap innerReturnAp |
+        revFlowThrough(call, returnCtx, p, state, pos, returnAp, ap, innerReturnAp, config) and
+        flowThroughIntoCall(call, node, p, _, ap, innerReturnAp, config)
       )
       or
       // flow out of a callable
-      exists(ReturnKindExt kind |
-        revFlowOut(_, node, kind, state, _, _, ap, config) and
-        if returnFlowsThrough(node, kind, state, _, _, _, ap, config)
+      exists(ReturnPosition pos |
+        revFlowOut(_, node, pos, state, _, _, ap, config) and
+        if returnFlowsThrough(node, pos, state, _, _, _, ap, config)
         then (
-          returnCtx = TReturnCtxMaybeFlowThrough(kind) and
+          returnCtx = TReturnCtxMaybeFlowThrough(pos) and
           returnAp = apSome(ap)
         ) else (
           returnCtx = TReturnCtxNoFlowThrough() and returnAp = apNone()
@@ -1782,47 +1770,33 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate revFlowOut(
-      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, FlowState state, ReturnCtx returnCtx,
+      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, FlowState state, ReturnCtx returnCtx,
       ApOption returnAp, Ap ap, Configuration config
     ) {
       exists(NodeEx out, boolean allowsFieldFlow |
         revFlow(out, state, returnCtx, returnAp, ap, config) and
-        flowOutOfCallAp(call, ret, kind, out, allowsFieldFlow, ap, config) and
+        flowOutOfCallAp(call, ret, pos, out, allowsFieldFlow, ap, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
-    /**
-     * Same as `flowThroughIntoCall`, but restricted to calls that are reached
-     * in the flow covered by `revFlow`, where data might flow through the target
-     * callable and back out at `call`.
-     */
-    pragma[nomagic]
-    private predicate revFlowThroughIntoCall(
-      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp,
-      Configuration config
-    ) {
-      flowThroughIntoCall(call, arg, p, allowsFieldFlow, argAp, config) and
-      revFlowIsReturned(call, _, _, _, _, config)
-    }
-
     pragma[nomagic]
     private predicate revFlowParamToReturn(
-      ParamNodeEx p, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap, Configuration config
+      ParamNodeEx p, FlowState state, ReturnPosition pos, Ap returnAp, Ap ap, Configuration config
     ) {
-      revFlow(p, state, TReturnCtxMaybeFlowThrough(kind), apSome(returnAp), ap, config) and
-      parameterFlowThroughAllowed(p, kind)
+      revFlow(pragma[only_bind_into](p), state, TReturnCtxMaybeFlowThrough(pos), apSome(returnAp),
+        pragma[only_bind_into](ap), pragma[only_bind_into](config)) and
+      parameterFlowThroughAllowed(p, pos.getKind()) and
+      PrevStage::parameterMayFlowThrough(p, getApprox(ap), config)
     }
 
     pragma[nomagic]
-    private predicate revFlowInToReturn(
-      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap,
-      Configuration config
+    private predicate revFlowThrough(
+      DataFlowCall call, ReturnCtx returnCtx, ParamNodeEx p, FlowState state, ReturnPosition pos,
+      ApOption returnAp, Ap ap, Ap innerReturnAp, Configuration config
     ) {
-      exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlowParamToReturn(p, state, kind, returnAp, ap, config) and
-        revFlowThroughIntoCall(call, arg, p, allowsFieldFlow, ap, config)
-      )
+      revFlowParamToReturn(p, state, pos, innerReturnAp, ap, config) and
+      revFlowIsReturned(call, returnCtx, returnAp, pos, innerReturnAp, config)
     }
 
     /**
@@ -1832,12 +1806,12 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate revFlowIsReturned(
-      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnKindExt kind, Ap ap,
+      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnPosition pos, Ap ap,
       Configuration config
     ) {
       exists(RetNodeEx ret, FlowState state, CcCall ccc |
-        revFlowOut(call, ret, kind, state, returnCtx, returnAp, ap, config) and
-        returnFlowsThrough(ret, kind, state, ccc, _, _, ap, config) and
+        revFlowOut(call, ret, pos, state, returnCtx, returnAp, ap, config) and
+        returnFlowsThrough(ret, pos, state, ccc, _, _, ap, config) and
         matchesCall(ccc, call)
       )
     }
@@ -1915,17 +1889,17 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate parameterFlowsThroughRev(
-      ParamNodeEx p, Ap ap, ReturnKindExt kind, Ap returnAp, Configuration config
+      ParamNodeEx p, Ap ap, ReturnPosition pos, Ap returnAp, Configuration config
     ) {
-      revFlow(p, _, TReturnCtxMaybeFlowThrough(kind), apSome(returnAp), ap, config) and
-      parameterFlowThroughAllowed(p, kind)
+      revFlow(p, _, TReturnCtxMaybeFlowThrough(pos), apSome(returnAp), ap, config) and
+      parameterFlowThroughAllowed(p, pos.getKind())
     }
 
     pragma[nomagic]
     predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
-      exists(RetNodeEx ret, ReturnKindExt kind |
-        returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
-        parameterFlowsThroughRev(p, ap, kind, _, config)
+      exists(RetNodeEx ret, ReturnPosition pos |
+        returnFlowsThrough(ret, pos, _, _, p, ap, _, config) and
+        parameterFlowsThroughRev(p, ap, pos, _, config)
       )
     }
 
@@ -1933,20 +1907,21 @@ private module MkStage<StageSig PrevStage> {
     predicate returnMayFlowThrough(
       RetNodeEx ret, Ap argAp, Ap ap, ReturnKindExt kind, Configuration config
     ) {
-      exists(ParamNodeEx p |
-        returnFlowsThrough(ret, kind, _, _, p, argAp, ap, config) and
-        parameterFlowsThroughRev(p, argAp, kind, ap, config)
+      exists(ParamNodeEx p, ReturnPosition pos |
+        returnFlowsThrough(ret, pos, _, _, p, argAp, ap, config) and
+        parameterFlowsThroughRev(p, argAp, pos, ap, config) and
+        kind = pos.getKind()
       )
     }
 
     pragma[nomagic]
-    predicate revFlowInToReturnIsReturned(
+    private predicate revFlowThroughArg(
       DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnCtx returnCtx, ApOption returnAp,
       Ap ap, Configuration config
     ) {
-      exists(ReturnKindExt returnKind0, Ap returnAp0 |
-        revFlowInToReturn(call, arg, state, returnKind0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
+      exists(ParamNodeEx p, ReturnPosition pos, Ap innerReturnAp |
+        revFlowThrough(call, returnCtx, p, state, pos, returnAp, ap, innerReturnAp, config) and
+        flowThroughIntoCall(call, arg, p, _, ap, innerReturnAp, config)
       )
     }
 
@@ -1954,7 +1929,7 @@ private module MkStage<StageSig PrevStage> {
     predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
       exists(ArgNodeEx arg, FlowState state, ReturnCtx returnCtx, ApOption returnAp, Ap ap |
         revFlow(arg, state, returnCtx, returnAp, ap, config) and
-        revFlowInToReturnIsReturned(call, arg, state, returnCtx, returnAp, ap, config)
+        revFlowThroughArg(call, arg, state, returnCtx, returnAp, ap, config)
       )
     }
 
@@ -1967,8 +1942,9 @@ private module MkStage<StageSig PrevStage> {
       conscand = count(TypedContent f0, Ap ap | fwdConsCand(f0, ap, config)) and
       states = count(FlowState state | fwdFlow(_, state, _, _, _, _, config)) and
       tuples =
-        count(NodeEx n, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-          Ap ap | fwdFlow(n, state, cc, summaryCtx, argAp, ap, config))
+        count(NodeEx n, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap |
+          fwdFlow(n, state, cc, summaryCtx, argAp, ap, config)
+        )
       or
       fwd = false and
       nodes = count(NodeEx node | revFlow(node, _, _, _, _, config)) and
@@ -2823,13 +2799,12 @@ private Configuration unbindConf(Configuration conf) {
 
 pragma[nomagic]
 private predicate nodeMayUseSummary0(
-  NodeEx n, DataFlowCallable c, ParameterPosition pos, FlowState state, AccessPathApprox apa,
-  Configuration config
+  NodeEx n, ParamNodeEx p, FlowState state, AccessPathApprox apa, Configuration config
 ) {
   exists(AccessPathApprox apa0 |
-    c = n.getEnclosingCallable() and
+    Stage5::parameterMayFlowThrough(p, _, _) and
     Stage5::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
-    Stage5::fwdFlow(n, state, any(CallContextCall ccc), TParameterPositionSome(pos),
+    Stage5::fwdFlow(n, state, any(CallContextCall ccc), TParamNodeSome(p.asNode()),
       TAccessPathApproxSome(apa), apa0, config)
   )
 }
@@ -2838,10 +2813,9 @@ pragma[nomagic]
 private predicate nodeMayUseSummary(
   NodeEx n, FlowState state, AccessPathApprox apa, Configuration config
 ) {
-  exists(DataFlowCallable c, ParameterPosition pos, ParamNodeEx p |
+  exists(ParamNodeEx p |
     Stage5::parameterMayFlowThrough(p, apa, config) and
-    nodeMayUseSummary0(n, c, pos, state, apa, config) and
-    p.isParameterOf(c, pos)
+    nodeMayUseSummary0(n, p, state, apa, config)
   )
 }
 
diff --git a/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImplForRegExp.qll b/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImplForRegExp.qll
index 6741ccc2f06..23d11a38842 100644
--- a/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImplForRegExp.qll
+++ b/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImplForRegExp.qll
@@ -1327,8 +1327,8 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     additional predicate fwdFlow(
-      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      Ap ap, ApApprox apa, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      ApApprox apa, Configuration config
     ) {
       fwdFlow0(node, state, cc, summaryCtx, argAp, ap, apa, config) and
       PrevStage::revFlow(node, state, apa, config) and
@@ -1337,21 +1337,21 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[inline]
     additional predicate fwdFlow(
-      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      Ap ap, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      Configuration config
     ) {
       fwdFlow(node, state, cc, summaryCtx, argAp, ap, _, config)
     }
 
     pragma[nomagic]
     private predicate fwdFlow0(
-      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      Ap ap, ApApprox apa, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      ApApprox apa, Configuration config
     ) {
       sourceNode(node, state, config) and
       (if hasSourceCallCtx(config) then cc = ccSomeCall() else cc = ccNone()) and
       argAp = apNone() and
-      summaryCtx = TParameterPositionNone() and
+      summaryCtx = TParamNodeNone() and
       ap = getApNil(node) and
       apa = getApprox(ap)
       or
@@ -1372,7 +1372,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, apa, pragma[only_bind_into](config)) and
         jumpStep(mid, node, config) and
         cc = ccNone() and
-        summaryCtx = TParameterPositionNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone()
       )
       or
@@ -1380,7 +1380,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, state, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStep(mid, node, config) and
         cc = ccNone() and
-        summaryCtx = TParameterPositionNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone() and
         ap = getApNil(node) and
         apa = getApprox(ap)
@@ -1390,7 +1390,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, state0, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStateStep(mid, state0, node, state, config) and
         cc = ccNone() and
-        summaryCtx = TParameterPositionNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone() and
         ap = getApNil(node) and
         apa = getApprox(ap)
@@ -1414,10 +1414,10 @@ private module MkStage<StageSig PrevStage> {
       fwdFlowIn(_, node, state, _, cc, _, _, ap, apa, config) and
       if PrevStage::parameterMayFlowThrough(node, apa, config)
       then (
-        summaryCtx = TParameterPositionSome(node.(ParamNodeEx).getPosition()) and
+        summaryCtx = TParamNodeSome(node.asNode()) and
         argAp = apSome(ap)
       ) else (
-        summaryCtx = TParameterPositionNone() and argAp = apNone()
+        summaryCtx = TParamNodeNone() and argAp = apNone()
       )
       or
       // flow out of a callable
@@ -1433,16 +1433,19 @@ private module MkStage<StageSig PrevStage> {
       )
       or
       // flow through a callable
-      exists(DataFlowCall call, ParameterPosition summaryCtx0, Ap argAp0 |
-        fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, apa, config) and
-        fwdFlowIsEntered(call, cc, summaryCtx, argAp, summaryCtx0, argAp0, config)
+      exists(
+        DataFlowCall call, CcCall ccc, RetNodeEx ret, boolean allowsFieldFlow, ApApprox innerArgApa
+      |
+        fwdFlowThrough(call, cc, state, ccc, summaryCtx, argAp, ap, apa, ret, innerArgApa, config) and
+        flowThroughOutOfCall(call, ccc, ret, node, allowsFieldFlow, innerArgApa, apa, config) and
+        if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
     pragma[nomagic]
     private predicate fwdFlowStore(
       NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc,
-      ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
+      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
     ) {
       exists(DataFlowType contentType, ApApprox apa1 |
         fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, apa1, config) and
@@ -1473,8 +1476,8 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowRead0(
-      NodeEx node1, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      ApNonNil ap, Configuration config
+      NodeEx node1, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, ApNonNil ap,
+      Configuration config
     ) {
       fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, _, _, config)
@@ -1483,7 +1486,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowRead(
       Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc,
-      ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
+      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
     ) {
       fwdFlowRead0(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, c, node2, config) and
@@ -1493,7 +1496,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowIn(
       DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, CcCall innercc,
-      ParameterPositionOption summaryCtx, ApOption argAp, Ap ap, ApApprox apa, Configuration config
+      ParamNodeOption summaryCtx, ApOption argAp, Ap ap, ApApprox apa, Configuration config
     ) {
       exists(ArgNodeEx arg, boolean allowsFieldFlow |
         fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, apa, config) and
@@ -1505,64 +1508,38 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowRetFromArg(
-      RetNodeEx ret, FlowState state, CcCall ccc, ParameterPosition summaryCtx, ParamNodeEx p,
-      Ap argAp, ApApprox argApa, Ap ap, ApApprox apa, Configuration config
+      RetNodeEx ret, FlowState state, CcCall ccc, ParamNodeEx summaryCtx, Ap argAp, ApApprox argApa,
+      Ap ap, ApApprox apa, Configuration config
     ) {
-      exists(DataFlowCallable c, ReturnKindExt kind |
+      exists(ReturnKindExt kind |
         fwdFlow(pragma[only_bind_into](ret), state, ccc,
-          TParameterPositionSome(pragma[only_bind_into](summaryCtx)), apSome(argAp), ap, apa, config) and
-        getApprox(argAp) = argApa and
-        c = ret.getEnclosingCallable() and
+          TParamNodeSome(pragma[only_bind_into](summaryCtx.asNode())),
+          pragma[only_bind_into](apSome(argAp)), ap, pragma[only_bind_into](apa),
+          pragma[only_bind_into](config)) and
         kind = ret.getKind() and
-        p.isParameterOf(c, pragma[only_bind_into](summaryCtx)) and
-        parameterFlowThroughAllowed(p, kind)
+        parameterFlowThroughAllowed(summaryCtx, kind) and
+        argApa = getApprox(argAp) and
+        PrevStage::returnMayFlowThrough(ret, argApa, apa, kind, pragma[only_bind_into](config))
       )
     }
 
     pragma[inline]
-    private predicate fwdFlowInMayFlowThrough(
-      DataFlowCall call, Cc cc, CcCall innerCc, ParameterPositionOption summaryCtx, ApOption argAp,
-      ParamNodeEx param, Ap ap, ApApprox apa, Configuration config
+    private predicate fwdFlowThrough0(
+      DataFlowCall call, Cc cc, FlowState state, CcCall ccc, ParamNodeOption summaryCtx,
+      ApOption argAp, Ap ap, ApApprox apa, RetNodeEx ret, ParamNodeEx innerSummaryCtx,
+      Ap innerArgAp, ApApprox innerArgApa, Configuration config
     ) {
-      fwdFlowIn(call, pragma[only_bind_into](param), _, cc, innerCc, summaryCtx, argAp, ap,
-        pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
-      PrevStage::parameterMayFlowThrough(param, apa, config)
-    }
-
-    // dedup before joining with `flowThroughOutOfCall`
-    pragma[nomagic]
-    private predicate fwdFlowInMayFlowThroughProj(
-      DataFlowCall call, CcCall innerCc, ApApprox apa, Configuration config
-    ) {
-      fwdFlowInMayFlowThrough(call, _, innerCc, _, _, _, _, apa, config)
-    }
-
-    /**
-     * Same as `flowThroughOutOfCall`, but restricted to calls that are reached
-     * in the flow covered by `fwdFlow`, where data might flow through the target
-     * callable and back out at `call`.
-     */
-    pragma[nomagic]
-    private predicate fwdFlowThroughOutOfCall(
-      DataFlowCall call, CcCall ccc, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow,
-      ApApprox argApa, ApApprox apa, Configuration config
-    ) {
-      fwdFlowInMayFlowThroughProj(call, ccc, argApa, config) and
-      flowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, argApa, apa, config)
+      fwdFlowRetFromArg(ret, state, ccc, innerSummaryCtx, innerArgAp, innerArgApa, ap, apa, config) and
+      fwdFlowIsEntered(call, cc, ccc, summaryCtx, argAp, innerSummaryCtx, innerArgAp, config)
     }
 
     pragma[nomagic]
-    private predicate fwdFlowOutFromArg(
-      DataFlowCall call, NodeEx out, FlowState state, ParameterPosition summaryCtx, Ap argAp, Ap ap,
-      ApApprox apa, Configuration config
+    private predicate fwdFlowThrough(
+      DataFlowCall call, Cc cc, FlowState state, CcCall ccc, ParamNodeOption summaryCtx,
+      ApOption argAp, Ap ap, ApApprox apa, RetNodeEx ret, ApApprox innerArgApa, Configuration config
     ) {
-      exists(RetNodeEx ret, boolean allowsFieldFlow, CcCall ccc, ApApprox argApa |
-        fwdFlowRetFromArg(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc),
-          summaryCtx, _, argAp, pragma[only_bind_into](argApa), ap, pragma[only_bind_into](apa),
-          config) and
-        fwdFlowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, argApa, apa, config) and
-        (if allowsFieldFlow = false then ap instanceof ApNil else any())
-      )
+      fwdFlowThrough0(call, cc, state, ccc, summaryCtx, argAp, ap, apa, ret, _, _, innerArgApa,
+        config)
     }
 
     /**
@@ -1571,12 +1548,14 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate fwdFlowIsEntered(
-      DataFlowCall call, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      ParameterPosition pos, Ap ap, Configuration config
+      DataFlowCall call, Cc cc, CcCall innerCc, ParamNodeOption summaryCtx, ApOption argAp,
+      ParamNodeEx p, Ap ap, Configuration config
     ) {
-      exists(ParamNodeEx param |
-        fwdFlowInMayFlowThrough(call, cc, _, summaryCtx, argAp, param, ap, _, config) and
-        pos = param.getPosition()
+      exists(ApApprox apa |
+        fwdFlowIn(call, pragma[only_bind_into](p), _, cc, innerCc, summaryCtx, argAp, ap,
+          pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
+        PrevStage::parameterMayFlowThrough(p, apa, config) and
+        PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config))
       )
     }
 
@@ -1596,23 +1575,31 @@ private module MkStage<StageSig PrevStage> {
       fwdFlowConsCand(ap1, c, ap2, config)
     }
 
+    pragma[nomagic]
+    private predicate returnFlowsThrough0(
+      DataFlowCall call, FlowState state, CcCall ccc, Ap ap, ApApprox apa, RetNodeEx ret,
+      ParamNodeEx innerSummaryCtx, Ap innerArgAp, ApApprox innerArgApa, Configuration config
+    ) {
+      fwdFlowThrough0(call, _, state, ccc, _, _, ap, apa, ret, innerSummaryCtx, innerArgAp,
+        innerArgApa, config)
+    }
+
     pragma[nomagic]
     private predicate returnFlowsThrough(
-      RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, ParamNodeEx p, Ap argAp,
+      RetNodeEx ret, ReturnPosition pos, FlowState state, CcCall ccc, ParamNodeEx p, Ap argAp,
       Ap ap, Configuration config
     ) {
-      exists(boolean allowsFieldFlow, ApApprox argApa, ApApprox apa |
-        fwdFlowRetFromArg(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc), _, p,
-          argAp, pragma[only_bind_into](argApa), ap, pragma[only_bind_into](apa), config) and
-        kind = ret.getKind() and
-        fwdFlowThroughOutOfCall(_, ccc, ret, _, allowsFieldFlow, argApa, apa, config) and
-        (if allowsFieldFlow = false then ap instanceof ApNil else any())
+      exists(DataFlowCall call, ApApprox apa, boolean allowsFieldFlow, ApApprox innerArgApa |
+        returnFlowsThrough0(call, state, ccc, ap, apa, ret, p, argAp, innerArgApa, config) and
+        flowThroughOutOfCall(call, ccc, ret, _, allowsFieldFlow, innerArgApa, apa, config) and
+        pos = ret.getReturnPosition() and
+        if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
     pragma[nomagic]
     private predicate flowThroughIntoCall(
-      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp,
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp, Ap ap,
       Configuration config
     ) {
       exists(ApApprox argApa |
@@ -1620,7 +1607,7 @@ private module MkStage<StageSig PrevStage> {
           allowsFieldFlow, argApa, pragma[only_bind_into](config)) and
         fwdFlow(arg, _, _, _, _, pragma[only_bind_into](argAp), argApa,
           pragma[only_bind_into](config)) and
-        returnFlowsThrough(_, _, _, _, p, pragma[only_bind_into](argAp), _,
+        returnFlowsThrough(_, _, _, _, p, pragma[only_bind_into](argAp), ap,
           pragma[only_bind_into](config)) and
         if allowsFieldFlow = false then argAp instanceof ApNil else any()
       )
@@ -1639,12 +1626,13 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate flowOutOfCallAp(
-      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
+      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
       Ap ap, Configuration config
     ) {
       exists(ApApprox apa |
-        flowOutOfCallApa(call, ret, kind, out, allowsFieldFlow, apa, config) and
-        fwdFlow(ret, _, _, _, _, ap, apa, config)
+        flowOutOfCallApa(call, ret, _, out, allowsFieldFlow, apa, config) and
+        fwdFlow(ret, _, _, _, _, ap, apa, config) and
+        pos = ret.getReturnPosition()
       )
     }
 
@@ -1739,17 +1727,17 @@ private module MkStage<StageSig PrevStage> {
       )
       or
       // flow through a callable
-      exists(DataFlowCall call, ReturnKindExt returnKind0, Ap returnAp0 |
-        revFlowInToReturn(call, node, state, returnKind0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
+      exists(DataFlowCall call, ParamNodeEx p, ReturnPosition pos, Ap innerReturnAp |
+        revFlowThrough(call, returnCtx, p, state, pos, returnAp, ap, innerReturnAp, config) and
+        flowThroughIntoCall(call, node, p, _, ap, innerReturnAp, config)
       )
       or
       // flow out of a callable
-      exists(ReturnKindExt kind |
-        revFlowOut(_, node, kind, state, _, _, ap, config) and
-        if returnFlowsThrough(node, kind, state, _, _, _, ap, config)
+      exists(ReturnPosition pos |
+        revFlowOut(_, node, pos, state, _, _, ap, config) and
+        if returnFlowsThrough(node, pos, state, _, _, _, ap, config)
         then (
-          returnCtx = TReturnCtxMaybeFlowThrough(kind) and
+          returnCtx = TReturnCtxMaybeFlowThrough(pos) and
           returnAp = apSome(ap)
         ) else (
           returnCtx = TReturnCtxNoFlowThrough() and returnAp = apNone()
@@ -1782,47 +1770,33 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate revFlowOut(
-      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, FlowState state, ReturnCtx returnCtx,
+      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, FlowState state, ReturnCtx returnCtx,
       ApOption returnAp, Ap ap, Configuration config
     ) {
       exists(NodeEx out, boolean allowsFieldFlow |
         revFlow(out, state, returnCtx, returnAp, ap, config) and
-        flowOutOfCallAp(call, ret, kind, out, allowsFieldFlow, ap, config) and
+        flowOutOfCallAp(call, ret, pos, out, allowsFieldFlow, ap, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
-    /**
-     * Same as `flowThroughIntoCall`, but restricted to calls that are reached
-     * in the flow covered by `revFlow`, where data might flow through the target
-     * callable and back out at `call`.
-     */
-    pragma[nomagic]
-    private predicate revFlowThroughIntoCall(
-      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp,
-      Configuration config
-    ) {
-      flowThroughIntoCall(call, arg, p, allowsFieldFlow, argAp, config) and
-      revFlowIsReturned(call, _, _, _, _, config)
-    }
-
     pragma[nomagic]
     private predicate revFlowParamToReturn(
-      ParamNodeEx p, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap, Configuration config
+      ParamNodeEx p, FlowState state, ReturnPosition pos, Ap returnAp, Ap ap, Configuration config
     ) {
-      revFlow(p, state, TReturnCtxMaybeFlowThrough(kind), apSome(returnAp), ap, config) and
-      parameterFlowThroughAllowed(p, kind)
+      revFlow(pragma[only_bind_into](p), state, TReturnCtxMaybeFlowThrough(pos), apSome(returnAp),
+        pragma[only_bind_into](ap), pragma[only_bind_into](config)) and
+      parameterFlowThroughAllowed(p, pos.getKind()) and
+      PrevStage::parameterMayFlowThrough(p, getApprox(ap), config)
     }
 
     pragma[nomagic]
-    private predicate revFlowInToReturn(
-      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap,
-      Configuration config
+    private predicate revFlowThrough(
+      DataFlowCall call, ReturnCtx returnCtx, ParamNodeEx p, FlowState state, ReturnPosition pos,
+      ApOption returnAp, Ap ap, Ap innerReturnAp, Configuration config
     ) {
-      exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlowParamToReturn(p, state, kind, returnAp, ap, config) and
-        revFlowThroughIntoCall(call, arg, p, allowsFieldFlow, ap, config)
-      )
+      revFlowParamToReturn(p, state, pos, innerReturnAp, ap, config) and
+      revFlowIsReturned(call, returnCtx, returnAp, pos, innerReturnAp, config)
     }
 
     /**
@@ -1832,12 +1806,12 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate revFlowIsReturned(
-      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnKindExt kind, Ap ap,
+      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnPosition pos, Ap ap,
       Configuration config
     ) {
       exists(RetNodeEx ret, FlowState state, CcCall ccc |
-        revFlowOut(call, ret, kind, state, returnCtx, returnAp, ap, config) and
-        returnFlowsThrough(ret, kind, state, ccc, _, _, ap, config) and
+        revFlowOut(call, ret, pos, state, returnCtx, returnAp, ap, config) and
+        returnFlowsThrough(ret, pos, state, ccc, _, _, ap, config) and
         matchesCall(ccc, call)
       )
     }
@@ -1915,17 +1889,17 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate parameterFlowsThroughRev(
-      ParamNodeEx p, Ap ap, ReturnKindExt kind, Ap returnAp, Configuration config
+      ParamNodeEx p, Ap ap, ReturnPosition pos, Ap returnAp, Configuration config
     ) {
-      revFlow(p, _, TReturnCtxMaybeFlowThrough(kind), apSome(returnAp), ap, config) and
-      parameterFlowThroughAllowed(p, kind)
+      revFlow(p, _, TReturnCtxMaybeFlowThrough(pos), apSome(returnAp), ap, config) and
+      parameterFlowThroughAllowed(p, pos.getKind())
     }
 
     pragma[nomagic]
     predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
-      exists(RetNodeEx ret, ReturnKindExt kind |
-        returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
-        parameterFlowsThroughRev(p, ap, kind, _, config)
+      exists(RetNodeEx ret, ReturnPosition pos |
+        returnFlowsThrough(ret, pos, _, _, p, ap, _, config) and
+        parameterFlowsThroughRev(p, ap, pos, _, config)
       )
     }
 
@@ -1933,20 +1907,21 @@ private module MkStage<StageSig PrevStage> {
     predicate returnMayFlowThrough(
       RetNodeEx ret, Ap argAp, Ap ap, ReturnKindExt kind, Configuration config
     ) {
-      exists(ParamNodeEx p |
-        returnFlowsThrough(ret, kind, _, _, p, argAp, ap, config) and
-        parameterFlowsThroughRev(p, argAp, kind, ap, config)
+      exists(ParamNodeEx p, ReturnPosition pos |
+        returnFlowsThrough(ret, pos, _, _, p, argAp, ap, config) and
+        parameterFlowsThroughRev(p, argAp, pos, ap, config) and
+        kind = pos.getKind()
       )
     }
 
     pragma[nomagic]
-    predicate revFlowInToReturnIsReturned(
+    private predicate revFlowThroughArg(
       DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnCtx returnCtx, ApOption returnAp,
       Ap ap, Configuration config
     ) {
-      exists(ReturnKindExt returnKind0, Ap returnAp0 |
-        revFlowInToReturn(call, arg, state, returnKind0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
+      exists(ParamNodeEx p, ReturnPosition pos, Ap innerReturnAp |
+        revFlowThrough(call, returnCtx, p, state, pos, returnAp, ap, innerReturnAp, config) and
+        flowThroughIntoCall(call, arg, p, _, ap, innerReturnAp, config)
       )
     }
 
@@ -1954,7 +1929,7 @@ private module MkStage<StageSig PrevStage> {
     predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
       exists(ArgNodeEx arg, FlowState state, ReturnCtx returnCtx, ApOption returnAp, Ap ap |
         revFlow(arg, state, returnCtx, returnAp, ap, config) and
-        revFlowInToReturnIsReturned(call, arg, state, returnCtx, returnAp, ap, config)
+        revFlowThroughArg(call, arg, state, returnCtx, returnAp, ap, config)
       )
     }
 
@@ -1967,8 +1942,9 @@ private module MkStage<StageSig PrevStage> {
       conscand = count(TypedContent f0, Ap ap | fwdConsCand(f0, ap, config)) and
       states = count(FlowState state | fwdFlow(_, state, _, _, _, _, config)) and
       tuples =
-        count(NodeEx n, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-          Ap ap | fwdFlow(n, state, cc, summaryCtx, argAp, ap, config))
+        count(NodeEx n, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap |
+          fwdFlow(n, state, cc, summaryCtx, argAp, ap, config)
+        )
       or
       fwd = false and
       nodes = count(NodeEx node | revFlow(node, _, _, _, _, config)) and
@@ -2823,13 +2799,12 @@ private Configuration unbindConf(Configuration conf) {
 
 pragma[nomagic]
 private predicate nodeMayUseSummary0(
-  NodeEx n, DataFlowCallable c, ParameterPosition pos, FlowState state, AccessPathApprox apa,
-  Configuration config
+  NodeEx n, ParamNodeEx p, FlowState state, AccessPathApprox apa, Configuration config
 ) {
   exists(AccessPathApprox apa0 |
-    c = n.getEnclosingCallable() and
+    Stage5::parameterMayFlowThrough(p, _, _) and
     Stage5::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
-    Stage5::fwdFlow(n, state, any(CallContextCall ccc), TParameterPositionSome(pos),
+    Stage5::fwdFlow(n, state, any(CallContextCall ccc), TParamNodeSome(p.asNode()),
       TAccessPathApproxSome(apa), apa0, config)
   )
 }
@@ -2838,10 +2813,9 @@ pragma[nomagic]
 private predicate nodeMayUseSummary(
   NodeEx n, FlowState state, AccessPathApprox apa, Configuration config
 ) {
-  exists(DataFlowCallable c, ParameterPosition pos, ParamNodeEx p |
+  exists(ParamNodeEx p |
     Stage5::parameterMayFlowThrough(p, apa, config) and
-    nodeMayUseSummary0(n, c, pos, state, apa, config) and
-    p.isParameterOf(c, pos)
+    nodeMayUseSummary0(n, p, state, apa, config)
   )
 }
 
diff --git a/swift/ql/lib/codeql/swift/dataflow/internal/DataFlowImpl.qll b/swift/ql/lib/codeql/swift/dataflow/internal/DataFlowImpl.qll
index 6741ccc2f06..23d11a38842 100644
--- a/swift/ql/lib/codeql/swift/dataflow/internal/DataFlowImpl.qll
+++ b/swift/ql/lib/codeql/swift/dataflow/internal/DataFlowImpl.qll
@@ -1327,8 +1327,8 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     additional predicate fwdFlow(
-      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      Ap ap, ApApprox apa, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      ApApprox apa, Configuration config
     ) {
       fwdFlow0(node, state, cc, summaryCtx, argAp, ap, apa, config) and
       PrevStage::revFlow(node, state, apa, config) and
@@ -1337,21 +1337,21 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[inline]
     additional predicate fwdFlow(
-      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      Ap ap, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      Configuration config
     ) {
       fwdFlow(node, state, cc, summaryCtx, argAp, ap, _, config)
     }
 
     pragma[nomagic]
     private predicate fwdFlow0(
-      NodeEx node, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      Ap ap, ApApprox apa, Configuration config
+      NodeEx node, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap,
+      ApApprox apa, Configuration config
     ) {
       sourceNode(node, state, config) and
       (if hasSourceCallCtx(config) then cc = ccSomeCall() else cc = ccNone()) and
       argAp = apNone() and
-      summaryCtx = TParameterPositionNone() and
+      summaryCtx = TParamNodeNone() and
       ap = getApNil(node) and
       apa = getApprox(ap)
       or
@@ -1372,7 +1372,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, pragma[only_bind_into](state), _, _, _, ap, apa, pragma[only_bind_into](config)) and
         jumpStep(mid, node, config) and
         cc = ccNone() and
-        summaryCtx = TParameterPositionNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone()
       )
       or
@@ -1380,7 +1380,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, state, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStep(mid, node, config) and
         cc = ccNone() and
-        summaryCtx = TParameterPositionNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone() and
         ap = getApNil(node) and
         apa = getApprox(ap)
@@ -1390,7 +1390,7 @@ private module MkStage<StageSig PrevStage> {
         fwdFlow(mid, state0, _, _, _, nil, pragma[only_bind_into](config)) and
         additionalJumpStateStep(mid, state0, node, state, config) and
         cc = ccNone() and
-        summaryCtx = TParameterPositionNone() and
+        summaryCtx = TParamNodeNone() and
         argAp = apNone() and
         ap = getApNil(node) and
         apa = getApprox(ap)
@@ -1414,10 +1414,10 @@ private module MkStage<StageSig PrevStage> {
       fwdFlowIn(_, node, state, _, cc, _, _, ap, apa, config) and
       if PrevStage::parameterMayFlowThrough(node, apa, config)
       then (
-        summaryCtx = TParameterPositionSome(node.(ParamNodeEx).getPosition()) and
+        summaryCtx = TParamNodeSome(node.asNode()) and
         argAp = apSome(ap)
       ) else (
-        summaryCtx = TParameterPositionNone() and argAp = apNone()
+        summaryCtx = TParamNodeNone() and argAp = apNone()
       )
       or
       // flow out of a callable
@@ -1433,16 +1433,19 @@ private module MkStage<StageSig PrevStage> {
       )
       or
       // flow through a callable
-      exists(DataFlowCall call, ParameterPosition summaryCtx0, Ap argAp0 |
-        fwdFlowOutFromArg(call, node, state, summaryCtx0, argAp0, ap, apa, config) and
-        fwdFlowIsEntered(call, cc, summaryCtx, argAp, summaryCtx0, argAp0, config)
+      exists(
+        DataFlowCall call, CcCall ccc, RetNodeEx ret, boolean allowsFieldFlow, ApApprox innerArgApa
+      |
+        fwdFlowThrough(call, cc, state, ccc, summaryCtx, argAp, ap, apa, ret, innerArgApa, config) and
+        flowThroughOutOfCall(call, ccc, ret, node, allowsFieldFlow, innerArgApa, apa, config) and
+        if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
     pragma[nomagic]
     private predicate fwdFlowStore(
       NodeEx node1, Ap ap1, TypedContent tc, NodeEx node2, FlowState state, Cc cc,
-      ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
+      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
     ) {
       exists(DataFlowType contentType, ApApprox apa1 |
         fwdFlow(node1, state, cc, summaryCtx, argAp, ap1, apa1, config) and
@@ -1473,8 +1476,8 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowRead0(
-      NodeEx node1, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      ApNonNil ap, Configuration config
+      NodeEx node1, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, ApNonNil ap,
+      Configuration config
     ) {
       fwdFlow(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, _, _, config)
@@ -1483,7 +1486,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowRead(
       Ap ap, Content c, NodeEx node1, NodeEx node2, FlowState state, Cc cc,
-      ParameterPositionOption summaryCtx, ApOption argAp, Configuration config
+      ParamNodeOption summaryCtx, ApOption argAp, Configuration config
     ) {
       fwdFlowRead0(node1, state, cc, summaryCtx, argAp, ap, config) and
       PrevStage::readStepCand(node1, c, node2, config) and
@@ -1493,7 +1496,7 @@ private module MkStage<StageSig PrevStage> {
     pragma[nomagic]
     private predicate fwdFlowIn(
       DataFlowCall call, ParamNodeEx p, FlowState state, Cc outercc, CcCall innercc,
-      ParameterPositionOption summaryCtx, ApOption argAp, Ap ap, ApApprox apa, Configuration config
+      ParamNodeOption summaryCtx, ApOption argAp, Ap ap, ApApprox apa, Configuration config
     ) {
       exists(ArgNodeEx arg, boolean allowsFieldFlow |
         fwdFlow(arg, state, outercc, summaryCtx, argAp, ap, apa, config) and
@@ -1505,64 +1508,38 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate fwdFlowRetFromArg(
-      RetNodeEx ret, FlowState state, CcCall ccc, ParameterPosition summaryCtx, ParamNodeEx p,
-      Ap argAp, ApApprox argApa, Ap ap, ApApprox apa, Configuration config
+      RetNodeEx ret, FlowState state, CcCall ccc, ParamNodeEx summaryCtx, Ap argAp, ApApprox argApa,
+      Ap ap, ApApprox apa, Configuration config
     ) {
-      exists(DataFlowCallable c, ReturnKindExt kind |
+      exists(ReturnKindExt kind |
         fwdFlow(pragma[only_bind_into](ret), state, ccc,
-          TParameterPositionSome(pragma[only_bind_into](summaryCtx)), apSome(argAp), ap, apa, config) and
-        getApprox(argAp) = argApa and
-        c = ret.getEnclosingCallable() and
+          TParamNodeSome(pragma[only_bind_into](summaryCtx.asNode())),
+          pragma[only_bind_into](apSome(argAp)), ap, pragma[only_bind_into](apa),
+          pragma[only_bind_into](config)) and
         kind = ret.getKind() and
-        p.isParameterOf(c, pragma[only_bind_into](summaryCtx)) and
-        parameterFlowThroughAllowed(p, kind)
+        parameterFlowThroughAllowed(summaryCtx, kind) and
+        argApa = getApprox(argAp) and
+        PrevStage::returnMayFlowThrough(ret, argApa, apa, kind, pragma[only_bind_into](config))
       )
     }
 
     pragma[inline]
-    private predicate fwdFlowInMayFlowThrough(
-      DataFlowCall call, Cc cc, CcCall innerCc, ParameterPositionOption summaryCtx, ApOption argAp,
-      ParamNodeEx param, Ap ap, ApApprox apa, Configuration config
+    private predicate fwdFlowThrough0(
+      DataFlowCall call, Cc cc, FlowState state, CcCall ccc, ParamNodeOption summaryCtx,
+      ApOption argAp, Ap ap, ApApprox apa, RetNodeEx ret, ParamNodeEx innerSummaryCtx,
+      Ap innerArgAp, ApApprox innerArgApa, Configuration config
     ) {
-      fwdFlowIn(call, pragma[only_bind_into](param), _, cc, innerCc, summaryCtx, argAp, ap,
-        pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
-      PrevStage::parameterMayFlowThrough(param, apa, config)
-    }
-
-    // dedup before joining with `flowThroughOutOfCall`
-    pragma[nomagic]
-    private predicate fwdFlowInMayFlowThroughProj(
-      DataFlowCall call, CcCall innerCc, ApApprox apa, Configuration config
-    ) {
-      fwdFlowInMayFlowThrough(call, _, innerCc, _, _, _, _, apa, config)
-    }
-
-    /**
-     * Same as `flowThroughOutOfCall`, but restricted to calls that are reached
-     * in the flow covered by `fwdFlow`, where data might flow through the target
-     * callable and back out at `call`.
-     */
-    pragma[nomagic]
-    private predicate fwdFlowThroughOutOfCall(
-      DataFlowCall call, CcCall ccc, RetNodeEx ret, NodeEx out, boolean allowsFieldFlow,
-      ApApprox argApa, ApApprox apa, Configuration config
-    ) {
-      fwdFlowInMayFlowThroughProj(call, ccc, argApa, config) and
-      flowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, argApa, apa, config)
+      fwdFlowRetFromArg(ret, state, ccc, innerSummaryCtx, innerArgAp, innerArgApa, ap, apa, config) and
+      fwdFlowIsEntered(call, cc, ccc, summaryCtx, argAp, innerSummaryCtx, innerArgAp, config)
     }
 
     pragma[nomagic]
-    private predicate fwdFlowOutFromArg(
-      DataFlowCall call, NodeEx out, FlowState state, ParameterPosition summaryCtx, Ap argAp, Ap ap,
-      ApApprox apa, Configuration config
+    private predicate fwdFlowThrough(
+      DataFlowCall call, Cc cc, FlowState state, CcCall ccc, ParamNodeOption summaryCtx,
+      ApOption argAp, Ap ap, ApApprox apa, RetNodeEx ret, ApApprox innerArgApa, Configuration config
     ) {
-      exists(RetNodeEx ret, boolean allowsFieldFlow, CcCall ccc, ApApprox argApa |
-        fwdFlowRetFromArg(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc),
-          summaryCtx, _, argAp, pragma[only_bind_into](argApa), ap, pragma[only_bind_into](apa),
-          config) and
-        fwdFlowThroughOutOfCall(call, ccc, ret, out, allowsFieldFlow, argApa, apa, config) and
-        (if allowsFieldFlow = false then ap instanceof ApNil else any())
-      )
+      fwdFlowThrough0(call, cc, state, ccc, summaryCtx, argAp, ap, apa, ret, _, _, innerArgApa,
+        config)
     }
 
     /**
@@ -1571,12 +1548,14 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate fwdFlowIsEntered(
-      DataFlowCall call, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-      ParameterPosition pos, Ap ap, Configuration config
+      DataFlowCall call, Cc cc, CcCall innerCc, ParamNodeOption summaryCtx, ApOption argAp,
+      ParamNodeEx p, Ap ap, Configuration config
     ) {
-      exists(ParamNodeEx param |
-        fwdFlowInMayFlowThrough(call, cc, _, summaryCtx, argAp, param, ap, _, config) and
-        pos = param.getPosition()
+      exists(ApApprox apa |
+        fwdFlowIn(call, pragma[only_bind_into](p), _, cc, innerCc, summaryCtx, argAp, ap,
+          pragma[only_bind_into](apa), pragma[only_bind_into](config)) and
+        PrevStage::parameterMayFlowThrough(p, apa, config) and
+        PrevStage::callMayFlowThroughRev(call, pragma[only_bind_into](config))
       )
     }
 
@@ -1596,23 +1575,31 @@ private module MkStage<StageSig PrevStage> {
       fwdFlowConsCand(ap1, c, ap2, config)
     }
 
+    pragma[nomagic]
+    private predicate returnFlowsThrough0(
+      DataFlowCall call, FlowState state, CcCall ccc, Ap ap, ApApprox apa, RetNodeEx ret,
+      ParamNodeEx innerSummaryCtx, Ap innerArgAp, ApApprox innerArgApa, Configuration config
+    ) {
+      fwdFlowThrough0(call, _, state, ccc, _, _, ap, apa, ret, innerSummaryCtx, innerArgAp,
+        innerArgApa, config)
+    }
+
     pragma[nomagic]
     private predicate returnFlowsThrough(
-      RetNodeEx ret, ReturnKindExt kind, FlowState state, CcCall ccc, ParamNodeEx p, Ap argAp,
+      RetNodeEx ret, ReturnPosition pos, FlowState state, CcCall ccc, ParamNodeEx p, Ap argAp,
       Ap ap, Configuration config
     ) {
-      exists(boolean allowsFieldFlow, ApApprox argApa, ApApprox apa |
-        fwdFlowRetFromArg(pragma[only_bind_into](ret), state, pragma[only_bind_into](ccc), _, p,
-          argAp, pragma[only_bind_into](argApa), ap, pragma[only_bind_into](apa), config) and
-        kind = ret.getKind() and
-        fwdFlowThroughOutOfCall(_, ccc, ret, _, allowsFieldFlow, argApa, apa, config) and
-        (if allowsFieldFlow = false then ap instanceof ApNil else any())
+      exists(DataFlowCall call, ApApprox apa, boolean allowsFieldFlow, ApApprox innerArgApa |
+        returnFlowsThrough0(call, state, ccc, ap, apa, ret, p, argAp, innerArgApa, config) and
+        flowThroughOutOfCall(call, ccc, ret, _, allowsFieldFlow, innerArgApa, apa, config) and
+        pos = ret.getReturnPosition() and
+        if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
     pragma[nomagic]
     private predicate flowThroughIntoCall(
-      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp,
+      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp, Ap ap,
       Configuration config
     ) {
       exists(ApApprox argApa |
@@ -1620,7 +1607,7 @@ private module MkStage<StageSig PrevStage> {
           allowsFieldFlow, argApa, pragma[only_bind_into](config)) and
         fwdFlow(arg, _, _, _, _, pragma[only_bind_into](argAp), argApa,
           pragma[only_bind_into](config)) and
-        returnFlowsThrough(_, _, _, _, p, pragma[only_bind_into](argAp), _,
+        returnFlowsThrough(_, _, _, _, p, pragma[only_bind_into](argAp), ap,
           pragma[only_bind_into](config)) and
         if allowsFieldFlow = false then argAp instanceof ApNil else any()
       )
@@ -1639,12 +1626,13 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate flowOutOfCallAp(
-      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, NodeEx out, boolean allowsFieldFlow,
+      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, NodeEx out, boolean allowsFieldFlow,
       Ap ap, Configuration config
     ) {
       exists(ApApprox apa |
-        flowOutOfCallApa(call, ret, kind, out, allowsFieldFlow, apa, config) and
-        fwdFlow(ret, _, _, _, _, ap, apa, config)
+        flowOutOfCallApa(call, ret, _, out, allowsFieldFlow, apa, config) and
+        fwdFlow(ret, _, _, _, _, ap, apa, config) and
+        pos = ret.getReturnPosition()
       )
     }
 
@@ -1739,17 +1727,17 @@ private module MkStage<StageSig PrevStage> {
       )
       or
       // flow through a callable
-      exists(DataFlowCall call, ReturnKindExt returnKind0, Ap returnAp0 |
-        revFlowInToReturn(call, node, state, returnKind0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
+      exists(DataFlowCall call, ParamNodeEx p, ReturnPosition pos, Ap innerReturnAp |
+        revFlowThrough(call, returnCtx, p, state, pos, returnAp, ap, innerReturnAp, config) and
+        flowThroughIntoCall(call, node, p, _, ap, innerReturnAp, config)
       )
       or
       // flow out of a callable
-      exists(ReturnKindExt kind |
-        revFlowOut(_, node, kind, state, _, _, ap, config) and
-        if returnFlowsThrough(node, kind, state, _, _, _, ap, config)
+      exists(ReturnPosition pos |
+        revFlowOut(_, node, pos, state, _, _, ap, config) and
+        if returnFlowsThrough(node, pos, state, _, _, _, ap, config)
         then (
-          returnCtx = TReturnCtxMaybeFlowThrough(kind) and
+          returnCtx = TReturnCtxMaybeFlowThrough(pos) and
           returnAp = apSome(ap)
         ) else (
           returnCtx = TReturnCtxNoFlowThrough() and returnAp = apNone()
@@ -1782,47 +1770,33 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate revFlowOut(
-      DataFlowCall call, RetNodeEx ret, ReturnKindExt kind, FlowState state, ReturnCtx returnCtx,
+      DataFlowCall call, RetNodeEx ret, ReturnPosition pos, FlowState state, ReturnCtx returnCtx,
       ApOption returnAp, Ap ap, Configuration config
     ) {
       exists(NodeEx out, boolean allowsFieldFlow |
         revFlow(out, state, returnCtx, returnAp, ap, config) and
-        flowOutOfCallAp(call, ret, kind, out, allowsFieldFlow, ap, config) and
+        flowOutOfCallAp(call, ret, pos, out, allowsFieldFlow, ap, config) and
         if allowsFieldFlow = false then ap instanceof ApNil else any()
       )
     }
 
-    /**
-     * Same as `flowThroughIntoCall`, but restricted to calls that are reached
-     * in the flow covered by `revFlow`, where data might flow through the target
-     * callable and back out at `call`.
-     */
-    pragma[nomagic]
-    private predicate revFlowThroughIntoCall(
-      DataFlowCall call, ArgNodeEx arg, ParamNodeEx p, boolean allowsFieldFlow, Ap argAp,
-      Configuration config
-    ) {
-      flowThroughIntoCall(call, arg, p, allowsFieldFlow, argAp, config) and
-      revFlowIsReturned(call, _, _, _, _, config)
-    }
-
     pragma[nomagic]
     private predicate revFlowParamToReturn(
-      ParamNodeEx p, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap, Configuration config
+      ParamNodeEx p, FlowState state, ReturnPosition pos, Ap returnAp, Ap ap, Configuration config
     ) {
-      revFlow(p, state, TReturnCtxMaybeFlowThrough(kind), apSome(returnAp), ap, config) and
-      parameterFlowThroughAllowed(p, kind)
+      revFlow(pragma[only_bind_into](p), state, TReturnCtxMaybeFlowThrough(pos), apSome(returnAp),
+        pragma[only_bind_into](ap), pragma[only_bind_into](config)) and
+      parameterFlowThroughAllowed(p, pos.getKind()) and
+      PrevStage::parameterMayFlowThrough(p, getApprox(ap), config)
     }
 
     pragma[nomagic]
-    private predicate revFlowInToReturn(
-      DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnKindExt kind, Ap returnAp, Ap ap,
-      Configuration config
+    private predicate revFlowThrough(
+      DataFlowCall call, ReturnCtx returnCtx, ParamNodeEx p, FlowState state, ReturnPosition pos,
+      ApOption returnAp, Ap ap, Ap innerReturnAp, Configuration config
     ) {
-      exists(ParamNodeEx p, boolean allowsFieldFlow |
-        revFlowParamToReturn(p, state, kind, returnAp, ap, config) and
-        revFlowThroughIntoCall(call, arg, p, allowsFieldFlow, ap, config)
-      )
+      revFlowParamToReturn(p, state, pos, innerReturnAp, ap, config) and
+      revFlowIsReturned(call, returnCtx, returnAp, pos, innerReturnAp, config)
     }
 
     /**
@@ -1832,12 +1806,12 @@ private module MkStage<StageSig PrevStage> {
      */
     pragma[nomagic]
     private predicate revFlowIsReturned(
-      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnKindExt kind, Ap ap,
+      DataFlowCall call, ReturnCtx returnCtx, ApOption returnAp, ReturnPosition pos, Ap ap,
       Configuration config
     ) {
       exists(RetNodeEx ret, FlowState state, CcCall ccc |
-        revFlowOut(call, ret, kind, state, returnCtx, returnAp, ap, config) and
-        returnFlowsThrough(ret, kind, state, ccc, _, _, ap, config) and
+        revFlowOut(call, ret, pos, state, returnCtx, returnAp, ap, config) and
+        returnFlowsThrough(ret, pos, state, ccc, _, _, ap, config) and
         matchesCall(ccc, call)
       )
     }
@@ -1915,17 +1889,17 @@ private module MkStage<StageSig PrevStage> {
 
     pragma[nomagic]
     private predicate parameterFlowsThroughRev(
-      ParamNodeEx p, Ap ap, ReturnKindExt kind, Ap returnAp, Configuration config
+      ParamNodeEx p, Ap ap, ReturnPosition pos, Ap returnAp, Configuration config
     ) {
-      revFlow(p, _, TReturnCtxMaybeFlowThrough(kind), apSome(returnAp), ap, config) and
-      parameterFlowThroughAllowed(p, kind)
+      revFlow(p, _, TReturnCtxMaybeFlowThrough(pos), apSome(returnAp), ap, config) and
+      parameterFlowThroughAllowed(p, pos.getKind())
     }
 
     pragma[nomagic]
     predicate parameterMayFlowThrough(ParamNodeEx p, Ap ap, Configuration config) {
-      exists(RetNodeEx ret, ReturnKindExt kind |
-        returnFlowsThrough(ret, kind, _, _, p, ap, _, config) and
-        parameterFlowsThroughRev(p, ap, kind, _, config)
+      exists(RetNodeEx ret, ReturnPosition pos |
+        returnFlowsThrough(ret, pos, _, _, p, ap, _, config) and
+        parameterFlowsThroughRev(p, ap, pos, _, config)
       )
     }
 
@@ -1933,20 +1907,21 @@ private module MkStage<StageSig PrevStage> {
     predicate returnMayFlowThrough(
       RetNodeEx ret, Ap argAp, Ap ap, ReturnKindExt kind, Configuration config
     ) {
-      exists(ParamNodeEx p |
-        returnFlowsThrough(ret, kind, _, _, p, argAp, ap, config) and
-        parameterFlowsThroughRev(p, argAp, kind, ap, config)
+      exists(ParamNodeEx p, ReturnPosition pos |
+        returnFlowsThrough(ret, pos, _, _, p, argAp, ap, config) and
+        parameterFlowsThroughRev(p, argAp, pos, ap, config) and
+        kind = pos.getKind()
       )
     }
 
     pragma[nomagic]
-    predicate revFlowInToReturnIsReturned(
+    private predicate revFlowThroughArg(
       DataFlowCall call, ArgNodeEx arg, FlowState state, ReturnCtx returnCtx, ApOption returnAp,
       Ap ap, Configuration config
     ) {
-      exists(ReturnKindExt returnKind0, Ap returnAp0 |
-        revFlowInToReturn(call, arg, state, returnKind0, returnAp0, ap, config) and
-        revFlowIsReturned(call, returnCtx, returnAp, returnKind0, returnAp0, config)
+      exists(ParamNodeEx p, ReturnPosition pos, Ap innerReturnAp |
+        revFlowThrough(call, returnCtx, p, state, pos, returnAp, ap, innerReturnAp, config) and
+        flowThroughIntoCall(call, arg, p, _, ap, innerReturnAp, config)
       )
     }
 
@@ -1954,7 +1929,7 @@ private module MkStage<StageSig PrevStage> {
     predicate callMayFlowThroughRev(DataFlowCall call, Configuration config) {
       exists(ArgNodeEx arg, FlowState state, ReturnCtx returnCtx, ApOption returnAp, Ap ap |
         revFlow(arg, state, returnCtx, returnAp, ap, config) and
-        revFlowInToReturnIsReturned(call, arg, state, returnCtx, returnAp, ap, config)
+        revFlowThroughArg(call, arg, state, returnCtx, returnAp, ap, config)
       )
     }
 
@@ -1967,8 +1942,9 @@ private module MkStage<StageSig PrevStage> {
       conscand = count(TypedContent f0, Ap ap | fwdConsCand(f0, ap, config)) and
       states = count(FlowState state | fwdFlow(_, state, _, _, _, _, config)) and
       tuples =
-        count(NodeEx n, FlowState state, Cc cc, ParameterPositionOption summaryCtx, ApOption argAp,
-          Ap ap | fwdFlow(n, state, cc, summaryCtx, argAp, ap, config))
+        count(NodeEx n, FlowState state, Cc cc, ParamNodeOption summaryCtx, ApOption argAp, Ap ap |
+          fwdFlow(n, state, cc, summaryCtx, argAp, ap, config)
+        )
       or
       fwd = false and
       nodes = count(NodeEx node | revFlow(node, _, _, _, _, config)) and
@@ -2823,13 +2799,12 @@ private Configuration unbindConf(Configuration conf) {
 
 pragma[nomagic]
 private predicate nodeMayUseSummary0(
-  NodeEx n, DataFlowCallable c, ParameterPosition pos, FlowState state, AccessPathApprox apa,
-  Configuration config
+  NodeEx n, ParamNodeEx p, FlowState state, AccessPathApprox apa, Configuration config
 ) {
   exists(AccessPathApprox apa0 |
-    c = n.getEnclosingCallable() and
+    Stage5::parameterMayFlowThrough(p, _, _) and
     Stage5::revFlow(n, state, TReturnCtxMaybeFlowThrough(_), _, apa0, config) and
-    Stage5::fwdFlow(n, state, any(CallContextCall ccc), TParameterPositionSome(pos),
+    Stage5::fwdFlow(n, state, any(CallContextCall ccc), TParamNodeSome(p.asNode()),
       TAccessPathApproxSome(apa), apa0, config)
   )
 }
@@ -2838,10 +2813,9 @@ pragma[nomagic]
 private predicate nodeMayUseSummary(
   NodeEx n, FlowState state, AccessPathApprox apa, Configuration config
 ) {
-  exists(DataFlowCallable c, ParameterPosition pos, ParamNodeEx p |
+  exists(ParamNodeEx p |
     Stage5::parameterMayFlowThrough(p, apa, config) and
-    nodeMayUseSummary0(n, c, pos, state, apa, config) and
-    p.isParameterOf(c, pos)
+    nodeMayUseSummary0(n, p, state, apa, config)
   )
 }
 
diff --git a/swift/ql/lib/codeql/swift/dataflow/internal/DataFlowImplCommon.qll b/swift/ql/lib/codeql/swift/dataflow/internal/DataFlowImplCommon.qll
index c66aefced8d..9aa6a529a5b 100644
--- a/swift/ql/lib/codeql/swift/dataflow/internal/DataFlowImplCommon.qll
+++ b/swift/ql/lib/codeql/swift/dataflow/internal/DataFlowImplCommon.qll
@@ -916,15 +916,15 @@ private module Cached {
     TDataFlowCallSome(DataFlowCall call)
 
   cached
-  newtype TParameterPositionOption =
-    TParameterPositionNone() or
-    TParameterPositionSome(ParameterPosition pos)
+  newtype TParamNodeOption =
+    TParamNodeNone() or
+    TParamNodeSome(ParamNode p)
 
   cached
   newtype TReturnCtx =
     TReturnCtxNone() or
     TReturnCtxNoFlowThrough() or
-    TReturnCtxMaybeFlowThrough(ReturnKindExt kind)
+    TReturnCtxMaybeFlowThrough(ReturnPosition pos)
 
   cached
   newtype TTypedContentApprox =
@@ -1343,15 +1343,15 @@ class DataFlowCallOption extends TDataFlowCallOption {
   }
 }
 
-/** An optional `ParameterPosition`. */
-class ParameterPositionOption extends TParameterPositionOption {
+/** An optional `ParamNode`. */
+class ParamNodeOption extends TParamNodeOption {
   string toString() {
-    this = TParameterPositionNone() and
+    this = TParamNodeNone() and
     result = "(none)"
     or
-    exists(ParameterPosition pos |
-      this = TParameterPositionSome(pos) and
-      result = pos.toString()
+    exists(ParamNode p |
+      this = TParamNodeSome(p) and
+      result = p.toString()
     )
   }
 }
@@ -1363,7 +1363,7 @@ class ParameterPositionOption extends TParameterPositionOption {
  *
  * - `TReturnCtxNone()`: no return flow.
  * - `TReturnCtxNoFlowThrough()`: return flow, but flow through is not possible.
- * - `TReturnCtxMaybeFlowThrough(ReturnKindExt kind)`: return flow, of kind `kind`, and
+ * - `TReturnCtxMaybeFlowThrough(ReturnPosition pos)`: return flow, of kind `pos`, and
  *    flow through may be possible.
  */
 class ReturnCtx extends TReturnCtx {
@@ -1374,9 +1374,9 @@ class ReturnCtx extends TReturnCtx {
     this = TReturnCtxNoFlowThrough() and
     result = "(no flow through)"
     or
-    exists(ReturnKindExt kind |
-      this = TReturnCtxMaybeFlowThrough(kind) and
-      result = kind.toString()
+    exists(ReturnPosition pos |
+      this = TReturnCtxMaybeFlowThrough(pos) and
+      result = pos.toString()
     )
   }
 }

From f8571dd0b654289ebe3a5caa95bb62197b005d34 Mon Sep 17 00:00:00 2001
From: Tom Hvitved <hvitved@github.com>
Date: Thu, 15 Dec 2022 15:26:56 +0100
Subject: [PATCH 1397/1420] Data flow: Work around functionality-induced
 misoptimization

---
 .../semmle/code/cpp/ir/dataflow/internal/DataFlowImpl.qll   | 6 +++++-
 .../semmle/code/cpp/ir/dataflow/internal/DataFlowImpl2.qll  | 6 +++++-
 .../semmle/code/cpp/ir/dataflow/internal/DataFlowImpl3.qll  | 6 +++++-
 .../semmle/code/cpp/ir/dataflow/internal/DataFlowImpl4.qll  | 6 +++++-
 .../lib/semmle/code/cpp/dataflow/internal/DataFlowImpl.qll  | 6 +++++-
 .../lib/semmle/code/cpp/dataflow/internal/DataFlowImpl2.qll | 6 +++++-
 .../lib/semmle/code/cpp/dataflow/internal/DataFlowImpl3.qll | 6 +++++-
 .../lib/semmle/code/cpp/dataflow/internal/DataFlowImpl4.qll | 6 +++++-
 .../semmle/code/cpp/dataflow/internal/DataFlowImplLocal.qll | 6 +++++-
 .../semmle/code/cpp/ir/dataflow/internal/DataFlowImpl.qll   | 6 +++++-
 .../semmle/code/cpp/ir/dataflow/internal/DataFlowImpl2.qll  | 6 +++++-
 .../semmle/code/cpp/ir/dataflow/internal/DataFlowImpl3.qll  | 6 +++++-
 .../semmle/code/cpp/ir/dataflow/internal/DataFlowImpl4.qll  | 6 +++++-
 .../semmle/code/csharp/dataflow/internal/DataFlowImpl.qll   | 6 +++++-
 .../semmle/code/csharp/dataflow/internal/DataFlowImpl2.qll  | 6 +++++-
 .../semmle/code/csharp/dataflow/internal/DataFlowImpl3.qll  | 6 +++++-
 .../semmle/code/csharp/dataflow/internal/DataFlowImpl4.qll  | 6 +++++-
 .../semmle/code/csharp/dataflow/internal/DataFlowImpl5.qll  | 6 +++++-
 .../dataflow/internal/DataFlowImplForContentDataFlow.qll    | 6 +++++-
 go/ql/lib/semmle/go/dataflow/internal/DataFlowImpl.qll      | 6 +++++-
 go/ql/lib/semmle/go/dataflow/internal/DataFlowImpl2.qll     | 6 +++++-
 .../lib/semmle/code/java/dataflow/internal/DataFlowImpl.qll | 6 +++++-
 .../semmle/code/java/dataflow/internal/DataFlowImpl2.qll    | 6 +++++-
 .../semmle/code/java/dataflow/internal/DataFlowImpl3.qll    | 6 +++++-
 .../semmle/code/java/dataflow/internal/DataFlowImpl4.qll    | 6 +++++-
 .../semmle/code/java/dataflow/internal/DataFlowImpl5.qll    | 6 +++++-
 .../semmle/code/java/dataflow/internal/DataFlowImpl6.qll    | 6 +++++-
 .../dataflow/internal/DataFlowImplForOnActivityResult.qll   | 6 +++++-
 .../dataflow/internal/DataFlowImplForSerializability.qll    | 6 +++++-
 .../semmle/python/dataflow/new/internal/DataFlowImpl.qll    | 6 +++++-
 .../semmle/python/dataflow/new/internal/DataFlowImpl2.qll   | 6 +++++-
 .../semmle/python/dataflow/new/internal/DataFlowImpl3.qll   | 6 +++++-
 .../semmle/python/dataflow/new/internal/DataFlowImpl4.qll   | 6 +++++-
 ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImpl.qll  | 6 +++++-
 ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImpl2.qll | 6 +++++-
 .../internal/DataFlowImplForHttpClientLibraries.qll         | 6 +++++-
 .../ruby/dataflow/internal/DataFlowImplForPathname.qll      | 6 +++++-
 .../codeql/ruby/dataflow/internal/DataFlowImplForRegExp.qll | 6 +++++-
 .../ql/lib/codeql/swift/dataflow/internal/DataFlowImpl.qll  | 6 +++++-
 39 files changed, 195 insertions(+), 39 deletions(-)

diff --git a/cpp/ql/lib/experimental/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl.qll b/cpp/ql/lib/experimental/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl.qll
index 23d11a38842..1228d00b6ba 100644
--- a/cpp/ql/lib/experimental/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl.qll
+++ b/cpp/ql/lib/experimental/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl.qll
@@ -622,7 +622,11 @@ private predicate parameterFlowThroughAllowed(ParamNodeEx p, ReturnKindExt kind)
 }
 
 private module Stage1 implements StageSig {
-  class Ap = Unit;
+  class Ap extends int {
+    // workaround for bad functionality-induced joins (happens when using `Unit`)
+    pragma[nomagic]
+    Ap() { this in [0 .. 1] and this < 1 }
+  }
 
   private class Cc = boolean;
 
diff --git a/cpp/ql/lib/experimental/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl2.qll b/cpp/ql/lib/experimental/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl2.qll
index 23d11a38842..1228d00b6ba 100644
--- a/cpp/ql/lib/experimental/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl2.qll
+++ b/cpp/ql/lib/experimental/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl2.qll
@@ -622,7 +622,11 @@ private predicate parameterFlowThroughAllowed(ParamNodeEx p, ReturnKindExt kind)
 }
 
 private module Stage1 implements StageSig {
-  class Ap = Unit;
+  class Ap extends int {
+    // workaround for bad functionality-induced joins (happens when using `Unit`)
+    pragma[nomagic]
+    Ap() { this in [0 .. 1] and this < 1 }
+  }
 
   private class Cc = boolean;
 
diff --git a/cpp/ql/lib/experimental/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl3.qll b/cpp/ql/lib/experimental/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl3.qll
index 23d11a38842..1228d00b6ba 100644
--- a/cpp/ql/lib/experimental/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl3.qll
+++ b/cpp/ql/lib/experimental/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl3.qll
@@ -622,7 +622,11 @@ private predicate parameterFlowThroughAllowed(ParamNodeEx p, ReturnKindExt kind)
 }
 
 private module Stage1 implements StageSig {
-  class Ap = Unit;
+  class Ap extends int {
+    // workaround for bad functionality-induced joins (happens when using `Unit`)
+    pragma[nomagic]
+    Ap() { this in [0 .. 1] and this < 1 }
+  }
 
   private class Cc = boolean;
 
diff --git a/cpp/ql/lib/experimental/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl4.qll b/cpp/ql/lib/experimental/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl4.qll
index 23d11a38842..1228d00b6ba 100644
--- a/cpp/ql/lib/experimental/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl4.qll
+++ b/cpp/ql/lib/experimental/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl4.qll
@@ -622,7 +622,11 @@ private predicate parameterFlowThroughAllowed(ParamNodeEx p, ReturnKindExt kind)
 }
 
 private module Stage1 implements StageSig {
-  class Ap = Unit;
+  class Ap extends int {
+    // workaround for bad functionality-induced joins (happens when using `Unit`)
+    pragma[nomagic]
+    Ap() { this in [0 .. 1] and this < 1 }
+  }
 
   private class Cc = boolean;
 
diff --git a/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImpl.qll b/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImpl.qll
index 23d11a38842..1228d00b6ba 100644
--- a/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImpl.qll
+++ b/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImpl.qll
@@ -622,7 +622,11 @@ private predicate parameterFlowThroughAllowed(ParamNodeEx p, ReturnKindExt kind)
 }
 
 private module Stage1 implements StageSig {
-  class Ap = Unit;
+  class Ap extends int {
+    // workaround for bad functionality-induced joins (happens when using `Unit`)
+    pragma[nomagic]
+    Ap() { this in [0 .. 1] and this < 1 }
+  }
 
   private class Cc = boolean;
 
diff --git a/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImpl2.qll b/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImpl2.qll
index 23d11a38842..1228d00b6ba 100644
--- a/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImpl2.qll
+++ b/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImpl2.qll
@@ -622,7 +622,11 @@ private predicate parameterFlowThroughAllowed(ParamNodeEx p, ReturnKindExt kind)
 }
 
 private module Stage1 implements StageSig {
-  class Ap = Unit;
+  class Ap extends int {
+    // workaround for bad functionality-induced joins (happens when using `Unit`)
+    pragma[nomagic]
+    Ap() { this in [0 .. 1] and this < 1 }
+  }
 
   private class Cc = boolean;
 
diff --git a/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImpl3.qll b/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImpl3.qll
index 23d11a38842..1228d00b6ba 100644
--- a/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImpl3.qll
+++ b/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImpl3.qll
@@ -622,7 +622,11 @@ private predicate parameterFlowThroughAllowed(ParamNodeEx p, ReturnKindExt kind)
 }
 
 private module Stage1 implements StageSig {
-  class Ap = Unit;
+  class Ap extends int {
+    // workaround for bad functionality-induced joins (happens when using `Unit`)
+    pragma[nomagic]
+    Ap() { this in [0 .. 1] and this < 1 }
+  }
 
   private class Cc = boolean;
 
diff --git a/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImpl4.qll b/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImpl4.qll
index 23d11a38842..1228d00b6ba 100644
--- a/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImpl4.qll
+++ b/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImpl4.qll
@@ -622,7 +622,11 @@ private predicate parameterFlowThroughAllowed(ParamNodeEx p, ReturnKindExt kind)
 }
 
 private module Stage1 implements StageSig {
-  class Ap = Unit;
+  class Ap extends int {
+    // workaround for bad functionality-induced joins (happens when using `Unit`)
+    pragma[nomagic]
+    Ap() { this in [0 .. 1] and this < 1 }
+  }
 
   private class Cc = boolean;
 
diff --git a/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImplLocal.qll b/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImplLocal.qll
index 23d11a38842..1228d00b6ba 100644
--- a/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImplLocal.qll
+++ b/cpp/ql/lib/semmle/code/cpp/dataflow/internal/DataFlowImplLocal.qll
@@ -622,7 +622,11 @@ private predicate parameterFlowThroughAllowed(ParamNodeEx p, ReturnKindExt kind)
 }
 
 private module Stage1 implements StageSig {
-  class Ap = Unit;
+  class Ap extends int {
+    // workaround for bad functionality-induced joins (happens when using `Unit`)
+    pragma[nomagic]
+    Ap() { this in [0 .. 1] and this < 1 }
+  }
 
   private class Cc = boolean;
 
diff --git a/cpp/ql/lib/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl.qll b/cpp/ql/lib/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl.qll
index 23d11a38842..1228d00b6ba 100644
--- a/cpp/ql/lib/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl.qll
+++ b/cpp/ql/lib/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl.qll
@@ -622,7 +622,11 @@ private predicate parameterFlowThroughAllowed(ParamNodeEx p, ReturnKindExt kind)
 }
 
 private module Stage1 implements StageSig {
-  class Ap = Unit;
+  class Ap extends int {
+    // workaround for bad functionality-induced joins (happens when using `Unit`)
+    pragma[nomagic]
+    Ap() { this in [0 .. 1] and this < 1 }
+  }
 
   private class Cc = boolean;
 
diff --git a/cpp/ql/lib/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl2.qll b/cpp/ql/lib/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl2.qll
index 23d11a38842..1228d00b6ba 100644
--- a/cpp/ql/lib/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl2.qll
+++ b/cpp/ql/lib/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl2.qll
@@ -622,7 +622,11 @@ private predicate parameterFlowThroughAllowed(ParamNodeEx p, ReturnKindExt kind)
 }
 
 private module Stage1 implements StageSig {
-  class Ap = Unit;
+  class Ap extends int {
+    // workaround for bad functionality-induced joins (happens when using `Unit`)
+    pragma[nomagic]
+    Ap() { this in [0 .. 1] and this < 1 }
+  }
 
   private class Cc = boolean;
 
diff --git a/cpp/ql/lib/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl3.qll b/cpp/ql/lib/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl3.qll
index 23d11a38842..1228d00b6ba 100644
--- a/cpp/ql/lib/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl3.qll
+++ b/cpp/ql/lib/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl3.qll
@@ -622,7 +622,11 @@ private predicate parameterFlowThroughAllowed(ParamNodeEx p, ReturnKindExt kind)
 }
 
 private module Stage1 implements StageSig {
-  class Ap = Unit;
+  class Ap extends int {
+    // workaround for bad functionality-induced joins (happens when using `Unit`)
+    pragma[nomagic]
+    Ap() { this in [0 .. 1] and this < 1 }
+  }
 
   private class Cc = boolean;
 
diff --git a/cpp/ql/lib/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl4.qll b/cpp/ql/lib/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl4.qll
index 23d11a38842..1228d00b6ba 100644
--- a/cpp/ql/lib/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl4.qll
+++ b/cpp/ql/lib/semmle/code/cpp/ir/dataflow/internal/DataFlowImpl4.qll
@@ -622,7 +622,11 @@ private predicate parameterFlowThroughAllowed(ParamNodeEx p, ReturnKindExt kind)
 }
 
 private module Stage1 implements StageSig {
-  class Ap = Unit;
+  class Ap extends int {
+    // workaround for bad functionality-induced joins (happens when using `Unit`)
+    pragma[nomagic]
+    Ap() { this in [0 .. 1] and this < 1 }
+  }
 
   private class Cc = boolean;
 
diff --git a/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImpl.qll b/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImpl.qll
index 23d11a38842..1228d00b6ba 100644
--- a/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImpl.qll
+++ b/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImpl.qll
@@ -622,7 +622,11 @@ private predicate parameterFlowThroughAllowed(ParamNodeEx p, ReturnKindExt kind)
 }
 
 private module Stage1 implements StageSig {
-  class Ap = Unit;
+  class Ap extends int {
+    // workaround for bad functionality-induced joins (happens when using `Unit`)
+    pragma[nomagic]
+    Ap() { this in [0 .. 1] and this < 1 }
+  }
 
   private class Cc = boolean;
 
diff --git a/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImpl2.qll b/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImpl2.qll
index 23d11a38842..1228d00b6ba 100644
--- a/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImpl2.qll
+++ b/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImpl2.qll
@@ -622,7 +622,11 @@ private predicate parameterFlowThroughAllowed(ParamNodeEx p, ReturnKindExt kind)
 }
 
 private module Stage1 implements StageSig {
-  class Ap = Unit;
+  class Ap extends int {
+    // workaround for bad functionality-induced joins (happens when using `Unit`)
+    pragma[nomagic]
+    Ap() { this in [0 .. 1] and this < 1 }
+  }
 
   private class Cc = boolean;
 
diff --git a/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImpl3.qll b/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImpl3.qll
index 23d11a38842..1228d00b6ba 100644
--- a/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImpl3.qll
+++ b/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImpl3.qll
@@ -622,7 +622,11 @@ private predicate parameterFlowThroughAllowed(ParamNodeEx p, ReturnKindExt kind)
 }
 
 private module Stage1 implements StageSig {
-  class Ap = Unit;
+  class Ap extends int {
+    // workaround for bad functionality-induced joins (happens when using `Unit`)
+    pragma[nomagic]
+    Ap() { this in [0 .. 1] and this < 1 }
+  }
 
   private class Cc = boolean;
 
diff --git a/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImpl4.qll b/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImpl4.qll
index 23d11a38842..1228d00b6ba 100644
--- a/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImpl4.qll
+++ b/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImpl4.qll
@@ -622,7 +622,11 @@ private predicate parameterFlowThroughAllowed(ParamNodeEx p, ReturnKindExt kind)
 }
 
 private module Stage1 implements StageSig {
-  class Ap = Unit;
+  class Ap extends int {
+    // workaround for bad functionality-induced joins (happens when using `Unit`)
+    pragma[nomagic]
+    Ap() { this in [0 .. 1] and this < 1 }
+  }
 
   private class Cc = boolean;
 
diff --git a/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImpl5.qll b/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImpl5.qll
index 23d11a38842..1228d00b6ba 100644
--- a/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImpl5.qll
+++ b/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImpl5.qll
@@ -622,7 +622,11 @@ private predicate parameterFlowThroughAllowed(ParamNodeEx p, ReturnKindExt kind)
 }
 
 private module Stage1 implements StageSig {
-  class Ap = Unit;
+  class Ap extends int {
+    // workaround for bad functionality-induced joins (happens when using `Unit`)
+    pragma[nomagic]
+    Ap() { this in [0 .. 1] and this < 1 }
+  }
 
   private class Cc = boolean;
 
diff --git a/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImplForContentDataFlow.qll b/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImplForContentDataFlow.qll
index 23d11a38842..1228d00b6ba 100644
--- a/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImplForContentDataFlow.qll
+++ b/csharp/ql/lib/semmle/code/csharp/dataflow/internal/DataFlowImplForContentDataFlow.qll
@@ -622,7 +622,11 @@ private predicate parameterFlowThroughAllowed(ParamNodeEx p, ReturnKindExt kind)
 }
 
 private module Stage1 implements StageSig {
-  class Ap = Unit;
+  class Ap extends int {
+    // workaround for bad functionality-induced joins (happens when using `Unit`)
+    pragma[nomagic]
+    Ap() { this in [0 .. 1] and this < 1 }
+  }
 
   private class Cc = boolean;
 
diff --git a/go/ql/lib/semmle/go/dataflow/internal/DataFlowImpl.qll b/go/ql/lib/semmle/go/dataflow/internal/DataFlowImpl.qll
index 23d11a38842..1228d00b6ba 100644
--- a/go/ql/lib/semmle/go/dataflow/internal/DataFlowImpl.qll
+++ b/go/ql/lib/semmle/go/dataflow/internal/DataFlowImpl.qll
@@ -622,7 +622,11 @@ private predicate parameterFlowThroughAllowed(ParamNodeEx p, ReturnKindExt kind)
 }
 
 private module Stage1 implements StageSig {
-  class Ap = Unit;
+  class Ap extends int {
+    // workaround for bad functionality-induced joins (happens when using `Unit`)
+    pragma[nomagic]
+    Ap() { this in [0 .. 1] and this < 1 }
+  }
 
   private class Cc = boolean;
 
diff --git a/go/ql/lib/semmle/go/dataflow/internal/DataFlowImpl2.qll b/go/ql/lib/semmle/go/dataflow/internal/DataFlowImpl2.qll
index 23d11a38842..1228d00b6ba 100644
--- a/go/ql/lib/semmle/go/dataflow/internal/DataFlowImpl2.qll
+++ b/go/ql/lib/semmle/go/dataflow/internal/DataFlowImpl2.qll
@@ -622,7 +622,11 @@ private predicate parameterFlowThroughAllowed(ParamNodeEx p, ReturnKindExt kind)
 }
 
 private module Stage1 implements StageSig {
-  class Ap = Unit;
+  class Ap extends int {
+    // workaround for bad functionality-induced joins (happens when using `Unit`)
+    pragma[nomagic]
+    Ap() { this in [0 .. 1] and this < 1 }
+  }
 
   private class Cc = boolean;
 
diff --git a/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl.qll b/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl.qll
index 23d11a38842..1228d00b6ba 100644
--- a/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl.qll
+++ b/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl.qll
@@ -622,7 +622,11 @@ private predicate parameterFlowThroughAllowed(ParamNodeEx p, ReturnKindExt kind)
 }
 
 private module Stage1 implements StageSig {
-  class Ap = Unit;
+  class Ap extends int {
+    // workaround for bad functionality-induced joins (happens when using `Unit`)
+    pragma[nomagic]
+    Ap() { this in [0 .. 1] and this < 1 }
+  }
 
   private class Cc = boolean;
 
diff --git a/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl2.qll b/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl2.qll
index 23d11a38842..1228d00b6ba 100644
--- a/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl2.qll
+++ b/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl2.qll
@@ -622,7 +622,11 @@ private predicate parameterFlowThroughAllowed(ParamNodeEx p, ReturnKindExt kind)
 }
 
 private module Stage1 implements StageSig {
-  class Ap = Unit;
+  class Ap extends int {
+    // workaround for bad functionality-induced joins (happens when using `Unit`)
+    pragma[nomagic]
+    Ap() { this in [0 .. 1] and this < 1 }
+  }
 
   private class Cc = boolean;
 
diff --git a/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl3.qll b/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl3.qll
index 23d11a38842..1228d00b6ba 100644
--- a/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl3.qll
+++ b/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl3.qll
@@ -622,7 +622,11 @@ private predicate parameterFlowThroughAllowed(ParamNodeEx p, ReturnKindExt kind)
 }
 
 private module Stage1 implements StageSig {
-  class Ap = Unit;
+  class Ap extends int {
+    // workaround for bad functionality-induced joins (happens when using `Unit`)
+    pragma[nomagic]
+    Ap() { this in [0 .. 1] and this < 1 }
+  }
 
   private class Cc = boolean;
 
diff --git a/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl4.qll b/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl4.qll
index 23d11a38842..1228d00b6ba 100644
--- a/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl4.qll
+++ b/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl4.qll
@@ -622,7 +622,11 @@ private predicate parameterFlowThroughAllowed(ParamNodeEx p, ReturnKindExt kind)
 }
 
 private module Stage1 implements StageSig {
-  class Ap = Unit;
+  class Ap extends int {
+    // workaround for bad functionality-induced joins (happens when using `Unit`)
+    pragma[nomagic]
+    Ap() { this in [0 .. 1] and this < 1 }
+  }
 
   private class Cc = boolean;
 
diff --git a/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl5.qll b/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl5.qll
index 23d11a38842..1228d00b6ba 100644
--- a/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl5.qll
+++ b/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl5.qll
@@ -622,7 +622,11 @@ private predicate parameterFlowThroughAllowed(ParamNodeEx p, ReturnKindExt kind)
 }
 
 private module Stage1 implements StageSig {
-  class Ap = Unit;
+  class Ap extends int {
+    // workaround for bad functionality-induced joins (happens when using `Unit`)
+    pragma[nomagic]
+    Ap() { this in [0 .. 1] and this < 1 }
+  }
 
   private class Cc = boolean;
 
diff --git a/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl6.qll b/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl6.qll
index 23d11a38842..1228d00b6ba 100644
--- a/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl6.qll
+++ b/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImpl6.qll
@@ -622,7 +622,11 @@ private predicate parameterFlowThroughAllowed(ParamNodeEx p, ReturnKindExt kind)
 }
 
 private module Stage1 implements StageSig {
-  class Ap = Unit;
+  class Ap extends int {
+    // workaround for bad functionality-induced joins (happens when using `Unit`)
+    pragma[nomagic]
+    Ap() { this in [0 .. 1] and this < 1 }
+  }
 
   private class Cc = boolean;
 
diff --git a/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImplForOnActivityResult.qll b/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImplForOnActivityResult.qll
index 23d11a38842..1228d00b6ba 100644
--- a/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImplForOnActivityResult.qll
+++ b/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImplForOnActivityResult.qll
@@ -622,7 +622,11 @@ private predicate parameterFlowThroughAllowed(ParamNodeEx p, ReturnKindExt kind)
 }
 
 private module Stage1 implements StageSig {
-  class Ap = Unit;
+  class Ap extends int {
+    // workaround for bad functionality-induced joins (happens when using `Unit`)
+    pragma[nomagic]
+    Ap() { this in [0 .. 1] and this < 1 }
+  }
 
   private class Cc = boolean;
 
diff --git a/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImplForSerializability.qll b/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImplForSerializability.qll
index 23d11a38842..1228d00b6ba 100644
--- a/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImplForSerializability.qll
+++ b/java/ql/lib/semmle/code/java/dataflow/internal/DataFlowImplForSerializability.qll
@@ -622,7 +622,11 @@ private predicate parameterFlowThroughAllowed(ParamNodeEx p, ReturnKindExt kind)
 }
 
 private module Stage1 implements StageSig {
-  class Ap = Unit;
+  class Ap extends int {
+    // workaround for bad functionality-induced joins (happens when using `Unit`)
+    pragma[nomagic]
+    Ap() { this in [0 .. 1] and this < 1 }
+  }
 
   private class Cc = boolean;
 
diff --git a/python/ql/lib/semmle/python/dataflow/new/internal/DataFlowImpl.qll b/python/ql/lib/semmle/python/dataflow/new/internal/DataFlowImpl.qll
index 23d11a38842..1228d00b6ba 100644
--- a/python/ql/lib/semmle/python/dataflow/new/internal/DataFlowImpl.qll
+++ b/python/ql/lib/semmle/python/dataflow/new/internal/DataFlowImpl.qll
@@ -622,7 +622,11 @@ private predicate parameterFlowThroughAllowed(ParamNodeEx p, ReturnKindExt kind)
 }
 
 private module Stage1 implements StageSig {
-  class Ap = Unit;
+  class Ap extends int {
+    // workaround for bad functionality-induced joins (happens when using `Unit`)
+    pragma[nomagic]
+    Ap() { this in [0 .. 1] and this < 1 }
+  }
 
   private class Cc = boolean;
 
diff --git a/python/ql/lib/semmle/python/dataflow/new/internal/DataFlowImpl2.qll b/python/ql/lib/semmle/python/dataflow/new/internal/DataFlowImpl2.qll
index 23d11a38842..1228d00b6ba 100644
--- a/python/ql/lib/semmle/python/dataflow/new/internal/DataFlowImpl2.qll
+++ b/python/ql/lib/semmle/python/dataflow/new/internal/DataFlowImpl2.qll
@@ -622,7 +622,11 @@ private predicate parameterFlowThroughAllowed(ParamNodeEx p, ReturnKindExt kind)
 }
 
 private module Stage1 implements StageSig {
-  class Ap = Unit;
+  class Ap extends int {
+    // workaround for bad functionality-induced joins (happens when using `Unit`)
+    pragma[nomagic]
+    Ap() { this in [0 .. 1] and this < 1 }
+  }
 
   private class Cc = boolean;
 
diff --git a/python/ql/lib/semmle/python/dataflow/new/internal/DataFlowImpl3.qll b/python/ql/lib/semmle/python/dataflow/new/internal/DataFlowImpl3.qll
index 23d11a38842..1228d00b6ba 100644
--- a/python/ql/lib/semmle/python/dataflow/new/internal/DataFlowImpl3.qll
+++ b/python/ql/lib/semmle/python/dataflow/new/internal/DataFlowImpl3.qll
@@ -622,7 +622,11 @@ private predicate parameterFlowThroughAllowed(ParamNodeEx p, ReturnKindExt kind)
 }
 
 private module Stage1 implements StageSig {
-  class Ap = Unit;
+  class Ap extends int {
+    // workaround for bad functionality-induced joins (happens when using `Unit`)
+    pragma[nomagic]
+    Ap() { this in [0 .. 1] and this < 1 }
+  }
 
   private class Cc = boolean;
 
diff --git a/python/ql/lib/semmle/python/dataflow/new/internal/DataFlowImpl4.qll b/python/ql/lib/semmle/python/dataflow/new/internal/DataFlowImpl4.qll
index 23d11a38842..1228d00b6ba 100644
--- a/python/ql/lib/semmle/python/dataflow/new/internal/DataFlowImpl4.qll
+++ b/python/ql/lib/semmle/python/dataflow/new/internal/DataFlowImpl4.qll
@@ -622,7 +622,11 @@ private predicate parameterFlowThroughAllowed(ParamNodeEx p, ReturnKindExt kind)
 }
 
 private module Stage1 implements StageSig {
-  class Ap = Unit;
+  class Ap extends int {
+    // workaround for bad functionality-induced joins (happens when using `Unit`)
+    pragma[nomagic]
+    Ap() { this in [0 .. 1] and this < 1 }
+  }
 
   private class Cc = boolean;
 
diff --git a/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImpl.qll b/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImpl.qll
index 23d11a38842..1228d00b6ba 100644
--- a/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImpl.qll
+++ b/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImpl.qll
@@ -622,7 +622,11 @@ private predicate parameterFlowThroughAllowed(ParamNodeEx p, ReturnKindExt kind)
 }
 
 private module Stage1 implements StageSig {
-  class Ap = Unit;
+  class Ap extends int {
+    // workaround for bad functionality-induced joins (happens when using `Unit`)
+    pragma[nomagic]
+    Ap() { this in [0 .. 1] and this < 1 }
+  }
 
   private class Cc = boolean;
 
diff --git a/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImpl2.qll b/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImpl2.qll
index 23d11a38842..1228d00b6ba 100644
--- a/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImpl2.qll
+++ b/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImpl2.qll
@@ -622,7 +622,11 @@ private predicate parameterFlowThroughAllowed(ParamNodeEx p, ReturnKindExt kind)
 }
 
 private module Stage1 implements StageSig {
-  class Ap = Unit;
+  class Ap extends int {
+    // workaround for bad functionality-induced joins (happens when using `Unit`)
+    pragma[nomagic]
+    Ap() { this in [0 .. 1] and this < 1 }
+  }
 
   private class Cc = boolean;
 
diff --git a/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImplForHttpClientLibraries.qll b/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImplForHttpClientLibraries.qll
index 23d11a38842..1228d00b6ba 100644
--- a/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImplForHttpClientLibraries.qll
+++ b/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImplForHttpClientLibraries.qll
@@ -622,7 +622,11 @@ private predicate parameterFlowThroughAllowed(ParamNodeEx p, ReturnKindExt kind)
 }
 
 private module Stage1 implements StageSig {
-  class Ap = Unit;
+  class Ap extends int {
+    // workaround for bad functionality-induced joins (happens when using `Unit`)
+    pragma[nomagic]
+    Ap() { this in [0 .. 1] and this < 1 }
+  }
 
   private class Cc = boolean;
 
diff --git a/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImplForPathname.qll b/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImplForPathname.qll
index 23d11a38842..1228d00b6ba 100644
--- a/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImplForPathname.qll
+++ b/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImplForPathname.qll
@@ -622,7 +622,11 @@ private predicate parameterFlowThroughAllowed(ParamNodeEx p, ReturnKindExt kind)
 }
 
 private module Stage1 implements StageSig {
-  class Ap = Unit;
+  class Ap extends int {
+    // workaround for bad functionality-induced joins (happens when using `Unit`)
+    pragma[nomagic]
+    Ap() { this in [0 .. 1] and this < 1 }
+  }
 
   private class Cc = boolean;
 
diff --git a/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImplForRegExp.qll b/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImplForRegExp.qll
index 23d11a38842..1228d00b6ba 100644
--- a/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImplForRegExp.qll
+++ b/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowImplForRegExp.qll
@@ -622,7 +622,11 @@ private predicate parameterFlowThroughAllowed(ParamNodeEx p, ReturnKindExt kind)
 }
 
 private module Stage1 implements StageSig {
-  class Ap = Unit;
+  class Ap extends int {
+    // workaround for bad functionality-induced joins (happens when using `Unit`)
+    pragma[nomagic]
+    Ap() { this in [0 .. 1] and this < 1 }
+  }
 
   private class Cc = boolean;
 
diff --git a/swift/ql/lib/codeql/swift/dataflow/internal/DataFlowImpl.qll b/swift/ql/lib/codeql/swift/dataflow/internal/DataFlowImpl.qll
index 23d11a38842..1228d00b6ba 100644
--- a/swift/ql/lib/codeql/swift/dataflow/internal/DataFlowImpl.qll
+++ b/swift/ql/lib/codeql/swift/dataflow/internal/DataFlowImpl.qll
@@ -622,7 +622,11 @@ private predicate parameterFlowThroughAllowed(ParamNodeEx p, ReturnKindExt kind)
 }
 
 private module Stage1 implements StageSig {
-  class Ap = Unit;
+  class Ap extends int {
+    // workaround for bad functionality-induced joins (happens when using `Unit`)
+    pragma[nomagic]
+    Ap() { this in [0 .. 1] and this < 1 }
+  }
 
   private class Cc = boolean;
 

From 9481673c07f2d3af47d55c88b5f6c38a74b84c30 Mon Sep 17 00:00:00 2001
From: Geoffrey White <40627776+geoffw0@users.noreply.github.com>
Date: Thu, 15 Dec 2022 16:08:51 +0000
Subject: [PATCH 1398/1420] Swift: Remove temp workaround.

---
 swift/ql/src/queries/Security/CWE-094/UnsafeJsEval.ql | 3 ---
 1 file changed, 3 deletions(-)

diff --git a/swift/ql/src/queries/Security/CWE-094/UnsafeJsEval.ql b/swift/ql/src/queries/Security/CWE-094/UnsafeJsEval.ql
index e553df216fe..9219b4f5f55 100644
--- a/swift/ql/src/queries/Security/CWE-094/UnsafeJsEval.ql
+++ b/swift/ql/src/queries/Security/CWE-094/UnsafeJsEval.ql
@@ -127,9 +127,6 @@ class UnsafeJsEvalConfig extends TaintTracking::Configuration {
     )
     or
     exists(MemberRefExpr e, Expr self, VarDecl member |
-      self.getType().getName() = "String" and
-      member.getName() = ["utf8", "utf16", "utf8CString"]
-      or
       self.getType().getName().matches(["Unsafe%Buffer%", "Unsafe%Pointer%"]) and
       member.getName() = "baseAddress"
     |

From c34bde962c51807f4401e6c719e246a2fdd396af Mon Sep 17 00:00:00 2001
From: Michael Nebel <michaelnebel@github.com>
Date: Thu, 15 Dec 2022 14:56:29 +0100
Subject: [PATCH 1399/1420] Java: Update integration tests to use implicit
 ext.yml data extensions.

---
 .../all-platforms/kotlin/annotation-id-consistency/qlpack.yml    | 1 -
 .../{ext/test.model.yml => test.ext.yml}                         | 0
 .../{ext/test.model.yml => test.ext.yml}                         | 0
 3 files changed, 1 deletion(-)
 rename java/ql/integration-tests/all-platforms/kotlin/annotation-id-consistency/{ext/test.model.yml => test.ext.yml} (100%)
 rename java/ql/integration-tests/all-platforms/kotlin/default-parameter-mad-flow/{ext/test.model.yml => test.ext.yml} (100%)

diff --git a/java/ql/integration-tests/all-platforms/kotlin/annotation-id-consistency/qlpack.yml b/java/ql/integration-tests/all-platforms/kotlin/annotation-id-consistency/qlpack.yml
index a0c9cdc98a3..74fbac535d7 100644
--- a/java/ql/integration-tests/all-platforms/kotlin/annotation-id-consistency/qlpack.yml
+++ b/java/ql/integration-tests/all-platforms/kotlin/annotation-id-consistency/qlpack.yml
@@ -5,4 +5,3 @@ dependencies:
   codeql/java-queries: '*'
 dataExtensions:
   ext/*.model.yml
-
diff --git a/java/ql/integration-tests/all-platforms/kotlin/annotation-id-consistency/ext/test.model.yml b/java/ql/integration-tests/all-platforms/kotlin/annotation-id-consistency/test.ext.yml
similarity index 100%
rename from java/ql/integration-tests/all-platforms/kotlin/annotation-id-consistency/ext/test.model.yml
rename to java/ql/integration-tests/all-platforms/kotlin/annotation-id-consistency/test.ext.yml
diff --git a/java/ql/integration-tests/all-platforms/kotlin/default-parameter-mad-flow/ext/test.model.yml b/java/ql/integration-tests/all-platforms/kotlin/default-parameter-mad-flow/test.ext.yml
similarity index 100%
rename from java/ql/integration-tests/all-platforms/kotlin/default-parameter-mad-flow/ext/test.model.yml
rename to java/ql/integration-tests/all-platforms/kotlin/default-parameter-mad-flow/test.ext.yml

From 1c5d4f804868f753b6068fe142c76a876a94001f Mon Sep 17 00:00:00 2001
From: Jami Cogswell <jcogs33@Jamis-MacBook-Pro.local>
Date: Thu, 15 Dec 2022 15:03:00 -0500
Subject: [PATCH 1400/1420] Java: rename generatedCoverage and manualCoverage

---
 .../src/Metrics/Summaries/GeneratedVsManualCoverage.ql | 10 +++++-----
 1 file changed, 5 insertions(+), 5 deletions(-)

diff --git a/java/ql/src/Metrics/Summaries/GeneratedVsManualCoverage.ql b/java/ql/src/Metrics/Summaries/GeneratedVsManualCoverage.ql
index e1462a0f245..2cd2ce2552a 100644
--- a/java/ql/src/Metrics/Summaries/GeneratedVsManualCoverage.ql
+++ b/java/ql/src/Metrics/Summaries/GeneratedVsManualCoverage.ql
@@ -49,7 +49,7 @@ private int getNumApis(string package) {
 
 from
   string package, int generatedOnly, int both, int manualOnly, int non, int all,
-  float generatedCoverage, float manualCoverage
+  float manualCoveredByGenerated, float generatedCoveredByManual
 where
   // count the number of APIs with generated-only, both, and manual-only MaD models for each package
   generatedOnly = getNumMadModeledApis(package, "generated") and
@@ -59,8 +59,8 @@ where
   all = getNumApis(package) and
   non = all - (generatedOnly + both + manualOnly) and
   // Proportion of manual models covered by generated ones
-  generatedCoverage = (both.(float) / (both + manualOnly)) and
+  manualCoveredByGenerated = (both.(float) / (both + manualOnly)) and
   // Proportion of generated models covered by manual ones
-  manualCoverage = (both.(float) / (both + generatedOnly))
-select package, generatedOnly, both, manualOnly, non, all, generatedCoverage, manualCoverage
-  order by package
+  generatedCoveredByManual = (both.(float) / (both + generatedOnly))
+select package, generatedOnly, both, manualOnly, non, all, manualCoveredByGenerated,
+  generatedCoveredByManual order by package

From 9d10b719d6b01901f6c5828f34b2020e0b3d217e Mon Sep 17 00:00:00 2001
From: Jami Cogswell <jcogs33@Jamis-MacBook-Pro.local>
Date: Thu, 15 Dec 2022 15:10:35 -0500
Subject: [PATCH 1401/1420] Java: add match metric

---
 .../ql/src/Metrics/Summaries/GeneratedVsManualCoverage.ql | 8 +++++---
 1 file changed, 5 insertions(+), 3 deletions(-)

diff --git a/java/ql/src/Metrics/Summaries/GeneratedVsManualCoverage.ql b/java/ql/src/Metrics/Summaries/GeneratedVsManualCoverage.ql
index 2cd2ce2552a..a2454860ba0 100644
--- a/java/ql/src/Metrics/Summaries/GeneratedVsManualCoverage.ql
+++ b/java/ql/src/Metrics/Summaries/GeneratedVsManualCoverage.ql
@@ -49,7 +49,7 @@ private int getNumApis(string package) {
 
 from
   string package, int generatedOnly, int both, int manualOnly, int non, int all,
-  float manualCoveredByGenerated, float generatedCoveredByManual
+  float manualCoveredByGenerated, float generatedCoveredByManual, float match
 where
   // count the number of APIs with generated-only, both, and manual-only MaD models for each package
   generatedOnly = getNumMadModeledApis(package, "generated") and
@@ -61,6 +61,8 @@ where
   // Proportion of manual models covered by generated ones
   manualCoveredByGenerated = (both.(float) / (both + manualOnly)) and
   // Proportion of generated models covered by manual ones
-  generatedCoveredByManual = (both.(float) / (both + generatedOnly))
+  generatedCoveredByManual = (both.(float) / (both + generatedOnly)) and
+  // Proportion of data points that match
+  match = (both.(float) + non) / all
 select package, generatedOnly, both, manualOnly, non, all, manualCoveredByGenerated,
-  generatedCoveredByManual order by package
+  generatedCoveredByManual, match order by package

From b68a9a51e21c6585f56cc088f24a1368e8a0af6e Mon Sep 17 00:00:00 2001
From: Jami Cogswell <jcogs33@Jamis-MacBook-Pro.local>
Date: Thu, 15 Dec 2022 15:20:08 -0500
Subject: [PATCH 1402/1420] Java: add coverage, generatedCoverage, and
 manualCoverage metrics

---
 .../Metrics/Summaries/GeneratedVsManualCoverage.ql | 14 +++++++++++---
 1 file changed, 11 insertions(+), 3 deletions(-)

diff --git a/java/ql/src/Metrics/Summaries/GeneratedVsManualCoverage.ql b/java/ql/src/Metrics/Summaries/GeneratedVsManualCoverage.ql
index a2454860ba0..58b5eb5d648 100644
--- a/java/ql/src/Metrics/Summaries/GeneratedVsManualCoverage.ql
+++ b/java/ql/src/Metrics/Summaries/GeneratedVsManualCoverage.ql
@@ -48,21 +48,29 @@ private int getNumApis(string package) {
 }
 
 from
-  string package, int generatedOnly, int both, int manualOnly, int non, int all,
+  string package, int generatedOnly, int both, int manualOnly, int generated, int manual, int non,
+  int all, float coverage, float generatedCoverage, float manualCoverage,
   float manualCoveredByGenerated, float generatedCoveredByManual, float match
 where
   // count the number of APIs with generated-only, both, and manual-only MaD models for each package
   generatedOnly = getNumMadModeledApis(package, "generated") and
   both = getNumMadModeledApis(package, "both") and
   manualOnly = getNumMadModeledApis(package, "manual") and
+  // calculate the total generated and total manual numbers
+  generated = generatedOnly + both and
+  manual = manualOnly + both and
   // count the total number of `DataFlowTargetApi`s for each package
   all = getNumApis(package) and
   non = all - (generatedOnly + both + manualOnly) and
+  // Proportion of coverage
+  coverage = (generatedOnly + both + manualOnly) / all and
+  generatedCoverage = generated / all and
+  manualCoverage = manual / all and
   // Proportion of manual models covered by generated ones
   manualCoveredByGenerated = (both.(float) / (both + manualOnly)) and
   // Proportion of generated models covered by manual ones
   generatedCoveredByManual = (both.(float) / (both + generatedOnly)) and
   // Proportion of data points that match
   match = (both.(float) + non) / all
-select package, generatedOnly, both, manualOnly, non, all, manualCoveredByGenerated,
-  generatedCoveredByManual, match order by package
+select package, generatedOnly, both, manualOnly, non, all, coverage, generatedCoverage,
+  manualCoverage, manualCoveredByGenerated, generatedCoveredByManual, match order by package

From cfeedb5cb499c3844caa6d6d21575adb53989c3a Mon Sep 17 00:00:00 2001
From: Jami Cogswell <jcogs33@Jamis-MacBook-Pro.local>
Date: Thu, 15 Dec 2022 15:23:28 -0500
Subject: [PATCH 1403/1420] Java: add float cast

---
 java/ql/src/Metrics/Summaries/GeneratedVsManualCoverage.ql | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/java/ql/src/Metrics/Summaries/GeneratedVsManualCoverage.ql b/java/ql/src/Metrics/Summaries/GeneratedVsManualCoverage.ql
index 58b5eb5d648..33adc3f4b16 100644
--- a/java/ql/src/Metrics/Summaries/GeneratedVsManualCoverage.ql
+++ b/java/ql/src/Metrics/Summaries/GeneratedVsManualCoverage.ql
@@ -63,9 +63,9 @@ where
   all = getNumApis(package) and
   non = all - (generatedOnly + both + manualOnly) and
   // Proportion of coverage
-  coverage = (generatedOnly + both + manualOnly) / all and
-  generatedCoverage = generated / all and
-  manualCoverage = manual / all and
+  coverage = (generatedOnly + both + manualOnly).(float) / all and
+  generatedCoverage = generated.(float) / all and
+  manualCoverage = manual.(float) / all and
   // Proportion of manual models covered by generated ones
   manualCoveredByGenerated = (both.(float) / (both + manualOnly)) and
   // Proportion of generated models covered by manual ones

From c33bc63aedaf99f8bb1847c8750f8d7a01cfe41b Mon Sep 17 00:00:00 2001
From: Jami Cogswell <jcogs33@Jamis-MacBook-Pro.local>
Date: Thu, 15 Dec 2022 15:26:04 -0500
Subject: [PATCH 1404/1420] Java: remove extraneous parentheses

---
 java/ql/src/Metrics/Summaries/GeneratedVsManualCoverage.ql | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/java/ql/src/Metrics/Summaries/GeneratedVsManualCoverage.ql b/java/ql/src/Metrics/Summaries/GeneratedVsManualCoverage.ql
index 33adc3f4b16..eb03a785702 100644
--- a/java/ql/src/Metrics/Summaries/GeneratedVsManualCoverage.ql
+++ b/java/ql/src/Metrics/Summaries/GeneratedVsManualCoverage.ql
@@ -67,9 +67,9 @@ where
   generatedCoverage = generated.(float) / all and
   manualCoverage = manual.(float) / all and
   // Proportion of manual models covered by generated ones
-  manualCoveredByGenerated = (both.(float) / (both + manualOnly)) and
+  manualCoveredByGenerated = both.(float) / (both + manualOnly) and
   // Proportion of generated models covered by manual ones
-  generatedCoveredByManual = (both.(float) / (both + generatedOnly)) and
+  generatedCoveredByManual = both.(float) / (both + generatedOnly) and
   // Proportion of data points that match
   match = (both.(float) + non) / all
 select package, generatedOnly, both, manualOnly, non, all, coverage, generatedCoverage,

From 96a09500484d8dc1bb278b4b0abc5f6f79d25be4 Mon Sep 17 00:00:00 2001
From: Jami Cogswell <jcogs33@Jamis-MacBook-Pro.local>
Date: Thu, 15 Dec 2022 15:49:53 -0500
Subject: [PATCH 1405/1420] Java: update test case

---
 .../GeneratedVsManualCoverage.expected                          | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/java/ql/test/query-tests/Metrics/GeneratedVsManualCoverage/GeneratedVsManualCoverage.expected b/java/ql/test/query-tests/Metrics/GeneratedVsManualCoverage/GeneratedVsManualCoverage.expected
index ceb2da34df5..2ce20c00cb4 100644
--- a/java/ql/test/query-tests/Metrics/GeneratedVsManualCoverage/GeneratedVsManualCoverage.expected
+++ b/java/ql/test/query-tests/Metrics/GeneratedVsManualCoverage/GeneratedVsManualCoverage.expected
@@ -1 +1 @@
-| org.apache.commons.io | 14 | 1 | 1 | 2 | 18 | 0.5 | 0.06666666666666667 |
+| org.apache.commons.io | 14 | 1 | 1 | 2 | 18 | 0.8888888888888888 | 0.8333333333333334 | 0.1111111111111111 | 0.5 | 0.06666666666666667 | 0.16666666666666666 |

From 0230b8b56f5df1dfd76aa03521995cc3323e8d7a Mon Sep 17 00:00:00 2001
From: Michael Nebel <michaelnebel@github.com>
Date: Wed, 7 Dec 2022 15:14:10 +0100
Subject: [PATCH 1406/1420] C#: Minor cleanup in the Pattern files.

---
 .../Entities/Expressions/Patterns/BinaryPattern.cs            | 1 -
 .../Entities/Expressions/Patterns/Pattern.cs                  | 1 -
 .../Entities/Expressions/Patterns/PositionalPattern.cs        | 3 +--
 .../Entities/Expressions/Patterns/PropertyPattern.cs          | 4 +---
 .../Entities/Expressions/Patterns/RecursivePattern.cs         | 1 -
 .../Entities/Expressions/Patterns/RelationalPattern.cs        | 1 -
 .../Entities/Expressions/Patterns/UnaryPattern.cs             | 1 -
 7 files changed, 2 insertions(+), 10 deletions(-)

diff --git a/csharp/extractor/Semmle.Extraction.CSharp/Entities/Expressions/Patterns/BinaryPattern.cs b/csharp/extractor/Semmle.Extraction.CSharp/Entities/Expressions/Patterns/BinaryPattern.cs
index 2d0292ae720..ec5177c8ce6 100644
--- a/csharp/extractor/Semmle.Extraction.CSharp/Entities/Expressions/Patterns/BinaryPattern.cs
+++ b/csharp/extractor/Semmle.Extraction.CSharp/Entities/Expressions/Patterns/BinaryPattern.cs
@@ -1,7 +1,6 @@
 using Microsoft.CodeAnalysis;
 using Microsoft.CodeAnalysis.CSharp;
 using Microsoft.CodeAnalysis.CSharp.Syntax;
-using Semmle.Extraction.Entities;
 using Semmle.Extraction.Kinds;
 
 namespace Semmle.Extraction.CSharp.Entities.Expressions
diff --git a/csharp/extractor/Semmle.Extraction.CSharp/Entities/Expressions/Patterns/Pattern.cs b/csharp/extractor/Semmle.Extraction.CSharp/Entities/Expressions/Patterns/Pattern.cs
index 304158d0a12..500154b654d 100644
--- a/csharp/extractor/Semmle.Extraction.CSharp/Entities/Expressions/Patterns/Pattern.cs
+++ b/csharp/extractor/Semmle.Extraction.CSharp/Entities/Expressions/Patterns/Pattern.cs
@@ -1,7 +1,6 @@
 using Microsoft.CodeAnalysis;
 using Microsoft.CodeAnalysis.CSharp.Syntax;
 using Microsoft.CodeAnalysis.CSharp;
-using Semmle.Extraction.Entities;
 
 namespace Semmle.Extraction.CSharp.Entities.Expressions
 {
diff --git a/csharp/extractor/Semmle.Extraction.CSharp/Entities/Expressions/Patterns/PositionalPattern.cs b/csharp/extractor/Semmle.Extraction.CSharp/Entities/Expressions/Patterns/PositionalPattern.cs
index f0ae03ae9dc..c013754d0f4 100644
--- a/csharp/extractor/Semmle.Extraction.CSharp/Entities/Expressions/Patterns/PositionalPattern.cs
+++ b/csharp/extractor/Semmle.Extraction.CSharp/Entities/Expressions/Patterns/PositionalPattern.cs
@@ -1,6 +1,5 @@
 using Microsoft.CodeAnalysis.CSharp.Syntax;
 using Semmle.Extraction.Kinds;
-using Semmle.Extraction.Entities;
 
 namespace Semmle.Extraction.CSharp.Entities.Expressions
 {
@@ -12,7 +11,7 @@ namespace Semmle.Extraction.CSharp.Entities.Expressions
             child = 0;
             foreach (var sub in posPc.Subpatterns)
             {
-                Expressions.Pattern.Create(cx, sub.Pattern, this, child++);
+                Pattern.Create(cx, sub.Pattern, this, child++);
             }
         }
     }
diff --git a/csharp/extractor/Semmle.Extraction.CSharp/Entities/Expressions/Patterns/PropertyPattern.cs b/csharp/extractor/Semmle.Extraction.CSharp/Entities/Expressions/Patterns/PropertyPattern.cs
index 1aa515eca2a..30a020702e5 100644
--- a/csharp/extractor/Semmle.Extraction.CSharp/Entities/Expressions/Patterns/PropertyPattern.cs
+++ b/csharp/extractor/Semmle.Extraction.CSharp/Entities/Expressions/Patterns/PropertyPattern.cs
@@ -1,8 +1,6 @@
-using System;
 using System.Collections.Generic;
 using Microsoft.CodeAnalysis.CSharp.Syntax;
 using Semmle.Extraction.Kinds;
-using Semmle.Extraction.Entities;
 
 namespace Semmle.Extraction.CSharp.Entities.Expressions
 {
@@ -27,7 +25,7 @@ namespace Semmle.Extraction.CSharp.Entities.Expressions
 
         private class AccessStepPack
         {
-            public readonly List<AccessStep> Prefix = new List<AccessStep>();
+            public readonly List<AccessStep> Prefix = new();
             public AccessStep Last { get; private set; }
 
             public AccessStepPack Add(string identifier, Microsoft.CodeAnalysis.Location location)
diff --git a/csharp/extractor/Semmle.Extraction.CSharp/Entities/Expressions/Patterns/RecursivePattern.cs b/csharp/extractor/Semmle.Extraction.CSharp/Entities/Expressions/Patterns/RecursivePattern.cs
index d29292b3073..8fa3e8f5f23 100644
--- a/csharp/extractor/Semmle.Extraction.CSharp/Entities/Expressions/Patterns/RecursivePattern.cs
+++ b/csharp/extractor/Semmle.Extraction.CSharp/Entities/Expressions/Patterns/RecursivePattern.cs
@@ -2,7 +2,6 @@ using Microsoft.CodeAnalysis;
 using Microsoft.CodeAnalysis.CSharp.Syntax;
 using Microsoft.CodeAnalysis.CSharp;
 using Semmle.Extraction.Kinds;
-using Semmle.Extraction.Entities;
 
 namespace Semmle.Extraction.CSharp.Entities.Expressions
 {
diff --git a/csharp/extractor/Semmle.Extraction.CSharp/Entities/Expressions/Patterns/RelationalPattern.cs b/csharp/extractor/Semmle.Extraction.CSharp/Entities/Expressions/Patterns/RelationalPattern.cs
index 471ab5ca48f..e062692cf8f 100644
--- a/csharp/extractor/Semmle.Extraction.CSharp/Entities/Expressions/Patterns/RelationalPattern.cs
+++ b/csharp/extractor/Semmle.Extraction.CSharp/Entities/Expressions/Patterns/RelationalPattern.cs
@@ -2,7 +2,6 @@ using Microsoft.CodeAnalysis;
 using Microsoft.CodeAnalysis.CSharp.Syntax;
 using Microsoft.CodeAnalysis.CSharp;
 using Semmle.Extraction.Kinds;
-using Semmle.Extraction.Entities;
 
 namespace Semmle.Extraction.CSharp.Entities.Expressions
 {
diff --git a/csharp/extractor/Semmle.Extraction.CSharp/Entities/Expressions/Patterns/UnaryPattern.cs b/csharp/extractor/Semmle.Extraction.CSharp/Entities/Expressions/Patterns/UnaryPattern.cs
index ce2cf773a92..1703211fb3d 100644
--- a/csharp/extractor/Semmle.Extraction.CSharp/Entities/Expressions/Patterns/UnaryPattern.cs
+++ b/csharp/extractor/Semmle.Extraction.CSharp/Entities/Expressions/Patterns/UnaryPattern.cs
@@ -1,5 +1,4 @@
 using Microsoft.CodeAnalysis.CSharp.Syntax;
-using Semmle.Extraction.Entities;
 using Semmle.Extraction.Kinds;
 
 namespace Semmle.Extraction.CSharp.Entities.Expressions

From 390b8afb8a9531ca19f2a363e08c08acfc2b0106 Mon Sep 17 00:00:00 2001
From: Michael Nebel <michaelnebel@github.com>
Date: Mon, 12 Dec 2022 16:38:19 +0100
Subject: [PATCH 1407/1420] C#: Re-factor to use ForEach.

---
 .../Entities/CommentBlock.cs                  |  8 ++---
 .../Entities/Compilations/Compilation.cs      | 36 ++++++-------------
 .../Entities/Expressions/ArrayCreation.cs     |  7 ++--
 .../Entities/Expressions/Initializer.cs       |  8 ++---
 .../Expressions/Patterns/PositionalPattern.cs |  7 ++--
 .../PragmaWarningDirective.cs                 |  8 ++---
 6 files changed, 20 insertions(+), 54 deletions(-)

diff --git a/csharp/extractor/Semmle.Extraction.CSharp/Entities/CommentBlock.cs b/csharp/extractor/Semmle.Extraction.CSharp/Entities/CommentBlock.cs
index a564d3e7f16..3c4cdcffc0e 100644
--- a/csharp/extractor/Semmle.Extraction.CSharp/Entities/CommentBlock.cs
+++ b/csharp/extractor/Semmle.Extraction.CSharp/Entities/CommentBlock.cs
@@ -1,5 +1,5 @@
-using Semmle.Extraction.Entities;
 using System.IO;
+using Semmle.Util;
 
 namespace Semmle.Extraction.CSharp.Entities
 {
@@ -11,12 +11,8 @@ namespace Semmle.Extraction.CSharp.Entities
         public override void Populate(TextWriter trapFile)
         {
             trapFile.commentblock(this);
-            var child = 0;
             trapFile.commentblock_location(this, Context.CreateLocation(Symbol.Location));
-            foreach (var l in Symbol.CommentLines)
-            {
-                trapFile.commentblock_child(this, (CommentLine)l, child++);
-            }
+            Symbol.CommentLines.ForEach((l, child) => trapFile.commentblock_child(this, l, child));
         }
 
         public override bool NeedsPopulation => true;
diff --git a/csharp/extractor/Semmle.Extraction.CSharp/Entities/Compilations/Compilation.cs b/csharp/extractor/Semmle.Extraction.CSharp/Entities/Compilations/Compilation.cs
index 75614d3ad1e..8dd6cd1ee22 100644
--- a/csharp/extractor/Semmle.Extraction.CSharp/Entities/Compilations/Compilation.cs
+++ b/csharp/extractor/Semmle.Extraction.CSharp/Entities/Compilations/Compilation.cs
@@ -39,45 +39,29 @@ namespace Semmle.Extraction.CSharp.Entities
             trapFile.compilation_assembly(this, assembly);
 
             // Arguments
-            var index = 0;
-            foreach (var arg in Compilation.Settings.Args)
-            {
-                trapFile.compilation_args(this, index++, arg);
-            }
+            Compilation.Settings.Args.ForEach((arg, index) => trapFile.compilation_args(this, index, arg));
 
             // Files
-            index = 0;
-            foreach (var file in Context.Compilation.SyntaxTrees.Select(tree => File.Create(Context, tree.FilePath)))
-            {
-                trapFile.compilation_compiling_files(this, index++, file);
-            }
+            Context.Compilation.SyntaxTrees.Select(tree => File.Create(Context, tree.FilePath)).ForEach((file, index) => trapFile.compilation_compiling_files(this, index, file));
 
             // References
-            index = 0;
-            foreach (var file in Context.Compilation.References
+            Context.Compilation.References
                 .OfType<PortableExecutableReference>()
                 .Where(r => r.FilePath is not null)
-                .Select(r => File.Create(Context, r.FilePath!)))
-            {
-                trapFile.compilation_referencing_files(this, index++, file);
-            }
+                .Select(r => File.Create(Context, r.FilePath!))
+                .ForEach((file, index) => trapFile.compilation_referencing_files(this, index, file));
 
             // Diagnostics
-            index = 0;
-            foreach (var diag in Context.Compilation.GetDiagnostics().Select(d => new Diagnostic(Context, d)))
-            {
-                trapFile.diagnostic_for(diag, this, 0, index++);
-            }
+            Context.Compilation
+                .GetDiagnostics()
+                .Select(d => new Diagnostic(Context, d))
+                .ForEach((diag, index) => trapFile.diagnostic_for(diag, this, 0, index));
         }
 
         public void PopulatePerformance(PerformanceMetrics p)
         {
             var trapFile = Context.TrapWriter.Writer;
-            var index = 0;
-            foreach (var metric in p.Metrics)
-            {
-                trapFile.compilation_time(this, -1, index++, metric);
-            }
+            p.Metrics.ForEach((metric, index) => trapFile.compilation_time(this, -1, index, metric));
             trapFile.compilation_finished(this, (float)p.Total.Cpu.TotalSeconds, (float)p.Total.Elapsed.TotalSeconds);
         }
 
diff --git a/csharp/extractor/Semmle.Extraction.CSharp/Entities/Expressions/ArrayCreation.cs b/csharp/extractor/Semmle.Extraction.CSharp/Entities/Expressions/ArrayCreation.cs
index c7860d2ad93..345fdd612b3 100644
--- a/csharp/extractor/Semmle.Extraction.CSharp/Entities/Expressions/ArrayCreation.cs
+++ b/csharp/extractor/Semmle.Extraction.CSharp/Entities/Expressions/ArrayCreation.cs
@@ -2,6 +2,7 @@ using Microsoft.CodeAnalysis;
 using Microsoft.CodeAnalysis.CSharp;
 using Microsoft.CodeAnalysis.CSharp.Syntax;
 using Semmle.Extraction.Kinds;
+using Semmle.Util;
 using System.Collections.Generic;
 using System.IO;
 using System.Linq;
@@ -108,11 +109,7 @@ namespace Semmle.Extraction.CSharp.Entities.Expressions
             if (length > 0)
             {
                 var arrayInit = ArrayInitializer.CreateGenerated(cx, arrayCreation, InitializerIndex, location);
-                var child = 0;
-                foreach (var item in items)
-                {
-                    Expression.CreateGenerated(cx, item, arrayInit, child++, location);
-                }
+                items.ForEach((item, child) => Expression.CreateGenerated(cx, item, arrayInit, child, location));
             }
 
             return arrayCreation;
diff --git a/csharp/extractor/Semmle.Extraction.CSharp/Entities/Expressions/Initializer.cs b/csharp/extractor/Semmle.Extraction.CSharp/Entities/Expressions/Initializer.cs
index 7124929a37c..266c820f68d 100644
--- a/csharp/extractor/Semmle.Extraction.CSharp/Entities/Expressions/Initializer.cs
+++ b/csharp/extractor/Semmle.Extraction.CSharp/Entities/Expressions/Initializer.cs
@@ -1,8 +1,8 @@
 using Microsoft.CodeAnalysis;
 using Microsoft.CodeAnalysis.CSharp;
 using Microsoft.CodeAnalysis.CSharp.Syntax;
-using Semmle.Extraction.Entities;
 using Semmle.Extraction.Kinds;
+using Semmle.Util;
 using System.IO;
 
 namespace Semmle.Extraction.CSharp.Entities.Expressions
@@ -146,11 +146,7 @@ namespace Semmle.Extraction.CSharp.Entities.Expressions
 
                     var init = (InitializerExpressionSyntax)i;
 
-                    var addChild = 0;
-                    foreach (var arg in init.Expressions)
-                    {
-                        Create(Context, arg, invocation, addChild++);
-                    }
+                    init.Expressions.ForEach((arg, child) => Create(Context, arg, invocation, child));
                 }
                 else
                 {
diff --git a/csharp/extractor/Semmle.Extraction.CSharp/Entities/Expressions/Patterns/PositionalPattern.cs b/csharp/extractor/Semmle.Extraction.CSharp/Entities/Expressions/Patterns/PositionalPattern.cs
index c013754d0f4..53e3dbbacd9 100644
--- a/csharp/extractor/Semmle.Extraction.CSharp/Entities/Expressions/Patterns/PositionalPattern.cs
+++ b/csharp/extractor/Semmle.Extraction.CSharp/Entities/Expressions/Patterns/PositionalPattern.cs
@@ -1,5 +1,6 @@
 using Microsoft.CodeAnalysis.CSharp.Syntax;
 using Semmle.Extraction.Kinds;
+using Semmle.Util;
 
 namespace Semmle.Extraction.CSharp.Entities.Expressions
 {
@@ -8,11 +9,7 @@ namespace Semmle.Extraction.CSharp.Entities.Expressions
         internal PositionalPattern(Context cx, PositionalPatternClauseSyntax posPc, IExpressionParentEntity parent, int child) :
             base(new ExpressionInfo(cx, null, cx.CreateLocation(posPc.GetLocation()), ExprKind.POSITIONAL_PATTERN, parent, child, false, null))
         {
-            child = 0;
-            foreach (var sub in posPc.Subpatterns)
-            {
-                Pattern.Create(cx, sub.Pattern, this, child++);
-            }
+            posPc.Subpatterns.ForEach((p, i) => Pattern.Create(cx, p.Pattern, this, i));
         }
     }
 }
diff --git a/csharp/extractor/Semmle.Extraction.CSharp/Entities/PreprocessorDirectives/PragmaWarningDirective.cs b/csharp/extractor/Semmle.Extraction.CSharp/Entities/PreprocessorDirectives/PragmaWarningDirective.cs
index 0e4ca37a49f..81444206fd7 100644
--- a/csharp/extractor/Semmle.Extraction.CSharp/Entities/PreprocessorDirectives/PragmaWarningDirective.cs
+++ b/csharp/extractor/Semmle.Extraction.CSharp/Entities/PreprocessorDirectives/PragmaWarningDirective.cs
@@ -1,6 +1,7 @@
 using Microsoft.CodeAnalysis;
 using Microsoft.CodeAnalysis.CSharp;
 using Microsoft.CodeAnalysis.CSharp.Syntax;
+using Semmle.Util;
 using System.IO;
 
 namespace Semmle.Extraction.CSharp.Entities
@@ -15,12 +16,7 @@ namespace Semmle.Extraction.CSharp.Entities
         protected override void PopulatePreprocessor(TextWriter trapFile)
         {
             trapFile.pragma_warnings(this, Symbol.DisableOrRestoreKeyword.IsKind(SyntaxKind.DisableKeyword) ? 0 : 1);
-
-            var childIndex = 0;
-            foreach (var code in Symbol.ErrorCodes)
-            {
-                trapFile.pragma_warning_error_codes(this, code.ToString(), childIndex++);
-            }
+            Symbol.ErrorCodes.ForEach((code, child) => trapFile.pragma_warning_error_codes(this, code.ToString(), child));
         }
 
         public static PragmaWarningDirective Create(Context cx, PragmaWarningDirectiveTriviaSyntax p) =>

From b64083d08e805301b906d93e11872418feb2440a Mon Sep 17 00:00:00 2001
From: Tom Hvitved <hvitved@github.com>
Date: Fri, 16 Dec 2022 09:21:00 +0100
Subject: [PATCH 1408/1420] Ruby: Add more call graph tests

---
 .../library-tests/modules/ancestors.expected  |    6 +
 .../library-tests/modules/callgraph.expected  |   12 +
 ruby/ql/test/library-tests/modules/calls.rb   |   19 +
 .../library-tests/modules/methods.expected    |   38 +
 .../library-tests/modules/modules.expected    | 1232 +++++++++--------
 .../modules/superclasses.expected             |    6 +
 6 files changed, 713 insertions(+), 600 deletions(-)

diff --git a/ruby/ql/test/library-tests/modules/ancestors.expected b/ruby/ql/test/library-tests/modules/ancestors.expected
index 50a5f7dc72e..9e2c70f6f1c 100644
--- a/ruby/ql/test/library-tests/modules/ancestors.expected
+++ b/ruby/ql/test/library-tests/modules/ancestors.expected
@@ -142,6 +142,12 @@ calls.rb:
 #-----| super -> Object
 #-----| include -> Included
 
+#  633| CustomNew1
+#-----| super -> Object
+
+#  641| CustomNew2
+#-----| super -> Object
+
 hello.rb:
 #    1| EnglishWords
 
diff --git a/ruby/ql/test/library-tests/modules/callgraph.expected b/ruby/ql/test/library-tests/modules/callgraph.expected
index 93f262b3105..dd89fbb57c9 100644
--- a/ruby/ql/test/library-tests/modules/callgraph.expected
+++ b/ruby/ql/test/library-tests/modules/callgraph.expected
@@ -237,6 +237,13 @@ getTarget
 | calls.rb:620:9:620:16 | call to bar | calls.rb:628:5:630:7 | bar |
 | calls.rb:627:5:627:20 | call to include | calls.rb:108:5:110:7 | include |
 | calls.rb:629:9:629:13 | call to super | calls.rb:622:5:623:7 | bar |
+| calls.rb:635:9:635:14 | call to new | calls.rb:117:5:117:16 | new |
+| calls.rb:639:1:639:14 | call to new | calls.rb:117:5:117:16 | new |
+| calls.rb:639:1:639:14 | call to new | calls.rb:634:5:636:7 | new |
+| calls.rb:639:1:639:23 | call to instance | calls.rb:326:5:328:7 | instance |
+| calls.rb:647:9:647:34 | call to puts | calls.rb:102:5:102:30 | puts |
+| calls.rb:651:1:651:14 | call to new | calls.rb:117:5:117:16 | new |
+| calls.rb:651:1:651:14 | call to new | calls.rb:642:5:644:7 | new |
 | hello.rb:12:5:12:24 | call to include | calls.rb:108:5:110:7 | include |
 | hello.rb:14:16:14:20 | call to hello | hello.rb:2:5:4:7 | hello |
 | hello.rb:20:16:20:20 | call to super | hello.rb:13:5:15:7 | message |
@@ -361,6 +368,8 @@ unresolvedCall
 | calls.rb:562:1:562:13 | call to [] |
 | calls.rb:562:1:562:39 | call to each |
 | calls.rb:570:5:570:14 | call to singleton2 |
+| calls.rb:643:9:643:21 | call to allocate |
+| calls.rb:651:1:651:23 | call to instance |
 | hello.rb:20:16:20:26 | ... + ... |
 | hello.rb:20:16:20:34 | ... + ... |
 | hello.rb:20:16:20:40 | ... + ... |
@@ -483,6 +492,9 @@ publicMethod
 | calls.rb:619:5:621:7 | foo |
 | calls.rb:622:5:623:7 | bar |
 | calls.rb:628:5:630:7 | bar |
+| calls.rb:634:5:636:7 | new |
+| calls.rb:642:5:644:7 | new |
+| calls.rb:646:5:648:7 | instance |
 | hello.rb:2:5:4:7 | hello |
 | hello.rb:5:5:7:7 | world |
 | hello.rb:13:5:15:7 | message |
diff --git a/ruby/ql/test/library-tests/modules/calls.rb b/ruby/ql/test/library-tests/modules/calls.rb
index c6cd849571c..27d90f84e93 100644
--- a/ruby/ql/test/library-tests/modules/calls.rb
+++ b/ruby/ql/test/library-tests/modules/calls.rb
@@ -630,3 +630,22 @@ class IncludesIncluded
     end
 end
 
+class CustomNew1
+    def self.new
+        C1.new
+    end     
+end
+
+CustomNew1.new.instance
+
+class CustomNew2
+    def self.new
+        self.allocate
+    end
+
+    def instance
+        puts "CustomNew2#instance"
+    end
+end
+
+CustomNew2.new.instance
diff --git a/ruby/ql/test/library-tests/modules/methods.expected b/ruby/ql/test/library-tests/modules/methods.expected
index 8bd0d32fde6..eb3d1de05a7 100644
--- a/ruby/ql/test/library-tests/modules/methods.expected
+++ b/ruby/ql/test/library-tests/modules/methods.expected
@@ -48,6 +48,7 @@ getMethod
 | calls.rb:618:1:624:3 | Included | bar | calls.rb:622:5:623:7 | bar |
 | calls.rb:618:1:624:3 | Included | foo | calls.rb:619:5:621:7 | foo |
 | calls.rb:626:1:631:3 | IncludesIncluded | bar | calls.rb:628:5:630:7 | bar |
+| calls.rb:641:1:649:3 | CustomNew2 | instance | calls.rb:646:5:648:7 | instance |
 | hello.rb:1:1:8:3 | EnglishWords | hello | hello.rb:2:5:4:7 | hello |
 | hello.rb:1:1:8:3 | EnglishWords | world | hello.rb:5:5:7:7 | world |
 | hello.rb:11:1:16:3 | Greeting | message | hello.rb:13:5:15:7 | message |
@@ -497,6 +498,35 @@ lookupMethod
 | calls.rb:626:1:631:3 | IncludesIncluded | private_on_main | calls.rb:185:1:186:3 | private_on_main |
 | calls.rb:626:1:631:3 | IncludesIncluded | puts | calls.rb:102:5:102:30 | puts |
 | calls.rb:626:1:631:3 | IncludesIncluded | to_s | calls.rb:172:5:173:7 | to_s |
+| calls.rb:633:1:637:3 | CustomNew1 | add_singleton | calls.rb:367:1:371:3 | add_singleton |
+| calls.rb:633:1:637:3 | CustomNew1 | call_block | calls.rb:81:1:83:3 | call_block |
+| calls.rb:633:1:637:3 | CustomNew1 | call_instance_m | calls.rb:39:1:41:3 | call_instance_m |
+| calls.rb:633:1:637:3 | CustomNew1 | create | calls.rb:278:1:286:3 | create |
+| calls.rb:633:1:637:3 | CustomNew1 | foo | calls.rb:1:1:3:3 | foo |
+| calls.rb:633:1:637:3 | CustomNew1 | foo | calls.rb:85:1:89:3 | foo |
+| calls.rb:633:1:637:3 | CustomNew1 | funny | calls.rb:140:1:142:3 | funny |
+| calls.rb:633:1:637:3 | CustomNew1 | indirect | calls.rb:158:1:160:3 | indirect |
+| calls.rb:633:1:637:3 | CustomNew1 | new | calls.rb:117:5:117:16 | new |
+| calls.rb:633:1:637:3 | CustomNew1 | optional_arg | calls.rb:76:1:79:3 | optional_arg |
+| calls.rb:633:1:637:3 | CustomNew1 | pattern_dispatch | calls.rb:343:1:359:3 | pattern_dispatch |
+| calls.rb:633:1:637:3 | CustomNew1 | private_on_main | calls.rb:185:1:186:3 | private_on_main |
+| calls.rb:633:1:637:3 | CustomNew1 | puts | calls.rb:102:5:102:30 | puts |
+| calls.rb:633:1:637:3 | CustomNew1 | to_s | calls.rb:172:5:173:7 | to_s |
+| calls.rb:641:1:649:3 | CustomNew2 | add_singleton | calls.rb:367:1:371:3 | add_singleton |
+| calls.rb:641:1:649:3 | CustomNew2 | call_block | calls.rb:81:1:83:3 | call_block |
+| calls.rb:641:1:649:3 | CustomNew2 | call_instance_m | calls.rb:39:1:41:3 | call_instance_m |
+| calls.rb:641:1:649:3 | CustomNew2 | create | calls.rb:278:1:286:3 | create |
+| calls.rb:641:1:649:3 | CustomNew2 | foo | calls.rb:1:1:3:3 | foo |
+| calls.rb:641:1:649:3 | CustomNew2 | foo | calls.rb:85:1:89:3 | foo |
+| calls.rb:641:1:649:3 | CustomNew2 | funny | calls.rb:140:1:142:3 | funny |
+| calls.rb:641:1:649:3 | CustomNew2 | indirect | calls.rb:158:1:160:3 | indirect |
+| calls.rb:641:1:649:3 | CustomNew2 | instance | calls.rb:646:5:648:7 | instance |
+| calls.rb:641:1:649:3 | CustomNew2 | new | calls.rb:117:5:117:16 | new |
+| calls.rb:641:1:649:3 | CustomNew2 | optional_arg | calls.rb:76:1:79:3 | optional_arg |
+| calls.rb:641:1:649:3 | CustomNew2 | pattern_dispatch | calls.rb:343:1:359:3 | pattern_dispatch |
+| calls.rb:641:1:649:3 | CustomNew2 | private_on_main | calls.rb:185:1:186:3 | private_on_main |
+| calls.rb:641:1:649:3 | CustomNew2 | puts | calls.rb:102:5:102:30 | puts |
+| calls.rb:641:1:649:3 | CustomNew2 | to_s | calls.rb:172:5:173:7 | to_s |
 | file://:0:0:0:0 | Class | include | calls.rb:108:5:110:7 | include |
 | file://:0:0:0:0 | Class | module_eval | calls.rb:107:5:107:24 | module_eval |
 | file://:0:0:0:0 | Class | new | calls.rb:117:5:117:16 | new |
@@ -987,6 +1017,14 @@ enclosingMethod
 | calls.rb:620:9:620:12 | self | calls.rb:619:5:621:7 | foo |
 | calls.rb:620:9:620:16 | call to bar | calls.rb:619:5:621:7 | foo |
 | calls.rb:629:9:629:13 | call to super | calls.rb:628:5:630:7 | bar |
+| calls.rb:635:9:635:10 | C1 | calls.rb:634:5:636:7 | new |
+| calls.rb:635:9:635:14 | call to new | calls.rb:634:5:636:7 | new |
+| calls.rb:643:9:643:12 | self | calls.rb:642:5:644:7 | new |
+| calls.rb:643:9:643:21 | call to allocate | calls.rb:642:5:644:7 | new |
+| calls.rb:647:9:647:34 | call to puts | calls.rb:646:5:648:7 | instance |
+| calls.rb:647:9:647:34 | self | calls.rb:646:5:648:7 | instance |
+| calls.rb:647:14:647:34 | "CustomNew2#instance" | calls.rb:646:5:648:7 | instance |
+| calls.rb:647:15:647:33 | CustomNew2#instance | calls.rb:646:5:648:7 | instance |
 | hello.rb:3:9:3:22 | return | hello.rb:2:5:4:7 | hello |
 | hello.rb:3:16:3:22 | "hello" | hello.rb:2:5:4:7 | hello |
 | hello.rb:3:17:3:21 | hello | hello.rb:2:5:4:7 | hello |
diff --git a/ruby/ql/test/library-tests/modules/modules.expected b/ruby/ql/test/library-tests/modules/modules.expected
index 57cebf1907c..6c25a173009 100644
--- a/ruby/ql/test/library-tests/modules/modules.expected
+++ b/ruby/ql/test/library-tests/modules/modules.expected
@@ -34,6 +34,8 @@ getModule
 | calls.rb:605:1:612:3 | SingletonC |
 | calls.rb:618:1:624:3 | Included |
 | calls.rb:626:1:631:3 | IncludesIncluded |
+| calls.rb:633:1:637:3 | CustomNew1 |
+| calls.rb:641:1:649:3 | CustomNew2 |
 | file://:0:0:0:0 | BasicObject |
 | file://:0:0:0:0 | Class |
 | file://:0:0:0:0 | Complex |
@@ -103,7 +105,7 @@ getADeclaration
 | calls.rb:96:1:98:3 | String | calls.rb:96:1:98:3 | String |
 | calls.rb:100:1:103:3 | Kernel | calls.rb:100:1:103:3 | Kernel |
 | calls.rb:105:1:113:3 | Module | calls.rb:105:1:113:3 | Module |
-| calls.rb:115:1:118:3 | Object | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:115:1:118:3 | Object | calls.rb:1:1:651:24 | calls.rb |
 | calls.rb:115:1:118:3 | Object | calls.rb:115:1:118:3 | Object |
 | calls.rb:115:1:118:3 | Object | hello.rb:1:1:22:3 | hello.rb |
 | calls.rb:115:1:118:3 | Object | instance_fields.rb:1:1:29:4 | instance_fields.rb |
@@ -143,6 +145,8 @@ getADeclaration
 | calls.rb:605:1:612:3 | SingletonC | calls.rb:605:1:612:3 | SingletonC |
 | calls.rb:618:1:624:3 | Included | calls.rb:618:1:624:3 | Included |
 | calls.rb:626:1:631:3 | IncludesIncluded | calls.rb:626:1:631:3 | IncludesIncluded |
+| calls.rb:633:1:637:3 | CustomNew1 | calls.rb:633:1:637:3 | CustomNew1 |
+| calls.rb:641:1:649:3 | CustomNew2 | calls.rb:641:1:649:3 | CustomNew2 |
 | hello.rb:1:1:8:3 | EnglishWords | hello.rb:1:1:8:3 | EnglishWords |
 | hello.rb:11:1:16:3 | Greeting | hello.rb:11:1:16:3 | Greeting |
 | hello.rb:18:1:22:3 | HelloWorld | hello.rb:18:1:22:3 | HelloWorld |
@@ -223,6 +227,8 @@ getSuperClass
 | calls.rb:596:1:603:3 | SingletonB | calls.rb:583:1:594:3 | SingletonA |
 | calls.rb:605:1:612:3 | SingletonC | calls.rb:583:1:594:3 | SingletonA |
 | calls.rb:626:1:631:3 | IncludesIncluded | calls.rb:115:1:118:3 | Object |
+| calls.rb:633:1:637:3 | CustomNew1 | calls.rb:115:1:118:3 | Object |
+| calls.rb:641:1:649:3 | CustomNew2 | calls.rb:115:1:118:3 | Object |
 | file://:0:0:0:0 | Class | calls.rb:105:1:113:3 | Module |
 | file://:0:0:0:0 | Complex | file://:0:0:0:0 | Numeric |
 | file://:0:0:0:0 | FalseClass | calls.rb:115:1:118:3 | Object |
@@ -365,6 +371,9 @@ resolveConstantReadAccess
 | calls.rb:615:1:615:10 | SingletonB | SingletonB |
 | calls.rb:616:1:616:10 | SingletonC | SingletonC |
 | calls.rb:627:13:627:20 | Included | Included |
+| calls.rb:635:9:635:10 | C1 | C1 |
+| calls.rb:639:1:639:10 | CustomNew1 | CustomNew1 |
+| calls.rb:651:1:651:10 | CustomNew2 | CustomNew2 |
 | hello.rb:12:13:12:24 | EnglishWords | EnglishWords |
 | hello.rb:18:20:18:27 | Greeting | Greeting |
 | instance_fields.rb:4:22:4:31 | A_target | A_target |
@@ -447,6 +456,8 @@ resolveConstantWriteAccess
 | calls.rb:605:1:612:3 | SingletonC | SingletonC |
 | calls.rb:618:1:624:3 | Included | Included |
 | calls.rb:626:1:631:3 | IncludesIncluded | IncludesIncluded |
+| calls.rb:633:1:637:3 | CustomNew1 | CustomNew1 |
+| calls.rb:641:1:649:3 | CustomNew2 | CustomNew2 |
 | hello.rb:1:1:8:3 | EnglishWords | EnglishWords |
 | hello.rb:11:1:16:3 | Greeting | Greeting |
 | hello.rb:18:1:22:3 | HelloWorld | HelloWorld |
@@ -513,32 +524,32 @@ resolveConstantWriteAccess
 | unresolved_subclass.rb:7:1:8:3 | Subclass2 | UnresolvedNamespace::Subclass2 |
 | unresolved_subclass.rb:11:1:12:3 | A | UnresolvedNamespace::A |
 enclosingModule
-| calls.rb:1:1:3:3 | foo | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:2:5:2:14 | call to puts | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:2:5:2:14 | self | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:2:10:2:14 | "foo" | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:2:11:2:13 | foo | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:5:1:5:3 | call to foo | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:5:1:5:3 | self | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:7:1:9:3 | bar | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:7:5:7:8 | self | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:8:5:8:15 | call to puts | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:8:5:8:15 | self | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:8:10:8:15 | "bar1" | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:8:11:8:14 | bar1 | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:11:1:11:4 | self | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:11:1:11:8 | call to bar | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:13:1:15:3 | bar | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:13:5:13:8 | self | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:14:5:14:15 | call to puts | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:14:5:14:15 | self | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:14:10:14:15 | "bar2" | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:14:11:14:14 | bar2 | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:17:1:17:4 | self | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:17:1:17:8 | call to bar | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:19:1:19:4 | self | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:19:1:19:8 | call to foo | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:21:1:34:3 | M | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:1:1:3:3 | foo | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:2:5:2:14 | call to puts | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:2:5:2:14 | self | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:2:10:2:14 | "foo" | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:2:11:2:13 | foo | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:5:1:5:3 | call to foo | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:5:1:5:3 | self | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:7:1:9:3 | bar | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:7:5:7:8 | self | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:8:5:8:15 | call to puts | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:8:5:8:15 | self | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:8:10:8:15 | "bar1" | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:8:11:8:14 | bar1 | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:11:1:11:4 | self | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:11:1:11:8 | call to bar | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:13:1:15:3 | bar | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:13:5:13:8 | self | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:14:5:14:15 | call to puts | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:14:5:14:15 | self | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:14:10:14:15 | "bar2" | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:14:11:14:14 | bar2 | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:17:1:17:4 | self | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:17:1:17:8 | call to bar | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:19:1:19:4 | self | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:19:1:19:8 | call to foo | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:21:1:34:3 | M | calls.rb:1:1:651:24 | calls.rb |
 | calls.rb:22:5:24:7 | instance_m | calls.rb:21:1:34:3 | M |
 | calls.rb:23:9:23:19 | call to singleton_m | calls.rb:21:1:34:3 | M |
 | calls.rb:23:9:23:19 | self | calls.rb:21:1:34:3 | M |
@@ -554,14 +565,14 @@ enclosingModule
 | calls.rb:32:5:32:15 | self | calls.rb:21:1:34:3 | M |
 | calls.rb:33:5:33:8 | self | calls.rb:21:1:34:3 | M |
 | calls.rb:33:5:33:20 | call to singleton_m | calls.rb:21:1:34:3 | M |
-| calls.rb:36:1:36:1 | M | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:36:1:36:12 | call to instance_m | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:37:1:37:1 | M | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:37:1:37:13 | call to singleton_m | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:39:1:41:3 | call_instance_m | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:40:5:40:14 | call to instance_m | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:40:5:40:14 | self | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:43:1:58:3 | C | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:36:1:36:1 | M | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:36:1:36:12 | call to instance_m | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:37:1:37:1 | M | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:37:1:37:13 | call to singleton_m | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:39:1:41:3 | call_instance_m | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:40:5:40:14 | call to instance_m | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:40:5:40:14 | self | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:43:1:58:3 | C | calls.rb:1:1:651:24 | calls.rb |
 | calls.rb:44:5:44:13 | call to include | calls.rb:43:1:58:3 | C |
 | calls.rb:44:5:44:13 | self | calls.rb:43:1:58:3 | C |
 | calls.rb:44:13:44:13 | M | calls.rb:43:1:58:3 | C |
@@ -582,66 +593,66 @@ enclosingModule
 | calls.rb:55:9:55:19 | self | calls.rb:43:1:58:3 | C |
 | calls.rb:56:9:56:12 | self | calls.rb:43:1:58:3 | C |
 | calls.rb:56:9:56:24 | call to singleton_m | calls.rb:43:1:58:3 | C |
-| calls.rb:60:1:60:1 | c | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:60:1:60:9 | ... = ... | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:60:5:60:5 | C | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:60:5:60:9 | call to new | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:61:1:61:1 | c | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:61:1:61:5 | call to baz | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:62:1:62:1 | c | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:62:1:62:13 | call to singleton_m | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:63:1:63:1 | c | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:63:1:63:12 | call to instance_m | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:65:1:69:3 | D | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:65:11:65:11 | C | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:60:1:60:1 | c | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:60:1:60:9 | ... = ... | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:60:5:60:5 | C | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:60:5:60:9 | call to new | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:61:1:61:1 | c | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:61:1:61:5 | call to baz | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:62:1:62:1 | c | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:62:1:62:13 | call to singleton_m | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:63:1:63:1 | c | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:63:1:63:12 | call to instance_m | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:65:1:69:3 | D | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:65:11:65:11 | C | calls.rb:1:1:651:24 | calls.rb |
 | calls.rb:66:5:68:7 | baz | calls.rb:65:1:69:3 | D |
 | calls.rb:67:9:67:13 | call to super | calls.rb:65:1:69:3 | D |
-| calls.rb:71:1:71:1 | d | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:71:1:71:9 | ... = ... | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:71:5:71:5 | D | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:71:5:71:9 | call to new | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:72:1:72:1 | d | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:72:1:72:5 | call to baz | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:73:1:73:1 | d | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:73:1:73:13 | call to singleton_m | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:74:1:74:1 | d | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:74:1:74:12 | call to instance_m | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:76:1:79:3 | optional_arg | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:76:18:76:18 | a | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:76:18:76:18 | a | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:76:22:76:22 | 4 | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:76:25:76:25 | b | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:76:25:76:25 | b | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:76:28:76:28 | 5 | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:77:5:77:5 | a | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:77:5:77:16 | call to bit_length | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:78:5:78:5 | b | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:78:5:78:16 | call to bit_length | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:81:1:83:3 | call_block | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:82:5:82:11 | yield ... | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:82:11:82:11 | 1 | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:85:1:89:3 | foo | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:86:5:86:7 | var | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:86:5:86:18 | ... = ... | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:86:11:86:14 | Hash | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:86:11:86:18 | call to new | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:87:5:87:7 | var | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:87:5:87:10 | ...[...] | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:87:9:87:9 | 1 | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:88:5:88:29 | call to call_block | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:88:5:88:29 | self | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:88:16:88:29 | { ... } | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:88:19:88:19 | x | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:88:19:88:19 | x | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:88:22:88:24 | var | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:88:22:88:27 | ...[...] | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:88:26:88:26 | x | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:91:1:94:3 | Integer | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:71:1:71:1 | d | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:71:1:71:9 | ... = ... | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:71:5:71:5 | D | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:71:5:71:9 | call to new | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:72:1:72:1 | d | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:72:1:72:5 | call to baz | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:73:1:73:1 | d | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:73:1:73:13 | call to singleton_m | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:74:1:74:1 | d | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:74:1:74:12 | call to instance_m | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:76:1:79:3 | optional_arg | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:76:18:76:18 | a | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:76:18:76:18 | a | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:76:22:76:22 | 4 | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:76:25:76:25 | b | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:76:25:76:25 | b | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:76:28:76:28 | 5 | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:77:5:77:5 | a | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:77:5:77:16 | call to bit_length | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:78:5:78:5 | b | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:78:5:78:16 | call to bit_length | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:81:1:83:3 | call_block | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:82:5:82:11 | yield ... | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:82:11:82:11 | 1 | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:85:1:89:3 | foo | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:86:5:86:7 | var | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:86:5:86:18 | ... = ... | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:86:11:86:14 | Hash | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:86:11:86:18 | call to new | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:87:5:87:7 | var | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:87:5:87:10 | ...[...] | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:87:9:87:9 | 1 | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:88:5:88:29 | call to call_block | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:88:5:88:29 | self | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:88:16:88:29 | { ... } | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:88:19:88:19 | x | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:88:19:88:19 | x | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:88:22:88:24 | var | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:88:22:88:27 | ...[...] | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:88:26:88:26 | x | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:91:1:94:3 | Integer | calls.rb:1:1:651:24 | calls.rb |
 | calls.rb:92:5:92:23 | bit_length | calls.rb:91:1:94:3 | Integer |
 | calls.rb:93:5:93:16 | abs | calls.rb:91:1:94:3 | Integer |
-| calls.rb:96:1:98:3 | String | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:96:1:98:3 | String | calls.rb:1:1:651:24 | calls.rb |
 | calls.rb:97:5:97:23 | capitalize | calls.rb:96:1:98:3 | String |
-| calls.rb:100:1:103:3 | Kernel | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:100:1:103:3 | Kernel | calls.rb:1:1:651:24 | calls.rb |
 | calls.rb:101:5:101:25 | alias ... | calls.rb:100:1:103:3 | Kernel |
 | calls.rb:101:11:101:19 | :old_puts | calls.rb:100:1:103:3 | Kernel |
 | calls.rb:101:11:101:19 | old_puts | calls.rb:100:1:103:3 | Kernel |
@@ -653,7 +664,7 @@ enclosingModule
 | calls.rb:102:17:102:26 | call to old_puts | calls.rb:100:1:103:3 | Kernel |
 | calls.rb:102:17:102:26 | self | calls.rb:100:1:103:3 | Kernel |
 | calls.rb:102:26:102:26 | x | calls.rb:100:1:103:3 | Kernel |
-| calls.rb:105:1:113:3 | Module | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:105:1:113:3 | Module | calls.rb:1:1:651:24 | calls.rb |
 | calls.rb:106:5:106:31 | alias ... | calls.rb:105:1:113:3 | Module |
 | calls.rb:106:11:106:22 | :old_include | calls.rb:105:1:113:3 | Module |
 | calls.rb:106:11:106:22 | old_include | calls.rb:105:1:113:3 | Module |
@@ -668,13 +679,13 @@ enclosingModule
 | calls.rb:109:21:109:21 | x | calls.rb:105:1:113:3 | Module |
 | calls.rb:111:5:111:20 | prepend | calls.rb:105:1:113:3 | Module |
 | calls.rb:112:5:112:20 | private | calls.rb:105:1:113:3 | Module |
-| calls.rb:115:1:118:3 | Object | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:115:16:115:21 | Module | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:115:1:118:3 | Object | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:115:16:115:21 | Module | calls.rb:1:1:651:24 | calls.rb |
 | calls.rb:116:5:116:18 | call to include | calls.rb:115:1:118:3 | Object |
 | calls.rb:116:5:116:18 | self | calls.rb:115:1:118:3 | Object |
 | calls.rb:116:13:116:18 | Kernel | calls.rb:115:1:118:3 | Object |
 | calls.rb:117:5:117:16 | new | calls.rb:115:1:118:3 | Object |
-| calls.rb:120:1:123:3 | Hash | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:120:1:123:3 | Hash | calls.rb:1:1:651:24 | calls.rb |
 | calls.rb:121:5:121:25 | alias ... | calls.rb:120:1:123:3 | Hash |
 | calls.rb:121:11:121:21 | :old_lookup | calls.rb:120:1:123:3 | Hash |
 | calls.rb:121:11:121:21 | old_lookup | calls.rb:120:1:123:3 | Hash |
@@ -686,7 +697,7 @@ enclosingModule
 | calls.rb:122:15:122:27 | call to old_lookup | calls.rb:120:1:123:3 | Hash |
 | calls.rb:122:15:122:27 | self | calls.rb:120:1:123:3 | Hash |
 | calls.rb:122:26:122:26 | x | calls.rb:120:1:123:3 | Hash |
-| calls.rb:125:1:138:3 | Array | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:125:1:138:3 | Array | calls.rb:1:1:651:24 | calls.rb |
 | calls.rb:126:3:126:23 | alias ... | calls.rb:125:1:138:3 | Array |
 | calls.rb:126:9:126:19 | :old_lookup | calls.rb:125:1:138:3 | Array |
 | calls.rb:126:9:126:19 | old_lookup | calls.rb:125:1:138:3 | Array |
@@ -722,130 +733,130 @@ enclosingModule
 | calls.rb:135:9:135:14 | ... = ... | calls.rb:125:1:138:3 | Array |
 | calls.rb:135:11:135:12 | ... + ... | calls.rb:125:1:138:3 | Array |
 | calls.rb:135:14:135:14 | 1 | calls.rb:125:1:138:3 | Array |
-| calls.rb:140:1:142:3 | funny | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:141:5:141:20 | yield ... | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:141:11:141:20 | "prefix: " | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:141:12:141:19 | prefix:  | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:144:1:144:30 | call to funny | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:144:1:144:30 | self | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:144:7:144:30 | { ... } | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:144:10:144:10 | i | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:144:10:144:10 | i | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:144:13:144:29 | call to puts | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:144:13:144:29 | self | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:144:18:144:18 | i | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:144:18:144:29 | call to capitalize | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:146:1:146:3 | "a" | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:146:1:146:14 | call to capitalize | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:146:2:146:2 | a | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:147:1:147:1 | 1 | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:147:1:147:12 | call to bit_length | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:148:1:148:1 | 1 | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:148:1:148:5 | call to abs | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:150:1:150:13 | Array | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:150:1:150:13 | [...] | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:150:1:150:13 | call to [] | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:150:1:150:62 | call to foreach | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:150:2:150:4 | "a" | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:150:3:150:3 | a | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:150:6:150:8 | "b" | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:150:7:150:7 | b | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:150:10:150:12 | "c" | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:150:11:150:11 | c | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:150:23:150:62 | { ... } | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:150:26:150:26 | i | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:150:26:150:26 | i | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:150:29:150:29 | v | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:150:29:150:29 | v | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:150:32:150:61 | call to puts | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:150:32:150:61 | self | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:150:37:150:61 | "#{...} -> #{...}" | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:150:38:150:41 | #{...} | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:150:40:150:40 | i | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:150:42:150:45 |  ->  | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:150:46:150:60 | #{...} | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:150:48:150:48 | v | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:150:48:150:59 | call to capitalize | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:152:1:152:7 | Array | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:152:1:152:7 | [...] | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:152:1:152:7 | call to [] | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:152:1:152:35 | call to foreach | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:152:2:152:2 | 1 | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:152:4:152:4 | 2 | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:152:6:152:6 | 3 | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:152:17:152:35 | { ... } | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:152:20:152:20 | i | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:152:20:152:20 | i | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:152:23:152:23 | i | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:152:23:152:34 | call to bit_length | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:154:1:154:7 | Array | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:154:1:154:7 | [...] | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:154:1:154:7 | call to [] | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:154:1:154:40 | call to foreach | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:154:2:154:2 | 1 | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:154:4:154:4 | 2 | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:154:6:154:6 | 3 | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:154:17:154:40 | { ... } | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:154:20:154:20 | i | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:154:20:154:20 | i | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:154:23:154:39 | call to puts | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:154:23:154:39 | self | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:154:28:154:28 | i | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:154:28:154:39 | call to capitalize | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:156:1:156:8 | Array | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:156:1:156:8 | [...] | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:156:1:156:8 | call to [] | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:156:1:156:37 | call to foreach | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:156:2:156:2 | 1 | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:156:4:156:5 | - ... | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:156:5:156:5 | 2 | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:156:7:156:7 | 3 | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:156:18:156:37 | { ... } | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:156:21:156:21 | _ | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:156:21:156:21 | _ | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:156:24:156:24 | v | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:156:24:156:24 | v | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:156:27:156:36 | call to puts | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:156:27:156:36 | self | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:156:32:156:32 | v | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:156:32:156:36 | call to abs | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:158:1:160:3 | indirect | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:158:14:158:15 | &b | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:158:15:158:15 | b | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:159:5:159:17 | call to call_block | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:159:5:159:17 | self | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:159:16:159:17 | &... | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:159:17:159:17 | b | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:162:1:162:28 | call to indirect | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:162:1:162:28 | self | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:162:10:162:28 | { ... } | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:162:13:162:13 | i | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:162:13:162:13 | i | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:162:16:162:16 | i | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:162:16:162:27 | call to bit_length | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:165:1:169:3 | S | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:140:1:142:3 | funny | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:141:5:141:20 | yield ... | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:141:11:141:20 | "prefix: " | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:141:12:141:19 | prefix:  | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:144:1:144:30 | call to funny | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:144:1:144:30 | self | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:144:7:144:30 | { ... } | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:144:10:144:10 | i | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:144:10:144:10 | i | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:144:13:144:29 | call to puts | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:144:13:144:29 | self | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:144:18:144:18 | i | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:144:18:144:29 | call to capitalize | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:146:1:146:3 | "a" | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:146:1:146:14 | call to capitalize | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:146:2:146:2 | a | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:147:1:147:1 | 1 | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:147:1:147:12 | call to bit_length | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:148:1:148:1 | 1 | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:148:1:148:5 | call to abs | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:150:1:150:13 | Array | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:150:1:150:13 | [...] | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:150:1:150:13 | call to [] | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:150:1:150:62 | call to foreach | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:150:2:150:4 | "a" | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:150:3:150:3 | a | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:150:6:150:8 | "b" | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:150:7:150:7 | b | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:150:10:150:12 | "c" | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:150:11:150:11 | c | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:150:23:150:62 | { ... } | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:150:26:150:26 | i | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:150:26:150:26 | i | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:150:29:150:29 | v | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:150:29:150:29 | v | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:150:32:150:61 | call to puts | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:150:32:150:61 | self | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:150:37:150:61 | "#{...} -> #{...}" | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:150:38:150:41 | #{...} | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:150:40:150:40 | i | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:150:42:150:45 |  ->  | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:150:46:150:60 | #{...} | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:150:48:150:48 | v | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:150:48:150:59 | call to capitalize | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:152:1:152:7 | Array | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:152:1:152:7 | [...] | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:152:1:152:7 | call to [] | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:152:1:152:35 | call to foreach | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:152:2:152:2 | 1 | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:152:4:152:4 | 2 | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:152:6:152:6 | 3 | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:152:17:152:35 | { ... } | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:152:20:152:20 | i | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:152:20:152:20 | i | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:152:23:152:23 | i | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:152:23:152:34 | call to bit_length | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:154:1:154:7 | Array | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:154:1:154:7 | [...] | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:154:1:154:7 | call to [] | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:154:1:154:40 | call to foreach | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:154:2:154:2 | 1 | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:154:4:154:4 | 2 | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:154:6:154:6 | 3 | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:154:17:154:40 | { ... } | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:154:20:154:20 | i | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:154:20:154:20 | i | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:154:23:154:39 | call to puts | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:154:23:154:39 | self | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:154:28:154:28 | i | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:154:28:154:39 | call to capitalize | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:156:1:156:8 | Array | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:156:1:156:8 | [...] | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:156:1:156:8 | call to [] | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:156:1:156:37 | call to foreach | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:156:2:156:2 | 1 | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:156:4:156:5 | - ... | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:156:5:156:5 | 2 | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:156:7:156:7 | 3 | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:156:18:156:37 | { ... } | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:156:21:156:21 | _ | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:156:21:156:21 | _ | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:156:24:156:24 | v | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:156:24:156:24 | v | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:156:27:156:36 | call to puts | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:156:27:156:36 | self | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:156:32:156:32 | v | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:156:32:156:36 | call to abs | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:158:1:160:3 | indirect | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:158:14:158:15 | &b | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:158:15:158:15 | b | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:159:5:159:17 | call to call_block | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:159:5:159:17 | self | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:159:16:159:17 | &... | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:159:17:159:17 | b | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:162:1:162:28 | call to indirect | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:162:1:162:28 | self | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:162:10:162:28 | { ... } | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:162:13:162:13 | i | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:162:13:162:13 | i | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:162:16:162:16 | i | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:162:16:162:27 | call to bit_length | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:165:1:169:3 | S | calls.rb:1:1:651:24 | calls.rb |
 | calls.rb:166:5:168:7 | s_method | calls.rb:165:1:169:3 | S |
 | calls.rb:167:9:167:12 | self | calls.rb:165:1:169:3 | S |
 | calls.rb:167:9:167:17 | call to to_s | calls.rb:165:1:169:3 | S |
-| calls.rb:171:1:174:3 | A | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:171:11:171:11 | S | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:171:1:174:3 | A | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:171:11:171:11 | S | calls.rb:1:1:651:24 | calls.rb |
 | calls.rb:172:5:173:7 | to_s | calls.rb:171:1:174:3 | A |
-| calls.rb:176:1:179:3 | B | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:176:11:176:11 | S | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:176:1:179:3 | B | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:176:11:176:11 | S | calls.rb:1:1:651:24 | calls.rb |
 | calls.rb:177:5:178:7 | to_s | calls.rb:176:1:179:3 | B |
-| calls.rb:181:1:181:1 | S | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:181:1:181:5 | call to new | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:181:1:181:14 | call to s_method | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:182:1:182:1 | A | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:182:1:182:5 | call to new | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:182:1:182:14 | call to s_method | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:183:1:183:1 | B | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:183:1:183:5 | call to new | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:183:1:183:14 | call to s_method | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:185:1:186:3 | private_on_main | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:188:1:188:15 | call to private_on_main | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:188:1:188:15 | self | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:190:1:226:3 | Singletons | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:181:1:181:1 | S | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:181:1:181:5 | call to new | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:181:1:181:14 | call to s_method | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:182:1:182:1 | A | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:182:1:182:5 | call to new | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:182:1:182:14 | call to s_method | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:183:1:183:1 | B | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:183:1:183:5 | call to new | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:183:1:183:14 | call to s_method | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:185:1:186:3 | private_on_main | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:188:1:188:15 | call to private_on_main | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:188:1:188:15 | self | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:190:1:226:3 | Singletons | calls.rb:1:1:651:24 | calls.rb |
 | calls.rb:191:5:194:7 | singleton_a | calls.rb:190:1:226:3 | Singletons |
 | calls.rb:191:9:191:12 | self | calls.rb:190:1:226:3 | Singletons |
 | calls.rb:192:9:192:26 | call to puts | calls.rb:190:1:226:3 | Singletons |
@@ -895,126 +906,126 @@ enclosingModule
 | calls.rb:223:5:225:7 | call_singleton_g | calls.rb:190:1:226:3 | Singletons |
 | calls.rb:224:9:224:12 | self | calls.rb:190:1:226:3 | Singletons |
 | calls.rb:224:9:224:24 | call to singleton_g | calls.rb:190:1:226:3 | Singletons |
-| calls.rb:228:1:228:10 | Singletons | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:228:1:228:22 | call to singleton_a | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:229:1:229:10 | Singletons | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:229:1:229:22 | call to singleton_f | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:231:1:231:2 | c1 | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:231:1:231:19 | ... = ... | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:231:6:231:15 | Singletons | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:231:6:231:19 | call to new | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:233:1:233:2 | c1 | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:233:1:233:11 | call to instance | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:234:1:234:2 | c1 | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:234:1:234:14 | call to singleton_e | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:236:1:238:3 | singleton_g | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:236:5:236:6 | c1 | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:237:5:237:24 | call to puts | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:237:5:237:24 | self | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:237:10:237:24 | "singleton_g_1" | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:237:11:237:23 | singleton_g_1 | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:240:1:240:2 | c1 | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:240:1:240:14 | call to singleton_g | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:241:1:241:2 | c1 | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:241:1:241:19 | call to call_singleton_g | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:243:1:245:3 | singleton_g | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:243:5:243:6 | c1 | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:244:5:244:24 | call to puts | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:244:5:244:24 | self | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:244:10:244:24 | "singleton_g_2" | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:244:11:244:23 | singleton_g_2 | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:247:1:247:2 | c1 | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:247:1:247:14 | call to singleton_g | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:248:1:248:2 | c1 | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:248:1:248:19 | call to call_singleton_g | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:250:1:254:3 | class << ... | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:250:10:250:11 | c1 | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:228:1:228:10 | Singletons | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:228:1:228:22 | call to singleton_a | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:229:1:229:10 | Singletons | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:229:1:229:22 | call to singleton_f | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:231:1:231:2 | c1 | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:231:1:231:19 | ... = ... | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:231:6:231:15 | Singletons | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:231:6:231:19 | call to new | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:233:1:233:2 | c1 | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:233:1:233:11 | call to instance | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:234:1:234:2 | c1 | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:234:1:234:14 | call to singleton_e | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:236:1:238:3 | singleton_g | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:236:5:236:6 | c1 | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:237:5:237:24 | call to puts | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:237:5:237:24 | self | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:237:10:237:24 | "singleton_g_1" | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:237:11:237:23 | singleton_g_1 | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:240:1:240:2 | c1 | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:240:1:240:14 | call to singleton_g | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:241:1:241:2 | c1 | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:241:1:241:19 | call to call_singleton_g | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:243:1:245:3 | singleton_g | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:243:5:243:6 | c1 | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:244:5:244:24 | call to puts | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:244:5:244:24 | self | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:244:10:244:24 | "singleton_g_2" | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:244:11:244:23 | singleton_g_2 | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:247:1:247:2 | c1 | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:247:1:247:14 | call to singleton_g | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:248:1:248:2 | c1 | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:248:1:248:19 | call to call_singleton_g | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:250:1:254:3 | class << ... | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:250:10:250:11 | c1 | calls.rb:1:1:651:24 | calls.rb |
 | calls.rb:251:5:253:7 | singleton_g | calls.rb:250:1:254:3 | class << ... |
 | calls.rb:252:9:252:28 | call to puts | calls.rb:250:1:254:3 | class << ... |
 | calls.rb:252:9:252:28 | self | calls.rb:250:1:254:3 | class << ... |
 | calls.rb:252:14:252:28 | "singleton_g_3" | calls.rb:250:1:254:3 | class << ... |
 | calls.rb:252:15:252:27 | singleton_g_3 | calls.rb:250:1:254:3 | class << ... |
-| calls.rb:256:1:256:2 | c1 | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:256:1:256:14 | call to singleton_g | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:257:1:257:2 | c1 | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:257:1:257:19 | call to call_singleton_g | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:259:1:259:2 | c2 | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:259:1:259:19 | ... = ... | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:259:6:259:15 | Singletons | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:259:6:259:19 | call to new | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:260:1:260:2 | c2 | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:260:1:260:14 | call to singleton_e | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:261:1:261:2 | c2 | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:261:1:261:14 | call to singleton_g | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:263:1:263:4 | self | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:263:1:263:8 | call to new | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:265:1:265:16 | call to puts | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:265:1:265:16 | self | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:265:6:265:16 | "top-level" | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:265:7:265:15 | top-level | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:267:1:269:3 | singleton_g | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:267:5:267:14 | Singletons | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:268:5:268:22 | call to puts | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:268:5:268:22 | self | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:268:10:268:22 | "singleton_g" | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:268:11:268:21 | singleton_g | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:271:1:271:10 | Singletons | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:271:1:271:22 | call to singleton_g | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:272:1:272:2 | c1 | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:272:1:272:14 | call to singleton_g | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:273:1:273:2 | c1 | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:273:1:273:19 | call to call_singleton_g | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:274:1:274:2 | c2 | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:274:1:274:14 | call to singleton_g | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:275:1:275:2 | c3 | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:275:1:275:19 | ... = ... | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:275:6:275:15 | Singletons | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:275:6:275:19 | call to new | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:276:1:276:2 | c3 | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:276:1:276:14 | call to singleton_g | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:278:1:286:3 | create | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:278:12:278:15 | type | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:278:12:278:15 | type | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:279:5:279:8 | type | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:279:5:279:12 | call to new | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:279:5:279:21 | call to instance | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:281:5:283:7 | singleton_h | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:281:9:281:12 | type | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:282:9:282:26 | call to puts | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:282:9:282:26 | self | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:282:14:282:26 | "singleton_h" | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:282:15:282:25 | singleton_h | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:285:5:285:8 | type | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:285:5:285:20 | call to singleton_h | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:288:1:288:17 | call to create | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:288:1:288:17 | self | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:288:8:288:17 | Singletons | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:289:1:289:10 | Singletons | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:289:1:289:22 | call to singleton_h | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:291:1:291:1 | x | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:291:1:291:14 | ... = ... | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:291:5:291:14 | Singletons | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:293:1:297:3 | class << ... | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:293:10:293:10 | x | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:256:1:256:2 | c1 | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:256:1:256:14 | call to singleton_g | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:257:1:257:2 | c1 | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:257:1:257:19 | call to call_singleton_g | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:259:1:259:2 | c2 | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:259:1:259:19 | ... = ... | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:259:6:259:15 | Singletons | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:259:6:259:19 | call to new | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:260:1:260:2 | c2 | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:260:1:260:14 | call to singleton_e | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:261:1:261:2 | c2 | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:261:1:261:14 | call to singleton_g | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:263:1:263:4 | self | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:263:1:263:8 | call to new | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:265:1:265:16 | call to puts | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:265:1:265:16 | self | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:265:6:265:16 | "top-level" | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:265:7:265:15 | top-level | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:267:1:269:3 | singleton_g | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:267:5:267:14 | Singletons | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:268:5:268:22 | call to puts | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:268:5:268:22 | self | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:268:10:268:22 | "singleton_g" | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:268:11:268:21 | singleton_g | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:271:1:271:10 | Singletons | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:271:1:271:22 | call to singleton_g | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:272:1:272:2 | c1 | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:272:1:272:14 | call to singleton_g | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:273:1:273:2 | c1 | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:273:1:273:19 | call to call_singleton_g | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:274:1:274:2 | c2 | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:274:1:274:14 | call to singleton_g | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:275:1:275:2 | c3 | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:275:1:275:19 | ... = ... | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:275:6:275:15 | Singletons | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:275:6:275:19 | call to new | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:276:1:276:2 | c3 | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:276:1:276:14 | call to singleton_g | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:278:1:286:3 | create | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:278:12:278:15 | type | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:278:12:278:15 | type | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:279:5:279:8 | type | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:279:5:279:12 | call to new | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:279:5:279:21 | call to instance | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:281:5:283:7 | singleton_h | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:281:9:281:12 | type | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:282:9:282:26 | call to puts | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:282:9:282:26 | self | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:282:14:282:26 | "singleton_h" | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:282:15:282:25 | singleton_h | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:285:5:285:8 | type | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:285:5:285:20 | call to singleton_h | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:288:1:288:17 | call to create | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:288:1:288:17 | self | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:288:8:288:17 | Singletons | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:289:1:289:10 | Singletons | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:289:1:289:22 | call to singleton_h | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:291:1:291:1 | x | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:291:1:291:14 | ... = ... | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:291:5:291:14 | Singletons | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:293:1:297:3 | class << ... | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:293:10:293:10 | x | calls.rb:1:1:651:24 | calls.rb |
 | calls.rb:294:5:296:7 | singleton_i | calls.rb:293:1:297:3 | class << ... |
 | calls.rb:295:9:295:26 | call to puts | calls.rb:293:1:297:3 | class << ... |
 | calls.rb:295:9:295:26 | self | calls.rb:293:1:297:3 | class << ... |
 | calls.rb:295:14:295:26 | "singleton_i" | calls.rb:293:1:297:3 | class << ... |
 | calls.rb:295:15:295:25 | singleton_i | calls.rb:293:1:297:3 | class << ... |
-| calls.rb:299:1:299:1 | x | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:299:1:299:13 | call to singleton_i | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:300:1:300:10 | Singletons | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:300:1:300:22 | call to singleton_i | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:302:1:306:3 | class << ... | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:302:10:302:19 | Singletons | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:299:1:299:1 | x | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:299:1:299:13 | call to singleton_i | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:300:1:300:10 | Singletons | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:300:1:300:22 | call to singleton_i | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:302:1:306:3 | class << ... | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:302:10:302:19 | Singletons | calls.rb:1:1:651:24 | calls.rb |
 | calls.rb:303:5:305:7 | singleton_j | calls.rb:302:1:306:3 | class << ... |
 | calls.rb:304:9:304:26 | call to puts | calls.rb:302:1:306:3 | class << ... |
 | calls.rb:304:9:304:26 | self | calls.rb:302:1:306:3 | class << ... |
 | calls.rb:304:14:304:26 | "singleton_j" | calls.rb:302:1:306:3 | class << ... |
 | calls.rb:304:15:304:25 | singleton_j | calls.rb:302:1:306:3 | class << ... |
-| calls.rb:308:1:308:10 | Singletons | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:308:1:308:22 | call to singleton_j | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:310:1:321:3 | SelfNew | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:308:1:308:10 | Singletons | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:308:1:308:22 | call to singleton_j | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:310:1:321:3 | SelfNew | calls.rb:1:1:651:24 | calls.rb |
 | calls.rb:311:5:314:7 | instance | calls.rb:310:1:321:3 | SelfNew |
 | calls.rb:312:9:312:31 | call to puts | calls.rb:310:1:321:3 | SelfNew |
 | calls.rb:312:9:312:31 | self | calls.rb:310:1:321:3 | SelfNew |
@@ -1031,110 +1042,110 @@ enclosingModule
 | calls.rb:320:5:320:7 | call to new | calls.rb:310:1:321:3 | SelfNew |
 | calls.rb:320:5:320:7 | self | calls.rb:310:1:321:3 | SelfNew |
 | calls.rb:320:5:320:16 | call to instance | calls.rb:310:1:321:3 | SelfNew |
-| calls.rb:323:1:323:7 | SelfNew | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:323:1:323:17 | call to singleton | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:325:1:329:3 | C1 | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:323:1:323:7 | SelfNew | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:323:1:323:17 | call to singleton | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:325:1:329:3 | C1 | calls.rb:1:1:651:24 | calls.rb |
 | calls.rb:326:5:328:7 | instance | calls.rb:325:1:329:3 | C1 |
 | calls.rb:327:9:327:26 | call to puts | calls.rb:325:1:329:3 | C1 |
 | calls.rb:327:9:327:26 | self | calls.rb:325:1:329:3 | C1 |
 | calls.rb:327:14:327:26 | "C1#instance" | calls.rb:325:1:329:3 | C1 |
 | calls.rb:327:15:327:25 | C1#instance | calls.rb:325:1:329:3 | C1 |
-| calls.rb:331:1:335:3 | C2 | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:331:12:331:13 | C1 | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:331:1:335:3 | C2 | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:331:12:331:13 | C1 | calls.rb:1:1:651:24 | calls.rb |
 | calls.rb:332:5:334:7 | instance | calls.rb:331:1:335:3 | C2 |
 | calls.rb:333:9:333:26 | call to puts | calls.rb:331:1:335:3 | C2 |
 | calls.rb:333:9:333:26 | self | calls.rb:331:1:335:3 | C2 |
 | calls.rb:333:14:333:26 | "C2#instance" | calls.rb:331:1:335:3 | C2 |
 | calls.rb:333:15:333:25 | C2#instance | calls.rb:331:1:335:3 | C2 |
-| calls.rb:337:1:341:3 | C3 | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:337:12:337:13 | C2 | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:337:1:341:3 | C3 | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:337:12:337:13 | C2 | calls.rb:1:1:651:24 | calls.rb |
 | calls.rb:338:5:340:7 | instance | calls.rb:337:1:341:3 | C3 |
 | calls.rb:339:9:339:26 | call to puts | calls.rb:337:1:341:3 | C3 |
 | calls.rb:339:9:339:26 | self | calls.rb:337:1:341:3 | C3 |
 | calls.rb:339:14:339:26 | "C3#instance" | calls.rb:337:1:341:3 | C3 |
 | calls.rb:339:15:339:25 | C3#instance | calls.rb:337:1:341:3 | C3 |
-| calls.rb:343:1:359:3 | pattern_dispatch | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:343:22:343:22 | x | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:343:22:343:22 | x | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:344:5:352:7 | case ... | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:344:10:344:10 | x | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:345:5:346:18 | when ... | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:345:10:345:11 | C3 | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:345:12:346:18 | then ... | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:346:9:346:9 | x | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:346:9:346:18 | call to instance | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:347:5:348:18 | when ... | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:347:10:347:11 | C2 | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:347:12:348:18 | then ... | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:348:9:348:9 | x | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:348:9:348:18 | call to instance | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:349:5:350:18 | when ... | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:349:10:349:11 | C1 | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:349:12:350:18 | then ... | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:350:9:350:9 | x | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:350:9:350:18 | call to instance | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:351:5:351:8 | else ... | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:354:5:358:7 | case ... | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:354:10:354:10 | x | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:355:9:355:29 | in ... then ... | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:355:12:355:13 | C3 | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:355:15:355:29 | then ... | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:355:20:355:20 | x | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:355:20:355:29 | call to instance | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:356:9:356:36 | in ... then ... | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:356:12:356:13 | C2 | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:356:12:356:19 | ... => ... | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:356:18:356:19 | c2 | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:356:21:356:36 | then ... | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:356:26:356:27 | c2 | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:356:26:356:36 | call to instance | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:357:9:357:36 | in ... then ... | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:357:12:357:13 | C1 | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:357:12:357:19 | ... => ... | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:357:18:357:19 | c1 | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:357:21:357:36 | then ... | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:357:26:357:27 | c1 | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:357:26:357:36 | call to instance | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:361:1:361:2 | c1 | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:361:1:361:11 | ... = ... | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:361:6:361:7 | C1 | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:361:6:361:11 | call to new | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:362:1:362:2 | c1 | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:362:1:362:11 | call to instance | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:363:1:363:25 | call to pattern_dispatch | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:363:1:363:25 | self | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:363:18:363:25 | ( ... ) | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:363:19:363:20 | C1 | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:363:19:363:24 | call to new | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:364:1:364:25 | call to pattern_dispatch | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:364:1:364:25 | self | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:364:18:364:25 | ( ... ) | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:364:19:364:20 | C2 | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:364:19:364:24 | call to new | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:365:1:365:25 | call to pattern_dispatch | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:365:1:365:25 | self | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:365:18:365:25 | ( ... ) | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:365:19:365:20 | C3 | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:365:19:365:24 | call to new | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:367:1:371:3 | add_singleton | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:367:19:367:19 | x | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:367:19:367:19 | x | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:368:5:370:7 | instance | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:368:9:368:9 | x | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:369:9:369:28 | call to puts | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:369:9:369:28 | self | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:369:14:369:28 | "instance_on x" | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:369:15:369:27 | instance_on x | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:373:1:373:2 | c3 | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:373:1:373:11 | ... = ... | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:373:6:373:7 | C1 | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:373:6:373:11 | call to new | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:374:1:374:16 | call to add_singleton | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:374:1:374:16 | self | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:374:15:374:16 | c3 | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:375:1:375:2 | c3 | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:375:1:375:11 | call to instance | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:377:1:405:3 | SingletonOverride1 | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:343:1:359:3 | pattern_dispatch | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:343:22:343:22 | x | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:343:22:343:22 | x | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:344:5:352:7 | case ... | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:344:10:344:10 | x | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:345:5:346:18 | when ... | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:345:10:345:11 | C3 | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:345:12:346:18 | then ... | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:346:9:346:9 | x | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:346:9:346:18 | call to instance | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:347:5:348:18 | when ... | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:347:10:347:11 | C2 | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:347:12:348:18 | then ... | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:348:9:348:9 | x | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:348:9:348:18 | call to instance | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:349:5:350:18 | when ... | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:349:10:349:11 | C1 | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:349:12:350:18 | then ... | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:350:9:350:9 | x | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:350:9:350:18 | call to instance | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:351:5:351:8 | else ... | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:354:5:358:7 | case ... | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:354:10:354:10 | x | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:355:9:355:29 | in ... then ... | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:355:12:355:13 | C3 | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:355:15:355:29 | then ... | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:355:20:355:20 | x | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:355:20:355:29 | call to instance | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:356:9:356:36 | in ... then ... | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:356:12:356:13 | C2 | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:356:12:356:19 | ... => ... | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:356:18:356:19 | c2 | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:356:21:356:36 | then ... | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:356:26:356:27 | c2 | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:356:26:356:36 | call to instance | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:357:9:357:36 | in ... then ... | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:357:12:357:13 | C1 | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:357:12:357:19 | ... => ... | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:357:18:357:19 | c1 | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:357:21:357:36 | then ... | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:357:26:357:27 | c1 | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:357:26:357:36 | call to instance | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:361:1:361:2 | c1 | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:361:1:361:11 | ... = ... | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:361:6:361:7 | C1 | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:361:6:361:11 | call to new | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:362:1:362:2 | c1 | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:362:1:362:11 | call to instance | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:363:1:363:25 | call to pattern_dispatch | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:363:1:363:25 | self | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:363:18:363:25 | ( ... ) | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:363:19:363:20 | C1 | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:363:19:363:24 | call to new | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:364:1:364:25 | call to pattern_dispatch | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:364:1:364:25 | self | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:364:18:364:25 | ( ... ) | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:364:19:364:20 | C2 | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:364:19:364:24 | call to new | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:365:1:365:25 | call to pattern_dispatch | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:365:1:365:25 | self | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:365:18:365:25 | ( ... ) | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:365:19:365:20 | C3 | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:365:19:365:24 | call to new | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:367:1:371:3 | add_singleton | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:367:19:367:19 | x | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:367:19:367:19 | x | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:368:5:370:7 | instance | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:368:9:368:9 | x | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:369:9:369:28 | call to puts | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:369:9:369:28 | self | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:369:14:369:28 | "instance_on x" | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:369:15:369:27 | instance_on x | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:373:1:373:2 | c3 | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:373:1:373:11 | ... = ... | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:373:6:373:7 | C1 | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:373:6:373:11 | call to new | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:374:1:374:16 | call to add_singleton | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:374:1:374:16 | self | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:374:15:374:16 | c3 | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:375:1:375:2 | c3 | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:375:1:375:11 | call to instance | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:377:1:405:3 | SingletonOverride1 | calls.rb:1:1:651:24 | calls.rb |
 | calls.rb:378:5:390:7 | class << ... | calls.rb:377:1:405:3 | SingletonOverride1 |
 | calls.rb:378:14:378:17 | self | calls.rb:377:1:405:3 | SingletonOverride1 |
 | calls.rb:379:9:381:11 | singleton1 | calls.rb:378:5:390:7 | class << ... |
@@ -1166,16 +1177,16 @@ enclosingModule
 | calls.rb:403:9:403:43 | self | calls.rb:377:1:405:3 | SingletonOverride1 |
 | calls.rb:403:14:403:43 | "SingletonOverride1#instance1" | calls.rb:377:1:405:3 | SingletonOverride1 |
 | calls.rb:403:15:403:42 | SingletonOverride1#instance1 | calls.rb:377:1:405:3 | SingletonOverride1 |
-| calls.rb:407:1:407:18 | SingletonOverride1 | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:407:1:407:29 | call to singleton1 | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:408:1:408:18 | SingletonOverride1 | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:408:1:408:29 | call to singleton2 | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:409:1:409:18 | SingletonOverride1 | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:409:1:409:34 | call to call_singleton1 | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:410:1:410:18 | SingletonOverride1 | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:410:1:410:34 | call to call_singleton2 | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:412:1:426:3 | SingletonOverride2 | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:412:28:412:45 | SingletonOverride1 | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:407:1:407:18 | SingletonOverride1 | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:407:1:407:29 | call to singleton1 | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:408:1:408:18 | SingletonOverride1 | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:408:1:408:29 | call to singleton2 | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:409:1:409:18 | SingletonOverride1 | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:409:1:409:34 | call to call_singleton1 | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:410:1:410:18 | SingletonOverride1 | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:410:1:410:34 | call to call_singleton2 | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:412:1:426:3 | SingletonOverride2 | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:412:28:412:45 | SingletonOverride1 | calls.rb:1:1:651:24 | calls.rb |
 | calls.rb:413:5:417:7 | class << ... | calls.rb:412:1:426:3 | SingletonOverride2 |
 | calls.rb:413:14:413:17 | self | calls.rb:412:1:426:3 | SingletonOverride2 |
 | calls.rb:414:9:416:11 | singleton1 | calls.rb:413:5:417:7 | class << ... |
@@ -1194,15 +1205,15 @@ enclosingModule
 | calls.rb:424:9:424:43 | self | calls.rb:412:1:426:3 | SingletonOverride2 |
 | calls.rb:424:14:424:43 | "SingletonOverride2#instance1" | calls.rb:412:1:426:3 | SingletonOverride2 |
 | calls.rb:424:15:424:42 | SingletonOverride2#instance1 | calls.rb:412:1:426:3 | SingletonOverride2 |
-| calls.rb:428:1:428:18 | SingletonOverride2 | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:428:1:428:29 | call to singleton1 | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:429:1:429:18 | SingletonOverride2 | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:429:1:429:29 | call to singleton2 | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:430:1:430:18 | SingletonOverride2 | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:430:1:430:34 | call to call_singleton1 | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:431:1:431:18 | SingletonOverride2 | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:431:1:431:34 | call to call_singleton2 | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:433:1:461:3 | ConditionalInstanceMethods | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:428:1:428:18 | SingletonOverride2 | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:428:1:428:29 | call to singleton1 | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:429:1:429:18 | SingletonOverride2 | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:429:1:429:29 | call to singleton2 | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:430:1:430:18 | SingletonOverride2 | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:430:1:430:34 | call to call_singleton1 | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:431:1:431:18 | SingletonOverride2 | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:431:1:431:34 | call to call_singleton2 | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:433:1:461:3 | ConditionalInstanceMethods | calls.rb:1:1:651:24 | calls.rb |
 | calls.rb:434:5:438:7 | if ... | calls.rb:433:1:461:3 | ConditionalInstanceMethods |
 | calls.rb:434:8:434:13 | call to rand | calls.rb:433:1:461:3 | ConditionalInstanceMethods |
 | calls.rb:434:8:434:13 | self | calls.rb:433:1:461:3 | ConditionalInstanceMethods |
@@ -1247,91 +1258,91 @@ enclosingModule
 | calls.rb:457:17:457:40 | self | calls.rb:433:1:461:3 | ConditionalInstanceMethods |
 | calls.rb:457:22:457:40 | "AnonymousClass#m5" | calls.rb:433:1:461:3 | ConditionalInstanceMethods |
 | calls.rb:457:23:457:39 | AnonymousClass#m5 | calls.rb:433:1:461:3 | ConditionalInstanceMethods |
-| calls.rb:463:1:463:26 | ConditionalInstanceMethods | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:463:1:463:30 | call to new | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:463:1:463:33 | call to m1 | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:464:1:464:26 | ConditionalInstanceMethods | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:464:1:464:30 | call to new | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:464:1:464:33 | call to m3 | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:465:1:465:26 | ConditionalInstanceMethods | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:465:1:465:30 | call to new | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:465:1:465:33 | call to m2 | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:466:1:466:26 | ConditionalInstanceMethods | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:466:1:466:30 | call to new | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:466:1:466:33 | call to m3 | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:467:1:467:26 | ConditionalInstanceMethods | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:467:1:467:30 | call to new | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:467:1:467:33 | call to m4 | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:468:1:468:26 | ConditionalInstanceMethods | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:468:1:468:30 | call to new | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:468:1:468:33 | call to m5 | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:470:1:470:23 | EsotericInstanceMethods | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:470:1:488:3 | ... = ... | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:470:27:470:31 | Class | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:470:27:488:3 | call to new | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:470:37:488:3 | do ... end | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:471:5:471:11 | Array | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:471:5:471:11 | [...] | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:471:5:471:11 | call to [] | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:471:5:475:7 | call to each | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:471:6:471:6 | 0 | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:471:8:471:8 | 1 | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:471:10:471:10 | 2 | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:471:18:475:7 | do ... end | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:472:9:474:11 | foo | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:473:13:473:22 | call to puts | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:473:13:473:22 | self | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:473:18:473:22 | "foo" | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:473:19:473:21 | foo | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:477:5:477:9 | Class | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:477:5:481:7 | call to new | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:477:5:481:11 | call to new | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:477:5:481:15 | call to bar | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:477:15:481:7 | do ... end | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:478:9:480:11 | bar | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:479:13:479:22 | call to puts | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:479:13:479:22 | self | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:479:18:479:22 | "bar" | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:479:19:479:21 | bar | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:483:5:483:11 | Array | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:483:5:483:11 | [...] | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:483:5:483:11 | call to [] | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:483:5:487:7 | call to each | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:483:6:483:6 | 0 | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:483:8:483:8 | 1 | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:483:10:483:10 | 2 | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:483:18:487:7 | do ... end | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:483:22:483:22 | i | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:483:22:483:22 | i | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:484:9:486:11 | call to define_method | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:484:9:486:11 | self | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:484:23:484:32 | "baz_#{...}" | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:484:24:484:27 | baz_ | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:484:28:484:31 | #{...} | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:484:30:484:30 | i | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:484:35:486:11 | do ... end | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:485:13:485:27 | call to puts | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:485:13:485:27 | self | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:485:18:485:27 | "baz_#{...}" | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:485:19:485:22 | baz_ | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:485:23:485:26 | #{...} | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:485:25:485:25 | i | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:490:1:490:23 | EsotericInstanceMethods | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:490:1:490:27 | call to new | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:490:1:490:31 | call to foo | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:491:1:491:23 | EsotericInstanceMethods | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:491:1:491:27 | call to new | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:491:1:491:31 | call to bar | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:492:1:492:23 | EsotericInstanceMethods | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:492:1:492:27 | call to new | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:492:1:492:33 | call to baz_0 | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:493:1:493:23 | EsotericInstanceMethods | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:493:1:493:27 | call to new | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:493:1:493:33 | call to baz_1 | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:494:1:494:23 | EsotericInstanceMethods | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:494:1:494:27 | call to new | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:494:1:494:33 | call to baz_2 | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:496:1:502:3 | ExtendSingletonMethod | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:463:1:463:26 | ConditionalInstanceMethods | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:463:1:463:30 | call to new | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:463:1:463:33 | call to m1 | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:464:1:464:26 | ConditionalInstanceMethods | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:464:1:464:30 | call to new | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:464:1:464:33 | call to m3 | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:465:1:465:26 | ConditionalInstanceMethods | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:465:1:465:30 | call to new | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:465:1:465:33 | call to m2 | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:466:1:466:26 | ConditionalInstanceMethods | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:466:1:466:30 | call to new | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:466:1:466:33 | call to m3 | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:467:1:467:26 | ConditionalInstanceMethods | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:467:1:467:30 | call to new | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:467:1:467:33 | call to m4 | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:468:1:468:26 | ConditionalInstanceMethods | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:468:1:468:30 | call to new | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:468:1:468:33 | call to m5 | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:470:1:470:23 | EsotericInstanceMethods | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:470:1:488:3 | ... = ... | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:470:27:470:31 | Class | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:470:27:488:3 | call to new | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:470:37:488:3 | do ... end | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:471:5:471:11 | Array | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:471:5:471:11 | [...] | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:471:5:471:11 | call to [] | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:471:5:475:7 | call to each | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:471:6:471:6 | 0 | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:471:8:471:8 | 1 | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:471:10:471:10 | 2 | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:471:18:475:7 | do ... end | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:472:9:474:11 | foo | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:473:13:473:22 | call to puts | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:473:13:473:22 | self | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:473:18:473:22 | "foo" | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:473:19:473:21 | foo | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:477:5:477:9 | Class | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:477:5:481:7 | call to new | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:477:5:481:11 | call to new | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:477:5:481:15 | call to bar | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:477:15:481:7 | do ... end | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:478:9:480:11 | bar | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:479:13:479:22 | call to puts | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:479:13:479:22 | self | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:479:18:479:22 | "bar" | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:479:19:479:21 | bar | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:483:5:483:11 | Array | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:483:5:483:11 | [...] | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:483:5:483:11 | call to [] | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:483:5:487:7 | call to each | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:483:6:483:6 | 0 | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:483:8:483:8 | 1 | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:483:10:483:10 | 2 | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:483:18:487:7 | do ... end | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:483:22:483:22 | i | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:483:22:483:22 | i | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:484:9:486:11 | call to define_method | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:484:9:486:11 | self | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:484:23:484:32 | "baz_#{...}" | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:484:24:484:27 | baz_ | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:484:28:484:31 | #{...} | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:484:30:484:30 | i | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:484:35:486:11 | do ... end | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:485:13:485:27 | call to puts | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:485:13:485:27 | self | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:485:18:485:27 | "baz_#{...}" | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:485:19:485:22 | baz_ | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:485:23:485:26 | #{...} | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:485:25:485:25 | i | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:490:1:490:23 | EsotericInstanceMethods | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:490:1:490:27 | call to new | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:490:1:490:31 | call to foo | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:491:1:491:23 | EsotericInstanceMethods | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:491:1:491:27 | call to new | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:491:1:491:31 | call to bar | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:492:1:492:23 | EsotericInstanceMethods | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:492:1:492:27 | call to new | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:492:1:492:33 | call to baz_0 | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:493:1:493:23 | EsotericInstanceMethods | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:493:1:493:27 | call to new | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:493:1:493:33 | call to baz_1 | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:494:1:494:23 | EsotericInstanceMethods | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:494:1:494:27 | call to new | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:494:1:494:33 | call to baz_2 | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:496:1:502:3 | ExtendSingletonMethod | calls.rb:1:1:651:24 | calls.rb |
 | calls.rb:497:5:499:7 | singleton | calls.rb:496:1:502:3 | ExtendSingletonMethod |
 | calls.rb:498:9:498:46 | call to puts | calls.rb:496:1:502:3 | ExtendSingletonMethod |
 | calls.rb:498:9:498:46 | self | calls.rb:496:1:502:3 | ExtendSingletonMethod |
@@ -1340,32 +1351,32 @@ enclosingModule
 | calls.rb:501:5:501:15 | call to extend | calls.rb:496:1:502:3 | ExtendSingletonMethod |
 | calls.rb:501:5:501:15 | self | calls.rb:496:1:502:3 | ExtendSingletonMethod |
 | calls.rb:501:12:501:15 | self | calls.rb:496:1:502:3 | ExtendSingletonMethod |
-| calls.rb:504:1:504:21 | ExtendSingletonMethod | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:504:1:504:31 | call to singleton | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:506:1:508:3 | ExtendSingletonMethod2 | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:504:1:504:21 | ExtendSingletonMethod | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:504:1:504:31 | call to singleton | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:506:1:508:3 | ExtendSingletonMethod2 | calls.rb:1:1:651:24 | calls.rb |
 | calls.rb:507:5:507:32 | call to extend | calls.rb:506:1:508:3 | ExtendSingletonMethod2 |
 | calls.rb:507:5:507:32 | self | calls.rb:506:1:508:3 | ExtendSingletonMethod2 |
 | calls.rb:507:12:507:32 | ExtendSingletonMethod | calls.rb:506:1:508:3 | ExtendSingletonMethod2 |
-| calls.rb:510:1:510:22 | ExtendSingletonMethod2 | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:510:1:510:32 | call to singleton | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:512:1:513:3 | ExtendSingletonMethod3 | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:515:1:515:22 | ExtendSingletonMethod3 | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:515:1:515:51 | call to extend | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:515:31:515:51 | ExtendSingletonMethod | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:517:1:517:22 | ExtendSingletonMethod3 | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:517:1:517:32 | call to singleton | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:519:1:519:3 | foo | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:519:1:519:13 | ... = ... | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:519:7:519:13 | "hello" | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:519:8:519:12 | hello | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:520:1:520:3 | foo | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:520:1:520:13 | call to singleton | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:521:1:521:3 | foo | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:521:1:521:32 | call to extend | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:521:12:521:32 | ExtendSingletonMethod | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:523:1:523:3 | foo | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:523:1:523:13 | call to singleton | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:525:1:529:3 | ProtectedMethodInModule | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:510:1:510:22 | ExtendSingletonMethod2 | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:510:1:510:32 | call to singleton | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:512:1:513:3 | ExtendSingletonMethod3 | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:515:1:515:22 | ExtendSingletonMethod3 | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:515:1:515:51 | call to extend | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:515:31:515:51 | ExtendSingletonMethod | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:517:1:517:22 | ExtendSingletonMethod3 | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:517:1:517:32 | call to singleton | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:519:1:519:3 | foo | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:519:1:519:13 | ... = ... | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:519:7:519:13 | "hello" | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:519:8:519:12 | hello | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:520:1:520:3 | foo | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:520:1:520:13 | call to singleton | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:521:1:521:3 | foo | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:521:1:521:32 | call to extend | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:521:12:521:32 | ExtendSingletonMethod | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:523:1:523:3 | foo | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:523:1:523:13 | call to singleton | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:525:1:529:3 | ProtectedMethodInModule | calls.rb:1:1:651:24 | calls.rb |
 | calls.rb:526:5:528:7 | call to protected | calls.rb:525:1:529:3 | ProtectedMethodInModule |
 | calls.rb:526:5:528:7 | self | calls.rb:525:1:529:3 | ProtectedMethodInModule |
 | calls.rb:526:15:528:7 | foo | calls.rb:525:1:529:3 | ProtectedMethodInModule |
@@ -1373,7 +1384,7 @@ enclosingModule
 | calls.rb:527:9:527:42 | self | calls.rb:525:1:529:3 | ProtectedMethodInModule |
 | calls.rb:527:14:527:42 | "ProtectedMethodInModule#foo" | calls.rb:525:1:529:3 | ProtectedMethodInModule |
 | calls.rb:527:15:527:41 | ProtectedMethodInModule#foo | calls.rb:525:1:529:3 | ProtectedMethodInModule |
-| calls.rb:531:1:544:3 | ProtectedMethods | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:531:1:544:3 | ProtectedMethods | calls.rb:1:1:651:24 | calls.rb |
 | calls.rb:532:5:532:35 | call to include | calls.rb:531:1:544:3 | ProtectedMethods |
 | calls.rb:532:5:532:35 | self | calls.rb:531:1:544:3 | ProtectedMethods |
 | calls.rb:532:13:532:35 | ProtectedMethodInModule | calls.rb:531:1:544:3 | ProtectedMethods |
@@ -1395,63 +1406,63 @@ enclosingModule
 | calls.rb:542:9:542:24 | ProtectedMethods | calls.rb:531:1:544:3 | ProtectedMethods |
 | calls.rb:542:9:542:28 | call to new | calls.rb:531:1:544:3 | ProtectedMethods |
 | calls.rb:542:9:542:32 | call to bar | calls.rb:531:1:544:3 | ProtectedMethods |
-| calls.rb:546:1:546:16 | ProtectedMethods | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:546:1:546:20 | call to new | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:546:1:546:24 | call to foo | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:547:1:547:16 | ProtectedMethods | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:547:1:547:20 | call to new | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:547:1:547:24 | call to bar | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:548:1:548:16 | ProtectedMethods | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:548:1:548:20 | call to new | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:548:1:548:24 | call to baz | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:550:1:555:3 | ProtectedMethodsSub | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:550:29:550:44 | ProtectedMethods | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:546:1:546:16 | ProtectedMethods | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:546:1:546:20 | call to new | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:546:1:546:24 | call to foo | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:547:1:547:16 | ProtectedMethods | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:547:1:547:20 | call to new | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:547:1:547:24 | call to bar | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:548:1:548:16 | ProtectedMethods | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:548:1:548:20 | call to new | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:548:1:548:24 | call to baz | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:550:1:555:3 | ProtectedMethodsSub | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:550:29:550:44 | ProtectedMethods | calls.rb:1:1:651:24 | calls.rb |
 | calls.rb:551:5:554:7 | baz | calls.rb:550:1:555:3 | ProtectedMethodsSub |
 | calls.rb:552:9:552:11 | call to foo | calls.rb:550:1:555:3 | ProtectedMethodsSub |
 | calls.rb:552:9:552:11 | self | calls.rb:550:1:555:3 | ProtectedMethodsSub |
 | calls.rb:553:9:553:27 | ProtectedMethodsSub | calls.rb:550:1:555:3 | ProtectedMethodsSub |
 | calls.rb:553:9:553:31 | call to new | calls.rb:550:1:555:3 | ProtectedMethodsSub |
 | calls.rb:553:9:553:35 | call to foo | calls.rb:550:1:555:3 | ProtectedMethodsSub |
-| calls.rb:557:1:557:19 | ProtectedMethodsSub | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:557:1:557:23 | call to new | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:557:1:557:27 | call to foo | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:558:1:558:19 | ProtectedMethodsSub | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:558:1:558:23 | call to new | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:558:1:558:27 | call to bar | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:559:1:559:19 | ProtectedMethodsSub | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:559:1:559:23 | call to new | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:559:1:559:27 | call to baz | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:561:1:561:7 | Array | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:561:1:561:7 | [...] | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:561:1:561:7 | call to [] | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:561:1:561:26 | call to each | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:561:2:561:2 | C | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:561:2:561:6 | call to new | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:561:14:561:26 | { ... } | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:561:17:561:17 | c | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:561:17:561:17 | c | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:561:20:561:20 | c | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:561:20:561:24 | call to baz | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:562:1:562:13 | Array | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:562:1:562:13 | [...] | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:562:1:562:13 | call to [] | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:562:1:562:39 | call to each | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:562:2:562:4 | "a" | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:562:3:562:3 | a | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:562:6:562:8 | "b" | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:562:7:562:7 | b | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:562:10:562:12 | "c" | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:562:11:562:11 | c | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:562:20:562:39 | { ... } | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:562:23:562:23 | s | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:562:23:562:23 | s | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:562:26:562:26 | s | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:562:26:562:37 | call to capitalize | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:564:1:567:3 | SingletonUpCall_Base | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:557:1:557:19 | ProtectedMethodsSub | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:557:1:557:23 | call to new | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:557:1:557:27 | call to foo | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:558:1:558:19 | ProtectedMethodsSub | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:558:1:558:23 | call to new | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:558:1:558:27 | call to bar | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:559:1:559:19 | ProtectedMethodsSub | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:559:1:559:23 | call to new | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:559:1:559:27 | call to baz | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:561:1:561:7 | Array | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:561:1:561:7 | [...] | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:561:1:561:7 | call to [] | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:561:1:561:26 | call to each | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:561:2:561:2 | C | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:561:2:561:6 | call to new | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:561:14:561:26 | { ... } | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:561:17:561:17 | c | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:561:17:561:17 | c | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:561:20:561:20 | c | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:561:20:561:24 | call to baz | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:562:1:562:13 | Array | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:562:1:562:13 | [...] | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:562:1:562:13 | call to [] | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:562:1:562:39 | call to each | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:562:2:562:4 | "a" | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:562:3:562:3 | a | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:562:6:562:8 | "b" | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:562:7:562:7 | b | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:562:10:562:12 | "c" | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:562:11:562:11 | c | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:562:20:562:39 | { ... } | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:562:23:562:23 | s | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:562:23:562:23 | s | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:562:26:562:26 | s | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:562:26:562:37 | call to capitalize | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:564:1:567:3 | SingletonUpCall_Base | calls.rb:1:1:651:24 | calls.rb |
 | calls.rb:565:5:566:7 | singleton | calls.rb:564:1:567:3 | SingletonUpCall_Base |
 | calls.rb:565:9:565:12 | self | calls.rb:564:1:567:3 | SingletonUpCall_Base |
-| calls.rb:568:1:575:3 | SingletonUpCall_Sub | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:568:29:568:48 | SingletonUpCall_Base | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:568:1:575:3 | SingletonUpCall_Sub | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:568:29:568:48 | SingletonUpCall_Base | calls.rb:1:1:651:24 | calls.rb |
 | calls.rb:569:5:569:13 | call to singleton | calls.rb:568:1:575:3 | SingletonUpCall_Sub |
 | calls.rb:569:5:569:13 | self | calls.rb:568:1:575:3 | SingletonUpCall_Sub |
 | calls.rb:570:5:570:14 | call to singleton2 | calls.rb:568:1:575:3 | SingletonUpCall_Sub |
@@ -1462,13 +1473,13 @@ enclosingModule
 | calls.rb:572:9:572:17 | self | calls.rb:568:1:575:3 | SingletonUpCall_Sub |
 | calls.rb:573:9:573:18 | call to singleton2 | calls.rb:568:1:575:3 | SingletonUpCall_Sub |
 | calls.rb:573:9:573:18 | self | calls.rb:568:1:575:3 | SingletonUpCall_Sub |
-| calls.rb:576:1:581:3 | SingletonUpCall_SubSub | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:576:32:576:50 | SingletonUpCall_Sub | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:576:1:581:3 | SingletonUpCall_SubSub | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:576:32:576:50 | SingletonUpCall_Sub | calls.rb:1:1:651:24 | calls.rb |
 | calls.rb:577:5:578:7 | singleton2 | calls.rb:576:1:581:3 | SingletonUpCall_SubSub |
 | calls.rb:577:9:577:12 | self | calls.rb:576:1:581:3 | SingletonUpCall_SubSub |
 | calls.rb:580:5:580:14 | call to mid_method | calls.rb:576:1:581:3 | SingletonUpCall_SubSub |
 | calls.rb:580:5:580:14 | self | calls.rb:576:1:581:3 | SingletonUpCall_SubSub |
-| calls.rb:583:1:594:3 | SingletonA | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:583:1:594:3 | SingletonA | calls.rb:1:1:651:24 | calls.rb |
 | calls.rb:584:5:585:7 | singleton1 | calls.rb:583:1:594:3 | SingletonA |
 | calls.rb:584:9:584:12 | self | calls.rb:583:1:594:3 | SingletonA |
 | calls.rb:587:5:589:7 | call_singleton1 | calls.rb:583:1:594:3 | SingletonA |
@@ -1479,39 +1490,60 @@ enclosingModule
 | calls.rb:591:9:591:12 | self | calls.rb:583:1:594:3 | SingletonA |
 | calls.rb:592:9:592:23 | call to call_singleton1 | calls.rb:583:1:594:3 | SingletonA |
 | calls.rb:592:9:592:23 | self | calls.rb:583:1:594:3 | SingletonA |
-| calls.rb:596:1:603:3 | SingletonB | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:596:20:596:29 | SingletonA | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:596:1:603:3 | SingletonB | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:596:20:596:29 | SingletonA | calls.rb:1:1:651:24 | calls.rb |
 | calls.rb:597:5:598:7 | singleton1 | calls.rb:596:1:603:3 | SingletonB |
 | calls.rb:597:9:597:12 | self | calls.rb:596:1:603:3 | SingletonB |
 | calls.rb:600:5:602:7 | call_singleton1 | calls.rb:596:1:603:3 | SingletonB |
 | calls.rb:600:9:600:12 | self | calls.rb:596:1:603:3 | SingletonB |
 | calls.rb:601:9:601:18 | call to singleton1 | calls.rb:596:1:603:3 | SingletonB |
 | calls.rb:601:9:601:18 | self | calls.rb:596:1:603:3 | SingletonB |
-| calls.rb:605:1:612:3 | SingletonC | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:605:20:605:29 | SingletonA | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:605:1:612:3 | SingletonC | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:605:20:605:29 | SingletonA | calls.rb:1:1:651:24 | calls.rb |
 | calls.rb:606:5:607:7 | singleton1 | calls.rb:605:1:612:3 | SingletonC |
 | calls.rb:606:9:606:12 | self | calls.rb:605:1:612:3 | SingletonC |
 | calls.rb:609:5:611:7 | call_singleton1 | calls.rb:605:1:612:3 | SingletonC |
 | calls.rb:609:9:609:12 | self | calls.rb:605:1:612:3 | SingletonC |
 | calls.rb:610:9:610:18 | call to singleton1 | calls.rb:605:1:612:3 | SingletonC |
 | calls.rb:610:9:610:18 | self | calls.rb:605:1:612:3 | SingletonC |
-| calls.rb:614:1:614:10 | SingletonA | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:614:1:614:31 | call to call_call_singleton1 | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:615:1:615:10 | SingletonB | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:615:1:615:31 | call to call_call_singleton1 | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:616:1:616:10 | SingletonC | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:616:1:616:31 | call to call_call_singleton1 | calls.rb:1:1:632:1 | calls.rb |
-| calls.rb:618:1:624:3 | Included | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:614:1:614:10 | SingletonA | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:614:1:614:31 | call to call_call_singleton1 | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:615:1:615:10 | SingletonB | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:615:1:615:31 | call to call_call_singleton1 | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:616:1:616:10 | SingletonC | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:616:1:616:31 | call to call_call_singleton1 | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:618:1:624:3 | Included | calls.rb:1:1:651:24 | calls.rb |
 | calls.rb:619:5:621:7 | foo | calls.rb:618:1:624:3 | Included |
 | calls.rb:620:9:620:12 | self | calls.rb:618:1:624:3 | Included |
 | calls.rb:620:9:620:16 | call to bar | calls.rb:618:1:624:3 | Included |
 | calls.rb:622:5:623:7 | bar | calls.rb:618:1:624:3 | Included |
-| calls.rb:626:1:631:3 | IncludesIncluded | calls.rb:1:1:632:1 | calls.rb |
+| calls.rb:626:1:631:3 | IncludesIncluded | calls.rb:1:1:651:24 | calls.rb |
 | calls.rb:627:5:627:20 | call to include | calls.rb:626:1:631:3 | IncludesIncluded |
 | calls.rb:627:5:627:20 | self | calls.rb:626:1:631:3 | IncludesIncluded |
 | calls.rb:627:13:627:20 | Included | calls.rb:626:1:631:3 | IncludesIncluded |
 | calls.rb:628:5:630:7 | bar | calls.rb:626:1:631:3 | IncludesIncluded |
 | calls.rb:629:9:629:13 | call to super | calls.rb:626:1:631:3 | IncludesIncluded |
+| calls.rb:633:1:637:3 | CustomNew1 | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:634:5:636:7 | new | calls.rb:633:1:637:3 | CustomNew1 |
+| calls.rb:634:9:634:12 | self | calls.rb:633:1:637:3 | CustomNew1 |
+| calls.rb:635:9:635:10 | C1 | calls.rb:633:1:637:3 | CustomNew1 |
+| calls.rb:635:9:635:14 | call to new | calls.rb:633:1:637:3 | CustomNew1 |
+| calls.rb:639:1:639:10 | CustomNew1 | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:639:1:639:14 | call to new | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:639:1:639:23 | call to instance | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:641:1:649:3 | CustomNew2 | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:642:5:644:7 | new | calls.rb:641:1:649:3 | CustomNew2 |
+| calls.rb:642:9:642:12 | self | calls.rb:641:1:649:3 | CustomNew2 |
+| calls.rb:643:9:643:12 | self | calls.rb:641:1:649:3 | CustomNew2 |
+| calls.rb:643:9:643:21 | call to allocate | calls.rb:641:1:649:3 | CustomNew2 |
+| calls.rb:646:5:648:7 | instance | calls.rb:641:1:649:3 | CustomNew2 |
+| calls.rb:647:9:647:34 | call to puts | calls.rb:641:1:649:3 | CustomNew2 |
+| calls.rb:647:9:647:34 | self | calls.rb:641:1:649:3 | CustomNew2 |
+| calls.rb:647:14:647:34 | "CustomNew2#instance" | calls.rb:641:1:649:3 | CustomNew2 |
+| calls.rb:647:15:647:33 | CustomNew2#instance | calls.rb:641:1:649:3 | CustomNew2 |
+| calls.rb:651:1:651:10 | CustomNew2 | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:651:1:651:14 | call to new | calls.rb:1:1:651:24 | calls.rb |
+| calls.rb:651:1:651:23 | call to instance | calls.rb:1:1:651:24 | calls.rb |
 | hello.rb:1:1:8:3 | EnglishWords | hello.rb:1:1:22:3 | hello.rb |
 | hello.rb:2:5:4:7 | hello | hello.rb:1:1:8:3 | EnglishWords |
 | hello.rb:3:9:3:22 | return | hello.rb:1:1:8:3 | EnglishWords |
diff --git a/ruby/ql/test/library-tests/modules/superclasses.expected b/ruby/ql/test/library-tests/modules/superclasses.expected
index 58df295f95f..14121b1da31 100644
--- a/ruby/ql/test/library-tests/modules/superclasses.expected
+++ b/ruby/ql/test/library-tests/modules/superclasses.expected
@@ -136,6 +136,12 @@ calls.rb:
 #  626| IncludesIncluded
 #-----|  -> Object
 
+#  633| CustomNew1
+#-----|  -> Object
+
+#  641| CustomNew2
+#-----|  -> Object
+
 hello.rb:
 #    1| EnglishWords
 

From accf4ca364103e2a5e81b3e58c24416d8127bf02 Mon Sep 17 00:00:00 2001
From: Tom Hvitved <hvitved@github.com>
Date: Fri, 16 Dec 2022 09:23:36 +0100
Subject: [PATCH 1409/1420] Ruby: Recognize custom `self.new` methods that
 return `self.allocate`

---
 .../ruby/dataflow/internal/DataFlowDispatch.qll       | 11 +++++++----
 ruby/ql/test/library-tests/modules/callgraph.expected |  2 +-
 2 files changed, 8 insertions(+), 5 deletions(-)

diff --git a/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowDispatch.qll b/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowDispatch.qll
index 963313f54cd..55d5af68516 100644
--- a/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowDispatch.qll
+++ b/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowDispatch.qll
@@ -473,9 +473,12 @@ private DataFlow::LocalSourceNode trackModuleAccess(Module m) {
 }
 
 pragma[nomagic]
-private predicate hasUserDefinedSelf(Module m) {
-  // cannot use `lookupSingletonMethod` due to negative recursion
-  singletonMethodOnModule(_, "new", m.getSuperClass*()) // not `getAnAncestor` because singleton methods cannot be included
+private predicate hasUserDefinedNew(Module m) {
+  exists(DataFlow::MethodNode method |
+    // not `getAnAncestor` because singleton methods cannot be included
+    singletonMethodOnModule(method.asCallableAstNode(), "new", m.getSuperClass*()) and
+    not method.getSelfParameter().getAMethodCall("allocate").flowsTo(method.getAReturningNode())
+  )
 }
 
 /** Holds if `n` is an instance of type `tp`. */
@@ -536,7 +539,7 @@ private predicate isInstance(DataFlow::Node n, Module tp, boolean exact) {
     flowsToMethodCallReceiver(call, sourceNode, "new") and
     n.asExpr() = call and
     // `tp` should not have a user-defined `self.new` method
-    not hasUserDefinedSelf(tp)
+    not hasUserDefinedNew(tp)
   |
     // `C.new`
     sourceNode = trackModuleAccess(tp) and
diff --git a/ruby/ql/test/library-tests/modules/callgraph.expected b/ruby/ql/test/library-tests/modules/callgraph.expected
index dd89fbb57c9..19eea285289 100644
--- a/ruby/ql/test/library-tests/modules/callgraph.expected
+++ b/ruby/ql/test/library-tests/modules/callgraph.expected
@@ -244,6 +244,7 @@ getTarget
 | calls.rb:647:9:647:34 | call to puts | calls.rb:102:5:102:30 | puts |
 | calls.rb:651:1:651:14 | call to new | calls.rb:117:5:117:16 | new |
 | calls.rb:651:1:651:14 | call to new | calls.rb:642:5:644:7 | new |
+| calls.rb:651:1:651:23 | call to instance | calls.rb:646:5:648:7 | instance |
 | hello.rb:12:5:12:24 | call to include | calls.rb:108:5:110:7 | include |
 | hello.rb:14:16:14:20 | call to hello | hello.rb:2:5:4:7 | hello |
 | hello.rb:20:16:20:20 | call to super | hello.rb:13:5:15:7 | message |
@@ -369,7 +370,6 @@ unresolvedCall
 | calls.rb:562:1:562:39 | call to each |
 | calls.rb:570:5:570:14 | call to singleton2 |
 | calls.rb:643:9:643:21 | call to allocate |
-| calls.rb:651:1:651:23 | call to instance |
 | hello.rb:20:16:20:26 | ... + ... |
 | hello.rb:20:16:20:34 | ... + ... |
 | hello.rb:20:16:20:40 | ... + ... |

From bfc257147c25bd6fa1939355bbcff25b75973404 Mon Sep 17 00:00:00 2001
From: Tom Hvitved <hvitved@github.com>
Date: Fri, 16 Dec 2022 11:15:28 +0100
Subject: [PATCH 1410/1420] Ruby: Fix bug in call-sensitivity logic for
 `initialize` calls

---
 .../dataflow/internal/DataFlowDispatch.qll    |  2 +-
 .../call-sensitivity.expected                 | 27 ++++++++++++++++++-
 .../call-sensitivity/call_sensitivity.rb      |  8 +++---
 3 files changed, 31 insertions(+), 6 deletions(-)

diff --git a/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowDispatch.qll b/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowDispatch.qll
index 963313f54cd..b77aab6d43c 100644
--- a/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowDispatch.qll
+++ b/ruby/ql/lib/codeql/ruby/dataflow/internal/DataFlowDispatch.qll
@@ -1175,7 +1175,7 @@ DataFlowCallable viableImplInCallContext(DataFlowCall call, DataFlowCall ctx) {
       exists(Module m, string name |
         mayBenefitFromCallContextInitialize(ctx.asCall(), pragma[only_bind_into](call0), _, _,
           pragma[only_bind_into](m), pragma[only_bind_into](name)) and
-        res = getTargetInstance(call0, name) and
+        res = getInitializeTarget(call0) and
         res = lookupMethod(m, name)
         or
         exists(boolean exact |
diff --git a/ruby/ql/test/library-tests/dataflow/call-sensitivity/call-sensitivity.expected b/ruby/ql/test/library-tests/dataflow/call-sensitivity/call-sensitivity.expected
index 345b73e9dff..46491d9b980 100644
--- a/ruby/ql/test/library-tests/dataflow/call-sensitivity/call-sensitivity.expected
+++ b/ruby/ql/test/library-tests/dataflow/call-sensitivity/call-sensitivity.expected
@@ -1,5 +1,4 @@
 failures
-| call_sensitivity.rb:97:12:97:66 | # $ hasValueFlow=26 $ hasValueFlow=30 $ hasValueFlow=32 | Missing result:hasValueFlow=26 |
 edges
 | call_sensitivity.rb:9:7:9:13 | call to taint :  | call_sensitivity.rb:9:6:9:14 | ( ... ) |
 | call_sensitivity.rb:9:7:9:13 | call to taint :  | call_sensitivity.rb:9:6:9:14 | ( ... ) |
@@ -97,8 +96,14 @@ edges
 | call_sensitivity.rb:96:18:96:18 | x :  | call_sensitivity.rb:97:10:97:10 | x |
 | call_sensitivity.rb:96:18:96:18 | x :  | call_sensitivity.rb:97:10:97:10 | x |
 | call_sensitivity.rb:96:18:96:18 | x :  | call_sensitivity.rb:97:10:97:10 | x |
+| call_sensitivity.rb:96:18:96:18 | x :  | call_sensitivity.rb:97:10:97:10 | x |
+| call_sensitivity.rb:96:18:96:18 | x :  | call_sensitivity.rb:97:10:97:10 | x |
 | call_sensitivity.rb:96:18:96:18 | x :  | call_sensitivity.rb:98:13:98:13 | x :  |
 | call_sensitivity.rb:96:18:96:18 | x :  | call_sensitivity.rb:98:13:98:13 | x :  |
+| call_sensitivity.rb:96:18:96:18 | x :  | call_sensitivity.rb:98:13:98:13 | x :  |
+| call_sensitivity.rb:96:18:96:18 | x :  | call_sensitivity.rb:98:13:98:13 | x :  |
+| call_sensitivity.rb:98:13:98:13 | x :  | call_sensitivity.rb:50:15:50:15 | x :  |
+| call_sensitivity.rb:98:13:98:13 | x :  | call_sensitivity.rb:50:15:50:15 | x :  |
 | call_sensitivity.rb:98:13:98:13 | x :  | call_sensitivity.rb:50:15:50:15 | x :  |
 | call_sensitivity.rb:98:13:98:13 | x :  | call_sensitivity.rb:50:15:50:15 | x :  |
 | call_sensitivity.rb:102:11:102:20 | ( ... ) :  | call_sensitivity.rb:96:18:96:18 | x :  |
@@ -125,6 +130,12 @@ edges
 | call_sensitivity.rb:112:26:112:33 | call to taint :  | call_sensitivity.rb:92:35:92:35 | x :  |
 | call_sensitivity.rb:149:14:149:22 | call to taint :  | call_sensitivity.rb:74:18:74:18 | y :  |
 | call_sensitivity.rb:149:14:149:22 | call to taint :  | call_sensitivity.rb:74:18:74:18 | y :  |
+| call_sensitivity.rb:156:19:156:19 | x :  | call_sensitivity.rb:157:12:157:12 | x :  |
+| call_sensitivity.rb:156:19:156:19 | x :  | call_sensitivity.rb:157:12:157:12 | x :  |
+| call_sensitivity.rb:157:12:157:12 | x :  | call_sensitivity.rb:96:18:96:18 | x :  |
+| call_sensitivity.rb:157:12:157:12 | x :  | call_sensitivity.rb:96:18:96:18 | x :  |
+| call_sensitivity.rb:160:11:160:19 | call to taint :  | call_sensitivity.rb:156:19:156:19 | x :  |
+| call_sensitivity.rb:160:11:160:19 | call to taint :  | call_sensitivity.rb:156:19:156:19 | x :  |
 | call_sensitivity.rb:169:11:169:20 | ( ... ) :  | call_sensitivity.rb:96:18:96:18 | x :  |
 | call_sensitivity.rb:169:11:169:20 | ( ... ) :  | call_sensitivity.rb:96:18:96:18 | x :  |
 | call_sensitivity.rb:169:12:169:19 | call to taint :  | call_sensitivity.rb:169:11:169:20 | ( ... ) :  |
@@ -240,10 +251,14 @@ nodes
 | call_sensitivity.rb:96:18:96:18 | x :  | semmle.label | x :  |
 | call_sensitivity.rb:96:18:96:18 | x :  | semmle.label | x :  |
 | call_sensitivity.rb:96:18:96:18 | x :  | semmle.label | x :  |
+| call_sensitivity.rb:96:18:96:18 | x :  | semmle.label | x :  |
+| call_sensitivity.rb:96:18:96:18 | x :  | semmle.label | x :  |
 | call_sensitivity.rb:97:10:97:10 | x | semmle.label | x |
 | call_sensitivity.rb:97:10:97:10 | x | semmle.label | x |
 | call_sensitivity.rb:98:13:98:13 | x :  | semmle.label | x :  |
 | call_sensitivity.rb:98:13:98:13 | x :  | semmle.label | x :  |
+| call_sensitivity.rb:98:13:98:13 | x :  | semmle.label | x :  |
+| call_sensitivity.rb:98:13:98:13 | x :  | semmle.label | x :  |
 | call_sensitivity.rb:102:11:102:20 | ( ... ) :  | semmle.label | ( ... ) :  |
 | call_sensitivity.rb:102:11:102:20 | ( ... ) :  | semmle.label | ( ... ) :  |
 | call_sensitivity.rb:102:12:102:19 | call to taint :  | semmle.label | call to taint :  |
@@ -268,6 +283,12 @@ nodes
 | call_sensitivity.rb:112:26:112:33 | call to taint :  | semmle.label | call to taint :  |
 | call_sensitivity.rb:149:14:149:22 | call to taint :  | semmle.label | call to taint :  |
 | call_sensitivity.rb:149:14:149:22 | call to taint :  | semmle.label | call to taint :  |
+| call_sensitivity.rb:156:19:156:19 | x :  | semmle.label | x :  |
+| call_sensitivity.rb:156:19:156:19 | x :  | semmle.label | x :  |
+| call_sensitivity.rb:157:12:157:12 | x :  | semmle.label | x :  |
+| call_sensitivity.rb:157:12:157:12 | x :  | semmle.label | x :  |
+| call_sensitivity.rb:160:11:160:19 | call to taint :  | semmle.label | call to taint :  |
+| call_sensitivity.rb:160:11:160:19 | call to taint :  | semmle.label | call to taint :  |
 | call_sensitivity.rb:169:11:169:20 | ( ... ) :  | semmle.label | ( ... ) :  |
 | call_sensitivity.rb:169:11:169:20 | ( ... ) :  | semmle.label | ( ... ) :  |
 | call_sensitivity.rb:169:12:169:19 | call to taint :  | semmle.label | call to taint :  |
@@ -286,11 +307,13 @@ subpaths
 | call_sensitivity.rb:51:10:51:10 | x | call_sensitivity.rb:106:16:106:24 | call to taint :  | call_sensitivity.rb:51:10:51:10 | x | $@ | call_sensitivity.rb:106:16:106:24 | call to taint :  | call to taint :  |
 | call_sensitivity.rb:51:10:51:10 | x | call_sensitivity.rb:107:14:107:22 | call to taint :  | call_sensitivity.rb:51:10:51:10 | x | $@ | call_sensitivity.rb:107:14:107:22 | call to taint :  | call to taint :  |
 | call_sensitivity.rb:51:10:51:10 | x | call_sensitivity.rb:149:14:149:22 | call to taint :  | call_sensitivity.rb:51:10:51:10 | x | $@ | call_sensitivity.rb:149:14:149:22 | call to taint :  | call to taint :  |
+| call_sensitivity.rb:51:10:51:10 | x | call_sensitivity.rb:160:11:160:19 | call to taint :  | call_sensitivity.rb:51:10:51:10 | x | $@ | call_sensitivity.rb:160:11:160:19 | call to taint :  | call to taint :  |
 | call_sensitivity.rb:71:10:71:10 | x | call_sensitivity.rb:109:21:109:28 | call to taint :  | call_sensitivity.rb:71:10:71:10 | x | $@ | call_sensitivity.rb:109:21:109:28 | call to taint :  | call to taint :  |
 | call_sensitivity.rb:71:10:71:10 | x | call_sensitivity.rb:110:26:110:33 | call to taint :  | call_sensitivity.rb:71:10:71:10 | x | $@ | call_sensitivity.rb:110:26:110:33 | call to taint :  | call to taint :  |
 | call_sensitivity.rb:71:10:71:10 | x | call_sensitivity.rb:111:24:111:32 | call to taint :  | call_sensitivity.rb:71:10:71:10 | x | $@ | call_sensitivity.rb:111:24:111:32 | call to taint :  | call to taint :  |
 | call_sensitivity.rb:71:10:71:10 | x | call_sensitivity.rb:112:26:112:33 | call to taint :  | call_sensitivity.rb:71:10:71:10 | x | $@ | call_sensitivity.rb:112:26:112:33 | call to taint :  | call to taint :  |
 | call_sensitivity.rb:97:10:97:10 | x | call_sensitivity.rb:102:12:102:19 | call to taint :  | call_sensitivity.rb:97:10:97:10 | x | $@ | call_sensitivity.rb:102:12:102:19 | call to taint :  | call to taint :  |
+| call_sensitivity.rb:97:10:97:10 | x | call_sensitivity.rb:160:11:160:19 | call to taint :  | call_sensitivity.rb:97:10:97:10 | x | $@ | call_sensitivity.rb:160:11:160:19 | call to taint :  | call to taint :  |
 | call_sensitivity.rb:97:10:97:10 | x | call_sensitivity.rb:169:12:169:19 | call to taint :  | call_sensitivity.rb:97:10:97:10 | x | $@ | call_sensitivity.rb:169:12:169:19 | call to taint :  | call to taint :  |
 mayBenefitFromCallContext
 | call_sensitivity.rb:51:5:51:10 | call to sink | call_sensitivity.rb:50:3:52:5 | method1 |
@@ -351,3 +374,5 @@ viableImplInCallContext
 | call_sensitivity.rb:128:5:128:25 | call to method3 | call_sensitivity.rb:148:1:148:25 | call to call_method3 | call_sensitivity.rb:62:3:64:5 | method3 |
 | call_sensitivity.rb:132:5:132:28 | call to singleton_method2 | call_sensitivity.rb:152:1:152:34 | call to call_singleton_method2 | call_sensitivity.rb:80:3:82:5 | singleton_method2 |
 | call_sensitivity.rb:136:5:136:35 | call to singleton_method3 | call_sensitivity.rb:154:1:154:34 | call to call_singleton_method3 | call_sensitivity.rb:88:3:90:5 | singleton_method3 |
+| call_sensitivity.rb:157:3:157:12 | call to new | call_sensitivity.rb:160:1:160:20 | call to create | call_sensitivity.rb:96:3:99:5 | initialize |
+| call_sensitivity.rb:157:3:157:12 | call to new | call_sensitivity.rb:161:1:161:20 | call to create | call_sensitivity.rb:139:3:141:5 | initialize |
diff --git a/ruby/ql/test/library-tests/dataflow/call-sensitivity/call_sensitivity.rb b/ruby/ql/test/library-tests/dataflow/call-sensitivity/call_sensitivity.rb
index a17e5225177..f96b61050e6 100644
--- a/ruby/ql/test/library-tests/dataflow/call-sensitivity/call_sensitivity.rb
+++ b/ruby/ql/test/library-tests/dataflow/call-sensitivity/call_sensitivity.rb
@@ -48,7 +48,7 @@ apply_lambda(MY_LAMBDA2, taint(9))
 
 class A
   def method1 x
-    sink x # $ hasValueFlow=10 $ hasValueFlow=11 $ hasValueFlow=12 $ hasValueFlow=13 $ hasValueFlow=26 $ hasValueFlow=30 $ SPURIOUS: hasValueFlow=27
+    sink x # $ hasValueFlow=10 $ hasValueFlow=11 $ hasValueFlow=12 $ hasValueFlow=13 $ hasValueFlow=26 $ hasValueFlow=28 $ hasValueFlow=30 $ SPURIOUS: hasValueFlow=27
   end
 
   def method2 x
@@ -94,7 +94,7 @@ class A
   end
 
   def initialize(x)
-    sink x # $ hasValueFlow=26 $ hasValueFlow=30 $ hasValueFlow=32
+    sink x # $ hasValueFlow=28 $ hasValueFlow=30 $ hasValueFlow=32
     method1 x
   end
 end
@@ -157,8 +157,8 @@ def create (type, x)
   type.new x
 end
 
-create(A, taint(26))
-create(B, taint(27))
+create(A, taint(28))
+create(B, taint(29))
 
 class C < A
   def method1 x

From 904a4bd48b6648e236a23416d2304cb0e53c24a2 Mon Sep 17 00:00:00 2001
From: Jean Helie <jhelie@github.com>
Date: Fri, 16 Dec 2022 13:52:58 +0100
Subject: [PATCH 1411/1420] fix script updating endpoint_large_scale test data

---
 .../test/endpoint_large_scale/README.md       |  9 ++++
 .../test/update_endpoint_test_files.py        | 45 ++++++++++---------
 2 files changed, 33 insertions(+), 21 deletions(-)
 create mode 100644 javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/README.md

diff --git a/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/README.md b/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/README.md
new file mode 100644
index 00000000000..769dfa6fd27
--- /dev/null
+++ b/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/README.md
@@ -0,0 +1,9 @@
+# autogenerated folder
+
+This folder contains test data for the ATM endpoint CodeQL tests that has been autogenerated from the standard JS CodeQL libraries.
+
+It is helpful, but not required, to periodically update this test data to incorporate new test data introduced in the standard JS CodeQL libraries.
+
+To update this test data, run `python /path/to/codeql-lib/ql/javascript/test/update_endpoint_test_files.py`.
+
+For more information view the source code of [`update_endpoint_test_files.py`](../../update_endpoint_test_files.py).
diff --git a/javascript/ql/experimental/adaptivethreatmodeling/test/update_endpoint_test_files.py b/javascript/ql/experimental/adaptivethreatmodeling/test/update_endpoint_test_files.py
index 9dc18530bee..131e4f8f93f 100755
--- a/javascript/ql/experimental/adaptivethreatmodeling/test/update_endpoint_test_files.py
+++ b/javascript/ql/experimental/adaptivethreatmodeling/test/update_endpoint_test_files.py
@@ -2,10 +2,17 @@
 
 # This script updates the JavaScript test data used by the endpoint CodeQL tests.
 
-import glob
+import git
 import logging
-import os
 import shutil
+from pathlib import Path
+
+# Get relevant paths
+script_path = Path(__file__).absolute()
+git_repo = git.Repo(__file__, search_parent_directories=True)
+git_root = Path(git_repo.git.rev_parse('--show-toplevel'))
+autogenerated_dest_path = script_path.parent.joinpath('endpoint_large_scale',
+                                                      'autogenerated')
 
 # File extensions that should be copied to the endpoint tests. This should include source code files
 # e.g. .js, but not the tests themselves e.g. .expected, .ql, .qlref, etc.
@@ -15,35 +22,31 @@ file_extensions_to_copy = ['.js', '.ts']
 # path of that test relative to a checkout of github/codeql.
 test_root_relative_paths = {
     'NosqlAndSqlInjection': 'javascript/ql/test/query-tests/Security/CWE-089',
-    'TaintedPath': 'javascript/ql/test/query-tests/Security/CWE-022/TaintedPath',
+    'TaintedPath':
+    'javascript/ql/test/query-tests/Security/CWE-022/TaintedPath',
     'Xss': 'javascript/ql/test/query-tests/Security/CWE-079',
+    'XssThroughDom': 'javascript/ql/test/query-tests/Security/CWE-116'
 }
-# The path of the endpoint tests, relative to a checkout of github/codeql
-test_path = 'javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale'
 
 logging.basicConfig(level=logging.INFO)
 
-codeql_lib_path = os.path.dirname(os.path.dirname(os.path.dirname(os.path.dirname(os.path.dirname(__file__)))))
-
-autogenerated_dest_path = os.path.join(codeql_lib_path, test_path, 'autogenerated')
-if os.path.exists(autogenerated_dest_path):
+if autogenerated_dest_path.exists():
     logging.info(f'Deleting existing autogenerated test files...')
     shutil.rmtree(autogenerated_dest_path)
 
 for key, rel_path in test_root_relative_paths.items():
-    test_files_path = os.path.join(codeql_lib_path, rel_path)
+    test_files_path = git_root.joinpath(rel_path)
     logging.info(f'Copying test files for {key}...')
-
-    for file in glob.glob(test_files_path + '/**', recursive=True):
-        # Ignore .testproj directories
-        if '.testproj' in file:
+    counter = 0
+    for file in Path(test_files_path).glob('**/*'):
+        if file.is_dir() or '.test_proj' in str(file):
             continue
-
-        file_extension = os.path.splitext(file)[1]
-        if file_extension in file_extensions_to_copy:
-            dest_path = os.path.normpath(
-                os.path.join(autogenerated_dest_path, key, os.path.relpath(file, test_files_path))
-            )
+        if file.suffix in file_extensions_to_copy:
+            autogenerated_dest_path.joinpath(key, )
+            dest_path = autogenerated_dest_path.joinpath(
+                key, file.relative_to(test_files_path))
             logging.debug(f'Copying {file} to {dest_path}')
-            os.makedirs(os.path.dirname(dest_path), exist_ok=True)
+            dest_path.parent.mkdir(parents=True, exist_ok=True)
             shutil.copyfile(file, dest_path)
+            counter += 1
+    logging.info(f'copied {counter} files')

From cd0220b248d1a949c8e3512ebb5e62cc97b4ccc6 Mon Sep 17 00:00:00 2001
From: Jean Helie <jhelie@github.com>
Date: Fri, 16 Dec 2022 13:58:52 +0100
Subject: [PATCH 1412/1420] update autogenerated data for endpoint_large_scale

---
 .../NosqlAndSqlInjection/untyped/graphql.js   | 121 +++++++
 .../untyped/json-schema-validator.js          |  27 ++
 .../NosqlAndSqlInjection/untyped/ldap.js      |  71 ++++
 .../untyped/marsdb-flow-to.js                 |   2 +-
 .../NosqlAndSqlInjection/untyped/marsdb.js    |   2 +-
 .../NosqlAndSqlInjection/untyped/mysql.js     |  22 ++
 .../untyped/pg-promise.js                     |   6 +-
 .../autogenerated/README.md                   |   7 -
 .../autogenerated/TaintedPath/TaintedPath.js  |  21 +-
 .../autogenerated/TaintedPath/express.js      |   9 +
 .../autogenerated/TaintedPath/handlebars.js   |  52 +++
 .../TaintedPath/normalizedPaths.js            |  33 +-
 .../TaintedPath/other-fs-libraries.js         |  20 ++
 .../autogenerated/TaintedPath/prettier.js     |  14 +
 .../TaintedPath/tainted-access-paths.js       |  16 +
 .../TaintedPath/tainted-require.js            |   9 +
 .../Xss/DomBasedXss/addEventListener.js       |  13 +
 .../Xss/DomBasedXss/classnames.js             |   2 +
 .../Xss/DomBasedXss/clipboard.ts              | 101 ++++++
 .../Xss/DomBasedXss/custom-element.js         |   7 +
 .../autogenerated/Xss/DomBasedXss/dates.js    |  43 +++
 .../Xss/DomBasedXss/dragAndDrop.ts            |  89 +++++
 .../autogenerated/Xss/DomBasedXss/externs.js  |  10 +
 .../autogenerated/Xss/DomBasedXss/jquery.js   |  18 +
 .../Xss/DomBasedXss/trusted-types.js          |  10 +
 .../autogenerated/Xss/DomBasedXss/tst.js      |  61 +++-
 .../Xss/DomBasedXss/xmlRequest.js             |  12 +-
 .../autogenerated/Xss/ExceptionXss/ajv.js     |  13 +
 .../Xss/ReflectedXss/ReflectedXss.js          |   9 +-
 .../Xss/ReflectedXss/live-server.js           |  18 +
 .../autogenerated/Xss/ReflectedXss/tst2.js    |  66 ++++
 .../autogenerated/Xss/ReflectedXss/tst3.js    |  13 +
 .../UnsafeHtmlConstruction/jquery-plugin.js   |   6 +
 .../UnsafeHtmlConstruction/lib/src/MyNode.ts  |   4 +
 .../Xss/UnsafeHtmlConstruction/lib2/index.ts  |   4 +
 .../UnsafeHtmlConstruction/lib2/src/MyNode.ts |   4 +
 .../Xss/UnsafeHtmlConstruction/main.js        |  42 +++
 .../unsafe-jquery-plugin.js                   |  10 +
 .../Xss/XssThroughDom/xss-through-dom.js      |  50 +++
 .../XssThroughDom/BadTagFilter/tst.js         |  28 ++
 .../XssThroughDom/DoubleEscaping/tst.js       |  96 +++++
 .../UnsafeHtmlExpansion.js                    |  39 +++
 .../tst-multi-character-sanitization.js       | 155 ++++++++
 .../IncompleteSanitization/tst.js             | 330 ++++++++++++++++++
 44 files changed, 1667 insertions(+), 18 deletions(-)
 create mode 100644 javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/NosqlAndSqlInjection/untyped/graphql.js
 create mode 100644 javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/NosqlAndSqlInjection/untyped/ldap.js
 create mode 100644 javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/NosqlAndSqlInjection/untyped/mysql.js
 delete mode 100644 javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/README.md
 create mode 100644 javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/TaintedPath/express.js
 create mode 100644 javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/TaintedPath/handlebars.js
 create mode 100644 javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/TaintedPath/prettier.js
 create mode 100644 javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/Xss/DomBasedXss/clipboard.ts
 create mode 100644 javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/Xss/DomBasedXss/custom-element.js
 create mode 100644 javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/Xss/DomBasedXss/dragAndDrop.ts
 create mode 100644 javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/Xss/DomBasedXss/trusted-types.js
 create mode 100644 javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/Xss/ReflectedXss/live-server.js
 create mode 100644 javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/Xss/ReflectedXss/tst3.js
 create mode 100644 javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/Xss/UnsafeHtmlConstruction/lib/src/MyNode.ts
 create mode 100644 javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/Xss/UnsafeHtmlConstruction/lib2/index.ts
 create mode 100644 javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/Xss/UnsafeHtmlConstruction/lib2/src/MyNode.ts
 create mode 100644 javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/XssThroughDom/BadTagFilter/tst.js
 create mode 100644 javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/XssThroughDom/DoubleEscaping/tst.js
 create mode 100644 javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js
 create mode 100644 javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js
 create mode 100644 javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/XssThroughDom/IncompleteSanitization/tst.js

diff --git a/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/NosqlAndSqlInjection/untyped/graphql.js b/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/NosqlAndSqlInjection/untyped/graphql.js
new file mode 100644
index 00000000000..723348daf57
--- /dev/null
+++ b/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/NosqlAndSqlInjection/untyped/graphql.js
@@ -0,0 +1,121 @@
+var express = require('express');
+var app = express();
+
+import { Octokit } from "@octokit/core";
+const kit = new Octokit();
+
+app.get('/post/:id', function(req, res) {
+    const id = req.params.id;
+    // NOT OK
+    const response = kit.graphql(`
+      query {
+        repository(owner: "github", name: "${id}") {
+          object(expression: "master:foo") {
+            ... on Blob {
+              text
+            }
+          }
+        }
+      }
+    `);
+});
+
+import { graphql, withCustomRequest } from "@octokit/graphql";
+
+app.get('/user/:id/', function(req, res) {
+    const id = req.params.id;
+    const response = graphql(`foo ${id}`); // NOT OK
+
+    const myGraphql = withCustomRequest(request);
+    const response = myGraphql(`foo ${id}`); // NOT OK
+
+    const withDefaults = graphql.defaults({});
+    withDefaults(`foo ${id}`); // NOT OK
+});
+
+const { request } = require("@octokit/request");
+
+app.get('/article/:id/', async function(req, res) {
+    const id = req.params.id;
+    const result = await request("POST /graphql", {
+      headers: {
+        authorization: "token 0000000000000000000000000000000000000001",
+      },
+      query: `foo ${id}`, // NOT OK
+    });
+
+    const withDefaults = request.defaults({});
+    withDefaults("POST /graphql", { query: `foo ${id}` }); // NOT OK
+});
+
+import { Octokit as Core } from "@octokit/rest";
+const kit2 = new Core();
+
+app.get('/event/:id/', async function(req, res) {
+    const id = req.params.id;
+    const result = await kit2.graphql(`foo ${id}`); // NOT OK
+
+    const result2 = await kit2.request("POST /graphql", { query: `foo ${id}` }); // NOT OK
+});
+
+import { graphql as nativeGraphql, buildSchema }  from 'graphql';
+var schema = buildSchema(`
+  type Query {
+    hello: String
+  }
+`);
+var root = {
+  hello: () => {
+    return 'Hello world!';
+  },
+};
+
+app.get('/thing/:id', async function(req, res) {
+  const id = req.query.id;
+  const result = await nativeGraphql(schema, "{ foo" + id + " }", root); // NOT OK
+  
+  fetch("https://my-grpahql-server.com/graphql", {
+    method: "POST",
+    headers: {
+      "Content-Type": "application/json"
+    },
+    body: JSON.stringify({
+      // NOT OK
+      query: `{
+        thing {
+          name
+          url
+          ${id}
+        }
+      }`
+    })
+  })
+
+  fetch("https://my-grpahql-server.com/graphql", {
+    method: "POST",
+    headers: {
+      "Content-Type": "application/json"
+    },
+    body: JSON.stringify({
+      // OK
+      query: `{
+        thing {
+          name
+          url
+          $id
+        }
+      }`,
+      variables: {
+        id: id
+      }
+    })
+  })
+});
+
+const github = require('@actions/github');
+app.get('/event/:id/', async function(req, res) {
+    const kit = github.getOctokit("foo")
+
+    const id = req.params.id;
+    const result = await kit.graphql(`foo ${id}`); // NOT OK
+});
diff --git a/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js b/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js
index 93f09a51adb..a3bfcfd4a30 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js
+++ b/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js
@@ -35,3 +35,30 @@ app.post('/documents/find', (req, res) => {
         doc.find(query); // NOT OK
     });
 });
+
+import Joi from 'joi';
+
+const joiSchema = Joi.object({
+    date: Joi.string().required(),
+    title: Joi.string().required()
+}).with('date', 'title');
+
+app.post('/documents/insert', (req, res) => {
+    MongoClient.connect('mongodb://localhost:27017/test', async (err, db) => {
+        let doc = db.collection('doc');
+
+        const query = JSON.parse(req.query.data);
+        const validate = joiSchema.validate(query);
+        if (!validate.error) {
+            doc.find(query); // OK
+        } else {
+            doc.find(query); // NOT OK
+        }
+        try {
+            await joiSchema.validateAsync(query);
+            doc.find(query); // OK - but still flagged [INCONSISTENCY]
+        } catch (e) {
+            doc.find(query); // NOT OK
+        }
+    });
+});
\ No newline at end of file
diff --git a/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/NosqlAndSqlInjection/untyped/ldap.js b/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/NosqlAndSqlInjection/untyped/ldap.js
new file mode 100644
index 00000000000..9502cace21a
--- /dev/null
+++ b/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/NosqlAndSqlInjection/untyped/ldap.js
@@ -0,0 +1,71 @@
+const http = require("http");
+const url = require("url");
+const ldap = require("ldapjs");
+const client = ldap.createClient({
+  url: "ldap://127.0.0.1:1389",
+});
+
+// https://github.com/vesse/node-ldapauth-fork/commit/3feea43e243698bcaeffa904a7324f4d96df60e4
+const sanitizeInput = function (input) {
+  return input
+    .replace(/\*/g, "\\2a")
+    .replace(/\(/g, "\\28")
+    .replace(/\)/g, "\\29")
+    .replace(/\\/g, "\\5c")
+    .replace(/\0/g, "\\00")
+    .replace(/\//g, "\\2f");
+};
+
+const server = http.createServer((req, res) => {
+  let q = url.parse(req.url, true);
+
+  let username = q.query.username;
+
+  var opts1 = {
+    filter: `(|(name=${username})(username=${username}))`,
+  };
+
+  client.search("o=example", opts1, function (err, res) {}); // NOT OK
+
+  client.search(
+    "o=example",
+    { filter: `(|(name=${username})(username=${username}))` }, // NOT OK
+    function (err, res) {}
+  );
+
+  // GOOD
+  client.search(
+    "o=example",
+    { // OK
+      filter: `(|(name=${sanitizeInput(username)})(username=${sanitizeInput(
+        username
+      )}))`,
+    },
+    function (err, res) {}
+  );
+
+  // GOOD (https://github.com/ldapjs/node-ldapjs/issues/181)
+  let f = new OrFilter({
+    filters: [
+      new EqualityFilter({
+        attribute: "name",
+        value: username,
+      }),
+      new EqualityFilter({
+        attribute: "username",
+        value: username,
+      }),
+    ],
+  });
+
+  client.search("o=example", { filter: f }, function (err, res) {});
+
+  const parsedFilter = ldap.parseFilter(
+    `(|(name=${username})(username=${username}))`
+  );
+  client.search("o=example", { filter: parsedFilter }, function (err, res) {}); // NOT OK
+
+  const dn = ldap.parseDN(`cn=${username}`, function (err, dn) {}); // NOT OK
+});
+
+server.listen(389, () => {});
diff --git a/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js b/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js
index 0c9e49be8e1..9b6d9b2fb88 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js
+++ b/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js
@@ -11,5 +11,5 @@ app.post("/documents/find", (req, res) => {
   query.title = req.body.title;
 
   // NOT OK: query is tainted by user-provided object value
-  db.myDoc.find(query);
+  db.myDoc.find(query, (err, data) => {});
 });
diff --git a/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/NosqlAndSqlInjection/untyped/marsdb.js b/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/NosqlAndSqlInjection/untyped/marsdb.js
index dc85bc142b5..0ebbb3d8a71 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/NosqlAndSqlInjection/untyped/marsdb.js
+++ b/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/NosqlAndSqlInjection/untyped/marsdb.js
@@ -13,5 +13,5 @@ app.post("/documents/find", (req, res) => {
   query.title = req.body.title;
 
   // NOT OK: query is tainted by user-provided object value
-  doc.find(query);
+  doc.find(query, (err, data) => {});
 });
diff --git a/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/NosqlAndSqlInjection/untyped/mysql.js b/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/NosqlAndSqlInjection/untyped/mysql.js
new file mode 100644
index 00000000000..de328fb49fa
--- /dev/null
+++ b/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/NosqlAndSqlInjection/untyped/mysql.js
@@ -0,0 +1,22 @@
+const app = require("express")();
+const mysql = require('mysql');
+const pool = mysql.createPool(getConfig());
+
+app.get("search", function handler(req, res) {
+    let temp = req.params.value;
+    pool.getConnection(function(err, connection) {
+        connection.query({
+            sql: 'SELECT * FROM `books` WHERE `author` = ?', // OK
+            values: [temp]
+        }, function(error, results, fields) {});
+    });
+    pool.getConnection(function(err, connection) {
+        connection.query({
+            sql: 'SELECT * FROM `books` WHERE `author` = ' + temp, // NOT OK
+        }, function(error, results, fields) {});
+    });
+    pool.getConnection(function(err, connection) {
+        connection.query('SELECT * FROM `books` WHERE `author` = ' + temp, // NOT OK
+            function(error, results, fields) {});
+    });
+});
diff --git a/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js b/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js
index 07d92a753ec..d3f190dd198 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js
+++ b/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js
@@ -5,7 +5,7 @@ require('express')().get('/foo', (req, res) => {
 
   var query = "SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY='"
              + req.params.category + "' ORDER BY PRICE";
-  
+
   db.any(query); // NOT OK
   db.many(query); // NOT OK
   db.manyOrNone(query); // NOT OK
@@ -17,7 +17,7 @@ require('express')().get('/foo', (req, res) => {
   db.oneOrNone(query); // NOT OK
   db.query(query); // NOT OK
   db.result(query); // NOT OK
-  
+
   db.one({
     text: query // NOT OK
   });
@@ -59,7 +59,7 @@ require('express')().get('/foo', (req, res) => {
   db.task(t => {
       return t.one(query); // NOT OK
   });
-  db.task(
+  db.taskIf(
     { cnd: t => t.one(query) }, // NOT OK
     t => t.one(query) // NOT OK
   );
diff --git a/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/README.md b/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/README.md
deleted file mode 100644
index f854c482ba3..00000000000
--- a/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/README.md
+++ /dev/null
@@ -1,7 +0,0 @@
-# autogenerated
-
-This folder contains test data for the ATM endpoint CodeQL tests that has been autogenerated from the standard JS CodeQL libraries.
-
-It is helpful, but not required, to periodically update this test data to incorporate new test data introduced in the standard JS CodeQL libraries.
-To update this test data, run `python /path/to/codeql-lib/ql/javascript/test/update_endpoint_test_files.py --codeql-lib-path /path/to/codeql-lib`.
-For more information, run `python /path/to/codeql-lib/ql/javascript/test/update_endpoint_test_files.py --help` or view the source code of [`update_endpoint_test_files.py`](../../update_endpoint_test_files.py).
diff --git a/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/TaintedPath/TaintedPath.js b/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/TaintedPath/TaintedPath.js
index 55e75a53757..f98cc9be554 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/TaintedPath/TaintedPath.js
+++ b/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/TaintedPath/TaintedPath.js
@@ -193,4 +193,23 @@ var server = http.createServer(function(req, res) {
 
   res.write(fs.readFileSync("prefix" + path.replace(/^(\.\.[\/\\])+/, ''))); // NOT OK - not normalized
   res.write(fs.readFileSync(pathModule.normalize(path).replace(/^(\.\.[\/\\])+/, ''))); // NOT OK (can be absolute)
-});
\ No newline at end of file
+});
+
+import normalizeUrl from 'normalize-url';
+
+var server = http.createServer(function(req, res) {
+  // tests for a few more uri-libraries
+  const qs = require("qs");
+  res.write(fs.readFileSync(qs.parse(req.url).foo)); // NOT OK
+  res.write(fs.readFileSync(qs.parse(normalizeUrl(req.url)).foo)); // NOT OK
+  const parseqs = require("parseqs");
+  res.write(fs.readFileSync(parseqs.decode(req.url).foo)); // NOT OK
+});
+
+const cp = require("child_process");
+var server = http.createServer(function(req, res) {
+  let path = url.parse(req.url, true).query.path;
+  cp.execSync("foobar", {cwd: path}); // NOT OK
+  cp.execFileSync("foobar", ["args"], {cwd: path}); // NOT OK
+  cp.execFileSync("foobar", {cwd: path}); // NOT OK
+});
diff --git a/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/TaintedPath/express.js b/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/TaintedPath/express.js
new file mode 100644
index 00000000000..dad320e3aba
--- /dev/null
+++ b/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/TaintedPath/express.js
@@ -0,0 +1,9 @@
+var express = require("express"),
+  fileUpload = require("express-fileupload");
+
+let app = express();
+app.use(fileUpload());
+
+app.get("/some/path", function (req, res) {
+  req.files.foo.mv(req.query.bar);
+});
diff --git a/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/TaintedPath/handlebars.js b/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/TaintedPath/handlebars.js
new file mode 100644
index 00000000000..512b851592a
--- /dev/null
+++ b/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/TaintedPath/handlebars.js
@@ -0,0 +1,52 @@
+const express = require('express');
+const hb = require("handlebars");
+const fs = require("fs");
+
+const app = express();
+
+const data = {};
+
+function init() {
+    hb.registerHelper("catFile", function catFile(filePath) {
+        return fs.readFileSync(filePath); // SINK (reads file)
+    });
+    hb.registerHelper("prependToLines", function prependToLines(prefix, filePath) {
+        return fs
+          .readFileSync(filePath)
+          .split("\n")
+          .map((line) => prefix + line)
+          .join("\n");
+    });
+    data.compiledFileAccess = hb.compile("contents of file {{path}} are: {{catFile path}}")
+    data.compiledBenign = hb.compile("hello, {{name}}");
+    data.compiledUnknown = hb.compile(fs.readFileSync("greeting.template"));
+    data.compiledMixed = hb.compile("helpers may have several args, like here: {{prependToLines prefix path}}");
+}
+
+init();
+
+app.get('/some/path1', function (req, res) {
+    res.send(data.compiledFileAccess({ path: req.params.path })); // NOT ALLOWED (template uses vulnerable catFile)
+});
+
+app.get('/some/path2', function (req, res) {
+    res.send(data.compiledBenign({ name: req.params.name })); // ALLOWED (this template does not use catFile)
+});
+
+app.get('/some/path3', function (req, res) {
+    res.send(data.compiledUnknown({ name: req.params.name })); // ALLOWED (could be using a vulnerable helper, but we'll assume it's ok)
+});
+
+app.get('/some/path4', function (req, res) {
+    res.send(data.compiledMixed({
+        prefix: ">>> ",
+        path: req.params.path // NOT ALLOWED (template uses vulnerable helper)
+    }));
+});
+
+app.get('/some/path5', function (req, res) {
+    res.send(data.compiledMixed({
+        prefix: req.params.prefix, // ALLOWED (this parameter is safe)
+        path: "data/path-5.txt"
+    }));
+});
diff --git a/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/TaintedPath/normalizedPaths.js b/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/TaintedPath/normalizedPaths.js
index f03260e3c84..f5caae46c45 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/TaintedPath/normalizedPaths.js
+++ b/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/TaintedPath/normalizedPaths.js
@@ -370,4 +370,35 @@ app.get('/yet-another-prefix2', (req, res) => {
   function allowPath(requestPath, rootPath) {
     return requestPath.indexOf(rootPath) === 0;
   }
-});
\ No newline at end of file
+});
+
+import slash from 'slash';
+app.get('/slash-stuff', (req, res) => {
+  let path = req.query.path;
+
+  fs.readFileSync(path); // NOT OK
+
+  fs.readFileSync(slash(path)); // NOT OK
+});
+
+app.get('/dotdot-regexp', (req, res) => {
+  let path = pathModule.normalize(req.query.x);
+  if (pathModule.isAbsolute(path))
+    return;
+  fs.readFileSync(path); // NOT OK
+  if (!path.match(/\./)) {
+    fs.readFileSync(path); // OK
+  }
+  if (!path.match(/\.\./)) {
+    fs.readFileSync(path); // OK
+  }
+  if (!path.match(/\.\.\//)) {
+    fs.readFileSync(path); // OK
+  }
+  if (!path.match(/\.\.\/foo/)) {
+    fs.readFileSync(path); // NOT OK
+  }
+  if (!path.match(/(\.\.\/|\.\.\\)/)) {
+    fs.readFileSync(path); // OK
+  }
+});
diff --git a/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/TaintedPath/other-fs-libraries.js b/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/TaintedPath/other-fs-libraries.js
index 14c9e357492..bda7051ba80 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/TaintedPath/other-fs-libraries.js
+++ b/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/TaintedPath/other-fs-libraries.js
@@ -50,4 +50,24 @@ http.createServer(function(req, res) {
 
   fs.readFileSync(path); // NOT OK
   asyncFS.readFileSync(path); // NOT OK
+
+  require("pify")(fs.readFileSync)(path); // NOT OK
+  require("pify")(fs).readFileSync(path); // NOT OK
+
+  require('util.promisify')(fs.readFileSync)(path); // NOT OK
+
+  require("thenify")(fs.readFileSync)(path); // NOT OK
+
+  const readPkg = require('read-pkg');
+  var pkg = readPkg.readPackageSync({cwd: path}); // NOT OK
+  var pkgPromise = readPkg.readPackageAsync({cwd: path}); // NOT OK
+});
+
+const mkdirp = require("mkdirp");
+http.createServer(function(req, res) {
+  var path = url.parse(req.url, true).query.path;
+
+  fs.readFileSync(path); // NOT OK
+  mkdirp(path); // NOT OK
+  mkdirp.sync(path); // NOT OK
 });
diff --git a/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/TaintedPath/prettier.js b/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/TaintedPath/prettier.js
new file mode 100644
index 00000000000..7546bb2c293
--- /dev/null
+++ b/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/TaintedPath/prettier.js
@@ -0,0 +1,14 @@
+const express = require('express');
+const prettier = require("prettier");
+
+const app = express();
+app.get('/some/path', function (req, res) {
+    const { p } = req.params;
+    prettier.resolveConfig(p).then((options) => { // NOT OK
+        const formatted = prettier.format("foo", options);
+    });
+
+    prettier.resolveConfig("foo", {config: p}).then((options) => { // NOT OK
+        const formatted = prettier.format("bar", options);
+    });
+});
diff --git a/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/TaintedPath/tainted-access-paths.js b/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/TaintedPath/tainted-access-paths.js
index 3c98512dad7..465b5b70b69 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/TaintedPath/tainted-access-paths.js
+++ b/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/TaintedPath/tainted-access-paths.js
@@ -32,3 +32,19 @@ var server = http.createServer(function(req, res) {
 });
 
 server.listen();
+
+var nodefs = require('node:fs');
+
+var server2 = http.createServer(function(req, res) {
+  let path = url.parse(req.url, true).query.path;
+  nodefs.readFileSync(path); // NOT OK
+});
+
+server2.listen();
+
+const chownr = require("chownr");
+
+var server3 = http.createServer(function (req, res) {
+  let path = url.parse(req.url, true).query.path;
+  chownr(path, "someuid", "somegid", function (err) {}); // NOT OK
+});
diff --git a/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/TaintedPath/tainted-require.js b/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/TaintedPath/tainted-require.js
index 443ccdd31b0..23f89c55c39 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/TaintedPath/tainted-require.js
+++ b/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/TaintedPath/tainted-require.js
@@ -6,3 +6,12 @@ app.get('/some/path', function(req, res) {
   // BAD: loading a module based on un-sanitized query parameters
   var m = require(req.param("module"));
 });
+
+const resolve = require("resolve");
+app.get('/some/path', function(req, res) {
+  var module = resolve.sync(req.param("module")); // NOT OK - resolving module based on query parameters
+
+  resolve(req.param("module"), { basedir: __dirname }, function(err, res) { // NOT OK - resolving module based on query parameters
+    var module = res;
+  });
+});
\ No newline at end of file
diff --git a/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/Xss/DomBasedXss/addEventListener.js b/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/Xss/DomBasedXss/addEventListener.js
index fbb1dcfe01d..97d21371d08 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/Xss/DomBasedXss/addEventListener.js
+++ b/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/Xss/DomBasedXss/addEventListener.js
@@ -14,4 +14,17 @@ function test() {
     }
 
     window.addEventListener("message", foo.bind(null, {data: 'items'}));
+
+    window.onmessage = e => {
+        if (e.origin !== "https://foobar.com") {
+            return;
+        }
+        document.write(e.data); // OK - there is an origin check
+    }
+
+    window.onmessage = e => {
+        if (mySet.includes(e.origin)) {
+            document.write(e.data); // OK - there is an origin check
+        }
+    }
 }
diff --git a/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/Xss/DomBasedXss/classnames.js b/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/Xss/DomBasedXss/classnames.js
index e18f7844f68..a0e75045a2e 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/Xss/DomBasedXss/classnames.js
+++ b/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/Xss/DomBasedXss/classnames.js
@@ -13,4 +13,6 @@ function main() {
     document.body.innerHTML = `<span class="${safeStyle(window.name)}">Hello<span>`; // NOT OK
     document.body.innerHTML = `<span class="${safeStyle('foo')}">Hello<span>`; // OK
     document.body.innerHTML = `<span class="${clsx(window.name)}">Hello<span>`; // NOT OK
+
+    document.body.innerHTML += `<span class="${clsx(window.name)}">Hello<span>`; // NOT OK
 }
diff --git a/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/Xss/DomBasedXss/clipboard.ts b/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/Xss/DomBasedXss/clipboard.ts
new file mode 100644
index 00000000000..b87d5a43bee
--- /dev/null
+++ b/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/Xss/DomBasedXss/clipboard.ts
@@ -0,0 +1,101 @@
+$("#foo").on("paste", paste);
+
+function paste(e) {
+    const { clipboardData } = e.originalEvent;
+    if (!clipboardData) return;
+
+    const text = clipboardData.getData('text/plain');
+    const html = clipboardData.getData('text/html');
+    if (!text && !html) return;
+
+    e.preventDefault();
+
+    const div = document.createElement('div');
+    if (html) {
+        div.innerHTML = html; // NOT OK
+    } else {
+        div.textContent = text;
+    }
+    document.body.append(div);
+}
+
+export function install(el: HTMLElement): void {
+    el.addEventListener('paste', (e) => {
+        $("#id").html(e.clipboardData.getData('text/html')); // NOT OK    
+    })
+}
+
+document.addEventListener('paste', (e) => {
+    $("#id").html(e.clipboardData.getData('text/html')); // NOT OK
+});
+
+$("#foo").bind('paste', (e) => {
+    $("#id").html(e.originalEvent.clipboardData.getData('text/html')); // NOT OK
+});
+
+(function () {
+    let div = document.createElement("div");
+    div.onpaste = function (e: ClipboardEvent) {
+        const { clipboardData } = e;
+        if (!clipboardData) return;
+
+        const text = clipboardData.getData('text/plain');
+        const html = clipboardData.getData('text/html');
+        if (!text && !html) return;
+
+        e.preventDefault();
+
+        const div = document.createElement('div');
+        if (html) {
+            div.innerHTML = html; // NOT OK
+        } else {
+            div.textContent = text;
+        }
+        document.body.append(div);
+    }
+})();
+
+async function getClipboardData(e: ClipboardEvent): Promise<Array<File | string>> {
+    // Using a set to filter out duplicates. For some reason, dropping URLs duplicates them 3 times (for me)
+    const dropItems = new Set<File | string>();
+  
+    // First get all files in the drop event
+    if (e.clipboardData.files.length > 0) {
+      // tslint:disable-next-line: prefer-for-of
+      for (let i = 0; i < e.clipboardData.files.length; i++) {
+        const file = e.clipboardData.files[i];
+      }
+    }
+  
+    if (e.clipboardData.types.includes('text/html')) {
+      const droppedHtml = e.clipboardData.getData('text/html');
+      const container = document.createElement('html');
+      container.innerHTML = droppedHtml;
+      const imgs = container.getElementsByTagName('img');
+      if (imgs.length === 1) {
+        const src = imgs[0].src;
+        dropItems.add(src);
+      }
+    } else if (e.clipboardData.types.includes('text/plain')) {
+      const plainText = e.clipboardData.getData('text/plain');
+      // Check if text is an URL
+      if (/^https?:\/\//i.test(plainText)) {
+        dropItems.add(plainText);
+      }
+    }
+  
+    const imageItems = Array.from(dropItems);
+    return imageItems;
+  }
+
+// inputevent
+(function () {
+    let div = document.createElement("div");
+    div.addEventListener("beforeinput", function (e: InputEvent) {
+        const { data, inputType, isComposing, dataTransfer } = e;
+        if (!dataTransfer) return;
+
+        const html = dataTransfer.getData('text/html');
+        $("#id").html(html); // NOT OK
+    });
+})();
\ No newline at end of file
diff --git a/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/Xss/DomBasedXss/custom-element.js b/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/Xss/DomBasedXss/custom-element.js
new file mode 100644
index 00000000000..9177f08bdc5
--- /dev/null
+++ b/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/Xss/DomBasedXss/custom-element.js
@@ -0,0 +1,7 @@
+import * as dummy from 'dummy';
+
+class CustomElm extends HTMLElement {
+    test() {
+        this.innerHTML = window.name; // NOT OK
+    }
+}
diff --git a/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/Xss/DomBasedXss/dates.js b/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/Xss/DomBasedXss/dates.js
index 592dc37c973..47513c796d9 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/Xss/DomBasedXss/dates.js
+++ b/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/Xss/DomBasedXss/dates.js
@@ -16,4 +16,47 @@ function main() {
     document.body.innerHTML = `Time is ${moment(time).format(taint)}`; // NOT OK
     document.body.innerHTML = `Time is ${moment(taint).format()}`; // OK
     document.body.innerHTML = `Time is ${dateformat(time, taint)}`; // NOT OK
+
+    import dayjs from 'dayjs';
+    document.body.innerHTML = `Time is ${dayjs(time).format(taint)}`; // NOT OK
 }
+
+import LuxonAdapter from "@date-io/luxon";
+import DateFnsAdapter from "@date-io/date-fns";
+import MomentAdapter from "@date-io/moment";
+import DayJSAdapter from "@date-io/dayjs"
+
+function dateio() {
+    let taint = decodeURIComponent(window.location.hash.substring(1));
+
+    const dateFns = new DateFnsAdapter();
+    const luxon = new LuxonAdapter();
+    const moment = new MomentAdapter();
+    const dayjs = new DayJSAdapter();
+
+    document.body.innerHTML = `Time is ${dateFns.formatByString(new Date(), taint)}`; // NOT OK
+    document.body.innerHTML = `Time is ${luxon.formatByString(luxon.date(), taint)}`; // NOT OK
+    document.body.innerHTML = `Time is ${moment.formatByString(moment.date(), taint)}`; // NOT OK
+    document.body.innerHTML = `Time is ${dayjs.formatByString(dayjs.date(), taint)}`; // NOT OK
+}
+
+import { DateTime } from "luxon";
+
+function luxon() {
+    let taint = decodeURIComponent(window.location.hash.substring(1));
+
+    document.body.innerHTML = `Time is ${DateTime.now().plus({years: 1}).toFormat(taint)}`; // NOT OK
+    document.body.innerHTML = `Time is ${new DateTime().setLocale('fr').toFormat(taint)}`; // NOT OK
+    document.body.innerHTML = `Time is ${DateTime.fromISO("2020-01-01").startOf('day').toFormat(taint)}`; // NOT OK
+}
+
+function dateio2() {
+    let taint = decodeURIComponent(window.location.hash.substring(1));
+
+    const moment = new MomentAdapter();
+    document.body.innerHTML = `Time is ${moment.addDays(moment.date("2020-06-21"), 1).format(taint)}`; // NOT OK
+    const luxon = new LuxonAdapter();
+    document.body.innerHTML = `Time is ${luxon.endOfDay(luxon.date()).toFormat(taint)}`; // NOT OK
+    const dayjs = new DayJSAdapter();
+    document.body.innerHTML = `Time is ${dayjs.setHours(dayjs.date(), 4).format(taint)}`; // NOT OK
+}
\ No newline at end of file
diff --git a/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/Xss/DomBasedXss/dragAndDrop.ts b/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/Xss/DomBasedXss/dragAndDrop.ts
new file mode 100644
index 00000000000..487e51c8f8a
--- /dev/null
+++ b/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/Xss/DomBasedXss/dragAndDrop.ts
@@ -0,0 +1,89 @@
+$("#foo").on("drop", drop);
+
+function drop(e) {
+    const { dataTransfer } = e.originalEvent;
+    if (!dataTransfer) return;
+
+    const text = dataTransfer.getData('text/plain');
+    const html = dataTransfer.getData('text/html');
+    if (!text && !html) return;
+
+    e.preventDefault();
+
+    const div = document.createElement('div');
+    if (html) {
+        div.innerHTML = html; // NOT OK
+    } else {
+        div.textContent = text;
+    }
+    document.body.append(div);
+}
+
+export function install(el: HTMLElement): void {
+    el.addEventListener('drop', (e) => {
+        $("#id").html(e.dataTransfer.getData('text/html')); // NOT OK    
+    })
+}
+
+document.addEventListener('drop', (e) => {
+    $("#id").html(e.dataTransfer.getData('text/html')); // NOT OK
+});
+
+$("#foo").bind('drop', (e) => {
+    $("#id").html(e.originalEvent.dataTransfer.getData('text/html')); // NOT OK
+});
+
+(function () {
+    let div = document.createElement("div");
+    div.ondrop = function (e: DragEvent) {
+        const { dataTransfer } = e;
+        if (!dataTransfer) return;
+
+        const text = dataTransfer.getData('text/plain');
+        const html = dataTransfer.getData('text/html');
+        if (!text && !html) return;
+
+        e.preventDefault();
+
+        const div = document.createElement('div');
+        if (html) {
+            div.innerHTML = html; // NOT OK
+        } else {
+            div.textContent = text;
+        }
+        document.body.append(div);
+    }
+})();
+
+async function getDropData(e: DragEvent): Promise<Array<File | string>> {
+    // Using a set to filter out duplicates. For some reason, dropping URLs duplicates them 3 times (for me)
+    const dropItems = new Set<File | string>();
+  
+    // First get all files in the drop event
+    if (e.dataTransfer.files.length > 0) {
+      // tslint:disable-next-line: prefer-for-of
+      for (let i = 0; i < e.dataTransfer.files.length; i++) {
+        const file = e.dataTransfer.files[i];
+      }
+    }
+  
+    if (e.dataTransfer.types.includes('text/html')) {
+      const droppedHtml = e.dataTransfer.getData('text/html');
+      const container = document.createElement('html');
+      container.innerHTML = droppedHtml;
+      const imgs = container.getElementsByTagName('img');
+      if (imgs.length === 1) {
+        const src = imgs[0].src;
+        dropItems.add(src);
+      }
+    } else if (e.dataTransfer.types.includes('text/plain')) {
+      const plainText = e.dataTransfer.getData('text/plain');
+      // Check if text is an URL
+      if (/^https?:\/\//i.test(plainText)) {
+        dropItems.add(plainText);
+      }
+    }
+  
+    const imageItems = Array.from(dropItems);
+    return imageItems;
+  }
\ No newline at end of file
diff --git a/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/Xss/DomBasedXss/externs.js b/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/Xss/DomBasedXss/externs.js
index 7079f471978..0132d7ae7ca 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/Xss/DomBasedXss/externs.js
+++ b/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/Xss/DomBasedXss/externs.js
@@ -57,3 +57,13 @@ function Node() {}
  * @type {Node}
  */
 Node.prototype.parentNode;
+
+/**
+ * @return {DomObjectStub}
+ */
+DomObjectStub.prototype.insertRow = function() {};
+
+/**
+ * @return {DomObjectStub}
+ */
+DomObjectStub.prototype.insertCell = function() {};
diff --git a/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/Xss/DomBasedXss/jquery.js b/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/Xss/DomBasedXss/jquery.js
index 928648ced0f..3bff577fbdf 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/Xss/DomBasedXss/jquery.js
+++ b/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/Xss/DomBasedXss/jquery.js
@@ -14,4 +14,22 @@ function test() {
   elm.innerHTML = decodeURIComponent(window.location.hash); // NOT OK
   elm.innerHTML = decodeURIComponent(window.location.search); // NOT OK
   elm.innerHTML = decodeURIComponent(window.location.toString()); // NOT OK
+
+  let hash = window.location.hash;
+  $(hash); // OK - start with '#'
+
+  $(hash.substring(1)); // NOT OK
+  $(hash.substring(1, 10)); // NOT OK
+  $(hash.substr(1)); // NOT OK
+  $(hash.slice(1)); // NOT OK
+  $(hash.substring(0, 10)); // OK
+
+  $(hash.replace('#', '')); // NOT OK
+  $(window.location.search.replace('?', '')); // NOT OK
+  $(hash.replace('!', '')); // OK
+  $(hash.replace('blah', '')); // OK
+
+  $(hash + 'blah'); // OK
+  $('blah' + hash); // OK - does not start with '<'
+  $('<b>' + hash + '</b>'); // NOT OK
 }
diff --git a/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/Xss/DomBasedXss/trusted-types.js b/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/Xss/DomBasedXss/trusted-types.js
new file mode 100644
index 00000000000..cba48137122
--- /dev/null
+++ b/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/Xss/DomBasedXss/trusted-types.js
@@ -0,0 +1,10 @@
+(function() {
+    const policy1 = trustedTypes.createPolicy('x', { createHTML: x => x }); // NOT OK
+    policy1.createHTML(window.name);
+
+    const policy2 = trustedTypes.createPolicy('x', { createHTML: x => 'safe' }); // OK
+    policy2.createHTML(window.name);
+
+    const policy3 = trustedTypes.createPolicy('x', { createHTML: x => x }); // OK
+    policy3.createHTML('safe');
+})();
diff --git a/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/Xss/DomBasedXss/tst.js b/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/Xss/DomBasedXss/tst.js
index 44f88e0762b..3c609ddcc92 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/Xss/DomBasedXss/tst.js
+++ b/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/Xss/DomBasedXss/tst.js
@@ -430,4 +430,63 @@ function nonGlobalSanitizer() {
   $("#foo").html(target.replace(/<metadata>[\s\S]*<\/metadata>/, '<metadata></metadata>')); // NOT OK
 
   $("#foo").html(target.replace(/<|>/g, '')); // OK
-}
\ No newline at end of file
+}
+
+function mootools(){
+	var source = document.location.search;
+
+	new Element("div"); // OK
+	new Element("div", {text: source}); // OK
+	new Element("div", {html: source}); // NOT OK
+	new Element("div").set("html", source); // NOT OK
+	new Element("div").set({"html": source}); // NOT OK
+	new Element("div").setProperty("html", source); // NOT OK
+	new Element("div").setProperties({"html": source}); // NOT OK
+	new Element("div").appendHtml(source); // NOT OK
+}
+
+
+const Convert = require('ansi-to-html');
+const ansiToHtml = new Convert();
+
+function ansiToHTML() {
+  var source = document.location.search;
+
+  $("#foo").html(source); // NOT OK
+  $("#foo").html(ansiToHtml.toHtml(source)); // NOT OK
+}
+
+function domMethods() {
+	var source = document.location.search;
+
+  let table = document.getElementById('mytable');
+  table.innerHTML = source; // NOT OK
+  let row = table.insertRow(-1);
+  row.innerHTML = source; // NOT OK
+  let cell = row.insertCell();
+  cell.innerHTML = source; // NOT OK
+}
+
+function urlStuff() {
+  var url = document.location.search.substr(1);
+
+  $("<a>", {href: url}).appendTo("body"); // NOT OK
+  $("#foo").attr("href", url); // NOT OK
+  $("#foo").attr({href: url}); // NOT OK
+  $("<img>", {src: url}).appendTo("body"); // NOT OK
+  $("<a>", {href: win.location.href}).appendTo("body"); // OK
+
+  $("<img>", {src: "http://google.com/" + url}).appendTo("body"); // OK
+
+  $("<img>", {src: ["http://google.com", url].join("/")}).appendTo("body"); // OK
+
+  if (url.startsWith("https://")) {
+    $("<img>", {src: url}).appendTo("body"); // OK
+  } else {
+    $("<img>", {src: url}).appendTo("body"); // NOT OK
+  }
+
+  window.open(location.hash.substr(1)); // OK - any JavaScript is executed in another context
+
+  navigation.navigate(location.hash.substr(1)); // NOT OK
+}
diff --git a/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/Xss/DomBasedXss/xmlRequest.js b/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/Xss/DomBasedXss/xmlRequest.js
index 91dca5e0c51..28f49bb71ca 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/Xss/DomBasedXss/xmlRequest.js
+++ b/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/Xss/DomBasedXss/xmlRequest.js
@@ -6,11 +6,19 @@ $(document).ready(function () {
     xhr.onreadystatechange = function () {
         if (xhr.readyState !== 4) { return }
         var json = JSON.parse(xhr.responseText)
-        $("#myThing").html(json.message);
+        $("#myThing").html(json.message); // caught with additional sources
     }
     try {
         xhr.send()
     } catch (error) {
         console.log(error)
     }
-})
\ No newline at end of file
+});
+
+$(document).ready(async function () {
+    const got = require('got');
+    const resp = await got.get("{{ some_url }}");
+    const json = JSON.parse(resp.body);
+    $("#myThing").html(json.message); // caught with additional sources
+
+});
\ No newline at end of file
diff --git a/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/Xss/ExceptionXss/ajv.js b/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/Xss/ExceptionXss/ajv.js
index 2ebbc46a4b3..36dd5181a1b 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/Xss/ExceptionXss/ajv.js
+++ b/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/Xss/ExceptionXss/ajv.js
@@ -11,3 +11,16 @@ app.post('/polldata', (req, res) => {
         res.send(ajv.errorsText()); // NOT OK
     }
 });
+
+const joi = require("joi");
+const joiSchema = joi.object().keys({
+    name: joi.string().required(),
+    age: joi.number().required()
+}).with('name', 'age');
+
+app.post('/votedata', (req, res) => {
+    const val = joiSchema.validate(req.body);
+    if (val.error) {
+        res.send(val.error); // NOT OK
+    }
+});
\ No newline at end of file
diff --git a/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/Xss/ReflectedXss/ReflectedXss.js b/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/Xss/ReflectedXss/ReflectedXss.js
index 6a85c0ec1b0..2b7c2057f0f 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/Xss/ReflectedXss/ReflectedXss.js
+++ b/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/Xss/ReflectedXss/ReflectedXss.js
@@ -101,4 +101,11 @@ app.get('/user/:id', function (req, res) {
 
   res.send(markdownIt.use(require('markdown-it-sanitizer')).render(req.body)); // OK - HTML is sanitized. 
   res.send(markdownIt.use(require('markdown-it-abbr')).use(unknown).render(req.body)); // NOT OK
-});
\ No newline at end of file
+});
+
+var Hapi = require('hapi');
+var hapi = new Hapi.Server();
+hapi.route({
+    handler: function (request){
+        return request.query.p; // NOT OK
+    }});
diff --git a/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/Xss/ReflectedXss/live-server.js b/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/Xss/ReflectedXss/live-server.js
new file mode 100644
index 00000000000..aed560fc076
--- /dev/null
+++ b/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/Xss/ReflectedXss/live-server.js
@@ -0,0 +1,18 @@
+var liveServer = require("live-server");
+ 
+const middleware = [function(req, res, next) {
+    const tainted = req.url;    
+
+    res.end(`<html><body>${tainted}</body></html>`); // NOT OK
+}];
+
+middleware.push(function(req, res, next) {
+    const tainted = req.url;
+
+    res.end(`<html><body>${tainted}</body></html>`); // NOT OK
+});
+
+var params = {
+    middleware
+};
+liveServer.start(params);
\ No newline at end of file
diff --git a/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/Xss/ReflectedXss/tst2.js b/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/Xss/ReflectedXss/tst2.js
index 521b6b20a7c..60399a9b63d 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/Xss/ReflectedXss/tst2.js
+++ b/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/Xss/ReflectedXss/tst2.js
@@ -22,3 +22,69 @@ app.get('/bar', function(req, res) {
   else
     res.send(p); // OK
 });
+
+
+const clone = require('clone');
+
+app.get('/baz', function(req, res) {
+  let { p } = req.params;
+
+  var obj = {};
+  obj.p = p;
+  var other = clone(obj);
+
+  res.send(p); // NOT OK
+  res.send(other.p); // NOT OK
+});
+
+const serializeJavaScript = require('serialize-javascript');
+
+app.get('/baz', function(req, res) {
+  let { p } = req.params;
+
+  var serialized = serializeJavaScript(p);
+
+  res.send(serialized); // OK
+  
+  var unsafe = serializeJavaScript(p, {unsafe: true});
+
+  res.send(unsafe); // NOT OK
+});
+
+const fclone = require('fclone');
+
+app.get('/baz', function(req, res) {
+  let { p } = req.params;
+
+  var obj = {};
+  obj.p = p;
+  var other = fclone(obj);
+
+  res.send(p); // NOT OK
+  res.send(other.p); // NOT OK
+});
+
+const jc = require('json-cycle');
+app.get('/baz', function(req, res) {
+  let { p } = req.params;
+
+  var obj = {};
+  obj.p = p;
+  var other = jc.retrocycle(jc.decycle(obj));
+
+  res.send(p); // NOT OK
+  res.send(other.p); // NOT OK
+});
+
+const sortKeys = require('sort-keys');
+
+app.get('/baz', function(req, res) {
+  let { p } = req.params;
+
+  var obj = {};
+  obj.p = p;
+  var other = sortKeys(obj);
+
+  res.send(p); // NOT OK
+  res.send(other.p); // NOT OK
+});
\ No newline at end of file
diff --git a/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/Xss/ReflectedXss/tst3.js b/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/Xss/ReflectedXss/tst3.js
new file mode 100644
index 00000000000..c7d0fd91a4a
--- /dev/null
+++ b/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/Xss/ReflectedXss/tst3.js
@@ -0,0 +1,13 @@
+var express = require('express');
+
+var app = express();
+app.enable('x-powered-by').disable('x-powered-by').get('/', function (req, res) {
+  let { p } = req.params;
+  res.send(p); // NOT OK
+});
+
+const prettier = require("prettier");
+app.post("foobar", function (reg, res) {
+  const code = prettier.format(reg.body, { semi: false, parser: "babel" });
+  res.send(code); // NOT OK
+});
\ No newline at end of file
diff --git a/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js b/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js
index 07b25b558f9..6a133a747bd 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js
+++ b/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js
@@ -7,3 +7,9 @@
 }(function ($) {
     $("<span>" + $.trim("foo") + "</span>"); // OK
 }));
+
+$.fn.myPlugin = function (stuff, options) {
+    $("#foo").html("<span>" + options.foo + "</span>"); // NOT OK
+
+    $("#foo").html("<span>" + stuff + "</span>"); // NOT OK
+}
diff --git a/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/Xss/UnsafeHtmlConstruction/lib/src/MyNode.ts b/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/Xss/UnsafeHtmlConstruction/lib/src/MyNode.ts
new file mode 100644
index 00000000000..91e81238605
--- /dev/null
+++ b/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/Xss/UnsafeHtmlConstruction/lib/src/MyNode.ts
@@ -0,0 +1,4 @@
+export function trivialXss(s: string) {
+    const html = "<span>" + s + "</span>"; // NOT OK
+    document.querySelector("#html").innerHTML = html;
+}
\ No newline at end of file
diff --git a/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/Xss/UnsafeHtmlConstruction/lib2/index.ts b/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/Xss/UnsafeHtmlConstruction/lib2/index.ts
new file mode 100644
index 00000000000..21bb420b71f
--- /dev/null
+++ b/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/Xss/UnsafeHtmlConstruction/lib2/index.ts
@@ -0,0 +1,4 @@
+export function trivialXss(s: string) {
+    const html = "<span>" + s + "</span>"; // NOT OK - this file is recognized as a main file.
+    document.querySelector("#html").innerHTML = html;
+}
\ No newline at end of file
diff --git a/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/Xss/UnsafeHtmlConstruction/lib2/src/MyNode.ts b/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/Xss/UnsafeHtmlConstruction/lib2/src/MyNode.ts
new file mode 100644
index 00000000000..35908c88f16
--- /dev/null
+++ b/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/Xss/UnsafeHtmlConstruction/lib2/src/MyNode.ts
@@ -0,0 +1,4 @@
+export function trivialXss(s: string) {
+    const html = "<span>" + s + "</span>"; // OK - this file is not recognized as a main file.
+    document.querySelector("#html").innerHTML = html;
+}
\ No newline at end of file
diff --git a/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/Xss/UnsafeHtmlConstruction/main.js b/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/Xss/UnsafeHtmlConstruction/main.js
index 1097e126feb..01d376a2f8b 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/Xss/UnsafeHtmlConstruction/main.js
+++ b/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/Xss/UnsafeHtmlConstruction/main.js
@@ -75,3 +75,45 @@ module.exports.intentionalTemplate = function (obj) {
     const html = "<span>" + obj.spanTemplate + "</span>"; // OK
     document.querySelector("#template").innerHTML = html;
 }
+
+module.exports.types = function (val) {
+    if (typeof val === "string") {
+        $("#foo").html("<span>" + val + "</span>"); // NOT OK
+    } else if (typeof val === "number") {
+        $("#foo").html("<span>" + val + "</span>"); // OK
+    } else if (typeof val === "boolean") {
+        $("#foo").html("<span>" + val + "</span>"); // OK
+    }
+}
+
+function createHTML(x) {
+    return "<span>" + x + "</span>"; // NOT OK
+}
+
+module.exports.usesCreateHTML = function (x) {
+    $("#foo").html(createHTML(x));
+}
+
+const myMermaid = require('mermaid');
+module.exports.usesCreateHTML = function (x) {
+    myMermaid.render("id", x, function (svg) { // NOT OK
+        $("#foo").html(svg);
+    });
+    
+    $("#foo").html(myMermaid.render("id", x)); // NOT OK
+
+    mermaid.render("id", x, function (svg) {// NOT OK
+        $("#foo").html(svg); 
+    });
+
+    $("#foo").html(mermaid.render("id", x)); // NOT OK
+
+    mermaid.mermaidAPI.render("id", x, function (svg) {// NOT OK
+        $("#foo").html(svg);
+    });
+}
+
+module.exports.xssThroughMarkdown = function (s) {
+    const html = markdown.render(s); // NOT OK
+    document.querySelector("#markdown").innerHTML = html;
+}
diff --git a/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js b/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js
index 51621fec90b..b695c57fab8 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js
+++ b/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js
@@ -182,4 +182,14 @@
 		$(document).find(options.target); // OK
 	}});
 
+	$.fn.position = function( options ) {
+		if ( !options || !options.of ) {
+			return doSomethingElse( this, arguments );
+		}
+		// extending options
+		options = $.extend( {}, options );
+	
+		var target = $( options.of ); // NOT OK
+		console.log(target);
+	};
 });
diff --git a/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/Xss/XssThroughDom/xss-through-dom.js b/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/Xss/XssThroughDom/xss-through-dom.js
index 656f233ca9e..7728722bd16 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/Xss/XssThroughDom/xss-through-dom.js
+++ b/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/Xss/XssThroughDom/xss-through-dom.js
@@ -89,4 +89,54 @@
 	$("section h1").each(function(){
 		$("nav ul").append("<a href='#" + $(this).text().toLowerCase().replace(/ /g, '-').replace(/[^\w-]+/g,'') + "'>Section</a>"); // OK
 	});
+
+	$("#id").html($("#foo").find(".bla")[0].value); // NOT OK.
+
+	for (var i = 0; i < foo.length; i++) {
+		$("#id").html($("#foo").find(".bla")[i].value); // NOT OK.
+	}
+})();
+
+class Super {
+	constructor() {
+		this.el = $("#id").get(0);
+	}
+}
+
+class Sub extends Super {
+	constructor() {
+		super();
+		$("#id").get(0).innerHTML = "<a src=\"" + this.el.src + "\">foo</a>"; // NOT OK. Attack: `<mytag id="id" src="x:&quot;&gt;&lt;img src=1 onerror=&quot;alert(1)&quot;&gt;" />`
+	}
+}
+
+(function () {
+    const src = document.getElementById("#link").src;
+	$("#id").html(src); // NOT OK.
+
+    $("#id").attr("src", src); // OK
+
+    $("input.foo")[0].onchange = function (ev) {
+        $("#id").html(ev.target.files[0].name); // NOT OK.
+
+        $("img#id").attr("src", URL.createObjectURL(ev.target.files[0])); // NOT OK
+    }
+})();
+
+(function () {
+	let elem = document.createElement('a');
+	const wSelection = getSelection();
+	const dSelection = document.getSelection();
+	let linkText = wSelection.toString() || dSelection.toString() || '';
+	elem.innerHTML = linkText; // NOT OK
+	$("#id").html(linkText); // NOT OK
+	elem.innerText = linkText; // OK
+})();
+
+const cashDom = require("cash-dom");
+
+(function () {
+    const src = document.getElementById("#link").src;
+	cash("#id").html(src); // NOT OK.
+    cashDom("#id").html(src); // NOT OK
 })();
\ No newline at end of file
diff --git a/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/XssThroughDom/BadTagFilter/tst.js b/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/XssThroughDom/BadTagFilter/tst.js
new file mode 100644
index 00000000000..2b71107e512
--- /dev/null
+++ b/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/XssThroughDom/BadTagFilter/tst.js
@@ -0,0 +1,28 @@
+var filters = [
+    /<script.*?>.*?<\/script>/i, // NOT OK - doesn't match newlines or `</script >`
+    /<script.*?>.*?<\/script>/is, // NOT OK - doesn't match `</script >`
+    /<script.*?>.*?<\/script[^>]*>/is, // OK
+    /<!--.*-->/is, // OK - we don't care regexps that only match comments
+    /<!--.*--!?>/is, // OK
+    /<!--.*--!?>/i, // NOT OK, does not match newlines
+    /<script.*?>(.|\s)*?<\/script[^>]*>/i, // NOT OK - doesn't match inside the script tag
+    /<script[^>]*?>.*?<\/script[^>]*>/i, // NOT OK - doesn't match newlines inside the content
+    /<script(\s|\w|=|")*?>.*?<\/script[^>]*>/is, // NOT OK - does not match single quotes for attribute values
+    /<script(\s|\w|=|')*?>.*?<\/script[^>]*>/is, // NOT OK - does not match double quotes for attribute values
+    /<script( |\n|\w|=|'|")*?>.*?<\/script[^>]*>/is, // NOT OK - does not match tabs between attributes
+    /<script.*?>.*?<\/script[^>]*>/s, // NOT OK - does not match uppercase SCRIPT tags
+    /<(script|SCRIPT).*?>.*?<\/(script|SCRIPT)[^>]*>/s, // NOT OK - does not match mixed case script tags
+    /<script[^>]*?>[\s\S]*?<\/script.*>/i, // NOT OK - doesn't match newlines in the end tag
+    /<script[^>]*?>[\s\S]*?<\/script[^>]*?>/i, // OK
+    /<script\b[^>]*>([\s\S]*?)<\/script>/gi, // NOT OK - too strict matching on the end tag
+    /<(?:!--([\S|\s]*?)-->)|([^\/\s>]+)[\S\s]*?>/, // NOT OK - doesn't match comments with the right capture groups
+    /<(?:(?:\/([^>]+)>)|(?:!--([\S|\s]*?)-->)|(?:([^\/\s>]+)((?:\s+[\w\-:.]+(?:\s*=\s*?(?:(?:"[^"]*")|(?:'[^']*')|[^\s"'\/>]+))?)*)[\S\s]*?(\/?)>))/, // NOT OK - capture groups
+	/(<[a-z\/!$]("[^"]*"|'[^']*'|[^'">])*>|<!(--.*?--\s*)+>)/gi, // NOT OK - capture groups
+    /<(?:(?:!--([\w\W]*?)-->)|(?:!\[CDATA\[([\w\W]*?)\]\]>)|(?:!DOCTYPE([\w\W]*?)>)|(?:\?([^\s\/<>]+) ?([\w\W]*?)[?/]>)|(?:\/([A-Za-z][A-Za-z0-9\-_\:\.]*)>)|(?:([A-Za-z][A-Za-z0-9\-_\:\.]*)((?:\s+[^"'>]+(?:(?:"[^"]*")|(?:'[^']*')|[^>]*))*|\/|\s+)>))/g, // NOT OK - capture groups
+    /<!--([\w\W]*?)-->|<([^>]*?)>/g, // NOT OK - capture groups
+]
+
+doFilters(filters)
+
+var strip = '<script([^>]*)>([\\S\\s]*?)<\/script([^>]*)>';  // OK - it's used with the ignorecase flag
+new RegExp(strip, 'gi');
diff --git a/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/XssThroughDom/DoubleEscaping/tst.js b/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/XssThroughDom/DoubleEscaping/tst.js
new file mode 100644
index 00000000000..76cfe80b238
--- /dev/null
+++ b/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/XssThroughDom/DoubleEscaping/tst.js
@@ -0,0 +1,96 @@
+function badEncode(s) {
+  return s.replace(/"/g, "&quot;")
+          .replace(/'/g, "&apos;")
+          .replace(/&/g, "&amp;");
+}
+
+function goodEncode(s) {
+  return s.replace(/&/g, "&amp;")
+          .replace(/"/g, "&quot;")
+          .replace(/'/g, "&apos;");
+}
+
+function goodDecode(s) {
+  return s.replace(/&quot;/g, "\"")
+          .replace(/&apos;/g, "'")
+          .replace(/&amp;/g, "&");
+}
+
+function badDecode(s) {
+  return s.replace(/&amp;/g, "&")
+          .replace(/&quot;/g, "\"")
+          .replace(/&apos;/g, "'");
+}
+
+function cleverEncode(code) {
+    return code.replace(/</g, '&lt;').replace(/>/g, '&gt;').replace(/&(?![\w\#]+;)/g, '&amp;');
+}
+
+function badDecode2(s) {
+  return s.replace(/&amp;/g, "&")
+          .replace(/s?ome|thin*g/g, "else")
+          .replace(/&apos;/g, "'");
+}
+
+function goodDecodeInLoop(ss) {
+  var res = [];
+  for (var s of ss) {
+    s = s.replace(/&quot;/g, "\"")
+         .replace(/&apos;/g, "'")
+         .replace(/&amp;/g, "&");
+    res.push(s);
+  }
+  return res;
+}
+
+function badDecode3(s) {
+  s = s.replace(/&amp;/g, "&");
+  s = s.replace(/&quot;/g, "\"");
+  return s.replace(/&apos;/g, "'");
+}
+
+function badUnescape(s) {
+  return s.replace(/\\\\/g, '\\')
+           .replace(/\\'/g, '\'')
+           .replace(/\\"/g, '\"');
+}
+
+function badPercentEscape(s) {
+  s = s.replace(/&/g, '%26');
+  s = s.replace(/%/g, '%25');
+  return s;
+}
+
+function badEncode(s) {
+  var indirect1 = /"/g;
+  var indirect2 = /'/g;
+  var indirect3 = /&/g;
+  return s.replace(indirect1, "&quot;")
+          .replace(indirect2, "&apos;")
+          .replace(indirect3, "&amp;");
+}
+
+function badEncodeWithReplacer(s) {
+  var repl = {
+    '"': "&quot;",
+    "'": "&apos;",
+    "&": "&amp;"
+  };
+  return s.replace(/["']/g, (c) => repl[c]).replace(/&/g, "&amp;");
+}
+
+// dubious, but out of scope for this query
+function badRoundtrip(s) {
+  return s.replace(/\\\\/g, "\\").replace(/\\/g, "\\\\");
+}
+
+function testWithCapturedVar(x) {
+  var captured = x;
+  (function() {
+    captured = captured.replace(/\\/g, "\\\\");
+  })();
+}
+
+function encodeDecodeEncode(s) {
+ return goodEncode(goodDecode(goodEncode(s)));
+}
diff --git a/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js b/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js
new file mode 100644
index 00000000000..9d45c9f8f49
--- /dev/null
+++ b/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js
@@ -0,0 +1,39 @@
+(function(){
+	let defaultPattern = /<(([\w:]+)[^>]*)\/>/gi;
+	let expanded = "<$1></$2>";
+
+	// lib1
+	html.replace(
+		/<(?!area|br|col|embed|hr|img|input|link|meta|param)(([a-z][^\/\0>\x20\t\r\n\f]*)[^>]*)\/>/gi,
+		expanded
+	); // NOT OK
+	html.replace(/<(([a-z][^\/\0>\x20\t\r\n\f]*)[^>]*)\/>/gi, expanded); // NOT OK
+
+	// lib2
+	html.replace(
+		/<(?!area|br|col|embed|hr|img|input|link|meta|param)(([\w:]+)[^>]*)\/>/gi,
+		expanded
+	); // NOT OK
+	html.replace(/<(([\w:]+)[^>]*)\/>/gi, expanded); // NOT OK
+
+	// lib3
+	html.replace(
+		/<(?!area|br|col|embed|hr|img|input|link|meta|param)(([\w:-]+)[^>]*)\/>/gi,
+		expanded
+	); // NOT OK
+	html.replace(/<(([\w:-]+)[^>]*)\/>/gi, expanded); // NOT OK
+
+	html.replace(defaultPattern, expanded); // NOT OK
+	function getPattern() {
+		return defaultPattern;
+	}
+	html.replace(getPattern(), expanded); // NOT OK
+
+	function getExpanded() {
+		return expanded;
+	}
+	html.replace(defaultPattern, getExpanded()); // NOT OK (but not tracking the expansion string)
+	html.replace(defaultPattern, something); // OK (possibly)
+	defaultPattern.match(something); // OK (possibly)
+	getPattern().match(something); // OK (possibly)
+});
diff --git a/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js b/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js
new file mode 100644
index 00000000000..43f650acce9
--- /dev/null
+++ b/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js
@@ -0,0 +1,155 @@
+// CVE-2019-10756
+(function(content) {
+  content = content.replace(/<.*cript.*\/scrip.*>/gi, ""); // NOT OK
+  content = content.replace(/ on\w+=".*"/g, ""); // NOT OK
+  content = content.replace(/ on\w+=\'.*\'/g, ""); // NOT OK
+  return content;
+});
+(function(content) {
+  content = content.replace(/<.*cript.*/gi, ""); // NOT OK
+  content = content.replace(/.on\w+=.*".*"/g, ""); // NOT OK
+  content = content.replace(/.on\w+=.*\'.*\'/g, ""); // NOT OK
+
+  return content;
+});
+
+// CVE-2020-7656
+(function(responseText) {
+  var rscript = /<script\b[^<]*(?:(?!<\/script>)<[^<]*)*<\/script>/gi;
+  responseText.replace(rscript, ""); // NOT OK
+  return responseText;
+});
+
+// CVE-2019-1010091
+(function(text) {
+  text = text.replace(/<!--|--!?>/g, ""); // NOT OK
+  return text;
+});
+(function(text) {
+  while (/<!--|--!?>/g.test(text)) {
+    text = text.replace(/<!--|--!?>/g, ""); // OK
+  }
+
+  return text;
+});
+
+// CVE-2019-10767
+(function(id) {
+  id = id.replace(/\.\./g, ""); // OK (can not contain '..' afterwards)
+  return id;
+});
+(function(id) {
+  id = id.replace(/[\]\[*,;'"`<>\\?\/]/g, ""); // OK (or is it?)
+  return id;
+});
+
+// CVE-2019-8903
+(function(req) {
+  var REG_TRAVEL = /(\/)?\.\.\//g;
+  req.url = req.url.replace(REG_TRAVEL, ""); // NOT OK
+});
+(function(req) {
+  var beg;
+  for (var i = 0; i < req.url.length; i++) {
+    if (req.url[i] === "." && req.url[i + 1] === "/") beg = i + 1;
+    else if (req.url[i] === "?") break;
+  }
+
+  if (beg) req.url = req.url.substring(beg);
+});
+
+// New cases
+
+(function(x) {
+  x = x.replace(/<script\b[^<]*(?:(?!<\/script>)<[^<]*)*<\/script>/g, ""); // NOT OK
+
+  x = x.replace(/(\/|\s)on\w+=(\'|")?[^"]*(\'|")?/g, ""); // NOT OK
+
+  x = x.replace(/<\/script>/g, ""); // OK
+
+  x = x.replace(/<(.)?br(.)?>/g, ""); // OK
+  x = x.replace(/<\/?b>/g, ""); // OK
+  x = x.replace(/<(ul|ol)><\/(ul|ol)>/gi, ""); // OK
+  x = x.replace(/<li><\/li>/gi, ""); // OK
+
+  x = x.replace(/<!--(.*?)-->/gm, ""); // NOT OK
+  x = x.replace(/\sng-[a-z-]+/, ""); // NOT OK
+  x = x.replace(/\sng-[a-z-]+/g, ""); // NOT OK (ng-attributes)
+
+  x = x.replace(/(<!--\[CDATA\[|\]\]-->)/g, "\n"); // OK: not a sanitizer
+
+  x = x.replace(/<script.+desktop\-only.+<\/script>/g, ""); // OK [INCONSISTENCY]
+  x = x.replace(/<script async.+?<\/script>/g, ""); // OK
+  x = x.replace(/<!--[\s\S]*?-->|<\?(?:php)?[\s\S]*?\?>/gi, ""); // NOT OK
+
+  x = x.replace(/\x2E\x2E\x2F\x2E\x2E\x2F/g, ""); // NOT OK (matches "../../")
+
+  x = x.replace(/<script.*>.*<\/script>/gi, ""); // NOT OK
+
+  x = x.replace(/^(\.\.\/?)+/g, ""); // OK
+
+  // NOT OK
+  x = x.replace(/<script\b[^<]*(?:(?!<\/script>)<[^<]*)*<\/script>/g, function(
+    $0
+  ) {
+    return unknown ? $0 : "";
+  });
+
+  x = x.replace(/<\/?([a-z][a-z0-9]*)\b[^>]*>/gi, ""); // NOT OK [INCONSISTENCY]
+
+  x = x.replace(/\.\./g, ""); // OK
+  x = x.replace(/\.\.\//g, ""); // NOT OK
+  x = x.replace(/\/\.\./g, ""); // NOT OK
+
+  x = x.replace(/<script(.*?)>([\s\S]*?)<\/script>/gi, ""); // NOT OK
+
+  x = x.replace(/<(script|del)(?=[\s>])[\w\W]*?<\/\1\s*>/gi, ""); // NOT OK
+  x = x.replace(/\<script[\s\S]*?\>[\s\S]*?\<\/script\>/g, ""); // NOT OK
+  x = x.replace(/<(script|style|title)[^<]+<\/(script|style|title)>/gm, ""); // NOT OK
+  x = x.replace(/<script[^>]*>([\s\S]*?)<\/script>/gi, ""); // NOT OK
+  x = x.replace(/<script[\s\S]*?<\/script>/gi, ""); // NOT OK
+  x = x.replace(/ ?<!-- ?/g, ""); // NOT OK
+  x = x.replace(/require\('\.\.\/common'\);/g, ""); // OK
+  x = x.replace(/\.\.\/\.\.\/lib\//g, ""); // OK
+
+  while (x.indexOf(".") !== -1) {
+    x = x
+      .replace(/^\.\//, "")
+      .replace(/\/\.\//, "/")
+      .replace(/[^\/]*\/\.\.\//, ""); // OK
+  }
+
+  x = x.replace(/([^.\s]+\.)+/, ""); // OK
+
+  x = x.replace(/<!\-\-DEVEL[\d\D]*?DEVEL\-\->/g, ""); // OK
+
+  x = x
+    .replace(/^\.\//, "")
+    .replace(/\/\.\//, "/")
+    .replace(/[^\/]*\/\.\.\//, ""); // NOT OK
+
+  return x;
+});
+
+(function (content) {
+	content.replace(/<script.*\/script>/gi, ""); // NOT OK
+	content.replace(/<(script).*\/script>/gi, ""); // NOT OK
+	content.replace(/.+<(script).*\/script>/gi, ""); // NOT OK
+	content.replace(/.*<(script).*\/script>/gi, ""); // NOT OK
+});
+
+(function (content) {
+  content = content.replace(/<script[\s\S]*?<\/script>/gi, ""); // NOT OK
+  content = content.replace(/<[a-zA-Z\/](.|\n)*?>/g, '') || ' '; // NOT OK
+  content = content.replace(/<(script|iframe|video)[\s\S]*?<\/(script|iframe|video)>/g, '') // NOT OK
+  content = content.replace(/<(script|iframe|video)(.|\s)*?\/(script|iframe|video)>/g, '') // NOT OK
+  content = content.replace(/<[^<]*>/g, ""); // OK
+
+  n.cloneNode(false).outerHTML.replace(/<\/?[\w:\-]+ ?|=[\"][^\"]+\"|=\'[^\']+\'|=[\w\-]+|>/gi, '').replace(/[\w:\-]+/gi, function(a) { // NOT OK
+    o.push({specified : 1, nodeName : a});
+  });
+
+  n.cloneNode(false).outerHTML.replace(/<\/?[\w:\-]+ ?|=[\"][^\"]+\"|=\'[^\']+\'|=[\w\-]+|>/gi, '').replace(/[\w:\-]+/gi, function(a) { // NOT OK
+    o.push({specified : 1, nodeName : a});
+  });  
+});
\ No newline at end of file
diff --git a/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/XssThroughDom/IncompleteSanitization/tst.js b/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/XssThroughDom/IncompleteSanitization/tst.js
new file mode 100644
index 00000000000..dbd04664a52
--- /dev/null
+++ b/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/autogenerated/XssThroughDom/IncompleteSanitization/tst.js
@@ -0,0 +1,330 @@
+let express = require('express');
+var app = express();
+
+function bad1(s) {
+  return s.replace("'", ""); // NOT OK
+}
+
+function bad2(s) {
+  return s.replace(/'/, ""); // NOT OK
+}
+
+function bad3(s) {
+  return s.replace(/'/g, "\\'"); // NOT OK
+}
+
+function bad4(s) {
+  return s.replace(/'/g, "\\$&"); // NOT OK
+}
+
+function bad5(s) {
+  return s.replace(/['"]/g, "\\$&"); // NOT OK
+}
+
+function bad6(s) {
+  return s.replace(/(['"])/g, "\\$1"); // NOT OK
+}
+
+function bad7(s) {
+  return s.replace(/('|")/g, "\\$1"); // NOT OK
+}
+
+function bad8(s) {
+  return s.replace('|', '');  // NOT OK
+}
+
+function bad9(s) {
+  return s.replace(/"/g, "\\\"");  // NOT OK
+}
+
+function bad10(s) {
+  return s.replace("/", "%2F"); // NOT OK
+}
+
+function bad11(s) {
+  return s.replace("%25", "%"); // NOT OK
+}
+
+function bad12(s) {
+  return s.replace(`'`, ""); // NOT OK
+}
+
+function bad13(s) {
+  return s.replace("'", ``); // NOT OK
+}
+
+function bad14(s) {
+  return s.replace(`'`, ``); // NOT OK
+}
+
+function bad15(s) {
+  return s.replace("'" + "", ""); // NOT OK
+}
+
+function bad16(s) {
+  return s.replace("'", "" + ""); // NOT OK
+}
+
+function bad17(s) {
+  return s.replace("'" + "", "" + ""); // NOT OK
+}
+
+function good1(s) {
+  while (s.indexOf("'") > 0)
+    s = s.replace("'", ""); // OK
+  return s;
+}
+
+function good2(s) {
+  while (s.indexOf("'") > 0)
+    s = s.replace(/'/, ""); // OK
+  return s;
+}
+
+function good3(s) {
+  return s.replace("@user", "id10t"); // OK
+}
+
+function good4(s) {
+  return s.replace(/#/g, "\\d+"); // OK
+}
+
+function good5(s) {
+  return s.replace(/\\/g, "\\\\").replace(/['"]/g, "\\$&"); // OK
+}
+
+function good6(s) {
+  return s.replace(/[\\]/g, '\\\\').replace(/[\"]/g, '\\"'); // OK
+}
+
+function good7(s) {
+  s = s.replace(/[\\]/g, '\\\\');
+  return s.replace(/[\"]/g, '\\"'); // OK
+}
+
+function good8(s) {
+  return s.replace(/\W/g, '\\$&'); // OK
+}
+
+function good9(s) {
+  return s.replace(/[^\w\s]/g, '\\$&'); // OK
+}
+
+function good10(s) {
+  s = JSON.stringify(s);  // NB: escapes backslashes
+  s = s.slice(1, -1);
+  s = s.replace(/\\"/g, '"');
+  s = s.replace(/'/g, "\\'"); // OK
+  return "'" + s + "'";
+}
+
+function flowifyComments(s) {
+  return s.replace(/#/g, '💩'); // OK
+}
+
+function good11(s) {
+  return s.replace("%d", "42");
+}
+
+function good12(s) {
+	s.replace('[', '').replace(']', ''); // OK
+	s.replace('(', '').replace(')', ''); // OK
+	s.replace('{', '').replace('}', ''); // OK
+	s.replace('<', '').replace('>', ''); // NOT OK: too common as a bad HTML sanitizer
+
+	s.replace('[', '\\[').replace(']', '\\]'); // NOT OK
+	s.replace('{', '\\{').replace('}', '\\}'); // NOT OK
+
+	s = s.replace('[', ''); // OK
+	s = s.replace(']', ''); // OK
+	s.replace(/{/, '').replace(/}/, ''); // NOT OK: should have used a string literal if a single replacement was intended
+	s.replace(']', '').replace('[', ''); // probably OK, but still flagged
+}
+
+function newlines(s) {
+	// motivation for whitelist
+	require("child_process").execSync("which emacs").toString().replace("\n", ""); // OK
+
+	x.replace("\n", "").replace(x, y); // NOT OK
+	x.replace(x, y).replace("\n", ""); // NOT OK
+}
+
+app.get('/some/path', function(req, res) {
+  let untrusted = req.param("p");
+
+  // the query doesn't currently check whether untrusted input flows into the
+  // sanitiser, but we add these calls anyway to make the tests more realistic
+
+  bad1(untrusted);
+  bad2(untrusted);
+  bad3(untrusted);
+  bad4(untrusted);
+  bad5(untrusted);
+  bad6(untrusted);
+  bad7(untrusted);
+  bad8(untrusted);
+  bad9(untrusted);
+  bad10(untrusted);
+  bad11(untrusted);
+  bad12(untrusted);
+  bad13(untrusted);
+  bad14(untrusted);
+  bad15(untrusted);
+  bad16(untrusted);
+  bad17(untrusted);
+
+  good1(untrusted);
+  good2(untrusted);
+  good3(untrusted);
+  good4(untrusted);
+  good5(untrusted);
+  good6(untrusted);
+  good7(untrusted);
+  good8(untrusted);
+  good9(untrusted);
+  good10(untrusted);
+  flowifyComments(untrusted);
+  good11(untrusted);
+  good12(untrusted);
+});
+
+(function (s) {
+	var indirect = /'/;
+	return s.replace(indirect, ""); // NOT OK
+});
+
+(function (s) {
+	s.replace('"', '').replace('"', ''); // OK
+	s.replace("'", "").replace("'", ""); // OK
+});
+
+function bad18(p) {
+  return p.replace("/../", ""); // NOT OK
+}
+
+function typicalBadHtmlSanitizers(s) {
+	s().replace(/[<>]/g,''); // NOT OK
+	s().replace(/[<>&]/g, ''); // NOT OK
+	s().replace(/[<>"]/g, ''); // NOT OK
+	s().replace(/</g, '').replace(/>/g, ''); // NOT OK
+	s().replace(/</g, '').replace(/>/g, '').replace(/&/g, ''); // NOT OK
+	s().replace(/</g, '').replace(/&/g, '').replace(/>/g, ''); // NOT OK
+	s().replace(/&/g, '').replace(/>/g, '').replace(/</g, ''); // NOT OK
+
+	var s = s().replace(/</g, '');
+	s = s.replace(/>/g, '');  // NOT OK
+	s().replace(/</g, '&lt;').replace(/>/g, '&gt').replace(/&/g, '&amp;').replace(/"/g, '&#34;'); // OK
+	s().replace(/</g, '&lt;').replace(/>/g, '&gt').replace(/&/g, '&amp;').replace(/'/g, '&#39;'); // OK - single quotes or double quotes both work
+
+	s().replace(/</g, '&lt;').replace(/>/g, '&gt').replace(RE, function(match) {/* ... */ }); // OK (probably)
+
+	s().replace(/[<>'"&]/g,''); // OK
+
+	s().replace(/</g, '&lt;').replace(/>/g, '&gt;').replace(/"/g, '&quot;').replace(/&(?![\w\#]+;)/g, '&amp;'); // OK
+
+	s().replace(!encode ? /&(?!#?\w+;)/g : /&/g, '&amp;').replace(/</g, '&lt;').replace(/>/g, '&gt;').replace(/"/g, '&quot;').replace(/'/g, '&apos;'); // OK (and not recognized due to the ternary)
+
+	s().replace(/[\\/:\*\?"<>\|]/g, ''); // OK
+
+	s().replace(/[<>]/g,'_'); // OK (but probably unsafe)
+
+	s().replace(/&/g, "&gt;"); // OK
+
+	s().replace(/[\#\%4\/\-\~\>8\_\@0\!\&3\[651d\=e7fA2D\(aFBb]/g, ""); // OK
+
+	s().replace(/[<>]/g,'').replace(/[^a-z]/g, ''); // OK
+
+	s().replace(/[<>]/g,'').replace(/[^abc]/g, ''); // OK
+
+	s().replace(/[<>]/g,'').replace(/[ -~]/g, ''); // OK
+}
+
+function incompleteHtmlAttributeSanitization() {
+	'="' + s().replace(/[<>]/g,'') + '"'; // NOT OK
+	'="' + s().replace(/[<>&]/g, '') + '"'; // NOT OK
+	'="' + s().replace(/[<>"]/g, '') + '"'; // OK (maybe, since the attribute name is unknown)
+	'="' + s().replace(/[<>&"]/g,'') + '"'; // OK
+	'="' + s().replace(/[&"]/g,'') + '"'; // OK
+
+	'="' + s().replace(/[<>&']/g,'') + '"'; // NOT OK
+	"='" + s().replace(/[<>&"]/g,'') + "'"; // NOT OK
+	"='" + s().replace(/[<>&']/g,'') + "'"; // OK
+
+	'onFunkyEvent="' + s().replace(/[<>"]/g, '') + '"'; // NOT OK
+	'<div noise onFunkyEvent="' + s().replace(/[<>"]/g, '') + '"'; // NOT OK
+	'<div noise monday="' + s().replace(/[<>"]/g, '') + '"'; // OK
+	'monday="' + s().replace(/[<>"]/g, '') + '"'; // OK
+}
+
+function multiStepSanitization() {
+	function escapeHTML(value) {
+		return value.replace(/&/g, '&amp;').replace(/</g, '&lt;').replace(/>/g, '&gt;');
+	}
+	function attr_str(a) {
+		return ' ' + a.name + '="' + escapeHTML(a.value).replace(/"/g, '&quot;') + '"'; // OK
+	}
+	result += '<' + tag(node) + [].map.call(x, attr_str).join('') + '>';
+}
+
+function moreIncompleteHtmlAttributeSanitization() {
+	'<a' + noise + 'onclick="javascript:document.foo.bar(\'' + s().replace(/[<>"]/g, '') + '\'); return false;">'; // NOT OK
+	'="' + s().replace(/[<>]/g,'').replace(/[^\w ]+/g, '') + '"'; // OK
+	'="' + encodeURIComponent(s().replace(/[<>]/g,'')) + '"'; // OK
+
+	var arr = s().val().trim().replace(/^,|,$/g , '').replace(/^;|;$/g , '').replace(/<|>/g , '');
+	'="' + arr.join(" ") + '"'; // NOT OK
+	var arr2 = s().val().trim().replace(/^,|,$/g , '').replace(/^;|;$/g , '').replace(/<|>/g , '')
+	arr2 = arr2.replace(/"/g,"");
+	'="' + arr2.join(" ") + '"'; // OK
+
+	var x;
+	x = x.replace(/&/g, '&amp;');
+	x = x.replace(/</g, '&lt;').replace(/>/g, '&gt;');
+	'onclick="' + x + '"'; // NOT OK - but not flagged since the `x` replace chain is extended below
+	x = x.replace(/"/g, '&quot;');
+	'onclick="' + x + '"'; // OK
+
+	var y;
+	if (escapeAmpersand) {
+		y = y.replace(/&/g, '&amp;');
+	}
+	y = y.replace(/</g, '&lt;').replace(/>/g, '&gt;');
+	'onclick="' + y + '"'; // NOT OK - but not flagged since the `x` replace chain is extended below
+	if (escapeQuotes) {
+		y = y.replace(/"/g, '&quot;');
+	}
+	'onclick="' + y + '"'; // OK
+}
+
+function incompleteHtmlAttributeSanitization2() {
+	'=\'' + s().replace(/[&<>]/g,'') + '\''; // NOT OK
+	'=\'' + s().replace(/[<>]/g,'') + '\''; // NOT OK
+	'=\'' + s().replace(/[&<>"]/g,'') + '\''; // NOT OK
+	'=\'' + s().replace(/[<>&]/g, '') + '\''; // NOT OK
+	'="' + s().replace(/[<>&"]/g,'') + '"'; // OK
+	'=\'' + s().replace(/[<>&']/g,'') + '\''; // OK
+}
+
+function incompleteComplexSanitizers() {
+	'=\'' + s().replace(/[&<>"]/gm, function (str) { // NOT OK
+		if (str === "&")
+			return "&amp;";
+		if (str === "<")
+			return "&lt;";
+		if (str === ">")
+			return "&gt;";
+		if (str === "\"")
+			return "&quot;";
+	}) + '\'';
+
+	'="' + s().replace(/[&<>"]/gm, function (str) { // OK
+		if (str === "&")
+			return "&amp;";
+		if (str === "<")
+			return "&lt;";
+		if (str === ">")
+			return "&gt;";
+		if (str === "\"")
+			return "&quot;";
+	}) + '"';
+}
\ No newline at end of file

From 938a7e828cd0a3fa791576cea4ab49671113277a Mon Sep 17 00:00:00 2001
From: Jean Helie <jhelie@github.com>
Date: Fri, 16 Dec 2022 15:31:43 +0100
Subject: [PATCH 1413/1420] update tests

---
 .../EndpointFeatures.expected                 | 14093 +++++++++++++---
 .../ExtractEndpointDataInference.expected     |    75 +-
 .../ExtractEndpointDataTraining.expected      |  5500 +++++-
 .../FilteredTruePositives.expected            |     8 +
 .../getALikelyExternalLibraryCall.expected    |   866 +-
 5 files changed, 17683 insertions(+), 2859 deletions(-)

diff --git a/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/EndpointFeatures.expected b/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/EndpointFeatures.expected
index 7fb7c716ce0..a8dbf544fdd 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/EndpointFeatures.expected
+++ b/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/EndpointFeatures.expected
@@ -156,26 +156,496 @@ tokenFeatures
 | autogenerated/NosqlAndSqlInjection/untyped/dbo.js:10:17:10:19 | err | enclosingFunctionBody | fn dbClient connect process env DB_URL err client db client db process env DB_NAME fn err |
 | autogenerated/NosqlAndSqlInjection/untyped/dbo.js:10:17:10:19 | err | enclosingFunctionName | connect |
 | autogenerated/NosqlAndSqlInjection/untyped/dbo.js:10:17:10:19 | err | fileImports | mongodb |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:1:23:1:31 | 'express' | CalleeFlexibleAccessPath | require |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:1:23:1:31 | 'express' | InputArgumentIndex | 0 |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:1:23:1:31 | 'express' | calleeImports |  |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:1:23:1:31 | 'express' | contextFunctionInterfaces | hello() |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:1:23:1:31 | 'express' | contextSurroundingFunctionParameters |  |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:1:23:1:31 | 'express' | fileImports | @actions/github @octokit/core @octokit/graphql @octokit/request @octokit/rest express graphql |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:7:9:7:19 | '/post/:id' | CalleeFlexibleAccessPath | app.get |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:7:9:7:19 | '/post/:id' | InputArgumentIndex | 0 |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:7:9:7:19 | '/post/:id' | calleeImports | express |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:7:9:7:19 | '/post/:id' | contextFunctionInterfaces | hello() |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:7:9:7:19 | '/post/:id' | contextSurroundingFunctionParameters |  |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:7:9:7:19 | '/post/:id' | fileImports | @actions/github @octokit/core @octokit/graphql @octokit/request @octokit/rest express graphql |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:7:9:7:19 | '/post/:id' | receiverName | app |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:7:22:21:1 | functio ...   `);\\n} | CalleeFlexibleAccessPath | app.get |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:7:22:21:1 | functio ...   `);\\n} | InputArgumentIndex | 1 |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:7:22:21:1 | functio ...   `);\\n} | calleeImports | express |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:7:22:21:1 | functio ...   `);\\n} | contextFunctionInterfaces | hello() |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:7:22:21:1 | functio ...   `);\\n} | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:7:22:21:1 | functio ...   `);\\n} | fileImports | @actions/github @octokit/core @octokit/graphql @octokit/request @octokit/rest express graphql |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:7:22:21:1 | functio ...   `);\\n} | receiverName | app |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:10:34:20:5 | `\\n      ... }\\n    ` | CalleeFlexibleAccessPath | kit.graphql |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:10:34:20:5 | `\\n      ... }\\n    ` | InputArgumentIndex | 0 |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:10:34:20:5 | `\\n      ... }\\n    ` | calleeImports | @octokit/core |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:10:34:20:5 | `\\n      ... }\\n    ` | contextFunctionInterfaces | hello() |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:10:34:20:5 | `\\n      ... }\\n    ` | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:10:34:20:5 | `\\n      ... }\\n    ` | enclosingFunctionBody | req res id req params id response kit graphql \n      query {\n        repository(owner: "github", name: " id ") {\n          object(expression: "master:foo") {\n            ... on Blob {\n              text\n            }\n          }\n        }\n      }\n     |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:10:34:20:5 | `\\n      ... }\\n    ` | enclosingFunctionName | app.get#functionalargument |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:10:34:20:5 | `\\n      ... }\\n    ` | fileImports | @actions/github @octokit/core @octokit/graphql @octokit/request @octokit/rest express graphql |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:10:34:20:5 | `\\n      ... }\\n    ` | receiverName | kit |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:25:9:25:20 | '/user/:id/' | CalleeFlexibleAccessPath | app.get |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:25:9:25:20 | '/user/:id/' | InputArgumentIndex | 0 |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:25:9:25:20 | '/user/:id/' | calleeImports | express |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:25:9:25:20 | '/user/:id/' | contextFunctionInterfaces | hello() |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:25:9:25:20 | '/user/:id/' | contextSurroundingFunctionParameters |  |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:25:9:25:20 | '/user/:id/' | fileImports | @actions/github @octokit/core @octokit/graphql @octokit/request @octokit/rest express graphql |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:25:9:25:20 | '/user/:id/' | receiverName | app |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:25:23:34:1 | functio ... OT OK\\n} | CalleeFlexibleAccessPath | app.get |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:25:23:34:1 | functio ... OT OK\\n} | InputArgumentIndex | 1 |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:25:23:34:1 | functio ... OT OK\\n} | calleeImports | express |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:25:23:34:1 | functio ... OT OK\\n} | contextFunctionInterfaces | hello() |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:25:23:34:1 | functio ... OT OK\\n} | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:25:23:34:1 | functio ... OT OK\\n} | fileImports | @actions/github @octokit/core @octokit/graphql @octokit/request @octokit/rest express graphql |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:25:23:34:1 | functio ... OT OK\\n} | receiverName | app |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:27:30:27:40 | `foo ${id}` | CalleeFlexibleAccessPath | graphql |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:27:30:27:40 | `foo ${id}` | InputArgumentIndex | 0 |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:27:30:27:40 | `foo ${id}` | calleeImports | @octokit/graphql |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:27:30:27:40 | `foo ${id}` | contextFunctionInterfaces | hello() |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:27:30:27:40 | `foo ${id}` | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:27:30:27:40 | `foo ${id}` | enclosingFunctionBody | req res id req params id response graphql foo  id myGraphql withCustomRequest request response myGraphql foo  id withDefaults graphql defaults withDefaults foo  id |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:27:30:27:40 | `foo ${id}` | enclosingFunctionName | app.get#functionalargument |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:27:30:27:40 | `foo ${id}` | fileImports | @actions/github @octokit/core @octokit/graphql @octokit/request @octokit/rest express graphql |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:29:41:29:47 | request | CalleeFlexibleAccessPath | withCustomRequest |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:29:41:29:47 | request | InputArgumentIndex | 0 |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:29:41:29:47 | request | calleeImports | @octokit/graphql |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:29:41:29:47 | request | contextFunctionInterfaces | hello() |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:29:41:29:47 | request | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:29:41:29:47 | request | enclosingFunctionBody | req res id req params id response graphql foo  id myGraphql withCustomRequest request response myGraphql foo  id withDefaults graphql defaults withDefaults foo  id |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:29:41:29:47 | request | enclosingFunctionName | app.get#functionalargument |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:29:41:29:47 | request | fileImports | @actions/github @octokit/core @octokit/graphql @octokit/request @octokit/rest express graphql |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:30:32:30:42 | `foo ${id}` | CalleeFlexibleAccessPath | myGraphql |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:30:32:30:42 | `foo ${id}` | InputArgumentIndex | 0 |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:30:32:30:42 | `foo ${id}` | calleeImports | @octokit/graphql |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:30:32:30:42 | `foo ${id}` | contextFunctionInterfaces | hello() |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:30:32:30:42 | `foo ${id}` | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:30:32:30:42 | `foo ${id}` | enclosingFunctionBody | req res id req params id response graphql foo  id myGraphql withCustomRequest request response myGraphql foo  id withDefaults graphql defaults withDefaults foo  id |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:30:32:30:42 | `foo ${id}` | enclosingFunctionName | app.get#functionalargument |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:30:32:30:42 | `foo ${id}` | fileImports | @actions/github @octokit/core @octokit/graphql @octokit/request @octokit/rest express graphql |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:32:43:32:44 | {} | CalleeFlexibleAccessPath | graphql.defaults |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:32:43:32:44 | {} | InputArgumentIndex | 0 |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:32:43:32:44 | {} | calleeImports | @octokit/graphql |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:32:43:32:44 | {} | contextFunctionInterfaces | hello() |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:32:43:32:44 | {} | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:32:43:32:44 | {} | enclosingFunctionBody | req res id req params id response graphql foo  id myGraphql withCustomRequest request response myGraphql foo  id withDefaults graphql defaults withDefaults foo  id |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:32:43:32:44 | {} | enclosingFunctionName | app.get#functionalargument |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:32:43:32:44 | {} | fileImports | @actions/github @octokit/core @octokit/graphql @octokit/request @octokit/rest express graphql |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:32:43:32:44 | {} | receiverName | graphql |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:33:18:33:28 | `foo ${id}` | CalleeFlexibleAccessPath | withDefaults |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:33:18:33:28 | `foo ${id}` | InputArgumentIndex | 0 |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:33:18:33:28 | `foo ${id}` | calleeImports | @octokit/graphql |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:33:18:33:28 | `foo ${id}` | contextFunctionInterfaces | hello() |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:33:18:33:28 | `foo ${id}` | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:33:18:33:28 | `foo ${id}` | enclosingFunctionBody | req res id req params id response graphql foo  id myGraphql withCustomRequest request response myGraphql foo  id withDefaults graphql defaults withDefaults foo  id |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:33:18:33:28 | `foo ${id}` | enclosingFunctionName | app.get#functionalargument |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:33:18:33:28 | `foo ${id}` | fileImports | @actions/github @octokit/core @octokit/graphql @octokit/request @octokit/rest express graphql |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:36:29:36:46 | "@octokit/request" | CalleeFlexibleAccessPath | require |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:36:29:36:46 | "@octokit/request" | InputArgumentIndex | 0 |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:36:29:36:46 | "@octokit/request" | calleeImports |  |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:36:29:36:46 | "@octokit/request" | contextFunctionInterfaces | hello() |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:36:29:36:46 | "@octokit/request" | contextSurroundingFunctionParameters |  |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:36:29:36:46 | "@octokit/request" | fileImports | @actions/github @octokit/core @octokit/graphql @octokit/request @octokit/rest express graphql |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:38:9:38:23 | '/article/:id/' | CalleeFlexibleAccessPath | app.get |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:38:9:38:23 | '/article/:id/' | InputArgumentIndex | 0 |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:38:9:38:23 | '/article/:id/' | calleeImports | express |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:38:9:38:23 | '/article/:id/' | contextFunctionInterfaces | hello() |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:38:9:38:23 | '/article/:id/' | contextSurroundingFunctionParameters |  |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:38:9:38:23 | '/article/:id/' | fileImports | @actions/github @octokit/core @octokit/graphql @octokit/request @octokit/rest express graphql |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:38:9:38:23 | '/article/:id/' | receiverName | app |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:38:26:49:1 | async f ... OT OK\\n} | CalleeFlexibleAccessPath | app.get |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:38:26:49:1 | async f ... OT OK\\n} | InputArgumentIndex | 1 |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:38:26:49:1 | async f ... OT OK\\n} | calleeImports | express |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:38:26:49:1 | async f ... OT OK\\n} | contextFunctionInterfaces | hello() |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:38:26:49:1 | async f ... OT OK\\n} | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:38:26:49:1 | async f ... OT OK\\n} | fileImports | @actions/github @octokit/core @octokit/graphql @octokit/request @octokit/rest express graphql |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:38:26:49:1 | async f ... OT OK\\n} | receiverName | app |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:40:34:40:48 | "POST /graphql" | CalleeFlexibleAccessPath | request |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:40:34:40:48 | "POST /graphql" | InputArgumentIndex | 0 |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:40:34:40:48 | "POST /graphql" | calleeImports | @octokit/request |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:40:34:40:48 | "POST /graphql" | contextFunctionInterfaces | hello() |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:40:34:40:48 | "POST /graphql" | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:40:34:40:48 | "POST /graphql" | enclosingFunctionBody | req res id req params id result request POST /graphql headers authorization token 0000000000000000000000000000000000000001 query foo  id withDefaults request defaults withDefaults POST /graphql query foo  id |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:40:34:40:48 | "POST /graphql" | enclosingFunctionName | app.get#functionalargument |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:40:34:40:48 | "POST /graphql" | fileImports | @actions/github @octokit/core @octokit/graphql @octokit/request @octokit/rest express graphql |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:40:51:45:5 | {\\n      ... K\\n    } | CalleeFlexibleAccessPath | request |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:40:51:45:5 | {\\n      ... K\\n    } | InputArgumentIndex | 1 |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:40:51:45:5 | {\\n      ... K\\n    } | calleeImports | @octokit/request |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:40:51:45:5 | {\\n      ... K\\n    } | contextFunctionInterfaces | hello() |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:40:51:45:5 | {\\n      ... K\\n    } | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:40:51:45:5 | {\\n      ... K\\n    } | enclosingFunctionBody | req res id req params id result request POST /graphql headers authorization token 0000000000000000000000000000000000000001 query foo  id withDefaults request defaults withDefaults POST /graphql query foo  id |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:40:51:45:5 | {\\n      ... K\\n    } | enclosingFunctionName | app.get#functionalargument |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:40:51:45:5 | {\\n      ... K\\n    } | fileImports | @actions/github @octokit/core @octokit/graphql @octokit/request @octokit/rest express graphql |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:41:16:43:7 | {\\n      ...       } | CalleeFlexibleAccessPath | request |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:41:16:43:7 | {\\n      ...       } | InputAccessPathFromCallee | 1.headers |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:41:16:43:7 | {\\n      ...       } | InputArgumentIndex | 1 |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:41:16:43:7 | {\\n      ...       } | assignedToPropName | headers |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:41:16:43:7 | {\\n      ...       } | calleeImports | @octokit/request |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:41:16:43:7 | {\\n      ...       } | contextFunctionInterfaces | hello() |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:41:16:43:7 | {\\n      ...       } | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:41:16:43:7 | {\\n      ...       } | enclosingFunctionBody | req res id req params id result request POST /graphql headers authorization token 0000000000000000000000000000000000000001 query foo  id withDefaults request defaults withDefaults POST /graphql query foo  id |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:41:16:43:7 | {\\n      ...       } | enclosingFunctionName | app.get#functionalargument |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:41:16:43:7 | {\\n      ...       } | fileImports | @actions/github @octokit/core @octokit/graphql @octokit/request @octokit/rest express graphql |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:42:24:42:71 | "token  ... 000001" | CalleeFlexibleAccessPath | request |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:42:24:42:71 | "token  ... 000001" | InputAccessPathFromCallee | 1.headers.authorization |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:42:24:42:71 | "token  ... 000001" | InputArgumentIndex | 1 |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:42:24:42:71 | "token  ... 000001" | assignedToPropName | authorization |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:42:24:42:71 | "token  ... 000001" | calleeImports | @octokit/request |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:42:24:42:71 | "token  ... 000001" | contextFunctionInterfaces | hello() |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:42:24:42:71 | "token  ... 000001" | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:42:24:42:71 | "token  ... 000001" | enclosingFunctionBody | req res id req params id result request POST /graphql headers authorization token 0000000000000000000000000000000000000001 query foo  id withDefaults request defaults withDefaults POST /graphql query foo  id |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:42:24:42:71 | "token  ... 000001" | enclosingFunctionName | app.get#functionalargument |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:42:24:42:71 | "token  ... 000001" | fileImports | @actions/github @octokit/core @octokit/graphql @octokit/request @octokit/rest express graphql |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:44:14:44:24 | `foo ${id}` | CalleeFlexibleAccessPath | request |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:44:14:44:24 | `foo ${id}` | InputAccessPathFromCallee | 1.query |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:44:14:44:24 | `foo ${id}` | InputArgumentIndex | 1 |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:44:14:44:24 | `foo ${id}` | assignedToPropName | query |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:44:14:44:24 | `foo ${id}` | calleeImports | @octokit/request |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:44:14:44:24 | `foo ${id}` | contextFunctionInterfaces | hello() |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:44:14:44:24 | `foo ${id}` | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:44:14:44:24 | `foo ${id}` | enclosingFunctionBody | req res id req params id result request POST /graphql headers authorization token 0000000000000000000000000000000000000001 query foo  id withDefaults request defaults withDefaults POST /graphql query foo  id |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:44:14:44:24 | `foo ${id}` | enclosingFunctionName | app.get#functionalargument |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:44:14:44:24 | `foo ${id}` | fileImports | @actions/github @octokit/core @octokit/graphql @octokit/request @octokit/rest express graphql |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:47:43:47:44 | {} | CalleeFlexibleAccessPath | request.defaults |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:47:43:47:44 | {} | InputArgumentIndex | 0 |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:47:43:47:44 | {} | calleeImports | @octokit/request |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:47:43:47:44 | {} | contextFunctionInterfaces | hello() |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:47:43:47:44 | {} | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:47:43:47:44 | {} | enclosingFunctionBody | req res id req params id result request POST /graphql headers authorization token 0000000000000000000000000000000000000001 query foo  id withDefaults request defaults withDefaults POST /graphql query foo  id |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:47:43:47:44 | {} | enclosingFunctionName | app.get#functionalargument |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:47:43:47:44 | {} | fileImports | @actions/github @octokit/core @octokit/graphql @octokit/request @octokit/rest express graphql |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:47:43:47:44 | {} | receiverName | request |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:48:18:48:32 | "POST /graphql" | CalleeFlexibleAccessPath | withDefaults |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:48:18:48:32 | "POST /graphql" | InputArgumentIndex | 0 |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:48:18:48:32 | "POST /graphql" | calleeImports | @octokit/request |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:48:18:48:32 | "POST /graphql" | contextFunctionInterfaces | hello() |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:48:18:48:32 | "POST /graphql" | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:48:18:48:32 | "POST /graphql" | enclosingFunctionBody | req res id req params id result request POST /graphql headers authorization token 0000000000000000000000000000000000000001 query foo  id withDefaults request defaults withDefaults POST /graphql query foo  id |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:48:18:48:32 | "POST /graphql" | enclosingFunctionName | app.get#functionalargument |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:48:18:48:32 | "POST /graphql" | fileImports | @actions/github @octokit/core @octokit/graphql @octokit/request @octokit/rest express graphql |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:48:35:48:56 | { query ... {id}` } | CalleeFlexibleAccessPath | withDefaults |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:48:35:48:56 | { query ... {id}` } | InputArgumentIndex | 1 |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:48:35:48:56 | { query ... {id}` } | calleeImports | @octokit/request |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:48:35:48:56 | { query ... {id}` } | contextFunctionInterfaces | hello() |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:48:35:48:56 | { query ... {id}` } | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:48:35:48:56 | { query ... {id}` } | enclosingFunctionBody | req res id req params id result request POST /graphql headers authorization token 0000000000000000000000000000000000000001 query foo  id withDefaults request defaults withDefaults POST /graphql query foo  id |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:48:35:48:56 | { query ... {id}` } | enclosingFunctionName | app.get#functionalargument |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:48:35:48:56 | { query ... {id}` } | fileImports | @actions/github @octokit/core @octokit/graphql @octokit/request @octokit/rest express graphql |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:48:44:48:54 | `foo ${id}` | CalleeFlexibleAccessPath | withDefaults |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:48:44:48:54 | `foo ${id}` | InputAccessPathFromCallee | 1.query |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:48:44:48:54 | `foo ${id}` | InputArgumentIndex | 1 |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:48:44:48:54 | `foo ${id}` | assignedToPropName | query |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:48:44:48:54 | `foo ${id}` | calleeImports | @octokit/request |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:48:44:48:54 | `foo ${id}` | contextFunctionInterfaces | hello() |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:48:44:48:54 | `foo ${id}` | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:48:44:48:54 | `foo ${id}` | enclosingFunctionBody | req res id req params id result request POST /graphql headers authorization token 0000000000000000000000000000000000000001 query foo  id withDefaults request defaults withDefaults POST /graphql query foo  id |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:48:44:48:54 | `foo ${id}` | enclosingFunctionName | app.get#functionalargument |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:48:44:48:54 | `foo ${id}` | fileImports | @actions/github @octokit/core @octokit/graphql @octokit/request @octokit/rest express graphql |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:54:9:54:21 | '/event/:id/' | CalleeFlexibleAccessPath | app.get |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:54:9:54:21 | '/event/:id/' | InputArgumentIndex | 0 |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:54:9:54:21 | '/event/:id/' | calleeImports | express |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:54:9:54:21 | '/event/:id/' | contextFunctionInterfaces | hello() |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:54:9:54:21 | '/event/:id/' | contextSurroundingFunctionParameters |  |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:54:9:54:21 | '/event/:id/' | fileImports | @actions/github @octokit/core @octokit/graphql @octokit/request @octokit/rest express graphql |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:54:9:54:21 | '/event/:id/' | receiverName | app |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:54:24:59:1 | async f ... OT OK\\n} | CalleeFlexibleAccessPath | app.get |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:54:24:59:1 | async f ... OT OK\\n} | InputArgumentIndex | 1 |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:54:24:59:1 | async f ... OT OK\\n} | calleeImports | express |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:54:24:59:1 | async f ... OT OK\\n} | contextFunctionInterfaces | hello() |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:54:24:59:1 | async f ... OT OK\\n} | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:54:24:59:1 | async f ... OT OK\\n} | fileImports | @actions/github @octokit/core @octokit/graphql @octokit/request @octokit/rest express graphql |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:54:24:59:1 | async f ... OT OK\\n} | receiverName | app |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:56:39:56:49 | `foo ${id}` | CalleeFlexibleAccessPath | kit2.graphql |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:56:39:56:49 | `foo ${id}` | InputArgumentIndex | 0 |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:56:39:56:49 | `foo ${id}` | calleeImports | @octokit/rest |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:56:39:56:49 | `foo ${id}` | contextFunctionInterfaces | hello() |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:56:39:56:49 | `foo ${id}` | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:56:39:56:49 | `foo ${id}` | enclosingFunctionBody | req res id req params id result kit2 graphql foo  id result2 kit2 request POST /graphql query foo  id |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:56:39:56:49 | `foo ${id}` | enclosingFunctionName | app.get#functionalargument |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:56:39:56:49 | `foo ${id}` | fileImports | @actions/github @octokit/core @octokit/graphql @octokit/request @octokit/rest express graphql |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:56:39:56:49 | `foo ${id}` | receiverName | kit2 |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:58:40:58:54 | "POST /graphql" | CalleeFlexibleAccessPath | kit2.request |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:58:40:58:54 | "POST /graphql" | InputArgumentIndex | 0 |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:58:40:58:54 | "POST /graphql" | calleeImports | @octokit/rest |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:58:40:58:54 | "POST /graphql" | contextFunctionInterfaces | hello() |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:58:40:58:54 | "POST /graphql" | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:58:40:58:54 | "POST /graphql" | enclosingFunctionBody | req res id req params id result kit2 graphql foo  id result2 kit2 request POST /graphql query foo  id |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:58:40:58:54 | "POST /graphql" | enclosingFunctionName | app.get#functionalargument |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:58:40:58:54 | "POST /graphql" | fileImports | @actions/github @octokit/core @octokit/graphql @octokit/request @octokit/rest express graphql |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:58:40:58:54 | "POST /graphql" | receiverName | kit2 |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:58:57:58:78 | { query ... {id}` } | CalleeFlexibleAccessPath | kit2.request |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:58:57:58:78 | { query ... {id}` } | InputArgumentIndex | 1 |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:58:57:58:78 | { query ... {id}` } | calleeImports | @octokit/rest |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:58:57:58:78 | { query ... {id}` } | contextFunctionInterfaces | hello() |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:58:57:58:78 | { query ... {id}` } | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:58:57:58:78 | { query ... {id}` } | enclosingFunctionBody | req res id req params id result kit2 graphql foo  id result2 kit2 request POST /graphql query foo  id |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:58:57:58:78 | { query ... {id}` } | enclosingFunctionName | app.get#functionalargument |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:58:57:58:78 | { query ... {id}` } | fileImports | @actions/github @octokit/core @octokit/graphql @octokit/request @octokit/rest express graphql |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:58:57:58:78 | { query ... {id}` } | receiverName | kit2 |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:58:66:58:76 | `foo ${id}` | CalleeFlexibleAccessPath | kit2.request |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:58:66:58:76 | `foo ${id}` | InputAccessPathFromCallee | 1.query |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:58:66:58:76 | `foo ${id}` | InputArgumentIndex | 1 |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:58:66:58:76 | `foo ${id}` | assignedToPropName | query |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:58:66:58:76 | `foo ${id}` | calleeImports | @octokit/rest |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:58:66:58:76 | `foo ${id}` | contextFunctionInterfaces | hello() |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:58:66:58:76 | `foo ${id}` | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:58:66:58:76 | `foo ${id}` | enclosingFunctionBody | req res id req params id result kit2 graphql foo  id result2 kit2 request POST /graphql query foo  id |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:58:66:58:76 | `foo ${id}` | enclosingFunctionName | app.get#functionalargument |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:58:66:58:76 | `foo ${id}` | fileImports | @actions/github @octokit/core @octokit/graphql @octokit/request @octokit/rest express graphql |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:62:26:66:1 | `\\n  typ ... g\\n  }\\n` | CalleeFlexibleAccessPath | buildSchema |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:62:26:66:1 | `\\n  typ ... g\\n  }\\n` | InputArgumentIndex | 0 |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:62:26:66:1 | `\\n  typ ... g\\n  }\\n` | calleeImports | graphql |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:62:26:66:1 | `\\n  typ ... g\\n  }\\n` | contextFunctionInterfaces | hello() |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:62:26:66:1 | `\\n  typ ... g\\n  }\\n` | contextSurroundingFunctionParameters |  |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:62:26:66:1 | `\\n  typ ... g\\n  }\\n` | fileImports | @actions/github @octokit/core @octokit/graphql @octokit/request @octokit/rest express graphql |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:73:9:73:20 | '/thing/:id' | CalleeFlexibleAccessPath | app.get |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:73:9:73:20 | '/thing/:id' | InputArgumentIndex | 0 |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:73:9:73:20 | '/thing/:id' | calleeImports | express |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:73:9:73:20 | '/thing/:id' | contextFunctionInterfaces | hello() |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:73:9:73:20 | '/thing/:id' | contextSurroundingFunctionParameters |  |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:73:9:73:20 | '/thing/:id' | fileImports | @actions/github @octokit/core @octokit/graphql @octokit/request @octokit/rest express graphql |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:73:9:73:20 | '/thing/:id' | receiverName | app |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:73:23:113:1 | async f ... \\n  })\\n} | CalleeFlexibleAccessPath | app.get |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:73:23:113:1 | async f ... \\n  })\\n} | InputArgumentIndex | 1 |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:73:23:113:1 | async f ... \\n  })\\n} | calleeImports | express |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:73:23:113:1 | async f ... \\n  })\\n} | contextFunctionInterfaces | hello() |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:73:23:113:1 | async f ... \\n  })\\n} | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:73:23:113:1 | async f ... \\n  })\\n} | fileImports | @actions/github @octokit/core @octokit/graphql @octokit/request @octokit/rest express graphql |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:73:23:113:1 | async f ... \\n  })\\n} | receiverName | app |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:75:38:75:43 | schema | CalleeFlexibleAccessPath | nativeGraphql |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:75:38:75:43 | schema | InputArgumentIndex | 0 |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:75:38:75:43 | schema | calleeImports | graphql |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:75:38:75:43 | schema | contextFunctionInterfaces | hello() |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:75:38:75:43 | schema | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:75:38:75:43 | schema | enclosingFunctionBody | req res id req query id result nativeGraphql schema { foo id  } root fetch https://my-grpahql-server.com/graphql method POST headers Content-Type application/json body JSON stringify query {\n        thing {\n          name\n          url\n           id \n        }\n      } fetch https://my-grpahql-server.com/graphql method POST headers Content-Type application/json body JSON stringify query {\n        thing {\n          name\n          url\n          $id\n        }\n      } variables id id |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:75:38:75:43 | schema | enclosingFunctionName | app.get#functionalargument |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:75:38:75:43 | schema | fileImports | @actions/github @octokit/core @octokit/graphql @octokit/request @octokit/rest express graphql |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:75:46:75:64 | "{ foo" + id + " }" | CalleeFlexibleAccessPath | nativeGraphql |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:75:46:75:64 | "{ foo" + id + " }" | InputArgumentIndex | 1 |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:75:46:75:64 | "{ foo" + id + " }" | calleeImports | graphql |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:75:46:75:64 | "{ foo" + id + " }" | contextFunctionInterfaces | hello() |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:75:46:75:64 | "{ foo" + id + " }" | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:75:46:75:64 | "{ foo" + id + " }" | enclosingFunctionBody | req res id req query id result nativeGraphql schema { foo id  } root fetch https://my-grpahql-server.com/graphql method POST headers Content-Type application/json body JSON stringify query {\n        thing {\n          name\n          url\n           id \n        }\n      } fetch https://my-grpahql-server.com/graphql method POST headers Content-Type application/json body JSON stringify query {\n        thing {\n          name\n          url\n          $id\n        }\n      } variables id id |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:75:46:75:64 | "{ foo" + id + " }" | enclosingFunctionName | app.get#functionalargument |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:75:46:75:64 | "{ foo" + id + " }" | fileImports | @actions/github @octokit/core @octokit/graphql @octokit/request @octokit/rest express graphql |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:75:67:75:70 | root | CalleeFlexibleAccessPath | nativeGraphql |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:75:67:75:70 | root | InputArgumentIndex | 2 |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:75:67:75:70 | root | calleeImports | graphql |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:75:67:75:70 | root | contextFunctionInterfaces | hello() |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:75:67:75:70 | root | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:75:67:75:70 | root | enclosingFunctionBody | req res id req query id result nativeGraphql schema { foo id  } root fetch https://my-grpahql-server.com/graphql method POST headers Content-Type application/json body JSON stringify query {\n        thing {\n          name\n          url\n           id \n        }\n      } fetch https://my-grpahql-server.com/graphql method POST headers Content-Type application/json body JSON stringify query {\n        thing {\n          name\n          url\n          $id\n        }\n      } variables id id |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:75:67:75:70 | root | enclosingFunctionName | app.get#functionalargument |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:75:67:75:70 | root | fileImports | @actions/github @octokit/core @octokit/graphql @octokit/request @octokit/rest express graphql |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:77:9:77:47 | "https: ... raphql" | CalleeFlexibleAccessPath | fetch |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:77:9:77:47 | "https: ... raphql" | InputArgumentIndex | 0 |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:77:9:77:47 | "https: ... raphql" | contextFunctionInterfaces | hello() |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:77:9:77:47 | "https: ... raphql" | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:77:9:77:47 | "https: ... raphql" | enclosingFunctionBody | req res id req query id result nativeGraphql schema { foo id  } root fetch https://my-grpahql-server.com/graphql method POST headers Content-Type application/json body JSON stringify query {\n        thing {\n          name\n          url\n           id \n        }\n      } fetch https://my-grpahql-server.com/graphql method POST headers Content-Type application/json body JSON stringify query {\n        thing {\n          name\n          url\n          $id\n        }\n      } variables id id |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:77:9:77:47 | "https: ... raphql" | enclosingFunctionName | app.get#functionalargument |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:77:9:77:47 | "https: ... raphql" | fileImports | @actions/github @octokit/core @octokit/graphql @octokit/request @octokit/rest express graphql |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:77:50:92:3 | {\\n    m ...  })\\n  } | CalleeFlexibleAccessPath | fetch |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:77:50:92:3 | {\\n    m ...  })\\n  } | InputArgumentIndex | 1 |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:77:50:92:3 | {\\n    m ...  })\\n  } | contextFunctionInterfaces | hello() |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:77:50:92:3 | {\\n    m ...  })\\n  } | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:77:50:92:3 | {\\n    m ...  })\\n  } | enclosingFunctionBody | req res id req query id result nativeGraphql schema { foo id  } root fetch https://my-grpahql-server.com/graphql method POST headers Content-Type application/json body JSON stringify query {\n        thing {\n          name\n          url\n           id \n        }\n      } fetch https://my-grpahql-server.com/graphql method POST headers Content-Type application/json body JSON stringify query {\n        thing {\n          name\n          url\n          $id\n        }\n      } variables id id |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:77:50:92:3 | {\\n    m ...  })\\n  } | enclosingFunctionName | app.get#functionalargument |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:77:50:92:3 | {\\n    m ...  })\\n  } | fileImports | @actions/github @octokit/core @octokit/graphql @octokit/request @octokit/rest express graphql |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:78:13:78:18 | "POST" | CalleeFlexibleAccessPath | fetch |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:78:13:78:18 | "POST" | InputAccessPathFromCallee | 1.method |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:78:13:78:18 | "POST" | InputArgumentIndex | 1 |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:78:13:78:18 | "POST" | assignedToPropName | method |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:78:13:78:18 | "POST" | contextFunctionInterfaces | hello() |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:78:13:78:18 | "POST" | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:78:13:78:18 | "POST" | enclosingFunctionBody | req res id req query id result nativeGraphql schema { foo id  } root fetch https://my-grpahql-server.com/graphql method POST headers Content-Type application/json body JSON stringify query {\n        thing {\n          name\n          url\n           id \n        }\n      } fetch https://my-grpahql-server.com/graphql method POST headers Content-Type application/json body JSON stringify query {\n        thing {\n          name\n          url\n          $id\n        }\n      } variables id id |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:78:13:78:18 | "POST" | enclosingFunctionName | app.get#functionalargument |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:78:13:78:18 | "POST" | fileImports | @actions/github @octokit/core @octokit/graphql @octokit/request @octokit/rest express graphql |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:79:14:81:5 | {\\n      ... "\\n    } | CalleeFlexibleAccessPath | fetch |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:79:14:81:5 | {\\n      ... "\\n    } | InputAccessPathFromCallee | 1.headers |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:79:14:81:5 | {\\n      ... "\\n    } | InputArgumentIndex | 1 |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:79:14:81:5 | {\\n      ... "\\n    } | assignedToPropName | headers |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:79:14:81:5 | {\\n      ... "\\n    } | contextFunctionInterfaces | hello() |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:79:14:81:5 | {\\n      ... "\\n    } | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:79:14:81:5 | {\\n      ... "\\n    } | enclosingFunctionBody | req res id req query id result nativeGraphql schema { foo id  } root fetch https://my-grpahql-server.com/graphql method POST headers Content-Type application/json body JSON stringify query {\n        thing {\n          name\n          url\n           id \n        }\n      } fetch https://my-grpahql-server.com/graphql method POST headers Content-Type application/json body JSON stringify query {\n        thing {\n          name\n          url\n          $id\n        }\n      } variables id id |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:79:14:81:5 | {\\n      ... "\\n    } | enclosingFunctionName | app.get#functionalargument |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:79:14:81:5 | {\\n      ... "\\n    } | fileImports | @actions/github @octokit/core @octokit/graphql @octokit/request @octokit/rest express graphql |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:80:23:80:40 | "application/json" | CalleeFlexibleAccessPath | fetch |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:80:23:80:40 | "application/json" | InputAccessPathFromCallee | 1.headers.Content-Type |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:80:23:80:40 | "application/json" | InputArgumentIndex | 1 |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:80:23:80:40 | "application/json" | assignedToPropName | Content-Type |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:80:23:80:40 | "application/json" | contextFunctionInterfaces | hello() |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:80:23:80:40 | "application/json" | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:80:23:80:40 | "application/json" | enclosingFunctionBody | req res id req query id result nativeGraphql schema { foo id  } root fetch https://my-grpahql-server.com/graphql method POST headers Content-Type application/json body JSON stringify query {\n        thing {\n          name\n          url\n           id \n        }\n      } fetch https://my-grpahql-server.com/graphql method POST headers Content-Type application/json body JSON stringify query {\n        thing {\n          name\n          url\n          $id\n        }\n      } variables id id |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:80:23:80:40 | "application/json" | enclosingFunctionName | app.get#functionalargument |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:80:23:80:40 | "application/json" | fileImports | @actions/github @octokit/core @octokit/graphql @octokit/request @octokit/rest express graphql |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:82:11:91:6 | JSON.st ... \\n    }) | CalleeFlexibleAccessPath | fetch |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:82:11:91:6 | JSON.st ... \\n    }) | InputAccessPathFromCallee | 1.body |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:82:11:91:6 | JSON.st ... \\n    }) | InputArgumentIndex | 1 |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:82:11:91:6 | JSON.st ... \\n    }) | assignedToPropName | body |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:82:11:91:6 | JSON.st ... \\n    }) | contextFunctionInterfaces | hello() |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:82:11:91:6 | JSON.st ... \\n    }) | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:82:11:91:6 | JSON.st ... \\n    }) | enclosingFunctionBody | req res id req query id result nativeGraphql schema { foo id  } root fetch https://my-grpahql-server.com/graphql method POST headers Content-Type application/json body JSON stringify query {\n        thing {\n          name\n          url\n           id \n        }\n      } fetch https://my-grpahql-server.com/graphql method POST headers Content-Type application/json body JSON stringify query {\n        thing {\n          name\n          url\n          $id\n        }\n      } variables id id |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:82:11:91:6 | JSON.st ... \\n    }) | enclosingFunctionName | app.get#functionalargument |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:82:11:91:6 | JSON.st ... \\n    }) | fileImports | @actions/github @octokit/core @octokit/graphql @octokit/request @octokit/rest express graphql |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:82:26:91:5 | {\\n      ... `\\n    } | CalleeFlexibleAccessPath | JSON.stringify |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:82:26:91:5 | {\\n      ... `\\n    } | InputArgumentIndex | 0 |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:82:26:91:5 | {\\n      ... `\\n    } | contextFunctionInterfaces | hello() |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:82:26:91:5 | {\\n      ... `\\n    } | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:82:26:91:5 | {\\n      ... `\\n    } | enclosingFunctionBody | req res id req query id result nativeGraphql schema { foo id  } root fetch https://my-grpahql-server.com/graphql method POST headers Content-Type application/json body JSON stringify query {\n        thing {\n          name\n          url\n           id \n        }\n      } fetch https://my-grpahql-server.com/graphql method POST headers Content-Type application/json body JSON stringify query {\n        thing {\n          name\n          url\n          $id\n        }\n      } variables id id |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:82:26:91:5 | {\\n      ... `\\n    } | enclosingFunctionName | app.get#functionalargument |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:82:26:91:5 | {\\n      ... `\\n    } | fileImports | @actions/github @octokit/core @octokit/graphql @octokit/request @octokit/rest express graphql |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:82:26:91:5 | {\\n      ... `\\n    } | receiverName | JSON |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:84:14:90:8 | `{\\n     ...      }` | CalleeFlexibleAccessPath | JSON.stringify |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:84:14:90:8 | `{\\n     ...      }` | InputAccessPathFromCallee | 0.query |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:84:14:90:8 | `{\\n     ...      }` | InputArgumentIndex | 0 |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:84:14:90:8 | `{\\n     ...      }` | assignedToPropName | query |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:84:14:90:8 | `{\\n     ...      }` | contextFunctionInterfaces | hello() |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:84:14:90:8 | `{\\n     ...      }` | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:84:14:90:8 | `{\\n     ...      }` | enclosingFunctionBody | req res id req query id result nativeGraphql schema { foo id  } root fetch https://my-grpahql-server.com/graphql method POST headers Content-Type application/json body JSON stringify query {\n        thing {\n          name\n          url\n           id \n        }\n      } fetch https://my-grpahql-server.com/graphql method POST headers Content-Type application/json body JSON stringify query {\n        thing {\n          name\n          url\n          $id\n        }\n      } variables id id |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:84:14:90:8 | `{\\n     ...      }` | enclosingFunctionName | app.get#functionalargument |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:84:14:90:8 | `{\\n     ...      }` | fileImports | @actions/github @octokit/core @octokit/graphql @octokit/request @octokit/rest express graphql |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:94:9:94:47 | "https: ... raphql" | CalleeFlexibleAccessPath | fetch |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:94:9:94:47 | "https: ... raphql" | InputArgumentIndex | 0 |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:94:9:94:47 | "https: ... raphql" | contextFunctionInterfaces | hello() |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:94:9:94:47 | "https: ... raphql" | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:94:9:94:47 | "https: ... raphql" | enclosingFunctionBody | req res id req query id result nativeGraphql schema { foo id  } root fetch https://my-grpahql-server.com/graphql method POST headers Content-Type application/json body JSON stringify query {\n        thing {\n          name\n          url\n           id \n        }\n      } fetch https://my-grpahql-server.com/graphql method POST headers Content-Type application/json body JSON stringify query {\n        thing {\n          name\n          url\n          $id\n        }\n      } variables id id |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:94:9:94:47 | "https: ... raphql" | enclosingFunctionName | app.get#functionalargument |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:94:9:94:47 | "https: ... raphql" | fileImports | @actions/github @octokit/core @octokit/graphql @octokit/request @octokit/rest express graphql |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:94:50:112:3 | {\\n    m ...  })\\n  } | CalleeFlexibleAccessPath | fetch |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:94:50:112:3 | {\\n    m ...  })\\n  } | InputArgumentIndex | 1 |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:94:50:112:3 | {\\n    m ...  })\\n  } | contextFunctionInterfaces | hello() |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:94:50:112:3 | {\\n    m ...  })\\n  } | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:94:50:112:3 | {\\n    m ...  })\\n  } | enclosingFunctionBody | req res id req query id result nativeGraphql schema { foo id  } root fetch https://my-grpahql-server.com/graphql method POST headers Content-Type application/json body JSON stringify query {\n        thing {\n          name\n          url\n           id \n        }\n      } fetch https://my-grpahql-server.com/graphql method POST headers Content-Type application/json body JSON stringify query {\n        thing {\n          name\n          url\n          $id\n        }\n      } variables id id |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:94:50:112:3 | {\\n    m ...  })\\n  } | enclosingFunctionName | app.get#functionalargument |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:94:50:112:3 | {\\n    m ...  })\\n  } | fileImports | @actions/github @octokit/core @octokit/graphql @octokit/request @octokit/rest express graphql |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:95:13:95:18 | "POST" | CalleeFlexibleAccessPath | fetch |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:95:13:95:18 | "POST" | InputAccessPathFromCallee | 1.method |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:95:13:95:18 | "POST" | InputArgumentIndex | 1 |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:95:13:95:18 | "POST" | assignedToPropName | method |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:95:13:95:18 | "POST" | contextFunctionInterfaces | hello() |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:95:13:95:18 | "POST" | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:95:13:95:18 | "POST" | enclosingFunctionBody | req res id req query id result nativeGraphql schema { foo id  } root fetch https://my-grpahql-server.com/graphql method POST headers Content-Type application/json body JSON stringify query {\n        thing {\n          name\n          url\n           id \n        }\n      } fetch https://my-grpahql-server.com/graphql method POST headers Content-Type application/json body JSON stringify query {\n        thing {\n          name\n          url\n          $id\n        }\n      } variables id id |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:95:13:95:18 | "POST" | enclosingFunctionName | app.get#functionalargument |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:95:13:95:18 | "POST" | fileImports | @actions/github @octokit/core @octokit/graphql @octokit/request @octokit/rest express graphql |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:96:14:98:5 | {\\n      ... "\\n    } | CalleeFlexibleAccessPath | fetch |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:96:14:98:5 | {\\n      ... "\\n    } | InputAccessPathFromCallee | 1.headers |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:96:14:98:5 | {\\n      ... "\\n    } | InputArgumentIndex | 1 |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:96:14:98:5 | {\\n      ... "\\n    } | assignedToPropName | headers |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:96:14:98:5 | {\\n      ... "\\n    } | contextFunctionInterfaces | hello() |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:96:14:98:5 | {\\n      ... "\\n    } | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:96:14:98:5 | {\\n      ... "\\n    } | enclosingFunctionBody | req res id req query id result nativeGraphql schema { foo id  } root fetch https://my-grpahql-server.com/graphql method POST headers Content-Type application/json body JSON stringify query {\n        thing {\n          name\n          url\n           id \n        }\n      } fetch https://my-grpahql-server.com/graphql method POST headers Content-Type application/json body JSON stringify query {\n        thing {\n          name\n          url\n          $id\n        }\n      } variables id id |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:96:14:98:5 | {\\n      ... "\\n    } | enclosingFunctionName | app.get#functionalargument |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:96:14:98:5 | {\\n      ... "\\n    } | fileImports | @actions/github @octokit/core @octokit/graphql @octokit/request @octokit/rest express graphql |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:97:23:97:40 | "application/json" | CalleeFlexibleAccessPath | fetch |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:97:23:97:40 | "application/json" | InputAccessPathFromCallee | 1.headers.Content-Type |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:97:23:97:40 | "application/json" | InputArgumentIndex | 1 |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:97:23:97:40 | "application/json" | assignedToPropName | Content-Type |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:97:23:97:40 | "application/json" | contextFunctionInterfaces | hello() |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:97:23:97:40 | "application/json" | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:97:23:97:40 | "application/json" | enclosingFunctionBody | req res id req query id result nativeGraphql schema { foo id  } root fetch https://my-grpahql-server.com/graphql method POST headers Content-Type application/json body JSON stringify query {\n        thing {\n          name\n          url\n           id \n        }\n      } fetch https://my-grpahql-server.com/graphql method POST headers Content-Type application/json body JSON stringify query {\n        thing {\n          name\n          url\n          $id\n        }\n      } variables id id |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:97:23:97:40 | "application/json" | enclosingFunctionName | app.get#functionalargument |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:97:23:97:40 | "application/json" | fileImports | @actions/github @octokit/core @octokit/graphql @octokit/request @octokit/rest express graphql |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:99:11:111:6 | JSON.st ... \\n    }) | CalleeFlexibleAccessPath | fetch |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:99:11:111:6 | JSON.st ... \\n    }) | InputAccessPathFromCallee | 1.body |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:99:11:111:6 | JSON.st ... \\n    }) | InputArgumentIndex | 1 |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:99:11:111:6 | JSON.st ... \\n    }) | assignedToPropName | body |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:99:11:111:6 | JSON.st ... \\n    }) | contextFunctionInterfaces | hello() |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:99:11:111:6 | JSON.st ... \\n    }) | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:99:11:111:6 | JSON.st ... \\n    }) | enclosingFunctionBody | req res id req query id result nativeGraphql schema { foo id  } root fetch https://my-grpahql-server.com/graphql method POST headers Content-Type application/json body JSON stringify query {\n        thing {\n          name\n          url\n           id \n        }\n      } fetch https://my-grpahql-server.com/graphql method POST headers Content-Type application/json body JSON stringify query {\n        thing {\n          name\n          url\n          $id\n        }\n      } variables id id |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:99:11:111:6 | JSON.st ... \\n    }) | enclosingFunctionName | app.get#functionalargument |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:99:11:111:6 | JSON.st ... \\n    }) | fileImports | @actions/github @octokit/core @octokit/graphql @octokit/request @octokit/rest express graphql |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:99:26:111:5 | {\\n      ... }\\n    } | CalleeFlexibleAccessPath | JSON.stringify |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:99:26:111:5 | {\\n      ... }\\n    } | InputArgumentIndex | 0 |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:99:26:111:5 | {\\n      ... }\\n    } | contextFunctionInterfaces | hello() |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:99:26:111:5 | {\\n      ... }\\n    } | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:99:26:111:5 | {\\n      ... }\\n    } | enclosingFunctionBody | req res id req query id result nativeGraphql schema { foo id  } root fetch https://my-grpahql-server.com/graphql method POST headers Content-Type application/json body JSON stringify query {\n        thing {\n          name\n          url\n           id \n        }\n      } fetch https://my-grpahql-server.com/graphql method POST headers Content-Type application/json body JSON stringify query {\n        thing {\n          name\n          url\n          $id\n        }\n      } variables id id |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:99:26:111:5 | {\\n      ... }\\n    } | enclosingFunctionName | app.get#functionalargument |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:99:26:111:5 | {\\n      ... }\\n    } | fileImports | @actions/github @octokit/core @octokit/graphql @octokit/request @octokit/rest express graphql |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:99:26:111:5 | {\\n      ... }\\n    } | receiverName | JSON |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:101:14:107:8 | `{\\n     ...      }` | CalleeFlexibleAccessPath | JSON.stringify |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:101:14:107:8 | `{\\n     ...      }` | InputAccessPathFromCallee | 0.query |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:101:14:107:8 | `{\\n     ...      }` | InputArgumentIndex | 0 |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:101:14:107:8 | `{\\n     ...      }` | assignedToPropName | query |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:101:14:107:8 | `{\\n     ...      }` | contextFunctionInterfaces | hello() |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:101:14:107:8 | `{\\n     ...      }` | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:101:14:107:8 | `{\\n     ...      }` | enclosingFunctionBody | req res id req query id result nativeGraphql schema { foo id  } root fetch https://my-grpahql-server.com/graphql method POST headers Content-Type application/json body JSON stringify query {\n        thing {\n          name\n          url\n           id \n        }\n      } fetch https://my-grpahql-server.com/graphql method POST headers Content-Type application/json body JSON stringify query {\n        thing {\n          name\n          url\n          $id\n        }\n      } variables id id |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:101:14:107:8 | `{\\n     ...      }` | enclosingFunctionName | app.get#functionalargument |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:101:14:107:8 | `{\\n     ...      }` | fileImports | @actions/github @octokit/core @octokit/graphql @octokit/request @octokit/rest express graphql |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:108:18:110:7 | {\\n      ...       } | CalleeFlexibleAccessPath | JSON.stringify |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:108:18:110:7 | {\\n      ...       } | InputAccessPathFromCallee | 0.variables |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:108:18:110:7 | {\\n      ...       } | InputArgumentIndex | 0 |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:108:18:110:7 | {\\n      ...       } | assignedToPropName | variables |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:108:18:110:7 | {\\n      ...       } | contextFunctionInterfaces | hello() |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:108:18:110:7 | {\\n      ...       } | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:108:18:110:7 | {\\n      ...       } | enclosingFunctionBody | req res id req query id result nativeGraphql schema { foo id  } root fetch https://my-grpahql-server.com/graphql method POST headers Content-Type application/json body JSON stringify query {\n        thing {\n          name\n          url\n           id \n        }\n      } fetch https://my-grpahql-server.com/graphql method POST headers Content-Type application/json body JSON stringify query {\n        thing {\n          name\n          url\n          $id\n        }\n      } variables id id |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:108:18:110:7 | {\\n      ...       } | enclosingFunctionName | app.get#functionalargument |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:108:18:110:7 | {\\n      ...       } | fileImports | @actions/github @octokit/core @octokit/graphql @octokit/request @octokit/rest express graphql |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:109:13:109:14 | id | CalleeFlexibleAccessPath | JSON.stringify |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:109:13:109:14 | id | InputAccessPathFromCallee | 0.variables.id |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:109:13:109:14 | id | InputArgumentIndex | 0 |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:109:13:109:14 | id | assignedToPropName | id |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:109:13:109:14 | id | contextFunctionInterfaces | hello() |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:109:13:109:14 | id | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:109:13:109:14 | id | enclosingFunctionBody | req res id req query id result nativeGraphql schema { foo id  } root fetch https://my-grpahql-server.com/graphql method POST headers Content-Type application/json body JSON stringify query {\n        thing {\n          name\n          url\n           id \n        }\n      } fetch https://my-grpahql-server.com/graphql method POST headers Content-Type application/json body JSON stringify query {\n        thing {\n          name\n          url\n          $id\n        }\n      } variables id id |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:109:13:109:14 | id | enclosingFunctionName | app.get#functionalargument |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:109:13:109:14 | id | fileImports | @actions/github @octokit/core @octokit/graphql @octokit/request @octokit/rest express graphql |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:115:24:115:40 | '@actions/github' | CalleeFlexibleAccessPath | require |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:115:24:115:40 | '@actions/github' | InputArgumentIndex | 0 |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:115:24:115:40 | '@actions/github' | calleeImports |  |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:115:24:115:40 | '@actions/github' | contextFunctionInterfaces | hello() |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:115:24:115:40 | '@actions/github' | contextSurroundingFunctionParameters |  |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:115:24:115:40 | '@actions/github' | fileImports | @actions/github @octokit/core @octokit/graphql @octokit/request @octokit/rest express graphql |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:116:9:116:21 | '/event/:id/' | CalleeFlexibleAccessPath | app.get |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:116:9:116:21 | '/event/:id/' | InputArgumentIndex | 0 |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:116:9:116:21 | '/event/:id/' | calleeImports | express |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:116:9:116:21 | '/event/:id/' | contextFunctionInterfaces | hello() |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:116:9:116:21 | '/event/:id/' | contextSurroundingFunctionParameters |  |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:116:9:116:21 | '/event/:id/' | fileImports | @actions/github @octokit/core @octokit/graphql @octokit/request @octokit/rest express graphql |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:116:9:116:21 | '/event/:id/' | receiverName | app |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:116:24:121:1 | async f ... OT OK\\n} | CalleeFlexibleAccessPath | app.get |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:116:24:121:1 | async f ... OT OK\\n} | InputArgumentIndex | 1 |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:116:24:121:1 | async f ... OT OK\\n} | calleeImports | express |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:116:24:121:1 | async f ... OT OK\\n} | contextFunctionInterfaces | hello() |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:116:24:121:1 | async f ... OT OK\\n} | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:116:24:121:1 | async f ... OT OK\\n} | fileImports | @actions/github @octokit/core @octokit/graphql @octokit/request @octokit/rest express graphql |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:116:24:121:1 | async f ... OT OK\\n} | receiverName | app |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:117:35:117:39 | "foo" | CalleeFlexibleAccessPath | github.getOctokit |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:117:35:117:39 | "foo" | InputArgumentIndex | 0 |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:117:35:117:39 | "foo" | calleeImports | @actions/github |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:117:35:117:39 | "foo" | contextFunctionInterfaces | hello() |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:117:35:117:39 | "foo" | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:117:35:117:39 | "foo" | enclosingFunctionBody | req res kit github getOctokit foo id req params id result kit graphql foo  id |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:117:35:117:39 | "foo" | enclosingFunctionName | app.get#functionalargument |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:117:35:117:39 | "foo" | fileImports | @actions/github @octokit/core @octokit/graphql @octokit/request @octokit/rest express graphql |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:117:35:117:39 | "foo" | receiverName | github |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:120:38:120:48 | `foo ${id}` | CalleeFlexibleAccessPath | kit.graphql |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:120:38:120:48 | `foo ${id}` | InputArgumentIndex | 0 |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:120:38:120:48 | `foo ${id}` | calleeImports | @actions/github |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:120:38:120:48 | `foo ${id}` | contextFunctionInterfaces | hello() |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:120:38:120:48 | `foo ${id}` | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:120:38:120:48 | `foo ${id}` | enclosingFunctionBody | req res kit github getOctokit foo id req params id result kit graphql foo  id |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:120:38:120:48 | `foo ${id}` | enclosingFunctionName | app.get#functionalargument |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:120:38:120:48 | `foo ${id}` | fileImports | @actions/github @octokit/core @octokit/graphql @octokit/request @octokit/rest express graphql |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:120:38:120:48 | `foo ${id}` | receiverName | kit |
 | autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:15:33:15:38 | schema | CalleeFlexibleAccessPath | ajv.compile |
 | autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:15:33:15:38 | schema | InputArgumentIndex | 0 |
 | autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:15:33:15:38 | schema | calleeImports | ajv |
 | autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:15:33:15:38 | schema | contextFunctionInterfaces | validate(x) |
 | autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:15:33:15:38 | schema | contextSurroundingFunctionParameters |  |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:15:33:15:38 | schema | fileImports | ajv express mongodb |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:15:33:15:38 | schema | fileImports | ajv express joi mongodb |
 | autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:15:33:15:38 | schema | receiverName | ajv |
 | autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:21:10:21:26 | '/documents/find' | CalleeFlexibleAccessPath | app.post |
 | autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:21:10:21:26 | '/documents/find' | InputArgumentIndex | 0 |
 | autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:21:10:21:26 | '/documents/find' | calleeImports | express |
 | autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:21:10:21:26 | '/documents/find' | contextFunctionInterfaces | validate(x) |
 | autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:21:10:21:26 | '/documents/find' | contextSurroundingFunctionParameters |  |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:21:10:21:26 | '/documents/find' | fileImports | ajv express mongodb |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:21:10:21:26 | '/documents/find' | fileImports | ajv express joi mongodb |
 | autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:21:10:21:26 | '/documents/find' | receiverName | app |
 | autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:21:29:37:1 | (req, r ...   });\\n} | CalleeFlexibleAccessPath | app.post |
 | autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:21:29:37:1 | (req, r ...   });\\n} | InputArgumentIndex | 1 |
 | autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:21:29:37:1 | (req, r ...   });\\n} | calleeImports | express |
 | autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:21:29:37:1 | (req, r ...   });\\n} | contextFunctionInterfaces | validate(x) |
 | autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:21:29:37:1 | (req, r ...   });\\n} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:21:29:37:1 | (req, r ...   });\\n} | fileImports | ajv express mongodb |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:21:29:37:1 | (req, r ...   });\\n} | fileImports | ajv express joi mongodb |
 | autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:21:29:37:1 | (req, r ...   });\\n} | receiverName | app |
 | autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:22:25:22:56 | 'mongod ... 7/test' | CalleeFlexibleAccessPath | MongoClient.connect |
 | autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:22:25:22:56 | 'mongod ... 7/test' | InputArgumentIndex | 0 |
@@ -184,7 +654,7 @@ tokenFeatures
 | autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:22:25:22:56 | 'mongod ... 7/test' | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:22:25:22:56 | 'mongod ... 7/test' | enclosingFunctionBody | req res MongoClient connect mongodb://localhost:27017/test err db doc db collection doc query JSON parse req query data checkSchema query doc find query ajv validate schema query doc find query validate query doc find query doc find query |
 | autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:22:25:22:56 | 'mongod ... 7/test' | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:22:25:22:56 | 'mongod ... 7/test' | fileImports | ajv express mongodb |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:22:25:22:56 | 'mongod ... 7/test' | fileImports | ajv express joi mongodb |
 | autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:22:25:22:56 | 'mongod ... 7/test' | receiverName | MongoClient |
 | autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:22:59:36:5 | (err, d ... K\\n    } | CalleeFlexibleAccessPath | MongoClient.connect |
 | autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:22:59:36:5 | (err, d ... K\\n    } | InputArgumentIndex | 1 |
@@ -193,7 +663,7 @@ tokenFeatures
 | autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:22:59:36:5 | (err, d ... K\\n    } | contextSurroundingFunctionParameters | (req, res)\n(err, db) |
 | autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:22:59:36:5 | (err, d ... K\\n    } | enclosingFunctionBody | req res MongoClient connect mongodb://localhost:27017/test err db doc db collection doc query JSON parse req query data checkSchema query doc find query ajv validate schema query doc find query validate query doc find query doc find query |
 | autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:22:59:36:5 | (err, d ... K\\n    } | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:22:59:36:5 | (err, d ... K\\n    } | fileImports | ajv express mongodb |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:22:59:36:5 | (err, d ... K\\n    } | fileImports | ajv express joi mongodb |
 | autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:22:59:36:5 | (err, d ... K\\n    } | receiverName | MongoClient |
 | autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:23:33:23:37 | 'doc' | CalleeFlexibleAccessPath | db.collection |
 | autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:23:33:23:37 | 'doc' | InputArgumentIndex | 0 |
@@ -201,20 +671,20 @@ tokenFeatures
 | autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:23:33:23:37 | 'doc' | contextSurroundingFunctionParameters | (req, res)\n(err, db) |
 | autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:23:33:23:37 | 'doc' | enclosingFunctionBody | req res MongoClient connect mongodb://localhost:27017/test err db doc db collection doc query JSON parse req query data checkSchema query doc find query ajv validate schema query doc find query validate query doc find query doc find query |
 | autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:23:33:23:37 | 'doc' | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:23:33:23:37 | 'doc' | fileImports | ajv express mongodb |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:23:33:23:37 | 'doc' | fileImports | ajv express joi mongodb |
 | autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:23:33:23:37 | 'doc' | receiverName | db |
 | autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:25:23:25:48 | JSON.pa ... y.data) | contextFunctionInterfaces | validate(x) |
 | autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:25:23:25:48 | JSON.pa ... y.data) | contextSurroundingFunctionParameters | (req, res)\n(err, db) |
 | autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:25:23:25:48 | JSON.pa ... y.data) | enclosingFunctionBody | req res MongoClient connect mongodb://localhost:27017/test err db doc db collection doc query JSON parse req query data checkSchema query doc find query ajv validate schema query doc find query validate query doc find query doc find query |
 | autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:25:23:25:48 | JSON.pa ... y.data) | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:25:23:25:48 | JSON.pa ... y.data) | fileImports | ajv express mongodb |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:25:23:25:48 | JSON.pa ... y.data) | fileImports | ajv express joi mongodb |
 | autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:25:34:25:47 | req.query.data | CalleeFlexibleAccessPath | JSON.parse |
 | autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:25:34:25:47 | req.query.data | InputArgumentIndex | 0 |
 | autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:25:34:25:47 | req.query.data | contextFunctionInterfaces | validate(x) |
 | autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:25:34:25:47 | req.query.data | contextSurroundingFunctionParameters | (req, res)\n(err, db) |
 | autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:25:34:25:47 | req.query.data | enclosingFunctionBody | req res MongoClient connect mongodb://localhost:27017/test err db doc db collection doc query JSON parse req query data checkSchema query doc find query ajv validate schema query doc find query validate query doc find query doc find query |
 | autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:25:34:25:47 | req.query.data | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:25:34:25:47 | req.query.data | fileImports | ajv express mongodb |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:25:34:25:47 | req.query.data | fileImports | ajv express joi mongodb |
 | autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:25:34:25:47 | req.query.data | receiverName | JSON |
 | autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:26:25:26:29 | query | CalleeFlexibleAccessPath | checkSchema |
 | autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:26:25:26:29 | query | InputArgumentIndex | 0 |
@@ -223,14 +693,14 @@ tokenFeatures
 | autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:26:25:26:29 | query | contextSurroundingFunctionParameters | (req, res)\n(err, db) |
 | autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:26:25:26:29 | query | enclosingFunctionBody | req res MongoClient connect mongodb://localhost:27017/test err db doc db collection doc query JSON parse req query data checkSchema query doc find query ajv validate schema query doc find query validate query doc find query doc find query |
 | autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:26:25:26:29 | query | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:26:25:26:29 | query | fileImports | ajv express mongodb |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:26:25:26:29 | query | fileImports | ajv express joi mongodb |
 | autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:27:22:27:26 | query | CalleeFlexibleAccessPath | doc.find |
 | autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:27:22:27:26 | query | InputArgumentIndex | 0 |
 | autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:27:22:27:26 | query | contextFunctionInterfaces | validate(x) |
 | autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:27:22:27:26 | query | contextSurroundingFunctionParameters | (req, res)\n(err, db) |
 | autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:27:22:27:26 | query | enclosingFunctionBody | req res MongoClient connect mongodb://localhost:27017/test err db doc db collection doc query JSON parse req query data checkSchema query doc find query ajv validate schema query doc find query validate query doc find query doc find query |
 | autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:27:22:27:26 | query | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:27:22:27:26 | query | fileImports | ajv express mongodb |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:27:22:27:26 | query | fileImports | ajv express joi mongodb |
 | autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:27:22:27:26 | query | receiverName | doc |
 | autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:30:22:30:26 | query | CalleeFlexibleAccessPath | doc.find |
 | autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:30:22:30:26 | query | InputArgumentIndex | 0 |
@@ -238,7 +708,7 @@ tokenFeatures
 | autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:30:22:30:26 | query | contextSurroundingFunctionParameters | (req, res)\n(err, db) |
 | autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:30:22:30:26 | query | enclosingFunctionBody | req res MongoClient connect mongodb://localhost:27017/test err db doc db collection doc query JSON parse req query data checkSchema query doc find query ajv validate schema query doc find query validate query doc find query doc find query |
 | autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:30:22:30:26 | query | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:30:22:30:26 | query | fileImports | ajv express mongodb |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:30:22:30:26 | query | fileImports | ajv express joi mongodb |
 | autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:30:22:30:26 | query | receiverName | doc |
 | autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:33:22:33:26 | query | CalleeFlexibleAccessPath | doc.find |
 | autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:33:22:33:26 | query | InputArgumentIndex | 0 |
@@ -246,7 +716,7 @@ tokenFeatures
 | autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:33:22:33:26 | query | contextSurroundingFunctionParameters | (req, res)\n(err, db) |
 | autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:33:22:33:26 | query | enclosingFunctionBody | req res MongoClient connect mongodb://localhost:27017/test err db doc db collection doc query JSON parse req query data checkSchema query doc find query ajv validate schema query doc find query validate query doc find query doc find query |
 | autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:33:22:33:26 | query | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:33:22:33:26 | query | fileImports | ajv express mongodb |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:33:22:33:26 | query | fileImports | ajv express joi mongodb |
 | autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:33:22:33:26 | query | receiverName | doc |
 | autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:35:18:35:22 | query | CalleeFlexibleAccessPath | doc.find |
 | autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:35:18:35:22 | query | InputArgumentIndex | 0 |
@@ -254,8 +724,488 @@ tokenFeatures
 | autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:35:18:35:22 | query | contextSurroundingFunctionParameters | (req, res)\n(err, db) |
 | autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:35:18:35:22 | query | enclosingFunctionBody | req res MongoClient connect mongodb://localhost:27017/test err db doc db collection doc query JSON parse req query data checkSchema query doc find query ajv validate schema query doc find query validate query doc find query doc find query |
 | autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:35:18:35:22 | query | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:35:18:35:22 | query | fileImports | ajv express mongodb |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:35:18:35:22 | query | fileImports | ajv express joi mongodb |
 | autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:35:18:35:22 | query | receiverName | doc |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:41:30:44:1 | {\\n    d ... red()\\n} | CalleeFlexibleAccessPath | Joi.object |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:41:30:44:1 | {\\n    d ... red()\\n} | InputArgumentIndex | 0 |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:41:30:44:1 | {\\n    d ... red()\\n} | calleeImports | joi |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:41:30:44:1 | {\\n    d ... red()\\n} | contextFunctionInterfaces | validate(x) |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:41:30:44:1 | {\\n    d ... red()\\n} | contextSurroundingFunctionParameters |  |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:41:30:44:1 | {\\n    d ... red()\\n} | fileImports | ajv express joi mongodb |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:41:30:44:1 | {\\n    d ... red()\\n} | receiverName | Joi |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:42:11:42:33 | Joi.str ... uired() | CalleeFlexibleAccessPath | Joi.object |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:42:11:42:33 | Joi.str ... uired() | InputAccessPathFromCallee | 0.date |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:42:11:42:33 | Joi.str ... uired() | InputArgumentIndex | 0 |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:42:11:42:33 | Joi.str ... uired() | assignedToPropName | date |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:42:11:42:33 | Joi.str ... uired() | calleeImports | joi |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:42:11:42:33 | Joi.str ... uired() | contextFunctionInterfaces | validate(x) |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:42:11:42:33 | Joi.str ... uired() | contextSurroundingFunctionParameters |  |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:42:11:42:33 | Joi.str ... uired() | fileImports | ajv express joi mongodb |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:43:12:43:34 | Joi.str ... uired() | CalleeFlexibleAccessPath | Joi.object |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:43:12:43:34 | Joi.str ... uired() | InputAccessPathFromCallee | 0.title |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:43:12:43:34 | Joi.str ... uired() | InputArgumentIndex | 0 |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:43:12:43:34 | Joi.str ... uired() | assignedToPropName | title |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:43:12:43:34 | Joi.str ... uired() | calleeImports | joi |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:43:12:43:34 | Joi.str ... uired() | contextFunctionInterfaces | validate(x) |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:43:12:43:34 | Joi.str ... uired() | contextSurroundingFunctionParameters |  |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:43:12:43:34 | Joi.str ... uired() | fileImports | ajv express joi mongodb |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:44:9:44:14 | 'date' | CalleeFlexibleAccessPath | Joi.object().with |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:44:9:44:14 | 'date' | InputArgumentIndex | 0 |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:44:9:44:14 | 'date' | calleeImports | joi |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:44:9:44:14 | 'date' | contextFunctionInterfaces | validate(x) |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:44:9:44:14 | 'date' | contextSurroundingFunctionParameters |  |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:44:9:44:14 | 'date' | fileImports | ajv express joi mongodb |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:44:17:44:23 | 'title' | CalleeFlexibleAccessPath | Joi.object().with |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:44:17:44:23 | 'title' | InputArgumentIndex | 1 |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:44:17:44:23 | 'title' | calleeImports | joi |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:44:17:44:23 | 'title' | contextFunctionInterfaces | validate(x) |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:44:17:44:23 | 'title' | contextSurroundingFunctionParameters |  |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:44:17:44:23 | 'title' | fileImports | ajv express joi mongodb |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:46:10:46:28 | '/documents/insert' | CalleeFlexibleAccessPath | app.post |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:46:10:46:28 | '/documents/insert' | InputArgumentIndex | 0 |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:46:10:46:28 | '/documents/insert' | calleeImports | express |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:46:10:46:28 | '/documents/insert' | contextFunctionInterfaces | validate(x) |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:46:10:46:28 | '/documents/insert' | contextSurroundingFunctionParameters |  |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:46:10:46:28 | '/documents/insert' | fileImports | ajv express joi mongodb |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:46:10:46:28 | '/documents/insert' | receiverName | app |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:46:31:64:1 | (req, r ...   });\\n} | CalleeFlexibleAccessPath | app.post |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:46:31:64:1 | (req, r ...   });\\n} | InputArgumentIndex | 1 |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:46:31:64:1 | (req, r ...   });\\n} | calleeImports | express |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:46:31:64:1 | (req, r ...   });\\n} | contextFunctionInterfaces | validate(x) |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:46:31:64:1 | (req, r ...   });\\n} | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:46:31:64:1 | (req, r ...   });\\n} | fileImports | ajv express joi mongodb |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:46:31:64:1 | (req, r ...   });\\n} | receiverName | app |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:47:25:47:56 | 'mongod ... 7/test' | CalleeFlexibleAccessPath | MongoClient.connect |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:47:25:47:56 | 'mongod ... 7/test' | InputArgumentIndex | 0 |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:47:25:47:56 | 'mongod ... 7/test' | calleeImports | mongodb |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:47:25:47:56 | 'mongod ... 7/test' | contextFunctionInterfaces | validate(x) |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:47:25:47:56 | 'mongod ... 7/test' | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:47:25:47:56 | 'mongod ... 7/test' | enclosingFunctionBody | req res MongoClient connect mongodb://localhost:27017/test err db doc db collection doc query JSON parse req query data validate joiSchema validate query validate error doc find query doc find query joiSchema validateAsync query doc find query e doc find query |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:47:25:47:56 | 'mongod ... 7/test' | enclosingFunctionName | app.post#functionalargument |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:47:25:47:56 | 'mongod ... 7/test' | fileImports | ajv express joi mongodb |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:47:25:47:56 | 'mongod ... 7/test' | receiverName | MongoClient |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:47:59:63:5 | async ( ... }\\n    } | CalleeFlexibleAccessPath | MongoClient.connect |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:47:59:63:5 | async ( ... }\\n    } | InputArgumentIndex | 1 |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:47:59:63:5 | async ( ... }\\n    } | calleeImports | mongodb |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:47:59:63:5 | async ( ... }\\n    } | contextFunctionInterfaces | validate(x) |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:47:59:63:5 | async ( ... }\\n    } | contextSurroundingFunctionParameters | (req, res)\n(err, db) |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:47:59:63:5 | async ( ... }\\n    } | enclosingFunctionBody | req res MongoClient connect mongodb://localhost:27017/test err db doc db collection doc query JSON parse req query data validate joiSchema validate query validate error doc find query doc find query joiSchema validateAsync query doc find query e doc find query |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:47:59:63:5 | async ( ... }\\n    } | enclosingFunctionName | app.post#functionalargument |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:47:59:63:5 | async ( ... }\\n    } | fileImports | ajv express joi mongodb |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:47:59:63:5 | async ( ... }\\n    } | receiverName | MongoClient |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:48:33:48:37 | 'doc' | CalleeFlexibleAccessPath | db.collection |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:48:33:48:37 | 'doc' | InputArgumentIndex | 0 |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:48:33:48:37 | 'doc' | contextFunctionInterfaces | validate(x) |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:48:33:48:37 | 'doc' | contextSurroundingFunctionParameters | (req, res)\n(err, db) |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:48:33:48:37 | 'doc' | enclosingFunctionBody | req res MongoClient connect mongodb://localhost:27017/test err db doc db collection doc query JSON parse req query data validate joiSchema validate query validate error doc find query doc find query joiSchema validateAsync query doc find query e doc find query |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:48:33:48:37 | 'doc' | enclosingFunctionName | app.post#functionalargument |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:48:33:48:37 | 'doc' | fileImports | ajv express joi mongodb |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:48:33:48:37 | 'doc' | receiverName | db |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:50:23:50:48 | JSON.pa ... y.data) | contextFunctionInterfaces | validate(x) |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:50:23:50:48 | JSON.pa ... y.data) | contextSurroundingFunctionParameters | (req, res)\n(err, db) |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:50:23:50:48 | JSON.pa ... y.data) | enclosingFunctionBody | req res MongoClient connect mongodb://localhost:27017/test err db doc db collection doc query JSON parse req query data validate joiSchema validate query validate error doc find query doc find query joiSchema validateAsync query doc find query e doc find query |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:50:23:50:48 | JSON.pa ... y.data) | enclosingFunctionName | app.post#functionalargument |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:50:23:50:48 | JSON.pa ... y.data) | fileImports | ajv express joi mongodb |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:50:34:50:47 | req.query.data | CalleeFlexibleAccessPath | JSON.parse |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:50:34:50:47 | req.query.data | InputArgumentIndex | 0 |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:50:34:50:47 | req.query.data | contextFunctionInterfaces | validate(x) |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:50:34:50:47 | req.query.data | contextSurroundingFunctionParameters | (req, res)\n(err, db) |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:50:34:50:47 | req.query.data | enclosingFunctionBody | req res MongoClient connect mongodb://localhost:27017/test err db doc db collection doc query JSON parse req query data validate joiSchema validate query validate error doc find query doc find query joiSchema validateAsync query doc find query e doc find query |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:50:34:50:47 | req.query.data | enclosingFunctionName | app.post#functionalargument |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:50:34:50:47 | req.query.data | fileImports | ajv express joi mongodb |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:50:34:50:47 | req.query.data | receiverName | JSON |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:53:22:53:26 | query | CalleeFlexibleAccessPath | doc.find |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:53:22:53:26 | query | InputArgumentIndex | 0 |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:53:22:53:26 | query | contextFunctionInterfaces | validate(x) |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:53:22:53:26 | query | contextSurroundingFunctionParameters | (req, res)\n(err, db) |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:53:22:53:26 | query | enclosingFunctionBody | req res MongoClient connect mongodb://localhost:27017/test err db doc db collection doc query JSON parse req query data validate joiSchema validate query validate error doc find query doc find query joiSchema validateAsync query doc find query e doc find query |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:53:22:53:26 | query | enclosingFunctionName | app.post#functionalargument |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:53:22:53:26 | query | fileImports | ajv express joi mongodb |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:53:22:53:26 | query | receiverName | doc |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:55:22:55:26 | query | CalleeFlexibleAccessPath | doc.find |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:55:22:55:26 | query | InputArgumentIndex | 0 |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:55:22:55:26 | query | contextFunctionInterfaces | validate(x) |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:55:22:55:26 | query | contextSurroundingFunctionParameters | (req, res)\n(err, db) |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:55:22:55:26 | query | enclosingFunctionBody | req res MongoClient connect mongodb://localhost:27017/test err db doc db collection doc query JSON parse req query data validate joiSchema validate query validate error doc find query doc find query joiSchema validateAsync query doc find query e doc find query |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:55:22:55:26 | query | enclosingFunctionName | app.post#functionalargument |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:55:22:55:26 | query | fileImports | ajv express joi mongodb |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:55:22:55:26 | query | receiverName | doc |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:59:22:59:26 | query | CalleeFlexibleAccessPath | doc.find |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:59:22:59:26 | query | InputArgumentIndex | 0 |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:59:22:59:26 | query | contextFunctionInterfaces | validate(x) |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:59:22:59:26 | query | contextSurroundingFunctionParameters | (req, res)\n(err, db) |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:59:22:59:26 | query | enclosingFunctionBody | req res MongoClient connect mongodb://localhost:27017/test err db doc db collection doc query JSON parse req query data validate joiSchema validate query validate error doc find query doc find query joiSchema validateAsync query doc find query e doc find query |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:59:22:59:26 | query | enclosingFunctionName | app.post#functionalargument |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:59:22:59:26 | query | fileImports | ajv express joi mongodb |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:59:22:59:26 | query | receiverName | doc |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:61:22:61:26 | query | CalleeFlexibleAccessPath | doc.find |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:61:22:61:26 | query | InputArgumentIndex | 0 |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:61:22:61:26 | query | contextFunctionInterfaces | validate(x) |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:61:22:61:26 | query | contextSurroundingFunctionParameters | (req, res)\n(err, db) |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:61:22:61:26 | query | enclosingFunctionBody | req res MongoClient connect mongodb://localhost:27017/test err db doc db collection doc query JSON parse req query data validate joiSchema validate query validate error doc find query doc find query joiSchema validateAsync query doc find query e doc find query |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:61:22:61:26 | query | enclosingFunctionName | app.post#functionalargument |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:61:22:61:26 | query | fileImports | ajv express joi mongodb |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:61:22:61:26 | query | receiverName | doc |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:1:22:1:27 | "http" | CalleeFlexibleAccessPath | require |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:1:22:1:27 | "http" | InputArgumentIndex | 0 |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:1:22:1:27 | "http" | calleeImports |  |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:1:22:1:27 | "http" | contextFunctionInterfaces | sanitizeInput(input) |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:1:22:1:27 | "http" | contextSurroundingFunctionParameters |  |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:1:22:1:27 | "http" | fileImports | http ldapjs url |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:2:21:2:25 | "url" | CalleeFlexibleAccessPath | require |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:2:21:2:25 | "url" | InputArgumentIndex | 0 |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:2:21:2:25 | "url" | calleeImports |  |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:2:21:2:25 | "url" | contextFunctionInterfaces | sanitizeInput(input) |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:2:21:2:25 | "url" | contextSurroundingFunctionParameters |  |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:2:21:2:25 | "url" | fileImports | http ldapjs url |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:3:22:3:29 | "ldapjs" | CalleeFlexibleAccessPath | require |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:3:22:3:29 | "ldapjs" | InputArgumentIndex | 0 |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:3:22:3:29 | "ldapjs" | calleeImports |  |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:3:22:3:29 | "ldapjs" | contextFunctionInterfaces | sanitizeInput(input) |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:3:22:3:29 | "ldapjs" | contextSurroundingFunctionParameters |  |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:3:22:3:29 | "ldapjs" | fileImports | http ldapjs url |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:4:34:6:1 | {\\n  url ... 389",\\n} | CalleeFlexibleAccessPath | ldap.createClient |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:4:34:6:1 | {\\n  url ... 389",\\n} | InputArgumentIndex | 0 |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:4:34:6:1 | {\\n  url ... 389",\\n} | calleeImports | ldapjs |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:4:34:6:1 | {\\n  url ... 389",\\n} | contextFunctionInterfaces | sanitizeInput(input) |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:4:34:6:1 | {\\n  url ... 389",\\n} | contextSurroundingFunctionParameters |  |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:4:34:6:1 | {\\n  url ... 389",\\n} | fileImports | http ldapjs url |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:4:34:6:1 | {\\n  url ... 389",\\n} | receiverName | ldap |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:5:8:5:30 | "ldap:/ ... 1:1389" | CalleeFlexibleAccessPath | ldap.createClient |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:5:8:5:30 | "ldap:/ ... 1:1389" | InputAccessPathFromCallee | 0.url |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:5:8:5:30 | "ldap:/ ... 1:1389" | InputArgumentIndex | 0 |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:5:8:5:30 | "ldap:/ ... 1:1389" | assignedToPropName | url |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:5:8:5:30 | "ldap:/ ... 1:1389" | calleeImports | ldapjs |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:5:8:5:30 | "ldap:/ ... 1:1389" | contextFunctionInterfaces | sanitizeInput(input) |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:5:8:5:30 | "ldap:/ ... 1:1389" | contextSurroundingFunctionParameters |  |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:5:8:5:30 | "ldap:/ ... 1:1389" | fileImports | http ldapjs url |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:11:14:11:18 | /\\*/g | CalleeFlexibleAccessPath | input.replace |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:11:14:11:18 | /\\*/g | InputArgumentIndex | 0 |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:11:14:11:18 | /\\*/g | contextFunctionInterfaces | sanitizeInput(input) |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:11:14:11:18 | /\\*/g | contextSurroundingFunctionParameters | (input) |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:11:14:11:18 | /\\*/g | enclosingFunctionBody | input input replace /\\*/g \\2a replace /\\(/g \\28 replace /\\)/g \\29 replace /\\\\/g \\5c replace /\\0/g \\00 replace /\\//g \\2f |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:11:14:11:18 | /\\*/g | enclosingFunctionName | sanitizeInput |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:11:14:11:18 | /\\*/g | fileImports | http ldapjs url |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:11:14:11:18 | /\\*/g | receiverName | input |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:11:21:11:26 | "\\\\2a" | CalleeFlexibleAccessPath | input.replace |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:11:21:11:26 | "\\\\2a" | InputArgumentIndex | 1 |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:11:21:11:26 | "\\\\2a" | contextFunctionInterfaces | sanitizeInput(input) |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:11:21:11:26 | "\\\\2a" | contextSurroundingFunctionParameters | (input) |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:11:21:11:26 | "\\\\2a" | enclosingFunctionBody | input input replace /\\*/g \\2a replace /\\(/g \\28 replace /\\)/g \\29 replace /\\\\/g \\5c replace /\\0/g \\00 replace /\\//g \\2f |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:11:21:11:26 | "\\\\2a" | enclosingFunctionName | sanitizeInput |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:11:21:11:26 | "\\\\2a" | fileImports | http ldapjs url |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:11:21:11:26 | "\\\\2a" | receiverName | input |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:12:14:12:18 | /\\(/g | CalleeFlexibleAccessPath | input.replace().replace |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:12:14:12:18 | /\\(/g | InputArgumentIndex | 0 |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:12:14:12:18 | /\\(/g | contextFunctionInterfaces | sanitizeInput(input) |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:12:14:12:18 | /\\(/g | contextSurroundingFunctionParameters | (input) |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:12:14:12:18 | /\\(/g | enclosingFunctionBody | input input replace /\\*/g \\2a replace /\\(/g \\28 replace /\\)/g \\29 replace /\\\\/g \\5c replace /\\0/g \\00 replace /\\//g \\2f |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:12:14:12:18 | /\\(/g | enclosingFunctionName | sanitizeInput |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:12:14:12:18 | /\\(/g | fileImports | http ldapjs url |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:12:21:12:26 | "\\\\28" | CalleeFlexibleAccessPath | input.replace().replace |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:12:21:12:26 | "\\\\28" | InputArgumentIndex | 1 |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:12:21:12:26 | "\\\\28" | contextFunctionInterfaces | sanitizeInput(input) |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:12:21:12:26 | "\\\\28" | contextSurroundingFunctionParameters | (input) |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:12:21:12:26 | "\\\\28" | enclosingFunctionBody | input input replace /\\*/g \\2a replace /\\(/g \\28 replace /\\)/g \\29 replace /\\\\/g \\5c replace /\\0/g \\00 replace /\\//g \\2f |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:12:21:12:26 | "\\\\28" | enclosingFunctionName | sanitizeInput |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:12:21:12:26 | "\\\\28" | fileImports | http ldapjs url |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:13:14:13:18 | /\\)/g | CalleeFlexibleAccessPath | input.replace().replace().replace |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:13:14:13:18 | /\\)/g | InputArgumentIndex | 0 |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:13:14:13:18 | /\\)/g | contextFunctionInterfaces | sanitizeInput(input) |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:13:14:13:18 | /\\)/g | contextSurroundingFunctionParameters | (input) |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:13:14:13:18 | /\\)/g | enclosingFunctionBody | input input replace /\\*/g \\2a replace /\\(/g \\28 replace /\\)/g \\29 replace /\\\\/g \\5c replace /\\0/g \\00 replace /\\//g \\2f |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:13:14:13:18 | /\\)/g | enclosingFunctionName | sanitizeInput |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:13:14:13:18 | /\\)/g | fileImports | http ldapjs url |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:13:21:13:26 | "\\\\29" | CalleeFlexibleAccessPath | input.replace().replace().replace |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:13:21:13:26 | "\\\\29" | InputArgumentIndex | 1 |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:13:21:13:26 | "\\\\29" | contextFunctionInterfaces | sanitizeInput(input) |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:13:21:13:26 | "\\\\29" | contextSurroundingFunctionParameters | (input) |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:13:21:13:26 | "\\\\29" | enclosingFunctionBody | input input replace /\\*/g \\2a replace /\\(/g \\28 replace /\\)/g \\29 replace /\\\\/g \\5c replace /\\0/g \\00 replace /\\//g \\2f |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:13:21:13:26 | "\\\\29" | enclosingFunctionName | sanitizeInput |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:13:21:13:26 | "\\\\29" | fileImports | http ldapjs url |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:14:14:14:18 | /\\\\/g | CalleeFlexibleAccessPath | input.replace().replace().replace().replace |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:14:14:14:18 | /\\\\/g | InputArgumentIndex | 0 |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:14:14:14:18 | /\\\\/g | contextFunctionInterfaces | sanitizeInput(input) |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:14:14:14:18 | /\\\\/g | contextSurroundingFunctionParameters | (input) |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:14:14:14:18 | /\\\\/g | enclosingFunctionBody | input input replace /\\*/g \\2a replace /\\(/g \\28 replace /\\)/g \\29 replace /\\\\/g \\5c replace /\\0/g \\00 replace /\\//g \\2f |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:14:14:14:18 | /\\\\/g | enclosingFunctionName | sanitizeInput |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:14:14:14:18 | /\\\\/g | fileImports | http ldapjs url |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:14:21:14:26 | "\\\\5c" | CalleeFlexibleAccessPath | input.replace().replace().replace().replace |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:14:21:14:26 | "\\\\5c" | InputArgumentIndex | 1 |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:14:21:14:26 | "\\\\5c" | contextFunctionInterfaces | sanitizeInput(input) |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:14:21:14:26 | "\\\\5c" | contextSurroundingFunctionParameters | (input) |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:14:21:14:26 | "\\\\5c" | enclosingFunctionBody | input input replace /\\*/g \\2a replace /\\(/g \\28 replace /\\)/g \\29 replace /\\\\/g \\5c replace /\\0/g \\00 replace /\\//g \\2f |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:14:21:14:26 | "\\\\5c" | enclosingFunctionName | sanitizeInput |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:14:21:14:26 | "\\\\5c" | fileImports | http ldapjs url |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:15:14:15:18 | /\\0/g | CalleeFlexibleAccessPath | input.replace().replace().replace().replace().replace |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:15:14:15:18 | /\\0/g | InputArgumentIndex | 0 |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:15:14:15:18 | /\\0/g | contextFunctionInterfaces | sanitizeInput(input) |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:15:14:15:18 | /\\0/g | contextSurroundingFunctionParameters | (input) |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:15:14:15:18 | /\\0/g | enclosingFunctionBody | input input replace /\\*/g \\2a replace /\\(/g \\28 replace /\\)/g \\29 replace /\\\\/g \\5c replace /\\0/g \\00 replace /\\//g \\2f |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:15:14:15:18 | /\\0/g | enclosingFunctionName | sanitizeInput |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:15:14:15:18 | /\\0/g | fileImports | http ldapjs url |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:15:21:15:26 | "\\\\00" | CalleeFlexibleAccessPath | input.replace().replace().replace().replace().replace |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:15:21:15:26 | "\\\\00" | InputArgumentIndex | 1 |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:15:21:15:26 | "\\\\00" | contextFunctionInterfaces | sanitizeInput(input) |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:15:21:15:26 | "\\\\00" | contextSurroundingFunctionParameters | (input) |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:15:21:15:26 | "\\\\00" | enclosingFunctionBody | input input replace /\\*/g \\2a replace /\\(/g \\28 replace /\\)/g \\29 replace /\\\\/g \\5c replace /\\0/g \\00 replace /\\//g \\2f |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:15:21:15:26 | "\\\\00" | enclosingFunctionName | sanitizeInput |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:15:21:15:26 | "\\\\00" | fileImports | http ldapjs url |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:16:14:16:18 | /\\//g | CalleeFlexibleAccessPath | input.replace().replace().replace().replace().replace().replace |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:16:14:16:18 | /\\//g | InputArgumentIndex | 0 |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:16:14:16:18 | /\\//g | contextFunctionInterfaces | sanitizeInput(input) |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:16:14:16:18 | /\\//g | contextSurroundingFunctionParameters | (input) |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:16:14:16:18 | /\\//g | enclosingFunctionBody | input input replace /\\*/g \\2a replace /\\(/g \\28 replace /\\)/g \\29 replace /\\\\/g \\5c replace /\\0/g \\00 replace /\\//g \\2f |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:16:14:16:18 | /\\//g | enclosingFunctionName | sanitizeInput |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:16:14:16:18 | /\\//g | fileImports | http ldapjs url |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:16:21:16:26 | "\\\\2f" | CalleeFlexibleAccessPath | input.replace().replace().replace().replace().replace().replace |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:16:21:16:26 | "\\\\2f" | InputArgumentIndex | 1 |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:16:21:16:26 | "\\\\2f" | contextFunctionInterfaces | sanitizeInput(input) |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:16:21:16:26 | "\\\\2f" | contextSurroundingFunctionParameters | (input) |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:16:21:16:26 | "\\\\2f" | enclosingFunctionBody | input input replace /\\*/g \\2a replace /\\(/g \\28 replace /\\)/g \\29 replace /\\\\/g \\5c replace /\\0/g \\00 replace /\\//g \\2f |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:16:21:16:26 | "\\\\2f" | enclosingFunctionName | sanitizeInput |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:16:21:16:26 | "\\\\2f" | fileImports | http ldapjs url |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:19:34:69:1 | (req, r ... OT OK\\n} | CalleeFlexibleAccessPath | http.createServer |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:19:34:69:1 | (req, r ... OT OK\\n} | InputArgumentIndex | 0 |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:19:34:69:1 | (req, r ... OT OK\\n} | calleeImports | http |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:19:34:69:1 | (req, r ... OT OK\\n} | contextFunctionInterfaces | sanitizeInput(input) |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:19:34:69:1 | (req, r ... OT OK\\n} | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:19:34:69:1 | (req, r ... OT OK\\n} | fileImports | http ldapjs url |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:19:34:69:1 | (req, r ... OT OK\\n} | receiverName | http |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:20:21:20:27 | req.url | CalleeFlexibleAccessPath | url.parse |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:20:21:20:27 | req.url | InputArgumentIndex | 0 |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:20:21:20:27 | req.url | calleeImports | url |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:20:21:20:27 | req.url | contextFunctionInterfaces | sanitizeInput(input) |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:20:21:20:27 | req.url | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:20:21:20:27 | req.url | enclosingFunctionBody | req res q url parse req url true username q query username opts1 filter (\|(name= username )(username= username )) client search o=example opts1 err res client search o=example filter (\|(name= username )(username= username )) err res client search o=example filter (\|(name= sanitizeInput username )(username= sanitizeInput username )) err res f OrFilter filters EqualityFilter attribute name value username EqualityFilter attribute username value username client search o=example filter f err res parsedFilter ldap parseFilter (\|(name= username )(username= username )) client search o=example filter parsedFilter err res dn ldap parseDN cn= username err dn |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:20:21:20:27 | req.url | enclosingFunctionName | http.createServer#functionalargument |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:20:21:20:27 | req.url | fileImports | http ldapjs url |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:20:21:20:27 | req.url | receiverName | url |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:20:30:20:33 | true | CalleeFlexibleAccessPath | url.parse |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:20:30:20:33 | true | InputArgumentIndex | 1 |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:20:30:20:33 | true | calleeImports | url |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:20:30:20:33 | true | contextFunctionInterfaces | sanitizeInput(input) |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:20:30:20:33 | true | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:20:30:20:33 | true | enclosingFunctionBody | req res q url parse req url true username q query username opts1 filter (\|(name= username )(username= username )) client search o=example opts1 err res client search o=example filter (\|(name= username )(username= username )) err res client search o=example filter (\|(name= sanitizeInput username )(username= sanitizeInput username )) err res f OrFilter filters EqualityFilter attribute name value username EqualityFilter attribute username value username client search o=example filter f err res parsedFilter ldap parseFilter (\|(name= username )(username= username )) client search o=example filter parsedFilter err res dn ldap parseDN cn= username err dn |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:20:30:20:33 | true | enclosingFunctionName | http.createServer#functionalargument |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:20:30:20:33 | true | fileImports | http ldapjs url |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:20:30:20:33 | true | receiverName | url |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:28:17:28:27 | "o=example" | CalleeFlexibleAccessPath | client.search |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:28:17:28:27 | "o=example" | InputArgumentIndex | 0 |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:28:17:28:27 | "o=example" | calleeImports | ldapjs |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:28:17:28:27 | "o=example" | contextFunctionInterfaces | sanitizeInput(input) |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:28:17:28:27 | "o=example" | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:28:17:28:27 | "o=example" | enclosingFunctionBody | req res q url parse req url true username q query username opts1 filter (\|(name= username )(username= username )) client search o=example opts1 err res client search o=example filter (\|(name= username )(username= username )) err res client search o=example filter (\|(name= sanitizeInput username )(username= sanitizeInput username )) err res f OrFilter filters EqualityFilter attribute name value username EqualityFilter attribute username value username client search o=example filter f err res parsedFilter ldap parseFilter (\|(name= username )(username= username )) client search o=example filter parsedFilter err res dn ldap parseDN cn= username err dn |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:28:17:28:27 | "o=example" | enclosingFunctionName | http.createServer#functionalargument |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:28:17:28:27 | "o=example" | fileImports | http ldapjs url |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:28:17:28:27 | "o=example" | receiverName | client |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:28:30:28:34 | opts1 | CalleeFlexibleAccessPath | client.search |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:28:30:28:34 | opts1 | InputArgumentIndex | 1 |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:28:30:28:34 | opts1 | calleeImports | ldapjs |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:28:30:28:34 | opts1 | contextFunctionInterfaces | sanitizeInput(input) |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:28:30:28:34 | opts1 | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:28:30:28:34 | opts1 | enclosingFunctionBody | req res q url parse req url true username q query username opts1 filter (\|(name= username )(username= username )) client search o=example opts1 err res client search o=example filter (\|(name= username )(username= username )) err res client search o=example filter (\|(name= sanitizeInput username )(username= sanitizeInput username )) err res f OrFilter filters EqualityFilter attribute name value username EqualityFilter attribute username value username client search o=example filter f err res parsedFilter ldap parseFilter (\|(name= username )(username= username )) client search o=example filter parsedFilter err res dn ldap parseDN cn= username err dn |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:28:30:28:34 | opts1 | enclosingFunctionName | http.createServer#functionalargument |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:28:30:28:34 | opts1 | fileImports | http ldapjs url |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:28:30:28:34 | opts1 | receiverName | client |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:28:37:28:58 | functio ... res) {} | CalleeFlexibleAccessPath | client.search |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:28:37:28:58 | functio ... res) {} | InputArgumentIndex | 2 |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:28:37:28:58 | functio ... res) {} | calleeImports | ldapjs |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:28:37:28:58 | functio ... res) {} | contextFunctionInterfaces | sanitizeInput(input) |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:28:37:28:58 | functio ... res) {} | contextSurroundingFunctionParameters | (req, res)\n(err, res) |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:28:37:28:58 | functio ... res) {} | enclosingFunctionBody | req res q url parse req url true username q query username opts1 filter (\|(name= username )(username= username )) client search o=example opts1 err res client search o=example filter (\|(name= username )(username= username )) err res client search o=example filter (\|(name= sanitizeInput username )(username= sanitizeInput username )) err res f OrFilter filters EqualityFilter attribute name value username EqualityFilter attribute username value username client search o=example filter f err res parsedFilter ldap parseFilter (\|(name= username )(username= username )) client search o=example filter parsedFilter err res dn ldap parseDN cn= username err dn |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:28:37:28:58 | functio ... res) {} | enclosingFunctionName | http.createServer#functionalargument |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:28:37:28:58 | functio ... res) {} | fileImports | http ldapjs url |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:28:37:28:58 | functio ... res) {} | receiverName | client |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:31:5:31:15 | "o=example" | CalleeFlexibleAccessPath | client.search |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:31:5:31:15 | "o=example" | InputArgumentIndex | 0 |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:31:5:31:15 | "o=example" | calleeImports | ldapjs |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:31:5:31:15 | "o=example" | contextFunctionInterfaces | sanitizeInput(input) |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:31:5:31:15 | "o=example" | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:31:5:31:15 | "o=example" | enclosingFunctionBody | req res q url parse req url true username q query username opts1 filter (\|(name= username )(username= username )) client search o=example opts1 err res client search o=example filter (\|(name= username )(username= username )) err res client search o=example filter (\|(name= sanitizeInput username )(username= sanitizeInput username )) err res f OrFilter filters EqualityFilter attribute name value username EqualityFilter attribute username value username client search o=example filter f err res parsedFilter ldap parseFilter (\|(name= username )(username= username )) client search o=example filter parsedFilter err res dn ldap parseDN cn= username err dn |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:31:5:31:15 | "o=example" | enclosingFunctionName | http.createServer#functionalargument |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:31:5:31:15 | "o=example" | fileImports | http ldapjs url |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:31:5:31:15 | "o=example" | receiverName | client |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:32:5:32:61 | { filte ... e}))` } | CalleeFlexibleAccessPath | client.search |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:32:5:32:61 | { filte ... e}))` } | InputArgumentIndex | 1 |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:32:5:32:61 | { filte ... e}))` } | calleeImports | ldapjs |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:32:5:32:61 | { filte ... e}))` } | contextFunctionInterfaces | sanitizeInput(input) |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:32:5:32:61 | { filte ... e}))` } | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:32:5:32:61 | { filte ... e}))` } | enclosingFunctionBody | req res q url parse req url true username q query username opts1 filter (\|(name= username )(username= username )) client search o=example opts1 err res client search o=example filter (\|(name= username )(username= username )) err res client search o=example filter (\|(name= sanitizeInput username )(username= sanitizeInput username )) err res f OrFilter filters EqualityFilter attribute name value username EqualityFilter attribute username value username client search o=example filter f err res parsedFilter ldap parseFilter (\|(name= username )(username= username )) client search o=example filter parsedFilter err res dn ldap parseDN cn= username err dn |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:32:5:32:61 | { filte ... e}))` } | enclosingFunctionName | http.createServer#functionalargument |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:32:5:32:61 | { filte ... e}))` } | fileImports | http ldapjs url |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:32:5:32:61 | { filte ... e}))` } | receiverName | client |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:32:15:32:59 | `(\|(nam ... ame}))` | CalleeFlexibleAccessPath | client.search |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:32:15:32:59 | `(\|(nam ... ame}))` | InputAccessPathFromCallee | 1.filter |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:32:15:32:59 | `(\|(nam ... ame}))` | InputArgumentIndex | 1 |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:32:15:32:59 | `(\|(nam ... ame}))` | assignedToPropName | filter |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:32:15:32:59 | `(\|(nam ... ame}))` | calleeImports | ldapjs |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:32:15:32:59 | `(\|(nam ... ame}))` | contextFunctionInterfaces | sanitizeInput(input) |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:32:15:32:59 | `(\|(nam ... ame}))` | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:32:15:32:59 | `(\|(nam ... ame}))` | enclosingFunctionBody | req res q url parse req url true username q query username opts1 filter (\|(name= username )(username= username )) client search o=example opts1 err res client search o=example filter (\|(name= username )(username= username )) err res client search o=example filter (\|(name= sanitizeInput username )(username= sanitizeInput username )) err res f OrFilter filters EqualityFilter attribute name value username EqualityFilter attribute username value username client search o=example filter f err res parsedFilter ldap parseFilter (\|(name= username )(username= username )) client search o=example filter parsedFilter err res dn ldap parseDN cn= username err dn |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:32:15:32:59 | `(\|(nam ... ame}))` | enclosingFunctionName | http.createServer#functionalargument |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:32:15:32:59 | `(\|(nam ... ame}))` | fileImports | http ldapjs url |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:33:5:33:26 | functio ... res) {} | CalleeFlexibleAccessPath | client.search |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:33:5:33:26 | functio ... res) {} | InputArgumentIndex | 2 |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:33:5:33:26 | functio ... res) {} | calleeImports | ldapjs |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:33:5:33:26 | functio ... res) {} | contextFunctionInterfaces | sanitizeInput(input) |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:33:5:33:26 | functio ... res) {} | contextSurroundingFunctionParameters | (req, res)\n(err, res) |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:33:5:33:26 | functio ... res) {} | enclosingFunctionBody | req res q url parse req url true username q query username opts1 filter (\|(name= username )(username= username )) client search o=example opts1 err res client search o=example filter (\|(name= username )(username= username )) err res client search o=example filter (\|(name= sanitizeInput username )(username= sanitizeInput username )) err res f OrFilter filters EqualityFilter attribute name value username EqualityFilter attribute username value username client search o=example filter f err res parsedFilter ldap parseFilter (\|(name= username )(username= username )) client search o=example filter parsedFilter err res dn ldap parseDN cn= username err dn |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:33:5:33:26 | functio ... res) {} | enclosingFunctionName | http.createServer#functionalargument |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:33:5:33:26 | functio ... res) {} | fileImports | http ldapjs url |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:33:5:33:26 | functio ... res) {} | receiverName | client |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:38:5:38:15 | "o=example" | CalleeFlexibleAccessPath | client.search |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:38:5:38:15 | "o=example" | InputArgumentIndex | 0 |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:38:5:38:15 | "o=example" | calleeImports | ldapjs |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:38:5:38:15 | "o=example" | contextFunctionInterfaces | sanitizeInput(input) |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:38:5:38:15 | "o=example" | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:38:5:38:15 | "o=example" | enclosingFunctionBody | req res q url parse req url true username q query username opts1 filter (\|(name= username )(username= username )) client search o=example opts1 err res client search o=example filter (\|(name= username )(username= username )) err res client search o=example filter (\|(name= sanitizeInput username )(username= sanitizeInput username )) err res f OrFilter filters EqualityFilter attribute name value username EqualityFilter attribute username value username client search o=example filter f err res parsedFilter ldap parseFilter (\|(name= username )(username= username )) client search o=example filter parsedFilter err res dn ldap parseDN cn= username err dn |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:38:5:38:15 | "o=example" | enclosingFunctionName | http.createServer#functionalargument |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:38:5:38:15 | "o=example" | fileImports | http ldapjs url |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:38:5:38:15 | "o=example" | receiverName | client |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:39:5:43:5 | { // OK ... ,\\n    } | CalleeFlexibleAccessPath | client.search |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:39:5:43:5 | { // OK ... ,\\n    } | InputArgumentIndex | 1 |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:39:5:43:5 | { // OK ... ,\\n    } | calleeImports | ldapjs |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:39:5:43:5 | { // OK ... ,\\n    } | contextFunctionInterfaces | sanitizeInput(input) |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:39:5:43:5 | { // OK ... ,\\n    } | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:39:5:43:5 | { // OK ... ,\\n    } | enclosingFunctionBody | req res q url parse req url true username q query username opts1 filter (\|(name= username )(username= username )) client search o=example opts1 err res client search o=example filter (\|(name= username )(username= username )) err res client search o=example filter (\|(name= sanitizeInput username )(username= sanitizeInput username )) err res f OrFilter filters EqualityFilter attribute name value username EqualityFilter attribute username value username client search o=example filter f err res parsedFilter ldap parseFilter (\|(name= username )(username= username )) client search o=example filter parsedFilter err res dn ldap parseDN cn= username err dn |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:39:5:43:5 | { // OK ... ,\\n    } | enclosingFunctionName | http.createServer#functionalargument |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:39:5:43:5 | { // OK ... ,\\n    } | fileImports | http ldapjs url |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:39:5:43:5 | { // OK ... ,\\n    } | receiverName | client |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:40:15:42:11 | `(\|(nam ...   )}))` | CalleeFlexibleAccessPath | client.search |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:40:15:42:11 | `(\|(nam ...   )}))` | InputAccessPathFromCallee | 1.filter |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:40:15:42:11 | `(\|(nam ...   )}))` | InputArgumentIndex | 1 |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:40:15:42:11 | `(\|(nam ...   )}))` | assignedToPropName | filter |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:40:15:42:11 | `(\|(nam ...   )}))` | calleeImports | ldapjs |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:40:15:42:11 | `(\|(nam ...   )}))` | contextFunctionInterfaces | sanitizeInput(input) |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:40:15:42:11 | `(\|(nam ...   )}))` | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:40:15:42:11 | `(\|(nam ...   )}))` | enclosingFunctionBody | req res q url parse req url true username q query username opts1 filter (\|(name= username )(username= username )) client search o=example opts1 err res client search o=example filter (\|(name= username )(username= username )) err res client search o=example filter (\|(name= sanitizeInput username )(username= sanitizeInput username )) err res f OrFilter filters EqualityFilter attribute name value username EqualityFilter attribute username value username client search o=example filter f err res parsedFilter ldap parseFilter (\|(name= username )(username= username )) client search o=example filter parsedFilter err res dn ldap parseDN cn= username err dn |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:40:15:42:11 | `(\|(nam ...   )}))` | enclosingFunctionName | http.createServer#functionalargument |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:40:15:42:11 | `(\|(nam ...   )}))` | fileImports | http ldapjs url |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:44:5:44:26 | functio ... res) {} | CalleeFlexibleAccessPath | client.search |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:44:5:44:26 | functio ... res) {} | InputArgumentIndex | 2 |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:44:5:44:26 | functio ... res) {} | calleeImports | ldapjs |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:44:5:44:26 | functio ... res) {} | contextFunctionInterfaces | sanitizeInput(input) |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:44:5:44:26 | functio ... res) {} | contextSurroundingFunctionParameters | (req, res)\n(err, res) |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:44:5:44:26 | functio ... res) {} | enclosingFunctionBody | req res q url parse req url true username q query username opts1 filter (\|(name= username )(username= username )) client search o=example opts1 err res client search o=example filter (\|(name= username )(username= username )) err res client search o=example filter (\|(name= sanitizeInput username )(username= sanitizeInput username )) err res f OrFilter filters EqualityFilter attribute name value username EqualityFilter attribute username value username client search o=example filter f err res parsedFilter ldap parseFilter (\|(name= username )(username= username )) client search o=example filter parsedFilter err res dn ldap parseDN cn= username err dn |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:44:5:44:26 | functio ... res) {} | enclosingFunctionName | http.createServer#functionalargument |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:44:5:44:26 | functio ... res) {} | fileImports | http ldapjs url |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:44:5:44:26 | functio ... res) {} | receiverName | client |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:61:17:61:27 | "o=example" | CalleeFlexibleAccessPath | client.search |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:61:17:61:27 | "o=example" | InputArgumentIndex | 0 |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:61:17:61:27 | "o=example" | calleeImports | ldapjs |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:61:17:61:27 | "o=example" | contextFunctionInterfaces | sanitizeInput(input) |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:61:17:61:27 | "o=example" | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:61:17:61:27 | "o=example" | enclosingFunctionBody | req res q url parse req url true username q query username opts1 filter (\|(name= username )(username= username )) client search o=example opts1 err res client search o=example filter (\|(name= username )(username= username )) err res client search o=example filter (\|(name= sanitizeInput username )(username= sanitizeInput username )) err res f OrFilter filters EqualityFilter attribute name value username EqualityFilter attribute username value username client search o=example filter f err res parsedFilter ldap parseFilter (\|(name= username )(username= username )) client search o=example filter parsedFilter err res dn ldap parseDN cn= username err dn |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:61:17:61:27 | "o=example" | enclosingFunctionName | http.createServer#functionalargument |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:61:17:61:27 | "o=example" | fileImports | http ldapjs url |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:61:17:61:27 | "o=example" | receiverName | client |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:61:30:61:42 | { filter: f } | CalleeFlexibleAccessPath | client.search |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:61:30:61:42 | { filter: f } | InputArgumentIndex | 1 |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:61:30:61:42 | { filter: f } | calleeImports | ldapjs |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:61:30:61:42 | { filter: f } | contextFunctionInterfaces | sanitizeInput(input) |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:61:30:61:42 | { filter: f } | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:61:30:61:42 | { filter: f } | enclosingFunctionBody | req res q url parse req url true username q query username opts1 filter (\|(name= username )(username= username )) client search o=example opts1 err res client search o=example filter (\|(name= username )(username= username )) err res client search o=example filter (\|(name= sanitizeInput username )(username= sanitizeInput username )) err res f OrFilter filters EqualityFilter attribute name value username EqualityFilter attribute username value username client search o=example filter f err res parsedFilter ldap parseFilter (\|(name= username )(username= username )) client search o=example filter parsedFilter err res dn ldap parseDN cn= username err dn |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:61:30:61:42 | { filter: f } | enclosingFunctionName | http.createServer#functionalargument |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:61:30:61:42 | { filter: f } | fileImports | http ldapjs url |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:61:30:61:42 | { filter: f } | receiverName | client |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:61:40:61:40 | f | CalleeFlexibleAccessPath | client.search |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:61:40:61:40 | f | InputAccessPathFromCallee | 1.filter |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:61:40:61:40 | f | InputArgumentIndex | 1 |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:61:40:61:40 | f | assignedToPropName | filter |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:61:40:61:40 | f | calleeImports | ldapjs |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:61:40:61:40 | f | contextFunctionInterfaces | sanitizeInput(input) |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:61:40:61:40 | f | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:61:40:61:40 | f | enclosingFunctionBody | req res q url parse req url true username q query username opts1 filter (\|(name= username )(username= username )) client search o=example opts1 err res client search o=example filter (\|(name= username )(username= username )) err res client search o=example filter (\|(name= sanitizeInput username )(username= sanitizeInput username )) err res f OrFilter filters EqualityFilter attribute name value username EqualityFilter attribute username value username client search o=example filter f err res parsedFilter ldap parseFilter (\|(name= username )(username= username )) client search o=example filter parsedFilter err res dn ldap parseDN cn= username err dn |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:61:40:61:40 | f | enclosingFunctionName | http.createServer#functionalargument |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:61:40:61:40 | f | fileImports | http ldapjs url |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:61:45:61:66 | functio ... res) {} | CalleeFlexibleAccessPath | client.search |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:61:45:61:66 | functio ... res) {} | InputArgumentIndex | 2 |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:61:45:61:66 | functio ... res) {} | calleeImports | ldapjs |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:61:45:61:66 | functio ... res) {} | contextFunctionInterfaces | sanitizeInput(input) |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:61:45:61:66 | functio ... res) {} | contextSurroundingFunctionParameters | (req, res)\n(err, res) |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:61:45:61:66 | functio ... res) {} | enclosingFunctionBody | req res q url parse req url true username q query username opts1 filter (\|(name= username )(username= username )) client search o=example opts1 err res client search o=example filter (\|(name= username )(username= username )) err res client search o=example filter (\|(name= sanitizeInput username )(username= sanitizeInput username )) err res f OrFilter filters EqualityFilter attribute name value username EqualityFilter attribute username value username client search o=example filter f err res parsedFilter ldap parseFilter (\|(name= username )(username= username )) client search o=example filter parsedFilter err res dn ldap parseDN cn= username err dn |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:61:45:61:66 | functio ... res) {} | enclosingFunctionName | http.createServer#functionalargument |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:61:45:61:66 | functio ... res) {} | fileImports | http ldapjs url |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:61:45:61:66 | functio ... res) {} | receiverName | client |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:64:5:64:49 | `(\|(nam ... ame}))` | CalleeFlexibleAccessPath | ldap.parseFilter |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:64:5:64:49 | `(\|(nam ... ame}))` | InputArgumentIndex | 0 |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:64:5:64:49 | `(\|(nam ... ame}))` | calleeImports | ldapjs |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:64:5:64:49 | `(\|(nam ... ame}))` | contextFunctionInterfaces | sanitizeInput(input) |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:64:5:64:49 | `(\|(nam ... ame}))` | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:64:5:64:49 | `(\|(nam ... ame}))` | enclosingFunctionBody | req res q url parse req url true username q query username opts1 filter (\|(name= username )(username= username )) client search o=example opts1 err res client search o=example filter (\|(name= username )(username= username )) err res client search o=example filter (\|(name= sanitizeInput username )(username= sanitizeInput username )) err res f OrFilter filters EqualityFilter attribute name value username EqualityFilter attribute username value username client search o=example filter f err res parsedFilter ldap parseFilter (\|(name= username )(username= username )) client search o=example filter parsedFilter err res dn ldap parseDN cn= username err dn |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:64:5:64:49 | `(\|(nam ... ame}))` | enclosingFunctionName | http.createServer#functionalargument |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:64:5:64:49 | `(\|(nam ... ame}))` | fileImports | http ldapjs url |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:64:5:64:49 | `(\|(nam ... ame}))` | receiverName | ldap |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:66:17:66:27 | "o=example" | CalleeFlexibleAccessPath | client.search |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:66:17:66:27 | "o=example" | InputArgumentIndex | 0 |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:66:17:66:27 | "o=example" | calleeImports | ldapjs |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:66:17:66:27 | "o=example" | contextFunctionInterfaces | sanitizeInput(input) |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:66:17:66:27 | "o=example" | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:66:17:66:27 | "o=example" | enclosingFunctionBody | req res q url parse req url true username q query username opts1 filter (\|(name= username )(username= username )) client search o=example opts1 err res client search o=example filter (\|(name= username )(username= username )) err res client search o=example filter (\|(name= sanitizeInput username )(username= sanitizeInput username )) err res f OrFilter filters EqualityFilter attribute name value username EqualityFilter attribute username value username client search o=example filter f err res parsedFilter ldap parseFilter (\|(name= username )(username= username )) client search o=example filter parsedFilter err res dn ldap parseDN cn= username err dn |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:66:17:66:27 | "o=example" | enclosingFunctionName | http.createServer#functionalargument |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:66:17:66:27 | "o=example" | fileImports | http ldapjs url |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:66:17:66:27 | "o=example" | receiverName | client |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:66:30:66:53 | { filte ... ilter } | CalleeFlexibleAccessPath | client.search |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:66:30:66:53 | { filte ... ilter } | InputArgumentIndex | 1 |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:66:30:66:53 | { filte ... ilter } | calleeImports | ldapjs |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:66:30:66:53 | { filte ... ilter } | contextFunctionInterfaces | sanitizeInput(input) |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:66:30:66:53 | { filte ... ilter } | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:66:30:66:53 | { filte ... ilter } | enclosingFunctionBody | req res q url parse req url true username q query username opts1 filter (\|(name= username )(username= username )) client search o=example opts1 err res client search o=example filter (\|(name= username )(username= username )) err res client search o=example filter (\|(name= sanitizeInput username )(username= sanitizeInput username )) err res f OrFilter filters EqualityFilter attribute name value username EqualityFilter attribute username value username client search o=example filter f err res parsedFilter ldap parseFilter (\|(name= username )(username= username )) client search o=example filter parsedFilter err res dn ldap parseDN cn= username err dn |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:66:30:66:53 | { filte ... ilter } | enclosingFunctionName | http.createServer#functionalargument |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:66:30:66:53 | { filte ... ilter } | fileImports | http ldapjs url |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:66:30:66:53 | { filte ... ilter } | receiverName | client |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:66:40:66:51 | parsedFilter | CalleeFlexibleAccessPath | client.search |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:66:40:66:51 | parsedFilter | InputAccessPathFromCallee | 1.filter |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:66:40:66:51 | parsedFilter | InputArgumentIndex | 1 |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:66:40:66:51 | parsedFilter | assignedToPropName | filter |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:66:40:66:51 | parsedFilter | calleeImports | ldapjs |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:66:40:66:51 | parsedFilter | contextFunctionInterfaces | sanitizeInput(input) |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:66:40:66:51 | parsedFilter | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:66:40:66:51 | parsedFilter | enclosingFunctionBody | req res q url parse req url true username q query username opts1 filter (\|(name= username )(username= username )) client search o=example opts1 err res client search o=example filter (\|(name= username )(username= username )) err res client search o=example filter (\|(name= sanitizeInput username )(username= sanitizeInput username )) err res f OrFilter filters EqualityFilter attribute name value username EqualityFilter attribute username value username client search o=example filter f err res parsedFilter ldap parseFilter (\|(name= username )(username= username )) client search o=example filter parsedFilter err res dn ldap parseDN cn= username err dn |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:66:40:66:51 | parsedFilter | enclosingFunctionName | http.createServer#functionalargument |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:66:40:66:51 | parsedFilter | fileImports | http ldapjs url |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:66:56:66:77 | functio ... res) {} | CalleeFlexibleAccessPath | client.search |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:66:56:66:77 | functio ... res) {} | InputArgumentIndex | 2 |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:66:56:66:77 | functio ... res) {} | calleeImports | ldapjs |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:66:56:66:77 | functio ... res) {} | contextFunctionInterfaces | sanitizeInput(input) |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:66:56:66:77 | functio ... res) {} | contextSurroundingFunctionParameters | (req, res)\n(err, res) |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:66:56:66:77 | functio ... res) {} | enclosingFunctionBody | req res q url parse req url true username q query username opts1 filter (\|(name= username )(username= username )) client search o=example opts1 err res client search o=example filter (\|(name= username )(username= username )) err res client search o=example filter (\|(name= sanitizeInput username )(username= sanitizeInput username )) err res f OrFilter filters EqualityFilter attribute name value username EqualityFilter attribute username value username client search o=example filter f err res parsedFilter ldap parseFilter (\|(name= username )(username= username )) client search o=example filter parsedFilter err res dn ldap parseDN cn= username err dn |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:66:56:66:77 | functio ... res) {} | enclosingFunctionName | http.createServer#functionalargument |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:66:56:66:77 | functio ... res) {} | fileImports | http ldapjs url |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:66:56:66:77 | functio ... res) {} | receiverName | client |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:68:27:68:42 | `cn=${username}` | CalleeFlexibleAccessPath | ldap.parseDN |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:68:27:68:42 | `cn=${username}` | InputArgumentIndex | 0 |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:68:27:68:42 | `cn=${username}` | calleeImports | ldapjs |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:68:27:68:42 | `cn=${username}` | contextFunctionInterfaces | sanitizeInput(input) |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:68:27:68:42 | `cn=${username}` | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:68:27:68:42 | `cn=${username}` | enclosingFunctionBody | req res q url parse req url true username q query username opts1 filter (\|(name= username )(username= username )) client search o=example opts1 err res client search o=example filter (\|(name= username )(username= username )) err res client search o=example filter (\|(name= sanitizeInput username )(username= sanitizeInput username )) err res f OrFilter filters EqualityFilter attribute name value username EqualityFilter attribute username value username client search o=example filter f err res parsedFilter ldap parseFilter (\|(name= username )(username= username )) client search o=example filter parsedFilter err res dn ldap parseDN cn= username err dn |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:68:27:68:42 | `cn=${username}` | enclosingFunctionName | http.createServer#functionalargument |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:68:27:68:42 | `cn=${username}` | fileImports | http ldapjs url |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:68:27:68:42 | `cn=${username}` | receiverName | ldap |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:68:45:68:65 | functio ...  dn) {} | CalleeFlexibleAccessPath | ldap.parseDN |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:68:45:68:65 | functio ...  dn) {} | InputArgumentIndex | 1 |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:68:45:68:65 | functio ...  dn) {} | calleeImports | ldapjs |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:68:45:68:65 | functio ...  dn) {} | contextFunctionInterfaces | sanitizeInput(input) |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:68:45:68:65 | functio ...  dn) {} | contextSurroundingFunctionParameters | (req, res)\n(err, dn) |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:68:45:68:65 | functio ...  dn) {} | enclosingFunctionBody | req res q url parse req url true username q query username opts1 filter (\|(name= username )(username= username )) client search o=example opts1 err res client search o=example filter (\|(name= username )(username= username )) err res client search o=example filter (\|(name= sanitizeInput username )(username= sanitizeInput username )) err res f OrFilter filters EqualityFilter attribute name value username EqualityFilter attribute username value username client search o=example filter f err res parsedFilter ldap parseFilter (\|(name= username )(username= username )) client search o=example filter parsedFilter err res dn ldap parseDN cn= username err dn |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:68:45:68:65 | functio ...  dn) {} | enclosingFunctionName | http.createServer#functionalargument |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:68:45:68:65 | functio ...  dn) {} | fileImports | http ldapjs url |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:68:45:68:65 | functio ...  dn) {} | receiverName | ldap |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:71:15:71:17 | 389 | CalleeFlexibleAccessPath | server.listen |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:71:15:71:17 | 389 | InputArgumentIndex | 0 |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:71:15:71:17 | 389 | calleeImports | http |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:71:15:71:17 | 389 | contextFunctionInterfaces | sanitizeInput(input) |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:71:15:71:17 | 389 | contextSurroundingFunctionParameters |  |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:71:15:71:17 | 389 | fileImports | http ldapjs url |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:71:15:71:17 | 389 | receiverName | server |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:71:20:71:27 | () => {} | CalleeFlexibleAccessPath | server.listen |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:71:20:71:27 | () => {} | InputArgumentIndex | 1 |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:71:20:71:27 | () => {} | calleeImports | http |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:71:20:71:27 | () => {} | contextFunctionInterfaces | sanitizeInput(input) |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:71:20:71:27 | () => {} | contextSurroundingFunctionParameters | () |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:71:20:71:27 | () => {} | fileImports | http ldapjs url |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:71:20:71:27 | () => {} | receiverName | server |
 | autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-from.js:1:24:1:31 | "marsdb" | CalleeFlexibleAccessPath | require |
 | autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-from.js:1:24:1:31 | "marsdb" | InputArgumentIndex | 0 |
 | autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-from.js:1:24:1:31 | "marsdb" | calleeImports |  |
@@ -309,16 +1259,16 @@ tokenFeatures
 | autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:9:10:9:26 | "/documents/find" | contextSurroundingFunctionParameters |  |
 | autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:9:10:9:26 | "/documents/find" | fileImports | ./marsdb-flow-from body-parser express |
 | autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:9:10:9:26 | "/documents/find" | receiverName | app |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:9:29:15:1 | (req, r ... ery);\\n} | CalleeFlexibleAccessPath | app.post |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:9:29:15:1 | (req, r ... ery);\\n} | InputArgumentIndex | 1 |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:9:29:15:1 | (req, r ... ery);\\n} | calleeImports | express |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:9:29:15:1 | (req, r ... ery);\\n} | contextFunctionInterfaces |  |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:9:29:15:1 | (req, r ... ery);\\n} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:9:29:15:1 | (req, r ... ery);\\n} | fileImports | ./marsdb-flow-from body-parser express |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:9:29:15:1 | (req, r ... ery);\\n} | receiverName | app |
+| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:9:29:15:1 | (req, r ...  {});\\n} | CalleeFlexibleAccessPath | app.post |
+| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:9:29:15:1 | (req, r ...  {});\\n} | InputArgumentIndex | 1 |
+| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:9:29:15:1 | (req, r ...  {});\\n} | calleeImports | express |
+| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:9:29:15:1 | (req, r ...  {});\\n} | contextFunctionInterfaces |  |
+| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:9:29:15:1 | (req, r ...  {});\\n} | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:9:29:15:1 | (req, r ...  {});\\n} | fileImports | ./marsdb-flow-from body-parser express |
+| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:9:29:15:1 | (req, r ...  {});\\n} | receiverName | app |
 | autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:10:17:10:18 | {} | contextFunctionInterfaces |  |
 | autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:10:17:10:18 | {} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:10:17:10:18 | {} | enclosingFunctionBody | req res query query title req body title db myDoc find query |
+| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:10:17:10:18 | {} | enclosingFunctionBody | req res query query title req body title db myDoc find query err data |
 | autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:10:17:10:18 | {} | enclosingFunctionName | app.post#functionalargument |
 | autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:10:17:10:18 | {} | fileImports | ./marsdb-flow-from body-parser express |
 | autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:14:17:14:21 | query | CalleeFlexibleAccessPath | db.myDoc.find |
@@ -326,9 +1276,17 @@ tokenFeatures
 | autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:14:17:14:21 | query | calleeImports | ./marsdb-flow-from |
 | autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:14:17:14:21 | query | contextFunctionInterfaces |  |
 | autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:14:17:14:21 | query | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:14:17:14:21 | query | enclosingFunctionBody | req res query query title req body title db myDoc find query |
+| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:14:17:14:21 | query | enclosingFunctionBody | req res query query title req body title db myDoc find query err data |
 | autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:14:17:14:21 | query | enclosingFunctionName | app.post#functionalargument |
 | autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:14:17:14:21 | query | fileImports | ./marsdb-flow-from body-parser express |
+| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:14:24:14:40 | (err, data) => {} | CalleeFlexibleAccessPath | db.myDoc.find |
+| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:14:24:14:40 | (err, data) => {} | InputArgumentIndex | 1 |
+| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:14:24:14:40 | (err, data) => {} | calleeImports | ./marsdb-flow-from |
+| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:14:24:14:40 | (err, data) => {} | contextFunctionInterfaces |  |
+| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:14:24:14:40 | (err, data) => {} | contextSurroundingFunctionParameters | (req, res)\n(err, data) |
+| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:14:24:14:40 | (err, data) => {} | enclosingFunctionBody | req res query query title req body title db myDoc find query err data |
+| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:14:24:14:40 | (err, data) => {} | enclosingFunctionName | app.post#functionalargument |
+| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:14:24:14:40 | (err, data) => {} | fileImports | ./marsdb-flow-from body-parser express |
 | autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:1:25:1:33 | "express" | CalleeFlexibleAccessPath | require |
 | autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:1:25:1:33 | "express" | InputArgumentIndex | 0 |
 | autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:1:25:1:33 | "express" | calleeImports |  |
@@ -376,16 +1334,16 @@ tokenFeatures
 | autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:11:10:11:26 | "/documents/find" | contextSurroundingFunctionParameters |  |
 | autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:11:10:11:26 | "/documents/find" | fileImports | body-parser express marsdb |
 | autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:11:10:11:26 | "/documents/find" | receiverName | app |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:11:29:17:1 | (req, r ... ery);\\n} | CalleeFlexibleAccessPath | app.post |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:11:29:17:1 | (req, r ... ery);\\n} | InputArgumentIndex | 1 |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:11:29:17:1 | (req, r ... ery);\\n} | calleeImports | express |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:11:29:17:1 | (req, r ... ery);\\n} | contextFunctionInterfaces |  |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:11:29:17:1 | (req, r ... ery);\\n} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:11:29:17:1 | (req, r ... ery);\\n} | fileImports | body-parser express marsdb |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:11:29:17:1 | (req, r ... ery);\\n} | receiverName | app |
+| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:11:29:17:1 | (req, r ...  {});\\n} | CalleeFlexibleAccessPath | app.post |
+| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:11:29:17:1 | (req, r ...  {});\\n} | InputArgumentIndex | 1 |
+| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:11:29:17:1 | (req, r ...  {});\\n} | calleeImports | express |
+| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:11:29:17:1 | (req, r ...  {});\\n} | contextFunctionInterfaces |  |
+| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:11:29:17:1 | (req, r ...  {});\\n} | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:11:29:17:1 | (req, r ...  {});\\n} | fileImports | body-parser express marsdb |
+| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:11:29:17:1 | (req, r ...  {});\\n} | receiverName | app |
 | autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:12:17:12:18 | {} | contextFunctionInterfaces |  |
 | autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:12:17:12:18 | {} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:12:17:12:18 | {} | enclosingFunctionBody | req res query query title req body title doc find query |
+| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:12:17:12:18 | {} | enclosingFunctionBody | req res query query title req body title doc find query err data |
 | autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:12:17:12:18 | {} | enclosingFunctionName | app.post#functionalargument |
 | autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:12:17:12:18 | {} | fileImports | body-parser express marsdb |
 | autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:16:12:16:16 | query | CalleeFlexibleAccessPath | doc.find |
@@ -393,10 +1351,19 @@ tokenFeatures
 | autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:16:12:16:16 | query | calleeImports | marsdb |
 | autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:16:12:16:16 | query | contextFunctionInterfaces |  |
 | autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:16:12:16:16 | query | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:16:12:16:16 | query | enclosingFunctionBody | req res query query title req body title doc find query |
+| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:16:12:16:16 | query | enclosingFunctionBody | req res query query title req body title doc find query err data |
 | autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:16:12:16:16 | query | enclosingFunctionName | app.post#functionalargument |
 | autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:16:12:16:16 | query | fileImports | body-parser express marsdb |
 | autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:16:12:16:16 | query | receiverName | doc |
+| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:16:19:16:35 | (err, data) => {} | CalleeFlexibleAccessPath | doc.find |
+| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:16:19:16:35 | (err, data) => {} | InputArgumentIndex | 1 |
+| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:16:19:16:35 | (err, data) => {} | calleeImports | marsdb |
+| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:16:19:16:35 | (err, data) => {} | contextFunctionInterfaces |  |
+| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:16:19:16:35 | (err, data) => {} | contextSurroundingFunctionParameters | (req, res)\n(err, data) |
+| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:16:19:16:35 | (err, data) => {} | enclosingFunctionBody | req res query query title req body title doc find query err data |
+| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:16:19:16:35 | (err, data) => {} | enclosingFunctionName | app.post#functionalargument |
+| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:16:19:16:35 | (err, data) => {} | fileImports | body-parser express marsdb |
+| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:16:19:16:35 | (err, data) => {} | receiverName | doc |
 | autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:1:25:1:33 | "express" | CalleeFlexibleAccessPath | require |
 | autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:1:25:1:33 | "express" | InputArgumentIndex | 0 |
 | autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:1:25:1:33 | "express" | calleeImports |  |
@@ -2327,6 +3294,146 @@ tokenFeatures
 | autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:13:22:13:37 | `${req.body.id}` | enclosingFunctionBody | req res v JSON parse req body x MyModel find id v MyModel find id req body id MyModel find id req body id |
 | autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:13:22:13:37 | `${req.body.id}` | enclosingFunctionName | app.post#functionalargument |
 | autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:13:22:13:37 | `${req.body.id}` | fileImports | ./mongooseModel body-parser express |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:1:21:1:29 | "express" | CalleeFlexibleAccessPath | require |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:1:21:1:29 | "express" | InputArgumentIndex | 0 |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:1:21:1:29 | "express" | calleeImports |  |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:1:21:1:29 | "express" | contextFunctionInterfaces | handler(req, res) |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:1:21:1:29 | "express" | contextSurroundingFunctionParameters |  |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:1:21:1:29 | "express" | fileImports | express mysql |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:2:23:2:29 | 'mysql' | CalleeFlexibleAccessPath | require |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:2:23:2:29 | 'mysql' | InputArgumentIndex | 0 |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:2:23:2:29 | 'mysql' | calleeImports |  |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:2:23:2:29 | 'mysql' | contextFunctionInterfaces | handler(req, res) |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:2:23:2:29 | 'mysql' | contextSurroundingFunctionParameters |  |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:2:23:2:29 | 'mysql' | fileImports | express mysql |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:3:31:3:41 | getConfig() | CalleeFlexibleAccessPath | mysql.createPool |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:3:31:3:41 | getConfig() | InputArgumentIndex | 0 |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:3:31:3:41 | getConfig() | calleeImports | mysql |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:3:31:3:41 | getConfig() | contextFunctionInterfaces | handler(req, res) |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:3:31:3:41 | getConfig() | contextSurroundingFunctionParameters |  |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:3:31:3:41 | getConfig() | fileImports | express mysql |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:3:31:3:41 | getConfig() | receiverName | mysql |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:5:9:5:16 | "search" | CalleeFlexibleAccessPath | app.get |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:5:9:5:16 | "search" | InputArgumentIndex | 0 |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:5:9:5:16 | "search" | calleeImports | express |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:5:9:5:16 | "search" | contextFunctionInterfaces | handler(req, res) |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:5:9:5:16 | "search" | contextSurroundingFunctionParameters |  |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:5:9:5:16 | "search" | fileImports | express mysql |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:5:9:5:16 | "search" | receiverName | app |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:5:19:22:1 | functio ...   });\\n} | CalleeFlexibleAccessPath | app.get |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:5:19:22:1 | functio ...   });\\n} | InputArgumentIndex | 1 |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:5:19:22:1 | functio ...   });\\n} | calleeImports | express |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:5:19:22:1 | functio ...   });\\n} | contextFunctionInterfaces | handler(req, res) |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:5:19:22:1 | functio ...   });\\n} | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:5:19:22:1 | functio ...   });\\n} | fileImports | express mysql |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:5:19:22:1 | functio ...   });\\n} | receiverName | app |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:7:24:12:5 | functio ... ;\\n    } | CalleeFlexibleAccessPath | pool.getConnection |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:7:24:12:5 | functio ... ;\\n    } | InputArgumentIndex | 0 |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:7:24:12:5 | functio ... ;\\n    } | calleeImports | mysql |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:7:24:12:5 | functio ... ;\\n    } | contextFunctionInterfaces | handler(req, res) |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:7:24:12:5 | functio ... ;\\n    } | contextSurroundingFunctionParameters | (req, res)\n(err, connection) |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:7:24:12:5 | functio ... ;\\n    } | enclosingFunctionBody | req res temp req params value pool getConnection err connection connection query sql SELECT * FROM `books` WHERE `author` = ? values temp error results fields pool getConnection err connection connection query sql SELECT * FROM `books` WHERE `author` =  temp error results fields pool getConnection err connection connection query SELECT * FROM `books` WHERE `author` =  temp error results fields |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:7:24:12:5 | functio ... ;\\n    } | enclosingFunctionName | handler |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:7:24:12:5 | functio ... ;\\n    } | fileImports | express mysql |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:7:24:12:5 | functio ... ;\\n    } | receiverName | pool |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:8:26:11:9 | {\\n      ...       } | CalleeFlexibleAccessPath | connection.query |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:8:26:11:9 | {\\n      ...       } | InputArgumentIndex | 0 |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:8:26:11:9 | {\\n      ...       } | contextFunctionInterfaces | handler(req, res) |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:8:26:11:9 | {\\n      ...       } | contextSurroundingFunctionParameters | (req, res)\n(err, connection) |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:8:26:11:9 | {\\n      ...       } | enclosingFunctionBody | req res temp req params value pool getConnection err connection connection query sql SELECT * FROM `books` WHERE `author` = ? values temp error results fields pool getConnection err connection connection query sql SELECT * FROM `books` WHERE `author` =  temp error results fields pool getConnection err connection connection query SELECT * FROM `books` WHERE `author` =  temp error results fields |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:8:26:11:9 | {\\n      ...       } | enclosingFunctionName | handler |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:8:26:11:9 | {\\n      ...       } | fileImports | express mysql |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:8:26:11:9 | {\\n      ...       } | receiverName | connection |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:9:18:9:59 | 'SELECT ... r` = ?' | CalleeFlexibleAccessPath | connection.query |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:9:18:9:59 | 'SELECT ... r` = ?' | InputAccessPathFromCallee | 0.sql |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:9:18:9:59 | 'SELECT ... r` = ?' | InputArgumentIndex | 0 |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:9:18:9:59 | 'SELECT ... r` = ?' | assignedToPropName | sql |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:9:18:9:59 | 'SELECT ... r` = ?' | contextFunctionInterfaces | handler(req, res) |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:9:18:9:59 | 'SELECT ... r` = ?' | contextSurroundingFunctionParameters | (req, res)\n(err, connection) |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:9:18:9:59 | 'SELECT ... r` = ?' | enclosingFunctionBody | req res temp req params value pool getConnection err connection connection query sql SELECT * FROM `books` WHERE `author` = ? values temp error results fields pool getConnection err connection connection query sql SELECT * FROM `books` WHERE `author` =  temp error results fields pool getConnection err connection connection query SELECT * FROM `books` WHERE `author` =  temp error results fields |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:9:18:9:59 | 'SELECT ... r` = ?' | enclosingFunctionName | handler |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:9:18:9:59 | 'SELECT ... r` = ?' | fileImports | express mysql |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:10:21:10:26 | [temp] | CalleeFlexibleAccessPath | connection.query |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:10:21:10:26 | [temp] | InputAccessPathFromCallee | 0.values |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:10:21:10:26 | [temp] | InputArgumentIndex | 0 |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:10:21:10:26 | [temp] | assignedToPropName | values |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:10:21:10:26 | [temp] | contextFunctionInterfaces | handler(req, res) |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:10:21:10:26 | [temp] | contextSurroundingFunctionParameters | (req, res)\n(err, connection) |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:10:21:10:26 | [temp] | enclosingFunctionBody | req res temp req params value pool getConnection err connection connection query sql SELECT * FROM `books` WHERE `author` = ? values temp error results fields pool getConnection err connection connection query sql SELECT * FROM `books` WHERE `author` =  temp error results fields pool getConnection err connection connection query SELECT * FROM `books` WHERE `author` =  temp error results fields |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:10:21:10:26 | [temp] | enclosingFunctionName | handler |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:10:21:10:26 | [temp] | fileImports | express mysql |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:10:22:10:25 | temp | contextFunctionInterfaces | handler(req, res) |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:10:22:10:25 | temp | contextSurroundingFunctionParameters | (req, res)\n(err, connection) |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:10:22:10:25 | temp | enclosingFunctionBody | req res temp req params value pool getConnection err connection connection query sql SELECT * FROM `books` WHERE `author` = ? values temp error results fields pool getConnection err connection connection query sql SELECT * FROM `books` WHERE `author` =  temp error results fields pool getConnection err connection connection query SELECT * FROM `books` WHERE `author` =  temp error results fields |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:10:22:10:25 | temp | enclosingFunctionName | handler |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:10:22:10:25 | temp | fileImports | express mysql |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:11:12:11:46 | functio ... lds) {} | CalleeFlexibleAccessPath | connection.query |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:11:12:11:46 | functio ... lds) {} | InputArgumentIndex | 1 |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:11:12:11:46 | functio ... lds) {} | contextFunctionInterfaces | handler(req, res) |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:11:12:11:46 | functio ... lds) {} | contextSurroundingFunctionParameters | (req, res)\n(err, connection)\n(error, results, fields) |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:11:12:11:46 | functio ... lds) {} | enclosingFunctionBody | req res temp req params value pool getConnection err connection connection query sql SELECT * FROM `books` WHERE `author` = ? values temp error results fields pool getConnection err connection connection query sql SELECT * FROM `books` WHERE `author` =  temp error results fields pool getConnection err connection connection query SELECT * FROM `books` WHERE `author` =  temp error results fields |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:11:12:11:46 | functio ... lds) {} | enclosingFunctionName | handler |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:11:12:11:46 | functio ... lds) {} | fileImports | express mysql |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:11:12:11:46 | functio ... lds) {} | receiverName | connection |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:13:24:17:5 | functio ... ;\\n    } | CalleeFlexibleAccessPath | pool.getConnection |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:13:24:17:5 | functio ... ;\\n    } | InputArgumentIndex | 0 |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:13:24:17:5 | functio ... ;\\n    } | calleeImports | mysql |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:13:24:17:5 | functio ... ;\\n    } | contextFunctionInterfaces | handler(req, res) |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:13:24:17:5 | functio ... ;\\n    } | contextSurroundingFunctionParameters | (req, res)\n(err, connection) |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:13:24:17:5 | functio ... ;\\n    } | enclosingFunctionBody | req res temp req params value pool getConnection err connection connection query sql SELECT * FROM `books` WHERE `author` = ? values temp error results fields pool getConnection err connection connection query sql SELECT * FROM `books` WHERE `author` =  temp error results fields pool getConnection err connection connection query SELECT * FROM `books` WHERE `author` =  temp error results fields |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:13:24:17:5 | functio ... ;\\n    } | enclosingFunctionName | handler |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:13:24:17:5 | functio ... ;\\n    } | fileImports | express mysql |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:13:24:17:5 | functio ... ;\\n    } | receiverName | pool |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:14:26:16:9 | {\\n      ...       } | CalleeFlexibleAccessPath | connection.query |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:14:26:16:9 | {\\n      ...       } | InputArgumentIndex | 0 |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:14:26:16:9 | {\\n      ...       } | contextFunctionInterfaces | handler(req, res) |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:14:26:16:9 | {\\n      ...       } | contextSurroundingFunctionParameters | (req, res)\n(err, connection) |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:14:26:16:9 | {\\n      ...       } | enclosingFunctionBody | req res temp req params value pool getConnection err connection connection query sql SELECT * FROM `books` WHERE `author` = ? values temp error results fields pool getConnection err connection connection query sql SELECT * FROM `books` WHERE `author` =  temp error results fields pool getConnection err connection connection query SELECT * FROM `books` WHERE `author` =  temp error results fields |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:14:26:16:9 | {\\n      ...       } | enclosingFunctionName | handler |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:14:26:16:9 | {\\n      ...       } | fileImports | express mysql |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:14:26:16:9 | {\\n      ...       } | receiverName | connection |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:15:18:15:65 | 'SELECT ...  + temp | CalleeFlexibleAccessPath | connection.query |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:15:18:15:65 | 'SELECT ...  + temp | InputAccessPathFromCallee | 0.sql |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:15:18:15:65 | 'SELECT ...  + temp | InputArgumentIndex | 0 |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:15:18:15:65 | 'SELECT ...  + temp | assignedToPropName | sql |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:15:18:15:65 | 'SELECT ...  + temp | contextFunctionInterfaces | handler(req, res) |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:15:18:15:65 | 'SELECT ...  + temp | contextSurroundingFunctionParameters | (req, res)\n(err, connection) |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:15:18:15:65 | 'SELECT ...  + temp | enclosingFunctionBody | req res temp req params value pool getConnection err connection connection query sql SELECT * FROM `books` WHERE `author` = ? values temp error results fields pool getConnection err connection connection query sql SELECT * FROM `books` WHERE `author` =  temp error results fields pool getConnection err connection connection query SELECT * FROM `books` WHERE `author` =  temp error results fields |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:15:18:15:65 | 'SELECT ...  + temp | enclosingFunctionName | handler |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:15:18:15:65 | 'SELECT ...  + temp | fileImports | express mysql |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:16:12:16:46 | functio ... lds) {} | CalleeFlexibleAccessPath | connection.query |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:16:12:16:46 | functio ... lds) {} | InputArgumentIndex | 1 |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:16:12:16:46 | functio ... lds) {} | contextFunctionInterfaces | handler(req, res) |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:16:12:16:46 | functio ... lds) {} | contextSurroundingFunctionParameters | (req, res)\n(err, connection)\n(error, results, fields) |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:16:12:16:46 | functio ... lds) {} | enclosingFunctionBody | req res temp req params value pool getConnection err connection connection query sql SELECT * FROM `books` WHERE `author` = ? values temp error results fields pool getConnection err connection connection query sql SELECT * FROM `books` WHERE `author` =  temp error results fields pool getConnection err connection connection query SELECT * FROM `books` WHERE `author` =  temp error results fields |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:16:12:16:46 | functio ... lds) {} | enclosingFunctionName | handler |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:16:12:16:46 | functio ... lds) {} | fileImports | express mysql |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:16:12:16:46 | functio ... lds) {} | receiverName | connection |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:18:24:21:5 | functio ... ;\\n    } | CalleeFlexibleAccessPath | pool.getConnection |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:18:24:21:5 | functio ... ;\\n    } | InputArgumentIndex | 0 |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:18:24:21:5 | functio ... ;\\n    } | calleeImports | mysql |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:18:24:21:5 | functio ... ;\\n    } | contextFunctionInterfaces | handler(req, res) |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:18:24:21:5 | functio ... ;\\n    } | contextSurroundingFunctionParameters | (req, res)\n(err, connection) |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:18:24:21:5 | functio ... ;\\n    } | enclosingFunctionBody | req res temp req params value pool getConnection err connection connection query sql SELECT * FROM `books` WHERE `author` = ? values temp error results fields pool getConnection err connection connection query sql SELECT * FROM `books` WHERE `author` =  temp error results fields pool getConnection err connection connection query SELECT * FROM `books` WHERE `author` =  temp error results fields |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:18:24:21:5 | functio ... ;\\n    } | enclosingFunctionName | handler |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:18:24:21:5 | functio ... ;\\n    } | fileImports | express mysql |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:18:24:21:5 | functio ... ;\\n    } | receiverName | pool |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:19:26:19:73 | 'SELECT ...  + temp | CalleeFlexibleAccessPath | connection.query |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:19:26:19:73 | 'SELECT ...  + temp | InputArgumentIndex | 0 |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:19:26:19:73 | 'SELECT ...  + temp | contextFunctionInterfaces | handler(req, res) |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:19:26:19:73 | 'SELECT ...  + temp | contextSurroundingFunctionParameters | (req, res)\n(err, connection) |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:19:26:19:73 | 'SELECT ...  + temp | enclosingFunctionBody | req res temp req params value pool getConnection err connection connection query sql SELECT * FROM `books` WHERE `author` = ? values temp error results fields pool getConnection err connection connection query sql SELECT * FROM `books` WHERE `author` =  temp error results fields pool getConnection err connection connection query SELECT * FROM `books` WHERE `author` =  temp error results fields |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:19:26:19:73 | 'SELECT ...  + temp | enclosingFunctionName | handler |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:19:26:19:73 | 'SELECT ...  + temp | fileImports | express mysql |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:19:26:19:73 | 'SELECT ...  + temp | receiverName | connection |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:20:13:20:47 | functio ... lds) {} | CalleeFlexibleAccessPath | connection.query |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:20:13:20:47 | functio ... lds) {} | InputArgumentIndex | 1 |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:20:13:20:47 | functio ... lds) {} | contextFunctionInterfaces | handler(req, res) |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:20:13:20:47 | functio ... lds) {} | contextSurroundingFunctionParameters | (req, res)\n(err, connection)\n(error, results, fields) |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:20:13:20:47 | functio ... lds) {} | enclosingFunctionBody | req res temp req params value pool getConnection err connection connection query sql SELECT * FROM `books` WHERE `author` = ? values temp error results fields pool getConnection err connection connection query sql SELECT * FROM `books` WHERE `author` =  temp error results fields pool getConnection err connection connection query SELECT * FROM `books` WHERE `author` =  temp error results fields |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:20:13:20:47 | functio ... lds) {} | enclosingFunctionName | handler |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:20:13:20:47 | functio ... lds) {} | fileImports | express mysql |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:20:13:20:47 | functio ... lds) {} | receiverName | connection |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise-types.ts:8:17:8:21 | taint | CalleeFlexibleAccessPath | this.db.one |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise-types.ts:8:17:8:21 | taint | InputArgumentIndex | 0 |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise-types.ts:8:17:8:21 | taint | contextFunctionInterfaces | constructor()\nonRequest(req, res) |
@@ -2381,17 +3488,17 @@ tokenFeatures
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:4:18:4:52 | process ... TRING'] | calleeImports | pg-promise |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:4:18:4:52 | process ... TRING'] | contextFunctionInterfaces | cnd(t) |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:4:18:4:52 | process ... TRING'] | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:4:18:4:52 | process ... TRING'] | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db task cnd t t one query t t one query |
+| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:4:18:4:52 | process ... TRING'] | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db taskIf cnd t t one query t t one query |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:4:18:4:52 | process ... TRING'] | enclosingFunctionName | get#functionalargument |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:4:18:4:52 | process ... TRING'] | fileImports | express pg-promise |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:6:15:7:34 | "SELECT ... ategory | contextFunctionInterfaces | cnd(t) |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:6:15:7:34 | "SELECT ... ategory | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:6:15:7:34 | "SELECT ... ategory | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db task cnd t t one query t t one query |
+| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:6:15:7:34 | "SELECT ... ategory | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db taskIf cnd t t one query t t one query |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:6:15:7:34 | "SELECT ... ategory | enclosingFunctionName | get#functionalargument |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:6:15:7:34 | "SELECT ... ategory | fileImports | express pg-promise |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:6:15:7:55 | "SELECT ...  PRICE" | contextFunctionInterfaces | cnd(t) |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:6:15:7:55 | "SELECT ...  PRICE" | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:6:15:7:55 | "SELECT ...  PRICE" | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db task cnd t t one query t t one query |
+| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:6:15:7:55 | "SELECT ...  PRICE" | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db taskIf cnd t t one query t t one query |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:6:15:7:55 | "SELECT ...  PRICE" | enclosingFunctionName | get#functionalargument |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:6:15:7:55 | "SELECT ...  PRICE" | fileImports | express pg-promise |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:9:10:9:14 | query | CalleeFlexibleAccessPath | db.any |
@@ -2399,7 +3506,7 @@ tokenFeatures
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:9:10:9:14 | query | calleeImports | pg-promise |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:9:10:9:14 | query | contextFunctionInterfaces | cnd(t) |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:9:10:9:14 | query | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:9:10:9:14 | query | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db task cnd t t one query t t one query |
+| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:9:10:9:14 | query | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db taskIf cnd t t one query t t one query |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:9:10:9:14 | query | enclosingFunctionName | get#functionalargument |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:9:10:9:14 | query | fileImports | express pg-promise |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:9:10:9:14 | query | receiverName | db |
@@ -2408,7 +3515,7 @@ tokenFeatures
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:10:11:10:15 | query | calleeImports | pg-promise |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:10:11:10:15 | query | contextFunctionInterfaces | cnd(t) |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:10:11:10:15 | query | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:10:11:10:15 | query | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db task cnd t t one query t t one query |
+| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:10:11:10:15 | query | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db taskIf cnd t t one query t t one query |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:10:11:10:15 | query | enclosingFunctionName | get#functionalargument |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:10:11:10:15 | query | fileImports | express pg-promise |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:10:11:10:15 | query | receiverName | db |
@@ -2417,7 +3524,7 @@ tokenFeatures
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:11:17:11:21 | query | calleeImports | pg-promise |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:11:17:11:21 | query | contextFunctionInterfaces | cnd(t) |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:11:17:11:21 | query | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:11:17:11:21 | query | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db task cnd t t one query t t one query |
+| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:11:17:11:21 | query | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db taskIf cnd t t one query t t one query |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:11:17:11:21 | query | enclosingFunctionName | get#functionalargument |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:11:17:11:21 | query | fileImports | express pg-promise |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:11:17:11:21 | query | receiverName | db |
@@ -2426,7 +3533,7 @@ tokenFeatures
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:12:10:12:14 | query | calleeImports | pg-promise |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:12:10:12:14 | query | contextFunctionInterfaces | cnd(t) |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:12:10:12:14 | query | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:12:10:12:14 | query | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db task cnd t t one query t t one query |
+| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:12:10:12:14 | query | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db taskIf cnd t t one query t t one query |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:12:10:12:14 | query | enclosingFunctionName | get#functionalargument |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:12:10:12:14 | query | fileImports | express pg-promise |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:12:10:12:14 | query | receiverName | db |
@@ -2435,7 +3542,7 @@ tokenFeatures
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:13:12:13:16 | query | calleeImports | pg-promise |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:13:12:13:16 | query | contextFunctionInterfaces | cnd(t) |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:13:12:13:16 | query | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:13:12:13:16 | query | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db task cnd t t one query t t one query |
+| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:13:12:13:16 | query | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db taskIf cnd t t one query t t one query |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:13:12:13:16 | query | enclosingFunctionName | get#functionalargument |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:13:12:13:16 | query | fileImports | express pg-promise |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:13:12:13:16 | query | receiverName | db |
@@ -2444,7 +3551,7 @@ tokenFeatures
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:14:18:14:22 | query | calleeImports | pg-promise |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:14:18:14:22 | query | contextFunctionInterfaces | cnd(t) |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:14:18:14:22 | query | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:14:18:14:22 | query | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db task cnd t t one query t t one query |
+| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:14:18:14:22 | query | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db taskIf cnd t t one query t t one query |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:14:18:14:22 | query | enclosingFunctionName | get#functionalargument |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:14:18:14:22 | query | fileImports | express pg-promise |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:14:18:14:22 | query | receiverName | db |
@@ -2453,7 +3560,7 @@ tokenFeatures
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:15:11:15:15 | query | calleeImports | pg-promise |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:15:11:15:15 | query | contextFunctionInterfaces | cnd(t) |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:15:11:15:15 | query | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:15:11:15:15 | query | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db task cnd t t one query t t one query |
+| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:15:11:15:15 | query | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db taskIf cnd t t one query t t one query |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:15:11:15:15 | query | enclosingFunctionName | get#functionalargument |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:15:11:15:15 | query | fileImports | express pg-promise |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:15:11:15:15 | query | receiverName | db |
@@ -2462,7 +3569,7 @@ tokenFeatures
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:16:10:16:14 | query | calleeImports | pg-promise |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:16:10:16:14 | query | contextFunctionInterfaces | cnd(t) |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:16:10:16:14 | query | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:16:10:16:14 | query | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db task cnd t t one query t t one query |
+| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:16:10:16:14 | query | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db taskIf cnd t t one query t t one query |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:16:10:16:14 | query | enclosingFunctionName | get#functionalargument |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:16:10:16:14 | query | fileImports | express pg-promise |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:16:10:16:14 | query | receiverName | db |
@@ -2471,7 +3578,7 @@ tokenFeatures
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:17:16:17:20 | query | calleeImports | pg-promise |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:17:16:17:20 | query | contextFunctionInterfaces | cnd(t) |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:17:16:17:20 | query | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:17:16:17:20 | query | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db task cnd t t one query t t one query |
+| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:17:16:17:20 | query | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db taskIf cnd t t one query t t one query |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:17:16:17:20 | query | enclosingFunctionName | get#functionalargument |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:17:16:17:20 | query | fileImports | express pg-promise |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:17:16:17:20 | query | receiverName | db |
@@ -2480,7 +3587,7 @@ tokenFeatures
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:18:12:18:16 | query | calleeImports | pg-promise |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:18:12:18:16 | query | contextFunctionInterfaces | cnd(t) |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:18:12:18:16 | query | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:18:12:18:16 | query | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db task cnd t t one query t t one query |
+| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:18:12:18:16 | query | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db taskIf cnd t t one query t t one query |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:18:12:18:16 | query | enclosingFunctionName | get#functionalargument |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:18:12:18:16 | query | fileImports | express pg-promise |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:18:12:18:16 | query | receiverName | db |
@@ -2489,7 +3596,7 @@ tokenFeatures
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:19:13:19:17 | query | calleeImports | pg-promise |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:19:13:19:17 | query | contextFunctionInterfaces | cnd(t) |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:19:13:19:17 | query | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:19:13:19:17 | query | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db task cnd t t one query t t one query |
+| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:19:13:19:17 | query | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db taskIf cnd t t one query t t one query |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:19:13:19:17 | query | enclosingFunctionName | get#functionalargument |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:19:13:19:17 | query | fileImports | express pg-promise |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:19:13:19:17 | query | receiverName | db |
@@ -2498,7 +3605,7 @@ tokenFeatures
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:21:10:23:3 | {\\n    t ...  OK\\n  } | calleeImports | pg-promise |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:21:10:23:3 | {\\n    t ...  OK\\n  } | contextFunctionInterfaces | cnd(t) |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:21:10:23:3 | {\\n    t ...  OK\\n  } | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:21:10:23:3 | {\\n    t ...  OK\\n  } | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db task cnd t t one query t t one query |
+| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:21:10:23:3 | {\\n    t ...  OK\\n  } | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db taskIf cnd t t one query t t one query |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:21:10:23:3 | {\\n    t ...  OK\\n  } | enclosingFunctionName | get#functionalargument |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:21:10:23:3 | {\\n    t ...  OK\\n  } | fileImports | express pg-promise |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:21:10:23:3 | {\\n    t ...  OK\\n  } | receiverName | db |
@@ -2509,7 +3616,7 @@ tokenFeatures
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:22:11:22:15 | query | calleeImports | pg-promise |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:22:11:22:15 | query | contextFunctionInterfaces | cnd(t) |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:22:11:22:15 | query | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:22:11:22:15 | query | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db task cnd t t one query t t one query |
+| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:22:11:22:15 | query | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db taskIf cnd t t one query t t one query |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:22:11:22:15 | query | enclosingFunctionName | get#functionalargument |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:22:11:22:15 | query | fileImports | express pg-promise |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:24:10:27:3 | {\\n    t ...  OK\\n  } | CalleeFlexibleAccessPath | db.one |
@@ -2517,7 +3624,7 @@ tokenFeatures
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:24:10:27:3 | {\\n    t ...  OK\\n  } | calleeImports | pg-promise |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:24:10:27:3 | {\\n    t ...  OK\\n  } | contextFunctionInterfaces | cnd(t) |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:24:10:27:3 | {\\n    t ...  OK\\n  } | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:24:10:27:3 | {\\n    t ...  OK\\n  } | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db task cnd t t one query t t one query |
+| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:24:10:27:3 | {\\n    t ...  OK\\n  } | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db taskIf cnd t t one query t t one query |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:24:10:27:3 | {\\n    t ...  OK\\n  } | enclosingFunctionName | get#functionalargument |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:24:10:27:3 | {\\n    t ...  OK\\n  } | fileImports | express pg-promise |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:24:10:27:3 | {\\n    t ...  OK\\n  } | receiverName | db |
@@ -2528,7 +3635,7 @@ tokenFeatures
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:25:11:25:44 | 'SELECT ... d = $1' | calleeImports | pg-promise |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:25:11:25:44 | 'SELECT ... d = $1' | contextFunctionInterfaces | cnd(t) |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:25:11:25:44 | 'SELECT ... d = $1' | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:25:11:25:44 | 'SELECT ... d = $1' | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db task cnd t t one query t t one query |
+| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:25:11:25:44 | 'SELECT ... d = $1' | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db taskIf cnd t t one query t t one query |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:25:11:25:44 | 'SELECT ... d = $1' | enclosingFunctionName | get#functionalargument |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:25:11:25:44 | 'SELECT ... d = $1' | fileImports | express pg-promise |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:26:13:26:25 | req.params.id | CalleeFlexibleAccessPath | db.one |
@@ -2538,7 +3645,7 @@ tokenFeatures
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:26:13:26:25 | req.params.id | calleeImports | pg-promise |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:26:13:26:25 | req.params.id | contextFunctionInterfaces | cnd(t) |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:26:13:26:25 | req.params.id | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:26:13:26:25 | req.params.id | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db task cnd t t one query t t one query |
+| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:26:13:26:25 | req.params.id | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db taskIf cnd t t one query t t one query |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:26:13:26:25 | req.params.id | enclosingFunctionName | get#functionalargument |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:26:13:26:25 | req.params.id | fileImports | express pg-promise |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:28:10:31:3 | {\\n    t ... ter\\n  } | CalleeFlexibleAccessPath | db.one |
@@ -2546,7 +3653,7 @@ tokenFeatures
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:28:10:31:3 | {\\n    t ... ter\\n  } | calleeImports | pg-promise |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:28:10:31:3 | {\\n    t ... ter\\n  } | contextFunctionInterfaces | cnd(t) |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:28:10:31:3 | {\\n    t ... ter\\n  } | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:28:10:31:3 | {\\n    t ... ter\\n  } | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db task cnd t t one query t t one query |
+| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:28:10:31:3 | {\\n    t ... ter\\n  } | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db taskIf cnd t t one query t t one query |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:28:10:31:3 | {\\n    t ... ter\\n  } | enclosingFunctionName | get#functionalargument |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:28:10:31:3 | {\\n    t ... ter\\n  } | fileImports | express pg-promise |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:28:10:31:3 | {\\n    t ... ter\\n  } | receiverName | db |
@@ -2557,7 +3664,7 @@ tokenFeatures
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:29:11:29:48 | 'SELECT ... $1:raw' | calleeImports | pg-promise |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:29:11:29:48 | 'SELECT ... $1:raw' | contextFunctionInterfaces | cnd(t) |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:29:11:29:48 | 'SELECT ... $1:raw' | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:29:11:29:48 | 'SELECT ... $1:raw' | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db task cnd t t one query t t one query |
+| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:29:11:29:48 | 'SELECT ... $1:raw' | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db taskIf cnd t t one query t t one query |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:29:11:29:48 | 'SELECT ... $1:raw' | enclosingFunctionName | get#functionalargument |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:29:11:29:48 | 'SELECT ... $1:raw' | fileImports | express pg-promise |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:30:13:30:25 | req.params.id | CalleeFlexibleAccessPath | db.one |
@@ -2567,7 +3674,7 @@ tokenFeatures
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:30:13:30:25 | req.params.id | calleeImports | pg-promise |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:30:13:30:25 | req.params.id | contextFunctionInterfaces | cnd(t) |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:30:13:30:25 | req.params.id | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:30:13:30:25 | req.params.id | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db task cnd t t one query t t one query |
+| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:30:13:30:25 | req.params.id | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db taskIf cnd t t one query t t one query |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:30:13:30:25 | req.params.id | enclosingFunctionName | get#functionalargument |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:30:13:30:25 | req.params.id | fileImports | express pg-promise |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:32:10:35:3 | {\\n    t ...  OK\\n  } | CalleeFlexibleAccessPath | db.one |
@@ -2575,7 +3682,7 @@ tokenFeatures
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:32:10:35:3 | {\\n    t ...  OK\\n  } | calleeImports | pg-promise |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:32:10:35:3 | {\\n    t ...  OK\\n  } | contextFunctionInterfaces | cnd(t) |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:32:10:35:3 | {\\n    t ...  OK\\n  } | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:32:10:35:3 | {\\n    t ...  OK\\n  } | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db task cnd t t one query t t one query |
+| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:32:10:35:3 | {\\n    t ...  OK\\n  } | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db taskIf cnd t t one query t t one query |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:32:10:35:3 | {\\n    t ...  OK\\n  } | enclosingFunctionName | get#functionalargument |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:32:10:35:3 | {\\n    t ...  OK\\n  } | fileImports | express pg-promise |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:32:10:35:3 | {\\n    t ...  OK\\n  } | receiverName | db |
@@ -2586,7 +3693,7 @@ tokenFeatures
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:33:11:33:45 | 'SELECT ...  = $1^' | calleeImports | pg-promise |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:33:11:33:45 | 'SELECT ...  = $1^' | contextFunctionInterfaces | cnd(t) |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:33:11:33:45 | 'SELECT ...  = $1^' | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:33:11:33:45 | 'SELECT ...  = $1^' | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db task cnd t t one query t t one query |
+| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:33:11:33:45 | 'SELECT ...  = $1^' | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db taskIf cnd t t one query t t one query |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:33:11:33:45 | 'SELECT ...  = $1^' | enclosingFunctionName | get#functionalargument |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:33:11:33:45 | 'SELECT ...  = $1^' | fileImports | express pg-promise |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:34:13:34:25 | req.params.id | CalleeFlexibleAccessPath | db.one |
@@ -2596,7 +3703,7 @@ tokenFeatures
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:34:13:34:25 | req.params.id | calleeImports | pg-promise |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:34:13:34:25 | req.params.id | contextFunctionInterfaces | cnd(t) |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:34:13:34:25 | req.params.id | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:34:13:34:25 | req.params.id | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db task cnd t t one query t t one query |
+| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:34:13:34:25 | req.params.id | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db taskIf cnd t t one query t t one query |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:34:13:34:25 | req.params.id | enclosingFunctionName | get#functionalargument |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:34:13:34:25 | req.params.id | fileImports | express pg-promise |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:36:10:43:3 | {\\n    t ...   ]\\n  } | CalleeFlexibleAccessPath | db.one |
@@ -2604,7 +3711,7 @@ tokenFeatures
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:36:10:43:3 | {\\n    t ...   ]\\n  } | calleeImports | pg-promise |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:36:10:43:3 | {\\n    t ...   ]\\n  } | contextFunctionInterfaces | cnd(t) |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:36:10:43:3 | {\\n    t ...   ]\\n  } | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:36:10:43:3 | {\\n    t ...   ]\\n  } | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db task cnd t t one query t t one query |
+| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:36:10:43:3 | {\\n    t ...   ]\\n  } | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db taskIf cnd t t one query t t one query |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:36:10:43:3 | {\\n    t ...   ]\\n  } | enclosingFunctionName | get#functionalargument |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:36:10:43:3 | {\\n    t ...   ]\\n  } | fileImports | express pg-promise |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:36:10:43:3 | {\\n    t ...   ]\\n  } | receiverName | db |
@@ -2615,7 +3722,7 @@ tokenFeatures
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:37:11:37:79 | 'SELECT ... o = $3' | calleeImports | pg-promise |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:37:11:37:79 | 'SELECT ... o = $3' | contextFunctionInterfaces | cnd(t) |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:37:11:37:79 | 'SELECT ... o = $3' | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:37:11:37:79 | 'SELECT ... o = $3' | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db task cnd t t one query t t one query |
+| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:37:11:37:79 | 'SELECT ... o = $3' | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db taskIf cnd t t one query t t one query |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:37:11:37:79 | 'SELECT ... o = $3' | enclosingFunctionName | get#functionalargument |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:37:11:37:79 | 'SELECT ... o = $3' | fileImports | express pg-promise |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:38:13:42:5 | [\\n      ... n\\n    ] | CalleeFlexibleAccessPath | db.one |
@@ -2625,22 +3732,22 @@ tokenFeatures
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:38:13:42:5 | [\\n      ... n\\n    ] | calleeImports | pg-promise |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:38:13:42:5 | [\\n      ... n\\n    ] | contextFunctionInterfaces | cnd(t) |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:38:13:42:5 | [\\n      ... n\\n    ] | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:38:13:42:5 | [\\n      ... n\\n    ] | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db task cnd t t one query t t one query |
+| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:38:13:42:5 | [\\n      ... n\\n    ] | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db taskIf cnd t t one query t t one query |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:38:13:42:5 | [\\n      ... n\\n    ] | enclosingFunctionName | get#functionalargument |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:38:13:42:5 | [\\n      ... n\\n    ] | fileImports | express pg-promise |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:39:7:39:19 | req.params.id | contextFunctionInterfaces | cnd(t) |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:39:7:39:19 | req.params.id | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:39:7:39:19 | req.params.id | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db task cnd t t one query t t one query |
+| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:39:7:39:19 | req.params.id | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db taskIf cnd t t one query t t one query |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:39:7:39:19 | req.params.id | enclosingFunctionName | get#functionalargument |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:39:7:39:19 | req.params.id | fileImports | express pg-promise |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:40:7:40:21 | req.params.name | contextFunctionInterfaces | cnd(t) |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:40:7:40:21 | req.params.name | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:40:7:40:21 | req.params.name | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db task cnd t t one query t t one query |
+| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:40:7:40:21 | req.params.name | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db taskIf cnd t t one query t t one query |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:40:7:40:21 | req.params.name | enclosingFunctionName | get#functionalargument |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:40:7:40:21 | req.params.name | fileImports | express pg-promise |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:41:7:41:20 | req.params.foo | contextFunctionInterfaces | cnd(t) |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:41:7:41:20 | req.params.foo | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:41:7:41:20 | req.params.foo | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db task cnd t t one query t t one query |
+| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:41:7:41:20 | req.params.foo | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db taskIf cnd t t one query t t one query |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:41:7:41:20 | req.params.foo | enclosingFunctionName | get#functionalargument |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:41:7:41:20 | req.params.foo | fileImports | express pg-promise |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:44:10:50:3 | {\\n    t ...   }\\n  } | CalleeFlexibleAccessPath | db.one |
@@ -2648,7 +3755,7 @@ tokenFeatures
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:44:10:50:3 | {\\n    t ...   }\\n  } | calleeImports | pg-promise |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:44:10:50:3 | {\\n    t ...   }\\n  } | contextFunctionInterfaces | cnd(t) |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:44:10:50:3 | {\\n    t ...   }\\n  } | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:44:10:50:3 | {\\n    t ...   }\\n  } | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db task cnd t t one query t t one query |
+| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:44:10:50:3 | {\\n    t ...   }\\n  } | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db taskIf cnd t t one query t t one query |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:44:10:50:3 | {\\n    t ...   }\\n  } | enclosingFunctionName | get#functionalargument |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:44:10:50:3 | {\\n    t ...   }\\n  } | fileImports | express pg-promise |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:44:10:50:3 | {\\n    t ...   }\\n  } | receiverName | db |
@@ -2659,7 +3766,7 @@ tokenFeatures
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:45:11:45:70 | 'SELECT ... {name}' | calleeImports | pg-promise |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:45:11:45:70 | 'SELECT ... {name}' | contextFunctionInterfaces | cnd(t) |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:45:11:45:70 | 'SELECT ... {name}' | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:45:11:45:70 | 'SELECT ... {name}' | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db task cnd t t one query t t one query |
+| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:45:11:45:70 | 'SELECT ... {name}' | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db taskIf cnd t t one query t t one query |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:45:11:45:70 | 'SELECT ... {name}' | enclosingFunctionName | get#functionalargument |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:45:11:45:70 | 'SELECT ... {name}' | fileImports | express pg-promise |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:46:13:49:5 | {\\n      ... n\\n    } | CalleeFlexibleAccessPath | db.one |
@@ -2669,7 +3776,7 @@ tokenFeatures
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:46:13:49:5 | {\\n      ... n\\n    } | calleeImports | pg-promise |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:46:13:49:5 | {\\n      ... n\\n    } | contextFunctionInterfaces | cnd(t) |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:46:13:49:5 | {\\n      ... n\\n    } | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:46:13:49:5 | {\\n      ... n\\n    } | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db task cnd t t one query t t one query |
+| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:46:13:49:5 | {\\n      ... n\\n    } | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db taskIf cnd t t one query t t one query |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:46:13:49:5 | {\\n      ... n\\n    } | enclosingFunctionName | get#functionalargument |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:46:13:49:5 | {\\n      ... n\\n    } | fileImports | express pg-promise |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:47:11:47:23 | req.params.id | CalleeFlexibleAccessPath | db.one |
@@ -2679,7 +3786,7 @@ tokenFeatures
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:47:11:47:23 | req.params.id | calleeImports | pg-promise |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:47:11:47:23 | req.params.id | contextFunctionInterfaces | cnd(t) |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:47:11:47:23 | req.params.id | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:47:11:47:23 | req.params.id | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db task cnd t t one query t t one query |
+| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:47:11:47:23 | req.params.id | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db taskIf cnd t t one query t t one query |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:47:11:47:23 | req.params.id | enclosingFunctionName | get#functionalargument |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:47:11:47:23 | req.params.id | fileImports | express pg-promise |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:48:13:48:27 | req.params.name | CalleeFlexibleAccessPath | db.one |
@@ -2689,7 +3796,7 @@ tokenFeatures
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:48:13:48:27 | req.params.name | calleeImports | pg-promise |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:48:13:48:27 | req.params.name | contextFunctionInterfaces | cnd(t) |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:48:13:48:27 | req.params.name | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:48:13:48:27 | req.params.name | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db task cnd t t one query t t one query |
+| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:48:13:48:27 | req.params.name | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db taskIf cnd t t one query t t one query |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:48:13:48:27 | req.params.name | enclosingFunctionName | get#functionalargument |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:48:13:48:27 | req.params.name | fileImports | express pg-promise |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:51:10:58:3 | {\\n    t ...   }\\n  } | CalleeFlexibleAccessPath | db.one |
@@ -2697,7 +3804,7 @@ tokenFeatures
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:51:10:58:3 | {\\n    t ...   }\\n  } | calleeImports | pg-promise |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:51:10:58:3 | {\\n    t ...   }\\n  } | contextFunctionInterfaces | cnd(t) |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:51:10:58:3 | {\\n    t ...   }\\n  } | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:51:10:58:3 | {\\n    t ...   }\\n  } | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db task cnd t t one query t t one query |
+| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:51:10:58:3 | {\\n    t ...   }\\n  } | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db taskIf cnd t t one query t t one query |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:51:10:58:3 | {\\n    t ...   }\\n  } | enclosingFunctionName | get#functionalargument |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:51:10:58:3 | {\\n    t ...   }\\n  } | fileImports | express pg-promise |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:51:10:58:3 | {\\n    t ...   }\\n  } | receiverName | db |
@@ -2708,7 +3815,7 @@ tokenFeatures
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:52:11:52:121 | "SELECT ... lue%\\"" | calleeImports | pg-promise |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:52:11:52:121 | "SELECT ... lue%\\"" | contextFunctionInterfaces | cnd(t) |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:52:11:52:121 | "SELECT ... lue%\\"" | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:52:11:52:121 | "SELECT ... lue%\\"" | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db task cnd t t one query t t one query |
+| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:52:11:52:121 | "SELECT ... lue%\\"" | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db taskIf cnd t t one query t t one query |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:52:11:52:121 | "SELECT ... lue%\\"" | enclosingFunctionName | get#functionalargument |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:52:11:52:121 | "SELECT ... lue%\\"" | fileImports | express pg-promise |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:53:13:57:5 | {\\n      ... e\\n    } | CalleeFlexibleAccessPath | db.one |
@@ -2718,7 +3825,7 @@ tokenFeatures
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:53:13:57:5 | {\\n      ... e\\n    } | calleeImports | pg-promise |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:53:13:57:5 | {\\n      ... e\\n    } | contextFunctionInterfaces | cnd(t) |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:53:13:57:5 | {\\n      ... e\\n    } | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:53:13:57:5 | {\\n      ... e\\n    } | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db task cnd t t one query t t one query |
+| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:53:13:57:5 | {\\n      ... e\\n    } | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db taskIf cnd t t one query t t one query |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:53:13:57:5 | {\\n      ... e\\n    } | enclosingFunctionName | get#functionalargument |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:53:13:57:5 | {\\n      ... e\\n    } | fileImports | express pg-promise |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:54:11:54:23 | req.params.id | CalleeFlexibleAccessPath | db.one |
@@ -2728,7 +3835,7 @@ tokenFeatures
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:54:11:54:23 | req.params.id | calleeImports | pg-promise |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:54:11:54:23 | req.params.id | contextFunctionInterfaces | cnd(t) |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:54:11:54:23 | req.params.id | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:54:11:54:23 | req.params.id | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db task cnd t t one query t t one query |
+| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:54:11:54:23 | req.params.id | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db taskIf cnd t t one query t t one query |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:54:11:54:23 | req.params.id | enclosingFunctionName | get#functionalargument |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:54:11:54:23 | req.params.id | fileImports | express pg-promise |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:55:13:55:27 | req.params.name | CalleeFlexibleAccessPath | db.one |
@@ -2738,7 +3845,7 @@ tokenFeatures
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:55:13:55:27 | req.params.name | calleeImports | pg-promise |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:55:13:55:27 | req.params.name | contextFunctionInterfaces | cnd(t) |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:55:13:55:27 | req.params.name | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:55:13:55:27 | req.params.name | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db task cnd t t one query t t one query |
+| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:55:13:55:27 | req.params.name | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db taskIf cnd t t one query t t one query |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:55:13:55:27 | req.params.name | enclosingFunctionName | get#functionalargument |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:55:13:55:27 | req.params.name | fileImports | express pg-promise |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:56:14:56:29 | req.params.title | CalleeFlexibleAccessPath | db.one |
@@ -2748,7 +3855,7 @@ tokenFeatures
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:56:14:56:29 | req.params.title | calleeImports | pg-promise |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:56:14:56:29 | req.params.title | contextFunctionInterfaces | cnd(t) |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:56:14:56:29 | req.params.title | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:56:14:56:29 | req.params.title | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db task cnd t t one query t t one query |
+| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:56:14:56:29 | req.params.title | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db taskIf cnd t t one query t t one query |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:56:14:56:29 | req.params.title | enclosingFunctionName | get#functionalargument |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:56:14:56:29 | req.params.title | fileImports | express pg-promise |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:59:11:61:3 | t => {\\n ...  OK\\n  } | CalleeFlexibleAccessPath | db.task |
@@ -2756,7 +3863,7 @@ tokenFeatures
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:59:11:61:3 | t => {\\n ...  OK\\n  } | calleeImports | pg-promise |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:59:11:61:3 | t => {\\n ...  OK\\n  } | contextFunctionInterfaces | cnd(t) |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:59:11:61:3 | t => {\\n ...  OK\\n  } | contextSurroundingFunctionParameters | (req, res)\n(t) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:59:11:61:3 | t => {\\n ...  OK\\n  } | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db task cnd t t one query t t one query |
+| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:59:11:61:3 | t => {\\n ...  OK\\n  } | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db taskIf cnd t t one query t t one query |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:59:11:61:3 | t => {\\n ...  OK\\n  } | enclosingFunctionName | get#functionalargument |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:59:11:61:3 | t => {\\n ...  OK\\n  } | fileImports | express pg-promise |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:59:11:61:3 | t => {\\n ...  OK\\n  } | receiverName | db |
@@ -2764,43 +3871,43 @@ tokenFeatures
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:60:20:60:24 | query | InputArgumentIndex | 0 |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:60:20:60:24 | query | contextFunctionInterfaces | cnd(t) |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:60:20:60:24 | query | contextSurroundingFunctionParameters | (req, res)\n(t) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:60:20:60:24 | query | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db task cnd t t one query t t one query |
+| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:60:20:60:24 | query | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db taskIf cnd t t one query t t one query |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:60:20:60:24 | query | enclosingFunctionName | get#functionalargument |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:60:20:60:24 | query | fileImports | express pg-promise |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:60:20:60:24 | query | receiverName | t |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:63:5:63:30 | { cnd:  ... uery) } | CalleeFlexibleAccessPath | db.task |
+| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:63:5:63:30 | { cnd:  ... uery) } | CalleeFlexibleAccessPath | db.taskIf |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:63:5:63:30 | { cnd:  ... uery) } | InputArgumentIndex | 0 |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:63:5:63:30 | { cnd:  ... uery) } | calleeImports | pg-promise |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:63:5:63:30 | { cnd:  ... uery) } | contextFunctionInterfaces | cnd(t) |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:63:5:63:30 | { cnd:  ... uery) } | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:63:5:63:30 | { cnd:  ... uery) } | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db task cnd t t one query t t one query |
+| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:63:5:63:30 | { cnd:  ... uery) } | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db taskIf cnd t t one query t t one query |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:63:5:63:30 | { cnd:  ... uery) } | enclosingFunctionName | get#functionalargument |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:63:5:63:30 | { cnd:  ... uery) } | fileImports | express pg-promise |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:63:5:63:30 | { cnd:  ... uery) } | receiverName | db |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:63:12:63:28 | t => t.one(query) | CalleeFlexibleAccessPath | db.task |
+| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:63:12:63:28 | t => t.one(query) | CalleeFlexibleAccessPath | db.taskIf |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:63:12:63:28 | t => t.one(query) | InputAccessPathFromCallee | 0.cnd |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:63:12:63:28 | t => t.one(query) | InputArgumentIndex | 0 |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:63:12:63:28 | t => t.one(query) | assignedToPropName | cnd |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:63:12:63:28 | t => t.one(query) | calleeImports | pg-promise |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:63:12:63:28 | t => t.one(query) | contextFunctionInterfaces | cnd(t) |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:63:12:63:28 | t => t.one(query) | contextSurroundingFunctionParameters | (req, res)\n(t) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:63:12:63:28 | t => t.one(query) | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db task cnd t t one query t t one query |
+| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:63:12:63:28 | t => t.one(query) | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db taskIf cnd t t one query t t one query |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:63:12:63:28 | t => t.one(query) | enclosingFunctionName | get#functionalargument |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:63:12:63:28 | t => t.one(query) | fileImports | express pg-promise |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:63:23:63:27 | query | CalleeFlexibleAccessPath | t.one |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:63:23:63:27 | query | InputArgumentIndex | 0 |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:63:23:63:27 | query | contextFunctionInterfaces | cnd(t) |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:63:23:63:27 | query | contextSurroundingFunctionParameters | (req, res)\n(t) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:63:23:63:27 | query | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db task cnd t t one query t t one query |
+| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:63:23:63:27 | query | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db taskIf cnd t t one query t t one query |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:63:23:63:27 | query | enclosingFunctionName | get#functionalargument |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:63:23:63:27 | query | fileImports | express pg-promise |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:63:23:63:27 | query | receiverName | t |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:64:5:64:21 | t => t.one(query) | CalleeFlexibleAccessPath | db.task |
+| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:64:5:64:21 | t => t.one(query) | CalleeFlexibleAccessPath | db.taskIf |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:64:5:64:21 | t => t.one(query) | InputArgumentIndex | 1 |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:64:5:64:21 | t => t.one(query) | calleeImports | pg-promise |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:64:5:64:21 | t => t.one(query) | contextFunctionInterfaces | cnd(t) |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:64:5:64:21 | t => t.one(query) | contextSurroundingFunctionParameters | (req, res)\n(t) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:64:5:64:21 | t => t.one(query) | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db task cnd t t one query t t one query |
+| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:64:5:64:21 | t => t.one(query) | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db taskIf cnd t t one query t t one query |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:64:5:64:21 | t => t.one(query) | enclosingFunctionName | get#functionalargument |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:64:5:64:21 | t => t.one(query) | fileImports | express pg-promise |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:64:5:64:21 | t => t.one(query) | receiverName | db |
@@ -2808,7 +3915,7 @@ tokenFeatures
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:64:16:64:20 | query | InputArgumentIndex | 0 |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:64:16:64:20 | query | contextFunctionInterfaces | cnd(t) |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:64:16:64:20 | query | contextSurroundingFunctionParameters | (req, res)\n(t) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:64:16:64:20 | query | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db task cnd t t one query t t one query |
+| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:64:16:64:20 | query | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db taskIf cnd t t one query t t one query |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:64:16:64:20 | query | enclosingFunctionName | get#functionalargument |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:64:16:64:20 | query | fileImports | express pg-promise |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:64:16:64:20 | query | receiverName | t |
@@ -3542,37 +4649,37 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:1:18:1:21 | 'fs' | calleeImports |  |
 | autogenerated/TaintedPath/TaintedPath.js:1:18:1:21 | 'fs' | contextFunctionInterfaces | views_local(req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:1:18:1:21 | 'fs' | contextSurroundingFunctionParameters |  |
-| autogenerated/TaintedPath/TaintedPath.js:1:18:1:21 | 'fs' | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:1:18:1:21 | 'fs' | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:2:20:2:25 | 'http' | CalleeFlexibleAccessPath | require |
 | autogenerated/TaintedPath/TaintedPath.js:2:20:2:25 | 'http' | InputArgumentIndex | 0 |
 | autogenerated/TaintedPath/TaintedPath.js:2:20:2:25 | 'http' | calleeImports |  |
 | autogenerated/TaintedPath/TaintedPath.js:2:20:2:25 | 'http' | contextFunctionInterfaces | views_local(req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:2:20:2:25 | 'http' | contextSurroundingFunctionParameters |  |
-| autogenerated/TaintedPath/TaintedPath.js:2:20:2:25 | 'http' | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:2:20:2:25 | 'http' | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:3:19:3:23 | 'url' | CalleeFlexibleAccessPath | require |
 | autogenerated/TaintedPath/TaintedPath.js:3:19:3:23 | 'url' | InputArgumentIndex | 0 |
 | autogenerated/TaintedPath/TaintedPath.js:3:19:3:23 | 'url' | calleeImports |  |
 | autogenerated/TaintedPath/TaintedPath.js:3:19:3:23 | 'url' | contextFunctionInterfaces | views_local(req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:3:19:3:23 | 'url' | contextSurroundingFunctionParameters |  |
-| autogenerated/TaintedPath/TaintedPath.js:3:19:3:23 | 'url' | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:3:19:3:23 | 'url' | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:4:24:4:42 | 'sanitize-filename' | CalleeFlexibleAccessPath | require |
 | autogenerated/TaintedPath/TaintedPath.js:4:24:4:42 | 'sanitize-filename' | InputArgumentIndex | 0 |
 | autogenerated/TaintedPath/TaintedPath.js:4:24:4:42 | 'sanitize-filename' | calleeImports |  |
 | autogenerated/TaintedPath/TaintedPath.js:4:24:4:42 | 'sanitize-filename' | contextFunctionInterfaces | views_local(req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:4:24:4:42 | 'sanitize-filename' | contextSurroundingFunctionParameters |  |
-| autogenerated/TaintedPath/TaintedPath.js:4:24:4:42 | 'sanitize-filename' | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:4:24:4:42 | 'sanitize-filename' | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:5:26:5:31 | 'path' | CalleeFlexibleAccessPath | require |
 | autogenerated/TaintedPath/TaintedPath.js:5:26:5:31 | 'path' | InputArgumentIndex | 0 |
 | autogenerated/TaintedPath/TaintedPath.js:5:26:5:31 | 'path' | calleeImports |  |
 | autogenerated/TaintedPath/TaintedPath.js:5:26:5:31 | 'path' | contextFunctionInterfaces | views_local(req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:5:26:5:31 | 'path' | contextSurroundingFunctionParameters |  |
-| autogenerated/TaintedPath/TaintedPath.js:5:26:5:31 | 'path' | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:5:26:5:31 | 'path' | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:8:32:61:1 | functio ... h)));\\n} | CalleeFlexibleAccessPath | http.createServer |
 | autogenerated/TaintedPath/TaintedPath.js:8:32:61:1 | functio ... h)));\\n} | InputArgumentIndex | 0 |
 | autogenerated/TaintedPath/TaintedPath.js:8:32:61:1 | functio ... h)));\\n} | calleeImports | http |
 | autogenerated/TaintedPath/TaintedPath.js:8:32:61:1 | functio ... h)));\\n} | contextFunctionInterfaces | views_local(req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:8:32:61:1 | functio ... h)));\\n} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:8:32:61:1 | functio ... h)));\\n} | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:8:32:61:1 | functio ... h)));\\n} | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:8:32:61:1 | functio ... h)));\\n} | receiverName | http |
 | autogenerated/TaintedPath/TaintedPath.js:9:24:9:30 | req.url | CalleeFlexibleAccessPath | url.parse |
 | autogenerated/TaintedPath/TaintedPath.js:9:24:9:30 | req.url | InputArgumentIndex | 0 |
@@ -3581,7 +4688,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:9:24:9:30 | req.url | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:9:24:9:30 | req.url | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path res write fs readFileSync /home/user/ path path startsWith /home/user/ res write fs readFileSync path path indexOf secret 1 res write fs readFileSync path fs existsSync path res write fs readFileSync path path foo.txt res write fs readFileSync path path foo.txt path bar.txt res write fs readFileSync path path foo.txt path bar.txt someOpaqueCondition res write fs readFileSync path path sanitize path res write fs readFileSync path path url parse req url true query path res write fs readFileSync pathModule basename path res write fs readFileSync pathModule dirname path res write fs readFileSync pathModule extname path res write fs readFileSync pathModule join path res write fs readFileSync pathModule join x y path z res write fs readFileSync pathModule normalize path res write fs readFileSync pathModule relative x path res write fs readFileSync pathModule relative path x res write fs readFileSync pathModule resolve path res write fs readFileSync pathModule resolve x y path z res write fs readFileSync pathModule toNamespacedPath path |
 | autogenerated/TaintedPath/TaintedPath.js:9:24:9:30 | req.url | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:9:24:9:30 | req.url | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:9:24:9:30 | req.url | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:9:24:9:30 | req.url | receiverName | url |
 | autogenerated/TaintedPath/TaintedPath.js:9:33:9:36 | true | CalleeFlexibleAccessPath | url.parse |
 | autogenerated/TaintedPath/TaintedPath.js:9:33:9:36 | true | InputArgumentIndex | 1 |
@@ -3590,7 +4697,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:9:33:9:36 | true | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:9:33:9:36 | true | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path res write fs readFileSync /home/user/ path path startsWith /home/user/ res write fs readFileSync path path indexOf secret 1 res write fs readFileSync path fs existsSync path res write fs readFileSync path path foo.txt res write fs readFileSync path path foo.txt path bar.txt res write fs readFileSync path path foo.txt path bar.txt someOpaqueCondition res write fs readFileSync path path sanitize path res write fs readFileSync path path url parse req url true query path res write fs readFileSync pathModule basename path res write fs readFileSync pathModule dirname path res write fs readFileSync pathModule extname path res write fs readFileSync pathModule join path res write fs readFileSync pathModule join x y path z res write fs readFileSync pathModule normalize path res write fs readFileSync pathModule relative x path res write fs readFileSync pathModule relative path x res write fs readFileSync pathModule resolve path res write fs readFileSync pathModule resolve x y path z res write fs readFileSync pathModule toNamespacedPath path |
 | autogenerated/TaintedPath/TaintedPath.js:9:33:9:36 | true | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:9:33:9:36 | true | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:9:33:9:36 | true | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:9:33:9:36 | true | receiverName | url |
 | autogenerated/TaintedPath/TaintedPath.js:12:13:12:33 | fs.read ... c(path) | CalleeFlexibleAccessPath | res.write |
 | autogenerated/TaintedPath/TaintedPath.js:12:13:12:33 | fs.read ... c(path) | InputArgumentIndex | 0 |
@@ -3598,7 +4705,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:12:13:12:33 | fs.read ... c(path) | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:12:13:12:33 | fs.read ... c(path) | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path res write fs readFileSync /home/user/ path path startsWith /home/user/ res write fs readFileSync path path indexOf secret 1 res write fs readFileSync path fs existsSync path res write fs readFileSync path path foo.txt res write fs readFileSync path path foo.txt path bar.txt res write fs readFileSync path path foo.txt path bar.txt someOpaqueCondition res write fs readFileSync path path sanitize path res write fs readFileSync path path url parse req url true query path res write fs readFileSync pathModule basename path res write fs readFileSync pathModule dirname path res write fs readFileSync pathModule extname path res write fs readFileSync pathModule join path res write fs readFileSync pathModule join x y path z res write fs readFileSync pathModule normalize path res write fs readFileSync pathModule relative x path res write fs readFileSync pathModule relative path x res write fs readFileSync pathModule resolve path res write fs readFileSync pathModule resolve x y path z res write fs readFileSync pathModule toNamespacedPath path |
 | autogenerated/TaintedPath/TaintedPath.js:12:13:12:33 | fs.read ... c(path) | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:12:13:12:33 | fs.read ... c(path) | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:12:13:12:33 | fs.read ... c(path) | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:12:13:12:33 | fs.read ... c(path) | receiverName | res |
 | autogenerated/TaintedPath/TaintedPath.js:12:29:12:32 | path | CalleeFlexibleAccessPath | fs.readFileSync |
 | autogenerated/TaintedPath/TaintedPath.js:12:29:12:32 | path | InputArgumentIndex | 0 |
@@ -3607,7 +4714,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:12:29:12:32 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:12:29:12:32 | path | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path res write fs readFileSync /home/user/ path path startsWith /home/user/ res write fs readFileSync path path indexOf secret 1 res write fs readFileSync path fs existsSync path res write fs readFileSync path path foo.txt res write fs readFileSync path path foo.txt path bar.txt res write fs readFileSync path path foo.txt path bar.txt someOpaqueCondition res write fs readFileSync path path sanitize path res write fs readFileSync path path url parse req url true query path res write fs readFileSync pathModule basename path res write fs readFileSync pathModule dirname path res write fs readFileSync pathModule extname path res write fs readFileSync pathModule join path res write fs readFileSync pathModule join x y path z res write fs readFileSync pathModule normalize path res write fs readFileSync pathModule relative x path res write fs readFileSync pathModule relative path x res write fs readFileSync pathModule resolve path res write fs readFileSync pathModule resolve x y path z res write fs readFileSync pathModule toNamespacedPath path |
 | autogenerated/TaintedPath/TaintedPath.js:12:29:12:32 | path | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:12:29:12:32 | path | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:12:29:12:32 | path | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:12:29:12:32 | path | receiverName | fs |
 | autogenerated/TaintedPath/TaintedPath.js:15:13:15:49 | fs.read ... + path) | CalleeFlexibleAccessPath | res.write |
 | autogenerated/TaintedPath/TaintedPath.js:15:13:15:49 | fs.read ... + path) | InputArgumentIndex | 0 |
@@ -3615,7 +4722,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:15:13:15:49 | fs.read ... + path) | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:15:13:15:49 | fs.read ... + path) | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path res write fs readFileSync /home/user/ path path startsWith /home/user/ res write fs readFileSync path path indexOf secret 1 res write fs readFileSync path fs existsSync path res write fs readFileSync path path foo.txt res write fs readFileSync path path foo.txt path bar.txt res write fs readFileSync path path foo.txt path bar.txt someOpaqueCondition res write fs readFileSync path path sanitize path res write fs readFileSync path path url parse req url true query path res write fs readFileSync pathModule basename path res write fs readFileSync pathModule dirname path res write fs readFileSync pathModule extname path res write fs readFileSync pathModule join path res write fs readFileSync pathModule join x y path z res write fs readFileSync pathModule normalize path res write fs readFileSync pathModule relative x path res write fs readFileSync pathModule relative path x res write fs readFileSync pathModule resolve path res write fs readFileSync pathModule resolve x y path z res write fs readFileSync pathModule toNamespacedPath path |
 | autogenerated/TaintedPath/TaintedPath.js:15:13:15:49 | fs.read ... + path) | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:15:13:15:49 | fs.read ... + path) | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:15:13:15:49 | fs.read ... + path) | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:15:13:15:49 | fs.read ... + path) | receiverName | res |
 | autogenerated/TaintedPath/TaintedPath.js:15:29:15:48 | "/home/user/" + path | CalleeFlexibleAccessPath | fs.readFileSync |
 | autogenerated/TaintedPath/TaintedPath.js:15:29:15:48 | "/home/user/" + path | InputArgumentIndex | 0 |
@@ -3624,7 +4731,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:15:29:15:48 | "/home/user/" + path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:15:29:15:48 | "/home/user/" + path | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path res write fs readFileSync /home/user/ path path startsWith /home/user/ res write fs readFileSync path path indexOf secret 1 res write fs readFileSync path fs existsSync path res write fs readFileSync path path foo.txt res write fs readFileSync path path foo.txt path bar.txt res write fs readFileSync path path foo.txt path bar.txt someOpaqueCondition res write fs readFileSync path path sanitize path res write fs readFileSync path path url parse req url true query path res write fs readFileSync pathModule basename path res write fs readFileSync pathModule dirname path res write fs readFileSync pathModule extname path res write fs readFileSync pathModule join path res write fs readFileSync pathModule join x y path z res write fs readFileSync pathModule normalize path res write fs readFileSync pathModule relative x path res write fs readFileSync pathModule relative path x res write fs readFileSync pathModule resolve path res write fs readFileSync pathModule resolve x y path z res write fs readFileSync pathModule toNamespacedPath path |
 | autogenerated/TaintedPath/TaintedPath.js:15:29:15:48 | "/home/user/" + path | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:15:29:15:48 | "/home/user/" + path | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:15:29:15:48 | "/home/user/" + path | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:15:29:15:48 | "/home/user/" + path | receiverName | fs |
 | autogenerated/TaintedPath/TaintedPath.js:17:23:17:35 | "/home/user/" | CalleeFlexibleAccessPath | path.startsWith |
 | autogenerated/TaintedPath/TaintedPath.js:17:23:17:35 | "/home/user/" | InputArgumentIndex | 0 |
@@ -3633,7 +4740,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:17:23:17:35 | "/home/user/" | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:17:23:17:35 | "/home/user/" | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path res write fs readFileSync /home/user/ path path startsWith /home/user/ res write fs readFileSync path path indexOf secret 1 res write fs readFileSync path fs existsSync path res write fs readFileSync path path foo.txt res write fs readFileSync path path foo.txt path bar.txt res write fs readFileSync path path foo.txt path bar.txt someOpaqueCondition res write fs readFileSync path path sanitize path res write fs readFileSync path path url parse req url true query path res write fs readFileSync pathModule basename path res write fs readFileSync pathModule dirname path res write fs readFileSync pathModule extname path res write fs readFileSync pathModule join path res write fs readFileSync pathModule join x y path z res write fs readFileSync pathModule normalize path res write fs readFileSync pathModule relative x path res write fs readFileSync pathModule relative path x res write fs readFileSync pathModule resolve path res write fs readFileSync pathModule resolve x y path z res write fs readFileSync pathModule toNamespacedPath path |
 | autogenerated/TaintedPath/TaintedPath.js:17:23:17:35 | "/home/user/" | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:17:23:17:35 | "/home/user/" | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:17:23:17:35 | "/home/user/" | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:17:23:17:35 | "/home/user/" | receiverName | path |
 | autogenerated/TaintedPath/TaintedPath.js:18:17:18:37 | fs.read ... c(path) | CalleeFlexibleAccessPath | res.write |
 | autogenerated/TaintedPath/TaintedPath.js:18:17:18:37 | fs.read ... c(path) | InputArgumentIndex | 0 |
@@ -3641,7 +4748,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:18:17:18:37 | fs.read ... c(path) | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:18:17:18:37 | fs.read ... c(path) | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path res write fs readFileSync /home/user/ path path startsWith /home/user/ res write fs readFileSync path path indexOf secret 1 res write fs readFileSync path fs existsSync path res write fs readFileSync path path foo.txt res write fs readFileSync path path foo.txt path bar.txt res write fs readFileSync path path foo.txt path bar.txt someOpaqueCondition res write fs readFileSync path path sanitize path res write fs readFileSync path path url parse req url true query path res write fs readFileSync pathModule basename path res write fs readFileSync pathModule dirname path res write fs readFileSync pathModule extname path res write fs readFileSync pathModule join path res write fs readFileSync pathModule join x y path z res write fs readFileSync pathModule normalize path res write fs readFileSync pathModule relative x path res write fs readFileSync pathModule relative path x res write fs readFileSync pathModule resolve path res write fs readFileSync pathModule resolve x y path z res write fs readFileSync pathModule toNamespacedPath path |
 | autogenerated/TaintedPath/TaintedPath.js:18:17:18:37 | fs.read ... c(path) | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:18:17:18:37 | fs.read ... c(path) | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:18:17:18:37 | fs.read ... c(path) | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:18:17:18:37 | fs.read ... c(path) | receiverName | res |
 | autogenerated/TaintedPath/TaintedPath.js:18:33:18:36 | path | CalleeFlexibleAccessPath | fs.readFileSync |
 | autogenerated/TaintedPath/TaintedPath.js:18:33:18:36 | path | InputArgumentIndex | 0 |
@@ -3650,7 +4757,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:18:33:18:36 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:18:33:18:36 | path | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path res write fs readFileSync /home/user/ path path startsWith /home/user/ res write fs readFileSync path path indexOf secret 1 res write fs readFileSync path fs existsSync path res write fs readFileSync path path foo.txt res write fs readFileSync path path foo.txt path bar.txt res write fs readFileSync path path foo.txt path bar.txt someOpaqueCondition res write fs readFileSync path path sanitize path res write fs readFileSync path path url parse req url true query path res write fs readFileSync pathModule basename path res write fs readFileSync pathModule dirname path res write fs readFileSync pathModule extname path res write fs readFileSync pathModule join path res write fs readFileSync pathModule join x y path z res write fs readFileSync pathModule normalize path res write fs readFileSync pathModule relative x path res write fs readFileSync pathModule relative path x res write fs readFileSync pathModule resolve path res write fs readFileSync pathModule resolve x y path z res write fs readFileSync pathModule toNamespacedPath path |
 | autogenerated/TaintedPath/TaintedPath.js:18:33:18:36 | path | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:18:33:18:36 | path | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:18:33:18:36 | path | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:18:33:18:36 | path | receiverName | fs |
 | autogenerated/TaintedPath/TaintedPath.js:20:20:20:27 | "secret" | CalleeFlexibleAccessPath | path.indexOf |
 | autogenerated/TaintedPath/TaintedPath.js:20:20:20:27 | "secret" | InputArgumentIndex | 0 |
@@ -3659,7 +4766,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:20:20:20:27 | "secret" | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:20:20:20:27 | "secret" | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path res write fs readFileSync /home/user/ path path startsWith /home/user/ res write fs readFileSync path path indexOf secret 1 res write fs readFileSync path fs existsSync path res write fs readFileSync path path foo.txt res write fs readFileSync path path foo.txt path bar.txt res write fs readFileSync path path foo.txt path bar.txt someOpaqueCondition res write fs readFileSync path path sanitize path res write fs readFileSync path path url parse req url true query path res write fs readFileSync pathModule basename path res write fs readFileSync pathModule dirname path res write fs readFileSync pathModule extname path res write fs readFileSync pathModule join path res write fs readFileSync pathModule join x y path z res write fs readFileSync pathModule normalize path res write fs readFileSync pathModule relative x path res write fs readFileSync pathModule relative path x res write fs readFileSync pathModule resolve path res write fs readFileSync pathModule resolve x y path z res write fs readFileSync pathModule toNamespacedPath path |
 | autogenerated/TaintedPath/TaintedPath.js:20:20:20:27 | "secret" | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:20:20:20:27 | "secret" | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:20:20:20:27 | "secret" | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:20:20:20:27 | "secret" | receiverName | path |
 | autogenerated/TaintedPath/TaintedPath.js:21:17:21:37 | fs.read ... c(path) | CalleeFlexibleAccessPath | res.write |
 | autogenerated/TaintedPath/TaintedPath.js:21:17:21:37 | fs.read ... c(path) | InputArgumentIndex | 0 |
@@ -3667,7 +4774,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:21:17:21:37 | fs.read ... c(path) | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:21:17:21:37 | fs.read ... c(path) | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path res write fs readFileSync /home/user/ path path startsWith /home/user/ res write fs readFileSync path path indexOf secret 1 res write fs readFileSync path fs existsSync path res write fs readFileSync path path foo.txt res write fs readFileSync path path foo.txt path bar.txt res write fs readFileSync path path foo.txt path bar.txt someOpaqueCondition res write fs readFileSync path path sanitize path res write fs readFileSync path path url parse req url true query path res write fs readFileSync pathModule basename path res write fs readFileSync pathModule dirname path res write fs readFileSync pathModule extname path res write fs readFileSync pathModule join path res write fs readFileSync pathModule join x y path z res write fs readFileSync pathModule normalize path res write fs readFileSync pathModule relative x path res write fs readFileSync pathModule relative path x res write fs readFileSync pathModule resolve path res write fs readFileSync pathModule resolve x y path z res write fs readFileSync pathModule toNamespacedPath path |
 | autogenerated/TaintedPath/TaintedPath.js:21:17:21:37 | fs.read ... c(path) | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:21:17:21:37 | fs.read ... c(path) | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:21:17:21:37 | fs.read ... c(path) | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:21:17:21:37 | fs.read ... c(path) | receiverName | res |
 | autogenerated/TaintedPath/TaintedPath.js:21:33:21:36 | path | CalleeFlexibleAccessPath | fs.readFileSync |
 | autogenerated/TaintedPath/TaintedPath.js:21:33:21:36 | path | InputArgumentIndex | 0 |
@@ -3676,7 +4783,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:21:33:21:36 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:21:33:21:36 | path | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path res write fs readFileSync /home/user/ path path startsWith /home/user/ res write fs readFileSync path path indexOf secret 1 res write fs readFileSync path fs existsSync path res write fs readFileSync path path foo.txt res write fs readFileSync path path foo.txt path bar.txt res write fs readFileSync path path foo.txt path bar.txt someOpaqueCondition res write fs readFileSync path path sanitize path res write fs readFileSync path path url parse req url true query path res write fs readFileSync pathModule basename path res write fs readFileSync pathModule dirname path res write fs readFileSync pathModule extname path res write fs readFileSync pathModule join path res write fs readFileSync pathModule join x y path z res write fs readFileSync pathModule normalize path res write fs readFileSync pathModule relative x path res write fs readFileSync pathModule relative path x res write fs readFileSync pathModule resolve path res write fs readFileSync pathModule resolve x y path z res write fs readFileSync pathModule toNamespacedPath path |
 | autogenerated/TaintedPath/TaintedPath.js:21:33:21:36 | path | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:21:33:21:36 | path | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:21:33:21:36 | path | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:21:33:21:36 | path | receiverName | fs |
 | autogenerated/TaintedPath/TaintedPath.js:23:21:23:24 | path | CalleeFlexibleAccessPath | fs.existsSync |
 | autogenerated/TaintedPath/TaintedPath.js:23:21:23:24 | path | InputArgumentIndex | 0 |
@@ -3685,7 +4792,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:23:21:23:24 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:23:21:23:24 | path | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path res write fs readFileSync /home/user/ path path startsWith /home/user/ res write fs readFileSync path path indexOf secret 1 res write fs readFileSync path fs existsSync path res write fs readFileSync path path foo.txt res write fs readFileSync path path foo.txt path bar.txt res write fs readFileSync path path foo.txt path bar.txt someOpaqueCondition res write fs readFileSync path path sanitize path res write fs readFileSync path path url parse req url true query path res write fs readFileSync pathModule basename path res write fs readFileSync pathModule dirname path res write fs readFileSync pathModule extname path res write fs readFileSync pathModule join path res write fs readFileSync pathModule join x y path z res write fs readFileSync pathModule normalize path res write fs readFileSync pathModule relative x path res write fs readFileSync pathModule relative path x res write fs readFileSync pathModule resolve path res write fs readFileSync pathModule resolve x y path z res write fs readFileSync pathModule toNamespacedPath path |
 | autogenerated/TaintedPath/TaintedPath.js:23:21:23:24 | path | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:23:21:23:24 | path | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:23:21:23:24 | path | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:23:21:23:24 | path | receiverName | fs |
 | autogenerated/TaintedPath/TaintedPath.js:24:17:24:37 | fs.read ... c(path) | CalleeFlexibleAccessPath | res.write |
 | autogenerated/TaintedPath/TaintedPath.js:24:17:24:37 | fs.read ... c(path) | InputArgumentIndex | 0 |
@@ -3693,7 +4800,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:24:17:24:37 | fs.read ... c(path) | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:24:17:24:37 | fs.read ... c(path) | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path res write fs readFileSync /home/user/ path path startsWith /home/user/ res write fs readFileSync path path indexOf secret 1 res write fs readFileSync path fs existsSync path res write fs readFileSync path path foo.txt res write fs readFileSync path path foo.txt path bar.txt res write fs readFileSync path path foo.txt path bar.txt someOpaqueCondition res write fs readFileSync path path sanitize path res write fs readFileSync path path url parse req url true query path res write fs readFileSync pathModule basename path res write fs readFileSync pathModule dirname path res write fs readFileSync pathModule extname path res write fs readFileSync pathModule join path res write fs readFileSync pathModule join x y path z res write fs readFileSync pathModule normalize path res write fs readFileSync pathModule relative x path res write fs readFileSync pathModule relative path x res write fs readFileSync pathModule resolve path res write fs readFileSync pathModule resolve x y path z res write fs readFileSync pathModule toNamespacedPath path |
 | autogenerated/TaintedPath/TaintedPath.js:24:17:24:37 | fs.read ... c(path) | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:24:17:24:37 | fs.read ... c(path) | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:24:17:24:37 | fs.read ... c(path) | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:24:17:24:37 | fs.read ... c(path) | receiverName | res |
 | autogenerated/TaintedPath/TaintedPath.js:24:33:24:36 | path | CalleeFlexibleAccessPath | fs.readFileSync |
 | autogenerated/TaintedPath/TaintedPath.js:24:33:24:36 | path | InputArgumentIndex | 0 |
@@ -3702,7 +4809,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:24:33:24:36 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:24:33:24:36 | path | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path res write fs readFileSync /home/user/ path path startsWith /home/user/ res write fs readFileSync path path indexOf secret 1 res write fs readFileSync path fs existsSync path res write fs readFileSync path path foo.txt res write fs readFileSync path path foo.txt path bar.txt res write fs readFileSync path path foo.txt path bar.txt someOpaqueCondition res write fs readFileSync path path sanitize path res write fs readFileSync path path url parse req url true query path res write fs readFileSync pathModule basename path res write fs readFileSync pathModule dirname path res write fs readFileSync pathModule extname path res write fs readFileSync pathModule join path res write fs readFileSync pathModule join x y path z res write fs readFileSync pathModule normalize path res write fs readFileSync pathModule relative x path res write fs readFileSync pathModule relative path x res write fs readFileSync pathModule resolve path res write fs readFileSync pathModule resolve x y path z res write fs readFileSync pathModule toNamespacedPath path |
 | autogenerated/TaintedPath/TaintedPath.js:24:33:24:36 | path | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:24:33:24:36 | path | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:24:33:24:36 | path | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:24:33:24:36 | path | receiverName | fs |
 | autogenerated/TaintedPath/TaintedPath.js:27:15:27:35 | fs.read ... c(path) | CalleeFlexibleAccessPath | res.write |
 | autogenerated/TaintedPath/TaintedPath.js:27:15:27:35 | fs.read ... c(path) | InputArgumentIndex | 0 |
@@ -3710,7 +4817,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:27:15:27:35 | fs.read ... c(path) | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:27:15:27:35 | fs.read ... c(path) | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path res write fs readFileSync /home/user/ path path startsWith /home/user/ res write fs readFileSync path path indexOf secret 1 res write fs readFileSync path fs existsSync path res write fs readFileSync path path foo.txt res write fs readFileSync path path foo.txt path bar.txt res write fs readFileSync path path foo.txt path bar.txt someOpaqueCondition res write fs readFileSync path path sanitize path res write fs readFileSync path path url parse req url true query path res write fs readFileSync pathModule basename path res write fs readFileSync pathModule dirname path res write fs readFileSync pathModule extname path res write fs readFileSync pathModule join path res write fs readFileSync pathModule join x y path z res write fs readFileSync pathModule normalize path res write fs readFileSync pathModule relative x path res write fs readFileSync pathModule relative path x res write fs readFileSync pathModule resolve path res write fs readFileSync pathModule resolve x y path z res write fs readFileSync pathModule toNamespacedPath path |
 | autogenerated/TaintedPath/TaintedPath.js:27:15:27:35 | fs.read ... c(path) | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:27:15:27:35 | fs.read ... c(path) | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:27:15:27:35 | fs.read ... c(path) | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:27:15:27:35 | fs.read ... c(path) | receiverName | res |
 | autogenerated/TaintedPath/TaintedPath.js:27:31:27:34 | path | CalleeFlexibleAccessPath | fs.readFileSync |
 | autogenerated/TaintedPath/TaintedPath.js:27:31:27:34 | path | InputArgumentIndex | 0 |
@@ -3719,7 +4826,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:27:31:27:34 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:27:31:27:34 | path | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path res write fs readFileSync /home/user/ path path startsWith /home/user/ res write fs readFileSync path path indexOf secret 1 res write fs readFileSync path fs existsSync path res write fs readFileSync path path foo.txt res write fs readFileSync path path foo.txt path bar.txt res write fs readFileSync path path foo.txt path bar.txt someOpaqueCondition res write fs readFileSync path path sanitize path res write fs readFileSync path path url parse req url true query path res write fs readFileSync pathModule basename path res write fs readFileSync pathModule dirname path res write fs readFileSync pathModule extname path res write fs readFileSync pathModule join path res write fs readFileSync pathModule join x y path z res write fs readFileSync pathModule normalize path res write fs readFileSync pathModule relative x path res write fs readFileSync pathModule relative path x res write fs readFileSync pathModule resolve path res write fs readFileSync pathModule resolve x y path z res write fs readFileSync pathModule toNamespacedPath path |
 | autogenerated/TaintedPath/TaintedPath.js:27:31:27:34 | path | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:27:31:27:34 | path | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:27:31:27:34 | path | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:27:31:27:34 | path | receiverName | fs |
 | autogenerated/TaintedPath/TaintedPath.js:30:15:30:35 | fs.read ... c(path) | CalleeFlexibleAccessPath | res.write |
 | autogenerated/TaintedPath/TaintedPath.js:30:15:30:35 | fs.read ... c(path) | InputArgumentIndex | 0 |
@@ -3727,7 +4834,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:30:15:30:35 | fs.read ... c(path) | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:30:15:30:35 | fs.read ... c(path) | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path res write fs readFileSync /home/user/ path path startsWith /home/user/ res write fs readFileSync path path indexOf secret 1 res write fs readFileSync path fs existsSync path res write fs readFileSync path path foo.txt res write fs readFileSync path path foo.txt path bar.txt res write fs readFileSync path path foo.txt path bar.txt someOpaqueCondition res write fs readFileSync path path sanitize path res write fs readFileSync path path url parse req url true query path res write fs readFileSync pathModule basename path res write fs readFileSync pathModule dirname path res write fs readFileSync pathModule extname path res write fs readFileSync pathModule join path res write fs readFileSync pathModule join x y path z res write fs readFileSync pathModule normalize path res write fs readFileSync pathModule relative x path res write fs readFileSync pathModule relative path x res write fs readFileSync pathModule resolve path res write fs readFileSync pathModule resolve x y path z res write fs readFileSync pathModule toNamespacedPath path |
 | autogenerated/TaintedPath/TaintedPath.js:30:15:30:35 | fs.read ... c(path) | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:30:15:30:35 | fs.read ... c(path) | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:30:15:30:35 | fs.read ... c(path) | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:30:15:30:35 | fs.read ... c(path) | receiverName | res |
 | autogenerated/TaintedPath/TaintedPath.js:30:31:30:34 | path | CalleeFlexibleAccessPath | fs.readFileSync |
 | autogenerated/TaintedPath/TaintedPath.js:30:31:30:34 | path | InputArgumentIndex | 0 |
@@ -3736,7 +4843,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:30:31:30:34 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:30:31:30:34 | path | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path res write fs readFileSync /home/user/ path path startsWith /home/user/ res write fs readFileSync path path indexOf secret 1 res write fs readFileSync path fs existsSync path res write fs readFileSync path path foo.txt res write fs readFileSync path path foo.txt path bar.txt res write fs readFileSync path path foo.txt path bar.txt someOpaqueCondition res write fs readFileSync path path sanitize path res write fs readFileSync path path url parse req url true query path res write fs readFileSync pathModule basename path res write fs readFileSync pathModule dirname path res write fs readFileSync pathModule extname path res write fs readFileSync pathModule join path res write fs readFileSync pathModule join x y path z res write fs readFileSync pathModule normalize path res write fs readFileSync pathModule relative x path res write fs readFileSync pathModule relative path x res write fs readFileSync pathModule resolve path res write fs readFileSync pathModule resolve x y path z res write fs readFileSync pathModule toNamespacedPath path |
 | autogenerated/TaintedPath/TaintedPath.js:30:31:30:34 | path | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:30:31:30:34 | path | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:30:31:30:34 | path | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:30:31:30:34 | path | receiverName | fs |
 | autogenerated/TaintedPath/TaintedPath.js:33:15:33:35 | fs.read ... c(path) | CalleeFlexibleAccessPath | res.write |
 | autogenerated/TaintedPath/TaintedPath.js:33:15:33:35 | fs.read ... c(path) | InputArgumentIndex | 0 |
@@ -3744,7 +4851,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:33:15:33:35 | fs.read ... c(path) | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:33:15:33:35 | fs.read ... c(path) | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path res write fs readFileSync /home/user/ path path startsWith /home/user/ res write fs readFileSync path path indexOf secret 1 res write fs readFileSync path fs existsSync path res write fs readFileSync path path foo.txt res write fs readFileSync path path foo.txt path bar.txt res write fs readFileSync path path foo.txt path bar.txt someOpaqueCondition res write fs readFileSync path path sanitize path res write fs readFileSync path path url parse req url true query path res write fs readFileSync pathModule basename path res write fs readFileSync pathModule dirname path res write fs readFileSync pathModule extname path res write fs readFileSync pathModule join path res write fs readFileSync pathModule join x y path z res write fs readFileSync pathModule normalize path res write fs readFileSync pathModule relative x path res write fs readFileSync pathModule relative path x res write fs readFileSync pathModule resolve path res write fs readFileSync pathModule resolve x y path z res write fs readFileSync pathModule toNamespacedPath path |
 | autogenerated/TaintedPath/TaintedPath.js:33:15:33:35 | fs.read ... c(path) | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:33:15:33:35 | fs.read ... c(path) | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:33:15:33:35 | fs.read ... c(path) | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:33:15:33:35 | fs.read ... c(path) | receiverName | res |
 | autogenerated/TaintedPath/TaintedPath.js:33:31:33:34 | path | CalleeFlexibleAccessPath | fs.readFileSync |
 | autogenerated/TaintedPath/TaintedPath.js:33:31:33:34 | path | InputArgumentIndex | 0 |
@@ -3753,20 +4860,20 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:33:31:33:34 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:33:31:33:34 | path | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path res write fs readFileSync /home/user/ path path startsWith /home/user/ res write fs readFileSync path path indexOf secret 1 res write fs readFileSync path fs existsSync path res write fs readFileSync path path foo.txt res write fs readFileSync path path foo.txt path bar.txt res write fs readFileSync path path foo.txt path bar.txt someOpaqueCondition res write fs readFileSync path path sanitize path res write fs readFileSync path path url parse req url true query path res write fs readFileSync pathModule basename path res write fs readFileSync pathModule dirname path res write fs readFileSync pathModule extname path res write fs readFileSync pathModule join path res write fs readFileSync pathModule join x y path z res write fs readFileSync pathModule normalize path res write fs readFileSync pathModule relative x path res write fs readFileSync pathModule relative path x res write fs readFileSync pathModule resolve path res write fs readFileSync pathModule resolve x y path z res write fs readFileSync pathModule toNamespacedPath path |
 | autogenerated/TaintedPath/TaintedPath.js:33:31:33:34 | path | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:33:31:33:34 | path | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:33:31:33:34 | path | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:33:31:33:34 | path | receiverName | fs |
 | autogenerated/TaintedPath/TaintedPath.js:35:10:35:23 | sanitize(path) | contextFunctionInterfaces | views_local(req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:35:10:35:23 | sanitize(path) | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:35:10:35:23 | sanitize(path) | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path res write fs readFileSync /home/user/ path path startsWith /home/user/ res write fs readFileSync path path indexOf secret 1 res write fs readFileSync path fs existsSync path res write fs readFileSync path path foo.txt res write fs readFileSync path path foo.txt path bar.txt res write fs readFileSync path path foo.txt path bar.txt someOpaqueCondition res write fs readFileSync path path sanitize path res write fs readFileSync path path url parse req url true query path res write fs readFileSync pathModule basename path res write fs readFileSync pathModule dirname path res write fs readFileSync pathModule extname path res write fs readFileSync pathModule join path res write fs readFileSync pathModule join x y path z res write fs readFileSync pathModule normalize path res write fs readFileSync pathModule relative x path res write fs readFileSync pathModule relative path x res write fs readFileSync pathModule resolve path res write fs readFileSync pathModule resolve x y path z res write fs readFileSync pathModule toNamespacedPath path |
 | autogenerated/TaintedPath/TaintedPath.js:35:10:35:23 | sanitize(path) | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:35:10:35:23 | sanitize(path) | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:35:10:35:23 | sanitize(path) | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:36:13:36:33 | fs.read ... c(path) | CalleeFlexibleAccessPath | res.write |
 | autogenerated/TaintedPath/TaintedPath.js:36:13:36:33 | fs.read ... c(path) | InputArgumentIndex | 0 |
 | autogenerated/TaintedPath/TaintedPath.js:36:13:36:33 | fs.read ... c(path) | contextFunctionInterfaces | views_local(req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:36:13:36:33 | fs.read ... c(path) | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:36:13:36:33 | fs.read ... c(path) | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path res write fs readFileSync /home/user/ path path startsWith /home/user/ res write fs readFileSync path path indexOf secret 1 res write fs readFileSync path fs existsSync path res write fs readFileSync path path foo.txt res write fs readFileSync path path foo.txt path bar.txt res write fs readFileSync path path foo.txt path bar.txt someOpaqueCondition res write fs readFileSync path path sanitize path res write fs readFileSync path path url parse req url true query path res write fs readFileSync pathModule basename path res write fs readFileSync pathModule dirname path res write fs readFileSync pathModule extname path res write fs readFileSync pathModule join path res write fs readFileSync pathModule join x y path z res write fs readFileSync pathModule normalize path res write fs readFileSync pathModule relative x path res write fs readFileSync pathModule relative path x res write fs readFileSync pathModule resolve path res write fs readFileSync pathModule resolve x y path z res write fs readFileSync pathModule toNamespacedPath path |
 | autogenerated/TaintedPath/TaintedPath.js:36:13:36:33 | fs.read ... c(path) | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:36:13:36:33 | fs.read ... c(path) | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:36:13:36:33 | fs.read ... c(path) | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:36:13:36:33 | fs.read ... c(path) | receiverName | res |
 | autogenerated/TaintedPath/TaintedPath.js:36:29:36:32 | path | CalleeFlexibleAccessPath | fs.readFileSync |
 | autogenerated/TaintedPath/TaintedPath.js:36:29:36:32 | path | InputArgumentIndex | 0 |
@@ -3775,7 +4882,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:36:29:36:32 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:36:29:36:32 | path | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path res write fs readFileSync /home/user/ path path startsWith /home/user/ res write fs readFileSync path path indexOf secret 1 res write fs readFileSync path fs existsSync path res write fs readFileSync path path foo.txt res write fs readFileSync path path foo.txt path bar.txt res write fs readFileSync path path foo.txt path bar.txt someOpaqueCondition res write fs readFileSync path path sanitize path res write fs readFileSync path path url parse req url true query path res write fs readFileSync pathModule basename path res write fs readFileSync pathModule dirname path res write fs readFileSync pathModule extname path res write fs readFileSync pathModule join path res write fs readFileSync pathModule join x y path z res write fs readFileSync pathModule normalize path res write fs readFileSync pathModule relative x path res write fs readFileSync pathModule relative path x res write fs readFileSync pathModule resolve path res write fs readFileSync pathModule resolve x y path z res write fs readFileSync pathModule toNamespacedPath path |
 | autogenerated/TaintedPath/TaintedPath.js:36:29:36:32 | path | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:36:29:36:32 | path | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:36:29:36:32 | path | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:36:29:36:32 | path | receiverName | fs |
 | autogenerated/TaintedPath/TaintedPath.js:38:20:38:26 | req.url | CalleeFlexibleAccessPath | url.parse |
 | autogenerated/TaintedPath/TaintedPath.js:38:20:38:26 | req.url | InputArgumentIndex | 0 |
@@ -3784,7 +4891,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:38:20:38:26 | req.url | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:38:20:38:26 | req.url | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path res write fs readFileSync /home/user/ path path startsWith /home/user/ res write fs readFileSync path path indexOf secret 1 res write fs readFileSync path fs existsSync path res write fs readFileSync path path foo.txt res write fs readFileSync path path foo.txt path bar.txt res write fs readFileSync path path foo.txt path bar.txt someOpaqueCondition res write fs readFileSync path path sanitize path res write fs readFileSync path path url parse req url true query path res write fs readFileSync pathModule basename path res write fs readFileSync pathModule dirname path res write fs readFileSync pathModule extname path res write fs readFileSync pathModule join path res write fs readFileSync pathModule join x y path z res write fs readFileSync pathModule normalize path res write fs readFileSync pathModule relative x path res write fs readFileSync pathModule relative path x res write fs readFileSync pathModule resolve path res write fs readFileSync pathModule resolve x y path z res write fs readFileSync pathModule toNamespacedPath path |
 | autogenerated/TaintedPath/TaintedPath.js:38:20:38:26 | req.url | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:38:20:38:26 | req.url | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:38:20:38:26 | req.url | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:38:20:38:26 | req.url | receiverName | url |
 | autogenerated/TaintedPath/TaintedPath.js:38:29:38:32 | true | CalleeFlexibleAccessPath | url.parse |
 | autogenerated/TaintedPath/TaintedPath.js:38:29:38:32 | true | InputArgumentIndex | 1 |
@@ -3793,7 +4900,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:38:29:38:32 | true | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:38:29:38:32 | true | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path res write fs readFileSync /home/user/ path path startsWith /home/user/ res write fs readFileSync path path indexOf secret 1 res write fs readFileSync path fs existsSync path res write fs readFileSync path path foo.txt res write fs readFileSync path path foo.txt path bar.txt res write fs readFileSync path path foo.txt path bar.txt someOpaqueCondition res write fs readFileSync path path sanitize path res write fs readFileSync path path url parse req url true query path res write fs readFileSync pathModule basename path res write fs readFileSync pathModule dirname path res write fs readFileSync pathModule extname path res write fs readFileSync pathModule join path res write fs readFileSync pathModule join x y path z res write fs readFileSync pathModule normalize path res write fs readFileSync pathModule relative x path res write fs readFileSync pathModule relative path x res write fs readFileSync pathModule resolve path res write fs readFileSync pathModule resolve x y path z res write fs readFileSync pathModule toNamespacedPath path |
 | autogenerated/TaintedPath/TaintedPath.js:38:29:38:32 | true | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:38:29:38:32 | true | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:38:29:38:32 | true | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:38:29:38:32 | true | receiverName | url |
 | autogenerated/TaintedPath/TaintedPath.js:40:13:40:54 | fs.read ... (path)) | CalleeFlexibleAccessPath | res.write |
 | autogenerated/TaintedPath/TaintedPath.js:40:13:40:54 | fs.read ... (path)) | InputArgumentIndex | 0 |
@@ -3801,7 +4908,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:40:13:40:54 | fs.read ... (path)) | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:40:13:40:54 | fs.read ... (path)) | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path res write fs readFileSync /home/user/ path path startsWith /home/user/ res write fs readFileSync path path indexOf secret 1 res write fs readFileSync path fs existsSync path res write fs readFileSync path path foo.txt res write fs readFileSync path path foo.txt path bar.txt res write fs readFileSync path path foo.txt path bar.txt someOpaqueCondition res write fs readFileSync path path sanitize path res write fs readFileSync path path url parse req url true query path res write fs readFileSync pathModule basename path res write fs readFileSync pathModule dirname path res write fs readFileSync pathModule extname path res write fs readFileSync pathModule join path res write fs readFileSync pathModule join x y path z res write fs readFileSync pathModule normalize path res write fs readFileSync pathModule relative x path res write fs readFileSync pathModule relative path x res write fs readFileSync pathModule resolve path res write fs readFileSync pathModule resolve x y path z res write fs readFileSync pathModule toNamespacedPath path |
 | autogenerated/TaintedPath/TaintedPath.js:40:13:40:54 | fs.read ... (path)) | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:40:13:40:54 | fs.read ... (path)) | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:40:13:40:54 | fs.read ... (path)) | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:40:13:40:54 | fs.read ... (path)) | receiverName | res |
 | autogenerated/TaintedPath/TaintedPath.js:40:29:40:53 | pathMod ... e(path) | CalleeFlexibleAccessPath | fs.readFileSync |
 | autogenerated/TaintedPath/TaintedPath.js:40:29:40:53 | pathMod ... e(path) | InputArgumentIndex | 0 |
@@ -3810,7 +4917,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:40:29:40:53 | pathMod ... e(path) | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:40:29:40:53 | pathMod ... e(path) | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path res write fs readFileSync /home/user/ path path startsWith /home/user/ res write fs readFileSync path path indexOf secret 1 res write fs readFileSync path fs existsSync path res write fs readFileSync path path foo.txt res write fs readFileSync path path foo.txt path bar.txt res write fs readFileSync path path foo.txt path bar.txt someOpaqueCondition res write fs readFileSync path path sanitize path res write fs readFileSync path path url parse req url true query path res write fs readFileSync pathModule basename path res write fs readFileSync pathModule dirname path res write fs readFileSync pathModule extname path res write fs readFileSync pathModule join path res write fs readFileSync pathModule join x y path z res write fs readFileSync pathModule normalize path res write fs readFileSync pathModule relative x path res write fs readFileSync pathModule relative path x res write fs readFileSync pathModule resolve path res write fs readFileSync pathModule resolve x y path z res write fs readFileSync pathModule toNamespacedPath path |
 | autogenerated/TaintedPath/TaintedPath.js:40:29:40:53 | pathMod ... e(path) | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:40:29:40:53 | pathMod ... e(path) | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:40:29:40:53 | pathMod ... e(path) | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:40:29:40:53 | pathMod ... e(path) | receiverName | fs |
 | autogenerated/TaintedPath/TaintedPath.js:40:49:40:52 | path | CalleeFlexibleAccessPath | pathModule.basename |
 | autogenerated/TaintedPath/TaintedPath.js:40:49:40:52 | path | InputArgumentIndex | 0 |
@@ -3819,7 +4926,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:40:49:40:52 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:40:49:40:52 | path | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path res write fs readFileSync /home/user/ path path startsWith /home/user/ res write fs readFileSync path path indexOf secret 1 res write fs readFileSync path fs existsSync path res write fs readFileSync path path foo.txt res write fs readFileSync path path foo.txt path bar.txt res write fs readFileSync path path foo.txt path bar.txt someOpaqueCondition res write fs readFileSync path path sanitize path res write fs readFileSync path path url parse req url true query path res write fs readFileSync pathModule basename path res write fs readFileSync pathModule dirname path res write fs readFileSync pathModule extname path res write fs readFileSync pathModule join path res write fs readFileSync pathModule join x y path z res write fs readFileSync pathModule normalize path res write fs readFileSync pathModule relative x path res write fs readFileSync pathModule relative path x res write fs readFileSync pathModule resolve path res write fs readFileSync pathModule resolve x y path z res write fs readFileSync pathModule toNamespacedPath path |
 | autogenerated/TaintedPath/TaintedPath.js:40:49:40:52 | path | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:40:49:40:52 | path | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:40:49:40:52 | path | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:40:49:40:52 | path | receiverName | pathModule |
 | autogenerated/TaintedPath/TaintedPath.js:42:13:42:53 | fs.read ... (path)) | CalleeFlexibleAccessPath | res.write |
 | autogenerated/TaintedPath/TaintedPath.js:42:13:42:53 | fs.read ... (path)) | InputArgumentIndex | 0 |
@@ -3827,7 +4934,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:42:13:42:53 | fs.read ... (path)) | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:42:13:42:53 | fs.read ... (path)) | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path res write fs readFileSync /home/user/ path path startsWith /home/user/ res write fs readFileSync path path indexOf secret 1 res write fs readFileSync path fs existsSync path res write fs readFileSync path path foo.txt res write fs readFileSync path path foo.txt path bar.txt res write fs readFileSync path path foo.txt path bar.txt someOpaqueCondition res write fs readFileSync path path sanitize path res write fs readFileSync path path url parse req url true query path res write fs readFileSync pathModule basename path res write fs readFileSync pathModule dirname path res write fs readFileSync pathModule extname path res write fs readFileSync pathModule join path res write fs readFileSync pathModule join x y path z res write fs readFileSync pathModule normalize path res write fs readFileSync pathModule relative x path res write fs readFileSync pathModule relative path x res write fs readFileSync pathModule resolve path res write fs readFileSync pathModule resolve x y path z res write fs readFileSync pathModule toNamespacedPath path |
 | autogenerated/TaintedPath/TaintedPath.js:42:13:42:53 | fs.read ... (path)) | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:42:13:42:53 | fs.read ... (path)) | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:42:13:42:53 | fs.read ... (path)) | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:42:13:42:53 | fs.read ... (path)) | receiverName | res |
 | autogenerated/TaintedPath/TaintedPath.js:42:29:42:52 | pathMod ... e(path) | CalleeFlexibleAccessPath | fs.readFileSync |
 | autogenerated/TaintedPath/TaintedPath.js:42:29:42:52 | pathMod ... e(path) | InputArgumentIndex | 0 |
@@ -3836,7 +4943,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:42:29:42:52 | pathMod ... e(path) | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:42:29:42:52 | pathMod ... e(path) | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path res write fs readFileSync /home/user/ path path startsWith /home/user/ res write fs readFileSync path path indexOf secret 1 res write fs readFileSync path fs existsSync path res write fs readFileSync path path foo.txt res write fs readFileSync path path foo.txt path bar.txt res write fs readFileSync path path foo.txt path bar.txt someOpaqueCondition res write fs readFileSync path path sanitize path res write fs readFileSync path path url parse req url true query path res write fs readFileSync pathModule basename path res write fs readFileSync pathModule dirname path res write fs readFileSync pathModule extname path res write fs readFileSync pathModule join path res write fs readFileSync pathModule join x y path z res write fs readFileSync pathModule normalize path res write fs readFileSync pathModule relative x path res write fs readFileSync pathModule relative path x res write fs readFileSync pathModule resolve path res write fs readFileSync pathModule resolve x y path z res write fs readFileSync pathModule toNamespacedPath path |
 | autogenerated/TaintedPath/TaintedPath.js:42:29:42:52 | pathMod ... e(path) | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:42:29:42:52 | pathMod ... e(path) | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:42:29:42:52 | pathMod ... e(path) | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:42:29:42:52 | pathMod ... e(path) | receiverName | fs |
 | autogenerated/TaintedPath/TaintedPath.js:42:48:42:51 | path | CalleeFlexibleAccessPath | pathModule.dirname |
 | autogenerated/TaintedPath/TaintedPath.js:42:48:42:51 | path | InputArgumentIndex | 0 |
@@ -3845,7 +4952,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:42:48:42:51 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:42:48:42:51 | path | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path res write fs readFileSync /home/user/ path path startsWith /home/user/ res write fs readFileSync path path indexOf secret 1 res write fs readFileSync path fs existsSync path res write fs readFileSync path path foo.txt res write fs readFileSync path path foo.txt path bar.txt res write fs readFileSync path path foo.txt path bar.txt someOpaqueCondition res write fs readFileSync path path sanitize path res write fs readFileSync path path url parse req url true query path res write fs readFileSync pathModule basename path res write fs readFileSync pathModule dirname path res write fs readFileSync pathModule extname path res write fs readFileSync pathModule join path res write fs readFileSync pathModule join x y path z res write fs readFileSync pathModule normalize path res write fs readFileSync pathModule relative x path res write fs readFileSync pathModule relative path x res write fs readFileSync pathModule resolve path res write fs readFileSync pathModule resolve x y path z res write fs readFileSync pathModule toNamespacedPath path |
 | autogenerated/TaintedPath/TaintedPath.js:42:48:42:51 | path | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:42:48:42:51 | path | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:42:48:42:51 | path | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:42:48:42:51 | path | receiverName | pathModule |
 | autogenerated/TaintedPath/TaintedPath.js:44:13:44:53 | fs.read ... (path)) | CalleeFlexibleAccessPath | res.write |
 | autogenerated/TaintedPath/TaintedPath.js:44:13:44:53 | fs.read ... (path)) | InputArgumentIndex | 0 |
@@ -3853,7 +4960,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:44:13:44:53 | fs.read ... (path)) | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:44:13:44:53 | fs.read ... (path)) | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path res write fs readFileSync /home/user/ path path startsWith /home/user/ res write fs readFileSync path path indexOf secret 1 res write fs readFileSync path fs existsSync path res write fs readFileSync path path foo.txt res write fs readFileSync path path foo.txt path bar.txt res write fs readFileSync path path foo.txt path bar.txt someOpaqueCondition res write fs readFileSync path path sanitize path res write fs readFileSync path path url parse req url true query path res write fs readFileSync pathModule basename path res write fs readFileSync pathModule dirname path res write fs readFileSync pathModule extname path res write fs readFileSync pathModule join path res write fs readFileSync pathModule join x y path z res write fs readFileSync pathModule normalize path res write fs readFileSync pathModule relative x path res write fs readFileSync pathModule relative path x res write fs readFileSync pathModule resolve path res write fs readFileSync pathModule resolve x y path z res write fs readFileSync pathModule toNamespacedPath path |
 | autogenerated/TaintedPath/TaintedPath.js:44:13:44:53 | fs.read ... (path)) | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:44:13:44:53 | fs.read ... (path)) | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:44:13:44:53 | fs.read ... (path)) | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:44:13:44:53 | fs.read ... (path)) | receiverName | res |
 | autogenerated/TaintedPath/TaintedPath.js:44:29:44:52 | pathMod ... e(path) | CalleeFlexibleAccessPath | fs.readFileSync |
 | autogenerated/TaintedPath/TaintedPath.js:44:29:44:52 | pathMod ... e(path) | InputArgumentIndex | 0 |
@@ -3862,7 +4969,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:44:29:44:52 | pathMod ... e(path) | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:44:29:44:52 | pathMod ... e(path) | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path res write fs readFileSync /home/user/ path path startsWith /home/user/ res write fs readFileSync path path indexOf secret 1 res write fs readFileSync path fs existsSync path res write fs readFileSync path path foo.txt res write fs readFileSync path path foo.txt path bar.txt res write fs readFileSync path path foo.txt path bar.txt someOpaqueCondition res write fs readFileSync path path sanitize path res write fs readFileSync path path url parse req url true query path res write fs readFileSync pathModule basename path res write fs readFileSync pathModule dirname path res write fs readFileSync pathModule extname path res write fs readFileSync pathModule join path res write fs readFileSync pathModule join x y path z res write fs readFileSync pathModule normalize path res write fs readFileSync pathModule relative x path res write fs readFileSync pathModule relative path x res write fs readFileSync pathModule resolve path res write fs readFileSync pathModule resolve x y path z res write fs readFileSync pathModule toNamespacedPath path |
 | autogenerated/TaintedPath/TaintedPath.js:44:29:44:52 | pathMod ... e(path) | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:44:29:44:52 | pathMod ... e(path) | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:44:29:44:52 | pathMod ... e(path) | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:44:29:44:52 | pathMod ... e(path) | receiverName | fs |
 | autogenerated/TaintedPath/TaintedPath.js:44:48:44:51 | path | CalleeFlexibleAccessPath | pathModule.extname |
 | autogenerated/TaintedPath/TaintedPath.js:44:48:44:51 | path | InputArgumentIndex | 0 |
@@ -3871,7 +4978,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:44:48:44:51 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:44:48:44:51 | path | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path res write fs readFileSync /home/user/ path path startsWith /home/user/ res write fs readFileSync path path indexOf secret 1 res write fs readFileSync path fs existsSync path res write fs readFileSync path path foo.txt res write fs readFileSync path path foo.txt path bar.txt res write fs readFileSync path path foo.txt path bar.txt someOpaqueCondition res write fs readFileSync path path sanitize path res write fs readFileSync path path url parse req url true query path res write fs readFileSync pathModule basename path res write fs readFileSync pathModule dirname path res write fs readFileSync pathModule extname path res write fs readFileSync pathModule join path res write fs readFileSync pathModule join x y path z res write fs readFileSync pathModule normalize path res write fs readFileSync pathModule relative x path res write fs readFileSync pathModule relative path x res write fs readFileSync pathModule resolve path res write fs readFileSync pathModule resolve x y path z res write fs readFileSync pathModule toNamespacedPath path |
 | autogenerated/TaintedPath/TaintedPath.js:44:48:44:51 | path | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:44:48:44:51 | path | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:44:48:44:51 | path | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:44:48:44:51 | path | receiverName | pathModule |
 | autogenerated/TaintedPath/TaintedPath.js:46:13:46:50 | fs.read ... (path)) | CalleeFlexibleAccessPath | res.write |
 | autogenerated/TaintedPath/TaintedPath.js:46:13:46:50 | fs.read ... (path)) | InputArgumentIndex | 0 |
@@ -3879,7 +4986,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:46:13:46:50 | fs.read ... (path)) | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:46:13:46:50 | fs.read ... (path)) | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path res write fs readFileSync /home/user/ path path startsWith /home/user/ res write fs readFileSync path path indexOf secret 1 res write fs readFileSync path fs existsSync path res write fs readFileSync path path foo.txt res write fs readFileSync path path foo.txt path bar.txt res write fs readFileSync path path foo.txt path bar.txt someOpaqueCondition res write fs readFileSync path path sanitize path res write fs readFileSync path path url parse req url true query path res write fs readFileSync pathModule basename path res write fs readFileSync pathModule dirname path res write fs readFileSync pathModule extname path res write fs readFileSync pathModule join path res write fs readFileSync pathModule join x y path z res write fs readFileSync pathModule normalize path res write fs readFileSync pathModule relative x path res write fs readFileSync pathModule relative path x res write fs readFileSync pathModule resolve path res write fs readFileSync pathModule resolve x y path z res write fs readFileSync pathModule toNamespacedPath path |
 | autogenerated/TaintedPath/TaintedPath.js:46:13:46:50 | fs.read ... (path)) | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:46:13:46:50 | fs.read ... (path)) | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:46:13:46:50 | fs.read ... (path)) | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:46:13:46:50 | fs.read ... (path)) | receiverName | res |
 | autogenerated/TaintedPath/TaintedPath.js:46:29:46:49 | pathMod ... n(path) | CalleeFlexibleAccessPath | fs.readFileSync |
 | autogenerated/TaintedPath/TaintedPath.js:46:29:46:49 | pathMod ... n(path) | InputArgumentIndex | 0 |
@@ -3888,7 +4995,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:46:29:46:49 | pathMod ... n(path) | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:46:29:46:49 | pathMod ... n(path) | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path res write fs readFileSync /home/user/ path path startsWith /home/user/ res write fs readFileSync path path indexOf secret 1 res write fs readFileSync path fs existsSync path res write fs readFileSync path path foo.txt res write fs readFileSync path path foo.txt path bar.txt res write fs readFileSync path path foo.txt path bar.txt someOpaqueCondition res write fs readFileSync path path sanitize path res write fs readFileSync path path url parse req url true query path res write fs readFileSync pathModule basename path res write fs readFileSync pathModule dirname path res write fs readFileSync pathModule extname path res write fs readFileSync pathModule join path res write fs readFileSync pathModule join x y path z res write fs readFileSync pathModule normalize path res write fs readFileSync pathModule relative x path res write fs readFileSync pathModule relative path x res write fs readFileSync pathModule resolve path res write fs readFileSync pathModule resolve x y path z res write fs readFileSync pathModule toNamespacedPath path |
 | autogenerated/TaintedPath/TaintedPath.js:46:29:46:49 | pathMod ... n(path) | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:46:29:46:49 | pathMod ... n(path) | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:46:29:46:49 | pathMod ... n(path) | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:46:29:46:49 | pathMod ... n(path) | receiverName | fs |
 | autogenerated/TaintedPath/TaintedPath.js:46:45:46:48 | path | CalleeFlexibleAccessPath | pathModule.join |
 | autogenerated/TaintedPath/TaintedPath.js:46:45:46:48 | path | InputArgumentIndex | 0 |
@@ -3897,7 +5004,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:46:45:46:48 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:46:45:46:48 | path | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path res write fs readFileSync /home/user/ path path startsWith /home/user/ res write fs readFileSync path path indexOf secret 1 res write fs readFileSync path fs existsSync path res write fs readFileSync path path foo.txt res write fs readFileSync path path foo.txt path bar.txt res write fs readFileSync path path foo.txt path bar.txt someOpaqueCondition res write fs readFileSync path path sanitize path res write fs readFileSync path path url parse req url true query path res write fs readFileSync pathModule basename path res write fs readFileSync pathModule dirname path res write fs readFileSync pathModule extname path res write fs readFileSync pathModule join path res write fs readFileSync pathModule join x y path z res write fs readFileSync pathModule normalize path res write fs readFileSync pathModule relative x path res write fs readFileSync pathModule relative path x res write fs readFileSync pathModule resolve path res write fs readFileSync pathModule resolve x y path z res write fs readFileSync pathModule toNamespacedPath path |
 | autogenerated/TaintedPath/TaintedPath.js:46:45:46:48 | path | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:46:45:46:48 | path | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:46:45:46:48 | path | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:46:45:46:48 | path | receiverName | pathModule |
 | autogenerated/TaintedPath/TaintedPath.js:48:13:48:59 | fs.read ... th, z)) | CalleeFlexibleAccessPath | res.write |
 | autogenerated/TaintedPath/TaintedPath.js:48:13:48:59 | fs.read ... th, z)) | InputArgumentIndex | 0 |
@@ -3905,7 +5012,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:48:13:48:59 | fs.read ... th, z)) | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:48:13:48:59 | fs.read ... th, z)) | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path res write fs readFileSync /home/user/ path path startsWith /home/user/ res write fs readFileSync path path indexOf secret 1 res write fs readFileSync path fs existsSync path res write fs readFileSync path path foo.txt res write fs readFileSync path path foo.txt path bar.txt res write fs readFileSync path path foo.txt path bar.txt someOpaqueCondition res write fs readFileSync path path sanitize path res write fs readFileSync path path url parse req url true query path res write fs readFileSync pathModule basename path res write fs readFileSync pathModule dirname path res write fs readFileSync pathModule extname path res write fs readFileSync pathModule join path res write fs readFileSync pathModule join x y path z res write fs readFileSync pathModule normalize path res write fs readFileSync pathModule relative x path res write fs readFileSync pathModule relative path x res write fs readFileSync pathModule resolve path res write fs readFileSync pathModule resolve x y path z res write fs readFileSync pathModule toNamespacedPath path |
 | autogenerated/TaintedPath/TaintedPath.js:48:13:48:59 | fs.read ... th, z)) | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:48:13:48:59 | fs.read ... th, z)) | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:48:13:48:59 | fs.read ... th, z)) | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:48:13:48:59 | fs.read ... th, z)) | receiverName | res |
 | autogenerated/TaintedPath/TaintedPath.js:48:29:48:58 | pathMod ... ath, z) | CalleeFlexibleAccessPath | fs.readFileSync |
 | autogenerated/TaintedPath/TaintedPath.js:48:29:48:58 | pathMod ... ath, z) | InputArgumentIndex | 0 |
@@ -3914,7 +5021,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:48:29:48:58 | pathMod ... ath, z) | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:48:29:48:58 | pathMod ... ath, z) | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path res write fs readFileSync /home/user/ path path startsWith /home/user/ res write fs readFileSync path path indexOf secret 1 res write fs readFileSync path fs existsSync path res write fs readFileSync path path foo.txt res write fs readFileSync path path foo.txt path bar.txt res write fs readFileSync path path foo.txt path bar.txt someOpaqueCondition res write fs readFileSync path path sanitize path res write fs readFileSync path path url parse req url true query path res write fs readFileSync pathModule basename path res write fs readFileSync pathModule dirname path res write fs readFileSync pathModule extname path res write fs readFileSync pathModule join path res write fs readFileSync pathModule join x y path z res write fs readFileSync pathModule normalize path res write fs readFileSync pathModule relative x path res write fs readFileSync pathModule relative path x res write fs readFileSync pathModule resolve path res write fs readFileSync pathModule resolve x y path z res write fs readFileSync pathModule toNamespacedPath path |
 | autogenerated/TaintedPath/TaintedPath.js:48:29:48:58 | pathMod ... ath, z) | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:48:29:48:58 | pathMod ... ath, z) | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:48:29:48:58 | pathMod ... ath, z) | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:48:29:48:58 | pathMod ... ath, z) | receiverName | fs |
 | autogenerated/TaintedPath/TaintedPath.js:48:45:48:45 | x | CalleeFlexibleAccessPath | pathModule.join |
 | autogenerated/TaintedPath/TaintedPath.js:48:45:48:45 | x | InputArgumentIndex | 0 |
@@ -3923,7 +5030,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:48:45:48:45 | x | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:48:45:48:45 | x | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path res write fs readFileSync /home/user/ path path startsWith /home/user/ res write fs readFileSync path path indexOf secret 1 res write fs readFileSync path fs existsSync path res write fs readFileSync path path foo.txt res write fs readFileSync path path foo.txt path bar.txt res write fs readFileSync path path foo.txt path bar.txt someOpaqueCondition res write fs readFileSync path path sanitize path res write fs readFileSync path path url parse req url true query path res write fs readFileSync pathModule basename path res write fs readFileSync pathModule dirname path res write fs readFileSync pathModule extname path res write fs readFileSync pathModule join path res write fs readFileSync pathModule join x y path z res write fs readFileSync pathModule normalize path res write fs readFileSync pathModule relative x path res write fs readFileSync pathModule relative path x res write fs readFileSync pathModule resolve path res write fs readFileSync pathModule resolve x y path z res write fs readFileSync pathModule toNamespacedPath path |
 | autogenerated/TaintedPath/TaintedPath.js:48:45:48:45 | x | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:48:45:48:45 | x | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:48:45:48:45 | x | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:48:45:48:45 | x | receiverName | pathModule |
 | autogenerated/TaintedPath/TaintedPath.js:48:48:48:48 | y | CalleeFlexibleAccessPath | pathModule.join |
 | autogenerated/TaintedPath/TaintedPath.js:48:48:48:48 | y | InputArgumentIndex | 1 |
@@ -3932,7 +5039,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:48:48:48:48 | y | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:48:48:48:48 | y | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path res write fs readFileSync /home/user/ path path startsWith /home/user/ res write fs readFileSync path path indexOf secret 1 res write fs readFileSync path fs existsSync path res write fs readFileSync path path foo.txt res write fs readFileSync path path foo.txt path bar.txt res write fs readFileSync path path foo.txt path bar.txt someOpaqueCondition res write fs readFileSync path path sanitize path res write fs readFileSync path path url parse req url true query path res write fs readFileSync pathModule basename path res write fs readFileSync pathModule dirname path res write fs readFileSync pathModule extname path res write fs readFileSync pathModule join path res write fs readFileSync pathModule join x y path z res write fs readFileSync pathModule normalize path res write fs readFileSync pathModule relative x path res write fs readFileSync pathModule relative path x res write fs readFileSync pathModule resolve path res write fs readFileSync pathModule resolve x y path z res write fs readFileSync pathModule toNamespacedPath path |
 | autogenerated/TaintedPath/TaintedPath.js:48:48:48:48 | y | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:48:48:48:48 | y | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:48:48:48:48 | y | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:48:48:48:48 | y | receiverName | pathModule |
 | autogenerated/TaintedPath/TaintedPath.js:48:51:48:54 | path | CalleeFlexibleAccessPath | pathModule.join |
 | autogenerated/TaintedPath/TaintedPath.js:48:51:48:54 | path | InputArgumentIndex | 2 |
@@ -3941,7 +5048,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:48:51:48:54 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:48:51:48:54 | path | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path res write fs readFileSync /home/user/ path path startsWith /home/user/ res write fs readFileSync path path indexOf secret 1 res write fs readFileSync path fs existsSync path res write fs readFileSync path path foo.txt res write fs readFileSync path path foo.txt path bar.txt res write fs readFileSync path path foo.txt path bar.txt someOpaqueCondition res write fs readFileSync path path sanitize path res write fs readFileSync path path url parse req url true query path res write fs readFileSync pathModule basename path res write fs readFileSync pathModule dirname path res write fs readFileSync pathModule extname path res write fs readFileSync pathModule join path res write fs readFileSync pathModule join x y path z res write fs readFileSync pathModule normalize path res write fs readFileSync pathModule relative x path res write fs readFileSync pathModule relative path x res write fs readFileSync pathModule resolve path res write fs readFileSync pathModule resolve x y path z res write fs readFileSync pathModule toNamespacedPath path |
 | autogenerated/TaintedPath/TaintedPath.js:48:51:48:54 | path | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:48:51:48:54 | path | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:48:51:48:54 | path | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:48:51:48:54 | path | receiverName | pathModule |
 | autogenerated/TaintedPath/TaintedPath.js:48:57:48:57 | z | CalleeFlexibleAccessPath | pathModule.join |
 | autogenerated/TaintedPath/TaintedPath.js:48:57:48:57 | z | InputArgumentIndex | 3 |
@@ -3950,7 +5057,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:48:57:48:57 | z | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:48:57:48:57 | z | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path res write fs readFileSync /home/user/ path path startsWith /home/user/ res write fs readFileSync path path indexOf secret 1 res write fs readFileSync path fs existsSync path res write fs readFileSync path path foo.txt res write fs readFileSync path path foo.txt path bar.txt res write fs readFileSync path path foo.txt path bar.txt someOpaqueCondition res write fs readFileSync path path sanitize path res write fs readFileSync path path url parse req url true query path res write fs readFileSync pathModule basename path res write fs readFileSync pathModule dirname path res write fs readFileSync pathModule extname path res write fs readFileSync pathModule join path res write fs readFileSync pathModule join x y path z res write fs readFileSync pathModule normalize path res write fs readFileSync pathModule relative x path res write fs readFileSync pathModule relative path x res write fs readFileSync pathModule resolve path res write fs readFileSync pathModule resolve x y path z res write fs readFileSync pathModule toNamespacedPath path |
 | autogenerated/TaintedPath/TaintedPath.js:48:57:48:57 | z | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:48:57:48:57 | z | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:48:57:48:57 | z | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:48:57:48:57 | z | receiverName | pathModule |
 | autogenerated/TaintedPath/TaintedPath.js:50:13:50:55 | fs.read ... (path)) | CalleeFlexibleAccessPath | res.write |
 | autogenerated/TaintedPath/TaintedPath.js:50:13:50:55 | fs.read ... (path)) | InputArgumentIndex | 0 |
@@ -3958,7 +5065,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:50:13:50:55 | fs.read ... (path)) | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:50:13:50:55 | fs.read ... (path)) | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path res write fs readFileSync /home/user/ path path startsWith /home/user/ res write fs readFileSync path path indexOf secret 1 res write fs readFileSync path fs existsSync path res write fs readFileSync path path foo.txt res write fs readFileSync path path foo.txt path bar.txt res write fs readFileSync path path foo.txt path bar.txt someOpaqueCondition res write fs readFileSync path path sanitize path res write fs readFileSync path path url parse req url true query path res write fs readFileSync pathModule basename path res write fs readFileSync pathModule dirname path res write fs readFileSync pathModule extname path res write fs readFileSync pathModule join path res write fs readFileSync pathModule join x y path z res write fs readFileSync pathModule normalize path res write fs readFileSync pathModule relative x path res write fs readFileSync pathModule relative path x res write fs readFileSync pathModule resolve path res write fs readFileSync pathModule resolve x y path z res write fs readFileSync pathModule toNamespacedPath path |
 | autogenerated/TaintedPath/TaintedPath.js:50:13:50:55 | fs.read ... (path)) | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:50:13:50:55 | fs.read ... (path)) | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:50:13:50:55 | fs.read ... (path)) | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:50:13:50:55 | fs.read ... (path)) | receiverName | res |
 | autogenerated/TaintedPath/TaintedPath.js:50:29:50:54 | pathMod ... e(path) | CalleeFlexibleAccessPath | fs.readFileSync |
 | autogenerated/TaintedPath/TaintedPath.js:50:29:50:54 | pathMod ... e(path) | InputArgumentIndex | 0 |
@@ -3967,7 +5074,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:50:29:50:54 | pathMod ... e(path) | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:50:29:50:54 | pathMod ... e(path) | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path res write fs readFileSync /home/user/ path path startsWith /home/user/ res write fs readFileSync path path indexOf secret 1 res write fs readFileSync path fs existsSync path res write fs readFileSync path path foo.txt res write fs readFileSync path path foo.txt path bar.txt res write fs readFileSync path path foo.txt path bar.txt someOpaqueCondition res write fs readFileSync path path sanitize path res write fs readFileSync path path url parse req url true query path res write fs readFileSync pathModule basename path res write fs readFileSync pathModule dirname path res write fs readFileSync pathModule extname path res write fs readFileSync pathModule join path res write fs readFileSync pathModule join x y path z res write fs readFileSync pathModule normalize path res write fs readFileSync pathModule relative x path res write fs readFileSync pathModule relative path x res write fs readFileSync pathModule resolve path res write fs readFileSync pathModule resolve x y path z res write fs readFileSync pathModule toNamespacedPath path |
 | autogenerated/TaintedPath/TaintedPath.js:50:29:50:54 | pathMod ... e(path) | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:50:29:50:54 | pathMod ... e(path) | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:50:29:50:54 | pathMod ... e(path) | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:50:29:50:54 | pathMod ... e(path) | receiverName | fs |
 | autogenerated/TaintedPath/TaintedPath.js:50:50:50:53 | path | CalleeFlexibleAccessPath | pathModule.normalize |
 | autogenerated/TaintedPath/TaintedPath.js:50:50:50:53 | path | InputArgumentIndex | 0 |
@@ -3976,7 +5083,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:50:50:50:53 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:50:50:50:53 | path | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path res write fs readFileSync /home/user/ path path startsWith /home/user/ res write fs readFileSync path path indexOf secret 1 res write fs readFileSync path fs existsSync path res write fs readFileSync path path foo.txt res write fs readFileSync path path foo.txt path bar.txt res write fs readFileSync path path foo.txt path bar.txt someOpaqueCondition res write fs readFileSync path path sanitize path res write fs readFileSync path path url parse req url true query path res write fs readFileSync pathModule basename path res write fs readFileSync pathModule dirname path res write fs readFileSync pathModule extname path res write fs readFileSync pathModule join path res write fs readFileSync pathModule join x y path z res write fs readFileSync pathModule normalize path res write fs readFileSync pathModule relative x path res write fs readFileSync pathModule relative path x res write fs readFileSync pathModule resolve path res write fs readFileSync pathModule resolve x y path z res write fs readFileSync pathModule toNamespacedPath path |
 | autogenerated/TaintedPath/TaintedPath.js:50:50:50:53 | path | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:50:50:50:53 | path | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:50:50:50:53 | path | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:50:50:50:53 | path | receiverName | pathModule |
 | autogenerated/TaintedPath/TaintedPath.js:52:13:52:57 | fs.read ...  path)) | CalleeFlexibleAccessPath | res.write |
 | autogenerated/TaintedPath/TaintedPath.js:52:13:52:57 | fs.read ...  path)) | InputArgumentIndex | 0 |
@@ -3984,7 +5091,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:52:13:52:57 | fs.read ...  path)) | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:52:13:52:57 | fs.read ...  path)) | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path res write fs readFileSync /home/user/ path path startsWith /home/user/ res write fs readFileSync path path indexOf secret 1 res write fs readFileSync path fs existsSync path res write fs readFileSync path path foo.txt res write fs readFileSync path path foo.txt path bar.txt res write fs readFileSync path path foo.txt path bar.txt someOpaqueCondition res write fs readFileSync path path sanitize path res write fs readFileSync path path url parse req url true query path res write fs readFileSync pathModule basename path res write fs readFileSync pathModule dirname path res write fs readFileSync pathModule extname path res write fs readFileSync pathModule join path res write fs readFileSync pathModule join x y path z res write fs readFileSync pathModule normalize path res write fs readFileSync pathModule relative x path res write fs readFileSync pathModule relative path x res write fs readFileSync pathModule resolve path res write fs readFileSync pathModule resolve x y path z res write fs readFileSync pathModule toNamespacedPath path |
 | autogenerated/TaintedPath/TaintedPath.js:52:13:52:57 | fs.read ...  path)) | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:52:13:52:57 | fs.read ...  path)) | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:52:13:52:57 | fs.read ...  path)) | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:52:13:52:57 | fs.read ...  path)) | receiverName | res |
 | autogenerated/TaintedPath/TaintedPath.js:52:29:52:56 | pathMod ... , path) | CalleeFlexibleAccessPath | fs.readFileSync |
 | autogenerated/TaintedPath/TaintedPath.js:52:29:52:56 | pathMod ... , path) | InputArgumentIndex | 0 |
@@ -3993,7 +5100,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:52:29:52:56 | pathMod ... , path) | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:52:29:52:56 | pathMod ... , path) | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path res write fs readFileSync /home/user/ path path startsWith /home/user/ res write fs readFileSync path path indexOf secret 1 res write fs readFileSync path fs existsSync path res write fs readFileSync path path foo.txt res write fs readFileSync path path foo.txt path bar.txt res write fs readFileSync path path foo.txt path bar.txt someOpaqueCondition res write fs readFileSync path path sanitize path res write fs readFileSync path path url parse req url true query path res write fs readFileSync pathModule basename path res write fs readFileSync pathModule dirname path res write fs readFileSync pathModule extname path res write fs readFileSync pathModule join path res write fs readFileSync pathModule join x y path z res write fs readFileSync pathModule normalize path res write fs readFileSync pathModule relative x path res write fs readFileSync pathModule relative path x res write fs readFileSync pathModule resolve path res write fs readFileSync pathModule resolve x y path z res write fs readFileSync pathModule toNamespacedPath path |
 | autogenerated/TaintedPath/TaintedPath.js:52:29:52:56 | pathMod ... , path) | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:52:29:52:56 | pathMod ... , path) | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:52:29:52:56 | pathMod ... , path) | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:52:29:52:56 | pathMod ... , path) | receiverName | fs |
 | autogenerated/TaintedPath/TaintedPath.js:52:49:52:49 | x | CalleeFlexibleAccessPath | pathModule.relative |
 | autogenerated/TaintedPath/TaintedPath.js:52:49:52:49 | x | InputArgumentIndex | 0 |
@@ -4002,7 +5109,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:52:49:52:49 | x | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:52:49:52:49 | x | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path res write fs readFileSync /home/user/ path path startsWith /home/user/ res write fs readFileSync path path indexOf secret 1 res write fs readFileSync path fs existsSync path res write fs readFileSync path path foo.txt res write fs readFileSync path path foo.txt path bar.txt res write fs readFileSync path path foo.txt path bar.txt someOpaqueCondition res write fs readFileSync path path sanitize path res write fs readFileSync path path url parse req url true query path res write fs readFileSync pathModule basename path res write fs readFileSync pathModule dirname path res write fs readFileSync pathModule extname path res write fs readFileSync pathModule join path res write fs readFileSync pathModule join x y path z res write fs readFileSync pathModule normalize path res write fs readFileSync pathModule relative x path res write fs readFileSync pathModule relative path x res write fs readFileSync pathModule resolve path res write fs readFileSync pathModule resolve x y path z res write fs readFileSync pathModule toNamespacedPath path |
 | autogenerated/TaintedPath/TaintedPath.js:52:49:52:49 | x | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:52:49:52:49 | x | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:52:49:52:49 | x | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:52:49:52:49 | x | receiverName | pathModule |
 | autogenerated/TaintedPath/TaintedPath.js:52:52:52:55 | path | CalleeFlexibleAccessPath | pathModule.relative |
 | autogenerated/TaintedPath/TaintedPath.js:52:52:52:55 | path | InputArgumentIndex | 1 |
@@ -4011,7 +5118,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:52:52:52:55 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:52:52:52:55 | path | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path res write fs readFileSync /home/user/ path path startsWith /home/user/ res write fs readFileSync path path indexOf secret 1 res write fs readFileSync path fs existsSync path res write fs readFileSync path path foo.txt res write fs readFileSync path path foo.txt path bar.txt res write fs readFileSync path path foo.txt path bar.txt someOpaqueCondition res write fs readFileSync path path sanitize path res write fs readFileSync path path url parse req url true query path res write fs readFileSync pathModule basename path res write fs readFileSync pathModule dirname path res write fs readFileSync pathModule extname path res write fs readFileSync pathModule join path res write fs readFileSync pathModule join x y path z res write fs readFileSync pathModule normalize path res write fs readFileSync pathModule relative x path res write fs readFileSync pathModule relative path x res write fs readFileSync pathModule resolve path res write fs readFileSync pathModule resolve x y path z res write fs readFileSync pathModule toNamespacedPath path |
 | autogenerated/TaintedPath/TaintedPath.js:52:52:52:55 | path | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:52:52:52:55 | path | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:52:52:52:55 | path | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:52:52:52:55 | path | receiverName | pathModule |
 | autogenerated/TaintedPath/TaintedPath.js:54:13:54:57 | fs.read ... th, x)) | CalleeFlexibleAccessPath | res.write |
 | autogenerated/TaintedPath/TaintedPath.js:54:13:54:57 | fs.read ... th, x)) | InputArgumentIndex | 0 |
@@ -4019,7 +5126,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:54:13:54:57 | fs.read ... th, x)) | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:54:13:54:57 | fs.read ... th, x)) | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path res write fs readFileSync /home/user/ path path startsWith /home/user/ res write fs readFileSync path path indexOf secret 1 res write fs readFileSync path fs existsSync path res write fs readFileSync path path foo.txt res write fs readFileSync path path foo.txt path bar.txt res write fs readFileSync path path foo.txt path bar.txt someOpaqueCondition res write fs readFileSync path path sanitize path res write fs readFileSync path path url parse req url true query path res write fs readFileSync pathModule basename path res write fs readFileSync pathModule dirname path res write fs readFileSync pathModule extname path res write fs readFileSync pathModule join path res write fs readFileSync pathModule join x y path z res write fs readFileSync pathModule normalize path res write fs readFileSync pathModule relative x path res write fs readFileSync pathModule relative path x res write fs readFileSync pathModule resolve path res write fs readFileSync pathModule resolve x y path z res write fs readFileSync pathModule toNamespacedPath path |
 | autogenerated/TaintedPath/TaintedPath.js:54:13:54:57 | fs.read ... th, x)) | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:54:13:54:57 | fs.read ... th, x)) | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:54:13:54:57 | fs.read ... th, x)) | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:54:13:54:57 | fs.read ... th, x)) | receiverName | res |
 | autogenerated/TaintedPath/TaintedPath.js:54:29:54:56 | pathMod ... ath, x) | CalleeFlexibleAccessPath | fs.readFileSync |
 | autogenerated/TaintedPath/TaintedPath.js:54:29:54:56 | pathMod ... ath, x) | InputArgumentIndex | 0 |
@@ -4028,7 +5135,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:54:29:54:56 | pathMod ... ath, x) | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:54:29:54:56 | pathMod ... ath, x) | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path res write fs readFileSync /home/user/ path path startsWith /home/user/ res write fs readFileSync path path indexOf secret 1 res write fs readFileSync path fs existsSync path res write fs readFileSync path path foo.txt res write fs readFileSync path path foo.txt path bar.txt res write fs readFileSync path path foo.txt path bar.txt someOpaqueCondition res write fs readFileSync path path sanitize path res write fs readFileSync path path url parse req url true query path res write fs readFileSync pathModule basename path res write fs readFileSync pathModule dirname path res write fs readFileSync pathModule extname path res write fs readFileSync pathModule join path res write fs readFileSync pathModule join x y path z res write fs readFileSync pathModule normalize path res write fs readFileSync pathModule relative x path res write fs readFileSync pathModule relative path x res write fs readFileSync pathModule resolve path res write fs readFileSync pathModule resolve x y path z res write fs readFileSync pathModule toNamespacedPath path |
 | autogenerated/TaintedPath/TaintedPath.js:54:29:54:56 | pathMod ... ath, x) | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:54:29:54:56 | pathMod ... ath, x) | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:54:29:54:56 | pathMod ... ath, x) | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:54:29:54:56 | pathMod ... ath, x) | receiverName | fs |
 | autogenerated/TaintedPath/TaintedPath.js:54:49:54:52 | path | CalleeFlexibleAccessPath | pathModule.relative |
 | autogenerated/TaintedPath/TaintedPath.js:54:49:54:52 | path | InputArgumentIndex | 0 |
@@ -4037,7 +5144,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:54:49:54:52 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:54:49:54:52 | path | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path res write fs readFileSync /home/user/ path path startsWith /home/user/ res write fs readFileSync path path indexOf secret 1 res write fs readFileSync path fs existsSync path res write fs readFileSync path path foo.txt res write fs readFileSync path path foo.txt path bar.txt res write fs readFileSync path path foo.txt path bar.txt someOpaqueCondition res write fs readFileSync path path sanitize path res write fs readFileSync path path url parse req url true query path res write fs readFileSync pathModule basename path res write fs readFileSync pathModule dirname path res write fs readFileSync pathModule extname path res write fs readFileSync pathModule join path res write fs readFileSync pathModule join x y path z res write fs readFileSync pathModule normalize path res write fs readFileSync pathModule relative x path res write fs readFileSync pathModule relative path x res write fs readFileSync pathModule resolve path res write fs readFileSync pathModule resolve x y path z res write fs readFileSync pathModule toNamespacedPath path |
 | autogenerated/TaintedPath/TaintedPath.js:54:49:54:52 | path | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:54:49:54:52 | path | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:54:49:54:52 | path | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:54:49:54:52 | path | receiverName | pathModule |
 | autogenerated/TaintedPath/TaintedPath.js:54:55:54:55 | x | CalleeFlexibleAccessPath | pathModule.relative |
 | autogenerated/TaintedPath/TaintedPath.js:54:55:54:55 | x | InputArgumentIndex | 1 |
@@ -4046,7 +5153,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:54:55:54:55 | x | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:54:55:54:55 | x | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path res write fs readFileSync /home/user/ path path startsWith /home/user/ res write fs readFileSync path path indexOf secret 1 res write fs readFileSync path fs existsSync path res write fs readFileSync path path foo.txt res write fs readFileSync path path foo.txt path bar.txt res write fs readFileSync path path foo.txt path bar.txt someOpaqueCondition res write fs readFileSync path path sanitize path res write fs readFileSync path path url parse req url true query path res write fs readFileSync pathModule basename path res write fs readFileSync pathModule dirname path res write fs readFileSync pathModule extname path res write fs readFileSync pathModule join path res write fs readFileSync pathModule join x y path z res write fs readFileSync pathModule normalize path res write fs readFileSync pathModule relative x path res write fs readFileSync pathModule relative path x res write fs readFileSync pathModule resolve path res write fs readFileSync pathModule resolve x y path z res write fs readFileSync pathModule toNamespacedPath path |
 | autogenerated/TaintedPath/TaintedPath.js:54:55:54:55 | x | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:54:55:54:55 | x | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:54:55:54:55 | x | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:54:55:54:55 | x | receiverName | pathModule |
 | autogenerated/TaintedPath/TaintedPath.js:56:13:56:53 | fs.read ... (path)) | CalleeFlexibleAccessPath | res.write |
 | autogenerated/TaintedPath/TaintedPath.js:56:13:56:53 | fs.read ... (path)) | InputArgumentIndex | 0 |
@@ -4054,7 +5161,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:56:13:56:53 | fs.read ... (path)) | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:56:13:56:53 | fs.read ... (path)) | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path res write fs readFileSync /home/user/ path path startsWith /home/user/ res write fs readFileSync path path indexOf secret 1 res write fs readFileSync path fs existsSync path res write fs readFileSync path path foo.txt res write fs readFileSync path path foo.txt path bar.txt res write fs readFileSync path path foo.txt path bar.txt someOpaqueCondition res write fs readFileSync path path sanitize path res write fs readFileSync path path url parse req url true query path res write fs readFileSync pathModule basename path res write fs readFileSync pathModule dirname path res write fs readFileSync pathModule extname path res write fs readFileSync pathModule join path res write fs readFileSync pathModule join x y path z res write fs readFileSync pathModule normalize path res write fs readFileSync pathModule relative x path res write fs readFileSync pathModule relative path x res write fs readFileSync pathModule resolve path res write fs readFileSync pathModule resolve x y path z res write fs readFileSync pathModule toNamespacedPath path |
 | autogenerated/TaintedPath/TaintedPath.js:56:13:56:53 | fs.read ... (path)) | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:56:13:56:53 | fs.read ... (path)) | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:56:13:56:53 | fs.read ... (path)) | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:56:13:56:53 | fs.read ... (path)) | receiverName | res |
 | autogenerated/TaintedPath/TaintedPath.js:56:29:56:52 | pathMod ... e(path) | CalleeFlexibleAccessPath | fs.readFileSync |
 | autogenerated/TaintedPath/TaintedPath.js:56:29:56:52 | pathMod ... e(path) | InputArgumentIndex | 0 |
@@ -4063,7 +5170,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:56:29:56:52 | pathMod ... e(path) | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:56:29:56:52 | pathMod ... e(path) | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path res write fs readFileSync /home/user/ path path startsWith /home/user/ res write fs readFileSync path path indexOf secret 1 res write fs readFileSync path fs existsSync path res write fs readFileSync path path foo.txt res write fs readFileSync path path foo.txt path bar.txt res write fs readFileSync path path foo.txt path bar.txt someOpaqueCondition res write fs readFileSync path path sanitize path res write fs readFileSync path path url parse req url true query path res write fs readFileSync pathModule basename path res write fs readFileSync pathModule dirname path res write fs readFileSync pathModule extname path res write fs readFileSync pathModule join path res write fs readFileSync pathModule join x y path z res write fs readFileSync pathModule normalize path res write fs readFileSync pathModule relative x path res write fs readFileSync pathModule relative path x res write fs readFileSync pathModule resolve path res write fs readFileSync pathModule resolve x y path z res write fs readFileSync pathModule toNamespacedPath path |
 | autogenerated/TaintedPath/TaintedPath.js:56:29:56:52 | pathMod ... e(path) | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:56:29:56:52 | pathMod ... e(path) | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:56:29:56:52 | pathMod ... e(path) | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:56:29:56:52 | pathMod ... e(path) | receiverName | fs |
 | autogenerated/TaintedPath/TaintedPath.js:56:48:56:51 | path | CalleeFlexibleAccessPath | pathModule.resolve |
 | autogenerated/TaintedPath/TaintedPath.js:56:48:56:51 | path | InputArgumentIndex | 0 |
@@ -4072,7 +5179,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:56:48:56:51 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:56:48:56:51 | path | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path res write fs readFileSync /home/user/ path path startsWith /home/user/ res write fs readFileSync path path indexOf secret 1 res write fs readFileSync path fs existsSync path res write fs readFileSync path path foo.txt res write fs readFileSync path path foo.txt path bar.txt res write fs readFileSync path path foo.txt path bar.txt someOpaqueCondition res write fs readFileSync path path sanitize path res write fs readFileSync path path url parse req url true query path res write fs readFileSync pathModule basename path res write fs readFileSync pathModule dirname path res write fs readFileSync pathModule extname path res write fs readFileSync pathModule join path res write fs readFileSync pathModule join x y path z res write fs readFileSync pathModule normalize path res write fs readFileSync pathModule relative x path res write fs readFileSync pathModule relative path x res write fs readFileSync pathModule resolve path res write fs readFileSync pathModule resolve x y path z res write fs readFileSync pathModule toNamespacedPath path |
 | autogenerated/TaintedPath/TaintedPath.js:56:48:56:51 | path | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:56:48:56:51 | path | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:56:48:56:51 | path | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:56:48:56:51 | path | receiverName | pathModule |
 | autogenerated/TaintedPath/TaintedPath.js:58:13:58:62 | fs.read ... th, z)) | CalleeFlexibleAccessPath | res.write |
 | autogenerated/TaintedPath/TaintedPath.js:58:13:58:62 | fs.read ... th, z)) | InputArgumentIndex | 0 |
@@ -4080,7 +5187,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:58:13:58:62 | fs.read ... th, z)) | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:58:13:58:62 | fs.read ... th, z)) | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path res write fs readFileSync /home/user/ path path startsWith /home/user/ res write fs readFileSync path path indexOf secret 1 res write fs readFileSync path fs existsSync path res write fs readFileSync path path foo.txt res write fs readFileSync path path foo.txt path bar.txt res write fs readFileSync path path foo.txt path bar.txt someOpaqueCondition res write fs readFileSync path path sanitize path res write fs readFileSync path path url parse req url true query path res write fs readFileSync pathModule basename path res write fs readFileSync pathModule dirname path res write fs readFileSync pathModule extname path res write fs readFileSync pathModule join path res write fs readFileSync pathModule join x y path z res write fs readFileSync pathModule normalize path res write fs readFileSync pathModule relative x path res write fs readFileSync pathModule relative path x res write fs readFileSync pathModule resolve path res write fs readFileSync pathModule resolve x y path z res write fs readFileSync pathModule toNamespacedPath path |
 | autogenerated/TaintedPath/TaintedPath.js:58:13:58:62 | fs.read ... th, z)) | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:58:13:58:62 | fs.read ... th, z)) | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:58:13:58:62 | fs.read ... th, z)) | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:58:13:58:62 | fs.read ... th, z)) | receiverName | res |
 | autogenerated/TaintedPath/TaintedPath.js:58:29:58:61 | pathMod ... ath, z) | CalleeFlexibleAccessPath | fs.readFileSync |
 | autogenerated/TaintedPath/TaintedPath.js:58:29:58:61 | pathMod ... ath, z) | InputArgumentIndex | 0 |
@@ -4089,7 +5196,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:58:29:58:61 | pathMod ... ath, z) | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:58:29:58:61 | pathMod ... ath, z) | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path res write fs readFileSync /home/user/ path path startsWith /home/user/ res write fs readFileSync path path indexOf secret 1 res write fs readFileSync path fs existsSync path res write fs readFileSync path path foo.txt res write fs readFileSync path path foo.txt path bar.txt res write fs readFileSync path path foo.txt path bar.txt someOpaqueCondition res write fs readFileSync path path sanitize path res write fs readFileSync path path url parse req url true query path res write fs readFileSync pathModule basename path res write fs readFileSync pathModule dirname path res write fs readFileSync pathModule extname path res write fs readFileSync pathModule join path res write fs readFileSync pathModule join x y path z res write fs readFileSync pathModule normalize path res write fs readFileSync pathModule relative x path res write fs readFileSync pathModule relative path x res write fs readFileSync pathModule resolve path res write fs readFileSync pathModule resolve x y path z res write fs readFileSync pathModule toNamespacedPath path |
 | autogenerated/TaintedPath/TaintedPath.js:58:29:58:61 | pathMod ... ath, z) | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:58:29:58:61 | pathMod ... ath, z) | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:58:29:58:61 | pathMod ... ath, z) | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:58:29:58:61 | pathMod ... ath, z) | receiverName | fs |
 | autogenerated/TaintedPath/TaintedPath.js:58:48:58:48 | x | CalleeFlexibleAccessPath | pathModule.resolve |
 | autogenerated/TaintedPath/TaintedPath.js:58:48:58:48 | x | InputArgumentIndex | 0 |
@@ -4098,7 +5205,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:58:48:58:48 | x | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:58:48:58:48 | x | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path res write fs readFileSync /home/user/ path path startsWith /home/user/ res write fs readFileSync path path indexOf secret 1 res write fs readFileSync path fs existsSync path res write fs readFileSync path path foo.txt res write fs readFileSync path path foo.txt path bar.txt res write fs readFileSync path path foo.txt path bar.txt someOpaqueCondition res write fs readFileSync path path sanitize path res write fs readFileSync path path url parse req url true query path res write fs readFileSync pathModule basename path res write fs readFileSync pathModule dirname path res write fs readFileSync pathModule extname path res write fs readFileSync pathModule join path res write fs readFileSync pathModule join x y path z res write fs readFileSync pathModule normalize path res write fs readFileSync pathModule relative x path res write fs readFileSync pathModule relative path x res write fs readFileSync pathModule resolve path res write fs readFileSync pathModule resolve x y path z res write fs readFileSync pathModule toNamespacedPath path |
 | autogenerated/TaintedPath/TaintedPath.js:58:48:58:48 | x | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:58:48:58:48 | x | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:58:48:58:48 | x | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:58:48:58:48 | x | receiverName | pathModule |
 | autogenerated/TaintedPath/TaintedPath.js:58:51:58:51 | y | CalleeFlexibleAccessPath | pathModule.resolve |
 | autogenerated/TaintedPath/TaintedPath.js:58:51:58:51 | y | InputArgumentIndex | 1 |
@@ -4107,7 +5214,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:58:51:58:51 | y | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:58:51:58:51 | y | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path res write fs readFileSync /home/user/ path path startsWith /home/user/ res write fs readFileSync path path indexOf secret 1 res write fs readFileSync path fs existsSync path res write fs readFileSync path path foo.txt res write fs readFileSync path path foo.txt path bar.txt res write fs readFileSync path path foo.txt path bar.txt someOpaqueCondition res write fs readFileSync path path sanitize path res write fs readFileSync path path url parse req url true query path res write fs readFileSync pathModule basename path res write fs readFileSync pathModule dirname path res write fs readFileSync pathModule extname path res write fs readFileSync pathModule join path res write fs readFileSync pathModule join x y path z res write fs readFileSync pathModule normalize path res write fs readFileSync pathModule relative x path res write fs readFileSync pathModule relative path x res write fs readFileSync pathModule resolve path res write fs readFileSync pathModule resolve x y path z res write fs readFileSync pathModule toNamespacedPath path |
 | autogenerated/TaintedPath/TaintedPath.js:58:51:58:51 | y | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:58:51:58:51 | y | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:58:51:58:51 | y | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:58:51:58:51 | y | receiverName | pathModule |
 | autogenerated/TaintedPath/TaintedPath.js:58:54:58:57 | path | CalleeFlexibleAccessPath | pathModule.resolve |
 | autogenerated/TaintedPath/TaintedPath.js:58:54:58:57 | path | InputArgumentIndex | 2 |
@@ -4116,7 +5223,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:58:54:58:57 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:58:54:58:57 | path | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path res write fs readFileSync /home/user/ path path startsWith /home/user/ res write fs readFileSync path path indexOf secret 1 res write fs readFileSync path fs existsSync path res write fs readFileSync path path foo.txt res write fs readFileSync path path foo.txt path bar.txt res write fs readFileSync path path foo.txt path bar.txt someOpaqueCondition res write fs readFileSync path path sanitize path res write fs readFileSync path path url parse req url true query path res write fs readFileSync pathModule basename path res write fs readFileSync pathModule dirname path res write fs readFileSync pathModule extname path res write fs readFileSync pathModule join path res write fs readFileSync pathModule join x y path z res write fs readFileSync pathModule normalize path res write fs readFileSync pathModule relative x path res write fs readFileSync pathModule relative path x res write fs readFileSync pathModule resolve path res write fs readFileSync pathModule resolve x y path z res write fs readFileSync pathModule toNamespacedPath path |
 | autogenerated/TaintedPath/TaintedPath.js:58:54:58:57 | path | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:58:54:58:57 | path | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:58:54:58:57 | path | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:58:54:58:57 | path | receiverName | pathModule |
 | autogenerated/TaintedPath/TaintedPath.js:58:60:58:60 | z | CalleeFlexibleAccessPath | pathModule.resolve |
 | autogenerated/TaintedPath/TaintedPath.js:58:60:58:60 | z | InputArgumentIndex | 3 |
@@ -4125,7 +5232,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:58:60:58:60 | z | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:58:60:58:60 | z | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path res write fs readFileSync /home/user/ path path startsWith /home/user/ res write fs readFileSync path path indexOf secret 1 res write fs readFileSync path fs existsSync path res write fs readFileSync path path foo.txt res write fs readFileSync path path foo.txt path bar.txt res write fs readFileSync path path foo.txt path bar.txt someOpaqueCondition res write fs readFileSync path path sanitize path res write fs readFileSync path path url parse req url true query path res write fs readFileSync pathModule basename path res write fs readFileSync pathModule dirname path res write fs readFileSync pathModule extname path res write fs readFileSync pathModule join path res write fs readFileSync pathModule join x y path z res write fs readFileSync pathModule normalize path res write fs readFileSync pathModule relative x path res write fs readFileSync pathModule relative path x res write fs readFileSync pathModule resolve path res write fs readFileSync pathModule resolve x y path z res write fs readFileSync pathModule toNamespacedPath path |
 | autogenerated/TaintedPath/TaintedPath.js:58:60:58:60 | z | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:58:60:58:60 | z | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:58:60:58:60 | z | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:58:60:58:60 | z | receiverName | pathModule |
 | autogenerated/TaintedPath/TaintedPath.js:60:13:60:62 | fs.read ... (path)) | CalleeFlexibleAccessPath | res.write |
 | autogenerated/TaintedPath/TaintedPath.js:60:13:60:62 | fs.read ... (path)) | InputArgumentIndex | 0 |
@@ -4133,7 +5240,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:60:13:60:62 | fs.read ... (path)) | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:60:13:60:62 | fs.read ... (path)) | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path res write fs readFileSync /home/user/ path path startsWith /home/user/ res write fs readFileSync path path indexOf secret 1 res write fs readFileSync path fs existsSync path res write fs readFileSync path path foo.txt res write fs readFileSync path path foo.txt path bar.txt res write fs readFileSync path path foo.txt path bar.txt someOpaqueCondition res write fs readFileSync path path sanitize path res write fs readFileSync path path url parse req url true query path res write fs readFileSync pathModule basename path res write fs readFileSync pathModule dirname path res write fs readFileSync pathModule extname path res write fs readFileSync pathModule join path res write fs readFileSync pathModule join x y path z res write fs readFileSync pathModule normalize path res write fs readFileSync pathModule relative x path res write fs readFileSync pathModule relative path x res write fs readFileSync pathModule resolve path res write fs readFileSync pathModule resolve x y path z res write fs readFileSync pathModule toNamespacedPath path |
 | autogenerated/TaintedPath/TaintedPath.js:60:13:60:62 | fs.read ... (path)) | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:60:13:60:62 | fs.read ... (path)) | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:60:13:60:62 | fs.read ... (path)) | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:60:13:60:62 | fs.read ... (path)) | receiverName | res |
 | autogenerated/TaintedPath/TaintedPath.js:60:29:60:61 | pathMod ... h(path) | CalleeFlexibleAccessPath | fs.readFileSync |
 | autogenerated/TaintedPath/TaintedPath.js:60:29:60:61 | pathMod ... h(path) | InputArgumentIndex | 0 |
@@ -4142,7 +5249,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:60:29:60:61 | pathMod ... h(path) | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:60:29:60:61 | pathMod ... h(path) | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path res write fs readFileSync /home/user/ path path startsWith /home/user/ res write fs readFileSync path path indexOf secret 1 res write fs readFileSync path fs existsSync path res write fs readFileSync path path foo.txt res write fs readFileSync path path foo.txt path bar.txt res write fs readFileSync path path foo.txt path bar.txt someOpaqueCondition res write fs readFileSync path path sanitize path res write fs readFileSync path path url parse req url true query path res write fs readFileSync pathModule basename path res write fs readFileSync pathModule dirname path res write fs readFileSync pathModule extname path res write fs readFileSync pathModule join path res write fs readFileSync pathModule join x y path z res write fs readFileSync pathModule normalize path res write fs readFileSync pathModule relative x path res write fs readFileSync pathModule relative path x res write fs readFileSync pathModule resolve path res write fs readFileSync pathModule resolve x y path z res write fs readFileSync pathModule toNamespacedPath path |
 | autogenerated/TaintedPath/TaintedPath.js:60:29:60:61 | pathMod ... h(path) | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:60:29:60:61 | pathMod ... h(path) | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:60:29:60:61 | pathMod ... h(path) | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:60:29:60:61 | pathMod ... h(path) | receiverName | fs |
 | autogenerated/TaintedPath/TaintedPath.js:60:57:60:60 | path | CalleeFlexibleAccessPath | pathModule.toNamespacedPath |
 | autogenerated/TaintedPath/TaintedPath.js:60:57:60:60 | path | InputArgumentIndex | 0 |
@@ -4151,54 +5258,54 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:60:57:60:60 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:60:57:60:60 | path | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path res write fs readFileSync /home/user/ path path startsWith /home/user/ res write fs readFileSync path path indexOf secret 1 res write fs readFileSync path fs existsSync path res write fs readFileSync path path foo.txt res write fs readFileSync path path foo.txt path bar.txt res write fs readFileSync path path foo.txt path bar.txt someOpaqueCondition res write fs readFileSync path path sanitize path res write fs readFileSync path path url parse req url true query path res write fs readFileSync pathModule basename path res write fs readFileSync pathModule dirname path res write fs readFileSync pathModule extname path res write fs readFileSync pathModule join path res write fs readFileSync pathModule join x y path z res write fs readFileSync pathModule normalize path res write fs readFileSync pathModule relative x path res write fs readFileSync pathModule relative path x res write fs readFileSync pathModule resolve path res write fs readFileSync pathModule resolve x y path z res write fs readFileSync pathModule toNamespacedPath path |
 | autogenerated/TaintedPath/TaintedPath.js:60:57:60:60 | path | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:60:57:60:60 | path | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:60:57:60:60 | path | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:60:57:60:60 | path | receiverName | pathModule |
 | autogenerated/TaintedPath/TaintedPath.js:63:16:63:22 | 'myApp' | CalleeFlexibleAccessPath | angular.module |
 | autogenerated/TaintedPath/TaintedPath.js:63:16:63:22 | 'myApp' | InputArgumentIndex | 0 |
 | autogenerated/TaintedPath/TaintedPath.js:63:16:63:22 | 'myApp' | contextFunctionInterfaces | views_local(req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:63:16:63:22 | 'myApp' | contextSurroundingFunctionParameters |  |
-| autogenerated/TaintedPath/TaintedPath.js:63:16:63:22 | 'myApp' | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:63:16:63:22 | 'myApp' | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:63:16:63:22 | 'myApp' | receiverName | angular |
 | autogenerated/TaintedPath/TaintedPath.js:63:25:63:26 | [] | CalleeFlexibleAccessPath | angular.module |
 | autogenerated/TaintedPath/TaintedPath.js:63:25:63:26 | [] | InputArgumentIndex | 1 |
 | autogenerated/TaintedPath/TaintedPath.js:63:25:63:26 | [] | contextFunctionInterfaces | views_local(req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:63:25:63:26 | [] | contextSurroundingFunctionParameters |  |
-| autogenerated/TaintedPath/TaintedPath.js:63:25:63:26 | [] | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:63:25:63:26 | [] | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:63:25:63:26 | [] | receiverName | angular |
 | autogenerated/TaintedPath/TaintedPath.js:64:16:64:27 | 'myCustomer' | CalleeFlexibleAccessPath | angular.module().directive |
 | autogenerated/TaintedPath/TaintedPath.js:64:16:64:27 | 'myCustomer' | InputArgumentIndex | 0 |
 | autogenerated/TaintedPath/TaintedPath.js:64:16:64:27 | 'myCustomer' | contextFunctionInterfaces | views_local(req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:64:16:64:27 | 'myCustomer' | contextSurroundingFunctionParameters |  |
-| autogenerated/TaintedPath/TaintedPath.js:64:16:64:27 | 'myCustomer' | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:64:16:64:27 | 'myCustomer' | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:64:30:68:5 | functio ... }\\n    } | CalleeFlexibleAccessPath | angular.module().directive |
 | autogenerated/TaintedPath/TaintedPath.js:64:30:68:5 | functio ... }\\n    } | InputArgumentIndex | 1 |
 | autogenerated/TaintedPath/TaintedPath.js:64:30:68:5 | functio ... }\\n    } | contextFunctionInterfaces | views_local(req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:64:30:68:5 | functio ... }\\n    } | contextSurroundingFunctionParameters | () |
-| autogenerated/TaintedPath/TaintedPath.js:64:30:68:5 | functio ... }\\n    } | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:64:30:68:5 | functio ... }\\n    } | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:69:16:69:27 | 'myCustomer' | CalleeFlexibleAccessPath | angular.module().directive().directive |
 | autogenerated/TaintedPath/TaintedPath.js:69:16:69:27 | 'myCustomer' | InputArgumentIndex | 0 |
 | autogenerated/TaintedPath/TaintedPath.js:69:16:69:27 | 'myCustomer' | contextFunctionInterfaces | views_local(req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:69:16:69:27 | 'myCustomer' | contextSurroundingFunctionParameters |  |
-| autogenerated/TaintedPath/TaintedPath.js:69:16:69:27 | 'myCustomer' | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:69:16:69:27 | 'myCustomer' | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:69:30:73:5 | functio ... }\\n    } | CalleeFlexibleAccessPath | angular.module().directive().directive |
 | autogenerated/TaintedPath/TaintedPath.js:69:30:73:5 | functio ... }\\n    } | InputArgumentIndex | 1 |
 | autogenerated/TaintedPath/TaintedPath.js:69:30:73:5 | functio ... }\\n    } | contextFunctionInterfaces | views_local(req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:69:30:73:5 | functio ... }\\n    } | contextSurroundingFunctionParameters | () |
-| autogenerated/TaintedPath/TaintedPath.js:69:30:73:5 | functio ... }\\n    } | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:69:30:73:5 | functio ... }\\n    } | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:71:37:71:44 | "unsafe" | CalleeFlexibleAccessPath | Cookie.get |
 | autogenerated/TaintedPath/TaintedPath.js:71:37:71:44 | "unsafe" | InputArgumentIndex | 0 |
 | autogenerated/TaintedPath/TaintedPath.js:71:37:71:44 | "unsafe" | contextFunctionInterfaces | views_local(req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:71:37:71:44 | "unsafe" | contextSurroundingFunctionParameters | () |
 | autogenerated/TaintedPath/TaintedPath.js:71:37:71:44 | "unsafe" | enclosingFunctionBody | templateUrl Cookie get unsafe |
 | autogenerated/TaintedPath/TaintedPath.js:71:37:71:44 | "unsafe" | enclosingFunctionName | directive#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:71:37:71:44 | "unsafe" | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:71:37:71:44 | "unsafe" | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:71:37:71:44 | "unsafe" | receiverName | Cookie |
 | autogenerated/TaintedPath/TaintedPath.js:75:32:80:1 | functio ... OT OK\\n} | CalleeFlexibleAccessPath | http.createServer |
 | autogenerated/TaintedPath/TaintedPath.js:75:32:80:1 | functio ... OT OK\\n} | InputArgumentIndex | 0 |
 | autogenerated/TaintedPath/TaintedPath.js:75:32:80:1 | functio ... OT OK\\n} | calleeImports | http |
 | autogenerated/TaintedPath/TaintedPath.js:75:32:80:1 | functio ... OT OK\\n} | contextFunctionInterfaces | views_local(req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:75:32:80:1 | functio ... OT OK\\n} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:75:32:80:1 | functio ... OT OK\\n} | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:75:32:80:1 | functio ... OT OK\\n} | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:75:32:80:1 | functio ... OT OK\\n} | receiverName | http |
 | autogenerated/TaintedPath/TaintedPath.js:77:15:77:77 | fs.read ... .query) | CalleeFlexibleAccessPath | res.write |
 | autogenerated/TaintedPath/TaintedPath.js:77:15:77:77 | fs.read ... .query) | InputArgumentIndex | 0 |
@@ -4206,7 +5313,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:77:15:77:77 | fs.read ... .query) | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:77:15:77:77 | fs.read ... .query) | enclosingFunctionBody | req res res write fs readFileSync require querystringify parse req url query res write fs readFileSync require query-string parse req url query res write fs readFileSync require querystring parse req url query |
 | autogenerated/TaintedPath/TaintedPath.js:77:15:77:77 | fs.read ... .query) | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:77:15:77:77 | fs.read ... .query) | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:77:15:77:77 | fs.read ... .query) | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:77:15:77:77 | fs.read ... .query) | receiverName | res |
 | autogenerated/TaintedPath/TaintedPath.js:77:31:77:76 | require ... ).query | CalleeFlexibleAccessPath | fs.readFileSync |
 | autogenerated/TaintedPath/TaintedPath.js:77:31:77:76 | require ... ).query | InputArgumentIndex | 0 |
@@ -4215,7 +5322,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:77:31:77:76 | require ... ).query | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:77:31:77:76 | require ... ).query | enclosingFunctionBody | req res res write fs readFileSync require querystringify parse req url query res write fs readFileSync require query-string parse req url query res write fs readFileSync require querystring parse req url query |
 | autogenerated/TaintedPath/TaintedPath.js:77:31:77:76 | require ... ).query | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:77:31:77:76 | require ... ).query | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:77:31:77:76 | require ... ).query | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:77:31:77:76 | require ... ).query | receiverName | fs |
 | autogenerated/TaintedPath/TaintedPath.js:77:39:77:54 | "querystringify" | CalleeFlexibleAccessPath | require |
 | autogenerated/TaintedPath/TaintedPath.js:77:39:77:54 | "querystringify" | InputArgumentIndex | 0 |
@@ -4224,7 +5331,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:77:39:77:54 | "querystringify" | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:77:39:77:54 | "querystringify" | enclosingFunctionBody | req res res write fs readFileSync require querystringify parse req url query res write fs readFileSync require query-string parse req url query res write fs readFileSync require querystring parse req url query |
 | autogenerated/TaintedPath/TaintedPath.js:77:39:77:54 | "querystringify" | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:77:39:77:54 | "querystringify" | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:77:39:77:54 | "querystringify" | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:77:63:77:69 | req.url | CalleeFlexibleAccessPath | import(!).parse |
 | autogenerated/TaintedPath/TaintedPath.js:77:63:77:69 | req.url | InputArgumentIndex | 0 |
 | autogenerated/TaintedPath/TaintedPath.js:77:63:77:69 | req.url | calleeImports | querystringify |
@@ -4232,14 +5339,14 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:77:63:77:69 | req.url | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:77:63:77:69 | req.url | enclosingFunctionBody | req res res write fs readFileSync require querystringify parse req url query res write fs readFileSync require query-string parse req url query res write fs readFileSync require querystring parse req url query |
 | autogenerated/TaintedPath/TaintedPath.js:77:63:77:69 | req.url | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:77:63:77:69 | req.url | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:77:63:77:69 | req.url | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:78:15:78:75 | fs.read ... .query) | CalleeFlexibleAccessPath | res.write |
 | autogenerated/TaintedPath/TaintedPath.js:78:15:78:75 | fs.read ... .query) | InputArgumentIndex | 0 |
 | autogenerated/TaintedPath/TaintedPath.js:78:15:78:75 | fs.read ... .query) | contextFunctionInterfaces | views_local(req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:78:15:78:75 | fs.read ... .query) | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:78:15:78:75 | fs.read ... .query) | enclosingFunctionBody | req res res write fs readFileSync require querystringify parse req url query res write fs readFileSync require query-string parse req url query res write fs readFileSync require querystring parse req url query |
 | autogenerated/TaintedPath/TaintedPath.js:78:15:78:75 | fs.read ... .query) | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:78:15:78:75 | fs.read ... .query) | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:78:15:78:75 | fs.read ... .query) | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:78:15:78:75 | fs.read ... .query) | receiverName | res |
 | autogenerated/TaintedPath/TaintedPath.js:78:31:78:74 | require ... ).query | CalleeFlexibleAccessPath | fs.readFileSync |
 | autogenerated/TaintedPath/TaintedPath.js:78:31:78:74 | require ... ).query | InputArgumentIndex | 0 |
@@ -4248,7 +5355,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:78:31:78:74 | require ... ).query | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:78:31:78:74 | require ... ).query | enclosingFunctionBody | req res res write fs readFileSync require querystringify parse req url query res write fs readFileSync require query-string parse req url query res write fs readFileSync require querystring parse req url query |
 | autogenerated/TaintedPath/TaintedPath.js:78:31:78:74 | require ... ).query | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:78:31:78:74 | require ... ).query | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:78:31:78:74 | require ... ).query | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:78:31:78:74 | require ... ).query | receiverName | fs |
 | autogenerated/TaintedPath/TaintedPath.js:78:39:78:52 | "query-string" | CalleeFlexibleAccessPath | require |
 | autogenerated/TaintedPath/TaintedPath.js:78:39:78:52 | "query-string" | InputArgumentIndex | 0 |
@@ -4257,7 +5364,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:78:39:78:52 | "query-string" | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:78:39:78:52 | "query-string" | enclosingFunctionBody | req res res write fs readFileSync require querystringify parse req url query res write fs readFileSync require query-string parse req url query res write fs readFileSync require querystring parse req url query |
 | autogenerated/TaintedPath/TaintedPath.js:78:39:78:52 | "query-string" | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:78:39:78:52 | "query-string" | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:78:39:78:52 | "query-string" | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:78:61:78:67 | req.url | CalleeFlexibleAccessPath | import(!).parse |
 | autogenerated/TaintedPath/TaintedPath.js:78:61:78:67 | req.url | InputArgumentIndex | 0 |
 | autogenerated/TaintedPath/TaintedPath.js:78:61:78:67 | req.url | calleeImports | query-string |
@@ -4265,14 +5372,14 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:78:61:78:67 | req.url | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:78:61:78:67 | req.url | enclosingFunctionBody | req res res write fs readFileSync require querystringify parse req url query res write fs readFileSync require query-string parse req url query res write fs readFileSync require querystring parse req url query |
 | autogenerated/TaintedPath/TaintedPath.js:78:61:78:67 | req.url | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:78:61:78:67 | req.url | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:78:61:78:67 | req.url | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:79:15:79:74 | fs.read ... .query) | CalleeFlexibleAccessPath | res.write |
 | autogenerated/TaintedPath/TaintedPath.js:79:15:79:74 | fs.read ... .query) | InputArgumentIndex | 0 |
 | autogenerated/TaintedPath/TaintedPath.js:79:15:79:74 | fs.read ... .query) | contextFunctionInterfaces | views_local(req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:79:15:79:74 | fs.read ... .query) | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:79:15:79:74 | fs.read ... .query) | enclosingFunctionBody | req res res write fs readFileSync require querystringify parse req url query res write fs readFileSync require query-string parse req url query res write fs readFileSync require querystring parse req url query |
 | autogenerated/TaintedPath/TaintedPath.js:79:15:79:74 | fs.read ... .query) | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:79:15:79:74 | fs.read ... .query) | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:79:15:79:74 | fs.read ... .query) | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:79:15:79:74 | fs.read ... .query) | receiverName | res |
 | autogenerated/TaintedPath/TaintedPath.js:79:31:79:73 | require ... ).query | CalleeFlexibleAccessPath | fs.readFileSync |
 | autogenerated/TaintedPath/TaintedPath.js:79:31:79:73 | require ... ).query | InputArgumentIndex | 0 |
@@ -4281,7 +5388,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:79:31:79:73 | require ... ).query | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:79:31:79:73 | require ... ).query | enclosingFunctionBody | req res res write fs readFileSync require querystringify parse req url query res write fs readFileSync require query-string parse req url query res write fs readFileSync require querystring parse req url query |
 | autogenerated/TaintedPath/TaintedPath.js:79:31:79:73 | require ... ).query | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:79:31:79:73 | require ... ).query | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:79:31:79:73 | require ... ).query | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:79:31:79:73 | require ... ).query | receiverName | fs |
 | autogenerated/TaintedPath/TaintedPath.js:79:39:79:51 | "querystring" | CalleeFlexibleAccessPath | require |
 | autogenerated/TaintedPath/TaintedPath.js:79:39:79:51 | "querystring" | InputArgumentIndex | 0 |
@@ -4290,7 +5397,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:79:39:79:51 | "querystring" | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:79:39:79:51 | "querystring" | enclosingFunctionBody | req res res write fs readFileSync require querystringify parse req url query res write fs readFileSync require query-string parse req url query res write fs readFileSync require querystring parse req url query |
 | autogenerated/TaintedPath/TaintedPath.js:79:39:79:51 | "querystring" | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:79:39:79:51 | "querystring" | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:79:39:79:51 | "querystring" | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:79:60:79:66 | req.url | CalleeFlexibleAccessPath | import(!).parse |
 | autogenerated/TaintedPath/TaintedPath.js:79:60:79:66 | req.url | InputArgumentIndex | 0 |
 | autogenerated/TaintedPath/TaintedPath.js:79:60:79:66 | req.url | calleeImports | querystring |
@@ -4298,7 +5405,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:79:60:79:66 | req.url | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:79:60:79:66 | req.url | enclosingFunctionBody | req res res write fs readFileSync require querystringify parse req url query res write fs readFileSync require query-string parse req url query res write fs readFileSync require querystring parse req url query |
 | autogenerated/TaintedPath/TaintedPath.js:79:60:79:66 | req.url | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:79:60:79:66 | req.url | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:79:60:79:66 | req.url | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:84:27:84:35 | 'express' | CalleeFlexibleAccessPath | require |
 | autogenerated/TaintedPath/TaintedPath.js:84:27:84:35 | 'express' | InputArgumentIndex | 0 |
 | autogenerated/TaintedPath/TaintedPath.js:84:27:84:35 | 'express' | calleeImports |  |
@@ -4306,14 +5413,14 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:84:27:84:35 | 'express' | contextSurroundingFunctionParameters | () |
 | autogenerated/TaintedPath/TaintedPath.js:84:27:84:35 | 'express' | enclosingFunctionBody | express require express application express views_local req res res render req 0 params 0 application get /views/* views_local views_imported require ./views application get /views/* views_imported |
 | autogenerated/TaintedPath/TaintedPath.js:84:27:84:35 | 'express' | enclosingFunctionName |  |
-| autogenerated/TaintedPath/TaintedPath.js:84:27:84:35 | 'express' | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:84:27:84:35 | 'express' | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:87:48:87:60 | req.params[0] | CalleeFlexibleAccessPath | res.render |
 | autogenerated/TaintedPath/TaintedPath.js:87:48:87:60 | req.params[0] | InputArgumentIndex | 0 |
 | autogenerated/TaintedPath/TaintedPath.js:87:48:87:60 | req.params[0] | contextFunctionInterfaces | views_local(req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:87:48:87:60 | req.params[0] | contextSurroundingFunctionParameters | ()\n(req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:87:48:87:60 | req.params[0] | enclosingFunctionBody | express require express application express views_local req res res render req 0 params 0 application get /views/* views_local views_imported require ./views application get /views/* views_imported |
 | autogenerated/TaintedPath/TaintedPath.js:87:48:87:60 | req.params[0] | enclosingFunctionName |  |
-| autogenerated/TaintedPath/TaintedPath.js:87:48:87:60 | req.params[0] | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:87:48:87:60 | req.params[0] | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:87:48:87:60 | req.params[0] | receiverName | res |
 | autogenerated/TaintedPath/TaintedPath.js:88:21:88:30 | '/views/*' | CalleeFlexibleAccessPath | application.get |
 | autogenerated/TaintedPath/TaintedPath.js:88:21:88:30 | '/views/*' | InputArgumentIndex | 0 |
@@ -4322,7 +5429,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:88:21:88:30 | '/views/*' | contextSurroundingFunctionParameters | () |
 | autogenerated/TaintedPath/TaintedPath.js:88:21:88:30 | '/views/*' | enclosingFunctionBody | express require express application express views_local req res res render req 0 params 0 application get /views/* views_local views_imported require ./views application get /views/* views_imported |
 | autogenerated/TaintedPath/TaintedPath.js:88:21:88:30 | '/views/*' | enclosingFunctionName |  |
-| autogenerated/TaintedPath/TaintedPath.js:88:21:88:30 | '/views/*' | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:88:21:88:30 | '/views/*' | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:88:21:88:30 | '/views/*' | receiverName | application |
 | autogenerated/TaintedPath/TaintedPath.js:88:33:88:43 | views_local | CalleeFlexibleAccessPath | application.get |
 | autogenerated/TaintedPath/TaintedPath.js:88:33:88:43 | views_local | InputArgumentIndex | 1 |
@@ -4331,7 +5438,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:88:33:88:43 | views_local | contextSurroundingFunctionParameters | () |
 | autogenerated/TaintedPath/TaintedPath.js:88:33:88:43 | views_local | enclosingFunctionBody | express require express application express views_local req res res render req 0 params 0 application get /views/* views_local views_imported require ./views application get /views/* views_imported |
 | autogenerated/TaintedPath/TaintedPath.js:88:33:88:43 | views_local | enclosingFunctionName |  |
-| autogenerated/TaintedPath/TaintedPath.js:88:33:88:43 | views_local | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:88:33:88:43 | views_local | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:88:33:88:43 | views_local | receiverName | application |
 | autogenerated/TaintedPath/TaintedPath.js:90:34:90:42 | "./views" | CalleeFlexibleAccessPath | require |
 | autogenerated/TaintedPath/TaintedPath.js:90:34:90:42 | "./views" | InputArgumentIndex | 0 |
@@ -4340,7 +5447,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:90:34:90:42 | "./views" | contextSurroundingFunctionParameters | () |
 | autogenerated/TaintedPath/TaintedPath.js:90:34:90:42 | "./views" | enclosingFunctionBody | express require express application express views_local req res res render req 0 params 0 application get /views/* views_local views_imported require ./views application get /views/* views_imported |
 | autogenerated/TaintedPath/TaintedPath.js:90:34:90:42 | "./views" | enclosingFunctionName |  |
-| autogenerated/TaintedPath/TaintedPath.js:90:34:90:42 | "./views" | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:90:34:90:42 | "./views" | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:91:21:91:30 | '/views/*' | CalleeFlexibleAccessPath | application.get |
 | autogenerated/TaintedPath/TaintedPath.js:91:21:91:30 | '/views/*' | InputArgumentIndex | 0 |
 | autogenerated/TaintedPath/TaintedPath.js:91:21:91:30 | '/views/*' | calleeImports | express |
@@ -4348,7 +5455,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:91:21:91:30 | '/views/*' | contextSurroundingFunctionParameters | () |
 | autogenerated/TaintedPath/TaintedPath.js:91:21:91:30 | '/views/*' | enclosingFunctionBody | express require express application express views_local req res res render req 0 params 0 application get /views/* views_local views_imported require ./views application get /views/* views_imported |
 | autogenerated/TaintedPath/TaintedPath.js:91:21:91:30 | '/views/*' | enclosingFunctionName |  |
-| autogenerated/TaintedPath/TaintedPath.js:91:21:91:30 | '/views/*' | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:91:21:91:30 | '/views/*' | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:91:21:91:30 | '/views/*' | receiverName | application |
 | autogenerated/TaintedPath/TaintedPath.js:91:33:91:46 | views_imported | CalleeFlexibleAccessPath | application.get |
 | autogenerated/TaintedPath/TaintedPath.js:91:33:91:46 | views_imported | InputArgumentIndex | 1 |
@@ -4357,25 +5464,25 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:91:33:91:46 | views_imported | contextSurroundingFunctionParameters | () |
 | autogenerated/TaintedPath/TaintedPath.js:91:33:91:46 | views_imported | enclosingFunctionBody | express require express application express views_local req res res render req 0 params 0 application get /views/* views_local views_imported require ./views application get /views/* views_imported |
 | autogenerated/TaintedPath/TaintedPath.js:91:33:91:46 | views_imported | enclosingFunctionName |  |
-| autogenerated/TaintedPath/TaintedPath.js:91:33:91:46 | views_imported | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:91:33:91:46 | views_imported | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:91:33:91:46 | views_imported | receiverName | application |
 | autogenerated/TaintedPath/TaintedPath.js:95:18:95:26 | 'message' | CalleeFlexibleAccessPath | addEventListener |
 | autogenerated/TaintedPath/TaintedPath.js:95:18:95:26 | 'message' | InputArgumentIndex | 0 |
 | autogenerated/TaintedPath/TaintedPath.js:95:18:95:26 | 'message' | contextFunctionInterfaces | views_local(req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:95:18:95:26 | 'message' | contextSurroundingFunctionParameters |  |
-| autogenerated/TaintedPath/TaintedPath.js:95:18:95:26 | 'message' | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:95:18:95:26 | 'message' | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:95:29:97:1 | (ev) => ... ata);\\n} | CalleeFlexibleAccessPath | addEventListener |
 | autogenerated/TaintedPath/TaintedPath.js:95:29:97:1 | (ev) => ... ata);\\n} | InputArgumentIndex | 1 |
 | autogenerated/TaintedPath/TaintedPath.js:95:29:97:1 | (ev) => ... ata);\\n} | contextFunctionInterfaces | views_local(req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:95:29:97:1 | (ev) => ... ata);\\n} | contextSurroundingFunctionParameters | (ev) |
-| autogenerated/TaintedPath/TaintedPath.js:95:29:97:1 | (ev) => ... ata);\\n} | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:95:29:97:1 | (ev) => ... ata);\\n} | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:96:14:96:21 | "unsafe" | CalleeFlexibleAccessPath | Cookie.set |
 | autogenerated/TaintedPath/TaintedPath.js:96:14:96:21 | "unsafe" | InputArgumentIndex | 0 |
 | autogenerated/TaintedPath/TaintedPath.js:96:14:96:21 | "unsafe" | contextFunctionInterfaces | views_local(req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:96:14:96:21 | "unsafe" | contextSurroundingFunctionParameters | (ev) |
 | autogenerated/TaintedPath/TaintedPath.js:96:14:96:21 | "unsafe" | enclosingFunctionBody | ev Cookie set unsafe ev data |
 | autogenerated/TaintedPath/TaintedPath.js:96:14:96:21 | "unsafe" | enclosingFunctionName | addEventListener#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:96:14:96:21 | "unsafe" | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:96:14:96:21 | "unsafe" | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:96:14:96:21 | "unsafe" | receiverName | Cookie |
 | autogenerated/TaintedPath/TaintedPath.js:96:24:96:30 | ev.data | CalleeFlexibleAccessPath | Cookie.set |
 | autogenerated/TaintedPath/TaintedPath.js:96:24:96:30 | ev.data | InputArgumentIndex | 1 |
@@ -4383,14 +5490,14 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:96:24:96:30 | ev.data | contextSurroundingFunctionParameters | (ev) |
 | autogenerated/TaintedPath/TaintedPath.js:96:24:96:30 | ev.data | enclosingFunctionBody | ev Cookie set unsafe ev data |
 | autogenerated/TaintedPath/TaintedPath.js:96:24:96:30 | ev.data | enclosingFunctionName | addEventListener#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:96:24:96:30 | ev.data | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:96:24:96:30 | ev.data | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:96:24:96:30 | ev.data | receiverName | Cookie |
 | autogenerated/TaintedPath/TaintedPath.js:99:32:109:1 | functio ...   );\\n\\n} | CalleeFlexibleAccessPath | http.createServer |
 | autogenerated/TaintedPath/TaintedPath.js:99:32:109:1 | functio ...   );\\n\\n} | InputArgumentIndex | 0 |
 | autogenerated/TaintedPath/TaintedPath.js:99:32:109:1 | functio ...   );\\n\\n} | calleeImports | http |
 | autogenerated/TaintedPath/TaintedPath.js:99:32:109:1 | functio ...   );\\n\\n} | contextFunctionInterfaces | views_local(req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:99:32:109:1 | functio ...   );\\n\\n} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:99:32:109:1 | functio ...   );\\n\\n} | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:99:32:109:1 | functio ...   );\\n\\n} | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:99:32:109:1 | functio ...   );\\n\\n} | receiverName | http |
 | autogenerated/TaintedPath/TaintedPath.js:100:23:100:29 | req.url | CalleeFlexibleAccessPath | url.parse |
 | autogenerated/TaintedPath/TaintedPath.js:100:23:100:29 | req.url | InputArgumentIndex | 0 |
@@ -4399,7 +5506,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:100:23:100:29 | req.url | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:100:23:100:29 | req.url | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync fs realpathSync path fs realpath path err realpath res write fs readFileSync realpath |
 | autogenerated/TaintedPath/TaintedPath.js:100:23:100:29 | req.url | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:100:23:100:29 | req.url | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:100:23:100:29 | req.url | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:100:23:100:29 | req.url | receiverName | url |
 | autogenerated/TaintedPath/TaintedPath.js:100:32:100:35 | true | CalleeFlexibleAccessPath | url.parse |
 | autogenerated/TaintedPath/TaintedPath.js:100:32:100:35 | true | InputArgumentIndex | 1 |
@@ -4408,7 +5515,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:100:32:100:35 | true | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:100:32:100:35 | true | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync fs realpathSync path fs realpath path err realpath res write fs readFileSync realpath |
 | autogenerated/TaintedPath/TaintedPath.js:100:32:100:35 | true | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:100:32:100:35 | true | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:100:32:100:35 | true | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:100:32:100:35 | true | receiverName | url |
 | autogenerated/TaintedPath/TaintedPath.js:102:12:102:49 | fs.read ... (path)) | CalleeFlexibleAccessPath | res.write |
 | autogenerated/TaintedPath/TaintedPath.js:102:12:102:49 | fs.read ... (path)) | InputArgumentIndex | 0 |
@@ -4416,7 +5523,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:102:12:102:49 | fs.read ... (path)) | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:102:12:102:49 | fs.read ... (path)) | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync fs realpathSync path fs realpath path err realpath res write fs readFileSync realpath |
 | autogenerated/TaintedPath/TaintedPath.js:102:12:102:49 | fs.read ... (path)) | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:102:12:102:49 | fs.read ... (path)) | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:102:12:102:49 | fs.read ... (path)) | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:102:12:102:49 | fs.read ... (path)) | receiverName | res |
 | autogenerated/TaintedPath/TaintedPath.js:102:28:102:48 | fs.real ... c(path) | CalleeFlexibleAccessPath | fs.readFileSync |
 | autogenerated/TaintedPath/TaintedPath.js:102:28:102:48 | fs.real ... c(path) | InputArgumentIndex | 0 |
@@ -4425,7 +5532,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:102:28:102:48 | fs.real ... c(path) | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:102:28:102:48 | fs.real ... c(path) | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync fs realpathSync path fs realpath path err realpath res write fs readFileSync realpath |
 | autogenerated/TaintedPath/TaintedPath.js:102:28:102:48 | fs.real ... c(path) | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:102:28:102:48 | fs.real ... c(path) | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:102:28:102:48 | fs.real ... c(path) | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:102:28:102:48 | fs.real ... c(path) | receiverName | fs |
 | autogenerated/TaintedPath/TaintedPath.js:102:44:102:47 | path | CalleeFlexibleAccessPath | fs.realpathSync |
 | autogenerated/TaintedPath/TaintedPath.js:102:44:102:47 | path | InputArgumentIndex | 0 |
@@ -4434,7 +5541,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:102:44:102:47 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:102:44:102:47 | path | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync fs realpathSync path fs realpath path err realpath res write fs readFileSync realpath |
 | autogenerated/TaintedPath/TaintedPath.js:102:44:102:47 | path | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:102:44:102:47 | path | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:102:44:102:47 | path | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:102:44:102:47 | path | receiverName | fs |
 | autogenerated/TaintedPath/TaintedPath.js:103:14:103:17 | path | CalleeFlexibleAccessPath | fs.realpath |
 | autogenerated/TaintedPath/TaintedPath.js:103:14:103:17 | path | InputArgumentIndex | 0 |
@@ -4443,7 +5550,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:103:14:103:17 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:103:14:103:17 | path | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync fs realpathSync path fs realpath path err realpath res write fs readFileSync realpath |
 | autogenerated/TaintedPath/TaintedPath.js:103:14:103:17 | path | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:103:14:103:17 | path | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:103:14:103:17 | path | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:103:14:103:17 | path | receiverName | fs |
 | autogenerated/TaintedPath/TaintedPath.js:104:18:106:18 | functio ...       } | CalleeFlexibleAccessPath | fs.realpath |
 | autogenerated/TaintedPath/TaintedPath.js:104:18:106:18 | functio ...       } | InputArgumentIndex | 1 |
@@ -4452,7 +5559,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:104:18:106:18 | functio ...       } | contextSurroundingFunctionParameters | (req, res)\n(err, realpath) |
 | autogenerated/TaintedPath/TaintedPath.js:104:18:106:18 | functio ...       } | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync fs realpathSync path fs realpath path err realpath res write fs readFileSync realpath |
 | autogenerated/TaintedPath/TaintedPath.js:104:18:106:18 | functio ...       } | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:104:18:106:18 | functio ...       } | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:104:18:106:18 | functio ...       } | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:104:18:106:18 | functio ...       } | receiverName | fs |
 | autogenerated/TaintedPath/TaintedPath.js:105:29:105:53 | fs.read ... alpath) | CalleeFlexibleAccessPath | res.write |
 | autogenerated/TaintedPath/TaintedPath.js:105:29:105:53 | fs.read ... alpath) | InputArgumentIndex | 0 |
@@ -4460,7 +5567,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:105:29:105:53 | fs.read ... alpath) | contextSurroundingFunctionParameters | (req, res)\n(err, realpath) |
 | autogenerated/TaintedPath/TaintedPath.js:105:29:105:53 | fs.read ... alpath) | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync fs realpathSync path fs realpath path err realpath res write fs readFileSync realpath |
 | autogenerated/TaintedPath/TaintedPath.js:105:29:105:53 | fs.read ... alpath) | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:105:29:105:53 | fs.read ... alpath) | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:105:29:105:53 | fs.read ... alpath) | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:105:29:105:53 | fs.read ... alpath) | receiverName | res |
 | autogenerated/TaintedPath/TaintedPath.js:105:45:105:52 | realpath | CalleeFlexibleAccessPath | fs.readFileSync |
 | autogenerated/TaintedPath/TaintedPath.js:105:45:105:52 | realpath | InputArgumentIndex | 0 |
@@ -4469,14 +5576,14 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:105:45:105:52 | realpath | contextSurroundingFunctionParameters | (req, res)\n(err, realpath) |
 | autogenerated/TaintedPath/TaintedPath.js:105:45:105:52 | realpath | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync fs realpathSync path fs realpath path err realpath res write fs readFileSync realpath |
 | autogenerated/TaintedPath/TaintedPath.js:105:45:105:52 | realpath | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:105:45:105:52 | realpath | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:105:45:105:52 | realpath | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:105:45:105:52 | realpath | receiverName | fs |
 | autogenerated/TaintedPath/TaintedPath.js:111:32:120:1 | functio ... bove.\\n} | CalleeFlexibleAccessPath | http.createServer |
 | autogenerated/TaintedPath/TaintedPath.js:111:32:120:1 | functio ... bove.\\n} | InputArgumentIndex | 0 |
 | autogenerated/TaintedPath/TaintedPath.js:111:32:120:1 | functio ... bove.\\n} | calleeImports | http |
 | autogenerated/TaintedPath/TaintedPath.js:111:32:120:1 | functio ... bove.\\n} | contextFunctionInterfaces | views_local(req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:111:32:120:1 | functio ... bove.\\n} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:111:32:120:1 | functio ... bove.\\n} | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:111:32:120:1 | functio ... bove.\\n} | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:111:32:120:1 | functio ... bove.\\n} | receiverName | http |
 | autogenerated/TaintedPath/TaintedPath.js:112:24:112:30 | req.url | CalleeFlexibleAccessPath | url.parse |
 | autogenerated/TaintedPath/TaintedPath.js:112:24:112:30 | req.url | InputArgumentIndex | 0 |
@@ -4485,7 +5592,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:112:24:112:30 | req.url | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:112:24:112:30 | req.url | enclosingFunctionBody | req res path url parse req url true query path path path path replace /[\\]\\[*,;'"`<>\\\\?\\/]/g  path path replace /\\.\\./g  res write fs readFileSync path |
 | autogenerated/TaintedPath/TaintedPath.js:112:24:112:30 | req.url | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:112:24:112:30 | req.url | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:112:24:112:30 | req.url | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:112:24:112:30 | req.url | receiverName | url |
 | autogenerated/TaintedPath/TaintedPath.js:112:33:112:36 | true | CalleeFlexibleAccessPath | url.parse |
 | autogenerated/TaintedPath/TaintedPath.js:112:33:112:36 | true | InputArgumentIndex | 1 |
@@ -4494,13 +5601,13 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:112:33:112:36 | true | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:112:33:112:36 | true | enclosingFunctionBody | req res path url parse req url true query path path path path replace /[\\]\\[*,;'"`<>\\\\?\\/]/g  path path replace /\\.\\./g  res write fs readFileSync path |
 | autogenerated/TaintedPath/TaintedPath.js:112:33:112:36 | true | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:112:33:112:36 | true | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:112:33:112:36 | true | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:112:33:112:36 | true | receiverName | url |
 | autogenerated/TaintedPath/TaintedPath.js:115:12:115:51 | path.re ... /g, '') | contextFunctionInterfaces | views_local(req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:115:12:115:51 | path.re ... /g, '') | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:115:12:115:51 | path.re ... /g, '') | enclosingFunctionBody | req res path url parse req url true query path path path path replace /[\\]\\[*,;'"`<>\\\\?\\/]/g  path path replace /\\.\\./g  res write fs readFileSync path |
 | autogenerated/TaintedPath/TaintedPath.js:115:12:115:51 | path.re ... /g, '') | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:115:12:115:51 | path.re ... /g, '') | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:115:12:115:51 | path.re ... /g, '') | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:115:25:115:46 | /[\\]\\[* ... \\?\\/]/g | CalleeFlexibleAccessPath | path.replace |
 | autogenerated/TaintedPath/TaintedPath.js:115:25:115:46 | /[\\]\\[* ... \\?\\/]/g | InputArgumentIndex | 0 |
 | autogenerated/TaintedPath/TaintedPath.js:115:25:115:46 | /[\\]\\[* ... \\?\\/]/g | calleeImports | url |
@@ -4508,7 +5615,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:115:25:115:46 | /[\\]\\[* ... \\?\\/]/g | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:115:25:115:46 | /[\\]\\[* ... \\?\\/]/g | enclosingFunctionBody | req res path url parse req url true query path path path path replace /[\\]\\[*,;'"`<>\\\\?\\/]/g  path path replace /\\.\\./g  res write fs readFileSync path |
 | autogenerated/TaintedPath/TaintedPath.js:115:25:115:46 | /[\\]\\[* ... \\?\\/]/g | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:115:25:115:46 | /[\\]\\[* ... \\?\\/]/g | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:115:25:115:46 | /[\\]\\[* ... \\?\\/]/g | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:115:25:115:46 | /[\\]\\[* ... \\?\\/]/g | receiverName | path |
 | autogenerated/TaintedPath/TaintedPath.js:115:49:115:50 | '' | CalleeFlexibleAccessPath | path.replace |
 | autogenerated/TaintedPath/TaintedPath.js:115:49:115:50 | '' | InputArgumentIndex | 1 |
@@ -4517,13 +5624,13 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:115:49:115:50 | '' | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:115:49:115:50 | '' | enclosingFunctionBody | req res path url parse req url true query path path path path replace /[\\]\\[*,;'"`<>\\\\?\\/]/g  path path replace /\\.\\./g  res write fs readFileSync path |
 | autogenerated/TaintedPath/TaintedPath.js:115:49:115:50 | '' | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:115:49:115:50 | '' | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:115:49:115:50 | '' | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:115:49:115:50 | '' | receiverName | path |
 | autogenerated/TaintedPath/TaintedPath.js:116:12:116:36 | path.re ... /g, '') | contextFunctionInterfaces | views_local(req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:116:12:116:36 | path.re ... /g, '') | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:116:12:116:36 | path.re ... /g, '') | enclosingFunctionBody | req res path url parse req url true query path path path path replace /[\\]\\[*,;'"`<>\\\\?\\/]/g  path path replace /\\.\\./g  res write fs readFileSync path |
 | autogenerated/TaintedPath/TaintedPath.js:116:12:116:36 | path.re ... /g, '') | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:116:12:116:36 | path.re ... /g, '') | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:116:12:116:36 | path.re ... /g, '') | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:116:25:116:31 | /\\.\\./g | CalleeFlexibleAccessPath | path.replace |
 | autogenerated/TaintedPath/TaintedPath.js:116:25:116:31 | /\\.\\./g | InputArgumentIndex | 0 |
 | autogenerated/TaintedPath/TaintedPath.js:116:25:116:31 | /\\.\\./g | calleeImports | url |
@@ -4531,7 +5638,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:116:25:116:31 | /\\.\\./g | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:116:25:116:31 | /\\.\\./g | enclosingFunctionBody | req res path url parse req url true query path path path path replace /[\\]\\[*,;'"`<>\\\\?\\/]/g  path path replace /\\.\\./g  res write fs readFileSync path |
 | autogenerated/TaintedPath/TaintedPath.js:116:25:116:31 | /\\.\\./g | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:116:25:116:31 | /\\.\\./g | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:116:25:116:31 | /\\.\\./g | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:116:25:116:31 | /\\.\\./g | receiverName | path |
 | autogenerated/TaintedPath/TaintedPath.js:116:34:116:35 | '' | CalleeFlexibleAccessPath | path.replace |
 | autogenerated/TaintedPath/TaintedPath.js:116:34:116:35 | '' | InputArgumentIndex | 1 |
@@ -4540,7 +5647,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:116:34:116:35 | '' | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:116:34:116:35 | '' | enclosingFunctionBody | req res path url parse req url true query path path path path replace /[\\]\\[*,;'"`<>\\\\?\\/]/g  path path replace /\\.\\./g  res write fs readFileSync path |
 | autogenerated/TaintedPath/TaintedPath.js:116:34:116:35 | '' | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:116:34:116:35 | '' | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:116:34:116:35 | '' | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:116:34:116:35 | '' | receiverName | path |
 | autogenerated/TaintedPath/TaintedPath.js:119:13:119:33 | fs.read ... c(path) | CalleeFlexibleAccessPath | res.write |
 | autogenerated/TaintedPath/TaintedPath.js:119:13:119:33 | fs.read ... c(path) | InputArgumentIndex | 0 |
@@ -4548,7 +5655,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:119:13:119:33 | fs.read ... c(path) | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:119:13:119:33 | fs.read ... c(path) | enclosingFunctionBody | req res path url parse req url true query path path path path replace /[\\]\\[*,;'"`<>\\\\?\\/]/g  path path replace /\\.\\./g  res write fs readFileSync path |
 | autogenerated/TaintedPath/TaintedPath.js:119:13:119:33 | fs.read ... c(path) | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:119:13:119:33 | fs.read ... c(path) | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:119:13:119:33 | fs.read ... c(path) | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:119:13:119:33 | fs.read ... c(path) | receiverName | res |
 | autogenerated/TaintedPath/TaintedPath.js:119:29:119:32 | path | CalleeFlexibleAccessPath | fs.readFileSync |
 | autogenerated/TaintedPath/TaintedPath.js:119:29:119:32 | path | InputArgumentIndex | 0 |
@@ -4557,14 +5664,14 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:119:29:119:32 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:119:29:119:32 | path | enclosingFunctionBody | req res path url parse req url true query path path path path replace /[\\]\\[*,;'"`<>\\\\?\\/]/g  path path replace /\\.\\./g  res write fs readFileSync path |
 | autogenerated/TaintedPath/TaintedPath.js:119:29:119:32 | path | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:119:29:119:32 | path | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:119:29:119:32 | path | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:119:29:119:32 | path | receiverName | fs |
 | autogenerated/TaintedPath/TaintedPath.js:122:32:133:1 | functio ... bove.\\n} | CalleeFlexibleAccessPath | http.createServer |
 | autogenerated/TaintedPath/TaintedPath.js:122:32:133:1 | functio ... bove.\\n} | InputArgumentIndex | 0 |
 | autogenerated/TaintedPath/TaintedPath.js:122:32:133:1 | functio ... bove.\\n} | calleeImports | http |
 | autogenerated/TaintedPath/TaintedPath.js:122:32:133:1 | functio ... bove.\\n} | contextFunctionInterfaces | views_local(req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:122:32:133:1 | functio ... bove.\\n} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:122:32:133:1 | functio ... bove.\\n} | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:122:32:133:1 | functio ... bove.\\n} | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:122:32:133:1 | functio ... bove.\\n} | receiverName | http |
 | autogenerated/TaintedPath/TaintedPath.js:123:24:123:30 | req.url | CalleeFlexibleAccessPath | url.parse |
 | autogenerated/TaintedPath/TaintedPath.js:123:24:123:30 | req.url | InputArgumentIndex | 0 |
@@ -4573,7 +5680,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:123:24:123:30 | req.url | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:123:24:123:30 | req.url | enclosingFunctionBody | req res path url parse req url true query path path path path replace /[\\]\\[*,;'"`<>\\\\?\\/]/g  path path replace /\\.\\./g  res write fs readFileSync path |
 | autogenerated/TaintedPath/TaintedPath.js:123:24:123:30 | req.url | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:123:24:123:30 | req.url | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:123:24:123:30 | req.url | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:123:24:123:30 | req.url | receiverName | url |
 | autogenerated/TaintedPath/TaintedPath.js:123:33:123:36 | true | CalleeFlexibleAccessPath | url.parse |
 | autogenerated/TaintedPath/TaintedPath.js:123:33:123:36 | true | InputArgumentIndex | 1 |
@@ -4582,13 +5689,13 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:123:33:123:36 | true | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:123:33:123:36 | true | enclosingFunctionBody | req res path url parse req url true query path path path path replace /[\\]\\[*,;'"`<>\\\\?\\/]/g  path path replace /\\.\\./g  res write fs readFileSync path |
 | autogenerated/TaintedPath/TaintedPath.js:123:33:123:36 | true | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:123:33:123:36 | true | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:123:33:123:36 | true | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:123:33:123:36 | true | receiverName | url |
 | autogenerated/TaintedPath/TaintedPath.js:128:11:128:50 | path.re ... /g, '') | contextFunctionInterfaces | views_local(req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:128:11:128:50 | path.re ... /g, '') | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:128:11:128:50 | path.re ... /g, '') | enclosingFunctionBody | req res path url parse req url true query path path path path replace /[\\]\\[*,;'"`<>\\\\?\\/]/g  path path replace /\\.\\./g  res write fs readFileSync path |
 | autogenerated/TaintedPath/TaintedPath.js:128:11:128:50 | path.re ... /g, '') | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:128:11:128:50 | path.re ... /g, '') | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:128:11:128:50 | path.re ... /g, '') | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:128:24:128:45 | /[\\]\\[* ... \\?\\/]/g | CalleeFlexibleAccessPath | path.replace |
 | autogenerated/TaintedPath/TaintedPath.js:128:24:128:45 | /[\\]\\[* ... \\?\\/]/g | InputArgumentIndex | 0 |
 | autogenerated/TaintedPath/TaintedPath.js:128:24:128:45 | /[\\]\\[* ... \\?\\/]/g | calleeImports | url |
@@ -4596,7 +5703,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:128:24:128:45 | /[\\]\\[* ... \\?\\/]/g | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:128:24:128:45 | /[\\]\\[* ... \\?\\/]/g | enclosingFunctionBody | req res path url parse req url true query path path path path replace /[\\]\\[*,;'"`<>\\\\?\\/]/g  path path replace /\\.\\./g  res write fs readFileSync path |
 | autogenerated/TaintedPath/TaintedPath.js:128:24:128:45 | /[\\]\\[* ... \\?\\/]/g | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:128:24:128:45 | /[\\]\\[* ... \\?\\/]/g | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:128:24:128:45 | /[\\]\\[* ... \\?\\/]/g | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:128:24:128:45 | /[\\]\\[* ... \\?\\/]/g | receiverName | path |
 | autogenerated/TaintedPath/TaintedPath.js:128:48:128:49 | '' | CalleeFlexibleAccessPath | path.replace |
 | autogenerated/TaintedPath/TaintedPath.js:128:48:128:49 | '' | InputArgumentIndex | 1 |
@@ -4605,13 +5712,13 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:128:48:128:49 | '' | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:128:48:128:49 | '' | enclosingFunctionBody | req res path url parse req url true query path path path path replace /[\\]\\[*,;'"`<>\\\\?\\/]/g  path path replace /\\.\\./g  res write fs readFileSync path |
 | autogenerated/TaintedPath/TaintedPath.js:128:48:128:49 | '' | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:128:48:128:49 | '' | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:128:48:128:49 | '' | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:128:48:128:49 | '' | receiverName | path |
 | autogenerated/TaintedPath/TaintedPath.js:129:12:129:36 | path.re ... /g, '') | contextFunctionInterfaces | views_local(req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:129:12:129:36 | path.re ... /g, '') | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:129:12:129:36 | path.re ... /g, '') | enclosingFunctionBody | req res path url parse req url true query path path path path replace /[\\]\\[*,;'"`<>\\\\?\\/]/g  path path replace /\\.\\./g  res write fs readFileSync path |
 | autogenerated/TaintedPath/TaintedPath.js:129:12:129:36 | path.re ... /g, '') | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:129:12:129:36 | path.re ... /g, '') | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:129:12:129:36 | path.re ... /g, '') | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:129:25:129:31 | /\\.\\./g | CalleeFlexibleAccessPath | path.replace |
 | autogenerated/TaintedPath/TaintedPath.js:129:25:129:31 | /\\.\\./g | InputArgumentIndex | 0 |
 | autogenerated/TaintedPath/TaintedPath.js:129:25:129:31 | /\\.\\./g | calleeImports | url |
@@ -4619,7 +5726,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:129:25:129:31 | /\\.\\./g | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:129:25:129:31 | /\\.\\./g | enclosingFunctionBody | req res path url parse req url true query path path path path replace /[\\]\\[*,;'"`<>\\\\?\\/]/g  path path replace /\\.\\./g  res write fs readFileSync path |
 | autogenerated/TaintedPath/TaintedPath.js:129:25:129:31 | /\\.\\./g | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:129:25:129:31 | /\\.\\./g | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:129:25:129:31 | /\\.\\./g | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:129:25:129:31 | /\\.\\./g | receiverName | path |
 | autogenerated/TaintedPath/TaintedPath.js:129:34:129:35 | '' | CalleeFlexibleAccessPath | path.replace |
 | autogenerated/TaintedPath/TaintedPath.js:129:34:129:35 | '' | InputArgumentIndex | 1 |
@@ -4628,7 +5735,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:129:34:129:35 | '' | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:129:34:129:35 | '' | enclosingFunctionBody | req res path url parse req url true query path path path path replace /[\\]\\[*,;'"`<>\\\\?\\/]/g  path path replace /\\.\\./g  res write fs readFileSync path |
 | autogenerated/TaintedPath/TaintedPath.js:129:34:129:35 | '' | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:129:34:129:35 | '' | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:129:34:129:35 | '' | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:129:34:129:35 | '' | receiverName | path |
 | autogenerated/TaintedPath/TaintedPath.js:132:13:132:33 | fs.read ... c(path) | CalleeFlexibleAccessPath | res.write |
 | autogenerated/TaintedPath/TaintedPath.js:132:13:132:33 | fs.read ... c(path) | InputArgumentIndex | 0 |
@@ -4636,7 +5743,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:132:13:132:33 | fs.read ... c(path) | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:132:13:132:33 | fs.read ... c(path) | enclosingFunctionBody | req res path url parse req url true query path path path path replace /[\\]\\[*,;'"`<>\\\\?\\/]/g  path path replace /\\.\\./g  res write fs readFileSync path |
 | autogenerated/TaintedPath/TaintedPath.js:132:13:132:33 | fs.read ... c(path) | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:132:13:132:33 | fs.read ... c(path) | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:132:13:132:33 | fs.read ... c(path) | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:132:13:132:33 | fs.read ... c(path) | receiverName | res |
 | autogenerated/TaintedPath/TaintedPath.js:132:29:132:32 | path | CalleeFlexibleAccessPath | fs.readFileSync |
 | autogenerated/TaintedPath/TaintedPath.js:132:29:132:32 | path | InputArgumentIndex | 0 |
@@ -4645,14 +5752,14 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:132:29:132:32 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:132:29:132:32 | path | enclosingFunctionBody | req res path url parse req url true query path path path path replace /[\\]\\[*,;'"`<>\\\\?\\/]/g  path path replace /\\.\\./g  res write fs readFileSync path |
 | autogenerated/TaintedPath/TaintedPath.js:132:29:132:32 | path | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:132:29:132:32 | path | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:132:29:132:32 | path | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:132:29:132:32 | path | receiverName | fs |
 | autogenerated/TaintedPath/TaintedPath.js:135:32:139:1 | functio ... OT OK\\n} | CalleeFlexibleAccessPath | http.createServer |
 | autogenerated/TaintedPath/TaintedPath.js:135:32:139:1 | functio ... OT OK\\n} | InputArgumentIndex | 0 |
 | autogenerated/TaintedPath/TaintedPath.js:135:32:139:1 | functio ... OT OK\\n} | calleeImports | http |
 | autogenerated/TaintedPath/TaintedPath.js:135:32:139:1 | functio ... OT OK\\n} | contextFunctionInterfaces | views_local(req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:135:32:139:1 | functio ... OT OK\\n} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:135:32:139:1 | functio ... OT OK\\n} | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:135:32:139:1 | functio ... OT OK\\n} | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:135:32:139:1 | functio ... OT OK\\n} | receiverName | http |
 | autogenerated/TaintedPath/TaintedPath.js:136:23:136:29 | req.url | CalleeFlexibleAccessPath | url.parse |
 | autogenerated/TaintedPath/TaintedPath.js:136:23:136:29 | req.url | InputArgumentIndex | 0 |
@@ -4661,7 +5768,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:136:23:136:29 | req.url | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:136:23:136:29 | req.url | enclosingFunctionBody | req res path url parse req url true query path require send req path |
 | autogenerated/TaintedPath/TaintedPath.js:136:23:136:29 | req.url | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:136:23:136:29 | req.url | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:136:23:136:29 | req.url | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:136:23:136:29 | req.url | receiverName | url |
 | autogenerated/TaintedPath/TaintedPath.js:136:32:136:35 | true | CalleeFlexibleAccessPath | url.parse |
 | autogenerated/TaintedPath/TaintedPath.js:136:32:136:35 | true | InputArgumentIndex | 1 |
@@ -4670,7 +5777,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:136:32:136:35 | true | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:136:32:136:35 | true | enclosingFunctionBody | req res path url parse req url true query path require send req path |
 | autogenerated/TaintedPath/TaintedPath.js:136:32:136:35 | true | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:136:32:136:35 | true | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:136:32:136:35 | true | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:136:32:136:35 | true | receiverName | url |
 | autogenerated/TaintedPath/TaintedPath.js:138:10:138:15 | 'send' | CalleeFlexibleAccessPath | require |
 | autogenerated/TaintedPath/TaintedPath.js:138:10:138:15 | 'send' | InputArgumentIndex | 0 |
@@ -4679,7 +5786,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:138:10:138:15 | 'send' | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:138:10:138:15 | 'send' | enclosingFunctionBody | req res path url parse req url true query path require send req path |
 | autogenerated/TaintedPath/TaintedPath.js:138:10:138:15 | 'send' | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:138:10:138:15 | 'send' | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:138:10:138:15 | 'send' | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:138:18:138:20 | req | CalleeFlexibleAccessPath | import(!) |
 | autogenerated/TaintedPath/TaintedPath.js:138:18:138:20 | req | InputArgumentIndex | 0 |
 | autogenerated/TaintedPath/TaintedPath.js:138:18:138:20 | req | calleeImports | send |
@@ -4687,7 +5794,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:138:18:138:20 | req | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:138:18:138:20 | req | enclosingFunctionBody | req res path url parse req url true query path require send req path |
 | autogenerated/TaintedPath/TaintedPath.js:138:18:138:20 | req | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:138:18:138:20 | req | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:138:18:138:20 | req | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:138:23:138:26 | path | CalleeFlexibleAccessPath | import(!) |
 | autogenerated/TaintedPath/TaintedPath.js:138:23:138:26 | path | InputArgumentIndex | 1 |
 | autogenerated/TaintedPath/TaintedPath.js:138:23:138:26 | path | calleeImports | send |
@@ -4695,13 +5802,13 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:138:23:138:26 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:138:23:138:26 | path | enclosingFunctionBody | req res path url parse req url true query path require send req path |
 | autogenerated/TaintedPath/TaintedPath.js:138:23:138:26 | path | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:138:23:138:26 | path | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:138:23:138:26 | path | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:141:32:163:1 | functio ...  OK \\n\\n} | CalleeFlexibleAccessPath | http.createServer |
 | autogenerated/TaintedPath/TaintedPath.js:141:32:163:1 | functio ...  OK \\n\\n} | InputArgumentIndex | 0 |
 | autogenerated/TaintedPath/TaintedPath.js:141:32:163:1 | functio ...  OK \\n\\n} | calleeImports | http |
 | autogenerated/TaintedPath/TaintedPath.js:141:32:163:1 | functio ...  OK \\n\\n} | contextFunctionInterfaces | views_local(req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:141:32:163:1 | functio ...  OK \\n\\n} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:141:32:163:1 | functio ...  OK \\n\\n} | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:141:32:163:1 | functio ...  OK \\n\\n} | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:141:32:163:1 | functio ...  OK \\n\\n} | receiverName | http |
 | autogenerated/TaintedPath/TaintedPath.js:142:24:142:30 | req.url | CalleeFlexibleAccessPath | url.parse |
 | autogenerated/TaintedPath/TaintedPath.js:142:24:142:30 | req.url | InputArgumentIndex | 0 |
@@ -4710,7 +5817,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:142:24:142:30 | req.url | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:142:24:142:30 | req.url | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path split path split / fs readFileSync split join / fs readFileSync prefix split split length 1 fs readFileSync split x fs readFileSync prefix split x concatted prefix concat split fs readFileSync concatted join / concatted2 split concat prefix fs readFileSync concatted2 join / fs readFileSync split pop |
 | autogenerated/TaintedPath/TaintedPath.js:142:24:142:30 | req.url | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:142:24:142:30 | req.url | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:142:24:142:30 | req.url | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:142:24:142:30 | req.url | receiverName | url |
 | autogenerated/TaintedPath/TaintedPath.js:142:33:142:36 | true | CalleeFlexibleAccessPath | url.parse |
 | autogenerated/TaintedPath/TaintedPath.js:142:33:142:36 | true | InputArgumentIndex | 1 |
@@ -4719,7 +5826,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:142:33:142:36 | true | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:142:33:142:36 | true | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path split path split / fs readFileSync split join / fs readFileSync prefix split split length 1 fs readFileSync split x fs readFileSync prefix split x concatted prefix concat split fs readFileSync concatted join / concatted2 split concat prefix fs readFileSync concatted2 join / fs readFileSync split pop |
 | autogenerated/TaintedPath/TaintedPath.js:142:33:142:36 | true | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:142:33:142:36 | true | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:142:33:142:36 | true | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:142:33:142:36 | true | receiverName | url |
 | autogenerated/TaintedPath/TaintedPath.js:144:19:144:22 | path | CalleeFlexibleAccessPath | fs.readFileSync |
 | autogenerated/TaintedPath/TaintedPath.js:144:19:144:22 | path | InputArgumentIndex | 0 |
@@ -4728,7 +5835,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:144:19:144:22 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:144:19:144:22 | path | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path split path split / fs readFileSync split join / fs readFileSync prefix split split length 1 fs readFileSync split x fs readFileSync prefix split x concatted prefix concat split fs readFileSync concatted join / concatted2 split concat prefix fs readFileSync concatted2 join / fs readFileSync split pop |
 | autogenerated/TaintedPath/TaintedPath.js:144:19:144:22 | path | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:144:19:144:22 | path | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:144:19:144:22 | path | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:144:19:144:22 | path | receiverName | fs |
 | autogenerated/TaintedPath/TaintedPath.js:146:26:146:28 | "/" | CalleeFlexibleAccessPath | path.split |
 | autogenerated/TaintedPath/TaintedPath.js:146:26:146:28 | "/" | InputArgumentIndex | 0 |
@@ -4737,7 +5844,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:146:26:146:28 | "/" | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:146:26:146:28 | "/" | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path split path split / fs readFileSync split join / fs readFileSync prefix split split length 1 fs readFileSync split x fs readFileSync prefix split x concatted prefix concat split fs readFileSync concatted join / concatted2 split concat prefix fs readFileSync concatted2 join / fs readFileSync split pop |
 | autogenerated/TaintedPath/TaintedPath.js:146:26:146:28 | "/" | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:146:26:146:28 | "/" | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:146:26:146:28 | "/" | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:146:26:146:28 | "/" | receiverName | path |
 | autogenerated/TaintedPath/TaintedPath.js:148:19:148:33 | split.join("/") | CalleeFlexibleAccessPath | fs.readFileSync |
 | autogenerated/TaintedPath/TaintedPath.js:148:19:148:33 | split.join("/") | InputArgumentIndex | 0 |
@@ -4746,7 +5853,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:148:19:148:33 | split.join("/") | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:148:19:148:33 | split.join("/") | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path split path split / fs readFileSync split join / fs readFileSync prefix split split length 1 fs readFileSync split x fs readFileSync prefix split x concatted prefix concat split fs readFileSync concatted join / concatted2 split concat prefix fs readFileSync concatted2 join / fs readFileSync split pop |
 | autogenerated/TaintedPath/TaintedPath.js:148:19:148:33 | split.join("/") | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:148:19:148:33 | split.join("/") | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:148:19:148:33 | split.join("/") | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:148:19:148:33 | split.join("/") | receiverName | fs |
 | autogenerated/TaintedPath/TaintedPath.js:148:30:148:32 | "/" | CalleeFlexibleAccessPath | split.join |
 | autogenerated/TaintedPath/TaintedPath.js:148:30:148:32 | "/" | InputArgumentIndex | 0 |
@@ -4755,7 +5862,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:148:30:148:32 | "/" | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:148:30:148:32 | "/" | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path split path split / fs readFileSync split join / fs readFileSync prefix split split length 1 fs readFileSync split x fs readFileSync prefix split x concatted prefix concat split fs readFileSync concatted join / concatted2 split concat prefix fs readFileSync concatted2 join / fs readFileSync split pop |
 | autogenerated/TaintedPath/TaintedPath.js:148:30:148:32 | "/" | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:148:30:148:32 | "/" | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:148:30:148:32 | "/" | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:148:30:148:32 | "/" | receiverName | split |
 | autogenerated/TaintedPath/TaintedPath.js:150:19:150:50 | prefix  ... th - 1] | CalleeFlexibleAccessPath | fs.readFileSync |
 | autogenerated/TaintedPath/TaintedPath.js:150:19:150:50 | prefix  ... th - 1] | InputArgumentIndex | 0 |
@@ -4764,7 +5871,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:150:19:150:50 | prefix  ... th - 1] | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:150:19:150:50 | prefix  ... th - 1] | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path split path split / fs readFileSync split join / fs readFileSync prefix split split length 1 fs readFileSync split x fs readFileSync prefix split x concatted prefix concat split fs readFileSync concatted join / concatted2 split concat prefix fs readFileSync concatted2 join / fs readFileSync split pop |
 | autogenerated/TaintedPath/TaintedPath.js:150:19:150:50 | prefix  ... th - 1] | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:150:19:150:50 | prefix  ... th - 1] | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:150:19:150:50 | prefix  ... th - 1] | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:150:19:150:50 | prefix  ... th - 1] | receiverName | fs |
 | autogenerated/TaintedPath/TaintedPath.js:152:19:152:26 | split[x] | CalleeFlexibleAccessPath | fs.readFileSync |
 | autogenerated/TaintedPath/TaintedPath.js:152:19:152:26 | split[x] | InputArgumentIndex | 0 |
@@ -4773,7 +5880,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:152:19:152:26 | split[x] | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:152:19:152:26 | split[x] | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path split path split / fs readFileSync split join / fs readFileSync prefix split split length 1 fs readFileSync split x fs readFileSync prefix split x concatted prefix concat split fs readFileSync concatted join / concatted2 split concat prefix fs readFileSync concatted2 join / fs readFileSync split pop |
 | autogenerated/TaintedPath/TaintedPath.js:152:19:152:26 | split[x] | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:152:19:152:26 | split[x] | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:152:19:152:26 | split[x] | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:152:19:152:26 | split[x] | receiverName | fs |
 | autogenerated/TaintedPath/TaintedPath.js:153:19:153:35 | prefix + split[x] | CalleeFlexibleAccessPath | fs.readFileSync |
 | autogenerated/TaintedPath/TaintedPath.js:153:19:153:35 | prefix + split[x] | InputArgumentIndex | 0 |
@@ -4782,7 +5889,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:153:19:153:35 | prefix + split[x] | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:153:19:153:35 | prefix + split[x] | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path split path split / fs readFileSync split join / fs readFileSync prefix split split length 1 fs readFileSync split x fs readFileSync prefix split x concatted prefix concat split fs readFileSync concatted join / concatted2 split concat prefix fs readFileSync concatted2 join / fs readFileSync split pop |
 | autogenerated/TaintedPath/TaintedPath.js:153:19:153:35 | prefix + split[x] | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:153:19:153:35 | prefix + split[x] | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:153:19:153:35 | prefix + split[x] | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:153:19:153:35 | prefix + split[x] | receiverName | fs |
 | autogenerated/TaintedPath/TaintedPath.js:155:33:155:37 | split | CalleeFlexibleAccessPath | prefix.concat |
 | autogenerated/TaintedPath/TaintedPath.js:155:33:155:37 | split | InputArgumentIndex | 0 |
@@ -4790,7 +5897,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:155:33:155:37 | split | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:155:33:155:37 | split | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path split path split / fs readFileSync split join / fs readFileSync prefix split split length 1 fs readFileSync split x fs readFileSync prefix split x concatted prefix concat split fs readFileSync concatted join / concatted2 split concat prefix fs readFileSync concatted2 join / fs readFileSync split pop |
 | autogenerated/TaintedPath/TaintedPath.js:155:33:155:37 | split | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:155:33:155:37 | split | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:155:33:155:37 | split | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:155:33:155:37 | split | receiverName | prefix |
 | autogenerated/TaintedPath/TaintedPath.js:155:33:155:37 | split | stringConcatenatedWith | prefix -endpoint-  |
 | autogenerated/TaintedPath/TaintedPath.js:156:19:156:37 | concatted.join("/") | CalleeFlexibleAccessPath | fs.readFileSync |
@@ -4800,7 +5907,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:156:19:156:37 | concatted.join("/") | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:156:19:156:37 | concatted.join("/") | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path split path split / fs readFileSync split join / fs readFileSync prefix split split length 1 fs readFileSync split x fs readFileSync prefix split x concatted prefix concat split fs readFileSync concatted join / concatted2 split concat prefix fs readFileSync concatted2 join / fs readFileSync split pop |
 | autogenerated/TaintedPath/TaintedPath.js:156:19:156:37 | concatted.join("/") | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:156:19:156:37 | concatted.join("/") | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:156:19:156:37 | concatted.join("/") | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:156:19:156:37 | concatted.join("/") | receiverName | fs |
 | autogenerated/TaintedPath/TaintedPath.js:156:34:156:36 | "/" | CalleeFlexibleAccessPath | concatted.join |
 | autogenerated/TaintedPath/TaintedPath.js:156:34:156:36 | "/" | InputArgumentIndex | 0 |
@@ -4808,7 +5915,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:156:34:156:36 | "/" | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:156:34:156:36 | "/" | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path split path split / fs readFileSync split join / fs readFileSync prefix split split length 1 fs readFileSync split x fs readFileSync prefix split x concatted prefix concat split fs readFileSync concatted join / concatted2 split concat prefix fs readFileSync concatted2 join / fs readFileSync split pop |
 | autogenerated/TaintedPath/TaintedPath.js:156:34:156:36 | "/" | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:156:34:156:36 | "/" | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:156:34:156:36 | "/" | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:156:34:156:36 | "/" | receiverName | concatted |
 | autogenerated/TaintedPath/TaintedPath.js:158:33:158:38 | prefix | CalleeFlexibleAccessPath | split.concat |
 | autogenerated/TaintedPath/TaintedPath.js:158:33:158:38 | prefix | InputArgumentIndex | 0 |
@@ -4817,7 +5924,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:158:33:158:38 | prefix | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:158:33:158:38 | prefix | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path split path split / fs readFileSync split join / fs readFileSync prefix split split length 1 fs readFileSync split x fs readFileSync prefix split x concatted prefix concat split fs readFileSync concatted join / concatted2 split concat prefix fs readFileSync concatted2 join / fs readFileSync split pop |
 | autogenerated/TaintedPath/TaintedPath.js:158:33:158:38 | prefix | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:158:33:158:38 | prefix | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:158:33:158:38 | prefix | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:158:33:158:38 | prefix | receiverName | split |
 | autogenerated/TaintedPath/TaintedPath.js:158:33:158:38 | prefix | stringConcatenatedWith | split -endpoint-  |
 | autogenerated/TaintedPath/TaintedPath.js:159:19:159:38 | concatted2.join("/") | CalleeFlexibleAccessPath | fs.readFileSync |
@@ -4827,7 +5934,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:159:19:159:38 | concatted2.join("/") | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:159:19:159:38 | concatted2.join("/") | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path split path split / fs readFileSync split join / fs readFileSync prefix split split length 1 fs readFileSync split x fs readFileSync prefix split x concatted prefix concat split fs readFileSync concatted join / concatted2 split concat prefix fs readFileSync concatted2 join / fs readFileSync split pop |
 | autogenerated/TaintedPath/TaintedPath.js:159:19:159:38 | concatted2.join("/") | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:159:19:159:38 | concatted2.join("/") | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:159:19:159:38 | concatted2.join("/") | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:159:19:159:38 | concatted2.join("/") | receiverName | fs |
 | autogenerated/TaintedPath/TaintedPath.js:159:35:159:37 | "/" | CalleeFlexibleAccessPath | concatted2.join |
 | autogenerated/TaintedPath/TaintedPath.js:159:35:159:37 | "/" | InputArgumentIndex | 0 |
@@ -4836,7 +5943,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:159:35:159:37 | "/" | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:159:35:159:37 | "/" | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path split path split / fs readFileSync split join / fs readFileSync prefix split split length 1 fs readFileSync split x fs readFileSync prefix split x concatted prefix concat split fs readFileSync concatted join / concatted2 split concat prefix fs readFileSync concatted2 join / fs readFileSync split pop |
 | autogenerated/TaintedPath/TaintedPath.js:159:35:159:37 | "/" | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:159:35:159:37 | "/" | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:159:35:159:37 | "/" | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:159:35:159:37 | "/" | receiverName | concatted2 |
 | autogenerated/TaintedPath/TaintedPath.js:161:19:161:29 | split.pop() | CalleeFlexibleAccessPath | fs.readFileSync |
 | autogenerated/TaintedPath/TaintedPath.js:161:19:161:29 | split.pop() | InputArgumentIndex | 0 |
@@ -4845,14 +5952,14 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:161:19:161:29 | split.pop() | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:161:19:161:29 | split.pop() | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path split path split / fs readFileSync split join / fs readFileSync prefix split split length 1 fs readFileSync split x fs readFileSync prefix split x concatted prefix concat split fs readFileSync concatted join / concatted2 split concat prefix fs readFileSync concatted2 join / fs readFileSync split pop |
 | autogenerated/TaintedPath/TaintedPath.js:161:19:161:29 | split.pop() | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:161:19:161:29 | split.pop() | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:161:19:161:29 | split.pop() | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:161:19:161:29 | split.pop() | receiverName | fs |
 | autogenerated/TaintedPath/TaintedPath.js:165:32:196:1 | functio ... lute)\\n} | CalleeFlexibleAccessPath | http.createServer |
 | autogenerated/TaintedPath/TaintedPath.js:165:32:196:1 | functio ... lute)\\n} | InputArgumentIndex | 0 |
 | autogenerated/TaintedPath/TaintedPath.js:165:32:196:1 | functio ... lute)\\n} | calleeImports | http |
 | autogenerated/TaintedPath/TaintedPath.js:165:32:196:1 | functio ... lute)\\n} | contextFunctionInterfaces | views_local(req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:165:32:196:1 | functio ... lute)\\n} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/TaintedPath.js:165:32:196:1 | functio ... lute)\\n} | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:165:32:196:1 | functio ... lute)\\n} | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:165:32:196:1 | functio ... lute)\\n} | receiverName | http |
 | autogenerated/TaintedPath/TaintedPath.js:166:24:166:30 | req.url | CalleeFlexibleAccessPath | url.parse |
 | autogenerated/TaintedPath/TaintedPath.js:166:24:166:30 | req.url | InputArgumentIndex | 0 |
@@ -4861,7 +5968,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:166:24:166:30 | req.url | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:166:24:166:30 | req.url | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path replace /[\\]\\[*,;'"`<>\\\\?\\/]/g  res write fs readFileSync path replace /[abcd]/g  res write fs readFileSync path replace /[./]/g  res write fs readFileSync path replace /[foobar/foobar]/g  res write fs readFileSync path replace /\\//g  res write fs readFileSync path replace /\\.\|\\//g  res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  pathModule isAbsolute path res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  res write fs readFileSync prefix pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)*/  res write fs readFileSync prefix path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  |
 | autogenerated/TaintedPath/TaintedPath.js:166:24:166:30 | req.url | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:166:24:166:30 | req.url | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:166:24:166:30 | req.url | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:166:24:166:30 | req.url | receiverName | url |
 | autogenerated/TaintedPath/TaintedPath.js:166:33:166:36 | true | CalleeFlexibleAccessPath | url.parse |
 | autogenerated/TaintedPath/TaintedPath.js:166:33:166:36 | true | InputArgumentIndex | 1 |
@@ -4870,7 +5977,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:166:33:166:36 | true | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:166:33:166:36 | true | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path replace /[\\]\\[*,;'"`<>\\\\?\\/]/g  res write fs readFileSync path replace /[abcd]/g  res write fs readFileSync path replace /[./]/g  res write fs readFileSync path replace /[foobar/foobar]/g  res write fs readFileSync path replace /\\//g  res write fs readFileSync path replace /\\.\|\\//g  res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  pathModule isAbsolute path res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  res write fs readFileSync prefix pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)*/  res write fs readFileSync prefix path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  |
 | autogenerated/TaintedPath/TaintedPath.js:166:33:166:36 | true | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:166:33:166:36 | true | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:166:33:166:36 | true | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:166:33:166:36 | true | receiverName | url |
 | autogenerated/TaintedPath/TaintedPath.js:169:13:169:69 | fs.read ... g, '')) | CalleeFlexibleAccessPath | res.write |
 | autogenerated/TaintedPath/TaintedPath.js:169:13:169:69 | fs.read ... g, '')) | InputArgumentIndex | 0 |
@@ -4878,7 +5985,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:169:13:169:69 | fs.read ... g, '')) | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:169:13:169:69 | fs.read ... g, '')) | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path replace /[\\]\\[*,;'"`<>\\\\?\\/]/g  res write fs readFileSync path replace /[abcd]/g  res write fs readFileSync path replace /[./]/g  res write fs readFileSync path replace /[foobar/foobar]/g  res write fs readFileSync path replace /\\//g  res write fs readFileSync path replace /\\.\|\\//g  res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  pathModule isAbsolute path res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  res write fs readFileSync prefix pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)*/  res write fs readFileSync prefix path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  |
 | autogenerated/TaintedPath/TaintedPath.js:169:13:169:69 | fs.read ... g, '')) | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:169:13:169:69 | fs.read ... g, '')) | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:169:13:169:69 | fs.read ... g, '')) | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:169:13:169:69 | fs.read ... g, '')) | receiverName | res |
 | autogenerated/TaintedPath/TaintedPath.js:169:29:169:68 | path.re ... /g, '') | CalleeFlexibleAccessPath | fs.readFileSync |
 | autogenerated/TaintedPath/TaintedPath.js:169:29:169:68 | path.re ... /g, '') | InputArgumentIndex | 0 |
@@ -4887,7 +5994,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:169:29:169:68 | path.re ... /g, '') | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:169:29:169:68 | path.re ... /g, '') | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path replace /[\\]\\[*,;'"`<>\\\\?\\/]/g  res write fs readFileSync path replace /[abcd]/g  res write fs readFileSync path replace /[./]/g  res write fs readFileSync path replace /[foobar/foobar]/g  res write fs readFileSync path replace /\\//g  res write fs readFileSync path replace /\\.\|\\//g  res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  pathModule isAbsolute path res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  res write fs readFileSync prefix pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)*/  res write fs readFileSync prefix path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  |
 | autogenerated/TaintedPath/TaintedPath.js:169:29:169:68 | path.re ... /g, '') | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:169:29:169:68 | path.re ... /g, '') | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:169:29:169:68 | path.re ... /g, '') | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:169:29:169:68 | path.re ... /g, '') | receiverName | fs |
 | autogenerated/TaintedPath/TaintedPath.js:169:42:169:63 | /[\\]\\[* ... \\?\\/]/g | CalleeFlexibleAccessPath | path.replace |
 | autogenerated/TaintedPath/TaintedPath.js:169:42:169:63 | /[\\]\\[* ... \\?\\/]/g | InputArgumentIndex | 0 |
@@ -4896,7 +6003,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:169:42:169:63 | /[\\]\\[* ... \\?\\/]/g | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:169:42:169:63 | /[\\]\\[* ... \\?\\/]/g | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path replace /[\\]\\[*,;'"`<>\\\\?\\/]/g  res write fs readFileSync path replace /[abcd]/g  res write fs readFileSync path replace /[./]/g  res write fs readFileSync path replace /[foobar/foobar]/g  res write fs readFileSync path replace /\\//g  res write fs readFileSync path replace /\\.\|\\//g  res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  pathModule isAbsolute path res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  res write fs readFileSync prefix pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)*/  res write fs readFileSync prefix path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  |
 | autogenerated/TaintedPath/TaintedPath.js:169:42:169:63 | /[\\]\\[* ... \\?\\/]/g | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:169:42:169:63 | /[\\]\\[* ... \\?\\/]/g | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:169:42:169:63 | /[\\]\\[* ... \\?\\/]/g | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:169:42:169:63 | /[\\]\\[* ... \\?\\/]/g | receiverName | path |
 | autogenerated/TaintedPath/TaintedPath.js:169:66:169:67 | '' | CalleeFlexibleAccessPath | path.replace |
 | autogenerated/TaintedPath/TaintedPath.js:169:66:169:67 | '' | InputArgumentIndex | 1 |
@@ -4905,7 +6012,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:169:66:169:67 | '' | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:169:66:169:67 | '' | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path replace /[\\]\\[*,;'"`<>\\\\?\\/]/g  res write fs readFileSync path replace /[abcd]/g  res write fs readFileSync path replace /[./]/g  res write fs readFileSync path replace /[foobar/foobar]/g  res write fs readFileSync path replace /\\//g  res write fs readFileSync path replace /\\.\|\\//g  res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  pathModule isAbsolute path res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  res write fs readFileSync prefix pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)*/  res write fs readFileSync prefix path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  |
 | autogenerated/TaintedPath/TaintedPath.js:169:66:169:67 | '' | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:169:66:169:67 | '' | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:169:66:169:67 | '' | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:169:66:169:67 | '' | receiverName | path |
 | autogenerated/TaintedPath/TaintedPath.js:170:13:170:56 | fs.read ... g, '')) | CalleeFlexibleAccessPath | res.write |
 | autogenerated/TaintedPath/TaintedPath.js:170:13:170:56 | fs.read ... g, '')) | InputArgumentIndex | 0 |
@@ -4913,7 +6020,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:170:13:170:56 | fs.read ... g, '')) | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:170:13:170:56 | fs.read ... g, '')) | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path replace /[\\]\\[*,;'"`<>\\\\?\\/]/g  res write fs readFileSync path replace /[abcd]/g  res write fs readFileSync path replace /[./]/g  res write fs readFileSync path replace /[foobar/foobar]/g  res write fs readFileSync path replace /\\//g  res write fs readFileSync path replace /\\.\|\\//g  res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  pathModule isAbsolute path res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  res write fs readFileSync prefix pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)*/  res write fs readFileSync prefix path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  |
 | autogenerated/TaintedPath/TaintedPath.js:170:13:170:56 | fs.read ... g, '')) | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:170:13:170:56 | fs.read ... g, '')) | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:170:13:170:56 | fs.read ... g, '')) | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:170:13:170:56 | fs.read ... g, '')) | receiverName | res |
 | autogenerated/TaintedPath/TaintedPath.js:170:29:170:55 | path.re ... /g, '') | CalleeFlexibleAccessPath | fs.readFileSync |
 | autogenerated/TaintedPath/TaintedPath.js:170:29:170:55 | path.re ... /g, '') | InputArgumentIndex | 0 |
@@ -4922,7 +6029,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:170:29:170:55 | path.re ... /g, '') | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:170:29:170:55 | path.re ... /g, '') | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path replace /[\\]\\[*,;'"`<>\\\\?\\/]/g  res write fs readFileSync path replace /[abcd]/g  res write fs readFileSync path replace /[./]/g  res write fs readFileSync path replace /[foobar/foobar]/g  res write fs readFileSync path replace /\\//g  res write fs readFileSync path replace /\\.\|\\//g  res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  pathModule isAbsolute path res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  res write fs readFileSync prefix pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)*/  res write fs readFileSync prefix path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  |
 | autogenerated/TaintedPath/TaintedPath.js:170:29:170:55 | path.re ... /g, '') | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:170:29:170:55 | path.re ... /g, '') | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:170:29:170:55 | path.re ... /g, '') | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:170:29:170:55 | path.re ... /g, '') | receiverName | fs |
 | autogenerated/TaintedPath/TaintedPath.js:170:42:170:50 | /[abcd]/g | CalleeFlexibleAccessPath | path.replace |
 | autogenerated/TaintedPath/TaintedPath.js:170:42:170:50 | /[abcd]/g | InputArgumentIndex | 0 |
@@ -4931,7 +6038,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:170:42:170:50 | /[abcd]/g | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:170:42:170:50 | /[abcd]/g | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path replace /[\\]\\[*,;'"`<>\\\\?\\/]/g  res write fs readFileSync path replace /[abcd]/g  res write fs readFileSync path replace /[./]/g  res write fs readFileSync path replace /[foobar/foobar]/g  res write fs readFileSync path replace /\\//g  res write fs readFileSync path replace /\\.\|\\//g  res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  pathModule isAbsolute path res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  res write fs readFileSync prefix pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)*/  res write fs readFileSync prefix path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  |
 | autogenerated/TaintedPath/TaintedPath.js:170:42:170:50 | /[abcd]/g | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:170:42:170:50 | /[abcd]/g | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:170:42:170:50 | /[abcd]/g | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:170:42:170:50 | /[abcd]/g | receiverName | path |
 | autogenerated/TaintedPath/TaintedPath.js:170:53:170:54 | '' | CalleeFlexibleAccessPath | path.replace |
 | autogenerated/TaintedPath/TaintedPath.js:170:53:170:54 | '' | InputArgumentIndex | 1 |
@@ -4940,7 +6047,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:170:53:170:54 | '' | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:170:53:170:54 | '' | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path replace /[\\]\\[*,;'"`<>\\\\?\\/]/g  res write fs readFileSync path replace /[abcd]/g  res write fs readFileSync path replace /[./]/g  res write fs readFileSync path replace /[foobar/foobar]/g  res write fs readFileSync path replace /\\//g  res write fs readFileSync path replace /\\.\|\\//g  res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  pathModule isAbsolute path res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  res write fs readFileSync prefix pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)*/  res write fs readFileSync prefix path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  |
 | autogenerated/TaintedPath/TaintedPath.js:170:53:170:54 | '' | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:170:53:170:54 | '' | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:170:53:170:54 | '' | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:170:53:170:54 | '' | receiverName | path |
 | autogenerated/TaintedPath/TaintedPath.js:171:13:171:54 | fs.read ... g, '')) | CalleeFlexibleAccessPath | res.write |
 | autogenerated/TaintedPath/TaintedPath.js:171:13:171:54 | fs.read ... g, '')) | InputArgumentIndex | 0 |
@@ -4948,7 +6055,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:171:13:171:54 | fs.read ... g, '')) | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:171:13:171:54 | fs.read ... g, '')) | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path replace /[\\]\\[*,;'"`<>\\\\?\\/]/g  res write fs readFileSync path replace /[abcd]/g  res write fs readFileSync path replace /[./]/g  res write fs readFileSync path replace /[foobar/foobar]/g  res write fs readFileSync path replace /\\//g  res write fs readFileSync path replace /\\.\|\\//g  res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  pathModule isAbsolute path res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  res write fs readFileSync prefix pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)*/  res write fs readFileSync prefix path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  |
 | autogenerated/TaintedPath/TaintedPath.js:171:13:171:54 | fs.read ... g, '')) | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:171:13:171:54 | fs.read ... g, '')) | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:171:13:171:54 | fs.read ... g, '')) | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:171:13:171:54 | fs.read ... g, '')) | receiverName | res |
 | autogenerated/TaintedPath/TaintedPath.js:171:29:171:53 | path.re ... /g, '') | CalleeFlexibleAccessPath | fs.readFileSync |
 | autogenerated/TaintedPath/TaintedPath.js:171:29:171:53 | path.re ... /g, '') | InputArgumentIndex | 0 |
@@ -4957,7 +6064,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:171:29:171:53 | path.re ... /g, '') | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:171:29:171:53 | path.re ... /g, '') | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path replace /[\\]\\[*,;'"`<>\\\\?\\/]/g  res write fs readFileSync path replace /[abcd]/g  res write fs readFileSync path replace /[./]/g  res write fs readFileSync path replace /[foobar/foobar]/g  res write fs readFileSync path replace /\\//g  res write fs readFileSync path replace /\\.\|\\//g  res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  pathModule isAbsolute path res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  res write fs readFileSync prefix pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)*/  res write fs readFileSync prefix path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  |
 | autogenerated/TaintedPath/TaintedPath.js:171:29:171:53 | path.re ... /g, '') | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:171:29:171:53 | path.re ... /g, '') | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:171:29:171:53 | path.re ... /g, '') | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:171:29:171:53 | path.re ... /g, '') | receiverName | fs |
 | autogenerated/TaintedPath/TaintedPath.js:171:42:171:48 | /[./]/g | CalleeFlexibleAccessPath | path.replace |
 | autogenerated/TaintedPath/TaintedPath.js:171:42:171:48 | /[./]/g | InputArgumentIndex | 0 |
@@ -4966,7 +6073,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:171:42:171:48 | /[./]/g | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:171:42:171:48 | /[./]/g | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path replace /[\\]\\[*,;'"`<>\\\\?\\/]/g  res write fs readFileSync path replace /[abcd]/g  res write fs readFileSync path replace /[./]/g  res write fs readFileSync path replace /[foobar/foobar]/g  res write fs readFileSync path replace /\\//g  res write fs readFileSync path replace /\\.\|\\//g  res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  pathModule isAbsolute path res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  res write fs readFileSync prefix pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)*/  res write fs readFileSync prefix path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  |
 | autogenerated/TaintedPath/TaintedPath.js:171:42:171:48 | /[./]/g | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:171:42:171:48 | /[./]/g | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:171:42:171:48 | /[./]/g | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:171:42:171:48 | /[./]/g | receiverName | path |
 | autogenerated/TaintedPath/TaintedPath.js:171:51:171:52 | '' | CalleeFlexibleAccessPath | path.replace |
 | autogenerated/TaintedPath/TaintedPath.js:171:51:171:52 | '' | InputArgumentIndex | 1 |
@@ -4975,7 +6082,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:171:51:171:52 | '' | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:171:51:171:52 | '' | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path replace /[\\]\\[*,;'"`<>\\\\?\\/]/g  res write fs readFileSync path replace /[abcd]/g  res write fs readFileSync path replace /[./]/g  res write fs readFileSync path replace /[foobar/foobar]/g  res write fs readFileSync path replace /\\//g  res write fs readFileSync path replace /\\.\|\\//g  res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  pathModule isAbsolute path res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  res write fs readFileSync prefix pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)*/  res write fs readFileSync prefix path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  |
 | autogenerated/TaintedPath/TaintedPath.js:171:51:171:52 | '' | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:171:51:171:52 | '' | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:171:51:171:52 | '' | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:171:51:171:52 | '' | receiverName | path |
 | autogenerated/TaintedPath/TaintedPath.js:172:13:172:65 | fs.read ... g, '')) | CalleeFlexibleAccessPath | res.write |
 | autogenerated/TaintedPath/TaintedPath.js:172:13:172:65 | fs.read ... g, '')) | InputArgumentIndex | 0 |
@@ -4983,7 +6090,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:172:13:172:65 | fs.read ... g, '')) | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:172:13:172:65 | fs.read ... g, '')) | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path replace /[\\]\\[*,;'"`<>\\\\?\\/]/g  res write fs readFileSync path replace /[abcd]/g  res write fs readFileSync path replace /[./]/g  res write fs readFileSync path replace /[foobar/foobar]/g  res write fs readFileSync path replace /\\//g  res write fs readFileSync path replace /\\.\|\\//g  res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  pathModule isAbsolute path res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  res write fs readFileSync prefix pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)*/  res write fs readFileSync prefix path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  |
 | autogenerated/TaintedPath/TaintedPath.js:172:13:172:65 | fs.read ... g, '')) | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:172:13:172:65 | fs.read ... g, '')) | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:172:13:172:65 | fs.read ... g, '')) | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:172:13:172:65 | fs.read ... g, '')) | receiverName | res |
 | autogenerated/TaintedPath/TaintedPath.js:172:29:172:64 | path.re ... /g, '') | CalleeFlexibleAccessPath | fs.readFileSync |
 | autogenerated/TaintedPath/TaintedPath.js:172:29:172:64 | path.re ... /g, '') | InputArgumentIndex | 0 |
@@ -4992,7 +6099,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:172:29:172:64 | path.re ... /g, '') | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:172:29:172:64 | path.re ... /g, '') | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path replace /[\\]\\[*,;'"`<>\\\\?\\/]/g  res write fs readFileSync path replace /[abcd]/g  res write fs readFileSync path replace /[./]/g  res write fs readFileSync path replace /[foobar/foobar]/g  res write fs readFileSync path replace /\\//g  res write fs readFileSync path replace /\\.\|\\//g  res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  pathModule isAbsolute path res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  res write fs readFileSync prefix pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)*/  res write fs readFileSync prefix path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  |
 | autogenerated/TaintedPath/TaintedPath.js:172:29:172:64 | path.re ... /g, '') | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:172:29:172:64 | path.re ... /g, '') | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:172:29:172:64 | path.re ... /g, '') | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:172:29:172:64 | path.re ... /g, '') | receiverName | fs |
 | autogenerated/TaintedPath/TaintedPath.js:172:42:172:59 | /[foobar/foobar]/g | CalleeFlexibleAccessPath | path.replace |
 | autogenerated/TaintedPath/TaintedPath.js:172:42:172:59 | /[foobar/foobar]/g | InputArgumentIndex | 0 |
@@ -5001,7 +6108,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:172:42:172:59 | /[foobar/foobar]/g | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:172:42:172:59 | /[foobar/foobar]/g | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path replace /[\\]\\[*,;'"`<>\\\\?\\/]/g  res write fs readFileSync path replace /[abcd]/g  res write fs readFileSync path replace /[./]/g  res write fs readFileSync path replace /[foobar/foobar]/g  res write fs readFileSync path replace /\\//g  res write fs readFileSync path replace /\\.\|\\//g  res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  pathModule isAbsolute path res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  res write fs readFileSync prefix pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)*/  res write fs readFileSync prefix path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  |
 | autogenerated/TaintedPath/TaintedPath.js:172:42:172:59 | /[foobar/foobar]/g | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:172:42:172:59 | /[foobar/foobar]/g | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:172:42:172:59 | /[foobar/foobar]/g | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:172:42:172:59 | /[foobar/foobar]/g | receiverName | path |
 | autogenerated/TaintedPath/TaintedPath.js:172:62:172:63 | '' | CalleeFlexibleAccessPath | path.replace |
 | autogenerated/TaintedPath/TaintedPath.js:172:62:172:63 | '' | InputArgumentIndex | 1 |
@@ -5010,7 +6117,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:172:62:172:63 | '' | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:172:62:172:63 | '' | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path replace /[\\]\\[*,;'"`<>\\\\?\\/]/g  res write fs readFileSync path replace /[abcd]/g  res write fs readFileSync path replace /[./]/g  res write fs readFileSync path replace /[foobar/foobar]/g  res write fs readFileSync path replace /\\//g  res write fs readFileSync path replace /\\.\|\\//g  res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  pathModule isAbsolute path res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  res write fs readFileSync prefix pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)*/  res write fs readFileSync prefix path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  |
 | autogenerated/TaintedPath/TaintedPath.js:172:62:172:63 | '' | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:172:62:172:63 | '' | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:172:62:172:63 | '' | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:172:62:172:63 | '' | receiverName | path |
 | autogenerated/TaintedPath/TaintedPath.js:173:13:173:52 | fs.read ... g, '')) | CalleeFlexibleAccessPath | res.write |
 | autogenerated/TaintedPath/TaintedPath.js:173:13:173:52 | fs.read ... g, '')) | InputArgumentIndex | 0 |
@@ -5018,7 +6125,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:173:13:173:52 | fs.read ... g, '')) | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:173:13:173:52 | fs.read ... g, '')) | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path replace /[\\]\\[*,;'"`<>\\\\?\\/]/g  res write fs readFileSync path replace /[abcd]/g  res write fs readFileSync path replace /[./]/g  res write fs readFileSync path replace /[foobar/foobar]/g  res write fs readFileSync path replace /\\//g  res write fs readFileSync path replace /\\.\|\\//g  res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  pathModule isAbsolute path res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  res write fs readFileSync prefix pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)*/  res write fs readFileSync prefix path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  |
 | autogenerated/TaintedPath/TaintedPath.js:173:13:173:52 | fs.read ... g, '')) | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:173:13:173:52 | fs.read ... g, '')) | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:173:13:173:52 | fs.read ... g, '')) | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:173:13:173:52 | fs.read ... g, '')) | receiverName | res |
 | autogenerated/TaintedPath/TaintedPath.js:173:29:173:51 | path.re ... /g, '') | CalleeFlexibleAccessPath | fs.readFileSync |
 | autogenerated/TaintedPath/TaintedPath.js:173:29:173:51 | path.re ... /g, '') | InputArgumentIndex | 0 |
@@ -5027,7 +6134,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:173:29:173:51 | path.re ... /g, '') | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:173:29:173:51 | path.re ... /g, '') | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path replace /[\\]\\[*,;'"`<>\\\\?\\/]/g  res write fs readFileSync path replace /[abcd]/g  res write fs readFileSync path replace /[./]/g  res write fs readFileSync path replace /[foobar/foobar]/g  res write fs readFileSync path replace /\\//g  res write fs readFileSync path replace /\\.\|\\//g  res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  pathModule isAbsolute path res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  res write fs readFileSync prefix pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)*/  res write fs readFileSync prefix path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  |
 | autogenerated/TaintedPath/TaintedPath.js:173:29:173:51 | path.re ... /g, '') | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:173:29:173:51 | path.re ... /g, '') | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:173:29:173:51 | path.re ... /g, '') | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:173:29:173:51 | path.re ... /g, '') | receiverName | fs |
 | autogenerated/TaintedPath/TaintedPath.js:173:42:173:46 | /\\//g | CalleeFlexibleAccessPath | path.replace |
 | autogenerated/TaintedPath/TaintedPath.js:173:42:173:46 | /\\//g | InputArgumentIndex | 0 |
@@ -5036,7 +6143,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:173:42:173:46 | /\\//g | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:173:42:173:46 | /\\//g | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path replace /[\\]\\[*,;'"`<>\\\\?\\/]/g  res write fs readFileSync path replace /[abcd]/g  res write fs readFileSync path replace /[./]/g  res write fs readFileSync path replace /[foobar/foobar]/g  res write fs readFileSync path replace /\\//g  res write fs readFileSync path replace /\\.\|\\//g  res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  pathModule isAbsolute path res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  res write fs readFileSync prefix pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)*/  res write fs readFileSync prefix path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  |
 | autogenerated/TaintedPath/TaintedPath.js:173:42:173:46 | /\\//g | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:173:42:173:46 | /\\//g | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:173:42:173:46 | /\\//g | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:173:42:173:46 | /\\//g | receiverName | path |
 | autogenerated/TaintedPath/TaintedPath.js:173:49:173:50 | '' | CalleeFlexibleAccessPath | path.replace |
 | autogenerated/TaintedPath/TaintedPath.js:173:49:173:50 | '' | InputArgumentIndex | 1 |
@@ -5045,7 +6152,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:173:49:173:50 | '' | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:173:49:173:50 | '' | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path replace /[\\]\\[*,;'"`<>\\\\?\\/]/g  res write fs readFileSync path replace /[abcd]/g  res write fs readFileSync path replace /[./]/g  res write fs readFileSync path replace /[foobar/foobar]/g  res write fs readFileSync path replace /\\//g  res write fs readFileSync path replace /\\.\|\\//g  res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  pathModule isAbsolute path res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  res write fs readFileSync prefix pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)*/  res write fs readFileSync prefix path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  |
 | autogenerated/TaintedPath/TaintedPath.js:173:49:173:50 | '' | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:173:49:173:50 | '' | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:173:49:173:50 | '' | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:173:49:173:50 | '' | receiverName | path |
 | autogenerated/TaintedPath/TaintedPath.js:174:13:174:55 | fs.read ... g, '')) | CalleeFlexibleAccessPath | res.write |
 | autogenerated/TaintedPath/TaintedPath.js:174:13:174:55 | fs.read ... g, '')) | InputArgumentIndex | 0 |
@@ -5053,7 +6160,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:174:13:174:55 | fs.read ... g, '')) | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:174:13:174:55 | fs.read ... g, '')) | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path replace /[\\]\\[*,;'"`<>\\\\?\\/]/g  res write fs readFileSync path replace /[abcd]/g  res write fs readFileSync path replace /[./]/g  res write fs readFileSync path replace /[foobar/foobar]/g  res write fs readFileSync path replace /\\//g  res write fs readFileSync path replace /\\.\|\\//g  res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  pathModule isAbsolute path res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  res write fs readFileSync prefix pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)*/  res write fs readFileSync prefix path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  |
 | autogenerated/TaintedPath/TaintedPath.js:174:13:174:55 | fs.read ... g, '')) | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:174:13:174:55 | fs.read ... g, '')) | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:174:13:174:55 | fs.read ... g, '')) | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:174:13:174:55 | fs.read ... g, '')) | receiverName | res |
 | autogenerated/TaintedPath/TaintedPath.js:174:29:174:54 | path.re ... /g, '') | CalleeFlexibleAccessPath | fs.readFileSync |
 | autogenerated/TaintedPath/TaintedPath.js:174:29:174:54 | path.re ... /g, '') | InputArgumentIndex | 0 |
@@ -5062,7 +6169,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:174:29:174:54 | path.re ... /g, '') | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:174:29:174:54 | path.re ... /g, '') | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path replace /[\\]\\[*,;'"`<>\\\\?\\/]/g  res write fs readFileSync path replace /[abcd]/g  res write fs readFileSync path replace /[./]/g  res write fs readFileSync path replace /[foobar/foobar]/g  res write fs readFileSync path replace /\\//g  res write fs readFileSync path replace /\\.\|\\//g  res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  pathModule isAbsolute path res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  res write fs readFileSync prefix pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)*/  res write fs readFileSync prefix path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  |
 | autogenerated/TaintedPath/TaintedPath.js:174:29:174:54 | path.re ... /g, '') | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:174:29:174:54 | path.re ... /g, '') | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:174:29:174:54 | path.re ... /g, '') | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:174:29:174:54 | path.re ... /g, '') | receiverName | fs |
 | autogenerated/TaintedPath/TaintedPath.js:174:42:174:49 | /\\.\|\\//g | CalleeFlexibleAccessPath | path.replace |
 | autogenerated/TaintedPath/TaintedPath.js:174:42:174:49 | /\\.\|\\//g | InputArgumentIndex | 0 |
@@ -5071,7 +6178,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:174:42:174:49 | /\\.\|\\//g | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:174:42:174:49 | /\\.\|\\//g | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path replace /[\\]\\[*,;'"`<>\\\\?\\/]/g  res write fs readFileSync path replace /[abcd]/g  res write fs readFileSync path replace /[./]/g  res write fs readFileSync path replace /[foobar/foobar]/g  res write fs readFileSync path replace /\\//g  res write fs readFileSync path replace /\\.\|\\//g  res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  pathModule isAbsolute path res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  res write fs readFileSync prefix pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)*/  res write fs readFileSync prefix path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  |
 | autogenerated/TaintedPath/TaintedPath.js:174:42:174:49 | /\\.\|\\//g | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:174:42:174:49 | /\\.\|\\//g | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:174:42:174:49 | /\\.\|\\//g | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:174:42:174:49 | /\\.\|\\//g | receiverName | path |
 | autogenerated/TaintedPath/TaintedPath.js:174:52:174:53 | '' | CalleeFlexibleAccessPath | path.replace |
 | autogenerated/TaintedPath/TaintedPath.js:174:52:174:53 | '' | InputArgumentIndex | 1 |
@@ -5080,7 +6187,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:174:52:174:53 | '' | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:174:52:174:53 | '' | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path replace /[\\]\\[*,;'"`<>\\\\?\\/]/g  res write fs readFileSync path replace /[abcd]/g  res write fs readFileSync path replace /[./]/g  res write fs readFileSync path replace /[foobar/foobar]/g  res write fs readFileSync path replace /\\//g  res write fs readFileSync path replace /\\.\|\\//g  res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  pathModule isAbsolute path res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  res write fs readFileSync prefix pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)*/  res write fs readFileSync prefix path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  |
 | autogenerated/TaintedPath/TaintedPath.js:174:52:174:53 | '' | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:174:52:174:53 | '' | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:174:52:174:53 | '' | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:174:52:174:53 | '' | receiverName | path |
 | autogenerated/TaintedPath/TaintedPath.js:176:13:176:53 | fs.read ... g, '')) | CalleeFlexibleAccessPath | res.write |
 | autogenerated/TaintedPath/TaintedPath.js:176:13:176:53 | fs.read ... g, '')) | InputArgumentIndex | 0 |
@@ -5088,7 +6195,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:176:13:176:53 | fs.read ... g, '')) | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:176:13:176:53 | fs.read ... g, '')) | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path replace /[\\]\\[*,;'"`<>\\\\?\\/]/g  res write fs readFileSync path replace /[abcd]/g  res write fs readFileSync path replace /[./]/g  res write fs readFileSync path replace /[foobar/foobar]/g  res write fs readFileSync path replace /\\//g  res write fs readFileSync path replace /\\.\|\\//g  res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  pathModule isAbsolute path res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  res write fs readFileSync prefix pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)*/  res write fs readFileSync prefix path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  |
 | autogenerated/TaintedPath/TaintedPath.js:176:13:176:53 | fs.read ... g, '')) | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:176:13:176:53 | fs.read ... g, '')) | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:176:13:176:53 | fs.read ... g, '')) | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:176:13:176:53 | fs.read ... g, '')) | receiverName | res |
 | autogenerated/TaintedPath/TaintedPath.js:176:29:176:52 | path.re ... /g, '') | CalleeFlexibleAccessPath | fs.readFileSync |
 | autogenerated/TaintedPath/TaintedPath.js:176:29:176:52 | path.re ... /g, '') | InputArgumentIndex | 0 |
@@ -5097,7 +6204,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:176:29:176:52 | path.re ... /g, '') | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:176:29:176:52 | path.re ... /g, '') | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path replace /[\\]\\[*,;'"`<>\\\\?\\/]/g  res write fs readFileSync path replace /[abcd]/g  res write fs readFileSync path replace /[./]/g  res write fs readFileSync path replace /[foobar/foobar]/g  res write fs readFileSync path replace /\\//g  res write fs readFileSync path replace /\\.\|\\//g  res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  pathModule isAbsolute path res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  res write fs readFileSync prefix pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)*/  res write fs readFileSync prefix path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  |
 | autogenerated/TaintedPath/TaintedPath.js:176:29:176:52 | path.re ... /g, '') | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:176:29:176:52 | path.re ... /g, '') | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:176:29:176:52 | path.re ... /g, '') | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:176:29:176:52 | path.re ... /g, '') | receiverName | fs |
 | autogenerated/TaintedPath/TaintedPath.js:176:42:176:47 | /[.]/g | CalleeFlexibleAccessPath | path.replace |
 | autogenerated/TaintedPath/TaintedPath.js:176:42:176:47 | /[.]/g | InputArgumentIndex | 0 |
@@ -5106,7 +6213,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:176:42:176:47 | /[.]/g | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:176:42:176:47 | /[.]/g | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path replace /[\\]\\[*,;'"`<>\\\\?\\/]/g  res write fs readFileSync path replace /[abcd]/g  res write fs readFileSync path replace /[./]/g  res write fs readFileSync path replace /[foobar/foobar]/g  res write fs readFileSync path replace /\\//g  res write fs readFileSync path replace /\\.\|\\//g  res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  pathModule isAbsolute path res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  res write fs readFileSync prefix pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)*/  res write fs readFileSync prefix path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  |
 | autogenerated/TaintedPath/TaintedPath.js:176:42:176:47 | /[.]/g | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:176:42:176:47 | /[.]/g | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:176:42:176:47 | /[.]/g | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:176:42:176:47 | /[.]/g | receiverName | path |
 | autogenerated/TaintedPath/TaintedPath.js:176:50:176:51 | '' | CalleeFlexibleAccessPath | path.replace |
 | autogenerated/TaintedPath/TaintedPath.js:176:50:176:51 | '' | InputArgumentIndex | 1 |
@@ -5115,7 +6222,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:176:50:176:51 | '' | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:176:50:176:51 | '' | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path replace /[\\]\\[*,;'"`<>\\\\?\\/]/g  res write fs readFileSync path replace /[abcd]/g  res write fs readFileSync path replace /[./]/g  res write fs readFileSync path replace /[foobar/foobar]/g  res write fs readFileSync path replace /\\//g  res write fs readFileSync path replace /\\.\|\\//g  res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  pathModule isAbsolute path res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  res write fs readFileSync prefix pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)*/  res write fs readFileSync prefix path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  |
 | autogenerated/TaintedPath/TaintedPath.js:176:50:176:51 | '' | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:176:50:176:51 | '' | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:176:50:176:51 | '' | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:176:50:176:51 | '' | receiverName | path |
 | autogenerated/TaintedPath/TaintedPath.js:177:13:177:54 | fs.read ... g, '')) | CalleeFlexibleAccessPath | res.write |
 | autogenerated/TaintedPath/TaintedPath.js:177:13:177:54 | fs.read ... g, '')) | InputArgumentIndex | 0 |
@@ -5123,7 +6230,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:177:13:177:54 | fs.read ... g, '')) | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:177:13:177:54 | fs.read ... g, '')) | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path replace /[\\]\\[*,;'"`<>\\\\?\\/]/g  res write fs readFileSync path replace /[abcd]/g  res write fs readFileSync path replace /[./]/g  res write fs readFileSync path replace /[foobar/foobar]/g  res write fs readFileSync path replace /\\//g  res write fs readFileSync path replace /\\.\|\\//g  res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  pathModule isAbsolute path res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  res write fs readFileSync prefix pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)*/  res write fs readFileSync prefix path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  |
 | autogenerated/TaintedPath/TaintedPath.js:177:13:177:54 | fs.read ... g, '')) | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:177:13:177:54 | fs.read ... g, '')) | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:177:13:177:54 | fs.read ... g, '')) | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:177:13:177:54 | fs.read ... g, '')) | receiverName | res |
 | autogenerated/TaintedPath/TaintedPath.js:177:29:177:53 | path.re ... /g, '') | CalleeFlexibleAccessPath | fs.readFileSync |
 | autogenerated/TaintedPath/TaintedPath.js:177:29:177:53 | path.re ... /g, '') | InputArgumentIndex | 0 |
@@ -5132,7 +6239,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:177:29:177:53 | path.re ... /g, '') | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:177:29:177:53 | path.re ... /g, '') | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path replace /[\\]\\[*,;'"`<>\\\\?\\/]/g  res write fs readFileSync path replace /[abcd]/g  res write fs readFileSync path replace /[./]/g  res write fs readFileSync path replace /[foobar/foobar]/g  res write fs readFileSync path replace /\\//g  res write fs readFileSync path replace /\\.\|\\//g  res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  pathModule isAbsolute path res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  res write fs readFileSync prefix pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)*/  res write fs readFileSync prefix path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  |
 | autogenerated/TaintedPath/TaintedPath.js:177:29:177:53 | path.re ... /g, '') | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:177:29:177:53 | path.re ... /g, '') | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:177:29:177:53 | path.re ... /g, '') | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:177:29:177:53 | path.re ... /g, '') | receiverName | fs |
 | autogenerated/TaintedPath/TaintedPath.js:177:42:177:48 | /[..]/g | CalleeFlexibleAccessPath | path.replace |
 | autogenerated/TaintedPath/TaintedPath.js:177:42:177:48 | /[..]/g | InputArgumentIndex | 0 |
@@ -5141,7 +6248,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:177:42:177:48 | /[..]/g | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:177:42:177:48 | /[..]/g | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path replace /[\\]\\[*,;'"`<>\\\\?\\/]/g  res write fs readFileSync path replace /[abcd]/g  res write fs readFileSync path replace /[./]/g  res write fs readFileSync path replace /[foobar/foobar]/g  res write fs readFileSync path replace /\\//g  res write fs readFileSync path replace /\\.\|\\//g  res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  pathModule isAbsolute path res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  res write fs readFileSync prefix pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)*/  res write fs readFileSync prefix path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  |
 | autogenerated/TaintedPath/TaintedPath.js:177:42:177:48 | /[..]/g | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:177:42:177:48 | /[..]/g | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:177:42:177:48 | /[..]/g | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:177:42:177:48 | /[..]/g | receiverName | path |
 | autogenerated/TaintedPath/TaintedPath.js:177:51:177:52 | '' | CalleeFlexibleAccessPath | path.replace |
 | autogenerated/TaintedPath/TaintedPath.js:177:51:177:52 | '' | InputArgumentIndex | 1 |
@@ -5150,7 +6257,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:177:51:177:52 | '' | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:177:51:177:52 | '' | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path replace /[\\]\\[*,;'"`<>\\\\?\\/]/g  res write fs readFileSync path replace /[abcd]/g  res write fs readFileSync path replace /[./]/g  res write fs readFileSync path replace /[foobar/foobar]/g  res write fs readFileSync path replace /\\//g  res write fs readFileSync path replace /\\.\|\\//g  res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  pathModule isAbsolute path res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  res write fs readFileSync prefix pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)*/  res write fs readFileSync prefix path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  |
 | autogenerated/TaintedPath/TaintedPath.js:177:51:177:52 | '' | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:177:51:177:52 | '' | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:177:51:177:52 | '' | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:177:51:177:52 | '' | receiverName | path |
 | autogenerated/TaintedPath/TaintedPath.js:178:13:178:52 | fs.read ... g, '')) | CalleeFlexibleAccessPath | res.write |
 | autogenerated/TaintedPath/TaintedPath.js:178:13:178:52 | fs.read ... g, '')) | InputArgumentIndex | 0 |
@@ -5158,7 +6265,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:178:13:178:52 | fs.read ... g, '')) | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:178:13:178:52 | fs.read ... g, '')) | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path replace /[\\]\\[*,;'"`<>\\\\?\\/]/g  res write fs readFileSync path replace /[abcd]/g  res write fs readFileSync path replace /[./]/g  res write fs readFileSync path replace /[foobar/foobar]/g  res write fs readFileSync path replace /\\//g  res write fs readFileSync path replace /\\.\|\\//g  res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  pathModule isAbsolute path res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  res write fs readFileSync prefix pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)*/  res write fs readFileSync prefix path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  |
 | autogenerated/TaintedPath/TaintedPath.js:178:13:178:52 | fs.read ... g, '')) | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:178:13:178:52 | fs.read ... g, '')) | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:178:13:178:52 | fs.read ... g, '')) | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:178:13:178:52 | fs.read ... g, '')) | receiverName | res |
 | autogenerated/TaintedPath/TaintedPath.js:178:29:178:51 | path.re ... /g, '') | CalleeFlexibleAccessPath | fs.readFileSync |
 | autogenerated/TaintedPath/TaintedPath.js:178:29:178:51 | path.re ... /g, '') | InputArgumentIndex | 0 |
@@ -5167,7 +6274,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:178:29:178:51 | path.re ... /g, '') | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:178:29:178:51 | path.re ... /g, '') | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path replace /[\\]\\[*,;'"`<>\\\\?\\/]/g  res write fs readFileSync path replace /[abcd]/g  res write fs readFileSync path replace /[./]/g  res write fs readFileSync path replace /[foobar/foobar]/g  res write fs readFileSync path replace /\\//g  res write fs readFileSync path replace /\\.\|\\//g  res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  pathModule isAbsolute path res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  res write fs readFileSync prefix pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)*/  res write fs readFileSync prefix path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  |
 | autogenerated/TaintedPath/TaintedPath.js:178:29:178:51 | path.re ... /g, '') | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:178:29:178:51 | path.re ... /g, '') | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:178:29:178:51 | path.re ... /g, '') | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:178:29:178:51 | path.re ... /g, '') | receiverName | fs |
 | autogenerated/TaintedPath/TaintedPath.js:178:42:178:46 | /\\./g | CalleeFlexibleAccessPath | path.replace |
 | autogenerated/TaintedPath/TaintedPath.js:178:42:178:46 | /\\./g | InputArgumentIndex | 0 |
@@ -5176,7 +6283,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:178:42:178:46 | /\\./g | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:178:42:178:46 | /\\./g | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path replace /[\\]\\[*,;'"`<>\\\\?\\/]/g  res write fs readFileSync path replace /[abcd]/g  res write fs readFileSync path replace /[./]/g  res write fs readFileSync path replace /[foobar/foobar]/g  res write fs readFileSync path replace /\\//g  res write fs readFileSync path replace /\\.\|\\//g  res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  pathModule isAbsolute path res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  res write fs readFileSync prefix pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)*/  res write fs readFileSync prefix path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  |
 | autogenerated/TaintedPath/TaintedPath.js:178:42:178:46 | /\\./g | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:178:42:178:46 | /\\./g | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:178:42:178:46 | /\\./g | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:178:42:178:46 | /\\./g | receiverName | path |
 | autogenerated/TaintedPath/TaintedPath.js:178:49:178:50 | '' | CalleeFlexibleAccessPath | path.replace |
 | autogenerated/TaintedPath/TaintedPath.js:178:49:178:50 | '' | InputArgumentIndex | 1 |
@@ -5185,7 +6292,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:178:49:178:50 | '' | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:178:49:178:50 | '' | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path replace /[\\]\\[*,;'"`<>\\\\?\\/]/g  res write fs readFileSync path replace /[abcd]/g  res write fs readFileSync path replace /[./]/g  res write fs readFileSync path replace /[foobar/foobar]/g  res write fs readFileSync path replace /\\//g  res write fs readFileSync path replace /\\.\|\\//g  res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  pathModule isAbsolute path res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  res write fs readFileSync prefix pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)*/  res write fs readFileSync prefix path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  |
 | autogenerated/TaintedPath/TaintedPath.js:178:49:178:50 | '' | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:178:49:178:50 | '' | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:178:49:178:50 | '' | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:178:49:178:50 | '' | receiverName | path |
 | autogenerated/TaintedPath/TaintedPath.js:179:13:179:58 | fs.read ... g, '')) | CalleeFlexibleAccessPath | res.write |
 | autogenerated/TaintedPath/TaintedPath.js:179:13:179:58 | fs.read ... g, '')) | InputArgumentIndex | 0 |
@@ -5193,7 +6300,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:179:13:179:58 | fs.read ... g, '')) | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:179:13:179:58 | fs.read ... g, '')) | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path replace /[\\]\\[*,;'"`<>\\\\?\\/]/g  res write fs readFileSync path replace /[abcd]/g  res write fs readFileSync path replace /[./]/g  res write fs readFileSync path replace /[foobar/foobar]/g  res write fs readFileSync path replace /\\//g  res write fs readFileSync path replace /\\.\|\\//g  res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  pathModule isAbsolute path res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  res write fs readFileSync prefix pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)*/  res write fs readFileSync prefix path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  |
 | autogenerated/TaintedPath/TaintedPath.js:179:13:179:58 | fs.read ... g, '')) | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:179:13:179:58 | fs.read ... g, '')) | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:179:13:179:58 | fs.read ... g, '')) | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:179:13:179:58 | fs.read ... g, '')) | receiverName | res |
 | autogenerated/TaintedPath/TaintedPath.js:179:29:179:57 | path.re ... /g, '') | CalleeFlexibleAccessPath | fs.readFileSync |
 | autogenerated/TaintedPath/TaintedPath.js:179:29:179:57 | path.re ... /g, '') | InputArgumentIndex | 0 |
@@ -5202,7 +6309,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:179:29:179:57 | path.re ... /g, '') | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:179:29:179:57 | path.re ... /g, '') | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path replace /[\\]\\[*,;'"`<>\\\\?\\/]/g  res write fs readFileSync path replace /[abcd]/g  res write fs readFileSync path replace /[./]/g  res write fs readFileSync path replace /[foobar/foobar]/g  res write fs readFileSync path replace /\\//g  res write fs readFileSync path replace /\\.\|\\//g  res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  pathModule isAbsolute path res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  res write fs readFileSync prefix pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)*/  res write fs readFileSync prefix path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  |
 | autogenerated/TaintedPath/TaintedPath.js:179:29:179:57 | path.re ... /g, '') | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:179:29:179:57 | path.re ... /g, '') | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:179:29:179:57 | path.re ... /g, '') | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:179:29:179:57 | path.re ... /g, '') | receiverName | fs |
 | autogenerated/TaintedPath/TaintedPath.js:179:42:179:52 | /\\.\\.\|BLA/g | CalleeFlexibleAccessPath | path.replace |
 | autogenerated/TaintedPath/TaintedPath.js:179:42:179:52 | /\\.\\.\|BLA/g | InputArgumentIndex | 0 |
@@ -5211,7 +6318,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:179:42:179:52 | /\\.\\.\|BLA/g | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:179:42:179:52 | /\\.\\.\|BLA/g | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path replace /[\\]\\[*,;'"`<>\\\\?\\/]/g  res write fs readFileSync path replace /[abcd]/g  res write fs readFileSync path replace /[./]/g  res write fs readFileSync path replace /[foobar/foobar]/g  res write fs readFileSync path replace /\\//g  res write fs readFileSync path replace /\\.\|\\//g  res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  pathModule isAbsolute path res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  res write fs readFileSync prefix pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)*/  res write fs readFileSync prefix path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  |
 | autogenerated/TaintedPath/TaintedPath.js:179:42:179:52 | /\\.\\.\|BLA/g | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:179:42:179:52 | /\\.\\.\|BLA/g | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:179:42:179:52 | /\\.\\.\|BLA/g | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:179:42:179:52 | /\\.\\.\|BLA/g | receiverName | path |
 | autogenerated/TaintedPath/TaintedPath.js:179:55:179:56 | '' | CalleeFlexibleAccessPath | path.replace |
 | autogenerated/TaintedPath/TaintedPath.js:179:55:179:56 | '' | InputArgumentIndex | 1 |
@@ -5220,7 +6327,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:179:55:179:56 | '' | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:179:55:179:56 | '' | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path replace /[\\]\\[*,;'"`<>\\\\?\\/]/g  res write fs readFileSync path replace /[abcd]/g  res write fs readFileSync path replace /[./]/g  res write fs readFileSync path replace /[foobar/foobar]/g  res write fs readFileSync path replace /\\//g  res write fs readFileSync path replace /\\.\|\\//g  res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  pathModule isAbsolute path res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  res write fs readFileSync prefix pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)*/  res write fs readFileSync prefix path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  |
 | autogenerated/TaintedPath/TaintedPath.js:179:55:179:56 | '' | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:179:55:179:56 | '' | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:179:55:179:56 | '' | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:179:55:179:56 | '' | receiverName | path |
 | autogenerated/TaintedPath/TaintedPath.js:182:15:182:55 | fs.read ... g, '')) | CalleeFlexibleAccessPath | res.write |
 | autogenerated/TaintedPath/TaintedPath.js:182:15:182:55 | fs.read ... g, '')) | InputArgumentIndex | 0 |
@@ -5228,7 +6335,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:182:15:182:55 | fs.read ... g, '')) | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:182:15:182:55 | fs.read ... g, '')) | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path replace /[\\]\\[*,;'"`<>\\\\?\\/]/g  res write fs readFileSync path replace /[abcd]/g  res write fs readFileSync path replace /[./]/g  res write fs readFileSync path replace /[foobar/foobar]/g  res write fs readFileSync path replace /\\//g  res write fs readFileSync path replace /\\.\|\\//g  res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  pathModule isAbsolute path res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  res write fs readFileSync prefix pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)*/  res write fs readFileSync prefix path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  |
 | autogenerated/TaintedPath/TaintedPath.js:182:15:182:55 | fs.read ... g, '')) | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:182:15:182:55 | fs.read ... g, '')) | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:182:15:182:55 | fs.read ... g, '')) | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:182:15:182:55 | fs.read ... g, '')) | receiverName | res |
 | autogenerated/TaintedPath/TaintedPath.js:182:31:182:54 | path.re ... /g, '') | CalleeFlexibleAccessPath | fs.readFileSync |
 | autogenerated/TaintedPath/TaintedPath.js:182:31:182:54 | path.re ... /g, '') | InputArgumentIndex | 0 |
@@ -5237,7 +6344,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:182:31:182:54 | path.re ... /g, '') | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:182:31:182:54 | path.re ... /g, '') | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path replace /[\\]\\[*,;'"`<>\\\\?\\/]/g  res write fs readFileSync path replace /[abcd]/g  res write fs readFileSync path replace /[./]/g  res write fs readFileSync path replace /[foobar/foobar]/g  res write fs readFileSync path replace /\\//g  res write fs readFileSync path replace /\\.\|\\//g  res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  pathModule isAbsolute path res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  res write fs readFileSync prefix pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)*/  res write fs readFileSync prefix path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  |
 | autogenerated/TaintedPath/TaintedPath.js:182:31:182:54 | path.re ... /g, '') | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:182:31:182:54 | path.re ... /g, '') | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:182:31:182:54 | path.re ... /g, '') | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:182:31:182:54 | path.re ... /g, '') | receiverName | fs |
 | autogenerated/TaintedPath/TaintedPath.js:182:44:182:49 | /[.]/g | CalleeFlexibleAccessPath | path.replace |
 | autogenerated/TaintedPath/TaintedPath.js:182:44:182:49 | /[.]/g | InputArgumentIndex | 0 |
@@ -5246,7 +6353,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:182:44:182:49 | /[.]/g | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:182:44:182:49 | /[.]/g | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path replace /[\\]\\[*,;'"`<>\\\\?\\/]/g  res write fs readFileSync path replace /[abcd]/g  res write fs readFileSync path replace /[./]/g  res write fs readFileSync path replace /[foobar/foobar]/g  res write fs readFileSync path replace /\\//g  res write fs readFileSync path replace /\\.\|\\//g  res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  pathModule isAbsolute path res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  res write fs readFileSync prefix pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)*/  res write fs readFileSync prefix path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  |
 | autogenerated/TaintedPath/TaintedPath.js:182:44:182:49 | /[.]/g | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:182:44:182:49 | /[.]/g | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:182:44:182:49 | /[.]/g | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:182:44:182:49 | /[.]/g | receiverName | path |
 | autogenerated/TaintedPath/TaintedPath.js:182:52:182:53 | '' | CalleeFlexibleAccessPath | path.replace |
 | autogenerated/TaintedPath/TaintedPath.js:182:52:182:53 | '' | InputArgumentIndex | 1 |
@@ -5255,7 +6362,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:182:52:182:53 | '' | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:182:52:182:53 | '' | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path replace /[\\]\\[*,;'"`<>\\\\?\\/]/g  res write fs readFileSync path replace /[abcd]/g  res write fs readFileSync path replace /[./]/g  res write fs readFileSync path replace /[foobar/foobar]/g  res write fs readFileSync path replace /\\//g  res write fs readFileSync path replace /\\.\|\\//g  res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  pathModule isAbsolute path res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  res write fs readFileSync prefix pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)*/  res write fs readFileSync prefix path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  |
 | autogenerated/TaintedPath/TaintedPath.js:182:52:182:53 | '' | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:182:52:182:53 | '' | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:182:52:182:53 | '' | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:182:52:182:53 | '' | receiverName | path |
 | autogenerated/TaintedPath/TaintedPath.js:183:14:183:55 | fs.read ... g, '')) | CalleeFlexibleAccessPath | res.write |
 | autogenerated/TaintedPath/TaintedPath.js:183:14:183:55 | fs.read ... g, '')) | InputArgumentIndex | 0 |
@@ -5263,7 +6370,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:183:14:183:55 | fs.read ... g, '')) | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:183:14:183:55 | fs.read ... g, '')) | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path replace /[\\]\\[*,;'"`<>\\\\?\\/]/g  res write fs readFileSync path replace /[abcd]/g  res write fs readFileSync path replace /[./]/g  res write fs readFileSync path replace /[foobar/foobar]/g  res write fs readFileSync path replace /\\//g  res write fs readFileSync path replace /\\.\|\\//g  res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  pathModule isAbsolute path res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  res write fs readFileSync prefix pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)*/  res write fs readFileSync prefix path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  |
 | autogenerated/TaintedPath/TaintedPath.js:183:14:183:55 | fs.read ... g, '')) | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:183:14:183:55 | fs.read ... g, '')) | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:183:14:183:55 | fs.read ... g, '')) | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:183:14:183:55 | fs.read ... g, '')) | receiverName | res |
 | autogenerated/TaintedPath/TaintedPath.js:183:30:183:54 | path.re ... /g, '') | CalleeFlexibleAccessPath | fs.readFileSync |
 | autogenerated/TaintedPath/TaintedPath.js:183:30:183:54 | path.re ... /g, '') | InputArgumentIndex | 0 |
@@ -5272,7 +6379,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:183:30:183:54 | path.re ... /g, '') | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:183:30:183:54 | path.re ... /g, '') | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path replace /[\\]\\[*,;'"`<>\\\\?\\/]/g  res write fs readFileSync path replace /[abcd]/g  res write fs readFileSync path replace /[./]/g  res write fs readFileSync path replace /[foobar/foobar]/g  res write fs readFileSync path replace /\\//g  res write fs readFileSync path replace /\\.\|\\//g  res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  pathModule isAbsolute path res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  res write fs readFileSync prefix pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)*/  res write fs readFileSync prefix path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  |
 | autogenerated/TaintedPath/TaintedPath.js:183:30:183:54 | path.re ... /g, '') | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:183:30:183:54 | path.re ... /g, '') | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:183:30:183:54 | path.re ... /g, '') | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:183:30:183:54 | path.re ... /g, '') | receiverName | fs |
 | autogenerated/TaintedPath/TaintedPath.js:183:43:183:49 | /[..]/g | CalleeFlexibleAccessPath | path.replace |
 | autogenerated/TaintedPath/TaintedPath.js:183:43:183:49 | /[..]/g | InputArgumentIndex | 0 |
@@ -5281,7 +6388,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:183:43:183:49 | /[..]/g | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:183:43:183:49 | /[..]/g | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path replace /[\\]\\[*,;'"`<>\\\\?\\/]/g  res write fs readFileSync path replace /[abcd]/g  res write fs readFileSync path replace /[./]/g  res write fs readFileSync path replace /[foobar/foobar]/g  res write fs readFileSync path replace /\\//g  res write fs readFileSync path replace /\\.\|\\//g  res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  pathModule isAbsolute path res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  res write fs readFileSync prefix pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)*/  res write fs readFileSync prefix path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  |
 | autogenerated/TaintedPath/TaintedPath.js:183:43:183:49 | /[..]/g | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:183:43:183:49 | /[..]/g | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:183:43:183:49 | /[..]/g | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:183:43:183:49 | /[..]/g | receiverName | path |
 | autogenerated/TaintedPath/TaintedPath.js:183:52:183:53 | '' | CalleeFlexibleAccessPath | path.replace |
 | autogenerated/TaintedPath/TaintedPath.js:183:52:183:53 | '' | InputArgumentIndex | 1 |
@@ -5290,7 +6397,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:183:52:183:53 | '' | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:183:52:183:53 | '' | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path replace /[\\]\\[*,;'"`<>\\\\?\\/]/g  res write fs readFileSync path replace /[abcd]/g  res write fs readFileSync path replace /[./]/g  res write fs readFileSync path replace /[foobar/foobar]/g  res write fs readFileSync path replace /\\//g  res write fs readFileSync path replace /\\.\|\\//g  res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  pathModule isAbsolute path res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  res write fs readFileSync prefix pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)*/  res write fs readFileSync prefix path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  |
 | autogenerated/TaintedPath/TaintedPath.js:183:52:183:53 | '' | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:183:52:183:53 | '' | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:183:52:183:53 | '' | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:183:52:183:53 | '' | receiverName | path |
 | autogenerated/TaintedPath/TaintedPath.js:184:15:184:54 | fs.read ... g, '')) | CalleeFlexibleAccessPath | res.write |
 | autogenerated/TaintedPath/TaintedPath.js:184:15:184:54 | fs.read ... g, '')) | InputArgumentIndex | 0 |
@@ -5298,7 +6405,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:184:15:184:54 | fs.read ... g, '')) | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:184:15:184:54 | fs.read ... g, '')) | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path replace /[\\]\\[*,;'"`<>\\\\?\\/]/g  res write fs readFileSync path replace /[abcd]/g  res write fs readFileSync path replace /[./]/g  res write fs readFileSync path replace /[foobar/foobar]/g  res write fs readFileSync path replace /\\//g  res write fs readFileSync path replace /\\.\|\\//g  res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  pathModule isAbsolute path res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  res write fs readFileSync prefix pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)*/  res write fs readFileSync prefix path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  |
 | autogenerated/TaintedPath/TaintedPath.js:184:15:184:54 | fs.read ... g, '')) | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:184:15:184:54 | fs.read ... g, '')) | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:184:15:184:54 | fs.read ... g, '')) | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:184:15:184:54 | fs.read ... g, '')) | receiverName | res |
 | autogenerated/TaintedPath/TaintedPath.js:184:31:184:53 | path.re ... /g, '') | CalleeFlexibleAccessPath | fs.readFileSync |
 | autogenerated/TaintedPath/TaintedPath.js:184:31:184:53 | path.re ... /g, '') | InputArgumentIndex | 0 |
@@ -5307,7 +6414,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:184:31:184:53 | path.re ... /g, '') | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:184:31:184:53 | path.re ... /g, '') | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path replace /[\\]\\[*,;'"`<>\\\\?\\/]/g  res write fs readFileSync path replace /[abcd]/g  res write fs readFileSync path replace /[./]/g  res write fs readFileSync path replace /[foobar/foobar]/g  res write fs readFileSync path replace /\\//g  res write fs readFileSync path replace /\\.\|\\//g  res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  pathModule isAbsolute path res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  res write fs readFileSync prefix pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)*/  res write fs readFileSync prefix path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  |
 | autogenerated/TaintedPath/TaintedPath.js:184:31:184:53 | path.re ... /g, '') | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:184:31:184:53 | path.re ... /g, '') | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:184:31:184:53 | path.re ... /g, '') | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:184:31:184:53 | path.re ... /g, '') | receiverName | fs |
 | autogenerated/TaintedPath/TaintedPath.js:184:44:184:48 | /\\./g | CalleeFlexibleAccessPath | path.replace |
 | autogenerated/TaintedPath/TaintedPath.js:184:44:184:48 | /\\./g | InputArgumentIndex | 0 |
@@ -5316,7 +6423,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:184:44:184:48 | /\\./g | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:184:44:184:48 | /\\./g | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path replace /[\\]\\[*,;'"`<>\\\\?\\/]/g  res write fs readFileSync path replace /[abcd]/g  res write fs readFileSync path replace /[./]/g  res write fs readFileSync path replace /[foobar/foobar]/g  res write fs readFileSync path replace /\\//g  res write fs readFileSync path replace /\\.\|\\//g  res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  pathModule isAbsolute path res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  res write fs readFileSync prefix pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)*/  res write fs readFileSync prefix path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  |
 | autogenerated/TaintedPath/TaintedPath.js:184:44:184:48 | /\\./g | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:184:44:184:48 | /\\./g | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:184:44:184:48 | /\\./g | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:184:44:184:48 | /\\./g | receiverName | path |
 | autogenerated/TaintedPath/TaintedPath.js:184:51:184:52 | '' | CalleeFlexibleAccessPath | path.replace |
 | autogenerated/TaintedPath/TaintedPath.js:184:51:184:52 | '' | InputArgumentIndex | 1 |
@@ -5325,7 +6432,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:184:51:184:52 | '' | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:184:51:184:52 | '' | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path replace /[\\]\\[*,;'"`<>\\\\?\\/]/g  res write fs readFileSync path replace /[abcd]/g  res write fs readFileSync path replace /[./]/g  res write fs readFileSync path replace /[foobar/foobar]/g  res write fs readFileSync path replace /\\//g  res write fs readFileSync path replace /\\.\|\\//g  res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  pathModule isAbsolute path res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  res write fs readFileSync prefix pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)*/  res write fs readFileSync prefix path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  |
 | autogenerated/TaintedPath/TaintedPath.js:184:51:184:52 | '' | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:184:51:184:52 | '' | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:184:51:184:52 | '' | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:184:51:184:52 | '' | receiverName | path |
 | autogenerated/TaintedPath/TaintedPath.js:185:14:185:59 | fs.read ... g, '')) | CalleeFlexibleAccessPath | res.write |
 | autogenerated/TaintedPath/TaintedPath.js:185:14:185:59 | fs.read ... g, '')) | InputArgumentIndex | 0 |
@@ -5333,7 +6440,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:185:14:185:59 | fs.read ... g, '')) | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:185:14:185:59 | fs.read ... g, '')) | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path replace /[\\]\\[*,;'"`<>\\\\?\\/]/g  res write fs readFileSync path replace /[abcd]/g  res write fs readFileSync path replace /[./]/g  res write fs readFileSync path replace /[foobar/foobar]/g  res write fs readFileSync path replace /\\//g  res write fs readFileSync path replace /\\.\|\\//g  res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  pathModule isAbsolute path res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  res write fs readFileSync prefix pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)*/  res write fs readFileSync prefix path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  |
 | autogenerated/TaintedPath/TaintedPath.js:185:14:185:59 | fs.read ... g, '')) | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:185:14:185:59 | fs.read ... g, '')) | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:185:14:185:59 | fs.read ... g, '')) | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:185:14:185:59 | fs.read ... g, '')) | receiverName | res |
 | autogenerated/TaintedPath/TaintedPath.js:185:30:185:58 | path.re ... /g, '') | CalleeFlexibleAccessPath | fs.readFileSync |
 | autogenerated/TaintedPath/TaintedPath.js:185:30:185:58 | path.re ... /g, '') | InputArgumentIndex | 0 |
@@ -5342,7 +6449,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:185:30:185:58 | path.re ... /g, '') | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:185:30:185:58 | path.re ... /g, '') | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path replace /[\\]\\[*,;'"`<>\\\\?\\/]/g  res write fs readFileSync path replace /[abcd]/g  res write fs readFileSync path replace /[./]/g  res write fs readFileSync path replace /[foobar/foobar]/g  res write fs readFileSync path replace /\\//g  res write fs readFileSync path replace /\\.\|\\//g  res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  pathModule isAbsolute path res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  res write fs readFileSync prefix pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)*/  res write fs readFileSync prefix path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  |
 | autogenerated/TaintedPath/TaintedPath.js:185:30:185:58 | path.re ... /g, '') | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:185:30:185:58 | path.re ... /g, '') | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:185:30:185:58 | path.re ... /g, '') | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:185:30:185:58 | path.re ... /g, '') | receiverName | fs |
 | autogenerated/TaintedPath/TaintedPath.js:185:43:185:53 | /\\.\\.\|BLA/g | CalleeFlexibleAccessPath | path.replace |
 | autogenerated/TaintedPath/TaintedPath.js:185:43:185:53 | /\\.\\.\|BLA/g | InputArgumentIndex | 0 |
@@ -5351,7 +6458,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:185:43:185:53 | /\\.\\.\|BLA/g | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:185:43:185:53 | /\\.\\.\|BLA/g | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path replace /[\\]\\[*,;'"`<>\\\\?\\/]/g  res write fs readFileSync path replace /[abcd]/g  res write fs readFileSync path replace /[./]/g  res write fs readFileSync path replace /[foobar/foobar]/g  res write fs readFileSync path replace /\\//g  res write fs readFileSync path replace /\\.\|\\//g  res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  pathModule isAbsolute path res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  res write fs readFileSync prefix pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)*/  res write fs readFileSync prefix path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  |
 | autogenerated/TaintedPath/TaintedPath.js:185:43:185:53 | /\\.\\.\|BLA/g | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:185:43:185:53 | /\\.\\.\|BLA/g | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:185:43:185:53 | /\\.\\.\|BLA/g | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:185:43:185:53 | /\\.\\.\|BLA/g | receiverName | path |
 | autogenerated/TaintedPath/TaintedPath.js:185:56:185:57 | '' | CalleeFlexibleAccessPath | path.replace |
 | autogenerated/TaintedPath/TaintedPath.js:185:56:185:57 | '' | InputArgumentIndex | 1 |
@@ -5360,7 +6467,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:185:56:185:57 | '' | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:185:56:185:57 | '' | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path replace /[\\]\\[*,;'"`<>\\\\?\\/]/g  res write fs readFileSync path replace /[abcd]/g  res write fs readFileSync path replace /[./]/g  res write fs readFileSync path replace /[foobar/foobar]/g  res write fs readFileSync path replace /\\//g  res write fs readFileSync path replace /\\.\|\\//g  res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  pathModule isAbsolute path res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  res write fs readFileSync prefix pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)*/  res write fs readFileSync prefix path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  |
 | autogenerated/TaintedPath/TaintedPath.js:185:56:185:57 | '' | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:185:56:185:57 | '' | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:185:56:185:57 | '' | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:185:56:185:57 | '' | receiverName | path |
 | autogenerated/TaintedPath/TaintedPath.js:189:13:189:96 | fs.read ... /, '')) | CalleeFlexibleAccessPath | res.write |
 | autogenerated/TaintedPath/TaintedPath.js:189:13:189:96 | fs.read ... /, '')) | InputArgumentIndex | 0 |
@@ -5368,7 +6475,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:189:13:189:96 | fs.read ... /, '')) | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:189:13:189:96 | fs.read ... /, '')) | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path replace /[\\]\\[*,;'"`<>\\\\?\\/]/g  res write fs readFileSync path replace /[abcd]/g  res write fs readFileSync path replace /[./]/g  res write fs readFileSync path replace /[foobar/foobar]/g  res write fs readFileSync path replace /\\//g  res write fs readFileSync path replace /\\.\|\\//g  res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  pathModule isAbsolute path res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  res write fs readFileSync prefix pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)*/  res write fs readFileSync prefix path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  |
 | autogenerated/TaintedPath/TaintedPath.js:189:13:189:96 | fs.read ... /, '')) | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:189:13:189:96 | fs.read ... /, '')) | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:189:13:189:96 | fs.read ... /, '')) | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:189:13:189:96 | fs.read ... /, '')) | receiverName | res |
 | autogenerated/TaintedPath/TaintedPath.js:189:29:189:95 | "prefix ... +/, '') | CalleeFlexibleAccessPath | fs.readFileSync |
 | autogenerated/TaintedPath/TaintedPath.js:189:29:189:95 | "prefix ... +/, '') | InputArgumentIndex | 0 |
@@ -5377,7 +6484,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:189:29:189:95 | "prefix ... +/, '') | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:189:29:189:95 | "prefix ... +/, '') | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path replace /[\\]\\[*,;'"`<>\\\\?\\/]/g  res write fs readFileSync path replace /[abcd]/g  res write fs readFileSync path replace /[./]/g  res write fs readFileSync path replace /[foobar/foobar]/g  res write fs readFileSync path replace /\\//g  res write fs readFileSync path replace /\\.\|\\//g  res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  pathModule isAbsolute path res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  res write fs readFileSync prefix pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)*/  res write fs readFileSync prefix path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  |
 | autogenerated/TaintedPath/TaintedPath.js:189:29:189:95 | "prefix ... +/, '') | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:189:29:189:95 | "prefix ... +/, '') | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:189:29:189:95 | "prefix ... +/, '') | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:189:29:189:95 | "prefix ... +/, '') | receiverName | fs |
 | autogenerated/TaintedPath/TaintedPath.js:189:61:189:64 | path | CalleeFlexibleAccessPath | pathModule.normalize |
 | autogenerated/TaintedPath/TaintedPath.js:189:61:189:64 | path | InputArgumentIndex | 0 |
@@ -5386,7 +6493,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:189:61:189:64 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:189:61:189:64 | path | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path replace /[\\]\\[*,;'"`<>\\\\?\\/]/g  res write fs readFileSync path replace /[abcd]/g  res write fs readFileSync path replace /[./]/g  res write fs readFileSync path replace /[foobar/foobar]/g  res write fs readFileSync path replace /\\//g  res write fs readFileSync path replace /\\.\|\\//g  res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  pathModule isAbsolute path res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  res write fs readFileSync prefix pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)*/  res write fs readFileSync prefix path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  |
 | autogenerated/TaintedPath/TaintedPath.js:189:61:189:64 | path | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:189:61:189:64 | path | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:189:61:189:64 | path | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:189:61:189:64 | path | receiverName | pathModule |
 | autogenerated/TaintedPath/TaintedPath.js:189:75:189:90 | /^(\\.\\.[\\/\\\\])+/ | CalleeFlexibleAccessPath | pathModule.normalize().replace |
 | autogenerated/TaintedPath/TaintedPath.js:189:75:189:90 | /^(\\.\\.[\\/\\\\])+/ | InputArgumentIndex | 0 |
@@ -5395,7 +6502,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:189:75:189:90 | /^(\\.\\.[\\/\\\\])+/ | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:189:75:189:90 | /^(\\.\\.[\\/\\\\])+/ | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path replace /[\\]\\[*,;'"`<>\\\\?\\/]/g  res write fs readFileSync path replace /[abcd]/g  res write fs readFileSync path replace /[./]/g  res write fs readFileSync path replace /[foobar/foobar]/g  res write fs readFileSync path replace /\\//g  res write fs readFileSync path replace /\\.\|\\//g  res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  pathModule isAbsolute path res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  res write fs readFileSync prefix pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)*/  res write fs readFileSync prefix path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  |
 | autogenerated/TaintedPath/TaintedPath.js:189:75:189:90 | /^(\\.\\.[\\/\\\\])+/ | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:189:75:189:90 | /^(\\.\\.[\\/\\\\])+/ | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:189:75:189:90 | /^(\\.\\.[\\/\\\\])+/ | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:189:93:189:94 | '' | CalleeFlexibleAccessPath | pathModule.normalize().replace |
 | autogenerated/TaintedPath/TaintedPath.js:189:93:189:94 | '' | InputArgumentIndex | 1 |
 | autogenerated/TaintedPath/TaintedPath.js:189:93:189:94 | '' | calleeImports | path |
@@ -5403,14 +6510,14 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:189:93:189:94 | '' | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:189:93:189:94 | '' | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path replace /[\\]\\[*,;'"`<>\\\\?\\/]/g  res write fs readFileSync path replace /[abcd]/g  res write fs readFileSync path replace /[./]/g  res write fs readFileSync path replace /[foobar/foobar]/g  res write fs readFileSync path replace /\\//g  res write fs readFileSync path replace /\\.\|\\//g  res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  pathModule isAbsolute path res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  res write fs readFileSync prefix pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)*/  res write fs readFileSync prefix path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  |
 | autogenerated/TaintedPath/TaintedPath.js:189:93:189:94 | '' | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:189:93:189:94 | '' | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:189:93:189:94 | '' | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:190:13:190:95 | fs.read ... /, '')) | CalleeFlexibleAccessPath | res.write |
 | autogenerated/TaintedPath/TaintedPath.js:190:13:190:95 | fs.read ... /, '')) | InputArgumentIndex | 0 |
 | autogenerated/TaintedPath/TaintedPath.js:190:13:190:95 | fs.read ... /, '')) | contextFunctionInterfaces | views_local(req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:190:13:190:95 | fs.read ... /, '')) | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:190:13:190:95 | fs.read ... /, '')) | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path replace /[\\]\\[*,;'"`<>\\\\?\\/]/g  res write fs readFileSync path replace /[abcd]/g  res write fs readFileSync path replace /[./]/g  res write fs readFileSync path replace /[foobar/foobar]/g  res write fs readFileSync path replace /\\//g  res write fs readFileSync path replace /\\.\|\\//g  res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  pathModule isAbsolute path res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  res write fs readFileSync prefix pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)*/  res write fs readFileSync prefix path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  |
 | autogenerated/TaintedPath/TaintedPath.js:190:13:190:95 | fs.read ... /, '')) | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:190:13:190:95 | fs.read ... /, '')) | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:190:13:190:95 | fs.read ... /, '')) | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:190:13:190:95 | fs.read ... /, '')) | receiverName | res |
 | autogenerated/TaintedPath/TaintedPath.js:190:29:190:94 | "prefix ... +/, '') | CalleeFlexibleAccessPath | fs.readFileSync |
 | autogenerated/TaintedPath/TaintedPath.js:190:29:190:94 | "prefix ... +/, '') | InputArgumentIndex | 0 |
@@ -5419,7 +6526,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:190:29:190:94 | "prefix ... +/, '') | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:190:29:190:94 | "prefix ... +/, '') | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path replace /[\\]\\[*,;'"`<>\\\\?\\/]/g  res write fs readFileSync path replace /[abcd]/g  res write fs readFileSync path replace /[./]/g  res write fs readFileSync path replace /[foobar/foobar]/g  res write fs readFileSync path replace /\\//g  res write fs readFileSync path replace /\\.\|\\//g  res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  pathModule isAbsolute path res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  res write fs readFileSync prefix pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)*/  res write fs readFileSync prefix path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  |
 | autogenerated/TaintedPath/TaintedPath.js:190:29:190:94 | "prefix ... +/, '') | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:190:29:190:94 | "prefix ... +/, '') | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:190:29:190:94 | "prefix ... +/, '') | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:190:29:190:94 | "prefix ... +/, '') | receiverName | fs |
 | autogenerated/TaintedPath/TaintedPath.js:190:61:190:64 | path | CalleeFlexibleAccessPath | pathModule.normalize |
 | autogenerated/TaintedPath/TaintedPath.js:190:61:190:64 | path | InputArgumentIndex | 0 |
@@ -5428,7 +6535,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:190:61:190:64 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:190:61:190:64 | path | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path replace /[\\]\\[*,;'"`<>\\\\?\\/]/g  res write fs readFileSync path replace /[abcd]/g  res write fs readFileSync path replace /[./]/g  res write fs readFileSync path replace /[foobar/foobar]/g  res write fs readFileSync path replace /\\//g  res write fs readFileSync path replace /\\.\|\\//g  res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  pathModule isAbsolute path res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  res write fs readFileSync prefix pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)*/  res write fs readFileSync prefix path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  |
 | autogenerated/TaintedPath/TaintedPath.js:190:61:190:64 | path | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:190:61:190:64 | path | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:190:61:190:64 | path | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:190:61:190:64 | path | receiverName | pathModule |
 | autogenerated/TaintedPath/TaintedPath.js:190:75:190:89 | /(\\.\\.[\\/\\\\])+/ | CalleeFlexibleAccessPath | pathModule.normalize().replace |
 | autogenerated/TaintedPath/TaintedPath.js:190:75:190:89 | /(\\.\\.[\\/\\\\])+/ | InputArgumentIndex | 0 |
@@ -5437,7 +6544,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:190:75:190:89 | /(\\.\\.[\\/\\\\])+/ | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:190:75:190:89 | /(\\.\\.[\\/\\\\])+/ | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path replace /[\\]\\[*,;'"`<>\\\\?\\/]/g  res write fs readFileSync path replace /[abcd]/g  res write fs readFileSync path replace /[./]/g  res write fs readFileSync path replace /[foobar/foobar]/g  res write fs readFileSync path replace /\\//g  res write fs readFileSync path replace /\\.\|\\//g  res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  pathModule isAbsolute path res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  res write fs readFileSync prefix pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)*/  res write fs readFileSync prefix path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  |
 | autogenerated/TaintedPath/TaintedPath.js:190:75:190:89 | /(\\.\\.[\\/\\\\])+/ | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:190:75:190:89 | /(\\.\\.[\\/\\\\])+/ | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:190:75:190:89 | /(\\.\\.[\\/\\\\])+/ | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:190:92:190:93 | '' | CalleeFlexibleAccessPath | pathModule.normalize().replace |
 | autogenerated/TaintedPath/TaintedPath.js:190:92:190:93 | '' | InputArgumentIndex | 1 |
 | autogenerated/TaintedPath/TaintedPath.js:190:92:190:93 | '' | calleeImports | path |
@@ -5445,14 +6552,14 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:190:92:190:93 | '' | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:190:92:190:93 | '' | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path replace /[\\]\\[*,;'"`<>\\\\?\\/]/g  res write fs readFileSync path replace /[abcd]/g  res write fs readFileSync path replace /[./]/g  res write fs readFileSync path replace /[foobar/foobar]/g  res write fs readFileSync path replace /\\//g  res write fs readFileSync path replace /\\.\|\\//g  res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  pathModule isAbsolute path res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  res write fs readFileSync prefix pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)*/  res write fs readFileSync prefix path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  |
 | autogenerated/TaintedPath/TaintedPath.js:190:92:190:93 | '' | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:190:92:190:93 | '' | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:190:92:190:93 | '' | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:191:13:191:91 | fs.read ... /, '')) | CalleeFlexibleAccessPath | res.write |
 | autogenerated/TaintedPath/TaintedPath.js:191:13:191:91 | fs.read ... /, '')) | InputArgumentIndex | 0 |
 | autogenerated/TaintedPath/TaintedPath.js:191:13:191:91 | fs.read ... /, '')) | contextFunctionInterfaces | views_local(req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:191:13:191:91 | fs.read ... /, '')) | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:191:13:191:91 | fs.read ... /, '')) | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path replace /[\\]\\[*,;'"`<>\\\\?\\/]/g  res write fs readFileSync path replace /[abcd]/g  res write fs readFileSync path replace /[./]/g  res write fs readFileSync path replace /[foobar/foobar]/g  res write fs readFileSync path replace /\\//g  res write fs readFileSync path replace /\\.\|\\//g  res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  pathModule isAbsolute path res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  res write fs readFileSync prefix pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)*/  res write fs readFileSync prefix path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  |
 | autogenerated/TaintedPath/TaintedPath.js:191:13:191:91 | fs.read ... /, '')) | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:191:13:191:91 | fs.read ... /, '')) | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:191:13:191:91 | fs.read ... /, '')) | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:191:13:191:91 | fs.read ... /, '')) | receiverName | res |
 | autogenerated/TaintedPath/TaintedPath.js:191:29:191:90 | "prefix ... +/, '') | CalleeFlexibleAccessPath | fs.readFileSync |
 | autogenerated/TaintedPath/TaintedPath.js:191:29:191:90 | "prefix ... +/, '') | InputArgumentIndex | 0 |
@@ -5461,7 +6568,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:191:29:191:90 | "prefix ... +/, '') | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:191:29:191:90 | "prefix ... +/, '') | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path replace /[\\]\\[*,;'"`<>\\\\?\\/]/g  res write fs readFileSync path replace /[abcd]/g  res write fs readFileSync path replace /[./]/g  res write fs readFileSync path replace /[foobar/foobar]/g  res write fs readFileSync path replace /\\//g  res write fs readFileSync path replace /\\.\|\\//g  res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  pathModule isAbsolute path res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  res write fs readFileSync prefix pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)*/  res write fs readFileSync prefix path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  |
 | autogenerated/TaintedPath/TaintedPath.js:191:29:191:90 | "prefix ... +/, '') | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:191:29:191:90 | "prefix ... +/, '') | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:191:29:191:90 | "prefix ... +/, '') | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:191:29:191:90 | "prefix ... +/, '') | receiverName | fs |
 | autogenerated/TaintedPath/TaintedPath.js:191:61:191:64 | path | CalleeFlexibleAccessPath | pathModule.normalize |
 | autogenerated/TaintedPath/TaintedPath.js:191:61:191:64 | path | InputArgumentIndex | 0 |
@@ -5470,7 +6577,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:191:61:191:64 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:191:61:191:64 | path | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path replace /[\\]\\[*,;'"`<>\\\\?\\/]/g  res write fs readFileSync path replace /[abcd]/g  res write fs readFileSync path replace /[./]/g  res write fs readFileSync path replace /[foobar/foobar]/g  res write fs readFileSync path replace /\\//g  res write fs readFileSync path replace /\\.\|\\//g  res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  pathModule isAbsolute path res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  res write fs readFileSync prefix pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)*/  res write fs readFileSync prefix path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  |
 | autogenerated/TaintedPath/TaintedPath.js:191:61:191:64 | path | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:191:61:191:64 | path | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:191:61:191:64 | path | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:191:61:191:64 | path | receiverName | pathModule |
 | autogenerated/TaintedPath/TaintedPath.js:191:75:191:85 | /(\\.\\.\\/)+/ | CalleeFlexibleAccessPath | pathModule.normalize().replace |
 | autogenerated/TaintedPath/TaintedPath.js:191:75:191:85 | /(\\.\\.\\/)+/ | InputArgumentIndex | 0 |
@@ -5479,7 +6586,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:191:75:191:85 | /(\\.\\.\\/)+/ | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:191:75:191:85 | /(\\.\\.\\/)+/ | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path replace /[\\]\\[*,;'"`<>\\\\?\\/]/g  res write fs readFileSync path replace /[abcd]/g  res write fs readFileSync path replace /[./]/g  res write fs readFileSync path replace /[foobar/foobar]/g  res write fs readFileSync path replace /\\//g  res write fs readFileSync path replace /\\.\|\\//g  res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  pathModule isAbsolute path res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  res write fs readFileSync prefix pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)*/  res write fs readFileSync prefix path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  |
 | autogenerated/TaintedPath/TaintedPath.js:191:75:191:85 | /(\\.\\.\\/)+/ | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:191:75:191:85 | /(\\.\\.\\/)+/ | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:191:75:191:85 | /(\\.\\.\\/)+/ | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:191:88:191:89 | '' | CalleeFlexibleAccessPath | pathModule.normalize().replace |
 | autogenerated/TaintedPath/TaintedPath.js:191:88:191:89 | '' | InputArgumentIndex | 1 |
 | autogenerated/TaintedPath/TaintedPath.js:191:88:191:89 | '' | calleeImports | path |
@@ -5487,14 +6594,14 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:191:88:191:89 | '' | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:191:88:191:89 | '' | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path replace /[\\]\\[*,;'"`<>\\\\?\\/]/g  res write fs readFileSync path replace /[abcd]/g  res write fs readFileSync path replace /[./]/g  res write fs readFileSync path replace /[foobar/foobar]/g  res write fs readFileSync path replace /\\//g  res write fs readFileSync path replace /\\.\|\\//g  res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  pathModule isAbsolute path res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  res write fs readFileSync prefix pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)*/  res write fs readFileSync prefix path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  |
 | autogenerated/TaintedPath/TaintedPath.js:191:88:191:89 | '' | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:191:88:191:89 | '' | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:191:88:191:89 | '' | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:192:13:192:91 | fs.read ... /, '')) | CalleeFlexibleAccessPath | res.write |
 | autogenerated/TaintedPath/TaintedPath.js:192:13:192:91 | fs.read ... /, '')) | InputArgumentIndex | 0 |
 | autogenerated/TaintedPath/TaintedPath.js:192:13:192:91 | fs.read ... /, '')) | contextFunctionInterfaces | views_local(req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:192:13:192:91 | fs.read ... /, '')) | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:192:13:192:91 | fs.read ... /, '')) | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path replace /[\\]\\[*,;'"`<>\\\\?\\/]/g  res write fs readFileSync path replace /[abcd]/g  res write fs readFileSync path replace /[./]/g  res write fs readFileSync path replace /[foobar/foobar]/g  res write fs readFileSync path replace /\\//g  res write fs readFileSync path replace /\\.\|\\//g  res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  pathModule isAbsolute path res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  res write fs readFileSync prefix pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)*/  res write fs readFileSync prefix path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  |
 | autogenerated/TaintedPath/TaintedPath.js:192:13:192:91 | fs.read ... /, '')) | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:192:13:192:91 | fs.read ... /, '')) | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:192:13:192:91 | fs.read ... /, '')) | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:192:13:192:91 | fs.read ... /, '')) | receiverName | res |
 | autogenerated/TaintedPath/TaintedPath.js:192:29:192:90 | "prefix ... */, '') | CalleeFlexibleAccessPath | fs.readFileSync |
 | autogenerated/TaintedPath/TaintedPath.js:192:29:192:90 | "prefix ... */, '') | InputArgumentIndex | 0 |
@@ -5503,7 +6610,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:192:29:192:90 | "prefix ... */, '') | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:192:29:192:90 | "prefix ... */, '') | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path replace /[\\]\\[*,;'"`<>\\\\?\\/]/g  res write fs readFileSync path replace /[abcd]/g  res write fs readFileSync path replace /[./]/g  res write fs readFileSync path replace /[foobar/foobar]/g  res write fs readFileSync path replace /\\//g  res write fs readFileSync path replace /\\.\|\\//g  res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  pathModule isAbsolute path res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  res write fs readFileSync prefix pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)*/  res write fs readFileSync prefix path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  |
 | autogenerated/TaintedPath/TaintedPath.js:192:29:192:90 | "prefix ... */, '') | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:192:29:192:90 | "prefix ... */, '') | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:192:29:192:90 | "prefix ... */, '') | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:192:29:192:90 | "prefix ... */, '') | receiverName | fs |
 | autogenerated/TaintedPath/TaintedPath.js:192:61:192:64 | path | CalleeFlexibleAccessPath | pathModule.normalize |
 | autogenerated/TaintedPath/TaintedPath.js:192:61:192:64 | path | InputArgumentIndex | 0 |
@@ -5512,7 +6619,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:192:61:192:64 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:192:61:192:64 | path | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path replace /[\\]\\[*,;'"`<>\\\\?\\/]/g  res write fs readFileSync path replace /[abcd]/g  res write fs readFileSync path replace /[./]/g  res write fs readFileSync path replace /[foobar/foobar]/g  res write fs readFileSync path replace /\\//g  res write fs readFileSync path replace /\\.\|\\//g  res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  pathModule isAbsolute path res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  res write fs readFileSync prefix pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)*/  res write fs readFileSync prefix path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  |
 | autogenerated/TaintedPath/TaintedPath.js:192:61:192:64 | path | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:192:61:192:64 | path | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:192:61:192:64 | path | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:192:61:192:64 | path | receiverName | pathModule |
 | autogenerated/TaintedPath/TaintedPath.js:192:75:192:85 | /(\\.\\.\\/)*/ | CalleeFlexibleAccessPath | pathModule.normalize().replace |
 | autogenerated/TaintedPath/TaintedPath.js:192:75:192:85 | /(\\.\\.\\/)*/ | InputArgumentIndex | 0 |
@@ -5521,7 +6628,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:192:75:192:85 | /(\\.\\.\\/)*/ | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:192:75:192:85 | /(\\.\\.\\/)*/ | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path replace /[\\]\\[*,;'"`<>\\\\?\\/]/g  res write fs readFileSync path replace /[abcd]/g  res write fs readFileSync path replace /[./]/g  res write fs readFileSync path replace /[foobar/foobar]/g  res write fs readFileSync path replace /\\//g  res write fs readFileSync path replace /\\.\|\\//g  res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  pathModule isAbsolute path res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  res write fs readFileSync prefix pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)*/  res write fs readFileSync prefix path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  |
 | autogenerated/TaintedPath/TaintedPath.js:192:75:192:85 | /(\\.\\.\\/)*/ | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:192:75:192:85 | /(\\.\\.\\/)*/ | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:192:75:192:85 | /(\\.\\.\\/)*/ | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:192:88:192:89 | '' | CalleeFlexibleAccessPath | pathModule.normalize().replace |
 | autogenerated/TaintedPath/TaintedPath.js:192:88:192:89 | '' | InputArgumentIndex | 1 |
 | autogenerated/TaintedPath/TaintedPath.js:192:88:192:89 | '' | calleeImports | path |
@@ -5529,14 +6636,14 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:192:88:192:89 | '' | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:192:88:192:89 | '' | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path replace /[\\]\\[*,;'"`<>\\\\?\\/]/g  res write fs readFileSync path replace /[abcd]/g  res write fs readFileSync path replace /[./]/g  res write fs readFileSync path replace /[foobar/foobar]/g  res write fs readFileSync path replace /\\//g  res write fs readFileSync path replace /\\.\|\\//g  res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  pathModule isAbsolute path res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  res write fs readFileSync prefix pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)*/  res write fs readFileSync prefix path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  |
 | autogenerated/TaintedPath/TaintedPath.js:192:88:192:89 | '' | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:192:88:192:89 | '' | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:192:88:192:89 | '' | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:194:13:194:74 | fs.read ... /, '')) | CalleeFlexibleAccessPath | res.write |
 | autogenerated/TaintedPath/TaintedPath.js:194:13:194:74 | fs.read ... /, '')) | InputArgumentIndex | 0 |
 | autogenerated/TaintedPath/TaintedPath.js:194:13:194:74 | fs.read ... /, '')) | contextFunctionInterfaces | views_local(req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:194:13:194:74 | fs.read ... /, '')) | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:194:13:194:74 | fs.read ... /, '')) | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path replace /[\\]\\[*,;'"`<>\\\\?\\/]/g  res write fs readFileSync path replace /[abcd]/g  res write fs readFileSync path replace /[./]/g  res write fs readFileSync path replace /[foobar/foobar]/g  res write fs readFileSync path replace /\\//g  res write fs readFileSync path replace /\\.\|\\//g  res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  pathModule isAbsolute path res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  res write fs readFileSync prefix pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)*/  res write fs readFileSync prefix path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  |
 | autogenerated/TaintedPath/TaintedPath.js:194:13:194:74 | fs.read ... /, '')) | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:194:13:194:74 | fs.read ... /, '')) | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:194:13:194:74 | fs.read ... /, '')) | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:194:13:194:74 | fs.read ... /, '')) | receiverName | res |
 | autogenerated/TaintedPath/TaintedPath.js:194:29:194:73 | "prefix ... +/, '') | CalleeFlexibleAccessPath | fs.readFileSync |
 | autogenerated/TaintedPath/TaintedPath.js:194:29:194:73 | "prefix ... +/, '') | InputArgumentIndex | 0 |
@@ -5545,7 +6652,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:194:29:194:73 | "prefix ... +/, '') | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:194:29:194:73 | "prefix ... +/, '') | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path replace /[\\]\\[*,;'"`<>\\\\?\\/]/g  res write fs readFileSync path replace /[abcd]/g  res write fs readFileSync path replace /[./]/g  res write fs readFileSync path replace /[foobar/foobar]/g  res write fs readFileSync path replace /\\//g  res write fs readFileSync path replace /\\.\|\\//g  res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  pathModule isAbsolute path res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  res write fs readFileSync prefix pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)*/  res write fs readFileSync prefix path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  |
 | autogenerated/TaintedPath/TaintedPath.js:194:29:194:73 | "prefix ... +/, '') | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:194:29:194:73 | "prefix ... +/, '') | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:194:29:194:73 | "prefix ... +/, '') | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:194:29:194:73 | "prefix ... +/, '') | receiverName | fs |
 | autogenerated/TaintedPath/TaintedPath.js:194:53:194:68 | /^(\\.\\.[\\/\\\\])+/ | CalleeFlexibleAccessPath | path.replace |
 | autogenerated/TaintedPath/TaintedPath.js:194:53:194:68 | /^(\\.\\.[\\/\\\\])+/ | InputArgumentIndex | 0 |
@@ -5554,7 +6661,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:194:53:194:68 | /^(\\.\\.[\\/\\\\])+/ | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:194:53:194:68 | /^(\\.\\.[\\/\\\\])+/ | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path replace /[\\]\\[*,;'"`<>\\\\?\\/]/g  res write fs readFileSync path replace /[abcd]/g  res write fs readFileSync path replace /[./]/g  res write fs readFileSync path replace /[foobar/foobar]/g  res write fs readFileSync path replace /\\//g  res write fs readFileSync path replace /\\.\|\\//g  res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  pathModule isAbsolute path res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  res write fs readFileSync prefix pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)*/  res write fs readFileSync prefix path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  |
 | autogenerated/TaintedPath/TaintedPath.js:194:53:194:68 | /^(\\.\\.[\\/\\\\])+/ | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:194:53:194:68 | /^(\\.\\.[\\/\\\\])+/ | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:194:53:194:68 | /^(\\.\\.[\\/\\\\])+/ | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:194:53:194:68 | /^(\\.\\.[\\/\\\\])+/ | receiverName | path |
 | autogenerated/TaintedPath/TaintedPath.js:194:71:194:72 | '' | CalleeFlexibleAccessPath | path.replace |
 | autogenerated/TaintedPath/TaintedPath.js:194:71:194:72 | '' | InputArgumentIndex | 1 |
@@ -5563,7 +6670,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:194:71:194:72 | '' | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:194:71:194:72 | '' | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path replace /[\\]\\[*,;'"`<>\\\\?\\/]/g  res write fs readFileSync path replace /[abcd]/g  res write fs readFileSync path replace /[./]/g  res write fs readFileSync path replace /[foobar/foobar]/g  res write fs readFileSync path replace /\\//g  res write fs readFileSync path replace /\\.\|\\//g  res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  pathModule isAbsolute path res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  res write fs readFileSync prefix pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)*/  res write fs readFileSync prefix path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  |
 | autogenerated/TaintedPath/TaintedPath.js:194:71:194:72 | '' | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:194:71:194:72 | '' | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:194:71:194:72 | '' | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:194:71:194:72 | '' | receiverName | path |
 | autogenerated/TaintedPath/TaintedPath.js:195:13:195:85 | fs.read ... /, '')) | CalleeFlexibleAccessPath | res.write |
 | autogenerated/TaintedPath/TaintedPath.js:195:13:195:85 | fs.read ... /, '')) | InputArgumentIndex | 0 |
@@ -5571,7 +6678,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:195:13:195:85 | fs.read ... /, '')) | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:195:13:195:85 | fs.read ... /, '')) | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path replace /[\\]\\[*,;'"`<>\\\\?\\/]/g  res write fs readFileSync path replace /[abcd]/g  res write fs readFileSync path replace /[./]/g  res write fs readFileSync path replace /[foobar/foobar]/g  res write fs readFileSync path replace /\\//g  res write fs readFileSync path replace /\\.\|\\//g  res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  pathModule isAbsolute path res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  res write fs readFileSync prefix pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)*/  res write fs readFileSync prefix path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  |
 | autogenerated/TaintedPath/TaintedPath.js:195:13:195:85 | fs.read ... /, '')) | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:195:13:195:85 | fs.read ... /, '')) | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:195:13:195:85 | fs.read ... /, '')) | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:195:13:195:85 | fs.read ... /, '')) | receiverName | res |
 | autogenerated/TaintedPath/TaintedPath.js:195:29:195:84 | pathMod ... +/, '') | CalleeFlexibleAccessPath | fs.readFileSync |
 | autogenerated/TaintedPath/TaintedPath.js:195:29:195:84 | pathMod ... +/, '') | InputArgumentIndex | 0 |
@@ -5580,7 +6687,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:195:29:195:84 | pathMod ... +/, '') | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:195:29:195:84 | pathMod ... +/, '') | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path replace /[\\]\\[*,;'"`<>\\\\?\\/]/g  res write fs readFileSync path replace /[abcd]/g  res write fs readFileSync path replace /[./]/g  res write fs readFileSync path replace /[foobar/foobar]/g  res write fs readFileSync path replace /\\//g  res write fs readFileSync path replace /\\.\|\\//g  res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  pathModule isAbsolute path res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  res write fs readFileSync prefix pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)*/  res write fs readFileSync prefix path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  |
 | autogenerated/TaintedPath/TaintedPath.js:195:29:195:84 | pathMod ... +/, '') | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:195:29:195:84 | pathMod ... +/, '') | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:195:29:195:84 | pathMod ... +/, '') | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:195:29:195:84 | pathMod ... +/, '') | receiverName | fs |
 | autogenerated/TaintedPath/TaintedPath.js:195:50:195:53 | path | CalleeFlexibleAccessPath | pathModule.normalize |
 | autogenerated/TaintedPath/TaintedPath.js:195:50:195:53 | path | InputArgumentIndex | 0 |
@@ -5589,7 +6696,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:195:50:195:53 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:195:50:195:53 | path | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path replace /[\\]\\[*,;'"`<>\\\\?\\/]/g  res write fs readFileSync path replace /[abcd]/g  res write fs readFileSync path replace /[./]/g  res write fs readFileSync path replace /[foobar/foobar]/g  res write fs readFileSync path replace /\\//g  res write fs readFileSync path replace /\\.\|\\//g  res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  pathModule isAbsolute path res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  res write fs readFileSync prefix pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)*/  res write fs readFileSync prefix path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  |
 | autogenerated/TaintedPath/TaintedPath.js:195:50:195:53 | path | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:195:50:195:53 | path | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:195:50:195:53 | path | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:195:50:195:53 | path | receiverName | pathModule |
 | autogenerated/TaintedPath/TaintedPath.js:195:64:195:79 | /^(\\.\\.[\\/\\\\])+/ | CalleeFlexibleAccessPath | pathModule.normalize().replace |
 | autogenerated/TaintedPath/TaintedPath.js:195:64:195:79 | /^(\\.\\.[\\/\\\\])+/ | InputArgumentIndex | 0 |
@@ -5598,7 +6705,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:195:64:195:79 | /^(\\.\\.[\\/\\\\])+/ | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:195:64:195:79 | /^(\\.\\.[\\/\\\\])+/ | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path replace /[\\]\\[*,;'"`<>\\\\?\\/]/g  res write fs readFileSync path replace /[abcd]/g  res write fs readFileSync path replace /[./]/g  res write fs readFileSync path replace /[foobar/foobar]/g  res write fs readFileSync path replace /\\//g  res write fs readFileSync path replace /\\.\|\\//g  res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  pathModule isAbsolute path res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  res write fs readFileSync prefix pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)*/  res write fs readFileSync prefix path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  |
 | autogenerated/TaintedPath/TaintedPath.js:195:64:195:79 | /^(\\.\\.[\\/\\\\])+/ | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:195:64:195:79 | /^(\\.\\.[\\/\\\\])+/ | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:195:64:195:79 | /^(\\.\\.[\\/\\\\])+/ | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:195:82:195:83 | '' | CalleeFlexibleAccessPath | pathModule.normalize().replace |
 | autogenerated/TaintedPath/TaintedPath.js:195:82:195:83 | '' | InputArgumentIndex | 1 |
 | autogenerated/TaintedPath/TaintedPath.js:195:82:195:83 | '' | calleeImports | path |
@@ -5606,7 +6713,639 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:195:82:195:83 | '' | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:195:82:195:83 | '' | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path replace /[\\]\\[*,;'"`<>\\\\?\\/]/g  res write fs readFileSync path replace /[abcd]/g  res write fs readFileSync path replace /[./]/g  res write fs readFileSync path replace /[foobar/foobar]/g  res write fs readFileSync path replace /\\//g  res write fs readFileSync path replace /\\.\|\\//g  res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  pathModule isAbsolute path res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  res write fs readFileSync prefix pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)*/  res write fs readFileSync prefix path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  |
 | autogenerated/TaintedPath/TaintedPath.js:195:82:195:83 | '' | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:195:82:195:83 | '' | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:195:82:195:83 | '' | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:200:32:207:1 | functio ... OT OK\\n} | CalleeFlexibleAccessPath | http.createServer |
+| autogenerated/TaintedPath/TaintedPath.js:200:32:207:1 | functio ... OT OK\\n} | InputArgumentIndex | 0 |
+| autogenerated/TaintedPath/TaintedPath.js:200:32:207:1 | functio ... OT OK\\n} | calleeImports | http |
+| autogenerated/TaintedPath/TaintedPath.js:200:32:207:1 | functio ... OT OK\\n} | contextFunctionInterfaces | views_local(req, res) |
+| autogenerated/TaintedPath/TaintedPath.js:200:32:207:1 | functio ... OT OK\\n} | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/TaintedPath/TaintedPath.js:200:32:207:1 | functio ... OT OK\\n} | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:200:32:207:1 | functio ... OT OK\\n} | receiverName | http |
+| autogenerated/TaintedPath/TaintedPath.js:202:22:202:25 | "qs" | CalleeFlexibleAccessPath | require |
+| autogenerated/TaintedPath/TaintedPath.js:202:22:202:25 | "qs" | InputArgumentIndex | 0 |
+| autogenerated/TaintedPath/TaintedPath.js:202:22:202:25 | "qs" | calleeImports |  |
+| autogenerated/TaintedPath/TaintedPath.js:202:22:202:25 | "qs" | contextFunctionInterfaces | views_local(req, res) |
+| autogenerated/TaintedPath/TaintedPath.js:202:22:202:25 | "qs" | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/TaintedPath/TaintedPath.js:202:22:202:25 | "qs" | enclosingFunctionBody | req res qs require qs res write fs readFileSync qs parse req url foo res write fs readFileSync qs parse normalizeUrl req url foo parseqs require parseqs res write fs readFileSync parseqs decode req url foo |
+| autogenerated/TaintedPath/TaintedPath.js:202:22:202:25 | "qs" | enclosingFunctionName | http.createServer#functionalargument |
+| autogenerated/TaintedPath/TaintedPath.js:202:22:202:25 | "qs" | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:203:13:203:50 | fs.read ... l).foo) | CalleeFlexibleAccessPath | res.write |
+| autogenerated/TaintedPath/TaintedPath.js:203:13:203:50 | fs.read ... l).foo) | InputArgumentIndex | 0 |
+| autogenerated/TaintedPath/TaintedPath.js:203:13:203:50 | fs.read ... l).foo) | contextFunctionInterfaces | views_local(req, res) |
+| autogenerated/TaintedPath/TaintedPath.js:203:13:203:50 | fs.read ... l).foo) | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/TaintedPath/TaintedPath.js:203:13:203:50 | fs.read ... l).foo) | enclosingFunctionBody | req res qs require qs res write fs readFileSync qs parse req url foo res write fs readFileSync qs parse normalizeUrl req url foo parseqs require parseqs res write fs readFileSync parseqs decode req url foo |
+| autogenerated/TaintedPath/TaintedPath.js:203:13:203:50 | fs.read ... l).foo) | enclosingFunctionName | http.createServer#functionalargument |
+| autogenerated/TaintedPath/TaintedPath.js:203:13:203:50 | fs.read ... l).foo) | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:203:13:203:50 | fs.read ... l).foo) | receiverName | res |
+| autogenerated/TaintedPath/TaintedPath.js:203:29:203:49 | qs.pars ... rl).foo | CalleeFlexibleAccessPath | fs.readFileSync |
+| autogenerated/TaintedPath/TaintedPath.js:203:29:203:49 | qs.pars ... rl).foo | InputArgumentIndex | 0 |
+| autogenerated/TaintedPath/TaintedPath.js:203:29:203:49 | qs.pars ... rl).foo | calleeImports | fs |
+| autogenerated/TaintedPath/TaintedPath.js:203:29:203:49 | qs.pars ... rl).foo | contextFunctionInterfaces | views_local(req, res) |
+| autogenerated/TaintedPath/TaintedPath.js:203:29:203:49 | qs.pars ... rl).foo | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/TaintedPath/TaintedPath.js:203:29:203:49 | qs.pars ... rl).foo | enclosingFunctionBody | req res qs require qs res write fs readFileSync qs parse req url foo res write fs readFileSync qs parse normalizeUrl req url foo parseqs require parseqs res write fs readFileSync parseqs decode req url foo |
+| autogenerated/TaintedPath/TaintedPath.js:203:29:203:49 | qs.pars ... rl).foo | enclosingFunctionName | http.createServer#functionalargument |
+| autogenerated/TaintedPath/TaintedPath.js:203:29:203:49 | qs.pars ... rl).foo | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:203:29:203:49 | qs.pars ... rl).foo | receiverName | fs |
+| autogenerated/TaintedPath/TaintedPath.js:203:38:203:44 | req.url | CalleeFlexibleAccessPath | qs.parse |
+| autogenerated/TaintedPath/TaintedPath.js:203:38:203:44 | req.url | InputArgumentIndex | 0 |
+| autogenerated/TaintedPath/TaintedPath.js:203:38:203:44 | req.url | calleeImports | qs |
+| autogenerated/TaintedPath/TaintedPath.js:203:38:203:44 | req.url | contextFunctionInterfaces | views_local(req, res) |
+| autogenerated/TaintedPath/TaintedPath.js:203:38:203:44 | req.url | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/TaintedPath/TaintedPath.js:203:38:203:44 | req.url | enclosingFunctionBody | req res qs require qs res write fs readFileSync qs parse req url foo res write fs readFileSync qs parse normalizeUrl req url foo parseqs require parseqs res write fs readFileSync parseqs decode req url foo |
+| autogenerated/TaintedPath/TaintedPath.js:203:38:203:44 | req.url | enclosingFunctionName | http.createServer#functionalargument |
+| autogenerated/TaintedPath/TaintedPath.js:203:38:203:44 | req.url | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:203:38:203:44 | req.url | receiverName | qs |
+| autogenerated/TaintedPath/TaintedPath.js:204:13:204:64 | fs.read ... )).foo) | CalleeFlexibleAccessPath | res.write |
+| autogenerated/TaintedPath/TaintedPath.js:204:13:204:64 | fs.read ... )).foo) | InputArgumentIndex | 0 |
+| autogenerated/TaintedPath/TaintedPath.js:204:13:204:64 | fs.read ... )).foo) | contextFunctionInterfaces | views_local(req, res) |
+| autogenerated/TaintedPath/TaintedPath.js:204:13:204:64 | fs.read ... )).foo) | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/TaintedPath/TaintedPath.js:204:13:204:64 | fs.read ... )).foo) | enclosingFunctionBody | req res qs require qs res write fs readFileSync qs parse req url foo res write fs readFileSync qs parse normalizeUrl req url foo parseqs require parseqs res write fs readFileSync parseqs decode req url foo |
+| autogenerated/TaintedPath/TaintedPath.js:204:13:204:64 | fs.read ... )).foo) | enclosingFunctionName | http.createServer#functionalargument |
+| autogenerated/TaintedPath/TaintedPath.js:204:13:204:64 | fs.read ... )).foo) | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:204:13:204:64 | fs.read ... )).foo) | receiverName | res |
+| autogenerated/TaintedPath/TaintedPath.js:204:29:204:63 | qs.pars ... l)).foo | CalleeFlexibleAccessPath | fs.readFileSync |
+| autogenerated/TaintedPath/TaintedPath.js:204:29:204:63 | qs.pars ... l)).foo | InputArgumentIndex | 0 |
+| autogenerated/TaintedPath/TaintedPath.js:204:29:204:63 | qs.pars ... l)).foo | calleeImports | fs |
+| autogenerated/TaintedPath/TaintedPath.js:204:29:204:63 | qs.pars ... l)).foo | contextFunctionInterfaces | views_local(req, res) |
+| autogenerated/TaintedPath/TaintedPath.js:204:29:204:63 | qs.pars ... l)).foo | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/TaintedPath/TaintedPath.js:204:29:204:63 | qs.pars ... l)).foo | enclosingFunctionBody | req res qs require qs res write fs readFileSync qs parse req url foo res write fs readFileSync qs parse normalizeUrl req url foo parseqs require parseqs res write fs readFileSync parseqs decode req url foo |
+| autogenerated/TaintedPath/TaintedPath.js:204:29:204:63 | qs.pars ... l)).foo | enclosingFunctionName | http.createServer#functionalargument |
+| autogenerated/TaintedPath/TaintedPath.js:204:29:204:63 | qs.pars ... l)).foo | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:204:29:204:63 | qs.pars ... l)).foo | receiverName | fs |
+| autogenerated/TaintedPath/TaintedPath.js:204:38:204:58 | normali ... eq.url) | CalleeFlexibleAccessPath | qs.parse |
+| autogenerated/TaintedPath/TaintedPath.js:204:38:204:58 | normali ... eq.url) | InputArgumentIndex | 0 |
+| autogenerated/TaintedPath/TaintedPath.js:204:38:204:58 | normali ... eq.url) | calleeImports | qs |
+| autogenerated/TaintedPath/TaintedPath.js:204:38:204:58 | normali ... eq.url) | contextFunctionInterfaces | views_local(req, res) |
+| autogenerated/TaintedPath/TaintedPath.js:204:38:204:58 | normali ... eq.url) | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/TaintedPath/TaintedPath.js:204:38:204:58 | normali ... eq.url) | enclosingFunctionBody | req res qs require qs res write fs readFileSync qs parse req url foo res write fs readFileSync qs parse normalizeUrl req url foo parseqs require parseqs res write fs readFileSync parseqs decode req url foo |
+| autogenerated/TaintedPath/TaintedPath.js:204:38:204:58 | normali ... eq.url) | enclosingFunctionName | http.createServer#functionalargument |
+| autogenerated/TaintedPath/TaintedPath.js:204:38:204:58 | normali ... eq.url) | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:204:38:204:58 | normali ... eq.url) | receiverName | qs |
+| autogenerated/TaintedPath/TaintedPath.js:204:51:204:57 | req.url | CalleeFlexibleAccessPath | normalizeUrl |
+| autogenerated/TaintedPath/TaintedPath.js:204:51:204:57 | req.url | InputArgumentIndex | 0 |
+| autogenerated/TaintedPath/TaintedPath.js:204:51:204:57 | req.url | calleeImports | normalize-url |
+| autogenerated/TaintedPath/TaintedPath.js:204:51:204:57 | req.url | contextFunctionInterfaces | views_local(req, res) |
+| autogenerated/TaintedPath/TaintedPath.js:204:51:204:57 | req.url | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/TaintedPath/TaintedPath.js:204:51:204:57 | req.url | enclosingFunctionBody | req res qs require qs res write fs readFileSync qs parse req url foo res write fs readFileSync qs parse normalizeUrl req url foo parseqs require parseqs res write fs readFileSync parseqs decode req url foo |
+| autogenerated/TaintedPath/TaintedPath.js:204:51:204:57 | req.url | enclosingFunctionName | http.createServer#functionalargument |
+| autogenerated/TaintedPath/TaintedPath.js:204:51:204:57 | req.url | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:205:27:205:35 | "parseqs" | CalleeFlexibleAccessPath | require |
+| autogenerated/TaintedPath/TaintedPath.js:205:27:205:35 | "parseqs" | InputArgumentIndex | 0 |
+| autogenerated/TaintedPath/TaintedPath.js:205:27:205:35 | "parseqs" | calleeImports |  |
+| autogenerated/TaintedPath/TaintedPath.js:205:27:205:35 | "parseqs" | contextFunctionInterfaces | views_local(req, res) |
+| autogenerated/TaintedPath/TaintedPath.js:205:27:205:35 | "parseqs" | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/TaintedPath/TaintedPath.js:205:27:205:35 | "parseqs" | enclosingFunctionBody | req res qs require qs res write fs readFileSync qs parse req url foo res write fs readFileSync qs parse normalizeUrl req url foo parseqs require parseqs res write fs readFileSync parseqs decode req url foo |
+| autogenerated/TaintedPath/TaintedPath.js:205:27:205:35 | "parseqs" | enclosingFunctionName | http.createServer#functionalargument |
+| autogenerated/TaintedPath/TaintedPath.js:205:27:205:35 | "parseqs" | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:206:13:206:56 | fs.read ... l).foo) | CalleeFlexibleAccessPath | res.write |
+| autogenerated/TaintedPath/TaintedPath.js:206:13:206:56 | fs.read ... l).foo) | InputArgumentIndex | 0 |
+| autogenerated/TaintedPath/TaintedPath.js:206:13:206:56 | fs.read ... l).foo) | contextFunctionInterfaces | views_local(req, res) |
+| autogenerated/TaintedPath/TaintedPath.js:206:13:206:56 | fs.read ... l).foo) | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/TaintedPath/TaintedPath.js:206:13:206:56 | fs.read ... l).foo) | enclosingFunctionBody | req res qs require qs res write fs readFileSync qs parse req url foo res write fs readFileSync qs parse normalizeUrl req url foo parseqs require parseqs res write fs readFileSync parseqs decode req url foo |
+| autogenerated/TaintedPath/TaintedPath.js:206:13:206:56 | fs.read ... l).foo) | enclosingFunctionName | http.createServer#functionalargument |
+| autogenerated/TaintedPath/TaintedPath.js:206:13:206:56 | fs.read ... l).foo) | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:206:13:206:56 | fs.read ... l).foo) | receiverName | res |
+| autogenerated/TaintedPath/TaintedPath.js:206:29:206:55 | parseqs ... rl).foo | CalleeFlexibleAccessPath | fs.readFileSync |
+| autogenerated/TaintedPath/TaintedPath.js:206:29:206:55 | parseqs ... rl).foo | InputArgumentIndex | 0 |
+| autogenerated/TaintedPath/TaintedPath.js:206:29:206:55 | parseqs ... rl).foo | calleeImports | fs |
+| autogenerated/TaintedPath/TaintedPath.js:206:29:206:55 | parseqs ... rl).foo | contextFunctionInterfaces | views_local(req, res) |
+| autogenerated/TaintedPath/TaintedPath.js:206:29:206:55 | parseqs ... rl).foo | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/TaintedPath/TaintedPath.js:206:29:206:55 | parseqs ... rl).foo | enclosingFunctionBody | req res qs require qs res write fs readFileSync qs parse req url foo res write fs readFileSync qs parse normalizeUrl req url foo parseqs require parseqs res write fs readFileSync parseqs decode req url foo |
+| autogenerated/TaintedPath/TaintedPath.js:206:29:206:55 | parseqs ... rl).foo | enclosingFunctionName | http.createServer#functionalargument |
+| autogenerated/TaintedPath/TaintedPath.js:206:29:206:55 | parseqs ... rl).foo | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:206:29:206:55 | parseqs ... rl).foo | receiverName | fs |
+| autogenerated/TaintedPath/TaintedPath.js:206:44:206:50 | req.url | CalleeFlexibleAccessPath | parseqs.decode |
+| autogenerated/TaintedPath/TaintedPath.js:206:44:206:50 | req.url | InputArgumentIndex | 0 |
+| autogenerated/TaintedPath/TaintedPath.js:206:44:206:50 | req.url | calleeImports | parseqs |
+| autogenerated/TaintedPath/TaintedPath.js:206:44:206:50 | req.url | contextFunctionInterfaces | views_local(req, res) |
+| autogenerated/TaintedPath/TaintedPath.js:206:44:206:50 | req.url | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/TaintedPath/TaintedPath.js:206:44:206:50 | req.url | enclosingFunctionBody | req res qs require qs res write fs readFileSync qs parse req url foo res write fs readFileSync qs parse normalizeUrl req url foo parseqs require parseqs res write fs readFileSync parseqs decode req url foo |
+| autogenerated/TaintedPath/TaintedPath.js:206:44:206:50 | req.url | enclosingFunctionName | http.createServer#functionalargument |
+| autogenerated/TaintedPath/TaintedPath.js:206:44:206:50 | req.url | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:206:44:206:50 | req.url | receiverName | parseqs |
+| autogenerated/TaintedPath/TaintedPath.js:209:20:209:34 | "child_process" | CalleeFlexibleAccessPath | require |
+| autogenerated/TaintedPath/TaintedPath.js:209:20:209:34 | "child_process" | InputArgumentIndex | 0 |
+| autogenerated/TaintedPath/TaintedPath.js:209:20:209:34 | "child_process" | calleeImports |  |
+| autogenerated/TaintedPath/TaintedPath.js:209:20:209:34 | "child_process" | contextFunctionInterfaces | views_local(req, res) |
+| autogenerated/TaintedPath/TaintedPath.js:209:20:209:34 | "child_process" | contextSurroundingFunctionParameters |  |
+| autogenerated/TaintedPath/TaintedPath.js:209:20:209:34 | "child_process" | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:210:32:215:1 | functio ... OT OK\\n} | CalleeFlexibleAccessPath | http.createServer |
+| autogenerated/TaintedPath/TaintedPath.js:210:32:215:1 | functio ... OT OK\\n} | InputArgumentIndex | 0 |
+| autogenerated/TaintedPath/TaintedPath.js:210:32:215:1 | functio ... OT OK\\n} | calleeImports | http |
+| autogenerated/TaintedPath/TaintedPath.js:210:32:215:1 | functio ... OT OK\\n} | contextFunctionInterfaces | views_local(req, res) |
+| autogenerated/TaintedPath/TaintedPath.js:210:32:215:1 | functio ... OT OK\\n} | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/TaintedPath/TaintedPath.js:210:32:215:1 | functio ... OT OK\\n} | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:210:32:215:1 | functio ... OT OK\\n} | receiverName | http |
+| autogenerated/TaintedPath/TaintedPath.js:211:24:211:30 | req.url | CalleeFlexibleAccessPath | url.parse |
+| autogenerated/TaintedPath/TaintedPath.js:211:24:211:30 | req.url | InputArgumentIndex | 0 |
+| autogenerated/TaintedPath/TaintedPath.js:211:24:211:30 | req.url | calleeImports | url |
+| autogenerated/TaintedPath/TaintedPath.js:211:24:211:30 | req.url | contextFunctionInterfaces | views_local(req, res) |
+| autogenerated/TaintedPath/TaintedPath.js:211:24:211:30 | req.url | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/TaintedPath/TaintedPath.js:211:24:211:30 | req.url | enclosingFunctionBody | req res path url parse req url true query path cp execSync foobar cwd path cp execFileSync foobar args cwd path cp execFileSync foobar cwd path |
+| autogenerated/TaintedPath/TaintedPath.js:211:24:211:30 | req.url | enclosingFunctionName | http.createServer#functionalargument |
+| autogenerated/TaintedPath/TaintedPath.js:211:24:211:30 | req.url | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:211:24:211:30 | req.url | receiverName | url |
+| autogenerated/TaintedPath/TaintedPath.js:211:33:211:36 | true | CalleeFlexibleAccessPath | url.parse |
+| autogenerated/TaintedPath/TaintedPath.js:211:33:211:36 | true | InputArgumentIndex | 1 |
+| autogenerated/TaintedPath/TaintedPath.js:211:33:211:36 | true | calleeImports | url |
+| autogenerated/TaintedPath/TaintedPath.js:211:33:211:36 | true | contextFunctionInterfaces | views_local(req, res) |
+| autogenerated/TaintedPath/TaintedPath.js:211:33:211:36 | true | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/TaintedPath/TaintedPath.js:211:33:211:36 | true | enclosingFunctionBody | req res path url parse req url true query path cp execSync foobar cwd path cp execFileSync foobar args cwd path cp execFileSync foobar cwd path |
+| autogenerated/TaintedPath/TaintedPath.js:211:33:211:36 | true | enclosingFunctionName | http.createServer#functionalargument |
+| autogenerated/TaintedPath/TaintedPath.js:211:33:211:36 | true | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:211:33:211:36 | true | receiverName | url |
+| autogenerated/TaintedPath/TaintedPath.js:212:15:212:22 | "foobar" | CalleeFlexibleAccessPath | cp.execSync |
+| autogenerated/TaintedPath/TaintedPath.js:212:15:212:22 | "foobar" | InputArgumentIndex | 0 |
+| autogenerated/TaintedPath/TaintedPath.js:212:15:212:22 | "foobar" | calleeImports | child_process |
+| autogenerated/TaintedPath/TaintedPath.js:212:15:212:22 | "foobar" | contextFunctionInterfaces | views_local(req, res) |
+| autogenerated/TaintedPath/TaintedPath.js:212:15:212:22 | "foobar" | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/TaintedPath/TaintedPath.js:212:15:212:22 | "foobar" | enclosingFunctionBody | req res path url parse req url true query path cp execSync foobar cwd path cp execFileSync foobar args cwd path cp execFileSync foobar cwd path |
+| autogenerated/TaintedPath/TaintedPath.js:212:15:212:22 | "foobar" | enclosingFunctionName | http.createServer#functionalargument |
+| autogenerated/TaintedPath/TaintedPath.js:212:15:212:22 | "foobar" | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:212:15:212:22 | "foobar" | receiverName | cp |
+| autogenerated/TaintedPath/TaintedPath.js:212:25:212:35 | {cwd: path} | CalleeFlexibleAccessPath | cp.execSync |
+| autogenerated/TaintedPath/TaintedPath.js:212:25:212:35 | {cwd: path} | InputArgumentIndex | 1 |
+| autogenerated/TaintedPath/TaintedPath.js:212:25:212:35 | {cwd: path} | calleeImports | child_process |
+| autogenerated/TaintedPath/TaintedPath.js:212:25:212:35 | {cwd: path} | contextFunctionInterfaces | views_local(req, res) |
+| autogenerated/TaintedPath/TaintedPath.js:212:25:212:35 | {cwd: path} | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/TaintedPath/TaintedPath.js:212:25:212:35 | {cwd: path} | enclosingFunctionBody | req res path url parse req url true query path cp execSync foobar cwd path cp execFileSync foobar args cwd path cp execFileSync foobar cwd path |
+| autogenerated/TaintedPath/TaintedPath.js:212:25:212:35 | {cwd: path} | enclosingFunctionName | http.createServer#functionalargument |
+| autogenerated/TaintedPath/TaintedPath.js:212:25:212:35 | {cwd: path} | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:212:25:212:35 | {cwd: path} | receiverName | cp |
+| autogenerated/TaintedPath/TaintedPath.js:212:31:212:34 | path | CalleeFlexibleAccessPath | cp.execSync |
+| autogenerated/TaintedPath/TaintedPath.js:212:31:212:34 | path | InputAccessPathFromCallee | 1.cwd |
+| autogenerated/TaintedPath/TaintedPath.js:212:31:212:34 | path | InputArgumentIndex | 1 |
+| autogenerated/TaintedPath/TaintedPath.js:212:31:212:34 | path | assignedToPropName | cwd |
+| autogenerated/TaintedPath/TaintedPath.js:212:31:212:34 | path | calleeImports | child_process |
+| autogenerated/TaintedPath/TaintedPath.js:212:31:212:34 | path | contextFunctionInterfaces | views_local(req, res) |
+| autogenerated/TaintedPath/TaintedPath.js:212:31:212:34 | path | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/TaintedPath/TaintedPath.js:212:31:212:34 | path | enclosingFunctionBody | req res path url parse req url true query path cp execSync foobar cwd path cp execFileSync foobar args cwd path cp execFileSync foobar cwd path |
+| autogenerated/TaintedPath/TaintedPath.js:212:31:212:34 | path | enclosingFunctionName | http.createServer#functionalargument |
+| autogenerated/TaintedPath/TaintedPath.js:212:31:212:34 | path | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:213:19:213:26 | "foobar" | CalleeFlexibleAccessPath | cp.execFileSync |
+| autogenerated/TaintedPath/TaintedPath.js:213:19:213:26 | "foobar" | InputArgumentIndex | 0 |
+| autogenerated/TaintedPath/TaintedPath.js:213:19:213:26 | "foobar" | calleeImports | child_process |
+| autogenerated/TaintedPath/TaintedPath.js:213:19:213:26 | "foobar" | contextFunctionInterfaces | views_local(req, res) |
+| autogenerated/TaintedPath/TaintedPath.js:213:19:213:26 | "foobar" | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/TaintedPath/TaintedPath.js:213:19:213:26 | "foobar" | enclosingFunctionBody | req res path url parse req url true query path cp execSync foobar cwd path cp execFileSync foobar args cwd path cp execFileSync foobar cwd path |
+| autogenerated/TaintedPath/TaintedPath.js:213:19:213:26 | "foobar" | enclosingFunctionName | http.createServer#functionalargument |
+| autogenerated/TaintedPath/TaintedPath.js:213:19:213:26 | "foobar" | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:213:19:213:26 | "foobar" | receiverName | cp |
+| autogenerated/TaintedPath/TaintedPath.js:213:29:213:36 | ["args"] | CalleeFlexibleAccessPath | cp.execFileSync |
+| autogenerated/TaintedPath/TaintedPath.js:213:29:213:36 | ["args"] | InputArgumentIndex | 1 |
+| autogenerated/TaintedPath/TaintedPath.js:213:29:213:36 | ["args"] | calleeImports | child_process |
+| autogenerated/TaintedPath/TaintedPath.js:213:29:213:36 | ["args"] | contextFunctionInterfaces | views_local(req, res) |
+| autogenerated/TaintedPath/TaintedPath.js:213:29:213:36 | ["args"] | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/TaintedPath/TaintedPath.js:213:29:213:36 | ["args"] | enclosingFunctionBody | req res path url parse req url true query path cp execSync foobar cwd path cp execFileSync foobar args cwd path cp execFileSync foobar cwd path |
+| autogenerated/TaintedPath/TaintedPath.js:213:29:213:36 | ["args"] | enclosingFunctionName | http.createServer#functionalargument |
+| autogenerated/TaintedPath/TaintedPath.js:213:29:213:36 | ["args"] | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:213:29:213:36 | ["args"] | receiverName | cp |
+| autogenerated/TaintedPath/TaintedPath.js:213:30:213:35 | "args" | contextFunctionInterfaces | views_local(req, res) |
+| autogenerated/TaintedPath/TaintedPath.js:213:30:213:35 | "args" | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/TaintedPath/TaintedPath.js:213:30:213:35 | "args" | enclosingFunctionBody | req res path url parse req url true query path cp execSync foobar cwd path cp execFileSync foobar args cwd path cp execFileSync foobar cwd path |
+| autogenerated/TaintedPath/TaintedPath.js:213:30:213:35 | "args" | enclosingFunctionName | http.createServer#functionalargument |
+| autogenerated/TaintedPath/TaintedPath.js:213:30:213:35 | "args" | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:213:39:213:49 | {cwd: path} | CalleeFlexibleAccessPath | cp.execFileSync |
+| autogenerated/TaintedPath/TaintedPath.js:213:39:213:49 | {cwd: path} | InputArgumentIndex | 2 |
+| autogenerated/TaintedPath/TaintedPath.js:213:39:213:49 | {cwd: path} | calleeImports | child_process |
+| autogenerated/TaintedPath/TaintedPath.js:213:39:213:49 | {cwd: path} | contextFunctionInterfaces | views_local(req, res) |
+| autogenerated/TaintedPath/TaintedPath.js:213:39:213:49 | {cwd: path} | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/TaintedPath/TaintedPath.js:213:39:213:49 | {cwd: path} | enclosingFunctionBody | req res path url parse req url true query path cp execSync foobar cwd path cp execFileSync foobar args cwd path cp execFileSync foobar cwd path |
+| autogenerated/TaintedPath/TaintedPath.js:213:39:213:49 | {cwd: path} | enclosingFunctionName | http.createServer#functionalargument |
+| autogenerated/TaintedPath/TaintedPath.js:213:39:213:49 | {cwd: path} | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:213:39:213:49 | {cwd: path} | receiverName | cp |
+| autogenerated/TaintedPath/TaintedPath.js:213:45:213:48 | path | CalleeFlexibleAccessPath | cp.execFileSync |
+| autogenerated/TaintedPath/TaintedPath.js:213:45:213:48 | path | InputAccessPathFromCallee | 2.cwd |
+| autogenerated/TaintedPath/TaintedPath.js:213:45:213:48 | path | InputArgumentIndex | 2 |
+| autogenerated/TaintedPath/TaintedPath.js:213:45:213:48 | path | assignedToPropName | cwd |
+| autogenerated/TaintedPath/TaintedPath.js:213:45:213:48 | path | calleeImports | child_process |
+| autogenerated/TaintedPath/TaintedPath.js:213:45:213:48 | path | contextFunctionInterfaces | views_local(req, res) |
+| autogenerated/TaintedPath/TaintedPath.js:213:45:213:48 | path | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/TaintedPath/TaintedPath.js:213:45:213:48 | path | enclosingFunctionBody | req res path url parse req url true query path cp execSync foobar cwd path cp execFileSync foobar args cwd path cp execFileSync foobar cwd path |
+| autogenerated/TaintedPath/TaintedPath.js:213:45:213:48 | path | enclosingFunctionName | http.createServer#functionalargument |
+| autogenerated/TaintedPath/TaintedPath.js:213:45:213:48 | path | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:214:19:214:26 | "foobar" | CalleeFlexibleAccessPath | cp.execFileSync |
+| autogenerated/TaintedPath/TaintedPath.js:214:19:214:26 | "foobar" | InputArgumentIndex | 0 |
+| autogenerated/TaintedPath/TaintedPath.js:214:19:214:26 | "foobar" | calleeImports | child_process |
+| autogenerated/TaintedPath/TaintedPath.js:214:19:214:26 | "foobar" | contextFunctionInterfaces | views_local(req, res) |
+| autogenerated/TaintedPath/TaintedPath.js:214:19:214:26 | "foobar" | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/TaintedPath/TaintedPath.js:214:19:214:26 | "foobar" | enclosingFunctionBody | req res path url parse req url true query path cp execSync foobar cwd path cp execFileSync foobar args cwd path cp execFileSync foobar cwd path |
+| autogenerated/TaintedPath/TaintedPath.js:214:19:214:26 | "foobar" | enclosingFunctionName | http.createServer#functionalargument |
+| autogenerated/TaintedPath/TaintedPath.js:214:19:214:26 | "foobar" | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:214:19:214:26 | "foobar" | receiverName | cp |
+| autogenerated/TaintedPath/TaintedPath.js:214:29:214:39 | {cwd: path} | CalleeFlexibleAccessPath | cp.execFileSync |
+| autogenerated/TaintedPath/TaintedPath.js:214:29:214:39 | {cwd: path} | InputArgumentIndex | 1 |
+| autogenerated/TaintedPath/TaintedPath.js:214:29:214:39 | {cwd: path} | calleeImports | child_process |
+| autogenerated/TaintedPath/TaintedPath.js:214:29:214:39 | {cwd: path} | contextFunctionInterfaces | views_local(req, res) |
+| autogenerated/TaintedPath/TaintedPath.js:214:29:214:39 | {cwd: path} | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/TaintedPath/TaintedPath.js:214:29:214:39 | {cwd: path} | enclosingFunctionBody | req res path url parse req url true query path cp execSync foobar cwd path cp execFileSync foobar args cwd path cp execFileSync foobar cwd path |
+| autogenerated/TaintedPath/TaintedPath.js:214:29:214:39 | {cwd: path} | enclosingFunctionName | http.createServer#functionalargument |
+| autogenerated/TaintedPath/TaintedPath.js:214:29:214:39 | {cwd: path} | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:214:29:214:39 | {cwd: path} | receiverName | cp |
+| autogenerated/TaintedPath/TaintedPath.js:214:35:214:38 | path | CalleeFlexibleAccessPath | cp.execFileSync |
+| autogenerated/TaintedPath/TaintedPath.js:214:35:214:38 | path | InputAccessPathFromCallee | 1.cwd |
+| autogenerated/TaintedPath/TaintedPath.js:214:35:214:38 | path | InputArgumentIndex | 1 |
+| autogenerated/TaintedPath/TaintedPath.js:214:35:214:38 | path | assignedToPropName | cwd |
+| autogenerated/TaintedPath/TaintedPath.js:214:35:214:38 | path | calleeImports | child_process |
+| autogenerated/TaintedPath/TaintedPath.js:214:35:214:38 | path | contextFunctionInterfaces | views_local(req, res) |
+| autogenerated/TaintedPath/TaintedPath.js:214:35:214:38 | path | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/TaintedPath/TaintedPath.js:214:35:214:38 | path | enclosingFunctionBody | req res path url parse req url true query path cp execSync foobar cwd path cp execFileSync foobar args cwd path cp execFileSync foobar cwd path |
+| autogenerated/TaintedPath/TaintedPath.js:214:35:214:38 | path | enclosingFunctionName | http.createServer#functionalargument |
+| autogenerated/TaintedPath/TaintedPath.js:214:35:214:38 | path | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/express.js:1:23:1:31 | "express" | CalleeFlexibleAccessPath | require |
+| autogenerated/TaintedPath/express.js:1:23:1:31 | "express" | InputArgumentIndex | 0 |
+| autogenerated/TaintedPath/express.js:1:23:1:31 | "express" | calleeImports |  |
+| autogenerated/TaintedPath/express.js:1:23:1:31 | "express" | contextFunctionInterfaces |  |
+| autogenerated/TaintedPath/express.js:1:23:1:31 | "express" | contextSurroundingFunctionParameters |  |
+| autogenerated/TaintedPath/express.js:1:23:1:31 | "express" | fileImports | express express-fileupload |
+| autogenerated/TaintedPath/express.js:2:24:2:43 | "express-fileupload" | CalleeFlexibleAccessPath | require |
+| autogenerated/TaintedPath/express.js:2:24:2:43 | "express-fileupload" | InputArgumentIndex | 0 |
+| autogenerated/TaintedPath/express.js:2:24:2:43 | "express-fileupload" | calleeImports |  |
+| autogenerated/TaintedPath/express.js:2:24:2:43 | "express-fileupload" | contextFunctionInterfaces |  |
+| autogenerated/TaintedPath/express.js:2:24:2:43 | "express-fileupload" | contextSurroundingFunctionParameters |  |
+| autogenerated/TaintedPath/express.js:2:24:2:43 | "express-fileupload" | fileImports | express express-fileupload |
+| autogenerated/TaintedPath/express.js:5:9:5:20 | fileUpload() | CalleeFlexibleAccessPath | app.use |
+| autogenerated/TaintedPath/express.js:5:9:5:20 | fileUpload() | InputArgumentIndex | 0 |
+| autogenerated/TaintedPath/express.js:5:9:5:20 | fileUpload() | calleeImports | express |
+| autogenerated/TaintedPath/express.js:5:9:5:20 | fileUpload() | contextFunctionInterfaces |  |
+| autogenerated/TaintedPath/express.js:5:9:5:20 | fileUpload() | contextSurroundingFunctionParameters |  |
+| autogenerated/TaintedPath/express.js:5:9:5:20 | fileUpload() | fileImports | express express-fileupload |
+| autogenerated/TaintedPath/express.js:5:9:5:20 | fileUpload() | receiverName | app |
+| autogenerated/TaintedPath/express.js:7:9:7:20 | "/some/path" | CalleeFlexibleAccessPath | app.get |
+| autogenerated/TaintedPath/express.js:7:9:7:20 | "/some/path" | InputArgumentIndex | 0 |
+| autogenerated/TaintedPath/express.js:7:9:7:20 | "/some/path" | calleeImports | express |
+| autogenerated/TaintedPath/express.js:7:9:7:20 | "/some/path" | contextFunctionInterfaces |  |
+| autogenerated/TaintedPath/express.js:7:9:7:20 | "/some/path" | contextSurroundingFunctionParameters |  |
+| autogenerated/TaintedPath/express.js:7:9:7:20 | "/some/path" | fileImports | express express-fileupload |
+| autogenerated/TaintedPath/express.js:7:9:7:20 | "/some/path" | receiverName | app |
+| autogenerated/TaintedPath/express.js:7:23:9:1 | functio ... bar);\\n} | CalleeFlexibleAccessPath | app.get |
+| autogenerated/TaintedPath/express.js:7:23:9:1 | functio ... bar);\\n} | InputArgumentIndex | 1 |
+| autogenerated/TaintedPath/express.js:7:23:9:1 | functio ... bar);\\n} | calleeImports | express |
+| autogenerated/TaintedPath/express.js:7:23:9:1 | functio ... bar);\\n} | contextFunctionInterfaces |  |
+| autogenerated/TaintedPath/express.js:7:23:9:1 | functio ... bar);\\n} | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/TaintedPath/express.js:7:23:9:1 | functio ... bar);\\n} | fileImports | express express-fileupload |
+| autogenerated/TaintedPath/express.js:7:23:9:1 | functio ... bar);\\n} | receiverName | app |
+| autogenerated/TaintedPath/express.js:8:20:8:32 | req.query.bar | CalleeFlexibleAccessPath | req.files.foo.mv |
+| autogenerated/TaintedPath/express.js:8:20:8:32 | req.query.bar | InputArgumentIndex | 0 |
+| autogenerated/TaintedPath/express.js:8:20:8:32 | req.query.bar | contextFunctionInterfaces |  |
+| autogenerated/TaintedPath/express.js:8:20:8:32 | req.query.bar | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/TaintedPath/express.js:8:20:8:32 | req.query.bar | enclosingFunctionBody | req res req files foo mv req query bar |
+| autogenerated/TaintedPath/express.js:8:20:8:32 | req.query.bar | enclosingFunctionName | app.get#functionalargument |
+| autogenerated/TaintedPath/express.js:8:20:8:32 | req.query.bar | fileImports | express express-fileupload |
+| autogenerated/TaintedPath/handlebars.js:1:25:1:33 | 'express' | CalleeFlexibleAccessPath | require |
+| autogenerated/TaintedPath/handlebars.js:1:25:1:33 | 'express' | InputArgumentIndex | 0 |
+| autogenerated/TaintedPath/handlebars.js:1:25:1:33 | 'express' | calleeImports |  |
+| autogenerated/TaintedPath/handlebars.js:1:25:1:33 | 'express' | contextFunctionInterfaces | catFile(filePath)\ninit()\nprependToLines(prefix, filePath) |
+| autogenerated/TaintedPath/handlebars.js:1:25:1:33 | 'express' | contextSurroundingFunctionParameters |  |
+| autogenerated/TaintedPath/handlebars.js:1:25:1:33 | 'express' | fileImports | express fs handlebars |
+| autogenerated/TaintedPath/handlebars.js:2:20:2:31 | "handlebars" | CalleeFlexibleAccessPath | require |
+| autogenerated/TaintedPath/handlebars.js:2:20:2:31 | "handlebars" | InputArgumentIndex | 0 |
+| autogenerated/TaintedPath/handlebars.js:2:20:2:31 | "handlebars" | calleeImports |  |
+| autogenerated/TaintedPath/handlebars.js:2:20:2:31 | "handlebars" | contextFunctionInterfaces | catFile(filePath)\ninit()\nprependToLines(prefix, filePath) |
+| autogenerated/TaintedPath/handlebars.js:2:20:2:31 | "handlebars" | contextSurroundingFunctionParameters |  |
+| autogenerated/TaintedPath/handlebars.js:2:20:2:31 | "handlebars" | fileImports | express fs handlebars |
+| autogenerated/TaintedPath/handlebars.js:3:20:3:23 | "fs" | CalleeFlexibleAccessPath | require |
+| autogenerated/TaintedPath/handlebars.js:3:20:3:23 | "fs" | InputArgumentIndex | 0 |
+| autogenerated/TaintedPath/handlebars.js:3:20:3:23 | "fs" | calleeImports |  |
+| autogenerated/TaintedPath/handlebars.js:3:20:3:23 | "fs" | contextFunctionInterfaces | catFile(filePath)\ninit()\nprependToLines(prefix, filePath) |
+| autogenerated/TaintedPath/handlebars.js:3:20:3:23 | "fs" | contextSurroundingFunctionParameters |  |
+| autogenerated/TaintedPath/handlebars.js:3:20:3:23 | "fs" | fileImports | express fs handlebars |
+| autogenerated/TaintedPath/handlebars.js:10:23:10:31 | "catFile" | CalleeFlexibleAccessPath | hb.registerHelper |
+| autogenerated/TaintedPath/handlebars.js:10:23:10:31 | "catFile" | InputArgumentIndex | 0 |
+| autogenerated/TaintedPath/handlebars.js:10:23:10:31 | "catFile" | calleeImports | handlebars |
+| autogenerated/TaintedPath/handlebars.js:10:23:10:31 | "catFile" | contextFunctionInterfaces | catFile(filePath)\ninit()\nprependToLines(prefix, filePath) |
+| autogenerated/TaintedPath/handlebars.js:10:23:10:31 | "catFile" | contextSurroundingFunctionParameters | () |
+| autogenerated/TaintedPath/handlebars.js:10:23:10:31 | "catFile" | enclosingFunctionBody | hb registerHelper catFile catFile filePath fs readFileSync filePath hb registerHelper prependToLines prependToLines prefix filePath fs readFileSync filePath split \n map line prefix line join \n data compiledFileAccess hb compile contents of file {{path}} are: {{catFile path}} data compiledBenign hb compile hello, {{name}} data compiledUnknown hb compile fs readFileSync greeting.template data compiledMixed hb compile helpers may have several args, like here: {{prependToLines prefix path}} |
+| autogenerated/TaintedPath/handlebars.js:10:23:10:31 | "catFile" | enclosingFunctionName | init |
+| autogenerated/TaintedPath/handlebars.js:10:23:10:31 | "catFile" | fileImports | express fs handlebars |
+| autogenerated/TaintedPath/handlebars.js:10:23:10:31 | "catFile" | receiverName | hb |
+| autogenerated/TaintedPath/handlebars.js:10:34:12:5 | functio ... )\\n    } | CalleeFlexibleAccessPath | hb.registerHelper |
+| autogenerated/TaintedPath/handlebars.js:10:34:12:5 | functio ... )\\n    } | InputArgumentIndex | 1 |
+| autogenerated/TaintedPath/handlebars.js:10:34:12:5 | functio ... )\\n    } | calleeImports | handlebars |
+| autogenerated/TaintedPath/handlebars.js:10:34:12:5 | functio ... )\\n    } | contextFunctionInterfaces | catFile(filePath)\ninit()\nprependToLines(prefix, filePath) |
+| autogenerated/TaintedPath/handlebars.js:10:34:12:5 | functio ... )\\n    } | contextSurroundingFunctionParameters | ()\n(filePath) |
+| autogenerated/TaintedPath/handlebars.js:10:34:12:5 | functio ... )\\n    } | enclosingFunctionBody | hb registerHelper catFile catFile filePath fs readFileSync filePath hb registerHelper prependToLines prependToLines prefix filePath fs readFileSync filePath split \n map line prefix line join \n data compiledFileAccess hb compile contents of file {{path}} are: {{catFile path}} data compiledBenign hb compile hello, {{name}} data compiledUnknown hb compile fs readFileSync greeting.template data compiledMixed hb compile helpers may have several args, like here: {{prependToLines prefix path}} |
+| autogenerated/TaintedPath/handlebars.js:10:34:12:5 | functio ... )\\n    } | enclosingFunctionName | init |
+| autogenerated/TaintedPath/handlebars.js:10:34:12:5 | functio ... )\\n    } | fileImports | express fs handlebars |
+| autogenerated/TaintedPath/handlebars.js:10:34:12:5 | functio ... )\\n    } | receiverName | hb |
+| autogenerated/TaintedPath/handlebars.js:11:32:11:39 | filePath | CalleeFlexibleAccessPath | fs.readFileSync |
+| autogenerated/TaintedPath/handlebars.js:11:32:11:39 | filePath | InputArgumentIndex | 0 |
+| autogenerated/TaintedPath/handlebars.js:11:32:11:39 | filePath | calleeImports | fs |
+| autogenerated/TaintedPath/handlebars.js:11:32:11:39 | filePath | contextFunctionInterfaces | catFile(filePath)\ninit()\nprependToLines(prefix, filePath) |
+| autogenerated/TaintedPath/handlebars.js:11:32:11:39 | filePath | contextSurroundingFunctionParameters | ()\n(filePath) |
+| autogenerated/TaintedPath/handlebars.js:11:32:11:39 | filePath | enclosingFunctionBody | hb registerHelper catFile catFile filePath fs readFileSync filePath hb registerHelper prependToLines prependToLines prefix filePath fs readFileSync filePath split \n map line prefix line join \n data compiledFileAccess hb compile contents of file {{path}} are: {{catFile path}} data compiledBenign hb compile hello, {{name}} data compiledUnknown hb compile fs readFileSync greeting.template data compiledMixed hb compile helpers may have several args, like here: {{prependToLines prefix path}} |
+| autogenerated/TaintedPath/handlebars.js:11:32:11:39 | filePath | enclosingFunctionName | init |
+| autogenerated/TaintedPath/handlebars.js:11:32:11:39 | filePath | fileImports | express fs handlebars |
+| autogenerated/TaintedPath/handlebars.js:11:32:11:39 | filePath | receiverName | fs |
+| autogenerated/TaintedPath/handlebars.js:13:23:13:38 | "prependToLines" | CalleeFlexibleAccessPath | hb.registerHelper |
+| autogenerated/TaintedPath/handlebars.js:13:23:13:38 | "prependToLines" | InputArgumentIndex | 0 |
+| autogenerated/TaintedPath/handlebars.js:13:23:13:38 | "prependToLines" | calleeImports | handlebars |
+| autogenerated/TaintedPath/handlebars.js:13:23:13:38 | "prependToLines" | contextFunctionInterfaces | catFile(filePath)\ninit()\nprependToLines(prefix, filePath) |
+| autogenerated/TaintedPath/handlebars.js:13:23:13:38 | "prependToLines" | contextSurroundingFunctionParameters | () |
+| autogenerated/TaintedPath/handlebars.js:13:23:13:38 | "prependToLines" | enclosingFunctionBody | hb registerHelper catFile catFile filePath fs readFileSync filePath hb registerHelper prependToLines prependToLines prefix filePath fs readFileSync filePath split \n map line prefix line join \n data compiledFileAccess hb compile contents of file {{path}} are: {{catFile path}} data compiledBenign hb compile hello, {{name}} data compiledUnknown hb compile fs readFileSync greeting.template data compiledMixed hb compile helpers may have several args, like here: {{prependToLines prefix path}} |
+| autogenerated/TaintedPath/handlebars.js:13:23:13:38 | "prependToLines" | enclosingFunctionName | init |
+| autogenerated/TaintedPath/handlebars.js:13:23:13:38 | "prependToLines" | fileImports | express fs handlebars |
+| autogenerated/TaintedPath/handlebars.js:13:23:13:38 | "prependToLines" | receiverName | hb |
+| autogenerated/TaintedPath/handlebars.js:13:41:19:5 | functio ... ;\\n    } | CalleeFlexibleAccessPath | hb.registerHelper |
+| autogenerated/TaintedPath/handlebars.js:13:41:19:5 | functio ... ;\\n    } | InputArgumentIndex | 1 |
+| autogenerated/TaintedPath/handlebars.js:13:41:19:5 | functio ... ;\\n    } | calleeImports | handlebars |
+| autogenerated/TaintedPath/handlebars.js:13:41:19:5 | functio ... ;\\n    } | contextFunctionInterfaces | catFile(filePath)\ninit()\nprependToLines(prefix, filePath) |
+| autogenerated/TaintedPath/handlebars.js:13:41:19:5 | functio ... ;\\n    } | contextSurroundingFunctionParameters | ()\n(prefix, filePath) |
+| autogenerated/TaintedPath/handlebars.js:13:41:19:5 | functio ... ;\\n    } | enclosingFunctionBody | hb registerHelper catFile catFile filePath fs readFileSync filePath hb registerHelper prependToLines prependToLines prefix filePath fs readFileSync filePath split \n map line prefix line join \n data compiledFileAccess hb compile contents of file {{path}} are: {{catFile path}} data compiledBenign hb compile hello, {{name}} data compiledUnknown hb compile fs readFileSync greeting.template data compiledMixed hb compile helpers may have several args, like here: {{prependToLines prefix path}} |
+| autogenerated/TaintedPath/handlebars.js:13:41:19:5 | functio ... ;\\n    } | enclosingFunctionName | init |
+| autogenerated/TaintedPath/handlebars.js:13:41:19:5 | functio ... ;\\n    } | fileImports | express fs handlebars |
+| autogenerated/TaintedPath/handlebars.js:13:41:19:5 | functio ... ;\\n    } | receiverName | hb |
+| autogenerated/TaintedPath/handlebars.js:15:25:15:32 | filePath | CalleeFlexibleAccessPath | fs.readFileSync |
+| autogenerated/TaintedPath/handlebars.js:15:25:15:32 | filePath | InputArgumentIndex | 0 |
+| autogenerated/TaintedPath/handlebars.js:15:25:15:32 | filePath | calleeImports | fs |
+| autogenerated/TaintedPath/handlebars.js:15:25:15:32 | filePath | contextFunctionInterfaces | catFile(filePath)\ninit()\nprependToLines(prefix, filePath) |
+| autogenerated/TaintedPath/handlebars.js:15:25:15:32 | filePath | contextSurroundingFunctionParameters | ()\n(prefix, filePath) |
+| autogenerated/TaintedPath/handlebars.js:15:25:15:32 | filePath | enclosingFunctionBody | hb registerHelper catFile catFile filePath fs readFileSync filePath hb registerHelper prependToLines prependToLines prefix filePath fs readFileSync filePath split \n map line prefix line join \n data compiledFileAccess hb compile contents of file {{path}} are: {{catFile path}} data compiledBenign hb compile hello, {{name}} data compiledUnknown hb compile fs readFileSync greeting.template data compiledMixed hb compile helpers may have several args, like here: {{prependToLines prefix path}} |
+| autogenerated/TaintedPath/handlebars.js:15:25:15:32 | filePath | enclosingFunctionName | init |
+| autogenerated/TaintedPath/handlebars.js:15:25:15:32 | filePath | fileImports | express fs handlebars |
+| autogenerated/TaintedPath/handlebars.js:15:25:15:32 | filePath | receiverName | fs |
+| autogenerated/TaintedPath/handlebars.js:16:18:16:21 | "\\n" | CalleeFlexibleAccessPath | fs.readFileSync().split |
+| autogenerated/TaintedPath/handlebars.js:16:18:16:21 | "\\n" | InputArgumentIndex | 0 |
+| autogenerated/TaintedPath/handlebars.js:16:18:16:21 | "\\n" | calleeImports | fs |
+| autogenerated/TaintedPath/handlebars.js:16:18:16:21 | "\\n" | contextFunctionInterfaces | catFile(filePath)\ninit()\nprependToLines(prefix, filePath) |
+| autogenerated/TaintedPath/handlebars.js:16:18:16:21 | "\\n" | contextSurroundingFunctionParameters | ()\n(prefix, filePath) |
+| autogenerated/TaintedPath/handlebars.js:16:18:16:21 | "\\n" | enclosingFunctionBody | hb registerHelper catFile catFile filePath fs readFileSync filePath hb registerHelper prependToLines prependToLines prefix filePath fs readFileSync filePath split \n map line prefix line join \n data compiledFileAccess hb compile contents of file {{path}} are: {{catFile path}} data compiledBenign hb compile hello, {{name}} data compiledUnknown hb compile fs readFileSync greeting.template data compiledMixed hb compile helpers may have several args, like here: {{prependToLines prefix path}} |
+| autogenerated/TaintedPath/handlebars.js:16:18:16:21 | "\\n" | enclosingFunctionName | init |
+| autogenerated/TaintedPath/handlebars.js:16:18:16:21 | "\\n" | fileImports | express fs handlebars |
+| autogenerated/TaintedPath/handlebars.js:17:16:17:38 | (line)  ...  + line | CalleeFlexibleAccessPath | fs.readFileSync().split().map |
+| autogenerated/TaintedPath/handlebars.js:17:16:17:38 | (line)  ...  + line | InputArgumentIndex | 0 |
+| autogenerated/TaintedPath/handlebars.js:17:16:17:38 | (line)  ...  + line | calleeImports | fs |
+| autogenerated/TaintedPath/handlebars.js:17:16:17:38 | (line)  ...  + line | contextFunctionInterfaces | catFile(filePath)\ninit()\nprependToLines(prefix, filePath) |
+| autogenerated/TaintedPath/handlebars.js:17:16:17:38 | (line)  ...  + line | contextSurroundingFunctionParameters | ()\n(prefix, filePath)\n(line) |
+| autogenerated/TaintedPath/handlebars.js:17:16:17:38 | (line)  ...  + line | enclosingFunctionBody | hb registerHelper catFile catFile filePath fs readFileSync filePath hb registerHelper prependToLines prependToLines prefix filePath fs readFileSync filePath split \n map line prefix line join \n data compiledFileAccess hb compile contents of file {{path}} are: {{catFile path}} data compiledBenign hb compile hello, {{name}} data compiledUnknown hb compile fs readFileSync greeting.template data compiledMixed hb compile helpers may have several args, like here: {{prependToLines prefix path}} |
+| autogenerated/TaintedPath/handlebars.js:17:16:17:38 | (line)  ...  + line | enclosingFunctionName | init |
+| autogenerated/TaintedPath/handlebars.js:17:16:17:38 | (line)  ...  + line | fileImports | express fs handlebars |
+| autogenerated/TaintedPath/handlebars.js:18:17:18:20 | "\\n" | CalleeFlexibleAccessPath | fs.readFileSync().split().map().join |
+| autogenerated/TaintedPath/handlebars.js:18:17:18:20 | "\\n" | InputArgumentIndex | 0 |
+| autogenerated/TaintedPath/handlebars.js:18:17:18:20 | "\\n" | calleeImports | fs |
+| autogenerated/TaintedPath/handlebars.js:18:17:18:20 | "\\n" | contextFunctionInterfaces | catFile(filePath)\ninit()\nprependToLines(prefix, filePath) |
+| autogenerated/TaintedPath/handlebars.js:18:17:18:20 | "\\n" | contextSurroundingFunctionParameters | ()\n(prefix, filePath) |
+| autogenerated/TaintedPath/handlebars.js:18:17:18:20 | "\\n" | enclosingFunctionBody | hb registerHelper catFile catFile filePath fs readFileSync filePath hb registerHelper prependToLines prependToLines prefix filePath fs readFileSync filePath split \n map line prefix line join \n data compiledFileAccess hb compile contents of file {{path}} are: {{catFile path}} data compiledBenign hb compile hello, {{name}} data compiledUnknown hb compile fs readFileSync greeting.template data compiledMixed hb compile helpers may have several args, like here: {{prependToLines prefix path}} |
+| autogenerated/TaintedPath/handlebars.js:18:17:18:20 | "\\n" | enclosingFunctionName | init |
+| autogenerated/TaintedPath/handlebars.js:18:17:18:20 | "\\n" | fileImports | express fs handlebars |
+| autogenerated/TaintedPath/handlebars.js:20:42:20:90 | "conten ... path}}" | CalleeFlexibleAccessPath | hb.compile |
+| autogenerated/TaintedPath/handlebars.js:20:42:20:90 | "conten ... path}}" | InputArgumentIndex | 0 |
+| autogenerated/TaintedPath/handlebars.js:20:42:20:90 | "conten ... path}}" | calleeImports | handlebars |
+| autogenerated/TaintedPath/handlebars.js:20:42:20:90 | "conten ... path}}" | contextFunctionInterfaces | catFile(filePath)\ninit()\nprependToLines(prefix, filePath) |
+| autogenerated/TaintedPath/handlebars.js:20:42:20:90 | "conten ... path}}" | contextSurroundingFunctionParameters | () |
+| autogenerated/TaintedPath/handlebars.js:20:42:20:90 | "conten ... path}}" | enclosingFunctionBody | hb registerHelper catFile catFile filePath fs readFileSync filePath hb registerHelper prependToLines prependToLines prefix filePath fs readFileSync filePath split \n map line prefix line join \n data compiledFileAccess hb compile contents of file {{path}} are: {{catFile path}} data compiledBenign hb compile hello, {{name}} data compiledUnknown hb compile fs readFileSync greeting.template data compiledMixed hb compile helpers may have several args, like here: {{prependToLines prefix path}} |
+| autogenerated/TaintedPath/handlebars.js:20:42:20:90 | "conten ... path}}" | enclosingFunctionName | init |
+| autogenerated/TaintedPath/handlebars.js:20:42:20:90 | "conten ... path}}" | fileImports | express fs handlebars |
+| autogenerated/TaintedPath/handlebars.js:20:42:20:90 | "conten ... path}}" | receiverName | hb |
+| autogenerated/TaintedPath/handlebars.js:21:38:21:54 | "hello, {{name}}" | CalleeFlexibleAccessPath | hb.compile |
+| autogenerated/TaintedPath/handlebars.js:21:38:21:54 | "hello, {{name}}" | InputArgumentIndex | 0 |
+| autogenerated/TaintedPath/handlebars.js:21:38:21:54 | "hello, {{name}}" | calleeImports | handlebars |
+| autogenerated/TaintedPath/handlebars.js:21:38:21:54 | "hello, {{name}}" | contextFunctionInterfaces | catFile(filePath)\ninit()\nprependToLines(prefix, filePath) |
+| autogenerated/TaintedPath/handlebars.js:21:38:21:54 | "hello, {{name}}" | contextSurroundingFunctionParameters | () |
+| autogenerated/TaintedPath/handlebars.js:21:38:21:54 | "hello, {{name}}" | enclosingFunctionBody | hb registerHelper catFile catFile filePath fs readFileSync filePath hb registerHelper prependToLines prependToLines prefix filePath fs readFileSync filePath split \n map line prefix line join \n data compiledFileAccess hb compile contents of file {{path}} are: {{catFile path}} data compiledBenign hb compile hello, {{name}} data compiledUnknown hb compile fs readFileSync greeting.template data compiledMixed hb compile helpers may have several args, like here: {{prependToLines prefix path}} |
+| autogenerated/TaintedPath/handlebars.js:21:38:21:54 | "hello, {{name}}" | enclosingFunctionName | init |
+| autogenerated/TaintedPath/handlebars.js:21:38:21:54 | "hello, {{name}}" | fileImports | express fs handlebars |
+| autogenerated/TaintedPath/handlebars.js:21:38:21:54 | "hello, {{name}}" | receiverName | hb |
+| autogenerated/TaintedPath/handlebars.js:22:39:22:74 | fs.read ... plate") | CalleeFlexibleAccessPath | hb.compile |
+| autogenerated/TaintedPath/handlebars.js:22:39:22:74 | fs.read ... plate") | InputArgumentIndex | 0 |
+| autogenerated/TaintedPath/handlebars.js:22:39:22:74 | fs.read ... plate") | calleeImports | handlebars |
+| autogenerated/TaintedPath/handlebars.js:22:39:22:74 | fs.read ... plate") | contextFunctionInterfaces | catFile(filePath)\ninit()\nprependToLines(prefix, filePath) |
+| autogenerated/TaintedPath/handlebars.js:22:39:22:74 | fs.read ... plate") | contextSurroundingFunctionParameters | () |
+| autogenerated/TaintedPath/handlebars.js:22:39:22:74 | fs.read ... plate") | enclosingFunctionBody | hb registerHelper catFile catFile filePath fs readFileSync filePath hb registerHelper prependToLines prependToLines prefix filePath fs readFileSync filePath split \n map line prefix line join \n data compiledFileAccess hb compile contents of file {{path}} are: {{catFile path}} data compiledBenign hb compile hello, {{name}} data compiledUnknown hb compile fs readFileSync greeting.template data compiledMixed hb compile helpers may have several args, like here: {{prependToLines prefix path}} |
+| autogenerated/TaintedPath/handlebars.js:22:39:22:74 | fs.read ... plate") | enclosingFunctionName | init |
+| autogenerated/TaintedPath/handlebars.js:22:39:22:74 | fs.read ... plate") | fileImports | express fs handlebars |
+| autogenerated/TaintedPath/handlebars.js:22:39:22:74 | fs.read ... plate") | receiverName | hb |
+| autogenerated/TaintedPath/handlebars.js:22:55:22:73 | "greeting.template" | CalleeFlexibleAccessPath | fs.readFileSync |
+| autogenerated/TaintedPath/handlebars.js:22:55:22:73 | "greeting.template" | InputArgumentIndex | 0 |
+| autogenerated/TaintedPath/handlebars.js:22:55:22:73 | "greeting.template" | calleeImports | fs |
+| autogenerated/TaintedPath/handlebars.js:22:55:22:73 | "greeting.template" | contextFunctionInterfaces | catFile(filePath)\ninit()\nprependToLines(prefix, filePath) |
+| autogenerated/TaintedPath/handlebars.js:22:55:22:73 | "greeting.template" | contextSurroundingFunctionParameters | () |
+| autogenerated/TaintedPath/handlebars.js:22:55:22:73 | "greeting.template" | enclosingFunctionBody | hb registerHelper catFile catFile filePath fs readFileSync filePath hb registerHelper prependToLines prependToLines prefix filePath fs readFileSync filePath split \n map line prefix line join \n data compiledFileAccess hb compile contents of file {{path}} are: {{catFile path}} data compiledBenign hb compile hello, {{name}} data compiledUnknown hb compile fs readFileSync greeting.template data compiledMixed hb compile helpers may have several args, like here: {{prependToLines prefix path}} |
+| autogenerated/TaintedPath/handlebars.js:22:55:22:73 | "greeting.template" | enclosingFunctionName | init |
+| autogenerated/TaintedPath/handlebars.js:22:55:22:73 | "greeting.template" | fileImports | express fs handlebars |
+| autogenerated/TaintedPath/handlebars.js:22:55:22:73 | "greeting.template" | receiverName | fs |
+| autogenerated/TaintedPath/handlebars.js:23:37:23:110 | "helper ... path}}" | CalleeFlexibleAccessPath | hb.compile |
+| autogenerated/TaintedPath/handlebars.js:23:37:23:110 | "helper ... path}}" | InputArgumentIndex | 0 |
+| autogenerated/TaintedPath/handlebars.js:23:37:23:110 | "helper ... path}}" | calleeImports | handlebars |
+| autogenerated/TaintedPath/handlebars.js:23:37:23:110 | "helper ... path}}" | contextFunctionInterfaces | catFile(filePath)\ninit()\nprependToLines(prefix, filePath) |
+| autogenerated/TaintedPath/handlebars.js:23:37:23:110 | "helper ... path}}" | contextSurroundingFunctionParameters | () |
+| autogenerated/TaintedPath/handlebars.js:23:37:23:110 | "helper ... path}}" | enclosingFunctionBody | hb registerHelper catFile catFile filePath fs readFileSync filePath hb registerHelper prependToLines prependToLines prefix filePath fs readFileSync filePath split \n map line prefix line join \n data compiledFileAccess hb compile contents of file {{path}} are: {{catFile path}} data compiledBenign hb compile hello, {{name}} data compiledUnknown hb compile fs readFileSync greeting.template data compiledMixed hb compile helpers may have several args, like here: {{prependToLines prefix path}} |
+| autogenerated/TaintedPath/handlebars.js:23:37:23:110 | "helper ... path}}" | enclosingFunctionName | init |
+| autogenerated/TaintedPath/handlebars.js:23:37:23:110 | "helper ... path}}" | fileImports | express fs handlebars |
+| autogenerated/TaintedPath/handlebars.js:23:37:23:110 | "helper ... path}}" | receiverName | hb |
+| autogenerated/TaintedPath/handlebars.js:28:9:28:21 | '/some/path1' | CalleeFlexibleAccessPath | app.get |
+| autogenerated/TaintedPath/handlebars.js:28:9:28:21 | '/some/path1' | InputArgumentIndex | 0 |
+| autogenerated/TaintedPath/handlebars.js:28:9:28:21 | '/some/path1' | calleeImports | express |
+| autogenerated/TaintedPath/handlebars.js:28:9:28:21 | '/some/path1' | contextFunctionInterfaces | catFile(filePath)\ninit()\nprependToLines(prefix, filePath) |
+| autogenerated/TaintedPath/handlebars.js:28:9:28:21 | '/some/path1' | contextSurroundingFunctionParameters |  |
+| autogenerated/TaintedPath/handlebars.js:28:9:28:21 | '/some/path1' | fileImports | express fs handlebars |
+| autogenerated/TaintedPath/handlebars.js:28:9:28:21 | '/some/path1' | receiverName | app |
+| autogenerated/TaintedPath/handlebars.js:28:24:30:1 | functio ... File)\\n} | CalleeFlexibleAccessPath | app.get |
+| autogenerated/TaintedPath/handlebars.js:28:24:30:1 | functio ... File)\\n} | InputArgumentIndex | 1 |
+| autogenerated/TaintedPath/handlebars.js:28:24:30:1 | functio ... File)\\n} | calleeImports | express |
+| autogenerated/TaintedPath/handlebars.js:28:24:30:1 | functio ... File)\\n} | contextFunctionInterfaces | catFile(filePath)\ninit()\nprependToLines(prefix, filePath) |
+| autogenerated/TaintedPath/handlebars.js:28:24:30:1 | functio ... File)\\n} | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/TaintedPath/handlebars.js:28:24:30:1 | functio ... File)\\n} | fileImports | express fs handlebars |
+| autogenerated/TaintedPath/handlebars.js:28:24:30:1 | functio ... File)\\n} | receiverName | app |
+| autogenerated/TaintedPath/handlebars.js:29:14:29:63 | data.co ... path }) | CalleeFlexibleAccessPath | res.send |
+| autogenerated/TaintedPath/handlebars.js:29:14:29:63 | data.co ... path }) | InputArgumentIndex | 0 |
+| autogenerated/TaintedPath/handlebars.js:29:14:29:63 | data.co ... path }) | contextFunctionInterfaces | catFile(filePath)\ninit()\nprependToLines(prefix, filePath) |
+| autogenerated/TaintedPath/handlebars.js:29:14:29:63 | data.co ... path }) | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/TaintedPath/handlebars.js:29:14:29:63 | data.co ... path }) | enclosingFunctionBody | req res res send data compiledFileAccess path req params path |
+| autogenerated/TaintedPath/handlebars.js:29:14:29:63 | data.co ... path }) | enclosingFunctionName | app.get#functionalargument |
+| autogenerated/TaintedPath/handlebars.js:29:14:29:63 | data.co ... path }) | fileImports | express fs handlebars |
+| autogenerated/TaintedPath/handlebars.js:29:14:29:63 | data.co ... path }) | receiverName | res |
+| autogenerated/TaintedPath/handlebars.js:29:38:29:62 | { path: ... .path } | CalleeFlexibleAccessPath | data.compiledFileAccess |
+| autogenerated/TaintedPath/handlebars.js:29:38:29:62 | { path: ... .path } | InputArgumentIndex | 0 |
+| autogenerated/TaintedPath/handlebars.js:29:38:29:62 | { path: ... .path } | contextFunctionInterfaces | catFile(filePath)\ninit()\nprependToLines(prefix, filePath) |
+| autogenerated/TaintedPath/handlebars.js:29:38:29:62 | { path: ... .path } | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/TaintedPath/handlebars.js:29:38:29:62 | { path: ... .path } | enclosingFunctionBody | req res res send data compiledFileAccess path req params path |
+| autogenerated/TaintedPath/handlebars.js:29:38:29:62 | { path: ... .path } | enclosingFunctionName | app.get#functionalargument |
+| autogenerated/TaintedPath/handlebars.js:29:38:29:62 | { path: ... .path } | fileImports | express fs handlebars |
+| autogenerated/TaintedPath/handlebars.js:29:38:29:62 | { path: ... .path } | receiverName | data |
+| autogenerated/TaintedPath/handlebars.js:29:46:29:60 | req.params.path | CalleeFlexibleAccessPath | data.compiledFileAccess |
+| autogenerated/TaintedPath/handlebars.js:29:46:29:60 | req.params.path | InputAccessPathFromCallee | 0.path |
+| autogenerated/TaintedPath/handlebars.js:29:46:29:60 | req.params.path | InputArgumentIndex | 0 |
+| autogenerated/TaintedPath/handlebars.js:29:46:29:60 | req.params.path | assignedToPropName | path |
+| autogenerated/TaintedPath/handlebars.js:29:46:29:60 | req.params.path | contextFunctionInterfaces | catFile(filePath)\ninit()\nprependToLines(prefix, filePath) |
+| autogenerated/TaintedPath/handlebars.js:29:46:29:60 | req.params.path | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/TaintedPath/handlebars.js:29:46:29:60 | req.params.path | enclosingFunctionBody | req res res send data compiledFileAccess path req params path |
+| autogenerated/TaintedPath/handlebars.js:29:46:29:60 | req.params.path | enclosingFunctionName | app.get#functionalargument |
+| autogenerated/TaintedPath/handlebars.js:29:46:29:60 | req.params.path | fileImports | express fs handlebars |
+| autogenerated/TaintedPath/handlebars.js:32:9:32:21 | '/some/path2' | CalleeFlexibleAccessPath | app.get |
+| autogenerated/TaintedPath/handlebars.js:32:9:32:21 | '/some/path2' | InputArgumentIndex | 0 |
+| autogenerated/TaintedPath/handlebars.js:32:9:32:21 | '/some/path2' | calleeImports | express |
+| autogenerated/TaintedPath/handlebars.js:32:9:32:21 | '/some/path2' | contextFunctionInterfaces | catFile(filePath)\ninit()\nprependToLines(prefix, filePath) |
+| autogenerated/TaintedPath/handlebars.js:32:9:32:21 | '/some/path2' | contextSurroundingFunctionParameters |  |
+| autogenerated/TaintedPath/handlebars.js:32:9:32:21 | '/some/path2' | fileImports | express fs handlebars |
+| autogenerated/TaintedPath/handlebars.js:32:9:32:21 | '/some/path2' | receiverName | app |
+| autogenerated/TaintedPath/handlebars.js:32:24:34:1 | functio ... File)\\n} | CalleeFlexibleAccessPath | app.get |
+| autogenerated/TaintedPath/handlebars.js:32:24:34:1 | functio ... File)\\n} | InputArgumentIndex | 1 |
+| autogenerated/TaintedPath/handlebars.js:32:24:34:1 | functio ... File)\\n} | calleeImports | express |
+| autogenerated/TaintedPath/handlebars.js:32:24:34:1 | functio ... File)\\n} | contextFunctionInterfaces | catFile(filePath)\ninit()\nprependToLines(prefix, filePath) |
+| autogenerated/TaintedPath/handlebars.js:32:24:34:1 | functio ... File)\\n} | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/TaintedPath/handlebars.js:32:24:34:1 | functio ... File)\\n} | fileImports | express fs handlebars |
+| autogenerated/TaintedPath/handlebars.js:32:24:34:1 | functio ... File)\\n} | receiverName | app |
+| autogenerated/TaintedPath/handlebars.js:33:14:33:59 | data.co ... name }) | CalleeFlexibleAccessPath | res.send |
+| autogenerated/TaintedPath/handlebars.js:33:14:33:59 | data.co ... name }) | InputArgumentIndex | 0 |
+| autogenerated/TaintedPath/handlebars.js:33:14:33:59 | data.co ... name }) | contextFunctionInterfaces | catFile(filePath)\ninit()\nprependToLines(prefix, filePath) |
+| autogenerated/TaintedPath/handlebars.js:33:14:33:59 | data.co ... name }) | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/TaintedPath/handlebars.js:33:14:33:59 | data.co ... name }) | enclosingFunctionBody | req res res send data compiledBenign name req params name |
+| autogenerated/TaintedPath/handlebars.js:33:14:33:59 | data.co ... name }) | enclosingFunctionName | app.get#functionalargument |
+| autogenerated/TaintedPath/handlebars.js:33:14:33:59 | data.co ... name }) | fileImports | express fs handlebars |
+| autogenerated/TaintedPath/handlebars.js:33:14:33:59 | data.co ... name }) | receiverName | res |
+| autogenerated/TaintedPath/handlebars.js:33:34:33:58 | { name: ... .name } | CalleeFlexibleAccessPath | data.compiledBenign |
+| autogenerated/TaintedPath/handlebars.js:33:34:33:58 | { name: ... .name } | InputArgumentIndex | 0 |
+| autogenerated/TaintedPath/handlebars.js:33:34:33:58 | { name: ... .name } | contextFunctionInterfaces | catFile(filePath)\ninit()\nprependToLines(prefix, filePath) |
+| autogenerated/TaintedPath/handlebars.js:33:34:33:58 | { name: ... .name } | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/TaintedPath/handlebars.js:33:34:33:58 | { name: ... .name } | enclosingFunctionBody | req res res send data compiledBenign name req params name |
+| autogenerated/TaintedPath/handlebars.js:33:34:33:58 | { name: ... .name } | enclosingFunctionName | app.get#functionalargument |
+| autogenerated/TaintedPath/handlebars.js:33:34:33:58 | { name: ... .name } | fileImports | express fs handlebars |
+| autogenerated/TaintedPath/handlebars.js:33:34:33:58 | { name: ... .name } | receiverName | data |
+| autogenerated/TaintedPath/handlebars.js:33:42:33:56 | req.params.name | CalleeFlexibleAccessPath | data.compiledBenign |
+| autogenerated/TaintedPath/handlebars.js:33:42:33:56 | req.params.name | InputAccessPathFromCallee | 0.name |
+| autogenerated/TaintedPath/handlebars.js:33:42:33:56 | req.params.name | InputArgumentIndex | 0 |
+| autogenerated/TaintedPath/handlebars.js:33:42:33:56 | req.params.name | assignedToPropName | name |
+| autogenerated/TaintedPath/handlebars.js:33:42:33:56 | req.params.name | contextFunctionInterfaces | catFile(filePath)\ninit()\nprependToLines(prefix, filePath) |
+| autogenerated/TaintedPath/handlebars.js:33:42:33:56 | req.params.name | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/TaintedPath/handlebars.js:33:42:33:56 | req.params.name | enclosingFunctionBody | req res res send data compiledBenign name req params name |
+| autogenerated/TaintedPath/handlebars.js:33:42:33:56 | req.params.name | enclosingFunctionName | app.get#functionalargument |
+| autogenerated/TaintedPath/handlebars.js:33:42:33:56 | req.params.name | fileImports | express fs handlebars |
+| autogenerated/TaintedPath/handlebars.js:36:9:36:21 | '/some/path3' | CalleeFlexibleAccessPath | app.get |
+| autogenerated/TaintedPath/handlebars.js:36:9:36:21 | '/some/path3' | InputArgumentIndex | 0 |
+| autogenerated/TaintedPath/handlebars.js:36:9:36:21 | '/some/path3' | calleeImports | express |
+| autogenerated/TaintedPath/handlebars.js:36:9:36:21 | '/some/path3' | contextFunctionInterfaces | catFile(filePath)\ninit()\nprependToLines(prefix, filePath) |
+| autogenerated/TaintedPath/handlebars.js:36:9:36:21 | '/some/path3' | contextSurroundingFunctionParameters |  |
+| autogenerated/TaintedPath/handlebars.js:36:9:36:21 | '/some/path3' | fileImports | express fs handlebars |
+| autogenerated/TaintedPath/handlebars.js:36:9:36:21 | '/some/path3' | receiverName | app |
+| autogenerated/TaintedPath/handlebars.js:36:24:38:1 | functio ... s ok)\\n} | CalleeFlexibleAccessPath | app.get |
+| autogenerated/TaintedPath/handlebars.js:36:24:38:1 | functio ... s ok)\\n} | InputArgumentIndex | 1 |
+| autogenerated/TaintedPath/handlebars.js:36:24:38:1 | functio ... s ok)\\n} | calleeImports | express |
+| autogenerated/TaintedPath/handlebars.js:36:24:38:1 | functio ... s ok)\\n} | contextFunctionInterfaces | catFile(filePath)\ninit()\nprependToLines(prefix, filePath) |
+| autogenerated/TaintedPath/handlebars.js:36:24:38:1 | functio ... s ok)\\n} | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/TaintedPath/handlebars.js:36:24:38:1 | functio ... s ok)\\n} | fileImports | express fs handlebars |
+| autogenerated/TaintedPath/handlebars.js:36:24:38:1 | functio ... s ok)\\n} | receiverName | app |
+| autogenerated/TaintedPath/handlebars.js:37:14:37:60 | data.co ... name }) | CalleeFlexibleAccessPath | res.send |
+| autogenerated/TaintedPath/handlebars.js:37:14:37:60 | data.co ... name }) | InputArgumentIndex | 0 |
+| autogenerated/TaintedPath/handlebars.js:37:14:37:60 | data.co ... name }) | contextFunctionInterfaces | catFile(filePath)\ninit()\nprependToLines(prefix, filePath) |
+| autogenerated/TaintedPath/handlebars.js:37:14:37:60 | data.co ... name }) | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/TaintedPath/handlebars.js:37:14:37:60 | data.co ... name }) | enclosingFunctionBody | req res res send data compiledUnknown name req params name |
+| autogenerated/TaintedPath/handlebars.js:37:14:37:60 | data.co ... name }) | enclosingFunctionName | app.get#functionalargument |
+| autogenerated/TaintedPath/handlebars.js:37:14:37:60 | data.co ... name }) | fileImports | express fs handlebars |
+| autogenerated/TaintedPath/handlebars.js:37:14:37:60 | data.co ... name }) | receiverName | res |
+| autogenerated/TaintedPath/handlebars.js:37:35:37:59 | { name: ... .name } | CalleeFlexibleAccessPath | data.compiledUnknown |
+| autogenerated/TaintedPath/handlebars.js:37:35:37:59 | { name: ... .name } | InputArgumentIndex | 0 |
+| autogenerated/TaintedPath/handlebars.js:37:35:37:59 | { name: ... .name } | contextFunctionInterfaces | catFile(filePath)\ninit()\nprependToLines(prefix, filePath) |
+| autogenerated/TaintedPath/handlebars.js:37:35:37:59 | { name: ... .name } | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/TaintedPath/handlebars.js:37:35:37:59 | { name: ... .name } | enclosingFunctionBody | req res res send data compiledUnknown name req params name |
+| autogenerated/TaintedPath/handlebars.js:37:35:37:59 | { name: ... .name } | enclosingFunctionName | app.get#functionalargument |
+| autogenerated/TaintedPath/handlebars.js:37:35:37:59 | { name: ... .name } | fileImports | express fs handlebars |
+| autogenerated/TaintedPath/handlebars.js:37:35:37:59 | { name: ... .name } | receiverName | data |
+| autogenerated/TaintedPath/handlebars.js:37:43:37:57 | req.params.name | CalleeFlexibleAccessPath | data.compiledUnknown |
+| autogenerated/TaintedPath/handlebars.js:37:43:37:57 | req.params.name | InputAccessPathFromCallee | 0.name |
+| autogenerated/TaintedPath/handlebars.js:37:43:37:57 | req.params.name | InputArgumentIndex | 0 |
+| autogenerated/TaintedPath/handlebars.js:37:43:37:57 | req.params.name | assignedToPropName | name |
+| autogenerated/TaintedPath/handlebars.js:37:43:37:57 | req.params.name | contextFunctionInterfaces | catFile(filePath)\ninit()\nprependToLines(prefix, filePath) |
+| autogenerated/TaintedPath/handlebars.js:37:43:37:57 | req.params.name | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/TaintedPath/handlebars.js:37:43:37:57 | req.params.name | enclosingFunctionBody | req res res send data compiledUnknown name req params name |
+| autogenerated/TaintedPath/handlebars.js:37:43:37:57 | req.params.name | enclosingFunctionName | app.get#functionalargument |
+| autogenerated/TaintedPath/handlebars.js:37:43:37:57 | req.params.name | fileImports | express fs handlebars |
+| autogenerated/TaintedPath/handlebars.js:40:9:40:21 | '/some/path4' | CalleeFlexibleAccessPath | app.get |
+| autogenerated/TaintedPath/handlebars.js:40:9:40:21 | '/some/path4' | InputArgumentIndex | 0 |
+| autogenerated/TaintedPath/handlebars.js:40:9:40:21 | '/some/path4' | calleeImports | express |
+| autogenerated/TaintedPath/handlebars.js:40:9:40:21 | '/some/path4' | contextFunctionInterfaces | catFile(filePath)\ninit()\nprependToLines(prefix, filePath) |
+| autogenerated/TaintedPath/handlebars.js:40:9:40:21 | '/some/path4' | contextSurroundingFunctionParameters |  |
+| autogenerated/TaintedPath/handlebars.js:40:9:40:21 | '/some/path4' | fileImports | express fs handlebars |
+| autogenerated/TaintedPath/handlebars.js:40:9:40:21 | '/some/path4' | receiverName | app |
+| autogenerated/TaintedPath/handlebars.js:40:24:45:1 | functio ...  }));\\n} | CalleeFlexibleAccessPath | app.get |
+| autogenerated/TaintedPath/handlebars.js:40:24:45:1 | functio ...  }));\\n} | InputArgumentIndex | 1 |
+| autogenerated/TaintedPath/handlebars.js:40:24:45:1 | functio ...  }));\\n} | calleeImports | express |
+| autogenerated/TaintedPath/handlebars.js:40:24:45:1 | functio ...  }));\\n} | contextFunctionInterfaces | catFile(filePath)\ninit()\nprependToLines(prefix, filePath) |
+| autogenerated/TaintedPath/handlebars.js:40:24:45:1 | functio ...  }));\\n} | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/TaintedPath/handlebars.js:40:24:45:1 | functio ...  }));\\n} | fileImports | express fs handlebars |
+| autogenerated/TaintedPath/handlebars.js:40:24:45:1 | functio ...  }));\\n} | receiverName | app |
+| autogenerated/TaintedPath/handlebars.js:41:14:44:6 | data.co ... \\n    }) | CalleeFlexibleAccessPath | res.send |
+| autogenerated/TaintedPath/handlebars.js:41:14:44:6 | data.co ... \\n    }) | InputArgumentIndex | 0 |
+| autogenerated/TaintedPath/handlebars.js:41:14:44:6 | data.co ... \\n    }) | contextFunctionInterfaces | catFile(filePath)\ninit()\nprependToLines(prefix, filePath) |
+| autogenerated/TaintedPath/handlebars.js:41:14:44:6 | data.co ... \\n    }) | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/TaintedPath/handlebars.js:41:14:44:6 | data.co ... \\n    }) | enclosingFunctionBody | req res res send data compiledMixed prefix >>>  path req params path |
+| autogenerated/TaintedPath/handlebars.js:41:14:44:6 | data.co ... \\n    }) | enclosingFunctionName | app.get#functionalargument |
+| autogenerated/TaintedPath/handlebars.js:41:14:44:6 | data.co ... \\n    }) | fileImports | express fs handlebars |
+| autogenerated/TaintedPath/handlebars.js:41:14:44:6 | data.co ... \\n    }) | receiverName | res |
+| autogenerated/TaintedPath/handlebars.js:41:33:44:5 | {\\n      ... )\\n    } | CalleeFlexibleAccessPath | data.compiledMixed |
+| autogenerated/TaintedPath/handlebars.js:41:33:44:5 | {\\n      ... )\\n    } | InputArgumentIndex | 0 |
+| autogenerated/TaintedPath/handlebars.js:41:33:44:5 | {\\n      ... )\\n    } | contextFunctionInterfaces | catFile(filePath)\ninit()\nprependToLines(prefix, filePath) |
+| autogenerated/TaintedPath/handlebars.js:41:33:44:5 | {\\n      ... )\\n    } | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/TaintedPath/handlebars.js:41:33:44:5 | {\\n      ... )\\n    } | enclosingFunctionBody | req res res send data compiledMixed prefix >>>  path req params path |
+| autogenerated/TaintedPath/handlebars.js:41:33:44:5 | {\\n      ... )\\n    } | enclosingFunctionName | app.get#functionalargument |
+| autogenerated/TaintedPath/handlebars.js:41:33:44:5 | {\\n      ... )\\n    } | fileImports | express fs handlebars |
+| autogenerated/TaintedPath/handlebars.js:41:33:44:5 | {\\n      ... )\\n    } | receiverName | data |
+| autogenerated/TaintedPath/handlebars.js:42:17:42:22 | ">>> " | CalleeFlexibleAccessPath | data.compiledMixed |
+| autogenerated/TaintedPath/handlebars.js:42:17:42:22 | ">>> " | InputAccessPathFromCallee | 0.prefix |
+| autogenerated/TaintedPath/handlebars.js:42:17:42:22 | ">>> " | InputArgumentIndex | 0 |
+| autogenerated/TaintedPath/handlebars.js:42:17:42:22 | ">>> " | assignedToPropName | prefix |
+| autogenerated/TaintedPath/handlebars.js:42:17:42:22 | ">>> " | contextFunctionInterfaces | catFile(filePath)\ninit()\nprependToLines(prefix, filePath) |
+| autogenerated/TaintedPath/handlebars.js:42:17:42:22 | ">>> " | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/TaintedPath/handlebars.js:42:17:42:22 | ">>> " | enclosingFunctionBody | req res res send data compiledMixed prefix >>>  path req params path |
+| autogenerated/TaintedPath/handlebars.js:42:17:42:22 | ">>> " | enclosingFunctionName | app.get#functionalargument |
+| autogenerated/TaintedPath/handlebars.js:42:17:42:22 | ">>> " | fileImports | express fs handlebars |
+| autogenerated/TaintedPath/handlebars.js:43:15:43:29 | req.params.path | CalleeFlexibleAccessPath | data.compiledMixed |
+| autogenerated/TaintedPath/handlebars.js:43:15:43:29 | req.params.path | InputAccessPathFromCallee | 0.path |
+| autogenerated/TaintedPath/handlebars.js:43:15:43:29 | req.params.path | InputArgumentIndex | 0 |
+| autogenerated/TaintedPath/handlebars.js:43:15:43:29 | req.params.path | assignedToPropName | path |
+| autogenerated/TaintedPath/handlebars.js:43:15:43:29 | req.params.path | contextFunctionInterfaces | catFile(filePath)\ninit()\nprependToLines(prefix, filePath) |
+| autogenerated/TaintedPath/handlebars.js:43:15:43:29 | req.params.path | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/TaintedPath/handlebars.js:43:15:43:29 | req.params.path | enclosingFunctionBody | req res res send data compiledMixed prefix >>>  path req params path |
+| autogenerated/TaintedPath/handlebars.js:43:15:43:29 | req.params.path | enclosingFunctionName | app.get#functionalargument |
+| autogenerated/TaintedPath/handlebars.js:43:15:43:29 | req.params.path | fileImports | express fs handlebars |
+| autogenerated/TaintedPath/handlebars.js:47:9:47:21 | '/some/path5' | CalleeFlexibleAccessPath | app.get |
+| autogenerated/TaintedPath/handlebars.js:47:9:47:21 | '/some/path5' | InputArgumentIndex | 0 |
+| autogenerated/TaintedPath/handlebars.js:47:9:47:21 | '/some/path5' | calleeImports | express |
+| autogenerated/TaintedPath/handlebars.js:47:9:47:21 | '/some/path5' | contextFunctionInterfaces | catFile(filePath)\ninit()\nprependToLines(prefix, filePath) |
+| autogenerated/TaintedPath/handlebars.js:47:9:47:21 | '/some/path5' | contextSurroundingFunctionParameters |  |
+| autogenerated/TaintedPath/handlebars.js:47:9:47:21 | '/some/path5' | fileImports | express fs handlebars |
+| autogenerated/TaintedPath/handlebars.js:47:9:47:21 | '/some/path5' | receiverName | app |
+| autogenerated/TaintedPath/handlebars.js:47:24:52:1 | functio ...  }));\\n} | CalleeFlexibleAccessPath | app.get |
+| autogenerated/TaintedPath/handlebars.js:47:24:52:1 | functio ...  }));\\n} | InputArgumentIndex | 1 |
+| autogenerated/TaintedPath/handlebars.js:47:24:52:1 | functio ...  }));\\n} | calleeImports | express |
+| autogenerated/TaintedPath/handlebars.js:47:24:52:1 | functio ...  }));\\n} | contextFunctionInterfaces | catFile(filePath)\ninit()\nprependToLines(prefix, filePath) |
+| autogenerated/TaintedPath/handlebars.js:47:24:52:1 | functio ...  }));\\n} | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/TaintedPath/handlebars.js:47:24:52:1 | functio ...  }));\\n} | fileImports | express fs handlebars |
+| autogenerated/TaintedPath/handlebars.js:47:24:52:1 | functio ...  }));\\n} | receiverName | app |
+| autogenerated/TaintedPath/handlebars.js:48:14:51:6 | data.co ... \\n    }) | CalleeFlexibleAccessPath | res.send |
+| autogenerated/TaintedPath/handlebars.js:48:14:51:6 | data.co ... \\n    }) | InputArgumentIndex | 0 |
+| autogenerated/TaintedPath/handlebars.js:48:14:51:6 | data.co ... \\n    }) | contextFunctionInterfaces | catFile(filePath)\ninit()\nprependToLines(prefix, filePath) |
+| autogenerated/TaintedPath/handlebars.js:48:14:51:6 | data.co ... \\n    }) | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/TaintedPath/handlebars.js:48:14:51:6 | data.co ... \\n    }) | enclosingFunctionBody | req res res send data compiledMixed prefix req params prefix path data/path-5.txt |
+| autogenerated/TaintedPath/handlebars.js:48:14:51:6 | data.co ... \\n    }) | enclosingFunctionName | app.get#functionalargument |
+| autogenerated/TaintedPath/handlebars.js:48:14:51:6 | data.co ... \\n    }) | fileImports | express fs handlebars |
+| autogenerated/TaintedPath/handlebars.js:48:14:51:6 | data.co ... \\n    }) | receiverName | res |
+| autogenerated/TaintedPath/handlebars.js:48:33:51:5 | {\\n      ... "\\n    } | CalleeFlexibleAccessPath | data.compiledMixed |
+| autogenerated/TaintedPath/handlebars.js:48:33:51:5 | {\\n      ... "\\n    } | InputArgumentIndex | 0 |
+| autogenerated/TaintedPath/handlebars.js:48:33:51:5 | {\\n      ... "\\n    } | contextFunctionInterfaces | catFile(filePath)\ninit()\nprependToLines(prefix, filePath) |
+| autogenerated/TaintedPath/handlebars.js:48:33:51:5 | {\\n      ... "\\n    } | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/TaintedPath/handlebars.js:48:33:51:5 | {\\n      ... "\\n    } | enclosingFunctionBody | req res res send data compiledMixed prefix req params prefix path data/path-5.txt |
+| autogenerated/TaintedPath/handlebars.js:48:33:51:5 | {\\n      ... "\\n    } | enclosingFunctionName | app.get#functionalargument |
+| autogenerated/TaintedPath/handlebars.js:48:33:51:5 | {\\n      ... "\\n    } | fileImports | express fs handlebars |
+| autogenerated/TaintedPath/handlebars.js:48:33:51:5 | {\\n      ... "\\n    } | receiverName | data |
+| autogenerated/TaintedPath/handlebars.js:49:17:49:33 | req.params.prefix | CalleeFlexibleAccessPath | data.compiledMixed |
+| autogenerated/TaintedPath/handlebars.js:49:17:49:33 | req.params.prefix | InputAccessPathFromCallee | 0.prefix |
+| autogenerated/TaintedPath/handlebars.js:49:17:49:33 | req.params.prefix | InputArgumentIndex | 0 |
+| autogenerated/TaintedPath/handlebars.js:49:17:49:33 | req.params.prefix | assignedToPropName | prefix |
+| autogenerated/TaintedPath/handlebars.js:49:17:49:33 | req.params.prefix | contextFunctionInterfaces | catFile(filePath)\ninit()\nprependToLines(prefix, filePath) |
+| autogenerated/TaintedPath/handlebars.js:49:17:49:33 | req.params.prefix | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/TaintedPath/handlebars.js:49:17:49:33 | req.params.prefix | enclosingFunctionBody | req res res send data compiledMixed prefix req params prefix path data/path-5.txt |
+| autogenerated/TaintedPath/handlebars.js:49:17:49:33 | req.params.prefix | enclosingFunctionName | app.get#functionalargument |
+| autogenerated/TaintedPath/handlebars.js:49:17:49:33 | req.params.prefix | fileImports | express fs handlebars |
+| autogenerated/TaintedPath/handlebars.js:50:15:50:31 | "data/path-5.txt" | CalleeFlexibleAccessPath | data.compiledMixed |
+| autogenerated/TaintedPath/handlebars.js:50:15:50:31 | "data/path-5.txt" | InputAccessPathFromCallee | 0.path |
+| autogenerated/TaintedPath/handlebars.js:50:15:50:31 | "data/path-5.txt" | InputArgumentIndex | 0 |
+| autogenerated/TaintedPath/handlebars.js:50:15:50:31 | "data/path-5.txt" | assignedToPropName | path |
+| autogenerated/TaintedPath/handlebars.js:50:15:50:31 | "data/path-5.txt" | contextFunctionInterfaces | catFile(filePath)\ninit()\nprependToLines(prefix, filePath) |
+| autogenerated/TaintedPath/handlebars.js:50:15:50:31 | "data/path-5.txt" | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/TaintedPath/handlebars.js:50:15:50:31 | "data/path-5.txt" | enclosingFunctionBody | req res res send data compiledMixed prefix req params prefix path data/path-5.txt |
+| autogenerated/TaintedPath/handlebars.js:50:15:50:31 | "data/path-5.txt" | enclosingFunctionName | app.get#functionalargument |
+| autogenerated/TaintedPath/handlebars.js:50:15:50:31 | "data/path-5.txt" | fileImports | express fs handlebars |
 | autogenerated/TaintedPath/my-async-fs-module.js:1:20:1:23 | 'fs' | CalleeFlexibleAccessPath | require |
 | autogenerated/TaintedPath/my-async-fs-module.js:1:20:1:23 | 'fs' | InputArgumentIndex | 0 |
 | autogenerated/TaintedPath/my-async-fs-module.js:1:20:1:23 | 'fs' | calleeImports |  |
@@ -5660,44 +7399,44 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:1:18:1:21 | 'fs' | calleeImports |  |
 | autogenerated/TaintedPath/normalizedPaths.js:1:18:1:21 | 'fs' | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
 | autogenerated/TaintedPath/normalizedPaths.js:1:18:1:21 | 'fs' | contextSurroundingFunctionParameters |  |
-| autogenerated/TaintedPath/normalizedPaths.js:1:18:1:21 | 'fs' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:1:18:1:21 | 'fs' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:2:23:2:31 | 'express' | CalleeFlexibleAccessPath | require |
 | autogenerated/TaintedPath/normalizedPaths.js:2:23:2:31 | 'express' | InputArgumentIndex | 0 |
 | autogenerated/TaintedPath/normalizedPaths.js:2:23:2:31 | 'express' | calleeImports |  |
 | autogenerated/TaintedPath/normalizedPaths.js:2:23:2:31 | 'express' | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
 | autogenerated/TaintedPath/normalizedPaths.js:2:23:2:31 | 'express' | contextSurroundingFunctionParameters |  |
-| autogenerated/TaintedPath/normalizedPaths.js:2:23:2:31 | 'express' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:2:23:2:31 | 'express' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:3:19:3:23 | 'url' | CalleeFlexibleAccessPath | require |
 | autogenerated/TaintedPath/normalizedPaths.js:3:19:3:23 | 'url' | InputArgumentIndex | 0 |
 | autogenerated/TaintedPath/normalizedPaths.js:3:19:3:23 | 'url' | calleeImports |  |
 | autogenerated/TaintedPath/normalizedPaths.js:3:19:3:23 | 'url' | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
 | autogenerated/TaintedPath/normalizedPaths.js:3:19:3:23 | 'url' | contextSurroundingFunctionParameters |  |
-| autogenerated/TaintedPath/normalizedPaths.js:3:19:3:23 | 'url' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:3:19:3:23 | 'url' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:4:24:4:42 | 'sanitize-filename' | CalleeFlexibleAccessPath | require |
 | autogenerated/TaintedPath/normalizedPaths.js:4:24:4:42 | 'sanitize-filename' | InputArgumentIndex | 0 |
 | autogenerated/TaintedPath/normalizedPaths.js:4:24:4:42 | 'sanitize-filename' | calleeImports |  |
 | autogenerated/TaintedPath/normalizedPaths.js:4:24:4:42 | 'sanitize-filename' | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
 | autogenerated/TaintedPath/normalizedPaths.js:4:24:4:42 | 'sanitize-filename' | contextSurroundingFunctionParameters |  |
-| autogenerated/TaintedPath/normalizedPaths.js:4:24:4:42 | 'sanitize-filename' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:4:24:4:42 | 'sanitize-filename' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:5:26:5:31 | 'path' | CalleeFlexibleAccessPath | require |
 | autogenerated/TaintedPath/normalizedPaths.js:5:26:5:31 | 'path' | InputArgumentIndex | 0 |
 | autogenerated/TaintedPath/normalizedPaths.js:5:26:5:31 | 'path' | calleeImports |  |
 | autogenerated/TaintedPath/normalizedPaths.js:5:26:5:31 | 'path' | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
 | autogenerated/TaintedPath/normalizedPaths.js:5:26:5:31 | 'path' | contextSurroundingFunctionParameters |  |
-| autogenerated/TaintedPath/normalizedPaths.js:5:26:5:31 | 'path' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:5:26:5:31 | 'path' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:10:9:10:16 | '/basic' | CalleeFlexibleAccessPath | app.get |
 | autogenerated/TaintedPath/normalizedPaths.js:10:9:10:16 | '/basic' | InputArgumentIndex | 0 |
 | autogenerated/TaintedPath/normalizedPaths.js:10:9:10:16 | '/basic' | calleeImports | express |
 | autogenerated/TaintedPath/normalizedPaths.js:10:9:10:16 | '/basic' | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
 | autogenerated/TaintedPath/normalizedPaths.js:10:9:10:16 | '/basic' | contextSurroundingFunctionParameters |  |
-| autogenerated/TaintedPath/normalizedPaths.js:10:9:10:16 | '/basic' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:10:9:10:16 | '/basic' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:10:9:10:16 | '/basic' | receiverName | app |
 | autogenerated/TaintedPath/normalizedPaths.js:10:19:18:1 | (req, r ... OT OK\\n} | CalleeFlexibleAccessPath | app.get |
 | autogenerated/TaintedPath/normalizedPaths.js:10:19:18:1 | (req, r ... OT OK\\n} | InputArgumentIndex | 1 |
 | autogenerated/TaintedPath/normalizedPaths.js:10:19:18:1 | (req, r ... OT OK\\n} | calleeImports | express |
 | autogenerated/TaintedPath/normalizedPaths.js:10:19:18:1 | (req, r ... OT OK\\n} | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
 | autogenerated/TaintedPath/normalizedPaths.js:10:19:18:1 | (req, r ... OT OK\\n} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:10:19:18:1 | (req, r ... OT OK\\n} | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:10:19:18:1 | (req, r ... OT OK\\n} | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:10:19:18:1 | (req, r ... OT OK\\n} | receiverName | app |
 | autogenerated/TaintedPath/normalizedPaths.js:13:19:13:22 | path | CalleeFlexibleAccessPath | fs.readFileSync |
 | autogenerated/TaintedPath/normalizedPaths.js:13:19:13:22 | path | InputArgumentIndex | 0 |
@@ -5706,7 +7445,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:13:19:13:22 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:13:19:13:22 | path | enclosingFunctionBody | req res path req query path fs readFileSync path fs readFileSync ./ path fs readFileSync path /index.html fs readFileSync pathModule join path index.html fs readFileSync pathModule join /home/user/www path |
 | autogenerated/TaintedPath/normalizedPaths.js:13:19:13:22 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:13:19:13:22 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:13:19:13:22 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:13:19:13:22 | path | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:14:19:14:29 | './' + path | CalleeFlexibleAccessPath | fs.readFileSync |
 | autogenerated/TaintedPath/normalizedPaths.js:14:19:14:29 | './' + path | InputArgumentIndex | 0 |
@@ -5715,7 +7454,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:14:19:14:29 | './' + path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:14:19:14:29 | './' + path | enclosingFunctionBody | req res path req query path fs readFileSync path fs readFileSync ./ path fs readFileSync path /index.html fs readFileSync pathModule join path index.html fs readFileSync pathModule join /home/user/www path |
 | autogenerated/TaintedPath/normalizedPaths.js:14:19:14:29 | './' + path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:14:19:14:29 | './' + path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:14:19:14:29 | './' + path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:14:19:14:29 | './' + path | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:15:19:15:38 | path + '/index.html' | CalleeFlexibleAccessPath | fs.readFileSync |
 | autogenerated/TaintedPath/normalizedPaths.js:15:19:15:38 | path + '/index.html' | InputArgumentIndex | 0 |
@@ -5724,7 +7463,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:15:19:15:38 | path + '/index.html' | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:15:19:15:38 | path + '/index.html' | enclosingFunctionBody | req res path req query path fs readFileSync path fs readFileSync ./ path fs readFileSync path /index.html fs readFileSync pathModule join path index.html fs readFileSync pathModule join /home/user/www path |
 | autogenerated/TaintedPath/normalizedPaths.js:15:19:15:38 | path + '/index.html' | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:15:19:15:38 | path + '/index.html' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:15:19:15:38 | path + '/index.html' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:15:19:15:38 | path + '/index.html' | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:16:19:16:53 | pathMod ... .html') | CalleeFlexibleAccessPath | fs.readFileSync |
 | autogenerated/TaintedPath/normalizedPaths.js:16:19:16:53 | pathMod ... .html') | InputArgumentIndex | 0 |
@@ -5733,7 +7472,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:16:19:16:53 | pathMod ... .html') | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:16:19:16:53 | pathMod ... .html') | enclosingFunctionBody | req res path req query path fs readFileSync path fs readFileSync ./ path fs readFileSync path /index.html fs readFileSync pathModule join path index.html fs readFileSync pathModule join /home/user/www path |
 | autogenerated/TaintedPath/normalizedPaths.js:16:19:16:53 | pathMod ... .html') | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:16:19:16:53 | pathMod ... .html') | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:16:19:16:53 | pathMod ... .html') | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:16:19:16:53 | pathMod ... .html') | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:16:35:16:38 | path | CalleeFlexibleAccessPath | pathModule.join |
 | autogenerated/TaintedPath/normalizedPaths.js:16:35:16:38 | path | InputArgumentIndex | 0 |
@@ -5742,7 +7481,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:16:35:16:38 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:16:35:16:38 | path | enclosingFunctionBody | req res path req query path fs readFileSync path fs readFileSync ./ path fs readFileSync path /index.html fs readFileSync pathModule join path index.html fs readFileSync pathModule join /home/user/www path |
 | autogenerated/TaintedPath/normalizedPaths.js:16:35:16:38 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:16:35:16:38 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:16:35:16:38 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:16:35:16:38 | path | receiverName | pathModule |
 | autogenerated/TaintedPath/normalizedPaths.js:16:41:16:52 | 'index.html' | CalleeFlexibleAccessPath | pathModule.join |
 | autogenerated/TaintedPath/normalizedPaths.js:16:41:16:52 | 'index.html' | InputArgumentIndex | 1 |
@@ -5751,7 +7490,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:16:41:16:52 | 'index.html' | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:16:41:16:52 | 'index.html' | enclosingFunctionBody | req res path req query path fs readFileSync path fs readFileSync ./ path fs readFileSync path /index.html fs readFileSync pathModule join path index.html fs readFileSync pathModule join /home/user/www path |
 | autogenerated/TaintedPath/normalizedPaths.js:16:41:16:52 | 'index.html' | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:16:41:16:52 | 'index.html' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:16:41:16:52 | 'index.html' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:16:41:16:52 | 'index.html' | receiverName | pathModule |
 | autogenerated/TaintedPath/normalizedPaths.js:17:19:17:57 | pathMod ... , path) | CalleeFlexibleAccessPath | fs.readFileSync |
 | autogenerated/TaintedPath/normalizedPaths.js:17:19:17:57 | pathMod ... , path) | InputArgumentIndex | 0 |
@@ -5760,7 +7499,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:17:19:17:57 | pathMod ... , path) | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:17:19:17:57 | pathMod ... , path) | enclosingFunctionBody | req res path req query path fs readFileSync path fs readFileSync ./ path fs readFileSync path /index.html fs readFileSync pathModule join path index.html fs readFileSync pathModule join /home/user/www path |
 | autogenerated/TaintedPath/normalizedPaths.js:17:19:17:57 | pathMod ... , path) | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:17:19:17:57 | pathMod ... , path) | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:17:19:17:57 | pathMod ... , path) | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:17:19:17:57 | pathMod ... , path) | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:17:35:17:50 | '/home/user/www' | CalleeFlexibleAccessPath | pathModule.join |
 | autogenerated/TaintedPath/normalizedPaths.js:17:35:17:50 | '/home/user/www' | InputArgumentIndex | 0 |
@@ -5769,7 +7508,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:17:35:17:50 | '/home/user/www' | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:17:35:17:50 | '/home/user/www' | enclosingFunctionBody | req res path req query path fs readFileSync path fs readFileSync ./ path fs readFileSync path /index.html fs readFileSync pathModule join path index.html fs readFileSync pathModule join /home/user/www path |
 | autogenerated/TaintedPath/normalizedPaths.js:17:35:17:50 | '/home/user/www' | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:17:35:17:50 | '/home/user/www' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:17:35:17:50 | '/home/user/www' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:17:35:17:50 | '/home/user/www' | receiverName | pathModule |
 | autogenerated/TaintedPath/normalizedPaths.js:17:53:17:56 | path | CalleeFlexibleAccessPath | pathModule.join |
 | autogenerated/TaintedPath/normalizedPaths.js:17:53:17:56 | path | InputArgumentIndex | 1 |
@@ -5778,27 +7517,27 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:17:53:17:56 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:17:53:17:56 | path | enclosingFunctionBody | req res path req query path fs readFileSync path fs readFileSync ./ path fs readFileSync path /index.html fs readFileSync pathModule join path index.html fs readFileSync pathModule join /home/user/www path |
 | autogenerated/TaintedPath/normalizedPaths.js:17:53:17:56 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:17:53:17:56 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:17:53:17:56 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:17:53:17:56 | path | receiverName | pathModule |
 | autogenerated/TaintedPath/normalizedPaths.js:20:9:20:20 | '/normalize' | CalleeFlexibleAccessPath | app.get |
 | autogenerated/TaintedPath/normalizedPaths.js:20:9:20:20 | '/normalize' | InputArgumentIndex | 0 |
 | autogenerated/TaintedPath/normalizedPaths.js:20:9:20:20 | '/normalize' | calleeImports | express |
 | autogenerated/TaintedPath/normalizedPaths.js:20:9:20:20 | '/normalize' | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
 | autogenerated/TaintedPath/normalizedPaths.js:20:9:20:20 | '/normalize' | contextSurroundingFunctionParameters |  |
-| autogenerated/TaintedPath/normalizedPaths.js:20:9:20:20 | '/normalize' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:20:9:20:20 | '/normalize' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:20:9:20:20 | '/normalize' | receiverName | app |
 | autogenerated/TaintedPath/normalizedPaths.js:20:23:28:1 | (req, r ... OT OK\\n} | CalleeFlexibleAccessPath | app.get |
 | autogenerated/TaintedPath/normalizedPaths.js:20:23:28:1 | (req, r ... OT OK\\n} | InputArgumentIndex | 1 |
 | autogenerated/TaintedPath/normalizedPaths.js:20:23:28:1 | (req, r ... OT OK\\n} | calleeImports | express |
 | autogenerated/TaintedPath/normalizedPaths.js:20:23:28:1 | (req, r ... OT OK\\n} | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
 | autogenerated/TaintedPath/normalizedPaths.js:20:23:28:1 | (req, r ... OT OK\\n} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:20:23:28:1 | (req, r ... OT OK\\n} | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:20:23:28:1 | (req, r ... OT OK\\n} | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:20:23:28:1 | (req, r ... OT OK\\n} | receiverName | app |
 | autogenerated/TaintedPath/normalizedPaths.js:21:14:21:49 | pathMod ... y.path) | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
 | autogenerated/TaintedPath/normalizedPaths.js:21:14:21:49 | pathMod ... y.path) | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:21:14:21:49 | pathMod ... y.path) | enclosingFunctionBody | req res path pathModule normalize req query path fs readFileSync path fs readFileSync ./ path fs readFileSync path /index.html fs readFileSync pathModule join path index.html fs readFileSync pathModule join /home/user/www path |
 | autogenerated/TaintedPath/normalizedPaths.js:21:14:21:49 | pathMod ... y.path) | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:21:14:21:49 | pathMod ... y.path) | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:21:14:21:49 | pathMod ... y.path) | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:21:35:21:48 | req.query.path | CalleeFlexibleAccessPath | pathModule.normalize |
 | autogenerated/TaintedPath/normalizedPaths.js:21:35:21:48 | req.query.path | InputArgumentIndex | 0 |
 | autogenerated/TaintedPath/normalizedPaths.js:21:35:21:48 | req.query.path | calleeImports | path |
@@ -5806,7 +7545,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:21:35:21:48 | req.query.path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:21:35:21:48 | req.query.path | enclosingFunctionBody | req res path pathModule normalize req query path fs readFileSync path fs readFileSync ./ path fs readFileSync path /index.html fs readFileSync pathModule join path index.html fs readFileSync pathModule join /home/user/www path |
 | autogenerated/TaintedPath/normalizedPaths.js:21:35:21:48 | req.query.path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:21:35:21:48 | req.query.path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:21:35:21:48 | req.query.path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:21:35:21:48 | req.query.path | receiverName | pathModule |
 | autogenerated/TaintedPath/normalizedPaths.js:23:19:23:22 | path | CalleeFlexibleAccessPath | fs.readFileSync |
 | autogenerated/TaintedPath/normalizedPaths.js:23:19:23:22 | path | InputArgumentIndex | 0 |
@@ -5815,7 +7554,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:23:19:23:22 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:23:19:23:22 | path | enclosingFunctionBody | req res path pathModule normalize req query path fs readFileSync path fs readFileSync ./ path fs readFileSync path /index.html fs readFileSync pathModule join path index.html fs readFileSync pathModule join /home/user/www path |
 | autogenerated/TaintedPath/normalizedPaths.js:23:19:23:22 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:23:19:23:22 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:23:19:23:22 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:23:19:23:22 | path | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:24:19:24:29 | './' + path | CalleeFlexibleAccessPath | fs.readFileSync |
 | autogenerated/TaintedPath/normalizedPaths.js:24:19:24:29 | './' + path | InputArgumentIndex | 0 |
@@ -5824,7 +7563,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:24:19:24:29 | './' + path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:24:19:24:29 | './' + path | enclosingFunctionBody | req res path pathModule normalize req query path fs readFileSync path fs readFileSync ./ path fs readFileSync path /index.html fs readFileSync pathModule join path index.html fs readFileSync pathModule join /home/user/www path |
 | autogenerated/TaintedPath/normalizedPaths.js:24:19:24:29 | './' + path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:24:19:24:29 | './' + path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:24:19:24:29 | './' + path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:24:19:24:29 | './' + path | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:25:19:25:38 | path + '/index.html' | CalleeFlexibleAccessPath | fs.readFileSync |
 | autogenerated/TaintedPath/normalizedPaths.js:25:19:25:38 | path + '/index.html' | InputArgumentIndex | 0 |
@@ -5833,7 +7572,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:25:19:25:38 | path + '/index.html' | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:25:19:25:38 | path + '/index.html' | enclosingFunctionBody | req res path pathModule normalize req query path fs readFileSync path fs readFileSync ./ path fs readFileSync path /index.html fs readFileSync pathModule join path index.html fs readFileSync pathModule join /home/user/www path |
 | autogenerated/TaintedPath/normalizedPaths.js:25:19:25:38 | path + '/index.html' | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:25:19:25:38 | path + '/index.html' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:25:19:25:38 | path + '/index.html' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:25:19:25:38 | path + '/index.html' | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:26:19:26:53 | pathMod ... .html') | CalleeFlexibleAccessPath | fs.readFileSync |
 | autogenerated/TaintedPath/normalizedPaths.js:26:19:26:53 | pathMod ... .html') | InputArgumentIndex | 0 |
@@ -5842,7 +7581,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:26:19:26:53 | pathMod ... .html') | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:26:19:26:53 | pathMod ... .html') | enclosingFunctionBody | req res path pathModule normalize req query path fs readFileSync path fs readFileSync ./ path fs readFileSync path /index.html fs readFileSync pathModule join path index.html fs readFileSync pathModule join /home/user/www path |
 | autogenerated/TaintedPath/normalizedPaths.js:26:19:26:53 | pathMod ... .html') | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:26:19:26:53 | pathMod ... .html') | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:26:19:26:53 | pathMod ... .html') | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:26:19:26:53 | pathMod ... .html') | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:26:35:26:38 | path | CalleeFlexibleAccessPath | pathModule.join |
 | autogenerated/TaintedPath/normalizedPaths.js:26:35:26:38 | path | InputArgumentIndex | 0 |
@@ -5851,7 +7590,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:26:35:26:38 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:26:35:26:38 | path | enclosingFunctionBody | req res path pathModule normalize req query path fs readFileSync path fs readFileSync ./ path fs readFileSync path /index.html fs readFileSync pathModule join path index.html fs readFileSync pathModule join /home/user/www path |
 | autogenerated/TaintedPath/normalizedPaths.js:26:35:26:38 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:26:35:26:38 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:26:35:26:38 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:26:35:26:38 | path | receiverName | pathModule |
 | autogenerated/TaintedPath/normalizedPaths.js:26:41:26:52 | 'index.html' | CalleeFlexibleAccessPath | pathModule.join |
 | autogenerated/TaintedPath/normalizedPaths.js:26:41:26:52 | 'index.html' | InputArgumentIndex | 1 |
@@ -5860,7 +7599,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:26:41:26:52 | 'index.html' | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:26:41:26:52 | 'index.html' | enclosingFunctionBody | req res path pathModule normalize req query path fs readFileSync path fs readFileSync ./ path fs readFileSync path /index.html fs readFileSync pathModule join path index.html fs readFileSync pathModule join /home/user/www path |
 | autogenerated/TaintedPath/normalizedPaths.js:26:41:26:52 | 'index.html' | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:26:41:26:52 | 'index.html' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:26:41:26:52 | 'index.html' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:26:41:26:52 | 'index.html' | receiverName | pathModule |
 | autogenerated/TaintedPath/normalizedPaths.js:27:19:27:57 | pathMod ... , path) | CalleeFlexibleAccessPath | fs.readFileSync |
 | autogenerated/TaintedPath/normalizedPaths.js:27:19:27:57 | pathMod ... , path) | InputArgumentIndex | 0 |
@@ -5869,7 +7608,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:27:19:27:57 | pathMod ... , path) | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:27:19:27:57 | pathMod ... , path) | enclosingFunctionBody | req res path pathModule normalize req query path fs readFileSync path fs readFileSync ./ path fs readFileSync path /index.html fs readFileSync pathModule join path index.html fs readFileSync pathModule join /home/user/www path |
 | autogenerated/TaintedPath/normalizedPaths.js:27:19:27:57 | pathMod ... , path) | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:27:19:27:57 | pathMod ... , path) | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:27:19:27:57 | pathMod ... , path) | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:27:19:27:57 | pathMod ... , path) | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:27:35:27:50 | '/home/user/www' | CalleeFlexibleAccessPath | pathModule.join |
 | autogenerated/TaintedPath/normalizedPaths.js:27:35:27:50 | '/home/user/www' | InputArgumentIndex | 0 |
@@ -5878,7 +7617,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:27:35:27:50 | '/home/user/www' | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:27:35:27:50 | '/home/user/www' | enclosingFunctionBody | req res path pathModule normalize req query path fs readFileSync path fs readFileSync ./ path fs readFileSync path /index.html fs readFileSync pathModule join path index.html fs readFileSync pathModule join /home/user/www path |
 | autogenerated/TaintedPath/normalizedPaths.js:27:35:27:50 | '/home/user/www' | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:27:35:27:50 | '/home/user/www' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:27:35:27:50 | '/home/user/www' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:27:35:27:50 | '/home/user/www' | receiverName | pathModule |
 | autogenerated/TaintedPath/normalizedPaths.js:27:53:27:56 | path | CalleeFlexibleAccessPath | pathModule.join |
 | autogenerated/TaintedPath/normalizedPaths.js:27:53:27:56 | path | InputArgumentIndex | 1 |
@@ -5887,27 +7626,27 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:27:53:27:56 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:27:53:27:56 | path | enclosingFunctionBody | req res path pathModule normalize req query path fs readFileSync path fs readFileSync ./ path fs readFileSync path /index.html fs readFileSync pathModule join path index.html fs readFileSync pathModule join /home/user/www path |
 | autogenerated/TaintedPath/normalizedPaths.js:27:53:27:56 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:27:53:27:56 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:27:53:27:56 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:27:53:27:56 | path | receiverName | pathModule |
 | autogenerated/TaintedPath/normalizedPaths.js:30:9:30:32 | '/norma ... solute' | CalleeFlexibleAccessPath | app.get |
 | autogenerated/TaintedPath/normalizedPaths.js:30:9:30:32 | '/norma ... solute' | InputArgumentIndex | 0 |
 | autogenerated/TaintedPath/normalizedPaths.js:30:9:30:32 | '/norma ... solute' | calleeImports | express |
 | autogenerated/TaintedPath/normalizedPaths.js:30:9:30:32 | '/norma ... solute' | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
 | autogenerated/TaintedPath/normalizedPaths.js:30:9:30:32 | '/norma ... solute' | contextSurroundingFunctionParameters |  |
-| autogenerated/TaintedPath/normalizedPaths.js:30:9:30:32 | '/norma ... solute' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:30:9:30:32 | '/norma ... solute' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:30:9:30:32 | '/norma ... solute' | receiverName | app |
 | autogenerated/TaintedPath/normalizedPaths.js:30:35:51:1 | (req, r ... // OK\\n} | CalleeFlexibleAccessPath | app.get |
 | autogenerated/TaintedPath/normalizedPaths.js:30:35:51:1 | (req, r ... // OK\\n} | InputArgumentIndex | 1 |
 | autogenerated/TaintedPath/normalizedPaths.js:30:35:51:1 | (req, r ... // OK\\n} | calleeImports | express |
 | autogenerated/TaintedPath/normalizedPaths.js:30:35:51:1 | (req, r ... // OK\\n} | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
 | autogenerated/TaintedPath/normalizedPaths.js:30:35:51:1 | (req, r ... // OK\\n} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:30:35:51:1 | (req, r ... // OK\\n} | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:30:35:51:1 | (req, r ... // OK\\n} | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:30:35:51:1 | (req, r ... // OK\\n} | receiverName | app |
 | autogenerated/TaintedPath/normalizedPaths.js:31:14:31:49 | pathMod ... y.path) | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
 | autogenerated/TaintedPath/normalizedPaths.js:31:14:31:49 | pathMod ... y.path) | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:31:14:31:49 | pathMod ... y.path) | enclosingFunctionBody | req res path pathModule normalize req query path pathModule isAbsolute path fs readFileSync path path startsWith . fs readFileSync path fs readFileSync path path startsWith .. fs readFileSync path path startsWith ../ fs readFileSync path path startsWith .. pathModule sep fs readFileSync path |
 | autogenerated/TaintedPath/normalizedPaths.js:31:14:31:49 | pathMod ... y.path) | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:31:14:31:49 | pathMod ... y.path) | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:31:14:31:49 | pathMod ... y.path) | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:31:35:31:48 | req.query.path | CalleeFlexibleAccessPath | pathModule.normalize |
 | autogenerated/TaintedPath/normalizedPaths.js:31:35:31:48 | req.query.path | InputArgumentIndex | 0 |
 | autogenerated/TaintedPath/normalizedPaths.js:31:35:31:48 | req.query.path | calleeImports | path |
@@ -5915,7 +7654,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:31:35:31:48 | req.query.path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:31:35:31:48 | req.query.path | enclosingFunctionBody | req res path pathModule normalize req query path pathModule isAbsolute path fs readFileSync path path startsWith . fs readFileSync path fs readFileSync path path startsWith .. fs readFileSync path path startsWith ../ fs readFileSync path path startsWith .. pathModule sep fs readFileSync path |
 | autogenerated/TaintedPath/normalizedPaths.js:31:35:31:48 | req.query.path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:31:35:31:48 | req.query.path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:31:35:31:48 | req.query.path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:31:35:31:48 | req.query.path | receiverName | pathModule |
 | autogenerated/TaintedPath/normalizedPaths.js:36:19:36:22 | path | CalleeFlexibleAccessPath | fs.readFileSync |
 | autogenerated/TaintedPath/normalizedPaths.js:36:19:36:22 | path | InputArgumentIndex | 0 |
@@ -5924,7 +7663,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:36:19:36:22 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:36:19:36:22 | path | enclosingFunctionBody | req res path pathModule normalize req query path pathModule isAbsolute path fs readFileSync path path startsWith . fs readFileSync path fs readFileSync path path startsWith .. fs readFileSync path path startsWith ../ fs readFileSync path path startsWith .. pathModule sep fs readFileSync path |
 | autogenerated/TaintedPath/normalizedPaths.js:36:19:36:22 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:36:19:36:22 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:36:19:36:22 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:36:19:36:22 | path | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:38:24:38:26 | "." | CalleeFlexibleAccessPath | path.startsWith |
 | autogenerated/TaintedPath/normalizedPaths.js:38:24:38:26 | "." | InputArgumentIndex | 0 |
@@ -5933,7 +7672,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:38:24:38:26 | "." | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:38:24:38:26 | "." | enclosingFunctionBody | req res path pathModule normalize req query path pathModule isAbsolute path fs readFileSync path path startsWith . fs readFileSync path fs readFileSync path path startsWith .. fs readFileSync path path startsWith ../ fs readFileSync path path startsWith .. pathModule sep fs readFileSync path |
 | autogenerated/TaintedPath/normalizedPaths.js:38:24:38:26 | "." | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:38:24:38:26 | "." | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:38:24:38:26 | "." | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:38:24:38:26 | "." | receiverName | path |
 | autogenerated/TaintedPath/normalizedPaths.js:39:21:39:24 | path | CalleeFlexibleAccessPath | fs.readFileSync |
 | autogenerated/TaintedPath/normalizedPaths.js:39:21:39:24 | path | InputArgumentIndex | 0 |
@@ -5942,7 +7681,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:39:21:39:24 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:39:21:39:24 | path | enclosingFunctionBody | req res path pathModule normalize req query path pathModule isAbsolute path fs readFileSync path path startsWith . fs readFileSync path fs readFileSync path path startsWith .. fs readFileSync path path startsWith ../ fs readFileSync path path startsWith .. pathModule sep fs readFileSync path |
 | autogenerated/TaintedPath/normalizedPaths.js:39:21:39:24 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:39:21:39:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:39:21:39:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:39:21:39:24 | path | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:41:21:41:24 | path | CalleeFlexibleAccessPath | fs.readFileSync |
 | autogenerated/TaintedPath/normalizedPaths.js:41:21:41:24 | path | InputArgumentIndex | 0 |
@@ -5951,7 +7690,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:41:21:41:24 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:41:21:41:24 | path | enclosingFunctionBody | req res path pathModule normalize req query path pathModule isAbsolute path fs readFileSync path path startsWith . fs readFileSync path fs readFileSync path path startsWith .. fs readFileSync path path startsWith ../ fs readFileSync path path startsWith .. pathModule sep fs readFileSync path |
 | autogenerated/TaintedPath/normalizedPaths.js:41:21:41:24 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:41:21:41:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:41:21:41:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:41:21:41:24 | path | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:43:24:43:27 | ".." | CalleeFlexibleAccessPath | path.startsWith |
 | autogenerated/TaintedPath/normalizedPaths.js:43:24:43:27 | ".." | InputArgumentIndex | 0 |
@@ -5960,7 +7699,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:43:24:43:27 | ".." | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:43:24:43:27 | ".." | enclosingFunctionBody | req res path pathModule normalize req query path pathModule isAbsolute path fs readFileSync path path startsWith . fs readFileSync path fs readFileSync path path startsWith .. fs readFileSync path path startsWith ../ fs readFileSync path path startsWith .. pathModule sep fs readFileSync path |
 | autogenerated/TaintedPath/normalizedPaths.js:43:24:43:27 | ".." | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:43:24:43:27 | ".." | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:43:24:43:27 | ".." | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:43:24:43:27 | ".." | receiverName | path |
 | autogenerated/TaintedPath/normalizedPaths.js:44:21:44:24 | path | CalleeFlexibleAccessPath | fs.readFileSync |
 | autogenerated/TaintedPath/normalizedPaths.js:44:21:44:24 | path | InputArgumentIndex | 0 |
@@ -5969,7 +7708,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:44:21:44:24 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:44:21:44:24 | path | enclosingFunctionBody | req res path pathModule normalize req query path pathModule isAbsolute path fs readFileSync path path startsWith . fs readFileSync path fs readFileSync path path startsWith .. fs readFileSync path path startsWith ../ fs readFileSync path path startsWith .. pathModule sep fs readFileSync path |
 | autogenerated/TaintedPath/normalizedPaths.js:44:21:44:24 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:44:21:44:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:44:21:44:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:44:21:44:24 | path | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:46:24:46:28 | "../" | CalleeFlexibleAccessPath | path.startsWith |
 | autogenerated/TaintedPath/normalizedPaths.js:46:24:46:28 | "../" | InputArgumentIndex | 0 |
@@ -5978,7 +7717,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:46:24:46:28 | "../" | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:46:24:46:28 | "../" | enclosingFunctionBody | req res path pathModule normalize req query path pathModule isAbsolute path fs readFileSync path path startsWith . fs readFileSync path fs readFileSync path path startsWith .. fs readFileSync path path startsWith ../ fs readFileSync path path startsWith .. pathModule sep fs readFileSync path |
 | autogenerated/TaintedPath/normalizedPaths.js:46:24:46:28 | "../" | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:46:24:46:28 | "../" | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:46:24:46:28 | "../" | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:46:24:46:28 | "../" | receiverName | path |
 | autogenerated/TaintedPath/normalizedPaths.js:47:21:47:24 | path | CalleeFlexibleAccessPath | fs.readFileSync |
 | autogenerated/TaintedPath/normalizedPaths.js:47:21:47:24 | path | InputArgumentIndex | 0 |
@@ -5987,7 +7726,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:47:21:47:24 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:47:21:47:24 | path | enclosingFunctionBody | req res path pathModule normalize req query path pathModule isAbsolute path fs readFileSync path path startsWith . fs readFileSync path fs readFileSync path path startsWith .. fs readFileSync path path startsWith ../ fs readFileSync path path startsWith .. pathModule sep fs readFileSync path |
 | autogenerated/TaintedPath/normalizedPaths.js:47:21:47:24 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:47:21:47:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:47:21:47:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:47:21:47:24 | path | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:49:24:49:44 | ".." +  ... ule.sep | CalleeFlexibleAccessPath | path.startsWith |
 | autogenerated/TaintedPath/normalizedPaths.js:49:24:49:44 | ".." +  ... ule.sep | InputArgumentIndex | 0 |
@@ -5996,7 +7735,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:49:24:49:44 | ".." +  ... ule.sep | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:49:24:49:44 | ".." +  ... ule.sep | enclosingFunctionBody | req res path pathModule normalize req query path pathModule isAbsolute path fs readFileSync path path startsWith . fs readFileSync path fs readFileSync path path startsWith .. fs readFileSync path path startsWith ../ fs readFileSync path path startsWith .. pathModule sep fs readFileSync path |
 | autogenerated/TaintedPath/normalizedPaths.js:49:24:49:44 | ".." +  ... ule.sep | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:49:24:49:44 | ".." +  ... ule.sep | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:49:24:49:44 | ".." +  ... ule.sep | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:49:24:49:44 | ".." +  ... ule.sep | receiverName | path |
 | autogenerated/TaintedPath/normalizedPaths.js:50:21:50:24 | path | CalleeFlexibleAccessPath | fs.readFileSync |
 | autogenerated/TaintedPath/normalizedPaths.js:50:21:50:24 | path | InputArgumentIndex | 0 |
@@ -6005,27 +7744,27 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:50:21:50:24 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:50:21:50:24 | path | enclosingFunctionBody | req res path pathModule normalize req query path pathModule isAbsolute path fs readFileSync path path startsWith . fs readFileSync path fs readFileSync path path startsWith .. fs readFileSync path path startsWith ../ fs readFileSync path path startsWith .. pathModule sep fs readFileSync path |
 | autogenerated/TaintedPath/normalizedPaths.js:50:21:50:24 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:50:21:50:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:50:21:50:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:50:21:50:24 | path | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:53:9:53:36 | '/norma ... DotDot' | CalleeFlexibleAccessPath | app.get |
 | autogenerated/TaintedPath/normalizedPaths.js:53:9:53:36 | '/norma ... DotDot' | InputArgumentIndex | 0 |
 | autogenerated/TaintedPath/normalizedPaths.js:53:9:53:36 | '/norma ... DotDot' | calleeImports | express |
 | autogenerated/TaintedPath/normalizedPaths.js:53:9:53:36 | '/norma ... DotDot' | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
 | autogenerated/TaintedPath/normalizedPaths.js:53:9:53:36 | '/norma ... DotDot' | contextSurroundingFunctionParameters |  |
-| autogenerated/TaintedPath/normalizedPaths.js:53:9:53:36 | '/norma ... DotDot' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:53:9:53:36 | '/norma ... DotDot' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:53:9:53:36 | '/norma ... DotDot' | receiverName | app |
 | autogenerated/TaintedPath/normalizedPaths.js:53:39:69:1 | (req, r ... OT OK\\n} | CalleeFlexibleAccessPath | app.get |
 | autogenerated/TaintedPath/normalizedPaths.js:53:39:69:1 | (req, r ... OT OK\\n} | InputArgumentIndex | 1 |
 | autogenerated/TaintedPath/normalizedPaths.js:53:39:69:1 | (req, r ... OT OK\\n} | calleeImports | express |
 | autogenerated/TaintedPath/normalizedPaths.js:53:39:69:1 | (req, r ... OT OK\\n} | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
 | autogenerated/TaintedPath/normalizedPaths.js:53:39:69:1 | (req, r ... OT OK\\n} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:53:39:69:1 | (req, r ... OT OK\\n} | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:53:39:69:1 | (req, r ... OT OK\\n} | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:53:39:69:1 | (req, r ... OT OK\\n} | receiverName | app |
 | autogenerated/TaintedPath/normalizedPaths.js:54:14:54:49 | pathMod ... y.path) | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
 | autogenerated/TaintedPath/normalizedPaths.js:54:14:54:49 | pathMod ... y.path) | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:54:14:54:49 | pathMod ... y.path) | enclosingFunctionBody | req res path pathModule normalize req query path path startsWith .. fs readFileSync path fs readFileSync ./ path fs readFileSync path /index.html pathModule isAbsolute path fs readFileSync path fs readFileSync path |
 | autogenerated/TaintedPath/normalizedPaths.js:54:14:54:49 | pathMod ... y.path) | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:54:14:54:49 | pathMod ... y.path) | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:54:14:54:49 | pathMod ... y.path) | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:54:35:54:48 | req.query.path | CalleeFlexibleAccessPath | pathModule.normalize |
 | autogenerated/TaintedPath/normalizedPaths.js:54:35:54:48 | req.query.path | InputArgumentIndex | 0 |
 | autogenerated/TaintedPath/normalizedPaths.js:54:35:54:48 | req.query.path | calleeImports | path |
@@ -6033,7 +7772,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:54:35:54:48 | req.query.path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:54:35:54:48 | req.query.path | enclosingFunctionBody | req res path pathModule normalize req query path path startsWith .. fs readFileSync path fs readFileSync ./ path fs readFileSync path /index.html pathModule isAbsolute path fs readFileSync path fs readFileSync path |
 | autogenerated/TaintedPath/normalizedPaths.js:54:35:54:48 | req.query.path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:54:35:54:48 | req.query.path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:54:35:54:48 | req.query.path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:54:35:54:48 | req.query.path | receiverName | pathModule |
 | autogenerated/TaintedPath/normalizedPaths.js:56:23:56:26 | ".." | CalleeFlexibleAccessPath | path.startsWith |
 | autogenerated/TaintedPath/normalizedPaths.js:56:23:56:26 | ".." | InputArgumentIndex | 0 |
@@ -6042,7 +7781,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:56:23:56:26 | ".." | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:56:23:56:26 | ".." | enclosingFunctionBody | req res path pathModule normalize req query path path startsWith .. fs readFileSync path fs readFileSync ./ path fs readFileSync path /index.html pathModule isAbsolute path fs readFileSync path fs readFileSync path |
 | autogenerated/TaintedPath/normalizedPaths.js:56:23:56:26 | ".." | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:56:23:56:26 | ".." | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:56:23:56:26 | ".." | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:56:23:56:26 | ".." | receiverName | path |
 | autogenerated/TaintedPath/normalizedPaths.js:59:19:59:22 | path | CalleeFlexibleAccessPath | fs.readFileSync |
 | autogenerated/TaintedPath/normalizedPaths.js:59:19:59:22 | path | InputArgumentIndex | 0 |
@@ -6051,7 +7790,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:59:19:59:22 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:59:19:59:22 | path | enclosingFunctionBody | req res path pathModule normalize req query path path startsWith .. fs readFileSync path fs readFileSync ./ path fs readFileSync path /index.html pathModule isAbsolute path fs readFileSync path fs readFileSync path |
 | autogenerated/TaintedPath/normalizedPaths.js:59:19:59:22 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:59:19:59:22 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:59:19:59:22 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:59:19:59:22 | path | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:61:19:61:29 | "./" + path | CalleeFlexibleAccessPath | fs.readFileSync |
 | autogenerated/TaintedPath/normalizedPaths.js:61:19:61:29 | "./" + path | InputArgumentIndex | 0 |
@@ -6060,7 +7799,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:61:19:61:29 | "./" + path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:61:19:61:29 | "./" + path | enclosingFunctionBody | req res path pathModule normalize req query path path startsWith .. fs readFileSync path fs readFileSync ./ path fs readFileSync path /index.html pathModule isAbsolute path fs readFileSync path fs readFileSync path |
 | autogenerated/TaintedPath/normalizedPaths.js:61:19:61:29 | "./" + path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:61:19:61:29 | "./" + path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:61:19:61:29 | "./" + path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:61:19:61:29 | "./" + path | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:63:19:63:38 | path + "/index.html" | CalleeFlexibleAccessPath | fs.readFileSync |
 | autogenerated/TaintedPath/normalizedPaths.js:63:19:63:38 | path + "/index.html" | InputArgumentIndex | 0 |
@@ -6069,7 +7808,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:63:19:63:38 | path + "/index.html" | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:63:19:63:38 | path + "/index.html" | enclosingFunctionBody | req res path pathModule normalize req query path path startsWith .. fs readFileSync path fs readFileSync ./ path fs readFileSync path /index.html pathModule isAbsolute path fs readFileSync path fs readFileSync path |
 | autogenerated/TaintedPath/normalizedPaths.js:63:19:63:38 | path + "/index.html" | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:63:19:63:38 | path + "/index.html" | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:63:19:63:38 | path + "/index.html" | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:63:19:63:38 | path + "/index.html" | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:66:21:66:24 | path | CalleeFlexibleAccessPath | fs.readFileSync |
 | autogenerated/TaintedPath/normalizedPaths.js:66:21:66:24 | path | InputArgumentIndex | 0 |
@@ -6078,7 +7817,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:66:21:66:24 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:66:21:66:24 | path | enclosingFunctionBody | req res path pathModule normalize req query path path startsWith .. fs readFileSync path fs readFileSync ./ path fs readFileSync path /index.html pathModule isAbsolute path fs readFileSync path fs readFileSync path |
 | autogenerated/TaintedPath/normalizedPaths.js:66:21:66:24 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:66:21:66:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:66:21:66:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:66:21:66:24 | path | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:68:21:68:24 | path | CalleeFlexibleAccessPath | fs.readFileSync |
 | autogenerated/TaintedPath/normalizedPaths.js:68:21:68:24 | path | InputArgumentIndex | 0 |
@@ -6087,27 +7826,27 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:68:21:68:24 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:68:21:68:24 | path | enclosingFunctionBody | req res path pathModule normalize req query path path startsWith .. fs readFileSync path fs readFileSync ./ path fs readFileSync path /index.html pathModule isAbsolute path fs readFileSync path fs readFileSync path |
 | autogenerated/TaintedPath/normalizedPaths.js:68:21:68:24 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:68:21:68:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:68:21:68:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:68:21:68:24 | path | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:71:9:71:28 | '/prepend-normalize' | CalleeFlexibleAccessPath | app.get |
 | autogenerated/TaintedPath/normalizedPaths.js:71:9:71:28 | '/prepend-normalize' | InputArgumentIndex | 0 |
 | autogenerated/TaintedPath/normalizedPaths.js:71:9:71:28 | '/prepend-normalize' | calleeImports | express |
 | autogenerated/TaintedPath/normalizedPaths.js:71:9:71:28 | '/prepend-normalize' | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
 | autogenerated/TaintedPath/normalizedPaths.js:71:9:71:28 | '/prepend-normalize' | contextSurroundingFunctionParameters |  |
-| autogenerated/TaintedPath/normalizedPaths.js:71:9:71:28 | '/prepend-normalize' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:71:9:71:28 | '/prepend-normalize' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:71:9:71:28 | '/prepend-normalize' | receiverName | app |
 | autogenerated/TaintedPath/normalizedPaths.js:71:31:79:1 | (req, r ... OT OK\\n} | CalleeFlexibleAccessPath | app.get |
 | autogenerated/TaintedPath/normalizedPaths.js:71:31:79:1 | (req, r ... OT OK\\n} | InputArgumentIndex | 1 |
 | autogenerated/TaintedPath/normalizedPaths.js:71:31:79:1 | (req, r ... OT OK\\n} | calleeImports | express |
 | autogenerated/TaintedPath/normalizedPaths.js:71:31:79:1 | (req, r ... OT OK\\n} | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
 | autogenerated/TaintedPath/normalizedPaths.js:71:31:79:1 | (req, r ... OT OK\\n} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:71:31:79:1 | (req, r ... OT OK\\n} | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:71:31:79:1 | (req, r ... OT OK\\n} | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:71:31:79:1 | (req, r ... OT OK\\n} | receiverName | app |
 | autogenerated/TaintedPath/normalizedPaths.js:73:14:73:56 | pathMod ... y.path) | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
 | autogenerated/TaintedPath/normalizedPaths.js:73:14:73:56 | pathMod ... y.path) | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:73:14:73:56 | pathMod ... y.path) | enclosingFunctionBody | req res path pathModule normalize ./ req query path path startsWith .. fs readFileSync path fs readFileSync path |
 | autogenerated/TaintedPath/normalizedPaths.js:73:14:73:56 | pathMod ... y.path) | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:73:14:73:56 | pathMod ... y.path) | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:73:14:73:56 | pathMod ... y.path) | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:73:35:73:55 | './' +  ... ry.path | CalleeFlexibleAccessPath | pathModule.normalize |
 | autogenerated/TaintedPath/normalizedPaths.js:73:35:73:55 | './' +  ... ry.path | InputArgumentIndex | 0 |
 | autogenerated/TaintedPath/normalizedPaths.js:73:35:73:55 | './' +  ... ry.path | calleeImports | path |
@@ -6115,7 +7854,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:73:35:73:55 | './' +  ... ry.path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:73:35:73:55 | './' +  ... ry.path | enclosingFunctionBody | req res path pathModule normalize ./ req query path path startsWith .. fs readFileSync path fs readFileSync path |
 | autogenerated/TaintedPath/normalizedPaths.js:73:35:73:55 | './' +  ... ry.path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:73:35:73:55 | './' +  ... ry.path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:73:35:73:55 | './' +  ... ry.path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:73:35:73:55 | './' +  ... ry.path | receiverName | pathModule |
 | autogenerated/TaintedPath/normalizedPaths.js:75:24:75:27 | ".." | CalleeFlexibleAccessPath | path.startsWith |
 | autogenerated/TaintedPath/normalizedPaths.js:75:24:75:27 | ".." | InputArgumentIndex | 0 |
@@ -6124,7 +7863,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:75:24:75:27 | ".." | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:75:24:75:27 | ".." | enclosingFunctionBody | req res path pathModule normalize ./ req query path path startsWith .. fs readFileSync path fs readFileSync path |
 | autogenerated/TaintedPath/normalizedPaths.js:75:24:75:27 | ".." | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:75:24:75:27 | ".." | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:75:24:75:27 | ".." | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:75:24:75:27 | ".." | receiverName | path |
 | autogenerated/TaintedPath/normalizedPaths.js:76:21:76:24 | path | CalleeFlexibleAccessPath | fs.readFileSync |
 | autogenerated/TaintedPath/normalizedPaths.js:76:21:76:24 | path | InputArgumentIndex | 0 |
@@ -6133,7 +7872,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:76:21:76:24 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:76:21:76:24 | path | enclosingFunctionBody | req res path pathModule normalize ./ req query path path startsWith .. fs readFileSync path fs readFileSync path |
 | autogenerated/TaintedPath/normalizedPaths.js:76:21:76:24 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:76:21:76:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:76:21:76:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:76:21:76:24 | path | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:78:22:78:25 | path | CalleeFlexibleAccessPath | fs.readFileSync |
 | autogenerated/TaintedPath/normalizedPaths.js:78:22:78:25 | path | InputArgumentIndex | 0 |
@@ -6142,21 +7881,21 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:78:22:78:25 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:78:22:78:25 | path | enclosingFunctionBody | req res path pathModule normalize ./ req query path path startsWith .. fs readFileSync path fs readFileSync path |
 | autogenerated/TaintedPath/normalizedPaths.js:78:22:78:25 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:78:22:78:25 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:78:22:78:25 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:78:22:78:25 | path | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:81:9:81:19 | '/absolute' | CalleeFlexibleAccessPath | app.get |
 | autogenerated/TaintedPath/normalizedPaths.js:81:9:81:19 | '/absolute' | InputArgumentIndex | 0 |
 | autogenerated/TaintedPath/normalizedPaths.js:81:9:81:19 | '/absolute' | calleeImports | express |
 | autogenerated/TaintedPath/normalizedPaths.js:81:9:81:19 | '/absolute' | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
 | autogenerated/TaintedPath/normalizedPaths.js:81:9:81:19 | '/absolute' | contextSurroundingFunctionParameters |  |
-| autogenerated/TaintedPath/normalizedPaths.js:81:9:81:19 | '/absolute' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:81:9:81:19 | '/absolute' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:81:9:81:19 | '/absolute' | receiverName | app |
 | autogenerated/TaintedPath/normalizedPaths.js:81:22:91:1 | (req, r ... '../'\\n} | CalleeFlexibleAccessPath | app.get |
 | autogenerated/TaintedPath/normalizedPaths.js:81:22:91:1 | (req, r ... '../'\\n} | InputArgumentIndex | 1 |
 | autogenerated/TaintedPath/normalizedPaths.js:81:22:91:1 | (req, r ... '../'\\n} | calleeImports | express |
 | autogenerated/TaintedPath/normalizedPaths.js:81:22:91:1 | (req, r ... '../'\\n} | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
 | autogenerated/TaintedPath/normalizedPaths.js:81:22:91:1 | (req, r ... '../'\\n} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:81:22:91:1 | (req, r ... '../'\\n} | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:81:22:91:1 | (req, r ... '../'\\n} | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:81:22:91:1 | (req, r ... '../'\\n} | receiverName | app |
 | autogenerated/TaintedPath/normalizedPaths.js:87:13:87:33 | fs.read ... c(path) | CalleeFlexibleAccessPath | res.write |
 | autogenerated/TaintedPath/normalizedPaths.js:87:13:87:33 | fs.read ... c(path) | InputArgumentIndex | 0 |
@@ -6164,7 +7903,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:87:13:87:33 | fs.read ... c(path) | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:87:13:87:33 | fs.read ... c(path) | enclosingFunctionBody | req res path req query path pathModule isAbsolute path res write fs readFileSync path path startsWith /home/user/www res write fs readFileSync path |
 | autogenerated/TaintedPath/normalizedPaths.js:87:13:87:33 | fs.read ... c(path) | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:87:13:87:33 | fs.read ... c(path) | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:87:13:87:33 | fs.read ... c(path) | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:87:13:87:33 | fs.read ... c(path) | receiverName | res |
 | autogenerated/TaintedPath/normalizedPaths.js:87:29:87:32 | path | CalleeFlexibleAccessPath | fs.readFileSync |
 | autogenerated/TaintedPath/normalizedPaths.js:87:29:87:32 | path | InputArgumentIndex | 0 |
@@ -6173,7 +7912,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:87:29:87:32 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:87:29:87:32 | path | enclosingFunctionBody | req res path req query path pathModule isAbsolute path res write fs readFileSync path path startsWith /home/user/www res write fs readFileSync path |
 | autogenerated/TaintedPath/normalizedPaths.js:87:29:87:32 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:87:29:87:32 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:87:29:87:32 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:87:29:87:32 | path | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:89:23:89:38 | '/home/user/www' | CalleeFlexibleAccessPath | path.startsWith |
 | autogenerated/TaintedPath/normalizedPaths.js:89:23:89:38 | '/home/user/www' | InputArgumentIndex | 0 |
@@ -6181,7 +7920,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:89:23:89:38 | '/home/user/www' | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:89:23:89:38 | '/home/user/www' | enclosingFunctionBody | req res path req query path pathModule isAbsolute path res write fs readFileSync path path startsWith /home/user/www res write fs readFileSync path |
 | autogenerated/TaintedPath/normalizedPaths.js:89:23:89:38 | '/home/user/www' | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:89:23:89:38 | '/home/user/www' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:89:23:89:38 | '/home/user/www' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:89:23:89:38 | '/home/user/www' | receiverName | path |
 | autogenerated/TaintedPath/normalizedPaths.js:90:15:90:35 | fs.read ... c(path) | CalleeFlexibleAccessPath | res.write |
 | autogenerated/TaintedPath/normalizedPaths.js:90:15:90:35 | fs.read ... c(path) | InputArgumentIndex | 0 |
@@ -6189,7 +7928,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:90:15:90:35 | fs.read ... c(path) | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:90:15:90:35 | fs.read ... c(path) | enclosingFunctionBody | req res path req query path pathModule isAbsolute path res write fs readFileSync path path startsWith /home/user/www res write fs readFileSync path |
 | autogenerated/TaintedPath/normalizedPaths.js:90:15:90:35 | fs.read ... c(path) | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:90:15:90:35 | fs.read ... c(path) | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:90:15:90:35 | fs.read ... c(path) | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:90:15:90:35 | fs.read ... c(path) | receiverName | res |
 | autogenerated/TaintedPath/normalizedPaths.js:90:31:90:34 | path | CalleeFlexibleAccessPath | fs.readFileSync |
 | autogenerated/TaintedPath/normalizedPaths.js:90:31:90:34 | path | InputArgumentIndex | 0 |
@@ -6198,27 +7937,27 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:90:31:90:34 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:90:31:90:34 | path | enclosingFunctionBody | req res path req query path pathModule isAbsolute path res write fs readFileSync path path startsWith /home/user/www res write fs readFileSync path |
 | autogenerated/TaintedPath/normalizedPaths.js:90:31:90:34 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:90:31:90:34 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:90:31:90:34 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:90:31:90:34 | path | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:93:9:93:30 | '/norma ... solute' | CalleeFlexibleAccessPath | app.get |
 | autogenerated/TaintedPath/normalizedPaths.js:93:9:93:30 | '/norma ... solute' | InputArgumentIndex | 0 |
 | autogenerated/TaintedPath/normalizedPaths.js:93:9:93:30 | '/norma ... solute' | calleeImports | express |
 | autogenerated/TaintedPath/normalizedPaths.js:93:9:93:30 | '/norma ... solute' | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
 | autogenerated/TaintedPath/normalizedPaths.js:93:9:93:30 | '/norma ... solute' | contextSurroundingFunctionParameters |  |
-| autogenerated/TaintedPath/normalizedPaths.js:93:9:93:30 | '/norma ... solute' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:93:9:93:30 | '/norma ... solute' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:93:9:93:30 | '/norma ... solute' | receiverName | app |
 | autogenerated/TaintedPath/normalizedPaths.js:93:33:103:1 | (req, r ... // OK\\n} | CalleeFlexibleAccessPath | app.get |
 | autogenerated/TaintedPath/normalizedPaths.js:93:33:103:1 | (req, r ... // OK\\n} | InputArgumentIndex | 1 |
 | autogenerated/TaintedPath/normalizedPaths.js:93:33:103:1 | (req, r ... // OK\\n} | calleeImports | express |
 | autogenerated/TaintedPath/normalizedPaths.js:93:33:103:1 | (req, r ... // OK\\n} | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
 | autogenerated/TaintedPath/normalizedPaths.js:93:33:103:1 | (req, r ... // OK\\n} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:93:33:103:1 | (req, r ... // OK\\n} | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:93:33:103:1 | (req, r ... // OK\\n} | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:93:33:103:1 | (req, r ... // OK\\n} | receiverName | app |
 | autogenerated/TaintedPath/normalizedPaths.js:94:14:94:49 | pathMod ... y.path) | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
 | autogenerated/TaintedPath/normalizedPaths.js:94:14:94:49 | pathMod ... y.path) | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:94:14:94:49 | pathMod ... y.path) | enclosingFunctionBody | req res path pathModule normalize req query path pathModule isAbsolute path res write fs readFileSync path path startsWith /home/user/www res write fs readFileSync path |
 | autogenerated/TaintedPath/normalizedPaths.js:94:14:94:49 | pathMod ... y.path) | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:94:14:94:49 | pathMod ... y.path) | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:94:14:94:49 | pathMod ... y.path) | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:94:35:94:48 | req.query.path | CalleeFlexibleAccessPath | pathModule.normalize |
 | autogenerated/TaintedPath/normalizedPaths.js:94:35:94:48 | req.query.path | InputArgumentIndex | 0 |
 | autogenerated/TaintedPath/normalizedPaths.js:94:35:94:48 | req.query.path | calleeImports | path |
@@ -6226,7 +7965,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:94:35:94:48 | req.query.path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:94:35:94:48 | req.query.path | enclosingFunctionBody | req res path pathModule normalize req query path pathModule isAbsolute path res write fs readFileSync path path startsWith /home/user/www res write fs readFileSync path |
 | autogenerated/TaintedPath/normalizedPaths.js:94:35:94:48 | req.query.path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:94:35:94:48 | req.query.path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:94:35:94:48 | req.query.path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:94:35:94:48 | req.query.path | receiverName | pathModule |
 | autogenerated/TaintedPath/normalizedPaths.js:99:13:99:33 | fs.read ... c(path) | CalleeFlexibleAccessPath | res.write |
 | autogenerated/TaintedPath/normalizedPaths.js:99:13:99:33 | fs.read ... c(path) | InputArgumentIndex | 0 |
@@ -6234,7 +7973,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:99:13:99:33 | fs.read ... c(path) | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:99:13:99:33 | fs.read ... c(path) | enclosingFunctionBody | req res path pathModule normalize req query path pathModule isAbsolute path res write fs readFileSync path path startsWith /home/user/www res write fs readFileSync path |
 | autogenerated/TaintedPath/normalizedPaths.js:99:13:99:33 | fs.read ... c(path) | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:99:13:99:33 | fs.read ... c(path) | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:99:13:99:33 | fs.read ... c(path) | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:99:13:99:33 | fs.read ... c(path) | receiverName | res |
 | autogenerated/TaintedPath/normalizedPaths.js:99:29:99:32 | path | CalleeFlexibleAccessPath | fs.readFileSync |
 | autogenerated/TaintedPath/normalizedPaths.js:99:29:99:32 | path | InputArgumentIndex | 0 |
@@ -6243,7 +7982,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:99:29:99:32 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:99:29:99:32 | path | enclosingFunctionBody | req res path pathModule normalize req query path pathModule isAbsolute path res write fs readFileSync path path startsWith /home/user/www res write fs readFileSync path |
 | autogenerated/TaintedPath/normalizedPaths.js:99:29:99:32 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:99:29:99:32 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:99:29:99:32 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:99:29:99:32 | path | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:101:23:101:38 | '/home/user/www' | CalleeFlexibleAccessPath | path.startsWith |
 | autogenerated/TaintedPath/normalizedPaths.js:101:23:101:38 | '/home/user/www' | InputArgumentIndex | 0 |
@@ -6252,7 +7991,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:101:23:101:38 | '/home/user/www' | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:101:23:101:38 | '/home/user/www' | enclosingFunctionBody | req res path pathModule normalize req query path pathModule isAbsolute path res write fs readFileSync path path startsWith /home/user/www res write fs readFileSync path |
 | autogenerated/TaintedPath/normalizedPaths.js:101:23:101:38 | '/home/user/www' | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:101:23:101:38 | '/home/user/www' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:101:23:101:38 | '/home/user/www' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:101:23:101:38 | '/home/user/www' | receiverName | path |
 | autogenerated/TaintedPath/normalizedPaths.js:102:15:102:35 | fs.read ... c(path) | CalleeFlexibleAccessPath | res.write |
 | autogenerated/TaintedPath/normalizedPaths.js:102:15:102:35 | fs.read ... c(path) | InputArgumentIndex | 0 |
@@ -6260,7 +7999,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:102:15:102:35 | fs.read ... c(path) | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:102:15:102:35 | fs.read ... c(path) | enclosingFunctionBody | req res path pathModule normalize req query path pathModule isAbsolute path res write fs readFileSync path path startsWith /home/user/www res write fs readFileSync path |
 | autogenerated/TaintedPath/normalizedPaths.js:102:15:102:35 | fs.read ... c(path) | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:102:15:102:35 | fs.read ... c(path) | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:102:15:102:35 | fs.read ... c(path) | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:102:15:102:35 | fs.read ... c(path) | receiverName | res |
 | autogenerated/TaintedPath/normalizedPaths.js:102:31:102:34 | path | CalleeFlexibleAccessPath | fs.readFileSync |
 | autogenerated/TaintedPath/normalizedPaths.js:102:31:102:34 | path | InputArgumentIndex | 0 |
@@ -6269,27 +8008,27 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:102:31:102:34 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:102:31:102:34 | path | enclosingFunctionBody | req res path pathModule normalize req query path pathModule isAbsolute path res write fs readFileSync path path startsWith /home/user/www res write fs readFileSync path |
 | autogenerated/TaintedPath/normalizedPaths.js:102:31:102:34 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:102:31:102:34 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:102:31:102:34 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:102:31:102:34 | path | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:105:9:105:25 | '/combined-check' | CalleeFlexibleAccessPath | app.get |
 | autogenerated/TaintedPath/normalizedPaths.js:105:9:105:25 | '/combined-check' | InputArgumentIndex | 0 |
 | autogenerated/TaintedPath/normalizedPaths.js:105:9:105:25 | '/combined-check' | calleeImports | express |
 | autogenerated/TaintedPath/normalizedPaths.js:105:9:105:25 | '/combined-check' | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
 | autogenerated/TaintedPath/normalizedPaths.js:105:9:105:25 | '/combined-check' | contextSurroundingFunctionParameters |  |
-| autogenerated/TaintedPath/normalizedPaths.js:105:9:105:25 | '/combined-check' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:105:9:105:25 | '/combined-check' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:105:9:105:25 | '/combined-check' | receiverName | app |
 | autogenerated/TaintedPath/normalizedPaths.js:105:28:114:1 | (req, r ... // OK\\n} | CalleeFlexibleAccessPath | app.get |
 | autogenerated/TaintedPath/normalizedPaths.js:105:28:114:1 | (req, r ... // OK\\n} | InputArgumentIndex | 1 |
 | autogenerated/TaintedPath/normalizedPaths.js:105:28:114:1 | (req, r ... // OK\\n} | calleeImports | express |
 | autogenerated/TaintedPath/normalizedPaths.js:105:28:114:1 | (req, r ... // OK\\n} | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
 | autogenerated/TaintedPath/normalizedPaths.js:105:28:114:1 | (req, r ... // OK\\n} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:105:28:114:1 | (req, r ... // OK\\n} | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:105:28:114:1 | (req, r ... // OK\\n} | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:105:28:114:1 | (req, r ... // OK\\n} | receiverName | app |
 | autogenerated/TaintedPath/normalizedPaths.js:106:14:106:49 | pathMod ... y.path) | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
 | autogenerated/TaintedPath/normalizedPaths.js:106:14:106:49 | pathMod ... y.path) | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:106:14:106:49 | pathMod ... y.path) | enclosingFunctionBody | req res path pathModule normalize req query path path startsWith /home/user/www fs readFileSync path path 0 0 / path 0 0 . fs readFileSync path |
 | autogenerated/TaintedPath/normalizedPaths.js:106:14:106:49 | pathMod ... y.path) | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:106:14:106:49 | pathMod ... y.path) | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:106:14:106:49 | pathMod ... y.path) | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:106:35:106:48 | req.query.path | CalleeFlexibleAccessPath | pathModule.normalize |
 | autogenerated/TaintedPath/normalizedPaths.js:106:35:106:48 | req.query.path | InputArgumentIndex | 0 |
 | autogenerated/TaintedPath/normalizedPaths.js:106:35:106:48 | req.query.path | calleeImports | path |
@@ -6297,7 +8036,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:106:35:106:48 | req.query.path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:106:35:106:48 | req.query.path | enclosingFunctionBody | req res path pathModule normalize req query path path startsWith /home/user/www fs readFileSync path path 0 0 / path 0 0 . fs readFileSync path |
 | autogenerated/TaintedPath/normalizedPaths.js:106:35:106:48 | req.query.path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:106:35:106:48 | req.query.path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:106:35:106:48 | req.query.path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:106:35:106:48 | req.query.path | receiverName | pathModule |
 | autogenerated/TaintedPath/normalizedPaths.js:109:23:109:38 | "/home/user/www" | CalleeFlexibleAccessPath | path.startsWith |
 | autogenerated/TaintedPath/normalizedPaths.js:109:23:109:38 | "/home/user/www" | InputArgumentIndex | 0 |
@@ -6306,7 +8045,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:109:23:109:38 | "/home/user/www" | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:109:23:109:38 | "/home/user/www" | enclosingFunctionBody | req res path pathModule normalize req query path path startsWith /home/user/www fs readFileSync path path 0 0 / path 0 0 . fs readFileSync path |
 | autogenerated/TaintedPath/normalizedPaths.js:109:23:109:38 | "/home/user/www" | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:109:23:109:38 | "/home/user/www" | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:109:23:109:38 | "/home/user/www" | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:109:23:109:38 | "/home/user/www" | receiverName | path |
 | autogenerated/TaintedPath/normalizedPaths.js:110:21:110:24 | path | CalleeFlexibleAccessPath | fs.readFileSync |
 | autogenerated/TaintedPath/normalizedPaths.js:110:21:110:24 | path | InputArgumentIndex | 0 |
@@ -6315,7 +8054,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:110:21:110:24 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:110:21:110:24 | path | enclosingFunctionBody | req res path pathModule normalize req query path path startsWith /home/user/www fs readFileSync path path 0 0 / path 0 0 . fs readFileSync path |
 | autogenerated/TaintedPath/normalizedPaths.js:110:21:110:24 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:110:21:110:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:110:21:110:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:110:21:110:24 | path | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:113:21:113:24 | path | CalleeFlexibleAccessPath | fs.readFileSync |
 | autogenerated/TaintedPath/normalizedPaths.js:113:21:113:24 | path | InputArgumentIndex | 0 |
@@ -6324,27 +8063,27 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:113:21:113:24 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:113:21:113:24 | path | enclosingFunctionBody | req res path pathModule normalize req query path path startsWith /home/user/www fs readFileSync path path 0 0 / path 0 0 . fs readFileSync path |
 | autogenerated/TaintedPath/normalizedPaths.js:113:21:113:24 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:113:21:113:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:113:21:113:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:113:21:113:24 | path | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:116:9:116:19 | '/realpath' | CalleeFlexibleAccessPath | app.get |
 | autogenerated/TaintedPath/normalizedPaths.js:116:9:116:19 | '/realpath' | InputArgumentIndex | 0 |
 | autogenerated/TaintedPath/normalizedPaths.js:116:9:116:19 | '/realpath' | calleeImports | express |
 | autogenerated/TaintedPath/normalizedPaths.js:116:9:116:19 | '/realpath' | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
 | autogenerated/TaintedPath/normalizedPaths.js:116:9:116:19 | '/realpath' | contextSurroundingFunctionParameters |  |
-| autogenerated/TaintedPath/normalizedPaths.js:116:9:116:19 | '/realpath' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:116:9:116:19 | '/realpath' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:116:9:116:19 | '/realpath' | receiverName | app |
 | autogenerated/TaintedPath/normalizedPaths.js:116:22:127:1 | (req, r ... // OK\\n} | CalleeFlexibleAccessPath | app.get |
 | autogenerated/TaintedPath/normalizedPaths.js:116:22:127:1 | (req, r ... // OK\\n} | InputArgumentIndex | 1 |
 | autogenerated/TaintedPath/normalizedPaths.js:116:22:127:1 | (req, r ... // OK\\n} | calleeImports | express |
 | autogenerated/TaintedPath/normalizedPaths.js:116:22:127:1 | (req, r ... // OK\\n} | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
 | autogenerated/TaintedPath/normalizedPaths.js:116:22:127:1 | (req, r ... // OK\\n} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:116:22:127:1 | (req, r ... // OK\\n} | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:116:22:127:1 | (req, r ... // OK\\n} | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:116:22:127:1 | (req, r ... // OK\\n} | receiverName | app |
 | autogenerated/TaintedPath/normalizedPaths.js:117:14:117:44 | fs.real ... y.path) | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
 | autogenerated/TaintedPath/normalizedPaths.js:117:14:117:44 | fs.real ... y.path) | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:117:14:117:44 | fs.real ... y.path) | enclosingFunctionBody | req res path fs realpathSync req query path fs readFileSync path fs readFileSync pathModule join path index.html path startsWith /home/user/www fs readFileSync path fs readFileSync pathModule join . path fs readFileSync pathModule join /home/user/www path |
 | autogenerated/TaintedPath/normalizedPaths.js:117:14:117:44 | fs.real ... y.path) | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:117:14:117:44 | fs.real ... y.path) | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:117:14:117:44 | fs.real ... y.path) | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:117:30:117:43 | req.query.path | CalleeFlexibleAccessPath | fs.realpathSync |
 | autogenerated/TaintedPath/normalizedPaths.js:117:30:117:43 | req.query.path | InputArgumentIndex | 0 |
 | autogenerated/TaintedPath/normalizedPaths.js:117:30:117:43 | req.query.path | calleeImports | fs |
@@ -6352,7 +8091,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:117:30:117:43 | req.query.path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:117:30:117:43 | req.query.path | enclosingFunctionBody | req res path fs realpathSync req query path fs readFileSync path fs readFileSync pathModule join path index.html path startsWith /home/user/www fs readFileSync path fs readFileSync pathModule join . path fs readFileSync pathModule join /home/user/www path |
 | autogenerated/TaintedPath/normalizedPaths.js:117:30:117:43 | req.query.path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:117:30:117:43 | req.query.path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:117:30:117:43 | req.query.path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:117:30:117:43 | req.query.path | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:119:19:119:22 | path | CalleeFlexibleAccessPath | fs.readFileSync |
 | autogenerated/TaintedPath/normalizedPaths.js:119:19:119:22 | path | InputArgumentIndex | 0 |
@@ -6361,7 +8100,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:119:19:119:22 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:119:19:119:22 | path | enclosingFunctionBody | req res path fs realpathSync req query path fs readFileSync path fs readFileSync pathModule join path index.html path startsWith /home/user/www fs readFileSync path fs readFileSync pathModule join . path fs readFileSync pathModule join /home/user/www path |
 | autogenerated/TaintedPath/normalizedPaths.js:119:19:119:22 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:119:19:119:22 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:119:19:119:22 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:119:19:119:22 | path | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:120:19:120:53 | pathMod ... .html') | CalleeFlexibleAccessPath | fs.readFileSync |
 | autogenerated/TaintedPath/normalizedPaths.js:120:19:120:53 | pathMod ... .html') | InputArgumentIndex | 0 |
@@ -6370,7 +8109,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:120:19:120:53 | pathMod ... .html') | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:120:19:120:53 | pathMod ... .html') | enclosingFunctionBody | req res path fs realpathSync req query path fs readFileSync path fs readFileSync pathModule join path index.html path startsWith /home/user/www fs readFileSync path fs readFileSync pathModule join . path fs readFileSync pathModule join /home/user/www path |
 | autogenerated/TaintedPath/normalizedPaths.js:120:19:120:53 | pathMod ... .html') | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:120:19:120:53 | pathMod ... .html') | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:120:19:120:53 | pathMod ... .html') | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:120:19:120:53 | pathMod ... .html') | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:120:35:120:38 | path | CalleeFlexibleAccessPath | pathModule.join |
 | autogenerated/TaintedPath/normalizedPaths.js:120:35:120:38 | path | InputArgumentIndex | 0 |
@@ -6379,7 +8118,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:120:35:120:38 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:120:35:120:38 | path | enclosingFunctionBody | req res path fs realpathSync req query path fs readFileSync path fs readFileSync pathModule join path index.html path startsWith /home/user/www fs readFileSync path fs readFileSync pathModule join . path fs readFileSync pathModule join /home/user/www path |
 | autogenerated/TaintedPath/normalizedPaths.js:120:35:120:38 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:120:35:120:38 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:120:35:120:38 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:120:35:120:38 | path | receiverName | pathModule |
 | autogenerated/TaintedPath/normalizedPaths.js:120:41:120:52 | 'index.html' | CalleeFlexibleAccessPath | pathModule.join |
 | autogenerated/TaintedPath/normalizedPaths.js:120:41:120:52 | 'index.html' | InputArgumentIndex | 1 |
@@ -6388,7 +8127,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:120:41:120:52 | 'index.html' | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:120:41:120:52 | 'index.html' | enclosingFunctionBody | req res path fs realpathSync req query path fs readFileSync path fs readFileSync pathModule join path index.html path startsWith /home/user/www fs readFileSync path fs readFileSync pathModule join . path fs readFileSync pathModule join /home/user/www path |
 | autogenerated/TaintedPath/normalizedPaths.js:120:41:120:52 | 'index.html' | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:120:41:120:52 | 'index.html' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:120:41:120:52 | 'index.html' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:120:41:120:52 | 'index.html' | receiverName | pathModule |
 | autogenerated/TaintedPath/normalizedPaths.js:122:23:122:38 | "/home/user/www" | CalleeFlexibleAccessPath | path.startsWith |
 | autogenerated/TaintedPath/normalizedPaths.js:122:23:122:38 | "/home/user/www" | InputArgumentIndex | 0 |
@@ -6397,7 +8136,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:122:23:122:38 | "/home/user/www" | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:122:23:122:38 | "/home/user/www" | enclosingFunctionBody | req res path fs realpathSync req query path fs readFileSync path fs readFileSync pathModule join path index.html path startsWith /home/user/www fs readFileSync path fs readFileSync pathModule join . path fs readFileSync pathModule join /home/user/www path |
 | autogenerated/TaintedPath/normalizedPaths.js:122:23:122:38 | "/home/user/www" | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:122:23:122:38 | "/home/user/www" | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:122:23:122:38 | "/home/user/www" | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:122:23:122:38 | "/home/user/www" | receiverName | path |
 | autogenerated/TaintedPath/normalizedPaths.js:123:21:123:24 | path | CalleeFlexibleAccessPath | fs.readFileSync |
 | autogenerated/TaintedPath/normalizedPaths.js:123:21:123:24 | path | InputArgumentIndex | 0 |
@@ -6406,7 +8145,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:123:21:123:24 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:123:21:123:24 | path | enclosingFunctionBody | req res path fs realpathSync req query path fs readFileSync path fs readFileSync pathModule join path index.html path startsWith /home/user/www fs readFileSync path fs readFileSync pathModule join . path fs readFileSync pathModule join /home/user/www path |
 | autogenerated/TaintedPath/normalizedPaths.js:123:21:123:24 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:123:21:123:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:123:21:123:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:123:21:123:24 | path | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:125:19:125:44 | pathMod ... , path) | CalleeFlexibleAccessPath | fs.readFileSync |
 | autogenerated/TaintedPath/normalizedPaths.js:125:19:125:44 | pathMod ... , path) | InputArgumentIndex | 0 |
@@ -6415,7 +8154,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:125:19:125:44 | pathMod ... , path) | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:125:19:125:44 | pathMod ... , path) | enclosingFunctionBody | req res path fs realpathSync req query path fs readFileSync path fs readFileSync pathModule join path index.html path startsWith /home/user/www fs readFileSync path fs readFileSync pathModule join . path fs readFileSync pathModule join /home/user/www path |
 | autogenerated/TaintedPath/normalizedPaths.js:125:19:125:44 | pathMod ... , path) | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:125:19:125:44 | pathMod ... , path) | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:125:19:125:44 | pathMod ... , path) | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:125:19:125:44 | pathMod ... , path) | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:125:35:125:37 | '.' | CalleeFlexibleAccessPath | pathModule.join |
 | autogenerated/TaintedPath/normalizedPaths.js:125:35:125:37 | '.' | InputArgumentIndex | 0 |
@@ -6424,7 +8163,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:125:35:125:37 | '.' | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:125:35:125:37 | '.' | enclosingFunctionBody | req res path fs realpathSync req query path fs readFileSync path fs readFileSync pathModule join path index.html path startsWith /home/user/www fs readFileSync path fs readFileSync pathModule join . path fs readFileSync pathModule join /home/user/www path |
 | autogenerated/TaintedPath/normalizedPaths.js:125:35:125:37 | '.' | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:125:35:125:37 | '.' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:125:35:125:37 | '.' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:125:35:125:37 | '.' | receiverName | pathModule |
 | autogenerated/TaintedPath/normalizedPaths.js:125:40:125:43 | path | CalleeFlexibleAccessPath | pathModule.join |
 | autogenerated/TaintedPath/normalizedPaths.js:125:40:125:43 | path | InputArgumentIndex | 1 |
@@ -6433,7 +8172,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:125:40:125:43 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:125:40:125:43 | path | enclosingFunctionBody | req res path fs realpathSync req query path fs readFileSync path fs readFileSync pathModule join path index.html path startsWith /home/user/www fs readFileSync path fs readFileSync pathModule join . path fs readFileSync pathModule join /home/user/www path |
 | autogenerated/TaintedPath/normalizedPaths.js:125:40:125:43 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:125:40:125:43 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:125:40:125:43 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:125:40:125:43 | path | receiverName | pathModule |
 | autogenerated/TaintedPath/normalizedPaths.js:126:19:126:57 | pathMod ... , path) | CalleeFlexibleAccessPath | fs.readFileSync |
 | autogenerated/TaintedPath/normalizedPaths.js:126:19:126:57 | pathMod ... , path) | InputArgumentIndex | 0 |
@@ -6442,7 +8181,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:126:19:126:57 | pathMod ... , path) | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:126:19:126:57 | pathMod ... , path) | enclosingFunctionBody | req res path fs realpathSync req query path fs readFileSync path fs readFileSync pathModule join path index.html path startsWith /home/user/www fs readFileSync path fs readFileSync pathModule join . path fs readFileSync pathModule join /home/user/www path |
 | autogenerated/TaintedPath/normalizedPaths.js:126:19:126:57 | pathMod ... , path) | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:126:19:126:57 | pathMod ... , path) | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:126:19:126:57 | pathMod ... , path) | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:126:19:126:57 | pathMod ... , path) | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:126:35:126:50 | '/home/user/www' | CalleeFlexibleAccessPath | pathModule.join |
 | autogenerated/TaintedPath/normalizedPaths.js:126:35:126:50 | '/home/user/www' | InputArgumentIndex | 0 |
@@ -6451,7 +8190,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:126:35:126:50 | '/home/user/www' | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:126:35:126:50 | '/home/user/www' | enclosingFunctionBody | req res path fs realpathSync req query path fs readFileSync path fs readFileSync pathModule join path index.html path startsWith /home/user/www fs readFileSync path fs readFileSync pathModule join . path fs readFileSync pathModule join /home/user/www path |
 | autogenerated/TaintedPath/normalizedPaths.js:126:35:126:50 | '/home/user/www' | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:126:35:126:50 | '/home/user/www' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:126:35:126:50 | '/home/user/www' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:126:35:126:50 | '/home/user/www' | receiverName | pathModule |
 | autogenerated/TaintedPath/normalizedPaths.js:126:53:126:56 | path | CalleeFlexibleAccessPath | pathModule.join |
 | autogenerated/TaintedPath/normalizedPaths.js:126:53:126:56 | path | InputArgumentIndex | 1 |
@@ -6460,27 +8199,27 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:126:53:126:56 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:126:53:126:56 | path | enclosingFunctionBody | req res path fs realpathSync req query path fs readFileSync path fs readFileSync pathModule join path index.html path startsWith /home/user/www fs readFileSync path fs readFileSync pathModule join . path fs readFileSync pathModule join /home/user/www path |
 | autogenerated/TaintedPath/normalizedPaths.js:126:53:126:56 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:126:53:126:56 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:126:53:126:56 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:126:53:126:56 | path | receiverName | pathModule |
 | autogenerated/TaintedPath/normalizedPaths.js:129:9:129:26 | '/coerce-relative' | CalleeFlexibleAccessPath | app.get |
 | autogenerated/TaintedPath/normalizedPaths.js:129:9:129:26 | '/coerce-relative' | InputArgumentIndex | 0 |
 | autogenerated/TaintedPath/normalizedPaths.js:129:9:129:26 | '/coerce-relative' | calleeImports | express |
 | autogenerated/TaintedPath/normalizedPaths.js:129:9:129:26 | '/coerce-relative' | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
 | autogenerated/TaintedPath/normalizedPaths.js:129:9:129:26 | '/coerce-relative' | contextSurroundingFunctionParameters |  |
-| autogenerated/TaintedPath/normalizedPaths.js:129:9:129:26 | '/coerce-relative' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:129:9:129:26 | '/coerce-relative' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:129:9:129:26 | '/coerce-relative' | receiverName | app |
 | autogenerated/TaintedPath/normalizedPaths.js:129:29:136:1 | (req, r ... OT OK\\n} | CalleeFlexibleAccessPath | app.get |
 | autogenerated/TaintedPath/normalizedPaths.js:129:29:136:1 | (req, r ... OT OK\\n} | InputArgumentIndex | 1 |
 | autogenerated/TaintedPath/normalizedPaths.js:129:29:136:1 | (req, r ... OT OK\\n} | calleeImports | express |
 | autogenerated/TaintedPath/normalizedPaths.js:129:29:136:1 | (req, r ... OT OK\\n} | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
 | autogenerated/TaintedPath/normalizedPaths.js:129:29:136:1 | (req, r ... OT OK\\n} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:129:29:136:1 | (req, r ... OT OK\\n} | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:129:29:136:1 | (req, r ... OT OK\\n} | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:129:29:136:1 | (req, r ... OT OK\\n} | receiverName | app |
 | autogenerated/TaintedPath/normalizedPaths.js:130:14:130:49 | pathMod ... y.path) | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
 | autogenerated/TaintedPath/normalizedPaths.js:130:14:130:49 | pathMod ... y.path) | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:130:14:130:49 | pathMod ... y.path) | enclosingFunctionBody | req res path pathModule join . req query path path startsWith .. fs readFileSync path fs readFileSync path |
 | autogenerated/TaintedPath/normalizedPaths.js:130:14:130:49 | pathMod ... y.path) | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:130:14:130:49 | pathMod ... y.path) | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:130:14:130:49 | pathMod ... y.path) | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:130:30:130:32 | '.' | CalleeFlexibleAccessPath | pathModule.join |
 | autogenerated/TaintedPath/normalizedPaths.js:130:30:130:32 | '.' | InputArgumentIndex | 0 |
 | autogenerated/TaintedPath/normalizedPaths.js:130:30:130:32 | '.' | calleeImports | path |
@@ -6488,7 +8227,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:130:30:130:32 | '.' | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:130:30:130:32 | '.' | enclosingFunctionBody | req res path pathModule join . req query path path startsWith .. fs readFileSync path fs readFileSync path |
 | autogenerated/TaintedPath/normalizedPaths.js:130:30:130:32 | '.' | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:130:30:130:32 | '.' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:130:30:130:32 | '.' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:130:30:130:32 | '.' | receiverName | pathModule |
 | autogenerated/TaintedPath/normalizedPaths.js:130:35:130:48 | req.query.path | CalleeFlexibleAccessPath | pathModule.join |
 | autogenerated/TaintedPath/normalizedPaths.js:130:35:130:48 | req.query.path | InputArgumentIndex | 1 |
@@ -6497,7 +8236,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:130:35:130:48 | req.query.path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:130:35:130:48 | req.query.path | enclosingFunctionBody | req res path pathModule join . req query path path startsWith .. fs readFileSync path fs readFileSync path |
 | autogenerated/TaintedPath/normalizedPaths.js:130:35:130:48 | req.query.path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:130:35:130:48 | req.query.path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:130:35:130:48 | req.query.path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:130:35:130:48 | req.query.path | receiverName | pathModule |
 | autogenerated/TaintedPath/normalizedPaths.js:132:24:132:27 | '..' | CalleeFlexibleAccessPath | path.startsWith |
 | autogenerated/TaintedPath/normalizedPaths.js:132:24:132:27 | '..' | InputArgumentIndex | 0 |
@@ -6506,7 +8245,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:132:24:132:27 | '..' | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:132:24:132:27 | '..' | enclosingFunctionBody | req res path pathModule join . req query path path startsWith .. fs readFileSync path fs readFileSync path |
 | autogenerated/TaintedPath/normalizedPaths.js:132:24:132:27 | '..' | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:132:24:132:27 | '..' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:132:24:132:27 | '..' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:132:24:132:27 | '..' | receiverName | path |
 | autogenerated/TaintedPath/normalizedPaths.js:133:21:133:24 | path | CalleeFlexibleAccessPath | fs.readFileSync |
 | autogenerated/TaintedPath/normalizedPaths.js:133:21:133:24 | path | InputArgumentIndex | 0 |
@@ -6515,7 +8254,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:133:21:133:24 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:133:21:133:24 | path | enclosingFunctionBody | req res path pathModule join . req query path path startsWith .. fs readFileSync path fs readFileSync path |
 | autogenerated/TaintedPath/normalizedPaths.js:133:21:133:24 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:133:21:133:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:133:21:133:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:133:21:133:24 | path | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:135:21:135:24 | path | CalleeFlexibleAccessPath | fs.readFileSync |
 | autogenerated/TaintedPath/normalizedPaths.js:135:21:135:24 | path | InputArgumentIndex | 0 |
@@ -6524,27 +8263,27 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:135:21:135:24 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:135:21:135:24 | path | enclosingFunctionBody | req res path pathModule join . req query path path startsWith .. fs readFileSync path fs readFileSync path |
 | autogenerated/TaintedPath/normalizedPaths.js:135:21:135:24 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:135:21:135:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:135:21:135:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:135:21:135:24 | path | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:138:9:138:26 | '/coerce-absolute' | CalleeFlexibleAccessPath | app.get |
 | autogenerated/TaintedPath/normalizedPaths.js:138:9:138:26 | '/coerce-absolute' | InputArgumentIndex | 0 |
 | autogenerated/TaintedPath/normalizedPaths.js:138:9:138:26 | '/coerce-absolute' | calleeImports | express |
 | autogenerated/TaintedPath/normalizedPaths.js:138:9:138:26 | '/coerce-absolute' | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
 | autogenerated/TaintedPath/normalizedPaths.js:138:9:138:26 | '/coerce-absolute' | contextSurroundingFunctionParameters |  |
-| autogenerated/TaintedPath/normalizedPaths.js:138:9:138:26 | '/coerce-absolute' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:138:9:138:26 | '/coerce-absolute' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:138:9:138:26 | '/coerce-absolute' | receiverName | app |
 | autogenerated/TaintedPath/normalizedPaths.js:138:29:145:1 | (req, r ... OT OK\\n} | CalleeFlexibleAccessPath | app.get |
 | autogenerated/TaintedPath/normalizedPaths.js:138:29:145:1 | (req, r ... OT OK\\n} | InputArgumentIndex | 1 |
 | autogenerated/TaintedPath/normalizedPaths.js:138:29:145:1 | (req, r ... OT OK\\n} | calleeImports | express |
 | autogenerated/TaintedPath/normalizedPaths.js:138:29:145:1 | (req, r ... OT OK\\n} | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
 | autogenerated/TaintedPath/normalizedPaths.js:138:29:145:1 | (req, r ... OT OK\\n} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:138:29:145:1 | (req, r ... OT OK\\n} | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:138:29:145:1 | (req, r ... OT OK\\n} | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:138:29:145:1 | (req, r ... OT OK\\n} | receiverName | app |
 | autogenerated/TaintedPath/normalizedPaths.js:139:14:139:62 | pathMod ... y.path) | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
 | autogenerated/TaintedPath/normalizedPaths.js:139:14:139:62 | pathMod ... y.path) | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:139:14:139:62 | pathMod ... y.path) | enclosingFunctionBody | req res path pathModule join /home/user/www req query path path startsWith /home/user/www fs readFileSync path fs readFileSync path |
 | autogenerated/TaintedPath/normalizedPaths.js:139:14:139:62 | pathMod ... y.path) | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:139:14:139:62 | pathMod ... y.path) | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:139:14:139:62 | pathMod ... y.path) | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:139:30:139:45 | '/home/user/www' | CalleeFlexibleAccessPath | pathModule.join |
 | autogenerated/TaintedPath/normalizedPaths.js:139:30:139:45 | '/home/user/www' | InputArgumentIndex | 0 |
 | autogenerated/TaintedPath/normalizedPaths.js:139:30:139:45 | '/home/user/www' | calleeImports | path |
@@ -6552,7 +8291,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:139:30:139:45 | '/home/user/www' | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:139:30:139:45 | '/home/user/www' | enclosingFunctionBody | req res path pathModule join /home/user/www req query path path startsWith /home/user/www fs readFileSync path fs readFileSync path |
 | autogenerated/TaintedPath/normalizedPaths.js:139:30:139:45 | '/home/user/www' | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:139:30:139:45 | '/home/user/www' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:139:30:139:45 | '/home/user/www' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:139:30:139:45 | '/home/user/www' | receiverName | pathModule |
 | autogenerated/TaintedPath/normalizedPaths.js:139:48:139:61 | req.query.path | CalleeFlexibleAccessPath | pathModule.join |
 | autogenerated/TaintedPath/normalizedPaths.js:139:48:139:61 | req.query.path | InputArgumentIndex | 1 |
@@ -6561,7 +8300,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:139:48:139:61 | req.query.path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:139:48:139:61 | req.query.path | enclosingFunctionBody | req res path pathModule join /home/user/www req query path path startsWith /home/user/www fs readFileSync path fs readFileSync path |
 | autogenerated/TaintedPath/normalizedPaths.js:139:48:139:61 | req.query.path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:139:48:139:61 | req.query.path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:139:48:139:61 | req.query.path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:139:48:139:61 | req.query.path | receiverName | pathModule |
 | autogenerated/TaintedPath/normalizedPaths.js:141:23:141:38 | '/home/user/www' | CalleeFlexibleAccessPath | path.startsWith |
 | autogenerated/TaintedPath/normalizedPaths.js:141:23:141:38 | '/home/user/www' | InputArgumentIndex | 0 |
@@ -6570,7 +8309,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:141:23:141:38 | '/home/user/www' | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:141:23:141:38 | '/home/user/www' | enclosingFunctionBody | req res path pathModule join /home/user/www req query path path startsWith /home/user/www fs readFileSync path fs readFileSync path |
 | autogenerated/TaintedPath/normalizedPaths.js:141:23:141:38 | '/home/user/www' | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:141:23:141:38 | '/home/user/www' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:141:23:141:38 | '/home/user/www' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:141:23:141:38 | '/home/user/www' | receiverName | path |
 | autogenerated/TaintedPath/normalizedPaths.js:142:21:142:24 | path | CalleeFlexibleAccessPath | fs.readFileSync |
 | autogenerated/TaintedPath/normalizedPaths.js:142:21:142:24 | path | InputArgumentIndex | 0 |
@@ -6579,7 +8318,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:142:21:142:24 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:142:21:142:24 | path | enclosingFunctionBody | req res path pathModule join /home/user/www req query path path startsWith /home/user/www fs readFileSync path fs readFileSync path |
 | autogenerated/TaintedPath/normalizedPaths.js:142:21:142:24 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:142:21:142:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:142:21:142:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:142:21:142:24 | path | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:144:21:144:24 | path | CalleeFlexibleAccessPath | fs.readFileSync |
 | autogenerated/TaintedPath/normalizedPaths.js:144:21:144:24 | path | InputArgumentIndex | 0 |
@@ -6588,27 +8327,27 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:144:21:144:24 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:144:21:144:24 | path | enclosingFunctionBody | req res path pathModule join /home/user/www req query path path startsWith /home/user/www fs readFileSync path fs readFileSync path |
 | autogenerated/TaintedPath/normalizedPaths.js:144:21:144:24 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:144:21:144:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:144:21:144:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:144:21:144:24 | path | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:147:9:147:37 | '/conca ... zation' | CalleeFlexibleAccessPath | app.get |
 | autogenerated/TaintedPath/normalizedPaths.js:147:9:147:37 | '/conca ... zation' | InputArgumentIndex | 0 |
 | autogenerated/TaintedPath/normalizedPaths.js:147:9:147:37 | '/conca ... zation' | calleeImports | express |
 | autogenerated/TaintedPath/normalizedPaths.js:147:9:147:37 | '/conca ... zation' | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
 | autogenerated/TaintedPath/normalizedPaths.js:147:9:147:37 | '/conca ... zation' | contextSurroundingFunctionParameters |  |
-| autogenerated/TaintedPath/normalizedPaths.js:147:9:147:37 | '/conca ... zation' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:147:9:147:37 | '/conca ... zation' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:147:9:147:37 | '/conca ... zation' | receiverName | app |
 | autogenerated/TaintedPath/normalizedPaths.js:147:40:157:1 | (req, r ... // OK\\n} | CalleeFlexibleAccessPath | app.get |
 | autogenerated/TaintedPath/normalizedPaths.js:147:40:157:1 | (req, r ... // OK\\n} | InputArgumentIndex | 1 |
 | autogenerated/TaintedPath/normalizedPaths.js:147:40:157:1 | (req, r ... // OK\\n} | calleeImports | express |
 | autogenerated/TaintedPath/normalizedPaths.js:147:40:157:1 | (req, r ... // OK\\n} | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
 | autogenerated/TaintedPath/normalizedPaths.js:147:40:157:1 | (req, r ... // OK\\n} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:147:40:157:1 | (req, r ... // OK\\n} | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:147:40:157:1 | (req, r ... // OK\\n} | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:147:40:157:1 | (req, r ... // OK\\n} | receiverName | app |
 | autogenerated/TaintedPath/normalizedPaths.js:148:14:148:58 | 'foo/'  ... y.path) | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
 | autogenerated/TaintedPath/normalizedPaths.js:148:14:148:58 | 'foo/'  ... y.path) | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:148:14:148:58 | 'foo/'  ... y.path) | enclosingFunctionBody | req res path foo/ pathModule normalize req query path path startsWith .. fs readFileSync path fs readFileSync path path includes .. fs readFileSync path |
 | autogenerated/TaintedPath/normalizedPaths.js:148:14:148:58 | 'foo/'  ... y.path) | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:148:14:148:58 | 'foo/'  ... y.path) | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:148:14:148:58 | 'foo/'  ... y.path) | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:148:44:148:57 | req.query.path | CalleeFlexibleAccessPath | pathModule.normalize |
 | autogenerated/TaintedPath/normalizedPaths.js:148:44:148:57 | req.query.path | InputArgumentIndex | 0 |
 | autogenerated/TaintedPath/normalizedPaths.js:148:44:148:57 | req.query.path | calleeImports | path |
@@ -6616,7 +8355,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:148:44:148:57 | req.query.path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:148:44:148:57 | req.query.path | enclosingFunctionBody | req res path foo/ pathModule normalize req query path path startsWith .. fs readFileSync path fs readFileSync path path includes .. fs readFileSync path |
 | autogenerated/TaintedPath/normalizedPaths.js:148:44:148:57 | req.query.path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:148:44:148:57 | req.query.path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:148:44:148:57 | req.query.path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:148:44:148:57 | req.query.path | receiverName | pathModule |
 | autogenerated/TaintedPath/normalizedPaths.js:150:24:150:27 | '..' | CalleeFlexibleAccessPath | path.startsWith |
 | autogenerated/TaintedPath/normalizedPaths.js:150:24:150:27 | '..' | InputArgumentIndex | 0 |
@@ -6625,7 +8364,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:150:24:150:27 | '..' | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:150:24:150:27 | '..' | enclosingFunctionBody | req res path foo/ pathModule normalize req query path path startsWith .. fs readFileSync path fs readFileSync path path includes .. fs readFileSync path |
 | autogenerated/TaintedPath/normalizedPaths.js:150:24:150:27 | '..' | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:150:24:150:27 | '..' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:150:24:150:27 | '..' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:150:24:150:27 | '..' | receiverName | path |
 | autogenerated/TaintedPath/normalizedPaths.js:151:21:151:24 | path | CalleeFlexibleAccessPath | fs.readFileSync |
 | autogenerated/TaintedPath/normalizedPaths.js:151:21:151:24 | path | InputArgumentIndex | 0 |
@@ -6634,7 +8373,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:151:21:151:24 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:151:21:151:24 | path | enclosingFunctionBody | req res path foo/ pathModule normalize req query path path startsWith .. fs readFileSync path fs readFileSync path path includes .. fs readFileSync path |
 | autogenerated/TaintedPath/normalizedPaths.js:151:21:151:24 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:151:21:151:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:151:21:151:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:151:21:151:24 | path | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:153:21:153:24 | path | CalleeFlexibleAccessPath | fs.readFileSync |
 | autogenerated/TaintedPath/normalizedPaths.js:153:21:153:24 | path | InputArgumentIndex | 0 |
@@ -6643,7 +8382,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:153:21:153:24 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:153:21:153:24 | path | enclosingFunctionBody | req res path foo/ pathModule normalize req query path path startsWith .. fs readFileSync path fs readFileSync path path includes .. fs readFileSync path |
 | autogenerated/TaintedPath/normalizedPaths.js:153:21:153:24 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:153:21:153:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:153:21:153:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:153:21:153:24 | path | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:155:22:155:25 | '..' | CalleeFlexibleAccessPath | path.includes |
 | autogenerated/TaintedPath/normalizedPaths.js:155:22:155:25 | '..' | InputArgumentIndex | 0 |
@@ -6652,7 +8391,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:155:22:155:25 | '..' | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:155:22:155:25 | '..' | enclosingFunctionBody | req res path foo/ pathModule normalize req query path path startsWith .. fs readFileSync path fs readFileSync path path includes .. fs readFileSync path |
 | autogenerated/TaintedPath/normalizedPaths.js:155:22:155:25 | '..' | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:155:22:155:25 | '..' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:155:22:155:25 | '..' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:155:22:155:25 | '..' | receiverName | path |
 | autogenerated/TaintedPath/normalizedPaths.js:156:21:156:24 | path | CalleeFlexibleAccessPath | fs.readFileSync |
 | autogenerated/TaintedPath/normalizedPaths.js:156:21:156:24 | path | InputArgumentIndex | 0 |
@@ -6661,27 +8400,27 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:156:21:156:24 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:156:21:156:24 | path | enclosingFunctionBody | req res path foo/ pathModule normalize req query path path startsWith .. fs readFileSync path fs readFileSync path path includes .. fs readFileSync path |
 | autogenerated/TaintedPath/normalizedPaths.js:156:21:156:24 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:156:21:156:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:156:21:156:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:156:21:156:24 | path | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:159:9:159:19 | '/noDotDot' | CalleeFlexibleAccessPath | app.get |
 | autogenerated/TaintedPath/normalizedPaths.js:159:9:159:19 | '/noDotDot' | InputArgumentIndex | 0 |
 | autogenerated/TaintedPath/normalizedPaths.js:159:9:159:19 | '/noDotDot' | calleeImports | express |
 | autogenerated/TaintedPath/normalizedPaths.js:159:9:159:19 | '/noDotDot' | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
 | autogenerated/TaintedPath/normalizedPaths.js:159:9:159:19 | '/noDotDot' | contextSurroundingFunctionParameters |  |
-| autogenerated/TaintedPath/normalizedPaths.js:159:9:159:19 | '/noDotDot' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:159:9:159:19 | '/noDotDot' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:159:9:159:19 | '/noDotDot' | receiverName | app |
 | autogenerated/TaintedPath/normalizedPaths.js:159:22:171:1 | (req, r ... OT OK\\n} | CalleeFlexibleAccessPath | app.get |
 | autogenerated/TaintedPath/normalizedPaths.js:159:22:171:1 | (req, r ... OT OK\\n} | InputArgumentIndex | 1 |
 | autogenerated/TaintedPath/normalizedPaths.js:159:22:171:1 | (req, r ... OT OK\\n} | calleeImports | express |
 | autogenerated/TaintedPath/normalizedPaths.js:159:22:171:1 | (req, r ... OT OK\\n} | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
 | autogenerated/TaintedPath/normalizedPaths.js:159:22:171:1 | (req, r ... OT OK\\n} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:159:22:171:1 | (req, r ... OT OK\\n} | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:159:22:171:1 | (req, r ... OT OK\\n} | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:159:22:171:1 | (req, r ... OT OK\\n} | receiverName | app |
 | autogenerated/TaintedPath/normalizedPaths.js:160:14:160:49 | pathMod ... y.path) | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
 | autogenerated/TaintedPath/normalizedPaths.js:160:14:160:49 | pathMod ... y.path) | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:160:14:160:49 | pathMod ... y.path) | enclosingFunctionBody | req res path pathModule normalize req query path path includes .. fs readFileSync path pathModule isAbsolute path fs readFileSync path fs readFileSync path |
 | autogenerated/TaintedPath/normalizedPaths.js:160:14:160:49 | pathMod ... y.path) | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:160:14:160:49 | pathMod ... y.path) | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:160:14:160:49 | pathMod ... y.path) | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:160:35:160:48 | req.query.path | CalleeFlexibleAccessPath | pathModule.normalize |
 | autogenerated/TaintedPath/normalizedPaths.js:160:35:160:48 | req.query.path | InputArgumentIndex | 0 |
 | autogenerated/TaintedPath/normalizedPaths.js:160:35:160:48 | req.query.path | calleeImports | path |
@@ -6689,7 +8428,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:160:35:160:48 | req.query.path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:160:35:160:48 | req.query.path | enclosingFunctionBody | req res path pathModule normalize req query path path includes .. fs readFileSync path pathModule isAbsolute path fs readFileSync path fs readFileSync path |
 | autogenerated/TaintedPath/normalizedPaths.js:160:35:160:48 | req.query.path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:160:35:160:48 | req.query.path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:160:35:160:48 | req.query.path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:160:35:160:48 | req.query.path | receiverName | pathModule |
 | autogenerated/TaintedPath/normalizedPaths.js:162:21:162:24 | '..' | CalleeFlexibleAccessPath | path.includes |
 | autogenerated/TaintedPath/normalizedPaths.js:162:21:162:24 | '..' | InputArgumentIndex | 0 |
@@ -6698,7 +8437,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:162:21:162:24 | '..' | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:162:21:162:24 | '..' | enclosingFunctionBody | req res path pathModule normalize req query path path includes .. fs readFileSync path pathModule isAbsolute path fs readFileSync path fs readFileSync path |
 | autogenerated/TaintedPath/normalizedPaths.js:162:21:162:24 | '..' | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:162:21:162:24 | '..' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:162:21:162:24 | '..' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:162:21:162:24 | '..' | receiverName | path |
 | autogenerated/TaintedPath/normalizedPaths.js:165:19:165:22 | path | CalleeFlexibleAccessPath | fs.readFileSync |
 | autogenerated/TaintedPath/normalizedPaths.js:165:19:165:22 | path | InputArgumentIndex | 0 |
@@ -6707,7 +8446,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:165:19:165:22 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:165:19:165:22 | path | enclosingFunctionBody | req res path pathModule normalize req query path path includes .. fs readFileSync path pathModule isAbsolute path fs readFileSync path fs readFileSync path |
 | autogenerated/TaintedPath/normalizedPaths.js:165:19:165:22 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:165:19:165:22 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:165:19:165:22 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:165:19:165:22 | path | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:168:21:168:24 | path | CalleeFlexibleAccessPath | fs.readFileSync |
 | autogenerated/TaintedPath/normalizedPaths.js:168:21:168:24 | path | InputArgumentIndex | 0 |
@@ -6716,7 +8455,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:168:21:168:24 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:168:21:168:24 | path | enclosingFunctionBody | req res path pathModule normalize req query path path includes .. fs readFileSync path pathModule isAbsolute path fs readFileSync path fs readFileSync path |
 | autogenerated/TaintedPath/normalizedPaths.js:168:21:168:24 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:168:21:168:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:168:21:168:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:168:21:168:24 | path | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:170:21:170:24 | path | CalleeFlexibleAccessPath | fs.readFileSync |
 | autogenerated/TaintedPath/normalizedPaths.js:170:21:170:24 | path | InputArgumentIndex | 0 |
@@ -6725,21 +8464,21 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:170:21:170:24 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:170:21:170:24 | path | enclosingFunctionBody | req res path pathModule normalize req query path path includes .. fs readFileSync path pathModule isAbsolute path fs readFileSync path fs readFileSync path |
 | autogenerated/TaintedPath/normalizedPaths.js:170:21:170:24 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:170:21:170:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:170:21:170:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:170:21:170:24 | path | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:173:9:173:26 | '/join-regression' | CalleeFlexibleAccessPath | app.get |
 | autogenerated/TaintedPath/normalizedPaths.js:173:9:173:26 | '/join-regression' | InputArgumentIndex | 0 |
 | autogenerated/TaintedPath/normalizedPaths.js:173:9:173:26 | '/join-regression' | calleeImports | express |
 | autogenerated/TaintedPath/normalizedPaths.js:173:9:173:26 | '/join-regression' | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
 | autogenerated/TaintedPath/normalizedPaths.js:173:9:173:26 | '/join-regression' | contextSurroundingFunctionParameters |  |
-| autogenerated/TaintedPath/normalizedPaths.js:173:9:173:26 | '/join-regression' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:173:9:173:26 | '/join-regression' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:173:9:173:26 | '/join-regression' | receiverName | app |
 | autogenerated/TaintedPath/normalizedPaths.js:173:29:211:1 | (req, r ... OT OK\\n} | CalleeFlexibleAccessPath | app.get |
 | autogenerated/TaintedPath/normalizedPaths.js:173:29:211:1 | (req, r ... OT OK\\n} | InputArgumentIndex | 1 |
 | autogenerated/TaintedPath/normalizedPaths.js:173:29:211:1 | (req, r ... OT OK\\n} | calleeImports | express |
 | autogenerated/TaintedPath/normalizedPaths.js:173:29:211:1 | (req, r ... OT OK\\n} | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
 | autogenerated/TaintedPath/normalizedPaths.js:173:29:211:1 | (req, r ... OT OK\\n} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:173:29:211:1 | (req, r ... OT OK\\n} | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:173:29:211:1 | (req, r ... OT OK\\n} | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:173:29:211:1 | (req, r ... OT OK\\n} | receiverName | app |
 | autogenerated/TaintedPath/normalizedPaths.js:180:23:180:25 | '/' | CalleeFlexibleAccessPath | path.startsWith |
 | autogenerated/TaintedPath/normalizedPaths.js:180:23:180:25 | '/' | InputArgumentIndex | 0 |
@@ -6747,7 +8486,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:180:23:180:25 | '/' | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:180:23:180:25 | '/' | enclosingFunctionBody | req res path req query path pathModule isAbsolute path path path path startsWith / path path path startsWith /x path path path startsWith . path path fs readFileSync path pathModule isAbsolute path fs readFileSync path fs readFileSync path path includes .. fs readFileSync path fs readFileSync path path includes .. pathModule isAbsolute path fs readFileSync path fs readFileSync path normalizedPath pathModule normalize path normalizedPath startsWith /home/user/www fs readFileSync normalizedPath fs readFileSync normalizedPath normalizedPath startsWith /home/user/www normalizedPath startsWith /home/user/public fs readFileSync normalizedPath fs readFileSync normalizedPath |
 | autogenerated/TaintedPath/normalizedPaths.js:180:23:180:25 | '/' | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:180:23:180:25 | '/' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:180:23:180:25 | '/' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:180:23:180:25 | '/' | receiverName | path |
 | autogenerated/TaintedPath/normalizedPaths.js:181:23:181:26 | '/x' | CalleeFlexibleAccessPath | path.startsWith |
 | autogenerated/TaintedPath/normalizedPaths.js:181:23:181:26 | '/x' | InputArgumentIndex | 0 |
@@ -6755,7 +8494,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:181:23:181:26 | '/x' | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:181:23:181:26 | '/x' | enclosingFunctionBody | req res path req query path pathModule isAbsolute path path path path startsWith / path path path startsWith /x path path path startsWith . path path fs readFileSync path pathModule isAbsolute path fs readFileSync path fs readFileSync path path includes .. fs readFileSync path fs readFileSync path path includes .. pathModule isAbsolute path fs readFileSync path fs readFileSync path normalizedPath pathModule normalize path normalizedPath startsWith /home/user/www fs readFileSync normalizedPath fs readFileSync normalizedPath normalizedPath startsWith /home/user/www normalizedPath startsWith /home/user/public fs readFileSync normalizedPath fs readFileSync normalizedPath |
 | autogenerated/TaintedPath/normalizedPaths.js:181:23:181:26 | '/x' | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:181:23:181:26 | '/x' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:181:23:181:26 | '/x' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:181:23:181:26 | '/x' | receiverName | path |
 | autogenerated/TaintedPath/normalizedPaths.js:182:23:182:25 | '.' | CalleeFlexibleAccessPath | path.startsWith |
 | autogenerated/TaintedPath/normalizedPaths.js:182:23:182:25 | '.' | InputArgumentIndex | 0 |
@@ -6763,7 +8502,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:182:23:182:25 | '.' | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:182:23:182:25 | '.' | enclosingFunctionBody | req res path req query path pathModule isAbsolute path path path path startsWith / path path path startsWith /x path path path startsWith . path path fs readFileSync path pathModule isAbsolute path fs readFileSync path fs readFileSync path path includes .. fs readFileSync path fs readFileSync path path includes .. pathModule isAbsolute path fs readFileSync path fs readFileSync path normalizedPath pathModule normalize path normalizedPath startsWith /home/user/www fs readFileSync normalizedPath fs readFileSync normalizedPath normalizedPath startsWith /home/user/www normalizedPath startsWith /home/user/public fs readFileSync normalizedPath fs readFileSync normalizedPath |
 | autogenerated/TaintedPath/normalizedPaths.js:182:23:182:25 | '.' | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:182:23:182:25 | '.' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:182:23:182:25 | '.' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:182:23:182:25 | '.' | receiverName | path |
 | autogenerated/TaintedPath/normalizedPaths.js:184:19:184:22 | path | CalleeFlexibleAccessPath | fs.readFileSync |
 | autogenerated/TaintedPath/normalizedPaths.js:184:19:184:22 | path | InputArgumentIndex | 0 |
@@ -6772,7 +8511,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:184:19:184:22 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:184:19:184:22 | path | enclosingFunctionBody | req res path req query path pathModule isAbsolute path path path path startsWith / path path path startsWith /x path path path startsWith . path path fs readFileSync path pathModule isAbsolute path fs readFileSync path fs readFileSync path path includes .. fs readFileSync path fs readFileSync path path includes .. pathModule isAbsolute path fs readFileSync path fs readFileSync path normalizedPath pathModule normalize path normalizedPath startsWith /home/user/www fs readFileSync normalizedPath fs readFileSync normalizedPath normalizedPath startsWith /home/user/www normalizedPath startsWith /home/user/public fs readFileSync normalizedPath fs readFileSync normalizedPath |
 | autogenerated/TaintedPath/normalizedPaths.js:184:19:184:22 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:184:19:184:22 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:184:19:184:22 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:184:19:184:22 | path | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:187:21:187:24 | path | CalleeFlexibleAccessPath | fs.readFileSync |
 | autogenerated/TaintedPath/normalizedPaths.js:187:21:187:24 | path | InputArgumentIndex | 0 |
@@ -6781,7 +8520,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:187:21:187:24 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:187:21:187:24 | path | enclosingFunctionBody | req res path req query path pathModule isAbsolute path path path path startsWith / path path path startsWith /x path path path startsWith . path path fs readFileSync path pathModule isAbsolute path fs readFileSync path fs readFileSync path path includes .. fs readFileSync path fs readFileSync path path includes .. pathModule isAbsolute path fs readFileSync path fs readFileSync path normalizedPath pathModule normalize path normalizedPath startsWith /home/user/www fs readFileSync normalizedPath fs readFileSync normalizedPath normalizedPath startsWith /home/user/www normalizedPath startsWith /home/user/public fs readFileSync normalizedPath fs readFileSync normalizedPath |
 | autogenerated/TaintedPath/normalizedPaths.js:187:21:187:24 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:187:21:187:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:187:21:187:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:187:21:187:24 | path | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:189:21:189:24 | path | CalleeFlexibleAccessPath | fs.readFileSync |
 | autogenerated/TaintedPath/normalizedPaths.js:189:21:189:24 | path | InputArgumentIndex | 0 |
@@ -6790,7 +8529,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:189:21:189:24 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:189:21:189:24 | path | enclosingFunctionBody | req res path req query path pathModule isAbsolute path path path path startsWith / path path path startsWith /x path path path startsWith . path path fs readFileSync path pathModule isAbsolute path fs readFileSync path fs readFileSync path path includes .. fs readFileSync path fs readFileSync path path includes .. pathModule isAbsolute path fs readFileSync path fs readFileSync path normalizedPath pathModule normalize path normalizedPath startsWith /home/user/www fs readFileSync normalizedPath fs readFileSync normalizedPath normalizedPath startsWith /home/user/www normalizedPath startsWith /home/user/public fs readFileSync normalizedPath fs readFileSync normalizedPath |
 | autogenerated/TaintedPath/normalizedPaths.js:189:21:189:24 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:189:21:189:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:189:21:189:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:189:21:189:24 | path | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:191:21:191:24 | '..' | CalleeFlexibleAccessPath | path.includes |
 | autogenerated/TaintedPath/normalizedPaths.js:191:21:191:24 | '..' | InputArgumentIndex | 0 |
@@ -6798,7 +8537,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:191:21:191:24 | '..' | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:191:21:191:24 | '..' | enclosingFunctionBody | req res path req query path pathModule isAbsolute path path path path startsWith / path path path startsWith /x path path path startsWith . path path fs readFileSync path pathModule isAbsolute path fs readFileSync path fs readFileSync path path includes .. fs readFileSync path fs readFileSync path path includes .. pathModule isAbsolute path fs readFileSync path fs readFileSync path normalizedPath pathModule normalize path normalizedPath startsWith /home/user/www fs readFileSync normalizedPath fs readFileSync normalizedPath normalizedPath startsWith /home/user/www normalizedPath startsWith /home/user/public fs readFileSync normalizedPath fs readFileSync normalizedPath |
 | autogenerated/TaintedPath/normalizedPaths.js:191:21:191:24 | '..' | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:191:21:191:24 | '..' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:191:21:191:24 | '..' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:191:21:191:24 | '..' | receiverName | path |
 | autogenerated/TaintedPath/normalizedPaths.js:192:21:192:24 | path | CalleeFlexibleAccessPath | fs.readFileSync |
 | autogenerated/TaintedPath/normalizedPaths.js:192:21:192:24 | path | InputArgumentIndex | 0 |
@@ -6807,7 +8546,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:192:21:192:24 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:192:21:192:24 | path | enclosingFunctionBody | req res path req query path pathModule isAbsolute path path path path startsWith / path path path startsWith /x path path path startsWith . path path fs readFileSync path pathModule isAbsolute path fs readFileSync path fs readFileSync path path includes .. fs readFileSync path fs readFileSync path path includes .. pathModule isAbsolute path fs readFileSync path fs readFileSync path normalizedPath pathModule normalize path normalizedPath startsWith /home/user/www fs readFileSync normalizedPath fs readFileSync normalizedPath normalizedPath startsWith /home/user/www normalizedPath startsWith /home/user/public fs readFileSync normalizedPath fs readFileSync normalizedPath |
 | autogenerated/TaintedPath/normalizedPaths.js:192:21:192:24 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:192:21:192:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:192:21:192:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:192:21:192:24 | path | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:194:21:194:24 | path | CalleeFlexibleAccessPath | fs.readFileSync |
 | autogenerated/TaintedPath/normalizedPaths.js:194:21:194:24 | path | InputArgumentIndex | 0 |
@@ -6816,7 +8555,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:194:21:194:24 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:194:21:194:24 | path | enclosingFunctionBody | req res path req query path pathModule isAbsolute path path path path startsWith / path path path startsWith /x path path path startsWith . path path fs readFileSync path pathModule isAbsolute path fs readFileSync path fs readFileSync path path includes .. fs readFileSync path fs readFileSync path path includes .. pathModule isAbsolute path fs readFileSync path fs readFileSync path normalizedPath pathModule normalize path normalizedPath startsWith /home/user/www fs readFileSync normalizedPath fs readFileSync normalizedPath normalizedPath startsWith /home/user/www normalizedPath startsWith /home/user/public fs readFileSync normalizedPath fs readFileSync normalizedPath |
 | autogenerated/TaintedPath/normalizedPaths.js:194:21:194:24 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:194:21:194:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:194:21:194:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:194:21:194:24 | path | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:196:22:196:25 | '..' | CalleeFlexibleAccessPath | path.includes |
 | autogenerated/TaintedPath/normalizedPaths.js:196:22:196:25 | '..' | InputArgumentIndex | 0 |
@@ -6824,7 +8563,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:196:22:196:25 | '..' | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:196:22:196:25 | '..' | enclosingFunctionBody | req res path req query path pathModule isAbsolute path path path path startsWith / path path path startsWith /x path path path startsWith . path path fs readFileSync path pathModule isAbsolute path fs readFileSync path fs readFileSync path path includes .. fs readFileSync path fs readFileSync path path includes .. pathModule isAbsolute path fs readFileSync path fs readFileSync path normalizedPath pathModule normalize path normalizedPath startsWith /home/user/www fs readFileSync normalizedPath fs readFileSync normalizedPath normalizedPath startsWith /home/user/www normalizedPath startsWith /home/user/public fs readFileSync normalizedPath fs readFileSync normalizedPath |
 | autogenerated/TaintedPath/normalizedPaths.js:196:22:196:25 | '..' | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:196:22:196:25 | '..' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:196:22:196:25 | '..' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:196:22:196:25 | '..' | receiverName | path |
 | autogenerated/TaintedPath/normalizedPaths.js:197:21:197:24 | path | CalleeFlexibleAccessPath | fs.readFileSync |
 | autogenerated/TaintedPath/normalizedPaths.js:197:21:197:24 | path | InputArgumentIndex | 0 |
@@ -6833,7 +8572,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:197:21:197:24 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:197:21:197:24 | path | enclosingFunctionBody | req res path req query path pathModule isAbsolute path path path path startsWith / path path path startsWith /x path path path startsWith . path path fs readFileSync path pathModule isAbsolute path fs readFileSync path fs readFileSync path path includes .. fs readFileSync path fs readFileSync path path includes .. pathModule isAbsolute path fs readFileSync path fs readFileSync path normalizedPath pathModule normalize path normalizedPath startsWith /home/user/www fs readFileSync normalizedPath fs readFileSync normalizedPath normalizedPath startsWith /home/user/www normalizedPath startsWith /home/user/public fs readFileSync normalizedPath fs readFileSync normalizedPath |
 | autogenerated/TaintedPath/normalizedPaths.js:197:21:197:24 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:197:21:197:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:197:21:197:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:197:21:197:24 | path | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:199:21:199:24 | path | CalleeFlexibleAccessPath | fs.readFileSync |
 | autogenerated/TaintedPath/normalizedPaths.js:199:21:199:24 | path | InputArgumentIndex | 0 |
@@ -6842,7 +8581,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:199:21:199:24 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:199:21:199:24 | path | enclosingFunctionBody | req res path req query path pathModule isAbsolute path path path path startsWith / path path path startsWith /x path path path startsWith . path path fs readFileSync path pathModule isAbsolute path fs readFileSync path fs readFileSync path path includes .. fs readFileSync path fs readFileSync path path includes .. pathModule isAbsolute path fs readFileSync path fs readFileSync path normalizedPath pathModule normalize path normalizedPath startsWith /home/user/www fs readFileSync normalizedPath fs readFileSync normalizedPath normalizedPath startsWith /home/user/www normalizedPath startsWith /home/user/public fs readFileSync normalizedPath fs readFileSync normalizedPath |
 | autogenerated/TaintedPath/normalizedPaths.js:199:21:199:24 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:199:21:199:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:199:21:199:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:199:21:199:24 | path | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:201:45:201:48 | path | CalleeFlexibleAccessPath | pathModule.normalize |
 | autogenerated/TaintedPath/normalizedPaths.js:201:45:201:48 | path | InputArgumentIndex | 0 |
@@ -6851,7 +8590,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:201:45:201:48 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:201:45:201:48 | path | enclosingFunctionBody | req res path req query path pathModule isAbsolute path path path path startsWith / path path path startsWith /x path path path startsWith . path path fs readFileSync path pathModule isAbsolute path fs readFileSync path fs readFileSync path path includes .. fs readFileSync path fs readFileSync path path includes .. pathModule isAbsolute path fs readFileSync path fs readFileSync path normalizedPath pathModule normalize path normalizedPath startsWith /home/user/www fs readFileSync normalizedPath fs readFileSync normalizedPath normalizedPath startsWith /home/user/www normalizedPath startsWith /home/user/public fs readFileSync normalizedPath fs readFileSync normalizedPath |
 | autogenerated/TaintedPath/normalizedPaths.js:201:45:201:48 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:201:45:201:48 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:201:45:201:48 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:201:45:201:48 | path | receiverName | pathModule |
 | autogenerated/TaintedPath/normalizedPaths.js:202:33:202:48 | '/home/user/www' | CalleeFlexibleAccessPath | normalizedPath.startsWith |
 | autogenerated/TaintedPath/normalizedPaths.js:202:33:202:48 | '/home/user/www' | InputArgumentIndex | 0 |
@@ -6860,7 +8599,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:202:33:202:48 | '/home/user/www' | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:202:33:202:48 | '/home/user/www' | enclosingFunctionBody | req res path req query path pathModule isAbsolute path path path path startsWith / path path path startsWith /x path path path startsWith . path path fs readFileSync path pathModule isAbsolute path fs readFileSync path fs readFileSync path path includes .. fs readFileSync path fs readFileSync path path includes .. pathModule isAbsolute path fs readFileSync path fs readFileSync path normalizedPath pathModule normalize path normalizedPath startsWith /home/user/www fs readFileSync normalizedPath fs readFileSync normalizedPath normalizedPath startsWith /home/user/www normalizedPath startsWith /home/user/public fs readFileSync normalizedPath fs readFileSync normalizedPath |
 | autogenerated/TaintedPath/normalizedPaths.js:202:33:202:48 | '/home/user/www' | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:202:33:202:48 | '/home/user/www' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:202:33:202:48 | '/home/user/www' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:202:33:202:48 | '/home/user/www' | receiverName | normalizedPath |
 | autogenerated/TaintedPath/normalizedPaths.js:203:21:203:34 | normalizedPath | CalleeFlexibleAccessPath | fs.readFileSync |
 | autogenerated/TaintedPath/normalizedPaths.js:203:21:203:34 | normalizedPath | InputArgumentIndex | 0 |
@@ -6869,7 +8608,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:203:21:203:34 | normalizedPath | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:203:21:203:34 | normalizedPath | enclosingFunctionBody | req res path req query path pathModule isAbsolute path path path path startsWith / path path path startsWith /x path path path startsWith . path path fs readFileSync path pathModule isAbsolute path fs readFileSync path fs readFileSync path path includes .. fs readFileSync path fs readFileSync path path includes .. pathModule isAbsolute path fs readFileSync path fs readFileSync path normalizedPath pathModule normalize path normalizedPath startsWith /home/user/www fs readFileSync normalizedPath fs readFileSync normalizedPath normalizedPath startsWith /home/user/www normalizedPath startsWith /home/user/public fs readFileSync normalizedPath fs readFileSync normalizedPath |
 | autogenerated/TaintedPath/normalizedPaths.js:203:21:203:34 | normalizedPath | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:203:21:203:34 | normalizedPath | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:203:21:203:34 | normalizedPath | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:203:21:203:34 | normalizedPath | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:205:21:205:34 | normalizedPath | CalleeFlexibleAccessPath | fs.readFileSync |
 | autogenerated/TaintedPath/normalizedPaths.js:205:21:205:34 | normalizedPath | InputArgumentIndex | 0 |
@@ -6878,7 +8617,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:205:21:205:34 | normalizedPath | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:205:21:205:34 | normalizedPath | enclosingFunctionBody | req res path req query path pathModule isAbsolute path path path path startsWith / path path path startsWith /x path path path startsWith . path path fs readFileSync path pathModule isAbsolute path fs readFileSync path fs readFileSync path path includes .. fs readFileSync path fs readFileSync path path includes .. pathModule isAbsolute path fs readFileSync path fs readFileSync path normalizedPath pathModule normalize path normalizedPath startsWith /home/user/www fs readFileSync normalizedPath fs readFileSync normalizedPath normalizedPath startsWith /home/user/www normalizedPath startsWith /home/user/public fs readFileSync normalizedPath fs readFileSync normalizedPath |
 | autogenerated/TaintedPath/normalizedPaths.js:205:21:205:34 | normalizedPath | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:205:21:205:34 | normalizedPath | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:205:21:205:34 | normalizedPath | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:205:21:205:34 | normalizedPath | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:207:33:207:48 | '/home/user/www' | CalleeFlexibleAccessPath | normalizedPath.startsWith |
 | autogenerated/TaintedPath/normalizedPaths.js:207:33:207:48 | '/home/user/www' | InputArgumentIndex | 0 |
@@ -6887,7 +8626,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:207:33:207:48 | '/home/user/www' | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:207:33:207:48 | '/home/user/www' | enclosingFunctionBody | req res path req query path pathModule isAbsolute path path path path startsWith / path path path startsWith /x path path path startsWith . path path fs readFileSync path pathModule isAbsolute path fs readFileSync path fs readFileSync path path includes .. fs readFileSync path fs readFileSync path path includes .. pathModule isAbsolute path fs readFileSync path fs readFileSync path normalizedPath pathModule normalize path normalizedPath startsWith /home/user/www fs readFileSync normalizedPath fs readFileSync normalizedPath normalizedPath startsWith /home/user/www normalizedPath startsWith /home/user/public fs readFileSync normalizedPath fs readFileSync normalizedPath |
 | autogenerated/TaintedPath/normalizedPaths.js:207:33:207:48 | '/home/user/www' | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:207:33:207:48 | '/home/user/www' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:207:33:207:48 | '/home/user/www' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:207:33:207:48 | '/home/user/www' | receiverName | normalizedPath |
 | autogenerated/TaintedPath/normalizedPaths.js:207:80:207:98 | '/home/user/public' | CalleeFlexibleAccessPath | normalizedPath.startsWith |
 | autogenerated/TaintedPath/normalizedPaths.js:207:80:207:98 | '/home/user/public' | InputArgumentIndex | 0 |
@@ -6896,7 +8635,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:207:80:207:98 | '/home/user/public' | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:207:80:207:98 | '/home/user/public' | enclosingFunctionBody | req res path req query path pathModule isAbsolute path path path path startsWith / path path path startsWith /x path path path startsWith . path path fs readFileSync path pathModule isAbsolute path fs readFileSync path fs readFileSync path path includes .. fs readFileSync path fs readFileSync path path includes .. pathModule isAbsolute path fs readFileSync path fs readFileSync path normalizedPath pathModule normalize path normalizedPath startsWith /home/user/www fs readFileSync normalizedPath fs readFileSync normalizedPath normalizedPath startsWith /home/user/www normalizedPath startsWith /home/user/public fs readFileSync normalizedPath fs readFileSync normalizedPath |
 | autogenerated/TaintedPath/normalizedPaths.js:207:80:207:98 | '/home/user/public' | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:207:80:207:98 | '/home/user/public' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:207:80:207:98 | '/home/user/public' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:207:80:207:98 | '/home/user/public' | receiverName | normalizedPath |
 | autogenerated/TaintedPath/normalizedPaths.js:208:21:208:34 | normalizedPath | CalleeFlexibleAccessPath | fs.readFileSync |
 | autogenerated/TaintedPath/normalizedPaths.js:208:21:208:34 | normalizedPath | InputArgumentIndex | 0 |
@@ -6905,7 +8644,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:208:21:208:34 | normalizedPath | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:208:21:208:34 | normalizedPath | enclosingFunctionBody | req res path req query path pathModule isAbsolute path path path path startsWith / path path path startsWith /x path path path startsWith . path path fs readFileSync path pathModule isAbsolute path fs readFileSync path fs readFileSync path path includes .. fs readFileSync path fs readFileSync path path includes .. pathModule isAbsolute path fs readFileSync path fs readFileSync path normalizedPath pathModule normalize path normalizedPath startsWith /home/user/www fs readFileSync normalizedPath fs readFileSync normalizedPath normalizedPath startsWith /home/user/www normalizedPath startsWith /home/user/public fs readFileSync normalizedPath fs readFileSync normalizedPath |
 | autogenerated/TaintedPath/normalizedPaths.js:208:21:208:34 | normalizedPath | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:208:21:208:34 | normalizedPath | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:208:21:208:34 | normalizedPath | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:208:21:208:34 | normalizedPath | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:210:21:210:34 | normalizedPath | CalleeFlexibleAccessPath | fs.readFileSync |
 | autogenerated/TaintedPath/normalizedPaths.js:210:21:210:34 | normalizedPath | InputArgumentIndex | 0 |
@@ -6914,27 +8653,27 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:210:21:210:34 | normalizedPath | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:210:21:210:34 | normalizedPath | enclosingFunctionBody | req res path req query path pathModule isAbsolute path path path path startsWith / path path path startsWith /x path path path startsWith . path path fs readFileSync path pathModule isAbsolute path fs readFileSync path fs readFileSync path path includes .. fs readFileSync path fs readFileSync path path includes .. pathModule isAbsolute path fs readFileSync path fs readFileSync path normalizedPath pathModule normalize path normalizedPath startsWith /home/user/www fs readFileSync normalizedPath fs readFileSync normalizedPath normalizedPath startsWith /home/user/www normalizedPath startsWith /home/user/public fs readFileSync normalizedPath fs readFileSync normalizedPath |
 | autogenerated/TaintedPath/normalizedPaths.js:210:21:210:34 | normalizedPath | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:210:21:210:34 | normalizedPath | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:210:21:210:34 | normalizedPath | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:210:21:210:34 | normalizedPath | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:213:9:213:37 | '/decod ... zation' | CalleeFlexibleAccessPath | app.get |
 | autogenerated/TaintedPath/normalizedPaths.js:213:9:213:37 | '/decod ... zation' | InputArgumentIndex | 0 |
 | autogenerated/TaintedPath/normalizedPaths.js:213:9:213:37 | '/decod ... zation' | calleeImports | express |
 | autogenerated/TaintedPath/normalizedPaths.js:213:9:213:37 | '/decod ... zation' | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
 | autogenerated/TaintedPath/normalizedPaths.js:213:9:213:37 | '/decod ... zation' | contextSurroundingFunctionParameters |  |
-| autogenerated/TaintedPath/normalizedPaths.js:213:9:213:37 | '/decod ... zation' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:213:9:213:37 | '/decod ... zation' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:213:9:213:37 | '/decod ... zation' | receiverName | app |
 | autogenerated/TaintedPath/normalizedPaths.js:213:40:223:1 | (req, r ... lized\\n} | CalleeFlexibleAccessPath | app.get |
 | autogenerated/TaintedPath/normalizedPaths.js:213:40:223:1 | (req, r ... lized\\n} | InputArgumentIndex | 1 |
 | autogenerated/TaintedPath/normalizedPaths.js:213:40:223:1 | (req, r ... lized\\n} | calleeImports | express |
 | autogenerated/TaintedPath/normalizedPaths.js:213:40:223:1 | (req, r ... lized\\n} | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
 | autogenerated/TaintedPath/normalizedPaths.js:213:40:223:1 | (req, r ... lized\\n} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:213:40:223:1 | (req, r ... lized\\n} | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:213:40:223:1 | (req, r ... lized\\n} | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:213:40:223:1 | (req, r ... lized\\n} | receiverName | app |
 | autogenerated/TaintedPath/normalizedPaths.js:214:14:214:49 | pathMod ... y.path) | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
 | autogenerated/TaintedPath/normalizedPaths.js:214:14:214:49 | pathMod ... y.path) | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:214:14:214:49 | pathMod ... y.path) | enclosingFunctionBody | req res path pathModule normalize req query path pathModule isAbsolute path path startsWith .. fs readFileSync path path decodeURIComponent path pathModule isAbsolute path path startsWith .. fs readFileSync path |
 | autogenerated/TaintedPath/normalizedPaths.js:214:14:214:49 | pathMod ... y.path) | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:214:14:214:49 | pathMod ... y.path) | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:214:14:214:49 | pathMod ... y.path) | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:214:35:214:48 | req.query.path | CalleeFlexibleAccessPath | pathModule.normalize |
 | autogenerated/TaintedPath/normalizedPaths.js:214:35:214:48 | req.query.path | InputArgumentIndex | 0 |
 | autogenerated/TaintedPath/normalizedPaths.js:214:35:214:48 | req.query.path | calleeImports | path |
@@ -6942,7 +8681,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:214:35:214:48 | req.query.path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:214:35:214:48 | req.query.path | enclosingFunctionBody | req res path pathModule normalize req query path pathModule isAbsolute path path startsWith .. fs readFileSync path path decodeURIComponent path pathModule isAbsolute path path startsWith .. fs readFileSync path |
 | autogenerated/TaintedPath/normalizedPaths.js:214:35:214:48 | req.query.path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:214:35:214:48 | req.query.path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:214:35:214:48 | req.query.path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:214:35:214:48 | req.query.path | receiverName | pathModule |
 | autogenerated/TaintedPath/normalizedPaths.js:216:56:216:59 | '..' | CalleeFlexibleAccessPath | path.startsWith |
 | autogenerated/TaintedPath/normalizedPaths.js:216:56:216:59 | '..' | InputArgumentIndex | 0 |
@@ -6951,7 +8690,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:216:56:216:59 | '..' | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:216:56:216:59 | '..' | enclosingFunctionBody | req res path pathModule normalize req query path pathModule isAbsolute path path startsWith .. fs readFileSync path path decodeURIComponent path pathModule isAbsolute path path startsWith .. fs readFileSync path |
 | autogenerated/TaintedPath/normalizedPaths.js:216:56:216:59 | '..' | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:216:56:216:59 | '..' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:216:56:216:59 | '..' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:216:56:216:59 | '..' | receiverName | path |
 | autogenerated/TaintedPath/normalizedPaths.js:217:21:217:24 | path | CalleeFlexibleAccessPath | fs.readFileSync |
 | autogenerated/TaintedPath/normalizedPaths.js:217:21:217:24 | path | InputArgumentIndex | 0 |
@@ -6960,27 +8699,27 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:217:21:217:24 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:217:21:217:24 | path | enclosingFunctionBody | req res path pathModule normalize req query path pathModule isAbsolute path path startsWith .. fs readFileSync path path decodeURIComponent path pathModule isAbsolute path path startsWith .. fs readFileSync path |
 | autogenerated/TaintedPath/normalizedPaths.js:217:21:217:24 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:217:21:217:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:217:21:217:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:217:21:217:24 | path | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:219:10:219:33 | decodeU ... t(path) | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
 | autogenerated/TaintedPath/normalizedPaths.js:219:10:219:33 | decodeU ... t(path) | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:219:10:219:33 | decodeU ... t(path) | enclosingFunctionBody | req res path pathModule normalize req query path pathModule isAbsolute path path startsWith .. fs readFileSync path path decodeURIComponent path pathModule isAbsolute path path startsWith .. fs readFileSync path |
 | autogenerated/TaintedPath/normalizedPaths.js:219:10:219:33 | decodeU ... t(path) | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:219:10:219:33 | decodeU ... t(path) | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:219:10:219:33 | decodeU ... t(path) | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:219:29:219:32 | path | CalleeFlexibleAccessPath | decodeURIComponent |
 | autogenerated/TaintedPath/normalizedPaths.js:219:29:219:32 | path | InputArgumentIndex | 0 |
 | autogenerated/TaintedPath/normalizedPaths.js:219:29:219:32 | path | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
 | autogenerated/TaintedPath/normalizedPaths.js:219:29:219:32 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:219:29:219:32 | path | enclosingFunctionBody | req res path pathModule normalize req query path pathModule isAbsolute path path startsWith .. fs readFileSync path path decodeURIComponent path pathModule isAbsolute path path startsWith .. fs readFileSync path |
 | autogenerated/TaintedPath/normalizedPaths.js:219:29:219:32 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:219:29:219:32 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:219:29:219:32 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:221:56:221:59 | '..' | CalleeFlexibleAccessPath | path.startsWith |
 | autogenerated/TaintedPath/normalizedPaths.js:221:56:221:59 | '..' | InputArgumentIndex | 0 |
 | autogenerated/TaintedPath/normalizedPaths.js:221:56:221:59 | '..' | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
 | autogenerated/TaintedPath/normalizedPaths.js:221:56:221:59 | '..' | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:221:56:221:59 | '..' | enclosingFunctionBody | req res path pathModule normalize req query path pathModule isAbsolute path path startsWith .. fs readFileSync path path decodeURIComponent path pathModule isAbsolute path path startsWith .. fs readFileSync path |
 | autogenerated/TaintedPath/normalizedPaths.js:221:56:221:59 | '..' | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:221:56:221:59 | '..' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:221:56:221:59 | '..' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:221:56:221:59 | '..' | receiverName | path |
 | autogenerated/TaintedPath/normalizedPaths.js:222:21:222:24 | path | CalleeFlexibleAccessPath | fs.readFileSync |
 | autogenerated/TaintedPath/normalizedPaths.js:222:21:222:24 | path | InputArgumentIndex | 0 |
@@ -6989,27 +8728,27 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:222:21:222:24 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:222:21:222:24 | path | enclosingFunctionBody | req res path pathModule normalize req query path pathModule isAbsolute path path startsWith .. fs readFileSync path path decodeURIComponent path pathModule isAbsolute path path startsWith .. fs readFileSync path |
 | autogenerated/TaintedPath/normalizedPaths.js:222:21:222:24 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:222:21:222:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:222:21:222:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:222:21:222:24 | path | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:225:9:225:18 | '/replace' | CalleeFlexibleAccessPath | app.get |
 | autogenerated/TaintedPath/normalizedPaths.js:225:9:225:18 | '/replace' | InputArgumentIndex | 0 |
 | autogenerated/TaintedPath/normalizedPaths.js:225:9:225:18 | '/replace' | calleeImports | express |
 | autogenerated/TaintedPath/normalizedPaths.js:225:9:225:18 | '/replace' | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
 | autogenerated/TaintedPath/normalizedPaths.js:225:9:225:18 | '/replace' | contextSurroundingFunctionParameters |  |
-| autogenerated/TaintedPath/normalizedPaths.js:225:9:225:18 | '/replace' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:225:9:225:18 | '/replace' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:225:9:225:18 | '/replace' | receiverName | app |
 | autogenerated/TaintedPath/normalizedPaths.js:225:21:233:1 | (req, r ... K\\n  }\\n} | CalleeFlexibleAccessPath | app.get |
 | autogenerated/TaintedPath/normalizedPaths.js:225:21:233:1 | (req, r ... K\\n  }\\n} | InputArgumentIndex | 1 |
 | autogenerated/TaintedPath/normalizedPaths.js:225:21:233:1 | (req, r ... K\\n  }\\n} | calleeImports | express |
 | autogenerated/TaintedPath/normalizedPaths.js:225:21:233:1 | (req, r ... K\\n  }\\n} | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
 | autogenerated/TaintedPath/normalizedPaths.js:225:21:233:1 | (req, r ... K\\n  }\\n} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:225:21:233:1 | (req, r ... K\\n  }\\n} | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:225:21:233:1 | (req, r ... K\\n  }\\n} | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:225:21:233:1 | (req, r ... K\\n  }\\n} | receiverName | app |
 | autogenerated/TaintedPath/normalizedPaths.js:226:14:226:70 | pathMod ... g, ' ') | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
 | autogenerated/TaintedPath/normalizedPaths.js:226:14:226:70 | pathMod ... g, ' ') | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:226:14:226:70 | pathMod ... g, ' ') | enclosingFunctionBody | req res path pathModule normalize req query path replace /%20/g   pathModule isAbsolute path fs readFileSync path path path replace /\\.\\./g  fs readFileSync path |
 | autogenerated/TaintedPath/normalizedPaths.js:226:14:226:70 | pathMod ... g, ' ') | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:226:14:226:70 | pathMod ... g, ' ') | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:226:14:226:70 | pathMod ... g, ' ') | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:226:35:226:48 | req.query.path | CalleeFlexibleAccessPath | pathModule.normalize |
 | autogenerated/TaintedPath/normalizedPaths.js:226:35:226:48 | req.query.path | InputArgumentIndex | 0 |
 | autogenerated/TaintedPath/normalizedPaths.js:226:35:226:48 | req.query.path | calleeImports | path |
@@ -7017,7 +8756,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:226:35:226:48 | req.query.path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:226:35:226:48 | req.query.path | enclosingFunctionBody | req res path pathModule normalize req query path replace /%20/g   pathModule isAbsolute path fs readFileSync path path path replace /\\.\\./g  fs readFileSync path |
 | autogenerated/TaintedPath/normalizedPaths.js:226:35:226:48 | req.query.path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:226:35:226:48 | req.query.path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:226:35:226:48 | req.query.path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:226:35:226:48 | req.query.path | receiverName | pathModule |
 | autogenerated/TaintedPath/normalizedPaths.js:226:59:226:64 | /%20/g | CalleeFlexibleAccessPath | pathModule.normalize().replace |
 | autogenerated/TaintedPath/normalizedPaths.js:226:59:226:64 | /%20/g | InputArgumentIndex | 0 |
@@ -7026,7 +8765,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:226:59:226:64 | /%20/g | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:226:59:226:64 | /%20/g | enclosingFunctionBody | req res path pathModule normalize req query path replace /%20/g   pathModule isAbsolute path fs readFileSync path path path replace /\\.\\./g  fs readFileSync path |
 | autogenerated/TaintedPath/normalizedPaths.js:226:59:226:64 | /%20/g | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:226:59:226:64 | /%20/g | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:226:59:226:64 | /%20/g | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:226:67:226:69 | ' ' | CalleeFlexibleAccessPath | pathModule.normalize().replace |
 | autogenerated/TaintedPath/normalizedPaths.js:226:67:226:69 | ' ' | InputArgumentIndex | 1 |
 | autogenerated/TaintedPath/normalizedPaths.js:226:67:226:69 | ' ' | calleeImports | path |
@@ -7034,7 +8773,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:226:67:226:69 | ' ' | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:226:67:226:69 | ' ' | enclosingFunctionBody | req res path pathModule normalize req query path replace /%20/g   pathModule isAbsolute path fs readFileSync path path path replace /\\.\\./g  fs readFileSync path |
 | autogenerated/TaintedPath/normalizedPaths.js:226:67:226:69 | ' ' | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:226:67:226:69 | ' ' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:226:67:226:69 | ' ' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:228:21:228:24 | path | CalleeFlexibleAccessPath | fs.readFileSync |
 | autogenerated/TaintedPath/normalizedPaths.js:228:21:228:24 | path | InputArgumentIndex | 0 |
 | autogenerated/TaintedPath/normalizedPaths.js:228:21:228:24 | path | calleeImports | fs |
@@ -7042,13 +8781,13 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:228:21:228:24 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:228:21:228:24 | path | enclosingFunctionBody | req res path pathModule normalize req query path replace /%20/g   pathModule isAbsolute path fs readFileSync path path path replace /\\.\\./g  fs readFileSync path |
 | autogenerated/TaintedPath/normalizedPaths.js:228:21:228:24 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:228:21:228:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:228:21:228:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:228:21:228:24 | path | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:230:12:230:36 | path.re ... /g, '') | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
 | autogenerated/TaintedPath/normalizedPaths.js:230:12:230:36 | path.re ... /g, '') | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:230:12:230:36 | path.re ... /g, '') | enclosingFunctionBody | req res path pathModule normalize req query path replace /%20/g   pathModule isAbsolute path fs readFileSync path path path replace /\\.\\./g  fs readFileSync path |
 | autogenerated/TaintedPath/normalizedPaths.js:230:12:230:36 | path.re ... /g, '') | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:230:12:230:36 | path.re ... /g, '') | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:230:12:230:36 | path.re ... /g, '') | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:230:25:230:31 | /\\.\\./g | CalleeFlexibleAccessPath | path.replace |
 | autogenerated/TaintedPath/normalizedPaths.js:230:25:230:31 | /\\.\\./g | InputArgumentIndex | 0 |
 | autogenerated/TaintedPath/normalizedPaths.js:230:25:230:31 | /\\.\\./g | calleeImports | path |
@@ -7056,7 +8795,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:230:25:230:31 | /\\.\\./g | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:230:25:230:31 | /\\.\\./g | enclosingFunctionBody | req res path pathModule normalize req query path replace /%20/g   pathModule isAbsolute path fs readFileSync path path path replace /\\.\\./g  fs readFileSync path |
 | autogenerated/TaintedPath/normalizedPaths.js:230:25:230:31 | /\\.\\./g | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:230:25:230:31 | /\\.\\./g | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:230:25:230:31 | /\\.\\./g | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:230:25:230:31 | /\\.\\./g | receiverName | path |
 | autogenerated/TaintedPath/normalizedPaths.js:230:34:230:35 | '' | CalleeFlexibleAccessPath | path.replace |
 | autogenerated/TaintedPath/normalizedPaths.js:230:34:230:35 | '' | InputArgumentIndex | 1 |
@@ -7065,7 +8804,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:230:34:230:35 | '' | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:230:34:230:35 | '' | enclosingFunctionBody | req res path pathModule normalize req query path replace /%20/g   pathModule isAbsolute path fs readFileSync path path path replace /\\.\\./g  fs readFileSync path |
 | autogenerated/TaintedPath/normalizedPaths.js:230:34:230:35 | '' | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:230:34:230:35 | '' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:230:34:230:35 | '' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:230:34:230:35 | '' | receiverName | path |
 | autogenerated/TaintedPath/normalizedPaths.js:231:21:231:24 | path | CalleeFlexibleAccessPath | fs.readFileSync |
 | autogenerated/TaintedPath/normalizedPaths.js:231:21:231:24 | path | InputArgumentIndex | 0 |
@@ -7074,27 +8813,27 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:231:21:231:24 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:231:21:231:24 | path | enclosingFunctionBody | req res path pathModule normalize req query path replace /%20/g   pathModule isAbsolute path fs readFileSync path path path replace /\\.\\./g  fs readFileSync path |
 | autogenerated/TaintedPath/normalizedPaths.js:231:21:231:24 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:231:21:231:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:231:21:231:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:231:21:231:24 | path | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:235:9:235:23 | '/resolve-path' | CalleeFlexibleAccessPath | app.get |
 | autogenerated/TaintedPath/normalizedPaths.js:235:9:235:23 | '/resolve-path' | InputArgumentIndex | 0 |
 | autogenerated/TaintedPath/normalizedPaths.js:235:9:235:23 | '/resolve-path' | calleeImports | express |
 | autogenerated/TaintedPath/normalizedPaths.js:235:9:235:23 | '/resolve-path' | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
 | autogenerated/TaintedPath/normalizedPaths.js:235:9:235:23 | '/resolve-path' | contextSurroundingFunctionParameters |  |
-| autogenerated/TaintedPath/normalizedPaths.js:235:9:235:23 | '/resolve-path' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:235:9:235:23 | '/resolve-path' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:235:9:235:23 | '/resolve-path' | receiverName | app |
 | autogenerated/TaintedPath/normalizedPaths.js:235:26:251:1 | (req, r ... arity\\n} | CalleeFlexibleAccessPath | app.get |
 | autogenerated/TaintedPath/normalizedPaths.js:235:26:251:1 | (req, r ... arity\\n} | InputArgumentIndex | 1 |
 | autogenerated/TaintedPath/normalizedPaths.js:235:26:251:1 | (req, r ... arity\\n} | calleeImports | express |
 | autogenerated/TaintedPath/normalizedPaths.js:235:26:251:1 | (req, r ... arity\\n} | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
 | autogenerated/TaintedPath/normalizedPaths.js:235:26:251:1 | (req, r ... arity\\n} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:235:26:251:1 | (req, r ... arity\\n} | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:235:26:251:1 | (req, r ... arity\\n} | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:235:26:251:1 | (req, r ... arity\\n} | receiverName | app |
 | autogenerated/TaintedPath/normalizedPaths.js:236:14:236:47 | pathMod ... y.path) | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
 | autogenerated/TaintedPath/normalizedPaths.js:236:14:236:47 | pathMod ... y.path) | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:236:14:236:47 | pathMod ... y.path) | enclosingFunctionBody | req res path pathModule resolve req query path fs readFileSync path self something path substring 0 self dir length self dir fs readFileSync path fs readFileSync path path slice 0 self dir length self dir fs readFileSync path fs readFileSync path |
 | autogenerated/TaintedPath/normalizedPaths.js:236:14:236:47 | pathMod ... y.path) | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:236:14:236:47 | pathMod ... y.path) | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:236:14:236:47 | pathMod ... y.path) | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:236:33:236:46 | req.query.path | CalleeFlexibleAccessPath | pathModule.resolve |
 | autogenerated/TaintedPath/normalizedPaths.js:236:33:236:46 | req.query.path | InputArgumentIndex | 0 |
 | autogenerated/TaintedPath/normalizedPaths.js:236:33:236:46 | req.query.path | calleeImports | path |
@@ -7102,7 +8841,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:236:33:236:46 | req.query.path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:236:33:236:46 | req.query.path | enclosingFunctionBody | req res path pathModule resolve req query path fs readFileSync path self something path substring 0 self dir length self dir fs readFileSync path fs readFileSync path path slice 0 self dir length self dir fs readFileSync path fs readFileSync path |
 | autogenerated/TaintedPath/normalizedPaths.js:236:33:236:46 | req.query.path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:236:33:236:46 | req.query.path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:236:33:236:46 | req.query.path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:236:33:236:46 | req.query.path | receiverName | pathModule |
 | autogenerated/TaintedPath/normalizedPaths.js:238:19:238:22 | path | CalleeFlexibleAccessPath | fs.readFileSync |
 | autogenerated/TaintedPath/normalizedPaths.js:238:19:238:22 | path | InputArgumentIndex | 0 |
@@ -7111,7 +8850,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:238:19:238:22 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:238:19:238:22 | path | enclosingFunctionBody | req res path pathModule resolve req query path fs readFileSync path self something path substring 0 self dir length self dir fs readFileSync path fs readFileSync path path slice 0 self dir length self dir fs readFileSync path fs readFileSync path |
 | autogenerated/TaintedPath/normalizedPaths.js:238:19:238:22 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:238:19:238:22 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:238:19:238:22 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:238:19:238:22 | path | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:242:22:242:22 | 0 | CalleeFlexibleAccessPath | path.substring |
 | autogenerated/TaintedPath/normalizedPaths.js:242:22:242:22 | 0 | InputArgumentIndex | 0 |
@@ -7120,7 +8859,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:242:22:242:22 | 0 | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:242:22:242:22 | 0 | enclosingFunctionBody | req res path pathModule resolve req query path fs readFileSync path self something path substring 0 self dir length self dir fs readFileSync path fs readFileSync path path slice 0 self dir length self dir fs readFileSync path fs readFileSync path |
 | autogenerated/TaintedPath/normalizedPaths.js:242:22:242:22 | 0 | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:242:22:242:22 | 0 | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:242:22:242:22 | 0 | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:242:22:242:22 | 0 | receiverName | path |
 | autogenerated/TaintedPath/normalizedPaths.js:242:25:242:39 | self.dir.length | CalleeFlexibleAccessPath | path.substring |
 | autogenerated/TaintedPath/normalizedPaths.js:242:25:242:39 | self.dir.length | InputArgumentIndex | 1 |
@@ -7129,7 +8868,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:242:25:242:39 | self.dir.length | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:242:25:242:39 | self.dir.length | enclosingFunctionBody | req res path pathModule resolve req query path fs readFileSync path self something path substring 0 self dir length self dir fs readFileSync path fs readFileSync path path slice 0 self dir length self dir fs readFileSync path fs readFileSync path |
 | autogenerated/TaintedPath/normalizedPaths.js:242:25:242:39 | self.dir.length | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:242:25:242:39 | self.dir.length | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:242:25:242:39 | self.dir.length | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:242:25:242:39 | self.dir.length | receiverName | path |
 | autogenerated/TaintedPath/normalizedPaths.js:243:21:243:24 | path | CalleeFlexibleAccessPath | fs.readFileSync |
 | autogenerated/TaintedPath/normalizedPaths.js:243:21:243:24 | path | InputArgumentIndex | 0 |
@@ -7138,7 +8877,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:243:21:243:24 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:243:21:243:24 | path | enclosingFunctionBody | req res path pathModule resolve req query path fs readFileSync path self something path substring 0 self dir length self dir fs readFileSync path fs readFileSync path path slice 0 self dir length self dir fs readFileSync path fs readFileSync path |
 | autogenerated/TaintedPath/normalizedPaths.js:243:21:243:24 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:243:21:243:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:243:21:243:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:243:21:243:24 | path | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:245:21:245:24 | path | CalleeFlexibleAccessPath | fs.readFileSync |
 | autogenerated/TaintedPath/normalizedPaths.js:245:21:245:24 | path | InputArgumentIndex | 0 |
@@ -7147,7 +8886,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:245:21:245:24 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:245:21:245:24 | path | enclosingFunctionBody | req res path pathModule resolve req query path fs readFileSync path self something path substring 0 self dir length self dir fs readFileSync path fs readFileSync path path slice 0 self dir length self dir fs readFileSync path fs readFileSync path |
 | autogenerated/TaintedPath/normalizedPaths.js:245:21:245:24 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:245:21:245:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:245:21:245:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:245:21:245:24 | path | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:247:18:247:18 | 0 | CalleeFlexibleAccessPath | path.slice |
 | autogenerated/TaintedPath/normalizedPaths.js:247:18:247:18 | 0 | InputArgumentIndex | 0 |
@@ -7156,7 +8895,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:247:18:247:18 | 0 | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:247:18:247:18 | 0 | enclosingFunctionBody | req res path pathModule resolve req query path fs readFileSync path self something path substring 0 self dir length self dir fs readFileSync path fs readFileSync path path slice 0 self dir length self dir fs readFileSync path fs readFileSync path |
 | autogenerated/TaintedPath/normalizedPaths.js:247:18:247:18 | 0 | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:247:18:247:18 | 0 | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:247:18:247:18 | 0 | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:247:18:247:18 | 0 | receiverName | path |
 | autogenerated/TaintedPath/normalizedPaths.js:247:21:247:35 | self.dir.length | CalleeFlexibleAccessPath | path.slice |
 | autogenerated/TaintedPath/normalizedPaths.js:247:21:247:35 | self.dir.length | InputArgumentIndex | 1 |
@@ -7165,7 +8904,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:247:21:247:35 | self.dir.length | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:247:21:247:35 | self.dir.length | enclosingFunctionBody | req res path pathModule resolve req query path fs readFileSync path self something path substring 0 self dir length self dir fs readFileSync path fs readFileSync path path slice 0 self dir length self dir fs readFileSync path fs readFileSync path |
 | autogenerated/TaintedPath/normalizedPaths.js:247:21:247:35 | self.dir.length | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:247:21:247:35 | self.dir.length | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:247:21:247:35 | self.dir.length | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:247:21:247:35 | self.dir.length | receiverName | path |
 | autogenerated/TaintedPath/normalizedPaths.js:248:21:248:24 | path | CalleeFlexibleAccessPath | fs.readFileSync |
 | autogenerated/TaintedPath/normalizedPaths.js:248:21:248:24 | path | InputArgumentIndex | 0 |
@@ -7174,7 +8913,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:248:21:248:24 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:248:21:248:24 | path | enclosingFunctionBody | req res path pathModule resolve req query path fs readFileSync path self something path substring 0 self dir length self dir fs readFileSync path fs readFileSync path path slice 0 self dir length self dir fs readFileSync path fs readFileSync path |
 | autogenerated/TaintedPath/normalizedPaths.js:248:21:248:24 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:248:21:248:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:248:21:248:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:248:21:248:24 | path | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:250:21:250:24 | path | CalleeFlexibleAccessPath | fs.readFileSync |
 | autogenerated/TaintedPath/normalizedPaths.js:250:21:250:24 | path | InputArgumentIndex | 0 |
@@ -7183,27 +8922,27 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:250:21:250:24 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:250:21:250:24 | path | enclosingFunctionBody | req res path pathModule resolve req query path fs readFileSync path self something path substring 0 self dir length self dir fs readFileSync path fs readFileSync path path slice 0 self dir length self dir fs readFileSync path fs readFileSync path |
 | autogenerated/TaintedPath/normalizedPaths.js:250:21:250:24 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:250:21:250:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:250:21:250:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:250:21:250:24 | path | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:253:9:253:30 | '/relat ... tswith' | CalleeFlexibleAccessPath | app.get |
 | autogenerated/TaintedPath/normalizedPaths.js:253:9:253:30 | '/relat ... tswith' | InputArgumentIndex | 0 |
 | autogenerated/TaintedPath/normalizedPaths.js:253:9:253:30 | '/relat ... tswith' | calleeImports | express |
 | autogenerated/TaintedPath/normalizedPaths.js:253:9:253:30 | '/relat ... tswith' | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
 | autogenerated/TaintedPath/normalizedPaths.js:253:9:253:30 | '/relat ... tswith' | contextSurroundingFunctionParameters |  |
-| autogenerated/TaintedPath/normalizedPaths.js:253:9:253:30 | '/relat ... tswith' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:253:9:253:30 | '/relat ... tswith' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:253:9:253:30 | '/relat ... tswith' | receiverName | app |
 | autogenerated/TaintedPath/normalizedPaths.js:253:33:298:1 | (req, r ...  \\n  }\\n} | CalleeFlexibleAccessPath | app.get |
 | autogenerated/TaintedPath/normalizedPaths.js:253:33:298:1 | (req, r ...  \\n  }\\n} | InputArgumentIndex | 1 |
 | autogenerated/TaintedPath/normalizedPaths.js:253:33:298:1 | (req, r ...  \\n  }\\n} | calleeImports | express |
 | autogenerated/TaintedPath/normalizedPaths.js:253:33:298:1 | (req, r ...  \\n  }\\n} | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
 | autogenerated/TaintedPath/normalizedPaths.js:253:33:298:1 | (req, r ...  \\n  }\\n} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:253:33:298:1 | (req, r ...  \\n  }\\n} | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:253:33:298:1 | (req, r ...  \\n  }\\n} | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:253:33:298:1 | (req, r ...  \\n  }\\n} | receiverName | app |
 | autogenerated/TaintedPath/normalizedPaths.js:254:14:254:47 | pathMod ... y.path) | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
 | autogenerated/TaintedPath/normalizedPaths.js:254:14:254:47 | pathMod ... y.path) | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:254:14:254:47 | pathMod ... y.path) | enclosingFunctionBody | req res path pathModule resolve req query path fs readFileSync path self something relative pathModule relative self webroot path relative startsWith .. pathModule sep relative .. fs readFileSync path fs readFileSync path newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath relativePath indexOf .. pathModule sep 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath relativePath indexOf ../ 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath pathModule normalize relativePath indexOf ../ 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath pathModule normalize relativePath indexOf ../ fs readFileSync newpath fs readFileSync newpath |
 | autogenerated/TaintedPath/normalizedPaths.js:254:14:254:47 | pathMod ... y.path) | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:254:14:254:47 | pathMod ... y.path) | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:254:14:254:47 | pathMod ... y.path) | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:254:33:254:46 | req.query.path | CalleeFlexibleAccessPath | pathModule.resolve |
 | autogenerated/TaintedPath/normalizedPaths.js:254:33:254:46 | req.query.path | InputArgumentIndex | 0 |
 | autogenerated/TaintedPath/normalizedPaths.js:254:33:254:46 | req.query.path | calleeImports | path |
@@ -7211,7 +8950,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:254:33:254:46 | req.query.path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:254:33:254:46 | req.query.path | enclosingFunctionBody | req res path pathModule resolve req query path fs readFileSync path self something relative pathModule relative self webroot path relative startsWith .. pathModule sep relative .. fs readFileSync path fs readFileSync path newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath relativePath indexOf .. pathModule sep 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath relativePath indexOf ../ 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath pathModule normalize relativePath indexOf ../ 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath pathModule normalize relativePath indexOf ../ fs readFileSync newpath fs readFileSync newpath |
 | autogenerated/TaintedPath/normalizedPaths.js:254:33:254:46 | req.query.path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:254:33:254:46 | req.query.path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:254:33:254:46 | req.query.path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:254:33:254:46 | req.query.path | receiverName | pathModule |
 | autogenerated/TaintedPath/normalizedPaths.js:256:19:256:22 | path | CalleeFlexibleAccessPath | fs.readFileSync |
 | autogenerated/TaintedPath/normalizedPaths.js:256:19:256:22 | path | InputArgumentIndex | 0 |
@@ -7220,7 +8959,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:256:19:256:22 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:256:19:256:22 | path | enclosingFunctionBody | req res path pathModule resolve req query path fs readFileSync path self something relative pathModule relative self webroot path relative startsWith .. pathModule sep relative .. fs readFileSync path fs readFileSync path newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath relativePath indexOf .. pathModule sep 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath relativePath indexOf ../ 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath pathModule normalize relativePath indexOf ../ 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath pathModule normalize relativePath indexOf ../ fs readFileSync newpath fs readFileSync newpath |
 | autogenerated/TaintedPath/normalizedPaths.js:256:19:256:22 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:256:19:256:22 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:256:19:256:22 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:256:19:256:22 | path | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:260:38:260:49 | self.webroot | CalleeFlexibleAccessPath | pathModule.relative |
 | autogenerated/TaintedPath/normalizedPaths.js:260:38:260:49 | self.webroot | InputArgumentIndex | 0 |
@@ -7229,7 +8968,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:260:38:260:49 | self.webroot | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:260:38:260:49 | self.webroot | enclosingFunctionBody | req res path pathModule resolve req query path fs readFileSync path self something relative pathModule relative self webroot path relative startsWith .. pathModule sep relative .. fs readFileSync path fs readFileSync path newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath relativePath indexOf .. pathModule sep 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath relativePath indexOf ../ 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath pathModule normalize relativePath indexOf ../ 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath pathModule normalize relativePath indexOf ../ fs readFileSync newpath fs readFileSync newpath |
 | autogenerated/TaintedPath/normalizedPaths.js:260:38:260:49 | self.webroot | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:260:38:260:49 | self.webroot | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:260:38:260:49 | self.webroot | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:260:38:260:49 | self.webroot | receiverName | pathModule |
 | autogenerated/TaintedPath/normalizedPaths.js:260:52:260:55 | path | CalleeFlexibleAccessPath | pathModule.relative |
 | autogenerated/TaintedPath/normalizedPaths.js:260:52:260:55 | path | InputArgumentIndex | 1 |
@@ -7238,7 +8977,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:260:52:260:55 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:260:52:260:55 | path | enclosingFunctionBody | req res path pathModule resolve req query path fs readFileSync path self something relative pathModule relative self webroot path relative startsWith .. pathModule sep relative .. fs readFileSync path fs readFileSync path newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath relativePath indexOf .. pathModule sep 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath relativePath indexOf ../ 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath pathModule normalize relativePath indexOf ../ 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath pathModule normalize relativePath indexOf ../ fs readFileSync newpath fs readFileSync newpath |
 | autogenerated/TaintedPath/normalizedPaths.js:260:52:260:55 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:260:52:260:55 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:260:52:260:55 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:260:52:260:55 | path | receiverName | pathModule |
 | autogenerated/TaintedPath/normalizedPaths.js:261:26:261:46 | ".." +  ... ule.sep | CalleeFlexibleAccessPath | relative.startsWith |
 | autogenerated/TaintedPath/normalizedPaths.js:261:26:261:46 | ".." +  ... ule.sep | InputArgumentIndex | 0 |
@@ -7247,7 +8986,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:261:26:261:46 | ".." +  ... ule.sep | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:261:26:261:46 | ".." +  ... ule.sep | enclosingFunctionBody | req res path pathModule resolve req query path fs readFileSync path self something relative pathModule relative self webroot path relative startsWith .. pathModule sep relative .. fs readFileSync path fs readFileSync path newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath relativePath indexOf .. pathModule sep 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath relativePath indexOf ../ 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath pathModule normalize relativePath indexOf ../ 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath pathModule normalize relativePath indexOf ../ fs readFileSync newpath fs readFileSync newpath |
 | autogenerated/TaintedPath/normalizedPaths.js:261:26:261:46 | ".." +  ... ule.sep | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:261:26:261:46 | ".." +  ... ule.sep | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:261:26:261:46 | ".." +  ... ule.sep | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:261:26:261:46 | ".." +  ... ule.sep | receiverName | relative |
 | autogenerated/TaintedPath/normalizedPaths.js:262:21:262:24 | path | CalleeFlexibleAccessPath | fs.readFileSync |
 | autogenerated/TaintedPath/normalizedPaths.js:262:21:262:24 | path | InputArgumentIndex | 0 |
@@ -7256,7 +8995,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:262:21:262:24 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:262:21:262:24 | path | enclosingFunctionBody | req res path pathModule resolve req query path fs readFileSync path self something relative pathModule relative self webroot path relative startsWith .. pathModule sep relative .. fs readFileSync path fs readFileSync path newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath relativePath indexOf .. pathModule sep 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath relativePath indexOf ../ 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath pathModule normalize relativePath indexOf ../ 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath pathModule normalize relativePath indexOf ../ fs readFileSync newpath fs readFileSync newpath |
 | autogenerated/TaintedPath/normalizedPaths.js:262:21:262:24 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:262:21:262:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:262:21:262:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:262:21:262:24 | path | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:264:21:264:24 | path | CalleeFlexibleAccessPath | fs.readFileSync |
 | autogenerated/TaintedPath/normalizedPaths.js:264:21:264:24 | path | InputArgumentIndex | 0 |
@@ -7265,7 +9004,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:264:21:264:24 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:264:21:264:24 | path | enclosingFunctionBody | req res path pathModule resolve req query path fs readFileSync path self something relative pathModule relative self webroot path relative startsWith .. pathModule sep relative .. fs readFileSync path fs readFileSync path newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath relativePath indexOf .. pathModule sep 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath relativePath indexOf ../ 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath pathModule normalize relativePath indexOf ../ 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath pathModule normalize relativePath indexOf ../ fs readFileSync newpath fs readFileSync newpath |
 | autogenerated/TaintedPath/normalizedPaths.js:264:21:264:24 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:264:21:264:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:264:21:264:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:264:21:264:24 | path | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:267:38:267:41 | path | CalleeFlexibleAccessPath | pathModule.normalize |
 | autogenerated/TaintedPath/normalizedPaths.js:267:38:267:41 | path | InputArgumentIndex | 0 |
@@ -7274,7 +9013,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:267:38:267:41 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:267:38:267:41 | path | enclosingFunctionBody | req res path pathModule resolve req query path fs readFileSync path self something relative pathModule relative self webroot path relative startsWith .. pathModule sep relative .. fs readFileSync path fs readFileSync path newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath relativePath indexOf .. pathModule sep 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath relativePath indexOf ../ 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath pathModule normalize relativePath indexOf ../ 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath pathModule normalize relativePath indexOf ../ fs readFileSync newpath fs readFileSync newpath |
 | autogenerated/TaintedPath/normalizedPaths.js:267:38:267:41 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:267:38:267:41 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:267:38:267:41 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:267:38:267:41 | path | receiverName | pathModule |
 | autogenerated/TaintedPath/normalizedPaths.js:268:42:268:75 | pathMod ... aceDir) | CalleeFlexibleAccessPath | pathModule.relative |
 | autogenerated/TaintedPath/normalizedPaths.js:268:42:268:75 | pathMod ... aceDir) | InputArgumentIndex | 0 |
@@ -7283,7 +9022,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:268:42:268:75 | pathMod ... aceDir) | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:268:42:268:75 | pathMod ... aceDir) | enclosingFunctionBody | req res path pathModule resolve req query path fs readFileSync path self something relative pathModule relative self webroot path relative startsWith .. pathModule sep relative .. fs readFileSync path fs readFileSync path newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath relativePath indexOf .. pathModule sep 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath relativePath indexOf ../ 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath pathModule normalize relativePath indexOf ../ 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath pathModule normalize relativePath indexOf ../ fs readFileSync newpath fs readFileSync newpath |
 | autogenerated/TaintedPath/normalizedPaths.js:268:42:268:75 | pathMod ... aceDir) | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:268:42:268:75 | pathMod ... aceDir) | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:268:42:268:75 | pathMod ... aceDir) | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:268:42:268:75 | pathMod ... aceDir) | receiverName | pathModule |
 | autogenerated/TaintedPath/normalizedPaths.js:268:63:268:74 | workspaceDir | CalleeFlexibleAccessPath | pathModule.normalize |
 | autogenerated/TaintedPath/normalizedPaths.js:268:63:268:74 | workspaceDir | InputArgumentIndex | 0 |
@@ -7292,7 +9031,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:268:63:268:74 | workspaceDir | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:268:63:268:74 | workspaceDir | enclosingFunctionBody | req res path pathModule resolve req query path fs readFileSync path self something relative pathModule relative self webroot path relative startsWith .. pathModule sep relative .. fs readFileSync path fs readFileSync path newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath relativePath indexOf .. pathModule sep 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath relativePath indexOf ../ 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath pathModule normalize relativePath indexOf ../ 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath pathModule normalize relativePath indexOf ../ fs readFileSync newpath fs readFileSync newpath |
 | autogenerated/TaintedPath/normalizedPaths.js:268:63:268:74 | workspaceDir | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:268:63:268:74 | workspaceDir | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:268:63:268:74 | workspaceDir | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:268:63:268:74 | workspaceDir | receiverName | pathModule |
 | autogenerated/TaintedPath/normalizedPaths.js:268:78:268:84 | newpath | CalleeFlexibleAccessPath | pathModule.relative |
 | autogenerated/TaintedPath/normalizedPaths.js:268:78:268:84 | newpath | InputArgumentIndex | 1 |
@@ -7301,7 +9040,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:268:78:268:84 | newpath | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:268:78:268:84 | newpath | enclosingFunctionBody | req res path pathModule resolve req query path fs readFileSync path self something relative pathModule relative self webroot path relative startsWith .. pathModule sep relative .. fs readFileSync path fs readFileSync path newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath relativePath indexOf .. pathModule sep 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath relativePath indexOf ../ 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath pathModule normalize relativePath indexOf ../ 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath pathModule normalize relativePath indexOf ../ fs readFileSync newpath fs readFileSync newpath |
 | autogenerated/TaintedPath/normalizedPaths.js:268:78:268:84 | newpath | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:268:78:268:84 | newpath | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:268:78:268:84 | newpath | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:268:78:268:84 | newpath | receiverName | pathModule |
 | autogenerated/TaintedPath/normalizedPaths.js:269:28:269:48 | '..' +  ... ule.sep | CalleeFlexibleAccessPath | relativePath.indexOf |
 | autogenerated/TaintedPath/normalizedPaths.js:269:28:269:48 | '..' +  ... ule.sep | InputArgumentIndex | 0 |
@@ -7310,7 +9049,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:269:28:269:48 | '..' +  ... ule.sep | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:269:28:269:48 | '..' +  ... ule.sep | enclosingFunctionBody | req res path pathModule resolve req query path fs readFileSync path self something relative pathModule relative self webroot path relative startsWith .. pathModule sep relative .. fs readFileSync path fs readFileSync path newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath relativePath indexOf .. pathModule sep 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath relativePath indexOf ../ 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath pathModule normalize relativePath indexOf ../ 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath pathModule normalize relativePath indexOf ../ fs readFileSync newpath fs readFileSync newpath |
 | autogenerated/TaintedPath/normalizedPaths.js:269:28:269:48 | '..' +  ... ule.sep | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:269:28:269:48 | '..' +  ... ule.sep | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:269:28:269:48 | '..' +  ... ule.sep | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:269:28:269:48 | '..' +  ... ule.sep | receiverName | relativePath |
 | autogenerated/TaintedPath/normalizedPaths.js:270:21:270:27 | newpath | CalleeFlexibleAccessPath | fs.readFileSync |
 | autogenerated/TaintedPath/normalizedPaths.js:270:21:270:27 | newpath | InputArgumentIndex | 0 |
@@ -7319,7 +9058,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:270:21:270:27 | newpath | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:270:21:270:27 | newpath | enclosingFunctionBody | req res path pathModule resolve req query path fs readFileSync path self something relative pathModule relative self webroot path relative startsWith .. pathModule sep relative .. fs readFileSync path fs readFileSync path newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath relativePath indexOf .. pathModule sep 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath relativePath indexOf ../ 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath pathModule normalize relativePath indexOf ../ 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath pathModule normalize relativePath indexOf ../ fs readFileSync newpath fs readFileSync newpath |
 | autogenerated/TaintedPath/normalizedPaths.js:270:21:270:27 | newpath | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:270:21:270:27 | newpath | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:270:21:270:27 | newpath | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:270:21:270:27 | newpath | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:272:21:272:27 | newpath | CalleeFlexibleAccessPath | fs.readFileSync |
 | autogenerated/TaintedPath/normalizedPaths.js:272:21:272:27 | newpath | InputArgumentIndex | 0 |
@@ -7328,7 +9067,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:272:21:272:27 | newpath | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:272:21:272:27 | newpath | enclosingFunctionBody | req res path pathModule resolve req query path fs readFileSync path self something relative pathModule relative self webroot path relative startsWith .. pathModule sep relative .. fs readFileSync path fs readFileSync path newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath relativePath indexOf .. pathModule sep 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath relativePath indexOf ../ 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath pathModule normalize relativePath indexOf ../ 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath pathModule normalize relativePath indexOf ../ fs readFileSync newpath fs readFileSync newpath |
 | autogenerated/TaintedPath/normalizedPaths.js:272:21:272:27 | newpath | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:272:21:272:27 | newpath | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:272:21:272:27 | newpath | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:272:21:272:27 | newpath | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:275:38:275:41 | path | CalleeFlexibleAccessPath | pathModule.normalize |
 | autogenerated/TaintedPath/normalizedPaths.js:275:38:275:41 | path | InputArgumentIndex | 0 |
@@ -7337,7 +9076,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:275:38:275:41 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:275:38:275:41 | path | enclosingFunctionBody | req res path pathModule resolve req query path fs readFileSync path self something relative pathModule relative self webroot path relative startsWith .. pathModule sep relative .. fs readFileSync path fs readFileSync path newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath relativePath indexOf .. pathModule sep 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath relativePath indexOf ../ 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath pathModule normalize relativePath indexOf ../ 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath pathModule normalize relativePath indexOf ../ fs readFileSync newpath fs readFileSync newpath |
 | autogenerated/TaintedPath/normalizedPaths.js:275:38:275:41 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:275:38:275:41 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:275:38:275:41 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:275:38:275:41 | path | receiverName | pathModule |
 | autogenerated/TaintedPath/normalizedPaths.js:276:42:276:75 | pathMod ... aceDir) | CalleeFlexibleAccessPath | pathModule.relative |
 | autogenerated/TaintedPath/normalizedPaths.js:276:42:276:75 | pathMod ... aceDir) | InputArgumentIndex | 0 |
@@ -7346,7 +9085,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:276:42:276:75 | pathMod ... aceDir) | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:276:42:276:75 | pathMod ... aceDir) | enclosingFunctionBody | req res path pathModule resolve req query path fs readFileSync path self something relative pathModule relative self webroot path relative startsWith .. pathModule sep relative .. fs readFileSync path fs readFileSync path newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath relativePath indexOf .. pathModule sep 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath relativePath indexOf ../ 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath pathModule normalize relativePath indexOf ../ 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath pathModule normalize relativePath indexOf ../ fs readFileSync newpath fs readFileSync newpath |
 | autogenerated/TaintedPath/normalizedPaths.js:276:42:276:75 | pathMod ... aceDir) | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:276:42:276:75 | pathMod ... aceDir) | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:276:42:276:75 | pathMod ... aceDir) | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:276:42:276:75 | pathMod ... aceDir) | receiverName | pathModule |
 | autogenerated/TaintedPath/normalizedPaths.js:276:63:276:74 | workspaceDir | CalleeFlexibleAccessPath | pathModule.normalize |
 | autogenerated/TaintedPath/normalizedPaths.js:276:63:276:74 | workspaceDir | InputArgumentIndex | 0 |
@@ -7355,7 +9094,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:276:63:276:74 | workspaceDir | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:276:63:276:74 | workspaceDir | enclosingFunctionBody | req res path pathModule resolve req query path fs readFileSync path self something relative pathModule relative self webroot path relative startsWith .. pathModule sep relative .. fs readFileSync path fs readFileSync path newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath relativePath indexOf .. pathModule sep 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath relativePath indexOf ../ 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath pathModule normalize relativePath indexOf ../ 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath pathModule normalize relativePath indexOf ../ fs readFileSync newpath fs readFileSync newpath |
 | autogenerated/TaintedPath/normalizedPaths.js:276:63:276:74 | workspaceDir | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:276:63:276:74 | workspaceDir | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:276:63:276:74 | workspaceDir | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:276:63:276:74 | workspaceDir | receiverName | pathModule |
 | autogenerated/TaintedPath/normalizedPaths.js:276:78:276:84 | newpath | CalleeFlexibleAccessPath | pathModule.relative |
 | autogenerated/TaintedPath/normalizedPaths.js:276:78:276:84 | newpath | InputArgumentIndex | 1 |
@@ -7364,7 +9103,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:276:78:276:84 | newpath | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:276:78:276:84 | newpath | enclosingFunctionBody | req res path pathModule resolve req query path fs readFileSync path self something relative pathModule relative self webroot path relative startsWith .. pathModule sep relative .. fs readFileSync path fs readFileSync path newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath relativePath indexOf .. pathModule sep 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath relativePath indexOf ../ 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath pathModule normalize relativePath indexOf ../ 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath pathModule normalize relativePath indexOf ../ fs readFileSync newpath fs readFileSync newpath |
 | autogenerated/TaintedPath/normalizedPaths.js:276:78:276:84 | newpath | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:276:78:276:84 | newpath | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:276:78:276:84 | newpath | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:276:78:276:84 | newpath | receiverName | pathModule |
 | autogenerated/TaintedPath/normalizedPaths.js:277:28:277:32 | '../' | CalleeFlexibleAccessPath | relativePath.indexOf |
 | autogenerated/TaintedPath/normalizedPaths.js:277:28:277:32 | '../' | InputArgumentIndex | 0 |
@@ -7373,7 +9112,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:277:28:277:32 | '../' | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:277:28:277:32 | '../' | enclosingFunctionBody | req res path pathModule resolve req query path fs readFileSync path self something relative pathModule relative self webroot path relative startsWith .. pathModule sep relative .. fs readFileSync path fs readFileSync path newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath relativePath indexOf .. pathModule sep 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath relativePath indexOf ../ 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath pathModule normalize relativePath indexOf ../ 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath pathModule normalize relativePath indexOf ../ fs readFileSync newpath fs readFileSync newpath |
 | autogenerated/TaintedPath/normalizedPaths.js:277:28:277:32 | '../' | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:277:28:277:32 | '../' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:277:28:277:32 | '../' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:277:28:277:32 | '../' | receiverName | relativePath |
 | autogenerated/TaintedPath/normalizedPaths.js:278:21:278:27 | newpath | CalleeFlexibleAccessPath | fs.readFileSync |
 | autogenerated/TaintedPath/normalizedPaths.js:278:21:278:27 | newpath | InputArgumentIndex | 0 |
@@ -7382,7 +9121,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:278:21:278:27 | newpath | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:278:21:278:27 | newpath | enclosingFunctionBody | req res path pathModule resolve req query path fs readFileSync path self something relative pathModule relative self webroot path relative startsWith .. pathModule sep relative .. fs readFileSync path fs readFileSync path newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath relativePath indexOf .. pathModule sep 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath relativePath indexOf ../ 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath pathModule normalize relativePath indexOf ../ 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath pathModule normalize relativePath indexOf ../ fs readFileSync newpath fs readFileSync newpath |
 | autogenerated/TaintedPath/normalizedPaths.js:278:21:278:27 | newpath | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:278:21:278:27 | newpath | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:278:21:278:27 | newpath | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:278:21:278:27 | newpath | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:280:21:280:27 | newpath | CalleeFlexibleAccessPath | fs.readFileSync |
 | autogenerated/TaintedPath/normalizedPaths.js:280:21:280:27 | newpath | InputArgumentIndex | 0 |
@@ -7391,7 +9130,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:280:21:280:27 | newpath | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:280:21:280:27 | newpath | enclosingFunctionBody | req res path pathModule resolve req query path fs readFileSync path self something relative pathModule relative self webroot path relative startsWith .. pathModule sep relative .. fs readFileSync path fs readFileSync path newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath relativePath indexOf .. pathModule sep 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath relativePath indexOf ../ 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath pathModule normalize relativePath indexOf ../ 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath pathModule normalize relativePath indexOf ../ fs readFileSync newpath fs readFileSync newpath |
 | autogenerated/TaintedPath/normalizedPaths.js:280:21:280:27 | newpath | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:280:21:280:27 | newpath | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:280:21:280:27 | newpath | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:280:21:280:27 | newpath | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:283:38:283:41 | path | CalleeFlexibleAccessPath | pathModule.normalize |
 | autogenerated/TaintedPath/normalizedPaths.js:283:38:283:41 | path | InputArgumentIndex | 0 |
@@ -7400,7 +9139,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:283:38:283:41 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:283:38:283:41 | path | enclosingFunctionBody | req res path pathModule resolve req query path fs readFileSync path self something relative pathModule relative self webroot path relative startsWith .. pathModule sep relative .. fs readFileSync path fs readFileSync path newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath relativePath indexOf .. pathModule sep 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath relativePath indexOf ../ 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath pathModule normalize relativePath indexOf ../ 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath pathModule normalize relativePath indexOf ../ fs readFileSync newpath fs readFileSync newpath |
 | autogenerated/TaintedPath/normalizedPaths.js:283:38:283:41 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:283:38:283:41 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:283:38:283:41 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:283:38:283:41 | path | receiverName | pathModule |
 | autogenerated/TaintedPath/normalizedPaths.js:284:42:284:75 | pathMod ... aceDir) | CalleeFlexibleAccessPath | pathModule.relative |
 | autogenerated/TaintedPath/normalizedPaths.js:284:42:284:75 | pathMod ... aceDir) | InputArgumentIndex | 0 |
@@ -7409,7 +9148,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:284:42:284:75 | pathMod ... aceDir) | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:284:42:284:75 | pathMod ... aceDir) | enclosingFunctionBody | req res path pathModule resolve req query path fs readFileSync path self something relative pathModule relative self webroot path relative startsWith .. pathModule sep relative .. fs readFileSync path fs readFileSync path newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath relativePath indexOf .. pathModule sep 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath relativePath indexOf ../ 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath pathModule normalize relativePath indexOf ../ 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath pathModule normalize relativePath indexOf ../ fs readFileSync newpath fs readFileSync newpath |
 | autogenerated/TaintedPath/normalizedPaths.js:284:42:284:75 | pathMod ... aceDir) | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:284:42:284:75 | pathMod ... aceDir) | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:284:42:284:75 | pathMod ... aceDir) | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:284:42:284:75 | pathMod ... aceDir) | receiverName | pathModule |
 | autogenerated/TaintedPath/normalizedPaths.js:284:63:284:74 | workspaceDir | CalleeFlexibleAccessPath | pathModule.normalize |
 | autogenerated/TaintedPath/normalizedPaths.js:284:63:284:74 | workspaceDir | InputArgumentIndex | 0 |
@@ -7418,7 +9157,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:284:63:284:74 | workspaceDir | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:284:63:284:74 | workspaceDir | enclosingFunctionBody | req res path pathModule resolve req query path fs readFileSync path self something relative pathModule relative self webroot path relative startsWith .. pathModule sep relative .. fs readFileSync path fs readFileSync path newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath relativePath indexOf .. pathModule sep 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath relativePath indexOf ../ 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath pathModule normalize relativePath indexOf ../ 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath pathModule normalize relativePath indexOf ../ fs readFileSync newpath fs readFileSync newpath |
 | autogenerated/TaintedPath/normalizedPaths.js:284:63:284:74 | workspaceDir | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:284:63:284:74 | workspaceDir | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:284:63:284:74 | workspaceDir | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:284:63:284:74 | workspaceDir | receiverName | pathModule |
 | autogenerated/TaintedPath/normalizedPaths.js:284:78:284:84 | newpath | CalleeFlexibleAccessPath | pathModule.relative |
 | autogenerated/TaintedPath/normalizedPaths.js:284:78:284:84 | newpath | InputArgumentIndex | 1 |
@@ -7427,7 +9166,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:284:78:284:84 | newpath | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:284:78:284:84 | newpath | enclosingFunctionBody | req res path pathModule resolve req query path fs readFileSync path self something relative pathModule relative self webroot path relative startsWith .. pathModule sep relative .. fs readFileSync path fs readFileSync path newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath relativePath indexOf .. pathModule sep 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath relativePath indexOf ../ 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath pathModule normalize relativePath indexOf ../ 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath pathModule normalize relativePath indexOf ../ fs readFileSync newpath fs readFileSync newpath |
 | autogenerated/TaintedPath/normalizedPaths.js:284:78:284:84 | newpath | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:284:78:284:84 | newpath | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:284:78:284:84 | newpath | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:284:78:284:84 | newpath | receiverName | pathModule |
 | autogenerated/TaintedPath/normalizedPaths.js:285:28:285:39 | relativePath | CalleeFlexibleAccessPath | pathModule.normalize |
 | autogenerated/TaintedPath/normalizedPaths.js:285:28:285:39 | relativePath | InputArgumentIndex | 0 |
@@ -7436,7 +9175,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:285:28:285:39 | relativePath | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:285:28:285:39 | relativePath | enclosingFunctionBody | req res path pathModule resolve req query path fs readFileSync path self something relative pathModule relative self webroot path relative startsWith .. pathModule sep relative .. fs readFileSync path fs readFileSync path newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath relativePath indexOf .. pathModule sep 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath relativePath indexOf ../ 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath pathModule normalize relativePath indexOf ../ 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath pathModule normalize relativePath indexOf ../ fs readFileSync newpath fs readFileSync newpath |
 | autogenerated/TaintedPath/normalizedPaths.js:285:28:285:39 | relativePath | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:285:28:285:39 | relativePath | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:285:28:285:39 | relativePath | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:285:28:285:39 | relativePath | receiverName | pathModule |
 | autogenerated/TaintedPath/normalizedPaths.js:285:50:285:54 | '../' | CalleeFlexibleAccessPath | pathModule.normalize().indexOf |
 | autogenerated/TaintedPath/normalizedPaths.js:285:50:285:54 | '../' | InputArgumentIndex | 0 |
@@ -7445,7 +9184,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:285:50:285:54 | '../' | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:285:50:285:54 | '../' | enclosingFunctionBody | req res path pathModule resolve req query path fs readFileSync path self something relative pathModule relative self webroot path relative startsWith .. pathModule sep relative .. fs readFileSync path fs readFileSync path newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath relativePath indexOf .. pathModule sep 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath relativePath indexOf ../ 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath pathModule normalize relativePath indexOf ../ 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath pathModule normalize relativePath indexOf ../ fs readFileSync newpath fs readFileSync newpath |
 | autogenerated/TaintedPath/normalizedPaths.js:285:50:285:54 | '../' | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:285:50:285:54 | '../' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:285:50:285:54 | '../' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:286:21:286:27 | newpath | CalleeFlexibleAccessPath | fs.readFileSync |
 | autogenerated/TaintedPath/normalizedPaths.js:286:21:286:27 | newpath | InputArgumentIndex | 0 |
 | autogenerated/TaintedPath/normalizedPaths.js:286:21:286:27 | newpath | calleeImports | fs |
@@ -7453,7 +9192,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:286:21:286:27 | newpath | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:286:21:286:27 | newpath | enclosingFunctionBody | req res path pathModule resolve req query path fs readFileSync path self something relative pathModule relative self webroot path relative startsWith .. pathModule sep relative .. fs readFileSync path fs readFileSync path newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath relativePath indexOf .. pathModule sep 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath relativePath indexOf ../ 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath pathModule normalize relativePath indexOf ../ 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath pathModule normalize relativePath indexOf ../ fs readFileSync newpath fs readFileSync newpath |
 | autogenerated/TaintedPath/normalizedPaths.js:286:21:286:27 | newpath | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:286:21:286:27 | newpath | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:286:21:286:27 | newpath | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:286:21:286:27 | newpath | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:288:21:288:27 | newpath | CalleeFlexibleAccessPath | fs.readFileSync |
 | autogenerated/TaintedPath/normalizedPaths.js:288:21:288:27 | newpath | InputArgumentIndex | 0 |
@@ -7462,7 +9201,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:288:21:288:27 | newpath | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:288:21:288:27 | newpath | enclosingFunctionBody | req res path pathModule resolve req query path fs readFileSync path self something relative pathModule relative self webroot path relative startsWith .. pathModule sep relative .. fs readFileSync path fs readFileSync path newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath relativePath indexOf .. pathModule sep 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath relativePath indexOf ../ 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath pathModule normalize relativePath indexOf ../ 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath pathModule normalize relativePath indexOf ../ fs readFileSync newpath fs readFileSync newpath |
 | autogenerated/TaintedPath/normalizedPaths.js:288:21:288:27 | newpath | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:288:21:288:27 | newpath | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:288:21:288:27 | newpath | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:288:21:288:27 | newpath | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:291:38:291:41 | path | CalleeFlexibleAccessPath | pathModule.normalize |
 | autogenerated/TaintedPath/normalizedPaths.js:291:38:291:41 | path | InputArgumentIndex | 0 |
@@ -7471,7 +9210,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:291:38:291:41 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:291:38:291:41 | path | enclosingFunctionBody | req res path pathModule resolve req query path fs readFileSync path self something relative pathModule relative self webroot path relative startsWith .. pathModule sep relative .. fs readFileSync path fs readFileSync path newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath relativePath indexOf .. pathModule sep 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath relativePath indexOf ../ 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath pathModule normalize relativePath indexOf ../ 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath pathModule normalize relativePath indexOf ../ fs readFileSync newpath fs readFileSync newpath |
 | autogenerated/TaintedPath/normalizedPaths.js:291:38:291:41 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:291:38:291:41 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:291:38:291:41 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:291:38:291:41 | path | receiverName | pathModule |
 | autogenerated/TaintedPath/normalizedPaths.js:292:42:292:75 | pathMod ... aceDir) | CalleeFlexibleAccessPath | pathModule.relative |
 | autogenerated/TaintedPath/normalizedPaths.js:292:42:292:75 | pathMod ... aceDir) | InputArgumentIndex | 0 |
@@ -7480,7 +9219,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:292:42:292:75 | pathMod ... aceDir) | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:292:42:292:75 | pathMod ... aceDir) | enclosingFunctionBody | req res path pathModule resolve req query path fs readFileSync path self something relative pathModule relative self webroot path relative startsWith .. pathModule sep relative .. fs readFileSync path fs readFileSync path newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath relativePath indexOf .. pathModule sep 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath relativePath indexOf ../ 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath pathModule normalize relativePath indexOf ../ 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath pathModule normalize relativePath indexOf ../ fs readFileSync newpath fs readFileSync newpath |
 | autogenerated/TaintedPath/normalizedPaths.js:292:42:292:75 | pathMod ... aceDir) | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:292:42:292:75 | pathMod ... aceDir) | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:292:42:292:75 | pathMod ... aceDir) | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:292:42:292:75 | pathMod ... aceDir) | receiverName | pathModule |
 | autogenerated/TaintedPath/normalizedPaths.js:292:63:292:74 | workspaceDir | CalleeFlexibleAccessPath | pathModule.normalize |
 | autogenerated/TaintedPath/normalizedPaths.js:292:63:292:74 | workspaceDir | InputArgumentIndex | 0 |
@@ -7489,7 +9228,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:292:63:292:74 | workspaceDir | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:292:63:292:74 | workspaceDir | enclosingFunctionBody | req res path pathModule resolve req query path fs readFileSync path self something relative pathModule relative self webroot path relative startsWith .. pathModule sep relative .. fs readFileSync path fs readFileSync path newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath relativePath indexOf .. pathModule sep 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath relativePath indexOf ../ 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath pathModule normalize relativePath indexOf ../ 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath pathModule normalize relativePath indexOf ../ fs readFileSync newpath fs readFileSync newpath |
 | autogenerated/TaintedPath/normalizedPaths.js:292:63:292:74 | workspaceDir | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:292:63:292:74 | workspaceDir | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:292:63:292:74 | workspaceDir | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:292:63:292:74 | workspaceDir | receiverName | pathModule |
 | autogenerated/TaintedPath/normalizedPaths.js:292:78:292:84 | newpath | CalleeFlexibleAccessPath | pathModule.relative |
 | autogenerated/TaintedPath/normalizedPaths.js:292:78:292:84 | newpath | InputArgumentIndex | 1 |
@@ -7498,7 +9237,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:292:78:292:84 | newpath | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:292:78:292:84 | newpath | enclosingFunctionBody | req res path pathModule resolve req query path fs readFileSync path self something relative pathModule relative self webroot path relative startsWith .. pathModule sep relative .. fs readFileSync path fs readFileSync path newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath relativePath indexOf .. pathModule sep 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath relativePath indexOf ../ 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath pathModule normalize relativePath indexOf ../ 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath pathModule normalize relativePath indexOf ../ fs readFileSync newpath fs readFileSync newpath |
 | autogenerated/TaintedPath/normalizedPaths.js:292:78:292:84 | newpath | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:292:78:292:84 | newpath | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:292:78:292:84 | newpath | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:292:78:292:84 | newpath | receiverName | pathModule |
 | autogenerated/TaintedPath/normalizedPaths.js:293:28:293:39 | relativePath | CalleeFlexibleAccessPath | pathModule.normalize |
 | autogenerated/TaintedPath/normalizedPaths.js:293:28:293:39 | relativePath | InputArgumentIndex | 0 |
@@ -7507,7 +9246,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:293:28:293:39 | relativePath | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:293:28:293:39 | relativePath | enclosingFunctionBody | req res path pathModule resolve req query path fs readFileSync path self something relative pathModule relative self webroot path relative startsWith .. pathModule sep relative .. fs readFileSync path fs readFileSync path newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath relativePath indexOf .. pathModule sep 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath relativePath indexOf ../ 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath pathModule normalize relativePath indexOf ../ 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath pathModule normalize relativePath indexOf ../ fs readFileSync newpath fs readFileSync newpath |
 | autogenerated/TaintedPath/normalizedPaths.js:293:28:293:39 | relativePath | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:293:28:293:39 | relativePath | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:293:28:293:39 | relativePath | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:293:28:293:39 | relativePath | receiverName | pathModule |
 | autogenerated/TaintedPath/normalizedPaths.js:293:50:293:54 | '../' | CalleeFlexibleAccessPath | pathModule.normalize().indexOf |
 | autogenerated/TaintedPath/normalizedPaths.js:293:50:293:54 | '../' | InputArgumentIndex | 0 |
@@ -7516,7 +9255,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:293:50:293:54 | '../' | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:293:50:293:54 | '../' | enclosingFunctionBody | req res path pathModule resolve req query path fs readFileSync path self something relative pathModule relative self webroot path relative startsWith .. pathModule sep relative .. fs readFileSync path fs readFileSync path newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath relativePath indexOf .. pathModule sep 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath relativePath indexOf ../ 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath pathModule normalize relativePath indexOf ../ 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath pathModule normalize relativePath indexOf ../ fs readFileSync newpath fs readFileSync newpath |
 | autogenerated/TaintedPath/normalizedPaths.js:293:50:293:54 | '../' | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:293:50:293:54 | '../' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:293:50:293:54 | '../' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:294:21:294:27 | newpath | CalleeFlexibleAccessPath | fs.readFileSync |
 | autogenerated/TaintedPath/normalizedPaths.js:294:21:294:27 | newpath | InputArgumentIndex | 0 |
 | autogenerated/TaintedPath/normalizedPaths.js:294:21:294:27 | newpath | calleeImports | fs |
@@ -7524,7 +9263,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:294:21:294:27 | newpath | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:294:21:294:27 | newpath | enclosingFunctionBody | req res path pathModule resolve req query path fs readFileSync path self something relative pathModule relative self webroot path relative startsWith .. pathModule sep relative .. fs readFileSync path fs readFileSync path newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath relativePath indexOf .. pathModule sep 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath relativePath indexOf ../ 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath pathModule normalize relativePath indexOf ../ 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath pathModule normalize relativePath indexOf ../ fs readFileSync newpath fs readFileSync newpath |
 | autogenerated/TaintedPath/normalizedPaths.js:294:21:294:27 | newpath | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:294:21:294:27 | newpath | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:294:21:294:27 | newpath | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:294:21:294:27 | newpath | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:296:21:296:27 | newpath | CalleeFlexibleAccessPath | fs.readFileSync |
 | autogenerated/TaintedPath/normalizedPaths.js:296:21:296:27 | newpath | InputArgumentIndex | 0 |
@@ -7533,33 +9272,33 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:296:21:296:27 | newpath | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:296:21:296:27 | newpath | enclosingFunctionBody | req res path pathModule resolve req query path fs readFileSync path self something relative pathModule relative self webroot path relative startsWith .. pathModule sep relative .. fs readFileSync path fs readFileSync path newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath relativePath indexOf .. pathModule sep 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath relativePath indexOf ../ 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath pathModule normalize relativePath indexOf ../ 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath pathModule normalize relativePath indexOf ../ fs readFileSync newpath fs readFileSync newpath |
 | autogenerated/TaintedPath/normalizedPaths.js:296:21:296:27 | newpath | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:296:21:296:27 | newpath | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:296:21:296:27 | newpath | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:296:21:296:27 | newpath | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:300:28:300:43 | "is-path-inside" | CalleeFlexibleAccessPath | require |
 | autogenerated/TaintedPath/normalizedPaths.js:300:28:300:43 | "is-path-inside" | InputArgumentIndex | 0 |
 | autogenerated/TaintedPath/normalizedPaths.js:300:28:300:43 | "is-path-inside" | calleeImports |  |
 | autogenerated/TaintedPath/normalizedPaths.js:300:28:300:43 | "is-path-inside" | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
 | autogenerated/TaintedPath/normalizedPaths.js:300:28:300:43 | "is-path-inside" | contextSurroundingFunctionParameters |  |
-| autogenerated/TaintedPath/normalizedPaths.js:300:28:300:43 | "is-path-inside" | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:300:28:300:43 | "is-path-inside" | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:301:28:301:43 | "path-is-inside" | CalleeFlexibleAccessPath | require |
 | autogenerated/TaintedPath/normalizedPaths.js:301:28:301:43 | "path-is-inside" | InputArgumentIndex | 0 |
 | autogenerated/TaintedPath/normalizedPaths.js:301:28:301:43 | "path-is-inside" | calleeImports |  |
 | autogenerated/TaintedPath/normalizedPaths.js:301:28:301:43 | "path-is-inside" | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
 | autogenerated/TaintedPath/normalizedPaths.js:301:28:301:43 | "path-is-inside" | contextSurroundingFunctionParameters |  |
-| autogenerated/TaintedPath/normalizedPaths.js:301:28:301:43 | "path-is-inside" | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:301:28:301:43 | "path-is-inside" | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:302:9:302:32 | '/pseud ... ations' | CalleeFlexibleAccessPath | app.get |
 | autogenerated/TaintedPath/normalizedPaths.js:302:9:302:32 | '/pseud ... ations' | InputArgumentIndex | 0 |
 | autogenerated/TaintedPath/normalizedPaths.js:302:9:302:32 | '/pseud ... ations' | calleeImports | express |
 | autogenerated/TaintedPath/normalizedPaths.js:302:9:302:32 | '/pseud ... ations' | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
 | autogenerated/TaintedPath/normalizedPaths.js:302:9:302:32 | '/pseud ... ations' | contextSurroundingFunctionParameters |  |
-| autogenerated/TaintedPath/normalizedPaths.js:302:9:302:32 | '/pseud ... ations' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:302:9:302:32 | '/pseud ... ations' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:302:9:302:32 | '/pseud ... ations' | receiverName | app |
 | autogenerated/TaintedPath/normalizedPaths.js:302:35:336:1 | (req, r ... \\n\\n\\t}\\n\\n} | CalleeFlexibleAccessPath | app.get |
 | autogenerated/TaintedPath/normalizedPaths.js:302:35:336:1 | (req, r ... \\n\\n\\t}\\n\\n} | InputArgumentIndex | 1 |
 | autogenerated/TaintedPath/normalizedPaths.js:302:35:336:1 | (req, r ... \\n\\n\\t}\\n\\n} | calleeImports | express |
 | autogenerated/TaintedPath/normalizedPaths.js:302:35:336:1 | (req, r ... \\n\\n\\t}\\n\\n} | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
 | autogenerated/TaintedPath/normalizedPaths.js:302:35:336:1 | (req, r ... \\n\\n\\t}\\n\\n} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:302:35:336:1 | (req, r ... \\n\\n\\t}\\n\\n} | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:302:35:336:1 | (req, r ... \\n\\n\\t}\\n\\n} | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:302:35:336:1 | (req, r ... \\n\\n\\t}\\n\\n} | receiverName | app |
 | autogenerated/TaintedPath/normalizedPaths.js:304:18:304:21 | path | CalleeFlexibleAccessPath | fs.readFileSync |
 | autogenerated/TaintedPath/normalizedPaths.js:304:18:304:21 | path | InputArgumentIndex | 0 |
@@ -7568,7 +9307,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:304:18:304:21 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:304:18:304:21 | path | enclosingFunctionBody | req res path req query path fs readFileSync path isPathInside path SAFE fs readFileSync path fs readFileSync path pathIsInside path SAFE fs readFileSync path fs readFileSync path normalizedPath pathModule join SAFE path pathIsInside normalizedPath SAFE fs readFileSync normalizedPath fs readFileSync normalizedPath pathIsInside normalizedPath SAFE fs readFileSync normalizedPath fs readFileSync normalizedPath |
 | autogenerated/TaintedPath/normalizedPaths.js:304:18:304:21 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:304:18:304:21 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:304:18:304:21 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:304:18:304:21 | path | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:306:19:306:22 | path | CalleeFlexibleAccessPath | fs.readFileSync |
 | autogenerated/TaintedPath/normalizedPaths.js:306:19:306:22 | path | InputArgumentIndex | 0 |
@@ -7577,7 +9316,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:306:19:306:22 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:306:19:306:22 | path | enclosingFunctionBody | req res path req query path fs readFileSync path isPathInside path SAFE fs readFileSync path fs readFileSync path pathIsInside path SAFE fs readFileSync path fs readFileSync path normalizedPath pathModule join SAFE path pathIsInside normalizedPath SAFE fs readFileSync normalizedPath fs readFileSync normalizedPath pathIsInside normalizedPath SAFE fs readFileSync normalizedPath fs readFileSync normalizedPath |
 | autogenerated/TaintedPath/normalizedPaths.js:306:19:306:22 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:306:19:306:22 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:306:19:306:22 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:306:19:306:22 | path | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:309:19:309:22 | path | CalleeFlexibleAccessPath | fs.readFileSync |
 | autogenerated/TaintedPath/normalizedPaths.js:309:19:309:22 | path | InputArgumentIndex | 0 |
@@ -7586,7 +9325,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:309:19:309:22 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:309:19:309:22 | path | enclosingFunctionBody | req res path req query path fs readFileSync path isPathInside path SAFE fs readFileSync path fs readFileSync path pathIsInside path SAFE fs readFileSync path fs readFileSync path normalizedPath pathModule join SAFE path pathIsInside normalizedPath SAFE fs readFileSync normalizedPath fs readFileSync normalizedPath pathIsInside normalizedPath SAFE fs readFileSync normalizedPath fs readFileSync normalizedPath |
 | autogenerated/TaintedPath/normalizedPaths.js:309:19:309:22 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:309:19:309:22 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:309:19:309:22 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:309:19:309:22 | path | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:312:19:312:22 | path | CalleeFlexibleAccessPath | pathIsInside |
 | autogenerated/TaintedPath/normalizedPaths.js:312:19:312:22 | path | InputArgumentIndex | 0 |
@@ -7595,7 +9334,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:312:19:312:22 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:312:19:312:22 | path | enclosingFunctionBody | req res path req query path fs readFileSync path isPathInside path SAFE fs readFileSync path fs readFileSync path pathIsInside path SAFE fs readFileSync path fs readFileSync path normalizedPath pathModule join SAFE path pathIsInside normalizedPath SAFE fs readFileSync normalizedPath fs readFileSync normalizedPath pathIsInside normalizedPath SAFE fs readFileSync normalizedPath fs readFileSync normalizedPath |
 | autogenerated/TaintedPath/normalizedPaths.js:312:19:312:22 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:312:19:312:22 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:312:19:312:22 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:312:25:312:28 | SAFE | CalleeFlexibleAccessPath | pathIsInside |
 | autogenerated/TaintedPath/normalizedPaths.js:312:25:312:28 | SAFE | InputArgumentIndex | 1 |
 | autogenerated/TaintedPath/normalizedPaths.js:312:25:312:28 | SAFE | calleeImports | path-is-inside |
@@ -7603,7 +9342,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:312:25:312:28 | SAFE | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:312:25:312:28 | SAFE | enclosingFunctionBody | req res path req query path fs readFileSync path isPathInside path SAFE fs readFileSync path fs readFileSync path pathIsInside path SAFE fs readFileSync path fs readFileSync path normalizedPath pathModule join SAFE path pathIsInside normalizedPath SAFE fs readFileSync normalizedPath fs readFileSync normalizedPath pathIsInside normalizedPath SAFE fs readFileSync normalizedPath fs readFileSync normalizedPath |
 | autogenerated/TaintedPath/normalizedPaths.js:312:25:312:28 | SAFE | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:312:25:312:28 | SAFE | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:312:25:312:28 | SAFE | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:313:19:313:22 | path | CalleeFlexibleAccessPath | fs.readFileSync |
 | autogenerated/TaintedPath/normalizedPaths.js:313:19:313:22 | path | InputArgumentIndex | 0 |
 | autogenerated/TaintedPath/normalizedPaths.js:313:19:313:22 | path | calleeImports | fs |
@@ -7611,7 +9350,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:313:19:313:22 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:313:19:313:22 | path | enclosingFunctionBody | req res path req query path fs readFileSync path isPathInside path SAFE fs readFileSync path fs readFileSync path pathIsInside path SAFE fs readFileSync path fs readFileSync path normalizedPath pathModule join SAFE path pathIsInside normalizedPath SAFE fs readFileSync normalizedPath fs readFileSync normalizedPath pathIsInside normalizedPath SAFE fs readFileSync normalizedPath fs readFileSync normalizedPath |
 | autogenerated/TaintedPath/normalizedPaths.js:313:19:313:22 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:313:19:313:22 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:313:19:313:22 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:313:19:313:22 | path | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:316:19:316:22 | path | CalleeFlexibleAccessPath | fs.readFileSync |
 | autogenerated/TaintedPath/normalizedPaths.js:316:19:316:22 | path | InputArgumentIndex | 0 |
@@ -7620,7 +9359,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:316:19:316:22 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:316:19:316:22 | path | enclosingFunctionBody | req res path req query path fs readFileSync path isPathInside path SAFE fs readFileSync path fs readFileSync path pathIsInside path SAFE fs readFileSync path fs readFileSync path normalizedPath pathModule join SAFE path pathIsInside normalizedPath SAFE fs readFileSync normalizedPath fs readFileSync normalizedPath pathIsInside normalizedPath SAFE fs readFileSync normalizedPath fs readFileSync normalizedPath |
 | autogenerated/TaintedPath/normalizedPaths.js:316:19:316:22 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:316:19:316:22 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:316:19:316:22 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:316:19:316:22 | path | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:320:39:320:42 | SAFE | CalleeFlexibleAccessPath | pathModule.join |
 | autogenerated/TaintedPath/normalizedPaths.js:320:39:320:42 | SAFE | InputArgumentIndex | 0 |
@@ -7629,7 +9368,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:320:39:320:42 | SAFE | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:320:39:320:42 | SAFE | enclosingFunctionBody | req res path req query path fs readFileSync path isPathInside path SAFE fs readFileSync path fs readFileSync path pathIsInside path SAFE fs readFileSync path fs readFileSync path normalizedPath pathModule join SAFE path pathIsInside normalizedPath SAFE fs readFileSync normalizedPath fs readFileSync normalizedPath pathIsInside normalizedPath SAFE fs readFileSync normalizedPath fs readFileSync normalizedPath |
 | autogenerated/TaintedPath/normalizedPaths.js:320:39:320:42 | SAFE | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:320:39:320:42 | SAFE | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:320:39:320:42 | SAFE | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:320:39:320:42 | SAFE | receiverName | pathModule |
 | autogenerated/TaintedPath/normalizedPaths.js:320:45:320:48 | path | CalleeFlexibleAccessPath | pathModule.join |
 | autogenerated/TaintedPath/normalizedPaths.js:320:45:320:48 | path | InputArgumentIndex | 1 |
@@ -7638,7 +9377,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:320:45:320:48 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:320:45:320:48 | path | enclosingFunctionBody | req res path req query path fs readFileSync path isPathInside path SAFE fs readFileSync path fs readFileSync path pathIsInside path SAFE fs readFileSync path fs readFileSync path normalizedPath pathModule join SAFE path pathIsInside normalizedPath SAFE fs readFileSync normalizedPath fs readFileSync normalizedPath pathIsInside normalizedPath SAFE fs readFileSync normalizedPath fs readFileSync normalizedPath |
 | autogenerated/TaintedPath/normalizedPaths.js:320:45:320:48 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:320:45:320:48 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:320:45:320:48 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:320:45:320:48 | path | receiverName | pathModule |
 | autogenerated/TaintedPath/normalizedPaths.js:321:19:321:32 | normalizedPath | CalleeFlexibleAccessPath | pathIsInside |
 | autogenerated/TaintedPath/normalizedPaths.js:321:19:321:32 | normalizedPath | InputArgumentIndex | 0 |
@@ -7647,7 +9386,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:321:19:321:32 | normalizedPath | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:321:19:321:32 | normalizedPath | enclosingFunctionBody | req res path req query path fs readFileSync path isPathInside path SAFE fs readFileSync path fs readFileSync path pathIsInside path SAFE fs readFileSync path fs readFileSync path normalizedPath pathModule join SAFE path pathIsInside normalizedPath SAFE fs readFileSync normalizedPath fs readFileSync normalizedPath pathIsInside normalizedPath SAFE fs readFileSync normalizedPath fs readFileSync normalizedPath |
 | autogenerated/TaintedPath/normalizedPaths.js:321:19:321:32 | normalizedPath | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:321:19:321:32 | normalizedPath | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:321:19:321:32 | normalizedPath | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:321:35:321:38 | SAFE | CalleeFlexibleAccessPath | pathIsInside |
 | autogenerated/TaintedPath/normalizedPaths.js:321:35:321:38 | SAFE | InputArgumentIndex | 1 |
 | autogenerated/TaintedPath/normalizedPaths.js:321:35:321:38 | SAFE | calleeImports | path-is-inside |
@@ -7655,7 +9394,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:321:35:321:38 | SAFE | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:321:35:321:38 | SAFE | enclosingFunctionBody | req res path req query path fs readFileSync path isPathInside path SAFE fs readFileSync path fs readFileSync path pathIsInside path SAFE fs readFileSync path fs readFileSync path normalizedPath pathModule join SAFE path pathIsInside normalizedPath SAFE fs readFileSync normalizedPath fs readFileSync normalizedPath pathIsInside normalizedPath SAFE fs readFileSync normalizedPath fs readFileSync normalizedPath |
 | autogenerated/TaintedPath/normalizedPaths.js:321:35:321:38 | SAFE | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:321:35:321:38 | SAFE | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:321:35:321:38 | SAFE | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:322:19:322:32 | normalizedPath | CalleeFlexibleAccessPath | fs.readFileSync |
 | autogenerated/TaintedPath/normalizedPaths.js:322:19:322:32 | normalizedPath | InputArgumentIndex | 0 |
 | autogenerated/TaintedPath/normalizedPaths.js:322:19:322:32 | normalizedPath | calleeImports | fs |
@@ -7663,7 +9402,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:322:19:322:32 | normalizedPath | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:322:19:322:32 | normalizedPath | enclosingFunctionBody | req res path req query path fs readFileSync path isPathInside path SAFE fs readFileSync path fs readFileSync path pathIsInside path SAFE fs readFileSync path fs readFileSync path normalizedPath pathModule join SAFE path pathIsInside normalizedPath SAFE fs readFileSync normalizedPath fs readFileSync normalizedPath pathIsInside normalizedPath SAFE fs readFileSync normalizedPath fs readFileSync normalizedPath |
 | autogenerated/TaintedPath/normalizedPaths.js:322:19:322:32 | normalizedPath | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:322:19:322:32 | normalizedPath | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:322:19:322:32 | normalizedPath | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:322:19:322:32 | normalizedPath | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:325:19:325:32 | normalizedPath | CalleeFlexibleAccessPath | fs.readFileSync |
 | autogenerated/TaintedPath/normalizedPaths.js:325:19:325:32 | normalizedPath | InputArgumentIndex | 0 |
@@ -7672,7 +9411,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:325:19:325:32 | normalizedPath | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:325:19:325:32 | normalizedPath | enclosingFunctionBody | req res path req query path fs readFileSync path isPathInside path SAFE fs readFileSync path fs readFileSync path pathIsInside path SAFE fs readFileSync path fs readFileSync path normalizedPath pathModule join SAFE path pathIsInside normalizedPath SAFE fs readFileSync normalizedPath fs readFileSync normalizedPath pathIsInside normalizedPath SAFE fs readFileSync normalizedPath fs readFileSync normalizedPath |
 | autogenerated/TaintedPath/normalizedPaths.js:325:19:325:32 | normalizedPath | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:325:19:325:32 | normalizedPath | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:325:19:325:32 | normalizedPath | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:325:19:325:32 | normalizedPath | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:328:19:328:32 | normalizedPath | CalleeFlexibleAccessPath | pathIsInside |
 | autogenerated/TaintedPath/normalizedPaths.js:328:19:328:32 | normalizedPath | InputArgumentIndex | 0 |
@@ -7681,7 +9420,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:328:19:328:32 | normalizedPath | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:328:19:328:32 | normalizedPath | enclosingFunctionBody | req res path req query path fs readFileSync path isPathInside path SAFE fs readFileSync path fs readFileSync path pathIsInside path SAFE fs readFileSync path fs readFileSync path normalizedPath pathModule join SAFE path pathIsInside normalizedPath SAFE fs readFileSync normalizedPath fs readFileSync normalizedPath pathIsInside normalizedPath SAFE fs readFileSync normalizedPath fs readFileSync normalizedPath |
 | autogenerated/TaintedPath/normalizedPaths.js:328:19:328:32 | normalizedPath | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:328:19:328:32 | normalizedPath | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:328:19:328:32 | normalizedPath | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:328:35:328:38 | SAFE | CalleeFlexibleAccessPath | pathIsInside |
 | autogenerated/TaintedPath/normalizedPaths.js:328:35:328:38 | SAFE | InputArgumentIndex | 1 |
 | autogenerated/TaintedPath/normalizedPaths.js:328:35:328:38 | SAFE | calleeImports | path-is-inside |
@@ -7689,7 +9428,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:328:35:328:38 | SAFE | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:328:35:328:38 | SAFE | enclosingFunctionBody | req res path req query path fs readFileSync path isPathInside path SAFE fs readFileSync path fs readFileSync path pathIsInside path SAFE fs readFileSync path fs readFileSync path normalizedPath pathModule join SAFE path pathIsInside normalizedPath SAFE fs readFileSync normalizedPath fs readFileSync normalizedPath pathIsInside normalizedPath SAFE fs readFileSync normalizedPath fs readFileSync normalizedPath |
 | autogenerated/TaintedPath/normalizedPaths.js:328:35:328:38 | SAFE | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:328:35:328:38 | SAFE | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:328:35:328:38 | SAFE | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:329:19:329:32 | normalizedPath | CalleeFlexibleAccessPath | fs.readFileSync |
 | autogenerated/TaintedPath/normalizedPaths.js:329:19:329:32 | normalizedPath | InputArgumentIndex | 0 |
 | autogenerated/TaintedPath/normalizedPaths.js:329:19:329:32 | normalizedPath | calleeImports | fs |
@@ -7697,7 +9436,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:329:19:329:32 | normalizedPath | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:329:19:329:32 | normalizedPath | enclosingFunctionBody | req res path req query path fs readFileSync path isPathInside path SAFE fs readFileSync path fs readFileSync path pathIsInside path SAFE fs readFileSync path fs readFileSync path normalizedPath pathModule join SAFE path pathIsInside normalizedPath SAFE fs readFileSync normalizedPath fs readFileSync normalizedPath pathIsInside normalizedPath SAFE fs readFileSync normalizedPath fs readFileSync normalizedPath |
 | autogenerated/TaintedPath/normalizedPaths.js:329:19:329:32 | normalizedPath | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:329:19:329:32 | normalizedPath | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:329:19:329:32 | normalizedPath | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:329:19:329:32 | normalizedPath | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:332:19:332:32 | normalizedPath | CalleeFlexibleAccessPath | fs.readFileSync |
 | autogenerated/TaintedPath/normalizedPaths.js:332:19:332:32 | normalizedPath | InputArgumentIndex | 0 |
@@ -7706,27 +9445,27 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:332:19:332:32 | normalizedPath | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:332:19:332:32 | normalizedPath | enclosingFunctionBody | req res path req query path fs readFileSync path isPathInside path SAFE fs readFileSync path fs readFileSync path pathIsInside path SAFE fs readFileSync path fs readFileSync path normalizedPath pathModule join SAFE path pathIsInside normalizedPath SAFE fs readFileSync normalizedPath fs readFileSync normalizedPath pathIsInside normalizedPath SAFE fs readFileSync normalizedPath fs readFileSync normalizedPath |
 | autogenerated/TaintedPath/normalizedPaths.js:332:19:332:32 | normalizedPath | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:332:19:332:32 | normalizedPath | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:332:19:332:32 | normalizedPath | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:332:19:332:32 | normalizedPath | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:338:9:338:29 | '/yet-a ... prefix' | CalleeFlexibleAccessPath | app.get |
 | autogenerated/TaintedPath/normalizedPaths.js:338:9:338:29 | '/yet-a ... prefix' | InputArgumentIndex | 0 |
 | autogenerated/TaintedPath/normalizedPaths.js:338:9:338:29 | '/yet-a ... prefix' | calleeImports | express |
 | autogenerated/TaintedPath/normalizedPaths.js:338:9:338:29 | '/yet-a ... prefix' | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
 | autogenerated/TaintedPath/normalizedPaths.js:338:9:338:29 | '/yet-a ... prefix' | contextSurroundingFunctionParameters |  |
-| autogenerated/TaintedPath/normalizedPaths.js:338:9:338:29 | '/yet-a ... prefix' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:338:9:338:29 | '/yet-a ... prefix' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:338:9:338:29 | '/yet-a ... prefix' | receiverName | app |
 | autogenerated/TaintedPath/normalizedPaths.js:338:32:350:1 | (req, r ... // OK\\n} | CalleeFlexibleAccessPath | app.get |
 | autogenerated/TaintedPath/normalizedPaths.js:338:32:350:1 | (req, r ... // OK\\n} | InputArgumentIndex | 1 |
 | autogenerated/TaintedPath/normalizedPaths.js:338:32:350:1 | (req, r ... // OK\\n} | calleeImports | express |
 | autogenerated/TaintedPath/normalizedPaths.js:338:32:350:1 | (req, r ... // OK\\n} | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
 | autogenerated/TaintedPath/normalizedPaths.js:338:32:350:1 | (req, r ... // OK\\n} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:338:32:350:1 | (req, r ... // OK\\n} | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:338:32:350:1 | (req, r ... // OK\\n} | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:338:32:350:1 | (req, r ... // OK\\n} | receiverName | app |
 | autogenerated/TaintedPath/normalizedPaths.js:339:13:339:46 | pathMod ... y.path) | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
 | autogenerated/TaintedPath/normalizedPaths.js:339:13:339:46 | pathMod ... y.path) | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:339:13:339:46 | pathMod ... y.path) | enclosingFunctionBody | req res path pathModule resolve req query path fs readFileSync path abs pathModule resolve path abs indexOf root 0 fs readFileSync path fs readFileSync path |
 | autogenerated/TaintedPath/normalizedPaths.js:339:13:339:46 | pathMod ... y.path) | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:339:13:339:46 | pathMod ... y.path) | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:339:13:339:46 | pathMod ... y.path) | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:339:32:339:45 | req.query.path | CalleeFlexibleAccessPath | pathModule.resolve |
 | autogenerated/TaintedPath/normalizedPaths.js:339:32:339:45 | req.query.path | InputArgumentIndex | 0 |
 | autogenerated/TaintedPath/normalizedPaths.js:339:32:339:45 | req.query.path | calleeImports | path |
@@ -7734,7 +9473,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:339:32:339:45 | req.query.path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:339:32:339:45 | req.query.path | enclosingFunctionBody | req res path pathModule resolve req query path fs readFileSync path abs pathModule resolve path abs indexOf root 0 fs readFileSync path fs readFileSync path |
 | autogenerated/TaintedPath/normalizedPaths.js:339:32:339:45 | req.query.path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:339:32:339:45 | req.query.path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:339:32:339:45 | req.query.path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:339:32:339:45 | req.query.path | receiverName | pathModule |
 | autogenerated/TaintedPath/normalizedPaths.js:341:18:341:21 | path | CalleeFlexibleAccessPath | fs.readFileSync |
 | autogenerated/TaintedPath/normalizedPaths.js:341:18:341:21 | path | InputArgumentIndex | 0 |
@@ -7743,7 +9482,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:341:18:341:21 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:341:18:341:21 | path | enclosingFunctionBody | req res path pathModule resolve req query path fs readFileSync path abs pathModule resolve path abs indexOf root 0 fs readFileSync path fs readFileSync path |
 | autogenerated/TaintedPath/normalizedPaths.js:341:18:341:21 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:341:18:341:21 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:341:18:341:21 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:341:18:341:21 | path | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:343:31:343:34 | path | CalleeFlexibleAccessPath | pathModule.resolve |
 | autogenerated/TaintedPath/normalizedPaths.js:343:31:343:34 | path | InputArgumentIndex | 0 |
@@ -7752,7 +9491,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:343:31:343:34 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:343:31:343:34 | path | enclosingFunctionBody | req res path pathModule resolve req query path fs readFileSync path abs pathModule resolve path abs indexOf root 0 fs readFileSync path fs readFileSync path |
 | autogenerated/TaintedPath/normalizedPaths.js:343:31:343:34 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:343:31:343:34 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:343:31:343:34 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:343:31:343:34 | path | receiverName | pathModule |
 | autogenerated/TaintedPath/normalizedPaths.js:345:18:345:21 | root | CalleeFlexibleAccessPath | abs.indexOf |
 | autogenerated/TaintedPath/normalizedPaths.js:345:18:345:21 | root | InputArgumentIndex | 0 |
@@ -7761,7 +9500,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:345:18:345:21 | root | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:345:18:345:21 | root | enclosingFunctionBody | req res path pathModule resolve req query path fs readFileSync path abs pathModule resolve path abs indexOf root 0 fs readFileSync path fs readFileSync path |
 | autogenerated/TaintedPath/normalizedPaths.js:345:18:345:21 | root | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:345:18:345:21 | root | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:345:18:345:21 | root | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:345:18:345:21 | root | receiverName | abs |
 | autogenerated/TaintedPath/normalizedPaths.js:346:19:346:22 | path | CalleeFlexibleAccessPath | fs.readFileSync |
 | autogenerated/TaintedPath/normalizedPaths.js:346:19:346:22 | path | InputArgumentIndex | 0 |
@@ -7770,7 +9509,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:346:19:346:22 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:346:19:346:22 | path | enclosingFunctionBody | req res path pathModule resolve req query path fs readFileSync path abs pathModule resolve path abs indexOf root 0 fs readFileSync path fs readFileSync path |
 | autogenerated/TaintedPath/normalizedPaths.js:346:19:346:22 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:346:19:346:22 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:346:19:346:22 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:346:19:346:22 | path | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:349:18:349:21 | path | CalleeFlexibleAccessPath | fs.readFileSync |
 | autogenerated/TaintedPath/normalizedPaths.js:349:18:349:21 | path | InputArgumentIndex | 0 |
@@ -7779,21 +9518,21 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:349:18:349:21 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:349:18:349:21 | path | enclosingFunctionBody | req res path pathModule resolve req query path fs readFileSync path abs pathModule resolve path abs indexOf root 0 fs readFileSync path fs readFileSync path |
 | autogenerated/TaintedPath/normalizedPaths.js:349:18:349:21 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:349:18:349:21 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:349:18:349:21 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:349:18:349:21 | path | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:353:9:353:30 | '/yet-a ... refix2' | CalleeFlexibleAccessPath | app.get |
 | autogenerated/TaintedPath/normalizedPaths.js:353:9:353:30 | '/yet-a ... refix2' | InputArgumentIndex | 0 |
 | autogenerated/TaintedPath/normalizedPaths.js:353:9:353:30 | '/yet-a ... refix2' | calleeImports | express |
 | autogenerated/TaintedPath/normalizedPaths.js:353:9:353:30 | '/yet-a ... refix2' | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
 | autogenerated/TaintedPath/normalizedPaths.js:353:9:353:30 | '/yet-a ... refix2' | contextSurroundingFunctionParameters |  |
-| autogenerated/TaintedPath/normalizedPaths.js:353:9:353:30 | '/yet-a ... refix2' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:353:9:353:30 | '/yet-a ... refix2' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:353:9:353:30 | '/yet-a ... refix2' | receiverName | app |
 | autogenerated/TaintedPath/normalizedPaths.js:353:33:373:1 | (req, r ... ;\\n  }\\n} | CalleeFlexibleAccessPath | app.get |
 | autogenerated/TaintedPath/normalizedPaths.js:353:33:373:1 | (req, r ... ;\\n  }\\n} | InputArgumentIndex | 1 |
 | autogenerated/TaintedPath/normalizedPaths.js:353:33:373:1 | (req, r ... ;\\n  }\\n} | calleeImports | express |
 | autogenerated/TaintedPath/normalizedPaths.js:353:33:373:1 | (req, r ... ;\\n  }\\n} | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
 | autogenerated/TaintedPath/normalizedPaths.js:353:33:373:1 | (req, r ... ;\\n  }\\n} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/normalizedPaths.js:353:33:373:1 | (req, r ... ;\\n  }\\n} | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:353:33:373:1 | (req, r ... ;\\n  }\\n} | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:353:33:373:1 | (req, r ... ;\\n  }\\n} | receiverName | app |
 | autogenerated/TaintedPath/normalizedPaths.js:356:19:356:22 | path | CalleeFlexibleAccessPath | fs.readFileSync |
 | autogenerated/TaintedPath/normalizedPaths.js:356:19:356:22 | path | InputArgumentIndex | 0 |
@@ -7802,7 +9541,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:356:19:356:22 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:356:19:356:22 | path | enclosingFunctionBody | req res path req query path fs readFileSync path requestPath pathModule join rootPath path targetPath allowPath requestPath rootPath targetPath rootPath fs readFileSync requestPath targetPath requestPath fs readFileSync requestPath fs readFileSync targetPath allowPath requestPath rootPath requestPath indexOf rootPath 0 |
 | autogenerated/TaintedPath/normalizedPaths.js:356:19:356:22 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:356:19:356:22 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:356:19:356:22 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:356:19:356:22 | path | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:358:37:358:44 | rootPath | CalleeFlexibleAccessPath | pathModule.join |
 | autogenerated/TaintedPath/normalizedPaths.js:358:37:358:44 | rootPath | InputArgumentIndex | 0 |
@@ -7811,7 +9550,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:358:37:358:44 | rootPath | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:358:37:358:44 | rootPath | enclosingFunctionBody | req res path req query path fs readFileSync path requestPath pathModule join rootPath path targetPath allowPath requestPath rootPath targetPath rootPath fs readFileSync requestPath targetPath requestPath fs readFileSync requestPath fs readFileSync targetPath allowPath requestPath rootPath requestPath indexOf rootPath 0 |
 | autogenerated/TaintedPath/normalizedPaths.js:358:37:358:44 | rootPath | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:358:37:358:44 | rootPath | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:358:37:358:44 | rootPath | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:358:37:358:44 | rootPath | receiverName | pathModule |
 | autogenerated/TaintedPath/normalizedPaths.js:358:47:358:50 | path | CalleeFlexibleAccessPath | pathModule.join |
 | autogenerated/TaintedPath/normalizedPaths.js:358:47:358:50 | path | InputArgumentIndex | 1 |
@@ -7820,7 +9559,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:358:47:358:50 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:358:47:358:50 | path | enclosingFunctionBody | req res path req query path fs readFileSync path requestPath pathModule join rootPath path targetPath allowPath requestPath rootPath targetPath rootPath fs readFileSync requestPath targetPath requestPath fs readFileSync requestPath fs readFileSync targetPath allowPath requestPath rootPath requestPath indexOf rootPath 0 |
 | autogenerated/TaintedPath/normalizedPaths.js:358:47:358:50 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:358:47:358:50 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:358:47:358:50 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:358:47:358:50 | path | receiverName | pathModule |
 | autogenerated/TaintedPath/normalizedPaths.js:361:18:361:28 | requestPath | CalleeFlexibleAccessPath | allowPath |
 | autogenerated/TaintedPath/normalizedPaths.js:361:18:361:28 | requestPath | InputArgumentIndex | 0 |
@@ -7828,14 +9567,14 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:361:18:361:28 | requestPath | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:361:18:361:28 | requestPath | enclosingFunctionBody | req res path req query path fs readFileSync path requestPath pathModule join rootPath path targetPath allowPath requestPath rootPath targetPath rootPath fs readFileSync requestPath targetPath requestPath fs readFileSync requestPath fs readFileSync targetPath allowPath requestPath rootPath requestPath indexOf rootPath 0 |
 | autogenerated/TaintedPath/normalizedPaths.js:361:18:361:28 | requestPath | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:361:18:361:28 | requestPath | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:361:18:361:28 | requestPath | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:361:31:361:38 | rootPath | CalleeFlexibleAccessPath | allowPath |
 | autogenerated/TaintedPath/normalizedPaths.js:361:31:361:38 | rootPath | InputArgumentIndex | 1 |
 | autogenerated/TaintedPath/normalizedPaths.js:361:31:361:38 | rootPath | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
 | autogenerated/TaintedPath/normalizedPaths.js:361:31:361:38 | rootPath | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:361:31:361:38 | rootPath | enclosingFunctionBody | req res path req query path fs readFileSync path requestPath pathModule join rootPath path targetPath allowPath requestPath rootPath targetPath rootPath fs readFileSync requestPath targetPath requestPath fs readFileSync requestPath fs readFileSync targetPath allowPath requestPath rootPath requestPath indexOf rootPath 0 |
 | autogenerated/TaintedPath/normalizedPaths.js:361:31:361:38 | rootPath | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:361:31:361:38 | rootPath | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:361:31:361:38 | rootPath | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:363:21:363:31 | requestPath | CalleeFlexibleAccessPath | fs.readFileSync |
 | autogenerated/TaintedPath/normalizedPaths.js:363:21:363:31 | requestPath | InputArgumentIndex | 0 |
 | autogenerated/TaintedPath/normalizedPaths.js:363:21:363:31 | requestPath | calleeImports | fs |
@@ -7843,7 +9582,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:363:21:363:31 | requestPath | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:363:21:363:31 | requestPath | enclosingFunctionBody | req res path req query path fs readFileSync path requestPath pathModule join rootPath path targetPath allowPath requestPath rootPath targetPath rootPath fs readFileSync requestPath targetPath requestPath fs readFileSync requestPath fs readFileSync targetPath allowPath requestPath rootPath requestPath indexOf rootPath 0 |
 | autogenerated/TaintedPath/normalizedPaths.js:363:21:363:31 | requestPath | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:363:21:363:31 | requestPath | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:363:21:363:31 | requestPath | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:363:21:363:31 | requestPath | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:366:21:366:31 | requestPath | CalleeFlexibleAccessPath | fs.readFileSync |
 | autogenerated/TaintedPath/normalizedPaths.js:366:21:366:31 | requestPath | InputArgumentIndex | 0 |
@@ -7852,7 +9591,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:366:21:366:31 | requestPath | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:366:21:366:31 | requestPath | enclosingFunctionBody | req res path req query path fs readFileSync path requestPath pathModule join rootPath path targetPath allowPath requestPath rootPath targetPath rootPath fs readFileSync requestPath targetPath requestPath fs readFileSync requestPath fs readFileSync targetPath allowPath requestPath rootPath requestPath indexOf rootPath 0 |
 | autogenerated/TaintedPath/normalizedPaths.js:366:21:366:31 | requestPath | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:366:21:366:31 | requestPath | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:366:21:366:31 | requestPath | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:366:21:366:31 | requestPath | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:368:19:368:28 | targetPath | CalleeFlexibleAccessPath | fs.readFileSync |
 | autogenerated/TaintedPath/normalizedPaths.js:368:19:368:28 | targetPath | InputArgumentIndex | 0 |
@@ -7861,7 +9600,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:368:19:368:28 | targetPath | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:368:19:368:28 | targetPath | enclosingFunctionBody | req res path req query path fs readFileSync path requestPath pathModule join rootPath path targetPath allowPath requestPath rootPath targetPath rootPath fs readFileSync requestPath targetPath requestPath fs readFileSync requestPath fs readFileSync targetPath allowPath requestPath rootPath requestPath indexOf rootPath 0 |
 | autogenerated/TaintedPath/normalizedPaths.js:368:19:368:28 | targetPath | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:368:19:368:28 | targetPath | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:368:19:368:28 | targetPath | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:368:19:368:28 | targetPath | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:371:32:371:39 | rootPath | CalleeFlexibleAccessPath | requestPath.indexOf |
 | autogenerated/TaintedPath/normalizedPaths.js:371:32:371:39 | rootPath | InputArgumentIndex | 0 |
@@ -7869,50 +9608,217 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:371:32:371:39 | rootPath | contextSurroundingFunctionParameters | (requestPath, rootPath) |
 | autogenerated/TaintedPath/normalizedPaths.js:371:32:371:39 | rootPath | enclosingFunctionBody | req res path req query path fs readFileSync path requestPath pathModule join rootPath path targetPath allowPath requestPath rootPath targetPath rootPath fs readFileSync requestPath targetPath requestPath fs readFileSync requestPath fs readFileSync targetPath allowPath requestPath rootPath requestPath indexOf rootPath 0 |
 | autogenerated/TaintedPath/normalizedPaths.js:371:32:371:39 | rootPath | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:371:32:371:39 | rootPath | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:371:32:371:39 | rootPath | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:371:32:371:39 | rootPath | receiverName | requestPath |
+| autogenerated/TaintedPath/normalizedPaths.js:376:9:376:22 | '/slash-stuff' | CalleeFlexibleAccessPath | app.get |
+| autogenerated/TaintedPath/normalizedPaths.js:376:9:376:22 | '/slash-stuff' | InputArgumentIndex | 0 |
+| autogenerated/TaintedPath/normalizedPaths.js:376:9:376:22 | '/slash-stuff' | calleeImports | express |
+| autogenerated/TaintedPath/normalizedPaths.js:376:9:376:22 | '/slash-stuff' | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
+| autogenerated/TaintedPath/normalizedPaths.js:376:9:376:22 | '/slash-stuff' | contextSurroundingFunctionParameters |  |
+| autogenerated/TaintedPath/normalizedPaths.js:376:9:376:22 | '/slash-stuff' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
+| autogenerated/TaintedPath/normalizedPaths.js:376:9:376:22 | '/slash-stuff' | receiverName | app |
+| autogenerated/TaintedPath/normalizedPaths.js:376:25:382:1 | (req, r ... OT OK\\n} | CalleeFlexibleAccessPath | app.get |
+| autogenerated/TaintedPath/normalizedPaths.js:376:25:382:1 | (req, r ... OT OK\\n} | InputArgumentIndex | 1 |
+| autogenerated/TaintedPath/normalizedPaths.js:376:25:382:1 | (req, r ... OT OK\\n} | calleeImports | express |
+| autogenerated/TaintedPath/normalizedPaths.js:376:25:382:1 | (req, r ... OT OK\\n} | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
+| autogenerated/TaintedPath/normalizedPaths.js:376:25:382:1 | (req, r ... OT OK\\n} | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/TaintedPath/normalizedPaths.js:376:25:382:1 | (req, r ... OT OK\\n} | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
+| autogenerated/TaintedPath/normalizedPaths.js:376:25:382:1 | (req, r ... OT OK\\n} | receiverName | app |
+| autogenerated/TaintedPath/normalizedPaths.js:379:19:379:22 | path | CalleeFlexibleAccessPath | fs.readFileSync |
+| autogenerated/TaintedPath/normalizedPaths.js:379:19:379:22 | path | InputArgumentIndex | 0 |
+| autogenerated/TaintedPath/normalizedPaths.js:379:19:379:22 | path | calleeImports | fs |
+| autogenerated/TaintedPath/normalizedPaths.js:379:19:379:22 | path | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
+| autogenerated/TaintedPath/normalizedPaths.js:379:19:379:22 | path | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/TaintedPath/normalizedPaths.js:379:19:379:22 | path | enclosingFunctionBody | req res path req query path fs readFileSync path fs readFileSync slash path |
+| autogenerated/TaintedPath/normalizedPaths.js:379:19:379:22 | path | enclosingFunctionName | app.get#functionalargument |
+| autogenerated/TaintedPath/normalizedPaths.js:379:19:379:22 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
+| autogenerated/TaintedPath/normalizedPaths.js:379:19:379:22 | path | receiverName | fs |
+| autogenerated/TaintedPath/normalizedPaths.js:381:19:381:29 | slash(path) | CalleeFlexibleAccessPath | fs.readFileSync |
+| autogenerated/TaintedPath/normalizedPaths.js:381:19:381:29 | slash(path) | InputArgumentIndex | 0 |
+| autogenerated/TaintedPath/normalizedPaths.js:381:19:381:29 | slash(path) | calleeImports | fs |
+| autogenerated/TaintedPath/normalizedPaths.js:381:19:381:29 | slash(path) | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
+| autogenerated/TaintedPath/normalizedPaths.js:381:19:381:29 | slash(path) | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/TaintedPath/normalizedPaths.js:381:19:381:29 | slash(path) | enclosingFunctionBody | req res path req query path fs readFileSync path fs readFileSync slash path |
+| autogenerated/TaintedPath/normalizedPaths.js:381:19:381:29 | slash(path) | enclosingFunctionName | app.get#functionalargument |
+| autogenerated/TaintedPath/normalizedPaths.js:381:19:381:29 | slash(path) | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
+| autogenerated/TaintedPath/normalizedPaths.js:381:19:381:29 | slash(path) | receiverName | fs |
+| autogenerated/TaintedPath/normalizedPaths.js:381:25:381:28 | path | CalleeFlexibleAccessPath | slash |
+| autogenerated/TaintedPath/normalizedPaths.js:381:25:381:28 | path | InputArgumentIndex | 0 |
+| autogenerated/TaintedPath/normalizedPaths.js:381:25:381:28 | path | calleeImports | slash |
+| autogenerated/TaintedPath/normalizedPaths.js:381:25:381:28 | path | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
+| autogenerated/TaintedPath/normalizedPaths.js:381:25:381:28 | path | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/TaintedPath/normalizedPaths.js:381:25:381:28 | path | enclosingFunctionBody | req res path req query path fs readFileSync path fs readFileSync slash path |
+| autogenerated/TaintedPath/normalizedPaths.js:381:25:381:28 | path | enclosingFunctionName | app.get#functionalargument |
+| autogenerated/TaintedPath/normalizedPaths.js:381:25:381:28 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
+| autogenerated/TaintedPath/normalizedPaths.js:384:9:384:24 | '/dotdot-regexp' | CalleeFlexibleAccessPath | app.get |
+| autogenerated/TaintedPath/normalizedPaths.js:384:9:384:24 | '/dotdot-regexp' | InputArgumentIndex | 0 |
+| autogenerated/TaintedPath/normalizedPaths.js:384:9:384:24 | '/dotdot-regexp' | calleeImports | express |
+| autogenerated/TaintedPath/normalizedPaths.js:384:9:384:24 | '/dotdot-regexp' | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
+| autogenerated/TaintedPath/normalizedPaths.js:384:9:384:24 | '/dotdot-regexp' | contextSurroundingFunctionParameters |  |
+| autogenerated/TaintedPath/normalizedPaths.js:384:9:384:24 | '/dotdot-regexp' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
+| autogenerated/TaintedPath/normalizedPaths.js:384:9:384:24 | '/dotdot-regexp' | receiverName | app |
+| autogenerated/TaintedPath/normalizedPaths.js:384:27:404:1 | (req, r ... K\\n  }\\n} | CalleeFlexibleAccessPath | app.get |
+| autogenerated/TaintedPath/normalizedPaths.js:384:27:404:1 | (req, r ... K\\n  }\\n} | InputArgumentIndex | 1 |
+| autogenerated/TaintedPath/normalizedPaths.js:384:27:404:1 | (req, r ... K\\n  }\\n} | calleeImports | express |
+| autogenerated/TaintedPath/normalizedPaths.js:384:27:404:1 | (req, r ... K\\n  }\\n} | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
+| autogenerated/TaintedPath/normalizedPaths.js:384:27:404:1 | (req, r ... K\\n  }\\n} | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/TaintedPath/normalizedPaths.js:384:27:404:1 | (req, r ... K\\n  }\\n} | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
+| autogenerated/TaintedPath/normalizedPaths.js:384:27:404:1 | (req, r ... K\\n  }\\n} | receiverName | app |
+| autogenerated/TaintedPath/normalizedPaths.js:385:14:385:46 | pathMod ... uery.x) | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
+| autogenerated/TaintedPath/normalizedPaths.js:385:14:385:46 | pathMod ... uery.x) | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/TaintedPath/normalizedPaths.js:385:14:385:46 | pathMod ... uery.x) | enclosingFunctionBody | req res path pathModule normalize req query x pathModule isAbsolute path fs readFileSync path path match /\\./ fs readFileSync path path match /\\.\\./ fs readFileSync path path match /\\.\\.\\// fs readFileSync path path match /\\.\\.\\/foo/ fs readFileSync path path match /(\\.\\.\\/\|\\.\\.\\\\)/ fs readFileSync path |
+| autogenerated/TaintedPath/normalizedPaths.js:385:14:385:46 | pathMod ... uery.x) | enclosingFunctionName | app.get#functionalargument |
+| autogenerated/TaintedPath/normalizedPaths.js:385:14:385:46 | pathMod ... uery.x) | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
+| autogenerated/TaintedPath/normalizedPaths.js:385:35:385:45 | req.query.x | CalleeFlexibleAccessPath | pathModule.normalize |
+| autogenerated/TaintedPath/normalizedPaths.js:385:35:385:45 | req.query.x | InputArgumentIndex | 0 |
+| autogenerated/TaintedPath/normalizedPaths.js:385:35:385:45 | req.query.x | calleeImports | path |
+| autogenerated/TaintedPath/normalizedPaths.js:385:35:385:45 | req.query.x | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
+| autogenerated/TaintedPath/normalizedPaths.js:385:35:385:45 | req.query.x | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/TaintedPath/normalizedPaths.js:385:35:385:45 | req.query.x | enclosingFunctionBody | req res path pathModule normalize req query x pathModule isAbsolute path fs readFileSync path path match /\\./ fs readFileSync path path match /\\.\\./ fs readFileSync path path match /\\.\\.\\// fs readFileSync path path match /\\.\\.\\/foo/ fs readFileSync path path match /(\\.\\.\\/\|\\.\\.\\\\)/ fs readFileSync path |
+| autogenerated/TaintedPath/normalizedPaths.js:385:35:385:45 | req.query.x | enclosingFunctionName | app.get#functionalargument |
+| autogenerated/TaintedPath/normalizedPaths.js:385:35:385:45 | req.query.x | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
+| autogenerated/TaintedPath/normalizedPaths.js:385:35:385:45 | req.query.x | receiverName | pathModule |
+| autogenerated/TaintedPath/normalizedPaths.js:388:19:388:22 | path | CalleeFlexibleAccessPath | fs.readFileSync |
+| autogenerated/TaintedPath/normalizedPaths.js:388:19:388:22 | path | InputArgumentIndex | 0 |
+| autogenerated/TaintedPath/normalizedPaths.js:388:19:388:22 | path | calleeImports | fs |
+| autogenerated/TaintedPath/normalizedPaths.js:388:19:388:22 | path | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
+| autogenerated/TaintedPath/normalizedPaths.js:388:19:388:22 | path | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/TaintedPath/normalizedPaths.js:388:19:388:22 | path | enclosingFunctionBody | req res path pathModule normalize req query x pathModule isAbsolute path fs readFileSync path path match /\\./ fs readFileSync path path match /\\.\\./ fs readFileSync path path match /\\.\\.\\// fs readFileSync path path match /\\.\\.\\/foo/ fs readFileSync path path match /(\\.\\.\\/\|\\.\\.\\\\)/ fs readFileSync path |
+| autogenerated/TaintedPath/normalizedPaths.js:388:19:388:22 | path | enclosingFunctionName | app.get#functionalargument |
+| autogenerated/TaintedPath/normalizedPaths.js:388:19:388:22 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
+| autogenerated/TaintedPath/normalizedPaths.js:388:19:388:22 | path | receiverName | fs |
+| autogenerated/TaintedPath/normalizedPaths.js:389:19:389:22 | /\\./ | CalleeFlexibleAccessPath | path.match |
+| autogenerated/TaintedPath/normalizedPaths.js:389:19:389:22 | /\\./ | InputArgumentIndex | 0 |
+| autogenerated/TaintedPath/normalizedPaths.js:389:19:389:22 | /\\./ | calleeImports | path |
+| autogenerated/TaintedPath/normalizedPaths.js:389:19:389:22 | /\\./ | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
+| autogenerated/TaintedPath/normalizedPaths.js:389:19:389:22 | /\\./ | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/TaintedPath/normalizedPaths.js:389:19:389:22 | /\\./ | enclosingFunctionBody | req res path pathModule normalize req query x pathModule isAbsolute path fs readFileSync path path match /\\./ fs readFileSync path path match /\\.\\./ fs readFileSync path path match /\\.\\.\\// fs readFileSync path path match /\\.\\.\\/foo/ fs readFileSync path path match /(\\.\\.\\/\|\\.\\.\\\\)/ fs readFileSync path |
+| autogenerated/TaintedPath/normalizedPaths.js:389:19:389:22 | /\\./ | enclosingFunctionName | app.get#functionalargument |
+| autogenerated/TaintedPath/normalizedPaths.js:389:19:389:22 | /\\./ | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
+| autogenerated/TaintedPath/normalizedPaths.js:389:19:389:22 | /\\./ | receiverName | path |
+| autogenerated/TaintedPath/normalizedPaths.js:390:21:390:24 | path | CalleeFlexibleAccessPath | fs.readFileSync |
+| autogenerated/TaintedPath/normalizedPaths.js:390:21:390:24 | path | InputArgumentIndex | 0 |
+| autogenerated/TaintedPath/normalizedPaths.js:390:21:390:24 | path | calleeImports | fs |
+| autogenerated/TaintedPath/normalizedPaths.js:390:21:390:24 | path | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
+| autogenerated/TaintedPath/normalizedPaths.js:390:21:390:24 | path | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/TaintedPath/normalizedPaths.js:390:21:390:24 | path | enclosingFunctionBody | req res path pathModule normalize req query x pathModule isAbsolute path fs readFileSync path path match /\\./ fs readFileSync path path match /\\.\\./ fs readFileSync path path match /\\.\\.\\// fs readFileSync path path match /\\.\\.\\/foo/ fs readFileSync path path match /(\\.\\.\\/\|\\.\\.\\\\)/ fs readFileSync path |
+| autogenerated/TaintedPath/normalizedPaths.js:390:21:390:24 | path | enclosingFunctionName | app.get#functionalargument |
+| autogenerated/TaintedPath/normalizedPaths.js:390:21:390:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
+| autogenerated/TaintedPath/normalizedPaths.js:390:21:390:24 | path | receiverName | fs |
+| autogenerated/TaintedPath/normalizedPaths.js:392:19:392:24 | /\\.\\./ | CalleeFlexibleAccessPath | path.match |
+| autogenerated/TaintedPath/normalizedPaths.js:392:19:392:24 | /\\.\\./ | InputArgumentIndex | 0 |
+| autogenerated/TaintedPath/normalizedPaths.js:392:19:392:24 | /\\.\\./ | calleeImports | path |
+| autogenerated/TaintedPath/normalizedPaths.js:392:19:392:24 | /\\.\\./ | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
+| autogenerated/TaintedPath/normalizedPaths.js:392:19:392:24 | /\\.\\./ | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/TaintedPath/normalizedPaths.js:392:19:392:24 | /\\.\\./ | enclosingFunctionBody | req res path pathModule normalize req query x pathModule isAbsolute path fs readFileSync path path match /\\./ fs readFileSync path path match /\\.\\./ fs readFileSync path path match /\\.\\.\\// fs readFileSync path path match /\\.\\.\\/foo/ fs readFileSync path path match /(\\.\\.\\/\|\\.\\.\\\\)/ fs readFileSync path |
+| autogenerated/TaintedPath/normalizedPaths.js:392:19:392:24 | /\\.\\./ | enclosingFunctionName | app.get#functionalargument |
+| autogenerated/TaintedPath/normalizedPaths.js:392:19:392:24 | /\\.\\./ | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
+| autogenerated/TaintedPath/normalizedPaths.js:392:19:392:24 | /\\.\\./ | receiverName | path |
+| autogenerated/TaintedPath/normalizedPaths.js:393:21:393:24 | path | CalleeFlexibleAccessPath | fs.readFileSync |
+| autogenerated/TaintedPath/normalizedPaths.js:393:21:393:24 | path | InputArgumentIndex | 0 |
+| autogenerated/TaintedPath/normalizedPaths.js:393:21:393:24 | path | calleeImports | fs |
+| autogenerated/TaintedPath/normalizedPaths.js:393:21:393:24 | path | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
+| autogenerated/TaintedPath/normalizedPaths.js:393:21:393:24 | path | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/TaintedPath/normalizedPaths.js:393:21:393:24 | path | enclosingFunctionBody | req res path pathModule normalize req query x pathModule isAbsolute path fs readFileSync path path match /\\./ fs readFileSync path path match /\\.\\./ fs readFileSync path path match /\\.\\.\\// fs readFileSync path path match /\\.\\.\\/foo/ fs readFileSync path path match /(\\.\\.\\/\|\\.\\.\\\\)/ fs readFileSync path |
+| autogenerated/TaintedPath/normalizedPaths.js:393:21:393:24 | path | enclosingFunctionName | app.get#functionalargument |
+| autogenerated/TaintedPath/normalizedPaths.js:393:21:393:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
+| autogenerated/TaintedPath/normalizedPaths.js:393:21:393:24 | path | receiverName | fs |
+| autogenerated/TaintedPath/normalizedPaths.js:395:19:395:26 | /\\.\\.\\// | CalleeFlexibleAccessPath | path.match |
+| autogenerated/TaintedPath/normalizedPaths.js:395:19:395:26 | /\\.\\.\\// | InputArgumentIndex | 0 |
+| autogenerated/TaintedPath/normalizedPaths.js:395:19:395:26 | /\\.\\.\\// | calleeImports | path |
+| autogenerated/TaintedPath/normalizedPaths.js:395:19:395:26 | /\\.\\.\\// | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
+| autogenerated/TaintedPath/normalizedPaths.js:395:19:395:26 | /\\.\\.\\// | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/TaintedPath/normalizedPaths.js:395:19:395:26 | /\\.\\.\\// | enclosingFunctionBody | req res path pathModule normalize req query x pathModule isAbsolute path fs readFileSync path path match /\\./ fs readFileSync path path match /\\.\\./ fs readFileSync path path match /\\.\\.\\// fs readFileSync path path match /\\.\\.\\/foo/ fs readFileSync path path match /(\\.\\.\\/\|\\.\\.\\\\)/ fs readFileSync path |
+| autogenerated/TaintedPath/normalizedPaths.js:395:19:395:26 | /\\.\\.\\// | enclosingFunctionName | app.get#functionalargument |
+| autogenerated/TaintedPath/normalizedPaths.js:395:19:395:26 | /\\.\\.\\// | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
+| autogenerated/TaintedPath/normalizedPaths.js:395:19:395:26 | /\\.\\.\\// | receiverName | path |
+| autogenerated/TaintedPath/normalizedPaths.js:396:21:396:24 | path | CalleeFlexibleAccessPath | fs.readFileSync |
+| autogenerated/TaintedPath/normalizedPaths.js:396:21:396:24 | path | InputArgumentIndex | 0 |
+| autogenerated/TaintedPath/normalizedPaths.js:396:21:396:24 | path | calleeImports | fs |
+| autogenerated/TaintedPath/normalizedPaths.js:396:21:396:24 | path | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
+| autogenerated/TaintedPath/normalizedPaths.js:396:21:396:24 | path | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/TaintedPath/normalizedPaths.js:396:21:396:24 | path | enclosingFunctionBody | req res path pathModule normalize req query x pathModule isAbsolute path fs readFileSync path path match /\\./ fs readFileSync path path match /\\.\\./ fs readFileSync path path match /\\.\\.\\// fs readFileSync path path match /\\.\\.\\/foo/ fs readFileSync path path match /(\\.\\.\\/\|\\.\\.\\\\)/ fs readFileSync path |
+| autogenerated/TaintedPath/normalizedPaths.js:396:21:396:24 | path | enclosingFunctionName | app.get#functionalargument |
+| autogenerated/TaintedPath/normalizedPaths.js:396:21:396:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
+| autogenerated/TaintedPath/normalizedPaths.js:396:21:396:24 | path | receiverName | fs |
+| autogenerated/TaintedPath/normalizedPaths.js:398:19:398:29 | /\\.\\.\\/foo/ | CalleeFlexibleAccessPath | path.match |
+| autogenerated/TaintedPath/normalizedPaths.js:398:19:398:29 | /\\.\\.\\/foo/ | InputArgumentIndex | 0 |
+| autogenerated/TaintedPath/normalizedPaths.js:398:19:398:29 | /\\.\\.\\/foo/ | calleeImports | path |
+| autogenerated/TaintedPath/normalizedPaths.js:398:19:398:29 | /\\.\\.\\/foo/ | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
+| autogenerated/TaintedPath/normalizedPaths.js:398:19:398:29 | /\\.\\.\\/foo/ | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/TaintedPath/normalizedPaths.js:398:19:398:29 | /\\.\\.\\/foo/ | enclosingFunctionBody | req res path pathModule normalize req query x pathModule isAbsolute path fs readFileSync path path match /\\./ fs readFileSync path path match /\\.\\./ fs readFileSync path path match /\\.\\.\\// fs readFileSync path path match /\\.\\.\\/foo/ fs readFileSync path path match /(\\.\\.\\/\|\\.\\.\\\\)/ fs readFileSync path |
+| autogenerated/TaintedPath/normalizedPaths.js:398:19:398:29 | /\\.\\.\\/foo/ | enclosingFunctionName | app.get#functionalargument |
+| autogenerated/TaintedPath/normalizedPaths.js:398:19:398:29 | /\\.\\.\\/foo/ | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
+| autogenerated/TaintedPath/normalizedPaths.js:398:19:398:29 | /\\.\\.\\/foo/ | receiverName | path |
+| autogenerated/TaintedPath/normalizedPaths.js:399:21:399:24 | path | CalleeFlexibleAccessPath | fs.readFileSync |
+| autogenerated/TaintedPath/normalizedPaths.js:399:21:399:24 | path | InputArgumentIndex | 0 |
+| autogenerated/TaintedPath/normalizedPaths.js:399:21:399:24 | path | calleeImports | fs |
+| autogenerated/TaintedPath/normalizedPaths.js:399:21:399:24 | path | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
+| autogenerated/TaintedPath/normalizedPaths.js:399:21:399:24 | path | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/TaintedPath/normalizedPaths.js:399:21:399:24 | path | enclosingFunctionBody | req res path pathModule normalize req query x pathModule isAbsolute path fs readFileSync path path match /\\./ fs readFileSync path path match /\\.\\./ fs readFileSync path path match /\\.\\.\\// fs readFileSync path path match /\\.\\.\\/foo/ fs readFileSync path path match /(\\.\\.\\/\|\\.\\.\\\\)/ fs readFileSync path |
+| autogenerated/TaintedPath/normalizedPaths.js:399:21:399:24 | path | enclosingFunctionName | app.get#functionalargument |
+| autogenerated/TaintedPath/normalizedPaths.js:399:21:399:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
+| autogenerated/TaintedPath/normalizedPaths.js:399:21:399:24 | path | receiverName | fs |
+| autogenerated/TaintedPath/normalizedPaths.js:401:19:401:35 | /(\\.\\.\\/\|\\.\\.\\\\)/ | CalleeFlexibleAccessPath | path.match |
+| autogenerated/TaintedPath/normalizedPaths.js:401:19:401:35 | /(\\.\\.\\/\|\\.\\.\\\\)/ | InputArgumentIndex | 0 |
+| autogenerated/TaintedPath/normalizedPaths.js:401:19:401:35 | /(\\.\\.\\/\|\\.\\.\\\\)/ | calleeImports | path |
+| autogenerated/TaintedPath/normalizedPaths.js:401:19:401:35 | /(\\.\\.\\/\|\\.\\.\\\\)/ | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
+| autogenerated/TaintedPath/normalizedPaths.js:401:19:401:35 | /(\\.\\.\\/\|\\.\\.\\\\)/ | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/TaintedPath/normalizedPaths.js:401:19:401:35 | /(\\.\\.\\/\|\\.\\.\\\\)/ | enclosingFunctionBody | req res path pathModule normalize req query x pathModule isAbsolute path fs readFileSync path path match /\\./ fs readFileSync path path match /\\.\\./ fs readFileSync path path match /\\.\\.\\// fs readFileSync path path match /\\.\\.\\/foo/ fs readFileSync path path match /(\\.\\.\\/\|\\.\\.\\\\)/ fs readFileSync path |
+| autogenerated/TaintedPath/normalizedPaths.js:401:19:401:35 | /(\\.\\.\\/\|\\.\\.\\\\)/ | enclosingFunctionName | app.get#functionalargument |
+| autogenerated/TaintedPath/normalizedPaths.js:401:19:401:35 | /(\\.\\.\\/\|\\.\\.\\\\)/ | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
+| autogenerated/TaintedPath/normalizedPaths.js:401:19:401:35 | /(\\.\\.\\/\|\\.\\.\\\\)/ | receiverName | path |
+| autogenerated/TaintedPath/normalizedPaths.js:402:21:402:24 | path | CalleeFlexibleAccessPath | fs.readFileSync |
+| autogenerated/TaintedPath/normalizedPaths.js:402:21:402:24 | path | InputArgumentIndex | 0 |
+| autogenerated/TaintedPath/normalizedPaths.js:402:21:402:24 | path | calleeImports | fs |
+| autogenerated/TaintedPath/normalizedPaths.js:402:21:402:24 | path | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
+| autogenerated/TaintedPath/normalizedPaths.js:402:21:402:24 | path | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/TaintedPath/normalizedPaths.js:402:21:402:24 | path | enclosingFunctionBody | req res path pathModule normalize req query x pathModule isAbsolute path fs readFileSync path path match /\\./ fs readFileSync path path match /\\.\\./ fs readFileSync path path match /\\.\\.\\// fs readFileSync path path match /\\.\\.\\/foo/ fs readFileSync path path match /(\\.\\.\\/\|\\.\\.\\\\)/ fs readFileSync path |
+| autogenerated/TaintedPath/normalizedPaths.js:402:21:402:24 | path | enclosingFunctionName | app.get#functionalargument |
+| autogenerated/TaintedPath/normalizedPaths.js:402:21:402:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
+| autogenerated/TaintedPath/normalizedPaths.js:402:21:402:24 | path | receiverName | fs |
 | autogenerated/TaintedPath/other-fs-libraries.js:1:20:1:25 | "http" | CalleeFlexibleAccessPath | require |
 | autogenerated/TaintedPath/other-fs-libraries.js:1:20:1:25 | "http" | InputArgumentIndex | 0 |
 | autogenerated/TaintedPath/other-fs-libraries.js:1:20:1:25 | "http" | calleeImports |  |
 | autogenerated/TaintedPath/other-fs-libraries.js:1:20:1:25 | "http" | contextFunctionInterfaces | getFsModule(special) |
 | autogenerated/TaintedPath/other-fs-libraries.js:1:20:1:25 | "http" | contextSurroundingFunctionParameters |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:1:20:1:25 | "http" | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http original-fs url util |
+| autogenerated/TaintedPath/other-fs-libraries.js:1:20:1:25 | "http" | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http mkdirp original-fs pify read-pkg thenify url util util.promisify |
 | autogenerated/TaintedPath/other-fs-libraries.js:2:17:2:21 | "url" | CalleeFlexibleAccessPath | require |
 | autogenerated/TaintedPath/other-fs-libraries.js:2:17:2:21 | "url" | InputArgumentIndex | 0 |
 | autogenerated/TaintedPath/other-fs-libraries.js:2:17:2:21 | "url" | calleeImports |  |
 | autogenerated/TaintedPath/other-fs-libraries.js:2:17:2:21 | "url" | contextFunctionInterfaces | getFsModule(special) |
 | autogenerated/TaintedPath/other-fs-libraries.js:2:17:2:21 | "url" | contextSurroundingFunctionParameters |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:2:17:2:21 | "url" | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http original-fs url util |
+| autogenerated/TaintedPath/other-fs-libraries.js:2:17:2:21 | "url" | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http mkdirp original-fs pify read-pkg thenify url util util.promisify |
 | autogenerated/TaintedPath/other-fs-libraries.js:3:16:3:19 | "fs" | CalleeFlexibleAccessPath | require |
 | autogenerated/TaintedPath/other-fs-libraries.js:3:16:3:19 | "fs" | InputArgumentIndex | 0 |
 | autogenerated/TaintedPath/other-fs-libraries.js:3:16:3:19 | "fs" | calleeImports |  |
 | autogenerated/TaintedPath/other-fs-libraries.js:3:16:3:19 | "fs" | contextFunctionInterfaces | getFsModule(special) |
 | autogenerated/TaintedPath/other-fs-libraries.js:3:16:3:19 | "fs" | contextSurroundingFunctionParameters |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:3:16:3:19 | "fs" | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http original-fs url util |
+| autogenerated/TaintedPath/other-fs-libraries.js:3:16:3:19 | "fs" | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http mkdirp original-fs pify read-pkg thenify url util util.promisify |
 | autogenerated/TaintedPath/other-fs-libraries.js:4:24:4:36 | "graceful-fs" | CalleeFlexibleAccessPath | require |
 | autogenerated/TaintedPath/other-fs-libraries.js:4:24:4:36 | "graceful-fs" | InputArgumentIndex | 0 |
 | autogenerated/TaintedPath/other-fs-libraries.js:4:24:4:36 | "graceful-fs" | calleeImports |  |
 | autogenerated/TaintedPath/other-fs-libraries.js:4:24:4:36 | "graceful-fs" | contextFunctionInterfaces | getFsModule(special) |
 | autogenerated/TaintedPath/other-fs-libraries.js:4:24:4:36 | "graceful-fs" | contextSurroundingFunctionParameters |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:4:24:4:36 | "graceful-fs" | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http original-fs url util |
+| autogenerated/TaintedPath/other-fs-libraries.js:4:24:4:36 | "graceful-fs" | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http mkdirp original-fs pify read-pkg thenify url util util.promisify |
 | autogenerated/TaintedPath/other-fs-libraries.js:5:21:5:30 | "fs-extra" | CalleeFlexibleAccessPath | require |
 | autogenerated/TaintedPath/other-fs-libraries.js:5:21:5:30 | "fs-extra" | InputArgumentIndex | 0 |
 | autogenerated/TaintedPath/other-fs-libraries.js:5:21:5:30 | "fs-extra" | calleeImports |  |
 | autogenerated/TaintedPath/other-fs-libraries.js:5:21:5:30 | "fs-extra" | contextFunctionInterfaces | getFsModule(special) |
 | autogenerated/TaintedPath/other-fs-libraries.js:5:21:5:30 | "fs-extra" | contextSurroundingFunctionParameters |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:5:21:5:30 | "fs-extra" | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http original-fs url util |
+| autogenerated/TaintedPath/other-fs-libraries.js:5:21:5:30 | "fs-extra" | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http mkdirp original-fs pify read-pkg thenify url util util.promisify |
 | autogenerated/TaintedPath/other-fs-libraries.js:6:24:6:36 | "original-fs" | CalleeFlexibleAccessPath | require |
 | autogenerated/TaintedPath/other-fs-libraries.js:6:24:6:36 | "original-fs" | InputArgumentIndex | 0 |
 | autogenerated/TaintedPath/other-fs-libraries.js:6:24:6:36 | "original-fs" | calleeImports |  |
 | autogenerated/TaintedPath/other-fs-libraries.js:6:24:6:36 | "original-fs" | contextFunctionInterfaces | getFsModule(special) |
 | autogenerated/TaintedPath/other-fs-libraries.js:6:24:6:36 | "original-fs" | contextSurroundingFunctionParameters |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:6:24:6:36 | "original-fs" | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http original-fs url util |
+| autogenerated/TaintedPath/other-fs-libraries.js:6:24:6:36 | "original-fs" | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http mkdirp original-fs pify read-pkg thenify url util util.promisify |
 | autogenerated/TaintedPath/other-fs-libraries.js:8:32:25:1 | functio ... OT OK\\n} | CalleeFlexibleAccessPath | http.createServer |
 | autogenerated/TaintedPath/other-fs-libraries.js:8:32:25:1 | functio ... OT OK\\n} | InputArgumentIndex | 0 |
 | autogenerated/TaintedPath/other-fs-libraries.js:8:32:25:1 | functio ... OT OK\\n} | calleeImports | http |
 | autogenerated/TaintedPath/other-fs-libraries.js:8:32:25:1 | functio ... OT OK\\n} | contextFunctionInterfaces | getFsModule(special) |
 | autogenerated/TaintedPath/other-fs-libraries.js:8:32:25:1 | functio ... OT OK\\n} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/other-fs-libraries.js:8:32:25:1 | functio ... OT OK\\n} | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http original-fs url util |
+| autogenerated/TaintedPath/other-fs-libraries.js:8:32:25:1 | functio ... OT OK\\n} | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http mkdirp original-fs pify read-pkg thenify url util util.promisify |
 | autogenerated/TaintedPath/other-fs-libraries.js:8:32:25:1 | functio ... OT OK\\n} | receiverName | http |
 | autogenerated/TaintedPath/other-fs-libraries.js:9:24:9:30 | req.url | CalleeFlexibleAccessPath | url.parse |
 | autogenerated/TaintedPath/other-fs-libraries.js:9:24:9:30 | req.url | InputArgumentIndex | 0 |
@@ -7921,7 +9827,7 @@ tokenFeatures
 | autogenerated/TaintedPath/other-fs-libraries.js:9:24:9:30 | req.url | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/other-fs-libraries.js:9:24:9:30 | req.url | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path gracefulFs readFileSync path fsExtra readFileSync path originalFs readFileSync path getFsModule true readFileSync path getFsModule false readFileSync path require ./my-fs-module require true readFileSync path flexibleModuleName require process electron versions electron original-fs fs flexibleModuleName readFileSync path |
 | autogenerated/TaintedPath/other-fs-libraries.js:9:24:9:30 | req.url | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/other-fs-libraries.js:9:24:9:30 | req.url | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http original-fs url util |
+| autogenerated/TaintedPath/other-fs-libraries.js:9:24:9:30 | req.url | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http mkdirp original-fs pify read-pkg thenify url util util.promisify |
 | autogenerated/TaintedPath/other-fs-libraries.js:9:24:9:30 | req.url | receiverName | url |
 | autogenerated/TaintedPath/other-fs-libraries.js:9:33:9:36 | true | CalleeFlexibleAccessPath | url.parse |
 | autogenerated/TaintedPath/other-fs-libraries.js:9:33:9:36 | true | InputArgumentIndex | 1 |
@@ -7930,7 +9836,7 @@ tokenFeatures
 | autogenerated/TaintedPath/other-fs-libraries.js:9:33:9:36 | true | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/other-fs-libraries.js:9:33:9:36 | true | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path gracefulFs readFileSync path fsExtra readFileSync path originalFs readFileSync path getFsModule true readFileSync path getFsModule false readFileSync path require ./my-fs-module require true readFileSync path flexibleModuleName require process electron versions electron original-fs fs flexibleModuleName readFileSync path |
 | autogenerated/TaintedPath/other-fs-libraries.js:9:33:9:36 | true | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/other-fs-libraries.js:9:33:9:36 | true | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http original-fs url util |
+| autogenerated/TaintedPath/other-fs-libraries.js:9:33:9:36 | true | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http mkdirp original-fs pify read-pkg thenify url util util.promisify |
 | autogenerated/TaintedPath/other-fs-libraries.js:9:33:9:36 | true | receiverName | url |
 | autogenerated/TaintedPath/other-fs-libraries.js:11:19:11:22 | path | CalleeFlexibleAccessPath | fs.readFileSync |
 | autogenerated/TaintedPath/other-fs-libraries.js:11:19:11:22 | path | InputArgumentIndex | 0 |
@@ -7939,7 +9845,7 @@ tokenFeatures
 | autogenerated/TaintedPath/other-fs-libraries.js:11:19:11:22 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/other-fs-libraries.js:11:19:11:22 | path | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path gracefulFs readFileSync path fsExtra readFileSync path originalFs readFileSync path getFsModule true readFileSync path getFsModule false readFileSync path require ./my-fs-module require true readFileSync path flexibleModuleName require process electron versions electron original-fs fs flexibleModuleName readFileSync path |
 | autogenerated/TaintedPath/other-fs-libraries.js:11:19:11:22 | path | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/other-fs-libraries.js:11:19:11:22 | path | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http original-fs url util |
+| autogenerated/TaintedPath/other-fs-libraries.js:11:19:11:22 | path | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http mkdirp original-fs pify read-pkg thenify url util util.promisify |
 | autogenerated/TaintedPath/other-fs-libraries.js:11:19:11:22 | path | receiverName | fs |
 | autogenerated/TaintedPath/other-fs-libraries.js:12:27:12:30 | path | CalleeFlexibleAccessPath | gracefulFs.readFileSync |
 | autogenerated/TaintedPath/other-fs-libraries.js:12:27:12:30 | path | InputArgumentIndex | 0 |
@@ -7948,7 +9854,7 @@ tokenFeatures
 | autogenerated/TaintedPath/other-fs-libraries.js:12:27:12:30 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/other-fs-libraries.js:12:27:12:30 | path | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path gracefulFs readFileSync path fsExtra readFileSync path originalFs readFileSync path getFsModule true readFileSync path getFsModule false readFileSync path require ./my-fs-module require true readFileSync path flexibleModuleName require process electron versions electron original-fs fs flexibleModuleName readFileSync path |
 | autogenerated/TaintedPath/other-fs-libraries.js:12:27:12:30 | path | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/other-fs-libraries.js:12:27:12:30 | path | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http original-fs url util |
+| autogenerated/TaintedPath/other-fs-libraries.js:12:27:12:30 | path | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http mkdirp original-fs pify read-pkg thenify url util util.promisify |
 | autogenerated/TaintedPath/other-fs-libraries.js:12:27:12:30 | path | receiverName | gracefulFs |
 | autogenerated/TaintedPath/other-fs-libraries.js:13:24:13:27 | path | CalleeFlexibleAccessPath | fsExtra.readFileSync |
 | autogenerated/TaintedPath/other-fs-libraries.js:13:24:13:27 | path | InputArgumentIndex | 0 |
@@ -7957,7 +9863,7 @@ tokenFeatures
 | autogenerated/TaintedPath/other-fs-libraries.js:13:24:13:27 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/other-fs-libraries.js:13:24:13:27 | path | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path gracefulFs readFileSync path fsExtra readFileSync path originalFs readFileSync path getFsModule true readFileSync path getFsModule false readFileSync path require ./my-fs-module require true readFileSync path flexibleModuleName require process electron versions electron original-fs fs flexibleModuleName readFileSync path |
 | autogenerated/TaintedPath/other-fs-libraries.js:13:24:13:27 | path | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/other-fs-libraries.js:13:24:13:27 | path | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http original-fs url util |
+| autogenerated/TaintedPath/other-fs-libraries.js:13:24:13:27 | path | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http mkdirp original-fs pify read-pkg thenify url util util.promisify |
 | autogenerated/TaintedPath/other-fs-libraries.js:13:24:13:27 | path | receiverName | fsExtra |
 | autogenerated/TaintedPath/other-fs-libraries.js:14:27:14:30 | path | CalleeFlexibleAccessPath | originalFs.readFileSync |
 | autogenerated/TaintedPath/other-fs-libraries.js:14:27:14:30 | path | InputArgumentIndex | 0 |
@@ -7966,7 +9872,7 @@ tokenFeatures
 | autogenerated/TaintedPath/other-fs-libraries.js:14:27:14:30 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/other-fs-libraries.js:14:27:14:30 | path | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path gracefulFs readFileSync path fsExtra readFileSync path originalFs readFileSync path getFsModule true readFileSync path getFsModule false readFileSync path require ./my-fs-module require true readFileSync path flexibleModuleName require process electron versions electron original-fs fs flexibleModuleName readFileSync path |
 | autogenerated/TaintedPath/other-fs-libraries.js:14:27:14:30 | path | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/other-fs-libraries.js:14:27:14:30 | path | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http original-fs url util |
+| autogenerated/TaintedPath/other-fs-libraries.js:14:27:14:30 | path | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http mkdirp original-fs pify read-pkg thenify url util util.promisify |
 | autogenerated/TaintedPath/other-fs-libraries.js:14:27:14:30 | path | receiverName | originalFs |
 | autogenerated/TaintedPath/other-fs-libraries.js:16:34:16:37 | path | CalleeFlexibleAccessPath | getFsModule().readFileSync |
 | autogenerated/TaintedPath/other-fs-libraries.js:16:34:16:37 | path | InputArgumentIndex | 0 |
@@ -7974,14 +9880,14 @@ tokenFeatures
 | autogenerated/TaintedPath/other-fs-libraries.js:16:34:16:37 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/other-fs-libraries.js:16:34:16:37 | path | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path gracefulFs readFileSync path fsExtra readFileSync path originalFs readFileSync path getFsModule true readFileSync path getFsModule false readFileSync path require ./my-fs-module require true readFileSync path flexibleModuleName require process electron versions electron original-fs fs flexibleModuleName readFileSync path |
 | autogenerated/TaintedPath/other-fs-libraries.js:16:34:16:37 | path | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/other-fs-libraries.js:16:34:16:37 | path | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http original-fs url util |
+| autogenerated/TaintedPath/other-fs-libraries.js:16:34:16:37 | path | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http mkdirp original-fs pify read-pkg thenify url util util.promisify |
 | autogenerated/TaintedPath/other-fs-libraries.js:17:35:17:38 | path | CalleeFlexibleAccessPath | getFsModule().readFileSync |
 | autogenerated/TaintedPath/other-fs-libraries.js:17:35:17:38 | path | InputArgumentIndex | 0 |
 | autogenerated/TaintedPath/other-fs-libraries.js:17:35:17:38 | path | contextFunctionInterfaces | getFsModule(special) |
 | autogenerated/TaintedPath/other-fs-libraries.js:17:35:17:38 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/other-fs-libraries.js:17:35:17:38 | path | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path gracefulFs readFileSync path fsExtra readFileSync path originalFs readFileSync path getFsModule true readFileSync path getFsModule false readFileSync path require ./my-fs-module require true readFileSync path flexibleModuleName require process electron versions electron original-fs fs flexibleModuleName readFileSync path |
 | autogenerated/TaintedPath/other-fs-libraries.js:17:35:17:38 | path | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/other-fs-libraries.js:17:35:17:38 | path | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http original-fs url util |
+| autogenerated/TaintedPath/other-fs-libraries.js:17:35:17:38 | path | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http mkdirp original-fs pify read-pkg thenify url util util.promisify |
 | autogenerated/TaintedPath/other-fs-libraries.js:19:11:19:26 | "./my-fs-module" | CalleeFlexibleAccessPath | require |
 | autogenerated/TaintedPath/other-fs-libraries.js:19:11:19:26 | "./my-fs-module" | InputArgumentIndex | 0 |
 | autogenerated/TaintedPath/other-fs-libraries.js:19:11:19:26 | "./my-fs-module" | calleeImports |  |
@@ -7989,7 +9895,7 @@ tokenFeatures
 | autogenerated/TaintedPath/other-fs-libraries.js:19:11:19:26 | "./my-fs-module" | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/other-fs-libraries.js:19:11:19:26 | "./my-fs-module" | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path gracefulFs readFileSync path fsExtra readFileSync path originalFs readFileSync path getFsModule true readFileSync path getFsModule false readFileSync path require ./my-fs-module require true readFileSync path flexibleModuleName require process electron versions electron original-fs fs flexibleModuleName readFileSync path |
 | autogenerated/TaintedPath/other-fs-libraries.js:19:11:19:26 | "./my-fs-module" | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/other-fs-libraries.js:19:11:19:26 | "./my-fs-module" | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http original-fs url util |
+| autogenerated/TaintedPath/other-fs-libraries.js:19:11:19:26 | "./my-fs-module" | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http mkdirp original-fs pify read-pkg thenify url util util.promisify |
 | autogenerated/TaintedPath/other-fs-libraries.js:19:56:19:59 | path | CalleeFlexibleAccessPath | import("p").require().readFileSync |
 | autogenerated/TaintedPath/other-fs-libraries.js:19:56:19:59 | path | InputArgumentIndex | 0 |
 | autogenerated/TaintedPath/other-fs-libraries.js:19:56:19:59 | path | calleeImports | ./my-fs-module |
@@ -7997,7 +9903,7 @@ tokenFeatures
 | autogenerated/TaintedPath/other-fs-libraries.js:19:56:19:59 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/other-fs-libraries.js:19:56:19:59 | path | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path gracefulFs readFileSync path fsExtra readFileSync path originalFs readFileSync path getFsModule true readFileSync path getFsModule false readFileSync path require ./my-fs-module require true readFileSync path flexibleModuleName require process electron versions electron original-fs fs flexibleModuleName readFileSync path |
 | autogenerated/TaintedPath/other-fs-libraries.js:19:56:19:59 | path | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/other-fs-libraries.js:19:56:19:59 | path | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http original-fs url util |
+| autogenerated/TaintedPath/other-fs-libraries.js:19:56:19:59 | path | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http mkdirp original-fs pify read-pkg thenify url util util.promisify |
 | autogenerated/TaintedPath/other-fs-libraries.js:21:36:23:10 | process ...  : "fs" | CalleeFlexibleAccessPath | require |
 | autogenerated/TaintedPath/other-fs-libraries.js:21:36:23:10 | process ...  : "fs" | InputArgumentIndex | 0 |
 | autogenerated/TaintedPath/other-fs-libraries.js:21:36:23:10 | process ...  : "fs" | calleeImports |  |
@@ -8005,7 +9911,7 @@ tokenFeatures
 | autogenerated/TaintedPath/other-fs-libraries.js:21:36:23:10 | process ...  : "fs" | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/other-fs-libraries.js:21:36:23:10 | process ...  : "fs" | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path gracefulFs readFileSync path fsExtra readFileSync path originalFs readFileSync path getFsModule true readFileSync path getFsModule false readFileSync path require ./my-fs-module require true readFileSync path flexibleModuleName require process electron versions electron original-fs fs flexibleModuleName readFileSync path |
 | autogenerated/TaintedPath/other-fs-libraries.js:21:36:23:10 | process ...  : "fs" | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/other-fs-libraries.js:21:36:23:10 | process ...  : "fs" | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http original-fs url util |
+| autogenerated/TaintedPath/other-fs-libraries.js:21:36:23:10 | process ...  : "fs" | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http mkdirp original-fs pify read-pkg thenify url util util.promisify |
 | autogenerated/TaintedPath/other-fs-libraries.js:24:35:24:38 | path | CalleeFlexibleAccessPath | flexibleModuleName.readFileSync |
 | autogenerated/TaintedPath/other-fs-libraries.js:24:35:24:38 | path | InputArgumentIndex | 0 |
 | autogenerated/TaintedPath/other-fs-libraries.js:24:35:24:38 | path | calleeImports |  |
@@ -8013,7 +9919,7 @@ tokenFeatures
 | autogenerated/TaintedPath/other-fs-libraries.js:24:35:24:38 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/other-fs-libraries.js:24:35:24:38 | path | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path gracefulFs readFileSync path fsExtra readFileSync path originalFs readFileSync path getFsModule true readFileSync path getFsModule false readFileSync path require ./my-fs-module require true readFileSync path flexibleModuleName require process electron versions electron original-fs fs flexibleModuleName readFileSync path |
 | autogenerated/TaintedPath/other-fs-libraries.js:24:35:24:38 | path | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/other-fs-libraries.js:24:35:24:38 | path | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http original-fs url util |
+| autogenerated/TaintedPath/other-fs-libraries.js:24:35:24:38 | path | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http mkdirp original-fs pify read-pkg thenify url util util.promisify |
 | autogenerated/TaintedPath/other-fs-libraries.js:24:35:24:38 | path | receiverName | flexibleModuleName |
 | autogenerated/TaintedPath/other-fs-libraries.js:29:20:29:23 | "fs" | CalleeFlexibleAccessPath | require |
 | autogenerated/TaintedPath/other-fs-libraries.js:29:20:29:23 | "fs" | InputArgumentIndex | 0 |
@@ -8022,7 +9928,7 @@ tokenFeatures
 | autogenerated/TaintedPath/other-fs-libraries.js:29:20:29:23 | "fs" | contextSurroundingFunctionParameters | (special) |
 | autogenerated/TaintedPath/other-fs-libraries.js:29:20:29:23 | "fs" | enclosingFunctionBody | special special require fs require original-fs |
 | autogenerated/TaintedPath/other-fs-libraries.js:29:20:29:23 | "fs" | enclosingFunctionName | getFsModule |
-| autogenerated/TaintedPath/other-fs-libraries.js:29:20:29:23 | "fs" | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http original-fs url util |
+| autogenerated/TaintedPath/other-fs-libraries.js:29:20:29:23 | "fs" | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http mkdirp original-fs pify read-pkg thenify url util util.promisify |
 | autogenerated/TaintedPath/other-fs-libraries.js:31:20:31:32 | "original-fs" | CalleeFlexibleAccessPath | require |
 | autogenerated/TaintedPath/other-fs-libraries.js:31:20:31:32 | "original-fs" | InputArgumentIndex | 0 |
 | autogenerated/TaintedPath/other-fs-libraries.js:31:20:31:32 | "original-fs" | calleeImports |  |
@@ -8030,19 +9936,19 @@ tokenFeatures
 | autogenerated/TaintedPath/other-fs-libraries.js:31:20:31:32 | "original-fs" | contextSurroundingFunctionParameters | (special) |
 | autogenerated/TaintedPath/other-fs-libraries.js:31:20:31:32 | "original-fs" | enclosingFunctionBody | special special require fs require original-fs |
 | autogenerated/TaintedPath/other-fs-libraries.js:31:20:31:32 | "original-fs" | enclosingFunctionName | getFsModule |
-| autogenerated/TaintedPath/other-fs-libraries.js:31:20:31:32 | "original-fs" | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http original-fs url util |
+| autogenerated/TaintedPath/other-fs-libraries.js:31:20:31:32 | "original-fs" | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http mkdirp original-fs pify read-pkg thenify url util util.promisify |
 | autogenerated/TaintedPath/other-fs-libraries.js:35:20:35:25 | "util" | CalleeFlexibleAccessPath | require |
 | autogenerated/TaintedPath/other-fs-libraries.js:35:20:35:25 | "util" | InputArgumentIndex | 0 |
 | autogenerated/TaintedPath/other-fs-libraries.js:35:20:35:25 | "util" | calleeImports |  |
 | autogenerated/TaintedPath/other-fs-libraries.js:35:20:35:25 | "util" | contextFunctionInterfaces | getFsModule(special) |
 | autogenerated/TaintedPath/other-fs-libraries.js:35:20:35:25 | "util" | contextSurroundingFunctionParameters |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:35:20:35:25 | "util" | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http original-fs url util |
+| autogenerated/TaintedPath/other-fs-libraries.js:35:20:35:25 | "util" | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http mkdirp original-fs pify read-pkg thenify url util util.promisify |
 | autogenerated/TaintedPath/other-fs-libraries.js:37:19:43:1 | functio ... OT OK\\n} | CalleeFlexibleAccessPath | http.createServer |
 | autogenerated/TaintedPath/other-fs-libraries.js:37:19:43:1 | functio ... OT OK\\n} | InputArgumentIndex | 0 |
 | autogenerated/TaintedPath/other-fs-libraries.js:37:19:43:1 | functio ... OT OK\\n} | calleeImports | http |
 | autogenerated/TaintedPath/other-fs-libraries.js:37:19:43:1 | functio ... OT OK\\n} | contextFunctionInterfaces | getFsModule(special) |
 | autogenerated/TaintedPath/other-fs-libraries.js:37:19:43:1 | functio ... OT OK\\n} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/other-fs-libraries.js:37:19:43:1 | functio ... OT OK\\n} | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http original-fs url util |
+| autogenerated/TaintedPath/other-fs-libraries.js:37:19:43:1 | functio ... OT OK\\n} | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http mkdirp original-fs pify read-pkg thenify url util util.promisify |
 | autogenerated/TaintedPath/other-fs-libraries.js:37:19:43:1 | functio ... OT OK\\n} | receiverName | http |
 | autogenerated/TaintedPath/other-fs-libraries.js:38:24:38:30 | req.url | CalleeFlexibleAccessPath | url.parse |
 | autogenerated/TaintedPath/other-fs-libraries.js:38:24:38:30 | req.url | InputArgumentIndex | 0 |
@@ -8051,7 +9957,7 @@ tokenFeatures
 | autogenerated/TaintedPath/other-fs-libraries.js:38:24:38:30 | req.url | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/other-fs-libraries.js:38:24:38:30 | req.url | enclosingFunctionBody | req res path url parse req url true query path util promisify fs readFileSync path require bluebird promisify fs readFileSync path require bluebird promisifyAll fs readFileSync path |
 | autogenerated/TaintedPath/other-fs-libraries.js:38:24:38:30 | req.url | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/other-fs-libraries.js:38:24:38:30 | req.url | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http original-fs url util |
+| autogenerated/TaintedPath/other-fs-libraries.js:38:24:38:30 | req.url | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http mkdirp original-fs pify read-pkg thenify url util util.promisify |
 | autogenerated/TaintedPath/other-fs-libraries.js:38:24:38:30 | req.url | receiverName | url |
 | autogenerated/TaintedPath/other-fs-libraries.js:38:33:38:36 | true | CalleeFlexibleAccessPath | url.parse |
 | autogenerated/TaintedPath/other-fs-libraries.js:38:33:38:36 | true | InputArgumentIndex | 1 |
@@ -8060,7 +9966,7 @@ tokenFeatures
 | autogenerated/TaintedPath/other-fs-libraries.js:38:33:38:36 | true | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/other-fs-libraries.js:38:33:38:36 | true | enclosingFunctionBody | req res path url parse req url true query path util promisify fs readFileSync path require bluebird promisify fs readFileSync path require bluebird promisifyAll fs readFileSync path |
 | autogenerated/TaintedPath/other-fs-libraries.js:38:33:38:36 | true | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/other-fs-libraries.js:38:33:38:36 | true | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http original-fs url util |
+| autogenerated/TaintedPath/other-fs-libraries.js:38:33:38:36 | true | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http mkdirp original-fs pify read-pkg thenify url util util.promisify |
 | autogenerated/TaintedPath/other-fs-libraries.js:38:33:38:36 | true | receiverName | url |
 | autogenerated/TaintedPath/other-fs-libraries.js:40:18:40:32 | fs.readFileSync | CalleeFlexibleAccessPath | util.promisify |
 | autogenerated/TaintedPath/other-fs-libraries.js:40:18:40:32 | fs.readFileSync | InputArgumentIndex | 0 |
@@ -8069,7 +9975,7 @@ tokenFeatures
 | autogenerated/TaintedPath/other-fs-libraries.js:40:18:40:32 | fs.readFileSync | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/other-fs-libraries.js:40:18:40:32 | fs.readFileSync | enclosingFunctionBody | req res path url parse req url true query path util promisify fs readFileSync path require bluebird promisify fs readFileSync path require bluebird promisifyAll fs readFileSync path |
 | autogenerated/TaintedPath/other-fs-libraries.js:40:18:40:32 | fs.readFileSync | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/other-fs-libraries.js:40:18:40:32 | fs.readFileSync | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http original-fs url util |
+| autogenerated/TaintedPath/other-fs-libraries.js:40:18:40:32 | fs.readFileSync | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http mkdirp original-fs pify read-pkg thenify url util util.promisify |
 | autogenerated/TaintedPath/other-fs-libraries.js:40:18:40:32 | fs.readFileSync | receiverName | util |
 | autogenerated/TaintedPath/other-fs-libraries.js:40:35:40:38 | path | CalleeFlexibleAccessPath | util.promisify() |
 | autogenerated/TaintedPath/other-fs-libraries.js:40:35:40:38 | path | InputArgumentIndex | 0 |
@@ -8078,7 +9984,7 @@ tokenFeatures
 | autogenerated/TaintedPath/other-fs-libraries.js:40:35:40:38 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/other-fs-libraries.js:40:35:40:38 | path | enclosingFunctionBody | req res path url parse req url true query path util promisify fs readFileSync path require bluebird promisify fs readFileSync path require bluebird promisifyAll fs readFileSync path |
 | autogenerated/TaintedPath/other-fs-libraries.js:40:35:40:38 | path | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/other-fs-libraries.js:40:35:40:38 | path | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http original-fs url util |
+| autogenerated/TaintedPath/other-fs-libraries.js:40:35:40:38 | path | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http mkdirp original-fs pify read-pkg thenify url util util.promisify |
 | autogenerated/TaintedPath/other-fs-libraries.js:41:11:41:20 | "bluebird" | CalleeFlexibleAccessPath | require |
 | autogenerated/TaintedPath/other-fs-libraries.js:41:11:41:20 | "bluebird" | InputArgumentIndex | 0 |
 | autogenerated/TaintedPath/other-fs-libraries.js:41:11:41:20 | "bluebird" | calleeImports |  |
@@ -8086,7 +9992,7 @@ tokenFeatures
 | autogenerated/TaintedPath/other-fs-libraries.js:41:11:41:20 | "bluebird" | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/other-fs-libraries.js:41:11:41:20 | "bluebird" | enclosingFunctionBody | req res path url parse req url true query path util promisify fs readFileSync path require bluebird promisify fs readFileSync path require bluebird promisifyAll fs readFileSync path |
 | autogenerated/TaintedPath/other-fs-libraries.js:41:11:41:20 | "bluebird" | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/other-fs-libraries.js:41:11:41:20 | "bluebird" | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http original-fs url util |
+| autogenerated/TaintedPath/other-fs-libraries.js:41:11:41:20 | "bluebird" | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http mkdirp original-fs pify read-pkg thenify url util util.promisify |
 | autogenerated/TaintedPath/other-fs-libraries.js:41:33:41:47 | fs.readFileSync | CalleeFlexibleAccessPath | import(!).promisify |
 | autogenerated/TaintedPath/other-fs-libraries.js:41:33:41:47 | fs.readFileSync | InputArgumentIndex | 0 |
 | autogenerated/TaintedPath/other-fs-libraries.js:41:33:41:47 | fs.readFileSync | calleeImports | bluebird |
@@ -8094,7 +10000,7 @@ tokenFeatures
 | autogenerated/TaintedPath/other-fs-libraries.js:41:33:41:47 | fs.readFileSync | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/other-fs-libraries.js:41:33:41:47 | fs.readFileSync | enclosingFunctionBody | req res path url parse req url true query path util promisify fs readFileSync path require bluebird promisify fs readFileSync path require bluebird promisifyAll fs readFileSync path |
 | autogenerated/TaintedPath/other-fs-libraries.js:41:33:41:47 | fs.readFileSync | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/other-fs-libraries.js:41:33:41:47 | fs.readFileSync | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http original-fs url util |
+| autogenerated/TaintedPath/other-fs-libraries.js:41:33:41:47 | fs.readFileSync | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http mkdirp original-fs pify read-pkg thenify url util util.promisify |
 | autogenerated/TaintedPath/other-fs-libraries.js:41:50:41:53 | path | CalleeFlexibleAccessPath | import(!).promisify() |
 | autogenerated/TaintedPath/other-fs-libraries.js:41:50:41:53 | path | InputArgumentIndex | 0 |
 | autogenerated/TaintedPath/other-fs-libraries.js:41:50:41:53 | path | calleeImports | bluebird |
@@ -8102,7 +10008,7 @@ tokenFeatures
 | autogenerated/TaintedPath/other-fs-libraries.js:41:50:41:53 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/other-fs-libraries.js:41:50:41:53 | path | enclosingFunctionBody | req res path url parse req url true query path util promisify fs readFileSync path require bluebird promisify fs readFileSync path require bluebird promisifyAll fs readFileSync path |
 | autogenerated/TaintedPath/other-fs-libraries.js:41:50:41:53 | path | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/other-fs-libraries.js:41:50:41:53 | path | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http original-fs url util |
+| autogenerated/TaintedPath/other-fs-libraries.js:41:50:41:53 | path | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http mkdirp original-fs pify read-pkg thenify url util util.promisify |
 | autogenerated/TaintedPath/other-fs-libraries.js:42:11:42:20 | "bluebird" | CalleeFlexibleAccessPath | require |
 | autogenerated/TaintedPath/other-fs-libraries.js:42:11:42:20 | "bluebird" | InputArgumentIndex | 0 |
 | autogenerated/TaintedPath/other-fs-libraries.js:42:11:42:20 | "bluebird" | calleeImports |  |
@@ -8110,7 +10016,7 @@ tokenFeatures
 | autogenerated/TaintedPath/other-fs-libraries.js:42:11:42:20 | "bluebird" | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/other-fs-libraries.js:42:11:42:20 | "bluebird" | enclosingFunctionBody | req res path url parse req url true query path util promisify fs readFileSync path require bluebird promisify fs readFileSync path require bluebird promisifyAll fs readFileSync path |
 | autogenerated/TaintedPath/other-fs-libraries.js:42:11:42:20 | "bluebird" | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/other-fs-libraries.js:42:11:42:20 | "bluebird" | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http original-fs url util |
+| autogenerated/TaintedPath/other-fs-libraries.js:42:11:42:20 | "bluebird" | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http mkdirp original-fs pify read-pkg thenify url util util.promisify |
 | autogenerated/TaintedPath/other-fs-libraries.js:42:36:42:37 | fs | CalleeFlexibleAccessPath | import(!).promisifyAll |
 | autogenerated/TaintedPath/other-fs-libraries.js:42:36:42:37 | fs | InputArgumentIndex | 0 |
 | autogenerated/TaintedPath/other-fs-libraries.js:42:36:42:37 | fs | calleeImports | bluebird |
@@ -8118,7 +10024,7 @@ tokenFeatures
 | autogenerated/TaintedPath/other-fs-libraries.js:42:36:42:37 | fs | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/other-fs-libraries.js:42:36:42:37 | fs | enclosingFunctionBody | req res path url parse req url true query path util promisify fs readFileSync path require bluebird promisify fs readFileSync path require bluebird promisifyAll fs readFileSync path |
 | autogenerated/TaintedPath/other-fs-libraries.js:42:36:42:37 | fs | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/other-fs-libraries.js:42:36:42:37 | fs | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http original-fs url util |
+| autogenerated/TaintedPath/other-fs-libraries.js:42:36:42:37 | fs | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http mkdirp original-fs pify read-pkg thenify url util util.promisify |
 | autogenerated/TaintedPath/other-fs-libraries.js:42:53:42:56 | path | CalleeFlexibleAccessPath | import(!).promisifyAll().readFileSync |
 | autogenerated/TaintedPath/other-fs-libraries.js:42:53:42:56 | path | InputArgumentIndex | 0 |
 | autogenerated/TaintedPath/other-fs-libraries.js:42:53:42:56 | path | calleeImports | bluebird |
@@ -8126,56 +10032,370 @@ tokenFeatures
 | autogenerated/TaintedPath/other-fs-libraries.js:42:53:42:56 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/other-fs-libraries.js:42:53:42:56 | path | enclosingFunctionBody | req res path url parse req url true query path util promisify fs readFileSync path require bluebird promisify fs readFileSync path require bluebird promisifyAll fs readFileSync path |
 | autogenerated/TaintedPath/other-fs-libraries.js:42:53:42:56 | path | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/other-fs-libraries.js:42:53:42:56 | path | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http original-fs url util |
+| autogenerated/TaintedPath/other-fs-libraries.js:42:53:42:56 | path | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http mkdirp original-fs pify read-pkg thenify url util util.promisify |
 | autogenerated/TaintedPath/other-fs-libraries.js:46:25:46:46 | "./my-a ... module" | CalleeFlexibleAccessPath | require |
 | autogenerated/TaintedPath/other-fs-libraries.js:46:25:46:46 | "./my-a ... module" | InputArgumentIndex | 0 |
 | autogenerated/TaintedPath/other-fs-libraries.js:46:25:46:46 | "./my-a ... module" | calleeImports |  |
 | autogenerated/TaintedPath/other-fs-libraries.js:46:25:46:46 | "./my-a ... module" | contextFunctionInterfaces | getFsModule(special) |
 | autogenerated/TaintedPath/other-fs-libraries.js:46:25:46:46 | "./my-a ... module" | contextSurroundingFunctionParameters |  |
-| autogenerated/TaintedPath/other-fs-libraries.js:46:25:46:46 | "./my-a ... module" | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http original-fs url util |
-| autogenerated/TaintedPath/other-fs-libraries.js:48:19:53:1 | functio ... OT OK\\n} | CalleeFlexibleAccessPath | http.createServer |
-| autogenerated/TaintedPath/other-fs-libraries.js:48:19:53:1 | functio ... OT OK\\n} | InputArgumentIndex | 0 |
-| autogenerated/TaintedPath/other-fs-libraries.js:48:19:53:1 | functio ... OT OK\\n} | calleeImports | http |
-| autogenerated/TaintedPath/other-fs-libraries.js:48:19:53:1 | functio ... OT OK\\n} | contextFunctionInterfaces | getFsModule(special) |
-| autogenerated/TaintedPath/other-fs-libraries.js:48:19:53:1 | functio ... OT OK\\n} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/other-fs-libraries.js:48:19:53:1 | functio ... OT OK\\n} | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http original-fs url util |
-| autogenerated/TaintedPath/other-fs-libraries.js:48:19:53:1 | functio ... OT OK\\n} | receiverName | http |
+| autogenerated/TaintedPath/other-fs-libraries.js:46:25:46:46 | "./my-a ... module" | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http mkdirp original-fs pify read-pkg thenify url util util.promisify |
+| autogenerated/TaintedPath/other-fs-libraries.js:48:19:64:1 | functio ... OT OK\\n} | CalleeFlexibleAccessPath | http.createServer |
+| autogenerated/TaintedPath/other-fs-libraries.js:48:19:64:1 | functio ... OT OK\\n} | InputArgumentIndex | 0 |
+| autogenerated/TaintedPath/other-fs-libraries.js:48:19:64:1 | functio ... OT OK\\n} | calleeImports | http |
+| autogenerated/TaintedPath/other-fs-libraries.js:48:19:64:1 | functio ... OT OK\\n} | contextFunctionInterfaces | getFsModule(special) |
+| autogenerated/TaintedPath/other-fs-libraries.js:48:19:64:1 | functio ... OT OK\\n} | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/TaintedPath/other-fs-libraries.js:48:19:64:1 | functio ... OT OK\\n} | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http mkdirp original-fs pify read-pkg thenify url util util.promisify |
+| autogenerated/TaintedPath/other-fs-libraries.js:48:19:64:1 | functio ... OT OK\\n} | receiverName | http |
 | autogenerated/TaintedPath/other-fs-libraries.js:49:24:49:30 | req.url | CalleeFlexibleAccessPath | url.parse |
 | autogenerated/TaintedPath/other-fs-libraries.js:49:24:49:30 | req.url | InputArgumentIndex | 0 |
 | autogenerated/TaintedPath/other-fs-libraries.js:49:24:49:30 | req.url | calleeImports | url |
 | autogenerated/TaintedPath/other-fs-libraries.js:49:24:49:30 | req.url | contextFunctionInterfaces | getFsModule(special) |
 | autogenerated/TaintedPath/other-fs-libraries.js:49:24:49:30 | req.url | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/other-fs-libraries.js:49:24:49:30 | req.url | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path asyncFS readFileSync path |
+| autogenerated/TaintedPath/other-fs-libraries.js:49:24:49:30 | req.url | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path asyncFS readFileSync path require pify fs readFileSync path require pify fs readFileSync path require util.promisify fs readFileSync path require thenify fs readFileSync path readPkg require read-pkg pkg readPkg readPackageSync cwd path pkgPromise readPkg readPackageAsync cwd path |
 | autogenerated/TaintedPath/other-fs-libraries.js:49:24:49:30 | req.url | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/other-fs-libraries.js:49:24:49:30 | req.url | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http original-fs url util |
+| autogenerated/TaintedPath/other-fs-libraries.js:49:24:49:30 | req.url | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http mkdirp original-fs pify read-pkg thenify url util util.promisify |
 | autogenerated/TaintedPath/other-fs-libraries.js:49:24:49:30 | req.url | receiverName | url |
 | autogenerated/TaintedPath/other-fs-libraries.js:49:33:49:36 | true | CalleeFlexibleAccessPath | url.parse |
 | autogenerated/TaintedPath/other-fs-libraries.js:49:33:49:36 | true | InputArgumentIndex | 1 |
 | autogenerated/TaintedPath/other-fs-libraries.js:49:33:49:36 | true | calleeImports | url |
 | autogenerated/TaintedPath/other-fs-libraries.js:49:33:49:36 | true | contextFunctionInterfaces | getFsModule(special) |
 | autogenerated/TaintedPath/other-fs-libraries.js:49:33:49:36 | true | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/other-fs-libraries.js:49:33:49:36 | true | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path asyncFS readFileSync path |
+| autogenerated/TaintedPath/other-fs-libraries.js:49:33:49:36 | true | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path asyncFS readFileSync path require pify fs readFileSync path require pify fs readFileSync path require util.promisify fs readFileSync path require thenify fs readFileSync path readPkg require read-pkg pkg readPkg readPackageSync cwd path pkgPromise readPkg readPackageAsync cwd path |
 | autogenerated/TaintedPath/other-fs-libraries.js:49:33:49:36 | true | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/other-fs-libraries.js:49:33:49:36 | true | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http original-fs url util |
+| autogenerated/TaintedPath/other-fs-libraries.js:49:33:49:36 | true | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http mkdirp original-fs pify read-pkg thenify url util util.promisify |
 | autogenerated/TaintedPath/other-fs-libraries.js:49:33:49:36 | true | receiverName | url |
 | autogenerated/TaintedPath/other-fs-libraries.js:51:19:51:22 | path | CalleeFlexibleAccessPath | fs.readFileSync |
 | autogenerated/TaintedPath/other-fs-libraries.js:51:19:51:22 | path | InputArgumentIndex | 0 |
 | autogenerated/TaintedPath/other-fs-libraries.js:51:19:51:22 | path | calleeImports | fs |
 | autogenerated/TaintedPath/other-fs-libraries.js:51:19:51:22 | path | contextFunctionInterfaces | getFsModule(special) |
 | autogenerated/TaintedPath/other-fs-libraries.js:51:19:51:22 | path | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/other-fs-libraries.js:51:19:51:22 | path | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path asyncFS readFileSync path |
+| autogenerated/TaintedPath/other-fs-libraries.js:51:19:51:22 | path | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path asyncFS readFileSync path require pify fs readFileSync path require pify fs readFileSync path require util.promisify fs readFileSync path require thenify fs readFileSync path readPkg require read-pkg pkg readPkg readPackageSync cwd path pkgPromise readPkg readPackageAsync cwd path |
 | autogenerated/TaintedPath/other-fs-libraries.js:51:19:51:22 | path | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/other-fs-libraries.js:51:19:51:22 | path | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http original-fs url util |
+| autogenerated/TaintedPath/other-fs-libraries.js:51:19:51:22 | path | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http mkdirp original-fs pify read-pkg thenify url util util.promisify |
 | autogenerated/TaintedPath/other-fs-libraries.js:51:19:51:22 | path | receiverName | fs |
 | autogenerated/TaintedPath/other-fs-libraries.js:52:24:52:27 | path | CalleeFlexibleAccessPath | asyncFS.readFileSync |
 | autogenerated/TaintedPath/other-fs-libraries.js:52:24:52:27 | path | InputArgumentIndex | 0 |
 | autogenerated/TaintedPath/other-fs-libraries.js:52:24:52:27 | path | calleeImports | ./my-async-fs-module |
 | autogenerated/TaintedPath/other-fs-libraries.js:52:24:52:27 | path | contextFunctionInterfaces | getFsModule(special) |
 | autogenerated/TaintedPath/other-fs-libraries.js:52:24:52:27 | path | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/other-fs-libraries.js:52:24:52:27 | path | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path asyncFS readFileSync path |
+| autogenerated/TaintedPath/other-fs-libraries.js:52:24:52:27 | path | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path asyncFS readFileSync path require pify fs readFileSync path require pify fs readFileSync path require util.promisify fs readFileSync path require thenify fs readFileSync path readPkg require read-pkg pkg readPkg readPackageSync cwd path pkgPromise readPkg readPackageAsync cwd path |
 | autogenerated/TaintedPath/other-fs-libraries.js:52:24:52:27 | path | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/other-fs-libraries.js:52:24:52:27 | path | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http original-fs url util |
+| autogenerated/TaintedPath/other-fs-libraries.js:52:24:52:27 | path | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http mkdirp original-fs pify read-pkg thenify url util util.promisify |
 | autogenerated/TaintedPath/other-fs-libraries.js:52:24:52:27 | path | receiverName | asyncFS |
+| autogenerated/TaintedPath/other-fs-libraries.js:54:11:54:16 | "pify" | CalleeFlexibleAccessPath | require |
+| autogenerated/TaintedPath/other-fs-libraries.js:54:11:54:16 | "pify" | InputArgumentIndex | 0 |
+| autogenerated/TaintedPath/other-fs-libraries.js:54:11:54:16 | "pify" | calleeImports |  |
+| autogenerated/TaintedPath/other-fs-libraries.js:54:11:54:16 | "pify" | contextFunctionInterfaces | getFsModule(special) |
+| autogenerated/TaintedPath/other-fs-libraries.js:54:11:54:16 | "pify" | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/TaintedPath/other-fs-libraries.js:54:11:54:16 | "pify" | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path asyncFS readFileSync path require pify fs readFileSync path require pify fs readFileSync path require util.promisify fs readFileSync path require thenify fs readFileSync path readPkg require read-pkg pkg readPkg readPackageSync cwd path pkgPromise readPkg readPackageAsync cwd path |
+| autogenerated/TaintedPath/other-fs-libraries.js:54:11:54:16 | "pify" | enclosingFunctionName | http.createServer#functionalargument |
+| autogenerated/TaintedPath/other-fs-libraries.js:54:11:54:16 | "pify" | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http mkdirp original-fs pify read-pkg thenify url util util.promisify |
+| autogenerated/TaintedPath/other-fs-libraries.js:54:19:54:33 | fs.readFileSync | CalleeFlexibleAccessPath | import(!) |
+| autogenerated/TaintedPath/other-fs-libraries.js:54:19:54:33 | fs.readFileSync | InputArgumentIndex | 0 |
+| autogenerated/TaintedPath/other-fs-libraries.js:54:19:54:33 | fs.readFileSync | calleeImports | pify |
+| autogenerated/TaintedPath/other-fs-libraries.js:54:19:54:33 | fs.readFileSync | contextFunctionInterfaces | getFsModule(special) |
+| autogenerated/TaintedPath/other-fs-libraries.js:54:19:54:33 | fs.readFileSync | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/TaintedPath/other-fs-libraries.js:54:19:54:33 | fs.readFileSync | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path asyncFS readFileSync path require pify fs readFileSync path require pify fs readFileSync path require util.promisify fs readFileSync path require thenify fs readFileSync path readPkg require read-pkg pkg readPkg readPackageSync cwd path pkgPromise readPkg readPackageAsync cwd path |
+| autogenerated/TaintedPath/other-fs-libraries.js:54:19:54:33 | fs.readFileSync | enclosingFunctionName | http.createServer#functionalargument |
+| autogenerated/TaintedPath/other-fs-libraries.js:54:19:54:33 | fs.readFileSync | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http mkdirp original-fs pify read-pkg thenify url util util.promisify |
+| autogenerated/TaintedPath/other-fs-libraries.js:54:36:54:39 | path | CalleeFlexibleAccessPath | import(!)() |
+| autogenerated/TaintedPath/other-fs-libraries.js:54:36:54:39 | path | InputArgumentIndex | 0 |
+| autogenerated/TaintedPath/other-fs-libraries.js:54:36:54:39 | path | calleeImports | pify |
+| autogenerated/TaintedPath/other-fs-libraries.js:54:36:54:39 | path | contextFunctionInterfaces | getFsModule(special) |
+| autogenerated/TaintedPath/other-fs-libraries.js:54:36:54:39 | path | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/TaintedPath/other-fs-libraries.js:54:36:54:39 | path | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path asyncFS readFileSync path require pify fs readFileSync path require pify fs readFileSync path require util.promisify fs readFileSync path require thenify fs readFileSync path readPkg require read-pkg pkg readPkg readPackageSync cwd path pkgPromise readPkg readPackageAsync cwd path |
+| autogenerated/TaintedPath/other-fs-libraries.js:54:36:54:39 | path | enclosingFunctionName | http.createServer#functionalargument |
+| autogenerated/TaintedPath/other-fs-libraries.js:54:36:54:39 | path | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http mkdirp original-fs pify read-pkg thenify url util util.promisify |
+| autogenerated/TaintedPath/other-fs-libraries.js:55:11:55:16 | "pify" | CalleeFlexibleAccessPath | require |
+| autogenerated/TaintedPath/other-fs-libraries.js:55:11:55:16 | "pify" | InputArgumentIndex | 0 |
+| autogenerated/TaintedPath/other-fs-libraries.js:55:11:55:16 | "pify" | calleeImports |  |
+| autogenerated/TaintedPath/other-fs-libraries.js:55:11:55:16 | "pify" | contextFunctionInterfaces | getFsModule(special) |
+| autogenerated/TaintedPath/other-fs-libraries.js:55:11:55:16 | "pify" | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/TaintedPath/other-fs-libraries.js:55:11:55:16 | "pify" | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path asyncFS readFileSync path require pify fs readFileSync path require pify fs readFileSync path require util.promisify fs readFileSync path require thenify fs readFileSync path readPkg require read-pkg pkg readPkg readPackageSync cwd path pkgPromise readPkg readPackageAsync cwd path |
+| autogenerated/TaintedPath/other-fs-libraries.js:55:11:55:16 | "pify" | enclosingFunctionName | http.createServer#functionalargument |
+| autogenerated/TaintedPath/other-fs-libraries.js:55:11:55:16 | "pify" | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http mkdirp original-fs pify read-pkg thenify url util util.promisify |
+| autogenerated/TaintedPath/other-fs-libraries.js:55:19:55:20 | fs | CalleeFlexibleAccessPath | import(!) |
+| autogenerated/TaintedPath/other-fs-libraries.js:55:19:55:20 | fs | InputArgumentIndex | 0 |
+| autogenerated/TaintedPath/other-fs-libraries.js:55:19:55:20 | fs | calleeImports | pify |
+| autogenerated/TaintedPath/other-fs-libraries.js:55:19:55:20 | fs | contextFunctionInterfaces | getFsModule(special) |
+| autogenerated/TaintedPath/other-fs-libraries.js:55:19:55:20 | fs | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/TaintedPath/other-fs-libraries.js:55:19:55:20 | fs | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path asyncFS readFileSync path require pify fs readFileSync path require pify fs readFileSync path require util.promisify fs readFileSync path require thenify fs readFileSync path readPkg require read-pkg pkg readPkg readPackageSync cwd path pkgPromise readPkg readPackageAsync cwd path |
+| autogenerated/TaintedPath/other-fs-libraries.js:55:19:55:20 | fs | enclosingFunctionName | http.createServer#functionalargument |
+| autogenerated/TaintedPath/other-fs-libraries.js:55:19:55:20 | fs | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http mkdirp original-fs pify read-pkg thenify url util util.promisify |
+| autogenerated/TaintedPath/other-fs-libraries.js:55:36:55:39 | path | CalleeFlexibleAccessPath | import(!)().readFileSync |
+| autogenerated/TaintedPath/other-fs-libraries.js:55:36:55:39 | path | InputArgumentIndex | 0 |
+| autogenerated/TaintedPath/other-fs-libraries.js:55:36:55:39 | path | calleeImports | pify |
+| autogenerated/TaintedPath/other-fs-libraries.js:55:36:55:39 | path | contextFunctionInterfaces | getFsModule(special) |
+| autogenerated/TaintedPath/other-fs-libraries.js:55:36:55:39 | path | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/TaintedPath/other-fs-libraries.js:55:36:55:39 | path | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path asyncFS readFileSync path require pify fs readFileSync path require pify fs readFileSync path require util.promisify fs readFileSync path require thenify fs readFileSync path readPkg require read-pkg pkg readPkg readPackageSync cwd path pkgPromise readPkg readPackageAsync cwd path |
+| autogenerated/TaintedPath/other-fs-libraries.js:55:36:55:39 | path | enclosingFunctionName | http.createServer#functionalargument |
+| autogenerated/TaintedPath/other-fs-libraries.js:55:36:55:39 | path | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http mkdirp original-fs pify read-pkg thenify url util util.promisify |
+| autogenerated/TaintedPath/other-fs-libraries.js:57:11:57:26 | 'util.promisify' | CalleeFlexibleAccessPath | require |
+| autogenerated/TaintedPath/other-fs-libraries.js:57:11:57:26 | 'util.promisify' | InputArgumentIndex | 0 |
+| autogenerated/TaintedPath/other-fs-libraries.js:57:11:57:26 | 'util.promisify' | calleeImports |  |
+| autogenerated/TaintedPath/other-fs-libraries.js:57:11:57:26 | 'util.promisify' | contextFunctionInterfaces | getFsModule(special) |
+| autogenerated/TaintedPath/other-fs-libraries.js:57:11:57:26 | 'util.promisify' | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/TaintedPath/other-fs-libraries.js:57:11:57:26 | 'util.promisify' | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path asyncFS readFileSync path require pify fs readFileSync path require pify fs readFileSync path require util.promisify fs readFileSync path require thenify fs readFileSync path readPkg require read-pkg pkg readPkg readPackageSync cwd path pkgPromise readPkg readPackageAsync cwd path |
+| autogenerated/TaintedPath/other-fs-libraries.js:57:11:57:26 | 'util.promisify' | enclosingFunctionName | http.createServer#functionalargument |
+| autogenerated/TaintedPath/other-fs-libraries.js:57:11:57:26 | 'util.promisify' | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http mkdirp original-fs pify read-pkg thenify url util util.promisify |
+| autogenerated/TaintedPath/other-fs-libraries.js:57:29:57:43 | fs.readFileSync | CalleeFlexibleAccessPath | import(!) |
+| autogenerated/TaintedPath/other-fs-libraries.js:57:29:57:43 | fs.readFileSync | InputArgumentIndex | 0 |
+| autogenerated/TaintedPath/other-fs-libraries.js:57:29:57:43 | fs.readFileSync | calleeImports | util.promisify |
+| autogenerated/TaintedPath/other-fs-libraries.js:57:29:57:43 | fs.readFileSync | contextFunctionInterfaces | getFsModule(special) |
+| autogenerated/TaintedPath/other-fs-libraries.js:57:29:57:43 | fs.readFileSync | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/TaintedPath/other-fs-libraries.js:57:29:57:43 | fs.readFileSync | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path asyncFS readFileSync path require pify fs readFileSync path require pify fs readFileSync path require util.promisify fs readFileSync path require thenify fs readFileSync path readPkg require read-pkg pkg readPkg readPackageSync cwd path pkgPromise readPkg readPackageAsync cwd path |
+| autogenerated/TaintedPath/other-fs-libraries.js:57:29:57:43 | fs.readFileSync | enclosingFunctionName | http.createServer#functionalargument |
+| autogenerated/TaintedPath/other-fs-libraries.js:57:29:57:43 | fs.readFileSync | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http mkdirp original-fs pify read-pkg thenify url util util.promisify |
+| autogenerated/TaintedPath/other-fs-libraries.js:57:46:57:49 | path | CalleeFlexibleAccessPath | import(!)() |
+| autogenerated/TaintedPath/other-fs-libraries.js:57:46:57:49 | path | InputArgumentIndex | 0 |
+| autogenerated/TaintedPath/other-fs-libraries.js:57:46:57:49 | path | calleeImports | util.promisify |
+| autogenerated/TaintedPath/other-fs-libraries.js:57:46:57:49 | path | contextFunctionInterfaces | getFsModule(special) |
+| autogenerated/TaintedPath/other-fs-libraries.js:57:46:57:49 | path | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/TaintedPath/other-fs-libraries.js:57:46:57:49 | path | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path asyncFS readFileSync path require pify fs readFileSync path require pify fs readFileSync path require util.promisify fs readFileSync path require thenify fs readFileSync path readPkg require read-pkg pkg readPkg readPackageSync cwd path pkgPromise readPkg readPackageAsync cwd path |
+| autogenerated/TaintedPath/other-fs-libraries.js:57:46:57:49 | path | enclosingFunctionName | http.createServer#functionalargument |
+| autogenerated/TaintedPath/other-fs-libraries.js:57:46:57:49 | path | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http mkdirp original-fs pify read-pkg thenify url util util.promisify |
+| autogenerated/TaintedPath/other-fs-libraries.js:59:11:59:19 | "thenify" | CalleeFlexibleAccessPath | require |
+| autogenerated/TaintedPath/other-fs-libraries.js:59:11:59:19 | "thenify" | InputArgumentIndex | 0 |
+| autogenerated/TaintedPath/other-fs-libraries.js:59:11:59:19 | "thenify" | calleeImports |  |
+| autogenerated/TaintedPath/other-fs-libraries.js:59:11:59:19 | "thenify" | contextFunctionInterfaces | getFsModule(special) |
+| autogenerated/TaintedPath/other-fs-libraries.js:59:11:59:19 | "thenify" | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/TaintedPath/other-fs-libraries.js:59:11:59:19 | "thenify" | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path asyncFS readFileSync path require pify fs readFileSync path require pify fs readFileSync path require util.promisify fs readFileSync path require thenify fs readFileSync path readPkg require read-pkg pkg readPkg readPackageSync cwd path pkgPromise readPkg readPackageAsync cwd path |
+| autogenerated/TaintedPath/other-fs-libraries.js:59:11:59:19 | "thenify" | enclosingFunctionName | http.createServer#functionalargument |
+| autogenerated/TaintedPath/other-fs-libraries.js:59:11:59:19 | "thenify" | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http mkdirp original-fs pify read-pkg thenify url util util.promisify |
+| autogenerated/TaintedPath/other-fs-libraries.js:59:22:59:36 | fs.readFileSync | CalleeFlexibleAccessPath | import(!) |
+| autogenerated/TaintedPath/other-fs-libraries.js:59:22:59:36 | fs.readFileSync | InputArgumentIndex | 0 |
+| autogenerated/TaintedPath/other-fs-libraries.js:59:22:59:36 | fs.readFileSync | calleeImports | thenify |
+| autogenerated/TaintedPath/other-fs-libraries.js:59:22:59:36 | fs.readFileSync | contextFunctionInterfaces | getFsModule(special) |
+| autogenerated/TaintedPath/other-fs-libraries.js:59:22:59:36 | fs.readFileSync | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/TaintedPath/other-fs-libraries.js:59:22:59:36 | fs.readFileSync | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path asyncFS readFileSync path require pify fs readFileSync path require pify fs readFileSync path require util.promisify fs readFileSync path require thenify fs readFileSync path readPkg require read-pkg pkg readPkg readPackageSync cwd path pkgPromise readPkg readPackageAsync cwd path |
+| autogenerated/TaintedPath/other-fs-libraries.js:59:22:59:36 | fs.readFileSync | enclosingFunctionName | http.createServer#functionalargument |
+| autogenerated/TaintedPath/other-fs-libraries.js:59:22:59:36 | fs.readFileSync | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http mkdirp original-fs pify read-pkg thenify url util util.promisify |
+| autogenerated/TaintedPath/other-fs-libraries.js:59:39:59:42 | path | CalleeFlexibleAccessPath | import(!)() |
+| autogenerated/TaintedPath/other-fs-libraries.js:59:39:59:42 | path | InputArgumentIndex | 0 |
+| autogenerated/TaintedPath/other-fs-libraries.js:59:39:59:42 | path | calleeImports | thenify |
+| autogenerated/TaintedPath/other-fs-libraries.js:59:39:59:42 | path | contextFunctionInterfaces | getFsModule(special) |
+| autogenerated/TaintedPath/other-fs-libraries.js:59:39:59:42 | path | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/TaintedPath/other-fs-libraries.js:59:39:59:42 | path | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path asyncFS readFileSync path require pify fs readFileSync path require pify fs readFileSync path require util.promisify fs readFileSync path require thenify fs readFileSync path readPkg require read-pkg pkg readPkg readPackageSync cwd path pkgPromise readPkg readPackageAsync cwd path |
+| autogenerated/TaintedPath/other-fs-libraries.js:59:39:59:42 | path | enclosingFunctionName | http.createServer#functionalargument |
+| autogenerated/TaintedPath/other-fs-libraries.js:59:39:59:42 | path | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http mkdirp original-fs pify read-pkg thenify url util util.promisify |
+| autogenerated/TaintedPath/other-fs-libraries.js:61:27:61:36 | 'read-pkg' | CalleeFlexibleAccessPath | require |
+| autogenerated/TaintedPath/other-fs-libraries.js:61:27:61:36 | 'read-pkg' | InputArgumentIndex | 0 |
+| autogenerated/TaintedPath/other-fs-libraries.js:61:27:61:36 | 'read-pkg' | calleeImports |  |
+| autogenerated/TaintedPath/other-fs-libraries.js:61:27:61:36 | 'read-pkg' | contextFunctionInterfaces | getFsModule(special) |
+| autogenerated/TaintedPath/other-fs-libraries.js:61:27:61:36 | 'read-pkg' | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/TaintedPath/other-fs-libraries.js:61:27:61:36 | 'read-pkg' | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path asyncFS readFileSync path require pify fs readFileSync path require pify fs readFileSync path require util.promisify fs readFileSync path require thenify fs readFileSync path readPkg require read-pkg pkg readPkg readPackageSync cwd path pkgPromise readPkg readPackageAsync cwd path |
+| autogenerated/TaintedPath/other-fs-libraries.js:61:27:61:36 | 'read-pkg' | enclosingFunctionName | http.createServer#functionalargument |
+| autogenerated/TaintedPath/other-fs-libraries.js:61:27:61:36 | 'read-pkg' | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http mkdirp original-fs pify read-pkg thenify url util util.promisify |
+| autogenerated/TaintedPath/other-fs-libraries.js:62:37:62:47 | {cwd: path} | CalleeFlexibleAccessPath | readPkg.readPackageSync |
+| autogenerated/TaintedPath/other-fs-libraries.js:62:37:62:47 | {cwd: path} | InputArgumentIndex | 0 |
+| autogenerated/TaintedPath/other-fs-libraries.js:62:37:62:47 | {cwd: path} | calleeImports | read-pkg |
+| autogenerated/TaintedPath/other-fs-libraries.js:62:37:62:47 | {cwd: path} | contextFunctionInterfaces | getFsModule(special) |
+| autogenerated/TaintedPath/other-fs-libraries.js:62:37:62:47 | {cwd: path} | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/TaintedPath/other-fs-libraries.js:62:37:62:47 | {cwd: path} | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path asyncFS readFileSync path require pify fs readFileSync path require pify fs readFileSync path require util.promisify fs readFileSync path require thenify fs readFileSync path readPkg require read-pkg pkg readPkg readPackageSync cwd path pkgPromise readPkg readPackageAsync cwd path |
+| autogenerated/TaintedPath/other-fs-libraries.js:62:37:62:47 | {cwd: path} | enclosingFunctionName | http.createServer#functionalargument |
+| autogenerated/TaintedPath/other-fs-libraries.js:62:37:62:47 | {cwd: path} | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http mkdirp original-fs pify read-pkg thenify url util util.promisify |
+| autogenerated/TaintedPath/other-fs-libraries.js:62:37:62:47 | {cwd: path} | receiverName | readPkg |
+| autogenerated/TaintedPath/other-fs-libraries.js:62:43:62:46 | path | CalleeFlexibleAccessPath | readPkg.readPackageSync |
+| autogenerated/TaintedPath/other-fs-libraries.js:62:43:62:46 | path | InputAccessPathFromCallee | 0.cwd |
+| autogenerated/TaintedPath/other-fs-libraries.js:62:43:62:46 | path | InputArgumentIndex | 0 |
+| autogenerated/TaintedPath/other-fs-libraries.js:62:43:62:46 | path | assignedToPropName | cwd |
+| autogenerated/TaintedPath/other-fs-libraries.js:62:43:62:46 | path | calleeImports | read-pkg |
+| autogenerated/TaintedPath/other-fs-libraries.js:62:43:62:46 | path | contextFunctionInterfaces | getFsModule(special) |
+| autogenerated/TaintedPath/other-fs-libraries.js:62:43:62:46 | path | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/TaintedPath/other-fs-libraries.js:62:43:62:46 | path | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path asyncFS readFileSync path require pify fs readFileSync path require pify fs readFileSync path require util.promisify fs readFileSync path require thenify fs readFileSync path readPkg require read-pkg pkg readPkg readPackageSync cwd path pkgPromise readPkg readPackageAsync cwd path |
+| autogenerated/TaintedPath/other-fs-libraries.js:62:43:62:46 | path | enclosingFunctionName | http.createServer#functionalargument |
+| autogenerated/TaintedPath/other-fs-libraries.js:62:43:62:46 | path | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http mkdirp original-fs pify read-pkg thenify url util util.promisify |
+| autogenerated/TaintedPath/other-fs-libraries.js:63:45:63:55 | {cwd: path} | CalleeFlexibleAccessPath | readPkg.readPackageAsync |
+| autogenerated/TaintedPath/other-fs-libraries.js:63:45:63:55 | {cwd: path} | InputArgumentIndex | 0 |
+| autogenerated/TaintedPath/other-fs-libraries.js:63:45:63:55 | {cwd: path} | calleeImports | read-pkg |
+| autogenerated/TaintedPath/other-fs-libraries.js:63:45:63:55 | {cwd: path} | contextFunctionInterfaces | getFsModule(special) |
+| autogenerated/TaintedPath/other-fs-libraries.js:63:45:63:55 | {cwd: path} | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/TaintedPath/other-fs-libraries.js:63:45:63:55 | {cwd: path} | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path asyncFS readFileSync path require pify fs readFileSync path require pify fs readFileSync path require util.promisify fs readFileSync path require thenify fs readFileSync path readPkg require read-pkg pkg readPkg readPackageSync cwd path pkgPromise readPkg readPackageAsync cwd path |
+| autogenerated/TaintedPath/other-fs-libraries.js:63:45:63:55 | {cwd: path} | enclosingFunctionName | http.createServer#functionalargument |
+| autogenerated/TaintedPath/other-fs-libraries.js:63:45:63:55 | {cwd: path} | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http mkdirp original-fs pify read-pkg thenify url util util.promisify |
+| autogenerated/TaintedPath/other-fs-libraries.js:63:45:63:55 | {cwd: path} | receiverName | readPkg |
+| autogenerated/TaintedPath/other-fs-libraries.js:63:51:63:54 | path | CalleeFlexibleAccessPath | readPkg.readPackageAsync |
+| autogenerated/TaintedPath/other-fs-libraries.js:63:51:63:54 | path | InputAccessPathFromCallee | 0.cwd |
+| autogenerated/TaintedPath/other-fs-libraries.js:63:51:63:54 | path | InputArgumentIndex | 0 |
+| autogenerated/TaintedPath/other-fs-libraries.js:63:51:63:54 | path | assignedToPropName | cwd |
+| autogenerated/TaintedPath/other-fs-libraries.js:63:51:63:54 | path | calleeImports | read-pkg |
+| autogenerated/TaintedPath/other-fs-libraries.js:63:51:63:54 | path | contextFunctionInterfaces | getFsModule(special) |
+| autogenerated/TaintedPath/other-fs-libraries.js:63:51:63:54 | path | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/TaintedPath/other-fs-libraries.js:63:51:63:54 | path | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path asyncFS readFileSync path require pify fs readFileSync path require pify fs readFileSync path require util.promisify fs readFileSync path require thenify fs readFileSync path readPkg require read-pkg pkg readPkg readPackageSync cwd path pkgPromise readPkg readPackageAsync cwd path |
+| autogenerated/TaintedPath/other-fs-libraries.js:63:51:63:54 | path | enclosingFunctionName | http.createServer#functionalargument |
+| autogenerated/TaintedPath/other-fs-libraries.js:63:51:63:54 | path | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http mkdirp original-fs pify read-pkg thenify url util util.promisify |
+| autogenerated/TaintedPath/other-fs-libraries.js:66:24:66:31 | "mkdirp" | CalleeFlexibleAccessPath | require |
+| autogenerated/TaintedPath/other-fs-libraries.js:66:24:66:31 | "mkdirp" | InputArgumentIndex | 0 |
+| autogenerated/TaintedPath/other-fs-libraries.js:66:24:66:31 | "mkdirp" | calleeImports |  |
+| autogenerated/TaintedPath/other-fs-libraries.js:66:24:66:31 | "mkdirp" | contextFunctionInterfaces | getFsModule(special) |
+| autogenerated/TaintedPath/other-fs-libraries.js:66:24:66:31 | "mkdirp" | contextSurroundingFunctionParameters |  |
+| autogenerated/TaintedPath/other-fs-libraries.js:66:24:66:31 | "mkdirp" | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http mkdirp original-fs pify read-pkg thenify url util util.promisify |
+| autogenerated/TaintedPath/other-fs-libraries.js:67:19:73:1 | functio ... OT OK\\n} | CalleeFlexibleAccessPath | http.createServer |
+| autogenerated/TaintedPath/other-fs-libraries.js:67:19:73:1 | functio ... OT OK\\n} | InputArgumentIndex | 0 |
+| autogenerated/TaintedPath/other-fs-libraries.js:67:19:73:1 | functio ... OT OK\\n} | calleeImports | http |
+| autogenerated/TaintedPath/other-fs-libraries.js:67:19:73:1 | functio ... OT OK\\n} | contextFunctionInterfaces | getFsModule(special) |
+| autogenerated/TaintedPath/other-fs-libraries.js:67:19:73:1 | functio ... OT OK\\n} | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/TaintedPath/other-fs-libraries.js:67:19:73:1 | functio ... OT OK\\n} | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http mkdirp original-fs pify read-pkg thenify url util util.promisify |
+| autogenerated/TaintedPath/other-fs-libraries.js:67:19:73:1 | functio ... OT OK\\n} | receiverName | http |
+| autogenerated/TaintedPath/other-fs-libraries.js:68:24:68:30 | req.url | CalleeFlexibleAccessPath | url.parse |
+| autogenerated/TaintedPath/other-fs-libraries.js:68:24:68:30 | req.url | InputArgumentIndex | 0 |
+| autogenerated/TaintedPath/other-fs-libraries.js:68:24:68:30 | req.url | calleeImports | url |
+| autogenerated/TaintedPath/other-fs-libraries.js:68:24:68:30 | req.url | contextFunctionInterfaces | getFsModule(special) |
+| autogenerated/TaintedPath/other-fs-libraries.js:68:24:68:30 | req.url | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/TaintedPath/other-fs-libraries.js:68:24:68:30 | req.url | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path mkdirp path mkdirp sync path |
+| autogenerated/TaintedPath/other-fs-libraries.js:68:24:68:30 | req.url | enclosingFunctionName | http.createServer#functionalargument |
+| autogenerated/TaintedPath/other-fs-libraries.js:68:24:68:30 | req.url | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http mkdirp original-fs pify read-pkg thenify url util util.promisify |
+| autogenerated/TaintedPath/other-fs-libraries.js:68:24:68:30 | req.url | receiverName | url |
+| autogenerated/TaintedPath/other-fs-libraries.js:68:33:68:36 | true | CalleeFlexibleAccessPath | url.parse |
+| autogenerated/TaintedPath/other-fs-libraries.js:68:33:68:36 | true | InputArgumentIndex | 1 |
+| autogenerated/TaintedPath/other-fs-libraries.js:68:33:68:36 | true | calleeImports | url |
+| autogenerated/TaintedPath/other-fs-libraries.js:68:33:68:36 | true | contextFunctionInterfaces | getFsModule(special) |
+| autogenerated/TaintedPath/other-fs-libraries.js:68:33:68:36 | true | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/TaintedPath/other-fs-libraries.js:68:33:68:36 | true | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path mkdirp path mkdirp sync path |
+| autogenerated/TaintedPath/other-fs-libraries.js:68:33:68:36 | true | enclosingFunctionName | http.createServer#functionalargument |
+| autogenerated/TaintedPath/other-fs-libraries.js:68:33:68:36 | true | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http mkdirp original-fs pify read-pkg thenify url util util.promisify |
+| autogenerated/TaintedPath/other-fs-libraries.js:68:33:68:36 | true | receiverName | url |
+| autogenerated/TaintedPath/other-fs-libraries.js:70:19:70:22 | path | CalleeFlexibleAccessPath | fs.readFileSync |
+| autogenerated/TaintedPath/other-fs-libraries.js:70:19:70:22 | path | InputArgumentIndex | 0 |
+| autogenerated/TaintedPath/other-fs-libraries.js:70:19:70:22 | path | calleeImports | fs |
+| autogenerated/TaintedPath/other-fs-libraries.js:70:19:70:22 | path | contextFunctionInterfaces | getFsModule(special) |
+| autogenerated/TaintedPath/other-fs-libraries.js:70:19:70:22 | path | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/TaintedPath/other-fs-libraries.js:70:19:70:22 | path | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path mkdirp path mkdirp sync path |
+| autogenerated/TaintedPath/other-fs-libraries.js:70:19:70:22 | path | enclosingFunctionName | http.createServer#functionalargument |
+| autogenerated/TaintedPath/other-fs-libraries.js:70:19:70:22 | path | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http mkdirp original-fs pify read-pkg thenify url util util.promisify |
+| autogenerated/TaintedPath/other-fs-libraries.js:70:19:70:22 | path | receiverName | fs |
+| autogenerated/TaintedPath/other-fs-libraries.js:71:10:71:13 | path | CalleeFlexibleAccessPath | mkdirp |
+| autogenerated/TaintedPath/other-fs-libraries.js:71:10:71:13 | path | InputArgumentIndex | 0 |
+| autogenerated/TaintedPath/other-fs-libraries.js:71:10:71:13 | path | calleeImports | mkdirp |
+| autogenerated/TaintedPath/other-fs-libraries.js:71:10:71:13 | path | contextFunctionInterfaces | getFsModule(special) |
+| autogenerated/TaintedPath/other-fs-libraries.js:71:10:71:13 | path | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/TaintedPath/other-fs-libraries.js:71:10:71:13 | path | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path mkdirp path mkdirp sync path |
+| autogenerated/TaintedPath/other-fs-libraries.js:71:10:71:13 | path | enclosingFunctionName | http.createServer#functionalargument |
+| autogenerated/TaintedPath/other-fs-libraries.js:71:10:71:13 | path | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http mkdirp original-fs pify read-pkg thenify url util util.promisify |
+| autogenerated/TaintedPath/other-fs-libraries.js:72:15:72:18 | path | CalleeFlexibleAccessPath | mkdirp.sync |
+| autogenerated/TaintedPath/other-fs-libraries.js:72:15:72:18 | path | InputArgumentIndex | 0 |
+| autogenerated/TaintedPath/other-fs-libraries.js:72:15:72:18 | path | calleeImports | mkdirp |
+| autogenerated/TaintedPath/other-fs-libraries.js:72:15:72:18 | path | contextFunctionInterfaces | getFsModule(special) |
+| autogenerated/TaintedPath/other-fs-libraries.js:72:15:72:18 | path | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/TaintedPath/other-fs-libraries.js:72:15:72:18 | path | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path mkdirp path mkdirp sync path |
+| autogenerated/TaintedPath/other-fs-libraries.js:72:15:72:18 | path | enclosingFunctionName | http.createServer#functionalargument |
+| autogenerated/TaintedPath/other-fs-libraries.js:72:15:72:18 | path | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http mkdirp original-fs pify read-pkg thenify url util util.promisify |
+| autogenerated/TaintedPath/other-fs-libraries.js:72:15:72:18 | path | receiverName | mkdirp |
+| autogenerated/TaintedPath/prettier.js:1:25:1:33 | 'express' | CalleeFlexibleAccessPath | require |
+| autogenerated/TaintedPath/prettier.js:1:25:1:33 | 'express' | InputArgumentIndex | 0 |
+| autogenerated/TaintedPath/prettier.js:1:25:1:33 | 'express' | calleeImports |  |
+| autogenerated/TaintedPath/prettier.js:1:25:1:33 | 'express' | contextFunctionInterfaces |  |
+| autogenerated/TaintedPath/prettier.js:1:25:1:33 | 'express' | contextSurroundingFunctionParameters |  |
+| autogenerated/TaintedPath/prettier.js:1:25:1:33 | 'express' | fileImports | express prettier |
+| autogenerated/TaintedPath/prettier.js:2:26:2:35 | "prettier" | CalleeFlexibleAccessPath | require |
+| autogenerated/TaintedPath/prettier.js:2:26:2:35 | "prettier" | InputArgumentIndex | 0 |
+| autogenerated/TaintedPath/prettier.js:2:26:2:35 | "prettier" | calleeImports |  |
+| autogenerated/TaintedPath/prettier.js:2:26:2:35 | "prettier" | contextFunctionInterfaces |  |
+| autogenerated/TaintedPath/prettier.js:2:26:2:35 | "prettier" | contextSurroundingFunctionParameters |  |
+| autogenerated/TaintedPath/prettier.js:2:26:2:35 | "prettier" | fileImports | express prettier |
+| autogenerated/TaintedPath/prettier.js:5:9:5:20 | '/some/path' | CalleeFlexibleAccessPath | app.get |
+| autogenerated/TaintedPath/prettier.js:5:9:5:20 | '/some/path' | InputArgumentIndex | 0 |
+| autogenerated/TaintedPath/prettier.js:5:9:5:20 | '/some/path' | calleeImports | express |
+| autogenerated/TaintedPath/prettier.js:5:9:5:20 | '/some/path' | contextFunctionInterfaces |  |
+| autogenerated/TaintedPath/prettier.js:5:9:5:20 | '/some/path' | contextSurroundingFunctionParameters |  |
+| autogenerated/TaintedPath/prettier.js:5:9:5:20 | '/some/path' | fileImports | express prettier |
+| autogenerated/TaintedPath/prettier.js:5:9:5:20 | '/some/path' | receiverName | app |
+| autogenerated/TaintedPath/prettier.js:5:23:14:1 | functio ...   });\\n} | CalleeFlexibleAccessPath | app.get |
+| autogenerated/TaintedPath/prettier.js:5:23:14:1 | functio ...   });\\n} | InputArgumentIndex | 1 |
+| autogenerated/TaintedPath/prettier.js:5:23:14:1 | functio ...   });\\n} | calleeImports | express |
+| autogenerated/TaintedPath/prettier.js:5:23:14:1 | functio ...   });\\n} | contextFunctionInterfaces |  |
+| autogenerated/TaintedPath/prettier.js:5:23:14:1 | functio ...   });\\n} | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/TaintedPath/prettier.js:5:23:14:1 | functio ...   });\\n} | fileImports | express prettier |
+| autogenerated/TaintedPath/prettier.js:5:23:14:1 | functio ...   });\\n} | receiverName | app |
+| autogenerated/TaintedPath/prettier.js:7:28:7:28 | p | CalleeFlexibleAccessPath | prettier.resolveConfig |
+| autogenerated/TaintedPath/prettier.js:7:28:7:28 | p | InputArgumentIndex | 0 |
+| autogenerated/TaintedPath/prettier.js:7:28:7:28 | p | calleeImports | prettier |
+| autogenerated/TaintedPath/prettier.js:7:28:7:28 | p | contextFunctionInterfaces |  |
+| autogenerated/TaintedPath/prettier.js:7:28:7:28 | p | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/TaintedPath/prettier.js:7:28:7:28 | p | enclosingFunctionBody | req res p req params prettier resolveConfig p then options formatted prettier format foo options prettier resolveConfig foo config p then options formatted prettier format bar options |
+| autogenerated/TaintedPath/prettier.js:7:28:7:28 | p | enclosingFunctionName | app.get#functionalargument |
+| autogenerated/TaintedPath/prettier.js:7:28:7:28 | p | fileImports | express prettier |
+| autogenerated/TaintedPath/prettier.js:7:28:7:28 | p | receiverName | prettier |
+| autogenerated/TaintedPath/prettier.js:7:36:9:5 | (option ... ;\\n    } | CalleeFlexibleAccessPath | prettier.resolveConfig().then |
+| autogenerated/TaintedPath/prettier.js:7:36:9:5 | (option ... ;\\n    } | InputArgumentIndex | 0 |
+| autogenerated/TaintedPath/prettier.js:7:36:9:5 | (option ... ;\\n    } | calleeImports | prettier |
+| autogenerated/TaintedPath/prettier.js:7:36:9:5 | (option ... ;\\n    } | contextFunctionInterfaces |  |
+| autogenerated/TaintedPath/prettier.js:7:36:9:5 | (option ... ;\\n    } | contextSurroundingFunctionParameters | (req, res)\n(options) |
+| autogenerated/TaintedPath/prettier.js:7:36:9:5 | (option ... ;\\n    } | enclosingFunctionBody | req res p req params prettier resolveConfig p then options formatted prettier format foo options prettier resolveConfig foo config p then options formatted prettier format bar options |
+| autogenerated/TaintedPath/prettier.js:7:36:9:5 | (option ... ;\\n    } | enclosingFunctionName | app.get#functionalargument |
+| autogenerated/TaintedPath/prettier.js:7:36:9:5 | (option ... ;\\n    } | fileImports | express prettier |
+| autogenerated/TaintedPath/prettier.js:8:43:8:47 | "foo" | CalleeFlexibleAccessPath | prettier.format |
+| autogenerated/TaintedPath/prettier.js:8:43:8:47 | "foo" | InputArgumentIndex | 0 |
+| autogenerated/TaintedPath/prettier.js:8:43:8:47 | "foo" | calleeImports | prettier |
+| autogenerated/TaintedPath/prettier.js:8:43:8:47 | "foo" | contextFunctionInterfaces |  |
+| autogenerated/TaintedPath/prettier.js:8:43:8:47 | "foo" | contextSurroundingFunctionParameters | (req, res)\n(options) |
+| autogenerated/TaintedPath/prettier.js:8:43:8:47 | "foo" | enclosingFunctionBody | req res p req params prettier resolveConfig p then options formatted prettier format foo options prettier resolveConfig foo config p then options formatted prettier format bar options |
+| autogenerated/TaintedPath/prettier.js:8:43:8:47 | "foo" | enclosingFunctionName | app.get#functionalargument |
+| autogenerated/TaintedPath/prettier.js:8:43:8:47 | "foo" | fileImports | express prettier |
+| autogenerated/TaintedPath/prettier.js:8:43:8:47 | "foo" | receiverName | prettier |
+| autogenerated/TaintedPath/prettier.js:8:50:8:56 | options | CalleeFlexibleAccessPath | prettier.format |
+| autogenerated/TaintedPath/prettier.js:8:50:8:56 | options | InputArgumentIndex | 1 |
+| autogenerated/TaintedPath/prettier.js:8:50:8:56 | options | calleeImports | prettier |
+| autogenerated/TaintedPath/prettier.js:8:50:8:56 | options | contextFunctionInterfaces |  |
+| autogenerated/TaintedPath/prettier.js:8:50:8:56 | options | contextSurroundingFunctionParameters | (req, res)\n(options) |
+| autogenerated/TaintedPath/prettier.js:8:50:8:56 | options | enclosingFunctionBody | req res p req params prettier resolveConfig p then options formatted prettier format foo options prettier resolveConfig foo config p then options formatted prettier format bar options |
+| autogenerated/TaintedPath/prettier.js:8:50:8:56 | options | enclosingFunctionName | app.get#functionalargument |
+| autogenerated/TaintedPath/prettier.js:8:50:8:56 | options | fileImports | express prettier |
+| autogenerated/TaintedPath/prettier.js:8:50:8:56 | options | receiverName | prettier |
+| autogenerated/TaintedPath/prettier.js:11:28:11:32 | "foo" | CalleeFlexibleAccessPath | prettier.resolveConfig |
+| autogenerated/TaintedPath/prettier.js:11:28:11:32 | "foo" | InputArgumentIndex | 0 |
+| autogenerated/TaintedPath/prettier.js:11:28:11:32 | "foo" | calleeImports | prettier |
+| autogenerated/TaintedPath/prettier.js:11:28:11:32 | "foo" | contextFunctionInterfaces |  |
+| autogenerated/TaintedPath/prettier.js:11:28:11:32 | "foo" | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/TaintedPath/prettier.js:11:28:11:32 | "foo" | enclosingFunctionBody | req res p req params prettier resolveConfig p then options formatted prettier format foo options prettier resolveConfig foo config p then options formatted prettier format bar options |
+| autogenerated/TaintedPath/prettier.js:11:28:11:32 | "foo" | enclosingFunctionName | app.get#functionalargument |
+| autogenerated/TaintedPath/prettier.js:11:28:11:32 | "foo" | fileImports | express prettier |
+| autogenerated/TaintedPath/prettier.js:11:28:11:32 | "foo" | receiverName | prettier |
+| autogenerated/TaintedPath/prettier.js:11:35:11:45 | {config: p} | CalleeFlexibleAccessPath | prettier.resolveConfig |
+| autogenerated/TaintedPath/prettier.js:11:35:11:45 | {config: p} | InputArgumentIndex | 1 |
+| autogenerated/TaintedPath/prettier.js:11:35:11:45 | {config: p} | calleeImports | prettier |
+| autogenerated/TaintedPath/prettier.js:11:35:11:45 | {config: p} | contextFunctionInterfaces |  |
+| autogenerated/TaintedPath/prettier.js:11:35:11:45 | {config: p} | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/TaintedPath/prettier.js:11:35:11:45 | {config: p} | enclosingFunctionBody | req res p req params prettier resolveConfig p then options formatted prettier format foo options prettier resolveConfig foo config p then options formatted prettier format bar options |
+| autogenerated/TaintedPath/prettier.js:11:35:11:45 | {config: p} | enclosingFunctionName | app.get#functionalargument |
+| autogenerated/TaintedPath/prettier.js:11:35:11:45 | {config: p} | fileImports | express prettier |
+| autogenerated/TaintedPath/prettier.js:11:35:11:45 | {config: p} | receiverName | prettier |
+| autogenerated/TaintedPath/prettier.js:11:44:11:44 | p | CalleeFlexibleAccessPath | prettier.resolveConfig |
+| autogenerated/TaintedPath/prettier.js:11:44:11:44 | p | InputAccessPathFromCallee | 1.config |
+| autogenerated/TaintedPath/prettier.js:11:44:11:44 | p | InputArgumentIndex | 1 |
+| autogenerated/TaintedPath/prettier.js:11:44:11:44 | p | assignedToPropName | config |
+| autogenerated/TaintedPath/prettier.js:11:44:11:44 | p | calleeImports | prettier |
+| autogenerated/TaintedPath/prettier.js:11:44:11:44 | p | contextFunctionInterfaces |  |
+| autogenerated/TaintedPath/prettier.js:11:44:11:44 | p | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/TaintedPath/prettier.js:11:44:11:44 | p | enclosingFunctionBody | req res p req params prettier resolveConfig p then options formatted prettier format foo options prettier resolveConfig foo config p then options formatted prettier format bar options |
+| autogenerated/TaintedPath/prettier.js:11:44:11:44 | p | enclosingFunctionName | app.get#functionalargument |
+| autogenerated/TaintedPath/prettier.js:11:44:11:44 | p | fileImports | express prettier |
+| autogenerated/TaintedPath/prettier.js:11:53:13:5 | (option ... ;\\n    } | CalleeFlexibleAccessPath | prettier.resolveConfig().then |
+| autogenerated/TaintedPath/prettier.js:11:53:13:5 | (option ... ;\\n    } | InputArgumentIndex | 0 |
+| autogenerated/TaintedPath/prettier.js:11:53:13:5 | (option ... ;\\n    } | calleeImports | prettier |
+| autogenerated/TaintedPath/prettier.js:11:53:13:5 | (option ... ;\\n    } | contextFunctionInterfaces |  |
+| autogenerated/TaintedPath/prettier.js:11:53:13:5 | (option ... ;\\n    } | contextSurroundingFunctionParameters | (req, res)\n(options) |
+| autogenerated/TaintedPath/prettier.js:11:53:13:5 | (option ... ;\\n    } | enclosingFunctionBody | req res p req params prettier resolveConfig p then options formatted prettier format foo options prettier resolveConfig foo config p then options formatted prettier format bar options |
+| autogenerated/TaintedPath/prettier.js:11:53:13:5 | (option ... ;\\n    } | enclosingFunctionName | app.get#functionalargument |
+| autogenerated/TaintedPath/prettier.js:11:53:13:5 | (option ... ;\\n    } | fileImports | express prettier |
+| autogenerated/TaintedPath/prettier.js:12:43:12:47 | "bar" | CalleeFlexibleAccessPath | prettier.format |
+| autogenerated/TaintedPath/prettier.js:12:43:12:47 | "bar" | InputArgumentIndex | 0 |
+| autogenerated/TaintedPath/prettier.js:12:43:12:47 | "bar" | calleeImports | prettier |
+| autogenerated/TaintedPath/prettier.js:12:43:12:47 | "bar" | contextFunctionInterfaces |  |
+| autogenerated/TaintedPath/prettier.js:12:43:12:47 | "bar" | contextSurroundingFunctionParameters | (req, res)\n(options) |
+| autogenerated/TaintedPath/prettier.js:12:43:12:47 | "bar" | enclosingFunctionBody | req res p req params prettier resolveConfig p then options formatted prettier format foo options prettier resolveConfig foo config p then options formatted prettier format bar options |
+| autogenerated/TaintedPath/prettier.js:12:43:12:47 | "bar" | enclosingFunctionName | app.get#functionalargument |
+| autogenerated/TaintedPath/prettier.js:12:43:12:47 | "bar" | fileImports | express prettier |
+| autogenerated/TaintedPath/prettier.js:12:43:12:47 | "bar" | receiverName | prettier |
+| autogenerated/TaintedPath/prettier.js:12:50:12:56 | options | CalleeFlexibleAccessPath | prettier.format |
+| autogenerated/TaintedPath/prettier.js:12:50:12:56 | options | InputArgumentIndex | 1 |
+| autogenerated/TaintedPath/prettier.js:12:50:12:56 | options | calleeImports | prettier |
+| autogenerated/TaintedPath/prettier.js:12:50:12:56 | options | contextFunctionInterfaces |  |
+| autogenerated/TaintedPath/prettier.js:12:50:12:56 | options | contextSurroundingFunctionParameters | (req, res)\n(options) |
+| autogenerated/TaintedPath/prettier.js:12:50:12:56 | options | enclosingFunctionBody | req res p req params prettier resolveConfig p then options formatted prettier format foo options prettier resolveConfig foo config p then options formatted prettier format bar options |
+| autogenerated/TaintedPath/prettier.js:12:50:12:56 | options | enclosingFunctionName | app.get#functionalargument |
+| autogenerated/TaintedPath/prettier.js:12:50:12:56 | options | fileImports | express prettier |
+| autogenerated/TaintedPath/prettier.js:12:50:12:56 | options | receiverName | prettier |
 | autogenerated/TaintedPath/pupeteer.js:1:27:1:37 | 'puppeteer' | CalleeFlexibleAccessPath | require |
 | autogenerated/TaintedPath/pupeteer.js:1:27:1:37 | 'puppeteer' | InputArgumentIndex | 0 |
 | autogenerated/TaintedPath/pupeteer.js:1:27:1:37 | 'puppeteer' | calleeImports |  |
@@ -8248,25 +10468,25 @@ tokenFeatures
 | autogenerated/TaintedPath/tainted-access-paths.js:1:18:1:21 | 'fs' | calleeImports |  |
 | autogenerated/TaintedPath/tainted-access-paths.js:1:18:1:21 | 'fs' | contextFunctionInterfaces |  |
 | autogenerated/TaintedPath/tainted-access-paths.js:1:18:1:21 | 'fs' | contextSurroundingFunctionParameters |  |
-| autogenerated/TaintedPath/tainted-access-paths.js:1:18:1:21 | 'fs' | fileImports | fs http url |
+| autogenerated/TaintedPath/tainted-access-paths.js:1:18:1:21 | 'fs' | fileImports | chownr fs http node:fs url |
 | autogenerated/TaintedPath/tainted-access-paths.js:2:20:2:25 | 'http' | CalleeFlexibleAccessPath | require |
 | autogenerated/TaintedPath/tainted-access-paths.js:2:20:2:25 | 'http' | InputArgumentIndex | 0 |
 | autogenerated/TaintedPath/tainted-access-paths.js:2:20:2:25 | 'http' | calleeImports |  |
 | autogenerated/TaintedPath/tainted-access-paths.js:2:20:2:25 | 'http' | contextFunctionInterfaces |  |
 | autogenerated/TaintedPath/tainted-access-paths.js:2:20:2:25 | 'http' | contextSurroundingFunctionParameters |  |
-| autogenerated/TaintedPath/tainted-access-paths.js:2:20:2:25 | 'http' | fileImports | fs http url |
+| autogenerated/TaintedPath/tainted-access-paths.js:2:20:2:25 | 'http' | fileImports | chownr fs http node:fs url |
 | autogenerated/TaintedPath/tainted-access-paths.js:3:19:3:23 | 'url' | CalleeFlexibleAccessPath | require |
 | autogenerated/TaintedPath/tainted-access-paths.js:3:19:3:23 | 'url' | InputArgumentIndex | 0 |
 | autogenerated/TaintedPath/tainted-access-paths.js:3:19:3:23 | 'url' | calleeImports |  |
 | autogenerated/TaintedPath/tainted-access-paths.js:3:19:3:23 | 'url' | contextFunctionInterfaces |  |
 | autogenerated/TaintedPath/tainted-access-paths.js:3:19:3:23 | 'url' | contextSurroundingFunctionParameters |  |
-| autogenerated/TaintedPath/tainted-access-paths.js:3:19:3:23 | 'url' | fileImports | fs http url |
+| autogenerated/TaintedPath/tainted-access-paths.js:3:19:3:23 | 'url' | fileImports | chownr fs http node:fs url |
 | autogenerated/TaintedPath/tainted-access-paths.js:5:32:32:1 | functio ... OT OK\\n} | CalleeFlexibleAccessPath | http.createServer |
 | autogenerated/TaintedPath/tainted-access-paths.js:5:32:32:1 | functio ... OT OK\\n} | InputArgumentIndex | 0 |
 | autogenerated/TaintedPath/tainted-access-paths.js:5:32:32:1 | functio ... OT OK\\n} | calleeImports | http |
 | autogenerated/TaintedPath/tainted-access-paths.js:5:32:32:1 | functio ... OT OK\\n} | contextFunctionInterfaces |  |
 | autogenerated/TaintedPath/tainted-access-paths.js:5:32:32:1 | functio ... OT OK\\n} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/tainted-access-paths.js:5:32:32:1 | functio ... OT OK\\n} | fileImports | fs http url |
+| autogenerated/TaintedPath/tainted-access-paths.js:5:32:32:1 | functio ... OT OK\\n} | fileImports | chownr fs http node:fs url |
 | autogenerated/TaintedPath/tainted-access-paths.js:5:32:32:1 | functio ... OT OK\\n} | receiverName | http |
 | autogenerated/TaintedPath/tainted-access-paths.js:6:24:6:30 | req.url | CalleeFlexibleAccessPath | url.parse |
 | autogenerated/TaintedPath/tainted-access-paths.js:6:24:6:30 | req.url | InputArgumentIndex | 0 |
@@ -8275,7 +10495,7 @@ tokenFeatures
 | autogenerated/TaintedPath/tainted-access-paths.js:6:24:6:30 | req.url | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/tainted-access-paths.js:6:24:6:30 | req.url | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path obj bla something path fs readFileSync obj sub obj sub safe fs readFileSync obj sub obj sub2 safe random fs readFileSync obj sub2 random obj sub3 safe fs readFileSync obj sub3 obj sub4 fs readFileSync obj sub4 fs readFileSync obj sub4 fs readFileSync obj sub4 |
 | autogenerated/TaintedPath/tainted-access-paths.js:6:24:6:30 | req.url | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/tainted-access-paths.js:6:24:6:30 | req.url | fileImports | fs http url |
+| autogenerated/TaintedPath/tainted-access-paths.js:6:24:6:30 | req.url | fileImports | chownr fs http node:fs url |
 | autogenerated/TaintedPath/tainted-access-paths.js:6:24:6:30 | req.url | receiverName | url |
 | autogenerated/TaintedPath/tainted-access-paths.js:6:33:6:36 | true | CalleeFlexibleAccessPath | url.parse |
 | autogenerated/TaintedPath/tainted-access-paths.js:6:33:6:36 | true | InputArgumentIndex | 1 |
@@ -8284,7 +10504,7 @@ tokenFeatures
 | autogenerated/TaintedPath/tainted-access-paths.js:6:33:6:36 | true | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/tainted-access-paths.js:6:33:6:36 | true | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path obj bla something path fs readFileSync obj sub obj sub safe fs readFileSync obj sub obj sub2 safe random fs readFileSync obj sub2 random obj sub3 safe fs readFileSync obj sub3 obj sub4 fs readFileSync obj sub4 fs readFileSync obj sub4 fs readFileSync obj sub4 |
 | autogenerated/TaintedPath/tainted-access-paths.js:6:33:6:36 | true | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/tainted-access-paths.js:6:33:6:36 | true | fileImports | fs http url |
+| autogenerated/TaintedPath/tainted-access-paths.js:6:33:6:36 | true | fileImports | chownr fs http node:fs url |
 | autogenerated/TaintedPath/tainted-access-paths.js:6:33:6:36 | true | receiverName | url |
 | autogenerated/TaintedPath/tainted-access-paths.js:8:19:8:22 | path | CalleeFlexibleAccessPath | fs.readFileSync |
 | autogenerated/TaintedPath/tainted-access-paths.js:8:19:8:22 | path | InputArgumentIndex | 0 |
@@ -8293,7 +10513,7 @@ tokenFeatures
 | autogenerated/TaintedPath/tainted-access-paths.js:8:19:8:22 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/tainted-access-paths.js:8:19:8:22 | path | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path obj bla something path fs readFileSync obj sub obj sub safe fs readFileSync obj sub obj sub2 safe random fs readFileSync obj sub2 random obj sub3 safe fs readFileSync obj sub3 obj sub4 fs readFileSync obj sub4 fs readFileSync obj sub4 fs readFileSync obj sub4 |
 | autogenerated/TaintedPath/tainted-access-paths.js:8:19:8:22 | path | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/tainted-access-paths.js:8:19:8:22 | path | fileImports | fs http url |
+| autogenerated/TaintedPath/tainted-access-paths.js:8:19:8:22 | path | fileImports | chownr fs http node:fs url |
 | autogenerated/TaintedPath/tainted-access-paths.js:8:19:8:22 | path | receiverName | fs |
 | autogenerated/TaintedPath/tainted-access-paths.js:12:19:12:25 | obj.sub | CalleeFlexibleAccessPath | fs.readFileSync |
 | autogenerated/TaintedPath/tainted-access-paths.js:12:19:12:25 | obj.sub | InputArgumentIndex | 0 |
@@ -8302,7 +10522,7 @@ tokenFeatures
 | autogenerated/TaintedPath/tainted-access-paths.js:12:19:12:25 | obj.sub | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/tainted-access-paths.js:12:19:12:25 | obj.sub | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path obj bla something path fs readFileSync obj sub obj sub safe fs readFileSync obj sub obj sub2 safe random fs readFileSync obj sub2 random obj sub3 safe fs readFileSync obj sub3 obj sub4 fs readFileSync obj sub4 fs readFileSync obj sub4 fs readFileSync obj sub4 |
 | autogenerated/TaintedPath/tainted-access-paths.js:12:19:12:25 | obj.sub | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/tainted-access-paths.js:12:19:12:25 | obj.sub | fileImports | fs http url |
+| autogenerated/TaintedPath/tainted-access-paths.js:12:19:12:25 | obj.sub | fileImports | chownr fs http node:fs url |
 | autogenerated/TaintedPath/tainted-access-paths.js:12:19:12:25 | obj.sub | receiverName | fs |
 | autogenerated/TaintedPath/tainted-access-paths.js:16:19:16:25 | obj.sub | CalleeFlexibleAccessPath | fs.readFileSync |
 | autogenerated/TaintedPath/tainted-access-paths.js:16:19:16:25 | obj.sub | InputArgumentIndex | 0 |
@@ -8311,7 +10531,7 @@ tokenFeatures
 | autogenerated/TaintedPath/tainted-access-paths.js:16:19:16:25 | obj.sub | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/tainted-access-paths.js:16:19:16:25 | obj.sub | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path obj bla something path fs readFileSync obj sub obj sub safe fs readFileSync obj sub obj sub2 safe random fs readFileSync obj sub2 random obj sub3 safe fs readFileSync obj sub3 obj sub4 fs readFileSync obj sub4 fs readFileSync obj sub4 fs readFileSync obj sub4 |
 | autogenerated/TaintedPath/tainted-access-paths.js:16:19:16:25 | obj.sub | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/tainted-access-paths.js:16:19:16:25 | obj.sub | fileImports | fs http url |
+| autogenerated/TaintedPath/tainted-access-paths.js:16:19:16:25 | obj.sub | fileImports | chownr fs http node:fs url |
 | autogenerated/TaintedPath/tainted-access-paths.js:16:19:16:25 | obj.sub | receiverName | fs |
 | autogenerated/TaintedPath/tainted-access-paths.js:20:21:20:28 | obj.sub2 | CalleeFlexibleAccessPath | fs.readFileSync |
 | autogenerated/TaintedPath/tainted-access-paths.js:20:21:20:28 | obj.sub2 | InputArgumentIndex | 0 |
@@ -8320,7 +10540,7 @@ tokenFeatures
 | autogenerated/TaintedPath/tainted-access-paths.js:20:21:20:28 | obj.sub2 | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/tainted-access-paths.js:20:21:20:28 | obj.sub2 | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path obj bla something path fs readFileSync obj sub obj sub safe fs readFileSync obj sub obj sub2 safe random fs readFileSync obj sub2 random obj sub3 safe fs readFileSync obj sub3 obj sub4 fs readFileSync obj sub4 fs readFileSync obj sub4 fs readFileSync obj sub4 |
 | autogenerated/TaintedPath/tainted-access-paths.js:20:21:20:28 | obj.sub2 | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/tainted-access-paths.js:20:21:20:28 | obj.sub2 | fileImports | fs http url |
+| autogenerated/TaintedPath/tainted-access-paths.js:20:21:20:28 | obj.sub2 | fileImports | chownr fs http node:fs url |
 | autogenerated/TaintedPath/tainted-access-paths.js:20:21:20:28 | obj.sub2 | receiverName | fs |
 | autogenerated/TaintedPath/tainted-access-paths.js:26:19:26:26 | obj.sub3 | CalleeFlexibleAccessPath | fs.readFileSync |
 | autogenerated/TaintedPath/tainted-access-paths.js:26:19:26:26 | obj.sub3 | InputArgumentIndex | 0 |
@@ -8329,7 +10549,7 @@ tokenFeatures
 | autogenerated/TaintedPath/tainted-access-paths.js:26:19:26:26 | obj.sub3 | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/tainted-access-paths.js:26:19:26:26 | obj.sub3 | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path obj bla something path fs readFileSync obj sub obj sub safe fs readFileSync obj sub obj sub2 safe random fs readFileSync obj sub2 random obj sub3 safe fs readFileSync obj sub3 obj sub4 fs readFileSync obj sub4 fs readFileSync obj sub4 fs readFileSync obj sub4 |
 | autogenerated/TaintedPath/tainted-access-paths.js:26:19:26:26 | obj.sub3 | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/tainted-access-paths.js:26:19:26:26 | obj.sub3 | fileImports | fs http url |
+| autogenerated/TaintedPath/tainted-access-paths.js:26:19:26:26 | obj.sub3 | fileImports | chownr fs http node:fs url |
 | autogenerated/TaintedPath/tainted-access-paths.js:26:19:26:26 | obj.sub3 | receiverName | fs |
 | autogenerated/TaintedPath/tainted-access-paths.js:29:21:29:28 | obj.sub4 | CalleeFlexibleAccessPath | fs.readFileSync |
 | autogenerated/TaintedPath/tainted-access-paths.js:29:21:29:28 | obj.sub4 | InputArgumentIndex | 0 |
@@ -8338,7 +10558,7 @@ tokenFeatures
 | autogenerated/TaintedPath/tainted-access-paths.js:29:21:29:28 | obj.sub4 | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/tainted-access-paths.js:29:21:29:28 | obj.sub4 | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path obj bla something path fs readFileSync obj sub obj sub safe fs readFileSync obj sub obj sub2 safe random fs readFileSync obj sub2 random obj sub3 safe fs readFileSync obj sub3 obj sub4 fs readFileSync obj sub4 fs readFileSync obj sub4 fs readFileSync obj sub4 |
 | autogenerated/TaintedPath/tainted-access-paths.js:29:21:29:28 | obj.sub4 | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/tainted-access-paths.js:29:21:29:28 | obj.sub4 | fileImports | fs http url |
+| autogenerated/TaintedPath/tainted-access-paths.js:29:21:29:28 | obj.sub4 | fileImports | chownr fs http node:fs url |
 | autogenerated/TaintedPath/tainted-access-paths.js:29:21:29:28 | obj.sub4 | receiverName | fs |
 | autogenerated/TaintedPath/tainted-access-paths.js:30:23:30:30 | obj.sub4 | CalleeFlexibleAccessPath | fs.readFileSync |
 | autogenerated/TaintedPath/tainted-access-paths.js:30:23:30:30 | obj.sub4 | InputArgumentIndex | 0 |
@@ -8347,7 +10567,7 @@ tokenFeatures
 | autogenerated/TaintedPath/tainted-access-paths.js:30:23:30:30 | obj.sub4 | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/tainted-access-paths.js:30:23:30:30 | obj.sub4 | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path obj bla something path fs readFileSync obj sub obj sub safe fs readFileSync obj sub obj sub2 safe random fs readFileSync obj sub2 random obj sub3 safe fs readFileSync obj sub3 obj sub4 fs readFileSync obj sub4 fs readFileSync obj sub4 fs readFileSync obj sub4 |
 | autogenerated/TaintedPath/tainted-access-paths.js:30:23:30:30 | obj.sub4 | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/tainted-access-paths.js:30:23:30:30 | obj.sub4 | fileImports | fs http url |
+| autogenerated/TaintedPath/tainted-access-paths.js:30:23:30:30 | obj.sub4 | fileImports | chownr fs http node:fs url |
 | autogenerated/TaintedPath/tainted-access-paths.js:30:23:30:30 | obj.sub4 | receiverName | fs |
 | autogenerated/TaintedPath/tainted-access-paths.js:31:23:31:30 | obj.sub4 | CalleeFlexibleAccessPath | fs.readFileSync |
 | autogenerated/TaintedPath/tainted-access-paths.js:31:23:31:30 | obj.sub4 | InputArgumentIndex | 0 |
@@ -8356,8 +10576,111 @@ tokenFeatures
 | autogenerated/TaintedPath/tainted-access-paths.js:31:23:31:30 | obj.sub4 | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/tainted-access-paths.js:31:23:31:30 | obj.sub4 | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path obj bla something path fs readFileSync obj sub obj sub safe fs readFileSync obj sub obj sub2 safe random fs readFileSync obj sub2 random obj sub3 safe fs readFileSync obj sub3 obj sub4 fs readFileSync obj sub4 fs readFileSync obj sub4 fs readFileSync obj sub4 |
 | autogenerated/TaintedPath/tainted-access-paths.js:31:23:31:30 | obj.sub4 | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/tainted-access-paths.js:31:23:31:30 | obj.sub4 | fileImports | fs http url |
+| autogenerated/TaintedPath/tainted-access-paths.js:31:23:31:30 | obj.sub4 | fileImports | chownr fs http node:fs url |
 | autogenerated/TaintedPath/tainted-access-paths.js:31:23:31:30 | obj.sub4 | receiverName | fs |
+| autogenerated/TaintedPath/tainted-access-paths.js:36:22:36:30 | 'node:fs' | CalleeFlexibleAccessPath | require |
+| autogenerated/TaintedPath/tainted-access-paths.js:36:22:36:30 | 'node:fs' | InputArgumentIndex | 0 |
+| autogenerated/TaintedPath/tainted-access-paths.js:36:22:36:30 | 'node:fs' | calleeImports |  |
+| autogenerated/TaintedPath/tainted-access-paths.js:36:22:36:30 | 'node:fs' | contextFunctionInterfaces |  |
+| autogenerated/TaintedPath/tainted-access-paths.js:36:22:36:30 | 'node:fs' | contextSurroundingFunctionParameters |  |
+| autogenerated/TaintedPath/tainted-access-paths.js:36:22:36:30 | 'node:fs' | fileImports | chownr fs http node:fs url |
+| autogenerated/TaintedPath/tainted-access-paths.js:38:33:41:1 | functio ... OT OK\\n} | CalleeFlexibleAccessPath | http.createServer |
+| autogenerated/TaintedPath/tainted-access-paths.js:38:33:41:1 | functio ... OT OK\\n} | InputArgumentIndex | 0 |
+| autogenerated/TaintedPath/tainted-access-paths.js:38:33:41:1 | functio ... OT OK\\n} | calleeImports | http |
+| autogenerated/TaintedPath/tainted-access-paths.js:38:33:41:1 | functio ... OT OK\\n} | contextFunctionInterfaces |  |
+| autogenerated/TaintedPath/tainted-access-paths.js:38:33:41:1 | functio ... OT OK\\n} | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/TaintedPath/tainted-access-paths.js:38:33:41:1 | functio ... OT OK\\n} | fileImports | chownr fs http node:fs url |
+| autogenerated/TaintedPath/tainted-access-paths.js:38:33:41:1 | functio ... OT OK\\n} | receiverName | http |
+| autogenerated/TaintedPath/tainted-access-paths.js:39:24:39:30 | req.url | CalleeFlexibleAccessPath | url.parse |
+| autogenerated/TaintedPath/tainted-access-paths.js:39:24:39:30 | req.url | InputArgumentIndex | 0 |
+| autogenerated/TaintedPath/tainted-access-paths.js:39:24:39:30 | req.url | calleeImports | url |
+| autogenerated/TaintedPath/tainted-access-paths.js:39:24:39:30 | req.url | contextFunctionInterfaces |  |
+| autogenerated/TaintedPath/tainted-access-paths.js:39:24:39:30 | req.url | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/TaintedPath/tainted-access-paths.js:39:24:39:30 | req.url | enclosingFunctionBody | req res path url parse req url true query path nodefs readFileSync path |
+| autogenerated/TaintedPath/tainted-access-paths.js:39:24:39:30 | req.url | enclosingFunctionName | http.createServer#functionalargument |
+| autogenerated/TaintedPath/tainted-access-paths.js:39:24:39:30 | req.url | fileImports | chownr fs http node:fs url |
+| autogenerated/TaintedPath/tainted-access-paths.js:39:24:39:30 | req.url | receiverName | url |
+| autogenerated/TaintedPath/tainted-access-paths.js:39:33:39:36 | true | CalleeFlexibleAccessPath | url.parse |
+| autogenerated/TaintedPath/tainted-access-paths.js:39:33:39:36 | true | InputArgumentIndex | 1 |
+| autogenerated/TaintedPath/tainted-access-paths.js:39:33:39:36 | true | calleeImports | url |
+| autogenerated/TaintedPath/tainted-access-paths.js:39:33:39:36 | true | contextFunctionInterfaces |  |
+| autogenerated/TaintedPath/tainted-access-paths.js:39:33:39:36 | true | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/TaintedPath/tainted-access-paths.js:39:33:39:36 | true | enclosingFunctionBody | req res path url parse req url true query path nodefs readFileSync path |
+| autogenerated/TaintedPath/tainted-access-paths.js:39:33:39:36 | true | enclosingFunctionName | http.createServer#functionalargument |
+| autogenerated/TaintedPath/tainted-access-paths.js:39:33:39:36 | true | fileImports | chownr fs http node:fs url |
+| autogenerated/TaintedPath/tainted-access-paths.js:39:33:39:36 | true | receiverName | url |
+| autogenerated/TaintedPath/tainted-access-paths.js:40:23:40:26 | path | CalleeFlexibleAccessPath | nodefs.readFileSync |
+| autogenerated/TaintedPath/tainted-access-paths.js:40:23:40:26 | path | InputArgumentIndex | 0 |
+| autogenerated/TaintedPath/tainted-access-paths.js:40:23:40:26 | path | calleeImports | node:fs |
+| autogenerated/TaintedPath/tainted-access-paths.js:40:23:40:26 | path | contextFunctionInterfaces |  |
+| autogenerated/TaintedPath/tainted-access-paths.js:40:23:40:26 | path | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/TaintedPath/tainted-access-paths.js:40:23:40:26 | path | enclosingFunctionBody | req res path url parse req url true query path nodefs readFileSync path |
+| autogenerated/TaintedPath/tainted-access-paths.js:40:23:40:26 | path | enclosingFunctionName | http.createServer#functionalargument |
+| autogenerated/TaintedPath/tainted-access-paths.js:40:23:40:26 | path | fileImports | chownr fs http node:fs url |
+| autogenerated/TaintedPath/tainted-access-paths.js:40:23:40:26 | path | receiverName | nodefs |
+| autogenerated/TaintedPath/tainted-access-paths.js:45:24:45:31 | "chownr" | CalleeFlexibleAccessPath | require |
+| autogenerated/TaintedPath/tainted-access-paths.js:45:24:45:31 | "chownr" | InputArgumentIndex | 0 |
+| autogenerated/TaintedPath/tainted-access-paths.js:45:24:45:31 | "chownr" | calleeImports |  |
+| autogenerated/TaintedPath/tainted-access-paths.js:45:24:45:31 | "chownr" | contextFunctionInterfaces |  |
+| autogenerated/TaintedPath/tainted-access-paths.js:45:24:45:31 | "chownr" | contextSurroundingFunctionParameters |  |
+| autogenerated/TaintedPath/tainted-access-paths.js:45:24:45:31 | "chownr" | fileImports | chownr fs http node:fs url |
+| autogenerated/TaintedPath/tainted-access-paths.js:47:33:50:1 | functio ... OT OK\\n} | CalleeFlexibleAccessPath | http.createServer |
+| autogenerated/TaintedPath/tainted-access-paths.js:47:33:50:1 | functio ... OT OK\\n} | InputArgumentIndex | 0 |
+| autogenerated/TaintedPath/tainted-access-paths.js:47:33:50:1 | functio ... OT OK\\n} | calleeImports | http |
+| autogenerated/TaintedPath/tainted-access-paths.js:47:33:50:1 | functio ... OT OK\\n} | contextFunctionInterfaces |  |
+| autogenerated/TaintedPath/tainted-access-paths.js:47:33:50:1 | functio ... OT OK\\n} | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/TaintedPath/tainted-access-paths.js:47:33:50:1 | functio ... OT OK\\n} | fileImports | chownr fs http node:fs url |
+| autogenerated/TaintedPath/tainted-access-paths.js:47:33:50:1 | functio ... OT OK\\n} | receiverName | http |
+| autogenerated/TaintedPath/tainted-access-paths.js:48:24:48:30 | req.url | CalleeFlexibleAccessPath | url.parse |
+| autogenerated/TaintedPath/tainted-access-paths.js:48:24:48:30 | req.url | InputArgumentIndex | 0 |
+| autogenerated/TaintedPath/tainted-access-paths.js:48:24:48:30 | req.url | calleeImports | url |
+| autogenerated/TaintedPath/tainted-access-paths.js:48:24:48:30 | req.url | contextFunctionInterfaces |  |
+| autogenerated/TaintedPath/tainted-access-paths.js:48:24:48:30 | req.url | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/TaintedPath/tainted-access-paths.js:48:24:48:30 | req.url | enclosingFunctionBody | req res path url parse req url true query path chownr path someuid somegid err |
+| autogenerated/TaintedPath/tainted-access-paths.js:48:24:48:30 | req.url | enclosingFunctionName | http.createServer#functionalargument |
+| autogenerated/TaintedPath/tainted-access-paths.js:48:24:48:30 | req.url | fileImports | chownr fs http node:fs url |
+| autogenerated/TaintedPath/tainted-access-paths.js:48:24:48:30 | req.url | receiverName | url |
+| autogenerated/TaintedPath/tainted-access-paths.js:48:33:48:36 | true | CalleeFlexibleAccessPath | url.parse |
+| autogenerated/TaintedPath/tainted-access-paths.js:48:33:48:36 | true | InputArgumentIndex | 1 |
+| autogenerated/TaintedPath/tainted-access-paths.js:48:33:48:36 | true | calleeImports | url |
+| autogenerated/TaintedPath/tainted-access-paths.js:48:33:48:36 | true | contextFunctionInterfaces |  |
+| autogenerated/TaintedPath/tainted-access-paths.js:48:33:48:36 | true | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/TaintedPath/tainted-access-paths.js:48:33:48:36 | true | enclosingFunctionBody | req res path url parse req url true query path chownr path someuid somegid err |
+| autogenerated/TaintedPath/tainted-access-paths.js:48:33:48:36 | true | enclosingFunctionName | http.createServer#functionalargument |
+| autogenerated/TaintedPath/tainted-access-paths.js:48:33:48:36 | true | fileImports | chownr fs http node:fs url |
+| autogenerated/TaintedPath/tainted-access-paths.js:48:33:48:36 | true | receiverName | url |
+| autogenerated/TaintedPath/tainted-access-paths.js:49:10:49:13 | path | CalleeFlexibleAccessPath | chownr |
+| autogenerated/TaintedPath/tainted-access-paths.js:49:10:49:13 | path | InputArgumentIndex | 0 |
+| autogenerated/TaintedPath/tainted-access-paths.js:49:10:49:13 | path | calleeImports | chownr |
+| autogenerated/TaintedPath/tainted-access-paths.js:49:10:49:13 | path | contextFunctionInterfaces |  |
+| autogenerated/TaintedPath/tainted-access-paths.js:49:10:49:13 | path | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/TaintedPath/tainted-access-paths.js:49:10:49:13 | path | enclosingFunctionBody | req res path url parse req url true query path chownr path someuid somegid err |
+| autogenerated/TaintedPath/tainted-access-paths.js:49:10:49:13 | path | enclosingFunctionName | http.createServer#functionalargument |
+| autogenerated/TaintedPath/tainted-access-paths.js:49:10:49:13 | path | fileImports | chownr fs http node:fs url |
+| autogenerated/TaintedPath/tainted-access-paths.js:49:16:49:24 | "someuid" | CalleeFlexibleAccessPath | chownr |
+| autogenerated/TaintedPath/tainted-access-paths.js:49:16:49:24 | "someuid" | InputArgumentIndex | 1 |
+| autogenerated/TaintedPath/tainted-access-paths.js:49:16:49:24 | "someuid" | calleeImports | chownr |
+| autogenerated/TaintedPath/tainted-access-paths.js:49:16:49:24 | "someuid" | contextFunctionInterfaces |  |
+| autogenerated/TaintedPath/tainted-access-paths.js:49:16:49:24 | "someuid" | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/TaintedPath/tainted-access-paths.js:49:16:49:24 | "someuid" | enclosingFunctionBody | req res path url parse req url true query path chownr path someuid somegid err |
+| autogenerated/TaintedPath/tainted-access-paths.js:49:16:49:24 | "someuid" | enclosingFunctionName | http.createServer#functionalargument |
+| autogenerated/TaintedPath/tainted-access-paths.js:49:16:49:24 | "someuid" | fileImports | chownr fs http node:fs url |
+| autogenerated/TaintedPath/tainted-access-paths.js:49:27:49:35 | "somegid" | CalleeFlexibleAccessPath | chownr |
+| autogenerated/TaintedPath/tainted-access-paths.js:49:27:49:35 | "somegid" | InputArgumentIndex | 2 |
+| autogenerated/TaintedPath/tainted-access-paths.js:49:27:49:35 | "somegid" | calleeImports | chownr |
+| autogenerated/TaintedPath/tainted-access-paths.js:49:27:49:35 | "somegid" | contextFunctionInterfaces |  |
+| autogenerated/TaintedPath/tainted-access-paths.js:49:27:49:35 | "somegid" | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/TaintedPath/tainted-access-paths.js:49:27:49:35 | "somegid" | enclosingFunctionBody | req res path url parse req url true query path chownr path someuid somegid err |
+| autogenerated/TaintedPath/tainted-access-paths.js:49:27:49:35 | "somegid" | enclosingFunctionName | http.createServer#functionalargument |
+| autogenerated/TaintedPath/tainted-access-paths.js:49:27:49:35 | "somegid" | fileImports | chownr fs http node:fs url |
+| autogenerated/TaintedPath/tainted-access-paths.js:49:38:49:54 | function (err) {} | CalleeFlexibleAccessPath | chownr |
+| autogenerated/TaintedPath/tainted-access-paths.js:49:38:49:54 | function (err) {} | InputArgumentIndex | 3 |
+| autogenerated/TaintedPath/tainted-access-paths.js:49:38:49:54 | function (err) {} | calleeImports | chownr |
+| autogenerated/TaintedPath/tainted-access-paths.js:49:38:49:54 | function (err) {} | contextFunctionInterfaces |  |
+| autogenerated/TaintedPath/tainted-access-paths.js:49:38:49:54 | function (err) {} | contextSurroundingFunctionParameters | (req, res)\n(err) |
+| autogenerated/TaintedPath/tainted-access-paths.js:49:38:49:54 | function (err) {} | enclosingFunctionBody | req res path url parse req url true query path chownr path someuid somegid err |
+| autogenerated/TaintedPath/tainted-access-paths.js:49:38:49:54 | function (err) {} | enclosingFunctionName | http.createServer#functionalargument |
+| autogenerated/TaintedPath/tainted-access-paths.js:49:38:49:54 | function (err) {} | fileImports | chownr fs http node:fs url |
 | autogenerated/TaintedPath/tainted-array-steps.js:1:18:1:21 | 'fs' | CalleeFlexibleAccessPath | require |
 | autogenerated/TaintedPath/tainted-array-steps.js:1:18:1:21 | 'fs' | InputArgumentIndex | 0 |
 | autogenerated/TaintedPath/tainted-array-steps.js:1:18:1:21 | 'fs' | calleeImports |  |
@@ -8475,20 +10798,20 @@ tokenFeatures
 | autogenerated/TaintedPath/tainted-require.js:1:23:1:31 | 'express' | calleeImports |  |
 | autogenerated/TaintedPath/tainted-require.js:1:23:1:31 | 'express' | contextFunctionInterfaces |  |
 | autogenerated/TaintedPath/tainted-require.js:1:23:1:31 | 'express' | contextSurroundingFunctionParameters |  |
-| autogenerated/TaintedPath/tainted-require.js:1:23:1:31 | 'express' | fileImports | express |
+| autogenerated/TaintedPath/tainted-require.js:1:23:1:31 | 'express' | fileImports | express resolve |
 | autogenerated/TaintedPath/tainted-require.js:5:9:5:20 | '/some/path' | CalleeFlexibleAccessPath | app.get |
 | autogenerated/TaintedPath/tainted-require.js:5:9:5:20 | '/some/path' | InputArgumentIndex | 0 |
 | autogenerated/TaintedPath/tainted-require.js:5:9:5:20 | '/some/path' | calleeImports | express |
 | autogenerated/TaintedPath/tainted-require.js:5:9:5:20 | '/some/path' | contextFunctionInterfaces |  |
 | autogenerated/TaintedPath/tainted-require.js:5:9:5:20 | '/some/path' | contextSurroundingFunctionParameters |  |
-| autogenerated/TaintedPath/tainted-require.js:5:9:5:20 | '/some/path' | fileImports | express |
+| autogenerated/TaintedPath/tainted-require.js:5:9:5:20 | '/some/path' | fileImports | express resolve |
 | autogenerated/TaintedPath/tainted-require.js:5:9:5:20 | '/some/path' | receiverName | app |
 | autogenerated/TaintedPath/tainted-require.js:5:23:8:1 | functio ... e"));\\n} | CalleeFlexibleAccessPath | app.get |
 | autogenerated/TaintedPath/tainted-require.js:5:23:8:1 | functio ... e"));\\n} | InputArgumentIndex | 1 |
 | autogenerated/TaintedPath/tainted-require.js:5:23:8:1 | functio ... e"));\\n} | calleeImports | express |
 | autogenerated/TaintedPath/tainted-require.js:5:23:8:1 | functio ... e"));\\n} | contextFunctionInterfaces |  |
 | autogenerated/TaintedPath/tainted-require.js:5:23:8:1 | functio ... e"));\\n} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/tainted-require.js:5:23:8:1 | functio ... e"));\\n} | fileImports | express |
+| autogenerated/TaintedPath/tainted-require.js:5:23:8:1 | functio ... e"));\\n} | fileImports | express resolve |
 | autogenerated/TaintedPath/tainted-require.js:5:23:8:1 | functio ... e"));\\n} | receiverName | app |
 | autogenerated/TaintedPath/tainted-require.js:7:19:7:37 | req.param("module") | CalleeFlexibleAccessPath | require |
 | autogenerated/TaintedPath/tainted-require.js:7:19:7:37 | req.param("module") | InputArgumentIndex | 0 |
@@ -8497,15 +10820,94 @@ tokenFeatures
 | autogenerated/TaintedPath/tainted-require.js:7:19:7:37 | req.param("module") | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/tainted-require.js:7:19:7:37 | req.param("module") | enclosingFunctionBody | req res m require req param module |
 | autogenerated/TaintedPath/tainted-require.js:7:19:7:37 | req.param("module") | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/tainted-require.js:7:19:7:37 | req.param("module") | fileImports | express |
+| autogenerated/TaintedPath/tainted-require.js:7:19:7:37 | req.param("module") | fileImports | express resolve |
 | autogenerated/TaintedPath/tainted-require.js:7:29:7:36 | "module" | CalleeFlexibleAccessPath | req.param |
 | autogenerated/TaintedPath/tainted-require.js:7:29:7:36 | "module" | InputArgumentIndex | 0 |
 | autogenerated/TaintedPath/tainted-require.js:7:29:7:36 | "module" | contextFunctionInterfaces |  |
 | autogenerated/TaintedPath/tainted-require.js:7:29:7:36 | "module" | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/tainted-require.js:7:29:7:36 | "module" | enclosingFunctionBody | req res m require req param module |
 | autogenerated/TaintedPath/tainted-require.js:7:29:7:36 | "module" | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/tainted-require.js:7:29:7:36 | "module" | fileImports | express |
+| autogenerated/TaintedPath/tainted-require.js:7:29:7:36 | "module" | fileImports | express resolve |
 | autogenerated/TaintedPath/tainted-require.js:7:29:7:36 | "module" | receiverName | req |
+| autogenerated/TaintedPath/tainted-require.js:10:25:10:33 | "resolve" | CalleeFlexibleAccessPath | require |
+| autogenerated/TaintedPath/tainted-require.js:10:25:10:33 | "resolve" | InputArgumentIndex | 0 |
+| autogenerated/TaintedPath/tainted-require.js:10:25:10:33 | "resolve" | calleeImports |  |
+| autogenerated/TaintedPath/tainted-require.js:10:25:10:33 | "resolve" | contextFunctionInterfaces |  |
+| autogenerated/TaintedPath/tainted-require.js:10:25:10:33 | "resolve" | contextSurroundingFunctionParameters |  |
+| autogenerated/TaintedPath/tainted-require.js:10:25:10:33 | "resolve" | fileImports | express resolve |
+| autogenerated/TaintedPath/tainted-require.js:11:9:11:20 | '/some/path' | CalleeFlexibleAccessPath | app.get |
+| autogenerated/TaintedPath/tainted-require.js:11:9:11:20 | '/some/path' | InputArgumentIndex | 0 |
+| autogenerated/TaintedPath/tainted-require.js:11:9:11:20 | '/some/path' | calleeImports | express |
+| autogenerated/TaintedPath/tainted-require.js:11:9:11:20 | '/some/path' | contextFunctionInterfaces |  |
+| autogenerated/TaintedPath/tainted-require.js:11:9:11:20 | '/some/path' | contextSurroundingFunctionParameters |  |
+| autogenerated/TaintedPath/tainted-require.js:11:9:11:20 | '/some/path' | fileImports | express resolve |
+| autogenerated/TaintedPath/tainted-require.js:11:9:11:20 | '/some/path' | receiverName | app |
+| autogenerated/TaintedPath/tainted-require.js:11:23:17:1 | functio ...   });\\n} | CalleeFlexibleAccessPath | app.get |
+| autogenerated/TaintedPath/tainted-require.js:11:23:17:1 | functio ...   });\\n} | InputArgumentIndex | 1 |
+| autogenerated/TaintedPath/tainted-require.js:11:23:17:1 | functio ...   });\\n} | calleeImports | express |
+| autogenerated/TaintedPath/tainted-require.js:11:23:17:1 | functio ...   });\\n} | contextFunctionInterfaces |  |
+| autogenerated/TaintedPath/tainted-require.js:11:23:17:1 | functio ...   });\\n} | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/TaintedPath/tainted-require.js:11:23:17:1 | functio ...   });\\n} | fileImports | express resolve |
+| autogenerated/TaintedPath/tainted-require.js:11:23:17:1 | functio ...   });\\n} | receiverName | app |
+| autogenerated/TaintedPath/tainted-require.js:12:29:12:47 | req.param("module") | CalleeFlexibleAccessPath | resolve.sync |
+| autogenerated/TaintedPath/tainted-require.js:12:29:12:47 | req.param("module") | InputArgumentIndex | 0 |
+| autogenerated/TaintedPath/tainted-require.js:12:29:12:47 | req.param("module") | calleeImports | resolve |
+| autogenerated/TaintedPath/tainted-require.js:12:29:12:47 | req.param("module") | contextFunctionInterfaces |  |
+| autogenerated/TaintedPath/tainted-require.js:12:29:12:47 | req.param("module") | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/TaintedPath/tainted-require.js:12:29:12:47 | req.param("module") | enclosingFunctionBody | req res module resolve sync req param module resolve req param module basedir __dirname err res module res |
+| autogenerated/TaintedPath/tainted-require.js:12:29:12:47 | req.param("module") | enclosingFunctionName | app.get#functionalargument |
+| autogenerated/TaintedPath/tainted-require.js:12:29:12:47 | req.param("module") | fileImports | express resolve |
+| autogenerated/TaintedPath/tainted-require.js:12:29:12:47 | req.param("module") | receiverName | resolve |
+| autogenerated/TaintedPath/tainted-require.js:12:39:12:46 | "module" | CalleeFlexibleAccessPath | req.param |
+| autogenerated/TaintedPath/tainted-require.js:12:39:12:46 | "module" | InputArgumentIndex | 0 |
+| autogenerated/TaintedPath/tainted-require.js:12:39:12:46 | "module" | contextFunctionInterfaces |  |
+| autogenerated/TaintedPath/tainted-require.js:12:39:12:46 | "module" | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/TaintedPath/tainted-require.js:12:39:12:46 | "module" | enclosingFunctionBody | req res module resolve sync req param module resolve req param module basedir __dirname err res module res |
+| autogenerated/TaintedPath/tainted-require.js:12:39:12:46 | "module" | enclosingFunctionName | app.get#functionalargument |
+| autogenerated/TaintedPath/tainted-require.js:12:39:12:46 | "module" | fileImports | express resolve |
+| autogenerated/TaintedPath/tainted-require.js:12:39:12:46 | "module" | receiverName | req |
+| autogenerated/TaintedPath/tainted-require.js:14:11:14:29 | req.param("module") | CalleeFlexibleAccessPath | resolve |
+| autogenerated/TaintedPath/tainted-require.js:14:11:14:29 | req.param("module") | InputArgumentIndex | 0 |
+| autogenerated/TaintedPath/tainted-require.js:14:11:14:29 | req.param("module") | calleeImports | resolve |
+| autogenerated/TaintedPath/tainted-require.js:14:11:14:29 | req.param("module") | contextFunctionInterfaces |  |
+| autogenerated/TaintedPath/tainted-require.js:14:11:14:29 | req.param("module") | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/TaintedPath/tainted-require.js:14:11:14:29 | req.param("module") | enclosingFunctionBody | req res module resolve sync req param module resolve req param module basedir __dirname err res module res |
+| autogenerated/TaintedPath/tainted-require.js:14:11:14:29 | req.param("module") | enclosingFunctionName | app.get#functionalargument |
+| autogenerated/TaintedPath/tainted-require.js:14:11:14:29 | req.param("module") | fileImports | express resolve |
+| autogenerated/TaintedPath/tainted-require.js:14:21:14:28 | "module" | CalleeFlexibleAccessPath | req.param |
+| autogenerated/TaintedPath/tainted-require.js:14:21:14:28 | "module" | InputArgumentIndex | 0 |
+| autogenerated/TaintedPath/tainted-require.js:14:21:14:28 | "module" | contextFunctionInterfaces |  |
+| autogenerated/TaintedPath/tainted-require.js:14:21:14:28 | "module" | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/TaintedPath/tainted-require.js:14:21:14:28 | "module" | enclosingFunctionBody | req res module resolve sync req param module resolve req param module basedir __dirname err res module res |
+| autogenerated/TaintedPath/tainted-require.js:14:21:14:28 | "module" | enclosingFunctionName | app.get#functionalargument |
+| autogenerated/TaintedPath/tainted-require.js:14:21:14:28 | "module" | fileImports | express resolve |
+| autogenerated/TaintedPath/tainted-require.js:14:21:14:28 | "module" | receiverName | req |
+| autogenerated/TaintedPath/tainted-require.js:14:32:14:53 | { based ... rname } | CalleeFlexibleAccessPath | resolve |
+| autogenerated/TaintedPath/tainted-require.js:14:32:14:53 | { based ... rname } | InputArgumentIndex | 1 |
+| autogenerated/TaintedPath/tainted-require.js:14:32:14:53 | { based ... rname } | calleeImports | resolve |
+| autogenerated/TaintedPath/tainted-require.js:14:32:14:53 | { based ... rname } | contextFunctionInterfaces |  |
+| autogenerated/TaintedPath/tainted-require.js:14:32:14:53 | { based ... rname } | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/TaintedPath/tainted-require.js:14:32:14:53 | { based ... rname } | enclosingFunctionBody | req res module resolve sync req param module resolve req param module basedir __dirname err res module res |
+| autogenerated/TaintedPath/tainted-require.js:14:32:14:53 | { based ... rname } | enclosingFunctionName | app.get#functionalargument |
+| autogenerated/TaintedPath/tainted-require.js:14:32:14:53 | { based ... rname } | fileImports | express resolve |
+| autogenerated/TaintedPath/tainted-require.js:14:43:14:51 | __dirname | CalleeFlexibleAccessPath | resolve |
+| autogenerated/TaintedPath/tainted-require.js:14:43:14:51 | __dirname | InputAccessPathFromCallee | 1.basedir |
+| autogenerated/TaintedPath/tainted-require.js:14:43:14:51 | __dirname | InputArgumentIndex | 1 |
+| autogenerated/TaintedPath/tainted-require.js:14:43:14:51 | __dirname | assignedToPropName | basedir |
+| autogenerated/TaintedPath/tainted-require.js:14:43:14:51 | __dirname | calleeImports | resolve |
+| autogenerated/TaintedPath/tainted-require.js:14:43:14:51 | __dirname | contextFunctionInterfaces |  |
+| autogenerated/TaintedPath/tainted-require.js:14:43:14:51 | __dirname | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/TaintedPath/tainted-require.js:14:43:14:51 | __dirname | enclosingFunctionBody | req res module resolve sync req param module resolve req param module basedir __dirname err res module res |
+| autogenerated/TaintedPath/tainted-require.js:14:43:14:51 | __dirname | enclosingFunctionName | app.get#functionalargument |
+| autogenerated/TaintedPath/tainted-require.js:14:43:14:51 | __dirname | fileImports | express resolve |
+| autogenerated/TaintedPath/tainted-require.js:14:56:16:3 | functio ... es;\\n  } | CalleeFlexibleAccessPath | resolve |
+| autogenerated/TaintedPath/tainted-require.js:14:56:16:3 | functio ... es;\\n  } | InputArgumentIndex | 2 |
+| autogenerated/TaintedPath/tainted-require.js:14:56:16:3 | functio ... es;\\n  } | calleeImports | resolve |
+| autogenerated/TaintedPath/tainted-require.js:14:56:16:3 | functio ... es;\\n  } | contextFunctionInterfaces |  |
+| autogenerated/TaintedPath/tainted-require.js:14:56:16:3 | functio ... es;\\n  } | contextSurroundingFunctionParameters | (req, res)\n(err, res) |
+| autogenerated/TaintedPath/tainted-require.js:14:56:16:3 | functio ... es;\\n  } | enclosingFunctionBody | req res module resolve sync req param module resolve req param module basedir __dirname err res module res |
+| autogenerated/TaintedPath/tainted-require.js:14:56:16:3 | functio ... es;\\n  } | enclosingFunctionName | app.get#functionalargument |
+| autogenerated/TaintedPath/tainted-require.js:14:56:16:3 | functio ... es;\\n  } | fileImports | express resolve |
 | autogenerated/TaintedPath/tainted-sendFile.js:1:23:1:31 | 'express' | CalleeFlexibleAccessPath | require |
 | autogenerated/TaintedPath/tainted-sendFile.js:1:23:1:31 | 'express' | InputArgumentIndex | 0 |
 | autogenerated/TaintedPath/tainted-sendFile.js:1:23:1:31 | 'express' | calleeImports |  |
@@ -9390,17 +11792,17 @@ tokenFeatures
 | autogenerated/TaintedPath/views.js:1:43:1:55 | req.params[0] | receiverName | res |
 | autogenerated/Xss/DomBasedXss/addEventListener.js:1:23:1:31 | 'message' | CalleeFlexibleAccessPath | this.addEventListener |
 | autogenerated/Xss/DomBasedXss/addEventListener.js:1:23:1:31 | 'message' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:1:23:1:31 | 'message' | contextFunctionInterfaces | foo(x, event, y)\ntest() |
+| autogenerated/Xss/DomBasedXss/addEventListener.js:1:23:1:31 | 'message' | contextFunctionInterfaces | foo(x, event, y)\nonmessage(e)\nonmessage(e)\ntest() |
 | autogenerated/Xss/DomBasedXss/addEventListener.js:1:23:1:31 | 'message' | contextSurroundingFunctionParameters |  |
 | autogenerated/Xss/DomBasedXss/addEventListener.js:1:23:1:31 | 'message' | fileImports |  |
 | autogenerated/Xss/DomBasedXss/addEventListener.js:1:34:3:1 | functio ... OT OK\\n} | CalleeFlexibleAccessPath | this.addEventListener |
 | autogenerated/Xss/DomBasedXss/addEventListener.js:1:34:3:1 | functio ... OT OK\\n} | InputArgumentIndex | 1 |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:1:34:3:1 | functio ... OT OK\\n} | contextFunctionInterfaces | foo(x, event, y)\ntest() |
+| autogenerated/Xss/DomBasedXss/addEventListener.js:1:34:3:1 | functio ... OT OK\\n} | contextFunctionInterfaces | foo(x, event, y)\nonmessage(e)\nonmessage(e)\ntest() |
 | autogenerated/Xss/DomBasedXss/addEventListener.js:1:34:3:1 | functio ... OT OK\\n} | contextSurroundingFunctionParameters | (event) |
 | autogenerated/Xss/DomBasedXss/addEventListener.js:1:34:3:1 | functio ... OT OK\\n} | fileImports |  |
 | autogenerated/Xss/DomBasedXss/addEventListener.js:2:20:2:29 | event.data | CalleeFlexibleAccessPath | document.write |
 | autogenerated/Xss/DomBasedXss/addEventListener.js:2:20:2:29 | event.data | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:2:20:2:29 | event.data | contextFunctionInterfaces | foo(x, event, y)\ntest() |
+| autogenerated/Xss/DomBasedXss/addEventListener.js:2:20:2:29 | event.data | contextFunctionInterfaces | foo(x, event, y)\nonmessage(e)\nonmessage(e)\ntest() |
 | autogenerated/Xss/DomBasedXss/addEventListener.js:2:20:2:29 | event.data | contextSurroundingFunctionParameters | (event) |
 | autogenerated/Xss/DomBasedXss/addEventListener.js:2:20:2:29 | event.data | enclosingFunctionBody | event document write event data |
 | autogenerated/Xss/DomBasedXss/addEventListener.js:2:20:2:29 | event.data | enclosingFunctionName | addEventListener#functionalargument |
@@ -9408,17 +11810,17 @@ tokenFeatures
 | autogenerated/Xss/DomBasedXss/addEventListener.js:2:20:2:29 | event.data | receiverName | document |
 | autogenerated/Xss/DomBasedXss/addEventListener.js:5:23:5:31 | 'message' | CalleeFlexibleAccessPath | this.addEventListener |
 | autogenerated/Xss/DomBasedXss/addEventListener.js:5:23:5:31 | 'message' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:5:23:5:31 | 'message' | contextFunctionInterfaces | foo(x, event, y)\ntest() |
+| autogenerated/Xss/DomBasedXss/addEventListener.js:5:23:5:31 | 'message' | contextFunctionInterfaces | foo(x, event, y)\nonmessage(e)\nonmessage(e)\ntest() |
 | autogenerated/Xss/DomBasedXss/addEventListener.js:5:23:5:31 | 'message' | contextSurroundingFunctionParameters |  |
 | autogenerated/Xss/DomBasedXss/addEventListener.js:5:23:5:31 | 'message' | fileImports |  |
 | autogenerated/Xss/DomBasedXss/addEventListener.js:5:34:7:1 | functio ... OT OK\\n} | CalleeFlexibleAccessPath | this.addEventListener |
 | autogenerated/Xss/DomBasedXss/addEventListener.js:5:34:7:1 | functio ... OT OK\\n} | InputArgumentIndex | 1 |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:5:34:7:1 | functio ... OT OK\\n} | contextFunctionInterfaces | foo(x, event, y)\ntest() |
+| autogenerated/Xss/DomBasedXss/addEventListener.js:5:34:7:1 | functio ... OT OK\\n} | contextFunctionInterfaces | foo(x, event, y)\nonmessage(e)\nonmessage(e)\ntest() |
 | autogenerated/Xss/DomBasedXss/addEventListener.js:5:34:7:1 | functio ... OT OK\\n} | contextSurroundingFunctionParameters | (?) |
 | autogenerated/Xss/DomBasedXss/addEventListener.js:5:34:7:1 | functio ... OT OK\\n} | fileImports |  |
 | autogenerated/Xss/DomBasedXss/addEventListener.js:6:20:6:23 | data | CalleeFlexibleAccessPath | document.write |
 | autogenerated/Xss/DomBasedXss/addEventListener.js:6:20:6:23 | data | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:6:20:6:23 | data | contextFunctionInterfaces | foo(x, event, y)\ntest() |
+| autogenerated/Xss/DomBasedXss/addEventListener.js:6:20:6:23 | data | contextFunctionInterfaces | foo(x, event, y)\nonmessage(e)\nonmessage(e)\ntest() |
 | autogenerated/Xss/DomBasedXss/addEventListener.js:6:20:6:23 | data | contextSurroundingFunctionParameters | (?) |
 | autogenerated/Xss/DomBasedXss/addEventListener.js:6:20:6:23 | data | enclosingFunctionBody | data document write data |
 | autogenerated/Xss/DomBasedXss/addEventListener.js:6:20:6:23 | data | enclosingFunctionName | addEventListener#functionalargument |
@@ -9426,57 +11828,57 @@ tokenFeatures
 | autogenerated/Xss/DomBasedXss/addEventListener.js:6:20:6:23 | data | receiverName | document |
 | autogenerated/Xss/DomBasedXss/addEventListener.js:11:24:11:29 | x.data | CalleeFlexibleAccessPath | document.write |
 | autogenerated/Xss/DomBasedXss/addEventListener.js:11:24:11:29 | x.data | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:11:24:11:29 | x.data | contextFunctionInterfaces | foo(x, event, y)\ntest() |
+| autogenerated/Xss/DomBasedXss/addEventListener.js:11:24:11:29 | x.data | contextFunctionInterfaces | foo(x, event, y)\nonmessage(e)\nonmessage(e)\ntest() |
 | autogenerated/Xss/DomBasedXss/addEventListener.js:11:24:11:29 | x.data | contextSurroundingFunctionParameters | (x, event, y) |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:11:24:11:29 | x.data | enclosingFunctionBody | foo x event y document write x data document write event data document write y data window addEventListener message foo bind null data items |
+| autogenerated/Xss/DomBasedXss/addEventListener.js:11:24:11:29 | x.data | enclosingFunctionBody | foo x event y document write x data document write event data document write y data window addEventListener message foo bind null data items window onmessage e e origin https://foobar.com document write e data window onmessage e mySet includes e origin document write e data |
 | autogenerated/Xss/DomBasedXss/addEventListener.js:11:24:11:29 | x.data | enclosingFunctionName | test |
 | autogenerated/Xss/DomBasedXss/addEventListener.js:11:24:11:29 | x.data | fileImports |  |
 | autogenerated/Xss/DomBasedXss/addEventListener.js:11:24:11:29 | x.data | receiverName | document |
 | autogenerated/Xss/DomBasedXss/addEventListener.js:12:24:12:33 | event.data | CalleeFlexibleAccessPath | document.write |
 | autogenerated/Xss/DomBasedXss/addEventListener.js:12:24:12:33 | event.data | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:12:24:12:33 | event.data | contextFunctionInterfaces | foo(x, event, y)\ntest() |
+| autogenerated/Xss/DomBasedXss/addEventListener.js:12:24:12:33 | event.data | contextFunctionInterfaces | foo(x, event, y)\nonmessage(e)\nonmessage(e)\ntest() |
 | autogenerated/Xss/DomBasedXss/addEventListener.js:12:24:12:33 | event.data | contextSurroundingFunctionParameters | (x, event, y) |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:12:24:12:33 | event.data | enclosingFunctionBody | foo x event y document write x data document write event data document write y data window addEventListener message foo bind null data items |
+| autogenerated/Xss/DomBasedXss/addEventListener.js:12:24:12:33 | event.data | enclosingFunctionBody | foo x event y document write x data document write event data document write y data window addEventListener message foo bind null data items window onmessage e e origin https://foobar.com document write e data window onmessage e mySet includes e origin document write e data |
 | autogenerated/Xss/DomBasedXss/addEventListener.js:12:24:12:33 | event.data | enclosingFunctionName | test |
 | autogenerated/Xss/DomBasedXss/addEventListener.js:12:24:12:33 | event.data | fileImports |  |
 | autogenerated/Xss/DomBasedXss/addEventListener.js:12:24:12:33 | event.data | receiverName | document |
 | autogenerated/Xss/DomBasedXss/addEventListener.js:13:24:13:29 | y.data | CalleeFlexibleAccessPath | document.write |
 | autogenerated/Xss/DomBasedXss/addEventListener.js:13:24:13:29 | y.data | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:13:24:13:29 | y.data | contextFunctionInterfaces | foo(x, event, y)\ntest() |
+| autogenerated/Xss/DomBasedXss/addEventListener.js:13:24:13:29 | y.data | contextFunctionInterfaces | foo(x, event, y)\nonmessage(e)\nonmessage(e)\ntest() |
 | autogenerated/Xss/DomBasedXss/addEventListener.js:13:24:13:29 | y.data | contextSurroundingFunctionParameters | (x, event, y) |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:13:24:13:29 | y.data | enclosingFunctionBody | foo x event y document write x data document write event data document write y data window addEventListener message foo bind null data items |
+| autogenerated/Xss/DomBasedXss/addEventListener.js:13:24:13:29 | y.data | enclosingFunctionBody | foo x event y document write x data document write event data document write y data window addEventListener message foo bind null data items window onmessage e e origin https://foobar.com document write e data window onmessage e mySet includes e origin document write e data |
 | autogenerated/Xss/DomBasedXss/addEventListener.js:13:24:13:29 | y.data | enclosingFunctionName | test |
 | autogenerated/Xss/DomBasedXss/addEventListener.js:13:24:13:29 | y.data | fileImports |  |
 | autogenerated/Xss/DomBasedXss/addEventListener.js:13:24:13:29 | y.data | receiverName | document |
 | autogenerated/Xss/DomBasedXss/addEventListener.js:16:29:16:37 | "message" | CalleeFlexibleAccessPath | window.addEventListener |
 | autogenerated/Xss/DomBasedXss/addEventListener.js:16:29:16:37 | "message" | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:16:29:16:37 | "message" | contextFunctionInterfaces | foo(x, event, y)\ntest() |
+| autogenerated/Xss/DomBasedXss/addEventListener.js:16:29:16:37 | "message" | contextFunctionInterfaces | foo(x, event, y)\nonmessage(e)\nonmessage(e)\ntest() |
 | autogenerated/Xss/DomBasedXss/addEventListener.js:16:29:16:37 | "message" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:16:29:16:37 | "message" | enclosingFunctionBody | foo x event y document write x data document write event data document write y data window addEventListener message foo bind null data items |
+| autogenerated/Xss/DomBasedXss/addEventListener.js:16:29:16:37 | "message" | enclosingFunctionBody | foo x event y document write x data document write event data document write y data window addEventListener message foo bind null data items window onmessage e e origin https://foobar.com document write e data window onmessage e mySet includes e origin document write e data |
 | autogenerated/Xss/DomBasedXss/addEventListener.js:16:29:16:37 | "message" | enclosingFunctionName | test |
 | autogenerated/Xss/DomBasedXss/addEventListener.js:16:29:16:37 | "message" | fileImports |  |
 | autogenerated/Xss/DomBasedXss/addEventListener.js:16:29:16:37 | "message" | receiverName | window |
 | autogenerated/Xss/DomBasedXss/addEventListener.js:16:40:16:70 | foo.bin ... tems'}) | CalleeFlexibleAccessPath | window.addEventListener |
 | autogenerated/Xss/DomBasedXss/addEventListener.js:16:40:16:70 | foo.bin ... tems'}) | InputArgumentIndex | 1 |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:16:40:16:70 | foo.bin ... tems'}) | contextFunctionInterfaces | foo(x, event, y)\ntest() |
+| autogenerated/Xss/DomBasedXss/addEventListener.js:16:40:16:70 | foo.bin ... tems'}) | contextFunctionInterfaces | foo(x, event, y)\nonmessage(e)\nonmessage(e)\ntest() |
 | autogenerated/Xss/DomBasedXss/addEventListener.js:16:40:16:70 | foo.bin ... tems'}) | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:16:40:16:70 | foo.bin ... tems'}) | enclosingFunctionBody | foo x event y document write x data document write event data document write y data window addEventListener message foo bind null data items |
+| autogenerated/Xss/DomBasedXss/addEventListener.js:16:40:16:70 | foo.bin ... tems'}) | enclosingFunctionBody | foo x event y document write x data document write event data document write y data window addEventListener message foo bind null data items window onmessage e e origin https://foobar.com document write e data window onmessage e mySet includes e origin document write e data |
 | autogenerated/Xss/DomBasedXss/addEventListener.js:16:40:16:70 | foo.bin ... tems'}) | enclosingFunctionName | test |
 | autogenerated/Xss/DomBasedXss/addEventListener.js:16:40:16:70 | foo.bin ... tems'}) | fileImports |  |
 | autogenerated/Xss/DomBasedXss/addEventListener.js:16:40:16:70 | foo.bin ... tems'}) | receiverName | window |
 | autogenerated/Xss/DomBasedXss/addEventListener.js:16:49:16:52 | null | CalleeFlexibleAccessPath | foo.bind |
 | autogenerated/Xss/DomBasedXss/addEventListener.js:16:49:16:52 | null | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:16:49:16:52 | null | contextFunctionInterfaces | foo(x, event, y)\ntest() |
+| autogenerated/Xss/DomBasedXss/addEventListener.js:16:49:16:52 | null | contextFunctionInterfaces | foo(x, event, y)\nonmessage(e)\nonmessage(e)\ntest() |
 | autogenerated/Xss/DomBasedXss/addEventListener.js:16:49:16:52 | null | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:16:49:16:52 | null | enclosingFunctionBody | foo x event y document write x data document write event data document write y data window addEventListener message foo bind null data items |
+| autogenerated/Xss/DomBasedXss/addEventListener.js:16:49:16:52 | null | enclosingFunctionBody | foo x event y document write x data document write event data document write y data window addEventListener message foo bind null data items window onmessage e e origin https://foobar.com document write e data window onmessage e mySet includes e origin document write e data |
 | autogenerated/Xss/DomBasedXss/addEventListener.js:16:49:16:52 | null | enclosingFunctionName | test |
 | autogenerated/Xss/DomBasedXss/addEventListener.js:16:49:16:52 | null | fileImports |  |
 | autogenerated/Xss/DomBasedXss/addEventListener.js:16:49:16:52 | null | receiverName | foo |
 | autogenerated/Xss/DomBasedXss/addEventListener.js:16:55:16:69 | {data: 'items'} | CalleeFlexibleAccessPath | foo.bind |
 | autogenerated/Xss/DomBasedXss/addEventListener.js:16:55:16:69 | {data: 'items'} | InputArgumentIndex | 1 |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:16:55:16:69 | {data: 'items'} | contextFunctionInterfaces | foo(x, event, y)\ntest() |
+| autogenerated/Xss/DomBasedXss/addEventListener.js:16:55:16:69 | {data: 'items'} | contextFunctionInterfaces | foo(x, event, y)\nonmessage(e)\nonmessage(e)\ntest() |
 | autogenerated/Xss/DomBasedXss/addEventListener.js:16:55:16:69 | {data: 'items'} | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:16:55:16:69 | {data: 'items'} | enclosingFunctionBody | foo x event y document write x data document write event data document write y data window addEventListener message foo bind null data items |
+| autogenerated/Xss/DomBasedXss/addEventListener.js:16:55:16:69 | {data: 'items'} | enclosingFunctionBody | foo x event y document write x data document write event data document write y data window addEventListener message foo bind null data items window onmessage e e origin https://foobar.com document write e data window onmessage e mySet includes e origin document write e data |
 | autogenerated/Xss/DomBasedXss/addEventListener.js:16:55:16:69 | {data: 'items'} | enclosingFunctionName | test |
 | autogenerated/Xss/DomBasedXss/addEventListener.js:16:55:16:69 | {data: 'items'} | fileImports |  |
 | autogenerated/Xss/DomBasedXss/addEventListener.js:16:55:16:69 | {data: 'items'} | receiverName | foo |
@@ -9484,11 +11886,35 @@ tokenFeatures
 | autogenerated/Xss/DomBasedXss/addEventListener.js:16:62:16:68 | 'items' | InputAccessPathFromCallee | 1.data |
 | autogenerated/Xss/DomBasedXss/addEventListener.js:16:62:16:68 | 'items' | InputArgumentIndex | 1 |
 | autogenerated/Xss/DomBasedXss/addEventListener.js:16:62:16:68 | 'items' | assignedToPropName | data |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:16:62:16:68 | 'items' | contextFunctionInterfaces | foo(x, event, y)\ntest() |
+| autogenerated/Xss/DomBasedXss/addEventListener.js:16:62:16:68 | 'items' | contextFunctionInterfaces | foo(x, event, y)\nonmessage(e)\nonmessage(e)\ntest() |
 | autogenerated/Xss/DomBasedXss/addEventListener.js:16:62:16:68 | 'items' | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:16:62:16:68 | 'items' | enclosingFunctionBody | foo x event y document write x data document write event data document write y data window addEventListener message foo bind null data items |
+| autogenerated/Xss/DomBasedXss/addEventListener.js:16:62:16:68 | 'items' | enclosingFunctionBody | foo x event y document write x data document write event data document write y data window addEventListener message foo bind null data items window onmessage e e origin https://foobar.com document write e data window onmessage e mySet includes e origin document write e data |
 | autogenerated/Xss/DomBasedXss/addEventListener.js:16:62:16:68 | 'items' | enclosingFunctionName | test |
 | autogenerated/Xss/DomBasedXss/addEventListener.js:16:62:16:68 | 'items' | fileImports |  |
+| autogenerated/Xss/DomBasedXss/addEventListener.js:22:24:22:29 | e.data | CalleeFlexibleAccessPath | document.write |
+| autogenerated/Xss/DomBasedXss/addEventListener.js:22:24:22:29 | e.data | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/addEventListener.js:22:24:22:29 | e.data | contextFunctionInterfaces | foo(x, event, y)\nonmessage(e)\nonmessage(e)\ntest() |
+| autogenerated/Xss/DomBasedXss/addEventListener.js:22:24:22:29 | e.data | contextSurroundingFunctionParameters | ()\n(e) |
+| autogenerated/Xss/DomBasedXss/addEventListener.js:22:24:22:29 | e.data | enclosingFunctionBody | foo x event y document write x data document write event data document write y data window addEventListener message foo bind null data items window onmessage e e origin https://foobar.com document write e data window onmessage e mySet includes e origin document write e data |
+| autogenerated/Xss/DomBasedXss/addEventListener.js:22:24:22:29 | e.data | enclosingFunctionName | test |
+| autogenerated/Xss/DomBasedXss/addEventListener.js:22:24:22:29 | e.data | fileImports |  |
+| autogenerated/Xss/DomBasedXss/addEventListener.js:22:24:22:29 | e.data | receiverName | document |
+| autogenerated/Xss/DomBasedXss/addEventListener.js:26:28:26:35 | e.origin | CalleeFlexibleAccessPath | mySet.includes |
+| autogenerated/Xss/DomBasedXss/addEventListener.js:26:28:26:35 | e.origin | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/addEventListener.js:26:28:26:35 | e.origin | contextFunctionInterfaces | foo(x, event, y)\nonmessage(e)\nonmessage(e)\ntest() |
+| autogenerated/Xss/DomBasedXss/addEventListener.js:26:28:26:35 | e.origin | contextSurroundingFunctionParameters | ()\n(e) |
+| autogenerated/Xss/DomBasedXss/addEventListener.js:26:28:26:35 | e.origin | enclosingFunctionBody | foo x event y document write x data document write event data document write y data window addEventListener message foo bind null data items window onmessage e e origin https://foobar.com document write e data window onmessage e mySet includes e origin document write e data |
+| autogenerated/Xss/DomBasedXss/addEventListener.js:26:28:26:35 | e.origin | enclosingFunctionName | test |
+| autogenerated/Xss/DomBasedXss/addEventListener.js:26:28:26:35 | e.origin | fileImports |  |
+| autogenerated/Xss/DomBasedXss/addEventListener.js:26:28:26:35 | e.origin | receiverName | mySet |
+| autogenerated/Xss/DomBasedXss/addEventListener.js:27:28:27:33 | e.data | CalleeFlexibleAccessPath | document.write |
+| autogenerated/Xss/DomBasedXss/addEventListener.js:27:28:27:33 | e.data | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/addEventListener.js:27:28:27:33 | e.data | contextFunctionInterfaces | foo(x, event, y)\nonmessage(e)\nonmessage(e)\ntest() |
+| autogenerated/Xss/DomBasedXss/addEventListener.js:27:28:27:33 | e.data | contextSurroundingFunctionParameters | ()\n(e) |
+| autogenerated/Xss/DomBasedXss/addEventListener.js:27:28:27:33 | e.data | enclosingFunctionBody | foo x event y document write x data document write event data document write y data window addEventListener message foo bind null data items window onmessage e e origin https://foobar.com document write e data window onmessage e mySet includes e origin document write e data |
+| autogenerated/Xss/DomBasedXss/addEventListener.js:27:28:27:33 | e.data | enclosingFunctionName | test |
+| autogenerated/Xss/DomBasedXss/addEventListener.js:27:28:27:33 | e.data | fileImports |  |
+| autogenerated/Xss/DomBasedXss/addEventListener.js:27:28:27:33 | e.data | receiverName | document |
 | autogenerated/Xss/DomBasedXss/angular2-client.ts:7:13:7:22 | 'app-root' | CalleeFlexibleAccessPath | Component |
 | autogenerated/Xss/DomBasedXss/angular2-client.ts:7:13:7:22 | 'app-root' | InputAccessPathFromCallee | 0.selector |
 | autogenerated/Xss/DomBasedXss/angular2-client.ts:7:13:7:22 | 'app-root' | InputArgumentIndex | 0 |
@@ -9660,18 +12086,18 @@ tokenFeatures
 | autogenerated/Xss/DomBasedXss/classnames.js:7:31:7:84 | `<span  ... <span>` | assignedToPropName | innerHTML |
 | autogenerated/Xss/DomBasedXss/classnames.js:7:31:7:84 | `<span  ... <span>` | contextFunctionInterfaces | main() |
 | autogenerated/Xss/DomBasedXss/classnames.js:7:31:7:84 | `<span  ... <span>` | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/classnames.js:7:31:7:84 | `<span  ... <span>` | enclosingFunctionBody | document body innerHTML <span class=" classNames window name ">Hello<span> document body innerHTML <span class=" classNamesD window name ">Hello<span> document body innerHTML <span class=" classNamesB window name ">Hello<span> unsafeStyle classNames bind foo window name document body innerHTML <span class=" unsafeStyle foo ">Hello<span> safeStyle classNames bind document body innerHTML <span class=" safeStyle window name ">Hello<span> document body innerHTML <span class=" safeStyle foo ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> |
+| autogenerated/Xss/DomBasedXss/classnames.js:7:31:7:84 | `<span  ... <span>` | enclosingFunctionBody | document body innerHTML <span class=" classNames window name ">Hello<span> document body innerHTML <span class=" classNamesD window name ">Hello<span> document body innerHTML <span class=" classNamesB window name ">Hello<span> unsafeStyle classNames bind foo window name document body innerHTML <span class=" unsafeStyle foo ">Hello<span> safeStyle classNames bind document body innerHTML <span class=" safeStyle window name ">Hello<span> document body innerHTML <span class=" safeStyle foo ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> |
 | autogenerated/Xss/DomBasedXss/classnames.js:7:31:7:84 | `<span  ... <span>` | enclosingFunctionName | main |
 | autogenerated/Xss/DomBasedXss/classnames.js:7:31:7:84 | `<span  ... <span>` | fileImports | classnames classnames/bind classnames/dedupe clsx |
 | autogenerated/Xss/DomBasedXss/classnames.js:7:32:7:44 | <span class=" | contextFunctionInterfaces | main() |
 | autogenerated/Xss/DomBasedXss/classnames.js:7:32:7:44 | <span class=" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/classnames.js:7:32:7:44 | <span class=" | enclosingFunctionBody | document body innerHTML <span class=" classNames window name ">Hello<span> document body innerHTML <span class=" classNamesD window name ">Hello<span> document body innerHTML <span class=" classNamesB window name ">Hello<span> unsafeStyle classNames bind foo window name document body innerHTML <span class=" unsafeStyle foo ">Hello<span> safeStyle classNames bind document body innerHTML <span class=" safeStyle window name ">Hello<span> document body innerHTML <span class=" safeStyle foo ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> |
+| autogenerated/Xss/DomBasedXss/classnames.js:7:32:7:44 | <span class=" | enclosingFunctionBody | document body innerHTML <span class=" classNames window name ">Hello<span> document body innerHTML <span class=" classNamesD window name ">Hello<span> document body innerHTML <span class=" classNamesB window name ">Hello<span> unsafeStyle classNames bind foo window name document body innerHTML <span class=" unsafeStyle foo ">Hello<span> safeStyle classNames bind document body innerHTML <span class=" safeStyle window name ">Hello<span> document body innerHTML <span class=" safeStyle foo ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> |
 | autogenerated/Xss/DomBasedXss/classnames.js:7:32:7:44 | <span class=" | enclosingFunctionName | main |
 | autogenerated/Xss/DomBasedXss/classnames.js:7:32:7:44 | <span class=" | fileImports | classnames classnames/bind classnames/dedupe clsx |
 | autogenerated/Xss/DomBasedXss/classnames.js:7:32:7:44 | <span class=" | stringConcatenatedWith |  -endpoint- classNames() + '">Hello<span>' |
 | autogenerated/Xss/DomBasedXss/classnames.js:7:47:7:69 | classNa ... w.name) | contextFunctionInterfaces | main() |
 | autogenerated/Xss/DomBasedXss/classnames.js:7:47:7:69 | classNa ... w.name) | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/classnames.js:7:47:7:69 | classNa ... w.name) | enclosingFunctionBody | document body innerHTML <span class=" classNames window name ">Hello<span> document body innerHTML <span class=" classNamesD window name ">Hello<span> document body innerHTML <span class=" classNamesB window name ">Hello<span> unsafeStyle classNames bind foo window name document body innerHTML <span class=" unsafeStyle foo ">Hello<span> safeStyle classNames bind document body innerHTML <span class=" safeStyle window name ">Hello<span> document body innerHTML <span class=" safeStyle foo ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> |
+| autogenerated/Xss/DomBasedXss/classnames.js:7:47:7:69 | classNa ... w.name) | enclosingFunctionBody | document body innerHTML <span class=" classNames window name ">Hello<span> document body innerHTML <span class=" classNamesD window name ">Hello<span> document body innerHTML <span class=" classNamesB window name ">Hello<span> unsafeStyle classNames bind foo window name document body innerHTML <span class=" unsafeStyle foo ">Hello<span> safeStyle classNames bind document body innerHTML <span class=" safeStyle window name ">Hello<span> document body innerHTML <span class=" safeStyle foo ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> |
 | autogenerated/Xss/DomBasedXss/classnames.js:7:47:7:69 | classNa ... w.name) | enclosingFunctionName | main |
 | autogenerated/Xss/DomBasedXss/classnames.js:7:47:7:69 | classNa ... w.name) | fileImports | classnames classnames/bind classnames/dedupe clsx |
 | autogenerated/Xss/DomBasedXss/classnames.js:7:47:7:69 | classNa ... w.name) | stringConcatenatedWith | '<span class="' -endpoint- '">Hello<span>' |
@@ -9680,30 +12106,30 @@ tokenFeatures
 | autogenerated/Xss/DomBasedXss/classnames.js:7:58:7:68 | window.name | calleeImports | classnames |
 | autogenerated/Xss/DomBasedXss/classnames.js:7:58:7:68 | window.name | contextFunctionInterfaces | main() |
 | autogenerated/Xss/DomBasedXss/classnames.js:7:58:7:68 | window.name | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/classnames.js:7:58:7:68 | window.name | enclosingFunctionBody | document body innerHTML <span class=" classNames window name ">Hello<span> document body innerHTML <span class=" classNamesD window name ">Hello<span> document body innerHTML <span class=" classNamesB window name ">Hello<span> unsafeStyle classNames bind foo window name document body innerHTML <span class=" unsafeStyle foo ">Hello<span> safeStyle classNames bind document body innerHTML <span class=" safeStyle window name ">Hello<span> document body innerHTML <span class=" safeStyle foo ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> |
+| autogenerated/Xss/DomBasedXss/classnames.js:7:58:7:68 | window.name | enclosingFunctionBody | document body innerHTML <span class=" classNames window name ">Hello<span> document body innerHTML <span class=" classNamesD window name ">Hello<span> document body innerHTML <span class=" classNamesB window name ">Hello<span> unsafeStyle classNames bind foo window name document body innerHTML <span class=" unsafeStyle foo ">Hello<span> safeStyle classNames bind document body innerHTML <span class=" safeStyle window name ">Hello<span> document body innerHTML <span class=" safeStyle foo ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> |
 | autogenerated/Xss/DomBasedXss/classnames.js:7:58:7:68 | window.name | enclosingFunctionName | main |
 | autogenerated/Xss/DomBasedXss/classnames.js:7:58:7:68 | window.name | fileImports | classnames classnames/bind classnames/dedupe clsx |
 | autogenerated/Xss/DomBasedXss/classnames.js:7:71:7:83 | ">Hello<span> | contextFunctionInterfaces | main() |
 | autogenerated/Xss/DomBasedXss/classnames.js:7:71:7:83 | ">Hello<span> | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/classnames.js:7:71:7:83 | ">Hello<span> | enclosingFunctionBody | document body innerHTML <span class=" classNames window name ">Hello<span> document body innerHTML <span class=" classNamesD window name ">Hello<span> document body innerHTML <span class=" classNamesB window name ">Hello<span> unsafeStyle classNames bind foo window name document body innerHTML <span class=" unsafeStyle foo ">Hello<span> safeStyle classNames bind document body innerHTML <span class=" safeStyle window name ">Hello<span> document body innerHTML <span class=" safeStyle foo ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> |
+| autogenerated/Xss/DomBasedXss/classnames.js:7:71:7:83 | ">Hello<span> | enclosingFunctionBody | document body innerHTML <span class=" classNames window name ">Hello<span> document body innerHTML <span class=" classNamesD window name ">Hello<span> document body innerHTML <span class=" classNamesB window name ">Hello<span> unsafeStyle classNames bind foo window name document body innerHTML <span class=" unsafeStyle foo ">Hello<span> safeStyle classNames bind document body innerHTML <span class=" safeStyle window name ">Hello<span> document body innerHTML <span class=" safeStyle foo ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> |
 | autogenerated/Xss/DomBasedXss/classnames.js:7:71:7:83 | ">Hello<span> | enclosingFunctionName | main |
 | autogenerated/Xss/DomBasedXss/classnames.js:7:71:7:83 | ">Hello<span> | fileImports | classnames classnames/bind classnames/dedupe clsx |
 | autogenerated/Xss/DomBasedXss/classnames.js:7:71:7:83 | ">Hello<span> | stringConcatenatedWith | '<span class="' + classNames() -endpoint-  |
 | autogenerated/Xss/DomBasedXss/classnames.js:8:31:8:85 | `<span  ... <span>` | assignedToPropName | innerHTML |
 | autogenerated/Xss/DomBasedXss/classnames.js:8:31:8:85 | `<span  ... <span>` | contextFunctionInterfaces | main() |
 | autogenerated/Xss/DomBasedXss/classnames.js:8:31:8:85 | `<span  ... <span>` | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/classnames.js:8:31:8:85 | `<span  ... <span>` | enclosingFunctionBody | document body innerHTML <span class=" classNames window name ">Hello<span> document body innerHTML <span class=" classNamesD window name ">Hello<span> document body innerHTML <span class=" classNamesB window name ">Hello<span> unsafeStyle classNames bind foo window name document body innerHTML <span class=" unsafeStyle foo ">Hello<span> safeStyle classNames bind document body innerHTML <span class=" safeStyle window name ">Hello<span> document body innerHTML <span class=" safeStyle foo ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> |
+| autogenerated/Xss/DomBasedXss/classnames.js:8:31:8:85 | `<span  ... <span>` | enclosingFunctionBody | document body innerHTML <span class=" classNames window name ">Hello<span> document body innerHTML <span class=" classNamesD window name ">Hello<span> document body innerHTML <span class=" classNamesB window name ">Hello<span> unsafeStyle classNames bind foo window name document body innerHTML <span class=" unsafeStyle foo ">Hello<span> safeStyle classNames bind document body innerHTML <span class=" safeStyle window name ">Hello<span> document body innerHTML <span class=" safeStyle foo ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> |
 | autogenerated/Xss/DomBasedXss/classnames.js:8:31:8:85 | `<span  ... <span>` | enclosingFunctionName | main |
 | autogenerated/Xss/DomBasedXss/classnames.js:8:31:8:85 | `<span  ... <span>` | fileImports | classnames classnames/bind classnames/dedupe clsx |
 | autogenerated/Xss/DomBasedXss/classnames.js:8:32:8:44 | <span class=" | contextFunctionInterfaces | main() |
 | autogenerated/Xss/DomBasedXss/classnames.js:8:32:8:44 | <span class=" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/classnames.js:8:32:8:44 | <span class=" | enclosingFunctionBody | document body innerHTML <span class=" classNames window name ">Hello<span> document body innerHTML <span class=" classNamesD window name ">Hello<span> document body innerHTML <span class=" classNamesB window name ">Hello<span> unsafeStyle classNames bind foo window name document body innerHTML <span class=" unsafeStyle foo ">Hello<span> safeStyle classNames bind document body innerHTML <span class=" safeStyle window name ">Hello<span> document body innerHTML <span class=" safeStyle foo ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> |
+| autogenerated/Xss/DomBasedXss/classnames.js:8:32:8:44 | <span class=" | enclosingFunctionBody | document body innerHTML <span class=" classNames window name ">Hello<span> document body innerHTML <span class=" classNamesD window name ">Hello<span> document body innerHTML <span class=" classNamesB window name ">Hello<span> unsafeStyle classNames bind foo window name document body innerHTML <span class=" unsafeStyle foo ">Hello<span> safeStyle classNames bind document body innerHTML <span class=" safeStyle window name ">Hello<span> document body innerHTML <span class=" safeStyle foo ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> |
 | autogenerated/Xss/DomBasedXss/classnames.js:8:32:8:44 | <span class=" | enclosingFunctionName | main |
 | autogenerated/Xss/DomBasedXss/classnames.js:8:32:8:44 | <span class=" | fileImports | classnames classnames/bind classnames/dedupe clsx |
 | autogenerated/Xss/DomBasedXss/classnames.js:8:32:8:44 | <span class=" | stringConcatenatedWith |  -endpoint- classNamesD() + '">Hello<span>' |
 | autogenerated/Xss/DomBasedXss/classnames.js:8:47:8:70 | classNa ... w.name) | contextFunctionInterfaces | main() |
 | autogenerated/Xss/DomBasedXss/classnames.js:8:47:8:70 | classNa ... w.name) | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/classnames.js:8:47:8:70 | classNa ... w.name) | enclosingFunctionBody | document body innerHTML <span class=" classNames window name ">Hello<span> document body innerHTML <span class=" classNamesD window name ">Hello<span> document body innerHTML <span class=" classNamesB window name ">Hello<span> unsafeStyle classNames bind foo window name document body innerHTML <span class=" unsafeStyle foo ">Hello<span> safeStyle classNames bind document body innerHTML <span class=" safeStyle window name ">Hello<span> document body innerHTML <span class=" safeStyle foo ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> |
+| autogenerated/Xss/DomBasedXss/classnames.js:8:47:8:70 | classNa ... w.name) | enclosingFunctionBody | document body innerHTML <span class=" classNames window name ">Hello<span> document body innerHTML <span class=" classNamesD window name ">Hello<span> document body innerHTML <span class=" classNamesB window name ">Hello<span> unsafeStyle classNames bind foo window name document body innerHTML <span class=" unsafeStyle foo ">Hello<span> safeStyle classNames bind document body innerHTML <span class=" safeStyle window name ">Hello<span> document body innerHTML <span class=" safeStyle foo ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> |
 | autogenerated/Xss/DomBasedXss/classnames.js:8:47:8:70 | classNa ... w.name) | enclosingFunctionName | main |
 | autogenerated/Xss/DomBasedXss/classnames.js:8:47:8:70 | classNa ... w.name) | fileImports | classnames classnames/bind classnames/dedupe clsx |
 | autogenerated/Xss/DomBasedXss/classnames.js:8:47:8:70 | classNa ... w.name) | stringConcatenatedWith | '<span class="' -endpoint- '">Hello<span>' |
@@ -9712,30 +12138,30 @@ tokenFeatures
 | autogenerated/Xss/DomBasedXss/classnames.js:8:59:8:69 | window.name | calleeImports | classnames/dedupe |
 | autogenerated/Xss/DomBasedXss/classnames.js:8:59:8:69 | window.name | contextFunctionInterfaces | main() |
 | autogenerated/Xss/DomBasedXss/classnames.js:8:59:8:69 | window.name | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/classnames.js:8:59:8:69 | window.name | enclosingFunctionBody | document body innerHTML <span class=" classNames window name ">Hello<span> document body innerHTML <span class=" classNamesD window name ">Hello<span> document body innerHTML <span class=" classNamesB window name ">Hello<span> unsafeStyle classNames bind foo window name document body innerHTML <span class=" unsafeStyle foo ">Hello<span> safeStyle classNames bind document body innerHTML <span class=" safeStyle window name ">Hello<span> document body innerHTML <span class=" safeStyle foo ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> |
+| autogenerated/Xss/DomBasedXss/classnames.js:8:59:8:69 | window.name | enclosingFunctionBody | document body innerHTML <span class=" classNames window name ">Hello<span> document body innerHTML <span class=" classNamesD window name ">Hello<span> document body innerHTML <span class=" classNamesB window name ">Hello<span> unsafeStyle classNames bind foo window name document body innerHTML <span class=" unsafeStyle foo ">Hello<span> safeStyle classNames bind document body innerHTML <span class=" safeStyle window name ">Hello<span> document body innerHTML <span class=" safeStyle foo ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> |
 | autogenerated/Xss/DomBasedXss/classnames.js:8:59:8:69 | window.name | enclosingFunctionName | main |
 | autogenerated/Xss/DomBasedXss/classnames.js:8:59:8:69 | window.name | fileImports | classnames classnames/bind classnames/dedupe clsx |
 | autogenerated/Xss/DomBasedXss/classnames.js:8:72:8:84 | ">Hello<span> | contextFunctionInterfaces | main() |
 | autogenerated/Xss/DomBasedXss/classnames.js:8:72:8:84 | ">Hello<span> | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/classnames.js:8:72:8:84 | ">Hello<span> | enclosingFunctionBody | document body innerHTML <span class=" classNames window name ">Hello<span> document body innerHTML <span class=" classNamesD window name ">Hello<span> document body innerHTML <span class=" classNamesB window name ">Hello<span> unsafeStyle classNames bind foo window name document body innerHTML <span class=" unsafeStyle foo ">Hello<span> safeStyle classNames bind document body innerHTML <span class=" safeStyle window name ">Hello<span> document body innerHTML <span class=" safeStyle foo ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> |
+| autogenerated/Xss/DomBasedXss/classnames.js:8:72:8:84 | ">Hello<span> | enclosingFunctionBody | document body innerHTML <span class=" classNames window name ">Hello<span> document body innerHTML <span class=" classNamesD window name ">Hello<span> document body innerHTML <span class=" classNamesB window name ">Hello<span> unsafeStyle classNames bind foo window name document body innerHTML <span class=" unsafeStyle foo ">Hello<span> safeStyle classNames bind document body innerHTML <span class=" safeStyle window name ">Hello<span> document body innerHTML <span class=" safeStyle foo ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> |
 | autogenerated/Xss/DomBasedXss/classnames.js:8:72:8:84 | ">Hello<span> | enclosingFunctionName | main |
 | autogenerated/Xss/DomBasedXss/classnames.js:8:72:8:84 | ">Hello<span> | fileImports | classnames classnames/bind classnames/dedupe clsx |
 | autogenerated/Xss/DomBasedXss/classnames.js:8:72:8:84 | ">Hello<span> | stringConcatenatedWith | '<span class="' + classNamesD() -endpoint-  |
 | autogenerated/Xss/DomBasedXss/classnames.js:9:31:9:85 | `<span  ... <span>` | assignedToPropName | innerHTML |
 | autogenerated/Xss/DomBasedXss/classnames.js:9:31:9:85 | `<span  ... <span>` | contextFunctionInterfaces | main() |
 | autogenerated/Xss/DomBasedXss/classnames.js:9:31:9:85 | `<span  ... <span>` | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/classnames.js:9:31:9:85 | `<span  ... <span>` | enclosingFunctionBody | document body innerHTML <span class=" classNames window name ">Hello<span> document body innerHTML <span class=" classNamesD window name ">Hello<span> document body innerHTML <span class=" classNamesB window name ">Hello<span> unsafeStyle classNames bind foo window name document body innerHTML <span class=" unsafeStyle foo ">Hello<span> safeStyle classNames bind document body innerHTML <span class=" safeStyle window name ">Hello<span> document body innerHTML <span class=" safeStyle foo ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> |
+| autogenerated/Xss/DomBasedXss/classnames.js:9:31:9:85 | `<span  ... <span>` | enclosingFunctionBody | document body innerHTML <span class=" classNames window name ">Hello<span> document body innerHTML <span class=" classNamesD window name ">Hello<span> document body innerHTML <span class=" classNamesB window name ">Hello<span> unsafeStyle classNames bind foo window name document body innerHTML <span class=" unsafeStyle foo ">Hello<span> safeStyle classNames bind document body innerHTML <span class=" safeStyle window name ">Hello<span> document body innerHTML <span class=" safeStyle foo ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> |
 | autogenerated/Xss/DomBasedXss/classnames.js:9:31:9:85 | `<span  ... <span>` | enclosingFunctionName | main |
 | autogenerated/Xss/DomBasedXss/classnames.js:9:31:9:85 | `<span  ... <span>` | fileImports | classnames classnames/bind classnames/dedupe clsx |
 | autogenerated/Xss/DomBasedXss/classnames.js:9:32:9:44 | <span class=" | contextFunctionInterfaces | main() |
 | autogenerated/Xss/DomBasedXss/classnames.js:9:32:9:44 | <span class=" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/classnames.js:9:32:9:44 | <span class=" | enclosingFunctionBody | document body innerHTML <span class=" classNames window name ">Hello<span> document body innerHTML <span class=" classNamesD window name ">Hello<span> document body innerHTML <span class=" classNamesB window name ">Hello<span> unsafeStyle classNames bind foo window name document body innerHTML <span class=" unsafeStyle foo ">Hello<span> safeStyle classNames bind document body innerHTML <span class=" safeStyle window name ">Hello<span> document body innerHTML <span class=" safeStyle foo ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> |
+| autogenerated/Xss/DomBasedXss/classnames.js:9:32:9:44 | <span class=" | enclosingFunctionBody | document body innerHTML <span class=" classNames window name ">Hello<span> document body innerHTML <span class=" classNamesD window name ">Hello<span> document body innerHTML <span class=" classNamesB window name ">Hello<span> unsafeStyle classNames bind foo window name document body innerHTML <span class=" unsafeStyle foo ">Hello<span> safeStyle classNames bind document body innerHTML <span class=" safeStyle window name ">Hello<span> document body innerHTML <span class=" safeStyle foo ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> |
 | autogenerated/Xss/DomBasedXss/classnames.js:9:32:9:44 | <span class=" | enclosingFunctionName | main |
 | autogenerated/Xss/DomBasedXss/classnames.js:9:32:9:44 | <span class=" | fileImports | classnames classnames/bind classnames/dedupe clsx |
 | autogenerated/Xss/DomBasedXss/classnames.js:9:32:9:44 | <span class=" | stringConcatenatedWith |  -endpoint- classNamesB() + '">Hello<span>' |
 | autogenerated/Xss/DomBasedXss/classnames.js:9:47:9:70 | classNa ... w.name) | contextFunctionInterfaces | main() |
 | autogenerated/Xss/DomBasedXss/classnames.js:9:47:9:70 | classNa ... w.name) | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/classnames.js:9:47:9:70 | classNa ... w.name) | enclosingFunctionBody | document body innerHTML <span class=" classNames window name ">Hello<span> document body innerHTML <span class=" classNamesD window name ">Hello<span> document body innerHTML <span class=" classNamesB window name ">Hello<span> unsafeStyle classNames bind foo window name document body innerHTML <span class=" unsafeStyle foo ">Hello<span> safeStyle classNames bind document body innerHTML <span class=" safeStyle window name ">Hello<span> document body innerHTML <span class=" safeStyle foo ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> |
+| autogenerated/Xss/DomBasedXss/classnames.js:9:47:9:70 | classNa ... w.name) | enclosingFunctionBody | document body innerHTML <span class=" classNames window name ">Hello<span> document body innerHTML <span class=" classNamesD window name ">Hello<span> document body innerHTML <span class=" classNamesB window name ">Hello<span> unsafeStyle classNames bind foo window name document body innerHTML <span class=" unsafeStyle foo ">Hello<span> safeStyle classNames bind document body innerHTML <span class=" safeStyle window name ">Hello<span> document body innerHTML <span class=" safeStyle foo ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> |
 | autogenerated/Xss/DomBasedXss/classnames.js:9:47:9:70 | classNa ... w.name) | enclosingFunctionName | main |
 | autogenerated/Xss/DomBasedXss/classnames.js:9:47:9:70 | classNa ... w.name) | fileImports | classnames classnames/bind classnames/dedupe clsx |
 | autogenerated/Xss/DomBasedXss/classnames.js:9:47:9:70 | classNa ... w.name) | stringConcatenatedWith | '<span class="' -endpoint- '">Hello<span>' |
@@ -9744,12 +12170,12 @@ tokenFeatures
 | autogenerated/Xss/DomBasedXss/classnames.js:9:59:9:69 | window.name | calleeImports | classnames/bind |
 | autogenerated/Xss/DomBasedXss/classnames.js:9:59:9:69 | window.name | contextFunctionInterfaces | main() |
 | autogenerated/Xss/DomBasedXss/classnames.js:9:59:9:69 | window.name | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/classnames.js:9:59:9:69 | window.name | enclosingFunctionBody | document body innerHTML <span class=" classNames window name ">Hello<span> document body innerHTML <span class=" classNamesD window name ">Hello<span> document body innerHTML <span class=" classNamesB window name ">Hello<span> unsafeStyle classNames bind foo window name document body innerHTML <span class=" unsafeStyle foo ">Hello<span> safeStyle classNames bind document body innerHTML <span class=" safeStyle window name ">Hello<span> document body innerHTML <span class=" safeStyle foo ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> |
+| autogenerated/Xss/DomBasedXss/classnames.js:9:59:9:69 | window.name | enclosingFunctionBody | document body innerHTML <span class=" classNames window name ">Hello<span> document body innerHTML <span class=" classNamesD window name ">Hello<span> document body innerHTML <span class=" classNamesB window name ">Hello<span> unsafeStyle classNames bind foo window name document body innerHTML <span class=" unsafeStyle foo ">Hello<span> safeStyle classNames bind document body innerHTML <span class=" safeStyle window name ">Hello<span> document body innerHTML <span class=" safeStyle foo ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> |
 | autogenerated/Xss/DomBasedXss/classnames.js:9:59:9:69 | window.name | enclosingFunctionName | main |
 | autogenerated/Xss/DomBasedXss/classnames.js:9:59:9:69 | window.name | fileImports | classnames classnames/bind classnames/dedupe clsx |
 | autogenerated/Xss/DomBasedXss/classnames.js:9:72:9:84 | ">Hello<span> | contextFunctionInterfaces | main() |
 | autogenerated/Xss/DomBasedXss/classnames.js:9:72:9:84 | ">Hello<span> | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/classnames.js:9:72:9:84 | ">Hello<span> | enclosingFunctionBody | document body innerHTML <span class=" classNames window name ">Hello<span> document body innerHTML <span class=" classNamesD window name ">Hello<span> document body innerHTML <span class=" classNamesB window name ">Hello<span> unsafeStyle classNames bind foo window name document body innerHTML <span class=" unsafeStyle foo ">Hello<span> safeStyle classNames bind document body innerHTML <span class=" safeStyle window name ">Hello<span> document body innerHTML <span class=" safeStyle foo ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> |
+| autogenerated/Xss/DomBasedXss/classnames.js:9:72:9:84 | ">Hello<span> | enclosingFunctionBody | document body innerHTML <span class=" classNames window name ">Hello<span> document body innerHTML <span class=" classNamesD window name ">Hello<span> document body innerHTML <span class=" classNamesB window name ">Hello<span> unsafeStyle classNames bind foo window name document body innerHTML <span class=" unsafeStyle foo ">Hello<span> safeStyle classNames bind document body innerHTML <span class=" safeStyle window name ">Hello<span> document body innerHTML <span class=" safeStyle foo ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> |
 | autogenerated/Xss/DomBasedXss/classnames.js:9:72:9:84 | ">Hello<span> | enclosingFunctionName | main |
 | autogenerated/Xss/DomBasedXss/classnames.js:9:72:9:84 | ">Hello<span> | fileImports | classnames classnames/bind classnames/dedupe clsx |
 | autogenerated/Xss/DomBasedXss/classnames.js:9:72:9:84 | ">Hello<span> | stringConcatenatedWith | '<span class="' + classNamesB() -endpoint-  |
@@ -9758,7 +12184,7 @@ tokenFeatures
 | autogenerated/Xss/DomBasedXss/classnames.js:10:39:10:56 | {foo: window.name} | calleeImports | classnames |
 | autogenerated/Xss/DomBasedXss/classnames.js:10:39:10:56 | {foo: window.name} | contextFunctionInterfaces | main() |
 | autogenerated/Xss/DomBasedXss/classnames.js:10:39:10:56 | {foo: window.name} | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/classnames.js:10:39:10:56 | {foo: window.name} | enclosingFunctionBody | document body innerHTML <span class=" classNames window name ">Hello<span> document body innerHTML <span class=" classNamesD window name ">Hello<span> document body innerHTML <span class=" classNamesB window name ">Hello<span> unsafeStyle classNames bind foo window name document body innerHTML <span class=" unsafeStyle foo ">Hello<span> safeStyle classNames bind document body innerHTML <span class=" safeStyle window name ">Hello<span> document body innerHTML <span class=" safeStyle foo ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> |
+| autogenerated/Xss/DomBasedXss/classnames.js:10:39:10:56 | {foo: window.name} | enclosingFunctionBody | document body innerHTML <span class=" classNames window name ">Hello<span> document body innerHTML <span class=" classNamesD window name ">Hello<span> document body innerHTML <span class=" classNamesB window name ">Hello<span> unsafeStyle classNames bind foo window name document body innerHTML <span class=" unsafeStyle foo ">Hello<span> safeStyle classNames bind document body innerHTML <span class=" safeStyle window name ">Hello<span> document body innerHTML <span class=" safeStyle foo ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> |
 | autogenerated/Xss/DomBasedXss/classnames.js:10:39:10:56 | {foo: window.name} | enclosingFunctionName | main |
 | autogenerated/Xss/DomBasedXss/classnames.js:10:39:10:56 | {foo: window.name} | fileImports | classnames classnames/bind classnames/dedupe clsx |
 | autogenerated/Xss/DomBasedXss/classnames.js:10:39:10:56 | {foo: window.name} | receiverName | classNames |
@@ -9769,24 +12195,24 @@ tokenFeatures
 | autogenerated/Xss/DomBasedXss/classnames.js:10:45:10:55 | window.name | calleeImports | classnames |
 | autogenerated/Xss/DomBasedXss/classnames.js:10:45:10:55 | window.name | contextFunctionInterfaces | main() |
 | autogenerated/Xss/DomBasedXss/classnames.js:10:45:10:55 | window.name | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/classnames.js:10:45:10:55 | window.name | enclosingFunctionBody | document body innerHTML <span class=" classNames window name ">Hello<span> document body innerHTML <span class=" classNamesD window name ">Hello<span> document body innerHTML <span class=" classNamesB window name ">Hello<span> unsafeStyle classNames bind foo window name document body innerHTML <span class=" unsafeStyle foo ">Hello<span> safeStyle classNames bind document body innerHTML <span class=" safeStyle window name ">Hello<span> document body innerHTML <span class=" safeStyle foo ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> |
+| autogenerated/Xss/DomBasedXss/classnames.js:10:45:10:55 | window.name | enclosingFunctionBody | document body innerHTML <span class=" classNames window name ">Hello<span> document body innerHTML <span class=" classNamesD window name ">Hello<span> document body innerHTML <span class=" classNamesB window name ">Hello<span> unsafeStyle classNames bind foo window name document body innerHTML <span class=" unsafeStyle foo ">Hello<span> safeStyle classNames bind document body innerHTML <span class=" safeStyle window name ">Hello<span> document body innerHTML <span class=" safeStyle foo ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> |
 | autogenerated/Xss/DomBasedXss/classnames.js:10:45:10:55 | window.name | enclosingFunctionName | main |
 | autogenerated/Xss/DomBasedXss/classnames.js:10:45:10:55 | window.name | fileImports | classnames classnames/bind classnames/dedupe clsx |
 | autogenerated/Xss/DomBasedXss/classnames.js:11:31:11:79 | `<span  ... <span>` | assignedToPropName | innerHTML |
 | autogenerated/Xss/DomBasedXss/classnames.js:11:31:11:79 | `<span  ... <span>` | contextFunctionInterfaces | main() |
 | autogenerated/Xss/DomBasedXss/classnames.js:11:31:11:79 | `<span  ... <span>` | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/classnames.js:11:31:11:79 | `<span  ... <span>` | enclosingFunctionBody | document body innerHTML <span class=" classNames window name ">Hello<span> document body innerHTML <span class=" classNamesD window name ">Hello<span> document body innerHTML <span class=" classNamesB window name ">Hello<span> unsafeStyle classNames bind foo window name document body innerHTML <span class=" unsafeStyle foo ">Hello<span> safeStyle classNames bind document body innerHTML <span class=" safeStyle window name ">Hello<span> document body innerHTML <span class=" safeStyle foo ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> |
+| autogenerated/Xss/DomBasedXss/classnames.js:11:31:11:79 | `<span  ... <span>` | enclosingFunctionBody | document body innerHTML <span class=" classNames window name ">Hello<span> document body innerHTML <span class=" classNamesD window name ">Hello<span> document body innerHTML <span class=" classNamesB window name ">Hello<span> unsafeStyle classNames bind foo window name document body innerHTML <span class=" unsafeStyle foo ">Hello<span> safeStyle classNames bind document body innerHTML <span class=" safeStyle window name ">Hello<span> document body innerHTML <span class=" safeStyle foo ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> |
 | autogenerated/Xss/DomBasedXss/classnames.js:11:31:11:79 | `<span  ... <span>` | enclosingFunctionName | main |
 | autogenerated/Xss/DomBasedXss/classnames.js:11:31:11:79 | `<span  ... <span>` | fileImports | classnames classnames/bind classnames/dedupe clsx |
 | autogenerated/Xss/DomBasedXss/classnames.js:11:32:11:44 | <span class=" | contextFunctionInterfaces | main() |
 | autogenerated/Xss/DomBasedXss/classnames.js:11:32:11:44 | <span class=" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/classnames.js:11:32:11:44 | <span class=" | enclosingFunctionBody | document body innerHTML <span class=" classNames window name ">Hello<span> document body innerHTML <span class=" classNamesD window name ">Hello<span> document body innerHTML <span class=" classNamesB window name ">Hello<span> unsafeStyle classNames bind foo window name document body innerHTML <span class=" unsafeStyle foo ">Hello<span> safeStyle classNames bind document body innerHTML <span class=" safeStyle window name ">Hello<span> document body innerHTML <span class=" safeStyle foo ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> |
+| autogenerated/Xss/DomBasedXss/classnames.js:11:32:11:44 | <span class=" | enclosingFunctionBody | document body innerHTML <span class=" classNames window name ">Hello<span> document body innerHTML <span class=" classNamesD window name ">Hello<span> document body innerHTML <span class=" classNamesB window name ">Hello<span> unsafeStyle classNames bind foo window name document body innerHTML <span class=" unsafeStyle foo ">Hello<span> safeStyle classNames bind document body innerHTML <span class=" safeStyle window name ">Hello<span> document body innerHTML <span class=" safeStyle foo ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> |
 | autogenerated/Xss/DomBasedXss/classnames.js:11:32:11:44 | <span class=" | enclosingFunctionName | main |
 | autogenerated/Xss/DomBasedXss/classnames.js:11:32:11:44 | <span class=" | fileImports | classnames classnames/bind classnames/dedupe clsx |
 | autogenerated/Xss/DomBasedXss/classnames.js:11:32:11:44 | <span class=" | stringConcatenatedWith |  -endpoint- unsafeStyle() + '">Hello<span>' |
 | autogenerated/Xss/DomBasedXss/classnames.js:11:47:11:64 | unsafeStyle('foo') | contextFunctionInterfaces | main() |
 | autogenerated/Xss/DomBasedXss/classnames.js:11:47:11:64 | unsafeStyle('foo') | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/classnames.js:11:47:11:64 | unsafeStyle('foo') | enclosingFunctionBody | document body innerHTML <span class=" classNames window name ">Hello<span> document body innerHTML <span class=" classNamesD window name ">Hello<span> document body innerHTML <span class=" classNamesB window name ">Hello<span> unsafeStyle classNames bind foo window name document body innerHTML <span class=" unsafeStyle foo ">Hello<span> safeStyle classNames bind document body innerHTML <span class=" safeStyle window name ">Hello<span> document body innerHTML <span class=" safeStyle foo ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> |
+| autogenerated/Xss/DomBasedXss/classnames.js:11:47:11:64 | unsafeStyle('foo') | enclosingFunctionBody | document body innerHTML <span class=" classNames window name ">Hello<span> document body innerHTML <span class=" classNamesD window name ">Hello<span> document body innerHTML <span class=" classNamesB window name ">Hello<span> unsafeStyle classNames bind foo window name document body innerHTML <span class=" unsafeStyle foo ">Hello<span> safeStyle classNames bind document body innerHTML <span class=" safeStyle window name ">Hello<span> document body innerHTML <span class=" safeStyle foo ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> |
 | autogenerated/Xss/DomBasedXss/classnames.js:11:47:11:64 | unsafeStyle('foo') | enclosingFunctionName | main |
 | autogenerated/Xss/DomBasedXss/classnames.js:11:47:11:64 | unsafeStyle('foo') | fileImports | classnames classnames/bind classnames/dedupe clsx |
 | autogenerated/Xss/DomBasedXss/classnames.js:11:47:11:64 | unsafeStyle('foo') | stringConcatenatedWith | '<span class="' -endpoint- '">Hello<span>' |
@@ -9795,12 +12221,12 @@ tokenFeatures
 | autogenerated/Xss/DomBasedXss/classnames.js:11:59:11:63 | 'foo' | calleeImports | classnames |
 | autogenerated/Xss/DomBasedXss/classnames.js:11:59:11:63 | 'foo' | contextFunctionInterfaces | main() |
 | autogenerated/Xss/DomBasedXss/classnames.js:11:59:11:63 | 'foo' | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/classnames.js:11:59:11:63 | 'foo' | enclosingFunctionBody | document body innerHTML <span class=" classNames window name ">Hello<span> document body innerHTML <span class=" classNamesD window name ">Hello<span> document body innerHTML <span class=" classNamesB window name ">Hello<span> unsafeStyle classNames bind foo window name document body innerHTML <span class=" unsafeStyle foo ">Hello<span> safeStyle classNames bind document body innerHTML <span class=" safeStyle window name ">Hello<span> document body innerHTML <span class=" safeStyle foo ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> |
+| autogenerated/Xss/DomBasedXss/classnames.js:11:59:11:63 | 'foo' | enclosingFunctionBody | document body innerHTML <span class=" classNames window name ">Hello<span> document body innerHTML <span class=" classNamesD window name ">Hello<span> document body innerHTML <span class=" classNamesB window name ">Hello<span> unsafeStyle classNames bind foo window name document body innerHTML <span class=" unsafeStyle foo ">Hello<span> safeStyle classNames bind document body innerHTML <span class=" safeStyle window name ">Hello<span> document body innerHTML <span class=" safeStyle foo ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> |
 | autogenerated/Xss/DomBasedXss/classnames.js:11:59:11:63 | 'foo' | enclosingFunctionName | main |
 | autogenerated/Xss/DomBasedXss/classnames.js:11:59:11:63 | 'foo' | fileImports | classnames classnames/bind classnames/dedupe clsx |
 | autogenerated/Xss/DomBasedXss/classnames.js:11:66:11:78 | ">Hello<span> | contextFunctionInterfaces | main() |
 | autogenerated/Xss/DomBasedXss/classnames.js:11:66:11:78 | ">Hello<span> | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/classnames.js:11:66:11:78 | ">Hello<span> | enclosingFunctionBody | document body innerHTML <span class=" classNames window name ">Hello<span> document body innerHTML <span class=" classNamesD window name ">Hello<span> document body innerHTML <span class=" classNamesB window name ">Hello<span> unsafeStyle classNames bind foo window name document body innerHTML <span class=" unsafeStyle foo ">Hello<span> safeStyle classNames bind document body innerHTML <span class=" safeStyle window name ">Hello<span> document body innerHTML <span class=" safeStyle foo ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> |
+| autogenerated/Xss/DomBasedXss/classnames.js:11:66:11:78 | ">Hello<span> | enclosingFunctionBody | document body innerHTML <span class=" classNames window name ">Hello<span> document body innerHTML <span class=" classNamesD window name ">Hello<span> document body innerHTML <span class=" classNamesB window name ">Hello<span> unsafeStyle classNames bind foo window name document body innerHTML <span class=" unsafeStyle foo ">Hello<span> safeStyle classNames bind document body innerHTML <span class=" safeStyle window name ">Hello<span> document body innerHTML <span class=" safeStyle foo ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> |
 | autogenerated/Xss/DomBasedXss/classnames.js:11:66:11:78 | ">Hello<span> | enclosingFunctionName | main |
 | autogenerated/Xss/DomBasedXss/classnames.js:11:66:11:78 | ">Hello<span> | fileImports | classnames classnames/bind classnames/dedupe clsx |
 | autogenerated/Xss/DomBasedXss/classnames.js:11:66:11:78 | ">Hello<span> | stringConcatenatedWith | '<span class="' + unsafeStyle() -endpoint-  |
@@ -9809,25 +12235,25 @@ tokenFeatures
 | autogenerated/Xss/DomBasedXss/classnames.js:12:37:12:38 | {} | calleeImports | classnames |
 | autogenerated/Xss/DomBasedXss/classnames.js:12:37:12:38 | {} | contextFunctionInterfaces | main() |
 | autogenerated/Xss/DomBasedXss/classnames.js:12:37:12:38 | {} | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/classnames.js:12:37:12:38 | {} | enclosingFunctionBody | document body innerHTML <span class=" classNames window name ">Hello<span> document body innerHTML <span class=" classNamesD window name ">Hello<span> document body innerHTML <span class=" classNamesB window name ">Hello<span> unsafeStyle classNames bind foo window name document body innerHTML <span class=" unsafeStyle foo ">Hello<span> safeStyle classNames bind document body innerHTML <span class=" safeStyle window name ">Hello<span> document body innerHTML <span class=" safeStyle foo ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> |
+| autogenerated/Xss/DomBasedXss/classnames.js:12:37:12:38 | {} | enclosingFunctionBody | document body innerHTML <span class=" classNames window name ">Hello<span> document body innerHTML <span class=" classNamesD window name ">Hello<span> document body innerHTML <span class=" classNamesB window name ">Hello<span> unsafeStyle classNames bind foo window name document body innerHTML <span class=" unsafeStyle foo ">Hello<span> safeStyle classNames bind document body innerHTML <span class=" safeStyle window name ">Hello<span> document body innerHTML <span class=" safeStyle foo ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> |
 | autogenerated/Xss/DomBasedXss/classnames.js:12:37:12:38 | {} | enclosingFunctionName | main |
 | autogenerated/Xss/DomBasedXss/classnames.js:12:37:12:38 | {} | fileImports | classnames classnames/bind classnames/dedupe clsx |
 | autogenerated/Xss/DomBasedXss/classnames.js:12:37:12:38 | {} | receiverName | classNames |
 | autogenerated/Xss/DomBasedXss/classnames.js:13:31:13:83 | `<span  ... <span>` | assignedToPropName | innerHTML |
 | autogenerated/Xss/DomBasedXss/classnames.js:13:31:13:83 | `<span  ... <span>` | contextFunctionInterfaces | main() |
 | autogenerated/Xss/DomBasedXss/classnames.js:13:31:13:83 | `<span  ... <span>` | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/classnames.js:13:31:13:83 | `<span  ... <span>` | enclosingFunctionBody | document body innerHTML <span class=" classNames window name ">Hello<span> document body innerHTML <span class=" classNamesD window name ">Hello<span> document body innerHTML <span class=" classNamesB window name ">Hello<span> unsafeStyle classNames bind foo window name document body innerHTML <span class=" unsafeStyle foo ">Hello<span> safeStyle classNames bind document body innerHTML <span class=" safeStyle window name ">Hello<span> document body innerHTML <span class=" safeStyle foo ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> |
+| autogenerated/Xss/DomBasedXss/classnames.js:13:31:13:83 | `<span  ... <span>` | enclosingFunctionBody | document body innerHTML <span class=" classNames window name ">Hello<span> document body innerHTML <span class=" classNamesD window name ">Hello<span> document body innerHTML <span class=" classNamesB window name ">Hello<span> unsafeStyle classNames bind foo window name document body innerHTML <span class=" unsafeStyle foo ">Hello<span> safeStyle classNames bind document body innerHTML <span class=" safeStyle window name ">Hello<span> document body innerHTML <span class=" safeStyle foo ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> |
 | autogenerated/Xss/DomBasedXss/classnames.js:13:31:13:83 | `<span  ... <span>` | enclosingFunctionName | main |
 | autogenerated/Xss/DomBasedXss/classnames.js:13:31:13:83 | `<span  ... <span>` | fileImports | classnames classnames/bind classnames/dedupe clsx |
 | autogenerated/Xss/DomBasedXss/classnames.js:13:32:13:44 | <span class=" | contextFunctionInterfaces | main() |
 | autogenerated/Xss/DomBasedXss/classnames.js:13:32:13:44 | <span class=" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/classnames.js:13:32:13:44 | <span class=" | enclosingFunctionBody | document body innerHTML <span class=" classNames window name ">Hello<span> document body innerHTML <span class=" classNamesD window name ">Hello<span> document body innerHTML <span class=" classNamesB window name ">Hello<span> unsafeStyle classNames bind foo window name document body innerHTML <span class=" unsafeStyle foo ">Hello<span> safeStyle classNames bind document body innerHTML <span class=" safeStyle window name ">Hello<span> document body innerHTML <span class=" safeStyle foo ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> |
+| autogenerated/Xss/DomBasedXss/classnames.js:13:32:13:44 | <span class=" | enclosingFunctionBody | document body innerHTML <span class=" classNames window name ">Hello<span> document body innerHTML <span class=" classNamesD window name ">Hello<span> document body innerHTML <span class=" classNamesB window name ">Hello<span> unsafeStyle classNames bind foo window name document body innerHTML <span class=" unsafeStyle foo ">Hello<span> safeStyle classNames bind document body innerHTML <span class=" safeStyle window name ">Hello<span> document body innerHTML <span class=" safeStyle foo ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> |
 | autogenerated/Xss/DomBasedXss/classnames.js:13:32:13:44 | <span class=" | enclosingFunctionName | main |
 | autogenerated/Xss/DomBasedXss/classnames.js:13:32:13:44 | <span class=" | fileImports | classnames classnames/bind classnames/dedupe clsx |
 | autogenerated/Xss/DomBasedXss/classnames.js:13:32:13:44 | <span class=" | stringConcatenatedWith |  -endpoint- safeStyle() + '">Hello<span>' |
 | autogenerated/Xss/DomBasedXss/classnames.js:13:47:13:68 | safeSty ... w.name) | contextFunctionInterfaces | main() |
 | autogenerated/Xss/DomBasedXss/classnames.js:13:47:13:68 | safeSty ... w.name) | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/classnames.js:13:47:13:68 | safeSty ... w.name) | enclosingFunctionBody | document body innerHTML <span class=" classNames window name ">Hello<span> document body innerHTML <span class=" classNamesD window name ">Hello<span> document body innerHTML <span class=" classNamesB window name ">Hello<span> unsafeStyle classNames bind foo window name document body innerHTML <span class=" unsafeStyle foo ">Hello<span> safeStyle classNames bind document body innerHTML <span class=" safeStyle window name ">Hello<span> document body innerHTML <span class=" safeStyle foo ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> |
+| autogenerated/Xss/DomBasedXss/classnames.js:13:47:13:68 | safeSty ... w.name) | enclosingFunctionBody | document body innerHTML <span class=" classNames window name ">Hello<span> document body innerHTML <span class=" classNamesD window name ">Hello<span> document body innerHTML <span class=" classNamesB window name ">Hello<span> unsafeStyle classNames bind foo window name document body innerHTML <span class=" unsafeStyle foo ">Hello<span> safeStyle classNames bind document body innerHTML <span class=" safeStyle window name ">Hello<span> document body innerHTML <span class=" safeStyle foo ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> |
 | autogenerated/Xss/DomBasedXss/classnames.js:13:47:13:68 | safeSty ... w.name) | enclosingFunctionName | main |
 | autogenerated/Xss/DomBasedXss/classnames.js:13:47:13:68 | safeSty ... w.name) | fileImports | classnames classnames/bind classnames/dedupe clsx |
 | autogenerated/Xss/DomBasedXss/classnames.js:13:47:13:68 | safeSty ... w.name) | stringConcatenatedWith | '<span class="' -endpoint- '">Hello<span>' |
@@ -9836,30 +12262,30 @@ tokenFeatures
 | autogenerated/Xss/DomBasedXss/classnames.js:13:57:13:67 | window.name | calleeImports | classnames |
 | autogenerated/Xss/DomBasedXss/classnames.js:13:57:13:67 | window.name | contextFunctionInterfaces | main() |
 | autogenerated/Xss/DomBasedXss/classnames.js:13:57:13:67 | window.name | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/classnames.js:13:57:13:67 | window.name | enclosingFunctionBody | document body innerHTML <span class=" classNames window name ">Hello<span> document body innerHTML <span class=" classNamesD window name ">Hello<span> document body innerHTML <span class=" classNamesB window name ">Hello<span> unsafeStyle classNames bind foo window name document body innerHTML <span class=" unsafeStyle foo ">Hello<span> safeStyle classNames bind document body innerHTML <span class=" safeStyle window name ">Hello<span> document body innerHTML <span class=" safeStyle foo ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> |
+| autogenerated/Xss/DomBasedXss/classnames.js:13:57:13:67 | window.name | enclosingFunctionBody | document body innerHTML <span class=" classNames window name ">Hello<span> document body innerHTML <span class=" classNamesD window name ">Hello<span> document body innerHTML <span class=" classNamesB window name ">Hello<span> unsafeStyle classNames bind foo window name document body innerHTML <span class=" unsafeStyle foo ">Hello<span> safeStyle classNames bind document body innerHTML <span class=" safeStyle window name ">Hello<span> document body innerHTML <span class=" safeStyle foo ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> |
 | autogenerated/Xss/DomBasedXss/classnames.js:13:57:13:67 | window.name | enclosingFunctionName | main |
 | autogenerated/Xss/DomBasedXss/classnames.js:13:57:13:67 | window.name | fileImports | classnames classnames/bind classnames/dedupe clsx |
 | autogenerated/Xss/DomBasedXss/classnames.js:13:70:13:82 | ">Hello<span> | contextFunctionInterfaces | main() |
 | autogenerated/Xss/DomBasedXss/classnames.js:13:70:13:82 | ">Hello<span> | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/classnames.js:13:70:13:82 | ">Hello<span> | enclosingFunctionBody | document body innerHTML <span class=" classNames window name ">Hello<span> document body innerHTML <span class=" classNamesD window name ">Hello<span> document body innerHTML <span class=" classNamesB window name ">Hello<span> unsafeStyle classNames bind foo window name document body innerHTML <span class=" unsafeStyle foo ">Hello<span> safeStyle classNames bind document body innerHTML <span class=" safeStyle window name ">Hello<span> document body innerHTML <span class=" safeStyle foo ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> |
+| autogenerated/Xss/DomBasedXss/classnames.js:13:70:13:82 | ">Hello<span> | enclosingFunctionBody | document body innerHTML <span class=" classNames window name ">Hello<span> document body innerHTML <span class=" classNamesD window name ">Hello<span> document body innerHTML <span class=" classNamesB window name ">Hello<span> unsafeStyle classNames bind foo window name document body innerHTML <span class=" unsafeStyle foo ">Hello<span> safeStyle classNames bind document body innerHTML <span class=" safeStyle window name ">Hello<span> document body innerHTML <span class=" safeStyle foo ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> |
 | autogenerated/Xss/DomBasedXss/classnames.js:13:70:13:82 | ">Hello<span> | enclosingFunctionName | main |
 | autogenerated/Xss/DomBasedXss/classnames.js:13:70:13:82 | ">Hello<span> | fileImports | classnames classnames/bind classnames/dedupe clsx |
 | autogenerated/Xss/DomBasedXss/classnames.js:13:70:13:82 | ">Hello<span> | stringConcatenatedWith | '<span class="' + safeStyle() -endpoint-  |
 | autogenerated/Xss/DomBasedXss/classnames.js:14:31:14:77 | `<span  ... <span>` | assignedToPropName | innerHTML |
 | autogenerated/Xss/DomBasedXss/classnames.js:14:31:14:77 | `<span  ... <span>` | contextFunctionInterfaces | main() |
 | autogenerated/Xss/DomBasedXss/classnames.js:14:31:14:77 | `<span  ... <span>` | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/classnames.js:14:31:14:77 | `<span  ... <span>` | enclosingFunctionBody | document body innerHTML <span class=" classNames window name ">Hello<span> document body innerHTML <span class=" classNamesD window name ">Hello<span> document body innerHTML <span class=" classNamesB window name ">Hello<span> unsafeStyle classNames bind foo window name document body innerHTML <span class=" unsafeStyle foo ">Hello<span> safeStyle classNames bind document body innerHTML <span class=" safeStyle window name ">Hello<span> document body innerHTML <span class=" safeStyle foo ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> |
+| autogenerated/Xss/DomBasedXss/classnames.js:14:31:14:77 | `<span  ... <span>` | enclosingFunctionBody | document body innerHTML <span class=" classNames window name ">Hello<span> document body innerHTML <span class=" classNamesD window name ">Hello<span> document body innerHTML <span class=" classNamesB window name ">Hello<span> unsafeStyle classNames bind foo window name document body innerHTML <span class=" unsafeStyle foo ">Hello<span> safeStyle classNames bind document body innerHTML <span class=" safeStyle window name ">Hello<span> document body innerHTML <span class=" safeStyle foo ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> |
 | autogenerated/Xss/DomBasedXss/classnames.js:14:31:14:77 | `<span  ... <span>` | enclosingFunctionName | main |
 | autogenerated/Xss/DomBasedXss/classnames.js:14:31:14:77 | `<span  ... <span>` | fileImports | classnames classnames/bind classnames/dedupe clsx |
 | autogenerated/Xss/DomBasedXss/classnames.js:14:32:14:44 | <span class=" | contextFunctionInterfaces | main() |
 | autogenerated/Xss/DomBasedXss/classnames.js:14:32:14:44 | <span class=" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/classnames.js:14:32:14:44 | <span class=" | enclosingFunctionBody | document body innerHTML <span class=" classNames window name ">Hello<span> document body innerHTML <span class=" classNamesD window name ">Hello<span> document body innerHTML <span class=" classNamesB window name ">Hello<span> unsafeStyle classNames bind foo window name document body innerHTML <span class=" unsafeStyle foo ">Hello<span> safeStyle classNames bind document body innerHTML <span class=" safeStyle window name ">Hello<span> document body innerHTML <span class=" safeStyle foo ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> |
+| autogenerated/Xss/DomBasedXss/classnames.js:14:32:14:44 | <span class=" | enclosingFunctionBody | document body innerHTML <span class=" classNames window name ">Hello<span> document body innerHTML <span class=" classNamesD window name ">Hello<span> document body innerHTML <span class=" classNamesB window name ">Hello<span> unsafeStyle classNames bind foo window name document body innerHTML <span class=" unsafeStyle foo ">Hello<span> safeStyle classNames bind document body innerHTML <span class=" safeStyle window name ">Hello<span> document body innerHTML <span class=" safeStyle foo ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> |
 | autogenerated/Xss/DomBasedXss/classnames.js:14:32:14:44 | <span class=" | enclosingFunctionName | main |
 | autogenerated/Xss/DomBasedXss/classnames.js:14:32:14:44 | <span class=" | fileImports | classnames classnames/bind classnames/dedupe clsx |
 | autogenerated/Xss/DomBasedXss/classnames.js:14:32:14:44 | <span class=" | stringConcatenatedWith |  -endpoint- safeStyle() + '">Hello<span>' |
 | autogenerated/Xss/DomBasedXss/classnames.js:14:47:14:62 | safeStyle('foo') | contextFunctionInterfaces | main() |
 | autogenerated/Xss/DomBasedXss/classnames.js:14:47:14:62 | safeStyle('foo') | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/classnames.js:14:47:14:62 | safeStyle('foo') | enclosingFunctionBody | document body innerHTML <span class=" classNames window name ">Hello<span> document body innerHTML <span class=" classNamesD window name ">Hello<span> document body innerHTML <span class=" classNamesB window name ">Hello<span> unsafeStyle classNames bind foo window name document body innerHTML <span class=" unsafeStyle foo ">Hello<span> safeStyle classNames bind document body innerHTML <span class=" safeStyle window name ">Hello<span> document body innerHTML <span class=" safeStyle foo ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> |
+| autogenerated/Xss/DomBasedXss/classnames.js:14:47:14:62 | safeStyle('foo') | enclosingFunctionBody | document body innerHTML <span class=" classNames window name ">Hello<span> document body innerHTML <span class=" classNamesD window name ">Hello<span> document body innerHTML <span class=" classNamesB window name ">Hello<span> unsafeStyle classNames bind foo window name document body innerHTML <span class=" unsafeStyle foo ">Hello<span> safeStyle classNames bind document body innerHTML <span class=" safeStyle window name ">Hello<span> document body innerHTML <span class=" safeStyle foo ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> |
 | autogenerated/Xss/DomBasedXss/classnames.js:14:47:14:62 | safeStyle('foo') | enclosingFunctionName | main |
 | autogenerated/Xss/DomBasedXss/classnames.js:14:47:14:62 | safeStyle('foo') | fileImports | classnames classnames/bind classnames/dedupe clsx |
 | autogenerated/Xss/DomBasedXss/classnames.js:14:47:14:62 | safeStyle('foo') | stringConcatenatedWith | '<span class="' -endpoint- '">Hello<span>' |
@@ -9868,30 +12294,30 @@ tokenFeatures
 | autogenerated/Xss/DomBasedXss/classnames.js:14:57:14:61 | 'foo' | calleeImports | classnames |
 | autogenerated/Xss/DomBasedXss/classnames.js:14:57:14:61 | 'foo' | contextFunctionInterfaces | main() |
 | autogenerated/Xss/DomBasedXss/classnames.js:14:57:14:61 | 'foo' | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/classnames.js:14:57:14:61 | 'foo' | enclosingFunctionBody | document body innerHTML <span class=" classNames window name ">Hello<span> document body innerHTML <span class=" classNamesD window name ">Hello<span> document body innerHTML <span class=" classNamesB window name ">Hello<span> unsafeStyle classNames bind foo window name document body innerHTML <span class=" unsafeStyle foo ">Hello<span> safeStyle classNames bind document body innerHTML <span class=" safeStyle window name ">Hello<span> document body innerHTML <span class=" safeStyle foo ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> |
+| autogenerated/Xss/DomBasedXss/classnames.js:14:57:14:61 | 'foo' | enclosingFunctionBody | document body innerHTML <span class=" classNames window name ">Hello<span> document body innerHTML <span class=" classNamesD window name ">Hello<span> document body innerHTML <span class=" classNamesB window name ">Hello<span> unsafeStyle classNames bind foo window name document body innerHTML <span class=" unsafeStyle foo ">Hello<span> safeStyle classNames bind document body innerHTML <span class=" safeStyle window name ">Hello<span> document body innerHTML <span class=" safeStyle foo ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> |
 | autogenerated/Xss/DomBasedXss/classnames.js:14:57:14:61 | 'foo' | enclosingFunctionName | main |
 | autogenerated/Xss/DomBasedXss/classnames.js:14:57:14:61 | 'foo' | fileImports | classnames classnames/bind classnames/dedupe clsx |
 | autogenerated/Xss/DomBasedXss/classnames.js:14:64:14:76 | ">Hello<span> | contextFunctionInterfaces | main() |
 | autogenerated/Xss/DomBasedXss/classnames.js:14:64:14:76 | ">Hello<span> | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/classnames.js:14:64:14:76 | ">Hello<span> | enclosingFunctionBody | document body innerHTML <span class=" classNames window name ">Hello<span> document body innerHTML <span class=" classNamesD window name ">Hello<span> document body innerHTML <span class=" classNamesB window name ">Hello<span> unsafeStyle classNames bind foo window name document body innerHTML <span class=" unsafeStyle foo ">Hello<span> safeStyle classNames bind document body innerHTML <span class=" safeStyle window name ">Hello<span> document body innerHTML <span class=" safeStyle foo ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> |
+| autogenerated/Xss/DomBasedXss/classnames.js:14:64:14:76 | ">Hello<span> | enclosingFunctionBody | document body innerHTML <span class=" classNames window name ">Hello<span> document body innerHTML <span class=" classNamesD window name ">Hello<span> document body innerHTML <span class=" classNamesB window name ">Hello<span> unsafeStyle classNames bind foo window name document body innerHTML <span class=" unsafeStyle foo ">Hello<span> safeStyle classNames bind document body innerHTML <span class=" safeStyle window name ">Hello<span> document body innerHTML <span class=" safeStyle foo ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> |
 | autogenerated/Xss/DomBasedXss/classnames.js:14:64:14:76 | ">Hello<span> | enclosingFunctionName | main |
 | autogenerated/Xss/DomBasedXss/classnames.js:14:64:14:76 | ">Hello<span> | fileImports | classnames classnames/bind classnames/dedupe clsx |
 | autogenerated/Xss/DomBasedXss/classnames.js:14:64:14:76 | ">Hello<span> | stringConcatenatedWith | '<span class="' + safeStyle() -endpoint-  |
 | autogenerated/Xss/DomBasedXss/classnames.js:15:31:15:78 | `<span  ... <span>` | assignedToPropName | innerHTML |
 | autogenerated/Xss/DomBasedXss/classnames.js:15:31:15:78 | `<span  ... <span>` | contextFunctionInterfaces | main() |
 | autogenerated/Xss/DomBasedXss/classnames.js:15:31:15:78 | `<span  ... <span>` | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/classnames.js:15:31:15:78 | `<span  ... <span>` | enclosingFunctionBody | document body innerHTML <span class=" classNames window name ">Hello<span> document body innerHTML <span class=" classNamesD window name ">Hello<span> document body innerHTML <span class=" classNamesB window name ">Hello<span> unsafeStyle classNames bind foo window name document body innerHTML <span class=" unsafeStyle foo ">Hello<span> safeStyle classNames bind document body innerHTML <span class=" safeStyle window name ">Hello<span> document body innerHTML <span class=" safeStyle foo ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> |
+| autogenerated/Xss/DomBasedXss/classnames.js:15:31:15:78 | `<span  ... <span>` | enclosingFunctionBody | document body innerHTML <span class=" classNames window name ">Hello<span> document body innerHTML <span class=" classNamesD window name ">Hello<span> document body innerHTML <span class=" classNamesB window name ">Hello<span> unsafeStyle classNames bind foo window name document body innerHTML <span class=" unsafeStyle foo ">Hello<span> safeStyle classNames bind document body innerHTML <span class=" safeStyle window name ">Hello<span> document body innerHTML <span class=" safeStyle foo ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> |
 | autogenerated/Xss/DomBasedXss/classnames.js:15:31:15:78 | `<span  ... <span>` | enclosingFunctionName | main |
 | autogenerated/Xss/DomBasedXss/classnames.js:15:31:15:78 | `<span  ... <span>` | fileImports | classnames classnames/bind classnames/dedupe clsx |
 | autogenerated/Xss/DomBasedXss/classnames.js:15:32:15:44 | <span class=" | contextFunctionInterfaces | main() |
 | autogenerated/Xss/DomBasedXss/classnames.js:15:32:15:44 | <span class=" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/classnames.js:15:32:15:44 | <span class=" | enclosingFunctionBody | document body innerHTML <span class=" classNames window name ">Hello<span> document body innerHTML <span class=" classNamesD window name ">Hello<span> document body innerHTML <span class=" classNamesB window name ">Hello<span> unsafeStyle classNames bind foo window name document body innerHTML <span class=" unsafeStyle foo ">Hello<span> safeStyle classNames bind document body innerHTML <span class=" safeStyle window name ">Hello<span> document body innerHTML <span class=" safeStyle foo ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> |
+| autogenerated/Xss/DomBasedXss/classnames.js:15:32:15:44 | <span class=" | enclosingFunctionBody | document body innerHTML <span class=" classNames window name ">Hello<span> document body innerHTML <span class=" classNamesD window name ">Hello<span> document body innerHTML <span class=" classNamesB window name ">Hello<span> unsafeStyle classNames bind foo window name document body innerHTML <span class=" unsafeStyle foo ">Hello<span> safeStyle classNames bind document body innerHTML <span class=" safeStyle window name ">Hello<span> document body innerHTML <span class=" safeStyle foo ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> |
 | autogenerated/Xss/DomBasedXss/classnames.js:15:32:15:44 | <span class=" | enclosingFunctionName | main |
 | autogenerated/Xss/DomBasedXss/classnames.js:15:32:15:44 | <span class=" | fileImports | classnames classnames/bind classnames/dedupe clsx |
 | autogenerated/Xss/DomBasedXss/classnames.js:15:32:15:44 | <span class=" | stringConcatenatedWith |  -endpoint- clsx() + '">Hello<span>' |
 | autogenerated/Xss/DomBasedXss/classnames.js:15:47:15:63 | clsx(window.name) | contextFunctionInterfaces | main() |
 | autogenerated/Xss/DomBasedXss/classnames.js:15:47:15:63 | clsx(window.name) | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/classnames.js:15:47:15:63 | clsx(window.name) | enclosingFunctionBody | document body innerHTML <span class=" classNames window name ">Hello<span> document body innerHTML <span class=" classNamesD window name ">Hello<span> document body innerHTML <span class=" classNamesB window name ">Hello<span> unsafeStyle classNames bind foo window name document body innerHTML <span class=" unsafeStyle foo ">Hello<span> safeStyle classNames bind document body innerHTML <span class=" safeStyle window name ">Hello<span> document body innerHTML <span class=" safeStyle foo ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> |
+| autogenerated/Xss/DomBasedXss/classnames.js:15:47:15:63 | clsx(window.name) | enclosingFunctionBody | document body innerHTML <span class=" classNames window name ">Hello<span> document body innerHTML <span class=" classNamesD window name ">Hello<span> document body innerHTML <span class=" classNamesB window name ">Hello<span> unsafeStyle classNames bind foo window name document body innerHTML <span class=" unsafeStyle foo ">Hello<span> safeStyle classNames bind document body innerHTML <span class=" safeStyle window name ">Hello<span> document body innerHTML <span class=" safeStyle foo ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> |
 | autogenerated/Xss/DomBasedXss/classnames.js:15:47:15:63 | clsx(window.name) | enclosingFunctionName | main |
 | autogenerated/Xss/DomBasedXss/classnames.js:15:47:15:63 | clsx(window.name) | fileImports | classnames classnames/bind classnames/dedupe clsx |
 | autogenerated/Xss/DomBasedXss/classnames.js:15:47:15:63 | clsx(window.name) | stringConcatenatedWith | '<span class="' -endpoint- '">Hello<span>' |
@@ -9900,15 +12326,408 @@ tokenFeatures
 | autogenerated/Xss/DomBasedXss/classnames.js:15:52:15:62 | window.name | calleeImports | clsx |
 | autogenerated/Xss/DomBasedXss/classnames.js:15:52:15:62 | window.name | contextFunctionInterfaces | main() |
 | autogenerated/Xss/DomBasedXss/classnames.js:15:52:15:62 | window.name | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/classnames.js:15:52:15:62 | window.name | enclosingFunctionBody | document body innerHTML <span class=" classNames window name ">Hello<span> document body innerHTML <span class=" classNamesD window name ">Hello<span> document body innerHTML <span class=" classNamesB window name ">Hello<span> unsafeStyle classNames bind foo window name document body innerHTML <span class=" unsafeStyle foo ">Hello<span> safeStyle classNames bind document body innerHTML <span class=" safeStyle window name ">Hello<span> document body innerHTML <span class=" safeStyle foo ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> |
+| autogenerated/Xss/DomBasedXss/classnames.js:15:52:15:62 | window.name | enclosingFunctionBody | document body innerHTML <span class=" classNames window name ">Hello<span> document body innerHTML <span class=" classNamesD window name ">Hello<span> document body innerHTML <span class=" classNamesB window name ">Hello<span> unsafeStyle classNames bind foo window name document body innerHTML <span class=" unsafeStyle foo ">Hello<span> safeStyle classNames bind document body innerHTML <span class=" safeStyle window name ">Hello<span> document body innerHTML <span class=" safeStyle foo ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> |
 | autogenerated/Xss/DomBasedXss/classnames.js:15:52:15:62 | window.name | enclosingFunctionName | main |
 | autogenerated/Xss/DomBasedXss/classnames.js:15:52:15:62 | window.name | fileImports | classnames classnames/bind classnames/dedupe clsx |
 | autogenerated/Xss/DomBasedXss/classnames.js:15:65:15:77 | ">Hello<span> | contextFunctionInterfaces | main() |
 | autogenerated/Xss/DomBasedXss/classnames.js:15:65:15:77 | ">Hello<span> | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/classnames.js:15:65:15:77 | ">Hello<span> | enclosingFunctionBody | document body innerHTML <span class=" classNames window name ">Hello<span> document body innerHTML <span class=" classNamesD window name ">Hello<span> document body innerHTML <span class=" classNamesB window name ">Hello<span> unsafeStyle classNames bind foo window name document body innerHTML <span class=" unsafeStyle foo ">Hello<span> safeStyle classNames bind document body innerHTML <span class=" safeStyle window name ">Hello<span> document body innerHTML <span class=" safeStyle foo ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> |
+| autogenerated/Xss/DomBasedXss/classnames.js:15:65:15:77 | ">Hello<span> | enclosingFunctionBody | document body innerHTML <span class=" classNames window name ">Hello<span> document body innerHTML <span class=" classNamesD window name ">Hello<span> document body innerHTML <span class=" classNamesB window name ">Hello<span> unsafeStyle classNames bind foo window name document body innerHTML <span class=" unsafeStyle foo ">Hello<span> safeStyle classNames bind document body innerHTML <span class=" safeStyle window name ">Hello<span> document body innerHTML <span class=" safeStyle foo ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> |
 | autogenerated/Xss/DomBasedXss/classnames.js:15:65:15:77 | ">Hello<span> | enclosingFunctionName | main |
 | autogenerated/Xss/DomBasedXss/classnames.js:15:65:15:77 | ">Hello<span> | fileImports | classnames classnames/bind classnames/dedupe clsx |
 | autogenerated/Xss/DomBasedXss/classnames.js:15:65:15:77 | ">Hello<span> | stringConcatenatedWith | '<span class="' + clsx() -endpoint-  |
+| autogenerated/Xss/DomBasedXss/classnames.js:17:5:17:27 | documen ... nerHTML | contextFunctionInterfaces | main() |
+| autogenerated/Xss/DomBasedXss/classnames.js:17:5:17:27 | documen ... nerHTML | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/classnames.js:17:5:17:27 | documen ... nerHTML | enclosingFunctionBody | document body innerHTML <span class=" classNames window name ">Hello<span> document body innerHTML <span class=" classNamesD window name ">Hello<span> document body innerHTML <span class=" classNamesB window name ">Hello<span> unsafeStyle classNames bind foo window name document body innerHTML <span class=" unsafeStyle foo ">Hello<span> safeStyle classNames bind document body innerHTML <span class=" safeStyle window name ">Hello<span> document body innerHTML <span class=" safeStyle foo ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> |
+| autogenerated/Xss/DomBasedXss/classnames.js:17:5:17:27 | documen ... nerHTML | enclosingFunctionName | main |
+| autogenerated/Xss/DomBasedXss/classnames.js:17:5:17:27 | documen ... nerHTML | fileImports | classnames classnames/bind classnames/dedupe clsx |
+| autogenerated/Xss/DomBasedXss/classnames.js:17:5:17:27 | documen ... nerHTML | stringConcatenatedWith |  -endpoint- '<span class="' + clsx() + '">Hello<span>' |
+| autogenerated/Xss/DomBasedXss/classnames.js:17:5:17:79 | documen ... <span>` | contextFunctionInterfaces | main() |
+| autogenerated/Xss/DomBasedXss/classnames.js:17:5:17:79 | documen ... <span>` | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/classnames.js:17:5:17:79 | documen ... <span>` | enclosingFunctionBody | document body innerHTML <span class=" classNames window name ">Hello<span> document body innerHTML <span class=" classNamesD window name ">Hello<span> document body innerHTML <span class=" classNamesB window name ">Hello<span> unsafeStyle classNames bind foo window name document body innerHTML <span class=" unsafeStyle foo ">Hello<span> safeStyle classNames bind document body innerHTML <span class=" safeStyle window name ">Hello<span> document body innerHTML <span class=" safeStyle foo ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> |
+| autogenerated/Xss/DomBasedXss/classnames.js:17:5:17:79 | documen ... <span>` | enclosingFunctionName | main |
+| autogenerated/Xss/DomBasedXss/classnames.js:17:5:17:79 | documen ... <span>` | fileImports | classnames classnames/bind classnames/dedupe clsx |
+| autogenerated/Xss/DomBasedXss/classnames.js:17:33:17:45 | <span class=" | contextFunctionInterfaces | main() |
+| autogenerated/Xss/DomBasedXss/classnames.js:17:33:17:45 | <span class=" | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/classnames.js:17:33:17:45 | <span class=" | enclosingFunctionBody | document body innerHTML <span class=" classNames window name ">Hello<span> document body innerHTML <span class=" classNamesD window name ">Hello<span> document body innerHTML <span class=" classNamesB window name ">Hello<span> unsafeStyle classNames bind foo window name document body innerHTML <span class=" unsafeStyle foo ">Hello<span> safeStyle classNames bind document body innerHTML <span class=" safeStyle window name ">Hello<span> document body innerHTML <span class=" safeStyle foo ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> |
+| autogenerated/Xss/DomBasedXss/classnames.js:17:33:17:45 | <span class=" | enclosingFunctionName | main |
+| autogenerated/Xss/DomBasedXss/classnames.js:17:33:17:45 | <span class=" | fileImports | classnames classnames/bind classnames/dedupe clsx |
+| autogenerated/Xss/DomBasedXss/classnames.js:17:33:17:45 | <span class=" | stringConcatenatedWith | document.body.innerHTML -endpoint- clsx() + '">Hello<span>' |
+| autogenerated/Xss/DomBasedXss/classnames.js:17:48:17:64 | clsx(window.name) | contextFunctionInterfaces | main() |
+| autogenerated/Xss/DomBasedXss/classnames.js:17:48:17:64 | clsx(window.name) | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/classnames.js:17:48:17:64 | clsx(window.name) | enclosingFunctionBody | document body innerHTML <span class=" classNames window name ">Hello<span> document body innerHTML <span class=" classNamesD window name ">Hello<span> document body innerHTML <span class=" classNamesB window name ">Hello<span> unsafeStyle classNames bind foo window name document body innerHTML <span class=" unsafeStyle foo ">Hello<span> safeStyle classNames bind document body innerHTML <span class=" safeStyle window name ">Hello<span> document body innerHTML <span class=" safeStyle foo ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> |
+| autogenerated/Xss/DomBasedXss/classnames.js:17:48:17:64 | clsx(window.name) | enclosingFunctionName | main |
+| autogenerated/Xss/DomBasedXss/classnames.js:17:48:17:64 | clsx(window.name) | fileImports | classnames classnames/bind classnames/dedupe clsx |
+| autogenerated/Xss/DomBasedXss/classnames.js:17:48:17:64 | clsx(window.name) | stringConcatenatedWith | document.body.innerHTML + '<span class="' -endpoint- '">Hello<span>' |
+| autogenerated/Xss/DomBasedXss/classnames.js:17:53:17:63 | window.name | CalleeFlexibleAccessPath | clsx |
+| autogenerated/Xss/DomBasedXss/classnames.js:17:53:17:63 | window.name | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/classnames.js:17:53:17:63 | window.name | calleeImports | clsx |
+| autogenerated/Xss/DomBasedXss/classnames.js:17:53:17:63 | window.name | contextFunctionInterfaces | main() |
+| autogenerated/Xss/DomBasedXss/classnames.js:17:53:17:63 | window.name | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/classnames.js:17:53:17:63 | window.name | enclosingFunctionBody | document body innerHTML <span class=" classNames window name ">Hello<span> document body innerHTML <span class=" classNamesD window name ">Hello<span> document body innerHTML <span class=" classNamesB window name ">Hello<span> unsafeStyle classNames bind foo window name document body innerHTML <span class=" unsafeStyle foo ">Hello<span> safeStyle classNames bind document body innerHTML <span class=" safeStyle window name ">Hello<span> document body innerHTML <span class=" safeStyle foo ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> |
+| autogenerated/Xss/DomBasedXss/classnames.js:17:53:17:63 | window.name | enclosingFunctionName | main |
+| autogenerated/Xss/DomBasedXss/classnames.js:17:53:17:63 | window.name | fileImports | classnames classnames/bind classnames/dedupe clsx |
+| autogenerated/Xss/DomBasedXss/classnames.js:17:66:17:78 | ">Hello<span> | contextFunctionInterfaces | main() |
+| autogenerated/Xss/DomBasedXss/classnames.js:17:66:17:78 | ">Hello<span> | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/classnames.js:17:66:17:78 | ">Hello<span> | enclosingFunctionBody | document body innerHTML <span class=" classNames window name ">Hello<span> document body innerHTML <span class=" classNamesD window name ">Hello<span> document body innerHTML <span class=" classNamesB window name ">Hello<span> unsafeStyle classNames bind foo window name document body innerHTML <span class=" unsafeStyle foo ">Hello<span> safeStyle classNames bind document body innerHTML <span class=" safeStyle window name ">Hello<span> document body innerHTML <span class=" safeStyle foo ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> |
+| autogenerated/Xss/DomBasedXss/classnames.js:17:66:17:78 | ">Hello<span> | enclosingFunctionName | main |
+| autogenerated/Xss/DomBasedXss/classnames.js:17:66:17:78 | ">Hello<span> | fileImports | classnames classnames/bind classnames/dedupe clsx |
+| autogenerated/Xss/DomBasedXss/classnames.js:17:66:17:78 | ">Hello<span> | stringConcatenatedWith | document.body.innerHTML + '<span class="' + clsx() -endpoint-  |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:1:3:1:8 | "#foo" | CalleeFlexibleAccessPath | $ |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:1:3:1:8 | "#foo" | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:1:3:1:8 | "#foo" | contextFunctionInterfaces | getClipboardData(e)\ninstall(el)\nonpaste(e)\npaste(e) |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:1:3:1:8 | "#foo" | contextSurroundingFunctionParameters |  |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:1:3:1:8 | "#foo" | fileImports |  |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:1:14:1:20 | "paste" | CalleeFlexibleAccessPath | $().on |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:1:14:1:20 | "paste" | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:1:14:1:20 | "paste" | contextFunctionInterfaces | getClipboardData(e)\ninstall(el)\nonpaste(e)\npaste(e) |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:1:14:1:20 | "paste" | contextSurroundingFunctionParameters |  |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:1:14:1:20 | "paste" | fileImports |  |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:1:23:1:27 | paste | CalleeFlexibleAccessPath | $().on |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:1:23:1:27 | paste | InputArgumentIndex | 1 |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:1:23:1:27 | paste | contextFunctionInterfaces | getClipboardData(e)\ninstall(el)\nonpaste(e)\npaste(e) |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:1:23:1:27 | paste | contextSurroundingFunctionParameters |  |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:1:23:1:27 | paste | fileImports |  |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:7:40:7:51 | 'text/plain' | CalleeFlexibleAccessPath | clipboardData.getData |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:7:40:7:51 | 'text/plain' | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:7:40:7:51 | 'text/plain' | contextFunctionInterfaces | getClipboardData(e)\ninstall(el)\nonpaste(e)\npaste(e) |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:7:40:7:51 | 'text/plain' | contextSurroundingFunctionParameters | (e) |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:7:40:7:51 | 'text/plain' | enclosingFunctionBody | e clipboardData e originalEvent clipboardData text clipboardData getData text/plain html clipboardData getData text/html text html e preventDefault div document createElement div html div innerHTML html div textContent text document body append div |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:7:40:7:51 | 'text/plain' | enclosingFunctionName | paste |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:7:40:7:51 | 'text/plain' | fileImports |  |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:7:40:7:51 | 'text/plain' | receiverName | clipboardData |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:8:18:8:51 | clipboa ... /html') | contextFunctionInterfaces | getClipboardData(e)\ninstall(el)\nonpaste(e)\npaste(e) |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:8:18:8:51 | clipboa ... /html') | contextSurroundingFunctionParameters | (e) |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:8:18:8:51 | clipboa ... /html') | enclosingFunctionBody | e clipboardData e originalEvent clipboardData text clipboardData getData text/plain html clipboardData getData text/html text html e preventDefault div document createElement div html div innerHTML html div textContent text document body append div |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:8:18:8:51 | clipboa ... /html') | enclosingFunctionName | paste |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:8:18:8:51 | clipboa ... /html') | fileImports |  |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:8:40:8:50 | 'text/html' | CalleeFlexibleAccessPath | clipboardData.getData |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:8:40:8:50 | 'text/html' | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:8:40:8:50 | 'text/html' | contextFunctionInterfaces | getClipboardData(e)\ninstall(el)\nonpaste(e)\npaste(e) |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:8:40:8:50 | 'text/html' | contextSurroundingFunctionParameters | (e) |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:8:40:8:50 | 'text/html' | enclosingFunctionBody | e clipboardData e originalEvent clipboardData text clipboardData getData text/plain html clipboardData getData text/html text html e preventDefault div document createElement div html div innerHTML html div textContent text document body append div |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:8:40:8:50 | 'text/html' | enclosingFunctionName | paste |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:8:40:8:50 | 'text/html' | fileImports |  |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:8:40:8:50 | 'text/html' | receiverName | clipboardData |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:13:40:13:44 | 'div' | CalleeFlexibleAccessPath | document.createElement |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:13:40:13:44 | 'div' | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:13:40:13:44 | 'div' | contextFunctionInterfaces | getClipboardData(e)\ninstall(el)\nonpaste(e)\npaste(e) |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:13:40:13:44 | 'div' | contextSurroundingFunctionParameters | (e) |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:13:40:13:44 | 'div' | enclosingFunctionBody | e clipboardData e originalEvent clipboardData text clipboardData getData text/plain html clipboardData getData text/html text html e preventDefault div document createElement div html div innerHTML html div textContent text document body append div |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:13:40:13:44 | 'div' | enclosingFunctionName | paste |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:13:40:13:44 | 'div' | fileImports |  |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:13:40:13:44 | 'div' | receiverName | document |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:15:25:15:28 | html | assignedToPropName | innerHTML |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:15:25:15:28 | html | contextFunctionInterfaces | getClipboardData(e)\ninstall(el)\nonpaste(e)\npaste(e) |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:15:25:15:28 | html | contextSurroundingFunctionParameters | (e) |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:15:25:15:28 | html | enclosingFunctionBody | e clipboardData e originalEvent clipboardData text clipboardData getData text/plain html clipboardData getData text/html text html e preventDefault div document createElement div html div innerHTML html div textContent text document body append div |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:15:25:15:28 | html | enclosingFunctionName | paste |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:15:25:15:28 | html | fileImports |  |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:19:26:19:28 | div | CalleeFlexibleAccessPath | document.body.append |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:19:26:19:28 | div | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:19:26:19:28 | div | contextFunctionInterfaces | getClipboardData(e)\ninstall(el)\nonpaste(e)\npaste(e) |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:19:26:19:28 | div | contextSurroundingFunctionParameters | (e) |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:19:26:19:28 | div | enclosingFunctionBody | e clipboardData e originalEvent clipboardData text clipboardData getData text/plain html clipboardData getData text/html text html e preventDefault div document createElement div html div innerHTML html div textContent text document body append div |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:19:26:19:28 | div | enclosingFunctionName | paste |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:19:26:19:28 | div | fileImports |  |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:23:25:23:31 | 'paste' | CalleeFlexibleAccessPath | el.addEventListener |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:23:25:23:31 | 'paste' | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:23:25:23:31 | 'paste' | contextFunctionInterfaces | getClipboardData(e)\ninstall(el)\nonpaste(e)\npaste(e) |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:23:25:23:31 | 'paste' | contextSurroundingFunctionParameters | (el) |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:23:25:23:31 | 'paste' | enclosingFunctionBody | el HTMLElement el addEventListener paste e $ #id html e clipboardData getData text/html |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:23:25:23:31 | 'paste' | enclosingFunctionName | install |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:23:25:23:31 | 'paste' | fileImports |  |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:23:25:23:31 | 'paste' | receiverName | el |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:23:34:25:5 | (e) =>  ...  \\n    } | CalleeFlexibleAccessPath | el.addEventListener |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:23:34:25:5 | (e) =>  ...  \\n    } | InputArgumentIndex | 1 |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:23:34:25:5 | (e) =>  ...  \\n    } | contextFunctionInterfaces | getClipboardData(e)\ninstall(el)\nonpaste(e)\npaste(e) |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:23:34:25:5 | (e) =>  ...  \\n    } | contextSurroundingFunctionParameters | (el)\n(e) |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:23:34:25:5 | (e) =>  ...  \\n    } | enclosingFunctionBody | el HTMLElement el addEventListener paste e $ #id html e clipboardData getData text/html |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:23:34:25:5 | (e) =>  ...  \\n    } | enclosingFunctionName | install |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:23:34:25:5 | (e) =>  ...  \\n    } | fileImports |  |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:23:34:25:5 | (e) =>  ...  \\n    } | receiverName | el |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:24:11:24:15 | "#id" | CalleeFlexibleAccessPath | $ |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:24:11:24:15 | "#id" | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:24:11:24:15 | "#id" | contextFunctionInterfaces | getClipboardData(e)\ninstall(el)\nonpaste(e)\npaste(e) |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:24:11:24:15 | "#id" | contextSurroundingFunctionParameters | (el)\n(e) |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:24:11:24:15 | "#id" | enclosingFunctionBody | el HTMLElement el addEventListener paste e $ #id html e clipboardData getData text/html |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:24:11:24:15 | "#id" | enclosingFunctionName | install |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:24:11:24:15 | "#id" | fileImports |  |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:24:23:24:58 | e.clipb ... /html') | CalleeFlexibleAccessPath | $().html |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:24:23:24:58 | e.clipb ... /html') | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:24:23:24:58 | e.clipb ... /html') | contextFunctionInterfaces | getClipboardData(e)\ninstall(el)\nonpaste(e)\npaste(e) |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:24:23:24:58 | e.clipb ... /html') | contextSurroundingFunctionParameters | (el)\n(e) |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:24:23:24:58 | e.clipb ... /html') | enclosingFunctionBody | el HTMLElement el addEventListener paste e $ #id html e clipboardData getData text/html |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:24:23:24:58 | e.clipb ... /html') | enclosingFunctionName | install |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:24:23:24:58 | e.clipb ... /html') | fileImports |  |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:24:47:24:57 | 'text/html' | CalleeFlexibleAccessPath | e.clipboardData.getData |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:24:47:24:57 | 'text/html' | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:24:47:24:57 | 'text/html' | contextFunctionInterfaces | getClipboardData(e)\ninstall(el)\nonpaste(e)\npaste(e) |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:24:47:24:57 | 'text/html' | contextSurroundingFunctionParameters | (el)\n(e) |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:24:47:24:57 | 'text/html' | enclosingFunctionBody | el HTMLElement el addEventListener paste e $ #id html e clipboardData getData text/html |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:24:47:24:57 | 'text/html' | enclosingFunctionName | install |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:24:47:24:57 | 'text/html' | fileImports |  |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:28:27:28:33 | 'paste' | CalleeFlexibleAccessPath | document.addEventListener |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:28:27:28:33 | 'paste' | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:28:27:28:33 | 'paste' | contextFunctionInterfaces | getClipboardData(e)\ninstall(el)\nonpaste(e)\npaste(e) |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:28:27:28:33 | 'paste' | contextSurroundingFunctionParameters |  |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:28:27:28:33 | 'paste' | fileImports |  |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:28:27:28:33 | 'paste' | receiverName | document |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:28:36:30:1 | (e) =>  ... OT OK\\n} | CalleeFlexibleAccessPath | document.addEventListener |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:28:36:30:1 | (e) =>  ... OT OK\\n} | InputArgumentIndex | 1 |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:28:36:30:1 | (e) =>  ... OT OK\\n} | contextFunctionInterfaces | getClipboardData(e)\ninstall(el)\nonpaste(e)\npaste(e) |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:28:36:30:1 | (e) =>  ... OT OK\\n} | contextSurroundingFunctionParameters | (e) |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:28:36:30:1 | (e) =>  ... OT OK\\n} | fileImports |  |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:28:36:30:1 | (e) =>  ... OT OK\\n} | receiverName | document |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:29:7:29:11 | "#id" | CalleeFlexibleAccessPath | $ |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:29:7:29:11 | "#id" | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:29:7:29:11 | "#id" | contextFunctionInterfaces | getClipboardData(e)\ninstall(el)\nonpaste(e)\npaste(e) |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:29:7:29:11 | "#id" | contextSurroundingFunctionParameters | (e) |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:29:7:29:11 | "#id" | enclosingFunctionBody | e $ #id html e clipboardData getData text/html |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:29:7:29:11 | "#id" | enclosingFunctionName | document.addEventListener#functionalargument |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:29:7:29:11 | "#id" | fileImports |  |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:29:19:29:54 | e.clipb ... /html') | CalleeFlexibleAccessPath | $().html |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:29:19:29:54 | e.clipb ... /html') | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:29:19:29:54 | e.clipb ... /html') | contextFunctionInterfaces | getClipboardData(e)\ninstall(el)\nonpaste(e)\npaste(e) |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:29:19:29:54 | e.clipb ... /html') | contextSurroundingFunctionParameters | (e) |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:29:19:29:54 | e.clipb ... /html') | enclosingFunctionBody | e $ #id html e clipboardData getData text/html |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:29:19:29:54 | e.clipb ... /html') | enclosingFunctionName | document.addEventListener#functionalargument |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:29:19:29:54 | e.clipb ... /html') | fileImports |  |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:29:43:29:53 | 'text/html' | CalleeFlexibleAccessPath | e.clipboardData.getData |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:29:43:29:53 | 'text/html' | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:29:43:29:53 | 'text/html' | contextFunctionInterfaces | getClipboardData(e)\ninstall(el)\nonpaste(e)\npaste(e) |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:29:43:29:53 | 'text/html' | contextSurroundingFunctionParameters | (e) |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:29:43:29:53 | 'text/html' | enclosingFunctionBody | e $ #id html e clipboardData getData text/html |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:29:43:29:53 | 'text/html' | enclosingFunctionName | document.addEventListener#functionalargument |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:29:43:29:53 | 'text/html' | fileImports |  |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:32:3:32:8 | "#foo" | CalleeFlexibleAccessPath | $ |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:32:3:32:8 | "#foo" | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:32:3:32:8 | "#foo" | contextFunctionInterfaces | getClipboardData(e)\ninstall(el)\nonpaste(e)\npaste(e) |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:32:3:32:8 | "#foo" | contextSurroundingFunctionParameters |  |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:32:3:32:8 | "#foo" | fileImports |  |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:32:16:32:22 | 'paste' | CalleeFlexibleAccessPath | $().bind |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:32:16:32:22 | 'paste' | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:32:16:32:22 | 'paste' | contextFunctionInterfaces | getClipboardData(e)\ninstall(el)\nonpaste(e)\npaste(e) |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:32:16:32:22 | 'paste' | contextSurroundingFunctionParameters |  |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:32:16:32:22 | 'paste' | fileImports |  |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:32:25:34:1 | (e) =>  ... OT OK\\n} | CalleeFlexibleAccessPath | $().bind |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:32:25:34:1 | (e) =>  ... OT OK\\n} | InputArgumentIndex | 1 |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:32:25:34:1 | (e) =>  ... OT OK\\n} | contextFunctionInterfaces | getClipboardData(e)\ninstall(el)\nonpaste(e)\npaste(e) |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:32:25:34:1 | (e) =>  ... OT OK\\n} | contextSurroundingFunctionParameters | (e) |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:32:25:34:1 | (e) =>  ... OT OK\\n} | fileImports |  |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:33:7:33:11 | "#id" | CalleeFlexibleAccessPath | $ |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:33:7:33:11 | "#id" | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:33:7:33:11 | "#id" | contextFunctionInterfaces | getClipboardData(e)\ninstall(el)\nonpaste(e)\npaste(e) |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:33:7:33:11 | "#id" | contextSurroundingFunctionParameters | (e) |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:33:7:33:11 | "#id" | enclosingFunctionBody | e $ #id html e originalEvent clipboardData getData text/html |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:33:7:33:11 | "#id" | enclosingFunctionName | bind#functionalargument |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:33:7:33:11 | "#id" | fileImports |  |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:33:19:33:68 | e.origi ... /html') | CalleeFlexibleAccessPath | $().html |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:33:19:33:68 | e.origi ... /html') | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:33:19:33:68 | e.origi ... /html') | contextFunctionInterfaces | getClipboardData(e)\ninstall(el)\nonpaste(e)\npaste(e) |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:33:19:33:68 | e.origi ... /html') | contextSurroundingFunctionParameters | (e) |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:33:19:33:68 | e.origi ... /html') | enclosingFunctionBody | e $ #id html e originalEvent clipboardData getData text/html |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:33:19:33:68 | e.origi ... /html') | enclosingFunctionName | bind#functionalargument |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:33:19:33:68 | e.origi ... /html') | fileImports |  |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:33:57:33:67 | 'text/html' | CalleeFlexibleAccessPath | e.originalEvent.clipboardData.getData |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:33:57:33:67 | 'text/html' | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:33:57:33:67 | 'text/html' | contextFunctionInterfaces | getClipboardData(e)\ninstall(el)\nonpaste(e)\npaste(e) |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:33:57:33:67 | 'text/html' | contextSurroundingFunctionParameters | (e) |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:33:57:33:67 | 'text/html' | enclosingFunctionBody | e $ #id html e originalEvent clipboardData getData text/html |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:33:57:33:67 | 'text/html' | enclosingFunctionName | bind#functionalargument |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:33:57:33:67 | 'text/html' | fileImports |  |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:37:38:37:42 | "div" | CalleeFlexibleAccessPath | document.createElement |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:37:38:37:42 | "div" | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:37:38:37:42 | "div" | contextFunctionInterfaces | getClipboardData(e)\ninstall(el)\nonpaste(e)\npaste(e) |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:37:38:37:42 | "div" | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:37:38:37:42 | "div" | enclosingFunctionBody | div document createElement div div onpaste e ClipboardEvent clipboardData e clipboardData text clipboardData getData text/plain html clipboardData getData text/html text html e preventDefault div document createElement div html div innerHTML html div textContent text document body append div |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:37:38:37:42 | "div" | enclosingFunctionName |  |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:37:38:37:42 | "div" | fileImports |  |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:37:38:37:42 | "div" | receiverName | document |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:42:44:42:55 | 'text/plain' | CalleeFlexibleAccessPath | clipboardData.getData |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:42:44:42:55 | 'text/plain' | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:42:44:42:55 | 'text/plain' | contextFunctionInterfaces | getClipboardData(e)\ninstall(el)\nonpaste(e)\npaste(e) |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:42:44:42:55 | 'text/plain' | contextSurroundingFunctionParameters | ()\n(e) |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:42:44:42:55 | 'text/plain' | enclosingFunctionBody | div document createElement div div onpaste e ClipboardEvent clipboardData e clipboardData text clipboardData getData text/plain html clipboardData getData text/html text html e preventDefault div document createElement div html div innerHTML html div textContent text document body append div |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:42:44:42:55 | 'text/plain' | enclosingFunctionName |  |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:42:44:42:55 | 'text/plain' | fileImports |  |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:42:44:42:55 | 'text/plain' | receiverName | clipboardData |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:43:22:43:55 | clipboa ... /html') | contextFunctionInterfaces | getClipboardData(e)\ninstall(el)\nonpaste(e)\npaste(e) |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:43:22:43:55 | clipboa ... /html') | contextSurroundingFunctionParameters | ()\n(e) |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:43:22:43:55 | clipboa ... /html') | enclosingFunctionBody | div document createElement div div onpaste e ClipboardEvent clipboardData e clipboardData text clipboardData getData text/plain html clipboardData getData text/html text html e preventDefault div document createElement div html div innerHTML html div textContent text document body append div |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:43:22:43:55 | clipboa ... /html') | enclosingFunctionName |  |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:43:22:43:55 | clipboa ... /html') | fileImports |  |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:43:44:43:54 | 'text/html' | CalleeFlexibleAccessPath | clipboardData.getData |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:43:44:43:54 | 'text/html' | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:43:44:43:54 | 'text/html' | contextFunctionInterfaces | getClipboardData(e)\ninstall(el)\nonpaste(e)\npaste(e) |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:43:44:43:54 | 'text/html' | contextSurroundingFunctionParameters | ()\n(e) |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:43:44:43:54 | 'text/html' | enclosingFunctionBody | div document createElement div div onpaste e ClipboardEvent clipboardData e clipboardData text clipboardData getData text/plain html clipboardData getData text/html text html e preventDefault div document createElement div html div innerHTML html div textContent text document body append div |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:43:44:43:54 | 'text/html' | enclosingFunctionName |  |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:43:44:43:54 | 'text/html' | fileImports |  |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:43:44:43:54 | 'text/html' | receiverName | clipboardData |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:48:44:48:48 | 'div' | CalleeFlexibleAccessPath | document.createElement |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:48:44:48:48 | 'div' | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:48:44:48:48 | 'div' | contextFunctionInterfaces | getClipboardData(e)\ninstall(el)\nonpaste(e)\npaste(e) |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:48:44:48:48 | 'div' | contextSurroundingFunctionParameters | ()\n(e) |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:48:44:48:48 | 'div' | enclosingFunctionBody | div document createElement div div onpaste e ClipboardEvent clipboardData e clipboardData text clipboardData getData text/plain html clipboardData getData text/html text html e preventDefault div document createElement div html div innerHTML html div textContent text document body append div |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:48:44:48:48 | 'div' | enclosingFunctionName |  |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:48:44:48:48 | 'div' | fileImports |  |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:48:44:48:48 | 'div' | receiverName | document |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:50:29:50:32 | html | assignedToPropName | innerHTML |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:50:29:50:32 | html | contextFunctionInterfaces | getClipboardData(e)\ninstall(el)\nonpaste(e)\npaste(e) |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:50:29:50:32 | html | contextSurroundingFunctionParameters | ()\n(e) |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:50:29:50:32 | html | enclosingFunctionBody | div document createElement div div onpaste e ClipboardEvent clipboardData e clipboardData text clipboardData getData text/plain html clipboardData getData text/html text html e preventDefault div document createElement div html div innerHTML html div textContent text document body append div |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:50:29:50:32 | html | enclosingFunctionName |  |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:50:29:50:32 | html | fileImports |  |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:54:30:54:32 | div | CalleeFlexibleAccessPath | document.body.append |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:54:30:54:32 | div | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:54:30:54:32 | div | contextFunctionInterfaces | getClipboardData(e)\ninstall(el)\nonpaste(e)\npaste(e) |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:54:30:54:32 | div | contextSurroundingFunctionParameters | ()\n(e) |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:54:30:54:32 | div | enclosingFunctionBody | div document createElement div div onpaste e ClipboardEvent clipboardData e clipboardData text clipboardData getData text/plain html clipboardData getData text/html text html e preventDefault div document createElement div html div innerHTML html div textContent text document body append div |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:54:30:54:32 | div | enclosingFunctionName |  |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:54:30:54:32 | div | fileImports |  |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:66:22:66:45 | e.clipb ... iles[i] | contextFunctionInterfaces | getClipboardData(e)\ninstall(el)\nonpaste(e)\npaste(e) |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:66:22:66:45 | e.clipb ... iles[i] | contextSurroundingFunctionParameters | (e) |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:66:22:66:45 | e.clipb ... iles[i] | enclosingFunctionBody | e ClipboardEvent Promise Array File dropItems Set File e clipboardData files length 0 i 0 i e clipboardData files length i file e clipboardData files i e clipboardData types includes text/html droppedHtml e clipboardData getData text/html container document createElement html container innerHTML droppedHtml imgs container getElementsByTagName img imgs length 1 src imgs 0 0 src dropItems add src e clipboardData types includes text/plain plainText e clipboardData getData text/plain /^https?:\\/\\//i test plainText dropItems add plainText imageItems Array from dropItems imageItems |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:66:22:66:45 | e.clipb ... iles[i] | enclosingFunctionName | getClipboardData |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:66:22:66:45 | e.clipb ... iles[i] | fileImports |  |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:70:40:70:50 | 'text/html' | CalleeFlexibleAccessPath | e.clipboardData.types.includes |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:70:40:70:50 | 'text/html' | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:70:40:70:50 | 'text/html' | contextFunctionInterfaces | getClipboardData(e)\ninstall(el)\nonpaste(e)\npaste(e) |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:70:40:70:50 | 'text/html' | contextSurroundingFunctionParameters | (e) |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:70:40:70:50 | 'text/html' | enclosingFunctionBody | e ClipboardEvent Promise Array File dropItems Set File e clipboardData files length 0 i 0 i e clipboardData files length i file e clipboardData files i e clipboardData types includes text/html droppedHtml e clipboardData getData text/html container document createElement html container innerHTML droppedHtml imgs container getElementsByTagName img imgs length 1 src imgs 0 0 src dropItems add src e clipboardData types includes text/plain plainText e clipboardData getData text/plain /^https?:\\/\\//i test plainText dropItems add plainText imageItems Array from dropItems imageItems |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:70:40:70:50 | 'text/html' | enclosingFunctionName | getClipboardData |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:70:40:70:50 | 'text/html' | fileImports |  |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:71:51:71:61 | 'text/html' | CalleeFlexibleAccessPath | e.clipboardData.getData |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:71:51:71:61 | 'text/html' | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:71:51:71:61 | 'text/html' | contextFunctionInterfaces | getClipboardData(e)\ninstall(el)\nonpaste(e)\npaste(e) |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:71:51:71:61 | 'text/html' | contextSurroundingFunctionParameters | (e) |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:71:51:71:61 | 'text/html' | enclosingFunctionBody | e ClipboardEvent Promise Array File dropItems Set File e clipboardData files length 0 i 0 i e clipboardData files length i file e clipboardData files i e clipboardData types includes text/html droppedHtml e clipboardData getData text/html container document createElement html container innerHTML droppedHtml imgs container getElementsByTagName img imgs length 1 src imgs 0 0 src dropItems add src e clipboardData types includes text/plain plainText e clipboardData getData text/plain /^https?:\\/\\//i test plainText dropItems add plainText imageItems Array from dropItems imageItems |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:71:51:71:61 | 'text/html' | enclosingFunctionName | getClipboardData |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:71:51:71:61 | 'text/html' | fileImports |  |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:72:48:72:53 | 'html' | CalleeFlexibleAccessPath | document.createElement |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:72:48:72:53 | 'html' | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:72:48:72:53 | 'html' | contextFunctionInterfaces | getClipboardData(e)\ninstall(el)\nonpaste(e)\npaste(e) |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:72:48:72:53 | 'html' | contextSurroundingFunctionParameters | (e) |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:72:48:72:53 | 'html' | enclosingFunctionBody | e ClipboardEvent Promise Array File dropItems Set File e clipboardData files length 0 i 0 i e clipboardData files length i file e clipboardData files i e clipboardData types includes text/html droppedHtml e clipboardData getData text/html container document createElement html container innerHTML droppedHtml imgs container getElementsByTagName img imgs length 1 src imgs 0 0 src dropItems add src e clipboardData types includes text/plain plainText e clipboardData getData text/plain /^https?:\\/\\//i test plainText dropItems add plainText imageItems Array from dropItems imageItems |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:72:48:72:53 | 'html' | enclosingFunctionName | getClipboardData |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:72:48:72:53 | 'html' | fileImports |  |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:72:48:72:53 | 'html' | receiverName | document |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:73:29:73:39 | droppedHtml | assignedToPropName | innerHTML |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:73:29:73:39 | droppedHtml | contextFunctionInterfaces | getClipboardData(e)\ninstall(el)\nonpaste(e)\npaste(e) |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:73:29:73:39 | droppedHtml | contextSurroundingFunctionParameters | (e) |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:73:29:73:39 | droppedHtml | enclosingFunctionBody | e ClipboardEvent Promise Array File dropItems Set File e clipboardData files length 0 i 0 i e clipboardData files length i file e clipboardData files i e clipboardData types includes text/html droppedHtml e clipboardData getData text/html container document createElement html container innerHTML droppedHtml imgs container getElementsByTagName img imgs length 1 src imgs 0 0 src dropItems add src e clipboardData types includes text/plain plainText e clipboardData getData text/plain /^https?:\\/\\//i test plainText dropItems add plainText imageItems Array from dropItems imageItems |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:73:29:73:39 | droppedHtml | enclosingFunctionName | getClipboardData |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:73:29:73:39 | droppedHtml | fileImports |  |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:74:51:74:55 | 'img' | CalleeFlexibleAccessPath | container.getElementsByTagName |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:74:51:74:55 | 'img' | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:74:51:74:55 | 'img' | contextFunctionInterfaces | getClipboardData(e)\ninstall(el)\nonpaste(e)\npaste(e) |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:74:51:74:55 | 'img' | contextSurroundingFunctionParameters | (e) |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:74:51:74:55 | 'img' | enclosingFunctionBody | e ClipboardEvent Promise Array File dropItems Set File e clipboardData files length 0 i 0 i e clipboardData files length i file e clipboardData files i e clipboardData types includes text/html droppedHtml e clipboardData getData text/html container document createElement html container innerHTML droppedHtml imgs container getElementsByTagName img imgs length 1 src imgs 0 0 src dropItems add src e clipboardData types includes text/plain plainText e clipboardData getData text/plain /^https?:\\/\\//i test plainText dropItems add plainText imageItems Array from dropItems imageItems |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:74:51:74:55 | 'img' | enclosingFunctionName | getClipboardData |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:74:51:74:55 | 'img' | fileImports |  |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:74:51:74:55 | 'img' | receiverName | container |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:77:23:77:25 | src | CalleeFlexibleAccessPath | dropItems.add |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:77:23:77:25 | src | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:77:23:77:25 | src | contextFunctionInterfaces | getClipboardData(e)\ninstall(el)\nonpaste(e)\npaste(e) |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:77:23:77:25 | src | contextSurroundingFunctionParameters | (e) |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:77:23:77:25 | src | enclosingFunctionBody | e ClipboardEvent Promise Array File dropItems Set File e clipboardData files length 0 i 0 i e clipboardData files length i file e clipboardData files i e clipboardData types includes text/html droppedHtml e clipboardData getData text/html container document createElement html container innerHTML droppedHtml imgs container getElementsByTagName img imgs length 1 src imgs 0 0 src dropItems add src e clipboardData types includes text/plain plainText e clipboardData getData text/plain /^https?:\\/\\//i test plainText dropItems add plainText imageItems Array from dropItems imageItems |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:77:23:77:25 | src | enclosingFunctionName | getClipboardData |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:77:23:77:25 | src | fileImports |  |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:77:23:77:25 | src | receiverName | dropItems |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:79:47:79:58 | 'text/plain' | CalleeFlexibleAccessPath | e.clipboardData.types.includes |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:79:47:79:58 | 'text/plain' | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:79:47:79:58 | 'text/plain' | contextFunctionInterfaces | getClipboardData(e)\ninstall(el)\nonpaste(e)\npaste(e) |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:79:47:79:58 | 'text/plain' | contextSurroundingFunctionParameters | (e) |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:79:47:79:58 | 'text/plain' | enclosingFunctionBody | e ClipboardEvent Promise Array File dropItems Set File e clipboardData files length 0 i 0 i e clipboardData files length i file e clipboardData files i e clipboardData types includes text/html droppedHtml e clipboardData getData text/html container document createElement html container innerHTML droppedHtml imgs container getElementsByTagName img imgs length 1 src imgs 0 0 src dropItems add src e clipboardData types includes text/plain plainText e clipboardData getData text/plain /^https?:\\/\\//i test plainText dropItems add plainText imageItems Array from dropItems imageItems |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:79:47:79:58 | 'text/plain' | enclosingFunctionName | getClipboardData |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:79:47:79:58 | 'text/plain' | fileImports |  |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:80:49:80:60 | 'text/plain' | CalleeFlexibleAccessPath | e.clipboardData.getData |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:80:49:80:60 | 'text/plain' | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:80:49:80:60 | 'text/plain' | contextFunctionInterfaces | getClipboardData(e)\ninstall(el)\nonpaste(e)\npaste(e) |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:80:49:80:60 | 'text/plain' | contextSurroundingFunctionParameters | (e) |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:80:49:80:60 | 'text/plain' | enclosingFunctionBody | e ClipboardEvent Promise Array File dropItems Set File e clipboardData files length 0 i 0 i e clipboardData files length i file e clipboardData files i e clipboardData types includes text/html droppedHtml e clipboardData getData text/html container document createElement html container innerHTML droppedHtml imgs container getElementsByTagName img imgs length 1 src imgs 0 0 src dropItems add src e clipboardData types includes text/plain plainText e clipboardData getData text/plain /^https?:\\/\\//i test plainText dropItems add plainText imageItems Array from dropItems imageItems |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:80:49:80:60 | 'text/plain' | enclosingFunctionName | getClipboardData |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:80:49:80:60 | 'text/plain' | fileImports |  |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:82:32:82:40 | plainText | CalleeFlexibleAccessPath | ?.test |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:82:32:82:40 | plainText | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:82:32:82:40 | plainText | contextFunctionInterfaces | getClipboardData(e)\ninstall(el)\nonpaste(e)\npaste(e) |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:82:32:82:40 | plainText | contextSurroundingFunctionParameters | (e) |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:82:32:82:40 | plainText | enclosingFunctionBody | e ClipboardEvent Promise Array File dropItems Set File e clipboardData files length 0 i 0 i e clipboardData files length i file e clipboardData files i e clipboardData types includes text/html droppedHtml e clipboardData getData text/html container document createElement html container innerHTML droppedHtml imgs container getElementsByTagName img imgs length 1 src imgs 0 0 src dropItems add src e clipboardData types includes text/plain plainText e clipboardData getData text/plain /^https?:\\/\\//i test plainText dropItems add plainText imageItems Array from dropItems imageItems |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:82:32:82:40 | plainText | enclosingFunctionName | getClipboardData |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:82:32:82:40 | plainText | fileImports |  |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:83:23:83:31 | plainText | CalleeFlexibleAccessPath | dropItems.add |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:83:23:83:31 | plainText | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:83:23:83:31 | plainText | contextFunctionInterfaces | getClipboardData(e)\ninstall(el)\nonpaste(e)\npaste(e) |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:83:23:83:31 | plainText | contextSurroundingFunctionParameters | (e) |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:83:23:83:31 | plainText | enclosingFunctionBody | e ClipboardEvent Promise Array File dropItems Set File e clipboardData files length 0 i 0 i e clipboardData files length i file e clipboardData files i e clipboardData types includes text/html droppedHtml e clipboardData getData text/html container document createElement html container innerHTML droppedHtml imgs container getElementsByTagName img imgs length 1 src imgs 0 0 src dropItems add src e clipboardData types includes text/plain plainText e clipboardData getData text/plain /^https?:\\/\\//i test plainText dropItems add plainText imageItems Array from dropItems imageItems |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:83:23:83:31 | plainText | enclosingFunctionName | getClipboardData |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:83:23:83:31 | plainText | fileImports |  |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:83:23:83:31 | plainText | receiverName | dropItems |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:87:35:87:43 | dropItems | CalleeFlexibleAccessPath | Array.from |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:87:35:87:43 | dropItems | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:87:35:87:43 | dropItems | contextFunctionInterfaces | getClipboardData(e)\ninstall(el)\nonpaste(e)\npaste(e) |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:87:35:87:43 | dropItems | contextSurroundingFunctionParameters | (e) |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:87:35:87:43 | dropItems | enclosingFunctionBody | e ClipboardEvent Promise Array File dropItems Set File e clipboardData files length 0 i 0 i e clipboardData files length i file e clipboardData files i e clipboardData types includes text/html droppedHtml e clipboardData getData text/html container document createElement html container innerHTML droppedHtml imgs container getElementsByTagName img imgs length 1 src imgs 0 0 src dropItems add src e clipboardData types includes text/plain plainText e clipboardData getData text/plain /^https?:\\/\\//i test plainText dropItems add plainText imageItems Array from dropItems imageItems |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:87:35:87:43 | dropItems | enclosingFunctionName | getClipboardData |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:87:35:87:43 | dropItems | fileImports |  |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:87:35:87:43 | dropItems | receiverName | Array |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:93:38:93:42 | "div" | CalleeFlexibleAccessPath | document.createElement |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:93:38:93:42 | "div" | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:93:38:93:42 | "div" | contextFunctionInterfaces | getClipboardData(e)\ninstall(el)\nonpaste(e)\npaste(e) |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:93:38:93:42 | "div" | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:93:38:93:42 | "div" | enclosingFunctionBody | div document createElement div div addEventListener beforeinput e InputEvent data inputType isComposing dataTransfer e dataTransfer html dataTransfer getData text/html $ #id html html |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:93:38:93:42 | "div" | enclosingFunctionName |  |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:93:38:93:42 | "div" | fileImports |  |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:93:38:93:42 | "div" | receiverName | document |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:94:26:94:38 | "beforeinput" | CalleeFlexibleAccessPath | div.addEventListener |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:94:26:94:38 | "beforeinput" | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:94:26:94:38 | "beforeinput" | contextFunctionInterfaces | getClipboardData(e)\ninstall(el)\nonpaste(e)\npaste(e) |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:94:26:94:38 | "beforeinput" | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:94:26:94:38 | "beforeinput" | enclosingFunctionBody | div document createElement div div addEventListener beforeinput e InputEvent data inputType isComposing dataTransfer e dataTransfer html dataTransfer getData text/html $ #id html html |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:94:26:94:38 | "beforeinput" | enclosingFunctionName |  |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:94:26:94:38 | "beforeinput" | fileImports |  |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:94:26:94:38 | "beforeinput" | receiverName | div |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:94:41:100:5 | functio ... K\\n    } | CalleeFlexibleAccessPath | div.addEventListener |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:94:41:100:5 | functio ... K\\n    } | InputArgumentIndex | 1 |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:94:41:100:5 | functio ... K\\n    } | contextFunctionInterfaces | getClipboardData(e)\ninstall(el)\nonpaste(e)\npaste(e) |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:94:41:100:5 | functio ... K\\n    } | contextSurroundingFunctionParameters | ()\n(e) |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:94:41:100:5 | functio ... K\\n    } | enclosingFunctionBody | div document createElement div div addEventListener beforeinput e InputEvent data inputType isComposing dataTransfer e dataTransfer html dataTransfer getData text/html $ #id html html |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:94:41:100:5 | functio ... K\\n    } | enclosingFunctionName |  |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:94:41:100:5 | functio ... K\\n    } | fileImports |  |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:94:41:100:5 | functio ... K\\n    } | receiverName | div |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:98:22:98:54 | dataTra ... /html') | contextFunctionInterfaces | getClipboardData(e)\ninstall(el)\nonpaste(e)\npaste(e) |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:98:22:98:54 | dataTra ... /html') | contextSurroundingFunctionParameters | ()\n(e) |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:98:22:98:54 | dataTra ... /html') | enclosingFunctionBody | div document createElement div div addEventListener beforeinput e InputEvent data inputType isComposing dataTransfer e dataTransfer html dataTransfer getData text/html $ #id html html |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:98:22:98:54 | dataTra ... /html') | enclosingFunctionName |  |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:98:22:98:54 | dataTra ... /html') | fileImports |  |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:98:43:98:53 | 'text/html' | CalleeFlexibleAccessPath | dataTransfer.getData |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:98:43:98:53 | 'text/html' | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:98:43:98:53 | 'text/html' | contextFunctionInterfaces | getClipboardData(e)\ninstall(el)\nonpaste(e)\npaste(e) |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:98:43:98:53 | 'text/html' | contextSurroundingFunctionParameters | ()\n(e) |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:98:43:98:53 | 'text/html' | enclosingFunctionBody | div document createElement div div addEventListener beforeinput e InputEvent data inputType isComposing dataTransfer e dataTransfer html dataTransfer getData text/html $ #id html html |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:98:43:98:53 | 'text/html' | enclosingFunctionName |  |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:98:43:98:53 | 'text/html' | fileImports |  |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:98:43:98:53 | 'text/html' | receiverName | dataTransfer |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:99:11:99:15 | "#id" | CalleeFlexibleAccessPath | $ |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:99:11:99:15 | "#id" | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:99:11:99:15 | "#id" | contextFunctionInterfaces | getClipboardData(e)\ninstall(el)\nonpaste(e)\npaste(e) |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:99:11:99:15 | "#id" | contextSurroundingFunctionParameters | ()\n(e) |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:99:11:99:15 | "#id" | enclosingFunctionBody | div document createElement div div addEventListener beforeinput e InputEvent data inputType isComposing dataTransfer e dataTransfer html dataTransfer getData text/html $ #id html html |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:99:11:99:15 | "#id" | enclosingFunctionName |  |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:99:11:99:15 | "#id" | fileImports |  |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:99:23:99:26 | html | CalleeFlexibleAccessPath | $().html |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:99:23:99:26 | html | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:99:23:99:26 | html | contextFunctionInterfaces | getClipboardData(e)\ninstall(el)\nonpaste(e)\npaste(e) |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:99:23:99:26 | html | contextSurroundingFunctionParameters | ()\n(e) |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:99:23:99:26 | html | enclosingFunctionBody | div document createElement div div addEventListener beforeinput e InputEvent data inputType isComposing dataTransfer e dataTransfer html dataTransfer getData text/html $ #id html html |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:99:23:99:26 | html | enclosingFunctionName |  |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:99:23:99:26 | html | fileImports |  |
+| autogenerated/Xss/DomBasedXss/custom-element.js:5:26:5:36 | window.name | assignedToPropName | innerHTML |
+| autogenerated/Xss/DomBasedXss/custom-element.js:5:26:5:36 | window.name | contextFunctionInterfaces | constructor(args)\ntest() |
+| autogenerated/Xss/DomBasedXss/custom-element.js:5:26:5:36 | window.name | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/custom-element.js:5:26:5:36 | window.name | enclosingFunctionBody | innerHTML window name |
+| autogenerated/Xss/DomBasedXss/custom-element.js:5:26:5:36 | window.name | enclosingFunctionName | test |
+| autogenerated/Xss/DomBasedXss/custom-element.js:5:26:5:36 | window.name | fileImports | dummy |
 | autogenerated/Xss/DomBasedXss/d3.js:1:20:1:23 | 'd3' | CalleeFlexibleAccessPath | require |
 | autogenerated/Xss/DomBasedXss/d3.js:1:20:1:23 | 'd3' | InputArgumentIndex | 0 |
 | autogenerated/Xss/DomBasedXss/d3.js:1:20:1:23 | 'd3' | calleeImports |  |
@@ -10013,194 +12832,834 @@ tokenFeatures
 | autogenerated/Xss/DomBasedXss/d3.js:21:15:21:24 | getTaint() | fileImports | d3 |
 | autogenerated/Xss/DomBasedXss/dates.js:9:36:9:68 | window. ... ring(1) | CalleeFlexibleAccessPath | decodeURIComponent |
 | autogenerated/Xss/DomBasedXss/dates.js:9:36:9:68 | window. ... ring(1) | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/dates.js:9:36:9:68 | window. ... ring(1) | contextFunctionInterfaces | main() |
+| autogenerated/Xss/DomBasedXss/dates.js:9:36:9:68 | window. ... ring(1) | contextFunctionInterfaces | dateio()\ndateio2()\nluxon()\nmain() |
 | autogenerated/Xss/DomBasedXss/dates.js:9:36:9:68 | window. ... ring(1) | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/dates.js:9:36:9:68 | window. ... ring(1) | enclosingFunctionBody | time Date taint decodeURIComponent window location hash substring 1 document body innerHTML Time is  dateFns format time taint document body innerHTML Time is  dateFnsEsm format time taint document body innerHTML Time is  dateFnsFp format taint time document body innerHTML Time is  dateFns format taint time document body innerHTML Time is  dateFnsFp format time taint document body innerHTML Time is  moment time format taint document body innerHTML Time is  moment taint format document body innerHTML Time is  dateformat time taint |
+| autogenerated/Xss/DomBasedXss/dates.js:9:36:9:68 | window. ... ring(1) | enclosingFunctionBody | time Date taint decodeURIComponent window location hash substring 1 document body innerHTML Time is  dateFns format time taint document body innerHTML Time is  dateFnsEsm format time taint document body innerHTML Time is  dateFnsFp format taint time document body innerHTML Time is  dateFns format taint time document body innerHTML Time is  dateFnsFp format time taint document body innerHTML Time is  moment time format taint document body innerHTML Time is  moment taint format document body innerHTML Time is  dateformat time taint dayjs dayjs document body innerHTML Time is  dayjs time format taint |
 | autogenerated/Xss/DomBasedXss/dates.js:9:36:9:68 | window. ... ring(1) | enclosingFunctionName | main |
-| autogenerated/Xss/DomBasedXss/dates.js:9:36:9:68 | window. ... ring(1) | fileImports | date-fns date-fns/esm date-fns/fp dateformat moment |
+| autogenerated/Xss/DomBasedXss/dates.js:9:36:9:68 | window. ... ring(1) | fileImports | @date-io/date-fns @date-io/dayjs @date-io/luxon @date-io/moment date-fns date-fns/esm date-fns/fp dateformat dayjs luxon moment |
 | autogenerated/Xss/DomBasedXss/dates.js:9:67:9:67 | 1 | CalleeFlexibleAccessPath | window.location.hash.substring |
 | autogenerated/Xss/DomBasedXss/dates.js:9:67:9:67 | 1 | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/dates.js:9:67:9:67 | 1 | contextFunctionInterfaces | main() |
+| autogenerated/Xss/DomBasedXss/dates.js:9:67:9:67 | 1 | contextFunctionInterfaces | dateio()\ndateio2()\nluxon()\nmain() |
 | autogenerated/Xss/DomBasedXss/dates.js:9:67:9:67 | 1 | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/dates.js:9:67:9:67 | 1 | enclosingFunctionBody | time Date taint decodeURIComponent window location hash substring 1 document body innerHTML Time is  dateFns format time taint document body innerHTML Time is  dateFnsEsm format time taint document body innerHTML Time is  dateFnsFp format taint time document body innerHTML Time is  dateFns format taint time document body innerHTML Time is  dateFnsFp format time taint document body innerHTML Time is  moment time format taint document body innerHTML Time is  moment taint format document body innerHTML Time is  dateformat time taint |
+| autogenerated/Xss/DomBasedXss/dates.js:9:67:9:67 | 1 | enclosingFunctionBody | time Date taint decodeURIComponent window location hash substring 1 document body innerHTML Time is  dateFns format time taint document body innerHTML Time is  dateFnsEsm format time taint document body innerHTML Time is  dateFnsFp format taint time document body innerHTML Time is  dateFns format taint time document body innerHTML Time is  dateFnsFp format time taint document body innerHTML Time is  moment time format taint document body innerHTML Time is  moment taint format document body innerHTML Time is  dateformat time taint dayjs dayjs document body innerHTML Time is  dayjs time format taint |
 | autogenerated/Xss/DomBasedXss/dates.js:9:67:9:67 | 1 | enclosingFunctionName | main |
-| autogenerated/Xss/DomBasedXss/dates.js:9:67:9:67 | 1 | fileImports | date-fns date-fns/esm date-fns/fp dateformat moment |
+| autogenerated/Xss/DomBasedXss/dates.js:9:67:9:67 | 1 | fileImports | @date-io/date-fns @date-io/dayjs @date-io/luxon @date-io/moment date-fns date-fns/esm date-fns/fp dateformat dayjs luxon moment |
 | autogenerated/Xss/DomBasedXss/dates.js:11:31:11:70 | `Time i ... aint)}` | assignedToPropName | innerHTML |
-| autogenerated/Xss/DomBasedXss/dates.js:11:31:11:70 | `Time i ... aint)}` | contextFunctionInterfaces | main() |
+| autogenerated/Xss/DomBasedXss/dates.js:11:31:11:70 | `Time i ... aint)}` | contextFunctionInterfaces | dateio()\ndateio2()\nluxon()\nmain() |
 | autogenerated/Xss/DomBasedXss/dates.js:11:31:11:70 | `Time i ... aint)}` | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/dates.js:11:31:11:70 | `Time i ... aint)}` | enclosingFunctionBody | time Date taint decodeURIComponent window location hash substring 1 document body innerHTML Time is  dateFns format time taint document body innerHTML Time is  dateFnsEsm format time taint document body innerHTML Time is  dateFnsFp format taint time document body innerHTML Time is  dateFns format taint time document body innerHTML Time is  dateFnsFp format time taint document body innerHTML Time is  moment time format taint document body innerHTML Time is  moment taint format document body innerHTML Time is  dateformat time taint |
+| autogenerated/Xss/DomBasedXss/dates.js:11:31:11:70 | `Time i ... aint)}` | enclosingFunctionBody | time Date taint decodeURIComponent window location hash substring 1 document body innerHTML Time is  dateFns format time taint document body innerHTML Time is  dateFnsEsm format time taint document body innerHTML Time is  dateFnsFp format taint time document body innerHTML Time is  dateFns format taint time document body innerHTML Time is  dateFnsFp format time taint document body innerHTML Time is  moment time format taint document body innerHTML Time is  moment taint format document body innerHTML Time is  dateformat time taint dayjs dayjs document body innerHTML Time is  dayjs time format taint |
 | autogenerated/Xss/DomBasedXss/dates.js:11:31:11:70 | `Time i ... aint)}` | enclosingFunctionName | main |
-| autogenerated/Xss/DomBasedXss/dates.js:11:31:11:70 | `Time i ... aint)}` | fileImports | date-fns date-fns/esm date-fns/fp dateformat moment |
+| autogenerated/Xss/DomBasedXss/dates.js:11:31:11:70 | `Time i ... aint)}` | fileImports | @date-io/date-fns @date-io/dayjs @date-io/luxon @date-io/moment date-fns date-fns/esm date-fns/fp dateformat dayjs luxon moment |
 | autogenerated/Xss/DomBasedXss/dates.js:11:57:11:60 | time | CalleeFlexibleAccessPath | dateFns.format |
 | autogenerated/Xss/DomBasedXss/dates.js:11:57:11:60 | time | InputArgumentIndex | 0 |
 | autogenerated/Xss/DomBasedXss/dates.js:11:57:11:60 | time | calleeImports | date-fns |
-| autogenerated/Xss/DomBasedXss/dates.js:11:57:11:60 | time | contextFunctionInterfaces | main() |
+| autogenerated/Xss/DomBasedXss/dates.js:11:57:11:60 | time | contextFunctionInterfaces | dateio()\ndateio2()\nluxon()\nmain() |
 | autogenerated/Xss/DomBasedXss/dates.js:11:57:11:60 | time | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/dates.js:11:57:11:60 | time | enclosingFunctionBody | time Date taint decodeURIComponent window location hash substring 1 document body innerHTML Time is  dateFns format time taint document body innerHTML Time is  dateFnsEsm format time taint document body innerHTML Time is  dateFnsFp format taint time document body innerHTML Time is  dateFns format taint time document body innerHTML Time is  dateFnsFp format time taint document body innerHTML Time is  moment time format taint document body innerHTML Time is  moment taint format document body innerHTML Time is  dateformat time taint |
+| autogenerated/Xss/DomBasedXss/dates.js:11:57:11:60 | time | enclosingFunctionBody | time Date taint decodeURIComponent window location hash substring 1 document body innerHTML Time is  dateFns format time taint document body innerHTML Time is  dateFnsEsm format time taint document body innerHTML Time is  dateFnsFp format taint time document body innerHTML Time is  dateFns format taint time document body innerHTML Time is  dateFnsFp format time taint document body innerHTML Time is  moment time format taint document body innerHTML Time is  moment taint format document body innerHTML Time is  dateformat time taint dayjs dayjs document body innerHTML Time is  dayjs time format taint |
 | autogenerated/Xss/DomBasedXss/dates.js:11:57:11:60 | time | enclosingFunctionName | main |
-| autogenerated/Xss/DomBasedXss/dates.js:11:57:11:60 | time | fileImports | date-fns date-fns/esm date-fns/fp dateformat moment |
+| autogenerated/Xss/DomBasedXss/dates.js:11:57:11:60 | time | fileImports | @date-io/date-fns @date-io/dayjs @date-io/luxon @date-io/moment date-fns date-fns/esm date-fns/fp dateformat dayjs luxon moment |
 | autogenerated/Xss/DomBasedXss/dates.js:11:57:11:60 | time | receiverName | dateFns |
 | autogenerated/Xss/DomBasedXss/dates.js:11:63:11:67 | taint | CalleeFlexibleAccessPath | dateFns.format |
 | autogenerated/Xss/DomBasedXss/dates.js:11:63:11:67 | taint | InputArgumentIndex | 1 |
 | autogenerated/Xss/DomBasedXss/dates.js:11:63:11:67 | taint | calleeImports | date-fns |
-| autogenerated/Xss/DomBasedXss/dates.js:11:63:11:67 | taint | contextFunctionInterfaces | main() |
+| autogenerated/Xss/DomBasedXss/dates.js:11:63:11:67 | taint | contextFunctionInterfaces | dateio()\ndateio2()\nluxon()\nmain() |
 | autogenerated/Xss/DomBasedXss/dates.js:11:63:11:67 | taint | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/dates.js:11:63:11:67 | taint | enclosingFunctionBody | time Date taint decodeURIComponent window location hash substring 1 document body innerHTML Time is  dateFns format time taint document body innerHTML Time is  dateFnsEsm format time taint document body innerHTML Time is  dateFnsFp format taint time document body innerHTML Time is  dateFns format taint time document body innerHTML Time is  dateFnsFp format time taint document body innerHTML Time is  moment time format taint document body innerHTML Time is  moment taint format document body innerHTML Time is  dateformat time taint |
+| autogenerated/Xss/DomBasedXss/dates.js:11:63:11:67 | taint | enclosingFunctionBody | time Date taint decodeURIComponent window location hash substring 1 document body innerHTML Time is  dateFns format time taint document body innerHTML Time is  dateFnsEsm format time taint document body innerHTML Time is  dateFnsFp format taint time document body innerHTML Time is  dateFns format taint time document body innerHTML Time is  dateFnsFp format time taint document body innerHTML Time is  moment time format taint document body innerHTML Time is  moment taint format document body innerHTML Time is  dateformat time taint dayjs dayjs document body innerHTML Time is  dayjs time format taint |
 | autogenerated/Xss/DomBasedXss/dates.js:11:63:11:67 | taint | enclosingFunctionName | main |
-| autogenerated/Xss/DomBasedXss/dates.js:11:63:11:67 | taint | fileImports | date-fns date-fns/esm date-fns/fp dateformat moment |
+| autogenerated/Xss/DomBasedXss/dates.js:11:63:11:67 | taint | fileImports | @date-io/date-fns @date-io/dayjs @date-io/luxon @date-io/moment date-fns date-fns/esm date-fns/fp dateformat dayjs luxon moment |
 | autogenerated/Xss/DomBasedXss/dates.js:11:63:11:67 | taint | receiverName | dateFns |
 | autogenerated/Xss/DomBasedXss/dates.js:12:31:12:73 | `Time i ... aint)}` | assignedToPropName | innerHTML |
-| autogenerated/Xss/DomBasedXss/dates.js:12:31:12:73 | `Time i ... aint)}` | contextFunctionInterfaces | main() |
+| autogenerated/Xss/DomBasedXss/dates.js:12:31:12:73 | `Time i ... aint)}` | contextFunctionInterfaces | dateio()\ndateio2()\nluxon()\nmain() |
 | autogenerated/Xss/DomBasedXss/dates.js:12:31:12:73 | `Time i ... aint)}` | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/dates.js:12:31:12:73 | `Time i ... aint)}` | enclosingFunctionBody | time Date taint decodeURIComponent window location hash substring 1 document body innerHTML Time is  dateFns format time taint document body innerHTML Time is  dateFnsEsm format time taint document body innerHTML Time is  dateFnsFp format taint time document body innerHTML Time is  dateFns format taint time document body innerHTML Time is  dateFnsFp format time taint document body innerHTML Time is  moment time format taint document body innerHTML Time is  moment taint format document body innerHTML Time is  dateformat time taint |
+| autogenerated/Xss/DomBasedXss/dates.js:12:31:12:73 | `Time i ... aint)}` | enclosingFunctionBody | time Date taint decodeURIComponent window location hash substring 1 document body innerHTML Time is  dateFns format time taint document body innerHTML Time is  dateFnsEsm format time taint document body innerHTML Time is  dateFnsFp format taint time document body innerHTML Time is  dateFns format taint time document body innerHTML Time is  dateFnsFp format time taint document body innerHTML Time is  moment time format taint document body innerHTML Time is  moment taint format document body innerHTML Time is  dateformat time taint dayjs dayjs document body innerHTML Time is  dayjs time format taint |
 | autogenerated/Xss/DomBasedXss/dates.js:12:31:12:73 | `Time i ... aint)}` | enclosingFunctionName | main |
-| autogenerated/Xss/DomBasedXss/dates.js:12:31:12:73 | `Time i ... aint)}` | fileImports | date-fns date-fns/esm date-fns/fp dateformat moment |
+| autogenerated/Xss/DomBasedXss/dates.js:12:31:12:73 | `Time i ... aint)}` | fileImports | @date-io/date-fns @date-io/dayjs @date-io/luxon @date-io/moment date-fns date-fns/esm date-fns/fp dateformat dayjs luxon moment |
 | autogenerated/Xss/DomBasedXss/dates.js:12:60:12:63 | time | CalleeFlexibleAccessPath | dateFnsEsm.format |
 | autogenerated/Xss/DomBasedXss/dates.js:12:60:12:63 | time | InputArgumentIndex | 0 |
 | autogenerated/Xss/DomBasedXss/dates.js:12:60:12:63 | time | calleeImports | date-fns/esm |
-| autogenerated/Xss/DomBasedXss/dates.js:12:60:12:63 | time | contextFunctionInterfaces | main() |
+| autogenerated/Xss/DomBasedXss/dates.js:12:60:12:63 | time | contextFunctionInterfaces | dateio()\ndateio2()\nluxon()\nmain() |
 | autogenerated/Xss/DomBasedXss/dates.js:12:60:12:63 | time | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/dates.js:12:60:12:63 | time | enclosingFunctionBody | time Date taint decodeURIComponent window location hash substring 1 document body innerHTML Time is  dateFns format time taint document body innerHTML Time is  dateFnsEsm format time taint document body innerHTML Time is  dateFnsFp format taint time document body innerHTML Time is  dateFns format taint time document body innerHTML Time is  dateFnsFp format time taint document body innerHTML Time is  moment time format taint document body innerHTML Time is  moment taint format document body innerHTML Time is  dateformat time taint |
+| autogenerated/Xss/DomBasedXss/dates.js:12:60:12:63 | time | enclosingFunctionBody | time Date taint decodeURIComponent window location hash substring 1 document body innerHTML Time is  dateFns format time taint document body innerHTML Time is  dateFnsEsm format time taint document body innerHTML Time is  dateFnsFp format taint time document body innerHTML Time is  dateFns format taint time document body innerHTML Time is  dateFnsFp format time taint document body innerHTML Time is  moment time format taint document body innerHTML Time is  moment taint format document body innerHTML Time is  dateformat time taint dayjs dayjs document body innerHTML Time is  dayjs time format taint |
 | autogenerated/Xss/DomBasedXss/dates.js:12:60:12:63 | time | enclosingFunctionName | main |
-| autogenerated/Xss/DomBasedXss/dates.js:12:60:12:63 | time | fileImports | date-fns date-fns/esm date-fns/fp dateformat moment |
+| autogenerated/Xss/DomBasedXss/dates.js:12:60:12:63 | time | fileImports | @date-io/date-fns @date-io/dayjs @date-io/luxon @date-io/moment date-fns date-fns/esm date-fns/fp dateformat dayjs luxon moment |
 | autogenerated/Xss/DomBasedXss/dates.js:12:60:12:63 | time | receiverName | dateFnsEsm |
 | autogenerated/Xss/DomBasedXss/dates.js:12:66:12:70 | taint | CalleeFlexibleAccessPath | dateFnsEsm.format |
 | autogenerated/Xss/DomBasedXss/dates.js:12:66:12:70 | taint | InputArgumentIndex | 1 |
 | autogenerated/Xss/DomBasedXss/dates.js:12:66:12:70 | taint | calleeImports | date-fns/esm |
-| autogenerated/Xss/DomBasedXss/dates.js:12:66:12:70 | taint | contextFunctionInterfaces | main() |
+| autogenerated/Xss/DomBasedXss/dates.js:12:66:12:70 | taint | contextFunctionInterfaces | dateio()\ndateio2()\nluxon()\nmain() |
 | autogenerated/Xss/DomBasedXss/dates.js:12:66:12:70 | taint | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/dates.js:12:66:12:70 | taint | enclosingFunctionBody | time Date taint decodeURIComponent window location hash substring 1 document body innerHTML Time is  dateFns format time taint document body innerHTML Time is  dateFnsEsm format time taint document body innerHTML Time is  dateFnsFp format taint time document body innerHTML Time is  dateFns format taint time document body innerHTML Time is  dateFnsFp format time taint document body innerHTML Time is  moment time format taint document body innerHTML Time is  moment taint format document body innerHTML Time is  dateformat time taint |
+| autogenerated/Xss/DomBasedXss/dates.js:12:66:12:70 | taint | enclosingFunctionBody | time Date taint decodeURIComponent window location hash substring 1 document body innerHTML Time is  dateFns format time taint document body innerHTML Time is  dateFnsEsm format time taint document body innerHTML Time is  dateFnsFp format taint time document body innerHTML Time is  dateFns format taint time document body innerHTML Time is  dateFnsFp format time taint document body innerHTML Time is  moment time format taint document body innerHTML Time is  moment taint format document body innerHTML Time is  dateformat time taint dayjs dayjs document body innerHTML Time is  dayjs time format taint |
 | autogenerated/Xss/DomBasedXss/dates.js:12:66:12:70 | taint | enclosingFunctionName | main |
-| autogenerated/Xss/DomBasedXss/dates.js:12:66:12:70 | taint | fileImports | date-fns date-fns/esm date-fns/fp dateformat moment |
+| autogenerated/Xss/DomBasedXss/dates.js:12:66:12:70 | taint | fileImports | @date-io/date-fns @date-io/dayjs @date-io/luxon @date-io/moment date-fns date-fns/esm date-fns/fp dateformat dayjs luxon moment |
 | autogenerated/Xss/DomBasedXss/dates.js:12:66:12:70 | taint | receiverName | dateFnsEsm |
 | autogenerated/Xss/DomBasedXss/dates.js:13:31:13:72 | `Time i ... time)}` | assignedToPropName | innerHTML |
-| autogenerated/Xss/DomBasedXss/dates.js:13:31:13:72 | `Time i ... time)}` | contextFunctionInterfaces | main() |
+| autogenerated/Xss/DomBasedXss/dates.js:13:31:13:72 | `Time i ... time)}` | contextFunctionInterfaces | dateio()\ndateio2()\nluxon()\nmain() |
 | autogenerated/Xss/DomBasedXss/dates.js:13:31:13:72 | `Time i ... time)}` | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/dates.js:13:31:13:72 | `Time i ... time)}` | enclosingFunctionBody | time Date taint decodeURIComponent window location hash substring 1 document body innerHTML Time is  dateFns format time taint document body innerHTML Time is  dateFnsEsm format time taint document body innerHTML Time is  dateFnsFp format taint time document body innerHTML Time is  dateFns format taint time document body innerHTML Time is  dateFnsFp format time taint document body innerHTML Time is  moment time format taint document body innerHTML Time is  moment taint format document body innerHTML Time is  dateformat time taint |
+| autogenerated/Xss/DomBasedXss/dates.js:13:31:13:72 | `Time i ... time)}` | enclosingFunctionBody | time Date taint decodeURIComponent window location hash substring 1 document body innerHTML Time is  dateFns format time taint document body innerHTML Time is  dateFnsEsm format time taint document body innerHTML Time is  dateFnsFp format taint time document body innerHTML Time is  dateFns format taint time document body innerHTML Time is  dateFnsFp format time taint document body innerHTML Time is  moment time format taint document body innerHTML Time is  moment taint format document body innerHTML Time is  dateformat time taint dayjs dayjs document body innerHTML Time is  dayjs time format taint |
 | autogenerated/Xss/DomBasedXss/dates.js:13:31:13:72 | `Time i ... time)}` | enclosingFunctionName | main |
-| autogenerated/Xss/DomBasedXss/dates.js:13:31:13:72 | `Time i ... time)}` | fileImports | date-fns date-fns/esm date-fns/fp dateformat moment |
+| autogenerated/Xss/DomBasedXss/dates.js:13:31:13:72 | `Time i ... time)}` | fileImports | @date-io/date-fns @date-io/dayjs @date-io/luxon @date-io/moment date-fns date-fns/esm date-fns/fp dateformat dayjs luxon moment |
 | autogenerated/Xss/DomBasedXss/dates.js:13:59:13:63 | taint | CalleeFlexibleAccessPath | dateFnsFp.format |
 | autogenerated/Xss/DomBasedXss/dates.js:13:59:13:63 | taint | InputArgumentIndex | 0 |
 | autogenerated/Xss/DomBasedXss/dates.js:13:59:13:63 | taint | calleeImports | date-fns/fp |
-| autogenerated/Xss/DomBasedXss/dates.js:13:59:13:63 | taint | contextFunctionInterfaces | main() |
+| autogenerated/Xss/DomBasedXss/dates.js:13:59:13:63 | taint | contextFunctionInterfaces | dateio()\ndateio2()\nluxon()\nmain() |
 | autogenerated/Xss/DomBasedXss/dates.js:13:59:13:63 | taint | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/dates.js:13:59:13:63 | taint | enclosingFunctionBody | time Date taint decodeURIComponent window location hash substring 1 document body innerHTML Time is  dateFns format time taint document body innerHTML Time is  dateFnsEsm format time taint document body innerHTML Time is  dateFnsFp format taint time document body innerHTML Time is  dateFns format taint time document body innerHTML Time is  dateFnsFp format time taint document body innerHTML Time is  moment time format taint document body innerHTML Time is  moment taint format document body innerHTML Time is  dateformat time taint |
+| autogenerated/Xss/DomBasedXss/dates.js:13:59:13:63 | taint | enclosingFunctionBody | time Date taint decodeURIComponent window location hash substring 1 document body innerHTML Time is  dateFns format time taint document body innerHTML Time is  dateFnsEsm format time taint document body innerHTML Time is  dateFnsFp format taint time document body innerHTML Time is  dateFns format taint time document body innerHTML Time is  dateFnsFp format time taint document body innerHTML Time is  moment time format taint document body innerHTML Time is  moment taint format document body innerHTML Time is  dateformat time taint dayjs dayjs document body innerHTML Time is  dayjs time format taint |
 | autogenerated/Xss/DomBasedXss/dates.js:13:59:13:63 | taint | enclosingFunctionName | main |
-| autogenerated/Xss/DomBasedXss/dates.js:13:59:13:63 | taint | fileImports | date-fns date-fns/esm date-fns/fp dateformat moment |
+| autogenerated/Xss/DomBasedXss/dates.js:13:59:13:63 | taint | fileImports | @date-io/date-fns @date-io/dayjs @date-io/luxon @date-io/moment date-fns date-fns/esm date-fns/fp dateformat dayjs luxon moment |
 | autogenerated/Xss/DomBasedXss/dates.js:13:59:13:63 | taint | receiverName | dateFnsFp |
 | autogenerated/Xss/DomBasedXss/dates.js:13:66:13:69 | time | CalleeFlexibleAccessPath | dateFnsFp.format() |
 | autogenerated/Xss/DomBasedXss/dates.js:13:66:13:69 | time | InputArgumentIndex | 0 |
 | autogenerated/Xss/DomBasedXss/dates.js:13:66:13:69 | time | calleeImports | date-fns/fp |
-| autogenerated/Xss/DomBasedXss/dates.js:13:66:13:69 | time | contextFunctionInterfaces | main() |
+| autogenerated/Xss/DomBasedXss/dates.js:13:66:13:69 | time | contextFunctionInterfaces | dateio()\ndateio2()\nluxon()\nmain() |
 | autogenerated/Xss/DomBasedXss/dates.js:13:66:13:69 | time | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/dates.js:13:66:13:69 | time | enclosingFunctionBody | time Date taint decodeURIComponent window location hash substring 1 document body innerHTML Time is  dateFns format time taint document body innerHTML Time is  dateFnsEsm format time taint document body innerHTML Time is  dateFnsFp format taint time document body innerHTML Time is  dateFns format taint time document body innerHTML Time is  dateFnsFp format time taint document body innerHTML Time is  moment time format taint document body innerHTML Time is  moment taint format document body innerHTML Time is  dateformat time taint |
+| autogenerated/Xss/DomBasedXss/dates.js:13:66:13:69 | time | enclosingFunctionBody | time Date taint decodeURIComponent window location hash substring 1 document body innerHTML Time is  dateFns format time taint document body innerHTML Time is  dateFnsEsm format time taint document body innerHTML Time is  dateFnsFp format taint time document body innerHTML Time is  dateFns format taint time document body innerHTML Time is  dateFnsFp format time taint document body innerHTML Time is  moment time format taint document body innerHTML Time is  moment taint format document body innerHTML Time is  dateformat time taint dayjs dayjs document body innerHTML Time is  dayjs time format taint |
 | autogenerated/Xss/DomBasedXss/dates.js:13:66:13:69 | time | enclosingFunctionName | main |
-| autogenerated/Xss/DomBasedXss/dates.js:13:66:13:69 | time | fileImports | date-fns date-fns/esm date-fns/fp dateformat moment |
+| autogenerated/Xss/DomBasedXss/dates.js:13:66:13:69 | time | fileImports | @date-io/date-fns @date-io/dayjs @date-io/luxon @date-io/moment date-fns date-fns/esm date-fns/fp dateformat dayjs luxon moment |
 | autogenerated/Xss/DomBasedXss/dates.js:14:31:14:70 | `Time i ... time)}` | assignedToPropName | innerHTML |
-| autogenerated/Xss/DomBasedXss/dates.js:14:31:14:70 | `Time i ... time)}` | contextFunctionInterfaces | main() |
+| autogenerated/Xss/DomBasedXss/dates.js:14:31:14:70 | `Time i ... time)}` | contextFunctionInterfaces | dateio()\ndateio2()\nluxon()\nmain() |
 | autogenerated/Xss/DomBasedXss/dates.js:14:31:14:70 | `Time i ... time)}` | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/dates.js:14:31:14:70 | `Time i ... time)}` | enclosingFunctionBody | time Date taint decodeURIComponent window location hash substring 1 document body innerHTML Time is  dateFns format time taint document body innerHTML Time is  dateFnsEsm format time taint document body innerHTML Time is  dateFnsFp format taint time document body innerHTML Time is  dateFns format taint time document body innerHTML Time is  dateFnsFp format time taint document body innerHTML Time is  moment time format taint document body innerHTML Time is  moment taint format document body innerHTML Time is  dateformat time taint |
+| autogenerated/Xss/DomBasedXss/dates.js:14:31:14:70 | `Time i ... time)}` | enclosingFunctionBody | time Date taint decodeURIComponent window location hash substring 1 document body innerHTML Time is  dateFns format time taint document body innerHTML Time is  dateFnsEsm format time taint document body innerHTML Time is  dateFnsFp format taint time document body innerHTML Time is  dateFns format taint time document body innerHTML Time is  dateFnsFp format time taint document body innerHTML Time is  moment time format taint document body innerHTML Time is  moment taint format document body innerHTML Time is  dateformat time taint dayjs dayjs document body innerHTML Time is  dayjs time format taint |
 | autogenerated/Xss/DomBasedXss/dates.js:14:31:14:70 | `Time i ... time)}` | enclosingFunctionName | main |
-| autogenerated/Xss/DomBasedXss/dates.js:14:31:14:70 | `Time i ... time)}` | fileImports | date-fns date-fns/esm date-fns/fp dateformat moment |
+| autogenerated/Xss/DomBasedXss/dates.js:14:31:14:70 | `Time i ... time)}` | fileImports | @date-io/date-fns @date-io/dayjs @date-io/luxon @date-io/moment date-fns date-fns/esm date-fns/fp dateformat dayjs luxon moment |
 | autogenerated/Xss/DomBasedXss/dates.js:14:57:14:61 | taint | CalleeFlexibleAccessPath | dateFns.format |
 | autogenerated/Xss/DomBasedXss/dates.js:14:57:14:61 | taint | InputArgumentIndex | 0 |
 | autogenerated/Xss/DomBasedXss/dates.js:14:57:14:61 | taint | calleeImports | date-fns |
-| autogenerated/Xss/DomBasedXss/dates.js:14:57:14:61 | taint | contextFunctionInterfaces | main() |
+| autogenerated/Xss/DomBasedXss/dates.js:14:57:14:61 | taint | contextFunctionInterfaces | dateio()\ndateio2()\nluxon()\nmain() |
 | autogenerated/Xss/DomBasedXss/dates.js:14:57:14:61 | taint | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/dates.js:14:57:14:61 | taint | enclosingFunctionBody | time Date taint decodeURIComponent window location hash substring 1 document body innerHTML Time is  dateFns format time taint document body innerHTML Time is  dateFnsEsm format time taint document body innerHTML Time is  dateFnsFp format taint time document body innerHTML Time is  dateFns format taint time document body innerHTML Time is  dateFnsFp format time taint document body innerHTML Time is  moment time format taint document body innerHTML Time is  moment taint format document body innerHTML Time is  dateformat time taint |
+| autogenerated/Xss/DomBasedXss/dates.js:14:57:14:61 | taint | enclosingFunctionBody | time Date taint decodeURIComponent window location hash substring 1 document body innerHTML Time is  dateFns format time taint document body innerHTML Time is  dateFnsEsm format time taint document body innerHTML Time is  dateFnsFp format taint time document body innerHTML Time is  dateFns format taint time document body innerHTML Time is  dateFnsFp format time taint document body innerHTML Time is  moment time format taint document body innerHTML Time is  moment taint format document body innerHTML Time is  dateformat time taint dayjs dayjs document body innerHTML Time is  dayjs time format taint |
 | autogenerated/Xss/DomBasedXss/dates.js:14:57:14:61 | taint | enclosingFunctionName | main |
-| autogenerated/Xss/DomBasedXss/dates.js:14:57:14:61 | taint | fileImports | date-fns date-fns/esm date-fns/fp dateformat moment |
+| autogenerated/Xss/DomBasedXss/dates.js:14:57:14:61 | taint | fileImports | @date-io/date-fns @date-io/dayjs @date-io/luxon @date-io/moment date-fns date-fns/esm date-fns/fp dateformat dayjs luxon moment |
 | autogenerated/Xss/DomBasedXss/dates.js:14:57:14:61 | taint | receiverName | dateFns |
 | autogenerated/Xss/DomBasedXss/dates.js:14:64:14:67 | time | CalleeFlexibleAccessPath | dateFns.format |
 | autogenerated/Xss/DomBasedXss/dates.js:14:64:14:67 | time | InputArgumentIndex | 1 |
 | autogenerated/Xss/DomBasedXss/dates.js:14:64:14:67 | time | calleeImports | date-fns |
-| autogenerated/Xss/DomBasedXss/dates.js:14:64:14:67 | time | contextFunctionInterfaces | main() |
+| autogenerated/Xss/DomBasedXss/dates.js:14:64:14:67 | time | contextFunctionInterfaces | dateio()\ndateio2()\nluxon()\nmain() |
 | autogenerated/Xss/DomBasedXss/dates.js:14:64:14:67 | time | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/dates.js:14:64:14:67 | time | enclosingFunctionBody | time Date taint decodeURIComponent window location hash substring 1 document body innerHTML Time is  dateFns format time taint document body innerHTML Time is  dateFnsEsm format time taint document body innerHTML Time is  dateFnsFp format taint time document body innerHTML Time is  dateFns format taint time document body innerHTML Time is  dateFnsFp format time taint document body innerHTML Time is  moment time format taint document body innerHTML Time is  moment taint format document body innerHTML Time is  dateformat time taint |
+| autogenerated/Xss/DomBasedXss/dates.js:14:64:14:67 | time | enclosingFunctionBody | time Date taint decodeURIComponent window location hash substring 1 document body innerHTML Time is  dateFns format time taint document body innerHTML Time is  dateFnsEsm format time taint document body innerHTML Time is  dateFnsFp format taint time document body innerHTML Time is  dateFns format taint time document body innerHTML Time is  dateFnsFp format time taint document body innerHTML Time is  moment time format taint document body innerHTML Time is  moment taint format document body innerHTML Time is  dateformat time taint dayjs dayjs document body innerHTML Time is  dayjs time format taint |
 | autogenerated/Xss/DomBasedXss/dates.js:14:64:14:67 | time | enclosingFunctionName | main |
-| autogenerated/Xss/DomBasedXss/dates.js:14:64:14:67 | time | fileImports | date-fns date-fns/esm date-fns/fp dateformat moment |
+| autogenerated/Xss/DomBasedXss/dates.js:14:64:14:67 | time | fileImports | @date-io/date-fns @date-io/dayjs @date-io/luxon @date-io/moment date-fns date-fns/esm date-fns/fp dateformat dayjs luxon moment |
 | autogenerated/Xss/DomBasedXss/dates.js:14:64:14:67 | time | receiverName | dateFns |
 | autogenerated/Xss/DomBasedXss/dates.js:15:31:15:72 | `Time i ... aint)}` | assignedToPropName | innerHTML |
-| autogenerated/Xss/DomBasedXss/dates.js:15:31:15:72 | `Time i ... aint)}` | contextFunctionInterfaces | main() |
+| autogenerated/Xss/DomBasedXss/dates.js:15:31:15:72 | `Time i ... aint)}` | contextFunctionInterfaces | dateio()\ndateio2()\nluxon()\nmain() |
 | autogenerated/Xss/DomBasedXss/dates.js:15:31:15:72 | `Time i ... aint)}` | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/dates.js:15:31:15:72 | `Time i ... aint)}` | enclosingFunctionBody | time Date taint decodeURIComponent window location hash substring 1 document body innerHTML Time is  dateFns format time taint document body innerHTML Time is  dateFnsEsm format time taint document body innerHTML Time is  dateFnsFp format taint time document body innerHTML Time is  dateFns format taint time document body innerHTML Time is  dateFnsFp format time taint document body innerHTML Time is  moment time format taint document body innerHTML Time is  moment taint format document body innerHTML Time is  dateformat time taint |
+| autogenerated/Xss/DomBasedXss/dates.js:15:31:15:72 | `Time i ... aint)}` | enclosingFunctionBody | time Date taint decodeURIComponent window location hash substring 1 document body innerHTML Time is  dateFns format time taint document body innerHTML Time is  dateFnsEsm format time taint document body innerHTML Time is  dateFnsFp format taint time document body innerHTML Time is  dateFns format taint time document body innerHTML Time is  dateFnsFp format time taint document body innerHTML Time is  moment time format taint document body innerHTML Time is  moment taint format document body innerHTML Time is  dateformat time taint dayjs dayjs document body innerHTML Time is  dayjs time format taint |
 | autogenerated/Xss/DomBasedXss/dates.js:15:31:15:72 | `Time i ... aint)}` | enclosingFunctionName | main |
-| autogenerated/Xss/DomBasedXss/dates.js:15:31:15:72 | `Time i ... aint)}` | fileImports | date-fns date-fns/esm date-fns/fp dateformat moment |
+| autogenerated/Xss/DomBasedXss/dates.js:15:31:15:72 | `Time i ... aint)}` | fileImports | @date-io/date-fns @date-io/dayjs @date-io/luxon @date-io/moment date-fns date-fns/esm date-fns/fp dateformat dayjs luxon moment |
 | autogenerated/Xss/DomBasedXss/dates.js:15:59:15:62 | time | CalleeFlexibleAccessPath | dateFnsFp.format |
 | autogenerated/Xss/DomBasedXss/dates.js:15:59:15:62 | time | InputArgumentIndex | 0 |
 | autogenerated/Xss/DomBasedXss/dates.js:15:59:15:62 | time | calleeImports | date-fns/fp |
-| autogenerated/Xss/DomBasedXss/dates.js:15:59:15:62 | time | contextFunctionInterfaces | main() |
+| autogenerated/Xss/DomBasedXss/dates.js:15:59:15:62 | time | contextFunctionInterfaces | dateio()\ndateio2()\nluxon()\nmain() |
 | autogenerated/Xss/DomBasedXss/dates.js:15:59:15:62 | time | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/dates.js:15:59:15:62 | time | enclosingFunctionBody | time Date taint decodeURIComponent window location hash substring 1 document body innerHTML Time is  dateFns format time taint document body innerHTML Time is  dateFnsEsm format time taint document body innerHTML Time is  dateFnsFp format taint time document body innerHTML Time is  dateFns format taint time document body innerHTML Time is  dateFnsFp format time taint document body innerHTML Time is  moment time format taint document body innerHTML Time is  moment taint format document body innerHTML Time is  dateformat time taint |
+| autogenerated/Xss/DomBasedXss/dates.js:15:59:15:62 | time | enclosingFunctionBody | time Date taint decodeURIComponent window location hash substring 1 document body innerHTML Time is  dateFns format time taint document body innerHTML Time is  dateFnsEsm format time taint document body innerHTML Time is  dateFnsFp format taint time document body innerHTML Time is  dateFns format taint time document body innerHTML Time is  dateFnsFp format time taint document body innerHTML Time is  moment time format taint document body innerHTML Time is  moment taint format document body innerHTML Time is  dateformat time taint dayjs dayjs document body innerHTML Time is  dayjs time format taint |
 | autogenerated/Xss/DomBasedXss/dates.js:15:59:15:62 | time | enclosingFunctionName | main |
-| autogenerated/Xss/DomBasedXss/dates.js:15:59:15:62 | time | fileImports | date-fns date-fns/esm date-fns/fp dateformat moment |
+| autogenerated/Xss/DomBasedXss/dates.js:15:59:15:62 | time | fileImports | @date-io/date-fns @date-io/dayjs @date-io/luxon @date-io/moment date-fns date-fns/esm date-fns/fp dateformat dayjs luxon moment |
 | autogenerated/Xss/DomBasedXss/dates.js:15:59:15:62 | time | receiverName | dateFnsFp |
 | autogenerated/Xss/DomBasedXss/dates.js:15:65:15:69 | taint | CalleeFlexibleAccessPath | dateFnsFp.format() |
 | autogenerated/Xss/DomBasedXss/dates.js:15:65:15:69 | taint | InputArgumentIndex | 0 |
 | autogenerated/Xss/DomBasedXss/dates.js:15:65:15:69 | taint | calleeImports | date-fns/fp |
-| autogenerated/Xss/DomBasedXss/dates.js:15:65:15:69 | taint | contextFunctionInterfaces | main() |
+| autogenerated/Xss/DomBasedXss/dates.js:15:65:15:69 | taint | contextFunctionInterfaces | dateio()\ndateio2()\nluxon()\nmain() |
 | autogenerated/Xss/DomBasedXss/dates.js:15:65:15:69 | taint | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/dates.js:15:65:15:69 | taint | enclosingFunctionBody | time Date taint decodeURIComponent window location hash substring 1 document body innerHTML Time is  dateFns format time taint document body innerHTML Time is  dateFnsEsm format time taint document body innerHTML Time is  dateFnsFp format taint time document body innerHTML Time is  dateFns format taint time document body innerHTML Time is  dateFnsFp format time taint document body innerHTML Time is  moment time format taint document body innerHTML Time is  moment taint format document body innerHTML Time is  dateformat time taint |
+| autogenerated/Xss/DomBasedXss/dates.js:15:65:15:69 | taint | enclosingFunctionBody | time Date taint decodeURIComponent window location hash substring 1 document body innerHTML Time is  dateFns format time taint document body innerHTML Time is  dateFnsEsm format time taint document body innerHTML Time is  dateFnsFp format taint time document body innerHTML Time is  dateFns format taint time document body innerHTML Time is  dateFnsFp format time taint document body innerHTML Time is  moment time format taint document body innerHTML Time is  moment taint format document body innerHTML Time is  dateformat time taint dayjs dayjs document body innerHTML Time is  dayjs time format taint |
 | autogenerated/Xss/DomBasedXss/dates.js:15:65:15:69 | taint | enclosingFunctionName | main |
-| autogenerated/Xss/DomBasedXss/dates.js:15:65:15:69 | taint | fileImports | date-fns date-fns/esm date-fns/fp dateformat moment |
+| autogenerated/Xss/DomBasedXss/dates.js:15:65:15:69 | taint | fileImports | @date-io/date-fns @date-io/dayjs @date-io/luxon @date-io/moment date-fns date-fns/esm date-fns/fp dateformat dayjs luxon moment |
 | autogenerated/Xss/DomBasedXss/dates.js:16:31:16:69 | `Time i ... aint)}` | assignedToPropName | innerHTML |
-| autogenerated/Xss/DomBasedXss/dates.js:16:31:16:69 | `Time i ... aint)}` | contextFunctionInterfaces | main() |
+| autogenerated/Xss/DomBasedXss/dates.js:16:31:16:69 | `Time i ... aint)}` | contextFunctionInterfaces | dateio()\ndateio2()\nluxon()\nmain() |
 | autogenerated/Xss/DomBasedXss/dates.js:16:31:16:69 | `Time i ... aint)}` | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/dates.js:16:31:16:69 | `Time i ... aint)}` | enclosingFunctionBody | time Date taint decodeURIComponent window location hash substring 1 document body innerHTML Time is  dateFns format time taint document body innerHTML Time is  dateFnsEsm format time taint document body innerHTML Time is  dateFnsFp format taint time document body innerHTML Time is  dateFns format taint time document body innerHTML Time is  dateFnsFp format time taint document body innerHTML Time is  moment time format taint document body innerHTML Time is  moment taint format document body innerHTML Time is  dateformat time taint |
+| autogenerated/Xss/DomBasedXss/dates.js:16:31:16:69 | `Time i ... aint)}` | enclosingFunctionBody | time Date taint decodeURIComponent window location hash substring 1 document body innerHTML Time is  dateFns format time taint document body innerHTML Time is  dateFnsEsm format time taint document body innerHTML Time is  dateFnsFp format taint time document body innerHTML Time is  dateFns format taint time document body innerHTML Time is  dateFnsFp format time taint document body innerHTML Time is  moment time format taint document body innerHTML Time is  moment taint format document body innerHTML Time is  dateformat time taint dayjs dayjs document body innerHTML Time is  dayjs time format taint |
 | autogenerated/Xss/DomBasedXss/dates.js:16:31:16:69 | `Time i ... aint)}` | enclosingFunctionName | main |
-| autogenerated/Xss/DomBasedXss/dates.js:16:31:16:69 | `Time i ... aint)}` | fileImports | date-fns date-fns/esm date-fns/fp dateformat moment |
+| autogenerated/Xss/DomBasedXss/dates.js:16:31:16:69 | `Time i ... aint)}` | fileImports | @date-io/date-fns @date-io/dayjs @date-io/luxon @date-io/moment date-fns date-fns/esm date-fns/fp dateformat dayjs luxon moment |
 | autogenerated/Xss/DomBasedXss/dates.js:16:49:16:52 | time | CalleeFlexibleAccessPath | moment |
 | autogenerated/Xss/DomBasedXss/dates.js:16:49:16:52 | time | InputArgumentIndex | 0 |
 | autogenerated/Xss/DomBasedXss/dates.js:16:49:16:52 | time | calleeImports | moment |
-| autogenerated/Xss/DomBasedXss/dates.js:16:49:16:52 | time | contextFunctionInterfaces | main() |
+| autogenerated/Xss/DomBasedXss/dates.js:16:49:16:52 | time | contextFunctionInterfaces | dateio()\ndateio2()\nluxon()\nmain() |
 | autogenerated/Xss/DomBasedXss/dates.js:16:49:16:52 | time | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/dates.js:16:49:16:52 | time | enclosingFunctionBody | time Date taint decodeURIComponent window location hash substring 1 document body innerHTML Time is  dateFns format time taint document body innerHTML Time is  dateFnsEsm format time taint document body innerHTML Time is  dateFnsFp format taint time document body innerHTML Time is  dateFns format taint time document body innerHTML Time is  dateFnsFp format time taint document body innerHTML Time is  moment time format taint document body innerHTML Time is  moment taint format document body innerHTML Time is  dateformat time taint |
+| autogenerated/Xss/DomBasedXss/dates.js:16:49:16:52 | time | enclosingFunctionBody | time Date taint decodeURIComponent window location hash substring 1 document body innerHTML Time is  dateFns format time taint document body innerHTML Time is  dateFnsEsm format time taint document body innerHTML Time is  dateFnsFp format taint time document body innerHTML Time is  dateFns format taint time document body innerHTML Time is  dateFnsFp format time taint document body innerHTML Time is  moment time format taint document body innerHTML Time is  moment taint format document body innerHTML Time is  dateformat time taint dayjs dayjs document body innerHTML Time is  dayjs time format taint |
 | autogenerated/Xss/DomBasedXss/dates.js:16:49:16:52 | time | enclosingFunctionName | main |
-| autogenerated/Xss/DomBasedXss/dates.js:16:49:16:52 | time | fileImports | date-fns date-fns/esm date-fns/fp dateformat moment |
+| autogenerated/Xss/DomBasedXss/dates.js:16:49:16:52 | time | fileImports | @date-io/date-fns @date-io/dayjs @date-io/luxon @date-io/moment date-fns date-fns/esm date-fns/fp dateformat dayjs luxon moment |
 | autogenerated/Xss/DomBasedXss/dates.js:16:62:16:66 | taint | CalleeFlexibleAccessPath | moment().format |
 | autogenerated/Xss/DomBasedXss/dates.js:16:62:16:66 | taint | InputArgumentIndex | 0 |
 | autogenerated/Xss/DomBasedXss/dates.js:16:62:16:66 | taint | calleeImports | moment |
-| autogenerated/Xss/DomBasedXss/dates.js:16:62:16:66 | taint | contextFunctionInterfaces | main() |
+| autogenerated/Xss/DomBasedXss/dates.js:16:62:16:66 | taint | contextFunctionInterfaces | dateio()\ndateio2()\nluxon()\nmain() |
 | autogenerated/Xss/DomBasedXss/dates.js:16:62:16:66 | taint | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/dates.js:16:62:16:66 | taint | enclosingFunctionBody | time Date taint decodeURIComponent window location hash substring 1 document body innerHTML Time is  dateFns format time taint document body innerHTML Time is  dateFnsEsm format time taint document body innerHTML Time is  dateFnsFp format taint time document body innerHTML Time is  dateFns format taint time document body innerHTML Time is  dateFnsFp format time taint document body innerHTML Time is  moment time format taint document body innerHTML Time is  moment taint format document body innerHTML Time is  dateformat time taint |
+| autogenerated/Xss/DomBasedXss/dates.js:16:62:16:66 | taint | enclosingFunctionBody | time Date taint decodeURIComponent window location hash substring 1 document body innerHTML Time is  dateFns format time taint document body innerHTML Time is  dateFnsEsm format time taint document body innerHTML Time is  dateFnsFp format taint time document body innerHTML Time is  dateFns format taint time document body innerHTML Time is  dateFnsFp format time taint document body innerHTML Time is  moment time format taint document body innerHTML Time is  moment taint format document body innerHTML Time is  dateformat time taint dayjs dayjs document body innerHTML Time is  dayjs time format taint |
 | autogenerated/Xss/DomBasedXss/dates.js:16:62:16:66 | taint | enclosingFunctionName | main |
-| autogenerated/Xss/DomBasedXss/dates.js:16:62:16:66 | taint | fileImports | date-fns date-fns/esm date-fns/fp dateformat moment |
+| autogenerated/Xss/DomBasedXss/dates.js:16:62:16:66 | taint | fileImports | @date-io/date-fns @date-io/dayjs @date-io/luxon @date-io/moment date-fns date-fns/esm date-fns/fp dateformat dayjs luxon moment |
 | autogenerated/Xss/DomBasedXss/dates.js:17:31:17:65 | `Time i ... mat()}` | assignedToPropName | innerHTML |
-| autogenerated/Xss/DomBasedXss/dates.js:17:31:17:65 | `Time i ... mat()}` | contextFunctionInterfaces | main() |
+| autogenerated/Xss/DomBasedXss/dates.js:17:31:17:65 | `Time i ... mat()}` | contextFunctionInterfaces | dateio()\ndateio2()\nluxon()\nmain() |
 | autogenerated/Xss/DomBasedXss/dates.js:17:31:17:65 | `Time i ... mat()}` | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/dates.js:17:31:17:65 | `Time i ... mat()}` | enclosingFunctionBody | time Date taint decodeURIComponent window location hash substring 1 document body innerHTML Time is  dateFns format time taint document body innerHTML Time is  dateFnsEsm format time taint document body innerHTML Time is  dateFnsFp format taint time document body innerHTML Time is  dateFns format taint time document body innerHTML Time is  dateFnsFp format time taint document body innerHTML Time is  moment time format taint document body innerHTML Time is  moment taint format document body innerHTML Time is  dateformat time taint |
+| autogenerated/Xss/DomBasedXss/dates.js:17:31:17:65 | `Time i ... mat()}` | enclosingFunctionBody | time Date taint decodeURIComponent window location hash substring 1 document body innerHTML Time is  dateFns format time taint document body innerHTML Time is  dateFnsEsm format time taint document body innerHTML Time is  dateFnsFp format taint time document body innerHTML Time is  dateFns format taint time document body innerHTML Time is  dateFnsFp format time taint document body innerHTML Time is  moment time format taint document body innerHTML Time is  moment taint format document body innerHTML Time is  dateformat time taint dayjs dayjs document body innerHTML Time is  dayjs time format taint |
 | autogenerated/Xss/DomBasedXss/dates.js:17:31:17:65 | `Time i ... mat()}` | enclosingFunctionName | main |
-| autogenerated/Xss/DomBasedXss/dates.js:17:31:17:65 | `Time i ... mat()}` | fileImports | date-fns date-fns/esm date-fns/fp dateformat moment |
+| autogenerated/Xss/DomBasedXss/dates.js:17:31:17:65 | `Time i ... mat()}` | fileImports | @date-io/date-fns @date-io/dayjs @date-io/luxon @date-io/moment date-fns date-fns/esm date-fns/fp dateformat dayjs luxon moment |
 | autogenerated/Xss/DomBasedXss/dates.js:17:49:17:53 | taint | CalleeFlexibleAccessPath | moment |
 | autogenerated/Xss/DomBasedXss/dates.js:17:49:17:53 | taint | InputArgumentIndex | 0 |
 | autogenerated/Xss/DomBasedXss/dates.js:17:49:17:53 | taint | calleeImports | moment |
-| autogenerated/Xss/DomBasedXss/dates.js:17:49:17:53 | taint | contextFunctionInterfaces | main() |
+| autogenerated/Xss/DomBasedXss/dates.js:17:49:17:53 | taint | contextFunctionInterfaces | dateio()\ndateio2()\nluxon()\nmain() |
 | autogenerated/Xss/DomBasedXss/dates.js:17:49:17:53 | taint | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/dates.js:17:49:17:53 | taint | enclosingFunctionBody | time Date taint decodeURIComponent window location hash substring 1 document body innerHTML Time is  dateFns format time taint document body innerHTML Time is  dateFnsEsm format time taint document body innerHTML Time is  dateFnsFp format taint time document body innerHTML Time is  dateFns format taint time document body innerHTML Time is  dateFnsFp format time taint document body innerHTML Time is  moment time format taint document body innerHTML Time is  moment taint format document body innerHTML Time is  dateformat time taint |
+| autogenerated/Xss/DomBasedXss/dates.js:17:49:17:53 | taint | enclosingFunctionBody | time Date taint decodeURIComponent window location hash substring 1 document body innerHTML Time is  dateFns format time taint document body innerHTML Time is  dateFnsEsm format time taint document body innerHTML Time is  dateFnsFp format taint time document body innerHTML Time is  dateFns format taint time document body innerHTML Time is  dateFnsFp format time taint document body innerHTML Time is  moment time format taint document body innerHTML Time is  moment taint format document body innerHTML Time is  dateformat time taint dayjs dayjs document body innerHTML Time is  dayjs time format taint |
 | autogenerated/Xss/DomBasedXss/dates.js:17:49:17:53 | taint | enclosingFunctionName | main |
-| autogenerated/Xss/DomBasedXss/dates.js:17:49:17:53 | taint | fileImports | date-fns date-fns/esm date-fns/fp dateformat moment |
+| autogenerated/Xss/DomBasedXss/dates.js:17:49:17:53 | taint | fileImports | @date-io/date-fns @date-io/dayjs @date-io/luxon @date-io/moment date-fns date-fns/esm date-fns/fp dateformat dayjs luxon moment |
 | autogenerated/Xss/DomBasedXss/dates.js:18:31:18:66 | `Time i ... aint)}` | assignedToPropName | innerHTML |
-| autogenerated/Xss/DomBasedXss/dates.js:18:31:18:66 | `Time i ... aint)}` | contextFunctionInterfaces | main() |
+| autogenerated/Xss/DomBasedXss/dates.js:18:31:18:66 | `Time i ... aint)}` | contextFunctionInterfaces | dateio()\ndateio2()\nluxon()\nmain() |
 | autogenerated/Xss/DomBasedXss/dates.js:18:31:18:66 | `Time i ... aint)}` | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/dates.js:18:31:18:66 | `Time i ... aint)}` | enclosingFunctionBody | time Date taint decodeURIComponent window location hash substring 1 document body innerHTML Time is  dateFns format time taint document body innerHTML Time is  dateFnsEsm format time taint document body innerHTML Time is  dateFnsFp format taint time document body innerHTML Time is  dateFns format taint time document body innerHTML Time is  dateFnsFp format time taint document body innerHTML Time is  moment time format taint document body innerHTML Time is  moment taint format document body innerHTML Time is  dateformat time taint |
+| autogenerated/Xss/DomBasedXss/dates.js:18:31:18:66 | `Time i ... aint)}` | enclosingFunctionBody | time Date taint decodeURIComponent window location hash substring 1 document body innerHTML Time is  dateFns format time taint document body innerHTML Time is  dateFnsEsm format time taint document body innerHTML Time is  dateFnsFp format taint time document body innerHTML Time is  dateFns format taint time document body innerHTML Time is  dateFnsFp format time taint document body innerHTML Time is  moment time format taint document body innerHTML Time is  moment taint format document body innerHTML Time is  dateformat time taint dayjs dayjs document body innerHTML Time is  dayjs time format taint |
 | autogenerated/Xss/DomBasedXss/dates.js:18:31:18:66 | `Time i ... aint)}` | enclosingFunctionName | main |
-| autogenerated/Xss/DomBasedXss/dates.js:18:31:18:66 | `Time i ... aint)}` | fileImports | date-fns date-fns/esm date-fns/fp dateformat moment |
+| autogenerated/Xss/DomBasedXss/dates.js:18:31:18:66 | `Time i ... aint)}` | fileImports | @date-io/date-fns @date-io/dayjs @date-io/luxon @date-io/moment date-fns date-fns/esm date-fns/fp dateformat dayjs luxon moment |
 | autogenerated/Xss/DomBasedXss/dates.js:18:53:18:56 | time | CalleeFlexibleAccessPath | dateformat |
 | autogenerated/Xss/DomBasedXss/dates.js:18:53:18:56 | time | InputArgumentIndex | 0 |
 | autogenerated/Xss/DomBasedXss/dates.js:18:53:18:56 | time | calleeImports | dateformat |
-| autogenerated/Xss/DomBasedXss/dates.js:18:53:18:56 | time | contextFunctionInterfaces | main() |
+| autogenerated/Xss/DomBasedXss/dates.js:18:53:18:56 | time | contextFunctionInterfaces | dateio()\ndateio2()\nluxon()\nmain() |
 | autogenerated/Xss/DomBasedXss/dates.js:18:53:18:56 | time | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/dates.js:18:53:18:56 | time | enclosingFunctionBody | time Date taint decodeURIComponent window location hash substring 1 document body innerHTML Time is  dateFns format time taint document body innerHTML Time is  dateFnsEsm format time taint document body innerHTML Time is  dateFnsFp format taint time document body innerHTML Time is  dateFns format taint time document body innerHTML Time is  dateFnsFp format time taint document body innerHTML Time is  moment time format taint document body innerHTML Time is  moment taint format document body innerHTML Time is  dateformat time taint |
+| autogenerated/Xss/DomBasedXss/dates.js:18:53:18:56 | time | enclosingFunctionBody | time Date taint decodeURIComponent window location hash substring 1 document body innerHTML Time is  dateFns format time taint document body innerHTML Time is  dateFnsEsm format time taint document body innerHTML Time is  dateFnsFp format taint time document body innerHTML Time is  dateFns format taint time document body innerHTML Time is  dateFnsFp format time taint document body innerHTML Time is  moment time format taint document body innerHTML Time is  moment taint format document body innerHTML Time is  dateformat time taint dayjs dayjs document body innerHTML Time is  dayjs time format taint |
 | autogenerated/Xss/DomBasedXss/dates.js:18:53:18:56 | time | enclosingFunctionName | main |
-| autogenerated/Xss/DomBasedXss/dates.js:18:53:18:56 | time | fileImports | date-fns date-fns/esm date-fns/fp dateformat moment |
+| autogenerated/Xss/DomBasedXss/dates.js:18:53:18:56 | time | fileImports | @date-io/date-fns @date-io/dayjs @date-io/luxon @date-io/moment date-fns date-fns/esm date-fns/fp dateformat dayjs luxon moment |
 | autogenerated/Xss/DomBasedXss/dates.js:18:59:18:63 | taint | CalleeFlexibleAccessPath | dateformat |
 | autogenerated/Xss/DomBasedXss/dates.js:18:59:18:63 | taint | InputArgumentIndex | 1 |
 | autogenerated/Xss/DomBasedXss/dates.js:18:59:18:63 | taint | calleeImports | dateformat |
-| autogenerated/Xss/DomBasedXss/dates.js:18:59:18:63 | taint | contextFunctionInterfaces | main() |
+| autogenerated/Xss/DomBasedXss/dates.js:18:59:18:63 | taint | contextFunctionInterfaces | dateio()\ndateio2()\nluxon()\nmain() |
 | autogenerated/Xss/DomBasedXss/dates.js:18:59:18:63 | taint | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/dates.js:18:59:18:63 | taint | enclosingFunctionBody | time Date taint decodeURIComponent window location hash substring 1 document body innerHTML Time is  dateFns format time taint document body innerHTML Time is  dateFnsEsm format time taint document body innerHTML Time is  dateFnsFp format taint time document body innerHTML Time is  dateFns format taint time document body innerHTML Time is  dateFnsFp format time taint document body innerHTML Time is  moment time format taint document body innerHTML Time is  moment taint format document body innerHTML Time is  dateformat time taint |
+| autogenerated/Xss/DomBasedXss/dates.js:18:59:18:63 | taint | enclosingFunctionBody | time Date taint decodeURIComponent window location hash substring 1 document body innerHTML Time is  dateFns format time taint document body innerHTML Time is  dateFnsEsm format time taint document body innerHTML Time is  dateFnsFp format taint time document body innerHTML Time is  dateFns format taint time document body innerHTML Time is  dateFnsFp format time taint document body innerHTML Time is  moment time format taint document body innerHTML Time is  moment taint format document body innerHTML Time is  dateformat time taint dayjs dayjs document body innerHTML Time is  dayjs time format taint |
 | autogenerated/Xss/DomBasedXss/dates.js:18:59:18:63 | taint | enclosingFunctionName | main |
-| autogenerated/Xss/DomBasedXss/dates.js:18:59:18:63 | taint | fileImports | date-fns date-fns/esm date-fns/fp dateformat moment |
+| autogenerated/Xss/DomBasedXss/dates.js:18:59:18:63 | taint | fileImports | @date-io/date-fns @date-io/dayjs @date-io/luxon @date-io/moment date-fns date-fns/esm date-fns/fp dateformat dayjs luxon moment |
+| autogenerated/Xss/DomBasedXss/dates.js:21:31:21:68 | `Time i ... aint)}` | assignedToPropName | innerHTML |
+| autogenerated/Xss/DomBasedXss/dates.js:21:31:21:68 | `Time i ... aint)}` | contextFunctionInterfaces | dateio()\ndateio2()\nluxon()\nmain() |
+| autogenerated/Xss/DomBasedXss/dates.js:21:31:21:68 | `Time i ... aint)}` | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/dates.js:21:31:21:68 | `Time i ... aint)}` | enclosingFunctionBody | time Date taint decodeURIComponent window location hash substring 1 document body innerHTML Time is  dateFns format time taint document body innerHTML Time is  dateFnsEsm format time taint document body innerHTML Time is  dateFnsFp format taint time document body innerHTML Time is  dateFns format taint time document body innerHTML Time is  dateFnsFp format time taint document body innerHTML Time is  moment time format taint document body innerHTML Time is  moment taint format document body innerHTML Time is  dateformat time taint dayjs dayjs document body innerHTML Time is  dayjs time format taint |
+| autogenerated/Xss/DomBasedXss/dates.js:21:31:21:68 | `Time i ... aint)}` | enclosingFunctionName | main |
+| autogenerated/Xss/DomBasedXss/dates.js:21:31:21:68 | `Time i ... aint)}` | fileImports | @date-io/date-fns @date-io/dayjs @date-io/luxon @date-io/moment date-fns date-fns/esm date-fns/fp dateformat dayjs luxon moment |
+| autogenerated/Xss/DomBasedXss/dates.js:21:48:21:51 | time | CalleeFlexibleAccessPath | dayjs |
+| autogenerated/Xss/DomBasedXss/dates.js:21:48:21:51 | time | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/dates.js:21:48:21:51 | time | calleeImports | dayjs |
+| autogenerated/Xss/DomBasedXss/dates.js:21:48:21:51 | time | contextFunctionInterfaces | dateio()\ndateio2()\nluxon()\nmain() |
+| autogenerated/Xss/DomBasedXss/dates.js:21:48:21:51 | time | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/dates.js:21:48:21:51 | time | enclosingFunctionBody | time Date taint decodeURIComponent window location hash substring 1 document body innerHTML Time is  dateFns format time taint document body innerHTML Time is  dateFnsEsm format time taint document body innerHTML Time is  dateFnsFp format taint time document body innerHTML Time is  dateFns format taint time document body innerHTML Time is  dateFnsFp format time taint document body innerHTML Time is  moment time format taint document body innerHTML Time is  moment taint format document body innerHTML Time is  dateformat time taint dayjs dayjs document body innerHTML Time is  dayjs time format taint |
+| autogenerated/Xss/DomBasedXss/dates.js:21:48:21:51 | time | enclosingFunctionName | main |
+| autogenerated/Xss/DomBasedXss/dates.js:21:48:21:51 | time | fileImports | @date-io/date-fns @date-io/dayjs @date-io/luxon @date-io/moment date-fns date-fns/esm date-fns/fp dateformat dayjs luxon moment |
+| autogenerated/Xss/DomBasedXss/dates.js:21:61:21:65 | taint | CalleeFlexibleAccessPath | dayjs().format |
+| autogenerated/Xss/DomBasedXss/dates.js:21:61:21:65 | taint | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/dates.js:21:61:21:65 | taint | calleeImports | dayjs |
+| autogenerated/Xss/DomBasedXss/dates.js:21:61:21:65 | taint | contextFunctionInterfaces | dateio()\ndateio2()\nluxon()\nmain() |
+| autogenerated/Xss/DomBasedXss/dates.js:21:61:21:65 | taint | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/dates.js:21:61:21:65 | taint | enclosingFunctionBody | time Date taint decodeURIComponent window location hash substring 1 document body innerHTML Time is  dateFns format time taint document body innerHTML Time is  dateFnsEsm format time taint document body innerHTML Time is  dateFnsFp format taint time document body innerHTML Time is  dateFns format taint time document body innerHTML Time is  dateFnsFp format time taint document body innerHTML Time is  moment time format taint document body innerHTML Time is  moment taint format document body innerHTML Time is  dateformat time taint dayjs dayjs document body innerHTML Time is  dayjs time format taint |
+| autogenerated/Xss/DomBasedXss/dates.js:21:61:21:65 | taint | enclosingFunctionName | main |
+| autogenerated/Xss/DomBasedXss/dates.js:21:61:21:65 | taint | fileImports | @date-io/date-fns @date-io/dayjs @date-io/luxon @date-io/moment date-fns date-fns/esm date-fns/fp dateformat dayjs luxon moment |
+| autogenerated/Xss/DomBasedXss/dates.js:30:36:30:68 | window. ... ring(1) | CalleeFlexibleAccessPath | decodeURIComponent |
+| autogenerated/Xss/DomBasedXss/dates.js:30:36:30:68 | window. ... ring(1) | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/dates.js:30:36:30:68 | window. ... ring(1) | contextFunctionInterfaces | dateio()\ndateio2()\nluxon()\nmain() |
+| autogenerated/Xss/DomBasedXss/dates.js:30:36:30:68 | window. ... ring(1) | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/dates.js:30:36:30:68 | window. ... ring(1) | enclosingFunctionBody | taint decodeURIComponent window location hash substring 1 dateFns DateFnsAdapter luxon LuxonAdapter moment MomentAdapter dayjs DayJSAdapter document body innerHTML Time is  dateFns formatByString Date taint document body innerHTML Time is  luxon formatByString luxon date taint document body innerHTML Time is  moment formatByString moment date taint document body innerHTML Time is  dayjs formatByString dayjs date taint |
+| autogenerated/Xss/DomBasedXss/dates.js:30:36:30:68 | window. ... ring(1) | enclosingFunctionName | dateio |
+| autogenerated/Xss/DomBasedXss/dates.js:30:36:30:68 | window. ... ring(1) | fileImports | @date-io/date-fns @date-io/dayjs @date-io/luxon @date-io/moment date-fns date-fns/esm date-fns/fp dateformat dayjs luxon moment |
+| autogenerated/Xss/DomBasedXss/dates.js:30:67:30:67 | 1 | CalleeFlexibleAccessPath | window.location.hash.substring |
+| autogenerated/Xss/DomBasedXss/dates.js:30:67:30:67 | 1 | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/dates.js:30:67:30:67 | 1 | contextFunctionInterfaces | dateio()\ndateio2()\nluxon()\nmain() |
+| autogenerated/Xss/DomBasedXss/dates.js:30:67:30:67 | 1 | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/dates.js:30:67:30:67 | 1 | enclosingFunctionBody | taint decodeURIComponent window location hash substring 1 dateFns DateFnsAdapter luxon LuxonAdapter moment MomentAdapter dayjs DayJSAdapter document body innerHTML Time is  dateFns formatByString Date taint document body innerHTML Time is  luxon formatByString luxon date taint document body innerHTML Time is  moment formatByString moment date taint document body innerHTML Time is  dayjs formatByString dayjs date taint |
+| autogenerated/Xss/DomBasedXss/dates.js:30:67:30:67 | 1 | enclosingFunctionName | dateio |
+| autogenerated/Xss/DomBasedXss/dates.js:30:67:30:67 | 1 | fileImports | @date-io/date-fns @date-io/dayjs @date-io/luxon @date-io/moment date-fns date-fns/esm date-fns/fp dateformat dayjs luxon moment |
+| autogenerated/Xss/DomBasedXss/dates.js:37:31:37:84 | `Time i ... aint)}` | assignedToPropName | innerHTML |
+| autogenerated/Xss/DomBasedXss/dates.js:37:31:37:84 | `Time i ... aint)}` | contextFunctionInterfaces | dateio()\ndateio2()\nluxon()\nmain() |
+| autogenerated/Xss/DomBasedXss/dates.js:37:31:37:84 | `Time i ... aint)}` | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/dates.js:37:31:37:84 | `Time i ... aint)}` | enclosingFunctionBody | taint decodeURIComponent window location hash substring 1 dateFns DateFnsAdapter luxon LuxonAdapter moment MomentAdapter dayjs DayJSAdapter document body innerHTML Time is  dateFns formatByString Date taint document body innerHTML Time is  luxon formatByString luxon date taint document body innerHTML Time is  moment formatByString moment date taint document body innerHTML Time is  dayjs formatByString dayjs date taint |
+| autogenerated/Xss/DomBasedXss/dates.js:37:31:37:84 | `Time i ... aint)}` | enclosingFunctionName | dateio |
+| autogenerated/Xss/DomBasedXss/dates.js:37:31:37:84 | `Time i ... aint)}` | fileImports | @date-io/date-fns @date-io/dayjs @date-io/luxon @date-io/moment date-fns date-fns/esm date-fns/fp dateformat dayjs luxon moment |
+| autogenerated/Xss/DomBasedXss/dates.js:37:65:37:74 | new Date() | CalleeFlexibleAccessPath | dateFns.formatByString |
+| autogenerated/Xss/DomBasedXss/dates.js:37:65:37:74 | new Date() | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/dates.js:37:65:37:74 | new Date() | calleeImports | @date-io/date-fns |
+| autogenerated/Xss/DomBasedXss/dates.js:37:65:37:74 | new Date() | contextFunctionInterfaces | dateio()\ndateio2()\nluxon()\nmain() |
+| autogenerated/Xss/DomBasedXss/dates.js:37:65:37:74 | new Date() | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/dates.js:37:65:37:74 | new Date() | enclosingFunctionBody | taint decodeURIComponent window location hash substring 1 dateFns DateFnsAdapter luxon LuxonAdapter moment MomentAdapter dayjs DayJSAdapter document body innerHTML Time is  dateFns formatByString Date taint document body innerHTML Time is  luxon formatByString luxon date taint document body innerHTML Time is  moment formatByString moment date taint document body innerHTML Time is  dayjs formatByString dayjs date taint |
+| autogenerated/Xss/DomBasedXss/dates.js:37:65:37:74 | new Date() | enclosingFunctionName | dateio |
+| autogenerated/Xss/DomBasedXss/dates.js:37:65:37:74 | new Date() | fileImports | @date-io/date-fns @date-io/dayjs @date-io/luxon @date-io/moment date-fns date-fns/esm date-fns/fp dateformat dayjs luxon moment |
+| autogenerated/Xss/DomBasedXss/dates.js:37:65:37:74 | new Date() | receiverName | dateFns |
+| autogenerated/Xss/DomBasedXss/dates.js:37:77:37:81 | taint | CalleeFlexibleAccessPath | dateFns.formatByString |
+| autogenerated/Xss/DomBasedXss/dates.js:37:77:37:81 | taint | InputArgumentIndex | 1 |
+| autogenerated/Xss/DomBasedXss/dates.js:37:77:37:81 | taint | calleeImports | @date-io/date-fns |
+| autogenerated/Xss/DomBasedXss/dates.js:37:77:37:81 | taint | contextFunctionInterfaces | dateio()\ndateio2()\nluxon()\nmain() |
+| autogenerated/Xss/DomBasedXss/dates.js:37:77:37:81 | taint | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/dates.js:37:77:37:81 | taint | enclosingFunctionBody | taint decodeURIComponent window location hash substring 1 dateFns DateFnsAdapter luxon LuxonAdapter moment MomentAdapter dayjs DayJSAdapter document body innerHTML Time is  dateFns formatByString Date taint document body innerHTML Time is  luxon formatByString luxon date taint document body innerHTML Time is  moment formatByString moment date taint document body innerHTML Time is  dayjs formatByString dayjs date taint |
+| autogenerated/Xss/DomBasedXss/dates.js:37:77:37:81 | taint | enclosingFunctionName | dateio |
+| autogenerated/Xss/DomBasedXss/dates.js:37:77:37:81 | taint | fileImports | @date-io/date-fns @date-io/dayjs @date-io/luxon @date-io/moment date-fns date-fns/esm date-fns/fp dateformat dayjs luxon moment |
+| autogenerated/Xss/DomBasedXss/dates.js:37:77:37:81 | taint | receiverName | dateFns |
+| autogenerated/Xss/DomBasedXss/dates.js:38:31:38:84 | `Time i ... aint)}` | assignedToPropName | innerHTML |
+| autogenerated/Xss/DomBasedXss/dates.js:38:31:38:84 | `Time i ... aint)}` | contextFunctionInterfaces | dateio()\ndateio2()\nluxon()\nmain() |
+| autogenerated/Xss/DomBasedXss/dates.js:38:31:38:84 | `Time i ... aint)}` | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/dates.js:38:31:38:84 | `Time i ... aint)}` | enclosingFunctionBody | taint decodeURIComponent window location hash substring 1 dateFns DateFnsAdapter luxon LuxonAdapter moment MomentAdapter dayjs DayJSAdapter document body innerHTML Time is  dateFns formatByString Date taint document body innerHTML Time is  luxon formatByString luxon date taint document body innerHTML Time is  moment formatByString moment date taint document body innerHTML Time is  dayjs formatByString dayjs date taint |
+| autogenerated/Xss/DomBasedXss/dates.js:38:31:38:84 | `Time i ... aint)}` | enclosingFunctionName | dateio |
+| autogenerated/Xss/DomBasedXss/dates.js:38:31:38:84 | `Time i ... aint)}` | fileImports | @date-io/date-fns @date-io/dayjs @date-io/luxon @date-io/moment date-fns date-fns/esm date-fns/fp dateformat dayjs luxon moment |
+| autogenerated/Xss/DomBasedXss/dates.js:38:63:38:74 | luxon.date() | CalleeFlexibleAccessPath | luxon.formatByString |
+| autogenerated/Xss/DomBasedXss/dates.js:38:63:38:74 | luxon.date() | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/dates.js:38:63:38:74 | luxon.date() | calleeImports | @date-io/luxon |
+| autogenerated/Xss/DomBasedXss/dates.js:38:63:38:74 | luxon.date() | contextFunctionInterfaces | dateio()\ndateio2()\nluxon()\nmain() |
+| autogenerated/Xss/DomBasedXss/dates.js:38:63:38:74 | luxon.date() | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/dates.js:38:63:38:74 | luxon.date() | enclosingFunctionBody | taint decodeURIComponent window location hash substring 1 dateFns DateFnsAdapter luxon LuxonAdapter moment MomentAdapter dayjs DayJSAdapter document body innerHTML Time is  dateFns formatByString Date taint document body innerHTML Time is  luxon formatByString luxon date taint document body innerHTML Time is  moment formatByString moment date taint document body innerHTML Time is  dayjs formatByString dayjs date taint |
+| autogenerated/Xss/DomBasedXss/dates.js:38:63:38:74 | luxon.date() | enclosingFunctionName | dateio |
+| autogenerated/Xss/DomBasedXss/dates.js:38:63:38:74 | luxon.date() | fileImports | @date-io/date-fns @date-io/dayjs @date-io/luxon @date-io/moment date-fns date-fns/esm date-fns/fp dateformat dayjs luxon moment |
+| autogenerated/Xss/DomBasedXss/dates.js:38:63:38:74 | luxon.date() | receiverName | luxon |
+| autogenerated/Xss/DomBasedXss/dates.js:38:77:38:81 | taint | CalleeFlexibleAccessPath | luxon.formatByString |
+| autogenerated/Xss/DomBasedXss/dates.js:38:77:38:81 | taint | InputArgumentIndex | 1 |
+| autogenerated/Xss/DomBasedXss/dates.js:38:77:38:81 | taint | calleeImports | @date-io/luxon |
+| autogenerated/Xss/DomBasedXss/dates.js:38:77:38:81 | taint | contextFunctionInterfaces | dateio()\ndateio2()\nluxon()\nmain() |
+| autogenerated/Xss/DomBasedXss/dates.js:38:77:38:81 | taint | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/dates.js:38:77:38:81 | taint | enclosingFunctionBody | taint decodeURIComponent window location hash substring 1 dateFns DateFnsAdapter luxon LuxonAdapter moment MomentAdapter dayjs DayJSAdapter document body innerHTML Time is  dateFns formatByString Date taint document body innerHTML Time is  luxon formatByString luxon date taint document body innerHTML Time is  moment formatByString moment date taint document body innerHTML Time is  dayjs formatByString dayjs date taint |
+| autogenerated/Xss/DomBasedXss/dates.js:38:77:38:81 | taint | enclosingFunctionName | dateio |
+| autogenerated/Xss/DomBasedXss/dates.js:38:77:38:81 | taint | fileImports | @date-io/date-fns @date-io/dayjs @date-io/luxon @date-io/moment date-fns date-fns/esm date-fns/fp dateformat dayjs luxon moment |
+| autogenerated/Xss/DomBasedXss/dates.js:38:77:38:81 | taint | receiverName | luxon |
+| autogenerated/Xss/DomBasedXss/dates.js:39:31:39:86 | `Time i ... aint)}` | assignedToPropName | innerHTML |
+| autogenerated/Xss/DomBasedXss/dates.js:39:31:39:86 | `Time i ... aint)}` | contextFunctionInterfaces | dateio()\ndateio2()\nluxon()\nmain() |
+| autogenerated/Xss/DomBasedXss/dates.js:39:31:39:86 | `Time i ... aint)}` | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/dates.js:39:31:39:86 | `Time i ... aint)}` | enclosingFunctionBody | taint decodeURIComponent window location hash substring 1 dateFns DateFnsAdapter luxon LuxonAdapter moment MomentAdapter dayjs DayJSAdapter document body innerHTML Time is  dateFns formatByString Date taint document body innerHTML Time is  luxon formatByString luxon date taint document body innerHTML Time is  moment formatByString moment date taint document body innerHTML Time is  dayjs formatByString dayjs date taint |
+| autogenerated/Xss/DomBasedXss/dates.js:39:31:39:86 | `Time i ... aint)}` | enclosingFunctionName | dateio |
+| autogenerated/Xss/DomBasedXss/dates.js:39:31:39:86 | `Time i ... aint)}` | fileImports | @date-io/date-fns @date-io/dayjs @date-io/luxon @date-io/moment date-fns date-fns/esm date-fns/fp dateformat dayjs luxon moment |
+| autogenerated/Xss/DomBasedXss/dates.js:39:64:39:76 | moment.date() | CalleeFlexibleAccessPath | moment.formatByString |
+| autogenerated/Xss/DomBasedXss/dates.js:39:64:39:76 | moment.date() | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/dates.js:39:64:39:76 | moment.date() | calleeImports | @date-io/moment |
+| autogenerated/Xss/DomBasedXss/dates.js:39:64:39:76 | moment.date() | contextFunctionInterfaces | dateio()\ndateio2()\nluxon()\nmain() |
+| autogenerated/Xss/DomBasedXss/dates.js:39:64:39:76 | moment.date() | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/dates.js:39:64:39:76 | moment.date() | enclosingFunctionBody | taint decodeURIComponent window location hash substring 1 dateFns DateFnsAdapter luxon LuxonAdapter moment MomentAdapter dayjs DayJSAdapter document body innerHTML Time is  dateFns formatByString Date taint document body innerHTML Time is  luxon formatByString luxon date taint document body innerHTML Time is  moment formatByString moment date taint document body innerHTML Time is  dayjs formatByString dayjs date taint |
+| autogenerated/Xss/DomBasedXss/dates.js:39:64:39:76 | moment.date() | enclosingFunctionName | dateio |
+| autogenerated/Xss/DomBasedXss/dates.js:39:64:39:76 | moment.date() | fileImports | @date-io/date-fns @date-io/dayjs @date-io/luxon @date-io/moment date-fns date-fns/esm date-fns/fp dateformat dayjs luxon moment |
+| autogenerated/Xss/DomBasedXss/dates.js:39:64:39:76 | moment.date() | receiverName | moment |
+| autogenerated/Xss/DomBasedXss/dates.js:39:79:39:83 | taint | CalleeFlexibleAccessPath | moment.formatByString |
+| autogenerated/Xss/DomBasedXss/dates.js:39:79:39:83 | taint | InputArgumentIndex | 1 |
+| autogenerated/Xss/DomBasedXss/dates.js:39:79:39:83 | taint | calleeImports | @date-io/moment |
+| autogenerated/Xss/DomBasedXss/dates.js:39:79:39:83 | taint | contextFunctionInterfaces | dateio()\ndateio2()\nluxon()\nmain() |
+| autogenerated/Xss/DomBasedXss/dates.js:39:79:39:83 | taint | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/dates.js:39:79:39:83 | taint | enclosingFunctionBody | taint decodeURIComponent window location hash substring 1 dateFns DateFnsAdapter luxon LuxonAdapter moment MomentAdapter dayjs DayJSAdapter document body innerHTML Time is  dateFns formatByString Date taint document body innerHTML Time is  luxon formatByString luxon date taint document body innerHTML Time is  moment formatByString moment date taint document body innerHTML Time is  dayjs formatByString dayjs date taint |
+| autogenerated/Xss/DomBasedXss/dates.js:39:79:39:83 | taint | enclosingFunctionName | dateio |
+| autogenerated/Xss/DomBasedXss/dates.js:39:79:39:83 | taint | fileImports | @date-io/date-fns @date-io/dayjs @date-io/luxon @date-io/moment date-fns date-fns/esm date-fns/fp dateformat dayjs luxon moment |
+| autogenerated/Xss/DomBasedXss/dates.js:39:79:39:83 | taint | receiverName | moment |
+| autogenerated/Xss/DomBasedXss/dates.js:40:31:40:84 | `Time i ... aint)}` | assignedToPropName | innerHTML |
+| autogenerated/Xss/DomBasedXss/dates.js:40:31:40:84 | `Time i ... aint)}` | contextFunctionInterfaces | dateio()\ndateio2()\nluxon()\nmain() |
+| autogenerated/Xss/DomBasedXss/dates.js:40:31:40:84 | `Time i ... aint)}` | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/dates.js:40:31:40:84 | `Time i ... aint)}` | enclosingFunctionBody | taint decodeURIComponent window location hash substring 1 dateFns DateFnsAdapter luxon LuxonAdapter moment MomentAdapter dayjs DayJSAdapter document body innerHTML Time is  dateFns formatByString Date taint document body innerHTML Time is  luxon formatByString luxon date taint document body innerHTML Time is  moment formatByString moment date taint document body innerHTML Time is  dayjs formatByString dayjs date taint |
+| autogenerated/Xss/DomBasedXss/dates.js:40:31:40:84 | `Time i ... aint)}` | enclosingFunctionName | dateio |
+| autogenerated/Xss/DomBasedXss/dates.js:40:31:40:84 | `Time i ... aint)}` | fileImports | @date-io/date-fns @date-io/dayjs @date-io/luxon @date-io/moment date-fns date-fns/esm date-fns/fp dateformat dayjs luxon moment |
+| autogenerated/Xss/DomBasedXss/dates.js:40:63:40:74 | dayjs.date() | CalleeFlexibleAccessPath | dayjs.formatByString |
+| autogenerated/Xss/DomBasedXss/dates.js:40:63:40:74 | dayjs.date() | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/dates.js:40:63:40:74 | dayjs.date() | calleeImports | @date-io/dayjs |
+| autogenerated/Xss/DomBasedXss/dates.js:40:63:40:74 | dayjs.date() | contextFunctionInterfaces | dateio()\ndateio2()\nluxon()\nmain() |
+| autogenerated/Xss/DomBasedXss/dates.js:40:63:40:74 | dayjs.date() | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/dates.js:40:63:40:74 | dayjs.date() | enclosingFunctionBody | taint decodeURIComponent window location hash substring 1 dateFns DateFnsAdapter luxon LuxonAdapter moment MomentAdapter dayjs DayJSAdapter document body innerHTML Time is  dateFns formatByString Date taint document body innerHTML Time is  luxon formatByString luxon date taint document body innerHTML Time is  moment formatByString moment date taint document body innerHTML Time is  dayjs formatByString dayjs date taint |
+| autogenerated/Xss/DomBasedXss/dates.js:40:63:40:74 | dayjs.date() | enclosingFunctionName | dateio |
+| autogenerated/Xss/DomBasedXss/dates.js:40:63:40:74 | dayjs.date() | fileImports | @date-io/date-fns @date-io/dayjs @date-io/luxon @date-io/moment date-fns date-fns/esm date-fns/fp dateformat dayjs luxon moment |
+| autogenerated/Xss/DomBasedXss/dates.js:40:63:40:74 | dayjs.date() | receiverName | dayjs |
+| autogenerated/Xss/DomBasedXss/dates.js:40:77:40:81 | taint | CalleeFlexibleAccessPath | dayjs.formatByString |
+| autogenerated/Xss/DomBasedXss/dates.js:40:77:40:81 | taint | InputArgumentIndex | 1 |
+| autogenerated/Xss/DomBasedXss/dates.js:40:77:40:81 | taint | calleeImports | @date-io/dayjs |
+| autogenerated/Xss/DomBasedXss/dates.js:40:77:40:81 | taint | contextFunctionInterfaces | dateio()\ndateio2()\nluxon()\nmain() |
+| autogenerated/Xss/DomBasedXss/dates.js:40:77:40:81 | taint | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/dates.js:40:77:40:81 | taint | enclosingFunctionBody | taint decodeURIComponent window location hash substring 1 dateFns DateFnsAdapter luxon LuxonAdapter moment MomentAdapter dayjs DayJSAdapter document body innerHTML Time is  dateFns formatByString Date taint document body innerHTML Time is  luxon formatByString luxon date taint document body innerHTML Time is  moment formatByString moment date taint document body innerHTML Time is  dayjs formatByString dayjs date taint |
+| autogenerated/Xss/DomBasedXss/dates.js:40:77:40:81 | taint | enclosingFunctionName | dateio |
+| autogenerated/Xss/DomBasedXss/dates.js:40:77:40:81 | taint | fileImports | @date-io/date-fns @date-io/dayjs @date-io/luxon @date-io/moment date-fns date-fns/esm date-fns/fp dateformat dayjs luxon moment |
+| autogenerated/Xss/DomBasedXss/dates.js:40:77:40:81 | taint | receiverName | dayjs |
+| autogenerated/Xss/DomBasedXss/dates.js:46:36:46:68 | window. ... ring(1) | CalleeFlexibleAccessPath | decodeURIComponent |
+| autogenerated/Xss/DomBasedXss/dates.js:46:36:46:68 | window. ... ring(1) | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/dates.js:46:36:46:68 | window. ... ring(1) | contextFunctionInterfaces | dateio()\ndateio2()\nluxon()\nmain() |
+| autogenerated/Xss/DomBasedXss/dates.js:46:36:46:68 | window. ... ring(1) | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/dates.js:46:36:46:68 | window. ... ring(1) | enclosingFunctionBody | taint decodeURIComponent window location hash substring 1 document body innerHTML Time is  DateTime now plus years 1 toFormat taint document body innerHTML Time is  DateTime setLocale fr toFormat taint document body innerHTML Time is  DateTime fromISO 2020-01-01 startOf day toFormat taint |
+| autogenerated/Xss/DomBasedXss/dates.js:46:36:46:68 | window. ... ring(1) | enclosingFunctionName | luxon |
+| autogenerated/Xss/DomBasedXss/dates.js:46:36:46:68 | window. ... ring(1) | fileImports | @date-io/date-fns @date-io/dayjs @date-io/luxon @date-io/moment date-fns date-fns/esm date-fns/fp dateformat dayjs luxon moment |
+| autogenerated/Xss/DomBasedXss/dates.js:46:67:46:67 | 1 | CalleeFlexibleAccessPath | window.location.hash.substring |
+| autogenerated/Xss/DomBasedXss/dates.js:46:67:46:67 | 1 | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/dates.js:46:67:46:67 | 1 | contextFunctionInterfaces | dateio()\ndateio2()\nluxon()\nmain() |
+| autogenerated/Xss/DomBasedXss/dates.js:46:67:46:67 | 1 | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/dates.js:46:67:46:67 | 1 | enclosingFunctionBody | taint decodeURIComponent window location hash substring 1 document body innerHTML Time is  DateTime now plus years 1 toFormat taint document body innerHTML Time is  DateTime setLocale fr toFormat taint document body innerHTML Time is  DateTime fromISO 2020-01-01 startOf day toFormat taint |
+| autogenerated/Xss/DomBasedXss/dates.js:46:67:46:67 | 1 | enclosingFunctionName | luxon |
+| autogenerated/Xss/DomBasedXss/dates.js:46:67:46:67 | 1 | fileImports | @date-io/date-fns @date-io/dayjs @date-io/luxon @date-io/moment date-fns date-fns/esm date-fns/fp dateformat dayjs luxon moment |
+| autogenerated/Xss/DomBasedXss/dates.js:48:31:48:90 | `Time i ... aint)}` | assignedToPropName | innerHTML |
+| autogenerated/Xss/DomBasedXss/dates.js:48:31:48:90 | `Time i ... aint)}` | contextFunctionInterfaces | dateio()\ndateio2()\nluxon()\nmain() |
+| autogenerated/Xss/DomBasedXss/dates.js:48:31:48:90 | `Time i ... aint)}` | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/dates.js:48:31:48:90 | `Time i ... aint)}` | enclosingFunctionBody | taint decodeURIComponent window location hash substring 1 document body innerHTML Time is  DateTime now plus years 1 toFormat taint document body innerHTML Time is  DateTime setLocale fr toFormat taint document body innerHTML Time is  DateTime fromISO 2020-01-01 startOf day toFormat taint |
+| autogenerated/Xss/DomBasedXss/dates.js:48:31:48:90 | `Time i ... aint)}` | enclosingFunctionName | luxon |
+| autogenerated/Xss/DomBasedXss/dates.js:48:31:48:90 | `Time i ... aint)}` | fileImports | @date-io/date-fns @date-io/dayjs @date-io/luxon @date-io/moment date-fns date-fns/esm date-fns/fp dateformat dayjs luxon moment |
+| autogenerated/Xss/DomBasedXss/dates.js:48:62:48:71 | {years: 1} | CalleeFlexibleAccessPath | DateTime.now().plus |
+| autogenerated/Xss/DomBasedXss/dates.js:48:62:48:71 | {years: 1} | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/dates.js:48:62:48:71 | {years: 1} | calleeImports | luxon |
+| autogenerated/Xss/DomBasedXss/dates.js:48:62:48:71 | {years: 1} | contextFunctionInterfaces | dateio()\ndateio2()\nluxon()\nmain() |
+| autogenerated/Xss/DomBasedXss/dates.js:48:62:48:71 | {years: 1} | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/dates.js:48:62:48:71 | {years: 1} | enclosingFunctionBody | taint decodeURIComponent window location hash substring 1 document body innerHTML Time is  DateTime now plus years 1 toFormat taint document body innerHTML Time is  DateTime setLocale fr toFormat taint document body innerHTML Time is  DateTime fromISO 2020-01-01 startOf day toFormat taint |
+| autogenerated/Xss/DomBasedXss/dates.js:48:62:48:71 | {years: 1} | enclosingFunctionName | luxon |
+| autogenerated/Xss/DomBasedXss/dates.js:48:62:48:71 | {years: 1} | fileImports | @date-io/date-fns @date-io/dayjs @date-io/luxon @date-io/moment date-fns date-fns/esm date-fns/fp dateformat dayjs luxon moment |
+| autogenerated/Xss/DomBasedXss/dates.js:48:70:48:70 | 1 | CalleeFlexibleAccessPath | DateTime.now().plus |
+| autogenerated/Xss/DomBasedXss/dates.js:48:70:48:70 | 1 | InputAccessPathFromCallee | 0.years |
+| autogenerated/Xss/DomBasedXss/dates.js:48:70:48:70 | 1 | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/dates.js:48:70:48:70 | 1 | assignedToPropName | years |
+| autogenerated/Xss/DomBasedXss/dates.js:48:70:48:70 | 1 | calleeImports | luxon |
+| autogenerated/Xss/DomBasedXss/dates.js:48:70:48:70 | 1 | contextFunctionInterfaces | dateio()\ndateio2()\nluxon()\nmain() |
+| autogenerated/Xss/DomBasedXss/dates.js:48:70:48:70 | 1 | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/dates.js:48:70:48:70 | 1 | enclosingFunctionBody | taint decodeURIComponent window location hash substring 1 document body innerHTML Time is  DateTime now plus years 1 toFormat taint document body innerHTML Time is  DateTime setLocale fr toFormat taint document body innerHTML Time is  DateTime fromISO 2020-01-01 startOf day toFormat taint |
+| autogenerated/Xss/DomBasedXss/dates.js:48:70:48:70 | 1 | enclosingFunctionName | luxon |
+| autogenerated/Xss/DomBasedXss/dates.js:48:70:48:70 | 1 | fileImports | @date-io/date-fns @date-io/dayjs @date-io/luxon @date-io/moment date-fns date-fns/esm date-fns/fp dateformat dayjs luxon moment |
+| autogenerated/Xss/DomBasedXss/dates.js:48:83:48:87 | taint | CalleeFlexibleAccessPath | DateTime.now().plus().toFormat |
+| autogenerated/Xss/DomBasedXss/dates.js:48:83:48:87 | taint | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/dates.js:48:83:48:87 | taint | calleeImports | luxon |
+| autogenerated/Xss/DomBasedXss/dates.js:48:83:48:87 | taint | contextFunctionInterfaces | dateio()\ndateio2()\nluxon()\nmain() |
+| autogenerated/Xss/DomBasedXss/dates.js:48:83:48:87 | taint | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/dates.js:48:83:48:87 | taint | enclosingFunctionBody | taint decodeURIComponent window location hash substring 1 document body innerHTML Time is  DateTime now plus years 1 toFormat taint document body innerHTML Time is  DateTime setLocale fr toFormat taint document body innerHTML Time is  DateTime fromISO 2020-01-01 startOf day toFormat taint |
+| autogenerated/Xss/DomBasedXss/dates.js:48:83:48:87 | taint | enclosingFunctionName | luxon |
+| autogenerated/Xss/DomBasedXss/dates.js:48:83:48:87 | taint | fileImports | @date-io/date-fns @date-io/dayjs @date-io/luxon @date-io/moment date-fns date-fns/esm date-fns/fp dateformat dayjs luxon moment |
+| autogenerated/Xss/DomBasedXss/dates.js:49:31:49:89 | `Time i ... aint)}` | assignedToPropName | innerHTML |
+| autogenerated/Xss/DomBasedXss/dates.js:49:31:49:89 | `Time i ... aint)}` | contextFunctionInterfaces | dateio()\ndateio2()\nluxon()\nmain() |
+| autogenerated/Xss/DomBasedXss/dates.js:49:31:49:89 | `Time i ... aint)}` | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/dates.js:49:31:49:89 | `Time i ... aint)}` | enclosingFunctionBody | taint decodeURIComponent window location hash substring 1 document body innerHTML Time is  DateTime now plus years 1 toFormat taint document body innerHTML Time is  DateTime setLocale fr toFormat taint document body innerHTML Time is  DateTime fromISO 2020-01-01 startOf day toFormat taint |
+| autogenerated/Xss/DomBasedXss/dates.js:49:31:49:89 | `Time i ... aint)}` | enclosingFunctionName | luxon |
+| autogenerated/Xss/DomBasedXss/dates.js:49:31:49:89 | `Time i ... aint)}` | fileImports | @date-io/date-fns @date-io/dayjs @date-io/luxon @date-io/moment date-fns date-fns/esm date-fns/fp dateformat dayjs luxon moment |
+| autogenerated/Xss/DomBasedXss/dates.js:49:67:49:70 | 'fr' | CalleeFlexibleAccessPath | DateTime().setLocale |
+| autogenerated/Xss/DomBasedXss/dates.js:49:67:49:70 | 'fr' | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/dates.js:49:67:49:70 | 'fr' | calleeImports | luxon |
+| autogenerated/Xss/DomBasedXss/dates.js:49:67:49:70 | 'fr' | contextFunctionInterfaces | dateio()\ndateio2()\nluxon()\nmain() |
+| autogenerated/Xss/DomBasedXss/dates.js:49:67:49:70 | 'fr' | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/dates.js:49:67:49:70 | 'fr' | enclosingFunctionBody | taint decodeURIComponent window location hash substring 1 document body innerHTML Time is  DateTime now plus years 1 toFormat taint document body innerHTML Time is  DateTime setLocale fr toFormat taint document body innerHTML Time is  DateTime fromISO 2020-01-01 startOf day toFormat taint |
+| autogenerated/Xss/DomBasedXss/dates.js:49:67:49:70 | 'fr' | enclosingFunctionName | luxon |
+| autogenerated/Xss/DomBasedXss/dates.js:49:67:49:70 | 'fr' | fileImports | @date-io/date-fns @date-io/dayjs @date-io/luxon @date-io/moment date-fns date-fns/esm date-fns/fp dateformat dayjs luxon moment |
+| autogenerated/Xss/DomBasedXss/dates.js:49:82:49:86 | taint | CalleeFlexibleAccessPath | DateTime().setLocale().toFormat |
+| autogenerated/Xss/DomBasedXss/dates.js:49:82:49:86 | taint | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/dates.js:49:82:49:86 | taint | calleeImports | luxon |
+| autogenerated/Xss/DomBasedXss/dates.js:49:82:49:86 | taint | contextFunctionInterfaces | dateio()\ndateio2()\nluxon()\nmain() |
+| autogenerated/Xss/DomBasedXss/dates.js:49:82:49:86 | taint | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/dates.js:49:82:49:86 | taint | enclosingFunctionBody | taint decodeURIComponent window location hash substring 1 document body innerHTML Time is  DateTime now plus years 1 toFormat taint document body innerHTML Time is  DateTime setLocale fr toFormat taint document body innerHTML Time is  DateTime fromISO 2020-01-01 startOf day toFormat taint |
+| autogenerated/Xss/DomBasedXss/dates.js:49:82:49:86 | taint | enclosingFunctionName | luxon |
+| autogenerated/Xss/DomBasedXss/dates.js:49:82:49:86 | taint | fileImports | @date-io/date-fns @date-io/dayjs @date-io/luxon @date-io/moment date-fns date-fns/esm date-fns/fp dateformat dayjs luxon moment |
+| autogenerated/Xss/DomBasedXss/dates.js:50:31:50:104 | `Time i ... aint)}` | assignedToPropName | innerHTML |
+| autogenerated/Xss/DomBasedXss/dates.js:50:31:50:104 | `Time i ... aint)}` | contextFunctionInterfaces | dateio()\ndateio2()\nluxon()\nmain() |
+| autogenerated/Xss/DomBasedXss/dates.js:50:31:50:104 | `Time i ... aint)}` | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/dates.js:50:31:50:104 | `Time i ... aint)}` | enclosingFunctionBody | taint decodeURIComponent window location hash substring 1 document body innerHTML Time is  DateTime now plus years 1 toFormat taint document body innerHTML Time is  DateTime setLocale fr toFormat taint document body innerHTML Time is  DateTime fromISO 2020-01-01 startOf day toFormat taint |
+| autogenerated/Xss/DomBasedXss/dates.js:50:31:50:104 | `Time i ... aint)}` | enclosingFunctionName | luxon |
+| autogenerated/Xss/DomBasedXss/dates.js:50:31:50:104 | `Time i ... aint)}` | fileImports | @date-io/date-fns @date-io/dayjs @date-io/luxon @date-io/moment date-fns date-fns/esm date-fns/fp dateformat dayjs luxon moment |
+| autogenerated/Xss/DomBasedXss/dates.js:50:59:50:70 | "2020-01-01" | CalleeFlexibleAccessPath | DateTime.fromISO |
+| autogenerated/Xss/DomBasedXss/dates.js:50:59:50:70 | "2020-01-01" | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/dates.js:50:59:50:70 | "2020-01-01" | calleeImports | luxon |
+| autogenerated/Xss/DomBasedXss/dates.js:50:59:50:70 | "2020-01-01" | contextFunctionInterfaces | dateio()\ndateio2()\nluxon()\nmain() |
+| autogenerated/Xss/DomBasedXss/dates.js:50:59:50:70 | "2020-01-01" | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/dates.js:50:59:50:70 | "2020-01-01" | enclosingFunctionBody | taint decodeURIComponent window location hash substring 1 document body innerHTML Time is  DateTime now plus years 1 toFormat taint document body innerHTML Time is  DateTime setLocale fr toFormat taint document body innerHTML Time is  DateTime fromISO 2020-01-01 startOf day toFormat taint |
+| autogenerated/Xss/DomBasedXss/dates.js:50:59:50:70 | "2020-01-01" | enclosingFunctionName | luxon |
+| autogenerated/Xss/DomBasedXss/dates.js:50:59:50:70 | "2020-01-01" | fileImports | @date-io/date-fns @date-io/dayjs @date-io/luxon @date-io/moment date-fns date-fns/esm date-fns/fp dateformat dayjs luxon moment |
+| autogenerated/Xss/DomBasedXss/dates.js:50:59:50:70 | "2020-01-01" | receiverName | DateTime |
+| autogenerated/Xss/DomBasedXss/dates.js:50:81:50:85 | 'day' | CalleeFlexibleAccessPath | DateTime.fromISO().startOf |
+| autogenerated/Xss/DomBasedXss/dates.js:50:81:50:85 | 'day' | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/dates.js:50:81:50:85 | 'day' | calleeImports | luxon |
+| autogenerated/Xss/DomBasedXss/dates.js:50:81:50:85 | 'day' | contextFunctionInterfaces | dateio()\ndateio2()\nluxon()\nmain() |
+| autogenerated/Xss/DomBasedXss/dates.js:50:81:50:85 | 'day' | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/dates.js:50:81:50:85 | 'day' | enclosingFunctionBody | taint decodeURIComponent window location hash substring 1 document body innerHTML Time is  DateTime now plus years 1 toFormat taint document body innerHTML Time is  DateTime setLocale fr toFormat taint document body innerHTML Time is  DateTime fromISO 2020-01-01 startOf day toFormat taint |
+| autogenerated/Xss/DomBasedXss/dates.js:50:81:50:85 | 'day' | enclosingFunctionName | luxon |
+| autogenerated/Xss/DomBasedXss/dates.js:50:81:50:85 | 'day' | fileImports | @date-io/date-fns @date-io/dayjs @date-io/luxon @date-io/moment date-fns date-fns/esm date-fns/fp dateformat dayjs luxon moment |
+| autogenerated/Xss/DomBasedXss/dates.js:50:97:50:101 | taint | CalleeFlexibleAccessPath | DateTime.fromISO().startOf().toFormat |
+| autogenerated/Xss/DomBasedXss/dates.js:50:97:50:101 | taint | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/dates.js:50:97:50:101 | taint | calleeImports | luxon |
+| autogenerated/Xss/DomBasedXss/dates.js:50:97:50:101 | taint | contextFunctionInterfaces | dateio()\ndateio2()\nluxon()\nmain() |
+| autogenerated/Xss/DomBasedXss/dates.js:50:97:50:101 | taint | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/dates.js:50:97:50:101 | taint | enclosingFunctionBody | taint decodeURIComponent window location hash substring 1 document body innerHTML Time is  DateTime now plus years 1 toFormat taint document body innerHTML Time is  DateTime setLocale fr toFormat taint document body innerHTML Time is  DateTime fromISO 2020-01-01 startOf day toFormat taint |
+| autogenerated/Xss/DomBasedXss/dates.js:50:97:50:101 | taint | enclosingFunctionName | luxon |
+| autogenerated/Xss/DomBasedXss/dates.js:50:97:50:101 | taint | fileImports | @date-io/date-fns @date-io/dayjs @date-io/luxon @date-io/moment date-fns date-fns/esm date-fns/fp dateformat dayjs luxon moment |
+| autogenerated/Xss/DomBasedXss/dates.js:54:36:54:68 | window. ... ring(1) | CalleeFlexibleAccessPath | decodeURIComponent |
+| autogenerated/Xss/DomBasedXss/dates.js:54:36:54:68 | window. ... ring(1) | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/dates.js:54:36:54:68 | window. ... ring(1) | contextFunctionInterfaces | dateio()\ndateio2()\nluxon()\nmain() |
+| autogenerated/Xss/DomBasedXss/dates.js:54:36:54:68 | window. ... ring(1) | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/dates.js:54:36:54:68 | window. ... ring(1) | enclosingFunctionBody | taint decodeURIComponent window location hash substring 1 moment MomentAdapter document body innerHTML Time is  moment addDays moment date 2020-06-21 1 format taint luxon LuxonAdapter document body innerHTML Time is  luxon endOfDay luxon date toFormat taint dayjs DayJSAdapter document body innerHTML Time is  dayjs setHours dayjs date 4 format taint |
+| autogenerated/Xss/DomBasedXss/dates.js:54:36:54:68 | window. ... ring(1) | enclosingFunctionName | dateio2 |
+| autogenerated/Xss/DomBasedXss/dates.js:54:36:54:68 | window. ... ring(1) | fileImports | @date-io/date-fns @date-io/dayjs @date-io/luxon @date-io/moment date-fns date-fns/esm date-fns/fp dateformat dayjs luxon moment |
+| autogenerated/Xss/DomBasedXss/dates.js:54:67:54:67 | 1 | CalleeFlexibleAccessPath | window.location.hash.substring |
+| autogenerated/Xss/DomBasedXss/dates.js:54:67:54:67 | 1 | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/dates.js:54:67:54:67 | 1 | contextFunctionInterfaces | dateio()\ndateio2()\nluxon()\nmain() |
+| autogenerated/Xss/DomBasedXss/dates.js:54:67:54:67 | 1 | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/dates.js:54:67:54:67 | 1 | enclosingFunctionBody | taint decodeURIComponent window location hash substring 1 moment MomentAdapter document body innerHTML Time is  moment addDays moment date 2020-06-21 1 format taint luxon LuxonAdapter document body innerHTML Time is  luxon endOfDay luxon date toFormat taint dayjs DayJSAdapter document body innerHTML Time is  dayjs setHours dayjs date 4 format taint |
+| autogenerated/Xss/DomBasedXss/dates.js:54:67:54:67 | 1 | enclosingFunctionName | dateio2 |
+| autogenerated/Xss/DomBasedXss/dates.js:54:67:54:67 | 1 | fileImports | @date-io/date-fns @date-io/dayjs @date-io/luxon @date-io/moment date-fns date-fns/esm date-fns/fp dateformat dayjs luxon moment |
+| autogenerated/Xss/DomBasedXss/dates.js:57:31:57:101 | `Time i ... aint)}` | assignedToPropName | innerHTML |
+| autogenerated/Xss/DomBasedXss/dates.js:57:31:57:101 | `Time i ... aint)}` | contextFunctionInterfaces | dateio()\ndateio2()\nluxon()\nmain() |
+| autogenerated/Xss/DomBasedXss/dates.js:57:31:57:101 | `Time i ... aint)}` | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/dates.js:57:31:57:101 | `Time i ... aint)}` | enclosingFunctionBody | taint decodeURIComponent window location hash substring 1 moment MomentAdapter document body innerHTML Time is  moment addDays moment date 2020-06-21 1 format taint luxon LuxonAdapter document body innerHTML Time is  luxon endOfDay luxon date toFormat taint dayjs DayJSAdapter document body innerHTML Time is  dayjs setHours dayjs date 4 format taint |
+| autogenerated/Xss/DomBasedXss/dates.js:57:31:57:101 | `Time i ... aint)}` | enclosingFunctionName | dateio2 |
+| autogenerated/Xss/DomBasedXss/dates.js:57:31:57:101 | `Time i ... aint)}` | fileImports | @date-io/date-fns @date-io/dayjs @date-io/luxon @date-io/moment date-fns date-fns/esm date-fns/fp dateformat dayjs luxon moment |
+| autogenerated/Xss/DomBasedXss/dates.js:57:57:57:81 | moment. ... 06-21") | CalleeFlexibleAccessPath | moment.addDays |
+| autogenerated/Xss/DomBasedXss/dates.js:57:57:57:81 | moment. ... 06-21") | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/dates.js:57:57:57:81 | moment. ... 06-21") | calleeImports | @date-io/moment |
+| autogenerated/Xss/DomBasedXss/dates.js:57:57:57:81 | moment. ... 06-21") | contextFunctionInterfaces | dateio()\ndateio2()\nluxon()\nmain() |
+| autogenerated/Xss/DomBasedXss/dates.js:57:57:57:81 | moment. ... 06-21") | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/dates.js:57:57:57:81 | moment. ... 06-21") | enclosingFunctionBody | taint decodeURIComponent window location hash substring 1 moment MomentAdapter document body innerHTML Time is  moment addDays moment date 2020-06-21 1 format taint luxon LuxonAdapter document body innerHTML Time is  luxon endOfDay luxon date toFormat taint dayjs DayJSAdapter document body innerHTML Time is  dayjs setHours dayjs date 4 format taint |
+| autogenerated/Xss/DomBasedXss/dates.js:57:57:57:81 | moment. ... 06-21") | enclosingFunctionName | dateio2 |
+| autogenerated/Xss/DomBasedXss/dates.js:57:57:57:81 | moment. ... 06-21") | fileImports | @date-io/date-fns @date-io/dayjs @date-io/luxon @date-io/moment date-fns date-fns/esm date-fns/fp dateformat dayjs luxon moment |
+| autogenerated/Xss/DomBasedXss/dates.js:57:57:57:81 | moment. ... 06-21") | receiverName | moment |
+| autogenerated/Xss/DomBasedXss/dates.js:57:69:57:80 | "2020-06-21" | CalleeFlexibleAccessPath | moment.date |
+| autogenerated/Xss/DomBasedXss/dates.js:57:69:57:80 | "2020-06-21" | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/dates.js:57:69:57:80 | "2020-06-21" | calleeImports | @date-io/moment |
+| autogenerated/Xss/DomBasedXss/dates.js:57:69:57:80 | "2020-06-21" | contextFunctionInterfaces | dateio()\ndateio2()\nluxon()\nmain() |
+| autogenerated/Xss/DomBasedXss/dates.js:57:69:57:80 | "2020-06-21" | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/dates.js:57:69:57:80 | "2020-06-21" | enclosingFunctionBody | taint decodeURIComponent window location hash substring 1 moment MomentAdapter document body innerHTML Time is  moment addDays moment date 2020-06-21 1 format taint luxon LuxonAdapter document body innerHTML Time is  luxon endOfDay luxon date toFormat taint dayjs DayJSAdapter document body innerHTML Time is  dayjs setHours dayjs date 4 format taint |
+| autogenerated/Xss/DomBasedXss/dates.js:57:69:57:80 | "2020-06-21" | enclosingFunctionName | dateio2 |
+| autogenerated/Xss/DomBasedXss/dates.js:57:69:57:80 | "2020-06-21" | fileImports | @date-io/date-fns @date-io/dayjs @date-io/luxon @date-io/moment date-fns date-fns/esm date-fns/fp dateformat dayjs luxon moment |
+| autogenerated/Xss/DomBasedXss/dates.js:57:69:57:80 | "2020-06-21" | receiverName | moment |
+| autogenerated/Xss/DomBasedXss/dates.js:57:84:57:84 | 1 | CalleeFlexibleAccessPath | moment.addDays |
+| autogenerated/Xss/DomBasedXss/dates.js:57:84:57:84 | 1 | InputArgumentIndex | 1 |
+| autogenerated/Xss/DomBasedXss/dates.js:57:84:57:84 | 1 | calleeImports | @date-io/moment |
+| autogenerated/Xss/DomBasedXss/dates.js:57:84:57:84 | 1 | contextFunctionInterfaces | dateio()\ndateio2()\nluxon()\nmain() |
+| autogenerated/Xss/DomBasedXss/dates.js:57:84:57:84 | 1 | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/dates.js:57:84:57:84 | 1 | enclosingFunctionBody | taint decodeURIComponent window location hash substring 1 moment MomentAdapter document body innerHTML Time is  moment addDays moment date 2020-06-21 1 format taint luxon LuxonAdapter document body innerHTML Time is  luxon endOfDay luxon date toFormat taint dayjs DayJSAdapter document body innerHTML Time is  dayjs setHours dayjs date 4 format taint |
+| autogenerated/Xss/DomBasedXss/dates.js:57:84:57:84 | 1 | enclosingFunctionName | dateio2 |
+| autogenerated/Xss/DomBasedXss/dates.js:57:84:57:84 | 1 | fileImports | @date-io/date-fns @date-io/dayjs @date-io/luxon @date-io/moment date-fns date-fns/esm date-fns/fp dateformat dayjs luxon moment |
+| autogenerated/Xss/DomBasedXss/dates.js:57:84:57:84 | 1 | receiverName | moment |
+| autogenerated/Xss/DomBasedXss/dates.js:57:94:57:98 | taint | CalleeFlexibleAccessPath | moment.addDays().format |
+| autogenerated/Xss/DomBasedXss/dates.js:57:94:57:98 | taint | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/dates.js:57:94:57:98 | taint | calleeImports | @date-io/moment |
+| autogenerated/Xss/DomBasedXss/dates.js:57:94:57:98 | taint | contextFunctionInterfaces | dateio()\ndateio2()\nluxon()\nmain() |
+| autogenerated/Xss/DomBasedXss/dates.js:57:94:57:98 | taint | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/dates.js:57:94:57:98 | taint | enclosingFunctionBody | taint decodeURIComponent window location hash substring 1 moment MomentAdapter document body innerHTML Time is  moment addDays moment date 2020-06-21 1 format taint luxon LuxonAdapter document body innerHTML Time is  luxon endOfDay luxon date toFormat taint dayjs DayJSAdapter document body innerHTML Time is  dayjs setHours dayjs date 4 format taint |
+| autogenerated/Xss/DomBasedXss/dates.js:57:94:57:98 | taint | enclosingFunctionName | dateio2 |
+| autogenerated/Xss/DomBasedXss/dates.js:57:94:57:98 | taint | fileImports | @date-io/date-fns @date-io/dayjs @date-io/luxon @date-io/moment date-fns date-fns/esm date-fns/fp dateformat dayjs luxon moment |
+| autogenerated/Xss/DomBasedXss/dates.js:59:31:59:87 | `Time i ... aint)}` | assignedToPropName | innerHTML |
+| autogenerated/Xss/DomBasedXss/dates.js:59:31:59:87 | `Time i ... aint)}` | contextFunctionInterfaces | dateio()\ndateio2()\nluxon()\nmain() |
+| autogenerated/Xss/DomBasedXss/dates.js:59:31:59:87 | `Time i ... aint)}` | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/dates.js:59:31:59:87 | `Time i ... aint)}` | enclosingFunctionBody | taint decodeURIComponent window location hash substring 1 moment MomentAdapter document body innerHTML Time is  moment addDays moment date 2020-06-21 1 format taint luxon LuxonAdapter document body innerHTML Time is  luxon endOfDay luxon date toFormat taint dayjs DayJSAdapter document body innerHTML Time is  dayjs setHours dayjs date 4 format taint |
+| autogenerated/Xss/DomBasedXss/dates.js:59:31:59:87 | `Time i ... aint)}` | enclosingFunctionName | dateio2 |
+| autogenerated/Xss/DomBasedXss/dates.js:59:31:59:87 | `Time i ... aint)}` | fileImports | @date-io/date-fns @date-io/dayjs @date-io/luxon @date-io/moment date-fns date-fns/esm date-fns/fp dateformat dayjs luxon moment |
+| autogenerated/Xss/DomBasedXss/dates.js:59:57:59:68 | luxon.date() | CalleeFlexibleAccessPath | luxon.endOfDay |
+| autogenerated/Xss/DomBasedXss/dates.js:59:57:59:68 | luxon.date() | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/dates.js:59:57:59:68 | luxon.date() | calleeImports | @date-io/luxon |
+| autogenerated/Xss/DomBasedXss/dates.js:59:57:59:68 | luxon.date() | contextFunctionInterfaces | dateio()\ndateio2()\nluxon()\nmain() |
+| autogenerated/Xss/DomBasedXss/dates.js:59:57:59:68 | luxon.date() | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/dates.js:59:57:59:68 | luxon.date() | enclosingFunctionBody | taint decodeURIComponent window location hash substring 1 moment MomentAdapter document body innerHTML Time is  moment addDays moment date 2020-06-21 1 format taint luxon LuxonAdapter document body innerHTML Time is  luxon endOfDay luxon date toFormat taint dayjs DayJSAdapter document body innerHTML Time is  dayjs setHours dayjs date 4 format taint |
+| autogenerated/Xss/DomBasedXss/dates.js:59:57:59:68 | luxon.date() | enclosingFunctionName | dateio2 |
+| autogenerated/Xss/DomBasedXss/dates.js:59:57:59:68 | luxon.date() | fileImports | @date-io/date-fns @date-io/dayjs @date-io/luxon @date-io/moment date-fns date-fns/esm date-fns/fp dateformat dayjs luxon moment |
+| autogenerated/Xss/DomBasedXss/dates.js:59:57:59:68 | luxon.date() | receiverName | luxon |
+| autogenerated/Xss/DomBasedXss/dates.js:59:80:59:84 | taint | CalleeFlexibleAccessPath | luxon.endOfDay().toFormat |
+| autogenerated/Xss/DomBasedXss/dates.js:59:80:59:84 | taint | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/dates.js:59:80:59:84 | taint | calleeImports | @date-io/luxon |
+| autogenerated/Xss/DomBasedXss/dates.js:59:80:59:84 | taint | contextFunctionInterfaces | dateio()\ndateio2()\nluxon()\nmain() |
+| autogenerated/Xss/DomBasedXss/dates.js:59:80:59:84 | taint | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/dates.js:59:80:59:84 | taint | enclosingFunctionBody | taint decodeURIComponent window location hash substring 1 moment MomentAdapter document body innerHTML Time is  moment addDays moment date 2020-06-21 1 format taint luxon LuxonAdapter document body innerHTML Time is  luxon endOfDay luxon date toFormat taint dayjs DayJSAdapter document body innerHTML Time is  dayjs setHours dayjs date 4 format taint |
+| autogenerated/Xss/DomBasedXss/dates.js:59:80:59:84 | taint | enclosingFunctionName | dateio2 |
+| autogenerated/Xss/DomBasedXss/dates.js:59:80:59:84 | taint | fileImports | @date-io/date-fns @date-io/dayjs @date-io/luxon @date-io/moment date-fns date-fns/esm date-fns/fp dateformat dayjs luxon moment |
+| autogenerated/Xss/DomBasedXss/dates.js:61:31:61:88 | `Time i ... aint)}` | assignedToPropName | innerHTML |
+| autogenerated/Xss/DomBasedXss/dates.js:61:31:61:88 | `Time i ... aint)}` | contextFunctionInterfaces | dateio()\ndateio2()\nluxon()\nmain() |
+| autogenerated/Xss/DomBasedXss/dates.js:61:31:61:88 | `Time i ... aint)}` | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/dates.js:61:31:61:88 | `Time i ... aint)}` | enclosingFunctionBody | taint decodeURIComponent window location hash substring 1 moment MomentAdapter document body innerHTML Time is  moment addDays moment date 2020-06-21 1 format taint luxon LuxonAdapter document body innerHTML Time is  luxon endOfDay luxon date toFormat taint dayjs DayJSAdapter document body innerHTML Time is  dayjs setHours dayjs date 4 format taint |
+| autogenerated/Xss/DomBasedXss/dates.js:61:31:61:88 | `Time i ... aint)}` | enclosingFunctionName | dateio2 |
+| autogenerated/Xss/DomBasedXss/dates.js:61:31:61:88 | `Time i ... aint)}` | fileImports | @date-io/date-fns @date-io/dayjs @date-io/luxon @date-io/moment date-fns date-fns/esm date-fns/fp dateformat dayjs luxon moment |
+| autogenerated/Xss/DomBasedXss/dates.js:61:57:61:68 | dayjs.date() | CalleeFlexibleAccessPath | dayjs.setHours |
+| autogenerated/Xss/DomBasedXss/dates.js:61:57:61:68 | dayjs.date() | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/dates.js:61:57:61:68 | dayjs.date() | calleeImports | @date-io/dayjs |
+| autogenerated/Xss/DomBasedXss/dates.js:61:57:61:68 | dayjs.date() | contextFunctionInterfaces | dateio()\ndateio2()\nluxon()\nmain() |
+| autogenerated/Xss/DomBasedXss/dates.js:61:57:61:68 | dayjs.date() | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/dates.js:61:57:61:68 | dayjs.date() | enclosingFunctionBody | taint decodeURIComponent window location hash substring 1 moment MomentAdapter document body innerHTML Time is  moment addDays moment date 2020-06-21 1 format taint luxon LuxonAdapter document body innerHTML Time is  luxon endOfDay luxon date toFormat taint dayjs DayJSAdapter document body innerHTML Time is  dayjs setHours dayjs date 4 format taint |
+| autogenerated/Xss/DomBasedXss/dates.js:61:57:61:68 | dayjs.date() | enclosingFunctionName | dateio2 |
+| autogenerated/Xss/DomBasedXss/dates.js:61:57:61:68 | dayjs.date() | fileImports | @date-io/date-fns @date-io/dayjs @date-io/luxon @date-io/moment date-fns date-fns/esm date-fns/fp dateformat dayjs luxon moment |
+| autogenerated/Xss/DomBasedXss/dates.js:61:57:61:68 | dayjs.date() | receiverName | dayjs |
+| autogenerated/Xss/DomBasedXss/dates.js:61:71:61:71 | 4 | CalleeFlexibleAccessPath | dayjs.setHours |
+| autogenerated/Xss/DomBasedXss/dates.js:61:71:61:71 | 4 | InputArgumentIndex | 1 |
+| autogenerated/Xss/DomBasedXss/dates.js:61:71:61:71 | 4 | calleeImports | @date-io/dayjs |
+| autogenerated/Xss/DomBasedXss/dates.js:61:71:61:71 | 4 | contextFunctionInterfaces | dateio()\ndateio2()\nluxon()\nmain() |
+| autogenerated/Xss/DomBasedXss/dates.js:61:71:61:71 | 4 | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/dates.js:61:71:61:71 | 4 | enclosingFunctionBody | taint decodeURIComponent window location hash substring 1 moment MomentAdapter document body innerHTML Time is  moment addDays moment date 2020-06-21 1 format taint luxon LuxonAdapter document body innerHTML Time is  luxon endOfDay luxon date toFormat taint dayjs DayJSAdapter document body innerHTML Time is  dayjs setHours dayjs date 4 format taint |
+| autogenerated/Xss/DomBasedXss/dates.js:61:71:61:71 | 4 | enclosingFunctionName | dateio2 |
+| autogenerated/Xss/DomBasedXss/dates.js:61:71:61:71 | 4 | fileImports | @date-io/date-fns @date-io/dayjs @date-io/luxon @date-io/moment date-fns date-fns/esm date-fns/fp dateformat dayjs luxon moment |
+| autogenerated/Xss/DomBasedXss/dates.js:61:71:61:71 | 4 | receiverName | dayjs |
+| autogenerated/Xss/DomBasedXss/dates.js:61:81:61:85 | taint | CalleeFlexibleAccessPath | dayjs.setHours().format |
+| autogenerated/Xss/DomBasedXss/dates.js:61:81:61:85 | taint | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/dates.js:61:81:61:85 | taint | calleeImports | @date-io/dayjs |
+| autogenerated/Xss/DomBasedXss/dates.js:61:81:61:85 | taint | contextFunctionInterfaces | dateio()\ndateio2()\nluxon()\nmain() |
+| autogenerated/Xss/DomBasedXss/dates.js:61:81:61:85 | taint | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/dates.js:61:81:61:85 | taint | enclosingFunctionBody | taint decodeURIComponent window location hash substring 1 moment MomentAdapter document body innerHTML Time is  moment addDays moment date 2020-06-21 1 format taint luxon LuxonAdapter document body innerHTML Time is  luxon endOfDay luxon date toFormat taint dayjs DayJSAdapter document body innerHTML Time is  dayjs setHours dayjs date 4 format taint |
+| autogenerated/Xss/DomBasedXss/dates.js:61:81:61:85 | taint | enclosingFunctionName | dateio2 |
+| autogenerated/Xss/DomBasedXss/dates.js:61:81:61:85 | taint | fileImports | @date-io/date-fns @date-io/dayjs @date-io/luxon @date-io/moment date-fns date-fns/esm date-fns/fp dateformat dayjs luxon moment |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:1:3:1:8 | "#foo" | CalleeFlexibleAccessPath | $ |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:1:3:1:8 | "#foo" | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:1:3:1:8 | "#foo" | contextFunctionInterfaces | drop(e)\ngetDropData(e)\ninstall(el)\nondrop(e) |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:1:3:1:8 | "#foo" | contextSurroundingFunctionParameters |  |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:1:3:1:8 | "#foo" | fileImports |  |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:1:14:1:19 | "drop" | CalleeFlexibleAccessPath | $().on |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:1:14:1:19 | "drop" | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:1:14:1:19 | "drop" | contextFunctionInterfaces | drop(e)\ngetDropData(e)\ninstall(el)\nondrop(e) |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:1:14:1:19 | "drop" | contextSurroundingFunctionParameters |  |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:1:14:1:19 | "drop" | fileImports |  |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:1:22:1:25 | drop | CalleeFlexibleAccessPath | $().on |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:1:22:1:25 | drop | InputArgumentIndex | 1 |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:1:22:1:25 | drop | contextFunctionInterfaces | drop(e)\ngetDropData(e)\ninstall(el)\nondrop(e) |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:1:22:1:25 | drop | contextSurroundingFunctionParameters |  |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:1:22:1:25 | drop | fileImports |  |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:7:39:7:50 | 'text/plain' | CalleeFlexibleAccessPath | dataTransfer.getData |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:7:39:7:50 | 'text/plain' | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:7:39:7:50 | 'text/plain' | contextFunctionInterfaces | drop(e)\ngetDropData(e)\ninstall(el)\nondrop(e) |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:7:39:7:50 | 'text/plain' | contextSurroundingFunctionParameters | (e) |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:7:39:7:50 | 'text/plain' | enclosingFunctionBody | e dataTransfer e originalEvent dataTransfer text dataTransfer getData text/plain html dataTransfer getData text/html text html e preventDefault div document createElement div html div innerHTML html div textContent text document body append div |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:7:39:7:50 | 'text/plain' | enclosingFunctionName | drop |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:7:39:7:50 | 'text/plain' | fileImports |  |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:7:39:7:50 | 'text/plain' | receiverName | dataTransfer |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:8:18:8:50 | dataTra ... /html') | contextFunctionInterfaces | drop(e)\ngetDropData(e)\ninstall(el)\nondrop(e) |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:8:18:8:50 | dataTra ... /html') | contextSurroundingFunctionParameters | (e) |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:8:18:8:50 | dataTra ... /html') | enclosingFunctionBody | e dataTransfer e originalEvent dataTransfer text dataTransfer getData text/plain html dataTransfer getData text/html text html e preventDefault div document createElement div html div innerHTML html div textContent text document body append div |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:8:18:8:50 | dataTra ... /html') | enclosingFunctionName | drop |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:8:18:8:50 | dataTra ... /html') | fileImports |  |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:8:39:8:49 | 'text/html' | CalleeFlexibleAccessPath | dataTransfer.getData |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:8:39:8:49 | 'text/html' | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:8:39:8:49 | 'text/html' | contextFunctionInterfaces | drop(e)\ngetDropData(e)\ninstall(el)\nondrop(e) |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:8:39:8:49 | 'text/html' | contextSurroundingFunctionParameters | (e) |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:8:39:8:49 | 'text/html' | enclosingFunctionBody | e dataTransfer e originalEvent dataTransfer text dataTransfer getData text/plain html dataTransfer getData text/html text html e preventDefault div document createElement div html div innerHTML html div textContent text document body append div |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:8:39:8:49 | 'text/html' | enclosingFunctionName | drop |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:8:39:8:49 | 'text/html' | fileImports |  |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:8:39:8:49 | 'text/html' | receiverName | dataTransfer |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:13:40:13:44 | 'div' | CalleeFlexibleAccessPath | document.createElement |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:13:40:13:44 | 'div' | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:13:40:13:44 | 'div' | contextFunctionInterfaces | drop(e)\ngetDropData(e)\ninstall(el)\nondrop(e) |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:13:40:13:44 | 'div' | contextSurroundingFunctionParameters | (e) |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:13:40:13:44 | 'div' | enclosingFunctionBody | e dataTransfer e originalEvent dataTransfer text dataTransfer getData text/plain html dataTransfer getData text/html text html e preventDefault div document createElement div html div innerHTML html div textContent text document body append div |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:13:40:13:44 | 'div' | enclosingFunctionName | drop |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:13:40:13:44 | 'div' | fileImports |  |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:13:40:13:44 | 'div' | receiverName | document |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:15:25:15:28 | html | assignedToPropName | innerHTML |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:15:25:15:28 | html | contextFunctionInterfaces | drop(e)\ngetDropData(e)\ninstall(el)\nondrop(e) |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:15:25:15:28 | html | contextSurroundingFunctionParameters | (e) |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:15:25:15:28 | html | enclosingFunctionBody | e dataTransfer e originalEvent dataTransfer text dataTransfer getData text/plain html dataTransfer getData text/html text html e preventDefault div document createElement div html div innerHTML html div textContent text document body append div |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:15:25:15:28 | html | enclosingFunctionName | drop |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:15:25:15:28 | html | fileImports |  |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:19:26:19:28 | div | CalleeFlexibleAccessPath | document.body.append |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:19:26:19:28 | div | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:19:26:19:28 | div | contextFunctionInterfaces | drop(e)\ngetDropData(e)\ninstall(el)\nondrop(e) |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:19:26:19:28 | div | contextSurroundingFunctionParameters | (e) |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:19:26:19:28 | div | enclosingFunctionBody | e dataTransfer e originalEvent dataTransfer text dataTransfer getData text/plain html dataTransfer getData text/html text html e preventDefault div document createElement div html div innerHTML html div textContent text document body append div |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:19:26:19:28 | div | enclosingFunctionName | drop |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:19:26:19:28 | div | fileImports |  |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:23:25:23:30 | 'drop' | CalleeFlexibleAccessPath | el.addEventListener |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:23:25:23:30 | 'drop' | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:23:25:23:30 | 'drop' | contextFunctionInterfaces | drop(e)\ngetDropData(e)\ninstall(el)\nondrop(e) |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:23:25:23:30 | 'drop' | contextSurroundingFunctionParameters | (el) |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:23:25:23:30 | 'drop' | enclosingFunctionBody | el HTMLElement el addEventListener drop e $ #id html e dataTransfer getData text/html |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:23:25:23:30 | 'drop' | enclosingFunctionName | install |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:23:25:23:30 | 'drop' | fileImports |  |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:23:25:23:30 | 'drop' | receiverName | el |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:23:33:25:5 | (e) =>  ...  \\n    } | CalleeFlexibleAccessPath | el.addEventListener |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:23:33:25:5 | (e) =>  ...  \\n    } | InputArgumentIndex | 1 |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:23:33:25:5 | (e) =>  ...  \\n    } | contextFunctionInterfaces | drop(e)\ngetDropData(e)\ninstall(el)\nondrop(e) |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:23:33:25:5 | (e) =>  ...  \\n    } | contextSurroundingFunctionParameters | (el)\n(e) |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:23:33:25:5 | (e) =>  ...  \\n    } | enclosingFunctionBody | el HTMLElement el addEventListener drop e $ #id html e dataTransfer getData text/html |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:23:33:25:5 | (e) =>  ...  \\n    } | enclosingFunctionName | install |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:23:33:25:5 | (e) =>  ...  \\n    } | fileImports |  |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:23:33:25:5 | (e) =>  ...  \\n    } | receiverName | el |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:24:11:24:15 | "#id" | CalleeFlexibleAccessPath | $ |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:24:11:24:15 | "#id" | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:24:11:24:15 | "#id" | contextFunctionInterfaces | drop(e)\ngetDropData(e)\ninstall(el)\nondrop(e) |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:24:11:24:15 | "#id" | contextSurroundingFunctionParameters | (el)\n(e) |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:24:11:24:15 | "#id" | enclosingFunctionBody | el HTMLElement el addEventListener drop e $ #id html e dataTransfer getData text/html |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:24:11:24:15 | "#id" | enclosingFunctionName | install |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:24:11:24:15 | "#id" | fileImports |  |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:24:23:24:57 | e.dataT ... /html') | CalleeFlexibleAccessPath | $().html |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:24:23:24:57 | e.dataT ... /html') | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:24:23:24:57 | e.dataT ... /html') | contextFunctionInterfaces | drop(e)\ngetDropData(e)\ninstall(el)\nondrop(e) |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:24:23:24:57 | e.dataT ... /html') | contextSurroundingFunctionParameters | (el)\n(e) |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:24:23:24:57 | e.dataT ... /html') | enclosingFunctionBody | el HTMLElement el addEventListener drop e $ #id html e dataTransfer getData text/html |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:24:23:24:57 | e.dataT ... /html') | enclosingFunctionName | install |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:24:23:24:57 | e.dataT ... /html') | fileImports |  |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:24:46:24:56 | 'text/html' | CalleeFlexibleAccessPath | e.dataTransfer.getData |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:24:46:24:56 | 'text/html' | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:24:46:24:56 | 'text/html' | contextFunctionInterfaces | drop(e)\ngetDropData(e)\ninstall(el)\nondrop(e) |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:24:46:24:56 | 'text/html' | contextSurroundingFunctionParameters | (el)\n(e) |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:24:46:24:56 | 'text/html' | enclosingFunctionBody | el HTMLElement el addEventListener drop e $ #id html e dataTransfer getData text/html |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:24:46:24:56 | 'text/html' | enclosingFunctionName | install |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:24:46:24:56 | 'text/html' | fileImports |  |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:28:27:28:32 | 'drop' | CalleeFlexibleAccessPath | document.addEventListener |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:28:27:28:32 | 'drop' | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:28:27:28:32 | 'drop' | contextFunctionInterfaces | drop(e)\ngetDropData(e)\ninstall(el)\nondrop(e) |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:28:27:28:32 | 'drop' | contextSurroundingFunctionParameters |  |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:28:27:28:32 | 'drop' | fileImports |  |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:28:27:28:32 | 'drop' | receiverName | document |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:28:35:30:1 | (e) =>  ... OT OK\\n} | CalleeFlexibleAccessPath | document.addEventListener |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:28:35:30:1 | (e) =>  ... OT OK\\n} | InputArgumentIndex | 1 |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:28:35:30:1 | (e) =>  ... OT OK\\n} | contextFunctionInterfaces | drop(e)\ngetDropData(e)\ninstall(el)\nondrop(e) |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:28:35:30:1 | (e) =>  ... OT OK\\n} | contextSurroundingFunctionParameters | (e) |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:28:35:30:1 | (e) =>  ... OT OK\\n} | fileImports |  |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:28:35:30:1 | (e) =>  ... OT OK\\n} | receiverName | document |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:29:7:29:11 | "#id" | CalleeFlexibleAccessPath | $ |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:29:7:29:11 | "#id" | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:29:7:29:11 | "#id" | contextFunctionInterfaces | drop(e)\ngetDropData(e)\ninstall(el)\nondrop(e) |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:29:7:29:11 | "#id" | contextSurroundingFunctionParameters | (e) |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:29:7:29:11 | "#id" | enclosingFunctionBody | e $ #id html e dataTransfer getData text/html |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:29:7:29:11 | "#id" | enclosingFunctionName | document.addEventListener#functionalargument |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:29:7:29:11 | "#id" | fileImports |  |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:29:19:29:53 | e.dataT ... /html') | CalleeFlexibleAccessPath | $().html |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:29:19:29:53 | e.dataT ... /html') | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:29:19:29:53 | e.dataT ... /html') | contextFunctionInterfaces | drop(e)\ngetDropData(e)\ninstall(el)\nondrop(e) |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:29:19:29:53 | e.dataT ... /html') | contextSurroundingFunctionParameters | (e) |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:29:19:29:53 | e.dataT ... /html') | enclosingFunctionBody | e $ #id html e dataTransfer getData text/html |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:29:19:29:53 | e.dataT ... /html') | enclosingFunctionName | document.addEventListener#functionalargument |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:29:19:29:53 | e.dataT ... /html') | fileImports |  |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:29:42:29:52 | 'text/html' | CalleeFlexibleAccessPath | e.dataTransfer.getData |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:29:42:29:52 | 'text/html' | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:29:42:29:52 | 'text/html' | contextFunctionInterfaces | drop(e)\ngetDropData(e)\ninstall(el)\nondrop(e) |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:29:42:29:52 | 'text/html' | contextSurroundingFunctionParameters | (e) |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:29:42:29:52 | 'text/html' | enclosingFunctionBody | e $ #id html e dataTransfer getData text/html |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:29:42:29:52 | 'text/html' | enclosingFunctionName | document.addEventListener#functionalargument |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:29:42:29:52 | 'text/html' | fileImports |  |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:32:3:32:8 | "#foo" | CalleeFlexibleAccessPath | $ |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:32:3:32:8 | "#foo" | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:32:3:32:8 | "#foo" | contextFunctionInterfaces | drop(e)\ngetDropData(e)\ninstall(el)\nondrop(e) |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:32:3:32:8 | "#foo" | contextSurroundingFunctionParameters |  |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:32:3:32:8 | "#foo" | fileImports |  |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:32:16:32:21 | 'drop' | CalleeFlexibleAccessPath | $().bind |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:32:16:32:21 | 'drop' | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:32:16:32:21 | 'drop' | contextFunctionInterfaces | drop(e)\ngetDropData(e)\ninstall(el)\nondrop(e) |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:32:16:32:21 | 'drop' | contextSurroundingFunctionParameters |  |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:32:16:32:21 | 'drop' | fileImports |  |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:32:24:34:1 | (e) =>  ... OT OK\\n} | CalleeFlexibleAccessPath | $().bind |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:32:24:34:1 | (e) =>  ... OT OK\\n} | InputArgumentIndex | 1 |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:32:24:34:1 | (e) =>  ... OT OK\\n} | contextFunctionInterfaces | drop(e)\ngetDropData(e)\ninstall(el)\nondrop(e) |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:32:24:34:1 | (e) =>  ... OT OK\\n} | contextSurroundingFunctionParameters | (e) |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:32:24:34:1 | (e) =>  ... OT OK\\n} | fileImports |  |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:33:7:33:11 | "#id" | CalleeFlexibleAccessPath | $ |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:33:7:33:11 | "#id" | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:33:7:33:11 | "#id" | contextFunctionInterfaces | drop(e)\ngetDropData(e)\ninstall(el)\nondrop(e) |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:33:7:33:11 | "#id" | contextSurroundingFunctionParameters | (e) |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:33:7:33:11 | "#id" | enclosingFunctionBody | e $ #id html e originalEvent dataTransfer getData text/html |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:33:7:33:11 | "#id" | enclosingFunctionName | bind#functionalargument |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:33:7:33:11 | "#id" | fileImports |  |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:33:19:33:67 | e.origi ... /html') | CalleeFlexibleAccessPath | $().html |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:33:19:33:67 | e.origi ... /html') | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:33:19:33:67 | e.origi ... /html') | contextFunctionInterfaces | drop(e)\ngetDropData(e)\ninstall(el)\nondrop(e) |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:33:19:33:67 | e.origi ... /html') | contextSurroundingFunctionParameters | (e) |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:33:19:33:67 | e.origi ... /html') | enclosingFunctionBody | e $ #id html e originalEvent dataTransfer getData text/html |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:33:19:33:67 | e.origi ... /html') | enclosingFunctionName | bind#functionalargument |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:33:19:33:67 | e.origi ... /html') | fileImports |  |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:33:56:33:66 | 'text/html' | CalleeFlexibleAccessPath | e.originalEvent.dataTransfer.getData |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:33:56:33:66 | 'text/html' | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:33:56:33:66 | 'text/html' | contextFunctionInterfaces | drop(e)\ngetDropData(e)\ninstall(el)\nondrop(e) |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:33:56:33:66 | 'text/html' | contextSurroundingFunctionParameters | (e) |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:33:56:33:66 | 'text/html' | enclosingFunctionBody | e $ #id html e originalEvent dataTransfer getData text/html |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:33:56:33:66 | 'text/html' | enclosingFunctionName | bind#functionalargument |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:33:56:33:66 | 'text/html' | fileImports |  |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:37:38:37:42 | "div" | CalleeFlexibleAccessPath | document.createElement |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:37:38:37:42 | "div" | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:37:38:37:42 | "div" | contextFunctionInterfaces | drop(e)\ngetDropData(e)\ninstall(el)\nondrop(e) |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:37:38:37:42 | "div" | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:37:38:37:42 | "div" | enclosingFunctionBody | div document createElement div div ondrop e DragEvent dataTransfer e dataTransfer text dataTransfer getData text/plain html dataTransfer getData text/html text html e preventDefault div document createElement div html div innerHTML html div textContent text document body append div |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:37:38:37:42 | "div" | enclosingFunctionName |  |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:37:38:37:42 | "div" | fileImports |  |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:37:38:37:42 | "div" | receiverName | document |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:42:43:42:54 | 'text/plain' | CalleeFlexibleAccessPath | dataTransfer.getData |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:42:43:42:54 | 'text/plain' | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:42:43:42:54 | 'text/plain' | contextFunctionInterfaces | drop(e)\ngetDropData(e)\ninstall(el)\nondrop(e) |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:42:43:42:54 | 'text/plain' | contextSurroundingFunctionParameters | ()\n(e) |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:42:43:42:54 | 'text/plain' | enclosingFunctionBody | div document createElement div div ondrop e DragEvent dataTransfer e dataTransfer text dataTransfer getData text/plain html dataTransfer getData text/html text html e preventDefault div document createElement div html div innerHTML html div textContent text document body append div |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:42:43:42:54 | 'text/plain' | enclosingFunctionName |  |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:42:43:42:54 | 'text/plain' | fileImports |  |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:42:43:42:54 | 'text/plain' | receiverName | dataTransfer |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:43:22:43:54 | dataTra ... /html') | contextFunctionInterfaces | drop(e)\ngetDropData(e)\ninstall(el)\nondrop(e) |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:43:22:43:54 | dataTra ... /html') | contextSurroundingFunctionParameters | ()\n(e) |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:43:22:43:54 | dataTra ... /html') | enclosingFunctionBody | div document createElement div div ondrop e DragEvent dataTransfer e dataTransfer text dataTransfer getData text/plain html dataTransfer getData text/html text html e preventDefault div document createElement div html div innerHTML html div textContent text document body append div |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:43:22:43:54 | dataTra ... /html') | enclosingFunctionName |  |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:43:22:43:54 | dataTra ... /html') | fileImports |  |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:43:43:43:53 | 'text/html' | CalleeFlexibleAccessPath | dataTransfer.getData |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:43:43:43:53 | 'text/html' | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:43:43:43:53 | 'text/html' | contextFunctionInterfaces | drop(e)\ngetDropData(e)\ninstall(el)\nondrop(e) |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:43:43:43:53 | 'text/html' | contextSurroundingFunctionParameters | ()\n(e) |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:43:43:43:53 | 'text/html' | enclosingFunctionBody | div document createElement div div ondrop e DragEvent dataTransfer e dataTransfer text dataTransfer getData text/plain html dataTransfer getData text/html text html e preventDefault div document createElement div html div innerHTML html div textContent text document body append div |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:43:43:43:53 | 'text/html' | enclosingFunctionName |  |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:43:43:43:53 | 'text/html' | fileImports |  |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:43:43:43:53 | 'text/html' | receiverName | dataTransfer |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:48:44:48:48 | 'div' | CalleeFlexibleAccessPath | document.createElement |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:48:44:48:48 | 'div' | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:48:44:48:48 | 'div' | contextFunctionInterfaces | drop(e)\ngetDropData(e)\ninstall(el)\nondrop(e) |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:48:44:48:48 | 'div' | contextSurroundingFunctionParameters | ()\n(e) |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:48:44:48:48 | 'div' | enclosingFunctionBody | div document createElement div div ondrop e DragEvent dataTransfer e dataTransfer text dataTransfer getData text/plain html dataTransfer getData text/html text html e preventDefault div document createElement div html div innerHTML html div textContent text document body append div |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:48:44:48:48 | 'div' | enclosingFunctionName |  |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:48:44:48:48 | 'div' | fileImports |  |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:48:44:48:48 | 'div' | receiverName | document |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:50:29:50:32 | html | assignedToPropName | innerHTML |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:50:29:50:32 | html | contextFunctionInterfaces | drop(e)\ngetDropData(e)\ninstall(el)\nondrop(e) |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:50:29:50:32 | html | contextSurroundingFunctionParameters | ()\n(e) |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:50:29:50:32 | html | enclosingFunctionBody | div document createElement div div ondrop e DragEvent dataTransfer e dataTransfer text dataTransfer getData text/plain html dataTransfer getData text/html text html e preventDefault div document createElement div html div innerHTML html div textContent text document body append div |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:50:29:50:32 | html | enclosingFunctionName |  |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:50:29:50:32 | html | fileImports |  |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:54:30:54:32 | div | CalleeFlexibleAccessPath | document.body.append |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:54:30:54:32 | div | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:54:30:54:32 | div | contextFunctionInterfaces | drop(e)\ngetDropData(e)\ninstall(el)\nondrop(e) |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:54:30:54:32 | div | contextSurroundingFunctionParameters | ()\n(e) |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:54:30:54:32 | div | enclosingFunctionBody | div document createElement div div ondrop e DragEvent dataTransfer e dataTransfer text dataTransfer getData text/plain html dataTransfer getData text/html text html e preventDefault div document createElement div html div innerHTML html div textContent text document body append div |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:54:30:54:32 | div | enclosingFunctionName |  |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:54:30:54:32 | div | fileImports |  |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:66:22:66:44 | e.dataT ... iles[i] | contextFunctionInterfaces | drop(e)\ngetDropData(e)\ninstall(el)\nondrop(e) |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:66:22:66:44 | e.dataT ... iles[i] | contextSurroundingFunctionParameters | (e) |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:66:22:66:44 | e.dataT ... iles[i] | enclosingFunctionBody | e DragEvent Promise Array File dropItems Set File e dataTransfer files length 0 i 0 i e dataTransfer files length i file e dataTransfer files i e dataTransfer types includes text/html droppedHtml e dataTransfer getData text/html container document createElement html container innerHTML droppedHtml imgs container getElementsByTagName img imgs length 1 src imgs 0 0 src dropItems add src e dataTransfer types includes text/plain plainText e dataTransfer getData text/plain /^https?:\\/\\//i test plainText dropItems add plainText imageItems Array from dropItems imageItems |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:66:22:66:44 | e.dataT ... iles[i] | enclosingFunctionName | getDropData |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:66:22:66:44 | e.dataT ... iles[i] | fileImports |  |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:70:39:70:49 | 'text/html' | CalleeFlexibleAccessPath | e.dataTransfer.types.includes |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:70:39:70:49 | 'text/html' | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:70:39:70:49 | 'text/html' | contextFunctionInterfaces | drop(e)\ngetDropData(e)\ninstall(el)\nondrop(e) |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:70:39:70:49 | 'text/html' | contextSurroundingFunctionParameters | (e) |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:70:39:70:49 | 'text/html' | enclosingFunctionBody | e DragEvent Promise Array File dropItems Set File e dataTransfer files length 0 i 0 i e dataTransfer files length i file e dataTransfer files i e dataTransfer types includes text/html droppedHtml e dataTransfer getData text/html container document createElement html container innerHTML droppedHtml imgs container getElementsByTagName img imgs length 1 src imgs 0 0 src dropItems add src e dataTransfer types includes text/plain plainText e dataTransfer getData text/plain /^https?:\\/\\//i test plainText dropItems add plainText imageItems Array from dropItems imageItems |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:70:39:70:49 | 'text/html' | enclosingFunctionName | getDropData |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:70:39:70:49 | 'text/html' | fileImports |  |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:71:50:71:60 | 'text/html' | CalleeFlexibleAccessPath | e.dataTransfer.getData |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:71:50:71:60 | 'text/html' | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:71:50:71:60 | 'text/html' | contextFunctionInterfaces | drop(e)\ngetDropData(e)\ninstall(el)\nondrop(e) |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:71:50:71:60 | 'text/html' | contextSurroundingFunctionParameters | (e) |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:71:50:71:60 | 'text/html' | enclosingFunctionBody | e DragEvent Promise Array File dropItems Set File e dataTransfer files length 0 i 0 i e dataTransfer files length i file e dataTransfer files i e dataTransfer types includes text/html droppedHtml e dataTransfer getData text/html container document createElement html container innerHTML droppedHtml imgs container getElementsByTagName img imgs length 1 src imgs 0 0 src dropItems add src e dataTransfer types includes text/plain plainText e dataTransfer getData text/plain /^https?:\\/\\//i test plainText dropItems add plainText imageItems Array from dropItems imageItems |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:71:50:71:60 | 'text/html' | enclosingFunctionName | getDropData |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:71:50:71:60 | 'text/html' | fileImports |  |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:72:48:72:53 | 'html' | CalleeFlexibleAccessPath | document.createElement |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:72:48:72:53 | 'html' | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:72:48:72:53 | 'html' | contextFunctionInterfaces | drop(e)\ngetDropData(e)\ninstall(el)\nondrop(e) |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:72:48:72:53 | 'html' | contextSurroundingFunctionParameters | (e) |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:72:48:72:53 | 'html' | enclosingFunctionBody | e DragEvent Promise Array File dropItems Set File e dataTransfer files length 0 i 0 i e dataTransfer files length i file e dataTransfer files i e dataTransfer types includes text/html droppedHtml e dataTransfer getData text/html container document createElement html container innerHTML droppedHtml imgs container getElementsByTagName img imgs length 1 src imgs 0 0 src dropItems add src e dataTransfer types includes text/plain plainText e dataTransfer getData text/plain /^https?:\\/\\//i test plainText dropItems add plainText imageItems Array from dropItems imageItems |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:72:48:72:53 | 'html' | enclosingFunctionName | getDropData |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:72:48:72:53 | 'html' | fileImports |  |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:72:48:72:53 | 'html' | receiverName | document |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:73:29:73:39 | droppedHtml | assignedToPropName | innerHTML |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:73:29:73:39 | droppedHtml | contextFunctionInterfaces | drop(e)\ngetDropData(e)\ninstall(el)\nondrop(e) |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:73:29:73:39 | droppedHtml | contextSurroundingFunctionParameters | (e) |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:73:29:73:39 | droppedHtml | enclosingFunctionBody | e DragEvent Promise Array File dropItems Set File e dataTransfer files length 0 i 0 i e dataTransfer files length i file e dataTransfer files i e dataTransfer types includes text/html droppedHtml e dataTransfer getData text/html container document createElement html container innerHTML droppedHtml imgs container getElementsByTagName img imgs length 1 src imgs 0 0 src dropItems add src e dataTransfer types includes text/plain plainText e dataTransfer getData text/plain /^https?:\\/\\//i test plainText dropItems add plainText imageItems Array from dropItems imageItems |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:73:29:73:39 | droppedHtml | enclosingFunctionName | getDropData |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:73:29:73:39 | droppedHtml | fileImports |  |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:74:51:74:55 | 'img' | CalleeFlexibleAccessPath | container.getElementsByTagName |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:74:51:74:55 | 'img' | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:74:51:74:55 | 'img' | contextFunctionInterfaces | drop(e)\ngetDropData(e)\ninstall(el)\nondrop(e) |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:74:51:74:55 | 'img' | contextSurroundingFunctionParameters | (e) |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:74:51:74:55 | 'img' | enclosingFunctionBody | e DragEvent Promise Array File dropItems Set File e dataTransfer files length 0 i 0 i e dataTransfer files length i file e dataTransfer files i e dataTransfer types includes text/html droppedHtml e dataTransfer getData text/html container document createElement html container innerHTML droppedHtml imgs container getElementsByTagName img imgs length 1 src imgs 0 0 src dropItems add src e dataTransfer types includes text/plain plainText e dataTransfer getData text/plain /^https?:\\/\\//i test plainText dropItems add plainText imageItems Array from dropItems imageItems |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:74:51:74:55 | 'img' | enclosingFunctionName | getDropData |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:74:51:74:55 | 'img' | fileImports |  |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:74:51:74:55 | 'img' | receiverName | container |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:77:23:77:25 | src | CalleeFlexibleAccessPath | dropItems.add |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:77:23:77:25 | src | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:77:23:77:25 | src | contextFunctionInterfaces | drop(e)\ngetDropData(e)\ninstall(el)\nondrop(e) |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:77:23:77:25 | src | contextSurroundingFunctionParameters | (e) |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:77:23:77:25 | src | enclosingFunctionBody | e DragEvent Promise Array File dropItems Set File e dataTransfer files length 0 i 0 i e dataTransfer files length i file e dataTransfer files i e dataTransfer types includes text/html droppedHtml e dataTransfer getData text/html container document createElement html container innerHTML droppedHtml imgs container getElementsByTagName img imgs length 1 src imgs 0 0 src dropItems add src e dataTransfer types includes text/plain plainText e dataTransfer getData text/plain /^https?:\\/\\//i test plainText dropItems add plainText imageItems Array from dropItems imageItems |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:77:23:77:25 | src | enclosingFunctionName | getDropData |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:77:23:77:25 | src | fileImports |  |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:77:23:77:25 | src | receiverName | dropItems |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:79:46:79:57 | 'text/plain' | CalleeFlexibleAccessPath | e.dataTransfer.types.includes |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:79:46:79:57 | 'text/plain' | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:79:46:79:57 | 'text/plain' | contextFunctionInterfaces | drop(e)\ngetDropData(e)\ninstall(el)\nondrop(e) |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:79:46:79:57 | 'text/plain' | contextSurroundingFunctionParameters | (e) |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:79:46:79:57 | 'text/plain' | enclosingFunctionBody | e DragEvent Promise Array File dropItems Set File e dataTransfer files length 0 i 0 i e dataTransfer files length i file e dataTransfer files i e dataTransfer types includes text/html droppedHtml e dataTransfer getData text/html container document createElement html container innerHTML droppedHtml imgs container getElementsByTagName img imgs length 1 src imgs 0 0 src dropItems add src e dataTransfer types includes text/plain plainText e dataTransfer getData text/plain /^https?:\\/\\//i test plainText dropItems add plainText imageItems Array from dropItems imageItems |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:79:46:79:57 | 'text/plain' | enclosingFunctionName | getDropData |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:79:46:79:57 | 'text/plain' | fileImports |  |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:80:48:80:59 | 'text/plain' | CalleeFlexibleAccessPath | e.dataTransfer.getData |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:80:48:80:59 | 'text/plain' | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:80:48:80:59 | 'text/plain' | contextFunctionInterfaces | drop(e)\ngetDropData(e)\ninstall(el)\nondrop(e) |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:80:48:80:59 | 'text/plain' | contextSurroundingFunctionParameters | (e) |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:80:48:80:59 | 'text/plain' | enclosingFunctionBody | e DragEvent Promise Array File dropItems Set File e dataTransfer files length 0 i 0 i e dataTransfer files length i file e dataTransfer files i e dataTransfer types includes text/html droppedHtml e dataTransfer getData text/html container document createElement html container innerHTML droppedHtml imgs container getElementsByTagName img imgs length 1 src imgs 0 0 src dropItems add src e dataTransfer types includes text/plain plainText e dataTransfer getData text/plain /^https?:\\/\\//i test plainText dropItems add plainText imageItems Array from dropItems imageItems |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:80:48:80:59 | 'text/plain' | enclosingFunctionName | getDropData |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:80:48:80:59 | 'text/plain' | fileImports |  |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:82:32:82:40 | plainText | CalleeFlexibleAccessPath | ?.test |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:82:32:82:40 | plainText | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:82:32:82:40 | plainText | contextFunctionInterfaces | drop(e)\ngetDropData(e)\ninstall(el)\nondrop(e) |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:82:32:82:40 | plainText | contextSurroundingFunctionParameters | (e) |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:82:32:82:40 | plainText | enclosingFunctionBody | e DragEvent Promise Array File dropItems Set File e dataTransfer files length 0 i 0 i e dataTransfer files length i file e dataTransfer files i e dataTransfer types includes text/html droppedHtml e dataTransfer getData text/html container document createElement html container innerHTML droppedHtml imgs container getElementsByTagName img imgs length 1 src imgs 0 0 src dropItems add src e dataTransfer types includes text/plain plainText e dataTransfer getData text/plain /^https?:\\/\\//i test plainText dropItems add plainText imageItems Array from dropItems imageItems |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:82:32:82:40 | plainText | enclosingFunctionName | getDropData |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:82:32:82:40 | plainText | fileImports |  |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:83:23:83:31 | plainText | CalleeFlexibleAccessPath | dropItems.add |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:83:23:83:31 | plainText | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:83:23:83:31 | plainText | contextFunctionInterfaces | drop(e)\ngetDropData(e)\ninstall(el)\nondrop(e) |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:83:23:83:31 | plainText | contextSurroundingFunctionParameters | (e) |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:83:23:83:31 | plainText | enclosingFunctionBody | e DragEvent Promise Array File dropItems Set File e dataTransfer files length 0 i 0 i e dataTransfer files length i file e dataTransfer files i e dataTransfer types includes text/html droppedHtml e dataTransfer getData text/html container document createElement html container innerHTML droppedHtml imgs container getElementsByTagName img imgs length 1 src imgs 0 0 src dropItems add src e dataTransfer types includes text/plain plainText e dataTransfer getData text/plain /^https?:\\/\\//i test plainText dropItems add plainText imageItems Array from dropItems imageItems |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:83:23:83:31 | plainText | enclosingFunctionName | getDropData |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:83:23:83:31 | plainText | fileImports |  |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:83:23:83:31 | plainText | receiverName | dropItems |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:87:35:87:43 | dropItems | CalleeFlexibleAccessPath | Array.from |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:87:35:87:43 | dropItems | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:87:35:87:43 | dropItems | contextFunctionInterfaces | drop(e)\ngetDropData(e)\ninstall(el)\nondrop(e) |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:87:35:87:43 | dropItems | contextSurroundingFunctionParameters | (e) |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:87:35:87:43 | dropItems | enclosingFunctionBody | e DragEvent Promise Array File dropItems Set File e dataTransfer files length 0 i 0 i e dataTransfer files length i file e dataTransfer files i e dataTransfer types includes text/html droppedHtml e dataTransfer getData text/html container document createElement html container innerHTML droppedHtml imgs container getElementsByTagName img imgs length 1 src imgs 0 0 src dropItems add src e dataTransfer types includes text/plain plainText e dataTransfer getData text/plain /^https?:\\/\\//i test plainText dropItems add plainText imageItems Array from dropItems imageItems |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:87:35:87:43 | dropItems | enclosingFunctionName | getDropData |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:87:35:87:43 | dropItems | fileImports |  |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:87:35:87:43 | dropItems | receiverName | Array |
 | autogenerated/Xss/DomBasedXss/encodeuri.js:3:5:3:15 | '<a href="' | contextFunctionInterfaces | test() |
 | autogenerated/Xss/DomBasedXss/encodeuri.js:3:5:3:15 | '<a href="' | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/encodeuri.js:3:5:3:15 | '<a href="' | enclosingFunctionBody | loc window location href $ <a href=" encodeURIComponent loc ">click</a> |
@@ -10319,33 +13778,33 @@ tokenFeatures
 | autogenerated/Xss/DomBasedXss/jquery.js:4:5:4:11 | tainted | InputArgumentIndex | 0 |
 | autogenerated/Xss/DomBasedXss/jquery.js:4:5:4:11 | tainted | contextFunctionInterfaces | test() |
 | autogenerated/Xss/DomBasedXss/jquery.js:4:5:4:11 | tainted | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/jquery.js:4:5:4:11 | tainted | enclosingFunctionBody | tainted document location search $ tainted $ body tainted $ . tainted $ <div id=" tainted "> $ body html XSS:  tainted $ window location hash $ <b> location toString </b> elm document getElementById x elm innerHTML decodeURIComponent window location hash elm innerHTML decodeURIComponent window location search elm innerHTML decodeURIComponent window location toString |
+| autogenerated/Xss/DomBasedXss/jquery.js:4:5:4:11 | tainted | enclosingFunctionBody | tainted document location search $ tainted $ body tainted $ . tainted $ <div id=" tainted "> $ body html XSS:  tainted $ window location hash $ <b> location toString </b> elm document getElementById x elm innerHTML decodeURIComponent window location hash elm innerHTML decodeURIComponent window location search elm innerHTML decodeURIComponent window location toString hash window location hash $ hash $ hash substring 1 $ hash substring 1 10 $ hash substr 1 $ hash slice 1 $ hash substring 0 10 $ hash replace #  $ window location search replace ?  $ hash replace !  $ hash replace blah  $ hash blah $ blah hash $ <b> hash </b> |
 | autogenerated/Xss/DomBasedXss/jquery.js:4:5:4:11 | tainted | enclosingFunctionName | test |
 | autogenerated/Xss/DomBasedXss/jquery.js:4:5:4:11 | tainted | fileImports |  |
 | autogenerated/Xss/DomBasedXss/jquery.js:5:5:5:10 | "body" | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/DomBasedXss/jquery.js:5:5:5:10 | "body" | InputArgumentIndex | 0 |
 | autogenerated/Xss/DomBasedXss/jquery.js:5:5:5:10 | "body" | contextFunctionInterfaces | test() |
 | autogenerated/Xss/DomBasedXss/jquery.js:5:5:5:10 | "body" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/jquery.js:5:5:5:10 | "body" | enclosingFunctionBody | tainted document location search $ tainted $ body tainted $ . tainted $ <div id=" tainted "> $ body html XSS:  tainted $ window location hash $ <b> location toString </b> elm document getElementById x elm innerHTML decodeURIComponent window location hash elm innerHTML decodeURIComponent window location search elm innerHTML decodeURIComponent window location toString |
+| autogenerated/Xss/DomBasedXss/jquery.js:5:5:5:10 | "body" | enclosingFunctionBody | tainted document location search $ tainted $ body tainted $ . tainted $ <div id=" tainted "> $ body html XSS:  tainted $ window location hash $ <b> location toString </b> elm document getElementById x elm innerHTML decodeURIComponent window location hash elm innerHTML decodeURIComponent window location search elm innerHTML decodeURIComponent window location toString hash window location hash $ hash $ hash substring 1 $ hash substring 1 10 $ hash substr 1 $ hash slice 1 $ hash substring 0 10 $ hash replace #  $ window location search replace ?  $ hash replace !  $ hash replace blah  $ hash blah $ blah hash $ <b> hash </b> |
 | autogenerated/Xss/DomBasedXss/jquery.js:5:5:5:10 | "body" | enclosingFunctionName | test |
 | autogenerated/Xss/DomBasedXss/jquery.js:5:5:5:10 | "body" | fileImports |  |
 | autogenerated/Xss/DomBasedXss/jquery.js:5:13:5:19 | tainted | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/DomBasedXss/jquery.js:5:13:5:19 | tainted | InputArgumentIndex | 1 |
 | autogenerated/Xss/DomBasedXss/jquery.js:5:13:5:19 | tainted | contextFunctionInterfaces | test() |
 | autogenerated/Xss/DomBasedXss/jquery.js:5:13:5:19 | tainted | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/jquery.js:5:13:5:19 | tainted | enclosingFunctionBody | tainted document location search $ tainted $ body tainted $ . tainted $ <div id=" tainted "> $ body html XSS:  tainted $ window location hash $ <b> location toString </b> elm document getElementById x elm innerHTML decodeURIComponent window location hash elm innerHTML decodeURIComponent window location search elm innerHTML decodeURIComponent window location toString |
+| autogenerated/Xss/DomBasedXss/jquery.js:5:13:5:19 | tainted | enclosingFunctionBody | tainted document location search $ tainted $ body tainted $ . tainted $ <div id=" tainted "> $ body html XSS:  tainted $ window location hash $ <b> location toString </b> elm document getElementById x elm innerHTML decodeURIComponent window location hash elm innerHTML decodeURIComponent window location search elm innerHTML decodeURIComponent window location toString hash window location hash $ hash $ hash substring 1 $ hash substring 1 10 $ hash substr 1 $ hash slice 1 $ hash substring 0 10 $ hash replace #  $ window location search replace ?  $ hash replace !  $ hash replace blah  $ hash blah $ blah hash $ <b> hash </b> |
 | autogenerated/Xss/DomBasedXss/jquery.js:5:13:5:19 | tainted | enclosingFunctionName | test |
 | autogenerated/Xss/DomBasedXss/jquery.js:5:13:5:19 | tainted | fileImports |  |
 | autogenerated/Xss/DomBasedXss/jquery.js:6:5:6:17 | "." + tainted | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/DomBasedXss/jquery.js:6:5:6:17 | "." + tainted | InputArgumentIndex | 0 |
 | autogenerated/Xss/DomBasedXss/jquery.js:6:5:6:17 | "." + tainted | contextFunctionInterfaces | test() |
 | autogenerated/Xss/DomBasedXss/jquery.js:6:5:6:17 | "." + tainted | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/jquery.js:6:5:6:17 | "." + tainted | enclosingFunctionBody | tainted document location search $ tainted $ body tainted $ . tainted $ <div id=" tainted "> $ body html XSS:  tainted $ window location hash $ <b> location toString </b> elm document getElementById x elm innerHTML decodeURIComponent window location hash elm innerHTML decodeURIComponent window location search elm innerHTML decodeURIComponent window location toString |
+| autogenerated/Xss/DomBasedXss/jquery.js:6:5:6:17 | "." + tainted | enclosingFunctionBody | tainted document location search $ tainted $ body tainted $ . tainted $ <div id=" tainted "> $ body html XSS:  tainted $ window location hash $ <b> location toString </b> elm document getElementById x elm innerHTML decodeURIComponent window location hash elm innerHTML decodeURIComponent window location search elm innerHTML decodeURIComponent window location toString hash window location hash $ hash $ hash substring 1 $ hash substring 1 10 $ hash substr 1 $ hash slice 1 $ hash substring 0 10 $ hash replace #  $ window location search replace ?  $ hash replace !  $ hash replace blah  $ hash blah $ blah hash $ <b> hash </b> |
 | autogenerated/Xss/DomBasedXss/jquery.js:6:5:6:17 | "." + tainted | enclosingFunctionName | test |
 | autogenerated/Xss/DomBasedXss/jquery.js:6:5:6:17 | "." + tainted | fileImports |  |
 | autogenerated/Xss/DomBasedXss/jquery.js:7:5:7:16 | "<div id=\\"" | contextFunctionInterfaces | test() |
 | autogenerated/Xss/DomBasedXss/jquery.js:7:5:7:16 | "<div id=\\"" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/jquery.js:7:5:7:16 | "<div id=\\"" | enclosingFunctionBody | tainted document location search $ tainted $ body tainted $ . tainted $ <div id=" tainted "> $ body html XSS:  tainted $ window location hash $ <b> location toString </b> elm document getElementById x elm innerHTML decodeURIComponent window location hash elm innerHTML decodeURIComponent window location search elm innerHTML decodeURIComponent window location toString |
+| autogenerated/Xss/DomBasedXss/jquery.js:7:5:7:16 | "<div id=\\"" | enclosingFunctionBody | tainted document location search $ tainted $ body tainted $ . tainted $ <div id=" tainted "> $ body html XSS:  tainted $ window location hash $ <b> location toString </b> elm document getElementById x elm innerHTML decodeURIComponent window location hash elm innerHTML decodeURIComponent window location search elm innerHTML decodeURIComponent window location toString hash window location hash $ hash $ hash substring 1 $ hash substring 1 10 $ hash substr 1 $ hash slice 1 $ hash substring 0 10 $ hash replace #  $ window location search replace ?  $ hash replace !  $ hash replace blah  $ hash blah $ blah hash $ <b> hash </b> |
 | autogenerated/Xss/DomBasedXss/jquery.js:7:5:7:16 | "<div id=\\"" | enclosingFunctionName | test |
 | autogenerated/Xss/DomBasedXss/jquery.js:7:5:7:16 | "<div id=\\"" | fileImports |  |
 | autogenerated/Xss/DomBasedXss/jquery.js:7:5:7:16 | "<div id=\\"" | stringConcatenatedWith |  -endpoint- tainted + '">' |
@@ -10353,18 +13812,18 @@ tokenFeatures
 | autogenerated/Xss/DomBasedXss/jquery.js:7:5:7:34 | "<div i ... + "\\">" | InputArgumentIndex | 0 |
 | autogenerated/Xss/DomBasedXss/jquery.js:7:5:7:34 | "<div i ... + "\\">" | contextFunctionInterfaces | test() |
 | autogenerated/Xss/DomBasedXss/jquery.js:7:5:7:34 | "<div i ... + "\\">" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/jquery.js:7:5:7:34 | "<div i ... + "\\">" | enclosingFunctionBody | tainted document location search $ tainted $ body tainted $ . tainted $ <div id=" tainted "> $ body html XSS:  tainted $ window location hash $ <b> location toString </b> elm document getElementById x elm innerHTML decodeURIComponent window location hash elm innerHTML decodeURIComponent window location search elm innerHTML decodeURIComponent window location toString |
+| autogenerated/Xss/DomBasedXss/jquery.js:7:5:7:34 | "<div i ... + "\\">" | enclosingFunctionBody | tainted document location search $ tainted $ body tainted $ . tainted $ <div id=" tainted "> $ body html XSS:  tainted $ window location hash $ <b> location toString </b> elm document getElementById x elm innerHTML decodeURIComponent window location hash elm innerHTML decodeURIComponent window location search elm innerHTML decodeURIComponent window location toString hash window location hash $ hash $ hash substring 1 $ hash substring 1 10 $ hash substr 1 $ hash slice 1 $ hash substring 0 10 $ hash replace #  $ window location search replace ?  $ hash replace !  $ hash replace blah  $ hash blah $ blah hash $ <b> hash </b> |
 | autogenerated/Xss/DomBasedXss/jquery.js:7:5:7:34 | "<div i ... + "\\">" | enclosingFunctionName | test |
 | autogenerated/Xss/DomBasedXss/jquery.js:7:5:7:34 | "<div i ... + "\\">" | fileImports |  |
 | autogenerated/Xss/DomBasedXss/jquery.js:7:20:7:26 | tainted | contextFunctionInterfaces | test() |
 | autogenerated/Xss/DomBasedXss/jquery.js:7:20:7:26 | tainted | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/jquery.js:7:20:7:26 | tainted | enclosingFunctionBody | tainted document location search $ tainted $ body tainted $ . tainted $ <div id=" tainted "> $ body html XSS:  tainted $ window location hash $ <b> location toString </b> elm document getElementById x elm innerHTML decodeURIComponent window location hash elm innerHTML decodeURIComponent window location search elm innerHTML decodeURIComponent window location toString |
+| autogenerated/Xss/DomBasedXss/jquery.js:7:20:7:26 | tainted | enclosingFunctionBody | tainted document location search $ tainted $ body tainted $ . tainted $ <div id=" tainted "> $ body html XSS:  tainted $ window location hash $ <b> location toString </b> elm document getElementById x elm innerHTML decodeURIComponent window location hash elm innerHTML decodeURIComponent window location search elm innerHTML decodeURIComponent window location toString hash window location hash $ hash $ hash substring 1 $ hash substring 1 10 $ hash substr 1 $ hash slice 1 $ hash substring 0 10 $ hash replace #  $ window location search replace ?  $ hash replace !  $ hash replace blah  $ hash blah $ blah hash $ <b> hash </b> |
 | autogenerated/Xss/DomBasedXss/jquery.js:7:20:7:26 | tainted | enclosingFunctionName | test |
 | autogenerated/Xss/DomBasedXss/jquery.js:7:20:7:26 | tainted | fileImports |  |
 | autogenerated/Xss/DomBasedXss/jquery.js:7:20:7:26 | tainted | stringConcatenatedWith | '<div id="' -endpoint- '">' |
 | autogenerated/Xss/DomBasedXss/jquery.js:7:30:7:34 | "\\">" | contextFunctionInterfaces | test() |
 | autogenerated/Xss/DomBasedXss/jquery.js:7:30:7:34 | "\\">" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/jquery.js:7:30:7:34 | "\\">" | enclosingFunctionBody | tainted document location search $ tainted $ body tainted $ . tainted $ <div id=" tainted "> $ body html XSS:  tainted $ window location hash $ <b> location toString </b> elm document getElementById x elm innerHTML decodeURIComponent window location hash elm innerHTML decodeURIComponent window location search elm innerHTML decodeURIComponent window location toString |
+| autogenerated/Xss/DomBasedXss/jquery.js:7:30:7:34 | "\\">" | enclosingFunctionBody | tainted document location search $ tainted $ body tainted $ . tainted $ <div id=" tainted "> $ body html XSS:  tainted $ window location hash $ <b> location toString </b> elm document getElementById x elm innerHTML decodeURIComponent window location hash elm innerHTML decodeURIComponent window location search elm innerHTML decodeURIComponent window location toString hash window location hash $ hash $ hash substring 1 $ hash substring 1 10 $ hash substr 1 $ hash slice 1 $ hash substring 0 10 $ hash replace #  $ window location search replace ?  $ hash replace !  $ hash replace blah  $ hash blah $ blah hash $ <b> hash </b> |
 | autogenerated/Xss/DomBasedXss/jquery.js:7:30:7:34 | "\\">" | enclosingFunctionName | test |
 | autogenerated/Xss/DomBasedXss/jquery.js:7:30:7:34 | "\\">" | fileImports |  |
 | autogenerated/Xss/DomBasedXss/jquery.js:7:30:7:34 | "\\">" | stringConcatenatedWith | '<div id="' + tainted -endpoint-  |
@@ -10372,26 +13831,26 @@ tokenFeatures
 | autogenerated/Xss/DomBasedXss/jquery.js:8:5:8:10 | "body" | InputArgumentIndex | 0 |
 | autogenerated/Xss/DomBasedXss/jquery.js:8:5:8:10 | "body" | contextFunctionInterfaces | test() |
 | autogenerated/Xss/DomBasedXss/jquery.js:8:5:8:10 | "body" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/jquery.js:8:5:8:10 | "body" | enclosingFunctionBody | tainted document location search $ tainted $ body tainted $ . tainted $ <div id=" tainted "> $ body html XSS:  tainted $ window location hash $ <b> location toString </b> elm document getElementById x elm innerHTML decodeURIComponent window location hash elm innerHTML decodeURIComponent window location search elm innerHTML decodeURIComponent window location toString |
+| autogenerated/Xss/DomBasedXss/jquery.js:8:5:8:10 | "body" | enclosingFunctionBody | tainted document location search $ tainted $ body tainted $ . tainted $ <div id=" tainted "> $ body html XSS:  tainted $ window location hash $ <b> location toString </b> elm document getElementById x elm innerHTML decodeURIComponent window location hash elm innerHTML decodeURIComponent window location search elm innerHTML decodeURIComponent window location toString hash window location hash $ hash $ hash substring 1 $ hash substring 1 10 $ hash substr 1 $ hash slice 1 $ hash substring 0 10 $ hash replace #  $ window location search replace ?  $ hash replace !  $ hash replace blah  $ hash blah $ blah hash $ <b> hash </b> |
 | autogenerated/Xss/DomBasedXss/jquery.js:8:5:8:10 | "body" | enclosingFunctionName | test |
 | autogenerated/Xss/DomBasedXss/jquery.js:8:5:8:10 | "body" | fileImports |  |
 | autogenerated/Xss/DomBasedXss/jquery.js:8:18:8:34 | "XSS: " + tainted | CalleeFlexibleAccessPath | $().html |
 | autogenerated/Xss/DomBasedXss/jquery.js:8:18:8:34 | "XSS: " + tainted | InputArgumentIndex | 0 |
 | autogenerated/Xss/DomBasedXss/jquery.js:8:18:8:34 | "XSS: " + tainted | contextFunctionInterfaces | test() |
 | autogenerated/Xss/DomBasedXss/jquery.js:8:18:8:34 | "XSS: " + tainted | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/jquery.js:8:18:8:34 | "XSS: " + tainted | enclosingFunctionBody | tainted document location search $ tainted $ body tainted $ . tainted $ <div id=" tainted "> $ body html XSS:  tainted $ window location hash $ <b> location toString </b> elm document getElementById x elm innerHTML decodeURIComponent window location hash elm innerHTML decodeURIComponent window location search elm innerHTML decodeURIComponent window location toString |
+| autogenerated/Xss/DomBasedXss/jquery.js:8:18:8:34 | "XSS: " + tainted | enclosingFunctionBody | tainted document location search $ tainted $ body tainted $ . tainted $ <div id=" tainted "> $ body html XSS:  tainted $ window location hash $ <b> location toString </b> elm document getElementById x elm innerHTML decodeURIComponent window location hash elm innerHTML decodeURIComponent window location search elm innerHTML decodeURIComponent window location toString hash window location hash $ hash $ hash substring 1 $ hash substring 1 10 $ hash substr 1 $ hash slice 1 $ hash substring 0 10 $ hash replace #  $ window location search replace ?  $ hash replace !  $ hash replace blah  $ hash blah $ blah hash $ <b> hash </b> |
 | autogenerated/Xss/DomBasedXss/jquery.js:8:18:8:34 | "XSS: " + tainted | enclosingFunctionName | test |
 | autogenerated/Xss/DomBasedXss/jquery.js:8:18:8:34 | "XSS: " + tainted | fileImports |  |
 | autogenerated/Xss/DomBasedXss/jquery.js:9:5:9:24 | window.location.hash | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/DomBasedXss/jquery.js:9:5:9:24 | window.location.hash | InputArgumentIndex | 0 |
 | autogenerated/Xss/DomBasedXss/jquery.js:9:5:9:24 | window.location.hash | contextFunctionInterfaces | test() |
 | autogenerated/Xss/DomBasedXss/jquery.js:9:5:9:24 | window.location.hash | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/jquery.js:9:5:9:24 | window.location.hash | enclosingFunctionBody | tainted document location search $ tainted $ body tainted $ . tainted $ <div id=" tainted "> $ body html XSS:  tainted $ window location hash $ <b> location toString </b> elm document getElementById x elm innerHTML decodeURIComponent window location hash elm innerHTML decodeURIComponent window location search elm innerHTML decodeURIComponent window location toString |
+| autogenerated/Xss/DomBasedXss/jquery.js:9:5:9:24 | window.location.hash | enclosingFunctionBody | tainted document location search $ tainted $ body tainted $ . tainted $ <div id=" tainted "> $ body html XSS:  tainted $ window location hash $ <b> location toString </b> elm document getElementById x elm innerHTML decodeURIComponent window location hash elm innerHTML decodeURIComponent window location search elm innerHTML decodeURIComponent window location toString hash window location hash $ hash $ hash substring 1 $ hash substring 1 10 $ hash substr 1 $ hash slice 1 $ hash substring 0 10 $ hash replace #  $ window location search replace ?  $ hash replace !  $ hash replace blah  $ hash blah $ blah hash $ <b> hash </b> |
 | autogenerated/Xss/DomBasedXss/jquery.js:9:5:9:24 | window.location.hash | enclosingFunctionName | test |
 | autogenerated/Xss/DomBasedXss/jquery.js:9:5:9:24 | window.location.hash | fileImports |  |
 | autogenerated/Xss/DomBasedXss/jquery.js:10:5:10:9 | "<b>" | contextFunctionInterfaces | test() |
 | autogenerated/Xss/DomBasedXss/jquery.js:10:5:10:9 | "<b>" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/jquery.js:10:5:10:9 | "<b>" | enclosingFunctionBody | tainted document location search $ tainted $ body tainted $ . tainted $ <div id=" tainted "> $ body html XSS:  tainted $ window location hash $ <b> location toString </b> elm document getElementById x elm innerHTML decodeURIComponent window location hash elm innerHTML decodeURIComponent window location search elm innerHTML decodeURIComponent window location toString |
+| autogenerated/Xss/DomBasedXss/jquery.js:10:5:10:9 | "<b>" | enclosingFunctionBody | tainted document location search $ tainted $ body tainted $ . tainted $ <div id=" tainted "> $ body html XSS:  tainted $ window location hash $ <b> location toString </b> elm document getElementById x elm innerHTML decodeURIComponent window location hash elm innerHTML decodeURIComponent window location search elm innerHTML decodeURIComponent window location toString hash window location hash $ hash $ hash substring 1 $ hash substring 1 10 $ hash substr 1 $ hash slice 1 $ hash substring 0 10 $ hash replace #  $ window location search replace ?  $ hash replace !  $ hash replace blah  $ hash blah $ blah hash $ <b> hash </b> |
 | autogenerated/Xss/DomBasedXss/jquery.js:10:5:10:9 | "<b>" | enclosingFunctionName | test |
 | autogenerated/Xss/DomBasedXss/jquery.js:10:5:10:9 | "<b>" | fileImports |  |
 | autogenerated/Xss/DomBasedXss/jquery.js:10:5:10:9 | "<b>" | stringConcatenatedWith |  -endpoint- location.toString() + '</b>' |
@@ -10399,18 +13858,18 @@ tokenFeatures
 | autogenerated/Xss/DomBasedXss/jquery.js:10:5:10:40 | "<b>" + ...  "</b>" | InputArgumentIndex | 0 |
 | autogenerated/Xss/DomBasedXss/jquery.js:10:5:10:40 | "<b>" + ...  "</b>" | contextFunctionInterfaces | test() |
 | autogenerated/Xss/DomBasedXss/jquery.js:10:5:10:40 | "<b>" + ...  "</b>" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/jquery.js:10:5:10:40 | "<b>" + ...  "</b>" | enclosingFunctionBody | tainted document location search $ tainted $ body tainted $ . tainted $ <div id=" tainted "> $ body html XSS:  tainted $ window location hash $ <b> location toString </b> elm document getElementById x elm innerHTML decodeURIComponent window location hash elm innerHTML decodeURIComponent window location search elm innerHTML decodeURIComponent window location toString |
+| autogenerated/Xss/DomBasedXss/jquery.js:10:5:10:40 | "<b>" + ...  "</b>" | enclosingFunctionBody | tainted document location search $ tainted $ body tainted $ . tainted $ <div id=" tainted "> $ body html XSS:  tainted $ window location hash $ <b> location toString </b> elm document getElementById x elm innerHTML decodeURIComponent window location hash elm innerHTML decodeURIComponent window location search elm innerHTML decodeURIComponent window location toString hash window location hash $ hash $ hash substring 1 $ hash substring 1 10 $ hash substr 1 $ hash slice 1 $ hash substring 0 10 $ hash replace #  $ window location search replace ?  $ hash replace !  $ hash replace blah  $ hash blah $ blah hash $ <b> hash </b> |
 | autogenerated/Xss/DomBasedXss/jquery.js:10:5:10:40 | "<b>" + ...  "</b>" | enclosingFunctionName | test |
 | autogenerated/Xss/DomBasedXss/jquery.js:10:5:10:40 | "<b>" + ...  "</b>" | fileImports |  |
 | autogenerated/Xss/DomBasedXss/jquery.js:10:13:10:31 | location.toString() | contextFunctionInterfaces | test() |
 | autogenerated/Xss/DomBasedXss/jquery.js:10:13:10:31 | location.toString() | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/jquery.js:10:13:10:31 | location.toString() | enclosingFunctionBody | tainted document location search $ tainted $ body tainted $ . tainted $ <div id=" tainted "> $ body html XSS:  tainted $ window location hash $ <b> location toString </b> elm document getElementById x elm innerHTML decodeURIComponent window location hash elm innerHTML decodeURIComponent window location search elm innerHTML decodeURIComponent window location toString |
+| autogenerated/Xss/DomBasedXss/jquery.js:10:13:10:31 | location.toString() | enclosingFunctionBody | tainted document location search $ tainted $ body tainted $ . tainted $ <div id=" tainted "> $ body html XSS:  tainted $ window location hash $ <b> location toString </b> elm document getElementById x elm innerHTML decodeURIComponent window location hash elm innerHTML decodeURIComponent window location search elm innerHTML decodeURIComponent window location toString hash window location hash $ hash $ hash substring 1 $ hash substring 1 10 $ hash substr 1 $ hash slice 1 $ hash substring 0 10 $ hash replace #  $ window location search replace ?  $ hash replace !  $ hash replace blah  $ hash blah $ blah hash $ <b> hash </b> |
 | autogenerated/Xss/DomBasedXss/jquery.js:10:13:10:31 | location.toString() | enclosingFunctionName | test |
 | autogenerated/Xss/DomBasedXss/jquery.js:10:13:10:31 | location.toString() | fileImports |  |
 | autogenerated/Xss/DomBasedXss/jquery.js:10:13:10:31 | location.toString() | stringConcatenatedWith | '<b>' -endpoint- '</b>' |
 | autogenerated/Xss/DomBasedXss/jquery.js:10:35:10:40 | "</b>" | contextFunctionInterfaces | test() |
 | autogenerated/Xss/DomBasedXss/jquery.js:10:35:10:40 | "</b>" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/jquery.js:10:35:10:40 | "</b>" | enclosingFunctionBody | tainted document location search $ tainted $ body tainted $ . tainted $ <div id=" tainted "> $ body html XSS:  tainted $ window location hash $ <b> location toString </b> elm document getElementById x elm innerHTML decodeURIComponent window location hash elm innerHTML decodeURIComponent window location search elm innerHTML decodeURIComponent window location toString |
+| autogenerated/Xss/DomBasedXss/jquery.js:10:35:10:40 | "</b>" | enclosingFunctionBody | tainted document location search $ tainted $ body tainted $ . tainted $ <div id=" tainted "> $ body html XSS:  tainted $ window location hash $ <b> location toString </b> elm document getElementById x elm innerHTML decodeURIComponent window location hash elm innerHTML decodeURIComponent window location search elm innerHTML decodeURIComponent window location toString hash window location hash $ hash $ hash substring 1 $ hash substring 1 10 $ hash substr 1 $ hash slice 1 $ hash substring 0 10 $ hash replace #  $ window location search replace ?  $ hash replace !  $ hash replace blah  $ hash blah $ blah hash $ <b> hash </b> |
 | autogenerated/Xss/DomBasedXss/jquery.js:10:35:10:40 | "</b>" | enclosingFunctionName | test |
 | autogenerated/Xss/DomBasedXss/jquery.js:10:35:10:40 | "</b>" | fileImports |  |
 | autogenerated/Xss/DomBasedXss/jquery.js:10:35:10:40 | "</b>" | stringConcatenatedWith | '<b>' + location.toString() -endpoint-  |
@@ -10418,49 +13877,276 @@ tokenFeatures
 | autogenerated/Xss/DomBasedXss/jquery.js:13:37:13:39 | 'x' | InputArgumentIndex | 0 |
 | autogenerated/Xss/DomBasedXss/jquery.js:13:37:13:39 | 'x' | contextFunctionInterfaces | test() |
 | autogenerated/Xss/DomBasedXss/jquery.js:13:37:13:39 | 'x' | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/jquery.js:13:37:13:39 | 'x' | enclosingFunctionBody | tainted document location search $ tainted $ body tainted $ . tainted $ <div id=" tainted "> $ body html XSS:  tainted $ window location hash $ <b> location toString </b> elm document getElementById x elm innerHTML decodeURIComponent window location hash elm innerHTML decodeURIComponent window location search elm innerHTML decodeURIComponent window location toString |
+| autogenerated/Xss/DomBasedXss/jquery.js:13:37:13:39 | 'x' | enclosingFunctionBody | tainted document location search $ tainted $ body tainted $ . tainted $ <div id=" tainted "> $ body html XSS:  tainted $ window location hash $ <b> location toString </b> elm document getElementById x elm innerHTML decodeURIComponent window location hash elm innerHTML decodeURIComponent window location search elm innerHTML decodeURIComponent window location toString hash window location hash $ hash $ hash substring 1 $ hash substring 1 10 $ hash substr 1 $ hash slice 1 $ hash substring 0 10 $ hash replace #  $ window location search replace ?  $ hash replace !  $ hash replace blah  $ hash blah $ blah hash $ <b> hash </b> |
 | autogenerated/Xss/DomBasedXss/jquery.js:13:37:13:39 | 'x' | enclosingFunctionName | test |
 | autogenerated/Xss/DomBasedXss/jquery.js:13:37:13:39 | 'x' | fileImports |  |
 | autogenerated/Xss/DomBasedXss/jquery.js:13:37:13:39 | 'x' | receiverName | document |
 | autogenerated/Xss/DomBasedXss/jquery.js:14:19:14:58 | decodeU ... n.hash) | assignedToPropName | innerHTML |
 | autogenerated/Xss/DomBasedXss/jquery.js:14:19:14:58 | decodeU ... n.hash) | contextFunctionInterfaces | test() |
 | autogenerated/Xss/DomBasedXss/jquery.js:14:19:14:58 | decodeU ... n.hash) | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/jquery.js:14:19:14:58 | decodeU ... n.hash) | enclosingFunctionBody | tainted document location search $ tainted $ body tainted $ . tainted $ <div id=" tainted "> $ body html XSS:  tainted $ window location hash $ <b> location toString </b> elm document getElementById x elm innerHTML decodeURIComponent window location hash elm innerHTML decodeURIComponent window location search elm innerHTML decodeURIComponent window location toString |
+| autogenerated/Xss/DomBasedXss/jquery.js:14:19:14:58 | decodeU ... n.hash) | enclosingFunctionBody | tainted document location search $ tainted $ body tainted $ . tainted $ <div id=" tainted "> $ body html XSS:  tainted $ window location hash $ <b> location toString </b> elm document getElementById x elm innerHTML decodeURIComponent window location hash elm innerHTML decodeURIComponent window location search elm innerHTML decodeURIComponent window location toString hash window location hash $ hash $ hash substring 1 $ hash substring 1 10 $ hash substr 1 $ hash slice 1 $ hash substring 0 10 $ hash replace #  $ window location search replace ?  $ hash replace !  $ hash replace blah  $ hash blah $ blah hash $ <b> hash </b> |
 | autogenerated/Xss/DomBasedXss/jquery.js:14:19:14:58 | decodeU ... n.hash) | enclosingFunctionName | test |
 | autogenerated/Xss/DomBasedXss/jquery.js:14:19:14:58 | decodeU ... n.hash) | fileImports |  |
 | autogenerated/Xss/DomBasedXss/jquery.js:14:38:14:57 | window.location.hash | CalleeFlexibleAccessPath | decodeURIComponent |
 | autogenerated/Xss/DomBasedXss/jquery.js:14:38:14:57 | window.location.hash | InputArgumentIndex | 0 |
 | autogenerated/Xss/DomBasedXss/jquery.js:14:38:14:57 | window.location.hash | contextFunctionInterfaces | test() |
 | autogenerated/Xss/DomBasedXss/jquery.js:14:38:14:57 | window.location.hash | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/jquery.js:14:38:14:57 | window.location.hash | enclosingFunctionBody | tainted document location search $ tainted $ body tainted $ . tainted $ <div id=" tainted "> $ body html XSS:  tainted $ window location hash $ <b> location toString </b> elm document getElementById x elm innerHTML decodeURIComponent window location hash elm innerHTML decodeURIComponent window location search elm innerHTML decodeURIComponent window location toString |
+| autogenerated/Xss/DomBasedXss/jquery.js:14:38:14:57 | window.location.hash | enclosingFunctionBody | tainted document location search $ tainted $ body tainted $ . tainted $ <div id=" tainted "> $ body html XSS:  tainted $ window location hash $ <b> location toString </b> elm document getElementById x elm innerHTML decodeURIComponent window location hash elm innerHTML decodeURIComponent window location search elm innerHTML decodeURIComponent window location toString hash window location hash $ hash $ hash substring 1 $ hash substring 1 10 $ hash substr 1 $ hash slice 1 $ hash substring 0 10 $ hash replace #  $ window location search replace ?  $ hash replace !  $ hash replace blah  $ hash blah $ blah hash $ <b> hash </b> |
 | autogenerated/Xss/DomBasedXss/jquery.js:14:38:14:57 | window.location.hash | enclosingFunctionName | test |
 | autogenerated/Xss/DomBasedXss/jquery.js:14:38:14:57 | window.location.hash | fileImports |  |
 | autogenerated/Xss/DomBasedXss/jquery.js:15:19:15:60 | decodeU ... search) | assignedToPropName | innerHTML |
 | autogenerated/Xss/DomBasedXss/jquery.js:15:19:15:60 | decodeU ... search) | contextFunctionInterfaces | test() |
 | autogenerated/Xss/DomBasedXss/jquery.js:15:19:15:60 | decodeU ... search) | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/jquery.js:15:19:15:60 | decodeU ... search) | enclosingFunctionBody | tainted document location search $ tainted $ body tainted $ . tainted $ <div id=" tainted "> $ body html XSS:  tainted $ window location hash $ <b> location toString </b> elm document getElementById x elm innerHTML decodeURIComponent window location hash elm innerHTML decodeURIComponent window location search elm innerHTML decodeURIComponent window location toString |
+| autogenerated/Xss/DomBasedXss/jquery.js:15:19:15:60 | decodeU ... search) | enclosingFunctionBody | tainted document location search $ tainted $ body tainted $ . tainted $ <div id=" tainted "> $ body html XSS:  tainted $ window location hash $ <b> location toString </b> elm document getElementById x elm innerHTML decodeURIComponent window location hash elm innerHTML decodeURIComponent window location search elm innerHTML decodeURIComponent window location toString hash window location hash $ hash $ hash substring 1 $ hash substring 1 10 $ hash substr 1 $ hash slice 1 $ hash substring 0 10 $ hash replace #  $ window location search replace ?  $ hash replace !  $ hash replace blah  $ hash blah $ blah hash $ <b> hash </b> |
 | autogenerated/Xss/DomBasedXss/jquery.js:15:19:15:60 | decodeU ... search) | enclosingFunctionName | test |
 | autogenerated/Xss/DomBasedXss/jquery.js:15:19:15:60 | decodeU ... search) | fileImports |  |
 | autogenerated/Xss/DomBasedXss/jquery.js:15:38:15:59 | window. ... .search | CalleeFlexibleAccessPath | decodeURIComponent |
 | autogenerated/Xss/DomBasedXss/jquery.js:15:38:15:59 | window. ... .search | InputArgumentIndex | 0 |
 | autogenerated/Xss/DomBasedXss/jquery.js:15:38:15:59 | window. ... .search | contextFunctionInterfaces | test() |
 | autogenerated/Xss/DomBasedXss/jquery.js:15:38:15:59 | window. ... .search | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/jquery.js:15:38:15:59 | window. ... .search | enclosingFunctionBody | tainted document location search $ tainted $ body tainted $ . tainted $ <div id=" tainted "> $ body html XSS:  tainted $ window location hash $ <b> location toString </b> elm document getElementById x elm innerHTML decodeURIComponent window location hash elm innerHTML decodeURIComponent window location search elm innerHTML decodeURIComponent window location toString |
+| autogenerated/Xss/DomBasedXss/jquery.js:15:38:15:59 | window. ... .search | enclosingFunctionBody | tainted document location search $ tainted $ body tainted $ . tainted $ <div id=" tainted "> $ body html XSS:  tainted $ window location hash $ <b> location toString </b> elm document getElementById x elm innerHTML decodeURIComponent window location hash elm innerHTML decodeURIComponent window location search elm innerHTML decodeURIComponent window location toString hash window location hash $ hash $ hash substring 1 $ hash substring 1 10 $ hash substr 1 $ hash slice 1 $ hash substring 0 10 $ hash replace #  $ window location search replace ?  $ hash replace !  $ hash replace blah  $ hash blah $ blah hash $ <b> hash </b> |
 | autogenerated/Xss/DomBasedXss/jquery.js:15:38:15:59 | window. ... .search | enclosingFunctionName | test |
 | autogenerated/Xss/DomBasedXss/jquery.js:15:38:15:59 | window. ... .search | fileImports |  |
 | autogenerated/Xss/DomBasedXss/jquery.js:16:19:16:64 | decodeU ... ring()) | assignedToPropName | innerHTML |
 | autogenerated/Xss/DomBasedXss/jquery.js:16:19:16:64 | decodeU ... ring()) | contextFunctionInterfaces | test() |
 | autogenerated/Xss/DomBasedXss/jquery.js:16:19:16:64 | decodeU ... ring()) | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/jquery.js:16:19:16:64 | decodeU ... ring()) | enclosingFunctionBody | tainted document location search $ tainted $ body tainted $ . tainted $ <div id=" tainted "> $ body html XSS:  tainted $ window location hash $ <b> location toString </b> elm document getElementById x elm innerHTML decodeURIComponent window location hash elm innerHTML decodeURIComponent window location search elm innerHTML decodeURIComponent window location toString |
+| autogenerated/Xss/DomBasedXss/jquery.js:16:19:16:64 | decodeU ... ring()) | enclosingFunctionBody | tainted document location search $ tainted $ body tainted $ . tainted $ <div id=" tainted "> $ body html XSS:  tainted $ window location hash $ <b> location toString </b> elm document getElementById x elm innerHTML decodeURIComponent window location hash elm innerHTML decodeURIComponent window location search elm innerHTML decodeURIComponent window location toString hash window location hash $ hash $ hash substring 1 $ hash substring 1 10 $ hash substr 1 $ hash slice 1 $ hash substring 0 10 $ hash replace #  $ window location search replace ?  $ hash replace !  $ hash replace blah  $ hash blah $ blah hash $ <b> hash </b> |
 | autogenerated/Xss/DomBasedXss/jquery.js:16:19:16:64 | decodeU ... ring()) | enclosingFunctionName | test |
 | autogenerated/Xss/DomBasedXss/jquery.js:16:19:16:64 | decodeU ... ring()) | fileImports |  |
 | autogenerated/Xss/DomBasedXss/jquery.js:16:38:16:63 | window. ... tring() | CalleeFlexibleAccessPath | decodeURIComponent |
 | autogenerated/Xss/DomBasedXss/jquery.js:16:38:16:63 | window. ... tring() | InputArgumentIndex | 0 |
 | autogenerated/Xss/DomBasedXss/jquery.js:16:38:16:63 | window. ... tring() | contextFunctionInterfaces | test() |
 | autogenerated/Xss/DomBasedXss/jquery.js:16:38:16:63 | window. ... tring() | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/jquery.js:16:38:16:63 | window. ... tring() | enclosingFunctionBody | tainted document location search $ tainted $ body tainted $ . tainted $ <div id=" tainted "> $ body html XSS:  tainted $ window location hash $ <b> location toString </b> elm document getElementById x elm innerHTML decodeURIComponent window location hash elm innerHTML decodeURIComponent window location search elm innerHTML decodeURIComponent window location toString |
+| autogenerated/Xss/DomBasedXss/jquery.js:16:38:16:63 | window. ... tring() | enclosingFunctionBody | tainted document location search $ tainted $ body tainted $ . tainted $ <div id=" tainted "> $ body html XSS:  tainted $ window location hash $ <b> location toString </b> elm document getElementById x elm innerHTML decodeURIComponent window location hash elm innerHTML decodeURIComponent window location search elm innerHTML decodeURIComponent window location toString hash window location hash $ hash $ hash substring 1 $ hash substring 1 10 $ hash substr 1 $ hash slice 1 $ hash substring 0 10 $ hash replace #  $ window location search replace ?  $ hash replace !  $ hash replace blah  $ hash blah $ blah hash $ <b> hash </b> |
 | autogenerated/Xss/DomBasedXss/jquery.js:16:38:16:63 | window. ... tring() | enclosingFunctionName | test |
 | autogenerated/Xss/DomBasedXss/jquery.js:16:38:16:63 | window. ... tring() | fileImports |  |
+| autogenerated/Xss/DomBasedXss/jquery.js:19:5:19:8 | hash | CalleeFlexibleAccessPath | $ |
+| autogenerated/Xss/DomBasedXss/jquery.js:19:5:19:8 | hash | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/jquery.js:19:5:19:8 | hash | contextFunctionInterfaces | test() |
+| autogenerated/Xss/DomBasedXss/jquery.js:19:5:19:8 | hash | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/jquery.js:19:5:19:8 | hash | enclosingFunctionBody | tainted document location search $ tainted $ body tainted $ . tainted $ <div id=" tainted "> $ body html XSS:  tainted $ window location hash $ <b> location toString </b> elm document getElementById x elm innerHTML decodeURIComponent window location hash elm innerHTML decodeURIComponent window location search elm innerHTML decodeURIComponent window location toString hash window location hash $ hash $ hash substring 1 $ hash substring 1 10 $ hash substr 1 $ hash slice 1 $ hash substring 0 10 $ hash replace #  $ window location search replace ?  $ hash replace !  $ hash replace blah  $ hash blah $ blah hash $ <b> hash </b> |
+| autogenerated/Xss/DomBasedXss/jquery.js:19:5:19:8 | hash | enclosingFunctionName | test |
+| autogenerated/Xss/DomBasedXss/jquery.js:19:5:19:8 | hash | fileImports |  |
+| autogenerated/Xss/DomBasedXss/jquery.js:21:5:21:21 | hash.substring(1) | CalleeFlexibleAccessPath | $ |
+| autogenerated/Xss/DomBasedXss/jquery.js:21:5:21:21 | hash.substring(1) | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/jquery.js:21:5:21:21 | hash.substring(1) | contextFunctionInterfaces | test() |
+| autogenerated/Xss/DomBasedXss/jquery.js:21:5:21:21 | hash.substring(1) | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/jquery.js:21:5:21:21 | hash.substring(1) | enclosingFunctionBody | tainted document location search $ tainted $ body tainted $ . tainted $ <div id=" tainted "> $ body html XSS:  tainted $ window location hash $ <b> location toString </b> elm document getElementById x elm innerHTML decodeURIComponent window location hash elm innerHTML decodeURIComponent window location search elm innerHTML decodeURIComponent window location toString hash window location hash $ hash $ hash substring 1 $ hash substring 1 10 $ hash substr 1 $ hash slice 1 $ hash substring 0 10 $ hash replace #  $ window location search replace ?  $ hash replace !  $ hash replace blah  $ hash blah $ blah hash $ <b> hash </b> |
+| autogenerated/Xss/DomBasedXss/jquery.js:21:5:21:21 | hash.substring(1) | enclosingFunctionName | test |
+| autogenerated/Xss/DomBasedXss/jquery.js:21:5:21:21 | hash.substring(1) | fileImports |  |
+| autogenerated/Xss/DomBasedXss/jquery.js:21:20:21:20 | 1 | CalleeFlexibleAccessPath | hash.substring |
+| autogenerated/Xss/DomBasedXss/jquery.js:21:20:21:20 | 1 | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/jquery.js:21:20:21:20 | 1 | contextFunctionInterfaces | test() |
+| autogenerated/Xss/DomBasedXss/jquery.js:21:20:21:20 | 1 | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/jquery.js:21:20:21:20 | 1 | enclosingFunctionBody | tainted document location search $ tainted $ body tainted $ . tainted $ <div id=" tainted "> $ body html XSS:  tainted $ window location hash $ <b> location toString </b> elm document getElementById x elm innerHTML decodeURIComponent window location hash elm innerHTML decodeURIComponent window location search elm innerHTML decodeURIComponent window location toString hash window location hash $ hash $ hash substring 1 $ hash substring 1 10 $ hash substr 1 $ hash slice 1 $ hash substring 0 10 $ hash replace #  $ window location search replace ?  $ hash replace !  $ hash replace blah  $ hash blah $ blah hash $ <b> hash </b> |
+| autogenerated/Xss/DomBasedXss/jquery.js:21:20:21:20 | 1 | enclosingFunctionName | test |
+| autogenerated/Xss/DomBasedXss/jquery.js:21:20:21:20 | 1 | fileImports |  |
+| autogenerated/Xss/DomBasedXss/jquery.js:21:20:21:20 | 1 | receiverName | hash |
+| autogenerated/Xss/DomBasedXss/jquery.js:22:5:22:25 | hash.su ... (1, 10) | CalleeFlexibleAccessPath | $ |
+| autogenerated/Xss/DomBasedXss/jquery.js:22:5:22:25 | hash.su ... (1, 10) | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/jquery.js:22:5:22:25 | hash.su ... (1, 10) | contextFunctionInterfaces | test() |
+| autogenerated/Xss/DomBasedXss/jquery.js:22:5:22:25 | hash.su ... (1, 10) | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/jquery.js:22:5:22:25 | hash.su ... (1, 10) | enclosingFunctionBody | tainted document location search $ tainted $ body tainted $ . tainted $ <div id=" tainted "> $ body html XSS:  tainted $ window location hash $ <b> location toString </b> elm document getElementById x elm innerHTML decodeURIComponent window location hash elm innerHTML decodeURIComponent window location search elm innerHTML decodeURIComponent window location toString hash window location hash $ hash $ hash substring 1 $ hash substring 1 10 $ hash substr 1 $ hash slice 1 $ hash substring 0 10 $ hash replace #  $ window location search replace ?  $ hash replace !  $ hash replace blah  $ hash blah $ blah hash $ <b> hash </b> |
+| autogenerated/Xss/DomBasedXss/jquery.js:22:5:22:25 | hash.su ... (1, 10) | enclosingFunctionName | test |
+| autogenerated/Xss/DomBasedXss/jquery.js:22:5:22:25 | hash.su ... (1, 10) | fileImports |  |
+| autogenerated/Xss/DomBasedXss/jquery.js:22:20:22:20 | 1 | CalleeFlexibleAccessPath | hash.substring |
+| autogenerated/Xss/DomBasedXss/jquery.js:22:20:22:20 | 1 | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/jquery.js:22:20:22:20 | 1 | contextFunctionInterfaces | test() |
+| autogenerated/Xss/DomBasedXss/jquery.js:22:20:22:20 | 1 | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/jquery.js:22:20:22:20 | 1 | enclosingFunctionBody | tainted document location search $ tainted $ body tainted $ . tainted $ <div id=" tainted "> $ body html XSS:  tainted $ window location hash $ <b> location toString </b> elm document getElementById x elm innerHTML decodeURIComponent window location hash elm innerHTML decodeURIComponent window location search elm innerHTML decodeURIComponent window location toString hash window location hash $ hash $ hash substring 1 $ hash substring 1 10 $ hash substr 1 $ hash slice 1 $ hash substring 0 10 $ hash replace #  $ window location search replace ?  $ hash replace !  $ hash replace blah  $ hash blah $ blah hash $ <b> hash </b> |
+| autogenerated/Xss/DomBasedXss/jquery.js:22:20:22:20 | 1 | enclosingFunctionName | test |
+| autogenerated/Xss/DomBasedXss/jquery.js:22:20:22:20 | 1 | fileImports |  |
+| autogenerated/Xss/DomBasedXss/jquery.js:22:20:22:20 | 1 | receiverName | hash |
+| autogenerated/Xss/DomBasedXss/jquery.js:22:23:22:24 | 10 | CalleeFlexibleAccessPath | hash.substring |
+| autogenerated/Xss/DomBasedXss/jquery.js:22:23:22:24 | 10 | InputArgumentIndex | 1 |
+| autogenerated/Xss/DomBasedXss/jquery.js:22:23:22:24 | 10 | contextFunctionInterfaces | test() |
+| autogenerated/Xss/DomBasedXss/jquery.js:22:23:22:24 | 10 | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/jquery.js:22:23:22:24 | 10 | enclosingFunctionBody | tainted document location search $ tainted $ body tainted $ . tainted $ <div id=" tainted "> $ body html XSS:  tainted $ window location hash $ <b> location toString </b> elm document getElementById x elm innerHTML decodeURIComponent window location hash elm innerHTML decodeURIComponent window location search elm innerHTML decodeURIComponent window location toString hash window location hash $ hash $ hash substring 1 $ hash substring 1 10 $ hash substr 1 $ hash slice 1 $ hash substring 0 10 $ hash replace #  $ window location search replace ?  $ hash replace !  $ hash replace blah  $ hash blah $ blah hash $ <b> hash </b> |
+| autogenerated/Xss/DomBasedXss/jquery.js:22:23:22:24 | 10 | enclosingFunctionName | test |
+| autogenerated/Xss/DomBasedXss/jquery.js:22:23:22:24 | 10 | fileImports |  |
+| autogenerated/Xss/DomBasedXss/jquery.js:22:23:22:24 | 10 | receiverName | hash |
+| autogenerated/Xss/DomBasedXss/jquery.js:23:5:23:18 | hash.substr(1) | CalleeFlexibleAccessPath | $ |
+| autogenerated/Xss/DomBasedXss/jquery.js:23:5:23:18 | hash.substr(1) | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/jquery.js:23:5:23:18 | hash.substr(1) | contextFunctionInterfaces | test() |
+| autogenerated/Xss/DomBasedXss/jquery.js:23:5:23:18 | hash.substr(1) | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/jquery.js:23:5:23:18 | hash.substr(1) | enclosingFunctionBody | tainted document location search $ tainted $ body tainted $ . tainted $ <div id=" tainted "> $ body html XSS:  tainted $ window location hash $ <b> location toString </b> elm document getElementById x elm innerHTML decodeURIComponent window location hash elm innerHTML decodeURIComponent window location search elm innerHTML decodeURIComponent window location toString hash window location hash $ hash $ hash substring 1 $ hash substring 1 10 $ hash substr 1 $ hash slice 1 $ hash substring 0 10 $ hash replace #  $ window location search replace ?  $ hash replace !  $ hash replace blah  $ hash blah $ blah hash $ <b> hash </b> |
+| autogenerated/Xss/DomBasedXss/jquery.js:23:5:23:18 | hash.substr(1) | enclosingFunctionName | test |
+| autogenerated/Xss/DomBasedXss/jquery.js:23:5:23:18 | hash.substr(1) | fileImports |  |
+| autogenerated/Xss/DomBasedXss/jquery.js:23:17:23:17 | 1 | CalleeFlexibleAccessPath | hash.substr |
+| autogenerated/Xss/DomBasedXss/jquery.js:23:17:23:17 | 1 | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/jquery.js:23:17:23:17 | 1 | contextFunctionInterfaces | test() |
+| autogenerated/Xss/DomBasedXss/jquery.js:23:17:23:17 | 1 | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/jquery.js:23:17:23:17 | 1 | enclosingFunctionBody | tainted document location search $ tainted $ body tainted $ . tainted $ <div id=" tainted "> $ body html XSS:  tainted $ window location hash $ <b> location toString </b> elm document getElementById x elm innerHTML decodeURIComponent window location hash elm innerHTML decodeURIComponent window location search elm innerHTML decodeURIComponent window location toString hash window location hash $ hash $ hash substring 1 $ hash substring 1 10 $ hash substr 1 $ hash slice 1 $ hash substring 0 10 $ hash replace #  $ window location search replace ?  $ hash replace !  $ hash replace blah  $ hash blah $ blah hash $ <b> hash </b> |
+| autogenerated/Xss/DomBasedXss/jquery.js:23:17:23:17 | 1 | enclosingFunctionName | test |
+| autogenerated/Xss/DomBasedXss/jquery.js:23:17:23:17 | 1 | fileImports |  |
+| autogenerated/Xss/DomBasedXss/jquery.js:23:17:23:17 | 1 | receiverName | hash |
+| autogenerated/Xss/DomBasedXss/jquery.js:24:5:24:17 | hash.slice(1) | CalleeFlexibleAccessPath | $ |
+| autogenerated/Xss/DomBasedXss/jquery.js:24:5:24:17 | hash.slice(1) | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/jquery.js:24:5:24:17 | hash.slice(1) | contextFunctionInterfaces | test() |
+| autogenerated/Xss/DomBasedXss/jquery.js:24:5:24:17 | hash.slice(1) | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/jquery.js:24:5:24:17 | hash.slice(1) | enclosingFunctionBody | tainted document location search $ tainted $ body tainted $ . tainted $ <div id=" tainted "> $ body html XSS:  tainted $ window location hash $ <b> location toString </b> elm document getElementById x elm innerHTML decodeURIComponent window location hash elm innerHTML decodeURIComponent window location search elm innerHTML decodeURIComponent window location toString hash window location hash $ hash $ hash substring 1 $ hash substring 1 10 $ hash substr 1 $ hash slice 1 $ hash substring 0 10 $ hash replace #  $ window location search replace ?  $ hash replace !  $ hash replace blah  $ hash blah $ blah hash $ <b> hash </b> |
+| autogenerated/Xss/DomBasedXss/jquery.js:24:5:24:17 | hash.slice(1) | enclosingFunctionName | test |
+| autogenerated/Xss/DomBasedXss/jquery.js:24:5:24:17 | hash.slice(1) | fileImports |  |
+| autogenerated/Xss/DomBasedXss/jquery.js:24:16:24:16 | 1 | CalleeFlexibleAccessPath | hash.slice |
+| autogenerated/Xss/DomBasedXss/jquery.js:24:16:24:16 | 1 | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/jquery.js:24:16:24:16 | 1 | contextFunctionInterfaces | test() |
+| autogenerated/Xss/DomBasedXss/jquery.js:24:16:24:16 | 1 | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/jquery.js:24:16:24:16 | 1 | enclosingFunctionBody | tainted document location search $ tainted $ body tainted $ . tainted $ <div id=" tainted "> $ body html XSS:  tainted $ window location hash $ <b> location toString </b> elm document getElementById x elm innerHTML decodeURIComponent window location hash elm innerHTML decodeURIComponent window location search elm innerHTML decodeURIComponent window location toString hash window location hash $ hash $ hash substring 1 $ hash substring 1 10 $ hash substr 1 $ hash slice 1 $ hash substring 0 10 $ hash replace #  $ window location search replace ?  $ hash replace !  $ hash replace blah  $ hash blah $ blah hash $ <b> hash </b> |
+| autogenerated/Xss/DomBasedXss/jquery.js:24:16:24:16 | 1 | enclosingFunctionName | test |
+| autogenerated/Xss/DomBasedXss/jquery.js:24:16:24:16 | 1 | fileImports |  |
+| autogenerated/Xss/DomBasedXss/jquery.js:24:16:24:16 | 1 | receiverName | hash |
+| autogenerated/Xss/DomBasedXss/jquery.js:25:5:25:25 | hash.su ... (0, 10) | CalleeFlexibleAccessPath | $ |
+| autogenerated/Xss/DomBasedXss/jquery.js:25:5:25:25 | hash.su ... (0, 10) | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/jquery.js:25:5:25:25 | hash.su ... (0, 10) | contextFunctionInterfaces | test() |
+| autogenerated/Xss/DomBasedXss/jquery.js:25:5:25:25 | hash.su ... (0, 10) | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/jquery.js:25:5:25:25 | hash.su ... (0, 10) | enclosingFunctionBody | tainted document location search $ tainted $ body tainted $ . tainted $ <div id=" tainted "> $ body html XSS:  tainted $ window location hash $ <b> location toString </b> elm document getElementById x elm innerHTML decodeURIComponent window location hash elm innerHTML decodeURIComponent window location search elm innerHTML decodeURIComponent window location toString hash window location hash $ hash $ hash substring 1 $ hash substring 1 10 $ hash substr 1 $ hash slice 1 $ hash substring 0 10 $ hash replace #  $ window location search replace ?  $ hash replace !  $ hash replace blah  $ hash blah $ blah hash $ <b> hash </b> |
+| autogenerated/Xss/DomBasedXss/jquery.js:25:5:25:25 | hash.su ... (0, 10) | enclosingFunctionName | test |
+| autogenerated/Xss/DomBasedXss/jquery.js:25:5:25:25 | hash.su ... (0, 10) | fileImports |  |
+| autogenerated/Xss/DomBasedXss/jquery.js:25:20:25:20 | 0 | CalleeFlexibleAccessPath | hash.substring |
+| autogenerated/Xss/DomBasedXss/jquery.js:25:20:25:20 | 0 | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/jquery.js:25:20:25:20 | 0 | contextFunctionInterfaces | test() |
+| autogenerated/Xss/DomBasedXss/jquery.js:25:20:25:20 | 0 | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/jquery.js:25:20:25:20 | 0 | enclosingFunctionBody | tainted document location search $ tainted $ body tainted $ . tainted $ <div id=" tainted "> $ body html XSS:  tainted $ window location hash $ <b> location toString </b> elm document getElementById x elm innerHTML decodeURIComponent window location hash elm innerHTML decodeURIComponent window location search elm innerHTML decodeURIComponent window location toString hash window location hash $ hash $ hash substring 1 $ hash substring 1 10 $ hash substr 1 $ hash slice 1 $ hash substring 0 10 $ hash replace #  $ window location search replace ?  $ hash replace !  $ hash replace blah  $ hash blah $ blah hash $ <b> hash </b> |
+| autogenerated/Xss/DomBasedXss/jquery.js:25:20:25:20 | 0 | enclosingFunctionName | test |
+| autogenerated/Xss/DomBasedXss/jquery.js:25:20:25:20 | 0 | fileImports |  |
+| autogenerated/Xss/DomBasedXss/jquery.js:25:20:25:20 | 0 | receiverName | hash |
+| autogenerated/Xss/DomBasedXss/jquery.js:25:23:25:24 | 10 | CalleeFlexibleAccessPath | hash.substring |
+| autogenerated/Xss/DomBasedXss/jquery.js:25:23:25:24 | 10 | InputArgumentIndex | 1 |
+| autogenerated/Xss/DomBasedXss/jquery.js:25:23:25:24 | 10 | contextFunctionInterfaces | test() |
+| autogenerated/Xss/DomBasedXss/jquery.js:25:23:25:24 | 10 | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/jquery.js:25:23:25:24 | 10 | enclosingFunctionBody | tainted document location search $ tainted $ body tainted $ . tainted $ <div id=" tainted "> $ body html XSS:  tainted $ window location hash $ <b> location toString </b> elm document getElementById x elm innerHTML decodeURIComponent window location hash elm innerHTML decodeURIComponent window location search elm innerHTML decodeURIComponent window location toString hash window location hash $ hash $ hash substring 1 $ hash substring 1 10 $ hash substr 1 $ hash slice 1 $ hash substring 0 10 $ hash replace #  $ window location search replace ?  $ hash replace !  $ hash replace blah  $ hash blah $ blah hash $ <b> hash </b> |
+| autogenerated/Xss/DomBasedXss/jquery.js:25:23:25:24 | 10 | enclosingFunctionName | test |
+| autogenerated/Xss/DomBasedXss/jquery.js:25:23:25:24 | 10 | fileImports |  |
+| autogenerated/Xss/DomBasedXss/jquery.js:25:23:25:24 | 10 | receiverName | hash |
+| autogenerated/Xss/DomBasedXss/jquery.js:27:5:27:25 | hash.re ... #', '') | CalleeFlexibleAccessPath | $ |
+| autogenerated/Xss/DomBasedXss/jquery.js:27:5:27:25 | hash.re ... #', '') | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/jquery.js:27:5:27:25 | hash.re ... #', '') | contextFunctionInterfaces | test() |
+| autogenerated/Xss/DomBasedXss/jquery.js:27:5:27:25 | hash.re ... #', '') | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/jquery.js:27:5:27:25 | hash.re ... #', '') | enclosingFunctionBody | tainted document location search $ tainted $ body tainted $ . tainted $ <div id=" tainted "> $ body html XSS:  tainted $ window location hash $ <b> location toString </b> elm document getElementById x elm innerHTML decodeURIComponent window location hash elm innerHTML decodeURIComponent window location search elm innerHTML decodeURIComponent window location toString hash window location hash $ hash $ hash substring 1 $ hash substring 1 10 $ hash substr 1 $ hash slice 1 $ hash substring 0 10 $ hash replace #  $ window location search replace ?  $ hash replace !  $ hash replace blah  $ hash blah $ blah hash $ <b> hash </b> |
+| autogenerated/Xss/DomBasedXss/jquery.js:27:5:27:25 | hash.re ... #', '') | enclosingFunctionName | test |
+| autogenerated/Xss/DomBasedXss/jquery.js:27:5:27:25 | hash.re ... #', '') | fileImports |  |
+| autogenerated/Xss/DomBasedXss/jquery.js:27:18:27:20 | '#' | CalleeFlexibleAccessPath | hash.replace |
+| autogenerated/Xss/DomBasedXss/jquery.js:27:18:27:20 | '#' | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/jquery.js:27:18:27:20 | '#' | contextFunctionInterfaces | test() |
+| autogenerated/Xss/DomBasedXss/jquery.js:27:18:27:20 | '#' | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/jquery.js:27:18:27:20 | '#' | enclosingFunctionBody | tainted document location search $ tainted $ body tainted $ . tainted $ <div id=" tainted "> $ body html XSS:  tainted $ window location hash $ <b> location toString </b> elm document getElementById x elm innerHTML decodeURIComponent window location hash elm innerHTML decodeURIComponent window location search elm innerHTML decodeURIComponent window location toString hash window location hash $ hash $ hash substring 1 $ hash substring 1 10 $ hash substr 1 $ hash slice 1 $ hash substring 0 10 $ hash replace #  $ window location search replace ?  $ hash replace !  $ hash replace blah  $ hash blah $ blah hash $ <b> hash </b> |
+| autogenerated/Xss/DomBasedXss/jquery.js:27:18:27:20 | '#' | enclosingFunctionName | test |
+| autogenerated/Xss/DomBasedXss/jquery.js:27:18:27:20 | '#' | fileImports |  |
+| autogenerated/Xss/DomBasedXss/jquery.js:27:18:27:20 | '#' | receiverName | hash |
+| autogenerated/Xss/DomBasedXss/jquery.js:27:23:27:24 | '' | CalleeFlexibleAccessPath | hash.replace |
+| autogenerated/Xss/DomBasedXss/jquery.js:27:23:27:24 | '' | InputArgumentIndex | 1 |
+| autogenerated/Xss/DomBasedXss/jquery.js:27:23:27:24 | '' | contextFunctionInterfaces | test() |
+| autogenerated/Xss/DomBasedXss/jquery.js:27:23:27:24 | '' | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/jquery.js:27:23:27:24 | '' | enclosingFunctionBody | tainted document location search $ tainted $ body tainted $ . tainted $ <div id=" tainted "> $ body html XSS:  tainted $ window location hash $ <b> location toString </b> elm document getElementById x elm innerHTML decodeURIComponent window location hash elm innerHTML decodeURIComponent window location search elm innerHTML decodeURIComponent window location toString hash window location hash $ hash $ hash substring 1 $ hash substring 1 10 $ hash substr 1 $ hash slice 1 $ hash substring 0 10 $ hash replace #  $ window location search replace ?  $ hash replace !  $ hash replace blah  $ hash blah $ blah hash $ <b> hash </b> |
+| autogenerated/Xss/DomBasedXss/jquery.js:27:23:27:24 | '' | enclosingFunctionName | test |
+| autogenerated/Xss/DomBasedXss/jquery.js:27:23:27:24 | '' | fileImports |  |
+| autogenerated/Xss/DomBasedXss/jquery.js:27:23:27:24 | '' | receiverName | hash |
+| autogenerated/Xss/DomBasedXss/jquery.js:28:5:28:43 | window. ... ?', '') | CalleeFlexibleAccessPath | $ |
+| autogenerated/Xss/DomBasedXss/jquery.js:28:5:28:43 | window. ... ?', '') | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/jquery.js:28:5:28:43 | window. ... ?', '') | contextFunctionInterfaces | test() |
+| autogenerated/Xss/DomBasedXss/jquery.js:28:5:28:43 | window. ... ?', '') | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/jquery.js:28:5:28:43 | window. ... ?', '') | enclosingFunctionBody | tainted document location search $ tainted $ body tainted $ . tainted $ <div id=" tainted "> $ body html XSS:  tainted $ window location hash $ <b> location toString </b> elm document getElementById x elm innerHTML decodeURIComponent window location hash elm innerHTML decodeURIComponent window location search elm innerHTML decodeURIComponent window location toString hash window location hash $ hash $ hash substring 1 $ hash substring 1 10 $ hash substr 1 $ hash slice 1 $ hash substring 0 10 $ hash replace #  $ window location search replace ?  $ hash replace !  $ hash replace blah  $ hash blah $ blah hash $ <b> hash </b> |
+| autogenerated/Xss/DomBasedXss/jquery.js:28:5:28:43 | window. ... ?', '') | enclosingFunctionName | test |
+| autogenerated/Xss/DomBasedXss/jquery.js:28:5:28:43 | window. ... ?', '') | fileImports |  |
+| autogenerated/Xss/DomBasedXss/jquery.js:28:36:28:38 | '?' | CalleeFlexibleAccessPath | window.location.search.replace |
+| autogenerated/Xss/DomBasedXss/jquery.js:28:36:28:38 | '?' | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/jquery.js:28:36:28:38 | '?' | contextFunctionInterfaces | test() |
+| autogenerated/Xss/DomBasedXss/jquery.js:28:36:28:38 | '?' | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/jquery.js:28:36:28:38 | '?' | enclosingFunctionBody | tainted document location search $ tainted $ body tainted $ . tainted $ <div id=" tainted "> $ body html XSS:  tainted $ window location hash $ <b> location toString </b> elm document getElementById x elm innerHTML decodeURIComponent window location hash elm innerHTML decodeURIComponent window location search elm innerHTML decodeURIComponent window location toString hash window location hash $ hash $ hash substring 1 $ hash substring 1 10 $ hash substr 1 $ hash slice 1 $ hash substring 0 10 $ hash replace #  $ window location search replace ?  $ hash replace !  $ hash replace blah  $ hash blah $ blah hash $ <b> hash </b> |
+| autogenerated/Xss/DomBasedXss/jquery.js:28:36:28:38 | '?' | enclosingFunctionName | test |
+| autogenerated/Xss/DomBasedXss/jquery.js:28:36:28:38 | '?' | fileImports |  |
+| autogenerated/Xss/DomBasedXss/jquery.js:28:41:28:42 | '' | CalleeFlexibleAccessPath | window.location.search.replace |
+| autogenerated/Xss/DomBasedXss/jquery.js:28:41:28:42 | '' | InputArgumentIndex | 1 |
+| autogenerated/Xss/DomBasedXss/jquery.js:28:41:28:42 | '' | contextFunctionInterfaces | test() |
+| autogenerated/Xss/DomBasedXss/jquery.js:28:41:28:42 | '' | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/jquery.js:28:41:28:42 | '' | enclosingFunctionBody | tainted document location search $ tainted $ body tainted $ . tainted $ <div id=" tainted "> $ body html XSS:  tainted $ window location hash $ <b> location toString </b> elm document getElementById x elm innerHTML decodeURIComponent window location hash elm innerHTML decodeURIComponent window location search elm innerHTML decodeURIComponent window location toString hash window location hash $ hash $ hash substring 1 $ hash substring 1 10 $ hash substr 1 $ hash slice 1 $ hash substring 0 10 $ hash replace #  $ window location search replace ?  $ hash replace !  $ hash replace blah  $ hash blah $ blah hash $ <b> hash </b> |
+| autogenerated/Xss/DomBasedXss/jquery.js:28:41:28:42 | '' | enclosingFunctionName | test |
+| autogenerated/Xss/DomBasedXss/jquery.js:28:41:28:42 | '' | fileImports |  |
+| autogenerated/Xss/DomBasedXss/jquery.js:29:5:29:25 | hash.re ... !', '') | CalleeFlexibleAccessPath | $ |
+| autogenerated/Xss/DomBasedXss/jquery.js:29:5:29:25 | hash.re ... !', '') | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/jquery.js:29:5:29:25 | hash.re ... !', '') | contextFunctionInterfaces | test() |
+| autogenerated/Xss/DomBasedXss/jquery.js:29:5:29:25 | hash.re ... !', '') | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/jquery.js:29:5:29:25 | hash.re ... !', '') | enclosingFunctionBody | tainted document location search $ tainted $ body tainted $ . tainted $ <div id=" tainted "> $ body html XSS:  tainted $ window location hash $ <b> location toString </b> elm document getElementById x elm innerHTML decodeURIComponent window location hash elm innerHTML decodeURIComponent window location search elm innerHTML decodeURIComponent window location toString hash window location hash $ hash $ hash substring 1 $ hash substring 1 10 $ hash substr 1 $ hash slice 1 $ hash substring 0 10 $ hash replace #  $ window location search replace ?  $ hash replace !  $ hash replace blah  $ hash blah $ blah hash $ <b> hash </b> |
+| autogenerated/Xss/DomBasedXss/jquery.js:29:5:29:25 | hash.re ... !', '') | enclosingFunctionName | test |
+| autogenerated/Xss/DomBasedXss/jquery.js:29:5:29:25 | hash.re ... !', '') | fileImports |  |
+| autogenerated/Xss/DomBasedXss/jquery.js:29:18:29:20 | '!' | CalleeFlexibleAccessPath | hash.replace |
+| autogenerated/Xss/DomBasedXss/jquery.js:29:18:29:20 | '!' | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/jquery.js:29:18:29:20 | '!' | contextFunctionInterfaces | test() |
+| autogenerated/Xss/DomBasedXss/jquery.js:29:18:29:20 | '!' | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/jquery.js:29:18:29:20 | '!' | enclosingFunctionBody | tainted document location search $ tainted $ body tainted $ . tainted $ <div id=" tainted "> $ body html XSS:  tainted $ window location hash $ <b> location toString </b> elm document getElementById x elm innerHTML decodeURIComponent window location hash elm innerHTML decodeURIComponent window location search elm innerHTML decodeURIComponent window location toString hash window location hash $ hash $ hash substring 1 $ hash substring 1 10 $ hash substr 1 $ hash slice 1 $ hash substring 0 10 $ hash replace #  $ window location search replace ?  $ hash replace !  $ hash replace blah  $ hash blah $ blah hash $ <b> hash </b> |
+| autogenerated/Xss/DomBasedXss/jquery.js:29:18:29:20 | '!' | enclosingFunctionName | test |
+| autogenerated/Xss/DomBasedXss/jquery.js:29:18:29:20 | '!' | fileImports |  |
+| autogenerated/Xss/DomBasedXss/jquery.js:29:18:29:20 | '!' | receiverName | hash |
+| autogenerated/Xss/DomBasedXss/jquery.js:29:23:29:24 | '' | CalleeFlexibleAccessPath | hash.replace |
+| autogenerated/Xss/DomBasedXss/jquery.js:29:23:29:24 | '' | InputArgumentIndex | 1 |
+| autogenerated/Xss/DomBasedXss/jquery.js:29:23:29:24 | '' | contextFunctionInterfaces | test() |
+| autogenerated/Xss/DomBasedXss/jquery.js:29:23:29:24 | '' | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/jquery.js:29:23:29:24 | '' | enclosingFunctionBody | tainted document location search $ tainted $ body tainted $ . tainted $ <div id=" tainted "> $ body html XSS:  tainted $ window location hash $ <b> location toString </b> elm document getElementById x elm innerHTML decodeURIComponent window location hash elm innerHTML decodeURIComponent window location search elm innerHTML decodeURIComponent window location toString hash window location hash $ hash $ hash substring 1 $ hash substring 1 10 $ hash substr 1 $ hash slice 1 $ hash substring 0 10 $ hash replace #  $ window location search replace ?  $ hash replace !  $ hash replace blah  $ hash blah $ blah hash $ <b> hash </b> |
+| autogenerated/Xss/DomBasedXss/jquery.js:29:23:29:24 | '' | enclosingFunctionName | test |
+| autogenerated/Xss/DomBasedXss/jquery.js:29:23:29:24 | '' | fileImports |  |
+| autogenerated/Xss/DomBasedXss/jquery.js:29:23:29:24 | '' | receiverName | hash |
+| autogenerated/Xss/DomBasedXss/jquery.js:30:5:30:28 | hash.re ... h', '') | CalleeFlexibleAccessPath | $ |
+| autogenerated/Xss/DomBasedXss/jquery.js:30:5:30:28 | hash.re ... h', '') | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/jquery.js:30:5:30:28 | hash.re ... h', '') | contextFunctionInterfaces | test() |
+| autogenerated/Xss/DomBasedXss/jquery.js:30:5:30:28 | hash.re ... h', '') | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/jquery.js:30:5:30:28 | hash.re ... h', '') | enclosingFunctionBody | tainted document location search $ tainted $ body tainted $ . tainted $ <div id=" tainted "> $ body html XSS:  tainted $ window location hash $ <b> location toString </b> elm document getElementById x elm innerHTML decodeURIComponent window location hash elm innerHTML decodeURIComponent window location search elm innerHTML decodeURIComponent window location toString hash window location hash $ hash $ hash substring 1 $ hash substring 1 10 $ hash substr 1 $ hash slice 1 $ hash substring 0 10 $ hash replace #  $ window location search replace ?  $ hash replace !  $ hash replace blah  $ hash blah $ blah hash $ <b> hash </b> |
+| autogenerated/Xss/DomBasedXss/jquery.js:30:5:30:28 | hash.re ... h', '') | enclosingFunctionName | test |
+| autogenerated/Xss/DomBasedXss/jquery.js:30:5:30:28 | hash.re ... h', '') | fileImports |  |
+| autogenerated/Xss/DomBasedXss/jquery.js:30:18:30:23 | 'blah' | CalleeFlexibleAccessPath | hash.replace |
+| autogenerated/Xss/DomBasedXss/jquery.js:30:18:30:23 | 'blah' | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/jquery.js:30:18:30:23 | 'blah' | contextFunctionInterfaces | test() |
+| autogenerated/Xss/DomBasedXss/jquery.js:30:18:30:23 | 'blah' | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/jquery.js:30:18:30:23 | 'blah' | enclosingFunctionBody | tainted document location search $ tainted $ body tainted $ . tainted $ <div id=" tainted "> $ body html XSS:  tainted $ window location hash $ <b> location toString </b> elm document getElementById x elm innerHTML decodeURIComponent window location hash elm innerHTML decodeURIComponent window location search elm innerHTML decodeURIComponent window location toString hash window location hash $ hash $ hash substring 1 $ hash substring 1 10 $ hash substr 1 $ hash slice 1 $ hash substring 0 10 $ hash replace #  $ window location search replace ?  $ hash replace !  $ hash replace blah  $ hash blah $ blah hash $ <b> hash </b> |
+| autogenerated/Xss/DomBasedXss/jquery.js:30:18:30:23 | 'blah' | enclosingFunctionName | test |
+| autogenerated/Xss/DomBasedXss/jquery.js:30:18:30:23 | 'blah' | fileImports |  |
+| autogenerated/Xss/DomBasedXss/jquery.js:30:18:30:23 | 'blah' | receiverName | hash |
+| autogenerated/Xss/DomBasedXss/jquery.js:30:26:30:27 | '' | CalleeFlexibleAccessPath | hash.replace |
+| autogenerated/Xss/DomBasedXss/jquery.js:30:26:30:27 | '' | InputArgumentIndex | 1 |
+| autogenerated/Xss/DomBasedXss/jquery.js:30:26:30:27 | '' | contextFunctionInterfaces | test() |
+| autogenerated/Xss/DomBasedXss/jquery.js:30:26:30:27 | '' | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/jquery.js:30:26:30:27 | '' | enclosingFunctionBody | tainted document location search $ tainted $ body tainted $ . tainted $ <div id=" tainted "> $ body html XSS:  tainted $ window location hash $ <b> location toString </b> elm document getElementById x elm innerHTML decodeURIComponent window location hash elm innerHTML decodeURIComponent window location search elm innerHTML decodeURIComponent window location toString hash window location hash $ hash $ hash substring 1 $ hash substring 1 10 $ hash substr 1 $ hash slice 1 $ hash substring 0 10 $ hash replace #  $ window location search replace ?  $ hash replace !  $ hash replace blah  $ hash blah $ blah hash $ <b> hash </b> |
+| autogenerated/Xss/DomBasedXss/jquery.js:30:26:30:27 | '' | enclosingFunctionName | test |
+| autogenerated/Xss/DomBasedXss/jquery.js:30:26:30:27 | '' | fileImports |  |
+| autogenerated/Xss/DomBasedXss/jquery.js:30:26:30:27 | '' | receiverName | hash |
+| autogenerated/Xss/DomBasedXss/jquery.js:32:5:32:17 | hash + 'blah' | CalleeFlexibleAccessPath | $ |
+| autogenerated/Xss/DomBasedXss/jquery.js:32:5:32:17 | hash + 'blah' | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/jquery.js:32:5:32:17 | hash + 'blah' | contextFunctionInterfaces | test() |
+| autogenerated/Xss/DomBasedXss/jquery.js:32:5:32:17 | hash + 'blah' | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/jquery.js:32:5:32:17 | hash + 'blah' | enclosingFunctionBody | tainted document location search $ tainted $ body tainted $ . tainted $ <div id=" tainted "> $ body html XSS:  tainted $ window location hash $ <b> location toString </b> elm document getElementById x elm innerHTML decodeURIComponent window location hash elm innerHTML decodeURIComponent window location search elm innerHTML decodeURIComponent window location toString hash window location hash $ hash $ hash substring 1 $ hash substring 1 10 $ hash substr 1 $ hash slice 1 $ hash substring 0 10 $ hash replace #  $ window location search replace ?  $ hash replace !  $ hash replace blah  $ hash blah $ blah hash $ <b> hash </b> |
+| autogenerated/Xss/DomBasedXss/jquery.js:32:5:32:17 | hash + 'blah' | enclosingFunctionName | test |
+| autogenerated/Xss/DomBasedXss/jquery.js:32:5:32:17 | hash + 'blah' | fileImports |  |
+| autogenerated/Xss/DomBasedXss/jquery.js:33:5:33:17 | 'blah' + hash | CalleeFlexibleAccessPath | $ |
+| autogenerated/Xss/DomBasedXss/jquery.js:33:5:33:17 | 'blah' + hash | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/jquery.js:33:5:33:17 | 'blah' + hash | contextFunctionInterfaces | test() |
+| autogenerated/Xss/DomBasedXss/jquery.js:33:5:33:17 | 'blah' + hash | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/jquery.js:33:5:33:17 | 'blah' + hash | enclosingFunctionBody | tainted document location search $ tainted $ body tainted $ . tainted $ <div id=" tainted "> $ body html XSS:  tainted $ window location hash $ <b> location toString </b> elm document getElementById x elm innerHTML decodeURIComponent window location hash elm innerHTML decodeURIComponent window location search elm innerHTML decodeURIComponent window location toString hash window location hash $ hash $ hash substring 1 $ hash substring 1 10 $ hash substr 1 $ hash slice 1 $ hash substring 0 10 $ hash replace #  $ window location search replace ?  $ hash replace !  $ hash replace blah  $ hash blah $ blah hash $ <b> hash </b> |
+| autogenerated/Xss/DomBasedXss/jquery.js:33:5:33:17 | 'blah' + hash | enclosingFunctionName | test |
+| autogenerated/Xss/DomBasedXss/jquery.js:33:5:33:17 | 'blah' + hash | fileImports |  |
+| autogenerated/Xss/DomBasedXss/jquery.js:34:5:34:9 | '<b>' | contextFunctionInterfaces | test() |
+| autogenerated/Xss/DomBasedXss/jquery.js:34:5:34:9 | '<b>' | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/jquery.js:34:5:34:9 | '<b>' | enclosingFunctionBody | tainted document location search $ tainted $ body tainted $ . tainted $ <div id=" tainted "> $ body html XSS:  tainted $ window location hash $ <b> location toString </b> elm document getElementById x elm innerHTML decodeURIComponent window location hash elm innerHTML decodeURIComponent window location search elm innerHTML decodeURIComponent window location toString hash window location hash $ hash $ hash substring 1 $ hash substring 1 10 $ hash substr 1 $ hash slice 1 $ hash substring 0 10 $ hash replace #  $ window location search replace ?  $ hash replace !  $ hash replace blah  $ hash blah $ blah hash $ <b> hash </b> |
+| autogenerated/Xss/DomBasedXss/jquery.js:34:5:34:9 | '<b>' | enclosingFunctionName | test |
+| autogenerated/Xss/DomBasedXss/jquery.js:34:5:34:9 | '<b>' | fileImports |  |
+| autogenerated/Xss/DomBasedXss/jquery.js:34:5:34:9 | '<b>' | stringConcatenatedWith |  -endpoint- hash + '</b>' |
+| autogenerated/Xss/DomBasedXss/jquery.js:34:5:34:25 | '<b>' + ...  '</b>' | CalleeFlexibleAccessPath | $ |
+| autogenerated/Xss/DomBasedXss/jquery.js:34:5:34:25 | '<b>' + ...  '</b>' | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/jquery.js:34:5:34:25 | '<b>' + ...  '</b>' | contextFunctionInterfaces | test() |
+| autogenerated/Xss/DomBasedXss/jquery.js:34:5:34:25 | '<b>' + ...  '</b>' | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/jquery.js:34:5:34:25 | '<b>' + ...  '</b>' | enclosingFunctionBody | tainted document location search $ tainted $ body tainted $ . tainted $ <div id=" tainted "> $ body html XSS:  tainted $ window location hash $ <b> location toString </b> elm document getElementById x elm innerHTML decodeURIComponent window location hash elm innerHTML decodeURIComponent window location search elm innerHTML decodeURIComponent window location toString hash window location hash $ hash $ hash substring 1 $ hash substring 1 10 $ hash substr 1 $ hash slice 1 $ hash substring 0 10 $ hash replace #  $ window location search replace ?  $ hash replace !  $ hash replace blah  $ hash blah $ blah hash $ <b> hash </b> |
+| autogenerated/Xss/DomBasedXss/jquery.js:34:5:34:25 | '<b>' + ...  '</b>' | enclosingFunctionName | test |
+| autogenerated/Xss/DomBasedXss/jquery.js:34:5:34:25 | '<b>' + ...  '</b>' | fileImports |  |
+| autogenerated/Xss/DomBasedXss/jquery.js:34:13:34:16 | hash | contextFunctionInterfaces | test() |
+| autogenerated/Xss/DomBasedXss/jquery.js:34:13:34:16 | hash | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/jquery.js:34:13:34:16 | hash | enclosingFunctionBody | tainted document location search $ tainted $ body tainted $ . tainted $ <div id=" tainted "> $ body html XSS:  tainted $ window location hash $ <b> location toString </b> elm document getElementById x elm innerHTML decodeURIComponent window location hash elm innerHTML decodeURIComponent window location search elm innerHTML decodeURIComponent window location toString hash window location hash $ hash $ hash substring 1 $ hash substring 1 10 $ hash substr 1 $ hash slice 1 $ hash substring 0 10 $ hash replace #  $ window location search replace ?  $ hash replace !  $ hash replace blah  $ hash blah $ blah hash $ <b> hash </b> |
+| autogenerated/Xss/DomBasedXss/jquery.js:34:13:34:16 | hash | enclosingFunctionName | test |
+| autogenerated/Xss/DomBasedXss/jquery.js:34:13:34:16 | hash | fileImports |  |
+| autogenerated/Xss/DomBasedXss/jquery.js:34:13:34:16 | hash | stringConcatenatedWith | '<b>' -endpoint- '</b>' |
+| autogenerated/Xss/DomBasedXss/jquery.js:34:20:34:25 | '</b>' | contextFunctionInterfaces | test() |
+| autogenerated/Xss/DomBasedXss/jquery.js:34:20:34:25 | '</b>' | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/jquery.js:34:20:34:25 | '</b>' | enclosingFunctionBody | tainted document location search $ tainted $ body tainted $ . tainted $ <div id=" tainted "> $ body html XSS:  tainted $ window location hash $ <b> location toString </b> elm document getElementById x elm innerHTML decodeURIComponent window location hash elm innerHTML decodeURIComponent window location search elm innerHTML decodeURIComponent window location toString hash window location hash $ hash $ hash substring 1 $ hash substring 1 10 $ hash substr 1 $ hash slice 1 $ hash substring 0 10 $ hash replace #  $ window location search replace ?  $ hash replace !  $ hash replace blah  $ hash blah $ blah hash $ <b> hash </b> |
+| autogenerated/Xss/DomBasedXss/jquery.js:34:20:34:25 | '</b>' | enclosingFunctionName | test |
+| autogenerated/Xss/DomBasedXss/jquery.js:34:20:34:25 | '</b>' | fileImports |  |
+| autogenerated/Xss/DomBasedXss/jquery.js:34:20:34:25 | '</b>' | stringConcatenatedWith | '<b>' + hash -endpoint-  |
 | autogenerated/Xss/DomBasedXss/jwt-server.js:1:23:1:31 | 'express' | CalleeFlexibleAccessPath | require |
 | autogenerated/Xss/DomBasedXss/jwt-server.js:1:23:1:31 | 'express' | InputArgumentIndex | 0 |
 | autogenerated/Xss/DomBasedXss/jwt-server.js:1:23:1:31 | 'express' | calleeImports |  |
@@ -11957,6 +15643,105 @@ tokenFeatures
 | autogenerated/Xss/DomBasedXss/translate.js:11:56:11:61 | 'term' | enclosingFunctionName |  |
 | autogenerated/Xss/DomBasedXss/translate.js:11:56:11:61 | 'term' | fileImports |  |
 | autogenerated/Xss/DomBasedXss/translate.js:11:56:11:61 | 'term' | receiverName | searchParams |
+| autogenerated/Xss/DomBasedXss/trusted-types.js:2:47:2:49 | 'x' | CalleeFlexibleAccessPath | trustedTypes.createPolicy |
+| autogenerated/Xss/DomBasedXss/trusted-types.js:2:47:2:49 | 'x' | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/trusted-types.js:2:47:2:49 | 'x' | contextFunctionInterfaces | createHTML(x)\ncreateHTML(x)\ncreateHTML(x) |
+| autogenerated/Xss/DomBasedXss/trusted-types.js:2:47:2:49 | 'x' | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/trusted-types.js:2:47:2:49 | 'x' | enclosingFunctionBody | policy1 trustedTypes createPolicy x createHTML x x policy1 createHTML window name policy2 trustedTypes createPolicy x createHTML x safe policy2 createHTML window name policy3 trustedTypes createPolicy x createHTML x x policy3 createHTML safe |
+| autogenerated/Xss/DomBasedXss/trusted-types.js:2:47:2:49 | 'x' | enclosingFunctionName |  |
+| autogenerated/Xss/DomBasedXss/trusted-types.js:2:47:2:49 | 'x' | fileImports |  |
+| autogenerated/Xss/DomBasedXss/trusted-types.js:2:47:2:49 | 'x' | receiverName | trustedTypes |
+| autogenerated/Xss/DomBasedXss/trusted-types.js:2:52:2:73 | { creat ...  => x } | CalleeFlexibleAccessPath | trustedTypes.createPolicy |
+| autogenerated/Xss/DomBasedXss/trusted-types.js:2:52:2:73 | { creat ...  => x } | InputArgumentIndex | 1 |
+| autogenerated/Xss/DomBasedXss/trusted-types.js:2:52:2:73 | { creat ...  => x } | contextFunctionInterfaces | createHTML(x)\ncreateHTML(x)\ncreateHTML(x) |
+| autogenerated/Xss/DomBasedXss/trusted-types.js:2:52:2:73 | { creat ...  => x } | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/trusted-types.js:2:52:2:73 | { creat ...  => x } | enclosingFunctionBody | policy1 trustedTypes createPolicy x createHTML x x policy1 createHTML window name policy2 trustedTypes createPolicy x createHTML x safe policy2 createHTML window name policy3 trustedTypes createPolicy x createHTML x x policy3 createHTML safe |
+| autogenerated/Xss/DomBasedXss/trusted-types.js:2:52:2:73 | { creat ...  => x } | enclosingFunctionName |  |
+| autogenerated/Xss/DomBasedXss/trusted-types.js:2:52:2:73 | { creat ...  => x } | fileImports |  |
+| autogenerated/Xss/DomBasedXss/trusted-types.js:2:52:2:73 | { creat ...  => x } | receiverName | trustedTypes |
+| autogenerated/Xss/DomBasedXss/trusted-types.js:2:66:2:71 | x => x | CalleeFlexibleAccessPath | trustedTypes.createPolicy |
+| autogenerated/Xss/DomBasedXss/trusted-types.js:2:66:2:71 | x => x | InputAccessPathFromCallee | 1.createHTML |
+| autogenerated/Xss/DomBasedXss/trusted-types.js:2:66:2:71 | x => x | InputArgumentIndex | 1 |
+| autogenerated/Xss/DomBasedXss/trusted-types.js:2:66:2:71 | x => x | assignedToPropName | createHTML |
+| autogenerated/Xss/DomBasedXss/trusted-types.js:2:66:2:71 | x => x | contextFunctionInterfaces | createHTML(x)\ncreateHTML(x)\ncreateHTML(x) |
+| autogenerated/Xss/DomBasedXss/trusted-types.js:2:66:2:71 | x => x | contextSurroundingFunctionParameters | ()\n(x) |
+| autogenerated/Xss/DomBasedXss/trusted-types.js:2:66:2:71 | x => x | enclosingFunctionBody | policy1 trustedTypes createPolicy x createHTML x x policy1 createHTML window name policy2 trustedTypes createPolicy x createHTML x safe policy2 createHTML window name policy3 trustedTypes createPolicy x createHTML x x policy3 createHTML safe |
+| autogenerated/Xss/DomBasedXss/trusted-types.js:2:66:2:71 | x => x | enclosingFunctionName |  |
+| autogenerated/Xss/DomBasedXss/trusted-types.js:2:66:2:71 | x => x | fileImports |  |
+| autogenerated/Xss/DomBasedXss/trusted-types.js:3:24:3:34 | window.name | CalleeFlexibleAccessPath | policy1.createHTML |
+| autogenerated/Xss/DomBasedXss/trusted-types.js:3:24:3:34 | window.name | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/trusted-types.js:3:24:3:34 | window.name | contextFunctionInterfaces | createHTML(x)\ncreateHTML(x)\ncreateHTML(x) |
+| autogenerated/Xss/DomBasedXss/trusted-types.js:3:24:3:34 | window.name | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/trusted-types.js:3:24:3:34 | window.name | enclosingFunctionBody | policy1 trustedTypes createPolicy x createHTML x x policy1 createHTML window name policy2 trustedTypes createPolicy x createHTML x safe policy2 createHTML window name policy3 trustedTypes createPolicy x createHTML x x policy3 createHTML safe |
+| autogenerated/Xss/DomBasedXss/trusted-types.js:3:24:3:34 | window.name | enclosingFunctionName |  |
+| autogenerated/Xss/DomBasedXss/trusted-types.js:3:24:3:34 | window.name | fileImports |  |
+| autogenerated/Xss/DomBasedXss/trusted-types.js:3:24:3:34 | window.name | receiverName | policy1 |
+| autogenerated/Xss/DomBasedXss/trusted-types.js:5:47:5:49 | 'x' | CalleeFlexibleAccessPath | trustedTypes.createPolicy |
+| autogenerated/Xss/DomBasedXss/trusted-types.js:5:47:5:49 | 'x' | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/trusted-types.js:5:47:5:49 | 'x' | contextFunctionInterfaces | createHTML(x)\ncreateHTML(x)\ncreateHTML(x) |
+| autogenerated/Xss/DomBasedXss/trusted-types.js:5:47:5:49 | 'x' | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/trusted-types.js:5:47:5:49 | 'x' | enclosingFunctionBody | policy1 trustedTypes createPolicy x createHTML x x policy1 createHTML window name policy2 trustedTypes createPolicy x createHTML x safe policy2 createHTML window name policy3 trustedTypes createPolicy x createHTML x x policy3 createHTML safe |
+| autogenerated/Xss/DomBasedXss/trusted-types.js:5:47:5:49 | 'x' | enclosingFunctionName |  |
+| autogenerated/Xss/DomBasedXss/trusted-types.js:5:47:5:49 | 'x' | fileImports |  |
+| autogenerated/Xss/DomBasedXss/trusted-types.js:5:47:5:49 | 'x' | receiverName | trustedTypes |
+| autogenerated/Xss/DomBasedXss/trusted-types.js:5:52:5:78 | { creat ... safe' } | CalleeFlexibleAccessPath | trustedTypes.createPolicy |
+| autogenerated/Xss/DomBasedXss/trusted-types.js:5:52:5:78 | { creat ... safe' } | InputArgumentIndex | 1 |
+| autogenerated/Xss/DomBasedXss/trusted-types.js:5:52:5:78 | { creat ... safe' } | contextFunctionInterfaces | createHTML(x)\ncreateHTML(x)\ncreateHTML(x) |
+| autogenerated/Xss/DomBasedXss/trusted-types.js:5:52:5:78 | { creat ... safe' } | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/trusted-types.js:5:52:5:78 | { creat ... safe' } | enclosingFunctionBody | policy1 trustedTypes createPolicy x createHTML x x policy1 createHTML window name policy2 trustedTypes createPolicy x createHTML x safe policy2 createHTML window name policy3 trustedTypes createPolicy x createHTML x x policy3 createHTML safe |
+| autogenerated/Xss/DomBasedXss/trusted-types.js:5:52:5:78 | { creat ... safe' } | enclosingFunctionName |  |
+| autogenerated/Xss/DomBasedXss/trusted-types.js:5:52:5:78 | { creat ... safe' } | fileImports |  |
+| autogenerated/Xss/DomBasedXss/trusted-types.js:5:52:5:78 | { creat ... safe' } | receiverName | trustedTypes |
+| autogenerated/Xss/DomBasedXss/trusted-types.js:5:66:5:76 | x => 'safe' | CalleeFlexibleAccessPath | trustedTypes.createPolicy |
+| autogenerated/Xss/DomBasedXss/trusted-types.js:5:66:5:76 | x => 'safe' | InputAccessPathFromCallee | 1.createHTML |
+| autogenerated/Xss/DomBasedXss/trusted-types.js:5:66:5:76 | x => 'safe' | InputArgumentIndex | 1 |
+| autogenerated/Xss/DomBasedXss/trusted-types.js:5:66:5:76 | x => 'safe' | assignedToPropName | createHTML |
+| autogenerated/Xss/DomBasedXss/trusted-types.js:5:66:5:76 | x => 'safe' | contextFunctionInterfaces | createHTML(x)\ncreateHTML(x)\ncreateHTML(x) |
+| autogenerated/Xss/DomBasedXss/trusted-types.js:5:66:5:76 | x => 'safe' | contextSurroundingFunctionParameters | ()\n(x) |
+| autogenerated/Xss/DomBasedXss/trusted-types.js:5:66:5:76 | x => 'safe' | enclosingFunctionBody | policy1 trustedTypes createPolicy x createHTML x x policy1 createHTML window name policy2 trustedTypes createPolicy x createHTML x safe policy2 createHTML window name policy3 trustedTypes createPolicy x createHTML x x policy3 createHTML safe |
+| autogenerated/Xss/DomBasedXss/trusted-types.js:5:66:5:76 | x => 'safe' | enclosingFunctionName |  |
+| autogenerated/Xss/DomBasedXss/trusted-types.js:5:66:5:76 | x => 'safe' | fileImports |  |
+| autogenerated/Xss/DomBasedXss/trusted-types.js:6:24:6:34 | window.name | CalleeFlexibleAccessPath | policy2.createHTML |
+| autogenerated/Xss/DomBasedXss/trusted-types.js:6:24:6:34 | window.name | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/trusted-types.js:6:24:6:34 | window.name | contextFunctionInterfaces | createHTML(x)\ncreateHTML(x)\ncreateHTML(x) |
+| autogenerated/Xss/DomBasedXss/trusted-types.js:6:24:6:34 | window.name | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/trusted-types.js:6:24:6:34 | window.name | enclosingFunctionBody | policy1 trustedTypes createPolicy x createHTML x x policy1 createHTML window name policy2 trustedTypes createPolicy x createHTML x safe policy2 createHTML window name policy3 trustedTypes createPolicy x createHTML x x policy3 createHTML safe |
+| autogenerated/Xss/DomBasedXss/trusted-types.js:6:24:6:34 | window.name | enclosingFunctionName |  |
+| autogenerated/Xss/DomBasedXss/trusted-types.js:6:24:6:34 | window.name | fileImports |  |
+| autogenerated/Xss/DomBasedXss/trusted-types.js:6:24:6:34 | window.name | receiverName | policy2 |
+| autogenerated/Xss/DomBasedXss/trusted-types.js:8:47:8:49 | 'x' | CalleeFlexibleAccessPath | trustedTypes.createPolicy |
+| autogenerated/Xss/DomBasedXss/trusted-types.js:8:47:8:49 | 'x' | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/trusted-types.js:8:47:8:49 | 'x' | contextFunctionInterfaces | createHTML(x)\ncreateHTML(x)\ncreateHTML(x) |
+| autogenerated/Xss/DomBasedXss/trusted-types.js:8:47:8:49 | 'x' | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/trusted-types.js:8:47:8:49 | 'x' | enclosingFunctionBody | policy1 trustedTypes createPolicy x createHTML x x policy1 createHTML window name policy2 trustedTypes createPolicy x createHTML x safe policy2 createHTML window name policy3 trustedTypes createPolicy x createHTML x x policy3 createHTML safe |
+| autogenerated/Xss/DomBasedXss/trusted-types.js:8:47:8:49 | 'x' | enclosingFunctionName |  |
+| autogenerated/Xss/DomBasedXss/trusted-types.js:8:47:8:49 | 'x' | fileImports |  |
+| autogenerated/Xss/DomBasedXss/trusted-types.js:8:47:8:49 | 'x' | receiverName | trustedTypes |
+| autogenerated/Xss/DomBasedXss/trusted-types.js:8:52:8:73 | { creat ...  => x } | CalleeFlexibleAccessPath | trustedTypes.createPolicy |
+| autogenerated/Xss/DomBasedXss/trusted-types.js:8:52:8:73 | { creat ...  => x } | InputArgumentIndex | 1 |
+| autogenerated/Xss/DomBasedXss/trusted-types.js:8:52:8:73 | { creat ...  => x } | contextFunctionInterfaces | createHTML(x)\ncreateHTML(x)\ncreateHTML(x) |
+| autogenerated/Xss/DomBasedXss/trusted-types.js:8:52:8:73 | { creat ...  => x } | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/trusted-types.js:8:52:8:73 | { creat ...  => x } | enclosingFunctionBody | policy1 trustedTypes createPolicy x createHTML x x policy1 createHTML window name policy2 trustedTypes createPolicy x createHTML x safe policy2 createHTML window name policy3 trustedTypes createPolicy x createHTML x x policy3 createHTML safe |
+| autogenerated/Xss/DomBasedXss/trusted-types.js:8:52:8:73 | { creat ...  => x } | enclosingFunctionName |  |
+| autogenerated/Xss/DomBasedXss/trusted-types.js:8:52:8:73 | { creat ...  => x } | fileImports |  |
+| autogenerated/Xss/DomBasedXss/trusted-types.js:8:52:8:73 | { creat ...  => x } | receiverName | trustedTypes |
+| autogenerated/Xss/DomBasedXss/trusted-types.js:8:66:8:71 | x => x | CalleeFlexibleAccessPath | trustedTypes.createPolicy |
+| autogenerated/Xss/DomBasedXss/trusted-types.js:8:66:8:71 | x => x | InputAccessPathFromCallee | 1.createHTML |
+| autogenerated/Xss/DomBasedXss/trusted-types.js:8:66:8:71 | x => x | InputArgumentIndex | 1 |
+| autogenerated/Xss/DomBasedXss/trusted-types.js:8:66:8:71 | x => x | assignedToPropName | createHTML |
+| autogenerated/Xss/DomBasedXss/trusted-types.js:8:66:8:71 | x => x | contextFunctionInterfaces | createHTML(x)\ncreateHTML(x)\ncreateHTML(x) |
+| autogenerated/Xss/DomBasedXss/trusted-types.js:8:66:8:71 | x => x | contextSurroundingFunctionParameters | ()\n(x) |
+| autogenerated/Xss/DomBasedXss/trusted-types.js:8:66:8:71 | x => x | enclosingFunctionBody | policy1 trustedTypes createPolicy x createHTML x x policy1 createHTML window name policy2 trustedTypes createPolicy x createHTML x safe policy2 createHTML window name policy3 trustedTypes createPolicy x createHTML x x policy3 createHTML safe |
+| autogenerated/Xss/DomBasedXss/trusted-types.js:8:66:8:71 | x => x | enclosingFunctionName |  |
+| autogenerated/Xss/DomBasedXss/trusted-types.js:8:66:8:71 | x => x | fileImports |  |
+| autogenerated/Xss/DomBasedXss/trusted-types.js:9:24:9:29 | 'safe' | CalleeFlexibleAccessPath | policy3.createHTML |
+| autogenerated/Xss/DomBasedXss/trusted-types.js:9:24:9:29 | 'safe' | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/trusted-types.js:9:24:9:29 | 'safe' | contextFunctionInterfaces | createHTML(x)\ncreateHTML(x)\ncreateHTML(x) |
+| autogenerated/Xss/DomBasedXss/trusted-types.js:9:24:9:29 | 'safe' | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/trusted-types.js:9:24:9:29 | 'safe' | enclosingFunctionBody | policy1 trustedTypes createPolicy x createHTML x x policy1 createHTML window name policy2 trustedTypes createPolicy x createHTML x safe policy2 createHTML window name policy3 trustedTypes createPolicy x createHTML x x policy3 createHTML safe |
+| autogenerated/Xss/DomBasedXss/trusted-types.js:9:24:9:29 | 'safe' | enclosingFunctionName |  |
+| autogenerated/Xss/DomBasedXss/trusted-types.js:9:24:9:29 | 'safe' | fileImports |  |
+| autogenerated/Xss/DomBasedXss/trusted-types.js:9:24:9:29 | 'safe' | receiverName | policy3 |
 | autogenerated/Xss/DomBasedXss/tst3.js:1:35:1:39 | "foo" | CalleeFlexibleAccessPath | document.getElementById |
 | autogenerated/Xss/DomBasedXss/tst3.js:1:35:1:39 | "foo" | InputArgumentIndex | 0 |
 | autogenerated/Xss/DomBasedXss/tst3.js:1:35:1:39 | "foo" | contextFunctionInterfaces |  |
@@ -12095,1751 +15880,2210 @@ tokenFeatures
 | autogenerated/Xss/DomBasedXss/tst3.js:15:23:15:29 | data[p] | receiverName | foo |
 | autogenerated/Xss/DomBasedXss/tst.js:5:5:5:10 | 'myId' | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/DomBasedXss/tst.js:5:5:5:10 | 'myId' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:5:5:5:10 | 'myId' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:5:5:5:10 | 'myId' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:5:5:5:10 | 'myId' | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:5:5:5:10 | 'myId' | enclosingFunctionBody | target document location search $ myId html target document write <OPTION value=1> document location href substring document location href indexOf default= 8 </OPTION> document write <OPTION value=2>English</OPTION> $ <div style="width: target px"> $ <div style="width: target px"> $ <div style="width: parseInt target px"> params URL document location searchParams $ name html params get name searchParams URLSearchParams target substring 1 $ name html searchParams get name |
 | autogenerated/Xss/DomBasedXss/tst.js:5:5:5:10 | 'myId' | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/tst.js:5:5:5:10 | 'myId' | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:5:5:5:10 | 'myId' | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:5:18:5:23 | target | CalleeFlexibleAccessPath | $().html |
 | autogenerated/Xss/DomBasedXss/tst.js:5:18:5:23 | target | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:5:18:5:23 | target | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:5:18:5:23 | target | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:5:18:5:23 | target | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:5:18:5:23 | target | enclosingFunctionBody | target document location search $ myId html target document write <OPTION value=1> document location href substring document location href indexOf default= 8 </OPTION> document write <OPTION value=2>English</OPTION> $ <div style="width: target px"> $ <div style="width: target px"> $ <div style="width: parseInt target px"> params URL document location searchParams $ name html params get name searchParams URLSearchParams target substring 1 $ name html searchParams get name |
 | autogenerated/Xss/DomBasedXss/tst.js:5:18:5:23 | target | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/tst.js:5:18:5:23 | target | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:8:18:8:35 | "<OPTION value=1>" | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:5:18:5:23 | target | fileImports | ansi-to-html |
+| autogenerated/Xss/DomBasedXss/tst.js:8:18:8:35 | "<OPTION value=1>" | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:8:18:8:35 | "<OPTION value=1>" | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:8:18:8:35 | "<OPTION value=1>" | enclosingFunctionBody | target document location search $ myId html target document write <OPTION value=1> document location href substring document location href indexOf default= 8 </OPTION> document write <OPTION value=2>English</OPTION> $ <div style="width: target px"> $ <div style="width: target px"> $ <div style="width: parseInt target px"> params URL document location searchParams $ name html params get name searchParams URLSearchParams target substring 1 $ name html searchParams get name |
 | autogenerated/Xss/DomBasedXss/tst.js:8:18:8:35 | "<OPTION value=1>" | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/tst.js:8:18:8:35 | "<OPTION value=1>" | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:8:18:8:35 | "<OPTION value=1>" | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:8:18:8:35 | "<OPTION value=1>" | stringConcatenatedWith |  -endpoint- document.location.href.substring() + '</OPTION>' |
 | autogenerated/Xss/DomBasedXss/tst.js:8:18:8:126 | "<OPTIO ... PTION>" | CalleeFlexibleAccessPath | document.write |
 | autogenerated/Xss/DomBasedXss/tst.js:8:18:8:126 | "<OPTIO ... PTION>" | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:8:18:8:126 | "<OPTIO ... PTION>" | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:8:18:8:126 | "<OPTIO ... PTION>" | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:8:18:8:126 | "<OPTIO ... PTION>" | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:8:18:8:126 | "<OPTIO ... PTION>" | enclosingFunctionBody | target document location search $ myId html target document write <OPTION value=1> document location href substring document location href indexOf default= 8 </OPTION> document write <OPTION value=2>English</OPTION> $ <div style="width: target px"> $ <div style="width: target px"> $ <div style="width: parseInt target px"> params URL document location searchParams $ name html params get name searchParams URLSearchParams target substring 1 $ name html searchParams get name |
 | autogenerated/Xss/DomBasedXss/tst.js:8:18:8:126 | "<OPTIO ... PTION>" | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/tst.js:8:18:8:126 | "<OPTIO ... PTION>" | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:8:18:8:126 | "<OPTIO ... PTION>" | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:8:18:8:126 | "<OPTIO ... PTION>" | receiverName | document |
-| autogenerated/Xss/DomBasedXss/tst.js:8:37:8:114 | documen ... t=")+8) | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:8:37:8:114 | documen ... t=")+8) | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:8:37:8:114 | documen ... t=")+8) | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:8:37:8:114 | documen ... t=")+8) | enclosingFunctionBody | target document location search $ myId html target document write <OPTION value=1> document location href substring document location href indexOf default= 8 </OPTION> document write <OPTION value=2>English</OPTION> $ <div style="width: target px"> $ <div style="width: target px"> $ <div style="width: parseInt target px"> params URL document location searchParams $ name html params get name searchParams URLSearchParams target substring 1 $ name html searchParams get name |
 | autogenerated/Xss/DomBasedXss/tst.js:8:37:8:114 | documen ... t=")+8) | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/tst.js:8:37:8:114 | documen ... t=")+8) | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:8:37:8:114 | documen ... t=")+8) | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:8:37:8:114 | documen ... t=")+8) | stringConcatenatedWith | '<OPTION value=1>' -endpoint- '</OPTION>' |
 | autogenerated/Xss/DomBasedXss/tst.js:8:70:8:113 | documen ... lt=")+8 | CalleeFlexibleAccessPath | document.location.href.substring |
 | autogenerated/Xss/DomBasedXss/tst.js:8:70:8:113 | documen ... lt=")+8 | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:8:70:8:113 | documen ... lt=")+8 | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:8:70:8:113 | documen ... lt=")+8 | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:8:70:8:113 | documen ... lt=")+8 | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:8:70:8:113 | documen ... lt=")+8 | enclosingFunctionBody | target document location search $ myId html target document write <OPTION value=1> document location href substring document location href indexOf default= 8 </OPTION> document write <OPTION value=2>English</OPTION> $ <div style="width: target px"> $ <div style="width: target px"> $ <div style="width: parseInt target px"> params URL document location searchParams $ name html params get name searchParams URLSearchParams target substring 1 $ name html searchParams get name |
 | autogenerated/Xss/DomBasedXss/tst.js:8:70:8:113 | documen ... lt=")+8 | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/tst.js:8:70:8:113 | documen ... lt=")+8 | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:8:70:8:113 | documen ... lt=")+8 | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:8:101:8:110 | "default=" | CalleeFlexibleAccessPath | document.location.href.indexOf |
 | autogenerated/Xss/DomBasedXss/tst.js:8:101:8:110 | "default=" | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:8:101:8:110 | "default=" | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:8:101:8:110 | "default=" | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:8:101:8:110 | "default=" | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:8:101:8:110 | "default=" | enclosingFunctionBody | target document location search $ myId html target document write <OPTION value=1> document location href substring document location href indexOf default= 8 </OPTION> document write <OPTION value=2>English</OPTION> $ <div style="width: target px"> $ <div style="width: target px"> $ <div style="width: parseInt target px"> params URL document location searchParams $ name html params get name searchParams URLSearchParams target substring 1 $ name html searchParams get name |
 | autogenerated/Xss/DomBasedXss/tst.js:8:101:8:110 | "default=" | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/tst.js:8:101:8:110 | "default=" | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:8:116:8:126 | "</OPTION>" | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:8:101:8:110 | "default=" | fileImports | ansi-to-html |
+| autogenerated/Xss/DomBasedXss/tst.js:8:116:8:126 | "</OPTION>" | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:8:116:8:126 | "</OPTION>" | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:8:116:8:126 | "</OPTION>" | enclosingFunctionBody | target document location search $ myId html target document write <OPTION value=1> document location href substring document location href indexOf default= 8 </OPTION> document write <OPTION value=2>English</OPTION> $ <div style="width: target px"> $ <div style="width: target px"> $ <div style="width: parseInt target px"> params URL document location searchParams $ name html params get name searchParams URLSearchParams target substring 1 $ name html searchParams get name |
 | autogenerated/Xss/DomBasedXss/tst.js:8:116:8:126 | "</OPTION>" | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/tst.js:8:116:8:126 | "</OPTION>" | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:8:116:8:126 | "</OPTION>" | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:8:116:8:126 | "</OPTION>" | stringConcatenatedWith | '<OPTION value=1>' + document.location.href.substring() -endpoint-  |
 | autogenerated/Xss/DomBasedXss/tst.js:9:18:9:51 | "<OPTIO ... PTION>" | CalleeFlexibleAccessPath | document.write |
 | autogenerated/Xss/DomBasedXss/tst.js:9:18:9:51 | "<OPTIO ... PTION>" | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:9:18:9:51 | "<OPTIO ... PTION>" | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:9:18:9:51 | "<OPTIO ... PTION>" | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:9:18:9:51 | "<OPTIO ... PTION>" | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:9:18:9:51 | "<OPTIO ... PTION>" | enclosingFunctionBody | target document location search $ myId html target document write <OPTION value=1> document location href substring document location href indexOf default= 8 </OPTION> document write <OPTION value=2>English</OPTION> $ <div style="width: target px"> $ <div style="width: target px"> $ <div style="width: parseInt target px"> params URL document location searchParams $ name html params get name searchParams URLSearchParams target substring 1 $ name html searchParams get name |
 | autogenerated/Xss/DomBasedXss/tst.js:9:18:9:51 | "<OPTIO ... PTION>" | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/tst.js:9:18:9:51 | "<OPTIO ... PTION>" | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:9:18:9:51 | "<OPTIO ... PTION>" | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:9:18:9:51 | "<OPTIO ... PTION>" | receiverName | document |
-| autogenerated/Xss/DomBasedXss/tst.js:12:5:12:24 | '<div style="width:' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:12:5:12:24 | '<div style="width:' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:12:5:12:24 | '<div style="width:' | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:12:5:12:24 | '<div style="width:' | enclosingFunctionBody | target document location search $ myId html target document write <OPTION value=1> document location href substring document location href indexOf default= 8 </OPTION> document write <OPTION value=2>English</OPTION> $ <div style="width: target px"> $ <div style="width: target px"> $ <div style="width: parseInt target px"> params URL document location searchParams $ name html params get name searchParams URLSearchParams target substring 1 $ name html searchParams get name |
 | autogenerated/Xss/DomBasedXss/tst.js:12:5:12:24 | '<div style="width:' | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/tst.js:12:5:12:24 | '<div style="width:' | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:12:5:12:24 | '<div style="width:' | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:12:5:12:24 | '<div style="width:' | stringConcatenatedWith |  -endpoint- target + 'px">' |
 | autogenerated/Xss/DomBasedXss/tst.js:12:5:12:42 | '<div s ...  'px">' | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/DomBasedXss/tst.js:12:5:12:42 | '<div s ...  'px">' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:12:5:12:42 | '<div s ...  'px">' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:12:5:12:42 | '<div s ...  'px">' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:12:5:12:42 | '<div s ...  'px">' | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:12:5:12:42 | '<div s ...  'px">' | enclosingFunctionBody | target document location search $ myId html target document write <OPTION value=1> document location href substring document location href indexOf default= 8 </OPTION> document write <OPTION value=2>English</OPTION> $ <div style="width: target px"> $ <div style="width: target px"> $ <div style="width: parseInt target px"> params URL document location searchParams $ name html params get name searchParams URLSearchParams target substring 1 $ name html searchParams get name |
 | autogenerated/Xss/DomBasedXss/tst.js:12:5:12:42 | '<div s ...  'px">' | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/tst.js:12:5:12:42 | '<div s ...  'px">' | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:12:28:12:33 | target | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:12:5:12:42 | '<div s ...  'px">' | fileImports | ansi-to-html |
+| autogenerated/Xss/DomBasedXss/tst.js:12:28:12:33 | target | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:12:28:12:33 | target | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:12:28:12:33 | target | enclosingFunctionBody | target document location search $ myId html target document write <OPTION value=1> document location href substring document location href indexOf default= 8 </OPTION> document write <OPTION value=2>English</OPTION> $ <div style="width: target px"> $ <div style="width: target px"> $ <div style="width: parseInt target px"> params URL document location searchParams $ name html params get name searchParams URLSearchParams target substring 1 $ name html searchParams get name |
 | autogenerated/Xss/DomBasedXss/tst.js:12:28:12:33 | target | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/tst.js:12:28:12:33 | target | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:12:28:12:33 | target | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:12:28:12:33 | target | stringConcatenatedWith | '<div style="width:' -endpoint- 'px">' |
-| autogenerated/Xss/DomBasedXss/tst.js:12:37:12:42 | 'px">' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:12:37:12:42 | 'px">' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:12:37:12:42 | 'px">' | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:12:37:12:42 | 'px">' | enclosingFunctionBody | target document location search $ myId html target document write <OPTION value=1> document location href substring document location href indexOf default= 8 </OPTION> document write <OPTION value=2>English</OPTION> $ <div style="width: target px"> $ <div style="width: target px"> $ <div style="width: parseInt target px"> params URL document location searchParams $ name html params get name searchParams URLSearchParams target substring 1 $ name html searchParams get name |
 | autogenerated/Xss/DomBasedXss/tst.js:12:37:12:42 | 'px">' | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/tst.js:12:37:12:42 | 'px">' | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:12:37:12:42 | 'px">' | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:12:37:12:42 | 'px">' | stringConcatenatedWith | '<div style="width:' + target -endpoint-  |
-| autogenerated/Xss/DomBasedXss/tst.js:14:5:14:24 | '<div style="width:' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:14:5:14:24 | '<div style="width:' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:14:5:14:24 | '<div style="width:' | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:14:5:14:24 | '<div style="width:' | enclosingFunctionBody | target document location search $ myId html target document write <OPTION value=1> document location href substring document location href indexOf default= 8 </OPTION> document write <OPTION value=2>English</OPTION> $ <div style="width: target px"> $ <div style="width: target px"> $ <div style="width: parseInt target px"> params URL document location searchParams $ name html params get name searchParams URLSearchParams target substring 1 $ name html searchParams get name |
 | autogenerated/Xss/DomBasedXss/tst.js:14:5:14:24 | '<div style="width:' | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/tst.js:14:5:14:24 | '<div style="width:' | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:14:5:14:24 | '<div style="width:' | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:14:5:14:24 | '<div style="width:' | stringConcatenatedWith |  -endpoint- ? + 'px">' |
 | autogenerated/Xss/DomBasedXss/tst.js:14:5:14:43 | '<div s ...  'px">' | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/DomBasedXss/tst.js:14:5:14:43 | '<div s ...  'px">' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:14:5:14:43 | '<div s ...  'px">' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:14:5:14:43 | '<div s ...  'px">' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:14:5:14:43 | '<div s ...  'px">' | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:14:5:14:43 | '<div s ...  'px">' | enclosingFunctionBody | target document location search $ myId html target document write <OPTION value=1> document location href substring document location href indexOf default= 8 </OPTION> document write <OPTION value=2>English</OPTION> $ <div style="width: target px"> $ <div style="width: target px"> $ <div style="width: parseInt target px"> params URL document location searchParams $ name html params get name searchParams URLSearchParams target substring 1 $ name html searchParams get name |
 | autogenerated/Xss/DomBasedXss/tst.js:14:5:14:43 | '<div s ...  'px">' | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/tst.js:14:5:14:43 | '<div s ...  'px">' | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:14:28:14:34 | +target | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:14:5:14:43 | '<div s ...  'px">' | fileImports | ansi-to-html |
+| autogenerated/Xss/DomBasedXss/tst.js:14:28:14:34 | +target | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:14:28:14:34 | +target | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:14:28:14:34 | +target | enclosingFunctionBody | target document location search $ myId html target document write <OPTION value=1> document location href substring document location href indexOf default= 8 </OPTION> document write <OPTION value=2>English</OPTION> $ <div style="width: target px"> $ <div style="width: target px"> $ <div style="width: parseInt target px"> params URL document location searchParams $ name html params get name searchParams URLSearchParams target substring 1 $ name html searchParams get name |
 | autogenerated/Xss/DomBasedXss/tst.js:14:28:14:34 | +target | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/tst.js:14:28:14:34 | +target | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:14:28:14:34 | +target | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:14:28:14:34 | +target | stringConcatenatedWith | '<div style="width:' -endpoint- 'px">' |
-| autogenerated/Xss/DomBasedXss/tst.js:14:38:14:43 | 'px">' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:14:38:14:43 | 'px">' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:14:38:14:43 | 'px">' | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:14:38:14:43 | 'px">' | enclosingFunctionBody | target document location search $ myId html target document write <OPTION value=1> document location href substring document location href indexOf default= 8 </OPTION> document write <OPTION value=2>English</OPTION> $ <div style="width: target px"> $ <div style="width: target px"> $ <div style="width: parseInt target px"> params URL document location searchParams $ name html params get name searchParams URLSearchParams target substring 1 $ name html searchParams get name |
 | autogenerated/Xss/DomBasedXss/tst.js:14:38:14:43 | 'px">' | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/tst.js:14:38:14:43 | 'px">' | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:14:38:14:43 | 'px">' | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:14:38:14:43 | 'px">' | stringConcatenatedWith | '<div style="width:' + ? -endpoint-  |
-| autogenerated/Xss/DomBasedXss/tst.js:15:5:15:24 | '<div style="width:' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:15:5:15:24 | '<div style="width:' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:15:5:15:24 | '<div style="width:' | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:15:5:15:24 | '<div style="width:' | enclosingFunctionBody | target document location search $ myId html target document write <OPTION value=1> document location href substring document location href indexOf default= 8 </OPTION> document write <OPTION value=2>English</OPTION> $ <div style="width: target px"> $ <div style="width: target px"> $ <div style="width: parseInt target px"> params URL document location searchParams $ name html params get name searchParams URLSearchParams target substring 1 $ name html searchParams get name |
 | autogenerated/Xss/DomBasedXss/tst.js:15:5:15:24 | '<div style="width:' | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/tst.js:15:5:15:24 | '<div style="width:' | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:15:5:15:24 | '<div style="width:' | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:15:5:15:24 | '<div style="width:' | stringConcatenatedWith |  -endpoint- parseInt() + 'px">' |
 | autogenerated/Xss/DomBasedXss/tst.js:15:5:15:52 | '<div s ...  'px">' | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/DomBasedXss/tst.js:15:5:15:52 | '<div s ...  'px">' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:15:5:15:52 | '<div s ...  'px">' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:15:5:15:52 | '<div s ...  'px">' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:15:5:15:52 | '<div s ...  'px">' | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:15:5:15:52 | '<div s ...  'px">' | enclosingFunctionBody | target document location search $ myId html target document write <OPTION value=1> document location href substring document location href indexOf default= 8 </OPTION> document write <OPTION value=2>English</OPTION> $ <div style="width: target px"> $ <div style="width: target px"> $ <div style="width: parseInt target px"> params URL document location searchParams $ name html params get name searchParams URLSearchParams target substring 1 $ name html searchParams get name |
 | autogenerated/Xss/DomBasedXss/tst.js:15:5:15:52 | '<div s ...  'px">' | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/tst.js:15:5:15:52 | '<div s ...  'px">' | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:15:28:15:43 | parseInt(target) | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:15:5:15:52 | '<div s ...  'px">' | fileImports | ansi-to-html |
+| autogenerated/Xss/DomBasedXss/tst.js:15:28:15:43 | parseInt(target) | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:15:28:15:43 | parseInt(target) | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:15:28:15:43 | parseInt(target) | enclosingFunctionBody | target document location search $ myId html target document write <OPTION value=1> document location href substring document location href indexOf default= 8 </OPTION> document write <OPTION value=2>English</OPTION> $ <div style="width: target px"> $ <div style="width: target px"> $ <div style="width: parseInt target px"> params URL document location searchParams $ name html params get name searchParams URLSearchParams target substring 1 $ name html searchParams get name |
 | autogenerated/Xss/DomBasedXss/tst.js:15:28:15:43 | parseInt(target) | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/tst.js:15:28:15:43 | parseInt(target) | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:15:28:15:43 | parseInt(target) | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:15:28:15:43 | parseInt(target) | stringConcatenatedWith | '<div style="width:' -endpoint- 'px">' |
 | autogenerated/Xss/DomBasedXss/tst.js:15:37:15:42 | target | CalleeFlexibleAccessPath | parseInt |
 | autogenerated/Xss/DomBasedXss/tst.js:15:37:15:42 | target | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:15:37:15:42 | target | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:15:37:15:42 | target | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:15:37:15:42 | target | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:15:37:15:42 | target | enclosingFunctionBody | target document location search $ myId html target document write <OPTION value=1> document location href substring document location href indexOf default= 8 </OPTION> document write <OPTION value=2>English</OPTION> $ <div style="width: target px"> $ <div style="width: target px"> $ <div style="width: parseInt target px"> params URL document location searchParams $ name html params get name searchParams URLSearchParams target substring 1 $ name html searchParams get name |
 | autogenerated/Xss/DomBasedXss/tst.js:15:37:15:42 | target | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/tst.js:15:37:15:42 | target | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:15:47:15:52 | 'px">' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:15:37:15:42 | target | fileImports | ansi-to-html |
+| autogenerated/Xss/DomBasedXss/tst.js:15:47:15:52 | 'px">' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:15:47:15:52 | 'px">' | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:15:47:15:52 | 'px">' | enclosingFunctionBody | target document location search $ myId html target document write <OPTION value=1> document location href substring document location href indexOf default= 8 </OPTION> document write <OPTION value=2>English</OPTION> $ <div style="width: target px"> $ <div style="width: target px"> $ <div style="width: parseInt target px"> params URL document location searchParams $ name html params get name searchParams URLSearchParams target substring 1 $ name html searchParams get name |
 | autogenerated/Xss/DomBasedXss/tst.js:15:47:15:52 | 'px">' | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/tst.js:15:47:15:52 | 'px">' | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:15:47:15:52 | 'px">' | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:15:47:15:52 | 'px">' | stringConcatenatedWith | '<div style="width:' + parseInt() -endpoint-  |
 | autogenerated/Xss/DomBasedXss/tst.js:18:5:18:10 | 'name' | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/DomBasedXss/tst.js:18:5:18:10 | 'name' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:18:5:18:10 | 'name' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:18:5:18:10 | 'name' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:18:5:18:10 | 'name' | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:18:5:18:10 | 'name' | enclosingFunctionBody | target document location search $ myId html target document write <OPTION value=1> document location href substring document location href indexOf default= 8 </OPTION> document write <OPTION value=2>English</OPTION> $ <div style="width: target px"> $ <div style="width: target px"> $ <div style="width: parseInt target px"> params URL document location searchParams $ name html params get name searchParams URLSearchParams target substring 1 $ name html searchParams get name |
 | autogenerated/Xss/DomBasedXss/tst.js:18:5:18:10 | 'name' | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/tst.js:18:5:18:10 | 'name' | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:18:5:18:10 | 'name' | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:18:18:18:35 | params.get('name') | CalleeFlexibleAccessPath | $().html |
 | autogenerated/Xss/DomBasedXss/tst.js:18:18:18:35 | params.get('name') | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:18:18:18:35 | params.get('name') | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:18:18:18:35 | params.get('name') | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:18:18:18:35 | params.get('name') | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:18:18:18:35 | params.get('name') | enclosingFunctionBody | target document location search $ myId html target document write <OPTION value=1> document location href substring document location href indexOf default= 8 </OPTION> document write <OPTION value=2>English</OPTION> $ <div style="width: target px"> $ <div style="width: target px"> $ <div style="width: parseInt target px"> params URL document location searchParams $ name html params get name searchParams URLSearchParams target substring 1 $ name html searchParams get name |
 | autogenerated/Xss/DomBasedXss/tst.js:18:18:18:35 | params.get('name') | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/tst.js:18:18:18:35 | params.get('name') | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:18:18:18:35 | params.get('name') | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:18:29:18:34 | 'name' | CalleeFlexibleAccessPath | params.get |
 | autogenerated/Xss/DomBasedXss/tst.js:18:29:18:34 | 'name' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:18:29:18:34 | 'name' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:18:29:18:34 | 'name' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:18:29:18:34 | 'name' | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:18:29:18:34 | 'name' | enclosingFunctionBody | target document location search $ myId html target document write <OPTION value=1> document location href substring document location href indexOf default= 8 </OPTION> document write <OPTION value=2>English</OPTION> $ <div style="width: target px"> $ <div style="width: target px"> $ <div style="width: parseInt target px"> params URL document location searchParams $ name html params get name searchParams URLSearchParams target substring 1 $ name html searchParams get name |
 | autogenerated/Xss/DomBasedXss/tst.js:18:29:18:34 | 'name' | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/tst.js:18:29:18:34 | 'name' | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:18:29:18:34 | 'name' | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:18:29:18:34 | 'name' | receiverName | params |
 | autogenerated/Xss/DomBasedXss/tst.js:20:42:20:60 | target.substring(1) | CalleeFlexibleAccessPath | URLSearchParams |
 | autogenerated/Xss/DomBasedXss/tst.js:20:42:20:60 | target.substring(1) | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:20:42:20:60 | target.substring(1) | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:20:42:20:60 | target.substring(1) | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:20:42:20:60 | target.substring(1) | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:20:42:20:60 | target.substring(1) | enclosingFunctionBody | target document location search $ myId html target document write <OPTION value=1> document location href substring document location href indexOf default= 8 </OPTION> document write <OPTION value=2>English</OPTION> $ <div style="width: target px"> $ <div style="width: target px"> $ <div style="width: parseInt target px"> params URL document location searchParams $ name html params get name searchParams URLSearchParams target substring 1 $ name html searchParams get name |
 | autogenerated/Xss/DomBasedXss/tst.js:20:42:20:60 | target.substring(1) | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/tst.js:20:42:20:60 | target.substring(1) | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:20:42:20:60 | target.substring(1) | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:20:59:20:59 | 1 | CalleeFlexibleAccessPath | target.substring |
 | autogenerated/Xss/DomBasedXss/tst.js:20:59:20:59 | 1 | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:20:59:20:59 | 1 | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:20:59:20:59 | 1 | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:20:59:20:59 | 1 | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:20:59:20:59 | 1 | enclosingFunctionBody | target document location search $ myId html target document write <OPTION value=1> document location href substring document location href indexOf default= 8 </OPTION> document write <OPTION value=2>English</OPTION> $ <div style="width: target px"> $ <div style="width: target px"> $ <div style="width: parseInt target px"> params URL document location searchParams $ name html params get name searchParams URLSearchParams target substring 1 $ name html searchParams get name |
 | autogenerated/Xss/DomBasedXss/tst.js:20:59:20:59 | 1 | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/tst.js:20:59:20:59 | 1 | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:20:59:20:59 | 1 | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:20:59:20:59 | 1 | receiverName | target |
 | autogenerated/Xss/DomBasedXss/tst.js:21:5:21:10 | 'name' | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/DomBasedXss/tst.js:21:5:21:10 | 'name' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:21:5:21:10 | 'name' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:21:5:21:10 | 'name' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:21:5:21:10 | 'name' | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:21:5:21:10 | 'name' | enclosingFunctionBody | target document location search $ myId html target document write <OPTION value=1> document location href substring document location href indexOf default= 8 </OPTION> document write <OPTION value=2>English</OPTION> $ <div style="width: target px"> $ <div style="width: target px"> $ <div style="width: parseInt target px"> params URL document location searchParams $ name html params get name searchParams URLSearchParams target substring 1 $ name html searchParams get name |
 | autogenerated/Xss/DomBasedXss/tst.js:21:5:21:10 | 'name' | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/tst.js:21:5:21:10 | 'name' | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:21:5:21:10 | 'name' | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:21:18:21:41 | searchP ... 'name') | CalleeFlexibleAccessPath | $().html |
 | autogenerated/Xss/DomBasedXss/tst.js:21:18:21:41 | searchP ... 'name') | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:21:18:21:41 | searchP ... 'name') | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:21:18:21:41 | searchP ... 'name') | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:21:18:21:41 | searchP ... 'name') | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:21:18:21:41 | searchP ... 'name') | enclosingFunctionBody | target document location search $ myId html target document write <OPTION value=1> document location href substring document location href indexOf default= 8 </OPTION> document write <OPTION value=2>English</OPTION> $ <div style="width: target px"> $ <div style="width: target px"> $ <div style="width: parseInt target px"> params URL document location searchParams $ name html params get name searchParams URLSearchParams target substring 1 $ name html searchParams get name |
 | autogenerated/Xss/DomBasedXss/tst.js:21:18:21:41 | searchP ... 'name') | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/tst.js:21:18:21:41 | searchP ... 'name') | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:21:18:21:41 | searchP ... 'name') | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:21:35:21:40 | 'name' | CalleeFlexibleAccessPath | searchParams.get |
 | autogenerated/Xss/DomBasedXss/tst.js:21:35:21:40 | 'name' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:21:35:21:40 | 'name' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:21:35:21:40 | 'name' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:21:35:21:40 | 'name' | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:21:35:21:40 | 'name' | enclosingFunctionBody | target document location search $ myId html target document write <OPTION value=1> document location href substring document location href indexOf default= 8 </OPTION> document write <OPTION value=2>English</OPTION> $ <div style="width: target px"> $ <div style="width: target px"> $ <div style="width: parseInt target px"> params URL document location searchParams $ name html params get name searchParams URLSearchParams target substring 1 $ name html searchParams get name |
 | autogenerated/Xss/DomBasedXss/tst.js:21:35:21:40 | 'name' | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/tst.js:21:35:21:40 | 'name' | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:21:35:21:40 | 'name' | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:21:35:21:40 | 'name' | receiverName | searchParams |
 | autogenerated/Xss/DomBasedXss/tst.js:26:5:26:10 | 'myId' | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/DomBasedXss/tst.js:26:5:26:10 | 'myId' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:26:5:26:10 | 'myId' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:26:5:26:10 | 'myId' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:26:5:26:10 | 'myId' | contextSurroundingFunctionParameters | (target) |
 | autogenerated/Xss/DomBasedXss/tst.js:26:5:26:10 | 'myId' | enclosingFunctionBody | target $ myId html target |
 | autogenerated/Xss/DomBasedXss/tst.js:26:5:26:10 | 'myId' | enclosingFunctionName | foo |
-| autogenerated/Xss/DomBasedXss/tst.js:26:5:26:10 | 'myId' | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:26:5:26:10 | 'myId' | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:26:18:26:23 | target | CalleeFlexibleAccessPath | $().html |
 | autogenerated/Xss/DomBasedXss/tst.js:26:18:26:23 | target | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:26:18:26:23 | target | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:26:18:26:23 | target | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:26:18:26:23 | target | contextSurroundingFunctionParameters | (target) |
 | autogenerated/Xss/DomBasedXss/tst.js:26:18:26:23 | target | enclosingFunctionBody | target $ myId html target |
 | autogenerated/Xss/DomBasedXss/tst.js:26:18:26:23 | target | enclosingFunctionName | foo |
-| autogenerated/Xss/DomBasedXss/tst.js:26:18:26:23 | target | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:26:18:26:23 | target | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:34:3:34:8 | 'myId' | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/DomBasedXss/tst.js:34:3:34:8 | 'myId' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:34:3:34:8 | 'myId' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:34:3:34:8 | 'myId' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:34:3:34:8 | 'myId' | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/DomBasedXss/tst.js:34:3:34:8 | 'myId' | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:34:3:34:8 | 'myId' | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:34:16:34:20 | bar() | CalleeFlexibleAccessPath | $().html |
 | autogenerated/Xss/DomBasedXss/tst.js:34:16:34:20 | bar() | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:34:16:34:20 | bar() | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:34:16:34:20 | bar() | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:34:16:34:20 | bar() | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/DomBasedXss/tst.js:34:16:34:20 | bar() | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:34:16:34:20 | bar() | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:40:3:40:8 | 'myId' | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/DomBasedXss/tst.js:40:3:40:8 | 'myId' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:40:3:40:8 | 'myId' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:40:3:40:8 | 'myId' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:40:3:40:8 | 'myId' | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/DomBasedXss/tst.js:40:3:40:8 | 'myId' | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:40:3:40:8 | 'myId' | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:40:16:40:44 | baz(doc ... search) | CalleeFlexibleAccessPath | $().html |
 | autogenerated/Xss/DomBasedXss/tst.js:40:16:40:44 | baz(doc ... search) | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:40:16:40:44 | baz(doc ... search) | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:40:16:40:44 | baz(doc ... search) | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:40:16:40:44 | baz(doc ... search) | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/DomBasedXss/tst.js:40:16:40:44 | baz(doc ... search) | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:40:16:40:44 | baz(doc ... search) | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:40:20:40:43 | documen ... .search | CalleeFlexibleAccessPath | baz |
 | autogenerated/Xss/DomBasedXss/tst.js:40:20:40:43 | documen ... .search | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:40:20:40:43 | documen ... .search | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:40:20:40:43 | documen ... .search | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:40:20:40:43 | documen ... .search | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/DomBasedXss/tst.js:40:20:40:43 | documen ... .search | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:43:10:43:16 | "<div>" | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:40:20:40:43 | documen ... .search | fileImports | ansi-to-html |
+| autogenerated/Xss/DomBasedXss/tst.js:43:10:43:16 | "<div>" | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:43:10:43:16 | "<div>" | contextSurroundingFunctionParameters | (s) |
 | autogenerated/Xss/DomBasedXss/tst.js:43:10:43:16 | "<div>" | enclosingFunctionBody | s <div> s </div> |
 | autogenerated/Xss/DomBasedXss/tst.js:43:10:43:16 | "<div>" | enclosingFunctionName | wrap |
-| autogenerated/Xss/DomBasedXss/tst.js:43:10:43:16 | "<div>" | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:43:10:43:16 | "<div>" | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:43:10:43:16 | "<div>" | stringConcatenatedWith |  -endpoint- s + '</div>' |
-| autogenerated/Xss/DomBasedXss/tst.js:43:20:43:20 | s | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:43:20:43:20 | s | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:43:20:43:20 | s | contextSurroundingFunctionParameters | (s) |
 | autogenerated/Xss/DomBasedXss/tst.js:43:20:43:20 | s | enclosingFunctionBody | s <div> s </div> |
 | autogenerated/Xss/DomBasedXss/tst.js:43:20:43:20 | s | enclosingFunctionName | wrap |
-| autogenerated/Xss/DomBasedXss/tst.js:43:20:43:20 | s | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:43:20:43:20 | s | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:43:20:43:20 | s | stringConcatenatedWith | '<div>' -endpoint- '</div>' |
-| autogenerated/Xss/DomBasedXss/tst.js:43:24:43:31 | "</div>" | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:43:24:43:31 | "</div>" | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:43:24:43:31 | "</div>" | contextSurroundingFunctionParameters | (s) |
 | autogenerated/Xss/DomBasedXss/tst.js:43:24:43:31 | "</div>" | enclosingFunctionBody | s <div> s </div> |
 | autogenerated/Xss/DomBasedXss/tst.js:43:24:43:31 | "</div>" | enclosingFunctionName | wrap |
-| autogenerated/Xss/DomBasedXss/tst.js:43:24:43:31 | "</div>" | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:43:24:43:31 | "</div>" | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:43:24:43:31 | "</div>" | stringConcatenatedWith | '<div>' + s -endpoint-  |
 | autogenerated/Xss/DomBasedXss/tst.js:46:3:46:8 | 'myId' | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/DomBasedXss/tst.js:46:3:46:8 | 'myId' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:46:3:46:8 | 'myId' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:46:3:46:8 | 'myId' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:46:3:46:8 | 'myId' | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/DomBasedXss/tst.js:46:3:46:8 | 'myId' | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:46:3:46:8 | 'myId' | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:46:16:46:45 | wrap(do ... search) | CalleeFlexibleAccessPath | $().html |
 | autogenerated/Xss/DomBasedXss/tst.js:46:16:46:45 | wrap(do ... search) | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:46:16:46:45 | wrap(do ... search) | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:46:16:46:45 | wrap(do ... search) | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:46:16:46:45 | wrap(do ... search) | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/DomBasedXss/tst.js:46:16:46:45 | wrap(do ... search) | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:46:16:46:45 | wrap(do ... search) | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:50:21:50:21 | 1 | CalleeFlexibleAccessPath | s.substr |
 | autogenerated/Xss/DomBasedXss/tst.js:50:21:50:21 | 1 | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:50:21:50:21 | 1 | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:50:21:50:21 | 1 | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:50:21:50:21 | 1 | contextSurroundingFunctionParameters | (s) |
 | autogenerated/Xss/DomBasedXss/tst.js:50:21:50:21 | 1 | enclosingFunctionBody | s s s substr 1  |
 | autogenerated/Xss/DomBasedXss/tst.js:50:21:50:21 | 1 | enclosingFunctionName | chop |
-| autogenerated/Xss/DomBasedXss/tst.js:50:21:50:21 | 1 | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:50:21:50:21 | 1 | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:50:21:50:21 | 1 | receiverName | s |
 | autogenerated/Xss/DomBasedXss/tst.js:54:3:54:8 | 'myId' | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/DomBasedXss/tst.js:54:3:54:8 | 'myId' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:54:3:54:8 | 'myId' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:54:3:54:8 | 'myId' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:54:3:54:8 | 'myId' | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/DomBasedXss/tst.js:54:3:54:8 | 'myId' | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:54:3:54:8 | 'myId' | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:54:16:54:45 | chop(do ... search) | CalleeFlexibleAccessPath | $().html |
 | autogenerated/Xss/DomBasedXss/tst.js:54:16:54:45 | chop(do ... search) | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:54:16:54:45 | chop(do ... search) | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:54:16:54:45 | chop(do ... search) | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:54:16:54:45 | chop(do ... search) | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/DomBasedXss/tst.js:54:16:54:45 | chop(do ... search) | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:54:16:54:45 | chop(do ... search) | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:56:3:56:8 | 'myId' | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/DomBasedXss/tst.js:56:3:56:8 | 'myId' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:56:3:56:8 | 'myId' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:56:3:56:8 | 'myId' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:56:3:56:8 | 'myId' | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/DomBasedXss/tst.js:56:3:56:8 | 'myId' | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:56:3:56:8 | 'myId' | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:56:16:56:45 | chop(do ... search) | CalleeFlexibleAccessPath | $().html |
 | autogenerated/Xss/DomBasedXss/tst.js:56:16:56:45 | chop(do ... search) | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:56:16:56:45 | chop(do ... search) | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:56:16:56:45 | chop(do ... search) | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:56:16:56:45 | chop(do ... search) | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/DomBasedXss/tst.js:56:16:56:45 | chop(do ... search) | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:56:16:56:45 | chop(do ... search) | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:58:3:58:8 | 'myId' | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/DomBasedXss/tst.js:58:3:58:8 | 'myId' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:58:3:58:8 | 'myId' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:58:3:58:8 | 'myId' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:58:3:58:8 | 'myId' | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/DomBasedXss/tst.js:58:3:58:8 | 'myId' | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:58:3:58:8 | 'myId' | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:58:16:58:32 | wrap(chop(bar())) | CalleeFlexibleAccessPath | $().html |
 | autogenerated/Xss/DomBasedXss/tst.js:58:16:58:32 | wrap(chop(bar())) | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:58:16:58:32 | wrap(chop(bar())) | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:58:16:58:32 | wrap(chop(bar())) | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:58:16:58:32 | wrap(chop(bar())) | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/DomBasedXss/tst.js:58:16:58:32 | wrap(chop(bar())) | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:58:16:58:32 | wrap(chop(bar())) | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:62:5:62:10 | 'myId' | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/DomBasedXss/tst.js:62:5:62:10 | 'myId' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:62:5:62:10 | 'myId' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:62:5:62:10 | 'myId' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:62:5:62:10 | 'myId' | contextSurroundingFunctionParameters | (s) |
 | autogenerated/Xss/DomBasedXss/tst.js:62:5:62:10 | 'myId' | enclosingFunctionBody | s $ myId html s |
 | autogenerated/Xss/DomBasedXss/tst.js:62:5:62:10 | 'myId' | enclosingFunctionName | dangerouslySetInnerHtml |
-| autogenerated/Xss/DomBasedXss/tst.js:62:5:62:10 | 'myId' | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:62:5:62:10 | 'myId' | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:62:18:62:18 | s | CalleeFlexibleAccessPath | $().html |
 | autogenerated/Xss/DomBasedXss/tst.js:62:18:62:18 | s | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:62:18:62:18 | s | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:62:18:62:18 | s | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:62:18:62:18 | s | contextSurroundingFunctionParameters | (s) |
 | autogenerated/Xss/DomBasedXss/tst.js:62:18:62:18 | s | enclosingFunctionBody | s $ myId html s |
 | autogenerated/Xss/DomBasedXss/tst.js:62:18:62:18 | s | enclosingFunctionName | dangerouslySetInnerHtml |
-| autogenerated/Xss/DomBasedXss/tst.js:62:18:62:18 | s | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:62:18:62:18 | s | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:68:3:68:8 | 'myId' | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/DomBasedXss/tst.js:68:3:68:8 | 'myId' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:68:3:68:8 | 'myId' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:68:3:68:8 | 'myId' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:68:3:68:8 | 'myId' | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/DomBasedXss/tst.js:68:3:68:8 | 'myId' | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:68:3:68:8 | 'myId' | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:68:16:68:20 | bar() | CalleeFlexibleAccessPath | $().html |
 | autogenerated/Xss/DomBasedXss/tst.js:68:16:68:20 | bar() | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:68:16:68:20 | bar() | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:68:16:68:20 | bar() | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:68:16:68:20 | bar() | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/DomBasedXss/tst.js:68:16:68:20 | bar() | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:68:16:68:20 | bar() | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:70:37:74:1 | functio ... l(x);\\n} | CalleeFlexibleAccessPath | ?.forEach |
 | autogenerated/Xss/DomBasedXss/tst.js:70:37:74:1 | functio ... l(x);\\n} | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:70:37:74:1 | functio ... l(x);\\n} | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:70:37:74:1 | functio ... l(x);\\n} | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:70:37:74:1 | functio ... l(x);\\n} | contextSurroundingFunctionParameters | (x) |
-| autogenerated/Xss/DomBasedXss/tst.js:70:37:74:1 | functio ... l(x);\\n} | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:70:37:74:1 | functio ... l(x);\\n} | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:73:7:73:12 | 'myId' | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/DomBasedXss/tst.js:73:7:73:12 | 'myId' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:73:7:73:12 | 'myId' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:73:7:73:12 | 'myId' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:73:7:73:12 | 'myId' | contextSurroundingFunctionParameters | (x) |
 | autogenerated/Xss/DomBasedXss/tst.js:73:7:73:12 | 'myId' | enclosingFunctionBody | x x $ myId html x |
 | autogenerated/Xss/DomBasedXss/tst.js:73:7:73:12 | 'myId' | enclosingFunctionName | forEach#functionalargument |
-| autogenerated/Xss/DomBasedXss/tst.js:73:7:73:12 | 'myId' | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:73:7:73:12 | 'myId' | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:73:20:73:20 | x | CalleeFlexibleAccessPath | $().html |
 | autogenerated/Xss/DomBasedXss/tst.js:73:20:73:20 | x | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:73:20:73:20 | x | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:73:20:73:20 | x | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:73:20:73:20 | x | contextSurroundingFunctionParameters | (x) |
 | autogenerated/Xss/DomBasedXss/tst.js:73:20:73:20 | x | enclosingFunctionBody | x x $ myId html x |
 | autogenerated/Xss/DomBasedXss/tst.js:73:20:73:20 | x | enclosingFunctionName | forEach#functionalargument |
-| autogenerated/Xss/DomBasedXss/tst.js:73:20:73:20 | x | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:73:20:73:20 | x | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:77:40:77:73 | {__html ... search} | assignedToPropName | dangerouslySetInnerHTML |
-| autogenerated/Xss/DomBasedXss/tst.js:77:40:77:73 | {__html ... search} | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:77:40:77:73 | {__html ... search} | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:77:40:77:73 | {__html ... search} | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/DomBasedXss/tst.js:77:40:77:73 | {__html ... search} | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:77:40:77:73 | {__html ... search} | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:77:49:77:72 | documen ... .search | assignedToPropName | __html |
-| autogenerated/Xss/DomBasedXss/tst.js:77:49:77:72 | documen ... .search | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:77:49:77:72 | documen ... .search | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:77:49:77:72 | documen ... .search | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/DomBasedXss/tst.js:77:49:77:72 | documen ... .search | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:77:49:77:72 | documen ... .search | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:79:16:79:22 | 'myApp' | CalleeFlexibleAccessPath | angular.module |
 | autogenerated/Xss/DomBasedXss/tst.js:79:16:79:22 | 'myApp' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:79:16:79:22 | 'myApp' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:79:16:79:22 | 'myApp' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:79:16:79:22 | 'myApp' | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/DomBasedXss/tst.js:79:16:79:22 | 'myApp' | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:79:16:79:22 | 'myApp' | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:79:16:79:22 | 'myApp' | receiverName | angular |
 | autogenerated/Xss/DomBasedXss/tst.js:79:25:79:26 | [] | CalleeFlexibleAccessPath | angular.module |
 | autogenerated/Xss/DomBasedXss/tst.js:79:25:79:26 | [] | InputArgumentIndex | 1 |
-| autogenerated/Xss/DomBasedXss/tst.js:79:25:79:26 | [] | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:79:25:79:26 | [] | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:79:25:79:26 | [] | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/DomBasedXss/tst.js:79:25:79:26 | [] | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:79:25:79:26 | [] | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:79:25:79:26 | [] | receiverName | angular |
 | autogenerated/Xss/DomBasedXss/tst.js:80:14:80:24 | "myService" | CalleeFlexibleAccessPath | angular.module().service |
 | autogenerated/Xss/DomBasedXss/tst.js:80:14:80:24 | "myService" | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:80:14:80:24 | "myService" | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:80:14:80:24 | "myService" | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:80:14:80:24 | "myService" | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/DomBasedXss/tst.js:80:14:80:24 | "myService" | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:80:14:80:24 | "myService" | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:80:27:88:5 | functio ... K\\n    } | CalleeFlexibleAccessPath | angular.module().service |
 | autogenerated/Xss/DomBasedXss/tst.js:80:27:88:5 | functio ... K\\n    } | InputArgumentIndex | 1 |
-| autogenerated/Xss/DomBasedXss/tst.js:80:27:88:5 | functio ... K\\n    } | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:80:27:88:5 | functio ... K\\n    } | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:80:27:88:5 | functio ... K\\n    } | contextSurroundingFunctionParameters | ($sce, $other) |
-| autogenerated/Xss/DomBasedXss/tst.js:80:27:88:5 | functio ... K\\n    } | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:80:27:88:5 | functio ... K\\n    } | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:81:26:81:49 | documen ... .search | CalleeFlexibleAccessPath | $sce.trustAsHtml |
 | autogenerated/Xss/DomBasedXss/tst.js:81:26:81:49 | documen ... .search | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:81:26:81:49 | documen ... .search | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:81:26:81:49 | documen ... .search | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:81:26:81:49 | documen ... .search | contextSurroundingFunctionParameters | ($sce, $other) |
 | autogenerated/Xss/DomBasedXss/tst.js:81:26:81:49 | documen ... .search | enclosingFunctionBody | $sce $other $sce trustAsHtml document location search $sce trustAsCss document location search $sce trustAsUNKNOWN document location search $sce trustAs $sce HTML document location search $sce trustAs $sce CSS document location search $sce trustAs UNKNOWN document location search $other trustAsHtml document location search |
 | autogenerated/Xss/DomBasedXss/tst.js:81:26:81:49 | documen ... .search | enclosingFunctionName | service#functionalargument |
-| autogenerated/Xss/DomBasedXss/tst.js:81:26:81:49 | documen ... .search | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:81:26:81:49 | documen ... .search | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:81:26:81:49 | documen ... .search | receiverName | $sce |
 | autogenerated/Xss/DomBasedXss/tst.js:82:25:82:48 | documen ... .search | CalleeFlexibleAccessPath | $sce.trustAsCss |
 | autogenerated/Xss/DomBasedXss/tst.js:82:25:82:48 | documen ... .search | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:82:25:82:48 | documen ... .search | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:82:25:82:48 | documen ... .search | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:82:25:82:48 | documen ... .search | contextSurroundingFunctionParameters | ($sce, $other) |
 | autogenerated/Xss/DomBasedXss/tst.js:82:25:82:48 | documen ... .search | enclosingFunctionBody | $sce $other $sce trustAsHtml document location search $sce trustAsCss document location search $sce trustAsUNKNOWN document location search $sce trustAs $sce HTML document location search $sce trustAs $sce CSS document location search $sce trustAs UNKNOWN document location search $other trustAsHtml document location search |
 | autogenerated/Xss/DomBasedXss/tst.js:82:25:82:48 | documen ... .search | enclosingFunctionName | service#functionalargument |
-| autogenerated/Xss/DomBasedXss/tst.js:82:25:82:48 | documen ... .search | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:82:25:82:48 | documen ... .search | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:82:25:82:48 | documen ... .search | receiverName | $sce |
 | autogenerated/Xss/DomBasedXss/tst.js:83:29:83:52 | documen ... .search | CalleeFlexibleAccessPath | $sce.trustAsUNKNOWN |
 | autogenerated/Xss/DomBasedXss/tst.js:83:29:83:52 | documen ... .search | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:83:29:83:52 | documen ... .search | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:83:29:83:52 | documen ... .search | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:83:29:83:52 | documen ... .search | contextSurroundingFunctionParameters | ($sce, $other) |
 | autogenerated/Xss/DomBasedXss/tst.js:83:29:83:52 | documen ... .search | enclosingFunctionBody | $sce $other $sce trustAsHtml document location search $sce trustAsCss document location search $sce trustAsUNKNOWN document location search $sce trustAs $sce HTML document location search $sce trustAs $sce CSS document location search $sce trustAs UNKNOWN document location search $other trustAsHtml document location search |
 | autogenerated/Xss/DomBasedXss/tst.js:83:29:83:52 | documen ... .search | enclosingFunctionName | service#functionalargument |
-| autogenerated/Xss/DomBasedXss/tst.js:83:29:83:52 | documen ... .search | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:83:29:83:52 | documen ... .search | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:83:29:83:52 | documen ... .search | receiverName | $sce |
 | autogenerated/Xss/DomBasedXss/tst.js:84:22:84:30 | $sce.HTML | CalleeFlexibleAccessPath | $sce.trustAs |
 | autogenerated/Xss/DomBasedXss/tst.js:84:22:84:30 | $sce.HTML | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:84:22:84:30 | $sce.HTML | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:84:22:84:30 | $sce.HTML | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:84:22:84:30 | $sce.HTML | contextSurroundingFunctionParameters | ($sce, $other) |
 | autogenerated/Xss/DomBasedXss/tst.js:84:22:84:30 | $sce.HTML | enclosingFunctionBody | $sce $other $sce trustAsHtml document location search $sce trustAsCss document location search $sce trustAsUNKNOWN document location search $sce trustAs $sce HTML document location search $sce trustAs $sce CSS document location search $sce trustAs UNKNOWN document location search $other trustAsHtml document location search |
 | autogenerated/Xss/DomBasedXss/tst.js:84:22:84:30 | $sce.HTML | enclosingFunctionName | service#functionalargument |
-| autogenerated/Xss/DomBasedXss/tst.js:84:22:84:30 | $sce.HTML | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:84:22:84:30 | $sce.HTML | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:84:22:84:30 | $sce.HTML | receiverName | $sce |
 | autogenerated/Xss/DomBasedXss/tst.js:84:33:84:56 | documen ... .search | CalleeFlexibleAccessPath | $sce.trustAs |
 | autogenerated/Xss/DomBasedXss/tst.js:84:33:84:56 | documen ... .search | InputArgumentIndex | 1 |
-| autogenerated/Xss/DomBasedXss/tst.js:84:33:84:56 | documen ... .search | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:84:33:84:56 | documen ... .search | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:84:33:84:56 | documen ... .search | contextSurroundingFunctionParameters | ($sce, $other) |
 | autogenerated/Xss/DomBasedXss/tst.js:84:33:84:56 | documen ... .search | enclosingFunctionBody | $sce $other $sce trustAsHtml document location search $sce trustAsCss document location search $sce trustAsUNKNOWN document location search $sce trustAs $sce HTML document location search $sce trustAs $sce CSS document location search $sce trustAs UNKNOWN document location search $other trustAsHtml document location search |
 | autogenerated/Xss/DomBasedXss/tst.js:84:33:84:56 | documen ... .search | enclosingFunctionName | service#functionalargument |
-| autogenerated/Xss/DomBasedXss/tst.js:84:33:84:56 | documen ... .search | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:84:33:84:56 | documen ... .search | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:84:33:84:56 | documen ... .search | receiverName | $sce |
 | autogenerated/Xss/DomBasedXss/tst.js:85:22:85:29 | $sce.CSS | CalleeFlexibleAccessPath | $sce.trustAs |
 | autogenerated/Xss/DomBasedXss/tst.js:85:22:85:29 | $sce.CSS | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:85:22:85:29 | $sce.CSS | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:85:22:85:29 | $sce.CSS | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:85:22:85:29 | $sce.CSS | contextSurroundingFunctionParameters | ($sce, $other) |
 | autogenerated/Xss/DomBasedXss/tst.js:85:22:85:29 | $sce.CSS | enclosingFunctionBody | $sce $other $sce trustAsHtml document location search $sce trustAsCss document location search $sce trustAsUNKNOWN document location search $sce trustAs $sce HTML document location search $sce trustAs $sce CSS document location search $sce trustAs UNKNOWN document location search $other trustAsHtml document location search |
 | autogenerated/Xss/DomBasedXss/tst.js:85:22:85:29 | $sce.CSS | enclosingFunctionName | service#functionalargument |
-| autogenerated/Xss/DomBasedXss/tst.js:85:22:85:29 | $sce.CSS | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:85:22:85:29 | $sce.CSS | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:85:22:85:29 | $sce.CSS | receiverName | $sce |
 | autogenerated/Xss/DomBasedXss/tst.js:85:32:85:55 | documen ... .search | CalleeFlexibleAccessPath | $sce.trustAs |
 | autogenerated/Xss/DomBasedXss/tst.js:85:32:85:55 | documen ... .search | InputArgumentIndex | 1 |
-| autogenerated/Xss/DomBasedXss/tst.js:85:32:85:55 | documen ... .search | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:85:32:85:55 | documen ... .search | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:85:32:85:55 | documen ... .search | contextSurroundingFunctionParameters | ($sce, $other) |
 | autogenerated/Xss/DomBasedXss/tst.js:85:32:85:55 | documen ... .search | enclosingFunctionBody | $sce $other $sce trustAsHtml document location search $sce trustAsCss document location search $sce trustAsUNKNOWN document location search $sce trustAs $sce HTML document location search $sce trustAs $sce CSS document location search $sce trustAs UNKNOWN document location search $other trustAsHtml document location search |
 | autogenerated/Xss/DomBasedXss/tst.js:85:32:85:55 | documen ... .search | enclosingFunctionName | service#functionalargument |
-| autogenerated/Xss/DomBasedXss/tst.js:85:32:85:55 | documen ... .search | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:85:32:85:55 | documen ... .search | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:85:32:85:55 | documen ... .search | receiverName | $sce |
 | autogenerated/Xss/DomBasedXss/tst.js:86:22:86:28 | UNKNOWN | CalleeFlexibleAccessPath | $sce.trustAs |
 | autogenerated/Xss/DomBasedXss/tst.js:86:22:86:28 | UNKNOWN | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:86:22:86:28 | UNKNOWN | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:86:22:86:28 | UNKNOWN | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:86:22:86:28 | UNKNOWN | contextSurroundingFunctionParameters | ($sce, $other) |
 | autogenerated/Xss/DomBasedXss/tst.js:86:22:86:28 | UNKNOWN | enclosingFunctionBody | $sce $other $sce trustAsHtml document location search $sce trustAsCss document location search $sce trustAsUNKNOWN document location search $sce trustAs $sce HTML document location search $sce trustAs $sce CSS document location search $sce trustAs UNKNOWN document location search $other trustAsHtml document location search |
 | autogenerated/Xss/DomBasedXss/tst.js:86:22:86:28 | UNKNOWN | enclosingFunctionName | service#functionalargument |
-| autogenerated/Xss/DomBasedXss/tst.js:86:22:86:28 | UNKNOWN | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:86:22:86:28 | UNKNOWN | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:86:22:86:28 | UNKNOWN | receiverName | $sce |
 | autogenerated/Xss/DomBasedXss/tst.js:86:31:86:54 | documen ... .search | CalleeFlexibleAccessPath | $sce.trustAs |
 | autogenerated/Xss/DomBasedXss/tst.js:86:31:86:54 | documen ... .search | InputArgumentIndex | 1 |
-| autogenerated/Xss/DomBasedXss/tst.js:86:31:86:54 | documen ... .search | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:86:31:86:54 | documen ... .search | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:86:31:86:54 | documen ... .search | contextSurroundingFunctionParameters | ($sce, $other) |
 | autogenerated/Xss/DomBasedXss/tst.js:86:31:86:54 | documen ... .search | enclosingFunctionBody | $sce $other $sce trustAsHtml document location search $sce trustAsCss document location search $sce trustAsUNKNOWN document location search $sce trustAs $sce HTML document location search $sce trustAs $sce CSS document location search $sce trustAs UNKNOWN document location search $other trustAsHtml document location search |
 | autogenerated/Xss/DomBasedXss/tst.js:86:31:86:54 | documen ... .search | enclosingFunctionName | service#functionalargument |
-| autogenerated/Xss/DomBasedXss/tst.js:86:31:86:54 | documen ... .search | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:86:31:86:54 | documen ... .search | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:86:31:86:54 | documen ... .search | receiverName | $sce |
 | autogenerated/Xss/DomBasedXss/tst.js:87:28:87:51 | documen ... .search | CalleeFlexibleAccessPath | $other.trustAsHtml |
 | autogenerated/Xss/DomBasedXss/tst.js:87:28:87:51 | documen ... .search | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:87:28:87:51 | documen ... .search | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:87:28:87:51 | documen ... .search | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:87:28:87:51 | documen ... .search | contextSurroundingFunctionParameters | ($sce, $other) |
 | autogenerated/Xss/DomBasedXss/tst.js:87:28:87:51 | documen ... .search | enclosingFunctionBody | $sce $other $sce trustAsHtml document location search $sce trustAsCss document location search $sce trustAsUNKNOWN document location search $sce trustAs $sce HTML document location search $sce trustAs $sce CSS document location search $sce trustAs UNKNOWN document location search $other trustAsHtml document location search |
 | autogenerated/Xss/DomBasedXss/tst.js:87:28:87:51 | documen ... .search | enclosingFunctionName | service#functionalargument |
-| autogenerated/Xss/DomBasedXss/tst.js:87:28:87:51 | documen ... .search | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:87:28:87:51 | documen ... .search | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:87:28:87:51 | documen ... .search | receiverName | $other |
 | autogenerated/Xss/DomBasedXss/tst.js:89:14:89:25 | "myService2" | CalleeFlexibleAccessPath | angular.module().service().service |
 | autogenerated/Xss/DomBasedXss/tst.js:89:14:89:25 | "myService2" | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:89:14:89:25 | "myService2" | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:89:14:89:25 | "myService2" | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:89:14:89:25 | "myService2" | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/DomBasedXss/tst.js:89:14:89:25 | "myService2" | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:89:14:89:25 | "myService2" | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:89:28:92:5 | functio ... K\\n    } | CalleeFlexibleAccessPath | angular.module().service().service |
 | autogenerated/Xss/DomBasedXss/tst.js:89:28:92:5 | functio ... K\\n    } | InputArgumentIndex | 1 |
-| autogenerated/Xss/DomBasedXss/tst.js:89:28:92:5 | functio ... K\\n    } | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:89:28:92:5 | functio ... K\\n    } | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:89:28:92:5 | functio ... K\\n    } | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/tst.js:89:28:92:5 | functio ... K\\n    } | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:89:28:92:5 | functio ... K\\n    } | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:90:25:90:31 | '<div>' | CalleeFlexibleAccessPath | angular.element |
 | autogenerated/Xss/DomBasedXss/tst.js:90:25:90:31 | '<div>' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:90:25:90:31 | '<div>' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:90:25:90:31 | '<div>' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:90:25:90:31 | '<div>' | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:90:25:90:31 | '<div>' | enclosingFunctionBody | angular element <div> html document location search angular element <div> html SAFE |
 | autogenerated/Xss/DomBasedXss/tst.js:90:25:90:31 | '<div>' | enclosingFunctionName | service#functionalargument |
-| autogenerated/Xss/DomBasedXss/tst.js:90:25:90:31 | '<div>' | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:90:25:90:31 | '<div>' | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:90:25:90:31 | '<div>' | receiverName | angular |
 | autogenerated/Xss/DomBasedXss/tst.js:90:39:90:62 | documen ... .search | CalleeFlexibleAccessPath | angular.element().html |
 | autogenerated/Xss/DomBasedXss/tst.js:90:39:90:62 | documen ... .search | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:90:39:90:62 | documen ... .search | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:90:39:90:62 | documen ... .search | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:90:39:90:62 | documen ... .search | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:90:39:90:62 | documen ... .search | enclosingFunctionBody | angular element <div> html document location search angular element <div> html SAFE |
 | autogenerated/Xss/DomBasedXss/tst.js:90:39:90:62 | documen ... .search | enclosingFunctionName | service#functionalargument |
-| autogenerated/Xss/DomBasedXss/tst.js:90:39:90:62 | documen ... .search | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:90:39:90:62 | documen ... .search | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:91:25:91:31 | '<div>' | CalleeFlexibleAccessPath | angular.element |
 | autogenerated/Xss/DomBasedXss/tst.js:91:25:91:31 | '<div>' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:91:25:91:31 | '<div>' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:91:25:91:31 | '<div>' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:91:25:91:31 | '<div>' | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:91:25:91:31 | '<div>' | enclosingFunctionBody | angular element <div> html document location search angular element <div> html SAFE |
 | autogenerated/Xss/DomBasedXss/tst.js:91:25:91:31 | '<div>' | enclosingFunctionName | service#functionalargument |
-| autogenerated/Xss/DomBasedXss/tst.js:91:25:91:31 | '<div>' | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:91:25:91:31 | '<div>' | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:91:25:91:31 | '<div>' | receiverName | angular |
 | autogenerated/Xss/DomBasedXss/tst.js:91:39:91:44 | 'SAFE' | CalleeFlexibleAccessPath | angular.element().html |
 | autogenerated/Xss/DomBasedXss/tst.js:91:39:91:44 | 'SAFE' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:91:39:91:44 | 'SAFE' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:91:39:91:44 | 'SAFE' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:91:39:91:44 | 'SAFE' | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:91:39:91:44 | 'SAFE' | enclosingFunctionBody | angular element <div> html document location search angular element <div> html SAFE |
 | autogenerated/Xss/DomBasedXss/tst.js:91:39:91:44 | 'SAFE' | enclosingFunctionName | service#functionalargument |
-| autogenerated/Xss/DomBasedXss/tst.js:91:39:91:44 | 'SAFE' | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:91:39:91:44 | 'SAFE' | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:93:16:93:27 | 'myCustomer' | CalleeFlexibleAccessPath | angular.module().service().service().directive |
 | autogenerated/Xss/DomBasedXss/tst.js:93:16:93:27 | 'myCustomer' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:93:16:93:27 | 'myCustomer' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:93:16:93:27 | 'myCustomer' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:93:16:93:27 | 'myCustomer' | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/DomBasedXss/tst.js:93:16:93:27 | 'myCustomer' | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:93:16:93:27 | 'myCustomer' | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:93:30:100:5 | functio ... ;\\n    } | CalleeFlexibleAccessPath | angular.module().service().service().directive |
 | autogenerated/Xss/DomBasedXss/tst.js:93:30:100:5 | functio ... ;\\n    } | InputArgumentIndex | 1 |
-| autogenerated/Xss/DomBasedXss/tst.js:93:30:100:5 | functio ... ;\\n    } | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:93:30:100:5 | functio ... ;\\n    } | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:93:30:100:5 | functio ... ;\\n    } | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/tst.js:93:30:100:5 | functio ... ;\\n    } | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:93:30:100:5 | functio ... ;\\n    } | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:96:30:96:53 | documen ... .search | CalleeFlexibleAccessPath | element.html |
 | autogenerated/Xss/DomBasedXss/tst.js:96:30:96:53 | documen ... .search | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:96:30:96:53 | documen ... .search | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:96:30:96:53 | documen ... .search | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:96:30:96:53 | documen ... .search | contextSurroundingFunctionParameters | ()\n(scope, element) |
 | autogenerated/Xss/DomBasedXss/tst.js:96:30:96:53 | documen ... .search | enclosingFunctionBody | link scope element element html document location search element html SAFE |
 | autogenerated/Xss/DomBasedXss/tst.js:96:30:96:53 | documen ... .search | enclosingFunctionName | directive#functionalargument |
-| autogenerated/Xss/DomBasedXss/tst.js:96:30:96:53 | documen ... .search | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:96:30:96:53 | documen ... .search | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:96:30:96:53 | documen ... .search | receiverName | element |
 | autogenerated/Xss/DomBasedXss/tst.js:97:30:97:35 | 'SAFE' | CalleeFlexibleAccessPath | element.html |
 | autogenerated/Xss/DomBasedXss/tst.js:97:30:97:35 | 'SAFE' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:97:30:97:35 | 'SAFE' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:97:30:97:35 | 'SAFE' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:97:30:97:35 | 'SAFE' | contextSurroundingFunctionParameters | ()\n(scope, element) |
 | autogenerated/Xss/DomBasedXss/tst.js:97:30:97:35 | 'SAFE' | enclosingFunctionBody | link scope element element html document location search element html SAFE |
 | autogenerated/Xss/DomBasedXss/tst.js:97:30:97:35 | 'SAFE' | enclosingFunctionName | directive#functionalargument |
-| autogenerated/Xss/DomBasedXss/tst.js:97:30:97:35 | 'SAFE' | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:97:30:97:35 | 'SAFE' | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:97:30:97:35 | 'SAFE' | receiverName | element |
 | autogenerated/Xss/DomBasedXss/tst.js:101:14:101:25 | "myService3" | CalleeFlexibleAccessPath | angular.module().service().service().directive().service |
 | autogenerated/Xss/DomBasedXss/tst.js:101:14:101:25 | "myService3" | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:101:14:101:25 | "myService3" | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:101:14:101:25 | "myService3" | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:101:14:101:25 | "myService3" | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/DomBasedXss/tst.js:101:14:101:25 | "myService3" | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:101:14:101:25 | "myService3" | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:101:28:104:5 | functio ... K\\n    } | CalleeFlexibleAccessPath | angular.module().service().service().directive().service |
 | autogenerated/Xss/DomBasedXss/tst.js:101:28:104:5 | functio ... K\\n    } | InputArgumentIndex | 1 |
-| autogenerated/Xss/DomBasedXss/tst.js:101:28:104:5 | functio ... K\\n    } | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:101:28:104:5 | functio ... K\\n    } | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:101:28:104:5 | functio ... K\\n    } | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/tst.js:101:28:104:5 | functio ... K\\n    } | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:101:28:104:5 | functio ... K\\n    } | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:102:25:102:48 | documen ... .search | CalleeFlexibleAccessPath | angular.element |
 | autogenerated/Xss/DomBasedXss/tst.js:102:25:102:48 | documen ... .search | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:102:25:102:48 | documen ... .search | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:102:25:102:48 | documen ... .search | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:102:25:102:48 | documen ... .search | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:102:25:102:48 | documen ... .search | enclosingFunctionBody | angular element document location search angular element SAFE |
 | autogenerated/Xss/DomBasedXss/tst.js:102:25:102:48 | documen ... .search | enclosingFunctionName | service#functionalargument |
-| autogenerated/Xss/DomBasedXss/tst.js:102:25:102:48 | documen ... .search | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:102:25:102:48 | documen ... .search | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:102:25:102:48 | documen ... .search | receiverName | angular |
 | autogenerated/Xss/DomBasedXss/tst.js:103:25:103:30 | 'SAFE' | CalleeFlexibleAccessPath | angular.element |
 | autogenerated/Xss/DomBasedXss/tst.js:103:25:103:30 | 'SAFE' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:103:25:103:30 | 'SAFE' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:103:25:103:30 | 'SAFE' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:103:25:103:30 | 'SAFE' | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:103:25:103:30 | 'SAFE' | enclosingFunctionBody | angular element document location search angular element SAFE |
 | autogenerated/Xss/DomBasedXss/tst.js:103:25:103:30 | 'SAFE' | enclosingFunctionName | service#functionalargument |
-| autogenerated/Xss/DomBasedXss/tst.js:103:25:103:30 | 'SAFE' | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:103:25:103:30 | 'SAFE' | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:103:25:103:30 | 'SAFE' | receiverName | angular |
 | autogenerated/Xss/DomBasedXss/tst.js:107:43:107:43 | 1 | CalleeFlexibleAccessPath | document.location.search.substr |
 | autogenerated/Xss/DomBasedXss/tst.js:107:43:107:43 | 1 | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:107:43:107:43 | 1 | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:107:43:107:43 | 1 | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:107:43:107:43 | 1 | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:107:43:107:43 | 1 | enclosingFunctionBody | v document location search substr 1 document write v /^\\d+$/ test v document write v m /^\\d+$/ exec v document write v v match /^\\d+$/ document write v v match ^\\d+$ document write v /\\d+/ test v document write v /^\\d+$/ test v document write v |
 | autogenerated/Xss/DomBasedXss/tst.js:107:43:107:43 | 1 | enclosingFunctionName | tst |
-| autogenerated/Xss/DomBasedXss/tst.js:107:43:107:43 | 1 | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:107:43:107:43 | 1 | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:110:18:110:18 | v | CalleeFlexibleAccessPath | document.write |
 | autogenerated/Xss/DomBasedXss/tst.js:110:18:110:18 | v | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:110:18:110:18 | v | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:110:18:110:18 | v | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:110:18:110:18 | v | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:110:18:110:18 | v | enclosingFunctionBody | v document location search substr 1 document write v /^\\d+$/ test v document write v m /^\\d+$/ exec v document write v v match /^\\d+$/ document write v v match ^\\d+$ document write v /\\d+/ test v document write v /^\\d+$/ test v document write v |
 | autogenerated/Xss/DomBasedXss/tst.js:110:18:110:18 | v | enclosingFunctionName | tst |
-| autogenerated/Xss/DomBasedXss/tst.js:110:18:110:18 | v | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:110:18:110:18 | v | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:110:18:110:18 | v | receiverName | document |
 | autogenerated/Xss/DomBasedXss/tst.js:112:20:112:20 | v | CalleeFlexibleAccessPath | ?.test |
 | autogenerated/Xss/DomBasedXss/tst.js:112:20:112:20 | v | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:112:20:112:20 | v | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:112:20:112:20 | v | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:112:20:112:20 | v | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:112:20:112:20 | v | enclosingFunctionBody | v document location search substr 1 document write v /^\\d+$/ test v document write v m /^\\d+$/ exec v document write v v match /^\\d+$/ document write v v match ^\\d+$ document write v /\\d+/ test v document write v /^\\d+$/ test v document write v |
 | autogenerated/Xss/DomBasedXss/tst.js:112:20:112:20 | v | enclosingFunctionName | tst |
-| autogenerated/Xss/DomBasedXss/tst.js:112:20:112:20 | v | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:112:20:112:20 | v | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:114:20:114:20 | v | CalleeFlexibleAccessPath | document.write |
 | autogenerated/Xss/DomBasedXss/tst.js:114:20:114:20 | v | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:114:20:114:20 | v | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:114:20:114:20 | v | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:114:20:114:20 | v | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:114:20:114:20 | v | enclosingFunctionBody | v document location search substr 1 document write v /^\\d+$/ test v document write v m /^\\d+$/ exec v document write v v match /^\\d+$/ document write v v match ^\\d+$ document write v /\\d+/ test v document write v /^\\d+$/ test v document write v |
 | autogenerated/Xss/DomBasedXss/tst.js:114:20:114:20 | v | enclosingFunctionName | tst |
-| autogenerated/Xss/DomBasedXss/tst.js:114:20:114:20 | v | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:114:20:114:20 | v | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:114:20:114:20 | v | receiverName | document |
 | autogenerated/Xss/DomBasedXss/tst.js:117:25:117:25 | v | CalleeFlexibleAccessPath | ?.exec |
 | autogenerated/Xss/DomBasedXss/tst.js:117:25:117:25 | v | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:117:25:117:25 | v | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:117:25:117:25 | v | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:117:25:117:25 | v | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:117:25:117:25 | v | enclosingFunctionBody | v document location search substr 1 document write v /^\\d+$/ test v document write v m /^\\d+$/ exec v document write v v match /^\\d+$/ document write v v match ^\\d+$ document write v /\\d+/ test v document write v /^\\d+$/ test v document write v |
 | autogenerated/Xss/DomBasedXss/tst.js:117:25:117:25 | v | enclosingFunctionName | tst |
-| autogenerated/Xss/DomBasedXss/tst.js:117:25:117:25 | v | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:117:25:117:25 | v | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:119:20:119:20 | v | CalleeFlexibleAccessPath | document.write |
 | autogenerated/Xss/DomBasedXss/tst.js:119:20:119:20 | v | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:119:20:119:20 | v | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:119:20:119:20 | v | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:119:20:119:20 | v | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:119:20:119:20 | v | enclosingFunctionBody | v document location search substr 1 document write v /^\\d+$/ test v document write v m /^\\d+$/ exec v document write v v match /^\\d+$/ document write v v match ^\\d+$ document write v /\\d+/ test v document write v /^\\d+$/ test v document write v |
 | autogenerated/Xss/DomBasedXss/tst.js:119:20:119:20 | v | enclosingFunctionName | tst |
-| autogenerated/Xss/DomBasedXss/tst.js:119:20:119:20 | v | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:119:20:119:20 | v | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:119:20:119:20 | v | receiverName | document |
 | autogenerated/Xss/DomBasedXss/tst.js:122:15:122:21 | /^\\d+$/ | CalleeFlexibleAccessPath | v.match |
 | autogenerated/Xss/DomBasedXss/tst.js:122:15:122:21 | /^\\d+$/ | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:122:15:122:21 | /^\\d+$/ | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:122:15:122:21 | /^\\d+$/ | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:122:15:122:21 | /^\\d+$/ | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:122:15:122:21 | /^\\d+$/ | enclosingFunctionBody | v document location search substr 1 document write v /^\\d+$/ test v document write v m /^\\d+$/ exec v document write v v match /^\\d+$/ document write v v match ^\\d+$ document write v /\\d+/ test v document write v /^\\d+$/ test v document write v |
 | autogenerated/Xss/DomBasedXss/tst.js:122:15:122:21 | /^\\d+$/ | enclosingFunctionName | tst |
-| autogenerated/Xss/DomBasedXss/tst.js:122:15:122:21 | /^\\d+$/ | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:122:15:122:21 | /^\\d+$/ | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:122:15:122:21 | /^\\d+$/ | receiverName | v |
 | autogenerated/Xss/DomBasedXss/tst.js:124:22:124:22 | v | CalleeFlexibleAccessPath | document.write |
 | autogenerated/Xss/DomBasedXss/tst.js:124:22:124:22 | v | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:124:22:124:22 | v | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:124:22:124:22 | v | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:124:22:124:22 | v | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:124:22:124:22 | v | enclosingFunctionBody | v document location search substr 1 document write v /^\\d+$/ test v document write v m /^\\d+$/ exec v document write v v match /^\\d+$/ document write v v match ^\\d+$ document write v /\\d+/ test v document write v /^\\d+$/ test v document write v |
 | autogenerated/Xss/DomBasedXss/tst.js:124:22:124:22 | v | enclosingFunctionName | tst |
-| autogenerated/Xss/DomBasedXss/tst.js:124:22:124:22 | v | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:124:22:124:22 | v | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:124:22:124:22 | v | receiverName | document |
 | autogenerated/Xss/DomBasedXss/tst.js:127:15:127:22 | "^\\\\d+$" | CalleeFlexibleAccessPath | v.match |
 | autogenerated/Xss/DomBasedXss/tst.js:127:15:127:22 | "^\\\\d+$" | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:127:15:127:22 | "^\\\\d+$" | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:127:15:127:22 | "^\\\\d+$" | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:127:15:127:22 | "^\\\\d+$" | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:127:15:127:22 | "^\\\\d+$" | enclosingFunctionBody | v document location search substr 1 document write v /^\\d+$/ test v document write v m /^\\d+$/ exec v document write v v match /^\\d+$/ document write v v match ^\\d+$ document write v /\\d+/ test v document write v /^\\d+$/ test v document write v |
 | autogenerated/Xss/DomBasedXss/tst.js:127:15:127:22 | "^\\\\d+$" | enclosingFunctionName | tst |
-| autogenerated/Xss/DomBasedXss/tst.js:127:15:127:22 | "^\\\\d+$" | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:127:15:127:22 | "^\\\\d+$" | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:127:15:127:22 | "^\\\\d+$" | receiverName | v |
 | autogenerated/Xss/DomBasedXss/tst.js:129:22:129:22 | v | CalleeFlexibleAccessPath | document.write |
 | autogenerated/Xss/DomBasedXss/tst.js:129:22:129:22 | v | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:129:22:129:22 | v | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:129:22:129:22 | v | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:129:22:129:22 | v | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:129:22:129:22 | v | enclosingFunctionBody | v document location search substr 1 document write v /^\\d+$/ test v document write v m /^\\d+$/ exec v document write v v match /^\\d+$/ document write v v match ^\\d+$ document write v /\\d+/ test v document write v /^\\d+$/ test v document write v |
 | autogenerated/Xss/DomBasedXss/tst.js:129:22:129:22 | v | enclosingFunctionName | tst |
-| autogenerated/Xss/DomBasedXss/tst.js:129:22:129:22 | v | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:129:22:129:22 | v | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:129:22:129:22 | v | receiverName | document |
 | autogenerated/Xss/DomBasedXss/tst.js:132:20:132:20 | v | CalleeFlexibleAccessPath | ?.test |
 | autogenerated/Xss/DomBasedXss/tst.js:132:20:132:20 | v | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:132:20:132:20 | v | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:132:20:132:20 | v | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:132:20:132:20 | v | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:132:20:132:20 | v | enclosingFunctionBody | v document location search substr 1 document write v /^\\d+$/ test v document write v m /^\\d+$/ exec v document write v v match /^\\d+$/ document write v v match ^\\d+$ document write v /\\d+/ test v document write v /^\\d+$/ test v document write v |
 | autogenerated/Xss/DomBasedXss/tst.js:132:20:132:20 | v | enclosingFunctionName | tst |
-| autogenerated/Xss/DomBasedXss/tst.js:132:20:132:20 | v | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:132:20:132:20 | v | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:136:18:136:18 | v | CalleeFlexibleAccessPath | document.write |
 | autogenerated/Xss/DomBasedXss/tst.js:136:18:136:18 | v | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:136:18:136:18 | v | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:136:18:136:18 | v | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:136:18:136:18 | v | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:136:18:136:18 | v | enclosingFunctionBody | v document location search substr 1 document write v /^\\d+$/ test v document write v m /^\\d+$/ exec v document write v v match /^\\d+$/ document write v v match ^\\d+$ document write v /\\d+/ test v document write v /^\\d+$/ test v document write v |
 | autogenerated/Xss/DomBasedXss/tst.js:136:18:136:18 | v | enclosingFunctionName | tst |
-| autogenerated/Xss/DomBasedXss/tst.js:136:18:136:18 | v | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:136:18:136:18 | v | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:136:18:136:18 | v | receiverName | document |
 | autogenerated/Xss/DomBasedXss/tst.js:138:22:138:22 | v | CalleeFlexibleAccessPath | ?.test |
 | autogenerated/Xss/DomBasedXss/tst.js:138:22:138:22 | v | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:138:22:138:22 | v | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:138:22:138:22 | v | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:138:22:138:22 | v | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:138:22:138:22 | v | enclosingFunctionBody | v document location search substr 1 document write v /^\\d+$/ test v document write v m /^\\d+$/ exec v document write v v match /^\\d+$/ document write v v match ^\\d+$ document write v /\\d+/ test v document write v /^\\d+$/ test v document write v |
 | autogenerated/Xss/DomBasedXss/tst.js:138:22:138:22 | v | enclosingFunctionName | tst |
-| autogenerated/Xss/DomBasedXss/tst.js:138:22:138:22 | v | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:138:22:138:22 | v | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:142:18:142:18 | v | CalleeFlexibleAccessPath | document.write |
 | autogenerated/Xss/DomBasedXss/tst.js:142:18:142:18 | v | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:142:18:142:18 | v | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:142:18:142:18 | v | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:142:18:142:18 | v | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:142:18:142:18 | v | enclosingFunctionBody | v document location search substr 1 document write v /^\\d+$/ test v document write v m /^\\d+$/ exec v document write v v match /^\\d+$/ document write v v match ^\\d+$ document write v /\\d+/ test v document write v /^\\d+$/ test v document write v |
 | autogenerated/Xss/DomBasedXss/tst.js:142:18:142:18 | v | enclosingFunctionName | tst |
-| autogenerated/Xss/DomBasedXss/tst.js:142:18:142:18 | v | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:142:18:142:18 | v | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:142:18:142:18 | v | receiverName | document |
 | autogenerated/Xss/DomBasedXss/tst.js:146:20:146:26 | 'myApp' | CalleeFlexibleAccessPath | angular.module |
 | autogenerated/Xss/DomBasedXss/tst.js:146:20:146:26 | 'myApp' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:146:20:146:26 | 'myApp' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:146:20:146:26 | 'myApp' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:146:20:146:26 | 'myApp' | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:146:20:146:26 | 'myApp' | enclosingFunctionBody | angular module myApp factory xssSource_to_service xssSinkService1 xssSinkService1 xssSinkService1 window location search factory xssSinkService1 v $ <div> html v factory xssSource_from_service xssSourceService xssSourceService $ <div> html xssSourceService factory xssSourceService window location search factory innocentSource_to_service xssSinkService2 xssSinkService2 xssSinkService2 innocent factory xssSinkService2 v $ <div> html v factory innocentSource_from_service innocentSourceService innocentSourceService $ <div> html innocentSourceService factory innocentSourceService innocent |
 | autogenerated/Xss/DomBasedXss/tst.js:146:20:146:26 | 'myApp' | enclosingFunctionName | angularJSServices |
-| autogenerated/Xss/DomBasedXss/tst.js:146:20:146:26 | 'myApp' | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:146:20:146:26 | 'myApp' | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:146:20:146:26 | 'myApp' | receiverName | angular |
 | autogenerated/Xss/DomBasedXss/tst.js:146:29:146:30 | [] | CalleeFlexibleAccessPath | angular.module |
 | autogenerated/Xss/DomBasedXss/tst.js:146:29:146:30 | [] | InputArgumentIndex | 1 |
-| autogenerated/Xss/DomBasedXss/tst.js:146:29:146:30 | [] | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:146:29:146:30 | [] | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:146:29:146:30 | [] | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:146:29:146:30 | [] | enclosingFunctionBody | angular module myApp factory xssSource_to_service xssSinkService1 xssSinkService1 xssSinkService1 window location search factory xssSinkService1 v $ <div> html v factory xssSource_from_service xssSourceService xssSourceService $ <div> html xssSourceService factory xssSourceService window location search factory innocentSource_to_service xssSinkService2 xssSinkService2 xssSinkService2 innocent factory xssSinkService2 v $ <div> html v factory innocentSource_from_service innocentSourceService innocentSourceService $ <div> html innocentSourceService factory innocentSourceService innocent |
 | autogenerated/Xss/DomBasedXss/tst.js:146:29:146:30 | [] | enclosingFunctionName | angularJSServices |
-| autogenerated/Xss/DomBasedXss/tst.js:146:29:146:30 | [] | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:146:29:146:30 | [] | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:146:29:146:30 | [] | receiverName | angular |
 | autogenerated/Xss/DomBasedXss/tst.js:147:18:147:39 | "xssSou ... ervice" | CalleeFlexibleAccessPath | angular.module().factory |
 | autogenerated/Xss/DomBasedXss/tst.js:147:18:147:39 | "xssSou ... ervice" | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:147:18:147:39 | "xssSou ... ervice" | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:147:18:147:39 | "xssSou ... ervice" | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:147:18:147:39 | "xssSou ... ervice" | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:147:18:147:39 | "xssSou ... ervice" | enclosingFunctionBody | angular module myApp factory xssSource_to_service xssSinkService1 xssSinkService1 xssSinkService1 window location search factory xssSinkService1 v $ <div> html v factory xssSource_from_service xssSourceService xssSourceService $ <div> html xssSourceService factory xssSourceService window location search factory innocentSource_to_service xssSinkService2 xssSinkService2 xssSinkService2 innocent factory xssSinkService2 v $ <div> html v factory innocentSource_from_service innocentSourceService innocentSourceService $ <div> html innocentSourceService factory innocentSourceService innocent |
 | autogenerated/Xss/DomBasedXss/tst.js:147:18:147:39 | "xssSou ... ervice" | enclosingFunctionName | angularJSServices |
-| autogenerated/Xss/DomBasedXss/tst.js:147:18:147:39 | "xssSou ... ervice" | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:147:18:147:39 | "xssSou ... ervice" | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:147:42:149:10 | ["xssSi ...      }] | CalleeFlexibleAccessPath | angular.module().factory |
 | autogenerated/Xss/DomBasedXss/tst.js:147:42:149:10 | ["xssSi ...      }] | InputArgumentIndex | 1 |
-| autogenerated/Xss/DomBasedXss/tst.js:147:42:149:10 | ["xssSi ...      }] | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:147:42:149:10 | ["xssSi ...      }] | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:147:42:149:10 | ["xssSi ...      }] | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:147:42:149:10 | ["xssSi ...      }] | enclosingFunctionBody | angular module myApp factory xssSource_to_service xssSinkService1 xssSinkService1 xssSinkService1 window location search factory xssSinkService1 v $ <div> html v factory xssSource_from_service xssSourceService xssSourceService $ <div> html xssSourceService factory xssSourceService window location search factory innocentSource_to_service xssSinkService2 xssSinkService2 xssSinkService2 innocent factory xssSinkService2 v $ <div> html v factory innocentSource_from_service innocentSourceService innocentSourceService $ <div> html innocentSourceService factory innocentSourceService innocent |
 | autogenerated/Xss/DomBasedXss/tst.js:147:42:149:10 | ["xssSi ...      }] | enclosingFunctionName | angularJSServices |
-| autogenerated/Xss/DomBasedXss/tst.js:147:42:149:10 | ["xssSi ...      }] | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:147:43:147:59 | "xssSinkService1" | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:147:42:149:10 | ["xssSi ...      }] | fileImports | ansi-to-html |
+| autogenerated/Xss/DomBasedXss/tst.js:147:43:147:59 | "xssSinkService1" | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:147:43:147:59 | "xssSinkService1" | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:147:43:147:59 | "xssSinkService1" | enclosingFunctionBody | angular module myApp factory xssSource_to_service xssSinkService1 xssSinkService1 xssSinkService1 window location search factory xssSinkService1 v $ <div> html v factory xssSource_from_service xssSourceService xssSourceService $ <div> html xssSourceService factory xssSourceService window location search factory innocentSource_to_service xssSinkService2 xssSinkService2 xssSinkService2 innocent factory xssSinkService2 v $ <div> html v factory innocentSource_from_service innocentSourceService innocentSourceService $ <div> html innocentSourceService factory innocentSourceService innocent |
 | autogenerated/Xss/DomBasedXss/tst.js:147:43:147:59 | "xssSinkService1" | enclosingFunctionName | angularJSServices |
-| autogenerated/Xss/DomBasedXss/tst.js:147:43:147:59 | "xssSinkService1" | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:147:62:149:9 | functio ...       } | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:147:43:147:59 | "xssSinkService1" | fileImports | ansi-to-html |
+| autogenerated/Xss/DomBasedXss/tst.js:147:62:149:9 | functio ...       } | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:147:62:149:9 | functio ...       } | contextSurroundingFunctionParameters | ()\n(xssSinkService1) |
 | autogenerated/Xss/DomBasedXss/tst.js:147:62:149:9 | functio ...       } | enclosingFunctionBody | angular module myApp factory xssSource_to_service xssSinkService1 xssSinkService1 xssSinkService1 window location search factory xssSinkService1 v $ <div> html v factory xssSource_from_service xssSourceService xssSourceService $ <div> html xssSourceService factory xssSourceService window location search factory innocentSource_to_service xssSinkService2 xssSinkService2 xssSinkService2 innocent factory xssSinkService2 v $ <div> html v factory innocentSource_from_service innocentSourceService innocentSourceService $ <div> html innocentSourceService factory innocentSourceService innocent |
 | autogenerated/Xss/DomBasedXss/tst.js:147:62:149:9 | functio ...       } | enclosingFunctionName | angularJSServices |
-| autogenerated/Xss/DomBasedXss/tst.js:147:62:149:9 | functio ...       } | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:147:62:149:9 | functio ...       } | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:150:18:150:34 | "xssSinkService1" | CalleeFlexibleAccessPath | angular.module().factory().factory |
 | autogenerated/Xss/DomBasedXss/tst.js:150:18:150:34 | "xssSinkService1" | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:150:18:150:34 | "xssSinkService1" | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:150:18:150:34 | "xssSinkService1" | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:150:18:150:34 | "xssSinkService1" | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:150:18:150:34 | "xssSinkService1" | enclosingFunctionBody | angular module myApp factory xssSource_to_service xssSinkService1 xssSinkService1 xssSinkService1 window location search factory xssSinkService1 v $ <div> html v factory xssSource_from_service xssSourceService xssSourceService $ <div> html xssSourceService factory xssSourceService window location search factory innocentSource_to_service xssSinkService2 xssSinkService2 xssSinkService2 innocent factory xssSinkService2 v $ <div> html v factory innocentSource_from_service innocentSourceService innocentSourceService $ <div> html innocentSourceService factory innocentSourceService innocent |
 | autogenerated/Xss/DomBasedXss/tst.js:150:18:150:34 | "xssSinkService1" | enclosingFunctionName | angularJSServices |
-| autogenerated/Xss/DomBasedXss/tst.js:150:18:150:34 | "xssSinkService1" | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:150:18:150:34 | "xssSinkService1" | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:150:37:152:9 | functio ...       } | CalleeFlexibleAccessPath | angular.module().factory().factory |
 | autogenerated/Xss/DomBasedXss/tst.js:150:37:152:9 | functio ...       } | InputArgumentIndex | 1 |
-| autogenerated/Xss/DomBasedXss/tst.js:150:37:152:9 | functio ...       } | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:150:37:152:9 | functio ...       } | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:150:37:152:9 | functio ...       } | contextSurroundingFunctionParameters | ()\n() |
 | autogenerated/Xss/DomBasedXss/tst.js:150:37:152:9 | functio ...       } | enclosingFunctionBody | angular module myApp factory xssSource_to_service xssSinkService1 xssSinkService1 xssSinkService1 window location search factory xssSinkService1 v $ <div> html v factory xssSource_from_service xssSourceService xssSourceService $ <div> html xssSourceService factory xssSourceService window location search factory innocentSource_to_service xssSinkService2 xssSinkService2 xssSinkService2 innocent factory xssSinkService2 v $ <div> html v factory innocentSource_from_service innocentSourceService innocentSourceService $ <div> html innocentSourceService factory innocentSourceService innocent |
 | autogenerated/Xss/DomBasedXss/tst.js:150:37:152:9 | functio ...       } | enclosingFunctionName | angularJSServices |
-| autogenerated/Xss/DomBasedXss/tst.js:150:37:152:9 | functio ...       } | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:150:37:152:9 | functio ...       } | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:151:35:151:41 | "<div>" | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/DomBasedXss/tst.js:151:35:151:41 | "<div>" | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:151:35:151:41 | "<div>" | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:151:35:151:41 | "<div>" | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:151:35:151:41 | "<div>" | contextSurroundingFunctionParameters | ()\n()\n(v) |
 | autogenerated/Xss/DomBasedXss/tst.js:151:35:151:41 | "<div>" | enclosingFunctionBody | angular module myApp factory xssSource_to_service xssSinkService1 xssSinkService1 xssSinkService1 window location search factory xssSinkService1 v $ <div> html v factory xssSource_from_service xssSourceService xssSourceService $ <div> html xssSourceService factory xssSourceService window location search factory innocentSource_to_service xssSinkService2 xssSinkService2 xssSinkService2 innocent factory xssSinkService2 v $ <div> html v factory innocentSource_from_service innocentSourceService innocentSourceService $ <div> html innocentSourceService factory innocentSourceService innocent |
 | autogenerated/Xss/DomBasedXss/tst.js:151:35:151:41 | "<div>" | enclosingFunctionName | angularJSServices |
-| autogenerated/Xss/DomBasedXss/tst.js:151:35:151:41 | "<div>" | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:151:35:151:41 | "<div>" | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:151:49:151:49 | v | CalleeFlexibleAccessPath | $().html |
 | autogenerated/Xss/DomBasedXss/tst.js:151:49:151:49 | v | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:151:49:151:49 | v | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:151:49:151:49 | v | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:151:49:151:49 | v | contextSurroundingFunctionParameters | ()\n()\n(v) |
 | autogenerated/Xss/DomBasedXss/tst.js:151:49:151:49 | v | enclosingFunctionBody | angular module myApp factory xssSource_to_service xssSinkService1 xssSinkService1 xssSinkService1 window location search factory xssSinkService1 v $ <div> html v factory xssSource_from_service xssSourceService xssSourceService $ <div> html xssSourceService factory xssSourceService window location search factory innocentSource_to_service xssSinkService2 xssSinkService2 xssSinkService2 innocent factory xssSinkService2 v $ <div> html v factory innocentSource_from_service innocentSourceService innocentSourceService $ <div> html innocentSourceService factory innocentSourceService innocent |
 | autogenerated/Xss/DomBasedXss/tst.js:151:49:151:49 | v | enclosingFunctionName | angularJSServices |
-| autogenerated/Xss/DomBasedXss/tst.js:151:49:151:49 | v | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:151:49:151:49 | v | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:154:18:154:41 | "xssSou ... ervice" | CalleeFlexibleAccessPath | angular.module().factory().factory().factory |
 | autogenerated/Xss/DomBasedXss/tst.js:154:18:154:41 | "xssSou ... ervice" | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:154:18:154:41 | "xssSou ... ervice" | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:154:18:154:41 | "xssSou ... ervice" | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:154:18:154:41 | "xssSou ... ervice" | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:154:18:154:41 | "xssSou ... ervice" | enclosingFunctionBody | angular module myApp factory xssSource_to_service xssSinkService1 xssSinkService1 xssSinkService1 window location search factory xssSinkService1 v $ <div> html v factory xssSource_from_service xssSourceService xssSourceService $ <div> html xssSourceService factory xssSourceService window location search factory innocentSource_to_service xssSinkService2 xssSinkService2 xssSinkService2 innocent factory xssSinkService2 v $ <div> html v factory innocentSource_from_service innocentSourceService innocentSourceService $ <div> html innocentSourceService factory innocentSourceService innocent |
 | autogenerated/Xss/DomBasedXss/tst.js:154:18:154:41 | "xssSou ... ervice" | enclosingFunctionName | angularJSServices |
-| autogenerated/Xss/DomBasedXss/tst.js:154:18:154:41 | "xssSou ... ervice" | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:154:18:154:41 | "xssSou ... ervice" | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:154:44:156:10 | ["xssSo ...      }] | CalleeFlexibleAccessPath | angular.module().factory().factory().factory |
 | autogenerated/Xss/DomBasedXss/tst.js:154:44:156:10 | ["xssSo ...      }] | InputArgumentIndex | 1 |
-| autogenerated/Xss/DomBasedXss/tst.js:154:44:156:10 | ["xssSo ...      }] | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:154:44:156:10 | ["xssSo ...      }] | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:154:44:156:10 | ["xssSo ...      }] | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:154:44:156:10 | ["xssSo ...      }] | enclosingFunctionBody | angular module myApp factory xssSource_to_service xssSinkService1 xssSinkService1 xssSinkService1 window location search factory xssSinkService1 v $ <div> html v factory xssSource_from_service xssSourceService xssSourceService $ <div> html xssSourceService factory xssSourceService window location search factory innocentSource_to_service xssSinkService2 xssSinkService2 xssSinkService2 innocent factory xssSinkService2 v $ <div> html v factory innocentSource_from_service innocentSourceService innocentSourceService $ <div> html innocentSourceService factory innocentSourceService innocent |
 | autogenerated/Xss/DomBasedXss/tst.js:154:44:156:10 | ["xssSo ...      }] | enclosingFunctionName | angularJSServices |
-| autogenerated/Xss/DomBasedXss/tst.js:154:44:156:10 | ["xssSo ...      }] | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:154:45:154:62 | "xssSourceService" | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:154:44:156:10 | ["xssSo ...      }] | fileImports | ansi-to-html |
+| autogenerated/Xss/DomBasedXss/tst.js:154:45:154:62 | "xssSourceService" | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:154:45:154:62 | "xssSourceService" | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:154:45:154:62 | "xssSourceService" | enclosingFunctionBody | angular module myApp factory xssSource_to_service xssSinkService1 xssSinkService1 xssSinkService1 window location search factory xssSinkService1 v $ <div> html v factory xssSource_from_service xssSourceService xssSourceService $ <div> html xssSourceService factory xssSourceService window location search factory innocentSource_to_service xssSinkService2 xssSinkService2 xssSinkService2 innocent factory xssSinkService2 v $ <div> html v factory innocentSource_from_service innocentSourceService innocentSourceService $ <div> html innocentSourceService factory innocentSourceService innocent |
 | autogenerated/Xss/DomBasedXss/tst.js:154:45:154:62 | "xssSourceService" | enclosingFunctionName | angularJSServices |
-| autogenerated/Xss/DomBasedXss/tst.js:154:45:154:62 | "xssSourceService" | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:154:65:156:9 | functio ...       } | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:154:45:154:62 | "xssSourceService" | fileImports | ansi-to-html |
+| autogenerated/Xss/DomBasedXss/tst.js:154:65:156:9 | functio ...       } | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:154:65:156:9 | functio ...       } | contextSurroundingFunctionParameters | ()\n(xssSourceService) |
 | autogenerated/Xss/DomBasedXss/tst.js:154:65:156:9 | functio ...       } | enclosingFunctionBody | angular module myApp factory xssSource_to_service xssSinkService1 xssSinkService1 xssSinkService1 window location search factory xssSinkService1 v $ <div> html v factory xssSource_from_service xssSourceService xssSourceService $ <div> html xssSourceService factory xssSourceService window location search factory innocentSource_to_service xssSinkService2 xssSinkService2 xssSinkService2 innocent factory xssSinkService2 v $ <div> html v factory innocentSource_from_service innocentSourceService innocentSourceService $ <div> html innocentSourceService factory innocentSourceService innocent |
 | autogenerated/Xss/DomBasedXss/tst.js:154:65:156:9 | functio ...       } | enclosingFunctionName | angularJSServices |
-| autogenerated/Xss/DomBasedXss/tst.js:154:65:156:9 | functio ...       } | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:154:65:156:9 | functio ...       } | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:155:15:155:21 | "<div>" | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/DomBasedXss/tst.js:155:15:155:21 | "<div>" | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:155:15:155:21 | "<div>" | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:155:15:155:21 | "<div>" | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:155:15:155:21 | "<div>" | contextSurroundingFunctionParameters | ()\n(xssSourceService) |
 | autogenerated/Xss/DomBasedXss/tst.js:155:15:155:21 | "<div>" | enclosingFunctionBody | angular module myApp factory xssSource_to_service xssSinkService1 xssSinkService1 xssSinkService1 window location search factory xssSinkService1 v $ <div> html v factory xssSource_from_service xssSourceService xssSourceService $ <div> html xssSourceService factory xssSourceService window location search factory innocentSource_to_service xssSinkService2 xssSinkService2 xssSinkService2 innocent factory xssSinkService2 v $ <div> html v factory innocentSource_from_service innocentSourceService innocentSourceService $ <div> html innocentSourceService factory innocentSourceService innocent |
 | autogenerated/Xss/DomBasedXss/tst.js:155:15:155:21 | "<div>" | enclosingFunctionName | angularJSServices |
-| autogenerated/Xss/DomBasedXss/tst.js:155:15:155:21 | "<div>" | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:155:15:155:21 | "<div>" | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:155:29:155:46 | xssSourceService() | CalleeFlexibleAccessPath | $().html |
 | autogenerated/Xss/DomBasedXss/tst.js:155:29:155:46 | xssSourceService() | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:155:29:155:46 | xssSourceService() | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:155:29:155:46 | xssSourceService() | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:155:29:155:46 | xssSourceService() | contextSurroundingFunctionParameters | ()\n(xssSourceService) |
 | autogenerated/Xss/DomBasedXss/tst.js:155:29:155:46 | xssSourceService() | enclosingFunctionBody | angular module myApp factory xssSource_to_service xssSinkService1 xssSinkService1 xssSinkService1 window location search factory xssSinkService1 v $ <div> html v factory xssSource_from_service xssSourceService xssSourceService $ <div> html xssSourceService factory xssSourceService window location search factory innocentSource_to_service xssSinkService2 xssSinkService2 xssSinkService2 innocent factory xssSinkService2 v $ <div> html v factory innocentSource_from_service innocentSourceService innocentSourceService $ <div> html innocentSourceService factory innocentSourceService innocent |
 | autogenerated/Xss/DomBasedXss/tst.js:155:29:155:46 | xssSourceService() | enclosingFunctionName | angularJSServices |
-| autogenerated/Xss/DomBasedXss/tst.js:155:29:155:46 | xssSourceService() | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:155:29:155:46 | xssSourceService() | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:157:18:157:35 | "xssSourceService" | CalleeFlexibleAccessPath | angular.module().factory().factory().factory().factory |
 | autogenerated/Xss/DomBasedXss/tst.js:157:18:157:35 | "xssSourceService" | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:157:18:157:35 | "xssSourceService" | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:157:18:157:35 | "xssSourceService" | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:157:18:157:35 | "xssSourceService" | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:157:18:157:35 | "xssSourceService" | enclosingFunctionBody | angular module myApp factory xssSource_to_service xssSinkService1 xssSinkService1 xssSinkService1 window location search factory xssSinkService1 v $ <div> html v factory xssSource_from_service xssSourceService xssSourceService $ <div> html xssSourceService factory xssSourceService window location search factory innocentSource_to_service xssSinkService2 xssSinkService2 xssSinkService2 innocent factory xssSinkService2 v $ <div> html v factory innocentSource_from_service innocentSourceService innocentSourceService $ <div> html innocentSourceService factory innocentSourceService innocent |
 | autogenerated/Xss/DomBasedXss/tst.js:157:18:157:35 | "xssSourceService" | enclosingFunctionName | angularJSServices |
-| autogenerated/Xss/DomBasedXss/tst.js:157:18:157:35 | "xssSourceService" | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:157:18:157:35 | "xssSourceService" | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:157:38:159:9 | functio ...       } | CalleeFlexibleAccessPath | angular.module().factory().factory().factory().factory |
 | autogenerated/Xss/DomBasedXss/tst.js:157:38:159:9 | functio ...       } | InputArgumentIndex | 1 |
-| autogenerated/Xss/DomBasedXss/tst.js:157:38:159:9 | functio ...       } | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:157:38:159:9 | functio ...       } | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:157:38:159:9 | functio ...       } | contextSurroundingFunctionParameters | ()\n() |
 | autogenerated/Xss/DomBasedXss/tst.js:157:38:159:9 | functio ...       } | enclosingFunctionBody | angular module myApp factory xssSource_to_service xssSinkService1 xssSinkService1 xssSinkService1 window location search factory xssSinkService1 v $ <div> html v factory xssSource_from_service xssSourceService xssSourceService $ <div> html xssSourceService factory xssSourceService window location search factory innocentSource_to_service xssSinkService2 xssSinkService2 xssSinkService2 innocent factory xssSinkService2 v $ <div> html v factory innocentSource_from_service innocentSourceService innocentSourceService $ <div> html innocentSourceService factory innocentSourceService innocent |
 | autogenerated/Xss/DomBasedXss/tst.js:157:38:159:9 | functio ...       } | enclosingFunctionName | angularJSServices |
-| autogenerated/Xss/DomBasedXss/tst.js:157:38:159:9 | functio ...       } | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:157:38:159:9 | functio ...       } | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:161:18:161:44 | "innoce ... ervice" | CalleeFlexibleAccessPath | angular.module().factory().factory().factory().factory().factory |
 | autogenerated/Xss/DomBasedXss/tst.js:161:18:161:44 | "innoce ... ervice" | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:161:18:161:44 | "innoce ... ervice" | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:161:18:161:44 | "innoce ... ervice" | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:161:18:161:44 | "innoce ... ervice" | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:161:18:161:44 | "innoce ... ervice" | enclosingFunctionBody | angular module myApp factory xssSource_to_service xssSinkService1 xssSinkService1 xssSinkService1 window location search factory xssSinkService1 v $ <div> html v factory xssSource_from_service xssSourceService xssSourceService $ <div> html xssSourceService factory xssSourceService window location search factory innocentSource_to_service xssSinkService2 xssSinkService2 xssSinkService2 innocent factory xssSinkService2 v $ <div> html v factory innocentSource_from_service innocentSourceService innocentSourceService $ <div> html innocentSourceService factory innocentSourceService innocent |
 | autogenerated/Xss/DomBasedXss/tst.js:161:18:161:44 | "innoce ... ervice" | enclosingFunctionName | angularJSServices |
-| autogenerated/Xss/DomBasedXss/tst.js:161:18:161:44 | "innoce ... ervice" | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:161:18:161:44 | "innoce ... ervice" | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:161:47:163:10 | ["xssSi ...      }] | CalleeFlexibleAccessPath | angular.module().factory().factory().factory().factory().factory |
 | autogenerated/Xss/DomBasedXss/tst.js:161:47:163:10 | ["xssSi ...      }] | InputArgumentIndex | 1 |
-| autogenerated/Xss/DomBasedXss/tst.js:161:47:163:10 | ["xssSi ...      }] | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:161:47:163:10 | ["xssSi ...      }] | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:161:47:163:10 | ["xssSi ...      }] | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:161:47:163:10 | ["xssSi ...      }] | enclosingFunctionBody | angular module myApp factory xssSource_to_service xssSinkService1 xssSinkService1 xssSinkService1 window location search factory xssSinkService1 v $ <div> html v factory xssSource_from_service xssSourceService xssSourceService $ <div> html xssSourceService factory xssSourceService window location search factory innocentSource_to_service xssSinkService2 xssSinkService2 xssSinkService2 innocent factory xssSinkService2 v $ <div> html v factory innocentSource_from_service innocentSourceService innocentSourceService $ <div> html innocentSourceService factory innocentSourceService innocent |
 | autogenerated/Xss/DomBasedXss/tst.js:161:47:163:10 | ["xssSi ...      }] | enclosingFunctionName | angularJSServices |
-| autogenerated/Xss/DomBasedXss/tst.js:161:47:163:10 | ["xssSi ...      }] | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:161:48:161:64 | "xssSinkService2" | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:161:47:163:10 | ["xssSi ...      }] | fileImports | ansi-to-html |
+| autogenerated/Xss/DomBasedXss/tst.js:161:48:161:64 | "xssSinkService2" | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:161:48:161:64 | "xssSinkService2" | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:161:48:161:64 | "xssSinkService2" | enclosingFunctionBody | angular module myApp factory xssSource_to_service xssSinkService1 xssSinkService1 xssSinkService1 window location search factory xssSinkService1 v $ <div> html v factory xssSource_from_service xssSourceService xssSourceService $ <div> html xssSourceService factory xssSourceService window location search factory innocentSource_to_service xssSinkService2 xssSinkService2 xssSinkService2 innocent factory xssSinkService2 v $ <div> html v factory innocentSource_from_service innocentSourceService innocentSourceService $ <div> html innocentSourceService factory innocentSourceService innocent |
 | autogenerated/Xss/DomBasedXss/tst.js:161:48:161:64 | "xssSinkService2" | enclosingFunctionName | angularJSServices |
-| autogenerated/Xss/DomBasedXss/tst.js:161:48:161:64 | "xssSinkService2" | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:161:67:163:9 | functio ...       } | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:161:48:161:64 | "xssSinkService2" | fileImports | ansi-to-html |
+| autogenerated/Xss/DomBasedXss/tst.js:161:67:163:9 | functio ...       } | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:161:67:163:9 | functio ...       } | contextSurroundingFunctionParameters | ()\n(xssSinkService2) |
 | autogenerated/Xss/DomBasedXss/tst.js:161:67:163:9 | functio ...       } | enclosingFunctionBody | angular module myApp factory xssSource_to_service xssSinkService1 xssSinkService1 xssSinkService1 window location search factory xssSinkService1 v $ <div> html v factory xssSource_from_service xssSourceService xssSourceService $ <div> html xssSourceService factory xssSourceService window location search factory innocentSource_to_service xssSinkService2 xssSinkService2 xssSinkService2 innocent factory xssSinkService2 v $ <div> html v factory innocentSource_from_service innocentSourceService innocentSourceService $ <div> html innocentSourceService factory innocentSourceService innocent |
 | autogenerated/Xss/DomBasedXss/tst.js:161:67:163:9 | functio ...       } | enclosingFunctionName | angularJSServices |
-| autogenerated/Xss/DomBasedXss/tst.js:161:67:163:9 | functio ...       } | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:161:67:163:9 | functio ...       } | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:164:18:164:34 | "xssSinkService2" | CalleeFlexibleAccessPath | angular.module().factory().factory().factory().factory().factory().factory |
 | autogenerated/Xss/DomBasedXss/tst.js:164:18:164:34 | "xssSinkService2" | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:164:18:164:34 | "xssSinkService2" | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:164:18:164:34 | "xssSinkService2" | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:164:18:164:34 | "xssSinkService2" | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:164:18:164:34 | "xssSinkService2" | enclosingFunctionBody | angular module myApp factory xssSource_to_service xssSinkService1 xssSinkService1 xssSinkService1 window location search factory xssSinkService1 v $ <div> html v factory xssSource_from_service xssSourceService xssSourceService $ <div> html xssSourceService factory xssSourceService window location search factory innocentSource_to_service xssSinkService2 xssSinkService2 xssSinkService2 innocent factory xssSinkService2 v $ <div> html v factory innocentSource_from_service innocentSourceService innocentSourceService $ <div> html innocentSourceService factory innocentSourceService innocent |
 | autogenerated/Xss/DomBasedXss/tst.js:164:18:164:34 | "xssSinkService2" | enclosingFunctionName | angularJSServices |
-| autogenerated/Xss/DomBasedXss/tst.js:164:18:164:34 | "xssSinkService2" | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:164:18:164:34 | "xssSinkService2" | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:164:37:166:9 | functio ...       } | CalleeFlexibleAccessPath | angular.module().factory().factory().factory().factory().factory().factory |
 | autogenerated/Xss/DomBasedXss/tst.js:164:37:166:9 | functio ...       } | InputArgumentIndex | 1 |
-| autogenerated/Xss/DomBasedXss/tst.js:164:37:166:9 | functio ...       } | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:164:37:166:9 | functio ...       } | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:164:37:166:9 | functio ...       } | contextSurroundingFunctionParameters | ()\n() |
 | autogenerated/Xss/DomBasedXss/tst.js:164:37:166:9 | functio ...       } | enclosingFunctionBody | angular module myApp factory xssSource_to_service xssSinkService1 xssSinkService1 xssSinkService1 window location search factory xssSinkService1 v $ <div> html v factory xssSource_from_service xssSourceService xssSourceService $ <div> html xssSourceService factory xssSourceService window location search factory innocentSource_to_service xssSinkService2 xssSinkService2 xssSinkService2 innocent factory xssSinkService2 v $ <div> html v factory innocentSource_from_service innocentSourceService innocentSourceService $ <div> html innocentSourceService factory innocentSourceService innocent |
 | autogenerated/Xss/DomBasedXss/tst.js:164:37:166:9 | functio ...       } | enclosingFunctionName | angularJSServices |
-| autogenerated/Xss/DomBasedXss/tst.js:164:37:166:9 | functio ...       } | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:164:37:166:9 | functio ...       } | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:165:35:165:41 | "<div>" | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/DomBasedXss/tst.js:165:35:165:41 | "<div>" | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:165:35:165:41 | "<div>" | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:165:35:165:41 | "<div>" | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:165:35:165:41 | "<div>" | contextSurroundingFunctionParameters | ()\n()\n(v) |
 | autogenerated/Xss/DomBasedXss/tst.js:165:35:165:41 | "<div>" | enclosingFunctionBody | angular module myApp factory xssSource_to_service xssSinkService1 xssSinkService1 xssSinkService1 window location search factory xssSinkService1 v $ <div> html v factory xssSource_from_service xssSourceService xssSourceService $ <div> html xssSourceService factory xssSourceService window location search factory innocentSource_to_service xssSinkService2 xssSinkService2 xssSinkService2 innocent factory xssSinkService2 v $ <div> html v factory innocentSource_from_service innocentSourceService innocentSourceService $ <div> html innocentSourceService factory innocentSourceService innocent |
 | autogenerated/Xss/DomBasedXss/tst.js:165:35:165:41 | "<div>" | enclosingFunctionName | angularJSServices |
-| autogenerated/Xss/DomBasedXss/tst.js:165:35:165:41 | "<div>" | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:165:35:165:41 | "<div>" | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:165:49:165:49 | v | CalleeFlexibleAccessPath | $().html |
 | autogenerated/Xss/DomBasedXss/tst.js:165:49:165:49 | v | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:165:49:165:49 | v | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:165:49:165:49 | v | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:165:49:165:49 | v | contextSurroundingFunctionParameters | ()\n()\n(v) |
 | autogenerated/Xss/DomBasedXss/tst.js:165:49:165:49 | v | enclosingFunctionBody | angular module myApp factory xssSource_to_service xssSinkService1 xssSinkService1 xssSinkService1 window location search factory xssSinkService1 v $ <div> html v factory xssSource_from_service xssSourceService xssSourceService $ <div> html xssSourceService factory xssSourceService window location search factory innocentSource_to_service xssSinkService2 xssSinkService2 xssSinkService2 innocent factory xssSinkService2 v $ <div> html v factory innocentSource_from_service innocentSourceService innocentSourceService $ <div> html innocentSourceService factory innocentSourceService innocent |
 | autogenerated/Xss/DomBasedXss/tst.js:165:49:165:49 | v | enclosingFunctionName | angularJSServices |
-| autogenerated/Xss/DomBasedXss/tst.js:165:49:165:49 | v | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:165:49:165:49 | v | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:168:18:168:46 | "innoce ... ervice" | CalleeFlexibleAccessPath | angular.module().factory().factory().factory().factory().factory().factory().factory |
 | autogenerated/Xss/DomBasedXss/tst.js:168:18:168:46 | "innoce ... ervice" | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:168:18:168:46 | "innoce ... ervice" | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:168:18:168:46 | "innoce ... ervice" | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:168:18:168:46 | "innoce ... ervice" | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:168:18:168:46 | "innoce ... ervice" | enclosingFunctionBody | angular module myApp factory xssSource_to_service xssSinkService1 xssSinkService1 xssSinkService1 window location search factory xssSinkService1 v $ <div> html v factory xssSource_from_service xssSourceService xssSourceService $ <div> html xssSourceService factory xssSourceService window location search factory innocentSource_to_service xssSinkService2 xssSinkService2 xssSinkService2 innocent factory xssSinkService2 v $ <div> html v factory innocentSource_from_service innocentSourceService innocentSourceService $ <div> html innocentSourceService factory innocentSourceService innocent |
 | autogenerated/Xss/DomBasedXss/tst.js:168:18:168:46 | "innoce ... ervice" | enclosingFunctionName | angularJSServices |
-| autogenerated/Xss/DomBasedXss/tst.js:168:18:168:46 | "innoce ... ervice" | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:168:18:168:46 | "innoce ... ervice" | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:168:49:170:10 | ["innoc ...      }] | CalleeFlexibleAccessPath | angular.module().factory().factory().factory().factory().factory().factory().factory |
 | autogenerated/Xss/DomBasedXss/tst.js:168:49:170:10 | ["innoc ...      }] | InputArgumentIndex | 1 |
-| autogenerated/Xss/DomBasedXss/tst.js:168:49:170:10 | ["innoc ...      }] | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:168:49:170:10 | ["innoc ...      }] | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:168:49:170:10 | ["innoc ...      }] | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:168:49:170:10 | ["innoc ...      }] | enclosingFunctionBody | angular module myApp factory xssSource_to_service xssSinkService1 xssSinkService1 xssSinkService1 window location search factory xssSinkService1 v $ <div> html v factory xssSource_from_service xssSourceService xssSourceService $ <div> html xssSourceService factory xssSourceService window location search factory innocentSource_to_service xssSinkService2 xssSinkService2 xssSinkService2 innocent factory xssSinkService2 v $ <div> html v factory innocentSource_from_service innocentSourceService innocentSourceService $ <div> html innocentSourceService factory innocentSourceService innocent |
 | autogenerated/Xss/DomBasedXss/tst.js:168:49:170:10 | ["innoc ...      }] | enclosingFunctionName | angularJSServices |
-| autogenerated/Xss/DomBasedXss/tst.js:168:49:170:10 | ["innoc ...      }] | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:168:50:168:72 | "innoce ... ervice" | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:168:49:170:10 | ["innoc ...      }] | fileImports | ansi-to-html |
+| autogenerated/Xss/DomBasedXss/tst.js:168:50:168:72 | "innoce ... ervice" | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:168:50:168:72 | "innoce ... ervice" | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:168:50:168:72 | "innoce ... ervice" | enclosingFunctionBody | angular module myApp factory xssSource_to_service xssSinkService1 xssSinkService1 xssSinkService1 window location search factory xssSinkService1 v $ <div> html v factory xssSource_from_service xssSourceService xssSourceService $ <div> html xssSourceService factory xssSourceService window location search factory innocentSource_to_service xssSinkService2 xssSinkService2 xssSinkService2 innocent factory xssSinkService2 v $ <div> html v factory innocentSource_from_service innocentSourceService innocentSourceService $ <div> html innocentSourceService factory innocentSourceService innocent |
 | autogenerated/Xss/DomBasedXss/tst.js:168:50:168:72 | "innoce ... ervice" | enclosingFunctionName | angularJSServices |
-| autogenerated/Xss/DomBasedXss/tst.js:168:50:168:72 | "innoce ... ervice" | fileImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:168:75:170:9 | functio ...       } | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:168:50:168:72 | "innoce ... ervice" | fileImports | ansi-to-html |
+| autogenerated/Xss/DomBasedXss/tst.js:168:75:170:9 | functio ...       } | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:168:75:170:9 | functio ...       } | contextSurroundingFunctionParameters | ()\n(innocentSourceService) |
 | autogenerated/Xss/DomBasedXss/tst.js:168:75:170:9 | functio ...       } | enclosingFunctionBody | angular module myApp factory xssSource_to_service xssSinkService1 xssSinkService1 xssSinkService1 window location search factory xssSinkService1 v $ <div> html v factory xssSource_from_service xssSourceService xssSourceService $ <div> html xssSourceService factory xssSourceService window location search factory innocentSource_to_service xssSinkService2 xssSinkService2 xssSinkService2 innocent factory xssSinkService2 v $ <div> html v factory innocentSource_from_service innocentSourceService innocentSourceService $ <div> html innocentSourceService factory innocentSourceService innocent |
 | autogenerated/Xss/DomBasedXss/tst.js:168:75:170:9 | functio ...       } | enclosingFunctionName | angularJSServices |
-| autogenerated/Xss/DomBasedXss/tst.js:168:75:170:9 | functio ...       } | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:168:75:170:9 | functio ...       } | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:169:15:169:21 | "<div>" | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/DomBasedXss/tst.js:169:15:169:21 | "<div>" | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:169:15:169:21 | "<div>" | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:169:15:169:21 | "<div>" | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:169:15:169:21 | "<div>" | contextSurroundingFunctionParameters | ()\n(innocentSourceService) |
 | autogenerated/Xss/DomBasedXss/tst.js:169:15:169:21 | "<div>" | enclosingFunctionBody | angular module myApp factory xssSource_to_service xssSinkService1 xssSinkService1 xssSinkService1 window location search factory xssSinkService1 v $ <div> html v factory xssSource_from_service xssSourceService xssSourceService $ <div> html xssSourceService factory xssSourceService window location search factory innocentSource_to_service xssSinkService2 xssSinkService2 xssSinkService2 innocent factory xssSinkService2 v $ <div> html v factory innocentSource_from_service innocentSourceService innocentSourceService $ <div> html innocentSourceService factory innocentSourceService innocent |
 | autogenerated/Xss/DomBasedXss/tst.js:169:15:169:21 | "<div>" | enclosingFunctionName | angularJSServices |
-| autogenerated/Xss/DomBasedXss/tst.js:169:15:169:21 | "<div>" | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:169:15:169:21 | "<div>" | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:169:29:169:51 | innocen ... rvice() | CalleeFlexibleAccessPath | $().html |
 | autogenerated/Xss/DomBasedXss/tst.js:169:29:169:51 | innocen ... rvice() | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:169:29:169:51 | innocen ... rvice() | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:169:29:169:51 | innocen ... rvice() | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:169:29:169:51 | innocen ... rvice() | contextSurroundingFunctionParameters | ()\n(innocentSourceService) |
 | autogenerated/Xss/DomBasedXss/tst.js:169:29:169:51 | innocen ... rvice() | enclosingFunctionBody | angular module myApp factory xssSource_to_service xssSinkService1 xssSinkService1 xssSinkService1 window location search factory xssSinkService1 v $ <div> html v factory xssSource_from_service xssSourceService xssSourceService $ <div> html xssSourceService factory xssSourceService window location search factory innocentSource_to_service xssSinkService2 xssSinkService2 xssSinkService2 innocent factory xssSinkService2 v $ <div> html v factory innocentSource_from_service innocentSourceService innocentSourceService $ <div> html innocentSourceService factory innocentSourceService innocent |
 | autogenerated/Xss/DomBasedXss/tst.js:169:29:169:51 | innocen ... rvice() | enclosingFunctionName | angularJSServices |
-| autogenerated/Xss/DomBasedXss/tst.js:169:29:169:51 | innocen ... rvice() | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:169:29:169:51 | innocen ... rvice() | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:171:18:171:40 | "innoce ... ervice" | CalleeFlexibleAccessPath | angular.module().factory().factory().factory().factory().factory().factory().factory().factory |
 | autogenerated/Xss/DomBasedXss/tst.js:171:18:171:40 | "innoce ... ervice" | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:171:18:171:40 | "innoce ... ervice" | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:171:18:171:40 | "innoce ... ervice" | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:171:18:171:40 | "innoce ... ervice" | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:171:18:171:40 | "innoce ... ervice" | enclosingFunctionBody | angular module myApp factory xssSource_to_service xssSinkService1 xssSinkService1 xssSinkService1 window location search factory xssSinkService1 v $ <div> html v factory xssSource_from_service xssSourceService xssSourceService $ <div> html xssSourceService factory xssSourceService window location search factory innocentSource_to_service xssSinkService2 xssSinkService2 xssSinkService2 innocent factory xssSinkService2 v $ <div> html v factory innocentSource_from_service innocentSourceService innocentSourceService $ <div> html innocentSourceService factory innocentSourceService innocent |
 | autogenerated/Xss/DomBasedXss/tst.js:171:18:171:40 | "innoce ... ervice" | enclosingFunctionName | angularJSServices |
-| autogenerated/Xss/DomBasedXss/tst.js:171:18:171:40 | "innoce ... ervice" | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:171:18:171:40 | "innoce ... ervice" | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:171:43:173:9 | functio ...       } | CalleeFlexibleAccessPath | angular.module().factory().factory().factory().factory().factory().factory().factory().factory |
 | autogenerated/Xss/DomBasedXss/tst.js:171:43:173:9 | functio ...       } | InputArgumentIndex | 1 |
-| autogenerated/Xss/DomBasedXss/tst.js:171:43:173:9 | functio ...       } | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:171:43:173:9 | functio ...       } | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:171:43:173:9 | functio ...       } | contextSurroundingFunctionParameters | ()\n() |
 | autogenerated/Xss/DomBasedXss/tst.js:171:43:173:9 | functio ...       } | enclosingFunctionBody | angular module myApp factory xssSource_to_service xssSinkService1 xssSinkService1 xssSinkService1 window location search factory xssSinkService1 v $ <div> html v factory xssSource_from_service xssSourceService xssSourceService $ <div> html xssSourceService factory xssSourceService window location search factory innocentSource_to_service xssSinkService2 xssSinkService2 xssSinkService2 innocent factory xssSinkService2 v $ <div> html v factory innocentSource_from_service innocentSourceService innocentSourceService $ <div> html innocentSourceService factory innocentSourceService innocent |
 | autogenerated/Xss/DomBasedXss/tst.js:171:43:173:9 | functio ...       } | enclosingFunctionName | angularJSServices |
-| autogenerated/Xss/DomBasedXss/tst.js:171:43:173:9 | functio ...       } | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:171:43:173:9 | functio ...       } | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:180:28:180:33 | target | CalleeFlexibleAccessPath | parser.parseFromString |
 | autogenerated/Xss/DomBasedXss/tst.js:180:28:180:33 | target | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:180:28:180:33 | target | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:180:28:180:33 | target | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:180:28:180:33 | target | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:180:28:180:33 | target | enclosingFunctionBody | target document location search parser DOMParser parser parseFromString target application/xml |
 | autogenerated/Xss/DomBasedXss/tst.js:180:28:180:33 | target | enclosingFunctionName | testDOMParser |
-| autogenerated/Xss/DomBasedXss/tst.js:180:28:180:33 | target | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:180:28:180:33 | target | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:180:28:180:33 | target | receiverName | parser |
 | autogenerated/Xss/DomBasedXss/tst.js:180:36:180:52 | "application/xml" | CalleeFlexibleAccessPath | parser.parseFromString |
 | autogenerated/Xss/DomBasedXss/tst.js:180:36:180:52 | "application/xml" | InputArgumentIndex | 1 |
-| autogenerated/Xss/DomBasedXss/tst.js:180:36:180:52 | "application/xml" | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:180:36:180:52 | "application/xml" | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:180:36:180:52 | "application/xml" | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:180:36:180:52 | "application/xml" | enclosingFunctionBody | target document location search parser DOMParser parser parseFromString target application/xml |
 | autogenerated/Xss/DomBasedXss/tst.js:180:36:180:52 | "application/xml" | enclosingFunctionName | testDOMParser |
-| autogenerated/Xss/DomBasedXss/tst.js:180:36:180:52 | "application/xml" | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:180:36:180:52 | "application/xml" | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:180:36:180:52 | "application/xml" | receiverName | parser |
 | autogenerated/Xss/DomBasedXss/tst.js:186:31:186:37 | tainted | assignedToPropName | innerHTML |
-| autogenerated/Xss/DomBasedXss/tst.js:186:31:186:37 | tainted | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:186:31:186:37 | tainted | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:186:31:186:37 | tainted | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:186:31:186:37 | tainted | enclosingFunctionBody | tainted document location search document body innerHTML tainted document createElement innerHTML tainted createElement innerHTML tainted document 0 getElementsByClassName 0 innerHTML tainted getElementsByClassName 0 0 innerHTML tainted getElementsByClassName item innerHTML tainted |
 | autogenerated/Xss/DomBasedXss/tst.js:186:31:186:37 | tainted | enclosingFunctionName | references |
-| autogenerated/Xss/DomBasedXss/tst.js:186:31:186:37 | tainted | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:186:31:186:37 | tainted | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:188:42:188:48 | tainted | assignedToPropName | innerHTML |
-| autogenerated/Xss/DomBasedXss/tst.js:188:42:188:48 | tainted | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:188:42:188:48 | tainted | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:188:42:188:48 | tainted | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:188:42:188:48 | tainted | enclosingFunctionBody | tainted document location search document body innerHTML tainted document createElement innerHTML tainted createElement innerHTML tainted document 0 getElementsByClassName 0 innerHTML tainted getElementsByClassName 0 0 innerHTML tainted getElementsByClassName item innerHTML tainted |
 | autogenerated/Xss/DomBasedXss/tst.js:188:42:188:48 | tainted | enclosingFunctionName | references |
-| autogenerated/Xss/DomBasedXss/tst.js:188:42:188:48 | tainted | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:188:42:188:48 | tainted | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:189:33:189:39 | tainted | assignedToPropName | innerHTML |
-| autogenerated/Xss/DomBasedXss/tst.js:189:33:189:39 | tainted | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:189:33:189:39 | tainted | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:189:33:189:39 | tainted | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:189:33:189:39 | tainted | enclosingFunctionBody | tainted document location search document body innerHTML tainted document createElement innerHTML tainted createElement innerHTML tainted document 0 getElementsByClassName 0 innerHTML tainted getElementsByClassName 0 0 innerHTML tainted getElementsByClassName item innerHTML tainted |
 | autogenerated/Xss/DomBasedXss/tst.js:189:33:189:39 | tainted | enclosingFunctionName | references |
-| autogenerated/Xss/DomBasedXss/tst.js:189:33:189:39 | tainted | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:189:33:189:39 | tainted | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:191:54:191:60 | tainted | assignedToPropName | innerHTML |
-| autogenerated/Xss/DomBasedXss/tst.js:191:54:191:60 | tainted | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:191:54:191:60 | tainted | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:191:54:191:60 | tainted | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:191:54:191:60 | tainted | enclosingFunctionBody | tainted document location search document body innerHTML tainted document createElement innerHTML tainted createElement innerHTML tainted document 0 getElementsByClassName 0 innerHTML tainted getElementsByClassName 0 0 innerHTML tainted getElementsByClassName item innerHTML tainted |
 | autogenerated/Xss/DomBasedXss/tst.js:191:54:191:60 | tainted | enclosingFunctionName | references |
-| autogenerated/Xss/DomBasedXss/tst.js:191:54:191:60 | tainted | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:191:54:191:60 | tainted | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:192:45:192:51 | tainted | assignedToPropName | innerHTML |
-| autogenerated/Xss/DomBasedXss/tst.js:192:45:192:51 | tainted | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:192:45:192:51 | tainted | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:192:45:192:51 | tainted | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:192:45:192:51 | tainted | enclosingFunctionBody | tainted document location search document body innerHTML tainted document createElement innerHTML tainted createElement innerHTML tainted document 0 getElementsByClassName 0 innerHTML tainted getElementsByClassName 0 0 innerHTML tainted getElementsByClassName item innerHTML tainted |
 | autogenerated/Xss/DomBasedXss/tst.js:192:45:192:51 | tainted | enclosingFunctionName | references |
-| autogenerated/Xss/DomBasedXss/tst.js:192:45:192:51 | tainted | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:192:45:192:51 | tainted | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:193:49:193:55 | tainted | assignedToPropName | innerHTML |
-| autogenerated/Xss/DomBasedXss/tst.js:193:49:193:55 | tainted | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:193:49:193:55 | tainted | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:193:49:193:55 | tainted | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:193:49:193:55 | tainted | enclosingFunctionBody | tainted document location search document body innerHTML tainted document createElement innerHTML tainted createElement innerHTML tainted document 0 getElementsByClassName 0 innerHTML tainted getElementsByClassName 0 0 innerHTML tainted getElementsByClassName item innerHTML tainted |
 | autogenerated/Xss/DomBasedXss/tst.js:193:49:193:55 | tainted | enclosingFunctionName | references |
-| autogenerated/Xss/DomBasedXss/tst.js:193:49:193:55 | tainted | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:193:49:193:55 | tainted | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:199:25:199:29 | "div" | CalleeFlexibleAccessPath | React.createElement |
 | autogenerated/Xss/DomBasedXss/tst.js:199:25:199:29 | "div" | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:199:25:199:29 | "div" | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:199:25:199:29 | "div" | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:199:25:199:29 | "div" | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:199:25:199:29 | "div" | enclosingFunctionBody | tainted document location search React createElement div dangerouslySetInnerHTML __html tainted React createFactory div dangerouslySetInnerHTML __html tainted C1 React Component constructor state tainted1 tainted state notTainted dbLookup setState tainted2 tainted state tainted3 tainted state tainted4 tainted test $ myId html state tainted1 $ myId html state tainted2 $ myId html state tainted3 $ myId html state notTainted setState prevState $ myId html prevState tainted4 C2 React Component args constructor test $ myId html props tainted1 $ myId html props tainted2 $ myId html props tainted3 $ myId html props notTainted setState prevState prevProps $ myId html prevProps tainted4 C2 defaultProps tainted1 tainted C2 tainted2 tainted C2 tainted3 tainted C2 tainted4 tainted C3 React Component constructor props props state stateTainted props propTainted render span dangerouslySetInnerHTML __html state stateTainted C3 propTainted tainted |
 | autogenerated/Xss/DomBasedXss/tst.js:199:25:199:29 | "div" | enclosingFunctionName | react |
-| autogenerated/Xss/DomBasedXss/tst.js:199:25:199:29 | "div" | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:199:25:199:29 | "div" | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:199:25:199:29 | "div" | receiverName | React |
 | autogenerated/Xss/DomBasedXss/tst.js:199:32:199:75 | {danger ... inted}} | CalleeFlexibleAccessPath | React.createElement |
 | autogenerated/Xss/DomBasedXss/tst.js:199:32:199:75 | {danger ... inted}} | InputArgumentIndex | 1 |
-| autogenerated/Xss/DomBasedXss/tst.js:199:32:199:75 | {danger ... inted}} | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:199:32:199:75 | {danger ... inted}} | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:199:32:199:75 | {danger ... inted}} | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:199:32:199:75 | {danger ... inted}} | enclosingFunctionBody | tainted document location search React createElement div dangerouslySetInnerHTML __html tainted React createFactory div dangerouslySetInnerHTML __html tainted C1 React Component constructor state tainted1 tainted state notTainted dbLookup setState tainted2 tainted state tainted3 tainted state tainted4 tainted test $ myId html state tainted1 $ myId html state tainted2 $ myId html state tainted3 $ myId html state notTainted setState prevState $ myId html prevState tainted4 C2 React Component args constructor test $ myId html props tainted1 $ myId html props tainted2 $ myId html props tainted3 $ myId html props notTainted setState prevState prevProps $ myId html prevProps tainted4 C2 defaultProps tainted1 tainted C2 tainted2 tainted C2 tainted3 tainted C2 tainted4 tainted C3 React Component constructor props props state stateTainted props propTainted render span dangerouslySetInnerHTML __html state stateTainted C3 propTainted tainted |
 | autogenerated/Xss/DomBasedXss/tst.js:199:32:199:75 | {danger ... inted}} | enclosingFunctionName | react |
-| autogenerated/Xss/DomBasedXss/tst.js:199:32:199:75 | {danger ... inted}} | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:199:32:199:75 | {danger ... inted}} | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:199:32:199:75 | {danger ... inted}} | receiverName | React |
 | autogenerated/Xss/DomBasedXss/tst.js:199:58:199:74 | {__html: tainted} | CalleeFlexibleAccessPath | React.createElement |
 | autogenerated/Xss/DomBasedXss/tst.js:199:58:199:74 | {__html: tainted} | InputAccessPathFromCallee | 1.dangerouslySetInnerHTML |
 | autogenerated/Xss/DomBasedXss/tst.js:199:58:199:74 | {__html: tainted} | InputArgumentIndex | 1 |
 | autogenerated/Xss/DomBasedXss/tst.js:199:58:199:74 | {__html: tainted} | assignedToPropName | dangerouslySetInnerHTML |
-| autogenerated/Xss/DomBasedXss/tst.js:199:58:199:74 | {__html: tainted} | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:199:58:199:74 | {__html: tainted} | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:199:58:199:74 | {__html: tainted} | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:199:58:199:74 | {__html: tainted} | enclosingFunctionBody | tainted document location search React createElement div dangerouslySetInnerHTML __html tainted React createFactory div dangerouslySetInnerHTML __html tainted C1 React Component constructor state tainted1 tainted state notTainted dbLookup setState tainted2 tainted state tainted3 tainted state tainted4 tainted test $ myId html state tainted1 $ myId html state tainted2 $ myId html state tainted3 $ myId html state notTainted setState prevState $ myId html prevState tainted4 C2 React Component args constructor test $ myId html props tainted1 $ myId html props tainted2 $ myId html props tainted3 $ myId html props notTainted setState prevState prevProps $ myId html prevProps tainted4 C2 defaultProps tainted1 tainted C2 tainted2 tainted C2 tainted3 tainted C2 tainted4 tainted C3 React Component constructor props props state stateTainted props propTainted render span dangerouslySetInnerHTML __html state stateTainted C3 propTainted tainted |
 | autogenerated/Xss/DomBasedXss/tst.js:199:58:199:74 | {__html: tainted} | enclosingFunctionName | react |
-| autogenerated/Xss/DomBasedXss/tst.js:199:58:199:74 | {__html: tainted} | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:199:58:199:74 | {__html: tainted} | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:199:67:199:73 | tainted | CalleeFlexibleAccessPath | React.createElement |
 | autogenerated/Xss/DomBasedXss/tst.js:199:67:199:73 | tainted | InputAccessPathFromCallee | 1.dangerouslySetInnerHTML.__html |
 | autogenerated/Xss/DomBasedXss/tst.js:199:67:199:73 | tainted | InputArgumentIndex | 1 |
 | autogenerated/Xss/DomBasedXss/tst.js:199:67:199:73 | tainted | assignedToPropName | __html |
-| autogenerated/Xss/DomBasedXss/tst.js:199:67:199:73 | tainted | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:199:67:199:73 | tainted | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:199:67:199:73 | tainted | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:199:67:199:73 | tainted | enclosingFunctionBody | tainted document location search React createElement div dangerouslySetInnerHTML __html tainted React createFactory div dangerouslySetInnerHTML __html tainted C1 React Component constructor state tainted1 tainted state notTainted dbLookup setState tainted2 tainted state tainted3 tainted state tainted4 tainted test $ myId html state tainted1 $ myId html state tainted2 $ myId html state tainted3 $ myId html state notTainted setState prevState $ myId html prevState tainted4 C2 React Component args constructor test $ myId html props tainted1 $ myId html props tainted2 $ myId html props tainted3 $ myId html props notTainted setState prevState prevProps $ myId html prevProps tainted4 C2 defaultProps tainted1 tainted C2 tainted2 tainted C2 tainted3 tainted C2 tainted4 tainted C3 React Component constructor props props state stateTainted props propTainted render span dangerouslySetInnerHTML __html state stateTainted C3 propTainted tainted |
 | autogenerated/Xss/DomBasedXss/tst.js:199:67:199:73 | tainted | enclosingFunctionName | react |
-| autogenerated/Xss/DomBasedXss/tst.js:199:67:199:73 | tainted | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:199:67:199:73 | tainted | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:200:25:200:29 | "div" | CalleeFlexibleAccessPath | React.createFactory |
 | autogenerated/Xss/DomBasedXss/tst.js:200:25:200:29 | "div" | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:200:25:200:29 | "div" | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:200:25:200:29 | "div" | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:200:25:200:29 | "div" | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:200:25:200:29 | "div" | enclosingFunctionBody | tainted document location search React createElement div dangerouslySetInnerHTML __html tainted React createFactory div dangerouslySetInnerHTML __html tainted C1 React Component constructor state tainted1 tainted state notTainted dbLookup setState tainted2 tainted state tainted3 tainted state tainted4 tainted test $ myId html state tainted1 $ myId html state tainted2 $ myId html state tainted3 $ myId html state notTainted setState prevState $ myId html prevState tainted4 C2 React Component args constructor test $ myId html props tainted1 $ myId html props tainted2 $ myId html props tainted3 $ myId html props notTainted setState prevState prevProps $ myId html prevProps tainted4 C2 defaultProps tainted1 tainted C2 tainted2 tainted C2 tainted3 tainted C2 tainted4 tainted C3 React Component constructor props props state stateTainted props propTainted render span dangerouslySetInnerHTML __html state stateTainted C3 propTainted tainted |
 | autogenerated/Xss/DomBasedXss/tst.js:200:25:200:29 | "div" | enclosingFunctionName | react |
-| autogenerated/Xss/DomBasedXss/tst.js:200:25:200:29 | "div" | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:200:25:200:29 | "div" | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:200:25:200:29 | "div" | receiverName | React |
 | autogenerated/Xss/DomBasedXss/tst.js:200:32:200:75 | {danger ... inted}} | CalleeFlexibleAccessPath | React.createFactory() |
 | autogenerated/Xss/DomBasedXss/tst.js:200:32:200:75 | {danger ... inted}} | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:200:32:200:75 | {danger ... inted}} | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:200:32:200:75 | {danger ... inted}} | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:200:32:200:75 | {danger ... inted}} | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:200:32:200:75 | {danger ... inted}} | enclosingFunctionBody | tainted document location search React createElement div dangerouslySetInnerHTML __html tainted React createFactory div dangerouslySetInnerHTML __html tainted C1 React Component constructor state tainted1 tainted state notTainted dbLookup setState tainted2 tainted state tainted3 tainted state tainted4 tainted test $ myId html state tainted1 $ myId html state tainted2 $ myId html state tainted3 $ myId html state notTainted setState prevState $ myId html prevState tainted4 C2 React Component args constructor test $ myId html props tainted1 $ myId html props tainted2 $ myId html props tainted3 $ myId html props notTainted setState prevState prevProps $ myId html prevProps tainted4 C2 defaultProps tainted1 tainted C2 tainted2 tainted C2 tainted3 tainted C2 tainted4 tainted C3 React Component constructor props props state stateTainted props propTainted render span dangerouslySetInnerHTML __html state stateTainted C3 propTainted tainted |
 | autogenerated/Xss/DomBasedXss/tst.js:200:32:200:75 | {danger ... inted}} | enclosingFunctionName | react |
-| autogenerated/Xss/DomBasedXss/tst.js:200:32:200:75 | {danger ... inted}} | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:200:32:200:75 | {danger ... inted}} | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:200:58:200:74 | {__html: tainted} | CalleeFlexibleAccessPath | React.createFactory() |
 | autogenerated/Xss/DomBasedXss/tst.js:200:58:200:74 | {__html: tainted} | InputAccessPathFromCallee | 0.dangerouslySetInnerHTML |
 | autogenerated/Xss/DomBasedXss/tst.js:200:58:200:74 | {__html: tainted} | InputArgumentIndex | 0 |
 | autogenerated/Xss/DomBasedXss/tst.js:200:58:200:74 | {__html: tainted} | assignedToPropName | dangerouslySetInnerHTML |
-| autogenerated/Xss/DomBasedXss/tst.js:200:58:200:74 | {__html: tainted} | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:200:58:200:74 | {__html: tainted} | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:200:58:200:74 | {__html: tainted} | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:200:58:200:74 | {__html: tainted} | enclosingFunctionBody | tainted document location search React createElement div dangerouslySetInnerHTML __html tainted React createFactory div dangerouslySetInnerHTML __html tainted C1 React Component constructor state tainted1 tainted state notTainted dbLookup setState tainted2 tainted state tainted3 tainted state tainted4 tainted test $ myId html state tainted1 $ myId html state tainted2 $ myId html state tainted3 $ myId html state notTainted setState prevState $ myId html prevState tainted4 C2 React Component args constructor test $ myId html props tainted1 $ myId html props tainted2 $ myId html props tainted3 $ myId html props notTainted setState prevState prevProps $ myId html prevProps tainted4 C2 defaultProps tainted1 tainted C2 tainted2 tainted C2 tainted3 tainted C2 tainted4 tainted C3 React Component constructor props props state stateTainted props propTainted render span dangerouslySetInnerHTML __html state stateTainted C3 propTainted tainted |
 | autogenerated/Xss/DomBasedXss/tst.js:200:58:200:74 | {__html: tainted} | enclosingFunctionName | react |
-| autogenerated/Xss/DomBasedXss/tst.js:200:58:200:74 | {__html: tainted} | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:200:58:200:74 | {__html: tainted} | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:200:67:200:73 | tainted | CalleeFlexibleAccessPath | React.createFactory() |
 | autogenerated/Xss/DomBasedXss/tst.js:200:67:200:73 | tainted | InputAccessPathFromCallee | 0.dangerouslySetInnerHTML.__html |
 | autogenerated/Xss/DomBasedXss/tst.js:200:67:200:73 | tainted | InputArgumentIndex | 0 |
 | autogenerated/Xss/DomBasedXss/tst.js:200:67:200:73 | tainted | assignedToPropName | __html |
-| autogenerated/Xss/DomBasedXss/tst.js:200:67:200:73 | tainted | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:200:67:200:73 | tainted | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:200:67:200:73 | tainted | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:200:67:200:73 | tainted | enclosingFunctionBody | tainted document location search React createElement div dangerouslySetInnerHTML __html tainted React createFactory div dangerouslySetInnerHTML __html tainted C1 React Component constructor state tainted1 tainted state notTainted dbLookup setState tainted2 tainted state tainted3 tainted state tainted4 tainted test $ myId html state tainted1 $ myId html state tainted2 $ myId html state tainted3 $ myId html state notTainted setState prevState $ myId html prevState tainted4 C2 React Component args constructor test $ myId html props tainted1 $ myId html props tainted2 $ myId html props tainted3 $ myId html props notTainted setState prevState prevProps $ myId html prevProps tainted4 C2 defaultProps tainted1 tainted C2 tainted2 tainted C2 tainted3 tainted C2 tainted4 tainted C3 React Component constructor props props state stateTainted props propTainted render span dangerouslySetInnerHTML __html state stateTainted C3 propTainted tainted |
 | autogenerated/Xss/DomBasedXss/tst.js:200:67:200:73 | tainted | enclosingFunctionName | react |
-| autogenerated/Xss/DomBasedXss/tst.js:200:67:200:73 | tainted | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:200:67:200:73 | tainted | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:206:27:206:55 | () => ( ... nted }) | CalleeFlexibleAccessPath | this.setState |
 | autogenerated/Xss/DomBasedXss/tst.js:206:27:206:55 | () => ( ... nted }) | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:206:27:206:55 | () => ( ... nted }) | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:206:27:206:55 | () => ( ... nted }) | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:206:27:206:55 | () => ( ... nted }) | contextSurroundingFunctionParameters | ()\n()\n() |
 | autogenerated/Xss/DomBasedXss/tst.js:206:27:206:55 | () => ( ... nted }) | enclosingFunctionBody | tainted document location search React createElement div dangerouslySetInnerHTML __html tainted React createFactory div dangerouslySetInnerHTML __html tainted C1 React Component constructor state tainted1 tainted state notTainted dbLookup setState tainted2 tainted state tainted3 tainted state tainted4 tainted test $ myId html state tainted1 $ myId html state tainted2 $ myId html state tainted3 $ myId html state notTainted setState prevState $ myId html prevState tainted4 C2 React Component args constructor test $ myId html props tainted1 $ myId html props tainted2 $ myId html props tainted3 $ myId html props notTainted setState prevState prevProps $ myId html prevProps tainted4 C2 defaultProps tainted1 tainted C2 tainted2 tainted C2 tainted3 tainted C2 tainted4 tainted C3 React Component constructor props props state stateTainted props propTainted render span dangerouslySetInnerHTML __html state stateTainted C3 propTainted tainted |
 | autogenerated/Xss/DomBasedXss/tst.js:206:27:206:55 | () => ( ... nted }) | enclosingFunctionName | react |
-| autogenerated/Xss/DomBasedXss/tst.js:206:27:206:55 | () => ( ... nted }) | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:206:27:206:55 | () => ( ... nted }) | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:212:15:212:20 | 'myId' | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/DomBasedXss/tst.js:212:15:212:20 | 'myId' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:212:15:212:20 | 'myId' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:212:15:212:20 | 'myId' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:212:15:212:20 | 'myId' | contextSurroundingFunctionParameters | ()\n() |
 | autogenerated/Xss/DomBasedXss/tst.js:212:15:212:20 | 'myId' | enclosingFunctionBody | tainted document location search React createElement div dangerouslySetInnerHTML __html tainted React createFactory div dangerouslySetInnerHTML __html tainted C1 React Component constructor state tainted1 tainted state notTainted dbLookup setState tainted2 tainted state tainted3 tainted state tainted4 tainted test $ myId html state tainted1 $ myId html state tainted2 $ myId html state tainted3 $ myId html state notTainted setState prevState $ myId html prevState tainted4 C2 React Component args constructor test $ myId html props tainted1 $ myId html props tainted2 $ myId html props tainted3 $ myId html props notTainted setState prevState prevProps $ myId html prevProps tainted4 C2 defaultProps tainted1 tainted C2 tainted2 tainted C2 tainted3 tainted C2 tainted4 tainted C3 React Component constructor props props state stateTainted props propTainted render span dangerouslySetInnerHTML __html state stateTainted C3 propTainted tainted |
 | autogenerated/Xss/DomBasedXss/tst.js:212:15:212:20 | 'myId' | enclosingFunctionName | react |
-| autogenerated/Xss/DomBasedXss/tst.js:212:15:212:20 | 'myId' | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:212:15:212:20 | 'myId' | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:212:28:212:46 | this.state.tainted1 | CalleeFlexibleAccessPath | $().html |
 | autogenerated/Xss/DomBasedXss/tst.js:212:28:212:46 | this.state.tainted1 | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:212:28:212:46 | this.state.tainted1 | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:212:28:212:46 | this.state.tainted1 | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:212:28:212:46 | this.state.tainted1 | contextSurroundingFunctionParameters | ()\n() |
 | autogenerated/Xss/DomBasedXss/tst.js:212:28:212:46 | this.state.tainted1 | enclosingFunctionBody | tainted document location search React createElement div dangerouslySetInnerHTML __html tainted React createFactory div dangerouslySetInnerHTML __html tainted C1 React Component constructor state tainted1 tainted state notTainted dbLookup setState tainted2 tainted state tainted3 tainted state tainted4 tainted test $ myId html state tainted1 $ myId html state tainted2 $ myId html state tainted3 $ myId html state notTainted setState prevState $ myId html prevState tainted4 C2 React Component args constructor test $ myId html props tainted1 $ myId html props tainted2 $ myId html props tainted3 $ myId html props notTainted setState prevState prevProps $ myId html prevProps tainted4 C2 defaultProps tainted1 tainted C2 tainted2 tainted C2 tainted3 tainted C2 tainted4 tainted C3 React Component constructor props props state stateTainted props propTainted render span dangerouslySetInnerHTML __html state stateTainted C3 propTainted tainted |
 | autogenerated/Xss/DomBasedXss/tst.js:212:28:212:46 | this.state.tainted1 | enclosingFunctionName | react |
-| autogenerated/Xss/DomBasedXss/tst.js:212:28:212:46 | this.state.tainted1 | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:212:28:212:46 | this.state.tainted1 | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:213:15:213:20 | 'myId' | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/DomBasedXss/tst.js:213:15:213:20 | 'myId' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:213:15:213:20 | 'myId' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:213:15:213:20 | 'myId' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:213:15:213:20 | 'myId' | contextSurroundingFunctionParameters | ()\n() |
 | autogenerated/Xss/DomBasedXss/tst.js:213:15:213:20 | 'myId' | enclosingFunctionBody | tainted document location search React createElement div dangerouslySetInnerHTML __html tainted React createFactory div dangerouslySetInnerHTML __html tainted C1 React Component constructor state tainted1 tainted state notTainted dbLookup setState tainted2 tainted state tainted3 tainted state tainted4 tainted test $ myId html state tainted1 $ myId html state tainted2 $ myId html state tainted3 $ myId html state notTainted setState prevState $ myId html prevState tainted4 C2 React Component args constructor test $ myId html props tainted1 $ myId html props tainted2 $ myId html props tainted3 $ myId html props notTainted setState prevState prevProps $ myId html prevProps tainted4 C2 defaultProps tainted1 tainted C2 tainted2 tainted C2 tainted3 tainted C2 tainted4 tainted C3 React Component constructor props props state stateTainted props propTainted render span dangerouslySetInnerHTML __html state stateTainted C3 propTainted tainted |
 | autogenerated/Xss/DomBasedXss/tst.js:213:15:213:20 | 'myId' | enclosingFunctionName | react |
-| autogenerated/Xss/DomBasedXss/tst.js:213:15:213:20 | 'myId' | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:213:15:213:20 | 'myId' | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:213:28:213:46 | this.state.tainted2 | CalleeFlexibleAccessPath | $().html |
 | autogenerated/Xss/DomBasedXss/tst.js:213:28:213:46 | this.state.tainted2 | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:213:28:213:46 | this.state.tainted2 | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:213:28:213:46 | this.state.tainted2 | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:213:28:213:46 | this.state.tainted2 | contextSurroundingFunctionParameters | ()\n() |
 | autogenerated/Xss/DomBasedXss/tst.js:213:28:213:46 | this.state.tainted2 | enclosingFunctionBody | tainted document location search React createElement div dangerouslySetInnerHTML __html tainted React createFactory div dangerouslySetInnerHTML __html tainted C1 React Component constructor state tainted1 tainted state notTainted dbLookup setState tainted2 tainted state tainted3 tainted state tainted4 tainted test $ myId html state tainted1 $ myId html state tainted2 $ myId html state tainted3 $ myId html state notTainted setState prevState $ myId html prevState tainted4 C2 React Component args constructor test $ myId html props tainted1 $ myId html props tainted2 $ myId html props tainted3 $ myId html props notTainted setState prevState prevProps $ myId html prevProps tainted4 C2 defaultProps tainted1 tainted C2 tainted2 tainted C2 tainted3 tainted C2 tainted4 tainted C3 React Component constructor props props state stateTainted props propTainted render span dangerouslySetInnerHTML __html state stateTainted C3 propTainted tainted |
 | autogenerated/Xss/DomBasedXss/tst.js:213:28:213:46 | this.state.tainted2 | enclosingFunctionName | react |
-| autogenerated/Xss/DomBasedXss/tst.js:213:28:213:46 | this.state.tainted2 | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:213:28:213:46 | this.state.tainted2 | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:214:15:214:20 | 'myId' | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/DomBasedXss/tst.js:214:15:214:20 | 'myId' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:214:15:214:20 | 'myId' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:214:15:214:20 | 'myId' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:214:15:214:20 | 'myId' | contextSurroundingFunctionParameters | ()\n() |
 | autogenerated/Xss/DomBasedXss/tst.js:214:15:214:20 | 'myId' | enclosingFunctionBody | tainted document location search React createElement div dangerouslySetInnerHTML __html tainted React createFactory div dangerouslySetInnerHTML __html tainted C1 React Component constructor state tainted1 tainted state notTainted dbLookup setState tainted2 tainted state tainted3 tainted state tainted4 tainted test $ myId html state tainted1 $ myId html state tainted2 $ myId html state tainted3 $ myId html state notTainted setState prevState $ myId html prevState tainted4 C2 React Component args constructor test $ myId html props tainted1 $ myId html props tainted2 $ myId html props tainted3 $ myId html props notTainted setState prevState prevProps $ myId html prevProps tainted4 C2 defaultProps tainted1 tainted C2 tainted2 tainted C2 tainted3 tainted C2 tainted4 tainted C3 React Component constructor props props state stateTainted props propTainted render span dangerouslySetInnerHTML __html state stateTainted C3 propTainted tainted |
 | autogenerated/Xss/DomBasedXss/tst.js:214:15:214:20 | 'myId' | enclosingFunctionName | react |
-| autogenerated/Xss/DomBasedXss/tst.js:214:15:214:20 | 'myId' | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:214:15:214:20 | 'myId' | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:214:28:214:46 | this.state.tainted3 | CalleeFlexibleAccessPath | $().html |
 | autogenerated/Xss/DomBasedXss/tst.js:214:28:214:46 | this.state.tainted3 | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:214:28:214:46 | this.state.tainted3 | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:214:28:214:46 | this.state.tainted3 | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:214:28:214:46 | this.state.tainted3 | contextSurroundingFunctionParameters | ()\n() |
 | autogenerated/Xss/DomBasedXss/tst.js:214:28:214:46 | this.state.tainted3 | enclosingFunctionBody | tainted document location search React createElement div dangerouslySetInnerHTML __html tainted React createFactory div dangerouslySetInnerHTML __html tainted C1 React Component constructor state tainted1 tainted state notTainted dbLookup setState tainted2 tainted state tainted3 tainted state tainted4 tainted test $ myId html state tainted1 $ myId html state tainted2 $ myId html state tainted3 $ myId html state notTainted setState prevState $ myId html prevState tainted4 C2 React Component args constructor test $ myId html props tainted1 $ myId html props tainted2 $ myId html props tainted3 $ myId html props notTainted setState prevState prevProps $ myId html prevProps tainted4 C2 defaultProps tainted1 tainted C2 tainted2 tainted C2 tainted3 tainted C2 tainted4 tainted C3 React Component constructor props props state stateTainted props propTainted render span dangerouslySetInnerHTML __html state stateTainted C3 propTainted tainted |
 | autogenerated/Xss/DomBasedXss/tst.js:214:28:214:46 | this.state.tainted3 | enclosingFunctionName | react |
-| autogenerated/Xss/DomBasedXss/tst.js:214:28:214:46 | this.state.tainted3 | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:214:28:214:46 | this.state.tainted3 | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:215:15:215:20 | 'myId' | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/DomBasedXss/tst.js:215:15:215:20 | 'myId' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:215:15:215:20 | 'myId' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:215:15:215:20 | 'myId' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:215:15:215:20 | 'myId' | contextSurroundingFunctionParameters | ()\n() |
 | autogenerated/Xss/DomBasedXss/tst.js:215:15:215:20 | 'myId' | enclosingFunctionBody | tainted document location search React createElement div dangerouslySetInnerHTML __html tainted React createFactory div dangerouslySetInnerHTML __html tainted C1 React Component constructor state tainted1 tainted state notTainted dbLookup setState tainted2 tainted state tainted3 tainted state tainted4 tainted test $ myId html state tainted1 $ myId html state tainted2 $ myId html state tainted3 $ myId html state notTainted setState prevState $ myId html prevState tainted4 C2 React Component args constructor test $ myId html props tainted1 $ myId html props tainted2 $ myId html props tainted3 $ myId html props notTainted setState prevState prevProps $ myId html prevProps tainted4 C2 defaultProps tainted1 tainted C2 tainted2 tainted C2 tainted3 tainted C2 tainted4 tainted C3 React Component constructor props props state stateTainted props propTainted render span dangerouslySetInnerHTML __html state stateTainted C3 propTainted tainted |
 | autogenerated/Xss/DomBasedXss/tst.js:215:15:215:20 | 'myId' | enclosingFunctionName | react |
-| autogenerated/Xss/DomBasedXss/tst.js:215:15:215:20 | 'myId' | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:215:15:215:20 | 'myId' | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:215:28:215:48 | this.st ... Tainted | CalleeFlexibleAccessPath | $().html |
 | autogenerated/Xss/DomBasedXss/tst.js:215:28:215:48 | this.st ... Tainted | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:215:28:215:48 | this.st ... Tainted | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:215:28:215:48 | this.st ... Tainted | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:215:28:215:48 | this.st ... Tainted | contextSurroundingFunctionParameters | ()\n() |
 | autogenerated/Xss/DomBasedXss/tst.js:215:28:215:48 | this.st ... Tainted | enclosingFunctionBody | tainted document location search React createElement div dangerouslySetInnerHTML __html tainted React createFactory div dangerouslySetInnerHTML __html tainted C1 React Component constructor state tainted1 tainted state notTainted dbLookup setState tainted2 tainted state tainted3 tainted state tainted4 tainted test $ myId html state tainted1 $ myId html state tainted2 $ myId html state tainted3 $ myId html state notTainted setState prevState $ myId html prevState tainted4 C2 React Component args constructor test $ myId html props tainted1 $ myId html props tainted2 $ myId html props tainted3 $ myId html props notTainted setState prevState prevProps $ myId html prevProps tainted4 C2 defaultProps tainted1 tainted C2 tainted2 tainted C2 tainted3 tainted C2 tainted4 tainted C3 React Component constructor props props state stateTainted props propTainted render span dangerouslySetInnerHTML __html state stateTainted C3 propTainted tainted |
 | autogenerated/Xss/DomBasedXss/tst.js:215:28:215:48 | this.st ... Tainted | enclosingFunctionName | react |
-| autogenerated/Xss/DomBasedXss/tst.js:215:28:215:48 | this.st ... Tainted | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:215:28:215:48 | this.st ... Tainted | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:217:27:219:13 | prevSta ...       } | CalleeFlexibleAccessPath | this.setState |
 | autogenerated/Xss/DomBasedXss/tst.js:217:27:219:13 | prevSta ...       } | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:217:27:219:13 | prevSta ...       } | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:217:27:219:13 | prevSta ...       } | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:217:27:219:13 | prevSta ...       } | contextSurroundingFunctionParameters | ()\n()\n(prevState) |
 | autogenerated/Xss/DomBasedXss/tst.js:217:27:219:13 | prevSta ...       } | enclosingFunctionBody | tainted document location search React createElement div dangerouslySetInnerHTML __html tainted React createFactory div dangerouslySetInnerHTML __html tainted C1 React Component constructor state tainted1 tainted state notTainted dbLookup setState tainted2 tainted state tainted3 tainted state tainted4 tainted test $ myId html state tainted1 $ myId html state tainted2 $ myId html state tainted3 $ myId html state notTainted setState prevState $ myId html prevState tainted4 C2 React Component args constructor test $ myId html props tainted1 $ myId html props tainted2 $ myId html props tainted3 $ myId html props notTainted setState prevState prevProps $ myId html prevProps tainted4 C2 defaultProps tainted1 tainted C2 tainted2 tainted C2 tainted3 tainted C2 tainted4 tainted C3 React Component constructor props props state stateTainted props propTainted render span dangerouslySetInnerHTML __html state stateTainted C3 propTainted tainted |
 | autogenerated/Xss/DomBasedXss/tst.js:217:27:219:13 | prevSta ...       } | enclosingFunctionName | react |
-| autogenerated/Xss/DomBasedXss/tst.js:217:27:219:13 | prevSta ...       } | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:217:27:219:13 | prevSta ...       } | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:218:19:218:24 | 'myId' | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/DomBasedXss/tst.js:218:19:218:24 | 'myId' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:218:19:218:24 | 'myId' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:218:19:218:24 | 'myId' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:218:19:218:24 | 'myId' | contextSurroundingFunctionParameters | ()\n()\n(prevState) |
 | autogenerated/Xss/DomBasedXss/tst.js:218:19:218:24 | 'myId' | enclosingFunctionBody | tainted document location search React createElement div dangerouslySetInnerHTML __html tainted React createFactory div dangerouslySetInnerHTML __html tainted C1 React Component constructor state tainted1 tainted state notTainted dbLookup setState tainted2 tainted state tainted3 tainted state tainted4 tainted test $ myId html state tainted1 $ myId html state tainted2 $ myId html state tainted3 $ myId html state notTainted setState prevState $ myId html prevState tainted4 C2 React Component args constructor test $ myId html props tainted1 $ myId html props tainted2 $ myId html props tainted3 $ myId html props notTainted setState prevState prevProps $ myId html prevProps tainted4 C2 defaultProps tainted1 tainted C2 tainted2 tainted C2 tainted3 tainted C2 tainted4 tainted C3 React Component constructor props props state stateTainted props propTainted render span dangerouslySetInnerHTML __html state stateTainted C3 propTainted tainted |
 | autogenerated/Xss/DomBasedXss/tst.js:218:19:218:24 | 'myId' | enclosingFunctionName | react |
-| autogenerated/Xss/DomBasedXss/tst.js:218:19:218:24 | 'myId' | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:218:19:218:24 | 'myId' | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:218:32:218:49 | prevState.tainted4 | CalleeFlexibleAccessPath | $().html |
 | autogenerated/Xss/DomBasedXss/tst.js:218:32:218:49 | prevState.tainted4 | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:218:32:218:49 | prevState.tainted4 | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:218:32:218:49 | prevState.tainted4 | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:218:32:218:49 | prevState.tainted4 | contextSurroundingFunctionParameters | ()\n()\n(prevState) |
 | autogenerated/Xss/DomBasedXss/tst.js:218:32:218:49 | prevState.tainted4 | enclosingFunctionBody | tainted document location search React createElement div dangerouslySetInnerHTML __html tainted React createFactory div dangerouslySetInnerHTML __html tainted C1 React Component constructor state tainted1 tainted state notTainted dbLookup setState tainted2 tainted state tainted3 tainted state tainted4 tainted test $ myId html state tainted1 $ myId html state tainted2 $ myId html state tainted3 $ myId html state notTainted setState prevState $ myId html prevState tainted4 C2 React Component args constructor test $ myId html props tainted1 $ myId html props tainted2 $ myId html props tainted3 $ myId html props notTainted setState prevState prevProps $ myId html prevProps tainted4 C2 defaultProps tainted1 tainted C2 tainted2 tainted C2 tainted3 tainted C2 tainted4 tainted C3 React Component constructor props props state stateTainted props propTainted render span dangerouslySetInnerHTML __html state stateTainted C3 propTainted tainted |
 | autogenerated/Xss/DomBasedXss/tst.js:218:32:218:49 | prevState.tainted4 | enclosingFunctionName | react |
-| autogenerated/Xss/DomBasedXss/tst.js:218:32:218:49 | prevState.tainted4 | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:218:32:218:49 | prevState.tainted4 | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:225:15:225:20 | 'myId' | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/DomBasedXss/tst.js:225:15:225:20 | 'myId' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:225:15:225:20 | 'myId' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:225:15:225:20 | 'myId' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:225:15:225:20 | 'myId' | contextSurroundingFunctionParameters | ()\n() |
 | autogenerated/Xss/DomBasedXss/tst.js:225:15:225:20 | 'myId' | enclosingFunctionBody | tainted document location search React createElement div dangerouslySetInnerHTML __html tainted React createFactory div dangerouslySetInnerHTML __html tainted C1 React Component constructor state tainted1 tainted state notTainted dbLookup setState tainted2 tainted state tainted3 tainted state tainted4 tainted test $ myId html state tainted1 $ myId html state tainted2 $ myId html state tainted3 $ myId html state notTainted setState prevState $ myId html prevState tainted4 C2 React Component args constructor test $ myId html props tainted1 $ myId html props tainted2 $ myId html props tainted3 $ myId html props notTainted setState prevState prevProps $ myId html prevProps tainted4 C2 defaultProps tainted1 tainted C2 tainted2 tainted C2 tainted3 tainted C2 tainted4 tainted C3 React Component constructor props props state stateTainted props propTainted render span dangerouslySetInnerHTML __html state stateTainted C3 propTainted tainted |
 | autogenerated/Xss/DomBasedXss/tst.js:225:15:225:20 | 'myId' | enclosingFunctionName | react |
-| autogenerated/Xss/DomBasedXss/tst.js:225:15:225:20 | 'myId' | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:225:15:225:20 | 'myId' | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:225:28:225:46 | this.props.tainted1 | CalleeFlexibleAccessPath | $().html |
 | autogenerated/Xss/DomBasedXss/tst.js:225:28:225:46 | this.props.tainted1 | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:225:28:225:46 | this.props.tainted1 | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:225:28:225:46 | this.props.tainted1 | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:225:28:225:46 | this.props.tainted1 | contextSurroundingFunctionParameters | ()\n() |
 | autogenerated/Xss/DomBasedXss/tst.js:225:28:225:46 | this.props.tainted1 | enclosingFunctionBody | tainted document location search React createElement div dangerouslySetInnerHTML __html tainted React createFactory div dangerouslySetInnerHTML __html tainted C1 React Component constructor state tainted1 tainted state notTainted dbLookup setState tainted2 tainted state tainted3 tainted state tainted4 tainted test $ myId html state tainted1 $ myId html state tainted2 $ myId html state tainted3 $ myId html state notTainted setState prevState $ myId html prevState tainted4 C2 React Component args constructor test $ myId html props tainted1 $ myId html props tainted2 $ myId html props tainted3 $ myId html props notTainted setState prevState prevProps $ myId html prevProps tainted4 C2 defaultProps tainted1 tainted C2 tainted2 tainted C2 tainted3 tainted C2 tainted4 tainted C3 React Component constructor props props state stateTainted props propTainted render span dangerouslySetInnerHTML __html state stateTainted C3 propTainted tainted |
 | autogenerated/Xss/DomBasedXss/tst.js:225:28:225:46 | this.props.tainted1 | enclosingFunctionName | react |
-| autogenerated/Xss/DomBasedXss/tst.js:225:28:225:46 | this.props.tainted1 | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:225:28:225:46 | this.props.tainted1 | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:226:15:226:20 | 'myId' | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/DomBasedXss/tst.js:226:15:226:20 | 'myId' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:226:15:226:20 | 'myId' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:226:15:226:20 | 'myId' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:226:15:226:20 | 'myId' | contextSurroundingFunctionParameters | ()\n() |
 | autogenerated/Xss/DomBasedXss/tst.js:226:15:226:20 | 'myId' | enclosingFunctionBody | tainted document location search React createElement div dangerouslySetInnerHTML __html tainted React createFactory div dangerouslySetInnerHTML __html tainted C1 React Component constructor state tainted1 tainted state notTainted dbLookup setState tainted2 tainted state tainted3 tainted state tainted4 tainted test $ myId html state tainted1 $ myId html state tainted2 $ myId html state tainted3 $ myId html state notTainted setState prevState $ myId html prevState tainted4 C2 React Component args constructor test $ myId html props tainted1 $ myId html props tainted2 $ myId html props tainted3 $ myId html props notTainted setState prevState prevProps $ myId html prevProps tainted4 C2 defaultProps tainted1 tainted C2 tainted2 tainted C2 tainted3 tainted C2 tainted4 tainted C3 React Component constructor props props state stateTainted props propTainted render span dangerouslySetInnerHTML __html state stateTainted C3 propTainted tainted |
 | autogenerated/Xss/DomBasedXss/tst.js:226:15:226:20 | 'myId' | enclosingFunctionName | react |
-| autogenerated/Xss/DomBasedXss/tst.js:226:15:226:20 | 'myId' | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:226:15:226:20 | 'myId' | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:226:28:226:46 | this.props.tainted2 | CalleeFlexibleAccessPath | $().html |
 | autogenerated/Xss/DomBasedXss/tst.js:226:28:226:46 | this.props.tainted2 | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:226:28:226:46 | this.props.tainted2 | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:226:28:226:46 | this.props.tainted2 | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:226:28:226:46 | this.props.tainted2 | contextSurroundingFunctionParameters | ()\n() |
 | autogenerated/Xss/DomBasedXss/tst.js:226:28:226:46 | this.props.tainted2 | enclosingFunctionBody | tainted document location search React createElement div dangerouslySetInnerHTML __html tainted React createFactory div dangerouslySetInnerHTML __html tainted C1 React Component constructor state tainted1 tainted state notTainted dbLookup setState tainted2 tainted state tainted3 tainted state tainted4 tainted test $ myId html state tainted1 $ myId html state tainted2 $ myId html state tainted3 $ myId html state notTainted setState prevState $ myId html prevState tainted4 C2 React Component args constructor test $ myId html props tainted1 $ myId html props tainted2 $ myId html props tainted3 $ myId html props notTainted setState prevState prevProps $ myId html prevProps tainted4 C2 defaultProps tainted1 tainted C2 tainted2 tainted C2 tainted3 tainted C2 tainted4 tainted C3 React Component constructor props props state stateTainted props propTainted render span dangerouslySetInnerHTML __html state stateTainted C3 propTainted tainted |
 | autogenerated/Xss/DomBasedXss/tst.js:226:28:226:46 | this.props.tainted2 | enclosingFunctionName | react |
-| autogenerated/Xss/DomBasedXss/tst.js:226:28:226:46 | this.props.tainted2 | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:226:28:226:46 | this.props.tainted2 | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:227:15:227:20 | 'myId' | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/DomBasedXss/tst.js:227:15:227:20 | 'myId' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:227:15:227:20 | 'myId' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:227:15:227:20 | 'myId' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:227:15:227:20 | 'myId' | contextSurroundingFunctionParameters | ()\n() |
 | autogenerated/Xss/DomBasedXss/tst.js:227:15:227:20 | 'myId' | enclosingFunctionBody | tainted document location search React createElement div dangerouslySetInnerHTML __html tainted React createFactory div dangerouslySetInnerHTML __html tainted C1 React Component constructor state tainted1 tainted state notTainted dbLookup setState tainted2 tainted state tainted3 tainted state tainted4 tainted test $ myId html state tainted1 $ myId html state tainted2 $ myId html state tainted3 $ myId html state notTainted setState prevState $ myId html prevState tainted4 C2 React Component args constructor test $ myId html props tainted1 $ myId html props tainted2 $ myId html props tainted3 $ myId html props notTainted setState prevState prevProps $ myId html prevProps tainted4 C2 defaultProps tainted1 tainted C2 tainted2 tainted C2 tainted3 tainted C2 tainted4 tainted C3 React Component constructor props props state stateTainted props propTainted render span dangerouslySetInnerHTML __html state stateTainted C3 propTainted tainted |
 | autogenerated/Xss/DomBasedXss/tst.js:227:15:227:20 | 'myId' | enclosingFunctionName | react |
-| autogenerated/Xss/DomBasedXss/tst.js:227:15:227:20 | 'myId' | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:227:15:227:20 | 'myId' | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:227:28:227:46 | this.props.tainted3 | CalleeFlexibleAccessPath | $().html |
 | autogenerated/Xss/DomBasedXss/tst.js:227:28:227:46 | this.props.tainted3 | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:227:28:227:46 | this.props.tainted3 | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:227:28:227:46 | this.props.tainted3 | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:227:28:227:46 | this.props.tainted3 | contextSurroundingFunctionParameters | ()\n() |
 | autogenerated/Xss/DomBasedXss/tst.js:227:28:227:46 | this.props.tainted3 | enclosingFunctionBody | tainted document location search React createElement div dangerouslySetInnerHTML __html tainted React createFactory div dangerouslySetInnerHTML __html tainted C1 React Component constructor state tainted1 tainted state notTainted dbLookup setState tainted2 tainted state tainted3 tainted state tainted4 tainted test $ myId html state tainted1 $ myId html state tainted2 $ myId html state tainted3 $ myId html state notTainted setState prevState $ myId html prevState tainted4 C2 React Component args constructor test $ myId html props tainted1 $ myId html props tainted2 $ myId html props tainted3 $ myId html props notTainted setState prevState prevProps $ myId html prevProps tainted4 C2 defaultProps tainted1 tainted C2 tainted2 tainted C2 tainted3 tainted C2 tainted4 tainted C3 React Component constructor props props state stateTainted props propTainted render span dangerouslySetInnerHTML __html state stateTainted C3 propTainted tainted |
 | autogenerated/Xss/DomBasedXss/tst.js:227:28:227:46 | this.props.tainted3 | enclosingFunctionName | react |
-| autogenerated/Xss/DomBasedXss/tst.js:227:28:227:46 | this.props.tainted3 | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:227:28:227:46 | this.props.tainted3 | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:228:15:228:20 | 'myId' | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/DomBasedXss/tst.js:228:15:228:20 | 'myId' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:228:15:228:20 | 'myId' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:228:15:228:20 | 'myId' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:228:15:228:20 | 'myId' | contextSurroundingFunctionParameters | ()\n() |
 | autogenerated/Xss/DomBasedXss/tst.js:228:15:228:20 | 'myId' | enclosingFunctionBody | tainted document location search React createElement div dangerouslySetInnerHTML __html tainted React createFactory div dangerouslySetInnerHTML __html tainted C1 React Component constructor state tainted1 tainted state notTainted dbLookup setState tainted2 tainted state tainted3 tainted state tainted4 tainted test $ myId html state tainted1 $ myId html state tainted2 $ myId html state tainted3 $ myId html state notTainted setState prevState $ myId html prevState tainted4 C2 React Component args constructor test $ myId html props tainted1 $ myId html props tainted2 $ myId html props tainted3 $ myId html props notTainted setState prevState prevProps $ myId html prevProps tainted4 C2 defaultProps tainted1 tainted C2 tainted2 tainted C2 tainted3 tainted C2 tainted4 tainted C3 React Component constructor props props state stateTainted props propTainted render span dangerouslySetInnerHTML __html state stateTainted C3 propTainted tainted |
 | autogenerated/Xss/DomBasedXss/tst.js:228:15:228:20 | 'myId' | enclosingFunctionName | react |
-| autogenerated/Xss/DomBasedXss/tst.js:228:15:228:20 | 'myId' | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:228:15:228:20 | 'myId' | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:228:28:228:48 | this.pr ... Tainted | CalleeFlexibleAccessPath | $().html |
 | autogenerated/Xss/DomBasedXss/tst.js:228:28:228:48 | this.pr ... Tainted | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:228:28:228:48 | this.pr ... Tainted | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:228:28:228:48 | this.pr ... Tainted | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:228:28:228:48 | this.pr ... Tainted | contextSurroundingFunctionParameters | ()\n() |
 | autogenerated/Xss/DomBasedXss/tst.js:228:28:228:48 | this.pr ... Tainted | enclosingFunctionBody | tainted document location search React createElement div dangerouslySetInnerHTML __html tainted React createFactory div dangerouslySetInnerHTML __html tainted C1 React Component constructor state tainted1 tainted state notTainted dbLookup setState tainted2 tainted state tainted3 tainted state tainted4 tainted test $ myId html state tainted1 $ myId html state tainted2 $ myId html state tainted3 $ myId html state notTainted setState prevState $ myId html prevState tainted4 C2 React Component args constructor test $ myId html props tainted1 $ myId html props tainted2 $ myId html props tainted3 $ myId html props notTainted setState prevState prevProps $ myId html prevProps tainted4 C2 defaultProps tainted1 tainted C2 tainted2 tainted C2 tainted3 tainted C2 tainted4 tainted C3 React Component constructor props props state stateTainted props propTainted render span dangerouslySetInnerHTML __html state stateTainted C3 propTainted tainted |
 | autogenerated/Xss/DomBasedXss/tst.js:228:28:228:48 | this.pr ... Tainted | enclosingFunctionName | react |
-| autogenerated/Xss/DomBasedXss/tst.js:228:28:228:48 | this.pr ... Tainted | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:228:28:228:48 | this.pr ... Tainted | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:230:27:232:13 | (prevSt ...       } | CalleeFlexibleAccessPath | this.setState |
 | autogenerated/Xss/DomBasedXss/tst.js:230:27:232:13 | (prevSt ...       } | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:230:27:232:13 | (prevSt ...       } | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:230:27:232:13 | (prevSt ...       } | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:230:27:232:13 | (prevSt ...       } | contextSurroundingFunctionParameters | ()\n()\n(prevState, prevProps) |
 | autogenerated/Xss/DomBasedXss/tst.js:230:27:232:13 | (prevSt ...       } | enclosingFunctionBody | tainted document location search React createElement div dangerouslySetInnerHTML __html tainted React createFactory div dangerouslySetInnerHTML __html tainted C1 React Component constructor state tainted1 tainted state notTainted dbLookup setState tainted2 tainted state tainted3 tainted state tainted4 tainted test $ myId html state tainted1 $ myId html state tainted2 $ myId html state tainted3 $ myId html state notTainted setState prevState $ myId html prevState tainted4 C2 React Component args constructor test $ myId html props tainted1 $ myId html props tainted2 $ myId html props tainted3 $ myId html props notTainted setState prevState prevProps $ myId html prevProps tainted4 C2 defaultProps tainted1 tainted C2 tainted2 tainted C2 tainted3 tainted C2 tainted4 tainted C3 React Component constructor props props state stateTainted props propTainted render span dangerouslySetInnerHTML __html state stateTainted C3 propTainted tainted |
 | autogenerated/Xss/DomBasedXss/tst.js:230:27:232:13 | (prevSt ...       } | enclosingFunctionName | react |
-| autogenerated/Xss/DomBasedXss/tst.js:230:27:232:13 | (prevSt ...       } | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:230:27:232:13 | (prevSt ...       } | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:231:19:231:24 | 'myId' | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/DomBasedXss/tst.js:231:19:231:24 | 'myId' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:231:19:231:24 | 'myId' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:231:19:231:24 | 'myId' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:231:19:231:24 | 'myId' | contextSurroundingFunctionParameters | ()\n()\n(prevState, prevProps) |
 | autogenerated/Xss/DomBasedXss/tst.js:231:19:231:24 | 'myId' | enclosingFunctionBody | tainted document location search React createElement div dangerouslySetInnerHTML __html tainted React createFactory div dangerouslySetInnerHTML __html tainted C1 React Component constructor state tainted1 tainted state notTainted dbLookup setState tainted2 tainted state tainted3 tainted state tainted4 tainted test $ myId html state tainted1 $ myId html state tainted2 $ myId html state tainted3 $ myId html state notTainted setState prevState $ myId html prevState tainted4 C2 React Component args constructor test $ myId html props tainted1 $ myId html props tainted2 $ myId html props tainted3 $ myId html props notTainted setState prevState prevProps $ myId html prevProps tainted4 C2 defaultProps tainted1 tainted C2 tainted2 tainted C2 tainted3 tainted C2 tainted4 tainted C3 React Component constructor props props state stateTainted props propTainted render span dangerouslySetInnerHTML __html state stateTainted C3 propTainted tainted |
 | autogenerated/Xss/DomBasedXss/tst.js:231:19:231:24 | 'myId' | enclosingFunctionName | react |
-| autogenerated/Xss/DomBasedXss/tst.js:231:19:231:24 | 'myId' | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:231:19:231:24 | 'myId' | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:231:32:231:49 | prevProps.tainted4 | CalleeFlexibleAccessPath | $().html |
 | autogenerated/Xss/DomBasedXss/tst.js:231:32:231:49 | prevProps.tainted4 | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:231:32:231:49 | prevProps.tainted4 | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:231:32:231:49 | prevProps.tainted4 | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:231:32:231:49 | prevProps.tainted4 | contextSurroundingFunctionParameters | ()\n()\n(prevState, prevProps) |
 | autogenerated/Xss/DomBasedXss/tst.js:231:32:231:49 | prevProps.tainted4 | enclosingFunctionBody | tainted document location search React createElement div dangerouslySetInnerHTML __html tainted React createFactory div dangerouslySetInnerHTML __html tainted C1 React Component constructor state tainted1 tainted state notTainted dbLookup setState tainted2 tainted state tainted3 tainted state tainted4 tainted test $ myId html state tainted1 $ myId html state tainted2 $ myId html state tainted3 $ myId html state notTainted setState prevState $ myId html prevState tainted4 C2 React Component args constructor test $ myId html props tainted1 $ myId html props tainted2 $ myId html props tainted3 $ myId html props notTainted setState prevState prevProps $ myId html prevProps tainted4 C2 defaultProps tainted1 tainted C2 tainted2 tainted C2 tainted3 tainted C2 tainted4 tainted C3 React Component constructor props props state stateTainted props propTainted render span dangerouslySetInnerHTML __html state stateTainted C3 propTainted tainted |
 | autogenerated/Xss/DomBasedXss/tst.js:231:32:231:49 | prevProps.tainted4 | enclosingFunctionName | react |
-| autogenerated/Xss/DomBasedXss/tst.js:231:32:231:49 | prevProps.tainted4 | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:231:32:231:49 | prevProps.tainted4 | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:246:19:246:23 | props | CalleeFlexibleAccessPath | super |
 | autogenerated/Xss/DomBasedXss/tst.js:246:19:246:23 | props | InputArgumentIndex | 0 |
 | autogenerated/Xss/DomBasedXss/tst.js:246:19:246:23 | props | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:246:19:246:23 | props | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:246:19:246:23 | props | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:246:19:246:23 | props | contextSurroundingFunctionParameters | ()\n(props) |
 | autogenerated/Xss/DomBasedXss/tst.js:246:19:246:23 | props | enclosingFunctionBody | tainted document location search React createElement div dangerouslySetInnerHTML __html tainted React createFactory div dangerouslySetInnerHTML __html tainted C1 React Component constructor state tainted1 tainted state notTainted dbLookup setState tainted2 tainted state tainted3 tainted state tainted4 tainted test $ myId html state tainted1 $ myId html state tainted2 $ myId html state tainted3 $ myId html state notTainted setState prevState $ myId html prevState tainted4 C2 React Component args constructor test $ myId html props tainted1 $ myId html props tainted2 $ myId html props tainted3 $ myId html props notTainted setState prevState prevProps $ myId html prevProps tainted4 C2 defaultProps tainted1 tainted C2 tainted2 tainted C2 tainted3 tainted C2 tainted4 tainted C3 React Component constructor props props state stateTainted props propTainted render span dangerouslySetInnerHTML __html state stateTainted C3 propTainted tainted |
 | autogenerated/Xss/DomBasedXss/tst.js:246:19:246:23 | props | enclosingFunctionName | react |
-| autogenerated/Xss/DomBasedXss/tst.js:246:19:246:23 | props | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:246:19:246:23 | props | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:251:51:251:83 | {__html ... ainted} | assignedToPropName | dangerouslySetInnerHTML |
-| autogenerated/Xss/DomBasedXss/tst.js:251:51:251:83 | {__html ... ainted} | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:251:51:251:83 | {__html ... ainted} | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:251:51:251:83 | {__html ... ainted} | contextSurroundingFunctionParameters | ()\n() |
 | autogenerated/Xss/DomBasedXss/tst.js:251:51:251:83 | {__html ... ainted} | enclosingFunctionBody | tainted document location search React createElement div dangerouslySetInnerHTML __html tainted React createFactory div dangerouslySetInnerHTML __html tainted C1 React Component constructor state tainted1 tainted state notTainted dbLookup setState tainted2 tainted state tainted3 tainted state tainted4 tainted test $ myId html state tainted1 $ myId html state tainted2 $ myId html state tainted3 $ myId html state notTainted setState prevState $ myId html prevState tainted4 C2 React Component args constructor test $ myId html props tainted1 $ myId html props tainted2 $ myId html props tainted3 $ myId html props notTainted setState prevState prevProps $ myId html prevProps tainted4 C2 defaultProps tainted1 tainted C2 tainted2 tainted C2 tainted3 tainted C2 tainted4 tainted C3 React Component constructor props props state stateTainted props propTainted render span dangerouslySetInnerHTML __html state stateTainted C3 propTainted tainted |
 | autogenerated/Xss/DomBasedXss/tst.js:251:51:251:83 | {__html ... ainted} | enclosingFunctionName | react |
-| autogenerated/Xss/DomBasedXss/tst.js:251:51:251:83 | {__html ... ainted} | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:251:51:251:83 | {__html ... ainted} | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:251:60:251:82 | this.st ... Tainted | assignedToPropName | __html |
-| autogenerated/Xss/DomBasedXss/tst.js:251:60:251:82 | this.st ... Tainted | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:251:60:251:82 | this.st ... Tainted | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:251:60:251:82 | this.st ... Tainted | contextSurroundingFunctionParameters | ()\n() |
 | autogenerated/Xss/DomBasedXss/tst.js:251:60:251:82 | this.st ... Tainted | enclosingFunctionBody | tainted document location search React createElement div dangerouslySetInnerHTML __html tainted React createFactory div dangerouslySetInnerHTML __html tainted C1 React Component constructor state tainted1 tainted state notTainted dbLookup setState tainted2 tainted state tainted3 tainted state tainted4 tainted test $ myId html state tainted1 $ myId html state tainted2 $ myId html state tainted3 $ myId html state notTainted setState prevState $ myId html prevState tainted4 C2 React Component args constructor test $ myId html props tainted1 $ myId html props tainted2 $ myId html props tainted3 $ myId html props notTainted setState prevState prevProps $ myId html prevProps tainted4 C2 defaultProps tainted1 tainted C2 tainted2 tainted C2 tainted3 tainted C2 tainted4 tainted C3 React Component constructor props props state stateTainted props propTainted render span dangerouslySetInnerHTML __html state stateTainted C3 propTainted tainted |
 | autogenerated/Xss/DomBasedXss/tst.js:251:60:251:82 | this.st ... Tainted | enclosingFunctionName | react |
-| autogenerated/Xss/DomBasedXss/tst.js:251:60:251:82 | this.st ... Tainted | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:251:60:251:82 | this.st ... Tainted | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:259:7:259:17 | window.name | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/DomBasedXss/tst.js:259:7:259:17 | window.name | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:259:7:259:17 | window.name | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:259:7:259:17 | window.name | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:259:7:259:17 | window.name | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:259:7:259:17 | window.name | enclosingFunctionBody | $ window name $ name |
 | autogenerated/Xss/DomBasedXss/tst.js:259:7:259:17 | window.name | enclosingFunctionName | windowName |
-| autogenerated/Xss/DomBasedXss/tst.js:259:7:259:17 | window.name | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:259:7:259:17 | window.name | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:260:7:260:10 | name | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/DomBasedXss/tst.js:260:7:260:10 | name | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:260:7:260:10 | name | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:260:7:260:10 | name | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:260:7:260:10 | name | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:260:7:260:10 | name | enclosingFunctionBody | $ window name $ name |
 | autogenerated/Xss/DomBasedXss/tst.js:260:7:260:10 | name | enclosingFunctionName | windowName |
-| autogenerated/Xss/DomBasedXss/tst.js:260:7:260:10 | name | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:260:7:260:10 | name | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:264:11:264:21 | window.name | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/DomBasedXss/tst.js:264:11:264:21 | window.name | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:264:11:264:21 | window.name | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:264:11:264:21 | window.name | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:264:11:264:21 | window.name | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:264:11:264:21 | window.name | enclosingFunctionBody | name a b $ window name $ name |
 | autogenerated/Xss/DomBasedXss/tst.js:264:11:264:21 | window.name | enclosingFunctionName | windowNameAssigned |
-| autogenerated/Xss/DomBasedXss/tst.js:264:11:264:21 | window.name | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:264:11:264:21 | window.name | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:265:11:265:14 | name | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/DomBasedXss/tst.js:265:11:265:14 | name | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:265:11:265:14 | name | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:265:11:265:14 | name | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:265:11:265:14 | name | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:265:11:265:14 | name | enclosingFunctionBody | name a b $ window name $ name |
 | autogenerated/Xss/DomBasedXss/tst.js:265:11:265:14 | name | enclosingFunctionName | windowNameAssigned |
-| autogenerated/Xss/DomBasedXss/tst.js:265:11:265:14 | name | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:265:11:265:14 | name | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:270:7:270:14 | location | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/DomBasedXss/tst.js:270:7:270:14 | location | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:270:7:270:14 | location | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:270:7:270:14 | location | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:270:7:270:14 | location | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:270:7:270:14 | location | enclosingFunctionBody | $ location $ window location $ document location loc1 location loc2 window location loc3 document location $ loc1 $ loc2 $ loc3 $ body append location |
 | autogenerated/Xss/DomBasedXss/tst.js:270:7:270:14 | location | enclosingFunctionName | jqueryLocation |
-| autogenerated/Xss/DomBasedXss/tst.js:270:7:270:14 | location | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:270:7:270:14 | location | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:271:7:271:21 | window.location | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/DomBasedXss/tst.js:271:7:271:21 | window.location | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:271:7:271:21 | window.location | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:271:7:271:21 | window.location | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:271:7:271:21 | window.location | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:271:7:271:21 | window.location | enclosingFunctionBody | $ location $ window location $ document location loc1 location loc2 window location loc3 document location $ loc1 $ loc2 $ loc3 $ body append location |
 | autogenerated/Xss/DomBasedXss/tst.js:271:7:271:21 | window.location | enclosingFunctionName | jqueryLocation |
-| autogenerated/Xss/DomBasedXss/tst.js:271:7:271:21 | window.location | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:271:7:271:21 | window.location | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:272:7:272:23 | document.location | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/DomBasedXss/tst.js:272:7:272:23 | document.location | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:272:7:272:23 | document.location | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:272:7:272:23 | document.location | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:272:7:272:23 | document.location | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:272:7:272:23 | document.location | enclosingFunctionBody | $ location $ window location $ document location loc1 location loc2 window location loc3 document location $ loc1 $ loc2 $ loc3 $ body append location |
 | autogenerated/Xss/DomBasedXss/tst.js:272:7:272:23 | document.location | enclosingFunctionName | jqueryLocation |
-| autogenerated/Xss/DomBasedXss/tst.js:272:7:272:23 | document.location | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:272:7:272:23 | document.location | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:276:7:276:10 | loc1 | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/DomBasedXss/tst.js:276:7:276:10 | loc1 | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:276:7:276:10 | loc1 | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:276:7:276:10 | loc1 | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:276:7:276:10 | loc1 | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:276:7:276:10 | loc1 | enclosingFunctionBody | $ location $ window location $ document location loc1 location loc2 window location loc3 document location $ loc1 $ loc2 $ loc3 $ body append location |
 | autogenerated/Xss/DomBasedXss/tst.js:276:7:276:10 | loc1 | enclosingFunctionName | jqueryLocation |
-| autogenerated/Xss/DomBasedXss/tst.js:276:7:276:10 | loc1 | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:276:7:276:10 | loc1 | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:277:7:277:10 | loc2 | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/DomBasedXss/tst.js:277:7:277:10 | loc2 | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:277:7:277:10 | loc2 | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:277:7:277:10 | loc2 | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:277:7:277:10 | loc2 | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:277:7:277:10 | loc2 | enclosingFunctionBody | $ location $ window location $ document location loc1 location loc2 window location loc3 document location $ loc1 $ loc2 $ loc3 $ body append location |
 | autogenerated/Xss/DomBasedXss/tst.js:277:7:277:10 | loc2 | enclosingFunctionName | jqueryLocation |
-| autogenerated/Xss/DomBasedXss/tst.js:277:7:277:10 | loc2 | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:277:7:277:10 | loc2 | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:278:7:278:10 | loc3 | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/DomBasedXss/tst.js:278:7:278:10 | loc3 | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:278:7:278:10 | loc3 | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:278:7:278:10 | loc3 | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:278:7:278:10 | loc3 | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:278:7:278:10 | loc3 | enclosingFunctionBody | $ location $ window location $ document location loc1 location loc2 window location loc3 document location $ loc1 $ loc2 $ loc3 $ body append location |
 | autogenerated/Xss/DomBasedXss/tst.js:278:7:278:10 | loc3 | enclosingFunctionName | jqueryLocation |
-| autogenerated/Xss/DomBasedXss/tst.js:278:7:278:10 | loc3 | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:278:7:278:10 | loc3 | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:280:7:280:12 | "body" | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/DomBasedXss/tst.js:280:7:280:12 | "body" | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:280:7:280:12 | "body" | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:280:7:280:12 | "body" | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:280:7:280:12 | "body" | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:280:7:280:12 | "body" | enclosingFunctionBody | $ location $ window location $ document location loc1 location loc2 window location loc3 document location $ loc1 $ loc2 $ loc3 $ body append location |
 | autogenerated/Xss/DomBasedXss/tst.js:280:7:280:12 | "body" | enclosingFunctionName | jqueryLocation |
-| autogenerated/Xss/DomBasedXss/tst.js:280:7:280:12 | "body" | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:280:7:280:12 | "body" | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:280:22:280:29 | location | CalleeFlexibleAccessPath | $().append |
 | autogenerated/Xss/DomBasedXss/tst.js:280:22:280:29 | location | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:280:22:280:29 | location | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:280:22:280:29 | location | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:280:22:280:29 | location | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:280:22:280:29 | location | enclosingFunctionBody | $ location $ window location $ document location loc1 location loc2 window location loc3 document location $ loc1 $ loc2 $ loc3 $ body append location |
 | autogenerated/Xss/DomBasedXss/tst.js:280:22:280:29 | location | enclosingFunctionName | jqueryLocation |
-| autogenerated/Xss/DomBasedXss/tst.js:280:22:280:29 | location | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:280:22:280:29 | location | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:287:22:287:65 | documen ... item(0) | CalleeFlexibleAccessPath | range.selectNode |
 | autogenerated/Xss/DomBasedXss/tst.js:287:22:287:65 | documen ... item(0) | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:287:22:287:65 | documen ... item(0) | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:287:22:287:65 | documen ... item(0) | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:287:22:287:65 | documen ... item(0) | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:287:22:287:65 | documen ... item(0) | enclosingFunctionBody | tainted window name range document createRange range selectNode document getElementsByTagName div item 0 documentFragment range createContextualFragment tainted document body appendChild documentFragment |
 | autogenerated/Xss/DomBasedXss/tst.js:287:22:287:65 | documen ... item(0) | enclosingFunctionName | testCreateContextualFragment |
-| autogenerated/Xss/DomBasedXss/tst.js:287:22:287:65 | documen ... item(0) | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:287:22:287:65 | documen ... item(0) | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:287:22:287:65 | documen ... item(0) | receiverName | range |
 | autogenerated/Xss/DomBasedXss/tst.js:287:52:287:56 | "div" | CalleeFlexibleAccessPath | document.getElementsByTagName |
 | autogenerated/Xss/DomBasedXss/tst.js:287:52:287:56 | "div" | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:287:52:287:56 | "div" | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:287:52:287:56 | "div" | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:287:52:287:56 | "div" | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:287:52:287:56 | "div" | enclosingFunctionBody | tainted window name range document createRange range selectNode document getElementsByTagName div item 0 documentFragment range createContextualFragment tainted document body appendChild documentFragment |
 | autogenerated/Xss/DomBasedXss/tst.js:287:52:287:56 | "div" | enclosingFunctionName | testCreateContextualFragment |
-| autogenerated/Xss/DomBasedXss/tst.js:287:52:287:56 | "div" | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:287:52:287:56 | "div" | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:287:52:287:56 | "div" | receiverName | document |
 | autogenerated/Xss/DomBasedXss/tst.js:287:64:287:64 | 0 | CalleeFlexibleAccessPath | document.getElementsByTagName().item |
 | autogenerated/Xss/DomBasedXss/tst.js:287:64:287:64 | 0 | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:287:64:287:64 | 0 | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:287:64:287:64 | 0 | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:287:64:287:64 | 0 | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:287:64:287:64 | 0 | enclosingFunctionBody | tainted window name range document createRange range selectNode document getElementsByTagName div item 0 documentFragment range createContextualFragment tainted document body appendChild documentFragment |
 | autogenerated/Xss/DomBasedXss/tst.js:287:64:287:64 | 0 | enclosingFunctionName | testCreateContextualFragment |
-| autogenerated/Xss/DomBasedXss/tst.js:287:64:287:64 | 0 | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:287:64:287:64 | 0 | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:288:59:288:65 | tainted | CalleeFlexibleAccessPath | range.createContextualFragment |
 | autogenerated/Xss/DomBasedXss/tst.js:288:59:288:65 | tainted | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:288:59:288:65 | tainted | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:288:59:288:65 | tainted | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:288:59:288:65 | tainted | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:288:59:288:65 | tainted | enclosingFunctionBody | tainted window name range document createRange range selectNode document getElementsByTagName div item 0 documentFragment range createContextualFragment tainted document body appendChild documentFragment |
 | autogenerated/Xss/DomBasedXss/tst.js:288:59:288:65 | tainted | enclosingFunctionName | testCreateContextualFragment |
-| autogenerated/Xss/DomBasedXss/tst.js:288:59:288:65 | tainted | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:288:59:288:65 | tainted | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:288:59:288:65 | tainted | receiverName | range |
 | autogenerated/Xss/DomBasedXss/tst.js:289:31:289:46 | documentFragment | CalleeFlexibleAccessPath | document.body.appendChild |
 | autogenerated/Xss/DomBasedXss/tst.js:289:31:289:46 | documentFragment | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:289:31:289:46 | documentFragment | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:289:31:289:46 | documentFragment | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:289:31:289:46 | documentFragment | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:289:31:289:46 | documentFragment | enclosingFunctionBody | tainted window name range document createRange range selectNode document getElementsByTagName div item 0 documentFragment range createContextualFragment tainted document body appendChild documentFragment |
 | autogenerated/Xss/DomBasedXss/tst.js:289:31:289:46 | documentFragment | enclosingFunctionName | testCreateContextualFragment |
-| autogenerated/Xss/DomBasedXss/tst.js:289:31:289:46 | documentFragment | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:289:31:289:46 | documentFragment | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:296:9:296:9 | p | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/DomBasedXss/tst.js:296:9:296:9 | p | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:296:9:296:9 | p | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:296:9:296:9 | p | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:296:9:296:9 | p | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:296:9:296:9 | p | enclosingFunctionBody | obj obj Math random window name p obj $ p |
 | autogenerated/Xss/DomBasedXss/tst.js:296:9:296:9 | p | enclosingFunctionName | flowThroughPropertyNames |
-| autogenerated/Xss/DomBasedXss/tst.js:296:9:296:9 | p | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:296:9:296:9 | p | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:303:5:303:10 | "body" | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/DomBasedXss/tst.js:303:5:303:10 | "body" | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:303:5:303:10 | "body" | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:303:5:303:10 | "body" | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:303:5:303:10 | "body" | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:303:5:303:10 | "body" | enclosingFunctionBody | location e $ body append e location e $ body append e |
 | autogenerated/Xss/DomBasedXss/tst.js:303:5:303:10 | "body" | enclosingFunctionName | basicExceptions |
-| autogenerated/Xss/DomBasedXss/tst.js:303:5:303:10 | "body" | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:303:5:303:10 | "body" | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:303:20:303:20 | e | CalleeFlexibleAccessPath | $().append |
 | autogenerated/Xss/DomBasedXss/tst.js:303:20:303:20 | e | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:303:20:303:20 | e | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:303:20:303:20 | e | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:303:20:303:20 | e | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:303:20:303:20 | e | enclosingFunctionBody | location e $ body append e location e $ body append e |
 | autogenerated/Xss/DomBasedXss/tst.js:303:20:303:20 | e | enclosingFunctionName | basicExceptions |
-| autogenerated/Xss/DomBasedXss/tst.js:303:20:303:20 | e | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:303:20:303:20 | e | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:311:5:311:10 | "body" | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/DomBasedXss/tst.js:311:5:311:10 | "body" | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:311:5:311:10 | "body" | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:311:5:311:10 | "body" | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:311:5:311:10 | "body" | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:311:5:311:10 | "body" | enclosingFunctionBody | location e $ body append e location e $ body append e |
 | autogenerated/Xss/DomBasedXss/tst.js:311:5:311:10 | "body" | enclosingFunctionName | basicExceptions |
-| autogenerated/Xss/DomBasedXss/tst.js:311:5:311:10 | "body" | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:311:5:311:10 | "body" | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:311:20:311:20 | e | CalleeFlexibleAccessPath | $().append |
 | autogenerated/Xss/DomBasedXss/tst.js:311:20:311:20 | e | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:311:20:311:20 | e | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:311:20:311:20 | e | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:311:20:311:20 | e | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:311:20:311:20 | e | enclosingFunctionBody | location e $ body append e location e $ body append e |
 | autogenerated/Xss/DomBasedXss/tst.js:311:20:311:20 | e | enclosingFunctionName | basicExceptions |
-| autogenerated/Xss/DomBasedXss/tst.js:311:20:311:20 | e | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:311:20:311:20 | e | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:316:35:316:42 | location | CalleeFlexibleAccessPath | Handlebars.SafeString |
 | autogenerated/Xss/DomBasedXss/tst.js:316:35:316:42 | location | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:316:35:316:42 | location | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:316:35:316:42 | location | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:316:35:316:42 | location | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:316:35:316:42 | location | enclosingFunctionBody | Handlebars SafeString location |
 | autogenerated/Xss/DomBasedXss/tst.js:316:35:316:42 | location | enclosingFunctionName | handlebarsSafeString |
-| autogenerated/Xss/DomBasedXss/tst.js:316:35:316:42 | location | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:316:35:316:42 | location | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:323:5:323:10 | 'myId' | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/DomBasedXss/tst.js:323:5:323:10 | 'myId' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:323:5:323:10 | 'myId' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:323:5:323:10 | 'myId' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:323:5:323:10 | 'myId' | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:323:5:323:10 | 'myId' | enclosingFunctionBody | target document location search $ myId html target length |
 | autogenerated/Xss/DomBasedXss/tst.js:323:5:323:10 | 'myId' | enclosingFunctionName | test2 |
-| autogenerated/Xss/DomBasedXss/tst.js:323:5:323:10 | 'myId' | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:323:5:323:10 | 'myId' | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:323:18:323:30 | target.length | CalleeFlexibleAccessPath | $().html |
 | autogenerated/Xss/DomBasedXss/tst.js:323:18:323:30 | target.length | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:323:18:323:30 | target.length | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:323:18:323:30 | target.length | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:323:18:323:30 | target.length | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:323:18:323:30 | target.length | enclosingFunctionBody | target document location search $ myId html target length |
 | autogenerated/Xss/DomBasedXss/tst.js:323:18:323:30 | target.length | enclosingFunctionName | test2 |
-| autogenerated/Xss/DomBasedXss/tst.js:323:18:323:30 | target.length | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:323:18:323:30 | target.length | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:332:5:332:10 | 'name' | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/DomBasedXss/tst.js:332:5:332:10 | 'name' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:332:5:332:10 | 'name' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:332:5:332:10 | 'name' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:332:5:332:10 | 'name' | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:332:5:332:10 | 'name' | enclosingFunctionBody | params getTaintedUrl searchParams $ name html params get name myUrl getTaintedUrl $ name html myUrl get name |
 | autogenerated/Xss/DomBasedXss/tst.js:332:5:332:10 | 'name' | enclosingFunctionName | URLPseudoProperties |
-| autogenerated/Xss/DomBasedXss/tst.js:332:5:332:10 | 'name' | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:332:5:332:10 | 'name' | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:332:18:332:35 | params.get('name') | CalleeFlexibleAccessPath | $().html |
 | autogenerated/Xss/DomBasedXss/tst.js:332:18:332:35 | params.get('name') | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:332:18:332:35 | params.get('name') | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:332:18:332:35 | params.get('name') | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:332:18:332:35 | params.get('name') | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:332:18:332:35 | params.get('name') | enclosingFunctionBody | params getTaintedUrl searchParams $ name html params get name myUrl getTaintedUrl $ name html myUrl get name |
 | autogenerated/Xss/DomBasedXss/tst.js:332:18:332:35 | params.get('name') | enclosingFunctionName | URLPseudoProperties |
-| autogenerated/Xss/DomBasedXss/tst.js:332:18:332:35 | params.get('name') | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:332:18:332:35 | params.get('name') | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:332:29:332:34 | 'name' | CalleeFlexibleAccessPath | params.get |
 | autogenerated/Xss/DomBasedXss/tst.js:332:29:332:34 | 'name' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:332:29:332:34 | 'name' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:332:29:332:34 | 'name' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:332:29:332:34 | 'name' | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:332:29:332:34 | 'name' | enclosingFunctionBody | params getTaintedUrl searchParams $ name html params get name myUrl getTaintedUrl $ name html myUrl get name |
 | autogenerated/Xss/DomBasedXss/tst.js:332:29:332:34 | 'name' | enclosingFunctionName | URLPseudoProperties |
-| autogenerated/Xss/DomBasedXss/tst.js:332:29:332:34 | 'name' | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:332:29:332:34 | 'name' | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:332:29:332:34 | 'name' | receiverName | params |
 | autogenerated/Xss/DomBasedXss/tst.js:335:5:335:10 | 'name' | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/DomBasedXss/tst.js:335:5:335:10 | 'name' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:335:5:335:10 | 'name' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:335:5:335:10 | 'name' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:335:5:335:10 | 'name' | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:335:5:335:10 | 'name' | enclosingFunctionBody | params getTaintedUrl searchParams $ name html params get name myUrl getTaintedUrl $ name html myUrl get name |
 | autogenerated/Xss/DomBasedXss/tst.js:335:5:335:10 | 'name' | enclosingFunctionName | URLPseudoProperties |
-| autogenerated/Xss/DomBasedXss/tst.js:335:5:335:10 | 'name' | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:335:5:335:10 | 'name' | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:335:18:335:34 | myUrl.get('name') | CalleeFlexibleAccessPath | $().html |
 | autogenerated/Xss/DomBasedXss/tst.js:335:18:335:34 | myUrl.get('name') | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:335:18:335:34 | myUrl.get('name') | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:335:18:335:34 | myUrl.get('name') | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:335:18:335:34 | myUrl.get('name') | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:335:18:335:34 | myUrl.get('name') | enclosingFunctionBody | params getTaintedUrl searchParams $ name html params get name myUrl getTaintedUrl $ name html myUrl get name |
 | autogenerated/Xss/DomBasedXss/tst.js:335:18:335:34 | myUrl.get('name') | enclosingFunctionName | URLPseudoProperties |
-| autogenerated/Xss/DomBasedXss/tst.js:335:18:335:34 | myUrl.get('name') | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:335:18:335:34 | myUrl.get('name') | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:335:28:335:33 | 'name' | CalleeFlexibleAccessPath | myUrl.get |
 | autogenerated/Xss/DomBasedXss/tst.js:335:28:335:33 | 'name' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:335:28:335:33 | 'name' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:335:28:335:33 | 'name' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:335:28:335:33 | 'name' | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:335:28:335:33 | 'name' | enclosingFunctionBody | params getTaintedUrl searchParams $ name html params get name myUrl getTaintedUrl $ name html myUrl get name |
 | autogenerated/Xss/DomBasedXss/tst.js:335:28:335:33 | 'name' | enclosingFunctionName | URLPseudoProperties |
-| autogenerated/Xss/DomBasedXss/tst.js:335:28:335:33 | 'name' | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:335:28:335:33 | 'name' | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:335:28:335:33 | 'name' | receiverName | myUrl |
 | autogenerated/Xss/DomBasedXss/tst.js:343:5:343:30 | getUrl( ... ring(1) | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/DomBasedXss/tst.js:343:5:343:30 | getUrl( ... ring(1) | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:343:5:343:30 | getUrl( ... ring(1) | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:343:5:343:30 | getUrl( ... ring(1) | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:343:5:343:30 | getUrl( ... ring(1) | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:343:5:343:30 | getUrl( ... ring(1) | enclosingFunctionBody | getUrl URL document location $ getUrl hash substring 1 |
 | autogenerated/Xss/DomBasedXss/tst.js:343:5:343:30 | getUrl( ... ring(1) | enclosingFunctionName | hash |
-| autogenerated/Xss/DomBasedXss/tst.js:343:5:343:30 | getUrl( ... ring(1) | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:343:5:343:30 | getUrl( ... ring(1) | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:343:29:343:29 | 1 | CalleeFlexibleAccessPath | getUrl().hash.substring |
 | autogenerated/Xss/DomBasedXss/tst.js:343:29:343:29 | 1 | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:343:29:343:29 | 1 | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:343:29:343:29 | 1 | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:343:29:343:29 | 1 | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:343:29:343:29 | 1 | enclosingFunctionBody | getUrl URL document location $ getUrl hash substring 1 |
 | autogenerated/Xss/DomBasedXss/tst.js:343:29:343:29 | 1 | enclosingFunctionName | hash |
-| autogenerated/Xss/DomBasedXss/tst.js:343:29:343:29 | 1 | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:343:29:343:29 | 1 | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:349:12:349:17 | target | CalleeFlexibleAccessPath | $.jGrowl |
 | autogenerated/Xss/DomBasedXss/tst.js:349:12:349:17 | target | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:349:12:349:17 | target | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:349:12:349:17 | target | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:349:12:349:17 | target | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:349:12:349:17 | target | enclosingFunctionBody | target document location search $ jGrowl target |
 | autogenerated/Xss/DomBasedXss/tst.js:349:12:349:17 | target | enclosingFunctionName | growl |
-| autogenerated/Xss/DomBasedXss/tst.js:349:12:349:17 | target | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:349:12:349:17 | target | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:349:12:349:17 | target | receiverName | $ |
 | autogenerated/Xss/DomBasedXss/tst.js:356:16:356:21 | target | CalleeFlexibleAccessPath | this.html |
 | autogenerated/Xss/DomBasedXss/tst.js:356:16:356:21 | target | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:356:16:356:21 | target | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:356:16:356:21 | target | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:356:16:356:21 | target | contextSurroundingFunctionParameters | ()\n() |
 | autogenerated/Xss/DomBasedXss/tst.js:356:16:356:21 | target | enclosingFunctionBody | pluginName myFancyJQueryPlugin myPlugin target document location search html target innerHTML target each i e innerHTML target html target e innerHTML target $ fn pluginName myPlugin |
 | autogenerated/Xss/DomBasedXss/tst.js:356:16:356:21 | target | enclosingFunctionName | thisNodes |
-| autogenerated/Xss/DomBasedXss/tst.js:356:16:356:21 | target | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:356:16:356:21 | target | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:357:20:357:25 | target | assignedToPropName | innerHTML |
-| autogenerated/Xss/DomBasedXss/tst.js:357:20:357:25 | target | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:357:20:357:25 | target | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:357:20:357:25 | target | contextSurroundingFunctionParameters | ()\n() |
 | autogenerated/Xss/DomBasedXss/tst.js:357:20:357:25 | target | enclosingFunctionBody | pluginName myFancyJQueryPlugin myPlugin target document location search html target innerHTML target each i e innerHTML target html target e innerHTML target $ fn pluginName myPlugin |
 | autogenerated/Xss/DomBasedXss/tst.js:357:20:357:25 | target | enclosingFunctionName | thisNodes |
-| autogenerated/Xss/DomBasedXss/tst.js:357:20:357:25 | target | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:357:20:357:25 | target | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:359:13:364:3 | functio ... OK.\\n\\t\\t} | CalleeFlexibleAccessPath | this.each |
 | autogenerated/Xss/DomBasedXss/tst.js:359:13:364:3 | functio ... OK.\\n\\t\\t} | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:359:13:364:3 | functio ... OK.\\n\\t\\t} | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:359:13:364:3 | functio ... OK.\\n\\t\\t} | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:359:13:364:3 | functio ... OK.\\n\\t\\t} | contextSurroundingFunctionParameters | ()\n()\n(i, e) |
 | autogenerated/Xss/DomBasedXss/tst.js:359:13:364:3 | functio ... OK.\\n\\t\\t} | enclosingFunctionBody | pluginName myFancyJQueryPlugin myPlugin target document location search html target innerHTML target each i e innerHTML target html target e innerHTML target $ fn pluginName myPlugin |
 | autogenerated/Xss/DomBasedXss/tst.js:359:13:364:3 | functio ... OK.\\n\\t\\t} | enclosingFunctionName | thisNodes |
-| autogenerated/Xss/DomBasedXss/tst.js:359:13:364:3 | functio ... OK.\\n\\t\\t} | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:359:13:364:3 | functio ... OK.\\n\\t\\t} | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:360:21:360:26 | target | assignedToPropName | innerHTML |
-| autogenerated/Xss/DomBasedXss/tst.js:360:21:360:26 | target | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:360:21:360:26 | target | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:360:21:360:26 | target | contextSurroundingFunctionParameters | ()\n()\n(i, e) |
 | autogenerated/Xss/DomBasedXss/tst.js:360:21:360:26 | target | enclosingFunctionBody | pluginName myFancyJQueryPlugin myPlugin target document location search html target innerHTML target each i e innerHTML target html target e innerHTML target $ fn pluginName myPlugin |
 | autogenerated/Xss/DomBasedXss/tst.js:360:21:360:26 | target | enclosingFunctionName | thisNodes |
-| autogenerated/Xss/DomBasedXss/tst.js:360:21:360:26 | target | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:360:21:360:26 | target | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:361:14:361:19 | target | CalleeFlexibleAccessPath | this.html |
 | autogenerated/Xss/DomBasedXss/tst.js:361:14:361:19 | target | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:361:14:361:19 | target | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:361:14:361:19 | target | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:361:14:361:19 | target | contextSurroundingFunctionParameters | ()\n()\n(i, e) |
 | autogenerated/Xss/DomBasedXss/tst.js:361:14:361:19 | target | enclosingFunctionBody | pluginName myFancyJQueryPlugin myPlugin target document location search html target innerHTML target each i e innerHTML target html target e innerHTML target $ fn pluginName myPlugin |
 | autogenerated/Xss/DomBasedXss/tst.js:361:14:361:19 | target | enclosingFunctionName | thisNodes |
-| autogenerated/Xss/DomBasedXss/tst.js:361:14:361:19 | target | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:361:14:361:19 | target | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:363:18:363:23 | target | assignedToPropName | innerHTML |
-| autogenerated/Xss/DomBasedXss/tst.js:363:18:363:23 | target | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:363:18:363:23 | target | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:363:18:363:23 | target | contextSurroundingFunctionParameters | ()\n()\n(i, e) |
 | autogenerated/Xss/DomBasedXss/tst.js:363:18:363:23 | target | enclosingFunctionBody | pluginName myFancyJQueryPlugin myPlugin target document location search html target innerHTML target each i e innerHTML target html target e innerHTML target $ fn pluginName myPlugin |
 | autogenerated/Xss/DomBasedXss/tst.js:363:18:363:23 | target | enclosingFunctionName | thisNodes |
-| autogenerated/Xss/DomBasedXss/tst.js:363:18:363:23 | target | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:363:18:363:23 | target | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:374:5:374:10 | 'myId' | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/DomBasedXss/tst.js:374:5:374:10 | 'myId' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:374:5:374:10 | 'myId' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:374:5:374:10 | 'myId' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:374:5:374:10 | 'myId' | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:374:5:374:10 | 'myId' | enclosingFunctionBody | target document location search $ myId html target $ myid html document 0 location href split ? 0 |
 | autogenerated/Xss/DomBasedXss/tst.js:374:5:374:10 | 'myId' | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/tst.js:374:5:374:10 | 'myId' | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:374:5:374:10 | 'myId' | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:374:18:374:23 | target | CalleeFlexibleAccessPath | $().html |
 | autogenerated/Xss/DomBasedXss/tst.js:374:18:374:23 | target | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:374:18:374:23 | target | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:374:18:374:23 | target | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:374:18:374:23 | target | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:374:18:374:23 | target | enclosingFunctionBody | target document location search $ myId html target $ myid html document 0 location href split ? 0 |
 | autogenerated/Xss/DomBasedXss/tst.js:374:18:374:23 | target | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/tst.js:374:18:374:23 | target | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:374:18:374:23 | target | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:377:5:377:10 | 'myid' | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/DomBasedXss/tst.js:377:5:377:10 | 'myid' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:377:5:377:10 | 'myid' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:377:5:377:10 | 'myid' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:377:5:377:10 | 'myid' | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:377:5:377:10 | 'myid' | enclosingFunctionBody | target document location search $ myId html target $ myid html document 0 location href split ? 0 |
 | autogenerated/Xss/DomBasedXss/tst.js:377:5:377:10 | 'myid' | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/tst.js:377:5:377:10 | 'myid' | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:377:5:377:10 | 'myid' | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:377:18:377:53 | documen ... "?")[0] | CalleeFlexibleAccessPath | $().html |
 | autogenerated/Xss/DomBasedXss/tst.js:377:18:377:53 | documen ... "?")[0] | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:377:18:377:53 | documen ... "?")[0] | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:377:18:377:53 | documen ... "?")[0] | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:377:18:377:53 | documen ... "?")[0] | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:377:18:377:53 | documen ... "?")[0] | enclosingFunctionBody | target document location search $ myId html target $ myid html document 0 location href split ? 0 |
 | autogenerated/Xss/DomBasedXss/tst.js:377:18:377:53 | documen ... "?")[0] | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/tst.js:377:18:377:53 | documen ... "?")[0] | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:377:18:377:53 | documen ... "?")[0] | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:377:47:377:49 | "?" | CalleeFlexibleAccessPath | document.location.href.split |
 | autogenerated/Xss/DomBasedXss/tst.js:377:47:377:49 | "?" | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:377:47:377:49 | "?" | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:377:47:377:49 | "?" | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:377:47:377:49 | "?" | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:377:47:377:49 | "?" | enclosingFunctionBody | target document location search $ myId html target $ myid html document 0 location href split ? 0 |
 | autogenerated/Xss/DomBasedXss/tst.js:377:47:377:49 | "?" | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/tst.js:377:47:377:49 | "?" | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:377:47:377:49 | "?" | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:384:5:384:10 | 'myId' | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/DomBasedXss/tst.js:384:5:384:10 | 'myId' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:384:5:384:10 | 'myId' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:384:5:384:10 | 'myId' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:384:5:384:10 | 'myId' | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:384:5:384:10 | 'myId' | enclosingFunctionBody | target document location search $ myId html target $ myId html target taint target taint2 2 $ myId html target taint2 target taint3 document location search $ myId html target taint3 target sub taint4 2 $ myId html target sub taint4 $ myId html target taint5 target taint5 safe target taint6 2 random $ myId html target taint6 random target taint7 safe $ myId html target taint7 target taint8 target taint8 $ myId html target taint8 target taint9 target taint9 safe $ myId html target taint9 |
 | autogenerated/Xss/DomBasedXss/tst.js:384:5:384:10 | 'myId' | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/tst.js:384:5:384:10 | 'myId' | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:384:5:384:10 | 'myId' | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:384:18:384:23 | target | CalleeFlexibleAccessPath | $().html |
 | autogenerated/Xss/DomBasedXss/tst.js:384:18:384:23 | target | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:384:18:384:23 | target | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:384:18:384:23 | target | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:384:18:384:23 | target | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:384:18:384:23 | target | enclosingFunctionBody | target document location search $ myId html target $ myId html target taint target taint2 2 $ myId html target taint2 target taint3 document location search $ myId html target taint3 target sub taint4 2 $ myId html target sub taint4 $ myId html target taint5 target taint5 safe target taint6 2 random $ myId html target taint6 random target taint7 safe $ myId html target taint7 target taint8 target taint8 $ myId html target taint8 target taint9 target taint9 safe $ myId html target taint9 |
 | autogenerated/Xss/DomBasedXss/tst.js:384:18:384:23 | target | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/tst.js:384:18:384:23 | target | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:384:18:384:23 | target | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:386:5:386:10 | 'myId' | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/DomBasedXss/tst.js:386:5:386:10 | 'myId' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:386:5:386:10 | 'myId' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:386:5:386:10 | 'myId' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:386:5:386:10 | 'myId' | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:386:5:386:10 | 'myId' | enclosingFunctionBody | target document location search $ myId html target $ myId html target taint target taint2 2 $ myId html target taint2 target taint3 document location search $ myId html target taint3 target sub taint4 2 $ myId html target sub taint4 $ myId html target taint5 target taint5 safe target taint6 2 random $ myId html target taint6 random target taint7 safe $ myId html target taint7 target taint8 target taint8 $ myId html target taint8 target taint9 target taint9 safe $ myId html target taint9 |
 | autogenerated/Xss/DomBasedXss/tst.js:386:5:386:10 | 'myId' | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/tst.js:386:5:386:10 | 'myId' | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:386:5:386:10 | 'myId' | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:386:18:386:29 | target.taint | CalleeFlexibleAccessPath | $().html |
 | autogenerated/Xss/DomBasedXss/tst.js:386:18:386:29 | target.taint | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:386:18:386:29 | target.taint | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:386:18:386:29 | target.taint | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:386:18:386:29 | target.taint | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:386:18:386:29 | target.taint | enclosingFunctionBody | target document location search $ myId html target $ myId html target taint target taint2 2 $ myId html target taint2 target taint3 document location search $ myId html target taint3 target sub taint4 2 $ myId html target sub taint4 $ myId html target taint5 target taint5 safe target taint6 2 random $ myId html target taint6 random target taint7 safe $ myId html target taint7 target taint8 target taint8 $ myId html target taint8 target taint9 target taint9 safe $ myId html target taint9 |
 | autogenerated/Xss/DomBasedXss/tst.js:386:18:386:29 | target.taint | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/tst.js:386:18:386:29 | target.taint | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:386:18:386:29 | target.taint | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:389:5:389:10 | 'myId' | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/DomBasedXss/tst.js:389:5:389:10 | 'myId' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:389:5:389:10 | 'myId' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:389:5:389:10 | 'myId' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:389:5:389:10 | 'myId' | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:389:5:389:10 | 'myId' | enclosingFunctionBody | target document location search $ myId html target $ myId html target taint target taint2 2 $ myId html target taint2 target taint3 document location search $ myId html target taint3 target sub taint4 2 $ myId html target sub taint4 $ myId html target taint5 target taint5 safe target taint6 2 random $ myId html target taint6 random target taint7 safe $ myId html target taint7 target taint8 target taint8 $ myId html target taint8 target taint9 target taint9 safe $ myId html target taint9 |
 | autogenerated/Xss/DomBasedXss/tst.js:389:5:389:10 | 'myId' | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/tst.js:389:5:389:10 | 'myId' | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:389:5:389:10 | 'myId' | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:389:18:389:30 | target.taint2 | CalleeFlexibleAccessPath | $().html |
 | autogenerated/Xss/DomBasedXss/tst.js:389:18:389:30 | target.taint2 | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:389:18:389:30 | target.taint2 | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:389:18:389:30 | target.taint2 | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:389:18:389:30 | target.taint2 | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:389:18:389:30 | target.taint2 | enclosingFunctionBody | target document location search $ myId html target $ myId html target taint target taint2 2 $ myId html target taint2 target taint3 document location search $ myId html target taint3 target sub taint4 2 $ myId html target sub taint4 $ myId html target taint5 target taint5 safe target taint6 2 random $ myId html target taint6 random target taint7 safe $ myId html target taint7 target taint8 target taint8 $ myId html target taint8 target taint9 target taint9 safe $ myId html target taint9 |
 | autogenerated/Xss/DomBasedXss/tst.js:389:18:389:30 | target.taint2 | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/tst.js:389:18:389:30 | target.taint2 | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:389:18:389:30 | target.taint2 | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:392:5:392:10 | 'myId' | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/DomBasedXss/tst.js:392:5:392:10 | 'myId' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:392:5:392:10 | 'myId' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:392:5:392:10 | 'myId' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:392:5:392:10 | 'myId' | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:392:5:392:10 | 'myId' | enclosingFunctionBody | target document location search $ myId html target $ myId html target taint target taint2 2 $ myId html target taint2 target taint3 document location search $ myId html target taint3 target sub taint4 2 $ myId html target sub taint4 $ myId html target taint5 target taint5 safe target taint6 2 random $ myId html target taint6 random target taint7 safe $ myId html target taint7 target taint8 target taint8 $ myId html target taint8 target taint9 target taint9 safe $ myId html target taint9 |
 | autogenerated/Xss/DomBasedXss/tst.js:392:5:392:10 | 'myId' | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/tst.js:392:5:392:10 | 'myId' | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:392:5:392:10 | 'myId' | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:392:18:392:30 | target.taint3 | CalleeFlexibleAccessPath | $().html |
 | autogenerated/Xss/DomBasedXss/tst.js:392:18:392:30 | target.taint3 | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:392:18:392:30 | target.taint3 | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:392:18:392:30 | target.taint3 | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:392:18:392:30 | target.taint3 | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:392:18:392:30 | target.taint3 | enclosingFunctionBody | target document location search $ myId html target $ myId html target taint target taint2 2 $ myId html target taint2 target taint3 document location search $ myId html target taint3 target sub taint4 2 $ myId html target sub taint4 $ myId html target taint5 target taint5 safe target taint6 2 random $ myId html target taint6 random target taint7 safe $ myId html target taint7 target taint8 target taint8 $ myId html target taint8 target taint9 target taint9 safe $ myId html target taint9 |
 | autogenerated/Xss/DomBasedXss/tst.js:392:18:392:30 | target.taint3 | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/tst.js:392:18:392:30 | target.taint3 | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:392:18:392:30 | target.taint3 | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:395:5:395:10 | 'myId' | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/DomBasedXss/tst.js:395:5:395:10 | 'myId' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:395:5:395:10 | 'myId' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:395:5:395:10 | 'myId' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:395:5:395:10 | 'myId' | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:395:5:395:10 | 'myId' | enclosingFunctionBody | target document location search $ myId html target $ myId html target taint target taint2 2 $ myId html target taint2 target taint3 document location search $ myId html target taint3 target sub taint4 2 $ myId html target sub taint4 $ myId html target taint5 target taint5 safe target taint6 2 random $ myId html target taint6 random target taint7 safe $ myId html target taint7 target taint8 target taint8 $ myId html target taint8 target taint9 target taint9 safe $ myId html target taint9 |
 | autogenerated/Xss/DomBasedXss/tst.js:395:5:395:10 | 'myId' | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/tst.js:395:5:395:10 | 'myId' | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:395:5:395:10 | 'myId' | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:395:18:395:34 | target.sub.taint4 | CalleeFlexibleAccessPath | $().html |
 | autogenerated/Xss/DomBasedXss/tst.js:395:18:395:34 | target.sub.taint4 | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:395:18:395:34 | target.sub.taint4 | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:395:18:395:34 | target.sub.taint4 | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:395:18:395:34 | target.sub.taint4 | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:395:18:395:34 | target.sub.taint4 | enclosingFunctionBody | target document location search $ myId html target $ myId html target taint target taint2 2 $ myId html target taint2 target taint3 document location search $ myId html target taint3 target sub taint4 2 $ myId html target sub taint4 $ myId html target taint5 target taint5 safe target taint6 2 random $ myId html target taint6 random target taint7 safe $ myId html target taint7 target taint8 target taint8 $ myId html target taint8 target taint9 target taint9 safe $ myId html target taint9 |
 | autogenerated/Xss/DomBasedXss/tst.js:395:18:395:34 | target.sub.taint4 | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/tst.js:395:18:395:34 | target.sub.taint4 | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:395:18:395:34 | target.sub.taint4 | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:397:5:397:10 | 'myId' | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/DomBasedXss/tst.js:397:5:397:10 | 'myId' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:397:5:397:10 | 'myId' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:397:5:397:10 | 'myId' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:397:5:397:10 | 'myId' | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:397:5:397:10 | 'myId' | enclosingFunctionBody | target document location search $ myId html target $ myId html target taint target taint2 2 $ myId html target taint2 target taint3 document location search $ myId html target taint3 target sub taint4 2 $ myId html target sub taint4 $ myId html target taint5 target taint5 safe target taint6 2 random $ myId html target taint6 random target taint7 safe $ myId html target taint7 target taint8 target taint8 $ myId html target taint8 target taint9 target taint9 safe $ myId html target taint9 |
 | autogenerated/Xss/DomBasedXss/tst.js:397:5:397:10 | 'myId' | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/tst.js:397:5:397:10 | 'myId' | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:397:5:397:10 | 'myId' | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:397:18:397:30 | target.taint5 | CalleeFlexibleAccessPath | $().html |
 | autogenerated/Xss/DomBasedXss/tst.js:397:18:397:30 | target.taint5 | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:397:18:397:30 | target.taint5 | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:397:18:397:30 | target.taint5 | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:397:18:397:30 | target.taint5 | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:397:18:397:30 | target.taint5 | enclosingFunctionBody | target document location search $ myId html target $ myId html target taint target taint2 2 $ myId html target taint2 target taint3 document location search $ myId html target taint3 target sub taint4 2 $ myId html target sub taint4 $ myId html target taint5 target taint5 safe target taint6 2 random $ myId html target taint6 random target taint7 safe $ myId html target taint7 target taint8 target taint8 $ myId html target taint8 target taint9 target taint9 safe $ myId html target taint9 |
 | autogenerated/Xss/DomBasedXss/tst.js:397:18:397:30 | target.taint5 | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/tst.js:397:18:397:30 | target.taint5 | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:397:18:397:30 | target.taint5 | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:402:5:402:10 | 'myId' | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/DomBasedXss/tst.js:402:5:402:10 | 'myId' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:402:5:402:10 | 'myId' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:402:5:402:10 | 'myId' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:402:5:402:10 | 'myId' | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:402:5:402:10 | 'myId' | enclosingFunctionBody | target document location search $ myId html target $ myId html target taint target taint2 2 $ myId html target taint2 target taint3 document location search $ myId html target taint3 target sub taint4 2 $ myId html target sub taint4 $ myId html target taint5 target taint5 safe target taint6 2 random $ myId html target taint6 random target taint7 safe $ myId html target taint7 target taint8 target taint8 $ myId html target taint8 target taint9 target taint9 safe $ myId html target taint9 |
 | autogenerated/Xss/DomBasedXss/tst.js:402:5:402:10 | 'myId' | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/tst.js:402:5:402:10 | 'myId' | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:402:5:402:10 | 'myId' | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:402:18:402:30 | target.taint6 | CalleeFlexibleAccessPath | $().html |
 | autogenerated/Xss/DomBasedXss/tst.js:402:18:402:30 | target.taint6 | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:402:18:402:30 | target.taint6 | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:402:18:402:30 | target.taint6 | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:402:18:402:30 | target.taint6 | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:402:18:402:30 | target.taint6 | enclosingFunctionBody | target document location search $ myId html target $ myId html target taint target taint2 2 $ myId html target taint2 target taint3 document location search $ myId html target taint3 target sub taint4 2 $ myId html target sub taint4 $ myId html target taint5 target taint5 safe target taint6 2 random $ myId html target taint6 random target taint7 safe $ myId html target taint7 target taint8 target taint8 $ myId html target taint8 target taint9 target taint9 safe $ myId html target taint9 |
 | autogenerated/Xss/DomBasedXss/tst.js:402:18:402:30 | target.taint6 | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/tst.js:402:18:402:30 | target.taint6 | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:402:18:402:30 | target.taint6 | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:406:5:406:10 | 'myId' | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/DomBasedXss/tst.js:406:5:406:10 | 'myId' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:406:5:406:10 | 'myId' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:406:5:406:10 | 'myId' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:406:5:406:10 | 'myId' | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:406:5:406:10 | 'myId' | enclosingFunctionBody | target document location search $ myId html target $ myId html target taint target taint2 2 $ myId html target taint2 target taint3 document location search $ myId html target taint3 target sub taint4 2 $ myId html target sub taint4 $ myId html target taint5 target taint5 safe target taint6 2 random $ myId html target taint6 random target taint7 safe $ myId html target taint7 target taint8 target taint8 $ myId html target taint8 target taint9 target taint9 safe $ myId html target taint9 |
 | autogenerated/Xss/DomBasedXss/tst.js:406:5:406:10 | 'myId' | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/tst.js:406:5:406:10 | 'myId' | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:406:5:406:10 | 'myId' | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:406:18:406:30 | target.taint7 | CalleeFlexibleAccessPath | $().html |
 | autogenerated/Xss/DomBasedXss/tst.js:406:18:406:30 | target.taint7 | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:406:18:406:30 | target.taint7 | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:406:18:406:30 | target.taint7 | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:406:18:406:30 | target.taint7 | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:406:18:406:30 | target.taint7 | enclosingFunctionBody | target document location search $ myId html target $ myId html target taint target taint2 2 $ myId html target taint2 target taint3 document location search $ myId html target taint3 target sub taint4 2 $ myId html target sub taint4 $ myId html target taint5 target taint5 safe target taint6 2 random $ myId html target taint6 random target taint7 safe $ myId html target taint7 target taint8 target taint8 $ myId html target taint8 target taint9 target taint9 safe $ myId html target taint9 |
 | autogenerated/Xss/DomBasedXss/tst.js:406:18:406:30 | target.taint7 | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/tst.js:406:18:406:30 | target.taint7 | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:406:18:406:30 | target.taint7 | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:409:5:409:10 | 'myId' | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/DomBasedXss/tst.js:409:5:409:10 | 'myId' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:409:5:409:10 | 'myId' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:409:5:409:10 | 'myId' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:409:5:409:10 | 'myId' | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:409:5:409:10 | 'myId' | enclosingFunctionBody | target document location search $ myId html target $ myId html target taint target taint2 2 $ myId html target taint2 target taint3 document location search $ myId html target taint3 target sub taint4 2 $ myId html target sub taint4 $ myId html target taint5 target taint5 safe target taint6 2 random $ myId html target taint6 random target taint7 safe $ myId html target taint7 target taint8 target taint8 $ myId html target taint8 target taint9 target taint9 safe $ myId html target taint9 |
 | autogenerated/Xss/DomBasedXss/tst.js:409:5:409:10 | 'myId' | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/tst.js:409:5:409:10 | 'myId' | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:409:5:409:10 | 'myId' | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:409:18:409:30 | target.taint8 | CalleeFlexibleAccessPath | $().html |
 | autogenerated/Xss/DomBasedXss/tst.js:409:18:409:30 | target.taint8 | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:409:18:409:30 | target.taint8 | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:409:18:409:30 | target.taint8 | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:409:18:409:30 | target.taint8 | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:409:18:409:30 | target.taint8 | enclosingFunctionBody | target document location search $ myId html target $ myId html target taint target taint2 2 $ myId html target taint2 target taint3 document location search $ myId html target taint3 target sub taint4 2 $ myId html target sub taint4 $ myId html target taint5 target taint5 safe target taint6 2 random $ myId html target taint6 random target taint7 safe $ myId html target taint7 target taint8 target taint8 $ myId html target taint8 target taint9 target taint9 safe $ myId html target taint9 |
 | autogenerated/Xss/DomBasedXss/tst.js:409:18:409:30 | target.taint8 | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/tst.js:409:18:409:30 | target.taint8 | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:409:18:409:30 | target.taint8 | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:412:5:412:10 | 'myId' | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/DomBasedXss/tst.js:412:5:412:10 | 'myId' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:412:5:412:10 | 'myId' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:412:5:412:10 | 'myId' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:412:5:412:10 | 'myId' | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:412:5:412:10 | 'myId' | enclosingFunctionBody | target document location search $ myId html target $ myId html target taint target taint2 2 $ myId html target taint2 target taint3 document location search $ myId html target taint3 target sub taint4 2 $ myId html target sub taint4 $ myId html target taint5 target taint5 safe target taint6 2 random $ myId html target taint6 random target taint7 safe $ myId html target taint7 target taint8 target taint8 $ myId html target taint8 target taint9 target taint9 safe $ myId html target taint9 |
 | autogenerated/Xss/DomBasedXss/tst.js:412:5:412:10 | 'myId' | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/tst.js:412:5:412:10 | 'myId' | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:412:5:412:10 | 'myId' | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:412:18:412:30 | target.taint9 | CalleeFlexibleAccessPath | $().html |
 | autogenerated/Xss/DomBasedXss/tst.js:412:18:412:30 | target.taint9 | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:412:18:412:30 | target.taint9 | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:412:18:412:30 | target.taint9 | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:412:18:412:30 | target.taint9 | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:412:18:412:30 | target.taint9 | enclosingFunctionBody | target document location search $ myId html target $ myId html target taint target taint2 2 $ myId html target taint2 target taint3 document location search $ myId html target taint3 target sub taint4 2 $ myId html target sub taint4 $ myId html target taint5 target taint5 safe target taint6 2 random $ myId html target taint6 random target taint7 safe $ myId html target taint7 target taint8 target taint8 $ myId html target taint8 target taint9 target taint9 safe $ myId html target taint9 |
 | autogenerated/Xss/DomBasedXss/tst.js:412:18:412:30 | target.taint9 | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/tst.js:412:18:412:30 | target.taint9 | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:412:18:412:30 | target.taint9 | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:416:45:416:45 | 1 | CalleeFlexibleAccessPath | window.location.hash.substr |
 | autogenerated/Xss/DomBasedXss/tst.js:416:45:416:45 | 1 | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:416:45:416:45 | 1 | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:416:45:416:45 | 1 | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:416:45:416:45 | 1 | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:416:45:416:45 | 1 | enclosingFunctionBody | payload window location hash substr 1 document write payload match window location hash match /hello (\\w+)/ match document write match 1 1 document write window 1 location hash split # 1 |
 | autogenerated/Xss/DomBasedXss/tst.js:416:45:416:45 | 1 | enclosingFunctionName | hash2 |
-| autogenerated/Xss/DomBasedXss/tst.js:416:45:416:45 | 1 | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:416:45:416:45 | 1 | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:417:18:417:24 | payload | CalleeFlexibleAccessPath | document.write |
 | autogenerated/Xss/DomBasedXss/tst.js:417:18:417:24 | payload | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:417:18:417:24 | payload | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:417:18:417:24 | payload | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:417:18:417:24 | payload | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:417:18:417:24 | payload | enclosingFunctionBody | payload window location hash substr 1 document write payload match window location hash match /hello (\\w+)/ match document write match 1 1 document write window 1 location hash split # 1 |
 | autogenerated/Xss/DomBasedXss/tst.js:417:18:417:24 | payload | enclosingFunctionName | hash2 |
-| autogenerated/Xss/DomBasedXss/tst.js:417:18:417:24 | payload | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:417:18:417:24 | payload | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:417:18:417:24 | payload | receiverName | document |
 | autogenerated/Xss/DomBasedXss/tst.js:419:42:419:54 | /hello (\\w+)/ | CalleeFlexibleAccessPath | window.location.hash.match |
 | autogenerated/Xss/DomBasedXss/tst.js:419:42:419:54 | /hello (\\w+)/ | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:419:42:419:54 | /hello (\\w+)/ | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:419:42:419:54 | /hello (\\w+)/ | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:419:42:419:54 | /hello (\\w+)/ | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:419:42:419:54 | /hello (\\w+)/ | enclosingFunctionBody | payload window location hash substr 1 document write payload match window location hash match /hello (\\w+)/ match document write match 1 1 document write window 1 location hash split # 1 |
 | autogenerated/Xss/DomBasedXss/tst.js:419:42:419:54 | /hello (\\w+)/ | enclosingFunctionName | hash2 |
-| autogenerated/Xss/DomBasedXss/tst.js:419:42:419:54 | /hello (\\w+)/ | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:419:42:419:54 | /hello (\\w+)/ | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:421:20:421:27 | match[1] | CalleeFlexibleAccessPath | document.write |
 | autogenerated/Xss/DomBasedXss/tst.js:421:20:421:27 | match[1] | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:421:20:421:27 | match[1] | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:421:20:421:27 | match[1] | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:421:20:421:27 | match[1] | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:421:20:421:27 | match[1] | enclosingFunctionBody | payload window location hash substr 1 document write payload match window location hash match /hello (\\w+)/ match document write match 1 1 document write window 1 location hash split # 1 |
 | autogenerated/Xss/DomBasedXss/tst.js:421:20:421:27 | match[1] | enclosingFunctionName | hash2 |
-| autogenerated/Xss/DomBasedXss/tst.js:421:20:421:27 | match[1] | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:421:20:421:27 | match[1] | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:421:20:421:27 | match[1] | receiverName | document |
 | autogenerated/Xss/DomBasedXss/tst.js:424:18:424:51 | window. ... '#')[1] | CalleeFlexibleAccessPath | document.write |
 | autogenerated/Xss/DomBasedXss/tst.js:424:18:424:51 | window. ... '#')[1] | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:424:18:424:51 | window. ... '#')[1] | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:424:18:424:51 | window. ... '#')[1] | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:424:18:424:51 | window. ... '#')[1] | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:424:18:424:51 | window. ... '#')[1] | enclosingFunctionBody | payload window location hash substr 1 document write payload match window location hash match /hello (\\w+)/ match document write match 1 1 document write window 1 location hash split # 1 |
 | autogenerated/Xss/DomBasedXss/tst.js:424:18:424:51 | window. ... '#')[1] | enclosingFunctionName | hash2 |
-| autogenerated/Xss/DomBasedXss/tst.js:424:18:424:51 | window. ... '#')[1] | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:424:18:424:51 | window. ... '#')[1] | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:424:18:424:51 | window. ... '#')[1] | receiverName | document |
 | autogenerated/Xss/DomBasedXss/tst.js:424:45:424:47 | '#' | CalleeFlexibleAccessPath | window.location.hash.split |
 | autogenerated/Xss/DomBasedXss/tst.js:424:45:424:47 | '#' | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:424:45:424:47 | '#' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:424:45:424:47 | '#' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:424:45:424:47 | '#' | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:424:45:424:47 | '#' | enclosingFunctionBody | payload window location hash substr 1 document write payload match window location hash match /hello (\\w+)/ match document write match 1 1 document write window 1 location hash split # 1 |
 | autogenerated/Xss/DomBasedXss/tst.js:424:45:424:47 | '#' | enclosingFunctionName | hash2 |
-| autogenerated/Xss/DomBasedXss/tst.js:424:45:424:47 | '#' | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:424:45:424:47 | '#' | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:430:5:430:10 | "#foo" | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/DomBasedXss/tst.js:430:5:430:10 | "#foo" | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:430:5:430:10 | "#foo" | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:430:5:430:10 | "#foo" | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:430:5:430:10 | "#foo" | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:430:5:430:10 | "#foo" | enclosingFunctionBody | target document location search $ #foo html target replace /<metadata>[\\s\\S]*<\\/metadata>/ <metadata></metadata> $ #foo html target replace /<\|>/g  |
 | autogenerated/Xss/DomBasedXss/tst.js:430:5:430:10 | "#foo" | enclosingFunctionName | nonGlobalSanitizer |
-| autogenerated/Xss/DomBasedXss/tst.js:430:5:430:10 | "#foo" | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:430:5:430:10 | "#foo" | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:430:18:430:89 | target. ... data>') | CalleeFlexibleAccessPath | $().html |
 | autogenerated/Xss/DomBasedXss/tst.js:430:18:430:89 | target. ... data>') | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:430:18:430:89 | target. ... data>') | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:430:18:430:89 | target. ... data>') | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:430:18:430:89 | target. ... data>') | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:430:18:430:89 | target. ... data>') | enclosingFunctionBody | target document location search $ #foo html target replace /<metadata>[\\s\\S]*<\\/metadata>/ <metadata></metadata> $ #foo html target replace /<\|>/g  |
 | autogenerated/Xss/DomBasedXss/tst.js:430:18:430:89 | target. ... data>') | enclosingFunctionName | nonGlobalSanitizer |
-| autogenerated/Xss/DomBasedXss/tst.js:430:18:430:89 | target. ... data>') | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:430:18:430:89 | target. ... data>') | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:430:33:430:63 | /<metad ... adata>/ | CalleeFlexibleAccessPath | target.replace |
 | autogenerated/Xss/DomBasedXss/tst.js:430:33:430:63 | /<metad ... adata>/ | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:430:33:430:63 | /<metad ... adata>/ | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:430:33:430:63 | /<metad ... adata>/ | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:430:33:430:63 | /<metad ... adata>/ | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:430:33:430:63 | /<metad ... adata>/ | enclosingFunctionBody | target document location search $ #foo html target replace /<metadata>[\\s\\S]*<\\/metadata>/ <metadata></metadata> $ #foo html target replace /<\|>/g  |
 | autogenerated/Xss/DomBasedXss/tst.js:430:33:430:63 | /<metad ... adata>/ | enclosingFunctionName | nonGlobalSanitizer |
-| autogenerated/Xss/DomBasedXss/tst.js:430:33:430:63 | /<metad ... adata>/ | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:430:33:430:63 | /<metad ... adata>/ | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:430:33:430:63 | /<metad ... adata>/ | receiverName | target |
 | autogenerated/Xss/DomBasedXss/tst.js:430:66:430:88 | '<metad ... adata>' | CalleeFlexibleAccessPath | target.replace |
 | autogenerated/Xss/DomBasedXss/tst.js:430:66:430:88 | '<metad ... adata>' | InputArgumentIndex | 1 |
-| autogenerated/Xss/DomBasedXss/tst.js:430:66:430:88 | '<metad ... adata>' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:430:66:430:88 | '<metad ... adata>' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:430:66:430:88 | '<metad ... adata>' | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:430:66:430:88 | '<metad ... adata>' | enclosingFunctionBody | target document location search $ #foo html target replace /<metadata>[\\s\\S]*<\\/metadata>/ <metadata></metadata> $ #foo html target replace /<\|>/g  |
 | autogenerated/Xss/DomBasedXss/tst.js:430:66:430:88 | '<metad ... adata>' | enclosingFunctionName | nonGlobalSanitizer |
-| autogenerated/Xss/DomBasedXss/tst.js:430:66:430:88 | '<metad ... adata>' | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:430:66:430:88 | '<metad ... adata>' | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:430:66:430:88 | '<metad ... adata>' | receiverName | target |
 | autogenerated/Xss/DomBasedXss/tst.js:432:5:432:10 | "#foo" | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/DomBasedXss/tst.js:432:5:432:10 | "#foo" | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:432:5:432:10 | "#foo" | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:432:5:432:10 | "#foo" | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:432:5:432:10 | "#foo" | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:432:5:432:10 | "#foo" | enclosingFunctionBody | target document location search $ #foo html target replace /<metadata>[\\s\\S]*<\\/metadata>/ <metadata></metadata> $ #foo html target replace /<\|>/g  |
 | autogenerated/Xss/DomBasedXss/tst.js:432:5:432:10 | "#foo" | enclosingFunctionName | nonGlobalSanitizer |
-| autogenerated/Xss/DomBasedXss/tst.js:432:5:432:10 | "#foo" | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:432:5:432:10 | "#foo" | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:432:18:432:43 | target. ... /g, '') | CalleeFlexibleAccessPath | $().html |
 | autogenerated/Xss/DomBasedXss/tst.js:432:18:432:43 | target. ... /g, '') | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:432:18:432:43 | target. ... /g, '') | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:432:18:432:43 | target. ... /g, '') | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:432:18:432:43 | target. ... /g, '') | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:432:18:432:43 | target. ... /g, '') | enclosingFunctionBody | target document location search $ #foo html target replace /<metadata>[\\s\\S]*<\\/metadata>/ <metadata></metadata> $ #foo html target replace /<\|>/g  |
 | autogenerated/Xss/DomBasedXss/tst.js:432:18:432:43 | target. ... /g, '') | enclosingFunctionName | nonGlobalSanitizer |
-| autogenerated/Xss/DomBasedXss/tst.js:432:18:432:43 | target. ... /g, '') | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:432:18:432:43 | target. ... /g, '') | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:432:33:432:38 | /<\|>/g | CalleeFlexibleAccessPath | target.replace |
 | autogenerated/Xss/DomBasedXss/tst.js:432:33:432:38 | /<\|>/g | InputArgumentIndex | 0 |
-| autogenerated/Xss/DomBasedXss/tst.js:432:33:432:38 | /<\|>/g | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:432:33:432:38 | /<\|>/g | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:432:33:432:38 | /<\|>/g | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:432:33:432:38 | /<\|>/g | enclosingFunctionBody | target document location search $ #foo html target replace /<metadata>[\\s\\S]*<\\/metadata>/ <metadata></metadata> $ #foo html target replace /<\|>/g  |
 | autogenerated/Xss/DomBasedXss/tst.js:432:33:432:38 | /<\|>/g | enclosingFunctionName | nonGlobalSanitizer |
-| autogenerated/Xss/DomBasedXss/tst.js:432:33:432:38 | /<\|>/g | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:432:33:432:38 | /<\|>/g | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:432:33:432:38 | /<\|>/g | receiverName | target |
 | autogenerated/Xss/DomBasedXss/tst.js:432:41:432:42 | '' | CalleeFlexibleAccessPath | target.replace |
 | autogenerated/Xss/DomBasedXss/tst.js:432:41:432:42 | '' | InputArgumentIndex | 1 |
-| autogenerated/Xss/DomBasedXss/tst.js:432:41:432:42 | '' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:432:41:432:42 | '' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:432:41:432:42 | '' | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:432:41:432:42 | '' | enclosingFunctionBody | target document location search $ #foo html target replace /<metadata>[\\s\\S]*<\\/metadata>/ <metadata></metadata> $ #foo html target replace /<\|>/g  |
 | autogenerated/Xss/DomBasedXss/tst.js:432:41:432:42 | '' | enclosingFunctionName | nonGlobalSanitizer |
-| autogenerated/Xss/DomBasedXss/tst.js:432:41:432:42 | '' | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:432:41:432:42 | '' | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:432:41:432:42 | '' | receiverName | target |
+| autogenerated/Xss/DomBasedXss/tst.js:440:28:440:33 | source | CalleeFlexibleAccessPath | Element |
+| autogenerated/Xss/DomBasedXss/tst.js:440:28:440:33 | source | InputAccessPathFromCallee | ?.html |
+| autogenerated/Xss/DomBasedXss/tst.js:440:28:440:33 | source | InputArgumentIndex | 1 |
+| autogenerated/Xss/DomBasedXss/tst.js:440:28:440:33 | source | assignedToPropName | html |
+| autogenerated/Xss/DomBasedXss/tst.js:440:28:440:33 | source | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:440:28:440:33 | source | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/tst.js:440:28:440:33 | source | enclosingFunctionBody | source document location search Element div Element div text source Element div html source Element div set html source Element div set html source Element div setProperty html source Element div setProperties html source Element div appendHtml source |
+| autogenerated/Xss/DomBasedXss/tst.js:440:28:440:33 | source | enclosingFunctionName | mootools |
+| autogenerated/Xss/DomBasedXss/tst.js:440:28:440:33 | source | fileImports | ansi-to-html |
+| autogenerated/Xss/DomBasedXss/tst.js:441:25:441:30 | "html" | CalleeFlexibleAccessPath | Element().set |
+| autogenerated/Xss/DomBasedXss/tst.js:441:25:441:30 | "html" | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/tst.js:441:25:441:30 | "html" | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:441:25:441:30 | "html" | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/tst.js:441:25:441:30 | "html" | enclosingFunctionBody | source document location search Element div Element div text source Element div html source Element div set html source Element div set html source Element div setProperty html source Element div setProperties html source Element div appendHtml source |
+| autogenerated/Xss/DomBasedXss/tst.js:441:25:441:30 | "html" | enclosingFunctionName | mootools |
+| autogenerated/Xss/DomBasedXss/tst.js:441:25:441:30 | "html" | fileImports | ansi-to-html |
+| autogenerated/Xss/DomBasedXss/tst.js:441:33:441:38 | source | CalleeFlexibleAccessPath | Element().set |
+| autogenerated/Xss/DomBasedXss/tst.js:441:33:441:38 | source | InputArgumentIndex | 1 |
+| autogenerated/Xss/DomBasedXss/tst.js:441:33:441:38 | source | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:441:33:441:38 | source | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/tst.js:441:33:441:38 | source | enclosingFunctionBody | source document location search Element div Element div text source Element div html source Element div set html source Element div set html source Element div setProperty html source Element div setProperties html source Element div appendHtml source |
+| autogenerated/Xss/DomBasedXss/tst.js:441:33:441:38 | source | enclosingFunctionName | mootools |
+| autogenerated/Xss/DomBasedXss/tst.js:441:33:441:38 | source | fileImports | ansi-to-html |
+| autogenerated/Xss/DomBasedXss/tst.js:442:25:442:40 | {"html": source} | CalleeFlexibleAccessPath | Element().set |
+| autogenerated/Xss/DomBasedXss/tst.js:442:25:442:40 | {"html": source} | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/tst.js:442:25:442:40 | {"html": source} | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:442:25:442:40 | {"html": source} | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/tst.js:442:25:442:40 | {"html": source} | enclosingFunctionBody | source document location search Element div Element div text source Element div html source Element div set html source Element div set html source Element div setProperty html source Element div setProperties html source Element div appendHtml source |
+| autogenerated/Xss/DomBasedXss/tst.js:442:25:442:40 | {"html": source} | enclosingFunctionName | mootools |
+| autogenerated/Xss/DomBasedXss/tst.js:442:25:442:40 | {"html": source} | fileImports | ansi-to-html |
+| autogenerated/Xss/DomBasedXss/tst.js:442:34:442:39 | source | CalleeFlexibleAccessPath | Element().set |
+| autogenerated/Xss/DomBasedXss/tst.js:442:34:442:39 | source | InputAccessPathFromCallee | 0.html |
+| autogenerated/Xss/DomBasedXss/tst.js:442:34:442:39 | source | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/tst.js:442:34:442:39 | source | assignedToPropName | html |
+| autogenerated/Xss/DomBasedXss/tst.js:442:34:442:39 | source | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:442:34:442:39 | source | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/tst.js:442:34:442:39 | source | enclosingFunctionBody | source document location search Element div Element div text source Element div html source Element div set html source Element div set html source Element div setProperty html source Element div setProperties html source Element div appendHtml source |
+| autogenerated/Xss/DomBasedXss/tst.js:442:34:442:39 | source | enclosingFunctionName | mootools |
+| autogenerated/Xss/DomBasedXss/tst.js:442:34:442:39 | source | fileImports | ansi-to-html |
+| autogenerated/Xss/DomBasedXss/tst.js:443:33:443:38 | "html" | CalleeFlexibleAccessPath | Element().setProperty |
+| autogenerated/Xss/DomBasedXss/tst.js:443:33:443:38 | "html" | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/tst.js:443:33:443:38 | "html" | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:443:33:443:38 | "html" | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/tst.js:443:33:443:38 | "html" | enclosingFunctionBody | source document location search Element div Element div text source Element div html source Element div set html source Element div set html source Element div setProperty html source Element div setProperties html source Element div appendHtml source |
+| autogenerated/Xss/DomBasedXss/tst.js:443:33:443:38 | "html" | enclosingFunctionName | mootools |
+| autogenerated/Xss/DomBasedXss/tst.js:443:33:443:38 | "html" | fileImports | ansi-to-html |
+| autogenerated/Xss/DomBasedXss/tst.js:443:41:443:46 | source | CalleeFlexibleAccessPath | Element().setProperty |
+| autogenerated/Xss/DomBasedXss/tst.js:443:41:443:46 | source | InputArgumentIndex | 1 |
+| autogenerated/Xss/DomBasedXss/tst.js:443:41:443:46 | source | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:443:41:443:46 | source | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/tst.js:443:41:443:46 | source | enclosingFunctionBody | source document location search Element div Element div text source Element div html source Element div set html source Element div set html source Element div setProperty html source Element div setProperties html source Element div appendHtml source |
+| autogenerated/Xss/DomBasedXss/tst.js:443:41:443:46 | source | enclosingFunctionName | mootools |
+| autogenerated/Xss/DomBasedXss/tst.js:443:41:443:46 | source | fileImports | ansi-to-html |
+| autogenerated/Xss/DomBasedXss/tst.js:444:35:444:50 | {"html": source} | CalleeFlexibleAccessPath | Element().setProperties |
+| autogenerated/Xss/DomBasedXss/tst.js:444:35:444:50 | {"html": source} | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/tst.js:444:35:444:50 | {"html": source} | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:444:35:444:50 | {"html": source} | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/tst.js:444:35:444:50 | {"html": source} | enclosingFunctionBody | source document location search Element div Element div text source Element div html source Element div set html source Element div set html source Element div setProperty html source Element div setProperties html source Element div appendHtml source |
+| autogenerated/Xss/DomBasedXss/tst.js:444:35:444:50 | {"html": source} | enclosingFunctionName | mootools |
+| autogenerated/Xss/DomBasedXss/tst.js:444:35:444:50 | {"html": source} | fileImports | ansi-to-html |
+| autogenerated/Xss/DomBasedXss/tst.js:444:44:444:49 | source | CalleeFlexibleAccessPath | Element().setProperties |
+| autogenerated/Xss/DomBasedXss/tst.js:444:44:444:49 | source | InputAccessPathFromCallee | 0.html |
+| autogenerated/Xss/DomBasedXss/tst.js:444:44:444:49 | source | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/tst.js:444:44:444:49 | source | assignedToPropName | html |
+| autogenerated/Xss/DomBasedXss/tst.js:444:44:444:49 | source | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:444:44:444:49 | source | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/tst.js:444:44:444:49 | source | enclosingFunctionBody | source document location search Element div Element div text source Element div html source Element div set html source Element div set html source Element div setProperty html source Element div setProperties html source Element div appendHtml source |
+| autogenerated/Xss/DomBasedXss/tst.js:444:44:444:49 | source | enclosingFunctionName | mootools |
+| autogenerated/Xss/DomBasedXss/tst.js:444:44:444:49 | source | fileImports | ansi-to-html |
+| autogenerated/Xss/DomBasedXss/tst.js:445:32:445:37 | source | CalleeFlexibleAccessPath | Element().appendHtml |
+| autogenerated/Xss/DomBasedXss/tst.js:445:32:445:37 | source | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/tst.js:445:32:445:37 | source | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:445:32:445:37 | source | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/tst.js:445:32:445:37 | source | enclosingFunctionBody | source document location search Element div Element div text source Element div html source Element div set html source Element div set html source Element div setProperty html source Element div setProperties html source Element div appendHtml source |
+| autogenerated/Xss/DomBasedXss/tst.js:445:32:445:37 | source | enclosingFunctionName | mootools |
+| autogenerated/Xss/DomBasedXss/tst.js:445:32:445:37 | source | fileImports | ansi-to-html |
+| autogenerated/Xss/DomBasedXss/tst.js:449:25:449:38 | 'ansi-to-html' | CalleeFlexibleAccessPath | require |
+| autogenerated/Xss/DomBasedXss/tst.js:449:25:449:38 | 'ansi-to-html' | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/tst.js:449:25:449:38 | 'ansi-to-html' | calleeImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:449:25:449:38 | 'ansi-to-html' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:449:25:449:38 | 'ansi-to-html' | contextSurroundingFunctionParameters |  |
+| autogenerated/Xss/DomBasedXss/tst.js:449:25:449:38 | 'ansi-to-html' | fileImports | ansi-to-html |
+| autogenerated/Xss/DomBasedXss/tst.js:455:5:455:10 | "#foo" | CalleeFlexibleAccessPath | $ |
+| autogenerated/Xss/DomBasedXss/tst.js:455:5:455:10 | "#foo" | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/tst.js:455:5:455:10 | "#foo" | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:455:5:455:10 | "#foo" | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/tst.js:455:5:455:10 | "#foo" | enclosingFunctionBody | source document location search $ #foo html source $ #foo html ansiToHtml toHtml source |
+| autogenerated/Xss/DomBasedXss/tst.js:455:5:455:10 | "#foo" | enclosingFunctionName | ansiToHTML |
+| autogenerated/Xss/DomBasedXss/tst.js:455:5:455:10 | "#foo" | fileImports | ansi-to-html |
+| autogenerated/Xss/DomBasedXss/tst.js:455:18:455:23 | source | CalleeFlexibleAccessPath | $().html |
+| autogenerated/Xss/DomBasedXss/tst.js:455:18:455:23 | source | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/tst.js:455:18:455:23 | source | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:455:18:455:23 | source | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/tst.js:455:18:455:23 | source | enclosingFunctionBody | source document location search $ #foo html source $ #foo html ansiToHtml toHtml source |
+| autogenerated/Xss/DomBasedXss/tst.js:455:18:455:23 | source | enclosingFunctionName | ansiToHTML |
+| autogenerated/Xss/DomBasedXss/tst.js:455:18:455:23 | source | fileImports | ansi-to-html |
+| autogenerated/Xss/DomBasedXss/tst.js:456:5:456:10 | "#foo" | CalleeFlexibleAccessPath | $ |
+| autogenerated/Xss/DomBasedXss/tst.js:456:5:456:10 | "#foo" | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/tst.js:456:5:456:10 | "#foo" | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:456:5:456:10 | "#foo" | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/tst.js:456:5:456:10 | "#foo" | enclosingFunctionBody | source document location search $ #foo html source $ #foo html ansiToHtml toHtml source |
+| autogenerated/Xss/DomBasedXss/tst.js:456:5:456:10 | "#foo" | enclosingFunctionName | ansiToHTML |
+| autogenerated/Xss/DomBasedXss/tst.js:456:5:456:10 | "#foo" | fileImports | ansi-to-html |
+| autogenerated/Xss/DomBasedXss/tst.js:456:18:456:42 | ansiToH ... source) | CalleeFlexibleAccessPath | $().html |
+| autogenerated/Xss/DomBasedXss/tst.js:456:18:456:42 | ansiToH ... source) | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/tst.js:456:18:456:42 | ansiToH ... source) | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:456:18:456:42 | ansiToH ... source) | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/tst.js:456:18:456:42 | ansiToH ... source) | enclosingFunctionBody | source document location search $ #foo html source $ #foo html ansiToHtml toHtml source |
+| autogenerated/Xss/DomBasedXss/tst.js:456:18:456:42 | ansiToH ... source) | enclosingFunctionName | ansiToHTML |
+| autogenerated/Xss/DomBasedXss/tst.js:456:18:456:42 | ansiToH ... source) | fileImports | ansi-to-html |
+| autogenerated/Xss/DomBasedXss/tst.js:456:36:456:41 | source | CalleeFlexibleAccessPath | ansiToHtml.toHtml |
+| autogenerated/Xss/DomBasedXss/tst.js:456:36:456:41 | source | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/tst.js:456:36:456:41 | source | calleeImports | ansi-to-html |
+| autogenerated/Xss/DomBasedXss/tst.js:456:36:456:41 | source | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:456:36:456:41 | source | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/tst.js:456:36:456:41 | source | enclosingFunctionBody | source document location search $ #foo html source $ #foo html ansiToHtml toHtml source |
+| autogenerated/Xss/DomBasedXss/tst.js:456:36:456:41 | source | enclosingFunctionName | ansiToHTML |
+| autogenerated/Xss/DomBasedXss/tst.js:456:36:456:41 | source | fileImports | ansi-to-html |
+| autogenerated/Xss/DomBasedXss/tst.js:456:36:456:41 | source | receiverName | ansiToHtml |
+| autogenerated/Xss/DomBasedXss/tst.js:462:39:462:47 | 'mytable' | CalleeFlexibleAccessPath | document.getElementById |
+| autogenerated/Xss/DomBasedXss/tst.js:462:39:462:47 | 'mytable' | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/tst.js:462:39:462:47 | 'mytable' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:462:39:462:47 | 'mytable' | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/tst.js:462:39:462:47 | 'mytable' | enclosingFunctionBody | source document location search table document getElementById mytable table innerHTML source row table insertRow 1 row innerHTML source cell row insertCell cell innerHTML source |
+| autogenerated/Xss/DomBasedXss/tst.js:462:39:462:47 | 'mytable' | enclosingFunctionName | domMethods |
+| autogenerated/Xss/DomBasedXss/tst.js:462:39:462:47 | 'mytable' | fileImports | ansi-to-html |
+| autogenerated/Xss/DomBasedXss/tst.js:462:39:462:47 | 'mytable' | receiverName | document |
+| autogenerated/Xss/DomBasedXss/tst.js:463:21:463:26 | source | assignedToPropName | innerHTML |
+| autogenerated/Xss/DomBasedXss/tst.js:463:21:463:26 | source | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:463:21:463:26 | source | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/tst.js:463:21:463:26 | source | enclosingFunctionBody | source document location search table document getElementById mytable table innerHTML source row table insertRow 1 row innerHTML source cell row insertCell cell innerHTML source |
+| autogenerated/Xss/DomBasedXss/tst.js:463:21:463:26 | source | enclosingFunctionName | domMethods |
+| autogenerated/Xss/DomBasedXss/tst.js:463:21:463:26 | source | fileImports | ansi-to-html |
+| autogenerated/Xss/DomBasedXss/tst.js:464:29:464:30 | -1 | CalleeFlexibleAccessPath | table.insertRow |
+| autogenerated/Xss/DomBasedXss/tst.js:464:29:464:30 | -1 | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/tst.js:464:29:464:30 | -1 | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:464:29:464:30 | -1 | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/tst.js:464:29:464:30 | -1 | enclosingFunctionBody | source document location search table document getElementById mytable table innerHTML source row table insertRow 1 row innerHTML source cell row insertCell cell innerHTML source |
+| autogenerated/Xss/DomBasedXss/tst.js:464:29:464:30 | -1 | enclosingFunctionName | domMethods |
+| autogenerated/Xss/DomBasedXss/tst.js:464:29:464:30 | -1 | fileImports | ansi-to-html |
+| autogenerated/Xss/DomBasedXss/tst.js:464:29:464:30 | -1 | receiverName | table |
+| autogenerated/Xss/DomBasedXss/tst.js:465:19:465:24 | source | assignedToPropName | innerHTML |
+| autogenerated/Xss/DomBasedXss/tst.js:465:19:465:24 | source | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:465:19:465:24 | source | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/tst.js:465:19:465:24 | source | enclosingFunctionBody | source document location search table document getElementById mytable table innerHTML source row table insertRow 1 row innerHTML source cell row insertCell cell innerHTML source |
+| autogenerated/Xss/DomBasedXss/tst.js:465:19:465:24 | source | enclosingFunctionName | domMethods |
+| autogenerated/Xss/DomBasedXss/tst.js:465:19:465:24 | source | fileImports | ansi-to-html |
+| autogenerated/Xss/DomBasedXss/tst.js:467:20:467:25 | source | assignedToPropName | innerHTML |
+| autogenerated/Xss/DomBasedXss/tst.js:467:20:467:25 | source | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:467:20:467:25 | source | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/tst.js:467:20:467:25 | source | enclosingFunctionBody | source document location search table document getElementById mytable table innerHTML source row table insertRow 1 row innerHTML source cell row insertCell cell innerHTML source |
+| autogenerated/Xss/DomBasedXss/tst.js:467:20:467:25 | source | enclosingFunctionName | domMethods |
+| autogenerated/Xss/DomBasedXss/tst.js:467:20:467:25 | source | fileImports | ansi-to-html |
+| autogenerated/Xss/DomBasedXss/tst.js:471:45:471:45 | 1 | CalleeFlexibleAccessPath | document.location.search.substr |
+| autogenerated/Xss/DomBasedXss/tst.js:471:45:471:45 | 1 | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/tst.js:471:45:471:45 | 1 | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:471:45:471:45 | 1 | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/tst.js:471:45:471:45 | 1 | enclosingFunctionBody | url document location search substr 1 $ <a> href url appendTo body $ #foo attr href url $ #foo attr href url $ <img> src url appendTo body $ <a> href win location href appendTo body $ <img> src http://google.com/ url appendTo body $ <img> src http://google.com url join / appendTo body url startsWith https:// $ <img> src url appendTo body $ <img> src url appendTo body window open location hash substr 1 navigation navigate location hash substr 1 |
+| autogenerated/Xss/DomBasedXss/tst.js:471:45:471:45 | 1 | enclosingFunctionName | urlStuff |
+| autogenerated/Xss/DomBasedXss/tst.js:471:45:471:45 | 1 | fileImports | ansi-to-html |
+| autogenerated/Xss/DomBasedXss/tst.js:473:5:473:9 | "<a>" | CalleeFlexibleAccessPath | $ |
+| autogenerated/Xss/DomBasedXss/tst.js:473:5:473:9 | "<a>" | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/tst.js:473:5:473:9 | "<a>" | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:473:5:473:9 | "<a>" | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/tst.js:473:5:473:9 | "<a>" | enclosingFunctionBody | url document location search substr 1 $ <a> href url appendTo body $ #foo attr href url $ #foo attr href url $ <img> src url appendTo body $ <a> href win location href appendTo body $ <img> src http://google.com/ url appendTo body $ <img> src http://google.com url join / appendTo body url startsWith https:// $ <img> src url appendTo body $ <img> src url appendTo body window open location hash substr 1 navigation navigate location hash substr 1 |
+| autogenerated/Xss/DomBasedXss/tst.js:473:5:473:9 | "<a>" | enclosingFunctionName | urlStuff |
+| autogenerated/Xss/DomBasedXss/tst.js:473:5:473:9 | "<a>" | fileImports | ansi-to-html |
+| autogenerated/Xss/DomBasedXss/tst.js:473:12:473:22 | {href: url} | CalleeFlexibleAccessPath | $ |
+| autogenerated/Xss/DomBasedXss/tst.js:473:12:473:22 | {href: url} | InputArgumentIndex | 1 |
+| autogenerated/Xss/DomBasedXss/tst.js:473:12:473:22 | {href: url} | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:473:12:473:22 | {href: url} | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/tst.js:473:12:473:22 | {href: url} | enclosingFunctionBody | url document location search substr 1 $ <a> href url appendTo body $ #foo attr href url $ #foo attr href url $ <img> src url appendTo body $ <a> href win location href appendTo body $ <img> src http://google.com/ url appendTo body $ <img> src http://google.com url join / appendTo body url startsWith https:// $ <img> src url appendTo body $ <img> src url appendTo body window open location hash substr 1 navigation navigate location hash substr 1 |
+| autogenerated/Xss/DomBasedXss/tst.js:473:12:473:22 | {href: url} | enclosingFunctionName | urlStuff |
+| autogenerated/Xss/DomBasedXss/tst.js:473:12:473:22 | {href: url} | fileImports | ansi-to-html |
+| autogenerated/Xss/DomBasedXss/tst.js:473:19:473:21 | url | CalleeFlexibleAccessPath | $ |
+| autogenerated/Xss/DomBasedXss/tst.js:473:19:473:21 | url | InputAccessPathFromCallee | 1.href |
+| autogenerated/Xss/DomBasedXss/tst.js:473:19:473:21 | url | InputArgumentIndex | 1 |
+| autogenerated/Xss/DomBasedXss/tst.js:473:19:473:21 | url | assignedToPropName | href |
+| autogenerated/Xss/DomBasedXss/tst.js:473:19:473:21 | url | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:473:19:473:21 | url | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/tst.js:473:19:473:21 | url | enclosingFunctionBody | url document location search substr 1 $ <a> href url appendTo body $ #foo attr href url $ #foo attr href url $ <img> src url appendTo body $ <a> href win location href appendTo body $ <img> src http://google.com/ url appendTo body $ <img> src http://google.com url join / appendTo body url startsWith https:// $ <img> src url appendTo body $ <img> src url appendTo body window open location hash substr 1 navigation navigate location hash substr 1 |
+| autogenerated/Xss/DomBasedXss/tst.js:473:19:473:21 | url | enclosingFunctionName | urlStuff |
+| autogenerated/Xss/DomBasedXss/tst.js:473:19:473:21 | url | fileImports | ansi-to-html |
+| autogenerated/Xss/DomBasedXss/tst.js:473:34:473:39 | "body" | CalleeFlexibleAccessPath | $().appendTo |
+| autogenerated/Xss/DomBasedXss/tst.js:473:34:473:39 | "body" | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/tst.js:473:34:473:39 | "body" | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:473:34:473:39 | "body" | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/tst.js:473:34:473:39 | "body" | enclosingFunctionBody | url document location search substr 1 $ <a> href url appendTo body $ #foo attr href url $ #foo attr href url $ <img> src url appendTo body $ <a> href win location href appendTo body $ <img> src http://google.com/ url appendTo body $ <img> src http://google.com url join / appendTo body url startsWith https:// $ <img> src url appendTo body $ <img> src url appendTo body window open location hash substr 1 navigation navigate location hash substr 1 |
+| autogenerated/Xss/DomBasedXss/tst.js:473:34:473:39 | "body" | enclosingFunctionName | urlStuff |
+| autogenerated/Xss/DomBasedXss/tst.js:473:34:473:39 | "body" | fileImports | ansi-to-html |
+| autogenerated/Xss/DomBasedXss/tst.js:474:5:474:10 | "#foo" | CalleeFlexibleAccessPath | $ |
+| autogenerated/Xss/DomBasedXss/tst.js:474:5:474:10 | "#foo" | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/tst.js:474:5:474:10 | "#foo" | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:474:5:474:10 | "#foo" | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/tst.js:474:5:474:10 | "#foo" | enclosingFunctionBody | url document location search substr 1 $ <a> href url appendTo body $ #foo attr href url $ #foo attr href url $ <img> src url appendTo body $ <a> href win location href appendTo body $ <img> src http://google.com/ url appendTo body $ <img> src http://google.com url join / appendTo body url startsWith https:// $ <img> src url appendTo body $ <img> src url appendTo body window open location hash substr 1 navigation navigate location hash substr 1 |
+| autogenerated/Xss/DomBasedXss/tst.js:474:5:474:10 | "#foo" | enclosingFunctionName | urlStuff |
+| autogenerated/Xss/DomBasedXss/tst.js:474:5:474:10 | "#foo" | fileImports | ansi-to-html |
+| autogenerated/Xss/DomBasedXss/tst.js:474:18:474:23 | "href" | CalleeFlexibleAccessPath | $().attr |
+| autogenerated/Xss/DomBasedXss/tst.js:474:18:474:23 | "href" | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/tst.js:474:18:474:23 | "href" | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:474:18:474:23 | "href" | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/tst.js:474:18:474:23 | "href" | enclosingFunctionBody | url document location search substr 1 $ <a> href url appendTo body $ #foo attr href url $ #foo attr href url $ <img> src url appendTo body $ <a> href win location href appendTo body $ <img> src http://google.com/ url appendTo body $ <img> src http://google.com url join / appendTo body url startsWith https:// $ <img> src url appendTo body $ <img> src url appendTo body window open location hash substr 1 navigation navigate location hash substr 1 |
+| autogenerated/Xss/DomBasedXss/tst.js:474:18:474:23 | "href" | enclosingFunctionName | urlStuff |
+| autogenerated/Xss/DomBasedXss/tst.js:474:18:474:23 | "href" | fileImports | ansi-to-html |
+| autogenerated/Xss/DomBasedXss/tst.js:474:26:474:28 | url | CalleeFlexibleAccessPath | $().attr |
+| autogenerated/Xss/DomBasedXss/tst.js:474:26:474:28 | url | InputArgumentIndex | 1 |
+| autogenerated/Xss/DomBasedXss/tst.js:474:26:474:28 | url | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:474:26:474:28 | url | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/tst.js:474:26:474:28 | url | enclosingFunctionBody | url document location search substr 1 $ <a> href url appendTo body $ #foo attr href url $ #foo attr href url $ <img> src url appendTo body $ <a> href win location href appendTo body $ <img> src http://google.com/ url appendTo body $ <img> src http://google.com url join / appendTo body url startsWith https:// $ <img> src url appendTo body $ <img> src url appendTo body window open location hash substr 1 navigation navigate location hash substr 1 |
+| autogenerated/Xss/DomBasedXss/tst.js:474:26:474:28 | url | enclosingFunctionName | urlStuff |
+| autogenerated/Xss/DomBasedXss/tst.js:474:26:474:28 | url | fileImports | ansi-to-html |
+| autogenerated/Xss/DomBasedXss/tst.js:475:5:475:10 | "#foo" | CalleeFlexibleAccessPath | $ |
+| autogenerated/Xss/DomBasedXss/tst.js:475:5:475:10 | "#foo" | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/tst.js:475:5:475:10 | "#foo" | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:475:5:475:10 | "#foo" | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/tst.js:475:5:475:10 | "#foo" | enclosingFunctionBody | url document location search substr 1 $ <a> href url appendTo body $ #foo attr href url $ #foo attr href url $ <img> src url appendTo body $ <a> href win location href appendTo body $ <img> src http://google.com/ url appendTo body $ <img> src http://google.com url join / appendTo body url startsWith https:// $ <img> src url appendTo body $ <img> src url appendTo body window open location hash substr 1 navigation navigate location hash substr 1 |
+| autogenerated/Xss/DomBasedXss/tst.js:475:5:475:10 | "#foo" | enclosingFunctionName | urlStuff |
+| autogenerated/Xss/DomBasedXss/tst.js:475:5:475:10 | "#foo" | fileImports | ansi-to-html |
+| autogenerated/Xss/DomBasedXss/tst.js:475:18:475:28 | {href: url} | CalleeFlexibleAccessPath | $().attr |
+| autogenerated/Xss/DomBasedXss/tst.js:475:18:475:28 | {href: url} | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/tst.js:475:18:475:28 | {href: url} | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:475:18:475:28 | {href: url} | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/tst.js:475:18:475:28 | {href: url} | enclosingFunctionBody | url document location search substr 1 $ <a> href url appendTo body $ #foo attr href url $ #foo attr href url $ <img> src url appendTo body $ <a> href win location href appendTo body $ <img> src http://google.com/ url appendTo body $ <img> src http://google.com url join / appendTo body url startsWith https:// $ <img> src url appendTo body $ <img> src url appendTo body window open location hash substr 1 navigation navigate location hash substr 1 |
+| autogenerated/Xss/DomBasedXss/tst.js:475:18:475:28 | {href: url} | enclosingFunctionName | urlStuff |
+| autogenerated/Xss/DomBasedXss/tst.js:475:18:475:28 | {href: url} | fileImports | ansi-to-html |
+| autogenerated/Xss/DomBasedXss/tst.js:475:25:475:27 | url | CalleeFlexibleAccessPath | $().attr |
+| autogenerated/Xss/DomBasedXss/tst.js:475:25:475:27 | url | InputAccessPathFromCallee | 0.href |
+| autogenerated/Xss/DomBasedXss/tst.js:475:25:475:27 | url | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/tst.js:475:25:475:27 | url | assignedToPropName | href |
+| autogenerated/Xss/DomBasedXss/tst.js:475:25:475:27 | url | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:475:25:475:27 | url | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/tst.js:475:25:475:27 | url | enclosingFunctionBody | url document location search substr 1 $ <a> href url appendTo body $ #foo attr href url $ #foo attr href url $ <img> src url appendTo body $ <a> href win location href appendTo body $ <img> src http://google.com/ url appendTo body $ <img> src http://google.com url join / appendTo body url startsWith https:// $ <img> src url appendTo body $ <img> src url appendTo body window open location hash substr 1 navigation navigate location hash substr 1 |
+| autogenerated/Xss/DomBasedXss/tst.js:475:25:475:27 | url | enclosingFunctionName | urlStuff |
+| autogenerated/Xss/DomBasedXss/tst.js:475:25:475:27 | url | fileImports | ansi-to-html |
+| autogenerated/Xss/DomBasedXss/tst.js:476:5:476:11 | "<img>" | CalleeFlexibleAccessPath | $ |
+| autogenerated/Xss/DomBasedXss/tst.js:476:5:476:11 | "<img>" | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/tst.js:476:5:476:11 | "<img>" | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:476:5:476:11 | "<img>" | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/tst.js:476:5:476:11 | "<img>" | enclosingFunctionBody | url document location search substr 1 $ <a> href url appendTo body $ #foo attr href url $ #foo attr href url $ <img> src url appendTo body $ <a> href win location href appendTo body $ <img> src http://google.com/ url appendTo body $ <img> src http://google.com url join / appendTo body url startsWith https:// $ <img> src url appendTo body $ <img> src url appendTo body window open location hash substr 1 navigation navigate location hash substr 1 |
+| autogenerated/Xss/DomBasedXss/tst.js:476:5:476:11 | "<img>" | enclosingFunctionName | urlStuff |
+| autogenerated/Xss/DomBasedXss/tst.js:476:5:476:11 | "<img>" | fileImports | ansi-to-html |
+| autogenerated/Xss/DomBasedXss/tst.js:476:14:476:23 | {src: url} | CalleeFlexibleAccessPath | $ |
+| autogenerated/Xss/DomBasedXss/tst.js:476:14:476:23 | {src: url} | InputArgumentIndex | 1 |
+| autogenerated/Xss/DomBasedXss/tst.js:476:14:476:23 | {src: url} | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:476:14:476:23 | {src: url} | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/tst.js:476:14:476:23 | {src: url} | enclosingFunctionBody | url document location search substr 1 $ <a> href url appendTo body $ #foo attr href url $ #foo attr href url $ <img> src url appendTo body $ <a> href win location href appendTo body $ <img> src http://google.com/ url appendTo body $ <img> src http://google.com url join / appendTo body url startsWith https:// $ <img> src url appendTo body $ <img> src url appendTo body window open location hash substr 1 navigation navigate location hash substr 1 |
+| autogenerated/Xss/DomBasedXss/tst.js:476:14:476:23 | {src: url} | enclosingFunctionName | urlStuff |
+| autogenerated/Xss/DomBasedXss/tst.js:476:14:476:23 | {src: url} | fileImports | ansi-to-html |
+| autogenerated/Xss/DomBasedXss/tst.js:476:20:476:22 | url | CalleeFlexibleAccessPath | $ |
+| autogenerated/Xss/DomBasedXss/tst.js:476:20:476:22 | url | InputAccessPathFromCallee | 1.src |
+| autogenerated/Xss/DomBasedXss/tst.js:476:20:476:22 | url | InputArgumentIndex | 1 |
+| autogenerated/Xss/DomBasedXss/tst.js:476:20:476:22 | url | assignedToPropName | src |
+| autogenerated/Xss/DomBasedXss/tst.js:476:20:476:22 | url | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:476:20:476:22 | url | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/tst.js:476:20:476:22 | url | enclosingFunctionBody | url document location search substr 1 $ <a> href url appendTo body $ #foo attr href url $ #foo attr href url $ <img> src url appendTo body $ <a> href win location href appendTo body $ <img> src http://google.com/ url appendTo body $ <img> src http://google.com url join / appendTo body url startsWith https:// $ <img> src url appendTo body $ <img> src url appendTo body window open location hash substr 1 navigation navigate location hash substr 1 |
+| autogenerated/Xss/DomBasedXss/tst.js:476:20:476:22 | url | enclosingFunctionName | urlStuff |
+| autogenerated/Xss/DomBasedXss/tst.js:476:20:476:22 | url | fileImports | ansi-to-html |
+| autogenerated/Xss/DomBasedXss/tst.js:476:35:476:40 | "body" | CalleeFlexibleAccessPath | $().appendTo |
+| autogenerated/Xss/DomBasedXss/tst.js:476:35:476:40 | "body" | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/tst.js:476:35:476:40 | "body" | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:476:35:476:40 | "body" | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/tst.js:476:35:476:40 | "body" | enclosingFunctionBody | url document location search substr 1 $ <a> href url appendTo body $ #foo attr href url $ #foo attr href url $ <img> src url appendTo body $ <a> href win location href appendTo body $ <img> src http://google.com/ url appendTo body $ <img> src http://google.com url join / appendTo body url startsWith https:// $ <img> src url appendTo body $ <img> src url appendTo body window open location hash substr 1 navigation navigate location hash substr 1 |
+| autogenerated/Xss/DomBasedXss/tst.js:476:35:476:40 | "body" | enclosingFunctionName | urlStuff |
+| autogenerated/Xss/DomBasedXss/tst.js:476:35:476:40 | "body" | fileImports | ansi-to-html |
+| autogenerated/Xss/DomBasedXss/tst.js:477:5:477:9 | "<a>" | CalleeFlexibleAccessPath | $ |
+| autogenerated/Xss/DomBasedXss/tst.js:477:5:477:9 | "<a>" | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/tst.js:477:5:477:9 | "<a>" | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:477:5:477:9 | "<a>" | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/tst.js:477:5:477:9 | "<a>" | enclosingFunctionBody | url document location search substr 1 $ <a> href url appendTo body $ #foo attr href url $ #foo attr href url $ <img> src url appendTo body $ <a> href win location href appendTo body $ <img> src http://google.com/ url appendTo body $ <img> src http://google.com url join / appendTo body url startsWith https:// $ <img> src url appendTo body $ <img> src url appendTo body window open location hash substr 1 navigation navigate location hash substr 1 |
+| autogenerated/Xss/DomBasedXss/tst.js:477:5:477:9 | "<a>" | enclosingFunctionName | urlStuff |
+| autogenerated/Xss/DomBasedXss/tst.js:477:5:477:9 | "<a>" | fileImports | ansi-to-html |
+| autogenerated/Xss/DomBasedXss/tst.js:477:12:477:36 | {href:  ... n.href} | CalleeFlexibleAccessPath | $ |
+| autogenerated/Xss/DomBasedXss/tst.js:477:12:477:36 | {href:  ... n.href} | InputArgumentIndex | 1 |
+| autogenerated/Xss/DomBasedXss/tst.js:477:12:477:36 | {href:  ... n.href} | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:477:12:477:36 | {href:  ... n.href} | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/tst.js:477:12:477:36 | {href:  ... n.href} | enclosingFunctionBody | url document location search substr 1 $ <a> href url appendTo body $ #foo attr href url $ #foo attr href url $ <img> src url appendTo body $ <a> href win location href appendTo body $ <img> src http://google.com/ url appendTo body $ <img> src http://google.com url join / appendTo body url startsWith https:// $ <img> src url appendTo body $ <img> src url appendTo body window open location hash substr 1 navigation navigate location hash substr 1 |
+| autogenerated/Xss/DomBasedXss/tst.js:477:12:477:36 | {href:  ... n.href} | enclosingFunctionName | urlStuff |
+| autogenerated/Xss/DomBasedXss/tst.js:477:12:477:36 | {href:  ... n.href} | fileImports | ansi-to-html |
+| autogenerated/Xss/DomBasedXss/tst.js:477:19:477:35 | win.location.href | CalleeFlexibleAccessPath | $ |
+| autogenerated/Xss/DomBasedXss/tst.js:477:19:477:35 | win.location.href | InputAccessPathFromCallee | 1.href |
+| autogenerated/Xss/DomBasedXss/tst.js:477:19:477:35 | win.location.href | InputArgumentIndex | 1 |
+| autogenerated/Xss/DomBasedXss/tst.js:477:19:477:35 | win.location.href | assignedToPropName | href |
+| autogenerated/Xss/DomBasedXss/tst.js:477:19:477:35 | win.location.href | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:477:19:477:35 | win.location.href | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/tst.js:477:19:477:35 | win.location.href | enclosingFunctionBody | url document location search substr 1 $ <a> href url appendTo body $ #foo attr href url $ #foo attr href url $ <img> src url appendTo body $ <a> href win location href appendTo body $ <img> src http://google.com/ url appendTo body $ <img> src http://google.com url join / appendTo body url startsWith https:// $ <img> src url appendTo body $ <img> src url appendTo body window open location hash substr 1 navigation navigate location hash substr 1 |
+| autogenerated/Xss/DomBasedXss/tst.js:477:19:477:35 | win.location.href | enclosingFunctionName | urlStuff |
+| autogenerated/Xss/DomBasedXss/tst.js:477:19:477:35 | win.location.href | fileImports | ansi-to-html |
+| autogenerated/Xss/DomBasedXss/tst.js:477:48:477:53 | "body" | CalleeFlexibleAccessPath | $().appendTo |
+| autogenerated/Xss/DomBasedXss/tst.js:477:48:477:53 | "body" | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/tst.js:477:48:477:53 | "body" | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:477:48:477:53 | "body" | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/tst.js:477:48:477:53 | "body" | enclosingFunctionBody | url document location search substr 1 $ <a> href url appendTo body $ #foo attr href url $ #foo attr href url $ <img> src url appendTo body $ <a> href win location href appendTo body $ <img> src http://google.com/ url appendTo body $ <img> src http://google.com url join / appendTo body url startsWith https:// $ <img> src url appendTo body $ <img> src url appendTo body window open location hash substr 1 navigation navigate location hash substr 1 |
+| autogenerated/Xss/DomBasedXss/tst.js:477:48:477:53 | "body" | enclosingFunctionName | urlStuff |
+| autogenerated/Xss/DomBasedXss/tst.js:477:48:477:53 | "body" | fileImports | ansi-to-html |
+| autogenerated/Xss/DomBasedXss/tst.js:479:5:479:11 | "<img>" | CalleeFlexibleAccessPath | $ |
+| autogenerated/Xss/DomBasedXss/tst.js:479:5:479:11 | "<img>" | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/tst.js:479:5:479:11 | "<img>" | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:479:5:479:11 | "<img>" | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/tst.js:479:5:479:11 | "<img>" | enclosingFunctionBody | url document location search substr 1 $ <a> href url appendTo body $ #foo attr href url $ #foo attr href url $ <img> src url appendTo body $ <a> href win location href appendTo body $ <img> src http://google.com/ url appendTo body $ <img> src http://google.com url join / appendTo body url startsWith https:// $ <img> src url appendTo body $ <img> src url appendTo body window open location hash substr 1 navigation navigate location hash substr 1 |
+| autogenerated/Xss/DomBasedXss/tst.js:479:5:479:11 | "<img>" | enclosingFunctionName | urlStuff |
+| autogenerated/Xss/DomBasedXss/tst.js:479:5:479:11 | "<img>" | fileImports | ansi-to-html |
+| autogenerated/Xss/DomBasedXss/tst.js:479:14:479:46 | {src: " ...  + url} | CalleeFlexibleAccessPath | $ |
+| autogenerated/Xss/DomBasedXss/tst.js:479:14:479:46 | {src: " ...  + url} | InputArgumentIndex | 1 |
+| autogenerated/Xss/DomBasedXss/tst.js:479:14:479:46 | {src: " ...  + url} | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:479:14:479:46 | {src: " ...  + url} | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/tst.js:479:14:479:46 | {src: " ...  + url} | enclosingFunctionBody | url document location search substr 1 $ <a> href url appendTo body $ #foo attr href url $ #foo attr href url $ <img> src url appendTo body $ <a> href win location href appendTo body $ <img> src http://google.com/ url appendTo body $ <img> src http://google.com url join / appendTo body url startsWith https:// $ <img> src url appendTo body $ <img> src url appendTo body window open location hash substr 1 navigation navigate location hash substr 1 |
+| autogenerated/Xss/DomBasedXss/tst.js:479:14:479:46 | {src: " ...  + url} | enclosingFunctionName | urlStuff |
+| autogenerated/Xss/DomBasedXss/tst.js:479:14:479:46 | {src: " ...  + url} | fileImports | ansi-to-html |
+| autogenerated/Xss/DomBasedXss/tst.js:479:20:479:45 | "http:/ ... " + url | CalleeFlexibleAccessPath | $ |
+| autogenerated/Xss/DomBasedXss/tst.js:479:20:479:45 | "http:/ ... " + url | InputAccessPathFromCallee | 1.src |
+| autogenerated/Xss/DomBasedXss/tst.js:479:20:479:45 | "http:/ ... " + url | InputArgumentIndex | 1 |
+| autogenerated/Xss/DomBasedXss/tst.js:479:20:479:45 | "http:/ ... " + url | assignedToPropName | src |
+| autogenerated/Xss/DomBasedXss/tst.js:479:20:479:45 | "http:/ ... " + url | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:479:20:479:45 | "http:/ ... " + url | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/tst.js:479:20:479:45 | "http:/ ... " + url | enclosingFunctionBody | url document location search substr 1 $ <a> href url appendTo body $ #foo attr href url $ #foo attr href url $ <img> src url appendTo body $ <a> href win location href appendTo body $ <img> src http://google.com/ url appendTo body $ <img> src http://google.com url join / appendTo body url startsWith https:// $ <img> src url appendTo body $ <img> src url appendTo body window open location hash substr 1 navigation navigate location hash substr 1 |
+| autogenerated/Xss/DomBasedXss/tst.js:479:20:479:45 | "http:/ ... " + url | enclosingFunctionName | urlStuff |
+| autogenerated/Xss/DomBasedXss/tst.js:479:20:479:45 | "http:/ ... " + url | fileImports | ansi-to-html |
+| autogenerated/Xss/DomBasedXss/tst.js:479:58:479:63 | "body" | CalleeFlexibleAccessPath | $().appendTo |
+| autogenerated/Xss/DomBasedXss/tst.js:479:58:479:63 | "body" | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/tst.js:479:58:479:63 | "body" | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:479:58:479:63 | "body" | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/tst.js:479:58:479:63 | "body" | enclosingFunctionBody | url document location search substr 1 $ <a> href url appendTo body $ #foo attr href url $ #foo attr href url $ <img> src url appendTo body $ <a> href win location href appendTo body $ <img> src http://google.com/ url appendTo body $ <img> src http://google.com url join / appendTo body url startsWith https:// $ <img> src url appendTo body $ <img> src url appendTo body window open location hash substr 1 navigation navigate location hash substr 1 |
+| autogenerated/Xss/DomBasedXss/tst.js:479:58:479:63 | "body" | enclosingFunctionName | urlStuff |
+| autogenerated/Xss/DomBasedXss/tst.js:479:58:479:63 | "body" | fileImports | ansi-to-html |
+| autogenerated/Xss/DomBasedXss/tst.js:481:5:481:11 | "<img>" | CalleeFlexibleAccessPath | $ |
+| autogenerated/Xss/DomBasedXss/tst.js:481:5:481:11 | "<img>" | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/tst.js:481:5:481:11 | "<img>" | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:481:5:481:11 | "<img>" | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/tst.js:481:5:481:11 | "<img>" | enclosingFunctionBody | url document location search substr 1 $ <a> href url appendTo body $ #foo attr href url $ #foo attr href url $ <img> src url appendTo body $ <a> href win location href appendTo body $ <img> src http://google.com/ url appendTo body $ <img> src http://google.com url join / appendTo body url startsWith https:// $ <img> src url appendTo body $ <img> src url appendTo body window open location hash substr 1 navigation navigate location hash substr 1 |
+| autogenerated/Xss/DomBasedXss/tst.js:481:5:481:11 | "<img>" | enclosingFunctionName | urlStuff |
+| autogenerated/Xss/DomBasedXss/tst.js:481:5:481:11 | "<img>" | fileImports | ansi-to-html |
+| autogenerated/Xss/DomBasedXss/tst.js:481:14:481:56 | {src: [ ... n("/")} | CalleeFlexibleAccessPath | $ |
+| autogenerated/Xss/DomBasedXss/tst.js:481:14:481:56 | {src: [ ... n("/")} | InputArgumentIndex | 1 |
+| autogenerated/Xss/DomBasedXss/tst.js:481:14:481:56 | {src: [ ... n("/")} | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:481:14:481:56 | {src: [ ... n("/")} | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/tst.js:481:14:481:56 | {src: [ ... n("/")} | enclosingFunctionBody | url document location search substr 1 $ <a> href url appendTo body $ #foo attr href url $ #foo attr href url $ <img> src url appendTo body $ <a> href win location href appendTo body $ <img> src http://google.com/ url appendTo body $ <img> src http://google.com url join / appendTo body url startsWith https:// $ <img> src url appendTo body $ <img> src url appendTo body window open location hash substr 1 navigation navigate location hash substr 1 |
+| autogenerated/Xss/DomBasedXss/tst.js:481:14:481:56 | {src: [ ... n("/")} | enclosingFunctionName | urlStuff |
+| autogenerated/Xss/DomBasedXss/tst.js:481:14:481:56 | {src: [ ... n("/")} | fileImports | ansi-to-html |
+| autogenerated/Xss/DomBasedXss/tst.js:481:20:481:55 | ["http: ... in("/") | CalleeFlexibleAccessPath | $ |
+| autogenerated/Xss/DomBasedXss/tst.js:481:20:481:55 | ["http: ... in("/") | InputAccessPathFromCallee | 1.src |
+| autogenerated/Xss/DomBasedXss/tst.js:481:20:481:55 | ["http: ... in("/") | InputArgumentIndex | 1 |
+| autogenerated/Xss/DomBasedXss/tst.js:481:20:481:55 | ["http: ... in("/") | assignedToPropName | src |
+| autogenerated/Xss/DomBasedXss/tst.js:481:20:481:55 | ["http: ... in("/") | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:481:20:481:55 | ["http: ... in("/") | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/tst.js:481:20:481:55 | ["http: ... in("/") | enclosingFunctionBody | url document location search substr 1 $ <a> href url appendTo body $ #foo attr href url $ #foo attr href url $ <img> src url appendTo body $ <a> href win location href appendTo body $ <img> src http://google.com/ url appendTo body $ <img> src http://google.com url join / appendTo body url startsWith https:// $ <img> src url appendTo body $ <img> src url appendTo body window open location hash substr 1 navigation navigate location hash substr 1 |
+| autogenerated/Xss/DomBasedXss/tst.js:481:20:481:55 | ["http: ... in("/") | enclosingFunctionName | urlStuff |
+| autogenerated/Xss/DomBasedXss/tst.js:481:20:481:55 | ["http: ... in("/") | fileImports | ansi-to-html |
+| autogenerated/Xss/DomBasedXss/tst.js:481:52:481:54 | "/" | CalleeFlexibleAccessPath | ?.join |
+| autogenerated/Xss/DomBasedXss/tst.js:481:52:481:54 | "/" | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/tst.js:481:52:481:54 | "/" | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:481:52:481:54 | "/" | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/tst.js:481:52:481:54 | "/" | enclosingFunctionBody | url document location search substr 1 $ <a> href url appendTo body $ #foo attr href url $ #foo attr href url $ <img> src url appendTo body $ <a> href win location href appendTo body $ <img> src http://google.com/ url appendTo body $ <img> src http://google.com url join / appendTo body url startsWith https:// $ <img> src url appendTo body $ <img> src url appendTo body window open location hash substr 1 navigation navigate location hash substr 1 |
+| autogenerated/Xss/DomBasedXss/tst.js:481:52:481:54 | "/" | enclosingFunctionName | urlStuff |
+| autogenerated/Xss/DomBasedXss/tst.js:481:52:481:54 | "/" | fileImports | ansi-to-html |
+| autogenerated/Xss/DomBasedXss/tst.js:481:68:481:73 | "body" | CalleeFlexibleAccessPath | $().appendTo |
+| autogenerated/Xss/DomBasedXss/tst.js:481:68:481:73 | "body" | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/tst.js:481:68:481:73 | "body" | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:481:68:481:73 | "body" | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/tst.js:481:68:481:73 | "body" | enclosingFunctionBody | url document location search substr 1 $ <a> href url appendTo body $ #foo attr href url $ #foo attr href url $ <img> src url appendTo body $ <a> href win location href appendTo body $ <img> src http://google.com/ url appendTo body $ <img> src http://google.com url join / appendTo body url startsWith https:// $ <img> src url appendTo body $ <img> src url appendTo body window open location hash substr 1 navigation navigate location hash substr 1 |
+| autogenerated/Xss/DomBasedXss/tst.js:481:68:481:73 | "body" | enclosingFunctionName | urlStuff |
+| autogenerated/Xss/DomBasedXss/tst.js:481:68:481:73 | "body" | fileImports | ansi-to-html |
+| autogenerated/Xss/DomBasedXss/tst.js:483:22:483:31 | "https://" | CalleeFlexibleAccessPath | url.startsWith |
+| autogenerated/Xss/DomBasedXss/tst.js:483:22:483:31 | "https://" | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/tst.js:483:22:483:31 | "https://" | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:483:22:483:31 | "https://" | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/tst.js:483:22:483:31 | "https://" | enclosingFunctionBody | url document location search substr 1 $ <a> href url appendTo body $ #foo attr href url $ #foo attr href url $ <img> src url appendTo body $ <a> href win location href appendTo body $ <img> src http://google.com/ url appendTo body $ <img> src http://google.com url join / appendTo body url startsWith https:// $ <img> src url appendTo body $ <img> src url appendTo body window open location hash substr 1 navigation navigate location hash substr 1 |
+| autogenerated/Xss/DomBasedXss/tst.js:483:22:483:31 | "https://" | enclosingFunctionName | urlStuff |
+| autogenerated/Xss/DomBasedXss/tst.js:483:22:483:31 | "https://" | fileImports | ansi-to-html |
+| autogenerated/Xss/DomBasedXss/tst.js:483:22:483:31 | "https://" | receiverName | url |
+| autogenerated/Xss/DomBasedXss/tst.js:484:7:484:13 | "<img>" | CalleeFlexibleAccessPath | $ |
+| autogenerated/Xss/DomBasedXss/tst.js:484:7:484:13 | "<img>" | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/tst.js:484:7:484:13 | "<img>" | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:484:7:484:13 | "<img>" | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/tst.js:484:7:484:13 | "<img>" | enclosingFunctionBody | url document location search substr 1 $ <a> href url appendTo body $ #foo attr href url $ #foo attr href url $ <img> src url appendTo body $ <a> href win location href appendTo body $ <img> src http://google.com/ url appendTo body $ <img> src http://google.com url join / appendTo body url startsWith https:// $ <img> src url appendTo body $ <img> src url appendTo body window open location hash substr 1 navigation navigate location hash substr 1 |
+| autogenerated/Xss/DomBasedXss/tst.js:484:7:484:13 | "<img>" | enclosingFunctionName | urlStuff |
+| autogenerated/Xss/DomBasedXss/tst.js:484:7:484:13 | "<img>" | fileImports | ansi-to-html |
+| autogenerated/Xss/DomBasedXss/tst.js:484:16:484:25 | {src: url} | CalleeFlexibleAccessPath | $ |
+| autogenerated/Xss/DomBasedXss/tst.js:484:16:484:25 | {src: url} | InputArgumentIndex | 1 |
+| autogenerated/Xss/DomBasedXss/tst.js:484:16:484:25 | {src: url} | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:484:16:484:25 | {src: url} | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/tst.js:484:16:484:25 | {src: url} | enclosingFunctionBody | url document location search substr 1 $ <a> href url appendTo body $ #foo attr href url $ #foo attr href url $ <img> src url appendTo body $ <a> href win location href appendTo body $ <img> src http://google.com/ url appendTo body $ <img> src http://google.com url join / appendTo body url startsWith https:// $ <img> src url appendTo body $ <img> src url appendTo body window open location hash substr 1 navigation navigate location hash substr 1 |
+| autogenerated/Xss/DomBasedXss/tst.js:484:16:484:25 | {src: url} | enclosingFunctionName | urlStuff |
+| autogenerated/Xss/DomBasedXss/tst.js:484:16:484:25 | {src: url} | fileImports | ansi-to-html |
+| autogenerated/Xss/DomBasedXss/tst.js:484:22:484:24 | url | CalleeFlexibleAccessPath | $ |
+| autogenerated/Xss/DomBasedXss/tst.js:484:22:484:24 | url | InputAccessPathFromCallee | 1.src |
+| autogenerated/Xss/DomBasedXss/tst.js:484:22:484:24 | url | InputArgumentIndex | 1 |
+| autogenerated/Xss/DomBasedXss/tst.js:484:22:484:24 | url | assignedToPropName | src |
+| autogenerated/Xss/DomBasedXss/tst.js:484:22:484:24 | url | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:484:22:484:24 | url | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/tst.js:484:22:484:24 | url | enclosingFunctionBody | url document location search substr 1 $ <a> href url appendTo body $ #foo attr href url $ #foo attr href url $ <img> src url appendTo body $ <a> href win location href appendTo body $ <img> src http://google.com/ url appendTo body $ <img> src http://google.com url join / appendTo body url startsWith https:// $ <img> src url appendTo body $ <img> src url appendTo body window open location hash substr 1 navigation navigate location hash substr 1 |
+| autogenerated/Xss/DomBasedXss/tst.js:484:22:484:24 | url | enclosingFunctionName | urlStuff |
+| autogenerated/Xss/DomBasedXss/tst.js:484:22:484:24 | url | fileImports | ansi-to-html |
+| autogenerated/Xss/DomBasedXss/tst.js:484:37:484:42 | "body" | CalleeFlexibleAccessPath | $().appendTo |
+| autogenerated/Xss/DomBasedXss/tst.js:484:37:484:42 | "body" | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/tst.js:484:37:484:42 | "body" | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:484:37:484:42 | "body" | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/tst.js:484:37:484:42 | "body" | enclosingFunctionBody | url document location search substr 1 $ <a> href url appendTo body $ #foo attr href url $ #foo attr href url $ <img> src url appendTo body $ <a> href win location href appendTo body $ <img> src http://google.com/ url appendTo body $ <img> src http://google.com url join / appendTo body url startsWith https:// $ <img> src url appendTo body $ <img> src url appendTo body window open location hash substr 1 navigation navigate location hash substr 1 |
+| autogenerated/Xss/DomBasedXss/tst.js:484:37:484:42 | "body" | enclosingFunctionName | urlStuff |
+| autogenerated/Xss/DomBasedXss/tst.js:484:37:484:42 | "body" | fileImports | ansi-to-html |
+| autogenerated/Xss/DomBasedXss/tst.js:486:7:486:13 | "<img>" | CalleeFlexibleAccessPath | $ |
+| autogenerated/Xss/DomBasedXss/tst.js:486:7:486:13 | "<img>" | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/tst.js:486:7:486:13 | "<img>" | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:486:7:486:13 | "<img>" | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/tst.js:486:7:486:13 | "<img>" | enclosingFunctionBody | url document location search substr 1 $ <a> href url appendTo body $ #foo attr href url $ #foo attr href url $ <img> src url appendTo body $ <a> href win location href appendTo body $ <img> src http://google.com/ url appendTo body $ <img> src http://google.com url join / appendTo body url startsWith https:// $ <img> src url appendTo body $ <img> src url appendTo body window open location hash substr 1 navigation navigate location hash substr 1 |
+| autogenerated/Xss/DomBasedXss/tst.js:486:7:486:13 | "<img>" | enclosingFunctionName | urlStuff |
+| autogenerated/Xss/DomBasedXss/tst.js:486:7:486:13 | "<img>" | fileImports | ansi-to-html |
+| autogenerated/Xss/DomBasedXss/tst.js:486:16:486:25 | {src: url} | CalleeFlexibleAccessPath | $ |
+| autogenerated/Xss/DomBasedXss/tst.js:486:16:486:25 | {src: url} | InputArgumentIndex | 1 |
+| autogenerated/Xss/DomBasedXss/tst.js:486:16:486:25 | {src: url} | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:486:16:486:25 | {src: url} | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/tst.js:486:16:486:25 | {src: url} | enclosingFunctionBody | url document location search substr 1 $ <a> href url appendTo body $ #foo attr href url $ #foo attr href url $ <img> src url appendTo body $ <a> href win location href appendTo body $ <img> src http://google.com/ url appendTo body $ <img> src http://google.com url join / appendTo body url startsWith https:// $ <img> src url appendTo body $ <img> src url appendTo body window open location hash substr 1 navigation navigate location hash substr 1 |
+| autogenerated/Xss/DomBasedXss/tst.js:486:16:486:25 | {src: url} | enclosingFunctionName | urlStuff |
+| autogenerated/Xss/DomBasedXss/tst.js:486:16:486:25 | {src: url} | fileImports | ansi-to-html |
+| autogenerated/Xss/DomBasedXss/tst.js:486:22:486:24 | url | CalleeFlexibleAccessPath | $ |
+| autogenerated/Xss/DomBasedXss/tst.js:486:22:486:24 | url | InputAccessPathFromCallee | 1.src |
+| autogenerated/Xss/DomBasedXss/tst.js:486:22:486:24 | url | InputArgumentIndex | 1 |
+| autogenerated/Xss/DomBasedXss/tst.js:486:22:486:24 | url | assignedToPropName | src |
+| autogenerated/Xss/DomBasedXss/tst.js:486:22:486:24 | url | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:486:22:486:24 | url | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/tst.js:486:22:486:24 | url | enclosingFunctionBody | url document location search substr 1 $ <a> href url appendTo body $ #foo attr href url $ #foo attr href url $ <img> src url appendTo body $ <a> href win location href appendTo body $ <img> src http://google.com/ url appendTo body $ <img> src http://google.com url join / appendTo body url startsWith https:// $ <img> src url appendTo body $ <img> src url appendTo body window open location hash substr 1 navigation navigate location hash substr 1 |
+| autogenerated/Xss/DomBasedXss/tst.js:486:22:486:24 | url | enclosingFunctionName | urlStuff |
+| autogenerated/Xss/DomBasedXss/tst.js:486:22:486:24 | url | fileImports | ansi-to-html |
+| autogenerated/Xss/DomBasedXss/tst.js:486:37:486:42 | "body" | CalleeFlexibleAccessPath | $().appendTo |
+| autogenerated/Xss/DomBasedXss/tst.js:486:37:486:42 | "body" | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/tst.js:486:37:486:42 | "body" | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:486:37:486:42 | "body" | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/tst.js:486:37:486:42 | "body" | enclosingFunctionBody | url document location search substr 1 $ <a> href url appendTo body $ #foo attr href url $ #foo attr href url $ <img> src url appendTo body $ <a> href win location href appendTo body $ <img> src http://google.com/ url appendTo body $ <img> src http://google.com url join / appendTo body url startsWith https:// $ <img> src url appendTo body $ <img> src url appendTo body window open location hash substr 1 navigation navigate location hash substr 1 |
+| autogenerated/Xss/DomBasedXss/tst.js:486:37:486:42 | "body" | enclosingFunctionName | urlStuff |
+| autogenerated/Xss/DomBasedXss/tst.js:486:37:486:42 | "body" | fileImports | ansi-to-html |
+| autogenerated/Xss/DomBasedXss/tst.js:489:15:489:37 | locatio ... bstr(1) | CalleeFlexibleAccessPath | window.open |
+| autogenerated/Xss/DomBasedXss/tst.js:489:15:489:37 | locatio ... bstr(1) | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/tst.js:489:15:489:37 | locatio ... bstr(1) | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:489:15:489:37 | locatio ... bstr(1) | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/tst.js:489:15:489:37 | locatio ... bstr(1) | enclosingFunctionBody | url document location search substr 1 $ <a> href url appendTo body $ #foo attr href url $ #foo attr href url $ <img> src url appendTo body $ <a> href win location href appendTo body $ <img> src http://google.com/ url appendTo body $ <img> src http://google.com url join / appendTo body url startsWith https:// $ <img> src url appendTo body $ <img> src url appendTo body window open location hash substr 1 navigation navigate location hash substr 1 |
+| autogenerated/Xss/DomBasedXss/tst.js:489:15:489:37 | locatio ... bstr(1) | enclosingFunctionName | urlStuff |
+| autogenerated/Xss/DomBasedXss/tst.js:489:15:489:37 | locatio ... bstr(1) | fileImports | ansi-to-html |
+| autogenerated/Xss/DomBasedXss/tst.js:489:15:489:37 | locatio ... bstr(1) | receiverName | window |
+| autogenerated/Xss/DomBasedXss/tst.js:489:36:489:36 | 1 | CalleeFlexibleAccessPath | location.hash.substr |
+| autogenerated/Xss/DomBasedXss/tst.js:489:36:489:36 | 1 | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/tst.js:489:36:489:36 | 1 | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:489:36:489:36 | 1 | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/tst.js:489:36:489:36 | 1 | enclosingFunctionBody | url document location search substr 1 $ <a> href url appendTo body $ #foo attr href url $ #foo attr href url $ <img> src url appendTo body $ <a> href win location href appendTo body $ <img> src http://google.com/ url appendTo body $ <img> src http://google.com url join / appendTo body url startsWith https:// $ <img> src url appendTo body $ <img> src url appendTo body window open location hash substr 1 navigation navigate location hash substr 1 |
+| autogenerated/Xss/DomBasedXss/tst.js:489:36:489:36 | 1 | enclosingFunctionName | urlStuff |
+| autogenerated/Xss/DomBasedXss/tst.js:489:36:489:36 | 1 | fileImports | ansi-to-html |
+| autogenerated/Xss/DomBasedXss/tst.js:491:23:491:45 | locatio ... bstr(1) | CalleeFlexibleAccessPath | navigation.navigate |
+| autogenerated/Xss/DomBasedXss/tst.js:491:23:491:45 | locatio ... bstr(1) | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/tst.js:491:23:491:45 | locatio ... bstr(1) | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:491:23:491:45 | locatio ... bstr(1) | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/tst.js:491:23:491:45 | locatio ... bstr(1) | enclosingFunctionBody | url document location search substr 1 $ <a> href url appendTo body $ #foo attr href url $ #foo attr href url $ <img> src url appendTo body $ <a> href win location href appendTo body $ <img> src http://google.com/ url appendTo body $ <img> src http://google.com url join / appendTo body url startsWith https:// $ <img> src url appendTo body $ <img> src url appendTo body window open location hash substr 1 navigation navigate location hash substr 1 |
+| autogenerated/Xss/DomBasedXss/tst.js:491:23:491:45 | locatio ... bstr(1) | enclosingFunctionName | urlStuff |
+| autogenerated/Xss/DomBasedXss/tst.js:491:23:491:45 | locatio ... bstr(1) | fileImports | ansi-to-html |
+| autogenerated/Xss/DomBasedXss/tst.js:491:23:491:45 | locatio ... bstr(1) | receiverName | navigation |
+| autogenerated/Xss/DomBasedXss/tst.js:491:44:491:44 | 1 | CalleeFlexibleAccessPath | location.hash.substr |
+| autogenerated/Xss/DomBasedXss/tst.js:491:44:491:44 | 1 | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/tst.js:491:44:491:44 | 1 | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:491:44:491:44 | 1 | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/tst.js:491:44:491:44 | 1 | enclosingFunctionBody | url document location search substr 1 $ <a> href url appendTo body $ #foo attr href url $ #foo attr href url $ <img> src url appendTo body $ <a> href win location href appendTo body $ <img> src http://google.com/ url appendTo body $ <img> src http://google.com url join / appendTo body url startsWith https:// $ <img> src url appendTo body $ <img> src url appendTo body window open location hash substr 1 navigation navigate location hash substr 1 |
+| autogenerated/Xss/DomBasedXss/tst.js:491:44:491:44 | 1 | enclosingFunctionName | urlStuff |
+| autogenerated/Xss/DomBasedXss/tst.js:491:44:491:44 | 1 | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/typeahead.js:2:38:4:3 | {\\n    p ... Url\\n  } | CalleeFlexibleAccessPath | Bloodhound |
 | autogenerated/Xss/DomBasedXss/typeahead.js:2:38:4:3 | {\\n    p ... Url\\n  } | InputArgumentIndex | 0 |
 | autogenerated/Xss/DomBasedXss/typeahead.js:2:38:4:3 | {\\n    p ... Url\\n  } | contextFunctionInterfaces | source(query, cb)\nsuggestion(loc)\nsuggestion(val) |
@@ -14293,19 +18537,19 @@ tokenFeatures
 | autogenerated/Xss/DomBasedXss/xmlRequest.js:1:3:1:10 | document | InputArgumentIndex | 0 |
 | autogenerated/Xss/DomBasedXss/xmlRequest.js:1:3:1:10 | document | contextFunctionInterfaces | onreadystatechange() |
 | autogenerated/Xss/DomBasedXss/xmlRequest.js:1:3:1:10 | document | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:1:3:1:10 | document | fileImports |  |
+| autogenerated/Xss/DomBasedXss/xmlRequest.js:1:3:1:10 | document | fileImports | got |
 | autogenerated/Xss/DomBasedXss/xmlRequest.js:1:19:16:1 | functio ...     }\\n} | CalleeFlexibleAccessPath | $().ready |
 | autogenerated/Xss/DomBasedXss/xmlRequest.js:1:19:16:1 | functio ...     }\\n} | InputArgumentIndex | 0 |
 | autogenerated/Xss/DomBasedXss/xmlRequest.js:1:19:16:1 | functio ...     }\\n} | contextFunctionInterfaces | onreadystatechange() |
 | autogenerated/Xss/DomBasedXss/xmlRequest.js:1:19:16:1 | functio ...     }\\n} | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:1:19:16:1 | functio ...     }\\n} | fileImports |  |
+| autogenerated/Xss/DomBasedXss/xmlRequest.js:1:19:16:1 | functio ...     }\\n} | fileImports | got |
 | autogenerated/Xss/DomBasedXss/xmlRequest.js:4:14:4:18 | "GET" | CalleeFlexibleAccessPath | xhr.open |
 | autogenerated/Xss/DomBasedXss/xmlRequest.js:4:14:4:18 | "GET" | InputArgumentIndex | 0 |
 | autogenerated/Xss/DomBasedXss/xmlRequest.js:4:14:4:18 | "GET" | contextFunctionInterfaces | onreadystatechange() |
 | autogenerated/Xss/DomBasedXss/xmlRequest.js:4:14:4:18 | "GET" | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/xmlRequest.js:4:14:4:18 | "GET" | enclosingFunctionBody | xhr XMLHttpRequest url {{ some_url }} xhr open GET url true xhr setRequestHeader Content-Type application/json xhr onreadystatechange xhr readyState 4 json JSON parse xhr responseText $ #myThing html json message xhr send error console log error |
 | autogenerated/Xss/DomBasedXss/xmlRequest.js:4:14:4:18 | "GET" | enclosingFunctionName | ready#functionalargument |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:4:14:4:18 | "GET" | fileImports |  |
+| autogenerated/Xss/DomBasedXss/xmlRequest.js:4:14:4:18 | "GET" | fileImports | got |
 | autogenerated/Xss/DomBasedXss/xmlRequest.js:4:14:4:18 | "GET" | receiverName | xhr |
 | autogenerated/Xss/DomBasedXss/xmlRequest.js:4:21:4:23 | url | CalleeFlexibleAccessPath | xhr.open |
 | autogenerated/Xss/DomBasedXss/xmlRequest.js:4:21:4:23 | url | InputArgumentIndex | 1 |
@@ -14313,7 +18557,7 @@ tokenFeatures
 | autogenerated/Xss/DomBasedXss/xmlRequest.js:4:21:4:23 | url | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/xmlRequest.js:4:21:4:23 | url | enclosingFunctionBody | xhr XMLHttpRequest url {{ some_url }} xhr open GET url true xhr setRequestHeader Content-Type application/json xhr onreadystatechange xhr readyState 4 json JSON parse xhr responseText $ #myThing html json message xhr send error console log error |
 | autogenerated/Xss/DomBasedXss/xmlRequest.js:4:21:4:23 | url | enclosingFunctionName | ready#functionalargument |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:4:21:4:23 | url | fileImports |  |
+| autogenerated/Xss/DomBasedXss/xmlRequest.js:4:21:4:23 | url | fileImports | got |
 | autogenerated/Xss/DomBasedXss/xmlRequest.js:4:21:4:23 | url | receiverName | xhr |
 | autogenerated/Xss/DomBasedXss/xmlRequest.js:4:26:4:29 | true | CalleeFlexibleAccessPath | xhr.open |
 | autogenerated/Xss/DomBasedXss/xmlRequest.js:4:26:4:29 | true | InputArgumentIndex | 2 |
@@ -14321,7 +18565,7 @@ tokenFeatures
 | autogenerated/Xss/DomBasedXss/xmlRequest.js:4:26:4:29 | true | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/xmlRequest.js:4:26:4:29 | true | enclosingFunctionBody | xhr XMLHttpRequest url {{ some_url }} xhr open GET url true xhr setRequestHeader Content-Type application/json xhr onreadystatechange xhr readyState 4 json JSON parse xhr responseText $ #myThing html json message xhr send error console log error |
 | autogenerated/Xss/DomBasedXss/xmlRequest.js:4:26:4:29 | true | enclosingFunctionName | ready#functionalargument |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:4:26:4:29 | true | fileImports |  |
+| autogenerated/Xss/DomBasedXss/xmlRequest.js:4:26:4:29 | true | fileImports | got |
 | autogenerated/Xss/DomBasedXss/xmlRequest.js:4:26:4:29 | true | receiverName | xhr |
 | autogenerated/Xss/DomBasedXss/xmlRequest.js:5:26:5:39 | "Content-Type" | CalleeFlexibleAccessPath | xhr.setRequestHeader |
 | autogenerated/Xss/DomBasedXss/xmlRequest.js:5:26:5:39 | "Content-Type" | InputArgumentIndex | 0 |
@@ -14329,7 +18573,7 @@ tokenFeatures
 | autogenerated/Xss/DomBasedXss/xmlRequest.js:5:26:5:39 | "Content-Type" | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/xmlRequest.js:5:26:5:39 | "Content-Type" | enclosingFunctionBody | xhr XMLHttpRequest url {{ some_url }} xhr open GET url true xhr setRequestHeader Content-Type application/json xhr onreadystatechange xhr readyState 4 json JSON parse xhr responseText $ #myThing html json message xhr send error console log error |
 | autogenerated/Xss/DomBasedXss/xmlRequest.js:5:26:5:39 | "Content-Type" | enclosingFunctionName | ready#functionalargument |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:5:26:5:39 | "Content-Type" | fileImports |  |
+| autogenerated/Xss/DomBasedXss/xmlRequest.js:5:26:5:39 | "Content-Type" | fileImports | got |
 | autogenerated/Xss/DomBasedXss/xmlRequest.js:5:26:5:39 | "Content-Type" | receiverName | xhr |
 | autogenerated/Xss/DomBasedXss/xmlRequest.js:5:42:5:59 | "application/json" | CalleeFlexibleAccessPath | xhr.setRequestHeader |
 | autogenerated/Xss/DomBasedXss/xmlRequest.js:5:42:5:59 | "application/json" | InputArgumentIndex | 1 |
@@ -14337,7 +18581,7 @@ tokenFeatures
 | autogenerated/Xss/DomBasedXss/xmlRequest.js:5:42:5:59 | "application/json" | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/xmlRequest.js:5:42:5:59 | "application/json" | enclosingFunctionBody | xhr XMLHttpRequest url {{ some_url }} xhr open GET url true xhr setRequestHeader Content-Type application/json xhr onreadystatechange xhr readyState 4 json JSON parse xhr responseText $ #myThing html json message xhr send error console log error |
 | autogenerated/Xss/DomBasedXss/xmlRequest.js:5:42:5:59 | "application/json" | enclosingFunctionName | ready#functionalargument |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:5:42:5:59 | "application/json" | fileImports |  |
+| autogenerated/Xss/DomBasedXss/xmlRequest.js:5:42:5:59 | "application/json" | fileImports | got |
 | autogenerated/Xss/DomBasedXss/xmlRequest.js:5:42:5:59 | "application/json" | receiverName | xhr |
 | autogenerated/Xss/DomBasedXss/xmlRequest.js:8:31:8:46 | xhr.responseText | CalleeFlexibleAccessPath | JSON.parse |
 | autogenerated/Xss/DomBasedXss/xmlRequest.js:8:31:8:46 | xhr.responseText | InputArgumentIndex | 0 |
@@ -14345,7 +18589,7 @@ tokenFeatures
 | autogenerated/Xss/DomBasedXss/xmlRequest.js:8:31:8:46 | xhr.responseText | contextSurroundingFunctionParameters | ()\n() |
 | autogenerated/Xss/DomBasedXss/xmlRequest.js:8:31:8:46 | xhr.responseText | enclosingFunctionBody | xhr XMLHttpRequest url {{ some_url }} xhr open GET url true xhr setRequestHeader Content-Type application/json xhr onreadystatechange xhr readyState 4 json JSON parse xhr responseText $ #myThing html json message xhr send error console log error |
 | autogenerated/Xss/DomBasedXss/xmlRequest.js:8:31:8:46 | xhr.responseText | enclosingFunctionName | ready#functionalargument |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:8:31:8:46 | xhr.responseText | fileImports |  |
+| autogenerated/Xss/DomBasedXss/xmlRequest.js:8:31:8:46 | xhr.responseText | fileImports | got |
 | autogenerated/Xss/DomBasedXss/xmlRequest.js:8:31:8:46 | xhr.responseText | receiverName | JSON |
 | autogenerated/Xss/DomBasedXss/xmlRequest.js:9:11:9:20 | "#myThing" | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/DomBasedXss/xmlRequest.js:9:11:9:20 | "#myThing" | InputArgumentIndex | 0 |
@@ -14353,28 +18597,76 @@ tokenFeatures
 | autogenerated/Xss/DomBasedXss/xmlRequest.js:9:11:9:20 | "#myThing" | contextSurroundingFunctionParameters | ()\n() |
 | autogenerated/Xss/DomBasedXss/xmlRequest.js:9:11:9:20 | "#myThing" | enclosingFunctionBody | xhr XMLHttpRequest url {{ some_url }} xhr open GET url true xhr setRequestHeader Content-Type application/json xhr onreadystatechange xhr readyState 4 json JSON parse xhr responseText $ #myThing html json message xhr send error console log error |
 | autogenerated/Xss/DomBasedXss/xmlRequest.js:9:11:9:20 | "#myThing" | enclosingFunctionName | ready#functionalargument |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:9:11:9:20 | "#myThing" | fileImports |  |
+| autogenerated/Xss/DomBasedXss/xmlRequest.js:9:11:9:20 | "#myThing" | fileImports | got |
 | autogenerated/Xss/DomBasedXss/xmlRequest.js:9:28:9:39 | json.message | CalleeFlexibleAccessPath | $().html |
 | autogenerated/Xss/DomBasedXss/xmlRequest.js:9:28:9:39 | json.message | InputArgumentIndex | 0 |
 | autogenerated/Xss/DomBasedXss/xmlRequest.js:9:28:9:39 | json.message | contextFunctionInterfaces | onreadystatechange() |
 | autogenerated/Xss/DomBasedXss/xmlRequest.js:9:28:9:39 | json.message | contextSurroundingFunctionParameters | ()\n() |
 | autogenerated/Xss/DomBasedXss/xmlRequest.js:9:28:9:39 | json.message | enclosingFunctionBody | xhr XMLHttpRequest url {{ some_url }} xhr open GET url true xhr setRequestHeader Content-Type application/json xhr onreadystatechange xhr readyState 4 json JSON parse xhr responseText $ #myThing html json message xhr send error console log error |
 | autogenerated/Xss/DomBasedXss/xmlRequest.js:9:28:9:39 | json.message | enclosingFunctionName | ready#functionalargument |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:9:28:9:39 | json.message | fileImports |  |
+| autogenerated/Xss/DomBasedXss/xmlRequest.js:9:28:9:39 | json.message | fileImports | got |
 | autogenerated/Xss/DomBasedXss/xmlRequest.js:14:21:14:25 | error | CalleeFlexibleAccessPath | console.log |
 | autogenerated/Xss/DomBasedXss/xmlRequest.js:14:21:14:25 | error | InputArgumentIndex | 0 |
 | autogenerated/Xss/DomBasedXss/xmlRequest.js:14:21:14:25 | error | contextFunctionInterfaces | onreadystatechange() |
 | autogenerated/Xss/DomBasedXss/xmlRequest.js:14:21:14:25 | error | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/xmlRequest.js:14:21:14:25 | error | enclosingFunctionBody | xhr XMLHttpRequest url {{ some_url }} xhr open GET url true xhr setRequestHeader Content-Type application/json xhr onreadystatechange xhr readyState 4 json JSON parse xhr responseText $ #myThing html json message xhr send error console log error |
 | autogenerated/Xss/DomBasedXss/xmlRequest.js:14:21:14:25 | error | enclosingFunctionName | ready#functionalargument |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:14:21:14:25 | error | fileImports |  |
+| autogenerated/Xss/DomBasedXss/xmlRequest.js:14:21:14:25 | error | fileImports | got |
 | autogenerated/Xss/DomBasedXss/xmlRequest.js:14:21:14:25 | error | receiverName | console |
+| autogenerated/Xss/DomBasedXss/xmlRequest.js:18:3:18:10 | document | CalleeFlexibleAccessPath | $ |
+| autogenerated/Xss/DomBasedXss/xmlRequest.js:18:3:18:10 | document | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/xmlRequest.js:18:3:18:10 | document | contextFunctionInterfaces | onreadystatechange() |
+| autogenerated/Xss/DomBasedXss/xmlRequest.js:18:3:18:10 | document | contextSurroundingFunctionParameters |  |
+| autogenerated/Xss/DomBasedXss/xmlRequest.js:18:3:18:10 | document | fileImports | got |
+| autogenerated/Xss/DomBasedXss/xmlRequest.js:18:19:24:1 | async f ... rces\\n\\n} | CalleeFlexibleAccessPath | $().ready |
+| autogenerated/Xss/DomBasedXss/xmlRequest.js:18:19:24:1 | async f ... rces\\n\\n} | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/xmlRequest.js:18:19:24:1 | async f ... rces\\n\\n} | contextFunctionInterfaces | onreadystatechange() |
+| autogenerated/Xss/DomBasedXss/xmlRequest.js:18:19:24:1 | async f ... rces\\n\\n} | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/xmlRequest.js:18:19:24:1 | async f ... rces\\n\\n} | fileImports | got |
+| autogenerated/Xss/DomBasedXss/xmlRequest.js:19:25:19:29 | 'got' | CalleeFlexibleAccessPath | require |
+| autogenerated/Xss/DomBasedXss/xmlRequest.js:19:25:19:29 | 'got' | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/xmlRequest.js:19:25:19:29 | 'got' | contextFunctionInterfaces | onreadystatechange() |
+| autogenerated/Xss/DomBasedXss/xmlRequest.js:19:25:19:29 | 'got' | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/xmlRequest.js:19:25:19:29 | 'got' | enclosingFunctionBody | got require got resp got get {{ some_url }} json JSON parse resp body $ #myThing html json message |
+| autogenerated/Xss/DomBasedXss/xmlRequest.js:19:25:19:29 | 'got' | enclosingFunctionName | ready#functionalargument |
+| autogenerated/Xss/DomBasedXss/xmlRequest.js:19:25:19:29 | 'got' | fileImports | got |
+| autogenerated/Xss/DomBasedXss/xmlRequest.js:20:32:20:47 | "{{ some_url }}" | CalleeFlexibleAccessPath | got.get |
+| autogenerated/Xss/DomBasedXss/xmlRequest.js:20:32:20:47 | "{{ some_url }}" | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/xmlRequest.js:20:32:20:47 | "{{ some_url }}" | calleeImports | got |
+| autogenerated/Xss/DomBasedXss/xmlRequest.js:20:32:20:47 | "{{ some_url }}" | contextFunctionInterfaces | onreadystatechange() |
+| autogenerated/Xss/DomBasedXss/xmlRequest.js:20:32:20:47 | "{{ some_url }}" | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/xmlRequest.js:20:32:20:47 | "{{ some_url }}" | enclosingFunctionBody | got require got resp got get {{ some_url }} json JSON parse resp body $ #myThing html json message |
+| autogenerated/Xss/DomBasedXss/xmlRequest.js:20:32:20:47 | "{{ some_url }}" | enclosingFunctionName | ready#functionalargument |
+| autogenerated/Xss/DomBasedXss/xmlRequest.js:20:32:20:47 | "{{ some_url }}" | fileImports | got |
+| autogenerated/Xss/DomBasedXss/xmlRequest.js:20:32:20:47 | "{{ some_url }}" | receiverName | got |
+| autogenerated/Xss/DomBasedXss/xmlRequest.js:21:29:21:37 | resp.body | CalleeFlexibleAccessPath | JSON.parse |
+| autogenerated/Xss/DomBasedXss/xmlRequest.js:21:29:21:37 | resp.body | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/xmlRequest.js:21:29:21:37 | resp.body | contextFunctionInterfaces | onreadystatechange() |
+| autogenerated/Xss/DomBasedXss/xmlRequest.js:21:29:21:37 | resp.body | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/xmlRequest.js:21:29:21:37 | resp.body | enclosingFunctionBody | got require got resp got get {{ some_url }} json JSON parse resp body $ #myThing html json message |
+| autogenerated/Xss/DomBasedXss/xmlRequest.js:21:29:21:37 | resp.body | enclosingFunctionName | ready#functionalargument |
+| autogenerated/Xss/DomBasedXss/xmlRequest.js:21:29:21:37 | resp.body | fileImports | got |
+| autogenerated/Xss/DomBasedXss/xmlRequest.js:21:29:21:37 | resp.body | receiverName | JSON |
+| autogenerated/Xss/DomBasedXss/xmlRequest.js:22:7:22:16 | "#myThing" | CalleeFlexibleAccessPath | $ |
+| autogenerated/Xss/DomBasedXss/xmlRequest.js:22:7:22:16 | "#myThing" | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/xmlRequest.js:22:7:22:16 | "#myThing" | contextFunctionInterfaces | onreadystatechange() |
+| autogenerated/Xss/DomBasedXss/xmlRequest.js:22:7:22:16 | "#myThing" | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/xmlRequest.js:22:7:22:16 | "#myThing" | enclosingFunctionBody | got require got resp got get {{ some_url }} json JSON parse resp body $ #myThing html json message |
+| autogenerated/Xss/DomBasedXss/xmlRequest.js:22:7:22:16 | "#myThing" | enclosingFunctionName | ready#functionalargument |
+| autogenerated/Xss/DomBasedXss/xmlRequest.js:22:7:22:16 | "#myThing" | fileImports | got |
+| autogenerated/Xss/DomBasedXss/xmlRequest.js:22:24:22:35 | json.message | CalleeFlexibleAccessPath | $().html |
+| autogenerated/Xss/DomBasedXss/xmlRequest.js:22:24:22:35 | json.message | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/xmlRequest.js:22:24:22:35 | json.message | contextFunctionInterfaces | onreadystatechange() |
+| autogenerated/Xss/DomBasedXss/xmlRequest.js:22:24:22:35 | json.message | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/xmlRequest.js:22:24:22:35 | json.message | enclosingFunctionBody | got require got resp got get {{ some_url }} json JSON parse resp body $ #myThing html json message |
+| autogenerated/Xss/DomBasedXss/xmlRequest.js:22:24:22:35 | json.message | enclosingFunctionName | ready#functionalargument |
+| autogenerated/Xss/DomBasedXss/xmlRequest.js:22:24:22:35 | json.message | fileImports | got |
 | autogenerated/Xss/ExceptionXss/ajv.js:7:15:7:70 | {type:  ... mber'}} | CalleeFlexibleAccessPath | ajv.addSchema |
 | autogenerated/Xss/ExceptionXss/ajv.js:7:15:7:70 | {type:  ... mber'}} | InputArgumentIndex | 0 |
 | autogenerated/Xss/ExceptionXss/ajv.js:7:15:7:70 | {type:  ... mber'}} | calleeImports | ajv |
 | autogenerated/Xss/ExceptionXss/ajv.js:7:15:7:70 | {type:  ... mber'}} | contextFunctionInterfaces |  |
 | autogenerated/Xss/ExceptionXss/ajv.js:7:15:7:70 | {type:  ... mber'}} | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/ExceptionXss/ajv.js:7:15:7:70 | {type:  ... mber'}} | fileImports | ajv express |
+| autogenerated/Xss/ExceptionXss/ajv.js:7:15:7:70 | {type:  ... mber'}} | fileImports | ajv express joi |
 | autogenerated/Xss/ExceptionXss/ajv.js:7:15:7:70 | {type:  ... mber'}} | receiverName | ajv |
 | autogenerated/Xss/ExceptionXss/ajv.js:7:22:7:29 | 'object' | CalleeFlexibleAccessPath | ajv.addSchema |
 | autogenerated/Xss/ExceptionXss/ajv.js:7:22:7:29 | 'object' | InputAccessPathFromCallee | 0.type |
@@ -14383,7 +18675,7 @@ tokenFeatures
 | autogenerated/Xss/ExceptionXss/ajv.js:7:22:7:29 | 'object' | calleeImports | ajv |
 | autogenerated/Xss/ExceptionXss/ajv.js:7:22:7:29 | 'object' | contextFunctionInterfaces |  |
 | autogenerated/Xss/ExceptionXss/ajv.js:7:22:7:29 | 'object' | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/ExceptionXss/ajv.js:7:22:7:29 | 'object' | fileImports | ajv express |
+| autogenerated/Xss/ExceptionXss/ajv.js:7:22:7:29 | 'object' | fileImports | ajv express joi |
 | autogenerated/Xss/ExceptionXss/ajv.js:7:54:7:69 | {type: 'number'} | CalleeFlexibleAccessPath | ajv.addSchema |
 | autogenerated/Xss/ExceptionXss/ajv.js:7:54:7:69 | {type: 'number'} | InputAccessPathFromCallee | 0.additionalProperties |
 | autogenerated/Xss/ExceptionXss/ajv.js:7:54:7:69 | {type: 'number'} | InputArgumentIndex | 0 |
@@ -14391,7 +18683,7 @@ tokenFeatures
 | autogenerated/Xss/ExceptionXss/ajv.js:7:54:7:69 | {type: 'number'} | calleeImports | ajv |
 | autogenerated/Xss/ExceptionXss/ajv.js:7:54:7:69 | {type: 'number'} | contextFunctionInterfaces |  |
 | autogenerated/Xss/ExceptionXss/ajv.js:7:54:7:69 | {type: 'number'} | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/ExceptionXss/ajv.js:7:54:7:69 | {type: 'number'} | fileImports | ajv express |
+| autogenerated/Xss/ExceptionXss/ajv.js:7:54:7:69 | {type: 'number'} | fileImports | ajv express joi |
 | autogenerated/Xss/ExceptionXss/ajv.js:7:61:7:68 | 'number' | CalleeFlexibleAccessPath | ajv.addSchema |
 | autogenerated/Xss/ExceptionXss/ajv.js:7:61:7:68 | 'number' | InputAccessPathFromCallee | 0.additionalProperties.type |
 | autogenerated/Xss/ExceptionXss/ajv.js:7:61:7:68 | 'number' | InputArgumentIndex | 0 |
@@ -14399,27 +18691,27 @@ tokenFeatures
 | autogenerated/Xss/ExceptionXss/ajv.js:7:61:7:68 | 'number' | calleeImports | ajv |
 | autogenerated/Xss/ExceptionXss/ajv.js:7:61:7:68 | 'number' | contextFunctionInterfaces |  |
 | autogenerated/Xss/ExceptionXss/ajv.js:7:61:7:68 | 'number' | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/ExceptionXss/ajv.js:7:61:7:68 | 'number' | fileImports | ajv express |
+| autogenerated/Xss/ExceptionXss/ajv.js:7:61:7:68 | 'number' | fileImports | ajv express joi |
 | autogenerated/Xss/ExceptionXss/ajv.js:7:73:7:82 | 'pollData' | CalleeFlexibleAccessPath | ajv.addSchema |
 | autogenerated/Xss/ExceptionXss/ajv.js:7:73:7:82 | 'pollData' | InputArgumentIndex | 1 |
 | autogenerated/Xss/ExceptionXss/ajv.js:7:73:7:82 | 'pollData' | calleeImports | ajv |
 | autogenerated/Xss/ExceptionXss/ajv.js:7:73:7:82 | 'pollData' | contextFunctionInterfaces |  |
 | autogenerated/Xss/ExceptionXss/ajv.js:7:73:7:82 | 'pollData' | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/ExceptionXss/ajv.js:7:73:7:82 | 'pollData' | fileImports | ajv express |
+| autogenerated/Xss/ExceptionXss/ajv.js:7:73:7:82 | 'pollData' | fileImports | ajv express joi |
 | autogenerated/Xss/ExceptionXss/ajv.js:7:73:7:82 | 'pollData' | receiverName | ajv |
 | autogenerated/Xss/ExceptionXss/ajv.js:9:10:9:20 | '/polldata' | CalleeFlexibleAccessPath | app.post |
 | autogenerated/Xss/ExceptionXss/ajv.js:9:10:9:20 | '/polldata' | InputArgumentIndex | 0 |
 | autogenerated/Xss/ExceptionXss/ajv.js:9:10:9:20 | '/polldata' | calleeImports | express |
 | autogenerated/Xss/ExceptionXss/ajv.js:9:10:9:20 | '/polldata' | contextFunctionInterfaces |  |
 | autogenerated/Xss/ExceptionXss/ajv.js:9:10:9:20 | '/polldata' | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/ExceptionXss/ajv.js:9:10:9:20 | '/polldata' | fileImports | ajv express |
+| autogenerated/Xss/ExceptionXss/ajv.js:9:10:9:20 | '/polldata' | fileImports | ajv express joi |
 | autogenerated/Xss/ExceptionXss/ajv.js:9:10:9:20 | '/polldata' | receiverName | app |
 | autogenerated/Xss/ExceptionXss/ajv.js:9:23:13:1 | (req, r ...     }\\n} | CalleeFlexibleAccessPath | app.post |
 | autogenerated/Xss/ExceptionXss/ajv.js:9:23:13:1 | (req, r ...     }\\n} | InputArgumentIndex | 1 |
 | autogenerated/Xss/ExceptionXss/ajv.js:9:23:13:1 | (req, r ...     }\\n} | calleeImports | express |
 | autogenerated/Xss/ExceptionXss/ajv.js:9:23:13:1 | (req, r ...     }\\n} | contextFunctionInterfaces |  |
 | autogenerated/Xss/ExceptionXss/ajv.js:9:23:13:1 | (req, r ...     }\\n} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/Xss/ExceptionXss/ajv.js:9:23:13:1 | (req, r ...     }\\n} | fileImports | ajv express |
+| autogenerated/Xss/ExceptionXss/ajv.js:9:23:13:1 | (req, r ...     }\\n} | fileImports | ajv express joi |
 | autogenerated/Xss/ExceptionXss/ajv.js:9:23:13:1 | (req, r ...     }\\n} | receiverName | app |
 | autogenerated/Xss/ExceptionXss/ajv.js:11:18:11:33 | ajv.errorsText() | CalleeFlexibleAccessPath | res.send |
 | autogenerated/Xss/ExceptionXss/ajv.js:11:18:11:33 | ajv.errorsText() | InputArgumentIndex | 0 |
@@ -14427,8 +18719,70 @@ tokenFeatures
 | autogenerated/Xss/ExceptionXss/ajv.js:11:18:11:33 | ajv.errorsText() | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/Xss/ExceptionXss/ajv.js:11:18:11:33 | ajv.errorsText() | enclosingFunctionBody | req res ajv validate pollData req body res send ajv errorsText |
 | autogenerated/Xss/ExceptionXss/ajv.js:11:18:11:33 | ajv.errorsText() | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/Xss/ExceptionXss/ajv.js:11:18:11:33 | ajv.errorsText() | fileImports | ajv express |
+| autogenerated/Xss/ExceptionXss/ajv.js:11:18:11:33 | ajv.errorsText() | fileImports | ajv express joi |
 | autogenerated/Xss/ExceptionXss/ajv.js:11:18:11:33 | ajv.errorsText() | receiverName | res |
+| autogenerated/Xss/ExceptionXss/ajv.js:15:21:15:25 | "joi" | CalleeFlexibleAccessPath | require |
+| autogenerated/Xss/ExceptionXss/ajv.js:15:21:15:25 | "joi" | InputArgumentIndex | 0 |
+| autogenerated/Xss/ExceptionXss/ajv.js:15:21:15:25 | "joi" | calleeImports |  |
+| autogenerated/Xss/ExceptionXss/ajv.js:15:21:15:25 | "joi" | contextFunctionInterfaces |  |
+| autogenerated/Xss/ExceptionXss/ajv.js:15:21:15:25 | "joi" | contextSurroundingFunctionParameters |  |
+| autogenerated/Xss/ExceptionXss/ajv.js:15:21:15:25 | "joi" | fileImports | ajv express joi |
+| autogenerated/Xss/ExceptionXss/ajv.js:16:37:19:1 | {\\n    n ... red()\\n} | CalleeFlexibleAccessPath | joi.object().keys |
+| autogenerated/Xss/ExceptionXss/ajv.js:16:37:19:1 | {\\n    n ... red()\\n} | InputArgumentIndex | 0 |
+| autogenerated/Xss/ExceptionXss/ajv.js:16:37:19:1 | {\\n    n ... red()\\n} | calleeImports | joi |
+| autogenerated/Xss/ExceptionXss/ajv.js:16:37:19:1 | {\\n    n ... red()\\n} | contextFunctionInterfaces |  |
+| autogenerated/Xss/ExceptionXss/ajv.js:16:37:19:1 | {\\n    n ... red()\\n} | contextSurroundingFunctionParameters |  |
+| autogenerated/Xss/ExceptionXss/ajv.js:16:37:19:1 | {\\n    n ... red()\\n} | fileImports | ajv express joi |
+| autogenerated/Xss/ExceptionXss/ajv.js:17:11:17:33 | joi.str ... uired() | CalleeFlexibleAccessPath | joi.object().keys |
+| autogenerated/Xss/ExceptionXss/ajv.js:17:11:17:33 | joi.str ... uired() | InputAccessPathFromCallee | 0.name |
+| autogenerated/Xss/ExceptionXss/ajv.js:17:11:17:33 | joi.str ... uired() | InputArgumentIndex | 0 |
+| autogenerated/Xss/ExceptionXss/ajv.js:17:11:17:33 | joi.str ... uired() | assignedToPropName | name |
+| autogenerated/Xss/ExceptionXss/ajv.js:17:11:17:33 | joi.str ... uired() | calleeImports | joi |
+| autogenerated/Xss/ExceptionXss/ajv.js:17:11:17:33 | joi.str ... uired() | contextFunctionInterfaces |  |
+| autogenerated/Xss/ExceptionXss/ajv.js:17:11:17:33 | joi.str ... uired() | contextSurroundingFunctionParameters |  |
+| autogenerated/Xss/ExceptionXss/ajv.js:17:11:17:33 | joi.str ... uired() | fileImports | ajv express joi |
+| autogenerated/Xss/ExceptionXss/ajv.js:18:10:18:32 | joi.num ... uired() | CalleeFlexibleAccessPath | joi.object().keys |
+| autogenerated/Xss/ExceptionXss/ajv.js:18:10:18:32 | joi.num ... uired() | InputAccessPathFromCallee | 0.age |
+| autogenerated/Xss/ExceptionXss/ajv.js:18:10:18:32 | joi.num ... uired() | InputArgumentIndex | 0 |
+| autogenerated/Xss/ExceptionXss/ajv.js:18:10:18:32 | joi.num ... uired() | assignedToPropName | age |
+| autogenerated/Xss/ExceptionXss/ajv.js:18:10:18:32 | joi.num ... uired() | calleeImports | joi |
+| autogenerated/Xss/ExceptionXss/ajv.js:18:10:18:32 | joi.num ... uired() | contextFunctionInterfaces |  |
+| autogenerated/Xss/ExceptionXss/ajv.js:18:10:18:32 | joi.num ... uired() | contextSurroundingFunctionParameters |  |
+| autogenerated/Xss/ExceptionXss/ajv.js:18:10:18:32 | joi.num ... uired() | fileImports | ajv express joi |
+| autogenerated/Xss/ExceptionXss/ajv.js:19:9:19:14 | 'name' | CalleeFlexibleAccessPath | joi.object().keys().with |
+| autogenerated/Xss/ExceptionXss/ajv.js:19:9:19:14 | 'name' | InputArgumentIndex | 0 |
+| autogenerated/Xss/ExceptionXss/ajv.js:19:9:19:14 | 'name' | calleeImports | joi |
+| autogenerated/Xss/ExceptionXss/ajv.js:19:9:19:14 | 'name' | contextFunctionInterfaces |  |
+| autogenerated/Xss/ExceptionXss/ajv.js:19:9:19:14 | 'name' | contextSurroundingFunctionParameters |  |
+| autogenerated/Xss/ExceptionXss/ajv.js:19:9:19:14 | 'name' | fileImports | ajv express joi |
+| autogenerated/Xss/ExceptionXss/ajv.js:19:17:19:21 | 'age' | CalleeFlexibleAccessPath | joi.object().keys().with |
+| autogenerated/Xss/ExceptionXss/ajv.js:19:17:19:21 | 'age' | InputArgumentIndex | 1 |
+| autogenerated/Xss/ExceptionXss/ajv.js:19:17:19:21 | 'age' | calleeImports | joi |
+| autogenerated/Xss/ExceptionXss/ajv.js:19:17:19:21 | 'age' | contextFunctionInterfaces |  |
+| autogenerated/Xss/ExceptionXss/ajv.js:19:17:19:21 | 'age' | contextSurroundingFunctionParameters |  |
+| autogenerated/Xss/ExceptionXss/ajv.js:19:17:19:21 | 'age' | fileImports | ajv express joi |
+| autogenerated/Xss/ExceptionXss/ajv.js:21:10:21:20 | '/votedata' | CalleeFlexibleAccessPath | app.post |
+| autogenerated/Xss/ExceptionXss/ajv.js:21:10:21:20 | '/votedata' | InputArgumentIndex | 0 |
+| autogenerated/Xss/ExceptionXss/ajv.js:21:10:21:20 | '/votedata' | calleeImports | express |
+| autogenerated/Xss/ExceptionXss/ajv.js:21:10:21:20 | '/votedata' | contextFunctionInterfaces |  |
+| autogenerated/Xss/ExceptionXss/ajv.js:21:10:21:20 | '/votedata' | contextSurroundingFunctionParameters |  |
+| autogenerated/Xss/ExceptionXss/ajv.js:21:10:21:20 | '/votedata' | fileImports | ajv express joi |
+| autogenerated/Xss/ExceptionXss/ajv.js:21:10:21:20 | '/votedata' | receiverName | app |
+| autogenerated/Xss/ExceptionXss/ajv.js:21:23:26:1 | (req, r ...     }\\n} | CalleeFlexibleAccessPath | app.post |
+| autogenerated/Xss/ExceptionXss/ajv.js:21:23:26:1 | (req, r ...     }\\n} | InputArgumentIndex | 1 |
+| autogenerated/Xss/ExceptionXss/ajv.js:21:23:26:1 | (req, r ...     }\\n} | calleeImports | express |
+| autogenerated/Xss/ExceptionXss/ajv.js:21:23:26:1 | (req, r ...     }\\n} | contextFunctionInterfaces |  |
+| autogenerated/Xss/ExceptionXss/ajv.js:21:23:26:1 | (req, r ...     }\\n} | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/Xss/ExceptionXss/ajv.js:21:23:26:1 | (req, r ...     }\\n} | fileImports | ajv express joi |
+| autogenerated/Xss/ExceptionXss/ajv.js:21:23:26:1 | (req, r ...     }\\n} | receiverName | app |
+| autogenerated/Xss/ExceptionXss/ajv.js:24:18:24:26 | val.error | CalleeFlexibleAccessPath | res.send |
+| autogenerated/Xss/ExceptionXss/ajv.js:24:18:24:26 | val.error | InputArgumentIndex | 0 |
+| autogenerated/Xss/ExceptionXss/ajv.js:24:18:24:26 | val.error | contextFunctionInterfaces |  |
+| autogenerated/Xss/ExceptionXss/ajv.js:24:18:24:26 | val.error | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/Xss/ExceptionXss/ajv.js:24:18:24:26 | val.error | enclosingFunctionBody | req res val joiSchema validate req body val error res send val error |
+| autogenerated/Xss/ExceptionXss/ajv.js:24:18:24:26 | val.error | enclosingFunctionName | app.post#functionalargument |
+| autogenerated/Xss/ExceptionXss/ajv.js:24:18:24:26 | val.error | fileImports | ajv express joi |
+| autogenerated/Xss/ExceptionXss/ajv.js:24:18:24:26 | val.error | receiverName | res |
 | autogenerated/Xss/ExceptionXss/exception-xss.js:5:11:5:11 | x | CalleeFlexibleAccessPath | unknown |
 | autogenerated/Xss/ExceptionXss/exception-xss.js:5:11:5:11 | x | InputArgumentIndex | 0 |
 | autogenerated/Xss/ExceptionXss/exception-xss.js:5:11:5:11 | x | contextFunctionInterfaces | deep(x)\ndeep2(x)\ninner(tainted, resolve)\ninner(x)\nmyWeirdInner(x)\nsafe(x) |
@@ -15193,722 +19547,743 @@ tokenFeatures
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:1:23:1:31 | 'express' | CalleeFlexibleAccessPath | require |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:1:23:1:31 | 'express' | InputArgumentIndex | 0 |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:1:23:1:31 | 'express' | calleeImports |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:1:23:1:31 | 'express' | contextFunctionInterfaces | moreBadStuff(params, res) |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:1:23:1:31 | 'express' | contextFunctionInterfaces | handler(request)\nmoreBadStuff(params, res) |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:1:23:1:31 | 'express' | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:1:23:1:31 | 'express' | fileImports | express markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:1:23:1:31 | 'express' | fileImports | express hapi markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:5:9:5:19 | '/user/:id' | CalleeFlexibleAccessPath | app.get |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:5:9:5:19 | '/user/:id' | InputArgumentIndex | 0 |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:5:9:5:19 | '/user/:id' | calleeImports | express |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:5:9:5:19 | '/user/:id' | contextFunctionInterfaces | moreBadStuff(params, res) |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:5:9:5:19 | '/user/:id' | contextFunctionInterfaces | handler(request)\nmoreBadStuff(params, res) |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:5:9:5:19 | '/user/:id' | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:5:9:5:19 | '/user/:id' | fileImports | express markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:5:9:5:19 | '/user/:id' | fileImports | express hapi markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:5:9:5:19 | '/user/:id' | receiverName | app |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:5:22:14:1 | functio ... ;\\n  }\\n} | CalleeFlexibleAccessPath | app.get |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:5:22:14:1 | functio ... ;\\n  }\\n} | InputArgumentIndex | 1 |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:5:22:14:1 | functio ... ;\\n  }\\n} | calleeImports | express |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:5:22:14:1 | functio ... ;\\n  }\\n} | contextFunctionInterfaces | moreBadStuff(params, res) |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:5:22:14:1 | functio ... ;\\n  }\\n} | contextFunctionInterfaces | handler(request)\nmoreBadStuff(params, res) |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:5:22:14:1 | functio ... ;\\n  }\\n} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:5:22:14:1 | functio ... ;\\n  }\\n} | fileImports | express markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:5:22:14:1 | functio ... ;\\n  }\\n} | fileImports | express hapi markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:5:22:14:1 | functio ... ;\\n  }\\n} | receiverName | app |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:8:14:8:45 | "Unknow ... rams.id | CalleeFlexibleAccessPath | res.send |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:8:14:8:45 | "Unknow ... rams.id | InputArgumentIndex | 0 |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:8:14:8:45 | "Unknow ... rams.id | contextFunctionInterfaces | moreBadStuff(params, res) |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:8:14:8:45 | "Unknow ... rams.id | contextFunctionInterfaces | handler(request)\nmoreBadStuff(params, res) |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:8:14:8:45 | "Unknow ... rams.id | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:8:14:8:45 | "Unknow ... rams.id | enclosingFunctionBody | req res isValidUserId req params id res send Unknown user:  req params id moreBadStuff req params res |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:8:14:8:45 | "Unknow ... rams.id | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:8:14:8:45 | "Unknow ... rams.id | fileImports | express markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:8:14:8:45 | "Unknow ... rams.id | fileImports | express hapi markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:8:14:8:45 | "Unknow ... rams.id | receiverName | res |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:17:12:17:39 | "Unknow ... rams.id | CalleeFlexibleAccessPath | res.send |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:17:12:17:39 | "Unknow ... rams.id | InputArgumentIndex | 0 |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:17:12:17:39 | "Unknow ... rams.id | contextFunctionInterfaces | moreBadStuff(params, res) |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:17:12:17:39 | "Unknow ... rams.id | contextFunctionInterfaces | handler(request)\nmoreBadStuff(params, res) |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:17:12:17:39 | "Unknow ... rams.id | contextSurroundingFunctionParameters | (params, res) |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:17:12:17:39 | "Unknow ... rams.id | enclosingFunctionBody | params res res send Unknown user:  params id |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:17:12:17:39 | "Unknow ... rams.id | enclosingFunctionName | moreBadStuff |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:17:12:17:39 | "Unknow ... rams.id | fileImports | express markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:17:12:17:39 | "Unknow ... rams.id | fileImports | express hapi markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:17:12:17:39 | "Unknow ... rams.id | receiverName | res |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:20:22:20:29 | "marked" | CalleeFlexibleAccessPath | require |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:20:22:20:29 | "marked" | InputArgumentIndex | 0 |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:20:22:20:29 | "marked" | calleeImports |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:20:22:20:29 | "marked" | contextFunctionInterfaces | moreBadStuff(params, res) |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:20:22:20:29 | "marked" | contextFunctionInterfaces | handler(request)\nmoreBadStuff(params, res) |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:20:22:20:29 | "marked" | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:20:22:20:29 | "marked" | fileImports | express markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:20:22:20:29 | "marked" | fileImports | express hapi markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:21:9:21:19 | '/user/:id' | CalleeFlexibleAccessPath | app.get |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:21:9:21:19 | '/user/:id' | InputArgumentIndex | 0 |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:21:9:21:19 | '/user/:id' | calleeImports | express |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:21:9:21:19 | '/user/:id' | contextFunctionInterfaces | moreBadStuff(params, res) |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:21:9:21:19 | '/user/:id' | contextFunctionInterfaces | handler(request)\nmoreBadStuff(params, res) |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:21:9:21:19 | '/user/:id' | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:21:9:21:19 | '/user/:id' | fileImports | express markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:21:9:21:19 | '/user/:id' | fileImports | express hapi markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:21:9:21:19 | '/user/:id' | receiverName | app |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:21:22:24:1 | functio ... OT OK\\n} | CalleeFlexibleAccessPath | app.get |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:21:22:24:1 | functio ... OT OK\\n} | InputArgumentIndex | 1 |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:21:22:24:1 | functio ... OT OK\\n} | calleeImports | express |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:21:22:24:1 | functio ... OT OK\\n} | contextFunctionInterfaces | moreBadStuff(params, res) |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:21:22:24:1 | functio ... OT OK\\n} | contextFunctionInterfaces | handler(request)\nmoreBadStuff(params, res) |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:21:22:24:1 | functio ... OT OK\\n} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:21:22:24:1 | functio ... OT OK\\n} | fileImports | express markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:21:22:24:1 | functio ... OT OK\\n} | fileImports | express hapi markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:21:22:24:1 | functio ... OT OK\\n} | receiverName | app |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:22:12:22:19 | req.body | CalleeFlexibleAccessPath | res.send |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:22:12:22:19 | req.body | InputArgumentIndex | 0 |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:22:12:22:19 | req.body | contextFunctionInterfaces | moreBadStuff(params, res) |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:22:12:22:19 | req.body | contextFunctionInterfaces | handler(request)\nmoreBadStuff(params, res) |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:22:12:22:19 | req.body | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:22:12:22:19 | req.body | enclosingFunctionBody | req res res send req body res send marked req body |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:22:12:22:19 | req.body | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:22:12:22:19 | req.body | fileImports | express markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:22:12:22:19 | req.body | fileImports | express hapi markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:22:12:22:19 | req.body | receiverName | res |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:23:12:23:27 | marked(req.body) | CalleeFlexibleAccessPath | res.send |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:23:12:23:27 | marked(req.body) | InputArgumentIndex | 0 |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:23:12:23:27 | marked(req.body) | contextFunctionInterfaces | moreBadStuff(params, res) |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:23:12:23:27 | marked(req.body) | contextFunctionInterfaces | handler(request)\nmoreBadStuff(params, res) |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:23:12:23:27 | marked(req.body) | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:23:12:23:27 | marked(req.body) | enclosingFunctionBody | req res res send req body res send marked req body |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:23:12:23:27 | marked(req.body) | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:23:12:23:27 | marked(req.body) | fileImports | express markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:23:12:23:27 | marked(req.body) | fileImports | express hapi markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:23:12:23:27 | marked(req.body) | receiverName | res |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:23:19:23:26 | req.body | CalleeFlexibleAccessPath | marked |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:23:19:23:26 | req.body | InputArgumentIndex | 0 |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:23:19:23:26 | req.body | calleeImports | marked |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:23:19:23:26 | req.body | contextFunctionInterfaces | moreBadStuff(params, res) |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:23:19:23:26 | req.body | contextFunctionInterfaces | handler(request)\nmoreBadStuff(params, res) |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:23:19:23:26 | req.body | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:23:19:23:26 | req.body | enclosingFunctionBody | req res res send req body res send marked req body |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:23:19:23:26 | req.body | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:23:19:23:26 | req.body | fileImports | express markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:23:19:23:26 | req.body | fileImports | express hapi markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:27:21:27:36 | 'markdown-table' | CalleeFlexibleAccessPath | require |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:27:21:27:36 | 'markdown-table' | InputArgumentIndex | 0 |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:27:21:27:36 | 'markdown-table' | calleeImports |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:27:21:27:36 | 'markdown-table' | contextFunctionInterfaces | moreBadStuff(params, res) |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:27:21:27:36 | 'markdown-table' | contextFunctionInterfaces | handler(request)\nmoreBadStuff(params, res) |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:27:21:27:36 | 'markdown-table' | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:27:21:27:36 | 'markdown-table' | fileImports | express markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:27:21:27:36 | 'markdown-table' | fileImports | express hapi markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:28:9:28:19 | '/user/:id' | CalleeFlexibleAccessPath | app.get |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:28:9:28:19 | '/user/:id' | InputArgumentIndex | 0 |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:28:9:28:19 | '/user/:id' | calleeImports | express |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:28:9:28:19 | '/user/:id' | contextFunctionInterfaces | moreBadStuff(params, res) |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:28:9:28:19 | '/user/:id' | contextFunctionInterfaces | handler(request)\nmoreBadStuff(params, res) |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:28:9:28:19 | '/user/:id' | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:28:9:28:19 | '/user/:id' | fileImports | express markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:28:9:28:19 | '/user/:id' | fileImports | express hapi markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:28:9:28:19 | '/user/:id' | receiverName | app |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:28:22:35:1 | functio ... OT OK\\n} | CalleeFlexibleAccessPath | app.get |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:28:22:35:1 | functio ... OT OK\\n} | InputArgumentIndex | 1 |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:28:22:35:1 | functio ... OT OK\\n} | calleeImports | express |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:28:22:35:1 | functio ... OT OK\\n} | contextFunctionInterfaces | moreBadStuff(params, res) |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:28:22:35:1 | functio ... OT OK\\n} | contextFunctionInterfaces | handler(request)\nmoreBadStuff(params, res) |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:28:22:35:1 | functio ... OT OK\\n} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:28:22:35:1 | functio ... OT OK\\n} | fileImports | express markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:28:22:35:1 | functio ... OT OK\\n} | fileImports | express hapi markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:28:22:35:1 | functio ... OT OK\\n} | receiverName | app |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:29:12:29:19 | req.body | CalleeFlexibleAccessPath | res.send |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:29:12:29:19 | req.body | InputArgumentIndex | 0 |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:29:12:29:19 | req.body | contextFunctionInterfaces | moreBadStuff(params, res) |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:29:12:29:19 | req.body | contextFunctionInterfaces | handler(request)\nmoreBadStuff(params, res) |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:29:12:29:19 | req.body | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:29:12:29:19 | req.body | enclosingFunctionBody | req res res send req body mytable table Name Content body req body res send mytable |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:29:12:29:19 | req.body | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:29:12:29:19 | req.body | fileImports | express markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:29:12:29:19 | req.body | fileImports | express hapi markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:29:12:29:19 | req.body | receiverName | res |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:30:23:33:3 | [\\n    [ ... dy]\\n  ] | CalleeFlexibleAccessPath | table |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:30:23:33:3 | [\\n    [ ... dy]\\n  ] | InputArgumentIndex | 0 |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:30:23:33:3 | [\\n    [ ... dy]\\n  ] | calleeImports | markdown-table |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:30:23:33:3 | [\\n    [ ... dy]\\n  ] | contextFunctionInterfaces | moreBadStuff(params, res) |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:30:23:33:3 | [\\n    [ ... dy]\\n  ] | contextFunctionInterfaces | handler(request)\nmoreBadStuff(params, res) |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:30:23:33:3 | [\\n    [ ... dy]\\n  ] | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:30:23:33:3 | [\\n    [ ... dy]\\n  ] | enclosingFunctionBody | req res res send req body mytable table Name Content body req body res send mytable |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:30:23:33:3 | [\\n    [ ... dy]\\n  ] | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:30:23:33:3 | [\\n    [ ... dy]\\n  ] | fileImports | express markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:31:5:31:23 | ['Name', 'Content'] | contextFunctionInterfaces | moreBadStuff(params, res) |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:30:23:33:3 | [\\n    [ ... dy]\\n  ] | fileImports | express hapi markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:31:5:31:23 | ['Name', 'Content'] | contextFunctionInterfaces | handler(request)\nmoreBadStuff(params, res) |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:31:5:31:23 | ['Name', 'Content'] | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:31:5:31:23 | ['Name', 'Content'] | enclosingFunctionBody | req res res send req body mytable table Name Content body req body res send mytable |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:31:5:31:23 | ['Name', 'Content'] | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:31:5:31:23 | ['Name', 'Content'] | fileImports | express markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:31:6:31:11 | 'Name' | contextFunctionInterfaces | moreBadStuff(params, res) |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:31:5:31:23 | ['Name', 'Content'] | fileImports | express hapi markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:31:6:31:11 | 'Name' | contextFunctionInterfaces | handler(request)\nmoreBadStuff(params, res) |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:31:6:31:11 | 'Name' | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:31:6:31:11 | 'Name' | enclosingFunctionBody | req res res send req body mytable table Name Content body req body res send mytable |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:31:6:31:11 | 'Name' | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:31:6:31:11 | 'Name' | fileImports | express markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:31:14:31:22 | 'Content' | contextFunctionInterfaces | moreBadStuff(params, res) |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:31:6:31:11 | 'Name' | fileImports | express hapi markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:31:14:31:22 | 'Content' | contextFunctionInterfaces | handler(request)\nmoreBadStuff(params, res) |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:31:14:31:22 | 'Content' | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:31:14:31:22 | 'Content' | enclosingFunctionBody | req res res send req body mytable table Name Content body req body res send mytable |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:31:14:31:22 | 'Content' | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:31:14:31:22 | 'Content' | fileImports | express markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:32:5:32:22 | ['body', req.body] | contextFunctionInterfaces | moreBadStuff(params, res) |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:31:14:31:22 | 'Content' | fileImports | express hapi markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:32:5:32:22 | ['body', req.body] | contextFunctionInterfaces | handler(request)\nmoreBadStuff(params, res) |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:32:5:32:22 | ['body', req.body] | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:32:5:32:22 | ['body', req.body] | enclosingFunctionBody | req res res send req body mytable table Name Content body req body res send mytable |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:32:5:32:22 | ['body', req.body] | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:32:5:32:22 | ['body', req.body] | fileImports | express markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:32:6:32:11 | 'body' | contextFunctionInterfaces | moreBadStuff(params, res) |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:32:5:32:22 | ['body', req.body] | fileImports | express hapi markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:32:6:32:11 | 'body' | contextFunctionInterfaces | handler(request)\nmoreBadStuff(params, res) |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:32:6:32:11 | 'body' | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:32:6:32:11 | 'body' | enclosingFunctionBody | req res res send req body mytable table Name Content body req body res send mytable |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:32:6:32:11 | 'body' | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:32:6:32:11 | 'body' | fileImports | express markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:32:14:32:21 | req.body | contextFunctionInterfaces | moreBadStuff(params, res) |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:32:6:32:11 | 'body' | fileImports | express hapi markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:32:14:32:21 | req.body | contextFunctionInterfaces | handler(request)\nmoreBadStuff(params, res) |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:32:14:32:21 | req.body | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:32:14:32:21 | req.body | enclosingFunctionBody | req res res send req body mytable table Name Content body req body res send mytable |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:32:14:32:21 | req.body | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:32:14:32:21 | req.body | fileImports | express markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:32:14:32:21 | req.body | fileImports | express hapi markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:34:12:34:18 | mytable | CalleeFlexibleAccessPath | res.send |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:34:12:34:18 | mytable | InputArgumentIndex | 0 |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:34:12:34:18 | mytable | contextFunctionInterfaces | moreBadStuff(params, res) |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:34:12:34:18 | mytable | contextFunctionInterfaces | handler(request)\nmoreBadStuff(params, res) |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:34:12:34:18 | mytable | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:34:12:34:18 | mytable | enclosingFunctionBody | req res res send req body mytable table Name Content body req body res send mytable |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:34:12:34:18 | mytable | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:34:12:34:18 | mytable | fileImports | express markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:34:12:34:18 | mytable | fileImports | express hapi markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:34:12:34:18 | mytable | receiverName | res |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:37:25:37:34 | 'showdown' | CalleeFlexibleAccessPath | require |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:37:25:37:34 | 'showdown' | InputArgumentIndex | 0 |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:37:25:37:34 | 'showdown' | calleeImports |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:37:25:37:34 | 'showdown' | contextFunctionInterfaces | moreBadStuff(params, res) |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:37:25:37:34 | 'showdown' | contextFunctionInterfaces | handler(request)\nmoreBadStuff(params, res) |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:37:25:37:34 | 'showdown' | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:37:25:37:34 | 'showdown' | fileImports | express markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:37:25:37:34 | 'showdown' | fileImports | express hapi markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:40:9:40:19 | '/user/:id' | CalleeFlexibleAccessPath | app.get |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:40:9:40:19 | '/user/:id' | InputArgumentIndex | 0 |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:40:9:40:19 | '/user/:id' | calleeImports | express |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:40:9:40:19 | '/user/:id' | contextFunctionInterfaces | moreBadStuff(params, res) |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:40:9:40:19 | '/user/:id' | contextFunctionInterfaces | handler(request)\nmoreBadStuff(params, res) |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:40:9:40:19 | '/user/:id' | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:40:9:40:19 | '/user/:id' | fileImports | express markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:40:9:40:19 | '/user/:id' | fileImports | express hapi markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:40:9:40:19 | '/user/:id' | receiverName | app |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:40:22:43:1 | functio ... OT OK\\n} | CalleeFlexibleAccessPath | app.get |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:40:22:43:1 | functio ... OT OK\\n} | InputArgumentIndex | 1 |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:40:22:43:1 | functio ... OT OK\\n} | calleeImports | express |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:40:22:43:1 | functio ... OT OK\\n} | contextFunctionInterfaces | moreBadStuff(params, res) |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:40:22:43:1 | functio ... OT OK\\n} | contextFunctionInterfaces | handler(request)\nmoreBadStuff(params, res) |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:40:22:43:1 | functio ... OT OK\\n} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:40:22:43:1 | functio ... OT OK\\n} | fileImports | express markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:40:22:43:1 | functio ... OT OK\\n} | fileImports | express hapi markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:40:22:43:1 | functio ... OT OK\\n} | receiverName | app |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:41:12:41:19 | req.body | CalleeFlexibleAccessPath | res.send |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:41:12:41:19 | req.body | InputArgumentIndex | 0 |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:41:12:41:19 | req.body | contextFunctionInterfaces | moreBadStuff(params, res) |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:41:12:41:19 | req.body | contextFunctionInterfaces | handler(request)\nmoreBadStuff(params, res) |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:41:12:41:19 | req.body | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:41:12:41:19 | req.body | enclosingFunctionBody | req res res send req body res send converter makeHtml req body |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:41:12:41:19 | req.body | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:41:12:41:19 | req.body | fileImports | express markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:41:12:41:19 | req.body | fileImports | express hapi markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:41:12:41:19 | req.body | receiverName | res |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:42:12:42:39 | convert ... q.body) | CalleeFlexibleAccessPath | res.send |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:42:12:42:39 | convert ... q.body) | InputArgumentIndex | 0 |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:42:12:42:39 | convert ... q.body) | contextFunctionInterfaces | moreBadStuff(params, res) |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:42:12:42:39 | convert ... q.body) | contextFunctionInterfaces | handler(request)\nmoreBadStuff(params, res) |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:42:12:42:39 | convert ... q.body) | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:42:12:42:39 | convert ... q.body) | enclosingFunctionBody | req res res send req body res send converter makeHtml req body |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:42:12:42:39 | convert ... q.body) | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:42:12:42:39 | convert ... q.body) | fileImports | express markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:42:12:42:39 | convert ... q.body) | fileImports | express hapi markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:42:12:42:39 | convert ... q.body) | receiverName | res |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:42:31:42:38 | req.body | CalleeFlexibleAccessPath | converter.makeHtml |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:42:31:42:38 | req.body | InputArgumentIndex | 0 |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:42:31:42:38 | req.body | calleeImports | showdown |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:42:31:42:38 | req.body | contextFunctionInterfaces | moreBadStuff(params, res) |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:42:31:42:38 | req.body | contextFunctionInterfaces | handler(request)\nmoreBadStuff(params, res) |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:42:31:42:38 | req.body | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:42:31:42:38 | req.body | enclosingFunctionBody | req res res send req body res send converter makeHtml req body |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:42:31:42:38 | req.body | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:42:31:42:38 | req.body | fileImports | express markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:42:31:42:38 | req.body | fileImports | express hapi markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:42:31:42:38 | req.body | receiverName | converter |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:45:23:45:31 | 'unified' | CalleeFlexibleAccessPath | require |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:45:23:45:31 | 'unified' | InputArgumentIndex | 0 |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:45:23:45:31 | 'unified' | calleeImports |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:45:23:45:31 | 'unified' | contextFunctionInterfaces | moreBadStuff(params, res) |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:45:23:45:31 | 'unified' | contextFunctionInterfaces | handler(request)\nmoreBadStuff(params, res) |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:45:23:45:31 | 'unified' | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:45:23:45:31 | 'unified' | fileImports | express markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:45:23:45:31 | 'unified' | fileImports | express hapi markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:46:24:46:37 | 'remark-parse' | CalleeFlexibleAccessPath | require |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:46:24:46:37 | 'remark-parse' | InputArgumentIndex | 0 |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:46:24:46:37 | 'remark-parse' | calleeImports |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:46:24:46:37 | 'remark-parse' | contextFunctionInterfaces | moreBadStuff(params, res) |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:46:24:46:37 | 'remark-parse' | contextFunctionInterfaces | handler(request)\nmoreBadStuff(params, res) |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:46:24:46:37 | 'remark-parse' | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:46:24:46:37 | 'remark-parse' | fileImports | express markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:46:24:46:37 | 'remark-parse' | fileImports | express hapi markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:47:29:47:43 | 'remark-rehype' | CalleeFlexibleAccessPath | require |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:47:29:47:43 | 'remark-rehype' | InputArgumentIndex | 0 |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:47:29:47:43 | 'remark-rehype' | calleeImports |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:47:29:47:43 | 'remark-rehype' | contextFunctionInterfaces | moreBadStuff(params, res) |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:47:29:47:43 | 'remark-rehype' | contextFunctionInterfaces | handler(request)\nmoreBadStuff(params, res) |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:47:29:47:43 | 'remark-rehype' | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:47:29:47:43 | 'remark-rehype' | fileImports | express markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:47:29:47:43 | 'remark-rehype' | fileImports | express hapi markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:48:19:48:35 | 'rehype-document' | CalleeFlexibleAccessPath | require |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:48:19:48:35 | 'rehype-document' | InputArgumentIndex | 0 |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:48:19:48:35 | 'rehype-document' | calleeImports |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:48:19:48:35 | 'rehype-document' | contextFunctionInterfaces | moreBadStuff(params, res) |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:48:19:48:35 | 'rehype-document' | contextFunctionInterfaces | handler(request)\nmoreBadStuff(params, res) |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:48:19:48:35 | 'rehype-document' | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:48:19:48:35 | 'rehype-document' | fileImports | express markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:48:19:48:35 | 'rehype-document' | fileImports | express hapi markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:49:22:49:36 | 'rehype-format' | CalleeFlexibleAccessPath | require |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:49:22:49:36 | 'rehype-format' | InputArgumentIndex | 0 |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:49:22:49:36 | 'rehype-format' | calleeImports |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:49:22:49:36 | 'rehype-format' | contextFunctionInterfaces | moreBadStuff(params, res) |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:49:22:49:36 | 'rehype-format' | contextFunctionInterfaces | handler(request)\nmoreBadStuff(params, res) |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:49:22:49:36 | 'rehype-format' | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:49:22:49:36 | 'rehype-format' | fileImports | express markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:50:12:50:38 | require ... ngify') | contextFunctionInterfaces | moreBadStuff(params, res) |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:49:22:49:36 | 'rehype-format' | fileImports | express hapi markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:50:12:50:38 | require ... ngify') | contextFunctionInterfaces | handler(request)\nmoreBadStuff(params, res) |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:50:12:50:38 | require ... ngify') | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:50:12:50:38 | require ... ngify') | fileImports | express markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:50:12:50:38 | require ... ngify') | fileImports | express hapi markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:50:20:50:37 | 'rehype-stringify' | CalleeFlexibleAccessPath | require |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:50:20:50:37 | 'rehype-stringify' | InputArgumentIndex | 0 |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:50:20:50:37 | 'rehype-stringify' | calleeImports |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:50:20:50:37 | 'rehype-stringify' | contextFunctionInterfaces | moreBadStuff(params, res) |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:50:20:50:37 | 'rehype-stringify' | contextFunctionInterfaces | handler(request)\nmoreBadStuff(params, res) |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:50:20:50:37 | 'rehype-stringify' | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:50:20:50:37 | 'rehype-stringify' | fileImports | express markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:50:20:50:37 | 'rehype-stringify' | fileImports | express hapi markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:51:22:51:29 | "remark" | CalleeFlexibleAccessPath | require |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:51:22:51:29 | "remark" | InputArgumentIndex | 0 |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:51:22:51:29 | "remark" | calleeImports |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:51:22:51:29 | "remark" | contextFunctionInterfaces | moreBadStuff(params, res) |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:51:22:51:29 | "remark" | contextFunctionInterfaces | handler(request)\nmoreBadStuff(params, res) |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:51:22:51:29 | "remark" | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:51:22:51:29 | "remark" | fileImports | express markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:51:22:51:29 | "remark" | fileImports | express hapi markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:52:24:52:40 | "rehype-sanitize" | CalleeFlexibleAccessPath | require |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:52:24:52:40 | "rehype-sanitize" | InputArgumentIndex | 0 |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:52:24:52:40 | "rehype-sanitize" | calleeImports |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:52:24:52:40 | "rehype-sanitize" | contextFunctionInterfaces | moreBadStuff(params, res) |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:52:24:52:40 | "rehype-sanitize" | contextFunctionInterfaces | handler(request)\nmoreBadStuff(params, res) |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:52:24:52:40 | "rehype-sanitize" | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:52:24:52:40 | "rehype-sanitize" | fileImports | express markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:52:24:52:40 | "rehype-sanitize" | fileImports | express hapi markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:53:37:53:46 | 'showdown' | CalleeFlexibleAccessPath | require |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:53:37:53:46 | 'showdown' | InputArgumentIndex | 0 |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:53:37:53:46 | 'showdown' | calleeImports |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:53:37:53:46 | 'showdown' | contextFunctionInterfaces | moreBadStuff(params, res) |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:53:37:53:46 | 'showdown' | contextFunctionInterfaces | handler(request)\nmoreBadStuff(params, res) |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:53:37:53:46 | 'showdown' | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:53:37:53:46 | 'showdown' | fileImports | express markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:53:37:53:46 | 'showdown' | fileImports | express hapi markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:55:9:55:19 | '/user/:id' | CalleeFlexibleAccessPath | app.get |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:55:9:55:19 | '/user/:id' | InputArgumentIndex | 0 |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:55:9:55:19 | '/user/:id' | calleeImports | express |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:55:9:55:19 | '/user/:id' | contextFunctionInterfaces | moreBadStuff(params, res) |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:55:9:55:19 | '/user/:id' | contextFunctionInterfaces | handler(request)\nmoreBadStuff(params, res) |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:55:9:55:19 | '/user/:id' | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:55:9:55:19 | '/user/:id' | fileImports | express markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:55:9:55:19 | '/user/:id' | fileImports | express hapi markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:55:9:55:19 | '/user/:id' | receiverName | app |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:55:22:77:1 | functio ... \\n  })\\n} | CalleeFlexibleAccessPath | app.get |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:55:22:77:1 | functio ... \\n  })\\n} | InputArgumentIndex | 1 |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:55:22:77:1 | functio ... \\n  })\\n} | calleeImports | express |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:55:22:77:1 | functio ... \\n  })\\n} | contextFunctionInterfaces | moreBadStuff(params, res) |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:55:22:77:1 | functio ... \\n  })\\n} | contextFunctionInterfaces | handler(request)\nmoreBadStuff(params, res) |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:55:22:77:1 | functio ... \\n  })\\n} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:55:22:77:1 | functio ... \\n  })\\n} | fileImports | express markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:55:22:77:1 | functio ... \\n  })\\n} | fileImports | express hapi markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:55:22:77:1 | functio ... \\n  })\\n} | receiverName | app |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:56:12:56:19 | req.body | CalleeFlexibleAccessPath | res.send |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:56:12:56:19 | req.body | InputArgumentIndex | 0 |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:56:12:56:19 | req.body | contextFunctionInterfaces | moreBadStuff(params, res) |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:56:12:56:19 | req.body | contextFunctionInterfaces | handler(request)\nmoreBadStuff(params, res) |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:56:12:56:19 | req.body | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:56:12:56:19 | req.body | enclosingFunctionBody | req res res send req body unified use markdown use remark2rehype use doc title \ud83d\udc4b\ud83c\udf0d use format use html process req body err file res send file res send remark processSync req body toString res send remark use sanitize processSync req body toString res send unified use markdown processSync req body toString remark process req body e f res send f |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:56:12:56:19 | req.body | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:56:12:56:19 | req.body | fileImports | express markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:56:12:56:19 | req.body | fileImports | express hapi markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:56:12:56:19 | req.body | receiverName | res |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:59:10:59:17 | markdown | CalleeFlexibleAccessPath | unified().use |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:59:10:59:17 | markdown | InputArgumentIndex | 0 |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:59:10:59:17 | markdown | calleeImports | unified |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:59:10:59:17 | markdown | contextFunctionInterfaces | moreBadStuff(params, res) |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:59:10:59:17 | markdown | contextFunctionInterfaces | handler(request)\nmoreBadStuff(params, res) |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:59:10:59:17 | markdown | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:59:10:59:17 | markdown | enclosingFunctionBody | req res res send req body unified use markdown use remark2rehype use doc title \ud83d\udc4b\ud83c\udf0d use format use html process req body err file res send file res send remark processSync req body toString res send remark use sanitize processSync req body toString res send unified use markdown processSync req body toString remark process req body e f res send f |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:59:10:59:17 | markdown | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:59:10:59:17 | markdown | fileImports | express markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:59:10:59:17 | markdown | fileImports | express hapi markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:60:10:60:22 | remark2rehype | CalleeFlexibleAccessPath | unified().use().use |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:60:10:60:22 | remark2rehype | InputArgumentIndex | 0 |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:60:10:60:22 | remark2rehype | calleeImports | unified |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:60:10:60:22 | remark2rehype | contextFunctionInterfaces | moreBadStuff(params, res) |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:60:10:60:22 | remark2rehype | contextFunctionInterfaces | handler(request)\nmoreBadStuff(params, res) |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:60:10:60:22 | remark2rehype | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:60:10:60:22 | remark2rehype | enclosingFunctionBody | req res res send req body unified use markdown use remark2rehype use doc title \ud83d\udc4b\ud83c\udf0d use format use html process req body err file res send file res send remark processSync req body toString res send remark use sanitize processSync req body toString res send unified use markdown processSync req body toString remark process req body e f res send f |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:60:10:60:22 | remark2rehype | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:60:10:60:22 | remark2rehype | fileImports | express markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:60:10:60:22 | remark2rehype | fileImports | express hapi markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:61:10:61:12 | doc | CalleeFlexibleAccessPath | unified().use().use().use |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:61:10:61:12 | doc | InputArgumentIndex | 0 |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:61:10:61:12 | doc | calleeImports | unified |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:61:10:61:12 | doc | contextFunctionInterfaces | moreBadStuff(params, res) |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:61:10:61:12 | doc | contextFunctionInterfaces | handler(request)\nmoreBadStuff(params, res) |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:61:10:61:12 | doc | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:61:10:61:12 | doc | enclosingFunctionBody | req res res send req body unified use markdown use remark2rehype use doc title \ud83d\udc4b\ud83c\udf0d use format use html process req body err file res send file res send remark processSync req body toString res send remark use sanitize processSync req body toString res send unified use markdown processSync req body toString remark process req body e f res send f |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:61:10:61:12 | doc | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:61:10:61:12 | doc | fileImports | express markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:61:10:61:12 | doc | fileImports | express hapi markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:61:15:61:31 | { title: '\\u1f44b\\udc4b\\u1f30d\\udf0d' } | CalleeFlexibleAccessPath | unified().use().use().use |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:61:15:61:31 | { title: '\\u1f44b\\udc4b\\u1f30d\\udf0d' } | InputArgumentIndex | 1 |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:61:15:61:31 | { title: '\\u1f44b\\udc4b\\u1f30d\\udf0d' } | calleeImports | unified |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:61:15:61:31 | { title: '\\u1f44b\\udc4b\\u1f30d\\udf0d' } | contextFunctionInterfaces | moreBadStuff(params, res) |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:61:15:61:31 | { title: '\\u1f44b\\udc4b\\u1f30d\\udf0d' } | contextFunctionInterfaces | handler(request)\nmoreBadStuff(params, res) |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:61:15:61:31 | { title: '\\u1f44b\\udc4b\\u1f30d\\udf0d' } | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:61:15:61:31 | { title: '\\u1f44b\\udc4b\\u1f30d\\udf0d' } | enclosingFunctionBody | req res res send req body unified use markdown use remark2rehype use doc title \ud83d\udc4b\ud83c\udf0d use format use html process req body err file res send file res send remark processSync req body toString res send remark use sanitize processSync req body toString res send unified use markdown processSync req body toString remark process req body e f res send f |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:61:15:61:31 | { title: '\\u1f44b\\udc4b\\u1f30d\\udf0d' } | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:61:15:61:31 | { title: '\\u1f44b\\udc4b\\u1f30d\\udf0d' } | fileImports | express markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:61:15:61:31 | { title: '\\u1f44b\\udc4b\\u1f30d\\udf0d' } | fileImports | express hapi markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:61:24:61:29 | '\\u1f44b\\udc4b\\u1f30d\\udf0d' | CalleeFlexibleAccessPath | unified().use().use().use |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:61:24:61:29 | '\\u1f44b\\udc4b\\u1f30d\\udf0d' | InputAccessPathFromCallee | 1.title |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:61:24:61:29 | '\\u1f44b\\udc4b\\u1f30d\\udf0d' | InputArgumentIndex | 1 |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:61:24:61:29 | '\\u1f44b\\udc4b\\u1f30d\\udf0d' | assignedToPropName | title |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:61:24:61:29 | '\\u1f44b\\udc4b\\u1f30d\\udf0d' | calleeImports | unified |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:61:24:61:29 | '\\u1f44b\\udc4b\\u1f30d\\udf0d' | contextFunctionInterfaces | moreBadStuff(params, res) |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:61:24:61:29 | '\\u1f44b\\udc4b\\u1f30d\\udf0d' | contextFunctionInterfaces | handler(request)\nmoreBadStuff(params, res) |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:61:24:61:29 | '\\u1f44b\\udc4b\\u1f30d\\udf0d' | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:61:24:61:29 | '\\u1f44b\\udc4b\\u1f30d\\udf0d' | enclosingFunctionBody | req res res send req body unified use markdown use remark2rehype use doc title \ud83d\udc4b\ud83c\udf0d use format use html process req body err file res send file res send remark processSync req body toString res send remark use sanitize processSync req body toString res send unified use markdown processSync req body toString remark process req body e f res send f |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:61:24:61:29 | '\\u1f44b\\udc4b\\u1f30d\\udf0d' | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:61:24:61:29 | '\\u1f44b\\udc4b\\u1f30d\\udf0d' | fileImports | express markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:61:24:61:29 | '\\u1f44b\\udc4b\\u1f30d\\udf0d' | fileImports | express hapi markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:62:10:62:15 | format | CalleeFlexibleAccessPath | unified().use().use().use().use |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:62:10:62:15 | format | InputArgumentIndex | 0 |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:62:10:62:15 | format | calleeImports | unified |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:62:10:62:15 | format | contextFunctionInterfaces | moreBadStuff(params, res) |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:62:10:62:15 | format | contextFunctionInterfaces | handler(request)\nmoreBadStuff(params, res) |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:62:10:62:15 | format | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:62:10:62:15 | format | enclosingFunctionBody | req res res send req body unified use markdown use remark2rehype use doc title \ud83d\udc4b\ud83c\udf0d use format use html process req body err file res send file res send remark processSync req body toString res send remark use sanitize processSync req body toString res send unified use markdown processSync req body toString remark process req body e f res send f |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:62:10:62:15 | format | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:62:10:62:15 | format | fileImports | express markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:62:10:62:15 | format | fileImports | express hapi markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:63:10:63:13 | html | CalleeFlexibleAccessPath | unified().use().use().use().use().use |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:63:10:63:13 | html | InputArgumentIndex | 0 |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:63:10:63:13 | html | calleeImports | unified |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:63:10:63:13 | html | contextFunctionInterfaces | moreBadStuff(params, res) |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:63:10:63:13 | html | contextFunctionInterfaces | handler(request)\nmoreBadStuff(params, res) |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:63:10:63:13 | html | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:63:10:63:13 | html | enclosingFunctionBody | req res res send req body unified use markdown use remark2rehype use doc title \ud83d\udc4b\ud83c\udf0d use format use html process req body err file res send file res send remark processSync req body toString res send remark use sanitize processSync req body toString res send unified use markdown processSync req body toString remark process req body e f res send f |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:63:10:63:13 | html | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:63:10:63:13 | html | fileImports | express markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:63:10:63:13 | html | fileImports | express hapi markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:64:14:64:21 | req.body | CalleeFlexibleAccessPath | unified().use().use().use().use().use().process |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:64:14:64:21 | req.body | InputArgumentIndex | 0 |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:64:14:64:21 | req.body | calleeImports | unified |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:64:14:64:21 | req.body | contextFunctionInterfaces | moreBadStuff(params, res) |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:64:14:64:21 | req.body | contextFunctionInterfaces | handler(request)\nmoreBadStuff(params, res) |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:64:14:64:21 | req.body | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:64:14:64:21 | req.body | enclosingFunctionBody | req res res send req body unified use markdown use remark2rehype use doc title \ud83d\udc4b\ud83c\udf0d use format use html process req body err file res send file res send remark processSync req body toString res send remark use sanitize processSync req body toString res send unified use markdown processSync req body toString remark process req body e f res send f |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:64:14:64:21 | req.body | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:64:14:64:21 | req.body | fileImports | express markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:64:14:64:21 | req.body | fileImports | express hapi markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:64:24:66:5 | functio ... K\\n    } | CalleeFlexibleAccessPath | unified().use().use().use().use().use().process |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:64:24:66:5 | functio ... K\\n    } | InputArgumentIndex | 1 |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:64:24:66:5 | functio ... K\\n    } | calleeImports | unified |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:64:24:66:5 | functio ... K\\n    } | contextFunctionInterfaces | moreBadStuff(params, res) |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:64:24:66:5 | functio ... K\\n    } | contextFunctionInterfaces | handler(request)\nmoreBadStuff(params, res) |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:64:24:66:5 | functio ... K\\n    } | contextSurroundingFunctionParameters | (req, res)\n(err, file) |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:64:24:66:5 | functio ... K\\n    } | enclosingFunctionBody | req res res send req body unified use markdown use remark2rehype use doc title \ud83d\udc4b\ud83c\udf0d use format use html process req body err file res send file res send remark processSync req body toString res send remark use sanitize processSync req body toString res send unified use markdown processSync req body toString remark process req body e f res send f |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:64:24:66:5 | functio ... K\\n    } | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:64:24:66:5 | functio ... K\\n    } | fileImports | express markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:64:24:66:5 | functio ... K\\n    } | fileImports | express hapi markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:65:16:65:19 | file | CalleeFlexibleAccessPath | res.send |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:65:16:65:19 | file | InputArgumentIndex | 0 |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:65:16:65:19 | file | contextFunctionInterfaces | moreBadStuff(params, res) |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:65:16:65:19 | file | contextFunctionInterfaces | handler(request)\nmoreBadStuff(params, res) |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:65:16:65:19 | file | contextSurroundingFunctionParameters | (req, res)\n(err, file) |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:65:16:65:19 | file | enclosingFunctionBody | req res res send req body unified use markdown use remark2rehype use doc title \ud83d\udc4b\ud83c\udf0d use format use html process req body err file res send file res send remark processSync req body toString res send remark use sanitize processSync req body toString res send unified use markdown processSync req body toString remark process req body e f res send f |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:65:16:65:19 | file | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:65:16:65:19 | file | fileImports | express markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:65:16:65:19 | file | fileImports | express hapi markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:65:16:65:19 | file | receiverName | res |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:68:12:68:52 | remark( ... tring() | CalleeFlexibleAccessPath | res.send |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:68:12:68:52 | remark( ... tring() | InputArgumentIndex | 0 |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:68:12:68:52 | remark( ... tring() | contextFunctionInterfaces | moreBadStuff(params, res) |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:68:12:68:52 | remark( ... tring() | contextFunctionInterfaces | handler(request)\nmoreBadStuff(params, res) |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:68:12:68:52 | remark( ... tring() | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:68:12:68:52 | remark( ... tring() | enclosingFunctionBody | req res res send req body unified use markdown use remark2rehype use doc title \ud83d\udc4b\ud83c\udf0d use format use html process req body err file res send file res send remark processSync req body toString res send remark use sanitize processSync req body toString res send unified use markdown processSync req body toString remark process req body e f res send f |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:68:12:68:52 | remark( ... tring() | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:68:12:68:52 | remark( ... tring() | fileImports | express markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:68:12:68:52 | remark( ... tring() | fileImports | express hapi markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:68:12:68:52 | remark( ... tring() | receiverName | res |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:68:33:68:40 | req.body | CalleeFlexibleAccessPath | remark().processSync |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:68:33:68:40 | req.body | InputArgumentIndex | 0 |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:68:33:68:40 | req.body | calleeImports | remark |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:68:33:68:40 | req.body | contextFunctionInterfaces | moreBadStuff(params, res) |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:68:33:68:40 | req.body | contextFunctionInterfaces | handler(request)\nmoreBadStuff(params, res) |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:68:33:68:40 | req.body | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:68:33:68:40 | req.body | enclosingFunctionBody | req res res send req body unified use markdown use remark2rehype use doc title \ud83d\udc4b\ud83c\udf0d use format use html process req body err file res send file res send remark processSync req body toString res send remark use sanitize processSync req body toString res send unified use markdown processSync req body toString remark process req body e f res send f |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:68:33:68:40 | req.body | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:68:33:68:40 | req.body | fileImports | express markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:68:33:68:40 | req.body | fileImports | express hapi markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:70:12:70:66 | remark( ... tring() | CalleeFlexibleAccessPath | res.send |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:70:12:70:66 | remark( ... tring() | InputArgumentIndex | 0 |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:70:12:70:66 | remark( ... tring() | contextFunctionInterfaces | moreBadStuff(params, res) |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:70:12:70:66 | remark( ... tring() | contextFunctionInterfaces | handler(request)\nmoreBadStuff(params, res) |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:70:12:70:66 | remark( ... tring() | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:70:12:70:66 | remark( ... tring() | enclosingFunctionBody | req res res send req body unified use markdown use remark2rehype use doc title \ud83d\udc4b\ud83c\udf0d use format use html process req body err file res send file res send remark processSync req body toString res send remark use sanitize processSync req body toString res send unified use markdown processSync req body toString remark process req body e f res send f |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:70:12:70:66 | remark( ... tring() | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:70:12:70:66 | remark( ... tring() | fileImports | express markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:70:12:70:66 | remark( ... tring() | fileImports | express hapi markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:70:12:70:66 | remark( ... tring() | receiverName | res |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:70:25:70:32 | sanitize | CalleeFlexibleAccessPath | remark().use |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:70:25:70:32 | sanitize | InputArgumentIndex | 0 |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:70:25:70:32 | sanitize | calleeImports | remark |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:70:25:70:32 | sanitize | contextFunctionInterfaces | moreBadStuff(params, res) |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:70:25:70:32 | sanitize | contextFunctionInterfaces | handler(request)\nmoreBadStuff(params, res) |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:70:25:70:32 | sanitize | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:70:25:70:32 | sanitize | enclosingFunctionBody | req res res send req body unified use markdown use remark2rehype use doc title \ud83d\udc4b\ud83c\udf0d use format use html process req body err file res send file res send remark processSync req body toString res send remark use sanitize processSync req body toString res send unified use markdown processSync req body toString remark process req body e f res send f |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:70:25:70:32 | sanitize | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:70:25:70:32 | sanitize | fileImports | express markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:70:25:70:32 | sanitize | fileImports | express hapi markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:70:47:70:54 | req.body | CalleeFlexibleAccessPath | remark().use().processSync |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:70:47:70:54 | req.body | InputArgumentIndex | 0 |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:70:47:70:54 | req.body | calleeImports | remark |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:70:47:70:54 | req.body | contextFunctionInterfaces | moreBadStuff(params, res) |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:70:47:70:54 | req.body | contextFunctionInterfaces | handler(request)\nmoreBadStuff(params, res) |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:70:47:70:54 | req.body | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:70:47:70:54 | req.body | enclosingFunctionBody | req res res send req body unified use markdown use remark2rehype use doc title \ud83d\udc4b\ud83c\udf0d use format use html process req body err file res send file res send remark processSync req body toString res send remark use sanitize processSync req body toString res send unified use markdown processSync req body toString remark process req body e f res send f |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:70:47:70:54 | req.body | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:70:47:70:54 | req.body | fileImports | express markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:70:47:70:54 | req.body | fileImports | express hapi markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:72:12:72:65 | unified ... oString | CalleeFlexibleAccessPath | res.send |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:72:12:72:65 | unified ... oString | InputArgumentIndex | 0 |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:72:12:72:65 | unified ... oString | contextFunctionInterfaces | moreBadStuff(params, res) |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:72:12:72:65 | unified ... oString | contextFunctionInterfaces | handler(request)\nmoreBadStuff(params, res) |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:72:12:72:65 | unified ... oString | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:72:12:72:65 | unified ... oString | enclosingFunctionBody | req res res send req body unified use markdown use remark2rehype use doc title \ud83d\udc4b\ud83c\udf0d use format use html process req body err file res send file res send remark processSync req body toString res send remark use sanitize processSync req body toString res send unified use markdown processSync req body toString remark process req body e f res send f |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:72:12:72:65 | unified ... oString | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:72:12:72:65 | unified ... oString | fileImports | express markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:72:12:72:65 | unified ... oString | fileImports | express hapi markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:72:12:72:65 | unified ... oString | receiverName | res |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:72:26:72:33 | markdown | CalleeFlexibleAccessPath | unified().use |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:72:26:72:33 | markdown | InputArgumentIndex | 0 |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:72:26:72:33 | markdown | calleeImports | unified |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:72:26:72:33 | markdown | contextFunctionInterfaces | moreBadStuff(params, res) |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:72:26:72:33 | markdown | contextFunctionInterfaces | handler(request)\nmoreBadStuff(params, res) |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:72:26:72:33 | markdown | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:72:26:72:33 | markdown | enclosingFunctionBody | req res res send req body unified use markdown use remark2rehype use doc title \ud83d\udc4b\ud83c\udf0d use format use html process req body err file res send file res send remark processSync req body toString res send remark use sanitize processSync req body toString res send unified use markdown processSync req body toString remark process req body e f res send f |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:72:26:72:33 | markdown | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:72:26:72:33 | markdown | fileImports | express markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:72:26:72:33 | markdown | fileImports | express hapi markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:72:48:72:55 | req.body | CalleeFlexibleAccessPath | unified().use().processSync |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:72:48:72:55 | req.body | InputArgumentIndex | 0 |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:72:48:72:55 | req.body | calleeImports | unified |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:72:48:72:55 | req.body | contextFunctionInterfaces | moreBadStuff(params, res) |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:72:48:72:55 | req.body | contextFunctionInterfaces | handler(request)\nmoreBadStuff(params, res) |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:72:48:72:55 | req.body | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:72:48:72:55 | req.body | enclosingFunctionBody | req res res send req body unified use markdown use remark2rehype use doc title \ud83d\udc4b\ud83c\udf0d use format use html process req body err file res send file res send remark processSync req body toString res send remark use sanitize processSync req body toString res send unified use markdown processSync req body toString remark process req body e f res send f |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:72:48:72:55 | req.body | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:72:48:72:55 | req.body | fileImports | express markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:72:48:72:55 | req.body | fileImports | express hapi markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:74:20:74:27 | req.body | CalleeFlexibleAccessPath | remark().process |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:74:20:74:27 | req.body | InputArgumentIndex | 0 |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:74:20:74:27 | req.body | calleeImports | remark |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:74:20:74:27 | req.body | contextFunctionInterfaces | moreBadStuff(params, res) |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:74:20:74:27 | req.body | contextFunctionInterfaces | handler(request)\nmoreBadStuff(params, res) |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:74:20:74:27 | req.body | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:74:20:74:27 | req.body | enclosingFunctionBody | req res res send req body unified use markdown use remark2rehype use doc title \ud83d\udc4b\ud83c\udf0d use format use html process req body err file res send file res send remark processSync req body toString res send remark use sanitize processSync req body toString res send unified use markdown processSync req body toString remark process req body e f res send f |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:74:20:74:27 | req.body | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:74:20:74:27 | req.body | fileImports | express markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:74:20:74:27 | req.body | fileImports | express hapi markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:74:30:76:3 | (e, f)  ...  OK\\n  } | CalleeFlexibleAccessPath | remark().process |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:74:30:76:3 | (e, f)  ...  OK\\n  } | InputArgumentIndex | 1 |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:74:30:76:3 | (e, f)  ...  OK\\n  } | calleeImports | remark |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:74:30:76:3 | (e, f)  ...  OK\\n  } | contextFunctionInterfaces | moreBadStuff(params, res) |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:74:30:76:3 | (e, f)  ...  OK\\n  } | contextFunctionInterfaces | handler(request)\nmoreBadStuff(params, res) |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:74:30:76:3 | (e, f)  ...  OK\\n  } | contextSurroundingFunctionParameters | (req, res)\n(e, f) |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:74:30:76:3 | (e, f)  ...  OK\\n  } | enclosingFunctionBody | req res res send req body unified use markdown use remark2rehype use doc title \ud83d\udc4b\ud83c\udf0d use format use html process req body err file res send file res send remark processSync req body toString res send remark use sanitize processSync req body toString res send unified use markdown processSync req body toString remark process req body e f res send f |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:74:30:76:3 | (e, f)  ...  OK\\n  } | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:74:30:76:3 | (e, f)  ...  OK\\n  } | fileImports | express markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:74:30:76:3 | (e, f)  ...  OK\\n  } | fileImports | express hapi markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:75:14:75:14 | f | CalleeFlexibleAccessPath | res.send |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:75:14:75:14 | f | InputArgumentIndex | 0 |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:75:14:75:14 | f | contextFunctionInterfaces | moreBadStuff(params, res) |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:75:14:75:14 | f | contextFunctionInterfaces | handler(request)\nmoreBadStuff(params, res) |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:75:14:75:14 | f | contextSurroundingFunctionParameters | (req, res)\n(e, f) |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:75:14:75:14 | f | enclosingFunctionBody | req res res send req body unified use markdown use remark2rehype use doc title \ud83d\udc4b\ud83c\udf0d use format use html process req body err file res send file res send remark processSync req body toString res send remark use sanitize processSync req body toString res send unified use markdown processSync req body toString remark process req body e f res send f |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:75:14:75:14 | f | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:75:14:75:14 | f | fileImports | express markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:75:14:75:14 | f | fileImports | express hapi markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:75:14:75:14 | f | receiverName | res |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:80:26:80:36 | "snarkdown" | CalleeFlexibleAccessPath | require |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:80:26:80:36 | "snarkdown" | InputArgumentIndex | 0 |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:80:26:80:36 | "snarkdown" | calleeImports |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:80:26:80:36 | "snarkdown" | contextFunctionInterfaces | moreBadStuff(params, res) |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:80:26:80:36 | "snarkdown" | contextFunctionInterfaces | handler(request)\nmoreBadStuff(params, res) |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:80:26:80:36 | "snarkdown" | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:80:26:80:36 | "snarkdown" | fileImports | express markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:80:26:80:36 | "snarkdown" | fileImports | express hapi markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:82:9:82:19 | '/user/:id' | CalleeFlexibleAccessPath | app.get |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:82:9:82:19 | '/user/:id' | InputArgumentIndex | 0 |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:82:9:82:19 | '/user/:id' | calleeImports | express |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:82:9:82:19 | '/user/:id' | contextFunctionInterfaces | moreBadStuff(params, res) |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:82:9:82:19 | '/user/:id' | contextFunctionInterfaces | handler(request)\nmoreBadStuff(params, res) |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:82:9:82:19 | '/user/:id' | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:82:9:82:19 | '/user/:id' | fileImports | express markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:82:9:82:19 | '/user/:id' | fileImports | express hapi markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:82:9:82:19 | '/user/:id' | receiverName | app |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:82:22:86:1 | functio ... OT OK\\n} | CalleeFlexibleAccessPath | app.get |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:82:22:86:1 | functio ... OT OK\\n} | InputArgumentIndex | 1 |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:82:22:86:1 | functio ... OT OK\\n} | calleeImports | express |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:82:22:86:1 | functio ... OT OK\\n} | contextFunctionInterfaces | moreBadStuff(params, res) |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:82:22:86:1 | functio ... OT OK\\n} | contextFunctionInterfaces | handler(request)\nmoreBadStuff(params, res) |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:82:22:86:1 | functio ... OT OK\\n} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:82:22:86:1 | functio ... OT OK\\n} | fileImports | express markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:82:22:86:1 | functio ... OT OK\\n} | fileImports | express hapi markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:82:22:86:1 | functio ... OT OK\\n} | receiverName | app |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:83:12:83:19 | req.body | CalleeFlexibleAccessPath | res.send |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:83:12:83:19 | req.body | InputArgumentIndex | 0 |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:83:12:83:19 | req.body | contextFunctionInterfaces | moreBadStuff(params, res) |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:83:12:83:19 | req.body | contextFunctionInterfaces | handler(request)\nmoreBadStuff(params, res) |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:83:12:83:19 | req.body | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:83:12:83:19 | req.body | enclosingFunctionBody | req res res send req body res send snarkdown req body res send snarkdown2 req body |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:83:12:83:19 | req.body | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:83:12:83:19 | req.body | fileImports | express markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:83:12:83:19 | req.body | fileImports | express hapi markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:83:12:83:19 | req.body | receiverName | res |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:84:12:84:30 | snarkdown(req.body) | CalleeFlexibleAccessPath | res.send |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:84:12:84:30 | snarkdown(req.body) | InputArgumentIndex | 0 |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:84:12:84:30 | snarkdown(req.body) | contextFunctionInterfaces | moreBadStuff(params, res) |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:84:12:84:30 | snarkdown(req.body) | contextFunctionInterfaces | handler(request)\nmoreBadStuff(params, res) |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:84:12:84:30 | snarkdown(req.body) | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:84:12:84:30 | snarkdown(req.body) | enclosingFunctionBody | req res res send req body res send snarkdown req body res send snarkdown2 req body |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:84:12:84:30 | snarkdown(req.body) | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:84:12:84:30 | snarkdown(req.body) | fileImports | express markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:84:12:84:30 | snarkdown(req.body) | fileImports | express hapi markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:84:12:84:30 | snarkdown(req.body) | receiverName | res |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:84:22:84:29 | req.body | CalleeFlexibleAccessPath | snarkdown |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:84:22:84:29 | req.body | InputArgumentIndex | 0 |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:84:22:84:29 | req.body | calleeImports | snarkdown |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:84:22:84:29 | req.body | contextFunctionInterfaces | moreBadStuff(params, res) |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:84:22:84:29 | req.body | contextFunctionInterfaces | handler(request)\nmoreBadStuff(params, res) |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:84:22:84:29 | req.body | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:84:22:84:29 | req.body | enclosingFunctionBody | req res res send req body res send snarkdown req body res send snarkdown2 req body |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:84:22:84:29 | req.body | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:84:22:84:29 | req.body | fileImports | express markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:84:22:84:29 | req.body | fileImports | express hapi markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:85:12:85:31 | snarkdown2(req.body) | CalleeFlexibleAccessPath | res.send |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:85:12:85:31 | snarkdown2(req.body) | InputArgumentIndex | 0 |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:85:12:85:31 | snarkdown2(req.body) | contextFunctionInterfaces | moreBadStuff(params, res) |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:85:12:85:31 | snarkdown2(req.body) | contextFunctionInterfaces | handler(request)\nmoreBadStuff(params, res) |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:85:12:85:31 | snarkdown2(req.body) | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:85:12:85:31 | snarkdown2(req.body) | enclosingFunctionBody | req res res send req body res send snarkdown req body res send snarkdown2 req body |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:85:12:85:31 | snarkdown2(req.body) | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:85:12:85:31 | snarkdown2(req.body) | fileImports | express markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:85:12:85:31 | snarkdown2(req.body) | fileImports | express hapi markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:85:12:85:31 | snarkdown2(req.body) | receiverName | res |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:85:23:85:30 | req.body | CalleeFlexibleAccessPath | snarkdown2 |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:85:23:85:30 | req.body | InputArgumentIndex | 0 |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:85:23:85:30 | req.body | calleeImports | snarkdown |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:85:23:85:30 | req.body | contextFunctionInterfaces | moreBadStuff(params, res) |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:85:23:85:30 | req.body | contextFunctionInterfaces | handler(request)\nmoreBadStuff(params, res) |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:85:23:85:30 | req.body | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:85:23:85:30 | req.body | enclosingFunctionBody | req res res send req body res send snarkdown req body res send snarkdown2 req body |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:85:23:85:30 | req.body | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:85:23:85:30 | req.body | fileImports | express markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:85:23:85:30 | req.body | fileImports | express hapi markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:88:28:88:40 | 'markdown-it' | CalleeFlexibleAccessPath | require |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:88:28:88:40 | 'markdown-it' | InputArgumentIndex | 0 |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:88:28:88:40 | 'markdown-it' | calleeImports |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:88:28:88:40 | 'markdown-it' | contextFunctionInterfaces | moreBadStuff(params, res) |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:88:28:88:40 | 'markdown-it' | contextFunctionInterfaces | handler(request)\nmoreBadStuff(params, res) |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:88:28:88:40 | 'markdown-it' | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:88:28:88:40 | 'markdown-it' | fileImports | express markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:88:28:88:40 | 'markdown-it' | fileImports | express hapi markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:88:43:90:1 | {\\n  html: true\\n} | CalleeFlexibleAccessPath | import(!) |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:88:43:90:1 | {\\n  html: true\\n} | InputArgumentIndex | 0 |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:88:43:90:1 | {\\n  html: true\\n} | calleeImports | markdown-it |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:88:43:90:1 | {\\n  html: true\\n} | contextFunctionInterfaces | moreBadStuff(params, res) |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:88:43:90:1 | {\\n  html: true\\n} | contextFunctionInterfaces | handler(request)\nmoreBadStuff(params, res) |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:88:43:90:1 | {\\n  html: true\\n} | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:88:43:90:1 | {\\n  html: true\\n} | fileImports | express markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:88:43:90:1 | {\\n  html: true\\n} | fileImports | express hapi markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:89:9:89:12 | true | CalleeFlexibleAccessPath | import(!) |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:89:9:89:12 | true | InputAccessPathFromCallee | 0.html |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:89:9:89:12 | true | InputArgumentIndex | 0 |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:89:9:89:12 | true | assignedToPropName | html |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:89:9:89:12 | true | calleeImports | markdown-it |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:89:9:89:12 | true | contextFunctionInterfaces | moreBadStuff(params, res) |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:89:9:89:12 | true | contextFunctionInterfaces | handler(request)\nmoreBadStuff(params, res) |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:89:9:89:12 | true | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:89:9:89:12 | true | fileImports | express markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:89:9:89:12 | true | fileImports | express hapi markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:91:29:91:41 | 'markdown-it' | CalleeFlexibleAccessPath | require |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:91:29:91:41 | 'markdown-it' | InputArgumentIndex | 0 |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:91:29:91:41 | 'markdown-it' | calleeImports |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:91:29:91:41 | 'markdown-it' | contextFunctionInterfaces | moreBadStuff(params, res) |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:91:29:91:41 | 'markdown-it' | contextFunctionInterfaces | handler(request)\nmoreBadStuff(params, res) |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:91:29:91:41 | 'markdown-it' | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:91:29:91:41 | 'markdown-it' | fileImports | express markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:91:29:91:41 | 'markdown-it' | fileImports | express hapi markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:91:44:91:45 | {} | CalleeFlexibleAccessPath | import(!) |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:91:44:91:45 | {} | InputArgumentIndex | 0 |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:91:44:91:45 | {} | calleeImports | markdown-it |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:91:44:91:45 | {} | contextFunctionInterfaces | moreBadStuff(params, res) |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:91:44:91:45 | {} | contextFunctionInterfaces | handler(request)\nmoreBadStuff(params, res) |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:91:44:91:45 | {} | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:91:44:91:45 | {} | fileImports | express markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:91:44:91:45 | {} | fileImports | express hapi markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:93:29:93:41 | 'markdown-it' | CalleeFlexibleAccessPath | require |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:93:29:93:41 | 'markdown-it' | InputArgumentIndex | 0 |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:93:29:93:41 | 'markdown-it' | calleeImports |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:93:29:93:41 | 'markdown-it' | contextFunctionInterfaces | moreBadStuff(params, res) |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:93:29:93:41 | 'markdown-it' | contextFunctionInterfaces | handler(request)\nmoreBadStuff(params, res) |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:93:29:93:41 | 'markdown-it' | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:93:29:93:41 | 'markdown-it' | fileImports | express markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:93:29:93:41 | 'markdown-it' | fileImports | express hapi markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:93:44:93:55 | {html: true} | CalleeFlexibleAccessPath | import(!) |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:93:44:93:55 | {html: true} | InputArgumentIndex | 0 |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:93:44:93:55 | {html: true} | calleeImports | markdown-it |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:93:44:93:55 | {html: true} | contextFunctionInterfaces | moreBadStuff(params, res) |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:93:44:93:55 | {html: true} | contextFunctionInterfaces | handler(request)\nmoreBadStuff(params, res) |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:93:44:93:55 | {html: true} | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:93:44:93:55 | {html: true} | fileImports | express markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:93:44:93:55 | {html: true} | fileImports | express hapi markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:93:51:93:54 | true | CalleeFlexibleAccessPath | import(!) |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:93:51:93:54 | true | InputAccessPathFromCallee | 0.html |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:93:51:93:54 | true | InputArgumentIndex | 0 |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:93:51:93:54 | true | assignedToPropName | html |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:93:51:93:54 | true | calleeImports | markdown-it |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:93:51:93:54 | true | contextFunctionInterfaces | moreBadStuff(params, res) |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:93:51:93:54 | true | contextFunctionInterfaces | handler(request)\nmoreBadStuff(params, res) |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:93:51:93:54 | true | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:93:51:93:54 | true | fileImports | express markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:93:51:93:54 | true | fileImports | express hapi markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:94:8:94:41 | require ... ghtjs') | CalleeFlexibleAccessPath | import(!)().use |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:94:8:94:41 | require ... ghtjs') | InputArgumentIndex | 0 |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:94:8:94:41 | require ... ghtjs') | calleeImports | markdown-it |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:94:8:94:41 | require ... ghtjs') | contextFunctionInterfaces | moreBadStuff(params, res) |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:94:8:94:41 | require ... ghtjs') | contextFunctionInterfaces | handler(request)\nmoreBadStuff(params, res) |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:94:8:94:41 | require ... ghtjs') | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:94:8:94:41 | require ... ghtjs') | fileImports | express markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:94:8:94:41 | require ... ghtjs') | fileImports | express hapi markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:94:16:94:40 | 'markdo ... ightjs' | CalleeFlexibleAccessPath | require |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:94:16:94:40 | 'markdo ... ightjs' | InputArgumentIndex | 0 |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:94:16:94:40 | 'markdo ... ightjs' | calleeImports |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:94:16:94:40 | 'markdo ... ightjs' | contextFunctionInterfaces | moreBadStuff(params, res) |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:94:16:94:40 | 'markdo ... ightjs' | contextFunctionInterfaces | handler(request)\nmoreBadStuff(params, res) |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:94:16:94:40 | 'markdo ... ightjs' | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:94:16:94:40 | 'markdo ... ightjs' | fileImports | express markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:94:16:94:40 | 'markdo ... ightjs' | fileImports | express hapi markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:96:9:96:19 | '/user/:id' | CalleeFlexibleAccessPath | app.get |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:96:9:96:19 | '/user/:id' | InputArgumentIndex | 0 |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:96:9:96:19 | '/user/:id' | calleeImports | express |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:96:9:96:19 | '/user/:id' | contextFunctionInterfaces | moreBadStuff(params, res) |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:96:9:96:19 | '/user/:id' | contextFunctionInterfaces | handler(request)\nmoreBadStuff(params, res) |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:96:9:96:19 | '/user/:id' | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:96:9:96:19 | '/user/:id' | fileImports | express markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:96:9:96:19 | '/user/:id' | fileImports | express hapi markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:96:9:96:19 | '/user/:id' | receiverName | app |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:96:22:104:1 | functio ... OT OK\\n} | CalleeFlexibleAccessPath | app.get |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:96:22:104:1 | functio ... OT OK\\n} | InputArgumentIndex | 1 |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:96:22:104:1 | functio ... OT OK\\n} | calleeImports | express |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:96:22:104:1 | functio ... OT OK\\n} | contextFunctionInterfaces | moreBadStuff(params, res) |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:96:22:104:1 | functio ... OT OK\\n} | contextFunctionInterfaces | handler(request)\nmoreBadStuff(params, res) |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:96:22:104:1 | functio ... OT OK\\n} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:96:22:104:1 | functio ... OT OK\\n} | fileImports | express markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:96:22:104:1 | functio ... OT OK\\n} | fileImports | express hapi markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:96:22:104:1 | functio ... OT OK\\n} | receiverName | app |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:97:12:97:19 | req.body | CalleeFlexibleAccessPath | res.send |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:97:12:97:19 | req.body | InputArgumentIndex | 0 |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:97:12:97:19 | req.body | contextFunctionInterfaces | moreBadStuff(params, res) |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:97:12:97:19 | req.body | contextFunctionInterfaces | handler(request)\nmoreBadStuff(params, res) |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:97:12:97:19 | req.body | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:97:12:97:19 | req.body | enclosingFunctionBody | req res res send req body res send markdownIt render req body res send markdownIt2 render req body res send markdownIt3 render req body res send markdownIt use require markdown-it-sanitizer render req body res send markdownIt use require markdown-it-abbr use unknown render req body |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:97:12:97:19 | req.body | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:97:12:97:19 | req.body | fileImports | express markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:97:12:97:19 | req.body | fileImports | express hapi markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:97:12:97:19 | req.body | receiverName | res |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:98:12:98:38 | markdow ... q.body) | CalleeFlexibleAccessPath | res.send |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:98:12:98:38 | markdow ... q.body) | InputArgumentIndex | 0 |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:98:12:98:38 | markdow ... q.body) | contextFunctionInterfaces | moreBadStuff(params, res) |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:98:12:98:38 | markdow ... q.body) | contextFunctionInterfaces | handler(request)\nmoreBadStuff(params, res) |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:98:12:98:38 | markdow ... q.body) | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:98:12:98:38 | markdow ... q.body) | enclosingFunctionBody | req res res send req body res send markdownIt render req body res send markdownIt2 render req body res send markdownIt3 render req body res send markdownIt use require markdown-it-sanitizer render req body res send markdownIt use require markdown-it-abbr use unknown render req body |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:98:12:98:38 | markdow ... q.body) | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:98:12:98:38 | markdow ... q.body) | fileImports | express markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:98:12:98:38 | markdow ... q.body) | fileImports | express hapi markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:98:12:98:38 | markdow ... q.body) | receiverName | res |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:98:30:98:37 | req.body | CalleeFlexibleAccessPath | markdownIt.render |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:98:30:98:37 | req.body | InputArgumentIndex | 0 |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:98:30:98:37 | req.body | calleeImports | markdown-it |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:98:30:98:37 | req.body | contextFunctionInterfaces | moreBadStuff(params, res) |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:98:30:98:37 | req.body | contextFunctionInterfaces | handler(request)\nmoreBadStuff(params, res) |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:98:30:98:37 | req.body | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:98:30:98:37 | req.body | enclosingFunctionBody | req res res send req body res send markdownIt render req body res send markdownIt2 render req body res send markdownIt3 render req body res send markdownIt use require markdown-it-sanitizer render req body res send markdownIt use require markdown-it-abbr use unknown render req body |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:98:30:98:37 | req.body | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:98:30:98:37 | req.body | fileImports | express markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:98:30:98:37 | req.body | fileImports | express hapi markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:98:30:98:37 | req.body | receiverName | markdownIt |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:99:12:99:39 | markdow ... q.body) | CalleeFlexibleAccessPath | res.send |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:99:12:99:39 | markdow ... q.body) | InputArgumentIndex | 0 |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:99:12:99:39 | markdow ... q.body) | contextFunctionInterfaces | moreBadStuff(params, res) |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:99:12:99:39 | markdow ... q.body) | contextFunctionInterfaces | handler(request)\nmoreBadStuff(params, res) |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:99:12:99:39 | markdow ... q.body) | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:99:12:99:39 | markdow ... q.body) | enclosingFunctionBody | req res res send req body res send markdownIt render req body res send markdownIt2 render req body res send markdownIt3 render req body res send markdownIt use require markdown-it-sanitizer render req body res send markdownIt use require markdown-it-abbr use unknown render req body |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:99:12:99:39 | markdow ... q.body) | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:99:12:99:39 | markdow ... q.body) | fileImports | express markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:99:12:99:39 | markdow ... q.body) | fileImports | express hapi markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:99:12:99:39 | markdow ... q.body) | receiverName | res |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:99:31:99:38 | req.body | CalleeFlexibleAccessPath | markdownIt2.render |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:99:31:99:38 | req.body | InputArgumentIndex | 0 |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:99:31:99:38 | req.body | calleeImports | markdown-it |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:99:31:99:38 | req.body | contextFunctionInterfaces | moreBadStuff(params, res) |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:99:31:99:38 | req.body | contextFunctionInterfaces | handler(request)\nmoreBadStuff(params, res) |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:99:31:99:38 | req.body | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:99:31:99:38 | req.body | enclosingFunctionBody | req res res send req body res send markdownIt render req body res send markdownIt2 render req body res send markdownIt3 render req body res send markdownIt use require markdown-it-sanitizer render req body res send markdownIt use require markdown-it-abbr use unknown render req body |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:99:31:99:38 | req.body | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:99:31:99:38 | req.body | fileImports | express markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:99:31:99:38 | req.body | fileImports | express hapi markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:99:31:99:38 | req.body | receiverName | markdownIt2 |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:100:12:100:39 | markdow ... q.body) | CalleeFlexibleAccessPath | res.send |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:100:12:100:39 | markdow ... q.body) | InputArgumentIndex | 0 |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:100:12:100:39 | markdow ... q.body) | contextFunctionInterfaces | moreBadStuff(params, res) |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:100:12:100:39 | markdow ... q.body) | contextFunctionInterfaces | handler(request)\nmoreBadStuff(params, res) |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:100:12:100:39 | markdow ... q.body) | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:100:12:100:39 | markdow ... q.body) | enclosingFunctionBody | req res res send req body res send markdownIt render req body res send markdownIt2 render req body res send markdownIt3 render req body res send markdownIt use require markdown-it-sanitizer render req body res send markdownIt use require markdown-it-abbr use unknown render req body |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:100:12:100:39 | markdow ... q.body) | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:100:12:100:39 | markdow ... q.body) | fileImports | express markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:100:12:100:39 | markdow ... q.body) | fileImports | express hapi markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:100:12:100:39 | markdow ... q.body) | receiverName | res |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:100:31:100:38 | req.body | CalleeFlexibleAccessPath | markdownIt3.render |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:100:31:100:38 | req.body | InputArgumentIndex | 0 |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:100:31:100:38 | req.body | calleeImports | markdown-it |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:100:31:100:38 | req.body | contextFunctionInterfaces | moreBadStuff(params, res) |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:100:31:100:38 | req.body | contextFunctionInterfaces | handler(request)\nmoreBadStuff(params, res) |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:100:31:100:38 | req.body | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:100:31:100:38 | req.body | enclosingFunctionBody | req res res send req body res send markdownIt render req body res send markdownIt2 render req body res send markdownIt3 render req body res send markdownIt use require markdown-it-sanitizer render req body res send markdownIt use require markdown-it-abbr use unknown render req body |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:100:31:100:38 | req.body | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:100:31:100:38 | req.body | fileImports | express markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:100:31:100:38 | req.body | fileImports | express hapi markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:100:31:100:38 | req.body | receiverName | markdownIt3 |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:102:12:102:76 | markdow ... q.body) | CalleeFlexibleAccessPath | res.send |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:102:12:102:76 | markdow ... q.body) | InputArgumentIndex | 0 |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:102:12:102:76 | markdow ... q.body) | contextFunctionInterfaces | moreBadStuff(params, res) |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:102:12:102:76 | markdow ... q.body) | contextFunctionInterfaces | handler(request)\nmoreBadStuff(params, res) |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:102:12:102:76 | markdow ... q.body) | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:102:12:102:76 | markdow ... q.body) | enclosingFunctionBody | req res res send req body res send markdownIt render req body res send markdownIt2 render req body res send markdownIt3 render req body res send markdownIt use require markdown-it-sanitizer render req body res send markdownIt use require markdown-it-abbr use unknown render req body |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:102:12:102:76 | markdow ... q.body) | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:102:12:102:76 | markdow ... q.body) | fileImports | express markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:102:12:102:76 | markdow ... q.body) | fileImports | express hapi markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:102:12:102:76 | markdow ... q.body) | receiverName | res |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:102:27:102:58 | require ... tizer') | CalleeFlexibleAccessPath | markdownIt.use |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:102:27:102:58 | require ... tizer') | InputArgumentIndex | 0 |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:102:27:102:58 | require ... tizer') | calleeImports | markdown-it |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:102:27:102:58 | require ... tizer') | contextFunctionInterfaces | moreBadStuff(params, res) |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:102:27:102:58 | require ... tizer') | contextFunctionInterfaces | handler(request)\nmoreBadStuff(params, res) |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:102:27:102:58 | require ... tizer') | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:102:27:102:58 | require ... tizer') | enclosingFunctionBody | req res res send req body res send markdownIt render req body res send markdownIt2 render req body res send markdownIt3 render req body res send markdownIt use require markdown-it-sanitizer render req body res send markdownIt use require markdown-it-abbr use unknown render req body |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:102:27:102:58 | require ... tizer') | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:102:27:102:58 | require ... tizer') | fileImports | express markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:102:27:102:58 | require ... tizer') | fileImports | express hapi markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:102:27:102:58 | require ... tizer') | receiverName | markdownIt |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:102:35:102:57 | 'markdo ... itizer' | CalleeFlexibleAccessPath | require |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:102:35:102:57 | 'markdo ... itizer' | InputArgumentIndex | 0 |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:102:35:102:57 | 'markdo ... itizer' | calleeImports |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:102:35:102:57 | 'markdo ... itizer' | contextFunctionInterfaces | moreBadStuff(params, res) |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:102:35:102:57 | 'markdo ... itizer' | contextFunctionInterfaces | handler(request)\nmoreBadStuff(params, res) |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:102:35:102:57 | 'markdo ... itizer' | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:102:35:102:57 | 'markdo ... itizer' | enclosingFunctionBody | req res res send req body res send markdownIt render req body res send markdownIt2 render req body res send markdownIt3 render req body res send markdownIt use require markdown-it-sanitizer render req body res send markdownIt use require markdown-it-abbr use unknown render req body |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:102:35:102:57 | 'markdo ... itizer' | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:102:35:102:57 | 'markdo ... itizer' | fileImports | express markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:102:35:102:57 | 'markdo ... itizer' | fileImports | express hapi markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:102:68:102:75 | req.body | CalleeFlexibleAccessPath | markdownIt.use().render |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:102:68:102:75 | req.body | InputArgumentIndex | 0 |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:102:68:102:75 | req.body | calleeImports | markdown-it |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:102:68:102:75 | req.body | contextFunctionInterfaces | moreBadStuff(params, res) |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:102:68:102:75 | req.body | contextFunctionInterfaces | handler(request)\nmoreBadStuff(params, res) |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:102:68:102:75 | req.body | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:102:68:102:75 | req.body | enclosingFunctionBody | req res res send req body res send markdownIt render req body res send markdownIt2 render req body res send markdownIt3 render req body res send markdownIt use require markdown-it-sanitizer render req body res send markdownIt use require markdown-it-abbr use unknown render req body |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:102:68:102:75 | req.body | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:102:68:102:75 | req.body | fileImports | express markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:102:68:102:75 | req.body | fileImports | express hapi markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:103:12:103:84 | markdow ... q.body) | CalleeFlexibleAccessPath | res.send |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:103:12:103:84 | markdow ... q.body) | InputArgumentIndex | 0 |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:103:12:103:84 | markdow ... q.body) | contextFunctionInterfaces | moreBadStuff(params, res) |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:103:12:103:84 | markdow ... q.body) | contextFunctionInterfaces | handler(request)\nmoreBadStuff(params, res) |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:103:12:103:84 | markdow ... q.body) | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:103:12:103:84 | markdow ... q.body) | enclosingFunctionBody | req res res send req body res send markdownIt render req body res send markdownIt2 render req body res send markdownIt3 render req body res send markdownIt use require markdown-it-sanitizer render req body res send markdownIt use require markdown-it-abbr use unknown render req body |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:103:12:103:84 | markdow ... q.body) | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:103:12:103:84 | markdow ... q.body) | fileImports | express markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:103:12:103:84 | markdow ... q.body) | fileImports | express hapi markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:103:12:103:84 | markdow ... q.body) | receiverName | res |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:103:27:103:53 | require ... -abbr') | CalleeFlexibleAccessPath | markdownIt.use |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:103:27:103:53 | require ... -abbr') | InputArgumentIndex | 0 |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:103:27:103:53 | require ... -abbr') | calleeImports | markdown-it |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:103:27:103:53 | require ... -abbr') | contextFunctionInterfaces | moreBadStuff(params, res) |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:103:27:103:53 | require ... -abbr') | contextFunctionInterfaces | handler(request)\nmoreBadStuff(params, res) |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:103:27:103:53 | require ... -abbr') | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:103:27:103:53 | require ... -abbr') | enclosingFunctionBody | req res res send req body res send markdownIt render req body res send markdownIt2 render req body res send markdownIt3 render req body res send markdownIt use require markdown-it-sanitizer render req body res send markdownIt use require markdown-it-abbr use unknown render req body |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:103:27:103:53 | require ... -abbr') | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:103:27:103:53 | require ... -abbr') | fileImports | express markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:103:27:103:53 | require ... -abbr') | fileImports | express hapi markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:103:27:103:53 | require ... -abbr') | receiverName | markdownIt |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:103:35:103:52 | 'markdown-it-abbr' | CalleeFlexibleAccessPath | require |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:103:35:103:52 | 'markdown-it-abbr' | InputArgumentIndex | 0 |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:103:35:103:52 | 'markdown-it-abbr' | calleeImports |  |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:103:35:103:52 | 'markdown-it-abbr' | contextFunctionInterfaces | moreBadStuff(params, res) |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:103:35:103:52 | 'markdown-it-abbr' | contextFunctionInterfaces | handler(request)\nmoreBadStuff(params, res) |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:103:35:103:52 | 'markdown-it-abbr' | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:103:35:103:52 | 'markdown-it-abbr' | enclosingFunctionBody | req res res send req body res send markdownIt render req body res send markdownIt2 render req body res send markdownIt3 render req body res send markdownIt use require markdown-it-sanitizer render req body res send markdownIt use require markdown-it-abbr use unknown render req body |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:103:35:103:52 | 'markdown-it-abbr' | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:103:35:103:52 | 'markdown-it-abbr' | fileImports | express markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:103:35:103:52 | 'markdown-it-abbr' | fileImports | express hapi markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:103:60:103:66 | unknown | CalleeFlexibleAccessPath | markdownIt.use().use |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:103:60:103:66 | unknown | InputArgumentIndex | 0 |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:103:60:103:66 | unknown | calleeImports | markdown-it |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:103:60:103:66 | unknown | contextFunctionInterfaces | moreBadStuff(params, res) |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:103:60:103:66 | unknown | contextFunctionInterfaces | handler(request)\nmoreBadStuff(params, res) |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:103:60:103:66 | unknown | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:103:60:103:66 | unknown | enclosingFunctionBody | req res res send req body res send markdownIt render req body res send markdownIt2 render req body res send markdownIt3 render req body res send markdownIt use require markdown-it-sanitizer render req body res send markdownIt use require markdown-it-abbr use unknown render req body |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:103:60:103:66 | unknown | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:103:60:103:66 | unknown | fileImports | express markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:103:60:103:66 | unknown | fileImports | express hapi markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:103:76:103:83 | req.body | CalleeFlexibleAccessPath | markdownIt.use().use().render |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:103:76:103:83 | req.body | InputArgumentIndex | 0 |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:103:76:103:83 | req.body | calleeImports | markdown-it |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:103:76:103:83 | req.body | contextFunctionInterfaces | moreBadStuff(params, res) |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:103:76:103:83 | req.body | contextFunctionInterfaces | handler(request)\nmoreBadStuff(params, res) |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:103:76:103:83 | req.body | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:103:76:103:83 | req.body | enclosingFunctionBody | req res res send req body res send markdownIt render req body res send markdownIt2 render req body res send markdownIt3 render req body res send markdownIt use require markdown-it-sanitizer render req body res send markdownIt use require markdown-it-abbr use unknown render req body |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:103:76:103:83 | req.body | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/Xss/ReflectedXss/ReflectedXss.js:103:76:103:83 | req.body | fileImports | express markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:103:76:103:83 | req.body | fileImports | express hapi markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:106:20:106:25 | 'hapi' | CalleeFlexibleAccessPath | require |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:106:20:106:25 | 'hapi' | InputArgumentIndex | 0 |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:106:20:106:25 | 'hapi' | calleeImports |  |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:106:20:106:25 | 'hapi' | contextFunctionInterfaces | handler(request)\nmoreBadStuff(params, res) |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:106:20:106:25 | 'hapi' | contextSurroundingFunctionParameters |  |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:106:20:106:25 | 'hapi' | fileImports | express hapi markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:108:12:111:6 | {\\n    h ... \\n    }} | CalleeFlexibleAccessPath | hapi.route |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:108:12:111:6 | {\\n    h ... \\n    }} | InputArgumentIndex | 0 |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:108:12:111:6 | {\\n    h ... \\n    }} | calleeImports | hapi |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:108:12:111:6 | {\\n    h ... \\n    }} | contextFunctionInterfaces | handler(request)\nmoreBadStuff(params, res) |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:108:12:111:6 | {\\n    h ... \\n    }} | contextSurroundingFunctionParameters |  |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:108:12:111:6 | {\\n    h ... \\n    }} | fileImports | express hapi markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:108:12:111:6 | {\\n    h ... \\n    }} | receiverName | hapi |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:109:14:111:5 | functio ... K\\n    } | CalleeFlexibleAccessPath | hapi.route |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:109:14:111:5 | functio ... K\\n    } | InputAccessPathFromCallee | 0.handler |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:109:14:111:5 | functio ... K\\n    } | InputArgumentIndex | 0 |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:109:14:111:5 | functio ... K\\n    } | assignedToPropName | handler |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:109:14:111:5 | functio ... K\\n    } | calleeImports | hapi |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:109:14:111:5 | functio ... K\\n    } | contextFunctionInterfaces | handler(request)\nmoreBadStuff(params, res) |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:109:14:111:5 | functio ... K\\n    } | contextSurroundingFunctionParameters | (request) |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:109:14:111:5 | functio ... K\\n    } | fileImports | express hapi markdown-it markdown-it-abbr markdown-it-highlightjs markdown-it-sanitizer markdown-table marked rehype-document rehype-format rehype-sanitize rehype-stringify remark remark-parse remark-rehype showdown snarkdown unified |
 | autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:1:23:1:31 | 'express' | CalleeFlexibleAccessPath | require |
 | autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:1:23:1:31 | 'express' | InputArgumentIndex | 0 |
 | autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:1:23:1:31 | 'express' | calleeImports |  |
@@ -17088,6 +21463,77 @@ tokenFeatures
 | autogenerated/Xss/ReflectedXss/formatting.js:7:49:7:52 | evil | enclosingFunctionBody | req res evil req query evil res send console log <div>%s</div> evil res send util format <div>%s</div> evil res send require printf <div>%s</div> evil |
 | autogenerated/Xss/ReflectedXss/formatting.js:7:49:7:52 | evil | enclosingFunctionName | get#functionalargument |
 | autogenerated/Xss/ReflectedXss/formatting.js:7:49:7:52 | evil | fileImports | express printf |
+| autogenerated/Xss/ReflectedXss/live-server.js:1:26:1:38 | "live-server" | CalleeFlexibleAccessPath | require |
+| autogenerated/Xss/ReflectedXss/live-server.js:1:26:1:38 | "live-server" | InputArgumentIndex | 0 |
+| autogenerated/Xss/ReflectedXss/live-server.js:1:26:1:38 | "live-server" | calleeImports |  |
+| autogenerated/Xss/ReflectedXss/live-server.js:1:26:1:38 | "live-server" | contextFunctionInterfaces |  |
+| autogenerated/Xss/ReflectedXss/live-server.js:1:26:1:38 | "live-server" | contextSurroundingFunctionParameters |  |
+| autogenerated/Xss/ReflectedXss/live-server.js:1:26:1:38 | "live-server" | fileImports | live-server |
+| autogenerated/Xss/ReflectedXss/live-server.js:6:13:6:50 | `<html> ... /html>` | CalleeFlexibleAccessPath | res.end |
+| autogenerated/Xss/ReflectedXss/live-server.js:6:13:6:50 | `<html> ... /html>` | InputArgumentIndex | 0 |
+| autogenerated/Xss/ReflectedXss/live-server.js:6:13:6:50 | `<html> ... /html>` | contextFunctionInterfaces |  |
+| autogenerated/Xss/ReflectedXss/live-server.js:6:13:6:50 | `<html> ... /html>` | contextSurroundingFunctionParameters | (req, res, next) |
+| autogenerated/Xss/ReflectedXss/live-server.js:6:13:6:50 | `<html> ... /html>` | enclosingFunctionBody | req res next tainted req url res end <html><body> tainted </body></html> |
+| autogenerated/Xss/ReflectedXss/live-server.js:6:13:6:50 | `<html> ... /html>` | enclosingFunctionName |  |
+| autogenerated/Xss/ReflectedXss/live-server.js:6:13:6:50 | `<html> ... /html>` | fileImports | live-server |
+| autogenerated/Xss/ReflectedXss/live-server.js:6:13:6:50 | `<html> ... /html>` | receiverName | res |
+| autogenerated/Xss/ReflectedXss/live-server.js:6:14:6:25 | <html><body> | contextFunctionInterfaces |  |
+| autogenerated/Xss/ReflectedXss/live-server.js:6:14:6:25 | <html><body> | contextSurroundingFunctionParameters | (req, res, next) |
+| autogenerated/Xss/ReflectedXss/live-server.js:6:14:6:25 | <html><body> | enclosingFunctionBody | req res next tainted req url res end <html><body> tainted </body></html> |
+| autogenerated/Xss/ReflectedXss/live-server.js:6:14:6:25 | <html><body> | enclosingFunctionName |  |
+| autogenerated/Xss/ReflectedXss/live-server.js:6:14:6:25 | <html><body> | fileImports | live-server |
+| autogenerated/Xss/ReflectedXss/live-server.js:6:14:6:25 | <html><body> | stringConcatenatedWith |  -endpoint- tainted + '</body></html>' |
+| autogenerated/Xss/ReflectedXss/live-server.js:6:28:6:34 | tainted | contextFunctionInterfaces |  |
+| autogenerated/Xss/ReflectedXss/live-server.js:6:28:6:34 | tainted | contextSurroundingFunctionParameters | (req, res, next) |
+| autogenerated/Xss/ReflectedXss/live-server.js:6:28:6:34 | tainted | enclosingFunctionBody | req res next tainted req url res end <html><body> tainted </body></html> |
+| autogenerated/Xss/ReflectedXss/live-server.js:6:28:6:34 | tainted | enclosingFunctionName |  |
+| autogenerated/Xss/ReflectedXss/live-server.js:6:28:6:34 | tainted | fileImports | live-server |
+| autogenerated/Xss/ReflectedXss/live-server.js:6:28:6:34 | tainted | stringConcatenatedWith | '<html><body>' -endpoint- '</body></html>' |
+| autogenerated/Xss/ReflectedXss/live-server.js:6:36:6:49 | </body></html> | contextFunctionInterfaces |  |
+| autogenerated/Xss/ReflectedXss/live-server.js:6:36:6:49 | </body></html> | contextSurroundingFunctionParameters | (req, res, next) |
+| autogenerated/Xss/ReflectedXss/live-server.js:6:36:6:49 | </body></html> | enclosingFunctionBody | req res next tainted req url res end <html><body> tainted </body></html> |
+| autogenerated/Xss/ReflectedXss/live-server.js:6:36:6:49 | </body></html> | enclosingFunctionName |  |
+| autogenerated/Xss/ReflectedXss/live-server.js:6:36:6:49 | </body></html> | fileImports | live-server |
+| autogenerated/Xss/ReflectedXss/live-server.js:6:36:6:49 | </body></html> | stringConcatenatedWith | '<html><body>' + tainted -endpoint-  |
+| autogenerated/Xss/ReflectedXss/live-server.js:9:17:13:1 | functio ... OT OK\\n} | CalleeFlexibleAccessPath | middleware.push |
+| autogenerated/Xss/ReflectedXss/live-server.js:9:17:13:1 | functio ... OT OK\\n} | InputArgumentIndex | 0 |
+| autogenerated/Xss/ReflectedXss/live-server.js:9:17:13:1 | functio ... OT OK\\n} | contextFunctionInterfaces |  |
+| autogenerated/Xss/ReflectedXss/live-server.js:9:17:13:1 | functio ... OT OK\\n} | contextSurroundingFunctionParameters | (req, res, next) |
+| autogenerated/Xss/ReflectedXss/live-server.js:9:17:13:1 | functio ... OT OK\\n} | fileImports | live-server |
+| autogenerated/Xss/ReflectedXss/live-server.js:9:17:13:1 | functio ... OT OK\\n} | receiverName | middleware |
+| autogenerated/Xss/ReflectedXss/live-server.js:12:13:12:50 | `<html> ... /html>` | CalleeFlexibleAccessPath | res.end |
+| autogenerated/Xss/ReflectedXss/live-server.js:12:13:12:50 | `<html> ... /html>` | InputArgumentIndex | 0 |
+| autogenerated/Xss/ReflectedXss/live-server.js:12:13:12:50 | `<html> ... /html>` | contextFunctionInterfaces |  |
+| autogenerated/Xss/ReflectedXss/live-server.js:12:13:12:50 | `<html> ... /html>` | contextSurroundingFunctionParameters | (req, res, next) |
+| autogenerated/Xss/ReflectedXss/live-server.js:12:13:12:50 | `<html> ... /html>` | enclosingFunctionBody | req res next tainted req url res end <html><body> tainted </body></html> |
+| autogenerated/Xss/ReflectedXss/live-server.js:12:13:12:50 | `<html> ... /html>` | enclosingFunctionName | middleware.push#functionalargument |
+| autogenerated/Xss/ReflectedXss/live-server.js:12:13:12:50 | `<html> ... /html>` | fileImports | live-server |
+| autogenerated/Xss/ReflectedXss/live-server.js:12:13:12:50 | `<html> ... /html>` | receiverName | res |
+| autogenerated/Xss/ReflectedXss/live-server.js:12:14:12:25 | <html><body> | contextFunctionInterfaces |  |
+| autogenerated/Xss/ReflectedXss/live-server.js:12:14:12:25 | <html><body> | contextSurroundingFunctionParameters | (req, res, next) |
+| autogenerated/Xss/ReflectedXss/live-server.js:12:14:12:25 | <html><body> | enclosingFunctionBody | req res next tainted req url res end <html><body> tainted </body></html> |
+| autogenerated/Xss/ReflectedXss/live-server.js:12:14:12:25 | <html><body> | enclosingFunctionName | middleware.push#functionalargument |
+| autogenerated/Xss/ReflectedXss/live-server.js:12:14:12:25 | <html><body> | fileImports | live-server |
+| autogenerated/Xss/ReflectedXss/live-server.js:12:14:12:25 | <html><body> | stringConcatenatedWith |  -endpoint- tainted + '</body></html>' |
+| autogenerated/Xss/ReflectedXss/live-server.js:12:28:12:34 | tainted | contextFunctionInterfaces |  |
+| autogenerated/Xss/ReflectedXss/live-server.js:12:28:12:34 | tainted | contextSurroundingFunctionParameters | (req, res, next) |
+| autogenerated/Xss/ReflectedXss/live-server.js:12:28:12:34 | tainted | enclosingFunctionBody | req res next tainted req url res end <html><body> tainted </body></html> |
+| autogenerated/Xss/ReflectedXss/live-server.js:12:28:12:34 | tainted | enclosingFunctionName | middleware.push#functionalargument |
+| autogenerated/Xss/ReflectedXss/live-server.js:12:28:12:34 | tainted | fileImports | live-server |
+| autogenerated/Xss/ReflectedXss/live-server.js:12:28:12:34 | tainted | stringConcatenatedWith | '<html><body>' -endpoint- '</body></html>' |
+| autogenerated/Xss/ReflectedXss/live-server.js:12:36:12:49 | </body></html> | contextFunctionInterfaces |  |
+| autogenerated/Xss/ReflectedXss/live-server.js:12:36:12:49 | </body></html> | contextSurroundingFunctionParameters | (req, res, next) |
+| autogenerated/Xss/ReflectedXss/live-server.js:12:36:12:49 | </body></html> | enclosingFunctionBody | req res next tainted req url res end <html><body> tainted </body></html> |
+| autogenerated/Xss/ReflectedXss/live-server.js:12:36:12:49 | </body></html> | enclosingFunctionName | middleware.push#functionalargument |
+| autogenerated/Xss/ReflectedXss/live-server.js:12:36:12:49 | </body></html> | fileImports | live-server |
+| autogenerated/Xss/ReflectedXss/live-server.js:12:36:12:49 | </body></html> | stringConcatenatedWith | '<html><body>' + tainted -endpoint-  |
+| autogenerated/Xss/ReflectedXss/live-server.js:18:18:18:23 | params | CalleeFlexibleAccessPath | liveServer.start |
+| autogenerated/Xss/ReflectedXss/live-server.js:18:18:18:23 | params | InputArgumentIndex | 0 |
+| autogenerated/Xss/ReflectedXss/live-server.js:18:18:18:23 | params | calleeImports | live-server |
+| autogenerated/Xss/ReflectedXss/live-server.js:18:18:18:23 | params | contextFunctionInterfaces |  |
+| autogenerated/Xss/ReflectedXss/live-server.js:18:18:18:23 | params | contextSurroundingFunctionParameters |  |
+| autogenerated/Xss/ReflectedXss/live-server.js:18:18:18:23 | params | fileImports | live-server |
+| autogenerated/Xss/ReflectedXss/live-server.js:18:18:18:23 | params | receiverName | liveServer |
 | autogenerated/Xss/ReflectedXss/pages/api/myapi.js:2:14:2:20 | req.url | CalleeFlexibleAccessPath | res.send |
 | autogenerated/Xss/ReflectedXss/pages/api/myapi.js:2:14:2:20 | req.url | InputArgumentIndex | 0 |
 | autogenerated/Xss/ReflectedXss/pages/api/myapi.js:2:14:2:20 | req.url | contextFunctionInterfaces | handler(req, res) |
@@ -17441,20 +21887,20 @@ tokenFeatures
 | autogenerated/Xss/ReflectedXss/tst2.js:1:23:1:31 | 'express' | calleeImports |  |
 | autogenerated/Xss/ReflectedXss/tst2.js:1:23:1:31 | 'express' | contextFunctionInterfaces |  |
 | autogenerated/Xss/ReflectedXss/tst2.js:1:23:1:31 | 'express' | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/ReflectedXss/tst2.js:1:23:1:31 | 'express' | fileImports | express |
+| autogenerated/Xss/ReflectedXss/tst2.js:1:23:1:31 | 'express' | fileImports | clone express fclone json-cycle serialize-javascript sort-keys |
 | autogenerated/Xss/ReflectedXss/tst2.js:5:9:5:19 | '/user/:id' | CalleeFlexibleAccessPath | app.get |
 | autogenerated/Xss/ReflectedXss/tst2.js:5:9:5:19 | '/user/:id' | InputArgumentIndex | 0 |
 | autogenerated/Xss/ReflectedXss/tst2.js:5:9:5:19 | '/user/:id' | calleeImports | express |
 | autogenerated/Xss/ReflectedXss/tst2.js:5:9:5:19 | '/user/:id' | contextFunctionInterfaces |  |
 | autogenerated/Xss/ReflectedXss/tst2.js:5:9:5:19 | '/user/:id' | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/ReflectedXss/tst2.js:5:9:5:19 | '/user/:id' | fileImports | express |
+| autogenerated/Xss/ReflectedXss/tst2.js:5:9:5:19 | '/user/:id' | fileImports | clone express fclone json-cycle serialize-javascript sort-keys |
 | autogenerated/Xss/ReflectedXss/tst2.js:5:9:5:19 | '/user/:id' | receiverName | app |
 | autogenerated/Xss/ReflectedXss/tst2.js:5:22:9:1 | functio ... OT OK\\n} | CalleeFlexibleAccessPath | app.get |
 | autogenerated/Xss/ReflectedXss/tst2.js:5:22:9:1 | functio ... OT OK\\n} | InputArgumentIndex | 1 |
 | autogenerated/Xss/ReflectedXss/tst2.js:5:22:9:1 | functio ... OT OK\\n} | calleeImports | express |
 | autogenerated/Xss/ReflectedXss/tst2.js:5:22:9:1 | functio ... OT OK\\n} | contextFunctionInterfaces |  |
 | autogenerated/Xss/ReflectedXss/tst2.js:5:22:9:1 | functio ... OT OK\\n} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/Xss/ReflectedXss/tst2.js:5:22:9:1 | functio ... OT OK\\n} | fileImports | express |
+| autogenerated/Xss/ReflectedXss/tst2.js:5:22:9:1 | functio ... OT OK\\n} | fileImports | clone express fclone json-cycle serialize-javascript sort-keys |
 | autogenerated/Xss/ReflectedXss/tst2.js:5:22:9:1 | functio ... OT OK\\n} | receiverName | app |
 | autogenerated/Xss/ReflectedXss/tst2.js:7:12:7:12 | p | CalleeFlexibleAccessPath | res.send |
 | autogenerated/Xss/ReflectedXss/tst2.js:7:12:7:12 | p | InputArgumentIndex | 0 |
@@ -17462,7 +21908,7 @@ tokenFeatures
 | autogenerated/Xss/ReflectedXss/tst2.js:7:12:7:12 | p | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/Xss/ReflectedXss/tst2.js:7:12:7:12 | p | enclosingFunctionBody | req res p q r req params res send p res send r |
 | autogenerated/Xss/ReflectedXss/tst2.js:7:12:7:12 | p | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/Xss/ReflectedXss/tst2.js:7:12:7:12 | p | fileImports | express |
+| autogenerated/Xss/ReflectedXss/tst2.js:7:12:7:12 | p | fileImports | clone express fclone json-cycle serialize-javascript sort-keys |
 | autogenerated/Xss/ReflectedXss/tst2.js:7:12:7:12 | p | receiverName | res |
 | autogenerated/Xss/ReflectedXss/tst2.js:8:12:8:12 | r | CalleeFlexibleAccessPath | res.send |
 | autogenerated/Xss/ReflectedXss/tst2.js:8:12:8:12 | r | InputArgumentIndex | 0 |
@@ -17470,21 +21916,21 @@ tokenFeatures
 | autogenerated/Xss/ReflectedXss/tst2.js:8:12:8:12 | r | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/Xss/ReflectedXss/tst2.js:8:12:8:12 | r | enclosingFunctionBody | req res p q r req params res send p res send r |
 | autogenerated/Xss/ReflectedXss/tst2.js:8:12:8:12 | r | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/Xss/ReflectedXss/tst2.js:8:12:8:12 | r | fileImports | express |
+| autogenerated/Xss/ReflectedXss/tst2.js:8:12:8:12 | r | fileImports | clone express fclone json-cycle serialize-javascript sort-keys |
 | autogenerated/Xss/ReflectedXss/tst2.js:8:12:8:12 | r | receiverName | res |
 | autogenerated/Xss/ReflectedXss/tst2.js:13:9:13:14 | '/bar' | CalleeFlexibleAccessPath | app.get |
 | autogenerated/Xss/ReflectedXss/tst2.js:13:9:13:14 | '/bar' | InputArgumentIndex | 0 |
 | autogenerated/Xss/ReflectedXss/tst2.js:13:9:13:14 | '/bar' | calleeImports | express |
 | autogenerated/Xss/ReflectedXss/tst2.js:13:9:13:14 | '/bar' | contextFunctionInterfaces |  |
 | autogenerated/Xss/ReflectedXss/tst2.js:13:9:13:14 | '/bar' | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/ReflectedXss/tst2.js:13:9:13:14 | '/bar' | fileImports | express |
+| autogenerated/Xss/ReflectedXss/tst2.js:13:9:13:14 | '/bar' | fileImports | clone express fclone json-cycle serialize-javascript sort-keys |
 | autogenerated/Xss/ReflectedXss/tst2.js:13:9:13:14 | '/bar' | receiverName | app |
 | autogenerated/Xss/ReflectedXss/tst2.js:13:17:24:1 | functio ... // OK\\n} | CalleeFlexibleAccessPath | app.get |
 | autogenerated/Xss/ReflectedXss/tst2.js:13:17:24:1 | functio ... // OK\\n} | InputArgumentIndex | 1 |
 | autogenerated/Xss/ReflectedXss/tst2.js:13:17:24:1 | functio ... // OK\\n} | calleeImports | express |
 | autogenerated/Xss/ReflectedXss/tst2.js:13:17:24:1 | functio ... // OK\\n} | contextFunctionInterfaces |  |
 | autogenerated/Xss/ReflectedXss/tst2.js:13:17:24:1 | functio ... // OK\\n} | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/Xss/ReflectedXss/tst2.js:13:17:24:1 | functio ... // OK\\n} | fileImports | express |
+| autogenerated/Xss/ReflectedXss/tst2.js:13:17:24:1 | functio ... // OK\\n} | fileImports | clone express fclone json-cycle serialize-javascript sort-keys |
 | autogenerated/Xss/ReflectedXss/tst2.js:13:17:24:1 | functio ... // OK\\n} | receiverName | app |
 | autogenerated/Xss/ReflectedXss/tst2.js:17:14:17:14 | p | CalleeFlexibleAccessPath | res.send |
 | autogenerated/Xss/ReflectedXss/tst2.js:17:14:17:14 | p | InputArgumentIndex | 0 |
@@ -17492,7 +21938,7 @@ tokenFeatures
 | autogenerated/Xss/ReflectedXss/tst2.js:17:14:17:14 | p | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/Xss/ReflectedXss/tst2.js:17:14:17:14 | p | enclosingFunctionBody | req res p req params p aKnownValue res send p res send p p aKnownValue res send p res send p |
 | autogenerated/Xss/ReflectedXss/tst2.js:17:14:17:14 | p | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/Xss/ReflectedXss/tst2.js:17:14:17:14 | p | fileImports | express |
+| autogenerated/Xss/ReflectedXss/tst2.js:17:14:17:14 | p | fileImports | clone express fclone json-cycle serialize-javascript sort-keys |
 | autogenerated/Xss/ReflectedXss/tst2.js:17:14:17:14 | p | receiverName | res |
 | autogenerated/Xss/ReflectedXss/tst2.js:18:12:18:12 | p | CalleeFlexibleAccessPath | res.send |
 | autogenerated/Xss/ReflectedXss/tst2.js:18:12:18:12 | p | InputArgumentIndex | 0 |
@@ -17500,7 +21946,7 @@ tokenFeatures
 | autogenerated/Xss/ReflectedXss/tst2.js:18:12:18:12 | p | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/Xss/ReflectedXss/tst2.js:18:12:18:12 | p | enclosingFunctionBody | req res p req params p aKnownValue res send p res send p p aKnownValue res send p res send p |
 | autogenerated/Xss/ReflectedXss/tst2.js:18:12:18:12 | p | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/Xss/ReflectedXss/tst2.js:18:12:18:12 | p | fileImports | express |
+| autogenerated/Xss/ReflectedXss/tst2.js:18:12:18:12 | p | fileImports | clone express fclone json-cycle serialize-javascript sort-keys |
 | autogenerated/Xss/ReflectedXss/tst2.js:18:12:18:12 | p | receiverName | res |
 | autogenerated/Xss/ReflectedXss/tst2.js:21:14:21:14 | p | CalleeFlexibleAccessPath | res.send |
 | autogenerated/Xss/ReflectedXss/tst2.js:21:14:21:14 | p | InputArgumentIndex | 0 |
@@ -17508,7 +21954,7 @@ tokenFeatures
 | autogenerated/Xss/ReflectedXss/tst2.js:21:14:21:14 | p | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/Xss/ReflectedXss/tst2.js:21:14:21:14 | p | enclosingFunctionBody | req res p req params p aKnownValue res send p res send p p aKnownValue res send p res send p |
 | autogenerated/Xss/ReflectedXss/tst2.js:21:14:21:14 | p | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/Xss/ReflectedXss/tst2.js:21:14:21:14 | p | fileImports | express |
+| autogenerated/Xss/ReflectedXss/tst2.js:21:14:21:14 | p | fileImports | clone express fclone json-cycle serialize-javascript sort-keys |
 | autogenerated/Xss/ReflectedXss/tst2.js:21:14:21:14 | p | receiverName | res |
 | autogenerated/Xss/ReflectedXss/tst2.js:23:14:23:14 | p | CalleeFlexibleAccessPath | res.send |
 | autogenerated/Xss/ReflectedXss/tst2.js:23:14:23:14 | p | InputArgumentIndex | 0 |
@@ -17516,8 +21962,369 @@ tokenFeatures
 | autogenerated/Xss/ReflectedXss/tst2.js:23:14:23:14 | p | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/Xss/ReflectedXss/tst2.js:23:14:23:14 | p | enclosingFunctionBody | req res p req params p aKnownValue res send p res send p p aKnownValue res send p res send p |
 | autogenerated/Xss/ReflectedXss/tst2.js:23:14:23:14 | p | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/Xss/ReflectedXss/tst2.js:23:14:23:14 | p | fileImports | express |
+| autogenerated/Xss/ReflectedXss/tst2.js:23:14:23:14 | p | fileImports | clone express fclone json-cycle serialize-javascript sort-keys |
 | autogenerated/Xss/ReflectedXss/tst2.js:23:14:23:14 | p | receiverName | res |
+| autogenerated/Xss/ReflectedXss/tst2.js:27:23:27:29 | 'clone' | CalleeFlexibleAccessPath | require |
+| autogenerated/Xss/ReflectedXss/tst2.js:27:23:27:29 | 'clone' | InputArgumentIndex | 0 |
+| autogenerated/Xss/ReflectedXss/tst2.js:27:23:27:29 | 'clone' | calleeImports |  |
+| autogenerated/Xss/ReflectedXss/tst2.js:27:23:27:29 | 'clone' | contextFunctionInterfaces |  |
+| autogenerated/Xss/ReflectedXss/tst2.js:27:23:27:29 | 'clone' | contextSurroundingFunctionParameters |  |
+| autogenerated/Xss/ReflectedXss/tst2.js:27:23:27:29 | 'clone' | fileImports | clone express fclone json-cycle serialize-javascript sort-keys |
+| autogenerated/Xss/ReflectedXss/tst2.js:29:9:29:14 | '/baz' | CalleeFlexibleAccessPath | app.get |
+| autogenerated/Xss/ReflectedXss/tst2.js:29:9:29:14 | '/baz' | InputArgumentIndex | 0 |
+| autogenerated/Xss/ReflectedXss/tst2.js:29:9:29:14 | '/baz' | calleeImports | express |
+| autogenerated/Xss/ReflectedXss/tst2.js:29:9:29:14 | '/baz' | contextFunctionInterfaces |  |
+| autogenerated/Xss/ReflectedXss/tst2.js:29:9:29:14 | '/baz' | contextSurroundingFunctionParameters |  |
+| autogenerated/Xss/ReflectedXss/tst2.js:29:9:29:14 | '/baz' | fileImports | clone express fclone json-cycle serialize-javascript sort-keys |
+| autogenerated/Xss/ReflectedXss/tst2.js:29:9:29:14 | '/baz' | receiverName | app |
+| autogenerated/Xss/ReflectedXss/tst2.js:29:17:38:1 | functio ... OT OK\\n} | CalleeFlexibleAccessPath | app.get |
+| autogenerated/Xss/ReflectedXss/tst2.js:29:17:38:1 | functio ... OT OK\\n} | InputArgumentIndex | 1 |
+| autogenerated/Xss/ReflectedXss/tst2.js:29:17:38:1 | functio ... OT OK\\n} | calleeImports | express |
+| autogenerated/Xss/ReflectedXss/tst2.js:29:17:38:1 | functio ... OT OK\\n} | contextFunctionInterfaces |  |
+| autogenerated/Xss/ReflectedXss/tst2.js:29:17:38:1 | functio ... OT OK\\n} | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/Xss/ReflectedXss/tst2.js:29:17:38:1 | functio ... OT OK\\n} | fileImports | clone express fclone json-cycle serialize-javascript sort-keys |
+| autogenerated/Xss/ReflectedXss/tst2.js:29:17:38:1 | functio ... OT OK\\n} | receiverName | app |
+| autogenerated/Xss/ReflectedXss/tst2.js:34:21:34:23 | obj | CalleeFlexibleAccessPath | clone |
+| autogenerated/Xss/ReflectedXss/tst2.js:34:21:34:23 | obj | InputArgumentIndex | 0 |
+| autogenerated/Xss/ReflectedXss/tst2.js:34:21:34:23 | obj | calleeImports | clone |
+| autogenerated/Xss/ReflectedXss/tst2.js:34:21:34:23 | obj | contextFunctionInterfaces |  |
+| autogenerated/Xss/ReflectedXss/tst2.js:34:21:34:23 | obj | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/Xss/ReflectedXss/tst2.js:34:21:34:23 | obj | enclosingFunctionBody | req res p req params obj obj p p other clone obj res send p res send other p |
+| autogenerated/Xss/ReflectedXss/tst2.js:34:21:34:23 | obj | enclosingFunctionName | app.get#functionalargument |
+| autogenerated/Xss/ReflectedXss/tst2.js:34:21:34:23 | obj | fileImports | clone express fclone json-cycle serialize-javascript sort-keys |
+| autogenerated/Xss/ReflectedXss/tst2.js:36:12:36:12 | p | CalleeFlexibleAccessPath | res.send |
+| autogenerated/Xss/ReflectedXss/tst2.js:36:12:36:12 | p | InputArgumentIndex | 0 |
+| autogenerated/Xss/ReflectedXss/tst2.js:36:12:36:12 | p | contextFunctionInterfaces |  |
+| autogenerated/Xss/ReflectedXss/tst2.js:36:12:36:12 | p | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/Xss/ReflectedXss/tst2.js:36:12:36:12 | p | enclosingFunctionBody | req res p req params obj obj p p other clone obj res send p res send other p |
+| autogenerated/Xss/ReflectedXss/tst2.js:36:12:36:12 | p | enclosingFunctionName | app.get#functionalargument |
+| autogenerated/Xss/ReflectedXss/tst2.js:36:12:36:12 | p | fileImports | clone express fclone json-cycle serialize-javascript sort-keys |
+| autogenerated/Xss/ReflectedXss/tst2.js:36:12:36:12 | p | receiverName | res |
+| autogenerated/Xss/ReflectedXss/tst2.js:37:12:37:18 | other.p | CalleeFlexibleAccessPath | res.send |
+| autogenerated/Xss/ReflectedXss/tst2.js:37:12:37:18 | other.p | InputArgumentIndex | 0 |
+| autogenerated/Xss/ReflectedXss/tst2.js:37:12:37:18 | other.p | contextFunctionInterfaces |  |
+| autogenerated/Xss/ReflectedXss/tst2.js:37:12:37:18 | other.p | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/Xss/ReflectedXss/tst2.js:37:12:37:18 | other.p | enclosingFunctionBody | req res p req params obj obj p p other clone obj res send p res send other p |
+| autogenerated/Xss/ReflectedXss/tst2.js:37:12:37:18 | other.p | enclosingFunctionName | app.get#functionalargument |
+| autogenerated/Xss/ReflectedXss/tst2.js:37:12:37:18 | other.p | fileImports | clone express fclone json-cycle serialize-javascript sort-keys |
+| autogenerated/Xss/ReflectedXss/tst2.js:37:12:37:18 | other.p | receiverName | res |
+| autogenerated/Xss/ReflectedXss/tst2.js:40:37:40:58 | 'serial ... script' | CalleeFlexibleAccessPath | require |
+| autogenerated/Xss/ReflectedXss/tst2.js:40:37:40:58 | 'serial ... script' | InputArgumentIndex | 0 |
+| autogenerated/Xss/ReflectedXss/tst2.js:40:37:40:58 | 'serial ... script' | calleeImports |  |
+| autogenerated/Xss/ReflectedXss/tst2.js:40:37:40:58 | 'serial ... script' | contextFunctionInterfaces |  |
+| autogenerated/Xss/ReflectedXss/tst2.js:40:37:40:58 | 'serial ... script' | contextSurroundingFunctionParameters |  |
+| autogenerated/Xss/ReflectedXss/tst2.js:40:37:40:58 | 'serial ... script' | fileImports | clone express fclone json-cycle serialize-javascript sort-keys |
+| autogenerated/Xss/ReflectedXss/tst2.js:42:9:42:14 | '/baz' | CalleeFlexibleAccessPath | app.get |
+| autogenerated/Xss/ReflectedXss/tst2.js:42:9:42:14 | '/baz' | InputArgumentIndex | 0 |
+| autogenerated/Xss/ReflectedXss/tst2.js:42:9:42:14 | '/baz' | calleeImports | express |
+| autogenerated/Xss/ReflectedXss/tst2.js:42:9:42:14 | '/baz' | contextFunctionInterfaces |  |
+| autogenerated/Xss/ReflectedXss/tst2.js:42:9:42:14 | '/baz' | contextSurroundingFunctionParameters |  |
+| autogenerated/Xss/ReflectedXss/tst2.js:42:9:42:14 | '/baz' | fileImports | clone express fclone json-cycle serialize-javascript sort-keys |
+| autogenerated/Xss/ReflectedXss/tst2.js:42:9:42:14 | '/baz' | receiverName | app |
+| autogenerated/Xss/ReflectedXss/tst2.js:42:17:52:1 | functio ... OT OK\\n} | CalleeFlexibleAccessPath | app.get |
+| autogenerated/Xss/ReflectedXss/tst2.js:42:17:52:1 | functio ... OT OK\\n} | InputArgumentIndex | 1 |
+| autogenerated/Xss/ReflectedXss/tst2.js:42:17:52:1 | functio ... OT OK\\n} | calleeImports | express |
+| autogenerated/Xss/ReflectedXss/tst2.js:42:17:52:1 | functio ... OT OK\\n} | contextFunctionInterfaces |  |
+| autogenerated/Xss/ReflectedXss/tst2.js:42:17:52:1 | functio ... OT OK\\n} | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/Xss/ReflectedXss/tst2.js:42:17:52:1 | functio ... OT OK\\n} | fileImports | clone express fclone json-cycle serialize-javascript sort-keys |
+| autogenerated/Xss/ReflectedXss/tst2.js:42:17:52:1 | functio ... OT OK\\n} | receiverName | app |
+| autogenerated/Xss/ReflectedXss/tst2.js:45:40:45:40 | p | CalleeFlexibleAccessPath | serializeJavaScript |
+| autogenerated/Xss/ReflectedXss/tst2.js:45:40:45:40 | p | InputArgumentIndex | 0 |
+| autogenerated/Xss/ReflectedXss/tst2.js:45:40:45:40 | p | calleeImports | serialize-javascript |
+| autogenerated/Xss/ReflectedXss/tst2.js:45:40:45:40 | p | contextFunctionInterfaces |  |
+| autogenerated/Xss/ReflectedXss/tst2.js:45:40:45:40 | p | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/Xss/ReflectedXss/tst2.js:45:40:45:40 | p | enclosingFunctionBody | req res p req params serialized serializeJavaScript p res send serialized unsafe serializeJavaScript p unsafe true res send unsafe |
+| autogenerated/Xss/ReflectedXss/tst2.js:45:40:45:40 | p | enclosingFunctionName | app.get#functionalargument |
+| autogenerated/Xss/ReflectedXss/tst2.js:45:40:45:40 | p | fileImports | clone express fclone json-cycle serialize-javascript sort-keys |
+| autogenerated/Xss/ReflectedXss/tst2.js:47:12:47:21 | serialized | CalleeFlexibleAccessPath | res.send |
+| autogenerated/Xss/ReflectedXss/tst2.js:47:12:47:21 | serialized | InputArgumentIndex | 0 |
+| autogenerated/Xss/ReflectedXss/tst2.js:47:12:47:21 | serialized | contextFunctionInterfaces |  |
+| autogenerated/Xss/ReflectedXss/tst2.js:47:12:47:21 | serialized | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/Xss/ReflectedXss/tst2.js:47:12:47:21 | serialized | enclosingFunctionBody | req res p req params serialized serializeJavaScript p res send serialized unsafe serializeJavaScript p unsafe true res send unsafe |
+| autogenerated/Xss/ReflectedXss/tst2.js:47:12:47:21 | serialized | enclosingFunctionName | app.get#functionalargument |
+| autogenerated/Xss/ReflectedXss/tst2.js:47:12:47:21 | serialized | fileImports | clone express fclone json-cycle serialize-javascript sort-keys |
+| autogenerated/Xss/ReflectedXss/tst2.js:47:12:47:21 | serialized | receiverName | res |
+| autogenerated/Xss/ReflectedXss/tst2.js:49:36:49:36 | p | CalleeFlexibleAccessPath | serializeJavaScript |
+| autogenerated/Xss/ReflectedXss/tst2.js:49:36:49:36 | p | InputArgumentIndex | 0 |
+| autogenerated/Xss/ReflectedXss/tst2.js:49:36:49:36 | p | calleeImports | serialize-javascript |
+| autogenerated/Xss/ReflectedXss/tst2.js:49:36:49:36 | p | contextFunctionInterfaces |  |
+| autogenerated/Xss/ReflectedXss/tst2.js:49:36:49:36 | p | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/Xss/ReflectedXss/tst2.js:49:36:49:36 | p | enclosingFunctionBody | req res p req params serialized serializeJavaScript p res send serialized unsafe serializeJavaScript p unsafe true res send unsafe |
+| autogenerated/Xss/ReflectedXss/tst2.js:49:36:49:36 | p | enclosingFunctionName | app.get#functionalargument |
+| autogenerated/Xss/ReflectedXss/tst2.js:49:36:49:36 | p | fileImports | clone express fclone json-cycle serialize-javascript sort-keys |
+| autogenerated/Xss/ReflectedXss/tst2.js:49:39:49:52 | {unsafe: true} | CalleeFlexibleAccessPath | serializeJavaScript |
+| autogenerated/Xss/ReflectedXss/tst2.js:49:39:49:52 | {unsafe: true} | InputArgumentIndex | 1 |
+| autogenerated/Xss/ReflectedXss/tst2.js:49:39:49:52 | {unsafe: true} | calleeImports | serialize-javascript |
+| autogenerated/Xss/ReflectedXss/tst2.js:49:39:49:52 | {unsafe: true} | contextFunctionInterfaces |  |
+| autogenerated/Xss/ReflectedXss/tst2.js:49:39:49:52 | {unsafe: true} | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/Xss/ReflectedXss/tst2.js:49:39:49:52 | {unsafe: true} | enclosingFunctionBody | req res p req params serialized serializeJavaScript p res send serialized unsafe serializeJavaScript p unsafe true res send unsafe |
+| autogenerated/Xss/ReflectedXss/tst2.js:49:39:49:52 | {unsafe: true} | enclosingFunctionName | app.get#functionalargument |
+| autogenerated/Xss/ReflectedXss/tst2.js:49:39:49:52 | {unsafe: true} | fileImports | clone express fclone json-cycle serialize-javascript sort-keys |
+| autogenerated/Xss/ReflectedXss/tst2.js:49:48:49:51 | true | CalleeFlexibleAccessPath | serializeJavaScript |
+| autogenerated/Xss/ReflectedXss/tst2.js:49:48:49:51 | true | InputAccessPathFromCallee | 1.unsafe |
+| autogenerated/Xss/ReflectedXss/tst2.js:49:48:49:51 | true | InputArgumentIndex | 1 |
+| autogenerated/Xss/ReflectedXss/tst2.js:49:48:49:51 | true | assignedToPropName | unsafe |
+| autogenerated/Xss/ReflectedXss/tst2.js:49:48:49:51 | true | calleeImports | serialize-javascript |
+| autogenerated/Xss/ReflectedXss/tst2.js:49:48:49:51 | true | contextFunctionInterfaces |  |
+| autogenerated/Xss/ReflectedXss/tst2.js:49:48:49:51 | true | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/Xss/ReflectedXss/tst2.js:49:48:49:51 | true | enclosingFunctionBody | req res p req params serialized serializeJavaScript p res send serialized unsafe serializeJavaScript p unsafe true res send unsafe |
+| autogenerated/Xss/ReflectedXss/tst2.js:49:48:49:51 | true | enclosingFunctionName | app.get#functionalargument |
+| autogenerated/Xss/ReflectedXss/tst2.js:49:48:49:51 | true | fileImports | clone express fclone json-cycle serialize-javascript sort-keys |
+| autogenerated/Xss/ReflectedXss/tst2.js:51:12:51:17 | unsafe | CalleeFlexibleAccessPath | res.send |
+| autogenerated/Xss/ReflectedXss/tst2.js:51:12:51:17 | unsafe | InputArgumentIndex | 0 |
+| autogenerated/Xss/ReflectedXss/tst2.js:51:12:51:17 | unsafe | contextFunctionInterfaces |  |
+| autogenerated/Xss/ReflectedXss/tst2.js:51:12:51:17 | unsafe | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/Xss/ReflectedXss/tst2.js:51:12:51:17 | unsafe | enclosingFunctionBody | req res p req params serialized serializeJavaScript p res send serialized unsafe serializeJavaScript p unsafe true res send unsafe |
+| autogenerated/Xss/ReflectedXss/tst2.js:51:12:51:17 | unsafe | enclosingFunctionName | app.get#functionalargument |
+| autogenerated/Xss/ReflectedXss/tst2.js:51:12:51:17 | unsafe | fileImports | clone express fclone json-cycle serialize-javascript sort-keys |
+| autogenerated/Xss/ReflectedXss/tst2.js:51:12:51:17 | unsafe | receiverName | res |
+| autogenerated/Xss/ReflectedXss/tst2.js:54:24:54:31 | 'fclone' | CalleeFlexibleAccessPath | require |
+| autogenerated/Xss/ReflectedXss/tst2.js:54:24:54:31 | 'fclone' | InputArgumentIndex | 0 |
+| autogenerated/Xss/ReflectedXss/tst2.js:54:24:54:31 | 'fclone' | calleeImports |  |
+| autogenerated/Xss/ReflectedXss/tst2.js:54:24:54:31 | 'fclone' | contextFunctionInterfaces |  |
+| autogenerated/Xss/ReflectedXss/tst2.js:54:24:54:31 | 'fclone' | contextSurroundingFunctionParameters |  |
+| autogenerated/Xss/ReflectedXss/tst2.js:54:24:54:31 | 'fclone' | fileImports | clone express fclone json-cycle serialize-javascript sort-keys |
+| autogenerated/Xss/ReflectedXss/tst2.js:56:9:56:14 | '/baz' | CalleeFlexibleAccessPath | app.get |
+| autogenerated/Xss/ReflectedXss/tst2.js:56:9:56:14 | '/baz' | InputArgumentIndex | 0 |
+| autogenerated/Xss/ReflectedXss/tst2.js:56:9:56:14 | '/baz' | calleeImports | express |
+| autogenerated/Xss/ReflectedXss/tst2.js:56:9:56:14 | '/baz' | contextFunctionInterfaces |  |
+| autogenerated/Xss/ReflectedXss/tst2.js:56:9:56:14 | '/baz' | contextSurroundingFunctionParameters |  |
+| autogenerated/Xss/ReflectedXss/tst2.js:56:9:56:14 | '/baz' | fileImports | clone express fclone json-cycle serialize-javascript sort-keys |
+| autogenerated/Xss/ReflectedXss/tst2.js:56:9:56:14 | '/baz' | receiverName | app |
+| autogenerated/Xss/ReflectedXss/tst2.js:56:17:65:1 | functio ... OT OK\\n} | CalleeFlexibleAccessPath | app.get |
+| autogenerated/Xss/ReflectedXss/tst2.js:56:17:65:1 | functio ... OT OK\\n} | InputArgumentIndex | 1 |
+| autogenerated/Xss/ReflectedXss/tst2.js:56:17:65:1 | functio ... OT OK\\n} | calleeImports | express |
+| autogenerated/Xss/ReflectedXss/tst2.js:56:17:65:1 | functio ... OT OK\\n} | contextFunctionInterfaces |  |
+| autogenerated/Xss/ReflectedXss/tst2.js:56:17:65:1 | functio ... OT OK\\n} | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/Xss/ReflectedXss/tst2.js:56:17:65:1 | functio ... OT OK\\n} | fileImports | clone express fclone json-cycle serialize-javascript sort-keys |
+| autogenerated/Xss/ReflectedXss/tst2.js:56:17:65:1 | functio ... OT OK\\n} | receiverName | app |
+| autogenerated/Xss/ReflectedXss/tst2.js:61:22:61:24 | obj | CalleeFlexibleAccessPath | fclone |
+| autogenerated/Xss/ReflectedXss/tst2.js:61:22:61:24 | obj | InputArgumentIndex | 0 |
+| autogenerated/Xss/ReflectedXss/tst2.js:61:22:61:24 | obj | calleeImports | fclone |
+| autogenerated/Xss/ReflectedXss/tst2.js:61:22:61:24 | obj | contextFunctionInterfaces |  |
+| autogenerated/Xss/ReflectedXss/tst2.js:61:22:61:24 | obj | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/Xss/ReflectedXss/tst2.js:61:22:61:24 | obj | enclosingFunctionBody | req res p req params obj obj p p other fclone obj res send p res send other p |
+| autogenerated/Xss/ReflectedXss/tst2.js:61:22:61:24 | obj | enclosingFunctionName | app.get#functionalargument |
+| autogenerated/Xss/ReflectedXss/tst2.js:61:22:61:24 | obj | fileImports | clone express fclone json-cycle serialize-javascript sort-keys |
+| autogenerated/Xss/ReflectedXss/tst2.js:63:12:63:12 | p | CalleeFlexibleAccessPath | res.send |
+| autogenerated/Xss/ReflectedXss/tst2.js:63:12:63:12 | p | InputArgumentIndex | 0 |
+| autogenerated/Xss/ReflectedXss/tst2.js:63:12:63:12 | p | contextFunctionInterfaces |  |
+| autogenerated/Xss/ReflectedXss/tst2.js:63:12:63:12 | p | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/Xss/ReflectedXss/tst2.js:63:12:63:12 | p | enclosingFunctionBody | req res p req params obj obj p p other fclone obj res send p res send other p |
+| autogenerated/Xss/ReflectedXss/tst2.js:63:12:63:12 | p | enclosingFunctionName | app.get#functionalargument |
+| autogenerated/Xss/ReflectedXss/tst2.js:63:12:63:12 | p | fileImports | clone express fclone json-cycle serialize-javascript sort-keys |
+| autogenerated/Xss/ReflectedXss/tst2.js:63:12:63:12 | p | receiverName | res |
+| autogenerated/Xss/ReflectedXss/tst2.js:64:12:64:18 | other.p | CalleeFlexibleAccessPath | res.send |
+| autogenerated/Xss/ReflectedXss/tst2.js:64:12:64:18 | other.p | InputArgumentIndex | 0 |
+| autogenerated/Xss/ReflectedXss/tst2.js:64:12:64:18 | other.p | contextFunctionInterfaces |  |
+| autogenerated/Xss/ReflectedXss/tst2.js:64:12:64:18 | other.p | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/Xss/ReflectedXss/tst2.js:64:12:64:18 | other.p | enclosingFunctionBody | req res p req params obj obj p p other fclone obj res send p res send other p |
+| autogenerated/Xss/ReflectedXss/tst2.js:64:12:64:18 | other.p | enclosingFunctionName | app.get#functionalargument |
+| autogenerated/Xss/ReflectedXss/tst2.js:64:12:64:18 | other.p | fileImports | clone express fclone json-cycle serialize-javascript sort-keys |
+| autogenerated/Xss/ReflectedXss/tst2.js:64:12:64:18 | other.p | receiverName | res |
+| autogenerated/Xss/ReflectedXss/tst2.js:67:20:67:31 | 'json-cycle' | CalleeFlexibleAccessPath | require |
+| autogenerated/Xss/ReflectedXss/tst2.js:67:20:67:31 | 'json-cycle' | InputArgumentIndex | 0 |
+| autogenerated/Xss/ReflectedXss/tst2.js:67:20:67:31 | 'json-cycle' | calleeImports |  |
+| autogenerated/Xss/ReflectedXss/tst2.js:67:20:67:31 | 'json-cycle' | contextFunctionInterfaces |  |
+| autogenerated/Xss/ReflectedXss/tst2.js:67:20:67:31 | 'json-cycle' | contextSurroundingFunctionParameters |  |
+| autogenerated/Xss/ReflectedXss/tst2.js:67:20:67:31 | 'json-cycle' | fileImports | clone express fclone json-cycle serialize-javascript sort-keys |
+| autogenerated/Xss/ReflectedXss/tst2.js:68:9:68:14 | '/baz' | CalleeFlexibleAccessPath | app.get |
+| autogenerated/Xss/ReflectedXss/tst2.js:68:9:68:14 | '/baz' | InputArgumentIndex | 0 |
+| autogenerated/Xss/ReflectedXss/tst2.js:68:9:68:14 | '/baz' | calleeImports | express |
+| autogenerated/Xss/ReflectedXss/tst2.js:68:9:68:14 | '/baz' | contextFunctionInterfaces |  |
+| autogenerated/Xss/ReflectedXss/tst2.js:68:9:68:14 | '/baz' | contextSurroundingFunctionParameters |  |
+| autogenerated/Xss/ReflectedXss/tst2.js:68:9:68:14 | '/baz' | fileImports | clone express fclone json-cycle serialize-javascript sort-keys |
+| autogenerated/Xss/ReflectedXss/tst2.js:68:9:68:14 | '/baz' | receiverName | app |
+| autogenerated/Xss/ReflectedXss/tst2.js:68:17:77:1 | functio ... OT OK\\n} | CalleeFlexibleAccessPath | app.get |
+| autogenerated/Xss/ReflectedXss/tst2.js:68:17:77:1 | functio ... OT OK\\n} | InputArgumentIndex | 1 |
+| autogenerated/Xss/ReflectedXss/tst2.js:68:17:77:1 | functio ... OT OK\\n} | calleeImports | express |
+| autogenerated/Xss/ReflectedXss/tst2.js:68:17:77:1 | functio ... OT OK\\n} | contextFunctionInterfaces |  |
+| autogenerated/Xss/ReflectedXss/tst2.js:68:17:77:1 | functio ... OT OK\\n} | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/Xss/ReflectedXss/tst2.js:68:17:77:1 | functio ... OT OK\\n} | fileImports | clone express fclone json-cycle serialize-javascript sort-keys |
+| autogenerated/Xss/ReflectedXss/tst2.js:68:17:77:1 | functio ... OT OK\\n} | receiverName | app |
+| autogenerated/Xss/ReflectedXss/tst2.js:73:29:73:43 | jc.decycle(obj) | CalleeFlexibleAccessPath | jc.retrocycle |
+| autogenerated/Xss/ReflectedXss/tst2.js:73:29:73:43 | jc.decycle(obj) | InputArgumentIndex | 0 |
+| autogenerated/Xss/ReflectedXss/tst2.js:73:29:73:43 | jc.decycle(obj) | calleeImports | json-cycle |
+| autogenerated/Xss/ReflectedXss/tst2.js:73:29:73:43 | jc.decycle(obj) | contextFunctionInterfaces |  |
+| autogenerated/Xss/ReflectedXss/tst2.js:73:29:73:43 | jc.decycle(obj) | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/Xss/ReflectedXss/tst2.js:73:29:73:43 | jc.decycle(obj) | enclosingFunctionBody | req res p req params obj obj p p other jc retrocycle jc decycle obj res send p res send other p |
+| autogenerated/Xss/ReflectedXss/tst2.js:73:29:73:43 | jc.decycle(obj) | enclosingFunctionName | app.get#functionalargument |
+| autogenerated/Xss/ReflectedXss/tst2.js:73:29:73:43 | jc.decycle(obj) | fileImports | clone express fclone json-cycle serialize-javascript sort-keys |
+| autogenerated/Xss/ReflectedXss/tst2.js:73:29:73:43 | jc.decycle(obj) | receiverName | jc |
+| autogenerated/Xss/ReflectedXss/tst2.js:73:40:73:42 | obj | CalleeFlexibleAccessPath | jc.decycle |
+| autogenerated/Xss/ReflectedXss/tst2.js:73:40:73:42 | obj | InputArgumentIndex | 0 |
+| autogenerated/Xss/ReflectedXss/tst2.js:73:40:73:42 | obj | calleeImports | json-cycle |
+| autogenerated/Xss/ReflectedXss/tst2.js:73:40:73:42 | obj | contextFunctionInterfaces |  |
+| autogenerated/Xss/ReflectedXss/tst2.js:73:40:73:42 | obj | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/Xss/ReflectedXss/tst2.js:73:40:73:42 | obj | enclosingFunctionBody | req res p req params obj obj p p other jc retrocycle jc decycle obj res send p res send other p |
+| autogenerated/Xss/ReflectedXss/tst2.js:73:40:73:42 | obj | enclosingFunctionName | app.get#functionalargument |
+| autogenerated/Xss/ReflectedXss/tst2.js:73:40:73:42 | obj | fileImports | clone express fclone json-cycle serialize-javascript sort-keys |
+| autogenerated/Xss/ReflectedXss/tst2.js:73:40:73:42 | obj | receiverName | jc |
+| autogenerated/Xss/ReflectedXss/tst2.js:75:12:75:12 | p | CalleeFlexibleAccessPath | res.send |
+| autogenerated/Xss/ReflectedXss/tst2.js:75:12:75:12 | p | InputArgumentIndex | 0 |
+| autogenerated/Xss/ReflectedXss/tst2.js:75:12:75:12 | p | contextFunctionInterfaces |  |
+| autogenerated/Xss/ReflectedXss/tst2.js:75:12:75:12 | p | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/Xss/ReflectedXss/tst2.js:75:12:75:12 | p | enclosingFunctionBody | req res p req params obj obj p p other jc retrocycle jc decycle obj res send p res send other p |
+| autogenerated/Xss/ReflectedXss/tst2.js:75:12:75:12 | p | enclosingFunctionName | app.get#functionalargument |
+| autogenerated/Xss/ReflectedXss/tst2.js:75:12:75:12 | p | fileImports | clone express fclone json-cycle serialize-javascript sort-keys |
+| autogenerated/Xss/ReflectedXss/tst2.js:75:12:75:12 | p | receiverName | res |
+| autogenerated/Xss/ReflectedXss/tst2.js:76:12:76:18 | other.p | CalleeFlexibleAccessPath | res.send |
+| autogenerated/Xss/ReflectedXss/tst2.js:76:12:76:18 | other.p | InputArgumentIndex | 0 |
+| autogenerated/Xss/ReflectedXss/tst2.js:76:12:76:18 | other.p | contextFunctionInterfaces |  |
+| autogenerated/Xss/ReflectedXss/tst2.js:76:12:76:18 | other.p | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/Xss/ReflectedXss/tst2.js:76:12:76:18 | other.p | enclosingFunctionBody | req res p req params obj obj p p other jc retrocycle jc decycle obj res send p res send other p |
+| autogenerated/Xss/ReflectedXss/tst2.js:76:12:76:18 | other.p | enclosingFunctionName | app.get#functionalargument |
+| autogenerated/Xss/ReflectedXss/tst2.js:76:12:76:18 | other.p | fileImports | clone express fclone json-cycle serialize-javascript sort-keys |
+| autogenerated/Xss/ReflectedXss/tst2.js:76:12:76:18 | other.p | receiverName | res |
+| autogenerated/Xss/ReflectedXss/tst2.js:79:26:79:36 | 'sort-keys' | CalleeFlexibleAccessPath | require |
+| autogenerated/Xss/ReflectedXss/tst2.js:79:26:79:36 | 'sort-keys' | InputArgumentIndex | 0 |
+| autogenerated/Xss/ReflectedXss/tst2.js:79:26:79:36 | 'sort-keys' | calleeImports |  |
+| autogenerated/Xss/ReflectedXss/tst2.js:79:26:79:36 | 'sort-keys' | contextFunctionInterfaces |  |
+| autogenerated/Xss/ReflectedXss/tst2.js:79:26:79:36 | 'sort-keys' | contextSurroundingFunctionParameters |  |
+| autogenerated/Xss/ReflectedXss/tst2.js:79:26:79:36 | 'sort-keys' | fileImports | clone express fclone json-cycle serialize-javascript sort-keys |
+| autogenerated/Xss/ReflectedXss/tst2.js:81:9:81:14 | '/baz' | CalleeFlexibleAccessPath | app.get |
+| autogenerated/Xss/ReflectedXss/tst2.js:81:9:81:14 | '/baz' | InputArgumentIndex | 0 |
+| autogenerated/Xss/ReflectedXss/tst2.js:81:9:81:14 | '/baz' | calleeImports | express |
+| autogenerated/Xss/ReflectedXss/tst2.js:81:9:81:14 | '/baz' | contextFunctionInterfaces |  |
+| autogenerated/Xss/ReflectedXss/tst2.js:81:9:81:14 | '/baz' | contextSurroundingFunctionParameters |  |
+| autogenerated/Xss/ReflectedXss/tst2.js:81:9:81:14 | '/baz' | fileImports | clone express fclone json-cycle serialize-javascript sort-keys |
+| autogenerated/Xss/ReflectedXss/tst2.js:81:9:81:14 | '/baz' | receiverName | app |
+| autogenerated/Xss/ReflectedXss/tst2.js:81:17:90:1 | functio ... OT OK\\n} | CalleeFlexibleAccessPath | app.get |
+| autogenerated/Xss/ReflectedXss/tst2.js:81:17:90:1 | functio ... OT OK\\n} | InputArgumentIndex | 1 |
+| autogenerated/Xss/ReflectedXss/tst2.js:81:17:90:1 | functio ... OT OK\\n} | calleeImports | express |
+| autogenerated/Xss/ReflectedXss/tst2.js:81:17:90:1 | functio ... OT OK\\n} | contextFunctionInterfaces |  |
+| autogenerated/Xss/ReflectedXss/tst2.js:81:17:90:1 | functio ... OT OK\\n} | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/Xss/ReflectedXss/tst2.js:81:17:90:1 | functio ... OT OK\\n} | fileImports | clone express fclone json-cycle serialize-javascript sort-keys |
+| autogenerated/Xss/ReflectedXss/tst2.js:81:17:90:1 | functio ... OT OK\\n} | receiverName | app |
+| autogenerated/Xss/ReflectedXss/tst2.js:86:24:86:26 | obj | CalleeFlexibleAccessPath | sortKeys |
+| autogenerated/Xss/ReflectedXss/tst2.js:86:24:86:26 | obj | InputArgumentIndex | 0 |
+| autogenerated/Xss/ReflectedXss/tst2.js:86:24:86:26 | obj | calleeImports | sort-keys |
+| autogenerated/Xss/ReflectedXss/tst2.js:86:24:86:26 | obj | contextFunctionInterfaces |  |
+| autogenerated/Xss/ReflectedXss/tst2.js:86:24:86:26 | obj | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/Xss/ReflectedXss/tst2.js:86:24:86:26 | obj | enclosingFunctionBody | req res p req params obj obj p p other sortKeys obj res send p res send other p |
+| autogenerated/Xss/ReflectedXss/tst2.js:86:24:86:26 | obj | enclosingFunctionName | app.get#functionalargument |
+| autogenerated/Xss/ReflectedXss/tst2.js:86:24:86:26 | obj | fileImports | clone express fclone json-cycle serialize-javascript sort-keys |
+| autogenerated/Xss/ReflectedXss/tst2.js:88:12:88:12 | p | CalleeFlexibleAccessPath | res.send |
+| autogenerated/Xss/ReflectedXss/tst2.js:88:12:88:12 | p | InputArgumentIndex | 0 |
+| autogenerated/Xss/ReflectedXss/tst2.js:88:12:88:12 | p | contextFunctionInterfaces |  |
+| autogenerated/Xss/ReflectedXss/tst2.js:88:12:88:12 | p | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/Xss/ReflectedXss/tst2.js:88:12:88:12 | p | enclosingFunctionBody | req res p req params obj obj p p other sortKeys obj res send p res send other p |
+| autogenerated/Xss/ReflectedXss/tst2.js:88:12:88:12 | p | enclosingFunctionName | app.get#functionalargument |
+| autogenerated/Xss/ReflectedXss/tst2.js:88:12:88:12 | p | fileImports | clone express fclone json-cycle serialize-javascript sort-keys |
+| autogenerated/Xss/ReflectedXss/tst2.js:88:12:88:12 | p | receiverName | res |
+| autogenerated/Xss/ReflectedXss/tst2.js:89:12:89:18 | other.p | CalleeFlexibleAccessPath | res.send |
+| autogenerated/Xss/ReflectedXss/tst2.js:89:12:89:18 | other.p | InputArgumentIndex | 0 |
+| autogenerated/Xss/ReflectedXss/tst2.js:89:12:89:18 | other.p | contextFunctionInterfaces |  |
+| autogenerated/Xss/ReflectedXss/tst2.js:89:12:89:18 | other.p | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/Xss/ReflectedXss/tst2.js:89:12:89:18 | other.p | enclosingFunctionBody | req res p req params obj obj p p other sortKeys obj res send p res send other p |
+| autogenerated/Xss/ReflectedXss/tst2.js:89:12:89:18 | other.p | enclosingFunctionName | app.get#functionalargument |
+| autogenerated/Xss/ReflectedXss/tst2.js:89:12:89:18 | other.p | fileImports | clone express fclone json-cycle serialize-javascript sort-keys |
+| autogenerated/Xss/ReflectedXss/tst2.js:89:12:89:18 | other.p | receiverName | res |
+| autogenerated/Xss/ReflectedXss/tst3.js:1:23:1:31 | 'express' | CalleeFlexibleAccessPath | require |
+| autogenerated/Xss/ReflectedXss/tst3.js:1:23:1:31 | 'express' | InputArgumentIndex | 0 |
+| autogenerated/Xss/ReflectedXss/tst3.js:1:23:1:31 | 'express' | calleeImports |  |
+| autogenerated/Xss/ReflectedXss/tst3.js:1:23:1:31 | 'express' | contextFunctionInterfaces |  |
+| autogenerated/Xss/ReflectedXss/tst3.js:1:23:1:31 | 'express' | contextSurroundingFunctionParameters |  |
+| autogenerated/Xss/ReflectedXss/tst3.js:1:23:1:31 | 'express' | fileImports | express prettier |
+| autogenerated/Xss/ReflectedXss/tst3.js:4:12:4:25 | 'x-powered-by' | CalleeFlexibleAccessPath | app.enable |
+| autogenerated/Xss/ReflectedXss/tst3.js:4:12:4:25 | 'x-powered-by' | InputArgumentIndex | 0 |
+| autogenerated/Xss/ReflectedXss/tst3.js:4:12:4:25 | 'x-powered-by' | calleeImports | express |
+| autogenerated/Xss/ReflectedXss/tst3.js:4:12:4:25 | 'x-powered-by' | contextFunctionInterfaces |  |
+| autogenerated/Xss/ReflectedXss/tst3.js:4:12:4:25 | 'x-powered-by' | contextSurroundingFunctionParameters |  |
+| autogenerated/Xss/ReflectedXss/tst3.js:4:12:4:25 | 'x-powered-by' | fileImports | express prettier |
+| autogenerated/Xss/ReflectedXss/tst3.js:4:12:4:25 | 'x-powered-by' | receiverName | app |
+| autogenerated/Xss/ReflectedXss/tst3.js:4:36:4:49 | 'x-powered-by' | CalleeFlexibleAccessPath | app.enable().disable |
+| autogenerated/Xss/ReflectedXss/tst3.js:4:36:4:49 | 'x-powered-by' | InputArgumentIndex | 0 |
+| autogenerated/Xss/ReflectedXss/tst3.js:4:36:4:49 | 'x-powered-by' | calleeImports | express |
+| autogenerated/Xss/ReflectedXss/tst3.js:4:36:4:49 | 'x-powered-by' | contextFunctionInterfaces |  |
+| autogenerated/Xss/ReflectedXss/tst3.js:4:36:4:49 | 'x-powered-by' | contextSurroundingFunctionParameters |  |
+| autogenerated/Xss/ReflectedXss/tst3.js:4:36:4:49 | 'x-powered-by' | fileImports | express prettier |
+| autogenerated/Xss/ReflectedXss/tst3.js:4:56:4:58 | '/' | CalleeFlexibleAccessPath | app.enable().disable().get |
+| autogenerated/Xss/ReflectedXss/tst3.js:4:56:4:58 | '/' | InputArgumentIndex | 0 |
+| autogenerated/Xss/ReflectedXss/tst3.js:4:56:4:58 | '/' | calleeImports | express |
+| autogenerated/Xss/ReflectedXss/tst3.js:4:56:4:58 | '/' | contextFunctionInterfaces |  |
+| autogenerated/Xss/ReflectedXss/tst3.js:4:56:4:58 | '/' | contextSurroundingFunctionParameters |  |
+| autogenerated/Xss/ReflectedXss/tst3.js:4:56:4:58 | '/' | fileImports | express prettier |
+| autogenerated/Xss/ReflectedXss/tst3.js:4:61:7:1 | functio ... OT OK\\n} | CalleeFlexibleAccessPath | app.enable().disable().get |
+| autogenerated/Xss/ReflectedXss/tst3.js:4:61:7:1 | functio ... OT OK\\n} | InputArgumentIndex | 1 |
+| autogenerated/Xss/ReflectedXss/tst3.js:4:61:7:1 | functio ... OT OK\\n} | calleeImports | express |
+| autogenerated/Xss/ReflectedXss/tst3.js:4:61:7:1 | functio ... OT OK\\n} | contextFunctionInterfaces |  |
+| autogenerated/Xss/ReflectedXss/tst3.js:4:61:7:1 | functio ... OT OK\\n} | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/Xss/ReflectedXss/tst3.js:4:61:7:1 | functio ... OT OK\\n} | fileImports | express prettier |
+| autogenerated/Xss/ReflectedXss/tst3.js:6:12:6:12 | p | CalleeFlexibleAccessPath | res.send |
+| autogenerated/Xss/ReflectedXss/tst3.js:6:12:6:12 | p | InputArgumentIndex | 0 |
+| autogenerated/Xss/ReflectedXss/tst3.js:6:12:6:12 | p | contextFunctionInterfaces |  |
+| autogenerated/Xss/ReflectedXss/tst3.js:6:12:6:12 | p | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/Xss/ReflectedXss/tst3.js:6:12:6:12 | p | enclosingFunctionBody | req res p req params res send p |
+| autogenerated/Xss/ReflectedXss/tst3.js:6:12:6:12 | p | enclosingFunctionName | get#functionalargument |
+| autogenerated/Xss/ReflectedXss/tst3.js:6:12:6:12 | p | fileImports | express prettier |
+| autogenerated/Xss/ReflectedXss/tst3.js:6:12:6:12 | p | receiverName | res |
+| autogenerated/Xss/ReflectedXss/tst3.js:9:26:9:35 | "prettier" | CalleeFlexibleAccessPath | require |
+| autogenerated/Xss/ReflectedXss/tst3.js:9:26:9:35 | "prettier" | InputArgumentIndex | 0 |
+| autogenerated/Xss/ReflectedXss/tst3.js:9:26:9:35 | "prettier" | calleeImports |  |
+| autogenerated/Xss/ReflectedXss/tst3.js:9:26:9:35 | "prettier" | contextFunctionInterfaces |  |
+| autogenerated/Xss/ReflectedXss/tst3.js:9:26:9:35 | "prettier" | contextSurroundingFunctionParameters |  |
+| autogenerated/Xss/ReflectedXss/tst3.js:9:26:9:35 | "prettier" | fileImports | express prettier |
+| autogenerated/Xss/ReflectedXss/tst3.js:10:10:10:17 | "foobar" | CalleeFlexibleAccessPath | app.post |
+| autogenerated/Xss/ReflectedXss/tst3.js:10:10:10:17 | "foobar" | InputArgumentIndex | 0 |
+| autogenerated/Xss/ReflectedXss/tst3.js:10:10:10:17 | "foobar" | calleeImports | express |
+| autogenerated/Xss/ReflectedXss/tst3.js:10:10:10:17 | "foobar" | contextFunctionInterfaces |  |
+| autogenerated/Xss/ReflectedXss/tst3.js:10:10:10:17 | "foobar" | contextSurroundingFunctionParameters |  |
+| autogenerated/Xss/ReflectedXss/tst3.js:10:10:10:17 | "foobar" | fileImports | express prettier |
+| autogenerated/Xss/ReflectedXss/tst3.js:10:10:10:17 | "foobar" | receiverName | app |
+| autogenerated/Xss/ReflectedXss/tst3.js:10:20:13:1 | functio ... OT OK\\n} | CalleeFlexibleAccessPath | app.post |
+| autogenerated/Xss/ReflectedXss/tst3.js:10:20:13:1 | functio ... OT OK\\n} | InputArgumentIndex | 1 |
+| autogenerated/Xss/ReflectedXss/tst3.js:10:20:13:1 | functio ... OT OK\\n} | calleeImports | express |
+| autogenerated/Xss/ReflectedXss/tst3.js:10:20:13:1 | functio ... OT OK\\n} | contextFunctionInterfaces |  |
+| autogenerated/Xss/ReflectedXss/tst3.js:10:20:13:1 | functio ... OT OK\\n} | contextSurroundingFunctionParameters | (reg, res) |
+| autogenerated/Xss/ReflectedXss/tst3.js:10:20:13:1 | functio ... OT OK\\n} | fileImports | express prettier |
+| autogenerated/Xss/ReflectedXss/tst3.js:10:20:13:1 | functio ... OT OK\\n} | receiverName | app |
+| autogenerated/Xss/ReflectedXss/tst3.js:11:32:11:39 | reg.body | CalleeFlexibleAccessPath | prettier.format |
+| autogenerated/Xss/ReflectedXss/tst3.js:11:32:11:39 | reg.body | InputArgumentIndex | 0 |
+| autogenerated/Xss/ReflectedXss/tst3.js:11:32:11:39 | reg.body | calleeImports | prettier |
+| autogenerated/Xss/ReflectedXss/tst3.js:11:32:11:39 | reg.body | contextFunctionInterfaces |  |
+| autogenerated/Xss/ReflectedXss/tst3.js:11:32:11:39 | reg.body | contextSurroundingFunctionParameters | (reg, res) |
+| autogenerated/Xss/ReflectedXss/tst3.js:11:32:11:39 | reg.body | enclosingFunctionBody | reg res code prettier format reg body semi false parser babel res send code |
+| autogenerated/Xss/ReflectedXss/tst3.js:11:32:11:39 | reg.body | enclosingFunctionName | app.post#functionalargument |
+| autogenerated/Xss/ReflectedXss/tst3.js:11:32:11:39 | reg.body | fileImports | express prettier |
+| autogenerated/Xss/ReflectedXss/tst3.js:11:32:11:39 | reg.body | receiverName | prettier |
+| autogenerated/Xss/ReflectedXss/tst3.js:11:42:11:73 | { semi: ... abel" } | CalleeFlexibleAccessPath | prettier.format |
+| autogenerated/Xss/ReflectedXss/tst3.js:11:42:11:73 | { semi: ... abel" } | InputArgumentIndex | 1 |
+| autogenerated/Xss/ReflectedXss/tst3.js:11:42:11:73 | { semi: ... abel" } | calleeImports | prettier |
+| autogenerated/Xss/ReflectedXss/tst3.js:11:42:11:73 | { semi: ... abel" } | contextFunctionInterfaces |  |
+| autogenerated/Xss/ReflectedXss/tst3.js:11:42:11:73 | { semi: ... abel" } | contextSurroundingFunctionParameters | (reg, res) |
+| autogenerated/Xss/ReflectedXss/tst3.js:11:42:11:73 | { semi: ... abel" } | enclosingFunctionBody | reg res code prettier format reg body semi false parser babel res send code |
+| autogenerated/Xss/ReflectedXss/tst3.js:11:42:11:73 | { semi: ... abel" } | enclosingFunctionName | app.post#functionalargument |
+| autogenerated/Xss/ReflectedXss/tst3.js:11:42:11:73 | { semi: ... abel" } | fileImports | express prettier |
+| autogenerated/Xss/ReflectedXss/tst3.js:11:42:11:73 | { semi: ... abel" } | receiverName | prettier |
+| autogenerated/Xss/ReflectedXss/tst3.js:11:50:11:54 | false | CalleeFlexibleAccessPath | prettier.format |
+| autogenerated/Xss/ReflectedXss/tst3.js:11:50:11:54 | false | InputAccessPathFromCallee | 1.semi |
+| autogenerated/Xss/ReflectedXss/tst3.js:11:50:11:54 | false | InputArgumentIndex | 1 |
+| autogenerated/Xss/ReflectedXss/tst3.js:11:50:11:54 | false | assignedToPropName | semi |
+| autogenerated/Xss/ReflectedXss/tst3.js:11:50:11:54 | false | calleeImports | prettier |
+| autogenerated/Xss/ReflectedXss/tst3.js:11:50:11:54 | false | contextFunctionInterfaces |  |
+| autogenerated/Xss/ReflectedXss/tst3.js:11:50:11:54 | false | contextSurroundingFunctionParameters | (reg, res) |
+| autogenerated/Xss/ReflectedXss/tst3.js:11:50:11:54 | false | enclosingFunctionBody | reg res code prettier format reg body semi false parser babel res send code |
+| autogenerated/Xss/ReflectedXss/tst3.js:11:50:11:54 | false | enclosingFunctionName | app.post#functionalargument |
+| autogenerated/Xss/ReflectedXss/tst3.js:11:50:11:54 | false | fileImports | express prettier |
+| autogenerated/Xss/ReflectedXss/tst3.js:11:65:11:71 | "babel" | CalleeFlexibleAccessPath | prettier.format |
+| autogenerated/Xss/ReflectedXss/tst3.js:11:65:11:71 | "babel" | InputAccessPathFromCallee | 1.parser |
+| autogenerated/Xss/ReflectedXss/tst3.js:11:65:11:71 | "babel" | InputArgumentIndex | 1 |
+| autogenerated/Xss/ReflectedXss/tst3.js:11:65:11:71 | "babel" | assignedToPropName | parser |
+| autogenerated/Xss/ReflectedXss/tst3.js:11:65:11:71 | "babel" | calleeImports | prettier |
+| autogenerated/Xss/ReflectedXss/tst3.js:11:65:11:71 | "babel" | contextFunctionInterfaces |  |
+| autogenerated/Xss/ReflectedXss/tst3.js:11:65:11:71 | "babel" | contextSurroundingFunctionParameters | (reg, res) |
+| autogenerated/Xss/ReflectedXss/tst3.js:11:65:11:71 | "babel" | enclosingFunctionBody | reg res code prettier format reg body semi false parser babel res send code |
+| autogenerated/Xss/ReflectedXss/tst3.js:11:65:11:71 | "babel" | enclosingFunctionName | app.post#functionalargument |
+| autogenerated/Xss/ReflectedXss/tst3.js:11:65:11:71 | "babel" | fileImports | express prettier |
+| autogenerated/Xss/ReflectedXss/tst3.js:12:12:12:15 | code | CalleeFlexibleAccessPath | res.send |
+| autogenerated/Xss/ReflectedXss/tst3.js:12:12:12:15 | code | InputArgumentIndex | 0 |
+| autogenerated/Xss/ReflectedXss/tst3.js:12:12:12:15 | code | contextFunctionInterfaces |  |
+| autogenerated/Xss/ReflectedXss/tst3.js:12:12:12:15 | code | contextSurroundingFunctionParameters | (reg, res) |
+| autogenerated/Xss/ReflectedXss/tst3.js:12:12:12:15 | code | enclosingFunctionBody | reg res code prettier format reg body semi false parser babel res send code |
+| autogenerated/Xss/ReflectedXss/tst3.js:12:12:12:15 | code | enclosingFunctionName | app.post#functionalargument |
+| autogenerated/Xss/ReflectedXss/tst3.js:12:12:12:15 | code | fileImports | express prettier |
+| autogenerated/Xss/ReflectedXss/tst3.js:12:12:12:15 | code | receiverName | res |
 | autogenerated/Xss/StoredXss/xss-through-filenames.js:1:20:1:25 | 'http' | CalleeFlexibleAccessPath | require |
 | autogenerated/Xss/StoredXss/xss-through-filenames.js:1:20:1:25 | 'http' | InputArgumentIndex | 0 |
 | autogenerated/Xss/StoredXss/xss-through-filenames.js:1:20:1:25 | 'http' | calleeImports |  |
@@ -17735,29 +22542,29 @@ tokenFeatures
 | autogenerated/Xss/StoredXss/xss-through-torrent.js:7:11:7:14 | name | receiverName | res |
 | autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:3:10:3:32 | ['jquer ... ry-ui'] | CalleeFlexibleAccessPath | define |
 | autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:3:10:3:32 | ['jquer ... ry-ui'] | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:3:10:3:32 | ['jquer ... ry-ui'] | contextFunctionInterfaces |  |
+| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:3:10:3:32 | ['jquer ... ry-ui'] | contextFunctionInterfaces | myPlugin(stuff, options) |
 | autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:3:10:3:32 | ['jquer ... ry-ui'] | contextSurroundingFunctionParameters | (factory) |
 | autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:3:10:3:32 | ['jquer ... ry-ui'] | enclosingFunctionBody | factory define function define amd define jquery jquery-ui factory factory jQuery |
 | autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:3:10:3:32 | ['jquer ... ry-ui'] | enclosingFunctionName |  |
 | autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:3:10:3:32 | ['jquer ... ry-ui'] | fileImports | jquery jquery-ui |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:3:11:3:18 | 'jquery' | contextFunctionInterfaces |  |
+| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:3:11:3:18 | 'jquery' | contextFunctionInterfaces | myPlugin(stuff, options) |
 | autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:3:11:3:18 | 'jquery' | contextSurroundingFunctionParameters | (factory) |
 | autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:3:11:3:18 | 'jquery' | enclosingFunctionBody | factory define function define amd define jquery jquery-ui factory factory jQuery |
 | autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:3:11:3:18 | 'jquery' | enclosingFunctionName |  |
 | autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:3:11:3:18 | 'jquery' | fileImports | jquery jquery-ui |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:3:21:3:31 | 'jquery-ui' | contextFunctionInterfaces |  |
+| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:3:21:3:31 | 'jquery-ui' | contextFunctionInterfaces | myPlugin(stuff, options) |
 | autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:3:21:3:31 | 'jquery-ui' | contextSurroundingFunctionParameters | (factory) |
 | autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:3:21:3:31 | 'jquery-ui' | enclosingFunctionBody | factory define function define amd define jquery jquery-ui factory factory jQuery |
 | autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:3:21:3:31 | 'jquery-ui' | enclosingFunctionName |  |
 | autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:3:21:3:31 | 'jquery-ui' | fileImports | jquery jquery-ui |
 | autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:3:35:3:41 | factory | CalleeFlexibleAccessPath | define |
 | autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:3:35:3:41 | factory | InputArgumentIndex | 1 |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:3:35:3:41 | factory | contextFunctionInterfaces |  |
+| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:3:35:3:41 | factory | contextFunctionInterfaces | myPlugin(stuff, options) |
 | autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:3:35:3:41 | factory | contextSurroundingFunctionParameters | (factory) |
 | autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:3:35:3:41 | factory | enclosingFunctionBody | factory define function define amd define jquery jquery-ui factory factory jQuery |
 | autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:3:35:3:41 | factory | enclosingFunctionName |  |
 | autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:3:35:3:41 | factory | fileImports | jquery jquery-ui |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:8:7:8:14 | "<span>" | contextFunctionInterfaces |  |
+| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:8:7:8:14 | "<span>" | contextFunctionInterfaces | myPlugin(stuff, options) |
 | autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:8:7:8:14 | "<span>" | contextSurroundingFunctionParameters | ($) |
 | autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:8:7:8:14 | "<span>" | enclosingFunctionBody | $ $ <span> $ trim foo </span> |
 | autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:8:7:8:14 | "<span>" | enclosingFunctionName |  |
@@ -17766,12 +22573,12 @@ tokenFeatures
 | autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:8:7:8:42 | "<span> ... /span>" | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:8:7:8:42 | "<span> ... /span>" | InputArgumentIndex | 0 |
 | autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:8:7:8:42 | "<span> ... /span>" | calleeImports | jquery |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:8:7:8:42 | "<span> ... /span>" | contextFunctionInterfaces |  |
+| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:8:7:8:42 | "<span> ... /span>" | contextFunctionInterfaces | myPlugin(stuff, options) |
 | autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:8:7:8:42 | "<span> ... /span>" | contextSurroundingFunctionParameters | ($) |
 | autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:8:7:8:42 | "<span> ... /span>" | enclosingFunctionBody | $ $ <span> $ trim foo </span> |
 | autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:8:7:8:42 | "<span> ... /span>" | enclosingFunctionName |  |
 | autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:8:7:8:42 | "<span> ... /span>" | fileImports | jquery jquery-ui |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:8:18:8:30 | $.trim("foo") | contextFunctionInterfaces |  |
+| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:8:18:8:30 | $.trim("foo") | contextFunctionInterfaces | myPlugin(stuff, options) |
 | autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:8:18:8:30 | $.trim("foo") | contextSurroundingFunctionParameters | ($) |
 | autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:8:18:8:30 | $.trim("foo") | enclosingFunctionBody | $ $ <span> $ trim foo </span> |
 | autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:8:18:8:30 | $.trim("foo") | enclosingFunctionName |  |
@@ -17780,502 +22587,1023 @@ tokenFeatures
 | autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:8:25:8:29 | "foo" | CalleeFlexibleAccessPath | $.trim |
 | autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:8:25:8:29 | "foo" | InputArgumentIndex | 0 |
 | autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:8:25:8:29 | "foo" | calleeImports | jquery |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:8:25:8:29 | "foo" | contextFunctionInterfaces |  |
+| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:8:25:8:29 | "foo" | contextFunctionInterfaces | myPlugin(stuff, options) |
 | autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:8:25:8:29 | "foo" | contextSurroundingFunctionParameters | ($) |
 | autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:8:25:8:29 | "foo" | enclosingFunctionBody | $ $ <span> $ trim foo </span> |
 | autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:8:25:8:29 | "foo" | enclosingFunctionName |  |
 | autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:8:25:8:29 | "foo" | fileImports | jquery jquery-ui |
 | autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:8:25:8:29 | "foo" | receiverName | $ |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:8:34:8:42 | "</span>" | contextFunctionInterfaces |  |
+| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:8:34:8:42 | "</span>" | contextFunctionInterfaces | myPlugin(stuff, options) |
 | autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:8:34:8:42 | "</span>" | contextSurroundingFunctionParameters | ($) |
 | autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:8:34:8:42 | "</span>" | enclosingFunctionBody | $ $ <span> $ trim foo </span> |
 | autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:8:34:8:42 | "</span>" | enclosingFunctionName |  |
 | autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:8:34:8:42 | "</span>" | fileImports | jquery jquery-ui |
 | autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:8:34:8:42 | "</span>" | stringConcatenatedWith | '<span>' + $.trim() -endpoint-  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:2:18:2:25 | "<span>" | contextFunctionInterfaces | constructor(s)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:12:7:12:12 | "#foo" | CalleeFlexibleAccessPath | $ |
+| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:12:7:12:12 | "#foo" | InputArgumentIndex | 0 |
+| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:12:7:12:12 | "#foo" | contextFunctionInterfaces | myPlugin(stuff, options) |
+| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:12:7:12:12 | "#foo" | contextSurroundingFunctionParameters | (stuff, options) |
+| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:12:7:12:12 | "#foo" | enclosingFunctionBody | stuff options $ #foo html <span> options foo </span> $ #foo html <span> stuff </span> |
+| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:12:7:12:12 | "#foo" | enclosingFunctionName | myPlugin |
+| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:12:7:12:12 | "#foo" | fileImports | jquery jquery-ui |
+| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:12:20:12:27 | "<span>" | contextFunctionInterfaces | myPlugin(stuff, options) |
+| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:12:20:12:27 | "<span>" | contextSurroundingFunctionParameters | (stuff, options) |
+| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:12:20:12:27 | "<span>" | enclosingFunctionBody | stuff options $ #foo html <span> options foo </span> $ #foo html <span> stuff </span> |
+| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:12:20:12:27 | "<span>" | enclosingFunctionName | myPlugin |
+| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:12:20:12:27 | "<span>" | fileImports | jquery jquery-ui |
+| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:12:20:12:27 | "<span>" | stringConcatenatedWith |  -endpoint- options.foo + '</span>' |
+| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:12:20:12:53 | "<span> ... /span>" | CalleeFlexibleAccessPath | $().html |
+| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:12:20:12:53 | "<span> ... /span>" | InputArgumentIndex | 0 |
+| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:12:20:12:53 | "<span> ... /span>" | contextFunctionInterfaces | myPlugin(stuff, options) |
+| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:12:20:12:53 | "<span> ... /span>" | contextSurroundingFunctionParameters | (stuff, options) |
+| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:12:20:12:53 | "<span> ... /span>" | enclosingFunctionBody | stuff options $ #foo html <span> options foo </span> $ #foo html <span> stuff </span> |
+| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:12:20:12:53 | "<span> ... /span>" | enclosingFunctionName | myPlugin |
+| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:12:20:12:53 | "<span> ... /span>" | fileImports | jquery jquery-ui |
+| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:12:31:12:41 | options.foo | contextFunctionInterfaces | myPlugin(stuff, options) |
+| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:12:31:12:41 | options.foo | contextSurroundingFunctionParameters | (stuff, options) |
+| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:12:31:12:41 | options.foo | enclosingFunctionBody | stuff options $ #foo html <span> options foo </span> $ #foo html <span> stuff </span> |
+| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:12:31:12:41 | options.foo | enclosingFunctionName | myPlugin |
+| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:12:31:12:41 | options.foo | fileImports | jquery jquery-ui |
+| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:12:31:12:41 | options.foo | stringConcatenatedWith | '<span>' -endpoint- '</span>' |
+| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:12:45:12:53 | "</span>" | contextFunctionInterfaces | myPlugin(stuff, options) |
+| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:12:45:12:53 | "</span>" | contextSurroundingFunctionParameters | (stuff, options) |
+| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:12:45:12:53 | "</span>" | enclosingFunctionBody | stuff options $ #foo html <span> options foo </span> $ #foo html <span> stuff </span> |
+| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:12:45:12:53 | "</span>" | enclosingFunctionName | myPlugin |
+| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:12:45:12:53 | "</span>" | fileImports | jquery jquery-ui |
+| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:12:45:12:53 | "</span>" | stringConcatenatedWith | '<span>' + options.foo -endpoint-  |
+| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:14:7:14:12 | "#foo" | CalleeFlexibleAccessPath | $ |
+| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:14:7:14:12 | "#foo" | InputArgumentIndex | 0 |
+| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:14:7:14:12 | "#foo" | contextFunctionInterfaces | myPlugin(stuff, options) |
+| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:14:7:14:12 | "#foo" | contextSurroundingFunctionParameters | (stuff, options) |
+| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:14:7:14:12 | "#foo" | enclosingFunctionBody | stuff options $ #foo html <span> options foo </span> $ #foo html <span> stuff </span> |
+| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:14:7:14:12 | "#foo" | enclosingFunctionName | myPlugin |
+| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:14:7:14:12 | "#foo" | fileImports | jquery jquery-ui |
+| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:14:20:14:27 | "<span>" | contextFunctionInterfaces | myPlugin(stuff, options) |
+| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:14:20:14:27 | "<span>" | contextSurroundingFunctionParameters | (stuff, options) |
+| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:14:20:14:27 | "<span>" | enclosingFunctionBody | stuff options $ #foo html <span> options foo </span> $ #foo html <span> stuff </span> |
+| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:14:20:14:27 | "<span>" | enclosingFunctionName | myPlugin |
+| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:14:20:14:27 | "<span>" | fileImports | jquery jquery-ui |
+| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:14:20:14:27 | "<span>" | stringConcatenatedWith |  -endpoint- stuff + '</span>' |
+| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:14:20:14:47 | "<span> ... /span>" | CalleeFlexibleAccessPath | $().html |
+| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:14:20:14:47 | "<span> ... /span>" | InputArgumentIndex | 0 |
+| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:14:20:14:47 | "<span> ... /span>" | contextFunctionInterfaces | myPlugin(stuff, options) |
+| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:14:20:14:47 | "<span> ... /span>" | contextSurroundingFunctionParameters | (stuff, options) |
+| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:14:20:14:47 | "<span> ... /span>" | enclosingFunctionBody | stuff options $ #foo html <span> options foo </span> $ #foo html <span> stuff </span> |
+| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:14:20:14:47 | "<span> ... /span>" | enclosingFunctionName | myPlugin |
+| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:14:20:14:47 | "<span> ... /span>" | fileImports | jquery jquery-ui |
+| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:14:31:14:35 | stuff | contextFunctionInterfaces | myPlugin(stuff, options) |
+| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:14:31:14:35 | stuff | contextSurroundingFunctionParameters | (stuff, options) |
+| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:14:31:14:35 | stuff | enclosingFunctionBody | stuff options $ #foo html <span> options foo </span> $ #foo html <span> stuff </span> |
+| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:14:31:14:35 | stuff | enclosingFunctionName | myPlugin |
+| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:14:31:14:35 | stuff | fileImports | jquery jquery-ui |
+| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:14:31:14:35 | stuff | stringConcatenatedWith | '<span>' -endpoint- '</span>' |
+| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:14:39:14:47 | "</span>" | contextFunctionInterfaces | myPlugin(stuff, options) |
+| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:14:39:14:47 | "</span>" | contextSurroundingFunctionParameters | (stuff, options) |
+| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:14:39:14:47 | "</span>" | enclosingFunctionBody | stuff options $ #foo html <span> options foo </span> $ #foo html <span> stuff </span> |
+| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:14:39:14:47 | "</span>" | enclosingFunctionName | myPlugin |
+| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:14:39:14:47 | "</span>" | fileImports | jquery jquery-ui |
+| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:14:39:14:47 | "</span>" | stringConcatenatedWith | '<span>' + stuff -endpoint-  |
+| autogenerated/Xss/UnsafeHtmlConstruction/lib2/index.ts:2:18:2:25 | "<span>" | contextFunctionInterfaces | trivialXss(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/lib2/index.ts:2:18:2:25 | "<span>" | contextSurroundingFunctionParameters | (s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/lib2/index.ts:2:18:2:25 | "<span>" | enclosingFunctionBody | s html <span> s </span> document querySelector #html innerHTML html |
+| autogenerated/Xss/UnsafeHtmlConstruction/lib2/index.ts:2:18:2:25 | "<span>" | enclosingFunctionName | trivialXss |
+| autogenerated/Xss/UnsafeHtmlConstruction/lib2/index.ts:2:18:2:25 | "<span>" | fileImports |  |
+| autogenerated/Xss/UnsafeHtmlConstruction/lib2/index.ts:2:18:2:25 | "<span>" | stringConcatenatedWith |  -endpoint- s + '</span>' |
+| autogenerated/Xss/UnsafeHtmlConstruction/lib2/index.ts:2:18:2:41 | "<span> ... /span>" | contextFunctionInterfaces | trivialXss(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/lib2/index.ts:2:18:2:41 | "<span> ... /span>" | contextSurroundingFunctionParameters | (s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/lib2/index.ts:2:18:2:41 | "<span> ... /span>" | enclosingFunctionBody | s html <span> s </span> document querySelector #html innerHTML html |
+| autogenerated/Xss/UnsafeHtmlConstruction/lib2/index.ts:2:18:2:41 | "<span> ... /span>" | enclosingFunctionName | trivialXss |
+| autogenerated/Xss/UnsafeHtmlConstruction/lib2/index.ts:2:18:2:41 | "<span> ... /span>" | fileImports |  |
+| autogenerated/Xss/UnsafeHtmlConstruction/lib2/index.ts:2:29:2:29 | s | contextFunctionInterfaces | trivialXss(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/lib2/index.ts:2:29:2:29 | s | contextSurroundingFunctionParameters | (s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/lib2/index.ts:2:29:2:29 | s | enclosingFunctionBody | s html <span> s </span> document querySelector #html innerHTML html |
+| autogenerated/Xss/UnsafeHtmlConstruction/lib2/index.ts:2:29:2:29 | s | enclosingFunctionName | trivialXss |
+| autogenerated/Xss/UnsafeHtmlConstruction/lib2/index.ts:2:29:2:29 | s | fileImports |  |
+| autogenerated/Xss/UnsafeHtmlConstruction/lib2/index.ts:2:29:2:29 | s | stringConcatenatedWith | '<span>' -endpoint- '</span>' |
+| autogenerated/Xss/UnsafeHtmlConstruction/lib2/index.ts:2:33:2:41 | "</span>" | contextFunctionInterfaces | trivialXss(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/lib2/index.ts:2:33:2:41 | "</span>" | contextSurroundingFunctionParameters | (s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/lib2/index.ts:2:33:2:41 | "</span>" | enclosingFunctionBody | s html <span> s </span> document querySelector #html innerHTML html |
+| autogenerated/Xss/UnsafeHtmlConstruction/lib2/index.ts:2:33:2:41 | "</span>" | enclosingFunctionName | trivialXss |
+| autogenerated/Xss/UnsafeHtmlConstruction/lib2/index.ts:2:33:2:41 | "</span>" | fileImports |  |
+| autogenerated/Xss/UnsafeHtmlConstruction/lib2/index.ts:2:33:2:41 | "</span>" | stringConcatenatedWith | '<span>' + s -endpoint-  |
+| autogenerated/Xss/UnsafeHtmlConstruction/lib2/index.ts:3:28:3:34 | "#html" | CalleeFlexibleAccessPath | document.querySelector |
+| autogenerated/Xss/UnsafeHtmlConstruction/lib2/index.ts:3:28:3:34 | "#html" | InputArgumentIndex | 0 |
+| autogenerated/Xss/UnsafeHtmlConstruction/lib2/index.ts:3:28:3:34 | "#html" | contextFunctionInterfaces | trivialXss(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/lib2/index.ts:3:28:3:34 | "#html" | contextSurroundingFunctionParameters | (s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/lib2/index.ts:3:28:3:34 | "#html" | enclosingFunctionBody | s html <span> s </span> document querySelector #html innerHTML html |
+| autogenerated/Xss/UnsafeHtmlConstruction/lib2/index.ts:3:28:3:34 | "#html" | enclosingFunctionName | trivialXss |
+| autogenerated/Xss/UnsafeHtmlConstruction/lib2/index.ts:3:28:3:34 | "#html" | fileImports |  |
+| autogenerated/Xss/UnsafeHtmlConstruction/lib2/index.ts:3:28:3:34 | "#html" | receiverName | document |
+| autogenerated/Xss/UnsafeHtmlConstruction/lib2/index.ts:3:49:3:52 | html | assignedToPropName | innerHTML |
+| autogenerated/Xss/UnsafeHtmlConstruction/lib2/index.ts:3:49:3:52 | html | contextFunctionInterfaces | trivialXss(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/lib2/index.ts:3:49:3:52 | html | contextSurroundingFunctionParameters | (s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/lib2/index.ts:3:49:3:52 | html | enclosingFunctionBody | s html <span> s </span> document querySelector #html innerHTML html |
+| autogenerated/Xss/UnsafeHtmlConstruction/lib2/index.ts:3:49:3:52 | html | enclosingFunctionName | trivialXss |
+| autogenerated/Xss/UnsafeHtmlConstruction/lib2/index.ts:3:49:3:52 | html | fileImports |  |
+| autogenerated/Xss/UnsafeHtmlConstruction/lib2/src/MyNode.ts:2:18:2:25 | "<span>" | contextFunctionInterfaces | trivialXss(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/lib2/src/MyNode.ts:2:18:2:25 | "<span>" | contextSurroundingFunctionParameters | (s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/lib2/src/MyNode.ts:2:18:2:25 | "<span>" | enclosingFunctionBody | s html <span> s </span> document querySelector #html innerHTML html |
+| autogenerated/Xss/UnsafeHtmlConstruction/lib2/src/MyNode.ts:2:18:2:25 | "<span>" | enclosingFunctionName | trivialXss |
+| autogenerated/Xss/UnsafeHtmlConstruction/lib2/src/MyNode.ts:2:18:2:25 | "<span>" | fileImports |  |
+| autogenerated/Xss/UnsafeHtmlConstruction/lib2/src/MyNode.ts:2:18:2:25 | "<span>" | stringConcatenatedWith |  -endpoint- s + '</span>' |
+| autogenerated/Xss/UnsafeHtmlConstruction/lib2/src/MyNode.ts:2:18:2:41 | "<span> ... /span>" | contextFunctionInterfaces | trivialXss(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/lib2/src/MyNode.ts:2:18:2:41 | "<span> ... /span>" | contextSurroundingFunctionParameters | (s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/lib2/src/MyNode.ts:2:18:2:41 | "<span> ... /span>" | enclosingFunctionBody | s html <span> s </span> document querySelector #html innerHTML html |
+| autogenerated/Xss/UnsafeHtmlConstruction/lib2/src/MyNode.ts:2:18:2:41 | "<span> ... /span>" | enclosingFunctionName | trivialXss |
+| autogenerated/Xss/UnsafeHtmlConstruction/lib2/src/MyNode.ts:2:18:2:41 | "<span> ... /span>" | fileImports |  |
+| autogenerated/Xss/UnsafeHtmlConstruction/lib2/src/MyNode.ts:2:29:2:29 | s | contextFunctionInterfaces | trivialXss(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/lib2/src/MyNode.ts:2:29:2:29 | s | contextSurroundingFunctionParameters | (s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/lib2/src/MyNode.ts:2:29:2:29 | s | enclosingFunctionBody | s html <span> s </span> document querySelector #html innerHTML html |
+| autogenerated/Xss/UnsafeHtmlConstruction/lib2/src/MyNode.ts:2:29:2:29 | s | enclosingFunctionName | trivialXss |
+| autogenerated/Xss/UnsafeHtmlConstruction/lib2/src/MyNode.ts:2:29:2:29 | s | fileImports |  |
+| autogenerated/Xss/UnsafeHtmlConstruction/lib2/src/MyNode.ts:2:29:2:29 | s | stringConcatenatedWith | '<span>' -endpoint- '</span>' |
+| autogenerated/Xss/UnsafeHtmlConstruction/lib2/src/MyNode.ts:2:33:2:41 | "</span>" | contextFunctionInterfaces | trivialXss(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/lib2/src/MyNode.ts:2:33:2:41 | "</span>" | contextSurroundingFunctionParameters | (s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/lib2/src/MyNode.ts:2:33:2:41 | "</span>" | enclosingFunctionBody | s html <span> s </span> document querySelector #html innerHTML html |
+| autogenerated/Xss/UnsafeHtmlConstruction/lib2/src/MyNode.ts:2:33:2:41 | "</span>" | enclosingFunctionName | trivialXss |
+| autogenerated/Xss/UnsafeHtmlConstruction/lib2/src/MyNode.ts:2:33:2:41 | "</span>" | fileImports |  |
+| autogenerated/Xss/UnsafeHtmlConstruction/lib2/src/MyNode.ts:2:33:2:41 | "</span>" | stringConcatenatedWith | '<span>' + s -endpoint-  |
+| autogenerated/Xss/UnsafeHtmlConstruction/lib2/src/MyNode.ts:3:28:3:34 | "#html" | CalleeFlexibleAccessPath | document.querySelector |
+| autogenerated/Xss/UnsafeHtmlConstruction/lib2/src/MyNode.ts:3:28:3:34 | "#html" | InputArgumentIndex | 0 |
+| autogenerated/Xss/UnsafeHtmlConstruction/lib2/src/MyNode.ts:3:28:3:34 | "#html" | contextFunctionInterfaces | trivialXss(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/lib2/src/MyNode.ts:3:28:3:34 | "#html" | contextSurroundingFunctionParameters | (s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/lib2/src/MyNode.ts:3:28:3:34 | "#html" | enclosingFunctionBody | s html <span> s </span> document querySelector #html innerHTML html |
+| autogenerated/Xss/UnsafeHtmlConstruction/lib2/src/MyNode.ts:3:28:3:34 | "#html" | enclosingFunctionName | trivialXss |
+| autogenerated/Xss/UnsafeHtmlConstruction/lib2/src/MyNode.ts:3:28:3:34 | "#html" | fileImports |  |
+| autogenerated/Xss/UnsafeHtmlConstruction/lib2/src/MyNode.ts:3:28:3:34 | "#html" | receiverName | document |
+| autogenerated/Xss/UnsafeHtmlConstruction/lib2/src/MyNode.ts:3:49:3:52 | html | assignedToPropName | innerHTML |
+| autogenerated/Xss/UnsafeHtmlConstruction/lib2/src/MyNode.ts:3:49:3:52 | html | contextFunctionInterfaces | trivialXss(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/lib2/src/MyNode.ts:3:49:3:52 | html | contextSurroundingFunctionParameters | (s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/lib2/src/MyNode.ts:3:49:3:52 | html | enclosingFunctionBody | s html <span> s </span> document querySelector #html innerHTML html |
+| autogenerated/Xss/UnsafeHtmlConstruction/lib2/src/MyNode.ts:3:49:3:52 | html | enclosingFunctionName | trivialXss |
+| autogenerated/Xss/UnsafeHtmlConstruction/lib2/src/MyNode.ts:3:49:3:52 | html | fileImports |  |
+| autogenerated/Xss/UnsafeHtmlConstruction/lib/src/MyNode.ts:2:18:2:25 | "<span>" | contextFunctionInterfaces | trivialXss(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/lib/src/MyNode.ts:2:18:2:25 | "<span>" | contextSurroundingFunctionParameters | (s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/lib/src/MyNode.ts:2:18:2:25 | "<span>" | enclosingFunctionBody | s html <span> s </span> document querySelector #html innerHTML html |
+| autogenerated/Xss/UnsafeHtmlConstruction/lib/src/MyNode.ts:2:18:2:25 | "<span>" | enclosingFunctionName | trivialXss |
+| autogenerated/Xss/UnsafeHtmlConstruction/lib/src/MyNode.ts:2:18:2:25 | "<span>" | fileImports |  |
+| autogenerated/Xss/UnsafeHtmlConstruction/lib/src/MyNode.ts:2:18:2:25 | "<span>" | stringConcatenatedWith |  -endpoint- s + '</span>' |
+| autogenerated/Xss/UnsafeHtmlConstruction/lib/src/MyNode.ts:2:18:2:41 | "<span> ... /span>" | contextFunctionInterfaces | trivialXss(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/lib/src/MyNode.ts:2:18:2:41 | "<span> ... /span>" | contextSurroundingFunctionParameters | (s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/lib/src/MyNode.ts:2:18:2:41 | "<span> ... /span>" | enclosingFunctionBody | s html <span> s </span> document querySelector #html innerHTML html |
+| autogenerated/Xss/UnsafeHtmlConstruction/lib/src/MyNode.ts:2:18:2:41 | "<span> ... /span>" | enclosingFunctionName | trivialXss |
+| autogenerated/Xss/UnsafeHtmlConstruction/lib/src/MyNode.ts:2:18:2:41 | "<span> ... /span>" | fileImports |  |
+| autogenerated/Xss/UnsafeHtmlConstruction/lib/src/MyNode.ts:2:29:2:29 | s | contextFunctionInterfaces | trivialXss(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/lib/src/MyNode.ts:2:29:2:29 | s | contextSurroundingFunctionParameters | (s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/lib/src/MyNode.ts:2:29:2:29 | s | enclosingFunctionBody | s html <span> s </span> document querySelector #html innerHTML html |
+| autogenerated/Xss/UnsafeHtmlConstruction/lib/src/MyNode.ts:2:29:2:29 | s | enclosingFunctionName | trivialXss |
+| autogenerated/Xss/UnsafeHtmlConstruction/lib/src/MyNode.ts:2:29:2:29 | s | fileImports |  |
+| autogenerated/Xss/UnsafeHtmlConstruction/lib/src/MyNode.ts:2:29:2:29 | s | stringConcatenatedWith | '<span>' -endpoint- '</span>' |
+| autogenerated/Xss/UnsafeHtmlConstruction/lib/src/MyNode.ts:2:33:2:41 | "</span>" | contextFunctionInterfaces | trivialXss(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/lib/src/MyNode.ts:2:33:2:41 | "</span>" | contextSurroundingFunctionParameters | (s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/lib/src/MyNode.ts:2:33:2:41 | "</span>" | enclosingFunctionBody | s html <span> s </span> document querySelector #html innerHTML html |
+| autogenerated/Xss/UnsafeHtmlConstruction/lib/src/MyNode.ts:2:33:2:41 | "</span>" | enclosingFunctionName | trivialXss |
+| autogenerated/Xss/UnsafeHtmlConstruction/lib/src/MyNode.ts:2:33:2:41 | "</span>" | fileImports |  |
+| autogenerated/Xss/UnsafeHtmlConstruction/lib/src/MyNode.ts:2:33:2:41 | "</span>" | stringConcatenatedWith | '<span>' + s -endpoint-  |
+| autogenerated/Xss/UnsafeHtmlConstruction/lib/src/MyNode.ts:3:28:3:34 | "#html" | CalleeFlexibleAccessPath | document.querySelector |
+| autogenerated/Xss/UnsafeHtmlConstruction/lib/src/MyNode.ts:3:28:3:34 | "#html" | InputArgumentIndex | 0 |
+| autogenerated/Xss/UnsafeHtmlConstruction/lib/src/MyNode.ts:3:28:3:34 | "#html" | contextFunctionInterfaces | trivialXss(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/lib/src/MyNode.ts:3:28:3:34 | "#html" | contextSurroundingFunctionParameters | (s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/lib/src/MyNode.ts:3:28:3:34 | "#html" | enclosingFunctionBody | s html <span> s </span> document querySelector #html innerHTML html |
+| autogenerated/Xss/UnsafeHtmlConstruction/lib/src/MyNode.ts:3:28:3:34 | "#html" | enclosingFunctionName | trivialXss |
+| autogenerated/Xss/UnsafeHtmlConstruction/lib/src/MyNode.ts:3:28:3:34 | "#html" | fileImports |  |
+| autogenerated/Xss/UnsafeHtmlConstruction/lib/src/MyNode.ts:3:28:3:34 | "#html" | receiverName | document |
+| autogenerated/Xss/UnsafeHtmlConstruction/lib/src/MyNode.ts:3:49:3:52 | html | assignedToPropName | innerHTML |
+| autogenerated/Xss/UnsafeHtmlConstruction/lib/src/MyNode.ts:3:49:3:52 | html | contextFunctionInterfaces | trivialXss(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/lib/src/MyNode.ts:3:49:3:52 | html | contextSurroundingFunctionParameters | (s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/lib/src/MyNode.ts:3:49:3:52 | html | enclosingFunctionBody | s html <span> s </span> document querySelector #html innerHTML html |
+| autogenerated/Xss/UnsafeHtmlConstruction/lib/src/MyNode.ts:3:49:3:52 | html | enclosingFunctionName | trivialXss |
+| autogenerated/Xss/UnsafeHtmlConstruction/lib/src/MyNode.ts:3:49:3:52 | html | fileImports |  |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:2:18:2:25 | "<span>" | contextFunctionInterfaces | constructor(s)\ncreateHTML(x)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\ntypes(val)\nusesCreateHTML(x)\nusesCreateHTML(x)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:2:18:2:25 | "<span>" | contextSurroundingFunctionParameters | (s) |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:2:18:2:25 | "<span>" | enclosingFunctionBody | s html <span> s </span> document querySelector #html innerHTML html |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:2:18:2:25 | "<span>" | enclosingFunctionName | xssThroughHTMLConstruction |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:2:18:2:25 | "<span>" | fileImports | ./jquery-plugin ./typed markdown-it striptags |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:2:18:2:25 | "<span>" | fileImports | ./jquery-plugin ./typed markdown-it mermaid striptags |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:2:18:2:25 | "<span>" | stringConcatenatedWith |  -endpoint- s + '</span>' |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:2:18:2:41 | "<span> ... /span>" | contextFunctionInterfaces | constructor(s)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:2:18:2:41 | "<span> ... /span>" | contextFunctionInterfaces | constructor(s)\ncreateHTML(x)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\ntypes(val)\nusesCreateHTML(x)\nusesCreateHTML(x)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:2:18:2:41 | "<span> ... /span>" | contextSurroundingFunctionParameters | (s) |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:2:18:2:41 | "<span> ... /span>" | enclosingFunctionBody | s html <span> s </span> document querySelector #html innerHTML html |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:2:18:2:41 | "<span> ... /span>" | enclosingFunctionName | xssThroughHTMLConstruction |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:2:18:2:41 | "<span> ... /span>" | fileImports | ./jquery-plugin ./typed markdown-it striptags |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:2:29:2:29 | s | contextFunctionInterfaces | constructor(s)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:2:18:2:41 | "<span> ... /span>" | fileImports | ./jquery-plugin ./typed markdown-it mermaid striptags |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:2:29:2:29 | s | contextFunctionInterfaces | constructor(s)\ncreateHTML(x)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\ntypes(val)\nusesCreateHTML(x)\nusesCreateHTML(x)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:2:29:2:29 | s | contextSurroundingFunctionParameters | (s) |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:2:29:2:29 | s | enclosingFunctionBody | s html <span> s </span> document querySelector #html innerHTML html |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:2:29:2:29 | s | enclosingFunctionName | xssThroughHTMLConstruction |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:2:29:2:29 | s | fileImports | ./jquery-plugin ./typed markdown-it striptags |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:2:29:2:29 | s | fileImports | ./jquery-plugin ./typed markdown-it mermaid striptags |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:2:29:2:29 | s | stringConcatenatedWith | '<span>' -endpoint- '</span>' |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:2:33:2:41 | "</span>" | contextFunctionInterfaces | constructor(s)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:2:33:2:41 | "</span>" | contextFunctionInterfaces | constructor(s)\ncreateHTML(x)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\ntypes(val)\nusesCreateHTML(x)\nusesCreateHTML(x)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:2:33:2:41 | "</span>" | contextSurroundingFunctionParameters | (s) |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:2:33:2:41 | "</span>" | enclosingFunctionBody | s html <span> s </span> document querySelector #html innerHTML html |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:2:33:2:41 | "</span>" | enclosingFunctionName | xssThroughHTMLConstruction |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:2:33:2:41 | "</span>" | fileImports | ./jquery-plugin ./typed markdown-it striptags |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:2:33:2:41 | "</span>" | fileImports | ./jquery-plugin ./typed markdown-it mermaid striptags |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:2:33:2:41 | "</span>" | stringConcatenatedWith | '<span>' + s -endpoint-  |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:3:28:3:34 | "#html" | CalleeFlexibleAccessPath | document.querySelector |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:3:28:3:34 | "#html" | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:3:28:3:34 | "#html" | contextFunctionInterfaces | constructor(s)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:3:28:3:34 | "#html" | contextFunctionInterfaces | constructor(s)\ncreateHTML(x)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\ntypes(val)\nusesCreateHTML(x)\nusesCreateHTML(x)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:3:28:3:34 | "#html" | contextSurroundingFunctionParameters | (s) |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:3:28:3:34 | "#html" | enclosingFunctionBody | s html <span> s </span> document querySelector #html innerHTML html |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:3:28:3:34 | "#html" | enclosingFunctionName | xssThroughHTMLConstruction |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:3:28:3:34 | "#html" | fileImports | ./jquery-plugin ./typed markdown-it striptags |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:3:28:3:34 | "#html" | fileImports | ./jquery-plugin ./typed markdown-it mermaid striptags |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:3:28:3:34 | "#html" | receiverName | document |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:3:49:3:52 | html | assignedToPropName | innerHTML |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:3:49:3:52 | html | contextFunctionInterfaces | constructor(s)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:3:49:3:52 | html | contextFunctionInterfaces | constructor(s)\ncreateHTML(x)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\ntypes(val)\nusesCreateHTML(x)\nusesCreateHTML(x)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:3:49:3:52 | html | contextSurroundingFunctionParameters | (s) |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:3:49:3:52 | html | enclosingFunctionBody | s html <span> s </span> document querySelector #html innerHTML html |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:3:49:3:52 | html | enclosingFunctionName | xssThroughHTMLConstruction |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:3:49:3:52 | html | fileImports | ./jquery-plugin ./typed markdown-it striptags |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:3:49:3:52 | html | fileImports | ./jquery-plugin ./typed markdown-it mermaid striptags |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:7:49:7:49 | s | CalleeFlexibleAccessPath | DOMParser().parseFromString |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:7:49:7:49 | s | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:7:49:7:49 | s | contextFunctionInterfaces | constructor(s)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:7:49:7:49 | s | contextFunctionInterfaces | constructor(s)\ncreateHTML(x)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\ntypes(val)\nusesCreateHTML(x)\nusesCreateHTML(x)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:7:49:7:49 | s | contextSurroundingFunctionParameters | (s) |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:7:49:7:49 | s | enclosingFunctionBody | s doc DOMParser parseFromString s text/xml document querySelector #xml appendChild doc documentElement |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:7:49:7:49 | s | enclosingFunctionName | xssThroughXMLParsing |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:7:49:7:49 | s | fileImports | ./jquery-plugin ./typed markdown-it striptags |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:7:49:7:49 | s | fileImports | ./jquery-plugin ./typed markdown-it mermaid striptags |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:7:52:7:61 | "text/xml" | CalleeFlexibleAccessPath | DOMParser().parseFromString |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:7:52:7:61 | "text/xml" | InputArgumentIndex | 1 |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:7:52:7:61 | "text/xml" | contextFunctionInterfaces | constructor(s)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:7:52:7:61 | "text/xml" | contextFunctionInterfaces | constructor(s)\ncreateHTML(x)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\ntypes(val)\nusesCreateHTML(x)\nusesCreateHTML(x)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:7:52:7:61 | "text/xml" | contextSurroundingFunctionParameters | (s) |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:7:52:7:61 | "text/xml" | enclosingFunctionBody | s doc DOMParser parseFromString s text/xml document querySelector #xml appendChild doc documentElement |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:7:52:7:61 | "text/xml" | enclosingFunctionName | xssThroughXMLParsing |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:7:52:7:61 | "text/xml" | fileImports | ./jquery-plugin ./typed markdown-it striptags |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:7:52:7:61 | "text/xml" | fileImports | ./jquery-plugin ./typed markdown-it mermaid striptags |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:8:28:8:33 | "#xml" | CalleeFlexibleAccessPath | document.querySelector |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:8:28:8:33 | "#xml" | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:8:28:8:33 | "#xml" | contextFunctionInterfaces | constructor(s)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:8:28:8:33 | "#xml" | contextFunctionInterfaces | constructor(s)\ncreateHTML(x)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\ntypes(val)\nusesCreateHTML(x)\nusesCreateHTML(x)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:8:28:8:33 | "#xml" | contextSurroundingFunctionParameters | (s) |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:8:28:8:33 | "#xml" | enclosingFunctionBody | s doc DOMParser parseFromString s text/xml document querySelector #xml appendChild doc documentElement |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:8:28:8:33 | "#xml" | enclosingFunctionName | xssThroughXMLParsing |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:8:28:8:33 | "#xml" | fileImports | ./jquery-plugin ./typed markdown-it striptags |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:8:28:8:33 | "#xml" | fileImports | ./jquery-plugin ./typed markdown-it mermaid striptags |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:8:28:8:33 | "#xml" | receiverName | document |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:8:48:8:66 | doc.documentElement | CalleeFlexibleAccessPath | document.querySelector().appendChild |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:8:48:8:66 | doc.documentElement | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:8:48:8:66 | doc.documentElement | contextFunctionInterfaces | constructor(s)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:8:48:8:66 | doc.documentElement | contextFunctionInterfaces | constructor(s)\ncreateHTML(x)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\ntypes(val)\nusesCreateHTML(x)\nusesCreateHTML(x)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:8:48:8:66 | doc.documentElement | contextSurroundingFunctionParameters | (s) |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:8:48:8:66 | doc.documentElement | enclosingFunctionBody | s doc DOMParser parseFromString s text/xml document querySelector #xml appendChild doc documentElement |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:8:48:8:66 | doc.documentElement | enclosingFunctionName | xssThroughXMLParsing |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:8:48:8:66 | doc.documentElement | fileImports | ./jquery-plugin ./typed markdown-it striptags |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:8:48:8:66 | doc.documentElement | fileImports | ./jquery-plugin ./typed markdown-it mermaid striptags |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:12:49:12:49 | s | CalleeFlexibleAccessPath | DOMParser().parseFromString |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:12:49:12:49 | s | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:12:49:12:49 | s | contextFunctionInterfaces | constructor(s)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:12:49:12:49 | s | contextFunctionInterfaces | constructor(s)\ncreateHTML(x)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\ntypes(val)\nusesCreateHTML(x)\nusesCreateHTML(x)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:12:49:12:49 | s | contextSurroundingFunctionParameters | (s) |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:12:49:12:49 | s | enclosingFunctionBody | s doc DOMParser parseFromString s text/xml xml doc documentElement tmp document createElement span tmp appendChild xml cloneNode document querySelector #xml appendChild tmp |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:12:49:12:49 | s | enclosingFunctionName | xssThroughMoreComplexXMLParsing |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:12:49:12:49 | s | fileImports | ./jquery-plugin ./typed markdown-it striptags |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:12:49:12:49 | s | fileImports | ./jquery-plugin ./typed markdown-it mermaid striptags |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:12:52:12:61 | "text/xml" | CalleeFlexibleAccessPath | DOMParser().parseFromString |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:12:52:12:61 | "text/xml" | InputArgumentIndex | 1 |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:12:52:12:61 | "text/xml" | contextFunctionInterfaces | constructor(s)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:12:52:12:61 | "text/xml" | contextFunctionInterfaces | constructor(s)\ncreateHTML(x)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\ntypes(val)\nusesCreateHTML(x)\nusesCreateHTML(x)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:12:52:12:61 | "text/xml" | contextSurroundingFunctionParameters | (s) |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:12:52:12:61 | "text/xml" | enclosingFunctionBody | s doc DOMParser parseFromString s text/xml xml doc documentElement tmp document createElement span tmp appendChild xml cloneNode document querySelector #xml appendChild tmp |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:12:52:12:61 | "text/xml" | enclosingFunctionName | xssThroughMoreComplexXMLParsing |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:12:52:12:61 | "text/xml" | fileImports | ./jquery-plugin ./typed markdown-it striptags |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:12:52:12:61 | "text/xml" | fileImports | ./jquery-plugin ./typed markdown-it mermaid striptags |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:15:40:15:45 | 'span' | CalleeFlexibleAccessPath | document.createElement |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:15:40:15:45 | 'span' | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:15:40:15:45 | 'span' | contextFunctionInterfaces | constructor(s)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:15:40:15:45 | 'span' | contextFunctionInterfaces | constructor(s)\ncreateHTML(x)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\ntypes(val)\nusesCreateHTML(x)\nusesCreateHTML(x)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:15:40:15:45 | 'span' | contextSurroundingFunctionParameters | (s) |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:15:40:15:45 | 'span' | enclosingFunctionBody | s doc DOMParser parseFromString s text/xml xml doc documentElement tmp document createElement span tmp appendChild xml cloneNode document querySelector #xml appendChild tmp |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:15:40:15:45 | 'span' | enclosingFunctionName | xssThroughMoreComplexXMLParsing |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:15:40:15:45 | 'span' | fileImports | ./jquery-plugin ./typed markdown-it striptags |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:15:40:15:45 | 'span' | fileImports | ./jquery-plugin ./typed markdown-it mermaid striptags |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:15:40:15:45 | 'span' | receiverName | document |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:16:21:16:35 | xml.cloneNode() | CalleeFlexibleAccessPath | tmp.appendChild |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:16:21:16:35 | xml.cloneNode() | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:16:21:16:35 | xml.cloneNode() | contextFunctionInterfaces | constructor(s)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:16:21:16:35 | xml.cloneNode() | contextFunctionInterfaces | constructor(s)\ncreateHTML(x)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\ntypes(val)\nusesCreateHTML(x)\nusesCreateHTML(x)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:16:21:16:35 | xml.cloneNode() | contextSurroundingFunctionParameters | (s) |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:16:21:16:35 | xml.cloneNode() | enclosingFunctionBody | s doc DOMParser parseFromString s text/xml xml doc documentElement tmp document createElement span tmp appendChild xml cloneNode document querySelector #xml appendChild tmp |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:16:21:16:35 | xml.cloneNode() | enclosingFunctionName | xssThroughMoreComplexXMLParsing |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:16:21:16:35 | xml.cloneNode() | fileImports | ./jquery-plugin ./typed markdown-it striptags |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:16:21:16:35 | xml.cloneNode() | fileImports | ./jquery-plugin ./typed markdown-it mermaid striptags |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:16:21:16:35 | xml.cloneNode() | receiverName | tmp |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:17:28:17:33 | "#xml" | CalleeFlexibleAccessPath | document.querySelector |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:17:28:17:33 | "#xml" | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:17:28:17:33 | "#xml" | contextFunctionInterfaces | constructor(s)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:17:28:17:33 | "#xml" | contextFunctionInterfaces | constructor(s)\ncreateHTML(x)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\ntypes(val)\nusesCreateHTML(x)\nusesCreateHTML(x)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:17:28:17:33 | "#xml" | contextSurroundingFunctionParameters | (s) |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:17:28:17:33 | "#xml" | enclosingFunctionBody | s doc DOMParser parseFromString s text/xml xml doc documentElement tmp document createElement span tmp appendChild xml cloneNode document querySelector #xml appendChild tmp |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:17:28:17:33 | "#xml" | enclosingFunctionName | xssThroughMoreComplexXMLParsing |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:17:28:17:33 | "#xml" | fileImports | ./jquery-plugin ./typed markdown-it striptags |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:17:28:17:33 | "#xml" | fileImports | ./jquery-plugin ./typed markdown-it mermaid striptags |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:17:28:17:33 | "#xml" | receiverName | document |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:17:48:17:50 | tmp | CalleeFlexibleAccessPath | document.querySelector().appendChild |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:17:48:17:50 | tmp | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:17:48:17:50 | tmp | contextFunctionInterfaces | constructor(s)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:17:48:17:50 | tmp | contextFunctionInterfaces | constructor(s)\ncreateHTML(x)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\ntypes(val)\nusesCreateHTML(x)\nusesCreateHTML(x)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:17:48:17:50 | tmp | contextSurroundingFunctionParameters | (s) |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:17:48:17:50 | tmp | enclosingFunctionBody | s doc DOMParser parseFromString s text/xml xml doc documentElement tmp document createElement span tmp appendChild xml cloneNode document querySelector #xml appendChild tmp |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:17:48:17:50 | tmp | enclosingFunctionName | xssThroughMoreComplexXMLParsing |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:17:48:17:50 | tmp | fileImports | ./jquery-plugin ./typed markdown-it striptags |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:17:48:17:50 | tmp | fileImports | ./jquery-plugin ./typed markdown-it mermaid striptags |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:20:26:20:38 | 'markdown-it' | CalleeFlexibleAccessPath | require |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:20:26:20:38 | 'markdown-it' | InputArgumentIndex | 0 |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:20:26:20:38 | 'markdown-it' | calleeImports |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:20:26:20:38 | 'markdown-it' | contextFunctionInterfaces | constructor(s)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:20:26:20:38 | 'markdown-it' | contextFunctionInterfaces | constructor(s)\ncreateHTML(x)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\ntypes(val)\nusesCreateHTML(x)\nusesCreateHTML(x)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:20:26:20:38 | 'markdown-it' | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:20:26:20:38 | 'markdown-it' | fileImports | ./jquery-plugin ./typed markdown-it striptags |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:20:26:20:38 | 'markdown-it' | fileImports | ./jquery-plugin ./typed markdown-it mermaid striptags |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:20:41:20:52 | {html: true} | CalleeFlexibleAccessPath | import(!) |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:20:41:20:52 | {html: true} | InputArgumentIndex | 0 |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:20:41:20:52 | {html: true} | calleeImports | markdown-it |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:20:41:20:52 | {html: true} | contextFunctionInterfaces | constructor(s)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:20:41:20:52 | {html: true} | contextFunctionInterfaces | constructor(s)\ncreateHTML(x)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\ntypes(val)\nusesCreateHTML(x)\nusesCreateHTML(x)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:20:41:20:52 | {html: true} | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:20:41:20:52 | {html: true} | fileImports | ./jquery-plugin ./typed markdown-it striptags |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:20:41:20:52 | {html: true} | fileImports | ./jquery-plugin ./typed markdown-it mermaid striptags |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:20:48:20:51 | true | CalleeFlexibleAccessPath | import(!) |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:20:48:20:51 | true | InputAccessPathFromCallee | 0.html |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:20:48:20:51 | true | InputArgumentIndex | 0 |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:20:48:20:51 | true | assignedToPropName | html |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:20:48:20:51 | true | calleeImports | markdown-it |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:20:48:20:51 | true | contextFunctionInterfaces | constructor(s)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:20:48:20:51 | true | contextFunctionInterfaces | constructor(s)\ncreateHTML(x)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\ntypes(val)\nusesCreateHTML(x)\nusesCreateHTML(x)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:20:48:20:51 | true | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:20:48:20:51 | true | fileImports | ./jquery-plugin ./typed markdown-it striptags |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:22:18:22:35 | markdown.render(s) | contextFunctionInterfaces | constructor(s)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:20:48:20:51 | true | fileImports | ./jquery-plugin ./typed markdown-it mermaid striptags |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:22:18:22:35 | markdown.render(s) | contextFunctionInterfaces | constructor(s)\ncreateHTML(x)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\ntypes(val)\nusesCreateHTML(x)\nusesCreateHTML(x)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:22:18:22:35 | markdown.render(s) | contextSurroundingFunctionParameters | (s) |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:22:18:22:35 | markdown.render(s) | enclosingFunctionBody | s html markdown render s document querySelector #markdown innerHTML html |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:22:18:22:35 | markdown.render(s) | enclosingFunctionName | xssThroughMarkdown |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:22:18:22:35 | markdown.render(s) | fileImports | ./jquery-plugin ./typed markdown-it striptags |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:22:18:22:35 | markdown.render(s) | fileImports | ./jquery-plugin ./typed markdown-it mermaid striptags |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:22:34:22:34 | s | CalleeFlexibleAccessPath | markdown.render |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:22:34:22:34 | s | InputArgumentIndex | 0 |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:22:34:22:34 | s | calleeImports | markdown-it |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:22:34:22:34 | s | contextFunctionInterfaces | constructor(s)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:22:34:22:34 | s | contextFunctionInterfaces | constructor(s)\ncreateHTML(x)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\ntypes(val)\nusesCreateHTML(x)\nusesCreateHTML(x)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:22:34:22:34 | s | contextSurroundingFunctionParameters | (s) |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:22:34:22:34 | s | enclosingFunctionBody | s html markdown render s document querySelector #markdown innerHTML html |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:22:34:22:34 | s | enclosingFunctionName | xssThroughMarkdown |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:22:34:22:34 | s | fileImports | ./jquery-plugin ./typed markdown-it striptags |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:22:34:22:34 | s | fileImports | ./jquery-plugin ./typed markdown-it mermaid striptags |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:22:34:22:34 | s | receiverName | markdown |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:23:28:23:38 | "#markdown" | CalleeFlexibleAccessPath | document.querySelector |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:23:28:23:38 | "#markdown" | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:23:28:23:38 | "#markdown" | contextFunctionInterfaces | constructor(s)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:23:28:23:38 | "#markdown" | contextFunctionInterfaces | constructor(s)\ncreateHTML(x)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\ntypes(val)\nusesCreateHTML(x)\nusesCreateHTML(x)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:23:28:23:38 | "#markdown" | contextSurroundingFunctionParameters | (s) |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:23:28:23:38 | "#markdown" | enclosingFunctionBody | s html markdown render s document querySelector #markdown innerHTML html |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:23:28:23:38 | "#markdown" | enclosingFunctionName | xssThroughMarkdown |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:23:28:23:38 | "#markdown" | fileImports | ./jquery-plugin ./typed markdown-it striptags |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:23:28:23:38 | "#markdown" | fileImports | ./jquery-plugin ./typed markdown-it mermaid striptags |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:23:28:23:38 | "#markdown" | receiverName | document |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:23:53:23:56 | html | assignedToPropName | innerHTML |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:23:53:23:56 | html | contextFunctionInterfaces | constructor(s)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:23:53:23:56 | html | contextFunctionInterfaces | constructor(s)\ncreateHTML(x)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\ntypes(val)\nusesCreateHTML(x)\nusesCreateHTML(x)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:23:53:23:56 | html | contextSurroundingFunctionParameters | (s) |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:23:53:23:56 | html | enclosingFunctionBody | s html markdown render s document querySelector #markdown innerHTML html |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:23:53:23:56 | html | enclosingFunctionName | xssThroughMarkdown |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:23:53:23:56 | html | fileImports | ./jquery-plugin ./typed markdown-it striptags |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:23:53:23:56 | html | fileImports | ./jquery-plugin ./typed markdown-it mermaid striptags |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:26:27:26:37 | 'striptags' | CalleeFlexibleAccessPath | require |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:26:27:26:37 | 'striptags' | InputArgumentIndex | 0 |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:26:27:26:37 | 'striptags' | calleeImports |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:26:27:26:37 | 'striptags' | contextFunctionInterfaces | constructor(s)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:26:27:26:37 | 'striptags' | contextFunctionInterfaces | constructor(s)\ncreateHTML(x)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\ntypes(val)\nusesCreateHTML(x)\nusesCreateHTML(x)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:26:27:26:37 | 'striptags' | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:26:27:26:37 | 'striptags' | fileImports | ./jquery-plugin ./typed markdown-it striptags |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:26:27:26:37 | 'striptags' | fileImports | ./jquery-plugin ./typed markdown-it mermaid striptags |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:27:32:30:1 | functio ... html;\\n} | assignedToPropName | sanitizedHTML |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:27:32:30:1 | functio ... html;\\n} | contextFunctionInterfaces | constructor(s)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:27:32:30:1 | functio ... html;\\n} | contextFunctionInterfaces | constructor(s)\ncreateHTML(x)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\ntypes(val)\nusesCreateHTML(x)\nusesCreateHTML(x)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:27:32:30:1 | functio ... html;\\n} | contextSurroundingFunctionParameters | (s) |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:27:32:30:1 | functio ... html;\\n} | fileImports | ./jquery-plugin ./typed markdown-it striptags |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:28:18:28:52 | stripta ... span>") | contextFunctionInterfaces | constructor(s)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:27:32:30:1 | functio ... html;\\n} | fileImports | ./jquery-plugin ./typed markdown-it mermaid striptags |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:28:18:28:52 | stripta ... span>") | contextFunctionInterfaces | constructor(s)\ncreateHTML(x)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\ntypes(val)\nusesCreateHTML(x)\nusesCreateHTML(x)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:28:18:28:52 | stripta ... span>") | contextSurroundingFunctionParameters | (s) |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:28:18:28:52 | stripta ... span>") | enclosingFunctionBody | s html striptags <span> s </span> document querySelector #sanitized innerHTML html |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:28:18:28:52 | stripta ... span>") | enclosingFunctionName | sanitizedHTML |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:28:18:28:52 | stripta ... span>") | fileImports | ./jquery-plugin ./typed markdown-it striptags |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:28:28:28:35 | "<span>" | contextFunctionInterfaces | constructor(s)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:28:18:28:52 | stripta ... span>") | fileImports | ./jquery-plugin ./typed markdown-it mermaid striptags |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:28:28:28:35 | "<span>" | contextFunctionInterfaces | constructor(s)\ncreateHTML(x)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\ntypes(val)\nusesCreateHTML(x)\nusesCreateHTML(x)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:28:28:28:35 | "<span>" | contextSurroundingFunctionParameters | (s) |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:28:28:28:35 | "<span>" | enclosingFunctionBody | s html striptags <span> s </span> document querySelector #sanitized innerHTML html |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:28:28:28:35 | "<span>" | enclosingFunctionName | sanitizedHTML |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:28:28:28:35 | "<span>" | fileImports | ./jquery-plugin ./typed markdown-it striptags |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:28:28:28:35 | "<span>" | fileImports | ./jquery-plugin ./typed markdown-it mermaid striptags |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:28:28:28:35 | "<span>" | stringConcatenatedWith |  -endpoint- s + '</span>' |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:28:39:28:39 | s | contextFunctionInterfaces | constructor(s)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:28:39:28:39 | s | contextFunctionInterfaces | constructor(s)\ncreateHTML(x)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\ntypes(val)\nusesCreateHTML(x)\nusesCreateHTML(x)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:28:39:28:39 | s | contextSurroundingFunctionParameters | (s) |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:28:39:28:39 | s | enclosingFunctionBody | s html striptags <span> s </span> document querySelector #sanitized innerHTML html |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:28:39:28:39 | s | enclosingFunctionName | sanitizedHTML |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:28:39:28:39 | s | fileImports | ./jquery-plugin ./typed markdown-it striptags |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:28:39:28:39 | s | fileImports | ./jquery-plugin ./typed markdown-it mermaid striptags |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:28:39:28:39 | s | stringConcatenatedWith | '<span>' -endpoint- '</span>' |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:28:43:28:51 | "</span>" | contextFunctionInterfaces | constructor(s)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:28:43:28:51 | "</span>" | contextFunctionInterfaces | constructor(s)\ncreateHTML(x)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\ntypes(val)\nusesCreateHTML(x)\nusesCreateHTML(x)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:28:43:28:51 | "</span>" | contextSurroundingFunctionParameters | (s) |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:28:43:28:51 | "</span>" | enclosingFunctionBody | s html striptags <span> s </span> document querySelector #sanitized innerHTML html |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:28:43:28:51 | "</span>" | enclosingFunctionName | sanitizedHTML |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:28:43:28:51 | "</span>" | fileImports | ./jquery-plugin ./typed markdown-it striptags |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:28:43:28:51 | "</span>" | fileImports | ./jquery-plugin ./typed markdown-it mermaid striptags |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:28:43:28:51 | "</span>" | stringConcatenatedWith | '<span>' + s -endpoint-  |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:29:28:29:39 | "#sanitized" | CalleeFlexibleAccessPath | document.querySelector |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:29:28:29:39 | "#sanitized" | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:29:28:29:39 | "#sanitized" | contextFunctionInterfaces | constructor(s)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:29:28:29:39 | "#sanitized" | contextFunctionInterfaces | constructor(s)\ncreateHTML(x)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\ntypes(val)\nusesCreateHTML(x)\nusesCreateHTML(x)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:29:28:29:39 | "#sanitized" | contextSurroundingFunctionParameters | (s) |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:29:28:29:39 | "#sanitized" | enclosingFunctionBody | s html striptags <span> s </span> document querySelector #sanitized innerHTML html |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:29:28:29:39 | "#sanitized" | enclosingFunctionName | sanitizedHTML |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:29:28:29:39 | "#sanitized" | fileImports | ./jquery-plugin ./typed markdown-it striptags |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:29:28:29:39 | "#sanitized" | fileImports | ./jquery-plugin ./typed markdown-it mermaid striptags |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:29:28:29:39 | "#sanitized" | receiverName | document |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:29:54:29:57 | html | assignedToPropName | innerHTML |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:29:54:29:57 | html | contextFunctionInterfaces | constructor(s)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:29:54:29:57 | html | contextFunctionInterfaces | constructor(s)\ncreateHTML(x)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\ntypes(val)\nusesCreateHTML(x)\nusesCreateHTML(x)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:29:54:29:57 | html | contextSurroundingFunctionParameters | (s) |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:29:54:29:57 | html | enclosingFunctionBody | s html striptags <span> s </span> document querySelector #sanitized innerHTML html |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:29:54:29:57 | html | enclosingFunctionName | sanitizedHTML |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:29:54:29:57 | html | fileImports | ./jquery-plugin ./typed markdown-it striptags |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:29:54:29:57 | html | fileImports | ./jquery-plugin ./typed markdown-it mermaid striptags |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:32:29:32:37 | "./typed" | CalleeFlexibleAccessPath | require |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:32:29:32:37 | "./typed" | InputArgumentIndex | 0 |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:32:29:32:37 | "./typed" | calleeImports |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:32:29:32:37 | "./typed" | contextFunctionInterfaces | constructor(s)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:32:29:32:37 | "./typed" | contextFunctionInterfaces | constructor(s)\ncreateHTML(x)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\ntypes(val)\nusesCreateHTML(x)\nusesCreateHTML(x)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:32:29:32:37 | "./typed" | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:32:29:32:37 | "./typed" | fileImports | ./jquery-plugin ./typed markdown-it striptags |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:32:29:32:37 | "./typed" | fileImports | ./jquery-plugin ./typed markdown-it mermaid striptags |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:34:33:34:49 | "./jquery-plugin" | CalleeFlexibleAccessPath | require |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:34:33:34:49 | "./jquery-plugin" | InputArgumentIndex | 0 |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:34:33:34:49 | "./jquery-plugin" | calleeImports |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:34:33:34:49 | "./jquery-plugin" | contextFunctionInterfaces | constructor(s)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:34:33:34:49 | "./jquery-plugin" | contextFunctionInterfaces | constructor(s)\ncreateHTML(x)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\ntypes(val)\nusesCreateHTML(x)\nusesCreateHTML(x)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:34:33:34:49 | "./jquery-plugin" | contextSurroundingFunctionParameters |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:34:33:34:49 | "./jquery-plugin" | fileImports | ./jquery-plugin ./typed markdown-it striptags |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:34:33:34:49 | "./jquery-plugin" | fileImports | ./jquery-plugin ./typed markdown-it mermaid striptags |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:37:49:37:49 | s | CalleeFlexibleAccessPath | DOMParser().parseFromString |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:37:49:37:49 | s | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:37:49:37:49 | s | contextFunctionInterfaces | constructor(s)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:37:49:37:49 | s | contextFunctionInterfaces | constructor(s)\ncreateHTML(x)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\ntypes(val)\nusesCreateHTML(x)\nusesCreateHTML(x)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:37:49:37:49 | s | contextSurroundingFunctionParameters | (s) |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:37:49:37:49 | s | enclosingFunctionBody | s doc DOMParser parseFromString s text/xml |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:37:49:37:49 | s | enclosingFunctionName | plainDOMXMLParsing |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:37:49:37:49 | s | fileImports | ./jquery-plugin ./typed markdown-it striptags |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:37:49:37:49 | s | fileImports | ./jquery-plugin ./typed markdown-it mermaid striptags |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:37:52:37:61 | "text/xml" | CalleeFlexibleAccessPath | DOMParser().parseFromString |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:37:52:37:61 | "text/xml" | InputArgumentIndex | 1 |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:37:52:37:61 | "text/xml" | contextFunctionInterfaces | constructor(s)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:37:52:37:61 | "text/xml" | contextFunctionInterfaces | constructor(s)\ncreateHTML(x)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\ntypes(val)\nusesCreateHTML(x)\nusesCreateHTML(x)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:37:52:37:61 | "text/xml" | contextSurroundingFunctionParameters | (s) |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:37:52:37:61 | "text/xml" | enclosingFunctionBody | s doc DOMParser parseFromString s text/xml |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:37:52:37:61 | "text/xml" | enclosingFunctionName | plainDOMXMLParsing |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:37:52:37:61 | "text/xml" | fileImports | ./jquery-plugin ./typed markdown-it striptags |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:37:52:37:61 | "text/xml" | fileImports | ./jquery-plugin ./typed markdown-it mermaid striptags |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:47:32:47:39 | "#class" | CalleeFlexibleAccessPath | document.querySelector |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:47:32:47:39 | "#class" | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:47:32:47:39 | "#class" | contextFunctionInterfaces | constructor(s)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:47:32:47:39 | "#class" | contextFunctionInterfaces | constructor(s)\ncreateHTML(x)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\ntypes(val)\nusesCreateHTML(x)\nusesCreateHTML(x)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:47:32:47:39 | "#class" | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:47:32:47:39 | "#class" | enclosingFunctionBody | document querySelector #class innerHTML <span> step </span> |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:47:32:47:39 | "#class" | enclosingFunctionName | doXss |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:47:32:47:39 | "#class" | fileImports | ./jquery-plugin ./typed markdown-it striptags |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:47:32:47:39 | "#class" | fileImports | ./jquery-plugin ./typed markdown-it mermaid striptags |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:47:32:47:39 | "#class" | receiverName | document |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:47:54:47:61 | "<span>" | contextFunctionInterfaces | constructor(s)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:47:54:47:61 | "<span>" | contextFunctionInterfaces | constructor(s)\ncreateHTML(x)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\ntypes(val)\nusesCreateHTML(x)\nusesCreateHTML(x)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:47:54:47:61 | "<span>" | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:47:54:47:61 | "<span>" | enclosingFunctionBody | document querySelector #class innerHTML <span> step </span> |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:47:54:47:61 | "<span>" | enclosingFunctionName | doXss |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:47:54:47:61 | "<span>" | fileImports | ./jquery-plugin ./typed markdown-it striptags |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:47:54:47:61 | "<span>" | fileImports | ./jquery-plugin ./typed markdown-it mermaid striptags |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:47:54:47:61 | "<span>" | stringConcatenatedWith |  -endpoint- this.step + '</span>' |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:47:54:47:85 | "<span> ... /span>" | assignedToPropName | innerHTML |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:47:54:47:85 | "<span> ... /span>" | contextFunctionInterfaces | constructor(s)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:47:54:47:85 | "<span> ... /span>" | contextFunctionInterfaces | constructor(s)\ncreateHTML(x)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\ntypes(val)\nusesCreateHTML(x)\nusesCreateHTML(x)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:47:54:47:85 | "<span> ... /span>" | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:47:54:47:85 | "<span> ... /span>" | enclosingFunctionBody | document querySelector #class innerHTML <span> step </span> |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:47:54:47:85 | "<span> ... /span>" | enclosingFunctionName | doXss |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:47:54:47:85 | "<span> ... /span>" | fileImports | ./jquery-plugin ./typed markdown-it striptags |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:47:65:47:73 | this.step | contextFunctionInterfaces | constructor(s)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:47:54:47:85 | "<span> ... /span>" | fileImports | ./jquery-plugin ./typed markdown-it mermaid striptags |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:47:65:47:73 | this.step | contextFunctionInterfaces | constructor(s)\ncreateHTML(x)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\ntypes(val)\nusesCreateHTML(x)\nusesCreateHTML(x)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:47:65:47:73 | this.step | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:47:65:47:73 | this.step | enclosingFunctionBody | document querySelector #class innerHTML <span> step </span> |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:47:65:47:73 | this.step | enclosingFunctionName | doXss |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:47:65:47:73 | this.step | fileImports | ./jquery-plugin ./typed markdown-it striptags |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:47:65:47:73 | this.step | fileImports | ./jquery-plugin ./typed markdown-it mermaid striptags |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:47:65:47:73 | this.step | stringConcatenatedWith | '<span>' -endpoint- '</span>' |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:47:77:47:85 | "</span>" | contextFunctionInterfaces | constructor(s)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:47:77:47:85 | "</span>" | contextFunctionInterfaces | constructor(s)\ncreateHTML(x)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\ntypes(val)\nusesCreateHTML(x)\nusesCreateHTML(x)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:47:77:47:85 | "</span>" | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:47:77:47:85 | "</span>" | enclosingFunctionBody | document querySelector #class innerHTML <span> step </span> |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:47:77:47:85 | "</span>" | enclosingFunctionName | doXss |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:47:77:47:85 | "</span>" | fileImports | ./jquery-plugin ./typed markdown-it striptags |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:47:77:47:85 | "</span>" | fileImports | ./jquery-plugin ./typed markdown-it mermaid striptags |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:47:77:47:85 | "</span>" | stringConcatenatedWith | '<span>' + this.step -endpoint-  |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:60:31:60:38 | defaults | CalleeFlexibleAccessPath | $.extend |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:60:31:60:38 | defaults | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:60:31:60:38 | defaults | contextFunctionInterfaces | constructor(s)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:60:31:60:38 | defaults | contextFunctionInterfaces | constructor(s)\ncreateHTML(x)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\ntypes(val)\nusesCreateHTML(x)\nusesCreateHTML(x)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:60:31:60:38 | defaults | contextSurroundingFunctionParameters | (options) |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:60:31:60:38 | defaults | enclosingFunctionBody | options defaults name name settings $ extend defaults options each $ <b> settings name </b> appendTo |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:60:31:60:38 | defaults | enclosingFunctionName | xssPlugin |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:60:31:60:38 | defaults | fileImports | ./jquery-plugin ./typed markdown-it striptags |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:60:31:60:38 | defaults | fileImports | ./jquery-plugin ./typed markdown-it mermaid striptags |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:60:31:60:38 | defaults | receiverName | $ |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:60:41:60:47 | options | CalleeFlexibleAccessPath | $.extend |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:60:41:60:47 | options | InputArgumentIndex | 1 |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:60:41:60:47 | options | contextFunctionInterfaces | constructor(s)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:60:41:60:47 | options | contextFunctionInterfaces | constructor(s)\ncreateHTML(x)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\ntypes(val)\nusesCreateHTML(x)\nusesCreateHTML(x)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:60:41:60:47 | options | contextSurroundingFunctionParameters | (options) |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:60:41:60:47 | options | enclosingFunctionBody | options defaults name name settings $ extend defaults options each $ <b> settings name </b> appendTo |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:60:41:60:47 | options | enclosingFunctionName | xssPlugin |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:60:41:60:47 | options | fileImports | ./jquery-plugin ./typed markdown-it striptags |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:60:41:60:47 | options | fileImports | ./jquery-plugin ./typed markdown-it mermaid striptags |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:60:41:60:47 | options | receiverName | $ |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:61:22:63:5 | functio ... K\\n    } | CalleeFlexibleAccessPath | this.each |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:61:22:63:5 | functio ... K\\n    } | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:61:22:63:5 | functio ... K\\n    } | contextFunctionInterfaces | constructor(s)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:61:22:63:5 | functio ... K\\n    } | contextFunctionInterfaces | constructor(s)\ncreateHTML(x)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\ntypes(val)\nusesCreateHTML(x)\nusesCreateHTML(x)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:61:22:63:5 | functio ... K\\n    } | contextSurroundingFunctionParameters | (options)\n() |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:61:22:63:5 | functio ... K\\n    } | enclosingFunctionBody | options defaults name name settings $ extend defaults options each $ <b> settings name </b> appendTo |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:61:22:63:5 | functio ... K\\n    } | enclosingFunctionName | xssPlugin |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:61:22:63:5 | functio ... K\\n    } | fileImports | ./jquery-plugin ./typed markdown-it striptags |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:62:11:62:15 | "<b>" | contextFunctionInterfaces | constructor(s)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:61:22:63:5 | functio ... K\\n    } | fileImports | ./jquery-plugin ./typed markdown-it mermaid striptags |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:62:11:62:15 | "<b>" | contextFunctionInterfaces | constructor(s)\ncreateHTML(x)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\ntypes(val)\nusesCreateHTML(x)\nusesCreateHTML(x)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:62:11:62:15 | "<b>" | contextSurroundingFunctionParameters | (options)\n() |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:62:11:62:15 | "<b>" | enclosingFunctionBody | options defaults name name settings $ extend defaults options each $ <b> settings name </b> appendTo |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:62:11:62:15 | "<b>" | enclosingFunctionName | xssPlugin |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:62:11:62:15 | "<b>" | fileImports | ./jquery-plugin ./typed markdown-it striptags |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:62:11:62:15 | "<b>" | fileImports | ./jquery-plugin ./typed markdown-it mermaid striptags |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:62:11:62:15 | "<b>" | stringConcatenatedWith |  -endpoint- settings.name + '</b>' |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:62:11:62:40 | "<b>" + ...  "</b>" | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:62:11:62:40 | "<b>" + ...  "</b>" | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:62:11:62:40 | "<b>" + ...  "</b>" | contextFunctionInterfaces | constructor(s)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:62:11:62:40 | "<b>" + ...  "</b>" | contextFunctionInterfaces | constructor(s)\ncreateHTML(x)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\ntypes(val)\nusesCreateHTML(x)\nusesCreateHTML(x)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:62:11:62:40 | "<b>" + ...  "</b>" | contextSurroundingFunctionParameters | (options)\n() |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:62:11:62:40 | "<b>" + ...  "</b>" | enclosingFunctionBody | options defaults name name settings $ extend defaults options each $ <b> settings name </b> appendTo |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:62:11:62:40 | "<b>" + ...  "</b>" | enclosingFunctionName | xssPlugin |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:62:11:62:40 | "<b>" + ...  "</b>" | fileImports | ./jquery-plugin ./typed markdown-it striptags |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:62:19:62:31 | settings.name | contextFunctionInterfaces | constructor(s)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:62:11:62:40 | "<b>" + ...  "</b>" | fileImports | ./jquery-plugin ./typed markdown-it mermaid striptags |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:62:19:62:31 | settings.name | contextFunctionInterfaces | constructor(s)\ncreateHTML(x)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\ntypes(val)\nusesCreateHTML(x)\nusesCreateHTML(x)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:62:19:62:31 | settings.name | contextSurroundingFunctionParameters | (options)\n() |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:62:19:62:31 | settings.name | enclosingFunctionBody | options defaults name name settings $ extend defaults options each $ <b> settings name </b> appendTo |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:62:19:62:31 | settings.name | enclosingFunctionName | xssPlugin |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:62:19:62:31 | settings.name | fileImports | ./jquery-plugin ./typed markdown-it striptags |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:62:19:62:31 | settings.name | fileImports | ./jquery-plugin ./typed markdown-it mermaid striptags |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:62:19:62:31 | settings.name | stringConcatenatedWith | '<b>' -endpoint- '</b>' |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:62:35:62:40 | "</b>" | contextFunctionInterfaces | constructor(s)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:62:35:62:40 | "</b>" | contextFunctionInterfaces | constructor(s)\ncreateHTML(x)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\ntypes(val)\nusesCreateHTML(x)\nusesCreateHTML(x)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:62:35:62:40 | "</b>" | contextSurroundingFunctionParameters | (options)\n() |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:62:35:62:40 | "</b>" | enclosingFunctionBody | options defaults name name settings $ extend defaults options each $ <b> settings name </b> appendTo |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:62:35:62:40 | "</b>" | enclosingFunctionName | xssPlugin |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:62:35:62:40 | "</b>" | fileImports | ./jquery-plugin ./typed markdown-it striptags |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:62:35:62:40 | "</b>" | fileImports | ./jquery-plugin ./typed markdown-it mermaid striptags |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:62:35:62:40 | "</b>" | stringConcatenatedWith | '<b>' + settings.name -endpoint-  |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:62:52:62:55 | this | CalleeFlexibleAccessPath | $().appendTo |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:62:52:62:55 | this | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:62:52:62:55 | this | contextFunctionInterfaces | constructor(s)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:62:52:62:55 | this | contextFunctionInterfaces | constructor(s)\ncreateHTML(x)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\ntypes(val)\nusesCreateHTML(x)\nusesCreateHTML(x)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:62:52:62:55 | this | contextSurroundingFunctionParameters | (options)\n() |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:62:52:62:55 | this | enclosingFunctionBody | options defaults name name settings $ extend defaults options each $ <b> settings name </b> appendTo |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:62:52:62:55 | this | enclosingFunctionName | xssPlugin |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:62:52:62:55 | this | fileImports | ./jquery-plugin ./typed markdown-it striptags |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:62:52:62:55 | this | fileImports | ./jquery-plugin ./typed markdown-it mermaid striptags |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:67:28:67:32 | "#id" | CalleeFlexibleAccessPath | document.querySelector |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:67:28:67:32 | "#id" | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:67:28:67:32 | "#id" | contextFunctionInterfaces | constructor(s)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:67:28:67:32 | "#id" | contextFunctionInterfaces | constructor(s)\ncreateHTML(x)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\ntypes(val)\nusesCreateHTML(x)\nusesCreateHTML(x)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:67:28:67:32 | "#id" | contextSurroundingFunctionParameters | (attrVal) |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:67:28:67:32 | "#id" | enclosingFunctionBody | attrVal document querySelector #id innerHTML <img alt=" attrVal "/> document querySelector #id innerHTML <img alt=" attrVal replace /"\|'/g  "/> attrVal indexOf " 1 attrVal indexOf ' 1 document querySelector #id innerHTML <img alt=" attrVal "/> |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:67:28:67:32 | "#id" | enclosingFunctionName | guards |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:67:28:67:32 | "#id" | fileImports | ./jquery-plugin ./typed markdown-it striptags |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:67:28:67:32 | "#id" | fileImports | ./jquery-plugin ./typed markdown-it mermaid striptags |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:67:28:67:32 | "#id" | receiverName | document |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:67:47:67:59 | "<img alt=\\"" | contextFunctionInterfaces | constructor(s)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:67:47:67:59 | "<img alt=\\"" | contextFunctionInterfaces | constructor(s)\ncreateHTML(x)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\ntypes(val)\nusesCreateHTML(x)\nusesCreateHTML(x)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:67:47:67:59 | "<img alt=\\"" | contextSurroundingFunctionParameters | (attrVal) |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:67:47:67:59 | "<img alt=\\"" | enclosingFunctionBody | attrVal document querySelector #id innerHTML <img alt=" attrVal "/> document querySelector #id innerHTML <img alt=" attrVal replace /"\|'/g  "/> attrVal indexOf " 1 attrVal indexOf ' 1 document querySelector #id innerHTML <img alt=" attrVal "/> |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:67:47:67:59 | "<img alt=\\"" | enclosingFunctionName | guards |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:67:47:67:59 | "<img alt=\\"" | fileImports | ./jquery-plugin ./typed markdown-it striptags |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:67:47:67:59 | "<img alt=\\"" | fileImports | ./jquery-plugin ./typed markdown-it mermaid striptags |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:67:47:67:59 | "<img alt=\\"" | stringConcatenatedWith |  -endpoint- attrVal + '"/>' |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:67:47:67:78 | "<img a ...  "\\"/>" | assignedToPropName | innerHTML |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:67:47:67:78 | "<img a ...  "\\"/>" | contextFunctionInterfaces | constructor(s)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:67:47:67:78 | "<img a ...  "\\"/>" | contextFunctionInterfaces | constructor(s)\ncreateHTML(x)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\ntypes(val)\nusesCreateHTML(x)\nusesCreateHTML(x)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:67:47:67:78 | "<img a ...  "\\"/>" | contextSurroundingFunctionParameters | (attrVal) |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:67:47:67:78 | "<img a ...  "\\"/>" | enclosingFunctionBody | attrVal document querySelector #id innerHTML <img alt=" attrVal "/> document querySelector #id innerHTML <img alt=" attrVal replace /"\|'/g  "/> attrVal indexOf " 1 attrVal indexOf ' 1 document querySelector #id innerHTML <img alt=" attrVal "/> |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:67:47:67:78 | "<img a ...  "\\"/>" | enclosingFunctionName | guards |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:67:47:67:78 | "<img a ...  "\\"/>" | fileImports | ./jquery-plugin ./typed markdown-it striptags |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:67:63:67:69 | attrVal | contextFunctionInterfaces | constructor(s)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:67:47:67:78 | "<img a ...  "\\"/>" | fileImports | ./jquery-plugin ./typed markdown-it mermaid striptags |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:67:63:67:69 | attrVal | contextFunctionInterfaces | constructor(s)\ncreateHTML(x)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\ntypes(val)\nusesCreateHTML(x)\nusesCreateHTML(x)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:67:63:67:69 | attrVal | contextSurroundingFunctionParameters | (attrVal) |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:67:63:67:69 | attrVal | enclosingFunctionBody | attrVal document querySelector #id innerHTML <img alt=" attrVal "/> document querySelector #id innerHTML <img alt=" attrVal replace /"\|'/g  "/> attrVal indexOf " 1 attrVal indexOf ' 1 document querySelector #id innerHTML <img alt=" attrVal "/> |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:67:63:67:69 | attrVal | enclosingFunctionName | guards |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:67:63:67:69 | attrVal | fileImports | ./jquery-plugin ./typed markdown-it striptags |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:67:63:67:69 | attrVal | fileImports | ./jquery-plugin ./typed markdown-it mermaid striptags |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:67:63:67:69 | attrVal | stringConcatenatedWith | '<img alt="' -endpoint- '"/>' |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:67:73:67:78 | "\\"/>" | contextFunctionInterfaces | constructor(s)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:67:73:67:78 | "\\"/>" | contextFunctionInterfaces | constructor(s)\ncreateHTML(x)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\ntypes(val)\nusesCreateHTML(x)\nusesCreateHTML(x)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:67:73:67:78 | "\\"/>" | contextSurroundingFunctionParameters | (attrVal) |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:67:73:67:78 | "\\"/>" | enclosingFunctionBody | attrVal document querySelector #id innerHTML <img alt=" attrVal "/> document querySelector #id innerHTML <img alt=" attrVal replace /"\|'/g  "/> attrVal indexOf " 1 attrVal indexOf ' 1 document querySelector #id innerHTML <img alt=" attrVal "/> |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:67:73:67:78 | "\\"/>" | enclosingFunctionName | guards |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:67:73:67:78 | "\\"/>" | fileImports | ./jquery-plugin ./typed markdown-it striptags |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:67:73:67:78 | "\\"/>" | fileImports | ./jquery-plugin ./typed markdown-it mermaid striptags |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:67:73:67:78 | "\\"/>" | stringConcatenatedWith | '<img alt="' + attrVal -endpoint-  |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:28:68:32 | "#id" | CalleeFlexibleAccessPath | document.querySelector |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:28:68:32 | "#id" | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:28:68:32 | "#id" | contextFunctionInterfaces | constructor(s)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:28:68:32 | "#id" | contextFunctionInterfaces | constructor(s)\ncreateHTML(x)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\ntypes(val)\nusesCreateHTML(x)\nusesCreateHTML(x)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:28:68:32 | "#id" | contextSurroundingFunctionParameters | (attrVal) |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:28:68:32 | "#id" | enclosingFunctionBody | attrVal document querySelector #id innerHTML <img alt=" attrVal "/> document querySelector #id innerHTML <img alt=" attrVal replace /"\|'/g  "/> attrVal indexOf " 1 attrVal indexOf ' 1 document querySelector #id innerHTML <img alt=" attrVal "/> |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:28:68:32 | "#id" | enclosingFunctionName | guards |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:28:68:32 | "#id" | fileImports | ./jquery-plugin ./typed markdown-it striptags |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:28:68:32 | "#id" | fileImports | ./jquery-plugin ./typed markdown-it mermaid striptags |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:28:68:32 | "#id" | receiverName | document |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:47:68:59 | "<img alt=\\"" | contextFunctionInterfaces | constructor(s)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:47:68:59 | "<img alt=\\"" | contextFunctionInterfaces | constructor(s)\ncreateHTML(x)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\ntypes(val)\nusesCreateHTML(x)\nusesCreateHTML(x)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:47:68:59 | "<img alt=\\"" | contextSurroundingFunctionParameters | (attrVal) |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:47:68:59 | "<img alt=\\"" | enclosingFunctionBody | attrVal document querySelector #id innerHTML <img alt=" attrVal "/> document querySelector #id innerHTML <img alt=" attrVal replace /"\|'/g  "/> attrVal indexOf " 1 attrVal indexOf ' 1 document querySelector #id innerHTML <img alt=" attrVal "/> |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:47:68:59 | "<img alt=\\"" | enclosingFunctionName | guards |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:47:68:59 | "<img alt=\\"" | fileImports | ./jquery-plugin ./typed markdown-it striptags |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:47:68:59 | "<img alt=\\"" | fileImports | ./jquery-plugin ./typed markdown-it mermaid striptags |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:47:68:59 | "<img alt=\\"" | stringConcatenatedWith |  -endpoint- attrVal.replace() + '"/>' |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:47:68:98 | "<img a ...  "\\"/>" | assignedToPropName | innerHTML |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:47:68:98 | "<img a ...  "\\"/>" | contextFunctionInterfaces | constructor(s)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:47:68:98 | "<img a ...  "\\"/>" | contextFunctionInterfaces | constructor(s)\ncreateHTML(x)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\ntypes(val)\nusesCreateHTML(x)\nusesCreateHTML(x)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:47:68:98 | "<img a ...  "\\"/>" | contextSurroundingFunctionParameters | (attrVal) |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:47:68:98 | "<img a ...  "\\"/>" | enclosingFunctionBody | attrVal document querySelector #id innerHTML <img alt=" attrVal "/> document querySelector #id innerHTML <img alt=" attrVal replace /"\|'/g  "/> attrVal indexOf " 1 attrVal indexOf ' 1 document querySelector #id innerHTML <img alt=" attrVal "/> |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:47:68:98 | "<img a ...  "\\"/>" | enclosingFunctionName | guards |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:47:68:98 | "<img a ...  "\\"/>" | fileImports | ./jquery-plugin ./typed markdown-it striptags |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:63:68:89 | attrVal ... /g, "") | contextFunctionInterfaces | constructor(s)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:47:68:98 | "<img a ...  "\\"/>" | fileImports | ./jquery-plugin ./typed markdown-it mermaid striptags |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:63:68:89 | attrVal ... /g, "") | contextFunctionInterfaces | constructor(s)\ncreateHTML(x)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\ntypes(val)\nusesCreateHTML(x)\nusesCreateHTML(x)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:63:68:89 | attrVal ... /g, "") | contextSurroundingFunctionParameters | (attrVal) |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:63:68:89 | attrVal ... /g, "") | enclosingFunctionBody | attrVal document querySelector #id innerHTML <img alt=" attrVal "/> document querySelector #id innerHTML <img alt=" attrVal replace /"\|'/g  "/> attrVal indexOf " 1 attrVal indexOf ' 1 document querySelector #id innerHTML <img alt=" attrVal "/> |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:63:68:89 | attrVal ... /g, "") | enclosingFunctionName | guards |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:63:68:89 | attrVal ... /g, "") | fileImports | ./jquery-plugin ./typed markdown-it striptags |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:63:68:89 | attrVal ... /g, "") | fileImports | ./jquery-plugin ./typed markdown-it mermaid striptags |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:63:68:89 | attrVal ... /g, "") | stringConcatenatedWith | '<img alt="' -endpoint- '"/>' |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:79:68:84 | /"\|'/g | CalleeFlexibleAccessPath | attrVal.replace |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:79:68:84 | /"\|'/g | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:79:68:84 | /"\|'/g | contextFunctionInterfaces | constructor(s)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:79:68:84 | /"\|'/g | contextFunctionInterfaces | constructor(s)\ncreateHTML(x)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\ntypes(val)\nusesCreateHTML(x)\nusesCreateHTML(x)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:79:68:84 | /"\|'/g | contextSurroundingFunctionParameters | (attrVal) |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:79:68:84 | /"\|'/g | enclosingFunctionBody | attrVal document querySelector #id innerHTML <img alt=" attrVal "/> document querySelector #id innerHTML <img alt=" attrVal replace /"\|'/g  "/> attrVal indexOf " 1 attrVal indexOf ' 1 document querySelector #id innerHTML <img alt=" attrVal "/> |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:79:68:84 | /"\|'/g | enclosingFunctionName | guards |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:79:68:84 | /"\|'/g | fileImports | ./jquery-plugin ./typed markdown-it striptags |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:79:68:84 | /"\|'/g | fileImports | ./jquery-plugin ./typed markdown-it mermaid striptags |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:79:68:84 | /"\|'/g | receiverName | attrVal |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:87:68:88 | "" | CalleeFlexibleAccessPath | attrVal.replace |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:87:68:88 | "" | InputArgumentIndex | 1 |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:87:68:88 | "" | contextFunctionInterfaces | constructor(s)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:87:68:88 | "" | contextFunctionInterfaces | constructor(s)\ncreateHTML(x)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\ntypes(val)\nusesCreateHTML(x)\nusesCreateHTML(x)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:87:68:88 | "" | contextSurroundingFunctionParameters | (attrVal) |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:87:68:88 | "" | enclosingFunctionBody | attrVal document querySelector #id innerHTML <img alt=" attrVal "/> document querySelector #id innerHTML <img alt=" attrVal replace /"\|'/g  "/> attrVal indexOf " 1 attrVal indexOf ' 1 document querySelector #id innerHTML <img alt=" attrVal "/> |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:87:68:88 | "" | enclosingFunctionName | guards |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:87:68:88 | "" | fileImports | ./jquery-plugin ./typed markdown-it striptags |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:87:68:88 | "" | fileImports | ./jquery-plugin ./typed markdown-it mermaid striptags |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:87:68:88 | "" | receiverName | attrVal |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:93:68:98 | "\\"/>" | contextFunctionInterfaces | constructor(s)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:93:68:98 | "\\"/>" | contextFunctionInterfaces | constructor(s)\ncreateHTML(x)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\ntypes(val)\nusesCreateHTML(x)\nusesCreateHTML(x)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:93:68:98 | "\\"/>" | contextSurroundingFunctionParameters | (attrVal) |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:93:68:98 | "\\"/>" | enclosingFunctionBody | attrVal document querySelector #id innerHTML <img alt=" attrVal "/> document querySelector #id innerHTML <img alt=" attrVal replace /"\|'/g  "/> attrVal indexOf " 1 attrVal indexOf ' 1 document querySelector #id innerHTML <img alt=" attrVal "/> |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:93:68:98 | "\\"/>" | enclosingFunctionName | guards |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:93:68:98 | "\\"/>" | fileImports | ./jquery-plugin ./typed markdown-it striptags |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:93:68:98 | "\\"/>" | fileImports | ./jquery-plugin ./typed markdown-it mermaid striptags |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:93:68:98 | "\\"/>" | stringConcatenatedWith | '<img alt="' + attrVal.replace() -endpoint-  |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:69:25:69:28 | "\\"" | CalleeFlexibleAccessPath | attrVal.indexOf |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:69:25:69:28 | "\\"" | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:69:25:69:28 | "\\"" | contextFunctionInterfaces | constructor(s)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:69:25:69:28 | "\\"" | contextFunctionInterfaces | constructor(s)\ncreateHTML(x)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\ntypes(val)\nusesCreateHTML(x)\nusesCreateHTML(x)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:69:25:69:28 | "\\"" | contextSurroundingFunctionParameters | (attrVal) |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:69:25:69:28 | "\\"" | enclosingFunctionBody | attrVal document querySelector #id innerHTML <img alt=" attrVal "/> document querySelector #id innerHTML <img alt=" attrVal replace /"\|'/g  "/> attrVal indexOf " 1 attrVal indexOf ' 1 document querySelector #id innerHTML <img alt=" attrVal "/> |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:69:25:69:28 | "\\"" | enclosingFunctionName | guards |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:69:25:69:28 | "\\"" | fileImports | ./jquery-plugin ./typed markdown-it striptags |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:69:25:69:28 | "\\"" | fileImports | ./jquery-plugin ./typed markdown-it mermaid striptags |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:69:25:69:28 | "\\"" | receiverName | attrVal |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:69:57:69:59 | "'" | CalleeFlexibleAccessPath | attrVal.indexOf |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:69:57:69:59 | "'" | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:69:57:69:59 | "'" | contextFunctionInterfaces | constructor(s)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:69:57:69:59 | "'" | contextFunctionInterfaces | constructor(s)\ncreateHTML(x)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\ntypes(val)\nusesCreateHTML(x)\nusesCreateHTML(x)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:69:57:69:59 | "'" | contextSurroundingFunctionParameters | (attrVal) |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:69:57:69:59 | "'" | enclosingFunctionBody | attrVal document querySelector #id innerHTML <img alt=" attrVal "/> document querySelector #id innerHTML <img alt=" attrVal replace /"\|'/g  "/> attrVal indexOf " 1 attrVal indexOf ' 1 document querySelector #id innerHTML <img alt=" attrVal "/> |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:69:57:69:59 | "'" | enclosingFunctionName | guards |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:69:57:69:59 | "'" | fileImports | ./jquery-plugin ./typed markdown-it striptags |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:69:57:69:59 | "'" | fileImports | ./jquery-plugin ./typed markdown-it mermaid striptags |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:69:57:69:59 | "'" | receiverName | attrVal |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:70:32:70:36 | "#id" | CalleeFlexibleAccessPath | document.querySelector |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:70:32:70:36 | "#id" | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:70:32:70:36 | "#id" | contextFunctionInterfaces | constructor(s)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:70:32:70:36 | "#id" | contextFunctionInterfaces | constructor(s)\ncreateHTML(x)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\ntypes(val)\nusesCreateHTML(x)\nusesCreateHTML(x)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:70:32:70:36 | "#id" | contextSurroundingFunctionParameters | (attrVal) |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:70:32:70:36 | "#id" | enclosingFunctionBody | attrVal document querySelector #id innerHTML <img alt=" attrVal "/> document querySelector #id innerHTML <img alt=" attrVal replace /"\|'/g  "/> attrVal indexOf " 1 attrVal indexOf ' 1 document querySelector #id innerHTML <img alt=" attrVal "/> |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:70:32:70:36 | "#id" | enclosingFunctionName | guards |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:70:32:70:36 | "#id" | fileImports | ./jquery-plugin ./typed markdown-it striptags |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:70:32:70:36 | "#id" | fileImports | ./jquery-plugin ./typed markdown-it mermaid striptags |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:70:32:70:36 | "#id" | receiverName | document |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:70:51:70:63 | "<img alt=\\"" | contextFunctionInterfaces | constructor(s)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:70:51:70:63 | "<img alt=\\"" | contextFunctionInterfaces | constructor(s)\ncreateHTML(x)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\ntypes(val)\nusesCreateHTML(x)\nusesCreateHTML(x)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:70:51:70:63 | "<img alt=\\"" | contextSurroundingFunctionParameters | (attrVal) |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:70:51:70:63 | "<img alt=\\"" | enclosingFunctionBody | attrVal document querySelector #id innerHTML <img alt=" attrVal "/> document querySelector #id innerHTML <img alt=" attrVal replace /"\|'/g  "/> attrVal indexOf " 1 attrVal indexOf ' 1 document querySelector #id innerHTML <img alt=" attrVal "/> |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:70:51:70:63 | "<img alt=\\"" | enclosingFunctionName | guards |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:70:51:70:63 | "<img alt=\\"" | fileImports | ./jquery-plugin ./typed markdown-it striptags |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:70:51:70:63 | "<img alt=\\"" | fileImports | ./jquery-plugin ./typed markdown-it mermaid striptags |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:70:51:70:63 | "<img alt=\\"" | stringConcatenatedWith |  -endpoint- attrVal + '"/>' |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:70:51:70:82 | "<img a ...  "\\"/>" | assignedToPropName | innerHTML |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:70:51:70:82 | "<img a ...  "\\"/>" | contextFunctionInterfaces | constructor(s)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:70:51:70:82 | "<img a ...  "\\"/>" | contextFunctionInterfaces | constructor(s)\ncreateHTML(x)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\ntypes(val)\nusesCreateHTML(x)\nusesCreateHTML(x)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:70:51:70:82 | "<img a ...  "\\"/>" | contextSurroundingFunctionParameters | (attrVal) |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:70:51:70:82 | "<img a ...  "\\"/>" | enclosingFunctionBody | attrVal document querySelector #id innerHTML <img alt=" attrVal "/> document querySelector #id innerHTML <img alt=" attrVal replace /"\|'/g  "/> attrVal indexOf " 1 attrVal indexOf ' 1 document querySelector #id innerHTML <img alt=" attrVal "/> |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:70:51:70:82 | "<img a ...  "\\"/>" | enclosingFunctionName | guards |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:70:51:70:82 | "<img a ...  "\\"/>" | fileImports | ./jquery-plugin ./typed markdown-it striptags |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:70:67:70:73 | attrVal | contextFunctionInterfaces | constructor(s)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:70:51:70:82 | "<img a ...  "\\"/>" | fileImports | ./jquery-plugin ./typed markdown-it mermaid striptags |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:70:67:70:73 | attrVal | contextFunctionInterfaces | constructor(s)\ncreateHTML(x)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\ntypes(val)\nusesCreateHTML(x)\nusesCreateHTML(x)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:70:67:70:73 | attrVal | contextSurroundingFunctionParameters | (attrVal) |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:70:67:70:73 | attrVal | enclosingFunctionBody | attrVal document querySelector #id innerHTML <img alt=" attrVal "/> document querySelector #id innerHTML <img alt=" attrVal replace /"\|'/g  "/> attrVal indexOf " 1 attrVal indexOf ' 1 document querySelector #id innerHTML <img alt=" attrVal "/> |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:70:67:70:73 | attrVal | enclosingFunctionName | guards |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:70:67:70:73 | attrVal | fileImports | ./jquery-plugin ./typed markdown-it striptags |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:70:67:70:73 | attrVal | fileImports | ./jquery-plugin ./typed markdown-it mermaid striptags |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:70:67:70:73 | attrVal | stringConcatenatedWith | '<img alt="' -endpoint- '"/>' |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:70:77:70:82 | "\\"/>" | contextFunctionInterfaces | constructor(s)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:70:77:70:82 | "\\"/>" | contextFunctionInterfaces | constructor(s)\ncreateHTML(x)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\ntypes(val)\nusesCreateHTML(x)\nusesCreateHTML(x)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:70:77:70:82 | "\\"/>" | contextSurroundingFunctionParameters | (attrVal) |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:70:77:70:82 | "\\"/>" | enclosingFunctionBody | attrVal document querySelector #id innerHTML <img alt=" attrVal "/> document querySelector #id innerHTML <img alt=" attrVal replace /"\|'/g  "/> attrVal indexOf " 1 attrVal indexOf ' 1 document querySelector #id innerHTML <img alt=" attrVal "/> |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:70:77:70:82 | "\\"/>" | enclosingFunctionName | guards |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:70:77:70:82 | "\\"/>" | fileImports | ./jquery-plugin ./typed markdown-it striptags |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:70:77:70:82 | "\\"/>" | fileImports | ./jquery-plugin ./typed markdown-it mermaid striptags |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:70:77:70:82 | "\\"/>" | stringConcatenatedWith | '<img alt="' + attrVal -endpoint-  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:75:18:75:25 | "<span>" | contextFunctionInterfaces | constructor(s)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:75:18:75:25 | "<span>" | contextFunctionInterfaces | constructor(s)\ncreateHTML(x)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\ntypes(val)\nusesCreateHTML(x)\nusesCreateHTML(x)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:75:18:75:25 | "<span>" | contextSurroundingFunctionParameters | (obj) |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:75:18:75:25 | "<span>" | enclosingFunctionBody | obj html <span> obj spanTemplate </span> document querySelector #template innerHTML html |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:75:18:75:25 | "<span>" | enclosingFunctionName | intentionalTemplate |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:75:18:75:25 | "<span>" | fileImports | ./jquery-plugin ./typed markdown-it striptags |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:75:18:75:25 | "<span>" | fileImports | ./jquery-plugin ./typed markdown-it mermaid striptags |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:75:18:75:25 | "<span>" | stringConcatenatedWith |  -endpoint- obj.spanTemplate + '</span>' |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:75:18:75:56 | "<span> ... /span>" | contextFunctionInterfaces | constructor(s)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:75:18:75:56 | "<span> ... /span>" | contextFunctionInterfaces | constructor(s)\ncreateHTML(x)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\ntypes(val)\nusesCreateHTML(x)\nusesCreateHTML(x)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:75:18:75:56 | "<span> ... /span>" | contextSurroundingFunctionParameters | (obj) |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:75:18:75:56 | "<span> ... /span>" | enclosingFunctionBody | obj html <span> obj spanTemplate </span> document querySelector #template innerHTML html |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:75:18:75:56 | "<span> ... /span>" | enclosingFunctionName | intentionalTemplate |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:75:18:75:56 | "<span> ... /span>" | fileImports | ./jquery-plugin ./typed markdown-it striptags |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:75:29:75:44 | obj.spanTemplate | contextFunctionInterfaces | constructor(s)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:75:18:75:56 | "<span> ... /span>" | fileImports | ./jquery-plugin ./typed markdown-it mermaid striptags |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:75:29:75:44 | obj.spanTemplate | contextFunctionInterfaces | constructor(s)\ncreateHTML(x)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\ntypes(val)\nusesCreateHTML(x)\nusesCreateHTML(x)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:75:29:75:44 | obj.spanTemplate | contextSurroundingFunctionParameters | (obj) |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:75:29:75:44 | obj.spanTemplate | enclosingFunctionBody | obj html <span> obj spanTemplate </span> document querySelector #template innerHTML html |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:75:29:75:44 | obj.spanTemplate | enclosingFunctionName | intentionalTemplate |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:75:29:75:44 | obj.spanTemplate | fileImports | ./jquery-plugin ./typed markdown-it striptags |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:75:29:75:44 | obj.spanTemplate | fileImports | ./jquery-plugin ./typed markdown-it mermaid striptags |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:75:29:75:44 | obj.spanTemplate | stringConcatenatedWith | '<span>' -endpoint- '</span>' |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:75:48:75:56 | "</span>" | contextFunctionInterfaces | constructor(s)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:75:48:75:56 | "</span>" | contextFunctionInterfaces | constructor(s)\ncreateHTML(x)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\ntypes(val)\nusesCreateHTML(x)\nusesCreateHTML(x)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:75:48:75:56 | "</span>" | contextSurroundingFunctionParameters | (obj) |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:75:48:75:56 | "</span>" | enclosingFunctionBody | obj html <span> obj spanTemplate </span> document querySelector #template innerHTML html |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:75:48:75:56 | "</span>" | enclosingFunctionName | intentionalTemplate |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:75:48:75:56 | "</span>" | fileImports | ./jquery-plugin ./typed markdown-it striptags |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:75:48:75:56 | "</span>" | fileImports | ./jquery-plugin ./typed markdown-it mermaid striptags |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:75:48:75:56 | "</span>" | stringConcatenatedWith | '<span>' + obj.spanTemplate -endpoint-  |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:76:28:76:38 | "#template" | CalleeFlexibleAccessPath | document.querySelector |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:76:28:76:38 | "#template" | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:76:28:76:38 | "#template" | contextFunctionInterfaces | constructor(s)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:76:28:76:38 | "#template" | contextFunctionInterfaces | constructor(s)\ncreateHTML(x)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\ntypes(val)\nusesCreateHTML(x)\nusesCreateHTML(x)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:76:28:76:38 | "#template" | contextSurroundingFunctionParameters | (obj) |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:76:28:76:38 | "#template" | enclosingFunctionBody | obj html <span> obj spanTemplate </span> document querySelector #template innerHTML html |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:76:28:76:38 | "#template" | enclosingFunctionName | intentionalTemplate |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:76:28:76:38 | "#template" | fileImports | ./jquery-plugin ./typed markdown-it striptags |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:76:28:76:38 | "#template" | fileImports | ./jquery-plugin ./typed markdown-it mermaid striptags |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:76:28:76:38 | "#template" | receiverName | document |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:76:53:76:56 | html | assignedToPropName | innerHTML |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:76:53:76:56 | html | contextFunctionInterfaces | constructor(s)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:76:53:76:56 | html | contextFunctionInterfaces | constructor(s)\ncreateHTML(x)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\ntypes(val)\nusesCreateHTML(x)\nusesCreateHTML(x)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:76:53:76:56 | html | contextSurroundingFunctionParameters | (obj) |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:76:53:76:56 | html | enclosingFunctionBody | obj html <span> obj spanTemplate </span> document querySelector #template innerHTML html |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:76:53:76:56 | html | enclosingFunctionName | intentionalTemplate |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:76:53:76:56 | html | fileImports | ./jquery-plugin ./typed markdown-it striptags |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:76:53:76:56 | html | fileImports | ./jquery-plugin ./typed markdown-it mermaid striptags |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:81:11:81:16 | "#foo" | CalleeFlexibleAccessPath | $ |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:81:11:81:16 | "#foo" | InputArgumentIndex | 0 |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:81:11:81:16 | "#foo" | contextFunctionInterfaces | constructor(s)\ncreateHTML(x)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\ntypes(val)\nusesCreateHTML(x)\nusesCreateHTML(x)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:81:11:81:16 | "#foo" | contextSurroundingFunctionParameters | (val) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:81:11:81:16 | "#foo" | enclosingFunctionBody | val val string $ #foo html <span> val </span> val number $ #foo html <span> val </span> val boolean $ #foo html <span> val </span> |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:81:11:81:16 | "#foo" | enclosingFunctionName | types |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:81:11:81:16 | "#foo" | fileImports | ./jquery-plugin ./typed markdown-it mermaid striptags |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:81:24:81:31 | "<span>" | contextFunctionInterfaces | constructor(s)\ncreateHTML(x)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\ntypes(val)\nusesCreateHTML(x)\nusesCreateHTML(x)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:81:24:81:31 | "<span>" | contextSurroundingFunctionParameters | (val) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:81:24:81:31 | "<span>" | enclosingFunctionBody | val val string $ #foo html <span> val </span> val number $ #foo html <span> val </span> val boolean $ #foo html <span> val </span> |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:81:24:81:31 | "<span>" | enclosingFunctionName | types |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:81:24:81:31 | "<span>" | fileImports | ./jquery-plugin ./typed markdown-it mermaid striptags |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:81:24:81:31 | "<span>" | stringConcatenatedWith |  -endpoint- val + '</span>' |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:81:24:81:49 | "<span> ... /span>" | CalleeFlexibleAccessPath | $().html |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:81:24:81:49 | "<span> ... /span>" | InputArgumentIndex | 0 |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:81:24:81:49 | "<span> ... /span>" | contextFunctionInterfaces | constructor(s)\ncreateHTML(x)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\ntypes(val)\nusesCreateHTML(x)\nusesCreateHTML(x)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:81:24:81:49 | "<span> ... /span>" | contextSurroundingFunctionParameters | (val) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:81:24:81:49 | "<span> ... /span>" | enclosingFunctionBody | val val string $ #foo html <span> val </span> val number $ #foo html <span> val </span> val boolean $ #foo html <span> val </span> |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:81:24:81:49 | "<span> ... /span>" | enclosingFunctionName | types |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:81:24:81:49 | "<span> ... /span>" | fileImports | ./jquery-plugin ./typed markdown-it mermaid striptags |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:81:35:81:37 | val | contextFunctionInterfaces | constructor(s)\ncreateHTML(x)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\ntypes(val)\nusesCreateHTML(x)\nusesCreateHTML(x)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:81:35:81:37 | val | contextSurroundingFunctionParameters | (val) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:81:35:81:37 | val | enclosingFunctionBody | val val string $ #foo html <span> val </span> val number $ #foo html <span> val </span> val boolean $ #foo html <span> val </span> |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:81:35:81:37 | val | enclosingFunctionName | types |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:81:35:81:37 | val | fileImports | ./jquery-plugin ./typed markdown-it mermaid striptags |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:81:35:81:37 | val | stringConcatenatedWith | '<span>' -endpoint- '</span>' |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:81:41:81:49 | "</span>" | contextFunctionInterfaces | constructor(s)\ncreateHTML(x)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\ntypes(val)\nusesCreateHTML(x)\nusesCreateHTML(x)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:81:41:81:49 | "</span>" | contextSurroundingFunctionParameters | (val) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:81:41:81:49 | "</span>" | enclosingFunctionBody | val val string $ #foo html <span> val </span> val number $ #foo html <span> val </span> val boolean $ #foo html <span> val </span> |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:81:41:81:49 | "</span>" | enclosingFunctionName | types |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:81:41:81:49 | "</span>" | fileImports | ./jquery-plugin ./typed markdown-it mermaid striptags |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:81:41:81:49 | "</span>" | stringConcatenatedWith | '<span>' + val -endpoint-  |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:83:11:83:16 | "#foo" | CalleeFlexibleAccessPath | $ |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:83:11:83:16 | "#foo" | InputArgumentIndex | 0 |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:83:11:83:16 | "#foo" | contextFunctionInterfaces | constructor(s)\ncreateHTML(x)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\ntypes(val)\nusesCreateHTML(x)\nusesCreateHTML(x)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:83:11:83:16 | "#foo" | contextSurroundingFunctionParameters | (val) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:83:11:83:16 | "#foo" | enclosingFunctionBody | val val string $ #foo html <span> val </span> val number $ #foo html <span> val </span> val boolean $ #foo html <span> val </span> |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:83:11:83:16 | "#foo" | enclosingFunctionName | types |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:83:11:83:16 | "#foo" | fileImports | ./jquery-plugin ./typed markdown-it mermaid striptags |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:83:24:83:31 | "<span>" | contextFunctionInterfaces | constructor(s)\ncreateHTML(x)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\ntypes(val)\nusesCreateHTML(x)\nusesCreateHTML(x)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:83:24:83:31 | "<span>" | contextSurroundingFunctionParameters | (val) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:83:24:83:31 | "<span>" | enclosingFunctionBody | val val string $ #foo html <span> val </span> val number $ #foo html <span> val </span> val boolean $ #foo html <span> val </span> |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:83:24:83:31 | "<span>" | enclosingFunctionName | types |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:83:24:83:31 | "<span>" | fileImports | ./jquery-plugin ./typed markdown-it mermaid striptags |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:83:24:83:31 | "<span>" | stringConcatenatedWith |  -endpoint- val + '</span>' |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:83:24:83:49 | "<span> ... /span>" | CalleeFlexibleAccessPath | $().html |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:83:24:83:49 | "<span> ... /span>" | InputArgumentIndex | 0 |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:83:24:83:49 | "<span> ... /span>" | contextFunctionInterfaces | constructor(s)\ncreateHTML(x)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\ntypes(val)\nusesCreateHTML(x)\nusesCreateHTML(x)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:83:24:83:49 | "<span> ... /span>" | contextSurroundingFunctionParameters | (val) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:83:24:83:49 | "<span> ... /span>" | enclosingFunctionBody | val val string $ #foo html <span> val </span> val number $ #foo html <span> val </span> val boolean $ #foo html <span> val </span> |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:83:24:83:49 | "<span> ... /span>" | enclosingFunctionName | types |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:83:24:83:49 | "<span> ... /span>" | fileImports | ./jquery-plugin ./typed markdown-it mermaid striptags |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:83:35:83:37 | val | contextFunctionInterfaces | constructor(s)\ncreateHTML(x)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\ntypes(val)\nusesCreateHTML(x)\nusesCreateHTML(x)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:83:35:83:37 | val | contextSurroundingFunctionParameters | (val) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:83:35:83:37 | val | enclosingFunctionBody | val val string $ #foo html <span> val </span> val number $ #foo html <span> val </span> val boolean $ #foo html <span> val </span> |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:83:35:83:37 | val | enclosingFunctionName | types |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:83:35:83:37 | val | fileImports | ./jquery-plugin ./typed markdown-it mermaid striptags |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:83:35:83:37 | val | stringConcatenatedWith | '<span>' -endpoint- '</span>' |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:83:41:83:49 | "</span>" | contextFunctionInterfaces | constructor(s)\ncreateHTML(x)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\ntypes(val)\nusesCreateHTML(x)\nusesCreateHTML(x)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:83:41:83:49 | "</span>" | contextSurroundingFunctionParameters | (val) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:83:41:83:49 | "</span>" | enclosingFunctionBody | val val string $ #foo html <span> val </span> val number $ #foo html <span> val </span> val boolean $ #foo html <span> val </span> |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:83:41:83:49 | "</span>" | enclosingFunctionName | types |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:83:41:83:49 | "</span>" | fileImports | ./jquery-plugin ./typed markdown-it mermaid striptags |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:83:41:83:49 | "</span>" | stringConcatenatedWith | '<span>' + val -endpoint-  |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:85:11:85:16 | "#foo" | CalleeFlexibleAccessPath | $ |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:85:11:85:16 | "#foo" | InputArgumentIndex | 0 |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:85:11:85:16 | "#foo" | contextFunctionInterfaces | constructor(s)\ncreateHTML(x)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\ntypes(val)\nusesCreateHTML(x)\nusesCreateHTML(x)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:85:11:85:16 | "#foo" | contextSurroundingFunctionParameters | (val) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:85:11:85:16 | "#foo" | enclosingFunctionBody | val val string $ #foo html <span> val </span> val number $ #foo html <span> val </span> val boolean $ #foo html <span> val </span> |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:85:11:85:16 | "#foo" | enclosingFunctionName | types |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:85:11:85:16 | "#foo" | fileImports | ./jquery-plugin ./typed markdown-it mermaid striptags |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:85:24:85:31 | "<span>" | contextFunctionInterfaces | constructor(s)\ncreateHTML(x)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\ntypes(val)\nusesCreateHTML(x)\nusesCreateHTML(x)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:85:24:85:31 | "<span>" | contextSurroundingFunctionParameters | (val) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:85:24:85:31 | "<span>" | enclosingFunctionBody | val val string $ #foo html <span> val </span> val number $ #foo html <span> val </span> val boolean $ #foo html <span> val </span> |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:85:24:85:31 | "<span>" | enclosingFunctionName | types |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:85:24:85:31 | "<span>" | fileImports | ./jquery-plugin ./typed markdown-it mermaid striptags |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:85:24:85:31 | "<span>" | stringConcatenatedWith |  -endpoint- val + '</span>' |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:85:24:85:49 | "<span> ... /span>" | CalleeFlexibleAccessPath | $().html |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:85:24:85:49 | "<span> ... /span>" | InputArgumentIndex | 0 |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:85:24:85:49 | "<span> ... /span>" | contextFunctionInterfaces | constructor(s)\ncreateHTML(x)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\ntypes(val)\nusesCreateHTML(x)\nusesCreateHTML(x)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:85:24:85:49 | "<span> ... /span>" | contextSurroundingFunctionParameters | (val) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:85:24:85:49 | "<span> ... /span>" | enclosingFunctionBody | val val string $ #foo html <span> val </span> val number $ #foo html <span> val </span> val boolean $ #foo html <span> val </span> |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:85:24:85:49 | "<span> ... /span>" | enclosingFunctionName | types |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:85:24:85:49 | "<span> ... /span>" | fileImports | ./jquery-plugin ./typed markdown-it mermaid striptags |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:85:35:85:37 | val | contextFunctionInterfaces | constructor(s)\ncreateHTML(x)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\ntypes(val)\nusesCreateHTML(x)\nusesCreateHTML(x)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:85:35:85:37 | val | contextSurroundingFunctionParameters | (val) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:85:35:85:37 | val | enclosingFunctionBody | val val string $ #foo html <span> val </span> val number $ #foo html <span> val </span> val boolean $ #foo html <span> val </span> |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:85:35:85:37 | val | enclosingFunctionName | types |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:85:35:85:37 | val | fileImports | ./jquery-plugin ./typed markdown-it mermaid striptags |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:85:35:85:37 | val | stringConcatenatedWith | '<span>' -endpoint- '</span>' |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:85:41:85:49 | "</span>" | contextFunctionInterfaces | constructor(s)\ncreateHTML(x)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\ntypes(val)\nusesCreateHTML(x)\nusesCreateHTML(x)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:85:41:85:49 | "</span>" | contextSurroundingFunctionParameters | (val) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:85:41:85:49 | "</span>" | enclosingFunctionBody | val val string $ #foo html <span> val </span> val number $ #foo html <span> val </span> val boolean $ #foo html <span> val </span> |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:85:41:85:49 | "</span>" | enclosingFunctionName | types |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:85:41:85:49 | "</span>" | fileImports | ./jquery-plugin ./typed markdown-it mermaid striptags |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:85:41:85:49 | "</span>" | stringConcatenatedWith | '<span>' + val -endpoint-  |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:90:12:90:19 | "<span>" | contextFunctionInterfaces | constructor(s)\ncreateHTML(x)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\ntypes(val)\nusesCreateHTML(x)\nusesCreateHTML(x)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:90:12:90:19 | "<span>" | contextSurroundingFunctionParameters | (x) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:90:12:90:19 | "<span>" | enclosingFunctionBody | x <span> x </span> |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:90:12:90:19 | "<span>" | enclosingFunctionName | createHTML |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:90:12:90:19 | "<span>" | fileImports | ./jquery-plugin ./typed markdown-it mermaid striptags |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:90:12:90:19 | "<span>" | stringConcatenatedWith |  -endpoint- x + '</span>' |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:90:23:90:23 | x | contextFunctionInterfaces | constructor(s)\ncreateHTML(x)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\ntypes(val)\nusesCreateHTML(x)\nusesCreateHTML(x)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:90:23:90:23 | x | contextSurroundingFunctionParameters | (x) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:90:23:90:23 | x | enclosingFunctionBody | x <span> x </span> |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:90:23:90:23 | x | enclosingFunctionName | createHTML |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:90:23:90:23 | x | fileImports | ./jquery-plugin ./typed markdown-it mermaid striptags |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:90:23:90:23 | x | stringConcatenatedWith | '<span>' -endpoint- '</span>' |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:90:27:90:35 | "</span>" | contextFunctionInterfaces | constructor(s)\ncreateHTML(x)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\ntypes(val)\nusesCreateHTML(x)\nusesCreateHTML(x)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:90:27:90:35 | "</span>" | contextSurroundingFunctionParameters | (x) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:90:27:90:35 | "</span>" | enclosingFunctionBody | x <span> x </span> |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:90:27:90:35 | "</span>" | enclosingFunctionName | createHTML |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:90:27:90:35 | "</span>" | fileImports | ./jquery-plugin ./typed markdown-it mermaid striptags |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:90:27:90:35 | "</span>" | stringConcatenatedWith | '<span>' + x -endpoint-  |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:93:33:95:1 | functio ... (x));\\n} | assignedToPropName | usesCreateHTML |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:93:33:95:1 | functio ... (x));\\n} | contextFunctionInterfaces | constructor(s)\ncreateHTML(x)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\ntypes(val)\nusesCreateHTML(x)\nusesCreateHTML(x)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:93:33:95:1 | functio ... (x));\\n} | contextSurroundingFunctionParameters | (x) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:93:33:95:1 | functio ... (x));\\n} | fileImports | ./jquery-plugin ./typed markdown-it mermaid striptags |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:94:7:94:12 | "#foo" | CalleeFlexibleAccessPath | $ |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:94:7:94:12 | "#foo" | InputArgumentIndex | 0 |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:94:7:94:12 | "#foo" | contextFunctionInterfaces | constructor(s)\ncreateHTML(x)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\ntypes(val)\nusesCreateHTML(x)\nusesCreateHTML(x)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:94:7:94:12 | "#foo" | contextSurroundingFunctionParameters | (x) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:94:7:94:12 | "#foo" | enclosingFunctionBody | x $ #foo html createHTML x |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:94:7:94:12 | "#foo" | enclosingFunctionName | usesCreateHTML |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:94:7:94:12 | "#foo" | fileImports | ./jquery-plugin ./typed markdown-it mermaid striptags |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:94:20:94:32 | createHTML(x) | CalleeFlexibleAccessPath | $().html |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:94:20:94:32 | createHTML(x) | InputArgumentIndex | 0 |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:94:20:94:32 | createHTML(x) | contextFunctionInterfaces | constructor(s)\ncreateHTML(x)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\ntypes(val)\nusesCreateHTML(x)\nusesCreateHTML(x)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:94:20:94:32 | createHTML(x) | contextSurroundingFunctionParameters | (x) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:94:20:94:32 | createHTML(x) | enclosingFunctionBody | x $ #foo html createHTML x |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:94:20:94:32 | createHTML(x) | enclosingFunctionName | usesCreateHTML |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:94:20:94:32 | createHTML(x) | fileImports | ./jquery-plugin ./typed markdown-it mermaid striptags |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:97:27:97:35 | 'mermaid' | CalleeFlexibleAccessPath | require |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:97:27:97:35 | 'mermaid' | InputArgumentIndex | 0 |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:97:27:97:35 | 'mermaid' | calleeImports |  |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:97:27:97:35 | 'mermaid' | contextFunctionInterfaces | constructor(s)\ncreateHTML(x)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\ntypes(val)\nusesCreateHTML(x)\nusesCreateHTML(x)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:97:27:97:35 | 'mermaid' | contextSurroundingFunctionParameters |  |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:97:27:97:35 | 'mermaid' | fileImports | ./jquery-plugin ./typed markdown-it mermaid striptags |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:98:33:114:1 | functio ...   });\\n} | assignedToPropName | usesCreateHTML |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:98:33:114:1 | functio ...   });\\n} | contextFunctionInterfaces | constructor(s)\ncreateHTML(x)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\ntypes(val)\nusesCreateHTML(x)\nusesCreateHTML(x)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:98:33:114:1 | functio ...   });\\n} | contextSurroundingFunctionParameters | (x) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:98:33:114:1 | functio ...   });\\n} | fileImports | ./jquery-plugin ./typed markdown-it mermaid striptags |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:99:22:99:25 | "id" | CalleeFlexibleAccessPath | myMermaid.render |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:99:22:99:25 | "id" | InputArgumentIndex | 0 |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:99:22:99:25 | "id" | calleeImports | mermaid |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:99:22:99:25 | "id" | contextFunctionInterfaces | constructor(s)\ncreateHTML(x)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\ntypes(val)\nusesCreateHTML(x)\nusesCreateHTML(x)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:99:22:99:25 | "id" | contextSurroundingFunctionParameters | (x) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:99:22:99:25 | "id" | enclosingFunctionBody | x myMermaid render id x svg $ #foo html svg $ #foo html myMermaid render id x mermaid render id x svg $ #foo html svg $ #foo html mermaid render id x mermaid mermaidAPI render id x svg $ #foo html svg |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:99:22:99:25 | "id" | enclosingFunctionName | usesCreateHTML |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:99:22:99:25 | "id" | fileImports | ./jquery-plugin ./typed markdown-it mermaid striptags |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:99:22:99:25 | "id" | receiverName | myMermaid |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:99:28:99:28 | x | CalleeFlexibleAccessPath | myMermaid.render |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:99:28:99:28 | x | InputArgumentIndex | 1 |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:99:28:99:28 | x | calleeImports | mermaid |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:99:28:99:28 | x | contextFunctionInterfaces | constructor(s)\ncreateHTML(x)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\ntypes(val)\nusesCreateHTML(x)\nusesCreateHTML(x)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:99:28:99:28 | x | contextSurroundingFunctionParameters | (x) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:99:28:99:28 | x | enclosingFunctionBody | x myMermaid render id x svg $ #foo html svg $ #foo html myMermaid render id x mermaid render id x svg $ #foo html svg $ #foo html mermaid render id x mermaid mermaidAPI render id x svg $ #foo html svg |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:99:28:99:28 | x | enclosingFunctionName | usesCreateHTML |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:99:28:99:28 | x | fileImports | ./jquery-plugin ./typed markdown-it mermaid striptags |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:99:28:99:28 | x | receiverName | myMermaid |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:99:31:101:5 | functio ... ;\\n    } | CalleeFlexibleAccessPath | myMermaid.render |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:99:31:101:5 | functio ... ;\\n    } | InputArgumentIndex | 2 |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:99:31:101:5 | functio ... ;\\n    } | calleeImports | mermaid |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:99:31:101:5 | functio ... ;\\n    } | contextFunctionInterfaces | constructor(s)\ncreateHTML(x)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\ntypes(val)\nusesCreateHTML(x)\nusesCreateHTML(x)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:99:31:101:5 | functio ... ;\\n    } | contextSurroundingFunctionParameters | (x)\n(svg) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:99:31:101:5 | functio ... ;\\n    } | enclosingFunctionBody | x myMermaid render id x svg $ #foo html svg $ #foo html myMermaid render id x mermaid render id x svg $ #foo html svg $ #foo html mermaid render id x mermaid mermaidAPI render id x svg $ #foo html svg |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:99:31:101:5 | functio ... ;\\n    } | enclosingFunctionName | usesCreateHTML |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:99:31:101:5 | functio ... ;\\n    } | fileImports | ./jquery-plugin ./typed markdown-it mermaid striptags |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:99:31:101:5 | functio ... ;\\n    } | receiverName | myMermaid |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:100:11:100:16 | "#foo" | CalleeFlexibleAccessPath | $ |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:100:11:100:16 | "#foo" | InputArgumentIndex | 0 |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:100:11:100:16 | "#foo" | contextFunctionInterfaces | constructor(s)\ncreateHTML(x)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\ntypes(val)\nusesCreateHTML(x)\nusesCreateHTML(x)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:100:11:100:16 | "#foo" | contextSurroundingFunctionParameters | (x)\n(svg) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:100:11:100:16 | "#foo" | enclosingFunctionBody | x myMermaid render id x svg $ #foo html svg $ #foo html myMermaid render id x mermaid render id x svg $ #foo html svg $ #foo html mermaid render id x mermaid mermaidAPI render id x svg $ #foo html svg |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:100:11:100:16 | "#foo" | enclosingFunctionName | usesCreateHTML |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:100:11:100:16 | "#foo" | fileImports | ./jquery-plugin ./typed markdown-it mermaid striptags |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:100:24:100:26 | svg | CalleeFlexibleAccessPath | $().html |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:100:24:100:26 | svg | InputArgumentIndex | 0 |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:100:24:100:26 | svg | contextFunctionInterfaces | constructor(s)\ncreateHTML(x)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\ntypes(val)\nusesCreateHTML(x)\nusesCreateHTML(x)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:100:24:100:26 | svg | contextSurroundingFunctionParameters | (x)\n(svg) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:100:24:100:26 | svg | enclosingFunctionBody | x myMermaid render id x svg $ #foo html svg $ #foo html myMermaid render id x mermaid render id x svg $ #foo html svg $ #foo html mermaid render id x mermaid mermaidAPI render id x svg $ #foo html svg |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:100:24:100:26 | svg | enclosingFunctionName | usesCreateHTML |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:100:24:100:26 | svg | fileImports | ./jquery-plugin ./typed markdown-it mermaid striptags |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:103:7:103:12 | "#foo" | CalleeFlexibleAccessPath | $ |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:103:7:103:12 | "#foo" | InputArgumentIndex | 0 |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:103:7:103:12 | "#foo" | contextFunctionInterfaces | constructor(s)\ncreateHTML(x)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\ntypes(val)\nusesCreateHTML(x)\nusesCreateHTML(x)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:103:7:103:12 | "#foo" | contextSurroundingFunctionParameters | (x) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:103:7:103:12 | "#foo" | enclosingFunctionBody | x myMermaid render id x svg $ #foo html svg $ #foo html myMermaid render id x mermaid render id x svg $ #foo html svg $ #foo html mermaid render id x mermaid mermaidAPI render id x svg $ #foo html svg |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:103:7:103:12 | "#foo" | enclosingFunctionName | usesCreateHTML |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:103:7:103:12 | "#foo" | fileImports | ./jquery-plugin ./typed markdown-it mermaid striptags |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:103:20:103:44 | myMerma ... id", x) | CalleeFlexibleAccessPath | $().html |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:103:20:103:44 | myMerma ... id", x) | InputArgumentIndex | 0 |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:103:20:103:44 | myMerma ... id", x) | contextFunctionInterfaces | constructor(s)\ncreateHTML(x)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\ntypes(val)\nusesCreateHTML(x)\nusesCreateHTML(x)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:103:20:103:44 | myMerma ... id", x) | contextSurroundingFunctionParameters | (x) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:103:20:103:44 | myMerma ... id", x) | enclosingFunctionBody | x myMermaid render id x svg $ #foo html svg $ #foo html myMermaid render id x mermaid render id x svg $ #foo html svg $ #foo html mermaid render id x mermaid mermaidAPI render id x svg $ #foo html svg |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:103:20:103:44 | myMerma ... id", x) | enclosingFunctionName | usesCreateHTML |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:103:20:103:44 | myMerma ... id", x) | fileImports | ./jquery-plugin ./typed markdown-it mermaid striptags |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:103:37:103:40 | "id" | CalleeFlexibleAccessPath | myMermaid.render |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:103:37:103:40 | "id" | InputArgumentIndex | 0 |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:103:37:103:40 | "id" | calleeImports | mermaid |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:103:37:103:40 | "id" | contextFunctionInterfaces | constructor(s)\ncreateHTML(x)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\ntypes(val)\nusesCreateHTML(x)\nusesCreateHTML(x)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:103:37:103:40 | "id" | contextSurroundingFunctionParameters | (x) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:103:37:103:40 | "id" | enclosingFunctionBody | x myMermaid render id x svg $ #foo html svg $ #foo html myMermaid render id x mermaid render id x svg $ #foo html svg $ #foo html mermaid render id x mermaid mermaidAPI render id x svg $ #foo html svg |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:103:37:103:40 | "id" | enclosingFunctionName | usesCreateHTML |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:103:37:103:40 | "id" | fileImports | ./jquery-plugin ./typed markdown-it mermaid striptags |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:103:37:103:40 | "id" | receiverName | myMermaid |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:103:43:103:43 | x | CalleeFlexibleAccessPath | myMermaid.render |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:103:43:103:43 | x | InputArgumentIndex | 1 |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:103:43:103:43 | x | calleeImports | mermaid |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:103:43:103:43 | x | contextFunctionInterfaces | constructor(s)\ncreateHTML(x)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\ntypes(val)\nusesCreateHTML(x)\nusesCreateHTML(x)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:103:43:103:43 | x | contextSurroundingFunctionParameters | (x) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:103:43:103:43 | x | enclosingFunctionBody | x myMermaid render id x svg $ #foo html svg $ #foo html myMermaid render id x mermaid render id x svg $ #foo html svg $ #foo html mermaid render id x mermaid mermaidAPI render id x svg $ #foo html svg |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:103:43:103:43 | x | enclosingFunctionName | usesCreateHTML |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:103:43:103:43 | x | fileImports | ./jquery-plugin ./typed markdown-it mermaid striptags |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:103:43:103:43 | x | receiverName | myMermaid |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:105:20:105:23 | "id" | CalleeFlexibleAccessPath | mermaid.render |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:105:20:105:23 | "id" | InputArgumentIndex | 0 |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:105:20:105:23 | "id" | contextFunctionInterfaces | constructor(s)\ncreateHTML(x)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\ntypes(val)\nusesCreateHTML(x)\nusesCreateHTML(x)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:105:20:105:23 | "id" | contextSurroundingFunctionParameters | (x) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:105:20:105:23 | "id" | enclosingFunctionBody | x myMermaid render id x svg $ #foo html svg $ #foo html myMermaid render id x mermaid render id x svg $ #foo html svg $ #foo html mermaid render id x mermaid mermaidAPI render id x svg $ #foo html svg |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:105:20:105:23 | "id" | enclosingFunctionName | usesCreateHTML |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:105:20:105:23 | "id" | fileImports | ./jquery-plugin ./typed markdown-it mermaid striptags |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:105:20:105:23 | "id" | receiverName | mermaid |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:105:26:105:26 | x | CalleeFlexibleAccessPath | mermaid.render |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:105:26:105:26 | x | InputArgumentIndex | 1 |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:105:26:105:26 | x | contextFunctionInterfaces | constructor(s)\ncreateHTML(x)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\ntypes(val)\nusesCreateHTML(x)\nusesCreateHTML(x)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:105:26:105:26 | x | contextSurroundingFunctionParameters | (x) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:105:26:105:26 | x | enclosingFunctionBody | x myMermaid render id x svg $ #foo html svg $ #foo html myMermaid render id x mermaid render id x svg $ #foo html svg $ #foo html mermaid render id x mermaid mermaidAPI render id x svg $ #foo html svg |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:105:26:105:26 | x | enclosingFunctionName | usesCreateHTML |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:105:26:105:26 | x | fileImports | ./jquery-plugin ./typed markdown-it mermaid striptags |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:105:26:105:26 | x | receiverName | mermaid |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:105:29:107:5 | functio ...  \\n    } | CalleeFlexibleAccessPath | mermaid.render |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:105:29:107:5 | functio ...  \\n    } | InputArgumentIndex | 2 |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:105:29:107:5 | functio ...  \\n    } | contextFunctionInterfaces | constructor(s)\ncreateHTML(x)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\ntypes(val)\nusesCreateHTML(x)\nusesCreateHTML(x)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:105:29:107:5 | functio ...  \\n    } | contextSurroundingFunctionParameters | (x)\n(svg) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:105:29:107:5 | functio ...  \\n    } | enclosingFunctionBody | x myMermaid render id x svg $ #foo html svg $ #foo html myMermaid render id x mermaid render id x svg $ #foo html svg $ #foo html mermaid render id x mermaid mermaidAPI render id x svg $ #foo html svg |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:105:29:107:5 | functio ...  \\n    } | enclosingFunctionName | usesCreateHTML |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:105:29:107:5 | functio ...  \\n    } | fileImports | ./jquery-plugin ./typed markdown-it mermaid striptags |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:105:29:107:5 | functio ...  \\n    } | receiverName | mermaid |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:106:11:106:16 | "#foo" | CalleeFlexibleAccessPath | $ |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:106:11:106:16 | "#foo" | InputArgumentIndex | 0 |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:106:11:106:16 | "#foo" | contextFunctionInterfaces | constructor(s)\ncreateHTML(x)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\ntypes(val)\nusesCreateHTML(x)\nusesCreateHTML(x)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:106:11:106:16 | "#foo" | contextSurroundingFunctionParameters | (x)\n(svg) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:106:11:106:16 | "#foo" | enclosingFunctionBody | x myMermaid render id x svg $ #foo html svg $ #foo html myMermaid render id x mermaid render id x svg $ #foo html svg $ #foo html mermaid render id x mermaid mermaidAPI render id x svg $ #foo html svg |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:106:11:106:16 | "#foo" | enclosingFunctionName | usesCreateHTML |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:106:11:106:16 | "#foo" | fileImports | ./jquery-plugin ./typed markdown-it mermaid striptags |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:106:24:106:26 | svg | CalleeFlexibleAccessPath | $().html |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:106:24:106:26 | svg | InputArgumentIndex | 0 |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:106:24:106:26 | svg | contextFunctionInterfaces | constructor(s)\ncreateHTML(x)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\ntypes(val)\nusesCreateHTML(x)\nusesCreateHTML(x)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:106:24:106:26 | svg | contextSurroundingFunctionParameters | (x)\n(svg) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:106:24:106:26 | svg | enclosingFunctionBody | x myMermaid render id x svg $ #foo html svg $ #foo html myMermaid render id x mermaid render id x svg $ #foo html svg $ #foo html mermaid render id x mermaid mermaidAPI render id x svg $ #foo html svg |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:106:24:106:26 | svg | enclosingFunctionName | usesCreateHTML |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:106:24:106:26 | svg | fileImports | ./jquery-plugin ./typed markdown-it mermaid striptags |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:109:7:109:12 | "#foo" | CalleeFlexibleAccessPath | $ |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:109:7:109:12 | "#foo" | InputArgumentIndex | 0 |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:109:7:109:12 | "#foo" | contextFunctionInterfaces | constructor(s)\ncreateHTML(x)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\ntypes(val)\nusesCreateHTML(x)\nusesCreateHTML(x)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:109:7:109:12 | "#foo" | contextSurroundingFunctionParameters | (x) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:109:7:109:12 | "#foo" | enclosingFunctionBody | x myMermaid render id x svg $ #foo html svg $ #foo html myMermaid render id x mermaid render id x svg $ #foo html svg $ #foo html mermaid render id x mermaid mermaidAPI render id x svg $ #foo html svg |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:109:7:109:12 | "#foo" | enclosingFunctionName | usesCreateHTML |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:109:7:109:12 | "#foo" | fileImports | ./jquery-plugin ./typed markdown-it mermaid striptags |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:109:20:109:42 | mermaid ... id", x) | CalleeFlexibleAccessPath | $().html |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:109:20:109:42 | mermaid ... id", x) | InputArgumentIndex | 0 |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:109:20:109:42 | mermaid ... id", x) | contextFunctionInterfaces | constructor(s)\ncreateHTML(x)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\ntypes(val)\nusesCreateHTML(x)\nusesCreateHTML(x)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:109:20:109:42 | mermaid ... id", x) | contextSurroundingFunctionParameters | (x) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:109:20:109:42 | mermaid ... id", x) | enclosingFunctionBody | x myMermaid render id x svg $ #foo html svg $ #foo html myMermaid render id x mermaid render id x svg $ #foo html svg $ #foo html mermaid render id x mermaid mermaidAPI render id x svg $ #foo html svg |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:109:20:109:42 | mermaid ... id", x) | enclosingFunctionName | usesCreateHTML |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:109:20:109:42 | mermaid ... id", x) | fileImports | ./jquery-plugin ./typed markdown-it mermaid striptags |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:109:35:109:38 | "id" | CalleeFlexibleAccessPath | mermaid.render |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:109:35:109:38 | "id" | InputArgumentIndex | 0 |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:109:35:109:38 | "id" | contextFunctionInterfaces | constructor(s)\ncreateHTML(x)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\ntypes(val)\nusesCreateHTML(x)\nusesCreateHTML(x)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:109:35:109:38 | "id" | contextSurroundingFunctionParameters | (x) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:109:35:109:38 | "id" | enclosingFunctionBody | x myMermaid render id x svg $ #foo html svg $ #foo html myMermaid render id x mermaid render id x svg $ #foo html svg $ #foo html mermaid render id x mermaid mermaidAPI render id x svg $ #foo html svg |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:109:35:109:38 | "id" | enclosingFunctionName | usesCreateHTML |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:109:35:109:38 | "id" | fileImports | ./jquery-plugin ./typed markdown-it mermaid striptags |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:109:35:109:38 | "id" | receiverName | mermaid |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:109:41:109:41 | x | CalleeFlexibleAccessPath | mermaid.render |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:109:41:109:41 | x | InputArgumentIndex | 1 |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:109:41:109:41 | x | contextFunctionInterfaces | constructor(s)\ncreateHTML(x)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\ntypes(val)\nusesCreateHTML(x)\nusesCreateHTML(x)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:109:41:109:41 | x | contextSurroundingFunctionParameters | (x) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:109:41:109:41 | x | enclosingFunctionBody | x myMermaid render id x svg $ #foo html svg $ #foo html myMermaid render id x mermaid render id x svg $ #foo html svg $ #foo html mermaid render id x mermaid mermaidAPI render id x svg $ #foo html svg |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:109:41:109:41 | x | enclosingFunctionName | usesCreateHTML |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:109:41:109:41 | x | fileImports | ./jquery-plugin ./typed markdown-it mermaid striptags |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:109:41:109:41 | x | receiverName | mermaid |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:111:31:111:34 | "id" | CalleeFlexibleAccessPath | mermaid.mermaidAPI.render |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:111:31:111:34 | "id" | InputArgumentIndex | 0 |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:111:31:111:34 | "id" | contextFunctionInterfaces | constructor(s)\ncreateHTML(x)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\ntypes(val)\nusesCreateHTML(x)\nusesCreateHTML(x)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:111:31:111:34 | "id" | contextSurroundingFunctionParameters | (x) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:111:31:111:34 | "id" | enclosingFunctionBody | x myMermaid render id x svg $ #foo html svg $ #foo html myMermaid render id x mermaid render id x svg $ #foo html svg $ #foo html mermaid render id x mermaid mermaidAPI render id x svg $ #foo html svg |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:111:31:111:34 | "id" | enclosingFunctionName | usesCreateHTML |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:111:31:111:34 | "id" | fileImports | ./jquery-plugin ./typed markdown-it mermaid striptags |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:111:37:111:37 | x | CalleeFlexibleAccessPath | mermaid.mermaidAPI.render |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:111:37:111:37 | x | InputArgumentIndex | 1 |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:111:37:111:37 | x | contextFunctionInterfaces | constructor(s)\ncreateHTML(x)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\ntypes(val)\nusesCreateHTML(x)\nusesCreateHTML(x)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:111:37:111:37 | x | contextSurroundingFunctionParameters | (x) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:111:37:111:37 | x | enclosingFunctionBody | x myMermaid render id x svg $ #foo html svg $ #foo html myMermaid render id x mermaid render id x svg $ #foo html svg $ #foo html mermaid render id x mermaid mermaidAPI render id x svg $ #foo html svg |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:111:37:111:37 | x | enclosingFunctionName | usesCreateHTML |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:111:37:111:37 | x | fileImports | ./jquery-plugin ./typed markdown-it mermaid striptags |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:111:40:113:5 | functio ... ;\\n    } | CalleeFlexibleAccessPath | mermaid.mermaidAPI.render |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:111:40:113:5 | functio ... ;\\n    } | InputArgumentIndex | 2 |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:111:40:113:5 | functio ... ;\\n    } | contextFunctionInterfaces | constructor(s)\ncreateHTML(x)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\ntypes(val)\nusesCreateHTML(x)\nusesCreateHTML(x)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:111:40:113:5 | functio ... ;\\n    } | contextSurroundingFunctionParameters | (x)\n(svg) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:111:40:113:5 | functio ... ;\\n    } | enclosingFunctionBody | x myMermaid render id x svg $ #foo html svg $ #foo html myMermaid render id x mermaid render id x svg $ #foo html svg $ #foo html mermaid render id x mermaid mermaidAPI render id x svg $ #foo html svg |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:111:40:113:5 | functio ... ;\\n    } | enclosingFunctionName | usesCreateHTML |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:111:40:113:5 | functio ... ;\\n    } | fileImports | ./jquery-plugin ./typed markdown-it mermaid striptags |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:112:11:112:16 | "#foo" | CalleeFlexibleAccessPath | $ |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:112:11:112:16 | "#foo" | InputArgumentIndex | 0 |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:112:11:112:16 | "#foo" | contextFunctionInterfaces | constructor(s)\ncreateHTML(x)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\ntypes(val)\nusesCreateHTML(x)\nusesCreateHTML(x)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:112:11:112:16 | "#foo" | contextSurroundingFunctionParameters | (x)\n(svg) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:112:11:112:16 | "#foo" | enclosingFunctionBody | x myMermaid render id x svg $ #foo html svg $ #foo html myMermaid render id x mermaid render id x svg $ #foo html svg $ #foo html mermaid render id x mermaid mermaidAPI render id x svg $ #foo html svg |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:112:11:112:16 | "#foo" | enclosingFunctionName | usesCreateHTML |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:112:11:112:16 | "#foo" | fileImports | ./jquery-plugin ./typed markdown-it mermaid striptags |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:112:24:112:26 | svg | CalleeFlexibleAccessPath | $().html |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:112:24:112:26 | svg | InputArgumentIndex | 0 |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:112:24:112:26 | svg | contextFunctionInterfaces | constructor(s)\ncreateHTML(x)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\ntypes(val)\nusesCreateHTML(x)\nusesCreateHTML(x)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:112:24:112:26 | svg | contextSurroundingFunctionParameters | (x)\n(svg) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:112:24:112:26 | svg | enclosingFunctionBody | x myMermaid render id x svg $ #foo html svg $ #foo html myMermaid render id x mermaid render id x svg $ #foo html svg $ #foo html mermaid render id x mermaid mermaidAPI render id x svg $ #foo html svg |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:112:24:112:26 | svg | enclosingFunctionName | usesCreateHTML |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:112:24:112:26 | svg | fileImports | ./jquery-plugin ./typed markdown-it mermaid striptags |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:117:18:117:35 | markdown.render(s) | contextFunctionInterfaces | constructor(s)\ncreateHTML(x)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\ntypes(val)\nusesCreateHTML(x)\nusesCreateHTML(x)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:117:18:117:35 | markdown.render(s) | contextSurroundingFunctionParameters | (s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:117:18:117:35 | markdown.render(s) | enclosingFunctionBody | s html markdown render s document querySelector #markdown innerHTML html |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:117:18:117:35 | markdown.render(s) | enclosingFunctionName | xssThroughMarkdown |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:117:18:117:35 | markdown.render(s) | fileImports | ./jquery-plugin ./typed markdown-it mermaid striptags |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:117:34:117:34 | s | CalleeFlexibleAccessPath | markdown.render |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:117:34:117:34 | s | InputArgumentIndex | 0 |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:117:34:117:34 | s | calleeImports | markdown-it |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:117:34:117:34 | s | contextFunctionInterfaces | constructor(s)\ncreateHTML(x)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\ntypes(val)\nusesCreateHTML(x)\nusesCreateHTML(x)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:117:34:117:34 | s | contextSurroundingFunctionParameters | (s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:117:34:117:34 | s | enclosingFunctionBody | s html markdown render s document querySelector #markdown innerHTML html |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:117:34:117:34 | s | enclosingFunctionName | xssThroughMarkdown |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:117:34:117:34 | s | fileImports | ./jquery-plugin ./typed markdown-it mermaid striptags |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:117:34:117:34 | s | receiverName | markdown |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:118:28:118:38 | "#markdown" | CalleeFlexibleAccessPath | document.querySelector |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:118:28:118:38 | "#markdown" | InputArgumentIndex | 0 |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:118:28:118:38 | "#markdown" | contextFunctionInterfaces | constructor(s)\ncreateHTML(x)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\ntypes(val)\nusesCreateHTML(x)\nusesCreateHTML(x)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:118:28:118:38 | "#markdown" | contextSurroundingFunctionParameters | (s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:118:28:118:38 | "#markdown" | enclosingFunctionBody | s html markdown render s document querySelector #markdown innerHTML html |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:118:28:118:38 | "#markdown" | enclosingFunctionName | xssThroughMarkdown |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:118:28:118:38 | "#markdown" | fileImports | ./jquery-plugin ./typed markdown-it mermaid striptags |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:118:28:118:38 | "#markdown" | receiverName | document |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:118:53:118:56 | html | assignedToPropName | innerHTML |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:118:53:118:56 | html | contextFunctionInterfaces | constructor(s)\ncreateHTML(x)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\ntypes(val)\nusesCreateHTML(x)\nusesCreateHTML(x)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:118:53:118:56 | html | contextSurroundingFunctionParameters | (s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:118:53:118:56 | html | enclosingFunctionBody | s html markdown render s document querySelector #markdown innerHTML html |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:118:53:118:56 | html | enclosingFunctionName | xssThroughMarkdown |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:118:53:118:56 | html | fileImports | ./jquery-plugin ./typed markdown-it mermaid striptags |
 | autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:2:18:2:25 | "<span>" | contextFunctionInterfaces | basicHtmlConstruction(s)\nid(s)\ninsertIntoCreatedDocument(s)\nnotVulnerable() |
 | autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:2:18:2:25 | "<span>" | contextSurroundingFunctionParameters | (s) |
 | autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:2:18:2:25 | "<span>" | enclosingFunctionBody | s html <span> s </span> document body innerHTML html |
@@ -18367,217 +23695,217 @@ tokenFeatures
 | autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:18:31:18:34 | html | fileImports |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:3:5:3:11 | options | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:3:5:3:11 | options | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:3:5:3:11 | options | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:3:5:3:11 | options | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nposition(options)\nsetupPlugin(o) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:3:5:3:11 | options | contextSurroundingFunctionParameters | ()\n(options) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:3:5:3:11 | options | enclosingFunctionName |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:3:5:3:11 | options | fileImports |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:5:5:5:18 | options.target | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:5:5:5:18 | options.target | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:5:5:5:18 | options.target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:5:5:5:18 | options.target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nposition(options)\nsetupPlugin(o) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:5:5:5:18 | options.target | contextSurroundingFunctionParameters | ()\n(options) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:5:5:5:18 | options.target | enclosingFunctionName |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:5:5:5:18 | options.target | fileImports |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:8:6:8:19 | options.target | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:8:6:8:19 | options.target | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:8:6:8:19 | options.target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:8:6:8:19 | options.target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nposition(options)\nsetupPlugin(o) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:8:6:8:19 | options.target | contextSurroundingFunctionParameters | ()\n(options) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:8:6:8:19 | options.target | enclosingFunctionName |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:8:6:8:19 | options.target | fileImports |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:14:6:14:11 | target | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:14:6:14:11 | target | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:14:6:14:11 | target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:14:6:14:11 | target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nposition(options)\nsetupPlugin(o) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:14:6:14:11 | target | contextSurroundingFunctionParameters | ()\n(options) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:14:6:14:11 | target | enclosingFunctionName |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:14:6:14:11 | target | fileImports |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:18:6:18:11 | target | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:18:6:18:11 | target | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:18:6:18:11 | target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:18:6:18:11 | target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nposition(options)\nsetupPlugin(o) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:18:6:18:11 | target | contextSurroundingFunctionParameters | ()\n(options) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:18:6:18:11 | target | enclosingFunctionName |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:18:6:18:11 | target | fileImports |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:22:6:22:11 | target | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:22:6:22:11 | target | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:22:6:22:11 | target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:22:6:22:11 | target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nposition(options)\nsetupPlugin(o) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:22:6:22:11 | target | contextSurroundingFunctionParameters | ()\n(options) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:22:6:22:11 | target | enclosingFunctionName |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:22:6:22:11 | target | fileImports |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:24:6:24:11 | target | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:24:6:24:11 | target | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:24:6:24:11 | target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:24:6:24:11 | target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nposition(options)\nsetupPlugin(o) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:24:6:24:11 | target | contextSurroundingFunctionParameters | ()\n(options) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:24:6:24:11 | target | enclosingFunctionName |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:24:6:24:11 | target | fileImports |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:28:6:28:11 | target | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:28:6:28:11 | target | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:28:6:28:11 | target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:28:6:28:11 | target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nposition(options)\nsetupPlugin(o) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:28:6:28:11 | target | contextSurroundingFunctionParameters | ()\n(options) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:28:6:28:11 | target | enclosingFunctionName |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:28:6:28:11 | target | fileImports |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:30:6:30:11 | target | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:30:6:30:11 | target | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:30:6:30:11 | target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:30:6:30:11 | target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nposition(options)\nsetupPlugin(o) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:30:6:30:11 | target | contextSurroundingFunctionParameters | ()\n(options) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:30:6:30:11 | target | enclosingFunctionName |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:30:6:30:11 | target | fileImports |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:34:6:34:11 | target | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:34:6:34:11 | target | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:34:6:34:11 | target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:34:6:34:11 | target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nposition(options)\nsetupPlugin(o) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:34:6:34:11 | target | contextSurroundingFunctionParameters | ()\n(options) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:34:6:34:11 | target | enclosingFunctionName |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:34:6:34:11 | target | fileImports |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:36:6:36:11 | target | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:36:6:36:11 | target | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:36:6:36:11 | target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:36:6:36:11 | target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nposition(options)\nsetupPlugin(o) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:36:6:36:11 | target | contextSurroundingFunctionParameters | ()\n(options) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:36:6:36:11 | target | enclosingFunctionName |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:36:6:36:11 | target | fileImports |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:40:6:40:11 | target | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:40:6:40:11 | target | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:40:6:40:11 | target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:40:6:40:11 | target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nposition(options)\nsetupPlugin(o) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:40:6:40:11 | target | contextSurroundingFunctionParameters | ()\n(options) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:40:6:40:11 | target | enclosingFunctionName |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:40:6:40:11 | target | fileImports |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:42:6:42:11 | target | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:42:6:42:11 | target | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:42:6:42:11 | target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:42:6:42:11 | target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nposition(options)\nsetupPlugin(o) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:42:6:42:11 | target | contextSurroundingFunctionParameters | ()\n(options) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:42:6:42:11 | target | enclosingFunctionName |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:42:6:42:11 | target | fileImports |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:46:6:46:11 | target | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:46:6:46:11 | target | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:46:6:46:11 | target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:46:6:46:11 | target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nposition(options)\nsetupPlugin(o) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:46:6:46:11 | target | contextSurroundingFunctionParameters | ()\n(options) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:46:6:46:11 | target | enclosingFunctionName |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:46:6:46:11 | target | fileImports |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:48:6:48:11 | target | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:48:6:48:11 | target | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:48:6:48:11 | target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:48:6:48:11 | target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nposition(options)\nsetupPlugin(o) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:48:6:48:11 | target | contextSurroundingFunctionParameters | ()\n(options) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:48:6:48:11 | target | enclosingFunctionName |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:48:6:48:11 | target | fileImports |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:52:6:52:11 | target | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:52:6:52:11 | target | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:52:6:52:11 | target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:52:6:52:11 | target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nposition(options)\nsetupPlugin(o) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:52:6:52:11 | target | contextSurroundingFunctionParameters | ()\n(options) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:52:6:52:11 | target | enclosingFunctionName |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:52:6:52:11 | target | fileImports |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:54:6:54:11 | target | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:54:6:54:11 | target | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:54:6:54:11 | target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:54:6:54:11 | target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nposition(options)\nsetupPlugin(o) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:54:6:54:11 | target | contextSurroundingFunctionParameters | ()\n(options) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:54:6:54:11 | target | enclosingFunctionName |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:54:6:54:11 | target | fileImports |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:58:6:58:11 | target | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:58:6:58:11 | target | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:58:6:58:11 | target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:58:6:58:11 | target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nposition(options)\nsetupPlugin(o) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:58:6:58:11 | target | contextSurroundingFunctionParameters | ()\n(options) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:58:6:58:11 | target | enclosingFunctionName |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:58:6:58:11 | target | fileImports |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:60:6:60:11 | target | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:60:6:60:11 | target | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:60:6:60:11 | target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:60:6:60:11 | target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nposition(options)\nsetupPlugin(o) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:60:6:60:11 | target | contextSurroundingFunctionParameters | ()\n(options) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:60:6:60:11 | target | enclosingFunctionName |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:60:6:60:11 | target | fileImports |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:66:26:66:32 | element | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:66:26:66:32 | element | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:66:26:66:32 | element | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:66:26:66:32 | element | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nposition(options)\nsetupPlugin(o) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:66:26:66:32 | element | contextSurroundingFunctionParameters | ()\n(element, options) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:66:26:66:32 | element | enclosingFunctionName |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:66:26:66:32 | element | fileImports |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:67:33:67:34 | {} | CalleeFlexibleAccessPath | $.extend |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:67:33:67:34 | {} | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:67:33:67:34 | {} | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:67:33:67:34 | {} | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nposition(options)\nsetupPlugin(o) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:67:33:67:34 | {} | contextSurroundingFunctionParameters | ()\n(element, options) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:67:33:67:34 | {} | enclosingFunctionName |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:67:33:67:34 | {} | fileImports |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:67:33:67:34 | {} | receiverName | $ |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:67:37:67:43 | options | CalleeFlexibleAccessPath | $.extend |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:67:37:67:43 | options | InputArgumentIndex | 1 |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:67:37:67:43 | options | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:67:37:67:43 | options | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nposition(options)\nsetupPlugin(o) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:67:37:67:43 | options | contextSurroundingFunctionParameters | ()\n(element, options) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:67:37:67:43 | options | enclosingFunctionName |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:67:37:67:43 | options | fileImports |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:67:37:67:43 | options | receiverName | $ |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:68:45:68:63 | this.options.parent | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:68:45:68:63 | this.options.parent | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:68:45:68:63 | this.options.parent | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:68:45:68:63 | this.options.parent | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nposition(options)\nsetupPlugin(o) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:68:45:68:63 | this.options.parent | contextSurroundingFunctionParameters | ()\n(element, options) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:68:45:68:63 | this.options.parent | enclosingFunctionName |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:68:45:68:63 | this.options.parent | fileImports |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:72:5:72:23 | options.foo.bar.baz | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:72:5:72:23 | options.foo.bar.baz | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:72:5:72:23 | options.foo.bar.baz | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:72:5:72:23 | options.foo.bar.baz | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nposition(options)\nsetupPlugin(o) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:72:5:72:23 | options.foo.bar.baz | contextSurroundingFunctionParameters | ()\n(options) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:72:5:72:23 | options.foo.bar.baz | enclosingFunctionName |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:72:5:72:23 | options.foo.bar.baz | fileImports |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:73:5:73:16 | options.html | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:73:5:73:16 | options.html | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:73:5:73:16 | options.html | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:73:5:73:16 | options.html | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nposition(options)\nsetupPlugin(o) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:73:5:73:16 | options.html | contextSurroundingFunctionParameters | ()\n(options) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:73:5:73:16 | options.html | enclosingFunctionName |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:73:5:73:16 | options.html | fileImports |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:77:5:77:5 | x | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:77:5:77:5 | x | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:77:5:77:5 | x | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:77:5:77:5 | x | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nposition(options)\nsetupPlugin(o) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:77:5:77:5 | x | contextSurroundingFunctionParameters | ()\n(options) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:77:5:77:5 | x | enclosingFunctionName |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:77:5:77:5 | x | fileImports |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:77:17:77:35 | options.foo.bar.baz | CalleeFlexibleAccessPath | $().appendTo |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:77:17:77:35 | options.foo.bar.baz | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:77:17:77:35 | options.foo.bar.baz | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:77:17:77:35 | options.foo.bar.baz | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nposition(options)\nsetupPlugin(o) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:77:17:77:35 | options.foo.bar.baz | contextSurroundingFunctionParameters | ()\n(options) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:77:17:77:35 | options.foo.bar.baz | enclosingFunctionName |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:77:17:77:35 | options.foo.bar.baz | fileImports |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:81:5:81:24 | "#" + options.target | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:81:5:81:24 | "#" + options.target | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:81:5:81:24 | "#" + options.target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:81:5:81:24 | "#" + options.target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nposition(options)\nsetupPlugin(o) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:81:5:81:24 | "#" + options.target | contextSurroundingFunctionParameters | ()\n(options) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:81:5:81:24 | "#" + options.target | enclosingFunctionName |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:81:5:81:24 | "#" + options.target | fileImports |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:86:22:86:23 | {} | CalleeFlexibleAccessPath | $.extend |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:86:22:86:23 | {} | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:86:22:86:23 | {} | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:86:22:86:23 | {} | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nposition(options)\nsetupPlugin(o) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:86:22:86:23 | {} | contextSurroundingFunctionParameters | (o) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:86:22:86:23 | {} | enclosingFunctionName |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:86:22:86:23 | {} | fileImports |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:86:22:86:23 | {} | receiverName | $ |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:86:26:86:26 | o | CalleeFlexibleAccessPath | $.extend |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:86:26:86:26 | o | InputArgumentIndex | 1 |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:86:26:86:26 | o | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:86:26:86:26 | o | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nposition(options)\nsetupPlugin(o) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:86:26:86:26 | o | contextSurroundingFunctionParameters | (o) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:86:26:86:26 | o | enclosingFunctionName |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:86:26:86:26 | o | fileImports |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:86:26:86:26 | o | receiverName | $ |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:89:16:89:16 | t | CalleeFlexibleAccessPath | console.log |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:89:16:89:16 | t | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:89:16:89:16 | t | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:89:16:89:16 | t | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nposition(options)\nsetupPlugin(o) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:89:16:89:16 | t | contextSurroundingFunctionParameters | (o) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:89:16:89:16 | t | enclosingFunctionName |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:89:16:89:16 | t | fileImports |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:89:16:89:16 | t | receiverName | console |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:90:6:90:6 | t | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:90:6:90:6 | t | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:90:6:90:6 | t | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:90:6:90:6 | t | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nposition(options)\nsetupPlugin(o) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:90:6:90:6 | t | contextSurroundingFunctionParameters | (o) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:90:6:90:6 | t | enclosingFunctionName |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:90:6:90:6 | t | fileImports |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:97:16:97:21 | target | CalleeFlexibleAccessPath | safe.has |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:97:16:97:21 | target | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:97:16:97:21 | target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:97:16:97:21 | target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nposition(options)\nsetupPlugin(o) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:97:16:97:21 | target | contextSurroundingFunctionParameters | ()\n(options) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:97:16:97:21 | target | enclosingFunctionName |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:97:16:97:21 | target | fileImports |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:97:16:97:21 | target | receiverName | safe |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:98:6:98:11 | target | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:98:6:98:11 | target | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:98:6:98:11 | target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:98:6:98:11 | target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nposition(options)\nsetupPlugin(o) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:98:6:98:11 | target | contextSurroundingFunctionParameters | ()\n(options) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:98:6:98:11 | target | enclosingFunctionName |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:98:6:98:11 | target | fileImports |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:102:22:105:3 | {\\n\\t\\t\\tme ... in'\\n\\t\\t} | CalleeFlexibleAccessPath | $.extend |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:102:22:105:3 | {\\n\\t\\t\\tme ... in'\\n\\t\\t} | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:102:22:105:3 | {\\n\\t\\t\\tme ... in'\\n\\t\\t} | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:102:22:105:3 | {\\n\\t\\t\\tme ... in'\\n\\t\\t} | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nposition(options)\nsetupPlugin(o) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:102:22:105:3 | {\\n\\t\\t\\tme ... in'\\n\\t\\t} | contextSurroundingFunctionParameters | ()\n(options) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:102:22:105:3 | {\\n\\t\\t\\tme ... in'\\n\\t\\t} | enclosingFunctionName |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:102:22:105:3 | {\\n\\t\\t\\tme ... in'\\n\\t\\t} | fileImports |  |
@@ -18586,7 +23914,7 @@ tokenFeatures
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:103:10:103:22 | '<div></div>' | InputAccessPathFromCallee | 0.menu |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:103:10:103:22 | '<div></div>' | InputArgumentIndex | 0 |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:103:10:103:22 | '<div></div>' | assignedToPropName | menu |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:103:10:103:22 | '<div></div>' | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:103:10:103:22 | '<div></div>' | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nposition(options)\nsetupPlugin(o) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:103:10:103:22 | '<div></div>' | contextSurroundingFunctionParameters | ()\n(options) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:103:10:103:22 | '<div></div>' | enclosingFunctionName |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:103:10:103:22 | '<div></div>' | fileImports |  |
@@ -18594,78 +23922,78 @@ tokenFeatures
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:104:12:104:23 | '.my_plugin' | InputAccessPathFromCallee | 0.target |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:104:12:104:23 | '.my_plugin' | InputArgumentIndex | 0 |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:104:12:104:23 | '.my_plugin' | assignedToPropName | target |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:104:12:104:23 | '.my_plugin' | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:104:12:104:23 | '.my_plugin' | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nposition(options)\nsetupPlugin(o) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:104:12:104:23 | '.my_plugin' | contextSurroundingFunctionParameters | ()\n(options) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:104:12:104:23 | '.my_plugin' | enclosingFunctionName |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:104:12:104:23 | '.my_plugin' | fileImports |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:105:6:105:12 | options | CalleeFlexibleAccessPath | $.extend |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:105:6:105:12 | options | InputArgumentIndex | 1 |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:105:6:105:12 | options | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:105:6:105:12 | options | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nposition(options)\nsetupPlugin(o) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:105:6:105:12 | options | contextSurroundingFunctionParameters | ()\n(options) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:105:6:105:12 | options | enclosingFunctionName |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:105:6:105:12 | options | fileImports |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:105:6:105:12 | options | receiverName | $ |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:106:5:106:16 | options.menu | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:106:5:106:16 | options.menu | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:106:5:106:16 | options.menu | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:106:5:106:16 | options.menu | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nposition(options)\nsetupPlugin(o) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:106:5:106:16 | options.menu | contextSurroundingFunctionParameters | ()\n(options) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:106:5:106:16 | options.menu | enclosingFunctionName |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:106:5:106:16 | options.menu | fileImports |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:107:5:107:18 | options.target | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:107:5:107:18 | options.target | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:107:5:107:18 | options.target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:107:5:107:18 | options.target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nposition(options)\nsetupPlugin(o) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:107:5:107:18 | options.target | contextSurroundingFunctionParameters | ()\n(options) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:107:5:107:18 | options.target | enclosingFunctionName |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:107:5:107:18 | options.target | fileImports |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:22:115:23 | {} | CalleeFlexibleAccessPath | $.extend |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:22:115:23 | {} | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:22:115:23 | {} | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:22:115:23 | {} | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nposition(options)\nsetupPlugin(o) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:22:115:23 | {} | contextSurroundingFunctionParameters | ()\n(options) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:22:115:23 | {} | enclosingFunctionName |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:22:115:23 | {} | fileImports |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:22:115:23 | {} | receiverName | $ |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:26:115:48 | $.fn.my ... efaults | CalleeFlexibleAccessPath | $.extend |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:26:115:48 | $.fn.my ... efaults | InputArgumentIndex | 1 |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:26:115:48 | $.fn.my ... efaults | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:26:115:48 | $.fn.my ... efaults | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nposition(options)\nsetupPlugin(o) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:26:115:48 | $.fn.my ... efaults | contextSurroundingFunctionParameters | ()\n(options) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:26:115:48 | $.fn.my ... efaults | enclosingFunctionName |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:26:115:48 | $.fn.my ... efaults | fileImports |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:26:115:48 | $.fn.my ... efaults | receiverName | $ |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:51:115:57 | options | CalleeFlexibleAccessPath | $.extend |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:51:115:57 | options | InputArgumentIndex | 2 |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:51:115:57 | options | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:51:115:57 | options | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nposition(options)\nsetupPlugin(o) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:51:115:57 | options | contextSurroundingFunctionParameters | ()\n(options) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:51:115:57 | options | enclosingFunctionName |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:51:115:57 | options | fileImports |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:51:115:57 | options | receiverName | $ |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:116:5:116:16 | options.menu | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:116:5:116:16 | options.menu | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:116:5:116:16 | options.menu | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:116:5:116:16 | options.menu | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nposition(options)\nsetupPlugin(o) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:116:5:116:16 | options.menu | contextSurroundingFunctionParameters | ()\n(options) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:116:5:116:16 | options.menu | enclosingFunctionName |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:116:5:116:16 | options.menu | fileImports |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:117:5:117:18 | options.target | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:117:5:117:18 | options.target | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:117:5:117:18 | options.target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:117:5:117:18 | options.target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nposition(options)\nsetupPlugin(o) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:117:5:117:18 | options.target | contextSurroundingFunctionParameters | ()\n(options) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:117:5:117:18 | options.target | enclosingFunctionName |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:117:5:117:18 | options.target | fileImports |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:122:5:122:18 | options.target | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:122:5:122:18 | options.target | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:122:5:122:18 | options.target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:122:5:122:18 | options.target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nposition(options)\nsetupPlugin(o) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:122:5:122:18 | options.target | contextSurroundingFunctionParameters | ()\n(options) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:122:5:122:18 | options.target | enclosingFunctionName |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:122:5:122:18 | options.target | fileImports |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:125:11:125:14 | $.fn | CalleeFlexibleAccessPath | $.extend |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:125:11:125:14 | $.fn | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:125:11:125:14 | $.fn | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:125:11:125:14 | $.fn | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nposition(options)\nsetupPlugin(o) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:125:11:125:14 | $.fn | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:125:11:125:14 | $.fn | enclosingFunctionName |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:125:11:125:14 | $.fn | fileImports |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:125:11:125:14 | $.fn | receiverName | $ |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:125:17:129:2 | {\\n\\t\\tmy_ ... \\n\\t\\t}\\n\\t} | CalleeFlexibleAccessPath | $.extend |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:125:17:129:2 | {\\n\\t\\tmy_ ... \\n\\t\\t}\\n\\t} | InputArgumentIndex | 1 |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:125:17:129:2 | {\\n\\t\\tmy_ ... \\n\\t\\t}\\n\\t} | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:125:17:129:2 | {\\n\\t\\tmy_ ... \\n\\t\\t}\\n\\t} | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nposition(options)\nsetupPlugin(o) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:125:17:129:2 | {\\n\\t\\tmy_ ... \\n\\t\\t}\\n\\t} | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:125:17:129:2 | {\\n\\t\\tmy_ ... \\n\\t\\t}\\n\\t} | enclosingFunctionName |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:125:17:129:2 | {\\n\\t\\tmy_ ... \\n\\t\\t}\\n\\t} | fileImports |  |
@@ -18674,207 +24002,246 @@ tokenFeatures
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:126:14:128:3 | functio ...  OK\\n\\t\\t} | InputAccessPathFromCallee | 1.my_plugin |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:126:14:128:3 | functio ...  OK\\n\\t\\t} | InputArgumentIndex | 1 |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:126:14:128:3 | functio ...  OK\\n\\t\\t} | assignedToPropName | my_plugin |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:126:14:128:3 | functio ...  OK\\n\\t\\t} | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:126:14:128:3 | functio ...  OK\\n\\t\\t} | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nposition(options)\nsetupPlugin(o) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:126:14:128:3 | functio ...  OK\\n\\t\\t} | contextSurroundingFunctionParameters | ()\n(options) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:126:14:128:3 | functio ...  OK\\n\\t\\t} | enclosingFunctionName |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:126:14:128:3 | functio ...  OK\\n\\t\\t} | fileImports |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:127:6:127:19 | options.target | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:127:6:127:19 | options.target | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:127:6:127:19 | options.target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:127:6:127:19 | options.target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nposition(options)\nsetupPlugin(o) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:127:6:127:19 | options.target | contextSurroundingFunctionParameters | ()\n(options) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:127:6:127:19 | options.target | enclosingFunctionName |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:127:6:127:19 | options.target | fileImports |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:132:5:132:18 | options.target | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:132:5:132:18 | options.target | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:132:5:132:18 | options.target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:132:5:132:18 | options.target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nposition(options)\nsetupPlugin(o) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:132:5:132:18 | options.target | contextSurroundingFunctionParameters | ()\n(options) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:132:5:132:18 | options.target | enclosingFunctionName |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:132:5:132:18 | options.target | fileImports |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:136:5:136:29 | options ... elector | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:136:5:136:29 | options ... elector | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:136:5:136:29 | options ... elector | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:136:5:136:29 | options ... elector | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nposition(options)\nsetupPlugin(o) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:136:5:136:29 | options ... elector | contextSurroundingFunctionParameters | ()\n(options) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:136:5:136:29 | options ... elector | enclosingFunctionName |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:136:5:136:29 | options ... elector | fileImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:140:41:140:56 | <div>hello</div> | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:140:41:140:56 | <div>hello</div> | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nposition(options)\nsetupPlugin(o) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:140:41:140:56 | <div>hello</div> | contextSurroundingFunctionParameters | ()\n(options) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:140:41:140:56 | <div>hello</div> | enclosingFunctionName |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:140:41:140:56 | <div>hello</div> | fileImports |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:140:41:140:56 | <div>hello</div> | stringConcatenatedWith |  -endpoint-  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:141:5:141:16 | intentional1 | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:141:5:141:16 | intentional1 | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:141:5:141:16 | intentional1 | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:141:5:141:16 | intentional1 | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nposition(options)\nsetupPlugin(o) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:141:5:141:16 | intentional1 | contextSurroundingFunctionParameters | ()\n(options) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:141:5:141:16 | intentional1 | enclosingFunctionName |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:141:5:141:16 | intentional1 | fileImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:143:23:143:27 | <div> | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:143:23:143:27 | <div> | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nposition(options)\nsetupPlugin(o) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:143:23:143:27 | <div> | contextSurroundingFunctionParameters | ()\n(options) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:143:23:143:27 | <div> | enclosingFunctionName |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:143:23:143:27 | <div> | fileImports |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:143:23:143:27 | <div> | stringConcatenatedWith |  -endpoint- options.target + '</div>' |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:143:30:143:43 | options.target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:143:30:143:43 | options.target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nposition(options)\nsetupPlugin(o) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:143:30:143:43 | options.target | contextSurroundingFunctionParameters | ()\n(options) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:143:30:143:43 | options.target | enclosingFunctionName |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:143:30:143:43 | options.target | fileImports |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:143:30:143:43 | options.target | stringConcatenatedWith | '<div>' -endpoint- '</div>' |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:143:45:143:50 | </div> | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:143:45:143:50 | </div> | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nposition(options)\nsetupPlugin(o) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:143:45:143:50 | </div> | contextSurroundingFunctionParameters | ()\n(options) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:143:45:143:50 | </div> | enclosingFunctionName |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:143:45:143:50 | </div> | fileImports |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:143:45:143:50 | </div> | stringConcatenatedWith | '<div>' + options.target -endpoint-  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:144:5:144:16 | intentional2 | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:144:5:144:16 | intentional2 | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:144:5:144:16 | intentional2 | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:144:5:144:16 | intentional2 | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nposition(options)\nsetupPlugin(o) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:144:5:144:16 | intentional2 | contextSurroundingFunctionParameters | ()\n(options) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:144:5:144:16 | intentional2 | enclosingFunctionName |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:144:5:144:16 | intentional2 | fileImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:146:23:146:27 | <div> | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:146:23:146:27 | <div> | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nposition(options)\nsetupPlugin(o) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:146:23:146:27 | <div> | contextSurroundingFunctionParameters | ()\n(options) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:146:23:146:27 | <div> | enclosingFunctionName |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:146:23:146:27 | <div> | fileImports |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:146:23:146:27 | <div> | stringConcatenatedWith |  -endpoint- ? |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:146:32:146:54 | options ... </div>` | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:146:32:146:54 | options ... </div>` | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nposition(options)\nsetupPlugin(o) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:146:32:146:54 | options ... </div>` | contextSurroundingFunctionParameters | ()\n(options) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:146:32:146:54 | options ... </div>` | enclosingFunctionName |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:146:32:146:54 | options ... </div>` | fileImports |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:146:32:146:54 | options ... </div>` | stringConcatenatedWith | '<div>' -endpoint-  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:147:5:147:16 | intentional3 | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:147:5:147:16 | intentional3 | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:147:5:147:16 | intentional3 | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:147:5:147:16 | intentional3 | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nposition(options)\nsetupPlugin(o) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:147:5:147:16 | intentional3 | contextSurroundingFunctionParameters | ()\n(options) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:147:5:147:16 | intentional3 | enclosingFunctionName |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:147:5:147:16 | intentional3 | fileImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:149:24:149:35 | <div class=" | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:149:24:149:35 | <div class=" | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nposition(options)\nsetupPlugin(o) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:149:24:149:35 | <div class=" | contextSurroundingFunctionParameters | ()\n(options) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:149:24:149:35 | <div class=" | enclosingFunctionName |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:149:24:149:35 | <div class=" | fileImports |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:149:24:149:35 | <div class=" | stringConcatenatedWith |  -endpoint- options.target + '"></div>' |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:149:38:149:51 | options.target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:149:38:149:51 | options.target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nposition(options)\nsetupPlugin(o) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:149:38:149:51 | options.target | contextSurroundingFunctionParameters | ()\n(options) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:149:38:149:51 | options.target | enclosingFunctionName |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:149:38:149:51 | options.target | fileImports |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:149:38:149:51 | options.target | stringConcatenatedWith | '<div class="' -endpoint- '"></div>' |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:149:53:149:60 | "></div> | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:149:53:149:60 | "></div> | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nposition(options)\nsetupPlugin(o) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:149:53:149:60 | "></div> | contextSurroundingFunctionParameters | ()\n(options) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:149:53:149:60 | "></div> | enclosingFunctionName |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:149:53:149:60 | "></div> | fileImports |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:149:53:149:60 | "></div> | stringConcatenatedWith | '<div class="' + options.target -endpoint-  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:150:5:150:17 | unintentional | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:150:5:150:17 | unintentional | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:150:5:150:17 | unintentional | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:150:5:150:17 | unintentional | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nposition(options)\nsetupPlugin(o) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:150:5:150:17 | unintentional | contextSurroundingFunctionParameters | ()\n(options) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:150:5:150:17 | unintentional | enclosingFunctionName |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:150:5:150:17 | unintentional | fileImports |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:155:33:155:38 | target | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:155:33:155:38 | target | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:155:33:155:38 | target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:155:33:155:38 | target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nposition(options)\nsetupPlugin(o) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:155:33:155:38 | target | contextSurroundingFunctionParameters | ()\n(options) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:155:33:155:38 | target | enclosingFunctionName |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:155:33:155:38 | target | fileImports |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:155:44:155:51 | document | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:155:44:155:51 | document | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:155:44:155:51 | document | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:155:44:155:51 | document | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nposition(options)\nsetupPlugin(o) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:155:44:155:51 | document | contextSurroundingFunctionParameters | ()\n(options) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:155:44:155:51 | document | enclosingFunctionName |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:155:44:155:51 | document | fileImports |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:155:59:155:64 | target | CalleeFlexibleAccessPath | $().find |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:155:59:155:64 | target | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:155:59:155:64 | target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:155:59:155:64 | target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nposition(options)\nsetupPlugin(o) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:155:59:155:64 | target | contextSurroundingFunctionParameters | ()\n(options) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:155:59:155:64 | target | enclosingFunctionName |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:155:59:155:64 | target | fileImports |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:156:41:156:54 | options.target | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:156:41:156:54 | options.target | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:156:41:156:54 | options.target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:156:41:156:54 | options.target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nposition(options)\nsetupPlugin(o) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:156:41:156:54 | options.target | contextSurroundingFunctionParameters | ()\n(options) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:156:41:156:54 | options.target | enclosingFunctionName |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:156:41:156:54 | options.target | fileImports |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:156:60:156:67 | document | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:156:60:156:67 | document | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:156:60:156:67 | document | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:156:60:156:67 | document | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nposition(options)\nsetupPlugin(o) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:156:60:156:67 | document | contextSurroundingFunctionParameters | ()\n(options) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:156:60:156:67 | document | enclosingFunctionName |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:156:60:156:67 | document | fileImports |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:156:75:156:88 | options.target | CalleeFlexibleAccessPath | $().find |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:156:75:156:88 | options.target | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:156:75:156:88 | options.target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:156:75:156:88 | options.target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nposition(options)\nsetupPlugin(o) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:156:75:156:88 | options.target | contextSurroundingFunctionParameters | ()\n(options) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:156:75:156:88 | options.target | enclosingFunctionName |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:156:75:156:88 | options.target | fileImports |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:157:44:157:59 | options.target.a | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:157:44:157:59 | options.target.a | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:157:44:157:59 | options.target.a | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:157:44:157:59 | options.target.a | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nposition(options)\nsetupPlugin(o) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:157:44:157:59 | options.target.a | contextSurroundingFunctionParameters | ()\n(options) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:157:44:157:59 | options.target.a | enclosingFunctionName |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:157:44:157:59 | options.target.a | fileImports |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:157:65:157:72 | document | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:157:65:157:72 | document | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:157:65:157:72 | document | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:157:65:157:72 | document | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nposition(options)\nsetupPlugin(o) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:157:65:157:72 | document | contextSurroundingFunctionParameters | ()\n(options) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:157:65:157:72 | document | enclosingFunctionName |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:157:65:157:72 | document | fileImports |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:157:80:157:95 | options.target.a | CalleeFlexibleAccessPath | $().find |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:157:80:157:95 | options.target.a | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:157:80:157:95 | options.target.a | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:157:80:157:95 | options.target.a | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nposition(options)\nsetupPlugin(o) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:157:80:157:95 | options.target.a | contextSurroundingFunctionParameters | ()\n(options) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:157:80:157:95 | options.target.a | enclosingFunctionName |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:157:80:157:95 | options.target.a | fileImports |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:161:5:161:30 | anyPref ... .target | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:161:5:161:30 | anyPref ... .target | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:161:5:161:30 | anyPref ... .target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:161:5:161:30 | anyPref ... .target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nposition(options)\nsetupPlugin(o) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:161:5:161:30 | anyPref ... .target | contextSurroundingFunctionParameters | ()\n(options) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:161:5:161:30 | anyPref ... .target | enclosingFunctionName |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:161:5:161:30 | anyPref ... .target | fileImports |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:163:5:163:54 | somethi ... target) | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:163:5:163:54 | somethi ... target) | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:163:5:163:54 | somethi ... target) | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:163:5:163:54 | somethi ... target) | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nposition(options)\nsetupPlugin(o) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:163:5:163:54 | somethi ... target) | contextSurroundingFunctionParameters | ()\n(options) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:163:5:163:54 | somethi ... target) | enclosingFunctionName |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:163:5:163:54 | somethi ... target) | fileImports |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:163:23:163:37 | "%PLACEHOLDER%" | CalleeFlexibleAccessPath | something.replace |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:163:23:163:37 | "%PLACEHOLDER%" | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:163:23:163:37 | "%PLACEHOLDER%" | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:163:23:163:37 | "%PLACEHOLDER%" | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nposition(options)\nsetupPlugin(o) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:163:23:163:37 | "%PLACEHOLDER%" | contextSurroundingFunctionParameters | ()\n(options) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:163:23:163:37 | "%PLACEHOLDER%" | enclosingFunctionName |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:163:23:163:37 | "%PLACEHOLDER%" | fileImports |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:163:23:163:37 | "%PLACEHOLDER%" | receiverName | something |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:163:40:163:53 | options.target | CalleeFlexibleAccessPath | something.replace |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:163:40:163:53 | options.target | InputArgumentIndex | 1 |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:163:40:163:53 | options.target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:163:40:163:53 | options.target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nposition(options)\nsetupPlugin(o) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:163:40:163:53 | options.target | contextSurroundingFunctionParameters | ()\n(options) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:163:40:163:53 | options.target | enclosingFunctionName |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:163:40:163:53 | options.target | fileImports |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:163:40:163:53 | options.target | receiverName | something |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:167:6:167:11 | target | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:167:6:167:11 | target | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:167:6:167:11 | target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:167:6:167:11 | target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nposition(options)\nsetupPlugin(o) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:167:6:167:11 | target | contextSurroundingFunctionParameters | ()\n(options) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:167:6:167:11 | target | enclosingFunctionName |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:167:6:167:11 | target | fileImports |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:170:6:170:11 | target | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:170:6:170:11 | target | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:170:6:170:11 | target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:170:6:170:11 | target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nposition(options)\nsetupPlugin(o) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:170:6:170:11 | target | contextSurroundingFunctionParameters | ()\n(options) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:170:6:170:11 | target | enclosingFunctionName |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:170:6:170:11 | target | fileImports |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:179:5:179:18 | options.target | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:179:5:179:18 | options.target | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:179:5:179:18 | options.target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:179:5:179:18 | options.target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nposition(options)\nsetupPlugin(o) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:179:5:179:18 | options.target | contextSurroundingFunctionParameters | ()\n(options) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:179:5:179:18 | options.target | enclosingFunctionName |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:179:5:179:18 | options.target | fileImports |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:182:5:182:12 | document | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:182:5:182:12 | document | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:182:5:182:12 | document | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:182:5:182:12 | document | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nposition(options)\nsetupPlugin(o) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:182:5:182:12 | document | contextSurroundingFunctionParameters | ()\n(options) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:182:5:182:12 | document | enclosingFunctionName |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:182:5:182:12 | document | fileImports |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:182:20:182:33 | options.target | CalleeFlexibleAccessPath | $().find |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:182:20:182:33 | options.target | InputArgumentIndex | 0 |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:182:20:182:33 | options.target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:182:20:182:33 | options.target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nposition(options)\nsetupPlugin(o) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:182:20:182:33 | options.target | contextSurroundingFunctionParameters | ()\n(options) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:182:20:182:33 | options.target | enclosingFunctionName |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:182:20:182:33 | options.target | fileImports |  |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:187:28:187:31 | this | CalleeFlexibleAccessPath | doSomethingElse |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:187:28:187:31 | this | InputArgumentIndex | 0 |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:187:28:187:31 | this | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nposition(options)\nsetupPlugin(o) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:187:28:187:31 | this | contextSurroundingFunctionParameters | ()\n(options) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:187:28:187:31 | this | enclosingFunctionName |  |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:187:28:187:31 | this | fileImports |  |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:187:34:187:42 | arguments | CalleeFlexibleAccessPath | doSomethingElse |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:187:34:187:42 | arguments | InputArgumentIndex | 1 |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:187:34:187:42 | arguments | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nposition(options)\nsetupPlugin(o) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:187:34:187:42 | arguments | contextSurroundingFunctionParameters | ()\n(options) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:187:34:187:42 | arguments | enclosingFunctionName |  |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:187:34:187:42 | arguments | fileImports |  |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:190:23:190:24 | {} | CalleeFlexibleAccessPath | $.extend |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:190:23:190:24 | {} | InputArgumentIndex | 0 |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:190:23:190:24 | {} | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nposition(options)\nsetupPlugin(o) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:190:23:190:24 | {} | contextSurroundingFunctionParameters | ()\n(options) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:190:23:190:24 | {} | enclosingFunctionName |  |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:190:23:190:24 | {} | fileImports |  |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:190:23:190:24 | {} | receiverName | $ |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:190:27:190:33 | options | CalleeFlexibleAccessPath | $.extend |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:190:27:190:33 | options | InputArgumentIndex | 1 |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:190:27:190:33 | options | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nposition(options)\nsetupPlugin(o) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:190:27:190:33 | options | contextSurroundingFunctionParameters | ()\n(options) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:190:27:190:33 | options | enclosingFunctionName |  |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:190:27:190:33 | options | fileImports |  |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:190:27:190:33 | options | receiverName | $ |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:192:19:192:28 | options.of | CalleeFlexibleAccessPath | $ |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:192:19:192:28 | options.of | InputArgumentIndex | 0 |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:192:19:192:28 | options.of | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nposition(options)\nsetupPlugin(o) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:192:19:192:28 | options.of | contextSurroundingFunctionParameters | ()\n(options) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:192:19:192:28 | options.of | enclosingFunctionName |  |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:192:19:192:28 | options.of | fileImports |  |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:193:15:193:20 | target | CalleeFlexibleAccessPath | console.log |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:193:15:193:20 | target | InputArgumentIndex | 0 |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:193:15:193:20 | target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nposition(options)\nsetupPlugin(o) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:193:15:193:20 | target | contextSurroundingFunctionParameters | ()\n(options) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:193:15:193:20 | target | enclosingFunctionName |  |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:193:15:193:20 | target | fileImports |  |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:193:15:193:20 | target | receiverName | console |
 | autogenerated/Xss/XssThroughDom/forms.js:9:19:9:23 | "#id" | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/XssThroughDom/forms.js:9:19:9:23 | "#id" | InputArgumentIndex | 0 |
 | autogenerated/Xss/XssThroughDom/forms.js:9:19:9:23 | "#id" | contextFunctionInterfaces | App()\nFormikBasic()\nHookForm()\nHookForm2()\nhandleSubmit(values, ?)\nmapPropsToValues()\nonSubmit(data)\nonsubmit(e)\nplainReact()\nplainSubmit(e)\nvalidate(values)\nvanillaJS() |
@@ -19137,823 +24504,5243 @@ tokenFeatures
 | autogenerated/Xss/XssThroughDom/forms.js:107:23:107:36 | e.target.value | fileImports | formik react react-final-form react-hook-form |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:2:4:2:8 | "#id" | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:2:4:2:8 | "#id" | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:2:4:2:8 | "#id" | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:2:4:2:8 | "#id" | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:2:4:2:8 | "#id" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:2:4:2:8 | "#id" | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:2:4:2:8 | "#id" | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:2:4:2:8 | "#id" | fileImports | anser |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:2:4:2:8 | "#id" | fileImports | anser cash-dom |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:2:16:2:34 | $("textarea").val() | CalleeFlexibleAccessPath | $().html |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:2:16:2:34 | $("textarea").val() | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:2:16:2:34 | $("textarea").val() | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:2:16:2:34 | $("textarea").val() | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:2:16:2:34 | $("textarea").val() | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:2:16:2:34 | $("textarea").val() | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:2:16:2:34 | $("textarea").val() | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:2:16:2:34 | $("textarea").val() | fileImports | anser |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:2:16:2:34 | $("textarea").val() | fileImports | anser cash-dom |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:2:18:2:27 | "textarea" | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:2:18:2:27 | "textarea" | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:2:18:2:27 | "textarea" | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:2:18:2:27 | "textarea" | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:2:18:2:27 | "textarea" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:2:18:2:27 | "textarea" | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:2:18:2:27 | "textarea" | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:2:18:2:27 | "textarea" | fileImports | anser |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:2:18:2:27 | "textarea" | fileImports | anser cash-dom |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:4:4:4:8 | "#id" | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:4:4:4:8 | "#id" | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:4:4:4:8 | "#id" | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:4:4:4:8 | "#id" | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:4:4:4:8 | "#id" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:4:4:4:8 | "#id" | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:4:4:4:8 | "#id" | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:4:4:4:8 | "#id" | fileImports | anser |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:4:4:4:8 | "#id" | fileImports | anser cash-dom |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:4:16:4:40 | $(".som ... .text() | CalleeFlexibleAccessPath | $().html |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:4:16:4:40 | $(".som ... .text() | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:4:16:4:40 | $(".som ... .text() | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:4:16:4:40 | $(".som ... .text() | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:4:16:4:40 | $(".som ... .text() | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:4:16:4:40 | $(".som ... .text() | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:4:16:4:40 | $(".som ... .text() | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:4:16:4:40 | $(".som ... .text() | fileImports | anser |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:4:16:4:40 | $(".som ... .text() | fileImports | anser cash-dom |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:4:18:4:32 | ".some-element" | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:4:18:4:32 | ".some-element" | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:4:18:4:32 | ".some-element" | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:4:18:4:32 | ".some-element" | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:4:18:4:32 | ".some-element" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:4:18:4:32 | ".some-element" | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:4:18:4:32 | ".some-element" | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:4:18:4:32 | ".some-element" | fileImports | anser |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:4:18:4:32 | ".some-element" | fileImports | anser cash-dom |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:4:6:8 | "#id" | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:4:6:8 | "#id" | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:4:6:8 | "#id" | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:4:6:8 | "#id" | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:4:6:8 | "#id" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:4:6:8 | "#id" | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:4:6:8 | "#id" | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:4:6:8 | "#id" | fileImports | anser |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:4:6:8 | "#id" | fileImports | anser cash-dom |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:16:6:52 | $(".som ...  "bar") | CalleeFlexibleAccessPath | $().html |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:16:6:52 | $(".som ...  "bar") | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:16:6:52 | $(".som ...  "bar") | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:16:6:52 | $(".som ...  "bar") | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:16:6:52 | $(".som ...  "bar") | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:16:6:52 | $(".som ...  "bar") | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:16:6:52 | $(".som ...  "bar") | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:16:6:52 | $(".som ...  "bar") | fileImports | anser |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:16:6:52 | $(".som ...  "bar") | fileImports | anser cash-dom |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:18:6:32 | ".some-element" | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:18:6:32 | ".some-element" | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:18:6:32 | ".some-element" | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:18:6:32 | ".some-element" | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:18:6:32 | ".some-element" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:18:6:32 | ".some-element" | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:18:6:32 | ".some-element" | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:18:6:32 | ".some-element" | fileImports | anser |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:18:6:32 | ".some-element" | fileImports | anser cash-dom |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:40:6:44 | "foo" | CalleeFlexibleAccessPath | $().attr |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:40:6:44 | "foo" | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:40:6:44 | "foo" | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:40:6:44 | "foo" | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:40:6:44 | "foo" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:40:6:44 | "foo" | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:40:6:44 | "foo" | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:40:6:44 | "foo" | fileImports | anser |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:40:6:44 | "foo" | fileImports | anser cash-dom |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:47:6:51 | "bar" | CalleeFlexibleAccessPath | $().attr |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:47:6:51 | "bar" | InputArgumentIndex | 1 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:47:6:51 | "bar" | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:47:6:51 | "bar" | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:47:6:51 | "bar" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:47:6:51 | "bar" | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:47:6:51 | "bar" | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:47:6:51 | "bar" | fileImports | anser |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:47:6:51 | "bar" | fileImports | anser cash-dom |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:4:7:8 | "#id" | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:4:7:8 | "#id" | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:4:7:8 | "#id" | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:4:7:8 | "#id" | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:4:7:8 | "#id" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:4:7:8 | "#id" | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:4:7:8 | "#id" | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:4:7:8 | "#id" | fileImports | anser |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:4:7:8 | "#id" | fileImports | anser cash-dom |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:16:7:54 | $(".som ... "bar"}) | CalleeFlexibleAccessPath | $().html |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:16:7:54 | $(".som ... "bar"}) | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:16:7:54 | $(".som ... "bar"}) | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:16:7:54 | $(".som ... "bar"}) | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:16:7:54 | $(".som ... "bar"}) | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:16:7:54 | $(".som ... "bar"}) | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:16:7:54 | $(".som ... "bar"}) | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:16:7:54 | $(".som ... "bar"}) | fileImports | anser |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:16:7:54 | $(".som ... "bar"}) | fileImports | anser cash-dom |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:18:7:32 | ".some-element" | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:18:7:32 | ".some-element" | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:18:7:32 | ".some-element" | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:18:7:32 | ".some-element" | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:18:7:32 | ".some-element" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:18:7:32 | ".some-element" | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:18:7:32 | ".some-element" | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:18:7:32 | ".some-element" | fileImports | anser |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:18:7:32 | ".some-element" | fileImports | anser cash-dom |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:40:7:53 | {"foo": "bar"} | CalleeFlexibleAccessPath | $().attr |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:40:7:53 | {"foo": "bar"} | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:40:7:53 | {"foo": "bar"} | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:40:7:53 | {"foo": "bar"} | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:40:7:53 | {"foo": "bar"} | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:40:7:53 | {"foo": "bar"} | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:40:7:53 | {"foo": "bar"} | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:40:7:53 | {"foo": "bar"} | fileImports | anser |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:40:7:53 | {"foo": "bar"} | fileImports | anser cash-dom |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:48:7:52 | "bar" | CalleeFlexibleAccessPath | $().attr |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:48:7:52 | "bar" | InputAccessPathFromCallee | 0.foo |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:48:7:52 | "bar" | InputArgumentIndex | 0 |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:48:7:52 | "bar" | assignedToPropName | foo |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:48:7:52 | "bar" | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:48:7:52 | "bar" | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:48:7:52 | "bar" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:48:7:52 | "bar" | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:48:7:52 | "bar" | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:48:7:52 | "bar" | fileImports | anser |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:48:7:52 | "bar" | fileImports | anser cash-dom |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:8:4:8:8 | "#id" | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:8:4:8:8 | "#id" | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:8:4:8:8 | "#id" | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:8:4:8:8 | "#id" | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:8:4:8:8 | "#id" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:8:4:8:8 | "#id" | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:8:4:8:8 | "#id" | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:8:4:8:8 | "#id" | fileImports | anser |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:8:4:8:8 | "#id" | fileImports | anser cash-dom |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:8:16:8:53 | $(".som ... arget") | CalleeFlexibleAccessPath | $().html |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:8:16:8:53 | $(".som ... arget") | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:8:16:8:53 | $(".som ... arget") | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:8:16:8:53 | $(".som ... arget") | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:8:16:8:53 | $(".som ... arget") | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:8:16:8:53 | $(".som ... arget") | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:8:16:8:53 | $(".som ... arget") | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:8:16:8:53 | $(".som ... arget") | fileImports | anser |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:8:16:8:53 | $(".som ... arget") | fileImports | anser cash-dom |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:8:18:8:32 | ".some-element" | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:8:18:8:32 | ".some-element" | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:8:18:8:32 | ".some-element" | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:8:18:8:32 | ".some-element" | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:8:18:8:32 | ".some-element" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:8:18:8:32 | ".some-element" | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:8:18:8:32 | ".some-element" | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:8:18:8:32 | ".some-element" | fileImports | anser |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:8:18:8:32 | ".some-element" | fileImports | anser cash-dom |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:8:40:8:52 | "data-target" | CalleeFlexibleAccessPath | $().attr |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:8:40:8:52 | "data-target" | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:8:40:8:52 | "data-target" | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:8:40:8:52 | "data-target" | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:8:40:8:52 | "data-target" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:8:40:8:52 | "data-target" | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:8:40:8:52 | "data-target" | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:8:40:8:52 | "data-target" | fileImports | anser |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:8:40:8:52 | "data-target" | fileImports | anser cash-dom |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:10:4:10:8 | "#id" | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:10:4:10:8 | "#id" | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:10:4:10:8 | "#id" | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:10:4:10:8 | "#id" | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:10:4:10:8 | "#id" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:10:4:10:8 | "#id" | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:10:4:10:8 | "#id" | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:10:4:10:8 | "#id" | fileImports | anser |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:10:4:10:8 | "#id" | fileImports | anser cash-dom |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:11:3:11:42 | documen ... nerText | CalleeFlexibleAccessPath | $().html |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:11:3:11:42 | documen ... nerText | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:11:3:11:42 | documen ... nerText | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:11:3:11:42 | documen ... nerText | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:11:3:11:42 | documen ... nerText | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:11:3:11:42 | documen ... nerText | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:11:3:11:42 | documen ... nerText | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:11:3:11:42 | documen ... nerText | fileImports | anser |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:11:3:11:42 | documen ... nerText | fileImports | anser cash-dom |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:11:27:11:31 | "foo" | CalleeFlexibleAccessPath | document.getElementById |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:11:27:11:31 | "foo" | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:11:27:11:31 | "foo" | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:11:27:11:31 | "foo" | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:11:27:11:31 | "foo" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:11:27:11:31 | "foo" | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:11:27:11:31 | "foo" | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:11:27:11:31 | "foo" | fileImports | anser |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:11:27:11:31 | "foo" | fileImports | anser cash-dom |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:11:27:11:31 | "foo" | receiverName | document |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:14:4:14:8 | "#id" | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:14:4:14:8 | "#id" | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:14:4:14:8 | "#id" | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:14:4:14:8 | "#id" | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:14:4:14:8 | "#id" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:14:4:14:8 | "#id" | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:14:4:14:8 | "#id" | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:14:4:14:8 | "#id" | fileImports | anser |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:14:4:14:8 | "#id" | fileImports | anser cash-dom |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:15:3:15:42 | documen ... nerHTML | CalleeFlexibleAccessPath | $().html |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:15:3:15:42 | documen ... nerHTML | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:15:3:15:42 | documen ... nerHTML | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:15:3:15:42 | documen ... nerHTML | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:15:3:15:42 | documen ... nerHTML | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:15:3:15:42 | documen ... nerHTML | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:15:3:15:42 | documen ... nerHTML | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:15:3:15:42 | documen ... nerHTML | fileImports | anser |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:15:3:15:42 | documen ... nerHTML | fileImports | anser cash-dom |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:15:27:15:31 | "foo" | CalleeFlexibleAccessPath | document.getElementById |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:15:27:15:31 | "foo" | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:15:27:15:31 | "foo" | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:15:27:15:31 | "foo" | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:15:27:15:31 | "foo" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:15:27:15:31 | "foo" | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:15:27:15:31 | "foo" | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:15:27:15:31 | "foo" | fileImports | anser |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:15:27:15:31 | "foo" | fileImports | anser cash-dom |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:15:27:15:31 | "foo" | receiverName | document |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:18:4:18:8 | "#id" | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:18:4:18:8 | "#id" | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:18:4:18:8 | "#id" | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:18:4:18:8 | "#id" | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:18:4:18:8 | "#id" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:18:4:18:8 | "#id" | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:18:4:18:8 | "#id" | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:18:4:18:8 | "#id" | fileImports | anser |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:18:4:18:8 | "#id" | fileImports | anser cash-dom |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:19:3:19:44 | documen ... Content | CalleeFlexibleAccessPath | $().html |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:19:3:19:44 | documen ... Content | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:19:3:19:44 | documen ... Content | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:19:3:19:44 | documen ... Content | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:19:3:19:44 | documen ... Content | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:19:3:19:44 | documen ... Content | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:19:3:19:44 | documen ... Content | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:19:3:19:44 | documen ... Content | fileImports | anser |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:19:3:19:44 | documen ... Content | fileImports | anser cash-dom |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:19:27:19:31 | "foo" | CalleeFlexibleAccessPath | document.getElementById |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:19:27:19:31 | "foo" | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:19:27:19:31 | "foo" | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:19:27:19:31 | "foo" | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:19:27:19:31 | "foo" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:19:27:19:31 | "foo" | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:19:27:19:31 | "foo" | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:19:27:19:31 | "foo" | fileImports | anser |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:19:27:19:31 | "foo" | fileImports | anser cash-dom |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:19:27:19:31 | "foo" | receiverName | document |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:22:4:22:8 | "#id" | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:22:4:22:8 | "#id" | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:22:4:22:8 | "#id" | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:22:4:22:8 | "#id" | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:22:4:22:8 | "#id" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:22:4:22:8 | "#id" | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:22:4:22:8 | "#id" | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:22:4:22:8 | "#id" | fileImports | anser |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:22:4:22:8 | "#id" | fileImports | anser cash-dom |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:23:3:23:48 | documen ... ].value | CalleeFlexibleAccessPath | $().html |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:23:3:23:48 | documen ... ].value | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:23:3:23:48 | documen ... ].value | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:23:3:23:48 | documen ... ].value | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:23:3:23:48 | documen ... ].value | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:23:3:23:48 | documen ... ].value | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:23:3:23:48 | documen ... ].value | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:23:3:23:48 | documen ... ].value | fileImports | anser |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:23:3:23:48 | documen ... ].value | fileImports | anser cash-dom |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:23:29:23:38 | "textarea" | CalleeFlexibleAccessPath | document.querySelectorAll |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:23:29:23:38 | "textarea" | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:23:29:23:38 | "textarea" | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:23:29:23:38 | "textarea" | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:23:29:23:38 | "textarea" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:23:29:23:38 | "textarea" | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:23:29:23:38 | "textarea" | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:23:29:23:38 | "textarea" | fileImports | anser |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:23:29:23:38 | "textarea" | fileImports | anser cash-dom |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:23:29:23:38 | "textarea" | receiverName | document |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:26:4:26:8 | "#id" | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:26:4:26:8 | "#id" | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:26:4:26:8 | "#id" | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:26:4:26:8 | "#id" | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:26:4:26:8 | "#id" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:26:4:26:8 | "#id" | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:26:4:26:8 | "#id" | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:26:4:26:8 | "#id" | fileImports | anser |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:26:4:26:8 | "#id" | fileImports | anser cash-dom |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:27:3:27:61 | documen ... arget') | CalleeFlexibleAccessPath | $().html |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:27:3:27:61 | documen ... arget') | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:27:3:27:61 | documen ... arget') | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:27:3:27:61 | documen ... arget') | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:27:3:27:61 | documen ... arget') | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:27:3:27:61 | documen ... arget') | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:27:3:27:61 | documen ... arget') | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:27:3:27:61 | documen ... arget') | fileImports | anser |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:27:3:27:61 | documen ... arget') | fileImports | anser cash-dom |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:27:27:27:32 | 'div1' | CalleeFlexibleAccessPath | document.getElementById |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:27:27:27:32 | 'div1' | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:27:27:27:32 | 'div1' | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:27:27:27:32 | 'div1' | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:27:27:27:32 | 'div1' | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:27:27:27:32 | 'div1' | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:27:27:27:32 | 'div1' | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:27:27:27:32 | 'div1' | fileImports | anser |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:27:27:27:32 | 'div1' | fileImports | anser cash-dom |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:27:27:27:32 | 'div1' | receiverName | document |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:27:48:27:60 | 'data-target' | CalleeFlexibleAccessPath | document.getElementById().getAttribute |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:27:48:27:60 | 'data-target' | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:27:48:27:60 | 'data-target' | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:27:48:27:60 | 'data-target' | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:27:48:27:60 | 'data-target' | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:27:48:27:60 | 'data-target' | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:27:48:27:60 | 'data-target' | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:27:48:27:60 | 'data-target' | fileImports | anser |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:27:48:27:60 | 'data-target' | fileImports | anser cash-dom |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:32:16:32:16 | x | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:32:16:32:16 | x | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:32:16:32:16 | x | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:32:16:32:16 | x | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:32:16:32:16 | x | contextSurroundingFunctionParameters | (x) |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:32:16:32:16 | x | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:32:16:32:16 | x | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:32:16:32:16 | x | fileImports | anser |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:32:16:32:16 | x | fileImports | anser cash-dom |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:36:10:36:19 | "textarea" | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:36:10:36:19 | "textarea" | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:36:10:36:19 | "textarea" | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:36:10:36:19 | "textarea" | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:36:10:36:19 | "textarea" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:36:10:36:19 | "textarea" | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:36:10:36:19 | "textarea" | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:36:10:36:19 | "textarea" | fileImports | anser |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:36:10:36:19 | "textarea" | fileImports | anser cash-dom |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:40:16:40:16 | x | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:40:16:40:16 | x | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:40:16:40:16 | x | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:40:16:40:16 | x | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:40:16:40:16 | x | contextSurroundingFunctionParameters | (x) |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:40:16:40:16 | x | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:40:16:40:16 | x | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:40:16:40:16 | x | fileImports | anser |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:40:16:40:16 | x | fileImports | anser cash-dom |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:43:10:43:19 | "textarea" | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:43:10:43:19 | "textarea" | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:43:10:43:19 | "textarea" | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:43:10:43:19 | "textarea" | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:43:10:43:19 | "textarea" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:43:10:43:19 | "textarea" | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:43:10:43:19 | "textarea" | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:43:10:43:19 | "textarea" | fileImports | anser |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:43:10:43:19 | "textarea" | fileImports | anser cash-dom |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:46:4:46:8 | "#id" | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:46:4:46:8 | "#id" | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:46:4:46:8 | "#id" | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:46:4:46:8 | "#id" | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:46:4:46:8 | "#id" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:46:4:46:8 | "#id" | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:46:4:46:8 | "#id" | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:46:4:46:8 | "#id" | fileImports | anser |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:46:4:46:8 | "#id" | fileImports | anser cash-dom |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:47:3:47:40 | $("<p>" ... .text() | CalleeFlexibleAccessPath | $().html |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:47:3:47:40 | $("<p>" ... .text() | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:47:3:47:40 | $("<p>" ... .text() | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:47:3:47:40 | $("<p>" ... .text() | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:47:3:47:40 | $("<p>" ... .text() | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:47:3:47:40 | $("<p>" ... .text() | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:47:3:47:40 | $("<p>" ... .text() | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:47:3:47:40 | $("<p>" ... .text() | fileImports | anser |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:47:5:47:9 | "<p>" | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:47:3:47:40 | $("<p>" ... .text() | fileImports | anser cash-dom |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:47:5:47:9 | "<p>" | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:47:5:47:9 | "<p>" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:47:5:47:9 | "<p>" | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:47:5:47:9 | "<p>" | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:47:5:47:9 | "<p>" | fileImports | anser |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:47:5:47:9 | "<p>" | fileImports | anser cash-dom |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:47:5:47:9 | "<p>" | stringConcatenatedWith |  -endpoint- something() + '</p>' |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:47:5:47:32 | "<p>" + ...  "</p>" | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:47:5:47:32 | "<p>" + ...  "</p>" | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:47:5:47:32 | "<p>" + ...  "</p>" | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:47:5:47:32 | "<p>" + ...  "</p>" | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:47:5:47:32 | "<p>" + ...  "</p>" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:47:5:47:32 | "<p>" + ...  "</p>" | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:47:5:47:32 | "<p>" + ...  "</p>" | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:47:5:47:32 | "<p>" + ...  "</p>" | fileImports | anser |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:47:13:47:23 | something() | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:47:5:47:32 | "<p>" + ...  "</p>" | fileImports | anser cash-dom |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:47:13:47:23 | something() | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:47:13:47:23 | something() | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:47:13:47:23 | something() | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:47:13:47:23 | something() | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:47:13:47:23 | something() | fileImports | anser |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:47:13:47:23 | something() | fileImports | anser cash-dom |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:47:13:47:23 | something() | stringConcatenatedWith | '<p>' -endpoint- '</p>' |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:47:27:47:32 | "</p>" | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:47:27:47:32 | "</p>" | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:47:27:47:32 | "</p>" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:47:27:47:32 | "</p>" | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:47:27:47:32 | "</p>" | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:47:27:47:32 | "</p>" | fileImports | anser |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:47:27:47:32 | "</p>" | fileImports | anser cash-dom |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:47:27:47:32 | "</p>" | stringConcatenatedWith | '<p>' + something() -endpoint-  |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:51:4:51:8 | "#id" | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:51:4:51:8 | "#id" | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:51:4:51:8 | "#id" | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:51:4:51:8 | "#id" | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:51:4:51:8 | "#id" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:51:4:51:8 | "#id" | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:51:4:51:8 | "#id" | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:51:4:51:8 | "#id" | fileImports | anser |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:51:4:51:8 | "#id" | fileImports | anser cash-dom |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:51:15:51:15 | 0 | CalleeFlexibleAccessPath | $().get |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:51:15:51:15 | 0 | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:51:15:51:15 | 0 | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:51:15:51:15 | 0 | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:51:15:51:15 | 0 | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:51:15:51:15 | 0 | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:51:15:51:15 | 0 | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:51:15:51:15 | 0 | fileImports | anser |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:51:15:51:15 | 0 | fileImports | anser cash-dom |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:51:30:51:48 | $("textarea").val() | assignedToPropName | innerHTML |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:51:30:51:48 | $("textarea").val() | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:51:30:51:48 | $("textarea").val() | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:51:30:51:48 | $("textarea").val() | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:51:30:51:48 | $("textarea").val() | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:51:30:51:48 | $("textarea").val() | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:51:30:51:48 | $("textarea").val() | fileImports | anser |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:51:30:51:48 | $("textarea").val() | fileImports | anser cash-dom |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:51:32:51:41 | "textarea" | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:51:32:51:41 | "textarea" | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:51:32:51:41 | "textarea" | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:51:32:51:41 | "textarea" | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:51:32:51:41 | "textarea" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:51:32:51:41 | "textarea" | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:51:32:51:41 | "textarea" | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:51:32:51:41 | "textarea" | fileImports | anser |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:51:32:51:41 | "textarea" | fileImports | anser cash-dom |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:53:15:53:19 | "#id" | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:53:15:53:19 | "#id" | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:53:15:53:19 | "#id" | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:53:15:53:19 | "#id" | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:53:15:53:19 | "#id" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:53:15:53:19 | "#id" | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:53:15:53:19 | "#id" | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:53:15:53:19 | "#id" | fileImports | anser |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:53:15:53:19 | "#id" | fileImports | anser cash-dom |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:54:31:54:49 | $("textarea").val() | CalleeFlexibleAccessPath | base.? |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:54:31:54:49 | $("textarea").val() | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:54:31:54:49 | $("textarea").val() | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:54:31:54:49 | $("textarea").val() | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:54:31:54:49 | $("textarea").val() | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:54:31:54:49 | $("textarea").val() | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:54:31:54:49 | $("textarea").val() | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:54:31:54:49 | $("textarea").val() | fileImports | anser |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:54:31:54:49 | $("textarea").val() | fileImports | anser cash-dom |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:54:31:54:49 | $("textarea").val() | receiverName | base |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:54:33:54:42 | "textarea" | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:54:33:54:42 | "textarea" | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:54:33:54:42 | "textarea" | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:54:33:54:42 | "textarea" | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:54:33:54:42 | "textarea" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:54:33:54:42 | "textarea" | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:54:33:54:42 | "textarea" | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:54:33:54:42 | "textarea" | fileImports | anser |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:54:33:54:42 | "textarea" | fileImports | anser cash-dom |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:4:56:8 | "#id" | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:4:56:8 | "#id" | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:4:56:8 | "#id" | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:4:56:8 | "#id" | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:4:56:8 | "#id" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:4:56:8 | "#id" | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:4:56:8 | "#id" | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:4:56:8 | "#id" | fileImports | anser |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:4:56:8 | "#id" | fileImports | anser cash-dom |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:15:56:15 | 0 | CalleeFlexibleAccessPath | $().get |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:15:56:15 | 0 | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:15:56:15 | 0 | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:15:56:15 | 0 | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:15:56:15 | 0 | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:15:56:15 | 0 | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:15:56:15 | 0 | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:15:56:15 | 0 | fileImports | anser |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:15:56:15 | 0 | fileImports | anser cash-dom |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:30:56:51 | $("inpu ... 0).name | assignedToPropName | innerHTML |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:30:56:51 | $("inpu ... 0).name | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:30:56:51 | $("inpu ... 0).name | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:30:56:51 | $("inpu ... 0).name | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:30:56:51 | $("inpu ... 0).name | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:30:56:51 | $("inpu ... 0).name | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:30:56:51 | $("inpu ... 0).name | fileImports | anser |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:30:56:51 | $("inpu ... 0).name | fileImports | anser cash-dom |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:32:56:38 | "input" | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:32:56:38 | "input" | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:32:56:38 | "input" | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:32:56:38 | "input" | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:32:56:38 | "input" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:32:56:38 | "input" | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:32:56:38 | "input" | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:32:56:38 | "input" | fileImports | anser |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:32:56:38 | "input" | fileImports | anser cash-dom |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:45:56:45 | 0 | CalleeFlexibleAccessPath | $().get |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:45:56:45 | 0 | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:45:56:45 | 0 | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:45:56:45 | 0 | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:45:56:45 | 0 | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:45:56:45 | 0 | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:45:56:45 | 0 | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:45:56:45 | 0 | fileImports | anser |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:45:56:45 | 0 | fileImports | anser cash-dom |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:4:57:8 | "#id" | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:4:57:8 | "#id" | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:4:57:8 | "#id" | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:4:57:8 | "#id" | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:4:57:8 | "#id" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:4:57:8 | "#id" | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:4:57:8 | "#id" | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:4:57:8 | "#id" | fileImports | anser |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:4:57:8 | "#id" | fileImports | anser cash-dom |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:15:57:15 | 0 | CalleeFlexibleAccessPath | $().get |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:15:57:15 | 0 | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:15:57:15 | 0 | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:15:57:15 | 0 | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:15:57:15 | 0 | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:15:57:15 | 0 | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:15:57:15 | 0 | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:15:57:15 | 0 | fileImports | anser |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:15:57:15 | 0 | fileImports | anser cash-dom |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:30:57:67 | $("inpu ... "name") | assignedToPropName | innerHTML |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:30:57:67 | $("inpu ... "name") | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:30:57:67 | $("inpu ... "name") | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:30:57:67 | $("inpu ... "name") | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:30:57:67 | $("inpu ... "name") | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:30:57:67 | $("inpu ... "name") | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:30:57:67 | $("inpu ... "name") | fileImports | anser |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:30:57:67 | $("inpu ... "name") | fileImports | anser cash-dom |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:32:57:38 | "input" | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:32:57:38 | "input" | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:32:57:38 | "input" | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:32:57:38 | "input" | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:32:57:38 | "input" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:32:57:38 | "input" | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:32:57:38 | "input" | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:32:57:38 | "input" | fileImports | anser |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:32:57:38 | "input" | fileImports | anser cash-dom |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:45:57:45 | 0 | CalleeFlexibleAccessPath | $().get |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:45:57:45 | 0 | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:45:57:45 | 0 | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:45:57:45 | 0 | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:45:57:45 | 0 | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:45:57:45 | 0 | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:45:57:45 | 0 | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:45:57:45 | 0 | fileImports | anser |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:45:57:45 | 0 | fileImports | anser cash-dom |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:61:57:66 | "name" | CalleeFlexibleAccessPath | $().get().getAttribute |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:61:57:66 | "name" | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:61:57:66 | "name" | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:61:57:66 | "name" | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:61:57:66 | "name" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:61:57:66 | "name" | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:61:57:66 | "name" | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:61:57:66 | "name" | fileImports | anser |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:61:57:66 | "name" | fileImports | anser cash-dom |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:4:59:8 | "#id" | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:4:59:8 | "#id" | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:4:59:8 | "#id" | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:4:59:8 | "#id" | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:4:59:8 | "#id" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:4:59:8 | "#id" | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:4:59:8 | "#id" | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:4:59:8 | "#id" | fileImports | anser |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:4:59:8 | "#id" | fileImports | anser cash-dom |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:15:59:15 | 0 | CalleeFlexibleAccessPath | $().get |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:15:59:15 | 0 | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:15:59:15 | 0 | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:15:59:15 | 0 | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:15:59:15 | 0 | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:15:59:15 | 0 | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:15:59:15 | 0 | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:15:59:15 | 0 | fileImports | anser |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:15:59:15 | 0 | fileImports | anser cash-dom |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:30:59:58 | $("inpu ... e("id") | assignedToPropName | innerHTML |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:30:59:58 | $("inpu ... e("id") | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:30:59:58 | $("inpu ... e("id") | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:30:59:58 | $("inpu ... e("id") | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:30:59:58 | $("inpu ... e("id") | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:30:59:58 | $("inpu ... e("id") | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:30:59:58 | $("inpu ... e("id") | fileImports | anser |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:30:59:58 | $("inpu ... e("id") | fileImports | anser cash-dom |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:32:59:38 | "input" | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:32:59:38 | "input" | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:32:59:38 | "input" | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:32:59:38 | "input" | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:32:59:38 | "input" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:32:59:38 | "input" | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:32:59:38 | "input" | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:32:59:38 | "input" | fileImports | anser |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:32:59:38 | "input" | fileImports | anser cash-dom |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:54:59:57 | "id" | CalleeFlexibleAccessPath | $().getAttribute |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:54:59:57 | "id" | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:54:59:57 | "id" | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:54:59:57 | "id" | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:54:59:57 | "id" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:54:59:57 | "id" | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:54:59:57 | "id" | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:54:59:57 | "id" | fileImports | anser |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:54:59:57 | "id" | fileImports | anser cash-dom |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:4:61:8 | "#id" | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:4:61:8 | "#id" | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:4:61:8 | "#id" | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:4:61:8 | "#id" | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:4:61:8 | "#id" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:4:61:8 | "#id" | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:4:61:8 | "#id" | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:4:61:8 | "#id" | fileImports | anser |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:4:61:8 | "#id" | fileImports | anser cash-dom |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:15:61:15 | 0 | CalleeFlexibleAccessPath | $().get |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:15:61:15 | 0 | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:15:61:15 | 0 | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:15:61:15 | 0 | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:15:61:15 | 0 | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:15:61:15 | 0 | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:15:61:15 | 0 | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:15:61:15 | 0 | fileImports | anser |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:15:61:15 | 0 | fileImports | anser cash-dom |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:30:61:69 | $(docum ... value") | assignedToPropName | innerHTML |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:30:61:69 | $(docum ... value") | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:30:61:69 | $(docum ... value") | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:30:61:69 | $(docum ... value") | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:30:61:69 | $(docum ... value") | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:30:61:69 | $(docum ... value") | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:30:61:69 | $(docum ... value") | fileImports | anser |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:30:61:69 | $(docum ... value") | fileImports | anser cash-dom |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:32:61:39 | document | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:32:61:39 | document | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:32:61:39 | document | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:32:61:39 | document | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:32:61:39 | document | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:32:61:39 | document | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:32:61:39 | document | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:32:61:39 | document | fileImports | anser |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:32:61:39 | document | fileImports | anser cash-dom |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:47:61:54 | "option" | CalleeFlexibleAccessPath | $().find |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:47:61:54 | "option" | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:47:61:54 | "option" | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:47:61:54 | "option" | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:47:61:54 | "option" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:47:61:54 | "option" | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:47:61:54 | "option" | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:47:61:54 | "option" | fileImports | anser |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:47:61:54 | "option" | fileImports | anser cash-dom |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:62:61:68 | "value" | CalleeFlexibleAccessPath | $().find().attr |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:62:61:68 | "value" | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:62:61:68 | "value" | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:62:61:68 | "value" | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:62:61:68 | "value" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:62:61:68 | "value" | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:62:61:68 | "value" | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:62:61:68 | "value" | fileImports | anser |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:62:61:68 | "value" | fileImports | anser cash-dom |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:63:20:63:29 | "textarea" | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:63:20:63:29 | "textarea" | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:63:20:63:29 | "textarea" | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:63:20:63:29 | "textarea" | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:63:20:63:29 | "textarea" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:63:20:63:29 | "textarea" | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:63:20:63:29 | "textarea" | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:63:20:63:29 | "textarea" | fileImports | anser |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:63:20:63:29 | "textarea" | fileImports | anser cash-dom |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:64:4:64:8 | "#id" | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:64:4:64:8 | "#id" | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:64:4:64:8 | "#id" | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:64:4:64:8 | "#id" | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:64:4:64:8 | "#id" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:64:4:64:8 | "#id" | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:64:4:64:8 | "#id" | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:64:4:64:8 | "#id" | fileImports | anser |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:64:4:64:8 | "#id" | fileImports | anser cash-dom |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:64:15:64:15 | 0 | CalleeFlexibleAccessPath | $().get |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:64:15:64:15 | 0 | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:64:15:64:15 | 0 | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:64:15:64:15 | 0 | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:64:15:64:15 | 0 | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:64:15:64:15 | 0 | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:64:15:64:15 | 0 | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:64:15:64:15 | 0 | fileImports | anser |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:64:15:64:15 | 0 | fileImports | anser cash-dom |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:64:30:64:40 | valMethod() | assignedToPropName | innerHTML |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:64:30:64:40 | valMethod() | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:64:30:64:40 | valMethod() | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:64:30:64:40 | valMethod() | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:64:30:64:40 | valMethod() | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:64:30:64:40 | valMethod() | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:64:30:64:40 | valMethod() | fileImports | anser |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:64:30:64:40 | valMethod() | fileImports | anser cash-dom |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:66:18:66:25 | document | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:66:18:66:25 | document | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:66:18:66:25 | document | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:66:18:66:25 | document | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:66:18:66:25 | document | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:66:18:66:25 | document | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:66:18:66:25 | document | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:66:18:66:25 | document | fileImports | anser |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:66:18:66:25 | document | fileImports | anser cash-dom |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:66:33:66:40 | "option" | CalleeFlexibleAccessPath | $().find |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:66:33:66:40 | "option" | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:66:33:66:40 | "option" | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:66:33:66:40 | "option" | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:66:33:66:40 | "option" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:66:33:66:40 | "option" | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:66:33:66:40 | "option" | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:66:33:66:40 | "option" | fileImports | anser |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:66:33:66:40 | "option" | fileImports | anser cash-dom |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:66:48:66:54 | "value" | CalleeFlexibleAccessPath | $().find().attr |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:66:48:66:54 | "value" | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:66:48:66:54 | "value" | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:66:48:66:54 | "value" | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:66:48:66:54 | "value" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:66:48:66:54 | "value" | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:66:48:66:54 | "value" | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:66:48:66:54 | "value" | fileImports | anser |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:66:48:66:54 | "value" | fileImports | anser cash-dom |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:68:5:68:9 | "#id" | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:68:5:68:9 | "#id" | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:68:5:68:9 | "#id" | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:68:5:68:9 | "#id" | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:68:5:68:9 | "#id" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:68:5:68:9 | "#id" | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:68:5:68:9 | "#id" | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:68:5:68:9 | "#id" | fileImports | anser |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:68:5:68:9 | "#id" | fileImports | anser cash-dom |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:68:16:68:16 | 0 | CalleeFlexibleAccessPath | $().get |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:68:16:68:16 | 0 | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:68:16:68:16 | 0 | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:68:16:68:16 | 0 | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:68:16:68:16 | 0 | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:68:16:68:16 | 0 | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:68:16:68:16 | 0 | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:68:16:68:16 | 0 | fileImports | anser |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:68:16:68:16 | 0 | fileImports | anser cash-dom |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:68:31:68:37 | myValue | assignedToPropName | innerHTML |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:68:31:68:37 | myValue | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:68:31:68:37 | myValue | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:68:31:68:37 | myValue | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:68:31:68:37 | myValue | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:68:31:68:37 | myValue | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:68:31:68:37 | myValue | fileImports | anser |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:68:31:68:37 | myValue | fileImports | anser cash-dom |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:71:11:71:32 | $("inpu ... 0).name | CalleeFlexibleAccessPath | $.jGrowl |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:71:11:71:32 | $("inpu ... 0).name | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:71:11:71:32 | $("inpu ... 0).name | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:71:11:71:32 | $("inpu ... 0).name | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:71:11:71:32 | $("inpu ... 0).name | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:71:11:71:32 | $("inpu ... 0).name | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:71:11:71:32 | $("inpu ... 0).name | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:71:11:71:32 | $("inpu ... 0).name | fileImports | anser |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:71:11:71:32 | $("inpu ... 0).name | fileImports | anser cash-dom |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:71:11:71:32 | $("inpu ... 0).name | receiverName | $ |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:71:13:71:19 | "input" | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:71:13:71:19 | "input" | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:71:13:71:19 | "input" | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:71:13:71:19 | "input" | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:71:13:71:19 | "input" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:71:13:71:19 | "input" | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:71:13:71:19 | "input" | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:71:13:71:19 | "input" | fileImports | anser |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:71:13:71:19 | "input" | fileImports | anser cash-dom |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:71:26:71:26 | 0 | CalleeFlexibleAccessPath | $().get |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:71:26:71:26 | 0 | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:71:26:71:26 | 0 | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:71:26:71:26 | 0 | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:71:26:71:26 | 0 | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:71:26:71:26 | 0 | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:71:26:71:26 | 0 | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:71:26:71:26 | 0 | fileImports | anser |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:71:26:71:26 | 0 | fileImports | anser cash-dom |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:73:22:73:28 | "input" | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:73:22:73:28 | "input" | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:73:22:73:28 | "input" | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:73:22:73:28 | "input" | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:73:22:73:28 | "input" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:73:22:73:28 | "input" | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:73:22:73:28 | "input" | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:73:22:73:28 | "input" | fileImports | anser |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:73:22:73:28 | "input" | fileImports | anser cash-dom |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:73:35:73:35 | 0 | CalleeFlexibleAccessPath | $().get |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:73:35:73:35 | 0 | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:73:35:73:35 | 0 | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:73:35:73:35 | 0 | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:73:35:73:35 | 0 | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:73:35:73:35 | 0 | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:73:35:73:35 | 0 | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:73:35:73:35 | 0 | fileImports | anser |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:73:35:73:35 | 0 | fileImports | anser cash-dom |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:75:22:75:31 | "textarea" | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:75:22:75:31 | "textarea" | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:75:22:75:31 | "textarea" | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:75:22:75:31 | "textarea" | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:75:22:75:31 | "textarea" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:75:22:75:31 | "textarea" | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:75:22:75:31 | "textarea" | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:75:22:75:31 | "textarea" | fileImports | anser |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:75:22:75:31 | "textarea" | fileImports | anser cash-dom |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:77:4:77:11 | selector | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:77:4:77:11 | selector | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:77:4:77:11 | selector | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:77:4:77:11 | selector | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:77:4:77:11 | selector | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:77:4:77:11 | selector | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:77:4:77:11 | selector | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:77:4:77:11 | selector | fileImports | anser |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:77:4:77:11 | selector | fileImports | anser cash-dom |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:79:4:79:34 | documen ... t.value | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:79:4:79:34 | documen ... t.value | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:79:4:79:34 | documen ... t.value | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:79:4:79:34 | documen ... t.value | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:79:4:79:34 | documen ... t.value | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:79:4:79:34 | documen ... t.value | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:79:4:79:34 | documen ... t.value | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:79:4:79:34 | documen ... t.value | fileImports | anser |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:79:4:79:34 | documen ... t.value | fileImports | anser cash-dom |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:81:4:81:8 | "#id" | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:81:4:81:8 | "#id" | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:81:4:81:8 | "#id" | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:81:4:81:8 | "#id" | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:81:4:81:8 | "#id" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:81:4:81:8 | "#id" | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:81:4:81:8 | "#id" | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:81:4:81:8 | "#id" | fileImports | anser |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:81:4:81:8 | "#id" | fileImports | anser cash-dom |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:81:17:81:43 | $('#foo ... rText') | CalleeFlexibleAccessPath | $().html |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:81:17:81:43 | $('#foo ... rText') | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:81:17:81:43 | $('#foo ... rText') | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:81:17:81:43 | $('#foo ... rText') | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:81:17:81:43 | $('#foo ... rText') | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:81:17:81:43 | $('#foo ... rText') | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:81:17:81:43 | $('#foo ... rText') | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:81:17:81:43 | $('#foo ... rText') | fileImports | anser |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:81:17:81:43 | $('#foo ... rText') | fileImports | anser cash-dom |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:81:19:81:24 | '#foo' | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:81:19:81:24 | '#foo' | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:81:19:81:24 | '#foo' | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:81:19:81:24 | '#foo' | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:81:19:81:24 | '#foo' | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:81:19:81:24 | '#foo' | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:81:19:81:24 | '#foo' | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:81:19:81:24 | '#foo' | fileImports | anser |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:81:19:81:24 | '#foo' | fileImports | anser cash-dom |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:81:32:81:42 | 'innerText' | CalleeFlexibleAccessPath | $().prop |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:81:32:81:42 | 'innerText' | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:81:32:81:42 | 'innerText' | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:81:32:81:42 | 'innerText' | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:81:32:81:42 | 'innerText' | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:81:32:81:42 | 'innerText' | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:81:32:81:42 | 'innerText' | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:81:32:81:42 | 'innerText' | fileImports | anser |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:81:32:81:42 | 'innerText' | fileImports | anser cash-dom |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:83:24:83:30 | "anser" | CalleeFlexibleAccessPath | require |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:83:24:83:30 | "anser" | InputArgumentIndex | 0 |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:83:24:83:30 | "anser" | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:83:24:83:30 | "anser" | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:83:24:83:30 | "anser" | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:83:24:83:30 | "anser" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:83:24:83:30 | "anser" | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:83:24:83:30 | "anser" | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:83:24:83:30 | "anser" | fileImports | anser |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:83:24:83:30 | "anser" | fileImports | anser cash-dom |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:84:17:84:22 | "text" | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:84:17:84:22 | "text" | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:84:17:84:22 | "text" | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:84:17:84:22 | "text" | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:84:17:84:22 | "text" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:84:17:84:22 | "text" | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:84:17:84:22 | "text" | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:84:17:84:22 | "text" | fileImports | anser |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:84:17:84:22 | "text" | fileImports | anser cash-dom |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:86:4:86:8 | "#id" | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:86:4:86:8 | "#id" | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:86:4:86:8 | "#id" | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:86:4:86:8 | "#id" | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:86:4:86:8 | "#id" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:86:4:86:8 | "#id" | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:86:4:86:8 | "#id" | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:86:4:86:8 | "#id" | fileImports | anser |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:86:4:86:8 | "#id" | fileImports | anser cash-dom |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:86:16:86:37 | anser.a ... l(text) | CalleeFlexibleAccessPath | $().html |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:86:16:86:37 | anser.a ... l(text) | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:86:16:86:37 | anser.a ... l(text) | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:86:16:86:37 | anser.a ... l(text) | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:86:16:86:37 | anser.a ... l(text) | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:86:16:86:37 | anser.a ... l(text) | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:86:16:86:37 | anser.a ... l(text) | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:86:16:86:37 | anser.a ... l(text) | fileImports | anser |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:86:16:86:37 | anser.a ... l(text) | fileImports | anser cash-dom |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:86:33:86:36 | text | CalleeFlexibleAccessPath | anser.ansiToHtml |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:86:33:86:36 | text | InputArgumentIndex | 0 |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:86:33:86:36 | text | calleeImports | anser |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:86:33:86:36 | text | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:86:33:86:36 | text | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:86:33:86:36 | text | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:86:33:86:36 | text | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:86:33:86:36 | text | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:86:33:86:36 | text | fileImports | anser |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:86:33:86:36 | text | fileImports | anser cash-dom |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:86:33:86:36 | text | receiverName | anser |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:87:4:87:8 | "#id" | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:87:4:87:8 | "#id" | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:87:4:87:8 | "#id" | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:87:4:87:8 | "#id" | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:87:4:87:8 | "#id" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:87:4:87:8 | "#id" | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:87:4:87:8 | "#id" | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:87:4:87:8 | "#id" | fileImports | anser |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:87:4:87:8 | "#id" | fileImports | anser cash-dom |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:87:16:87:40 | new ans ... s(text) | CalleeFlexibleAccessPath | $().html |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:87:16:87:40 | new ans ... s(text) | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:87:16:87:40 | new ans ... s(text) | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:87:16:87:40 | new ans ... s(text) | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:87:16:87:40 | new ans ... s(text) | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:87:16:87:40 | new ans ... s(text) | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:87:16:87:40 | new ans ... s(text) | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:87:16:87:40 | new ans ... s(text) | fileImports | anser |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:87:16:87:40 | new ans ... s(text) | fileImports | anser cash-dom |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:87:36:87:39 | text | CalleeFlexibleAccessPath | anser().process |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:87:36:87:39 | text | InputArgumentIndex | 0 |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:87:36:87:39 | text | calleeImports | anser |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:87:36:87:39 | text | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:87:36:87:39 | text | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:87:36:87:39 | text | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:87:36:87:39 | text | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:87:36:87:39 | text | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:87:36:87:39 | text | fileImports | anser |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:87:36:87:39 | text | fileImports | anser cash-dom |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:89:4:89:15 | "section h1" | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:89:4:89:15 | "section h1" | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:89:4:89:15 | "section h1" | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:89:4:89:15 | "section h1" | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:89:4:89:15 | "section h1" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:89:4:89:15 | "section h1" | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:89:4:89:15 | "section h1" | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:89:4:89:15 | "section h1" | fileImports | anser |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:89:4:89:15 | "section h1" | fileImports | anser cash-dom |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:89:23:91:2 | functio ... / OK\\n\\t} | CalleeFlexibleAccessPath | $().each |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:89:23:91:2 | functio ... / OK\\n\\t} | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:89:23:91:2 | functio ... / OK\\n\\t} | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:89:23:91:2 | functio ... / OK\\n\\t} | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:89:23:91:2 | functio ... / OK\\n\\t} | contextSurroundingFunctionParameters | ()\n() |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:89:23:91:2 | functio ... / OK\\n\\t} | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:89:23:91:2 | functio ... / OK\\n\\t} | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:89:23:91:2 | functio ... / OK\\n\\t} | fileImports | anser |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:89:23:91:2 | functio ... / OK\\n\\t} | fileImports | anser cash-dom |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:5:90:12 | "nav ul" | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:5:90:12 | "nav ul" | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:5:90:12 | "nav ul" | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:5:90:12 | "nav ul" | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:5:90:12 | "nav ul" | contextSurroundingFunctionParameters | ()\n() |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:5:90:12 | "nav ul" | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:5:90:12 | "nav ul" | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:5:90:12 | "nav ul" | fileImports | anser |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:22:90:33 | "<a href='#" | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:5:90:12 | "nav ul" | fileImports | anser cash-dom |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:22:90:33 | "<a href='#" | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:22:90:33 | "<a href='#" | contextSurroundingFunctionParameters | ()\n() |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:22:90:33 | "<a href='#" | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:22:90:33 | "<a href='#" | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:22:90:33 | "<a href='#" | fileImports | anser |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:22:90:33 | "<a href='#" | fileImports | anser cash-dom |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:22:90:33 | "<a href='#" | stringConcatenatedWith |  -endpoint- $().text().toLowerCase().replace().replace() + ''>Section</a>' |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:22:90:124 | "<a hre ... on</a>" | CalleeFlexibleAccessPath | $().append |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:22:90:124 | "<a hre ... on</a>" | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:22:90:124 | "<a hre ... on</a>" | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:22:90:124 | "<a hre ... on</a>" | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:22:90:124 | "<a hre ... on</a>" | contextSurroundingFunctionParameters | ()\n() |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:22:90:124 | "<a hre ... on</a>" | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:22:90:124 | "<a hre ... on</a>" | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:22:90:124 | "<a hre ... on</a>" | fileImports | anser |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:37:90:106 | $(this) ... +/g,'') | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:22:90:124 | "<a hre ... on</a>" | fileImports | anser cash-dom |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:37:90:106 | $(this) ... +/g,'') | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:37:90:106 | $(this) ... +/g,'') | contextSurroundingFunctionParameters | ()\n() |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:37:90:106 | $(this) ... +/g,'') | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:37:90:106 | $(this) ... +/g,'') | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:37:90:106 | $(this) ... +/g,'') | fileImports | anser |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:37:90:106 | $(this) ... +/g,'') | fileImports | anser cash-dom |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:37:90:106 | $(this) ... +/g,'') | stringConcatenatedWith | '<a href='#' -endpoint- ''>Section</a>' |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:39:90:42 | this | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:39:90:42 | this | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:39:90:42 | this | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:39:90:42 | this | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:39:90:42 | this | contextSurroundingFunctionParameters | ()\n() |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:39:90:42 | this | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:39:90:42 | this | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:39:90:42 | this | fileImports | anser |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:39:90:42 | this | fileImports | anser cash-dom |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:74:90:77 | / /g | CalleeFlexibleAccessPath | $().text().toLowerCase().replace |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:74:90:77 | / /g | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:74:90:77 | / /g | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:74:90:77 | / /g | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:74:90:77 | / /g | contextSurroundingFunctionParameters | ()\n() |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:74:90:77 | / /g | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:74:90:77 | / /g | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:74:90:77 | / /g | fileImports | anser |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:74:90:77 | / /g | fileImports | anser cash-dom |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:80:90:82 | '-' | CalleeFlexibleAccessPath | $().text().toLowerCase().replace |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:80:90:82 | '-' | InputArgumentIndex | 1 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:80:90:82 | '-' | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:80:90:82 | '-' | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:80:90:82 | '-' | contextSurroundingFunctionParameters | ()\n() |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:80:90:82 | '-' | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:80:90:82 | '-' | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:80:90:82 | '-' | fileImports | anser |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:80:90:82 | '-' | fileImports | anser cash-dom |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:93:90:102 | /[^\\w-]+/g | CalleeFlexibleAccessPath | $().text().toLowerCase().replace().replace |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:93:90:102 | /[^\\w-]+/g | InputArgumentIndex | 0 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:93:90:102 | /[^\\w-]+/g | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:93:90:102 | /[^\\w-]+/g | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:93:90:102 | /[^\\w-]+/g | contextSurroundingFunctionParameters | ()\n() |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:93:90:102 | /[^\\w-]+/g | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:93:90:102 | /[^\\w-]+/g | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:93:90:102 | /[^\\w-]+/g | fileImports | anser |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:93:90:102 | /[^\\w-]+/g | fileImports | anser cash-dom |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:104:90:105 | '' | CalleeFlexibleAccessPath | $().text().toLowerCase().replace().replace |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:104:90:105 | '' | InputArgumentIndex | 1 |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:104:90:105 | '' | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:104:90:105 | '' | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:104:90:105 | '' | contextSurroundingFunctionParameters | ()\n() |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:104:90:105 | '' | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:104:90:105 | '' | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:104:90:105 | '' | fileImports | anser |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:110:90:124 | "'>Section</a>" | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:104:90:105 | '' | fileImports | anser cash-dom |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:110:90:124 | "'>Section</a>" | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:110:90:124 | "'>Section</a>" | contextSurroundingFunctionParameters | ()\n() |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:110:90:124 | "'>Section</a>" | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:110:90:124 | "'>Section</a>" | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:110:90:124 | "'>Section</a>" | fileImports | anser |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:110:90:124 | "'>Section</a>" | fileImports | anser cash-dom |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:110:90:124 | "'>Section</a>" | stringConcatenatedWith | '<a href='#' + $().text().toLowerCase().replace().replace() -endpoint-  |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:93:4:93:8 | "#id" | CalleeFlexibleAccessPath | $ |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:93:4:93:8 | "#id" | InputArgumentIndex | 0 |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:93:4:93:8 | "#id" | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:93:4:93:8 | "#id" | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:93:4:93:8 | "#id" | enclosingFunctionName |  |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:93:4:93:8 | "#id" | fileImports | anser cash-dom |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:93:16:93:46 | $("#foo ... ].value | CalleeFlexibleAccessPath | $().html |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:93:16:93:46 | $("#foo ... ].value | InputArgumentIndex | 0 |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:93:16:93:46 | $("#foo ... ].value | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:93:16:93:46 | $("#foo ... ].value | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:93:16:93:46 | $("#foo ... ].value | enclosingFunctionName |  |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:93:16:93:46 | $("#foo ... ].value | fileImports | anser cash-dom |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:93:18:93:23 | "#foo" | CalleeFlexibleAccessPath | $ |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:93:18:93:23 | "#foo" | InputArgumentIndex | 0 |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:93:18:93:23 | "#foo" | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:93:18:93:23 | "#foo" | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:93:18:93:23 | "#foo" | enclosingFunctionName |  |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:93:18:93:23 | "#foo" | fileImports | anser cash-dom |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:93:31:93:36 | ".bla" | CalleeFlexibleAccessPath | $().find |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:93:31:93:36 | ".bla" | InputArgumentIndex | 0 |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:93:31:93:36 | ".bla" | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:93:31:93:36 | ".bla" | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:93:31:93:36 | ".bla" | enclosingFunctionName |  |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:93:31:93:36 | ".bla" | fileImports | anser cash-dom |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:96:5:96:9 | "#id" | CalleeFlexibleAccessPath | $ |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:96:5:96:9 | "#id" | InputArgumentIndex | 0 |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:96:5:96:9 | "#id" | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:96:5:96:9 | "#id" | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:96:5:96:9 | "#id" | enclosingFunctionName |  |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:96:5:96:9 | "#id" | fileImports | anser cash-dom |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:96:17:96:47 | $("#foo ... ].value | CalleeFlexibleAccessPath | $().html |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:96:17:96:47 | $("#foo ... ].value | InputArgumentIndex | 0 |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:96:17:96:47 | $("#foo ... ].value | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:96:17:96:47 | $("#foo ... ].value | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:96:17:96:47 | $("#foo ... ].value | enclosingFunctionName |  |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:96:17:96:47 | $("#foo ... ].value | fileImports | anser cash-dom |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:96:19:96:24 | "#foo" | CalleeFlexibleAccessPath | $ |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:96:19:96:24 | "#foo" | InputArgumentIndex | 0 |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:96:19:96:24 | "#foo" | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:96:19:96:24 | "#foo" | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:96:19:96:24 | "#foo" | enclosingFunctionName |  |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:96:19:96:24 | "#foo" | fileImports | anser cash-dom |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:96:32:96:37 | ".bla" | CalleeFlexibleAccessPath | $().find |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:96:32:96:37 | ".bla" | InputArgumentIndex | 0 |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:96:32:96:37 | ".bla" | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:96:32:96:37 | ".bla" | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:96:32:96:37 | ".bla" | enclosingFunctionName |  |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:96:32:96:37 | ".bla" | fileImports | anser cash-dom |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:102:15:102:19 | "#id" | CalleeFlexibleAccessPath | $ |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:102:15:102:19 | "#id" | InputArgumentIndex | 0 |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:102:15:102:19 | "#id" | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:102:15:102:19 | "#id" | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:102:15:102:19 | "#id" | enclosingFunctionBody | el $ #id get 0 |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:102:15:102:19 | "#id" | enclosingFunctionName | constructor |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:102:15:102:19 | "#id" | fileImports | anser cash-dom |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:102:26:102:26 | 0 | CalleeFlexibleAccessPath | $().get |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:102:26:102:26 | 0 | InputArgumentIndex | 0 |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:102:26:102:26 | 0 | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:102:26:102:26 | 0 | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:102:26:102:26 | 0 | enclosingFunctionBody | el $ #id get 0 |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:102:26:102:26 | 0 | enclosingFunctionName | constructor |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:102:26:102:26 | 0 | fileImports | anser cash-dom |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:109:5:109:9 | "#id" | CalleeFlexibleAccessPath | $ |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:109:5:109:9 | "#id" | InputArgumentIndex | 0 |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:109:5:109:9 | "#id" | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:109:5:109:9 | "#id" | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:109:5:109:9 | "#id" | enclosingFunctionBody | $ #id get 0 innerHTML <a src=" el src ">foo</a> |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:109:5:109:9 | "#id" | enclosingFunctionName | constructor |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:109:5:109:9 | "#id" | fileImports | anser cash-dom |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:109:16:109:16 | 0 | CalleeFlexibleAccessPath | $().get |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:109:16:109:16 | 0 | InputArgumentIndex | 0 |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:109:16:109:16 | 0 | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:109:16:109:16 | 0 | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:109:16:109:16 | 0 | enclosingFunctionBody | $ #id get 0 innerHTML <a src=" el src ">foo</a> |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:109:16:109:16 | 0 | enclosingFunctionName | constructor |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:109:16:109:16 | 0 | fileImports | anser cash-dom |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:109:31:109:41 | "<a src=\\"" | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:109:31:109:41 | "<a src=\\"" | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:109:31:109:41 | "<a src=\\"" | enclosingFunctionBody | $ #id get 0 innerHTML <a src=" el src ">foo</a> |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:109:31:109:41 | "<a src=\\"" | enclosingFunctionName | constructor |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:109:31:109:41 | "<a src=\\"" | fileImports | anser cash-dom |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:109:31:109:41 | "<a src=\\"" | stringConcatenatedWith |  -endpoint- this.el.src + '">foo</a>' |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:109:31:109:70 | "<a src ... oo</a>" | assignedToPropName | innerHTML |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:109:31:109:70 | "<a src ... oo</a>" | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:109:31:109:70 | "<a src ... oo</a>" | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:109:31:109:70 | "<a src ... oo</a>" | enclosingFunctionBody | $ #id get 0 innerHTML <a src=" el src ">foo</a> |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:109:31:109:70 | "<a src ... oo</a>" | enclosingFunctionName | constructor |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:109:31:109:70 | "<a src ... oo</a>" | fileImports | anser cash-dom |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:109:45:109:55 | this.el.src | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:109:45:109:55 | this.el.src | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:109:45:109:55 | this.el.src | enclosingFunctionBody | $ #id get 0 innerHTML <a src=" el src ">foo</a> |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:109:45:109:55 | this.el.src | enclosingFunctionName | constructor |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:109:45:109:55 | this.el.src | fileImports | anser cash-dom |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:109:45:109:55 | this.el.src | stringConcatenatedWith | '<a src="' -endpoint- '">foo</a>' |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:109:59:109:70 | "\\">foo</a>" | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:109:59:109:70 | "\\">foo</a>" | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:109:59:109:70 | "\\">foo</a>" | enclosingFunctionBody | $ #id get 0 innerHTML <a src=" el src ">foo</a> |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:109:59:109:70 | "\\">foo</a>" | enclosingFunctionName | constructor |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:109:59:109:70 | "\\">foo</a>" | fileImports | anser cash-dom |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:109:59:109:70 | "\\">foo</a>" | stringConcatenatedWith | '<a src="' + this.el.src -endpoint-  |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:114:41:114:47 | "#link" | CalleeFlexibleAccessPath | document.getElementById |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:114:41:114:47 | "#link" | InputArgumentIndex | 0 |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:114:41:114:47 | "#link" | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:114:41:114:47 | "#link" | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:114:41:114:47 | "#link" | enclosingFunctionBody | src document getElementById #link src $ #id html src $ #id attr src src $ 0 input.foo 0 onchange ev $ #id html ev 0 target files 0 name $ img#id attr src URL createObjectURL ev 0 target files 0 |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:114:41:114:47 | "#link" | enclosingFunctionName |  |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:114:41:114:47 | "#link" | fileImports | anser cash-dom |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:114:41:114:47 | "#link" | receiverName | document |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:115:4:115:8 | "#id" | CalleeFlexibleAccessPath | $ |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:115:4:115:8 | "#id" | InputArgumentIndex | 0 |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:115:4:115:8 | "#id" | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:115:4:115:8 | "#id" | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:115:4:115:8 | "#id" | enclosingFunctionBody | src document getElementById #link src $ #id html src $ #id attr src src $ 0 input.foo 0 onchange ev $ #id html ev 0 target files 0 name $ img#id attr src URL createObjectURL ev 0 target files 0 |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:115:4:115:8 | "#id" | enclosingFunctionName |  |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:115:4:115:8 | "#id" | fileImports | anser cash-dom |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:115:16:115:18 | src | CalleeFlexibleAccessPath | $().html |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:115:16:115:18 | src | InputArgumentIndex | 0 |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:115:16:115:18 | src | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:115:16:115:18 | src | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:115:16:115:18 | src | enclosingFunctionBody | src document getElementById #link src $ #id html src $ #id attr src src $ 0 input.foo 0 onchange ev $ #id html ev 0 target files 0 name $ img#id attr src URL createObjectURL ev 0 target files 0 |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:115:16:115:18 | src | enclosingFunctionName |  |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:115:16:115:18 | src | fileImports | anser cash-dom |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:117:7:117:11 | "#id" | CalleeFlexibleAccessPath | $ |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:117:7:117:11 | "#id" | InputArgumentIndex | 0 |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:117:7:117:11 | "#id" | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:117:7:117:11 | "#id" | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:117:7:117:11 | "#id" | enclosingFunctionBody | src document getElementById #link src $ #id html src $ #id attr src src $ 0 input.foo 0 onchange ev $ #id html ev 0 target files 0 name $ img#id attr src URL createObjectURL ev 0 target files 0 |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:117:7:117:11 | "#id" | enclosingFunctionName |  |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:117:7:117:11 | "#id" | fileImports | anser cash-dom |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:117:19:117:23 | "src" | CalleeFlexibleAccessPath | $().attr |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:117:19:117:23 | "src" | InputArgumentIndex | 0 |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:117:19:117:23 | "src" | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:117:19:117:23 | "src" | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:117:19:117:23 | "src" | enclosingFunctionBody | src document getElementById #link src $ #id html src $ #id attr src src $ 0 input.foo 0 onchange ev $ #id html ev 0 target files 0 name $ img#id attr src URL createObjectURL ev 0 target files 0 |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:117:19:117:23 | "src" | enclosingFunctionName |  |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:117:19:117:23 | "src" | fileImports | anser cash-dom |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:117:26:117:28 | src | CalleeFlexibleAccessPath | $().attr |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:117:26:117:28 | src | InputArgumentIndex | 1 |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:117:26:117:28 | src | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:117:26:117:28 | src | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:117:26:117:28 | src | enclosingFunctionBody | src document getElementById #link src $ #id html src $ #id attr src src $ 0 input.foo 0 onchange ev $ #id html ev 0 target files 0 name $ img#id attr src URL createObjectURL ev 0 target files 0 |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:117:26:117:28 | src | enclosingFunctionName |  |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:117:26:117:28 | src | fileImports | anser cash-dom |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:119:7:119:17 | "input.foo" | CalleeFlexibleAccessPath | $ |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:119:7:119:17 | "input.foo" | InputArgumentIndex | 0 |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:119:7:119:17 | "input.foo" | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:119:7:119:17 | "input.foo" | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:119:7:119:17 | "input.foo" | enclosingFunctionBody | src document getElementById #link src $ #id html src $ #id attr src src $ 0 input.foo 0 onchange ev $ #id html ev 0 target files 0 name $ img#id attr src URL createObjectURL ev 0 target files 0 |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:119:7:119:17 | "input.foo" | enclosingFunctionName |  |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:119:7:119:17 | "input.foo" | fileImports | anser cash-dom |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:120:11:120:15 | "#id" | CalleeFlexibleAccessPath | $ |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:120:11:120:15 | "#id" | InputArgumentIndex | 0 |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:120:11:120:15 | "#id" | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:120:11:120:15 | "#id" | contextSurroundingFunctionParameters | ()\n(ev) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:120:11:120:15 | "#id" | enclosingFunctionBody | src document getElementById #link src $ #id html src $ #id attr src src $ 0 input.foo 0 onchange ev $ #id html ev 0 target files 0 name $ img#id attr src URL createObjectURL ev 0 target files 0 |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:120:11:120:15 | "#id" | enclosingFunctionName |  |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:120:11:120:15 | "#id" | fileImports | anser cash-dom |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:120:23:120:45 | ev.targ ... 0].name | CalleeFlexibleAccessPath | $().html |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:120:23:120:45 | ev.targ ... 0].name | InputArgumentIndex | 0 |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:120:23:120:45 | ev.targ ... 0].name | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:120:23:120:45 | ev.targ ... 0].name | contextSurroundingFunctionParameters | ()\n(ev) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:120:23:120:45 | ev.targ ... 0].name | enclosingFunctionBody | src document getElementById #link src $ #id html src $ #id attr src src $ 0 input.foo 0 onchange ev $ #id html ev 0 target files 0 name $ img#id attr src URL createObjectURL ev 0 target files 0 |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:120:23:120:45 | ev.targ ... 0].name | enclosingFunctionName |  |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:120:23:120:45 | ev.targ ... 0].name | fileImports | anser cash-dom |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:122:11:122:18 | "img#id" | CalleeFlexibleAccessPath | $ |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:122:11:122:18 | "img#id" | InputArgumentIndex | 0 |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:122:11:122:18 | "img#id" | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:122:11:122:18 | "img#id" | contextSurroundingFunctionParameters | ()\n(ev) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:122:11:122:18 | "img#id" | enclosingFunctionBody | src document getElementById #link src $ #id html src $ #id attr src src $ 0 input.foo 0 onchange ev $ #id html ev 0 target files 0 name $ img#id attr src URL createObjectURL ev 0 target files 0 |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:122:11:122:18 | "img#id" | enclosingFunctionName |  |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:122:11:122:18 | "img#id" | fileImports | anser cash-dom |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:122:26:122:30 | "src" | CalleeFlexibleAccessPath | $().attr |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:122:26:122:30 | "src" | InputArgumentIndex | 0 |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:122:26:122:30 | "src" | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:122:26:122:30 | "src" | contextSurroundingFunctionParameters | ()\n(ev) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:122:26:122:30 | "src" | enclosingFunctionBody | src document getElementById #link src $ #id html src $ #id attr src src $ 0 input.foo 0 onchange ev $ #id html ev 0 target files 0 name $ img#id attr src URL createObjectURL ev 0 target files 0 |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:122:26:122:30 | "src" | enclosingFunctionName |  |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:122:26:122:30 | "src" | fileImports | anser cash-dom |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:122:33:122:71 | URL.cre ... les[0]) | CalleeFlexibleAccessPath | $().attr |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:122:33:122:71 | URL.cre ... les[0]) | InputArgumentIndex | 1 |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:122:33:122:71 | URL.cre ... les[0]) | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:122:33:122:71 | URL.cre ... les[0]) | contextSurroundingFunctionParameters | ()\n(ev) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:122:33:122:71 | URL.cre ... les[0]) | enclosingFunctionBody | src document getElementById #link src $ #id html src $ #id attr src src $ 0 input.foo 0 onchange ev $ #id html ev 0 target files 0 name $ img#id attr src URL createObjectURL ev 0 target files 0 |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:122:33:122:71 | URL.cre ... les[0]) | enclosingFunctionName |  |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:122:33:122:71 | URL.cre ... les[0]) | fileImports | anser cash-dom |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:122:53:122:70 | ev.target.files[0] | CalleeFlexibleAccessPath | URL.createObjectURL |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:122:53:122:70 | ev.target.files[0] | InputArgumentIndex | 0 |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:122:53:122:70 | ev.target.files[0] | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:122:53:122:70 | ev.target.files[0] | contextSurroundingFunctionParameters | ()\n(ev) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:122:53:122:70 | ev.target.files[0] | enclosingFunctionBody | src document getElementById #link src $ #id html src $ #id attr src src $ 0 input.foo 0 onchange ev $ #id html ev 0 target files 0 name $ img#id attr src URL createObjectURL ev 0 target files 0 |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:122:53:122:70 | ev.target.files[0] | enclosingFunctionName |  |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:122:53:122:70 | ev.target.files[0] | fileImports | anser cash-dom |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:122:53:122:70 | ev.target.files[0] | receiverName | URL |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:127:36:127:38 | 'a' | CalleeFlexibleAccessPath | document.createElement |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:127:36:127:38 | 'a' | InputArgumentIndex | 0 |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:127:36:127:38 | 'a' | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:127:36:127:38 | 'a' | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:127:36:127:38 | 'a' | enclosingFunctionBody | elem document createElement a wSelection getSelection dSelection document getSelection linkText wSelection toString dSelection toString  elem innerHTML linkText $ #id html linkText elem innerText linkText |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:127:36:127:38 | 'a' | enclosingFunctionName |  |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:127:36:127:38 | 'a' | fileImports | anser cash-dom |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:127:36:127:38 | 'a' | receiverName | document |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:131:19:131:26 | linkText | assignedToPropName | innerHTML |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:131:19:131:26 | linkText | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:131:19:131:26 | linkText | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:131:19:131:26 | linkText | enclosingFunctionBody | elem document createElement a wSelection getSelection dSelection document getSelection linkText wSelection toString dSelection toString  elem innerHTML linkText $ #id html linkText elem innerText linkText |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:131:19:131:26 | linkText | enclosingFunctionName |  |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:131:19:131:26 | linkText | fileImports | anser cash-dom |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:132:4:132:8 | "#id" | CalleeFlexibleAccessPath | $ |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:132:4:132:8 | "#id" | InputArgumentIndex | 0 |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:132:4:132:8 | "#id" | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:132:4:132:8 | "#id" | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:132:4:132:8 | "#id" | enclosingFunctionBody | elem document createElement a wSelection getSelection dSelection document getSelection linkText wSelection toString dSelection toString  elem innerHTML linkText $ #id html linkText elem innerText linkText |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:132:4:132:8 | "#id" | enclosingFunctionName |  |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:132:4:132:8 | "#id" | fileImports | anser cash-dom |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:132:16:132:23 | linkText | CalleeFlexibleAccessPath | $().html |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:132:16:132:23 | linkText | InputArgumentIndex | 0 |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:132:16:132:23 | linkText | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:132:16:132:23 | linkText | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:132:16:132:23 | linkText | enclosingFunctionBody | elem document createElement a wSelection getSelection dSelection document getSelection linkText wSelection toString dSelection toString  elem innerHTML linkText $ #id html linkText elem innerText linkText |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:132:16:132:23 | linkText | enclosingFunctionName |  |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:132:16:132:23 | linkText | fileImports | anser cash-dom |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:136:25:136:34 | "cash-dom" | CalleeFlexibleAccessPath | require |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:136:25:136:34 | "cash-dom" | InputArgumentIndex | 0 |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:136:25:136:34 | "cash-dom" | calleeImports |  |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:136:25:136:34 | "cash-dom" | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:136:25:136:34 | "cash-dom" | contextSurroundingFunctionParameters |  |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:136:25:136:34 | "cash-dom" | fileImports | anser cash-dom |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:139:41:139:47 | "#link" | CalleeFlexibleAccessPath | document.getElementById |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:139:41:139:47 | "#link" | InputArgumentIndex | 0 |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:139:41:139:47 | "#link" | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:139:41:139:47 | "#link" | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:139:41:139:47 | "#link" | enclosingFunctionBody | src document getElementById #link src cash #id html src cashDom #id html src |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:139:41:139:47 | "#link" | enclosingFunctionName |  |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:139:41:139:47 | "#link" | fileImports | anser cash-dom |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:139:41:139:47 | "#link" | receiverName | document |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:140:7:140:11 | "#id" | CalleeFlexibleAccessPath | cash |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:140:7:140:11 | "#id" | InputArgumentIndex | 0 |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:140:7:140:11 | "#id" | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:140:7:140:11 | "#id" | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:140:7:140:11 | "#id" | enclosingFunctionBody | src document getElementById #link src cash #id html src cashDom #id html src |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:140:7:140:11 | "#id" | enclosingFunctionName |  |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:140:7:140:11 | "#id" | fileImports | anser cash-dom |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:140:19:140:21 | src | CalleeFlexibleAccessPath | cash().html |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:140:19:140:21 | src | InputArgumentIndex | 0 |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:140:19:140:21 | src | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:140:19:140:21 | src | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:140:19:140:21 | src | enclosingFunctionBody | src document getElementById #link src cash #id html src cashDom #id html src |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:140:19:140:21 | src | enclosingFunctionName |  |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:140:19:140:21 | src | fileImports | anser cash-dom |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:141:13:141:17 | "#id" | CalleeFlexibleAccessPath | cashDom |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:141:13:141:17 | "#id" | InputArgumentIndex | 0 |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:141:13:141:17 | "#id" | calleeImports | cash-dom |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:141:13:141:17 | "#id" | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:141:13:141:17 | "#id" | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:141:13:141:17 | "#id" | enclosingFunctionBody | src document getElementById #link src cash #id html src cashDom #id html src |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:141:13:141:17 | "#id" | enclosingFunctionName |  |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:141:13:141:17 | "#id" | fileImports | anser cash-dom |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:141:25:141:27 | src | CalleeFlexibleAccessPath | cashDom().html |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:141:25:141:27 | src | InputArgumentIndex | 0 |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:141:25:141:27 | src | calleeImports | cash-dom |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:141:25:141:27 | src | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:141:25:141:27 | src | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:141:25:141:27 | src | enclosingFunctionBody | src document getElementById #link src cash #id html src cashDom #id html src |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:141:25:141:27 | src | enclosingFunctionName |  |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:141:25:141:27 | src | fileImports | anser cash-dom |
+| autogenerated/XssThroughDom/BadTagFilter/tst.js:25:11:25:17 | filters | CalleeFlexibleAccessPath | doFilters |
+| autogenerated/XssThroughDom/BadTagFilter/tst.js:25:11:25:17 | filters | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/BadTagFilter/tst.js:25:11:25:17 | filters | contextFunctionInterfaces |  |
+| autogenerated/XssThroughDom/BadTagFilter/tst.js:25:11:25:17 | filters | contextSurroundingFunctionParameters |  |
+| autogenerated/XssThroughDom/BadTagFilter/tst.js:25:11:25:17 | filters | fileImports |  |
+| autogenerated/XssThroughDom/BadTagFilter/tst.js:28:12:28:16 | strip | CalleeFlexibleAccessPath | RegExp |
+| autogenerated/XssThroughDom/BadTagFilter/tst.js:28:12:28:16 | strip | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/BadTagFilter/tst.js:28:12:28:16 | strip | contextFunctionInterfaces |  |
+| autogenerated/XssThroughDom/BadTagFilter/tst.js:28:12:28:16 | strip | contextSurroundingFunctionParameters |  |
+| autogenerated/XssThroughDom/BadTagFilter/tst.js:28:12:28:16 | strip | fileImports |  |
+| autogenerated/XssThroughDom/BadTagFilter/tst.js:28:19:28:22 | 'gi' | CalleeFlexibleAccessPath | RegExp |
+| autogenerated/XssThroughDom/BadTagFilter/tst.js:28:19:28:22 | 'gi' | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/BadTagFilter/tst.js:28:19:28:22 | 'gi' | contextFunctionInterfaces |  |
+| autogenerated/XssThroughDom/BadTagFilter/tst.js:28:19:28:22 | 'gi' | contextSurroundingFunctionParameters |  |
+| autogenerated/XssThroughDom/BadTagFilter/tst.js:28:19:28:22 | 'gi' | fileImports |  |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:2:20:2:23 | /"/g | CalleeFlexibleAccessPath | s.replace |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:2:20:2:23 | /"/g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:2:20:2:23 | /"/g | contextFunctionInterfaces | badDecode(s)\nbadDecode2(s)\nbadDecode3(s)\nbadEncode(s)\nbadEncode(s)\nbadEncodeWithReplacer(s)\nbadPercentEscape(s)\nbadRoundtrip(s)\nbadUnescape(s)\ncleverEncode(code)\nencodeDecodeEncode(s)\ngoodDecode(s)\ngoodDecodeInLoop(ss)\ngoodEncode(s)\ntestWithCapturedVar(x) |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:2:20:2:23 | /"/g | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:2:20:2:23 | /"/g | enclosingFunctionBody | s s replace /"/g &quot; replace /'/g &apos; replace /&/g &amp; |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:2:20:2:23 | /"/g | enclosingFunctionName | badEncode |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:2:20:2:23 | /"/g | fileImports |  |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:2:20:2:23 | /"/g | receiverName | s |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:2:26:2:33 | "&quot;" | CalleeFlexibleAccessPath | s.replace |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:2:26:2:33 | "&quot;" | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:2:26:2:33 | "&quot;" | contextFunctionInterfaces | badDecode(s)\nbadDecode2(s)\nbadDecode3(s)\nbadEncode(s)\nbadEncode(s)\nbadEncodeWithReplacer(s)\nbadPercentEscape(s)\nbadRoundtrip(s)\nbadUnescape(s)\ncleverEncode(code)\nencodeDecodeEncode(s)\ngoodDecode(s)\ngoodDecodeInLoop(ss)\ngoodEncode(s)\ntestWithCapturedVar(x) |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:2:26:2:33 | "&quot;" | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:2:26:2:33 | "&quot;" | enclosingFunctionBody | s s replace /"/g &quot; replace /'/g &apos; replace /&/g &amp; |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:2:26:2:33 | "&quot;" | enclosingFunctionName | badEncode |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:2:26:2:33 | "&quot;" | fileImports |  |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:2:26:2:33 | "&quot;" | receiverName | s |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:3:20:3:23 | /'/g | CalleeFlexibleAccessPath | s.replace().replace |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:3:20:3:23 | /'/g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:3:20:3:23 | /'/g | contextFunctionInterfaces | badDecode(s)\nbadDecode2(s)\nbadDecode3(s)\nbadEncode(s)\nbadEncode(s)\nbadEncodeWithReplacer(s)\nbadPercentEscape(s)\nbadRoundtrip(s)\nbadUnescape(s)\ncleverEncode(code)\nencodeDecodeEncode(s)\ngoodDecode(s)\ngoodDecodeInLoop(ss)\ngoodEncode(s)\ntestWithCapturedVar(x) |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:3:20:3:23 | /'/g | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:3:20:3:23 | /'/g | enclosingFunctionBody | s s replace /"/g &quot; replace /'/g &apos; replace /&/g &amp; |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:3:20:3:23 | /'/g | enclosingFunctionName | badEncode |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:3:20:3:23 | /'/g | fileImports |  |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:3:26:3:33 | "&apos;" | CalleeFlexibleAccessPath | s.replace().replace |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:3:26:3:33 | "&apos;" | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:3:26:3:33 | "&apos;" | contextFunctionInterfaces | badDecode(s)\nbadDecode2(s)\nbadDecode3(s)\nbadEncode(s)\nbadEncode(s)\nbadEncodeWithReplacer(s)\nbadPercentEscape(s)\nbadRoundtrip(s)\nbadUnescape(s)\ncleverEncode(code)\nencodeDecodeEncode(s)\ngoodDecode(s)\ngoodDecodeInLoop(ss)\ngoodEncode(s)\ntestWithCapturedVar(x) |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:3:26:3:33 | "&apos;" | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:3:26:3:33 | "&apos;" | enclosingFunctionBody | s s replace /"/g &quot; replace /'/g &apos; replace /&/g &amp; |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:3:26:3:33 | "&apos;" | enclosingFunctionName | badEncode |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:3:26:3:33 | "&apos;" | fileImports |  |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:4:20:4:23 | /&/g | CalleeFlexibleAccessPath | s.replace().replace().replace |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:4:20:4:23 | /&/g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:4:20:4:23 | /&/g | contextFunctionInterfaces | badDecode(s)\nbadDecode2(s)\nbadDecode3(s)\nbadEncode(s)\nbadEncode(s)\nbadEncodeWithReplacer(s)\nbadPercentEscape(s)\nbadRoundtrip(s)\nbadUnescape(s)\ncleverEncode(code)\nencodeDecodeEncode(s)\ngoodDecode(s)\ngoodDecodeInLoop(ss)\ngoodEncode(s)\ntestWithCapturedVar(x) |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:4:20:4:23 | /&/g | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:4:20:4:23 | /&/g | enclosingFunctionBody | s s replace /"/g &quot; replace /'/g &apos; replace /&/g &amp; |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:4:20:4:23 | /&/g | enclosingFunctionName | badEncode |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:4:20:4:23 | /&/g | fileImports |  |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:4:26:4:32 | "&amp;" | CalleeFlexibleAccessPath | s.replace().replace().replace |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:4:26:4:32 | "&amp;" | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:4:26:4:32 | "&amp;" | contextFunctionInterfaces | badDecode(s)\nbadDecode2(s)\nbadDecode3(s)\nbadEncode(s)\nbadEncode(s)\nbadEncodeWithReplacer(s)\nbadPercentEscape(s)\nbadRoundtrip(s)\nbadUnescape(s)\ncleverEncode(code)\nencodeDecodeEncode(s)\ngoodDecode(s)\ngoodDecodeInLoop(ss)\ngoodEncode(s)\ntestWithCapturedVar(x) |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:4:26:4:32 | "&amp;" | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:4:26:4:32 | "&amp;" | enclosingFunctionBody | s s replace /"/g &quot; replace /'/g &apos; replace /&/g &amp; |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:4:26:4:32 | "&amp;" | enclosingFunctionName | badEncode |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:4:26:4:32 | "&amp;" | fileImports |  |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:8:20:8:23 | /&/g | CalleeFlexibleAccessPath | s.replace |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:8:20:8:23 | /&/g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:8:20:8:23 | /&/g | contextFunctionInterfaces | badDecode(s)\nbadDecode2(s)\nbadDecode3(s)\nbadEncode(s)\nbadEncode(s)\nbadEncodeWithReplacer(s)\nbadPercentEscape(s)\nbadRoundtrip(s)\nbadUnescape(s)\ncleverEncode(code)\nencodeDecodeEncode(s)\ngoodDecode(s)\ngoodDecodeInLoop(ss)\ngoodEncode(s)\ntestWithCapturedVar(x) |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:8:20:8:23 | /&/g | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:8:20:8:23 | /&/g | enclosingFunctionBody | s s replace /&/g &amp; replace /"/g &quot; replace /'/g &apos; |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:8:20:8:23 | /&/g | enclosingFunctionName | goodEncode |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:8:20:8:23 | /&/g | fileImports |  |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:8:20:8:23 | /&/g | receiverName | s |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:8:26:8:32 | "&amp;" | CalleeFlexibleAccessPath | s.replace |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:8:26:8:32 | "&amp;" | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:8:26:8:32 | "&amp;" | contextFunctionInterfaces | badDecode(s)\nbadDecode2(s)\nbadDecode3(s)\nbadEncode(s)\nbadEncode(s)\nbadEncodeWithReplacer(s)\nbadPercentEscape(s)\nbadRoundtrip(s)\nbadUnescape(s)\ncleverEncode(code)\nencodeDecodeEncode(s)\ngoodDecode(s)\ngoodDecodeInLoop(ss)\ngoodEncode(s)\ntestWithCapturedVar(x) |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:8:26:8:32 | "&amp;" | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:8:26:8:32 | "&amp;" | enclosingFunctionBody | s s replace /&/g &amp; replace /"/g &quot; replace /'/g &apos; |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:8:26:8:32 | "&amp;" | enclosingFunctionName | goodEncode |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:8:26:8:32 | "&amp;" | fileImports |  |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:8:26:8:32 | "&amp;" | receiverName | s |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:9:20:9:23 | /"/g | CalleeFlexibleAccessPath | s.replace().replace |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:9:20:9:23 | /"/g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:9:20:9:23 | /"/g | contextFunctionInterfaces | badDecode(s)\nbadDecode2(s)\nbadDecode3(s)\nbadEncode(s)\nbadEncode(s)\nbadEncodeWithReplacer(s)\nbadPercentEscape(s)\nbadRoundtrip(s)\nbadUnescape(s)\ncleverEncode(code)\nencodeDecodeEncode(s)\ngoodDecode(s)\ngoodDecodeInLoop(ss)\ngoodEncode(s)\ntestWithCapturedVar(x) |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:9:20:9:23 | /"/g | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:9:20:9:23 | /"/g | enclosingFunctionBody | s s replace /&/g &amp; replace /"/g &quot; replace /'/g &apos; |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:9:20:9:23 | /"/g | enclosingFunctionName | goodEncode |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:9:20:9:23 | /"/g | fileImports |  |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:9:26:9:33 | "&quot;" | CalleeFlexibleAccessPath | s.replace().replace |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:9:26:9:33 | "&quot;" | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:9:26:9:33 | "&quot;" | contextFunctionInterfaces | badDecode(s)\nbadDecode2(s)\nbadDecode3(s)\nbadEncode(s)\nbadEncode(s)\nbadEncodeWithReplacer(s)\nbadPercentEscape(s)\nbadRoundtrip(s)\nbadUnescape(s)\ncleverEncode(code)\nencodeDecodeEncode(s)\ngoodDecode(s)\ngoodDecodeInLoop(ss)\ngoodEncode(s)\ntestWithCapturedVar(x) |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:9:26:9:33 | "&quot;" | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:9:26:9:33 | "&quot;" | enclosingFunctionBody | s s replace /&/g &amp; replace /"/g &quot; replace /'/g &apos; |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:9:26:9:33 | "&quot;" | enclosingFunctionName | goodEncode |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:9:26:9:33 | "&quot;" | fileImports |  |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:10:20:10:23 | /'/g | CalleeFlexibleAccessPath | s.replace().replace().replace |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:10:20:10:23 | /'/g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:10:20:10:23 | /'/g | contextFunctionInterfaces | badDecode(s)\nbadDecode2(s)\nbadDecode3(s)\nbadEncode(s)\nbadEncode(s)\nbadEncodeWithReplacer(s)\nbadPercentEscape(s)\nbadRoundtrip(s)\nbadUnescape(s)\ncleverEncode(code)\nencodeDecodeEncode(s)\ngoodDecode(s)\ngoodDecodeInLoop(ss)\ngoodEncode(s)\ntestWithCapturedVar(x) |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:10:20:10:23 | /'/g | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:10:20:10:23 | /'/g | enclosingFunctionBody | s s replace /&/g &amp; replace /"/g &quot; replace /'/g &apos; |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:10:20:10:23 | /'/g | enclosingFunctionName | goodEncode |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:10:20:10:23 | /'/g | fileImports |  |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:10:26:10:33 | "&apos;" | CalleeFlexibleAccessPath | s.replace().replace().replace |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:10:26:10:33 | "&apos;" | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:10:26:10:33 | "&apos;" | contextFunctionInterfaces | badDecode(s)\nbadDecode2(s)\nbadDecode3(s)\nbadEncode(s)\nbadEncode(s)\nbadEncodeWithReplacer(s)\nbadPercentEscape(s)\nbadRoundtrip(s)\nbadUnescape(s)\ncleverEncode(code)\nencodeDecodeEncode(s)\ngoodDecode(s)\ngoodDecodeInLoop(ss)\ngoodEncode(s)\ntestWithCapturedVar(x) |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:10:26:10:33 | "&apos;" | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:10:26:10:33 | "&apos;" | enclosingFunctionBody | s s replace /&/g &amp; replace /"/g &quot; replace /'/g &apos; |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:10:26:10:33 | "&apos;" | enclosingFunctionName | goodEncode |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:10:26:10:33 | "&apos;" | fileImports |  |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:14:20:14:28 | /&quot;/g | CalleeFlexibleAccessPath | s.replace |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:14:20:14:28 | /&quot;/g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:14:20:14:28 | /&quot;/g | contextFunctionInterfaces | badDecode(s)\nbadDecode2(s)\nbadDecode3(s)\nbadEncode(s)\nbadEncode(s)\nbadEncodeWithReplacer(s)\nbadPercentEscape(s)\nbadRoundtrip(s)\nbadUnescape(s)\ncleverEncode(code)\nencodeDecodeEncode(s)\ngoodDecode(s)\ngoodDecodeInLoop(ss)\ngoodEncode(s)\ntestWithCapturedVar(x) |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:14:20:14:28 | /&quot;/g | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:14:20:14:28 | /&quot;/g | enclosingFunctionBody | s s replace /&quot;/g " replace /&apos;/g ' replace /&amp;/g & |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:14:20:14:28 | /&quot;/g | enclosingFunctionName | goodDecode |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:14:20:14:28 | /&quot;/g | fileImports |  |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:14:20:14:28 | /&quot;/g | receiverName | s |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:14:31:14:34 | "\\"" | CalleeFlexibleAccessPath | s.replace |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:14:31:14:34 | "\\"" | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:14:31:14:34 | "\\"" | contextFunctionInterfaces | badDecode(s)\nbadDecode2(s)\nbadDecode3(s)\nbadEncode(s)\nbadEncode(s)\nbadEncodeWithReplacer(s)\nbadPercentEscape(s)\nbadRoundtrip(s)\nbadUnescape(s)\ncleverEncode(code)\nencodeDecodeEncode(s)\ngoodDecode(s)\ngoodDecodeInLoop(ss)\ngoodEncode(s)\ntestWithCapturedVar(x) |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:14:31:14:34 | "\\"" | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:14:31:14:34 | "\\"" | enclosingFunctionBody | s s replace /&quot;/g " replace /&apos;/g ' replace /&amp;/g & |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:14:31:14:34 | "\\"" | enclosingFunctionName | goodDecode |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:14:31:14:34 | "\\"" | fileImports |  |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:14:31:14:34 | "\\"" | receiverName | s |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:15:20:15:28 | /&apos;/g | CalleeFlexibleAccessPath | s.replace().replace |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:15:20:15:28 | /&apos;/g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:15:20:15:28 | /&apos;/g | contextFunctionInterfaces | badDecode(s)\nbadDecode2(s)\nbadDecode3(s)\nbadEncode(s)\nbadEncode(s)\nbadEncodeWithReplacer(s)\nbadPercentEscape(s)\nbadRoundtrip(s)\nbadUnescape(s)\ncleverEncode(code)\nencodeDecodeEncode(s)\ngoodDecode(s)\ngoodDecodeInLoop(ss)\ngoodEncode(s)\ntestWithCapturedVar(x) |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:15:20:15:28 | /&apos;/g | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:15:20:15:28 | /&apos;/g | enclosingFunctionBody | s s replace /&quot;/g " replace /&apos;/g ' replace /&amp;/g & |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:15:20:15:28 | /&apos;/g | enclosingFunctionName | goodDecode |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:15:20:15:28 | /&apos;/g | fileImports |  |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:15:31:15:33 | "'" | CalleeFlexibleAccessPath | s.replace().replace |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:15:31:15:33 | "'" | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:15:31:15:33 | "'" | contextFunctionInterfaces | badDecode(s)\nbadDecode2(s)\nbadDecode3(s)\nbadEncode(s)\nbadEncode(s)\nbadEncodeWithReplacer(s)\nbadPercentEscape(s)\nbadRoundtrip(s)\nbadUnescape(s)\ncleverEncode(code)\nencodeDecodeEncode(s)\ngoodDecode(s)\ngoodDecodeInLoop(ss)\ngoodEncode(s)\ntestWithCapturedVar(x) |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:15:31:15:33 | "'" | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:15:31:15:33 | "'" | enclosingFunctionBody | s s replace /&quot;/g " replace /&apos;/g ' replace /&amp;/g & |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:15:31:15:33 | "'" | enclosingFunctionName | goodDecode |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:15:31:15:33 | "'" | fileImports |  |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:16:20:16:27 | /&amp;/g | CalleeFlexibleAccessPath | s.replace().replace().replace |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:16:20:16:27 | /&amp;/g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:16:20:16:27 | /&amp;/g | contextFunctionInterfaces | badDecode(s)\nbadDecode2(s)\nbadDecode3(s)\nbadEncode(s)\nbadEncode(s)\nbadEncodeWithReplacer(s)\nbadPercentEscape(s)\nbadRoundtrip(s)\nbadUnescape(s)\ncleverEncode(code)\nencodeDecodeEncode(s)\ngoodDecode(s)\ngoodDecodeInLoop(ss)\ngoodEncode(s)\ntestWithCapturedVar(x) |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:16:20:16:27 | /&amp;/g | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:16:20:16:27 | /&amp;/g | enclosingFunctionBody | s s replace /&quot;/g " replace /&apos;/g ' replace /&amp;/g & |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:16:20:16:27 | /&amp;/g | enclosingFunctionName | goodDecode |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:16:20:16:27 | /&amp;/g | fileImports |  |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:16:30:16:32 | "&" | CalleeFlexibleAccessPath | s.replace().replace().replace |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:16:30:16:32 | "&" | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:16:30:16:32 | "&" | contextFunctionInterfaces | badDecode(s)\nbadDecode2(s)\nbadDecode3(s)\nbadEncode(s)\nbadEncode(s)\nbadEncodeWithReplacer(s)\nbadPercentEscape(s)\nbadRoundtrip(s)\nbadUnescape(s)\ncleverEncode(code)\nencodeDecodeEncode(s)\ngoodDecode(s)\ngoodDecodeInLoop(ss)\ngoodEncode(s)\ntestWithCapturedVar(x) |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:16:30:16:32 | "&" | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:16:30:16:32 | "&" | enclosingFunctionBody | s s replace /&quot;/g " replace /&apos;/g ' replace /&amp;/g & |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:16:30:16:32 | "&" | enclosingFunctionName | goodDecode |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:16:30:16:32 | "&" | fileImports |  |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:20:20:20:27 | /&amp;/g | CalleeFlexibleAccessPath | s.replace |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:20:20:20:27 | /&amp;/g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:20:20:20:27 | /&amp;/g | contextFunctionInterfaces | badDecode(s)\nbadDecode2(s)\nbadDecode3(s)\nbadEncode(s)\nbadEncode(s)\nbadEncodeWithReplacer(s)\nbadPercentEscape(s)\nbadRoundtrip(s)\nbadUnescape(s)\ncleverEncode(code)\nencodeDecodeEncode(s)\ngoodDecode(s)\ngoodDecodeInLoop(ss)\ngoodEncode(s)\ntestWithCapturedVar(x) |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:20:20:20:27 | /&amp;/g | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:20:20:20:27 | /&amp;/g | enclosingFunctionBody | s s replace /&amp;/g & replace /&quot;/g " replace /&apos;/g ' |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:20:20:20:27 | /&amp;/g | enclosingFunctionName | badDecode |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:20:20:20:27 | /&amp;/g | fileImports |  |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:20:20:20:27 | /&amp;/g | receiverName | s |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:20:30:20:32 | "&" | CalleeFlexibleAccessPath | s.replace |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:20:30:20:32 | "&" | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:20:30:20:32 | "&" | contextFunctionInterfaces | badDecode(s)\nbadDecode2(s)\nbadDecode3(s)\nbadEncode(s)\nbadEncode(s)\nbadEncodeWithReplacer(s)\nbadPercentEscape(s)\nbadRoundtrip(s)\nbadUnescape(s)\ncleverEncode(code)\nencodeDecodeEncode(s)\ngoodDecode(s)\ngoodDecodeInLoop(ss)\ngoodEncode(s)\ntestWithCapturedVar(x) |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:20:30:20:32 | "&" | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:20:30:20:32 | "&" | enclosingFunctionBody | s s replace /&amp;/g & replace /&quot;/g " replace /&apos;/g ' |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:20:30:20:32 | "&" | enclosingFunctionName | badDecode |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:20:30:20:32 | "&" | fileImports |  |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:20:30:20:32 | "&" | receiverName | s |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:21:20:21:28 | /&quot;/g | CalleeFlexibleAccessPath | s.replace().replace |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:21:20:21:28 | /&quot;/g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:21:20:21:28 | /&quot;/g | contextFunctionInterfaces | badDecode(s)\nbadDecode2(s)\nbadDecode3(s)\nbadEncode(s)\nbadEncode(s)\nbadEncodeWithReplacer(s)\nbadPercentEscape(s)\nbadRoundtrip(s)\nbadUnescape(s)\ncleverEncode(code)\nencodeDecodeEncode(s)\ngoodDecode(s)\ngoodDecodeInLoop(ss)\ngoodEncode(s)\ntestWithCapturedVar(x) |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:21:20:21:28 | /&quot;/g | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:21:20:21:28 | /&quot;/g | enclosingFunctionBody | s s replace /&amp;/g & replace /&quot;/g " replace /&apos;/g ' |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:21:20:21:28 | /&quot;/g | enclosingFunctionName | badDecode |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:21:20:21:28 | /&quot;/g | fileImports |  |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:21:31:21:34 | "\\"" | CalleeFlexibleAccessPath | s.replace().replace |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:21:31:21:34 | "\\"" | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:21:31:21:34 | "\\"" | contextFunctionInterfaces | badDecode(s)\nbadDecode2(s)\nbadDecode3(s)\nbadEncode(s)\nbadEncode(s)\nbadEncodeWithReplacer(s)\nbadPercentEscape(s)\nbadRoundtrip(s)\nbadUnescape(s)\ncleverEncode(code)\nencodeDecodeEncode(s)\ngoodDecode(s)\ngoodDecodeInLoop(ss)\ngoodEncode(s)\ntestWithCapturedVar(x) |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:21:31:21:34 | "\\"" | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:21:31:21:34 | "\\"" | enclosingFunctionBody | s s replace /&amp;/g & replace /&quot;/g " replace /&apos;/g ' |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:21:31:21:34 | "\\"" | enclosingFunctionName | badDecode |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:21:31:21:34 | "\\"" | fileImports |  |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:22:20:22:28 | /&apos;/g | CalleeFlexibleAccessPath | s.replace().replace().replace |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:22:20:22:28 | /&apos;/g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:22:20:22:28 | /&apos;/g | contextFunctionInterfaces | badDecode(s)\nbadDecode2(s)\nbadDecode3(s)\nbadEncode(s)\nbadEncode(s)\nbadEncodeWithReplacer(s)\nbadPercentEscape(s)\nbadRoundtrip(s)\nbadUnescape(s)\ncleverEncode(code)\nencodeDecodeEncode(s)\ngoodDecode(s)\ngoodDecodeInLoop(ss)\ngoodEncode(s)\ntestWithCapturedVar(x) |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:22:20:22:28 | /&apos;/g | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:22:20:22:28 | /&apos;/g | enclosingFunctionBody | s s replace /&amp;/g & replace /&quot;/g " replace /&apos;/g ' |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:22:20:22:28 | /&apos;/g | enclosingFunctionName | badDecode |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:22:20:22:28 | /&apos;/g | fileImports |  |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:22:31:22:33 | "'" | CalleeFlexibleAccessPath | s.replace().replace().replace |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:22:31:22:33 | "'" | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:22:31:22:33 | "'" | contextFunctionInterfaces | badDecode(s)\nbadDecode2(s)\nbadDecode3(s)\nbadEncode(s)\nbadEncode(s)\nbadEncodeWithReplacer(s)\nbadPercentEscape(s)\nbadRoundtrip(s)\nbadUnescape(s)\ncleverEncode(code)\nencodeDecodeEncode(s)\ngoodDecode(s)\ngoodDecodeInLoop(ss)\ngoodEncode(s)\ntestWithCapturedVar(x) |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:22:31:22:33 | "'" | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:22:31:22:33 | "'" | enclosingFunctionBody | s s replace /&amp;/g & replace /&quot;/g " replace /&apos;/g ' |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:22:31:22:33 | "'" | enclosingFunctionName | badDecode |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:22:31:22:33 | "'" | fileImports |  |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:26:25:26:28 | /</g | CalleeFlexibleAccessPath | code.replace |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:26:25:26:28 | /</g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:26:25:26:28 | /</g | contextFunctionInterfaces | badDecode(s)\nbadDecode2(s)\nbadDecode3(s)\nbadEncode(s)\nbadEncode(s)\nbadEncodeWithReplacer(s)\nbadPercentEscape(s)\nbadRoundtrip(s)\nbadUnescape(s)\ncleverEncode(code)\nencodeDecodeEncode(s)\ngoodDecode(s)\ngoodDecodeInLoop(ss)\ngoodEncode(s)\ntestWithCapturedVar(x) |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:26:25:26:28 | /</g | contextSurroundingFunctionParameters | (code) |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:26:25:26:28 | /</g | enclosingFunctionBody | code code replace /</g &lt; replace />/g &gt; replace /&(?![\\w\\#]+;)/g &amp; |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:26:25:26:28 | /</g | enclosingFunctionName | cleverEncode |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:26:25:26:28 | /</g | fileImports |  |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:26:25:26:28 | /</g | receiverName | code |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:26:31:26:36 | '&lt;' | CalleeFlexibleAccessPath | code.replace |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:26:31:26:36 | '&lt;' | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:26:31:26:36 | '&lt;' | contextFunctionInterfaces | badDecode(s)\nbadDecode2(s)\nbadDecode3(s)\nbadEncode(s)\nbadEncode(s)\nbadEncodeWithReplacer(s)\nbadPercentEscape(s)\nbadRoundtrip(s)\nbadUnescape(s)\ncleverEncode(code)\nencodeDecodeEncode(s)\ngoodDecode(s)\ngoodDecodeInLoop(ss)\ngoodEncode(s)\ntestWithCapturedVar(x) |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:26:31:26:36 | '&lt;' | contextSurroundingFunctionParameters | (code) |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:26:31:26:36 | '&lt;' | enclosingFunctionBody | code code replace /</g &lt; replace />/g &gt; replace /&(?![\\w\\#]+;)/g &amp; |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:26:31:26:36 | '&lt;' | enclosingFunctionName | cleverEncode |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:26:31:26:36 | '&lt;' | fileImports |  |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:26:31:26:36 | '&lt;' | receiverName | code |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:26:47:26:50 | />/g | CalleeFlexibleAccessPath | code.replace().replace |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:26:47:26:50 | />/g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:26:47:26:50 | />/g | contextFunctionInterfaces | badDecode(s)\nbadDecode2(s)\nbadDecode3(s)\nbadEncode(s)\nbadEncode(s)\nbadEncodeWithReplacer(s)\nbadPercentEscape(s)\nbadRoundtrip(s)\nbadUnescape(s)\ncleverEncode(code)\nencodeDecodeEncode(s)\ngoodDecode(s)\ngoodDecodeInLoop(ss)\ngoodEncode(s)\ntestWithCapturedVar(x) |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:26:47:26:50 | />/g | contextSurroundingFunctionParameters | (code) |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:26:47:26:50 | />/g | enclosingFunctionBody | code code replace /</g &lt; replace />/g &gt; replace /&(?![\\w\\#]+;)/g &amp; |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:26:47:26:50 | />/g | enclosingFunctionName | cleverEncode |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:26:47:26:50 | />/g | fileImports |  |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:26:53:26:58 | '&gt;' | CalleeFlexibleAccessPath | code.replace().replace |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:26:53:26:58 | '&gt;' | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:26:53:26:58 | '&gt;' | contextFunctionInterfaces | badDecode(s)\nbadDecode2(s)\nbadDecode3(s)\nbadEncode(s)\nbadEncode(s)\nbadEncodeWithReplacer(s)\nbadPercentEscape(s)\nbadRoundtrip(s)\nbadUnescape(s)\ncleverEncode(code)\nencodeDecodeEncode(s)\ngoodDecode(s)\ngoodDecodeInLoop(ss)\ngoodEncode(s)\ntestWithCapturedVar(x) |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:26:53:26:58 | '&gt;' | contextSurroundingFunctionParameters | (code) |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:26:53:26:58 | '&gt;' | enclosingFunctionBody | code code replace /</g &lt; replace />/g &gt; replace /&(?![\\w\\#]+;)/g &amp; |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:26:53:26:58 | '&gt;' | enclosingFunctionName | cleverEncode |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:26:53:26:58 | '&gt;' | fileImports |  |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:26:69:26:84 | /&(?![\\w\\#]+;)/g | CalleeFlexibleAccessPath | code.replace().replace().replace |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:26:69:26:84 | /&(?![\\w\\#]+;)/g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:26:69:26:84 | /&(?![\\w\\#]+;)/g | contextFunctionInterfaces | badDecode(s)\nbadDecode2(s)\nbadDecode3(s)\nbadEncode(s)\nbadEncode(s)\nbadEncodeWithReplacer(s)\nbadPercentEscape(s)\nbadRoundtrip(s)\nbadUnescape(s)\ncleverEncode(code)\nencodeDecodeEncode(s)\ngoodDecode(s)\ngoodDecodeInLoop(ss)\ngoodEncode(s)\ntestWithCapturedVar(x) |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:26:69:26:84 | /&(?![\\w\\#]+;)/g | contextSurroundingFunctionParameters | (code) |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:26:69:26:84 | /&(?![\\w\\#]+;)/g | enclosingFunctionBody | code code replace /</g &lt; replace />/g &gt; replace /&(?![\\w\\#]+;)/g &amp; |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:26:69:26:84 | /&(?![\\w\\#]+;)/g | enclosingFunctionName | cleverEncode |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:26:69:26:84 | /&(?![\\w\\#]+;)/g | fileImports |  |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:26:87:26:93 | '&amp;' | CalleeFlexibleAccessPath | code.replace().replace().replace |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:26:87:26:93 | '&amp;' | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:26:87:26:93 | '&amp;' | contextFunctionInterfaces | badDecode(s)\nbadDecode2(s)\nbadDecode3(s)\nbadEncode(s)\nbadEncode(s)\nbadEncodeWithReplacer(s)\nbadPercentEscape(s)\nbadRoundtrip(s)\nbadUnescape(s)\ncleverEncode(code)\nencodeDecodeEncode(s)\ngoodDecode(s)\ngoodDecodeInLoop(ss)\ngoodEncode(s)\ntestWithCapturedVar(x) |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:26:87:26:93 | '&amp;' | contextSurroundingFunctionParameters | (code) |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:26:87:26:93 | '&amp;' | enclosingFunctionBody | code code replace /</g &lt; replace />/g &gt; replace /&(?![\\w\\#]+;)/g &amp; |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:26:87:26:93 | '&amp;' | enclosingFunctionName | cleverEncode |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:26:87:26:93 | '&amp;' | fileImports |  |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:30:20:30:27 | /&amp;/g | CalleeFlexibleAccessPath | s.replace |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:30:20:30:27 | /&amp;/g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:30:20:30:27 | /&amp;/g | contextFunctionInterfaces | badDecode(s)\nbadDecode2(s)\nbadDecode3(s)\nbadEncode(s)\nbadEncode(s)\nbadEncodeWithReplacer(s)\nbadPercentEscape(s)\nbadRoundtrip(s)\nbadUnescape(s)\ncleverEncode(code)\nencodeDecodeEncode(s)\ngoodDecode(s)\ngoodDecodeInLoop(ss)\ngoodEncode(s)\ntestWithCapturedVar(x) |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:30:20:30:27 | /&amp;/g | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:30:20:30:27 | /&amp;/g | enclosingFunctionBody | s s replace /&amp;/g & replace /s?ome\|thin*g/g else replace /&apos;/g ' |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:30:20:30:27 | /&amp;/g | enclosingFunctionName | badDecode2 |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:30:20:30:27 | /&amp;/g | fileImports |  |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:30:20:30:27 | /&amp;/g | receiverName | s |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:30:30:30:32 | "&" | CalleeFlexibleAccessPath | s.replace |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:30:30:30:32 | "&" | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:30:30:30:32 | "&" | contextFunctionInterfaces | badDecode(s)\nbadDecode2(s)\nbadDecode3(s)\nbadEncode(s)\nbadEncode(s)\nbadEncodeWithReplacer(s)\nbadPercentEscape(s)\nbadRoundtrip(s)\nbadUnescape(s)\ncleverEncode(code)\nencodeDecodeEncode(s)\ngoodDecode(s)\ngoodDecodeInLoop(ss)\ngoodEncode(s)\ntestWithCapturedVar(x) |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:30:30:30:32 | "&" | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:30:30:30:32 | "&" | enclosingFunctionBody | s s replace /&amp;/g & replace /s?ome\|thin*g/g else replace /&apos;/g ' |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:30:30:30:32 | "&" | enclosingFunctionName | badDecode2 |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:30:30:30:32 | "&" | fileImports |  |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:30:30:30:32 | "&" | receiverName | s |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:31:20:31:34 | /s?ome\|thin*g/g | CalleeFlexibleAccessPath | s.replace().replace |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:31:20:31:34 | /s?ome\|thin*g/g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:31:20:31:34 | /s?ome\|thin*g/g | contextFunctionInterfaces | badDecode(s)\nbadDecode2(s)\nbadDecode3(s)\nbadEncode(s)\nbadEncode(s)\nbadEncodeWithReplacer(s)\nbadPercentEscape(s)\nbadRoundtrip(s)\nbadUnescape(s)\ncleverEncode(code)\nencodeDecodeEncode(s)\ngoodDecode(s)\ngoodDecodeInLoop(ss)\ngoodEncode(s)\ntestWithCapturedVar(x) |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:31:20:31:34 | /s?ome\|thin*g/g | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:31:20:31:34 | /s?ome\|thin*g/g | enclosingFunctionBody | s s replace /&amp;/g & replace /s?ome\|thin*g/g else replace /&apos;/g ' |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:31:20:31:34 | /s?ome\|thin*g/g | enclosingFunctionName | badDecode2 |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:31:20:31:34 | /s?ome\|thin*g/g | fileImports |  |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:31:37:31:42 | "else" | CalleeFlexibleAccessPath | s.replace().replace |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:31:37:31:42 | "else" | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:31:37:31:42 | "else" | contextFunctionInterfaces | badDecode(s)\nbadDecode2(s)\nbadDecode3(s)\nbadEncode(s)\nbadEncode(s)\nbadEncodeWithReplacer(s)\nbadPercentEscape(s)\nbadRoundtrip(s)\nbadUnescape(s)\ncleverEncode(code)\nencodeDecodeEncode(s)\ngoodDecode(s)\ngoodDecodeInLoop(ss)\ngoodEncode(s)\ntestWithCapturedVar(x) |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:31:37:31:42 | "else" | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:31:37:31:42 | "else" | enclosingFunctionBody | s s replace /&amp;/g & replace /s?ome\|thin*g/g else replace /&apos;/g ' |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:31:37:31:42 | "else" | enclosingFunctionName | badDecode2 |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:31:37:31:42 | "else" | fileImports |  |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:32:20:32:28 | /&apos;/g | CalleeFlexibleAccessPath | s.replace().replace().replace |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:32:20:32:28 | /&apos;/g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:32:20:32:28 | /&apos;/g | contextFunctionInterfaces | badDecode(s)\nbadDecode2(s)\nbadDecode3(s)\nbadEncode(s)\nbadEncode(s)\nbadEncodeWithReplacer(s)\nbadPercentEscape(s)\nbadRoundtrip(s)\nbadUnescape(s)\ncleverEncode(code)\nencodeDecodeEncode(s)\ngoodDecode(s)\ngoodDecodeInLoop(ss)\ngoodEncode(s)\ntestWithCapturedVar(x) |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:32:20:32:28 | /&apos;/g | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:32:20:32:28 | /&apos;/g | enclosingFunctionBody | s s replace /&amp;/g & replace /s?ome\|thin*g/g else replace /&apos;/g ' |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:32:20:32:28 | /&apos;/g | enclosingFunctionName | badDecode2 |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:32:20:32:28 | /&apos;/g | fileImports |  |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:32:31:32:33 | "'" | CalleeFlexibleAccessPath | s.replace().replace().replace |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:32:31:32:33 | "'" | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:32:31:32:33 | "'" | contextFunctionInterfaces | badDecode(s)\nbadDecode2(s)\nbadDecode3(s)\nbadEncode(s)\nbadEncode(s)\nbadEncodeWithReplacer(s)\nbadPercentEscape(s)\nbadRoundtrip(s)\nbadUnescape(s)\ncleverEncode(code)\nencodeDecodeEncode(s)\ngoodDecode(s)\ngoodDecodeInLoop(ss)\ngoodEncode(s)\ntestWithCapturedVar(x) |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:32:31:32:33 | "'" | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:32:31:32:33 | "'" | enclosingFunctionBody | s s replace /&amp;/g & replace /s?ome\|thin*g/g else replace /&apos;/g ' |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:32:31:32:33 | "'" | enclosingFunctionName | badDecode2 |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:32:31:32:33 | "'" | fileImports |  |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:38:19:38:27 | /&quot;/g | CalleeFlexibleAccessPath | s.replace |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:38:19:38:27 | /&quot;/g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:38:19:38:27 | /&quot;/g | contextFunctionInterfaces | badDecode(s)\nbadDecode2(s)\nbadDecode3(s)\nbadEncode(s)\nbadEncode(s)\nbadEncodeWithReplacer(s)\nbadPercentEscape(s)\nbadRoundtrip(s)\nbadUnescape(s)\ncleverEncode(code)\nencodeDecodeEncode(s)\ngoodDecode(s)\ngoodDecodeInLoop(ss)\ngoodEncode(s)\ntestWithCapturedVar(x) |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:38:19:38:27 | /&quot;/g | contextSurroundingFunctionParameters | (ss) |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:38:19:38:27 | /&quot;/g | enclosingFunctionBody | ss res s ss s s replace /&quot;/g " replace /&apos;/g ' replace /&amp;/g & res push s res |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:38:19:38:27 | /&quot;/g | enclosingFunctionName | goodDecodeInLoop |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:38:19:38:27 | /&quot;/g | fileImports |  |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:38:19:38:27 | /&quot;/g | receiverName | s |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:38:30:38:33 | "\\"" | CalleeFlexibleAccessPath | s.replace |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:38:30:38:33 | "\\"" | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:38:30:38:33 | "\\"" | contextFunctionInterfaces | badDecode(s)\nbadDecode2(s)\nbadDecode3(s)\nbadEncode(s)\nbadEncode(s)\nbadEncodeWithReplacer(s)\nbadPercentEscape(s)\nbadRoundtrip(s)\nbadUnescape(s)\ncleverEncode(code)\nencodeDecodeEncode(s)\ngoodDecode(s)\ngoodDecodeInLoop(ss)\ngoodEncode(s)\ntestWithCapturedVar(x) |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:38:30:38:33 | "\\"" | contextSurroundingFunctionParameters | (ss) |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:38:30:38:33 | "\\"" | enclosingFunctionBody | ss res s ss s s replace /&quot;/g " replace /&apos;/g ' replace /&amp;/g & res push s res |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:38:30:38:33 | "\\"" | enclosingFunctionName | goodDecodeInLoop |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:38:30:38:33 | "\\"" | fileImports |  |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:38:30:38:33 | "\\"" | receiverName | s |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:39:19:39:27 | /&apos;/g | CalleeFlexibleAccessPath | s.replace().replace |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:39:19:39:27 | /&apos;/g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:39:19:39:27 | /&apos;/g | contextFunctionInterfaces | badDecode(s)\nbadDecode2(s)\nbadDecode3(s)\nbadEncode(s)\nbadEncode(s)\nbadEncodeWithReplacer(s)\nbadPercentEscape(s)\nbadRoundtrip(s)\nbadUnescape(s)\ncleverEncode(code)\nencodeDecodeEncode(s)\ngoodDecode(s)\ngoodDecodeInLoop(ss)\ngoodEncode(s)\ntestWithCapturedVar(x) |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:39:19:39:27 | /&apos;/g | contextSurroundingFunctionParameters | (ss) |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:39:19:39:27 | /&apos;/g | enclosingFunctionBody | ss res s ss s s replace /&quot;/g " replace /&apos;/g ' replace /&amp;/g & res push s res |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:39:19:39:27 | /&apos;/g | enclosingFunctionName | goodDecodeInLoop |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:39:19:39:27 | /&apos;/g | fileImports |  |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:39:30:39:32 | "'" | CalleeFlexibleAccessPath | s.replace().replace |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:39:30:39:32 | "'" | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:39:30:39:32 | "'" | contextFunctionInterfaces | badDecode(s)\nbadDecode2(s)\nbadDecode3(s)\nbadEncode(s)\nbadEncode(s)\nbadEncodeWithReplacer(s)\nbadPercentEscape(s)\nbadRoundtrip(s)\nbadUnescape(s)\ncleverEncode(code)\nencodeDecodeEncode(s)\ngoodDecode(s)\ngoodDecodeInLoop(ss)\ngoodEncode(s)\ntestWithCapturedVar(x) |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:39:30:39:32 | "'" | contextSurroundingFunctionParameters | (ss) |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:39:30:39:32 | "'" | enclosingFunctionBody | ss res s ss s s replace /&quot;/g " replace /&apos;/g ' replace /&amp;/g & res push s res |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:39:30:39:32 | "'" | enclosingFunctionName | goodDecodeInLoop |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:39:30:39:32 | "'" | fileImports |  |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:40:19:40:26 | /&amp;/g | CalleeFlexibleAccessPath | s.replace().replace().replace |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:40:19:40:26 | /&amp;/g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:40:19:40:26 | /&amp;/g | contextFunctionInterfaces | badDecode(s)\nbadDecode2(s)\nbadDecode3(s)\nbadEncode(s)\nbadEncode(s)\nbadEncodeWithReplacer(s)\nbadPercentEscape(s)\nbadRoundtrip(s)\nbadUnescape(s)\ncleverEncode(code)\nencodeDecodeEncode(s)\ngoodDecode(s)\ngoodDecodeInLoop(ss)\ngoodEncode(s)\ntestWithCapturedVar(x) |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:40:19:40:26 | /&amp;/g | contextSurroundingFunctionParameters | (ss) |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:40:19:40:26 | /&amp;/g | enclosingFunctionBody | ss res s ss s s replace /&quot;/g " replace /&apos;/g ' replace /&amp;/g & res push s res |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:40:19:40:26 | /&amp;/g | enclosingFunctionName | goodDecodeInLoop |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:40:19:40:26 | /&amp;/g | fileImports |  |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:40:29:40:31 | "&" | CalleeFlexibleAccessPath | s.replace().replace().replace |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:40:29:40:31 | "&" | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:40:29:40:31 | "&" | contextFunctionInterfaces | badDecode(s)\nbadDecode2(s)\nbadDecode3(s)\nbadEncode(s)\nbadEncode(s)\nbadEncodeWithReplacer(s)\nbadPercentEscape(s)\nbadRoundtrip(s)\nbadUnescape(s)\ncleverEncode(code)\nencodeDecodeEncode(s)\ngoodDecode(s)\ngoodDecodeInLoop(ss)\ngoodEncode(s)\ntestWithCapturedVar(x) |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:40:29:40:31 | "&" | contextSurroundingFunctionParameters | (ss) |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:40:29:40:31 | "&" | enclosingFunctionBody | ss res s ss s s replace /&quot;/g " replace /&apos;/g ' replace /&amp;/g & res push s res |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:40:29:40:31 | "&" | enclosingFunctionName | goodDecodeInLoop |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:40:29:40:31 | "&" | fileImports |  |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:41:14:41:14 | s | CalleeFlexibleAccessPath | res.push |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:41:14:41:14 | s | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:41:14:41:14 | s | contextFunctionInterfaces | badDecode(s)\nbadDecode2(s)\nbadDecode3(s)\nbadEncode(s)\nbadEncode(s)\nbadEncodeWithReplacer(s)\nbadPercentEscape(s)\nbadRoundtrip(s)\nbadUnescape(s)\ncleverEncode(code)\nencodeDecodeEncode(s)\ngoodDecode(s)\ngoodDecodeInLoop(ss)\ngoodEncode(s)\ntestWithCapturedVar(x) |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:41:14:41:14 | s | contextSurroundingFunctionParameters | (ss) |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:41:14:41:14 | s | enclosingFunctionBody | ss res s ss s s replace /&quot;/g " replace /&apos;/g ' replace /&amp;/g & res push s res |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:41:14:41:14 | s | enclosingFunctionName | goodDecodeInLoop |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:41:14:41:14 | s | fileImports |  |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:41:14:41:14 | s | receiverName | res |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:47:17:47:24 | /&amp;/g | CalleeFlexibleAccessPath | s.replace |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:47:17:47:24 | /&amp;/g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:47:17:47:24 | /&amp;/g | contextFunctionInterfaces | badDecode(s)\nbadDecode2(s)\nbadDecode3(s)\nbadEncode(s)\nbadEncode(s)\nbadEncodeWithReplacer(s)\nbadPercentEscape(s)\nbadRoundtrip(s)\nbadUnescape(s)\ncleverEncode(code)\nencodeDecodeEncode(s)\ngoodDecode(s)\ngoodDecodeInLoop(ss)\ngoodEncode(s)\ntestWithCapturedVar(x) |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:47:17:47:24 | /&amp;/g | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:47:17:47:24 | /&amp;/g | enclosingFunctionBody | s s s replace /&amp;/g & s s replace /&quot;/g " s replace /&apos;/g ' |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:47:17:47:24 | /&amp;/g | enclosingFunctionName | badDecode3 |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:47:17:47:24 | /&amp;/g | fileImports |  |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:47:17:47:24 | /&amp;/g | receiverName | s |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:47:27:47:29 | "&" | CalleeFlexibleAccessPath | s.replace |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:47:27:47:29 | "&" | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:47:27:47:29 | "&" | contextFunctionInterfaces | badDecode(s)\nbadDecode2(s)\nbadDecode3(s)\nbadEncode(s)\nbadEncode(s)\nbadEncodeWithReplacer(s)\nbadPercentEscape(s)\nbadRoundtrip(s)\nbadUnescape(s)\ncleverEncode(code)\nencodeDecodeEncode(s)\ngoodDecode(s)\ngoodDecodeInLoop(ss)\ngoodEncode(s)\ntestWithCapturedVar(x) |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:47:27:47:29 | "&" | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:47:27:47:29 | "&" | enclosingFunctionBody | s s s replace /&amp;/g & s s replace /&quot;/g " s replace /&apos;/g ' |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:47:27:47:29 | "&" | enclosingFunctionName | badDecode3 |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:47:27:47:29 | "&" | fileImports |  |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:47:27:47:29 | "&" | receiverName | s |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:48:17:48:25 | /&quot;/g | CalleeFlexibleAccessPath | s.replace |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:48:17:48:25 | /&quot;/g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:48:17:48:25 | /&quot;/g | contextFunctionInterfaces | badDecode(s)\nbadDecode2(s)\nbadDecode3(s)\nbadEncode(s)\nbadEncode(s)\nbadEncodeWithReplacer(s)\nbadPercentEscape(s)\nbadRoundtrip(s)\nbadUnescape(s)\ncleverEncode(code)\nencodeDecodeEncode(s)\ngoodDecode(s)\ngoodDecodeInLoop(ss)\ngoodEncode(s)\ntestWithCapturedVar(x) |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:48:17:48:25 | /&quot;/g | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:48:17:48:25 | /&quot;/g | enclosingFunctionBody | s s s replace /&amp;/g & s s replace /&quot;/g " s replace /&apos;/g ' |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:48:17:48:25 | /&quot;/g | enclosingFunctionName | badDecode3 |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:48:17:48:25 | /&quot;/g | fileImports |  |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:48:17:48:25 | /&quot;/g | receiverName | s |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:48:28:48:31 | "\\"" | CalleeFlexibleAccessPath | s.replace |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:48:28:48:31 | "\\"" | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:48:28:48:31 | "\\"" | contextFunctionInterfaces | badDecode(s)\nbadDecode2(s)\nbadDecode3(s)\nbadEncode(s)\nbadEncode(s)\nbadEncodeWithReplacer(s)\nbadPercentEscape(s)\nbadRoundtrip(s)\nbadUnescape(s)\ncleverEncode(code)\nencodeDecodeEncode(s)\ngoodDecode(s)\ngoodDecodeInLoop(ss)\ngoodEncode(s)\ntestWithCapturedVar(x) |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:48:28:48:31 | "\\"" | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:48:28:48:31 | "\\"" | enclosingFunctionBody | s s s replace /&amp;/g & s s replace /&quot;/g " s replace /&apos;/g ' |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:48:28:48:31 | "\\"" | enclosingFunctionName | badDecode3 |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:48:28:48:31 | "\\"" | fileImports |  |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:48:28:48:31 | "\\"" | receiverName | s |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:49:20:49:28 | /&apos;/g | CalleeFlexibleAccessPath | s.replace |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:49:20:49:28 | /&apos;/g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:49:20:49:28 | /&apos;/g | contextFunctionInterfaces | badDecode(s)\nbadDecode2(s)\nbadDecode3(s)\nbadEncode(s)\nbadEncode(s)\nbadEncodeWithReplacer(s)\nbadPercentEscape(s)\nbadRoundtrip(s)\nbadUnescape(s)\ncleverEncode(code)\nencodeDecodeEncode(s)\ngoodDecode(s)\ngoodDecodeInLoop(ss)\ngoodEncode(s)\ntestWithCapturedVar(x) |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:49:20:49:28 | /&apos;/g | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:49:20:49:28 | /&apos;/g | enclosingFunctionBody | s s s replace /&amp;/g & s s replace /&quot;/g " s replace /&apos;/g ' |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:49:20:49:28 | /&apos;/g | enclosingFunctionName | badDecode3 |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:49:20:49:28 | /&apos;/g | fileImports |  |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:49:20:49:28 | /&apos;/g | receiverName | s |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:49:31:49:33 | "'" | CalleeFlexibleAccessPath | s.replace |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:49:31:49:33 | "'" | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:49:31:49:33 | "'" | contextFunctionInterfaces | badDecode(s)\nbadDecode2(s)\nbadDecode3(s)\nbadEncode(s)\nbadEncode(s)\nbadEncodeWithReplacer(s)\nbadPercentEscape(s)\nbadRoundtrip(s)\nbadUnescape(s)\ncleverEncode(code)\nencodeDecodeEncode(s)\ngoodDecode(s)\ngoodDecodeInLoop(ss)\ngoodEncode(s)\ntestWithCapturedVar(x) |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:49:31:49:33 | "'" | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:49:31:49:33 | "'" | enclosingFunctionBody | s s s replace /&amp;/g & s s replace /&quot;/g " s replace /&apos;/g ' |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:49:31:49:33 | "'" | enclosingFunctionName | badDecode3 |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:49:31:49:33 | "'" | fileImports |  |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:49:31:49:33 | "'" | receiverName | s |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:53:20:53:26 | /\\\\\\\\/g | CalleeFlexibleAccessPath | s.replace |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:53:20:53:26 | /\\\\\\\\/g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:53:20:53:26 | /\\\\\\\\/g | contextFunctionInterfaces | badDecode(s)\nbadDecode2(s)\nbadDecode3(s)\nbadEncode(s)\nbadEncode(s)\nbadEncodeWithReplacer(s)\nbadPercentEscape(s)\nbadRoundtrip(s)\nbadUnescape(s)\ncleverEncode(code)\nencodeDecodeEncode(s)\ngoodDecode(s)\ngoodDecodeInLoop(ss)\ngoodEncode(s)\ntestWithCapturedVar(x) |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:53:20:53:26 | /\\\\\\\\/g | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:53:20:53:26 | /\\\\\\\\/g | enclosingFunctionBody | s s replace /\\\\\\\\/g \\ replace /\\\\'/g ' replace /\\\\"/g " |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:53:20:53:26 | /\\\\\\\\/g | enclosingFunctionName | badUnescape |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:53:20:53:26 | /\\\\\\\\/g | fileImports |  |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:53:20:53:26 | /\\\\\\\\/g | receiverName | s |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:53:29:53:32 | '\\\\' | CalleeFlexibleAccessPath | s.replace |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:53:29:53:32 | '\\\\' | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:53:29:53:32 | '\\\\' | contextFunctionInterfaces | badDecode(s)\nbadDecode2(s)\nbadDecode3(s)\nbadEncode(s)\nbadEncode(s)\nbadEncodeWithReplacer(s)\nbadPercentEscape(s)\nbadRoundtrip(s)\nbadUnescape(s)\ncleverEncode(code)\nencodeDecodeEncode(s)\ngoodDecode(s)\ngoodDecodeInLoop(ss)\ngoodEncode(s)\ntestWithCapturedVar(x) |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:53:29:53:32 | '\\\\' | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:53:29:53:32 | '\\\\' | enclosingFunctionBody | s s replace /\\\\\\\\/g \\ replace /\\\\'/g ' replace /\\\\"/g " |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:53:29:53:32 | '\\\\' | enclosingFunctionName | badUnescape |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:53:29:53:32 | '\\\\' | fileImports |  |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:53:29:53:32 | '\\\\' | receiverName | s |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:54:21:54:26 | /\\\\'/g | CalleeFlexibleAccessPath | s.replace().replace |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:54:21:54:26 | /\\\\'/g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:54:21:54:26 | /\\\\'/g | contextFunctionInterfaces | badDecode(s)\nbadDecode2(s)\nbadDecode3(s)\nbadEncode(s)\nbadEncode(s)\nbadEncodeWithReplacer(s)\nbadPercentEscape(s)\nbadRoundtrip(s)\nbadUnescape(s)\ncleverEncode(code)\nencodeDecodeEncode(s)\ngoodDecode(s)\ngoodDecodeInLoop(ss)\ngoodEncode(s)\ntestWithCapturedVar(x) |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:54:21:54:26 | /\\\\'/g | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:54:21:54:26 | /\\\\'/g | enclosingFunctionBody | s s replace /\\\\\\\\/g \\ replace /\\\\'/g ' replace /\\\\"/g " |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:54:21:54:26 | /\\\\'/g | enclosingFunctionName | badUnescape |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:54:21:54:26 | /\\\\'/g | fileImports |  |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:54:29:54:32 | '\\'' | CalleeFlexibleAccessPath | s.replace().replace |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:54:29:54:32 | '\\'' | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:54:29:54:32 | '\\'' | contextFunctionInterfaces | badDecode(s)\nbadDecode2(s)\nbadDecode3(s)\nbadEncode(s)\nbadEncode(s)\nbadEncodeWithReplacer(s)\nbadPercentEscape(s)\nbadRoundtrip(s)\nbadUnescape(s)\ncleverEncode(code)\nencodeDecodeEncode(s)\ngoodDecode(s)\ngoodDecodeInLoop(ss)\ngoodEncode(s)\ntestWithCapturedVar(x) |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:54:29:54:32 | '\\'' | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:54:29:54:32 | '\\'' | enclosingFunctionBody | s s replace /\\\\\\\\/g \\ replace /\\\\'/g ' replace /\\\\"/g " |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:54:29:54:32 | '\\'' | enclosingFunctionName | badUnescape |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:54:29:54:32 | '\\'' | fileImports |  |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:55:21:55:26 | /\\\\"/g | CalleeFlexibleAccessPath | s.replace().replace().replace |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:55:21:55:26 | /\\\\"/g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:55:21:55:26 | /\\\\"/g | contextFunctionInterfaces | badDecode(s)\nbadDecode2(s)\nbadDecode3(s)\nbadEncode(s)\nbadEncode(s)\nbadEncodeWithReplacer(s)\nbadPercentEscape(s)\nbadRoundtrip(s)\nbadUnescape(s)\ncleverEncode(code)\nencodeDecodeEncode(s)\ngoodDecode(s)\ngoodDecodeInLoop(ss)\ngoodEncode(s)\ntestWithCapturedVar(x) |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:55:21:55:26 | /\\\\"/g | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:55:21:55:26 | /\\\\"/g | enclosingFunctionBody | s s replace /\\\\\\\\/g \\ replace /\\\\'/g ' replace /\\\\"/g " |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:55:21:55:26 | /\\\\"/g | enclosingFunctionName | badUnescape |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:55:21:55:26 | /\\\\"/g | fileImports |  |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:55:29:55:32 | '\\"' | CalleeFlexibleAccessPath | s.replace().replace().replace |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:55:29:55:32 | '\\"' | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:55:29:55:32 | '\\"' | contextFunctionInterfaces | badDecode(s)\nbadDecode2(s)\nbadDecode3(s)\nbadEncode(s)\nbadEncode(s)\nbadEncodeWithReplacer(s)\nbadPercentEscape(s)\nbadRoundtrip(s)\nbadUnescape(s)\ncleverEncode(code)\nencodeDecodeEncode(s)\ngoodDecode(s)\ngoodDecodeInLoop(ss)\ngoodEncode(s)\ntestWithCapturedVar(x) |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:55:29:55:32 | '\\"' | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:55:29:55:32 | '\\"' | enclosingFunctionBody | s s replace /\\\\\\\\/g \\ replace /\\\\'/g ' replace /\\\\"/g " |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:55:29:55:32 | '\\"' | enclosingFunctionName | badUnescape |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:55:29:55:32 | '\\"' | fileImports |  |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:59:17:59:20 | /&/g | CalleeFlexibleAccessPath | s.replace |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:59:17:59:20 | /&/g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:59:17:59:20 | /&/g | contextFunctionInterfaces | badDecode(s)\nbadDecode2(s)\nbadDecode3(s)\nbadEncode(s)\nbadEncode(s)\nbadEncodeWithReplacer(s)\nbadPercentEscape(s)\nbadRoundtrip(s)\nbadUnescape(s)\ncleverEncode(code)\nencodeDecodeEncode(s)\ngoodDecode(s)\ngoodDecodeInLoop(ss)\ngoodEncode(s)\ntestWithCapturedVar(x) |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:59:17:59:20 | /&/g | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:59:17:59:20 | /&/g | enclosingFunctionBody | s s s replace /&/g %26 s s replace /%/g %25 s |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:59:17:59:20 | /&/g | enclosingFunctionName | badPercentEscape |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:59:17:59:20 | /&/g | fileImports |  |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:59:17:59:20 | /&/g | receiverName | s |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:59:23:59:27 | '%26' | CalleeFlexibleAccessPath | s.replace |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:59:23:59:27 | '%26' | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:59:23:59:27 | '%26' | contextFunctionInterfaces | badDecode(s)\nbadDecode2(s)\nbadDecode3(s)\nbadEncode(s)\nbadEncode(s)\nbadEncodeWithReplacer(s)\nbadPercentEscape(s)\nbadRoundtrip(s)\nbadUnescape(s)\ncleverEncode(code)\nencodeDecodeEncode(s)\ngoodDecode(s)\ngoodDecodeInLoop(ss)\ngoodEncode(s)\ntestWithCapturedVar(x) |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:59:23:59:27 | '%26' | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:59:23:59:27 | '%26' | enclosingFunctionBody | s s s replace /&/g %26 s s replace /%/g %25 s |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:59:23:59:27 | '%26' | enclosingFunctionName | badPercentEscape |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:59:23:59:27 | '%26' | fileImports |  |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:59:23:59:27 | '%26' | receiverName | s |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:60:17:60:20 | /%/g | CalleeFlexibleAccessPath | s.replace |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:60:17:60:20 | /%/g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:60:17:60:20 | /%/g | contextFunctionInterfaces | badDecode(s)\nbadDecode2(s)\nbadDecode3(s)\nbadEncode(s)\nbadEncode(s)\nbadEncodeWithReplacer(s)\nbadPercentEscape(s)\nbadRoundtrip(s)\nbadUnescape(s)\ncleverEncode(code)\nencodeDecodeEncode(s)\ngoodDecode(s)\ngoodDecodeInLoop(ss)\ngoodEncode(s)\ntestWithCapturedVar(x) |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:60:17:60:20 | /%/g | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:60:17:60:20 | /%/g | enclosingFunctionBody | s s s replace /&/g %26 s s replace /%/g %25 s |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:60:17:60:20 | /%/g | enclosingFunctionName | badPercentEscape |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:60:17:60:20 | /%/g | fileImports |  |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:60:17:60:20 | /%/g | receiverName | s |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:60:23:60:27 | '%25' | CalleeFlexibleAccessPath | s.replace |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:60:23:60:27 | '%25' | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:60:23:60:27 | '%25' | contextFunctionInterfaces | badDecode(s)\nbadDecode2(s)\nbadDecode3(s)\nbadEncode(s)\nbadEncode(s)\nbadEncodeWithReplacer(s)\nbadPercentEscape(s)\nbadRoundtrip(s)\nbadUnescape(s)\ncleverEncode(code)\nencodeDecodeEncode(s)\ngoodDecode(s)\ngoodDecodeInLoop(ss)\ngoodEncode(s)\ntestWithCapturedVar(x) |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:60:23:60:27 | '%25' | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:60:23:60:27 | '%25' | enclosingFunctionBody | s s s replace /&/g %26 s s replace /%/g %25 s |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:60:23:60:27 | '%25' | enclosingFunctionName | badPercentEscape |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:60:23:60:27 | '%25' | fileImports |  |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:60:23:60:27 | '%25' | receiverName | s |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:68:20:68:28 | indirect1 | CalleeFlexibleAccessPath | s.replace |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:68:20:68:28 | indirect1 | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:68:20:68:28 | indirect1 | contextFunctionInterfaces | badDecode(s)\nbadDecode2(s)\nbadDecode3(s)\nbadEncode(s)\nbadEncode(s)\nbadEncodeWithReplacer(s)\nbadPercentEscape(s)\nbadRoundtrip(s)\nbadUnescape(s)\ncleverEncode(code)\nencodeDecodeEncode(s)\ngoodDecode(s)\ngoodDecodeInLoop(ss)\ngoodEncode(s)\ntestWithCapturedVar(x) |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:68:20:68:28 | indirect1 | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:68:20:68:28 | indirect1 | enclosingFunctionBody | s indirect1 /"/g indirect2 /'/g indirect3 /&/g s replace indirect1 &quot; replace indirect2 &apos; replace indirect3 &amp; |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:68:20:68:28 | indirect1 | enclosingFunctionName | badEncode |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:68:20:68:28 | indirect1 | fileImports |  |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:68:20:68:28 | indirect1 | receiverName | s |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:68:31:68:38 | "&quot;" | CalleeFlexibleAccessPath | s.replace |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:68:31:68:38 | "&quot;" | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:68:31:68:38 | "&quot;" | contextFunctionInterfaces | badDecode(s)\nbadDecode2(s)\nbadDecode3(s)\nbadEncode(s)\nbadEncode(s)\nbadEncodeWithReplacer(s)\nbadPercentEscape(s)\nbadRoundtrip(s)\nbadUnescape(s)\ncleverEncode(code)\nencodeDecodeEncode(s)\ngoodDecode(s)\ngoodDecodeInLoop(ss)\ngoodEncode(s)\ntestWithCapturedVar(x) |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:68:31:68:38 | "&quot;" | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:68:31:68:38 | "&quot;" | enclosingFunctionBody | s indirect1 /"/g indirect2 /'/g indirect3 /&/g s replace indirect1 &quot; replace indirect2 &apos; replace indirect3 &amp; |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:68:31:68:38 | "&quot;" | enclosingFunctionName | badEncode |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:68:31:68:38 | "&quot;" | fileImports |  |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:68:31:68:38 | "&quot;" | receiverName | s |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:69:20:69:28 | indirect2 | CalleeFlexibleAccessPath | s.replace().replace |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:69:20:69:28 | indirect2 | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:69:20:69:28 | indirect2 | contextFunctionInterfaces | badDecode(s)\nbadDecode2(s)\nbadDecode3(s)\nbadEncode(s)\nbadEncode(s)\nbadEncodeWithReplacer(s)\nbadPercentEscape(s)\nbadRoundtrip(s)\nbadUnescape(s)\ncleverEncode(code)\nencodeDecodeEncode(s)\ngoodDecode(s)\ngoodDecodeInLoop(ss)\ngoodEncode(s)\ntestWithCapturedVar(x) |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:69:20:69:28 | indirect2 | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:69:20:69:28 | indirect2 | enclosingFunctionBody | s indirect1 /"/g indirect2 /'/g indirect3 /&/g s replace indirect1 &quot; replace indirect2 &apos; replace indirect3 &amp; |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:69:20:69:28 | indirect2 | enclosingFunctionName | badEncode |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:69:20:69:28 | indirect2 | fileImports |  |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:69:31:69:38 | "&apos;" | CalleeFlexibleAccessPath | s.replace().replace |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:69:31:69:38 | "&apos;" | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:69:31:69:38 | "&apos;" | contextFunctionInterfaces | badDecode(s)\nbadDecode2(s)\nbadDecode3(s)\nbadEncode(s)\nbadEncode(s)\nbadEncodeWithReplacer(s)\nbadPercentEscape(s)\nbadRoundtrip(s)\nbadUnescape(s)\ncleverEncode(code)\nencodeDecodeEncode(s)\ngoodDecode(s)\ngoodDecodeInLoop(ss)\ngoodEncode(s)\ntestWithCapturedVar(x) |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:69:31:69:38 | "&apos;" | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:69:31:69:38 | "&apos;" | enclosingFunctionBody | s indirect1 /"/g indirect2 /'/g indirect3 /&/g s replace indirect1 &quot; replace indirect2 &apos; replace indirect3 &amp; |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:69:31:69:38 | "&apos;" | enclosingFunctionName | badEncode |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:69:31:69:38 | "&apos;" | fileImports |  |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:70:20:70:28 | indirect3 | CalleeFlexibleAccessPath | s.replace().replace().replace |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:70:20:70:28 | indirect3 | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:70:20:70:28 | indirect3 | contextFunctionInterfaces | badDecode(s)\nbadDecode2(s)\nbadDecode3(s)\nbadEncode(s)\nbadEncode(s)\nbadEncodeWithReplacer(s)\nbadPercentEscape(s)\nbadRoundtrip(s)\nbadUnescape(s)\ncleverEncode(code)\nencodeDecodeEncode(s)\ngoodDecode(s)\ngoodDecodeInLoop(ss)\ngoodEncode(s)\ntestWithCapturedVar(x) |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:70:20:70:28 | indirect3 | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:70:20:70:28 | indirect3 | enclosingFunctionBody | s indirect1 /"/g indirect2 /'/g indirect3 /&/g s replace indirect1 &quot; replace indirect2 &apos; replace indirect3 &amp; |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:70:20:70:28 | indirect3 | enclosingFunctionName | badEncode |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:70:20:70:28 | indirect3 | fileImports |  |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:70:31:70:37 | "&amp;" | CalleeFlexibleAccessPath | s.replace().replace().replace |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:70:31:70:37 | "&amp;" | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:70:31:70:37 | "&amp;" | contextFunctionInterfaces | badDecode(s)\nbadDecode2(s)\nbadDecode3(s)\nbadEncode(s)\nbadEncode(s)\nbadEncodeWithReplacer(s)\nbadPercentEscape(s)\nbadRoundtrip(s)\nbadUnescape(s)\ncleverEncode(code)\nencodeDecodeEncode(s)\ngoodDecode(s)\ngoodDecodeInLoop(ss)\ngoodEncode(s)\ntestWithCapturedVar(x) |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:70:31:70:37 | "&amp;" | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:70:31:70:37 | "&amp;" | enclosingFunctionBody | s indirect1 /"/g indirect2 /'/g indirect3 /&/g s replace indirect1 &quot; replace indirect2 &apos; replace indirect3 &amp; |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:70:31:70:37 | "&amp;" | enclosingFunctionName | badEncode |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:70:31:70:37 | "&amp;" | fileImports |  |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:79:20:79:26 | /["']/g | CalleeFlexibleAccessPath | s.replace |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:79:20:79:26 | /["']/g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:79:20:79:26 | /["']/g | contextFunctionInterfaces | badDecode(s)\nbadDecode2(s)\nbadDecode3(s)\nbadEncode(s)\nbadEncode(s)\nbadEncodeWithReplacer(s)\nbadPercentEscape(s)\nbadRoundtrip(s)\nbadUnescape(s)\ncleverEncode(code)\nencodeDecodeEncode(s)\ngoodDecode(s)\ngoodDecodeInLoop(ss)\ngoodEncode(s)\ntestWithCapturedVar(x) |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:79:20:79:26 | /["']/g | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:79:20:79:26 | /["']/g | enclosingFunctionBody | s repl " &quot; ' &apos; & &amp; s replace /["']/g c repl c replace /&/g &amp; |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:79:20:79:26 | /["']/g | enclosingFunctionName | badEncodeWithReplacer |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:79:20:79:26 | /["']/g | fileImports |  |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:79:20:79:26 | /["']/g | receiverName | s |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:79:29:79:42 | (c) => repl[c] | CalleeFlexibleAccessPath | s.replace |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:79:29:79:42 | (c) => repl[c] | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:79:29:79:42 | (c) => repl[c] | contextFunctionInterfaces | badDecode(s)\nbadDecode2(s)\nbadDecode3(s)\nbadEncode(s)\nbadEncode(s)\nbadEncodeWithReplacer(s)\nbadPercentEscape(s)\nbadRoundtrip(s)\nbadUnescape(s)\ncleverEncode(code)\nencodeDecodeEncode(s)\ngoodDecode(s)\ngoodDecodeInLoop(ss)\ngoodEncode(s)\ntestWithCapturedVar(x) |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:79:29:79:42 | (c) => repl[c] | contextSurroundingFunctionParameters | (s)\n(c) |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:79:29:79:42 | (c) => repl[c] | enclosingFunctionBody | s repl " &quot; ' &apos; & &amp; s replace /["']/g c repl c replace /&/g &amp; |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:79:29:79:42 | (c) => repl[c] | enclosingFunctionName | badEncodeWithReplacer |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:79:29:79:42 | (c) => repl[c] | fileImports |  |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:79:29:79:42 | (c) => repl[c] | receiverName | s |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:79:53:79:56 | /&/g | CalleeFlexibleAccessPath | s.replace().replace |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:79:53:79:56 | /&/g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:79:53:79:56 | /&/g | contextFunctionInterfaces | badDecode(s)\nbadDecode2(s)\nbadDecode3(s)\nbadEncode(s)\nbadEncode(s)\nbadEncodeWithReplacer(s)\nbadPercentEscape(s)\nbadRoundtrip(s)\nbadUnescape(s)\ncleverEncode(code)\nencodeDecodeEncode(s)\ngoodDecode(s)\ngoodDecodeInLoop(ss)\ngoodEncode(s)\ntestWithCapturedVar(x) |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:79:53:79:56 | /&/g | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:79:53:79:56 | /&/g | enclosingFunctionBody | s repl " &quot; ' &apos; & &amp; s replace /["']/g c repl c replace /&/g &amp; |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:79:53:79:56 | /&/g | enclosingFunctionName | badEncodeWithReplacer |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:79:53:79:56 | /&/g | fileImports |  |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:79:59:79:65 | "&amp;" | CalleeFlexibleAccessPath | s.replace().replace |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:79:59:79:65 | "&amp;" | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:79:59:79:65 | "&amp;" | contextFunctionInterfaces | badDecode(s)\nbadDecode2(s)\nbadDecode3(s)\nbadEncode(s)\nbadEncode(s)\nbadEncodeWithReplacer(s)\nbadPercentEscape(s)\nbadRoundtrip(s)\nbadUnescape(s)\ncleverEncode(code)\nencodeDecodeEncode(s)\ngoodDecode(s)\ngoodDecodeInLoop(ss)\ngoodEncode(s)\ntestWithCapturedVar(x) |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:79:59:79:65 | "&amp;" | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:79:59:79:65 | "&amp;" | enclosingFunctionBody | s repl " &quot; ' &apos; & &amp; s replace /["']/g c repl c replace /&/g &amp; |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:79:59:79:65 | "&amp;" | enclosingFunctionName | badEncodeWithReplacer |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:79:59:79:65 | "&amp;" | fileImports |  |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:84:20:84:26 | /\\\\\\\\/g | CalleeFlexibleAccessPath | s.replace |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:84:20:84:26 | /\\\\\\\\/g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:84:20:84:26 | /\\\\\\\\/g | contextFunctionInterfaces | badDecode(s)\nbadDecode2(s)\nbadDecode3(s)\nbadEncode(s)\nbadEncode(s)\nbadEncodeWithReplacer(s)\nbadPercentEscape(s)\nbadRoundtrip(s)\nbadUnescape(s)\ncleverEncode(code)\nencodeDecodeEncode(s)\ngoodDecode(s)\ngoodDecodeInLoop(ss)\ngoodEncode(s)\ntestWithCapturedVar(x) |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:84:20:84:26 | /\\\\\\\\/g | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:84:20:84:26 | /\\\\\\\\/g | enclosingFunctionBody | s s replace /\\\\\\\\/g \\ replace /\\\\/g \\\\ |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:84:20:84:26 | /\\\\\\\\/g | enclosingFunctionName | badRoundtrip |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:84:20:84:26 | /\\\\\\\\/g | fileImports |  |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:84:20:84:26 | /\\\\\\\\/g | receiverName | s |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:84:29:84:32 | "\\\\" | CalleeFlexibleAccessPath | s.replace |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:84:29:84:32 | "\\\\" | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:84:29:84:32 | "\\\\" | contextFunctionInterfaces | badDecode(s)\nbadDecode2(s)\nbadDecode3(s)\nbadEncode(s)\nbadEncode(s)\nbadEncodeWithReplacer(s)\nbadPercentEscape(s)\nbadRoundtrip(s)\nbadUnescape(s)\ncleverEncode(code)\nencodeDecodeEncode(s)\ngoodDecode(s)\ngoodDecodeInLoop(ss)\ngoodEncode(s)\ntestWithCapturedVar(x) |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:84:29:84:32 | "\\\\" | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:84:29:84:32 | "\\\\" | enclosingFunctionBody | s s replace /\\\\\\\\/g \\ replace /\\\\/g \\\\ |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:84:29:84:32 | "\\\\" | enclosingFunctionName | badRoundtrip |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:84:29:84:32 | "\\\\" | fileImports |  |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:84:29:84:32 | "\\\\" | receiverName | s |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:84:43:84:47 | /\\\\/g | CalleeFlexibleAccessPath | s.replace().replace |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:84:43:84:47 | /\\\\/g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:84:43:84:47 | /\\\\/g | contextFunctionInterfaces | badDecode(s)\nbadDecode2(s)\nbadDecode3(s)\nbadEncode(s)\nbadEncode(s)\nbadEncodeWithReplacer(s)\nbadPercentEscape(s)\nbadRoundtrip(s)\nbadUnescape(s)\ncleverEncode(code)\nencodeDecodeEncode(s)\ngoodDecode(s)\ngoodDecodeInLoop(ss)\ngoodEncode(s)\ntestWithCapturedVar(x) |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:84:43:84:47 | /\\\\/g | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:84:43:84:47 | /\\\\/g | enclosingFunctionBody | s s replace /\\\\\\\\/g \\ replace /\\\\/g \\\\ |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:84:43:84:47 | /\\\\/g | enclosingFunctionName | badRoundtrip |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:84:43:84:47 | /\\\\/g | fileImports |  |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:84:50:84:55 | "\\\\\\\\" | CalleeFlexibleAccessPath | s.replace().replace |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:84:50:84:55 | "\\\\\\\\" | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:84:50:84:55 | "\\\\\\\\" | contextFunctionInterfaces | badDecode(s)\nbadDecode2(s)\nbadDecode3(s)\nbadEncode(s)\nbadEncode(s)\nbadEncodeWithReplacer(s)\nbadPercentEscape(s)\nbadRoundtrip(s)\nbadUnescape(s)\ncleverEncode(code)\nencodeDecodeEncode(s)\ngoodDecode(s)\ngoodDecodeInLoop(ss)\ngoodEncode(s)\ntestWithCapturedVar(x) |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:84:50:84:55 | "\\\\\\\\" | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:84:50:84:55 | "\\\\\\\\" | enclosingFunctionBody | s s replace /\\\\\\\\/g \\ replace /\\\\/g \\\\ |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:84:50:84:55 | "\\\\\\\\" | enclosingFunctionName | badRoundtrip |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:84:50:84:55 | "\\\\\\\\" | fileImports |  |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:90:33:90:37 | /\\\\/g | CalleeFlexibleAccessPath | captured.replace |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:90:33:90:37 | /\\\\/g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:90:33:90:37 | /\\\\/g | contextFunctionInterfaces | badDecode(s)\nbadDecode2(s)\nbadDecode3(s)\nbadEncode(s)\nbadEncode(s)\nbadEncodeWithReplacer(s)\nbadPercentEscape(s)\nbadRoundtrip(s)\nbadUnescape(s)\ncleverEncode(code)\nencodeDecodeEncode(s)\ngoodDecode(s)\ngoodDecodeInLoop(ss)\ngoodEncode(s)\ntestWithCapturedVar(x) |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:90:33:90:37 | /\\\\/g | contextSurroundingFunctionParameters | (x)\n() |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:90:33:90:37 | /\\\\/g | enclosingFunctionBody | x captured x captured captured replace /\\\\/g \\\\ |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:90:33:90:37 | /\\\\/g | enclosingFunctionName | testWithCapturedVar |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:90:33:90:37 | /\\\\/g | fileImports |  |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:90:33:90:37 | /\\\\/g | receiverName | captured |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:90:40:90:45 | "\\\\\\\\" | CalleeFlexibleAccessPath | captured.replace |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:90:40:90:45 | "\\\\\\\\" | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:90:40:90:45 | "\\\\\\\\" | contextFunctionInterfaces | badDecode(s)\nbadDecode2(s)\nbadDecode3(s)\nbadEncode(s)\nbadEncode(s)\nbadEncodeWithReplacer(s)\nbadPercentEscape(s)\nbadRoundtrip(s)\nbadUnescape(s)\ncleverEncode(code)\nencodeDecodeEncode(s)\ngoodDecode(s)\ngoodDecodeInLoop(ss)\ngoodEncode(s)\ntestWithCapturedVar(x) |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:90:40:90:45 | "\\\\\\\\" | contextSurroundingFunctionParameters | (x)\n() |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:90:40:90:45 | "\\\\\\\\" | enclosingFunctionBody | x captured x captured captured replace /\\\\/g \\\\ |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:90:40:90:45 | "\\\\\\\\" | enclosingFunctionName | testWithCapturedVar |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:90:40:90:45 | "\\\\\\\\" | fileImports |  |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:90:40:90:45 | "\\\\\\\\" | receiverName | captured |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:7:3:7:95 | /<(?!ar ... )\\/>/gi | CalleeFlexibleAccessPath | html.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:7:3:7:95 | /<(?!ar ... )\\/>/gi | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:7:3:7:95 | /<(?!ar ... )\\/>/gi | contextFunctionInterfaces | getExpanded()\ngetPattern() |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:7:3:7:95 | /<(?!ar ... )\\/>/gi | contextSurroundingFunctionParameters | () |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:7:3:7:95 | /<(?!ar ... )\\/>/gi | enclosingFunctionBody | defaultPattern /<(([\\w:]+)[^>]*)\\/>/gi expanded <$1></$2> html replace /<(?!area\|br\|col\|embed\|hr\|img\|input\|link\|meta\|param)(([a-z][^\\/\\0>\\x20\\t\\r\\n\\f]*)[^>]*)\\/>/gi expanded html replace /<(([a-z][^\\/\\0>\\x20\\t\\r\\n\\f]*)[^>]*)\\/>/gi expanded html replace /<(?!area\|br\|col\|embed\|hr\|img\|input\|link\|meta\|param)(([\\w:]+)[^>]*)\\/>/gi expanded html replace /<(([\\w:]+)[^>]*)\\/>/gi expanded html replace /<(?!area\|br\|col\|embed\|hr\|img\|input\|link\|meta\|param)(([\\w:-]+)[^>]*)\\/>/gi expanded html replace /<(([\\w:-]+)[^>]*)\\/>/gi expanded html replace defaultPattern expanded getPattern defaultPattern html replace getPattern expanded getExpanded expanded html replace defaultPattern getExpanded html replace defaultPattern something defaultPattern match something getPattern match something |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:7:3:7:95 | /<(?!ar ... )\\/>/gi | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:7:3:7:95 | /<(?!ar ... )\\/>/gi | fileImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:7:3:7:95 | /<(?!ar ... )\\/>/gi | receiverName | html |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:8:3:8:10 | expanded | CalleeFlexibleAccessPath | html.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:8:3:8:10 | expanded | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:8:3:8:10 | expanded | contextFunctionInterfaces | getExpanded()\ngetPattern() |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:8:3:8:10 | expanded | contextSurroundingFunctionParameters | () |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:8:3:8:10 | expanded | enclosingFunctionBody | defaultPattern /<(([\\w:]+)[^>]*)\\/>/gi expanded <$1></$2> html replace /<(?!area\|br\|col\|embed\|hr\|img\|input\|link\|meta\|param)(([a-z][^\\/\\0>\\x20\\t\\r\\n\\f]*)[^>]*)\\/>/gi expanded html replace /<(([a-z][^\\/\\0>\\x20\\t\\r\\n\\f]*)[^>]*)\\/>/gi expanded html replace /<(?!area\|br\|col\|embed\|hr\|img\|input\|link\|meta\|param)(([\\w:]+)[^>]*)\\/>/gi expanded html replace /<(([\\w:]+)[^>]*)\\/>/gi expanded html replace /<(?!area\|br\|col\|embed\|hr\|img\|input\|link\|meta\|param)(([\\w:-]+)[^>]*)\\/>/gi expanded html replace /<(([\\w:-]+)[^>]*)\\/>/gi expanded html replace defaultPattern expanded getPattern defaultPattern html replace getPattern expanded getExpanded expanded html replace defaultPattern getExpanded html replace defaultPattern something defaultPattern match something getPattern match something |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:8:3:8:10 | expanded | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:8:3:8:10 | expanded | fileImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:8:3:8:10 | expanded | receiverName | html |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:10:15:10:57 | /<(([a- ... )\\/>/gi | CalleeFlexibleAccessPath | html.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:10:15:10:57 | /<(([a- ... )\\/>/gi | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:10:15:10:57 | /<(([a- ... )\\/>/gi | contextFunctionInterfaces | getExpanded()\ngetPattern() |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:10:15:10:57 | /<(([a- ... )\\/>/gi | contextSurroundingFunctionParameters | () |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:10:15:10:57 | /<(([a- ... )\\/>/gi | enclosingFunctionBody | defaultPattern /<(([\\w:]+)[^>]*)\\/>/gi expanded <$1></$2> html replace /<(?!area\|br\|col\|embed\|hr\|img\|input\|link\|meta\|param)(([a-z][^\\/\\0>\\x20\\t\\r\\n\\f]*)[^>]*)\\/>/gi expanded html replace /<(([a-z][^\\/\\0>\\x20\\t\\r\\n\\f]*)[^>]*)\\/>/gi expanded html replace /<(?!area\|br\|col\|embed\|hr\|img\|input\|link\|meta\|param)(([\\w:]+)[^>]*)\\/>/gi expanded html replace /<(([\\w:]+)[^>]*)\\/>/gi expanded html replace /<(?!area\|br\|col\|embed\|hr\|img\|input\|link\|meta\|param)(([\\w:-]+)[^>]*)\\/>/gi expanded html replace /<(([\\w:-]+)[^>]*)\\/>/gi expanded html replace defaultPattern expanded getPattern defaultPattern html replace getPattern expanded getExpanded expanded html replace defaultPattern getExpanded html replace defaultPattern something defaultPattern match something getPattern match something |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:10:15:10:57 | /<(([a- ... )\\/>/gi | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:10:15:10:57 | /<(([a- ... )\\/>/gi | fileImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:10:15:10:57 | /<(([a- ... )\\/>/gi | receiverName | html |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:10:60:10:67 | expanded | CalleeFlexibleAccessPath | html.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:10:60:10:67 | expanded | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:10:60:10:67 | expanded | contextFunctionInterfaces | getExpanded()\ngetPattern() |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:10:60:10:67 | expanded | contextSurroundingFunctionParameters | () |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:10:60:10:67 | expanded | enclosingFunctionBody | defaultPattern /<(([\\w:]+)[^>]*)\\/>/gi expanded <$1></$2> html replace /<(?!area\|br\|col\|embed\|hr\|img\|input\|link\|meta\|param)(([a-z][^\\/\\0>\\x20\\t\\r\\n\\f]*)[^>]*)\\/>/gi expanded html replace /<(([a-z][^\\/\\0>\\x20\\t\\r\\n\\f]*)[^>]*)\\/>/gi expanded html replace /<(?!area\|br\|col\|embed\|hr\|img\|input\|link\|meta\|param)(([\\w:]+)[^>]*)\\/>/gi expanded html replace /<(([\\w:]+)[^>]*)\\/>/gi expanded html replace /<(?!area\|br\|col\|embed\|hr\|img\|input\|link\|meta\|param)(([\\w:-]+)[^>]*)\\/>/gi expanded html replace /<(([\\w:-]+)[^>]*)\\/>/gi expanded html replace defaultPattern expanded getPattern defaultPattern html replace getPattern expanded getExpanded expanded html replace defaultPattern getExpanded html replace defaultPattern something defaultPattern match something getPattern match something |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:10:60:10:67 | expanded | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:10:60:10:67 | expanded | fileImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:10:60:10:67 | expanded | receiverName | html |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:14:3:14:75 | /<(?!ar ... )\\/>/gi | CalleeFlexibleAccessPath | html.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:14:3:14:75 | /<(?!ar ... )\\/>/gi | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:14:3:14:75 | /<(?!ar ... )\\/>/gi | contextFunctionInterfaces | getExpanded()\ngetPattern() |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:14:3:14:75 | /<(?!ar ... )\\/>/gi | contextSurroundingFunctionParameters | () |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:14:3:14:75 | /<(?!ar ... )\\/>/gi | enclosingFunctionBody | defaultPattern /<(([\\w:]+)[^>]*)\\/>/gi expanded <$1></$2> html replace /<(?!area\|br\|col\|embed\|hr\|img\|input\|link\|meta\|param)(([a-z][^\\/\\0>\\x20\\t\\r\\n\\f]*)[^>]*)\\/>/gi expanded html replace /<(([a-z][^\\/\\0>\\x20\\t\\r\\n\\f]*)[^>]*)\\/>/gi expanded html replace /<(?!area\|br\|col\|embed\|hr\|img\|input\|link\|meta\|param)(([\\w:]+)[^>]*)\\/>/gi expanded html replace /<(([\\w:]+)[^>]*)\\/>/gi expanded html replace /<(?!area\|br\|col\|embed\|hr\|img\|input\|link\|meta\|param)(([\\w:-]+)[^>]*)\\/>/gi expanded html replace /<(([\\w:-]+)[^>]*)\\/>/gi expanded html replace defaultPattern expanded getPattern defaultPattern html replace getPattern expanded getExpanded expanded html replace defaultPattern getExpanded html replace defaultPattern something defaultPattern match something getPattern match something |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:14:3:14:75 | /<(?!ar ... )\\/>/gi | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:14:3:14:75 | /<(?!ar ... )\\/>/gi | fileImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:14:3:14:75 | /<(?!ar ... )\\/>/gi | receiverName | html |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:15:3:15:10 | expanded | CalleeFlexibleAccessPath | html.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:15:3:15:10 | expanded | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:15:3:15:10 | expanded | contextFunctionInterfaces | getExpanded()\ngetPattern() |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:15:3:15:10 | expanded | contextSurroundingFunctionParameters | () |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:15:3:15:10 | expanded | enclosingFunctionBody | defaultPattern /<(([\\w:]+)[^>]*)\\/>/gi expanded <$1></$2> html replace /<(?!area\|br\|col\|embed\|hr\|img\|input\|link\|meta\|param)(([a-z][^\\/\\0>\\x20\\t\\r\\n\\f]*)[^>]*)\\/>/gi expanded html replace /<(([a-z][^\\/\\0>\\x20\\t\\r\\n\\f]*)[^>]*)\\/>/gi expanded html replace /<(?!area\|br\|col\|embed\|hr\|img\|input\|link\|meta\|param)(([\\w:]+)[^>]*)\\/>/gi expanded html replace /<(([\\w:]+)[^>]*)\\/>/gi expanded html replace /<(?!area\|br\|col\|embed\|hr\|img\|input\|link\|meta\|param)(([\\w:-]+)[^>]*)\\/>/gi expanded html replace /<(([\\w:-]+)[^>]*)\\/>/gi expanded html replace defaultPattern expanded getPattern defaultPattern html replace getPattern expanded getExpanded expanded html replace defaultPattern getExpanded html replace defaultPattern something defaultPattern match something getPattern match something |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:15:3:15:10 | expanded | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:15:3:15:10 | expanded | fileImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:15:3:15:10 | expanded | receiverName | html |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:17:15:17:37 | /<(([\\w ... )\\/>/gi | CalleeFlexibleAccessPath | html.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:17:15:17:37 | /<(([\\w ... )\\/>/gi | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:17:15:17:37 | /<(([\\w ... )\\/>/gi | contextFunctionInterfaces | getExpanded()\ngetPattern() |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:17:15:17:37 | /<(([\\w ... )\\/>/gi | contextSurroundingFunctionParameters | () |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:17:15:17:37 | /<(([\\w ... )\\/>/gi | enclosingFunctionBody | defaultPattern /<(([\\w:]+)[^>]*)\\/>/gi expanded <$1></$2> html replace /<(?!area\|br\|col\|embed\|hr\|img\|input\|link\|meta\|param)(([a-z][^\\/\\0>\\x20\\t\\r\\n\\f]*)[^>]*)\\/>/gi expanded html replace /<(([a-z][^\\/\\0>\\x20\\t\\r\\n\\f]*)[^>]*)\\/>/gi expanded html replace /<(?!area\|br\|col\|embed\|hr\|img\|input\|link\|meta\|param)(([\\w:]+)[^>]*)\\/>/gi expanded html replace /<(([\\w:]+)[^>]*)\\/>/gi expanded html replace /<(?!area\|br\|col\|embed\|hr\|img\|input\|link\|meta\|param)(([\\w:-]+)[^>]*)\\/>/gi expanded html replace /<(([\\w:-]+)[^>]*)\\/>/gi expanded html replace defaultPattern expanded getPattern defaultPattern html replace getPattern expanded getExpanded expanded html replace defaultPattern getExpanded html replace defaultPattern something defaultPattern match something getPattern match something |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:17:15:17:37 | /<(([\\w ... )\\/>/gi | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:17:15:17:37 | /<(([\\w ... )\\/>/gi | fileImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:17:15:17:37 | /<(([\\w ... )\\/>/gi | receiverName | html |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:17:40:17:47 | expanded | CalleeFlexibleAccessPath | html.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:17:40:17:47 | expanded | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:17:40:17:47 | expanded | contextFunctionInterfaces | getExpanded()\ngetPattern() |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:17:40:17:47 | expanded | contextSurroundingFunctionParameters | () |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:17:40:17:47 | expanded | enclosingFunctionBody | defaultPattern /<(([\\w:]+)[^>]*)\\/>/gi expanded <$1></$2> html replace /<(?!area\|br\|col\|embed\|hr\|img\|input\|link\|meta\|param)(([a-z][^\\/\\0>\\x20\\t\\r\\n\\f]*)[^>]*)\\/>/gi expanded html replace /<(([a-z][^\\/\\0>\\x20\\t\\r\\n\\f]*)[^>]*)\\/>/gi expanded html replace /<(?!area\|br\|col\|embed\|hr\|img\|input\|link\|meta\|param)(([\\w:]+)[^>]*)\\/>/gi expanded html replace /<(([\\w:]+)[^>]*)\\/>/gi expanded html replace /<(?!area\|br\|col\|embed\|hr\|img\|input\|link\|meta\|param)(([\\w:-]+)[^>]*)\\/>/gi expanded html replace /<(([\\w:-]+)[^>]*)\\/>/gi expanded html replace defaultPattern expanded getPattern defaultPattern html replace getPattern expanded getExpanded expanded html replace defaultPattern getExpanded html replace defaultPattern something defaultPattern match something getPattern match something |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:17:40:17:47 | expanded | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:17:40:17:47 | expanded | fileImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:17:40:17:47 | expanded | receiverName | html |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:21:3:21:76 | /<(?!ar ... )\\/>/gi | CalleeFlexibleAccessPath | html.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:21:3:21:76 | /<(?!ar ... )\\/>/gi | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:21:3:21:76 | /<(?!ar ... )\\/>/gi | contextFunctionInterfaces | getExpanded()\ngetPattern() |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:21:3:21:76 | /<(?!ar ... )\\/>/gi | contextSurroundingFunctionParameters | () |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:21:3:21:76 | /<(?!ar ... )\\/>/gi | enclosingFunctionBody | defaultPattern /<(([\\w:]+)[^>]*)\\/>/gi expanded <$1></$2> html replace /<(?!area\|br\|col\|embed\|hr\|img\|input\|link\|meta\|param)(([a-z][^\\/\\0>\\x20\\t\\r\\n\\f]*)[^>]*)\\/>/gi expanded html replace /<(([a-z][^\\/\\0>\\x20\\t\\r\\n\\f]*)[^>]*)\\/>/gi expanded html replace /<(?!area\|br\|col\|embed\|hr\|img\|input\|link\|meta\|param)(([\\w:]+)[^>]*)\\/>/gi expanded html replace /<(([\\w:]+)[^>]*)\\/>/gi expanded html replace /<(?!area\|br\|col\|embed\|hr\|img\|input\|link\|meta\|param)(([\\w:-]+)[^>]*)\\/>/gi expanded html replace /<(([\\w:-]+)[^>]*)\\/>/gi expanded html replace defaultPattern expanded getPattern defaultPattern html replace getPattern expanded getExpanded expanded html replace defaultPattern getExpanded html replace defaultPattern something defaultPattern match something getPattern match something |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:21:3:21:76 | /<(?!ar ... )\\/>/gi | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:21:3:21:76 | /<(?!ar ... )\\/>/gi | fileImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:21:3:21:76 | /<(?!ar ... )\\/>/gi | receiverName | html |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:22:3:22:10 | expanded | CalleeFlexibleAccessPath | html.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:22:3:22:10 | expanded | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:22:3:22:10 | expanded | contextFunctionInterfaces | getExpanded()\ngetPattern() |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:22:3:22:10 | expanded | contextSurroundingFunctionParameters | () |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:22:3:22:10 | expanded | enclosingFunctionBody | defaultPattern /<(([\\w:]+)[^>]*)\\/>/gi expanded <$1></$2> html replace /<(?!area\|br\|col\|embed\|hr\|img\|input\|link\|meta\|param)(([a-z][^\\/\\0>\\x20\\t\\r\\n\\f]*)[^>]*)\\/>/gi expanded html replace /<(([a-z][^\\/\\0>\\x20\\t\\r\\n\\f]*)[^>]*)\\/>/gi expanded html replace /<(?!area\|br\|col\|embed\|hr\|img\|input\|link\|meta\|param)(([\\w:]+)[^>]*)\\/>/gi expanded html replace /<(([\\w:]+)[^>]*)\\/>/gi expanded html replace /<(?!area\|br\|col\|embed\|hr\|img\|input\|link\|meta\|param)(([\\w:-]+)[^>]*)\\/>/gi expanded html replace /<(([\\w:-]+)[^>]*)\\/>/gi expanded html replace defaultPattern expanded getPattern defaultPattern html replace getPattern expanded getExpanded expanded html replace defaultPattern getExpanded html replace defaultPattern something defaultPattern match something getPattern match something |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:22:3:22:10 | expanded | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:22:3:22:10 | expanded | fileImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:22:3:22:10 | expanded | receiverName | html |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:24:15:24:38 | /<(([\\w ... )\\/>/gi | CalleeFlexibleAccessPath | html.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:24:15:24:38 | /<(([\\w ... )\\/>/gi | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:24:15:24:38 | /<(([\\w ... )\\/>/gi | contextFunctionInterfaces | getExpanded()\ngetPattern() |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:24:15:24:38 | /<(([\\w ... )\\/>/gi | contextSurroundingFunctionParameters | () |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:24:15:24:38 | /<(([\\w ... )\\/>/gi | enclosingFunctionBody | defaultPattern /<(([\\w:]+)[^>]*)\\/>/gi expanded <$1></$2> html replace /<(?!area\|br\|col\|embed\|hr\|img\|input\|link\|meta\|param)(([a-z][^\\/\\0>\\x20\\t\\r\\n\\f]*)[^>]*)\\/>/gi expanded html replace /<(([a-z][^\\/\\0>\\x20\\t\\r\\n\\f]*)[^>]*)\\/>/gi expanded html replace /<(?!area\|br\|col\|embed\|hr\|img\|input\|link\|meta\|param)(([\\w:]+)[^>]*)\\/>/gi expanded html replace /<(([\\w:]+)[^>]*)\\/>/gi expanded html replace /<(?!area\|br\|col\|embed\|hr\|img\|input\|link\|meta\|param)(([\\w:-]+)[^>]*)\\/>/gi expanded html replace /<(([\\w:-]+)[^>]*)\\/>/gi expanded html replace defaultPattern expanded getPattern defaultPattern html replace getPattern expanded getExpanded expanded html replace defaultPattern getExpanded html replace defaultPattern something defaultPattern match something getPattern match something |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:24:15:24:38 | /<(([\\w ... )\\/>/gi | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:24:15:24:38 | /<(([\\w ... )\\/>/gi | fileImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:24:15:24:38 | /<(([\\w ... )\\/>/gi | receiverName | html |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:24:41:24:48 | expanded | CalleeFlexibleAccessPath | html.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:24:41:24:48 | expanded | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:24:41:24:48 | expanded | contextFunctionInterfaces | getExpanded()\ngetPattern() |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:24:41:24:48 | expanded | contextSurroundingFunctionParameters | () |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:24:41:24:48 | expanded | enclosingFunctionBody | defaultPattern /<(([\\w:]+)[^>]*)\\/>/gi expanded <$1></$2> html replace /<(?!area\|br\|col\|embed\|hr\|img\|input\|link\|meta\|param)(([a-z][^\\/\\0>\\x20\\t\\r\\n\\f]*)[^>]*)\\/>/gi expanded html replace /<(([a-z][^\\/\\0>\\x20\\t\\r\\n\\f]*)[^>]*)\\/>/gi expanded html replace /<(?!area\|br\|col\|embed\|hr\|img\|input\|link\|meta\|param)(([\\w:]+)[^>]*)\\/>/gi expanded html replace /<(([\\w:]+)[^>]*)\\/>/gi expanded html replace /<(?!area\|br\|col\|embed\|hr\|img\|input\|link\|meta\|param)(([\\w:-]+)[^>]*)\\/>/gi expanded html replace /<(([\\w:-]+)[^>]*)\\/>/gi expanded html replace defaultPattern expanded getPattern defaultPattern html replace getPattern expanded getExpanded expanded html replace defaultPattern getExpanded html replace defaultPattern something defaultPattern match something getPattern match something |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:24:41:24:48 | expanded | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:24:41:24:48 | expanded | fileImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:24:41:24:48 | expanded | receiverName | html |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:26:15:26:28 | defaultPattern | CalleeFlexibleAccessPath | html.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:26:15:26:28 | defaultPattern | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:26:15:26:28 | defaultPattern | contextFunctionInterfaces | getExpanded()\ngetPattern() |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:26:15:26:28 | defaultPattern | contextSurroundingFunctionParameters | () |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:26:15:26:28 | defaultPattern | enclosingFunctionBody | defaultPattern /<(([\\w:]+)[^>]*)\\/>/gi expanded <$1></$2> html replace /<(?!area\|br\|col\|embed\|hr\|img\|input\|link\|meta\|param)(([a-z][^\\/\\0>\\x20\\t\\r\\n\\f]*)[^>]*)\\/>/gi expanded html replace /<(([a-z][^\\/\\0>\\x20\\t\\r\\n\\f]*)[^>]*)\\/>/gi expanded html replace /<(?!area\|br\|col\|embed\|hr\|img\|input\|link\|meta\|param)(([\\w:]+)[^>]*)\\/>/gi expanded html replace /<(([\\w:]+)[^>]*)\\/>/gi expanded html replace /<(?!area\|br\|col\|embed\|hr\|img\|input\|link\|meta\|param)(([\\w:-]+)[^>]*)\\/>/gi expanded html replace /<(([\\w:-]+)[^>]*)\\/>/gi expanded html replace defaultPattern expanded getPattern defaultPattern html replace getPattern expanded getExpanded expanded html replace defaultPattern getExpanded html replace defaultPattern something defaultPattern match something getPattern match something |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:26:15:26:28 | defaultPattern | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:26:15:26:28 | defaultPattern | fileImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:26:15:26:28 | defaultPattern | receiverName | html |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:26:31:26:38 | expanded | CalleeFlexibleAccessPath | html.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:26:31:26:38 | expanded | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:26:31:26:38 | expanded | contextFunctionInterfaces | getExpanded()\ngetPattern() |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:26:31:26:38 | expanded | contextSurroundingFunctionParameters | () |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:26:31:26:38 | expanded | enclosingFunctionBody | defaultPattern /<(([\\w:]+)[^>]*)\\/>/gi expanded <$1></$2> html replace /<(?!area\|br\|col\|embed\|hr\|img\|input\|link\|meta\|param)(([a-z][^\\/\\0>\\x20\\t\\r\\n\\f]*)[^>]*)\\/>/gi expanded html replace /<(([a-z][^\\/\\0>\\x20\\t\\r\\n\\f]*)[^>]*)\\/>/gi expanded html replace /<(?!area\|br\|col\|embed\|hr\|img\|input\|link\|meta\|param)(([\\w:]+)[^>]*)\\/>/gi expanded html replace /<(([\\w:]+)[^>]*)\\/>/gi expanded html replace /<(?!area\|br\|col\|embed\|hr\|img\|input\|link\|meta\|param)(([\\w:-]+)[^>]*)\\/>/gi expanded html replace /<(([\\w:-]+)[^>]*)\\/>/gi expanded html replace defaultPattern expanded getPattern defaultPattern html replace getPattern expanded getExpanded expanded html replace defaultPattern getExpanded html replace defaultPattern something defaultPattern match something getPattern match something |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:26:31:26:38 | expanded | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:26:31:26:38 | expanded | fileImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:26:31:26:38 | expanded | receiverName | html |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:30:15:30:26 | getPattern() | CalleeFlexibleAccessPath | html.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:30:15:30:26 | getPattern() | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:30:15:30:26 | getPattern() | contextFunctionInterfaces | getExpanded()\ngetPattern() |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:30:15:30:26 | getPattern() | contextSurroundingFunctionParameters | () |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:30:15:30:26 | getPattern() | enclosingFunctionBody | defaultPattern /<(([\\w:]+)[^>]*)\\/>/gi expanded <$1></$2> html replace /<(?!area\|br\|col\|embed\|hr\|img\|input\|link\|meta\|param)(([a-z][^\\/\\0>\\x20\\t\\r\\n\\f]*)[^>]*)\\/>/gi expanded html replace /<(([a-z][^\\/\\0>\\x20\\t\\r\\n\\f]*)[^>]*)\\/>/gi expanded html replace /<(?!area\|br\|col\|embed\|hr\|img\|input\|link\|meta\|param)(([\\w:]+)[^>]*)\\/>/gi expanded html replace /<(([\\w:]+)[^>]*)\\/>/gi expanded html replace /<(?!area\|br\|col\|embed\|hr\|img\|input\|link\|meta\|param)(([\\w:-]+)[^>]*)\\/>/gi expanded html replace /<(([\\w:-]+)[^>]*)\\/>/gi expanded html replace defaultPattern expanded getPattern defaultPattern html replace getPattern expanded getExpanded expanded html replace defaultPattern getExpanded html replace defaultPattern something defaultPattern match something getPattern match something |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:30:15:30:26 | getPattern() | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:30:15:30:26 | getPattern() | fileImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:30:15:30:26 | getPattern() | receiverName | html |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:30:29:30:36 | expanded | CalleeFlexibleAccessPath | html.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:30:29:30:36 | expanded | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:30:29:30:36 | expanded | contextFunctionInterfaces | getExpanded()\ngetPattern() |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:30:29:30:36 | expanded | contextSurroundingFunctionParameters | () |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:30:29:30:36 | expanded | enclosingFunctionBody | defaultPattern /<(([\\w:]+)[^>]*)\\/>/gi expanded <$1></$2> html replace /<(?!area\|br\|col\|embed\|hr\|img\|input\|link\|meta\|param)(([a-z][^\\/\\0>\\x20\\t\\r\\n\\f]*)[^>]*)\\/>/gi expanded html replace /<(([a-z][^\\/\\0>\\x20\\t\\r\\n\\f]*)[^>]*)\\/>/gi expanded html replace /<(?!area\|br\|col\|embed\|hr\|img\|input\|link\|meta\|param)(([\\w:]+)[^>]*)\\/>/gi expanded html replace /<(([\\w:]+)[^>]*)\\/>/gi expanded html replace /<(?!area\|br\|col\|embed\|hr\|img\|input\|link\|meta\|param)(([\\w:-]+)[^>]*)\\/>/gi expanded html replace /<(([\\w:-]+)[^>]*)\\/>/gi expanded html replace defaultPattern expanded getPattern defaultPattern html replace getPattern expanded getExpanded expanded html replace defaultPattern getExpanded html replace defaultPattern something defaultPattern match something getPattern match something |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:30:29:30:36 | expanded | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:30:29:30:36 | expanded | fileImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:30:29:30:36 | expanded | receiverName | html |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:35:15:35:28 | defaultPattern | CalleeFlexibleAccessPath | html.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:35:15:35:28 | defaultPattern | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:35:15:35:28 | defaultPattern | contextFunctionInterfaces | getExpanded()\ngetPattern() |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:35:15:35:28 | defaultPattern | contextSurroundingFunctionParameters | () |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:35:15:35:28 | defaultPattern | enclosingFunctionBody | defaultPattern /<(([\\w:]+)[^>]*)\\/>/gi expanded <$1></$2> html replace /<(?!area\|br\|col\|embed\|hr\|img\|input\|link\|meta\|param)(([a-z][^\\/\\0>\\x20\\t\\r\\n\\f]*)[^>]*)\\/>/gi expanded html replace /<(([a-z][^\\/\\0>\\x20\\t\\r\\n\\f]*)[^>]*)\\/>/gi expanded html replace /<(?!area\|br\|col\|embed\|hr\|img\|input\|link\|meta\|param)(([\\w:]+)[^>]*)\\/>/gi expanded html replace /<(([\\w:]+)[^>]*)\\/>/gi expanded html replace /<(?!area\|br\|col\|embed\|hr\|img\|input\|link\|meta\|param)(([\\w:-]+)[^>]*)\\/>/gi expanded html replace /<(([\\w:-]+)[^>]*)\\/>/gi expanded html replace defaultPattern expanded getPattern defaultPattern html replace getPattern expanded getExpanded expanded html replace defaultPattern getExpanded html replace defaultPattern something defaultPattern match something getPattern match something |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:35:15:35:28 | defaultPattern | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:35:15:35:28 | defaultPattern | fileImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:35:15:35:28 | defaultPattern | receiverName | html |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:35:31:35:43 | getExpanded() | CalleeFlexibleAccessPath | html.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:35:31:35:43 | getExpanded() | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:35:31:35:43 | getExpanded() | contextFunctionInterfaces | getExpanded()\ngetPattern() |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:35:31:35:43 | getExpanded() | contextSurroundingFunctionParameters | () |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:35:31:35:43 | getExpanded() | enclosingFunctionBody | defaultPattern /<(([\\w:]+)[^>]*)\\/>/gi expanded <$1></$2> html replace /<(?!area\|br\|col\|embed\|hr\|img\|input\|link\|meta\|param)(([a-z][^\\/\\0>\\x20\\t\\r\\n\\f]*)[^>]*)\\/>/gi expanded html replace /<(([a-z][^\\/\\0>\\x20\\t\\r\\n\\f]*)[^>]*)\\/>/gi expanded html replace /<(?!area\|br\|col\|embed\|hr\|img\|input\|link\|meta\|param)(([\\w:]+)[^>]*)\\/>/gi expanded html replace /<(([\\w:]+)[^>]*)\\/>/gi expanded html replace /<(?!area\|br\|col\|embed\|hr\|img\|input\|link\|meta\|param)(([\\w:-]+)[^>]*)\\/>/gi expanded html replace /<(([\\w:-]+)[^>]*)\\/>/gi expanded html replace defaultPattern expanded getPattern defaultPattern html replace getPattern expanded getExpanded expanded html replace defaultPattern getExpanded html replace defaultPattern something defaultPattern match something getPattern match something |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:35:31:35:43 | getExpanded() | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:35:31:35:43 | getExpanded() | fileImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:35:31:35:43 | getExpanded() | receiverName | html |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:36:15:36:28 | defaultPattern | CalleeFlexibleAccessPath | html.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:36:15:36:28 | defaultPattern | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:36:15:36:28 | defaultPattern | contextFunctionInterfaces | getExpanded()\ngetPattern() |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:36:15:36:28 | defaultPattern | contextSurroundingFunctionParameters | () |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:36:15:36:28 | defaultPattern | enclosingFunctionBody | defaultPattern /<(([\\w:]+)[^>]*)\\/>/gi expanded <$1></$2> html replace /<(?!area\|br\|col\|embed\|hr\|img\|input\|link\|meta\|param)(([a-z][^\\/\\0>\\x20\\t\\r\\n\\f]*)[^>]*)\\/>/gi expanded html replace /<(([a-z][^\\/\\0>\\x20\\t\\r\\n\\f]*)[^>]*)\\/>/gi expanded html replace /<(?!area\|br\|col\|embed\|hr\|img\|input\|link\|meta\|param)(([\\w:]+)[^>]*)\\/>/gi expanded html replace /<(([\\w:]+)[^>]*)\\/>/gi expanded html replace /<(?!area\|br\|col\|embed\|hr\|img\|input\|link\|meta\|param)(([\\w:-]+)[^>]*)\\/>/gi expanded html replace /<(([\\w:-]+)[^>]*)\\/>/gi expanded html replace defaultPattern expanded getPattern defaultPattern html replace getPattern expanded getExpanded expanded html replace defaultPattern getExpanded html replace defaultPattern something defaultPattern match something getPattern match something |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:36:15:36:28 | defaultPattern | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:36:15:36:28 | defaultPattern | fileImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:36:15:36:28 | defaultPattern | receiverName | html |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:36:31:36:39 | something | CalleeFlexibleAccessPath | html.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:36:31:36:39 | something | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:36:31:36:39 | something | contextFunctionInterfaces | getExpanded()\ngetPattern() |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:36:31:36:39 | something | contextSurroundingFunctionParameters | () |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:36:31:36:39 | something | enclosingFunctionBody | defaultPattern /<(([\\w:]+)[^>]*)\\/>/gi expanded <$1></$2> html replace /<(?!area\|br\|col\|embed\|hr\|img\|input\|link\|meta\|param)(([a-z][^\\/\\0>\\x20\\t\\r\\n\\f]*)[^>]*)\\/>/gi expanded html replace /<(([a-z][^\\/\\0>\\x20\\t\\r\\n\\f]*)[^>]*)\\/>/gi expanded html replace /<(?!area\|br\|col\|embed\|hr\|img\|input\|link\|meta\|param)(([\\w:]+)[^>]*)\\/>/gi expanded html replace /<(([\\w:]+)[^>]*)\\/>/gi expanded html replace /<(?!area\|br\|col\|embed\|hr\|img\|input\|link\|meta\|param)(([\\w:-]+)[^>]*)\\/>/gi expanded html replace /<(([\\w:-]+)[^>]*)\\/>/gi expanded html replace defaultPattern expanded getPattern defaultPattern html replace getPattern expanded getExpanded expanded html replace defaultPattern getExpanded html replace defaultPattern something defaultPattern match something getPattern match something |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:36:31:36:39 | something | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:36:31:36:39 | something | fileImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:36:31:36:39 | something | receiverName | html |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:37:23:37:31 | something | CalleeFlexibleAccessPath | defaultPattern.match |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:37:23:37:31 | something | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:37:23:37:31 | something | contextFunctionInterfaces | getExpanded()\ngetPattern() |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:37:23:37:31 | something | contextSurroundingFunctionParameters | () |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:37:23:37:31 | something | enclosingFunctionBody | defaultPattern /<(([\\w:]+)[^>]*)\\/>/gi expanded <$1></$2> html replace /<(?!area\|br\|col\|embed\|hr\|img\|input\|link\|meta\|param)(([a-z][^\\/\\0>\\x20\\t\\r\\n\\f]*)[^>]*)\\/>/gi expanded html replace /<(([a-z][^\\/\\0>\\x20\\t\\r\\n\\f]*)[^>]*)\\/>/gi expanded html replace /<(?!area\|br\|col\|embed\|hr\|img\|input\|link\|meta\|param)(([\\w:]+)[^>]*)\\/>/gi expanded html replace /<(([\\w:]+)[^>]*)\\/>/gi expanded html replace /<(?!area\|br\|col\|embed\|hr\|img\|input\|link\|meta\|param)(([\\w:-]+)[^>]*)\\/>/gi expanded html replace /<(([\\w:-]+)[^>]*)\\/>/gi expanded html replace defaultPattern expanded getPattern defaultPattern html replace getPattern expanded getExpanded expanded html replace defaultPattern getExpanded html replace defaultPattern something defaultPattern match something getPattern match something |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:37:23:37:31 | something | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:37:23:37:31 | something | fileImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:37:23:37:31 | something | receiverName | defaultPattern |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:38:21:38:29 | something | CalleeFlexibleAccessPath | getPattern().match |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:38:21:38:29 | something | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:38:21:38:29 | something | contextFunctionInterfaces | getExpanded()\ngetPattern() |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:38:21:38:29 | something | contextSurroundingFunctionParameters | () |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:38:21:38:29 | something | enclosingFunctionBody | defaultPattern /<(([\\w:]+)[^>]*)\\/>/gi expanded <$1></$2> html replace /<(?!area\|br\|col\|embed\|hr\|img\|input\|link\|meta\|param)(([a-z][^\\/\\0>\\x20\\t\\r\\n\\f]*)[^>]*)\\/>/gi expanded html replace /<(([a-z][^\\/\\0>\\x20\\t\\r\\n\\f]*)[^>]*)\\/>/gi expanded html replace /<(?!area\|br\|col\|embed\|hr\|img\|input\|link\|meta\|param)(([\\w:]+)[^>]*)\\/>/gi expanded html replace /<(([\\w:]+)[^>]*)\\/>/gi expanded html replace /<(?!area\|br\|col\|embed\|hr\|img\|input\|link\|meta\|param)(([\\w:-]+)[^>]*)\\/>/gi expanded html replace /<(([\\w:-]+)[^>]*)\\/>/gi expanded html replace defaultPattern expanded getPattern defaultPattern html replace getPattern expanded getExpanded expanded html replace defaultPattern getExpanded html replace defaultPattern something defaultPattern match something getPattern match something |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:38:21:38:29 | something | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:38:21:38:29 | something | fileImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:3:29:3:52 | /<.*cri ... p.*>/gi | CalleeFlexibleAccessPath | content.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:3:29:3:52 | /<.*cri ... p.*>/gi | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:3:29:3:52 | /<.*cri ... p.*>/gi | contextFunctionInterfaces |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:3:29:3:52 | /<.*cri ... p.*>/gi | contextSurroundingFunctionParameters | (content) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:3:29:3:52 | /<.*cri ... p.*>/gi | enclosingFunctionBody | content content content replace /<.*cript.*\\/scrip.*>/gi  content content replace / on\\w+=".*"/g  content content replace / on\\w+=\\'.*\\'/g  content |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:3:29:3:52 | /<.*cri ... p.*>/gi | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:3:29:3:52 | /<.*cri ... p.*>/gi | fileImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:3:29:3:52 | /<.*cri ... p.*>/gi | receiverName | content |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:3:55:3:56 | "" | CalleeFlexibleAccessPath | content.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:3:55:3:56 | "" | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:3:55:3:56 | "" | contextFunctionInterfaces |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:3:55:3:56 | "" | contextSurroundingFunctionParameters | (content) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:3:55:3:56 | "" | enclosingFunctionBody | content content content replace /<.*cript.*\\/scrip.*>/gi  content content replace / on\\w+=".*"/g  content content replace / on\\w+=\\'.*\\'/g  content |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:3:55:3:56 | "" | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:3:55:3:56 | "" | fileImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:3:55:3:56 | "" | receiverName | content |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:4:29:4:42 | / on\\w+=".*"/g | CalleeFlexibleAccessPath | content.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:4:29:4:42 | / on\\w+=".*"/g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:4:29:4:42 | / on\\w+=".*"/g | contextFunctionInterfaces |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:4:29:4:42 | / on\\w+=".*"/g | contextSurroundingFunctionParameters | (content) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:4:29:4:42 | / on\\w+=".*"/g | enclosingFunctionBody | content content content replace /<.*cript.*\\/scrip.*>/gi  content content replace / on\\w+=".*"/g  content content replace / on\\w+=\\'.*\\'/g  content |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:4:29:4:42 | / on\\w+=".*"/g | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:4:29:4:42 | / on\\w+=".*"/g | fileImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:4:29:4:42 | / on\\w+=".*"/g | receiverName | content |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:4:45:4:46 | "" | CalleeFlexibleAccessPath | content.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:4:45:4:46 | "" | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:4:45:4:46 | "" | contextFunctionInterfaces |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:4:45:4:46 | "" | contextSurroundingFunctionParameters | (content) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:4:45:4:46 | "" | enclosingFunctionBody | content content content replace /<.*cript.*\\/scrip.*>/gi  content content replace / on\\w+=".*"/g  content content replace / on\\w+=\\'.*\\'/g  content |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:4:45:4:46 | "" | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:4:45:4:46 | "" | fileImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:4:45:4:46 | "" | receiverName | content |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:5:29:5:44 | / on\\w+=\\'.*\\'/g | CalleeFlexibleAccessPath | content.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:5:29:5:44 | / on\\w+=\\'.*\\'/g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:5:29:5:44 | / on\\w+=\\'.*\\'/g | contextFunctionInterfaces |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:5:29:5:44 | / on\\w+=\\'.*\\'/g | contextSurroundingFunctionParameters | (content) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:5:29:5:44 | / on\\w+=\\'.*\\'/g | enclosingFunctionBody | content content content replace /<.*cript.*\\/scrip.*>/gi  content content replace / on\\w+=".*"/g  content content replace / on\\w+=\\'.*\\'/g  content |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:5:29:5:44 | / on\\w+=\\'.*\\'/g | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:5:29:5:44 | / on\\w+=\\'.*\\'/g | fileImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:5:29:5:44 | / on\\w+=\\'.*\\'/g | receiverName | content |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:5:47:5:48 | "" | CalleeFlexibleAccessPath | content.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:5:47:5:48 | "" | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:5:47:5:48 | "" | contextFunctionInterfaces |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:5:47:5:48 | "" | contextSurroundingFunctionParameters | (content) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:5:47:5:48 | "" | enclosingFunctionBody | content content content replace /<.*cript.*\\/scrip.*>/gi  content content replace / on\\w+=".*"/g  content content replace / on\\w+=\\'.*\\'/g  content |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:5:47:5:48 | "" | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:5:47:5:48 | "" | fileImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:5:47:5:48 | "" | receiverName | content |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:9:29:9:42 | /<.*cript.*/gi | CalleeFlexibleAccessPath | content.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:9:29:9:42 | /<.*cript.*/gi | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:9:29:9:42 | /<.*cript.*/gi | contextFunctionInterfaces |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:9:29:9:42 | /<.*cript.*/gi | contextSurroundingFunctionParameters | (content) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:9:29:9:42 | /<.*cript.*/gi | enclosingFunctionBody | content content content replace /<.*cript.*/gi  content content replace /.on\\w+=.*".*"/g  content content replace /.on\\w+=.*\\'.*\\'/g  content |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:9:29:9:42 | /<.*cript.*/gi | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:9:29:9:42 | /<.*cript.*/gi | fileImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:9:29:9:42 | /<.*cript.*/gi | receiverName | content |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:9:45:9:46 | "" | CalleeFlexibleAccessPath | content.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:9:45:9:46 | "" | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:9:45:9:46 | "" | contextFunctionInterfaces |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:9:45:9:46 | "" | contextSurroundingFunctionParameters | (content) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:9:45:9:46 | "" | enclosingFunctionBody | content content content replace /<.*cript.*/gi  content content replace /.on\\w+=.*".*"/g  content content replace /.on\\w+=.*\\'.*\\'/g  content |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:9:45:9:46 | "" | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:9:45:9:46 | "" | fileImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:9:45:9:46 | "" | receiverName | content |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:10:29:10:44 | /.on\\w+=.*".*"/g | CalleeFlexibleAccessPath | content.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:10:29:10:44 | /.on\\w+=.*".*"/g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:10:29:10:44 | /.on\\w+=.*".*"/g | contextFunctionInterfaces |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:10:29:10:44 | /.on\\w+=.*".*"/g | contextSurroundingFunctionParameters | (content) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:10:29:10:44 | /.on\\w+=.*".*"/g | enclosingFunctionBody | content content content replace /<.*cript.*/gi  content content replace /.on\\w+=.*".*"/g  content content replace /.on\\w+=.*\\'.*\\'/g  content |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:10:29:10:44 | /.on\\w+=.*".*"/g | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:10:29:10:44 | /.on\\w+=.*".*"/g | fileImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:10:29:10:44 | /.on\\w+=.*".*"/g | receiverName | content |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:10:47:10:48 | "" | CalleeFlexibleAccessPath | content.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:10:47:10:48 | "" | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:10:47:10:48 | "" | contextFunctionInterfaces |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:10:47:10:48 | "" | contextSurroundingFunctionParameters | (content) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:10:47:10:48 | "" | enclosingFunctionBody | content content content replace /<.*cript.*/gi  content content replace /.on\\w+=.*".*"/g  content content replace /.on\\w+=.*\\'.*\\'/g  content |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:10:47:10:48 | "" | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:10:47:10:48 | "" | fileImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:10:47:10:48 | "" | receiverName | content |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:11:29:11:46 | /.on\\w+=.*\\'.*\\'/g | CalleeFlexibleAccessPath | content.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:11:29:11:46 | /.on\\w+=.*\\'.*\\'/g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:11:29:11:46 | /.on\\w+=.*\\'.*\\'/g | contextFunctionInterfaces |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:11:29:11:46 | /.on\\w+=.*\\'.*\\'/g | contextSurroundingFunctionParameters | (content) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:11:29:11:46 | /.on\\w+=.*\\'.*\\'/g | enclosingFunctionBody | content content content replace /<.*cript.*/gi  content content replace /.on\\w+=.*".*"/g  content content replace /.on\\w+=.*\\'.*\\'/g  content |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:11:29:11:46 | /.on\\w+=.*\\'.*\\'/g | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:11:29:11:46 | /.on\\w+=.*\\'.*\\'/g | fileImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:11:29:11:46 | /.on\\w+=.*\\'.*\\'/g | receiverName | content |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:11:49:11:50 | "" | CalleeFlexibleAccessPath | content.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:11:49:11:50 | "" | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:11:49:11:50 | "" | contextFunctionInterfaces |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:11:49:11:50 | "" | contextSurroundingFunctionParameters | (content) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:11:49:11:50 | "" | enclosingFunctionBody | content content content replace /<.*cript.*/gi  content content replace /.on\\w+=.*".*"/g  content content replace /.on\\w+=.*\\'.*\\'/g  content |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:11:49:11:50 | "" | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:11:49:11:50 | "" | fileImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:11:49:11:50 | "" | receiverName | content |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:19:24:19:30 | rscript | CalleeFlexibleAccessPath | responseText.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:19:24:19:30 | rscript | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:19:24:19:30 | rscript | contextFunctionInterfaces |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:19:24:19:30 | rscript | contextSurroundingFunctionParameters | (responseText) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:19:24:19:30 | rscript | enclosingFunctionBody | responseText rscript /<script\\b[^<]*(?:(?!<\\/script>)<[^<]*)*<\\/script>/gi responseText replace rscript  responseText |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:19:24:19:30 | rscript | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:19:24:19:30 | rscript | fileImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:19:24:19:30 | rscript | receiverName | responseText |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:19:33:19:34 | "" | CalleeFlexibleAccessPath | responseText.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:19:33:19:34 | "" | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:19:33:19:34 | "" | contextFunctionInterfaces |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:19:33:19:34 | "" | contextSurroundingFunctionParameters | (responseText) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:19:33:19:34 | "" | enclosingFunctionBody | responseText rscript /<script\\b[^<]*(?:(?!<\\/script>)<[^<]*)*<\\/script>/gi responseText replace rscript  responseText |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:19:33:19:34 | "" | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:19:33:19:34 | "" | fileImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:19:33:19:34 | "" | receiverName | responseText |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:25:23:25:35 | /<!--\|--!?>/g | CalleeFlexibleAccessPath | text.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:25:23:25:35 | /<!--\|--!?>/g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:25:23:25:35 | /<!--\|--!?>/g | contextFunctionInterfaces |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:25:23:25:35 | /<!--\|--!?>/g | contextSurroundingFunctionParameters | (text) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:25:23:25:35 | /<!--\|--!?>/g | enclosingFunctionBody | text text text replace /<!--\|--!?>/g  text |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:25:23:25:35 | /<!--\|--!?>/g | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:25:23:25:35 | /<!--\|--!?>/g | fileImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:25:23:25:35 | /<!--\|--!?>/g | receiverName | text |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:25:38:25:39 | "" | CalleeFlexibleAccessPath | text.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:25:38:25:39 | "" | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:25:38:25:39 | "" | contextFunctionInterfaces |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:25:38:25:39 | "" | contextSurroundingFunctionParameters | (text) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:25:38:25:39 | "" | enclosingFunctionBody | text text text replace /<!--\|--!?>/g  text |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:25:38:25:39 | "" | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:25:38:25:39 | "" | fileImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:25:38:25:39 | "" | receiverName | text |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:29:29:29:32 | text | CalleeFlexibleAccessPath | ?.test |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:29:29:29:32 | text | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:29:29:29:32 | text | contextFunctionInterfaces |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:29:29:29:32 | text | contextSurroundingFunctionParameters | (text) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:29:29:29:32 | text | enclosingFunctionBody | text /<!--\|--!?>/g test text text text replace /<!--\|--!?>/g  text |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:29:29:29:32 | text | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:29:29:29:32 | text | fileImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:30:25:30:37 | /<!--\|--!?>/g | CalleeFlexibleAccessPath | text.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:30:25:30:37 | /<!--\|--!?>/g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:30:25:30:37 | /<!--\|--!?>/g | contextFunctionInterfaces |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:30:25:30:37 | /<!--\|--!?>/g | contextSurroundingFunctionParameters | (text) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:30:25:30:37 | /<!--\|--!?>/g | enclosingFunctionBody | text /<!--\|--!?>/g test text text text replace /<!--\|--!?>/g  text |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:30:25:30:37 | /<!--\|--!?>/g | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:30:25:30:37 | /<!--\|--!?>/g | fileImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:30:25:30:37 | /<!--\|--!?>/g | receiverName | text |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:30:40:30:41 | "" | CalleeFlexibleAccessPath | text.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:30:40:30:41 | "" | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:30:40:30:41 | "" | contextFunctionInterfaces |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:30:40:30:41 | "" | contextSurroundingFunctionParameters | (text) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:30:40:30:41 | "" | enclosingFunctionBody | text /<!--\|--!?>/g test text text text replace /<!--\|--!?>/g  text |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:30:40:30:41 | "" | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:30:40:30:41 | "" | fileImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:30:40:30:41 | "" | receiverName | text |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:38:19:38:25 | /\\.\\./g | CalleeFlexibleAccessPath | id.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:38:19:38:25 | /\\.\\./g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:38:19:38:25 | /\\.\\./g | contextFunctionInterfaces |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:38:19:38:25 | /\\.\\./g | contextSurroundingFunctionParameters | (id) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:38:19:38:25 | /\\.\\./g | enclosingFunctionBody | id id id replace /\\.\\./g  id |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:38:19:38:25 | /\\.\\./g | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:38:19:38:25 | /\\.\\./g | fileImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:38:19:38:25 | /\\.\\./g | receiverName | id |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:38:28:38:29 | "" | CalleeFlexibleAccessPath | id.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:38:28:38:29 | "" | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:38:28:38:29 | "" | contextFunctionInterfaces |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:38:28:38:29 | "" | contextSurroundingFunctionParameters | (id) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:38:28:38:29 | "" | enclosingFunctionBody | id id id replace /\\.\\./g  id |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:38:28:38:29 | "" | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:38:28:38:29 | "" | fileImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:38:28:38:29 | "" | receiverName | id |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:42:19:42:40 | /[\\]\\[* ... \\?\\/]/g | CalleeFlexibleAccessPath | id.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:42:19:42:40 | /[\\]\\[* ... \\?\\/]/g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:42:19:42:40 | /[\\]\\[* ... \\?\\/]/g | contextFunctionInterfaces |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:42:19:42:40 | /[\\]\\[* ... \\?\\/]/g | contextSurroundingFunctionParameters | (id) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:42:19:42:40 | /[\\]\\[* ... \\?\\/]/g | enclosingFunctionBody | id id id replace /[\\]\\[*,;'"`<>\\\\?\\/]/g  id |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:42:19:42:40 | /[\\]\\[* ... \\?\\/]/g | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:42:19:42:40 | /[\\]\\[* ... \\?\\/]/g | fileImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:42:19:42:40 | /[\\]\\[* ... \\?\\/]/g | receiverName | id |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:42:43:42:44 | "" | CalleeFlexibleAccessPath | id.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:42:43:42:44 | "" | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:42:43:42:44 | "" | contextFunctionInterfaces |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:42:43:42:44 | "" | contextSurroundingFunctionParameters | (id) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:42:43:42:44 | "" | enclosingFunctionBody | id id id replace /[\\]\\[*,;'"`<>\\\\?\\/]/g  id |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:42:43:42:44 | "" | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:42:43:42:44 | "" | fileImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:42:43:42:44 | "" | receiverName | id |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:49:29:49:38 | REG_TRAVEL | CalleeFlexibleAccessPath | req.url.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:49:29:49:38 | REG_TRAVEL | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:49:29:49:38 | REG_TRAVEL | contextFunctionInterfaces |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:49:29:49:38 | REG_TRAVEL | contextSurroundingFunctionParameters | (req) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:49:29:49:38 | REG_TRAVEL | enclosingFunctionBody | req REG_TRAVEL /(\\/)?\\.\\.\\//g req url req url replace REG_TRAVEL  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:49:29:49:38 | REG_TRAVEL | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:49:29:49:38 | REG_TRAVEL | fileImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:49:41:49:42 | "" | CalleeFlexibleAccessPath | req.url.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:49:41:49:42 | "" | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:49:41:49:42 | "" | contextFunctionInterfaces |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:49:41:49:42 | "" | contextSurroundingFunctionParameters | (req) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:49:41:49:42 | "" | enclosingFunctionBody | req REG_TRAVEL /(\\/)?\\.\\.\\//g req url req url replace REG_TRAVEL  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:49:41:49:42 | "" | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:49:41:49:42 | "" | fileImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:58:40:58:42 | beg | CalleeFlexibleAccessPath | req.url.substring |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:58:40:58:42 | beg | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:58:40:58:42 | beg | contextFunctionInterfaces |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:58:40:58:42 | beg | contextSurroundingFunctionParameters | (req) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:58:40:58:42 | beg | enclosingFunctionBody | req beg i 0 i req url length i req url i . req url i 1 / beg i 1 req url i ? beg req url req url substring beg |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:58:40:58:42 | beg | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:58:40:58:42 | beg | fileImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:64:17:64:68 | /<scrip ... ript>/g | CalleeFlexibleAccessPath | x.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:64:17:64:68 | /<scrip ... ript>/g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:64:17:64:68 | /<scrip ... ript>/g | contextFunctionInterfaces |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:64:17:64:68 | /<scrip ... ript>/g | contextSurroundingFunctionParameters | (x) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:64:17:64:68 | /<scrip ... ript>/g | enclosingFunctionBody | x x x replace /<script\\b[^<]*(?:(?!<\\/script>)<[^<]*)*<\\/script>/g  x x replace /(\\/\|\\s)on\\w+=(\\'\|")?[^"]*(\\'\|")?/g  x x replace /<\\/script>/g  x x replace /<(.)?br(.)?>/g  x x replace /<\\/?b>/g  x x replace /<(ul\|ol)><\\/(ul\|ol)>/gi  x x replace /<li><\\/li>/gi  x x replace /<!--(.*?)-->/gm  x x replace /\\sng-[a-z-]+/  x x replace /\\sng-[a-z-]+/g  x x replace /(<!--\\[CDATA\\[\|\\]\\]-->)/g \n x x replace /<script.+desktop\\-only.+<\\/script>/g  x x replace /<script async.+?<\\/script>/g  x x replace /<!--[\\s\\S]*?-->\|<\\?(?:php)?[\\s\\S]*?\\?>/gi  x x replace /\\x2E\\x2E\\x2F\\x2E\\x2E\\x2F/g  x x replace /<script.*>.*<\\/script>/gi  x x replace /^(\\.\\.\\/?)+/g  x x replace /<script\\b[^<]*(?:(?!<\\/script>)<[^<]*)*<\\/script>/g $0 unknown $0  x x replace /<\\/?([a-z][a-z0-9]*)\\b[^>]*>/gi  x x replace /\\.\\./g  x x replace /\\.\\.\\//g  x x replace /\\/\\.\\./g  x x replace /<script(.*?)>([\\s\\S]*?)<\\/script>/gi  x x replace /<(script\|del)(?=[\\s>])[\\w\\W]*?<\\/\\1\\s*>/gi  x x replace /\\<script[\\s\\S]*?\\>[\\s\\S]*?\\<\\/script\\>/g  x x replace /<(script\|style\|title)[^<]+<\\/(script\|style\|title)>/gm  x x replace /<script[^>]*>([\\s\\S]*?)<\\/script>/gi  x x replace /<script[\\s\\S]*?<\\/script>/gi  x x replace / ?<!-- ?/g  x x replace /require\\('\\.\\.\\/common'\\);/g  x x replace /\\.\\.\\/\\.\\.\\/lib\\//g  x indexOf . 1 x x replace /^\\.\\//  replace /\\/\\.\\// / replace /[^\\/]*\\/\\.\\.\\//  x x replace /([^.\\s]+\\.)+/  x x replace /<!\\-\\-DEVEL[\\d\\D]*?DEVEL\\-\\->/g  x x replace /^\\.\\//  replace /\\/\\.\\// / replace /[^\\/]*\\/\\.\\.\\//  x |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:64:17:64:68 | /<scrip ... ript>/g | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:64:17:64:68 | /<scrip ... ript>/g | fileImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:64:17:64:68 | /<scrip ... ript>/g | receiverName | x |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:64:71:64:72 | "" | CalleeFlexibleAccessPath | x.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:64:71:64:72 | "" | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:64:71:64:72 | "" | contextFunctionInterfaces |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:64:71:64:72 | "" | contextSurroundingFunctionParameters | (x) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:64:71:64:72 | "" | enclosingFunctionBody | x x x replace /<script\\b[^<]*(?:(?!<\\/script>)<[^<]*)*<\\/script>/g  x x replace /(\\/\|\\s)on\\w+=(\\'\|")?[^"]*(\\'\|")?/g  x x replace /<\\/script>/g  x x replace /<(.)?br(.)?>/g  x x replace /<\\/?b>/g  x x replace /<(ul\|ol)><\\/(ul\|ol)>/gi  x x replace /<li><\\/li>/gi  x x replace /<!--(.*?)-->/gm  x x replace /\\sng-[a-z-]+/  x x replace /\\sng-[a-z-]+/g  x x replace /(<!--\\[CDATA\\[\|\\]\\]-->)/g \n x x replace /<script.+desktop\\-only.+<\\/script>/g  x x replace /<script async.+?<\\/script>/g  x x replace /<!--[\\s\\S]*?-->\|<\\?(?:php)?[\\s\\S]*?\\?>/gi  x x replace /\\x2E\\x2E\\x2F\\x2E\\x2E\\x2F/g  x x replace /<script.*>.*<\\/script>/gi  x x replace /^(\\.\\.\\/?)+/g  x x replace /<script\\b[^<]*(?:(?!<\\/script>)<[^<]*)*<\\/script>/g $0 unknown $0  x x replace /<\\/?([a-z][a-z0-9]*)\\b[^>]*>/gi  x x replace /\\.\\./g  x x replace /\\.\\.\\//g  x x replace /\\/\\.\\./g  x x replace /<script(.*?)>([\\s\\S]*?)<\\/script>/gi  x x replace /<(script\|del)(?=[\\s>])[\\w\\W]*?<\\/\\1\\s*>/gi  x x replace /\\<script[\\s\\S]*?\\>[\\s\\S]*?\\<\\/script\\>/g  x x replace /<(script\|style\|title)[^<]+<\\/(script\|style\|title)>/gm  x x replace /<script[^>]*>([\\s\\S]*?)<\\/script>/gi  x x replace /<script[\\s\\S]*?<\\/script>/gi  x x replace / ?<!-- ?/g  x x replace /require\\('\\.\\.\\/common'\\);/g  x x replace /\\.\\.\\/\\.\\.\\/lib\\//g  x indexOf . 1 x x replace /^\\.\\//  replace /\\/\\.\\// / replace /[^\\/]*\\/\\.\\.\\//  x x replace /([^.\\s]+\\.)+/  x x replace /<!\\-\\-DEVEL[\\d\\D]*?DEVEL\\-\\->/g  x x replace /^\\.\\//  replace /\\/\\.\\// / replace /[^\\/]*\\/\\.\\.\\//  x |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:64:71:64:72 | "" | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:64:71:64:72 | "" | fileImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:64:71:64:72 | "" | receiverName | x |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:66:17:66:51 | /(\\/\|\\s ... '\|")?/g | CalleeFlexibleAccessPath | x.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:66:17:66:51 | /(\\/\|\\s ... '\|")?/g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:66:17:66:51 | /(\\/\|\\s ... '\|")?/g | contextFunctionInterfaces |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:66:17:66:51 | /(\\/\|\\s ... '\|")?/g | contextSurroundingFunctionParameters | (x) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:66:17:66:51 | /(\\/\|\\s ... '\|")?/g | enclosingFunctionBody | x x x replace /<script\\b[^<]*(?:(?!<\\/script>)<[^<]*)*<\\/script>/g  x x replace /(\\/\|\\s)on\\w+=(\\'\|")?[^"]*(\\'\|")?/g  x x replace /<\\/script>/g  x x replace /<(.)?br(.)?>/g  x x replace /<\\/?b>/g  x x replace /<(ul\|ol)><\\/(ul\|ol)>/gi  x x replace /<li><\\/li>/gi  x x replace /<!--(.*?)-->/gm  x x replace /\\sng-[a-z-]+/  x x replace /\\sng-[a-z-]+/g  x x replace /(<!--\\[CDATA\\[\|\\]\\]-->)/g \n x x replace /<script.+desktop\\-only.+<\\/script>/g  x x replace /<script async.+?<\\/script>/g  x x replace /<!--[\\s\\S]*?-->\|<\\?(?:php)?[\\s\\S]*?\\?>/gi  x x replace /\\x2E\\x2E\\x2F\\x2E\\x2E\\x2F/g  x x replace /<script.*>.*<\\/script>/gi  x x replace /^(\\.\\.\\/?)+/g  x x replace /<script\\b[^<]*(?:(?!<\\/script>)<[^<]*)*<\\/script>/g $0 unknown $0  x x replace /<\\/?([a-z][a-z0-9]*)\\b[^>]*>/gi  x x replace /\\.\\./g  x x replace /\\.\\.\\//g  x x replace /\\/\\.\\./g  x x replace /<script(.*?)>([\\s\\S]*?)<\\/script>/gi  x x replace /<(script\|del)(?=[\\s>])[\\w\\W]*?<\\/\\1\\s*>/gi  x x replace /\\<script[\\s\\S]*?\\>[\\s\\S]*?\\<\\/script\\>/g  x x replace /<(script\|style\|title)[^<]+<\\/(script\|style\|title)>/gm  x x replace /<script[^>]*>([\\s\\S]*?)<\\/script>/gi  x x replace /<script[\\s\\S]*?<\\/script>/gi  x x replace / ?<!-- ?/g  x x replace /require\\('\\.\\.\\/common'\\);/g  x x replace /\\.\\.\\/\\.\\.\\/lib\\//g  x indexOf . 1 x x replace /^\\.\\//  replace /\\/\\.\\// / replace /[^\\/]*\\/\\.\\.\\//  x x replace /([^.\\s]+\\.)+/  x x replace /<!\\-\\-DEVEL[\\d\\D]*?DEVEL\\-\\->/g  x x replace /^\\.\\//  replace /\\/\\.\\// / replace /[^\\/]*\\/\\.\\.\\//  x |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:66:17:66:51 | /(\\/\|\\s ... '\|")?/g | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:66:17:66:51 | /(\\/\|\\s ... '\|")?/g | fileImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:66:17:66:51 | /(\\/\|\\s ... '\|")?/g | receiverName | x |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:66:54:66:55 | "" | CalleeFlexibleAccessPath | x.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:66:54:66:55 | "" | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:66:54:66:55 | "" | contextFunctionInterfaces |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:66:54:66:55 | "" | contextSurroundingFunctionParameters | (x) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:66:54:66:55 | "" | enclosingFunctionBody | x x x replace /<script\\b[^<]*(?:(?!<\\/script>)<[^<]*)*<\\/script>/g  x x replace /(\\/\|\\s)on\\w+=(\\'\|")?[^"]*(\\'\|")?/g  x x replace /<\\/script>/g  x x replace /<(.)?br(.)?>/g  x x replace /<\\/?b>/g  x x replace /<(ul\|ol)><\\/(ul\|ol)>/gi  x x replace /<li><\\/li>/gi  x x replace /<!--(.*?)-->/gm  x x replace /\\sng-[a-z-]+/  x x replace /\\sng-[a-z-]+/g  x x replace /(<!--\\[CDATA\\[\|\\]\\]-->)/g \n x x replace /<script.+desktop\\-only.+<\\/script>/g  x x replace /<script async.+?<\\/script>/g  x x replace /<!--[\\s\\S]*?-->\|<\\?(?:php)?[\\s\\S]*?\\?>/gi  x x replace /\\x2E\\x2E\\x2F\\x2E\\x2E\\x2F/g  x x replace /<script.*>.*<\\/script>/gi  x x replace /^(\\.\\.\\/?)+/g  x x replace /<script\\b[^<]*(?:(?!<\\/script>)<[^<]*)*<\\/script>/g $0 unknown $0  x x replace /<\\/?([a-z][a-z0-9]*)\\b[^>]*>/gi  x x replace /\\.\\./g  x x replace /\\.\\.\\//g  x x replace /\\/\\.\\./g  x x replace /<script(.*?)>([\\s\\S]*?)<\\/script>/gi  x x replace /<(script\|del)(?=[\\s>])[\\w\\W]*?<\\/\\1\\s*>/gi  x x replace /\\<script[\\s\\S]*?\\>[\\s\\S]*?\\<\\/script\\>/g  x x replace /<(script\|style\|title)[^<]+<\\/(script\|style\|title)>/gm  x x replace /<script[^>]*>([\\s\\S]*?)<\\/script>/gi  x x replace /<script[\\s\\S]*?<\\/script>/gi  x x replace / ?<!-- ?/g  x x replace /require\\('\\.\\.\\/common'\\);/g  x x replace /\\.\\.\\/\\.\\.\\/lib\\//g  x indexOf . 1 x x replace /^\\.\\//  replace /\\/\\.\\// / replace /[^\\/]*\\/\\.\\.\\//  x x replace /([^.\\s]+\\.)+/  x x replace /<!\\-\\-DEVEL[\\d\\D]*?DEVEL\\-\\->/g  x x replace /^\\.\\//  replace /\\/\\.\\// / replace /[^\\/]*\\/\\.\\.\\//  x |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:66:54:66:55 | "" | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:66:54:66:55 | "" | fileImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:66:54:66:55 | "" | receiverName | x |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:68:17:68:29 | /<\\/script>/g | CalleeFlexibleAccessPath | x.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:68:17:68:29 | /<\\/script>/g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:68:17:68:29 | /<\\/script>/g | contextFunctionInterfaces |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:68:17:68:29 | /<\\/script>/g | contextSurroundingFunctionParameters | (x) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:68:17:68:29 | /<\\/script>/g | enclosingFunctionBody | x x x replace /<script\\b[^<]*(?:(?!<\\/script>)<[^<]*)*<\\/script>/g  x x replace /(\\/\|\\s)on\\w+=(\\'\|")?[^"]*(\\'\|")?/g  x x replace /<\\/script>/g  x x replace /<(.)?br(.)?>/g  x x replace /<\\/?b>/g  x x replace /<(ul\|ol)><\\/(ul\|ol)>/gi  x x replace /<li><\\/li>/gi  x x replace /<!--(.*?)-->/gm  x x replace /\\sng-[a-z-]+/  x x replace /\\sng-[a-z-]+/g  x x replace /(<!--\\[CDATA\\[\|\\]\\]-->)/g \n x x replace /<script.+desktop\\-only.+<\\/script>/g  x x replace /<script async.+?<\\/script>/g  x x replace /<!--[\\s\\S]*?-->\|<\\?(?:php)?[\\s\\S]*?\\?>/gi  x x replace /\\x2E\\x2E\\x2F\\x2E\\x2E\\x2F/g  x x replace /<script.*>.*<\\/script>/gi  x x replace /^(\\.\\.\\/?)+/g  x x replace /<script\\b[^<]*(?:(?!<\\/script>)<[^<]*)*<\\/script>/g $0 unknown $0  x x replace /<\\/?([a-z][a-z0-9]*)\\b[^>]*>/gi  x x replace /\\.\\./g  x x replace /\\.\\.\\//g  x x replace /\\/\\.\\./g  x x replace /<script(.*?)>([\\s\\S]*?)<\\/script>/gi  x x replace /<(script\|del)(?=[\\s>])[\\w\\W]*?<\\/\\1\\s*>/gi  x x replace /\\<script[\\s\\S]*?\\>[\\s\\S]*?\\<\\/script\\>/g  x x replace /<(script\|style\|title)[^<]+<\\/(script\|style\|title)>/gm  x x replace /<script[^>]*>([\\s\\S]*?)<\\/script>/gi  x x replace /<script[\\s\\S]*?<\\/script>/gi  x x replace / ?<!-- ?/g  x x replace /require\\('\\.\\.\\/common'\\);/g  x x replace /\\.\\.\\/\\.\\.\\/lib\\//g  x indexOf . 1 x x replace /^\\.\\//  replace /\\/\\.\\// / replace /[^\\/]*\\/\\.\\.\\//  x x replace /([^.\\s]+\\.)+/  x x replace /<!\\-\\-DEVEL[\\d\\D]*?DEVEL\\-\\->/g  x x replace /^\\.\\//  replace /\\/\\.\\// / replace /[^\\/]*\\/\\.\\.\\//  x |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:68:17:68:29 | /<\\/script>/g | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:68:17:68:29 | /<\\/script>/g | fileImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:68:17:68:29 | /<\\/script>/g | receiverName | x |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:68:32:68:33 | "" | CalleeFlexibleAccessPath | x.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:68:32:68:33 | "" | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:68:32:68:33 | "" | contextFunctionInterfaces |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:68:32:68:33 | "" | contextSurroundingFunctionParameters | (x) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:68:32:68:33 | "" | enclosingFunctionBody | x x x replace /<script\\b[^<]*(?:(?!<\\/script>)<[^<]*)*<\\/script>/g  x x replace /(\\/\|\\s)on\\w+=(\\'\|")?[^"]*(\\'\|")?/g  x x replace /<\\/script>/g  x x replace /<(.)?br(.)?>/g  x x replace /<\\/?b>/g  x x replace /<(ul\|ol)><\\/(ul\|ol)>/gi  x x replace /<li><\\/li>/gi  x x replace /<!--(.*?)-->/gm  x x replace /\\sng-[a-z-]+/  x x replace /\\sng-[a-z-]+/g  x x replace /(<!--\\[CDATA\\[\|\\]\\]-->)/g \n x x replace /<script.+desktop\\-only.+<\\/script>/g  x x replace /<script async.+?<\\/script>/g  x x replace /<!--[\\s\\S]*?-->\|<\\?(?:php)?[\\s\\S]*?\\?>/gi  x x replace /\\x2E\\x2E\\x2F\\x2E\\x2E\\x2F/g  x x replace /<script.*>.*<\\/script>/gi  x x replace /^(\\.\\.\\/?)+/g  x x replace /<script\\b[^<]*(?:(?!<\\/script>)<[^<]*)*<\\/script>/g $0 unknown $0  x x replace /<\\/?([a-z][a-z0-9]*)\\b[^>]*>/gi  x x replace /\\.\\./g  x x replace /\\.\\.\\//g  x x replace /\\/\\.\\./g  x x replace /<script(.*?)>([\\s\\S]*?)<\\/script>/gi  x x replace /<(script\|del)(?=[\\s>])[\\w\\W]*?<\\/\\1\\s*>/gi  x x replace /\\<script[\\s\\S]*?\\>[\\s\\S]*?\\<\\/script\\>/g  x x replace /<(script\|style\|title)[^<]+<\\/(script\|style\|title)>/gm  x x replace /<script[^>]*>([\\s\\S]*?)<\\/script>/gi  x x replace /<script[\\s\\S]*?<\\/script>/gi  x x replace / ?<!-- ?/g  x x replace /require\\('\\.\\.\\/common'\\);/g  x x replace /\\.\\.\\/\\.\\.\\/lib\\//g  x indexOf . 1 x x replace /^\\.\\//  replace /\\/\\.\\// / replace /[^\\/]*\\/\\.\\.\\//  x x replace /([^.\\s]+\\.)+/  x x replace /<!\\-\\-DEVEL[\\d\\D]*?DEVEL\\-\\->/g  x x replace /^\\.\\//  replace /\\/\\.\\// / replace /[^\\/]*\\/\\.\\.\\//  x |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:68:32:68:33 | "" | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:68:32:68:33 | "" | fileImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:68:32:68:33 | "" | receiverName | x |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:70:17:70:31 | /<(.)?br(.)?>/g | CalleeFlexibleAccessPath | x.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:70:17:70:31 | /<(.)?br(.)?>/g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:70:17:70:31 | /<(.)?br(.)?>/g | contextFunctionInterfaces |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:70:17:70:31 | /<(.)?br(.)?>/g | contextSurroundingFunctionParameters | (x) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:70:17:70:31 | /<(.)?br(.)?>/g | enclosingFunctionBody | x x x replace /<script\\b[^<]*(?:(?!<\\/script>)<[^<]*)*<\\/script>/g  x x replace /(\\/\|\\s)on\\w+=(\\'\|")?[^"]*(\\'\|")?/g  x x replace /<\\/script>/g  x x replace /<(.)?br(.)?>/g  x x replace /<\\/?b>/g  x x replace /<(ul\|ol)><\\/(ul\|ol)>/gi  x x replace /<li><\\/li>/gi  x x replace /<!--(.*?)-->/gm  x x replace /\\sng-[a-z-]+/  x x replace /\\sng-[a-z-]+/g  x x replace /(<!--\\[CDATA\\[\|\\]\\]-->)/g \n x x replace /<script.+desktop\\-only.+<\\/script>/g  x x replace /<script async.+?<\\/script>/g  x x replace /<!--[\\s\\S]*?-->\|<\\?(?:php)?[\\s\\S]*?\\?>/gi  x x replace /\\x2E\\x2E\\x2F\\x2E\\x2E\\x2F/g  x x replace /<script.*>.*<\\/script>/gi  x x replace /^(\\.\\.\\/?)+/g  x x replace /<script\\b[^<]*(?:(?!<\\/script>)<[^<]*)*<\\/script>/g $0 unknown $0  x x replace /<\\/?([a-z][a-z0-9]*)\\b[^>]*>/gi  x x replace /\\.\\./g  x x replace /\\.\\.\\//g  x x replace /\\/\\.\\./g  x x replace /<script(.*?)>([\\s\\S]*?)<\\/script>/gi  x x replace /<(script\|del)(?=[\\s>])[\\w\\W]*?<\\/\\1\\s*>/gi  x x replace /\\<script[\\s\\S]*?\\>[\\s\\S]*?\\<\\/script\\>/g  x x replace /<(script\|style\|title)[^<]+<\\/(script\|style\|title)>/gm  x x replace /<script[^>]*>([\\s\\S]*?)<\\/script>/gi  x x replace /<script[\\s\\S]*?<\\/script>/gi  x x replace / ?<!-- ?/g  x x replace /require\\('\\.\\.\\/common'\\);/g  x x replace /\\.\\.\\/\\.\\.\\/lib\\//g  x indexOf . 1 x x replace /^\\.\\//  replace /\\/\\.\\// / replace /[^\\/]*\\/\\.\\.\\//  x x replace /([^.\\s]+\\.)+/  x x replace /<!\\-\\-DEVEL[\\d\\D]*?DEVEL\\-\\->/g  x x replace /^\\.\\//  replace /\\/\\.\\// / replace /[^\\/]*\\/\\.\\.\\//  x |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:70:17:70:31 | /<(.)?br(.)?>/g | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:70:17:70:31 | /<(.)?br(.)?>/g | fileImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:70:17:70:31 | /<(.)?br(.)?>/g | receiverName | x |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:70:34:70:35 | "" | CalleeFlexibleAccessPath | x.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:70:34:70:35 | "" | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:70:34:70:35 | "" | contextFunctionInterfaces |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:70:34:70:35 | "" | contextSurroundingFunctionParameters | (x) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:70:34:70:35 | "" | enclosingFunctionBody | x x x replace /<script\\b[^<]*(?:(?!<\\/script>)<[^<]*)*<\\/script>/g  x x replace /(\\/\|\\s)on\\w+=(\\'\|")?[^"]*(\\'\|")?/g  x x replace /<\\/script>/g  x x replace /<(.)?br(.)?>/g  x x replace /<\\/?b>/g  x x replace /<(ul\|ol)><\\/(ul\|ol)>/gi  x x replace /<li><\\/li>/gi  x x replace /<!--(.*?)-->/gm  x x replace /\\sng-[a-z-]+/  x x replace /\\sng-[a-z-]+/g  x x replace /(<!--\\[CDATA\\[\|\\]\\]-->)/g \n x x replace /<script.+desktop\\-only.+<\\/script>/g  x x replace /<script async.+?<\\/script>/g  x x replace /<!--[\\s\\S]*?-->\|<\\?(?:php)?[\\s\\S]*?\\?>/gi  x x replace /\\x2E\\x2E\\x2F\\x2E\\x2E\\x2F/g  x x replace /<script.*>.*<\\/script>/gi  x x replace /^(\\.\\.\\/?)+/g  x x replace /<script\\b[^<]*(?:(?!<\\/script>)<[^<]*)*<\\/script>/g $0 unknown $0  x x replace /<\\/?([a-z][a-z0-9]*)\\b[^>]*>/gi  x x replace /\\.\\./g  x x replace /\\.\\.\\//g  x x replace /\\/\\.\\./g  x x replace /<script(.*?)>([\\s\\S]*?)<\\/script>/gi  x x replace /<(script\|del)(?=[\\s>])[\\w\\W]*?<\\/\\1\\s*>/gi  x x replace /\\<script[\\s\\S]*?\\>[\\s\\S]*?\\<\\/script\\>/g  x x replace /<(script\|style\|title)[^<]+<\\/(script\|style\|title)>/gm  x x replace /<script[^>]*>([\\s\\S]*?)<\\/script>/gi  x x replace /<script[\\s\\S]*?<\\/script>/gi  x x replace / ?<!-- ?/g  x x replace /require\\('\\.\\.\\/common'\\);/g  x x replace /\\.\\.\\/\\.\\.\\/lib\\//g  x indexOf . 1 x x replace /^\\.\\//  replace /\\/\\.\\// / replace /[^\\/]*\\/\\.\\.\\//  x x replace /([^.\\s]+\\.)+/  x x replace /<!\\-\\-DEVEL[\\d\\D]*?DEVEL\\-\\->/g  x x replace /^\\.\\//  replace /\\/\\.\\// / replace /[^\\/]*\\/\\.\\.\\//  x |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:70:34:70:35 | "" | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:70:34:70:35 | "" | fileImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:70:34:70:35 | "" | receiverName | x |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:71:17:71:25 | /<\\/?b>/g | CalleeFlexibleAccessPath | x.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:71:17:71:25 | /<\\/?b>/g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:71:17:71:25 | /<\\/?b>/g | contextFunctionInterfaces |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:71:17:71:25 | /<\\/?b>/g | contextSurroundingFunctionParameters | (x) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:71:17:71:25 | /<\\/?b>/g | enclosingFunctionBody | x x x replace /<script\\b[^<]*(?:(?!<\\/script>)<[^<]*)*<\\/script>/g  x x replace /(\\/\|\\s)on\\w+=(\\'\|")?[^"]*(\\'\|")?/g  x x replace /<\\/script>/g  x x replace /<(.)?br(.)?>/g  x x replace /<\\/?b>/g  x x replace /<(ul\|ol)><\\/(ul\|ol)>/gi  x x replace /<li><\\/li>/gi  x x replace /<!--(.*?)-->/gm  x x replace /\\sng-[a-z-]+/  x x replace /\\sng-[a-z-]+/g  x x replace /(<!--\\[CDATA\\[\|\\]\\]-->)/g \n x x replace /<script.+desktop\\-only.+<\\/script>/g  x x replace /<script async.+?<\\/script>/g  x x replace /<!--[\\s\\S]*?-->\|<\\?(?:php)?[\\s\\S]*?\\?>/gi  x x replace /\\x2E\\x2E\\x2F\\x2E\\x2E\\x2F/g  x x replace /<script.*>.*<\\/script>/gi  x x replace /^(\\.\\.\\/?)+/g  x x replace /<script\\b[^<]*(?:(?!<\\/script>)<[^<]*)*<\\/script>/g $0 unknown $0  x x replace /<\\/?([a-z][a-z0-9]*)\\b[^>]*>/gi  x x replace /\\.\\./g  x x replace /\\.\\.\\//g  x x replace /\\/\\.\\./g  x x replace /<script(.*?)>([\\s\\S]*?)<\\/script>/gi  x x replace /<(script\|del)(?=[\\s>])[\\w\\W]*?<\\/\\1\\s*>/gi  x x replace /\\<script[\\s\\S]*?\\>[\\s\\S]*?\\<\\/script\\>/g  x x replace /<(script\|style\|title)[^<]+<\\/(script\|style\|title)>/gm  x x replace /<script[^>]*>([\\s\\S]*?)<\\/script>/gi  x x replace /<script[\\s\\S]*?<\\/script>/gi  x x replace / ?<!-- ?/g  x x replace /require\\('\\.\\.\\/common'\\);/g  x x replace /\\.\\.\\/\\.\\.\\/lib\\//g  x indexOf . 1 x x replace /^\\.\\//  replace /\\/\\.\\// / replace /[^\\/]*\\/\\.\\.\\//  x x replace /([^.\\s]+\\.)+/  x x replace /<!\\-\\-DEVEL[\\d\\D]*?DEVEL\\-\\->/g  x x replace /^\\.\\//  replace /\\/\\.\\// / replace /[^\\/]*\\/\\.\\.\\//  x |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:71:17:71:25 | /<\\/?b>/g | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:71:17:71:25 | /<\\/?b>/g | fileImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:71:17:71:25 | /<\\/?b>/g | receiverName | x |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:71:28:71:29 | "" | CalleeFlexibleAccessPath | x.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:71:28:71:29 | "" | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:71:28:71:29 | "" | contextFunctionInterfaces |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:71:28:71:29 | "" | contextSurroundingFunctionParameters | (x) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:71:28:71:29 | "" | enclosingFunctionBody | x x x replace /<script\\b[^<]*(?:(?!<\\/script>)<[^<]*)*<\\/script>/g  x x replace /(\\/\|\\s)on\\w+=(\\'\|")?[^"]*(\\'\|")?/g  x x replace /<\\/script>/g  x x replace /<(.)?br(.)?>/g  x x replace /<\\/?b>/g  x x replace /<(ul\|ol)><\\/(ul\|ol)>/gi  x x replace /<li><\\/li>/gi  x x replace /<!--(.*?)-->/gm  x x replace /\\sng-[a-z-]+/  x x replace /\\sng-[a-z-]+/g  x x replace /(<!--\\[CDATA\\[\|\\]\\]-->)/g \n x x replace /<script.+desktop\\-only.+<\\/script>/g  x x replace /<script async.+?<\\/script>/g  x x replace /<!--[\\s\\S]*?-->\|<\\?(?:php)?[\\s\\S]*?\\?>/gi  x x replace /\\x2E\\x2E\\x2F\\x2E\\x2E\\x2F/g  x x replace /<script.*>.*<\\/script>/gi  x x replace /^(\\.\\.\\/?)+/g  x x replace /<script\\b[^<]*(?:(?!<\\/script>)<[^<]*)*<\\/script>/g $0 unknown $0  x x replace /<\\/?([a-z][a-z0-9]*)\\b[^>]*>/gi  x x replace /\\.\\./g  x x replace /\\.\\.\\//g  x x replace /\\/\\.\\./g  x x replace /<script(.*?)>([\\s\\S]*?)<\\/script>/gi  x x replace /<(script\|del)(?=[\\s>])[\\w\\W]*?<\\/\\1\\s*>/gi  x x replace /\\<script[\\s\\S]*?\\>[\\s\\S]*?\\<\\/script\\>/g  x x replace /<(script\|style\|title)[^<]+<\\/(script\|style\|title)>/gm  x x replace /<script[^>]*>([\\s\\S]*?)<\\/script>/gi  x x replace /<script[\\s\\S]*?<\\/script>/gi  x x replace / ?<!-- ?/g  x x replace /require\\('\\.\\.\\/common'\\);/g  x x replace /\\.\\.\\/\\.\\.\\/lib\\//g  x indexOf . 1 x x replace /^\\.\\//  replace /\\/\\.\\// / replace /[^\\/]*\\/\\.\\.\\//  x x replace /([^.\\s]+\\.)+/  x x replace /<!\\-\\-DEVEL[\\d\\D]*?DEVEL\\-\\->/g  x x replace /^\\.\\//  replace /\\/\\.\\// / replace /[^\\/]*\\/\\.\\.\\//  x |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:71:28:71:29 | "" | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:71:28:71:29 | "" | fileImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:71:28:71:29 | "" | receiverName | x |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:72:17:72:40 | /<(ul\|o ... ol)>/gi | CalleeFlexibleAccessPath | x.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:72:17:72:40 | /<(ul\|o ... ol)>/gi | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:72:17:72:40 | /<(ul\|o ... ol)>/gi | contextFunctionInterfaces |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:72:17:72:40 | /<(ul\|o ... ol)>/gi | contextSurroundingFunctionParameters | (x) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:72:17:72:40 | /<(ul\|o ... ol)>/gi | enclosingFunctionBody | x x x replace /<script\\b[^<]*(?:(?!<\\/script>)<[^<]*)*<\\/script>/g  x x replace /(\\/\|\\s)on\\w+=(\\'\|")?[^"]*(\\'\|")?/g  x x replace /<\\/script>/g  x x replace /<(.)?br(.)?>/g  x x replace /<\\/?b>/g  x x replace /<(ul\|ol)><\\/(ul\|ol)>/gi  x x replace /<li><\\/li>/gi  x x replace /<!--(.*?)-->/gm  x x replace /\\sng-[a-z-]+/  x x replace /\\sng-[a-z-]+/g  x x replace /(<!--\\[CDATA\\[\|\\]\\]-->)/g \n x x replace /<script.+desktop\\-only.+<\\/script>/g  x x replace /<script async.+?<\\/script>/g  x x replace /<!--[\\s\\S]*?-->\|<\\?(?:php)?[\\s\\S]*?\\?>/gi  x x replace /\\x2E\\x2E\\x2F\\x2E\\x2E\\x2F/g  x x replace /<script.*>.*<\\/script>/gi  x x replace /^(\\.\\.\\/?)+/g  x x replace /<script\\b[^<]*(?:(?!<\\/script>)<[^<]*)*<\\/script>/g $0 unknown $0  x x replace /<\\/?([a-z][a-z0-9]*)\\b[^>]*>/gi  x x replace /\\.\\./g  x x replace /\\.\\.\\//g  x x replace /\\/\\.\\./g  x x replace /<script(.*?)>([\\s\\S]*?)<\\/script>/gi  x x replace /<(script\|del)(?=[\\s>])[\\w\\W]*?<\\/\\1\\s*>/gi  x x replace /\\<script[\\s\\S]*?\\>[\\s\\S]*?\\<\\/script\\>/g  x x replace /<(script\|style\|title)[^<]+<\\/(script\|style\|title)>/gm  x x replace /<script[^>]*>([\\s\\S]*?)<\\/script>/gi  x x replace /<script[\\s\\S]*?<\\/script>/gi  x x replace / ?<!-- ?/g  x x replace /require\\('\\.\\.\\/common'\\);/g  x x replace /\\.\\.\\/\\.\\.\\/lib\\//g  x indexOf . 1 x x replace /^\\.\\//  replace /\\/\\.\\// / replace /[^\\/]*\\/\\.\\.\\//  x x replace /([^.\\s]+\\.)+/  x x replace /<!\\-\\-DEVEL[\\d\\D]*?DEVEL\\-\\->/g  x x replace /^\\.\\//  replace /\\/\\.\\// / replace /[^\\/]*\\/\\.\\.\\//  x |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:72:17:72:40 | /<(ul\|o ... ol)>/gi | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:72:17:72:40 | /<(ul\|o ... ol)>/gi | fileImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:72:17:72:40 | /<(ul\|o ... ol)>/gi | receiverName | x |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:72:43:72:44 | "" | CalleeFlexibleAccessPath | x.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:72:43:72:44 | "" | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:72:43:72:44 | "" | contextFunctionInterfaces |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:72:43:72:44 | "" | contextSurroundingFunctionParameters | (x) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:72:43:72:44 | "" | enclosingFunctionBody | x x x replace /<script\\b[^<]*(?:(?!<\\/script>)<[^<]*)*<\\/script>/g  x x replace /(\\/\|\\s)on\\w+=(\\'\|")?[^"]*(\\'\|")?/g  x x replace /<\\/script>/g  x x replace /<(.)?br(.)?>/g  x x replace /<\\/?b>/g  x x replace /<(ul\|ol)><\\/(ul\|ol)>/gi  x x replace /<li><\\/li>/gi  x x replace /<!--(.*?)-->/gm  x x replace /\\sng-[a-z-]+/  x x replace /\\sng-[a-z-]+/g  x x replace /(<!--\\[CDATA\\[\|\\]\\]-->)/g \n x x replace /<script.+desktop\\-only.+<\\/script>/g  x x replace /<script async.+?<\\/script>/g  x x replace /<!--[\\s\\S]*?-->\|<\\?(?:php)?[\\s\\S]*?\\?>/gi  x x replace /\\x2E\\x2E\\x2F\\x2E\\x2E\\x2F/g  x x replace /<script.*>.*<\\/script>/gi  x x replace /^(\\.\\.\\/?)+/g  x x replace /<script\\b[^<]*(?:(?!<\\/script>)<[^<]*)*<\\/script>/g $0 unknown $0  x x replace /<\\/?([a-z][a-z0-9]*)\\b[^>]*>/gi  x x replace /\\.\\./g  x x replace /\\.\\.\\//g  x x replace /\\/\\.\\./g  x x replace /<script(.*?)>([\\s\\S]*?)<\\/script>/gi  x x replace /<(script\|del)(?=[\\s>])[\\w\\W]*?<\\/\\1\\s*>/gi  x x replace /\\<script[\\s\\S]*?\\>[\\s\\S]*?\\<\\/script\\>/g  x x replace /<(script\|style\|title)[^<]+<\\/(script\|style\|title)>/gm  x x replace /<script[^>]*>([\\s\\S]*?)<\\/script>/gi  x x replace /<script[\\s\\S]*?<\\/script>/gi  x x replace / ?<!-- ?/g  x x replace /require\\('\\.\\.\\/common'\\);/g  x x replace /\\.\\.\\/\\.\\.\\/lib\\//g  x indexOf . 1 x x replace /^\\.\\//  replace /\\/\\.\\// / replace /[^\\/]*\\/\\.\\.\\//  x x replace /([^.\\s]+\\.)+/  x x replace /<!\\-\\-DEVEL[\\d\\D]*?DEVEL\\-\\->/g  x x replace /^\\.\\//  replace /\\/\\.\\// / replace /[^\\/]*\\/\\.\\.\\//  x |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:72:43:72:44 | "" | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:72:43:72:44 | "" | fileImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:72:43:72:44 | "" | receiverName | x |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:73:17:73:30 | /<li><\\/li>/gi | CalleeFlexibleAccessPath | x.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:73:17:73:30 | /<li><\\/li>/gi | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:73:17:73:30 | /<li><\\/li>/gi | contextFunctionInterfaces |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:73:17:73:30 | /<li><\\/li>/gi | contextSurroundingFunctionParameters | (x) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:73:17:73:30 | /<li><\\/li>/gi | enclosingFunctionBody | x x x replace /<script\\b[^<]*(?:(?!<\\/script>)<[^<]*)*<\\/script>/g  x x replace /(\\/\|\\s)on\\w+=(\\'\|")?[^"]*(\\'\|")?/g  x x replace /<\\/script>/g  x x replace /<(.)?br(.)?>/g  x x replace /<\\/?b>/g  x x replace /<(ul\|ol)><\\/(ul\|ol)>/gi  x x replace /<li><\\/li>/gi  x x replace /<!--(.*?)-->/gm  x x replace /\\sng-[a-z-]+/  x x replace /\\sng-[a-z-]+/g  x x replace /(<!--\\[CDATA\\[\|\\]\\]-->)/g \n x x replace /<script.+desktop\\-only.+<\\/script>/g  x x replace /<script async.+?<\\/script>/g  x x replace /<!--[\\s\\S]*?-->\|<\\?(?:php)?[\\s\\S]*?\\?>/gi  x x replace /\\x2E\\x2E\\x2F\\x2E\\x2E\\x2F/g  x x replace /<script.*>.*<\\/script>/gi  x x replace /^(\\.\\.\\/?)+/g  x x replace /<script\\b[^<]*(?:(?!<\\/script>)<[^<]*)*<\\/script>/g $0 unknown $0  x x replace /<\\/?([a-z][a-z0-9]*)\\b[^>]*>/gi  x x replace /\\.\\./g  x x replace /\\.\\.\\//g  x x replace /\\/\\.\\./g  x x replace /<script(.*?)>([\\s\\S]*?)<\\/script>/gi  x x replace /<(script\|del)(?=[\\s>])[\\w\\W]*?<\\/\\1\\s*>/gi  x x replace /\\<script[\\s\\S]*?\\>[\\s\\S]*?\\<\\/script\\>/g  x x replace /<(script\|style\|title)[^<]+<\\/(script\|style\|title)>/gm  x x replace /<script[^>]*>([\\s\\S]*?)<\\/script>/gi  x x replace /<script[\\s\\S]*?<\\/script>/gi  x x replace / ?<!-- ?/g  x x replace /require\\('\\.\\.\\/common'\\);/g  x x replace /\\.\\.\\/\\.\\.\\/lib\\//g  x indexOf . 1 x x replace /^\\.\\//  replace /\\/\\.\\// / replace /[^\\/]*\\/\\.\\.\\//  x x replace /([^.\\s]+\\.)+/  x x replace /<!\\-\\-DEVEL[\\d\\D]*?DEVEL\\-\\->/g  x x replace /^\\.\\//  replace /\\/\\.\\// / replace /[^\\/]*\\/\\.\\.\\//  x |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:73:17:73:30 | /<li><\\/li>/gi | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:73:17:73:30 | /<li><\\/li>/gi | fileImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:73:17:73:30 | /<li><\\/li>/gi | receiverName | x |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:73:33:73:34 | "" | CalleeFlexibleAccessPath | x.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:73:33:73:34 | "" | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:73:33:73:34 | "" | contextFunctionInterfaces |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:73:33:73:34 | "" | contextSurroundingFunctionParameters | (x) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:73:33:73:34 | "" | enclosingFunctionBody | x x x replace /<script\\b[^<]*(?:(?!<\\/script>)<[^<]*)*<\\/script>/g  x x replace /(\\/\|\\s)on\\w+=(\\'\|")?[^"]*(\\'\|")?/g  x x replace /<\\/script>/g  x x replace /<(.)?br(.)?>/g  x x replace /<\\/?b>/g  x x replace /<(ul\|ol)><\\/(ul\|ol)>/gi  x x replace /<li><\\/li>/gi  x x replace /<!--(.*?)-->/gm  x x replace /\\sng-[a-z-]+/  x x replace /\\sng-[a-z-]+/g  x x replace /(<!--\\[CDATA\\[\|\\]\\]-->)/g \n x x replace /<script.+desktop\\-only.+<\\/script>/g  x x replace /<script async.+?<\\/script>/g  x x replace /<!--[\\s\\S]*?-->\|<\\?(?:php)?[\\s\\S]*?\\?>/gi  x x replace /\\x2E\\x2E\\x2F\\x2E\\x2E\\x2F/g  x x replace /<script.*>.*<\\/script>/gi  x x replace /^(\\.\\.\\/?)+/g  x x replace /<script\\b[^<]*(?:(?!<\\/script>)<[^<]*)*<\\/script>/g $0 unknown $0  x x replace /<\\/?([a-z][a-z0-9]*)\\b[^>]*>/gi  x x replace /\\.\\./g  x x replace /\\.\\.\\//g  x x replace /\\/\\.\\./g  x x replace /<script(.*?)>([\\s\\S]*?)<\\/script>/gi  x x replace /<(script\|del)(?=[\\s>])[\\w\\W]*?<\\/\\1\\s*>/gi  x x replace /\\<script[\\s\\S]*?\\>[\\s\\S]*?\\<\\/script\\>/g  x x replace /<(script\|style\|title)[^<]+<\\/(script\|style\|title)>/gm  x x replace /<script[^>]*>([\\s\\S]*?)<\\/script>/gi  x x replace /<script[\\s\\S]*?<\\/script>/gi  x x replace / ?<!-- ?/g  x x replace /require\\('\\.\\.\\/common'\\);/g  x x replace /\\.\\.\\/\\.\\.\\/lib\\//g  x indexOf . 1 x x replace /^\\.\\//  replace /\\/\\.\\// / replace /[^\\/]*\\/\\.\\.\\//  x x replace /([^.\\s]+\\.)+/  x x replace /<!\\-\\-DEVEL[\\d\\D]*?DEVEL\\-\\->/g  x x replace /^\\.\\//  replace /\\/\\.\\// / replace /[^\\/]*\\/\\.\\.\\//  x |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:73:33:73:34 | "" | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:73:33:73:34 | "" | fileImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:73:33:73:34 | "" | receiverName | x |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:75:17:75:32 | /<!--(.*?)-->/gm | CalleeFlexibleAccessPath | x.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:75:17:75:32 | /<!--(.*?)-->/gm | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:75:17:75:32 | /<!--(.*?)-->/gm | contextFunctionInterfaces |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:75:17:75:32 | /<!--(.*?)-->/gm | contextSurroundingFunctionParameters | (x) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:75:17:75:32 | /<!--(.*?)-->/gm | enclosingFunctionBody | x x x replace /<script\\b[^<]*(?:(?!<\\/script>)<[^<]*)*<\\/script>/g  x x replace /(\\/\|\\s)on\\w+=(\\'\|")?[^"]*(\\'\|")?/g  x x replace /<\\/script>/g  x x replace /<(.)?br(.)?>/g  x x replace /<\\/?b>/g  x x replace /<(ul\|ol)><\\/(ul\|ol)>/gi  x x replace /<li><\\/li>/gi  x x replace /<!--(.*?)-->/gm  x x replace /\\sng-[a-z-]+/  x x replace /\\sng-[a-z-]+/g  x x replace /(<!--\\[CDATA\\[\|\\]\\]-->)/g \n x x replace /<script.+desktop\\-only.+<\\/script>/g  x x replace /<script async.+?<\\/script>/g  x x replace /<!--[\\s\\S]*?-->\|<\\?(?:php)?[\\s\\S]*?\\?>/gi  x x replace /\\x2E\\x2E\\x2F\\x2E\\x2E\\x2F/g  x x replace /<script.*>.*<\\/script>/gi  x x replace /^(\\.\\.\\/?)+/g  x x replace /<script\\b[^<]*(?:(?!<\\/script>)<[^<]*)*<\\/script>/g $0 unknown $0  x x replace /<\\/?([a-z][a-z0-9]*)\\b[^>]*>/gi  x x replace /\\.\\./g  x x replace /\\.\\.\\//g  x x replace /\\/\\.\\./g  x x replace /<script(.*?)>([\\s\\S]*?)<\\/script>/gi  x x replace /<(script\|del)(?=[\\s>])[\\w\\W]*?<\\/\\1\\s*>/gi  x x replace /\\<script[\\s\\S]*?\\>[\\s\\S]*?\\<\\/script\\>/g  x x replace /<(script\|style\|title)[^<]+<\\/(script\|style\|title)>/gm  x x replace /<script[^>]*>([\\s\\S]*?)<\\/script>/gi  x x replace /<script[\\s\\S]*?<\\/script>/gi  x x replace / ?<!-- ?/g  x x replace /require\\('\\.\\.\\/common'\\);/g  x x replace /\\.\\.\\/\\.\\.\\/lib\\//g  x indexOf . 1 x x replace /^\\.\\//  replace /\\/\\.\\// / replace /[^\\/]*\\/\\.\\.\\//  x x replace /([^.\\s]+\\.)+/  x x replace /<!\\-\\-DEVEL[\\d\\D]*?DEVEL\\-\\->/g  x x replace /^\\.\\//  replace /\\/\\.\\// / replace /[^\\/]*\\/\\.\\.\\//  x |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:75:17:75:32 | /<!--(.*?)-->/gm | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:75:17:75:32 | /<!--(.*?)-->/gm | fileImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:75:17:75:32 | /<!--(.*?)-->/gm | receiverName | x |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:75:35:75:36 | "" | CalleeFlexibleAccessPath | x.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:75:35:75:36 | "" | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:75:35:75:36 | "" | contextFunctionInterfaces |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:75:35:75:36 | "" | contextSurroundingFunctionParameters | (x) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:75:35:75:36 | "" | enclosingFunctionBody | x x x replace /<script\\b[^<]*(?:(?!<\\/script>)<[^<]*)*<\\/script>/g  x x replace /(\\/\|\\s)on\\w+=(\\'\|")?[^"]*(\\'\|")?/g  x x replace /<\\/script>/g  x x replace /<(.)?br(.)?>/g  x x replace /<\\/?b>/g  x x replace /<(ul\|ol)><\\/(ul\|ol)>/gi  x x replace /<li><\\/li>/gi  x x replace /<!--(.*?)-->/gm  x x replace /\\sng-[a-z-]+/  x x replace /\\sng-[a-z-]+/g  x x replace /(<!--\\[CDATA\\[\|\\]\\]-->)/g \n x x replace /<script.+desktop\\-only.+<\\/script>/g  x x replace /<script async.+?<\\/script>/g  x x replace /<!--[\\s\\S]*?-->\|<\\?(?:php)?[\\s\\S]*?\\?>/gi  x x replace /\\x2E\\x2E\\x2F\\x2E\\x2E\\x2F/g  x x replace /<script.*>.*<\\/script>/gi  x x replace /^(\\.\\.\\/?)+/g  x x replace /<script\\b[^<]*(?:(?!<\\/script>)<[^<]*)*<\\/script>/g $0 unknown $0  x x replace /<\\/?([a-z][a-z0-9]*)\\b[^>]*>/gi  x x replace /\\.\\./g  x x replace /\\.\\.\\//g  x x replace /\\/\\.\\./g  x x replace /<script(.*?)>([\\s\\S]*?)<\\/script>/gi  x x replace /<(script\|del)(?=[\\s>])[\\w\\W]*?<\\/\\1\\s*>/gi  x x replace /\\<script[\\s\\S]*?\\>[\\s\\S]*?\\<\\/script\\>/g  x x replace /<(script\|style\|title)[^<]+<\\/(script\|style\|title)>/gm  x x replace /<script[^>]*>([\\s\\S]*?)<\\/script>/gi  x x replace /<script[\\s\\S]*?<\\/script>/gi  x x replace / ?<!-- ?/g  x x replace /require\\('\\.\\.\\/common'\\);/g  x x replace /\\.\\.\\/\\.\\.\\/lib\\//g  x indexOf . 1 x x replace /^\\.\\//  replace /\\/\\.\\// / replace /[^\\/]*\\/\\.\\.\\//  x x replace /([^.\\s]+\\.)+/  x x replace /<!\\-\\-DEVEL[\\d\\D]*?DEVEL\\-\\->/g  x x replace /^\\.\\//  replace /\\/\\.\\// / replace /[^\\/]*\\/\\.\\.\\//  x |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:75:35:75:36 | "" | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:75:35:75:36 | "" | fileImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:75:35:75:36 | "" | receiverName | x |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:76:17:76:30 | /\\sng-[a-z-]+/ | CalleeFlexibleAccessPath | x.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:76:17:76:30 | /\\sng-[a-z-]+/ | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:76:17:76:30 | /\\sng-[a-z-]+/ | contextFunctionInterfaces |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:76:17:76:30 | /\\sng-[a-z-]+/ | contextSurroundingFunctionParameters | (x) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:76:17:76:30 | /\\sng-[a-z-]+/ | enclosingFunctionBody | x x x replace /<script\\b[^<]*(?:(?!<\\/script>)<[^<]*)*<\\/script>/g  x x replace /(\\/\|\\s)on\\w+=(\\'\|")?[^"]*(\\'\|")?/g  x x replace /<\\/script>/g  x x replace /<(.)?br(.)?>/g  x x replace /<\\/?b>/g  x x replace /<(ul\|ol)><\\/(ul\|ol)>/gi  x x replace /<li><\\/li>/gi  x x replace /<!--(.*?)-->/gm  x x replace /\\sng-[a-z-]+/  x x replace /\\sng-[a-z-]+/g  x x replace /(<!--\\[CDATA\\[\|\\]\\]-->)/g \n x x replace /<script.+desktop\\-only.+<\\/script>/g  x x replace /<script async.+?<\\/script>/g  x x replace /<!--[\\s\\S]*?-->\|<\\?(?:php)?[\\s\\S]*?\\?>/gi  x x replace /\\x2E\\x2E\\x2F\\x2E\\x2E\\x2F/g  x x replace /<script.*>.*<\\/script>/gi  x x replace /^(\\.\\.\\/?)+/g  x x replace /<script\\b[^<]*(?:(?!<\\/script>)<[^<]*)*<\\/script>/g $0 unknown $0  x x replace /<\\/?([a-z][a-z0-9]*)\\b[^>]*>/gi  x x replace /\\.\\./g  x x replace /\\.\\.\\//g  x x replace /\\/\\.\\./g  x x replace /<script(.*?)>([\\s\\S]*?)<\\/script>/gi  x x replace /<(script\|del)(?=[\\s>])[\\w\\W]*?<\\/\\1\\s*>/gi  x x replace /\\<script[\\s\\S]*?\\>[\\s\\S]*?\\<\\/script\\>/g  x x replace /<(script\|style\|title)[^<]+<\\/(script\|style\|title)>/gm  x x replace /<script[^>]*>([\\s\\S]*?)<\\/script>/gi  x x replace /<script[\\s\\S]*?<\\/script>/gi  x x replace / ?<!-- ?/g  x x replace /require\\('\\.\\.\\/common'\\);/g  x x replace /\\.\\.\\/\\.\\.\\/lib\\//g  x indexOf . 1 x x replace /^\\.\\//  replace /\\/\\.\\// / replace /[^\\/]*\\/\\.\\.\\//  x x replace /([^.\\s]+\\.)+/  x x replace /<!\\-\\-DEVEL[\\d\\D]*?DEVEL\\-\\->/g  x x replace /^\\.\\//  replace /\\/\\.\\// / replace /[^\\/]*\\/\\.\\.\\//  x |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:76:17:76:30 | /\\sng-[a-z-]+/ | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:76:17:76:30 | /\\sng-[a-z-]+/ | fileImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:76:17:76:30 | /\\sng-[a-z-]+/ | receiverName | x |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:76:33:76:34 | "" | CalleeFlexibleAccessPath | x.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:76:33:76:34 | "" | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:76:33:76:34 | "" | contextFunctionInterfaces |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:76:33:76:34 | "" | contextSurroundingFunctionParameters | (x) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:76:33:76:34 | "" | enclosingFunctionBody | x x x replace /<script\\b[^<]*(?:(?!<\\/script>)<[^<]*)*<\\/script>/g  x x replace /(\\/\|\\s)on\\w+=(\\'\|")?[^"]*(\\'\|")?/g  x x replace /<\\/script>/g  x x replace /<(.)?br(.)?>/g  x x replace /<\\/?b>/g  x x replace /<(ul\|ol)><\\/(ul\|ol)>/gi  x x replace /<li><\\/li>/gi  x x replace /<!--(.*?)-->/gm  x x replace /\\sng-[a-z-]+/  x x replace /\\sng-[a-z-]+/g  x x replace /(<!--\\[CDATA\\[\|\\]\\]-->)/g \n x x replace /<script.+desktop\\-only.+<\\/script>/g  x x replace /<script async.+?<\\/script>/g  x x replace /<!--[\\s\\S]*?-->\|<\\?(?:php)?[\\s\\S]*?\\?>/gi  x x replace /\\x2E\\x2E\\x2F\\x2E\\x2E\\x2F/g  x x replace /<script.*>.*<\\/script>/gi  x x replace /^(\\.\\.\\/?)+/g  x x replace /<script\\b[^<]*(?:(?!<\\/script>)<[^<]*)*<\\/script>/g $0 unknown $0  x x replace /<\\/?([a-z][a-z0-9]*)\\b[^>]*>/gi  x x replace /\\.\\./g  x x replace /\\.\\.\\//g  x x replace /\\/\\.\\./g  x x replace /<script(.*?)>([\\s\\S]*?)<\\/script>/gi  x x replace /<(script\|del)(?=[\\s>])[\\w\\W]*?<\\/\\1\\s*>/gi  x x replace /\\<script[\\s\\S]*?\\>[\\s\\S]*?\\<\\/script\\>/g  x x replace /<(script\|style\|title)[^<]+<\\/(script\|style\|title)>/gm  x x replace /<script[^>]*>([\\s\\S]*?)<\\/script>/gi  x x replace /<script[\\s\\S]*?<\\/script>/gi  x x replace / ?<!-- ?/g  x x replace /require\\('\\.\\.\\/common'\\);/g  x x replace /\\.\\.\\/\\.\\.\\/lib\\//g  x indexOf . 1 x x replace /^\\.\\//  replace /\\/\\.\\// / replace /[^\\/]*\\/\\.\\.\\//  x x replace /([^.\\s]+\\.)+/  x x replace /<!\\-\\-DEVEL[\\d\\D]*?DEVEL\\-\\->/g  x x replace /^\\.\\//  replace /\\/\\.\\// / replace /[^\\/]*\\/\\.\\.\\//  x |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:76:33:76:34 | "" | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:76:33:76:34 | "" | fileImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:76:33:76:34 | "" | receiverName | x |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:77:17:77:31 | /\\sng-[a-z-]+/g | CalleeFlexibleAccessPath | x.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:77:17:77:31 | /\\sng-[a-z-]+/g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:77:17:77:31 | /\\sng-[a-z-]+/g | contextFunctionInterfaces |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:77:17:77:31 | /\\sng-[a-z-]+/g | contextSurroundingFunctionParameters | (x) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:77:17:77:31 | /\\sng-[a-z-]+/g | enclosingFunctionBody | x x x replace /<script\\b[^<]*(?:(?!<\\/script>)<[^<]*)*<\\/script>/g  x x replace /(\\/\|\\s)on\\w+=(\\'\|")?[^"]*(\\'\|")?/g  x x replace /<\\/script>/g  x x replace /<(.)?br(.)?>/g  x x replace /<\\/?b>/g  x x replace /<(ul\|ol)><\\/(ul\|ol)>/gi  x x replace /<li><\\/li>/gi  x x replace /<!--(.*?)-->/gm  x x replace /\\sng-[a-z-]+/  x x replace /\\sng-[a-z-]+/g  x x replace /(<!--\\[CDATA\\[\|\\]\\]-->)/g \n x x replace /<script.+desktop\\-only.+<\\/script>/g  x x replace /<script async.+?<\\/script>/g  x x replace /<!--[\\s\\S]*?-->\|<\\?(?:php)?[\\s\\S]*?\\?>/gi  x x replace /\\x2E\\x2E\\x2F\\x2E\\x2E\\x2F/g  x x replace /<script.*>.*<\\/script>/gi  x x replace /^(\\.\\.\\/?)+/g  x x replace /<script\\b[^<]*(?:(?!<\\/script>)<[^<]*)*<\\/script>/g $0 unknown $0  x x replace /<\\/?([a-z][a-z0-9]*)\\b[^>]*>/gi  x x replace /\\.\\./g  x x replace /\\.\\.\\//g  x x replace /\\/\\.\\./g  x x replace /<script(.*?)>([\\s\\S]*?)<\\/script>/gi  x x replace /<(script\|del)(?=[\\s>])[\\w\\W]*?<\\/\\1\\s*>/gi  x x replace /\\<script[\\s\\S]*?\\>[\\s\\S]*?\\<\\/script\\>/g  x x replace /<(script\|style\|title)[^<]+<\\/(script\|style\|title)>/gm  x x replace /<script[^>]*>([\\s\\S]*?)<\\/script>/gi  x x replace /<script[\\s\\S]*?<\\/script>/gi  x x replace / ?<!-- ?/g  x x replace /require\\('\\.\\.\\/common'\\);/g  x x replace /\\.\\.\\/\\.\\.\\/lib\\//g  x indexOf . 1 x x replace /^\\.\\//  replace /\\/\\.\\// / replace /[^\\/]*\\/\\.\\.\\//  x x replace /([^.\\s]+\\.)+/  x x replace /<!\\-\\-DEVEL[\\d\\D]*?DEVEL\\-\\->/g  x x replace /^\\.\\//  replace /\\/\\.\\// / replace /[^\\/]*\\/\\.\\.\\//  x |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:77:17:77:31 | /\\sng-[a-z-]+/g | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:77:17:77:31 | /\\sng-[a-z-]+/g | fileImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:77:17:77:31 | /\\sng-[a-z-]+/g | receiverName | x |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:77:34:77:35 | "" | CalleeFlexibleAccessPath | x.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:77:34:77:35 | "" | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:77:34:77:35 | "" | contextFunctionInterfaces |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:77:34:77:35 | "" | contextSurroundingFunctionParameters | (x) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:77:34:77:35 | "" | enclosingFunctionBody | x x x replace /<script\\b[^<]*(?:(?!<\\/script>)<[^<]*)*<\\/script>/g  x x replace /(\\/\|\\s)on\\w+=(\\'\|")?[^"]*(\\'\|")?/g  x x replace /<\\/script>/g  x x replace /<(.)?br(.)?>/g  x x replace /<\\/?b>/g  x x replace /<(ul\|ol)><\\/(ul\|ol)>/gi  x x replace /<li><\\/li>/gi  x x replace /<!--(.*?)-->/gm  x x replace /\\sng-[a-z-]+/  x x replace /\\sng-[a-z-]+/g  x x replace /(<!--\\[CDATA\\[\|\\]\\]-->)/g \n x x replace /<script.+desktop\\-only.+<\\/script>/g  x x replace /<script async.+?<\\/script>/g  x x replace /<!--[\\s\\S]*?-->\|<\\?(?:php)?[\\s\\S]*?\\?>/gi  x x replace /\\x2E\\x2E\\x2F\\x2E\\x2E\\x2F/g  x x replace /<script.*>.*<\\/script>/gi  x x replace /^(\\.\\.\\/?)+/g  x x replace /<script\\b[^<]*(?:(?!<\\/script>)<[^<]*)*<\\/script>/g $0 unknown $0  x x replace /<\\/?([a-z][a-z0-9]*)\\b[^>]*>/gi  x x replace /\\.\\./g  x x replace /\\.\\.\\//g  x x replace /\\/\\.\\./g  x x replace /<script(.*?)>([\\s\\S]*?)<\\/script>/gi  x x replace /<(script\|del)(?=[\\s>])[\\w\\W]*?<\\/\\1\\s*>/gi  x x replace /\\<script[\\s\\S]*?\\>[\\s\\S]*?\\<\\/script\\>/g  x x replace /<(script\|style\|title)[^<]+<\\/(script\|style\|title)>/gm  x x replace /<script[^>]*>([\\s\\S]*?)<\\/script>/gi  x x replace /<script[\\s\\S]*?<\\/script>/gi  x x replace / ?<!-- ?/g  x x replace /require\\('\\.\\.\\/common'\\);/g  x x replace /\\.\\.\\/\\.\\.\\/lib\\//g  x indexOf . 1 x x replace /^\\.\\//  replace /\\/\\.\\// / replace /[^\\/]*\\/\\.\\.\\//  x x replace /([^.\\s]+\\.)+/  x x replace /<!\\-\\-DEVEL[\\d\\D]*?DEVEL\\-\\->/g  x x replace /^\\.\\//  replace /\\/\\.\\// / replace /[^\\/]*\\/\\.\\.\\//  x |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:77:34:77:35 | "" | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:77:34:77:35 | "" | fileImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:77:34:77:35 | "" | receiverName | x |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:79:17:79:42 | /(<!--\\ ... ]-->)/g | CalleeFlexibleAccessPath | x.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:79:17:79:42 | /(<!--\\ ... ]-->)/g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:79:17:79:42 | /(<!--\\ ... ]-->)/g | contextFunctionInterfaces |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:79:17:79:42 | /(<!--\\ ... ]-->)/g | contextSurroundingFunctionParameters | (x) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:79:17:79:42 | /(<!--\\ ... ]-->)/g | enclosingFunctionBody | x x x replace /<script\\b[^<]*(?:(?!<\\/script>)<[^<]*)*<\\/script>/g  x x replace /(\\/\|\\s)on\\w+=(\\'\|")?[^"]*(\\'\|")?/g  x x replace /<\\/script>/g  x x replace /<(.)?br(.)?>/g  x x replace /<\\/?b>/g  x x replace /<(ul\|ol)><\\/(ul\|ol)>/gi  x x replace /<li><\\/li>/gi  x x replace /<!--(.*?)-->/gm  x x replace /\\sng-[a-z-]+/  x x replace /\\sng-[a-z-]+/g  x x replace /(<!--\\[CDATA\\[\|\\]\\]-->)/g \n x x replace /<script.+desktop\\-only.+<\\/script>/g  x x replace /<script async.+?<\\/script>/g  x x replace /<!--[\\s\\S]*?-->\|<\\?(?:php)?[\\s\\S]*?\\?>/gi  x x replace /\\x2E\\x2E\\x2F\\x2E\\x2E\\x2F/g  x x replace /<script.*>.*<\\/script>/gi  x x replace /^(\\.\\.\\/?)+/g  x x replace /<script\\b[^<]*(?:(?!<\\/script>)<[^<]*)*<\\/script>/g $0 unknown $0  x x replace /<\\/?([a-z][a-z0-9]*)\\b[^>]*>/gi  x x replace /\\.\\./g  x x replace /\\.\\.\\//g  x x replace /\\/\\.\\./g  x x replace /<script(.*?)>([\\s\\S]*?)<\\/script>/gi  x x replace /<(script\|del)(?=[\\s>])[\\w\\W]*?<\\/\\1\\s*>/gi  x x replace /\\<script[\\s\\S]*?\\>[\\s\\S]*?\\<\\/script\\>/g  x x replace /<(script\|style\|title)[^<]+<\\/(script\|style\|title)>/gm  x x replace /<script[^>]*>([\\s\\S]*?)<\\/script>/gi  x x replace /<script[\\s\\S]*?<\\/script>/gi  x x replace / ?<!-- ?/g  x x replace /require\\('\\.\\.\\/common'\\);/g  x x replace /\\.\\.\\/\\.\\.\\/lib\\//g  x indexOf . 1 x x replace /^\\.\\//  replace /\\/\\.\\// / replace /[^\\/]*\\/\\.\\.\\//  x x replace /([^.\\s]+\\.)+/  x x replace /<!\\-\\-DEVEL[\\d\\D]*?DEVEL\\-\\->/g  x x replace /^\\.\\//  replace /\\/\\.\\// / replace /[^\\/]*\\/\\.\\.\\//  x |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:79:17:79:42 | /(<!--\\ ... ]-->)/g | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:79:17:79:42 | /(<!--\\ ... ]-->)/g | fileImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:79:17:79:42 | /(<!--\\ ... ]-->)/g | receiverName | x |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:79:45:79:48 | "\\n" | CalleeFlexibleAccessPath | x.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:79:45:79:48 | "\\n" | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:79:45:79:48 | "\\n" | contextFunctionInterfaces |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:79:45:79:48 | "\\n" | contextSurroundingFunctionParameters | (x) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:79:45:79:48 | "\\n" | enclosingFunctionBody | x x x replace /<script\\b[^<]*(?:(?!<\\/script>)<[^<]*)*<\\/script>/g  x x replace /(\\/\|\\s)on\\w+=(\\'\|")?[^"]*(\\'\|")?/g  x x replace /<\\/script>/g  x x replace /<(.)?br(.)?>/g  x x replace /<\\/?b>/g  x x replace /<(ul\|ol)><\\/(ul\|ol)>/gi  x x replace /<li><\\/li>/gi  x x replace /<!--(.*?)-->/gm  x x replace /\\sng-[a-z-]+/  x x replace /\\sng-[a-z-]+/g  x x replace /(<!--\\[CDATA\\[\|\\]\\]-->)/g \n x x replace /<script.+desktop\\-only.+<\\/script>/g  x x replace /<script async.+?<\\/script>/g  x x replace /<!--[\\s\\S]*?-->\|<\\?(?:php)?[\\s\\S]*?\\?>/gi  x x replace /\\x2E\\x2E\\x2F\\x2E\\x2E\\x2F/g  x x replace /<script.*>.*<\\/script>/gi  x x replace /^(\\.\\.\\/?)+/g  x x replace /<script\\b[^<]*(?:(?!<\\/script>)<[^<]*)*<\\/script>/g $0 unknown $0  x x replace /<\\/?([a-z][a-z0-9]*)\\b[^>]*>/gi  x x replace /\\.\\./g  x x replace /\\.\\.\\//g  x x replace /\\/\\.\\./g  x x replace /<script(.*?)>([\\s\\S]*?)<\\/script>/gi  x x replace /<(script\|del)(?=[\\s>])[\\w\\W]*?<\\/\\1\\s*>/gi  x x replace /\\<script[\\s\\S]*?\\>[\\s\\S]*?\\<\\/script\\>/g  x x replace /<(script\|style\|title)[^<]+<\\/(script\|style\|title)>/gm  x x replace /<script[^>]*>([\\s\\S]*?)<\\/script>/gi  x x replace /<script[\\s\\S]*?<\\/script>/gi  x x replace / ?<!-- ?/g  x x replace /require\\('\\.\\.\\/common'\\);/g  x x replace /\\.\\.\\/\\.\\.\\/lib\\//g  x indexOf . 1 x x replace /^\\.\\//  replace /\\/\\.\\// / replace /[^\\/]*\\/\\.\\.\\//  x x replace /([^.\\s]+\\.)+/  x x replace /<!\\-\\-DEVEL[\\d\\D]*?DEVEL\\-\\->/g  x x replace /^\\.\\//  replace /\\/\\.\\// / replace /[^\\/]*\\/\\.\\.\\//  x |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:79:45:79:48 | "\\n" | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:79:45:79:48 | "\\n" | fileImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:79:45:79:48 | "\\n" | receiverName | x |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:81:17:81:53 | /<scrip ... ript>/g | CalleeFlexibleAccessPath | x.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:81:17:81:53 | /<scrip ... ript>/g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:81:17:81:53 | /<scrip ... ript>/g | contextFunctionInterfaces |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:81:17:81:53 | /<scrip ... ript>/g | contextSurroundingFunctionParameters | (x) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:81:17:81:53 | /<scrip ... ript>/g | enclosingFunctionBody | x x x replace /<script\\b[^<]*(?:(?!<\\/script>)<[^<]*)*<\\/script>/g  x x replace /(\\/\|\\s)on\\w+=(\\'\|")?[^"]*(\\'\|")?/g  x x replace /<\\/script>/g  x x replace /<(.)?br(.)?>/g  x x replace /<\\/?b>/g  x x replace /<(ul\|ol)><\\/(ul\|ol)>/gi  x x replace /<li><\\/li>/gi  x x replace /<!--(.*?)-->/gm  x x replace /\\sng-[a-z-]+/  x x replace /\\sng-[a-z-]+/g  x x replace /(<!--\\[CDATA\\[\|\\]\\]-->)/g \n x x replace /<script.+desktop\\-only.+<\\/script>/g  x x replace /<script async.+?<\\/script>/g  x x replace /<!--[\\s\\S]*?-->\|<\\?(?:php)?[\\s\\S]*?\\?>/gi  x x replace /\\x2E\\x2E\\x2F\\x2E\\x2E\\x2F/g  x x replace /<script.*>.*<\\/script>/gi  x x replace /^(\\.\\.\\/?)+/g  x x replace /<script\\b[^<]*(?:(?!<\\/script>)<[^<]*)*<\\/script>/g $0 unknown $0  x x replace /<\\/?([a-z][a-z0-9]*)\\b[^>]*>/gi  x x replace /\\.\\./g  x x replace /\\.\\.\\//g  x x replace /\\/\\.\\./g  x x replace /<script(.*?)>([\\s\\S]*?)<\\/script>/gi  x x replace /<(script\|del)(?=[\\s>])[\\w\\W]*?<\\/\\1\\s*>/gi  x x replace /\\<script[\\s\\S]*?\\>[\\s\\S]*?\\<\\/script\\>/g  x x replace /<(script\|style\|title)[^<]+<\\/(script\|style\|title)>/gm  x x replace /<script[^>]*>([\\s\\S]*?)<\\/script>/gi  x x replace /<script[\\s\\S]*?<\\/script>/gi  x x replace / ?<!-- ?/g  x x replace /require\\('\\.\\.\\/common'\\);/g  x x replace /\\.\\.\\/\\.\\.\\/lib\\//g  x indexOf . 1 x x replace /^\\.\\//  replace /\\/\\.\\// / replace /[^\\/]*\\/\\.\\.\\//  x x replace /([^.\\s]+\\.)+/  x x replace /<!\\-\\-DEVEL[\\d\\D]*?DEVEL\\-\\->/g  x x replace /^\\.\\//  replace /\\/\\.\\// / replace /[^\\/]*\\/\\.\\.\\//  x |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:81:17:81:53 | /<scrip ... ript>/g | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:81:17:81:53 | /<scrip ... ript>/g | fileImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:81:17:81:53 | /<scrip ... ript>/g | receiverName | x |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:81:56:81:57 | "" | CalleeFlexibleAccessPath | x.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:81:56:81:57 | "" | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:81:56:81:57 | "" | contextFunctionInterfaces |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:81:56:81:57 | "" | contextSurroundingFunctionParameters | (x) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:81:56:81:57 | "" | enclosingFunctionBody | x x x replace /<script\\b[^<]*(?:(?!<\\/script>)<[^<]*)*<\\/script>/g  x x replace /(\\/\|\\s)on\\w+=(\\'\|")?[^"]*(\\'\|")?/g  x x replace /<\\/script>/g  x x replace /<(.)?br(.)?>/g  x x replace /<\\/?b>/g  x x replace /<(ul\|ol)><\\/(ul\|ol)>/gi  x x replace /<li><\\/li>/gi  x x replace /<!--(.*?)-->/gm  x x replace /\\sng-[a-z-]+/  x x replace /\\sng-[a-z-]+/g  x x replace /(<!--\\[CDATA\\[\|\\]\\]-->)/g \n x x replace /<script.+desktop\\-only.+<\\/script>/g  x x replace /<script async.+?<\\/script>/g  x x replace /<!--[\\s\\S]*?-->\|<\\?(?:php)?[\\s\\S]*?\\?>/gi  x x replace /\\x2E\\x2E\\x2F\\x2E\\x2E\\x2F/g  x x replace /<script.*>.*<\\/script>/gi  x x replace /^(\\.\\.\\/?)+/g  x x replace /<script\\b[^<]*(?:(?!<\\/script>)<[^<]*)*<\\/script>/g $0 unknown $0  x x replace /<\\/?([a-z][a-z0-9]*)\\b[^>]*>/gi  x x replace /\\.\\./g  x x replace /\\.\\.\\//g  x x replace /\\/\\.\\./g  x x replace /<script(.*?)>([\\s\\S]*?)<\\/script>/gi  x x replace /<(script\|del)(?=[\\s>])[\\w\\W]*?<\\/\\1\\s*>/gi  x x replace /\\<script[\\s\\S]*?\\>[\\s\\S]*?\\<\\/script\\>/g  x x replace /<(script\|style\|title)[^<]+<\\/(script\|style\|title)>/gm  x x replace /<script[^>]*>([\\s\\S]*?)<\\/script>/gi  x x replace /<script[\\s\\S]*?<\\/script>/gi  x x replace / ?<!-- ?/g  x x replace /require\\('\\.\\.\\/common'\\);/g  x x replace /\\.\\.\\/\\.\\.\\/lib\\//g  x indexOf . 1 x x replace /^\\.\\//  replace /\\/\\.\\// / replace /[^\\/]*\\/\\.\\.\\//  x x replace /([^.\\s]+\\.)+/  x x replace /<!\\-\\-DEVEL[\\d\\D]*?DEVEL\\-\\->/g  x x replace /^\\.\\//  replace /\\/\\.\\// / replace /[^\\/]*\\/\\.\\.\\//  x |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:81:56:81:57 | "" | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:81:56:81:57 | "" | fileImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:81:56:81:57 | "" | receiverName | x |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:82:17:82:45 | /<scrip ... ript>/g | CalleeFlexibleAccessPath | x.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:82:17:82:45 | /<scrip ... ript>/g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:82:17:82:45 | /<scrip ... ript>/g | contextFunctionInterfaces |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:82:17:82:45 | /<scrip ... ript>/g | contextSurroundingFunctionParameters | (x) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:82:17:82:45 | /<scrip ... ript>/g | enclosingFunctionBody | x x x replace /<script\\b[^<]*(?:(?!<\\/script>)<[^<]*)*<\\/script>/g  x x replace /(\\/\|\\s)on\\w+=(\\'\|")?[^"]*(\\'\|")?/g  x x replace /<\\/script>/g  x x replace /<(.)?br(.)?>/g  x x replace /<\\/?b>/g  x x replace /<(ul\|ol)><\\/(ul\|ol)>/gi  x x replace /<li><\\/li>/gi  x x replace /<!--(.*?)-->/gm  x x replace /\\sng-[a-z-]+/  x x replace /\\sng-[a-z-]+/g  x x replace /(<!--\\[CDATA\\[\|\\]\\]-->)/g \n x x replace /<script.+desktop\\-only.+<\\/script>/g  x x replace /<script async.+?<\\/script>/g  x x replace /<!--[\\s\\S]*?-->\|<\\?(?:php)?[\\s\\S]*?\\?>/gi  x x replace /\\x2E\\x2E\\x2F\\x2E\\x2E\\x2F/g  x x replace /<script.*>.*<\\/script>/gi  x x replace /^(\\.\\.\\/?)+/g  x x replace /<script\\b[^<]*(?:(?!<\\/script>)<[^<]*)*<\\/script>/g $0 unknown $0  x x replace /<\\/?([a-z][a-z0-9]*)\\b[^>]*>/gi  x x replace /\\.\\./g  x x replace /\\.\\.\\//g  x x replace /\\/\\.\\./g  x x replace /<script(.*?)>([\\s\\S]*?)<\\/script>/gi  x x replace /<(script\|del)(?=[\\s>])[\\w\\W]*?<\\/\\1\\s*>/gi  x x replace /\\<script[\\s\\S]*?\\>[\\s\\S]*?\\<\\/script\\>/g  x x replace /<(script\|style\|title)[^<]+<\\/(script\|style\|title)>/gm  x x replace /<script[^>]*>([\\s\\S]*?)<\\/script>/gi  x x replace /<script[\\s\\S]*?<\\/script>/gi  x x replace / ?<!-- ?/g  x x replace /require\\('\\.\\.\\/common'\\);/g  x x replace /\\.\\.\\/\\.\\.\\/lib\\//g  x indexOf . 1 x x replace /^\\.\\//  replace /\\/\\.\\// / replace /[^\\/]*\\/\\.\\.\\//  x x replace /([^.\\s]+\\.)+/  x x replace /<!\\-\\-DEVEL[\\d\\D]*?DEVEL\\-\\->/g  x x replace /^\\.\\//  replace /\\/\\.\\// / replace /[^\\/]*\\/\\.\\.\\//  x |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:82:17:82:45 | /<scrip ... ript>/g | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:82:17:82:45 | /<scrip ... ript>/g | fileImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:82:17:82:45 | /<scrip ... ript>/g | receiverName | x |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:82:48:82:49 | "" | CalleeFlexibleAccessPath | x.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:82:48:82:49 | "" | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:82:48:82:49 | "" | contextFunctionInterfaces |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:82:48:82:49 | "" | contextSurroundingFunctionParameters | (x) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:82:48:82:49 | "" | enclosingFunctionBody | x x x replace /<script\\b[^<]*(?:(?!<\\/script>)<[^<]*)*<\\/script>/g  x x replace /(\\/\|\\s)on\\w+=(\\'\|")?[^"]*(\\'\|")?/g  x x replace /<\\/script>/g  x x replace /<(.)?br(.)?>/g  x x replace /<\\/?b>/g  x x replace /<(ul\|ol)><\\/(ul\|ol)>/gi  x x replace /<li><\\/li>/gi  x x replace /<!--(.*?)-->/gm  x x replace /\\sng-[a-z-]+/  x x replace /\\sng-[a-z-]+/g  x x replace /(<!--\\[CDATA\\[\|\\]\\]-->)/g \n x x replace /<script.+desktop\\-only.+<\\/script>/g  x x replace /<script async.+?<\\/script>/g  x x replace /<!--[\\s\\S]*?-->\|<\\?(?:php)?[\\s\\S]*?\\?>/gi  x x replace /\\x2E\\x2E\\x2F\\x2E\\x2E\\x2F/g  x x replace /<script.*>.*<\\/script>/gi  x x replace /^(\\.\\.\\/?)+/g  x x replace /<script\\b[^<]*(?:(?!<\\/script>)<[^<]*)*<\\/script>/g $0 unknown $0  x x replace /<\\/?([a-z][a-z0-9]*)\\b[^>]*>/gi  x x replace /\\.\\./g  x x replace /\\.\\.\\//g  x x replace /\\/\\.\\./g  x x replace /<script(.*?)>([\\s\\S]*?)<\\/script>/gi  x x replace /<(script\|del)(?=[\\s>])[\\w\\W]*?<\\/\\1\\s*>/gi  x x replace /\\<script[\\s\\S]*?\\>[\\s\\S]*?\\<\\/script\\>/g  x x replace /<(script\|style\|title)[^<]+<\\/(script\|style\|title)>/gm  x x replace /<script[^>]*>([\\s\\S]*?)<\\/script>/gi  x x replace /<script[\\s\\S]*?<\\/script>/gi  x x replace / ?<!-- ?/g  x x replace /require\\('\\.\\.\\/common'\\);/g  x x replace /\\.\\.\\/\\.\\.\\/lib\\//g  x indexOf . 1 x x replace /^\\.\\//  replace /\\/\\.\\// / replace /[^\\/]*\\/\\.\\.\\//  x x replace /([^.\\s]+\\.)+/  x x replace /<!\\-\\-DEVEL[\\d\\D]*?DEVEL\\-\\->/g  x x replace /^\\.\\//  replace /\\/\\.\\// / replace /[^\\/]*\\/\\.\\.\\//  x |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:82:48:82:49 | "" | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:82:48:82:49 | "" | fileImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:82:48:82:49 | "" | receiverName | x |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:83:17:83:58 | /<!--[\\ ... ?\\?>/gi | CalleeFlexibleAccessPath | x.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:83:17:83:58 | /<!--[\\ ... ?\\?>/gi | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:83:17:83:58 | /<!--[\\ ... ?\\?>/gi | contextFunctionInterfaces |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:83:17:83:58 | /<!--[\\ ... ?\\?>/gi | contextSurroundingFunctionParameters | (x) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:83:17:83:58 | /<!--[\\ ... ?\\?>/gi | enclosingFunctionBody | x x x replace /<script\\b[^<]*(?:(?!<\\/script>)<[^<]*)*<\\/script>/g  x x replace /(\\/\|\\s)on\\w+=(\\'\|")?[^"]*(\\'\|")?/g  x x replace /<\\/script>/g  x x replace /<(.)?br(.)?>/g  x x replace /<\\/?b>/g  x x replace /<(ul\|ol)><\\/(ul\|ol)>/gi  x x replace /<li><\\/li>/gi  x x replace /<!--(.*?)-->/gm  x x replace /\\sng-[a-z-]+/  x x replace /\\sng-[a-z-]+/g  x x replace /(<!--\\[CDATA\\[\|\\]\\]-->)/g \n x x replace /<script.+desktop\\-only.+<\\/script>/g  x x replace /<script async.+?<\\/script>/g  x x replace /<!--[\\s\\S]*?-->\|<\\?(?:php)?[\\s\\S]*?\\?>/gi  x x replace /\\x2E\\x2E\\x2F\\x2E\\x2E\\x2F/g  x x replace /<script.*>.*<\\/script>/gi  x x replace /^(\\.\\.\\/?)+/g  x x replace /<script\\b[^<]*(?:(?!<\\/script>)<[^<]*)*<\\/script>/g $0 unknown $0  x x replace /<\\/?([a-z][a-z0-9]*)\\b[^>]*>/gi  x x replace /\\.\\./g  x x replace /\\.\\.\\//g  x x replace /\\/\\.\\./g  x x replace /<script(.*?)>([\\s\\S]*?)<\\/script>/gi  x x replace /<(script\|del)(?=[\\s>])[\\w\\W]*?<\\/\\1\\s*>/gi  x x replace /\\<script[\\s\\S]*?\\>[\\s\\S]*?\\<\\/script\\>/g  x x replace /<(script\|style\|title)[^<]+<\\/(script\|style\|title)>/gm  x x replace /<script[^>]*>([\\s\\S]*?)<\\/script>/gi  x x replace /<script[\\s\\S]*?<\\/script>/gi  x x replace / ?<!-- ?/g  x x replace /require\\('\\.\\.\\/common'\\);/g  x x replace /\\.\\.\\/\\.\\.\\/lib\\//g  x indexOf . 1 x x replace /^\\.\\//  replace /\\/\\.\\// / replace /[^\\/]*\\/\\.\\.\\//  x x replace /([^.\\s]+\\.)+/  x x replace /<!\\-\\-DEVEL[\\d\\D]*?DEVEL\\-\\->/g  x x replace /^\\.\\//  replace /\\/\\.\\// / replace /[^\\/]*\\/\\.\\.\\//  x |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:83:17:83:58 | /<!--[\\ ... ?\\?>/gi | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:83:17:83:58 | /<!--[\\ ... ?\\?>/gi | fileImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:83:17:83:58 | /<!--[\\ ... ?\\?>/gi | receiverName | x |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:83:61:83:62 | "" | CalleeFlexibleAccessPath | x.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:83:61:83:62 | "" | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:83:61:83:62 | "" | contextFunctionInterfaces |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:83:61:83:62 | "" | contextSurroundingFunctionParameters | (x) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:83:61:83:62 | "" | enclosingFunctionBody | x x x replace /<script\\b[^<]*(?:(?!<\\/script>)<[^<]*)*<\\/script>/g  x x replace /(\\/\|\\s)on\\w+=(\\'\|")?[^"]*(\\'\|")?/g  x x replace /<\\/script>/g  x x replace /<(.)?br(.)?>/g  x x replace /<\\/?b>/g  x x replace /<(ul\|ol)><\\/(ul\|ol)>/gi  x x replace /<li><\\/li>/gi  x x replace /<!--(.*?)-->/gm  x x replace /\\sng-[a-z-]+/  x x replace /\\sng-[a-z-]+/g  x x replace /(<!--\\[CDATA\\[\|\\]\\]-->)/g \n x x replace /<script.+desktop\\-only.+<\\/script>/g  x x replace /<script async.+?<\\/script>/g  x x replace /<!--[\\s\\S]*?-->\|<\\?(?:php)?[\\s\\S]*?\\?>/gi  x x replace /\\x2E\\x2E\\x2F\\x2E\\x2E\\x2F/g  x x replace /<script.*>.*<\\/script>/gi  x x replace /^(\\.\\.\\/?)+/g  x x replace /<script\\b[^<]*(?:(?!<\\/script>)<[^<]*)*<\\/script>/g $0 unknown $0  x x replace /<\\/?([a-z][a-z0-9]*)\\b[^>]*>/gi  x x replace /\\.\\./g  x x replace /\\.\\.\\//g  x x replace /\\/\\.\\./g  x x replace /<script(.*?)>([\\s\\S]*?)<\\/script>/gi  x x replace /<(script\|del)(?=[\\s>])[\\w\\W]*?<\\/\\1\\s*>/gi  x x replace /\\<script[\\s\\S]*?\\>[\\s\\S]*?\\<\\/script\\>/g  x x replace /<(script\|style\|title)[^<]+<\\/(script\|style\|title)>/gm  x x replace /<script[^>]*>([\\s\\S]*?)<\\/script>/gi  x x replace /<script[\\s\\S]*?<\\/script>/gi  x x replace / ?<!-- ?/g  x x replace /require\\('\\.\\.\\/common'\\);/g  x x replace /\\.\\.\\/\\.\\.\\/lib\\//g  x indexOf . 1 x x replace /^\\.\\//  replace /\\/\\.\\// / replace /[^\\/]*\\/\\.\\.\\//  x x replace /([^.\\s]+\\.)+/  x x replace /<!\\-\\-DEVEL[\\d\\D]*?DEVEL\\-\\->/g  x x replace /^\\.\\//  replace /\\/\\.\\// / replace /[^\\/]*\\/\\.\\.\\//  x |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:83:61:83:62 | "" | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:83:61:83:62 | "" | fileImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:83:61:83:62 | "" | receiverName | x |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:85:17:85:43 | /\\x2E\\x ... E\\x2F/g | CalleeFlexibleAccessPath | x.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:85:17:85:43 | /\\x2E\\x ... E\\x2F/g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:85:17:85:43 | /\\x2E\\x ... E\\x2F/g | contextFunctionInterfaces |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:85:17:85:43 | /\\x2E\\x ... E\\x2F/g | contextSurroundingFunctionParameters | (x) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:85:17:85:43 | /\\x2E\\x ... E\\x2F/g | enclosingFunctionBody | x x x replace /<script\\b[^<]*(?:(?!<\\/script>)<[^<]*)*<\\/script>/g  x x replace /(\\/\|\\s)on\\w+=(\\'\|")?[^"]*(\\'\|")?/g  x x replace /<\\/script>/g  x x replace /<(.)?br(.)?>/g  x x replace /<\\/?b>/g  x x replace /<(ul\|ol)><\\/(ul\|ol)>/gi  x x replace /<li><\\/li>/gi  x x replace /<!--(.*?)-->/gm  x x replace /\\sng-[a-z-]+/  x x replace /\\sng-[a-z-]+/g  x x replace /(<!--\\[CDATA\\[\|\\]\\]-->)/g \n x x replace /<script.+desktop\\-only.+<\\/script>/g  x x replace /<script async.+?<\\/script>/g  x x replace /<!--[\\s\\S]*?-->\|<\\?(?:php)?[\\s\\S]*?\\?>/gi  x x replace /\\x2E\\x2E\\x2F\\x2E\\x2E\\x2F/g  x x replace /<script.*>.*<\\/script>/gi  x x replace /^(\\.\\.\\/?)+/g  x x replace /<script\\b[^<]*(?:(?!<\\/script>)<[^<]*)*<\\/script>/g $0 unknown $0  x x replace /<\\/?([a-z][a-z0-9]*)\\b[^>]*>/gi  x x replace /\\.\\./g  x x replace /\\.\\.\\//g  x x replace /\\/\\.\\./g  x x replace /<script(.*?)>([\\s\\S]*?)<\\/script>/gi  x x replace /<(script\|del)(?=[\\s>])[\\w\\W]*?<\\/\\1\\s*>/gi  x x replace /\\<script[\\s\\S]*?\\>[\\s\\S]*?\\<\\/script\\>/g  x x replace /<(script\|style\|title)[^<]+<\\/(script\|style\|title)>/gm  x x replace /<script[^>]*>([\\s\\S]*?)<\\/script>/gi  x x replace /<script[\\s\\S]*?<\\/script>/gi  x x replace / ?<!-- ?/g  x x replace /require\\('\\.\\.\\/common'\\);/g  x x replace /\\.\\.\\/\\.\\.\\/lib\\//g  x indexOf . 1 x x replace /^\\.\\//  replace /\\/\\.\\// / replace /[^\\/]*\\/\\.\\.\\//  x x replace /([^.\\s]+\\.)+/  x x replace /<!\\-\\-DEVEL[\\d\\D]*?DEVEL\\-\\->/g  x x replace /^\\.\\//  replace /\\/\\.\\// / replace /[^\\/]*\\/\\.\\.\\//  x |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:85:17:85:43 | /\\x2E\\x ... E\\x2F/g | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:85:17:85:43 | /\\x2E\\x ... E\\x2F/g | fileImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:85:17:85:43 | /\\x2E\\x ... E\\x2F/g | receiverName | x |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:85:46:85:47 | "" | CalleeFlexibleAccessPath | x.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:85:46:85:47 | "" | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:85:46:85:47 | "" | contextFunctionInterfaces |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:85:46:85:47 | "" | contextSurroundingFunctionParameters | (x) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:85:46:85:47 | "" | enclosingFunctionBody | x x x replace /<script\\b[^<]*(?:(?!<\\/script>)<[^<]*)*<\\/script>/g  x x replace /(\\/\|\\s)on\\w+=(\\'\|")?[^"]*(\\'\|")?/g  x x replace /<\\/script>/g  x x replace /<(.)?br(.)?>/g  x x replace /<\\/?b>/g  x x replace /<(ul\|ol)><\\/(ul\|ol)>/gi  x x replace /<li><\\/li>/gi  x x replace /<!--(.*?)-->/gm  x x replace /\\sng-[a-z-]+/  x x replace /\\sng-[a-z-]+/g  x x replace /(<!--\\[CDATA\\[\|\\]\\]-->)/g \n x x replace /<script.+desktop\\-only.+<\\/script>/g  x x replace /<script async.+?<\\/script>/g  x x replace /<!--[\\s\\S]*?-->\|<\\?(?:php)?[\\s\\S]*?\\?>/gi  x x replace /\\x2E\\x2E\\x2F\\x2E\\x2E\\x2F/g  x x replace /<script.*>.*<\\/script>/gi  x x replace /^(\\.\\.\\/?)+/g  x x replace /<script\\b[^<]*(?:(?!<\\/script>)<[^<]*)*<\\/script>/g $0 unknown $0  x x replace /<\\/?([a-z][a-z0-9]*)\\b[^>]*>/gi  x x replace /\\.\\./g  x x replace /\\.\\.\\//g  x x replace /\\/\\.\\./g  x x replace /<script(.*?)>([\\s\\S]*?)<\\/script>/gi  x x replace /<(script\|del)(?=[\\s>])[\\w\\W]*?<\\/\\1\\s*>/gi  x x replace /\\<script[\\s\\S]*?\\>[\\s\\S]*?\\<\\/script\\>/g  x x replace /<(script\|style\|title)[^<]+<\\/(script\|style\|title)>/gm  x x replace /<script[^>]*>([\\s\\S]*?)<\\/script>/gi  x x replace /<script[\\s\\S]*?<\\/script>/gi  x x replace / ?<!-- ?/g  x x replace /require\\('\\.\\.\\/common'\\);/g  x x replace /\\.\\.\\/\\.\\.\\/lib\\//g  x indexOf . 1 x x replace /^\\.\\//  replace /\\/\\.\\// / replace /[^\\/]*\\/\\.\\.\\//  x x replace /([^.\\s]+\\.)+/  x x replace /<!\\-\\-DEVEL[\\d\\D]*?DEVEL\\-\\->/g  x x replace /^\\.\\//  replace /\\/\\.\\// / replace /[^\\/]*\\/\\.\\.\\//  x |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:85:46:85:47 | "" | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:85:46:85:47 | "" | fileImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:85:46:85:47 | "" | receiverName | x |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:87:17:87:42 | /<scrip ... ipt>/gi | CalleeFlexibleAccessPath | x.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:87:17:87:42 | /<scrip ... ipt>/gi | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:87:17:87:42 | /<scrip ... ipt>/gi | contextFunctionInterfaces |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:87:17:87:42 | /<scrip ... ipt>/gi | contextSurroundingFunctionParameters | (x) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:87:17:87:42 | /<scrip ... ipt>/gi | enclosingFunctionBody | x x x replace /<script\\b[^<]*(?:(?!<\\/script>)<[^<]*)*<\\/script>/g  x x replace /(\\/\|\\s)on\\w+=(\\'\|")?[^"]*(\\'\|")?/g  x x replace /<\\/script>/g  x x replace /<(.)?br(.)?>/g  x x replace /<\\/?b>/g  x x replace /<(ul\|ol)><\\/(ul\|ol)>/gi  x x replace /<li><\\/li>/gi  x x replace /<!--(.*?)-->/gm  x x replace /\\sng-[a-z-]+/  x x replace /\\sng-[a-z-]+/g  x x replace /(<!--\\[CDATA\\[\|\\]\\]-->)/g \n x x replace /<script.+desktop\\-only.+<\\/script>/g  x x replace /<script async.+?<\\/script>/g  x x replace /<!--[\\s\\S]*?-->\|<\\?(?:php)?[\\s\\S]*?\\?>/gi  x x replace /\\x2E\\x2E\\x2F\\x2E\\x2E\\x2F/g  x x replace /<script.*>.*<\\/script>/gi  x x replace /^(\\.\\.\\/?)+/g  x x replace /<script\\b[^<]*(?:(?!<\\/script>)<[^<]*)*<\\/script>/g $0 unknown $0  x x replace /<\\/?([a-z][a-z0-9]*)\\b[^>]*>/gi  x x replace /\\.\\./g  x x replace /\\.\\.\\//g  x x replace /\\/\\.\\./g  x x replace /<script(.*?)>([\\s\\S]*?)<\\/script>/gi  x x replace /<(script\|del)(?=[\\s>])[\\w\\W]*?<\\/\\1\\s*>/gi  x x replace /\\<script[\\s\\S]*?\\>[\\s\\S]*?\\<\\/script\\>/g  x x replace /<(script\|style\|title)[^<]+<\\/(script\|style\|title)>/gm  x x replace /<script[^>]*>([\\s\\S]*?)<\\/script>/gi  x x replace /<script[\\s\\S]*?<\\/script>/gi  x x replace / ?<!-- ?/g  x x replace /require\\('\\.\\.\\/common'\\);/g  x x replace /\\.\\.\\/\\.\\.\\/lib\\//g  x indexOf . 1 x x replace /^\\.\\//  replace /\\/\\.\\// / replace /[^\\/]*\\/\\.\\.\\//  x x replace /([^.\\s]+\\.)+/  x x replace /<!\\-\\-DEVEL[\\d\\D]*?DEVEL\\-\\->/g  x x replace /^\\.\\//  replace /\\/\\.\\// / replace /[^\\/]*\\/\\.\\.\\//  x |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:87:17:87:42 | /<scrip ... ipt>/gi | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:87:17:87:42 | /<scrip ... ipt>/gi | fileImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:87:17:87:42 | /<scrip ... ipt>/gi | receiverName | x |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:87:45:87:46 | "" | CalleeFlexibleAccessPath | x.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:87:45:87:46 | "" | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:87:45:87:46 | "" | contextFunctionInterfaces |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:87:45:87:46 | "" | contextSurroundingFunctionParameters | (x) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:87:45:87:46 | "" | enclosingFunctionBody | x x x replace /<script\\b[^<]*(?:(?!<\\/script>)<[^<]*)*<\\/script>/g  x x replace /(\\/\|\\s)on\\w+=(\\'\|")?[^"]*(\\'\|")?/g  x x replace /<\\/script>/g  x x replace /<(.)?br(.)?>/g  x x replace /<\\/?b>/g  x x replace /<(ul\|ol)><\\/(ul\|ol)>/gi  x x replace /<li><\\/li>/gi  x x replace /<!--(.*?)-->/gm  x x replace /\\sng-[a-z-]+/  x x replace /\\sng-[a-z-]+/g  x x replace /(<!--\\[CDATA\\[\|\\]\\]-->)/g \n x x replace /<script.+desktop\\-only.+<\\/script>/g  x x replace /<script async.+?<\\/script>/g  x x replace /<!--[\\s\\S]*?-->\|<\\?(?:php)?[\\s\\S]*?\\?>/gi  x x replace /\\x2E\\x2E\\x2F\\x2E\\x2E\\x2F/g  x x replace /<script.*>.*<\\/script>/gi  x x replace /^(\\.\\.\\/?)+/g  x x replace /<script\\b[^<]*(?:(?!<\\/script>)<[^<]*)*<\\/script>/g $0 unknown $0  x x replace /<\\/?([a-z][a-z0-9]*)\\b[^>]*>/gi  x x replace /\\.\\./g  x x replace /\\.\\.\\//g  x x replace /\\/\\.\\./g  x x replace /<script(.*?)>([\\s\\S]*?)<\\/script>/gi  x x replace /<(script\|del)(?=[\\s>])[\\w\\W]*?<\\/\\1\\s*>/gi  x x replace /\\<script[\\s\\S]*?\\>[\\s\\S]*?\\<\\/script\\>/g  x x replace /<(script\|style\|title)[^<]+<\\/(script\|style\|title)>/gm  x x replace /<script[^>]*>([\\s\\S]*?)<\\/script>/gi  x x replace /<script[\\s\\S]*?<\\/script>/gi  x x replace / ?<!-- ?/g  x x replace /require\\('\\.\\.\\/common'\\);/g  x x replace /\\.\\.\\/\\.\\.\\/lib\\//g  x indexOf . 1 x x replace /^\\.\\//  replace /\\/\\.\\// / replace /[^\\/]*\\/\\.\\.\\//  x x replace /([^.\\s]+\\.)+/  x x replace /<!\\-\\-DEVEL[\\d\\D]*?DEVEL\\-\\->/g  x x replace /^\\.\\//  replace /\\/\\.\\// / replace /[^\\/]*\\/\\.\\.\\//  x |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:87:45:87:46 | "" | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:87:45:87:46 | "" | fileImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:87:45:87:46 | "" | receiverName | x |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:89:17:89:30 | /^(\\.\\.\\/?)+/g | CalleeFlexibleAccessPath | x.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:89:17:89:30 | /^(\\.\\.\\/?)+/g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:89:17:89:30 | /^(\\.\\.\\/?)+/g | contextFunctionInterfaces |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:89:17:89:30 | /^(\\.\\.\\/?)+/g | contextSurroundingFunctionParameters | (x) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:89:17:89:30 | /^(\\.\\.\\/?)+/g | enclosingFunctionBody | x x x replace /<script\\b[^<]*(?:(?!<\\/script>)<[^<]*)*<\\/script>/g  x x replace /(\\/\|\\s)on\\w+=(\\'\|")?[^"]*(\\'\|")?/g  x x replace /<\\/script>/g  x x replace /<(.)?br(.)?>/g  x x replace /<\\/?b>/g  x x replace /<(ul\|ol)><\\/(ul\|ol)>/gi  x x replace /<li><\\/li>/gi  x x replace /<!--(.*?)-->/gm  x x replace /\\sng-[a-z-]+/  x x replace /\\sng-[a-z-]+/g  x x replace /(<!--\\[CDATA\\[\|\\]\\]-->)/g \n x x replace /<script.+desktop\\-only.+<\\/script>/g  x x replace /<script async.+?<\\/script>/g  x x replace /<!--[\\s\\S]*?-->\|<\\?(?:php)?[\\s\\S]*?\\?>/gi  x x replace /\\x2E\\x2E\\x2F\\x2E\\x2E\\x2F/g  x x replace /<script.*>.*<\\/script>/gi  x x replace /^(\\.\\.\\/?)+/g  x x replace /<script\\b[^<]*(?:(?!<\\/script>)<[^<]*)*<\\/script>/g $0 unknown $0  x x replace /<\\/?([a-z][a-z0-9]*)\\b[^>]*>/gi  x x replace /\\.\\./g  x x replace /\\.\\.\\//g  x x replace /\\/\\.\\./g  x x replace /<script(.*?)>([\\s\\S]*?)<\\/script>/gi  x x replace /<(script\|del)(?=[\\s>])[\\w\\W]*?<\\/\\1\\s*>/gi  x x replace /\\<script[\\s\\S]*?\\>[\\s\\S]*?\\<\\/script\\>/g  x x replace /<(script\|style\|title)[^<]+<\\/(script\|style\|title)>/gm  x x replace /<script[^>]*>([\\s\\S]*?)<\\/script>/gi  x x replace /<script[\\s\\S]*?<\\/script>/gi  x x replace / ?<!-- ?/g  x x replace /require\\('\\.\\.\\/common'\\);/g  x x replace /\\.\\.\\/\\.\\.\\/lib\\//g  x indexOf . 1 x x replace /^\\.\\//  replace /\\/\\.\\// / replace /[^\\/]*\\/\\.\\.\\//  x x replace /([^.\\s]+\\.)+/  x x replace /<!\\-\\-DEVEL[\\d\\D]*?DEVEL\\-\\->/g  x x replace /^\\.\\//  replace /\\/\\.\\// / replace /[^\\/]*\\/\\.\\.\\//  x |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:89:17:89:30 | /^(\\.\\.\\/?)+/g | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:89:17:89:30 | /^(\\.\\.\\/?)+/g | fileImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:89:17:89:30 | /^(\\.\\.\\/?)+/g | receiverName | x |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:89:33:89:34 | "" | CalleeFlexibleAccessPath | x.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:89:33:89:34 | "" | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:89:33:89:34 | "" | contextFunctionInterfaces |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:89:33:89:34 | "" | contextSurroundingFunctionParameters | (x) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:89:33:89:34 | "" | enclosingFunctionBody | x x x replace /<script\\b[^<]*(?:(?!<\\/script>)<[^<]*)*<\\/script>/g  x x replace /(\\/\|\\s)on\\w+=(\\'\|")?[^"]*(\\'\|")?/g  x x replace /<\\/script>/g  x x replace /<(.)?br(.)?>/g  x x replace /<\\/?b>/g  x x replace /<(ul\|ol)><\\/(ul\|ol)>/gi  x x replace /<li><\\/li>/gi  x x replace /<!--(.*?)-->/gm  x x replace /\\sng-[a-z-]+/  x x replace /\\sng-[a-z-]+/g  x x replace /(<!--\\[CDATA\\[\|\\]\\]-->)/g \n x x replace /<script.+desktop\\-only.+<\\/script>/g  x x replace /<script async.+?<\\/script>/g  x x replace /<!--[\\s\\S]*?-->\|<\\?(?:php)?[\\s\\S]*?\\?>/gi  x x replace /\\x2E\\x2E\\x2F\\x2E\\x2E\\x2F/g  x x replace /<script.*>.*<\\/script>/gi  x x replace /^(\\.\\.\\/?)+/g  x x replace /<script\\b[^<]*(?:(?!<\\/script>)<[^<]*)*<\\/script>/g $0 unknown $0  x x replace /<\\/?([a-z][a-z0-9]*)\\b[^>]*>/gi  x x replace /\\.\\./g  x x replace /\\.\\.\\//g  x x replace /\\/\\.\\./g  x x replace /<script(.*?)>([\\s\\S]*?)<\\/script>/gi  x x replace /<(script\|del)(?=[\\s>])[\\w\\W]*?<\\/\\1\\s*>/gi  x x replace /\\<script[\\s\\S]*?\\>[\\s\\S]*?\\<\\/script\\>/g  x x replace /<(script\|style\|title)[^<]+<\\/(script\|style\|title)>/gm  x x replace /<script[^>]*>([\\s\\S]*?)<\\/script>/gi  x x replace /<script[\\s\\S]*?<\\/script>/gi  x x replace / ?<!-- ?/g  x x replace /require\\('\\.\\.\\/common'\\);/g  x x replace /\\.\\.\\/\\.\\.\\/lib\\//g  x indexOf . 1 x x replace /^\\.\\//  replace /\\/\\.\\// / replace /[^\\/]*\\/\\.\\.\\//  x x replace /([^.\\s]+\\.)+/  x x replace /<!\\-\\-DEVEL[\\d\\D]*?DEVEL\\-\\->/g  x x replace /^\\.\\//  replace /\\/\\.\\// / replace /[^\\/]*\\/\\.\\.\\//  x |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:89:33:89:34 | "" | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:89:33:89:34 | "" | fileImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:89:33:89:34 | "" | receiverName | x |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:92:17:92:68 | /<scrip ... ript>/g | CalleeFlexibleAccessPath | x.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:92:17:92:68 | /<scrip ... ript>/g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:92:17:92:68 | /<scrip ... ript>/g | contextFunctionInterfaces |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:92:17:92:68 | /<scrip ... ript>/g | contextSurroundingFunctionParameters | (x) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:92:17:92:68 | /<scrip ... ript>/g | enclosingFunctionBody | x x x replace /<script\\b[^<]*(?:(?!<\\/script>)<[^<]*)*<\\/script>/g  x x replace /(\\/\|\\s)on\\w+=(\\'\|")?[^"]*(\\'\|")?/g  x x replace /<\\/script>/g  x x replace /<(.)?br(.)?>/g  x x replace /<\\/?b>/g  x x replace /<(ul\|ol)><\\/(ul\|ol)>/gi  x x replace /<li><\\/li>/gi  x x replace /<!--(.*?)-->/gm  x x replace /\\sng-[a-z-]+/  x x replace /\\sng-[a-z-]+/g  x x replace /(<!--\\[CDATA\\[\|\\]\\]-->)/g \n x x replace /<script.+desktop\\-only.+<\\/script>/g  x x replace /<script async.+?<\\/script>/g  x x replace /<!--[\\s\\S]*?-->\|<\\?(?:php)?[\\s\\S]*?\\?>/gi  x x replace /\\x2E\\x2E\\x2F\\x2E\\x2E\\x2F/g  x x replace /<script.*>.*<\\/script>/gi  x x replace /^(\\.\\.\\/?)+/g  x x replace /<script\\b[^<]*(?:(?!<\\/script>)<[^<]*)*<\\/script>/g $0 unknown $0  x x replace /<\\/?([a-z][a-z0-9]*)\\b[^>]*>/gi  x x replace /\\.\\./g  x x replace /\\.\\.\\//g  x x replace /\\/\\.\\./g  x x replace /<script(.*?)>([\\s\\S]*?)<\\/script>/gi  x x replace /<(script\|del)(?=[\\s>])[\\w\\W]*?<\\/\\1\\s*>/gi  x x replace /\\<script[\\s\\S]*?\\>[\\s\\S]*?\\<\\/script\\>/g  x x replace /<(script\|style\|title)[^<]+<\\/(script\|style\|title)>/gm  x x replace /<script[^>]*>([\\s\\S]*?)<\\/script>/gi  x x replace /<script[\\s\\S]*?<\\/script>/gi  x x replace / ?<!-- ?/g  x x replace /require\\('\\.\\.\\/common'\\);/g  x x replace /\\.\\.\\/\\.\\.\\/lib\\//g  x indexOf . 1 x x replace /^\\.\\//  replace /\\/\\.\\// / replace /[^\\/]*\\/\\.\\.\\//  x x replace /([^.\\s]+\\.)+/  x x replace /<!\\-\\-DEVEL[\\d\\D]*?DEVEL\\-\\->/g  x x replace /^\\.\\//  replace /\\/\\.\\// / replace /[^\\/]*\\/\\.\\.\\//  x |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:92:17:92:68 | /<scrip ... ript>/g | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:92:17:92:68 | /<scrip ... ript>/g | fileImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:92:17:92:68 | /<scrip ... ript>/g | receiverName | x |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:92:71:96:3 | functio ... "";\\n  } | CalleeFlexibleAccessPath | x.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:92:71:96:3 | functio ... "";\\n  } | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:92:71:96:3 | functio ... "";\\n  } | contextFunctionInterfaces |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:92:71:96:3 | functio ... "";\\n  } | contextSurroundingFunctionParameters | (x)\n($0) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:92:71:96:3 | functio ... "";\\n  } | enclosingFunctionBody | x x x replace /<script\\b[^<]*(?:(?!<\\/script>)<[^<]*)*<\\/script>/g  x x replace /(\\/\|\\s)on\\w+=(\\'\|")?[^"]*(\\'\|")?/g  x x replace /<\\/script>/g  x x replace /<(.)?br(.)?>/g  x x replace /<\\/?b>/g  x x replace /<(ul\|ol)><\\/(ul\|ol)>/gi  x x replace /<li><\\/li>/gi  x x replace /<!--(.*?)-->/gm  x x replace /\\sng-[a-z-]+/  x x replace /\\sng-[a-z-]+/g  x x replace /(<!--\\[CDATA\\[\|\\]\\]-->)/g \n x x replace /<script.+desktop\\-only.+<\\/script>/g  x x replace /<script async.+?<\\/script>/g  x x replace /<!--[\\s\\S]*?-->\|<\\?(?:php)?[\\s\\S]*?\\?>/gi  x x replace /\\x2E\\x2E\\x2F\\x2E\\x2E\\x2F/g  x x replace /<script.*>.*<\\/script>/gi  x x replace /^(\\.\\.\\/?)+/g  x x replace /<script\\b[^<]*(?:(?!<\\/script>)<[^<]*)*<\\/script>/g $0 unknown $0  x x replace /<\\/?([a-z][a-z0-9]*)\\b[^>]*>/gi  x x replace /\\.\\./g  x x replace /\\.\\.\\//g  x x replace /\\/\\.\\./g  x x replace /<script(.*?)>([\\s\\S]*?)<\\/script>/gi  x x replace /<(script\|del)(?=[\\s>])[\\w\\W]*?<\\/\\1\\s*>/gi  x x replace /\\<script[\\s\\S]*?\\>[\\s\\S]*?\\<\\/script\\>/g  x x replace /<(script\|style\|title)[^<]+<\\/(script\|style\|title)>/gm  x x replace /<script[^>]*>([\\s\\S]*?)<\\/script>/gi  x x replace /<script[\\s\\S]*?<\\/script>/gi  x x replace / ?<!-- ?/g  x x replace /require\\('\\.\\.\\/common'\\);/g  x x replace /\\.\\.\\/\\.\\.\\/lib\\//g  x indexOf . 1 x x replace /^\\.\\//  replace /\\/\\.\\// / replace /[^\\/]*\\/\\.\\.\\//  x x replace /([^.\\s]+\\.)+/  x x replace /<!\\-\\-DEVEL[\\d\\D]*?DEVEL\\-\\->/g  x x replace /^\\.\\//  replace /\\/\\.\\// / replace /[^\\/]*\\/\\.\\.\\//  x |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:92:71:96:3 | functio ... "";\\n  } | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:92:71:96:3 | functio ... "";\\n  } | fileImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:92:71:96:3 | functio ... "";\\n  } | receiverName | x |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:98:17:98:48 | /<\\/?([ ... >]*>/gi | CalleeFlexibleAccessPath | x.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:98:17:98:48 | /<\\/?([ ... >]*>/gi | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:98:17:98:48 | /<\\/?([ ... >]*>/gi | contextFunctionInterfaces |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:98:17:98:48 | /<\\/?([ ... >]*>/gi | contextSurroundingFunctionParameters | (x) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:98:17:98:48 | /<\\/?([ ... >]*>/gi | enclosingFunctionBody | x x x replace /<script\\b[^<]*(?:(?!<\\/script>)<[^<]*)*<\\/script>/g  x x replace /(\\/\|\\s)on\\w+=(\\'\|")?[^"]*(\\'\|")?/g  x x replace /<\\/script>/g  x x replace /<(.)?br(.)?>/g  x x replace /<\\/?b>/g  x x replace /<(ul\|ol)><\\/(ul\|ol)>/gi  x x replace /<li><\\/li>/gi  x x replace /<!--(.*?)-->/gm  x x replace /\\sng-[a-z-]+/  x x replace /\\sng-[a-z-]+/g  x x replace /(<!--\\[CDATA\\[\|\\]\\]-->)/g \n x x replace /<script.+desktop\\-only.+<\\/script>/g  x x replace /<script async.+?<\\/script>/g  x x replace /<!--[\\s\\S]*?-->\|<\\?(?:php)?[\\s\\S]*?\\?>/gi  x x replace /\\x2E\\x2E\\x2F\\x2E\\x2E\\x2F/g  x x replace /<script.*>.*<\\/script>/gi  x x replace /^(\\.\\.\\/?)+/g  x x replace /<script\\b[^<]*(?:(?!<\\/script>)<[^<]*)*<\\/script>/g $0 unknown $0  x x replace /<\\/?([a-z][a-z0-9]*)\\b[^>]*>/gi  x x replace /\\.\\./g  x x replace /\\.\\.\\//g  x x replace /\\/\\.\\./g  x x replace /<script(.*?)>([\\s\\S]*?)<\\/script>/gi  x x replace /<(script\|del)(?=[\\s>])[\\w\\W]*?<\\/\\1\\s*>/gi  x x replace /\\<script[\\s\\S]*?\\>[\\s\\S]*?\\<\\/script\\>/g  x x replace /<(script\|style\|title)[^<]+<\\/(script\|style\|title)>/gm  x x replace /<script[^>]*>([\\s\\S]*?)<\\/script>/gi  x x replace /<script[\\s\\S]*?<\\/script>/gi  x x replace / ?<!-- ?/g  x x replace /require\\('\\.\\.\\/common'\\);/g  x x replace /\\.\\.\\/\\.\\.\\/lib\\//g  x indexOf . 1 x x replace /^\\.\\//  replace /\\/\\.\\// / replace /[^\\/]*\\/\\.\\.\\//  x x replace /([^.\\s]+\\.)+/  x x replace /<!\\-\\-DEVEL[\\d\\D]*?DEVEL\\-\\->/g  x x replace /^\\.\\//  replace /\\/\\.\\// / replace /[^\\/]*\\/\\.\\.\\//  x |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:98:17:98:48 | /<\\/?([ ... >]*>/gi | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:98:17:98:48 | /<\\/?([ ... >]*>/gi | fileImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:98:17:98:48 | /<\\/?([ ... >]*>/gi | receiverName | x |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:98:51:98:52 | "" | CalleeFlexibleAccessPath | x.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:98:51:98:52 | "" | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:98:51:98:52 | "" | contextFunctionInterfaces |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:98:51:98:52 | "" | contextSurroundingFunctionParameters | (x) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:98:51:98:52 | "" | enclosingFunctionBody | x x x replace /<script\\b[^<]*(?:(?!<\\/script>)<[^<]*)*<\\/script>/g  x x replace /(\\/\|\\s)on\\w+=(\\'\|")?[^"]*(\\'\|")?/g  x x replace /<\\/script>/g  x x replace /<(.)?br(.)?>/g  x x replace /<\\/?b>/g  x x replace /<(ul\|ol)><\\/(ul\|ol)>/gi  x x replace /<li><\\/li>/gi  x x replace /<!--(.*?)-->/gm  x x replace /\\sng-[a-z-]+/  x x replace /\\sng-[a-z-]+/g  x x replace /(<!--\\[CDATA\\[\|\\]\\]-->)/g \n x x replace /<script.+desktop\\-only.+<\\/script>/g  x x replace /<script async.+?<\\/script>/g  x x replace /<!--[\\s\\S]*?-->\|<\\?(?:php)?[\\s\\S]*?\\?>/gi  x x replace /\\x2E\\x2E\\x2F\\x2E\\x2E\\x2F/g  x x replace /<script.*>.*<\\/script>/gi  x x replace /^(\\.\\.\\/?)+/g  x x replace /<script\\b[^<]*(?:(?!<\\/script>)<[^<]*)*<\\/script>/g $0 unknown $0  x x replace /<\\/?([a-z][a-z0-9]*)\\b[^>]*>/gi  x x replace /\\.\\./g  x x replace /\\.\\.\\//g  x x replace /\\/\\.\\./g  x x replace /<script(.*?)>([\\s\\S]*?)<\\/script>/gi  x x replace /<(script\|del)(?=[\\s>])[\\w\\W]*?<\\/\\1\\s*>/gi  x x replace /\\<script[\\s\\S]*?\\>[\\s\\S]*?\\<\\/script\\>/g  x x replace /<(script\|style\|title)[^<]+<\\/(script\|style\|title)>/gm  x x replace /<script[^>]*>([\\s\\S]*?)<\\/script>/gi  x x replace /<script[\\s\\S]*?<\\/script>/gi  x x replace / ?<!-- ?/g  x x replace /require\\('\\.\\.\\/common'\\);/g  x x replace /\\.\\.\\/\\.\\.\\/lib\\//g  x indexOf . 1 x x replace /^\\.\\//  replace /\\/\\.\\// / replace /[^\\/]*\\/\\.\\.\\//  x x replace /([^.\\s]+\\.)+/  x x replace /<!\\-\\-DEVEL[\\d\\D]*?DEVEL\\-\\->/g  x x replace /^\\.\\//  replace /\\/\\.\\// / replace /[^\\/]*\\/\\.\\.\\//  x |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:98:51:98:52 | "" | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:98:51:98:52 | "" | fileImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:98:51:98:52 | "" | receiverName | x |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:100:17:100:23 | /\\.\\./g | CalleeFlexibleAccessPath | x.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:100:17:100:23 | /\\.\\./g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:100:17:100:23 | /\\.\\./g | contextFunctionInterfaces |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:100:17:100:23 | /\\.\\./g | contextSurroundingFunctionParameters | (x) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:100:17:100:23 | /\\.\\./g | enclosingFunctionBody | x x x replace /<script\\b[^<]*(?:(?!<\\/script>)<[^<]*)*<\\/script>/g  x x replace /(\\/\|\\s)on\\w+=(\\'\|")?[^"]*(\\'\|")?/g  x x replace /<\\/script>/g  x x replace /<(.)?br(.)?>/g  x x replace /<\\/?b>/g  x x replace /<(ul\|ol)><\\/(ul\|ol)>/gi  x x replace /<li><\\/li>/gi  x x replace /<!--(.*?)-->/gm  x x replace /\\sng-[a-z-]+/  x x replace /\\sng-[a-z-]+/g  x x replace /(<!--\\[CDATA\\[\|\\]\\]-->)/g \n x x replace /<script.+desktop\\-only.+<\\/script>/g  x x replace /<script async.+?<\\/script>/g  x x replace /<!--[\\s\\S]*?-->\|<\\?(?:php)?[\\s\\S]*?\\?>/gi  x x replace /\\x2E\\x2E\\x2F\\x2E\\x2E\\x2F/g  x x replace /<script.*>.*<\\/script>/gi  x x replace /^(\\.\\.\\/?)+/g  x x replace /<script\\b[^<]*(?:(?!<\\/script>)<[^<]*)*<\\/script>/g $0 unknown $0  x x replace /<\\/?([a-z][a-z0-9]*)\\b[^>]*>/gi  x x replace /\\.\\./g  x x replace /\\.\\.\\//g  x x replace /\\/\\.\\./g  x x replace /<script(.*?)>([\\s\\S]*?)<\\/script>/gi  x x replace /<(script\|del)(?=[\\s>])[\\w\\W]*?<\\/\\1\\s*>/gi  x x replace /\\<script[\\s\\S]*?\\>[\\s\\S]*?\\<\\/script\\>/g  x x replace /<(script\|style\|title)[^<]+<\\/(script\|style\|title)>/gm  x x replace /<script[^>]*>([\\s\\S]*?)<\\/script>/gi  x x replace /<script[\\s\\S]*?<\\/script>/gi  x x replace / ?<!-- ?/g  x x replace /require\\('\\.\\.\\/common'\\);/g  x x replace /\\.\\.\\/\\.\\.\\/lib\\//g  x indexOf . 1 x x replace /^\\.\\//  replace /\\/\\.\\// / replace /[^\\/]*\\/\\.\\.\\//  x x replace /([^.\\s]+\\.)+/  x x replace /<!\\-\\-DEVEL[\\d\\D]*?DEVEL\\-\\->/g  x x replace /^\\.\\//  replace /\\/\\.\\// / replace /[^\\/]*\\/\\.\\.\\//  x |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:100:17:100:23 | /\\.\\./g | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:100:17:100:23 | /\\.\\./g | fileImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:100:17:100:23 | /\\.\\./g | receiverName | x |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:100:26:100:27 | "" | CalleeFlexibleAccessPath | x.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:100:26:100:27 | "" | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:100:26:100:27 | "" | contextFunctionInterfaces |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:100:26:100:27 | "" | contextSurroundingFunctionParameters | (x) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:100:26:100:27 | "" | enclosingFunctionBody | x x x replace /<script\\b[^<]*(?:(?!<\\/script>)<[^<]*)*<\\/script>/g  x x replace /(\\/\|\\s)on\\w+=(\\'\|")?[^"]*(\\'\|")?/g  x x replace /<\\/script>/g  x x replace /<(.)?br(.)?>/g  x x replace /<\\/?b>/g  x x replace /<(ul\|ol)><\\/(ul\|ol)>/gi  x x replace /<li><\\/li>/gi  x x replace /<!--(.*?)-->/gm  x x replace /\\sng-[a-z-]+/  x x replace /\\sng-[a-z-]+/g  x x replace /(<!--\\[CDATA\\[\|\\]\\]-->)/g \n x x replace /<script.+desktop\\-only.+<\\/script>/g  x x replace /<script async.+?<\\/script>/g  x x replace /<!--[\\s\\S]*?-->\|<\\?(?:php)?[\\s\\S]*?\\?>/gi  x x replace /\\x2E\\x2E\\x2F\\x2E\\x2E\\x2F/g  x x replace /<script.*>.*<\\/script>/gi  x x replace /^(\\.\\.\\/?)+/g  x x replace /<script\\b[^<]*(?:(?!<\\/script>)<[^<]*)*<\\/script>/g $0 unknown $0  x x replace /<\\/?([a-z][a-z0-9]*)\\b[^>]*>/gi  x x replace /\\.\\./g  x x replace /\\.\\.\\//g  x x replace /\\/\\.\\./g  x x replace /<script(.*?)>([\\s\\S]*?)<\\/script>/gi  x x replace /<(script\|del)(?=[\\s>])[\\w\\W]*?<\\/\\1\\s*>/gi  x x replace /\\<script[\\s\\S]*?\\>[\\s\\S]*?\\<\\/script\\>/g  x x replace /<(script\|style\|title)[^<]+<\\/(script\|style\|title)>/gm  x x replace /<script[^>]*>([\\s\\S]*?)<\\/script>/gi  x x replace /<script[\\s\\S]*?<\\/script>/gi  x x replace / ?<!-- ?/g  x x replace /require\\('\\.\\.\\/common'\\);/g  x x replace /\\.\\.\\/\\.\\.\\/lib\\//g  x indexOf . 1 x x replace /^\\.\\//  replace /\\/\\.\\// / replace /[^\\/]*\\/\\.\\.\\//  x x replace /([^.\\s]+\\.)+/  x x replace /<!\\-\\-DEVEL[\\d\\D]*?DEVEL\\-\\->/g  x x replace /^\\.\\//  replace /\\/\\.\\// / replace /[^\\/]*\\/\\.\\.\\//  x |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:100:26:100:27 | "" | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:100:26:100:27 | "" | fileImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:100:26:100:27 | "" | receiverName | x |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:101:17:101:25 | /\\.\\.\\//g | CalleeFlexibleAccessPath | x.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:101:17:101:25 | /\\.\\.\\//g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:101:17:101:25 | /\\.\\.\\//g | contextFunctionInterfaces |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:101:17:101:25 | /\\.\\.\\//g | contextSurroundingFunctionParameters | (x) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:101:17:101:25 | /\\.\\.\\//g | enclosingFunctionBody | x x x replace /<script\\b[^<]*(?:(?!<\\/script>)<[^<]*)*<\\/script>/g  x x replace /(\\/\|\\s)on\\w+=(\\'\|")?[^"]*(\\'\|")?/g  x x replace /<\\/script>/g  x x replace /<(.)?br(.)?>/g  x x replace /<\\/?b>/g  x x replace /<(ul\|ol)><\\/(ul\|ol)>/gi  x x replace /<li><\\/li>/gi  x x replace /<!--(.*?)-->/gm  x x replace /\\sng-[a-z-]+/  x x replace /\\sng-[a-z-]+/g  x x replace /(<!--\\[CDATA\\[\|\\]\\]-->)/g \n x x replace /<script.+desktop\\-only.+<\\/script>/g  x x replace /<script async.+?<\\/script>/g  x x replace /<!--[\\s\\S]*?-->\|<\\?(?:php)?[\\s\\S]*?\\?>/gi  x x replace /\\x2E\\x2E\\x2F\\x2E\\x2E\\x2F/g  x x replace /<script.*>.*<\\/script>/gi  x x replace /^(\\.\\.\\/?)+/g  x x replace /<script\\b[^<]*(?:(?!<\\/script>)<[^<]*)*<\\/script>/g $0 unknown $0  x x replace /<\\/?([a-z][a-z0-9]*)\\b[^>]*>/gi  x x replace /\\.\\./g  x x replace /\\.\\.\\//g  x x replace /\\/\\.\\./g  x x replace /<script(.*?)>([\\s\\S]*?)<\\/script>/gi  x x replace /<(script\|del)(?=[\\s>])[\\w\\W]*?<\\/\\1\\s*>/gi  x x replace /\\<script[\\s\\S]*?\\>[\\s\\S]*?\\<\\/script\\>/g  x x replace /<(script\|style\|title)[^<]+<\\/(script\|style\|title)>/gm  x x replace /<script[^>]*>([\\s\\S]*?)<\\/script>/gi  x x replace /<script[\\s\\S]*?<\\/script>/gi  x x replace / ?<!-- ?/g  x x replace /require\\('\\.\\.\\/common'\\);/g  x x replace /\\.\\.\\/\\.\\.\\/lib\\//g  x indexOf . 1 x x replace /^\\.\\//  replace /\\/\\.\\// / replace /[^\\/]*\\/\\.\\.\\//  x x replace /([^.\\s]+\\.)+/  x x replace /<!\\-\\-DEVEL[\\d\\D]*?DEVEL\\-\\->/g  x x replace /^\\.\\//  replace /\\/\\.\\// / replace /[^\\/]*\\/\\.\\.\\//  x |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:101:17:101:25 | /\\.\\.\\//g | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:101:17:101:25 | /\\.\\.\\//g | fileImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:101:17:101:25 | /\\.\\.\\//g | receiverName | x |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:101:28:101:29 | "" | CalleeFlexibleAccessPath | x.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:101:28:101:29 | "" | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:101:28:101:29 | "" | contextFunctionInterfaces |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:101:28:101:29 | "" | contextSurroundingFunctionParameters | (x) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:101:28:101:29 | "" | enclosingFunctionBody | x x x replace /<script\\b[^<]*(?:(?!<\\/script>)<[^<]*)*<\\/script>/g  x x replace /(\\/\|\\s)on\\w+=(\\'\|")?[^"]*(\\'\|")?/g  x x replace /<\\/script>/g  x x replace /<(.)?br(.)?>/g  x x replace /<\\/?b>/g  x x replace /<(ul\|ol)><\\/(ul\|ol)>/gi  x x replace /<li><\\/li>/gi  x x replace /<!--(.*?)-->/gm  x x replace /\\sng-[a-z-]+/  x x replace /\\sng-[a-z-]+/g  x x replace /(<!--\\[CDATA\\[\|\\]\\]-->)/g \n x x replace /<script.+desktop\\-only.+<\\/script>/g  x x replace /<script async.+?<\\/script>/g  x x replace /<!--[\\s\\S]*?-->\|<\\?(?:php)?[\\s\\S]*?\\?>/gi  x x replace /\\x2E\\x2E\\x2F\\x2E\\x2E\\x2F/g  x x replace /<script.*>.*<\\/script>/gi  x x replace /^(\\.\\.\\/?)+/g  x x replace /<script\\b[^<]*(?:(?!<\\/script>)<[^<]*)*<\\/script>/g $0 unknown $0  x x replace /<\\/?([a-z][a-z0-9]*)\\b[^>]*>/gi  x x replace /\\.\\./g  x x replace /\\.\\.\\//g  x x replace /\\/\\.\\./g  x x replace /<script(.*?)>([\\s\\S]*?)<\\/script>/gi  x x replace /<(script\|del)(?=[\\s>])[\\w\\W]*?<\\/\\1\\s*>/gi  x x replace /\\<script[\\s\\S]*?\\>[\\s\\S]*?\\<\\/script\\>/g  x x replace /<(script\|style\|title)[^<]+<\\/(script\|style\|title)>/gm  x x replace /<script[^>]*>([\\s\\S]*?)<\\/script>/gi  x x replace /<script[\\s\\S]*?<\\/script>/gi  x x replace / ?<!-- ?/g  x x replace /require\\('\\.\\.\\/common'\\);/g  x x replace /\\.\\.\\/\\.\\.\\/lib\\//g  x indexOf . 1 x x replace /^\\.\\//  replace /\\/\\.\\// / replace /[^\\/]*\\/\\.\\.\\//  x x replace /([^.\\s]+\\.)+/  x x replace /<!\\-\\-DEVEL[\\d\\D]*?DEVEL\\-\\->/g  x x replace /^\\.\\//  replace /\\/\\.\\// / replace /[^\\/]*\\/\\.\\.\\//  x |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:101:28:101:29 | "" | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:101:28:101:29 | "" | fileImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:101:28:101:29 | "" | receiverName | x |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:102:17:102:25 | /\\/\\.\\./g | CalleeFlexibleAccessPath | x.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:102:17:102:25 | /\\/\\.\\./g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:102:17:102:25 | /\\/\\.\\./g | contextFunctionInterfaces |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:102:17:102:25 | /\\/\\.\\./g | contextSurroundingFunctionParameters | (x) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:102:17:102:25 | /\\/\\.\\./g | enclosingFunctionBody | x x x replace /<script\\b[^<]*(?:(?!<\\/script>)<[^<]*)*<\\/script>/g  x x replace /(\\/\|\\s)on\\w+=(\\'\|")?[^"]*(\\'\|")?/g  x x replace /<\\/script>/g  x x replace /<(.)?br(.)?>/g  x x replace /<\\/?b>/g  x x replace /<(ul\|ol)><\\/(ul\|ol)>/gi  x x replace /<li><\\/li>/gi  x x replace /<!--(.*?)-->/gm  x x replace /\\sng-[a-z-]+/  x x replace /\\sng-[a-z-]+/g  x x replace /(<!--\\[CDATA\\[\|\\]\\]-->)/g \n x x replace /<script.+desktop\\-only.+<\\/script>/g  x x replace /<script async.+?<\\/script>/g  x x replace /<!--[\\s\\S]*?-->\|<\\?(?:php)?[\\s\\S]*?\\?>/gi  x x replace /\\x2E\\x2E\\x2F\\x2E\\x2E\\x2F/g  x x replace /<script.*>.*<\\/script>/gi  x x replace /^(\\.\\.\\/?)+/g  x x replace /<script\\b[^<]*(?:(?!<\\/script>)<[^<]*)*<\\/script>/g $0 unknown $0  x x replace /<\\/?([a-z][a-z0-9]*)\\b[^>]*>/gi  x x replace /\\.\\./g  x x replace /\\.\\.\\//g  x x replace /\\/\\.\\./g  x x replace /<script(.*?)>([\\s\\S]*?)<\\/script>/gi  x x replace /<(script\|del)(?=[\\s>])[\\w\\W]*?<\\/\\1\\s*>/gi  x x replace /\\<script[\\s\\S]*?\\>[\\s\\S]*?\\<\\/script\\>/g  x x replace /<(script\|style\|title)[^<]+<\\/(script\|style\|title)>/gm  x x replace /<script[^>]*>([\\s\\S]*?)<\\/script>/gi  x x replace /<script[\\s\\S]*?<\\/script>/gi  x x replace / ?<!-- ?/g  x x replace /require\\('\\.\\.\\/common'\\);/g  x x replace /\\.\\.\\/\\.\\.\\/lib\\//g  x indexOf . 1 x x replace /^\\.\\//  replace /\\/\\.\\// / replace /[^\\/]*\\/\\.\\.\\//  x x replace /([^.\\s]+\\.)+/  x x replace /<!\\-\\-DEVEL[\\d\\D]*?DEVEL\\-\\->/g  x x replace /^\\.\\//  replace /\\/\\.\\// / replace /[^\\/]*\\/\\.\\.\\//  x |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:102:17:102:25 | /\\/\\.\\./g | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:102:17:102:25 | /\\/\\.\\./g | fileImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:102:17:102:25 | /\\/\\.\\./g | receiverName | x |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:102:28:102:29 | "" | CalleeFlexibleAccessPath | x.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:102:28:102:29 | "" | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:102:28:102:29 | "" | contextFunctionInterfaces |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:102:28:102:29 | "" | contextSurroundingFunctionParameters | (x) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:102:28:102:29 | "" | enclosingFunctionBody | x x x replace /<script\\b[^<]*(?:(?!<\\/script>)<[^<]*)*<\\/script>/g  x x replace /(\\/\|\\s)on\\w+=(\\'\|")?[^"]*(\\'\|")?/g  x x replace /<\\/script>/g  x x replace /<(.)?br(.)?>/g  x x replace /<\\/?b>/g  x x replace /<(ul\|ol)><\\/(ul\|ol)>/gi  x x replace /<li><\\/li>/gi  x x replace /<!--(.*?)-->/gm  x x replace /\\sng-[a-z-]+/  x x replace /\\sng-[a-z-]+/g  x x replace /(<!--\\[CDATA\\[\|\\]\\]-->)/g \n x x replace /<script.+desktop\\-only.+<\\/script>/g  x x replace /<script async.+?<\\/script>/g  x x replace /<!--[\\s\\S]*?-->\|<\\?(?:php)?[\\s\\S]*?\\?>/gi  x x replace /\\x2E\\x2E\\x2F\\x2E\\x2E\\x2F/g  x x replace /<script.*>.*<\\/script>/gi  x x replace /^(\\.\\.\\/?)+/g  x x replace /<script\\b[^<]*(?:(?!<\\/script>)<[^<]*)*<\\/script>/g $0 unknown $0  x x replace /<\\/?([a-z][a-z0-9]*)\\b[^>]*>/gi  x x replace /\\.\\./g  x x replace /\\.\\.\\//g  x x replace /\\/\\.\\./g  x x replace /<script(.*?)>([\\s\\S]*?)<\\/script>/gi  x x replace /<(script\|del)(?=[\\s>])[\\w\\W]*?<\\/\\1\\s*>/gi  x x replace /\\<script[\\s\\S]*?\\>[\\s\\S]*?\\<\\/script\\>/g  x x replace /<(script\|style\|title)[^<]+<\\/(script\|style\|title)>/gm  x x replace /<script[^>]*>([\\s\\S]*?)<\\/script>/gi  x x replace /<script[\\s\\S]*?<\\/script>/gi  x x replace / ?<!-- ?/g  x x replace /require\\('\\.\\.\\/common'\\);/g  x x replace /\\.\\.\\/\\.\\.\\/lib\\//g  x indexOf . 1 x x replace /^\\.\\//  replace /\\/\\.\\// / replace /[^\\/]*\\/\\.\\.\\//  x x replace /([^.\\s]+\\.)+/  x x replace /<!\\-\\-DEVEL[\\d\\D]*?DEVEL\\-\\->/g  x x replace /^\\.\\//  replace /\\/\\.\\// / replace /[^\\/]*\\/\\.\\.\\//  x |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:102:28:102:29 | "" | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:102:28:102:29 | "" | fileImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:102:28:102:29 | "" | receiverName | x |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:104:17:104:53 | /<scrip ... ipt>/gi | CalleeFlexibleAccessPath | x.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:104:17:104:53 | /<scrip ... ipt>/gi | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:104:17:104:53 | /<scrip ... ipt>/gi | contextFunctionInterfaces |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:104:17:104:53 | /<scrip ... ipt>/gi | contextSurroundingFunctionParameters | (x) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:104:17:104:53 | /<scrip ... ipt>/gi | enclosingFunctionBody | x x x replace /<script\\b[^<]*(?:(?!<\\/script>)<[^<]*)*<\\/script>/g  x x replace /(\\/\|\\s)on\\w+=(\\'\|")?[^"]*(\\'\|")?/g  x x replace /<\\/script>/g  x x replace /<(.)?br(.)?>/g  x x replace /<\\/?b>/g  x x replace /<(ul\|ol)><\\/(ul\|ol)>/gi  x x replace /<li><\\/li>/gi  x x replace /<!--(.*?)-->/gm  x x replace /\\sng-[a-z-]+/  x x replace /\\sng-[a-z-]+/g  x x replace /(<!--\\[CDATA\\[\|\\]\\]-->)/g \n x x replace /<script.+desktop\\-only.+<\\/script>/g  x x replace /<script async.+?<\\/script>/g  x x replace /<!--[\\s\\S]*?-->\|<\\?(?:php)?[\\s\\S]*?\\?>/gi  x x replace /\\x2E\\x2E\\x2F\\x2E\\x2E\\x2F/g  x x replace /<script.*>.*<\\/script>/gi  x x replace /^(\\.\\.\\/?)+/g  x x replace /<script\\b[^<]*(?:(?!<\\/script>)<[^<]*)*<\\/script>/g $0 unknown $0  x x replace /<\\/?([a-z][a-z0-9]*)\\b[^>]*>/gi  x x replace /\\.\\./g  x x replace /\\.\\.\\//g  x x replace /\\/\\.\\./g  x x replace /<script(.*?)>([\\s\\S]*?)<\\/script>/gi  x x replace /<(script\|del)(?=[\\s>])[\\w\\W]*?<\\/\\1\\s*>/gi  x x replace /\\<script[\\s\\S]*?\\>[\\s\\S]*?\\<\\/script\\>/g  x x replace /<(script\|style\|title)[^<]+<\\/(script\|style\|title)>/gm  x x replace /<script[^>]*>([\\s\\S]*?)<\\/script>/gi  x x replace /<script[\\s\\S]*?<\\/script>/gi  x x replace / ?<!-- ?/g  x x replace /require\\('\\.\\.\\/common'\\);/g  x x replace /\\.\\.\\/\\.\\.\\/lib\\//g  x indexOf . 1 x x replace /^\\.\\//  replace /\\/\\.\\// / replace /[^\\/]*\\/\\.\\.\\//  x x replace /([^.\\s]+\\.)+/  x x replace /<!\\-\\-DEVEL[\\d\\D]*?DEVEL\\-\\->/g  x x replace /^\\.\\//  replace /\\/\\.\\// / replace /[^\\/]*\\/\\.\\.\\//  x |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:104:17:104:53 | /<scrip ... ipt>/gi | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:104:17:104:53 | /<scrip ... ipt>/gi | fileImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:104:17:104:53 | /<scrip ... ipt>/gi | receiverName | x |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:104:56:104:57 | "" | CalleeFlexibleAccessPath | x.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:104:56:104:57 | "" | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:104:56:104:57 | "" | contextFunctionInterfaces |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:104:56:104:57 | "" | contextSurroundingFunctionParameters | (x) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:104:56:104:57 | "" | enclosingFunctionBody | x x x replace /<script\\b[^<]*(?:(?!<\\/script>)<[^<]*)*<\\/script>/g  x x replace /(\\/\|\\s)on\\w+=(\\'\|")?[^"]*(\\'\|")?/g  x x replace /<\\/script>/g  x x replace /<(.)?br(.)?>/g  x x replace /<\\/?b>/g  x x replace /<(ul\|ol)><\\/(ul\|ol)>/gi  x x replace /<li><\\/li>/gi  x x replace /<!--(.*?)-->/gm  x x replace /\\sng-[a-z-]+/  x x replace /\\sng-[a-z-]+/g  x x replace /(<!--\\[CDATA\\[\|\\]\\]-->)/g \n x x replace /<script.+desktop\\-only.+<\\/script>/g  x x replace /<script async.+?<\\/script>/g  x x replace /<!--[\\s\\S]*?-->\|<\\?(?:php)?[\\s\\S]*?\\?>/gi  x x replace /\\x2E\\x2E\\x2F\\x2E\\x2E\\x2F/g  x x replace /<script.*>.*<\\/script>/gi  x x replace /^(\\.\\.\\/?)+/g  x x replace /<script\\b[^<]*(?:(?!<\\/script>)<[^<]*)*<\\/script>/g $0 unknown $0  x x replace /<\\/?([a-z][a-z0-9]*)\\b[^>]*>/gi  x x replace /\\.\\./g  x x replace /\\.\\.\\//g  x x replace /\\/\\.\\./g  x x replace /<script(.*?)>([\\s\\S]*?)<\\/script>/gi  x x replace /<(script\|del)(?=[\\s>])[\\w\\W]*?<\\/\\1\\s*>/gi  x x replace /\\<script[\\s\\S]*?\\>[\\s\\S]*?\\<\\/script\\>/g  x x replace /<(script\|style\|title)[^<]+<\\/(script\|style\|title)>/gm  x x replace /<script[^>]*>([\\s\\S]*?)<\\/script>/gi  x x replace /<script[\\s\\S]*?<\\/script>/gi  x x replace / ?<!-- ?/g  x x replace /require\\('\\.\\.\\/common'\\);/g  x x replace /\\.\\.\\/\\.\\.\\/lib\\//g  x indexOf . 1 x x replace /^\\.\\//  replace /\\/\\.\\// / replace /[^\\/]*\\/\\.\\.\\//  x x replace /([^.\\s]+\\.)+/  x x replace /<!\\-\\-DEVEL[\\d\\D]*?DEVEL\\-\\->/g  x x replace /^\\.\\//  replace /\\/\\.\\// / replace /[^\\/]*\\/\\.\\.\\//  x |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:104:56:104:57 | "" | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:104:56:104:57 | "" | fileImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:104:56:104:57 | "" | receiverName | x |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:106:17:106:59 | /<(scri ... \\s*>/gi | CalleeFlexibleAccessPath | x.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:106:17:106:59 | /<(scri ... \\s*>/gi | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:106:17:106:59 | /<(scri ... \\s*>/gi | contextFunctionInterfaces |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:106:17:106:59 | /<(scri ... \\s*>/gi | contextSurroundingFunctionParameters | (x) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:106:17:106:59 | /<(scri ... \\s*>/gi | enclosingFunctionBody | x x x replace /<script\\b[^<]*(?:(?!<\\/script>)<[^<]*)*<\\/script>/g  x x replace /(\\/\|\\s)on\\w+=(\\'\|")?[^"]*(\\'\|")?/g  x x replace /<\\/script>/g  x x replace /<(.)?br(.)?>/g  x x replace /<\\/?b>/g  x x replace /<(ul\|ol)><\\/(ul\|ol)>/gi  x x replace /<li><\\/li>/gi  x x replace /<!--(.*?)-->/gm  x x replace /\\sng-[a-z-]+/  x x replace /\\sng-[a-z-]+/g  x x replace /(<!--\\[CDATA\\[\|\\]\\]-->)/g \n x x replace /<script.+desktop\\-only.+<\\/script>/g  x x replace /<script async.+?<\\/script>/g  x x replace /<!--[\\s\\S]*?-->\|<\\?(?:php)?[\\s\\S]*?\\?>/gi  x x replace /\\x2E\\x2E\\x2F\\x2E\\x2E\\x2F/g  x x replace /<script.*>.*<\\/script>/gi  x x replace /^(\\.\\.\\/?)+/g  x x replace /<script\\b[^<]*(?:(?!<\\/script>)<[^<]*)*<\\/script>/g $0 unknown $0  x x replace /<\\/?([a-z][a-z0-9]*)\\b[^>]*>/gi  x x replace /\\.\\./g  x x replace /\\.\\.\\//g  x x replace /\\/\\.\\./g  x x replace /<script(.*?)>([\\s\\S]*?)<\\/script>/gi  x x replace /<(script\|del)(?=[\\s>])[\\w\\W]*?<\\/\\1\\s*>/gi  x x replace /\\<script[\\s\\S]*?\\>[\\s\\S]*?\\<\\/script\\>/g  x x replace /<(script\|style\|title)[^<]+<\\/(script\|style\|title)>/gm  x x replace /<script[^>]*>([\\s\\S]*?)<\\/script>/gi  x x replace /<script[\\s\\S]*?<\\/script>/gi  x x replace / ?<!-- ?/g  x x replace /require\\('\\.\\.\\/common'\\);/g  x x replace /\\.\\.\\/\\.\\.\\/lib\\//g  x indexOf . 1 x x replace /^\\.\\//  replace /\\/\\.\\// / replace /[^\\/]*\\/\\.\\.\\//  x x replace /([^.\\s]+\\.)+/  x x replace /<!\\-\\-DEVEL[\\d\\D]*?DEVEL\\-\\->/g  x x replace /^\\.\\//  replace /\\/\\.\\// / replace /[^\\/]*\\/\\.\\.\\//  x |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:106:17:106:59 | /<(scri ... \\s*>/gi | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:106:17:106:59 | /<(scri ... \\s*>/gi | fileImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:106:17:106:59 | /<(scri ... \\s*>/gi | receiverName | x |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:106:62:106:63 | "" | CalleeFlexibleAccessPath | x.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:106:62:106:63 | "" | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:106:62:106:63 | "" | contextFunctionInterfaces |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:106:62:106:63 | "" | contextSurroundingFunctionParameters | (x) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:106:62:106:63 | "" | enclosingFunctionBody | x x x replace /<script\\b[^<]*(?:(?!<\\/script>)<[^<]*)*<\\/script>/g  x x replace /(\\/\|\\s)on\\w+=(\\'\|")?[^"]*(\\'\|")?/g  x x replace /<\\/script>/g  x x replace /<(.)?br(.)?>/g  x x replace /<\\/?b>/g  x x replace /<(ul\|ol)><\\/(ul\|ol)>/gi  x x replace /<li><\\/li>/gi  x x replace /<!--(.*?)-->/gm  x x replace /\\sng-[a-z-]+/  x x replace /\\sng-[a-z-]+/g  x x replace /(<!--\\[CDATA\\[\|\\]\\]-->)/g \n x x replace /<script.+desktop\\-only.+<\\/script>/g  x x replace /<script async.+?<\\/script>/g  x x replace /<!--[\\s\\S]*?-->\|<\\?(?:php)?[\\s\\S]*?\\?>/gi  x x replace /\\x2E\\x2E\\x2F\\x2E\\x2E\\x2F/g  x x replace /<script.*>.*<\\/script>/gi  x x replace /^(\\.\\.\\/?)+/g  x x replace /<script\\b[^<]*(?:(?!<\\/script>)<[^<]*)*<\\/script>/g $0 unknown $0  x x replace /<\\/?([a-z][a-z0-9]*)\\b[^>]*>/gi  x x replace /\\.\\./g  x x replace /\\.\\.\\//g  x x replace /\\/\\.\\./g  x x replace /<script(.*?)>([\\s\\S]*?)<\\/script>/gi  x x replace /<(script\|del)(?=[\\s>])[\\w\\W]*?<\\/\\1\\s*>/gi  x x replace /\\<script[\\s\\S]*?\\>[\\s\\S]*?\\<\\/script\\>/g  x x replace /<(script\|style\|title)[^<]+<\\/(script\|style\|title)>/gm  x x replace /<script[^>]*>([\\s\\S]*?)<\\/script>/gi  x x replace /<script[\\s\\S]*?<\\/script>/gi  x x replace / ?<!-- ?/g  x x replace /require\\('\\.\\.\\/common'\\);/g  x x replace /\\.\\.\\/\\.\\.\\/lib\\//g  x indexOf . 1 x x replace /^\\.\\//  replace /\\/\\.\\// / replace /[^\\/]*\\/\\.\\.\\//  x x replace /([^.\\s]+\\.)+/  x x replace /<!\\-\\-DEVEL[\\d\\D]*?DEVEL\\-\\->/g  x x replace /^\\.\\//  replace /\\/\\.\\// / replace /[^\\/]*\\/\\.\\.\\//  x |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:106:62:106:63 | "" | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:106:62:106:63 | "" | fileImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:106:62:106:63 | "" | receiverName | x |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:107:17:107:57 | /\\<scri ... ipt\\>/g | CalleeFlexibleAccessPath | x.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:107:17:107:57 | /\\<scri ... ipt\\>/g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:107:17:107:57 | /\\<scri ... ipt\\>/g | contextFunctionInterfaces |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:107:17:107:57 | /\\<scri ... ipt\\>/g | contextSurroundingFunctionParameters | (x) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:107:17:107:57 | /\\<scri ... ipt\\>/g | enclosingFunctionBody | x x x replace /<script\\b[^<]*(?:(?!<\\/script>)<[^<]*)*<\\/script>/g  x x replace /(\\/\|\\s)on\\w+=(\\'\|")?[^"]*(\\'\|")?/g  x x replace /<\\/script>/g  x x replace /<(.)?br(.)?>/g  x x replace /<\\/?b>/g  x x replace /<(ul\|ol)><\\/(ul\|ol)>/gi  x x replace /<li><\\/li>/gi  x x replace /<!--(.*?)-->/gm  x x replace /\\sng-[a-z-]+/  x x replace /\\sng-[a-z-]+/g  x x replace /(<!--\\[CDATA\\[\|\\]\\]-->)/g \n x x replace /<script.+desktop\\-only.+<\\/script>/g  x x replace /<script async.+?<\\/script>/g  x x replace /<!--[\\s\\S]*?-->\|<\\?(?:php)?[\\s\\S]*?\\?>/gi  x x replace /\\x2E\\x2E\\x2F\\x2E\\x2E\\x2F/g  x x replace /<script.*>.*<\\/script>/gi  x x replace /^(\\.\\.\\/?)+/g  x x replace /<script\\b[^<]*(?:(?!<\\/script>)<[^<]*)*<\\/script>/g $0 unknown $0  x x replace /<\\/?([a-z][a-z0-9]*)\\b[^>]*>/gi  x x replace /\\.\\./g  x x replace /\\.\\.\\//g  x x replace /\\/\\.\\./g  x x replace /<script(.*?)>([\\s\\S]*?)<\\/script>/gi  x x replace /<(script\|del)(?=[\\s>])[\\w\\W]*?<\\/\\1\\s*>/gi  x x replace /\\<script[\\s\\S]*?\\>[\\s\\S]*?\\<\\/script\\>/g  x x replace /<(script\|style\|title)[^<]+<\\/(script\|style\|title)>/gm  x x replace /<script[^>]*>([\\s\\S]*?)<\\/script>/gi  x x replace /<script[\\s\\S]*?<\\/script>/gi  x x replace / ?<!-- ?/g  x x replace /require\\('\\.\\.\\/common'\\);/g  x x replace /\\.\\.\\/\\.\\.\\/lib\\//g  x indexOf . 1 x x replace /^\\.\\//  replace /\\/\\.\\// / replace /[^\\/]*\\/\\.\\.\\//  x x replace /([^.\\s]+\\.)+/  x x replace /<!\\-\\-DEVEL[\\d\\D]*?DEVEL\\-\\->/g  x x replace /^\\.\\//  replace /\\/\\.\\// / replace /[^\\/]*\\/\\.\\.\\//  x |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:107:17:107:57 | /\\<scri ... ipt\\>/g | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:107:17:107:57 | /\\<scri ... ipt\\>/g | fileImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:107:17:107:57 | /\\<scri ... ipt\\>/g | receiverName | x |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:107:60:107:61 | "" | CalleeFlexibleAccessPath | x.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:107:60:107:61 | "" | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:107:60:107:61 | "" | contextFunctionInterfaces |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:107:60:107:61 | "" | contextSurroundingFunctionParameters | (x) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:107:60:107:61 | "" | enclosingFunctionBody | x x x replace /<script\\b[^<]*(?:(?!<\\/script>)<[^<]*)*<\\/script>/g  x x replace /(\\/\|\\s)on\\w+=(\\'\|")?[^"]*(\\'\|")?/g  x x replace /<\\/script>/g  x x replace /<(.)?br(.)?>/g  x x replace /<\\/?b>/g  x x replace /<(ul\|ol)><\\/(ul\|ol)>/gi  x x replace /<li><\\/li>/gi  x x replace /<!--(.*?)-->/gm  x x replace /\\sng-[a-z-]+/  x x replace /\\sng-[a-z-]+/g  x x replace /(<!--\\[CDATA\\[\|\\]\\]-->)/g \n x x replace /<script.+desktop\\-only.+<\\/script>/g  x x replace /<script async.+?<\\/script>/g  x x replace /<!--[\\s\\S]*?-->\|<\\?(?:php)?[\\s\\S]*?\\?>/gi  x x replace /\\x2E\\x2E\\x2F\\x2E\\x2E\\x2F/g  x x replace /<script.*>.*<\\/script>/gi  x x replace /^(\\.\\.\\/?)+/g  x x replace /<script\\b[^<]*(?:(?!<\\/script>)<[^<]*)*<\\/script>/g $0 unknown $0  x x replace /<\\/?([a-z][a-z0-9]*)\\b[^>]*>/gi  x x replace /\\.\\./g  x x replace /\\.\\.\\//g  x x replace /\\/\\.\\./g  x x replace /<script(.*?)>([\\s\\S]*?)<\\/script>/gi  x x replace /<(script\|del)(?=[\\s>])[\\w\\W]*?<\\/\\1\\s*>/gi  x x replace /\\<script[\\s\\S]*?\\>[\\s\\S]*?\\<\\/script\\>/g  x x replace /<(script\|style\|title)[^<]+<\\/(script\|style\|title)>/gm  x x replace /<script[^>]*>([\\s\\S]*?)<\\/script>/gi  x x replace /<script[\\s\\S]*?<\\/script>/gi  x x replace / ?<!-- ?/g  x x replace /require\\('\\.\\.\\/common'\\);/g  x x replace /\\.\\.\\/\\.\\.\\/lib\\//g  x indexOf . 1 x x replace /^\\.\\//  replace /\\/\\.\\// / replace /[^\\/]*\\/\\.\\.\\//  x x replace /([^.\\s]+\\.)+/  x x replace /<!\\-\\-DEVEL[\\d\\D]*?DEVEL\\-\\->/g  x x replace /^\\.\\//  replace /\\/\\.\\// / replace /[^\\/]*\\/\\.\\.\\//  x |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:107:60:107:61 | "" | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:107:60:107:61 | "" | fileImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:107:60:107:61 | "" | receiverName | x |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:108:17:108:70 | /<(scri ... le)>/gm | CalleeFlexibleAccessPath | x.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:108:17:108:70 | /<(scri ... le)>/gm | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:108:17:108:70 | /<(scri ... le)>/gm | contextFunctionInterfaces |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:108:17:108:70 | /<(scri ... le)>/gm | contextSurroundingFunctionParameters | (x) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:108:17:108:70 | /<(scri ... le)>/gm | enclosingFunctionBody | x x x replace /<script\\b[^<]*(?:(?!<\\/script>)<[^<]*)*<\\/script>/g  x x replace /(\\/\|\\s)on\\w+=(\\'\|")?[^"]*(\\'\|")?/g  x x replace /<\\/script>/g  x x replace /<(.)?br(.)?>/g  x x replace /<\\/?b>/g  x x replace /<(ul\|ol)><\\/(ul\|ol)>/gi  x x replace /<li><\\/li>/gi  x x replace /<!--(.*?)-->/gm  x x replace /\\sng-[a-z-]+/  x x replace /\\sng-[a-z-]+/g  x x replace /(<!--\\[CDATA\\[\|\\]\\]-->)/g \n x x replace /<script.+desktop\\-only.+<\\/script>/g  x x replace /<script async.+?<\\/script>/g  x x replace /<!--[\\s\\S]*?-->\|<\\?(?:php)?[\\s\\S]*?\\?>/gi  x x replace /\\x2E\\x2E\\x2F\\x2E\\x2E\\x2F/g  x x replace /<script.*>.*<\\/script>/gi  x x replace /^(\\.\\.\\/?)+/g  x x replace /<script\\b[^<]*(?:(?!<\\/script>)<[^<]*)*<\\/script>/g $0 unknown $0  x x replace /<\\/?([a-z][a-z0-9]*)\\b[^>]*>/gi  x x replace /\\.\\./g  x x replace /\\.\\.\\//g  x x replace /\\/\\.\\./g  x x replace /<script(.*?)>([\\s\\S]*?)<\\/script>/gi  x x replace /<(script\|del)(?=[\\s>])[\\w\\W]*?<\\/\\1\\s*>/gi  x x replace /\\<script[\\s\\S]*?\\>[\\s\\S]*?\\<\\/script\\>/g  x x replace /<(script\|style\|title)[^<]+<\\/(script\|style\|title)>/gm  x x replace /<script[^>]*>([\\s\\S]*?)<\\/script>/gi  x x replace /<script[\\s\\S]*?<\\/script>/gi  x x replace / ?<!-- ?/g  x x replace /require\\('\\.\\.\\/common'\\);/g  x x replace /\\.\\.\\/\\.\\.\\/lib\\//g  x indexOf . 1 x x replace /^\\.\\//  replace /\\/\\.\\// / replace /[^\\/]*\\/\\.\\.\\//  x x replace /([^.\\s]+\\.)+/  x x replace /<!\\-\\-DEVEL[\\d\\D]*?DEVEL\\-\\->/g  x x replace /^\\.\\//  replace /\\/\\.\\// / replace /[^\\/]*\\/\\.\\.\\//  x |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:108:17:108:70 | /<(scri ... le)>/gm | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:108:17:108:70 | /<(scri ... le)>/gm | fileImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:108:17:108:70 | /<(scri ... le)>/gm | receiverName | x |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:108:73:108:74 | "" | CalleeFlexibleAccessPath | x.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:108:73:108:74 | "" | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:108:73:108:74 | "" | contextFunctionInterfaces |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:108:73:108:74 | "" | contextSurroundingFunctionParameters | (x) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:108:73:108:74 | "" | enclosingFunctionBody | x x x replace /<script\\b[^<]*(?:(?!<\\/script>)<[^<]*)*<\\/script>/g  x x replace /(\\/\|\\s)on\\w+=(\\'\|")?[^"]*(\\'\|")?/g  x x replace /<\\/script>/g  x x replace /<(.)?br(.)?>/g  x x replace /<\\/?b>/g  x x replace /<(ul\|ol)><\\/(ul\|ol)>/gi  x x replace /<li><\\/li>/gi  x x replace /<!--(.*?)-->/gm  x x replace /\\sng-[a-z-]+/  x x replace /\\sng-[a-z-]+/g  x x replace /(<!--\\[CDATA\\[\|\\]\\]-->)/g \n x x replace /<script.+desktop\\-only.+<\\/script>/g  x x replace /<script async.+?<\\/script>/g  x x replace /<!--[\\s\\S]*?-->\|<\\?(?:php)?[\\s\\S]*?\\?>/gi  x x replace /\\x2E\\x2E\\x2F\\x2E\\x2E\\x2F/g  x x replace /<script.*>.*<\\/script>/gi  x x replace /^(\\.\\.\\/?)+/g  x x replace /<script\\b[^<]*(?:(?!<\\/script>)<[^<]*)*<\\/script>/g $0 unknown $0  x x replace /<\\/?([a-z][a-z0-9]*)\\b[^>]*>/gi  x x replace /\\.\\./g  x x replace /\\.\\.\\//g  x x replace /\\/\\.\\./g  x x replace /<script(.*?)>([\\s\\S]*?)<\\/script>/gi  x x replace /<(script\|del)(?=[\\s>])[\\w\\W]*?<\\/\\1\\s*>/gi  x x replace /\\<script[\\s\\S]*?\\>[\\s\\S]*?\\<\\/script\\>/g  x x replace /<(script\|style\|title)[^<]+<\\/(script\|style\|title)>/gm  x x replace /<script[^>]*>([\\s\\S]*?)<\\/script>/gi  x x replace /<script[\\s\\S]*?<\\/script>/gi  x x replace / ?<!-- ?/g  x x replace /require\\('\\.\\.\\/common'\\);/g  x x replace /\\.\\.\\/\\.\\.\\/lib\\//g  x indexOf . 1 x x replace /^\\.\\//  replace /\\/\\.\\// / replace /[^\\/]*\\/\\.\\.\\//  x x replace /([^.\\s]+\\.)+/  x x replace /<!\\-\\-DEVEL[\\d\\D]*?DEVEL\\-\\->/g  x x replace /^\\.\\//  replace /\\/\\.\\// / replace /[^\\/]*\\/\\.\\.\\//  x |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:108:73:108:74 | "" | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:108:73:108:74 | "" | fileImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:108:73:108:74 | "" | receiverName | x |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:109:17:109:53 | /<scrip ... ipt>/gi | CalleeFlexibleAccessPath | x.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:109:17:109:53 | /<scrip ... ipt>/gi | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:109:17:109:53 | /<scrip ... ipt>/gi | contextFunctionInterfaces |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:109:17:109:53 | /<scrip ... ipt>/gi | contextSurroundingFunctionParameters | (x) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:109:17:109:53 | /<scrip ... ipt>/gi | enclosingFunctionBody | x x x replace /<script\\b[^<]*(?:(?!<\\/script>)<[^<]*)*<\\/script>/g  x x replace /(\\/\|\\s)on\\w+=(\\'\|")?[^"]*(\\'\|")?/g  x x replace /<\\/script>/g  x x replace /<(.)?br(.)?>/g  x x replace /<\\/?b>/g  x x replace /<(ul\|ol)><\\/(ul\|ol)>/gi  x x replace /<li><\\/li>/gi  x x replace /<!--(.*?)-->/gm  x x replace /\\sng-[a-z-]+/  x x replace /\\sng-[a-z-]+/g  x x replace /(<!--\\[CDATA\\[\|\\]\\]-->)/g \n x x replace /<script.+desktop\\-only.+<\\/script>/g  x x replace /<script async.+?<\\/script>/g  x x replace /<!--[\\s\\S]*?-->\|<\\?(?:php)?[\\s\\S]*?\\?>/gi  x x replace /\\x2E\\x2E\\x2F\\x2E\\x2E\\x2F/g  x x replace /<script.*>.*<\\/script>/gi  x x replace /^(\\.\\.\\/?)+/g  x x replace /<script\\b[^<]*(?:(?!<\\/script>)<[^<]*)*<\\/script>/g $0 unknown $0  x x replace /<\\/?([a-z][a-z0-9]*)\\b[^>]*>/gi  x x replace /\\.\\./g  x x replace /\\.\\.\\//g  x x replace /\\/\\.\\./g  x x replace /<script(.*?)>([\\s\\S]*?)<\\/script>/gi  x x replace /<(script\|del)(?=[\\s>])[\\w\\W]*?<\\/\\1\\s*>/gi  x x replace /\\<script[\\s\\S]*?\\>[\\s\\S]*?\\<\\/script\\>/g  x x replace /<(script\|style\|title)[^<]+<\\/(script\|style\|title)>/gm  x x replace /<script[^>]*>([\\s\\S]*?)<\\/script>/gi  x x replace /<script[\\s\\S]*?<\\/script>/gi  x x replace / ?<!-- ?/g  x x replace /require\\('\\.\\.\\/common'\\);/g  x x replace /\\.\\.\\/\\.\\.\\/lib\\//g  x indexOf . 1 x x replace /^\\.\\//  replace /\\/\\.\\// / replace /[^\\/]*\\/\\.\\.\\//  x x replace /([^.\\s]+\\.)+/  x x replace /<!\\-\\-DEVEL[\\d\\D]*?DEVEL\\-\\->/g  x x replace /^\\.\\//  replace /\\/\\.\\// / replace /[^\\/]*\\/\\.\\.\\//  x |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:109:17:109:53 | /<scrip ... ipt>/gi | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:109:17:109:53 | /<scrip ... ipt>/gi | fileImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:109:17:109:53 | /<scrip ... ipt>/gi | receiverName | x |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:109:56:109:57 | "" | CalleeFlexibleAccessPath | x.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:109:56:109:57 | "" | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:109:56:109:57 | "" | contextFunctionInterfaces |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:109:56:109:57 | "" | contextSurroundingFunctionParameters | (x) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:109:56:109:57 | "" | enclosingFunctionBody | x x x replace /<script\\b[^<]*(?:(?!<\\/script>)<[^<]*)*<\\/script>/g  x x replace /(\\/\|\\s)on\\w+=(\\'\|")?[^"]*(\\'\|")?/g  x x replace /<\\/script>/g  x x replace /<(.)?br(.)?>/g  x x replace /<\\/?b>/g  x x replace /<(ul\|ol)><\\/(ul\|ol)>/gi  x x replace /<li><\\/li>/gi  x x replace /<!--(.*?)-->/gm  x x replace /\\sng-[a-z-]+/  x x replace /\\sng-[a-z-]+/g  x x replace /(<!--\\[CDATA\\[\|\\]\\]-->)/g \n x x replace /<script.+desktop\\-only.+<\\/script>/g  x x replace /<script async.+?<\\/script>/g  x x replace /<!--[\\s\\S]*?-->\|<\\?(?:php)?[\\s\\S]*?\\?>/gi  x x replace /\\x2E\\x2E\\x2F\\x2E\\x2E\\x2F/g  x x replace /<script.*>.*<\\/script>/gi  x x replace /^(\\.\\.\\/?)+/g  x x replace /<script\\b[^<]*(?:(?!<\\/script>)<[^<]*)*<\\/script>/g $0 unknown $0  x x replace /<\\/?([a-z][a-z0-9]*)\\b[^>]*>/gi  x x replace /\\.\\./g  x x replace /\\.\\.\\//g  x x replace /\\/\\.\\./g  x x replace /<script(.*?)>([\\s\\S]*?)<\\/script>/gi  x x replace /<(script\|del)(?=[\\s>])[\\w\\W]*?<\\/\\1\\s*>/gi  x x replace /\\<script[\\s\\S]*?\\>[\\s\\S]*?\\<\\/script\\>/g  x x replace /<(script\|style\|title)[^<]+<\\/(script\|style\|title)>/gm  x x replace /<script[^>]*>([\\s\\S]*?)<\\/script>/gi  x x replace /<script[\\s\\S]*?<\\/script>/gi  x x replace / ?<!-- ?/g  x x replace /require\\('\\.\\.\\/common'\\);/g  x x replace /\\.\\.\\/\\.\\.\\/lib\\//g  x indexOf . 1 x x replace /^\\.\\//  replace /\\/\\.\\// / replace /[^\\/]*\\/\\.\\.\\//  x x replace /([^.\\s]+\\.)+/  x x replace /<!\\-\\-DEVEL[\\d\\D]*?DEVEL\\-\\->/g  x x replace /^\\.\\//  replace /\\/\\.\\// / replace /[^\\/]*\\/\\.\\.\\//  x |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:109:56:109:57 | "" | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:109:56:109:57 | "" | fileImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:109:56:109:57 | "" | receiverName | x |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:110:17:110:45 | /<scrip ... ipt>/gi | CalleeFlexibleAccessPath | x.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:110:17:110:45 | /<scrip ... ipt>/gi | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:110:17:110:45 | /<scrip ... ipt>/gi | contextFunctionInterfaces |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:110:17:110:45 | /<scrip ... ipt>/gi | contextSurroundingFunctionParameters | (x) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:110:17:110:45 | /<scrip ... ipt>/gi | enclosingFunctionBody | x x x replace /<script\\b[^<]*(?:(?!<\\/script>)<[^<]*)*<\\/script>/g  x x replace /(\\/\|\\s)on\\w+=(\\'\|")?[^"]*(\\'\|")?/g  x x replace /<\\/script>/g  x x replace /<(.)?br(.)?>/g  x x replace /<\\/?b>/g  x x replace /<(ul\|ol)><\\/(ul\|ol)>/gi  x x replace /<li><\\/li>/gi  x x replace /<!--(.*?)-->/gm  x x replace /\\sng-[a-z-]+/  x x replace /\\sng-[a-z-]+/g  x x replace /(<!--\\[CDATA\\[\|\\]\\]-->)/g \n x x replace /<script.+desktop\\-only.+<\\/script>/g  x x replace /<script async.+?<\\/script>/g  x x replace /<!--[\\s\\S]*?-->\|<\\?(?:php)?[\\s\\S]*?\\?>/gi  x x replace /\\x2E\\x2E\\x2F\\x2E\\x2E\\x2F/g  x x replace /<script.*>.*<\\/script>/gi  x x replace /^(\\.\\.\\/?)+/g  x x replace /<script\\b[^<]*(?:(?!<\\/script>)<[^<]*)*<\\/script>/g $0 unknown $0  x x replace /<\\/?([a-z][a-z0-9]*)\\b[^>]*>/gi  x x replace /\\.\\./g  x x replace /\\.\\.\\//g  x x replace /\\/\\.\\./g  x x replace /<script(.*?)>([\\s\\S]*?)<\\/script>/gi  x x replace /<(script\|del)(?=[\\s>])[\\w\\W]*?<\\/\\1\\s*>/gi  x x replace /\\<script[\\s\\S]*?\\>[\\s\\S]*?\\<\\/script\\>/g  x x replace /<(script\|style\|title)[^<]+<\\/(script\|style\|title)>/gm  x x replace /<script[^>]*>([\\s\\S]*?)<\\/script>/gi  x x replace /<script[\\s\\S]*?<\\/script>/gi  x x replace / ?<!-- ?/g  x x replace /require\\('\\.\\.\\/common'\\);/g  x x replace /\\.\\.\\/\\.\\.\\/lib\\//g  x indexOf . 1 x x replace /^\\.\\//  replace /\\/\\.\\// / replace /[^\\/]*\\/\\.\\.\\//  x x replace /([^.\\s]+\\.)+/  x x replace /<!\\-\\-DEVEL[\\d\\D]*?DEVEL\\-\\->/g  x x replace /^\\.\\//  replace /\\/\\.\\// / replace /[^\\/]*\\/\\.\\.\\//  x |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:110:17:110:45 | /<scrip ... ipt>/gi | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:110:17:110:45 | /<scrip ... ipt>/gi | fileImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:110:17:110:45 | /<scrip ... ipt>/gi | receiverName | x |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:110:48:110:49 | "" | CalleeFlexibleAccessPath | x.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:110:48:110:49 | "" | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:110:48:110:49 | "" | contextFunctionInterfaces |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:110:48:110:49 | "" | contextSurroundingFunctionParameters | (x) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:110:48:110:49 | "" | enclosingFunctionBody | x x x replace /<script\\b[^<]*(?:(?!<\\/script>)<[^<]*)*<\\/script>/g  x x replace /(\\/\|\\s)on\\w+=(\\'\|")?[^"]*(\\'\|")?/g  x x replace /<\\/script>/g  x x replace /<(.)?br(.)?>/g  x x replace /<\\/?b>/g  x x replace /<(ul\|ol)><\\/(ul\|ol)>/gi  x x replace /<li><\\/li>/gi  x x replace /<!--(.*?)-->/gm  x x replace /\\sng-[a-z-]+/  x x replace /\\sng-[a-z-]+/g  x x replace /(<!--\\[CDATA\\[\|\\]\\]-->)/g \n x x replace /<script.+desktop\\-only.+<\\/script>/g  x x replace /<script async.+?<\\/script>/g  x x replace /<!--[\\s\\S]*?-->\|<\\?(?:php)?[\\s\\S]*?\\?>/gi  x x replace /\\x2E\\x2E\\x2F\\x2E\\x2E\\x2F/g  x x replace /<script.*>.*<\\/script>/gi  x x replace /^(\\.\\.\\/?)+/g  x x replace /<script\\b[^<]*(?:(?!<\\/script>)<[^<]*)*<\\/script>/g $0 unknown $0  x x replace /<\\/?([a-z][a-z0-9]*)\\b[^>]*>/gi  x x replace /\\.\\./g  x x replace /\\.\\.\\//g  x x replace /\\/\\.\\./g  x x replace /<script(.*?)>([\\s\\S]*?)<\\/script>/gi  x x replace /<(script\|del)(?=[\\s>])[\\w\\W]*?<\\/\\1\\s*>/gi  x x replace /\\<script[\\s\\S]*?\\>[\\s\\S]*?\\<\\/script\\>/g  x x replace /<(script\|style\|title)[^<]+<\\/(script\|style\|title)>/gm  x x replace /<script[^>]*>([\\s\\S]*?)<\\/script>/gi  x x replace /<script[\\s\\S]*?<\\/script>/gi  x x replace / ?<!-- ?/g  x x replace /require\\('\\.\\.\\/common'\\);/g  x x replace /\\.\\.\\/\\.\\.\\/lib\\//g  x indexOf . 1 x x replace /^\\.\\//  replace /\\/\\.\\// / replace /[^\\/]*\\/\\.\\.\\//  x x replace /([^.\\s]+\\.)+/  x x replace /<!\\-\\-DEVEL[\\d\\D]*?DEVEL\\-\\->/g  x x replace /^\\.\\//  replace /\\/\\.\\// / replace /[^\\/]*\\/\\.\\.\\//  x |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:110:48:110:49 | "" | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:110:48:110:49 | "" | fileImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:110:48:110:49 | "" | receiverName | x |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:111:17:111:27 | / ?<!-- ?/g | CalleeFlexibleAccessPath | x.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:111:17:111:27 | / ?<!-- ?/g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:111:17:111:27 | / ?<!-- ?/g | contextFunctionInterfaces |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:111:17:111:27 | / ?<!-- ?/g | contextSurroundingFunctionParameters | (x) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:111:17:111:27 | / ?<!-- ?/g | enclosingFunctionBody | x x x replace /<script\\b[^<]*(?:(?!<\\/script>)<[^<]*)*<\\/script>/g  x x replace /(\\/\|\\s)on\\w+=(\\'\|")?[^"]*(\\'\|")?/g  x x replace /<\\/script>/g  x x replace /<(.)?br(.)?>/g  x x replace /<\\/?b>/g  x x replace /<(ul\|ol)><\\/(ul\|ol)>/gi  x x replace /<li><\\/li>/gi  x x replace /<!--(.*?)-->/gm  x x replace /\\sng-[a-z-]+/  x x replace /\\sng-[a-z-]+/g  x x replace /(<!--\\[CDATA\\[\|\\]\\]-->)/g \n x x replace /<script.+desktop\\-only.+<\\/script>/g  x x replace /<script async.+?<\\/script>/g  x x replace /<!--[\\s\\S]*?-->\|<\\?(?:php)?[\\s\\S]*?\\?>/gi  x x replace /\\x2E\\x2E\\x2F\\x2E\\x2E\\x2F/g  x x replace /<script.*>.*<\\/script>/gi  x x replace /^(\\.\\.\\/?)+/g  x x replace /<script\\b[^<]*(?:(?!<\\/script>)<[^<]*)*<\\/script>/g $0 unknown $0  x x replace /<\\/?([a-z][a-z0-9]*)\\b[^>]*>/gi  x x replace /\\.\\./g  x x replace /\\.\\.\\//g  x x replace /\\/\\.\\./g  x x replace /<script(.*?)>([\\s\\S]*?)<\\/script>/gi  x x replace /<(script\|del)(?=[\\s>])[\\w\\W]*?<\\/\\1\\s*>/gi  x x replace /\\<script[\\s\\S]*?\\>[\\s\\S]*?\\<\\/script\\>/g  x x replace /<(script\|style\|title)[^<]+<\\/(script\|style\|title)>/gm  x x replace /<script[^>]*>([\\s\\S]*?)<\\/script>/gi  x x replace /<script[\\s\\S]*?<\\/script>/gi  x x replace / ?<!-- ?/g  x x replace /require\\('\\.\\.\\/common'\\);/g  x x replace /\\.\\.\\/\\.\\.\\/lib\\//g  x indexOf . 1 x x replace /^\\.\\//  replace /\\/\\.\\// / replace /[^\\/]*\\/\\.\\.\\//  x x replace /([^.\\s]+\\.)+/  x x replace /<!\\-\\-DEVEL[\\d\\D]*?DEVEL\\-\\->/g  x x replace /^\\.\\//  replace /\\/\\.\\// / replace /[^\\/]*\\/\\.\\.\\//  x |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:111:17:111:27 | / ?<!-- ?/g | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:111:17:111:27 | / ?<!-- ?/g | fileImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:111:17:111:27 | / ?<!-- ?/g | receiverName | x |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:111:30:111:31 | "" | CalleeFlexibleAccessPath | x.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:111:30:111:31 | "" | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:111:30:111:31 | "" | contextFunctionInterfaces |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:111:30:111:31 | "" | contextSurroundingFunctionParameters | (x) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:111:30:111:31 | "" | enclosingFunctionBody | x x x replace /<script\\b[^<]*(?:(?!<\\/script>)<[^<]*)*<\\/script>/g  x x replace /(\\/\|\\s)on\\w+=(\\'\|")?[^"]*(\\'\|")?/g  x x replace /<\\/script>/g  x x replace /<(.)?br(.)?>/g  x x replace /<\\/?b>/g  x x replace /<(ul\|ol)><\\/(ul\|ol)>/gi  x x replace /<li><\\/li>/gi  x x replace /<!--(.*?)-->/gm  x x replace /\\sng-[a-z-]+/  x x replace /\\sng-[a-z-]+/g  x x replace /(<!--\\[CDATA\\[\|\\]\\]-->)/g \n x x replace /<script.+desktop\\-only.+<\\/script>/g  x x replace /<script async.+?<\\/script>/g  x x replace /<!--[\\s\\S]*?-->\|<\\?(?:php)?[\\s\\S]*?\\?>/gi  x x replace /\\x2E\\x2E\\x2F\\x2E\\x2E\\x2F/g  x x replace /<script.*>.*<\\/script>/gi  x x replace /^(\\.\\.\\/?)+/g  x x replace /<script\\b[^<]*(?:(?!<\\/script>)<[^<]*)*<\\/script>/g $0 unknown $0  x x replace /<\\/?([a-z][a-z0-9]*)\\b[^>]*>/gi  x x replace /\\.\\./g  x x replace /\\.\\.\\//g  x x replace /\\/\\.\\./g  x x replace /<script(.*?)>([\\s\\S]*?)<\\/script>/gi  x x replace /<(script\|del)(?=[\\s>])[\\w\\W]*?<\\/\\1\\s*>/gi  x x replace /\\<script[\\s\\S]*?\\>[\\s\\S]*?\\<\\/script\\>/g  x x replace /<(script\|style\|title)[^<]+<\\/(script\|style\|title)>/gm  x x replace /<script[^>]*>([\\s\\S]*?)<\\/script>/gi  x x replace /<script[\\s\\S]*?<\\/script>/gi  x x replace / ?<!-- ?/g  x x replace /require\\('\\.\\.\\/common'\\);/g  x x replace /\\.\\.\\/\\.\\.\\/lib\\//g  x indexOf . 1 x x replace /^\\.\\//  replace /\\/\\.\\// / replace /[^\\/]*\\/\\.\\.\\//  x x replace /([^.\\s]+\\.)+/  x x replace /<!\\-\\-DEVEL[\\d\\D]*?DEVEL\\-\\->/g  x x replace /^\\.\\//  replace /\\/\\.\\// / replace /[^\\/]*\\/\\.\\.\\//  x |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:111:30:111:31 | "" | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:111:30:111:31 | "" | fileImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:111:30:111:31 | "" | receiverName | x |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:112:17:112:45 | /requir ... n'\\);/g | CalleeFlexibleAccessPath | x.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:112:17:112:45 | /requir ... n'\\);/g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:112:17:112:45 | /requir ... n'\\);/g | contextFunctionInterfaces |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:112:17:112:45 | /requir ... n'\\);/g | contextSurroundingFunctionParameters | (x) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:112:17:112:45 | /requir ... n'\\);/g | enclosingFunctionBody | x x x replace /<script\\b[^<]*(?:(?!<\\/script>)<[^<]*)*<\\/script>/g  x x replace /(\\/\|\\s)on\\w+=(\\'\|")?[^"]*(\\'\|")?/g  x x replace /<\\/script>/g  x x replace /<(.)?br(.)?>/g  x x replace /<\\/?b>/g  x x replace /<(ul\|ol)><\\/(ul\|ol)>/gi  x x replace /<li><\\/li>/gi  x x replace /<!--(.*?)-->/gm  x x replace /\\sng-[a-z-]+/  x x replace /\\sng-[a-z-]+/g  x x replace /(<!--\\[CDATA\\[\|\\]\\]-->)/g \n x x replace /<script.+desktop\\-only.+<\\/script>/g  x x replace /<script async.+?<\\/script>/g  x x replace /<!--[\\s\\S]*?-->\|<\\?(?:php)?[\\s\\S]*?\\?>/gi  x x replace /\\x2E\\x2E\\x2F\\x2E\\x2E\\x2F/g  x x replace /<script.*>.*<\\/script>/gi  x x replace /^(\\.\\.\\/?)+/g  x x replace /<script\\b[^<]*(?:(?!<\\/script>)<[^<]*)*<\\/script>/g $0 unknown $0  x x replace /<\\/?([a-z][a-z0-9]*)\\b[^>]*>/gi  x x replace /\\.\\./g  x x replace /\\.\\.\\//g  x x replace /\\/\\.\\./g  x x replace /<script(.*?)>([\\s\\S]*?)<\\/script>/gi  x x replace /<(script\|del)(?=[\\s>])[\\w\\W]*?<\\/\\1\\s*>/gi  x x replace /\\<script[\\s\\S]*?\\>[\\s\\S]*?\\<\\/script\\>/g  x x replace /<(script\|style\|title)[^<]+<\\/(script\|style\|title)>/gm  x x replace /<script[^>]*>([\\s\\S]*?)<\\/script>/gi  x x replace /<script[\\s\\S]*?<\\/script>/gi  x x replace / ?<!-- ?/g  x x replace /require\\('\\.\\.\\/common'\\);/g  x x replace /\\.\\.\\/\\.\\.\\/lib\\//g  x indexOf . 1 x x replace /^\\.\\//  replace /\\/\\.\\// / replace /[^\\/]*\\/\\.\\.\\//  x x replace /([^.\\s]+\\.)+/  x x replace /<!\\-\\-DEVEL[\\d\\D]*?DEVEL\\-\\->/g  x x replace /^\\.\\//  replace /\\/\\.\\// / replace /[^\\/]*\\/\\.\\.\\//  x |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:112:17:112:45 | /requir ... n'\\);/g | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:112:17:112:45 | /requir ... n'\\);/g | fileImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:112:17:112:45 | /requir ... n'\\);/g | receiverName | x |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:112:48:112:49 | "" | CalleeFlexibleAccessPath | x.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:112:48:112:49 | "" | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:112:48:112:49 | "" | contextFunctionInterfaces |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:112:48:112:49 | "" | contextSurroundingFunctionParameters | (x) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:112:48:112:49 | "" | enclosingFunctionBody | x x x replace /<script\\b[^<]*(?:(?!<\\/script>)<[^<]*)*<\\/script>/g  x x replace /(\\/\|\\s)on\\w+=(\\'\|")?[^"]*(\\'\|")?/g  x x replace /<\\/script>/g  x x replace /<(.)?br(.)?>/g  x x replace /<\\/?b>/g  x x replace /<(ul\|ol)><\\/(ul\|ol)>/gi  x x replace /<li><\\/li>/gi  x x replace /<!--(.*?)-->/gm  x x replace /\\sng-[a-z-]+/  x x replace /\\sng-[a-z-]+/g  x x replace /(<!--\\[CDATA\\[\|\\]\\]-->)/g \n x x replace /<script.+desktop\\-only.+<\\/script>/g  x x replace /<script async.+?<\\/script>/g  x x replace /<!--[\\s\\S]*?-->\|<\\?(?:php)?[\\s\\S]*?\\?>/gi  x x replace /\\x2E\\x2E\\x2F\\x2E\\x2E\\x2F/g  x x replace /<script.*>.*<\\/script>/gi  x x replace /^(\\.\\.\\/?)+/g  x x replace /<script\\b[^<]*(?:(?!<\\/script>)<[^<]*)*<\\/script>/g $0 unknown $0  x x replace /<\\/?([a-z][a-z0-9]*)\\b[^>]*>/gi  x x replace /\\.\\./g  x x replace /\\.\\.\\//g  x x replace /\\/\\.\\./g  x x replace /<script(.*?)>([\\s\\S]*?)<\\/script>/gi  x x replace /<(script\|del)(?=[\\s>])[\\w\\W]*?<\\/\\1\\s*>/gi  x x replace /\\<script[\\s\\S]*?\\>[\\s\\S]*?\\<\\/script\\>/g  x x replace /<(script\|style\|title)[^<]+<\\/(script\|style\|title)>/gm  x x replace /<script[^>]*>([\\s\\S]*?)<\\/script>/gi  x x replace /<script[\\s\\S]*?<\\/script>/gi  x x replace / ?<!-- ?/g  x x replace /require\\('\\.\\.\\/common'\\);/g  x x replace /\\.\\.\\/\\.\\.\\/lib\\//g  x indexOf . 1 x x replace /^\\.\\//  replace /\\/\\.\\// / replace /[^\\/]*\\/\\.\\.\\//  x x replace /([^.\\s]+\\.)+/  x x replace /<!\\-\\-DEVEL[\\d\\D]*?DEVEL\\-\\->/g  x x replace /^\\.\\//  replace /\\/\\.\\// / replace /[^\\/]*\\/\\.\\.\\//  x |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:112:48:112:49 | "" | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:112:48:112:49 | "" | fileImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:112:48:112:49 | "" | receiverName | x |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:113:17:113:36 | /\\.\\.\\/\\.\\.\\/lib\\//g | CalleeFlexibleAccessPath | x.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:113:17:113:36 | /\\.\\.\\/\\.\\.\\/lib\\//g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:113:17:113:36 | /\\.\\.\\/\\.\\.\\/lib\\//g | contextFunctionInterfaces |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:113:17:113:36 | /\\.\\.\\/\\.\\.\\/lib\\//g | contextSurroundingFunctionParameters | (x) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:113:17:113:36 | /\\.\\.\\/\\.\\.\\/lib\\//g | enclosingFunctionBody | x x x replace /<script\\b[^<]*(?:(?!<\\/script>)<[^<]*)*<\\/script>/g  x x replace /(\\/\|\\s)on\\w+=(\\'\|")?[^"]*(\\'\|")?/g  x x replace /<\\/script>/g  x x replace /<(.)?br(.)?>/g  x x replace /<\\/?b>/g  x x replace /<(ul\|ol)><\\/(ul\|ol)>/gi  x x replace /<li><\\/li>/gi  x x replace /<!--(.*?)-->/gm  x x replace /\\sng-[a-z-]+/  x x replace /\\sng-[a-z-]+/g  x x replace /(<!--\\[CDATA\\[\|\\]\\]-->)/g \n x x replace /<script.+desktop\\-only.+<\\/script>/g  x x replace /<script async.+?<\\/script>/g  x x replace /<!--[\\s\\S]*?-->\|<\\?(?:php)?[\\s\\S]*?\\?>/gi  x x replace /\\x2E\\x2E\\x2F\\x2E\\x2E\\x2F/g  x x replace /<script.*>.*<\\/script>/gi  x x replace /^(\\.\\.\\/?)+/g  x x replace /<script\\b[^<]*(?:(?!<\\/script>)<[^<]*)*<\\/script>/g $0 unknown $0  x x replace /<\\/?([a-z][a-z0-9]*)\\b[^>]*>/gi  x x replace /\\.\\./g  x x replace /\\.\\.\\//g  x x replace /\\/\\.\\./g  x x replace /<script(.*?)>([\\s\\S]*?)<\\/script>/gi  x x replace /<(script\|del)(?=[\\s>])[\\w\\W]*?<\\/\\1\\s*>/gi  x x replace /\\<script[\\s\\S]*?\\>[\\s\\S]*?\\<\\/script\\>/g  x x replace /<(script\|style\|title)[^<]+<\\/(script\|style\|title)>/gm  x x replace /<script[^>]*>([\\s\\S]*?)<\\/script>/gi  x x replace /<script[\\s\\S]*?<\\/script>/gi  x x replace / ?<!-- ?/g  x x replace /require\\('\\.\\.\\/common'\\);/g  x x replace /\\.\\.\\/\\.\\.\\/lib\\//g  x indexOf . 1 x x replace /^\\.\\//  replace /\\/\\.\\// / replace /[^\\/]*\\/\\.\\.\\//  x x replace /([^.\\s]+\\.)+/  x x replace /<!\\-\\-DEVEL[\\d\\D]*?DEVEL\\-\\->/g  x x replace /^\\.\\//  replace /\\/\\.\\// / replace /[^\\/]*\\/\\.\\.\\//  x |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:113:17:113:36 | /\\.\\.\\/\\.\\.\\/lib\\//g | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:113:17:113:36 | /\\.\\.\\/\\.\\.\\/lib\\//g | fileImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:113:17:113:36 | /\\.\\.\\/\\.\\.\\/lib\\//g | receiverName | x |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:113:39:113:40 | "" | CalleeFlexibleAccessPath | x.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:113:39:113:40 | "" | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:113:39:113:40 | "" | contextFunctionInterfaces |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:113:39:113:40 | "" | contextSurroundingFunctionParameters | (x) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:113:39:113:40 | "" | enclosingFunctionBody | x x x replace /<script\\b[^<]*(?:(?!<\\/script>)<[^<]*)*<\\/script>/g  x x replace /(\\/\|\\s)on\\w+=(\\'\|")?[^"]*(\\'\|")?/g  x x replace /<\\/script>/g  x x replace /<(.)?br(.)?>/g  x x replace /<\\/?b>/g  x x replace /<(ul\|ol)><\\/(ul\|ol)>/gi  x x replace /<li><\\/li>/gi  x x replace /<!--(.*?)-->/gm  x x replace /\\sng-[a-z-]+/  x x replace /\\sng-[a-z-]+/g  x x replace /(<!--\\[CDATA\\[\|\\]\\]-->)/g \n x x replace /<script.+desktop\\-only.+<\\/script>/g  x x replace /<script async.+?<\\/script>/g  x x replace /<!--[\\s\\S]*?-->\|<\\?(?:php)?[\\s\\S]*?\\?>/gi  x x replace /\\x2E\\x2E\\x2F\\x2E\\x2E\\x2F/g  x x replace /<script.*>.*<\\/script>/gi  x x replace /^(\\.\\.\\/?)+/g  x x replace /<script\\b[^<]*(?:(?!<\\/script>)<[^<]*)*<\\/script>/g $0 unknown $0  x x replace /<\\/?([a-z][a-z0-9]*)\\b[^>]*>/gi  x x replace /\\.\\./g  x x replace /\\.\\.\\//g  x x replace /\\/\\.\\./g  x x replace /<script(.*?)>([\\s\\S]*?)<\\/script>/gi  x x replace /<(script\|del)(?=[\\s>])[\\w\\W]*?<\\/\\1\\s*>/gi  x x replace /\\<script[\\s\\S]*?\\>[\\s\\S]*?\\<\\/script\\>/g  x x replace /<(script\|style\|title)[^<]+<\\/(script\|style\|title)>/gm  x x replace /<script[^>]*>([\\s\\S]*?)<\\/script>/gi  x x replace /<script[\\s\\S]*?<\\/script>/gi  x x replace / ?<!-- ?/g  x x replace /require\\('\\.\\.\\/common'\\);/g  x x replace /\\.\\.\\/\\.\\.\\/lib\\//g  x indexOf . 1 x x replace /^\\.\\//  replace /\\/\\.\\// / replace /[^\\/]*\\/\\.\\.\\//  x x replace /([^.\\s]+\\.)+/  x x replace /<!\\-\\-DEVEL[\\d\\D]*?DEVEL\\-\\->/g  x x replace /^\\.\\//  replace /\\/\\.\\// / replace /[^\\/]*\\/\\.\\.\\//  x |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:113:39:113:40 | "" | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:113:39:113:40 | "" | fileImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:113:39:113:40 | "" | receiverName | x |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:115:20:115:22 | "." | CalleeFlexibleAccessPath | x.indexOf |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:115:20:115:22 | "." | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:115:20:115:22 | "." | contextFunctionInterfaces |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:115:20:115:22 | "." | contextSurroundingFunctionParameters | (x) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:115:20:115:22 | "." | enclosingFunctionBody | x x x replace /<script\\b[^<]*(?:(?!<\\/script>)<[^<]*)*<\\/script>/g  x x replace /(\\/\|\\s)on\\w+=(\\'\|")?[^"]*(\\'\|")?/g  x x replace /<\\/script>/g  x x replace /<(.)?br(.)?>/g  x x replace /<\\/?b>/g  x x replace /<(ul\|ol)><\\/(ul\|ol)>/gi  x x replace /<li><\\/li>/gi  x x replace /<!--(.*?)-->/gm  x x replace /\\sng-[a-z-]+/  x x replace /\\sng-[a-z-]+/g  x x replace /(<!--\\[CDATA\\[\|\\]\\]-->)/g \n x x replace /<script.+desktop\\-only.+<\\/script>/g  x x replace /<script async.+?<\\/script>/g  x x replace /<!--[\\s\\S]*?-->\|<\\?(?:php)?[\\s\\S]*?\\?>/gi  x x replace /\\x2E\\x2E\\x2F\\x2E\\x2E\\x2F/g  x x replace /<script.*>.*<\\/script>/gi  x x replace /^(\\.\\.\\/?)+/g  x x replace /<script\\b[^<]*(?:(?!<\\/script>)<[^<]*)*<\\/script>/g $0 unknown $0  x x replace /<\\/?([a-z][a-z0-9]*)\\b[^>]*>/gi  x x replace /\\.\\./g  x x replace /\\.\\.\\//g  x x replace /\\/\\.\\./g  x x replace /<script(.*?)>([\\s\\S]*?)<\\/script>/gi  x x replace /<(script\|del)(?=[\\s>])[\\w\\W]*?<\\/\\1\\s*>/gi  x x replace /\\<script[\\s\\S]*?\\>[\\s\\S]*?\\<\\/script\\>/g  x x replace /<(script\|style\|title)[^<]+<\\/(script\|style\|title)>/gm  x x replace /<script[^>]*>([\\s\\S]*?)<\\/script>/gi  x x replace /<script[\\s\\S]*?<\\/script>/gi  x x replace / ?<!-- ?/g  x x replace /require\\('\\.\\.\\/common'\\);/g  x x replace /\\.\\.\\/\\.\\.\\/lib\\//g  x indexOf . 1 x x replace /^\\.\\//  replace /\\/\\.\\// / replace /[^\\/]*\\/\\.\\.\\//  x x replace /([^.\\s]+\\.)+/  x x replace /<!\\-\\-DEVEL[\\d\\D]*?DEVEL\\-\\->/g  x x replace /^\\.\\//  replace /\\/\\.\\// / replace /[^\\/]*\\/\\.\\.\\//  x |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:115:20:115:22 | "." | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:115:20:115:22 | "." | fileImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:115:20:115:22 | "." | receiverName | x |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:117:16:117:22 | /^\\.\\// | CalleeFlexibleAccessPath | x.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:117:16:117:22 | /^\\.\\// | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:117:16:117:22 | /^\\.\\// | contextFunctionInterfaces |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:117:16:117:22 | /^\\.\\// | contextSurroundingFunctionParameters | (x) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:117:16:117:22 | /^\\.\\// | enclosingFunctionBody | x x x replace /<script\\b[^<]*(?:(?!<\\/script>)<[^<]*)*<\\/script>/g  x x replace /(\\/\|\\s)on\\w+=(\\'\|")?[^"]*(\\'\|")?/g  x x replace /<\\/script>/g  x x replace /<(.)?br(.)?>/g  x x replace /<\\/?b>/g  x x replace /<(ul\|ol)><\\/(ul\|ol)>/gi  x x replace /<li><\\/li>/gi  x x replace /<!--(.*?)-->/gm  x x replace /\\sng-[a-z-]+/  x x replace /\\sng-[a-z-]+/g  x x replace /(<!--\\[CDATA\\[\|\\]\\]-->)/g \n x x replace /<script.+desktop\\-only.+<\\/script>/g  x x replace /<script async.+?<\\/script>/g  x x replace /<!--[\\s\\S]*?-->\|<\\?(?:php)?[\\s\\S]*?\\?>/gi  x x replace /\\x2E\\x2E\\x2F\\x2E\\x2E\\x2F/g  x x replace /<script.*>.*<\\/script>/gi  x x replace /^(\\.\\.\\/?)+/g  x x replace /<script\\b[^<]*(?:(?!<\\/script>)<[^<]*)*<\\/script>/g $0 unknown $0  x x replace /<\\/?([a-z][a-z0-9]*)\\b[^>]*>/gi  x x replace /\\.\\./g  x x replace /\\.\\.\\//g  x x replace /\\/\\.\\./g  x x replace /<script(.*?)>([\\s\\S]*?)<\\/script>/gi  x x replace /<(script\|del)(?=[\\s>])[\\w\\W]*?<\\/\\1\\s*>/gi  x x replace /\\<script[\\s\\S]*?\\>[\\s\\S]*?\\<\\/script\\>/g  x x replace /<(script\|style\|title)[^<]+<\\/(script\|style\|title)>/gm  x x replace /<script[^>]*>([\\s\\S]*?)<\\/script>/gi  x x replace /<script[\\s\\S]*?<\\/script>/gi  x x replace / ?<!-- ?/g  x x replace /require\\('\\.\\.\\/common'\\);/g  x x replace /\\.\\.\\/\\.\\.\\/lib\\//g  x indexOf . 1 x x replace /^\\.\\//  replace /\\/\\.\\// / replace /[^\\/]*\\/\\.\\.\\//  x x replace /([^.\\s]+\\.)+/  x x replace /<!\\-\\-DEVEL[\\d\\D]*?DEVEL\\-\\->/g  x x replace /^\\.\\//  replace /\\/\\.\\// / replace /[^\\/]*\\/\\.\\.\\//  x |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:117:16:117:22 | /^\\.\\// | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:117:16:117:22 | /^\\.\\// | fileImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:117:16:117:22 | /^\\.\\// | receiverName | x |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:117:25:117:26 | "" | CalleeFlexibleAccessPath | x.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:117:25:117:26 | "" | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:117:25:117:26 | "" | contextFunctionInterfaces |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:117:25:117:26 | "" | contextSurroundingFunctionParameters | (x) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:117:25:117:26 | "" | enclosingFunctionBody | x x x replace /<script\\b[^<]*(?:(?!<\\/script>)<[^<]*)*<\\/script>/g  x x replace /(\\/\|\\s)on\\w+=(\\'\|")?[^"]*(\\'\|")?/g  x x replace /<\\/script>/g  x x replace /<(.)?br(.)?>/g  x x replace /<\\/?b>/g  x x replace /<(ul\|ol)><\\/(ul\|ol)>/gi  x x replace /<li><\\/li>/gi  x x replace /<!--(.*?)-->/gm  x x replace /\\sng-[a-z-]+/  x x replace /\\sng-[a-z-]+/g  x x replace /(<!--\\[CDATA\\[\|\\]\\]-->)/g \n x x replace /<script.+desktop\\-only.+<\\/script>/g  x x replace /<script async.+?<\\/script>/g  x x replace /<!--[\\s\\S]*?-->\|<\\?(?:php)?[\\s\\S]*?\\?>/gi  x x replace /\\x2E\\x2E\\x2F\\x2E\\x2E\\x2F/g  x x replace /<script.*>.*<\\/script>/gi  x x replace /^(\\.\\.\\/?)+/g  x x replace /<script\\b[^<]*(?:(?!<\\/script>)<[^<]*)*<\\/script>/g $0 unknown $0  x x replace /<\\/?([a-z][a-z0-9]*)\\b[^>]*>/gi  x x replace /\\.\\./g  x x replace /\\.\\.\\//g  x x replace /\\/\\.\\./g  x x replace /<script(.*?)>([\\s\\S]*?)<\\/script>/gi  x x replace /<(script\|del)(?=[\\s>])[\\w\\W]*?<\\/\\1\\s*>/gi  x x replace /\\<script[\\s\\S]*?\\>[\\s\\S]*?\\<\\/script\\>/g  x x replace /<(script\|style\|title)[^<]+<\\/(script\|style\|title)>/gm  x x replace /<script[^>]*>([\\s\\S]*?)<\\/script>/gi  x x replace /<script[\\s\\S]*?<\\/script>/gi  x x replace / ?<!-- ?/g  x x replace /require\\('\\.\\.\\/common'\\);/g  x x replace /\\.\\.\\/\\.\\.\\/lib\\//g  x indexOf . 1 x x replace /^\\.\\//  replace /\\/\\.\\// / replace /[^\\/]*\\/\\.\\.\\//  x x replace /([^.\\s]+\\.)+/  x x replace /<!\\-\\-DEVEL[\\d\\D]*?DEVEL\\-\\->/g  x x replace /^\\.\\//  replace /\\/\\.\\// / replace /[^\\/]*\\/\\.\\.\\//  x |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:117:25:117:26 | "" | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:117:25:117:26 | "" | fileImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:117:25:117:26 | "" | receiverName | x |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:118:16:118:23 | /\\/\\.\\// | CalleeFlexibleAccessPath | x.replace().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:118:16:118:23 | /\\/\\.\\// | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:118:16:118:23 | /\\/\\.\\// | contextFunctionInterfaces |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:118:16:118:23 | /\\/\\.\\// | contextSurroundingFunctionParameters | (x) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:118:16:118:23 | /\\/\\.\\// | enclosingFunctionBody | x x x replace /<script\\b[^<]*(?:(?!<\\/script>)<[^<]*)*<\\/script>/g  x x replace /(\\/\|\\s)on\\w+=(\\'\|")?[^"]*(\\'\|")?/g  x x replace /<\\/script>/g  x x replace /<(.)?br(.)?>/g  x x replace /<\\/?b>/g  x x replace /<(ul\|ol)><\\/(ul\|ol)>/gi  x x replace /<li><\\/li>/gi  x x replace /<!--(.*?)-->/gm  x x replace /\\sng-[a-z-]+/  x x replace /\\sng-[a-z-]+/g  x x replace /(<!--\\[CDATA\\[\|\\]\\]-->)/g \n x x replace /<script.+desktop\\-only.+<\\/script>/g  x x replace /<script async.+?<\\/script>/g  x x replace /<!--[\\s\\S]*?-->\|<\\?(?:php)?[\\s\\S]*?\\?>/gi  x x replace /\\x2E\\x2E\\x2F\\x2E\\x2E\\x2F/g  x x replace /<script.*>.*<\\/script>/gi  x x replace /^(\\.\\.\\/?)+/g  x x replace /<script\\b[^<]*(?:(?!<\\/script>)<[^<]*)*<\\/script>/g $0 unknown $0  x x replace /<\\/?([a-z][a-z0-9]*)\\b[^>]*>/gi  x x replace /\\.\\./g  x x replace /\\.\\.\\//g  x x replace /\\/\\.\\./g  x x replace /<script(.*?)>([\\s\\S]*?)<\\/script>/gi  x x replace /<(script\|del)(?=[\\s>])[\\w\\W]*?<\\/\\1\\s*>/gi  x x replace /\\<script[\\s\\S]*?\\>[\\s\\S]*?\\<\\/script\\>/g  x x replace /<(script\|style\|title)[^<]+<\\/(script\|style\|title)>/gm  x x replace /<script[^>]*>([\\s\\S]*?)<\\/script>/gi  x x replace /<script[\\s\\S]*?<\\/script>/gi  x x replace / ?<!-- ?/g  x x replace /require\\('\\.\\.\\/common'\\);/g  x x replace /\\.\\.\\/\\.\\.\\/lib\\//g  x indexOf . 1 x x replace /^\\.\\//  replace /\\/\\.\\// / replace /[^\\/]*\\/\\.\\.\\//  x x replace /([^.\\s]+\\.)+/  x x replace /<!\\-\\-DEVEL[\\d\\D]*?DEVEL\\-\\->/g  x x replace /^\\.\\//  replace /\\/\\.\\// / replace /[^\\/]*\\/\\.\\.\\//  x |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:118:16:118:23 | /\\/\\.\\// | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:118:16:118:23 | /\\/\\.\\// | fileImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:118:26:118:28 | "/" | CalleeFlexibleAccessPath | x.replace().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:118:26:118:28 | "/" | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:118:26:118:28 | "/" | contextFunctionInterfaces |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:118:26:118:28 | "/" | contextSurroundingFunctionParameters | (x) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:118:26:118:28 | "/" | enclosingFunctionBody | x x x replace /<script\\b[^<]*(?:(?!<\\/script>)<[^<]*)*<\\/script>/g  x x replace /(\\/\|\\s)on\\w+=(\\'\|")?[^"]*(\\'\|")?/g  x x replace /<\\/script>/g  x x replace /<(.)?br(.)?>/g  x x replace /<\\/?b>/g  x x replace /<(ul\|ol)><\\/(ul\|ol)>/gi  x x replace /<li><\\/li>/gi  x x replace /<!--(.*?)-->/gm  x x replace /\\sng-[a-z-]+/  x x replace /\\sng-[a-z-]+/g  x x replace /(<!--\\[CDATA\\[\|\\]\\]-->)/g \n x x replace /<script.+desktop\\-only.+<\\/script>/g  x x replace /<script async.+?<\\/script>/g  x x replace /<!--[\\s\\S]*?-->\|<\\?(?:php)?[\\s\\S]*?\\?>/gi  x x replace /\\x2E\\x2E\\x2F\\x2E\\x2E\\x2F/g  x x replace /<script.*>.*<\\/script>/gi  x x replace /^(\\.\\.\\/?)+/g  x x replace /<script\\b[^<]*(?:(?!<\\/script>)<[^<]*)*<\\/script>/g $0 unknown $0  x x replace /<\\/?([a-z][a-z0-9]*)\\b[^>]*>/gi  x x replace /\\.\\./g  x x replace /\\.\\.\\//g  x x replace /\\/\\.\\./g  x x replace /<script(.*?)>([\\s\\S]*?)<\\/script>/gi  x x replace /<(script\|del)(?=[\\s>])[\\w\\W]*?<\\/\\1\\s*>/gi  x x replace /\\<script[\\s\\S]*?\\>[\\s\\S]*?\\<\\/script\\>/g  x x replace /<(script\|style\|title)[^<]+<\\/(script\|style\|title)>/gm  x x replace /<script[^>]*>([\\s\\S]*?)<\\/script>/gi  x x replace /<script[\\s\\S]*?<\\/script>/gi  x x replace / ?<!-- ?/g  x x replace /require\\('\\.\\.\\/common'\\);/g  x x replace /\\.\\.\\/\\.\\.\\/lib\\//g  x indexOf . 1 x x replace /^\\.\\//  replace /\\/\\.\\// / replace /[^\\/]*\\/\\.\\.\\//  x x replace /([^.\\s]+\\.)+/  x x replace /<!\\-\\-DEVEL[\\d\\D]*?DEVEL\\-\\->/g  x x replace /^\\.\\//  replace /\\/\\.\\// / replace /[^\\/]*\\/\\.\\.\\//  x |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:118:26:118:28 | "/" | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:118:26:118:28 | "/" | fileImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:119:16:119:31 | /[^\\/]*\\/\\.\\.\\// | CalleeFlexibleAccessPath | x.replace().replace().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:119:16:119:31 | /[^\\/]*\\/\\.\\.\\// | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:119:16:119:31 | /[^\\/]*\\/\\.\\.\\// | contextFunctionInterfaces |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:119:16:119:31 | /[^\\/]*\\/\\.\\.\\// | contextSurroundingFunctionParameters | (x) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:119:16:119:31 | /[^\\/]*\\/\\.\\.\\// | enclosingFunctionBody | x x x replace /<script\\b[^<]*(?:(?!<\\/script>)<[^<]*)*<\\/script>/g  x x replace /(\\/\|\\s)on\\w+=(\\'\|")?[^"]*(\\'\|")?/g  x x replace /<\\/script>/g  x x replace /<(.)?br(.)?>/g  x x replace /<\\/?b>/g  x x replace /<(ul\|ol)><\\/(ul\|ol)>/gi  x x replace /<li><\\/li>/gi  x x replace /<!--(.*?)-->/gm  x x replace /\\sng-[a-z-]+/  x x replace /\\sng-[a-z-]+/g  x x replace /(<!--\\[CDATA\\[\|\\]\\]-->)/g \n x x replace /<script.+desktop\\-only.+<\\/script>/g  x x replace /<script async.+?<\\/script>/g  x x replace /<!--[\\s\\S]*?-->\|<\\?(?:php)?[\\s\\S]*?\\?>/gi  x x replace /\\x2E\\x2E\\x2F\\x2E\\x2E\\x2F/g  x x replace /<script.*>.*<\\/script>/gi  x x replace /^(\\.\\.\\/?)+/g  x x replace /<script\\b[^<]*(?:(?!<\\/script>)<[^<]*)*<\\/script>/g $0 unknown $0  x x replace /<\\/?([a-z][a-z0-9]*)\\b[^>]*>/gi  x x replace /\\.\\./g  x x replace /\\.\\.\\//g  x x replace /\\/\\.\\./g  x x replace /<script(.*?)>([\\s\\S]*?)<\\/script>/gi  x x replace /<(script\|del)(?=[\\s>])[\\w\\W]*?<\\/\\1\\s*>/gi  x x replace /\\<script[\\s\\S]*?\\>[\\s\\S]*?\\<\\/script\\>/g  x x replace /<(script\|style\|title)[^<]+<\\/(script\|style\|title)>/gm  x x replace /<script[^>]*>([\\s\\S]*?)<\\/script>/gi  x x replace /<script[\\s\\S]*?<\\/script>/gi  x x replace / ?<!-- ?/g  x x replace /require\\('\\.\\.\\/common'\\);/g  x x replace /\\.\\.\\/\\.\\.\\/lib\\//g  x indexOf . 1 x x replace /^\\.\\//  replace /\\/\\.\\// / replace /[^\\/]*\\/\\.\\.\\//  x x replace /([^.\\s]+\\.)+/  x x replace /<!\\-\\-DEVEL[\\d\\D]*?DEVEL\\-\\->/g  x x replace /^\\.\\//  replace /\\/\\.\\// / replace /[^\\/]*\\/\\.\\.\\//  x |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:119:16:119:31 | /[^\\/]*\\/\\.\\.\\// | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:119:16:119:31 | /[^\\/]*\\/\\.\\.\\// | fileImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:119:34:119:35 | "" | CalleeFlexibleAccessPath | x.replace().replace().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:119:34:119:35 | "" | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:119:34:119:35 | "" | contextFunctionInterfaces |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:119:34:119:35 | "" | contextSurroundingFunctionParameters | (x) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:119:34:119:35 | "" | enclosingFunctionBody | x x x replace /<script\\b[^<]*(?:(?!<\\/script>)<[^<]*)*<\\/script>/g  x x replace /(\\/\|\\s)on\\w+=(\\'\|")?[^"]*(\\'\|")?/g  x x replace /<\\/script>/g  x x replace /<(.)?br(.)?>/g  x x replace /<\\/?b>/g  x x replace /<(ul\|ol)><\\/(ul\|ol)>/gi  x x replace /<li><\\/li>/gi  x x replace /<!--(.*?)-->/gm  x x replace /\\sng-[a-z-]+/  x x replace /\\sng-[a-z-]+/g  x x replace /(<!--\\[CDATA\\[\|\\]\\]-->)/g \n x x replace /<script.+desktop\\-only.+<\\/script>/g  x x replace /<script async.+?<\\/script>/g  x x replace /<!--[\\s\\S]*?-->\|<\\?(?:php)?[\\s\\S]*?\\?>/gi  x x replace /\\x2E\\x2E\\x2F\\x2E\\x2E\\x2F/g  x x replace /<script.*>.*<\\/script>/gi  x x replace /^(\\.\\.\\/?)+/g  x x replace /<script\\b[^<]*(?:(?!<\\/script>)<[^<]*)*<\\/script>/g $0 unknown $0  x x replace /<\\/?([a-z][a-z0-9]*)\\b[^>]*>/gi  x x replace /\\.\\./g  x x replace /\\.\\.\\//g  x x replace /\\/\\.\\./g  x x replace /<script(.*?)>([\\s\\S]*?)<\\/script>/gi  x x replace /<(script\|del)(?=[\\s>])[\\w\\W]*?<\\/\\1\\s*>/gi  x x replace /\\<script[\\s\\S]*?\\>[\\s\\S]*?\\<\\/script\\>/g  x x replace /<(script\|style\|title)[^<]+<\\/(script\|style\|title)>/gm  x x replace /<script[^>]*>([\\s\\S]*?)<\\/script>/gi  x x replace /<script[\\s\\S]*?<\\/script>/gi  x x replace / ?<!-- ?/g  x x replace /require\\('\\.\\.\\/common'\\);/g  x x replace /\\.\\.\\/\\.\\.\\/lib\\//g  x indexOf . 1 x x replace /^\\.\\//  replace /\\/\\.\\// / replace /[^\\/]*\\/\\.\\.\\//  x x replace /([^.\\s]+\\.)+/  x x replace /<!\\-\\-DEVEL[\\d\\D]*?DEVEL\\-\\->/g  x x replace /^\\.\\//  replace /\\/\\.\\// / replace /[^\\/]*\\/\\.\\.\\//  x |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:119:34:119:35 | "" | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:119:34:119:35 | "" | fileImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:122:17:122:30 | /([^.\\s]+\\.)+/ | CalleeFlexibleAccessPath | x.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:122:17:122:30 | /([^.\\s]+\\.)+/ | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:122:17:122:30 | /([^.\\s]+\\.)+/ | contextFunctionInterfaces |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:122:17:122:30 | /([^.\\s]+\\.)+/ | contextSurroundingFunctionParameters | (x) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:122:17:122:30 | /([^.\\s]+\\.)+/ | enclosingFunctionBody | x x x replace /<script\\b[^<]*(?:(?!<\\/script>)<[^<]*)*<\\/script>/g  x x replace /(\\/\|\\s)on\\w+=(\\'\|")?[^"]*(\\'\|")?/g  x x replace /<\\/script>/g  x x replace /<(.)?br(.)?>/g  x x replace /<\\/?b>/g  x x replace /<(ul\|ol)><\\/(ul\|ol)>/gi  x x replace /<li><\\/li>/gi  x x replace /<!--(.*?)-->/gm  x x replace /\\sng-[a-z-]+/  x x replace /\\sng-[a-z-]+/g  x x replace /(<!--\\[CDATA\\[\|\\]\\]-->)/g \n x x replace /<script.+desktop\\-only.+<\\/script>/g  x x replace /<script async.+?<\\/script>/g  x x replace /<!--[\\s\\S]*?-->\|<\\?(?:php)?[\\s\\S]*?\\?>/gi  x x replace /\\x2E\\x2E\\x2F\\x2E\\x2E\\x2F/g  x x replace /<script.*>.*<\\/script>/gi  x x replace /^(\\.\\.\\/?)+/g  x x replace /<script\\b[^<]*(?:(?!<\\/script>)<[^<]*)*<\\/script>/g $0 unknown $0  x x replace /<\\/?([a-z][a-z0-9]*)\\b[^>]*>/gi  x x replace /\\.\\./g  x x replace /\\.\\.\\//g  x x replace /\\/\\.\\./g  x x replace /<script(.*?)>([\\s\\S]*?)<\\/script>/gi  x x replace /<(script\|del)(?=[\\s>])[\\w\\W]*?<\\/\\1\\s*>/gi  x x replace /\\<script[\\s\\S]*?\\>[\\s\\S]*?\\<\\/script\\>/g  x x replace /<(script\|style\|title)[^<]+<\\/(script\|style\|title)>/gm  x x replace /<script[^>]*>([\\s\\S]*?)<\\/script>/gi  x x replace /<script[\\s\\S]*?<\\/script>/gi  x x replace / ?<!-- ?/g  x x replace /require\\('\\.\\.\\/common'\\);/g  x x replace /\\.\\.\\/\\.\\.\\/lib\\//g  x indexOf . 1 x x replace /^\\.\\//  replace /\\/\\.\\// / replace /[^\\/]*\\/\\.\\.\\//  x x replace /([^.\\s]+\\.)+/  x x replace /<!\\-\\-DEVEL[\\d\\D]*?DEVEL\\-\\->/g  x x replace /^\\.\\//  replace /\\/\\.\\// / replace /[^\\/]*\\/\\.\\.\\//  x |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:122:17:122:30 | /([^.\\s]+\\.)+/ | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:122:17:122:30 | /([^.\\s]+\\.)+/ | fileImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:122:17:122:30 | /([^.\\s]+\\.)+/ | receiverName | x |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:122:33:122:34 | "" | CalleeFlexibleAccessPath | x.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:122:33:122:34 | "" | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:122:33:122:34 | "" | contextFunctionInterfaces |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:122:33:122:34 | "" | contextSurroundingFunctionParameters | (x) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:122:33:122:34 | "" | enclosingFunctionBody | x x x replace /<script\\b[^<]*(?:(?!<\\/script>)<[^<]*)*<\\/script>/g  x x replace /(\\/\|\\s)on\\w+=(\\'\|")?[^"]*(\\'\|")?/g  x x replace /<\\/script>/g  x x replace /<(.)?br(.)?>/g  x x replace /<\\/?b>/g  x x replace /<(ul\|ol)><\\/(ul\|ol)>/gi  x x replace /<li><\\/li>/gi  x x replace /<!--(.*?)-->/gm  x x replace /\\sng-[a-z-]+/  x x replace /\\sng-[a-z-]+/g  x x replace /(<!--\\[CDATA\\[\|\\]\\]-->)/g \n x x replace /<script.+desktop\\-only.+<\\/script>/g  x x replace /<script async.+?<\\/script>/g  x x replace /<!--[\\s\\S]*?-->\|<\\?(?:php)?[\\s\\S]*?\\?>/gi  x x replace /\\x2E\\x2E\\x2F\\x2E\\x2E\\x2F/g  x x replace /<script.*>.*<\\/script>/gi  x x replace /^(\\.\\.\\/?)+/g  x x replace /<script\\b[^<]*(?:(?!<\\/script>)<[^<]*)*<\\/script>/g $0 unknown $0  x x replace /<\\/?([a-z][a-z0-9]*)\\b[^>]*>/gi  x x replace /\\.\\./g  x x replace /\\.\\.\\//g  x x replace /\\/\\.\\./g  x x replace /<script(.*?)>([\\s\\S]*?)<\\/script>/gi  x x replace /<(script\|del)(?=[\\s>])[\\w\\W]*?<\\/\\1\\s*>/gi  x x replace /\\<script[\\s\\S]*?\\>[\\s\\S]*?\\<\\/script\\>/g  x x replace /<(script\|style\|title)[^<]+<\\/(script\|style\|title)>/gm  x x replace /<script[^>]*>([\\s\\S]*?)<\\/script>/gi  x x replace /<script[\\s\\S]*?<\\/script>/gi  x x replace / ?<!-- ?/g  x x replace /require\\('\\.\\.\\/common'\\);/g  x x replace /\\.\\.\\/\\.\\.\\/lib\\//g  x indexOf . 1 x x replace /^\\.\\//  replace /\\/\\.\\// / replace /[^\\/]*\\/\\.\\.\\//  x x replace /([^.\\s]+\\.)+/  x x replace /<!\\-\\-DEVEL[\\d\\D]*?DEVEL\\-\\->/g  x x replace /^\\.\\//  replace /\\/\\.\\// / replace /[^\\/]*\\/\\.\\.\\//  x |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:122:33:122:34 | "" | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:122:33:122:34 | "" | fileImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:122:33:122:34 | "" | receiverName | x |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:124:17:124:48 | /<!\\-\\- ... \\-\\->/g | CalleeFlexibleAccessPath | x.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:124:17:124:48 | /<!\\-\\- ... \\-\\->/g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:124:17:124:48 | /<!\\-\\- ... \\-\\->/g | contextFunctionInterfaces |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:124:17:124:48 | /<!\\-\\- ... \\-\\->/g | contextSurroundingFunctionParameters | (x) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:124:17:124:48 | /<!\\-\\- ... \\-\\->/g | enclosingFunctionBody | x x x replace /<script\\b[^<]*(?:(?!<\\/script>)<[^<]*)*<\\/script>/g  x x replace /(\\/\|\\s)on\\w+=(\\'\|")?[^"]*(\\'\|")?/g  x x replace /<\\/script>/g  x x replace /<(.)?br(.)?>/g  x x replace /<\\/?b>/g  x x replace /<(ul\|ol)><\\/(ul\|ol)>/gi  x x replace /<li><\\/li>/gi  x x replace /<!--(.*?)-->/gm  x x replace /\\sng-[a-z-]+/  x x replace /\\sng-[a-z-]+/g  x x replace /(<!--\\[CDATA\\[\|\\]\\]-->)/g \n x x replace /<script.+desktop\\-only.+<\\/script>/g  x x replace /<script async.+?<\\/script>/g  x x replace /<!--[\\s\\S]*?-->\|<\\?(?:php)?[\\s\\S]*?\\?>/gi  x x replace /\\x2E\\x2E\\x2F\\x2E\\x2E\\x2F/g  x x replace /<script.*>.*<\\/script>/gi  x x replace /^(\\.\\.\\/?)+/g  x x replace /<script\\b[^<]*(?:(?!<\\/script>)<[^<]*)*<\\/script>/g $0 unknown $0  x x replace /<\\/?([a-z][a-z0-9]*)\\b[^>]*>/gi  x x replace /\\.\\./g  x x replace /\\.\\.\\//g  x x replace /\\/\\.\\./g  x x replace /<script(.*?)>([\\s\\S]*?)<\\/script>/gi  x x replace /<(script\|del)(?=[\\s>])[\\w\\W]*?<\\/\\1\\s*>/gi  x x replace /\\<script[\\s\\S]*?\\>[\\s\\S]*?\\<\\/script\\>/g  x x replace /<(script\|style\|title)[^<]+<\\/(script\|style\|title)>/gm  x x replace /<script[^>]*>([\\s\\S]*?)<\\/script>/gi  x x replace /<script[\\s\\S]*?<\\/script>/gi  x x replace / ?<!-- ?/g  x x replace /require\\('\\.\\.\\/common'\\);/g  x x replace /\\.\\.\\/\\.\\.\\/lib\\//g  x indexOf . 1 x x replace /^\\.\\//  replace /\\/\\.\\// / replace /[^\\/]*\\/\\.\\.\\//  x x replace /([^.\\s]+\\.)+/  x x replace /<!\\-\\-DEVEL[\\d\\D]*?DEVEL\\-\\->/g  x x replace /^\\.\\//  replace /\\/\\.\\// / replace /[^\\/]*\\/\\.\\.\\//  x |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:124:17:124:48 | /<!\\-\\- ... \\-\\->/g | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:124:17:124:48 | /<!\\-\\- ... \\-\\->/g | fileImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:124:17:124:48 | /<!\\-\\- ... \\-\\->/g | receiverName | x |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:124:51:124:52 | "" | CalleeFlexibleAccessPath | x.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:124:51:124:52 | "" | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:124:51:124:52 | "" | contextFunctionInterfaces |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:124:51:124:52 | "" | contextSurroundingFunctionParameters | (x) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:124:51:124:52 | "" | enclosingFunctionBody | x x x replace /<script\\b[^<]*(?:(?!<\\/script>)<[^<]*)*<\\/script>/g  x x replace /(\\/\|\\s)on\\w+=(\\'\|")?[^"]*(\\'\|")?/g  x x replace /<\\/script>/g  x x replace /<(.)?br(.)?>/g  x x replace /<\\/?b>/g  x x replace /<(ul\|ol)><\\/(ul\|ol)>/gi  x x replace /<li><\\/li>/gi  x x replace /<!--(.*?)-->/gm  x x replace /\\sng-[a-z-]+/  x x replace /\\sng-[a-z-]+/g  x x replace /(<!--\\[CDATA\\[\|\\]\\]-->)/g \n x x replace /<script.+desktop\\-only.+<\\/script>/g  x x replace /<script async.+?<\\/script>/g  x x replace /<!--[\\s\\S]*?-->\|<\\?(?:php)?[\\s\\S]*?\\?>/gi  x x replace /\\x2E\\x2E\\x2F\\x2E\\x2E\\x2F/g  x x replace /<script.*>.*<\\/script>/gi  x x replace /^(\\.\\.\\/?)+/g  x x replace /<script\\b[^<]*(?:(?!<\\/script>)<[^<]*)*<\\/script>/g $0 unknown $0  x x replace /<\\/?([a-z][a-z0-9]*)\\b[^>]*>/gi  x x replace /\\.\\./g  x x replace /\\.\\.\\//g  x x replace /\\/\\.\\./g  x x replace /<script(.*?)>([\\s\\S]*?)<\\/script>/gi  x x replace /<(script\|del)(?=[\\s>])[\\w\\W]*?<\\/\\1\\s*>/gi  x x replace /\\<script[\\s\\S]*?\\>[\\s\\S]*?\\<\\/script\\>/g  x x replace /<(script\|style\|title)[^<]+<\\/(script\|style\|title)>/gm  x x replace /<script[^>]*>([\\s\\S]*?)<\\/script>/gi  x x replace /<script[\\s\\S]*?<\\/script>/gi  x x replace / ?<!-- ?/g  x x replace /require\\('\\.\\.\\/common'\\);/g  x x replace /\\.\\.\\/\\.\\.\\/lib\\//g  x indexOf . 1 x x replace /^\\.\\//  replace /\\/\\.\\// / replace /[^\\/]*\\/\\.\\.\\//  x x replace /([^.\\s]+\\.)+/  x x replace /<!\\-\\-DEVEL[\\d\\D]*?DEVEL\\-\\->/g  x x replace /^\\.\\//  replace /\\/\\.\\// / replace /[^\\/]*\\/\\.\\.\\//  x |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:124:51:124:52 | "" | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:124:51:124:52 | "" | fileImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:124:51:124:52 | "" | receiverName | x |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:127:14:127:20 | /^\\.\\// | CalleeFlexibleAccessPath | x.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:127:14:127:20 | /^\\.\\// | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:127:14:127:20 | /^\\.\\// | contextFunctionInterfaces |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:127:14:127:20 | /^\\.\\// | contextSurroundingFunctionParameters | (x) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:127:14:127:20 | /^\\.\\// | enclosingFunctionBody | x x x replace /<script\\b[^<]*(?:(?!<\\/script>)<[^<]*)*<\\/script>/g  x x replace /(\\/\|\\s)on\\w+=(\\'\|")?[^"]*(\\'\|")?/g  x x replace /<\\/script>/g  x x replace /<(.)?br(.)?>/g  x x replace /<\\/?b>/g  x x replace /<(ul\|ol)><\\/(ul\|ol)>/gi  x x replace /<li><\\/li>/gi  x x replace /<!--(.*?)-->/gm  x x replace /\\sng-[a-z-]+/  x x replace /\\sng-[a-z-]+/g  x x replace /(<!--\\[CDATA\\[\|\\]\\]-->)/g \n x x replace /<script.+desktop\\-only.+<\\/script>/g  x x replace /<script async.+?<\\/script>/g  x x replace /<!--[\\s\\S]*?-->\|<\\?(?:php)?[\\s\\S]*?\\?>/gi  x x replace /\\x2E\\x2E\\x2F\\x2E\\x2E\\x2F/g  x x replace /<script.*>.*<\\/script>/gi  x x replace /^(\\.\\.\\/?)+/g  x x replace /<script\\b[^<]*(?:(?!<\\/script>)<[^<]*)*<\\/script>/g $0 unknown $0  x x replace /<\\/?([a-z][a-z0-9]*)\\b[^>]*>/gi  x x replace /\\.\\./g  x x replace /\\.\\.\\//g  x x replace /\\/\\.\\./g  x x replace /<script(.*?)>([\\s\\S]*?)<\\/script>/gi  x x replace /<(script\|del)(?=[\\s>])[\\w\\W]*?<\\/\\1\\s*>/gi  x x replace /\\<script[\\s\\S]*?\\>[\\s\\S]*?\\<\\/script\\>/g  x x replace /<(script\|style\|title)[^<]+<\\/(script\|style\|title)>/gm  x x replace /<script[^>]*>([\\s\\S]*?)<\\/script>/gi  x x replace /<script[\\s\\S]*?<\\/script>/gi  x x replace / ?<!-- ?/g  x x replace /require\\('\\.\\.\\/common'\\);/g  x x replace /\\.\\.\\/\\.\\.\\/lib\\//g  x indexOf . 1 x x replace /^\\.\\//  replace /\\/\\.\\// / replace /[^\\/]*\\/\\.\\.\\//  x x replace /([^.\\s]+\\.)+/  x x replace /<!\\-\\-DEVEL[\\d\\D]*?DEVEL\\-\\->/g  x x replace /^\\.\\//  replace /\\/\\.\\// / replace /[^\\/]*\\/\\.\\.\\//  x |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:127:14:127:20 | /^\\.\\// | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:127:14:127:20 | /^\\.\\// | fileImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:127:14:127:20 | /^\\.\\// | receiverName | x |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:127:23:127:24 | "" | CalleeFlexibleAccessPath | x.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:127:23:127:24 | "" | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:127:23:127:24 | "" | contextFunctionInterfaces |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:127:23:127:24 | "" | contextSurroundingFunctionParameters | (x) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:127:23:127:24 | "" | enclosingFunctionBody | x x x replace /<script\\b[^<]*(?:(?!<\\/script>)<[^<]*)*<\\/script>/g  x x replace /(\\/\|\\s)on\\w+=(\\'\|")?[^"]*(\\'\|")?/g  x x replace /<\\/script>/g  x x replace /<(.)?br(.)?>/g  x x replace /<\\/?b>/g  x x replace /<(ul\|ol)><\\/(ul\|ol)>/gi  x x replace /<li><\\/li>/gi  x x replace /<!--(.*?)-->/gm  x x replace /\\sng-[a-z-]+/  x x replace /\\sng-[a-z-]+/g  x x replace /(<!--\\[CDATA\\[\|\\]\\]-->)/g \n x x replace /<script.+desktop\\-only.+<\\/script>/g  x x replace /<script async.+?<\\/script>/g  x x replace /<!--[\\s\\S]*?-->\|<\\?(?:php)?[\\s\\S]*?\\?>/gi  x x replace /\\x2E\\x2E\\x2F\\x2E\\x2E\\x2F/g  x x replace /<script.*>.*<\\/script>/gi  x x replace /^(\\.\\.\\/?)+/g  x x replace /<script\\b[^<]*(?:(?!<\\/script>)<[^<]*)*<\\/script>/g $0 unknown $0  x x replace /<\\/?([a-z][a-z0-9]*)\\b[^>]*>/gi  x x replace /\\.\\./g  x x replace /\\.\\.\\//g  x x replace /\\/\\.\\./g  x x replace /<script(.*?)>([\\s\\S]*?)<\\/script>/gi  x x replace /<(script\|del)(?=[\\s>])[\\w\\W]*?<\\/\\1\\s*>/gi  x x replace /\\<script[\\s\\S]*?\\>[\\s\\S]*?\\<\\/script\\>/g  x x replace /<(script\|style\|title)[^<]+<\\/(script\|style\|title)>/gm  x x replace /<script[^>]*>([\\s\\S]*?)<\\/script>/gi  x x replace /<script[\\s\\S]*?<\\/script>/gi  x x replace / ?<!-- ?/g  x x replace /require\\('\\.\\.\\/common'\\);/g  x x replace /\\.\\.\\/\\.\\.\\/lib\\//g  x indexOf . 1 x x replace /^\\.\\//  replace /\\/\\.\\// / replace /[^\\/]*\\/\\.\\.\\//  x x replace /([^.\\s]+\\.)+/  x x replace /<!\\-\\-DEVEL[\\d\\D]*?DEVEL\\-\\->/g  x x replace /^\\.\\//  replace /\\/\\.\\// / replace /[^\\/]*\\/\\.\\.\\//  x |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:127:23:127:24 | "" | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:127:23:127:24 | "" | fileImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:127:23:127:24 | "" | receiverName | x |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:128:14:128:21 | /\\/\\.\\// | CalleeFlexibleAccessPath | x.replace().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:128:14:128:21 | /\\/\\.\\// | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:128:14:128:21 | /\\/\\.\\// | contextFunctionInterfaces |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:128:14:128:21 | /\\/\\.\\// | contextSurroundingFunctionParameters | (x) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:128:14:128:21 | /\\/\\.\\// | enclosingFunctionBody | x x x replace /<script\\b[^<]*(?:(?!<\\/script>)<[^<]*)*<\\/script>/g  x x replace /(\\/\|\\s)on\\w+=(\\'\|")?[^"]*(\\'\|")?/g  x x replace /<\\/script>/g  x x replace /<(.)?br(.)?>/g  x x replace /<\\/?b>/g  x x replace /<(ul\|ol)><\\/(ul\|ol)>/gi  x x replace /<li><\\/li>/gi  x x replace /<!--(.*?)-->/gm  x x replace /\\sng-[a-z-]+/  x x replace /\\sng-[a-z-]+/g  x x replace /(<!--\\[CDATA\\[\|\\]\\]-->)/g \n x x replace /<script.+desktop\\-only.+<\\/script>/g  x x replace /<script async.+?<\\/script>/g  x x replace /<!--[\\s\\S]*?-->\|<\\?(?:php)?[\\s\\S]*?\\?>/gi  x x replace /\\x2E\\x2E\\x2F\\x2E\\x2E\\x2F/g  x x replace /<script.*>.*<\\/script>/gi  x x replace /^(\\.\\.\\/?)+/g  x x replace /<script\\b[^<]*(?:(?!<\\/script>)<[^<]*)*<\\/script>/g $0 unknown $0  x x replace /<\\/?([a-z][a-z0-9]*)\\b[^>]*>/gi  x x replace /\\.\\./g  x x replace /\\.\\.\\//g  x x replace /\\/\\.\\./g  x x replace /<script(.*?)>([\\s\\S]*?)<\\/script>/gi  x x replace /<(script\|del)(?=[\\s>])[\\w\\W]*?<\\/\\1\\s*>/gi  x x replace /\\<script[\\s\\S]*?\\>[\\s\\S]*?\\<\\/script\\>/g  x x replace /<(script\|style\|title)[^<]+<\\/(script\|style\|title)>/gm  x x replace /<script[^>]*>([\\s\\S]*?)<\\/script>/gi  x x replace /<script[\\s\\S]*?<\\/script>/gi  x x replace / ?<!-- ?/g  x x replace /require\\('\\.\\.\\/common'\\);/g  x x replace /\\.\\.\\/\\.\\.\\/lib\\//g  x indexOf . 1 x x replace /^\\.\\//  replace /\\/\\.\\// / replace /[^\\/]*\\/\\.\\.\\//  x x replace /([^.\\s]+\\.)+/  x x replace /<!\\-\\-DEVEL[\\d\\D]*?DEVEL\\-\\->/g  x x replace /^\\.\\//  replace /\\/\\.\\// / replace /[^\\/]*\\/\\.\\.\\//  x |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:128:14:128:21 | /\\/\\.\\// | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:128:14:128:21 | /\\/\\.\\// | fileImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:128:24:128:26 | "/" | CalleeFlexibleAccessPath | x.replace().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:128:24:128:26 | "/" | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:128:24:128:26 | "/" | contextFunctionInterfaces |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:128:24:128:26 | "/" | contextSurroundingFunctionParameters | (x) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:128:24:128:26 | "/" | enclosingFunctionBody | x x x replace /<script\\b[^<]*(?:(?!<\\/script>)<[^<]*)*<\\/script>/g  x x replace /(\\/\|\\s)on\\w+=(\\'\|")?[^"]*(\\'\|")?/g  x x replace /<\\/script>/g  x x replace /<(.)?br(.)?>/g  x x replace /<\\/?b>/g  x x replace /<(ul\|ol)><\\/(ul\|ol)>/gi  x x replace /<li><\\/li>/gi  x x replace /<!--(.*?)-->/gm  x x replace /\\sng-[a-z-]+/  x x replace /\\sng-[a-z-]+/g  x x replace /(<!--\\[CDATA\\[\|\\]\\]-->)/g \n x x replace /<script.+desktop\\-only.+<\\/script>/g  x x replace /<script async.+?<\\/script>/g  x x replace /<!--[\\s\\S]*?-->\|<\\?(?:php)?[\\s\\S]*?\\?>/gi  x x replace /\\x2E\\x2E\\x2F\\x2E\\x2E\\x2F/g  x x replace /<script.*>.*<\\/script>/gi  x x replace /^(\\.\\.\\/?)+/g  x x replace /<script\\b[^<]*(?:(?!<\\/script>)<[^<]*)*<\\/script>/g $0 unknown $0  x x replace /<\\/?([a-z][a-z0-9]*)\\b[^>]*>/gi  x x replace /\\.\\./g  x x replace /\\.\\.\\//g  x x replace /\\/\\.\\./g  x x replace /<script(.*?)>([\\s\\S]*?)<\\/script>/gi  x x replace /<(script\|del)(?=[\\s>])[\\w\\W]*?<\\/\\1\\s*>/gi  x x replace /\\<script[\\s\\S]*?\\>[\\s\\S]*?\\<\\/script\\>/g  x x replace /<(script\|style\|title)[^<]+<\\/(script\|style\|title)>/gm  x x replace /<script[^>]*>([\\s\\S]*?)<\\/script>/gi  x x replace /<script[\\s\\S]*?<\\/script>/gi  x x replace / ?<!-- ?/g  x x replace /require\\('\\.\\.\\/common'\\);/g  x x replace /\\.\\.\\/\\.\\.\\/lib\\//g  x indexOf . 1 x x replace /^\\.\\//  replace /\\/\\.\\// / replace /[^\\/]*\\/\\.\\.\\//  x x replace /([^.\\s]+\\.)+/  x x replace /<!\\-\\-DEVEL[\\d\\D]*?DEVEL\\-\\->/g  x x replace /^\\.\\//  replace /\\/\\.\\// / replace /[^\\/]*\\/\\.\\.\\//  x |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:128:24:128:26 | "/" | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:128:24:128:26 | "/" | fileImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:129:14:129:29 | /[^\\/]*\\/\\.\\.\\// | CalleeFlexibleAccessPath | x.replace().replace().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:129:14:129:29 | /[^\\/]*\\/\\.\\.\\// | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:129:14:129:29 | /[^\\/]*\\/\\.\\.\\// | contextFunctionInterfaces |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:129:14:129:29 | /[^\\/]*\\/\\.\\.\\// | contextSurroundingFunctionParameters | (x) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:129:14:129:29 | /[^\\/]*\\/\\.\\.\\// | enclosingFunctionBody | x x x replace /<script\\b[^<]*(?:(?!<\\/script>)<[^<]*)*<\\/script>/g  x x replace /(\\/\|\\s)on\\w+=(\\'\|")?[^"]*(\\'\|")?/g  x x replace /<\\/script>/g  x x replace /<(.)?br(.)?>/g  x x replace /<\\/?b>/g  x x replace /<(ul\|ol)><\\/(ul\|ol)>/gi  x x replace /<li><\\/li>/gi  x x replace /<!--(.*?)-->/gm  x x replace /\\sng-[a-z-]+/  x x replace /\\sng-[a-z-]+/g  x x replace /(<!--\\[CDATA\\[\|\\]\\]-->)/g \n x x replace /<script.+desktop\\-only.+<\\/script>/g  x x replace /<script async.+?<\\/script>/g  x x replace /<!--[\\s\\S]*?-->\|<\\?(?:php)?[\\s\\S]*?\\?>/gi  x x replace /\\x2E\\x2E\\x2F\\x2E\\x2E\\x2F/g  x x replace /<script.*>.*<\\/script>/gi  x x replace /^(\\.\\.\\/?)+/g  x x replace /<script\\b[^<]*(?:(?!<\\/script>)<[^<]*)*<\\/script>/g $0 unknown $0  x x replace /<\\/?([a-z][a-z0-9]*)\\b[^>]*>/gi  x x replace /\\.\\./g  x x replace /\\.\\.\\//g  x x replace /\\/\\.\\./g  x x replace /<script(.*?)>([\\s\\S]*?)<\\/script>/gi  x x replace /<(script\|del)(?=[\\s>])[\\w\\W]*?<\\/\\1\\s*>/gi  x x replace /\\<script[\\s\\S]*?\\>[\\s\\S]*?\\<\\/script\\>/g  x x replace /<(script\|style\|title)[^<]+<\\/(script\|style\|title)>/gm  x x replace /<script[^>]*>([\\s\\S]*?)<\\/script>/gi  x x replace /<script[\\s\\S]*?<\\/script>/gi  x x replace / ?<!-- ?/g  x x replace /require\\('\\.\\.\\/common'\\);/g  x x replace /\\.\\.\\/\\.\\.\\/lib\\//g  x indexOf . 1 x x replace /^\\.\\//  replace /\\/\\.\\// / replace /[^\\/]*\\/\\.\\.\\//  x x replace /([^.\\s]+\\.)+/  x x replace /<!\\-\\-DEVEL[\\d\\D]*?DEVEL\\-\\->/g  x x replace /^\\.\\//  replace /\\/\\.\\// / replace /[^\\/]*\\/\\.\\.\\//  x |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:129:14:129:29 | /[^\\/]*\\/\\.\\.\\// | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:129:14:129:29 | /[^\\/]*\\/\\.\\.\\// | fileImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:129:32:129:33 | "" | CalleeFlexibleAccessPath | x.replace().replace().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:129:32:129:33 | "" | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:129:32:129:33 | "" | contextFunctionInterfaces |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:129:32:129:33 | "" | contextSurroundingFunctionParameters | (x) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:129:32:129:33 | "" | enclosingFunctionBody | x x x replace /<script\\b[^<]*(?:(?!<\\/script>)<[^<]*)*<\\/script>/g  x x replace /(\\/\|\\s)on\\w+=(\\'\|")?[^"]*(\\'\|")?/g  x x replace /<\\/script>/g  x x replace /<(.)?br(.)?>/g  x x replace /<\\/?b>/g  x x replace /<(ul\|ol)><\\/(ul\|ol)>/gi  x x replace /<li><\\/li>/gi  x x replace /<!--(.*?)-->/gm  x x replace /\\sng-[a-z-]+/  x x replace /\\sng-[a-z-]+/g  x x replace /(<!--\\[CDATA\\[\|\\]\\]-->)/g \n x x replace /<script.+desktop\\-only.+<\\/script>/g  x x replace /<script async.+?<\\/script>/g  x x replace /<!--[\\s\\S]*?-->\|<\\?(?:php)?[\\s\\S]*?\\?>/gi  x x replace /\\x2E\\x2E\\x2F\\x2E\\x2E\\x2F/g  x x replace /<script.*>.*<\\/script>/gi  x x replace /^(\\.\\.\\/?)+/g  x x replace /<script\\b[^<]*(?:(?!<\\/script>)<[^<]*)*<\\/script>/g $0 unknown $0  x x replace /<\\/?([a-z][a-z0-9]*)\\b[^>]*>/gi  x x replace /\\.\\./g  x x replace /\\.\\.\\//g  x x replace /\\/\\.\\./g  x x replace /<script(.*?)>([\\s\\S]*?)<\\/script>/gi  x x replace /<(script\|del)(?=[\\s>])[\\w\\W]*?<\\/\\1\\s*>/gi  x x replace /\\<script[\\s\\S]*?\\>[\\s\\S]*?\\<\\/script\\>/g  x x replace /<(script\|style\|title)[^<]+<\\/(script\|style\|title)>/gm  x x replace /<script[^>]*>([\\s\\S]*?)<\\/script>/gi  x x replace /<script[\\s\\S]*?<\\/script>/gi  x x replace / ?<!-- ?/g  x x replace /require\\('\\.\\.\\/common'\\);/g  x x replace /\\.\\.\\/\\.\\.\\/lib\\//g  x indexOf . 1 x x replace /^\\.\\//  replace /\\/\\.\\// / replace /[^\\/]*\\/\\.\\.\\//  x x replace /([^.\\s]+\\.)+/  x x replace /<!\\-\\-DEVEL[\\d\\D]*?DEVEL\\-\\->/g  x x replace /^\\.\\//  replace /\\/\\.\\// / replace /[^\\/]*\\/\\.\\.\\//  x |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:129:32:129:33 | "" | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:129:32:129:33 | "" | fileImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:135:18:135:39 | /<scrip ... ipt>/gi | CalleeFlexibleAccessPath | content.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:135:18:135:39 | /<scrip ... ipt>/gi | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:135:18:135:39 | /<scrip ... ipt>/gi | contextFunctionInterfaces |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:135:18:135:39 | /<scrip ... ipt>/gi | contextSurroundingFunctionParameters | (content) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:135:18:135:39 | /<scrip ... ipt>/gi | enclosingFunctionBody | content content replace /<script.*\\/script>/gi  content replace /<(script).*\\/script>/gi  content replace /.+<(script).*\\/script>/gi  content replace /.*<(script).*\\/script>/gi  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:135:18:135:39 | /<scrip ... ipt>/gi | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:135:18:135:39 | /<scrip ... ipt>/gi | fileImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:135:18:135:39 | /<scrip ... ipt>/gi | receiverName | content |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:135:42:135:43 | "" | CalleeFlexibleAccessPath | content.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:135:42:135:43 | "" | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:135:42:135:43 | "" | contextFunctionInterfaces |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:135:42:135:43 | "" | contextSurroundingFunctionParameters | (content) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:135:42:135:43 | "" | enclosingFunctionBody | content content replace /<script.*\\/script>/gi  content replace /<(script).*\\/script>/gi  content replace /.+<(script).*\\/script>/gi  content replace /.*<(script).*\\/script>/gi  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:135:42:135:43 | "" | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:135:42:135:43 | "" | fileImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:135:42:135:43 | "" | receiverName | content |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:136:18:136:41 | /<(scri ... ipt>/gi | CalleeFlexibleAccessPath | content.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:136:18:136:41 | /<(scri ... ipt>/gi | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:136:18:136:41 | /<(scri ... ipt>/gi | contextFunctionInterfaces |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:136:18:136:41 | /<(scri ... ipt>/gi | contextSurroundingFunctionParameters | (content) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:136:18:136:41 | /<(scri ... ipt>/gi | enclosingFunctionBody | content content replace /<script.*\\/script>/gi  content replace /<(script).*\\/script>/gi  content replace /.+<(script).*\\/script>/gi  content replace /.*<(script).*\\/script>/gi  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:136:18:136:41 | /<(scri ... ipt>/gi | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:136:18:136:41 | /<(scri ... ipt>/gi | fileImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:136:18:136:41 | /<(scri ... ipt>/gi | receiverName | content |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:136:44:136:45 | "" | CalleeFlexibleAccessPath | content.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:136:44:136:45 | "" | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:136:44:136:45 | "" | contextFunctionInterfaces |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:136:44:136:45 | "" | contextSurroundingFunctionParameters | (content) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:136:44:136:45 | "" | enclosingFunctionBody | content content replace /<script.*\\/script>/gi  content replace /<(script).*\\/script>/gi  content replace /.+<(script).*\\/script>/gi  content replace /.*<(script).*\\/script>/gi  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:136:44:136:45 | "" | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:136:44:136:45 | "" | fileImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:136:44:136:45 | "" | receiverName | content |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:137:18:137:43 | /.+<(sc ... ipt>/gi | CalleeFlexibleAccessPath | content.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:137:18:137:43 | /.+<(sc ... ipt>/gi | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:137:18:137:43 | /.+<(sc ... ipt>/gi | contextFunctionInterfaces |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:137:18:137:43 | /.+<(sc ... ipt>/gi | contextSurroundingFunctionParameters | (content) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:137:18:137:43 | /.+<(sc ... ipt>/gi | enclosingFunctionBody | content content replace /<script.*\\/script>/gi  content replace /<(script).*\\/script>/gi  content replace /.+<(script).*\\/script>/gi  content replace /.*<(script).*\\/script>/gi  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:137:18:137:43 | /.+<(sc ... ipt>/gi | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:137:18:137:43 | /.+<(sc ... ipt>/gi | fileImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:137:18:137:43 | /.+<(sc ... ipt>/gi | receiverName | content |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:137:46:137:47 | "" | CalleeFlexibleAccessPath | content.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:137:46:137:47 | "" | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:137:46:137:47 | "" | contextFunctionInterfaces |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:137:46:137:47 | "" | contextSurroundingFunctionParameters | (content) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:137:46:137:47 | "" | enclosingFunctionBody | content content replace /<script.*\\/script>/gi  content replace /<(script).*\\/script>/gi  content replace /.+<(script).*\\/script>/gi  content replace /.*<(script).*\\/script>/gi  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:137:46:137:47 | "" | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:137:46:137:47 | "" | fileImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:137:46:137:47 | "" | receiverName | content |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:138:18:138:43 | /.*<(sc ... ipt>/gi | CalleeFlexibleAccessPath | content.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:138:18:138:43 | /.*<(sc ... ipt>/gi | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:138:18:138:43 | /.*<(sc ... ipt>/gi | contextFunctionInterfaces |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:138:18:138:43 | /.*<(sc ... ipt>/gi | contextSurroundingFunctionParameters | (content) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:138:18:138:43 | /.*<(sc ... ipt>/gi | enclosingFunctionBody | content content replace /<script.*\\/script>/gi  content replace /<(script).*\\/script>/gi  content replace /.+<(script).*\\/script>/gi  content replace /.*<(script).*\\/script>/gi  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:138:18:138:43 | /.*<(sc ... ipt>/gi | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:138:18:138:43 | /.*<(sc ... ipt>/gi | fileImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:138:18:138:43 | /.*<(sc ... ipt>/gi | receiverName | content |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:138:46:138:47 | "" | CalleeFlexibleAccessPath | content.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:138:46:138:47 | "" | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:138:46:138:47 | "" | contextFunctionInterfaces |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:138:46:138:47 | "" | contextSurroundingFunctionParameters | (content) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:138:46:138:47 | "" | enclosingFunctionBody | content content replace /<script.*\\/script>/gi  content replace /<(script).*\\/script>/gi  content replace /.+<(script).*\\/script>/gi  content replace /.*<(script).*\\/script>/gi  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:138:46:138:47 | "" | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:138:46:138:47 | "" | fileImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:138:46:138:47 | "" | receiverName | content |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:142:29:142:57 | /<scrip ... ipt>/gi | CalleeFlexibleAccessPath | content.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:142:29:142:57 | /<scrip ... ipt>/gi | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:142:29:142:57 | /<scrip ... ipt>/gi | contextFunctionInterfaces |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:142:29:142:57 | /<scrip ... ipt>/gi | contextSurroundingFunctionParameters | (content) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:142:29:142:57 | /<scrip ... ipt>/gi | enclosingFunctionBody | content content content replace /<script[\\s\\S]*?<\\/script>/gi  content content replace /<[a-zA-Z\\/](.\|\\n)*?>/g    content content replace /<(script\|iframe\|video)[\\s\\S]*?<\\/(script\|iframe\|video)>/g  content content replace /<(script\|iframe\|video)(.\|\\s)*?\\/(script\|iframe\|video)>/g  content content replace /<[^<]*>/g  n cloneNode false outerHTML replace /<\\/?[\\w:\\-]+ ?\|=[\\"][^\\"]+\\"\|=\\'[^\\']+\\'\|=[\\w\\-]+\|>/gi  replace /[\\w:\\-]+/gi a o push specified 1 nodeName a n cloneNode false outerHTML replace /<\\/?[\\w:\\-]+ ?\|=[\\"][^\\"]+\\"\|=\\'[^\\']+\\'\|=[\\w\\-]+\|>/gi  replace /[\\w:\\-]+/gi a o push specified 1 nodeName a |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:142:29:142:57 | /<scrip ... ipt>/gi | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:142:29:142:57 | /<scrip ... ipt>/gi | fileImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:142:29:142:57 | /<scrip ... ipt>/gi | receiverName | content |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:142:60:142:61 | "" | CalleeFlexibleAccessPath | content.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:142:60:142:61 | "" | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:142:60:142:61 | "" | contextFunctionInterfaces |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:142:60:142:61 | "" | contextSurroundingFunctionParameters | (content) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:142:60:142:61 | "" | enclosingFunctionBody | content content content replace /<script[\\s\\S]*?<\\/script>/gi  content content replace /<[a-zA-Z\\/](.\|\\n)*?>/g    content content replace /<(script\|iframe\|video)[\\s\\S]*?<\\/(script\|iframe\|video)>/g  content content replace /<(script\|iframe\|video)(.\|\\s)*?\\/(script\|iframe\|video)>/g  content content replace /<[^<]*>/g  n cloneNode false outerHTML replace /<\\/?[\\w:\\-]+ ?\|=[\\"][^\\"]+\\"\|=\\'[^\\']+\\'\|=[\\w\\-]+\|>/gi  replace /[\\w:\\-]+/gi a o push specified 1 nodeName a n cloneNode false outerHTML replace /<\\/?[\\w:\\-]+ ?\|=[\\"][^\\"]+\\"\|=\\'[^\\']+\\'\|=[\\w\\-]+\|>/gi  replace /[\\w:\\-]+/gi a o push specified 1 nodeName a |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:142:60:142:61 | "" | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:142:60:142:61 | "" | fileImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:142:60:142:61 | "" | receiverName | content |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:143:29:143:51 | /<[a-zA ... n)*?>/g | CalleeFlexibleAccessPath | content.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:143:29:143:51 | /<[a-zA ... n)*?>/g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:143:29:143:51 | /<[a-zA ... n)*?>/g | contextFunctionInterfaces |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:143:29:143:51 | /<[a-zA ... n)*?>/g | contextSurroundingFunctionParameters | (content) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:143:29:143:51 | /<[a-zA ... n)*?>/g | enclosingFunctionBody | content content content replace /<script[\\s\\S]*?<\\/script>/gi  content content replace /<[a-zA-Z\\/](.\|\\n)*?>/g    content content replace /<(script\|iframe\|video)[\\s\\S]*?<\\/(script\|iframe\|video)>/g  content content replace /<(script\|iframe\|video)(.\|\\s)*?\\/(script\|iframe\|video)>/g  content content replace /<[^<]*>/g  n cloneNode false outerHTML replace /<\\/?[\\w:\\-]+ ?\|=[\\"][^\\"]+\\"\|=\\'[^\\']+\\'\|=[\\w\\-]+\|>/gi  replace /[\\w:\\-]+/gi a o push specified 1 nodeName a n cloneNode false outerHTML replace /<\\/?[\\w:\\-]+ ?\|=[\\"][^\\"]+\\"\|=\\'[^\\']+\\'\|=[\\w\\-]+\|>/gi  replace /[\\w:\\-]+/gi a o push specified 1 nodeName a |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:143:29:143:51 | /<[a-zA ... n)*?>/g | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:143:29:143:51 | /<[a-zA ... n)*?>/g | fileImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:143:29:143:51 | /<[a-zA ... n)*?>/g | receiverName | content |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:143:54:143:55 | '' | CalleeFlexibleAccessPath | content.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:143:54:143:55 | '' | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:143:54:143:55 | '' | contextFunctionInterfaces |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:143:54:143:55 | '' | contextSurroundingFunctionParameters | (content) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:143:54:143:55 | '' | enclosingFunctionBody | content content content replace /<script[\\s\\S]*?<\\/script>/gi  content content replace /<[a-zA-Z\\/](.\|\\n)*?>/g    content content replace /<(script\|iframe\|video)[\\s\\S]*?<\\/(script\|iframe\|video)>/g  content content replace /<(script\|iframe\|video)(.\|\\s)*?\\/(script\|iframe\|video)>/g  content content replace /<[^<]*>/g  n cloneNode false outerHTML replace /<\\/?[\\w:\\-]+ ?\|=[\\"][^\\"]+\\"\|=\\'[^\\']+\\'\|=[\\w\\-]+\|>/gi  replace /[\\w:\\-]+/gi a o push specified 1 nodeName a n cloneNode false outerHTML replace /<\\/?[\\w:\\-]+ ?\|=[\\"][^\\"]+\\"\|=\\'[^\\']+\\'\|=[\\w\\-]+\|>/gi  replace /[\\w:\\-]+/gi a o push specified 1 nodeName a |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:143:54:143:55 | '' | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:143:54:143:55 | '' | fileImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:143:54:143:55 | '' | receiverName | content |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:144:29:144:86 | /<(scri ... deo)>/g | CalleeFlexibleAccessPath | content.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:144:29:144:86 | /<(scri ... deo)>/g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:144:29:144:86 | /<(scri ... deo)>/g | contextFunctionInterfaces |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:144:29:144:86 | /<(scri ... deo)>/g | contextSurroundingFunctionParameters | (content) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:144:29:144:86 | /<(scri ... deo)>/g | enclosingFunctionBody | content content content replace /<script[\\s\\S]*?<\\/script>/gi  content content replace /<[a-zA-Z\\/](.\|\\n)*?>/g    content content replace /<(script\|iframe\|video)[\\s\\S]*?<\\/(script\|iframe\|video)>/g  content content replace /<(script\|iframe\|video)(.\|\\s)*?\\/(script\|iframe\|video)>/g  content content replace /<[^<]*>/g  n cloneNode false outerHTML replace /<\\/?[\\w:\\-]+ ?\|=[\\"][^\\"]+\\"\|=\\'[^\\']+\\'\|=[\\w\\-]+\|>/gi  replace /[\\w:\\-]+/gi a o push specified 1 nodeName a n cloneNode false outerHTML replace /<\\/?[\\w:\\-]+ ?\|=[\\"][^\\"]+\\"\|=\\'[^\\']+\\'\|=[\\w\\-]+\|>/gi  replace /[\\w:\\-]+/gi a o push specified 1 nodeName a |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:144:29:144:86 | /<(scri ... deo)>/g | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:144:29:144:86 | /<(scri ... deo)>/g | fileImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:144:29:144:86 | /<(scri ... deo)>/g | receiverName | content |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:144:89:144:90 | '' | CalleeFlexibleAccessPath | content.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:144:89:144:90 | '' | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:144:89:144:90 | '' | contextFunctionInterfaces |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:144:89:144:90 | '' | contextSurroundingFunctionParameters | (content) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:144:89:144:90 | '' | enclosingFunctionBody | content content content replace /<script[\\s\\S]*?<\\/script>/gi  content content replace /<[a-zA-Z\\/](.\|\\n)*?>/g    content content replace /<(script\|iframe\|video)[\\s\\S]*?<\\/(script\|iframe\|video)>/g  content content replace /<(script\|iframe\|video)(.\|\\s)*?\\/(script\|iframe\|video)>/g  content content replace /<[^<]*>/g  n cloneNode false outerHTML replace /<\\/?[\\w:\\-]+ ?\|=[\\"][^\\"]+\\"\|=\\'[^\\']+\\'\|=[\\w\\-]+\|>/gi  replace /[\\w:\\-]+/gi a o push specified 1 nodeName a n cloneNode false outerHTML replace /<\\/?[\\w:\\-]+ ?\|=[\\"][^\\"]+\\"\|=\\'[^\\']+\\'\|=[\\w\\-]+\|>/gi  replace /[\\w:\\-]+/gi a o push specified 1 nodeName a |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:144:89:144:90 | '' | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:144:89:144:90 | '' | fileImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:144:89:144:90 | '' | receiverName | content |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:145:29:145:85 | /<(scri ... deo)>/g | CalleeFlexibleAccessPath | content.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:145:29:145:85 | /<(scri ... deo)>/g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:145:29:145:85 | /<(scri ... deo)>/g | contextFunctionInterfaces |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:145:29:145:85 | /<(scri ... deo)>/g | contextSurroundingFunctionParameters | (content) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:145:29:145:85 | /<(scri ... deo)>/g | enclosingFunctionBody | content content content replace /<script[\\s\\S]*?<\\/script>/gi  content content replace /<[a-zA-Z\\/](.\|\\n)*?>/g    content content replace /<(script\|iframe\|video)[\\s\\S]*?<\\/(script\|iframe\|video)>/g  content content replace /<(script\|iframe\|video)(.\|\\s)*?\\/(script\|iframe\|video)>/g  content content replace /<[^<]*>/g  n cloneNode false outerHTML replace /<\\/?[\\w:\\-]+ ?\|=[\\"][^\\"]+\\"\|=\\'[^\\']+\\'\|=[\\w\\-]+\|>/gi  replace /[\\w:\\-]+/gi a o push specified 1 nodeName a n cloneNode false outerHTML replace /<\\/?[\\w:\\-]+ ?\|=[\\"][^\\"]+\\"\|=\\'[^\\']+\\'\|=[\\w\\-]+\|>/gi  replace /[\\w:\\-]+/gi a o push specified 1 nodeName a |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:145:29:145:85 | /<(scri ... deo)>/g | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:145:29:145:85 | /<(scri ... deo)>/g | fileImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:145:29:145:85 | /<(scri ... deo)>/g | receiverName | content |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:145:88:145:89 | '' | CalleeFlexibleAccessPath | content.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:145:88:145:89 | '' | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:145:88:145:89 | '' | contextFunctionInterfaces |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:145:88:145:89 | '' | contextSurroundingFunctionParameters | (content) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:145:88:145:89 | '' | enclosingFunctionBody | content content content replace /<script[\\s\\S]*?<\\/script>/gi  content content replace /<[a-zA-Z\\/](.\|\\n)*?>/g    content content replace /<(script\|iframe\|video)[\\s\\S]*?<\\/(script\|iframe\|video)>/g  content content replace /<(script\|iframe\|video)(.\|\\s)*?\\/(script\|iframe\|video)>/g  content content replace /<[^<]*>/g  n cloneNode false outerHTML replace /<\\/?[\\w:\\-]+ ?\|=[\\"][^\\"]+\\"\|=\\'[^\\']+\\'\|=[\\w\\-]+\|>/gi  replace /[\\w:\\-]+/gi a o push specified 1 nodeName a n cloneNode false outerHTML replace /<\\/?[\\w:\\-]+ ?\|=[\\"][^\\"]+\\"\|=\\'[^\\']+\\'\|=[\\w\\-]+\|>/gi  replace /[\\w:\\-]+/gi a o push specified 1 nodeName a |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:145:88:145:89 | '' | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:145:88:145:89 | '' | fileImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:145:88:145:89 | '' | receiverName | content |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:146:29:146:38 | /<[^<]*>/g | CalleeFlexibleAccessPath | content.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:146:29:146:38 | /<[^<]*>/g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:146:29:146:38 | /<[^<]*>/g | contextFunctionInterfaces |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:146:29:146:38 | /<[^<]*>/g | contextSurroundingFunctionParameters | (content) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:146:29:146:38 | /<[^<]*>/g | enclosingFunctionBody | content content content replace /<script[\\s\\S]*?<\\/script>/gi  content content replace /<[a-zA-Z\\/](.\|\\n)*?>/g    content content replace /<(script\|iframe\|video)[\\s\\S]*?<\\/(script\|iframe\|video)>/g  content content replace /<(script\|iframe\|video)(.\|\\s)*?\\/(script\|iframe\|video)>/g  content content replace /<[^<]*>/g  n cloneNode false outerHTML replace /<\\/?[\\w:\\-]+ ?\|=[\\"][^\\"]+\\"\|=\\'[^\\']+\\'\|=[\\w\\-]+\|>/gi  replace /[\\w:\\-]+/gi a o push specified 1 nodeName a n cloneNode false outerHTML replace /<\\/?[\\w:\\-]+ ?\|=[\\"][^\\"]+\\"\|=\\'[^\\']+\\'\|=[\\w\\-]+\|>/gi  replace /[\\w:\\-]+/gi a o push specified 1 nodeName a |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:146:29:146:38 | /<[^<]*>/g | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:146:29:146:38 | /<[^<]*>/g | fileImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:146:29:146:38 | /<[^<]*>/g | receiverName | content |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:146:41:146:42 | "" | CalleeFlexibleAccessPath | content.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:146:41:146:42 | "" | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:146:41:146:42 | "" | contextFunctionInterfaces |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:146:41:146:42 | "" | contextSurroundingFunctionParameters | (content) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:146:41:146:42 | "" | enclosingFunctionBody | content content content replace /<script[\\s\\S]*?<\\/script>/gi  content content replace /<[a-zA-Z\\/](.\|\\n)*?>/g    content content replace /<(script\|iframe\|video)[\\s\\S]*?<\\/(script\|iframe\|video)>/g  content content replace /<(script\|iframe\|video)(.\|\\s)*?\\/(script\|iframe\|video)>/g  content content replace /<[^<]*>/g  n cloneNode false outerHTML replace /<\\/?[\\w:\\-]+ ?\|=[\\"][^\\"]+\\"\|=\\'[^\\']+\\'\|=[\\w\\-]+\|>/gi  replace /[\\w:\\-]+/gi a o push specified 1 nodeName a n cloneNode false outerHTML replace /<\\/?[\\w:\\-]+ ?\|=[\\"][^\\"]+\\"\|=\\'[^\\']+\\'\|=[\\w\\-]+\|>/gi  replace /[\\w:\\-]+/gi a o push specified 1 nodeName a |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:146:41:146:42 | "" | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:146:41:146:42 | "" | fileImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:146:41:146:42 | "" | receiverName | content |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:148:15:148:19 | false | CalleeFlexibleAccessPath | n.cloneNode |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:148:15:148:19 | false | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:148:15:148:19 | false | contextFunctionInterfaces |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:148:15:148:19 | false | contextSurroundingFunctionParameters | (content) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:148:15:148:19 | false | enclosingFunctionBody | content content content replace /<script[\\s\\S]*?<\\/script>/gi  content content replace /<[a-zA-Z\\/](.\|\\n)*?>/g    content content replace /<(script\|iframe\|video)[\\s\\S]*?<\\/(script\|iframe\|video)>/g  content content replace /<(script\|iframe\|video)(.\|\\s)*?\\/(script\|iframe\|video)>/g  content content replace /<[^<]*>/g  n cloneNode false outerHTML replace /<\\/?[\\w:\\-]+ ?\|=[\\"][^\\"]+\\"\|=\\'[^\\']+\\'\|=[\\w\\-]+\|>/gi  replace /[\\w:\\-]+/gi a o push specified 1 nodeName a n cloneNode false outerHTML replace /<\\/?[\\w:\\-]+ ?\|=[\\"][^\\"]+\\"\|=\\'[^\\']+\\'\|=[\\w\\-]+\|>/gi  replace /[\\w:\\-]+/gi a o push specified 1 nodeName a |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:148:15:148:19 | false | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:148:15:148:19 | false | fileImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:148:15:148:19 | false | receiverName | n |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:148:40:148:94 | /<\\/?[\\ ... ]+\|>/gi | CalleeFlexibleAccessPath | n.cloneNode().outerHTML.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:148:40:148:94 | /<\\/?[\\ ... ]+\|>/gi | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:148:40:148:94 | /<\\/?[\\ ... ]+\|>/gi | contextFunctionInterfaces |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:148:40:148:94 | /<\\/?[\\ ... ]+\|>/gi | contextSurroundingFunctionParameters | (content) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:148:40:148:94 | /<\\/?[\\ ... ]+\|>/gi | enclosingFunctionBody | content content content replace /<script[\\s\\S]*?<\\/script>/gi  content content replace /<[a-zA-Z\\/](.\|\\n)*?>/g    content content replace /<(script\|iframe\|video)[\\s\\S]*?<\\/(script\|iframe\|video)>/g  content content replace /<(script\|iframe\|video)(.\|\\s)*?\\/(script\|iframe\|video)>/g  content content replace /<[^<]*>/g  n cloneNode false outerHTML replace /<\\/?[\\w:\\-]+ ?\|=[\\"][^\\"]+\\"\|=\\'[^\\']+\\'\|=[\\w\\-]+\|>/gi  replace /[\\w:\\-]+/gi a o push specified 1 nodeName a n cloneNode false outerHTML replace /<\\/?[\\w:\\-]+ ?\|=[\\"][^\\"]+\\"\|=\\'[^\\']+\\'\|=[\\w\\-]+\|>/gi  replace /[\\w:\\-]+/gi a o push specified 1 nodeName a |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:148:40:148:94 | /<\\/?[\\ ... ]+\|>/gi | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:148:40:148:94 | /<\\/?[\\ ... ]+\|>/gi | fileImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:148:97:148:98 | '' | CalleeFlexibleAccessPath | n.cloneNode().outerHTML.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:148:97:148:98 | '' | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:148:97:148:98 | '' | contextFunctionInterfaces |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:148:97:148:98 | '' | contextSurroundingFunctionParameters | (content) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:148:97:148:98 | '' | enclosingFunctionBody | content content content replace /<script[\\s\\S]*?<\\/script>/gi  content content replace /<[a-zA-Z\\/](.\|\\n)*?>/g    content content replace /<(script\|iframe\|video)[\\s\\S]*?<\\/(script\|iframe\|video)>/g  content content replace /<(script\|iframe\|video)(.\|\\s)*?\\/(script\|iframe\|video)>/g  content content replace /<[^<]*>/g  n cloneNode false outerHTML replace /<\\/?[\\w:\\-]+ ?\|=[\\"][^\\"]+\\"\|=\\'[^\\']+\\'\|=[\\w\\-]+\|>/gi  replace /[\\w:\\-]+/gi a o push specified 1 nodeName a n cloneNode false outerHTML replace /<\\/?[\\w:\\-]+ ?\|=[\\"][^\\"]+\\"\|=\\'[^\\']+\\'\|=[\\w\\-]+\|>/gi  replace /[\\w:\\-]+/gi a o push specified 1 nodeName a |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:148:97:148:98 | '' | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:148:97:148:98 | '' | fileImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:148:109:148:120 | /[\\w:\\-]+/gi | CalleeFlexibleAccessPath | n.cloneNode().outerHTML.replace().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:148:109:148:120 | /[\\w:\\-]+/gi | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:148:109:148:120 | /[\\w:\\-]+/gi | contextFunctionInterfaces |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:148:109:148:120 | /[\\w:\\-]+/gi | contextSurroundingFunctionParameters | (content) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:148:109:148:120 | /[\\w:\\-]+/gi | enclosingFunctionBody | content content content replace /<script[\\s\\S]*?<\\/script>/gi  content content replace /<[a-zA-Z\\/](.\|\\n)*?>/g    content content replace /<(script\|iframe\|video)[\\s\\S]*?<\\/(script\|iframe\|video)>/g  content content replace /<(script\|iframe\|video)(.\|\\s)*?\\/(script\|iframe\|video)>/g  content content replace /<[^<]*>/g  n cloneNode false outerHTML replace /<\\/?[\\w:\\-]+ ?\|=[\\"][^\\"]+\\"\|=\\'[^\\']+\\'\|=[\\w\\-]+\|>/gi  replace /[\\w:\\-]+/gi a o push specified 1 nodeName a n cloneNode false outerHTML replace /<\\/?[\\w:\\-]+ ?\|=[\\"][^\\"]+\\"\|=\\'[^\\']+\\'\|=[\\w\\-]+\|>/gi  replace /[\\w:\\-]+/gi a o push specified 1 nodeName a |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:148:109:148:120 | /[\\w:\\-]+/gi | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:148:109:148:120 | /[\\w:\\-]+/gi | fileImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:148:123:150:3 | functio ... });\\n  } | CalleeFlexibleAccessPath | n.cloneNode().outerHTML.replace().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:148:123:150:3 | functio ... });\\n  } | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:148:123:150:3 | functio ... });\\n  } | contextFunctionInterfaces |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:148:123:150:3 | functio ... });\\n  } | contextSurroundingFunctionParameters | (content)\n(a) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:148:123:150:3 | functio ... });\\n  } | enclosingFunctionBody | content content content replace /<script[\\s\\S]*?<\\/script>/gi  content content replace /<[a-zA-Z\\/](.\|\\n)*?>/g    content content replace /<(script\|iframe\|video)[\\s\\S]*?<\\/(script\|iframe\|video)>/g  content content replace /<(script\|iframe\|video)(.\|\\s)*?\\/(script\|iframe\|video)>/g  content content replace /<[^<]*>/g  n cloneNode false outerHTML replace /<\\/?[\\w:\\-]+ ?\|=[\\"][^\\"]+\\"\|=\\'[^\\']+\\'\|=[\\w\\-]+\|>/gi  replace /[\\w:\\-]+/gi a o push specified 1 nodeName a n cloneNode false outerHTML replace /<\\/?[\\w:\\-]+ ?\|=[\\"][^\\"]+\\"\|=\\'[^\\']+\\'\|=[\\w\\-]+\|>/gi  replace /[\\w:\\-]+/gi a o push specified 1 nodeName a |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:148:123:150:3 | functio ... });\\n  } | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:148:123:150:3 | functio ... });\\n  } | fileImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:149:12:149:40 | {specif ... me : a} | CalleeFlexibleAccessPath | o.push |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:149:12:149:40 | {specif ... me : a} | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:149:12:149:40 | {specif ... me : a} | contextFunctionInterfaces |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:149:12:149:40 | {specif ... me : a} | contextSurroundingFunctionParameters | (content)\n(a) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:149:12:149:40 | {specif ... me : a} | enclosingFunctionBody | content content content replace /<script[\\s\\S]*?<\\/script>/gi  content content replace /<[a-zA-Z\\/](.\|\\n)*?>/g    content content replace /<(script\|iframe\|video)[\\s\\S]*?<\\/(script\|iframe\|video)>/g  content content replace /<(script\|iframe\|video)(.\|\\s)*?\\/(script\|iframe\|video)>/g  content content replace /<[^<]*>/g  n cloneNode false outerHTML replace /<\\/?[\\w:\\-]+ ?\|=[\\"][^\\"]+\\"\|=\\'[^\\']+\\'\|=[\\w\\-]+\|>/gi  replace /[\\w:\\-]+/gi a o push specified 1 nodeName a n cloneNode false outerHTML replace /<\\/?[\\w:\\-]+ ?\|=[\\"][^\\"]+\\"\|=\\'[^\\']+\\'\|=[\\w\\-]+\|>/gi  replace /[\\w:\\-]+/gi a o push specified 1 nodeName a |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:149:12:149:40 | {specif ... me : a} | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:149:12:149:40 | {specif ... me : a} | fileImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:149:12:149:40 | {specif ... me : a} | receiverName | o |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:149:25:149:25 | 1 | CalleeFlexibleAccessPath | o.push |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:149:25:149:25 | 1 | InputAccessPathFromCallee | 0.specified |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:149:25:149:25 | 1 | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:149:25:149:25 | 1 | assignedToPropName | specified |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:149:25:149:25 | 1 | contextFunctionInterfaces |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:149:25:149:25 | 1 | contextSurroundingFunctionParameters | (content)\n(a) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:149:25:149:25 | 1 | enclosingFunctionBody | content content content replace /<script[\\s\\S]*?<\\/script>/gi  content content replace /<[a-zA-Z\\/](.\|\\n)*?>/g    content content replace /<(script\|iframe\|video)[\\s\\S]*?<\\/(script\|iframe\|video)>/g  content content replace /<(script\|iframe\|video)(.\|\\s)*?\\/(script\|iframe\|video)>/g  content content replace /<[^<]*>/g  n cloneNode false outerHTML replace /<\\/?[\\w:\\-]+ ?\|=[\\"][^\\"]+\\"\|=\\'[^\\']+\\'\|=[\\w\\-]+\|>/gi  replace /[\\w:\\-]+/gi a o push specified 1 nodeName a n cloneNode false outerHTML replace /<\\/?[\\w:\\-]+ ?\|=[\\"][^\\"]+\\"\|=\\'[^\\']+\\'\|=[\\w\\-]+\|>/gi  replace /[\\w:\\-]+/gi a o push specified 1 nodeName a |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:149:25:149:25 | 1 | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:149:25:149:25 | 1 | fileImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:149:39:149:39 | a | CalleeFlexibleAccessPath | o.push |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:149:39:149:39 | a | InputAccessPathFromCallee | 0.nodeName |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:149:39:149:39 | a | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:149:39:149:39 | a | assignedToPropName | nodeName |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:149:39:149:39 | a | contextFunctionInterfaces |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:149:39:149:39 | a | contextSurroundingFunctionParameters | (content)\n(a) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:149:39:149:39 | a | enclosingFunctionBody | content content content replace /<script[\\s\\S]*?<\\/script>/gi  content content replace /<[a-zA-Z\\/](.\|\\n)*?>/g    content content replace /<(script\|iframe\|video)[\\s\\S]*?<\\/(script\|iframe\|video)>/g  content content replace /<(script\|iframe\|video)(.\|\\s)*?\\/(script\|iframe\|video)>/g  content content replace /<[^<]*>/g  n cloneNode false outerHTML replace /<\\/?[\\w:\\-]+ ?\|=[\\"][^\\"]+\\"\|=\\'[^\\']+\\'\|=[\\w\\-]+\|>/gi  replace /[\\w:\\-]+/gi a o push specified 1 nodeName a n cloneNode false outerHTML replace /<\\/?[\\w:\\-]+ ?\|=[\\"][^\\"]+\\"\|=\\'[^\\']+\\'\|=[\\w\\-]+\|>/gi  replace /[\\w:\\-]+/gi a o push specified 1 nodeName a |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:149:39:149:39 | a | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:149:39:149:39 | a | fileImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:152:15:152:19 | false | CalleeFlexibleAccessPath | n.cloneNode |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:152:15:152:19 | false | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:152:15:152:19 | false | contextFunctionInterfaces |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:152:15:152:19 | false | contextSurroundingFunctionParameters | (content) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:152:15:152:19 | false | enclosingFunctionBody | content content content replace /<script[\\s\\S]*?<\\/script>/gi  content content replace /<[a-zA-Z\\/](.\|\\n)*?>/g    content content replace /<(script\|iframe\|video)[\\s\\S]*?<\\/(script\|iframe\|video)>/g  content content replace /<(script\|iframe\|video)(.\|\\s)*?\\/(script\|iframe\|video)>/g  content content replace /<[^<]*>/g  n cloneNode false outerHTML replace /<\\/?[\\w:\\-]+ ?\|=[\\"][^\\"]+\\"\|=\\'[^\\']+\\'\|=[\\w\\-]+\|>/gi  replace /[\\w:\\-]+/gi a o push specified 1 nodeName a n cloneNode false outerHTML replace /<\\/?[\\w:\\-]+ ?\|=[\\"][^\\"]+\\"\|=\\'[^\\']+\\'\|=[\\w\\-]+\|>/gi  replace /[\\w:\\-]+/gi a o push specified 1 nodeName a |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:152:15:152:19 | false | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:152:15:152:19 | false | fileImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:152:15:152:19 | false | receiverName | n |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:152:40:152:94 | /<\\/?[\\ ... ]+\|>/gi | CalleeFlexibleAccessPath | n.cloneNode().outerHTML.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:152:40:152:94 | /<\\/?[\\ ... ]+\|>/gi | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:152:40:152:94 | /<\\/?[\\ ... ]+\|>/gi | contextFunctionInterfaces |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:152:40:152:94 | /<\\/?[\\ ... ]+\|>/gi | contextSurroundingFunctionParameters | (content) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:152:40:152:94 | /<\\/?[\\ ... ]+\|>/gi | enclosingFunctionBody | content content content replace /<script[\\s\\S]*?<\\/script>/gi  content content replace /<[a-zA-Z\\/](.\|\\n)*?>/g    content content replace /<(script\|iframe\|video)[\\s\\S]*?<\\/(script\|iframe\|video)>/g  content content replace /<(script\|iframe\|video)(.\|\\s)*?\\/(script\|iframe\|video)>/g  content content replace /<[^<]*>/g  n cloneNode false outerHTML replace /<\\/?[\\w:\\-]+ ?\|=[\\"][^\\"]+\\"\|=\\'[^\\']+\\'\|=[\\w\\-]+\|>/gi  replace /[\\w:\\-]+/gi a o push specified 1 nodeName a n cloneNode false outerHTML replace /<\\/?[\\w:\\-]+ ?\|=[\\"][^\\"]+\\"\|=\\'[^\\']+\\'\|=[\\w\\-]+\|>/gi  replace /[\\w:\\-]+/gi a o push specified 1 nodeName a |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:152:40:152:94 | /<\\/?[\\ ... ]+\|>/gi | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:152:40:152:94 | /<\\/?[\\ ... ]+\|>/gi | fileImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:152:97:152:98 | '' | CalleeFlexibleAccessPath | n.cloneNode().outerHTML.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:152:97:152:98 | '' | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:152:97:152:98 | '' | contextFunctionInterfaces |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:152:97:152:98 | '' | contextSurroundingFunctionParameters | (content) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:152:97:152:98 | '' | enclosingFunctionBody | content content content replace /<script[\\s\\S]*?<\\/script>/gi  content content replace /<[a-zA-Z\\/](.\|\\n)*?>/g    content content replace /<(script\|iframe\|video)[\\s\\S]*?<\\/(script\|iframe\|video)>/g  content content replace /<(script\|iframe\|video)(.\|\\s)*?\\/(script\|iframe\|video)>/g  content content replace /<[^<]*>/g  n cloneNode false outerHTML replace /<\\/?[\\w:\\-]+ ?\|=[\\"][^\\"]+\\"\|=\\'[^\\']+\\'\|=[\\w\\-]+\|>/gi  replace /[\\w:\\-]+/gi a o push specified 1 nodeName a n cloneNode false outerHTML replace /<\\/?[\\w:\\-]+ ?\|=[\\"][^\\"]+\\"\|=\\'[^\\']+\\'\|=[\\w\\-]+\|>/gi  replace /[\\w:\\-]+/gi a o push specified 1 nodeName a |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:152:97:152:98 | '' | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:152:97:152:98 | '' | fileImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:152:109:152:120 | /[\\w:\\-]+/gi | CalleeFlexibleAccessPath | n.cloneNode().outerHTML.replace().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:152:109:152:120 | /[\\w:\\-]+/gi | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:152:109:152:120 | /[\\w:\\-]+/gi | contextFunctionInterfaces |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:152:109:152:120 | /[\\w:\\-]+/gi | contextSurroundingFunctionParameters | (content) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:152:109:152:120 | /[\\w:\\-]+/gi | enclosingFunctionBody | content content content replace /<script[\\s\\S]*?<\\/script>/gi  content content replace /<[a-zA-Z\\/](.\|\\n)*?>/g    content content replace /<(script\|iframe\|video)[\\s\\S]*?<\\/(script\|iframe\|video)>/g  content content replace /<(script\|iframe\|video)(.\|\\s)*?\\/(script\|iframe\|video)>/g  content content replace /<[^<]*>/g  n cloneNode false outerHTML replace /<\\/?[\\w:\\-]+ ?\|=[\\"][^\\"]+\\"\|=\\'[^\\']+\\'\|=[\\w\\-]+\|>/gi  replace /[\\w:\\-]+/gi a o push specified 1 nodeName a n cloneNode false outerHTML replace /<\\/?[\\w:\\-]+ ?\|=[\\"][^\\"]+\\"\|=\\'[^\\']+\\'\|=[\\w\\-]+\|>/gi  replace /[\\w:\\-]+/gi a o push specified 1 nodeName a |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:152:109:152:120 | /[\\w:\\-]+/gi | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:152:109:152:120 | /[\\w:\\-]+/gi | fileImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:152:123:154:3 | functio ... });\\n  } | CalleeFlexibleAccessPath | n.cloneNode().outerHTML.replace().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:152:123:154:3 | functio ... });\\n  } | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:152:123:154:3 | functio ... });\\n  } | contextFunctionInterfaces |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:152:123:154:3 | functio ... });\\n  } | contextSurroundingFunctionParameters | (content)\n(a) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:152:123:154:3 | functio ... });\\n  } | enclosingFunctionBody | content content content replace /<script[\\s\\S]*?<\\/script>/gi  content content replace /<[a-zA-Z\\/](.\|\\n)*?>/g    content content replace /<(script\|iframe\|video)[\\s\\S]*?<\\/(script\|iframe\|video)>/g  content content replace /<(script\|iframe\|video)(.\|\\s)*?\\/(script\|iframe\|video)>/g  content content replace /<[^<]*>/g  n cloneNode false outerHTML replace /<\\/?[\\w:\\-]+ ?\|=[\\"][^\\"]+\\"\|=\\'[^\\']+\\'\|=[\\w\\-]+\|>/gi  replace /[\\w:\\-]+/gi a o push specified 1 nodeName a n cloneNode false outerHTML replace /<\\/?[\\w:\\-]+ ?\|=[\\"][^\\"]+\\"\|=\\'[^\\']+\\'\|=[\\w\\-]+\|>/gi  replace /[\\w:\\-]+/gi a o push specified 1 nodeName a |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:152:123:154:3 | functio ... });\\n  } | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:152:123:154:3 | functio ... });\\n  } | fileImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:153:12:153:40 | {specif ... me : a} | CalleeFlexibleAccessPath | o.push |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:153:12:153:40 | {specif ... me : a} | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:153:12:153:40 | {specif ... me : a} | contextFunctionInterfaces |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:153:12:153:40 | {specif ... me : a} | contextSurroundingFunctionParameters | (content)\n(a) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:153:12:153:40 | {specif ... me : a} | enclosingFunctionBody | content content content replace /<script[\\s\\S]*?<\\/script>/gi  content content replace /<[a-zA-Z\\/](.\|\\n)*?>/g    content content replace /<(script\|iframe\|video)[\\s\\S]*?<\\/(script\|iframe\|video)>/g  content content replace /<(script\|iframe\|video)(.\|\\s)*?\\/(script\|iframe\|video)>/g  content content replace /<[^<]*>/g  n cloneNode false outerHTML replace /<\\/?[\\w:\\-]+ ?\|=[\\"][^\\"]+\\"\|=\\'[^\\']+\\'\|=[\\w\\-]+\|>/gi  replace /[\\w:\\-]+/gi a o push specified 1 nodeName a n cloneNode false outerHTML replace /<\\/?[\\w:\\-]+ ?\|=[\\"][^\\"]+\\"\|=\\'[^\\']+\\'\|=[\\w\\-]+\|>/gi  replace /[\\w:\\-]+/gi a o push specified 1 nodeName a |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:153:12:153:40 | {specif ... me : a} | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:153:12:153:40 | {specif ... me : a} | fileImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:153:12:153:40 | {specif ... me : a} | receiverName | o |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:153:25:153:25 | 1 | CalleeFlexibleAccessPath | o.push |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:153:25:153:25 | 1 | InputAccessPathFromCallee | 0.specified |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:153:25:153:25 | 1 | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:153:25:153:25 | 1 | assignedToPropName | specified |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:153:25:153:25 | 1 | contextFunctionInterfaces |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:153:25:153:25 | 1 | contextSurroundingFunctionParameters | (content)\n(a) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:153:25:153:25 | 1 | enclosingFunctionBody | content content content replace /<script[\\s\\S]*?<\\/script>/gi  content content replace /<[a-zA-Z\\/](.\|\\n)*?>/g    content content replace /<(script\|iframe\|video)[\\s\\S]*?<\\/(script\|iframe\|video)>/g  content content replace /<(script\|iframe\|video)(.\|\\s)*?\\/(script\|iframe\|video)>/g  content content replace /<[^<]*>/g  n cloneNode false outerHTML replace /<\\/?[\\w:\\-]+ ?\|=[\\"][^\\"]+\\"\|=\\'[^\\']+\\'\|=[\\w\\-]+\|>/gi  replace /[\\w:\\-]+/gi a o push specified 1 nodeName a n cloneNode false outerHTML replace /<\\/?[\\w:\\-]+ ?\|=[\\"][^\\"]+\\"\|=\\'[^\\']+\\'\|=[\\w\\-]+\|>/gi  replace /[\\w:\\-]+/gi a o push specified 1 nodeName a |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:153:25:153:25 | 1 | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:153:25:153:25 | 1 | fileImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:153:39:153:39 | a | CalleeFlexibleAccessPath | o.push |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:153:39:153:39 | a | InputAccessPathFromCallee | 0.nodeName |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:153:39:153:39 | a | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:153:39:153:39 | a | assignedToPropName | nodeName |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:153:39:153:39 | a | contextFunctionInterfaces |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:153:39:153:39 | a | contextSurroundingFunctionParameters | (content)\n(a) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:153:39:153:39 | a | enclosingFunctionBody | content content content replace /<script[\\s\\S]*?<\\/script>/gi  content content replace /<[a-zA-Z\\/](.\|\\n)*?>/g    content content replace /<(script\|iframe\|video)[\\s\\S]*?<\\/(script\|iframe\|video)>/g  content content replace /<(script\|iframe\|video)(.\|\\s)*?\\/(script\|iframe\|video)>/g  content content replace /<[^<]*>/g  n cloneNode false outerHTML replace /<\\/?[\\w:\\-]+ ?\|=[\\"][^\\"]+\\"\|=\\'[^\\']+\\'\|=[\\w\\-]+\|>/gi  replace /[\\w:\\-]+/gi a o push specified 1 nodeName a n cloneNode false outerHTML replace /<\\/?[\\w:\\-]+ ?\|=[\\"][^\\"]+\\"\|=\\'[^\\']+\\'\|=[\\w\\-]+\|>/gi  replace /[\\w:\\-]+/gi a o push specified 1 nodeName a |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:153:39:153:39 | a | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:153:39:153:39 | a | fileImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:1:23:1:31 | 'express' | CalleeFlexibleAccessPath | require |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:1:23:1:31 | 'express' | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:1:23:1:31 | 'express' | calleeImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:1:23:1:31 | 'express' | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:1:23:1:31 | 'express' | contextSurroundingFunctionParameters |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:1:23:1:31 | 'express' | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:5:20:5:22 | "'" | CalleeFlexibleAccessPath | s.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:5:20:5:22 | "'" | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:5:20:5:22 | "'" | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:5:20:5:22 | "'" | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:5:20:5:22 | "'" | enclosingFunctionBody | s s replace '  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:5:20:5:22 | "'" | enclosingFunctionName | bad1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:5:20:5:22 | "'" | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:5:20:5:22 | "'" | receiverName | s |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:5:25:5:26 | "" | CalleeFlexibleAccessPath | s.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:5:25:5:26 | "" | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:5:25:5:26 | "" | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:5:25:5:26 | "" | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:5:25:5:26 | "" | enclosingFunctionBody | s s replace '  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:5:25:5:26 | "" | enclosingFunctionName | bad1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:5:25:5:26 | "" | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:5:25:5:26 | "" | receiverName | s |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:9:20:9:22 | /'/ | CalleeFlexibleAccessPath | s.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:9:20:9:22 | /'/ | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:9:20:9:22 | /'/ | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:9:20:9:22 | /'/ | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:9:20:9:22 | /'/ | enclosingFunctionBody | s s replace /'/  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:9:20:9:22 | /'/ | enclosingFunctionName | bad2 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:9:20:9:22 | /'/ | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:9:20:9:22 | /'/ | receiverName | s |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:9:25:9:26 | "" | CalleeFlexibleAccessPath | s.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:9:25:9:26 | "" | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:9:25:9:26 | "" | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:9:25:9:26 | "" | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:9:25:9:26 | "" | enclosingFunctionBody | s s replace /'/  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:9:25:9:26 | "" | enclosingFunctionName | bad2 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:9:25:9:26 | "" | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:9:25:9:26 | "" | receiverName | s |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:13:20:13:23 | /'/g | CalleeFlexibleAccessPath | s.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:13:20:13:23 | /'/g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:13:20:13:23 | /'/g | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:13:20:13:23 | /'/g | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:13:20:13:23 | /'/g | enclosingFunctionBody | s s replace /'/g \\' |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:13:20:13:23 | /'/g | enclosingFunctionName | bad3 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:13:20:13:23 | /'/g | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:13:20:13:23 | /'/g | receiverName | s |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:13:26:13:30 | "\\\\'" | CalleeFlexibleAccessPath | s.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:13:26:13:30 | "\\\\'" | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:13:26:13:30 | "\\\\'" | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:13:26:13:30 | "\\\\'" | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:13:26:13:30 | "\\\\'" | enclosingFunctionBody | s s replace /'/g \\' |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:13:26:13:30 | "\\\\'" | enclosingFunctionName | bad3 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:13:26:13:30 | "\\\\'" | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:13:26:13:30 | "\\\\'" | receiverName | s |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:17:20:17:23 | /'/g | CalleeFlexibleAccessPath | s.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:17:20:17:23 | /'/g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:17:20:17:23 | /'/g | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:17:20:17:23 | /'/g | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:17:20:17:23 | /'/g | enclosingFunctionBody | s s replace /'/g \\$& |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:17:20:17:23 | /'/g | enclosingFunctionName | bad4 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:17:20:17:23 | /'/g | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:17:20:17:23 | /'/g | receiverName | s |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:17:26:17:31 | "\\\\$&" | CalleeFlexibleAccessPath | s.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:17:26:17:31 | "\\\\$&" | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:17:26:17:31 | "\\\\$&" | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:17:26:17:31 | "\\\\$&" | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:17:26:17:31 | "\\\\$&" | enclosingFunctionBody | s s replace /'/g \\$& |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:17:26:17:31 | "\\\\$&" | enclosingFunctionName | bad4 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:17:26:17:31 | "\\\\$&" | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:17:26:17:31 | "\\\\$&" | receiverName | s |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:21:20:21:26 | /['"]/g | CalleeFlexibleAccessPath | s.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:21:20:21:26 | /['"]/g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:21:20:21:26 | /['"]/g | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:21:20:21:26 | /['"]/g | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:21:20:21:26 | /['"]/g | enclosingFunctionBody | s s replace /['"]/g \\$& |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:21:20:21:26 | /['"]/g | enclosingFunctionName | bad5 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:21:20:21:26 | /['"]/g | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:21:20:21:26 | /['"]/g | receiverName | s |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:21:29:21:34 | "\\\\$&" | CalleeFlexibleAccessPath | s.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:21:29:21:34 | "\\\\$&" | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:21:29:21:34 | "\\\\$&" | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:21:29:21:34 | "\\\\$&" | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:21:29:21:34 | "\\\\$&" | enclosingFunctionBody | s s replace /['"]/g \\$& |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:21:29:21:34 | "\\\\$&" | enclosingFunctionName | bad5 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:21:29:21:34 | "\\\\$&" | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:21:29:21:34 | "\\\\$&" | receiverName | s |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:25:20:25:28 | /(['"])/g | CalleeFlexibleAccessPath | s.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:25:20:25:28 | /(['"])/g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:25:20:25:28 | /(['"])/g | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:25:20:25:28 | /(['"])/g | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:25:20:25:28 | /(['"])/g | enclosingFunctionBody | s s replace /(['"])/g \\$1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:25:20:25:28 | /(['"])/g | enclosingFunctionName | bad6 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:25:20:25:28 | /(['"])/g | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:25:20:25:28 | /(['"])/g | receiverName | s |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:25:31:25:36 | "\\\\$1" | CalleeFlexibleAccessPath | s.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:25:31:25:36 | "\\\\$1" | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:25:31:25:36 | "\\\\$1" | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:25:31:25:36 | "\\\\$1" | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:25:31:25:36 | "\\\\$1" | enclosingFunctionBody | s s replace /(['"])/g \\$1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:25:31:25:36 | "\\\\$1" | enclosingFunctionName | bad6 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:25:31:25:36 | "\\\\$1" | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:25:31:25:36 | "\\\\$1" | receiverName | s |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:29:20:29:27 | /('\|")/g | CalleeFlexibleAccessPath | s.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:29:20:29:27 | /('\|")/g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:29:20:29:27 | /('\|")/g | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:29:20:29:27 | /('\|")/g | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:29:20:29:27 | /('\|")/g | enclosingFunctionBody | s s replace /('\|")/g \\$1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:29:20:29:27 | /('\|")/g | enclosingFunctionName | bad7 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:29:20:29:27 | /('\|")/g | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:29:20:29:27 | /('\|")/g | receiverName | s |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:29:30:29:35 | "\\\\$1" | CalleeFlexibleAccessPath | s.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:29:30:29:35 | "\\\\$1" | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:29:30:29:35 | "\\\\$1" | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:29:30:29:35 | "\\\\$1" | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:29:30:29:35 | "\\\\$1" | enclosingFunctionBody | s s replace /('\|")/g \\$1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:29:30:29:35 | "\\\\$1" | enclosingFunctionName | bad7 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:29:30:29:35 | "\\\\$1" | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:29:30:29:35 | "\\\\$1" | receiverName | s |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:33:20:33:22 | '\|' | CalleeFlexibleAccessPath | s.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:33:20:33:22 | '\|' | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:33:20:33:22 | '\|' | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:33:20:33:22 | '\|' | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:33:20:33:22 | '\|' | enclosingFunctionBody | s s replace \|  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:33:20:33:22 | '\|' | enclosingFunctionName | bad8 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:33:20:33:22 | '\|' | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:33:20:33:22 | '\|' | receiverName | s |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:33:25:33:26 | '' | CalleeFlexibleAccessPath | s.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:33:25:33:26 | '' | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:33:25:33:26 | '' | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:33:25:33:26 | '' | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:33:25:33:26 | '' | enclosingFunctionBody | s s replace \|  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:33:25:33:26 | '' | enclosingFunctionName | bad8 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:33:25:33:26 | '' | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:33:25:33:26 | '' | receiverName | s |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:37:20:37:23 | /"/g | CalleeFlexibleAccessPath | s.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:37:20:37:23 | /"/g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:37:20:37:23 | /"/g | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:37:20:37:23 | /"/g | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:37:20:37:23 | /"/g | enclosingFunctionBody | s s replace /"/g \\" |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:37:20:37:23 | /"/g | enclosingFunctionName | bad9 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:37:20:37:23 | /"/g | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:37:20:37:23 | /"/g | receiverName | s |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:37:26:37:31 | "\\\\\\"" | CalleeFlexibleAccessPath | s.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:37:26:37:31 | "\\\\\\"" | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:37:26:37:31 | "\\\\\\"" | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:37:26:37:31 | "\\\\\\"" | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:37:26:37:31 | "\\\\\\"" | enclosingFunctionBody | s s replace /"/g \\" |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:37:26:37:31 | "\\\\\\"" | enclosingFunctionName | bad9 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:37:26:37:31 | "\\\\\\"" | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:37:26:37:31 | "\\\\\\"" | receiverName | s |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:41:20:41:22 | "/" | CalleeFlexibleAccessPath | s.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:41:20:41:22 | "/" | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:41:20:41:22 | "/" | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:41:20:41:22 | "/" | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:41:20:41:22 | "/" | enclosingFunctionBody | s s replace / %2F |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:41:20:41:22 | "/" | enclosingFunctionName | bad10 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:41:20:41:22 | "/" | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:41:20:41:22 | "/" | receiverName | s |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:41:25:41:29 | "%2F" | CalleeFlexibleAccessPath | s.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:41:25:41:29 | "%2F" | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:41:25:41:29 | "%2F" | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:41:25:41:29 | "%2F" | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:41:25:41:29 | "%2F" | enclosingFunctionBody | s s replace / %2F |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:41:25:41:29 | "%2F" | enclosingFunctionName | bad10 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:41:25:41:29 | "%2F" | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:41:25:41:29 | "%2F" | receiverName | s |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:45:20:45:24 | "%25" | CalleeFlexibleAccessPath | s.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:45:20:45:24 | "%25" | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:45:20:45:24 | "%25" | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:45:20:45:24 | "%25" | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:45:20:45:24 | "%25" | enclosingFunctionBody | s s replace %25 % |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:45:20:45:24 | "%25" | enclosingFunctionName | bad11 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:45:20:45:24 | "%25" | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:45:20:45:24 | "%25" | receiverName | s |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:45:27:45:29 | "%" | CalleeFlexibleAccessPath | s.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:45:27:45:29 | "%" | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:45:27:45:29 | "%" | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:45:27:45:29 | "%" | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:45:27:45:29 | "%" | enclosingFunctionBody | s s replace %25 % |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:45:27:45:29 | "%" | enclosingFunctionName | bad11 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:45:27:45:29 | "%" | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:45:27:45:29 | "%" | receiverName | s |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:49:20:49:22 | `'` | CalleeFlexibleAccessPath | s.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:49:20:49:22 | `'` | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:49:20:49:22 | `'` | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:49:20:49:22 | `'` | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:49:20:49:22 | `'` | enclosingFunctionBody | s s replace '  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:49:20:49:22 | `'` | enclosingFunctionName | bad12 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:49:20:49:22 | `'` | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:49:20:49:22 | `'` | receiverName | s |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:49:25:49:26 | "" | CalleeFlexibleAccessPath | s.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:49:25:49:26 | "" | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:49:25:49:26 | "" | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:49:25:49:26 | "" | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:49:25:49:26 | "" | enclosingFunctionBody | s s replace '  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:49:25:49:26 | "" | enclosingFunctionName | bad12 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:49:25:49:26 | "" | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:49:25:49:26 | "" | receiverName | s |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:53:20:53:22 | "'" | CalleeFlexibleAccessPath | s.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:53:20:53:22 | "'" | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:53:20:53:22 | "'" | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:53:20:53:22 | "'" | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:53:20:53:22 | "'" | enclosingFunctionBody | s s replace ' |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:53:20:53:22 | "'" | enclosingFunctionName | bad13 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:53:20:53:22 | "'" | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:53:20:53:22 | "'" | receiverName | s |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:53:25:53:26 | `` | CalleeFlexibleAccessPath | s.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:53:25:53:26 | `` | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:53:25:53:26 | `` | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:53:25:53:26 | `` | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:53:25:53:26 | `` | enclosingFunctionBody | s s replace ' |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:53:25:53:26 | `` | enclosingFunctionName | bad13 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:53:25:53:26 | `` | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:53:25:53:26 | `` | receiverName | s |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:57:20:57:22 | `'` | CalleeFlexibleAccessPath | s.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:57:20:57:22 | `'` | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:57:20:57:22 | `'` | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:57:20:57:22 | `'` | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:57:20:57:22 | `'` | enclosingFunctionBody | s s replace ' |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:57:20:57:22 | `'` | enclosingFunctionName | bad14 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:57:20:57:22 | `'` | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:57:20:57:22 | `'` | receiverName | s |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:57:25:57:26 | `` | CalleeFlexibleAccessPath | s.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:57:25:57:26 | `` | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:57:25:57:26 | `` | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:57:25:57:26 | `` | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:57:25:57:26 | `` | enclosingFunctionBody | s s replace ' |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:57:25:57:26 | `` | enclosingFunctionName | bad14 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:57:25:57:26 | `` | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:57:25:57:26 | `` | receiverName | s |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:61:20:61:27 | "'" + "" | CalleeFlexibleAccessPath | s.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:61:20:61:27 | "'" + "" | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:61:20:61:27 | "'" + "" | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:61:20:61:27 | "'" + "" | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:61:20:61:27 | "'" + "" | enclosingFunctionBody | s s replace '   |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:61:20:61:27 | "'" + "" | enclosingFunctionName | bad15 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:61:20:61:27 | "'" + "" | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:61:20:61:27 | "'" + "" | receiverName | s |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:61:30:61:31 | "" | CalleeFlexibleAccessPath | s.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:61:30:61:31 | "" | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:61:30:61:31 | "" | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:61:30:61:31 | "" | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:61:30:61:31 | "" | enclosingFunctionBody | s s replace '   |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:61:30:61:31 | "" | enclosingFunctionName | bad15 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:61:30:61:31 | "" | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:61:30:61:31 | "" | receiverName | s |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:65:20:65:22 | "'" | CalleeFlexibleAccessPath | s.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:65:20:65:22 | "'" | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:65:20:65:22 | "'" | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:65:20:65:22 | "'" | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:65:20:65:22 | "'" | enclosingFunctionBody | s s replace '   |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:65:20:65:22 | "'" | enclosingFunctionName | bad16 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:65:20:65:22 | "'" | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:65:20:65:22 | "'" | receiverName | s |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:65:25:65:31 | "" + "" | CalleeFlexibleAccessPath | s.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:65:25:65:31 | "" + "" | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:65:25:65:31 | "" + "" | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:65:25:65:31 | "" + "" | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:65:25:65:31 | "" + "" | enclosingFunctionBody | s s replace '   |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:65:25:65:31 | "" + "" | enclosingFunctionName | bad16 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:65:25:65:31 | "" + "" | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:65:25:65:31 | "" + "" | receiverName | s |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:69:20:69:27 | "'" + "" | CalleeFlexibleAccessPath | s.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:69:20:69:27 | "'" + "" | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:69:20:69:27 | "'" + "" | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:69:20:69:27 | "'" + "" | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:69:20:69:27 | "'" + "" | enclosingFunctionBody | s s replace '    |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:69:20:69:27 | "'" + "" | enclosingFunctionName | bad17 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:69:20:69:27 | "'" + "" | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:69:20:69:27 | "'" + "" | receiverName | s |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:69:30:69:36 | "" + "" | CalleeFlexibleAccessPath | s.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:69:30:69:36 | "" + "" | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:69:30:69:36 | "" + "" | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:69:30:69:36 | "" + "" | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:69:30:69:36 | "" + "" | enclosingFunctionBody | s s replace '    |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:69:30:69:36 | "" + "" | enclosingFunctionName | bad17 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:69:30:69:36 | "" + "" | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:69:30:69:36 | "" + "" | receiverName | s |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:73:20:73:22 | "'" | CalleeFlexibleAccessPath | s.indexOf |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:73:20:73:22 | "'" | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:73:20:73:22 | "'" | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:73:20:73:22 | "'" | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:73:20:73:22 | "'" | enclosingFunctionBody | s s indexOf ' 0 s s replace '  s |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:73:20:73:22 | "'" | enclosingFunctionName | good1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:73:20:73:22 | "'" | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:73:20:73:22 | "'" | receiverName | s |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:74:19:74:21 | "'" | CalleeFlexibleAccessPath | s.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:74:19:74:21 | "'" | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:74:19:74:21 | "'" | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:74:19:74:21 | "'" | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:74:19:74:21 | "'" | enclosingFunctionBody | s s indexOf ' 0 s s replace '  s |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:74:19:74:21 | "'" | enclosingFunctionName | good1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:74:19:74:21 | "'" | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:74:19:74:21 | "'" | receiverName | s |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:74:24:74:25 | "" | CalleeFlexibleAccessPath | s.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:74:24:74:25 | "" | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:74:24:74:25 | "" | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:74:24:74:25 | "" | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:74:24:74:25 | "" | enclosingFunctionBody | s s indexOf ' 0 s s replace '  s |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:74:24:74:25 | "" | enclosingFunctionName | good1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:74:24:74:25 | "" | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:74:24:74:25 | "" | receiverName | s |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:79:20:79:22 | "'" | CalleeFlexibleAccessPath | s.indexOf |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:79:20:79:22 | "'" | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:79:20:79:22 | "'" | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:79:20:79:22 | "'" | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:79:20:79:22 | "'" | enclosingFunctionBody | s s indexOf ' 0 s s replace /'/  s |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:79:20:79:22 | "'" | enclosingFunctionName | good2 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:79:20:79:22 | "'" | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:79:20:79:22 | "'" | receiverName | s |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:80:19:80:21 | /'/ | CalleeFlexibleAccessPath | s.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:80:19:80:21 | /'/ | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:80:19:80:21 | /'/ | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:80:19:80:21 | /'/ | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:80:19:80:21 | /'/ | enclosingFunctionBody | s s indexOf ' 0 s s replace /'/  s |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:80:19:80:21 | /'/ | enclosingFunctionName | good2 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:80:19:80:21 | /'/ | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:80:19:80:21 | /'/ | receiverName | s |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:80:24:80:25 | "" | CalleeFlexibleAccessPath | s.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:80:24:80:25 | "" | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:80:24:80:25 | "" | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:80:24:80:25 | "" | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:80:24:80:25 | "" | enclosingFunctionBody | s s indexOf ' 0 s s replace /'/  s |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:80:24:80:25 | "" | enclosingFunctionName | good2 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:80:24:80:25 | "" | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:80:24:80:25 | "" | receiverName | s |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:85:20:85:26 | "@user" | CalleeFlexibleAccessPath | s.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:85:20:85:26 | "@user" | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:85:20:85:26 | "@user" | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:85:20:85:26 | "@user" | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:85:20:85:26 | "@user" | enclosingFunctionBody | s s replace @user id10t |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:85:20:85:26 | "@user" | enclosingFunctionName | good3 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:85:20:85:26 | "@user" | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:85:20:85:26 | "@user" | receiverName | s |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:85:29:85:35 | "id10t" | CalleeFlexibleAccessPath | s.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:85:29:85:35 | "id10t" | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:85:29:85:35 | "id10t" | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:85:29:85:35 | "id10t" | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:85:29:85:35 | "id10t" | enclosingFunctionBody | s s replace @user id10t |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:85:29:85:35 | "id10t" | enclosingFunctionName | good3 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:85:29:85:35 | "id10t" | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:85:29:85:35 | "id10t" | receiverName | s |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:89:20:89:23 | /#/g | CalleeFlexibleAccessPath | s.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:89:20:89:23 | /#/g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:89:20:89:23 | /#/g | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:89:20:89:23 | /#/g | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:89:20:89:23 | /#/g | enclosingFunctionBody | s s replace /#/g \\d+ |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:89:20:89:23 | /#/g | enclosingFunctionName | good4 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:89:20:89:23 | /#/g | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:89:20:89:23 | /#/g | receiverName | s |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:89:26:89:31 | "\\\\d+" | CalleeFlexibleAccessPath | s.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:89:26:89:31 | "\\\\d+" | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:89:26:89:31 | "\\\\d+" | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:89:26:89:31 | "\\\\d+" | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:89:26:89:31 | "\\\\d+" | enclosingFunctionBody | s s replace /#/g \\d+ |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:89:26:89:31 | "\\\\d+" | enclosingFunctionName | good4 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:89:26:89:31 | "\\\\d+" | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:89:26:89:31 | "\\\\d+" | receiverName | s |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:93:20:93:24 | /\\\\/g | CalleeFlexibleAccessPath | s.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:93:20:93:24 | /\\\\/g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:93:20:93:24 | /\\\\/g | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:93:20:93:24 | /\\\\/g | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:93:20:93:24 | /\\\\/g | enclosingFunctionBody | s s replace /\\\\/g \\\\ replace /['"]/g \\$& |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:93:20:93:24 | /\\\\/g | enclosingFunctionName | good5 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:93:20:93:24 | /\\\\/g | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:93:20:93:24 | /\\\\/g | receiverName | s |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:93:27:93:32 | "\\\\\\\\" | CalleeFlexibleAccessPath | s.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:93:27:93:32 | "\\\\\\\\" | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:93:27:93:32 | "\\\\\\\\" | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:93:27:93:32 | "\\\\\\\\" | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:93:27:93:32 | "\\\\\\\\" | enclosingFunctionBody | s s replace /\\\\/g \\\\ replace /['"]/g \\$& |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:93:27:93:32 | "\\\\\\\\" | enclosingFunctionName | good5 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:93:27:93:32 | "\\\\\\\\" | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:93:27:93:32 | "\\\\\\\\" | receiverName | s |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:93:43:93:49 | /['"]/g | CalleeFlexibleAccessPath | s.replace().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:93:43:93:49 | /['"]/g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:93:43:93:49 | /['"]/g | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:93:43:93:49 | /['"]/g | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:93:43:93:49 | /['"]/g | enclosingFunctionBody | s s replace /\\\\/g \\\\ replace /['"]/g \\$& |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:93:43:93:49 | /['"]/g | enclosingFunctionName | good5 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:93:43:93:49 | /['"]/g | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:93:52:93:57 | "\\\\$&" | CalleeFlexibleAccessPath | s.replace().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:93:52:93:57 | "\\\\$&" | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:93:52:93:57 | "\\\\$&" | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:93:52:93:57 | "\\\\$&" | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:93:52:93:57 | "\\\\$&" | enclosingFunctionBody | s s replace /\\\\/g \\\\ replace /['"]/g \\$& |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:93:52:93:57 | "\\\\$&" | enclosingFunctionName | good5 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:93:52:93:57 | "\\\\$&" | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:97:20:97:26 | /[\\\\]/g | CalleeFlexibleAccessPath | s.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:97:20:97:26 | /[\\\\]/g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:97:20:97:26 | /[\\\\]/g | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:97:20:97:26 | /[\\\\]/g | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:97:20:97:26 | /[\\\\]/g | enclosingFunctionBody | s s replace /[\\\\]/g \\\\ replace /[\\"]/g \\" |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:97:20:97:26 | /[\\\\]/g | enclosingFunctionName | good6 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:97:20:97:26 | /[\\\\]/g | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:97:20:97:26 | /[\\\\]/g | receiverName | s |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:97:29:97:34 | '\\\\\\\\' | CalleeFlexibleAccessPath | s.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:97:29:97:34 | '\\\\\\\\' | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:97:29:97:34 | '\\\\\\\\' | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:97:29:97:34 | '\\\\\\\\' | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:97:29:97:34 | '\\\\\\\\' | enclosingFunctionBody | s s replace /[\\\\]/g \\\\ replace /[\\"]/g \\" |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:97:29:97:34 | '\\\\\\\\' | enclosingFunctionName | good6 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:97:29:97:34 | '\\\\\\\\' | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:97:29:97:34 | '\\\\\\\\' | receiverName | s |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:97:45:97:51 | /[\\"]/g | CalleeFlexibleAccessPath | s.replace().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:97:45:97:51 | /[\\"]/g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:97:45:97:51 | /[\\"]/g | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:97:45:97:51 | /[\\"]/g | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:97:45:97:51 | /[\\"]/g | enclosingFunctionBody | s s replace /[\\\\]/g \\\\ replace /[\\"]/g \\" |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:97:45:97:51 | /[\\"]/g | enclosingFunctionName | good6 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:97:45:97:51 | /[\\"]/g | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:97:54:97:58 | '\\\\"' | CalleeFlexibleAccessPath | s.replace().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:97:54:97:58 | '\\\\"' | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:97:54:97:58 | '\\\\"' | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:97:54:97:58 | '\\\\"' | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:97:54:97:58 | '\\\\"' | enclosingFunctionBody | s s replace /[\\\\]/g \\\\ replace /[\\"]/g \\" |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:97:54:97:58 | '\\\\"' | enclosingFunctionName | good6 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:97:54:97:58 | '\\\\"' | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:101:17:101:23 | /[\\\\]/g | CalleeFlexibleAccessPath | s.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:101:17:101:23 | /[\\\\]/g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:101:17:101:23 | /[\\\\]/g | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:101:17:101:23 | /[\\\\]/g | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:101:17:101:23 | /[\\\\]/g | enclosingFunctionBody | s s s replace /[\\\\]/g \\\\ s replace /[\\"]/g \\" |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:101:17:101:23 | /[\\\\]/g | enclosingFunctionName | good7 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:101:17:101:23 | /[\\\\]/g | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:101:17:101:23 | /[\\\\]/g | receiverName | s |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:101:26:101:31 | '\\\\\\\\' | CalleeFlexibleAccessPath | s.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:101:26:101:31 | '\\\\\\\\' | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:101:26:101:31 | '\\\\\\\\' | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:101:26:101:31 | '\\\\\\\\' | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:101:26:101:31 | '\\\\\\\\' | enclosingFunctionBody | s s s replace /[\\\\]/g \\\\ s replace /[\\"]/g \\" |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:101:26:101:31 | '\\\\\\\\' | enclosingFunctionName | good7 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:101:26:101:31 | '\\\\\\\\' | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:101:26:101:31 | '\\\\\\\\' | receiverName | s |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:102:20:102:26 | /[\\"]/g | CalleeFlexibleAccessPath | s.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:102:20:102:26 | /[\\"]/g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:102:20:102:26 | /[\\"]/g | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:102:20:102:26 | /[\\"]/g | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:102:20:102:26 | /[\\"]/g | enclosingFunctionBody | s s s replace /[\\\\]/g \\\\ s replace /[\\"]/g \\" |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:102:20:102:26 | /[\\"]/g | enclosingFunctionName | good7 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:102:20:102:26 | /[\\"]/g | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:102:20:102:26 | /[\\"]/g | receiverName | s |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:102:29:102:33 | '\\\\"' | CalleeFlexibleAccessPath | s.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:102:29:102:33 | '\\\\"' | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:102:29:102:33 | '\\\\"' | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:102:29:102:33 | '\\\\"' | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:102:29:102:33 | '\\\\"' | enclosingFunctionBody | s s s replace /[\\\\]/g \\\\ s replace /[\\"]/g \\" |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:102:29:102:33 | '\\\\"' | enclosingFunctionName | good7 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:102:29:102:33 | '\\\\"' | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:102:29:102:33 | '\\\\"' | receiverName | s |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:106:20:106:24 | /\\W/g | CalleeFlexibleAccessPath | s.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:106:20:106:24 | /\\W/g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:106:20:106:24 | /\\W/g | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:106:20:106:24 | /\\W/g | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:106:20:106:24 | /\\W/g | enclosingFunctionBody | s s replace /\\W/g \\$& |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:106:20:106:24 | /\\W/g | enclosingFunctionName | good8 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:106:20:106:24 | /\\W/g | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:106:20:106:24 | /\\W/g | receiverName | s |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:106:27:106:32 | '\\\\$&' | CalleeFlexibleAccessPath | s.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:106:27:106:32 | '\\\\$&' | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:106:27:106:32 | '\\\\$&' | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:106:27:106:32 | '\\\\$&' | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:106:27:106:32 | '\\\\$&' | enclosingFunctionBody | s s replace /\\W/g \\$& |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:106:27:106:32 | '\\\\$&' | enclosingFunctionName | good8 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:106:27:106:32 | '\\\\$&' | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:106:27:106:32 | '\\\\$&' | receiverName | s |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:110:20:110:29 | /[^\\w\\s]/g | CalleeFlexibleAccessPath | s.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:110:20:110:29 | /[^\\w\\s]/g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:110:20:110:29 | /[^\\w\\s]/g | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:110:20:110:29 | /[^\\w\\s]/g | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:110:20:110:29 | /[^\\w\\s]/g | enclosingFunctionBody | s s replace /[^\\w\\s]/g \\$& |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:110:20:110:29 | /[^\\w\\s]/g | enclosingFunctionName | good9 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:110:20:110:29 | /[^\\w\\s]/g | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:110:20:110:29 | /[^\\w\\s]/g | receiverName | s |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:110:32:110:37 | '\\\\$&' | CalleeFlexibleAccessPath | s.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:110:32:110:37 | '\\\\$&' | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:110:32:110:37 | '\\\\$&' | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:110:32:110:37 | '\\\\$&' | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:110:32:110:37 | '\\\\$&' | enclosingFunctionBody | s s replace /[^\\w\\s]/g \\$& |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:110:32:110:37 | '\\\\$&' | enclosingFunctionName | good9 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:110:32:110:37 | '\\\\$&' | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:110:32:110:37 | '\\\\$&' | receiverName | s |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:114:22:114:22 | s | CalleeFlexibleAccessPath | JSON.stringify |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:114:22:114:22 | s | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:114:22:114:22 | s | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:114:22:114:22 | s | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:114:22:114:22 | s | enclosingFunctionBody | s s JSON stringify s s s slice 1 1 s s replace /\\\\"/g " s s replace /'/g \\' ' s ' |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:114:22:114:22 | s | enclosingFunctionName | good10 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:114:22:114:22 | s | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:114:22:114:22 | s | receiverName | JSON |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:115:15:115:15 | 1 | CalleeFlexibleAccessPath | s.slice |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:115:15:115:15 | 1 | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:115:15:115:15 | 1 | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:115:15:115:15 | 1 | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:115:15:115:15 | 1 | enclosingFunctionBody | s s JSON stringify s s s slice 1 1 s s replace /\\\\"/g " s s replace /'/g \\' ' s ' |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:115:15:115:15 | 1 | enclosingFunctionName | good10 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:115:15:115:15 | 1 | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:115:15:115:15 | 1 | receiverName | s |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:115:18:115:19 | -1 | CalleeFlexibleAccessPath | s.slice |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:115:18:115:19 | -1 | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:115:18:115:19 | -1 | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:115:18:115:19 | -1 | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:115:18:115:19 | -1 | enclosingFunctionBody | s s JSON stringify s s s slice 1 1 s s replace /\\\\"/g " s s replace /'/g \\' ' s ' |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:115:18:115:19 | -1 | enclosingFunctionName | good10 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:115:18:115:19 | -1 | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:115:18:115:19 | -1 | receiverName | s |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:116:17:116:22 | /\\\\"/g | CalleeFlexibleAccessPath | s.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:116:17:116:22 | /\\\\"/g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:116:17:116:22 | /\\\\"/g | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:116:17:116:22 | /\\\\"/g | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:116:17:116:22 | /\\\\"/g | enclosingFunctionBody | s s JSON stringify s s s slice 1 1 s s replace /\\\\"/g " s s replace /'/g \\' ' s ' |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:116:17:116:22 | /\\\\"/g | enclosingFunctionName | good10 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:116:17:116:22 | /\\\\"/g | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:116:17:116:22 | /\\\\"/g | receiverName | s |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:116:25:116:27 | '"' | CalleeFlexibleAccessPath | s.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:116:25:116:27 | '"' | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:116:25:116:27 | '"' | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:116:25:116:27 | '"' | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:116:25:116:27 | '"' | enclosingFunctionBody | s s JSON stringify s s s slice 1 1 s s replace /\\\\"/g " s s replace /'/g \\' ' s ' |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:116:25:116:27 | '"' | enclosingFunctionName | good10 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:116:25:116:27 | '"' | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:116:25:116:27 | '"' | receiverName | s |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:117:17:117:20 | /'/g | CalleeFlexibleAccessPath | s.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:117:17:117:20 | /'/g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:117:17:117:20 | /'/g | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:117:17:117:20 | /'/g | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:117:17:117:20 | /'/g | enclosingFunctionBody | s s JSON stringify s s s slice 1 1 s s replace /\\\\"/g " s s replace /'/g \\' ' s ' |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:117:17:117:20 | /'/g | enclosingFunctionName | good10 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:117:17:117:20 | /'/g | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:117:17:117:20 | /'/g | receiverName | s |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:117:23:117:27 | "\\\\'" | CalleeFlexibleAccessPath | s.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:117:23:117:27 | "\\\\'" | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:117:23:117:27 | "\\\\'" | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:117:23:117:27 | "\\\\'" | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:117:23:117:27 | "\\\\'" | enclosingFunctionBody | s s JSON stringify s s s slice 1 1 s s replace /\\\\"/g " s s replace /'/g \\' ' s ' |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:117:23:117:27 | "\\\\'" | enclosingFunctionName | good10 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:117:23:117:27 | "\\\\'" | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:117:23:117:27 | "\\\\'" | receiverName | s |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:122:20:122:23 | /#/g | CalleeFlexibleAccessPath | s.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:122:20:122:23 | /#/g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:122:20:122:23 | /#/g | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:122:20:122:23 | /#/g | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:122:20:122:23 | /#/g | enclosingFunctionBody | s s replace /#/g \ud83d\udca9 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:122:20:122:23 | /#/g | enclosingFunctionName | flowifyComments |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:122:20:122:23 | /#/g | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:122:20:122:23 | /#/g | receiverName | s |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:122:26:122:29 | '\\u1f4a9\\udca9' | CalleeFlexibleAccessPath | s.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:122:26:122:29 | '\\u1f4a9\\udca9' | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:122:26:122:29 | '\\u1f4a9\\udca9' | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:122:26:122:29 | '\\u1f4a9\\udca9' | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:122:26:122:29 | '\\u1f4a9\\udca9' | enclosingFunctionBody | s s replace /#/g \ud83d\udca9 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:122:26:122:29 | '\\u1f4a9\\udca9' | enclosingFunctionName | flowifyComments |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:122:26:122:29 | '\\u1f4a9\\udca9' | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:122:26:122:29 | '\\u1f4a9\\udca9' | receiverName | s |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:126:20:126:23 | "%d" | CalleeFlexibleAccessPath | s.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:126:20:126:23 | "%d" | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:126:20:126:23 | "%d" | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:126:20:126:23 | "%d" | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:126:20:126:23 | "%d" | enclosingFunctionBody | s s replace %d 42 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:126:20:126:23 | "%d" | enclosingFunctionName | good11 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:126:20:126:23 | "%d" | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:126:20:126:23 | "%d" | receiverName | s |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:126:26:126:29 | "42" | CalleeFlexibleAccessPath | s.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:126:26:126:29 | "42" | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:126:26:126:29 | "42" | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:126:26:126:29 | "42" | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:126:26:126:29 | "42" | enclosingFunctionBody | s s replace %d 42 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:126:26:126:29 | "42" | enclosingFunctionName | good11 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:126:26:126:29 | "42" | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:126:26:126:29 | "42" | receiverName | s |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:130:12:130:14 | '[' | CalleeFlexibleAccessPath | s.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:130:12:130:14 | '[' | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:130:12:130:14 | '[' | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:130:12:130:14 | '[' | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:130:12:130:14 | '[' | enclosingFunctionBody | s s replace [  replace ]  s replace (  replace )  s replace {  replace }  s replace <  replace >  s replace [ \\[ replace ] \\] s replace { \\{ replace } \\} s s replace [  s s replace ]  s replace /{/  replace /}/  s replace ]  replace [  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:130:12:130:14 | '[' | enclosingFunctionName | good12 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:130:12:130:14 | '[' | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:130:12:130:14 | '[' | receiverName | s |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:130:17:130:18 | '' | CalleeFlexibleAccessPath | s.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:130:17:130:18 | '' | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:130:17:130:18 | '' | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:130:17:130:18 | '' | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:130:17:130:18 | '' | enclosingFunctionBody | s s replace [  replace ]  s replace (  replace )  s replace {  replace }  s replace <  replace >  s replace [ \\[ replace ] \\] s replace { \\{ replace } \\} s s replace [  s s replace ]  s replace /{/  replace /}/  s replace ]  replace [  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:130:17:130:18 | '' | enclosingFunctionName | good12 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:130:17:130:18 | '' | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:130:17:130:18 | '' | receiverName | s |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:130:29:130:31 | ']' | CalleeFlexibleAccessPath | s.replace().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:130:29:130:31 | ']' | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:130:29:130:31 | ']' | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:130:29:130:31 | ']' | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:130:29:130:31 | ']' | enclosingFunctionBody | s s replace [  replace ]  s replace (  replace )  s replace {  replace }  s replace <  replace >  s replace [ \\[ replace ] \\] s replace { \\{ replace } \\} s s replace [  s s replace ]  s replace /{/  replace /}/  s replace ]  replace [  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:130:29:130:31 | ']' | enclosingFunctionName | good12 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:130:29:130:31 | ']' | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:130:34:130:35 | '' | CalleeFlexibleAccessPath | s.replace().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:130:34:130:35 | '' | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:130:34:130:35 | '' | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:130:34:130:35 | '' | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:130:34:130:35 | '' | enclosingFunctionBody | s s replace [  replace ]  s replace (  replace )  s replace {  replace }  s replace <  replace >  s replace [ \\[ replace ] \\] s replace { \\{ replace } \\} s s replace [  s s replace ]  s replace /{/  replace /}/  s replace ]  replace [  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:130:34:130:35 | '' | enclosingFunctionName | good12 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:130:34:130:35 | '' | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:131:12:131:14 | '(' | CalleeFlexibleAccessPath | s.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:131:12:131:14 | '(' | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:131:12:131:14 | '(' | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:131:12:131:14 | '(' | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:131:12:131:14 | '(' | enclosingFunctionBody | s s replace [  replace ]  s replace (  replace )  s replace {  replace }  s replace <  replace >  s replace [ \\[ replace ] \\] s replace { \\{ replace } \\} s s replace [  s s replace ]  s replace /{/  replace /}/  s replace ]  replace [  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:131:12:131:14 | '(' | enclosingFunctionName | good12 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:131:12:131:14 | '(' | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:131:12:131:14 | '(' | receiverName | s |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:131:17:131:18 | '' | CalleeFlexibleAccessPath | s.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:131:17:131:18 | '' | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:131:17:131:18 | '' | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:131:17:131:18 | '' | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:131:17:131:18 | '' | enclosingFunctionBody | s s replace [  replace ]  s replace (  replace )  s replace {  replace }  s replace <  replace >  s replace [ \\[ replace ] \\] s replace { \\{ replace } \\} s s replace [  s s replace ]  s replace /{/  replace /}/  s replace ]  replace [  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:131:17:131:18 | '' | enclosingFunctionName | good12 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:131:17:131:18 | '' | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:131:17:131:18 | '' | receiverName | s |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:131:29:131:31 | ')' | CalleeFlexibleAccessPath | s.replace().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:131:29:131:31 | ')' | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:131:29:131:31 | ')' | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:131:29:131:31 | ')' | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:131:29:131:31 | ')' | enclosingFunctionBody | s s replace [  replace ]  s replace (  replace )  s replace {  replace }  s replace <  replace >  s replace [ \\[ replace ] \\] s replace { \\{ replace } \\} s s replace [  s s replace ]  s replace /{/  replace /}/  s replace ]  replace [  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:131:29:131:31 | ')' | enclosingFunctionName | good12 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:131:29:131:31 | ')' | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:131:34:131:35 | '' | CalleeFlexibleAccessPath | s.replace().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:131:34:131:35 | '' | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:131:34:131:35 | '' | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:131:34:131:35 | '' | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:131:34:131:35 | '' | enclosingFunctionBody | s s replace [  replace ]  s replace (  replace )  s replace {  replace }  s replace <  replace >  s replace [ \\[ replace ] \\] s replace { \\{ replace } \\} s s replace [  s s replace ]  s replace /{/  replace /}/  s replace ]  replace [  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:131:34:131:35 | '' | enclosingFunctionName | good12 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:131:34:131:35 | '' | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:132:12:132:14 | '{' | CalleeFlexibleAccessPath | s.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:132:12:132:14 | '{' | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:132:12:132:14 | '{' | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:132:12:132:14 | '{' | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:132:12:132:14 | '{' | enclosingFunctionBody | s s replace [  replace ]  s replace (  replace )  s replace {  replace }  s replace <  replace >  s replace [ \\[ replace ] \\] s replace { \\{ replace } \\} s s replace [  s s replace ]  s replace /{/  replace /}/  s replace ]  replace [  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:132:12:132:14 | '{' | enclosingFunctionName | good12 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:132:12:132:14 | '{' | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:132:12:132:14 | '{' | receiverName | s |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:132:17:132:18 | '' | CalleeFlexibleAccessPath | s.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:132:17:132:18 | '' | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:132:17:132:18 | '' | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:132:17:132:18 | '' | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:132:17:132:18 | '' | enclosingFunctionBody | s s replace [  replace ]  s replace (  replace )  s replace {  replace }  s replace <  replace >  s replace [ \\[ replace ] \\] s replace { \\{ replace } \\} s s replace [  s s replace ]  s replace /{/  replace /}/  s replace ]  replace [  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:132:17:132:18 | '' | enclosingFunctionName | good12 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:132:17:132:18 | '' | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:132:17:132:18 | '' | receiverName | s |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:132:29:132:31 | '}' | CalleeFlexibleAccessPath | s.replace().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:132:29:132:31 | '}' | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:132:29:132:31 | '}' | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:132:29:132:31 | '}' | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:132:29:132:31 | '}' | enclosingFunctionBody | s s replace [  replace ]  s replace (  replace )  s replace {  replace }  s replace <  replace >  s replace [ \\[ replace ] \\] s replace { \\{ replace } \\} s s replace [  s s replace ]  s replace /{/  replace /}/  s replace ]  replace [  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:132:29:132:31 | '}' | enclosingFunctionName | good12 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:132:29:132:31 | '}' | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:132:34:132:35 | '' | CalleeFlexibleAccessPath | s.replace().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:132:34:132:35 | '' | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:132:34:132:35 | '' | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:132:34:132:35 | '' | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:132:34:132:35 | '' | enclosingFunctionBody | s s replace [  replace ]  s replace (  replace )  s replace {  replace }  s replace <  replace >  s replace [ \\[ replace ] \\] s replace { \\{ replace } \\} s s replace [  s s replace ]  s replace /{/  replace /}/  s replace ]  replace [  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:132:34:132:35 | '' | enclosingFunctionName | good12 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:132:34:132:35 | '' | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:133:12:133:14 | '<' | CalleeFlexibleAccessPath | s.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:133:12:133:14 | '<' | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:133:12:133:14 | '<' | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:133:12:133:14 | '<' | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:133:12:133:14 | '<' | enclosingFunctionBody | s s replace [  replace ]  s replace (  replace )  s replace {  replace }  s replace <  replace >  s replace [ \\[ replace ] \\] s replace { \\{ replace } \\} s s replace [  s s replace ]  s replace /{/  replace /}/  s replace ]  replace [  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:133:12:133:14 | '<' | enclosingFunctionName | good12 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:133:12:133:14 | '<' | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:133:12:133:14 | '<' | receiverName | s |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:133:17:133:18 | '' | CalleeFlexibleAccessPath | s.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:133:17:133:18 | '' | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:133:17:133:18 | '' | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:133:17:133:18 | '' | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:133:17:133:18 | '' | enclosingFunctionBody | s s replace [  replace ]  s replace (  replace )  s replace {  replace }  s replace <  replace >  s replace [ \\[ replace ] \\] s replace { \\{ replace } \\} s s replace [  s s replace ]  s replace /{/  replace /}/  s replace ]  replace [  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:133:17:133:18 | '' | enclosingFunctionName | good12 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:133:17:133:18 | '' | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:133:17:133:18 | '' | receiverName | s |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:133:29:133:31 | '>' | CalleeFlexibleAccessPath | s.replace().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:133:29:133:31 | '>' | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:133:29:133:31 | '>' | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:133:29:133:31 | '>' | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:133:29:133:31 | '>' | enclosingFunctionBody | s s replace [  replace ]  s replace (  replace )  s replace {  replace }  s replace <  replace >  s replace [ \\[ replace ] \\] s replace { \\{ replace } \\} s s replace [  s s replace ]  s replace /{/  replace /}/  s replace ]  replace [  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:133:29:133:31 | '>' | enclosingFunctionName | good12 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:133:29:133:31 | '>' | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:133:34:133:35 | '' | CalleeFlexibleAccessPath | s.replace().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:133:34:133:35 | '' | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:133:34:133:35 | '' | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:133:34:133:35 | '' | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:133:34:133:35 | '' | enclosingFunctionBody | s s replace [  replace ]  s replace (  replace )  s replace {  replace }  s replace <  replace >  s replace [ \\[ replace ] \\] s replace { \\{ replace } \\} s s replace [  s s replace ]  s replace /{/  replace /}/  s replace ]  replace [  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:133:34:133:35 | '' | enclosingFunctionName | good12 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:133:34:133:35 | '' | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:135:12:135:14 | '[' | CalleeFlexibleAccessPath | s.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:135:12:135:14 | '[' | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:135:12:135:14 | '[' | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:135:12:135:14 | '[' | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:135:12:135:14 | '[' | enclosingFunctionBody | s s replace [  replace ]  s replace (  replace )  s replace {  replace }  s replace <  replace >  s replace [ \\[ replace ] \\] s replace { \\{ replace } \\} s s replace [  s s replace ]  s replace /{/  replace /}/  s replace ]  replace [  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:135:12:135:14 | '[' | enclosingFunctionName | good12 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:135:12:135:14 | '[' | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:135:12:135:14 | '[' | receiverName | s |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:135:17:135:21 | '\\\\[' | CalleeFlexibleAccessPath | s.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:135:17:135:21 | '\\\\[' | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:135:17:135:21 | '\\\\[' | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:135:17:135:21 | '\\\\[' | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:135:17:135:21 | '\\\\[' | enclosingFunctionBody | s s replace [  replace ]  s replace (  replace )  s replace {  replace }  s replace <  replace >  s replace [ \\[ replace ] \\] s replace { \\{ replace } \\} s s replace [  s s replace ]  s replace /{/  replace /}/  s replace ]  replace [  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:135:17:135:21 | '\\\\[' | enclosingFunctionName | good12 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:135:17:135:21 | '\\\\[' | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:135:17:135:21 | '\\\\[' | receiverName | s |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:135:32:135:34 | ']' | CalleeFlexibleAccessPath | s.replace().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:135:32:135:34 | ']' | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:135:32:135:34 | ']' | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:135:32:135:34 | ']' | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:135:32:135:34 | ']' | enclosingFunctionBody | s s replace [  replace ]  s replace (  replace )  s replace {  replace }  s replace <  replace >  s replace [ \\[ replace ] \\] s replace { \\{ replace } \\} s s replace [  s s replace ]  s replace /{/  replace /}/  s replace ]  replace [  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:135:32:135:34 | ']' | enclosingFunctionName | good12 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:135:32:135:34 | ']' | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:135:37:135:41 | '\\\\]' | CalleeFlexibleAccessPath | s.replace().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:135:37:135:41 | '\\\\]' | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:135:37:135:41 | '\\\\]' | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:135:37:135:41 | '\\\\]' | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:135:37:135:41 | '\\\\]' | enclosingFunctionBody | s s replace [  replace ]  s replace (  replace )  s replace {  replace }  s replace <  replace >  s replace [ \\[ replace ] \\] s replace { \\{ replace } \\} s s replace [  s s replace ]  s replace /{/  replace /}/  s replace ]  replace [  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:135:37:135:41 | '\\\\]' | enclosingFunctionName | good12 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:135:37:135:41 | '\\\\]' | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:136:12:136:14 | '{' | CalleeFlexibleAccessPath | s.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:136:12:136:14 | '{' | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:136:12:136:14 | '{' | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:136:12:136:14 | '{' | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:136:12:136:14 | '{' | enclosingFunctionBody | s s replace [  replace ]  s replace (  replace )  s replace {  replace }  s replace <  replace >  s replace [ \\[ replace ] \\] s replace { \\{ replace } \\} s s replace [  s s replace ]  s replace /{/  replace /}/  s replace ]  replace [  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:136:12:136:14 | '{' | enclosingFunctionName | good12 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:136:12:136:14 | '{' | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:136:12:136:14 | '{' | receiverName | s |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:136:17:136:21 | '\\\\{' | CalleeFlexibleAccessPath | s.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:136:17:136:21 | '\\\\{' | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:136:17:136:21 | '\\\\{' | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:136:17:136:21 | '\\\\{' | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:136:17:136:21 | '\\\\{' | enclosingFunctionBody | s s replace [  replace ]  s replace (  replace )  s replace {  replace }  s replace <  replace >  s replace [ \\[ replace ] \\] s replace { \\{ replace } \\} s s replace [  s s replace ]  s replace /{/  replace /}/  s replace ]  replace [  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:136:17:136:21 | '\\\\{' | enclosingFunctionName | good12 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:136:17:136:21 | '\\\\{' | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:136:17:136:21 | '\\\\{' | receiverName | s |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:136:32:136:34 | '}' | CalleeFlexibleAccessPath | s.replace().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:136:32:136:34 | '}' | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:136:32:136:34 | '}' | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:136:32:136:34 | '}' | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:136:32:136:34 | '}' | enclosingFunctionBody | s s replace [  replace ]  s replace (  replace )  s replace {  replace }  s replace <  replace >  s replace [ \\[ replace ] \\] s replace { \\{ replace } \\} s s replace [  s s replace ]  s replace /{/  replace /}/  s replace ]  replace [  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:136:32:136:34 | '}' | enclosingFunctionName | good12 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:136:32:136:34 | '}' | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:136:37:136:41 | '\\\\}' | CalleeFlexibleAccessPath | s.replace().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:136:37:136:41 | '\\\\}' | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:136:37:136:41 | '\\\\}' | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:136:37:136:41 | '\\\\}' | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:136:37:136:41 | '\\\\}' | enclosingFunctionBody | s s replace [  replace ]  s replace (  replace )  s replace {  replace }  s replace <  replace >  s replace [ \\[ replace ] \\] s replace { \\{ replace } \\} s s replace [  s s replace ]  s replace /{/  replace /}/  s replace ]  replace [  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:136:37:136:41 | '\\\\}' | enclosingFunctionName | good12 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:136:37:136:41 | '\\\\}' | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:138:16:138:18 | '[' | CalleeFlexibleAccessPath | s.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:138:16:138:18 | '[' | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:138:16:138:18 | '[' | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:138:16:138:18 | '[' | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:138:16:138:18 | '[' | enclosingFunctionBody | s s replace [  replace ]  s replace (  replace )  s replace {  replace }  s replace <  replace >  s replace [ \\[ replace ] \\] s replace { \\{ replace } \\} s s replace [  s s replace ]  s replace /{/  replace /}/  s replace ]  replace [  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:138:16:138:18 | '[' | enclosingFunctionName | good12 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:138:16:138:18 | '[' | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:138:16:138:18 | '[' | receiverName | s |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:138:21:138:22 | '' | CalleeFlexibleAccessPath | s.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:138:21:138:22 | '' | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:138:21:138:22 | '' | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:138:21:138:22 | '' | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:138:21:138:22 | '' | enclosingFunctionBody | s s replace [  replace ]  s replace (  replace )  s replace {  replace }  s replace <  replace >  s replace [ \\[ replace ] \\] s replace { \\{ replace } \\} s s replace [  s s replace ]  s replace /{/  replace /}/  s replace ]  replace [  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:138:21:138:22 | '' | enclosingFunctionName | good12 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:138:21:138:22 | '' | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:138:21:138:22 | '' | receiverName | s |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:139:16:139:18 | ']' | CalleeFlexibleAccessPath | s.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:139:16:139:18 | ']' | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:139:16:139:18 | ']' | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:139:16:139:18 | ']' | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:139:16:139:18 | ']' | enclosingFunctionBody | s s replace [  replace ]  s replace (  replace )  s replace {  replace }  s replace <  replace >  s replace [ \\[ replace ] \\] s replace { \\{ replace } \\} s s replace [  s s replace ]  s replace /{/  replace /}/  s replace ]  replace [  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:139:16:139:18 | ']' | enclosingFunctionName | good12 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:139:16:139:18 | ']' | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:139:16:139:18 | ']' | receiverName | s |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:139:21:139:22 | '' | CalleeFlexibleAccessPath | s.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:139:21:139:22 | '' | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:139:21:139:22 | '' | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:139:21:139:22 | '' | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:139:21:139:22 | '' | enclosingFunctionBody | s s replace [  replace ]  s replace (  replace )  s replace {  replace }  s replace <  replace >  s replace [ \\[ replace ] \\] s replace { \\{ replace } \\} s s replace [  s s replace ]  s replace /{/  replace /}/  s replace ]  replace [  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:139:21:139:22 | '' | enclosingFunctionName | good12 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:139:21:139:22 | '' | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:139:21:139:22 | '' | receiverName | s |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:140:12:140:14 | /{/ | CalleeFlexibleAccessPath | s.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:140:12:140:14 | /{/ | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:140:12:140:14 | /{/ | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:140:12:140:14 | /{/ | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:140:12:140:14 | /{/ | enclosingFunctionBody | s s replace [  replace ]  s replace (  replace )  s replace {  replace }  s replace <  replace >  s replace [ \\[ replace ] \\] s replace { \\{ replace } \\} s s replace [  s s replace ]  s replace /{/  replace /}/  s replace ]  replace [  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:140:12:140:14 | /{/ | enclosingFunctionName | good12 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:140:12:140:14 | /{/ | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:140:12:140:14 | /{/ | receiverName | s |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:140:17:140:18 | '' | CalleeFlexibleAccessPath | s.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:140:17:140:18 | '' | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:140:17:140:18 | '' | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:140:17:140:18 | '' | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:140:17:140:18 | '' | enclosingFunctionBody | s s replace [  replace ]  s replace (  replace )  s replace {  replace }  s replace <  replace >  s replace [ \\[ replace ] \\] s replace { \\{ replace } \\} s s replace [  s s replace ]  s replace /{/  replace /}/  s replace ]  replace [  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:140:17:140:18 | '' | enclosingFunctionName | good12 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:140:17:140:18 | '' | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:140:17:140:18 | '' | receiverName | s |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:140:29:140:31 | /}/ | CalleeFlexibleAccessPath | s.replace().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:140:29:140:31 | /}/ | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:140:29:140:31 | /}/ | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:140:29:140:31 | /}/ | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:140:29:140:31 | /}/ | enclosingFunctionBody | s s replace [  replace ]  s replace (  replace )  s replace {  replace }  s replace <  replace >  s replace [ \\[ replace ] \\] s replace { \\{ replace } \\} s s replace [  s s replace ]  s replace /{/  replace /}/  s replace ]  replace [  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:140:29:140:31 | /}/ | enclosingFunctionName | good12 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:140:29:140:31 | /}/ | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:140:34:140:35 | '' | CalleeFlexibleAccessPath | s.replace().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:140:34:140:35 | '' | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:140:34:140:35 | '' | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:140:34:140:35 | '' | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:140:34:140:35 | '' | enclosingFunctionBody | s s replace [  replace ]  s replace (  replace )  s replace {  replace }  s replace <  replace >  s replace [ \\[ replace ] \\] s replace { \\{ replace } \\} s s replace [  s s replace ]  s replace /{/  replace /}/  s replace ]  replace [  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:140:34:140:35 | '' | enclosingFunctionName | good12 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:140:34:140:35 | '' | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:141:12:141:14 | ']' | CalleeFlexibleAccessPath | s.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:141:12:141:14 | ']' | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:141:12:141:14 | ']' | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:141:12:141:14 | ']' | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:141:12:141:14 | ']' | enclosingFunctionBody | s s replace [  replace ]  s replace (  replace )  s replace {  replace }  s replace <  replace >  s replace [ \\[ replace ] \\] s replace { \\{ replace } \\} s s replace [  s s replace ]  s replace /{/  replace /}/  s replace ]  replace [  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:141:12:141:14 | ']' | enclosingFunctionName | good12 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:141:12:141:14 | ']' | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:141:12:141:14 | ']' | receiverName | s |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:141:17:141:18 | '' | CalleeFlexibleAccessPath | s.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:141:17:141:18 | '' | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:141:17:141:18 | '' | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:141:17:141:18 | '' | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:141:17:141:18 | '' | enclosingFunctionBody | s s replace [  replace ]  s replace (  replace )  s replace {  replace }  s replace <  replace >  s replace [ \\[ replace ] \\] s replace { \\{ replace } \\} s s replace [  s s replace ]  s replace /{/  replace /}/  s replace ]  replace [  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:141:17:141:18 | '' | enclosingFunctionName | good12 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:141:17:141:18 | '' | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:141:17:141:18 | '' | receiverName | s |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:141:29:141:31 | '[' | CalleeFlexibleAccessPath | s.replace().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:141:29:141:31 | '[' | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:141:29:141:31 | '[' | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:141:29:141:31 | '[' | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:141:29:141:31 | '[' | enclosingFunctionBody | s s replace [  replace ]  s replace (  replace )  s replace {  replace }  s replace <  replace >  s replace [ \\[ replace ] \\] s replace { \\{ replace } \\} s s replace [  s s replace ]  s replace /{/  replace /}/  s replace ]  replace [  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:141:29:141:31 | '[' | enclosingFunctionName | good12 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:141:29:141:31 | '[' | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:141:34:141:35 | '' | CalleeFlexibleAccessPath | s.replace().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:141:34:141:35 | '' | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:141:34:141:35 | '' | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:141:34:141:35 | '' | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:141:34:141:35 | '' | enclosingFunctionBody | s s replace [  replace ]  s replace (  replace )  s replace {  replace }  s replace <  replace >  s replace [ \\[ replace ] \\] s replace { \\{ replace } \\} s s replace [  s s replace ]  s replace /{/  replace /}/  s replace ]  replace [  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:141:34:141:35 | '' | enclosingFunctionName | good12 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:141:34:141:35 | '' | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:146:10:146:24 | "child_process" | CalleeFlexibleAccessPath | require |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:146:10:146:24 | "child_process" | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:146:10:146:24 | "child_process" | calleeImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:146:10:146:24 | "child_process" | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:146:10:146:24 | "child_process" | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:146:10:146:24 | "child_process" | enclosingFunctionBody | s require child_process execSync which emacs toString replace \n  x replace \n  replace x y x replace x y replace \n  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:146:10:146:24 | "child_process" | enclosingFunctionName | newlines |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:146:10:146:24 | "child_process" | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:146:36:146:48 | "which emacs" | CalleeFlexibleAccessPath | import(!).execSync |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:146:36:146:48 | "which emacs" | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:146:36:146:48 | "which emacs" | calleeImports | child_process |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:146:36:146:48 | "which emacs" | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:146:36:146:48 | "which emacs" | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:146:36:146:48 | "which emacs" | enclosingFunctionBody | s require child_process execSync which emacs toString replace \n  x replace \n  replace x y x replace x y replace \n  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:146:36:146:48 | "which emacs" | enclosingFunctionName | newlines |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:146:36:146:48 | "which emacs" | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:146:70:146:73 | "\\n" | CalleeFlexibleAccessPath | import(!).execSync().toString().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:146:70:146:73 | "\\n" | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:146:70:146:73 | "\\n" | calleeImports | child_process |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:146:70:146:73 | "\\n" | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:146:70:146:73 | "\\n" | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:146:70:146:73 | "\\n" | enclosingFunctionBody | s require child_process execSync which emacs toString replace \n  x replace \n  replace x y x replace x y replace \n  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:146:70:146:73 | "\\n" | enclosingFunctionName | newlines |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:146:70:146:73 | "\\n" | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:146:76:146:77 | "" | CalleeFlexibleAccessPath | import(!).execSync().toString().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:146:76:146:77 | "" | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:146:76:146:77 | "" | calleeImports | child_process |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:146:76:146:77 | "" | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:146:76:146:77 | "" | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:146:76:146:77 | "" | enclosingFunctionBody | s require child_process execSync which emacs toString replace \n  x replace \n  replace x y x replace x y replace \n  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:146:76:146:77 | "" | enclosingFunctionName | newlines |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:146:76:146:77 | "" | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:148:12:148:15 | "\\n" | CalleeFlexibleAccessPath | x.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:148:12:148:15 | "\\n" | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:148:12:148:15 | "\\n" | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:148:12:148:15 | "\\n" | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:148:12:148:15 | "\\n" | enclosingFunctionBody | s require child_process execSync which emacs toString replace \n  x replace \n  replace x y x replace x y replace \n  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:148:12:148:15 | "\\n" | enclosingFunctionName | newlines |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:148:12:148:15 | "\\n" | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:148:12:148:15 | "\\n" | receiverName | x |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:148:18:148:19 | "" | CalleeFlexibleAccessPath | x.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:148:18:148:19 | "" | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:148:18:148:19 | "" | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:148:18:148:19 | "" | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:148:18:148:19 | "" | enclosingFunctionBody | s require child_process execSync which emacs toString replace \n  x replace \n  replace x y x replace x y replace \n  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:148:18:148:19 | "" | enclosingFunctionName | newlines |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:148:18:148:19 | "" | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:148:18:148:19 | "" | receiverName | x |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:148:30:148:30 | x | CalleeFlexibleAccessPath | x.replace().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:148:30:148:30 | x | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:148:30:148:30 | x | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:148:30:148:30 | x | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:148:30:148:30 | x | enclosingFunctionBody | s require child_process execSync which emacs toString replace \n  x replace \n  replace x y x replace x y replace \n  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:148:30:148:30 | x | enclosingFunctionName | newlines |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:148:30:148:30 | x | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:148:33:148:33 | y | CalleeFlexibleAccessPath | x.replace().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:148:33:148:33 | y | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:148:33:148:33 | y | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:148:33:148:33 | y | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:148:33:148:33 | y | enclosingFunctionBody | s require child_process execSync which emacs toString replace \n  x replace \n  replace x y x replace x y replace \n  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:148:33:148:33 | y | enclosingFunctionName | newlines |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:148:33:148:33 | y | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:149:12:149:12 | x | CalleeFlexibleAccessPath | x.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:149:12:149:12 | x | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:149:12:149:12 | x | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:149:12:149:12 | x | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:149:12:149:12 | x | enclosingFunctionBody | s require child_process execSync which emacs toString replace \n  x replace \n  replace x y x replace x y replace \n  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:149:12:149:12 | x | enclosingFunctionName | newlines |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:149:12:149:12 | x | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:149:12:149:12 | x | receiverName | x |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:149:15:149:15 | y | CalleeFlexibleAccessPath | x.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:149:15:149:15 | y | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:149:15:149:15 | y | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:149:15:149:15 | y | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:149:15:149:15 | y | enclosingFunctionBody | s require child_process execSync which emacs toString replace \n  x replace \n  replace x y x replace x y replace \n  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:149:15:149:15 | y | enclosingFunctionName | newlines |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:149:15:149:15 | y | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:149:15:149:15 | y | receiverName | x |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:149:26:149:29 | "\\n" | CalleeFlexibleAccessPath | x.replace().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:149:26:149:29 | "\\n" | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:149:26:149:29 | "\\n" | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:149:26:149:29 | "\\n" | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:149:26:149:29 | "\\n" | enclosingFunctionBody | s require child_process execSync which emacs toString replace \n  x replace \n  replace x y x replace x y replace \n  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:149:26:149:29 | "\\n" | enclosingFunctionName | newlines |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:149:26:149:29 | "\\n" | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:149:32:149:33 | "" | CalleeFlexibleAccessPath | x.replace().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:149:32:149:33 | "" | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:149:32:149:33 | "" | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:149:32:149:33 | "" | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:149:32:149:33 | "" | enclosingFunctionBody | s require child_process execSync which emacs toString replace \n  x replace \n  replace x y x replace x y replace \n  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:149:32:149:33 | "" | enclosingFunctionName | newlines |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:149:32:149:33 | "" | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:152:9:152:20 | '/some/path' | CalleeFlexibleAccessPath | app.get |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:152:9:152:20 | '/some/path' | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:152:9:152:20 | '/some/path' | calleeImports | express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:152:9:152:20 | '/some/path' | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:152:9:152:20 | '/some/path' | contextSurroundingFunctionParameters |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:152:9:152:20 | '/some/path' | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:152:9:152:20 | '/some/path' | receiverName | app |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:152:23:189:1 | functio ... ted);\\n} | CalleeFlexibleAccessPath | app.get |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:152:23:189:1 | functio ... ted);\\n} | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:152:23:189:1 | functio ... ted);\\n} | calleeImports | express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:152:23:189:1 | functio ... ted);\\n} | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:152:23:189:1 | functio ... ted);\\n} | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:152:23:189:1 | functio ... ted);\\n} | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:152:23:189:1 | functio ... ted);\\n} | receiverName | app |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:153:29:153:31 | "p" | CalleeFlexibleAccessPath | req.param |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:153:29:153:31 | "p" | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:153:29:153:31 | "p" | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:153:29:153:31 | "p" | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:153:29:153:31 | "p" | enclosingFunctionBody | req res untrusted req param p bad1 untrusted bad2 untrusted bad3 untrusted bad4 untrusted bad5 untrusted bad6 untrusted bad7 untrusted bad8 untrusted bad9 untrusted bad10 untrusted bad11 untrusted bad12 untrusted bad13 untrusted bad14 untrusted bad15 untrusted bad16 untrusted bad17 untrusted good1 untrusted good2 untrusted good3 untrusted good4 untrusted good5 untrusted good6 untrusted good7 untrusted good8 untrusted good9 untrusted good10 untrusted flowifyComments untrusted good11 untrusted good12 untrusted |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:153:29:153:31 | "p" | enclosingFunctionName | app.get#functionalargument |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:153:29:153:31 | "p" | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:153:29:153:31 | "p" | receiverName | req |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:193:19:193:26 | indirect | CalleeFlexibleAccessPath | s.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:193:19:193:26 | indirect | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:193:19:193:26 | indirect | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:193:19:193:26 | indirect | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:193:19:193:26 | indirect | enclosingFunctionBody | s indirect /'/ s replace indirect  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:193:19:193:26 | indirect | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:193:19:193:26 | indirect | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:193:19:193:26 | indirect | receiverName | s |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:193:29:193:30 | "" | CalleeFlexibleAccessPath | s.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:193:29:193:30 | "" | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:193:29:193:30 | "" | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:193:29:193:30 | "" | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:193:29:193:30 | "" | enclosingFunctionBody | s indirect /'/ s replace indirect  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:193:29:193:30 | "" | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:193:29:193:30 | "" | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:193:29:193:30 | "" | receiverName | s |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:197:12:197:14 | '"' | CalleeFlexibleAccessPath | s.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:197:12:197:14 | '"' | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:197:12:197:14 | '"' | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:197:12:197:14 | '"' | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:197:12:197:14 | '"' | enclosingFunctionBody | s s replace "  replace "  s replace '  replace '  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:197:12:197:14 | '"' | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:197:12:197:14 | '"' | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:197:12:197:14 | '"' | receiverName | s |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:197:17:197:18 | '' | CalleeFlexibleAccessPath | s.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:197:17:197:18 | '' | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:197:17:197:18 | '' | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:197:17:197:18 | '' | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:197:17:197:18 | '' | enclosingFunctionBody | s s replace "  replace "  s replace '  replace '  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:197:17:197:18 | '' | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:197:17:197:18 | '' | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:197:17:197:18 | '' | receiverName | s |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:197:29:197:31 | '"' | CalleeFlexibleAccessPath | s.replace().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:197:29:197:31 | '"' | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:197:29:197:31 | '"' | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:197:29:197:31 | '"' | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:197:29:197:31 | '"' | enclosingFunctionBody | s s replace "  replace "  s replace '  replace '  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:197:29:197:31 | '"' | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:197:29:197:31 | '"' | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:197:34:197:35 | '' | CalleeFlexibleAccessPath | s.replace().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:197:34:197:35 | '' | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:197:34:197:35 | '' | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:197:34:197:35 | '' | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:197:34:197:35 | '' | enclosingFunctionBody | s s replace "  replace "  s replace '  replace '  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:197:34:197:35 | '' | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:197:34:197:35 | '' | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:198:12:198:14 | "'" | CalleeFlexibleAccessPath | s.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:198:12:198:14 | "'" | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:198:12:198:14 | "'" | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:198:12:198:14 | "'" | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:198:12:198:14 | "'" | enclosingFunctionBody | s s replace "  replace "  s replace '  replace '  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:198:12:198:14 | "'" | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:198:12:198:14 | "'" | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:198:12:198:14 | "'" | receiverName | s |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:198:17:198:18 | "" | CalleeFlexibleAccessPath | s.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:198:17:198:18 | "" | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:198:17:198:18 | "" | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:198:17:198:18 | "" | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:198:17:198:18 | "" | enclosingFunctionBody | s s replace "  replace "  s replace '  replace '  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:198:17:198:18 | "" | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:198:17:198:18 | "" | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:198:17:198:18 | "" | receiverName | s |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:198:29:198:31 | "'" | CalleeFlexibleAccessPath | s.replace().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:198:29:198:31 | "'" | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:198:29:198:31 | "'" | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:198:29:198:31 | "'" | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:198:29:198:31 | "'" | enclosingFunctionBody | s s replace "  replace "  s replace '  replace '  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:198:29:198:31 | "'" | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:198:29:198:31 | "'" | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:198:34:198:35 | "" | CalleeFlexibleAccessPath | s.replace().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:198:34:198:35 | "" | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:198:34:198:35 | "" | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:198:34:198:35 | "" | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:198:34:198:35 | "" | enclosingFunctionBody | s s replace "  replace "  s replace '  replace '  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:198:34:198:35 | "" | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:198:34:198:35 | "" | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:202:20:202:25 | "/../" | CalleeFlexibleAccessPath | p.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:202:20:202:25 | "/../" | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:202:20:202:25 | "/../" | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:202:20:202:25 | "/../" | contextSurroundingFunctionParameters | (p) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:202:20:202:25 | "/../" | enclosingFunctionBody | p p replace /../  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:202:20:202:25 | "/../" | enclosingFunctionName | bad18 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:202:20:202:25 | "/../" | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:202:20:202:25 | "/../" | receiverName | p |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:202:28:202:29 | "" | CalleeFlexibleAccessPath | p.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:202:28:202:29 | "" | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:202:28:202:29 | "" | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:202:28:202:29 | "" | contextSurroundingFunctionParameters | (p) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:202:28:202:29 | "" | enclosingFunctionBody | p p replace /../  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:202:28:202:29 | "" | enclosingFunctionName | bad18 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:202:28:202:29 | "" | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:202:28:202:29 | "" | receiverName | p |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:206:14:206:20 | /[<>]/g | CalleeFlexibleAccessPath | s().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:206:14:206:20 | /[<>]/g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:206:14:206:20 | /[<>]/g | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:206:14:206:20 | /[<>]/g | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:206:14:206:20 | /[<>]/g | enclosingFunctionBody | s s replace /[<>]/g  s replace /[<>&]/g  s replace /[<>"]/g  s replace /</g  replace />/g  s replace /</g  replace />/g  replace /&/g  s replace /</g  replace /&/g  replace />/g  s replace /&/g  replace />/g  replace /</g  s s replace /</g  s s replace />/g  s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /"/g &#34; s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /'/g &#39; s replace /</g &lt; replace />/g &gt replace RE match s replace /[<>'"&]/g  s replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /&(?![\\w\\#]+;)/g &amp; s replace encode /&(?!#?\\w+;)/g /&/g &amp; replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /'/g &apos; s replace /[\\\\/:\\*\\?"<>\\\|]/g  s replace /[<>]/g _ s replace /&/g &gt; s replace /[\\#\\%4\\/\\-\\~\\>8\\_\\@0\\!\\&3\\[651d\\=e7fA2D\\(aFBb]/g  s replace /[<>]/g  replace /[^a-z]/g  s replace /[<>]/g  replace /[^abc]/g  s replace /[<>]/g  replace /[ -~]/g  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:206:14:206:20 | /[<>]/g | enclosingFunctionName | typicalBadHtmlSanitizers |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:206:14:206:20 | /[<>]/g | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:206:22:206:23 | '' | CalleeFlexibleAccessPath | s().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:206:22:206:23 | '' | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:206:22:206:23 | '' | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:206:22:206:23 | '' | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:206:22:206:23 | '' | enclosingFunctionBody | s s replace /[<>]/g  s replace /[<>&]/g  s replace /[<>"]/g  s replace /</g  replace />/g  s replace /</g  replace />/g  replace /&/g  s replace /</g  replace /&/g  replace />/g  s replace /&/g  replace />/g  replace /</g  s s replace /</g  s s replace />/g  s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /"/g &#34; s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /'/g &#39; s replace /</g &lt; replace />/g &gt replace RE match s replace /[<>'"&]/g  s replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /&(?![\\w\\#]+;)/g &amp; s replace encode /&(?!#?\\w+;)/g /&/g &amp; replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /'/g &apos; s replace /[\\\\/:\\*\\?"<>\\\|]/g  s replace /[<>]/g _ s replace /&/g &gt; s replace /[\\#\\%4\\/\\-\\~\\>8\\_\\@0\\!\\&3\\[651d\\=e7fA2D\\(aFBb]/g  s replace /[<>]/g  replace /[^a-z]/g  s replace /[<>]/g  replace /[^abc]/g  s replace /[<>]/g  replace /[ -~]/g  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:206:22:206:23 | '' | enclosingFunctionName | typicalBadHtmlSanitizers |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:206:22:206:23 | '' | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:207:14:207:21 | /[<>&]/g | CalleeFlexibleAccessPath | s().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:207:14:207:21 | /[<>&]/g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:207:14:207:21 | /[<>&]/g | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:207:14:207:21 | /[<>&]/g | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:207:14:207:21 | /[<>&]/g | enclosingFunctionBody | s s replace /[<>]/g  s replace /[<>&]/g  s replace /[<>"]/g  s replace /</g  replace />/g  s replace /</g  replace />/g  replace /&/g  s replace /</g  replace /&/g  replace />/g  s replace /&/g  replace />/g  replace /</g  s s replace /</g  s s replace />/g  s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /"/g &#34; s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /'/g &#39; s replace /</g &lt; replace />/g &gt replace RE match s replace /[<>'"&]/g  s replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /&(?![\\w\\#]+;)/g &amp; s replace encode /&(?!#?\\w+;)/g /&/g &amp; replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /'/g &apos; s replace /[\\\\/:\\*\\?"<>\\\|]/g  s replace /[<>]/g _ s replace /&/g &gt; s replace /[\\#\\%4\\/\\-\\~\\>8\\_\\@0\\!\\&3\\[651d\\=e7fA2D\\(aFBb]/g  s replace /[<>]/g  replace /[^a-z]/g  s replace /[<>]/g  replace /[^abc]/g  s replace /[<>]/g  replace /[ -~]/g  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:207:14:207:21 | /[<>&]/g | enclosingFunctionName | typicalBadHtmlSanitizers |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:207:14:207:21 | /[<>&]/g | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:207:24:207:25 | '' | CalleeFlexibleAccessPath | s().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:207:24:207:25 | '' | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:207:24:207:25 | '' | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:207:24:207:25 | '' | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:207:24:207:25 | '' | enclosingFunctionBody | s s replace /[<>]/g  s replace /[<>&]/g  s replace /[<>"]/g  s replace /</g  replace />/g  s replace /</g  replace />/g  replace /&/g  s replace /</g  replace /&/g  replace />/g  s replace /&/g  replace />/g  replace /</g  s s replace /</g  s s replace />/g  s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /"/g &#34; s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /'/g &#39; s replace /</g &lt; replace />/g &gt replace RE match s replace /[<>'"&]/g  s replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /&(?![\\w\\#]+;)/g &amp; s replace encode /&(?!#?\\w+;)/g /&/g &amp; replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /'/g &apos; s replace /[\\\\/:\\*\\?"<>\\\|]/g  s replace /[<>]/g _ s replace /&/g &gt; s replace /[\\#\\%4\\/\\-\\~\\>8\\_\\@0\\!\\&3\\[651d\\=e7fA2D\\(aFBb]/g  s replace /[<>]/g  replace /[^a-z]/g  s replace /[<>]/g  replace /[^abc]/g  s replace /[<>]/g  replace /[ -~]/g  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:207:24:207:25 | '' | enclosingFunctionName | typicalBadHtmlSanitizers |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:207:24:207:25 | '' | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:208:14:208:21 | /[<>"]/g | CalleeFlexibleAccessPath | s().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:208:14:208:21 | /[<>"]/g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:208:14:208:21 | /[<>"]/g | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:208:14:208:21 | /[<>"]/g | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:208:14:208:21 | /[<>"]/g | enclosingFunctionBody | s s replace /[<>]/g  s replace /[<>&]/g  s replace /[<>"]/g  s replace /</g  replace />/g  s replace /</g  replace />/g  replace /&/g  s replace /</g  replace /&/g  replace />/g  s replace /&/g  replace />/g  replace /</g  s s replace /</g  s s replace />/g  s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /"/g &#34; s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /'/g &#39; s replace /</g &lt; replace />/g &gt replace RE match s replace /[<>'"&]/g  s replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /&(?![\\w\\#]+;)/g &amp; s replace encode /&(?!#?\\w+;)/g /&/g &amp; replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /'/g &apos; s replace /[\\\\/:\\*\\?"<>\\\|]/g  s replace /[<>]/g _ s replace /&/g &gt; s replace /[\\#\\%4\\/\\-\\~\\>8\\_\\@0\\!\\&3\\[651d\\=e7fA2D\\(aFBb]/g  s replace /[<>]/g  replace /[^a-z]/g  s replace /[<>]/g  replace /[^abc]/g  s replace /[<>]/g  replace /[ -~]/g  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:208:14:208:21 | /[<>"]/g | enclosingFunctionName | typicalBadHtmlSanitizers |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:208:14:208:21 | /[<>"]/g | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:208:24:208:25 | '' | CalleeFlexibleAccessPath | s().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:208:24:208:25 | '' | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:208:24:208:25 | '' | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:208:24:208:25 | '' | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:208:24:208:25 | '' | enclosingFunctionBody | s s replace /[<>]/g  s replace /[<>&]/g  s replace /[<>"]/g  s replace /</g  replace />/g  s replace /</g  replace />/g  replace /&/g  s replace /</g  replace /&/g  replace />/g  s replace /&/g  replace />/g  replace /</g  s s replace /</g  s s replace />/g  s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /"/g &#34; s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /'/g &#39; s replace /</g &lt; replace />/g &gt replace RE match s replace /[<>'"&]/g  s replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /&(?![\\w\\#]+;)/g &amp; s replace encode /&(?!#?\\w+;)/g /&/g &amp; replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /'/g &apos; s replace /[\\\\/:\\*\\?"<>\\\|]/g  s replace /[<>]/g _ s replace /&/g &gt; s replace /[\\#\\%4\\/\\-\\~\\>8\\_\\@0\\!\\&3\\[651d\\=e7fA2D\\(aFBb]/g  s replace /[<>]/g  replace /[^a-z]/g  s replace /[<>]/g  replace /[^abc]/g  s replace /[<>]/g  replace /[ -~]/g  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:208:24:208:25 | '' | enclosingFunctionName | typicalBadHtmlSanitizers |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:208:24:208:25 | '' | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:209:14:209:17 | /</g | CalleeFlexibleAccessPath | s().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:209:14:209:17 | /</g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:209:14:209:17 | /</g | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:209:14:209:17 | /</g | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:209:14:209:17 | /</g | enclosingFunctionBody | s s replace /[<>]/g  s replace /[<>&]/g  s replace /[<>"]/g  s replace /</g  replace />/g  s replace /</g  replace />/g  replace /&/g  s replace /</g  replace /&/g  replace />/g  s replace /&/g  replace />/g  replace /</g  s s replace /</g  s s replace />/g  s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /"/g &#34; s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /'/g &#39; s replace /</g &lt; replace />/g &gt replace RE match s replace /[<>'"&]/g  s replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /&(?![\\w\\#]+;)/g &amp; s replace encode /&(?!#?\\w+;)/g /&/g &amp; replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /'/g &apos; s replace /[\\\\/:\\*\\?"<>\\\|]/g  s replace /[<>]/g _ s replace /&/g &gt; s replace /[\\#\\%4\\/\\-\\~\\>8\\_\\@0\\!\\&3\\[651d\\=e7fA2D\\(aFBb]/g  s replace /[<>]/g  replace /[^a-z]/g  s replace /[<>]/g  replace /[^abc]/g  s replace /[<>]/g  replace /[ -~]/g  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:209:14:209:17 | /</g | enclosingFunctionName | typicalBadHtmlSanitizers |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:209:14:209:17 | /</g | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:209:20:209:21 | '' | CalleeFlexibleAccessPath | s().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:209:20:209:21 | '' | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:209:20:209:21 | '' | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:209:20:209:21 | '' | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:209:20:209:21 | '' | enclosingFunctionBody | s s replace /[<>]/g  s replace /[<>&]/g  s replace /[<>"]/g  s replace /</g  replace />/g  s replace /</g  replace />/g  replace /&/g  s replace /</g  replace /&/g  replace />/g  s replace /&/g  replace />/g  replace /</g  s s replace /</g  s s replace />/g  s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /"/g &#34; s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /'/g &#39; s replace /</g &lt; replace />/g &gt replace RE match s replace /[<>'"&]/g  s replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /&(?![\\w\\#]+;)/g &amp; s replace encode /&(?!#?\\w+;)/g /&/g &amp; replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /'/g &apos; s replace /[\\\\/:\\*\\?"<>\\\|]/g  s replace /[<>]/g _ s replace /&/g &gt; s replace /[\\#\\%4\\/\\-\\~\\>8\\_\\@0\\!\\&3\\[651d\\=e7fA2D\\(aFBb]/g  s replace /[<>]/g  replace /[^a-z]/g  s replace /[<>]/g  replace /[^abc]/g  s replace /[<>]/g  replace /[ -~]/g  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:209:20:209:21 | '' | enclosingFunctionName | typicalBadHtmlSanitizers |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:209:20:209:21 | '' | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:209:32:209:35 | />/g | CalleeFlexibleAccessPath | s().replace().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:209:32:209:35 | />/g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:209:32:209:35 | />/g | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:209:32:209:35 | />/g | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:209:32:209:35 | />/g | enclosingFunctionBody | s s replace /[<>]/g  s replace /[<>&]/g  s replace /[<>"]/g  s replace /</g  replace />/g  s replace /</g  replace />/g  replace /&/g  s replace /</g  replace /&/g  replace />/g  s replace /&/g  replace />/g  replace /</g  s s replace /</g  s s replace />/g  s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /"/g &#34; s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /'/g &#39; s replace /</g &lt; replace />/g &gt replace RE match s replace /[<>'"&]/g  s replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /&(?![\\w\\#]+;)/g &amp; s replace encode /&(?!#?\\w+;)/g /&/g &amp; replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /'/g &apos; s replace /[\\\\/:\\*\\?"<>\\\|]/g  s replace /[<>]/g _ s replace /&/g &gt; s replace /[\\#\\%4\\/\\-\\~\\>8\\_\\@0\\!\\&3\\[651d\\=e7fA2D\\(aFBb]/g  s replace /[<>]/g  replace /[^a-z]/g  s replace /[<>]/g  replace /[^abc]/g  s replace /[<>]/g  replace /[ -~]/g  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:209:32:209:35 | />/g | enclosingFunctionName | typicalBadHtmlSanitizers |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:209:32:209:35 | />/g | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:209:38:209:39 | '' | CalleeFlexibleAccessPath | s().replace().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:209:38:209:39 | '' | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:209:38:209:39 | '' | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:209:38:209:39 | '' | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:209:38:209:39 | '' | enclosingFunctionBody | s s replace /[<>]/g  s replace /[<>&]/g  s replace /[<>"]/g  s replace /</g  replace />/g  s replace /</g  replace />/g  replace /&/g  s replace /</g  replace /&/g  replace />/g  s replace /&/g  replace />/g  replace /</g  s s replace /</g  s s replace />/g  s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /"/g &#34; s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /'/g &#39; s replace /</g &lt; replace />/g &gt replace RE match s replace /[<>'"&]/g  s replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /&(?![\\w\\#]+;)/g &amp; s replace encode /&(?!#?\\w+;)/g /&/g &amp; replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /'/g &apos; s replace /[\\\\/:\\*\\?"<>\\\|]/g  s replace /[<>]/g _ s replace /&/g &gt; s replace /[\\#\\%4\\/\\-\\~\\>8\\_\\@0\\!\\&3\\[651d\\=e7fA2D\\(aFBb]/g  s replace /[<>]/g  replace /[^a-z]/g  s replace /[<>]/g  replace /[^abc]/g  s replace /[<>]/g  replace /[ -~]/g  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:209:38:209:39 | '' | enclosingFunctionName | typicalBadHtmlSanitizers |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:209:38:209:39 | '' | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:210:14:210:17 | /</g | CalleeFlexibleAccessPath | s().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:210:14:210:17 | /</g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:210:14:210:17 | /</g | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:210:14:210:17 | /</g | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:210:14:210:17 | /</g | enclosingFunctionBody | s s replace /[<>]/g  s replace /[<>&]/g  s replace /[<>"]/g  s replace /</g  replace />/g  s replace /</g  replace />/g  replace /&/g  s replace /</g  replace /&/g  replace />/g  s replace /&/g  replace />/g  replace /</g  s s replace /</g  s s replace />/g  s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /"/g &#34; s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /'/g &#39; s replace /</g &lt; replace />/g &gt replace RE match s replace /[<>'"&]/g  s replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /&(?![\\w\\#]+;)/g &amp; s replace encode /&(?!#?\\w+;)/g /&/g &amp; replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /'/g &apos; s replace /[\\\\/:\\*\\?"<>\\\|]/g  s replace /[<>]/g _ s replace /&/g &gt; s replace /[\\#\\%4\\/\\-\\~\\>8\\_\\@0\\!\\&3\\[651d\\=e7fA2D\\(aFBb]/g  s replace /[<>]/g  replace /[^a-z]/g  s replace /[<>]/g  replace /[^abc]/g  s replace /[<>]/g  replace /[ -~]/g  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:210:14:210:17 | /</g | enclosingFunctionName | typicalBadHtmlSanitizers |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:210:14:210:17 | /</g | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:210:20:210:21 | '' | CalleeFlexibleAccessPath | s().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:210:20:210:21 | '' | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:210:20:210:21 | '' | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:210:20:210:21 | '' | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:210:20:210:21 | '' | enclosingFunctionBody | s s replace /[<>]/g  s replace /[<>&]/g  s replace /[<>"]/g  s replace /</g  replace />/g  s replace /</g  replace />/g  replace /&/g  s replace /</g  replace /&/g  replace />/g  s replace /&/g  replace />/g  replace /</g  s s replace /</g  s s replace />/g  s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /"/g &#34; s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /'/g &#39; s replace /</g &lt; replace />/g &gt replace RE match s replace /[<>'"&]/g  s replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /&(?![\\w\\#]+;)/g &amp; s replace encode /&(?!#?\\w+;)/g /&/g &amp; replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /'/g &apos; s replace /[\\\\/:\\*\\?"<>\\\|]/g  s replace /[<>]/g _ s replace /&/g &gt; s replace /[\\#\\%4\\/\\-\\~\\>8\\_\\@0\\!\\&3\\[651d\\=e7fA2D\\(aFBb]/g  s replace /[<>]/g  replace /[^a-z]/g  s replace /[<>]/g  replace /[^abc]/g  s replace /[<>]/g  replace /[ -~]/g  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:210:20:210:21 | '' | enclosingFunctionName | typicalBadHtmlSanitizers |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:210:20:210:21 | '' | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:210:32:210:35 | />/g | CalleeFlexibleAccessPath | s().replace().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:210:32:210:35 | />/g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:210:32:210:35 | />/g | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:210:32:210:35 | />/g | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:210:32:210:35 | />/g | enclosingFunctionBody | s s replace /[<>]/g  s replace /[<>&]/g  s replace /[<>"]/g  s replace /</g  replace />/g  s replace /</g  replace />/g  replace /&/g  s replace /</g  replace /&/g  replace />/g  s replace /&/g  replace />/g  replace /</g  s s replace /</g  s s replace />/g  s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /"/g &#34; s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /'/g &#39; s replace /</g &lt; replace />/g &gt replace RE match s replace /[<>'"&]/g  s replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /&(?![\\w\\#]+;)/g &amp; s replace encode /&(?!#?\\w+;)/g /&/g &amp; replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /'/g &apos; s replace /[\\\\/:\\*\\?"<>\\\|]/g  s replace /[<>]/g _ s replace /&/g &gt; s replace /[\\#\\%4\\/\\-\\~\\>8\\_\\@0\\!\\&3\\[651d\\=e7fA2D\\(aFBb]/g  s replace /[<>]/g  replace /[^a-z]/g  s replace /[<>]/g  replace /[^abc]/g  s replace /[<>]/g  replace /[ -~]/g  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:210:32:210:35 | />/g | enclosingFunctionName | typicalBadHtmlSanitizers |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:210:32:210:35 | />/g | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:210:38:210:39 | '' | CalleeFlexibleAccessPath | s().replace().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:210:38:210:39 | '' | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:210:38:210:39 | '' | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:210:38:210:39 | '' | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:210:38:210:39 | '' | enclosingFunctionBody | s s replace /[<>]/g  s replace /[<>&]/g  s replace /[<>"]/g  s replace /</g  replace />/g  s replace /</g  replace />/g  replace /&/g  s replace /</g  replace /&/g  replace />/g  s replace /&/g  replace />/g  replace /</g  s s replace /</g  s s replace />/g  s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /"/g &#34; s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /'/g &#39; s replace /</g &lt; replace />/g &gt replace RE match s replace /[<>'"&]/g  s replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /&(?![\\w\\#]+;)/g &amp; s replace encode /&(?!#?\\w+;)/g /&/g &amp; replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /'/g &apos; s replace /[\\\\/:\\*\\?"<>\\\|]/g  s replace /[<>]/g _ s replace /&/g &gt; s replace /[\\#\\%4\\/\\-\\~\\>8\\_\\@0\\!\\&3\\[651d\\=e7fA2D\\(aFBb]/g  s replace /[<>]/g  replace /[^a-z]/g  s replace /[<>]/g  replace /[^abc]/g  s replace /[<>]/g  replace /[ -~]/g  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:210:38:210:39 | '' | enclosingFunctionName | typicalBadHtmlSanitizers |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:210:38:210:39 | '' | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:210:50:210:53 | /&/g | CalleeFlexibleAccessPath | s().replace().replace().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:210:50:210:53 | /&/g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:210:50:210:53 | /&/g | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:210:50:210:53 | /&/g | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:210:50:210:53 | /&/g | enclosingFunctionBody | s s replace /[<>]/g  s replace /[<>&]/g  s replace /[<>"]/g  s replace /</g  replace />/g  s replace /</g  replace />/g  replace /&/g  s replace /</g  replace /&/g  replace />/g  s replace /&/g  replace />/g  replace /</g  s s replace /</g  s s replace />/g  s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /"/g &#34; s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /'/g &#39; s replace /</g &lt; replace />/g &gt replace RE match s replace /[<>'"&]/g  s replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /&(?![\\w\\#]+;)/g &amp; s replace encode /&(?!#?\\w+;)/g /&/g &amp; replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /'/g &apos; s replace /[\\\\/:\\*\\?"<>\\\|]/g  s replace /[<>]/g _ s replace /&/g &gt; s replace /[\\#\\%4\\/\\-\\~\\>8\\_\\@0\\!\\&3\\[651d\\=e7fA2D\\(aFBb]/g  s replace /[<>]/g  replace /[^a-z]/g  s replace /[<>]/g  replace /[^abc]/g  s replace /[<>]/g  replace /[ -~]/g  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:210:50:210:53 | /&/g | enclosingFunctionName | typicalBadHtmlSanitizers |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:210:50:210:53 | /&/g | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:210:56:210:57 | '' | CalleeFlexibleAccessPath | s().replace().replace().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:210:56:210:57 | '' | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:210:56:210:57 | '' | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:210:56:210:57 | '' | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:210:56:210:57 | '' | enclosingFunctionBody | s s replace /[<>]/g  s replace /[<>&]/g  s replace /[<>"]/g  s replace /</g  replace />/g  s replace /</g  replace />/g  replace /&/g  s replace /</g  replace /&/g  replace />/g  s replace /&/g  replace />/g  replace /</g  s s replace /</g  s s replace />/g  s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /"/g &#34; s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /'/g &#39; s replace /</g &lt; replace />/g &gt replace RE match s replace /[<>'"&]/g  s replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /&(?![\\w\\#]+;)/g &amp; s replace encode /&(?!#?\\w+;)/g /&/g &amp; replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /'/g &apos; s replace /[\\\\/:\\*\\?"<>\\\|]/g  s replace /[<>]/g _ s replace /&/g &gt; s replace /[\\#\\%4\\/\\-\\~\\>8\\_\\@0\\!\\&3\\[651d\\=e7fA2D\\(aFBb]/g  s replace /[<>]/g  replace /[^a-z]/g  s replace /[<>]/g  replace /[^abc]/g  s replace /[<>]/g  replace /[ -~]/g  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:210:56:210:57 | '' | enclosingFunctionName | typicalBadHtmlSanitizers |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:210:56:210:57 | '' | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:211:14:211:17 | /</g | CalleeFlexibleAccessPath | s().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:211:14:211:17 | /</g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:211:14:211:17 | /</g | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:211:14:211:17 | /</g | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:211:14:211:17 | /</g | enclosingFunctionBody | s s replace /[<>]/g  s replace /[<>&]/g  s replace /[<>"]/g  s replace /</g  replace />/g  s replace /</g  replace />/g  replace /&/g  s replace /</g  replace /&/g  replace />/g  s replace /&/g  replace />/g  replace /</g  s s replace /</g  s s replace />/g  s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /"/g &#34; s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /'/g &#39; s replace /</g &lt; replace />/g &gt replace RE match s replace /[<>'"&]/g  s replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /&(?![\\w\\#]+;)/g &amp; s replace encode /&(?!#?\\w+;)/g /&/g &amp; replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /'/g &apos; s replace /[\\\\/:\\*\\?"<>\\\|]/g  s replace /[<>]/g _ s replace /&/g &gt; s replace /[\\#\\%4\\/\\-\\~\\>8\\_\\@0\\!\\&3\\[651d\\=e7fA2D\\(aFBb]/g  s replace /[<>]/g  replace /[^a-z]/g  s replace /[<>]/g  replace /[^abc]/g  s replace /[<>]/g  replace /[ -~]/g  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:211:14:211:17 | /</g | enclosingFunctionName | typicalBadHtmlSanitizers |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:211:14:211:17 | /</g | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:211:20:211:21 | '' | CalleeFlexibleAccessPath | s().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:211:20:211:21 | '' | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:211:20:211:21 | '' | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:211:20:211:21 | '' | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:211:20:211:21 | '' | enclosingFunctionBody | s s replace /[<>]/g  s replace /[<>&]/g  s replace /[<>"]/g  s replace /</g  replace />/g  s replace /</g  replace />/g  replace /&/g  s replace /</g  replace /&/g  replace />/g  s replace /&/g  replace />/g  replace /</g  s s replace /</g  s s replace />/g  s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /"/g &#34; s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /'/g &#39; s replace /</g &lt; replace />/g &gt replace RE match s replace /[<>'"&]/g  s replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /&(?![\\w\\#]+;)/g &amp; s replace encode /&(?!#?\\w+;)/g /&/g &amp; replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /'/g &apos; s replace /[\\\\/:\\*\\?"<>\\\|]/g  s replace /[<>]/g _ s replace /&/g &gt; s replace /[\\#\\%4\\/\\-\\~\\>8\\_\\@0\\!\\&3\\[651d\\=e7fA2D\\(aFBb]/g  s replace /[<>]/g  replace /[^a-z]/g  s replace /[<>]/g  replace /[^abc]/g  s replace /[<>]/g  replace /[ -~]/g  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:211:20:211:21 | '' | enclosingFunctionName | typicalBadHtmlSanitizers |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:211:20:211:21 | '' | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:211:32:211:35 | /&/g | CalleeFlexibleAccessPath | s().replace().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:211:32:211:35 | /&/g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:211:32:211:35 | /&/g | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:211:32:211:35 | /&/g | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:211:32:211:35 | /&/g | enclosingFunctionBody | s s replace /[<>]/g  s replace /[<>&]/g  s replace /[<>"]/g  s replace /</g  replace />/g  s replace /</g  replace />/g  replace /&/g  s replace /</g  replace /&/g  replace />/g  s replace /&/g  replace />/g  replace /</g  s s replace /</g  s s replace />/g  s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /"/g &#34; s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /'/g &#39; s replace /</g &lt; replace />/g &gt replace RE match s replace /[<>'"&]/g  s replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /&(?![\\w\\#]+;)/g &amp; s replace encode /&(?!#?\\w+;)/g /&/g &amp; replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /'/g &apos; s replace /[\\\\/:\\*\\?"<>\\\|]/g  s replace /[<>]/g _ s replace /&/g &gt; s replace /[\\#\\%4\\/\\-\\~\\>8\\_\\@0\\!\\&3\\[651d\\=e7fA2D\\(aFBb]/g  s replace /[<>]/g  replace /[^a-z]/g  s replace /[<>]/g  replace /[^abc]/g  s replace /[<>]/g  replace /[ -~]/g  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:211:32:211:35 | /&/g | enclosingFunctionName | typicalBadHtmlSanitizers |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:211:32:211:35 | /&/g | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:211:38:211:39 | '' | CalleeFlexibleAccessPath | s().replace().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:211:38:211:39 | '' | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:211:38:211:39 | '' | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:211:38:211:39 | '' | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:211:38:211:39 | '' | enclosingFunctionBody | s s replace /[<>]/g  s replace /[<>&]/g  s replace /[<>"]/g  s replace /</g  replace />/g  s replace /</g  replace />/g  replace /&/g  s replace /</g  replace /&/g  replace />/g  s replace /&/g  replace />/g  replace /</g  s s replace /</g  s s replace />/g  s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /"/g &#34; s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /'/g &#39; s replace /</g &lt; replace />/g &gt replace RE match s replace /[<>'"&]/g  s replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /&(?![\\w\\#]+;)/g &amp; s replace encode /&(?!#?\\w+;)/g /&/g &amp; replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /'/g &apos; s replace /[\\\\/:\\*\\?"<>\\\|]/g  s replace /[<>]/g _ s replace /&/g &gt; s replace /[\\#\\%4\\/\\-\\~\\>8\\_\\@0\\!\\&3\\[651d\\=e7fA2D\\(aFBb]/g  s replace /[<>]/g  replace /[^a-z]/g  s replace /[<>]/g  replace /[^abc]/g  s replace /[<>]/g  replace /[ -~]/g  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:211:38:211:39 | '' | enclosingFunctionName | typicalBadHtmlSanitizers |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:211:38:211:39 | '' | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:211:50:211:53 | />/g | CalleeFlexibleAccessPath | s().replace().replace().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:211:50:211:53 | />/g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:211:50:211:53 | />/g | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:211:50:211:53 | />/g | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:211:50:211:53 | />/g | enclosingFunctionBody | s s replace /[<>]/g  s replace /[<>&]/g  s replace /[<>"]/g  s replace /</g  replace />/g  s replace /</g  replace />/g  replace /&/g  s replace /</g  replace /&/g  replace />/g  s replace /&/g  replace />/g  replace /</g  s s replace /</g  s s replace />/g  s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /"/g &#34; s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /'/g &#39; s replace /</g &lt; replace />/g &gt replace RE match s replace /[<>'"&]/g  s replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /&(?![\\w\\#]+;)/g &amp; s replace encode /&(?!#?\\w+;)/g /&/g &amp; replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /'/g &apos; s replace /[\\\\/:\\*\\?"<>\\\|]/g  s replace /[<>]/g _ s replace /&/g &gt; s replace /[\\#\\%4\\/\\-\\~\\>8\\_\\@0\\!\\&3\\[651d\\=e7fA2D\\(aFBb]/g  s replace /[<>]/g  replace /[^a-z]/g  s replace /[<>]/g  replace /[^abc]/g  s replace /[<>]/g  replace /[ -~]/g  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:211:50:211:53 | />/g | enclosingFunctionName | typicalBadHtmlSanitizers |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:211:50:211:53 | />/g | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:211:56:211:57 | '' | CalleeFlexibleAccessPath | s().replace().replace().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:211:56:211:57 | '' | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:211:56:211:57 | '' | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:211:56:211:57 | '' | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:211:56:211:57 | '' | enclosingFunctionBody | s s replace /[<>]/g  s replace /[<>&]/g  s replace /[<>"]/g  s replace /</g  replace />/g  s replace /</g  replace />/g  replace /&/g  s replace /</g  replace /&/g  replace />/g  s replace /&/g  replace />/g  replace /</g  s s replace /</g  s s replace />/g  s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /"/g &#34; s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /'/g &#39; s replace /</g &lt; replace />/g &gt replace RE match s replace /[<>'"&]/g  s replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /&(?![\\w\\#]+;)/g &amp; s replace encode /&(?!#?\\w+;)/g /&/g &amp; replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /'/g &apos; s replace /[\\\\/:\\*\\?"<>\\\|]/g  s replace /[<>]/g _ s replace /&/g &gt; s replace /[\\#\\%4\\/\\-\\~\\>8\\_\\@0\\!\\&3\\[651d\\=e7fA2D\\(aFBb]/g  s replace /[<>]/g  replace /[^a-z]/g  s replace /[<>]/g  replace /[^abc]/g  s replace /[<>]/g  replace /[ -~]/g  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:211:56:211:57 | '' | enclosingFunctionName | typicalBadHtmlSanitizers |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:211:56:211:57 | '' | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:212:14:212:17 | /&/g | CalleeFlexibleAccessPath | s().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:212:14:212:17 | /&/g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:212:14:212:17 | /&/g | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:212:14:212:17 | /&/g | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:212:14:212:17 | /&/g | enclosingFunctionBody | s s replace /[<>]/g  s replace /[<>&]/g  s replace /[<>"]/g  s replace /</g  replace />/g  s replace /</g  replace />/g  replace /&/g  s replace /</g  replace /&/g  replace />/g  s replace /&/g  replace />/g  replace /</g  s s replace /</g  s s replace />/g  s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /"/g &#34; s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /'/g &#39; s replace /</g &lt; replace />/g &gt replace RE match s replace /[<>'"&]/g  s replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /&(?![\\w\\#]+;)/g &amp; s replace encode /&(?!#?\\w+;)/g /&/g &amp; replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /'/g &apos; s replace /[\\\\/:\\*\\?"<>\\\|]/g  s replace /[<>]/g _ s replace /&/g &gt; s replace /[\\#\\%4\\/\\-\\~\\>8\\_\\@0\\!\\&3\\[651d\\=e7fA2D\\(aFBb]/g  s replace /[<>]/g  replace /[^a-z]/g  s replace /[<>]/g  replace /[^abc]/g  s replace /[<>]/g  replace /[ -~]/g  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:212:14:212:17 | /&/g | enclosingFunctionName | typicalBadHtmlSanitizers |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:212:14:212:17 | /&/g | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:212:20:212:21 | '' | CalleeFlexibleAccessPath | s().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:212:20:212:21 | '' | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:212:20:212:21 | '' | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:212:20:212:21 | '' | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:212:20:212:21 | '' | enclosingFunctionBody | s s replace /[<>]/g  s replace /[<>&]/g  s replace /[<>"]/g  s replace /</g  replace />/g  s replace /</g  replace />/g  replace /&/g  s replace /</g  replace /&/g  replace />/g  s replace /&/g  replace />/g  replace /</g  s s replace /</g  s s replace />/g  s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /"/g &#34; s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /'/g &#39; s replace /</g &lt; replace />/g &gt replace RE match s replace /[<>'"&]/g  s replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /&(?![\\w\\#]+;)/g &amp; s replace encode /&(?!#?\\w+;)/g /&/g &amp; replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /'/g &apos; s replace /[\\\\/:\\*\\?"<>\\\|]/g  s replace /[<>]/g _ s replace /&/g &gt; s replace /[\\#\\%4\\/\\-\\~\\>8\\_\\@0\\!\\&3\\[651d\\=e7fA2D\\(aFBb]/g  s replace /[<>]/g  replace /[^a-z]/g  s replace /[<>]/g  replace /[^abc]/g  s replace /[<>]/g  replace /[ -~]/g  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:212:20:212:21 | '' | enclosingFunctionName | typicalBadHtmlSanitizers |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:212:20:212:21 | '' | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:212:32:212:35 | />/g | CalleeFlexibleAccessPath | s().replace().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:212:32:212:35 | />/g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:212:32:212:35 | />/g | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:212:32:212:35 | />/g | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:212:32:212:35 | />/g | enclosingFunctionBody | s s replace /[<>]/g  s replace /[<>&]/g  s replace /[<>"]/g  s replace /</g  replace />/g  s replace /</g  replace />/g  replace /&/g  s replace /</g  replace /&/g  replace />/g  s replace /&/g  replace />/g  replace /</g  s s replace /</g  s s replace />/g  s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /"/g &#34; s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /'/g &#39; s replace /</g &lt; replace />/g &gt replace RE match s replace /[<>'"&]/g  s replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /&(?![\\w\\#]+;)/g &amp; s replace encode /&(?!#?\\w+;)/g /&/g &amp; replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /'/g &apos; s replace /[\\\\/:\\*\\?"<>\\\|]/g  s replace /[<>]/g _ s replace /&/g &gt; s replace /[\\#\\%4\\/\\-\\~\\>8\\_\\@0\\!\\&3\\[651d\\=e7fA2D\\(aFBb]/g  s replace /[<>]/g  replace /[^a-z]/g  s replace /[<>]/g  replace /[^abc]/g  s replace /[<>]/g  replace /[ -~]/g  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:212:32:212:35 | />/g | enclosingFunctionName | typicalBadHtmlSanitizers |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:212:32:212:35 | />/g | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:212:38:212:39 | '' | CalleeFlexibleAccessPath | s().replace().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:212:38:212:39 | '' | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:212:38:212:39 | '' | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:212:38:212:39 | '' | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:212:38:212:39 | '' | enclosingFunctionBody | s s replace /[<>]/g  s replace /[<>&]/g  s replace /[<>"]/g  s replace /</g  replace />/g  s replace /</g  replace />/g  replace /&/g  s replace /</g  replace /&/g  replace />/g  s replace /&/g  replace />/g  replace /</g  s s replace /</g  s s replace />/g  s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /"/g &#34; s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /'/g &#39; s replace /</g &lt; replace />/g &gt replace RE match s replace /[<>'"&]/g  s replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /&(?![\\w\\#]+;)/g &amp; s replace encode /&(?!#?\\w+;)/g /&/g &amp; replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /'/g &apos; s replace /[\\\\/:\\*\\?"<>\\\|]/g  s replace /[<>]/g _ s replace /&/g &gt; s replace /[\\#\\%4\\/\\-\\~\\>8\\_\\@0\\!\\&3\\[651d\\=e7fA2D\\(aFBb]/g  s replace /[<>]/g  replace /[^a-z]/g  s replace /[<>]/g  replace /[^abc]/g  s replace /[<>]/g  replace /[ -~]/g  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:212:38:212:39 | '' | enclosingFunctionName | typicalBadHtmlSanitizers |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:212:38:212:39 | '' | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:212:50:212:53 | /</g | CalleeFlexibleAccessPath | s().replace().replace().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:212:50:212:53 | /</g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:212:50:212:53 | /</g | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:212:50:212:53 | /</g | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:212:50:212:53 | /</g | enclosingFunctionBody | s s replace /[<>]/g  s replace /[<>&]/g  s replace /[<>"]/g  s replace /</g  replace />/g  s replace /</g  replace />/g  replace /&/g  s replace /</g  replace /&/g  replace />/g  s replace /&/g  replace />/g  replace /</g  s s replace /</g  s s replace />/g  s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /"/g &#34; s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /'/g &#39; s replace /</g &lt; replace />/g &gt replace RE match s replace /[<>'"&]/g  s replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /&(?![\\w\\#]+;)/g &amp; s replace encode /&(?!#?\\w+;)/g /&/g &amp; replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /'/g &apos; s replace /[\\\\/:\\*\\?"<>\\\|]/g  s replace /[<>]/g _ s replace /&/g &gt; s replace /[\\#\\%4\\/\\-\\~\\>8\\_\\@0\\!\\&3\\[651d\\=e7fA2D\\(aFBb]/g  s replace /[<>]/g  replace /[^a-z]/g  s replace /[<>]/g  replace /[^abc]/g  s replace /[<>]/g  replace /[ -~]/g  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:212:50:212:53 | /</g | enclosingFunctionName | typicalBadHtmlSanitizers |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:212:50:212:53 | /</g | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:212:56:212:57 | '' | CalleeFlexibleAccessPath | s().replace().replace().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:212:56:212:57 | '' | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:212:56:212:57 | '' | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:212:56:212:57 | '' | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:212:56:212:57 | '' | enclosingFunctionBody | s s replace /[<>]/g  s replace /[<>&]/g  s replace /[<>"]/g  s replace /</g  replace />/g  s replace /</g  replace />/g  replace /&/g  s replace /</g  replace /&/g  replace />/g  s replace /&/g  replace />/g  replace /</g  s s replace /</g  s s replace />/g  s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /"/g &#34; s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /'/g &#39; s replace /</g &lt; replace />/g &gt replace RE match s replace /[<>'"&]/g  s replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /&(?![\\w\\#]+;)/g &amp; s replace encode /&(?!#?\\w+;)/g /&/g &amp; replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /'/g &apos; s replace /[\\\\/:\\*\\?"<>\\\|]/g  s replace /[<>]/g _ s replace /&/g &gt; s replace /[\\#\\%4\\/\\-\\~\\>8\\_\\@0\\!\\&3\\[651d\\=e7fA2D\\(aFBb]/g  s replace /[<>]/g  replace /[^a-z]/g  s replace /[<>]/g  replace /[^abc]/g  s replace /[<>]/g  replace /[ -~]/g  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:212:56:212:57 | '' | enclosingFunctionName | typicalBadHtmlSanitizers |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:212:56:212:57 | '' | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:214:22:214:25 | /</g | CalleeFlexibleAccessPath | s().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:214:22:214:25 | /</g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:214:22:214:25 | /</g | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:214:22:214:25 | /</g | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:214:22:214:25 | /</g | enclosingFunctionBody | s s replace /[<>]/g  s replace /[<>&]/g  s replace /[<>"]/g  s replace /</g  replace />/g  s replace /</g  replace />/g  replace /&/g  s replace /</g  replace /&/g  replace />/g  s replace /&/g  replace />/g  replace /</g  s s replace /</g  s s replace />/g  s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /"/g &#34; s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /'/g &#39; s replace /</g &lt; replace />/g &gt replace RE match s replace /[<>'"&]/g  s replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /&(?![\\w\\#]+;)/g &amp; s replace encode /&(?!#?\\w+;)/g /&/g &amp; replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /'/g &apos; s replace /[\\\\/:\\*\\?"<>\\\|]/g  s replace /[<>]/g _ s replace /&/g &gt; s replace /[\\#\\%4\\/\\-\\~\\>8\\_\\@0\\!\\&3\\[651d\\=e7fA2D\\(aFBb]/g  s replace /[<>]/g  replace /[^a-z]/g  s replace /[<>]/g  replace /[^abc]/g  s replace /[<>]/g  replace /[ -~]/g  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:214:22:214:25 | /</g | enclosingFunctionName | typicalBadHtmlSanitizers |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:214:22:214:25 | /</g | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:214:28:214:29 | '' | CalleeFlexibleAccessPath | s().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:214:28:214:29 | '' | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:214:28:214:29 | '' | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:214:28:214:29 | '' | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:214:28:214:29 | '' | enclosingFunctionBody | s s replace /[<>]/g  s replace /[<>&]/g  s replace /[<>"]/g  s replace /</g  replace />/g  s replace /</g  replace />/g  replace /&/g  s replace /</g  replace /&/g  replace />/g  s replace /&/g  replace />/g  replace /</g  s s replace /</g  s s replace />/g  s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /"/g &#34; s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /'/g &#39; s replace /</g &lt; replace />/g &gt replace RE match s replace /[<>'"&]/g  s replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /&(?![\\w\\#]+;)/g &amp; s replace encode /&(?!#?\\w+;)/g /&/g &amp; replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /'/g &apos; s replace /[\\\\/:\\*\\?"<>\\\|]/g  s replace /[<>]/g _ s replace /&/g &gt; s replace /[\\#\\%4\\/\\-\\~\\>8\\_\\@0\\!\\&3\\[651d\\=e7fA2D\\(aFBb]/g  s replace /[<>]/g  replace /[^a-z]/g  s replace /[<>]/g  replace /[^abc]/g  s replace /[<>]/g  replace /[ -~]/g  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:214:28:214:29 | '' | enclosingFunctionName | typicalBadHtmlSanitizers |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:214:28:214:29 | '' | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:215:16:215:19 | />/g | CalleeFlexibleAccessPath | s.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:215:16:215:19 | />/g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:215:16:215:19 | />/g | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:215:16:215:19 | />/g | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:215:16:215:19 | />/g | enclosingFunctionBody | s s replace /[<>]/g  s replace /[<>&]/g  s replace /[<>"]/g  s replace /</g  replace />/g  s replace /</g  replace />/g  replace /&/g  s replace /</g  replace /&/g  replace />/g  s replace /&/g  replace />/g  replace /</g  s s replace /</g  s s replace />/g  s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /"/g &#34; s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /'/g &#39; s replace /</g &lt; replace />/g &gt replace RE match s replace /[<>'"&]/g  s replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /&(?![\\w\\#]+;)/g &amp; s replace encode /&(?!#?\\w+;)/g /&/g &amp; replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /'/g &apos; s replace /[\\\\/:\\*\\?"<>\\\|]/g  s replace /[<>]/g _ s replace /&/g &gt; s replace /[\\#\\%4\\/\\-\\~\\>8\\_\\@0\\!\\&3\\[651d\\=e7fA2D\\(aFBb]/g  s replace /[<>]/g  replace /[^a-z]/g  s replace /[<>]/g  replace /[^abc]/g  s replace /[<>]/g  replace /[ -~]/g  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:215:16:215:19 | />/g | enclosingFunctionName | typicalBadHtmlSanitizers |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:215:16:215:19 | />/g | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:215:16:215:19 | />/g | receiverName | s |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:215:22:215:23 | '' | CalleeFlexibleAccessPath | s.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:215:22:215:23 | '' | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:215:22:215:23 | '' | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:215:22:215:23 | '' | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:215:22:215:23 | '' | enclosingFunctionBody | s s replace /[<>]/g  s replace /[<>&]/g  s replace /[<>"]/g  s replace /</g  replace />/g  s replace /</g  replace />/g  replace /&/g  s replace /</g  replace /&/g  replace />/g  s replace /&/g  replace />/g  replace /</g  s s replace /</g  s s replace />/g  s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /"/g &#34; s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /'/g &#39; s replace /</g &lt; replace />/g &gt replace RE match s replace /[<>'"&]/g  s replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /&(?![\\w\\#]+;)/g &amp; s replace encode /&(?!#?\\w+;)/g /&/g &amp; replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /'/g &apos; s replace /[\\\\/:\\*\\?"<>\\\|]/g  s replace /[<>]/g _ s replace /&/g &gt; s replace /[\\#\\%4\\/\\-\\~\\>8\\_\\@0\\!\\&3\\[651d\\=e7fA2D\\(aFBb]/g  s replace /[<>]/g  replace /[^a-z]/g  s replace /[<>]/g  replace /[^abc]/g  s replace /[<>]/g  replace /[ -~]/g  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:215:22:215:23 | '' | enclosingFunctionName | typicalBadHtmlSanitizers |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:215:22:215:23 | '' | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:215:22:215:23 | '' | receiverName | s |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:216:14:216:17 | /</g | CalleeFlexibleAccessPath | s().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:216:14:216:17 | /</g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:216:14:216:17 | /</g | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:216:14:216:17 | /</g | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:216:14:216:17 | /</g | enclosingFunctionBody | s s replace /[<>]/g  s replace /[<>&]/g  s replace /[<>"]/g  s replace /</g  replace />/g  s replace /</g  replace />/g  replace /&/g  s replace /</g  replace /&/g  replace />/g  s replace /&/g  replace />/g  replace /</g  s s replace /</g  s s replace />/g  s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /"/g &#34; s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /'/g &#39; s replace /</g &lt; replace />/g &gt replace RE match s replace /[<>'"&]/g  s replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /&(?![\\w\\#]+;)/g &amp; s replace encode /&(?!#?\\w+;)/g /&/g &amp; replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /'/g &apos; s replace /[\\\\/:\\*\\?"<>\\\|]/g  s replace /[<>]/g _ s replace /&/g &gt; s replace /[\\#\\%4\\/\\-\\~\\>8\\_\\@0\\!\\&3\\[651d\\=e7fA2D\\(aFBb]/g  s replace /[<>]/g  replace /[^a-z]/g  s replace /[<>]/g  replace /[^abc]/g  s replace /[<>]/g  replace /[ -~]/g  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:216:14:216:17 | /</g | enclosingFunctionName | typicalBadHtmlSanitizers |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:216:14:216:17 | /</g | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:216:20:216:25 | '&lt;' | CalleeFlexibleAccessPath | s().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:216:20:216:25 | '&lt;' | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:216:20:216:25 | '&lt;' | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:216:20:216:25 | '&lt;' | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:216:20:216:25 | '&lt;' | enclosingFunctionBody | s s replace /[<>]/g  s replace /[<>&]/g  s replace /[<>"]/g  s replace /</g  replace />/g  s replace /</g  replace />/g  replace /&/g  s replace /</g  replace /&/g  replace />/g  s replace /&/g  replace />/g  replace /</g  s s replace /</g  s s replace />/g  s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /"/g &#34; s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /'/g &#39; s replace /</g &lt; replace />/g &gt replace RE match s replace /[<>'"&]/g  s replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /&(?![\\w\\#]+;)/g &amp; s replace encode /&(?!#?\\w+;)/g /&/g &amp; replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /'/g &apos; s replace /[\\\\/:\\*\\?"<>\\\|]/g  s replace /[<>]/g _ s replace /&/g &gt; s replace /[\\#\\%4\\/\\-\\~\\>8\\_\\@0\\!\\&3\\[651d\\=e7fA2D\\(aFBb]/g  s replace /[<>]/g  replace /[^a-z]/g  s replace /[<>]/g  replace /[^abc]/g  s replace /[<>]/g  replace /[ -~]/g  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:216:20:216:25 | '&lt;' | enclosingFunctionName | typicalBadHtmlSanitizers |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:216:20:216:25 | '&lt;' | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:216:36:216:39 | />/g | CalleeFlexibleAccessPath | s().replace().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:216:36:216:39 | />/g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:216:36:216:39 | />/g | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:216:36:216:39 | />/g | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:216:36:216:39 | />/g | enclosingFunctionBody | s s replace /[<>]/g  s replace /[<>&]/g  s replace /[<>"]/g  s replace /</g  replace />/g  s replace /</g  replace />/g  replace /&/g  s replace /</g  replace /&/g  replace />/g  s replace /&/g  replace />/g  replace /</g  s s replace /</g  s s replace />/g  s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /"/g &#34; s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /'/g &#39; s replace /</g &lt; replace />/g &gt replace RE match s replace /[<>'"&]/g  s replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /&(?![\\w\\#]+;)/g &amp; s replace encode /&(?!#?\\w+;)/g /&/g &amp; replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /'/g &apos; s replace /[\\\\/:\\*\\?"<>\\\|]/g  s replace /[<>]/g _ s replace /&/g &gt; s replace /[\\#\\%4\\/\\-\\~\\>8\\_\\@0\\!\\&3\\[651d\\=e7fA2D\\(aFBb]/g  s replace /[<>]/g  replace /[^a-z]/g  s replace /[<>]/g  replace /[^abc]/g  s replace /[<>]/g  replace /[ -~]/g  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:216:36:216:39 | />/g | enclosingFunctionName | typicalBadHtmlSanitizers |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:216:36:216:39 | />/g | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:216:42:216:46 | '&gt' | CalleeFlexibleAccessPath | s().replace().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:216:42:216:46 | '&gt' | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:216:42:216:46 | '&gt' | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:216:42:216:46 | '&gt' | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:216:42:216:46 | '&gt' | enclosingFunctionBody | s s replace /[<>]/g  s replace /[<>&]/g  s replace /[<>"]/g  s replace /</g  replace />/g  s replace /</g  replace />/g  replace /&/g  s replace /</g  replace /&/g  replace />/g  s replace /&/g  replace />/g  replace /</g  s s replace /</g  s s replace />/g  s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /"/g &#34; s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /'/g &#39; s replace /</g &lt; replace />/g &gt replace RE match s replace /[<>'"&]/g  s replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /&(?![\\w\\#]+;)/g &amp; s replace encode /&(?!#?\\w+;)/g /&/g &amp; replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /'/g &apos; s replace /[\\\\/:\\*\\?"<>\\\|]/g  s replace /[<>]/g _ s replace /&/g &gt; s replace /[\\#\\%4\\/\\-\\~\\>8\\_\\@0\\!\\&3\\[651d\\=e7fA2D\\(aFBb]/g  s replace /[<>]/g  replace /[^a-z]/g  s replace /[<>]/g  replace /[^abc]/g  s replace /[<>]/g  replace /[ -~]/g  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:216:42:216:46 | '&gt' | enclosingFunctionName | typicalBadHtmlSanitizers |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:216:42:216:46 | '&gt' | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:216:57:216:60 | /&/g | CalleeFlexibleAccessPath | s().replace().replace().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:216:57:216:60 | /&/g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:216:57:216:60 | /&/g | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:216:57:216:60 | /&/g | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:216:57:216:60 | /&/g | enclosingFunctionBody | s s replace /[<>]/g  s replace /[<>&]/g  s replace /[<>"]/g  s replace /</g  replace />/g  s replace /</g  replace />/g  replace /&/g  s replace /</g  replace /&/g  replace />/g  s replace /&/g  replace />/g  replace /</g  s s replace /</g  s s replace />/g  s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /"/g &#34; s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /'/g &#39; s replace /</g &lt; replace />/g &gt replace RE match s replace /[<>'"&]/g  s replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /&(?![\\w\\#]+;)/g &amp; s replace encode /&(?!#?\\w+;)/g /&/g &amp; replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /'/g &apos; s replace /[\\\\/:\\*\\?"<>\\\|]/g  s replace /[<>]/g _ s replace /&/g &gt; s replace /[\\#\\%4\\/\\-\\~\\>8\\_\\@0\\!\\&3\\[651d\\=e7fA2D\\(aFBb]/g  s replace /[<>]/g  replace /[^a-z]/g  s replace /[<>]/g  replace /[^abc]/g  s replace /[<>]/g  replace /[ -~]/g  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:216:57:216:60 | /&/g | enclosingFunctionName | typicalBadHtmlSanitizers |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:216:57:216:60 | /&/g | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:216:63:216:69 | '&amp;' | CalleeFlexibleAccessPath | s().replace().replace().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:216:63:216:69 | '&amp;' | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:216:63:216:69 | '&amp;' | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:216:63:216:69 | '&amp;' | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:216:63:216:69 | '&amp;' | enclosingFunctionBody | s s replace /[<>]/g  s replace /[<>&]/g  s replace /[<>"]/g  s replace /</g  replace />/g  s replace /</g  replace />/g  replace /&/g  s replace /</g  replace /&/g  replace />/g  s replace /&/g  replace />/g  replace /</g  s s replace /</g  s s replace />/g  s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /"/g &#34; s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /'/g &#39; s replace /</g &lt; replace />/g &gt replace RE match s replace /[<>'"&]/g  s replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /&(?![\\w\\#]+;)/g &amp; s replace encode /&(?!#?\\w+;)/g /&/g &amp; replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /'/g &apos; s replace /[\\\\/:\\*\\?"<>\\\|]/g  s replace /[<>]/g _ s replace /&/g &gt; s replace /[\\#\\%4\\/\\-\\~\\>8\\_\\@0\\!\\&3\\[651d\\=e7fA2D\\(aFBb]/g  s replace /[<>]/g  replace /[^a-z]/g  s replace /[<>]/g  replace /[^abc]/g  s replace /[<>]/g  replace /[ -~]/g  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:216:63:216:69 | '&amp;' | enclosingFunctionName | typicalBadHtmlSanitizers |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:216:63:216:69 | '&amp;' | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:216:80:216:83 | /"/g | CalleeFlexibleAccessPath | s().replace().replace().replace().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:216:80:216:83 | /"/g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:216:80:216:83 | /"/g | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:216:80:216:83 | /"/g | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:216:80:216:83 | /"/g | enclosingFunctionBody | s s replace /[<>]/g  s replace /[<>&]/g  s replace /[<>"]/g  s replace /</g  replace />/g  s replace /</g  replace />/g  replace /&/g  s replace /</g  replace /&/g  replace />/g  s replace /&/g  replace />/g  replace /</g  s s replace /</g  s s replace />/g  s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /"/g &#34; s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /'/g &#39; s replace /</g &lt; replace />/g &gt replace RE match s replace /[<>'"&]/g  s replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /&(?![\\w\\#]+;)/g &amp; s replace encode /&(?!#?\\w+;)/g /&/g &amp; replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /'/g &apos; s replace /[\\\\/:\\*\\?"<>\\\|]/g  s replace /[<>]/g _ s replace /&/g &gt; s replace /[\\#\\%4\\/\\-\\~\\>8\\_\\@0\\!\\&3\\[651d\\=e7fA2D\\(aFBb]/g  s replace /[<>]/g  replace /[^a-z]/g  s replace /[<>]/g  replace /[^abc]/g  s replace /[<>]/g  replace /[ -~]/g  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:216:80:216:83 | /"/g | enclosingFunctionName | typicalBadHtmlSanitizers |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:216:80:216:83 | /"/g | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:216:86:216:92 | '&#34;' | CalleeFlexibleAccessPath | s().replace().replace().replace().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:216:86:216:92 | '&#34;' | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:216:86:216:92 | '&#34;' | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:216:86:216:92 | '&#34;' | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:216:86:216:92 | '&#34;' | enclosingFunctionBody | s s replace /[<>]/g  s replace /[<>&]/g  s replace /[<>"]/g  s replace /</g  replace />/g  s replace /</g  replace />/g  replace /&/g  s replace /</g  replace /&/g  replace />/g  s replace /&/g  replace />/g  replace /</g  s s replace /</g  s s replace />/g  s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /"/g &#34; s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /'/g &#39; s replace /</g &lt; replace />/g &gt replace RE match s replace /[<>'"&]/g  s replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /&(?![\\w\\#]+;)/g &amp; s replace encode /&(?!#?\\w+;)/g /&/g &amp; replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /'/g &apos; s replace /[\\\\/:\\*\\?"<>\\\|]/g  s replace /[<>]/g _ s replace /&/g &gt; s replace /[\\#\\%4\\/\\-\\~\\>8\\_\\@0\\!\\&3\\[651d\\=e7fA2D\\(aFBb]/g  s replace /[<>]/g  replace /[^a-z]/g  s replace /[<>]/g  replace /[^abc]/g  s replace /[<>]/g  replace /[ -~]/g  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:216:86:216:92 | '&#34;' | enclosingFunctionName | typicalBadHtmlSanitizers |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:216:86:216:92 | '&#34;' | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:217:14:217:17 | /</g | CalleeFlexibleAccessPath | s().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:217:14:217:17 | /</g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:217:14:217:17 | /</g | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:217:14:217:17 | /</g | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:217:14:217:17 | /</g | enclosingFunctionBody | s s replace /[<>]/g  s replace /[<>&]/g  s replace /[<>"]/g  s replace /</g  replace />/g  s replace /</g  replace />/g  replace /&/g  s replace /</g  replace /&/g  replace />/g  s replace /&/g  replace />/g  replace /</g  s s replace /</g  s s replace />/g  s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /"/g &#34; s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /'/g &#39; s replace /</g &lt; replace />/g &gt replace RE match s replace /[<>'"&]/g  s replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /&(?![\\w\\#]+;)/g &amp; s replace encode /&(?!#?\\w+;)/g /&/g &amp; replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /'/g &apos; s replace /[\\\\/:\\*\\?"<>\\\|]/g  s replace /[<>]/g _ s replace /&/g &gt; s replace /[\\#\\%4\\/\\-\\~\\>8\\_\\@0\\!\\&3\\[651d\\=e7fA2D\\(aFBb]/g  s replace /[<>]/g  replace /[^a-z]/g  s replace /[<>]/g  replace /[^abc]/g  s replace /[<>]/g  replace /[ -~]/g  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:217:14:217:17 | /</g | enclosingFunctionName | typicalBadHtmlSanitizers |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:217:14:217:17 | /</g | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:217:20:217:25 | '&lt;' | CalleeFlexibleAccessPath | s().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:217:20:217:25 | '&lt;' | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:217:20:217:25 | '&lt;' | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:217:20:217:25 | '&lt;' | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:217:20:217:25 | '&lt;' | enclosingFunctionBody | s s replace /[<>]/g  s replace /[<>&]/g  s replace /[<>"]/g  s replace /</g  replace />/g  s replace /</g  replace />/g  replace /&/g  s replace /</g  replace /&/g  replace />/g  s replace /&/g  replace />/g  replace /</g  s s replace /</g  s s replace />/g  s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /"/g &#34; s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /'/g &#39; s replace /</g &lt; replace />/g &gt replace RE match s replace /[<>'"&]/g  s replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /&(?![\\w\\#]+;)/g &amp; s replace encode /&(?!#?\\w+;)/g /&/g &amp; replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /'/g &apos; s replace /[\\\\/:\\*\\?"<>\\\|]/g  s replace /[<>]/g _ s replace /&/g &gt; s replace /[\\#\\%4\\/\\-\\~\\>8\\_\\@0\\!\\&3\\[651d\\=e7fA2D\\(aFBb]/g  s replace /[<>]/g  replace /[^a-z]/g  s replace /[<>]/g  replace /[^abc]/g  s replace /[<>]/g  replace /[ -~]/g  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:217:20:217:25 | '&lt;' | enclosingFunctionName | typicalBadHtmlSanitizers |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:217:20:217:25 | '&lt;' | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:217:36:217:39 | />/g | CalleeFlexibleAccessPath | s().replace().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:217:36:217:39 | />/g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:217:36:217:39 | />/g | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:217:36:217:39 | />/g | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:217:36:217:39 | />/g | enclosingFunctionBody | s s replace /[<>]/g  s replace /[<>&]/g  s replace /[<>"]/g  s replace /</g  replace />/g  s replace /</g  replace />/g  replace /&/g  s replace /</g  replace /&/g  replace />/g  s replace /&/g  replace />/g  replace /</g  s s replace /</g  s s replace />/g  s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /"/g &#34; s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /'/g &#39; s replace /</g &lt; replace />/g &gt replace RE match s replace /[<>'"&]/g  s replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /&(?![\\w\\#]+;)/g &amp; s replace encode /&(?!#?\\w+;)/g /&/g &amp; replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /'/g &apos; s replace /[\\\\/:\\*\\?"<>\\\|]/g  s replace /[<>]/g _ s replace /&/g &gt; s replace /[\\#\\%4\\/\\-\\~\\>8\\_\\@0\\!\\&3\\[651d\\=e7fA2D\\(aFBb]/g  s replace /[<>]/g  replace /[^a-z]/g  s replace /[<>]/g  replace /[^abc]/g  s replace /[<>]/g  replace /[ -~]/g  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:217:36:217:39 | />/g | enclosingFunctionName | typicalBadHtmlSanitizers |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:217:36:217:39 | />/g | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:217:42:217:46 | '&gt' | CalleeFlexibleAccessPath | s().replace().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:217:42:217:46 | '&gt' | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:217:42:217:46 | '&gt' | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:217:42:217:46 | '&gt' | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:217:42:217:46 | '&gt' | enclosingFunctionBody | s s replace /[<>]/g  s replace /[<>&]/g  s replace /[<>"]/g  s replace /</g  replace />/g  s replace /</g  replace />/g  replace /&/g  s replace /</g  replace /&/g  replace />/g  s replace /&/g  replace />/g  replace /</g  s s replace /</g  s s replace />/g  s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /"/g &#34; s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /'/g &#39; s replace /</g &lt; replace />/g &gt replace RE match s replace /[<>'"&]/g  s replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /&(?![\\w\\#]+;)/g &amp; s replace encode /&(?!#?\\w+;)/g /&/g &amp; replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /'/g &apos; s replace /[\\\\/:\\*\\?"<>\\\|]/g  s replace /[<>]/g _ s replace /&/g &gt; s replace /[\\#\\%4\\/\\-\\~\\>8\\_\\@0\\!\\&3\\[651d\\=e7fA2D\\(aFBb]/g  s replace /[<>]/g  replace /[^a-z]/g  s replace /[<>]/g  replace /[^abc]/g  s replace /[<>]/g  replace /[ -~]/g  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:217:42:217:46 | '&gt' | enclosingFunctionName | typicalBadHtmlSanitizers |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:217:42:217:46 | '&gt' | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:217:57:217:60 | /&/g | CalleeFlexibleAccessPath | s().replace().replace().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:217:57:217:60 | /&/g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:217:57:217:60 | /&/g | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:217:57:217:60 | /&/g | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:217:57:217:60 | /&/g | enclosingFunctionBody | s s replace /[<>]/g  s replace /[<>&]/g  s replace /[<>"]/g  s replace /</g  replace />/g  s replace /</g  replace />/g  replace /&/g  s replace /</g  replace /&/g  replace />/g  s replace /&/g  replace />/g  replace /</g  s s replace /</g  s s replace />/g  s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /"/g &#34; s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /'/g &#39; s replace /</g &lt; replace />/g &gt replace RE match s replace /[<>'"&]/g  s replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /&(?![\\w\\#]+;)/g &amp; s replace encode /&(?!#?\\w+;)/g /&/g &amp; replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /'/g &apos; s replace /[\\\\/:\\*\\?"<>\\\|]/g  s replace /[<>]/g _ s replace /&/g &gt; s replace /[\\#\\%4\\/\\-\\~\\>8\\_\\@0\\!\\&3\\[651d\\=e7fA2D\\(aFBb]/g  s replace /[<>]/g  replace /[^a-z]/g  s replace /[<>]/g  replace /[^abc]/g  s replace /[<>]/g  replace /[ -~]/g  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:217:57:217:60 | /&/g | enclosingFunctionName | typicalBadHtmlSanitizers |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:217:57:217:60 | /&/g | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:217:63:217:69 | '&amp;' | CalleeFlexibleAccessPath | s().replace().replace().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:217:63:217:69 | '&amp;' | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:217:63:217:69 | '&amp;' | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:217:63:217:69 | '&amp;' | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:217:63:217:69 | '&amp;' | enclosingFunctionBody | s s replace /[<>]/g  s replace /[<>&]/g  s replace /[<>"]/g  s replace /</g  replace />/g  s replace /</g  replace />/g  replace /&/g  s replace /</g  replace /&/g  replace />/g  s replace /&/g  replace />/g  replace /</g  s s replace /</g  s s replace />/g  s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /"/g &#34; s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /'/g &#39; s replace /</g &lt; replace />/g &gt replace RE match s replace /[<>'"&]/g  s replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /&(?![\\w\\#]+;)/g &amp; s replace encode /&(?!#?\\w+;)/g /&/g &amp; replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /'/g &apos; s replace /[\\\\/:\\*\\?"<>\\\|]/g  s replace /[<>]/g _ s replace /&/g &gt; s replace /[\\#\\%4\\/\\-\\~\\>8\\_\\@0\\!\\&3\\[651d\\=e7fA2D\\(aFBb]/g  s replace /[<>]/g  replace /[^a-z]/g  s replace /[<>]/g  replace /[^abc]/g  s replace /[<>]/g  replace /[ -~]/g  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:217:63:217:69 | '&amp;' | enclosingFunctionName | typicalBadHtmlSanitizers |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:217:63:217:69 | '&amp;' | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:217:80:217:83 | /'/g | CalleeFlexibleAccessPath | s().replace().replace().replace().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:217:80:217:83 | /'/g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:217:80:217:83 | /'/g | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:217:80:217:83 | /'/g | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:217:80:217:83 | /'/g | enclosingFunctionBody | s s replace /[<>]/g  s replace /[<>&]/g  s replace /[<>"]/g  s replace /</g  replace />/g  s replace /</g  replace />/g  replace /&/g  s replace /</g  replace /&/g  replace />/g  s replace /&/g  replace />/g  replace /</g  s s replace /</g  s s replace />/g  s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /"/g &#34; s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /'/g &#39; s replace /</g &lt; replace />/g &gt replace RE match s replace /[<>'"&]/g  s replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /&(?![\\w\\#]+;)/g &amp; s replace encode /&(?!#?\\w+;)/g /&/g &amp; replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /'/g &apos; s replace /[\\\\/:\\*\\?"<>\\\|]/g  s replace /[<>]/g _ s replace /&/g &gt; s replace /[\\#\\%4\\/\\-\\~\\>8\\_\\@0\\!\\&3\\[651d\\=e7fA2D\\(aFBb]/g  s replace /[<>]/g  replace /[^a-z]/g  s replace /[<>]/g  replace /[^abc]/g  s replace /[<>]/g  replace /[ -~]/g  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:217:80:217:83 | /'/g | enclosingFunctionName | typicalBadHtmlSanitizers |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:217:80:217:83 | /'/g | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:217:86:217:92 | '&#39;' | CalleeFlexibleAccessPath | s().replace().replace().replace().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:217:86:217:92 | '&#39;' | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:217:86:217:92 | '&#39;' | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:217:86:217:92 | '&#39;' | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:217:86:217:92 | '&#39;' | enclosingFunctionBody | s s replace /[<>]/g  s replace /[<>&]/g  s replace /[<>"]/g  s replace /</g  replace />/g  s replace /</g  replace />/g  replace /&/g  s replace /</g  replace /&/g  replace />/g  s replace /&/g  replace />/g  replace /</g  s s replace /</g  s s replace />/g  s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /"/g &#34; s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /'/g &#39; s replace /</g &lt; replace />/g &gt replace RE match s replace /[<>'"&]/g  s replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /&(?![\\w\\#]+;)/g &amp; s replace encode /&(?!#?\\w+;)/g /&/g &amp; replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /'/g &apos; s replace /[\\\\/:\\*\\?"<>\\\|]/g  s replace /[<>]/g _ s replace /&/g &gt; s replace /[\\#\\%4\\/\\-\\~\\>8\\_\\@0\\!\\&3\\[651d\\=e7fA2D\\(aFBb]/g  s replace /[<>]/g  replace /[^a-z]/g  s replace /[<>]/g  replace /[^abc]/g  s replace /[<>]/g  replace /[ -~]/g  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:217:86:217:92 | '&#39;' | enclosingFunctionName | typicalBadHtmlSanitizers |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:217:86:217:92 | '&#39;' | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:219:14:219:17 | /</g | CalleeFlexibleAccessPath | s().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:219:14:219:17 | /</g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:219:14:219:17 | /</g | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:219:14:219:17 | /</g | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:219:14:219:17 | /</g | enclosingFunctionBody | s s replace /[<>]/g  s replace /[<>&]/g  s replace /[<>"]/g  s replace /</g  replace />/g  s replace /</g  replace />/g  replace /&/g  s replace /</g  replace /&/g  replace />/g  s replace /&/g  replace />/g  replace /</g  s s replace /</g  s s replace />/g  s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /"/g &#34; s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /'/g &#39; s replace /</g &lt; replace />/g &gt replace RE match s replace /[<>'"&]/g  s replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /&(?![\\w\\#]+;)/g &amp; s replace encode /&(?!#?\\w+;)/g /&/g &amp; replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /'/g &apos; s replace /[\\\\/:\\*\\?"<>\\\|]/g  s replace /[<>]/g _ s replace /&/g &gt; s replace /[\\#\\%4\\/\\-\\~\\>8\\_\\@0\\!\\&3\\[651d\\=e7fA2D\\(aFBb]/g  s replace /[<>]/g  replace /[^a-z]/g  s replace /[<>]/g  replace /[^abc]/g  s replace /[<>]/g  replace /[ -~]/g  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:219:14:219:17 | /</g | enclosingFunctionName | typicalBadHtmlSanitizers |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:219:14:219:17 | /</g | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:219:20:219:25 | '&lt;' | CalleeFlexibleAccessPath | s().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:219:20:219:25 | '&lt;' | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:219:20:219:25 | '&lt;' | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:219:20:219:25 | '&lt;' | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:219:20:219:25 | '&lt;' | enclosingFunctionBody | s s replace /[<>]/g  s replace /[<>&]/g  s replace /[<>"]/g  s replace /</g  replace />/g  s replace /</g  replace />/g  replace /&/g  s replace /</g  replace /&/g  replace />/g  s replace /&/g  replace />/g  replace /</g  s s replace /</g  s s replace />/g  s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /"/g &#34; s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /'/g &#39; s replace /</g &lt; replace />/g &gt replace RE match s replace /[<>'"&]/g  s replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /&(?![\\w\\#]+;)/g &amp; s replace encode /&(?!#?\\w+;)/g /&/g &amp; replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /'/g &apos; s replace /[\\\\/:\\*\\?"<>\\\|]/g  s replace /[<>]/g _ s replace /&/g &gt; s replace /[\\#\\%4\\/\\-\\~\\>8\\_\\@0\\!\\&3\\[651d\\=e7fA2D\\(aFBb]/g  s replace /[<>]/g  replace /[^a-z]/g  s replace /[<>]/g  replace /[^abc]/g  s replace /[<>]/g  replace /[ -~]/g  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:219:20:219:25 | '&lt;' | enclosingFunctionName | typicalBadHtmlSanitizers |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:219:20:219:25 | '&lt;' | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:219:36:219:39 | />/g | CalleeFlexibleAccessPath | s().replace().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:219:36:219:39 | />/g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:219:36:219:39 | />/g | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:219:36:219:39 | />/g | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:219:36:219:39 | />/g | enclosingFunctionBody | s s replace /[<>]/g  s replace /[<>&]/g  s replace /[<>"]/g  s replace /</g  replace />/g  s replace /</g  replace />/g  replace /&/g  s replace /</g  replace /&/g  replace />/g  s replace /&/g  replace />/g  replace /</g  s s replace /</g  s s replace />/g  s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /"/g &#34; s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /'/g &#39; s replace /</g &lt; replace />/g &gt replace RE match s replace /[<>'"&]/g  s replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /&(?![\\w\\#]+;)/g &amp; s replace encode /&(?!#?\\w+;)/g /&/g &amp; replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /'/g &apos; s replace /[\\\\/:\\*\\?"<>\\\|]/g  s replace /[<>]/g _ s replace /&/g &gt; s replace /[\\#\\%4\\/\\-\\~\\>8\\_\\@0\\!\\&3\\[651d\\=e7fA2D\\(aFBb]/g  s replace /[<>]/g  replace /[^a-z]/g  s replace /[<>]/g  replace /[^abc]/g  s replace /[<>]/g  replace /[ -~]/g  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:219:36:219:39 | />/g | enclosingFunctionName | typicalBadHtmlSanitizers |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:219:36:219:39 | />/g | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:219:42:219:46 | '&gt' | CalleeFlexibleAccessPath | s().replace().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:219:42:219:46 | '&gt' | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:219:42:219:46 | '&gt' | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:219:42:219:46 | '&gt' | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:219:42:219:46 | '&gt' | enclosingFunctionBody | s s replace /[<>]/g  s replace /[<>&]/g  s replace /[<>"]/g  s replace /</g  replace />/g  s replace /</g  replace />/g  replace /&/g  s replace /</g  replace /&/g  replace />/g  s replace /&/g  replace />/g  replace /</g  s s replace /</g  s s replace />/g  s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /"/g &#34; s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /'/g &#39; s replace /</g &lt; replace />/g &gt replace RE match s replace /[<>'"&]/g  s replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /&(?![\\w\\#]+;)/g &amp; s replace encode /&(?!#?\\w+;)/g /&/g &amp; replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /'/g &apos; s replace /[\\\\/:\\*\\?"<>\\\|]/g  s replace /[<>]/g _ s replace /&/g &gt; s replace /[\\#\\%4\\/\\-\\~\\>8\\_\\@0\\!\\&3\\[651d\\=e7fA2D\\(aFBb]/g  s replace /[<>]/g  replace /[^a-z]/g  s replace /[<>]/g  replace /[^abc]/g  s replace /[<>]/g  replace /[ -~]/g  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:219:42:219:46 | '&gt' | enclosingFunctionName | typicalBadHtmlSanitizers |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:219:42:219:46 | '&gt' | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:219:57:219:58 | RE | CalleeFlexibleAccessPath | s().replace().replace().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:219:57:219:58 | RE | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:219:57:219:58 | RE | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:219:57:219:58 | RE | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:219:57:219:58 | RE | enclosingFunctionBody | s s replace /[<>]/g  s replace /[<>&]/g  s replace /[<>"]/g  s replace /</g  replace />/g  s replace /</g  replace />/g  replace /&/g  s replace /</g  replace /&/g  replace />/g  s replace /&/g  replace />/g  replace /</g  s s replace /</g  s s replace />/g  s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /"/g &#34; s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /'/g &#39; s replace /</g &lt; replace />/g &gt replace RE match s replace /[<>'"&]/g  s replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /&(?![\\w\\#]+;)/g &amp; s replace encode /&(?!#?\\w+;)/g /&/g &amp; replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /'/g &apos; s replace /[\\\\/:\\*\\?"<>\\\|]/g  s replace /[<>]/g _ s replace /&/g &gt; s replace /[\\#\\%4\\/\\-\\~\\>8\\_\\@0\\!\\&3\\[651d\\=e7fA2D\\(aFBb]/g  s replace /[<>]/g  replace /[^a-z]/g  s replace /[<>]/g  replace /[^abc]/g  s replace /[<>]/g  replace /[ -~]/g  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:219:57:219:58 | RE | enclosingFunctionName | typicalBadHtmlSanitizers |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:219:57:219:58 | RE | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:219:61:219:88 | functio ... .. */ } | CalleeFlexibleAccessPath | s().replace().replace().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:219:61:219:88 | functio ... .. */ } | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:219:61:219:88 | functio ... .. */ } | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:219:61:219:88 | functio ... .. */ } | contextSurroundingFunctionParameters | (s)\n(match) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:219:61:219:88 | functio ... .. */ } | enclosingFunctionBody | s s replace /[<>]/g  s replace /[<>&]/g  s replace /[<>"]/g  s replace /</g  replace />/g  s replace /</g  replace />/g  replace /&/g  s replace /</g  replace /&/g  replace />/g  s replace /&/g  replace />/g  replace /</g  s s replace /</g  s s replace />/g  s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /"/g &#34; s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /'/g &#39; s replace /</g &lt; replace />/g &gt replace RE match s replace /[<>'"&]/g  s replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /&(?![\\w\\#]+;)/g &amp; s replace encode /&(?!#?\\w+;)/g /&/g &amp; replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /'/g &apos; s replace /[\\\\/:\\*\\?"<>\\\|]/g  s replace /[<>]/g _ s replace /&/g &gt; s replace /[\\#\\%4\\/\\-\\~\\>8\\_\\@0\\!\\&3\\[651d\\=e7fA2D\\(aFBb]/g  s replace /[<>]/g  replace /[^a-z]/g  s replace /[<>]/g  replace /[^abc]/g  s replace /[<>]/g  replace /[ -~]/g  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:219:61:219:88 | functio ... .. */ } | enclosingFunctionName | typicalBadHtmlSanitizers |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:219:61:219:88 | functio ... .. */ } | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:221:14:221:23 | /[<>'"&]/g | CalleeFlexibleAccessPath | s().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:221:14:221:23 | /[<>'"&]/g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:221:14:221:23 | /[<>'"&]/g | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:221:14:221:23 | /[<>'"&]/g | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:221:14:221:23 | /[<>'"&]/g | enclosingFunctionBody | s s replace /[<>]/g  s replace /[<>&]/g  s replace /[<>"]/g  s replace /</g  replace />/g  s replace /</g  replace />/g  replace /&/g  s replace /</g  replace /&/g  replace />/g  s replace /&/g  replace />/g  replace /</g  s s replace /</g  s s replace />/g  s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /"/g &#34; s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /'/g &#39; s replace /</g &lt; replace />/g &gt replace RE match s replace /[<>'"&]/g  s replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /&(?![\\w\\#]+;)/g &amp; s replace encode /&(?!#?\\w+;)/g /&/g &amp; replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /'/g &apos; s replace /[\\\\/:\\*\\?"<>\\\|]/g  s replace /[<>]/g _ s replace /&/g &gt; s replace /[\\#\\%4\\/\\-\\~\\>8\\_\\@0\\!\\&3\\[651d\\=e7fA2D\\(aFBb]/g  s replace /[<>]/g  replace /[^a-z]/g  s replace /[<>]/g  replace /[^abc]/g  s replace /[<>]/g  replace /[ -~]/g  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:221:14:221:23 | /[<>'"&]/g | enclosingFunctionName | typicalBadHtmlSanitizers |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:221:14:221:23 | /[<>'"&]/g | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:221:25:221:26 | '' | CalleeFlexibleAccessPath | s().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:221:25:221:26 | '' | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:221:25:221:26 | '' | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:221:25:221:26 | '' | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:221:25:221:26 | '' | enclosingFunctionBody | s s replace /[<>]/g  s replace /[<>&]/g  s replace /[<>"]/g  s replace /</g  replace />/g  s replace /</g  replace />/g  replace /&/g  s replace /</g  replace /&/g  replace />/g  s replace /&/g  replace />/g  replace /</g  s s replace /</g  s s replace />/g  s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /"/g &#34; s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /'/g &#39; s replace /</g &lt; replace />/g &gt replace RE match s replace /[<>'"&]/g  s replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /&(?![\\w\\#]+;)/g &amp; s replace encode /&(?!#?\\w+;)/g /&/g &amp; replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /'/g &apos; s replace /[\\\\/:\\*\\?"<>\\\|]/g  s replace /[<>]/g _ s replace /&/g &gt; s replace /[\\#\\%4\\/\\-\\~\\>8\\_\\@0\\!\\&3\\[651d\\=e7fA2D\\(aFBb]/g  s replace /[<>]/g  replace /[^a-z]/g  s replace /[<>]/g  replace /[^abc]/g  s replace /[<>]/g  replace /[ -~]/g  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:221:25:221:26 | '' | enclosingFunctionName | typicalBadHtmlSanitizers |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:221:25:221:26 | '' | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:223:14:223:17 | /</g | CalleeFlexibleAccessPath | s().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:223:14:223:17 | /</g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:223:14:223:17 | /</g | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:223:14:223:17 | /</g | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:223:14:223:17 | /</g | enclosingFunctionBody | s s replace /[<>]/g  s replace /[<>&]/g  s replace /[<>"]/g  s replace /</g  replace />/g  s replace /</g  replace />/g  replace /&/g  s replace /</g  replace /&/g  replace />/g  s replace /&/g  replace />/g  replace /</g  s s replace /</g  s s replace />/g  s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /"/g &#34; s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /'/g &#39; s replace /</g &lt; replace />/g &gt replace RE match s replace /[<>'"&]/g  s replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /&(?![\\w\\#]+;)/g &amp; s replace encode /&(?!#?\\w+;)/g /&/g &amp; replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /'/g &apos; s replace /[\\\\/:\\*\\?"<>\\\|]/g  s replace /[<>]/g _ s replace /&/g &gt; s replace /[\\#\\%4\\/\\-\\~\\>8\\_\\@0\\!\\&3\\[651d\\=e7fA2D\\(aFBb]/g  s replace /[<>]/g  replace /[^a-z]/g  s replace /[<>]/g  replace /[^abc]/g  s replace /[<>]/g  replace /[ -~]/g  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:223:14:223:17 | /</g | enclosingFunctionName | typicalBadHtmlSanitizers |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:223:14:223:17 | /</g | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:223:20:223:25 | '&lt;' | CalleeFlexibleAccessPath | s().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:223:20:223:25 | '&lt;' | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:223:20:223:25 | '&lt;' | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:223:20:223:25 | '&lt;' | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:223:20:223:25 | '&lt;' | enclosingFunctionBody | s s replace /[<>]/g  s replace /[<>&]/g  s replace /[<>"]/g  s replace /</g  replace />/g  s replace /</g  replace />/g  replace /&/g  s replace /</g  replace /&/g  replace />/g  s replace /&/g  replace />/g  replace /</g  s s replace /</g  s s replace />/g  s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /"/g &#34; s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /'/g &#39; s replace /</g &lt; replace />/g &gt replace RE match s replace /[<>'"&]/g  s replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /&(?![\\w\\#]+;)/g &amp; s replace encode /&(?!#?\\w+;)/g /&/g &amp; replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /'/g &apos; s replace /[\\\\/:\\*\\?"<>\\\|]/g  s replace /[<>]/g _ s replace /&/g &gt; s replace /[\\#\\%4\\/\\-\\~\\>8\\_\\@0\\!\\&3\\[651d\\=e7fA2D\\(aFBb]/g  s replace /[<>]/g  replace /[^a-z]/g  s replace /[<>]/g  replace /[^abc]/g  s replace /[<>]/g  replace /[ -~]/g  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:223:20:223:25 | '&lt;' | enclosingFunctionName | typicalBadHtmlSanitizers |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:223:20:223:25 | '&lt;' | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:223:36:223:39 | />/g | CalleeFlexibleAccessPath | s().replace().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:223:36:223:39 | />/g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:223:36:223:39 | />/g | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:223:36:223:39 | />/g | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:223:36:223:39 | />/g | enclosingFunctionBody | s s replace /[<>]/g  s replace /[<>&]/g  s replace /[<>"]/g  s replace /</g  replace />/g  s replace /</g  replace />/g  replace /&/g  s replace /</g  replace /&/g  replace />/g  s replace /&/g  replace />/g  replace /</g  s s replace /</g  s s replace />/g  s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /"/g &#34; s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /'/g &#39; s replace /</g &lt; replace />/g &gt replace RE match s replace /[<>'"&]/g  s replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /&(?![\\w\\#]+;)/g &amp; s replace encode /&(?!#?\\w+;)/g /&/g &amp; replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /'/g &apos; s replace /[\\\\/:\\*\\?"<>\\\|]/g  s replace /[<>]/g _ s replace /&/g &gt; s replace /[\\#\\%4\\/\\-\\~\\>8\\_\\@0\\!\\&3\\[651d\\=e7fA2D\\(aFBb]/g  s replace /[<>]/g  replace /[^a-z]/g  s replace /[<>]/g  replace /[^abc]/g  s replace /[<>]/g  replace /[ -~]/g  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:223:36:223:39 | />/g | enclosingFunctionName | typicalBadHtmlSanitizers |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:223:36:223:39 | />/g | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:223:42:223:47 | '&gt;' | CalleeFlexibleAccessPath | s().replace().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:223:42:223:47 | '&gt;' | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:223:42:223:47 | '&gt;' | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:223:42:223:47 | '&gt;' | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:223:42:223:47 | '&gt;' | enclosingFunctionBody | s s replace /[<>]/g  s replace /[<>&]/g  s replace /[<>"]/g  s replace /</g  replace />/g  s replace /</g  replace />/g  replace /&/g  s replace /</g  replace /&/g  replace />/g  s replace /&/g  replace />/g  replace /</g  s s replace /</g  s s replace />/g  s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /"/g &#34; s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /'/g &#39; s replace /</g &lt; replace />/g &gt replace RE match s replace /[<>'"&]/g  s replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /&(?![\\w\\#]+;)/g &amp; s replace encode /&(?!#?\\w+;)/g /&/g &amp; replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /'/g &apos; s replace /[\\\\/:\\*\\?"<>\\\|]/g  s replace /[<>]/g _ s replace /&/g &gt; s replace /[\\#\\%4\\/\\-\\~\\>8\\_\\@0\\!\\&3\\[651d\\=e7fA2D\\(aFBb]/g  s replace /[<>]/g  replace /[^a-z]/g  s replace /[<>]/g  replace /[^abc]/g  s replace /[<>]/g  replace /[ -~]/g  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:223:42:223:47 | '&gt;' | enclosingFunctionName | typicalBadHtmlSanitizers |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:223:42:223:47 | '&gt;' | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:223:58:223:61 | /"/g | CalleeFlexibleAccessPath | s().replace().replace().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:223:58:223:61 | /"/g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:223:58:223:61 | /"/g | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:223:58:223:61 | /"/g | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:223:58:223:61 | /"/g | enclosingFunctionBody | s s replace /[<>]/g  s replace /[<>&]/g  s replace /[<>"]/g  s replace /</g  replace />/g  s replace /</g  replace />/g  replace /&/g  s replace /</g  replace /&/g  replace />/g  s replace /&/g  replace />/g  replace /</g  s s replace /</g  s s replace />/g  s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /"/g &#34; s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /'/g &#39; s replace /</g &lt; replace />/g &gt replace RE match s replace /[<>'"&]/g  s replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /&(?![\\w\\#]+;)/g &amp; s replace encode /&(?!#?\\w+;)/g /&/g &amp; replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /'/g &apos; s replace /[\\\\/:\\*\\?"<>\\\|]/g  s replace /[<>]/g _ s replace /&/g &gt; s replace /[\\#\\%4\\/\\-\\~\\>8\\_\\@0\\!\\&3\\[651d\\=e7fA2D\\(aFBb]/g  s replace /[<>]/g  replace /[^a-z]/g  s replace /[<>]/g  replace /[^abc]/g  s replace /[<>]/g  replace /[ -~]/g  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:223:58:223:61 | /"/g | enclosingFunctionName | typicalBadHtmlSanitizers |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:223:58:223:61 | /"/g | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:223:64:223:71 | '&quot;' | CalleeFlexibleAccessPath | s().replace().replace().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:223:64:223:71 | '&quot;' | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:223:64:223:71 | '&quot;' | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:223:64:223:71 | '&quot;' | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:223:64:223:71 | '&quot;' | enclosingFunctionBody | s s replace /[<>]/g  s replace /[<>&]/g  s replace /[<>"]/g  s replace /</g  replace />/g  s replace /</g  replace />/g  replace /&/g  s replace /</g  replace /&/g  replace />/g  s replace /&/g  replace />/g  replace /</g  s s replace /</g  s s replace />/g  s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /"/g &#34; s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /'/g &#39; s replace /</g &lt; replace />/g &gt replace RE match s replace /[<>'"&]/g  s replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /&(?![\\w\\#]+;)/g &amp; s replace encode /&(?!#?\\w+;)/g /&/g &amp; replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /'/g &apos; s replace /[\\\\/:\\*\\?"<>\\\|]/g  s replace /[<>]/g _ s replace /&/g &gt; s replace /[\\#\\%4\\/\\-\\~\\>8\\_\\@0\\!\\&3\\[651d\\=e7fA2D\\(aFBb]/g  s replace /[<>]/g  replace /[^a-z]/g  s replace /[<>]/g  replace /[^abc]/g  s replace /[<>]/g  replace /[ -~]/g  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:223:64:223:71 | '&quot;' | enclosingFunctionName | typicalBadHtmlSanitizers |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:223:64:223:71 | '&quot;' | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:223:82:223:97 | /&(?![\\w\\#]+;)/g | CalleeFlexibleAccessPath | s().replace().replace().replace().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:223:82:223:97 | /&(?![\\w\\#]+;)/g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:223:82:223:97 | /&(?![\\w\\#]+;)/g | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:223:82:223:97 | /&(?![\\w\\#]+;)/g | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:223:82:223:97 | /&(?![\\w\\#]+;)/g | enclosingFunctionBody | s s replace /[<>]/g  s replace /[<>&]/g  s replace /[<>"]/g  s replace /</g  replace />/g  s replace /</g  replace />/g  replace /&/g  s replace /</g  replace /&/g  replace />/g  s replace /&/g  replace />/g  replace /</g  s s replace /</g  s s replace />/g  s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /"/g &#34; s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /'/g &#39; s replace /</g &lt; replace />/g &gt replace RE match s replace /[<>'"&]/g  s replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /&(?![\\w\\#]+;)/g &amp; s replace encode /&(?!#?\\w+;)/g /&/g &amp; replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /'/g &apos; s replace /[\\\\/:\\*\\?"<>\\\|]/g  s replace /[<>]/g _ s replace /&/g &gt; s replace /[\\#\\%4\\/\\-\\~\\>8\\_\\@0\\!\\&3\\[651d\\=e7fA2D\\(aFBb]/g  s replace /[<>]/g  replace /[^a-z]/g  s replace /[<>]/g  replace /[^abc]/g  s replace /[<>]/g  replace /[ -~]/g  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:223:82:223:97 | /&(?![\\w\\#]+;)/g | enclosingFunctionName | typicalBadHtmlSanitizers |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:223:82:223:97 | /&(?![\\w\\#]+;)/g | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:223:100:223:106 | '&amp;' | CalleeFlexibleAccessPath | s().replace().replace().replace().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:223:100:223:106 | '&amp;' | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:223:100:223:106 | '&amp;' | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:223:100:223:106 | '&amp;' | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:223:100:223:106 | '&amp;' | enclosingFunctionBody | s s replace /[<>]/g  s replace /[<>&]/g  s replace /[<>"]/g  s replace /</g  replace />/g  s replace /</g  replace />/g  replace /&/g  s replace /</g  replace /&/g  replace />/g  s replace /&/g  replace />/g  replace /</g  s s replace /</g  s s replace />/g  s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /"/g &#34; s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /'/g &#39; s replace /</g &lt; replace />/g &gt replace RE match s replace /[<>'"&]/g  s replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /&(?![\\w\\#]+;)/g &amp; s replace encode /&(?!#?\\w+;)/g /&/g &amp; replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /'/g &apos; s replace /[\\\\/:\\*\\?"<>\\\|]/g  s replace /[<>]/g _ s replace /&/g &gt; s replace /[\\#\\%4\\/\\-\\~\\>8\\_\\@0\\!\\&3\\[651d\\=e7fA2D\\(aFBb]/g  s replace /[<>]/g  replace /[^a-z]/g  s replace /[<>]/g  replace /[^abc]/g  s replace /[<>]/g  replace /[ -~]/g  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:223:100:223:106 | '&amp;' | enclosingFunctionName | typicalBadHtmlSanitizers |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:223:100:223:106 | '&amp;' | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:225:14:225:44 | !encode ...  : /&/g | CalleeFlexibleAccessPath | s().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:225:14:225:44 | !encode ...  : /&/g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:225:14:225:44 | !encode ...  : /&/g | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:225:14:225:44 | !encode ...  : /&/g | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:225:14:225:44 | !encode ...  : /&/g | enclosingFunctionBody | s s replace /[<>]/g  s replace /[<>&]/g  s replace /[<>"]/g  s replace /</g  replace />/g  s replace /</g  replace />/g  replace /&/g  s replace /</g  replace /&/g  replace />/g  s replace /&/g  replace />/g  replace /</g  s s replace /</g  s s replace />/g  s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /"/g &#34; s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /'/g &#39; s replace /</g &lt; replace />/g &gt replace RE match s replace /[<>'"&]/g  s replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /&(?![\\w\\#]+;)/g &amp; s replace encode /&(?!#?\\w+;)/g /&/g &amp; replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /'/g &apos; s replace /[\\\\/:\\*\\?"<>\\\|]/g  s replace /[<>]/g _ s replace /&/g &gt; s replace /[\\#\\%4\\/\\-\\~\\>8\\_\\@0\\!\\&3\\[651d\\=e7fA2D\\(aFBb]/g  s replace /[<>]/g  replace /[^a-z]/g  s replace /[<>]/g  replace /[^abc]/g  s replace /[<>]/g  replace /[ -~]/g  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:225:14:225:44 | !encode ...  : /&/g | enclosingFunctionName | typicalBadHtmlSanitizers |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:225:14:225:44 | !encode ...  : /&/g | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:225:47:225:53 | '&amp;' | CalleeFlexibleAccessPath | s().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:225:47:225:53 | '&amp;' | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:225:47:225:53 | '&amp;' | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:225:47:225:53 | '&amp;' | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:225:47:225:53 | '&amp;' | enclosingFunctionBody | s s replace /[<>]/g  s replace /[<>&]/g  s replace /[<>"]/g  s replace /</g  replace />/g  s replace /</g  replace />/g  replace /&/g  s replace /</g  replace /&/g  replace />/g  s replace /&/g  replace />/g  replace /</g  s s replace /</g  s s replace />/g  s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /"/g &#34; s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /'/g &#39; s replace /</g &lt; replace />/g &gt replace RE match s replace /[<>'"&]/g  s replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /&(?![\\w\\#]+;)/g &amp; s replace encode /&(?!#?\\w+;)/g /&/g &amp; replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /'/g &apos; s replace /[\\\\/:\\*\\?"<>\\\|]/g  s replace /[<>]/g _ s replace /&/g &gt; s replace /[\\#\\%4\\/\\-\\~\\>8\\_\\@0\\!\\&3\\[651d\\=e7fA2D\\(aFBb]/g  s replace /[<>]/g  replace /[^a-z]/g  s replace /[<>]/g  replace /[^abc]/g  s replace /[<>]/g  replace /[ -~]/g  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:225:47:225:53 | '&amp;' | enclosingFunctionName | typicalBadHtmlSanitizers |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:225:47:225:53 | '&amp;' | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:225:64:225:67 | /</g | CalleeFlexibleAccessPath | s().replace().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:225:64:225:67 | /</g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:225:64:225:67 | /</g | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:225:64:225:67 | /</g | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:225:64:225:67 | /</g | enclosingFunctionBody | s s replace /[<>]/g  s replace /[<>&]/g  s replace /[<>"]/g  s replace /</g  replace />/g  s replace /</g  replace />/g  replace /&/g  s replace /</g  replace /&/g  replace />/g  s replace /&/g  replace />/g  replace /</g  s s replace /</g  s s replace />/g  s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /"/g &#34; s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /'/g &#39; s replace /</g &lt; replace />/g &gt replace RE match s replace /[<>'"&]/g  s replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /&(?![\\w\\#]+;)/g &amp; s replace encode /&(?!#?\\w+;)/g /&/g &amp; replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /'/g &apos; s replace /[\\\\/:\\*\\?"<>\\\|]/g  s replace /[<>]/g _ s replace /&/g &gt; s replace /[\\#\\%4\\/\\-\\~\\>8\\_\\@0\\!\\&3\\[651d\\=e7fA2D\\(aFBb]/g  s replace /[<>]/g  replace /[^a-z]/g  s replace /[<>]/g  replace /[^abc]/g  s replace /[<>]/g  replace /[ -~]/g  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:225:64:225:67 | /</g | enclosingFunctionName | typicalBadHtmlSanitizers |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:225:64:225:67 | /</g | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:225:70:225:75 | '&lt;' | CalleeFlexibleAccessPath | s().replace().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:225:70:225:75 | '&lt;' | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:225:70:225:75 | '&lt;' | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:225:70:225:75 | '&lt;' | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:225:70:225:75 | '&lt;' | enclosingFunctionBody | s s replace /[<>]/g  s replace /[<>&]/g  s replace /[<>"]/g  s replace /</g  replace />/g  s replace /</g  replace />/g  replace /&/g  s replace /</g  replace /&/g  replace />/g  s replace /&/g  replace />/g  replace /</g  s s replace /</g  s s replace />/g  s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /"/g &#34; s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /'/g &#39; s replace /</g &lt; replace />/g &gt replace RE match s replace /[<>'"&]/g  s replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /&(?![\\w\\#]+;)/g &amp; s replace encode /&(?!#?\\w+;)/g /&/g &amp; replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /'/g &apos; s replace /[\\\\/:\\*\\?"<>\\\|]/g  s replace /[<>]/g _ s replace /&/g &gt; s replace /[\\#\\%4\\/\\-\\~\\>8\\_\\@0\\!\\&3\\[651d\\=e7fA2D\\(aFBb]/g  s replace /[<>]/g  replace /[^a-z]/g  s replace /[<>]/g  replace /[^abc]/g  s replace /[<>]/g  replace /[ -~]/g  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:225:70:225:75 | '&lt;' | enclosingFunctionName | typicalBadHtmlSanitizers |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:225:70:225:75 | '&lt;' | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:225:86:225:89 | />/g | CalleeFlexibleAccessPath | s().replace().replace().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:225:86:225:89 | />/g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:225:86:225:89 | />/g | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:225:86:225:89 | />/g | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:225:86:225:89 | />/g | enclosingFunctionBody | s s replace /[<>]/g  s replace /[<>&]/g  s replace /[<>"]/g  s replace /</g  replace />/g  s replace /</g  replace />/g  replace /&/g  s replace /</g  replace /&/g  replace />/g  s replace /&/g  replace />/g  replace /</g  s s replace /</g  s s replace />/g  s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /"/g &#34; s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /'/g &#39; s replace /</g &lt; replace />/g &gt replace RE match s replace /[<>'"&]/g  s replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /&(?![\\w\\#]+;)/g &amp; s replace encode /&(?!#?\\w+;)/g /&/g &amp; replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /'/g &apos; s replace /[\\\\/:\\*\\?"<>\\\|]/g  s replace /[<>]/g _ s replace /&/g &gt; s replace /[\\#\\%4\\/\\-\\~\\>8\\_\\@0\\!\\&3\\[651d\\=e7fA2D\\(aFBb]/g  s replace /[<>]/g  replace /[^a-z]/g  s replace /[<>]/g  replace /[^abc]/g  s replace /[<>]/g  replace /[ -~]/g  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:225:86:225:89 | />/g | enclosingFunctionName | typicalBadHtmlSanitizers |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:225:86:225:89 | />/g | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:225:92:225:97 | '&gt;' | CalleeFlexibleAccessPath | s().replace().replace().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:225:92:225:97 | '&gt;' | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:225:92:225:97 | '&gt;' | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:225:92:225:97 | '&gt;' | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:225:92:225:97 | '&gt;' | enclosingFunctionBody | s s replace /[<>]/g  s replace /[<>&]/g  s replace /[<>"]/g  s replace /</g  replace />/g  s replace /</g  replace />/g  replace /&/g  s replace /</g  replace /&/g  replace />/g  s replace /&/g  replace />/g  replace /</g  s s replace /</g  s s replace />/g  s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /"/g &#34; s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /'/g &#39; s replace /</g &lt; replace />/g &gt replace RE match s replace /[<>'"&]/g  s replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /&(?![\\w\\#]+;)/g &amp; s replace encode /&(?!#?\\w+;)/g /&/g &amp; replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /'/g &apos; s replace /[\\\\/:\\*\\?"<>\\\|]/g  s replace /[<>]/g _ s replace /&/g &gt; s replace /[\\#\\%4\\/\\-\\~\\>8\\_\\@0\\!\\&3\\[651d\\=e7fA2D\\(aFBb]/g  s replace /[<>]/g  replace /[^a-z]/g  s replace /[<>]/g  replace /[^abc]/g  s replace /[<>]/g  replace /[ -~]/g  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:225:92:225:97 | '&gt;' | enclosingFunctionName | typicalBadHtmlSanitizers |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:225:92:225:97 | '&gt;' | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:225:108:225:111 | /"/g | CalleeFlexibleAccessPath | s().replace().replace().replace().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:225:108:225:111 | /"/g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:225:108:225:111 | /"/g | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:225:108:225:111 | /"/g | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:225:108:225:111 | /"/g | enclosingFunctionBody | s s replace /[<>]/g  s replace /[<>&]/g  s replace /[<>"]/g  s replace /</g  replace />/g  s replace /</g  replace />/g  replace /&/g  s replace /</g  replace /&/g  replace />/g  s replace /&/g  replace />/g  replace /</g  s s replace /</g  s s replace />/g  s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /"/g &#34; s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /'/g &#39; s replace /</g &lt; replace />/g &gt replace RE match s replace /[<>'"&]/g  s replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /&(?![\\w\\#]+;)/g &amp; s replace encode /&(?!#?\\w+;)/g /&/g &amp; replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /'/g &apos; s replace /[\\\\/:\\*\\?"<>\\\|]/g  s replace /[<>]/g _ s replace /&/g &gt; s replace /[\\#\\%4\\/\\-\\~\\>8\\_\\@0\\!\\&3\\[651d\\=e7fA2D\\(aFBb]/g  s replace /[<>]/g  replace /[^a-z]/g  s replace /[<>]/g  replace /[^abc]/g  s replace /[<>]/g  replace /[ -~]/g  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:225:108:225:111 | /"/g | enclosingFunctionName | typicalBadHtmlSanitizers |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:225:108:225:111 | /"/g | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:225:114:225:121 | '&quot;' | CalleeFlexibleAccessPath | s().replace().replace().replace().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:225:114:225:121 | '&quot;' | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:225:114:225:121 | '&quot;' | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:225:114:225:121 | '&quot;' | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:225:114:225:121 | '&quot;' | enclosingFunctionBody | s s replace /[<>]/g  s replace /[<>&]/g  s replace /[<>"]/g  s replace /</g  replace />/g  s replace /</g  replace />/g  replace /&/g  s replace /</g  replace /&/g  replace />/g  s replace /&/g  replace />/g  replace /</g  s s replace /</g  s s replace />/g  s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /"/g &#34; s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /'/g &#39; s replace /</g &lt; replace />/g &gt replace RE match s replace /[<>'"&]/g  s replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /&(?![\\w\\#]+;)/g &amp; s replace encode /&(?!#?\\w+;)/g /&/g &amp; replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /'/g &apos; s replace /[\\\\/:\\*\\?"<>\\\|]/g  s replace /[<>]/g _ s replace /&/g &gt; s replace /[\\#\\%4\\/\\-\\~\\>8\\_\\@0\\!\\&3\\[651d\\=e7fA2D\\(aFBb]/g  s replace /[<>]/g  replace /[^a-z]/g  s replace /[<>]/g  replace /[^abc]/g  s replace /[<>]/g  replace /[ -~]/g  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:225:114:225:121 | '&quot;' | enclosingFunctionName | typicalBadHtmlSanitizers |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:225:114:225:121 | '&quot;' | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:225:132:225:135 | /'/g | CalleeFlexibleAccessPath | s().replace().replace().replace().replace().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:225:132:225:135 | /'/g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:225:132:225:135 | /'/g | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:225:132:225:135 | /'/g | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:225:132:225:135 | /'/g | enclosingFunctionBody | s s replace /[<>]/g  s replace /[<>&]/g  s replace /[<>"]/g  s replace /</g  replace />/g  s replace /</g  replace />/g  replace /&/g  s replace /</g  replace /&/g  replace />/g  s replace /&/g  replace />/g  replace /</g  s s replace /</g  s s replace />/g  s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /"/g &#34; s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /'/g &#39; s replace /</g &lt; replace />/g &gt replace RE match s replace /[<>'"&]/g  s replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /&(?![\\w\\#]+;)/g &amp; s replace encode /&(?!#?\\w+;)/g /&/g &amp; replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /'/g &apos; s replace /[\\\\/:\\*\\?"<>\\\|]/g  s replace /[<>]/g _ s replace /&/g &gt; s replace /[\\#\\%4\\/\\-\\~\\>8\\_\\@0\\!\\&3\\[651d\\=e7fA2D\\(aFBb]/g  s replace /[<>]/g  replace /[^a-z]/g  s replace /[<>]/g  replace /[^abc]/g  s replace /[<>]/g  replace /[ -~]/g  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:225:132:225:135 | /'/g | enclosingFunctionName | typicalBadHtmlSanitizers |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:225:132:225:135 | /'/g | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:225:138:225:145 | '&apos;' | CalleeFlexibleAccessPath | s().replace().replace().replace().replace().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:225:138:225:145 | '&apos;' | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:225:138:225:145 | '&apos;' | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:225:138:225:145 | '&apos;' | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:225:138:225:145 | '&apos;' | enclosingFunctionBody | s s replace /[<>]/g  s replace /[<>&]/g  s replace /[<>"]/g  s replace /</g  replace />/g  s replace /</g  replace />/g  replace /&/g  s replace /</g  replace /&/g  replace />/g  s replace /&/g  replace />/g  replace /</g  s s replace /</g  s s replace />/g  s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /"/g &#34; s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /'/g &#39; s replace /</g &lt; replace />/g &gt replace RE match s replace /[<>'"&]/g  s replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /&(?![\\w\\#]+;)/g &amp; s replace encode /&(?!#?\\w+;)/g /&/g &amp; replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /'/g &apos; s replace /[\\\\/:\\*\\?"<>\\\|]/g  s replace /[<>]/g _ s replace /&/g &gt; s replace /[\\#\\%4\\/\\-\\~\\>8\\_\\@0\\!\\&3\\[651d\\=e7fA2D\\(aFBb]/g  s replace /[<>]/g  replace /[^a-z]/g  s replace /[<>]/g  replace /[^abc]/g  s replace /[<>]/g  replace /[ -~]/g  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:225:138:225:145 | '&apos;' | enclosingFunctionName | typicalBadHtmlSanitizers |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:225:138:225:145 | '&apos;' | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:227:14:227:31 | /[\\\\/:\\*\\?"<>\\\|]/g | CalleeFlexibleAccessPath | s().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:227:14:227:31 | /[\\\\/:\\*\\?"<>\\\|]/g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:227:14:227:31 | /[\\\\/:\\*\\?"<>\\\|]/g | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:227:14:227:31 | /[\\\\/:\\*\\?"<>\\\|]/g | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:227:14:227:31 | /[\\\\/:\\*\\?"<>\\\|]/g | enclosingFunctionBody | s s replace /[<>]/g  s replace /[<>&]/g  s replace /[<>"]/g  s replace /</g  replace />/g  s replace /</g  replace />/g  replace /&/g  s replace /</g  replace /&/g  replace />/g  s replace /&/g  replace />/g  replace /</g  s s replace /</g  s s replace />/g  s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /"/g &#34; s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /'/g &#39; s replace /</g &lt; replace />/g &gt replace RE match s replace /[<>'"&]/g  s replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /&(?![\\w\\#]+;)/g &amp; s replace encode /&(?!#?\\w+;)/g /&/g &amp; replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /'/g &apos; s replace /[\\\\/:\\*\\?"<>\\\|]/g  s replace /[<>]/g _ s replace /&/g &gt; s replace /[\\#\\%4\\/\\-\\~\\>8\\_\\@0\\!\\&3\\[651d\\=e7fA2D\\(aFBb]/g  s replace /[<>]/g  replace /[^a-z]/g  s replace /[<>]/g  replace /[^abc]/g  s replace /[<>]/g  replace /[ -~]/g  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:227:14:227:31 | /[\\\\/:\\*\\?"<>\\\|]/g | enclosingFunctionName | typicalBadHtmlSanitizers |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:227:14:227:31 | /[\\\\/:\\*\\?"<>\\\|]/g | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:227:34:227:35 | '' | CalleeFlexibleAccessPath | s().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:227:34:227:35 | '' | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:227:34:227:35 | '' | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:227:34:227:35 | '' | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:227:34:227:35 | '' | enclosingFunctionBody | s s replace /[<>]/g  s replace /[<>&]/g  s replace /[<>"]/g  s replace /</g  replace />/g  s replace /</g  replace />/g  replace /&/g  s replace /</g  replace /&/g  replace />/g  s replace /&/g  replace />/g  replace /</g  s s replace /</g  s s replace />/g  s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /"/g &#34; s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /'/g &#39; s replace /</g &lt; replace />/g &gt replace RE match s replace /[<>'"&]/g  s replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /&(?![\\w\\#]+;)/g &amp; s replace encode /&(?!#?\\w+;)/g /&/g &amp; replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /'/g &apos; s replace /[\\\\/:\\*\\?"<>\\\|]/g  s replace /[<>]/g _ s replace /&/g &gt; s replace /[\\#\\%4\\/\\-\\~\\>8\\_\\@0\\!\\&3\\[651d\\=e7fA2D\\(aFBb]/g  s replace /[<>]/g  replace /[^a-z]/g  s replace /[<>]/g  replace /[^abc]/g  s replace /[<>]/g  replace /[ -~]/g  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:227:34:227:35 | '' | enclosingFunctionName | typicalBadHtmlSanitizers |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:227:34:227:35 | '' | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:229:14:229:20 | /[<>]/g | CalleeFlexibleAccessPath | s().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:229:14:229:20 | /[<>]/g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:229:14:229:20 | /[<>]/g | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:229:14:229:20 | /[<>]/g | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:229:14:229:20 | /[<>]/g | enclosingFunctionBody | s s replace /[<>]/g  s replace /[<>&]/g  s replace /[<>"]/g  s replace /</g  replace />/g  s replace /</g  replace />/g  replace /&/g  s replace /</g  replace /&/g  replace />/g  s replace /&/g  replace />/g  replace /</g  s s replace /</g  s s replace />/g  s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /"/g &#34; s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /'/g &#39; s replace /</g &lt; replace />/g &gt replace RE match s replace /[<>'"&]/g  s replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /&(?![\\w\\#]+;)/g &amp; s replace encode /&(?!#?\\w+;)/g /&/g &amp; replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /'/g &apos; s replace /[\\\\/:\\*\\?"<>\\\|]/g  s replace /[<>]/g _ s replace /&/g &gt; s replace /[\\#\\%4\\/\\-\\~\\>8\\_\\@0\\!\\&3\\[651d\\=e7fA2D\\(aFBb]/g  s replace /[<>]/g  replace /[^a-z]/g  s replace /[<>]/g  replace /[^abc]/g  s replace /[<>]/g  replace /[ -~]/g  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:229:14:229:20 | /[<>]/g | enclosingFunctionName | typicalBadHtmlSanitizers |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:229:14:229:20 | /[<>]/g | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:229:22:229:24 | '_' | CalleeFlexibleAccessPath | s().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:229:22:229:24 | '_' | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:229:22:229:24 | '_' | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:229:22:229:24 | '_' | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:229:22:229:24 | '_' | enclosingFunctionBody | s s replace /[<>]/g  s replace /[<>&]/g  s replace /[<>"]/g  s replace /</g  replace />/g  s replace /</g  replace />/g  replace /&/g  s replace /</g  replace /&/g  replace />/g  s replace /&/g  replace />/g  replace /</g  s s replace /</g  s s replace />/g  s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /"/g &#34; s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /'/g &#39; s replace /</g &lt; replace />/g &gt replace RE match s replace /[<>'"&]/g  s replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /&(?![\\w\\#]+;)/g &amp; s replace encode /&(?!#?\\w+;)/g /&/g &amp; replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /'/g &apos; s replace /[\\\\/:\\*\\?"<>\\\|]/g  s replace /[<>]/g _ s replace /&/g &gt; s replace /[\\#\\%4\\/\\-\\~\\>8\\_\\@0\\!\\&3\\[651d\\=e7fA2D\\(aFBb]/g  s replace /[<>]/g  replace /[^a-z]/g  s replace /[<>]/g  replace /[^abc]/g  s replace /[<>]/g  replace /[ -~]/g  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:229:22:229:24 | '_' | enclosingFunctionName | typicalBadHtmlSanitizers |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:229:22:229:24 | '_' | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:231:14:231:17 | /&/g | CalleeFlexibleAccessPath | s().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:231:14:231:17 | /&/g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:231:14:231:17 | /&/g | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:231:14:231:17 | /&/g | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:231:14:231:17 | /&/g | enclosingFunctionBody | s s replace /[<>]/g  s replace /[<>&]/g  s replace /[<>"]/g  s replace /</g  replace />/g  s replace /</g  replace />/g  replace /&/g  s replace /</g  replace /&/g  replace />/g  s replace /&/g  replace />/g  replace /</g  s s replace /</g  s s replace />/g  s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /"/g &#34; s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /'/g &#39; s replace /</g &lt; replace />/g &gt replace RE match s replace /[<>'"&]/g  s replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /&(?![\\w\\#]+;)/g &amp; s replace encode /&(?!#?\\w+;)/g /&/g &amp; replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /'/g &apos; s replace /[\\\\/:\\*\\?"<>\\\|]/g  s replace /[<>]/g _ s replace /&/g &gt; s replace /[\\#\\%4\\/\\-\\~\\>8\\_\\@0\\!\\&3\\[651d\\=e7fA2D\\(aFBb]/g  s replace /[<>]/g  replace /[^a-z]/g  s replace /[<>]/g  replace /[^abc]/g  s replace /[<>]/g  replace /[ -~]/g  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:231:14:231:17 | /&/g | enclosingFunctionName | typicalBadHtmlSanitizers |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:231:14:231:17 | /&/g | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:231:20:231:25 | "&gt;" | CalleeFlexibleAccessPath | s().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:231:20:231:25 | "&gt;" | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:231:20:231:25 | "&gt;" | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:231:20:231:25 | "&gt;" | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:231:20:231:25 | "&gt;" | enclosingFunctionBody | s s replace /[<>]/g  s replace /[<>&]/g  s replace /[<>"]/g  s replace /</g  replace />/g  s replace /</g  replace />/g  replace /&/g  s replace /</g  replace /&/g  replace />/g  s replace /&/g  replace />/g  replace /</g  s s replace /</g  s s replace />/g  s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /"/g &#34; s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /'/g &#39; s replace /</g &lt; replace />/g &gt replace RE match s replace /[<>'"&]/g  s replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /&(?![\\w\\#]+;)/g &amp; s replace encode /&(?!#?\\w+;)/g /&/g &amp; replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /'/g &apos; s replace /[\\\\/:\\*\\?"<>\\\|]/g  s replace /[<>]/g _ s replace /&/g &gt; s replace /[\\#\\%4\\/\\-\\~\\>8\\_\\@0\\!\\&3\\[651d\\=e7fA2D\\(aFBb]/g  s replace /[<>]/g  replace /[^a-z]/g  s replace /[<>]/g  replace /[^abc]/g  s replace /[<>]/g  replace /[ -~]/g  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:231:20:231:25 | "&gt;" | enclosingFunctionName | typicalBadHtmlSanitizers |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:231:20:231:25 | "&gt;" | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:233:14:233:62 | /[\\#\\%4 ... aFBb]/g | CalleeFlexibleAccessPath | s().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:233:14:233:62 | /[\\#\\%4 ... aFBb]/g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:233:14:233:62 | /[\\#\\%4 ... aFBb]/g | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:233:14:233:62 | /[\\#\\%4 ... aFBb]/g | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:233:14:233:62 | /[\\#\\%4 ... aFBb]/g | enclosingFunctionBody | s s replace /[<>]/g  s replace /[<>&]/g  s replace /[<>"]/g  s replace /</g  replace />/g  s replace /</g  replace />/g  replace /&/g  s replace /</g  replace /&/g  replace />/g  s replace /&/g  replace />/g  replace /</g  s s replace /</g  s s replace />/g  s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /"/g &#34; s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /'/g &#39; s replace /</g &lt; replace />/g &gt replace RE match s replace /[<>'"&]/g  s replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /&(?![\\w\\#]+;)/g &amp; s replace encode /&(?!#?\\w+;)/g /&/g &amp; replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /'/g &apos; s replace /[\\\\/:\\*\\?"<>\\\|]/g  s replace /[<>]/g _ s replace /&/g &gt; s replace /[\\#\\%4\\/\\-\\~\\>8\\_\\@0\\!\\&3\\[651d\\=e7fA2D\\(aFBb]/g  s replace /[<>]/g  replace /[^a-z]/g  s replace /[<>]/g  replace /[^abc]/g  s replace /[<>]/g  replace /[ -~]/g  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:233:14:233:62 | /[\\#\\%4 ... aFBb]/g | enclosingFunctionName | typicalBadHtmlSanitizers |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:233:14:233:62 | /[\\#\\%4 ... aFBb]/g | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:233:65:233:66 | "" | CalleeFlexibleAccessPath | s().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:233:65:233:66 | "" | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:233:65:233:66 | "" | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:233:65:233:66 | "" | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:233:65:233:66 | "" | enclosingFunctionBody | s s replace /[<>]/g  s replace /[<>&]/g  s replace /[<>"]/g  s replace /</g  replace />/g  s replace /</g  replace />/g  replace /&/g  s replace /</g  replace /&/g  replace />/g  s replace /&/g  replace />/g  replace /</g  s s replace /</g  s s replace />/g  s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /"/g &#34; s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /'/g &#39; s replace /</g &lt; replace />/g &gt replace RE match s replace /[<>'"&]/g  s replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /&(?![\\w\\#]+;)/g &amp; s replace encode /&(?!#?\\w+;)/g /&/g &amp; replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /'/g &apos; s replace /[\\\\/:\\*\\?"<>\\\|]/g  s replace /[<>]/g _ s replace /&/g &gt; s replace /[\\#\\%4\\/\\-\\~\\>8\\_\\@0\\!\\&3\\[651d\\=e7fA2D\\(aFBb]/g  s replace /[<>]/g  replace /[^a-z]/g  s replace /[<>]/g  replace /[^abc]/g  s replace /[<>]/g  replace /[ -~]/g  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:233:65:233:66 | "" | enclosingFunctionName | typicalBadHtmlSanitizers |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:233:65:233:66 | "" | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:235:14:235:20 | /[<>]/g | CalleeFlexibleAccessPath | s().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:235:14:235:20 | /[<>]/g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:235:14:235:20 | /[<>]/g | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:235:14:235:20 | /[<>]/g | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:235:14:235:20 | /[<>]/g | enclosingFunctionBody | s s replace /[<>]/g  s replace /[<>&]/g  s replace /[<>"]/g  s replace /</g  replace />/g  s replace /</g  replace />/g  replace /&/g  s replace /</g  replace /&/g  replace />/g  s replace /&/g  replace />/g  replace /</g  s s replace /</g  s s replace />/g  s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /"/g &#34; s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /'/g &#39; s replace /</g &lt; replace />/g &gt replace RE match s replace /[<>'"&]/g  s replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /&(?![\\w\\#]+;)/g &amp; s replace encode /&(?!#?\\w+;)/g /&/g &amp; replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /'/g &apos; s replace /[\\\\/:\\*\\?"<>\\\|]/g  s replace /[<>]/g _ s replace /&/g &gt; s replace /[\\#\\%4\\/\\-\\~\\>8\\_\\@0\\!\\&3\\[651d\\=e7fA2D\\(aFBb]/g  s replace /[<>]/g  replace /[^a-z]/g  s replace /[<>]/g  replace /[^abc]/g  s replace /[<>]/g  replace /[ -~]/g  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:235:14:235:20 | /[<>]/g | enclosingFunctionName | typicalBadHtmlSanitizers |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:235:14:235:20 | /[<>]/g | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:235:22:235:23 | '' | CalleeFlexibleAccessPath | s().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:235:22:235:23 | '' | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:235:22:235:23 | '' | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:235:22:235:23 | '' | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:235:22:235:23 | '' | enclosingFunctionBody | s s replace /[<>]/g  s replace /[<>&]/g  s replace /[<>"]/g  s replace /</g  replace />/g  s replace /</g  replace />/g  replace /&/g  s replace /</g  replace /&/g  replace />/g  s replace /&/g  replace />/g  replace /</g  s s replace /</g  s s replace />/g  s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /"/g &#34; s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /'/g &#39; s replace /</g &lt; replace />/g &gt replace RE match s replace /[<>'"&]/g  s replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /&(?![\\w\\#]+;)/g &amp; s replace encode /&(?!#?\\w+;)/g /&/g &amp; replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /'/g &apos; s replace /[\\\\/:\\*\\?"<>\\\|]/g  s replace /[<>]/g _ s replace /&/g &gt; s replace /[\\#\\%4\\/\\-\\~\\>8\\_\\@0\\!\\&3\\[651d\\=e7fA2D\\(aFBb]/g  s replace /[<>]/g  replace /[^a-z]/g  s replace /[<>]/g  replace /[^abc]/g  s replace /[<>]/g  replace /[ -~]/g  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:235:22:235:23 | '' | enclosingFunctionName | typicalBadHtmlSanitizers |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:235:22:235:23 | '' | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:235:34:235:42 | /[^a-z]/g | CalleeFlexibleAccessPath | s().replace().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:235:34:235:42 | /[^a-z]/g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:235:34:235:42 | /[^a-z]/g | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:235:34:235:42 | /[^a-z]/g | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:235:34:235:42 | /[^a-z]/g | enclosingFunctionBody | s s replace /[<>]/g  s replace /[<>&]/g  s replace /[<>"]/g  s replace /</g  replace />/g  s replace /</g  replace />/g  replace /&/g  s replace /</g  replace /&/g  replace />/g  s replace /&/g  replace />/g  replace /</g  s s replace /</g  s s replace />/g  s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /"/g &#34; s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /'/g &#39; s replace /</g &lt; replace />/g &gt replace RE match s replace /[<>'"&]/g  s replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /&(?![\\w\\#]+;)/g &amp; s replace encode /&(?!#?\\w+;)/g /&/g &amp; replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /'/g &apos; s replace /[\\\\/:\\*\\?"<>\\\|]/g  s replace /[<>]/g _ s replace /&/g &gt; s replace /[\\#\\%4\\/\\-\\~\\>8\\_\\@0\\!\\&3\\[651d\\=e7fA2D\\(aFBb]/g  s replace /[<>]/g  replace /[^a-z]/g  s replace /[<>]/g  replace /[^abc]/g  s replace /[<>]/g  replace /[ -~]/g  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:235:34:235:42 | /[^a-z]/g | enclosingFunctionName | typicalBadHtmlSanitizers |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:235:34:235:42 | /[^a-z]/g | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:235:45:235:46 | '' | CalleeFlexibleAccessPath | s().replace().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:235:45:235:46 | '' | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:235:45:235:46 | '' | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:235:45:235:46 | '' | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:235:45:235:46 | '' | enclosingFunctionBody | s s replace /[<>]/g  s replace /[<>&]/g  s replace /[<>"]/g  s replace /</g  replace />/g  s replace /</g  replace />/g  replace /&/g  s replace /</g  replace /&/g  replace />/g  s replace /&/g  replace />/g  replace /</g  s s replace /</g  s s replace />/g  s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /"/g &#34; s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /'/g &#39; s replace /</g &lt; replace />/g &gt replace RE match s replace /[<>'"&]/g  s replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /&(?![\\w\\#]+;)/g &amp; s replace encode /&(?!#?\\w+;)/g /&/g &amp; replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /'/g &apos; s replace /[\\\\/:\\*\\?"<>\\\|]/g  s replace /[<>]/g _ s replace /&/g &gt; s replace /[\\#\\%4\\/\\-\\~\\>8\\_\\@0\\!\\&3\\[651d\\=e7fA2D\\(aFBb]/g  s replace /[<>]/g  replace /[^a-z]/g  s replace /[<>]/g  replace /[^abc]/g  s replace /[<>]/g  replace /[ -~]/g  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:235:45:235:46 | '' | enclosingFunctionName | typicalBadHtmlSanitizers |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:235:45:235:46 | '' | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:237:14:237:20 | /[<>]/g | CalleeFlexibleAccessPath | s().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:237:14:237:20 | /[<>]/g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:237:14:237:20 | /[<>]/g | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:237:14:237:20 | /[<>]/g | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:237:14:237:20 | /[<>]/g | enclosingFunctionBody | s s replace /[<>]/g  s replace /[<>&]/g  s replace /[<>"]/g  s replace /</g  replace />/g  s replace /</g  replace />/g  replace /&/g  s replace /</g  replace /&/g  replace />/g  s replace /&/g  replace />/g  replace /</g  s s replace /</g  s s replace />/g  s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /"/g &#34; s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /'/g &#39; s replace /</g &lt; replace />/g &gt replace RE match s replace /[<>'"&]/g  s replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /&(?![\\w\\#]+;)/g &amp; s replace encode /&(?!#?\\w+;)/g /&/g &amp; replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /'/g &apos; s replace /[\\\\/:\\*\\?"<>\\\|]/g  s replace /[<>]/g _ s replace /&/g &gt; s replace /[\\#\\%4\\/\\-\\~\\>8\\_\\@0\\!\\&3\\[651d\\=e7fA2D\\(aFBb]/g  s replace /[<>]/g  replace /[^a-z]/g  s replace /[<>]/g  replace /[^abc]/g  s replace /[<>]/g  replace /[ -~]/g  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:237:14:237:20 | /[<>]/g | enclosingFunctionName | typicalBadHtmlSanitizers |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:237:14:237:20 | /[<>]/g | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:237:22:237:23 | '' | CalleeFlexibleAccessPath | s().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:237:22:237:23 | '' | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:237:22:237:23 | '' | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:237:22:237:23 | '' | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:237:22:237:23 | '' | enclosingFunctionBody | s s replace /[<>]/g  s replace /[<>&]/g  s replace /[<>"]/g  s replace /</g  replace />/g  s replace /</g  replace />/g  replace /&/g  s replace /</g  replace /&/g  replace />/g  s replace /&/g  replace />/g  replace /</g  s s replace /</g  s s replace />/g  s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /"/g &#34; s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /'/g &#39; s replace /</g &lt; replace />/g &gt replace RE match s replace /[<>'"&]/g  s replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /&(?![\\w\\#]+;)/g &amp; s replace encode /&(?!#?\\w+;)/g /&/g &amp; replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /'/g &apos; s replace /[\\\\/:\\*\\?"<>\\\|]/g  s replace /[<>]/g _ s replace /&/g &gt; s replace /[\\#\\%4\\/\\-\\~\\>8\\_\\@0\\!\\&3\\[651d\\=e7fA2D\\(aFBb]/g  s replace /[<>]/g  replace /[^a-z]/g  s replace /[<>]/g  replace /[^abc]/g  s replace /[<>]/g  replace /[ -~]/g  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:237:22:237:23 | '' | enclosingFunctionName | typicalBadHtmlSanitizers |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:237:22:237:23 | '' | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:237:34:237:42 | /[^abc]/g | CalleeFlexibleAccessPath | s().replace().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:237:34:237:42 | /[^abc]/g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:237:34:237:42 | /[^abc]/g | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:237:34:237:42 | /[^abc]/g | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:237:34:237:42 | /[^abc]/g | enclosingFunctionBody | s s replace /[<>]/g  s replace /[<>&]/g  s replace /[<>"]/g  s replace /</g  replace />/g  s replace /</g  replace />/g  replace /&/g  s replace /</g  replace /&/g  replace />/g  s replace /&/g  replace />/g  replace /</g  s s replace /</g  s s replace />/g  s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /"/g &#34; s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /'/g &#39; s replace /</g &lt; replace />/g &gt replace RE match s replace /[<>'"&]/g  s replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /&(?![\\w\\#]+;)/g &amp; s replace encode /&(?!#?\\w+;)/g /&/g &amp; replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /'/g &apos; s replace /[\\\\/:\\*\\?"<>\\\|]/g  s replace /[<>]/g _ s replace /&/g &gt; s replace /[\\#\\%4\\/\\-\\~\\>8\\_\\@0\\!\\&3\\[651d\\=e7fA2D\\(aFBb]/g  s replace /[<>]/g  replace /[^a-z]/g  s replace /[<>]/g  replace /[^abc]/g  s replace /[<>]/g  replace /[ -~]/g  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:237:34:237:42 | /[^abc]/g | enclosingFunctionName | typicalBadHtmlSanitizers |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:237:34:237:42 | /[^abc]/g | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:237:45:237:46 | '' | CalleeFlexibleAccessPath | s().replace().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:237:45:237:46 | '' | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:237:45:237:46 | '' | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:237:45:237:46 | '' | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:237:45:237:46 | '' | enclosingFunctionBody | s s replace /[<>]/g  s replace /[<>&]/g  s replace /[<>"]/g  s replace /</g  replace />/g  s replace /</g  replace />/g  replace /&/g  s replace /</g  replace /&/g  replace />/g  s replace /&/g  replace />/g  replace /</g  s s replace /</g  s s replace />/g  s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /"/g &#34; s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /'/g &#39; s replace /</g &lt; replace />/g &gt replace RE match s replace /[<>'"&]/g  s replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /&(?![\\w\\#]+;)/g &amp; s replace encode /&(?!#?\\w+;)/g /&/g &amp; replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /'/g &apos; s replace /[\\\\/:\\*\\?"<>\\\|]/g  s replace /[<>]/g _ s replace /&/g &gt; s replace /[\\#\\%4\\/\\-\\~\\>8\\_\\@0\\!\\&3\\[651d\\=e7fA2D\\(aFBb]/g  s replace /[<>]/g  replace /[^a-z]/g  s replace /[<>]/g  replace /[^abc]/g  s replace /[<>]/g  replace /[ -~]/g  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:237:45:237:46 | '' | enclosingFunctionName | typicalBadHtmlSanitizers |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:237:45:237:46 | '' | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:239:14:239:20 | /[<>]/g | CalleeFlexibleAccessPath | s().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:239:14:239:20 | /[<>]/g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:239:14:239:20 | /[<>]/g | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:239:14:239:20 | /[<>]/g | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:239:14:239:20 | /[<>]/g | enclosingFunctionBody | s s replace /[<>]/g  s replace /[<>&]/g  s replace /[<>"]/g  s replace /</g  replace />/g  s replace /</g  replace />/g  replace /&/g  s replace /</g  replace /&/g  replace />/g  s replace /&/g  replace />/g  replace /</g  s s replace /</g  s s replace />/g  s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /"/g &#34; s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /'/g &#39; s replace /</g &lt; replace />/g &gt replace RE match s replace /[<>'"&]/g  s replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /&(?![\\w\\#]+;)/g &amp; s replace encode /&(?!#?\\w+;)/g /&/g &amp; replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /'/g &apos; s replace /[\\\\/:\\*\\?"<>\\\|]/g  s replace /[<>]/g _ s replace /&/g &gt; s replace /[\\#\\%4\\/\\-\\~\\>8\\_\\@0\\!\\&3\\[651d\\=e7fA2D\\(aFBb]/g  s replace /[<>]/g  replace /[^a-z]/g  s replace /[<>]/g  replace /[^abc]/g  s replace /[<>]/g  replace /[ -~]/g  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:239:14:239:20 | /[<>]/g | enclosingFunctionName | typicalBadHtmlSanitizers |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:239:14:239:20 | /[<>]/g | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:239:22:239:23 | '' | CalleeFlexibleAccessPath | s().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:239:22:239:23 | '' | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:239:22:239:23 | '' | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:239:22:239:23 | '' | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:239:22:239:23 | '' | enclosingFunctionBody | s s replace /[<>]/g  s replace /[<>&]/g  s replace /[<>"]/g  s replace /</g  replace />/g  s replace /</g  replace />/g  replace /&/g  s replace /</g  replace /&/g  replace />/g  s replace /&/g  replace />/g  replace /</g  s s replace /</g  s s replace />/g  s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /"/g &#34; s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /'/g &#39; s replace /</g &lt; replace />/g &gt replace RE match s replace /[<>'"&]/g  s replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /&(?![\\w\\#]+;)/g &amp; s replace encode /&(?!#?\\w+;)/g /&/g &amp; replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /'/g &apos; s replace /[\\\\/:\\*\\?"<>\\\|]/g  s replace /[<>]/g _ s replace /&/g &gt; s replace /[\\#\\%4\\/\\-\\~\\>8\\_\\@0\\!\\&3\\[651d\\=e7fA2D\\(aFBb]/g  s replace /[<>]/g  replace /[^a-z]/g  s replace /[<>]/g  replace /[^abc]/g  s replace /[<>]/g  replace /[ -~]/g  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:239:22:239:23 | '' | enclosingFunctionName | typicalBadHtmlSanitizers |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:239:22:239:23 | '' | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:239:34:239:41 | /[ -~]/g | CalleeFlexibleAccessPath | s().replace().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:239:34:239:41 | /[ -~]/g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:239:34:239:41 | /[ -~]/g | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:239:34:239:41 | /[ -~]/g | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:239:34:239:41 | /[ -~]/g | enclosingFunctionBody | s s replace /[<>]/g  s replace /[<>&]/g  s replace /[<>"]/g  s replace /</g  replace />/g  s replace /</g  replace />/g  replace /&/g  s replace /</g  replace /&/g  replace />/g  s replace /&/g  replace />/g  replace /</g  s s replace /</g  s s replace />/g  s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /"/g &#34; s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /'/g &#39; s replace /</g &lt; replace />/g &gt replace RE match s replace /[<>'"&]/g  s replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /&(?![\\w\\#]+;)/g &amp; s replace encode /&(?!#?\\w+;)/g /&/g &amp; replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /'/g &apos; s replace /[\\\\/:\\*\\?"<>\\\|]/g  s replace /[<>]/g _ s replace /&/g &gt; s replace /[\\#\\%4\\/\\-\\~\\>8\\_\\@0\\!\\&3\\[651d\\=e7fA2D\\(aFBb]/g  s replace /[<>]/g  replace /[^a-z]/g  s replace /[<>]/g  replace /[^abc]/g  s replace /[<>]/g  replace /[ -~]/g  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:239:34:239:41 | /[ -~]/g | enclosingFunctionName | typicalBadHtmlSanitizers |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:239:34:239:41 | /[ -~]/g | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:239:44:239:45 | '' | CalleeFlexibleAccessPath | s().replace().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:239:44:239:45 | '' | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:239:44:239:45 | '' | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:239:44:239:45 | '' | contextSurroundingFunctionParameters | (s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:239:44:239:45 | '' | enclosingFunctionBody | s s replace /[<>]/g  s replace /[<>&]/g  s replace /[<>"]/g  s replace /</g  replace />/g  s replace /</g  replace />/g  replace /&/g  s replace /</g  replace /&/g  replace />/g  s replace /&/g  replace />/g  replace /</g  s s replace /</g  s s replace />/g  s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /"/g &#34; s replace /</g &lt; replace />/g &gt replace /&/g &amp; replace /'/g &#39; s replace /</g &lt; replace />/g &gt replace RE match s replace /[<>'"&]/g  s replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /&(?![\\w\\#]+;)/g &amp; s replace encode /&(?!#?\\w+;)/g /&/g &amp; replace /</g &lt; replace />/g &gt; replace /"/g &quot; replace /'/g &apos; s replace /[\\\\/:\\*\\?"<>\\\|]/g  s replace /[<>]/g _ s replace /&/g &gt; s replace /[\\#\\%4\\/\\-\\~\\>8\\_\\@0\\!\\&3\\[651d\\=e7fA2D\\(aFBb]/g  s replace /[<>]/g  replace /[^a-z]/g  s replace /[<>]/g  replace /[^abc]/g  s replace /[<>]/g  replace /[ -~]/g  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:239:44:239:45 | '' | enclosingFunctionName | typicalBadHtmlSanitizers |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:239:44:239:45 | '' | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:243:21:243:27 | /[<>]/g | CalleeFlexibleAccessPath | s().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:243:21:243:27 | /[<>]/g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:243:21:243:27 | /[<>]/g | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:243:21:243:27 | /[<>]/g | contextSurroundingFunctionParameters | () |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:243:21:243:27 | /[<>]/g | enclosingFunctionBody | =" s replace /[<>]/g  " =" s replace /[<>&]/g  " =" s replace /[<>"]/g  " =" s replace /[<>&"]/g  " =" s replace /[&"]/g  " =" s replace /[<>&']/g  " =' s replace /[<>&"]/g  ' =' s replace /[<>&']/g  ' onFunkyEvent=" s replace /[<>"]/g  " <div noise onFunkyEvent=" s replace /[<>"]/g  " <div noise monday=" s replace /[<>"]/g  " monday=" s replace /[<>"]/g  " |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:243:21:243:27 | /[<>]/g | enclosingFunctionName | incompleteHtmlAttributeSanitization |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:243:21:243:27 | /[<>]/g | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:243:29:243:30 | '' | CalleeFlexibleAccessPath | s().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:243:29:243:30 | '' | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:243:29:243:30 | '' | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:243:29:243:30 | '' | contextSurroundingFunctionParameters | () |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:243:29:243:30 | '' | enclosingFunctionBody | =" s replace /[<>]/g  " =" s replace /[<>&]/g  " =" s replace /[<>"]/g  " =" s replace /[<>&"]/g  " =" s replace /[&"]/g  " =" s replace /[<>&']/g  " =' s replace /[<>&"]/g  ' =' s replace /[<>&']/g  ' onFunkyEvent=" s replace /[<>"]/g  " <div noise onFunkyEvent=" s replace /[<>"]/g  " <div noise monday=" s replace /[<>"]/g  " monday=" s replace /[<>"]/g  " |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:243:29:243:30 | '' | enclosingFunctionName | incompleteHtmlAttributeSanitization |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:243:29:243:30 | '' | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:244:21:244:28 | /[<>&]/g | CalleeFlexibleAccessPath | s().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:244:21:244:28 | /[<>&]/g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:244:21:244:28 | /[<>&]/g | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:244:21:244:28 | /[<>&]/g | contextSurroundingFunctionParameters | () |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:244:21:244:28 | /[<>&]/g | enclosingFunctionBody | =" s replace /[<>]/g  " =" s replace /[<>&]/g  " =" s replace /[<>"]/g  " =" s replace /[<>&"]/g  " =" s replace /[&"]/g  " =" s replace /[<>&']/g  " =' s replace /[<>&"]/g  ' =' s replace /[<>&']/g  ' onFunkyEvent=" s replace /[<>"]/g  " <div noise onFunkyEvent=" s replace /[<>"]/g  " <div noise monday=" s replace /[<>"]/g  " monday=" s replace /[<>"]/g  " |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:244:21:244:28 | /[<>&]/g | enclosingFunctionName | incompleteHtmlAttributeSanitization |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:244:21:244:28 | /[<>&]/g | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:244:31:244:32 | '' | CalleeFlexibleAccessPath | s().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:244:31:244:32 | '' | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:244:31:244:32 | '' | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:244:31:244:32 | '' | contextSurroundingFunctionParameters | () |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:244:31:244:32 | '' | enclosingFunctionBody | =" s replace /[<>]/g  " =" s replace /[<>&]/g  " =" s replace /[<>"]/g  " =" s replace /[<>&"]/g  " =" s replace /[&"]/g  " =" s replace /[<>&']/g  " =' s replace /[<>&"]/g  ' =' s replace /[<>&']/g  ' onFunkyEvent=" s replace /[<>"]/g  " <div noise onFunkyEvent=" s replace /[<>"]/g  " <div noise monday=" s replace /[<>"]/g  " monday=" s replace /[<>"]/g  " |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:244:31:244:32 | '' | enclosingFunctionName | incompleteHtmlAttributeSanitization |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:244:31:244:32 | '' | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:245:21:245:28 | /[<>"]/g | CalleeFlexibleAccessPath | s().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:245:21:245:28 | /[<>"]/g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:245:21:245:28 | /[<>"]/g | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:245:21:245:28 | /[<>"]/g | contextSurroundingFunctionParameters | () |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:245:21:245:28 | /[<>"]/g | enclosingFunctionBody | =" s replace /[<>]/g  " =" s replace /[<>&]/g  " =" s replace /[<>"]/g  " =" s replace /[<>&"]/g  " =" s replace /[&"]/g  " =" s replace /[<>&']/g  " =' s replace /[<>&"]/g  ' =' s replace /[<>&']/g  ' onFunkyEvent=" s replace /[<>"]/g  " <div noise onFunkyEvent=" s replace /[<>"]/g  " <div noise monday=" s replace /[<>"]/g  " monday=" s replace /[<>"]/g  " |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:245:21:245:28 | /[<>"]/g | enclosingFunctionName | incompleteHtmlAttributeSanitization |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:245:21:245:28 | /[<>"]/g | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:245:31:245:32 | '' | CalleeFlexibleAccessPath | s().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:245:31:245:32 | '' | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:245:31:245:32 | '' | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:245:31:245:32 | '' | contextSurroundingFunctionParameters | () |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:245:31:245:32 | '' | enclosingFunctionBody | =" s replace /[<>]/g  " =" s replace /[<>&]/g  " =" s replace /[<>"]/g  " =" s replace /[<>&"]/g  " =" s replace /[&"]/g  " =" s replace /[<>&']/g  " =' s replace /[<>&"]/g  ' =' s replace /[<>&']/g  ' onFunkyEvent=" s replace /[<>"]/g  " <div noise onFunkyEvent=" s replace /[<>"]/g  " <div noise monday=" s replace /[<>"]/g  " monday=" s replace /[<>"]/g  " |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:245:31:245:32 | '' | enclosingFunctionName | incompleteHtmlAttributeSanitization |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:245:31:245:32 | '' | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:246:21:246:29 | /[<>&"]/g | CalleeFlexibleAccessPath | s().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:246:21:246:29 | /[<>&"]/g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:246:21:246:29 | /[<>&"]/g | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:246:21:246:29 | /[<>&"]/g | contextSurroundingFunctionParameters | () |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:246:21:246:29 | /[<>&"]/g | enclosingFunctionBody | =" s replace /[<>]/g  " =" s replace /[<>&]/g  " =" s replace /[<>"]/g  " =" s replace /[<>&"]/g  " =" s replace /[&"]/g  " =" s replace /[<>&']/g  " =' s replace /[<>&"]/g  ' =' s replace /[<>&']/g  ' onFunkyEvent=" s replace /[<>"]/g  " <div noise onFunkyEvent=" s replace /[<>"]/g  " <div noise monday=" s replace /[<>"]/g  " monday=" s replace /[<>"]/g  " |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:246:21:246:29 | /[<>&"]/g | enclosingFunctionName | incompleteHtmlAttributeSanitization |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:246:21:246:29 | /[<>&"]/g | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:246:31:246:32 | '' | CalleeFlexibleAccessPath | s().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:246:31:246:32 | '' | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:246:31:246:32 | '' | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:246:31:246:32 | '' | contextSurroundingFunctionParameters | () |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:246:31:246:32 | '' | enclosingFunctionBody | =" s replace /[<>]/g  " =" s replace /[<>&]/g  " =" s replace /[<>"]/g  " =" s replace /[<>&"]/g  " =" s replace /[&"]/g  " =" s replace /[<>&']/g  " =' s replace /[<>&"]/g  ' =' s replace /[<>&']/g  ' onFunkyEvent=" s replace /[<>"]/g  " <div noise onFunkyEvent=" s replace /[<>"]/g  " <div noise monday=" s replace /[<>"]/g  " monday=" s replace /[<>"]/g  " |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:246:31:246:32 | '' | enclosingFunctionName | incompleteHtmlAttributeSanitization |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:246:31:246:32 | '' | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:247:21:247:27 | /[&"]/g | CalleeFlexibleAccessPath | s().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:247:21:247:27 | /[&"]/g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:247:21:247:27 | /[&"]/g | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:247:21:247:27 | /[&"]/g | contextSurroundingFunctionParameters | () |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:247:21:247:27 | /[&"]/g | enclosingFunctionBody | =" s replace /[<>]/g  " =" s replace /[<>&]/g  " =" s replace /[<>"]/g  " =" s replace /[<>&"]/g  " =" s replace /[&"]/g  " =" s replace /[<>&']/g  " =' s replace /[<>&"]/g  ' =' s replace /[<>&']/g  ' onFunkyEvent=" s replace /[<>"]/g  " <div noise onFunkyEvent=" s replace /[<>"]/g  " <div noise monday=" s replace /[<>"]/g  " monday=" s replace /[<>"]/g  " |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:247:21:247:27 | /[&"]/g | enclosingFunctionName | incompleteHtmlAttributeSanitization |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:247:21:247:27 | /[&"]/g | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:247:29:247:30 | '' | CalleeFlexibleAccessPath | s().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:247:29:247:30 | '' | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:247:29:247:30 | '' | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:247:29:247:30 | '' | contextSurroundingFunctionParameters | () |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:247:29:247:30 | '' | enclosingFunctionBody | =" s replace /[<>]/g  " =" s replace /[<>&]/g  " =" s replace /[<>"]/g  " =" s replace /[<>&"]/g  " =" s replace /[&"]/g  " =" s replace /[<>&']/g  " =' s replace /[<>&"]/g  ' =' s replace /[<>&']/g  ' onFunkyEvent=" s replace /[<>"]/g  " <div noise onFunkyEvent=" s replace /[<>"]/g  " <div noise monday=" s replace /[<>"]/g  " monday=" s replace /[<>"]/g  " |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:247:29:247:30 | '' | enclosingFunctionName | incompleteHtmlAttributeSanitization |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:247:29:247:30 | '' | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:249:21:249:29 | /[<>&']/g | CalleeFlexibleAccessPath | s().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:249:21:249:29 | /[<>&']/g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:249:21:249:29 | /[<>&']/g | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:249:21:249:29 | /[<>&']/g | contextSurroundingFunctionParameters | () |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:249:21:249:29 | /[<>&']/g | enclosingFunctionBody | =" s replace /[<>]/g  " =" s replace /[<>&]/g  " =" s replace /[<>"]/g  " =" s replace /[<>&"]/g  " =" s replace /[&"]/g  " =" s replace /[<>&']/g  " =' s replace /[<>&"]/g  ' =' s replace /[<>&']/g  ' onFunkyEvent=" s replace /[<>"]/g  " <div noise onFunkyEvent=" s replace /[<>"]/g  " <div noise monday=" s replace /[<>"]/g  " monday=" s replace /[<>"]/g  " |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:249:21:249:29 | /[<>&']/g | enclosingFunctionName | incompleteHtmlAttributeSanitization |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:249:21:249:29 | /[<>&']/g | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:249:31:249:32 | '' | CalleeFlexibleAccessPath | s().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:249:31:249:32 | '' | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:249:31:249:32 | '' | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:249:31:249:32 | '' | contextSurroundingFunctionParameters | () |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:249:31:249:32 | '' | enclosingFunctionBody | =" s replace /[<>]/g  " =" s replace /[<>&]/g  " =" s replace /[<>"]/g  " =" s replace /[<>&"]/g  " =" s replace /[&"]/g  " =" s replace /[<>&']/g  " =' s replace /[<>&"]/g  ' =' s replace /[<>&']/g  ' onFunkyEvent=" s replace /[<>"]/g  " <div noise onFunkyEvent=" s replace /[<>"]/g  " <div noise monday=" s replace /[<>"]/g  " monday=" s replace /[<>"]/g  " |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:249:31:249:32 | '' | enclosingFunctionName | incompleteHtmlAttributeSanitization |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:249:31:249:32 | '' | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:250:21:250:29 | /[<>&"]/g | CalleeFlexibleAccessPath | s().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:250:21:250:29 | /[<>&"]/g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:250:21:250:29 | /[<>&"]/g | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:250:21:250:29 | /[<>&"]/g | contextSurroundingFunctionParameters | () |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:250:21:250:29 | /[<>&"]/g | enclosingFunctionBody | =" s replace /[<>]/g  " =" s replace /[<>&]/g  " =" s replace /[<>"]/g  " =" s replace /[<>&"]/g  " =" s replace /[&"]/g  " =" s replace /[<>&']/g  " =' s replace /[<>&"]/g  ' =' s replace /[<>&']/g  ' onFunkyEvent=" s replace /[<>"]/g  " <div noise onFunkyEvent=" s replace /[<>"]/g  " <div noise monday=" s replace /[<>"]/g  " monday=" s replace /[<>"]/g  " |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:250:21:250:29 | /[<>&"]/g | enclosingFunctionName | incompleteHtmlAttributeSanitization |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:250:21:250:29 | /[<>&"]/g | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:250:31:250:32 | '' | CalleeFlexibleAccessPath | s().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:250:31:250:32 | '' | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:250:31:250:32 | '' | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:250:31:250:32 | '' | contextSurroundingFunctionParameters | () |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:250:31:250:32 | '' | enclosingFunctionBody | =" s replace /[<>]/g  " =" s replace /[<>&]/g  " =" s replace /[<>"]/g  " =" s replace /[<>&"]/g  " =" s replace /[&"]/g  " =" s replace /[<>&']/g  " =' s replace /[<>&"]/g  ' =' s replace /[<>&']/g  ' onFunkyEvent=" s replace /[<>"]/g  " <div noise onFunkyEvent=" s replace /[<>"]/g  " <div noise monday=" s replace /[<>"]/g  " monday=" s replace /[<>"]/g  " |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:250:31:250:32 | '' | enclosingFunctionName | incompleteHtmlAttributeSanitization |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:250:31:250:32 | '' | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:251:21:251:29 | /[<>&']/g | CalleeFlexibleAccessPath | s().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:251:21:251:29 | /[<>&']/g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:251:21:251:29 | /[<>&']/g | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:251:21:251:29 | /[<>&']/g | contextSurroundingFunctionParameters | () |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:251:21:251:29 | /[<>&']/g | enclosingFunctionBody | =" s replace /[<>]/g  " =" s replace /[<>&]/g  " =" s replace /[<>"]/g  " =" s replace /[<>&"]/g  " =" s replace /[&"]/g  " =" s replace /[<>&']/g  " =' s replace /[<>&"]/g  ' =' s replace /[<>&']/g  ' onFunkyEvent=" s replace /[<>"]/g  " <div noise onFunkyEvent=" s replace /[<>"]/g  " <div noise monday=" s replace /[<>"]/g  " monday=" s replace /[<>"]/g  " |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:251:21:251:29 | /[<>&']/g | enclosingFunctionName | incompleteHtmlAttributeSanitization |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:251:21:251:29 | /[<>&']/g | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:251:31:251:32 | '' | CalleeFlexibleAccessPath | s().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:251:31:251:32 | '' | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:251:31:251:32 | '' | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:251:31:251:32 | '' | contextSurroundingFunctionParameters | () |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:251:31:251:32 | '' | enclosingFunctionBody | =" s replace /[<>]/g  " =" s replace /[<>&]/g  " =" s replace /[<>"]/g  " =" s replace /[<>&"]/g  " =" s replace /[&"]/g  " =" s replace /[<>&']/g  " =' s replace /[<>&"]/g  ' =' s replace /[<>&']/g  ' onFunkyEvent=" s replace /[<>"]/g  " <div noise onFunkyEvent=" s replace /[<>"]/g  " <div noise monday=" s replace /[<>"]/g  " monday=" s replace /[<>"]/g  " |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:251:31:251:32 | '' | enclosingFunctionName | incompleteHtmlAttributeSanitization |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:251:31:251:32 | '' | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:253:33:253:40 | /[<>"]/g | CalleeFlexibleAccessPath | s().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:253:33:253:40 | /[<>"]/g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:253:33:253:40 | /[<>"]/g | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:253:33:253:40 | /[<>"]/g | contextSurroundingFunctionParameters | () |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:253:33:253:40 | /[<>"]/g | enclosingFunctionBody | =" s replace /[<>]/g  " =" s replace /[<>&]/g  " =" s replace /[<>"]/g  " =" s replace /[<>&"]/g  " =" s replace /[&"]/g  " =" s replace /[<>&']/g  " =' s replace /[<>&"]/g  ' =' s replace /[<>&']/g  ' onFunkyEvent=" s replace /[<>"]/g  " <div noise onFunkyEvent=" s replace /[<>"]/g  " <div noise monday=" s replace /[<>"]/g  " monday=" s replace /[<>"]/g  " |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:253:33:253:40 | /[<>"]/g | enclosingFunctionName | incompleteHtmlAttributeSanitization |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:253:33:253:40 | /[<>"]/g | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:253:43:253:44 | '' | CalleeFlexibleAccessPath | s().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:253:43:253:44 | '' | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:253:43:253:44 | '' | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:253:43:253:44 | '' | contextSurroundingFunctionParameters | () |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:253:43:253:44 | '' | enclosingFunctionBody | =" s replace /[<>]/g  " =" s replace /[<>&]/g  " =" s replace /[<>"]/g  " =" s replace /[<>&"]/g  " =" s replace /[&"]/g  " =" s replace /[<>&']/g  " =' s replace /[<>&"]/g  ' =' s replace /[<>&']/g  ' onFunkyEvent=" s replace /[<>"]/g  " <div noise onFunkyEvent=" s replace /[<>"]/g  " <div noise monday=" s replace /[<>"]/g  " monday=" s replace /[<>"]/g  " |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:253:43:253:44 | '' | enclosingFunctionName | incompleteHtmlAttributeSanitization |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:253:43:253:44 | '' | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:254:44:254:51 | /[<>"]/g | CalleeFlexibleAccessPath | s().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:254:44:254:51 | /[<>"]/g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:254:44:254:51 | /[<>"]/g | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:254:44:254:51 | /[<>"]/g | contextSurroundingFunctionParameters | () |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:254:44:254:51 | /[<>"]/g | enclosingFunctionBody | =" s replace /[<>]/g  " =" s replace /[<>&]/g  " =" s replace /[<>"]/g  " =" s replace /[<>&"]/g  " =" s replace /[&"]/g  " =" s replace /[<>&']/g  " =' s replace /[<>&"]/g  ' =' s replace /[<>&']/g  ' onFunkyEvent=" s replace /[<>"]/g  " <div noise onFunkyEvent=" s replace /[<>"]/g  " <div noise monday=" s replace /[<>"]/g  " monday=" s replace /[<>"]/g  " |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:254:44:254:51 | /[<>"]/g | enclosingFunctionName | incompleteHtmlAttributeSanitization |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:254:44:254:51 | /[<>"]/g | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:254:54:254:55 | '' | CalleeFlexibleAccessPath | s().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:254:54:254:55 | '' | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:254:54:254:55 | '' | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:254:54:254:55 | '' | contextSurroundingFunctionParameters | () |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:254:54:254:55 | '' | enclosingFunctionBody | =" s replace /[<>]/g  " =" s replace /[<>&]/g  " =" s replace /[<>"]/g  " =" s replace /[<>&"]/g  " =" s replace /[&"]/g  " =" s replace /[<>&']/g  " =' s replace /[<>&"]/g  ' =' s replace /[<>&']/g  ' onFunkyEvent=" s replace /[<>"]/g  " <div noise onFunkyEvent=" s replace /[<>"]/g  " <div noise monday=" s replace /[<>"]/g  " monday=" s replace /[<>"]/g  " |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:254:54:254:55 | '' | enclosingFunctionName | incompleteHtmlAttributeSanitization |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:254:54:254:55 | '' | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:255:38:255:45 | /[<>"]/g | CalleeFlexibleAccessPath | s().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:255:38:255:45 | /[<>"]/g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:255:38:255:45 | /[<>"]/g | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:255:38:255:45 | /[<>"]/g | contextSurroundingFunctionParameters | () |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:255:38:255:45 | /[<>"]/g | enclosingFunctionBody | =" s replace /[<>]/g  " =" s replace /[<>&]/g  " =" s replace /[<>"]/g  " =" s replace /[<>&"]/g  " =" s replace /[&"]/g  " =" s replace /[<>&']/g  " =' s replace /[<>&"]/g  ' =' s replace /[<>&']/g  ' onFunkyEvent=" s replace /[<>"]/g  " <div noise onFunkyEvent=" s replace /[<>"]/g  " <div noise monday=" s replace /[<>"]/g  " monday=" s replace /[<>"]/g  " |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:255:38:255:45 | /[<>"]/g | enclosingFunctionName | incompleteHtmlAttributeSanitization |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:255:38:255:45 | /[<>"]/g | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:255:48:255:49 | '' | CalleeFlexibleAccessPath | s().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:255:48:255:49 | '' | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:255:48:255:49 | '' | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:255:48:255:49 | '' | contextSurroundingFunctionParameters | () |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:255:48:255:49 | '' | enclosingFunctionBody | =" s replace /[<>]/g  " =" s replace /[<>&]/g  " =" s replace /[<>"]/g  " =" s replace /[<>&"]/g  " =" s replace /[&"]/g  " =" s replace /[<>&']/g  " =' s replace /[<>&"]/g  ' =' s replace /[<>&']/g  ' onFunkyEvent=" s replace /[<>"]/g  " <div noise onFunkyEvent=" s replace /[<>"]/g  " <div noise monday=" s replace /[<>"]/g  " monday=" s replace /[<>"]/g  " |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:255:48:255:49 | '' | enclosingFunctionName | incompleteHtmlAttributeSanitization |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:255:48:255:49 | '' | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:256:27:256:34 | /[<>"]/g | CalleeFlexibleAccessPath | s().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:256:27:256:34 | /[<>"]/g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:256:27:256:34 | /[<>"]/g | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:256:27:256:34 | /[<>"]/g | contextSurroundingFunctionParameters | () |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:256:27:256:34 | /[<>"]/g | enclosingFunctionBody | =" s replace /[<>]/g  " =" s replace /[<>&]/g  " =" s replace /[<>"]/g  " =" s replace /[<>&"]/g  " =" s replace /[&"]/g  " =" s replace /[<>&']/g  " =' s replace /[<>&"]/g  ' =' s replace /[<>&']/g  ' onFunkyEvent=" s replace /[<>"]/g  " <div noise onFunkyEvent=" s replace /[<>"]/g  " <div noise monday=" s replace /[<>"]/g  " monday=" s replace /[<>"]/g  " |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:256:27:256:34 | /[<>"]/g | enclosingFunctionName | incompleteHtmlAttributeSanitization |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:256:27:256:34 | /[<>"]/g | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:256:37:256:38 | '' | CalleeFlexibleAccessPath | s().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:256:37:256:38 | '' | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:256:37:256:38 | '' | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:256:37:256:38 | '' | contextSurroundingFunctionParameters | () |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:256:37:256:38 | '' | enclosingFunctionBody | =" s replace /[<>]/g  " =" s replace /[<>&]/g  " =" s replace /[<>"]/g  " =" s replace /[<>&"]/g  " =" s replace /[&"]/g  " =" s replace /[<>&']/g  " =' s replace /[<>&"]/g  ' =' s replace /[<>&']/g  ' onFunkyEvent=" s replace /[<>"]/g  " <div noise onFunkyEvent=" s replace /[<>"]/g  " <div noise monday=" s replace /[<>"]/g  " monday=" s replace /[<>"]/g  " |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:256:37:256:38 | '' | enclosingFunctionName | incompleteHtmlAttributeSanitization |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:256:37:256:38 | '' | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:261:24:261:27 | /&/g | CalleeFlexibleAccessPath | value.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:261:24:261:27 | /&/g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:261:24:261:27 | /&/g | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:261:24:261:27 | /&/g | contextSurroundingFunctionParameters | (value) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:261:24:261:27 | /&/g | enclosingFunctionBody | escapeHTML value value replace /&/g &amp; replace /</g &lt; replace />/g &gt; attr_str a   a name =" escapeHTML a value replace /"/g &quot; " result < tag node map call x attr_str join  > |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:261:24:261:27 | /&/g | enclosingFunctionName | multiStepSanitization |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:261:24:261:27 | /&/g | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:261:24:261:27 | /&/g | receiverName | value |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:261:30:261:36 | '&amp;' | CalleeFlexibleAccessPath | value.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:261:30:261:36 | '&amp;' | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:261:30:261:36 | '&amp;' | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:261:30:261:36 | '&amp;' | contextSurroundingFunctionParameters | (value) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:261:30:261:36 | '&amp;' | enclosingFunctionBody | escapeHTML value value replace /&/g &amp; replace /</g &lt; replace />/g &gt; attr_str a   a name =" escapeHTML a value replace /"/g &quot; " result < tag node map call x attr_str join  > |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:261:30:261:36 | '&amp;' | enclosingFunctionName | multiStepSanitization |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:261:30:261:36 | '&amp;' | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:261:30:261:36 | '&amp;' | receiverName | value |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:261:47:261:50 | /</g | CalleeFlexibleAccessPath | value.replace().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:261:47:261:50 | /</g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:261:47:261:50 | /</g | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:261:47:261:50 | /</g | contextSurroundingFunctionParameters | (value) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:261:47:261:50 | /</g | enclosingFunctionBody | escapeHTML value value replace /&/g &amp; replace /</g &lt; replace />/g &gt; attr_str a   a name =" escapeHTML a value replace /"/g &quot; " result < tag node map call x attr_str join  > |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:261:47:261:50 | /</g | enclosingFunctionName | multiStepSanitization |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:261:47:261:50 | /</g | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:261:53:261:58 | '&lt;' | CalleeFlexibleAccessPath | value.replace().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:261:53:261:58 | '&lt;' | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:261:53:261:58 | '&lt;' | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:261:53:261:58 | '&lt;' | contextSurroundingFunctionParameters | (value) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:261:53:261:58 | '&lt;' | enclosingFunctionBody | escapeHTML value value replace /&/g &amp; replace /</g &lt; replace />/g &gt; attr_str a   a name =" escapeHTML a value replace /"/g &quot; " result < tag node map call x attr_str join  > |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:261:53:261:58 | '&lt;' | enclosingFunctionName | multiStepSanitization |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:261:53:261:58 | '&lt;' | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:261:69:261:72 | />/g | CalleeFlexibleAccessPath | value.replace().replace().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:261:69:261:72 | />/g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:261:69:261:72 | />/g | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:261:69:261:72 | />/g | contextSurroundingFunctionParameters | (value) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:261:69:261:72 | />/g | enclosingFunctionBody | escapeHTML value value replace /&/g &amp; replace /</g &lt; replace />/g &gt; attr_str a   a name =" escapeHTML a value replace /"/g &quot; " result < tag node map call x attr_str join  > |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:261:69:261:72 | />/g | enclosingFunctionName | multiStepSanitization |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:261:69:261:72 | />/g | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:261:75:261:80 | '&gt;' | CalleeFlexibleAccessPath | value.replace().replace().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:261:75:261:80 | '&gt;' | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:261:75:261:80 | '&gt;' | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:261:75:261:80 | '&gt;' | contextSurroundingFunctionParameters | (value) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:261:75:261:80 | '&gt;' | enclosingFunctionBody | escapeHTML value value replace /&/g &amp; replace /</g &lt; replace />/g &gt; attr_str a   a name =" escapeHTML a value replace /"/g &quot; " result < tag node map call x attr_str join  > |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:261:75:261:80 | '&gt;' | enclosingFunctionName | multiStepSanitization |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:261:75:261:80 | '&gt;' | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:264:60:264:63 | /"/g | CalleeFlexibleAccessPath | escapeHTML().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:264:60:264:63 | /"/g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:264:60:264:63 | /"/g | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:264:60:264:63 | /"/g | contextSurroundingFunctionParameters | (a) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:264:60:264:63 | /"/g | enclosingFunctionBody | escapeHTML value value replace /&/g &amp; replace /</g &lt; replace />/g &gt; attr_str a   a name =" escapeHTML a value replace /"/g &quot; " result < tag node map call x attr_str join  > |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:264:60:264:63 | /"/g | enclosingFunctionName | multiStepSanitization |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:264:60:264:63 | /"/g | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:264:66:264:73 | '&quot;' | CalleeFlexibleAccessPath | escapeHTML().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:264:66:264:73 | '&quot;' | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:264:66:264:73 | '&quot;' | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:264:66:264:73 | '&quot;' | contextSurroundingFunctionParameters | (a) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:264:66:264:73 | '&quot;' | enclosingFunctionBody | escapeHTML value value replace /&/g &amp; replace /</g &lt; replace />/g &gt; attr_str a   a name =" escapeHTML a value replace /"/g &quot; " result < tag node map call x attr_str join  > |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:264:66:264:73 | '&quot;' | enclosingFunctionName | multiStepSanitization |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:264:66:264:73 | '&quot;' | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:266:22:266:25 | node | CalleeFlexibleAccessPath | tag |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:266:22:266:25 | node | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:266:22:266:25 | node | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:266:22:266:25 | node | contextSurroundingFunctionParameters | () |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:266:22:266:25 | node | enclosingFunctionBody | escapeHTML value value replace /&/g &amp; replace /</g &lt; replace />/g &gt; attr_str a   a name =" escapeHTML a value replace /"/g &quot; " result < tag node map call x attr_str join  > |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:266:22:266:25 | node | enclosingFunctionName | multiStepSanitization |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:266:22:266:25 | node | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:266:42:266:42 | x | CalleeFlexibleAccessPath | ?.map.call |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:266:42:266:42 | x | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:266:42:266:42 | x | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:266:42:266:42 | x | contextSurroundingFunctionParameters | () |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:266:42:266:42 | x | enclosingFunctionBody | escapeHTML value value replace /&/g &amp; replace /</g &lt; replace />/g &gt; attr_str a   a name =" escapeHTML a value replace /"/g &quot; " result < tag node map call x attr_str join  > |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:266:42:266:42 | x | enclosingFunctionName | multiStepSanitization |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:266:42:266:42 | x | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:266:45:266:52 | attr_str | CalleeFlexibleAccessPath | ?.map |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:266:45:266:52 | attr_str | CalleeFlexibleAccessPath | ?.map.call |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:266:45:266:52 | attr_str | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:266:45:266:52 | attr_str | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:266:45:266:52 | attr_str | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:266:45:266:52 | attr_str | contextSurroundingFunctionParameters | () |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:266:45:266:52 | attr_str | enclosingFunctionBody | escapeHTML value value replace /&/g &amp; replace /</g &lt; replace />/g &gt; attr_str a   a name =" escapeHTML a value replace /"/g &quot; " result < tag node map call x attr_str join  > |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:266:45:266:52 | attr_str | enclosingFunctionName | multiStepSanitization |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:266:45:266:52 | attr_str | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:266:45:266:52 | attr_str | receiverName | x |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:266:60:266:61 | '' | CalleeFlexibleAccessPath | ?.map.call().join |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:266:60:266:61 | '' | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:266:60:266:61 | '' | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:266:60:266:61 | '' | contextSurroundingFunctionParameters | () |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:266:60:266:61 | '' | enclosingFunctionBody | escapeHTML value value replace /&/g &amp; replace /</g &lt; replace />/g &gt; attr_str a   a name =" escapeHTML a value replace /"/g &quot; " result < tag node map call x attr_str join  > |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:266:60:266:61 | '' | enclosingFunctionName | multiStepSanitization |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:266:60:266:61 | '' | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:270:2:270:5 | '<a' | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:270:2:270:5 | '<a' | contextSurroundingFunctionParameters | () |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:270:2:270:5 | '<a' | enclosingFunctionBody | <a noise onclick="javascript:document.foo.bar(' s replace /[<>"]/g  '); return false;"> =" s replace /[<>]/g  replace /[^\\w ]+/g  " =" encodeURIComponent s replace /[<>]/g  " arr s val trim replace /^,\|,$/g  replace /^;\|;$/g  replace /<\|>/g  =" arr join   " arr2 s val trim replace /^,\|,$/g  replace /^;\|;$/g  replace /<\|>/g  arr2 arr2 replace /"/g  =" arr2 join   " x x x replace /&/g &amp; x x replace /</g &lt; replace />/g &gt; onclick=" x " x x replace /"/g &quot; onclick=" x " y escapeAmpersand y y replace /&/g &amp; y y replace /</g &lt; replace />/g &gt; onclick=" y " escapeQuotes y y replace /"/g &quot; onclick=" y " |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:270:2:270:5 | '<a' | enclosingFunctionName | moreIncompleteHtmlAttributeSanitization |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:270:2:270:5 | '<a' | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:270:2:270:5 | '<a' | stringConcatenatedWith |  -endpoint- noise + 'onclick="javascript:document.foo.bar('' + s().replace() + ''); return false;">' |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:270:9:270:13 | noise | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:270:9:270:13 | noise | contextSurroundingFunctionParameters | () |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:270:9:270:13 | noise | enclosingFunctionBody | <a noise onclick="javascript:document.foo.bar(' s replace /[<>"]/g  '); return false;"> =" s replace /[<>]/g  replace /[^\\w ]+/g  " =" encodeURIComponent s replace /[<>]/g  " arr s val trim replace /^,\|,$/g  replace /^;\|;$/g  replace /<\|>/g  =" arr join   " arr2 s val trim replace /^,\|,$/g  replace /^;\|;$/g  replace /<\|>/g  arr2 arr2 replace /"/g  =" arr2 join   " x x x replace /&/g &amp; x x replace /</g &lt; replace />/g &gt; onclick=" x " x x replace /"/g &quot; onclick=" x " y escapeAmpersand y y replace /&/g &amp; y y replace /</g &lt; replace />/g &gt; onclick=" y " escapeQuotes y y replace /"/g &quot; onclick=" y " |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:270:9:270:13 | noise | enclosingFunctionName | moreIncompleteHtmlAttributeSanitization |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:270:9:270:13 | noise | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:270:9:270:13 | noise | stringConcatenatedWith | '<a' -endpoint- 'onclick="javascript:document.foo.bar('' + s().replace() + ''); return false;">' |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:270:17:270:57 | 'onclic ... bar(\\'' | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:270:17:270:57 | 'onclic ... bar(\\'' | contextSurroundingFunctionParameters | () |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:270:17:270:57 | 'onclic ... bar(\\'' | enclosingFunctionBody | <a noise onclick="javascript:document.foo.bar(' s replace /[<>"]/g  '); return false;"> =" s replace /[<>]/g  replace /[^\\w ]+/g  " =" encodeURIComponent s replace /[<>]/g  " arr s val trim replace /^,\|,$/g  replace /^;\|;$/g  replace /<\|>/g  =" arr join   " arr2 s val trim replace /^,\|,$/g  replace /^;\|;$/g  replace /<\|>/g  arr2 arr2 replace /"/g  =" arr2 join   " x x x replace /&/g &amp; x x replace /</g &lt; replace />/g &gt; onclick=" x " x x replace /"/g &quot; onclick=" x " y escapeAmpersand y y replace /&/g &amp; y y replace /</g &lt; replace />/g &gt; onclick=" y " escapeQuotes y y replace /"/g &quot; onclick=" y " |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:270:17:270:57 | 'onclic ... bar(\\'' | enclosingFunctionName | moreIncompleteHtmlAttributeSanitization |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:270:17:270:57 | 'onclic ... bar(\\'' | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:270:17:270:57 | 'onclic ... bar(\\'' | stringConcatenatedWith | '<a' + noise -endpoint- s().replace() + ''); return false;">' |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:270:61:270:85 | s().rep ... /g, '') | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:270:61:270:85 | s().rep ... /g, '') | contextSurroundingFunctionParameters | () |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:270:61:270:85 | s().rep ... /g, '') | enclosingFunctionBody | <a noise onclick="javascript:document.foo.bar(' s replace /[<>"]/g  '); return false;"> =" s replace /[<>]/g  replace /[^\\w ]+/g  " =" encodeURIComponent s replace /[<>]/g  " arr s val trim replace /^,\|,$/g  replace /^;\|;$/g  replace /<\|>/g  =" arr join   " arr2 s val trim replace /^,\|,$/g  replace /^;\|;$/g  replace /<\|>/g  arr2 arr2 replace /"/g  =" arr2 join   " x x x replace /&/g &amp; x x replace /</g &lt; replace />/g &gt; onclick=" x " x x replace /"/g &quot; onclick=" x " y escapeAmpersand y y replace /&/g &amp; y y replace /</g &lt; replace />/g &gt; onclick=" y " escapeQuotes y y replace /"/g &quot; onclick=" y " |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:270:61:270:85 | s().rep ... /g, '') | enclosingFunctionName | moreIncompleteHtmlAttributeSanitization |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:270:61:270:85 | s().rep ... /g, '') | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:270:61:270:85 | s().rep ... /g, '') | stringConcatenatedWith | '<a' + noise + 'onclick="javascript:document.foo.bar('' -endpoint- ''); return false;">' |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:270:73:270:80 | /[<>"]/g | CalleeFlexibleAccessPath | s().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:270:73:270:80 | /[<>"]/g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:270:73:270:80 | /[<>"]/g | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:270:73:270:80 | /[<>"]/g | contextSurroundingFunctionParameters | () |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:270:73:270:80 | /[<>"]/g | enclosingFunctionBody | <a noise onclick="javascript:document.foo.bar(' s replace /[<>"]/g  '); return false;"> =" s replace /[<>]/g  replace /[^\\w ]+/g  " =" encodeURIComponent s replace /[<>]/g  " arr s val trim replace /^,\|,$/g  replace /^;\|;$/g  replace /<\|>/g  =" arr join   " arr2 s val trim replace /^,\|,$/g  replace /^;\|;$/g  replace /<\|>/g  arr2 arr2 replace /"/g  =" arr2 join   " x x x replace /&/g &amp; x x replace /</g &lt; replace />/g &gt; onclick=" x " x x replace /"/g &quot; onclick=" x " y escapeAmpersand y y replace /&/g &amp; y y replace /</g &lt; replace />/g &gt; onclick=" y " escapeQuotes y y replace /"/g &quot; onclick=" y " |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:270:73:270:80 | /[<>"]/g | enclosingFunctionName | moreIncompleteHtmlAttributeSanitization |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:270:73:270:80 | /[<>"]/g | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:270:83:270:84 | '' | CalleeFlexibleAccessPath | s().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:270:83:270:84 | '' | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:270:83:270:84 | '' | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:270:83:270:84 | '' | contextSurroundingFunctionParameters | () |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:270:83:270:84 | '' | enclosingFunctionBody | <a noise onclick="javascript:document.foo.bar(' s replace /[<>"]/g  '); return false;"> =" s replace /[<>]/g  replace /[^\\w ]+/g  " =" encodeURIComponent s replace /[<>]/g  " arr s val trim replace /^,\|,$/g  replace /^;\|;$/g  replace /<\|>/g  =" arr join   " arr2 s val trim replace /^,\|,$/g  replace /^;\|;$/g  replace /<\|>/g  arr2 arr2 replace /"/g  =" arr2 join   " x x x replace /&/g &amp; x x replace /</g &lt; replace />/g &gt; onclick=" x " x x replace /"/g &quot; onclick=" x " y escapeAmpersand y y replace /&/g &amp; y y replace /</g &lt; replace />/g &gt; onclick=" y " escapeQuotes y y replace /"/g &quot; onclick=" y " |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:270:83:270:84 | '' | enclosingFunctionName | moreIncompleteHtmlAttributeSanitization |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:270:83:270:84 | '' | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:270:89:270:110 | '\\'); r ... lse;">' | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:270:89:270:110 | '\\'); r ... lse;">' | contextSurroundingFunctionParameters | () |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:270:89:270:110 | '\\'); r ... lse;">' | enclosingFunctionBody | <a noise onclick="javascript:document.foo.bar(' s replace /[<>"]/g  '); return false;"> =" s replace /[<>]/g  replace /[^\\w ]+/g  " =" encodeURIComponent s replace /[<>]/g  " arr s val trim replace /^,\|,$/g  replace /^;\|;$/g  replace /<\|>/g  =" arr join   " arr2 s val trim replace /^,\|,$/g  replace /^;\|;$/g  replace /<\|>/g  arr2 arr2 replace /"/g  =" arr2 join   " x x x replace /&/g &amp; x x replace /</g &lt; replace />/g &gt; onclick=" x " x x replace /"/g &quot; onclick=" x " y escapeAmpersand y y replace /&/g &amp; y y replace /</g &lt; replace />/g &gt; onclick=" y " escapeQuotes y y replace /"/g &quot; onclick=" y " |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:270:89:270:110 | '\\'); r ... lse;">' | enclosingFunctionName | moreIncompleteHtmlAttributeSanitization |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:270:89:270:110 | '\\'); r ... lse;">' | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:270:89:270:110 | '\\'); r ... lse;">' | stringConcatenatedWith | '<a' + noise + 'onclick="javascript:document.foo.bar('' + s().replace() -endpoint-  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:271:21:271:27 | /[<>]/g | CalleeFlexibleAccessPath | s().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:271:21:271:27 | /[<>]/g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:271:21:271:27 | /[<>]/g | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:271:21:271:27 | /[<>]/g | contextSurroundingFunctionParameters | () |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:271:21:271:27 | /[<>]/g | enclosingFunctionBody | <a noise onclick="javascript:document.foo.bar(' s replace /[<>"]/g  '); return false;"> =" s replace /[<>]/g  replace /[^\\w ]+/g  " =" encodeURIComponent s replace /[<>]/g  " arr s val trim replace /^,\|,$/g  replace /^;\|;$/g  replace /<\|>/g  =" arr join   " arr2 s val trim replace /^,\|,$/g  replace /^;\|;$/g  replace /<\|>/g  arr2 arr2 replace /"/g  =" arr2 join   " x x x replace /&/g &amp; x x replace /</g &lt; replace />/g &gt; onclick=" x " x x replace /"/g &quot; onclick=" x " y escapeAmpersand y y replace /&/g &amp; y y replace /</g &lt; replace />/g &gt; onclick=" y " escapeQuotes y y replace /"/g &quot; onclick=" y " |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:271:21:271:27 | /[<>]/g | enclosingFunctionName | moreIncompleteHtmlAttributeSanitization |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:271:21:271:27 | /[<>]/g | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:271:29:271:30 | '' | CalleeFlexibleAccessPath | s().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:271:29:271:30 | '' | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:271:29:271:30 | '' | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:271:29:271:30 | '' | contextSurroundingFunctionParameters | () |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:271:29:271:30 | '' | enclosingFunctionBody | <a noise onclick="javascript:document.foo.bar(' s replace /[<>"]/g  '); return false;"> =" s replace /[<>]/g  replace /[^\\w ]+/g  " =" encodeURIComponent s replace /[<>]/g  " arr s val trim replace /^,\|,$/g  replace /^;\|;$/g  replace /<\|>/g  =" arr join   " arr2 s val trim replace /^,\|,$/g  replace /^;\|;$/g  replace /<\|>/g  arr2 arr2 replace /"/g  =" arr2 join   " x x x replace /&/g &amp; x x replace /</g &lt; replace />/g &gt; onclick=" x " x x replace /"/g &quot; onclick=" x " y escapeAmpersand y y replace /&/g &amp; y y replace /</g &lt; replace />/g &gt; onclick=" y " escapeQuotes y y replace /"/g &quot; onclick=" y " |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:271:29:271:30 | '' | enclosingFunctionName | moreIncompleteHtmlAttributeSanitization |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:271:29:271:30 | '' | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:271:41:271:50 | /[^\\w ]+/g | CalleeFlexibleAccessPath | s().replace().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:271:41:271:50 | /[^\\w ]+/g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:271:41:271:50 | /[^\\w ]+/g | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:271:41:271:50 | /[^\\w ]+/g | contextSurroundingFunctionParameters | () |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:271:41:271:50 | /[^\\w ]+/g | enclosingFunctionBody | <a noise onclick="javascript:document.foo.bar(' s replace /[<>"]/g  '); return false;"> =" s replace /[<>]/g  replace /[^\\w ]+/g  " =" encodeURIComponent s replace /[<>]/g  " arr s val trim replace /^,\|,$/g  replace /^;\|;$/g  replace /<\|>/g  =" arr join   " arr2 s val trim replace /^,\|,$/g  replace /^;\|;$/g  replace /<\|>/g  arr2 arr2 replace /"/g  =" arr2 join   " x x x replace /&/g &amp; x x replace /</g &lt; replace />/g &gt; onclick=" x " x x replace /"/g &quot; onclick=" x " y escapeAmpersand y y replace /&/g &amp; y y replace /</g &lt; replace />/g &gt; onclick=" y " escapeQuotes y y replace /"/g &quot; onclick=" y " |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:271:41:271:50 | /[^\\w ]+/g | enclosingFunctionName | moreIncompleteHtmlAttributeSanitization |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:271:41:271:50 | /[^\\w ]+/g | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:271:53:271:54 | '' | CalleeFlexibleAccessPath | s().replace().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:271:53:271:54 | '' | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:271:53:271:54 | '' | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:271:53:271:54 | '' | contextSurroundingFunctionParameters | () |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:271:53:271:54 | '' | enclosingFunctionBody | <a noise onclick="javascript:document.foo.bar(' s replace /[<>"]/g  '); return false;"> =" s replace /[<>]/g  replace /[^\\w ]+/g  " =" encodeURIComponent s replace /[<>]/g  " arr s val trim replace /^,\|,$/g  replace /^;\|;$/g  replace /<\|>/g  =" arr join   " arr2 s val trim replace /^,\|,$/g  replace /^;\|;$/g  replace /<\|>/g  arr2 arr2 replace /"/g  =" arr2 join   " x x x replace /&/g &amp; x x replace /</g &lt; replace />/g &gt; onclick=" x " x x replace /"/g &quot; onclick=" x " y escapeAmpersand y y replace /&/g &amp; y y replace /</g &lt; replace />/g &gt; onclick=" y " escapeQuotes y y replace /"/g &quot; onclick=" y " |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:271:53:271:54 | '' | enclosingFunctionName | moreIncompleteHtmlAttributeSanitization |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:271:53:271:54 | '' | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:272:28:272:50 | s().rep ... ]/g,'') | CalleeFlexibleAccessPath | encodeURIComponent |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:272:28:272:50 | s().rep ... ]/g,'') | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:272:28:272:50 | s().rep ... ]/g,'') | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:272:28:272:50 | s().rep ... ]/g,'') | contextSurroundingFunctionParameters | () |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:272:28:272:50 | s().rep ... ]/g,'') | enclosingFunctionBody | <a noise onclick="javascript:document.foo.bar(' s replace /[<>"]/g  '); return false;"> =" s replace /[<>]/g  replace /[^\\w ]+/g  " =" encodeURIComponent s replace /[<>]/g  " arr s val trim replace /^,\|,$/g  replace /^;\|;$/g  replace /<\|>/g  =" arr join   " arr2 s val trim replace /^,\|,$/g  replace /^;\|;$/g  replace /<\|>/g  arr2 arr2 replace /"/g  =" arr2 join   " x x x replace /&/g &amp; x x replace /</g &lt; replace />/g &gt; onclick=" x " x x replace /"/g &quot; onclick=" x " y escapeAmpersand y y replace /&/g &amp; y y replace /</g &lt; replace />/g &gt; onclick=" y " escapeQuotes y y replace /"/g &quot; onclick=" y " |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:272:28:272:50 | s().rep ... ]/g,'') | enclosingFunctionName | moreIncompleteHtmlAttributeSanitization |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:272:28:272:50 | s().rep ... ]/g,'') | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:272:40:272:46 | /[<>]/g | CalleeFlexibleAccessPath | s().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:272:40:272:46 | /[<>]/g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:272:40:272:46 | /[<>]/g | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:272:40:272:46 | /[<>]/g | contextSurroundingFunctionParameters | () |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:272:40:272:46 | /[<>]/g | enclosingFunctionBody | <a noise onclick="javascript:document.foo.bar(' s replace /[<>"]/g  '); return false;"> =" s replace /[<>]/g  replace /[^\\w ]+/g  " =" encodeURIComponent s replace /[<>]/g  " arr s val trim replace /^,\|,$/g  replace /^;\|;$/g  replace /<\|>/g  =" arr join   " arr2 s val trim replace /^,\|,$/g  replace /^;\|;$/g  replace /<\|>/g  arr2 arr2 replace /"/g  =" arr2 join   " x x x replace /&/g &amp; x x replace /</g &lt; replace />/g &gt; onclick=" x " x x replace /"/g &quot; onclick=" x " y escapeAmpersand y y replace /&/g &amp; y y replace /</g &lt; replace />/g &gt; onclick=" y " escapeQuotes y y replace /"/g &quot; onclick=" y " |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:272:40:272:46 | /[<>]/g | enclosingFunctionName | moreIncompleteHtmlAttributeSanitization |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:272:40:272:46 | /[<>]/g | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:272:48:272:49 | '' | CalleeFlexibleAccessPath | s().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:272:48:272:49 | '' | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:272:48:272:49 | '' | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:272:48:272:49 | '' | contextSurroundingFunctionParameters | () |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:272:48:272:49 | '' | enclosingFunctionBody | <a noise onclick="javascript:document.foo.bar(' s replace /[<>"]/g  '); return false;"> =" s replace /[<>]/g  replace /[^\\w ]+/g  " =" encodeURIComponent s replace /[<>]/g  " arr s val trim replace /^,\|,$/g  replace /^;\|;$/g  replace /<\|>/g  =" arr join   " arr2 s val trim replace /^,\|,$/g  replace /^;\|;$/g  replace /<\|>/g  arr2 arr2 replace /"/g  =" arr2 join   " x x x replace /&/g &amp; x x replace /</g &lt; replace />/g &gt; onclick=" x " x x replace /"/g &quot; onclick=" x " y escapeAmpersand y y replace /&/g &amp; y y replace /</g &lt; replace />/g &gt; onclick=" y " escapeQuotes y y replace /"/g &quot; onclick=" y " |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:272:48:272:49 | '' | enclosingFunctionName | moreIncompleteHtmlAttributeSanitization |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:272:48:272:49 | '' | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:274:37:274:44 | /^,\|,$/g | CalleeFlexibleAccessPath | s().val().trim().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:274:37:274:44 | /^,\|,$/g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:274:37:274:44 | /^,\|,$/g | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:274:37:274:44 | /^,\|,$/g | contextSurroundingFunctionParameters | () |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:274:37:274:44 | /^,\|,$/g | enclosingFunctionBody | <a noise onclick="javascript:document.foo.bar(' s replace /[<>"]/g  '); return false;"> =" s replace /[<>]/g  replace /[^\\w ]+/g  " =" encodeURIComponent s replace /[<>]/g  " arr s val trim replace /^,\|,$/g  replace /^;\|;$/g  replace /<\|>/g  =" arr join   " arr2 s val trim replace /^,\|,$/g  replace /^;\|;$/g  replace /<\|>/g  arr2 arr2 replace /"/g  =" arr2 join   " x x x replace /&/g &amp; x x replace /</g &lt; replace />/g &gt; onclick=" x " x x replace /"/g &quot; onclick=" x " y escapeAmpersand y y replace /&/g &amp; y y replace /</g &lt; replace />/g &gt; onclick=" y " escapeQuotes y y replace /"/g &quot; onclick=" y " |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:274:37:274:44 | /^,\|,$/g | enclosingFunctionName | moreIncompleteHtmlAttributeSanitization |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:274:37:274:44 | /^,\|,$/g | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:274:48:274:49 | '' | CalleeFlexibleAccessPath | s().val().trim().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:274:48:274:49 | '' | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:274:48:274:49 | '' | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:274:48:274:49 | '' | contextSurroundingFunctionParameters | () |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:274:48:274:49 | '' | enclosingFunctionBody | <a noise onclick="javascript:document.foo.bar(' s replace /[<>"]/g  '); return false;"> =" s replace /[<>]/g  replace /[^\\w ]+/g  " =" encodeURIComponent s replace /[<>]/g  " arr s val trim replace /^,\|,$/g  replace /^;\|;$/g  replace /<\|>/g  =" arr join   " arr2 s val trim replace /^,\|,$/g  replace /^;\|;$/g  replace /<\|>/g  arr2 arr2 replace /"/g  =" arr2 join   " x x x replace /&/g &amp; x x replace /</g &lt; replace />/g &gt; onclick=" x " x x replace /"/g &quot; onclick=" x " y escapeAmpersand y y replace /&/g &amp; y y replace /</g &lt; replace />/g &gt; onclick=" y " escapeQuotes y y replace /"/g &quot; onclick=" y " |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:274:48:274:49 | '' | enclosingFunctionName | moreIncompleteHtmlAttributeSanitization |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:274:48:274:49 | '' | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:274:60:274:67 | /^;\|;$/g | CalleeFlexibleAccessPath | s().val().trim().replace().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:274:60:274:67 | /^;\|;$/g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:274:60:274:67 | /^;\|;$/g | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:274:60:274:67 | /^;\|;$/g | contextSurroundingFunctionParameters | () |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:274:60:274:67 | /^;\|;$/g | enclosingFunctionBody | <a noise onclick="javascript:document.foo.bar(' s replace /[<>"]/g  '); return false;"> =" s replace /[<>]/g  replace /[^\\w ]+/g  " =" encodeURIComponent s replace /[<>]/g  " arr s val trim replace /^,\|,$/g  replace /^;\|;$/g  replace /<\|>/g  =" arr join   " arr2 s val trim replace /^,\|,$/g  replace /^;\|;$/g  replace /<\|>/g  arr2 arr2 replace /"/g  =" arr2 join   " x x x replace /&/g &amp; x x replace /</g &lt; replace />/g &gt; onclick=" x " x x replace /"/g &quot; onclick=" x " y escapeAmpersand y y replace /&/g &amp; y y replace /</g &lt; replace />/g &gt; onclick=" y " escapeQuotes y y replace /"/g &quot; onclick=" y " |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:274:60:274:67 | /^;\|;$/g | enclosingFunctionName | moreIncompleteHtmlAttributeSanitization |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:274:60:274:67 | /^;\|;$/g | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:274:71:274:72 | '' | CalleeFlexibleAccessPath | s().val().trim().replace().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:274:71:274:72 | '' | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:274:71:274:72 | '' | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:274:71:274:72 | '' | contextSurroundingFunctionParameters | () |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:274:71:274:72 | '' | enclosingFunctionBody | <a noise onclick="javascript:document.foo.bar(' s replace /[<>"]/g  '); return false;"> =" s replace /[<>]/g  replace /[^\\w ]+/g  " =" encodeURIComponent s replace /[<>]/g  " arr s val trim replace /^,\|,$/g  replace /^;\|;$/g  replace /<\|>/g  =" arr join   " arr2 s val trim replace /^,\|,$/g  replace /^;\|;$/g  replace /<\|>/g  arr2 arr2 replace /"/g  =" arr2 join   " x x x replace /&/g &amp; x x replace /</g &lt; replace />/g &gt; onclick=" x " x x replace /"/g &quot; onclick=" x " y escapeAmpersand y y replace /&/g &amp; y y replace /</g &lt; replace />/g &gt; onclick=" y " escapeQuotes y y replace /"/g &quot; onclick=" y " |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:274:71:274:72 | '' | enclosingFunctionName | moreIncompleteHtmlAttributeSanitization |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:274:71:274:72 | '' | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:274:83:274:88 | /<\|>/g | CalleeFlexibleAccessPath | s().val().trim().replace().replace().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:274:83:274:88 | /<\|>/g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:274:83:274:88 | /<\|>/g | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:274:83:274:88 | /<\|>/g | contextSurroundingFunctionParameters | () |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:274:83:274:88 | /<\|>/g | enclosingFunctionBody | <a noise onclick="javascript:document.foo.bar(' s replace /[<>"]/g  '); return false;"> =" s replace /[<>]/g  replace /[^\\w ]+/g  " =" encodeURIComponent s replace /[<>]/g  " arr s val trim replace /^,\|,$/g  replace /^;\|;$/g  replace /<\|>/g  =" arr join   " arr2 s val trim replace /^,\|,$/g  replace /^;\|;$/g  replace /<\|>/g  arr2 arr2 replace /"/g  =" arr2 join   " x x x replace /&/g &amp; x x replace /</g &lt; replace />/g &gt; onclick=" x " x x replace /"/g &quot; onclick=" x " y escapeAmpersand y y replace /&/g &amp; y y replace /</g &lt; replace />/g &gt; onclick=" y " escapeQuotes y y replace /"/g &quot; onclick=" y " |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:274:83:274:88 | /<\|>/g | enclosingFunctionName | moreIncompleteHtmlAttributeSanitization |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:274:83:274:88 | /<\|>/g | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:274:92:274:93 | '' | CalleeFlexibleAccessPath | s().val().trim().replace().replace().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:274:92:274:93 | '' | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:274:92:274:93 | '' | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:274:92:274:93 | '' | contextSurroundingFunctionParameters | () |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:274:92:274:93 | '' | enclosingFunctionBody | <a noise onclick="javascript:document.foo.bar(' s replace /[<>"]/g  '); return false;"> =" s replace /[<>]/g  replace /[^\\w ]+/g  " =" encodeURIComponent s replace /[<>]/g  " arr s val trim replace /^,\|,$/g  replace /^;\|;$/g  replace /<\|>/g  =" arr join   " arr2 s val trim replace /^,\|,$/g  replace /^;\|;$/g  replace /<\|>/g  arr2 arr2 replace /"/g  =" arr2 join   " x x x replace /&/g &amp; x x replace /</g &lt; replace />/g &gt; onclick=" x " x x replace /"/g &quot; onclick=" x " y escapeAmpersand y y replace /&/g &amp; y y replace /</g &lt; replace />/g &gt; onclick=" y " escapeQuotes y y replace /"/g &quot; onclick=" y " |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:274:92:274:93 | '' | enclosingFunctionName | moreIncompleteHtmlAttributeSanitization |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:274:92:274:93 | '' | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:275:18:275:20 | " " | CalleeFlexibleAccessPath | arr.join |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:275:18:275:20 | " " | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:275:18:275:20 | " " | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:275:18:275:20 | " " | contextSurroundingFunctionParameters | () |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:275:18:275:20 | " " | enclosingFunctionBody | <a noise onclick="javascript:document.foo.bar(' s replace /[<>"]/g  '); return false;"> =" s replace /[<>]/g  replace /[^\\w ]+/g  " =" encodeURIComponent s replace /[<>]/g  " arr s val trim replace /^,\|,$/g  replace /^;\|;$/g  replace /<\|>/g  =" arr join   " arr2 s val trim replace /^,\|,$/g  replace /^;\|;$/g  replace /<\|>/g  arr2 arr2 replace /"/g  =" arr2 join   " x x x replace /&/g &amp; x x replace /</g &lt; replace />/g &gt; onclick=" x " x x replace /"/g &quot; onclick=" x " y escapeAmpersand y y replace /&/g &amp; y y replace /</g &lt; replace />/g &gt; onclick=" y " escapeQuotes y y replace /"/g &quot; onclick=" y " |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:275:18:275:20 | " " | enclosingFunctionName | moreIncompleteHtmlAttributeSanitization |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:275:18:275:20 | " " | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:275:18:275:20 | " " | receiverName | arr |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:276:38:276:45 | /^,\|,$/g | CalleeFlexibleAccessPath | s().val().trim().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:276:38:276:45 | /^,\|,$/g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:276:38:276:45 | /^,\|,$/g | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:276:38:276:45 | /^,\|,$/g | contextSurroundingFunctionParameters | () |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:276:38:276:45 | /^,\|,$/g | enclosingFunctionBody | <a noise onclick="javascript:document.foo.bar(' s replace /[<>"]/g  '); return false;"> =" s replace /[<>]/g  replace /[^\\w ]+/g  " =" encodeURIComponent s replace /[<>]/g  " arr s val trim replace /^,\|,$/g  replace /^;\|;$/g  replace /<\|>/g  =" arr join   " arr2 s val trim replace /^,\|,$/g  replace /^;\|;$/g  replace /<\|>/g  arr2 arr2 replace /"/g  =" arr2 join   " x x x replace /&/g &amp; x x replace /</g &lt; replace />/g &gt; onclick=" x " x x replace /"/g &quot; onclick=" x " y escapeAmpersand y y replace /&/g &amp; y y replace /</g &lt; replace />/g &gt; onclick=" y " escapeQuotes y y replace /"/g &quot; onclick=" y " |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:276:38:276:45 | /^,\|,$/g | enclosingFunctionName | moreIncompleteHtmlAttributeSanitization |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:276:38:276:45 | /^,\|,$/g | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:276:49:276:50 | '' | CalleeFlexibleAccessPath | s().val().trim().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:276:49:276:50 | '' | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:276:49:276:50 | '' | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:276:49:276:50 | '' | contextSurroundingFunctionParameters | () |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:276:49:276:50 | '' | enclosingFunctionBody | <a noise onclick="javascript:document.foo.bar(' s replace /[<>"]/g  '); return false;"> =" s replace /[<>]/g  replace /[^\\w ]+/g  " =" encodeURIComponent s replace /[<>]/g  " arr s val trim replace /^,\|,$/g  replace /^;\|;$/g  replace /<\|>/g  =" arr join   " arr2 s val trim replace /^,\|,$/g  replace /^;\|;$/g  replace /<\|>/g  arr2 arr2 replace /"/g  =" arr2 join   " x x x replace /&/g &amp; x x replace /</g &lt; replace />/g &gt; onclick=" x " x x replace /"/g &quot; onclick=" x " y escapeAmpersand y y replace /&/g &amp; y y replace /</g &lt; replace />/g &gt; onclick=" y " escapeQuotes y y replace /"/g &quot; onclick=" y " |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:276:49:276:50 | '' | enclosingFunctionName | moreIncompleteHtmlAttributeSanitization |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:276:49:276:50 | '' | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:276:61:276:68 | /^;\|;$/g | CalleeFlexibleAccessPath | s().val().trim().replace().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:276:61:276:68 | /^;\|;$/g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:276:61:276:68 | /^;\|;$/g | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:276:61:276:68 | /^;\|;$/g | contextSurroundingFunctionParameters | () |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:276:61:276:68 | /^;\|;$/g | enclosingFunctionBody | <a noise onclick="javascript:document.foo.bar(' s replace /[<>"]/g  '); return false;"> =" s replace /[<>]/g  replace /[^\\w ]+/g  " =" encodeURIComponent s replace /[<>]/g  " arr s val trim replace /^,\|,$/g  replace /^;\|;$/g  replace /<\|>/g  =" arr join   " arr2 s val trim replace /^,\|,$/g  replace /^;\|;$/g  replace /<\|>/g  arr2 arr2 replace /"/g  =" arr2 join   " x x x replace /&/g &amp; x x replace /</g &lt; replace />/g &gt; onclick=" x " x x replace /"/g &quot; onclick=" x " y escapeAmpersand y y replace /&/g &amp; y y replace /</g &lt; replace />/g &gt; onclick=" y " escapeQuotes y y replace /"/g &quot; onclick=" y " |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:276:61:276:68 | /^;\|;$/g | enclosingFunctionName | moreIncompleteHtmlAttributeSanitization |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:276:61:276:68 | /^;\|;$/g | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:276:72:276:73 | '' | CalleeFlexibleAccessPath | s().val().trim().replace().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:276:72:276:73 | '' | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:276:72:276:73 | '' | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:276:72:276:73 | '' | contextSurroundingFunctionParameters | () |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:276:72:276:73 | '' | enclosingFunctionBody | <a noise onclick="javascript:document.foo.bar(' s replace /[<>"]/g  '); return false;"> =" s replace /[<>]/g  replace /[^\\w ]+/g  " =" encodeURIComponent s replace /[<>]/g  " arr s val trim replace /^,\|,$/g  replace /^;\|;$/g  replace /<\|>/g  =" arr join   " arr2 s val trim replace /^,\|,$/g  replace /^;\|;$/g  replace /<\|>/g  arr2 arr2 replace /"/g  =" arr2 join   " x x x replace /&/g &amp; x x replace /</g &lt; replace />/g &gt; onclick=" x " x x replace /"/g &quot; onclick=" x " y escapeAmpersand y y replace /&/g &amp; y y replace /</g &lt; replace />/g &gt; onclick=" y " escapeQuotes y y replace /"/g &quot; onclick=" y " |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:276:72:276:73 | '' | enclosingFunctionName | moreIncompleteHtmlAttributeSanitization |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:276:72:276:73 | '' | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:276:84:276:89 | /<\|>/g | CalleeFlexibleAccessPath | s().val().trim().replace().replace().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:276:84:276:89 | /<\|>/g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:276:84:276:89 | /<\|>/g | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:276:84:276:89 | /<\|>/g | contextSurroundingFunctionParameters | () |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:276:84:276:89 | /<\|>/g | enclosingFunctionBody | <a noise onclick="javascript:document.foo.bar(' s replace /[<>"]/g  '); return false;"> =" s replace /[<>]/g  replace /[^\\w ]+/g  " =" encodeURIComponent s replace /[<>]/g  " arr s val trim replace /^,\|,$/g  replace /^;\|;$/g  replace /<\|>/g  =" arr join   " arr2 s val trim replace /^,\|,$/g  replace /^;\|;$/g  replace /<\|>/g  arr2 arr2 replace /"/g  =" arr2 join   " x x x replace /&/g &amp; x x replace /</g &lt; replace />/g &gt; onclick=" x " x x replace /"/g &quot; onclick=" x " y escapeAmpersand y y replace /&/g &amp; y y replace /</g &lt; replace />/g &gt; onclick=" y " escapeQuotes y y replace /"/g &quot; onclick=" y " |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:276:84:276:89 | /<\|>/g | enclosingFunctionName | moreIncompleteHtmlAttributeSanitization |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:276:84:276:89 | /<\|>/g | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:276:93:276:94 | '' | CalleeFlexibleAccessPath | s().val().trim().replace().replace().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:276:93:276:94 | '' | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:276:93:276:94 | '' | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:276:93:276:94 | '' | contextSurroundingFunctionParameters | () |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:276:93:276:94 | '' | enclosingFunctionBody | <a noise onclick="javascript:document.foo.bar(' s replace /[<>"]/g  '); return false;"> =" s replace /[<>]/g  replace /[^\\w ]+/g  " =" encodeURIComponent s replace /[<>]/g  " arr s val trim replace /^,\|,$/g  replace /^;\|;$/g  replace /<\|>/g  =" arr join   " arr2 s val trim replace /^,\|,$/g  replace /^;\|;$/g  replace /<\|>/g  arr2 arr2 replace /"/g  =" arr2 join   " x x x replace /&/g &amp; x x replace /</g &lt; replace />/g &gt; onclick=" x " x x replace /"/g &quot; onclick=" x " y escapeAmpersand y y replace /&/g &amp; y y replace /</g &lt; replace />/g &gt; onclick=" y " escapeQuotes y y replace /"/g &quot; onclick=" y " |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:276:93:276:94 | '' | enclosingFunctionName | moreIncompleteHtmlAttributeSanitization |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:276:93:276:94 | '' | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:277:22:277:25 | /"/g | CalleeFlexibleAccessPath | arr2.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:277:22:277:25 | /"/g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:277:22:277:25 | /"/g | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:277:22:277:25 | /"/g | contextSurroundingFunctionParameters | () |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:277:22:277:25 | /"/g | enclosingFunctionBody | <a noise onclick="javascript:document.foo.bar(' s replace /[<>"]/g  '); return false;"> =" s replace /[<>]/g  replace /[^\\w ]+/g  " =" encodeURIComponent s replace /[<>]/g  " arr s val trim replace /^,\|,$/g  replace /^;\|;$/g  replace /<\|>/g  =" arr join   " arr2 s val trim replace /^,\|,$/g  replace /^;\|;$/g  replace /<\|>/g  arr2 arr2 replace /"/g  =" arr2 join   " x x x replace /&/g &amp; x x replace /</g &lt; replace />/g &gt; onclick=" x " x x replace /"/g &quot; onclick=" x " y escapeAmpersand y y replace /&/g &amp; y y replace /</g &lt; replace />/g &gt; onclick=" y " escapeQuotes y y replace /"/g &quot; onclick=" y " |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:277:22:277:25 | /"/g | enclosingFunctionName | moreIncompleteHtmlAttributeSanitization |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:277:22:277:25 | /"/g | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:277:22:277:25 | /"/g | receiverName | arr2 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:277:27:277:28 | "" | CalleeFlexibleAccessPath | arr2.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:277:27:277:28 | "" | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:277:27:277:28 | "" | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:277:27:277:28 | "" | contextSurroundingFunctionParameters | () |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:277:27:277:28 | "" | enclosingFunctionBody | <a noise onclick="javascript:document.foo.bar(' s replace /[<>"]/g  '); return false;"> =" s replace /[<>]/g  replace /[^\\w ]+/g  " =" encodeURIComponent s replace /[<>]/g  " arr s val trim replace /^,\|,$/g  replace /^;\|;$/g  replace /<\|>/g  =" arr join   " arr2 s val trim replace /^,\|,$/g  replace /^;\|;$/g  replace /<\|>/g  arr2 arr2 replace /"/g  =" arr2 join   " x x x replace /&/g &amp; x x replace /</g &lt; replace />/g &gt; onclick=" x " x x replace /"/g &quot; onclick=" x " y escapeAmpersand y y replace /&/g &amp; y y replace /</g &lt; replace />/g &gt; onclick=" y " escapeQuotes y y replace /"/g &quot; onclick=" y " |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:277:27:277:28 | "" | enclosingFunctionName | moreIncompleteHtmlAttributeSanitization |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:277:27:277:28 | "" | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:277:27:277:28 | "" | receiverName | arr2 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:278:19:278:21 | " " | CalleeFlexibleAccessPath | arr2.join |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:278:19:278:21 | " " | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:278:19:278:21 | " " | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:278:19:278:21 | " " | contextSurroundingFunctionParameters | () |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:278:19:278:21 | " " | enclosingFunctionBody | <a noise onclick="javascript:document.foo.bar(' s replace /[<>"]/g  '); return false;"> =" s replace /[<>]/g  replace /[^\\w ]+/g  " =" encodeURIComponent s replace /[<>]/g  " arr s val trim replace /^,\|,$/g  replace /^;\|;$/g  replace /<\|>/g  =" arr join   " arr2 s val trim replace /^,\|,$/g  replace /^;\|;$/g  replace /<\|>/g  arr2 arr2 replace /"/g  =" arr2 join   " x x x replace /&/g &amp; x x replace /</g &lt; replace />/g &gt; onclick=" x " x x replace /"/g &quot; onclick=" x " y escapeAmpersand y y replace /&/g &amp; y y replace /</g &lt; replace />/g &gt; onclick=" y " escapeQuotes y y replace /"/g &quot; onclick=" y " |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:278:19:278:21 | " " | enclosingFunctionName | moreIncompleteHtmlAttributeSanitization |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:278:19:278:21 | " " | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:278:19:278:21 | " " | receiverName | arr2 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:281:16:281:19 | /&/g | CalleeFlexibleAccessPath | x.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:281:16:281:19 | /&/g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:281:16:281:19 | /&/g | calleeImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:281:16:281:19 | /&/g | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:281:16:281:19 | /&/g | contextSurroundingFunctionParameters | () |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:281:16:281:19 | /&/g | enclosingFunctionBody | <a noise onclick="javascript:document.foo.bar(' s replace /[<>"]/g  '); return false;"> =" s replace /[<>]/g  replace /[^\\w ]+/g  " =" encodeURIComponent s replace /[<>]/g  " arr s val trim replace /^,\|,$/g  replace /^;\|;$/g  replace /<\|>/g  =" arr join   " arr2 s val trim replace /^,\|,$/g  replace /^;\|;$/g  replace /<\|>/g  arr2 arr2 replace /"/g  =" arr2 join   " x x x replace /&/g &amp; x x replace /</g &lt; replace />/g &gt; onclick=" x " x x replace /"/g &quot; onclick=" x " y escapeAmpersand y y replace /&/g &amp; y y replace /</g &lt; replace />/g &gt; onclick=" y " escapeQuotes y y replace /"/g &quot; onclick=" y " |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:281:16:281:19 | /&/g | enclosingFunctionName | moreIncompleteHtmlAttributeSanitization |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:281:16:281:19 | /&/g | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:281:16:281:19 | /&/g | receiverName | x |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:281:22:281:28 | '&amp;' | CalleeFlexibleAccessPath | x.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:281:22:281:28 | '&amp;' | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:281:22:281:28 | '&amp;' | calleeImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:281:22:281:28 | '&amp;' | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:281:22:281:28 | '&amp;' | contextSurroundingFunctionParameters | () |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:281:22:281:28 | '&amp;' | enclosingFunctionBody | <a noise onclick="javascript:document.foo.bar(' s replace /[<>"]/g  '); return false;"> =" s replace /[<>]/g  replace /[^\\w ]+/g  " =" encodeURIComponent s replace /[<>]/g  " arr s val trim replace /^,\|,$/g  replace /^;\|;$/g  replace /<\|>/g  =" arr join   " arr2 s val trim replace /^,\|,$/g  replace /^;\|;$/g  replace /<\|>/g  arr2 arr2 replace /"/g  =" arr2 join   " x x x replace /&/g &amp; x x replace /</g &lt; replace />/g &gt; onclick=" x " x x replace /"/g &quot; onclick=" x " y escapeAmpersand y y replace /&/g &amp; y y replace /</g &lt; replace />/g &gt; onclick=" y " escapeQuotes y y replace /"/g &quot; onclick=" y " |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:281:22:281:28 | '&amp;' | enclosingFunctionName | moreIncompleteHtmlAttributeSanitization |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:281:22:281:28 | '&amp;' | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:281:22:281:28 | '&amp;' | receiverName | x |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:282:16:282:19 | /</g | CalleeFlexibleAccessPath | x.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:282:16:282:19 | /</g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:282:16:282:19 | /</g | calleeImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:282:16:282:19 | /</g | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:282:16:282:19 | /</g | contextSurroundingFunctionParameters | () |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:282:16:282:19 | /</g | enclosingFunctionBody | <a noise onclick="javascript:document.foo.bar(' s replace /[<>"]/g  '); return false;"> =" s replace /[<>]/g  replace /[^\\w ]+/g  " =" encodeURIComponent s replace /[<>]/g  " arr s val trim replace /^,\|,$/g  replace /^;\|;$/g  replace /<\|>/g  =" arr join   " arr2 s val trim replace /^,\|,$/g  replace /^;\|;$/g  replace /<\|>/g  arr2 arr2 replace /"/g  =" arr2 join   " x x x replace /&/g &amp; x x replace /</g &lt; replace />/g &gt; onclick=" x " x x replace /"/g &quot; onclick=" x " y escapeAmpersand y y replace /&/g &amp; y y replace /</g &lt; replace />/g &gt; onclick=" y " escapeQuotes y y replace /"/g &quot; onclick=" y " |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:282:16:282:19 | /</g | enclosingFunctionName | moreIncompleteHtmlAttributeSanitization |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:282:16:282:19 | /</g | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:282:16:282:19 | /</g | receiverName | x |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:282:22:282:27 | '&lt;' | CalleeFlexibleAccessPath | x.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:282:22:282:27 | '&lt;' | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:282:22:282:27 | '&lt;' | calleeImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:282:22:282:27 | '&lt;' | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:282:22:282:27 | '&lt;' | contextSurroundingFunctionParameters | () |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:282:22:282:27 | '&lt;' | enclosingFunctionBody | <a noise onclick="javascript:document.foo.bar(' s replace /[<>"]/g  '); return false;"> =" s replace /[<>]/g  replace /[^\\w ]+/g  " =" encodeURIComponent s replace /[<>]/g  " arr s val trim replace /^,\|,$/g  replace /^;\|;$/g  replace /<\|>/g  =" arr join   " arr2 s val trim replace /^,\|,$/g  replace /^;\|;$/g  replace /<\|>/g  arr2 arr2 replace /"/g  =" arr2 join   " x x x replace /&/g &amp; x x replace /</g &lt; replace />/g &gt; onclick=" x " x x replace /"/g &quot; onclick=" x " y escapeAmpersand y y replace /&/g &amp; y y replace /</g &lt; replace />/g &gt; onclick=" y " escapeQuotes y y replace /"/g &quot; onclick=" y " |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:282:22:282:27 | '&lt;' | enclosingFunctionName | moreIncompleteHtmlAttributeSanitization |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:282:22:282:27 | '&lt;' | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:282:22:282:27 | '&lt;' | receiverName | x |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:282:38:282:41 | />/g | CalleeFlexibleAccessPath | x.replace().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:282:38:282:41 | />/g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:282:38:282:41 | />/g | calleeImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:282:38:282:41 | />/g | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:282:38:282:41 | />/g | contextSurroundingFunctionParameters | () |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:282:38:282:41 | />/g | enclosingFunctionBody | <a noise onclick="javascript:document.foo.bar(' s replace /[<>"]/g  '); return false;"> =" s replace /[<>]/g  replace /[^\\w ]+/g  " =" encodeURIComponent s replace /[<>]/g  " arr s val trim replace /^,\|,$/g  replace /^;\|;$/g  replace /<\|>/g  =" arr join   " arr2 s val trim replace /^,\|,$/g  replace /^;\|;$/g  replace /<\|>/g  arr2 arr2 replace /"/g  =" arr2 join   " x x x replace /&/g &amp; x x replace /</g &lt; replace />/g &gt; onclick=" x " x x replace /"/g &quot; onclick=" x " y escapeAmpersand y y replace /&/g &amp; y y replace /</g &lt; replace />/g &gt; onclick=" y " escapeQuotes y y replace /"/g &quot; onclick=" y " |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:282:38:282:41 | />/g | enclosingFunctionName | moreIncompleteHtmlAttributeSanitization |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:282:38:282:41 | />/g | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:282:44:282:49 | '&gt;' | CalleeFlexibleAccessPath | x.replace().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:282:44:282:49 | '&gt;' | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:282:44:282:49 | '&gt;' | calleeImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:282:44:282:49 | '&gt;' | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:282:44:282:49 | '&gt;' | contextSurroundingFunctionParameters | () |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:282:44:282:49 | '&gt;' | enclosingFunctionBody | <a noise onclick="javascript:document.foo.bar(' s replace /[<>"]/g  '); return false;"> =" s replace /[<>]/g  replace /[^\\w ]+/g  " =" encodeURIComponent s replace /[<>]/g  " arr s val trim replace /^,\|,$/g  replace /^;\|;$/g  replace /<\|>/g  =" arr join   " arr2 s val trim replace /^,\|,$/g  replace /^;\|;$/g  replace /<\|>/g  arr2 arr2 replace /"/g  =" arr2 join   " x x x replace /&/g &amp; x x replace /</g &lt; replace />/g &gt; onclick=" x " x x replace /"/g &quot; onclick=" x " y escapeAmpersand y y replace /&/g &amp; y y replace /</g &lt; replace />/g &gt; onclick=" y " escapeQuotes y y replace /"/g &quot; onclick=" y " |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:282:44:282:49 | '&gt;' | enclosingFunctionName | moreIncompleteHtmlAttributeSanitization |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:282:44:282:49 | '&gt;' | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:284:16:284:19 | /"/g | CalleeFlexibleAccessPath | x.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:284:16:284:19 | /"/g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:284:16:284:19 | /"/g | calleeImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:284:16:284:19 | /"/g | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:284:16:284:19 | /"/g | contextSurroundingFunctionParameters | () |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:284:16:284:19 | /"/g | enclosingFunctionBody | <a noise onclick="javascript:document.foo.bar(' s replace /[<>"]/g  '); return false;"> =" s replace /[<>]/g  replace /[^\\w ]+/g  " =" encodeURIComponent s replace /[<>]/g  " arr s val trim replace /^,\|,$/g  replace /^;\|;$/g  replace /<\|>/g  =" arr join   " arr2 s val trim replace /^,\|,$/g  replace /^;\|;$/g  replace /<\|>/g  arr2 arr2 replace /"/g  =" arr2 join   " x x x replace /&/g &amp; x x replace /</g &lt; replace />/g &gt; onclick=" x " x x replace /"/g &quot; onclick=" x " y escapeAmpersand y y replace /&/g &amp; y y replace /</g &lt; replace />/g &gt; onclick=" y " escapeQuotes y y replace /"/g &quot; onclick=" y " |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:284:16:284:19 | /"/g | enclosingFunctionName | moreIncompleteHtmlAttributeSanitization |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:284:16:284:19 | /"/g | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:284:16:284:19 | /"/g | receiverName | x |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:284:22:284:29 | '&quot;' | CalleeFlexibleAccessPath | x.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:284:22:284:29 | '&quot;' | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:284:22:284:29 | '&quot;' | calleeImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:284:22:284:29 | '&quot;' | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:284:22:284:29 | '&quot;' | contextSurroundingFunctionParameters | () |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:284:22:284:29 | '&quot;' | enclosingFunctionBody | <a noise onclick="javascript:document.foo.bar(' s replace /[<>"]/g  '); return false;"> =" s replace /[<>]/g  replace /[^\\w ]+/g  " =" encodeURIComponent s replace /[<>]/g  " arr s val trim replace /^,\|,$/g  replace /^;\|;$/g  replace /<\|>/g  =" arr join   " arr2 s val trim replace /^,\|,$/g  replace /^;\|;$/g  replace /<\|>/g  arr2 arr2 replace /"/g  =" arr2 join   " x x x replace /&/g &amp; x x replace /</g &lt; replace />/g &gt; onclick=" x " x x replace /"/g &quot; onclick=" x " y escapeAmpersand y y replace /&/g &amp; y y replace /</g &lt; replace />/g &gt; onclick=" y " escapeQuotes y y replace /"/g &quot; onclick=" y " |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:284:22:284:29 | '&quot;' | enclosingFunctionName | moreIncompleteHtmlAttributeSanitization |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:284:22:284:29 | '&quot;' | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:284:22:284:29 | '&quot;' | receiverName | x |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:289:17:289:20 | /&/g | CalleeFlexibleAccessPath | y.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:289:17:289:20 | /&/g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:289:17:289:20 | /&/g | calleeImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:289:17:289:20 | /&/g | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:289:17:289:20 | /&/g | contextSurroundingFunctionParameters | () |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:289:17:289:20 | /&/g | enclosingFunctionBody | <a noise onclick="javascript:document.foo.bar(' s replace /[<>"]/g  '); return false;"> =" s replace /[<>]/g  replace /[^\\w ]+/g  " =" encodeURIComponent s replace /[<>]/g  " arr s val trim replace /^,\|,$/g  replace /^;\|;$/g  replace /<\|>/g  =" arr join   " arr2 s val trim replace /^,\|,$/g  replace /^;\|;$/g  replace /<\|>/g  arr2 arr2 replace /"/g  =" arr2 join   " x x x replace /&/g &amp; x x replace /</g &lt; replace />/g &gt; onclick=" x " x x replace /"/g &quot; onclick=" x " y escapeAmpersand y y replace /&/g &amp; y y replace /</g &lt; replace />/g &gt; onclick=" y " escapeQuotes y y replace /"/g &quot; onclick=" y " |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:289:17:289:20 | /&/g | enclosingFunctionName | moreIncompleteHtmlAttributeSanitization |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:289:17:289:20 | /&/g | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:289:17:289:20 | /&/g | receiverName | y |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:289:23:289:29 | '&amp;' | CalleeFlexibleAccessPath | y.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:289:23:289:29 | '&amp;' | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:289:23:289:29 | '&amp;' | calleeImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:289:23:289:29 | '&amp;' | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:289:23:289:29 | '&amp;' | contextSurroundingFunctionParameters | () |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:289:23:289:29 | '&amp;' | enclosingFunctionBody | <a noise onclick="javascript:document.foo.bar(' s replace /[<>"]/g  '); return false;"> =" s replace /[<>]/g  replace /[^\\w ]+/g  " =" encodeURIComponent s replace /[<>]/g  " arr s val trim replace /^,\|,$/g  replace /^;\|;$/g  replace /<\|>/g  =" arr join   " arr2 s val trim replace /^,\|,$/g  replace /^;\|;$/g  replace /<\|>/g  arr2 arr2 replace /"/g  =" arr2 join   " x x x replace /&/g &amp; x x replace /</g &lt; replace />/g &gt; onclick=" x " x x replace /"/g &quot; onclick=" x " y escapeAmpersand y y replace /&/g &amp; y y replace /</g &lt; replace />/g &gt; onclick=" y " escapeQuotes y y replace /"/g &quot; onclick=" y " |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:289:23:289:29 | '&amp;' | enclosingFunctionName | moreIncompleteHtmlAttributeSanitization |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:289:23:289:29 | '&amp;' | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:289:23:289:29 | '&amp;' | receiverName | y |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:291:16:291:19 | /</g | CalleeFlexibleAccessPath | y.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:291:16:291:19 | /</g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:291:16:291:19 | /</g | calleeImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:291:16:291:19 | /</g | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:291:16:291:19 | /</g | contextSurroundingFunctionParameters | () |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:291:16:291:19 | /</g | enclosingFunctionBody | <a noise onclick="javascript:document.foo.bar(' s replace /[<>"]/g  '); return false;"> =" s replace /[<>]/g  replace /[^\\w ]+/g  " =" encodeURIComponent s replace /[<>]/g  " arr s val trim replace /^,\|,$/g  replace /^;\|;$/g  replace /<\|>/g  =" arr join   " arr2 s val trim replace /^,\|,$/g  replace /^;\|;$/g  replace /<\|>/g  arr2 arr2 replace /"/g  =" arr2 join   " x x x replace /&/g &amp; x x replace /</g &lt; replace />/g &gt; onclick=" x " x x replace /"/g &quot; onclick=" x " y escapeAmpersand y y replace /&/g &amp; y y replace /</g &lt; replace />/g &gt; onclick=" y " escapeQuotes y y replace /"/g &quot; onclick=" y " |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:291:16:291:19 | /</g | enclosingFunctionName | moreIncompleteHtmlAttributeSanitization |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:291:16:291:19 | /</g | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:291:16:291:19 | /</g | receiverName | y |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:291:22:291:27 | '&lt;' | CalleeFlexibleAccessPath | y.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:291:22:291:27 | '&lt;' | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:291:22:291:27 | '&lt;' | calleeImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:291:22:291:27 | '&lt;' | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:291:22:291:27 | '&lt;' | contextSurroundingFunctionParameters | () |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:291:22:291:27 | '&lt;' | enclosingFunctionBody | <a noise onclick="javascript:document.foo.bar(' s replace /[<>"]/g  '); return false;"> =" s replace /[<>]/g  replace /[^\\w ]+/g  " =" encodeURIComponent s replace /[<>]/g  " arr s val trim replace /^,\|,$/g  replace /^;\|;$/g  replace /<\|>/g  =" arr join   " arr2 s val trim replace /^,\|,$/g  replace /^;\|;$/g  replace /<\|>/g  arr2 arr2 replace /"/g  =" arr2 join   " x x x replace /&/g &amp; x x replace /</g &lt; replace />/g &gt; onclick=" x " x x replace /"/g &quot; onclick=" x " y escapeAmpersand y y replace /&/g &amp; y y replace /</g &lt; replace />/g &gt; onclick=" y " escapeQuotes y y replace /"/g &quot; onclick=" y " |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:291:22:291:27 | '&lt;' | enclosingFunctionName | moreIncompleteHtmlAttributeSanitization |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:291:22:291:27 | '&lt;' | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:291:22:291:27 | '&lt;' | receiverName | y |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:291:38:291:41 | />/g | CalleeFlexibleAccessPath | y.replace().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:291:38:291:41 | />/g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:291:38:291:41 | />/g | calleeImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:291:38:291:41 | />/g | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:291:38:291:41 | />/g | contextSurroundingFunctionParameters | () |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:291:38:291:41 | />/g | enclosingFunctionBody | <a noise onclick="javascript:document.foo.bar(' s replace /[<>"]/g  '); return false;"> =" s replace /[<>]/g  replace /[^\\w ]+/g  " =" encodeURIComponent s replace /[<>]/g  " arr s val trim replace /^,\|,$/g  replace /^;\|;$/g  replace /<\|>/g  =" arr join   " arr2 s val trim replace /^,\|,$/g  replace /^;\|;$/g  replace /<\|>/g  arr2 arr2 replace /"/g  =" arr2 join   " x x x replace /&/g &amp; x x replace /</g &lt; replace />/g &gt; onclick=" x " x x replace /"/g &quot; onclick=" x " y escapeAmpersand y y replace /&/g &amp; y y replace /</g &lt; replace />/g &gt; onclick=" y " escapeQuotes y y replace /"/g &quot; onclick=" y " |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:291:38:291:41 | />/g | enclosingFunctionName | moreIncompleteHtmlAttributeSanitization |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:291:38:291:41 | />/g | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:291:44:291:49 | '&gt;' | CalleeFlexibleAccessPath | y.replace().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:291:44:291:49 | '&gt;' | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:291:44:291:49 | '&gt;' | calleeImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:291:44:291:49 | '&gt;' | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:291:44:291:49 | '&gt;' | contextSurroundingFunctionParameters | () |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:291:44:291:49 | '&gt;' | enclosingFunctionBody | <a noise onclick="javascript:document.foo.bar(' s replace /[<>"]/g  '); return false;"> =" s replace /[<>]/g  replace /[^\\w ]+/g  " =" encodeURIComponent s replace /[<>]/g  " arr s val trim replace /^,\|,$/g  replace /^;\|;$/g  replace /<\|>/g  =" arr join   " arr2 s val trim replace /^,\|,$/g  replace /^;\|;$/g  replace /<\|>/g  arr2 arr2 replace /"/g  =" arr2 join   " x x x replace /&/g &amp; x x replace /</g &lt; replace />/g &gt; onclick=" x " x x replace /"/g &quot; onclick=" x " y escapeAmpersand y y replace /&/g &amp; y y replace /</g &lt; replace />/g &gt; onclick=" y " escapeQuotes y y replace /"/g &quot; onclick=" y " |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:291:44:291:49 | '&gt;' | enclosingFunctionName | moreIncompleteHtmlAttributeSanitization |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:291:44:291:49 | '&gt;' | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:294:17:294:20 | /"/g | CalleeFlexibleAccessPath | y.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:294:17:294:20 | /"/g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:294:17:294:20 | /"/g | calleeImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:294:17:294:20 | /"/g | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:294:17:294:20 | /"/g | contextSurroundingFunctionParameters | () |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:294:17:294:20 | /"/g | enclosingFunctionBody | <a noise onclick="javascript:document.foo.bar(' s replace /[<>"]/g  '); return false;"> =" s replace /[<>]/g  replace /[^\\w ]+/g  " =" encodeURIComponent s replace /[<>]/g  " arr s val trim replace /^,\|,$/g  replace /^;\|;$/g  replace /<\|>/g  =" arr join   " arr2 s val trim replace /^,\|,$/g  replace /^;\|;$/g  replace /<\|>/g  arr2 arr2 replace /"/g  =" arr2 join   " x x x replace /&/g &amp; x x replace /</g &lt; replace />/g &gt; onclick=" x " x x replace /"/g &quot; onclick=" x " y escapeAmpersand y y replace /&/g &amp; y y replace /</g &lt; replace />/g &gt; onclick=" y " escapeQuotes y y replace /"/g &quot; onclick=" y " |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:294:17:294:20 | /"/g | enclosingFunctionName | moreIncompleteHtmlAttributeSanitization |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:294:17:294:20 | /"/g | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:294:17:294:20 | /"/g | receiverName | y |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:294:23:294:30 | '&quot;' | CalleeFlexibleAccessPath | y.replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:294:23:294:30 | '&quot;' | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:294:23:294:30 | '&quot;' | calleeImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:294:23:294:30 | '&quot;' | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:294:23:294:30 | '&quot;' | contextSurroundingFunctionParameters | () |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:294:23:294:30 | '&quot;' | enclosingFunctionBody | <a noise onclick="javascript:document.foo.bar(' s replace /[<>"]/g  '); return false;"> =" s replace /[<>]/g  replace /[^\\w ]+/g  " =" encodeURIComponent s replace /[<>]/g  " arr s val trim replace /^,\|,$/g  replace /^;\|;$/g  replace /<\|>/g  =" arr join   " arr2 s val trim replace /^,\|,$/g  replace /^;\|;$/g  replace /<\|>/g  arr2 arr2 replace /"/g  =" arr2 join   " x x x replace /&/g &amp; x x replace /</g &lt; replace />/g &gt; onclick=" x " x x replace /"/g &quot; onclick=" x " y escapeAmpersand y y replace /&/g &amp; y y replace /</g &lt; replace />/g &gt; onclick=" y " escapeQuotes y y replace /"/g &quot; onclick=" y " |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:294:23:294:30 | '&quot;' | enclosingFunctionName | moreIncompleteHtmlAttributeSanitization |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:294:23:294:30 | '&quot;' | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:294:23:294:30 | '&quot;' | receiverName | y |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:300:22:300:29 | /[&<>]/g | CalleeFlexibleAccessPath | s().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:300:22:300:29 | /[&<>]/g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:300:22:300:29 | /[&<>]/g | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:300:22:300:29 | /[&<>]/g | contextSurroundingFunctionParameters | () |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:300:22:300:29 | /[&<>]/g | enclosingFunctionBody | =' s replace /[&<>]/g  ' =' s replace /[<>]/g  ' =' s replace /[&<>"]/g  ' =' s replace /[<>&]/g  ' =" s replace /[<>&"]/g  " =' s replace /[<>&']/g  ' |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:300:22:300:29 | /[&<>]/g | enclosingFunctionName | incompleteHtmlAttributeSanitization2 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:300:22:300:29 | /[&<>]/g | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:300:31:300:32 | '' | CalleeFlexibleAccessPath | s().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:300:31:300:32 | '' | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:300:31:300:32 | '' | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:300:31:300:32 | '' | contextSurroundingFunctionParameters | () |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:300:31:300:32 | '' | enclosingFunctionBody | =' s replace /[&<>]/g  ' =' s replace /[<>]/g  ' =' s replace /[&<>"]/g  ' =' s replace /[<>&]/g  ' =" s replace /[<>&"]/g  " =' s replace /[<>&']/g  ' |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:300:31:300:32 | '' | enclosingFunctionName | incompleteHtmlAttributeSanitization2 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:300:31:300:32 | '' | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:301:22:301:28 | /[<>]/g | CalleeFlexibleAccessPath | s().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:301:22:301:28 | /[<>]/g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:301:22:301:28 | /[<>]/g | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:301:22:301:28 | /[<>]/g | contextSurroundingFunctionParameters | () |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:301:22:301:28 | /[<>]/g | enclosingFunctionBody | =' s replace /[&<>]/g  ' =' s replace /[<>]/g  ' =' s replace /[&<>"]/g  ' =' s replace /[<>&]/g  ' =" s replace /[<>&"]/g  " =' s replace /[<>&']/g  ' |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:301:22:301:28 | /[<>]/g | enclosingFunctionName | incompleteHtmlAttributeSanitization2 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:301:22:301:28 | /[<>]/g | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:301:30:301:31 | '' | CalleeFlexibleAccessPath | s().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:301:30:301:31 | '' | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:301:30:301:31 | '' | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:301:30:301:31 | '' | contextSurroundingFunctionParameters | () |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:301:30:301:31 | '' | enclosingFunctionBody | =' s replace /[&<>]/g  ' =' s replace /[<>]/g  ' =' s replace /[&<>"]/g  ' =' s replace /[<>&]/g  ' =" s replace /[<>&"]/g  " =' s replace /[<>&']/g  ' |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:301:30:301:31 | '' | enclosingFunctionName | incompleteHtmlAttributeSanitization2 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:301:30:301:31 | '' | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:302:22:302:30 | /[&<>"]/g | CalleeFlexibleAccessPath | s().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:302:22:302:30 | /[&<>"]/g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:302:22:302:30 | /[&<>"]/g | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:302:22:302:30 | /[&<>"]/g | contextSurroundingFunctionParameters | () |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:302:22:302:30 | /[&<>"]/g | enclosingFunctionBody | =' s replace /[&<>]/g  ' =' s replace /[<>]/g  ' =' s replace /[&<>"]/g  ' =' s replace /[<>&]/g  ' =" s replace /[<>&"]/g  " =' s replace /[<>&']/g  ' |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:302:22:302:30 | /[&<>"]/g | enclosingFunctionName | incompleteHtmlAttributeSanitization2 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:302:22:302:30 | /[&<>"]/g | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:302:32:302:33 | '' | CalleeFlexibleAccessPath | s().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:302:32:302:33 | '' | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:302:32:302:33 | '' | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:302:32:302:33 | '' | contextSurroundingFunctionParameters | () |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:302:32:302:33 | '' | enclosingFunctionBody | =' s replace /[&<>]/g  ' =' s replace /[<>]/g  ' =' s replace /[&<>"]/g  ' =' s replace /[<>&]/g  ' =" s replace /[<>&"]/g  " =' s replace /[<>&']/g  ' |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:302:32:302:33 | '' | enclosingFunctionName | incompleteHtmlAttributeSanitization2 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:302:32:302:33 | '' | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:303:22:303:29 | /[<>&]/g | CalleeFlexibleAccessPath | s().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:303:22:303:29 | /[<>&]/g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:303:22:303:29 | /[<>&]/g | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:303:22:303:29 | /[<>&]/g | contextSurroundingFunctionParameters | () |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:303:22:303:29 | /[<>&]/g | enclosingFunctionBody | =' s replace /[&<>]/g  ' =' s replace /[<>]/g  ' =' s replace /[&<>"]/g  ' =' s replace /[<>&]/g  ' =" s replace /[<>&"]/g  " =' s replace /[<>&']/g  ' |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:303:22:303:29 | /[<>&]/g | enclosingFunctionName | incompleteHtmlAttributeSanitization2 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:303:22:303:29 | /[<>&]/g | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:303:32:303:33 | '' | CalleeFlexibleAccessPath | s().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:303:32:303:33 | '' | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:303:32:303:33 | '' | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:303:32:303:33 | '' | contextSurroundingFunctionParameters | () |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:303:32:303:33 | '' | enclosingFunctionBody | =' s replace /[&<>]/g  ' =' s replace /[<>]/g  ' =' s replace /[&<>"]/g  ' =' s replace /[<>&]/g  ' =" s replace /[<>&"]/g  " =' s replace /[<>&']/g  ' |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:303:32:303:33 | '' | enclosingFunctionName | incompleteHtmlAttributeSanitization2 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:303:32:303:33 | '' | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:304:21:304:29 | /[<>&"]/g | CalleeFlexibleAccessPath | s().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:304:21:304:29 | /[<>&"]/g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:304:21:304:29 | /[<>&"]/g | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:304:21:304:29 | /[<>&"]/g | contextSurroundingFunctionParameters | () |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:304:21:304:29 | /[<>&"]/g | enclosingFunctionBody | =' s replace /[&<>]/g  ' =' s replace /[<>]/g  ' =' s replace /[&<>"]/g  ' =' s replace /[<>&]/g  ' =" s replace /[<>&"]/g  " =' s replace /[<>&']/g  ' |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:304:21:304:29 | /[<>&"]/g | enclosingFunctionName | incompleteHtmlAttributeSanitization2 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:304:21:304:29 | /[<>&"]/g | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:304:31:304:32 | '' | CalleeFlexibleAccessPath | s().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:304:31:304:32 | '' | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:304:31:304:32 | '' | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:304:31:304:32 | '' | contextSurroundingFunctionParameters | () |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:304:31:304:32 | '' | enclosingFunctionBody | =' s replace /[&<>]/g  ' =' s replace /[<>]/g  ' =' s replace /[&<>"]/g  ' =' s replace /[<>&]/g  ' =" s replace /[<>&"]/g  " =' s replace /[<>&']/g  ' |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:304:31:304:32 | '' | enclosingFunctionName | incompleteHtmlAttributeSanitization2 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:304:31:304:32 | '' | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:305:22:305:30 | /[<>&']/g | CalleeFlexibleAccessPath | s().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:305:22:305:30 | /[<>&']/g | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:305:22:305:30 | /[<>&']/g | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:305:22:305:30 | /[<>&']/g | contextSurroundingFunctionParameters | () |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:305:22:305:30 | /[<>&']/g | enclosingFunctionBody | =' s replace /[&<>]/g  ' =' s replace /[<>]/g  ' =' s replace /[&<>"]/g  ' =' s replace /[<>&]/g  ' =" s replace /[<>&"]/g  " =' s replace /[<>&']/g  ' |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:305:22:305:30 | /[<>&']/g | enclosingFunctionName | incompleteHtmlAttributeSanitization2 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:305:22:305:30 | /[<>&']/g | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:305:32:305:33 | '' | CalleeFlexibleAccessPath | s().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:305:32:305:33 | '' | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:305:32:305:33 | '' | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:305:32:305:33 | '' | contextSurroundingFunctionParameters | () |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:305:32:305:33 | '' | enclosingFunctionBody | =' s replace /[&<>]/g  ' =' s replace /[<>]/g  ' =' s replace /[&<>"]/g  ' =' s replace /[<>&]/g  ' =" s replace /[<>&"]/g  " =' s replace /[<>&']/g  ' |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:305:32:305:33 | '' | enclosingFunctionName | incompleteHtmlAttributeSanitization2 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:305:32:305:33 | '' | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:309:22:309:31 | /[&<>"]/gm | CalleeFlexibleAccessPath | s().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:309:22:309:31 | /[&<>"]/gm | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:309:22:309:31 | /[&<>"]/gm | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:309:22:309:31 | /[&<>"]/gm | contextSurroundingFunctionParameters | () |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:309:22:309:31 | /[&<>"]/gm | enclosingFunctionBody | =' s replace /[&<>"]/gm str str & &amp; str < &lt; str > &gt; str " &quot; ' =" s replace /[&<>"]/gm str str & &amp; str < &lt; str > &gt; str " &quot; " |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:309:22:309:31 | /[&<>"]/gm | enclosingFunctionName | incompleteComplexSanitizers |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:309:22:309:31 | /[&<>"]/gm | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:309:34:318:2 | functio ... t;";\\n\\t} | CalleeFlexibleAccessPath | s().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:309:34:318:2 | functio ... t;";\\n\\t} | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:309:34:318:2 | functio ... t;";\\n\\t} | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:309:34:318:2 | functio ... t;";\\n\\t} | contextSurroundingFunctionParameters | ()\n(str) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:309:34:318:2 | functio ... t;";\\n\\t} | enclosingFunctionBody | =' s replace /[&<>"]/gm str str & &amp; str < &lt; str > &gt; str " &quot; ' =" s replace /[&<>"]/gm str str & &amp; str < &lt; str > &gt; str " &quot; " |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:309:34:318:2 | functio ... t;";\\n\\t} | enclosingFunctionName | incompleteComplexSanitizers |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:309:34:318:2 | functio ... t;";\\n\\t} | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:320:21:320:30 | /[&<>"]/gm | CalleeFlexibleAccessPath | s().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:320:21:320:30 | /[&<>"]/gm | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:320:21:320:30 | /[&<>"]/gm | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:320:21:320:30 | /[&<>"]/gm | contextSurroundingFunctionParameters | () |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:320:21:320:30 | /[&<>"]/gm | enclosingFunctionBody | =' s replace /[&<>"]/gm str str & &amp; str < &lt; str > &gt; str " &quot; ' =" s replace /[&<>"]/gm str str & &amp; str < &lt; str > &gt; str " &quot; " |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:320:21:320:30 | /[&<>"]/gm | enclosingFunctionName | incompleteComplexSanitizers |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:320:21:320:30 | /[&<>"]/gm | fileImports | child_process express |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:320:33:329:2 | functio ... t;";\\n\\t} | CalleeFlexibleAccessPath | s().replace |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:320:33:329:2 | functio ... t;";\\n\\t} | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:320:33:329:2 | functio ... t;";\\n\\t} | contextFunctionInterfaces | attr_str(a)\nbad1(s)\nbad10(s)\nbad11(s)\nbad12(s)\nbad13(s)\nbad14(s)\nbad15(s)\nbad16(s)\nbad17(s)\nbad18(p)\nbad2(s)\nbad3(s)\nbad4(s)\nbad5(s)\nbad6(s)\nbad7(s)\nbad8(s)\nbad9(s)\nescapeHTML(value)\nflowifyComments(s)\ngood1(s)\ngood10(s)\ngood11(s)\ngood12(s)\ngood2(s)\ngood3(s)\ngood4(s)\ngood5(s)\ngood6(s)\ngood7(s)\ngood8(s)\ngood9(s)\nincompleteComplexSanitizers()\nincompleteHtmlAttributeSanitization()\nincompleteHtmlAttributeSanitization2()\nmoreIncompleteHtmlAttributeSanitization()\nmultiStepSanitization()\nnewlines(s)\ntypicalBadHtmlSanitizers(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:320:33:329:2 | functio ... t;";\\n\\t} | contextSurroundingFunctionParameters | ()\n(str) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:320:33:329:2 | functio ... t;";\\n\\t} | enclosingFunctionBody | =' s replace /[&<>"]/gm str str & &amp; str < &lt; str > &gt; str " &quot; ' =" s replace /[&<>"]/gm str str & &amp; str < &lt; str > &gt; str " &quot; " |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:320:33:329:2 | functio ... t;";\\n\\t} | enclosingFunctionName | incompleteComplexSanitizers |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:320:33:329:2 | functio ... t;";\\n\\t} | fileImports | child_process express |
 | index.js:1:20:1:23 | "fs" | CalleeFlexibleAccessPath | require |
 | index.js:1:20:1:23 | "fs" | InputArgumentIndex | 0 |
 | index.js:1:20:1:23 | "fs" | calleeImports |  |
@@ -20141,6 +29928,10 @@ invalidTokenFeatures
 | autogenerated/Xss/ExceptionXss/exception-xss.js:68:19:68:21 | foo | CalleeFlexibleAccessPath | safe.call |
 | autogenerated/Xss/ExceptionXss/exception-xss.js:68:19:68:21 | foo | InputArgumentIndex | 0 |
 | autogenerated/Xss/ExceptionXss/exception-xss.js:68:19:68:21 | foo | InputArgumentIndex | 1 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:266:45:266:52 | attr_str | CalleeFlexibleAccessPath | ?.map |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:266:45:266:52 | attr_str | CalleeFlexibleAccessPath | ?.map.call |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:266:45:266:52 | attr_str | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:266:45:266:52 | attr_str | InputArgumentIndex | 1 |
 | index.js:44:39:44:57 | '' + x.responseText | CalleeFlexibleAccessPath | o.success |
 | index.js:44:39:44:57 | '' + x.responseText | CalleeFlexibleAccessPath | o.success.call |
 | index.js:44:39:44:57 | '' + x.responseText | InputArgumentIndex | 0 |
diff --git a/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/ExtractEndpointDataInference.expected b/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/ExtractEndpointDataInference.expected
index 5489a3ca9d7..199c59a7691 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/ExtractEndpointDataInference.expected
+++ b/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/ExtractEndpointDataInference.expected
@@ -1,7 +1,13 @@
 | DomBasedXssAtmConfig | autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:14:30:14:30 | v |
 | DomBasedXssAtmConfig | autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:22:33:22:33 | v |
 | DomBasedXssAtmConfig | autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:23:33:23:33 | v |
+| DomBasedXssAtmConfig | autogenerated/NosqlAndSqlInjection/untyped/graphql.js:82:11:91:6 | JSON.st ... \\n    }) |
+| DomBasedXssAtmConfig | autogenerated/NosqlAndSqlInjection/untyped/graphql.js:99:11:111:6 | JSON.st ... \\n    }) |
+| DomBasedXssAtmConfig | autogenerated/NosqlAndSqlInjection/untyped/graphql.js:109:13:109:14 | id |
 | DomBasedXssAtmConfig | autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:26:25:26:29 | query |
+| DomBasedXssAtmConfig | autogenerated/NosqlAndSqlInjection/untyped/ldap.js:32:15:32:59 | `(\|(nam ... ame}))` |
+| DomBasedXssAtmConfig | autogenerated/NosqlAndSqlInjection/untyped/ldap.js:40:15:42:11 | `(\|(nam ...   )}))` |
+| DomBasedXssAtmConfig | autogenerated/NosqlAndSqlInjection/untyped/ldap.js:64:5:64:49 | `(\|(nam ... ame}))` |
 | DomBasedXssAtmConfig | autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:77:22:77:24 | tag |
 | DomBasedXssAtmConfig | autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:85:20:85:22 | tag |
 | DomBasedXssAtmConfig | autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:130:23:130:24 | id |
@@ -9,16 +15,23 @@
 | DomBasedXssAtmConfig | autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:11:22:11:22 | v |
 | DomBasedXssAtmConfig | autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:12:22:12:32 | req.body.id |
 | DomBasedXssAtmConfig | autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:13:22:13:37 | `${req.body.id}` |
+| DomBasedXssAtmConfig | autogenerated/NosqlAndSqlInjection/untyped/mysql.js:10:21:10:26 | [temp] |
+| DomBasedXssAtmConfig | autogenerated/NosqlAndSqlInjection/untyped/mysql.js:10:22:10:25 | temp |
 | DomBasedXssAtmConfig | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:26:13:26:25 | req.params.id |
 | DomBasedXssAtmConfig | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:41:7:41:20 | req.params.foo |
 | DomBasedXssAtmConfig | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:48:13:48:27 | req.params.name |
 | DomBasedXssAtmConfig | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:55:13:55:27 | req.params.name |
-| DomBasedXssAtmConfig | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:63:23:63:27 | query |
 | DomBasedXssAtmConfig | autogenerated/NosqlAndSqlInjection/untyped/redis.js:52:28:52:30 | key |
 | DomBasedXssAtmConfig | autogenerated/NosqlAndSqlInjection/untyped/tst3.js:16:23:16:41 | req.params.category |
+| DomBasedXssAtmConfig | autogenerated/TaintedPath/handlebars.js:29:46:29:60 | req.params.path |
+| DomBasedXssAtmConfig | autogenerated/TaintedPath/handlebars.js:33:42:33:56 | req.params.name |
+| DomBasedXssAtmConfig | autogenerated/TaintedPath/handlebars.js:37:43:37:57 | req.params.name |
+| DomBasedXssAtmConfig | autogenerated/TaintedPath/handlebars.js:43:15:43:29 | req.params.path |
+| DomBasedXssAtmConfig | autogenerated/TaintedPath/handlebars.js:49:17:49:33 | req.params.prefix |
 | DomBasedXssAtmConfig | autogenerated/TaintedPath/normalizedPaths.js:312:19:312:22 | path |
 | DomBasedXssAtmConfig | autogenerated/TaintedPath/normalizedPaths.js:321:19:321:32 | normalizedPath |
 | DomBasedXssAtmConfig | autogenerated/TaintedPath/normalizedPaths.js:328:19:328:32 | normalizedPath |
+| DomBasedXssAtmConfig | autogenerated/TaintedPath/normalizedPaths.js:381:25:381:28 | path |
 | DomBasedXssAtmConfig | autogenerated/Xss/DomBasedXss/classnames.js:7:47:7:69 | classNa ... w.name) |
 | DomBasedXssAtmConfig | autogenerated/Xss/DomBasedXss/classnames.js:8:47:8:70 | classNa ... w.name) |
 | DomBasedXssAtmConfig | autogenerated/Xss/DomBasedXss/classnames.js:9:47:9:70 | classNa ... w.name) |
@@ -26,11 +39,19 @@
 | DomBasedXssAtmConfig | autogenerated/Xss/DomBasedXss/classnames.js:11:47:11:64 | unsafeStyle('foo') |
 | DomBasedXssAtmConfig | autogenerated/Xss/DomBasedXss/classnames.js:13:47:13:68 | safeSty ... w.name) |
 | DomBasedXssAtmConfig | autogenerated/Xss/DomBasedXss/classnames.js:15:47:15:63 | clsx(window.name) |
+| DomBasedXssAtmConfig | autogenerated/Xss/DomBasedXss/classnames.js:17:5:17:79 | documen ... <span>` |
+| DomBasedXssAtmConfig | autogenerated/Xss/DomBasedXss/classnames.js:17:48:17:64 | clsx(window.name) |
+| DomBasedXssAtmConfig | autogenerated/Xss/DomBasedXss/clipboard.ts:8:18:8:51 | clipboa ... /html') |
+| DomBasedXssAtmConfig | autogenerated/Xss/DomBasedXss/clipboard.ts:43:22:43:55 | clipboa ... /html') |
+| DomBasedXssAtmConfig | autogenerated/Xss/DomBasedXss/clipboard.ts:98:22:98:54 | dataTra ... /html') |
 | DomBasedXssAtmConfig | autogenerated/Xss/DomBasedXss/dates.js:15:65:15:69 | taint |
 | DomBasedXssAtmConfig | autogenerated/Xss/DomBasedXss/dates.js:17:49:17:53 | taint |
+| DomBasedXssAtmConfig | autogenerated/Xss/DomBasedXss/dragAndDrop.ts:8:18:8:50 | dataTra ... /html') |
+| DomBasedXssAtmConfig | autogenerated/Xss/DomBasedXss/dragAndDrop.ts:43:22:43:54 | dataTra ... /html') |
 | DomBasedXssAtmConfig | autogenerated/Xss/DomBasedXss/event-handler-receiver.js:2:49:2:61 | location.href |
 | DomBasedXssAtmConfig | autogenerated/Xss/DomBasedXss/jquery.js:7:20:7:26 | tainted |
 | DomBasedXssAtmConfig | autogenerated/Xss/DomBasedXss/jquery.js:10:13:10:31 | location.toString() |
+| DomBasedXssAtmConfig | autogenerated/Xss/DomBasedXss/jquery.js:34:13:34:16 | hash |
 | DomBasedXssAtmConfig | autogenerated/Xss/DomBasedXss/nodemailer.js:10:30:10:47 | req.query.receiver |
 | DomBasedXssAtmConfig | autogenerated/Xss/DomBasedXss/nodemailer.js:12:11:12:69 | `Hi, yo ... sage}.` |
 | DomBasedXssAtmConfig | autogenerated/Xss/DomBasedXss/sanitiser.js:23:29:23:35 | tainted |
@@ -81,6 +102,8 @@
 | DomBasedXssAtmConfig | autogenerated/Xss/ReflectedXss/ReflectedXss.js:99:31:99:38 | req.body |
 | DomBasedXssAtmConfig | autogenerated/Xss/ReflectedXss/ReflectedXss.js:102:68:102:75 | req.body |
 | DomBasedXssAtmConfig | autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:19:45:19:57 | req.params.id |
+| DomBasedXssAtmConfig | autogenerated/Xss/ReflectedXss/live-server.js:6:28:6:34 | tainted |
+| DomBasedXssAtmConfig | autogenerated/Xss/ReflectedXss/live-server.js:12:28:12:34 | tainted |
 | DomBasedXssAtmConfig | autogenerated/Xss/ReflectedXss/partial.js:13:42:13:48 | req.url |
 | DomBasedXssAtmConfig | autogenerated/Xss/ReflectedXss/partial.js:40:42:40:50 | [req.url] |
 | DomBasedXssAtmConfig | autogenerated/Xss/ReflectedXss/partial.js:40:43:40:49 | req.url |
@@ -90,6 +113,8 @@
 | NosqlInjectionAtmConfig | autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:23:27:23:35 | { id: v } |
 | NosqlInjectionAtmConfig | autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:25:23:25:48 | JSON.pa ... y.data) |
 | NosqlInjectionAtmConfig | autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:26:25:26:29 | query |
+| NosqlInjectionAtmConfig | autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:50:23:50:48 | JSON.pa ... y.data) |
+| NosqlInjectionAtmConfig | autogenerated/NosqlAndSqlInjection/untyped/ldap.js:64:5:64:49 | `(\|(nam ... ame}))` |
 | NosqlInjectionAtmConfig | autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:10:17:10:18 | {} |
 | NosqlInjectionAtmConfig | autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:12:17:12:18 | {} |
 | NosqlInjectionAtmConfig | autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:14:17:14:18 | {} |
@@ -111,15 +136,26 @@
 | NosqlInjectionAtmConfig | autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:99:44:99:48 | query |
 | NosqlInjectionAtmConfig | autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:19:19:19:20 | {} |
 | NosqlInjectionAtmConfig | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:6:15:7:55 | "SELECT ...  PRICE" |
-| NosqlInjectionAtmConfig | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:63:23:63:27 | query |
 | NosqlInjectionAtmConfig | autogenerated/NosqlAndSqlInjection/untyped/redis.js:52:28:52:30 | key |
+| NosqlInjectionAtmConfig | autogenerated/TaintedPath/handlebars.js:29:38:29:62 | { path: ... .path } |
+| NosqlInjectionAtmConfig | autogenerated/TaintedPath/handlebars.js:33:34:33:58 | { name: ... .name } |
+| NosqlInjectionAtmConfig | autogenerated/TaintedPath/handlebars.js:37:35:37:59 | { name: ... .name } |
+| NosqlInjectionAtmConfig | autogenerated/TaintedPath/handlebars.js:41:33:44:5 | {\\n      ... )\\n    } |
+| NosqlInjectionAtmConfig | autogenerated/TaintedPath/handlebars.js:48:33:51:5 | {\\n      ... "\\n    } |
 | NosqlInjectionAtmConfig | autogenerated/TaintedPath/normalizedPaths.js:312:19:312:22 | path |
 | NosqlInjectionAtmConfig | autogenerated/TaintedPath/normalizedPaths.js:321:19:321:32 | normalizedPath |
 | NosqlInjectionAtmConfig | autogenerated/TaintedPath/normalizedPaths.js:328:19:328:32 | normalizedPath |
+| NosqlInjectionAtmConfig | autogenerated/TaintedPath/normalizedPaths.js:381:25:381:28 | path |
+| NosqlInjectionAtmConfig | autogenerated/TaintedPath/other-fs-libraries.js:62:37:62:47 | {cwd: path} |
+| NosqlInjectionAtmConfig | autogenerated/TaintedPath/other-fs-libraries.js:63:45:63:55 | {cwd: path} |
 | NosqlInjectionAtmConfig | autogenerated/TaintedPath/pupeteer.js:9:20:9:50 | { path: ...  'a4' } |
 | NosqlInjectionAtmConfig | autogenerated/TaintedPath/pupeteer.js:13:29:13:45 | { path: tainted } |
+| NosqlInjectionAtmConfig | autogenerated/Xss/DomBasedXss/clipboard.ts:19:26:19:28 | div |
+| NosqlInjectionAtmConfig | autogenerated/Xss/DomBasedXss/clipboard.ts:54:30:54:32 | div |
 | NosqlInjectionAtmConfig | autogenerated/Xss/DomBasedXss/dates.js:15:65:15:69 | taint |
 | NosqlInjectionAtmConfig | autogenerated/Xss/DomBasedXss/dates.js:17:49:17:53 | taint |
+| NosqlInjectionAtmConfig | autogenerated/Xss/DomBasedXss/dragAndDrop.ts:19:26:19:28 | div |
+| NosqlInjectionAtmConfig | autogenerated/Xss/DomBasedXss/dragAndDrop.ts:54:30:54:32 | div |
 | NosqlInjectionAtmConfig | autogenerated/Xss/DomBasedXss/nodemailer.js:8:22:14:3 | {\\n    f ...  OK\\n  } |
 | NosqlInjectionAtmConfig | autogenerated/Xss/DomBasedXss/nodemailer.js:10:30:10:47 | req.query.receiver |
 | NosqlInjectionAtmConfig | autogenerated/Xss/DomBasedXss/tst3.js:6:27:6:32 | data.w |
@@ -132,6 +168,8 @@
 | NosqlInjectionAtmConfig | autogenerated/Xss/DomBasedXss/tst.js:199:32:199:75 | {danger ... inted}} |
 | NosqlInjectionAtmConfig | autogenerated/Xss/DomBasedXss/tst.js:200:32:200:75 | {danger ... inted}} |
 | NosqlInjectionAtmConfig | autogenerated/Xss/DomBasedXss/tst.js:361:14:361:19 | target |
+| NosqlInjectionAtmConfig | autogenerated/Xss/DomBasedXss/tst.js:442:25:442:40 | {"html": source} |
+| NosqlInjectionAtmConfig | autogenerated/Xss/DomBasedXss/tst.js:444:35:444:50 | {"html": source} |
 | NosqlInjectionAtmConfig | autogenerated/Xss/ExceptionXss/exception-xss.js:5:11:5:11 | x |
 | NosqlInjectionAtmConfig | autogenerated/Xss/ExceptionXss/exception-xss.js:9:11:9:13 | foo |
 | NosqlInjectionAtmConfig | autogenerated/Xss/ExceptionXss/exception-xss.js:21:11:21:21 | foo + "bar" |
@@ -156,8 +194,14 @@
 | SqlInjectionAtmConfig | autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:14:30:14:30 | v |
 | SqlInjectionAtmConfig | autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:22:33:22:33 | v |
 | SqlInjectionAtmConfig | autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:23:33:23:33 | v |
+| SqlInjectionAtmConfig | autogenerated/NosqlAndSqlInjection/untyped/graphql.js:82:11:91:6 | JSON.st ... \\n    }) |
+| SqlInjectionAtmConfig | autogenerated/NosqlAndSqlInjection/untyped/graphql.js:99:11:111:6 | JSON.st ... \\n    }) |
+| SqlInjectionAtmConfig | autogenerated/NosqlAndSqlInjection/untyped/graphql.js:109:13:109:14 | id |
 | SqlInjectionAtmConfig | autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:25:23:25:48 | JSON.pa ... y.data) |
 | SqlInjectionAtmConfig | autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:26:25:26:29 | query |
+| SqlInjectionAtmConfig | autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:50:23:50:48 | JSON.pa ... y.data) |
+| SqlInjectionAtmConfig | autogenerated/NosqlAndSqlInjection/untyped/ldap.js:32:15:32:59 | `(\|(nam ... ame}))` |
+| SqlInjectionAtmConfig | autogenerated/NosqlAndSqlInjection/untyped/ldap.js:64:5:64:49 | `(\|(nam ... ame}))` |
 | SqlInjectionAtmConfig | autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:77:22:77:24 | tag |
 | SqlInjectionAtmConfig | autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:85:20:85:22 | tag |
 | SqlInjectionAtmConfig | autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:130:23:130:24 | id |
@@ -165,22 +209,29 @@
 | SqlInjectionAtmConfig | autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:11:22:11:22 | v |
 | SqlInjectionAtmConfig | autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:12:22:12:32 | req.body.id |
 | SqlInjectionAtmConfig | autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:13:22:13:37 | `${req.body.id}` |
+| SqlInjectionAtmConfig | autogenerated/NosqlAndSqlInjection/untyped/mysql.js:10:21:10:26 | [temp] |
+| SqlInjectionAtmConfig | autogenerated/NosqlAndSqlInjection/untyped/mysql.js:10:22:10:25 | temp |
 | SqlInjectionAtmConfig | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:6:15:7:34 | "SELECT ... ategory |
 | SqlInjectionAtmConfig | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:6:15:7:55 | "SELECT ...  PRICE" |
 | SqlInjectionAtmConfig | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:26:13:26:25 | req.params.id |
 | SqlInjectionAtmConfig | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:41:7:41:20 | req.params.foo |
 | SqlInjectionAtmConfig | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:48:13:48:27 | req.params.name |
 | SqlInjectionAtmConfig | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:55:13:55:27 | req.params.name |
-| SqlInjectionAtmConfig | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:63:23:63:27 | query |
 | SqlInjectionAtmConfig | autogenerated/NosqlAndSqlInjection/untyped/redis.js:52:28:52:30 | key |
 | SqlInjectionAtmConfig | autogenerated/NosqlAndSqlInjection/untyped/tst3.js:7:16:8:34 | "SELECT ... ategory |
 | SqlInjectionAtmConfig | autogenerated/NosqlAndSqlInjection/untyped/tst3.js:7:16:8:55 | "SELECT ...  PRICE" |
 | SqlInjectionAtmConfig | autogenerated/NosqlAndSqlInjection/untyped/tst3.js:16:23:16:41 | req.params.category |
 | SqlInjectionAtmConfig | autogenerated/NosqlAndSqlInjection/untyped/tst4.js:8:10:8:60 | 'SELECT ... rams.id |
 | SqlInjectionAtmConfig | autogenerated/NosqlAndSqlInjection/untyped/tst.js:10:10:10:58 | 'SELECT ... rams.id |
+| SqlInjectionAtmConfig | autogenerated/TaintedPath/handlebars.js:29:46:29:60 | req.params.path |
+| SqlInjectionAtmConfig | autogenerated/TaintedPath/handlebars.js:33:42:33:56 | req.params.name |
+| SqlInjectionAtmConfig | autogenerated/TaintedPath/handlebars.js:37:43:37:57 | req.params.name |
+| SqlInjectionAtmConfig | autogenerated/TaintedPath/handlebars.js:43:15:43:29 | req.params.path |
+| SqlInjectionAtmConfig | autogenerated/TaintedPath/handlebars.js:49:17:49:33 | req.params.prefix |
 | SqlInjectionAtmConfig | autogenerated/TaintedPath/normalizedPaths.js:312:19:312:22 | path |
 | SqlInjectionAtmConfig | autogenerated/TaintedPath/normalizedPaths.js:321:19:321:32 | normalizedPath |
 | SqlInjectionAtmConfig | autogenerated/TaintedPath/normalizedPaths.js:328:19:328:32 | normalizedPath |
+| SqlInjectionAtmConfig | autogenerated/TaintedPath/normalizedPaths.js:381:25:381:28 | path |
 | SqlInjectionAtmConfig | autogenerated/Xss/DomBasedXss/classnames.js:10:45:10:55 | window.name |
 | SqlInjectionAtmConfig | autogenerated/Xss/DomBasedXss/dates.js:15:65:15:69 | taint |
 | SqlInjectionAtmConfig | autogenerated/Xss/DomBasedXss/dates.js:17:49:17:53 | taint |
@@ -218,7 +269,13 @@
 | TaintedPathAtmConfig | autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:14:30:14:30 | v |
 | TaintedPathAtmConfig | autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:22:33:22:33 | v |
 | TaintedPathAtmConfig | autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:23:33:23:33 | v |
+| TaintedPathAtmConfig | autogenerated/NosqlAndSqlInjection/untyped/graphql.js:82:11:91:6 | JSON.st ... \\n    }) |
+| TaintedPathAtmConfig | autogenerated/NosqlAndSqlInjection/untyped/graphql.js:99:11:111:6 | JSON.st ... \\n    }) |
+| TaintedPathAtmConfig | autogenerated/NosqlAndSqlInjection/untyped/graphql.js:109:13:109:14 | id |
 | TaintedPathAtmConfig | autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:26:25:26:29 | query |
+| TaintedPathAtmConfig | autogenerated/NosqlAndSqlInjection/untyped/ldap.js:32:15:32:59 | `(\|(nam ... ame}))` |
+| TaintedPathAtmConfig | autogenerated/NosqlAndSqlInjection/untyped/ldap.js:40:15:42:11 | `(\|(nam ...   )}))` |
+| TaintedPathAtmConfig | autogenerated/NosqlAndSqlInjection/untyped/ldap.js:64:5:64:49 | `(\|(nam ... ame}))` |
 | TaintedPathAtmConfig | autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:21:25:21:45 | '' + qu ... y.title |
 | TaintedPathAtmConfig | autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:24:25:24:50 | query.b ... bstr(1) |
 | TaintedPathAtmConfig | autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:77:22:77:24 | tag |
@@ -228,17 +285,23 @@
 | TaintedPathAtmConfig | autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:11:22:11:22 | v |
 | TaintedPathAtmConfig | autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:12:22:12:32 | req.body.id |
 | TaintedPathAtmConfig | autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:13:22:13:37 | `${req.body.id}` |
+| TaintedPathAtmConfig | autogenerated/NosqlAndSqlInjection/untyped/mysql.js:10:21:10:26 | [temp] |
+| TaintedPathAtmConfig | autogenerated/NosqlAndSqlInjection/untyped/mysql.js:10:22:10:25 | temp |
 | TaintedPathAtmConfig | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:26:13:26:25 | req.params.id |
 | TaintedPathAtmConfig | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:41:7:41:20 | req.params.foo |
 | TaintedPathAtmConfig | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:48:13:48:27 | req.params.name |
 | TaintedPathAtmConfig | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:55:13:55:27 | req.params.name |
-| TaintedPathAtmConfig | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:63:23:63:27 | query |
 | TaintedPathAtmConfig | autogenerated/NosqlAndSqlInjection/untyped/redis.js:52:28:52:30 | key |
 | TaintedPathAtmConfig | autogenerated/NosqlAndSqlInjection/untyped/tst3.js:16:23:16:41 | req.params.category |
 | TaintedPathAtmConfig | autogenerated/TaintedPath/TaintedPath.js:115:12:115:51 | path.re ... /g, '') |
 | TaintedPathAtmConfig | autogenerated/TaintedPath/TaintedPath.js:116:12:116:36 | path.re ... /g, '') |
 | TaintedPathAtmConfig | autogenerated/TaintedPath/TaintedPath.js:128:11:128:50 | path.re ... /g, '') |
 | TaintedPathAtmConfig | autogenerated/TaintedPath/TaintedPath.js:129:12:129:36 | path.re ... /g, '') |
+| TaintedPathAtmConfig | autogenerated/TaintedPath/handlebars.js:29:46:29:60 | req.params.path |
+| TaintedPathAtmConfig | autogenerated/TaintedPath/handlebars.js:33:42:33:56 | req.params.name |
+| TaintedPathAtmConfig | autogenerated/TaintedPath/handlebars.js:37:43:37:57 | req.params.name |
+| TaintedPathAtmConfig | autogenerated/TaintedPath/handlebars.js:43:15:43:29 | req.params.path |
+| TaintedPathAtmConfig | autogenerated/TaintedPath/handlebars.js:49:17:49:33 | req.params.prefix |
 | TaintedPathAtmConfig | autogenerated/TaintedPath/normalizedPaths.js:21:14:21:49 | pathMod ... y.path) |
 | TaintedPathAtmConfig | autogenerated/TaintedPath/normalizedPaths.js:31:14:31:49 | pathMod ... y.path) |
 | TaintedPathAtmConfig | autogenerated/TaintedPath/normalizedPaths.js:54:14:54:49 | pathMod ... y.path) |
@@ -260,6 +323,8 @@
 | TaintedPathAtmConfig | autogenerated/TaintedPath/normalizedPaths.js:321:19:321:32 | normalizedPath |
 | TaintedPathAtmConfig | autogenerated/TaintedPath/normalizedPaths.js:328:19:328:32 | normalizedPath |
 | TaintedPathAtmConfig | autogenerated/TaintedPath/normalizedPaths.js:339:13:339:46 | pathMod ... y.path) |
+| TaintedPathAtmConfig | autogenerated/TaintedPath/normalizedPaths.js:381:25:381:28 | path |
+| TaintedPathAtmConfig | autogenerated/TaintedPath/normalizedPaths.js:385:14:385:46 | pathMod ... uery.x) |
 | TaintedPathAtmConfig | autogenerated/Xss/DomBasedXss/nodemailer.js:10:30:10:47 | req.query.receiver |
 | TaintedPathAtmConfig | autogenerated/Xss/DomBasedXss/nodemailer.js:12:11:12:69 | `Hi, yo ... sage}.` |
 | TaintedPathAtmConfig | autogenerated/Xss/ExceptionXss/exception-xss.js:117:11:117:23 | req.params.id |
@@ -276,3 +341,5 @@
 | TaintedPathAtmConfig | autogenerated/Xss/ReflectedXss/partial.js:40:42:40:50 | [req.url] |
 | TaintedPathAtmConfig | autogenerated/Xss/ReflectedXss/partial.js:40:43:40:49 | req.url |
 | TaintedPathAtmConfig | autogenerated/Xss/ReflectedXss/partial.js:49:38:49:44 | req.url |
+| XssThroughDomAtmConfig | autogenerated/Xss/XssThroughDom/xss-through-dom.js:109:45:109:55 | this.el.src |
+| XssThroughDomAtmConfig | autogenerated/Xss/XssThroughDom/xss-through-dom.js:122:53:122:70 | ev.target.files[0] |
diff --git a/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/ExtractEndpointDataTraining.expected b/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/ExtractEndpointDataTraining.expected
index 18822ab887b..aaab275ece6 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/ExtractEndpointDataTraining.expected
+++ b/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/ExtractEndpointDataTraining.expected
@@ -1,4 +1,273 @@
 endpoints
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:10:34:20:5 | `\\n      ... }\\n    ` | SqlInjection | hasFlowFromSource | true | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:10:34:20:5 | `\\n      ... }\\n    ` | SqlInjection | isConstantExpression | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:10:34:20:5 | `\\n      ... }\\n    ` | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:10:34:20:5 | `\\n      ... }\\n    ` | SqlInjection | sinkLabel | Sink | string |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:27:30:27:40 | `foo ${id}` | SqlInjection | hasFlowFromSource | true | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:27:30:27:40 | `foo ${id}` | SqlInjection | isConstantExpression | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:27:30:27:40 | `foo ${id}` | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:27:30:27:40 | `foo ${id}` | SqlInjection | sinkLabel | Sink | string |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:30:32:30:42 | `foo ${id}` | SqlInjection | hasFlowFromSource | true | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:30:32:30:42 | `foo ${id}` | SqlInjection | isConstantExpression | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:30:32:30:42 | `foo ${id}` | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:30:32:30:42 | `foo ${id}` | SqlInjection | sinkLabel | Sink | string |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:33:18:33:28 | `foo ${id}` | SqlInjection | hasFlowFromSource | true | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:33:18:33:28 | `foo ${id}` | SqlInjection | isConstantExpression | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:33:18:33:28 | `foo ${id}` | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:33:18:33:28 | `foo ${id}` | SqlInjection | sinkLabel | Sink | string |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:40:51:45:5 | {\\n      ... K\\n    } | NosqlInjection | hasFlowFromSource | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:40:51:45:5 | {\\n      ... K\\n    } | NosqlInjection | isConstantExpression | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:40:51:45:5 | {\\n      ... K\\n    } | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:40:51:45:5 | {\\n      ... K\\n    } | NosqlInjection | notASinkReason | ClientRequest | string |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:40:51:45:5 | {\\n      ... K\\n    } | NosqlInjection | sinkLabel | NotASink | string |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:40:51:45:5 | {\\n      ... K\\n    } | SqlInjection | hasFlowFromSource | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:40:51:45:5 | {\\n      ... K\\n    } | SqlInjection | isConstantExpression | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:40:51:45:5 | {\\n      ... K\\n    } | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:40:51:45:5 | {\\n      ... K\\n    } | SqlInjection | notASinkReason | ClientRequest | string |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:40:51:45:5 | {\\n      ... K\\n    } | SqlInjection | sinkLabel | NotASink | string |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:40:51:45:5 | {\\n      ... K\\n    } | TaintedPath | hasFlowFromSource | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:40:51:45:5 | {\\n      ... K\\n    } | TaintedPath | isConstantExpression | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:40:51:45:5 | {\\n      ... K\\n    } | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:40:51:45:5 | {\\n      ... K\\n    } | TaintedPath | notASinkReason | ClientRequest | string |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:40:51:45:5 | {\\n      ... K\\n    } | TaintedPath | sinkLabel | NotASink | string |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:40:51:45:5 | {\\n      ... K\\n    } | Xss | hasFlowFromSource | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:40:51:45:5 | {\\n      ... K\\n    } | Xss | isConstantExpression | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:40:51:45:5 | {\\n      ... K\\n    } | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:40:51:45:5 | {\\n      ... K\\n    } | Xss | notASinkReason | ClientRequest | string |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:40:51:45:5 | {\\n      ... K\\n    } | Xss | sinkLabel | NotASink | string |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:40:51:45:5 | {\\n      ... K\\n    } | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:40:51:45:5 | {\\n      ... K\\n    } | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:40:51:45:5 | {\\n      ... K\\n    } | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:40:51:45:5 | {\\n      ... K\\n    } | XssThroughDom | notASinkReason | ClientRequest | string |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:40:51:45:5 | {\\n      ... K\\n    } | XssThroughDom | sinkLabel | NotASink | string |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:44:14:44:24 | `foo ${id}` | SqlInjection | hasFlowFromSource | true | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:44:14:44:24 | `foo ${id}` | SqlInjection | isConstantExpression | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:44:14:44:24 | `foo ${id}` | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:44:14:44:24 | `foo ${id}` | SqlInjection | sinkLabel | Sink | string |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:48:35:48:56 | { query ... {id}` } | NosqlInjection | hasFlowFromSource | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:48:35:48:56 | { query ... {id}` } | NosqlInjection | isConstantExpression | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:48:35:48:56 | { query ... {id}` } | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:48:35:48:56 | { query ... {id}` } | NosqlInjection | notASinkReason | ClientRequest | string |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:48:35:48:56 | { query ... {id}` } | NosqlInjection | sinkLabel | NotASink | string |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:48:35:48:56 | { query ... {id}` } | SqlInjection | hasFlowFromSource | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:48:35:48:56 | { query ... {id}` } | SqlInjection | isConstantExpression | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:48:35:48:56 | { query ... {id}` } | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:48:35:48:56 | { query ... {id}` } | SqlInjection | notASinkReason | ClientRequest | string |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:48:35:48:56 | { query ... {id}` } | SqlInjection | sinkLabel | NotASink | string |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:48:35:48:56 | { query ... {id}` } | TaintedPath | hasFlowFromSource | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:48:35:48:56 | { query ... {id}` } | TaintedPath | isConstantExpression | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:48:35:48:56 | { query ... {id}` } | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:48:35:48:56 | { query ... {id}` } | TaintedPath | notASinkReason | ClientRequest | string |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:48:35:48:56 | { query ... {id}` } | TaintedPath | sinkLabel | NotASink | string |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:48:35:48:56 | { query ... {id}` } | Xss | hasFlowFromSource | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:48:35:48:56 | { query ... {id}` } | Xss | isConstantExpression | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:48:35:48:56 | { query ... {id}` } | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:48:35:48:56 | { query ... {id}` } | Xss | notASinkReason | ClientRequest | string |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:48:35:48:56 | { query ... {id}` } | Xss | sinkLabel | NotASink | string |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:48:35:48:56 | { query ... {id}` } | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:48:35:48:56 | { query ... {id}` } | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:48:35:48:56 | { query ... {id}` } | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:48:35:48:56 | { query ... {id}` } | XssThroughDom | notASinkReason | ClientRequest | string |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:48:35:48:56 | { query ... {id}` } | XssThroughDom | sinkLabel | NotASink | string |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:48:44:48:54 | `foo ${id}` | SqlInjection | hasFlowFromSource | true | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:48:44:48:54 | `foo ${id}` | SqlInjection | isConstantExpression | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:48:44:48:54 | `foo ${id}` | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:48:44:48:54 | `foo ${id}` | SqlInjection | sinkLabel | Sink | string |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:56:39:56:49 | `foo ${id}` | SqlInjection | hasFlowFromSource | true | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:56:39:56:49 | `foo ${id}` | SqlInjection | isConstantExpression | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:56:39:56:49 | `foo ${id}` | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:56:39:56:49 | `foo ${id}` | SqlInjection | sinkLabel | Sink | string |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:58:57:58:78 | { query ... {id}` } | NosqlInjection | hasFlowFromSource | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:58:57:58:78 | { query ... {id}` } | NosqlInjection | isConstantExpression | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:58:57:58:78 | { query ... {id}` } | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:58:57:58:78 | { query ... {id}` } | NosqlInjection | notASinkReason | ClientRequest | string |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:58:57:58:78 | { query ... {id}` } | NosqlInjection | sinkLabel | NotASink | string |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:58:57:58:78 | { query ... {id}` } | SqlInjection | hasFlowFromSource | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:58:57:58:78 | { query ... {id}` } | SqlInjection | isConstantExpression | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:58:57:58:78 | { query ... {id}` } | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:58:57:58:78 | { query ... {id}` } | SqlInjection | notASinkReason | ClientRequest | string |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:58:57:58:78 | { query ... {id}` } | SqlInjection | sinkLabel | NotASink | string |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:58:57:58:78 | { query ... {id}` } | TaintedPath | hasFlowFromSource | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:58:57:58:78 | { query ... {id}` } | TaintedPath | isConstantExpression | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:58:57:58:78 | { query ... {id}` } | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:58:57:58:78 | { query ... {id}` } | TaintedPath | notASinkReason | ClientRequest | string |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:58:57:58:78 | { query ... {id}` } | TaintedPath | sinkLabel | NotASink | string |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:58:57:58:78 | { query ... {id}` } | Xss | hasFlowFromSource | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:58:57:58:78 | { query ... {id}` } | Xss | isConstantExpression | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:58:57:58:78 | { query ... {id}` } | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:58:57:58:78 | { query ... {id}` } | Xss | notASinkReason | ClientRequest | string |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:58:57:58:78 | { query ... {id}` } | Xss | sinkLabel | NotASink | string |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:58:57:58:78 | { query ... {id}` } | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:58:57:58:78 | { query ... {id}` } | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:58:57:58:78 | { query ... {id}` } | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:58:57:58:78 | { query ... {id}` } | XssThroughDom | notASinkReason | ClientRequest | string |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:58:57:58:78 | { query ... {id}` } | XssThroughDom | sinkLabel | NotASink | string |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:58:66:58:76 | `foo ${id}` | SqlInjection | hasFlowFromSource | true | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:58:66:58:76 | `foo ${id}` | SqlInjection | isConstantExpression | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:58:66:58:76 | `foo ${id}` | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:58:66:58:76 | `foo ${id}` | SqlInjection | sinkLabel | Sink | string |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:75:46:75:64 | "{ foo" + id + " }" | SqlInjection | hasFlowFromSource | true | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:75:46:75:64 | "{ foo" + id + " }" | SqlInjection | isConstantExpression | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:75:46:75:64 | "{ foo" + id + " }" | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:75:46:75:64 | "{ foo" + id + " }" | SqlInjection | sinkLabel | Sink | string |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:77:50:92:3 | {\\n    m ...  })\\n  } | NosqlInjection | hasFlowFromSource | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:77:50:92:3 | {\\n    m ...  })\\n  } | NosqlInjection | isConstantExpression | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:77:50:92:3 | {\\n    m ...  })\\n  } | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:77:50:92:3 | {\\n    m ...  })\\n  } | NosqlInjection | notASinkReason | ClientRequest | string |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:77:50:92:3 | {\\n    m ...  })\\n  } | NosqlInjection | sinkLabel | NotASink | string |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:77:50:92:3 | {\\n    m ...  })\\n  } | SqlInjection | hasFlowFromSource | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:77:50:92:3 | {\\n    m ...  })\\n  } | SqlInjection | isConstantExpression | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:77:50:92:3 | {\\n    m ...  })\\n  } | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:77:50:92:3 | {\\n    m ...  })\\n  } | SqlInjection | notASinkReason | ClientRequest | string |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:77:50:92:3 | {\\n    m ...  })\\n  } | SqlInjection | sinkLabel | NotASink | string |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:77:50:92:3 | {\\n    m ...  })\\n  } | TaintedPath | hasFlowFromSource | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:77:50:92:3 | {\\n    m ...  })\\n  } | TaintedPath | isConstantExpression | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:77:50:92:3 | {\\n    m ...  })\\n  } | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:77:50:92:3 | {\\n    m ...  })\\n  } | TaintedPath | notASinkReason | ClientRequest | string |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:77:50:92:3 | {\\n    m ...  })\\n  } | TaintedPath | sinkLabel | NotASink | string |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:77:50:92:3 | {\\n    m ...  })\\n  } | Xss | hasFlowFromSource | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:77:50:92:3 | {\\n    m ...  })\\n  } | Xss | isConstantExpression | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:77:50:92:3 | {\\n    m ...  })\\n  } | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:77:50:92:3 | {\\n    m ...  })\\n  } | Xss | notASinkReason | ClientRequest | string |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:77:50:92:3 | {\\n    m ...  })\\n  } | Xss | sinkLabel | NotASink | string |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:77:50:92:3 | {\\n    m ...  })\\n  } | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:77:50:92:3 | {\\n    m ...  })\\n  } | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:77:50:92:3 | {\\n    m ...  })\\n  } | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:77:50:92:3 | {\\n    m ...  })\\n  } | XssThroughDom | notASinkReason | ClientRequest | string |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:77:50:92:3 | {\\n    m ...  })\\n  } | XssThroughDom | sinkLabel | NotASink | string |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:79:14:81:5 | {\\n      ... "\\n    } | NosqlInjection | hasFlowFromSource | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:79:14:81:5 | {\\n      ... "\\n    } | NosqlInjection | isConstantExpression | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:79:14:81:5 | {\\n      ... "\\n    } | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:79:14:81:5 | {\\n      ... "\\n    } | NosqlInjection | notASinkReason | ClientRequest | string |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:79:14:81:5 | {\\n      ... "\\n    } | NosqlInjection | sinkLabel | NotASink | string |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:79:14:81:5 | {\\n      ... "\\n    } | SqlInjection | hasFlowFromSource | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:79:14:81:5 | {\\n      ... "\\n    } | SqlInjection | isConstantExpression | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:79:14:81:5 | {\\n      ... "\\n    } | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:79:14:81:5 | {\\n      ... "\\n    } | SqlInjection | notASinkReason | ClientRequest | string |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:79:14:81:5 | {\\n      ... "\\n    } | SqlInjection | sinkLabel | NotASink | string |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:79:14:81:5 | {\\n      ... "\\n    } | TaintedPath | hasFlowFromSource | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:79:14:81:5 | {\\n      ... "\\n    } | TaintedPath | isConstantExpression | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:79:14:81:5 | {\\n      ... "\\n    } | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:79:14:81:5 | {\\n      ... "\\n    } | TaintedPath | notASinkReason | ClientRequest | string |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:79:14:81:5 | {\\n      ... "\\n    } | TaintedPath | sinkLabel | NotASink | string |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:79:14:81:5 | {\\n      ... "\\n    } | Xss | hasFlowFromSource | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:79:14:81:5 | {\\n      ... "\\n    } | Xss | isConstantExpression | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:79:14:81:5 | {\\n      ... "\\n    } | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:79:14:81:5 | {\\n      ... "\\n    } | Xss | notASinkReason | ClientRequest | string |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:79:14:81:5 | {\\n      ... "\\n    } | Xss | sinkLabel | NotASink | string |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:79:14:81:5 | {\\n      ... "\\n    } | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:79:14:81:5 | {\\n      ... "\\n    } | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:79:14:81:5 | {\\n      ... "\\n    } | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:79:14:81:5 | {\\n      ... "\\n    } | XssThroughDom | notASinkReason | ClientRequest | string |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:79:14:81:5 | {\\n      ... "\\n    } | XssThroughDom | sinkLabel | NotASink | string |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:82:11:91:6 | JSON.st ... \\n    }) | NosqlInjection | hasFlowFromSource | true | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:82:11:91:6 | JSON.st ... \\n    }) | NosqlInjection | isConstantExpression | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:82:11:91:6 | JSON.st ... \\n    }) | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:82:11:91:6 | JSON.st ... \\n    }) | NosqlInjection | notASinkReason | ClientRequest | string |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:82:11:91:6 | JSON.st ... \\n    }) | NosqlInjection | sinkLabel | NotASink | string |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:82:11:91:6 | JSON.st ... \\n    }) | SqlInjection | hasFlowFromSource | true | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:82:11:91:6 | JSON.st ... \\n    }) | SqlInjection | isConstantExpression | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:82:11:91:6 | JSON.st ... \\n    }) | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:82:11:91:6 | JSON.st ... \\n    }) | SqlInjection | notASinkReason | ClientRequest | string |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:82:11:91:6 | JSON.st ... \\n    }) | SqlInjection | sinkLabel | NotASink | string |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:82:11:91:6 | JSON.st ... \\n    }) | TaintedPath | hasFlowFromSource | true | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:82:11:91:6 | JSON.st ... \\n    }) | TaintedPath | isConstantExpression | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:82:11:91:6 | JSON.st ... \\n    }) | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:82:11:91:6 | JSON.st ... \\n    }) | TaintedPath | notASinkReason | ClientRequest | string |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:82:11:91:6 | JSON.st ... \\n    }) | TaintedPath | sinkLabel | NotASink | string |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:82:11:91:6 | JSON.st ... \\n    }) | Xss | hasFlowFromSource | true | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:82:11:91:6 | JSON.st ... \\n    }) | Xss | isConstantExpression | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:82:11:91:6 | JSON.st ... \\n    }) | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:82:11:91:6 | JSON.st ... \\n    }) | Xss | notASinkReason | ClientRequest | string |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:82:11:91:6 | JSON.st ... \\n    }) | Xss | sinkLabel | NotASink | string |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:82:11:91:6 | JSON.st ... \\n    }) | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:82:11:91:6 | JSON.st ... \\n    }) | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:82:11:91:6 | JSON.st ... \\n    }) | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:82:11:91:6 | JSON.st ... \\n    }) | XssThroughDom | notASinkReason | ClientRequest | string |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:82:11:91:6 | JSON.st ... \\n    }) | XssThroughDom | sinkLabel | NotASink | string |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:84:14:90:8 | `{\\n     ...      }` | SqlInjection | hasFlowFromSource | true | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:84:14:90:8 | `{\\n     ...      }` | SqlInjection | isConstantExpression | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:84:14:90:8 | `{\\n     ...      }` | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:84:14:90:8 | `{\\n     ...      }` | SqlInjection | sinkLabel | Sink | string |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:94:50:112:3 | {\\n    m ...  })\\n  } | NosqlInjection | hasFlowFromSource | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:94:50:112:3 | {\\n    m ...  })\\n  } | NosqlInjection | isConstantExpression | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:94:50:112:3 | {\\n    m ...  })\\n  } | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:94:50:112:3 | {\\n    m ...  })\\n  } | NosqlInjection | notASinkReason | ClientRequest | string |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:94:50:112:3 | {\\n    m ...  })\\n  } | NosqlInjection | sinkLabel | NotASink | string |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:94:50:112:3 | {\\n    m ...  })\\n  } | SqlInjection | hasFlowFromSource | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:94:50:112:3 | {\\n    m ...  })\\n  } | SqlInjection | isConstantExpression | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:94:50:112:3 | {\\n    m ...  })\\n  } | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:94:50:112:3 | {\\n    m ...  })\\n  } | SqlInjection | notASinkReason | ClientRequest | string |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:94:50:112:3 | {\\n    m ...  })\\n  } | SqlInjection | sinkLabel | NotASink | string |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:94:50:112:3 | {\\n    m ...  })\\n  } | TaintedPath | hasFlowFromSource | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:94:50:112:3 | {\\n    m ...  })\\n  } | TaintedPath | isConstantExpression | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:94:50:112:3 | {\\n    m ...  })\\n  } | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:94:50:112:3 | {\\n    m ...  })\\n  } | TaintedPath | notASinkReason | ClientRequest | string |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:94:50:112:3 | {\\n    m ...  })\\n  } | TaintedPath | sinkLabel | NotASink | string |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:94:50:112:3 | {\\n    m ...  })\\n  } | Xss | hasFlowFromSource | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:94:50:112:3 | {\\n    m ...  })\\n  } | Xss | isConstantExpression | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:94:50:112:3 | {\\n    m ...  })\\n  } | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:94:50:112:3 | {\\n    m ...  })\\n  } | Xss | notASinkReason | ClientRequest | string |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:94:50:112:3 | {\\n    m ...  })\\n  } | Xss | sinkLabel | NotASink | string |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:94:50:112:3 | {\\n    m ...  })\\n  } | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:94:50:112:3 | {\\n    m ...  })\\n  } | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:94:50:112:3 | {\\n    m ...  })\\n  } | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:94:50:112:3 | {\\n    m ...  })\\n  } | XssThroughDom | notASinkReason | ClientRequest | string |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:94:50:112:3 | {\\n    m ...  })\\n  } | XssThroughDom | sinkLabel | NotASink | string |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:96:14:98:5 | {\\n      ... "\\n    } | NosqlInjection | hasFlowFromSource | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:96:14:98:5 | {\\n      ... "\\n    } | NosqlInjection | isConstantExpression | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:96:14:98:5 | {\\n      ... "\\n    } | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:96:14:98:5 | {\\n      ... "\\n    } | NosqlInjection | notASinkReason | ClientRequest | string |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:96:14:98:5 | {\\n      ... "\\n    } | NosqlInjection | sinkLabel | NotASink | string |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:96:14:98:5 | {\\n      ... "\\n    } | SqlInjection | hasFlowFromSource | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:96:14:98:5 | {\\n      ... "\\n    } | SqlInjection | isConstantExpression | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:96:14:98:5 | {\\n      ... "\\n    } | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:96:14:98:5 | {\\n      ... "\\n    } | SqlInjection | notASinkReason | ClientRequest | string |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:96:14:98:5 | {\\n      ... "\\n    } | SqlInjection | sinkLabel | NotASink | string |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:96:14:98:5 | {\\n      ... "\\n    } | TaintedPath | hasFlowFromSource | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:96:14:98:5 | {\\n      ... "\\n    } | TaintedPath | isConstantExpression | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:96:14:98:5 | {\\n      ... "\\n    } | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:96:14:98:5 | {\\n      ... "\\n    } | TaintedPath | notASinkReason | ClientRequest | string |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:96:14:98:5 | {\\n      ... "\\n    } | TaintedPath | sinkLabel | NotASink | string |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:96:14:98:5 | {\\n      ... "\\n    } | Xss | hasFlowFromSource | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:96:14:98:5 | {\\n      ... "\\n    } | Xss | isConstantExpression | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:96:14:98:5 | {\\n      ... "\\n    } | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:96:14:98:5 | {\\n      ... "\\n    } | Xss | notASinkReason | ClientRequest | string |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:96:14:98:5 | {\\n      ... "\\n    } | Xss | sinkLabel | NotASink | string |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:96:14:98:5 | {\\n      ... "\\n    } | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:96:14:98:5 | {\\n      ... "\\n    } | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:96:14:98:5 | {\\n      ... "\\n    } | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:96:14:98:5 | {\\n      ... "\\n    } | XssThroughDom | notASinkReason | ClientRequest | string |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:96:14:98:5 | {\\n      ... "\\n    } | XssThroughDom | sinkLabel | NotASink | string |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:99:11:111:6 | JSON.st ... \\n    }) | NosqlInjection | hasFlowFromSource | true | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:99:11:111:6 | JSON.st ... \\n    }) | NosqlInjection | isConstantExpression | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:99:11:111:6 | JSON.st ... \\n    }) | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:99:11:111:6 | JSON.st ... \\n    }) | NosqlInjection | notASinkReason | ClientRequest | string |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:99:11:111:6 | JSON.st ... \\n    }) | NosqlInjection | sinkLabel | NotASink | string |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:99:11:111:6 | JSON.st ... \\n    }) | SqlInjection | hasFlowFromSource | true | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:99:11:111:6 | JSON.st ... \\n    }) | SqlInjection | isConstantExpression | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:99:11:111:6 | JSON.st ... \\n    }) | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:99:11:111:6 | JSON.st ... \\n    }) | SqlInjection | notASinkReason | ClientRequest | string |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:99:11:111:6 | JSON.st ... \\n    }) | SqlInjection | sinkLabel | NotASink | string |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:99:11:111:6 | JSON.st ... \\n    }) | TaintedPath | hasFlowFromSource | true | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:99:11:111:6 | JSON.st ... \\n    }) | TaintedPath | isConstantExpression | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:99:11:111:6 | JSON.st ... \\n    }) | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:99:11:111:6 | JSON.st ... \\n    }) | TaintedPath | notASinkReason | ClientRequest | string |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:99:11:111:6 | JSON.st ... \\n    }) | TaintedPath | sinkLabel | NotASink | string |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:99:11:111:6 | JSON.st ... \\n    }) | Xss | hasFlowFromSource | true | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:99:11:111:6 | JSON.st ... \\n    }) | Xss | isConstantExpression | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:99:11:111:6 | JSON.st ... \\n    }) | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:99:11:111:6 | JSON.st ... \\n    }) | Xss | notASinkReason | ClientRequest | string |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:99:11:111:6 | JSON.st ... \\n    }) | Xss | sinkLabel | NotASink | string |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:99:11:111:6 | JSON.st ... \\n    }) | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:99:11:111:6 | JSON.st ... \\n    }) | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:99:11:111:6 | JSON.st ... \\n    }) | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:99:11:111:6 | JSON.st ... \\n    }) | XssThroughDom | notASinkReason | ClientRequest | string |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:99:11:111:6 | JSON.st ... \\n    }) | XssThroughDom | sinkLabel | NotASink | string |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:120:38:120:48 | `foo ${id}` | SqlInjection | hasFlowFromSource | true | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:120:38:120:48 | `foo ${id}` | SqlInjection | isConstantExpression | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:120:38:120:48 | `foo ${id}` | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:120:38:120:48 | `foo ${id}` | SqlInjection | sinkLabel | Sink | string |
 | autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:27:22:27:26 | query | NosqlInjection | hasFlowFromSource | true | boolean |
 | autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:27:22:27:26 | query | NosqlInjection | isConstantExpression | false | boolean |
 | autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:27:22:27:26 | query | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
@@ -15,14 +284,104 @@ endpoints
 | autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:35:18:35:22 | query | NosqlInjection | isConstantExpression | false | boolean |
 | autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:35:18:35:22 | query | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
 | autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:35:18:35:22 | query | NosqlInjection | sinkLabel | Sink | string |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:53:22:53:26 | query | NosqlInjection | hasFlowFromSource | true | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:53:22:53:26 | query | NosqlInjection | isConstantExpression | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:53:22:53:26 | query | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:53:22:53:26 | query | NosqlInjection | sinkLabel | Sink | string |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:55:22:55:26 | query | NosqlInjection | hasFlowFromSource | true | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:55:22:55:26 | query | NosqlInjection | isConstantExpression | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:55:22:55:26 | query | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:55:22:55:26 | query | NosqlInjection | sinkLabel | Sink | string |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:59:22:59:26 | query | NosqlInjection | hasFlowFromSource | true | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:59:22:59:26 | query | NosqlInjection | isConstantExpression | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:59:22:59:26 | query | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:59:22:59:26 | query | NosqlInjection | sinkLabel | Sink | string |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:61:22:61:26 | query | NosqlInjection | hasFlowFromSource | true | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:61:22:61:26 | query | NosqlInjection | isConstantExpression | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:61:22:61:26 | query | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:61:22:61:26 | query | NosqlInjection | sinkLabel | Sink | string |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:28:30:28:34 | opts1 | SqlInjection | hasFlowFromSource | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:28:30:28:34 | opts1 | SqlInjection | isConstantExpression | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:28:30:28:34 | opts1 | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:28:30:28:34 | opts1 | SqlInjection | sinkLabel | Sink | string |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:32:5:32:61 | { filte ... e}))` } | SqlInjection | hasFlowFromSource | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:32:5:32:61 | { filte ... e}))` } | SqlInjection | isConstantExpression | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:32:5:32:61 | { filte ... e}))` } | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:32:5:32:61 | { filte ... e}))` } | SqlInjection | sinkLabel | Sink | string |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:39:5:43:5 | { // OK ... ,\\n    } | SqlInjection | hasFlowFromSource | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:39:5:43:5 | { // OK ... ,\\n    } | SqlInjection | isConstantExpression | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:39:5:43:5 | { // OK ... ,\\n    } | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:39:5:43:5 | { // OK ... ,\\n    } | SqlInjection | sinkLabel | Sink | string |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:61:30:61:42 | { filter: f } | SqlInjection | hasFlowFromSource | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:61:30:61:42 | { filter: f } | SqlInjection | isConstantExpression | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:61:30:61:42 | { filter: f } | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:61:30:61:42 | { filter: f } | SqlInjection | sinkLabel | Sink | string |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:66:30:66:53 | { filte ... ilter } | SqlInjection | hasFlowFromSource | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:66:30:66:53 | { filte ... ilter } | SqlInjection | isConstantExpression | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:66:30:66:53 | { filte ... ilter } | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:66:30:66:53 | { filte ... ilter } | SqlInjection | sinkLabel | Sink | string |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:68:27:68:42 | `cn=${username}` | SqlInjection | hasFlowFromSource | true | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:68:27:68:42 | `cn=${username}` | SqlInjection | isConstantExpression | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:68:27:68:42 | `cn=${username}` | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:68:27:68:42 | `cn=${username}` | SqlInjection | sinkLabel | Sink | string |
 | autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:14:17:14:21 | query | NosqlInjection | hasFlowFromSource | true | boolean |
 | autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:14:17:14:21 | query | NosqlInjection | isConstantExpression | false | boolean |
 | autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:14:17:14:21 | query | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
 | autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:14:17:14:21 | query | NosqlInjection | sinkLabel | Sink | string |
+| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:14:24:14:40 | (err, data) => {} | NosqlInjection | hasFlowFromSource | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:14:24:14:40 | (err, data) => {} | NosqlInjection | isConstantExpression | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:14:24:14:40 | (err, data) => {} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:14:24:14:40 | (err, data) => {} | NosqlInjection | notASinkReason | DatabaseAccess | string |
+| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:14:24:14:40 | (err, data) => {} | NosqlInjection | sinkLabel | NotASink | string |
+| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:14:24:14:40 | (err, data) => {} | SqlInjection | hasFlowFromSource | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:14:24:14:40 | (err, data) => {} | SqlInjection | isConstantExpression | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:14:24:14:40 | (err, data) => {} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:14:24:14:40 | (err, data) => {} | SqlInjection | notASinkReason | DatabaseAccess | string |
+| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:14:24:14:40 | (err, data) => {} | SqlInjection | sinkLabel | NotASink | string |
+| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:14:24:14:40 | (err, data) => {} | TaintedPath | hasFlowFromSource | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:14:24:14:40 | (err, data) => {} | TaintedPath | isConstantExpression | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:14:24:14:40 | (err, data) => {} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:14:24:14:40 | (err, data) => {} | TaintedPath | notASinkReason | DatabaseAccess | string |
+| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:14:24:14:40 | (err, data) => {} | TaintedPath | sinkLabel | NotASink | string |
+| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:14:24:14:40 | (err, data) => {} | Xss | hasFlowFromSource | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:14:24:14:40 | (err, data) => {} | Xss | isConstantExpression | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:14:24:14:40 | (err, data) => {} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:14:24:14:40 | (err, data) => {} | Xss | notASinkReason | DatabaseAccess | string |
+| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:14:24:14:40 | (err, data) => {} | Xss | sinkLabel | NotASink | string |
+| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:14:24:14:40 | (err, data) => {} | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:14:24:14:40 | (err, data) => {} | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:14:24:14:40 | (err, data) => {} | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:14:24:14:40 | (err, data) => {} | XssThroughDom | notASinkReason | DatabaseAccess | string |
+| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:14:24:14:40 | (err, data) => {} | XssThroughDom | sinkLabel | NotASink | string |
 | autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:16:12:16:16 | query | NosqlInjection | hasFlowFromSource | true | boolean |
 | autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:16:12:16:16 | query | NosqlInjection | isConstantExpression | false | boolean |
 | autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:16:12:16:16 | query | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
 | autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:16:12:16:16 | query | NosqlInjection | sinkLabel | Sink | string |
+| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:16:19:16:35 | (err, data) => {} | NosqlInjection | hasFlowFromSource | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:16:19:16:35 | (err, data) => {} | NosqlInjection | isConstantExpression | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:16:19:16:35 | (err, data) => {} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:16:19:16:35 | (err, data) => {} | NosqlInjection | notASinkReason | DatabaseAccess | string |
+| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:16:19:16:35 | (err, data) => {} | NosqlInjection | sinkLabel | NotASink | string |
+| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:16:19:16:35 | (err, data) => {} | SqlInjection | hasFlowFromSource | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:16:19:16:35 | (err, data) => {} | SqlInjection | isConstantExpression | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:16:19:16:35 | (err, data) => {} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:16:19:16:35 | (err, data) => {} | SqlInjection | notASinkReason | DatabaseAccess | string |
+| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:16:19:16:35 | (err, data) => {} | SqlInjection | sinkLabel | NotASink | string |
+| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:16:19:16:35 | (err, data) => {} | TaintedPath | hasFlowFromSource | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:16:19:16:35 | (err, data) => {} | TaintedPath | isConstantExpression | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:16:19:16:35 | (err, data) => {} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:16:19:16:35 | (err, data) => {} | TaintedPath | notASinkReason | DatabaseAccess | string |
+| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:16:19:16:35 | (err, data) => {} | TaintedPath | sinkLabel | NotASink | string |
+| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:16:19:16:35 | (err, data) => {} | Xss | hasFlowFromSource | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:16:19:16:35 | (err, data) => {} | Xss | isConstantExpression | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:16:19:16:35 | (err, data) => {} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:16:19:16:35 | (err, data) => {} | Xss | notASinkReason | DatabaseAccess | string |
+| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:16:19:16:35 | (err, data) => {} | Xss | sinkLabel | NotASink | string |
+| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:16:19:16:35 | (err, data) => {} | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:16:19:16:35 | (err, data) => {} | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:16:19:16:35 | (err, data) => {} | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:16:19:16:35 | (err, data) => {} | XssThroughDom | notASinkReason | DatabaseAccess | string |
+| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:16:19:16:35 | (err, data) => {} | XssThroughDom | sinkLabel | NotASink | string |
 | autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:18:12:18:16 | query | NosqlInjection | hasFlowFromSource | true | boolean |
 | autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:18:12:18:16 | query | NosqlInjection | isConstantExpression | false | boolean |
 | autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:18:12:18:16 | query | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
@@ -871,6 +1230,97 @@ endpoints
 | autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:13:16:13:39 | { id: ` ... .id}` } | NosqlInjection | isConstantExpression | false | boolean |
 | autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:13:16:13:39 | { id: ` ... .id}` } | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
 | autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:13:16:13:39 | { id: ` ... .id}` } | NosqlInjection | sinkLabel | Sink | string |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:8:26:11:9 | {\\n      ...       } | SqlInjection | hasFlowFromSource | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:8:26:11:9 | {\\n      ...       } | SqlInjection | isConstantExpression | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:8:26:11:9 | {\\n      ...       } | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:8:26:11:9 | {\\n      ...       } | SqlInjection | sinkLabel | Sink | string |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:11:12:11:46 | functio ... lds) {} | NosqlInjection | hasFlowFromSource | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:11:12:11:46 | functio ... lds) {} | NosqlInjection | isConstantExpression | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:11:12:11:46 | functio ... lds) {} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:11:12:11:46 | functio ... lds) {} | NosqlInjection | notASinkReason | DatabaseAccess | string |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:11:12:11:46 | functio ... lds) {} | NosqlInjection | sinkLabel | NotASink | string |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:11:12:11:46 | functio ... lds) {} | SqlInjection | hasFlowFromSource | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:11:12:11:46 | functio ... lds) {} | SqlInjection | isConstantExpression | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:11:12:11:46 | functio ... lds) {} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:11:12:11:46 | functio ... lds) {} | SqlInjection | notASinkReason | DatabaseAccess | string |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:11:12:11:46 | functio ... lds) {} | SqlInjection | sinkLabel | NotASink | string |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:11:12:11:46 | functio ... lds) {} | TaintedPath | hasFlowFromSource | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:11:12:11:46 | functio ... lds) {} | TaintedPath | isConstantExpression | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:11:12:11:46 | functio ... lds) {} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:11:12:11:46 | functio ... lds) {} | TaintedPath | notASinkReason | DatabaseAccess | string |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:11:12:11:46 | functio ... lds) {} | TaintedPath | sinkLabel | NotASink | string |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:11:12:11:46 | functio ... lds) {} | Xss | hasFlowFromSource | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:11:12:11:46 | functio ... lds) {} | Xss | isConstantExpression | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:11:12:11:46 | functio ... lds) {} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:11:12:11:46 | functio ... lds) {} | Xss | notASinkReason | DatabaseAccess | string |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:11:12:11:46 | functio ... lds) {} | Xss | sinkLabel | NotASink | string |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:11:12:11:46 | functio ... lds) {} | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:11:12:11:46 | functio ... lds) {} | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:11:12:11:46 | functio ... lds) {} | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:11:12:11:46 | functio ... lds) {} | XssThroughDom | notASinkReason | DatabaseAccess | string |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:11:12:11:46 | functio ... lds) {} | XssThroughDom | sinkLabel | NotASink | string |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:14:26:16:9 | {\\n      ...       } | SqlInjection | hasFlowFromSource | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:14:26:16:9 | {\\n      ...       } | SqlInjection | isConstantExpression | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:14:26:16:9 | {\\n      ...       } | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:14:26:16:9 | {\\n      ...       } | SqlInjection | sinkLabel | Sink | string |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:15:18:15:65 | 'SELECT ...  + temp | SqlInjection | hasFlowFromSource | true | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:15:18:15:65 | 'SELECT ...  + temp | SqlInjection | isConstantExpression | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:15:18:15:65 | 'SELECT ...  + temp | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:15:18:15:65 | 'SELECT ...  + temp | SqlInjection | sinkLabel | Sink | string |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:16:12:16:46 | functio ... lds) {} | NosqlInjection | hasFlowFromSource | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:16:12:16:46 | functio ... lds) {} | NosqlInjection | isConstantExpression | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:16:12:16:46 | functio ... lds) {} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:16:12:16:46 | functio ... lds) {} | NosqlInjection | notASinkReason | DatabaseAccess | string |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:16:12:16:46 | functio ... lds) {} | NosqlInjection | sinkLabel | NotASink | string |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:16:12:16:46 | functio ... lds) {} | SqlInjection | hasFlowFromSource | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:16:12:16:46 | functio ... lds) {} | SqlInjection | isConstantExpression | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:16:12:16:46 | functio ... lds) {} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:16:12:16:46 | functio ... lds) {} | SqlInjection | notASinkReason | DatabaseAccess | string |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:16:12:16:46 | functio ... lds) {} | SqlInjection | sinkLabel | NotASink | string |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:16:12:16:46 | functio ... lds) {} | TaintedPath | hasFlowFromSource | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:16:12:16:46 | functio ... lds) {} | TaintedPath | isConstantExpression | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:16:12:16:46 | functio ... lds) {} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:16:12:16:46 | functio ... lds) {} | TaintedPath | notASinkReason | DatabaseAccess | string |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:16:12:16:46 | functio ... lds) {} | TaintedPath | sinkLabel | NotASink | string |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:16:12:16:46 | functio ... lds) {} | Xss | hasFlowFromSource | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:16:12:16:46 | functio ... lds) {} | Xss | isConstantExpression | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:16:12:16:46 | functio ... lds) {} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:16:12:16:46 | functio ... lds) {} | Xss | notASinkReason | DatabaseAccess | string |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:16:12:16:46 | functio ... lds) {} | Xss | sinkLabel | NotASink | string |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:16:12:16:46 | functio ... lds) {} | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:16:12:16:46 | functio ... lds) {} | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:16:12:16:46 | functio ... lds) {} | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:16:12:16:46 | functio ... lds) {} | XssThroughDom | notASinkReason | DatabaseAccess | string |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:16:12:16:46 | functio ... lds) {} | XssThroughDom | sinkLabel | NotASink | string |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:19:26:19:73 | 'SELECT ...  + temp | SqlInjection | hasFlowFromSource | true | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:19:26:19:73 | 'SELECT ...  + temp | SqlInjection | isConstantExpression | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:19:26:19:73 | 'SELECT ...  + temp | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:19:26:19:73 | 'SELECT ...  + temp | SqlInjection | sinkLabel | Sink | string |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:20:13:20:47 | functio ... lds) {} | NosqlInjection | hasFlowFromSource | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:20:13:20:47 | functio ... lds) {} | NosqlInjection | isConstantExpression | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:20:13:20:47 | functio ... lds) {} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:20:13:20:47 | functio ... lds) {} | NosqlInjection | notASinkReason | DatabaseAccess | string |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:20:13:20:47 | functio ... lds) {} | NosqlInjection | sinkLabel | NotASink | string |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:20:13:20:47 | functio ... lds) {} | SqlInjection | hasFlowFromSource | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:20:13:20:47 | functio ... lds) {} | SqlInjection | isConstantExpression | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:20:13:20:47 | functio ... lds) {} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:20:13:20:47 | functio ... lds) {} | SqlInjection | notASinkReason | DatabaseAccess | string |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:20:13:20:47 | functio ... lds) {} | SqlInjection | sinkLabel | NotASink | string |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:20:13:20:47 | functio ... lds) {} | TaintedPath | hasFlowFromSource | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:20:13:20:47 | functio ... lds) {} | TaintedPath | isConstantExpression | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:20:13:20:47 | functio ... lds) {} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:20:13:20:47 | functio ... lds) {} | TaintedPath | notASinkReason | DatabaseAccess | string |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:20:13:20:47 | functio ... lds) {} | TaintedPath | sinkLabel | NotASink | string |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:20:13:20:47 | functio ... lds) {} | Xss | hasFlowFromSource | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:20:13:20:47 | functio ... lds) {} | Xss | isConstantExpression | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:20:13:20:47 | functio ... lds) {} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:20:13:20:47 | functio ... lds) {} | Xss | notASinkReason | DatabaseAccess | string |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:20:13:20:47 | functio ... lds) {} | Xss | sinkLabel | NotASink | string |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:20:13:20:47 | functio ... lds) {} | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:20:13:20:47 | functio ... lds) {} | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:20:13:20:47 | functio ... lds) {} | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:20:13:20:47 | functio ... lds) {} | XssThroughDom | notASinkReason | DatabaseAccess | string |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:20:13:20:47 | functio ... lds) {} | XssThroughDom | sinkLabel | NotASink | string |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise-types.ts:8:17:8:21 | taint | SqlInjection | hasFlowFromSource | true | boolean |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise-types.ts:8:17:8:21 | taint | SqlInjection | isConstantExpression | false | boolean |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise-types.ts:8:17:8:21 | taint | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
@@ -1012,6 +1462,10 @@ endpoints
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:60:20:60:24 | query | SqlInjection | isConstantExpression | false | boolean |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:60:20:60:24 | query | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:60:20:60:24 | query | SqlInjection | sinkLabel | Sink | string |
+| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:63:23:63:27 | query | SqlInjection | hasFlowFromSource | true | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:63:23:63:27 | query | SqlInjection | isConstantExpression | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:63:23:63:27 | query | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:63:23:63:27 | query | SqlInjection | sinkLabel | Sink | string |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:64:16:64:20 | query | SqlInjection | hasFlowFromSource | true | boolean |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:64:16:64:20 | query | SqlInjection | isConstantExpression | false | boolean |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:64:16:64:20 | query | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
@@ -1649,6 +2103,67 @@ endpoints
 | autogenerated/TaintedPath/TaintedPath.js:195:29:195:84 | pathMod ... +/, '') | TaintedPath | isConstantExpression | false | boolean |
 | autogenerated/TaintedPath/TaintedPath.js:195:29:195:84 | pathMod ... +/, '') | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
 | autogenerated/TaintedPath/TaintedPath.js:195:29:195:84 | pathMod ... +/, '') | TaintedPath | sinkLabel | Sink | string |
+| autogenerated/TaintedPath/TaintedPath.js:203:29:203:49 | qs.pars ... rl).foo | TaintedPath | hasFlowFromSource | true | boolean |
+| autogenerated/TaintedPath/TaintedPath.js:203:29:203:49 | qs.pars ... rl).foo | TaintedPath | isConstantExpression | false | boolean |
+| autogenerated/TaintedPath/TaintedPath.js:203:29:203:49 | qs.pars ... rl).foo | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/TaintedPath/TaintedPath.js:203:29:203:49 | qs.pars ... rl).foo | TaintedPath | sinkLabel | Sink | string |
+| autogenerated/TaintedPath/TaintedPath.js:204:29:204:63 | qs.pars ... l)).foo | TaintedPath | hasFlowFromSource | true | boolean |
+| autogenerated/TaintedPath/TaintedPath.js:204:29:204:63 | qs.pars ... l)).foo | TaintedPath | isConstantExpression | false | boolean |
+| autogenerated/TaintedPath/TaintedPath.js:204:29:204:63 | qs.pars ... l)).foo | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/TaintedPath/TaintedPath.js:204:29:204:63 | qs.pars ... l)).foo | TaintedPath | sinkLabel | Sink | string |
+| autogenerated/TaintedPath/TaintedPath.js:206:29:206:55 | parseqs ... rl).foo | TaintedPath | hasFlowFromSource | true | boolean |
+| autogenerated/TaintedPath/TaintedPath.js:206:29:206:55 | parseqs ... rl).foo | TaintedPath | isConstantExpression | false | boolean |
+| autogenerated/TaintedPath/TaintedPath.js:206:29:206:55 | parseqs ... rl).foo | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/TaintedPath/TaintedPath.js:206:29:206:55 | parseqs ... rl).foo | TaintedPath | sinkLabel | Sink | string |
+| autogenerated/TaintedPath/TaintedPath.js:206:44:206:50 | req.url | NosqlInjection | hasFlowFromSource | true | boolean |
+| autogenerated/TaintedPath/TaintedPath.js:206:44:206:50 | req.url | NosqlInjection | isConstantExpression | false | boolean |
+| autogenerated/TaintedPath/TaintedPath.js:206:44:206:50 | req.url | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/TaintedPath/TaintedPath.js:206:44:206:50 | req.url | NosqlInjection | notASinkReason | BuiltinCallName | string |
+| autogenerated/TaintedPath/TaintedPath.js:206:44:206:50 | req.url | NosqlInjection | sinkLabel | NotASink | string |
+| autogenerated/TaintedPath/TaintedPath.js:206:44:206:50 | req.url | SqlInjection | hasFlowFromSource | true | boolean |
+| autogenerated/TaintedPath/TaintedPath.js:206:44:206:50 | req.url | SqlInjection | isConstantExpression | false | boolean |
+| autogenerated/TaintedPath/TaintedPath.js:206:44:206:50 | req.url | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/TaintedPath/TaintedPath.js:206:44:206:50 | req.url | SqlInjection | notASinkReason | BuiltinCallName | string |
+| autogenerated/TaintedPath/TaintedPath.js:206:44:206:50 | req.url | SqlInjection | sinkLabel | NotASink | string |
+| autogenerated/TaintedPath/TaintedPath.js:206:44:206:50 | req.url | TaintedPath | hasFlowFromSource | true | boolean |
+| autogenerated/TaintedPath/TaintedPath.js:206:44:206:50 | req.url | TaintedPath | isConstantExpression | false | boolean |
+| autogenerated/TaintedPath/TaintedPath.js:206:44:206:50 | req.url | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/TaintedPath/TaintedPath.js:206:44:206:50 | req.url | TaintedPath | notASinkReason | BuiltinCallName | string |
+| autogenerated/TaintedPath/TaintedPath.js:206:44:206:50 | req.url | TaintedPath | sinkLabel | NotASink | string |
+| autogenerated/TaintedPath/TaintedPath.js:206:44:206:50 | req.url | Xss | hasFlowFromSource | true | boolean |
+| autogenerated/TaintedPath/TaintedPath.js:206:44:206:50 | req.url | Xss | isConstantExpression | false | boolean |
+| autogenerated/TaintedPath/TaintedPath.js:206:44:206:50 | req.url | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/TaintedPath/TaintedPath.js:206:44:206:50 | req.url | Xss | notASinkReason | BuiltinCallName | string |
+| autogenerated/TaintedPath/TaintedPath.js:206:44:206:50 | req.url | Xss | sinkLabel | NotASink | string |
+| autogenerated/TaintedPath/TaintedPath.js:206:44:206:50 | req.url | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/TaintedPath/TaintedPath.js:206:44:206:50 | req.url | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/TaintedPath/TaintedPath.js:206:44:206:50 | req.url | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/TaintedPath/TaintedPath.js:206:44:206:50 | req.url | XssThroughDom | notASinkReason | BuiltinCallName | string |
+| autogenerated/TaintedPath/TaintedPath.js:206:44:206:50 | req.url | XssThroughDom | sinkLabel | NotASink | string |
+| autogenerated/TaintedPath/TaintedPath.js:212:31:212:34 | path | TaintedPath | hasFlowFromSource | true | boolean |
+| autogenerated/TaintedPath/TaintedPath.js:212:31:212:34 | path | TaintedPath | isConstantExpression | false | boolean |
+| autogenerated/TaintedPath/TaintedPath.js:212:31:212:34 | path | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/TaintedPath/TaintedPath.js:212:31:212:34 | path | TaintedPath | sinkLabel | Sink | string |
+| autogenerated/TaintedPath/TaintedPath.js:213:45:213:48 | path | TaintedPath | hasFlowFromSource | true | boolean |
+| autogenerated/TaintedPath/TaintedPath.js:213:45:213:48 | path | TaintedPath | isConstantExpression | false | boolean |
+| autogenerated/TaintedPath/TaintedPath.js:213:45:213:48 | path | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/TaintedPath/TaintedPath.js:213:45:213:48 | path | TaintedPath | sinkLabel | Sink | string |
+| autogenerated/TaintedPath/TaintedPath.js:214:35:214:38 | path | TaintedPath | hasFlowFromSource | true | boolean |
+| autogenerated/TaintedPath/TaintedPath.js:214:35:214:38 | path | TaintedPath | isConstantExpression | false | boolean |
+| autogenerated/TaintedPath/TaintedPath.js:214:35:214:38 | path | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/TaintedPath/TaintedPath.js:214:35:214:38 | path | TaintedPath | sinkLabel | Sink | string |
+| autogenerated/TaintedPath/express.js:8:20:8:32 | req.query.bar | TaintedPath | hasFlowFromSource | true | boolean |
+| autogenerated/TaintedPath/express.js:8:20:8:32 | req.query.bar | TaintedPath | isConstantExpression | false | boolean |
+| autogenerated/TaintedPath/express.js:8:20:8:32 | req.query.bar | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/TaintedPath/express.js:8:20:8:32 | req.query.bar | TaintedPath | sinkLabel | Sink | string |
+| autogenerated/TaintedPath/handlebars.js:11:32:11:39 | filePath | TaintedPath | hasFlowFromSource | true | boolean |
+| autogenerated/TaintedPath/handlebars.js:11:32:11:39 | filePath | TaintedPath | isConstantExpression | false | boolean |
+| autogenerated/TaintedPath/handlebars.js:11:32:11:39 | filePath | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/TaintedPath/handlebars.js:11:32:11:39 | filePath | TaintedPath | sinkLabel | Sink | string |
+| autogenerated/TaintedPath/handlebars.js:15:25:15:32 | filePath | TaintedPath | hasFlowFromSource | true | boolean |
+| autogenerated/TaintedPath/handlebars.js:15:25:15:32 | filePath | TaintedPath | isConstantExpression | false | boolean |
+| autogenerated/TaintedPath/handlebars.js:15:25:15:32 | filePath | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/TaintedPath/handlebars.js:15:25:15:32 | filePath | TaintedPath | sinkLabel | Sink | string |
 | autogenerated/TaintedPath/normalizedPaths.js:13:19:13:22 | path | TaintedPath | hasFlowFromSource | true | boolean |
 | autogenerated/TaintedPath/normalizedPaths.js:13:19:13:22 | path | TaintedPath | isConstantExpression | false | boolean |
 | autogenerated/TaintedPath/normalizedPaths.js:13:19:13:22 | path | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
@@ -2263,6 +2778,163 @@ endpoints
 | autogenerated/TaintedPath/normalizedPaths.js:371:32:371:39 | rootPath | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
 | autogenerated/TaintedPath/normalizedPaths.js:371:32:371:39 | rootPath | XssThroughDom | notASinkReason | BuiltinCallName | string |
 | autogenerated/TaintedPath/normalizedPaths.js:371:32:371:39 | rootPath | XssThroughDom | sinkLabel | NotASink | string |
+| autogenerated/TaintedPath/normalizedPaths.js:379:19:379:22 | path | TaintedPath | hasFlowFromSource | true | boolean |
+| autogenerated/TaintedPath/normalizedPaths.js:379:19:379:22 | path | TaintedPath | isConstantExpression | false | boolean |
+| autogenerated/TaintedPath/normalizedPaths.js:379:19:379:22 | path | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/TaintedPath/normalizedPaths.js:379:19:379:22 | path | TaintedPath | sinkLabel | Sink | string |
+| autogenerated/TaintedPath/normalizedPaths.js:381:19:381:29 | slash(path) | TaintedPath | hasFlowFromSource | true | boolean |
+| autogenerated/TaintedPath/normalizedPaths.js:381:19:381:29 | slash(path) | TaintedPath | isConstantExpression | false | boolean |
+| autogenerated/TaintedPath/normalizedPaths.js:381:19:381:29 | slash(path) | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/TaintedPath/normalizedPaths.js:381:19:381:29 | slash(path) | TaintedPath | sinkLabel | Sink | string |
+| autogenerated/TaintedPath/normalizedPaths.js:388:19:388:22 | path | TaintedPath | hasFlowFromSource | true | boolean |
+| autogenerated/TaintedPath/normalizedPaths.js:388:19:388:22 | path | TaintedPath | isConstantExpression | false | boolean |
+| autogenerated/TaintedPath/normalizedPaths.js:388:19:388:22 | path | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/TaintedPath/normalizedPaths.js:388:19:388:22 | path | TaintedPath | sinkLabel | Sink | string |
+| autogenerated/TaintedPath/normalizedPaths.js:389:19:389:22 | /\\./ | NosqlInjection | hasFlowFromSource | false | boolean |
+| autogenerated/TaintedPath/normalizedPaths.js:389:19:389:22 | /\\./ | NosqlInjection | isConstantExpression | false | boolean |
+| autogenerated/TaintedPath/normalizedPaths.js:389:19:389:22 | /\\./ | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/TaintedPath/normalizedPaths.js:389:19:389:22 | /\\./ | NosqlInjection | notASinkReason | StringRegExpTest | string |
+| autogenerated/TaintedPath/normalizedPaths.js:389:19:389:22 | /\\./ | NosqlInjection | sinkLabel | NotASink | string |
+| autogenerated/TaintedPath/normalizedPaths.js:389:19:389:22 | /\\./ | SqlInjection | hasFlowFromSource | false | boolean |
+| autogenerated/TaintedPath/normalizedPaths.js:389:19:389:22 | /\\./ | SqlInjection | isConstantExpression | false | boolean |
+| autogenerated/TaintedPath/normalizedPaths.js:389:19:389:22 | /\\./ | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/TaintedPath/normalizedPaths.js:389:19:389:22 | /\\./ | SqlInjection | notASinkReason | StringRegExpTest | string |
+| autogenerated/TaintedPath/normalizedPaths.js:389:19:389:22 | /\\./ | SqlInjection | sinkLabel | NotASink | string |
+| autogenerated/TaintedPath/normalizedPaths.js:389:19:389:22 | /\\./ | TaintedPath | hasFlowFromSource | false | boolean |
+| autogenerated/TaintedPath/normalizedPaths.js:389:19:389:22 | /\\./ | TaintedPath | isConstantExpression | false | boolean |
+| autogenerated/TaintedPath/normalizedPaths.js:389:19:389:22 | /\\./ | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/TaintedPath/normalizedPaths.js:389:19:389:22 | /\\./ | TaintedPath | notASinkReason | StringRegExpTest | string |
+| autogenerated/TaintedPath/normalizedPaths.js:389:19:389:22 | /\\./ | TaintedPath | sinkLabel | NotASink | string |
+| autogenerated/TaintedPath/normalizedPaths.js:389:19:389:22 | /\\./ | Xss | hasFlowFromSource | false | boolean |
+| autogenerated/TaintedPath/normalizedPaths.js:389:19:389:22 | /\\./ | Xss | isConstantExpression | false | boolean |
+| autogenerated/TaintedPath/normalizedPaths.js:389:19:389:22 | /\\./ | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/TaintedPath/normalizedPaths.js:389:19:389:22 | /\\./ | Xss | notASinkReason | StringRegExpTest | string |
+| autogenerated/TaintedPath/normalizedPaths.js:389:19:389:22 | /\\./ | Xss | sinkLabel | NotASink | string |
+| autogenerated/TaintedPath/normalizedPaths.js:389:19:389:22 | /\\./ | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/TaintedPath/normalizedPaths.js:389:19:389:22 | /\\./ | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/TaintedPath/normalizedPaths.js:389:19:389:22 | /\\./ | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/TaintedPath/normalizedPaths.js:389:19:389:22 | /\\./ | XssThroughDom | notASinkReason | StringRegExpTest | string |
+| autogenerated/TaintedPath/normalizedPaths.js:389:19:389:22 | /\\./ | XssThroughDom | sinkLabel | NotASink | string |
+| autogenerated/TaintedPath/normalizedPaths.js:390:21:390:24 | path | TaintedPath | hasFlowFromSource | true | boolean |
+| autogenerated/TaintedPath/normalizedPaths.js:390:21:390:24 | path | TaintedPath | isConstantExpression | false | boolean |
+| autogenerated/TaintedPath/normalizedPaths.js:390:21:390:24 | path | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/TaintedPath/normalizedPaths.js:390:21:390:24 | path | TaintedPath | sinkLabel | Sink | string |
+| autogenerated/TaintedPath/normalizedPaths.js:392:19:392:24 | /\\.\\./ | NosqlInjection | hasFlowFromSource | false | boolean |
+| autogenerated/TaintedPath/normalizedPaths.js:392:19:392:24 | /\\.\\./ | NosqlInjection | isConstantExpression | false | boolean |
+| autogenerated/TaintedPath/normalizedPaths.js:392:19:392:24 | /\\.\\./ | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/TaintedPath/normalizedPaths.js:392:19:392:24 | /\\.\\./ | NosqlInjection | notASinkReason | StringRegExpTest | string |
+| autogenerated/TaintedPath/normalizedPaths.js:392:19:392:24 | /\\.\\./ | NosqlInjection | sinkLabel | NotASink | string |
+| autogenerated/TaintedPath/normalizedPaths.js:392:19:392:24 | /\\.\\./ | SqlInjection | hasFlowFromSource | false | boolean |
+| autogenerated/TaintedPath/normalizedPaths.js:392:19:392:24 | /\\.\\./ | SqlInjection | isConstantExpression | false | boolean |
+| autogenerated/TaintedPath/normalizedPaths.js:392:19:392:24 | /\\.\\./ | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/TaintedPath/normalizedPaths.js:392:19:392:24 | /\\.\\./ | SqlInjection | notASinkReason | StringRegExpTest | string |
+| autogenerated/TaintedPath/normalizedPaths.js:392:19:392:24 | /\\.\\./ | SqlInjection | sinkLabel | NotASink | string |
+| autogenerated/TaintedPath/normalizedPaths.js:392:19:392:24 | /\\.\\./ | TaintedPath | hasFlowFromSource | false | boolean |
+| autogenerated/TaintedPath/normalizedPaths.js:392:19:392:24 | /\\.\\./ | TaintedPath | isConstantExpression | false | boolean |
+| autogenerated/TaintedPath/normalizedPaths.js:392:19:392:24 | /\\.\\./ | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/TaintedPath/normalizedPaths.js:392:19:392:24 | /\\.\\./ | TaintedPath | notASinkReason | StringRegExpTest | string |
+| autogenerated/TaintedPath/normalizedPaths.js:392:19:392:24 | /\\.\\./ | TaintedPath | sinkLabel | NotASink | string |
+| autogenerated/TaintedPath/normalizedPaths.js:392:19:392:24 | /\\.\\./ | Xss | hasFlowFromSource | false | boolean |
+| autogenerated/TaintedPath/normalizedPaths.js:392:19:392:24 | /\\.\\./ | Xss | isConstantExpression | false | boolean |
+| autogenerated/TaintedPath/normalizedPaths.js:392:19:392:24 | /\\.\\./ | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/TaintedPath/normalizedPaths.js:392:19:392:24 | /\\.\\./ | Xss | notASinkReason | StringRegExpTest | string |
+| autogenerated/TaintedPath/normalizedPaths.js:392:19:392:24 | /\\.\\./ | Xss | sinkLabel | NotASink | string |
+| autogenerated/TaintedPath/normalizedPaths.js:392:19:392:24 | /\\.\\./ | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/TaintedPath/normalizedPaths.js:392:19:392:24 | /\\.\\./ | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/TaintedPath/normalizedPaths.js:392:19:392:24 | /\\.\\./ | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/TaintedPath/normalizedPaths.js:392:19:392:24 | /\\.\\./ | XssThroughDom | notASinkReason | StringRegExpTest | string |
+| autogenerated/TaintedPath/normalizedPaths.js:392:19:392:24 | /\\.\\./ | XssThroughDom | sinkLabel | NotASink | string |
+| autogenerated/TaintedPath/normalizedPaths.js:393:21:393:24 | path | TaintedPath | hasFlowFromSource | true | boolean |
+| autogenerated/TaintedPath/normalizedPaths.js:393:21:393:24 | path | TaintedPath | isConstantExpression | false | boolean |
+| autogenerated/TaintedPath/normalizedPaths.js:393:21:393:24 | path | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/TaintedPath/normalizedPaths.js:393:21:393:24 | path | TaintedPath | sinkLabel | Sink | string |
+| autogenerated/TaintedPath/normalizedPaths.js:395:19:395:26 | /\\.\\.\\// | NosqlInjection | hasFlowFromSource | false | boolean |
+| autogenerated/TaintedPath/normalizedPaths.js:395:19:395:26 | /\\.\\.\\// | NosqlInjection | isConstantExpression | false | boolean |
+| autogenerated/TaintedPath/normalizedPaths.js:395:19:395:26 | /\\.\\.\\// | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/TaintedPath/normalizedPaths.js:395:19:395:26 | /\\.\\.\\// | NosqlInjection | notASinkReason | StringRegExpTest | string |
+| autogenerated/TaintedPath/normalizedPaths.js:395:19:395:26 | /\\.\\.\\// | NosqlInjection | sinkLabel | NotASink | string |
+| autogenerated/TaintedPath/normalizedPaths.js:395:19:395:26 | /\\.\\.\\// | SqlInjection | hasFlowFromSource | false | boolean |
+| autogenerated/TaintedPath/normalizedPaths.js:395:19:395:26 | /\\.\\.\\// | SqlInjection | isConstantExpression | false | boolean |
+| autogenerated/TaintedPath/normalizedPaths.js:395:19:395:26 | /\\.\\.\\// | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/TaintedPath/normalizedPaths.js:395:19:395:26 | /\\.\\.\\// | SqlInjection | notASinkReason | StringRegExpTest | string |
+| autogenerated/TaintedPath/normalizedPaths.js:395:19:395:26 | /\\.\\.\\// | SqlInjection | sinkLabel | NotASink | string |
+| autogenerated/TaintedPath/normalizedPaths.js:395:19:395:26 | /\\.\\.\\// | TaintedPath | hasFlowFromSource | false | boolean |
+| autogenerated/TaintedPath/normalizedPaths.js:395:19:395:26 | /\\.\\.\\// | TaintedPath | isConstantExpression | false | boolean |
+| autogenerated/TaintedPath/normalizedPaths.js:395:19:395:26 | /\\.\\.\\// | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/TaintedPath/normalizedPaths.js:395:19:395:26 | /\\.\\.\\// | TaintedPath | notASinkReason | StringRegExpTest | string |
+| autogenerated/TaintedPath/normalizedPaths.js:395:19:395:26 | /\\.\\.\\// | TaintedPath | sinkLabel | NotASink | string |
+| autogenerated/TaintedPath/normalizedPaths.js:395:19:395:26 | /\\.\\.\\// | Xss | hasFlowFromSource | false | boolean |
+| autogenerated/TaintedPath/normalizedPaths.js:395:19:395:26 | /\\.\\.\\// | Xss | isConstantExpression | false | boolean |
+| autogenerated/TaintedPath/normalizedPaths.js:395:19:395:26 | /\\.\\.\\// | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/TaintedPath/normalizedPaths.js:395:19:395:26 | /\\.\\.\\// | Xss | notASinkReason | StringRegExpTest | string |
+| autogenerated/TaintedPath/normalizedPaths.js:395:19:395:26 | /\\.\\.\\// | Xss | sinkLabel | NotASink | string |
+| autogenerated/TaintedPath/normalizedPaths.js:395:19:395:26 | /\\.\\.\\// | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/TaintedPath/normalizedPaths.js:395:19:395:26 | /\\.\\.\\// | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/TaintedPath/normalizedPaths.js:395:19:395:26 | /\\.\\.\\// | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/TaintedPath/normalizedPaths.js:395:19:395:26 | /\\.\\.\\// | XssThroughDom | notASinkReason | StringRegExpTest | string |
+| autogenerated/TaintedPath/normalizedPaths.js:395:19:395:26 | /\\.\\.\\// | XssThroughDom | sinkLabel | NotASink | string |
+| autogenerated/TaintedPath/normalizedPaths.js:396:21:396:24 | path | TaintedPath | hasFlowFromSource | true | boolean |
+| autogenerated/TaintedPath/normalizedPaths.js:396:21:396:24 | path | TaintedPath | isConstantExpression | false | boolean |
+| autogenerated/TaintedPath/normalizedPaths.js:396:21:396:24 | path | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/TaintedPath/normalizedPaths.js:396:21:396:24 | path | TaintedPath | sinkLabel | Sink | string |
+| autogenerated/TaintedPath/normalizedPaths.js:398:19:398:29 | /\\.\\.\\/foo/ | NosqlInjection | hasFlowFromSource | false | boolean |
+| autogenerated/TaintedPath/normalizedPaths.js:398:19:398:29 | /\\.\\.\\/foo/ | NosqlInjection | isConstantExpression | false | boolean |
+| autogenerated/TaintedPath/normalizedPaths.js:398:19:398:29 | /\\.\\.\\/foo/ | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/TaintedPath/normalizedPaths.js:398:19:398:29 | /\\.\\.\\/foo/ | NosqlInjection | notASinkReason | StringRegExpTest | string |
+| autogenerated/TaintedPath/normalizedPaths.js:398:19:398:29 | /\\.\\.\\/foo/ | NosqlInjection | sinkLabel | NotASink | string |
+| autogenerated/TaintedPath/normalizedPaths.js:398:19:398:29 | /\\.\\.\\/foo/ | SqlInjection | hasFlowFromSource | false | boolean |
+| autogenerated/TaintedPath/normalizedPaths.js:398:19:398:29 | /\\.\\.\\/foo/ | SqlInjection | isConstantExpression | false | boolean |
+| autogenerated/TaintedPath/normalizedPaths.js:398:19:398:29 | /\\.\\.\\/foo/ | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/TaintedPath/normalizedPaths.js:398:19:398:29 | /\\.\\.\\/foo/ | SqlInjection | notASinkReason | StringRegExpTest | string |
+| autogenerated/TaintedPath/normalizedPaths.js:398:19:398:29 | /\\.\\.\\/foo/ | SqlInjection | sinkLabel | NotASink | string |
+| autogenerated/TaintedPath/normalizedPaths.js:398:19:398:29 | /\\.\\.\\/foo/ | TaintedPath | hasFlowFromSource | false | boolean |
+| autogenerated/TaintedPath/normalizedPaths.js:398:19:398:29 | /\\.\\.\\/foo/ | TaintedPath | isConstantExpression | false | boolean |
+| autogenerated/TaintedPath/normalizedPaths.js:398:19:398:29 | /\\.\\.\\/foo/ | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/TaintedPath/normalizedPaths.js:398:19:398:29 | /\\.\\.\\/foo/ | TaintedPath | notASinkReason | StringRegExpTest | string |
+| autogenerated/TaintedPath/normalizedPaths.js:398:19:398:29 | /\\.\\.\\/foo/ | TaintedPath | sinkLabel | NotASink | string |
+| autogenerated/TaintedPath/normalizedPaths.js:398:19:398:29 | /\\.\\.\\/foo/ | Xss | hasFlowFromSource | false | boolean |
+| autogenerated/TaintedPath/normalizedPaths.js:398:19:398:29 | /\\.\\.\\/foo/ | Xss | isConstantExpression | false | boolean |
+| autogenerated/TaintedPath/normalizedPaths.js:398:19:398:29 | /\\.\\.\\/foo/ | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/TaintedPath/normalizedPaths.js:398:19:398:29 | /\\.\\.\\/foo/ | Xss | notASinkReason | StringRegExpTest | string |
+| autogenerated/TaintedPath/normalizedPaths.js:398:19:398:29 | /\\.\\.\\/foo/ | Xss | sinkLabel | NotASink | string |
+| autogenerated/TaintedPath/normalizedPaths.js:398:19:398:29 | /\\.\\.\\/foo/ | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/TaintedPath/normalizedPaths.js:398:19:398:29 | /\\.\\.\\/foo/ | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/TaintedPath/normalizedPaths.js:398:19:398:29 | /\\.\\.\\/foo/ | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/TaintedPath/normalizedPaths.js:398:19:398:29 | /\\.\\.\\/foo/ | XssThroughDom | notASinkReason | StringRegExpTest | string |
+| autogenerated/TaintedPath/normalizedPaths.js:398:19:398:29 | /\\.\\.\\/foo/ | XssThroughDom | sinkLabel | NotASink | string |
+| autogenerated/TaintedPath/normalizedPaths.js:399:21:399:24 | path | TaintedPath | hasFlowFromSource | true | boolean |
+| autogenerated/TaintedPath/normalizedPaths.js:399:21:399:24 | path | TaintedPath | isConstantExpression | false | boolean |
+| autogenerated/TaintedPath/normalizedPaths.js:399:21:399:24 | path | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/TaintedPath/normalizedPaths.js:399:21:399:24 | path | TaintedPath | sinkLabel | Sink | string |
+| autogenerated/TaintedPath/normalizedPaths.js:401:19:401:35 | /(\\.\\.\\/\|\\.\\.\\\\)/ | NosqlInjection | hasFlowFromSource | false | boolean |
+| autogenerated/TaintedPath/normalizedPaths.js:401:19:401:35 | /(\\.\\.\\/\|\\.\\.\\\\)/ | NosqlInjection | isConstantExpression | false | boolean |
+| autogenerated/TaintedPath/normalizedPaths.js:401:19:401:35 | /(\\.\\.\\/\|\\.\\.\\\\)/ | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/TaintedPath/normalizedPaths.js:401:19:401:35 | /(\\.\\.\\/\|\\.\\.\\\\)/ | NosqlInjection | notASinkReason | StringRegExpTest | string |
+| autogenerated/TaintedPath/normalizedPaths.js:401:19:401:35 | /(\\.\\.\\/\|\\.\\.\\\\)/ | NosqlInjection | sinkLabel | NotASink | string |
+| autogenerated/TaintedPath/normalizedPaths.js:401:19:401:35 | /(\\.\\.\\/\|\\.\\.\\\\)/ | SqlInjection | hasFlowFromSource | false | boolean |
+| autogenerated/TaintedPath/normalizedPaths.js:401:19:401:35 | /(\\.\\.\\/\|\\.\\.\\\\)/ | SqlInjection | isConstantExpression | false | boolean |
+| autogenerated/TaintedPath/normalizedPaths.js:401:19:401:35 | /(\\.\\.\\/\|\\.\\.\\\\)/ | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/TaintedPath/normalizedPaths.js:401:19:401:35 | /(\\.\\.\\/\|\\.\\.\\\\)/ | SqlInjection | notASinkReason | StringRegExpTest | string |
+| autogenerated/TaintedPath/normalizedPaths.js:401:19:401:35 | /(\\.\\.\\/\|\\.\\.\\\\)/ | SqlInjection | sinkLabel | NotASink | string |
+| autogenerated/TaintedPath/normalizedPaths.js:401:19:401:35 | /(\\.\\.\\/\|\\.\\.\\\\)/ | TaintedPath | hasFlowFromSource | false | boolean |
+| autogenerated/TaintedPath/normalizedPaths.js:401:19:401:35 | /(\\.\\.\\/\|\\.\\.\\\\)/ | TaintedPath | isConstantExpression | false | boolean |
+| autogenerated/TaintedPath/normalizedPaths.js:401:19:401:35 | /(\\.\\.\\/\|\\.\\.\\\\)/ | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/TaintedPath/normalizedPaths.js:401:19:401:35 | /(\\.\\.\\/\|\\.\\.\\\\)/ | TaintedPath | notASinkReason | StringRegExpTest | string |
+| autogenerated/TaintedPath/normalizedPaths.js:401:19:401:35 | /(\\.\\.\\/\|\\.\\.\\\\)/ | TaintedPath | sinkLabel | NotASink | string |
+| autogenerated/TaintedPath/normalizedPaths.js:401:19:401:35 | /(\\.\\.\\/\|\\.\\.\\\\)/ | Xss | hasFlowFromSource | false | boolean |
+| autogenerated/TaintedPath/normalizedPaths.js:401:19:401:35 | /(\\.\\.\\/\|\\.\\.\\\\)/ | Xss | isConstantExpression | false | boolean |
+| autogenerated/TaintedPath/normalizedPaths.js:401:19:401:35 | /(\\.\\.\\/\|\\.\\.\\\\)/ | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/TaintedPath/normalizedPaths.js:401:19:401:35 | /(\\.\\.\\/\|\\.\\.\\\\)/ | Xss | notASinkReason | StringRegExpTest | string |
+| autogenerated/TaintedPath/normalizedPaths.js:401:19:401:35 | /(\\.\\.\\/\|\\.\\.\\\\)/ | Xss | sinkLabel | NotASink | string |
+| autogenerated/TaintedPath/normalizedPaths.js:401:19:401:35 | /(\\.\\.\\/\|\\.\\.\\\\)/ | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/TaintedPath/normalizedPaths.js:401:19:401:35 | /(\\.\\.\\/\|\\.\\.\\\\)/ | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/TaintedPath/normalizedPaths.js:401:19:401:35 | /(\\.\\.\\/\|\\.\\.\\\\)/ | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/TaintedPath/normalizedPaths.js:401:19:401:35 | /(\\.\\.\\/\|\\.\\.\\\\)/ | XssThroughDom | notASinkReason | StringRegExpTest | string |
+| autogenerated/TaintedPath/normalizedPaths.js:401:19:401:35 | /(\\.\\.\\/\|\\.\\.\\\\)/ | XssThroughDom | sinkLabel | NotASink | string |
+| autogenerated/TaintedPath/normalizedPaths.js:402:21:402:24 | path | TaintedPath | hasFlowFromSource | true | boolean |
+| autogenerated/TaintedPath/normalizedPaths.js:402:21:402:24 | path | TaintedPath | isConstantExpression | false | boolean |
+| autogenerated/TaintedPath/normalizedPaths.js:402:21:402:24 | path | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/TaintedPath/normalizedPaths.js:402:21:402:24 | path | TaintedPath | sinkLabel | Sink | string |
 | autogenerated/TaintedPath/other-fs-libraries.js:11:19:11:22 | path | TaintedPath | hasFlowFromSource | true | boolean |
 | autogenerated/TaintedPath/other-fs-libraries.js:11:19:11:22 | path | TaintedPath | isConstantExpression | false | boolean |
 | autogenerated/TaintedPath/other-fs-libraries.js:11:19:11:22 | path | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
@@ -2319,6 +2991,50 @@ endpoints
 | autogenerated/TaintedPath/other-fs-libraries.js:52:24:52:27 | path | TaintedPath | isConstantExpression | false | boolean |
 | autogenerated/TaintedPath/other-fs-libraries.js:52:24:52:27 | path | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
 | autogenerated/TaintedPath/other-fs-libraries.js:52:24:52:27 | path | TaintedPath | sinkLabel | Sink | string |
+| autogenerated/TaintedPath/other-fs-libraries.js:54:36:54:39 | path | TaintedPath | hasFlowFromSource | true | boolean |
+| autogenerated/TaintedPath/other-fs-libraries.js:54:36:54:39 | path | TaintedPath | isConstantExpression | false | boolean |
+| autogenerated/TaintedPath/other-fs-libraries.js:54:36:54:39 | path | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/TaintedPath/other-fs-libraries.js:54:36:54:39 | path | TaintedPath | sinkLabel | Sink | string |
+| autogenerated/TaintedPath/other-fs-libraries.js:55:36:55:39 | path | TaintedPath | hasFlowFromSource | true | boolean |
+| autogenerated/TaintedPath/other-fs-libraries.js:55:36:55:39 | path | TaintedPath | isConstantExpression | false | boolean |
+| autogenerated/TaintedPath/other-fs-libraries.js:55:36:55:39 | path | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/TaintedPath/other-fs-libraries.js:55:36:55:39 | path | TaintedPath | sinkLabel | Sink | string |
+| autogenerated/TaintedPath/other-fs-libraries.js:57:46:57:49 | path | TaintedPath | hasFlowFromSource | true | boolean |
+| autogenerated/TaintedPath/other-fs-libraries.js:57:46:57:49 | path | TaintedPath | isConstantExpression | false | boolean |
+| autogenerated/TaintedPath/other-fs-libraries.js:57:46:57:49 | path | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/TaintedPath/other-fs-libraries.js:57:46:57:49 | path | TaintedPath | sinkLabel | Sink | string |
+| autogenerated/TaintedPath/other-fs-libraries.js:59:39:59:42 | path | TaintedPath | hasFlowFromSource | true | boolean |
+| autogenerated/TaintedPath/other-fs-libraries.js:59:39:59:42 | path | TaintedPath | isConstantExpression | false | boolean |
+| autogenerated/TaintedPath/other-fs-libraries.js:59:39:59:42 | path | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/TaintedPath/other-fs-libraries.js:59:39:59:42 | path | TaintedPath | sinkLabel | Sink | string |
+| autogenerated/TaintedPath/other-fs-libraries.js:62:43:62:46 | path | TaintedPath | hasFlowFromSource | true | boolean |
+| autogenerated/TaintedPath/other-fs-libraries.js:62:43:62:46 | path | TaintedPath | isConstantExpression | false | boolean |
+| autogenerated/TaintedPath/other-fs-libraries.js:62:43:62:46 | path | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/TaintedPath/other-fs-libraries.js:62:43:62:46 | path | TaintedPath | sinkLabel | Sink | string |
+| autogenerated/TaintedPath/other-fs-libraries.js:63:51:63:54 | path | TaintedPath | hasFlowFromSource | true | boolean |
+| autogenerated/TaintedPath/other-fs-libraries.js:63:51:63:54 | path | TaintedPath | isConstantExpression | false | boolean |
+| autogenerated/TaintedPath/other-fs-libraries.js:63:51:63:54 | path | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/TaintedPath/other-fs-libraries.js:63:51:63:54 | path | TaintedPath | sinkLabel | Sink | string |
+| autogenerated/TaintedPath/other-fs-libraries.js:70:19:70:22 | path | TaintedPath | hasFlowFromSource | true | boolean |
+| autogenerated/TaintedPath/other-fs-libraries.js:70:19:70:22 | path | TaintedPath | isConstantExpression | false | boolean |
+| autogenerated/TaintedPath/other-fs-libraries.js:70:19:70:22 | path | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/TaintedPath/other-fs-libraries.js:70:19:70:22 | path | TaintedPath | sinkLabel | Sink | string |
+| autogenerated/TaintedPath/other-fs-libraries.js:71:10:71:13 | path | TaintedPath | hasFlowFromSource | true | boolean |
+| autogenerated/TaintedPath/other-fs-libraries.js:71:10:71:13 | path | TaintedPath | isConstantExpression | false | boolean |
+| autogenerated/TaintedPath/other-fs-libraries.js:71:10:71:13 | path | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/TaintedPath/other-fs-libraries.js:71:10:71:13 | path | TaintedPath | sinkLabel | Sink | string |
+| autogenerated/TaintedPath/other-fs-libraries.js:72:15:72:18 | path | TaintedPath | hasFlowFromSource | true | boolean |
+| autogenerated/TaintedPath/other-fs-libraries.js:72:15:72:18 | path | TaintedPath | isConstantExpression | false | boolean |
+| autogenerated/TaintedPath/other-fs-libraries.js:72:15:72:18 | path | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/TaintedPath/other-fs-libraries.js:72:15:72:18 | path | TaintedPath | sinkLabel | Sink | string |
+| autogenerated/TaintedPath/prettier.js:7:28:7:28 | p | TaintedPath | hasFlowFromSource | true | boolean |
+| autogenerated/TaintedPath/prettier.js:7:28:7:28 | p | TaintedPath | isConstantExpression | false | boolean |
+| autogenerated/TaintedPath/prettier.js:7:28:7:28 | p | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/TaintedPath/prettier.js:7:28:7:28 | p | TaintedPath | sinkLabel | Sink | string |
+| autogenerated/TaintedPath/prettier.js:11:44:11:44 | p | TaintedPath | hasFlowFromSource | true | boolean |
+| autogenerated/TaintedPath/prettier.js:11:44:11:44 | p | TaintedPath | isConstantExpression | false | boolean |
+| autogenerated/TaintedPath/prettier.js:11:44:11:44 | p | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/TaintedPath/prettier.js:11:44:11:44 | p | TaintedPath | sinkLabel | Sink | string |
 | autogenerated/TaintedPath/pupeteer.js:9:28:9:34 | tainted | TaintedPath | hasFlowFromSource | true | boolean |
 | autogenerated/TaintedPath/pupeteer.js:9:28:9:34 | tainted | TaintedPath | isConstantExpression | false | boolean |
 | autogenerated/TaintedPath/pupeteer.js:9:28:9:34 | tainted | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
@@ -2359,6 +3075,39 @@ endpoints
 | autogenerated/TaintedPath/tainted-access-paths.js:31:23:31:30 | obj.sub4 | TaintedPath | isConstantExpression | false | boolean |
 | autogenerated/TaintedPath/tainted-access-paths.js:31:23:31:30 | obj.sub4 | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
 | autogenerated/TaintedPath/tainted-access-paths.js:31:23:31:30 | obj.sub4 | TaintedPath | sinkLabel | Sink | string |
+| autogenerated/TaintedPath/tainted-access-paths.js:40:23:40:26 | path | TaintedPath | hasFlowFromSource | true | boolean |
+| autogenerated/TaintedPath/tainted-access-paths.js:40:23:40:26 | path | TaintedPath | isConstantExpression | false | boolean |
+| autogenerated/TaintedPath/tainted-access-paths.js:40:23:40:26 | path | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/TaintedPath/tainted-access-paths.js:40:23:40:26 | path | TaintedPath | sinkLabel | Sink | string |
+| autogenerated/TaintedPath/tainted-access-paths.js:49:10:49:13 | path | TaintedPath | hasFlowFromSource | true | boolean |
+| autogenerated/TaintedPath/tainted-access-paths.js:49:10:49:13 | path | TaintedPath | isConstantExpression | false | boolean |
+| autogenerated/TaintedPath/tainted-access-paths.js:49:10:49:13 | path | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/TaintedPath/tainted-access-paths.js:49:10:49:13 | path | TaintedPath | sinkLabel | Sink | string |
+| autogenerated/TaintedPath/tainted-access-paths.js:49:38:49:54 | function (err) {} | NosqlInjection | hasFlowFromSource | false | boolean |
+| autogenerated/TaintedPath/tainted-access-paths.js:49:38:49:54 | function (err) {} | NosqlInjection | isConstantExpression | false | boolean |
+| autogenerated/TaintedPath/tainted-access-paths.js:49:38:49:54 | function (err) {} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/TaintedPath/tainted-access-paths.js:49:38:49:54 | function (err) {} | NosqlInjection | notASinkReason | FileSystemAccess | string |
+| autogenerated/TaintedPath/tainted-access-paths.js:49:38:49:54 | function (err) {} | NosqlInjection | sinkLabel | NotASink | string |
+| autogenerated/TaintedPath/tainted-access-paths.js:49:38:49:54 | function (err) {} | SqlInjection | hasFlowFromSource | false | boolean |
+| autogenerated/TaintedPath/tainted-access-paths.js:49:38:49:54 | function (err) {} | SqlInjection | isConstantExpression | false | boolean |
+| autogenerated/TaintedPath/tainted-access-paths.js:49:38:49:54 | function (err) {} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/TaintedPath/tainted-access-paths.js:49:38:49:54 | function (err) {} | SqlInjection | notASinkReason | FileSystemAccess | string |
+| autogenerated/TaintedPath/tainted-access-paths.js:49:38:49:54 | function (err) {} | SqlInjection | sinkLabel | NotASink | string |
+| autogenerated/TaintedPath/tainted-access-paths.js:49:38:49:54 | function (err) {} | TaintedPath | hasFlowFromSource | false | boolean |
+| autogenerated/TaintedPath/tainted-access-paths.js:49:38:49:54 | function (err) {} | TaintedPath | isConstantExpression | false | boolean |
+| autogenerated/TaintedPath/tainted-access-paths.js:49:38:49:54 | function (err) {} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/TaintedPath/tainted-access-paths.js:49:38:49:54 | function (err) {} | TaintedPath | notASinkReason | FileSystemAccess | string |
+| autogenerated/TaintedPath/tainted-access-paths.js:49:38:49:54 | function (err) {} | TaintedPath | sinkLabel | NotASink | string |
+| autogenerated/TaintedPath/tainted-access-paths.js:49:38:49:54 | function (err) {} | Xss | hasFlowFromSource | false | boolean |
+| autogenerated/TaintedPath/tainted-access-paths.js:49:38:49:54 | function (err) {} | Xss | isConstantExpression | false | boolean |
+| autogenerated/TaintedPath/tainted-access-paths.js:49:38:49:54 | function (err) {} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/TaintedPath/tainted-access-paths.js:49:38:49:54 | function (err) {} | Xss | notASinkReason | FileSystemAccess | string |
+| autogenerated/TaintedPath/tainted-access-paths.js:49:38:49:54 | function (err) {} | Xss | sinkLabel | NotASink | string |
+| autogenerated/TaintedPath/tainted-access-paths.js:49:38:49:54 | function (err) {} | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/TaintedPath/tainted-access-paths.js:49:38:49:54 | function (err) {} | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/TaintedPath/tainted-access-paths.js:49:38:49:54 | function (err) {} | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/TaintedPath/tainted-access-paths.js:49:38:49:54 | function (err) {} | XssThroughDom | notASinkReason | FileSystemAccess | string |
+| autogenerated/TaintedPath/tainted-access-paths.js:49:38:49:54 | function (err) {} | XssThroughDom | sinkLabel | NotASink | string |
 | autogenerated/TaintedPath/tainted-array-steps.js:10:29:10:54 | ['publi ... in('/') | TaintedPath | hasFlowFromSource | true | boolean |
 | autogenerated/TaintedPath/tainted-array-steps.js:10:29:10:54 | ['publi ... in('/') | TaintedPath | isConstantExpression | false | boolean |
 | autogenerated/TaintedPath/tainted-array-steps.js:10:29:10:54 | ['publi ... in('/') | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
@@ -2371,6 +3120,14 @@ endpoints
 | autogenerated/TaintedPath/tainted-require.js:7:19:7:37 | req.param("module") | TaintedPath | isConstantExpression | false | boolean |
 | autogenerated/TaintedPath/tainted-require.js:7:19:7:37 | req.param("module") | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
 | autogenerated/TaintedPath/tainted-require.js:7:19:7:37 | req.param("module") | TaintedPath | sinkLabel | Sink | string |
+| autogenerated/TaintedPath/tainted-require.js:12:29:12:47 | req.param("module") | TaintedPath | hasFlowFromSource | true | boolean |
+| autogenerated/TaintedPath/tainted-require.js:12:29:12:47 | req.param("module") | TaintedPath | isConstantExpression | false | boolean |
+| autogenerated/TaintedPath/tainted-require.js:12:29:12:47 | req.param("module") | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/TaintedPath/tainted-require.js:12:29:12:47 | req.param("module") | TaintedPath | sinkLabel | Sink | string |
+| autogenerated/TaintedPath/tainted-require.js:14:11:14:29 | req.param("module") | TaintedPath | hasFlowFromSource | true | boolean |
+| autogenerated/TaintedPath/tainted-require.js:14:11:14:29 | req.param("module") | TaintedPath | isConstantExpression | false | boolean |
+| autogenerated/TaintedPath/tainted-require.js:14:11:14:29 | req.param("module") | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/TaintedPath/tainted-require.js:14:11:14:29 | req.param("module") | TaintedPath | sinkLabel | Sink | string |
 | autogenerated/TaintedPath/tainted-sendFile.js:8:16:8:33 | req.param("gimme") | TaintedPath | hasFlowFromSource | true | boolean |
 | autogenerated/TaintedPath/tainted-sendFile.js:8:16:8:33 | req.param("gimme") | TaintedPath | isConstantExpression | false | boolean |
 | autogenerated/TaintedPath/tainted-sendFile.js:8:16:8:33 | req.param("gimme") | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
@@ -2768,6 +3525,39 @@ endpoints
 | autogenerated/Xss/DomBasedXss/addEventListener.js:13:24:13:29 | y.data | Xss | isConstantExpression | false | boolean |
 | autogenerated/Xss/DomBasedXss/addEventListener.js:13:24:13:29 | y.data | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
 | autogenerated/Xss/DomBasedXss/addEventListener.js:13:24:13:29 | y.data | Xss | sinkLabel | Sink | string |
+| autogenerated/Xss/DomBasedXss/addEventListener.js:22:24:22:29 | e.data | Xss | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/DomBasedXss/addEventListener.js:22:24:22:29 | e.data | Xss | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/addEventListener.js:22:24:22:29 | e.data | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/addEventListener.js:22:24:22:29 | e.data | Xss | sinkLabel | Sink | string |
+| autogenerated/Xss/DomBasedXss/addEventListener.js:26:28:26:35 | e.origin | NosqlInjection | hasFlowFromSource | true | boolean |
+| autogenerated/Xss/DomBasedXss/addEventListener.js:26:28:26:35 | e.origin | NosqlInjection | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/addEventListener.js:26:28:26:35 | e.origin | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/addEventListener.js:26:28:26:35 | e.origin | NosqlInjection | notASinkReason | MembershipCandidateTest | string |
+| autogenerated/Xss/DomBasedXss/addEventListener.js:26:28:26:35 | e.origin | NosqlInjection | sinkLabel | NotASink | string |
+| autogenerated/Xss/DomBasedXss/addEventListener.js:26:28:26:35 | e.origin | SqlInjection | hasFlowFromSource | true | boolean |
+| autogenerated/Xss/DomBasedXss/addEventListener.js:26:28:26:35 | e.origin | SqlInjection | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/addEventListener.js:26:28:26:35 | e.origin | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/addEventListener.js:26:28:26:35 | e.origin | SqlInjection | notASinkReason | MembershipCandidateTest | string |
+| autogenerated/Xss/DomBasedXss/addEventListener.js:26:28:26:35 | e.origin | SqlInjection | sinkLabel | NotASink | string |
+| autogenerated/Xss/DomBasedXss/addEventListener.js:26:28:26:35 | e.origin | TaintedPath | hasFlowFromSource | true | boolean |
+| autogenerated/Xss/DomBasedXss/addEventListener.js:26:28:26:35 | e.origin | TaintedPath | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/addEventListener.js:26:28:26:35 | e.origin | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/addEventListener.js:26:28:26:35 | e.origin | TaintedPath | notASinkReason | MembershipCandidateTest | string |
+| autogenerated/Xss/DomBasedXss/addEventListener.js:26:28:26:35 | e.origin | TaintedPath | sinkLabel | NotASink | string |
+| autogenerated/Xss/DomBasedXss/addEventListener.js:26:28:26:35 | e.origin | Xss | hasFlowFromSource | true | boolean |
+| autogenerated/Xss/DomBasedXss/addEventListener.js:26:28:26:35 | e.origin | Xss | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/addEventListener.js:26:28:26:35 | e.origin | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/addEventListener.js:26:28:26:35 | e.origin | Xss | notASinkReason | MembershipCandidateTest | string |
+| autogenerated/Xss/DomBasedXss/addEventListener.js:26:28:26:35 | e.origin | Xss | sinkLabel | NotASink | string |
+| autogenerated/Xss/DomBasedXss/addEventListener.js:26:28:26:35 | e.origin | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/DomBasedXss/addEventListener.js:26:28:26:35 | e.origin | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/addEventListener.js:26:28:26:35 | e.origin | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/addEventListener.js:26:28:26:35 | e.origin | XssThroughDom | notASinkReason | MembershipCandidateTest | string |
+| autogenerated/Xss/DomBasedXss/addEventListener.js:26:28:26:35 | e.origin | XssThroughDom | sinkLabel | NotASink | string |
+| autogenerated/Xss/DomBasedXss/addEventListener.js:27:28:27:33 | e.data | Xss | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/DomBasedXss/addEventListener.js:27:28:27:33 | e.data | Xss | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/addEventListener.js:27:28:27:33 | e.data | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/addEventListener.js:27:28:27:33 | e.data | Xss | sinkLabel | Sink | string |
 | autogenerated/Xss/DomBasedXss/angular2-client.ts:22:44:22:71 | \\u0275getDOM ... ().href | Xss | hasFlowFromSource | true | boolean |
 | autogenerated/Xss/DomBasedXss/angular2-client.ts:22:44:22:71 | \\u0275getDOM ... ().href | Xss | isConstantExpression | false | boolean |
 | autogenerated/Xss/DomBasedXss/angular2-client.ts:22:44:22:71 | \\u0275getDOM ... ().href | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
@@ -2852,6 +3642,117 @@ endpoints
 | autogenerated/Xss/DomBasedXss/classnames.js:15:31:15:78 | `<span  ... <span>` | Xss | isConstantExpression | false | boolean |
 | autogenerated/Xss/DomBasedXss/classnames.js:15:31:15:78 | `<span  ... <span>` | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
 | autogenerated/Xss/DomBasedXss/classnames.js:15:31:15:78 | `<span  ... <span>` | Xss | sinkLabel | Sink | string |
+| autogenerated/Xss/DomBasedXss/classnames.js:17:32:17:79 | `<span  ... <span>` | Xss | hasFlowFromSource | true | boolean |
+| autogenerated/Xss/DomBasedXss/classnames.js:17:32:17:79 | `<span  ... <span>` | Xss | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/classnames.js:17:32:17:79 | `<span  ... <span>` | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/classnames.js:17:32:17:79 | `<span  ... <span>` | Xss | sinkLabel | Sink | string |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:1:23:1:27 | paste | NosqlInjection | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:1:23:1:27 | paste | NosqlInjection | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:1:23:1:27 | paste | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:1:23:1:27 | paste | NosqlInjection | notASinkReason | JQueryArgument | string |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:1:23:1:27 | paste | NosqlInjection | sinkLabel | NotASink | string |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:1:23:1:27 | paste | SqlInjection | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:1:23:1:27 | paste | SqlInjection | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:1:23:1:27 | paste | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:1:23:1:27 | paste | SqlInjection | notASinkReason | JQueryArgument | string |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:1:23:1:27 | paste | SqlInjection | sinkLabel | NotASink | string |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:1:23:1:27 | paste | TaintedPath | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:1:23:1:27 | paste | TaintedPath | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:1:23:1:27 | paste | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:1:23:1:27 | paste | TaintedPath | notASinkReason | JQueryArgument | string |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:1:23:1:27 | paste | TaintedPath | sinkLabel | NotASink | string |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:1:23:1:27 | paste | Xss | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:1:23:1:27 | paste | Xss | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:1:23:1:27 | paste | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:1:23:1:27 | paste | Xss | notASinkReason | JQueryArgument | string |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:1:23:1:27 | paste | Xss | sinkLabel | NotASink | string |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:1:23:1:27 | paste | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:1:23:1:27 | paste | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:1:23:1:27 | paste | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:1:23:1:27 | paste | XssThroughDom | notASinkReason | JQueryArgument | string |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:1:23:1:27 | paste | XssThroughDom | sinkLabel | NotASink | string |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:15:25:15:28 | html | Xss | hasFlowFromSource | true | boolean |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:15:25:15:28 | html | Xss | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:15:25:15:28 | html | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:15:25:15:28 | html | Xss | sinkLabel | Sink | string |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:24:23:24:58 | e.clipb ... /html') | Xss | hasFlowFromSource | true | boolean |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:24:23:24:58 | e.clipb ... /html') | Xss | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:24:23:24:58 | e.clipb ... /html') | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:24:23:24:58 | e.clipb ... /html') | Xss | sinkLabel | Sink | string |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:29:19:29:54 | e.clipb ... /html') | Xss | hasFlowFromSource | true | boolean |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:29:19:29:54 | e.clipb ... /html') | Xss | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:29:19:29:54 | e.clipb ... /html') | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:29:19:29:54 | e.clipb ... /html') | Xss | sinkLabel | Sink | string |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:32:25:34:1 | (e) =>  ... OT OK\\n} | NosqlInjection | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:32:25:34:1 | (e) =>  ... OT OK\\n} | NosqlInjection | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:32:25:34:1 | (e) =>  ... OT OK\\n} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:32:25:34:1 | (e) =>  ... OT OK\\n} | NosqlInjection | notASinkReason | JQueryArgument | string |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:32:25:34:1 | (e) =>  ... OT OK\\n} | NosqlInjection | sinkLabel | NotASink | string |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:32:25:34:1 | (e) =>  ... OT OK\\n} | SqlInjection | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:32:25:34:1 | (e) =>  ... OT OK\\n} | SqlInjection | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:32:25:34:1 | (e) =>  ... OT OK\\n} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:32:25:34:1 | (e) =>  ... OT OK\\n} | SqlInjection | notASinkReason | JQueryArgument | string |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:32:25:34:1 | (e) =>  ... OT OK\\n} | SqlInjection | sinkLabel | NotASink | string |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:32:25:34:1 | (e) =>  ... OT OK\\n} | TaintedPath | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:32:25:34:1 | (e) =>  ... OT OK\\n} | TaintedPath | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:32:25:34:1 | (e) =>  ... OT OK\\n} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:32:25:34:1 | (e) =>  ... OT OK\\n} | TaintedPath | notASinkReason | JQueryArgument | string |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:32:25:34:1 | (e) =>  ... OT OK\\n} | TaintedPath | sinkLabel | NotASink | string |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:32:25:34:1 | (e) =>  ... OT OK\\n} | Xss | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:32:25:34:1 | (e) =>  ... OT OK\\n} | Xss | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:32:25:34:1 | (e) =>  ... OT OK\\n} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:32:25:34:1 | (e) =>  ... OT OK\\n} | Xss | notASinkReason | JQueryArgument | string |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:32:25:34:1 | (e) =>  ... OT OK\\n} | Xss | sinkLabel | NotASink | string |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:32:25:34:1 | (e) =>  ... OT OK\\n} | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:32:25:34:1 | (e) =>  ... OT OK\\n} | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:32:25:34:1 | (e) =>  ... OT OK\\n} | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:32:25:34:1 | (e) =>  ... OT OK\\n} | XssThroughDom | notASinkReason | JQueryArgument | string |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:32:25:34:1 | (e) =>  ... OT OK\\n} | XssThroughDom | sinkLabel | NotASink | string |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:33:19:33:68 | e.origi ... /html') | Xss | hasFlowFromSource | true | boolean |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:33:19:33:68 | e.origi ... /html') | Xss | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:33:19:33:68 | e.origi ... /html') | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:33:19:33:68 | e.origi ... /html') | Xss | sinkLabel | Sink | string |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:50:29:50:32 | html | Xss | hasFlowFromSource | true | boolean |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:50:29:50:32 | html | Xss | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:50:29:50:32 | html | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:50:29:50:32 | html | Xss | sinkLabel | Sink | string |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:73:29:73:39 | droppedHtml | Xss | hasFlowFromSource | true | boolean |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:73:29:73:39 | droppedHtml | Xss | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:73:29:73:39 | droppedHtml | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:73:29:73:39 | droppedHtml | Xss | sinkLabel | Sink | string |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:82:32:82:40 | plainText | NosqlInjection | hasFlowFromSource | true | boolean |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:82:32:82:40 | plainText | NosqlInjection | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:82:32:82:40 | plainText | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:82:32:82:40 | plainText | NosqlInjection | notASinkReason | StringRegExpTest | string |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:82:32:82:40 | plainText | NosqlInjection | sinkLabel | NotASink | string |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:82:32:82:40 | plainText | SqlInjection | hasFlowFromSource | true | boolean |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:82:32:82:40 | plainText | SqlInjection | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:82:32:82:40 | plainText | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:82:32:82:40 | plainText | SqlInjection | notASinkReason | StringRegExpTest | string |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:82:32:82:40 | plainText | SqlInjection | sinkLabel | NotASink | string |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:82:32:82:40 | plainText | TaintedPath | hasFlowFromSource | true | boolean |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:82:32:82:40 | plainText | TaintedPath | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:82:32:82:40 | plainText | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:82:32:82:40 | plainText | TaintedPath | notASinkReason | StringRegExpTest | string |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:82:32:82:40 | plainText | TaintedPath | sinkLabel | NotASink | string |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:82:32:82:40 | plainText | Xss | hasFlowFromSource | true | boolean |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:82:32:82:40 | plainText | Xss | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:82:32:82:40 | plainText | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:82:32:82:40 | plainText | Xss | notASinkReason | StringRegExpTest | string |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:82:32:82:40 | plainText | Xss | sinkLabel | NotASink | string |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:82:32:82:40 | plainText | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:82:32:82:40 | plainText | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:82:32:82:40 | plainText | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:82:32:82:40 | plainText | XssThroughDom | notASinkReason | StringRegExpTest | string |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:82:32:82:40 | plainText | XssThroughDom | sinkLabel | NotASink | string |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:99:23:99:26 | html | Xss | hasFlowFromSource | true | boolean |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:99:23:99:26 | html | Xss | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:99:23:99:26 | html | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:99:23:99:26 | html | Xss | sinkLabel | Sink | string |
+| autogenerated/Xss/DomBasedXss/custom-element.js:5:26:5:36 | window.name | Xss | hasFlowFromSource | true | boolean |
+| autogenerated/Xss/DomBasedXss/custom-element.js:5:26:5:36 | window.name | Xss | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/custom-element.js:5:26:5:36 | window.name | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/custom-element.js:5:26:5:36 | window.name | Xss | sinkLabel | Sink | string |
 | autogenerated/Xss/DomBasedXss/d3.js:11:15:11:24 | getTaint() | Xss | hasFlowFromSource | true | boolean |
 | autogenerated/Xss/DomBasedXss/d3.js:11:15:11:24 | getTaint() | Xss | isConstantExpression | false | boolean |
 | autogenerated/Xss/DomBasedXss/d3.js:11:15:11:24 | getTaint() | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
@@ -2908,6 +3809,149 @@ endpoints
 | autogenerated/Xss/DomBasedXss/dates.js:18:31:18:66 | `Time i ... aint)}` | Xss | isConstantExpression | false | boolean |
 | autogenerated/Xss/DomBasedXss/dates.js:18:31:18:66 | `Time i ... aint)}` | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
 | autogenerated/Xss/DomBasedXss/dates.js:18:31:18:66 | `Time i ... aint)}` | Xss | sinkLabel | Sink | string |
+| autogenerated/Xss/DomBasedXss/dates.js:21:31:21:68 | `Time i ... aint)}` | Xss | hasFlowFromSource | true | boolean |
+| autogenerated/Xss/DomBasedXss/dates.js:21:31:21:68 | `Time i ... aint)}` | Xss | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/dates.js:21:31:21:68 | `Time i ... aint)}` | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/dates.js:21:31:21:68 | `Time i ... aint)}` | Xss | sinkLabel | Sink | string |
+| autogenerated/Xss/DomBasedXss/dates.js:37:31:37:84 | `Time i ... aint)}` | Xss | hasFlowFromSource | true | boolean |
+| autogenerated/Xss/DomBasedXss/dates.js:37:31:37:84 | `Time i ... aint)}` | Xss | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/dates.js:37:31:37:84 | `Time i ... aint)}` | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/dates.js:37:31:37:84 | `Time i ... aint)}` | Xss | sinkLabel | Sink | string |
+| autogenerated/Xss/DomBasedXss/dates.js:38:31:38:84 | `Time i ... aint)}` | Xss | hasFlowFromSource | true | boolean |
+| autogenerated/Xss/DomBasedXss/dates.js:38:31:38:84 | `Time i ... aint)}` | Xss | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/dates.js:38:31:38:84 | `Time i ... aint)}` | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/dates.js:38:31:38:84 | `Time i ... aint)}` | Xss | sinkLabel | Sink | string |
+| autogenerated/Xss/DomBasedXss/dates.js:39:31:39:86 | `Time i ... aint)}` | Xss | hasFlowFromSource | true | boolean |
+| autogenerated/Xss/DomBasedXss/dates.js:39:31:39:86 | `Time i ... aint)}` | Xss | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/dates.js:39:31:39:86 | `Time i ... aint)}` | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/dates.js:39:31:39:86 | `Time i ... aint)}` | Xss | sinkLabel | Sink | string |
+| autogenerated/Xss/DomBasedXss/dates.js:40:31:40:84 | `Time i ... aint)}` | Xss | hasFlowFromSource | true | boolean |
+| autogenerated/Xss/DomBasedXss/dates.js:40:31:40:84 | `Time i ... aint)}` | Xss | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/dates.js:40:31:40:84 | `Time i ... aint)}` | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/dates.js:40:31:40:84 | `Time i ... aint)}` | Xss | sinkLabel | Sink | string |
+| autogenerated/Xss/DomBasedXss/dates.js:48:31:48:90 | `Time i ... aint)}` | Xss | hasFlowFromSource | true | boolean |
+| autogenerated/Xss/DomBasedXss/dates.js:48:31:48:90 | `Time i ... aint)}` | Xss | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/dates.js:48:31:48:90 | `Time i ... aint)}` | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/dates.js:48:31:48:90 | `Time i ... aint)}` | Xss | sinkLabel | Sink | string |
+| autogenerated/Xss/DomBasedXss/dates.js:49:31:49:89 | `Time i ... aint)}` | Xss | hasFlowFromSource | true | boolean |
+| autogenerated/Xss/DomBasedXss/dates.js:49:31:49:89 | `Time i ... aint)}` | Xss | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/dates.js:49:31:49:89 | `Time i ... aint)}` | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/dates.js:49:31:49:89 | `Time i ... aint)}` | Xss | sinkLabel | Sink | string |
+| autogenerated/Xss/DomBasedXss/dates.js:50:31:50:104 | `Time i ... aint)}` | Xss | hasFlowFromSource | true | boolean |
+| autogenerated/Xss/DomBasedXss/dates.js:50:31:50:104 | `Time i ... aint)}` | Xss | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/dates.js:50:31:50:104 | `Time i ... aint)}` | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/dates.js:50:31:50:104 | `Time i ... aint)}` | Xss | sinkLabel | Sink | string |
+| autogenerated/Xss/DomBasedXss/dates.js:57:31:57:101 | `Time i ... aint)}` | Xss | hasFlowFromSource | true | boolean |
+| autogenerated/Xss/DomBasedXss/dates.js:57:31:57:101 | `Time i ... aint)}` | Xss | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/dates.js:57:31:57:101 | `Time i ... aint)}` | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/dates.js:57:31:57:101 | `Time i ... aint)}` | Xss | sinkLabel | Sink | string |
+| autogenerated/Xss/DomBasedXss/dates.js:59:31:59:87 | `Time i ... aint)}` | Xss | hasFlowFromSource | true | boolean |
+| autogenerated/Xss/DomBasedXss/dates.js:59:31:59:87 | `Time i ... aint)}` | Xss | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/dates.js:59:31:59:87 | `Time i ... aint)}` | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/dates.js:59:31:59:87 | `Time i ... aint)}` | Xss | sinkLabel | Sink | string |
+| autogenerated/Xss/DomBasedXss/dates.js:61:31:61:88 | `Time i ... aint)}` | Xss | hasFlowFromSource | true | boolean |
+| autogenerated/Xss/DomBasedXss/dates.js:61:31:61:88 | `Time i ... aint)}` | Xss | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/dates.js:61:31:61:88 | `Time i ... aint)}` | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/dates.js:61:31:61:88 | `Time i ... aint)}` | Xss | sinkLabel | Sink | string |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:1:22:1:25 | drop | NosqlInjection | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:1:22:1:25 | drop | NosqlInjection | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:1:22:1:25 | drop | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:1:22:1:25 | drop | NosqlInjection | notASinkReason | JQueryArgument | string |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:1:22:1:25 | drop | NosqlInjection | sinkLabel | NotASink | string |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:1:22:1:25 | drop | SqlInjection | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:1:22:1:25 | drop | SqlInjection | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:1:22:1:25 | drop | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:1:22:1:25 | drop | SqlInjection | notASinkReason | JQueryArgument | string |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:1:22:1:25 | drop | SqlInjection | sinkLabel | NotASink | string |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:1:22:1:25 | drop | TaintedPath | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:1:22:1:25 | drop | TaintedPath | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:1:22:1:25 | drop | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:1:22:1:25 | drop | TaintedPath | notASinkReason | JQueryArgument | string |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:1:22:1:25 | drop | TaintedPath | sinkLabel | NotASink | string |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:1:22:1:25 | drop | Xss | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:1:22:1:25 | drop | Xss | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:1:22:1:25 | drop | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:1:22:1:25 | drop | Xss | notASinkReason | JQueryArgument | string |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:1:22:1:25 | drop | Xss | sinkLabel | NotASink | string |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:1:22:1:25 | drop | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:1:22:1:25 | drop | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:1:22:1:25 | drop | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:1:22:1:25 | drop | XssThroughDom | notASinkReason | JQueryArgument | string |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:1:22:1:25 | drop | XssThroughDom | sinkLabel | NotASink | string |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:15:25:15:28 | html | Xss | hasFlowFromSource | true | boolean |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:15:25:15:28 | html | Xss | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:15:25:15:28 | html | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:15:25:15:28 | html | Xss | sinkLabel | Sink | string |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:24:23:24:57 | e.dataT ... /html') | Xss | hasFlowFromSource | true | boolean |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:24:23:24:57 | e.dataT ... /html') | Xss | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:24:23:24:57 | e.dataT ... /html') | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:24:23:24:57 | e.dataT ... /html') | Xss | sinkLabel | Sink | string |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:29:19:29:53 | e.dataT ... /html') | Xss | hasFlowFromSource | true | boolean |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:29:19:29:53 | e.dataT ... /html') | Xss | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:29:19:29:53 | e.dataT ... /html') | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:29:19:29:53 | e.dataT ... /html') | Xss | sinkLabel | Sink | string |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:32:24:34:1 | (e) =>  ... OT OK\\n} | NosqlInjection | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:32:24:34:1 | (e) =>  ... OT OK\\n} | NosqlInjection | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:32:24:34:1 | (e) =>  ... OT OK\\n} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:32:24:34:1 | (e) =>  ... OT OK\\n} | NosqlInjection | notASinkReason | JQueryArgument | string |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:32:24:34:1 | (e) =>  ... OT OK\\n} | NosqlInjection | sinkLabel | NotASink | string |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:32:24:34:1 | (e) =>  ... OT OK\\n} | SqlInjection | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:32:24:34:1 | (e) =>  ... OT OK\\n} | SqlInjection | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:32:24:34:1 | (e) =>  ... OT OK\\n} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:32:24:34:1 | (e) =>  ... OT OK\\n} | SqlInjection | notASinkReason | JQueryArgument | string |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:32:24:34:1 | (e) =>  ... OT OK\\n} | SqlInjection | sinkLabel | NotASink | string |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:32:24:34:1 | (e) =>  ... OT OK\\n} | TaintedPath | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:32:24:34:1 | (e) =>  ... OT OK\\n} | TaintedPath | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:32:24:34:1 | (e) =>  ... OT OK\\n} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:32:24:34:1 | (e) =>  ... OT OK\\n} | TaintedPath | notASinkReason | JQueryArgument | string |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:32:24:34:1 | (e) =>  ... OT OK\\n} | TaintedPath | sinkLabel | NotASink | string |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:32:24:34:1 | (e) =>  ... OT OK\\n} | Xss | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:32:24:34:1 | (e) =>  ... OT OK\\n} | Xss | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:32:24:34:1 | (e) =>  ... OT OK\\n} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:32:24:34:1 | (e) =>  ... OT OK\\n} | Xss | notASinkReason | JQueryArgument | string |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:32:24:34:1 | (e) =>  ... OT OK\\n} | Xss | sinkLabel | NotASink | string |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:32:24:34:1 | (e) =>  ... OT OK\\n} | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:32:24:34:1 | (e) =>  ... OT OK\\n} | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:32:24:34:1 | (e) =>  ... OT OK\\n} | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:32:24:34:1 | (e) =>  ... OT OK\\n} | XssThroughDom | notASinkReason | JQueryArgument | string |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:32:24:34:1 | (e) =>  ... OT OK\\n} | XssThroughDom | sinkLabel | NotASink | string |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:33:19:33:67 | e.origi ... /html') | Xss | hasFlowFromSource | true | boolean |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:33:19:33:67 | e.origi ... /html') | Xss | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:33:19:33:67 | e.origi ... /html') | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:33:19:33:67 | e.origi ... /html') | Xss | sinkLabel | Sink | string |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:50:29:50:32 | html | Xss | hasFlowFromSource | true | boolean |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:50:29:50:32 | html | Xss | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:50:29:50:32 | html | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:50:29:50:32 | html | Xss | sinkLabel | Sink | string |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:73:29:73:39 | droppedHtml | Xss | hasFlowFromSource | true | boolean |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:73:29:73:39 | droppedHtml | Xss | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:73:29:73:39 | droppedHtml | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:73:29:73:39 | droppedHtml | Xss | sinkLabel | Sink | string |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:82:32:82:40 | plainText | NosqlInjection | hasFlowFromSource | true | boolean |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:82:32:82:40 | plainText | NosqlInjection | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:82:32:82:40 | plainText | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:82:32:82:40 | plainText | NosqlInjection | notASinkReason | StringRegExpTest | string |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:82:32:82:40 | plainText | NosqlInjection | sinkLabel | NotASink | string |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:82:32:82:40 | plainText | SqlInjection | hasFlowFromSource | true | boolean |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:82:32:82:40 | plainText | SqlInjection | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:82:32:82:40 | plainText | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:82:32:82:40 | plainText | SqlInjection | notASinkReason | StringRegExpTest | string |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:82:32:82:40 | plainText | SqlInjection | sinkLabel | NotASink | string |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:82:32:82:40 | plainText | TaintedPath | hasFlowFromSource | true | boolean |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:82:32:82:40 | plainText | TaintedPath | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:82:32:82:40 | plainText | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:82:32:82:40 | plainText | TaintedPath | notASinkReason | StringRegExpTest | string |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:82:32:82:40 | plainText | TaintedPath | sinkLabel | NotASink | string |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:82:32:82:40 | plainText | Xss | hasFlowFromSource | true | boolean |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:82:32:82:40 | plainText | Xss | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:82:32:82:40 | plainText | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:82:32:82:40 | plainText | Xss | notASinkReason | StringRegExpTest | string |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:82:32:82:40 | plainText | Xss | sinkLabel | NotASink | string |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:82:32:82:40 | plainText | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:82:32:82:40 | plainText | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:82:32:82:40 | plainText | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:82:32:82:40 | plainText | XssThroughDom | notASinkReason | StringRegExpTest | string |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:82:32:82:40 | plainText | XssThroughDom | sinkLabel | NotASink | string |
 | autogenerated/Xss/DomBasedXss/encodeuri.js:3:5:3:57 | '<a hre ... ck</a>' | Xss | hasFlowFromSource | false | boolean |
 | autogenerated/Xss/DomBasedXss/encodeuri.js:3:5:3:57 | '<a hre ... ck</a>' | Xss | isConstantExpression | false | boolean |
 | autogenerated/Xss/DomBasedXss/encodeuri.js:3:5:3:57 | '<a hre ... ck</a>' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
@@ -3002,6 +4046,79 @@ endpoints
 | autogenerated/Xss/DomBasedXss/jquery.js:16:19:16:64 | decodeU ... ring()) | Xss | isConstantExpression | false | boolean |
 | autogenerated/Xss/DomBasedXss/jquery.js:16:19:16:64 | decodeU ... ring()) | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
 | autogenerated/Xss/DomBasedXss/jquery.js:16:19:16:64 | decodeU ... ring()) | Xss | sinkLabel | Sink | string |
+| autogenerated/Xss/DomBasedXss/jquery.js:19:5:19:8 | hash | Xss | hasFlowFromSource | true | boolean |
+| autogenerated/Xss/DomBasedXss/jquery.js:19:5:19:8 | hash | Xss | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/jquery.js:19:5:19:8 | hash | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/jquery.js:19:5:19:8 | hash | Xss | sinkLabel | Sink | string |
+| autogenerated/Xss/DomBasedXss/jquery.js:21:5:21:21 | hash.substring(1) | Xss | hasFlowFromSource | true | boolean |
+| autogenerated/Xss/DomBasedXss/jquery.js:21:5:21:21 | hash.substring(1) | Xss | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/jquery.js:21:5:21:21 | hash.substring(1) | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/jquery.js:21:5:21:21 | hash.substring(1) | Xss | sinkLabel | Sink | string |
+| autogenerated/Xss/DomBasedXss/jquery.js:22:5:22:25 | hash.su ... (1, 10) | Xss | hasFlowFromSource | true | boolean |
+| autogenerated/Xss/DomBasedXss/jquery.js:22:5:22:25 | hash.su ... (1, 10) | Xss | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/jquery.js:22:5:22:25 | hash.su ... (1, 10) | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/jquery.js:22:5:22:25 | hash.su ... (1, 10) | Xss | sinkLabel | Sink | string |
+| autogenerated/Xss/DomBasedXss/jquery.js:23:5:23:18 | hash.substr(1) | Xss | hasFlowFromSource | true | boolean |
+| autogenerated/Xss/DomBasedXss/jquery.js:23:5:23:18 | hash.substr(1) | Xss | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/jquery.js:23:5:23:18 | hash.substr(1) | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/jquery.js:23:5:23:18 | hash.substr(1) | Xss | sinkLabel | Sink | string |
+| autogenerated/Xss/DomBasedXss/jquery.js:24:5:24:17 | hash.slice(1) | Xss | hasFlowFromSource | true | boolean |
+| autogenerated/Xss/DomBasedXss/jquery.js:24:5:24:17 | hash.slice(1) | Xss | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/jquery.js:24:5:24:17 | hash.slice(1) | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/jquery.js:24:5:24:17 | hash.slice(1) | Xss | sinkLabel | Sink | string |
+| autogenerated/Xss/DomBasedXss/jquery.js:25:5:25:25 | hash.su ... (0, 10) | Xss | hasFlowFromSource | true | boolean |
+| autogenerated/Xss/DomBasedXss/jquery.js:25:5:25:25 | hash.su ... (0, 10) | Xss | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/jquery.js:25:5:25:25 | hash.su ... (0, 10) | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/jquery.js:25:5:25:25 | hash.su ... (0, 10) | Xss | sinkLabel | Sink | string |
+| autogenerated/Xss/DomBasedXss/jquery.js:27:5:27:25 | hash.re ... #', '') | Xss | hasFlowFromSource | true | boolean |
+| autogenerated/Xss/DomBasedXss/jquery.js:27:5:27:25 | hash.re ... #', '') | Xss | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/jquery.js:27:5:27:25 | hash.re ... #', '') | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/jquery.js:27:5:27:25 | hash.re ... #', '') | Xss | sinkLabel | Sink | string |
+| autogenerated/Xss/DomBasedXss/jquery.js:28:5:28:43 | window. ... ?', '') | Xss | hasFlowFromSource | true | boolean |
+| autogenerated/Xss/DomBasedXss/jquery.js:28:5:28:43 | window. ... ?', '') | Xss | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/jquery.js:28:5:28:43 | window. ... ?', '') | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/jquery.js:28:5:28:43 | window. ... ?', '') | Xss | sinkLabel | Sink | string |
+| autogenerated/Xss/DomBasedXss/jquery.js:29:5:29:25 | hash.re ... !', '') | Xss | hasFlowFromSource | true | boolean |
+| autogenerated/Xss/DomBasedXss/jquery.js:29:5:29:25 | hash.re ... !', '') | Xss | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/jquery.js:29:5:29:25 | hash.re ... !', '') | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/jquery.js:29:5:29:25 | hash.re ... !', '') | Xss | sinkLabel | Sink | string |
+| autogenerated/Xss/DomBasedXss/jquery.js:30:5:30:28 | hash.re ... h', '') | Xss | hasFlowFromSource | true | boolean |
+| autogenerated/Xss/DomBasedXss/jquery.js:30:5:30:28 | hash.re ... h', '') | Xss | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/jquery.js:30:5:30:28 | hash.re ... h', '') | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/jquery.js:30:5:30:28 | hash.re ... h', '') | Xss | sinkLabel | Sink | string |
+| autogenerated/Xss/DomBasedXss/jquery.js:32:5:32:17 | hash + 'blah' | Xss | hasFlowFromSource | true | boolean |
+| autogenerated/Xss/DomBasedXss/jquery.js:32:5:32:17 | hash + 'blah' | Xss | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/jquery.js:32:5:32:17 | hash + 'blah' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/jquery.js:32:5:32:17 | hash + 'blah' | Xss | sinkLabel | Sink | string |
+| autogenerated/Xss/DomBasedXss/jquery.js:33:5:33:17 | 'blah' + hash | NosqlInjection | hasFlowFromSource | true | boolean |
+| autogenerated/Xss/DomBasedXss/jquery.js:33:5:33:17 | 'blah' + hash | NosqlInjection | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/jquery.js:33:5:33:17 | 'blah' + hash | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/jquery.js:33:5:33:17 | 'blah' + hash | NosqlInjection | notASinkReason | JQueryArgument | string |
+| autogenerated/Xss/DomBasedXss/jquery.js:33:5:33:17 | 'blah' + hash | NosqlInjection | sinkLabel | NotASink | string |
+| autogenerated/Xss/DomBasedXss/jquery.js:33:5:33:17 | 'blah' + hash | SqlInjection | hasFlowFromSource | true | boolean |
+| autogenerated/Xss/DomBasedXss/jquery.js:33:5:33:17 | 'blah' + hash | SqlInjection | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/jquery.js:33:5:33:17 | 'blah' + hash | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/jquery.js:33:5:33:17 | 'blah' + hash | SqlInjection | notASinkReason | JQueryArgument | string |
+| autogenerated/Xss/DomBasedXss/jquery.js:33:5:33:17 | 'blah' + hash | SqlInjection | sinkLabel | NotASink | string |
+| autogenerated/Xss/DomBasedXss/jquery.js:33:5:33:17 | 'blah' + hash | TaintedPath | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/DomBasedXss/jquery.js:33:5:33:17 | 'blah' + hash | TaintedPath | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/jquery.js:33:5:33:17 | 'blah' + hash | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/jquery.js:33:5:33:17 | 'blah' + hash | TaintedPath | notASinkReason | JQueryArgument | string |
+| autogenerated/Xss/DomBasedXss/jquery.js:33:5:33:17 | 'blah' + hash | TaintedPath | sinkLabel | NotASink | string |
+| autogenerated/Xss/DomBasedXss/jquery.js:33:5:33:17 | 'blah' + hash | Xss | hasFlowFromSource | true | boolean |
+| autogenerated/Xss/DomBasedXss/jquery.js:33:5:33:17 | 'blah' + hash | Xss | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/jquery.js:33:5:33:17 | 'blah' + hash | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/jquery.js:33:5:33:17 | 'blah' + hash | Xss | notASinkReason | JQueryArgument | string |
+| autogenerated/Xss/DomBasedXss/jquery.js:33:5:33:17 | 'blah' + hash | Xss | sinkLabel | NotASink | string |
+| autogenerated/Xss/DomBasedXss/jquery.js:33:5:33:17 | 'blah' + hash | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/DomBasedXss/jquery.js:33:5:33:17 | 'blah' + hash | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/jquery.js:33:5:33:17 | 'blah' + hash | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/jquery.js:33:5:33:17 | 'blah' + hash | XssThroughDom | notASinkReason | JQueryArgument | string |
+| autogenerated/Xss/DomBasedXss/jquery.js:33:5:33:17 | 'blah' + hash | XssThroughDom | sinkLabel | NotASink | string |
+| autogenerated/Xss/DomBasedXss/jquery.js:34:5:34:25 | '<b>' + ...  '</b>' | Xss | hasFlowFromSource | true | boolean |
+| autogenerated/Xss/DomBasedXss/jquery.js:34:5:34:25 | '<b>' + ...  '</b>' | Xss | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/jquery.js:34:5:34:25 | '<b>' + ...  '</b>' | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/jquery.js:34:5:34:25 | '<b>' + ...  '</b>' | Xss | sinkLabel | Sink | string |
 | autogenerated/Xss/DomBasedXss/jwt-server.js:11:19:11:29 | decoded.foo | Xss | hasFlowFromSource | true | boolean |
 | autogenerated/Xss/DomBasedXss/jwt-server.js:11:19:11:29 | decoded.foo | Xss | isConstantExpression | false | boolean |
 | autogenerated/Xss/DomBasedXss/jwt-server.js:11:19:11:29 | decoded.foo | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
@@ -3520,6 +4637,14 @@ endpoints
 | autogenerated/Xss/DomBasedXss/translate.js:11:29:11:63 | transla ... term')] | Xss | isConstantExpression | false | boolean |
 | autogenerated/Xss/DomBasedXss/translate.js:11:29:11:63 | transla ... term')] | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
 | autogenerated/Xss/DomBasedXss/translate.js:11:29:11:63 | transla ... term')] | Xss | sinkLabel | Sink | string |
+| autogenerated/Xss/DomBasedXss/trusted-types.js:2:71:2:71 | x | Xss | hasFlowFromSource | true | boolean |
+| autogenerated/Xss/DomBasedXss/trusted-types.js:2:71:2:71 | x | Xss | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/trusted-types.js:2:71:2:71 | x | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/trusted-types.js:2:71:2:71 | x | Xss | sinkLabel | Sink | string |
+| autogenerated/Xss/DomBasedXss/trusted-types.js:8:71:8:71 | x | Xss | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/DomBasedXss/trusted-types.js:8:71:8:71 | x | Xss | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/trusted-types.js:8:71:8:71 | x | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/trusted-types.js:8:71:8:71 | x | Xss | sinkLabel | Sink | string |
 | autogenerated/Xss/DomBasedXss/tst3.js:4:25:4:32 | data.src | Xss | hasFlowFromSource | true | boolean |
 | autogenerated/Xss/DomBasedXss/tst3.js:4:25:4:32 | data.src | Xss | isConstantExpression | false | boolean |
 | autogenerated/Xss/DomBasedXss/tst3.js:4:25:4:32 | data.src | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
@@ -4122,6 +5247,290 @@ endpoints
 | autogenerated/Xss/DomBasedXss/tst.js:432:18:432:43 | target. ... /g, '') | Xss | isConstantExpression | false | boolean |
 | autogenerated/Xss/DomBasedXss/tst.js:432:18:432:43 | target. ... /g, '') | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
 | autogenerated/Xss/DomBasedXss/tst.js:432:18:432:43 | target. ... /g, '') | Xss | sinkLabel | Sink | string |
+| autogenerated/Xss/DomBasedXss/tst.js:440:28:440:33 | source | Xss | hasFlowFromSource | true | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:440:28:440:33 | source | Xss | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:440:28:440:33 | source | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:440:28:440:33 | source | Xss | sinkLabel | Sink | string |
+| autogenerated/Xss/DomBasedXss/tst.js:441:33:441:38 | source | Xss | hasFlowFromSource | true | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:441:33:441:38 | source | Xss | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:441:33:441:38 | source | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:441:33:441:38 | source | Xss | sinkLabel | Sink | string |
+| autogenerated/Xss/DomBasedXss/tst.js:442:34:442:39 | source | Xss | hasFlowFromSource | true | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:442:34:442:39 | source | Xss | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:442:34:442:39 | source | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:442:34:442:39 | source | Xss | sinkLabel | Sink | string |
+| autogenerated/Xss/DomBasedXss/tst.js:443:41:443:46 | source | Xss | hasFlowFromSource | true | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:443:41:443:46 | source | Xss | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:443:41:443:46 | source | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:443:41:443:46 | source | Xss | sinkLabel | Sink | string |
+| autogenerated/Xss/DomBasedXss/tst.js:444:44:444:49 | source | Xss | hasFlowFromSource | true | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:444:44:444:49 | source | Xss | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:444:44:444:49 | source | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:444:44:444:49 | source | Xss | sinkLabel | Sink | string |
+| autogenerated/Xss/DomBasedXss/tst.js:445:32:445:37 | source | Xss | hasFlowFromSource | true | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:445:32:445:37 | source | Xss | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:445:32:445:37 | source | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:445:32:445:37 | source | Xss | sinkLabel | Sink | string |
+| autogenerated/Xss/DomBasedXss/tst.js:455:18:455:23 | source | Xss | hasFlowFromSource | true | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:455:18:455:23 | source | Xss | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:455:18:455:23 | source | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:455:18:455:23 | source | Xss | sinkLabel | Sink | string |
+| autogenerated/Xss/DomBasedXss/tst.js:456:18:456:42 | ansiToH ... source) | Xss | hasFlowFromSource | true | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:456:18:456:42 | ansiToH ... source) | Xss | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:456:18:456:42 | ansiToH ... source) | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:456:18:456:42 | ansiToH ... source) | Xss | sinkLabel | Sink | string |
+| autogenerated/Xss/DomBasedXss/tst.js:463:21:463:26 | source | Xss | hasFlowFromSource | true | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:463:21:463:26 | source | Xss | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:463:21:463:26 | source | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:463:21:463:26 | source | Xss | sinkLabel | Sink | string |
+| autogenerated/Xss/DomBasedXss/tst.js:465:19:465:24 | source | Xss | hasFlowFromSource | true | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:465:19:465:24 | source | Xss | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:465:19:465:24 | source | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:465:19:465:24 | source | Xss | sinkLabel | Sink | string |
+| autogenerated/Xss/DomBasedXss/tst.js:467:20:467:25 | source | Xss | hasFlowFromSource | true | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:467:20:467:25 | source | Xss | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:467:20:467:25 | source | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:467:20:467:25 | source | Xss | sinkLabel | Sink | string |
+| autogenerated/Xss/DomBasedXss/tst.js:473:12:473:22 | {href: url} | NosqlInjection | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:473:12:473:22 | {href: url} | NosqlInjection | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:473:12:473:22 | {href: url} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:473:12:473:22 | {href: url} | NosqlInjection | notASinkReason | JQueryArgument | string |
+| autogenerated/Xss/DomBasedXss/tst.js:473:12:473:22 | {href: url} | NosqlInjection | sinkLabel | NotASink | string |
+| autogenerated/Xss/DomBasedXss/tst.js:473:12:473:22 | {href: url} | SqlInjection | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:473:12:473:22 | {href: url} | SqlInjection | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:473:12:473:22 | {href: url} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:473:12:473:22 | {href: url} | SqlInjection | notASinkReason | JQueryArgument | string |
+| autogenerated/Xss/DomBasedXss/tst.js:473:12:473:22 | {href: url} | SqlInjection | sinkLabel | NotASink | string |
+| autogenerated/Xss/DomBasedXss/tst.js:473:12:473:22 | {href: url} | TaintedPath | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:473:12:473:22 | {href: url} | TaintedPath | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:473:12:473:22 | {href: url} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:473:12:473:22 | {href: url} | TaintedPath | notASinkReason | JQueryArgument | string |
+| autogenerated/Xss/DomBasedXss/tst.js:473:12:473:22 | {href: url} | TaintedPath | sinkLabel | NotASink | string |
+| autogenerated/Xss/DomBasedXss/tst.js:473:12:473:22 | {href: url} | Xss | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:473:12:473:22 | {href: url} | Xss | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:473:12:473:22 | {href: url} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:473:12:473:22 | {href: url} | Xss | notASinkReason | JQueryArgument | string |
+| autogenerated/Xss/DomBasedXss/tst.js:473:12:473:22 | {href: url} | Xss | sinkLabel | NotASink | string |
+| autogenerated/Xss/DomBasedXss/tst.js:473:12:473:22 | {href: url} | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:473:12:473:22 | {href: url} | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:473:12:473:22 | {href: url} | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:473:12:473:22 | {href: url} | XssThroughDom | notASinkReason | JQueryArgument | string |
+| autogenerated/Xss/DomBasedXss/tst.js:473:12:473:22 | {href: url} | XssThroughDom | sinkLabel | NotASink | string |
+| autogenerated/Xss/DomBasedXss/tst.js:473:19:473:21 | url | Xss | hasFlowFromSource | true | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:473:19:473:21 | url | Xss | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:473:19:473:21 | url | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:473:19:473:21 | url | Xss | sinkLabel | Sink | string |
+| autogenerated/Xss/DomBasedXss/tst.js:474:26:474:28 | url | Xss | hasFlowFromSource | true | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:474:26:474:28 | url | Xss | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:474:26:474:28 | url | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:474:26:474:28 | url | Xss | sinkLabel | Sink | string |
+| autogenerated/Xss/DomBasedXss/tst.js:475:18:475:28 | {href: url} | NosqlInjection | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:475:18:475:28 | {href: url} | NosqlInjection | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:475:18:475:28 | {href: url} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:475:18:475:28 | {href: url} | NosqlInjection | notASinkReason | JQueryArgument | string |
+| autogenerated/Xss/DomBasedXss/tst.js:475:18:475:28 | {href: url} | NosqlInjection | sinkLabel | NotASink | string |
+| autogenerated/Xss/DomBasedXss/tst.js:475:18:475:28 | {href: url} | SqlInjection | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:475:18:475:28 | {href: url} | SqlInjection | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:475:18:475:28 | {href: url} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:475:18:475:28 | {href: url} | SqlInjection | notASinkReason | JQueryArgument | string |
+| autogenerated/Xss/DomBasedXss/tst.js:475:18:475:28 | {href: url} | SqlInjection | sinkLabel | NotASink | string |
+| autogenerated/Xss/DomBasedXss/tst.js:475:18:475:28 | {href: url} | TaintedPath | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:475:18:475:28 | {href: url} | TaintedPath | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:475:18:475:28 | {href: url} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:475:18:475:28 | {href: url} | TaintedPath | notASinkReason | JQueryArgument | string |
+| autogenerated/Xss/DomBasedXss/tst.js:475:18:475:28 | {href: url} | TaintedPath | sinkLabel | NotASink | string |
+| autogenerated/Xss/DomBasedXss/tst.js:475:18:475:28 | {href: url} | Xss | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:475:18:475:28 | {href: url} | Xss | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:475:18:475:28 | {href: url} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:475:18:475:28 | {href: url} | Xss | notASinkReason | JQueryArgument | string |
+| autogenerated/Xss/DomBasedXss/tst.js:475:18:475:28 | {href: url} | Xss | sinkLabel | NotASink | string |
+| autogenerated/Xss/DomBasedXss/tst.js:475:18:475:28 | {href: url} | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:475:18:475:28 | {href: url} | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:475:18:475:28 | {href: url} | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:475:18:475:28 | {href: url} | XssThroughDom | notASinkReason | JQueryArgument | string |
+| autogenerated/Xss/DomBasedXss/tst.js:475:18:475:28 | {href: url} | XssThroughDom | sinkLabel | NotASink | string |
+| autogenerated/Xss/DomBasedXss/tst.js:475:25:475:27 | url | Xss | hasFlowFromSource | true | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:475:25:475:27 | url | Xss | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:475:25:475:27 | url | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:475:25:475:27 | url | Xss | sinkLabel | Sink | string |
+| autogenerated/Xss/DomBasedXss/tst.js:476:14:476:23 | {src: url} | NosqlInjection | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:476:14:476:23 | {src: url} | NosqlInjection | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:476:14:476:23 | {src: url} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:476:14:476:23 | {src: url} | NosqlInjection | notASinkReason | JQueryArgument | string |
+| autogenerated/Xss/DomBasedXss/tst.js:476:14:476:23 | {src: url} | NosqlInjection | sinkLabel | NotASink | string |
+| autogenerated/Xss/DomBasedXss/tst.js:476:14:476:23 | {src: url} | SqlInjection | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:476:14:476:23 | {src: url} | SqlInjection | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:476:14:476:23 | {src: url} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:476:14:476:23 | {src: url} | SqlInjection | notASinkReason | JQueryArgument | string |
+| autogenerated/Xss/DomBasedXss/tst.js:476:14:476:23 | {src: url} | SqlInjection | sinkLabel | NotASink | string |
+| autogenerated/Xss/DomBasedXss/tst.js:476:14:476:23 | {src: url} | TaintedPath | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:476:14:476:23 | {src: url} | TaintedPath | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:476:14:476:23 | {src: url} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:476:14:476:23 | {src: url} | TaintedPath | notASinkReason | JQueryArgument | string |
+| autogenerated/Xss/DomBasedXss/tst.js:476:14:476:23 | {src: url} | TaintedPath | sinkLabel | NotASink | string |
+| autogenerated/Xss/DomBasedXss/tst.js:476:14:476:23 | {src: url} | Xss | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:476:14:476:23 | {src: url} | Xss | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:476:14:476:23 | {src: url} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:476:14:476:23 | {src: url} | Xss | notASinkReason | JQueryArgument | string |
+| autogenerated/Xss/DomBasedXss/tst.js:476:14:476:23 | {src: url} | Xss | sinkLabel | NotASink | string |
+| autogenerated/Xss/DomBasedXss/tst.js:476:14:476:23 | {src: url} | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:476:14:476:23 | {src: url} | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:476:14:476:23 | {src: url} | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:476:14:476:23 | {src: url} | XssThroughDom | notASinkReason | JQueryArgument | string |
+| autogenerated/Xss/DomBasedXss/tst.js:476:14:476:23 | {src: url} | XssThroughDom | sinkLabel | NotASink | string |
+| autogenerated/Xss/DomBasedXss/tst.js:476:20:476:22 | url | Xss | hasFlowFromSource | true | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:476:20:476:22 | url | Xss | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:476:20:476:22 | url | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:476:20:476:22 | url | Xss | sinkLabel | Sink | string |
+| autogenerated/Xss/DomBasedXss/tst.js:477:12:477:36 | {href:  ... n.href} | NosqlInjection | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:477:12:477:36 | {href:  ... n.href} | NosqlInjection | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:477:12:477:36 | {href:  ... n.href} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:477:12:477:36 | {href:  ... n.href} | NosqlInjection | notASinkReason | JQueryArgument | string |
+| autogenerated/Xss/DomBasedXss/tst.js:477:12:477:36 | {href:  ... n.href} | NosqlInjection | sinkLabel | NotASink | string |
+| autogenerated/Xss/DomBasedXss/tst.js:477:12:477:36 | {href:  ... n.href} | SqlInjection | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:477:12:477:36 | {href:  ... n.href} | SqlInjection | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:477:12:477:36 | {href:  ... n.href} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:477:12:477:36 | {href:  ... n.href} | SqlInjection | notASinkReason | JQueryArgument | string |
+| autogenerated/Xss/DomBasedXss/tst.js:477:12:477:36 | {href:  ... n.href} | SqlInjection | sinkLabel | NotASink | string |
+| autogenerated/Xss/DomBasedXss/tst.js:477:12:477:36 | {href:  ... n.href} | TaintedPath | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:477:12:477:36 | {href:  ... n.href} | TaintedPath | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:477:12:477:36 | {href:  ... n.href} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:477:12:477:36 | {href:  ... n.href} | TaintedPath | notASinkReason | JQueryArgument | string |
+| autogenerated/Xss/DomBasedXss/tst.js:477:12:477:36 | {href:  ... n.href} | TaintedPath | sinkLabel | NotASink | string |
+| autogenerated/Xss/DomBasedXss/tst.js:477:12:477:36 | {href:  ... n.href} | Xss | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:477:12:477:36 | {href:  ... n.href} | Xss | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:477:12:477:36 | {href:  ... n.href} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:477:12:477:36 | {href:  ... n.href} | Xss | notASinkReason | JQueryArgument | string |
+| autogenerated/Xss/DomBasedXss/tst.js:477:12:477:36 | {href:  ... n.href} | Xss | sinkLabel | NotASink | string |
+| autogenerated/Xss/DomBasedXss/tst.js:477:12:477:36 | {href:  ... n.href} | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:477:12:477:36 | {href:  ... n.href} | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:477:12:477:36 | {href:  ... n.href} | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:477:12:477:36 | {href:  ... n.href} | XssThroughDom | notASinkReason | JQueryArgument | string |
+| autogenerated/Xss/DomBasedXss/tst.js:477:12:477:36 | {href:  ... n.href} | XssThroughDom | sinkLabel | NotASink | string |
+| autogenerated/Xss/DomBasedXss/tst.js:477:19:477:35 | win.location.href | Xss | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:477:19:477:35 | win.location.href | Xss | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:477:19:477:35 | win.location.href | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:477:19:477:35 | win.location.href | Xss | sinkLabel | Sink | string |
+| autogenerated/Xss/DomBasedXss/tst.js:479:14:479:46 | {src: " ...  + url} | NosqlInjection | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:479:14:479:46 | {src: " ...  + url} | NosqlInjection | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:479:14:479:46 | {src: " ...  + url} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:479:14:479:46 | {src: " ...  + url} | NosqlInjection | notASinkReason | JQueryArgument | string |
+| autogenerated/Xss/DomBasedXss/tst.js:479:14:479:46 | {src: " ...  + url} | NosqlInjection | sinkLabel | NotASink | string |
+| autogenerated/Xss/DomBasedXss/tst.js:479:14:479:46 | {src: " ...  + url} | SqlInjection | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:479:14:479:46 | {src: " ...  + url} | SqlInjection | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:479:14:479:46 | {src: " ...  + url} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:479:14:479:46 | {src: " ...  + url} | SqlInjection | notASinkReason | JQueryArgument | string |
+| autogenerated/Xss/DomBasedXss/tst.js:479:14:479:46 | {src: " ...  + url} | SqlInjection | sinkLabel | NotASink | string |
+| autogenerated/Xss/DomBasedXss/tst.js:479:14:479:46 | {src: " ...  + url} | TaintedPath | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:479:14:479:46 | {src: " ...  + url} | TaintedPath | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:479:14:479:46 | {src: " ...  + url} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:479:14:479:46 | {src: " ...  + url} | TaintedPath | notASinkReason | JQueryArgument | string |
+| autogenerated/Xss/DomBasedXss/tst.js:479:14:479:46 | {src: " ...  + url} | TaintedPath | sinkLabel | NotASink | string |
+| autogenerated/Xss/DomBasedXss/tst.js:479:14:479:46 | {src: " ...  + url} | Xss | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:479:14:479:46 | {src: " ...  + url} | Xss | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:479:14:479:46 | {src: " ...  + url} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:479:14:479:46 | {src: " ...  + url} | Xss | notASinkReason | JQueryArgument | string |
+| autogenerated/Xss/DomBasedXss/tst.js:479:14:479:46 | {src: " ...  + url} | Xss | sinkLabel | NotASink | string |
+| autogenerated/Xss/DomBasedXss/tst.js:479:14:479:46 | {src: " ...  + url} | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:479:14:479:46 | {src: " ...  + url} | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:479:14:479:46 | {src: " ...  + url} | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:479:14:479:46 | {src: " ...  + url} | XssThroughDom | notASinkReason | JQueryArgument | string |
+| autogenerated/Xss/DomBasedXss/tst.js:479:14:479:46 | {src: " ...  + url} | XssThroughDom | sinkLabel | NotASink | string |
+| autogenerated/Xss/DomBasedXss/tst.js:479:20:479:45 | "http:/ ... " + url | Xss | hasFlowFromSource | true | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:479:20:479:45 | "http:/ ... " + url | Xss | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:479:20:479:45 | "http:/ ... " + url | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:479:20:479:45 | "http:/ ... " + url | Xss | sinkLabel | Sink | string |
+| autogenerated/Xss/DomBasedXss/tst.js:481:14:481:56 | {src: [ ... n("/")} | NosqlInjection | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:481:14:481:56 | {src: [ ... n("/")} | NosqlInjection | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:481:14:481:56 | {src: [ ... n("/")} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:481:14:481:56 | {src: [ ... n("/")} | NosqlInjection | notASinkReason | JQueryArgument | string |
+| autogenerated/Xss/DomBasedXss/tst.js:481:14:481:56 | {src: [ ... n("/")} | NosqlInjection | sinkLabel | NotASink | string |
+| autogenerated/Xss/DomBasedXss/tst.js:481:14:481:56 | {src: [ ... n("/")} | SqlInjection | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:481:14:481:56 | {src: [ ... n("/")} | SqlInjection | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:481:14:481:56 | {src: [ ... n("/")} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:481:14:481:56 | {src: [ ... n("/")} | SqlInjection | notASinkReason | JQueryArgument | string |
+| autogenerated/Xss/DomBasedXss/tst.js:481:14:481:56 | {src: [ ... n("/")} | SqlInjection | sinkLabel | NotASink | string |
+| autogenerated/Xss/DomBasedXss/tst.js:481:14:481:56 | {src: [ ... n("/")} | TaintedPath | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:481:14:481:56 | {src: [ ... n("/")} | TaintedPath | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:481:14:481:56 | {src: [ ... n("/")} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:481:14:481:56 | {src: [ ... n("/")} | TaintedPath | notASinkReason | JQueryArgument | string |
+| autogenerated/Xss/DomBasedXss/tst.js:481:14:481:56 | {src: [ ... n("/")} | TaintedPath | sinkLabel | NotASink | string |
+| autogenerated/Xss/DomBasedXss/tst.js:481:14:481:56 | {src: [ ... n("/")} | Xss | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:481:14:481:56 | {src: [ ... n("/")} | Xss | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:481:14:481:56 | {src: [ ... n("/")} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:481:14:481:56 | {src: [ ... n("/")} | Xss | notASinkReason | JQueryArgument | string |
+| autogenerated/Xss/DomBasedXss/tst.js:481:14:481:56 | {src: [ ... n("/")} | Xss | sinkLabel | NotASink | string |
+| autogenerated/Xss/DomBasedXss/tst.js:481:14:481:56 | {src: [ ... n("/")} | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:481:14:481:56 | {src: [ ... n("/")} | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:481:14:481:56 | {src: [ ... n("/")} | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:481:14:481:56 | {src: [ ... n("/")} | XssThroughDom | notASinkReason | JQueryArgument | string |
+| autogenerated/Xss/DomBasedXss/tst.js:481:14:481:56 | {src: [ ... n("/")} | XssThroughDom | sinkLabel | NotASink | string |
+| autogenerated/Xss/DomBasedXss/tst.js:481:20:481:55 | ["http: ... in("/") | Xss | hasFlowFromSource | true | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:481:20:481:55 | ["http: ... in("/") | Xss | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:481:20:481:55 | ["http: ... in("/") | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:481:20:481:55 | ["http: ... in("/") | Xss | sinkLabel | Sink | string |
+| autogenerated/Xss/DomBasedXss/tst.js:484:16:484:25 | {src: url} | NosqlInjection | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:484:16:484:25 | {src: url} | NosqlInjection | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:484:16:484:25 | {src: url} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:484:16:484:25 | {src: url} | NosqlInjection | notASinkReason | JQueryArgument | string |
+| autogenerated/Xss/DomBasedXss/tst.js:484:16:484:25 | {src: url} | NosqlInjection | sinkLabel | NotASink | string |
+| autogenerated/Xss/DomBasedXss/tst.js:484:16:484:25 | {src: url} | SqlInjection | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:484:16:484:25 | {src: url} | SqlInjection | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:484:16:484:25 | {src: url} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:484:16:484:25 | {src: url} | SqlInjection | notASinkReason | JQueryArgument | string |
+| autogenerated/Xss/DomBasedXss/tst.js:484:16:484:25 | {src: url} | SqlInjection | sinkLabel | NotASink | string |
+| autogenerated/Xss/DomBasedXss/tst.js:484:16:484:25 | {src: url} | TaintedPath | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:484:16:484:25 | {src: url} | TaintedPath | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:484:16:484:25 | {src: url} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:484:16:484:25 | {src: url} | TaintedPath | notASinkReason | JQueryArgument | string |
+| autogenerated/Xss/DomBasedXss/tst.js:484:16:484:25 | {src: url} | TaintedPath | sinkLabel | NotASink | string |
+| autogenerated/Xss/DomBasedXss/tst.js:484:16:484:25 | {src: url} | Xss | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:484:16:484:25 | {src: url} | Xss | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:484:16:484:25 | {src: url} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:484:16:484:25 | {src: url} | Xss | notASinkReason | JQueryArgument | string |
+| autogenerated/Xss/DomBasedXss/tst.js:484:16:484:25 | {src: url} | Xss | sinkLabel | NotASink | string |
+| autogenerated/Xss/DomBasedXss/tst.js:484:16:484:25 | {src: url} | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:484:16:484:25 | {src: url} | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:484:16:484:25 | {src: url} | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:484:16:484:25 | {src: url} | XssThroughDom | notASinkReason | JQueryArgument | string |
+| autogenerated/Xss/DomBasedXss/tst.js:484:16:484:25 | {src: url} | XssThroughDom | sinkLabel | NotASink | string |
+| autogenerated/Xss/DomBasedXss/tst.js:484:22:484:24 | url | Xss | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:484:22:484:24 | url | Xss | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:484:22:484:24 | url | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:484:22:484:24 | url | Xss | sinkLabel | Sink | string |
+| autogenerated/Xss/DomBasedXss/tst.js:486:16:486:25 | {src: url} | NosqlInjection | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:486:16:486:25 | {src: url} | NosqlInjection | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:486:16:486:25 | {src: url} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:486:16:486:25 | {src: url} | NosqlInjection | notASinkReason | JQueryArgument | string |
+| autogenerated/Xss/DomBasedXss/tst.js:486:16:486:25 | {src: url} | NosqlInjection | sinkLabel | NotASink | string |
+| autogenerated/Xss/DomBasedXss/tst.js:486:16:486:25 | {src: url} | SqlInjection | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:486:16:486:25 | {src: url} | SqlInjection | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:486:16:486:25 | {src: url} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:486:16:486:25 | {src: url} | SqlInjection | notASinkReason | JQueryArgument | string |
+| autogenerated/Xss/DomBasedXss/tst.js:486:16:486:25 | {src: url} | SqlInjection | sinkLabel | NotASink | string |
+| autogenerated/Xss/DomBasedXss/tst.js:486:16:486:25 | {src: url} | TaintedPath | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:486:16:486:25 | {src: url} | TaintedPath | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:486:16:486:25 | {src: url} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:486:16:486:25 | {src: url} | TaintedPath | notASinkReason | JQueryArgument | string |
+| autogenerated/Xss/DomBasedXss/tst.js:486:16:486:25 | {src: url} | TaintedPath | sinkLabel | NotASink | string |
+| autogenerated/Xss/DomBasedXss/tst.js:486:16:486:25 | {src: url} | Xss | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:486:16:486:25 | {src: url} | Xss | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:486:16:486:25 | {src: url} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:486:16:486:25 | {src: url} | Xss | notASinkReason | JQueryArgument | string |
+| autogenerated/Xss/DomBasedXss/tst.js:486:16:486:25 | {src: url} | Xss | sinkLabel | NotASink | string |
+| autogenerated/Xss/DomBasedXss/tst.js:486:16:486:25 | {src: url} | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:486:16:486:25 | {src: url} | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:486:16:486:25 | {src: url} | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:486:16:486:25 | {src: url} | XssThroughDom | notASinkReason | JQueryArgument | string |
+| autogenerated/Xss/DomBasedXss/tst.js:486:16:486:25 | {src: url} | XssThroughDom | sinkLabel | NotASink | string |
+| autogenerated/Xss/DomBasedXss/tst.js:486:22:486:24 | url | Xss | hasFlowFromSource | true | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:486:22:486:24 | url | Xss | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:486:22:486:24 | url | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:486:22:486:24 | url | Xss | sinkLabel | Sink | string |
+| autogenerated/Xss/DomBasedXss/tst.js:491:23:491:45 | locatio ... bstr(1) | Xss | hasFlowFromSource | true | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:491:23:491:45 | locatio ... bstr(1) | Xss | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:491:23:491:45 | locatio ... bstr(1) | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/tst.js:491:23:491:45 | locatio ... bstr(1) | Xss | sinkLabel | Sink | string |
 | autogenerated/Xss/DomBasedXss/typeahead.js:2:38:4:3 | {\\n    p ... Url\\n  } | NosqlInjection | hasFlowFromSource | false | boolean |
 | autogenerated/Xss/DomBasedXss/typeahead.js:2:38:4:3 | {\\n    p ... Url\\n  } | NosqlInjection | isConstantExpression | false | boolean |
 | autogenerated/Xss/DomBasedXss/typeahead.js:2:38:4:3 | {\\n    p ... Url\\n  } | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
@@ -4511,6 +5920,64 @@ endpoints
 | autogenerated/Xss/DomBasedXss/xmlRequest.js:14:21:14:25 | error | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
 | autogenerated/Xss/DomBasedXss/xmlRequest.js:14:21:14:25 | error | XssThroughDom | notASinkReason | LoggerMethod | string |
 | autogenerated/Xss/DomBasedXss/xmlRequest.js:14:21:14:25 | error | XssThroughDom | sinkLabel | NotASink | string |
+| autogenerated/Xss/DomBasedXss/xmlRequest.js:18:3:18:10 | document | Xss | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/DomBasedXss/xmlRequest.js:18:3:18:10 | document | Xss | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/xmlRequest.js:18:3:18:10 | document | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/xmlRequest.js:18:3:18:10 | document | Xss | sinkLabel | Sink | string |
+| autogenerated/Xss/DomBasedXss/xmlRequest.js:18:19:24:1 | async f ... rces\\n\\n} | NosqlInjection | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/DomBasedXss/xmlRequest.js:18:19:24:1 | async f ... rces\\n\\n} | NosqlInjection | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/xmlRequest.js:18:19:24:1 | async f ... rces\\n\\n} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/xmlRequest.js:18:19:24:1 | async f ... rces\\n\\n} | NosqlInjection | notASinkReason | JQueryArgument | string |
+| autogenerated/Xss/DomBasedXss/xmlRequest.js:18:19:24:1 | async f ... rces\\n\\n} | NosqlInjection | sinkLabel | NotASink | string |
+| autogenerated/Xss/DomBasedXss/xmlRequest.js:18:19:24:1 | async f ... rces\\n\\n} | SqlInjection | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/DomBasedXss/xmlRequest.js:18:19:24:1 | async f ... rces\\n\\n} | SqlInjection | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/xmlRequest.js:18:19:24:1 | async f ... rces\\n\\n} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/xmlRequest.js:18:19:24:1 | async f ... rces\\n\\n} | SqlInjection | notASinkReason | JQueryArgument | string |
+| autogenerated/Xss/DomBasedXss/xmlRequest.js:18:19:24:1 | async f ... rces\\n\\n} | SqlInjection | sinkLabel | NotASink | string |
+| autogenerated/Xss/DomBasedXss/xmlRequest.js:18:19:24:1 | async f ... rces\\n\\n} | TaintedPath | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/DomBasedXss/xmlRequest.js:18:19:24:1 | async f ... rces\\n\\n} | TaintedPath | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/xmlRequest.js:18:19:24:1 | async f ... rces\\n\\n} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/xmlRequest.js:18:19:24:1 | async f ... rces\\n\\n} | TaintedPath | notASinkReason | JQueryArgument | string |
+| autogenerated/Xss/DomBasedXss/xmlRequest.js:18:19:24:1 | async f ... rces\\n\\n} | TaintedPath | sinkLabel | NotASink | string |
+| autogenerated/Xss/DomBasedXss/xmlRequest.js:18:19:24:1 | async f ... rces\\n\\n} | Xss | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/DomBasedXss/xmlRequest.js:18:19:24:1 | async f ... rces\\n\\n} | Xss | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/xmlRequest.js:18:19:24:1 | async f ... rces\\n\\n} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/xmlRequest.js:18:19:24:1 | async f ... rces\\n\\n} | Xss | notASinkReason | JQueryArgument | string |
+| autogenerated/Xss/DomBasedXss/xmlRequest.js:18:19:24:1 | async f ... rces\\n\\n} | Xss | sinkLabel | NotASink | string |
+| autogenerated/Xss/DomBasedXss/xmlRequest.js:18:19:24:1 | async f ... rces\\n\\n} | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/DomBasedXss/xmlRequest.js:18:19:24:1 | async f ... rces\\n\\n} | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/xmlRequest.js:18:19:24:1 | async f ... rces\\n\\n} | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/xmlRequest.js:18:19:24:1 | async f ... rces\\n\\n} | XssThroughDom | notASinkReason | JQueryArgument | string |
+| autogenerated/Xss/DomBasedXss/xmlRequest.js:18:19:24:1 | async f ... rces\\n\\n} | XssThroughDom | sinkLabel | NotASink | string |
+| autogenerated/Xss/DomBasedXss/xmlRequest.js:22:24:22:35 | json.message | Xss | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/DomBasedXss/xmlRequest.js:22:24:22:35 | json.message | Xss | isConstantExpression | false | boolean |
+| autogenerated/Xss/DomBasedXss/xmlRequest.js:22:24:22:35 | json.message | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/DomBasedXss/xmlRequest.js:22:24:22:35 | json.message | Xss | sinkLabel | Sink | string |
+| autogenerated/Xss/ExceptionXss/ajv.js:16:37:19:1 | {\\n    n ... red()\\n} | NosqlInjection | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/ExceptionXss/ajv.js:16:37:19:1 | {\\n    n ... red()\\n} | NosqlInjection | isConstantExpression | false | boolean |
+| autogenerated/Xss/ExceptionXss/ajv.js:16:37:19:1 | {\\n    n ... red()\\n} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/ExceptionXss/ajv.js:16:37:19:1 | {\\n    n ... red()\\n} | NosqlInjection | notASinkReason | BuiltinCallName | string |
+| autogenerated/Xss/ExceptionXss/ajv.js:16:37:19:1 | {\\n    n ... red()\\n} | NosqlInjection | sinkLabel | NotASink | string |
+| autogenerated/Xss/ExceptionXss/ajv.js:16:37:19:1 | {\\n    n ... red()\\n} | SqlInjection | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/ExceptionXss/ajv.js:16:37:19:1 | {\\n    n ... red()\\n} | SqlInjection | isConstantExpression | false | boolean |
+| autogenerated/Xss/ExceptionXss/ajv.js:16:37:19:1 | {\\n    n ... red()\\n} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/ExceptionXss/ajv.js:16:37:19:1 | {\\n    n ... red()\\n} | SqlInjection | notASinkReason | BuiltinCallName | string |
+| autogenerated/Xss/ExceptionXss/ajv.js:16:37:19:1 | {\\n    n ... red()\\n} | SqlInjection | sinkLabel | NotASink | string |
+| autogenerated/Xss/ExceptionXss/ajv.js:16:37:19:1 | {\\n    n ... red()\\n} | TaintedPath | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/ExceptionXss/ajv.js:16:37:19:1 | {\\n    n ... red()\\n} | TaintedPath | isConstantExpression | false | boolean |
+| autogenerated/Xss/ExceptionXss/ajv.js:16:37:19:1 | {\\n    n ... red()\\n} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/ExceptionXss/ajv.js:16:37:19:1 | {\\n    n ... red()\\n} | TaintedPath | notASinkReason | BuiltinCallName | string |
+| autogenerated/Xss/ExceptionXss/ajv.js:16:37:19:1 | {\\n    n ... red()\\n} | TaintedPath | sinkLabel | NotASink | string |
+| autogenerated/Xss/ExceptionXss/ajv.js:16:37:19:1 | {\\n    n ... red()\\n} | Xss | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/ExceptionXss/ajv.js:16:37:19:1 | {\\n    n ... red()\\n} | Xss | isConstantExpression | false | boolean |
+| autogenerated/Xss/ExceptionXss/ajv.js:16:37:19:1 | {\\n    n ... red()\\n} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/ExceptionXss/ajv.js:16:37:19:1 | {\\n    n ... red()\\n} | Xss | notASinkReason | BuiltinCallName | string |
+| autogenerated/Xss/ExceptionXss/ajv.js:16:37:19:1 | {\\n    n ... red()\\n} | Xss | sinkLabel | NotASink | string |
+| autogenerated/Xss/ExceptionXss/ajv.js:16:37:19:1 | {\\n    n ... red()\\n} | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/ExceptionXss/ajv.js:16:37:19:1 | {\\n    n ... red()\\n} | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/Xss/ExceptionXss/ajv.js:16:37:19:1 | {\\n    n ... red()\\n} | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/ExceptionXss/ajv.js:16:37:19:1 | {\\n    n ... red()\\n} | XssThroughDom | notASinkReason | BuiltinCallName | string |
+| autogenerated/Xss/ExceptionXss/ajv.js:16:37:19:1 | {\\n    n ... red()\\n} | XssThroughDom | sinkLabel | NotASink | string |
 | autogenerated/Xss/ExceptionXss/exception-xss.js:11:18:11:18 | e | Xss | hasFlowFromSource | false | boolean |
 | autogenerated/Xss/ExceptionXss/exception-xss.js:11:18:11:18 | e | Xss | isConstantExpression | false | boolean |
 | autogenerated/Xss/ExceptionXss/exception-xss.js:11:18:11:18 | e | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
@@ -5352,6 +6819,26 @@ endpoints
 | autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:8:7:8:42 | "<span> ... /span>" | Xss | isConstantExpression | false | boolean |
 | autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:8:7:8:42 | "<span> ... /span>" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
 | autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:8:7:8:42 | "<span> ... /span>" | Xss | sinkLabel | Sink | string |
+| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:12:20:12:53 | "<span> ... /span>" | Xss | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:12:20:12:53 | "<span> ... /span>" | Xss | isConstantExpression | false | boolean |
+| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:12:20:12:53 | "<span> ... /span>" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:12:20:12:53 | "<span> ... /span>" | Xss | sinkLabel | Sink | string |
+| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:14:20:14:47 | "<span> ... /span>" | Xss | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:14:20:14:47 | "<span> ... /span>" | Xss | isConstantExpression | false | boolean |
+| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:14:20:14:47 | "<span> ... /span>" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:14:20:14:47 | "<span> ... /span>" | Xss | sinkLabel | Sink | string |
+| autogenerated/Xss/UnsafeHtmlConstruction/lib2/index.ts:3:49:3:52 | html | Xss | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/UnsafeHtmlConstruction/lib2/index.ts:3:49:3:52 | html | Xss | isConstantExpression | false | boolean |
+| autogenerated/Xss/UnsafeHtmlConstruction/lib2/index.ts:3:49:3:52 | html | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/UnsafeHtmlConstruction/lib2/index.ts:3:49:3:52 | html | Xss | sinkLabel | Sink | string |
+| autogenerated/Xss/UnsafeHtmlConstruction/lib2/src/MyNode.ts:3:49:3:52 | html | Xss | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/UnsafeHtmlConstruction/lib2/src/MyNode.ts:3:49:3:52 | html | Xss | isConstantExpression | false | boolean |
+| autogenerated/Xss/UnsafeHtmlConstruction/lib2/src/MyNode.ts:3:49:3:52 | html | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/UnsafeHtmlConstruction/lib2/src/MyNode.ts:3:49:3:52 | html | Xss | sinkLabel | Sink | string |
+| autogenerated/Xss/UnsafeHtmlConstruction/lib/src/MyNode.ts:3:49:3:52 | html | Xss | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/UnsafeHtmlConstruction/lib/src/MyNode.ts:3:49:3:52 | html | Xss | isConstantExpression | false | boolean |
+| autogenerated/Xss/UnsafeHtmlConstruction/lib/src/MyNode.ts:3:49:3:52 | html | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/UnsafeHtmlConstruction/lib/src/MyNode.ts:3:49:3:52 | html | Xss | sinkLabel | Sink | string |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:3:49:3:52 | html | Xss | hasFlowFromSource | false | boolean |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:3:49:3:52 | html | Xss | isConstantExpression | false | boolean |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:3:49:3:52 | html | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
@@ -5491,6 +6978,46 @@ endpoints
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:76:53:76:56 | html | Xss | isConstantExpression | false | boolean |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:76:53:76:56 | html | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:76:53:76:56 | html | Xss | sinkLabel | Sink | string |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:81:24:81:49 | "<span> ... /span>" | Xss | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:81:24:81:49 | "<span> ... /span>" | Xss | isConstantExpression | false | boolean |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:81:24:81:49 | "<span> ... /span>" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:81:24:81:49 | "<span> ... /span>" | Xss | sinkLabel | Sink | string |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:83:24:83:49 | "<span> ... /span>" | Xss | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:83:24:83:49 | "<span> ... /span>" | Xss | isConstantExpression | false | boolean |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:83:24:83:49 | "<span> ... /span>" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:83:24:83:49 | "<span> ... /span>" | Xss | sinkLabel | Sink | string |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:85:24:85:49 | "<span> ... /span>" | Xss | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:85:24:85:49 | "<span> ... /span>" | Xss | isConstantExpression | false | boolean |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:85:24:85:49 | "<span> ... /span>" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:85:24:85:49 | "<span> ... /span>" | Xss | sinkLabel | Sink | string |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:94:20:94:32 | createHTML(x) | Xss | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:94:20:94:32 | createHTML(x) | Xss | isConstantExpression | false | boolean |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:94:20:94:32 | createHTML(x) | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:94:20:94:32 | createHTML(x) | Xss | sinkLabel | Sink | string |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:100:24:100:26 | svg | Xss | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:100:24:100:26 | svg | Xss | isConstantExpression | false | boolean |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:100:24:100:26 | svg | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:100:24:100:26 | svg | Xss | sinkLabel | Sink | string |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:103:20:103:44 | myMerma ... id", x) | Xss | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:103:20:103:44 | myMerma ... id", x) | Xss | isConstantExpression | false | boolean |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:103:20:103:44 | myMerma ... id", x) | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:103:20:103:44 | myMerma ... id", x) | Xss | sinkLabel | Sink | string |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:106:24:106:26 | svg | Xss | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:106:24:106:26 | svg | Xss | isConstantExpression | false | boolean |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:106:24:106:26 | svg | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:106:24:106:26 | svg | Xss | sinkLabel | Sink | string |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:109:20:109:42 | mermaid ... id", x) | Xss | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:109:20:109:42 | mermaid ... id", x) | Xss | isConstantExpression | false | boolean |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:109:20:109:42 | mermaid ... id", x) | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:109:20:109:42 | mermaid ... id", x) | Xss | sinkLabel | Sink | string |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:112:24:112:26 | svg | Xss | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:112:24:112:26 | svg | Xss | isConstantExpression | false | boolean |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:112:24:112:26 | svg | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:112:24:112:26 | svg | Xss | sinkLabel | Sink | string |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:118:53:118:56 | html | Xss | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:118:53:118:56 | html | Xss | isConstantExpression | false | boolean |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:118:53:118:56 | html | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:118:53:118:56 | html | Xss | sinkLabel | Sink | string |
 | autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:3:31:3:34 | html | Xss | hasFlowFromSource | false | boolean |
 | autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:3:31:3:34 | html | Xss | isConstantExpression | false | boolean |
 | autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:3:31:3:34 | html | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
@@ -6174,6 +7701,85 @@ endpoints
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:182:20:182:33 | options.target | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:182:20:182:33 | options.target | XssThroughDom | notASinkReason | JQueryArgument | string |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:182:20:182:33 | options.target | XssThroughDom | sinkLabel | NotASink | string |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:190:23:190:24 | {} | NosqlInjection | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:190:23:190:24 | {} | NosqlInjection | isConstantExpression | false | boolean |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:190:23:190:24 | {} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:190:23:190:24 | {} | NosqlInjection | notASinkReason | JQueryArgument | string |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:190:23:190:24 | {} | NosqlInjection | sinkLabel | NotASink | string |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:190:23:190:24 | {} | SqlInjection | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:190:23:190:24 | {} | SqlInjection | isConstantExpression | false | boolean |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:190:23:190:24 | {} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:190:23:190:24 | {} | SqlInjection | notASinkReason | JQueryArgument | string |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:190:23:190:24 | {} | SqlInjection | sinkLabel | NotASink | string |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:190:23:190:24 | {} | TaintedPath | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:190:23:190:24 | {} | TaintedPath | isConstantExpression | false | boolean |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:190:23:190:24 | {} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:190:23:190:24 | {} | TaintedPath | notASinkReason | JQueryArgument | string |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:190:23:190:24 | {} | TaintedPath | sinkLabel | NotASink | string |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:190:23:190:24 | {} | Xss | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:190:23:190:24 | {} | Xss | isConstantExpression | false | boolean |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:190:23:190:24 | {} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:190:23:190:24 | {} | Xss | notASinkReason | JQueryArgument | string |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:190:23:190:24 | {} | Xss | sinkLabel | NotASink | string |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:190:23:190:24 | {} | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:190:23:190:24 | {} | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:190:23:190:24 | {} | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:190:23:190:24 | {} | XssThroughDom | notASinkReason | JQueryArgument | string |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:190:23:190:24 | {} | XssThroughDom | sinkLabel | NotASink | string |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:190:27:190:33 | options | NosqlInjection | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:190:27:190:33 | options | NosqlInjection | isConstantExpression | false | boolean |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:190:27:190:33 | options | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:190:27:190:33 | options | NosqlInjection | notASinkReason | JQueryArgument | string |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:190:27:190:33 | options | NosqlInjection | sinkLabel | NotASink | string |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:190:27:190:33 | options | SqlInjection | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:190:27:190:33 | options | SqlInjection | isConstantExpression | false | boolean |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:190:27:190:33 | options | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:190:27:190:33 | options | SqlInjection | notASinkReason | JQueryArgument | string |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:190:27:190:33 | options | SqlInjection | sinkLabel | NotASink | string |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:190:27:190:33 | options | TaintedPath | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:190:27:190:33 | options | TaintedPath | isConstantExpression | false | boolean |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:190:27:190:33 | options | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:190:27:190:33 | options | TaintedPath | notASinkReason | JQueryArgument | string |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:190:27:190:33 | options | TaintedPath | sinkLabel | NotASink | string |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:190:27:190:33 | options | Xss | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:190:27:190:33 | options | Xss | isConstantExpression | false | boolean |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:190:27:190:33 | options | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:190:27:190:33 | options | Xss | notASinkReason | JQueryArgument | string |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:190:27:190:33 | options | Xss | sinkLabel | NotASink | string |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:190:27:190:33 | options | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:190:27:190:33 | options | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:190:27:190:33 | options | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:190:27:190:33 | options | XssThroughDom | notASinkReason | JQueryArgument | string |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:190:27:190:33 | options | XssThroughDom | sinkLabel | NotASink | string |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:192:19:192:28 | options.of | Xss | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:192:19:192:28 | options.of | Xss | isConstantExpression | false | boolean |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:192:19:192:28 | options.of | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:192:19:192:28 | options.of | Xss | sinkLabel | Sink | string |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:193:15:193:20 | target | NosqlInjection | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:193:15:193:20 | target | NosqlInjection | isConstantExpression | false | boolean |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:193:15:193:20 | target | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:193:15:193:20 | target | NosqlInjection | notASinkReason | LoggerMethod | string |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:193:15:193:20 | target | NosqlInjection | sinkLabel | NotASink | string |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:193:15:193:20 | target | SqlInjection | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:193:15:193:20 | target | SqlInjection | isConstantExpression | false | boolean |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:193:15:193:20 | target | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:193:15:193:20 | target | SqlInjection | notASinkReason | LoggerMethod | string |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:193:15:193:20 | target | SqlInjection | sinkLabel | NotASink | string |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:193:15:193:20 | target | TaintedPath | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:193:15:193:20 | target | TaintedPath | isConstantExpression | false | boolean |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:193:15:193:20 | target | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:193:15:193:20 | target | TaintedPath | notASinkReason | LoggerMethod | string |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:193:15:193:20 | target | TaintedPath | sinkLabel | NotASink | string |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:193:15:193:20 | target | Xss | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:193:15:193:20 | target | Xss | isConstantExpression | false | boolean |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:193:15:193:20 | target | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:193:15:193:20 | target | Xss | notASinkReason | LoggerMethod | string |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:193:15:193:20 | target | Xss | sinkLabel | NotASink | string |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:193:15:193:20 | target | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:193:15:193:20 | target | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:193:15:193:20 | target | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:193:15:193:20 | target | XssThroughDom | notASinkReason | LoggerMethod | string |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:193:15:193:20 | target | XssThroughDom | sinkLabel | NotASink | string |
 | autogenerated/Xss/XssThroughDom/forms.js:9:31:9:40 | values.foo | Xss | hasFlowFromSource | false | boolean |
 | autogenerated/Xss/XssThroughDom/forms.js:9:31:9:40 | values.foo | Xss | isConstantExpression | false | boolean |
 | autogenerated/Xss/XssThroughDom/forms.js:9:31:9:40 | values.foo | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
@@ -6421,6 +8027,150 @@ endpoints
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:39:90:42 | this | Xss | isConstantExpression | false | boolean |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:39:90:42 | this | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:39:90:42 | this | Xss | sinkLabel | Sink | string |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:93:16:93:46 | $("#foo ... ].value | Xss | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:93:16:93:46 | $("#foo ... ].value | Xss | isConstantExpression | false | boolean |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:93:16:93:46 | $("#foo ... ].value | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:93:16:93:46 | $("#foo ... ].value | Xss | sinkLabel | Sink | string |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:96:17:96:47 | $("#foo ... ].value | Xss | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:96:17:96:47 | $("#foo ... ].value | Xss | isConstantExpression | false | boolean |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:96:17:96:47 | $("#foo ... ].value | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:96:17:96:47 | $("#foo ... ].value | Xss | sinkLabel | Sink | string |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:109:31:109:70 | "<a src ... oo</a>" | Xss | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:109:31:109:70 | "<a src ... oo</a>" | Xss | isConstantExpression | false | boolean |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:109:31:109:70 | "<a src ... oo</a>" | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:109:31:109:70 | "<a src ... oo</a>" | Xss | sinkLabel | Sink | string |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:115:16:115:18 | src | Xss | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:115:16:115:18 | src | Xss | isConstantExpression | false | boolean |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:115:16:115:18 | src | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:115:16:115:18 | src | Xss | sinkLabel | Sink | string |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:117:26:117:28 | src | Xss | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:117:26:117:28 | src | Xss | isConstantExpression | false | boolean |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:117:26:117:28 | src | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:117:26:117:28 | src | Xss | sinkLabel | Sink | string |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:120:23:120:45 | ev.targ ... 0].name | Xss | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:120:23:120:45 | ev.targ ... 0].name | Xss | isConstantExpression | false | boolean |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:120:23:120:45 | ev.targ ... 0].name | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:120:23:120:45 | ev.targ ... 0].name | Xss | sinkLabel | Sink | string |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:122:33:122:71 | URL.cre ... les[0]) | Xss | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:122:33:122:71 | URL.cre ... les[0]) | Xss | isConstantExpression | false | boolean |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:122:33:122:71 | URL.cre ... les[0]) | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:122:33:122:71 | URL.cre ... les[0]) | Xss | sinkLabel | Sink | string |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:131:19:131:26 | linkText | Xss | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:131:19:131:26 | linkText | Xss | isConstantExpression | false | boolean |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:131:19:131:26 | linkText | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:131:19:131:26 | linkText | Xss | sinkLabel | Sink | string |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:132:16:132:23 | linkText | Xss | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:132:16:132:23 | linkText | Xss | isConstantExpression | false | boolean |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:132:16:132:23 | linkText | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:132:16:132:23 | linkText | Xss | sinkLabel | Sink | string |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:140:19:140:21 | src | Xss | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:140:19:140:21 | src | Xss | isConstantExpression | false | boolean |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:140:19:140:21 | src | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:140:19:140:21 | src | Xss | sinkLabel | Sink | string |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:141:25:141:27 | src | Xss | hasFlowFromSource | false | boolean |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:141:25:141:27 | src | Xss | isConstantExpression | false | boolean |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:141:25:141:27 | src | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:141:25:141:27 | src | Xss | sinkLabel | Sink | string |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:29:29:29:32 | text | NosqlInjection | hasFlowFromSource | false | boolean |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:29:29:29:32 | text | NosqlInjection | isConstantExpression | false | boolean |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:29:29:29:32 | text | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:29:29:29:32 | text | NosqlInjection | notASinkReason | StringRegExpTest | string |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:29:29:29:32 | text | NosqlInjection | sinkLabel | NotASink | string |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:29:29:29:32 | text | SqlInjection | hasFlowFromSource | false | boolean |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:29:29:29:32 | text | SqlInjection | isConstantExpression | false | boolean |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:29:29:29:32 | text | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:29:29:29:32 | text | SqlInjection | notASinkReason | StringRegExpTest | string |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:29:29:29:32 | text | SqlInjection | sinkLabel | NotASink | string |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:29:29:29:32 | text | TaintedPath | hasFlowFromSource | false | boolean |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:29:29:29:32 | text | TaintedPath | isConstantExpression | false | boolean |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:29:29:29:32 | text | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:29:29:29:32 | text | TaintedPath | notASinkReason | StringRegExpTest | string |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:29:29:29:32 | text | TaintedPath | sinkLabel | NotASink | string |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:29:29:29:32 | text | Xss | hasFlowFromSource | false | boolean |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:29:29:29:32 | text | Xss | isConstantExpression | false | boolean |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:29:29:29:32 | text | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:29:29:29:32 | text | Xss | notASinkReason | StringRegExpTest | string |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:29:29:29:32 | text | Xss | sinkLabel | NotASink | string |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:29:29:29:32 | text | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:29:29:29:32 | text | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:29:29:29:32 | text | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:29:29:29:32 | text | XssThroughDom | notASinkReason | StringRegExpTest | string |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:29:29:29:32 | text | XssThroughDom | sinkLabel | NotASink | string |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:58:40:58:42 | beg | NosqlInjection | hasFlowFromSource | false | boolean |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:58:40:58:42 | beg | NosqlInjection | isConstantExpression | false | boolean |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:58:40:58:42 | beg | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:58:40:58:42 | beg | NosqlInjection | notASinkReason | BuiltinCallName | string |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:58:40:58:42 | beg | NosqlInjection | sinkLabel | NotASink | string |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:58:40:58:42 | beg | SqlInjection | hasFlowFromSource | false | boolean |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:58:40:58:42 | beg | SqlInjection | isConstantExpression | false | boolean |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:58:40:58:42 | beg | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:58:40:58:42 | beg | SqlInjection | notASinkReason | BuiltinCallName | string |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:58:40:58:42 | beg | SqlInjection | sinkLabel | NotASink | string |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:58:40:58:42 | beg | TaintedPath | hasFlowFromSource | false | boolean |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:58:40:58:42 | beg | TaintedPath | isConstantExpression | false | boolean |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:58:40:58:42 | beg | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:58:40:58:42 | beg | TaintedPath | notASinkReason | BuiltinCallName | string |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:58:40:58:42 | beg | TaintedPath | sinkLabel | NotASink | string |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:58:40:58:42 | beg | Xss | hasFlowFromSource | false | boolean |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:58:40:58:42 | beg | Xss | isConstantExpression | false | boolean |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:58:40:58:42 | beg | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:58:40:58:42 | beg | Xss | notASinkReason | BuiltinCallName | string |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:58:40:58:42 | beg | Xss | sinkLabel | NotASink | string |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:58:40:58:42 | beg | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:58:40:58:42 | beg | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:58:40:58:42 | beg | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:58:40:58:42 | beg | XssThroughDom | notASinkReason | BuiltinCallName | string |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:58:40:58:42 | beg | XssThroughDom | sinkLabel | NotASink | string |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:149:12:149:40 | {specif ... me : a} | NosqlInjection | hasFlowFromSource | false | boolean |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:149:12:149:40 | {specif ... me : a} | NosqlInjection | isConstantExpression | false | boolean |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:149:12:149:40 | {specif ... me : a} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:149:12:149:40 | {specif ... me : a} | NosqlInjection | notASinkReason | BuiltinCallName | string |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:149:12:149:40 | {specif ... me : a} | NosqlInjection | sinkLabel | NotASink | string |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:149:12:149:40 | {specif ... me : a} | SqlInjection | hasFlowFromSource | false | boolean |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:149:12:149:40 | {specif ... me : a} | SqlInjection | isConstantExpression | false | boolean |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:149:12:149:40 | {specif ... me : a} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:149:12:149:40 | {specif ... me : a} | SqlInjection | notASinkReason | BuiltinCallName | string |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:149:12:149:40 | {specif ... me : a} | SqlInjection | sinkLabel | NotASink | string |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:149:12:149:40 | {specif ... me : a} | TaintedPath | hasFlowFromSource | false | boolean |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:149:12:149:40 | {specif ... me : a} | TaintedPath | isConstantExpression | false | boolean |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:149:12:149:40 | {specif ... me : a} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:149:12:149:40 | {specif ... me : a} | TaintedPath | notASinkReason | BuiltinCallName | string |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:149:12:149:40 | {specif ... me : a} | TaintedPath | sinkLabel | NotASink | string |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:149:12:149:40 | {specif ... me : a} | Xss | hasFlowFromSource | false | boolean |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:149:12:149:40 | {specif ... me : a} | Xss | isConstantExpression | false | boolean |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:149:12:149:40 | {specif ... me : a} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:149:12:149:40 | {specif ... me : a} | Xss | notASinkReason | BuiltinCallName | string |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:149:12:149:40 | {specif ... me : a} | Xss | sinkLabel | NotASink | string |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:149:12:149:40 | {specif ... me : a} | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:149:12:149:40 | {specif ... me : a} | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:149:12:149:40 | {specif ... me : a} | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:149:12:149:40 | {specif ... me : a} | XssThroughDom | notASinkReason | BuiltinCallName | string |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:149:12:149:40 | {specif ... me : a} | XssThroughDom | sinkLabel | NotASink | string |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:153:12:153:40 | {specif ... me : a} | NosqlInjection | hasFlowFromSource | false | boolean |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:153:12:153:40 | {specif ... me : a} | NosqlInjection | isConstantExpression | false | boolean |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:153:12:153:40 | {specif ... me : a} | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:153:12:153:40 | {specif ... me : a} | NosqlInjection | notASinkReason | BuiltinCallName | string |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:153:12:153:40 | {specif ... me : a} | NosqlInjection | sinkLabel | NotASink | string |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:153:12:153:40 | {specif ... me : a} | SqlInjection | hasFlowFromSource | false | boolean |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:153:12:153:40 | {specif ... me : a} | SqlInjection | isConstantExpression | false | boolean |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:153:12:153:40 | {specif ... me : a} | SqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:153:12:153:40 | {specif ... me : a} | SqlInjection | notASinkReason | BuiltinCallName | string |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:153:12:153:40 | {specif ... me : a} | SqlInjection | sinkLabel | NotASink | string |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:153:12:153:40 | {specif ... me : a} | TaintedPath | hasFlowFromSource | false | boolean |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:153:12:153:40 | {specif ... me : a} | TaintedPath | isConstantExpression | false | boolean |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:153:12:153:40 | {specif ... me : a} | TaintedPath | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:153:12:153:40 | {specif ... me : a} | TaintedPath | notASinkReason | BuiltinCallName | string |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:153:12:153:40 | {specif ... me : a} | TaintedPath | sinkLabel | NotASink | string |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:153:12:153:40 | {specif ... me : a} | Xss | hasFlowFromSource | false | boolean |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:153:12:153:40 | {specif ... me : a} | Xss | isConstantExpression | false | boolean |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:153:12:153:40 | {specif ... me : a} | Xss | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:153:12:153:40 | {specif ... me : a} | Xss | notASinkReason | BuiltinCallName | string |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:153:12:153:40 | {specif ... me : a} | Xss | sinkLabel | NotASink | string |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:153:12:153:40 | {specif ... me : a} | XssThroughDom | hasFlowFromSource | false | boolean |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:153:12:153:40 | {specif ... me : a} | XssThroughDom | isConstantExpression | false | boolean |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:153:12:153:40 | {specif ... me : a} | XssThroughDom | isExcludedFromEndToEndEvaluation | false | boolean |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:153:12:153:40 | {specif ... me : a} | XssThroughDom | notASinkReason | BuiltinCallName | string |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:153:12:153:40 | {specif ... me : a} | XssThroughDom | sinkLabel | NotASink | string |
 | index.js:21:9:21:9 | x | NosqlInjection | hasFlowFromSource | false | boolean |
 | index.js:21:9:21:9 | x | NosqlInjection | isConstantExpression | false | boolean |
 | index.js:21:9:21:9 | x | NosqlInjection | isExcludedFromEndToEndEvaluation | false | boolean |
@@ -6601,6 +8351,246 @@ endpoints
 | index.js:50:15:50:19 | ready | XssThroughDom | notASinkReason | Timeout | string |
 | index.js:50:15:50:19 | ready | XssThroughDom | sinkLabel | NotASink | string |
 tokenFeatures
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:10:34:20:5 | `\\n      ... }\\n    ` | CalleeFlexibleAccessPath | kit.graphql |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:10:34:20:5 | `\\n      ... }\\n    ` | InputAccessPathFromCallee |  |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:10:34:20:5 | `\\n      ... }\\n    ` | InputArgumentIndex | 0 |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:10:34:20:5 | `\\n      ... }\\n    ` | assignedToPropName |  |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:10:34:20:5 | `\\n      ... }\\n    ` | calleeImports | @octokit/core |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:10:34:20:5 | `\\n      ... }\\n    ` | contextFunctionInterfaces | hello() |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:10:34:20:5 | `\\n      ... }\\n    ` | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:10:34:20:5 | `\\n      ... }\\n    ` | enclosingFunctionBody | req res id req params id response kit graphql \n      query {\n        repository(owner: "github", name: " id ") {\n          object(expression: "master:foo") {\n            ... on Blob {\n              text\n            }\n          }\n        }\n      }\n     |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:10:34:20:5 | `\\n      ... }\\n    ` | enclosingFunctionName | app.get#functionalargument |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:10:34:20:5 | `\\n      ... }\\n    ` | fileImports | @actions/github @octokit/core @octokit/graphql @octokit/request @octokit/rest express graphql |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:10:34:20:5 | `\\n      ... }\\n    ` | receiverName | kit |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:10:34:20:5 | `\\n      ... }\\n    ` | stringConcatenatedWith |  |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:27:30:27:40 | `foo ${id}` | CalleeFlexibleAccessPath | graphql |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:27:30:27:40 | `foo ${id}` | InputAccessPathFromCallee |  |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:27:30:27:40 | `foo ${id}` | InputArgumentIndex | 0 |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:27:30:27:40 | `foo ${id}` | assignedToPropName |  |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:27:30:27:40 | `foo ${id}` | calleeImports | @octokit/graphql |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:27:30:27:40 | `foo ${id}` | contextFunctionInterfaces | hello() |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:27:30:27:40 | `foo ${id}` | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:27:30:27:40 | `foo ${id}` | enclosingFunctionBody | req res id req params id response graphql foo  id myGraphql withCustomRequest request response myGraphql foo  id withDefaults graphql defaults withDefaults foo  id |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:27:30:27:40 | `foo ${id}` | enclosingFunctionName | app.get#functionalargument |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:27:30:27:40 | `foo ${id}` | fileImports | @actions/github @octokit/core @octokit/graphql @octokit/request @octokit/rest express graphql |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:27:30:27:40 | `foo ${id}` | receiverName |  |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:27:30:27:40 | `foo ${id}` | stringConcatenatedWith |  |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:30:32:30:42 | `foo ${id}` | CalleeFlexibleAccessPath | myGraphql |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:30:32:30:42 | `foo ${id}` | InputAccessPathFromCallee |  |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:30:32:30:42 | `foo ${id}` | InputArgumentIndex | 0 |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:30:32:30:42 | `foo ${id}` | assignedToPropName |  |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:30:32:30:42 | `foo ${id}` | calleeImports | @octokit/graphql |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:30:32:30:42 | `foo ${id}` | contextFunctionInterfaces | hello() |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:30:32:30:42 | `foo ${id}` | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:30:32:30:42 | `foo ${id}` | enclosingFunctionBody | req res id req params id response graphql foo  id myGraphql withCustomRequest request response myGraphql foo  id withDefaults graphql defaults withDefaults foo  id |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:30:32:30:42 | `foo ${id}` | enclosingFunctionName | app.get#functionalargument |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:30:32:30:42 | `foo ${id}` | fileImports | @actions/github @octokit/core @octokit/graphql @octokit/request @octokit/rest express graphql |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:30:32:30:42 | `foo ${id}` | receiverName |  |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:30:32:30:42 | `foo ${id}` | stringConcatenatedWith |  |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:33:18:33:28 | `foo ${id}` | CalleeFlexibleAccessPath | withDefaults |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:33:18:33:28 | `foo ${id}` | InputAccessPathFromCallee |  |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:33:18:33:28 | `foo ${id}` | InputArgumentIndex | 0 |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:33:18:33:28 | `foo ${id}` | assignedToPropName |  |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:33:18:33:28 | `foo ${id}` | calleeImports | @octokit/graphql |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:33:18:33:28 | `foo ${id}` | contextFunctionInterfaces | hello() |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:33:18:33:28 | `foo ${id}` | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:33:18:33:28 | `foo ${id}` | enclosingFunctionBody | req res id req params id response graphql foo  id myGraphql withCustomRequest request response myGraphql foo  id withDefaults graphql defaults withDefaults foo  id |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:33:18:33:28 | `foo ${id}` | enclosingFunctionName | app.get#functionalargument |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:33:18:33:28 | `foo ${id}` | fileImports | @actions/github @octokit/core @octokit/graphql @octokit/request @octokit/rest express graphql |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:33:18:33:28 | `foo ${id}` | receiverName |  |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:33:18:33:28 | `foo ${id}` | stringConcatenatedWith |  |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:40:51:45:5 | {\\n      ... K\\n    } | CalleeFlexibleAccessPath | request |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:40:51:45:5 | {\\n      ... K\\n    } | InputAccessPathFromCallee |  |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:40:51:45:5 | {\\n      ... K\\n    } | InputArgumentIndex | 1 |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:40:51:45:5 | {\\n      ... K\\n    } | assignedToPropName |  |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:40:51:45:5 | {\\n      ... K\\n    } | calleeImports | @octokit/request |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:40:51:45:5 | {\\n      ... K\\n    } | contextFunctionInterfaces | hello() |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:40:51:45:5 | {\\n      ... K\\n    } | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:40:51:45:5 | {\\n      ... K\\n    } | enclosingFunctionBody | req res id req params id result request POST /graphql headers authorization token 0000000000000000000000000000000000000001 query foo  id withDefaults request defaults withDefaults POST /graphql query foo  id |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:40:51:45:5 | {\\n      ... K\\n    } | enclosingFunctionName | app.get#functionalargument |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:40:51:45:5 | {\\n      ... K\\n    } | fileImports | @actions/github @octokit/core @octokit/graphql @octokit/request @octokit/rest express graphql |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:40:51:45:5 | {\\n      ... K\\n    } | receiverName |  |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:40:51:45:5 | {\\n      ... K\\n    } | stringConcatenatedWith |  |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:44:14:44:24 | `foo ${id}` | CalleeFlexibleAccessPath | request |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:44:14:44:24 | `foo ${id}` | InputAccessPathFromCallee | 1.query |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:44:14:44:24 | `foo ${id}` | InputArgumentIndex | 1 |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:44:14:44:24 | `foo ${id}` | assignedToPropName | query |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:44:14:44:24 | `foo ${id}` | calleeImports | @octokit/request |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:44:14:44:24 | `foo ${id}` | contextFunctionInterfaces | hello() |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:44:14:44:24 | `foo ${id}` | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:44:14:44:24 | `foo ${id}` | enclosingFunctionBody | req res id req params id result request POST /graphql headers authorization token 0000000000000000000000000000000000000001 query foo  id withDefaults request defaults withDefaults POST /graphql query foo  id |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:44:14:44:24 | `foo ${id}` | enclosingFunctionName | app.get#functionalargument |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:44:14:44:24 | `foo ${id}` | fileImports | @actions/github @octokit/core @octokit/graphql @octokit/request @octokit/rest express graphql |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:44:14:44:24 | `foo ${id}` | receiverName |  |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:44:14:44:24 | `foo ${id}` | stringConcatenatedWith |  |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:48:35:48:56 | { query ... {id}` } | CalleeFlexibleAccessPath | withDefaults |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:48:35:48:56 | { query ... {id}` } | InputAccessPathFromCallee |  |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:48:35:48:56 | { query ... {id}` } | InputArgumentIndex | 1 |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:48:35:48:56 | { query ... {id}` } | assignedToPropName |  |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:48:35:48:56 | { query ... {id}` } | calleeImports | @octokit/request |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:48:35:48:56 | { query ... {id}` } | contextFunctionInterfaces | hello() |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:48:35:48:56 | { query ... {id}` } | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:48:35:48:56 | { query ... {id}` } | enclosingFunctionBody | req res id req params id result request POST /graphql headers authorization token 0000000000000000000000000000000000000001 query foo  id withDefaults request defaults withDefaults POST /graphql query foo  id |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:48:35:48:56 | { query ... {id}` } | enclosingFunctionName | app.get#functionalargument |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:48:35:48:56 | { query ... {id}` } | fileImports | @actions/github @octokit/core @octokit/graphql @octokit/request @octokit/rest express graphql |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:48:35:48:56 | { query ... {id}` } | receiverName |  |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:48:35:48:56 | { query ... {id}` } | stringConcatenatedWith |  |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:48:44:48:54 | `foo ${id}` | CalleeFlexibleAccessPath | withDefaults |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:48:44:48:54 | `foo ${id}` | InputAccessPathFromCallee | 1.query |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:48:44:48:54 | `foo ${id}` | InputArgumentIndex | 1 |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:48:44:48:54 | `foo ${id}` | assignedToPropName | query |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:48:44:48:54 | `foo ${id}` | calleeImports | @octokit/request |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:48:44:48:54 | `foo ${id}` | contextFunctionInterfaces | hello() |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:48:44:48:54 | `foo ${id}` | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:48:44:48:54 | `foo ${id}` | enclosingFunctionBody | req res id req params id result request POST /graphql headers authorization token 0000000000000000000000000000000000000001 query foo  id withDefaults request defaults withDefaults POST /graphql query foo  id |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:48:44:48:54 | `foo ${id}` | enclosingFunctionName | app.get#functionalargument |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:48:44:48:54 | `foo ${id}` | fileImports | @actions/github @octokit/core @octokit/graphql @octokit/request @octokit/rest express graphql |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:48:44:48:54 | `foo ${id}` | receiverName |  |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:48:44:48:54 | `foo ${id}` | stringConcatenatedWith |  |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:56:39:56:49 | `foo ${id}` | CalleeFlexibleAccessPath | kit2.graphql |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:56:39:56:49 | `foo ${id}` | InputAccessPathFromCallee |  |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:56:39:56:49 | `foo ${id}` | InputArgumentIndex | 0 |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:56:39:56:49 | `foo ${id}` | assignedToPropName |  |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:56:39:56:49 | `foo ${id}` | calleeImports | @octokit/rest |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:56:39:56:49 | `foo ${id}` | contextFunctionInterfaces | hello() |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:56:39:56:49 | `foo ${id}` | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:56:39:56:49 | `foo ${id}` | enclosingFunctionBody | req res id req params id result kit2 graphql foo  id result2 kit2 request POST /graphql query foo  id |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:56:39:56:49 | `foo ${id}` | enclosingFunctionName | app.get#functionalargument |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:56:39:56:49 | `foo ${id}` | fileImports | @actions/github @octokit/core @octokit/graphql @octokit/request @octokit/rest express graphql |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:56:39:56:49 | `foo ${id}` | receiverName | kit2 |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:56:39:56:49 | `foo ${id}` | stringConcatenatedWith |  |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:58:57:58:78 | { query ... {id}` } | CalleeFlexibleAccessPath | kit2.request |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:58:57:58:78 | { query ... {id}` } | InputAccessPathFromCallee |  |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:58:57:58:78 | { query ... {id}` } | InputArgumentIndex | 1 |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:58:57:58:78 | { query ... {id}` } | assignedToPropName |  |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:58:57:58:78 | { query ... {id}` } | calleeImports | @octokit/rest |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:58:57:58:78 | { query ... {id}` } | contextFunctionInterfaces | hello() |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:58:57:58:78 | { query ... {id}` } | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:58:57:58:78 | { query ... {id}` } | enclosingFunctionBody | req res id req params id result kit2 graphql foo  id result2 kit2 request POST /graphql query foo  id |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:58:57:58:78 | { query ... {id}` } | enclosingFunctionName | app.get#functionalargument |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:58:57:58:78 | { query ... {id}` } | fileImports | @actions/github @octokit/core @octokit/graphql @octokit/request @octokit/rest express graphql |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:58:57:58:78 | { query ... {id}` } | receiverName | kit2 |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:58:57:58:78 | { query ... {id}` } | stringConcatenatedWith |  |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:58:66:58:76 | `foo ${id}` | CalleeFlexibleAccessPath | kit2.request |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:58:66:58:76 | `foo ${id}` | InputAccessPathFromCallee | 1.query |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:58:66:58:76 | `foo ${id}` | InputArgumentIndex | 1 |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:58:66:58:76 | `foo ${id}` | assignedToPropName | query |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:58:66:58:76 | `foo ${id}` | calleeImports | @octokit/rest |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:58:66:58:76 | `foo ${id}` | contextFunctionInterfaces | hello() |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:58:66:58:76 | `foo ${id}` | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:58:66:58:76 | `foo ${id}` | enclosingFunctionBody | req res id req params id result kit2 graphql foo  id result2 kit2 request POST /graphql query foo  id |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:58:66:58:76 | `foo ${id}` | enclosingFunctionName | app.get#functionalargument |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:58:66:58:76 | `foo ${id}` | fileImports | @actions/github @octokit/core @octokit/graphql @octokit/request @octokit/rest express graphql |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:58:66:58:76 | `foo ${id}` | receiverName |  |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:58:66:58:76 | `foo ${id}` | stringConcatenatedWith |  |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:75:46:75:64 | "{ foo" + id + " }" | CalleeFlexibleAccessPath | nativeGraphql |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:75:46:75:64 | "{ foo" + id + " }" | InputAccessPathFromCallee |  |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:75:46:75:64 | "{ foo" + id + " }" | InputArgumentIndex | 1 |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:75:46:75:64 | "{ foo" + id + " }" | assignedToPropName |  |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:75:46:75:64 | "{ foo" + id + " }" | calleeImports | graphql |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:75:46:75:64 | "{ foo" + id + " }" | contextFunctionInterfaces | hello() |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:75:46:75:64 | "{ foo" + id + " }" | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:75:46:75:64 | "{ foo" + id + " }" | enclosingFunctionBody | req res id req query id result nativeGraphql schema { foo id  } root fetch https://my-grpahql-server.com/graphql method POST headers Content-Type application/json body JSON stringify query {\n        thing {\n          name\n          url\n           id \n        }\n      } fetch https://my-grpahql-server.com/graphql method POST headers Content-Type application/json body JSON stringify query {\n        thing {\n          name\n          url\n          $id\n        }\n      } variables id id |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:75:46:75:64 | "{ foo" + id + " }" | enclosingFunctionName | app.get#functionalargument |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:75:46:75:64 | "{ foo" + id + " }" | fileImports | @actions/github @octokit/core @octokit/graphql @octokit/request @octokit/rest express graphql |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:75:46:75:64 | "{ foo" + id + " }" | receiverName |  |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:75:46:75:64 | "{ foo" + id + " }" | stringConcatenatedWith |  |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:77:50:92:3 | {\\n    m ...  })\\n  } | CalleeFlexibleAccessPath | fetch |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:77:50:92:3 | {\\n    m ...  })\\n  } | InputAccessPathFromCallee |  |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:77:50:92:3 | {\\n    m ...  })\\n  } | InputArgumentIndex | 1 |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:77:50:92:3 | {\\n    m ...  })\\n  } | assignedToPropName |  |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:77:50:92:3 | {\\n    m ...  })\\n  } | calleeImports |  |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:77:50:92:3 | {\\n    m ...  })\\n  } | contextFunctionInterfaces | hello() |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:77:50:92:3 | {\\n    m ...  })\\n  } | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:77:50:92:3 | {\\n    m ...  })\\n  } | enclosingFunctionBody | req res id req query id result nativeGraphql schema { foo id  } root fetch https://my-grpahql-server.com/graphql method POST headers Content-Type application/json body JSON stringify query {\n        thing {\n          name\n          url\n           id \n        }\n      } fetch https://my-grpahql-server.com/graphql method POST headers Content-Type application/json body JSON stringify query {\n        thing {\n          name\n          url\n          $id\n        }\n      } variables id id |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:77:50:92:3 | {\\n    m ...  })\\n  } | enclosingFunctionName | app.get#functionalargument |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:77:50:92:3 | {\\n    m ...  })\\n  } | fileImports | @actions/github @octokit/core @octokit/graphql @octokit/request @octokit/rest express graphql |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:77:50:92:3 | {\\n    m ...  })\\n  } | receiverName |  |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:77:50:92:3 | {\\n    m ...  })\\n  } | stringConcatenatedWith |  |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:79:14:81:5 | {\\n      ... "\\n    } | CalleeFlexibleAccessPath | fetch |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:79:14:81:5 | {\\n      ... "\\n    } | InputAccessPathFromCallee | 1.headers |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:79:14:81:5 | {\\n      ... "\\n    } | InputArgumentIndex | 1 |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:79:14:81:5 | {\\n      ... "\\n    } | assignedToPropName | headers |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:79:14:81:5 | {\\n      ... "\\n    } | calleeImports |  |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:79:14:81:5 | {\\n      ... "\\n    } | contextFunctionInterfaces | hello() |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:79:14:81:5 | {\\n      ... "\\n    } | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:79:14:81:5 | {\\n      ... "\\n    } | enclosingFunctionBody | req res id req query id result nativeGraphql schema { foo id  } root fetch https://my-grpahql-server.com/graphql method POST headers Content-Type application/json body JSON stringify query {\n        thing {\n          name\n          url\n           id \n        }\n      } fetch https://my-grpahql-server.com/graphql method POST headers Content-Type application/json body JSON stringify query {\n        thing {\n          name\n          url\n          $id\n        }\n      } variables id id |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:79:14:81:5 | {\\n      ... "\\n    } | enclosingFunctionName | app.get#functionalargument |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:79:14:81:5 | {\\n      ... "\\n    } | fileImports | @actions/github @octokit/core @octokit/graphql @octokit/request @octokit/rest express graphql |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:79:14:81:5 | {\\n      ... "\\n    } | receiverName |  |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:79:14:81:5 | {\\n      ... "\\n    } | stringConcatenatedWith |  |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:82:11:91:6 | JSON.st ... \\n    }) | CalleeFlexibleAccessPath | fetch |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:82:11:91:6 | JSON.st ... \\n    }) | InputAccessPathFromCallee | 1.body |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:82:11:91:6 | JSON.st ... \\n    }) | InputArgumentIndex | 1 |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:82:11:91:6 | JSON.st ... \\n    }) | assignedToPropName | body |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:82:11:91:6 | JSON.st ... \\n    }) | calleeImports |  |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:82:11:91:6 | JSON.st ... \\n    }) | contextFunctionInterfaces | hello() |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:82:11:91:6 | JSON.st ... \\n    }) | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:82:11:91:6 | JSON.st ... \\n    }) | enclosingFunctionBody | req res id req query id result nativeGraphql schema { foo id  } root fetch https://my-grpahql-server.com/graphql method POST headers Content-Type application/json body JSON stringify query {\n        thing {\n          name\n          url\n           id \n        }\n      } fetch https://my-grpahql-server.com/graphql method POST headers Content-Type application/json body JSON stringify query {\n        thing {\n          name\n          url\n          $id\n        }\n      } variables id id |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:82:11:91:6 | JSON.st ... \\n    }) | enclosingFunctionName | app.get#functionalargument |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:82:11:91:6 | JSON.st ... \\n    }) | fileImports | @actions/github @octokit/core @octokit/graphql @octokit/request @octokit/rest express graphql |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:82:11:91:6 | JSON.st ... \\n    }) | receiverName |  |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:82:11:91:6 | JSON.st ... \\n    }) | stringConcatenatedWith |  |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:84:14:90:8 | `{\\n     ...      }` | CalleeFlexibleAccessPath | JSON.stringify |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:84:14:90:8 | `{\\n     ...      }` | InputAccessPathFromCallee | 0.query |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:84:14:90:8 | `{\\n     ...      }` | InputArgumentIndex | 0 |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:84:14:90:8 | `{\\n     ...      }` | assignedToPropName | query |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:84:14:90:8 | `{\\n     ...      }` | calleeImports |  |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:84:14:90:8 | `{\\n     ...      }` | contextFunctionInterfaces | hello() |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:84:14:90:8 | `{\\n     ...      }` | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:84:14:90:8 | `{\\n     ...      }` | enclosingFunctionBody | req res id req query id result nativeGraphql schema { foo id  } root fetch https://my-grpahql-server.com/graphql method POST headers Content-Type application/json body JSON stringify query {\n        thing {\n          name\n          url\n           id \n        }\n      } fetch https://my-grpahql-server.com/graphql method POST headers Content-Type application/json body JSON stringify query {\n        thing {\n          name\n          url\n          $id\n        }\n      } variables id id |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:84:14:90:8 | `{\\n     ...      }` | enclosingFunctionName | app.get#functionalargument |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:84:14:90:8 | `{\\n     ...      }` | fileImports | @actions/github @octokit/core @octokit/graphql @octokit/request @octokit/rest express graphql |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:84:14:90:8 | `{\\n     ...      }` | receiverName |  |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:84:14:90:8 | `{\\n     ...      }` | stringConcatenatedWith |  |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:94:50:112:3 | {\\n    m ...  })\\n  } | CalleeFlexibleAccessPath | fetch |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:94:50:112:3 | {\\n    m ...  })\\n  } | InputAccessPathFromCallee |  |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:94:50:112:3 | {\\n    m ...  })\\n  } | InputArgumentIndex | 1 |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:94:50:112:3 | {\\n    m ...  })\\n  } | assignedToPropName |  |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:94:50:112:3 | {\\n    m ...  })\\n  } | calleeImports |  |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:94:50:112:3 | {\\n    m ...  })\\n  } | contextFunctionInterfaces | hello() |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:94:50:112:3 | {\\n    m ...  })\\n  } | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:94:50:112:3 | {\\n    m ...  })\\n  } | enclosingFunctionBody | req res id req query id result nativeGraphql schema { foo id  } root fetch https://my-grpahql-server.com/graphql method POST headers Content-Type application/json body JSON stringify query {\n        thing {\n          name\n          url\n           id \n        }\n      } fetch https://my-grpahql-server.com/graphql method POST headers Content-Type application/json body JSON stringify query {\n        thing {\n          name\n          url\n          $id\n        }\n      } variables id id |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:94:50:112:3 | {\\n    m ...  })\\n  } | enclosingFunctionName | app.get#functionalargument |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:94:50:112:3 | {\\n    m ...  })\\n  } | fileImports | @actions/github @octokit/core @octokit/graphql @octokit/request @octokit/rest express graphql |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:94:50:112:3 | {\\n    m ...  })\\n  } | receiverName |  |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:94:50:112:3 | {\\n    m ...  })\\n  } | stringConcatenatedWith |  |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:96:14:98:5 | {\\n      ... "\\n    } | CalleeFlexibleAccessPath | fetch |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:96:14:98:5 | {\\n      ... "\\n    } | InputAccessPathFromCallee | 1.headers |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:96:14:98:5 | {\\n      ... "\\n    } | InputArgumentIndex | 1 |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:96:14:98:5 | {\\n      ... "\\n    } | assignedToPropName | headers |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:96:14:98:5 | {\\n      ... "\\n    } | calleeImports |  |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:96:14:98:5 | {\\n      ... "\\n    } | contextFunctionInterfaces | hello() |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:96:14:98:5 | {\\n      ... "\\n    } | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:96:14:98:5 | {\\n      ... "\\n    } | enclosingFunctionBody | req res id req query id result nativeGraphql schema { foo id  } root fetch https://my-grpahql-server.com/graphql method POST headers Content-Type application/json body JSON stringify query {\n        thing {\n          name\n          url\n           id \n        }\n      } fetch https://my-grpahql-server.com/graphql method POST headers Content-Type application/json body JSON stringify query {\n        thing {\n          name\n          url\n          $id\n        }\n      } variables id id |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:96:14:98:5 | {\\n      ... "\\n    } | enclosingFunctionName | app.get#functionalargument |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:96:14:98:5 | {\\n      ... "\\n    } | fileImports | @actions/github @octokit/core @octokit/graphql @octokit/request @octokit/rest express graphql |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:96:14:98:5 | {\\n      ... "\\n    } | receiverName |  |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:96:14:98:5 | {\\n      ... "\\n    } | stringConcatenatedWith |  |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:99:11:111:6 | JSON.st ... \\n    }) | CalleeFlexibleAccessPath | fetch |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:99:11:111:6 | JSON.st ... \\n    }) | InputAccessPathFromCallee | 1.body |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:99:11:111:6 | JSON.st ... \\n    }) | InputArgumentIndex | 1 |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:99:11:111:6 | JSON.st ... \\n    }) | assignedToPropName | body |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:99:11:111:6 | JSON.st ... \\n    }) | calleeImports |  |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:99:11:111:6 | JSON.st ... \\n    }) | contextFunctionInterfaces | hello() |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:99:11:111:6 | JSON.st ... \\n    }) | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:99:11:111:6 | JSON.st ... \\n    }) | enclosingFunctionBody | req res id req query id result nativeGraphql schema { foo id  } root fetch https://my-grpahql-server.com/graphql method POST headers Content-Type application/json body JSON stringify query {\n        thing {\n          name\n          url\n           id \n        }\n      } fetch https://my-grpahql-server.com/graphql method POST headers Content-Type application/json body JSON stringify query {\n        thing {\n          name\n          url\n          $id\n        }\n      } variables id id |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:99:11:111:6 | JSON.st ... \\n    }) | enclosingFunctionName | app.get#functionalargument |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:99:11:111:6 | JSON.st ... \\n    }) | fileImports | @actions/github @octokit/core @octokit/graphql @octokit/request @octokit/rest express graphql |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:99:11:111:6 | JSON.st ... \\n    }) | receiverName |  |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:99:11:111:6 | JSON.st ... \\n    }) | stringConcatenatedWith |  |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:120:38:120:48 | `foo ${id}` | CalleeFlexibleAccessPath | kit.graphql |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:120:38:120:48 | `foo ${id}` | InputAccessPathFromCallee |  |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:120:38:120:48 | `foo ${id}` | InputArgumentIndex | 0 |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:120:38:120:48 | `foo ${id}` | assignedToPropName |  |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:120:38:120:48 | `foo ${id}` | calleeImports | @actions/github |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:120:38:120:48 | `foo ${id}` | contextFunctionInterfaces | hello() |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:120:38:120:48 | `foo ${id}` | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:120:38:120:48 | `foo ${id}` | enclosingFunctionBody | req res kit github getOctokit foo id req params id result kit graphql foo  id |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:120:38:120:48 | `foo ${id}` | enclosingFunctionName | app.get#functionalargument |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:120:38:120:48 | `foo ${id}` | fileImports | @actions/github @octokit/core @octokit/graphql @octokit/request @octokit/rest express graphql |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:120:38:120:48 | `foo ${id}` | receiverName | kit |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:120:38:120:48 | `foo ${id}` | stringConcatenatedWith |  |
 | autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:27:22:27:26 | query | CalleeFlexibleAccessPath | doc.find |
 | autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:27:22:27:26 | query | InputAccessPathFromCallee |  |
 | autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:27:22:27:26 | query | InputArgumentIndex | 0 |
@@ -6610,7 +8600,7 @@ tokenFeatures
 | autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:27:22:27:26 | query | contextSurroundingFunctionParameters | (req, res)\n(err, db) |
 | autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:27:22:27:26 | query | enclosingFunctionBody | req res MongoClient connect mongodb://localhost:27017/test err db doc db collection doc query JSON parse req query data checkSchema query doc find query ajv validate schema query doc find query validate query doc find query doc find query |
 | autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:27:22:27:26 | query | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:27:22:27:26 | query | fileImports | ajv express mongodb |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:27:22:27:26 | query | fileImports | ajv express joi mongodb |
 | autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:27:22:27:26 | query | receiverName | doc |
 | autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:27:22:27:26 | query | stringConcatenatedWith |  |
 | autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:30:22:30:26 | query | CalleeFlexibleAccessPath | doc.find |
@@ -6622,7 +8612,7 @@ tokenFeatures
 | autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:30:22:30:26 | query | contextSurroundingFunctionParameters | (req, res)\n(err, db) |
 | autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:30:22:30:26 | query | enclosingFunctionBody | req res MongoClient connect mongodb://localhost:27017/test err db doc db collection doc query JSON parse req query data checkSchema query doc find query ajv validate schema query doc find query validate query doc find query doc find query |
 | autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:30:22:30:26 | query | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:30:22:30:26 | query | fileImports | ajv express mongodb |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:30:22:30:26 | query | fileImports | ajv express joi mongodb |
 | autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:30:22:30:26 | query | receiverName | doc |
 | autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:30:22:30:26 | query | stringConcatenatedWith |  |
 | autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:33:22:33:26 | query | CalleeFlexibleAccessPath | doc.find |
@@ -6634,7 +8624,7 @@ tokenFeatures
 | autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:33:22:33:26 | query | contextSurroundingFunctionParameters | (req, res)\n(err, db) |
 | autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:33:22:33:26 | query | enclosingFunctionBody | req res MongoClient connect mongodb://localhost:27017/test err db doc db collection doc query JSON parse req query data checkSchema query doc find query ajv validate schema query doc find query validate query doc find query doc find query |
 | autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:33:22:33:26 | query | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:33:22:33:26 | query | fileImports | ajv express mongodb |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:33:22:33:26 | query | fileImports | ajv express joi mongodb |
 | autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:33:22:33:26 | query | receiverName | doc |
 | autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:33:22:33:26 | query | stringConcatenatedWith |  |
 | autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:35:18:35:22 | query | CalleeFlexibleAccessPath | doc.find |
@@ -6646,9 +8636,129 @@ tokenFeatures
 | autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:35:18:35:22 | query | contextSurroundingFunctionParameters | (req, res)\n(err, db) |
 | autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:35:18:35:22 | query | enclosingFunctionBody | req res MongoClient connect mongodb://localhost:27017/test err db doc db collection doc query JSON parse req query data checkSchema query doc find query ajv validate schema query doc find query validate query doc find query doc find query |
 | autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:35:18:35:22 | query | enclosingFunctionName | app.post#functionalargument |
-| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:35:18:35:22 | query | fileImports | ajv express mongodb |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:35:18:35:22 | query | fileImports | ajv express joi mongodb |
 | autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:35:18:35:22 | query | receiverName | doc |
 | autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:35:18:35:22 | query | stringConcatenatedWith |  |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:53:22:53:26 | query | CalleeFlexibleAccessPath | doc.find |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:53:22:53:26 | query | InputAccessPathFromCallee |  |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:53:22:53:26 | query | InputArgumentIndex | 0 |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:53:22:53:26 | query | assignedToPropName |  |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:53:22:53:26 | query | calleeImports |  |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:53:22:53:26 | query | contextFunctionInterfaces | validate(x) |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:53:22:53:26 | query | contextSurroundingFunctionParameters | (req, res)\n(err, db) |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:53:22:53:26 | query | enclosingFunctionBody | req res MongoClient connect mongodb://localhost:27017/test err db doc db collection doc query JSON parse req query data validate joiSchema validate query validate error doc find query doc find query joiSchema validateAsync query doc find query e doc find query |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:53:22:53:26 | query | enclosingFunctionName | app.post#functionalargument |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:53:22:53:26 | query | fileImports | ajv express joi mongodb |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:53:22:53:26 | query | receiverName | doc |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:53:22:53:26 | query | stringConcatenatedWith |  |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:55:22:55:26 | query | CalleeFlexibleAccessPath | doc.find |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:55:22:55:26 | query | InputAccessPathFromCallee |  |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:55:22:55:26 | query | InputArgumentIndex | 0 |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:55:22:55:26 | query | assignedToPropName |  |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:55:22:55:26 | query | calleeImports |  |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:55:22:55:26 | query | contextFunctionInterfaces | validate(x) |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:55:22:55:26 | query | contextSurroundingFunctionParameters | (req, res)\n(err, db) |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:55:22:55:26 | query | enclosingFunctionBody | req res MongoClient connect mongodb://localhost:27017/test err db doc db collection doc query JSON parse req query data validate joiSchema validate query validate error doc find query doc find query joiSchema validateAsync query doc find query e doc find query |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:55:22:55:26 | query | enclosingFunctionName | app.post#functionalargument |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:55:22:55:26 | query | fileImports | ajv express joi mongodb |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:55:22:55:26 | query | receiverName | doc |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:55:22:55:26 | query | stringConcatenatedWith |  |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:59:22:59:26 | query | CalleeFlexibleAccessPath | doc.find |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:59:22:59:26 | query | InputAccessPathFromCallee |  |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:59:22:59:26 | query | InputArgumentIndex | 0 |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:59:22:59:26 | query | assignedToPropName |  |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:59:22:59:26 | query | calleeImports |  |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:59:22:59:26 | query | contextFunctionInterfaces | validate(x) |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:59:22:59:26 | query | contextSurroundingFunctionParameters | (req, res)\n(err, db) |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:59:22:59:26 | query | enclosingFunctionBody | req res MongoClient connect mongodb://localhost:27017/test err db doc db collection doc query JSON parse req query data validate joiSchema validate query validate error doc find query doc find query joiSchema validateAsync query doc find query e doc find query |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:59:22:59:26 | query | enclosingFunctionName | app.post#functionalargument |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:59:22:59:26 | query | fileImports | ajv express joi mongodb |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:59:22:59:26 | query | receiverName | doc |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:59:22:59:26 | query | stringConcatenatedWith |  |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:61:22:61:26 | query | CalleeFlexibleAccessPath | doc.find |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:61:22:61:26 | query | InputAccessPathFromCallee |  |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:61:22:61:26 | query | InputArgumentIndex | 0 |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:61:22:61:26 | query | assignedToPropName |  |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:61:22:61:26 | query | calleeImports |  |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:61:22:61:26 | query | contextFunctionInterfaces | validate(x) |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:61:22:61:26 | query | contextSurroundingFunctionParameters | (req, res)\n(err, db) |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:61:22:61:26 | query | enclosingFunctionBody | req res MongoClient connect mongodb://localhost:27017/test err db doc db collection doc query JSON parse req query data validate joiSchema validate query validate error doc find query doc find query joiSchema validateAsync query doc find query e doc find query |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:61:22:61:26 | query | enclosingFunctionName | app.post#functionalargument |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:61:22:61:26 | query | fileImports | ajv express joi mongodb |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:61:22:61:26 | query | receiverName | doc |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:61:22:61:26 | query | stringConcatenatedWith |  |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:28:30:28:34 | opts1 | CalleeFlexibleAccessPath | client.search |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:28:30:28:34 | opts1 | InputAccessPathFromCallee |  |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:28:30:28:34 | opts1 | InputArgumentIndex | 1 |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:28:30:28:34 | opts1 | assignedToPropName |  |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:28:30:28:34 | opts1 | calleeImports | ldapjs |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:28:30:28:34 | opts1 | contextFunctionInterfaces | sanitizeInput(input) |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:28:30:28:34 | opts1 | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:28:30:28:34 | opts1 | enclosingFunctionBody | req res q url parse req url true username q query username opts1 filter (\|(name= username )(username= username )) client search o=example opts1 err res client search o=example filter (\|(name= username )(username= username )) err res client search o=example filter (\|(name= sanitizeInput username )(username= sanitizeInput username )) err res f OrFilter filters EqualityFilter attribute name value username EqualityFilter attribute username value username client search o=example filter f err res parsedFilter ldap parseFilter (\|(name= username )(username= username )) client search o=example filter parsedFilter err res dn ldap parseDN cn= username err dn |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:28:30:28:34 | opts1 | enclosingFunctionName | http.createServer#functionalargument |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:28:30:28:34 | opts1 | fileImports | http ldapjs url |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:28:30:28:34 | opts1 | receiverName | client |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:28:30:28:34 | opts1 | stringConcatenatedWith |  |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:32:5:32:61 | { filte ... e}))` } | CalleeFlexibleAccessPath | client.search |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:32:5:32:61 | { filte ... e}))` } | InputAccessPathFromCallee |  |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:32:5:32:61 | { filte ... e}))` } | InputArgumentIndex | 1 |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:32:5:32:61 | { filte ... e}))` } | assignedToPropName |  |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:32:5:32:61 | { filte ... e}))` } | calleeImports | ldapjs |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:32:5:32:61 | { filte ... e}))` } | contextFunctionInterfaces | sanitizeInput(input) |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:32:5:32:61 | { filte ... e}))` } | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:32:5:32:61 | { filte ... e}))` } | enclosingFunctionBody | req res q url parse req url true username q query username opts1 filter (\|(name= username )(username= username )) client search o=example opts1 err res client search o=example filter (\|(name= username )(username= username )) err res client search o=example filter (\|(name= sanitizeInput username )(username= sanitizeInput username )) err res f OrFilter filters EqualityFilter attribute name value username EqualityFilter attribute username value username client search o=example filter f err res parsedFilter ldap parseFilter (\|(name= username )(username= username )) client search o=example filter parsedFilter err res dn ldap parseDN cn= username err dn |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:32:5:32:61 | { filte ... e}))` } | enclosingFunctionName | http.createServer#functionalargument |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:32:5:32:61 | { filte ... e}))` } | fileImports | http ldapjs url |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:32:5:32:61 | { filte ... e}))` } | receiverName | client |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:32:5:32:61 | { filte ... e}))` } | stringConcatenatedWith |  |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:39:5:43:5 | { // OK ... ,\\n    } | CalleeFlexibleAccessPath | client.search |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:39:5:43:5 | { // OK ... ,\\n    } | InputAccessPathFromCallee |  |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:39:5:43:5 | { // OK ... ,\\n    } | InputArgumentIndex | 1 |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:39:5:43:5 | { // OK ... ,\\n    } | assignedToPropName |  |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:39:5:43:5 | { // OK ... ,\\n    } | calleeImports | ldapjs |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:39:5:43:5 | { // OK ... ,\\n    } | contextFunctionInterfaces | sanitizeInput(input) |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:39:5:43:5 | { // OK ... ,\\n    } | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:39:5:43:5 | { // OK ... ,\\n    } | enclosingFunctionBody | req res q url parse req url true username q query username opts1 filter (\|(name= username )(username= username )) client search o=example opts1 err res client search o=example filter (\|(name= username )(username= username )) err res client search o=example filter (\|(name= sanitizeInput username )(username= sanitizeInput username )) err res f OrFilter filters EqualityFilter attribute name value username EqualityFilter attribute username value username client search o=example filter f err res parsedFilter ldap parseFilter (\|(name= username )(username= username )) client search o=example filter parsedFilter err res dn ldap parseDN cn= username err dn |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:39:5:43:5 | { // OK ... ,\\n    } | enclosingFunctionName | http.createServer#functionalargument |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:39:5:43:5 | { // OK ... ,\\n    } | fileImports | http ldapjs url |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:39:5:43:5 | { // OK ... ,\\n    } | receiverName | client |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:39:5:43:5 | { // OK ... ,\\n    } | stringConcatenatedWith |  |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:61:30:61:42 | { filter: f } | CalleeFlexibleAccessPath | client.search |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:61:30:61:42 | { filter: f } | InputAccessPathFromCallee |  |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:61:30:61:42 | { filter: f } | InputArgumentIndex | 1 |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:61:30:61:42 | { filter: f } | assignedToPropName |  |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:61:30:61:42 | { filter: f } | calleeImports | ldapjs |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:61:30:61:42 | { filter: f } | contextFunctionInterfaces | sanitizeInput(input) |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:61:30:61:42 | { filter: f } | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:61:30:61:42 | { filter: f } | enclosingFunctionBody | req res q url parse req url true username q query username opts1 filter (\|(name= username )(username= username )) client search o=example opts1 err res client search o=example filter (\|(name= username )(username= username )) err res client search o=example filter (\|(name= sanitizeInput username )(username= sanitizeInput username )) err res f OrFilter filters EqualityFilter attribute name value username EqualityFilter attribute username value username client search o=example filter f err res parsedFilter ldap parseFilter (\|(name= username )(username= username )) client search o=example filter parsedFilter err res dn ldap parseDN cn= username err dn |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:61:30:61:42 | { filter: f } | enclosingFunctionName | http.createServer#functionalargument |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:61:30:61:42 | { filter: f } | fileImports | http ldapjs url |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:61:30:61:42 | { filter: f } | receiverName | client |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:61:30:61:42 | { filter: f } | stringConcatenatedWith |  |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:66:30:66:53 | { filte ... ilter } | CalleeFlexibleAccessPath | client.search |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:66:30:66:53 | { filte ... ilter } | InputAccessPathFromCallee |  |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:66:30:66:53 | { filte ... ilter } | InputArgumentIndex | 1 |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:66:30:66:53 | { filte ... ilter } | assignedToPropName |  |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:66:30:66:53 | { filte ... ilter } | calleeImports | ldapjs |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:66:30:66:53 | { filte ... ilter } | contextFunctionInterfaces | sanitizeInput(input) |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:66:30:66:53 | { filte ... ilter } | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:66:30:66:53 | { filte ... ilter } | enclosingFunctionBody | req res q url parse req url true username q query username opts1 filter (\|(name= username )(username= username )) client search o=example opts1 err res client search o=example filter (\|(name= username )(username= username )) err res client search o=example filter (\|(name= sanitizeInput username )(username= sanitizeInput username )) err res f OrFilter filters EqualityFilter attribute name value username EqualityFilter attribute username value username client search o=example filter f err res parsedFilter ldap parseFilter (\|(name= username )(username= username )) client search o=example filter parsedFilter err res dn ldap parseDN cn= username err dn |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:66:30:66:53 | { filte ... ilter } | enclosingFunctionName | http.createServer#functionalargument |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:66:30:66:53 | { filte ... ilter } | fileImports | http ldapjs url |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:66:30:66:53 | { filte ... ilter } | receiverName | client |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:66:30:66:53 | { filte ... ilter } | stringConcatenatedWith |  |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:68:27:68:42 | `cn=${username}` | CalleeFlexibleAccessPath | ldap.parseDN |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:68:27:68:42 | `cn=${username}` | InputAccessPathFromCallee |  |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:68:27:68:42 | `cn=${username}` | InputArgumentIndex | 0 |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:68:27:68:42 | `cn=${username}` | assignedToPropName |  |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:68:27:68:42 | `cn=${username}` | calleeImports | ldapjs |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:68:27:68:42 | `cn=${username}` | contextFunctionInterfaces | sanitizeInput(input) |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:68:27:68:42 | `cn=${username}` | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:68:27:68:42 | `cn=${username}` | enclosingFunctionBody | req res q url parse req url true username q query username opts1 filter (\|(name= username )(username= username )) client search o=example opts1 err res client search o=example filter (\|(name= username )(username= username )) err res client search o=example filter (\|(name= sanitizeInput username )(username= sanitizeInput username )) err res f OrFilter filters EqualityFilter attribute name value username EqualityFilter attribute username value username client search o=example filter f err res parsedFilter ldap parseFilter (\|(name= username )(username= username )) client search o=example filter parsedFilter err res dn ldap parseDN cn= username err dn |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:68:27:68:42 | `cn=${username}` | enclosingFunctionName | http.createServer#functionalargument |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:68:27:68:42 | `cn=${username}` | fileImports | http ldapjs url |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:68:27:68:42 | `cn=${username}` | receiverName | ldap |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:68:27:68:42 | `cn=${username}` | stringConcatenatedWith |  |
 | autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:14:17:14:21 | query | CalleeFlexibleAccessPath | db.myDoc.find |
 | autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:14:17:14:21 | query | InputAccessPathFromCallee |  |
 | autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:14:17:14:21 | query | InputArgumentIndex | 0 |
@@ -6656,11 +8766,23 @@ tokenFeatures
 | autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:14:17:14:21 | query | calleeImports | ./marsdb-flow-from |
 | autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:14:17:14:21 | query | contextFunctionInterfaces |  |
 | autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:14:17:14:21 | query | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:14:17:14:21 | query | enclosingFunctionBody | req res query query title req body title db myDoc find query |
+| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:14:17:14:21 | query | enclosingFunctionBody | req res query query title req body title db myDoc find query err data |
 | autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:14:17:14:21 | query | enclosingFunctionName | app.post#functionalargument |
 | autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:14:17:14:21 | query | fileImports | ./marsdb-flow-from body-parser express |
 | autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:14:17:14:21 | query | receiverName |  |
 | autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:14:17:14:21 | query | stringConcatenatedWith |  |
+| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:14:24:14:40 | (err, data) => {} | CalleeFlexibleAccessPath | db.myDoc.find |
+| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:14:24:14:40 | (err, data) => {} | InputAccessPathFromCallee |  |
+| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:14:24:14:40 | (err, data) => {} | InputArgumentIndex | 1 |
+| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:14:24:14:40 | (err, data) => {} | assignedToPropName |  |
+| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:14:24:14:40 | (err, data) => {} | calleeImports | ./marsdb-flow-from |
+| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:14:24:14:40 | (err, data) => {} | contextFunctionInterfaces |  |
+| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:14:24:14:40 | (err, data) => {} | contextSurroundingFunctionParameters | (req, res)\n(err, data) |
+| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:14:24:14:40 | (err, data) => {} | enclosingFunctionBody | req res query query title req body title db myDoc find query err data |
+| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:14:24:14:40 | (err, data) => {} | enclosingFunctionName | app.post#functionalargument |
+| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:14:24:14:40 | (err, data) => {} | fileImports | ./marsdb-flow-from body-parser express |
+| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:14:24:14:40 | (err, data) => {} | receiverName |  |
+| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:14:24:14:40 | (err, data) => {} | stringConcatenatedWith |  |
 | autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:16:12:16:16 | query | CalleeFlexibleAccessPath | doc.find |
 | autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:16:12:16:16 | query | InputAccessPathFromCallee |  |
 | autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:16:12:16:16 | query | InputArgumentIndex | 0 |
@@ -6668,11 +8790,23 @@ tokenFeatures
 | autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:16:12:16:16 | query | calleeImports | marsdb |
 | autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:16:12:16:16 | query | contextFunctionInterfaces |  |
 | autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:16:12:16:16 | query | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:16:12:16:16 | query | enclosingFunctionBody | req res query query title req body title doc find query |
+| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:16:12:16:16 | query | enclosingFunctionBody | req res query query title req body title doc find query err data |
 | autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:16:12:16:16 | query | enclosingFunctionName | app.post#functionalargument |
 | autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:16:12:16:16 | query | fileImports | body-parser express marsdb |
 | autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:16:12:16:16 | query | receiverName | doc |
 | autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:16:12:16:16 | query | stringConcatenatedWith |  |
+| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:16:19:16:35 | (err, data) => {} | CalleeFlexibleAccessPath | doc.find |
+| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:16:19:16:35 | (err, data) => {} | InputAccessPathFromCallee |  |
+| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:16:19:16:35 | (err, data) => {} | InputArgumentIndex | 1 |
+| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:16:19:16:35 | (err, data) => {} | assignedToPropName |  |
+| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:16:19:16:35 | (err, data) => {} | calleeImports | marsdb |
+| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:16:19:16:35 | (err, data) => {} | contextFunctionInterfaces |  |
+| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:16:19:16:35 | (err, data) => {} | contextSurroundingFunctionParameters | (req, res)\n(err, data) |
+| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:16:19:16:35 | (err, data) => {} | enclosingFunctionBody | req res query query title req body title doc find query err data |
+| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:16:19:16:35 | (err, data) => {} | enclosingFunctionName | app.post#functionalargument |
+| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:16:19:16:35 | (err, data) => {} | fileImports | body-parser express marsdb |
+| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:16:19:16:35 | (err, data) => {} | receiverName | doc |
+| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:16:19:16:35 | (err, data) => {} | stringConcatenatedWith |  |
 | autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:18:12:18:16 | query | CalleeFlexibleAccessPath | doc.find |
 | autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:18:12:18:16 | query | InputAccessPathFromCallee |  |
 | autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:18:12:18:16 | query | InputArgumentIndex | 0 |
@@ -7957,6 +10091,90 @@ tokenFeatures
 | autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:13:16:13:39 | { id: ` ... .id}` } | fileImports | ./mongooseModel body-parser express |
 | autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:13:16:13:39 | { id: ` ... .id}` } | receiverName | MyModel |
 | autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:13:16:13:39 | { id: ` ... .id}` } | stringConcatenatedWith |  |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:8:26:11:9 | {\\n      ...       } | CalleeFlexibleAccessPath | connection.query |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:8:26:11:9 | {\\n      ...       } | InputAccessPathFromCallee |  |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:8:26:11:9 | {\\n      ...       } | InputArgumentIndex | 0 |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:8:26:11:9 | {\\n      ...       } | assignedToPropName |  |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:8:26:11:9 | {\\n      ...       } | calleeImports |  |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:8:26:11:9 | {\\n      ...       } | contextFunctionInterfaces | handler(req, res) |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:8:26:11:9 | {\\n      ...       } | contextSurroundingFunctionParameters | (req, res)\n(err, connection) |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:8:26:11:9 | {\\n      ...       } | enclosingFunctionBody | req res temp req params value pool getConnection err connection connection query sql SELECT * FROM `books` WHERE `author` = ? values temp error results fields pool getConnection err connection connection query sql SELECT * FROM `books` WHERE `author` =  temp error results fields pool getConnection err connection connection query SELECT * FROM `books` WHERE `author` =  temp error results fields |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:8:26:11:9 | {\\n      ...       } | enclosingFunctionName | handler |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:8:26:11:9 | {\\n      ...       } | fileImports | express mysql |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:8:26:11:9 | {\\n      ...       } | receiverName | connection |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:8:26:11:9 | {\\n      ...       } | stringConcatenatedWith |  |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:11:12:11:46 | functio ... lds) {} | CalleeFlexibleAccessPath | connection.query |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:11:12:11:46 | functio ... lds) {} | InputAccessPathFromCallee |  |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:11:12:11:46 | functio ... lds) {} | InputArgumentIndex | 1 |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:11:12:11:46 | functio ... lds) {} | assignedToPropName |  |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:11:12:11:46 | functio ... lds) {} | calleeImports |  |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:11:12:11:46 | functio ... lds) {} | contextFunctionInterfaces | handler(req, res) |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:11:12:11:46 | functio ... lds) {} | contextSurroundingFunctionParameters | (req, res)\n(err, connection)\n(error, results, fields) |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:11:12:11:46 | functio ... lds) {} | enclosingFunctionBody | req res temp req params value pool getConnection err connection connection query sql SELECT * FROM `books` WHERE `author` = ? values temp error results fields pool getConnection err connection connection query sql SELECT * FROM `books` WHERE `author` =  temp error results fields pool getConnection err connection connection query SELECT * FROM `books` WHERE `author` =  temp error results fields |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:11:12:11:46 | functio ... lds) {} | enclosingFunctionName | handler |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:11:12:11:46 | functio ... lds) {} | fileImports | express mysql |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:11:12:11:46 | functio ... lds) {} | receiverName | connection |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:11:12:11:46 | functio ... lds) {} | stringConcatenatedWith |  |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:14:26:16:9 | {\\n      ...       } | CalleeFlexibleAccessPath | connection.query |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:14:26:16:9 | {\\n      ...       } | InputAccessPathFromCallee |  |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:14:26:16:9 | {\\n      ...       } | InputArgumentIndex | 0 |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:14:26:16:9 | {\\n      ...       } | assignedToPropName |  |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:14:26:16:9 | {\\n      ...       } | calleeImports |  |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:14:26:16:9 | {\\n      ...       } | contextFunctionInterfaces | handler(req, res) |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:14:26:16:9 | {\\n      ...       } | contextSurroundingFunctionParameters | (req, res)\n(err, connection) |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:14:26:16:9 | {\\n      ...       } | enclosingFunctionBody | req res temp req params value pool getConnection err connection connection query sql SELECT * FROM `books` WHERE `author` = ? values temp error results fields pool getConnection err connection connection query sql SELECT * FROM `books` WHERE `author` =  temp error results fields pool getConnection err connection connection query SELECT * FROM `books` WHERE `author` =  temp error results fields |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:14:26:16:9 | {\\n      ...       } | enclosingFunctionName | handler |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:14:26:16:9 | {\\n      ...       } | fileImports | express mysql |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:14:26:16:9 | {\\n      ...       } | receiverName | connection |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:14:26:16:9 | {\\n      ...       } | stringConcatenatedWith |  |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:15:18:15:65 | 'SELECT ...  + temp | CalleeFlexibleAccessPath | connection.query |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:15:18:15:65 | 'SELECT ...  + temp | InputAccessPathFromCallee | 0.sql |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:15:18:15:65 | 'SELECT ...  + temp | InputArgumentIndex | 0 |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:15:18:15:65 | 'SELECT ...  + temp | assignedToPropName | sql |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:15:18:15:65 | 'SELECT ...  + temp | calleeImports |  |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:15:18:15:65 | 'SELECT ...  + temp | contextFunctionInterfaces | handler(req, res) |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:15:18:15:65 | 'SELECT ...  + temp | contextSurroundingFunctionParameters | (req, res)\n(err, connection) |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:15:18:15:65 | 'SELECT ...  + temp | enclosingFunctionBody | req res temp req params value pool getConnection err connection connection query sql SELECT * FROM `books` WHERE `author` = ? values temp error results fields pool getConnection err connection connection query sql SELECT * FROM `books` WHERE `author` =  temp error results fields pool getConnection err connection connection query SELECT * FROM `books` WHERE `author` =  temp error results fields |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:15:18:15:65 | 'SELECT ...  + temp | enclosingFunctionName | handler |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:15:18:15:65 | 'SELECT ...  + temp | fileImports | express mysql |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:15:18:15:65 | 'SELECT ...  + temp | receiverName |  |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:15:18:15:65 | 'SELECT ...  + temp | stringConcatenatedWith |  |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:16:12:16:46 | functio ... lds) {} | CalleeFlexibleAccessPath | connection.query |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:16:12:16:46 | functio ... lds) {} | InputAccessPathFromCallee |  |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:16:12:16:46 | functio ... lds) {} | InputArgumentIndex | 1 |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:16:12:16:46 | functio ... lds) {} | assignedToPropName |  |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:16:12:16:46 | functio ... lds) {} | calleeImports |  |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:16:12:16:46 | functio ... lds) {} | contextFunctionInterfaces | handler(req, res) |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:16:12:16:46 | functio ... lds) {} | contextSurroundingFunctionParameters | (req, res)\n(err, connection)\n(error, results, fields) |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:16:12:16:46 | functio ... lds) {} | enclosingFunctionBody | req res temp req params value pool getConnection err connection connection query sql SELECT * FROM `books` WHERE `author` = ? values temp error results fields pool getConnection err connection connection query sql SELECT * FROM `books` WHERE `author` =  temp error results fields pool getConnection err connection connection query SELECT * FROM `books` WHERE `author` =  temp error results fields |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:16:12:16:46 | functio ... lds) {} | enclosingFunctionName | handler |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:16:12:16:46 | functio ... lds) {} | fileImports | express mysql |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:16:12:16:46 | functio ... lds) {} | receiverName | connection |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:16:12:16:46 | functio ... lds) {} | stringConcatenatedWith |  |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:19:26:19:73 | 'SELECT ...  + temp | CalleeFlexibleAccessPath | connection.query |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:19:26:19:73 | 'SELECT ...  + temp | InputAccessPathFromCallee |  |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:19:26:19:73 | 'SELECT ...  + temp | InputArgumentIndex | 0 |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:19:26:19:73 | 'SELECT ...  + temp | assignedToPropName |  |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:19:26:19:73 | 'SELECT ...  + temp | calleeImports |  |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:19:26:19:73 | 'SELECT ...  + temp | contextFunctionInterfaces | handler(req, res) |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:19:26:19:73 | 'SELECT ...  + temp | contextSurroundingFunctionParameters | (req, res)\n(err, connection) |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:19:26:19:73 | 'SELECT ...  + temp | enclosingFunctionBody | req res temp req params value pool getConnection err connection connection query sql SELECT * FROM `books` WHERE `author` = ? values temp error results fields pool getConnection err connection connection query sql SELECT * FROM `books` WHERE `author` =  temp error results fields pool getConnection err connection connection query SELECT * FROM `books` WHERE `author` =  temp error results fields |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:19:26:19:73 | 'SELECT ...  + temp | enclosingFunctionName | handler |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:19:26:19:73 | 'SELECT ...  + temp | fileImports | express mysql |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:19:26:19:73 | 'SELECT ...  + temp | receiverName | connection |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:19:26:19:73 | 'SELECT ...  + temp | stringConcatenatedWith |  |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:20:13:20:47 | functio ... lds) {} | CalleeFlexibleAccessPath | connection.query |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:20:13:20:47 | functio ... lds) {} | InputAccessPathFromCallee |  |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:20:13:20:47 | functio ... lds) {} | InputArgumentIndex | 1 |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:20:13:20:47 | functio ... lds) {} | assignedToPropName |  |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:20:13:20:47 | functio ... lds) {} | calleeImports |  |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:20:13:20:47 | functio ... lds) {} | contextFunctionInterfaces | handler(req, res) |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:20:13:20:47 | functio ... lds) {} | contextSurroundingFunctionParameters | (req, res)\n(err, connection)\n(error, results, fields) |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:20:13:20:47 | functio ... lds) {} | enclosingFunctionBody | req res temp req params value pool getConnection err connection connection query sql SELECT * FROM `books` WHERE `author` = ? values temp error results fields pool getConnection err connection connection query sql SELECT * FROM `books` WHERE `author` =  temp error results fields pool getConnection err connection connection query SELECT * FROM `books` WHERE `author` =  temp error results fields |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:20:13:20:47 | functio ... lds) {} | enclosingFunctionName | handler |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:20:13:20:47 | functio ... lds) {} | fileImports | express mysql |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:20:13:20:47 | functio ... lds) {} | receiverName | connection |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:20:13:20:47 | functio ... lds) {} | stringConcatenatedWith |  |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise-types.ts:8:17:8:21 | taint | CalleeFlexibleAccessPath | this.db.one |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise-types.ts:8:17:8:21 | taint | InputAccessPathFromCallee |  |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise-types.ts:8:17:8:21 | taint | InputArgumentIndex | 0 |
@@ -7976,7 +10194,7 @@ tokenFeatures
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:4:18:4:52 | process ... TRING'] | calleeImports | pg-promise |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:4:18:4:52 | process ... TRING'] | contextFunctionInterfaces | cnd(t) |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:4:18:4:52 | process ... TRING'] | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:4:18:4:52 | process ... TRING'] | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db task cnd t t one query t t one query |
+| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:4:18:4:52 | process ... TRING'] | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db taskIf cnd t t one query t t one query |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:4:18:4:52 | process ... TRING'] | enclosingFunctionName | get#functionalargument |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:4:18:4:52 | process ... TRING'] | fileImports | express pg-promise |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:4:18:4:52 | process ... TRING'] | receiverName |  |
@@ -7988,7 +10206,7 @@ tokenFeatures
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:9:10:9:14 | query | calleeImports | pg-promise |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:9:10:9:14 | query | contextFunctionInterfaces | cnd(t) |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:9:10:9:14 | query | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:9:10:9:14 | query | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db task cnd t t one query t t one query |
+| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:9:10:9:14 | query | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db taskIf cnd t t one query t t one query |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:9:10:9:14 | query | enclosingFunctionName | get#functionalargument |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:9:10:9:14 | query | fileImports | express pg-promise |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:9:10:9:14 | query | receiverName | db |
@@ -8000,7 +10218,7 @@ tokenFeatures
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:10:11:10:15 | query | calleeImports | pg-promise |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:10:11:10:15 | query | contextFunctionInterfaces | cnd(t) |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:10:11:10:15 | query | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:10:11:10:15 | query | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db task cnd t t one query t t one query |
+| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:10:11:10:15 | query | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db taskIf cnd t t one query t t one query |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:10:11:10:15 | query | enclosingFunctionName | get#functionalargument |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:10:11:10:15 | query | fileImports | express pg-promise |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:10:11:10:15 | query | receiverName | db |
@@ -8012,7 +10230,7 @@ tokenFeatures
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:11:17:11:21 | query | calleeImports | pg-promise |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:11:17:11:21 | query | contextFunctionInterfaces | cnd(t) |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:11:17:11:21 | query | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:11:17:11:21 | query | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db task cnd t t one query t t one query |
+| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:11:17:11:21 | query | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db taskIf cnd t t one query t t one query |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:11:17:11:21 | query | enclosingFunctionName | get#functionalargument |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:11:17:11:21 | query | fileImports | express pg-promise |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:11:17:11:21 | query | receiverName | db |
@@ -8024,7 +10242,7 @@ tokenFeatures
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:12:10:12:14 | query | calleeImports | pg-promise |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:12:10:12:14 | query | contextFunctionInterfaces | cnd(t) |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:12:10:12:14 | query | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:12:10:12:14 | query | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db task cnd t t one query t t one query |
+| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:12:10:12:14 | query | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db taskIf cnd t t one query t t one query |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:12:10:12:14 | query | enclosingFunctionName | get#functionalargument |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:12:10:12:14 | query | fileImports | express pg-promise |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:12:10:12:14 | query | receiverName | db |
@@ -8036,7 +10254,7 @@ tokenFeatures
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:13:12:13:16 | query | calleeImports | pg-promise |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:13:12:13:16 | query | contextFunctionInterfaces | cnd(t) |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:13:12:13:16 | query | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:13:12:13:16 | query | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db task cnd t t one query t t one query |
+| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:13:12:13:16 | query | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db taskIf cnd t t one query t t one query |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:13:12:13:16 | query | enclosingFunctionName | get#functionalargument |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:13:12:13:16 | query | fileImports | express pg-promise |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:13:12:13:16 | query | receiverName | db |
@@ -8048,7 +10266,7 @@ tokenFeatures
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:14:18:14:22 | query | calleeImports | pg-promise |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:14:18:14:22 | query | contextFunctionInterfaces | cnd(t) |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:14:18:14:22 | query | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:14:18:14:22 | query | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db task cnd t t one query t t one query |
+| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:14:18:14:22 | query | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db taskIf cnd t t one query t t one query |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:14:18:14:22 | query | enclosingFunctionName | get#functionalargument |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:14:18:14:22 | query | fileImports | express pg-promise |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:14:18:14:22 | query | receiverName | db |
@@ -8060,7 +10278,7 @@ tokenFeatures
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:15:11:15:15 | query | calleeImports | pg-promise |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:15:11:15:15 | query | contextFunctionInterfaces | cnd(t) |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:15:11:15:15 | query | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:15:11:15:15 | query | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db task cnd t t one query t t one query |
+| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:15:11:15:15 | query | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db taskIf cnd t t one query t t one query |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:15:11:15:15 | query | enclosingFunctionName | get#functionalargument |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:15:11:15:15 | query | fileImports | express pg-promise |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:15:11:15:15 | query | receiverName | db |
@@ -8072,7 +10290,7 @@ tokenFeatures
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:16:10:16:14 | query | calleeImports | pg-promise |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:16:10:16:14 | query | contextFunctionInterfaces | cnd(t) |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:16:10:16:14 | query | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:16:10:16:14 | query | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db task cnd t t one query t t one query |
+| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:16:10:16:14 | query | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db taskIf cnd t t one query t t one query |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:16:10:16:14 | query | enclosingFunctionName | get#functionalargument |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:16:10:16:14 | query | fileImports | express pg-promise |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:16:10:16:14 | query | receiverName | db |
@@ -8084,7 +10302,7 @@ tokenFeatures
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:17:16:17:20 | query | calleeImports | pg-promise |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:17:16:17:20 | query | contextFunctionInterfaces | cnd(t) |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:17:16:17:20 | query | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:17:16:17:20 | query | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db task cnd t t one query t t one query |
+| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:17:16:17:20 | query | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db taskIf cnd t t one query t t one query |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:17:16:17:20 | query | enclosingFunctionName | get#functionalargument |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:17:16:17:20 | query | fileImports | express pg-promise |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:17:16:17:20 | query | receiverName | db |
@@ -8096,7 +10314,7 @@ tokenFeatures
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:18:12:18:16 | query | calleeImports | pg-promise |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:18:12:18:16 | query | contextFunctionInterfaces | cnd(t) |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:18:12:18:16 | query | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:18:12:18:16 | query | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db task cnd t t one query t t one query |
+| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:18:12:18:16 | query | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db taskIf cnd t t one query t t one query |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:18:12:18:16 | query | enclosingFunctionName | get#functionalargument |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:18:12:18:16 | query | fileImports | express pg-promise |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:18:12:18:16 | query | receiverName | db |
@@ -8108,7 +10326,7 @@ tokenFeatures
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:19:13:19:17 | query | calleeImports | pg-promise |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:19:13:19:17 | query | contextFunctionInterfaces | cnd(t) |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:19:13:19:17 | query | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:19:13:19:17 | query | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db task cnd t t one query t t one query |
+| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:19:13:19:17 | query | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db taskIf cnd t t one query t t one query |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:19:13:19:17 | query | enclosingFunctionName | get#functionalargument |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:19:13:19:17 | query | fileImports | express pg-promise |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:19:13:19:17 | query | receiverName | db |
@@ -8120,7 +10338,7 @@ tokenFeatures
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:21:10:23:3 | {\\n    t ...  OK\\n  } | calleeImports | pg-promise |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:21:10:23:3 | {\\n    t ...  OK\\n  } | contextFunctionInterfaces | cnd(t) |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:21:10:23:3 | {\\n    t ...  OK\\n  } | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:21:10:23:3 | {\\n    t ...  OK\\n  } | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db task cnd t t one query t t one query |
+| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:21:10:23:3 | {\\n    t ...  OK\\n  } | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db taskIf cnd t t one query t t one query |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:21:10:23:3 | {\\n    t ...  OK\\n  } | enclosingFunctionName | get#functionalargument |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:21:10:23:3 | {\\n    t ...  OK\\n  } | fileImports | express pg-promise |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:21:10:23:3 | {\\n    t ...  OK\\n  } | receiverName | db |
@@ -8132,7 +10350,7 @@ tokenFeatures
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:22:11:22:15 | query | calleeImports | pg-promise |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:22:11:22:15 | query | contextFunctionInterfaces | cnd(t) |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:22:11:22:15 | query | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:22:11:22:15 | query | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db task cnd t t one query t t one query |
+| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:22:11:22:15 | query | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db taskIf cnd t t one query t t one query |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:22:11:22:15 | query | enclosingFunctionName | get#functionalargument |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:22:11:22:15 | query | fileImports | express pg-promise |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:22:11:22:15 | query | receiverName |  |
@@ -8144,7 +10362,7 @@ tokenFeatures
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:24:10:27:3 | {\\n    t ...  OK\\n  } | calleeImports | pg-promise |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:24:10:27:3 | {\\n    t ...  OK\\n  } | contextFunctionInterfaces | cnd(t) |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:24:10:27:3 | {\\n    t ...  OK\\n  } | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:24:10:27:3 | {\\n    t ...  OK\\n  } | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db task cnd t t one query t t one query |
+| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:24:10:27:3 | {\\n    t ...  OK\\n  } | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db taskIf cnd t t one query t t one query |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:24:10:27:3 | {\\n    t ...  OK\\n  } | enclosingFunctionName | get#functionalargument |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:24:10:27:3 | {\\n    t ...  OK\\n  } | fileImports | express pg-promise |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:24:10:27:3 | {\\n    t ...  OK\\n  } | receiverName | db |
@@ -8156,7 +10374,7 @@ tokenFeatures
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:28:10:31:3 | {\\n    t ... ter\\n  } | calleeImports | pg-promise |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:28:10:31:3 | {\\n    t ... ter\\n  } | contextFunctionInterfaces | cnd(t) |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:28:10:31:3 | {\\n    t ... ter\\n  } | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:28:10:31:3 | {\\n    t ... ter\\n  } | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db task cnd t t one query t t one query |
+| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:28:10:31:3 | {\\n    t ... ter\\n  } | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db taskIf cnd t t one query t t one query |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:28:10:31:3 | {\\n    t ... ter\\n  } | enclosingFunctionName | get#functionalargument |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:28:10:31:3 | {\\n    t ... ter\\n  } | fileImports | express pg-promise |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:28:10:31:3 | {\\n    t ... ter\\n  } | receiverName | db |
@@ -8168,7 +10386,7 @@ tokenFeatures
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:30:13:30:25 | req.params.id | calleeImports | pg-promise |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:30:13:30:25 | req.params.id | contextFunctionInterfaces | cnd(t) |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:30:13:30:25 | req.params.id | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:30:13:30:25 | req.params.id | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db task cnd t t one query t t one query |
+| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:30:13:30:25 | req.params.id | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db taskIf cnd t t one query t t one query |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:30:13:30:25 | req.params.id | enclosingFunctionName | get#functionalargument |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:30:13:30:25 | req.params.id | fileImports | express pg-promise |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:30:13:30:25 | req.params.id | receiverName |  |
@@ -8180,7 +10398,7 @@ tokenFeatures
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:32:10:35:3 | {\\n    t ...  OK\\n  } | calleeImports | pg-promise |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:32:10:35:3 | {\\n    t ...  OK\\n  } | contextFunctionInterfaces | cnd(t) |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:32:10:35:3 | {\\n    t ...  OK\\n  } | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:32:10:35:3 | {\\n    t ...  OK\\n  } | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db task cnd t t one query t t one query |
+| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:32:10:35:3 | {\\n    t ...  OK\\n  } | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db taskIf cnd t t one query t t one query |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:32:10:35:3 | {\\n    t ...  OK\\n  } | enclosingFunctionName | get#functionalargument |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:32:10:35:3 | {\\n    t ...  OK\\n  } | fileImports | express pg-promise |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:32:10:35:3 | {\\n    t ...  OK\\n  } | receiverName | db |
@@ -8192,7 +10410,7 @@ tokenFeatures
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:34:13:34:25 | req.params.id | calleeImports | pg-promise |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:34:13:34:25 | req.params.id | contextFunctionInterfaces | cnd(t) |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:34:13:34:25 | req.params.id | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:34:13:34:25 | req.params.id | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db task cnd t t one query t t one query |
+| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:34:13:34:25 | req.params.id | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db taskIf cnd t t one query t t one query |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:34:13:34:25 | req.params.id | enclosingFunctionName | get#functionalargument |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:34:13:34:25 | req.params.id | fileImports | express pg-promise |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:34:13:34:25 | req.params.id | receiverName |  |
@@ -8204,7 +10422,7 @@ tokenFeatures
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:36:10:43:3 | {\\n    t ...   ]\\n  } | calleeImports | pg-promise |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:36:10:43:3 | {\\n    t ...   ]\\n  } | contextFunctionInterfaces | cnd(t) |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:36:10:43:3 | {\\n    t ...   ]\\n  } | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:36:10:43:3 | {\\n    t ...   ]\\n  } | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db task cnd t t one query t t one query |
+| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:36:10:43:3 | {\\n    t ...   ]\\n  } | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db taskIf cnd t t one query t t one query |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:36:10:43:3 | {\\n    t ...   ]\\n  } | enclosingFunctionName | get#functionalargument |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:36:10:43:3 | {\\n    t ...   ]\\n  } | fileImports | express pg-promise |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:36:10:43:3 | {\\n    t ...   ]\\n  } | receiverName | db |
@@ -8216,7 +10434,7 @@ tokenFeatures
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:38:13:42:5 | [\\n      ... n\\n    ] | calleeImports | pg-promise |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:38:13:42:5 | [\\n      ... n\\n    ] | contextFunctionInterfaces | cnd(t) |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:38:13:42:5 | [\\n      ... n\\n    ] | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:38:13:42:5 | [\\n      ... n\\n    ] | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db task cnd t t one query t t one query |
+| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:38:13:42:5 | [\\n      ... n\\n    ] | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db taskIf cnd t t one query t t one query |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:38:13:42:5 | [\\n      ... n\\n    ] | enclosingFunctionName | get#functionalargument |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:38:13:42:5 | [\\n      ... n\\n    ] | fileImports | express pg-promise |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:38:13:42:5 | [\\n      ... n\\n    ] | receiverName |  |
@@ -8228,7 +10446,7 @@ tokenFeatures
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:39:7:39:19 | req.params.id | calleeImports |  |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:39:7:39:19 | req.params.id | contextFunctionInterfaces | cnd(t) |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:39:7:39:19 | req.params.id | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:39:7:39:19 | req.params.id | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db task cnd t t one query t t one query |
+| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:39:7:39:19 | req.params.id | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db taskIf cnd t t one query t t one query |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:39:7:39:19 | req.params.id | enclosingFunctionName | get#functionalargument |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:39:7:39:19 | req.params.id | fileImports | express pg-promise |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:39:7:39:19 | req.params.id | receiverName |  |
@@ -8240,7 +10458,7 @@ tokenFeatures
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:40:7:40:21 | req.params.name | calleeImports |  |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:40:7:40:21 | req.params.name | contextFunctionInterfaces | cnd(t) |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:40:7:40:21 | req.params.name | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:40:7:40:21 | req.params.name | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db task cnd t t one query t t one query |
+| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:40:7:40:21 | req.params.name | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db taskIf cnd t t one query t t one query |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:40:7:40:21 | req.params.name | enclosingFunctionName | get#functionalargument |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:40:7:40:21 | req.params.name | fileImports | express pg-promise |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:40:7:40:21 | req.params.name | receiverName |  |
@@ -8252,7 +10470,7 @@ tokenFeatures
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:44:10:50:3 | {\\n    t ...   }\\n  } | calleeImports | pg-promise |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:44:10:50:3 | {\\n    t ...   }\\n  } | contextFunctionInterfaces | cnd(t) |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:44:10:50:3 | {\\n    t ...   }\\n  } | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:44:10:50:3 | {\\n    t ...   }\\n  } | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db task cnd t t one query t t one query |
+| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:44:10:50:3 | {\\n    t ...   }\\n  } | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db taskIf cnd t t one query t t one query |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:44:10:50:3 | {\\n    t ...   }\\n  } | enclosingFunctionName | get#functionalargument |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:44:10:50:3 | {\\n    t ...   }\\n  } | fileImports | express pg-promise |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:44:10:50:3 | {\\n    t ...   }\\n  } | receiverName | db |
@@ -8264,7 +10482,7 @@ tokenFeatures
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:47:11:47:23 | req.params.id | calleeImports | pg-promise |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:47:11:47:23 | req.params.id | contextFunctionInterfaces | cnd(t) |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:47:11:47:23 | req.params.id | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:47:11:47:23 | req.params.id | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db task cnd t t one query t t one query |
+| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:47:11:47:23 | req.params.id | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db taskIf cnd t t one query t t one query |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:47:11:47:23 | req.params.id | enclosingFunctionName | get#functionalargument |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:47:11:47:23 | req.params.id | fileImports | express pg-promise |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:47:11:47:23 | req.params.id | receiverName |  |
@@ -8276,7 +10494,7 @@ tokenFeatures
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:51:10:58:3 | {\\n    t ...   }\\n  } | calleeImports | pg-promise |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:51:10:58:3 | {\\n    t ...   }\\n  } | contextFunctionInterfaces | cnd(t) |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:51:10:58:3 | {\\n    t ...   }\\n  } | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:51:10:58:3 | {\\n    t ...   }\\n  } | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db task cnd t t one query t t one query |
+| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:51:10:58:3 | {\\n    t ...   }\\n  } | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db taskIf cnd t t one query t t one query |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:51:10:58:3 | {\\n    t ...   }\\n  } | enclosingFunctionName | get#functionalargument |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:51:10:58:3 | {\\n    t ...   }\\n  } | fileImports | express pg-promise |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:51:10:58:3 | {\\n    t ...   }\\n  } | receiverName | db |
@@ -8288,7 +10506,7 @@ tokenFeatures
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:54:11:54:23 | req.params.id | calleeImports | pg-promise |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:54:11:54:23 | req.params.id | contextFunctionInterfaces | cnd(t) |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:54:11:54:23 | req.params.id | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:54:11:54:23 | req.params.id | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db task cnd t t one query t t one query |
+| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:54:11:54:23 | req.params.id | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db taskIf cnd t t one query t t one query |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:54:11:54:23 | req.params.id | enclosingFunctionName | get#functionalargument |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:54:11:54:23 | req.params.id | fileImports | express pg-promise |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:54:11:54:23 | req.params.id | receiverName |  |
@@ -8300,7 +10518,7 @@ tokenFeatures
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:56:14:56:29 | req.params.title | calleeImports | pg-promise |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:56:14:56:29 | req.params.title | contextFunctionInterfaces | cnd(t) |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:56:14:56:29 | req.params.title | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:56:14:56:29 | req.params.title | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db task cnd t t one query t t one query |
+| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:56:14:56:29 | req.params.title | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db taskIf cnd t t one query t t one query |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:56:14:56:29 | req.params.title | enclosingFunctionName | get#functionalargument |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:56:14:56:29 | req.params.title | fileImports | express pg-promise |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:56:14:56:29 | req.params.title | receiverName |  |
@@ -8312,11 +10530,23 @@ tokenFeatures
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:60:20:60:24 | query | calleeImports |  |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:60:20:60:24 | query | contextFunctionInterfaces | cnd(t) |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:60:20:60:24 | query | contextSurroundingFunctionParameters | (req, res)\n(t) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:60:20:60:24 | query | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db task cnd t t one query t t one query |
+| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:60:20:60:24 | query | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db taskIf cnd t t one query t t one query |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:60:20:60:24 | query | enclosingFunctionName | get#functionalargument |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:60:20:60:24 | query | fileImports | express pg-promise |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:60:20:60:24 | query | receiverName | t |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:60:20:60:24 | query | stringConcatenatedWith |  |
+| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:63:23:63:27 | query | CalleeFlexibleAccessPath | t.one |
+| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:63:23:63:27 | query | InputAccessPathFromCallee |  |
+| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:63:23:63:27 | query | InputArgumentIndex | 0 |
+| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:63:23:63:27 | query | assignedToPropName |  |
+| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:63:23:63:27 | query | calleeImports |  |
+| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:63:23:63:27 | query | contextFunctionInterfaces | cnd(t) |
+| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:63:23:63:27 | query | contextSurroundingFunctionParameters | (req, res)\n(t) |
+| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:63:23:63:27 | query | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db taskIf cnd t t one query t t one query |
+| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:63:23:63:27 | query | enclosingFunctionName | get#functionalargument |
+| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:63:23:63:27 | query | fileImports | express pg-promise |
+| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:63:23:63:27 | query | receiverName | t |
+| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:63:23:63:27 | query | stringConcatenatedWith |  |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:64:16:64:20 | query | CalleeFlexibleAccessPath | t.one |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:64:16:64:20 | query | InputAccessPathFromCallee |  |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:64:16:64:20 | query | InputArgumentIndex | 0 |
@@ -8324,7 +10554,7 @@ tokenFeatures
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:64:16:64:20 | query | calleeImports |  |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:64:16:64:20 | query | contextFunctionInterfaces | cnd(t) |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:64:16:64:20 | query | contextSurroundingFunctionParameters | (req, res)\n(t) |
-| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:64:16:64:20 | query | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db task cnd t t one query t t one query |
+| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:64:16:64:20 | query | enclosingFunctionBody | req res db pgp process DB_CONNECTION_STRING env DB_CONNECTION_STRING query SELECT ITEM,PRICE FROM PRODUCT WHERE ITEM_CATEGORY=' req params category ' ORDER BY PRICE db any query db many query db manyOrNone query db map query db multi query db multiResult query db none query db one query db oneOrNone query db query query db result query db one text query db one text SELECT * FROM news where id = $1 values req params id db one text SELECT * FROM news where id = $1:raw values req params id db one text SELECT * FROM news where id = $1^ values req params id db one text SELECT * FROM news where id = $1:raw AND name = $2:raw AND foo = $3 values req params id req params name req params foo db one text SELECT * FROM news where id = ${id}:raw AND name = ${name} values id req params id name req params name db one text SELECT * FROM news where id = ${id}:value AND name LIKE '%${name}:value%' AND title LIKE "%${title}:value%" values id req params id name req params name title req params title db task t t one query db taskIf cnd t t one query t t one query |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:64:16:64:20 | query | enclosingFunctionName | get#functionalargument |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:64:16:64:20 | query | fileImports | express pg-promise |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:64:16:64:20 | query | receiverName | t |
@@ -8674,7 +10904,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:12:29:12:32 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:12:29:12:32 | path | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path res write fs readFileSync /home/user/ path path startsWith /home/user/ res write fs readFileSync path path indexOf secret 1 res write fs readFileSync path fs existsSync path res write fs readFileSync path path foo.txt res write fs readFileSync path path foo.txt path bar.txt res write fs readFileSync path path foo.txt path bar.txt someOpaqueCondition res write fs readFileSync path path sanitize path res write fs readFileSync path path url parse req url true query path res write fs readFileSync pathModule basename path res write fs readFileSync pathModule dirname path res write fs readFileSync pathModule extname path res write fs readFileSync pathModule join path res write fs readFileSync pathModule join x y path z res write fs readFileSync pathModule normalize path res write fs readFileSync pathModule relative x path res write fs readFileSync pathModule relative path x res write fs readFileSync pathModule resolve path res write fs readFileSync pathModule resolve x y path z res write fs readFileSync pathModule toNamespacedPath path |
 | autogenerated/TaintedPath/TaintedPath.js:12:29:12:32 | path | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:12:29:12:32 | path | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:12:29:12:32 | path | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:12:29:12:32 | path | receiverName | fs |
 | autogenerated/TaintedPath/TaintedPath.js:12:29:12:32 | path | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/TaintedPath.js:15:29:15:48 | "/home/user/" + path | CalleeFlexibleAccessPath | fs.readFileSync |
@@ -8686,7 +10916,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:15:29:15:48 | "/home/user/" + path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:15:29:15:48 | "/home/user/" + path | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path res write fs readFileSync /home/user/ path path startsWith /home/user/ res write fs readFileSync path path indexOf secret 1 res write fs readFileSync path fs existsSync path res write fs readFileSync path path foo.txt res write fs readFileSync path path foo.txt path bar.txt res write fs readFileSync path path foo.txt path bar.txt someOpaqueCondition res write fs readFileSync path path sanitize path res write fs readFileSync path path url parse req url true query path res write fs readFileSync pathModule basename path res write fs readFileSync pathModule dirname path res write fs readFileSync pathModule extname path res write fs readFileSync pathModule join path res write fs readFileSync pathModule join x y path z res write fs readFileSync pathModule normalize path res write fs readFileSync pathModule relative x path res write fs readFileSync pathModule relative path x res write fs readFileSync pathModule resolve path res write fs readFileSync pathModule resolve x y path z res write fs readFileSync pathModule toNamespacedPath path |
 | autogenerated/TaintedPath/TaintedPath.js:15:29:15:48 | "/home/user/" + path | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:15:29:15:48 | "/home/user/" + path | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:15:29:15:48 | "/home/user/" + path | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:15:29:15:48 | "/home/user/" + path | receiverName | fs |
 | autogenerated/TaintedPath/TaintedPath.js:15:29:15:48 | "/home/user/" + path | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/TaintedPath.js:18:33:18:36 | path | CalleeFlexibleAccessPath | fs.readFileSync |
@@ -8698,7 +10928,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:18:33:18:36 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:18:33:18:36 | path | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path res write fs readFileSync /home/user/ path path startsWith /home/user/ res write fs readFileSync path path indexOf secret 1 res write fs readFileSync path fs existsSync path res write fs readFileSync path path foo.txt res write fs readFileSync path path foo.txt path bar.txt res write fs readFileSync path path foo.txt path bar.txt someOpaqueCondition res write fs readFileSync path path sanitize path res write fs readFileSync path path url parse req url true query path res write fs readFileSync pathModule basename path res write fs readFileSync pathModule dirname path res write fs readFileSync pathModule extname path res write fs readFileSync pathModule join path res write fs readFileSync pathModule join x y path z res write fs readFileSync pathModule normalize path res write fs readFileSync pathModule relative x path res write fs readFileSync pathModule relative path x res write fs readFileSync pathModule resolve path res write fs readFileSync pathModule resolve x y path z res write fs readFileSync pathModule toNamespacedPath path |
 | autogenerated/TaintedPath/TaintedPath.js:18:33:18:36 | path | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:18:33:18:36 | path | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:18:33:18:36 | path | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:18:33:18:36 | path | receiverName | fs |
 | autogenerated/TaintedPath/TaintedPath.js:18:33:18:36 | path | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/TaintedPath.js:21:33:21:36 | path | CalleeFlexibleAccessPath | fs.readFileSync |
@@ -8710,7 +10940,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:21:33:21:36 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:21:33:21:36 | path | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path res write fs readFileSync /home/user/ path path startsWith /home/user/ res write fs readFileSync path path indexOf secret 1 res write fs readFileSync path fs existsSync path res write fs readFileSync path path foo.txt res write fs readFileSync path path foo.txt path bar.txt res write fs readFileSync path path foo.txt path bar.txt someOpaqueCondition res write fs readFileSync path path sanitize path res write fs readFileSync path path url parse req url true query path res write fs readFileSync pathModule basename path res write fs readFileSync pathModule dirname path res write fs readFileSync pathModule extname path res write fs readFileSync pathModule join path res write fs readFileSync pathModule join x y path z res write fs readFileSync pathModule normalize path res write fs readFileSync pathModule relative x path res write fs readFileSync pathModule relative path x res write fs readFileSync pathModule resolve path res write fs readFileSync pathModule resolve x y path z res write fs readFileSync pathModule toNamespacedPath path |
 | autogenerated/TaintedPath/TaintedPath.js:21:33:21:36 | path | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:21:33:21:36 | path | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:21:33:21:36 | path | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:21:33:21:36 | path | receiverName | fs |
 | autogenerated/TaintedPath/TaintedPath.js:21:33:21:36 | path | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/TaintedPath.js:23:21:23:24 | path | CalleeFlexibleAccessPath | fs.existsSync |
@@ -8722,7 +10952,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:23:21:23:24 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:23:21:23:24 | path | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path res write fs readFileSync /home/user/ path path startsWith /home/user/ res write fs readFileSync path path indexOf secret 1 res write fs readFileSync path fs existsSync path res write fs readFileSync path path foo.txt res write fs readFileSync path path foo.txt path bar.txt res write fs readFileSync path path foo.txt path bar.txt someOpaqueCondition res write fs readFileSync path path sanitize path res write fs readFileSync path path url parse req url true query path res write fs readFileSync pathModule basename path res write fs readFileSync pathModule dirname path res write fs readFileSync pathModule extname path res write fs readFileSync pathModule join path res write fs readFileSync pathModule join x y path z res write fs readFileSync pathModule normalize path res write fs readFileSync pathModule relative x path res write fs readFileSync pathModule relative path x res write fs readFileSync pathModule resolve path res write fs readFileSync pathModule resolve x y path z res write fs readFileSync pathModule toNamespacedPath path |
 | autogenerated/TaintedPath/TaintedPath.js:23:21:23:24 | path | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:23:21:23:24 | path | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:23:21:23:24 | path | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:23:21:23:24 | path | receiverName | fs |
 | autogenerated/TaintedPath/TaintedPath.js:23:21:23:24 | path | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/TaintedPath.js:24:33:24:36 | path | CalleeFlexibleAccessPath | fs.readFileSync |
@@ -8734,7 +10964,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:24:33:24:36 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:24:33:24:36 | path | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path res write fs readFileSync /home/user/ path path startsWith /home/user/ res write fs readFileSync path path indexOf secret 1 res write fs readFileSync path fs existsSync path res write fs readFileSync path path foo.txt res write fs readFileSync path path foo.txt path bar.txt res write fs readFileSync path path foo.txt path bar.txt someOpaqueCondition res write fs readFileSync path path sanitize path res write fs readFileSync path path url parse req url true query path res write fs readFileSync pathModule basename path res write fs readFileSync pathModule dirname path res write fs readFileSync pathModule extname path res write fs readFileSync pathModule join path res write fs readFileSync pathModule join x y path z res write fs readFileSync pathModule normalize path res write fs readFileSync pathModule relative x path res write fs readFileSync pathModule relative path x res write fs readFileSync pathModule resolve path res write fs readFileSync pathModule resolve x y path z res write fs readFileSync pathModule toNamespacedPath path |
 | autogenerated/TaintedPath/TaintedPath.js:24:33:24:36 | path | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:24:33:24:36 | path | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:24:33:24:36 | path | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:24:33:24:36 | path | receiverName | fs |
 | autogenerated/TaintedPath/TaintedPath.js:24:33:24:36 | path | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/TaintedPath.js:27:31:27:34 | path | CalleeFlexibleAccessPath | fs.readFileSync |
@@ -8746,7 +10976,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:27:31:27:34 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:27:31:27:34 | path | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path res write fs readFileSync /home/user/ path path startsWith /home/user/ res write fs readFileSync path path indexOf secret 1 res write fs readFileSync path fs existsSync path res write fs readFileSync path path foo.txt res write fs readFileSync path path foo.txt path bar.txt res write fs readFileSync path path foo.txt path bar.txt someOpaqueCondition res write fs readFileSync path path sanitize path res write fs readFileSync path path url parse req url true query path res write fs readFileSync pathModule basename path res write fs readFileSync pathModule dirname path res write fs readFileSync pathModule extname path res write fs readFileSync pathModule join path res write fs readFileSync pathModule join x y path z res write fs readFileSync pathModule normalize path res write fs readFileSync pathModule relative x path res write fs readFileSync pathModule relative path x res write fs readFileSync pathModule resolve path res write fs readFileSync pathModule resolve x y path z res write fs readFileSync pathModule toNamespacedPath path |
 | autogenerated/TaintedPath/TaintedPath.js:27:31:27:34 | path | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:27:31:27:34 | path | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:27:31:27:34 | path | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:27:31:27:34 | path | receiverName | fs |
 | autogenerated/TaintedPath/TaintedPath.js:27:31:27:34 | path | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/TaintedPath.js:30:31:30:34 | path | CalleeFlexibleAccessPath | fs.readFileSync |
@@ -8758,7 +10988,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:30:31:30:34 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:30:31:30:34 | path | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path res write fs readFileSync /home/user/ path path startsWith /home/user/ res write fs readFileSync path path indexOf secret 1 res write fs readFileSync path fs existsSync path res write fs readFileSync path path foo.txt res write fs readFileSync path path foo.txt path bar.txt res write fs readFileSync path path foo.txt path bar.txt someOpaqueCondition res write fs readFileSync path path sanitize path res write fs readFileSync path path url parse req url true query path res write fs readFileSync pathModule basename path res write fs readFileSync pathModule dirname path res write fs readFileSync pathModule extname path res write fs readFileSync pathModule join path res write fs readFileSync pathModule join x y path z res write fs readFileSync pathModule normalize path res write fs readFileSync pathModule relative x path res write fs readFileSync pathModule relative path x res write fs readFileSync pathModule resolve path res write fs readFileSync pathModule resolve x y path z res write fs readFileSync pathModule toNamespacedPath path |
 | autogenerated/TaintedPath/TaintedPath.js:30:31:30:34 | path | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:30:31:30:34 | path | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:30:31:30:34 | path | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:30:31:30:34 | path | receiverName | fs |
 | autogenerated/TaintedPath/TaintedPath.js:30:31:30:34 | path | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/TaintedPath.js:33:31:33:34 | path | CalleeFlexibleAccessPath | fs.readFileSync |
@@ -8770,7 +11000,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:33:31:33:34 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:33:31:33:34 | path | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path res write fs readFileSync /home/user/ path path startsWith /home/user/ res write fs readFileSync path path indexOf secret 1 res write fs readFileSync path fs existsSync path res write fs readFileSync path path foo.txt res write fs readFileSync path path foo.txt path bar.txt res write fs readFileSync path path foo.txt path bar.txt someOpaqueCondition res write fs readFileSync path path sanitize path res write fs readFileSync path path url parse req url true query path res write fs readFileSync pathModule basename path res write fs readFileSync pathModule dirname path res write fs readFileSync pathModule extname path res write fs readFileSync pathModule join path res write fs readFileSync pathModule join x y path z res write fs readFileSync pathModule normalize path res write fs readFileSync pathModule relative x path res write fs readFileSync pathModule relative path x res write fs readFileSync pathModule resolve path res write fs readFileSync pathModule resolve x y path z res write fs readFileSync pathModule toNamespacedPath path |
 | autogenerated/TaintedPath/TaintedPath.js:33:31:33:34 | path | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:33:31:33:34 | path | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:33:31:33:34 | path | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:33:31:33:34 | path | receiverName | fs |
 | autogenerated/TaintedPath/TaintedPath.js:33:31:33:34 | path | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/TaintedPath.js:36:29:36:32 | path | CalleeFlexibleAccessPath | fs.readFileSync |
@@ -8782,7 +11012,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:36:29:36:32 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:36:29:36:32 | path | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path res write fs readFileSync /home/user/ path path startsWith /home/user/ res write fs readFileSync path path indexOf secret 1 res write fs readFileSync path fs existsSync path res write fs readFileSync path path foo.txt res write fs readFileSync path path foo.txt path bar.txt res write fs readFileSync path path foo.txt path bar.txt someOpaqueCondition res write fs readFileSync path path sanitize path res write fs readFileSync path path url parse req url true query path res write fs readFileSync pathModule basename path res write fs readFileSync pathModule dirname path res write fs readFileSync pathModule extname path res write fs readFileSync pathModule join path res write fs readFileSync pathModule join x y path z res write fs readFileSync pathModule normalize path res write fs readFileSync pathModule relative x path res write fs readFileSync pathModule relative path x res write fs readFileSync pathModule resolve path res write fs readFileSync pathModule resolve x y path z res write fs readFileSync pathModule toNamespacedPath path |
 | autogenerated/TaintedPath/TaintedPath.js:36:29:36:32 | path | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:36:29:36:32 | path | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:36:29:36:32 | path | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:36:29:36:32 | path | receiverName | fs |
 | autogenerated/TaintedPath/TaintedPath.js:36:29:36:32 | path | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/TaintedPath.js:40:29:40:53 | pathMod ... e(path) | CalleeFlexibleAccessPath | fs.readFileSync |
@@ -8794,7 +11024,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:40:29:40:53 | pathMod ... e(path) | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:40:29:40:53 | pathMod ... e(path) | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path res write fs readFileSync /home/user/ path path startsWith /home/user/ res write fs readFileSync path path indexOf secret 1 res write fs readFileSync path fs existsSync path res write fs readFileSync path path foo.txt res write fs readFileSync path path foo.txt path bar.txt res write fs readFileSync path path foo.txt path bar.txt someOpaqueCondition res write fs readFileSync path path sanitize path res write fs readFileSync path path url parse req url true query path res write fs readFileSync pathModule basename path res write fs readFileSync pathModule dirname path res write fs readFileSync pathModule extname path res write fs readFileSync pathModule join path res write fs readFileSync pathModule join x y path z res write fs readFileSync pathModule normalize path res write fs readFileSync pathModule relative x path res write fs readFileSync pathModule relative path x res write fs readFileSync pathModule resolve path res write fs readFileSync pathModule resolve x y path z res write fs readFileSync pathModule toNamespacedPath path |
 | autogenerated/TaintedPath/TaintedPath.js:40:29:40:53 | pathMod ... e(path) | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:40:29:40:53 | pathMod ... e(path) | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:40:29:40:53 | pathMod ... e(path) | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:40:29:40:53 | pathMod ... e(path) | receiverName | fs |
 | autogenerated/TaintedPath/TaintedPath.js:40:29:40:53 | pathMod ... e(path) | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/TaintedPath.js:42:29:42:52 | pathMod ... e(path) | CalleeFlexibleAccessPath | fs.readFileSync |
@@ -8806,7 +11036,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:42:29:42:52 | pathMod ... e(path) | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:42:29:42:52 | pathMod ... e(path) | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path res write fs readFileSync /home/user/ path path startsWith /home/user/ res write fs readFileSync path path indexOf secret 1 res write fs readFileSync path fs existsSync path res write fs readFileSync path path foo.txt res write fs readFileSync path path foo.txt path bar.txt res write fs readFileSync path path foo.txt path bar.txt someOpaqueCondition res write fs readFileSync path path sanitize path res write fs readFileSync path path url parse req url true query path res write fs readFileSync pathModule basename path res write fs readFileSync pathModule dirname path res write fs readFileSync pathModule extname path res write fs readFileSync pathModule join path res write fs readFileSync pathModule join x y path z res write fs readFileSync pathModule normalize path res write fs readFileSync pathModule relative x path res write fs readFileSync pathModule relative path x res write fs readFileSync pathModule resolve path res write fs readFileSync pathModule resolve x y path z res write fs readFileSync pathModule toNamespacedPath path |
 | autogenerated/TaintedPath/TaintedPath.js:42:29:42:52 | pathMod ... e(path) | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:42:29:42:52 | pathMod ... e(path) | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:42:29:42:52 | pathMod ... e(path) | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:42:29:42:52 | pathMod ... e(path) | receiverName | fs |
 | autogenerated/TaintedPath/TaintedPath.js:42:29:42:52 | pathMod ... e(path) | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/TaintedPath.js:44:29:44:52 | pathMod ... e(path) | CalleeFlexibleAccessPath | fs.readFileSync |
@@ -8818,7 +11048,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:44:29:44:52 | pathMod ... e(path) | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:44:29:44:52 | pathMod ... e(path) | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path res write fs readFileSync /home/user/ path path startsWith /home/user/ res write fs readFileSync path path indexOf secret 1 res write fs readFileSync path fs existsSync path res write fs readFileSync path path foo.txt res write fs readFileSync path path foo.txt path bar.txt res write fs readFileSync path path foo.txt path bar.txt someOpaqueCondition res write fs readFileSync path path sanitize path res write fs readFileSync path path url parse req url true query path res write fs readFileSync pathModule basename path res write fs readFileSync pathModule dirname path res write fs readFileSync pathModule extname path res write fs readFileSync pathModule join path res write fs readFileSync pathModule join x y path z res write fs readFileSync pathModule normalize path res write fs readFileSync pathModule relative x path res write fs readFileSync pathModule relative path x res write fs readFileSync pathModule resolve path res write fs readFileSync pathModule resolve x y path z res write fs readFileSync pathModule toNamespacedPath path |
 | autogenerated/TaintedPath/TaintedPath.js:44:29:44:52 | pathMod ... e(path) | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:44:29:44:52 | pathMod ... e(path) | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:44:29:44:52 | pathMod ... e(path) | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:44:29:44:52 | pathMod ... e(path) | receiverName | fs |
 | autogenerated/TaintedPath/TaintedPath.js:44:29:44:52 | pathMod ... e(path) | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/TaintedPath.js:46:29:46:49 | pathMod ... n(path) | CalleeFlexibleAccessPath | fs.readFileSync |
@@ -8830,7 +11060,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:46:29:46:49 | pathMod ... n(path) | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:46:29:46:49 | pathMod ... n(path) | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path res write fs readFileSync /home/user/ path path startsWith /home/user/ res write fs readFileSync path path indexOf secret 1 res write fs readFileSync path fs existsSync path res write fs readFileSync path path foo.txt res write fs readFileSync path path foo.txt path bar.txt res write fs readFileSync path path foo.txt path bar.txt someOpaqueCondition res write fs readFileSync path path sanitize path res write fs readFileSync path path url parse req url true query path res write fs readFileSync pathModule basename path res write fs readFileSync pathModule dirname path res write fs readFileSync pathModule extname path res write fs readFileSync pathModule join path res write fs readFileSync pathModule join x y path z res write fs readFileSync pathModule normalize path res write fs readFileSync pathModule relative x path res write fs readFileSync pathModule relative path x res write fs readFileSync pathModule resolve path res write fs readFileSync pathModule resolve x y path z res write fs readFileSync pathModule toNamespacedPath path |
 | autogenerated/TaintedPath/TaintedPath.js:46:29:46:49 | pathMod ... n(path) | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:46:29:46:49 | pathMod ... n(path) | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:46:29:46:49 | pathMod ... n(path) | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:46:29:46:49 | pathMod ... n(path) | receiverName | fs |
 | autogenerated/TaintedPath/TaintedPath.js:46:29:46:49 | pathMod ... n(path) | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/TaintedPath.js:48:29:48:58 | pathMod ... ath, z) | CalleeFlexibleAccessPath | fs.readFileSync |
@@ -8842,7 +11072,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:48:29:48:58 | pathMod ... ath, z) | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:48:29:48:58 | pathMod ... ath, z) | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path res write fs readFileSync /home/user/ path path startsWith /home/user/ res write fs readFileSync path path indexOf secret 1 res write fs readFileSync path fs existsSync path res write fs readFileSync path path foo.txt res write fs readFileSync path path foo.txt path bar.txt res write fs readFileSync path path foo.txt path bar.txt someOpaqueCondition res write fs readFileSync path path sanitize path res write fs readFileSync path path url parse req url true query path res write fs readFileSync pathModule basename path res write fs readFileSync pathModule dirname path res write fs readFileSync pathModule extname path res write fs readFileSync pathModule join path res write fs readFileSync pathModule join x y path z res write fs readFileSync pathModule normalize path res write fs readFileSync pathModule relative x path res write fs readFileSync pathModule relative path x res write fs readFileSync pathModule resolve path res write fs readFileSync pathModule resolve x y path z res write fs readFileSync pathModule toNamespacedPath path |
 | autogenerated/TaintedPath/TaintedPath.js:48:29:48:58 | pathMod ... ath, z) | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:48:29:48:58 | pathMod ... ath, z) | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:48:29:48:58 | pathMod ... ath, z) | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:48:29:48:58 | pathMod ... ath, z) | receiverName | fs |
 | autogenerated/TaintedPath/TaintedPath.js:48:29:48:58 | pathMod ... ath, z) | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/TaintedPath.js:50:29:50:54 | pathMod ... e(path) | CalleeFlexibleAccessPath | fs.readFileSync |
@@ -8854,7 +11084,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:50:29:50:54 | pathMod ... e(path) | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:50:29:50:54 | pathMod ... e(path) | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path res write fs readFileSync /home/user/ path path startsWith /home/user/ res write fs readFileSync path path indexOf secret 1 res write fs readFileSync path fs existsSync path res write fs readFileSync path path foo.txt res write fs readFileSync path path foo.txt path bar.txt res write fs readFileSync path path foo.txt path bar.txt someOpaqueCondition res write fs readFileSync path path sanitize path res write fs readFileSync path path url parse req url true query path res write fs readFileSync pathModule basename path res write fs readFileSync pathModule dirname path res write fs readFileSync pathModule extname path res write fs readFileSync pathModule join path res write fs readFileSync pathModule join x y path z res write fs readFileSync pathModule normalize path res write fs readFileSync pathModule relative x path res write fs readFileSync pathModule relative path x res write fs readFileSync pathModule resolve path res write fs readFileSync pathModule resolve x y path z res write fs readFileSync pathModule toNamespacedPath path |
 | autogenerated/TaintedPath/TaintedPath.js:50:29:50:54 | pathMod ... e(path) | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:50:29:50:54 | pathMod ... e(path) | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:50:29:50:54 | pathMod ... e(path) | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:50:29:50:54 | pathMod ... e(path) | receiverName | fs |
 | autogenerated/TaintedPath/TaintedPath.js:50:29:50:54 | pathMod ... e(path) | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/TaintedPath.js:52:29:52:56 | pathMod ... , path) | CalleeFlexibleAccessPath | fs.readFileSync |
@@ -8866,7 +11096,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:52:29:52:56 | pathMod ... , path) | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:52:29:52:56 | pathMod ... , path) | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path res write fs readFileSync /home/user/ path path startsWith /home/user/ res write fs readFileSync path path indexOf secret 1 res write fs readFileSync path fs existsSync path res write fs readFileSync path path foo.txt res write fs readFileSync path path foo.txt path bar.txt res write fs readFileSync path path foo.txt path bar.txt someOpaqueCondition res write fs readFileSync path path sanitize path res write fs readFileSync path path url parse req url true query path res write fs readFileSync pathModule basename path res write fs readFileSync pathModule dirname path res write fs readFileSync pathModule extname path res write fs readFileSync pathModule join path res write fs readFileSync pathModule join x y path z res write fs readFileSync pathModule normalize path res write fs readFileSync pathModule relative x path res write fs readFileSync pathModule relative path x res write fs readFileSync pathModule resolve path res write fs readFileSync pathModule resolve x y path z res write fs readFileSync pathModule toNamespacedPath path |
 | autogenerated/TaintedPath/TaintedPath.js:52:29:52:56 | pathMod ... , path) | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:52:29:52:56 | pathMod ... , path) | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:52:29:52:56 | pathMod ... , path) | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:52:29:52:56 | pathMod ... , path) | receiverName | fs |
 | autogenerated/TaintedPath/TaintedPath.js:52:29:52:56 | pathMod ... , path) | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/TaintedPath.js:54:29:54:56 | pathMod ... ath, x) | CalleeFlexibleAccessPath | fs.readFileSync |
@@ -8878,7 +11108,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:54:29:54:56 | pathMod ... ath, x) | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:54:29:54:56 | pathMod ... ath, x) | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path res write fs readFileSync /home/user/ path path startsWith /home/user/ res write fs readFileSync path path indexOf secret 1 res write fs readFileSync path fs existsSync path res write fs readFileSync path path foo.txt res write fs readFileSync path path foo.txt path bar.txt res write fs readFileSync path path foo.txt path bar.txt someOpaqueCondition res write fs readFileSync path path sanitize path res write fs readFileSync path path url parse req url true query path res write fs readFileSync pathModule basename path res write fs readFileSync pathModule dirname path res write fs readFileSync pathModule extname path res write fs readFileSync pathModule join path res write fs readFileSync pathModule join x y path z res write fs readFileSync pathModule normalize path res write fs readFileSync pathModule relative x path res write fs readFileSync pathModule relative path x res write fs readFileSync pathModule resolve path res write fs readFileSync pathModule resolve x y path z res write fs readFileSync pathModule toNamespacedPath path |
 | autogenerated/TaintedPath/TaintedPath.js:54:29:54:56 | pathMod ... ath, x) | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:54:29:54:56 | pathMod ... ath, x) | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:54:29:54:56 | pathMod ... ath, x) | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:54:29:54:56 | pathMod ... ath, x) | receiverName | fs |
 | autogenerated/TaintedPath/TaintedPath.js:54:29:54:56 | pathMod ... ath, x) | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/TaintedPath.js:56:29:56:52 | pathMod ... e(path) | CalleeFlexibleAccessPath | fs.readFileSync |
@@ -8890,7 +11120,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:56:29:56:52 | pathMod ... e(path) | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:56:29:56:52 | pathMod ... e(path) | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path res write fs readFileSync /home/user/ path path startsWith /home/user/ res write fs readFileSync path path indexOf secret 1 res write fs readFileSync path fs existsSync path res write fs readFileSync path path foo.txt res write fs readFileSync path path foo.txt path bar.txt res write fs readFileSync path path foo.txt path bar.txt someOpaqueCondition res write fs readFileSync path path sanitize path res write fs readFileSync path path url parse req url true query path res write fs readFileSync pathModule basename path res write fs readFileSync pathModule dirname path res write fs readFileSync pathModule extname path res write fs readFileSync pathModule join path res write fs readFileSync pathModule join x y path z res write fs readFileSync pathModule normalize path res write fs readFileSync pathModule relative x path res write fs readFileSync pathModule relative path x res write fs readFileSync pathModule resolve path res write fs readFileSync pathModule resolve x y path z res write fs readFileSync pathModule toNamespacedPath path |
 | autogenerated/TaintedPath/TaintedPath.js:56:29:56:52 | pathMod ... e(path) | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:56:29:56:52 | pathMod ... e(path) | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:56:29:56:52 | pathMod ... e(path) | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:56:29:56:52 | pathMod ... e(path) | receiverName | fs |
 | autogenerated/TaintedPath/TaintedPath.js:56:29:56:52 | pathMod ... e(path) | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/TaintedPath.js:58:29:58:61 | pathMod ... ath, z) | CalleeFlexibleAccessPath | fs.readFileSync |
@@ -8902,7 +11132,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:58:29:58:61 | pathMod ... ath, z) | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:58:29:58:61 | pathMod ... ath, z) | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path res write fs readFileSync /home/user/ path path startsWith /home/user/ res write fs readFileSync path path indexOf secret 1 res write fs readFileSync path fs existsSync path res write fs readFileSync path path foo.txt res write fs readFileSync path path foo.txt path bar.txt res write fs readFileSync path path foo.txt path bar.txt someOpaqueCondition res write fs readFileSync path path sanitize path res write fs readFileSync path path url parse req url true query path res write fs readFileSync pathModule basename path res write fs readFileSync pathModule dirname path res write fs readFileSync pathModule extname path res write fs readFileSync pathModule join path res write fs readFileSync pathModule join x y path z res write fs readFileSync pathModule normalize path res write fs readFileSync pathModule relative x path res write fs readFileSync pathModule relative path x res write fs readFileSync pathModule resolve path res write fs readFileSync pathModule resolve x y path z res write fs readFileSync pathModule toNamespacedPath path |
 | autogenerated/TaintedPath/TaintedPath.js:58:29:58:61 | pathMod ... ath, z) | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:58:29:58:61 | pathMod ... ath, z) | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:58:29:58:61 | pathMod ... ath, z) | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:58:29:58:61 | pathMod ... ath, z) | receiverName | fs |
 | autogenerated/TaintedPath/TaintedPath.js:58:29:58:61 | pathMod ... ath, z) | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/TaintedPath.js:60:29:60:61 | pathMod ... h(path) | CalleeFlexibleAccessPath | fs.readFileSync |
@@ -8914,7 +11144,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:60:29:60:61 | pathMod ... h(path) | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:60:29:60:61 | pathMod ... h(path) | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path res write fs readFileSync /home/user/ path path startsWith /home/user/ res write fs readFileSync path path indexOf secret 1 res write fs readFileSync path fs existsSync path res write fs readFileSync path path foo.txt res write fs readFileSync path path foo.txt path bar.txt res write fs readFileSync path path foo.txt path bar.txt someOpaqueCondition res write fs readFileSync path path sanitize path res write fs readFileSync path path url parse req url true query path res write fs readFileSync pathModule basename path res write fs readFileSync pathModule dirname path res write fs readFileSync pathModule extname path res write fs readFileSync pathModule join path res write fs readFileSync pathModule join x y path z res write fs readFileSync pathModule normalize path res write fs readFileSync pathModule relative x path res write fs readFileSync pathModule relative path x res write fs readFileSync pathModule resolve path res write fs readFileSync pathModule resolve x y path z res write fs readFileSync pathModule toNamespacedPath path |
 | autogenerated/TaintedPath/TaintedPath.js:60:29:60:61 | pathMod ... h(path) | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:60:29:60:61 | pathMod ... h(path) | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:60:29:60:61 | pathMod ... h(path) | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:60:29:60:61 | pathMod ... h(path) | receiverName | fs |
 | autogenerated/TaintedPath/TaintedPath.js:60:29:60:61 | pathMod ... h(path) | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/TaintedPath.js:71:26:71:45 | Cookie.get("unsafe") | CalleeFlexibleAccessPath |  |
@@ -8926,7 +11156,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:71:26:71:45 | Cookie.get("unsafe") | contextSurroundingFunctionParameters | () |
 | autogenerated/TaintedPath/TaintedPath.js:71:26:71:45 | Cookie.get("unsafe") | enclosingFunctionBody | templateUrl Cookie get unsafe |
 | autogenerated/TaintedPath/TaintedPath.js:71:26:71:45 | Cookie.get("unsafe") | enclosingFunctionName | directive#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:71:26:71:45 | Cookie.get("unsafe") | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:71:26:71:45 | Cookie.get("unsafe") | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:71:26:71:45 | Cookie.get("unsafe") | receiverName |  |
 | autogenerated/TaintedPath/TaintedPath.js:71:26:71:45 | Cookie.get("unsafe") | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/TaintedPath.js:77:31:77:76 | require ... ).query | CalleeFlexibleAccessPath | fs.readFileSync |
@@ -8938,7 +11168,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:77:31:77:76 | require ... ).query | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:77:31:77:76 | require ... ).query | enclosingFunctionBody | req res res write fs readFileSync require querystringify parse req url query res write fs readFileSync require query-string parse req url query res write fs readFileSync require querystring parse req url query |
 | autogenerated/TaintedPath/TaintedPath.js:77:31:77:76 | require ... ).query | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:77:31:77:76 | require ... ).query | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:77:31:77:76 | require ... ).query | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:77:31:77:76 | require ... ).query | receiverName | fs |
 | autogenerated/TaintedPath/TaintedPath.js:77:31:77:76 | require ... ).query | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/TaintedPath.js:78:31:78:74 | require ... ).query | CalleeFlexibleAccessPath | fs.readFileSync |
@@ -8950,7 +11180,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:78:31:78:74 | require ... ).query | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:78:31:78:74 | require ... ).query | enclosingFunctionBody | req res res write fs readFileSync require querystringify parse req url query res write fs readFileSync require query-string parse req url query res write fs readFileSync require querystring parse req url query |
 | autogenerated/TaintedPath/TaintedPath.js:78:31:78:74 | require ... ).query | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:78:31:78:74 | require ... ).query | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:78:31:78:74 | require ... ).query | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:78:31:78:74 | require ... ).query | receiverName | fs |
 | autogenerated/TaintedPath/TaintedPath.js:78:31:78:74 | require ... ).query | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/TaintedPath.js:79:31:79:73 | require ... ).query | CalleeFlexibleAccessPath | fs.readFileSync |
@@ -8962,7 +11192,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:79:31:79:73 | require ... ).query | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:79:31:79:73 | require ... ).query | enclosingFunctionBody | req res res write fs readFileSync require querystringify parse req url query res write fs readFileSync require query-string parse req url query res write fs readFileSync require querystring parse req url query |
 | autogenerated/TaintedPath/TaintedPath.js:79:31:79:73 | require ... ).query | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:79:31:79:73 | require ... ).query | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:79:31:79:73 | require ... ).query | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:79:31:79:73 | require ... ).query | receiverName | fs |
 | autogenerated/TaintedPath/TaintedPath.js:79:31:79:73 | require ... ).query | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/TaintedPath.js:87:48:87:60 | req.params[0] | CalleeFlexibleAccessPath | res.render |
@@ -8974,7 +11204,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:87:48:87:60 | req.params[0] | contextSurroundingFunctionParameters | ()\n(req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:87:48:87:60 | req.params[0] | enclosingFunctionBody | express require express application express views_local req res res render req 0 params 0 application get /views/* views_local views_imported require ./views application get /views/* views_imported |
 | autogenerated/TaintedPath/TaintedPath.js:87:48:87:60 | req.params[0] | enclosingFunctionName |  |
-| autogenerated/TaintedPath/TaintedPath.js:87:48:87:60 | req.params[0] | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:87:48:87:60 | req.params[0] | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:87:48:87:60 | req.params[0] | receiverName | res |
 | autogenerated/TaintedPath/TaintedPath.js:87:48:87:60 | req.params[0] | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/TaintedPath.js:102:28:102:48 | fs.real ... c(path) | CalleeFlexibleAccessPath | fs.readFileSync |
@@ -8986,7 +11216,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:102:28:102:48 | fs.real ... c(path) | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:102:28:102:48 | fs.real ... c(path) | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync fs realpathSync path fs realpath path err realpath res write fs readFileSync realpath |
 | autogenerated/TaintedPath/TaintedPath.js:102:28:102:48 | fs.real ... c(path) | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:102:28:102:48 | fs.real ... c(path) | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:102:28:102:48 | fs.real ... c(path) | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:102:28:102:48 | fs.real ... c(path) | receiverName | fs |
 | autogenerated/TaintedPath/TaintedPath.js:102:28:102:48 | fs.real ... c(path) | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/TaintedPath.js:102:44:102:47 | path | CalleeFlexibleAccessPath | fs.realpathSync |
@@ -8998,7 +11228,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:102:44:102:47 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:102:44:102:47 | path | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync fs realpathSync path fs realpath path err realpath res write fs readFileSync realpath |
 | autogenerated/TaintedPath/TaintedPath.js:102:44:102:47 | path | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:102:44:102:47 | path | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:102:44:102:47 | path | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:102:44:102:47 | path | receiverName | fs |
 | autogenerated/TaintedPath/TaintedPath.js:102:44:102:47 | path | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/TaintedPath.js:103:14:103:17 | path | CalleeFlexibleAccessPath | fs.realpath |
@@ -9010,7 +11240,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:103:14:103:17 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:103:14:103:17 | path | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync fs realpathSync path fs realpath path err realpath res write fs readFileSync realpath |
 | autogenerated/TaintedPath/TaintedPath.js:103:14:103:17 | path | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:103:14:103:17 | path | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:103:14:103:17 | path | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:103:14:103:17 | path | receiverName | fs |
 | autogenerated/TaintedPath/TaintedPath.js:103:14:103:17 | path | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/TaintedPath.js:104:18:106:18 | functio ...       } | CalleeFlexibleAccessPath | fs.realpath |
@@ -9022,7 +11252,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:104:18:106:18 | functio ...       } | contextSurroundingFunctionParameters | (req, res)\n(err, realpath) |
 | autogenerated/TaintedPath/TaintedPath.js:104:18:106:18 | functio ...       } | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync fs realpathSync path fs realpath path err realpath res write fs readFileSync realpath |
 | autogenerated/TaintedPath/TaintedPath.js:104:18:106:18 | functio ...       } | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:104:18:106:18 | functio ...       } | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:104:18:106:18 | functio ...       } | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:104:18:106:18 | functio ...       } | receiverName | fs |
 | autogenerated/TaintedPath/TaintedPath.js:104:18:106:18 | functio ...       } | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/TaintedPath.js:105:45:105:52 | realpath | CalleeFlexibleAccessPath | fs.readFileSync |
@@ -9034,7 +11264,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:105:45:105:52 | realpath | contextSurroundingFunctionParameters | (req, res)\n(err, realpath) |
 | autogenerated/TaintedPath/TaintedPath.js:105:45:105:52 | realpath | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync fs realpathSync path fs realpath path err realpath res write fs readFileSync realpath |
 | autogenerated/TaintedPath/TaintedPath.js:105:45:105:52 | realpath | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:105:45:105:52 | realpath | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:105:45:105:52 | realpath | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:105:45:105:52 | realpath | receiverName | fs |
 | autogenerated/TaintedPath/TaintedPath.js:105:45:105:52 | realpath | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/TaintedPath.js:119:29:119:32 | path | CalleeFlexibleAccessPath | fs.readFileSync |
@@ -9046,7 +11276,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:119:29:119:32 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:119:29:119:32 | path | enclosingFunctionBody | req res path url parse req url true query path path path path replace /[\\]\\[*,;'"`<>\\\\?\\/]/g  path path replace /\\.\\./g  res write fs readFileSync path |
 | autogenerated/TaintedPath/TaintedPath.js:119:29:119:32 | path | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:119:29:119:32 | path | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:119:29:119:32 | path | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:119:29:119:32 | path | receiverName | fs |
 | autogenerated/TaintedPath/TaintedPath.js:119:29:119:32 | path | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/TaintedPath.js:132:29:132:32 | path | CalleeFlexibleAccessPath | fs.readFileSync |
@@ -9058,7 +11288,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:132:29:132:32 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:132:29:132:32 | path | enclosingFunctionBody | req res path url parse req url true query path path path path replace /[\\]\\[*,;'"`<>\\\\?\\/]/g  path path replace /\\.\\./g  res write fs readFileSync path |
 | autogenerated/TaintedPath/TaintedPath.js:132:29:132:32 | path | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:132:29:132:32 | path | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:132:29:132:32 | path | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:132:29:132:32 | path | receiverName | fs |
 | autogenerated/TaintedPath/TaintedPath.js:132:29:132:32 | path | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/TaintedPath.js:138:23:138:26 | path | CalleeFlexibleAccessPath | import(!) |
@@ -9070,7 +11300,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:138:23:138:26 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:138:23:138:26 | path | enclosingFunctionBody | req res path url parse req url true query path require send req path |
 | autogenerated/TaintedPath/TaintedPath.js:138:23:138:26 | path | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:138:23:138:26 | path | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:138:23:138:26 | path | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:138:23:138:26 | path | receiverName |  |
 | autogenerated/TaintedPath/TaintedPath.js:138:23:138:26 | path | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/TaintedPath.js:144:19:144:22 | path | CalleeFlexibleAccessPath | fs.readFileSync |
@@ -9082,7 +11312,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:144:19:144:22 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:144:19:144:22 | path | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path split path split / fs readFileSync split join / fs readFileSync prefix split split length 1 fs readFileSync split x fs readFileSync prefix split x concatted prefix concat split fs readFileSync concatted join / concatted2 split concat prefix fs readFileSync concatted2 join / fs readFileSync split pop |
 | autogenerated/TaintedPath/TaintedPath.js:144:19:144:22 | path | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:144:19:144:22 | path | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:144:19:144:22 | path | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:144:19:144:22 | path | receiverName | fs |
 | autogenerated/TaintedPath/TaintedPath.js:144:19:144:22 | path | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/TaintedPath.js:148:19:148:33 | split.join("/") | CalleeFlexibleAccessPath | fs.readFileSync |
@@ -9094,7 +11324,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:148:19:148:33 | split.join("/") | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:148:19:148:33 | split.join("/") | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path split path split / fs readFileSync split join / fs readFileSync prefix split split length 1 fs readFileSync split x fs readFileSync prefix split x concatted prefix concat split fs readFileSync concatted join / concatted2 split concat prefix fs readFileSync concatted2 join / fs readFileSync split pop |
 | autogenerated/TaintedPath/TaintedPath.js:148:19:148:33 | split.join("/") | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:148:19:148:33 | split.join("/") | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:148:19:148:33 | split.join("/") | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:148:19:148:33 | split.join("/") | receiverName | fs |
 | autogenerated/TaintedPath/TaintedPath.js:148:19:148:33 | split.join("/") | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/TaintedPath.js:150:19:150:50 | prefix  ... th - 1] | CalleeFlexibleAccessPath | fs.readFileSync |
@@ -9106,7 +11336,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:150:19:150:50 | prefix  ... th - 1] | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:150:19:150:50 | prefix  ... th - 1] | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path split path split / fs readFileSync split join / fs readFileSync prefix split split length 1 fs readFileSync split x fs readFileSync prefix split x concatted prefix concat split fs readFileSync concatted join / concatted2 split concat prefix fs readFileSync concatted2 join / fs readFileSync split pop |
 | autogenerated/TaintedPath/TaintedPath.js:150:19:150:50 | prefix  ... th - 1] | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:150:19:150:50 | prefix  ... th - 1] | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:150:19:150:50 | prefix  ... th - 1] | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:150:19:150:50 | prefix  ... th - 1] | receiverName | fs |
 | autogenerated/TaintedPath/TaintedPath.js:150:19:150:50 | prefix  ... th - 1] | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/TaintedPath.js:152:19:152:26 | split[x] | CalleeFlexibleAccessPath | fs.readFileSync |
@@ -9118,7 +11348,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:152:19:152:26 | split[x] | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:152:19:152:26 | split[x] | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path split path split / fs readFileSync split join / fs readFileSync prefix split split length 1 fs readFileSync split x fs readFileSync prefix split x concatted prefix concat split fs readFileSync concatted join / concatted2 split concat prefix fs readFileSync concatted2 join / fs readFileSync split pop |
 | autogenerated/TaintedPath/TaintedPath.js:152:19:152:26 | split[x] | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:152:19:152:26 | split[x] | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:152:19:152:26 | split[x] | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:152:19:152:26 | split[x] | receiverName | fs |
 | autogenerated/TaintedPath/TaintedPath.js:152:19:152:26 | split[x] | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/TaintedPath.js:153:19:153:35 | prefix + split[x] | CalleeFlexibleAccessPath | fs.readFileSync |
@@ -9130,7 +11360,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:153:19:153:35 | prefix + split[x] | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:153:19:153:35 | prefix + split[x] | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path split path split / fs readFileSync split join / fs readFileSync prefix split split length 1 fs readFileSync split x fs readFileSync prefix split x concatted prefix concat split fs readFileSync concatted join / concatted2 split concat prefix fs readFileSync concatted2 join / fs readFileSync split pop |
 | autogenerated/TaintedPath/TaintedPath.js:153:19:153:35 | prefix + split[x] | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:153:19:153:35 | prefix + split[x] | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:153:19:153:35 | prefix + split[x] | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:153:19:153:35 | prefix + split[x] | receiverName | fs |
 | autogenerated/TaintedPath/TaintedPath.js:153:19:153:35 | prefix + split[x] | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/TaintedPath.js:156:19:156:37 | concatted.join("/") | CalleeFlexibleAccessPath | fs.readFileSync |
@@ -9142,7 +11372,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:156:19:156:37 | concatted.join("/") | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:156:19:156:37 | concatted.join("/") | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path split path split / fs readFileSync split join / fs readFileSync prefix split split length 1 fs readFileSync split x fs readFileSync prefix split x concatted prefix concat split fs readFileSync concatted join / concatted2 split concat prefix fs readFileSync concatted2 join / fs readFileSync split pop |
 | autogenerated/TaintedPath/TaintedPath.js:156:19:156:37 | concatted.join("/") | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:156:19:156:37 | concatted.join("/") | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:156:19:156:37 | concatted.join("/") | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:156:19:156:37 | concatted.join("/") | receiverName | fs |
 | autogenerated/TaintedPath/TaintedPath.js:156:19:156:37 | concatted.join("/") | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/TaintedPath.js:159:19:159:38 | concatted2.join("/") | CalleeFlexibleAccessPath | fs.readFileSync |
@@ -9154,7 +11384,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:159:19:159:38 | concatted2.join("/") | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:159:19:159:38 | concatted2.join("/") | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path split path split / fs readFileSync split join / fs readFileSync prefix split split length 1 fs readFileSync split x fs readFileSync prefix split x concatted prefix concat split fs readFileSync concatted join / concatted2 split concat prefix fs readFileSync concatted2 join / fs readFileSync split pop |
 | autogenerated/TaintedPath/TaintedPath.js:159:19:159:38 | concatted2.join("/") | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:159:19:159:38 | concatted2.join("/") | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:159:19:159:38 | concatted2.join("/") | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:159:19:159:38 | concatted2.join("/") | receiverName | fs |
 | autogenerated/TaintedPath/TaintedPath.js:159:19:159:38 | concatted2.join("/") | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/TaintedPath.js:161:19:161:29 | split.pop() | CalleeFlexibleAccessPath | fs.readFileSync |
@@ -9166,7 +11396,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:161:19:161:29 | split.pop() | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:161:19:161:29 | split.pop() | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path split path split / fs readFileSync split join / fs readFileSync prefix split split length 1 fs readFileSync split x fs readFileSync prefix split x concatted prefix concat split fs readFileSync concatted join / concatted2 split concat prefix fs readFileSync concatted2 join / fs readFileSync split pop |
 | autogenerated/TaintedPath/TaintedPath.js:161:19:161:29 | split.pop() | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:161:19:161:29 | split.pop() | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:161:19:161:29 | split.pop() | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:161:19:161:29 | split.pop() | receiverName | fs |
 | autogenerated/TaintedPath/TaintedPath.js:161:19:161:29 | split.pop() | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/TaintedPath.js:169:29:169:68 | path.re ... /g, '') | CalleeFlexibleAccessPath | fs.readFileSync |
@@ -9178,7 +11408,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:169:29:169:68 | path.re ... /g, '') | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:169:29:169:68 | path.re ... /g, '') | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path replace /[\\]\\[*,;'"`<>\\\\?\\/]/g  res write fs readFileSync path replace /[abcd]/g  res write fs readFileSync path replace /[./]/g  res write fs readFileSync path replace /[foobar/foobar]/g  res write fs readFileSync path replace /\\//g  res write fs readFileSync path replace /\\.\|\\//g  res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  pathModule isAbsolute path res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  res write fs readFileSync prefix pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)*/  res write fs readFileSync prefix path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  |
 | autogenerated/TaintedPath/TaintedPath.js:169:29:169:68 | path.re ... /g, '') | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:169:29:169:68 | path.re ... /g, '') | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:169:29:169:68 | path.re ... /g, '') | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:169:29:169:68 | path.re ... /g, '') | receiverName | fs |
 | autogenerated/TaintedPath/TaintedPath.js:169:29:169:68 | path.re ... /g, '') | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/TaintedPath.js:170:29:170:55 | path.re ... /g, '') | CalleeFlexibleAccessPath | fs.readFileSync |
@@ -9190,7 +11420,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:170:29:170:55 | path.re ... /g, '') | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:170:29:170:55 | path.re ... /g, '') | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path replace /[\\]\\[*,;'"`<>\\\\?\\/]/g  res write fs readFileSync path replace /[abcd]/g  res write fs readFileSync path replace /[./]/g  res write fs readFileSync path replace /[foobar/foobar]/g  res write fs readFileSync path replace /\\//g  res write fs readFileSync path replace /\\.\|\\//g  res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  pathModule isAbsolute path res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  res write fs readFileSync prefix pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)*/  res write fs readFileSync prefix path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  |
 | autogenerated/TaintedPath/TaintedPath.js:170:29:170:55 | path.re ... /g, '') | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:170:29:170:55 | path.re ... /g, '') | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:170:29:170:55 | path.re ... /g, '') | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:170:29:170:55 | path.re ... /g, '') | receiverName | fs |
 | autogenerated/TaintedPath/TaintedPath.js:170:29:170:55 | path.re ... /g, '') | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/TaintedPath.js:171:29:171:53 | path.re ... /g, '') | CalleeFlexibleAccessPath | fs.readFileSync |
@@ -9202,7 +11432,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:171:29:171:53 | path.re ... /g, '') | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:171:29:171:53 | path.re ... /g, '') | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path replace /[\\]\\[*,;'"`<>\\\\?\\/]/g  res write fs readFileSync path replace /[abcd]/g  res write fs readFileSync path replace /[./]/g  res write fs readFileSync path replace /[foobar/foobar]/g  res write fs readFileSync path replace /\\//g  res write fs readFileSync path replace /\\.\|\\//g  res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  pathModule isAbsolute path res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  res write fs readFileSync prefix pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)*/  res write fs readFileSync prefix path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  |
 | autogenerated/TaintedPath/TaintedPath.js:171:29:171:53 | path.re ... /g, '') | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:171:29:171:53 | path.re ... /g, '') | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:171:29:171:53 | path.re ... /g, '') | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:171:29:171:53 | path.re ... /g, '') | receiverName | fs |
 | autogenerated/TaintedPath/TaintedPath.js:171:29:171:53 | path.re ... /g, '') | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/TaintedPath.js:172:29:172:64 | path.re ... /g, '') | CalleeFlexibleAccessPath | fs.readFileSync |
@@ -9214,7 +11444,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:172:29:172:64 | path.re ... /g, '') | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:172:29:172:64 | path.re ... /g, '') | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path replace /[\\]\\[*,;'"`<>\\\\?\\/]/g  res write fs readFileSync path replace /[abcd]/g  res write fs readFileSync path replace /[./]/g  res write fs readFileSync path replace /[foobar/foobar]/g  res write fs readFileSync path replace /\\//g  res write fs readFileSync path replace /\\.\|\\//g  res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  pathModule isAbsolute path res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  res write fs readFileSync prefix pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)*/  res write fs readFileSync prefix path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  |
 | autogenerated/TaintedPath/TaintedPath.js:172:29:172:64 | path.re ... /g, '') | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:172:29:172:64 | path.re ... /g, '') | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:172:29:172:64 | path.re ... /g, '') | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:172:29:172:64 | path.re ... /g, '') | receiverName | fs |
 | autogenerated/TaintedPath/TaintedPath.js:172:29:172:64 | path.re ... /g, '') | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/TaintedPath.js:173:29:173:51 | path.re ... /g, '') | CalleeFlexibleAccessPath | fs.readFileSync |
@@ -9226,7 +11456,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:173:29:173:51 | path.re ... /g, '') | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:173:29:173:51 | path.re ... /g, '') | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path replace /[\\]\\[*,;'"`<>\\\\?\\/]/g  res write fs readFileSync path replace /[abcd]/g  res write fs readFileSync path replace /[./]/g  res write fs readFileSync path replace /[foobar/foobar]/g  res write fs readFileSync path replace /\\//g  res write fs readFileSync path replace /\\.\|\\//g  res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  pathModule isAbsolute path res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  res write fs readFileSync prefix pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)*/  res write fs readFileSync prefix path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  |
 | autogenerated/TaintedPath/TaintedPath.js:173:29:173:51 | path.re ... /g, '') | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:173:29:173:51 | path.re ... /g, '') | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:173:29:173:51 | path.re ... /g, '') | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:173:29:173:51 | path.re ... /g, '') | receiverName | fs |
 | autogenerated/TaintedPath/TaintedPath.js:173:29:173:51 | path.re ... /g, '') | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/TaintedPath.js:174:29:174:54 | path.re ... /g, '') | CalleeFlexibleAccessPath | fs.readFileSync |
@@ -9238,7 +11468,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:174:29:174:54 | path.re ... /g, '') | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:174:29:174:54 | path.re ... /g, '') | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path replace /[\\]\\[*,;'"`<>\\\\?\\/]/g  res write fs readFileSync path replace /[abcd]/g  res write fs readFileSync path replace /[./]/g  res write fs readFileSync path replace /[foobar/foobar]/g  res write fs readFileSync path replace /\\//g  res write fs readFileSync path replace /\\.\|\\//g  res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  pathModule isAbsolute path res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  res write fs readFileSync prefix pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)*/  res write fs readFileSync prefix path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  |
 | autogenerated/TaintedPath/TaintedPath.js:174:29:174:54 | path.re ... /g, '') | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:174:29:174:54 | path.re ... /g, '') | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:174:29:174:54 | path.re ... /g, '') | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:174:29:174:54 | path.re ... /g, '') | receiverName | fs |
 | autogenerated/TaintedPath/TaintedPath.js:174:29:174:54 | path.re ... /g, '') | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/TaintedPath.js:176:29:176:52 | path.re ... /g, '') | CalleeFlexibleAccessPath | fs.readFileSync |
@@ -9250,7 +11480,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:176:29:176:52 | path.re ... /g, '') | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:176:29:176:52 | path.re ... /g, '') | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path replace /[\\]\\[*,;'"`<>\\\\?\\/]/g  res write fs readFileSync path replace /[abcd]/g  res write fs readFileSync path replace /[./]/g  res write fs readFileSync path replace /[foobar/foobar]/g  res write fs readFileSync path replace /\\//g  res write fs readFileSync path replace /\\.\|\\//g  res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  pathModule isAbsolute path res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  res write fs readFileSync prefix pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)*/  res write fs readFileSync prefix path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  |
 | autogenerated/TaintedPath/TaintedPath.js:176:29:176:52 | path.re ... /g, '') | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:176:29:176:52 | path.re ... /g, '') | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:176:29:176:52 | path.re ... /g, '') | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:176:29:176:52 | path.re ... /g, '') | receiverName | fs |
 | autogenerated/TaintedPath/TaintedPath.js:176:29:176:52 | path.re ... /g, '') | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/TaintedPath.js:177:29:177:53 | path.re ... /g, '') | CalleeFlexibleAccessPath | fs.readFileSync |
@@ -9262,7 +11492,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:177:29:177:53 | path.re ... /g, '') | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:177:29:177:53 | path.re ... /g, '') | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path replace /[\\]\\[*,;'"`<>\\\\?\\/]/g  res write fs readFileSync path replace /[abcd]/g  res write fs readFileSync path replace /[./]/g  res write fs readFileSync path replace /[foobar/foobar]/g  res write fs readFileSync path replace /\\//g  res write fs readFileSync path replace /\\.\|\\//g  res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  pathModule isAbsolute path res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  res write fs readFileSync prefix pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)*/  res write fs readFileSync prefix path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  |
 | autogenerated/TaintedPath/TaintedPath.js:177:29:177:53 | path.re ... /g, '') | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:177:29:177:53 | path.re ... /g, '') | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:177:29:177:53 | path.re ... /g, '') | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:177:29:177:53 | path.re ... /g, '') | receiverName | fs |
 | autogenerated/TaintedPath/TaintedPath.js:177:29:177:53 | path.re ... /g, '') | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/TaintedPath.js:178:29:178:51 | path.re ... /g, '') | CalleeFlexibleAccessPath | fs.readFileSync |
@@ -9274,7 +11504,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:178:29:178:51 | path.re ... /g, '') | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:178:29:178:51 | path.re ... /g, '') | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path replace /[\\]\\[*,;'"`<>\\\\?\\/]/g  res write fs readFileSync path replace /[abcd]/g  res write fs readFileSync path replace /[./]/g  res write fs readFileSync path replace /[foobar/foobar]/g  res write fs readFileSync path replace /\\//g  res write fs readFileSync path replace /\\.\|\\//g  res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  pathModule isAbsolute path res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  res write fs readFileSync prefix pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)*/  res write fs readFileSync prefix path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  |
 | autogenerated/TaintedPath/TaintedPath.js:178:29:178:51 | path.re ... /g, '') | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:178:29:178:51 | path.re ... /g, '') | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:178:29:178:51 | path.re ... /g, '') | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:178:29:178:51 | path.re ... /g, '') | receiverName | fs |
 | autogenerated/TaintedPath/TaintedPath.js:178:29:178:51 | path.re ... /g, '') | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/TaintedPath.js:179:29:179:57 | path.re ... /g, '') | CalleeFlexibleAccessPath | fs.readFileSync |
@@ -9286,7 +11516,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:179:29:179:57 | path.re ... /g, '') | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:179:29:179:57 | path.re ... /g, '') | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path replace /[\\]\\[*,;'"`<>\\\\?\\/]/g  res write fs readFileSync path replace /[abcd]/g  res write fs readFileSync path replace /[./]/g  res write fs readFileSync path replace /[foobar/foobar]/g  res write fs readFileSync path replace /\\//g  res write fs readFileSync path replace /\\.\|\\//g  res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  pathModule isAbsolute path res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  res write fs readFileSync prefix pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)*/  res write fs readFileSync prefix path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  |
 | autogenerated/TaintedPath/TaintedPath.js:179:29:179:57 | path.re ... /g, '') | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:179:29:179:57 | path.re ... /g, '') | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:179:29:179:57 | path.re ... /g, '') | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:179:29:179:57 | path.re ... /g, '') | receiverName | fs |
 | autogenerated/TaintedPath/TaintedPath.js:179:29:179:57 | path.re ... /g, '') | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/TaintedPath.js:182:31:182:54 | path.re ... /g, '') | CalleeFlexibleAccessPath | fs.readFileSync |
@@ -9298,7 +11528,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:182:31:182:54 | path.re ... /g, '') | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:182:31:182:54 | path.re ... /g, '') | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path replace /[\\]\\[*,;'"`<>\\\\?\\/]/g  res write fs readFileSync path replace /[abcd]/g  res write fs readFileSync path replace /[./]/g  res write fs readFileSync path replace /[foobar/foobar]/g  res write fs readFileSync path replace /\\//g  res write fs readFileSync path replace /\\.\|\\//g  res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  pathModule isAbsolute path res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  res write fs readFileSync prefix pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)*/  res write fs readFileSync prefix path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  |
 | autogenerated/TaintedPath/TaintedPath.js:182:31:182:54 | path.re ... /g, '') | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:182:31:182:54 | path.re ... /g, '') | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:182:31:182:54 | path.re ... /g, '') | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:182:31:182:54 | path.re ... /g, '') | receiverName | fs |
 | autogenerated/TaintedPath/TaintedPath.js:182:31:182:54 | path.re ... /g, '') | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/TaintedPath.js:183:30:183:54 | path.re ... /g, '') | CalleeFlexibleAccessPath | fs.readFileSync |
@@ -9310,7 +11540,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:183:30:183:54 | path.re ... /g, '') | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:183:30:183:54 | path.re ... /g, '') | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path replace /[\\]\\[*,;'"`<>\\\\?\\/]/g  res write fs readFileSync path replace /[abcd]/g  res write fs readFileSync path replace /[./]/g  res write fs readFileSync path replace /[foobar/foobar]/g  res write fs readFileSync path replace /\\//g  res write fs readFileSync path replace /\\.\|\\//g  res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  pathModule isAbsolute path res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  res write fs readFileSync prefix pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)*/  res write fs readFileSync prefix path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  |
 | autogenerated/TaintedPath/TaintedPath.js:183:30:183:54 | path.re ... /g, '') | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:183:30:183:54 | path.re ... /g, '') | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:183:30:183:54 | path.re ... /g, '') | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:183:30:183:54 | path.re ... /g, '') | receiverName | fs |
 | autogenerated/TaintedPath/TaintedPath.js:183:30:183:54 | path.re ... /g, '') | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/TaintedPath.js:184:31:184:53 | path.re ... /g, '') | CalleeFlexibleAccessPath | fs.readFileSync |
@@ -9322,7 +11552,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:184:31:184:53 | path.re ... /g, '') | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:184:31:184:53 | path.re ... /g, '') | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path replace /[\\]\\[*,;'"`<>\\\\?\\/]/g  res write fs readFileSync path replace /[abcd]/g  res write fs readFileSync path replace /[./]/g  res write fs readFileSync path replace /[foobar/foobar]/g  res write fs readFileSync path replace /\\//g  res write fs readFileSync path replace /\\.\|\\//g  res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  pathModule isAbsolute path res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  res write fs readFileSync prefix pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)*/  res write fs readFileSync prefix path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  |
 | autogenerated/TaintedPath/TaintedPath.js:184:31:184:53 | path.re ... /g, '') | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:184:31:184:53 | path.re ... /g, '') | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:184:31:184:53 | path.re ... /g, '') | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:184:31:184:53 | path.re ... /g, '') | receiverName | fs |
 | autogenerated/TaintedPath/TaintedPath.js:184:31:184:53 | path.re ... /g, '') | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/TaintedPath.js:185:30:185:58 | path.re ... /g, '') | CalleeFlexibleAccessPath | fs.readFileSync |
@@ -9334,7 +11564,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:185:30:185:58 | path.re ... /g, '') | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:185:30:185:58 | path.re ... /g, '') | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path replace /[\\]\\[*,;'"`<>\\\\?\\/]/g  res write fs readFileSync path replace /[abcd]/g  res write fs readFileSync path replace /[./]/g  res write fs readFileSync path replace /[foobar/foobar]/g  res write fs readFileSync path replace /\\//g  res write fs readFileSync path replace /\\.\|\\//g  res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  pathModule isAbsolute path res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  res write fs readFileSync prefix pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)*/  res write fs readFileSync prefix path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  |
 | autogenerated/TaintedPath/TaintedPath.js:185:30:185:58 | path.re ... /g, '') | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:185:30:185:58 | path.re ... /g, '') | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:185:30:185:58 | path.re ... /g, '') | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:185:30:185:58 | path.re ... /g, '') | receiverName | fs |
 | autogenerated/TaintedPath/TaintedPath.js:185:30:185:58 | path.re ... /g, '') | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/TaintedPath.js:189:29:189:95 | "prefix ... +/, '') | CalleeFlexibleAccessPath | fs.readFileSync |
@@ -9346,7 +11576,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:189:29:189:95 | "prefix ... +/, '') | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:189:29:189:95 | "prefix ... +/, '') | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path replace /[\\]\\[*,;'"`<>\\\\?\\/]/g  res write fs readFileSync path replace /[abcd]/g  res write fs readFileSync path replace /[./]/g  res write fs readFileSync path replace /[foobar/foobar]/g  res write fs readFileSync path replace /\\//g  res write fs readFileSync path replace /\\.\|\\//g  res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  pathModule isAbsolute path res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  res write fs readFileSync prefix pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)*/  res write fs readFileSync prefix path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  |
 | autogenerated/TaintedPath/TaintedPath.js:189:29:189:95 | "prefix ... +/, '') | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:189:29:189:95 | "prefix ... +/, '') | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:189:29:189:95 | "prefix ... +/, '') | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:189:29:189:95 | "prefix ... +/, '') | receiverName | fs |
 | autogenerated/TaintedPath/TaintedPath.js:189:29:189:95 | "prefix ... +/, '') | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/TaintedPath.js:190:29:190:94 | "prefix ... +/, '') | CalleeFlexibleAccessPath | fs.readFileSync |
@@ -9358,7 +11588,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:190:29:190:94 | "prefix ... +/, '') | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:190:29:190:94 | "prefix ... +/, '') | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path replace /[\\]\\[*,;'"`<>\\\\?\\/]/g  res write fs readFileSync path replace /[abcd]/g  res write fs readFileSync path replace /[./]/g  res write fs readFileSync path replace /[foobar/foobar]/g  res write fs readFileSync path replace /\\//g  res write fs readFileSync path replace /\\.\|\\//g  res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  pathModule isAbsolute path res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  res write fs readFileSync prefix pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)*/  res write fs readFileSync prefix path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  |
 | autogenerated/TaintedPath/TaintedPath.js:190:29:190:94 | "prefix ... +/, '') | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:190:29:190:94 | "prefix ... +/, '') | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:190:29:190:94 | "prefix ... +/, '') | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:190:29:190:94 | "prefix ... +/, '') | receiverName | fs |
 | autogenerated/TaintedPath/TaintedPath.js:190:29:190:94 | "prefix ... +/, '') | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/TaintedPath.js:191:29:191:90 | "prefix ... +/, '') | CalleeFlexibleAccessPath | fs.readFileSync |
@@ -9370,7 +11600,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:191:29:191:90 | "prefix ... +/, '') | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:191:29:191:90 | "prefix ... +/, '') | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path replace /[\\]\\[*,;'"`<>\\\\?\\/]/g  res write fs readFileSync path replace /[abcd]/g  res write fs readFileSync path replace /[./]/g  res write fs readFileSync path replace /[foobar/foobar]/g  res write fs readFileSync path replace /\\//g  res write fs readFileSync path replace /\\.\|\\//g  res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  pathModule isAbsolute path res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  res write fs readFileSync prefix pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)*/  res write fs readFileSync prefix path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  |
 | autogenerated/TaintedPath/TaintedPath.js:191:29:191:90 | "prefix ... +/, '') | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:191:29:191:90 | "prefix ... +/, '') | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:191:29:191:90 | "prefix ... +/, '') | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:191:29:191:90 | "prefix ... +/, '') | receiverName | fs |
 | autogenerated/TaintedPath/TaintedPath.js:191:29:191:90 | "prefix ... +/, '') | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/TaintedPath.js:192:29:192:90 | "prefix ... */, '') | CalleeFlexibleAccessPath | fs.readFileSync |
@@ -9382,7 +11612,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:192:29:192:90 | "prefix ... */, '') | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:192:29:192:90 | "prefix ... */, '') | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path replace /[\\]\\[*,;'"`<>\\\\?\\/]/g  res write fs readFileSync path replace /[abcd]/g  res write fs readFileSync path replace /[./]/g  res write fs readFileSync path replace /[foobar/foobar]/g  res write fs readFileSync path replace /\\//g  res write fs readFileSync path replace /\\.\|\\//g  res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  pathModule isAbsolute path res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  res write fs readFileSync prefix pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)*/  res write fs readFileSync prefix path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  |
 | autogenerated/TaintedPath/TaintedPath.js:192:29:192:90 | "prefix ... */, '') | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:192:29:192:90 | "prefix ... */, '') | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:192:29:192:90 | "prefix ... */, '') | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:192:29:192:90 | "prefix ... */, '') | receiverName | fs |
 | autogenerated/TaintedPath/TaintedPath.js:192:29:192:90 | "prefix ... */, '') | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/TaintedPath.js:194:29:194:73 | "prefix ... +/, '') | CalleeFlexibleAccessPath | fs.readFileSync |
@@ -9394,7 +11624,7 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:194:29:194:73 | "prefix ... +/, '') | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:194:29:194:73 | "prefix ... +/, '') | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path replace /[\\]\\[*,;'"`<>\\\\?\\/]/g  res write fs readFileSync path replace /[abcd]/g  res write fs readFileSync path replace /[./]/g  res write fs readFileSync path replace /[foobar/foobar]/g  res write fs readFileSync path replace /\\//g  res write fs readFileSync path replace /\\.\|\\//g  res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  pathModule isAbsolute path res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  res write fs readFileSync prefix pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)*/  res write fs readFileSync prefix path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  |
 | autogenerated/TaintedPath/TaintedPath.js:194:29:194:73 | "prefix ... +/, '') | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:194:29:194:73 | "prefix ... +/, '') | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:194:29:194:73 | "prefix ... +/, '') | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:194:29:194:73 | "prefix ... +/, '') | receiverName | fs |
 | autogenerated/TaintedPath/TaintedPath.js:194:29:194:73 | "prefix ... +/, '') | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/TaintedPath.js:195:29:195:84 | pathMod ... +/, '') | CalleeFlexibleAccessPath | fs.readFileSync |
@@ -9406,9 +11636,129 @@ tokenFeatures
 | autogenerated/TaintedPath/TaintedPath.js:195:29:195:84 | pathMod ... +/, '') | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/TaintedPath.js:195:29:195:84 | pathMod ... +/, '') | enclosingFunctionBody | req res path url parse req url true query path res write fs readFileSync path replace /[\\]\\[*,;'"`<>\\\\?\\/]/g  res write fs readFileSync path replace /[abcd]/g  res write fs readFileSync path replace /[./]/g  res write fs readFileSync path replace /[foobar/foobar]/g  res write fs readFileSync path replace /\\//g  res write fs readFileSync path replace /\\.\|\\//g  res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  pathModule isAbsolute path res write fs readFileSync path replace /[.]/g  res write fs readFileSync path replace /[..]/g  res write fs readFileSync path replace /\\./g  res write fs readFileSync path replace /\\.\\.\|BLA/g  res write fs readFileSync prefix pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.[\\/\\\\])+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)+/  res write fs readFileSync prefix pathModule normalize path replace /(\\.\\.\\/)*/  res write fs readFileSync prefix path replace /^(\\.\\.[\\/\\\\])+/  res write fs readFileSync pathModule normalize path replace /^(\\.\\.[\\/\\\\])+/  |
 | autogenerated/TaintedPath/TaintedPath.js:195:29:195:84 | pathMod ... +/, '') | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/TaintedPath.js:195:29:195:84 | pathMod ... +/, '') | fileImports | ./views express fs http path query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:195:29:195:84 | pathMod ... +/, '') | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
 | autogenerated/TaintedPath/TaintedPath.js:195:29:195:84 | pathMod ... +/, '') | receiverName | fs |
 | autogenerated/TaintedPath/TaintedPath.js:195:29:195:84 | pathMod ... +/, '') | stringConcatenatedWith |  |
+| autogenerated/TaintedPath/TaintedPath.js:203:29:203:49 | qs.pars ... rl).foo | CalleeFlexibleAccessPath | fs.readFileSync |
+| autogenerated/TaintedPath/TaintedPath.js:203:29:203:49 | qs.pars ... rl).foo | InputAccessPathFromCallee |  |
+| autogenerated/TaintedPath/TaintedPath.js:203:29:203:49 | qs.pars ... rl).foo | InputArgumentIndex | 0 |
+| autogenerated/TaintedPath/TaintedPath.js:203:29:203:49 | qs.pars ... rl).foo | assignedToPropName |  |
+| autogenerated/TaintedPath/TaintedPath.js:203:29:203:49 | qs.pars ... rl).foo | calleeImports | fs |
+| autogenerated/TaintedPath/TaintedPath.js:203:29:203:49 | qs.pars ... rl).foo | contextFunctionInterfaces | views_local(req, res) |
+| autogenerated/TaintedPath/TaintedPath.js:203:29:203:49 | qs.pars ... rl).foo | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/TaintedPath/TaintedPath.js:203:29:203:49 | qs.pars ... rl).foo | enclosingFunctionBody | req res qs require qs res write fs readFileSync qs parse req url foo res write fs readFileSync qs parse normalizeUrl req url foo parseqs require parseqs res write fs readFileSync parseqs decode req url foo |
+| autogenerated/TaintedPath/TaintedPath.js:203:29:203:49 | qs.pars ... rl).foo | enclosingFunctionName | http.createServer#functionalargument |
+| autogenerated/TaintedPath/TaintedPath.js:203:29:203:49 | qs.pars ... rl).foo | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:203:29:203:49 | qs.pars ... rl).foo | receiverName | fs |
+| autogenerated/TaintedPath/TaintedPath.js:203:29:203:49 | qs.pars ... rl).foo | stringConcatenatedWith |  |
+| autogenerated/TaintedPath/TaintedPath.js:204:29:204:63 | qs.pars ... l)).foo | CalleeFlexibleAccessPath | fs.readFileSync |
+| autogenerated/TaintedPath/TaintedPath.js:204:29:204:63 | qs.pars ... l)).foo | InputAccessPathFromCallee |  |
+| autogenerated/TaintedPath/TaintedPath.js:204:29:204:63 | qs.pars ... l)).foo | InputArgumentIndex | 0 |
+| autogenerated/TaintedPath/TaintedPath.js:204:29:204:63 | qs.pars ... l)).foo | assignedToPropName |  |
+| autogenerated/TaintedPath/TaintedPath.js:204:29:204:63 | qs.pars ... l)).foo | calleeImports | fs |
+| autogenerated/TaintedPath/TaintedPath.js:204:29:204:63 | qs.pars ... l)).foo | contextFunctionInterfaces | views_local(req, res) |
+| autogenerated/TaintedPath/TaintedPath.js:204:29:204:63 | qs.pars ... l)).foo | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/TaintedPath/TaintedPath.js:204:29:204:63 | qs.pars ... l)).foo | enclosingFunctionBody | req res qs require qs res write fs readFileSync qs parse req url foo res write fs readFileSync qs parse normalizeUrl req url foo parseqs require parseqs res write fs readFileSync parseqs decode req url foo |
+| autogenerated/TaintedPath/TaintedPath.js:204:29:204:63 | qs.pars ... l)).foo | enclosingFunctionName | http.createServer#functionalargument |
+| autogenerated/TaintedPath/TaintedPath.js:204:29:204:63 | qs.pars ... l)).foo | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:204:29:204:63 | qs.pars ... l)).foo | receiverName | fs |
+| autogenerated/TaintedPath/TaintedPath.js:204:29:204:63 | qs.pars ... l)).foo | stringConcatenatedWith |  |
+| autogenerated/TaintedPath/TaintedPath.js:206:29:206:55 | parseqs ... rl).foo | CalleeFlexibleAccessPath | fs.readFileSync |
+| autogenerated/TaintedPath/TaintedPath.js:206:29:206:55 | parseqs ... rl).foo | InputAccessPathFromCallee |  |
+| autogenerated/TaintedPath/TaintedPath.js:206:29:206:55 | parseqs ... rl).foo | InputArgumentIndex | 0 |
+| autogenerated/TaintedPath/TaintedPath.js:206:29:206:55 | parseqs ... rl).foo | assignedToPropName |  |
+| autogenerated/TaintedPath/TaintedPath.js:206:29:206:55 | parseqs ... rl).foo | calleeImports | fs |
+| autogenerated/TaintedPath/TaintedPath.js:206:29:206:55 | parseqs ... rl).foo | contextFunctionInterfaces | views_local(req, res) |
+| autogenerated/TaintedPath/TaintedPath.js:206:29:206:55 | parseqs ... rl).foo | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/TaintedPath/TaintedPath.js:206:29:206:55 | parseqs ... rl).foo | enclosingFunctionBody | req res qs require qs res write fs readFileSync qs parse req url foo res write fs readFileSync qs parse normalizeUrl req url foo parseqs require parseqs res write fs readFileSync parseqs decode req url foo |
+| autogenerated/TaintedPath/TaintedPath.js:206:29:206:55 | parseqs ... rl).foo | enclosingFunctionName | http.createServer#functionalargument |
+| autogenerated/TaintedPath/TaintedPath.js:206:29:206:55 | parseqs ... rl).foo | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:206:29:206:55 | parseqs ... rl).foo | receiverName | fs |
+| autogenerated/TaintedPath/TaintedPath.js:206:29:206:55 | parseqs ... rl).foo | stringConcatenatedWith |  |
+| autogenerated/TaintedPath/TaintedPath.js:206:44:206:50 | req.url | CalleeFlexibleAccessPath | parseqs.decode |
+| autogenerated/TaintedPath/TaintedPath.js:206:44:206:50 | req.url | InputAccessPathFromCallee |  |
+| autogenerated/TaintedPath/TaintedPath.js:206:44:206:50 | req.url | InputArgumentIndex | 0 |
+| autogenerated/TaintedPath/TaintedPath.js:206:44:206:50 | req.url | assignedToPropName |  |
+| autogenerated/TaintedPath/TaintedPath.js:206:44:206:50 | req.url | calleeImports | parseqs |
+| autogenerated/TaintedPath/TaintedPath.js:206:44:206:50 | req.url | contextFunctionInterfaces | views_local(req, res) |
+| autogenerated/TaintedPath/TaintedPath.js:206:44:206:50 | req.url | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/TaintedPath/TaintedPath.js:206:44:206:50 | req.url | enclosingFunctionBody | req res qs require qs res write fs readFileSync qs parse req url foo res write fs readFileSync qs parse normalizeUrl req url foo parseqs require parseqs res write fs readFileSync parseqs decode req url foo |
+| autogenerated/TaintedPath/TaintedPath.js:206:44:206:50 | req.url | enclosingFunctionName | http.createServer#functionalargument |
+| autogenerated/TaintedPath/TaintedPath.js:206:44:206:50 | req.url | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:206:44:206:50 | req.url | receiverName | parseqs |
+| autogenerated/TaintedPath/TaintedPath.js:206:44:206:50 | req.url | stringConcatenatedWith |  |
+| autogenerated/TaintedPath/TaintedPath.js:212:31:212:34 | path | CalleeFlexibleAccessPath | cp.execSync |
+| autogenerated/TaintedPath/TaintedPath.js:212:31:212:34 | path | InputAccessPathFromCallee | 1.cwd |
+| autogenerated/TaintedPath/TaintedPath.js:212:31:212:34 | path | InputArgumentIndex | 1 |
+| autogenerated/TaintedPath/TaintedPath.js:212:31:212:34 | path | assignedToPropName | cwd |
+| autogenerated/TaintedPath/TaintedPath.js:212:31:212:34 | path | calleeImports | child_process |
+| autogenerated/TaintedPath/TaintedPath.js:212:31:212:34 | path | contextFunctionInterfaces | views_local(req, res) |
+| autogenerated/TaintedPath/TaintedPath.js:212:31:212:34 | path | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/TaintedPath/TaintedPath.js:212:31:212:34 | path | enclosingFunctionBody | req res path url parse req url true query path cp execSync foobar cwd path cp execFileSync foobar args cwd path cp execFileSync foobar cwd path |
+| autogenerated/TaintedPath/TaintedPath.js:212:31:212:34 | path | enclosingFunctionName | http.createServer#functionalargument |
+| autogenerated/TaintedPath/TaintedPath.js:212:31:212:34 | path | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:212:31:212:34 | path | receiverName |  |
+| autogenerated/TaintedPath/TaintedPath.js:212:31:212:34 | path | stringConcatenatedWith |  |
+| autogenerated/TaintedPath/TaintedPath.js:213:45:213:48 | path | CalleeFlexibleAccessPath | cp.execFileSync |
+| autogenerated/TaintedPath/TaintedPath.js:213:45:213:48 | path | InputAccessPathFromCallee | 2.cwd |
+| autogenerated/TaintedPath/TaintedPath.js:213:45:213:48 | path | InputArgumentIndex | 2 |
+| autogenerated/TaintedPath/TaintedPath.js:213:45:213:48 | path | assignedToPropName | cwd |
+| autogenerated/TaintedPath/TaintedPath.js:213:45:213:48 | path | calleeImports | child_process |
+| autogenerated/TaintedPath/TaintedPath.js:213:45:213:48 | path | contextFunctionInterfaces | views_local(req, res) |
+| autogenerated/TaintedPath/TaintedPath.js:213:45:213:48 | path | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/TaintedPath/TaintedPath.js:213:45:213:48 | path | enclosingFunctionBody | req res path url parse req url true query path cp execSync foobar cwd path cp execFileSync foobar args cwd path cp execFileSync foobar cwd path |
+| autogenerated/TaintedPath/TaintedPath.js:213:45:213:48 | path | enclosingFunctionName | http.createServer#functionalargument |
+| autogenerated/TaintedPath/TaintedPath.js:213:45:213:48 | path | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:213:45:213:48 | path | receiverName |  |
+| autogenerated/TaintedPath/TaintedPath.js:213:45:213:48 | path | stringConcatenatedWith |  |
+| autogenerated/TaintedPath/TaintedPath.js:214:35:214:38 | path | CalleeFlexibleAccessPath | cp.execFileSync |
+| autogenerated/TaintedPath/TaintedPath.js:214:35:214:38 | path | InputAccessPathFromCallee | 1.cwd |
+| autogenerated/TaintedPath/TaintedPath.js:214:35:214:38 | path | InputArgumentIndex | 1 |
+| autogenerated/TaintedPath/TaintedPath.js:214:35:214:38 | path | assignedToPropName | cwd |
+| autogenerated/TaintedPath/TaintedPath.js:214:35:214:38 | path | calleeImports | child_process |
+| autogenerated/TaintedPath/TaintedPath.js:214:35:214:38 | path | contextFunctionInterfaces | views_local(req, res) |
+| autogenerated/TaintedPath/TaintedPath.js:214:35:214:38 | path | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/TaintedPath/TaintedPath.js:214:35:214:38 | path | enclosingFunctionBody | req res path url parse req url true query path cp execSync foobar cwd path cp execFileSync foobar args cwd path cp execFileSync foobar cwd path |
+| autogenerated/TaintedPath/TaintedPath.js:214:35:214:38 | path | enclosingFunctionName | http.createServer#functionalargument |
+| autogenerated/TaintedPath/TaintedPath.js:214:35:214:38 | path | fileImports | ./views child_process express fs http normalize-url parseqs path qs query-string querystring querystringify sanitize-filename send url |
+| autogenerated/TaintedPath/TaintedPath.js:214:35:214:38 | path | receiverName |  |
+| autogenerated/TaintedPath/TaintedPath.js:214:35:214:38 | path | stringConcatenatedWith |  |
+| autogenerated/TaintedPath/express.js:8:20:8:32 | req.query.bar | CalleeFlexibleAccessPath | req.files.foo.mv |
+| autogenerated/TaintedPath/express.js:8:20:8:32 | req.query.bar | InputAccessPathFromCallee |  |
+| autogenerated/TaintedPath/express.js:8:20:8:32 | req.query.bar | InputArgumentIndex | 0 |
+| autogenerated/TaintedPath/express.js:8:20:8:32 | req.query.bar | assignedToPropName |  |
+| autogenerated/TaintedPath/express.js:8:20:8:32 | req.query.bar | calleeImports |  |
+| autogenerated/TaintedPath/express.js:8:20:8:32 | req.query.bar | contextFunctionInterfaces |  |
+| autogenerated/TaintedPath/express.js:8:20:8:32 | req.query.bar | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/TaintedPath/express.js:8:20:8:32 | req.query.bar | enclosingFunctionBody | req res req files foo mv req query bar |
+| autogenerated/TaintedPath/express.js:8:20:8:32 | req.query.bar | enclosingFunctionName | app.get#functionalargument |
+| autogenerated/TaintedPath/express.js:8:20:8:32 | req.query.bar | fileImports | express express-fileupload |
+| autogenerated/TaintedPath/express.js:8:20:8:32 | req.query.bar | receiverName |  |
+| autogenerated/TaintedPath/express.js:8:20:8:32 | req.query.bar | stringConcatenatedWith |  |
+| autogenerated/TaintedPath/handlebars.js:11:32:11:39 | filePath | CalleeFlexibleAccessPath | fs.readFileSync |
+| autogenerated/TaintedPath/handlebars.js:11:32:11:39 | filePath | InputAccessPathFromCallee |  |
+| autogenerated/TaintedPath/handlebars.js:11:32:11:39 | filePath | InputArgumentIndex | 0 |
+| autogenerated/TaintedPath/handlebars.js:11:32:11:39 | filePath | assignedToPropName |  |
+| autogenerated/TaintedPath/handlebars.js:11:32:11:39 | filePath | calleeImports | fs |
+| autogenerated/TaintedPath/handlebars.js:11:32:11:39 | filePath | contextFunctionInterfaces | catFile(filePath)\ninit()\nprependToLines(prefix, filePath) |
+| autogenerated/TaintedPath/handlebars.js:11:32:11:39 | filePath | contextSurroundingFunctionParameters | ()\n(filePath) |
+| autogenerated/TaintedPath/handlebars.js:11:32:11:39 | filePath | enclosingFunctionBody | hb registerHelper catFile catFile filePath fs readFileSync filePath hb registerHelper prependToLines prependToLines prefix filePath fs readFileSync filePath split \n map line prefix line join \n data compiledFileAccess hb compile contents of file {{path}} are: {{catFile path}} data compiledBenign hb compile hello, {{name}} data compiledUnknown hb compile fs readFileSync greeting.template data compiledMixed hb compile helpers may have several args, like here: {{prependToLines prefix path}} |
+| autogenerated/TaintedPath/handlebars.js:11:32:11:39 | filePath | enclosingFunctionName | init |
+| autogenerated/TaintedPath/handlebars.js:11:32:11:39 | filePath | fileImports | express fs handlebars |
+| autogenerated/TaintedPath/handlebars.js:11:32:11:39 | filePath | receiverName | fs |
+| autogenerated/TaintedPath/handlebars.js:11:32:11:39 | filePath | stringConcatenatedWith |  |
+| autogenerated/TaintedPath/handlebars.js:15:25:15:32 | filePath | CalleeFlexibleAccessPath | fs.readFileSync |
+| autogenerated/TaintedPath/handlebars.js:15:25:15:32 | filePath | InputAccessPathFromCallee |  |
+| autogenerated/TaintedPath/handlebars.js:15:25:15:32 | filePath | InputArgumentIndex | 0 |
+| autogenerated/TaintedPath/handlebars.js:15:25:15:32 | filePath | assignedToPropName |  |
+| autogenerated/TaintedPath/handlebars.js:15:25:15:32 | filePath | calleeImports | fs |
+| autogenerated/TaintedPath/handlebars.js:15:25:15:32 | filePath | contextFunctionInterfaces | catFile(filePath)\ninit()\nprependToLines(prefix, filePath) |
+| autogenerated/TaintedPath/handlebars.js:15:25:15:32 | filePath | contextSurroundingFunctionParameters | ()\n(prefix, filePath) |
+| autogenerated/TaintedPath/handlebars.js:15:25:15:32 | filePath | enclosingFunctionBody | hb registerHelper catFile catFile filePath fs readFileSync filePath hb registerHelper prependToLines prependToLines prefix filePath fs readFileSync filePath split \n map line prefix line join \n data compiledFileAccess hb compile contents of file {{path}} are: {{catFile path}} data compiledBenign hb compile hello, {{name}} data compiledUnknown hb compile fs readFileSync greeting.template data compiledMixed hb compile helpers may have several args, like here: {{prependToLines prefix path}} |
+| autogenerated/TaintedPath/handlebars.js:15:25:15:32 | filePath | enclosingFunctionName | init |
+| autogenerated/TaintedPath/handlebars.js:15:25:15:32 | filePath | fileImports | express fs handlebars |
+| autogenerated/TaintedPath/handlebars.js:15:25:15:32 | filePath | receiverName | fs |
+| autogenerated/TaintedPath/handlebars.js:15:25:15:32 | filePath | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/normalizedPaths.js:13:19:13:22 | path | CalleeFlexibleAccessPath | fs.readFileSync |
 | autogenerated/TaintedPath/normalizedPaths.js:13:19:13:22 | path | InputAccessPathFromCallee |  |
 | autogenerated/TaintedPath/normalizedPaths.js:13:19:13:22 | path | InputArgumentIndex | 0 |
@@ -9418,7 +11768,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:13:19:13:22 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:13:19:13:22 | path | enclosingFunctionBody | req res path req query path fs readFileSync path fs readFileSync ./ path fs readFileSync path /index.html fs readFileSync pathModule join path index.html fs readFileSync pathModule join /home/user/www path |
 | autogenerated/TaintedPath/normalizedPaths.js:13:19:13:22 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:13:19:13:22 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:13:19:13:22 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:13:19:13:22 | path | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:13:19:13:22 | path | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/normalizedPaths.js:14:19:14:29 | './' + path | CalleeFlexibleAccessPath | fs.readFileSync |
@@ -9430,7 +11780,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:14:19:14:29 | './' + path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:14:19:14:29 | './' + path | enclosingFunctionBody | req res path req query path fs readFileSync path fs readFileSync ./ path fs readFileSync path /index.html fs readFileSync pathModule join path index.html fs readFileSync pathModule join /home/user/www path |
 | autogenerated/TaintedPath/normalizedPaths.js:14:19:14:29 | './' + path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:14:19:14:29 | './' + path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:14:19:14:29 | './' + path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:14:19:14:29 | './' + path | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:14:19:14:29 | './' + path | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/normalizedPaths.js:15:19:15:38 | path + '/index.html' | CalleeFlexibleAccessPath | fs.readFileSync |
@@ -9442,7 +11792,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:15:19:15:38 | path + '/index.html' | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:15:19:15:38 | path + '/index.html' | enclosingFunctionBody | req res path req query path fs readFileSync path fs readFileSync ./ path fs readFileSync path /index.html fs readFileSync pathModule join path index.html fs readFileSync pathModule join /home/user/www path |
 | autogenerated/TaintedPath/normalizedPaths.js:15:19:15:38 | path + '/index.html' | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:15:19:15:38 | path + '/index.html' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:15:19:15:38 | path + '/index.html' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:15:19:15:38 | path + '/index.html' | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:15:19:15:38 | path + '/index.html' | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/normalizedPaths.js:16:19:16:53 | pathMod ... .html') | CalleeFlexibleAccessPath | fs.readFileSync |
@@ -9454,7 +11804,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:16:19:16:53 | pathMod ... .html') | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:16:19:16:53 | pathMod ... .html') | enclosingFunctionBody | req res path req query path fs readFileSync path fs readFileSync ./ path fs readFileSync path /index.html fs readFileSync pathModule join path index.html fs readFileSync pathModule join /home/user/www path |
 | autogenerated/TaintedPath/normalizedPaths.js:16:19:16:53 | pathMod ... .html') | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:16:19:16:53 | pathMod ... .html') | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:16:19:16:53 | pathMod ... .html') | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:16:19:16:53 | pathMod ... .html') | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:16:19:16:53 | pathMod ... .html') | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/normalizedPaths.js:17:19:17:57 | pathMod ... , path) | CalleeFlexibleAccessPath | fs.readFileSync |
@@ -9466,7 +11816,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:17:19:17:57 | pathMod ... , path) | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:17:19:17:57 | pathMod ... , path) | enclosingFunctionBody | req res path req query path fs readFileSync path fs readFileSync ./ path fs readFileSync path /index.html fs readFileSync pathModule join path index.html fs readFileSync pathModule join /home/user/www path |
 | autogenerated/TaintedPath/normalizedPaths.js:17:19:17:57 | pathMod ... , path) | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:17:19:17:57 | pathMod ... , path) | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:17:19:17:57 | pathMod ... , path) | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:17:19:17:57 | pathMod ... , path) | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:17:19:17:57 | pathMod ... , path) | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/normalizedPaths.js:23:19:23:22 | path | CalleeFlexibleAccessPath | fs.readFileSync |
@@ -9478,7 +11828,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:23:19:23:22 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:23:19:23:22 | path | enclosingFunctionBody | req res path pathModule normalize req query path fs readFileSync path fs readFileSync ./ path fs readFileSync path /index.html fs readFileSync pathModule join path index.html fs readFileSync pathModule join /home/user/www path |
 | autogenerated/TaintedPath/normalizedPaths.js:23:19:23:22 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:23:19:23:22 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:23:19:23:22 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:23:19:23:22 | path | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:23:19:23:22 | path | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/normalizedPaths.js:24:19:24:29 | './' + path | CalleeFlexibleAccessPath | fs.readFileSync |
@@ -9490,7 +11840,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:24:19:24:29 | './' + path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:24:19:24:29 | './' + path | enclosingFunctionBody | req res path pathModule normalize req query path fs readFileSync path fs readFileSync ./ path fs readFileSync path /index.html fs readFileSync pathModule join path index.html fs readFileSync pathModule join /home/user/www path |
 | autogenerated/TaintedPath/normalizedPaths.js:24:19:24:29 | './' + path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:24:19:24:29 | './' + path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:24:19:24:29 | './' + path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:24:19:24:29 | './' + path | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:24:19:24:29 | './' + path | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/normalizedPaths.js:25:19:25:38 | path + '/index.html' | CalleeFlexibleAccessPath | fs.readFileSync |
@@ -9502,7 +11852,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:25:19:25:38 | path + '/index.html' | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:25:19:25:38 | path + '/index.html' | enclosingFunctionBody | req res path pathModule normalize req query path fs readFileSync path fs readFileSync ./ path fs readFileSync path /index.html fs readFileSync pathModule join path index.html fs readFileSync pathModule join /home/user/www path |
 | autogenerated/TaintedPath/normalizedPaths.js:25:19:25:38 | path + '/index.html' | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:25:19:25:38 | path + '/index.html' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:25:19:25:38 | path + '/index.html' | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:25:19:25:38 | path + '/index.html' | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:25:19:25:38 | path + '/index.html' | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/normalizedPaths.js:26:19:26:53 | pathMod ... .html') | CalleeFlexibleAccessPath | fs.readFileSync |
@@ -9514,7 +11864,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:26:19:26:53 | pathMod ... .html') | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:26:19:26:53 | pathMod ... .html') | enclosingFunctionBody | req res path pathModule normalize req query path fs readFileSync path fs readFileSync ./ path fs readFileSync path /index.html fs readFileSync pathModule join path index.html fs readFileSync pathModule join /home/user/www path |
 | autogenerated/TaintedPath/normalizedPaths.js:26:19:26:53 | pathMod ... .html') | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:26:19:26:53 | pathMod ... .html') | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:26:19:26:53 | pathMod ... .html') | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:26:19:26:53 | pathMod ... .html') | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:26:19:26:53 | pathMod ... .html') | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/normalizedPaths.js:27:19:27:57 | pathMod ... , path) | CalleeFlexibleAccessPath | fs.readFileSync |
@@ -9526,7 +11876,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:27:19:27:57 | pathMod ... , path) | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:27:19:27:57 | pathMod ... , path) | enclosingFunctionBody | req res path pathModule normalize req query path fs readFileSync path fs readFileSync ./ path fs readFileSync path /index.html fs readFileSync pathModule join path index.html fs readFileSync pathModule join /home/user/www path |
 | autogenerated/TaintedPath/normalizedPaths.js:27:19:27:57 | pathMod ... , path) | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:27:19:27:57 | pathMod ... , path) | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:27:19:27:57 | pathMod ... , path) | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:27:19:27:57 | pathMod ... , path) | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:27:19:27:57 | pathMod ... , path) | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/normalizedPaths.js:36:19:36:22 | path | CalleeFlexibleAccessPath | fs.readFileSync |
@@ -9538,7 +11888,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:36:19:36:22 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:36:19:36:22 | path | enclosingFunctionBody | req res path pathModule normalize req query path pathModule isAbsolute path fs readFileSync path path startsWith . fs readFileSync path fs readFileSync path path startsWith .. fs readFileSync path path startsWith ../ fs readFileSync path path startsWith .. pathModule sep fs readFileSync path |
 | autogenerated/TaintedPath/normalizedPaths.js:36:19:36:22 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:36:19:36:22 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:36:19:36:22 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:36:19:36:22 | path | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:36:19:36:22 | path | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/normalizedPaths.js:39:21:39:24 | path | CalleeFlexibleAccessPath | fs.readFileSync |
@@ -9550,7 +11900,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:39:21:39:24 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:39:21:39:24 | path | enclosingFunctionBody | req res path pathModule normalize req query path pathModule isAbsolute path fs readFileSync path path startsWith . fs readFileSync path fs readFileSync path path startsWith .. fs readFileSync path path startsWith ../ fs readFileSync path path startsWith .. pathModule sep fs readFileSync path |
 | autogenerated/TaintedPath/normalizedPaths.js:39:21:39:24 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:39:21:39:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:39:21:39:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:39:21:39:24 | path | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:39:21:39:24 | path | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/normalizedPaths.js:41:21:41:24 | path | CalleeFlexibleAccessPath | fs.readFileSync |
@@ -9562,7 +11912,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:41:21:41:24 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:41:21:41:24 | path | enclosingFunctionBody | req res path pathModule normalize req query path pathModule isAbsolute path fs readFileSync path path startsWith . fs readFileSync path fs readFileSync path path startsWith .. fs readFileSync path path startsWith ../ fs readFileSync path path startsWith .. pathModule sep fs readFileSync path |
 | autogenerated/TaintedPath/normalizedPaths.js:41:21:41:24 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:41:21:41:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:41:21:41:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:41:21:41:24 | path | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:41:21:41:24 | path | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/normalizedPaths.js:44:21:44:24 | path | CalleeFlexibleAccessPath | fs.readFileSync |
@@ -9574,7 +11924,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:44:21:44:24 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:44:21:44:24 | path | enclosingFunctionBody | req res path pathModule normalize req query path pathModule isAbsolute path fs readFileSync path path startsWith . fs readFileSync path fs readFileSync path path startsWith .. fs readFileSync path path startsWith ../ fs readFileSync path path startsWith .. pathModule sep fs readFileSync path |
 | autogenerated/TaintedPath/normalizedPaths.js:44:21:44:24 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:44:21:44:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:44:21:44:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:44:21:44:24 | path | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:44:21:44:24 | path | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/normalizedPaths.js:47:21:47:24 | path | CalleeFlexibleAccessPath | fs.readFileSync |
@@ -9586,7 +11936,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:47:21:47:24 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:47:21:47:24 | path | enclosingFunctionBody | req res path pathModule normalize req query path pathModule isAbsolute path fs readFileSync path path startsWith . fs readFileSync path fs readFileSync path path startsWith .. fs readFileSync path path startsWith ../ fs readFileSync path path startsWith .. pathModule sep fs readFileSync path |
 | autogenerated/TaintedPath/normalizedPaths.js:47:21:47:24 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:47:21:47:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:47:21:47:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:47:21:47:24 | path | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:47:21:47:24 | path | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/normalizedPaths.js:49:24:49:44 | ".." +  ... ule.sep | CalleeFlexibleAccessPath | path.startsWith |
@@ -9598,7 +11948,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:49:24:49:44 | ".." +  ... ule.sep | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:49:24:49:44 | ".." +  ... ule.sep | enclosingFunctionBody | req res path pathModule normalize req query path pathModule isAbsolute path fs readFileSync path path startsWith . fs readFileSync path fs readFileSync path path startsWith .. fs readFileSync path path startsWith ../ fs readFileSync path path startsWith .. pathModule sep fs readFileSync path |
 | autogenerated/TaintedPath/normalizedPaths.js:49:24:49:44 | ".." +  ... ule.sep | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:49:24:49:44 | ".." +  ... ule.sep | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:49:24:49:44 | ".." +  ... ule.sep | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:49:24:49:44 | ".." +  ... ule.sep | receiverName | path |
 | autogenerated/TaintedPath/normalizedPaths.js:49:24:49:44 | ".." +  ... ule.sep | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/normalizedPaths.js:50:21:50:24 | path | CalleeFlexibleAccessPath | fs.readFileSync |
@@ -9610,7 +11960,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:50:21:50:24 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:50:21:50:24 | path | enclosingFunctionBody | req res path pathModule normalize req query path pathModule isAbsolute path fs readFileSync path path startsWith . fs readFileSync path fs readFileSync path path startsWith .. fs readFileSync path path startsWith ../ fs readFileSync path path startsWith .. pathModule sep fs readFileSync path |
 | autogenerated/TaintedPath/normalizedPaths.js:50:21:50:24 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:50:21:50:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:50:21:50:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:50:21:50:24 | path | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:50:21:50:24 | path | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/normalizedPaths.js:59:19:59:22 | path | CalleeFlexibleAccessPath | fs.readFileSync |
@@ -9622,7 +11972,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:59:19:59:22 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:59:19:59:22 | path | enclosingFunctionBody | req res path pathModule normalize req query path path startsWith .. fs readFileSync path fs readFileSync ./ path fs readFileSync path /index.html pathModule isAbsolute path fs readFileSync path fs readFileSync path |
 | autogenerated/TaintedPath/normalizedPaths.js:59:19:59:22 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:59:19:59:22 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:59:19:59:22 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:59:19:59:22 | path | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:59:19:59:22 | path | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/normalizedPaths.js:61:19:61:29 | "./" + path | CalleeFlexibleAccessPath | fs.readFileSync |
@@ -9634,7 +11984,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:61:19:61:29 | "./" + path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:61:19:61:29 | "./" + path | enclosingFunctionBody | req res path pathModule normalize req query path path startsWith .. fs readFileSync path fs readFileSync ./ path fs readFileSync path /index.html pathModule isAbsolute path fs readFileSync path fs readFileSync path |
 | autogenerated/TaintedPath/normalizedPaths.js:61:19:61:29 | "./" + path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:61:19:61:29 | "./" + path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:61:19:61:29 | "./" + path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:61:19:61:29 | "./" + path | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:61:19:61:29 | "./" + path | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/normalizedPaths.js:63:19:63:38 | path + "/index.html" | CalleeFlexibleAccessPath | fs.readFileSync |
@@ -9646,7 +11996,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:63:19:63:38 | path + "/index.html" | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:63:19:63:38 | path + "/index.html" | enclosingFunctionBody | req res path pathModule normalize req query path path startsWith .. fs readFileSync path fs readFileSync ./ path fs readFileSync path /index.html pathModule isAbsolute path fs readFileSync path fs readFileSync path |
 | autogenerated/TaintedPath/normalizedPaths.js:63:19:63:38 | path + "/index.html" | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:63:19:63:38 | path + "/index.html" | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:63:19:63:38 | path + "/index.html" | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:63:19:63:38 | path + "/index.html" | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:63:19:63:38 | path + "/index.html" | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/normalizedPaths.js:66:21:66:24 | path | CalleeFlexibleAccessPath | fs.readFileSync |
@@ -9658,7 +12008,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:66:21:66:24 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:66:21:66:24 | path | enclosingFunctionBody | req res path pathModule normalize req query path path startsWith .. fs readFileSync path fs readFileSync ./ path fs readFileSync path /index.html pathModule isAbsolute path fs readFileSync path fs readFileSync path |
 | autogenerated/TaintedPath/normalizedPaths.js:66:21:66:24 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:66:21:66:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:66:21:66:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:66:21:66:24 | path | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:66:21:66:24 | path | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/normalizedPaths.js:68:21:68:24 | path | CalleeFlexibleAccessPath | fs.readFileSync |
@@ -9670,7 +12020,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:68:21:68:24 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:68:21:68:24 | path | enclosingFunctionBody | req res path pathModule normalize req query path path startsWith .. fs readFileSync path fs readFileSync ./ path fs readFileSync path /index.html pathModule isAbsolute path fs readFileSync path fs readFileSync path |
 | autogenerated/TaintedPath/normalizedPaths.js:68:21:68:24 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:68:21:68:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:68:21:68:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:68:21:68:24 | path | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:68:21:68:24 | path | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/normalizedPaths.js:76:21:76:24 | path | CalleeFlexibleAccessPath | fs.readFileSync |
@@ -9682,7 +12032,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:76:21:76:24 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:76:21:76:24 | path | enclosingFunctionBody | req res path pathModule normalize ./ req query path path startsWith .. fs readFileSync path fs readFileSync path |
 | autogenerated/TaintedPath/normalizedPaths.js:76:21:76:24 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:76:21:76:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:76:21:76:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:76:21:76:24 | path | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:76:21:76:24 | path | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/normalizedPaths.js:78:22:78:25 | path | CalleeFlexibleAccessPath | fs.readFileSync |
@@ -9694,7 +12044,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:78:22:78:25 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:78:22:78:25 | path | enclosingFunctionBody | req res path pathModule normalize ./ req query path path startsWith .. fs readFileSync path fs readFileSync path |
 | autogenerated/TaintedPath/normalizedPaths.js:78:22:78:25 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:78:22:78:25 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:78:22:78:25 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:78:22:78:25 | path | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:78:22:78:25 | path | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/normalizedPaths.js:87:29:87:32 | path | CalleeFlexibleAccessPath | fs.readFileSync |
@@ -9706,7 +12056,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:87:29:87:32 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:87:29:87:32 | path | enclosingFunctionBody | req res path req query path pathModule isAbsolute path res write fs readFileSync path path startsWith /home/user/www res write fs readFileSync path |
 | autogenerated/TaintedPath/normalizedPaths.js:87:29:87:32 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:87:29:87:32 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:87:29:87:32 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:87:29:87:32 | path | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:87:29:87:32 | path | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/normalizedPaths.js:90:31:90:34 | path | CalleeFlexibleAccessPath | fs.readFileSync |
@@ -9718,7 +12068,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:90:31:90:34 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:90:31:90:34 | path | enclosingFunctionBody | req res path req query path pathModule isAbsolute path res write fs readFileSync path path startsWith /home/user/www res write fs readFileSync path |
 | autogenerated/TaintedPath/normalizedPaths.js:90:31:90:34 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:90:31:90:34 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:90:31:90:34 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:90:31:90:34 | path | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:90:31:90:34 | path | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/normalizedPaths.js:99:29:99:32 | path | CalleeFlexibleAccessPath | fs.readFileSync |
@@ -9730,7 +12080,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:99:29:99:32 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:99:29:99:32 | path | enclosingFunctionBody | req res path pathModule normalize req query path pathModule isAbsolute path res write fs readFileSync path path startsWith /home/user/www res write fs readFileSync path |
 | autogenerated/TaintedPath/normalizedPaths.js:99:29:99:32 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:99:29:99:32 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:99:29:99:32 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:99:29:99:32 | path | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:99:29:99:32 | path | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/normalizedPaths.js:102:31:102:34 | path | CalleeFlexibleAccessPath | fs.readFileSync |
@@ -9742,7 +12092,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:102:31:102:34 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:102:31:102:34 | path | enclosingFunctionBody | req res path pathModule normalize req query path pathModule isAbsolute path res write fs readFileSync path path startsWith /home/user/www res write fs readFileSync path |
 | autogenerated/TaintedPath/normalizedPaths.js:102:31:102:34 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:102:31:102:34 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:102:31:102:34 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:102:31:102:34 | path | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:102:31:102:34 | path | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/normalizedPaths.js:110:21:110:24 | path | CalleeFlexibleAccessPath | fs.readFileSync |
@@ -9754,7 +12104,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:110:21:110:24 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:110:21:110:24 | path | enclosingFunctionBody | req res path pathModule normalize req query path path startsWith /home/user/www fs readFileSync path path 0 0 / path 0 0 . fs readFileSync path |
 | autogenerated/TaintedPath/normalizedPaths.js:110:21:110:24 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:110:21:110:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:110:21:110:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:110:21:110:24 | path | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:110:21:110:24 | path | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/normalizedPaths.js:113:21:113:24 | path | CalleeFlexibleAccessPath | fs.readFileSync |
@@ -9766,7 +12116,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:113:21:113:24 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:113:21:113:24 | path | enclosingFunctionBody | req res path pathModule normalize req query path path startsWith /home/user/www fs readFileSync path path 0 0 / path 0 0 . fs readFileSync path |
 | autogenerated/TaintedPath/normalizedPaths.js:113:21:113:24 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:113:21:113:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:113:21:113:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:113:21:113:24 | path | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:113:21:113:24 | path | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/normalizedPaths.js:117:30:117:43 | req.query.path | CalleeFlexibleAccessPath | fs.realpathSync |
@@ -9778,7 +12128,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:117:30:117:43 | req.query.path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:117:30:117:43 | req.query.path | enclosingFunctionBody | req res path fs realpathSync req query path fs readFileSync path fs readFileSync pathModule join path index.html path startsWith /home/user/www fs readFileSync path fs readFileSync pathModule join . path fs readFileSync pathModule join /home/user/www path |
 | autogenerated/TaintedPath/normalizedPaths.js:117:30:117:43 | req.query.path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:117:30:117:43 | req.query.path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:117:30:117:43 | req.query.path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:117:30:117:43 | req.query.path | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:117:30:117:43 | req.query.path | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/normalizedPaths.js:119:19:119:22 | path | CalleeFlexibleAccessPath | fs.readFileSync |
@@ -9790,7 +12140,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:119:19:119:22 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:119:19:119:22 | path | enclosingFunctionBody | req res path fs realpathSync req query path fs readFileSync path fs readFileSync pathModule join path index.html path startsWith /home/user/www fs readFileSync path fs readFileSync pathModule join . path fs readFileSync pathModule join /home/user/www path |
 | autogenerated/TaintedPath/normalizedPaths.js:119:19:119:22 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:119:19:119:22 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:119:19:119:22 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:119:19:119:22 | path | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:119:19:119:22 | path | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/normalizedPaths.js:120:19:120:53 | pathMod ... .html') | CalleeFlexibleAccessPath | fs.readFileSync |
@@ -9802,7 +12152,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:120:19:120:53 | pathMod ... .html') | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:120:19:120:53 | pathMod ... .html') | enclosingFunctionBody | req res path fs realpathSync req query path fs readFileSync path fs readFileSync pathModule join path index.html path startsWith /home/user/www fs readFileSync path fs readFileSync pathModule join . path fs readFileSync pathModule join /home/user/www path |
 | autogenerated/TaintedPath/normalizedPaths.js:120:19:120:53 | pathMod ... .html') | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:120:19:120:53 | pathMod ... .html') | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:120:19:120:53 | pathMod ... .html') | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:120:19:120:53 | pathMod ... .html') | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:120:19:120:53 | pathMod ... .html') | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/normalizedPaths.js:123:21:123:24 | path | CalleeFlexibleAccessPath | fs.readFileSync |
@@ -9814,7 +12164,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:123:21:123:24 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:123:21:123:24 | path | enclosingFunctionBody | req res path fs realpathSync req query path fs readFileSync path fs readFileSync pathModule join path index.html path startsWith /home/user/www fs readFileSync path fs readFileSync pathModule join . path fs readFileSync pathModule join /home/user/www path |
 | autogenerated/TaintedPath/normalizedPaths.js:123:21:123:24 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:123:21:123:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:123:21:123:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:123:21:123:24 | path | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:123:21:123:24 | path | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/normalizedPaths.js:125:19:125:44 | pathMod ... , path) | CalleeFlexibleAccessPath | fs.readFileSync |
@@ -9826,7 +12176,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:125:19:125:44 | pathMod ... , path) | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:125:19:125:44 | pathMod ... , path) | enclosingFunctionBody | req res path fs realpathSync req query path fs readFileSync path fs readFileSync pathModule join path index.html path startsWith /home/user/www fs readFileSync path fs readFileSync pathModule join . path fs readFileSync pathModule join /home/user/www path |
 | autogenerated/TaintedPath/normalizedPaths.js:125:19:125:44 | pathMod ... , path) | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:125:19:125:44 | pathMod ... , path) | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:125:19:125:44 | pathMod ... , path) | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:125:19:125:44 | pathMod ... , path) | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:125:19:125:44 | pathMod ... , path) | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/normalizedPaths.js:126:19:126:57 | pathMod ... , path) | CalleeFlexibleAccessPath | fs.readFileSync |
@@ -9838,7 +12188,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:126:19:126:57 | pathMod ... , path) | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:126:19:126:57 | pathMod ... , path) | enclosingFunctionBody | req res path fs realpathSync req query path fs readFileSync path fs readFileSync pathModule join path index.html path startsWith /home/user/www fs readFileSync path fs readFileSync pathModule join . path fs readFileSync pathModule join /home/user/www path |
 | autogenerated/TaintedPath/normalizedPaths.js:126:19:126:57 | pathMod ... , path) | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:126:19:126:57 | pathMod ... , path) | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:126:19:126:57 | pathMod ... , path) | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:126:19:126:57 | pathMod ... , path) | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:126:19:126:57 | pathMod ... , path) | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/normalizedPaths.js:133:21:133:24 | path | CalleeFlexibleAccessPath | fs.readFileSync |
@@ -9850,7 +12200,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:133:21:133:24 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:133:21:133:24 | path | enclosingFunctionBody | req res path pathModule join . req query path path startsWith .. fs readFileSync path fs readFileSync path |
 | autogenerated/TaintedPath/normalizedPaths.js:133:21:133:24 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:133:21:133:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:133:21:133:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:133:21:133:24 | path | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:133:21:133:24 | path | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/normalizedPaths.js:135:21:135:24 | path | CalleeFlexibleAccessPath | fs.readFileSync |
@@ -9862,7 +12212,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:135:21:135:24 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:135:21:135:24 | path | enclosingFunctionBody | req res path pathModule join . req query path path startsWith .. fs readFileSync path fs readFileSync path |
 | autogenerated/TaintedPath/normalizedPaths.js:135:21:135:24 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:135:21:135:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:135:21:135:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:135:21:135:24 | path | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:135:21:135:24 | path | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/normalizedPaths.js:142:21:142:24 | path | CalleeFlexibleAccessPath | fs.readFileSync |
@@ -9874,7 +12224,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:142:21:142:24 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:142:21:142:24 | path | enclosingFunctionBody | req res path pathModule join /home/user/www req query path path startsWith /home/user/www fs readFileSync path fs readFileSync path |
 | autogenerated/TaintedPath/normalizedPaths.js:142:21:142:24 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:142:21:142:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:142:21:142:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:142:21:142:24 | path | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:142:21:142:24 | path | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/normalizedPaths.js:144:21:144:24 | path | CalleeFlexibleAccessPath | fs.readFileSync |
@@ -9886,7 +12236,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:144:21:144:24 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:144:21:144:24 | path | enclosingFunctionBody | req res path pathModule join /home/user/www req query path path startsWith /home/user/www fs readFileSync path fs readFileSync path |
 | autogenerated/TaintedPath/normalizedPaths.js:144:21:144:24 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:144:21:144:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:144:21:144:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:144:21:144:24 | path | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:144:21:144:24 | path | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/normalizedPaths.js:151:21:151:24 | path | CalleeFlexibleAccessPath | fs.readFileSync |
@@ -9898,7 +12248,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:151:21:151:24 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:151:21:151:24 | path | enclosingFunctionBody | req res path foo/ pathModule normalize req query path path startsWith .. fs readFileSync path fs readFileSync path path includes .. fs readFileSync path |
 | autogenerated/TaintedPath/normalizedPaths.js:151:21:151:24 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:151:21:151:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:151:21:151:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:151:21:151:24 | path | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:151:21:151:24 | path | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/normalizedPaths.js:153:21:153:24 | path | CalleeFlexibleAccessPath | fs.readFileSync |
@@ -9910,7 +12260,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:153:21:153:24 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:153:21:153:24 | path | enclosingFunctionBody | req res path foo/ pathModule normalize req query path path startsWith .. fs readFileSync path fs readFileSync path path includes .. fs readFileSync path |
 | autogenerated/TaintedPath/normalizedPaths.js:153:21:153:24 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:153:21:153:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:153:21:153:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:153:21:153:24 | path | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:153:21:153:24 | path | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/normalizedPaths.js:156:21:156:24 | path | CalleeFlexibleAccessPath | fs.readFileSync |
@@ -9922,7 +12272,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:156:21:156:24 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:156:21:156:24 | path | enclosingFunctionBody | req res path foo/ pathModule normalize req query path path startsWith .. fs readFileSync path fs readFileSync path path includes .. fs readFileSync path |
 | autogenerated/TaintedPath/normalizedPaths.js:156:21:156:24 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:156:21:156:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:156:21:156:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:156:21:156:24 | path | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:156:21:156:24 | path | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/normalizedPaths.js:165:19:165:22 | path | CalleeFlexibleAccessPath | fs.readFileSync |
@@ -9934,7 +12284,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:165:19:165:22 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:165:19:165:22 | path | enclosingFunctionBody | req res path pathModule normalize req query path path includes .. fs readFileSync path pathModule isAbsolute path fs readFileSync path fs readFileSync path |
 | autogenerated/TaintedPath/normalizedPaths.js:165:19:165:22 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:165:19:165:22 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:165:19:165:22 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:165:19:165:22 | path | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:165:19:165:22 | path | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/normalizedPaths.js:168:21:168:24 | path | CalleeFlexibleAccessPath | fs.readFileSync |
@@ -9946,7 +12296,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:168:21:168:24 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:168:21:168:24 | path | enclosingFunctionBody | req res path pathModule normalize req query path path includes .. fs readFileSync path pathModule isAbsolute path fs readFileSync path fs readFileSync path |
 | autogenerated/TaintedPath/normalizedPaths.js:168:21:168:24 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:168:21:168:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:168:21:168:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:168:21:168:24 | path | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:168:21:168:24 | path | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/normalizedPaths.js:170:21:170:24 | path | CalleeFlexibleAccessPath | fs.readFileSync |
@@ -9958,7 +12308,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:170:21:170:24 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:170:21:170:24 | path | enclosingFunctionBody | req res path pathModule normalize req query path path includes .. fs readFileSync path pathModule isAbsolute path fs readFileSync path fs readFileSync path |
 | autogenerated/TaintedPath/normalizedPaths.js:170:21:170:24 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:170:21:170:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:170:21:170:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:170:21:170:24 | path | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:170:21:170:24 | path | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/normalizedPaths.js:184:19:184:22 | path | CalleeFlexibleAccessPath | fs.readFileSync |
@@ -9970,7 +12320,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:184:19:184:22 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:184:19:184:22 | path | enclosingFunctionBody | req res path req query path pathModule isAbsolute path path path path startsWith / path path path startsWith /x path path path startsWith . path path fs readFileSync path pathModule isAbsolute path fs readFileSync path fs readFileSync path path includes .. fs readFileSync path fs readFileSync path path includes .. pathModule isAbsolute path fs readFileSync path fs readFileSync path normalizedPath pathModule normalize path normalizedPath startsWith /home/user/www fs readFileSync normalizedPath fs readFileSync normalizedPath normalizedPath startsWith /home/user/www normalizedPath startsWith /home/user/public fs readFileSync normalizedPath fs readFileSync normalizedPath |
 | autogenerated/TaintedPath/normalizedPaths.js:184:19:184:22 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:184:19:184:22 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:184:19:184:22 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:184:19:184:22 | path | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:184:19:184:22 | path | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/normalizedPaths.js:187:21:187:24 | path | CalleeFlexibleAccessPath | fs.readFileSync |
@@ -9982,7 +12332,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:187:21:187:24 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:187:21:187:24 | path | enclosingFunctionBody | req res path req query path pathModule isAbsolute path path path path startsWith / path path path startsWith /x path path path startsWith . path path fs readFileSync path pathModule isAbsolute path fs readFileSync path fs readFileSync path path includes .. fs readFileSync path fs readFileSync path path includes .. pathModule isAbsolute path fs readFileSync path fs readFileSync path normalizedPath pathModule normalize path normalizedPath startsWith /home/user/www fs readFileSync normalizedPath fs readFileSync normalizedPath normalizedPath startsWith /home/user/www normalizedPath startsWith /home/user/public fs readFileSync normalizedPath fs readFileSync normalizedPath |
 | autogenerated/TaintedPath/normalizedPaths.js:187:21:187:24 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:187:21:187:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:187:21:187:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:187:21:187:24 | path | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:187:21:187:24 | path | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/normalizedPaths.js:189:21:189:24 | path | CalleeFlexibleAccessPath | fs.readFileSync |
@@ -9994,7 +12344,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:189:21:189:24 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:189:21:189:24 | path | enclosingFunctionBody | req res path req query path pathModule isAbsolute path path path path startsWith / path path path startsWith /x path path path startsWith . path path fs readFileSync path pathModule isAbsolute path fs readFileSync path fs readFileSync path path includes .. fs readFileSync path fs readFileSync path path includes .. pathModule isAbsolute path fs readFileSync path fs readFileSync path normalizedPath pathModule normalize path normalizedPath startsWith /home/user/www fs readFileSync normalizedPath fs readFileSync normalizedPath normalizedPath startsWith /home/user/www normalizedPath startsWith /home/user/public fs readFileSync normalizedPath fs readFileSync normalizedPath |
 | autogenerated/TaintedPath/normalizedPaths.js:189:21:189:24 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:189:21:189:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:189:21:189:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:189:21:189:24 | path | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:189:21:189:24 | path | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/normalizedPaths.js:192:21:192:24 | path | CalleeFlexibleAccessPath | fs.readFileSync |
@@ -10006,7 +12356,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:192:21:192:24 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:192:21:192:24 | path | enclosingFunctionBody | req res path req query path pathModule isAbsolute path path path path startsWith / path path path startsWith /x path path path startsWith . path path fs readFileSync path pathModule isAbsolute path fs readFileSync path fs readFileSync path path includes .. fs readFileSync path fs readFileSync path path includes .. pathModule isAbsolute path fs readFileSync path fs readFileSync path normalizedPath pathModule normalize path normalizedPath startsWith /home/user/www fs readFileSync normalizedPath fs readFileSync normalizedPath normalizedPath startsWith /home/user/www normalizedPath startsWith /home/user/public fs readFileSync normalizedPath fs readFileSync normalizedPath |
 | autogenerated/TaintedPath/normalizedPaths.js:192:21:192:24 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:192:21:192:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:192:21:192:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:192:21:192:24 | path | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:192:21:192:24 | path | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/normalizedPaths.js:194:21:194:24 | path | CalleeFlexibleAccessPath | fs.readFileSync |
@@ -10018,7 +12368,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:194:21:194:24 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:194:21:194:24 | path | enclosingFunctionBody | req res path req query path pathModule isAbsolute path path path path startsWith / path path path startsWith /x path path path startsWith . path path fs readFileSync path pathModule isAbsolute path fs readFileSync path fs readFileSync path path includes .. fs readFileSync path fs readFileSync path path includes .. pathModule isAbsolute path fs readFileSync path fs readFileSync path normalizedPath pathModule normalize path normalizedPath startsWith /home/user/www fs readFileSync normalizedPath fs readFileSync normalizedPath normalizedPath startsWith /home/user/www normalizedPath startsWith /home/user/public fs readFileSync normalizedPath fs readFileSync normalizedPath |
 | autogenerated/TaintedPath/normalizedPaths.js:194:21:194:24 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:194:21:194:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:194:21:194:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:194:21:194:24 | path | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:194:21:194:24 | path | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/normalizedPaths.js:197:21:197:24 | path | CalleeFlexibleAccessPath | fs.readFileSync |
@@ -10030,7 +12380,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:197:21:197:24 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:197:21:197:24 | path | enclosingFunctionBody | req res path req query path pathModule isAbsolute path path path path startsWith / path path path startsWith /x path path path startsWith . path path fs readFileSync path pathModule isAbsolute path fs readFileSync path fs readFileSync path path includes .. fs readFileSync path fs readFileSync path path includes .. pathModule isAbsolute path fs readFileSync path fs readFileSync path normalizedPath pathModule normalize path normalizedPath startsWith /home/user/www fs readFileSync normalizedPath fs readFileSync normalizedPath normalizedPath startsWith /home/user/www normalizedPath startsWith /home/user/public fs readFileSync normalizedPath fs readFileSync normalizedPath |
 | autogenerated/TaintedPath/normalizedPaths.js:197:21:197:24 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:197:21:197:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:197:21:197:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:197:21:197:24 | path | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:197:21:197:24 | path | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/normalizedPaths.js:199:21:199:24 | path | CalleeFlexibleAccessPath | fs.readFileSync |
@@ -10042,7 +12392,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:199:21:199:24 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:199:21:199:24 | path | enclosingFunctionBody | req res path req query path pathModule isAbsolute path path path path startsWith / path path path startsWith /x path path path startsWith . path path fs readFileSync path pathModule isAbsolute path fs readFileSync path fs readFileSync path path includes .. fs readFileSync path fs readFileSync path path includes .. pathModule isAbsolute path fs readFileSync path fs readFileSync path normalizedPath pathModule normalize path normalizedPath startsWith /home/user/www fs readFileSync normalizedPath fs readFileSync normalizedPath normalizedPath startsWith /home/user/www normalizedPath startsWith /home/user/public fs readFileSync normalizedPath fs readFileSync normalizedPath |
 | autogenerated/TaintedPath/normalizedPaths.js:199:21:199:24 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:199:21:199:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:199:21:199:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:199:21:199:24 | path | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:199:21:199:24 | path | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/normalizedPaths.js:203:21:203:34 | normalizedPath | CalleeFlexibleAccessPath | fs.readFileSync |
@@ -10054,7 +12404,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:203:21:203:34 | normalizedPath | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:203:21:203:34 | normalizedPath | enclosingFunctionBody | req res path req query path pathModule isAbsolute path path path path startsWith / path path path startsWith /x path path path startsWith . path path fs readFileSync path pathModule isAbsolute path fs readFileSync path fs readFileSync path path includes .. fs readFileSync path fs readFileSync path path includes .. pathModule isAbsolute path fs readFileSync path fs readFileSync path normalizedPath pathModule normalize path normalizedPath startsWith /home/user/www fs readFileSync normalizedPath fs readFileSync normalizedPath normalizedPath startsWith /home/user/www normalizedPath startsWith /home/user/public fs readFileSync normalizedPath fs readFileSync normalizedPath |
 | autogenerated/TaintedPath/normalizedPaths.js:203:21:203:34 | normalizedPath | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:203:21:203:34 | normalizedPath | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:203:21:203:34 | normalizedPath | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:203:21:203:34 | normalizedPath | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:203:21:203:34 | normalizedPath | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/normalizedPaths.js:205:21:205:34 | normalizedPath | CalleeFlexibleAccessPath | fs.readFileSync |
@@ -10066,7 +12416,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:205:21:205:34 | normalizedPath | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:205:21:205:34 | normalizedPath | enclosingFunctionBody | req res path req query path pathModule isAbsolute path path path path startsWith / path path path startsWith /x path path path startsWith . path path fs readFileSync path pathModule isAbsolute path fs readFileSync path fs readFileSync path path includes .. fs readFileSync path fs readFileSync path path includes .. pathModule isAbsolute path fs readFileSync path fs readFileSync path normalizedPath pathModule normalize path normalizedPath startsWith /home/user/www fs readFileSync normalizedPath fs readFileSync normalizedPath normalizedPath startsWith /home/user/www normalizedPath startsWith /home/user/public fs readFileSync normalizedPath fs readFileSync normalizedPath |
 | autogenerated/TaintedPath/normalizedPaths.js:205:21:205:34 | normalizedPath | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:205:21:205:34 | normalizedPath | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:205:21:205:34 | normalizedPath | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:205:21:205:34 | normalizedPath | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:205:21:205:34 | normalizedPath | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/normalizedPaths.js:208:21:208:34 | normalizedPath | CalleeFlexibleAccessPath | fs.readFileSync |
@@ -10078,7 +12428,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:208:21:208:34 | normalizedPath | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:208:21:208:34 | normalizedPath | enclosingFunctionBody | req res path req query path pathModule isAbsolute path path path path startsWith / path path path startsWith /x path path path startsWith . path path fs readFileSync path pathModule isAbsolute path fs readFileSync path fs readFileSync path path includes .. fs readFileSync path fs readFileSync path path includes .. pathModule isAbsolute path fs readFileSync path fs readFileSync path normalizedPath pathModule normalize path normalizedPath startsWith /home/user/www fs readFileSync normalizedPath fs readFileSync normalizedPath normalizedPath startsWith /home/user/www normalizedPath startsWith /home/user/public fs readFileSync normalizedPath fs readFileSync normalizedPath |
 | autogenerated/TaintedPath/normalizedPaths.js:208:21:208:34 | normalizedPath | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:208:21:208:34 | normalizedPath | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:208:21:208:34 | normalizedPath | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:208:21:208:34 | normalizedPath | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:208:21:208:34 | normalizedPath | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/normalizedPaths.js:210:21:210:34 | normalizedPath | CalleeFlexibleAccessPath | fs.readFileSync |
@@ -10090,7 +12440,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:210:21:210:34 | normalizedPath | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:210:21:210:34 | normalizedPath | enclosingFunctionBody | req res path req query path pathModule isAbsolute path path path path startsWith / path path path startsWith /x path path path startsWith . path path fs readFileSync path pathModule isAbsolute path fs readFileSync path fs readFileSync path path includes .. fs readFileSync path fs readFileSync path path includes .. pathModule isAbsolute path fs readFileSync path fs readFileSync path normalizedPath pathModule normalize path normalizedPath startsWith /home/user/www fs readFileSync normalizedPath fs readFileSync normalizedPath normalizedPath startsWith /home/user/www normalizedPath startsWith /home/user/public fs readFileSync normalizedPath fs readFileSync normalizedPath |
 | autogenerated/TaintedPath/normalizedPaths.js:210:21:210:34 | normalizedPath | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:210:21:210:34 | normalizedPath | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:210:21:210:34 | normalizedPath | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:210:21:210:34 | normalizedPath | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:210:21:210:34 | normalizedPath | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/normalizedPaths.js:217:21:217:24 | path | CalleeFlexibleAccessPath | fs.readFileSync |
@@ -10102,7 +12452,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:217:21:217:24 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:217:21:217:24 | path | enclosingFunctionBody | req res path pathModule normalize req query path pathModule isAbsolute path path startsWith .. fs readFileSync path path decodeURIComponent path pathModule isAbsolute path path startsWith .. fs readFileSync path |
 | autogenerated/TaintedPath/normalizedPaths.js:217:21:217:24 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:217:21:217:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:217:21:217:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:217:21:217:24 | path | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:217:21:217:24 | path | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/normalizedPaths.js:222:21:222:24 | path | CalleeFlexibleAccessPath | fs.readFileSync |
@@ -10114,7 +12464,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:222:21:222:24 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:222:21:222:24 | path | enclosingFunctionBody | req res path pathModule normalize req query path pathModule isAbsolute path path startsWith .. fs readFileSync path path decodeURIComponent path pathModule isAbsolute path path startsWith .. fs readFileSync path |
 | autogenerated/TaintedPath/normalizedPaths.js:222:21:222:24 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:222:21:222:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:222:21:222:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:222:21:222:24 | path | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:222:21:222:24 | path | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/normalizedPaths.js:228:21:228:24 | path | CalleeFlexibleAccessPath | fs.readFileSync |
@@ -10126,7 +12476,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:228:21:228:24 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:228:21:228:24 | path | enclosingFunctionBody | req res path pathModule normalize req query path replace /%20/g   pathModule isAbsolute path fs readFileSync path path path replace /\\.\\./g  fs readFileSync path |
 | autogenerated/TaintedPath/normalizedPaths.js:228:21:228:24 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:228:21:228:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:228:21:228:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:228:21:228:24 | path | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:228:21:228:24 | path | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/normalizedPaths.js:231:21:231:24 | path | CalleeFlexibleAccessPath | fs.readFileSync |
@@ -10138,7 +12488,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:231:21:231:24 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:231:21:231:24 | path | enclosingFunctionBody | req res path pathModule normalize req query path replace /%20/g   pathModule isAbsolute path fs readFileSync path path path replace /\\.\\./g  fs readFileSync path |
 | autogenerated/TaintedPath/normalizedPaths.js:231:21:231:24 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:231:21:231:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:231:21:231:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:231:21:231:24 | path | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:231:21:231:24 | path | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/normalizedPaths.js:238:19:238:22 | path | CalleeFlexibleAccessPath | fs.readFileSync |
@@ -10150,7 +12500,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:238:19:238:22 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:238:19:238:22 | path | enclosingFunctionBody | req res path pathModule resolve req query path fs readFileSync path self something path substring 0 self dir length self dir fs readFileSync path fs readFileSync path path slice 0 self dir length self dir fs readFileSync path fs readFileSync path |
 | autogenerated/TaintedPath/normalizedPaths.js:238:19:238:22 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:238:19:238:22 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:238:19:238:22 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:238:19:238:22 | path | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:238:19:238:22 | path | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/normalizedPaths.js:242:25:242:39 | self.dir.length | CalleeFlexibleAccessPath | path.substring |
@@ -10162,7 +12512,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:242:25:242:39 | self.dir.length | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:242:25:242:39 | self.dir.length | enclosingFunctionBody | req res path pathModule resolve req query path fs readFileSync path self something path substring 0 self dir length self dir fs readFileSync path fs readFileSync path path slice 0 self dir length self dir fs readFileSync path fs readFileSync path |
 | autogenerated/TaintedPath/normalizedPaths.js:242:25:242:39 | self.dir.length | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:242:25:242:39 | self.dir.length | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:242:25:242:39 | self.dir.length | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:242:25:242:39 | self.dir.length | receiverName | path |
 | autogenerated/TaintedPath/normalizedPaths.js:242:25:242:39 | self.dir.length | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/normalizedPaths.js:243:21:243:24 | path | CalleeFlexibleAccessPath | fs.readFileSync |
@@ -10174,7 +12524,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:243:21:243:24 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:243:21:243:24 | path | enclosingFunctionBody | req res path pathModule resolve req query path fs readFileSync path self something path substring 0 self dir length self dir fs readFileSync path fs readFileSync path path slice 0 self dir length self dir fs readFileSync path fs readFileSync path |
 | autogenerated/TaintedPath/normalizedPaths.js:243:21:243:24 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:243:21:243:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:243:21:243:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:243:21:243:24 | path | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:243:21:243:24 | path | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/normalizedPaths.js:245:21:245:24 | path | CalleeFlexibleAccessPath | fs.readFileSync |
@@ -10186,7 +12536,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:245:21:245:24 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:245:21:245:24 | path | enclosingFunctionBody | req res path pathModule resolve req query path fs readFileSync path self something path substring 0 self dir length self dir fs readFileSync path fs readFileSync path path slice 0 self dir length self dir fs readFileSync path fs readFileSync path |
 | autogenerated/TaintedPath/normalizedPaths.js:245:21:245:24 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:245:21:245:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:245:21:245:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:245:21:245:24 | path | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:245:21:245:24 | path | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/normalizedPaths.js:247:21:247:35 | self.dir.length | CalleeFlexibleAccessPath | path.slice |
@@ -10198,7 +12548,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:247:21:247:35 | self.dir.length | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:247:21:247:35 | self.dir.length | enclosingFunctionBody | req res path pathModule resolve req query path fs readFileSync path self something path substring 0 self dir length self dir fs readFileSync path fs readFileSync path path slice 0 self dir length self dir fs readFileSync path fs readFileSync path |
 | autogenerated/TaintedPath/normalizedPaths.js:247:21:247:35 | self.dir.length | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:247:21:247:35 | self.dir.length | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:247:21:247:35 | self.dir.length | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:247:21:247:35 | self.dir.length | receiverName | path |
 | autogenerated/TaintedPath/normalizedPaths.js:247:21:247:35 | self.dir.length | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/normalizedPaths.js:248:21:248:24 | path | CalleeFlexibleAccessPath | fs.readFileSync |
@@ -10210,7 +12560,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:248:21:248:24 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:248:21:248:24 | path | enclosingFunctionBody | req res path pathModule resolve req query path fs readFileSync path self something path substring 0 self dir length self dir fs readFileSync path fs readFileSync path path slice 0 self dir length self dir fs readFileSync path fs readFileSync path |
 | autogenerated/TaintedPath/normalizedPaths.js:248:21:248:24 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:248:21:248:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:248:21:248:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:248:21:248:24 | path | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:248:21:248:24 | path | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/normalizedPaths.js:250:21:250:24 | path | CalleeFlexibleAccessPath | fs.readFileSync |
@@ -10222,7 +12572,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:250:21:250:24 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:250:21:250:24 | path | enclosingFunctionBody | req res path pathModule resolve req query path fs readFileSync path self something path substring 0 self dir length self dir fs readFileSync path fs readFileSync path path slice 0 self dir length self dir fs readFileSync path fs readFileSync path |
 | autogenerated/TaintedPath/normalizedPaths.js:250:21:250:24 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:250:21:250:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:250:21:250:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:250:21:250:24 | path | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:250:21:250:24 | path | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/normalizedPaths.js:256:19:256:22 | path | CalleeFlexibleAccessPath | fs.readFileSync |
@@ -10234,7 +12584,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:256:19:256:22 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:256:19:256:22 | path | enclosingFunctionBody | req res path pathModule resolve req query path fs readFileSync path self something relative pathModule relative self webroot path relative startsWith .. pathModule sep relative .. fs readFileSync path fs readFileSync path newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath relativePath indexOf .. pathModule sep 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath relativePath indexOf ../ 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath pathModule normalize relativePath indexOf ../ 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath pathModule normalize relativePath indexOf ../ fs readFileSync newpath fs readFileSync newpath |
 | autogenerated/TaintedPath/normalizedPaths.js:256:19:256:22 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:256:19:256:22 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:256:19:256:22 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:256:19:256:22 | path | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:256:19:256:22 | path | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/normalizedPaths.js:261:26:261:46 | ".." +  ... ule.sep | CalleeFlexibleAccessPath | relative.startsWith |
@@ -10246,7 +12596,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:261:26:261:46 | ".." +  ... ule.sep | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:261:26:261:46 | ".." +  ... ule.sep | enclosingFunctionBody | req res path pathModule resolve req query path fs readFileSync path self something relative pathModule relative self webroot path relative startsWith .. pathModule sep relative .. fs readFileSync path fs readFileSync path newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath relativePath indexOf .. pathModule sep 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath relativePath indexOf ../ 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath pathModule normalize relativePath indexOf ../ 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath pathModule normalize relativePath indexOf ../ fs readFileSync newpath fs readFileSync newpath |
 | autogenerated/TaintedPath/normalizedPaths.js:261:26:261:46 | ".." +  ... ule.sep | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:261:26:261:46 | ".." +  ... ule.sep | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:261:26:261:46 | ".." +  ... ule.sep | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:261:26:261:46 | ".." +  ... ule.sep | receiverName | relative |
 | autogenerated/TaintedPath/normalizedPaths.js:261:26:261:46 | ".." +  ... ule.sep | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/normalizedPaths.js:262:21:262:24 | path | CalleeFlexibleAccessPath | fs.readFileSync |
@@ -10258,7 +12608,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:262:21:262:24 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:262:21:262:24 | path | enclosingFunctionBody | req res path pathModule resolve req query path fs readFileSync path self something relative pathModule relative self webroot path relative startsWith .. pathModule sep relative .. fs readFileSync path fs readFileSync path newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath relativePath indexOf .. pathModule sep 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath relativePath indexOf ../ 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath pathModule normalize relativePath indexOf ../ 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath pathModule normalize relativePath indexOf ../ fs readFileSync newpath fs readFileSync newpath |
 | autogenerated/TaintedPath/normalizedPaths.js:262:21:262:24 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:262:21:262:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:262:21:262:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:262:21:262:24 | path | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:262:21:262:24 | path | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/normalizedPaths.js:264:21:264:24 | path | CalleeFlexibleAccessPath | fs.readFileSync |
@@ -10270,7 +12620,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:264:21:264:24 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:264:21:264:24 | path | enclosingFunctionBody | req res path pathModule resolve req query path fs readFileSync path self something relative pathModule relative self webroot path relative startsWith .. pathModule sep relative .. fs readFileSync path fs readFileSync path newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath relativePath indexOf .. pathModule sep 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath relativePath indexOf ../ 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath pathModule normalize relativePath indexOf ../ 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath pathModule normalize relativePath indexOf ../ fs readFileSync newpath fs readFileSync newpath |
 | autogenerated/TaintedPath/normalizedPaths.js:264:21:264:24 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:264:21:264:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:264:21:264:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:264:21:264:24 | path | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:264:21:264:24 | path | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/normalizedPaths.js:269:28:269:48 | '..' +  ... ule.sep | CalleeFlexibleAccessPath | relativePath.indexOf |
@@ -10282,7 +12632,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:269:28:269:48 | '..' +  ... ule.sep | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:269:28:269:48 | '..' +  ... ule.sep | enclosingFunctionBody | req res path pathModule resolve req query path fs readFileSync path self something relative pathModule relative self webroot path relative startsWith .. pathModule sep relative .. fs readFileSync path fs readFileSync path newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath relativePath indexOf .. pathModule sep 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath relativePath indexOf ../ 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath pathModule normalize relativePath indexOf ../ 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath pathModule normalize relativePath indexOf ../ fs readFileSync newpath fs readFileSync newpath |
 | autogenerated/TaintedPath/normalizedPaths.js:269:28:269:48 | '..' +  ... ule.sep | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:269:28:269:48 | '..' +  ... ule.sep | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:269:28:269:48 | '..' +  ... ule.sep | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:269:28:269:48 | '..' +  ... ule.sep | receiverName | relativePath |
 | autogenerated/TaintedPath/normalizedPaths.js:269:28:269:48 | '..' +  ... ule.sep | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/normalizedPaths.js:270:21:270:27 | newpath | CalleeFlexibleAccessPath | fs.readFileSync |
@@ -10294,7 +12644,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:270:21:270:27 | newpath | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:270:21:270:27 | newpath | enclosingFunctionBody | req res path pathModule resolve req query path fs readFileSync path self something relative pathModule relative self webroot path relative startsWith .. pathModule sep relative .. fs readFileSync path fs readFileSync path newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath relativePath indexOf .. pathModule sep 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath relativePath indexOf ../ 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath pathModule normalize relativePath indexOf ../ 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath pathModule normalize relativePath indexOf ../ fs readFileSync newpath fs readFileSync newpath |
 | autogenerated/TaintedPath/normalizedPaths.js:270:21:270:27 | newpath | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:270:21:270:27 | newpath | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:270:21:270:27 | newpath | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:270:21:270:27 | newpath | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:270:21:270:27 | newpath | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/normalizedPaths.js:272:21:272:27 | newpath | CalleeFlexibleAccessPath | fs.readFileSync |
@@ -10306,7 +12656,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:272:21:272:27 | newpath | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:272:21:272:27 | newpath | enclosingFunctionBody | req res path pathModule resolve req query path fs readFileSync path self something relative pathModule relative self webroot path relative startsWith .. pathModule sep relative .. fs readFileSync path fs readFileSync path newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath relativePath indexOf .. pathModule sep 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath relativePath indexOf ../ 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath pathModule normalize relativePath indexOf ../ 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath pathModule normalize relativePath indexOf ../ fs readFileSync newpath fs readFileSync newpath |
 | autogenerated/TaintedPath/normalizedPaths.js:272:21:272:27 | newpath | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:272:21:272:27 | newpath | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:272:21:272:27 | newpath | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:272:21:272:27 | newpath | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:272:21:272:27 | newpath | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/normalizedPaths.js:278:21:278:27 | newpath | CalleeFlexibleAccessPath | fs.readFileSync |
@@ -10318,7 +12668,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:278:21:278:27 | newpath | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:278:21:278:27 | newpath | enclosingFunctionBody | req res path pathModule resolve req query path fs readFileSync path self something relative pathModule relative self webroot path relative startsWith .. pathModule sep relative .. fs readFileSync path fs readFileSync path newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath relativePath indexOf .. pathModule sep 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath relativePath indexOf ../ 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath pathModule normalize relativePath indexOf ../ 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath pathModule normalize relativePath indexOf ../ fs readFileSync newpath fs readFileSync newpath |
 | autogenerated/TaintedPath/normalizedPaths.js:278:21:278:27 | newpath | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:278:21:278:27 | newpath | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:278:21:278:27 | newpath | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:278:21:278:27 | newpath | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:278:21:278:27 | newpath | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/normalizedPaths.js:280:21:280:27 | newpath | CalleeFlexibleAccessPath | fs.readFileSync |
@@ -10330,7 +12680,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:280:21:280:27 | newpath | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:280:21:280:27 | newpath | enclosingFunctionBody | req res path pathModule resolve req query path fs readFileSync path self something relative pathModule relative self webroot path relative startsWith .. pathModule sep relative .. fs readFileSync path fs readFileSync path newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath relativePath indexOf .. pathModule sep 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath relativePath indexOf ../ 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath pathModule normalize relativePath indexOf ../ 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath pathModule normalize relativePath indexOf ../ fs readFileSync newpath fs readFileSync newpath |
 | autogenerated/TaintedPath/normalizedPaths.js:280:21:280:27 | newpath | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:280:21:280:27 | newpath | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:280:21:280:27 | newpath | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:280:21:280:27 | newpath | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:280:21:280:27 | newpath | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/normalizedPaths.js:286:21:286:27 | newpath | CalleeFlexibleAccessPath | fs.readFileSync |
@@ -10342,7 +12692,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:286:21:286:27 | newpath | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:286:21:286:27 | newpath | enclosingFunctionBody | req res path pathModule resolve req query path fs readFileSync path self something relative pathModule relative self webroot path relative startsWith .. pathModule sep relative .. fs readFileSync path fs readFileSync path newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath relativePath indexOf .. pathModule sep 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath relativePath indexOf ../ 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath pathModule normalize relativePath indexOf ../ 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath pathModule normalize relativePath indexOf ../ fs readFileSync newpath fs readFileSync newpath |
 | autogenerated/TaintedPath/normalizedPaths.js:286:21:286:27 | newpath | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:286:21:286:27 | newpath | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:286:21:286:27 | newpath | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:286:21:286:27 | newpath | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:286:21:286:27 | newpath | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/normalizedPaths.js:288:21:288:27 | newpath | CalleeFlexibleAccessPath | fs.readFileSync |
@@ -10354,7 +12704,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:288:21:288:27 | newpath | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:288:21:288:27 | newpath | enclosingFunctionBody | req res path pathModule resolve req query path fs readFileSync path self something relative pathModule relative self webroot path relative startsWith .. pathModule sep relative .. fs readFileSync path fs readFileSync path newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath relativePath indexOf .. pathModule sep 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath relativePath indexOf ../ 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath pathModule normalize relativePath indexOf ../ 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath pathModule normalize relativePath indexOf ../ fs readFileSync newpath fs readFileSync newpath |
 | autogenerated/TaintedPath/normalizedPaths.js:288:21:288:27 | newpath | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:288:21:288:27 | newpath | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:288:21:288:27 | newpath | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:288:21:288:27 | newpath | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:288:21:288:27 | newpath | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/normalizedPaths.js:294:21:294:27 | newpath | CalleeFlexibleAccessPath | fs.readFileSync |
@@ -10366,7 +12716,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:294:21:294:27 | newpath | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:294:21:294:27 | newpath | enclosingFunctionBody | req res path pathModule resolve req query path fs readFileSync path self something relative pathModule relative self webroot path relative startsWith .. pathModule sep relative .. fs readFileSync path fs readFileSync path newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath relativePath indexOf .. pathModule sep 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath relativePath indexOf ../ 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath pathModule normalize relativePath indexOf ../ 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath pathModule normalize relativePath indexOf ../ fs readFileSync newpath fs readFileSync newpath |
 | autogenerated/TaintedPath/normalizedPaths.js:294:21:294:27 | newpath | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:294:21:294:27 | newpath | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:294:21:294:27 | newpath | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:294:21:294:27 | newpath | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:294:21:294:27 | newpath | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/normalizedPaths.js:296:21:296:27 | newpath | CalleeFlexibleAccessPath | fs.readFileSync |
@@ -10378,7 +12728,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:296:21:296:27 | newpath | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:296:21:296:27 | newpath | enclosingFunctionBody | req res path pathModule resolve req query path fs readFileSync path self something relative pathModule relative self webroot path relative startsWith .. pathModule sep relative .. fs readFileSync path fs readFileSync path newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath relativePath indexOf .. pathModule sep 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath relativePath indexOf ../ 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath pathModule normalize relativePath indexOf ../ 0 fs readFileSync newpath fs readFileSync newpath newpath pathModule normalize path relativePath pathModule relative pathModule normalize workspaceDir newpath pathModule normalize relativePath indexOf ../ fs readFileSync newpath fs readFileSync newpath |
 | autogenerated/TaintedPath/normalizedPaths.js:296:21:296:27 | newpath | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:296:21:296:27 | newpath | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:296:21:296:27 | newpath | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:296:21:296:27 | newpath | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:296:21:296:27 | newpath | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/normalizedPaths.js:304:18:304:21 | path | CalleeFlexibleAccessPath | fs.readFileSync |
@@ -10390,7 +12740,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:304:18:304:21 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:304:18:304:21 | path | enclosingFunctionBody | req res path req query path fs readFileSync path isPathInside path SAFE fs readFileSync path fs readFileSync path pathIsInside path SAFE fs readFileSync path fs readFileSync path normalizedPath pathModule join SAFE path pathIsInside normalizedPath SAFE fs readFileSync normalizedPath fs readFileSync normalizedPath pathIsInside normalizedPath SAFE fs readFileSync normalizedPath fs readFileSync normalizedPath |
 | autogenerated/TaintedPath/normalizedPaths.js:304:18:304:21 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:304:18:304:21 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:304:18:304:21 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:304:18:304:21 | path | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:304:18:304:21 | path | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/normalizedPaths.js:306:19:306:22 | path | CalleeFlexibleAccessPath | fs.readFileSync |
@@ -10402,7 +12752,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:306:19:306:22 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:306:19:306:22 | path | enclosingFunctionBody | req res path req query path fs readFileSync path isPathInside path SAFE fs readFileSync path fs readFileSync path pathIsInside path SAFE fs readFileSync path fs readFileSync path normalizedPath pathModule join SAFE path pathIsInside normalizedPath SAFE fs readFileSync normalizedPath fs readFileSync normalizedPath pathIsInside normalizedPath SAFE fs readFileSync normalizedPath fs readFileSync normalizedPath |
 | autogenerated/TaintedPath/normalizedPaths.js:306:19:306:22 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:306:19:306:22 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:306:19:306:22 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:306:19:306:22 | path | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:306:19:306:22 | path | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/normalizedPaths.js:309:19:309:22 | path | CalleeFlexibleAccessPath | fs.readFileSync |
@@ -10414,7 +12764,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:309:19:309:22 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:309:19:309:22 | path | enclosingFunctionBody | req res path req query path fs readFileSync path isPathInside path SAFE fs readFileSync path fs readFileSync path pathIsInside path SAFE fs readFileSync path fs readFileSync path normalizedPath pathModule join SAFE path pathIsInside normalizedPath SAFE fs readFileSync normalizedPath fs readFileSync normalizedPath pathIsInside normalizedPath SAFE fs readFileSync normalizedPath fs readFileSync normalizedPath |
 | autogenerated/TaintedPath/normalizedPaths.js:309:19:309:22 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:309:19:309:22 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:309:19:309:22 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:309:19:309:22 | path | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:309:19:309:22 | path | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/normalizedPaths.js:313:19:313:22 | path | CalleeFlexibleAccessPath | fs.readFileSync |
@@ -10426,7 +12776,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:313:19:313:22 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:313:19:313:22 | path | enclosingFunctionBody | req res path req query path fs readFileSync path isPathInside path SAFE fs readFileSync path fs readFileSync path pathIsInside path SAFE fs readFileSync path fs readFileSync path normalizedPath pathModule join SAFE path pathIsInside normalizedPath SAFE fs readFileSync normalizedPath fs readFileSync normalizedPath pathIsInside normalizedPath SAFE fs readFileSync normalizedPath fs readFileSync normalizedPath |
 | autogenerated/TaintedPath/normalizedPaths.js:313:19:313:22 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:313:19:313:22 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:313:19:313:22 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:313:19:313:22 | path | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:313:19:313:22 | path | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/normalizedPaths.js:316:19:316:22 | path | CalleeFlexibleAccessPath | fs.readFileSync |
@@ -10438,7 +12788,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:316:19:316:22 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:316:19:316:22 | path | enclosingFunctionBody | req res path req query path fs readFileSync path isPathInside path SAFE fs readFileSync path fs readFileSync path pathIsInside path SAFE fs readFileSync path fs readFileSync path normalizedPath pathModule join SAFE path pathIsInside normalizedPath SAFE fs readFileSync normalizedPath fs readFileSync normalizedPath pathIsInside normalizedPath SAFE fs readFileSync normalizedPath fs readFileSync normalizedPath |
 | autogenerated/TaintedPath/normalizedPaths.js:316:19:316:22 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:316:19:316:22 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:316:19:316:22 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:316:19:316:22 | path | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:316:19:316:22 | path | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/normalizedPaths.js:322:19:322:32 | normalizedPath | CalleeFlexibleAccessPath | fs.readFileSync |
@@ -10450,7 +12800,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:322:19:322:32 | normalizedPath | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:322:19:322:32 | normalizedPath | enclosingFunctionBody | req res path req query path fs readFileSync path isPathInside path SAFE fs readFileSync path fs readFileSync path pathIsInside path SAFE fs readFileSync path fs readFileSync path normalizedPath pathModule join SAFE path pathIsInside normalizedPath SAFE fs readFileSync normalizedPath fs readFileSync normalizedPath pathIsInside normalizedPath SAFE fs readFileSync normalizedPath fs readFileSync normalizedPath |
 | autogenerated/TaintedPath/normalizedPaths.js:322:19:322:32 | normalizedPath | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:322:19:322:32 | normalizedPath | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:322:19:322:32 | normalizedPath | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:322:19:322:32 | normalizedPath | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:322:19:322:32 | normalizedPath | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/normalizedPaths.js:325:19:325:32 | normalizedPath | CalleeFlexibleAccessPath | fs.readFileSync |
@@ -10462,7 +12812,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:325:19:325:32 | normalizedPath | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:325:19:325:32 | normalizedPath | enclosingFunctionBody | req res path req query path fs readFileSync path isPathInside path SAFE fs readFileSync path fs readFileSync path pathIsInside path SAFE fs readFileSync path fs readFileSync path normalizedPath pathModule join SAFE path pathIsInside normalizedPath SAFE fs readFileSync normalizedPath fs readFileSync normalizedPath pathIsInside normalizedPath SAFE fs readFileSync normalizedPath fs readFileSync normalizedPath |
 | autogenerated/TaintedPath/normalizedPaths.js:325:19:325:32 | normalizedPath | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:325:19:325:32 | normalizedPath | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:325:19:325:32 | normalizedPath | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:325:19:325:32 | normalizedPath | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:325:19:325:32 | normalizedPath | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/normalizedPaths.js:329:19:329:32 | normalizedPath | CalleeFlexibleAccessPath | fs.readFileSync |
@@ -10474,7 +12824,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:329:19:329:32 | normalizedPath | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:329:19:329:32 | normalizedPath | enclosingFunctionBody | req res path req query path fs readFileSync path isPathInside path SAFE fs readFileSync path fs readFileSync path pathIsInside path SAFE fs readFileSync path fs readFileSync path normalizedPath pathModule join SAFE path pathIsInside normalizedPath SAFE fs readFileSync normalizedPath fs readFileSync normalizedPath pathIsInside normalizedPath SAFE fs readFileSync normalizedPath fs readFileSync normalizedPath |
 | autogenerated/TaintedPath/normalizedPaths.js:329:19:329:32 | normalizedPath | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:329:19:329:32 | normalizedPath | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:329:19:329:32 | normalizedPath | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:329:19:329:32 | normalizedPath | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:329:19:329:32 | normalizedPath | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/normalizedPaths.js:332:19:332:32 | normalizedPath | CalleeFlexibleAccessPath | fs.readFileSync |
@@ -10486,7 +12836,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:332:19:332:32 | normalizedPath | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:332:19:332:32 | normalizedPath | enclosingFunctionBody | req res path req query path fs readFileSync path isPathInside path SAFE fs readFileSync path fs readFileSync path pathIsInside path SAFE fs readFileSync path fs readFileSync path normalizedPath pathModule join SAFE path pathIsInside normalizedPath SAFE fs readFileSync normalizedPath fs readFileSync normalizedPath pathIsInside normalizedPath SAFE fs readFileSync normalizedPath fs readFileSync normalizedPath |
 | autogenerated/TaintedPath/normalizedPaths.js:332:19:332:32 | normalizedPath | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:332:19:332:32 | normalizedPath | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:332:19:332:32 | normalizedPath | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:332:19:332:32 | normalizedPath | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:332:19:332:32 | normalizedPath | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/normalizedPaths.js:341:18:341:21 | path | CalleeFlexibleAccessPath | fs.readFileSync |
@@ -10498,7 +12848,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:341:18:341:21 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:341:18:341:21 | path | enclosingFunctionBody | req res path pathModule resolve req query path fs readFileSync path abs pathModule resolve path abs indexOf root 0 fs readFileSync path fs readFileSync path |
 | autogenerated/TaintedPath/normalizedPaths.js:341:18:341:21 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:341:18:341:21 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:341:18:341:21 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:341:18:341:21 | path | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:341:18:341:21 | path | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/normalizedPaths.js:345:18:345:21 | root | CalleeFlexibleAccessPath | abs.indexOf |
@@ -10510,7 +12860,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:345:18:345:21 | root | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:345:18:345:21 | root | enclosingFunctionBody | req res path pathModule resolve req query path fs readFileSync path abs pathModule resolve path abs indexOf root 0 fs readFileSync path fs readFileSync path |
 | autogenerated/TaintedPath/normalizedPaths.js:345:18:345:21 | root | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:345:18:345:21 | root | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:345:18:345:21 | root | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:345:18:345:21 | root | receiverName | abs |
 | autogenerated/TaintedPath/normalizedPaths.js:345:18:345:21 | root | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/normalizedPaths.js:346:19:346:22 | path | CalleeFlexibleAccessPath | fs.readFileSync |
@@ -10522,7 +12872,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:346:19:346:22 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:346:19:346:22 | path | enclosingFunctionBody | req res path pathModule resolve req query path fs readFileSync path abs pathModule resolve path abs indexOf root 0 fs readFileSync path fs readFileSync path |
 | autogenerated/TaintedPath/normalizedPaths.js:346:19:346:22 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:346:19:346:22 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:346:19:346:22 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:346:19:346:22 | path | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:346:19:346:22 | path | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/normalizedPaths.js:349:18:349:21 | path | CalleeFlexibleAccessPath | fs.readFileSync |
@@ -10534,7 +12884,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:349:18:349:21 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:349:18:349:21 | path | enclosingFunctionBody | req res path pathModule resolve req query path fs readFileSync path abs pathModule resolve path abs indexOf root 0 fs readFileSync path fs readFileSync path |
 | autogenerated/TaintedPath/normalizedPaths.js:349:18:349:21 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:349:18:349:21 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:349:18:349:21 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:349:18:349:21 | path | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:349:18:349:21 | path | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/normalizedPaths.js:356:19:356:22 | path | CalleeFlexibleAccessPath | fs.readFileSync |
@@ -10546,7 +12896,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:356:19:356:22 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:356:19:356:22 | path | enclosingFunctionBody | req res path req query path fs readFileSync path requestPath pathModule join rootPath path targetPath allowPath requestPath rootPath targetPath rootPath fs readFileSync requestPath targetPath requestPath fs readFileSync requestPath fs readFileSync targetPath allowPath requestPath rootPath requestPath indexOf rootPath 0 |
 | autogenerated/TaintedPath/normalizedPaths.js:356:19:356:22 | path | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:356:19:356:22 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:356:19:356:22 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:356:19:356:22 | path | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:356:19:356:22 | path | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/normalizedPaths.js:361:18:361:28 | requestPath | CalleeFlexibleAccessPath | allowPath |
@@ -10558,7 +12908,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:361:18:361:28 | requestPath | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:361:18:361:28 | requestPath | enclosingFunctionBody | req res path req query path fs readFileSync path requestPath pathModule join rootPath path targetPath allowPath requestPath rootPath targetPath rootPath fs readFileSync requestPath targetPath requestPath fs readFileSync requestPath fs readFileSync targetPath allowPath requestPath rootPath requestPath indexOf rootPath 0 |
 | autogenerated/TaintedPath/normalizedPaths.js:361:18:361:28 | requestPath | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:361:18:361:28 | requestPath | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:361:18:361:28 | requestPath | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:361:18:361:28 | requestPath | receiverName |  |
 | autogenerated/TaintedPath/normalizedPaths.js:361:18:361:28 | requestPath | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/normalizedPaths.js:361:31:361:38 | rootPath | CalleeFlexibleAccessPath | allowPath |
@@ -10570,7 +12920,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:361:31:361:38 | rootPath | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:361:31:361:38 | rootPath | enclosingFunctionBody | req res path req query path fs readFileSync path requestPath pathModule join rootPath path targetPath allowPath requestPath rootPath targetPath rootPath fs readFileSync requestPath targetPath requestPath fs readFileSync requestPath fs readFileSync targetPath allowPath requestPath rootPath requestPath indexOf rootPath 0 |
 | autogenerated/TaintedPath/normalizedPaths.js:361:31:361:38 | rootPath | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:361:31:361:38 | rootPath | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:361:31:361:38 | rootPath | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:361:31:361:38 | rootPath | receiverName |  |
 | autogenerated/TaintedPath/normalizedPaths.js:361:31:361:38 | rootPath | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/normalizedPaths.js:363:21:363:31 | requestPath | CalleeFlexibleAccessPath | fs.readFileSync |
@@ -10582,7 +12932,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:363:21:363:31 | requestPath | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:363:21:363:31 | requestPath | enclosingFunctionBody | req res path req query path fs readFileSync path requestPath pathModule join rootPath path targetPath allowPath requestPath rootPath targetPath rootPath fs readFileSync requestPath targetPath requestPath fs readFileSync requestPath fs readFileSync targetPath allowPath requestPath rootPath requestPath indexOf rootPath 0 |
 | autogenerated/TaintedPath/normalizedPaths.js:363:21:363:31 | requestPath | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:363:21:363:31 | requestPath | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:363:21:363:31 | requestPath | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:363:21:363:31 | requestPath | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:363:21:363:31 | requestPath | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/normalizedPaths.js:366:21:366:31 | requestPath | CalleeFlexibleAccessPath | fs.readFileSync |
@@ -10594,7 +12944,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:366:21:366:31 | requestPath | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:366:21:366:31 | requestPath | enclosingFunctionBody | req res path req query path fs readFileSync path requestPath pathModule join rootPath path targetPath allowPath requestPath rootPath targetPath rootPath fs readFileSync requestPath targetPath requestPath fs readFileSync requestPath fs readFileSync targetPath allowPath requestPath rootPath requestPath indexOf rootPath 0 |
 | autogenerated/TaintedPath/normalizedPaths.js:366:21:366:31 | requestPath | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:366:21:366:31 | requestPath | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:366:21:366:31 | requestPath | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:366:21:366:31 | requestPath | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:366:21:366:31 | requestPath | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/normalizedPaths.js:368:19:368:28 | targetPath | CalleeFlexibleAccessPath | fs.readFileSync |
@@ -10606,7 +12956,7 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:368:19:368:28 | targetPath | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/normalizedPaths.js:368:19:368:28 | targetPath | enclosingFunctionBody | req res path req query path fs readFileSync path requestPath pathModule join rootPath path targetPath allowPath requestPath rootPath targetPath rootPath fs readFileSync requestPath targetPath requestPath fs readFileSync requestPath fs readFileSync targetPath allowPath requestPath rootPath requestPath indexOf rootPath 0 |
 | autogenerated/TaintedPath/normalizedPaths.js:368:19:368:28 | targetPath | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:368:19:368:28 | targetPath | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:368:19:368:28 | targetPath | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:368:19:368:28 | targetPath | receiverName | fs |
 | autogenerated/TaintedPath/normalizedPaths.js:368:19:368:28 | targetPath | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/normalizedPaths.js:371:32:371:39 | rootPath | CalleeFlexibleAccessPath | requestPath.indexOf |
@@ -10618,9 +12968,165 @@ tokenFeatures
 | autogenerated/TaintedPath/normalizedPaths.js:371:32:371:39 | rootPath | contextSurroundingFunctionParameters | (requestPath, rootPath) |
 | autogenerated/TaintedPath/normalizedPaths.js:371:32:371:39 | rootPath | enclosingFunctionBody | req res path req query path fs readFileSync path requestPath pathModule join rootPath path targetPath allowPath requestPath rootPath targetPath rootPath fs readFileSync requestPath targetPath requestPath fs readFileSync requestPath fs readFileSync targetPath allowPath requestPath rootPath requestPath indexOf rootPath 0 |
 | autogenerated/TaintedPath/normalizedPaths.js:371:32:371:39 | rootPath | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/normalizedPaths.js:371:32:371:39 | rootPath | fileImports | express fs is-path-inside path path-is-inside sanitize-filename url |
+| autogenerated/TaintedPath/normalizedPaths.js:371:32:371:39 | rootPath | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
 | autogenerated/TaintedPath/normalizedPaths.js:371:32:371:39 | rootPath | receiverName | requestPath |
 | autogenerated/TaintedPath/normalizedPaths.js:371:32:371:39 | rootPath | stringConcatenatedWith |  |
+| autogenerated/TaintedPath/normalizedPaths.js:379:19:379:22 | path | CalleeFlexibleAccessPath | fs.readFileSync |
+| autogenerated/TaintedPath/normalizedPaths.js:379:19:379:22 | path | InputAccessPathFromCallee |  |
+| autogenerated/TaintedPath/normalizedPaths.js:379:19:379:22 | path | InputArgumentIndex | 0 |
+| autogenerated/TaintedPath/normalizedPaths.js:379:19:379:22 | path | assignedToPropName |  |
+| autogenerated/TaintedPath/normalizedPaths.js:379:19:379:22 | path | calleeImports | fs |
+| autogenerated/TaintedPath/normalizedPaths.js:379:19:379:22 | path | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
+| autogenerated/TaintedPath/normalizedPaths.js:379:19:379:22 | path | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/TaintedPath/normalizedPaths.js:379:19:379:22 | path | enclosingFunctionBody | req res path req query path fs readFileSync path fs readFileSync slash path |
+| autogenerated/TaintedPath/normalizedPaths.js:379:19:379:22 | path | enclosingFunctionName | app.get#functionalargument |
+| autogenerated/TaintedPath/normalizedPaths.js:379:19:379:22 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
+| autogenerated/TaintedPath/normalizedPaths.js:379:19:379:22 | path | receiverName | fs |
+| autogenerated/TaintedPath/normalizedPaths.js:379:19:379:22 | path | stringConcatenatedWith |  |
+| autogenerated/TaintedPath/normalizedPaths.js:381:19:381:29 | slash(path) | CalleeFlexibleAccessPath | fs.readFileSync |
+| autogenerated/TaintedPath/normalizedPaths.js:381:19:381:29 | slash(path) | InputAccessPathFromCallee |  |
+| autogenerated/TaintedPath/normalizedPaths.js:381:19:381:29 | slash(path) | InputArgumentIndex | 0 |
+| autogenerated/TaintedPath/normalizedPaths.js:381:19:381:29 | slash(path) | assignedToPropName |  |
+| autogenerated/TaintedPath/normalizedPaths.js:381:19:381:29 | slash(path) | calleeImports | fs |
+| autogenerated/TaintedPath/normalizedPaths.js:381:19:381:29 | slash(path) | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
+| autogenerated/TaintedPath/normalizedPaths.js:381:19:381:29 | slash(path) | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/TaintedPath/normalizedPaths.js:381:19:381:29 | slash(path) | enclosingFunctionBody | req res path req query path fs readFileSync path fs readFileSync slash path |
+| autogenerated/TaintedPath/normalizedPaths.js:381:19:381:29 | slash(path) | enclosingFunctionName | app.get#functionalargument |
+| autogenerated/TaintedPath/normalizedPaths.js:381:19:381:29 | slash(path) | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
+| autogenerated/TaintedPath/normalizedPaths.js:381:19:381:29 | slash(path) | receiverName | fs |
+| autogenerated/TaintedPath/normalizedPaths.js:381:19:381:29 | slash(path) | stringConcatenatedWith |  |
+| autogenerated/TaintedPath/normalizedPaths.js:388:19:388:22 | path | CalleeFlexibleAccessPath | fs.readFileSync |
+| autogenerated/TaintedPath/normalizedPaths.js:388:19:388:22 | path | InputAccessPathFromCallee |  |
+| autogenerated/TaintedPath/normalizedPaths.js:388:19:388:22 | path | InputArgumentIndex | 0 |
+| autogenerated/TaintedPath/normalizedPaths.js:388:19:388:22 | path | assignedToPropName |  |
+| autogenerated/TaintedPath/normalizedPaths.js:388:19:388:22 | path | calleeImports | fs |
+| autogenerated/TaintedPath/normalizedPaths.js:388:19:388:22 | path | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
+| autogenerated/TaintedPath/normalizedPaths.js:388:19:388:22 | path | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/TaintedPath/normalizedPaths.js:388:19:388:22 | path | enclosingFunctionBody | req res path pathModule normalize req query x pathModule isAbsolute path fs readFileSync path path match /\\./ fs readFileSync path path match /\\.\\./ fs readFileSync path path match /\\.\\.\\// fs readFileSync path path match /\\.\\.\\/foo/ fs readFileSync path path match /(\\.\\.\\/\|\\.\\.\\\\)/ fs readFileSync path |
+| autogenerated/TaintedPath/normalizedPaths.js:388:19:388:22 | path | enclosingFunctionName | app.get#functionalargument |
+| autogenerated/TaintedPath/normalizedPaths.js:388:19:388:22 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
+| autogenerated/TaintedPath/normalizedPaths.js:388:19:388:22 | path | receiverName | fs |
+| autogenerated/TaintedPath/normalizedPaths.js:388:19:388:22 | path | stringConcatenatedWith |  |
+| autogenerated/TaintedPath/normalizedPaths.js:389:19:389:22 | /\\./ | CalleeFlexibleAccessPath | path.match |
+| autogenerated/TaintedPath/normalizedPaths.js:389:19:389:22 | /\\./ | InputAccessPathFromCallee |  |
+| autogenerated/TaintedPath/normalizedPaths.js:389:19:389:22 | /\\./ | InputArgumentIndex | 0 |
+| autogenerated/TaintedPath/normalizedPaths.js:389:19:389:22 | /\\./ | assignedToPropName |  |
+| autogenerated/TaintedPath/normalizedPaths.js:389:19:389:22 | /\\./ | calleeImports | path |
+| autogenerated/TaintedPath/normalizedPaths.js:389:19:389:22 | /\\./ | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
+| autogenerated/TaintedPath/normalizedPaths.js:389:19:389:22 | /\\./ | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/TaintedPath/normalizedPaths.js:389:19:389:22 | /\\./ | enclosingFunctionBody | req res path pathModule normalize req query x pathModule isAbsolute path fs readFileSync path path match /\\./ fs readFileSync path path match /\\.\\./ fs readFileSync path path match /\\.\\.\\// fs readFileSync path path match /\\.\\.\\/foo/ fs readFileSync path path match /(\\.\\.\\/\|\\.\\.\\\\)/ fs readFileSync path |
+| autogenerated/TaintedPath/normalizedPaths.js:389:19:389:22 | /\\./ | enclosingFunctionName | app.get#functionalargument |
+| autogenerated/TaintedPath/normalizedPaths.js:389:19:389:22 | /\\./ | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
+| autogenerated/TaintedPath/normalizedPaths.js:389:19:389:22 | /\\./ | receiverName | path |
+| autogenerated/TaintedPath/normalizedPaths.js:389:19:389:22 | /\\./ | stringConcatenatedWith |  |
+| autogenerated/TaintedPath/normalizedPaths.js:390:21:390:24 | path | CalleeFlexibleAccessPath | fs.readFileSync |
+| autogenerated/TaintedPath/normalizedPaths.js:390:21:390:24 | path | InputAccessPathFromCallee |  |
+| autogenerated/TaintedPath/normalizedPaths.js:390:21:390:24 | path | InputArgumentIndex | 0 |
+| autogenerated/TaintedPath/normalizedPaths.js:390:21:390:24 | path | assignedToPropName |  |
+| autogenerated/TaintedPath/normalizedPaths.js:390:21:390:24 | path | calleeImports | fs |
+| autogenerated/TaintedPath/normalizedPaths.js:390:21:390:24 | path | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
+| autogenerated/TaintedPath/normalizedPaths.js:390:21:390:24 | path | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/TaintedPath/normalizedPaths.js:390:21:390:24 | path | enclosingFunctionBody | req res path pathModule normalize req query x pathModule isAbsolute path fs readFileSync path path match /\\./ fs readFileSync path path match /\\.\\./ fs readFileSync path path match /\\.\\.\\// fs readFileSync path path match /\\.\\.\\/foo/ fs readFileSync path path match /(\\.\\.\\/\|\\.\\.\\\\)/ fs readFileSync path |
+| autogenerated/TaintedPath/normalizedPaths.js:390:21:390:24 | path | enclosingFunctionName | app.get#functionalargument |
+| autogenerated/TaintedPath/normalizedPaths.js:390:21:390:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
+| autogenerated/TaintedPath/normalizedPaths.js:390:21:390:24 | path | receiverName | fs |
+| autogenerated/TaintedPath/normalizedPaths.js:390:21:390:24 | path | stringConcatenatedWith |  |
+| autogenerated/TaintedPath/normalizedPaths.js:392:19:392:24 | /\\.\\./ | CalleeFlexibleAccessPath | path.match |
+| autogenerated/TaintedPath/normalizedPaths.js:392:19:392:24 | /\\.\\./ | InputAccessPathFromCallee |  |
+| autogenerated/TaintedPath/normalizedPaths.js:392:19:392:24 | /\\.\\./ | InputArgumentIndex | 0 |
+| autogenerated/TaintedPath/normalizedPaths.js:392:19:392:24 | /\\.\\./ | assignedToPropName |  |
+| autogenerated/TaintedPath/normalizedPaths.js:392:19:392:24 | /\\.\\./ | calleeImports | path |
+| autogenerated/TaintedPath/normalizedPaths.js:392:19:392:24 | /\\.\\./ | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
+| autogenerated/TaintedPath/normalizedPaths.js:392:19:392:24 | /\\.\\./ | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/TaintedPath/normalizedPaths.js:392:19:392:24 | /\\.\\./ | enclosingFunctionBody | req res path pathModule normalize req query x pathModule isAbsolute path fs readFileSync path path match /\\./ fs readFileSync path path match /\\.\\./ fs readFileSync path path match /\\.\\.\\// fs readFileSync path path match /\\.\\.\\/foo/ fs readFileSync path path match /(\\.\\.\\/\|\\.\\.\\\\)/ fs readFileSync path |
+| autogenerated/TaintedPath/normalizedPaths.js:392:19:392:24 | /\\.\\./ | enclosingFunctionName | app.get#functionalargument |
+| autogenerated/TaintedPath/normalizedPaths.js:392:19:392:24 | /\\.\\./ | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
+| autogenerated/TaintedPath/normalizedPaths.js:392:19:392:24 | /\\.\\./ | receiverName | path |
+| autogenerated/TaintedPath/normalizedPaths.js:392:19:392:24 | /\\.\\./ | stringConcatenatedWith |  |
+| autogenerated/TaintedPath/normalizedPaths.js:393:21:393:24 | path | CalleeFlexibleAccessPath | fs.readFileSync |
+| autogenerated/TaintedPath/normalizedPaths.js:393:21:393:24 | path | InputAccessPathFromCallee |  |
+| autogenerated/TaintedPath/normalizedPaths.js:393:21:393:24 | path | InputArgumentIndex | 0 |
+| autogenerated/TaintedPath/normalizedPaths.js:393:21:393:24 | path | assignedToPropName |  |
+| autogenerated/TaintedPath/normalizedPaths.js:393:21:393:24 | path | calleeImports | fs |
+| autogenerated/TaintedPath/normalizedPaths.js:393:21:393:24 | path | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
+| autogenerated/TaintedPath/normalizedPaths.js:393:21:393:24 | path | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/TaintedPath/normalizedPaths.js:393:21:393:24 | path | enclosingFunctionBody | req res path pathModule normalize req query x pathModule isAbsolute path fs readFileSync path path match /\\./ fs readFileSync path path match /\\.\\./ fs readFileSync path path match /\\.\\.\\// fs readFileSync path path match /\\.\\.\\/foo/ fs readFileSync path path match /(\\.\\.\\/\|\\.\\.\\\\)/ fs readFileSync path |
+| autogenerated/TaintedPath/normalizedPaths.js:393:21:393:24 | path | enclosingFunctionName | app.get#functionalargument |
+| autogenerated/TaintedPath/normalizedPaths.js:393:21:393:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
+| autogenerated/TaintedPath/normalizedPaths.js:393:21:393:24 | path | receiverName | fs |
+| autogenerated/TaintedPath/normalizedPaths.js:393:21:393:24 | path | stringConcatenatedWith |  |
+| autogenerated/TaintedPath/normalizedPaths.js:395:19:395:26 | /\\.\\.\\// | CalleeFlexibleAccessPath | path.match |
+| autogenerated/TaintedPath/normalizedPaths.js:395:19:395:26 | /\\.\\.\\// | InputAccessPathFromCallee |  |
+| autogenerated/TaintedPath/normalizedPaths.js:395:19:395:26 | /\\.\\.\\// | InputArgumentIndex | 0 |
+| autogenerated/TaintedPath/normalizedPaths.js:395:19:395:26 | /\\.\\.\\// | assignedToPropName |  |
+| autogenerated/TaintedPath/normalizedPaths.js:395:19:395:26 | /\\.\\.\\// | calleeImports | path |
+| autogenerated/TaintedPath/normalizedPaths.js:395:19:395:26 | /\\.\\.\\// | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
+| autogenerated/TaintedPath/normalizedPaths.js:395:19:395:26 | /\\.\\.\\// | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/TaintedPath/normalizedPaths.js:395:19:395:26 | /\\.\\.\\// | enclosingFunctionBody | req res path pathModule normalize req query x pathModule isAbsolute path fs readFileSync path path match /\\./ fs readFileSync path path match /\\.\\./ fs readFileSync path path match /\\.\\.\\// fs readFileSync path path match /\\.\\.\\/foo/ fs readFileSync path path match /(\\.\\.\\/\|\\.\\.\\\\)/ fs readFileSync path |
+| autogenerated/TaintedPath/normalizedPaths.js:395:19:395:26 | /\\.\\.\\// | enclosingFunctionName | app.get#functionalargument |
+| autogenerated/TaintedPath/normalizedPaths.js:395:19:395:26 | /\\.\\.\\// | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
+| autogenerated/TaintedPath/normalizedPaths.js:395:19:395:26 | /\\.\\.\\// | receiverName | path |
+| autogenerated/TaintedPath/normalizedPaths.js:395:19:395:26 | /\\.\\.\\// | stringConcatenatedWith |  |
+| autogenerated/TaintedPath/normalizedPaths.js:396:21:396:24 | path | CalleeFlexibleAccessPath | fs.readFileSync |
+| autogenerated/TaintedPath/normalizedPaths.js:396:21:396:24 | path | InputAccessPathFromCallee |  |
+| autogenerated/TaintedPath/normalizedPaths.js:396:21:396:24 | path | InputArgumentIndex | 0 |
+| autogenerated/TaintedPath/normalizedPaths.js:396:21:396:24 | path | assignedToPropName |  |
+| autogenerated/TaintedPath/normalizedPaths.js:396:21:396:24 | path | calleeImports | fs |
+| autogenerated/TaintedPath/normalizedPaths.js:396:21:396:24 | path | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
+| autogenerated/TaintedPath/normalizedPaths.js:396:21:396:24 | path | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/TaintedPath/normalizedPaths.js:396:21:396:24 | path | enclosingFunctionBody | req res path pathModule normalize req query x pathModule isAbsolute path fs readFileSync path path match /\\./ fs readFileSync path path match /\\.\\./ fs readFileSync path path match /\\.\\.\\// fs readFileSync path path match /\\.\\.\\/foo/ fs readFileSync path path match /(\\.\\.\\/\|\\.\\.\\\\)/ fs readFileSync path |
+| autogenerated/TaintedPath/normalizedPaths.js:396:21:396:24 | path | enclosingFunctionName | app.get#functionalargument |
+| autogenerated/TaintedPath/normalizedPaths.js:396:21:396:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
+| autogenerated/TaintedPath/normalizedPaths.js:396:21:396:24 | path | receiverName | fs |
+| autogenerated/TaintedPath/normalizedPaths.js:396:21:396:24 | path | stringConcatenatedWith |  |
+| autogenerated/TaintedPath/normalizedPaths.js:398:19:398:29 | /\\.\\.\\/foo/ | CalleeFlexibleAccessPath | path.match |
+| autogenerated/TaintedPath/normalizedPaths.js:398:19:398:29 | /\\.\\.\\/foo/ | InputAccessPathFromCallee |  |
+| autogenerated/TaintedPath/normalizedPaths.js:398:19:398:29 | /\\.\\.\\/foo/ | InputArgumentIndex | 0 |
+| autogenerated/TaintedPath/normalizedPaths.js:398:19:398:29 | /\\.\\.\\/foo/ | assignedToPropName |  |
+| autogenerated/TaintedPath/normalizedPaths.js:398:19:398:29 | /\\.\\.\\/foo/ | calleeImports | path |
+| autogenerated/TaintedPath/normalizedPaths.js:398:19:398:29 | /\\.\\.\\/foo/ | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
+| autogenerated/TaintedPath/normalizedPaths.js:398:19:398:29 | /\\.\\.\\/foo/ | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/TaintedPath/normalizedPaths.js:398:19:398:29 | /\\.\\.\\/foo/ | enclosingFunctionBody | req res path pathModule normalize req query x pathModule isAbsolute path fs readFileSync path path match /\\./ fs readFileSync path path match /\\.\\./ fs readFileSync path path match /\\.\\.\\// fs readFileSync path path match /\\.\\.\\/foo/ fs readFileSync path path match /(\\.\\.\\/\|\\.\\.\\\\)/ fs readFileSync path |
+| autogenerated/TaintedPath/normalizedPaths.js:398:19:398:29 | /\\.\\.\\/foo/ | enclosingFunctionName | app.get#functionalargument |
+| autogenerated/TaintedPath/normalizedPaths.js:398:19:398:29 | /\\.\\.\\/foo/ | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
+| autogenerated/TaintedPath/normalizedPaths.js:398:19:398:29 | /\\.\\.\\/foo/ | receiverName | path |
+| autogenerated/TaintedPath/normalizedPaths.js:398:19:398:29 | /\\.\\.\\/foo/ | stringConcatenatedWith |  |
+| autogenerated/TaintedPath/normalizedPaths.js:399:21:399:24 | path | CalleeFlexibleAccessPath | fs.readFileSync |
+| autogenerated/TaintedPath/normalizedPaths.js:399:21:399:24 | path | InputAccessPathFromCallee |  |
+| autogenerated/TaintedPath/normalizedPaths.js:399:21:399:24 | path | InputArgumentIndex | 0 |
+| autogenerated/TaintedPath/normalizedPaths.js:399:21:399:24 | path | assignedToPropName |  |
+| autogenerated/TaintedPath/normalizedPaths.js:399:21:399:24 | path | calleeImports | fs |
+| autogenerated/TaintedPath/normalizedPaths.js:399:21:399:24 | path | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
+| autogenerated/TaintedPath/normalizedPaths.js:399:21:399:24 | path | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/TaintedPath/normalizedPaths.js:399:21:399:24 | path | enclosingFunctionBody | req res path pathModule normalize req query x pathModule isAbsolute path fs readFileSync path path match /\\./ fs readFileSync path path match /\\.\\./ fs readFileSync path path match /\\.\\.\\// fs readFileSync path path match /\\.\\.\\/foo/ fs readFileSync path path match /(\\.\\.\\/\|\\.\\.\\\\)/ fs readFileSync path |
+| autogenerated/TaintedPath/normalizedPaths.js:399:21:399:24 | path | enclosingFunctionName | app.get#functionalargument |
+| autogenerated/TaintedPath/normalizedPaths.js:399:21:399:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
+| autogenerated/TaintedPath/normalizedPaths.js:399:21:399:24 | path | receiverName | fs |
+| autogenerated/TaintedPath/normalizedPaths.js:399:21:399:24 | path | stringConcatenatedWith |  |
+| autogenerated/TaintedPath/normalizedPaths.js:401:19:401:35 | /(\\.\\.\\/\|\\.\\.\\\\)/ | CalleeFlexibleAccessPath | path.match |
+| autogenerated/TaintedPath/normalizedPaths.js:401:19:401:35 | /(\\.\\.\\/\|\\.\\.\\\\)/ | InputAccessPathFromCallee |  |
+| autogenerated/TaintedPath/normalizedPaths.js:401:19:401:35 | /(\\.\\.\\/\|\\.\\.\\\\)/ | InputArgumentIndex | 0 |
+| autogenerated/TaintedPath/normalizedPaths.js:401:19:401:35 | /(\\.\\.\\/\|\\.\\.\\\\)/ | assignedToPropName |  |
+| autogenerated/TaintedPath/normalizedPaths.js:401:19:401:35 | /(\\.\\.\\/\|\\.\\.\\\\)/ | calleeImports | path |
+| autogenerated/TaintedPath/normalizedPaths.js:401:19:401:35 | /(\\.\\.\\/\|\\.\\.\\\\)/ | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
+| autogenerated/TaintedPath/normalizedPaths.js:401:19:401:35 | /(\\.\\.\\/\|\\.\\.\\\\)/ | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/TaintedPath/normalizedPaths.js:401:19:401:35 | /(\\.\\.\\/\|\\.\\.\\\\)/ | enclosingFunctionBody | req res path pathModule normalize req query x pathModule isAbsolute path fs readFileSync path path match /\\./ fs readFileSync path path match /\\.\\./ fs readFileSync path path match /\\.\\.\\// fs readFileSync path path match /\\.\\.\\/foo/ fs readFileSync path path match /(\\.\\.\\/\|\\.\\.\\\\)/ fs readFileSync path |
+| autogenerated/TaintedPath/normalizedPaths.js:401:19:401:35 | /(\\.\\.\\/\|\\.\\.\\\\)/ | enclosingFunctionName | app.get#functionalargument |
+| autogenerated/TaintedPath/normalizedPaths.js:401:19:401:35 | /(\\.\\.\\/\|\\.\\.\\\\)/ | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
+| autogenerated/TaintedPath/normalizedPaths.js:401:19:401:35 | /(\\.\\.\\/\|\\.\\.\\\\)/ | receiverName | path |
+| autogenerated/TaintedPath/normalizedPaths.js:401:19:401:35 | /(\\.\\.\\/\|\\.\\.\\\\)/ | stringConcatenatedWith |  |
+| autogenerated/TaintedPath/normalizedPaths.js:402:21:402:24 | path | CalleeFlexibleAccessPath | fs.readFileSync |
+| autogenerated/TaintedPath/normalizedPaths.js:402:21:402:24 | path | InputAccessPathFromCallee |  |
+| autogenerated/TaintedPath/normalizedPaths.js:402:21:402:24 | path | InputArgumentIndex | 0 |
+| autogenerated/TaintedPath/normalizedPaths.js:402:21:402:24 | path | assignedToPropName |  |
+| autogenerated/TaintedPath/normalizedPaths.js:402:21:402:24 | path | calleeImports | fs |
+| autogenerated/TaintedPath/normalizedPaths.js:402:21:402:24 | path | contextFunctionInterfaces | allowPath(requestPath, rootPath) |
+| autogenerated/TaintedPath/normalizedPaths.js:402:21:402:24 | path | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/TaintedPath/normalizedPaths.js:402:21:402:24 | path | enclosingFunctionBody | req res path pathModule normalize req query x pathModule isAbsolute path fs readFileSync path path match /\\./ fs readFileSync path path match /\\.\\./ fs readFileSync path path match /\\.\\.\\// fs readFileSync path path match /\\.\\.\\/foo/ fs readFileSync path path match /(\\.\\.\\/\|\\.\\.\\\\)/ fs readFileSync path |
+| autogenerated/TaintedPath/normalizedPaths.js:402:21:402:24 | path | enclosingFunctionName | app.get#functionalargument |
+| autogenerated/TaintedPath/normalizedPaths.js:402:21:402:24 | path | fileImports | express fs is-path-inside path path-is-inside sanitize-filename slash url |
+| autogenerated/TaintedPath/normalizedPaths.js:402:21:402:24 | path | receiverName | fs |
+| autogenerated/TaintedPath/normalizedPaths.js:402:21:402:24 | path | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/other-fs-libraries.js:11:19:11:22 | path | CalleeFlexibleAccessPath | fs.readFileSync |
 | autogenerated/TaintedPath/other-fs-libraries.js:11:19:11:22 | path | InputAccessPathFromCallee |  |
 | autogenerated/TaintedPath/other-fs-libraries.js:11:19:11:22 | path | InputArgumentIndex | 0 |
@@ -10630,7 +13136,7 @@ tokenFeatures
 | autogenerated/TaintedPath/other-fs-libraries.js:11:19:11:22 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/other-fs-libraries.js:11:19:11:22 | path | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path gracefulFs readFileSync path fsExtra readFileSync path originalFs readFileSync path getFsModule true readFileSync path getFsModule false readFileSync path require ./my-fs-module require true readFileSync path flexibleModuleName require process electron versions electron original-fs fs flexibleModuleName readFileSync path |
 | autogenerated/TaintedPath/other-fs-libraries.js:11:19:11:22 | path | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/other-fs-libraries.js:11:19:11:22 | path | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http original-fs url util |
+| autogenerated/TaintedPath/other-fs-libraries.js:11:19:11:22 | path | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http mkdirp original-fs pify read-pkg thenify url util util.promisify |
 | autogenerated/TaintedPath/other-fs-libraries.js:11:19:11:22 | path | receiverName | fs |
 | autogenerated/TaintedPath/other-fs-libraries.js:11:19:11:22 | path | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/other-fs-libraries.js:12:27:12:30 | path | CalleeFlexibleAccessPath | gracefulFs.readFileSync |
@@ -10642,7 +13148,7 @@ tokenFeatures
 | autogenerated/TaintedPath/other-fs-libraries.js:12:27:12:30 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/other-fs-libraries.js:12:27:12:30 | path | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path gracefulFs readFileSync path fsExtra readFileSync path originalFs readFileSync path getFsModule true readFileSync path getFsModule false readFileSync path require ./my-fs-module require true readFileSync path flexibleModuleName require process electron versions electron original-fs fs flexibleModuleName readFileSync path |
 | autogenerated/TaintedPath/other-fs-libraries.js:12:27:12:30 | path | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/other-fs-libraries.js:12:27:12:30 | path | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http original-fs url util |
+| autogenerated/TaintedPath/other-fs-libraries.js:12:27:12:30 | path | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http mkdirp original-fs pify read-pkg thenify url util util.promisify |
 | autogenerated/TaintedPath/other-fs-libraries.js:12:27:12:30 | path | receiverName | gracefulFs |
 | autogenerated/TaintedPath/other-fs-libraries.js:12:27:12:30 | path | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/other-fs-libraries.js:13:24:13:27 | path | CalleeFlexibleAccessPath | fsExtra.readFileSync |
@@ -10654,7 +13160,7 @@ tokenFeatures
 | autogenerated/TaintedPath/other-fs-libraries.js:13:24:13:27 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/other-fs-libraries.js:13:24:13:27 | path | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path gracefulFs readFileSync path fsExtra readFileSync path originalFs readFileSync path getFsModule true readFileSync path getFsModule false readFileSync path require ./my-fs-module require true readFileSync path flexibleModuleName require process electron versions electron original-fs fs flexibleModuleName readFileSync path |
 | autogenerated/TaintedPath/other-fs-libraries.js:13:24:13:27 | path | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/other-fs-libraries.js:13:24:13:27 | path | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http original-fs url util |
+| autogenerated/TaintedPath/other-fs-libraries.js:13:24:13:27 | path | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http mkdirp original-fs pify read-pkg thenify url util util.promisify |
 | autogenerated/TaintedPath/other-fs-libraries.js:13:24:13:27 | path | receiverName | fsExtra |
 | autogenerated/TaintedPath/other-fs-libraries.js:13:24:13:27 | path | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/other-fs-libraries.js:14:27:14:30 | path | CalleeFlexibleAccessPath | originalFs.readFileSync |
@@ -10666,7 +13172,7 @@ tokenFeatures
 | autogenerated/TaintedPath/other-fs-libraries.js:14:27:14:30 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/other-fs-libraries.js:14:27:14:30 | path | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path gracefulFs readFileSync path fsExtra readFileSync path originalFs readFileSync path getFsModule true readFileSync path getFsModule false readFileSync path require ./my-fs-module require true readFileSync path flexibleModuleName require process electron versions electron original-fs fs flexibleModuleName readFileSync path |
 | autogenerated/TaintedPath/other-fs-libraries.js:14:27:14:30 | path | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/other-fs-libraries.js:14:27:14:30 | path | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http original-fs url util |
+| autogenerated/TaintedPath/other-fs-libraries.js:14:27:14:30 | path | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http mkdirp original-fs pify read-pkg thenify url util util.promisify |
 | autogenerated/TaintedPath/other-fs-libraries.js:14:27:14:30 | path | receiverName | originalFs |
 | autogenerated/TaintedPath/other-fs-libraries.js:14:27:14:30 | path | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/other-fs-libraries.js:16:34:16:37 | path | CalleeFlexibleAccessPath | getFsModule().readFileSync |
@@ -10678,7 +13184,7 @@ tokenFeatures
 | autogenerated/TaintedPath/other-fs-libraries.js:16:34:16:37 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/other-fs-libraries.js:16:34:16:37 | path | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path gracefulFs readFileSync path fsExtra readFileSync path originalFs readFileSync path getFsModule true readFileSync path getFsModule false readFileSync path require ./my-fs-module require true readFileSync path flexibleModuleName require process electron versions electron original-fs fs flexibleModuleName readFileSync path |
 | autogenerated/TaintedPath/other-fs-libraries.js:16:34:16:37 | path | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/other-fs-libraries.js:16:34:16:37 | path | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http original-fs url util |
+| autogenerated/TaintedPath/other-fs-libraries.js:16:34:16:37 | path | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http mkdirp original-fs pify read-pkg thenify url util util.promisify |
 | autogenerated/TaintedPath/other-fs-libraries.js:16:34:16:37 | path | receiverName |  |
 | autogenerated/TaintedPath/other-fs-libraries.js:16:34:16:37 | path | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/other-fs-libraries.js:17:35:17:38 | path | CalleeFlexibleAccessPath | getFsModule().readFileSync |
@@ -10690,7 +13196,7 @@ tokenFeatures
 | autogenerated/TaintedPath/other-fs-libraries.js:17:35:17:38 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/other-fs-libraries.js:17:35:17:38 | path | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path gracefulFs readFileSync path fsExtra readFileSync path originalFs readFileSync path getFsModule true readFileSync path getFsModule false readFileSync path require ./my-fs-module require true readFileSync path flexibleModuleName require process electron versions electron original-fs fs flexibleModuleName readFileSync path |
 | autogenerated/TaintedPath/other-fs-libraries.js:17:35:17:38 | path | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/other-fs-libraries.js:17:35:17:38 | path | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http original-fs url util |
+| autogenerated/TaintedPath/other-fs-libraries.js:17:35:17:38 | path | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http mkdirp original-fs pify read-pkg thenify url util util.promisify |
 | autogenerated/TaintedPath/other-fs-libraries.js:17:35:17:38 | path | receiverName |  |
 | autogenerated/TaintedPath/other-fs-libraries.js:17:35:17:38 | path | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/other-fs-libraries.js:19:56:19:59 | path | CalleeFlexibleAccessPath | import("p").require().readFileSync |
@@ -10702,7 +13208,7 @@ tokenFeatures
 | autogenerated/TaintedPath/other-fs-libraries.js:19:56:19:59 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/other-fs-libraries.js:19:56:19:59 | path | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path gracefulFs readFileSync path fsExtra readFileSync path originalFs readFileSync path getFsModule true readFileSync path getFsModule false readFileSync path require ./my-fs-module require true readFileSync path flexibleModuleName require process electron versions electron original-fs fs flexibleModuleName readFileSync path |
 | autogenerated/TaintedPath/other-fs-libraries.js:19:56:19:59 | path | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/other-fs-libraries.js:19:56:19:59 | path | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http original-fs url util |
+| autogenerated/TaintedPath/other-fs-libraries.js:19:56:19:59 | path | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http mkdirp original-fs pify read-pkg thenify url util util.promisify |
 | autogenerated/TaintedPath/other-fs-libraries.js:19:56:19:59 | path | receiverName |  |
 | autogenerated/TaintedPath/other-fs-libraries.js:19:56:19:59 | path | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/other-fs-libraries.js:21:36:23:10 | process ...  : "fs" | CalleeFlexibleAccessPath | require |
@@ -10714,7 +13220,7 @@ tokenFeatures
 | autogenerated/TaintedPath/other-fs-libraries.js:21:36:23:10 | process ...  : "fs" | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/other-fs-libraries.js:21:36:23:10 | process ...  : "fs" | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path gracefulFs readFileSync path fsExtra readFileSync path originalFs readFileSync path getFsModule true readFileSync path getFsModule false readFileSync path require ./my-fs-module require true readFileSync path flexibleModuleName require process electron versions electron original-fs fs flexibleModuleName readFileSync path |
 | autogenerated/TaintedPath/other-fs-libraries.js:21:36:23:10 | process ...  : "fs" | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/other-fs-libraries.js:21:36:23:10 | process ...  : "fs" | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http original-fs url util |
+| autogenerated/TaintedPath/other-fs-libraries.js:21:36:23:10 | process ...  : "fs" | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http mkdirp original-fs pify read-pkg thenify url util util.promisify |
 | autogenerated/TaintedPath/other-fs-libraries.js:21:36:23:10 | process ...  : "fs" | receiverName |  |
 | autogenerated/TaintedPath/other-fs-libraries.js:21:36:23:10 | process ...  : "fs" | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/other-fs-libraries.js:24:35:24:38 | path | CalleeFlexibleAccessPath | flexibleModuleName.readFileSync |
@@ -10726,7 +13232,7 @@ tokenFeatures
 | autogenerated/TaintedPath/other-fs-libraries.js:24:35:24:38 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/other-fs-libraries.js:24:35:24:38 | path | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path gracefulFs readFileSync path fsExtra readFileSync path originalFs readFileSync path getFsModule true readFileSync path getFsModule false readFileSync path require ./my-fs-module require true readFileSync path flexibleModuleName require process electron versions electron original-fs fs flexibleModuleName readFileSync path |
 | autogenerated/TaintedPath/other-fs-libraries.js:24:35:24:38 | path | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/other-fs-libraries.js:24:35:24:38 | path | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http original-fs url util |
+| autogenerated/TaintedPath/other-fs-libraries.js:24:35:24:38 | path | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http mkdirp original-fs pify read-pkg thenify url util util.promisify |
 | autogenerated/TaintedPath/other-fs-libraries.js:24:35:24:38 | path | receiverName | flexibleModuleName |
 | autogenerated/TaintedPath/other-fs-libraries.js:24:35:24:38 | path | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/other-fs-libraries.js:40:35:40:38 | path | CalleeFlexibleAccessPath | util.promisify() |
@@ -10738,7 +13244,7 @@ tokenFeatures
 | autogenerated/TaintedPath/other-fs-libraries.js:40:35:40:38 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/other-fs-libraries.js:40:35:40:38 | path | enclosingFunctionBody | req res path url parse req url true query path util promisify fs readFileSync path require bluebird promisify fs readFileSync path require bluebird promisifyAll fs readFileSync path |
 | autogenerated/TaintedPath/other-fs-libraries.js:40:35:40:38 | path | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/other-fs-libraries.js:40:35:40:38 | path | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http original-fs url util |
+| autogenerated/TaintedPath/other-fs-libraries.js:40:35:40:38 | path | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http mkdirp original-fs pify read-pkg thenify url util util.promisify |
 | autogenerated/TaintedPath/other-fs-libraries.js:40:35:40:38 | path | receiverName |  |
 | autogenerated/TaintedPath/other-fs-libraries.js:40:35:40:38 | path | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/other-fs-libraries.js:41:50:41:53 | path | CalleeFlexibleAccessPath | import(!).promisify() |
@@ -10750,7 +13256,7 @@ tokenFeatures
 | autogenerated/TaintedPath/other-fs-libraries.js:41:50:41:53 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/other-fs-libraries.js:41:50:41:53 | path | enclosingFunctionBody | req res path url parse req url true query path util promisify fs readFileSync path require bluebird promisify fs readFileSync path require bluebird promisifyAll fs readFileSync path |
 | autogenerated/TaintedPath/other-fs-libraries.js:41:50:41:53 | path | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/other-fs-libraries.js:41:50:41:53 | path | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http original-fs url util |
+| autogenerated/TaintedPath/other-fs-libraries.js:41:50:41:53 | path | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http mkdirp original-fs pify read-pkg thenify url util util.promisify |
 | autogenerated/TaintedPath/other-fs-libraries.js:41:50:41:53 | path | receiverName |  |
 | autogenerated/TaintedPath/other-fs-libraries.js:41:50:41:53 | path | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/other-fs-libraries.js:42:53:42:56 | path | CalleeFlexibleAccessPath | import(!).promisifyAll().readFileSync |
@@ -10762,7 +13268,7 @@ tokenFeatures
 | autogenerated/TaintedPath/other-fs-libraries.js:42:53:42:56 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/other-fs-libraries.js:42:53:42:56 | path | enclosingFunctionBody | req res path url parse req url true query path util promisify fs readFileSync path require bluebird promisify fs readFileSync path require bluebird promisifyAll fs readFileSync path |
 | autogenerated/TaintedPath/other-fs-libraries.js:42:53:42:56 | path | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/other-fs-libraries.js:42:53:42:56 | path | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http original-fs url util |
+| autogenerated/TaintedPath/other-fs-libraries.js:42:53:42:56 | path | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http mkdirp original-fs pify read-pkg thenify url util util.promisify |
 | autogenerated/TaintedPath/other-fs-libraries.js:42:53:42:56 | path | receiverName |  |
 | autogenerated/TaintedPath/other-fs-libraries.js:42:53:42:56 | path | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/other-fs-libraries.js:51:19:51:22 | path | CalleeFlexibleAccessPath | fs.readFileSync |
@@ -10772,9 +13278,9 @@ tokenFeatures
 | autogenerated/TaintedPath/other-fs-libraries.js:51:19:51:22 | path | calleeImports | fs |
 | autogenerated/TaintedPath/other-fs-libraries.js:51:19:51:22 | path | contextFunctionInterfaces | getFsModule(special) |
 | autogenerated/TaintedPath/other-fs-libraries.js:51:19:51:22 | path | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/other-fs-libraries.js:51:19:51:22 | path | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path asyncFS readFileSync path |
+| autogenerated/TaintedPath/other-fs-libraries.js:51:19:51:22 | path | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path asyncFS readFileSync path require pify fs readFileSync path require pify fs readFileSync path require util.promisify fs readFileSync path require thenify fs readFileSync path readPkg require read-pkg pkg readPkg readPackageSync cwd path pkgPromise readPkg readPackageAsync cwd path |
 | autogenerated/TaintedPath/other-fs-libraries.js:51:19:51:22 | path | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/other-fs-libraries.js:51:19:51:22 | path | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http original-fs url util |
+| autogenerated/TaintedPath/other-fs-libraries.js:51:19:51:22 | path | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http mkdirp original-fs pify read-pkg thenify url util util.promisify |
 | autogenerated/TaintedPath/other-fs-libraries.js:51:19:51:22 | path | receiverName | fs |
 | autogenerated/TaintedPath/other-fs-libraries.js:51:19:51:22 | path | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/other-fs-libraries.js:52:24:52:27 | path | CalleeFlexibleAccessPath | asyncFS.readFileSync |
@@ -10784,11 +13290,143 @@ tokenFeatures
 | autogenerated/TaintedPath/other-fs-libraries.js:52:24:52:27 | path | calleeImports | ./my-async-fs-module |
 | autogenerated/TaintedPath/other-fs-libraries.js:52:24:52:27 | path | contextFunctionInterfaces | getFsModule(special) |
 | autogenerated/TaintedPath/other-fs-libraries.js:52:24:52:27 | path | contextSurroundingFunctionParameters | (req, res) |
-| autogenerated/TaintedPath/other-fs-libraries.js:52:24:52:27 | path | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path asyncFS readFileSync path |
+| autogenerated/TaintedPath/other-fs-libraries.js:52:24:52:27 | path | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path asyncFS readFileSync path require pify fs readFileSync path require pify fs readFileSync path require util.promisify fs readFileSync path require thenify fs readFileSync path readPkg require read-pkg pkg readPkg readPackageSync cwd path pkgPromise readPkg readPackageAsync cwd path |
 | autogenerated/TaintedPath/other-fs-libraries.js:52:24:52:27 | path | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/other-fs-libraries.js:52:24:52:27 | path | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http original-fs url util |
+| autogenerated/TaintedPath/other-fs-libraries.js:52:24:52:27 | path | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http mkdirp original-fs pify read-pkg thenify url util util.promisify |
 | autogenerated/TaintedPath/other-fs-libraries.js:52:24:52:27 | path | receiverName | asyncFS |
 | autogenerated/TaintedPath/other-fs-libraries.js:52:24:52:27 | path | stringConcatenatedWith |  |
+| autogenerated/TaintedPath/other-fs-libraries.js:54:36:54:39 | path | CalleeFlexibleAccessPath | import(!)() |
+| autogenerated/TaintedPath/other-fs-libraries.js:54:36:54:39 | path | InputAccessPathFromCallee |  |
+| autogenerated/TaintedPath/other-fs-libraries.js:54:36:54:39 | path | InputArgumentIndex | 0 |
+| autogenerated/TaintedPath/other-fs-libraries.js:54:36:54:39 | path | assignedToPropName |  |
+| autogenerated/TaintedPath/other-fs-libraries.js:54:36:54:39 | path | calleeImports | pify |
+| autogenerated/TaintedPath/other-fs-libraries.js:54:36:54:39 | path | contextFunctionInterfaces | getFsModule(special) |
+| autogenerated/TaintedPath/other-fs-libraries.js:54:36:54:39 | path | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/TaintedPath/other-fs-libraries.js:54:36:54:39 | path | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path asyncFS readFileSync path require pify fs readFileSync path require pify fs readFileSync path require util.promisify fs readFileSync path require thenify fs readFileSync path readPkg require read-pkg pkg readPkg readPackageSync cwd path pkgPromise readPkg readPackageAsync cwd path |
+| autogenerated/TaintedPath/other-fs-libraries.js:54:36:54:39 | path | enclosingFunctionName | http.createServer#functionalargument |
+| autogenerated/TaintedPath/other-fs-libraries.js:54:36:54:39 | path | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http mkdirp original-fs pify read-pkg thenify url util util.promisify |
+| autogenerated/TaintedPath/other-fs-libraries.js:54:36:54:39 | path | receiverName |  |
+| autogenerated/TaintedPath/other-fs-libraries.js:54:36:54:39 | path | stringConcatenatedWith |  |
+| autogenerated/TaintedPath/other-fs-libraries.js:55:36:55:39 | path | CalleeFlexibleAccessPath | import(!)().readFileSync |
+| autogenerated/TaintedPath/other-fs-libraries.js:55:36:55:39 | path | InputAccessPathFromCallee |  |
+| autogenerated/TaintedPath/other-fs-libraries.js:55:36:55:39 | path | InputArgumentIndex | 0 |
+| autogenerated/TaintedPath/other-fs-libraries.js:55:36:55:39 | path | assignedToPropName |  |
+| autogenerated/TaintedPath/other-fs-libraries.js:55:36:55:39 | path | calleeImports | pify |
+| autogenerated/TaintedPath/other-fs-libraries.js:55:36:55:39 | path | contextFunctionInterfaces | getFsModule(special) |
+| autogenerated/TaintedPath/other-fs-libraries.js:55:36:55:39 | path | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/TaintedPath/other-fs-libraries.js:55:36:55:39 | path | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path asyncFS readFileSync path require pify fs readFileSync path require pify fs readFileSync path require util.promisify fs readFileSync path require thenify fs readFileSync path readPkg require read-pkg pkg readPkg readPackageSync cwd path pkgPromise readPkg readPackageAsync cwd path |
+| autogenerated/TaintedPath/other-fs-libraries.js:55:36:55:39 | path | enclosingFunctionName | http.createServer#functionalargument |
+| autogenerated/TaintedPath/other-fs-libraries.js:55:36:55:39 | path | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http mkdirp original-fs pify read-pkg thenify url util util.promisify |
+| autogenerated/TaintedPath/other-fs-libraries.js:55:36:55:39 | path | receiverName |  |
+| autogenerated/TaintedPath/other-fs-libraries.js:55:36:55:39 | path | stringConcatenatedWith |  |
+| autogenerated/TaintedPath/other-fs-libraries.js:57:46:57:49 | path | CalleeFlexibleAccessPath | import(!)() |
+| autogenerated/TaintedPath/other-fs-libraries.js:57:46:57:49 | path | InputAccessPathFromCallee |  |
+| autogenerated/TaintedPath/other-fs-libraries.js:57:46:57:49 | path | InputArgumentIndex | 0 |
+| autogenerated/TaintedPath/other-fs-libraries.js:57:46:57:49 | path | assignedToPropName |  |
+| autogenerated/TaintedPath/other-fs-libraries.js:57:46:57:49 | path | calleeImports | util.promisify |
+| autogenerated/TaintedPath/other-fs-libraries.js:57:46:57:49 | path | contextFunctionInterfaces | getFsModule(special) |
+| autogenerated/TaintedPath/other-fs-libraries.js:57:46:57:49 | path | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/TaintedPath/other-fs-libraries.js:57:46:57:49 | path | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path asyncFS readFileSync path require pify fs readFileSync path require pify fs readFileSync path require util.promisify fs readFileSync path require thenify fs readFileSync path readPkg require read-pkg pkg readPkg readPackageSync cwd path pkgPromise readPkg readPackageAsync cwd path |
+| autogenerated/TaintedPath/other-fs-libraries.js:57:46:57:49 | path | enclosingFunctionName | http.createServer#functionalargument |
+| autogenerated/TaintedPath/other-fs-libraries.js:57:46:57:49 | path | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http mkdirp original-fs pify read-pkg thenify url util util.promisify |
+| autogenerated/TaintedPath/other-fs-libraries.js:57:46:57:49 | path | receiverName |  |
+| autogenerated/TaintedPath/other-fs-libraries.js:57:46:57:49 | path | stringConcatenatedWith |  |
+| autogenerated/TaintedPath/other-fs-libraries.js:59:39:59:42 | path | CalleeFlexibleAccessPath | import(!)() |
+| autogenerated/TaintedPath/other-fs-libraries.js:59:39:59:42 | path | InputAccessPathFromCallee |  |
+| autogenerated/TaintedPath/other-fs-libraries.js:59:39:59:42 | path | InputArgumentIndex | 0 |
+| autogenerated/TaintedPath/other-fs-libraries.js:59:39:59:42 | path | assignedToPropName |  |
+| autogenerated/TaintedPath/other-fs-libraries.js:59:39:59:42 | path | calleeImports | thenify |
+| autogenerated/TaintedPath/other-fs-libraries.js:59:39:59:42 | path | contextFunctionInterfaces | getFsModule(special) |
+| autogenerated/TaintedPath/other-fs-libraries.js:59:39:59:42 | path | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/TaintedPath/other-fs-libraries.js:59:39:59:42 | path | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path asyncFS readFileSync path require pify fs readFileSync path require pify fs readFileSync path require util.promisify fs readFileSync path require thenify fs readFileSync path readPkg require read-pkg pkg readPkg readPackageSync cwd path pkgPromise readPkg readPackageAsync cwd path |
+| autogenerated/TaintedPath/other-fs-libraries.js:59:39:59:42 | path | enclosingFunctionName | http.createServer#functionalargument |
+| autogenerated/TaintedPath/other-fs-libraries.js:59:39:59:42 | path | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http mkdirp original-fs pify read-pkg thenify url util util.promisify |
+| autogenerated/TaintedPath/other-fs-libraries.js:59:39:59:42 | path | receiverName |  |
+| autogenerated/TaintedPath/other-fs-libraries.js:59:39:59:42 | path | stringConcatenatedWith |  |
+| autogenerated/TaintedPath/other-fs-libraries.js:62:43:62:46 | path | CalleeFlexibleAccessPath | readPkg.readPackageSync |
+| autogenerated/TaintedPath/other-fs-libraries.js:62:43:62:46 | path | InputAccessPathFromCallee | 0.cwd |
+| autogenerated/TaintedPath/other-fs-libraries.js:62:43:62:46 | path | InputArgumentIndex | 0 |
+| autogenerated/TaintedPath/other-fs-libraries.js:62:43:62:46 | path | assignedToPropName | cwd |
+| autogenerated/TaintedPath/other-fs-libraries.js:62:43:62:46 | path | calleeImports | read-pkg |
+| autogenerated/TaintedPath/other-fs-libraries.js:62:43:62:46 | path | contextFunctionInterfaces | getFsModule(special) |
+| autogenerated/TaintedPath/other-fs-libraries.js:62:43:62:46 | path | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/TaintedPath/other-fs-libraries.js:62:43:62:46 | path | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path asyncFS readFileSync path require pify fs readFileSync path require pify fs readFileSync path require util.promisify fs readFileSync path require thenify fs readFileSync path readPkg require read-pkg pkg readPkg readPackageSync cwd path pkgPromise readPkg readPackageAsync cwd path |
+| autogenerated/TaintedPath/other-fs-libraries.js:62:43:62:46 | path | enclosingFunctionName | http.createServer#functionalargument |
+| autogenerated/TaintedPath/other-fs-libraries.js:62:43:62:46 | path | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http mkdirp original-fs pify read-pkg thenify url util util.promisify |
+| autogenerated/TaintedPath/other-fs-libraries.js:62:43:62:46 | path | receiverName |  |
+| autogenerated/TaintedPath/other-fs-libraries.js:62:43:62:46 | path | stringConcatenatedWith |  |
+| autogenerated/TaintedPath/other-fs-libraries.js:63:51:63:54 | path | CalleeFlexibleAccessPath | readPkg.readPackageAsync |
+| autogenerated/TaintedPath/other-fs-libraries.js:63:51:63:54 | path | InputAccessPathFromCallee | 0.cwd |
+| autogenerated/TaintedPath/other-fs-libraries.js:63:51:63:54 | path | InputArgumentIndex | 0 |
+| autogenerated/TaintedPath/other-fs-libraries.js:63:51:63:54 | path | assignedToPropName | cwd |
+| autogenerated/TaintedPath/other-fs-libraries.js:63:51:63:54 | path | calleeImports | read-pkg |
+| autogenerated/TaintedPath/other-fs-libraries.js:63:51:63:54 | path | contextFunctionInterfaces | getFsModule(special) |
+| autogenerated/TaintedPath/other-fs-libraries.js:63:51:63:54 | path | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/TaintedPath/other-fs-libraries.js:63:51:63:54 | path | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path asyncFS readFileSync path require pify fs readFileSync path require pify fs readFileSync path require util.promisify fs readFileSync path require thenify fs readFileSync path readPkg require read-pkg pkg readPkg readPackageSync cwd path pkgPromise readPkg readPackageAsync cwd path |
+| autogenerated/TaintedPath/other-fs-libraries.js:63:51:63:54 | path | enclosingFunctionName | http.createServer#functionalargument |
+| autogenerated/TaintedPath/other-fs-libraries.js:63:51:63:54 | path | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http mkdirp original-fs pify read-pkg thenify url util util.promisify |
+| autogenerated/TaintedPath/other-fs-libraries.js:63:51:63:54 | path | receiverName |  |
+| autogenerated/TaintedPath/other-fs-libraries.js:63:51:63:54 | path | stringConcatenatedWith |  |
+| autogenerated/TaintedPath/other-fs-libraries.js:70:19:70:22 | path | CalleeFlexibleAccessPath | fs.readFileSync |
+| autogenerated/TaintedPath/other-fs-libraries.js:70:19:70:22 | path | InputAccessPathFromCallee |  |
+| autogenerated/TaintedPath/other-fs-libraries.js:70:19:70:22 | path | InputArgumentIndex | 0 |
+| autogenerated/TaintedPath/other-fs-libraries.js:70:19:70:22 | path | assignedToPropName |  |
+| autogenerated/TaintedPath/other-fs-libraries.js:70:19:70:22 | path | calleeImports | fs |
+| autogenerated/TaintedPath/other-fs-libraries.js:70:19:70:22 | path | contextFunctionInterfaces | getFsModule(special) |
+| autogenerated/TaintedPath/other-fs-libraries.js:70:19:70:22 | path | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/TaintedPath/other-fs-libraries.js:70:19:70:22 | path | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path mkdirp path mkdirp sync path |
+| autogenerated/TaintedPath/other-fs-libraries.js:70:19:70:22 | path | enclosingFunctionName | http.createServer#functionalargument |
+| autogenerated/TaintedPath/other-fs-libraries.js:70:19:70:22 | path | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http mkdirp original-fs pify read-pkg thenify url util util.promisify |
+| autogenerated/TaintedPath/other-fs-libraries.js:70:19:70:22 | path | receiverName | fs |
+| autogenerated/TaintedPath/other-fs-libraries.js:70:19:70:22 | path | stringConcatenatedWith |  |
+| autogenerated/TaintedPath/other-fs-libraries.js:71:10:71:13 | path | CalleeFlexibleAccessPath | mkdirp |
+| autogenerated/TaintedPath/other-fs-libraries.js:71:10:71:13 | path | InputAccessPathFromCallee |  |
+| autogenerated/TaintedPath/other-fs-libraries.js:71:10:71:13 | path | InputArgumentIndex | 0 |
+| autogenerated/TaintedPath/other-fs-libraries.js:71:10:71:13 | path | assignedToPropName |  |
+| autogenerated/TaintedPath/other-fs-libraries.js:71:10:71:13 | path | calleeImports | mkdirp |
+| autogenerated/TaintedPath/other-fs-libraries.js:71:10:71:13 | path | contextFunctionInterfaces | getFsModule(special) |
+| autogenerated/TaintedPath/other-fs-libraries.js:71:10:71:13 | path | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/TaintedPath/other-fs-libraries.js:71:10:71:13 | path | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path mkdirp path mkdirp sync path |
+| autogenerated/TaintedPath/other-fs-libraries.js:71:10:71:13 | path | enclosingFunctionName | http.createServer#functionalargument |
+| autogenerated/TaintedPath/other-fs-libraries.js:71:10:71:13 | path | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http mkdirp original-fs pify read-pkg thenify url util util.promisify |
+| autogenerated/TaintedPath/other-fs-libraries.js:71:10:71:13 | path | receiverName |  |
+| autogenerated/TaintedPath/other-fs-libraries.js:71:10:71:13 | path | stringConcatenatedWith |  |
+| autogenerated/TaintedPath/other-fs-libraries.js:72:15:72:18 | path | CalleeFlexibleAccessPath | mkdirp.sync |
+| autogenerated/TaintedPath/other-fs-libraries.js:72:15:72:18 | path | InputAccessPathFromCallee |  |
+| autogenerated/TaintedPath/other-fs-libraries.js:72:15:72:18 | path | InputArgumentIndex | 0 |
+| autogenerated/TaintedPath/other-fs-libraries.js:72:15:72:18 | path | assignedToPropName |  |
+| autogenerated/TaintedPath/other-fs-libraries.js:72:15:72:18 | path | calleeImports | mkdirp |
+| autogenerated/TaintedPath/other-fs-libraries.js:72:15:72:18 | path | contextFunctionInterfaces | getFsModule(special) |
+| autogenerated/TaintedPath/other-fs-libraries.js:72:15:72:18 | path | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/TaintedPath/other-fs-libraries.js:72:15:72:18 | path | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path mkdirp path mkdirp sync path |
+| autogenerated/TaintedPath/other-fs-libraries.js:72:15:72:18 | path | enclosingFunctionName | http.createServer#functionalargument |
+| autogenerated/TaintedPath/other-fs-libraries.js:72:15:72:18 | path | fileImports | ./my-async-fs-module ./my-fs-module bluebird fs fs-extra graceful-fs http mkdirp original-fs pify read-pkg thenify url util util.promisify |
+| autogenerated/TaintedPath/other-fs-libraries.js:72:15:72:18 | path | receiverName | mkdirp |
+| autogenerated/TaintedPath/other-fs-libraries.js:72:15:72:18 | path | stringConcatenatedWith |  |
+| autogenerated/TaintedPath/prettier.js:7:28:7:28 | p | CalleeFlexibleAccessPath | prettier.resolveConfig |
+| autogenerated/TaintedPath/prettier.js:7:28:7:28 | p | InputAccessPathFromCallee |  |
+| autogenerated/TaintedPath/prettier.js:7:28:7:28 | p | InputArgumentIndex | 0 |
+| autogenerated/TaintedPath/prettier.js:7:28:7:28 | p | assignedToPropName |  |
+| autogenerated/TaintedPath/prettier.js:7:28:7:28 | p | calleeImports | prettier |
+| autogenerated/TaintedPath/prettier.js:7:28:7:28 | p | contextFunctionInterfaces |  |
+| autogenerated/TaintedPath/prettier.js:7:28:7:28 | p | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/TaintedPath/prettier.js:7:28:7:28 | p | enclosingFunctionBody | req res p req params prettier resolveConfig p then options formatted prettier format foo options prettier resolveConfig foo config p then options formatted prettier format bar options |
+| autogenerated/TaintedPath/prettier.js:7:28:7:28 | p | enclosingFunctionName | app.get#functionalargument |
+| autogenerated/TaintedPath/prettier.js:7:28:7:28 | p | fileImports | express prettier |
+| autogenerated/TaintedPath/prettier.js:7:28:7:28 | p | receiverName | prettier |
+| autogenerated/TaintedPath/prettier.js:7:28:7:28 | p | stringConcatenatedWith |  |
+| autogenerated/TaintedPath/prettier.js:11:44:11:44 | p | CalleeFlexibleAccessPath | prettier.resolveConfig |
+| autogenerated/TaintedPath/prettier.js:11:44:11:44 | p | InputAccessPathFromCallee | 1.config |
+| autogenerated/TaintedPath/prettier.js:11:44:11:44 | p | InputArgumentIndex | 1 |
+| autogenerated/TaintedPath/prettier.js:11:44:11:44 | p | assignedToPropName | config |
+| autogenerated/TaintedPath/prettier.js:11:44:11:44 | p | calleeImports | prettier |
+| autogenerated/TaintedPath/prettier.js:11:44:11:44 | p | contextFunctionInterfaces |  |
+| autogenerated/TaintedPath/prettier.js:11:44:11:44 | p | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/TaintedPath/prettier.js:11:44:11:44 | p | enclosingFunctionBody | req res p req params prettier resolveConfig p then options formatted prettier format foo options prettier resolveConfig foo config p then options formatted prettier format bar options |
+| autogenerated/TaintedPath/prettier.js:11:44:11:44 | p | enclosingFunctionName | app.get#functionalargument |
+| autogenerated/TaintedPath/prettier.js:11:44:11:44 | p | fileImports | express prettier |
+| autogenerated/TaintedPath/prettier.js:11:44:11:44 | p | receiverName |  |
+| autogenerated/TaintedPath/prettier.js:11:44:11:44 | p | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/pupeteer.js:9:28:9:34 | tainted | CalleeFlexibleAccessPath | page.pdf |
 | autogenerated/TaintedPath/pupeteer.js:9:28:9:34 | tainted | InputAccessPathFromCallee | 0.path |
 | autogenerated/TaintedPath/pupeteer.js:9:28:9:34 | tainted | InputArgumentIndex | 0 |
@@ -10822,7 +13460,7 @@ tokenFeatures
 | autogenerated/TaintedPath/tainted-access-paths.js:8:19:8:22 | path | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/tainted-access-paths.js:8:19:8:22 | path | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path obj bla something path fs readFileSync obj sub obj sub safe fs readFileSync obj sub obj sub2 safe random fs readFileSync obj sub2 random obj sub3 safe fs readFileSync obj sub3 obj sub4 fs readFileSync obj sub4 fs readFileSync obj sub4 fs readFileSync obj sub4 |
 | autogenerated/TaintedPath/tainted-access-paths.js:8:19:8:22 | path | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/tainted-access-paths.js:8:19:8:22 | path | fileImports | fs http url |
+| autogenerated/TaintedPath/tainted-access-paths.js:8:19:8:22 | path | fileImports | chownr fs http node:fs url |
 | autogenerated/TaintedPath/tainted-access-paths.js:8:19:8:22 | path | receiverName | fs |
 | autogenerated/TaintedPath/tainted-access-paths.js:8:19:8:22 | path | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/tainted-access-paths.js:12:19:12:25 | obj.sub | CalleeFlexibleAccessPath | fs.readFileSync |
@@ -10834,7 +13472,7 @@ tokenFeatures
 | autogenerated/TaintedPath/tainted-access-paths.js:12:19:12:25 | obj.sub | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/tainted-access-paths.js:12:19:12:25 | obj.sub | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path obj bla something path fs readFileSync obj sub obj sub safe fs readFileSync obj sub obj sub2 safe random fs readFileSync obj sub2 random obj sub3 safe fs readFileSync obj sub3 obj sub4 fs readFileSync obj sub4 fs readFileSync obj sub4 fs readFileSync obj sub4 |
 | autogenerated/TaintedPath/tainted-access-paths.js:12:19:12:25 | obj.sub | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/tainted-access-paths.js:12:19:12:25 | obj.sub | fileImports | fs http url |
+| autogenerated/TaintedPath/tainted-access-paths.js:12:19:12:25 | obj.sub | fileImports | chownr fs http node:fs url |
 | autogenerated/TaintedPath/tainted-access-paths.js:12:19:12:25 | obj.sub | receiverName | fs |
 | autogenerated/TaintedPath/tainted-access-paths.js:12:19:12:25 | obj.sub | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/tainted-access-paths.js:16:19:16:25 | obj.sub | CalleeFlexibleAccessPath | fs.readFileSync |
@@ -10846,7 +13484,7 @@ tokenFeatures
 | autogenerated/TaintedPath/tainted-access-paths.js:16:19:16:25 | obj.sub | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/tainted-access-paths.js:16:19:16:25 | obj.sub | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path obj bla something path fs readFileSync obj sub obj sub safe fs readFileSync obj sub obj sub2 safe random fs readFileSync obj sub2 random obj sub3 safe fs readFileSync obj sub3 obj sub4 fs readFileSync obj sub4 fs readFileSync obj sub4 fs readFileSync obj sub4 |
 | autogenerated/TaintedPath/tainted-access-paths.js:16:19:16:25 | obj.sub | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/tainted-access-paths.js:16:19:16:25 | obj.sub | fileImports | fs http url |
+| autogenerated/TaintedPath/tainted-access-paths.js:16:19:16:25 | obj.sub | fileImports | chownr fs http node:fs url |
 | autogenerated/TaintedPath/tainted-access-paths.js:16:19:16:25 | obj.sub | receiverName | fs |
 | autogenerated/TaintedPath/tainted-access-paths.js:16:19:16:25 | obj.sub | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/tainted-access-paths.js:20:21:20:28 | obj.sub2 | CalleeFlexibleAccessPath | fs.readFileSync |
@@ -10858,7 +13496,7 @@ tokenFeatures
 | autogenerated/TaintedPath/tainted-access-paths.js:20:21:20:28 | obj.sub2 | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/tainted-access-paths.js:20:21:20:28 | obj.sub2 | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path obj bla something path fs readFileSync obj sub obj sub safe fs readFileSync obj sub obj sub2 safe random fs readFileSync obj sub2 random obj sub3 safe fs readFileSync obj sub3 obj sub4 fs readFileSync obj sub4 fs readFileSync obj sub4 fs readFileSync obj sub4 |
 | autogenerated/TaintedPath/tainted-access-paths.js:20:21:20:28 | obj.sub2 | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/tainted-access-paths.js:20:21:20:28 | obj.sub2 | fileImports | fs http url |
+| autogenerated/TaintedPath/tainted-access-paths.js:20:21:20:28 | obj.sub2 | fileImports | chownr fs http node:fs url |
 | autogenerated/TaintedPath/tainted-access-paths.js:20:21:20:28 | obj.sub2 | receiverName | fs |
 | autogenerated/TaintedPath/tainted-access-paths.js:20:21:20:28 | obj.sub2 | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/tainted-access-paths.js:26:19:26:26 | obj.sub3 | CalleeFlexibleAccessPath | fs.readFileSync |
@@ -10870,7 +13508,7 @@ tokenFeatures
 | autogenerated/TaintedPath/tainted-access-paths.js:26:19:26:26 | obj.sub3 | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/tainted-access-paths.js:26:19:26:26 | obj.sub3 | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path obj bla something path fs readFileSync obj sub obj sub safe fs readFileSync obj sub obj sub2 safe random fs readFileSync obj sub2 random obj sub3 safe fs readFileSync obj sub3 obj sub4 fs readFileSync obj sub4 fs readFileSync obj sub4 fs readFileSync obj sub4 |
 | autogenerated/TaintedPath/tainted-access-paths.js:26:19:26:26 | obj.sub3 | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/tainted-access-paths.js:26:19:26:26 | obj.sub3 | fileImports | fs http url |
+| autogenerated/TaintedPath/tainted-access-paths.js:26:19:26:26 | obj.sub3 | fileImports | chownr fs http node:fs url |
 | autogenerated/TaintedPath/tainted-access-paths.js:26:19:26:26 | obj.sub3 | receiverName | fs |
 | autogenerated/TaintedPath/tainted-access-paths.js:26:19:26:26 | obj.sub3 | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/tainted-access-paths.js:29:21:29:28 | obj.sub4 | CalleeFlexibleAccessPath | fs.readFileSync |
@@ -10882,7 +13520,7 @@ tokenFeatures
 | autogenerated/TaintedPath/tainted-access-paths.js:29:21:29:28 | obj.sub4 | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/tainted-access-paths.js:29:21:29:28 | obj.sub4 | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path obj bla something path fs readFileSync obj sub obj sub safe fs readFileSync obj sub obj sub2 safe random fs readFileSync obj sub2 random obj sub3 safe fs readFileSync obj sub3 obj sub4 fs readFileSync obj sub4 fs readFileSync obj sub4 fs readFileSync obj sub4 |
 | autogenerated/TaintedPath/tainted-access-paths.js:29:21:29:28 | obj.sub4 | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/tainted-access-paths.js:29:21:29:28 | obj.sub4 | fileImports | fs http url |
+| autogenerated/TaintedPath/tainted-access-paths.js:29:21:29:28 | obj.sub4 | fileImports | chownr fs http node:fs url |
 | autogenerated/TaintedPath/tainted-access-paths.js:29:21:29:28 | obj.sub4 | receiverName | fs |
 | autogenerated/TaintedPath/tainted-access-paths.js:29:21:29:28 | obj.sub4 | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/tainted-access-paths.js:30:23:30:30 | obj.sub4 | CalleeFlexibleAccessPath | fs.readFileSync |
@@ -10894,7 +13532,7 @@ tokenFeatures
 | autogenerated/TaintedPath/tainted-access-paths.js:30:23:30:30 | obj.sub4 | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/tainted-access-paths.js:30:23:30:30 | obj.sub4 | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path obj bla something path fs readFileSync obj sub obj sub safe fs readFileSync obj sub obj sub2 safe random fs readFileSync obj sub2 random obj sub3 safe fs readFileSync obj sub3 obj sub4 fs readFileSync obj sub4 fs readFileSync obj sub4 fs readFileSync obj sub4 |
 | autogenerated/TaintedPath/tainted-access-paths.js:30:23:30:30 | obj.sub4 | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/tainted-access-paths.js:30:23:30:30 | obj.sub4 | fileImports | fs http url |
+| autogenerated/TaintedPath/tainted-access-paths.js:30:23:30:30 | obj.sub4 | fileImports | chownr fs http node:fs url |
 | autogenerated/TaintedPath/tainted-access-paths.js:30:23:30:30 | obj.sub4 | receiverName | fs |
 | autogenerated/TaintedPath/tainted-access-paths.js:30:23:30:30 | obj.sub4 | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/tainted-access-paths.js:31:23:31:30 | obj.sub4 | CalleeFlexibleAccessPath | fs.readFileSync |
@@ -10906,9 +13544,45 @@ tokenFeatures
 | autogenerated/TaintedPath/tainted-access-paths.js:31:23:31:30 | obj.sub4 | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/tainted-access-paths.js:31:23:31:30 | obj.sub4 | enclosingFunctionBody | req res path url parse req url true query path fs readFileSync path obj bla something path fs readFileSync obj sub obj sub safe fs readFileSync obj sub obj sub2 safe random fs readFileSync obj sub2 random obj sub3 safe fs readFileSync obj sub3 obj sub4 fs readFileSync obj sub4 fs readFileSync obj sub4 fs readFileSync obj sub4 |
 | autogenerated/TaintedPath/tainted-access-paths.js:31:23:31:30 | obj.sub4 | enclosingFunctionName | http.createServer#functionalargument |
-| autogenerated/TaintedPath/tainted-access-paths.js:31:23:31:30 | obj.sub4 | fileImports | fs http url |
+| autogenerated/TaintedPath/tainted-access-paths.js:31:23:31:30 | obj.sub4 | fileImports | chownr fs http node:fs url |
 | autogenerated/TaintedPath/tainted-access-paths.js:31:23:31:30 | obj.sub4 | receiverName | fs |
 | autogenerated/TaintedPath/tainted-access-paths.js:31:23:31:30 | obj.sub4 | stringConcatenatedWith |  |
+| autogenerated/TaintedPath/tainted-access-paths.js:40:23:40:26 | path | CalleeFlexibleAccessPath | nodefs.readFileSync |
+| autogenerated/TaintedPath/tainted-access-paths.js:40:23:40:26 | path | InputAccessPathFromCallee |  |
+| autogenerated/TaintedPath/tainted-access-paths.js:40:23:40:26 | path | InputArgumentIndex | 0 |
+| autogenerated/TaintedPath/tainted-access-paths.js:40:23:40:26 | path | assignedToPropName |  |
+| autogenerated/TaintedPath/tainted-access-paths.js:40:23:40:26 | path | calleeImports | node:fs |
+| autogenerated/TaintedPath/tainted-access-paths.js:40:23:40:26 | path | contextFunctionInterfaces |  |
+| autogenerated/TaintedPath/tainted-access-paths.js:40:23:40:26 | path | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/TaintedPath/tainted-access-paths.js:40:23:40:26 | path | enclosingFunctionBody | req res path url parse req url true query path nodefs readFileSync path |
+| autogenerated/TaintedPath/tainted-access-paths.js:40:23:40:26 | path | enclosingFunctionName | http.createServer#functionalargument |
+| autogenerated/TaintedPath/tainted-access-paths.js:40:23:40:26 | path | fileImports | chownr fs http node:fs url |
+| autogenerated/TaintedPath/tainted-access-paths.js:40:23:40:26 | path | receiverName | nodefs |
+| autogenerated/TaintedPath/tainted-access-paths.js:40:23:40:26 | path | stringConcatenatedWith |  |
+| autogenerated/TaintedPath/tainted-access-paths.js:49:10:49:13 | path | CalleeFlexibleAccessPath | chownr |
+| autogenerated/TaintedPath/tainted-access-paths.js:49:10:49:13 | path | InputAccessPathFromCallee |  |
+| autogenerated/TaintedPath/tainted-access-paths.js:49:10:49:13 | path | InputArgumentIndex | 0 |
+| autogenerated/TaintedPath/tainted-access-paths.js:49:10:49:13 | path | assignedToPropName |  |
+| autogenerated/TaintedPath/tainted-access-paths.js:49:10:49:13 | path | calleeImports | chownr |
+| autogenerated/TaintedPath/tainted-access-paths.js:49:10:49:13 | path | contextFunctionInterfaces |  |
+| autogenerated/TaintedPath/tainted-access-paths.js:49:10:49:13 | path | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/TaintedPath/tainted-access-paths.js:49:10:49:13 | path | enclosingFunctionBody | req res path url parse req url true query path chownr path someuid somegid err |
+| autogenerated/TaintedPath/tainted-access-paths.js:49:10:49:13 | path | enclosingFunctionName | http.createServer#functionalargument |
+| autogenerated/TaintedPath/tainted-access-paths.js:49:10:49:13 | path | fileImports | chownr fs http node:fs url |
+| autogenerated/TaintedPath/tainted-access-paths.js:49:10:49:13 | path | receiverName |  |
+| autogenerated/TaintedPath/tainted-access-paths.js:49:10:49:13 | path | stringConcatenatedWith |  |
+| autogenerated/TaintedPath/tainted-access-paths.js:49:38:49:54 | function (err) {} | CalleeFlexibleAccessPath | chownr |
+| autogenerated/TaintedPath/tainted-access-paths.js:49:38:49:54 | function (err) {} | InputAccessPathFromCallee |  |
+| autogenerated/TaintedPath/tainted-access-paths.js:49:38:49:54 | function (err) {} | InputArgumentIndex | 3 |
+| autogenerated/TaintedPath/tainted-access-paths.js:49:38:49:54 | function (err) {} | assignedToPropName |  |
+| autogenerated/TaintedPath/tainted-access-paths.js:49:38:49:54 | function (err) {} | calleeImports | chownr |
+| autogenerated/TaintedPath/tainted-access-paths.js:49:38:49:54 | function (err) {} | contextFunctionInterfaces |  |
+| autogenerated/TaintedPath/tainted-access-paths.js:49:38:49:54 | function (err) {} | contextSurroundingFunctionParameters | (req, res)\n(err) |
+| autogenerated/TaintedPath/tainted-access-paths.js:49:38:49:54 | function (err) {} | enclosingFunctionBody | req res path url parse req url true query path chownr path someuid somegid err |
+| autogenerated/TaintedPath/tainted-access-paths.js:49:38:49:54 | function (err) {} | enclosingFunctionName | http.createServer#functionalargument |
+| autogenerated/TaintedPath/tainted-access-paths.js:49:38:49:54 | function (err) {} | fileImports | chownr fs http node:fs url |
+| autogenerated/TaintedPath/tainted-access-paths.js:49:38:49:54 | function (err) {} | receiverName |  |
+| autogenerated/TaintedPath/tainted-access-paths.js:49:38:49:54 | function (err) {} | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/tainted-array-steps.js:10:29:10:54 | ['publi ... in('/') | CalleeFlexibleAccessPath | fs.readFileSync |
 | autogenerated/TaintedPath/tainted-array-steps.js:10:29:10:54 | ['publi ... in('/') | InputAccessPathFromCallee |  |
 | autogenerated/TaintedPath/tainted-array-steps.js:10:29:10:54 | ['publi ... in('/') | InputArgumentIndex | 0 |
@@ -10942,9 +13616,33 @@ tokenFeatures
 | autogenerated/TaintedPath/tainted-require.js:7:19:7:37 | req.param("module") | contextSurroundingFunctionParameters | (req, res) |
 | autogenerated/TaintedPath/tainted-require.js:7:19:7:37 | req.param("module") | enclosingFunctionBody | req res m require req param module |
 | autogenerated/TaintedPath/tainted-require.js:7:19:7:37 | req.param("module") | enclosingFunctionName | app.get#functionalargument |
-| autogenerated/TaintedPath/tainted-require.js:7:19:7:37 | req.param("module") | fileImports | express |
+| autogenerated/TaintedPath/tainted-require.js:7:19:7:37 | req.param("module") | fileImports | express resolve |
 | autogenerated/TaintedPath/tainted-require.js:7:19:7:37 | req.param("module") | receiverName |  |
 | autogenerated/TaintedPath/tainted-require.js:7:19:7:37 | req.param("module") | stringConcatenatedWith |  |
+| autogenerated/TaintedPath/tainted-require.js:12:29:12:47 | req.param("module") | CalleeFlexibleAccessPath | resolve.sync |
+| autogenerated/TaintedPath/tainted-require.js:12:29:12:47 | req.param("module") | InputAccessPathFromCallee |  |
+| autogenerated/TaintedPath/tainted-require.js:12:29:12:47 | req.param("module") | InputArgumentIndex | 0 |
+| autogenerated/TaintedPath/tainted-require.js:12:29:12:47 | req.param("module") | assignedToPropName |  |
+| autogenerated/TaintedPath/tainted-require.js:12:29:12:47 | req.param("module") | calleeImports | resolve |
+| autogenerated/TaintedPath/tainted-require.js:12:29:12:47 | req.param("module") | contextFunctionInterfaces |  |
+| autogenerated/TaintedPath/tainted-require.js:12:29:12:47 | req.param("module") | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/TaintedPath/tainted-require.js:12:29:12:47 | req.param("module") | enclosingFunctionBody | req res module resolve sync req param module resolve req param module basedir __dirname err res module res |
+| autogenerated/TaintedPath/tainted-require.js:12:29:12:47 | req.param("module") | enclosingFunctionName | app.get#functionalargument |
+| autogenerated/TaintedPath/tainted-require.js:12:29:12:47 | req.param("module") | fileImports | express resolve |
+| autogenerated/TaintedPath/tainted-require.js:12:29:12:47 | req.param("module") | receiverName | resolve |
+| autogenerated/TaintedPath/tainted-require.js:12:29:12:47 | req.param("module") | stringConcatenatedWith |  |
+| autogenerated/TaintedPath/tainted-require.js:14:11:14:29 | req.param("module") | CalleeFlexibleAccessPath | resolve |
+| autogenerated/TaintedPath/tainted-require.js:14:11:14:29 | req.param("module") | InputAccessPathFromCallee |  |
+| autogenerated/TaintedPath/tainted-require.js:14:11:14:29 | req.param("module") | InputArgumentIndex | 0 |
+| autogenerated/TaintedPath/tainted-require.js:14:11:14:29 | req.param("module") | assignedToPropName |  |
+| autogenerated/TaintedPath/tainted-require.js:14:11:14:29 | req.param("module") | calleeImports | resolve |
+| autogenerated/TaintedPath/tainted-require.js:14:11:14:29 | req.param("module") | contextFunctionInterfaces |  |
+| autogenerated/TaintedPath/tainted-require.js:14:11:14:29 | req.param("module") | contextSurroundingFunctionParameters | (req, res) |
+| autogenerated/TaintedPath/tainted-require.js:14:11:14:29 | req.param("module") | enclosingFunctionBody | req res module resolve sync req param module resolve req param module basedir __dirname err res module res |
+| autogenerated/TaintedPath/tainted-require.js:14:11:14:29 | req.param("module") | enclosingFunctionName | app.get#functionalargument |
+| autogenerated/TaintedPath/tainted-require.js:14:11:14:29 | req.param("module") | fileImports | express resolve |
+| autogenerated/TaintedPath/tainted-require.js:14:11:14:29 | req.param("module") | receiverName |  |
+| autogenerated/TaintedPath/tainted-require.js:14:11:14:29 | req.param("module") | stringConcatenatedWith |  |
 | autogenerated/TaintedPath/tainted-sendFile.js:8:16:8:33 | req.param("gimme") | CalleeFlexibleAccessPath | res.sendFile |
 | autogenerated/TaintedPath/tainted-sendFile.js:8:16:8:33 | req.param("gimme") | InputAccessPathFromCallee |  |
 | autogenerated/TaintedPath/tainted-sendFile.js:8:16:8:33 | req.param("gimme") | InputArgumentIndex | 0 |
@@ -11514,7 +14212,7 @@ tokenFeatures
 | autogenerated/Xss/DomBasedXss/addEventListener.js:2:20:2:29 | event.data | InputArgumentIndex | 0 |
 | autogenerated/Xss/DomBasedXss/addEventListener.js:2:20:2:29 | event.data | assignedToPropName |  |
 | autogenerated/Xss/DomBasedXss/addEventListener.js:2:20:2:29 | event.data | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:2:20:2:29 | event.data | contextFunctionInterfaces | foo(x, event, y)\ntest() |
+| autogenerated/Xss/DomBasedXss/addEventListener.js:2:20:2:29 | event.data | contextFunctionInterfaces | foo(x, event, y)\nonmessage(e)\nonmessage(e)\ntest() |
 | autogenerated/Xss/DomBasedXss/addEventListener.js:2:20:2:29 | event.data | contextSurroundingFunctionParameters | (event) |
 | autogenerated/Xss/DomBasedXss/addEventListener.js:2:20:2:29 | event.data | enclosingFunctionBody | event document write event data |
 | autogenerated/Xss/DomBasedXss/addEventListener.js:2:20:2:29 | event.data | enclosingFunctionName | addEventListener#functionalargument |
@@ -11526,7 +14224,7 @@ tokenFeatures
 | autogenerated/Xss/DomBasedXss/addEventListener.js:6:20:6:23 | data | InputArgumentIndex | 0 |
 | autogenerated/Xss/DomBasedXss/addEventListener.js:6:20:6:23 | data | assignedToPropName |  |
 | autogenerated/Xss/DomBasedXss/addEventListener.js:6:20:6:23 | data | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:6:20:6:23 | data | contextFunctionInterfaces | foo(x, event, y)\ntest() |
+| autogenerated/Xss/DomBasedXss/addEventListener.js:6:20:6:23 | data | contextFunctionInterfaces | foo(x, event, y)\nonmessage(e)\nonmessage(e)\ntest() |
 | autogenerated/Xss/DomBasedXss/addEventListener.js:6:20:6:23 | data | contextSurroundingFunctionParameters | (?) |
 | autogenerated/Xss/DomBasedXss/addEventListener.js:6:20:6:23 | data | enclosingFunctionBody | data document write data |
 | autogenerated/Xss/DomBasedXss/addEventListener.js:6:20:6:23 | data | enclosingFunctionName | addEventListener#functionalargument |
@@ -11538,9 +14236,9 @@ tokenFeatures
 | autogenerated/Xss/DomBasedXss/addEventListener.js:11:24:11:29 | x.data | InputArgumentIndex | 0 |
 | autogenerated/Xss/DomBasedXss/addEventListener.js:11:24:11:29 | x.data | assignedToPropName |  |
 | autogenerated/Xss/DomBasedXss/addEventListener.js:11:24:11:29 | x.data | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:11:24:11:29 | x.data | contextFunctionInterfaces | foo(x, event, y)\ntest() |
+| autogenerated/Xss/DomBasedXss/addEventListener.js:11:24:11:29 | x.data | contextFunctionInterfaces | foo(x, event, y)\nonmessage(e)\nonmessage(e)\ntest() |
 | autogenerated/Xss/DomBasedXss/addEventListener.js:11:24:11:29 | x.data | contextSurroundingFunctionParameters | (x, event, y) |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:11:24:11:29 | x.data | enclosingFunctionBody | foo x event y document write x data document write event data document write y data window addEventListener message foo bind null data items |
+| autogenerated/Xss/DomBasedXss/addEventListener.js:11:24:11:29 | x.data | enclosingFunctionBody | foo x event y document write x data document write event data document write y data window addEventListener message foo bind null data items window onmessage e e origin https://foobar.com document write e data window onmessage e mySet includes e origin document write e data |
 | autogenerated/Xss/DomBasedXss/addEventListener.js:11:24:11:29 | x.data | enclosingFunctionName | test |
 | autogenerated/Xss/DomBasedXss/addEventListener.js:11:24:11:29 | x.data | fileImports |  |
 | autogenerated/Xss/DomBasedXss/addEventListener.js:11:24:11:29 | x.data | receiverName | document |
@@ -11550,9 +14248,9 @@ tokenFeatures
 | autogenerated/Xss/DomBasedXss/addEventListener.js:12:24:12:33 | event.data | InputArgumentIndex | 0 |
 | autogenerated/Xss/DomBasedXss/addEventListener.js:12:24:12:33 | event.data | assignedToPropName |  |
 | autogenerated/Xss/DomBasedXss/addEventListener.js:12:24:12:33 | event.data | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:12:24:12:33 | event.data | contextFunctionInterfaces | foo(x, event, y)\ntest() |
+| autogenerated/Xss/DomBasedXss/addEventListener.js:12:24:12:33 | event.data | contextFunctionInterfaces | foo(x, event, y)\nonmessage(e)\nonmessage(e)\ntest() |
 | autogenerated/Xss/DomBasedXss/addEventListener.js:12:24:12:33 | event.data | contextSurroundingFunctionParameters | (x, event, y) |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:12:24:12:33 | event.data | enclosingFunctionBody | foo x event y document write x data document write event data document write y data window addEventListener message foo bind null data items |
+| autogenerated/Xss/DomBasedXss/addEventListener.js:12:24:12:33 | event.data | enclosingFunctionBody | foo x event y document write x data document write event data document write y data window addEventListener message foo bind null data items window onmessage e e origin https://foobar.com document write e data window onmessage e mySet includes e origin document write e data |
 | autogenerated/Xss/DomBasedXss/addEventListener.js:12:24:12:33 | event.data | enclosingFunctionName | test |
 | autogenerated/Xss/DomBasedXss/addEventListener.js:12:24:12:33 | event.data | fileImports |  |
 | autogenerated/Xss/DomBasedXss/addEventListener.js:12:24:12:33 | event.data | receiverName | document |
@@ -11562,13 +14260,49 @@ tokenFeatures
 | autogenerated/Xss/DomBasedXss/addEventListener.js:13:24:13:29 | y.data | InputArgumentIndex | 0 |
 | autogenerated/Xss/DomBasedXss/addEventListener.js:13:24:13:29 | y.data | assignedToPropName |  |
 | autogenerated/Xss/DomBasedXss/addEventListener.js:13:24:13:29 | y.data | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:13:24:13:29 | y.data | contextFunctionInterfaces | foo(x, event, y)\ntest() |
+| autogenerated/Xss/DomBasedXss/addEventListener.js:13:24:13:29 | y.data | contextFunctionInterfaces | foo(x, event, y)\nonmessage(e)\nonmessage(e)\ntest() |
 | autogenerated/Xss/DomBasedXss/addEventListener.js:13:24:13:29 | y.data | contextSurroundingFunctionParameters | (x, event, y) |
-| autogenerated/Xss/DomBasedXss/addEventListener.js:13:24:13:29 | y.data | enclosingFunctionBody | foo x event y document write x data document write event data document write y data window addEventListener message foo bind null data items |
+| autogenerated/Xss/DomBasedXss/addEventListener.js:13:24:13:29 | y.data | enclosingFunctionBody | foo x event y document write x data document write event data document write y data window addEventListener message foo bind null data items window onmessage e e origin https://foobar.com document write e data window onmessage e mySet includes e origin document write e data |
 | autogenerated/Xss/DomBasedXss/addEventListener.js:13:24:13:29 | y.data | enclosingFunctionName | test |
 | autogenerated/Xss/DomBasedXss/addEventListener.js:13:24:13:29 | y.data | fileImports |  |
 | autogenerated/Xss/DomBasedXss/addEventListener.js:13:24:13:29 | y.data | receiverName | document |
 | autogenerated/Xss/DomBasedXss/addEventListener.js:13:24:13:29 | y.data | stringConcatenatedWith |  |
+| autogenerated/Xss/DomBasedXss/addEventListener.js:22:24:22:29 | e.data | CalleeFlexibleAccessPath | document.write |
+| autogenerated/Xss/DomBasedXss/addEventListener.js:22:24:22:29 | e.data | InputAccessPathFromCallee |  |
+| autogenerated/Xss/DomBasedXss/addEventListener.js:22:24:22:29 | e.data | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/addEventListener.js:22:24:22:29 | e.data | assignedToPropName |  |
+| autogenerated/Xss/DomBasedXss/addEventListener.js:22:24:22:29 | e.data | calleeImports |  |
+| autogenerated/Xss/DomBasedXss/addEventListener.js:22:24:22:29 | e.data | contextFunctionInterfaces | foo(x, event, y)\nonmessage(e)\nonmessage(e)\ntest() |
+| autogenerated/Xss/DomBasedXss/addEventListener.js:22:24:22:29 | e.data | contextSurroundingFunctionParameters | ()\n(e) |
+| autogenerated/Xss/DomBasedXss/addEventListener.js:22:24:22:29 | e.data | enclosingFunctionBody | foo x event y document write x data document write event data document write y data window addEventListener message foo bind null data items window onmessage e e origin https://foobar.com document write e data window onmessage e mySet includes e origin document write e data |
+| autogenerated/Xss/DomBasedXss/addEventListener.js:22:24:22:29 | e.data | enclosingFunctionName | test |
+| autogenerated/Xss/DomBasedXss/addEventListener.js:22:24:22:29 | e.data | fileImports |  |
+| autogenerated/Xss/DomBasedXss/addEventListener.js:22:24:22:29 | e.data | receiverName | document |
+| autogenerated/Xss/DomBasedXss/addEventListener.js:22:24:22:29 | e.data | stringConcatenatedWith |  |
+| autogenerated/Xss/DomBasedXss/addEventListener.js:26:28:26:35 | e.origin | CalleeFlexibleAccessPath | mySet.includes |
+| autogenerated/Xss/DomBasedXss/addEventListener.js:26:28:26:35 | e.origin | InputAccessPathFromCallee |  |
+| autogenerated/Xss/DomBasedXss/addEventListener.js:26:28:26:35 | e.origin | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/addEventListener.js:26:28:26:35 | e.origin | assignedToPropName |  |
+| autogenerated/Xss/DomBasedXss/addEventListener.js:26:28:26:35 | e.origin | calleeImports |  |
+| autogenerated/Xss/DomBasedXss/addEventListener.js:26:28:26:35 | e.origin | contextFunctionInterfaces | foo(x, event, y)\nonmessage(e)\nonmessage(e)\ntest() |
+| autogenerated/Xss/DomBasedXss/addEventListener.js:26:28:26:35 | e.origin | contextSurroundingFunctionParameters | ()\n(e) |
+| autogenerated/Xss/DomBasedXss/addEventListener.js:26:28:26:35 | e.origin | enclosingFunctionBody | foo x event y document write x data document write event data document write y data window addEventListener message foo bind null data items window onmessage e e origin https://foobar.com document write e data window onmessage e mySet includes e origin document write e data |
+| autogenerated/Xss/DomBasedXss/addEventListener.js:26:28:26:35 | e.origin | enclosingFunctionName | test |
+| autogenerated/Xss/DomBasedXss/addEventListener.js:26:28:26:35 | e.origin | fileImports |  |
+| autogenerated/Xss/DomBasedXss/addEventListener.js:26:28:26:35 | e.origin | receiverName | mySet |
+| autogenerated/Xss/DomBasedXss/addEventListener.js:26:28:26:35 | e.origin | stringConcatenatedWith |  |
+| autogenerated/Xss/DomBasedXss/addEventListener.js:27:28:27:33 | e.data | CalleeFlexibleAccessPath | document.write |
+| autogenerated/Xss/DomBasedXss/addEventListener.js:27:28:27:33 | e.data | InputAccessPathFromCallee |  |
+| autogenerated/Xss/DomBasedXss/addEventListener.js:27:28:27:33 | e.data | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/addEventListener.js:27:28:27:33 | e.data | assignedToPropName |  |
+| autogenerated/Xss/DomBasedXss/addEventListener.js:27:28:27:33 | e.data | calleeImports |  |
+| autogenerated/Xss/DomBasedXss/addEventListener.js:27:28:27:33 | e.data | contextFunctionInterfaces | foo(x, event, y)\nonmessage(e)\nonmessage(e)\ntest() |
+| autogenerated/Xss/DomBasedXss/addEventListener.js:27:28:27:33 | e.data | contextSurroundingFunctionParameters | ()\n(e) |
+| autogenerated/Xss/DomBasedXss/addEventListener.js:27:28:27:33 | e.data | enclosingFunctionBody | foo x event y document write x data document write event data document write y data window addEventListener message foo bind null data items window onmessage e e origin https://foobar.com document write e data window onmessage e mySet includes e origin document write e data |
+| autogenerated/Xss/DomBasedXss/addEventListener.js:27:28:27:33 | e.data | enclosingFunctionName | test |
+| autogenerated/Xss/DomBasedXss/addEventListener.js:27:28:27:33 | e.data | fileImports |  |
+| autogenerated/Xss/DomBasedXss/addEventListener.js:27:28:27:33 | e.data | receiverName | document |
+| autogenerated/Xss/DomBasedXss/addEventListener.js:27:28:27:33 | e.data | stringConcatenatedWith |  |
 | autogenerated/Xss/DomBasedXss/angular2-client.ts:22:44:22:71 | \\u0275getDOM ... ().href | CalleeFlexibleAccessPath | this.sanitizer.bypassSecurityTrustHtml |
 | autogenerated/Xss/DomBasedXss/angular2-client.ts:22:44:22:71 | \\u0275getDOM ... ().href | InputAccessPathFromCallee |  |
 | autogenerated/Xss/DomBasedXss/angular2-client.ts:22:44:22:71 | \\u0275getDOM ... ().href | InputArgumentIndex | 0 |
@@ -11744,7 +14478,7 @@ tokenFeatures
 | autogenerated/Xss/DomBasedXss/classnames.js:7:31:7:84 | `<span  ... <span>` | calleeImports |  |
 | autogenerated/Xss/DomBasedXss/classnames.js:7:31:7:84 | `<span  ... <span>` | contextFunctionInterfaces | main() |
 | autogenerated/Xss/DomBasedXss/classnames.js:7:31:7:84 | `<span  ... <span>` | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/classnames.js:7:31:7:84 | `<span  ... <span>` | enclosingFunctionBody | document body innerHTML <span class=" classNames window name ">Hello<span> document body innerHTML <span class=" classNamesD window name ">Hello<span> document body innerHTML <span class=" classNamesB window name ">Hello<span> unsafeStyle classNames bind foo window name document body innerHTML <span class=" unsafeStyle foo ">Hello<span> safeStyle classNames bind document body innerHTML <span class=" safeStyle window name ">Hello<span> document body innerHTML <span class=" safeStyle foo ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> |
+| autogenerated/Xss/DomBasedXss/classnames.js:7:31:7:84 | `<span  ... <span>` | enclosingFunctionBody | document body innerHTML <span class=" classNames window name ">Hello<span> document body innerHTML <span class=" classNamesD window name ">Hello<span> document body innerHTML <span class=" classNamesB window name ">Hello<span> unsafeStyle classNames bind foo window name document body innerHTML <span class=" unsafeStyle foo ">Hello<span> safeStyle classNames bind document body innerHTML <span class=" safeStyle window name ">Hello<span> document body innerHTML <span class=" safeStyle foo ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> |
 | autogenerated/Xss/DomBasedXss/classnames.js:7:31:7:84 | `<span  ... <span>` | enclosingFunctionName | main |
 | autogenerated/Xss/DomBasedXss/classnames.js:7:31:7:84 | `<span  ... <span>` | fileImports | classnames classnames/bind classnames/dedupe clsx |
 | autogenerated/Xss/DomBasedXss/classnames.js:7:31:7:84 | `<span  ... <span>` | receiverName |  |
@@ -11756,7 +14490,7 @@ tokenFeatures
 | autogenerated/Xss/DomBasedXss/classnames.js:8:31:8:85 | `<span  ... <span>` | calleeImports |  |
 | autogenerated/Xss/DomBasedXss/classnames.js:8:31:8:85 | `<span  ... <span>` | contextFunctionInterfaces | main() |
 | autogenerated/Xss/DomBasedXss/classnames.js:8:31:8:85 | `<span  ... <span>` | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/classnames.js:8:31:8:85 | `<span  ... <span>` | enclosingFunctionBody | document body innerHTML <span class=" classNames window name ">Hello<span> document body innerHTML <span class=" classNamesD window name ">Hello<span> document body innerHTML <span class=" classNamesB window name ">Hello<span> unsafeStyle classNames bind foo window name document body innerHTML <span class=" unsafeStyle foo ">Hello<span> safeStyle classNames bind document body innerHTML <span class=" safeStyle window name ">Hello<span> document body innerHTML <span class=" safeStyle foo ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> |
+| autogenerated/Xss/DomBasedXss/classnames.js:8:31:8:85 | `<span  ... <span>` | enclosingFunctionBody | document body innerHTML <span class=" classNames window name ">Hello<span> document body innerHTML <span class=" classNamesD window name ">Hello<span> document body innerHTML <span class=" classNamesB window name ">Hello<span> unsafeStyle classNames bind foo window name document body innerHTML <span class=" unsafeStyle foo ">Hello<span> safeStyle classNames bind document body innerHTML <span class=" safeStyle window name ">Hello<span> document body innerHTML <span class=" safeStyle foo ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> |
 | autogenerated/Xss/DomBasedXss/classnames.js:8:31:8:85 | `<span  ... <span>` | enclosingFunctionName | main |
 | autogenerated/Xss/DomBasedXss/classnames.js:8:31:8:85 | `<span  ... <span>` | fileImports | classnames classnames/bind classnames/dedupe clsx |
 | autogenerated/Xss/DomBasedXss/classnames.js:8:31:8:85 | `<span  ... <span>` | receiverName |  |
@@ -11768,7 +14502,7 @@ tokenFeatures
 | autogenerated/Xss/DomBasedXss/classnames.js:9:31:9:85 | `<span  ... <span>` | calleeImports |  |
 | autogenerated/Xss/DomBasedXss/classnames.js:9:31:9:85 | `<span  ... <span>` | contextFunctionInterfaces | main() |
 | autogenerated/Xss/DomBasedXss/classnames.js:9:31:9:85 | `<span  ... <span>` | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/classnames.js:9:31:9:85 | `<span  ... <span>` | enclosingFunctionBody | document body innerHTML <span class=" classNames window name ">Hello<span> document body innerHTML <span class=" classNamesD window name ">Hello<span> document body innerHTML <span class=" classNamesB window name ">Hello<span> unsafeStyle classNames bind foo window name document body innerHTML <span class=" unsafeStyle foo ">Hello<span> safeStyle classNames bind document body innerHTML <span class=" safeStyle window name ">Hello<span> document body innerHTML <span class=" safeStyle foo ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> |
+| autogenerated/Xss/DomBasedXss/classnames.js:9:31:9:85 | `<span  ... <span>` | enclosingFunctionBody | document body innerHTML <span class=" classNames window name ">Hello<span> document body innerHTML <span class=" classNamesD window name ">Hello<span> document body innerHTML <span class=" classNamesB window name ">Hello<span> unsafeStyle classNames bind foo window name document body innerHTML <span class=" unsafeStyle foo ">Hello<span> safeStyle classNames bind document body innerHTML <span class=" safeStyle window name ">Hello<span> document body innerHTML <span class=" safeStyle foo ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> |
 | autogenerated/Xss/DomBasedXss/classnames.js:9:31:9:85 | `<span  ... <span>` | enclosingFunctionName | main |
 | autogenerated/Xss/DomBasedXss/classnames.js:9:31:9:85 | `<span  ... <span>` | fileImports | classnames classnames/bind classnames/dedupe clsx |
 | autogenerated/Xss/DomBasedXss/classnames.js:9:31:9:85 | `<span  ... <span>` | receiverName |  |
@@ -11780,7 +14514,7 @@ tokenFeatures
 | autogenerated/Xss/DomBasedXss/classnames.js:11:31:11:79 | `<span  ... <span>` | calleeImports |  |
 | autogenerated/Xss/DomBasedXss/classnames.js:11:31:11:79 | `<span  ... <span>` | contextFunctionInterfaces | main() |
 | autogenerated/Xss/DomBasedXss/classnames.js:11:31:11:79 | `<span  ... <span>` | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/classnames.js:11:31:11:79 | `<span  ... <span>` | enclosingFunctionBody | document body innerHTML <span class=" classNames window name ">Hello<span> document body innerHTML <span class=" classNamesD window name ">Hello<span> document body innerHTML <span class=" classNamesB window name ">Hello<span> unsafeStyle classNames bind foo window name document body innerHTML <span class=" unsafeStyle foo ">Hello<span> safeStyle classNames bind document body innerHTML <span class=" safeStyle window name ">Hello<span> document body innerHTML <span class=" safeStyle foo ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> |
+| autogenerated/Xss/DomBasedXss/classnames.js:11:31:11:79 | `<span  ... <span>` | enclosingFunctionBody | document body innerHTML <span class=" classNames window name ">Hello<span> document body innerHTML <span class=" classNamesD window name ">Hello<span> document body innerHTML <span class=" classNamesB window name ">Hello<span> unsafeStyle classNames bind foo window name document body innerHTML <span class=" unsafeStyle foo ">Hello<span> safeStyle classNames bind document body innerHTML <span class=" safeStyle window name ">Hello<span> document body innerHTML <span class=" safeStyle foo ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> |
 | autogenerated/Xss/DomBasedXss/classnames.js:11:31:11:79 | `<span  ... <span>` | enclosingFunctionName | main |
 | autogenerated/Xss/DomBasedXss/classnames.js:11:31:11:79 | `<span  ... <span>` | fileImports | classnames classnames/bind classnames/dedupe clsx |
 | autogenerated/Xss/DomBasedXss/classnames.js:11:31:11:79 | `<span  ... <span>` | receiverName |  |
@@ -11792,7 +14526,7 @@ tokenFeatures
 | autogenerated/Xss/DomBasedXss/classnames.js:13:31:13:83 | `<span  ... <span>` | calleeImports |  |
 | autogenerated/Xss/DomBasedXss/classnames.js:13:31:13:83 | `<span  ... <span>` | contextFunctionInterfaces | main() |
 | autogenerated/Xss/DomBasedXss/classnames.js:13:31:13:83 | `<span  ... <span>` | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/classnames.js:13:31:13:83 | `<span  ... <span>` | enclosingFunctionBody | document body innerHTML <span class=" classNames window name ">Hello<span> document body innerHTML <span class=" classNamesD window name ">Hello<span> document body innerHTML <span class=" classNamesB window name ">Hello<span> unsafeStyle classNames bind foo window name document body innerHTML <span class=" unsafeStyle foo ">Hello<span> safeStyle classNames bind document body innerHTML <span class=" safeStyle window name ">Hello<span> document body innerHTML <span class=" safeStyle foo ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> |
+| autogenerated/Xss/DomBasedXss/classnames.js:13:31:13:83 | `<span  ... <span>` | enclosingFunctionBody | document body innerHTML <span class=" classNames window name ">Hello<span> document body innerHTML <span class=" classNamesD window name ">Hello<span> document body innerHTML <span class=" classNamesB window name ">Hello<span> unsafeStyle classNames bind foo window name document body innerHTML <span class=" unsafeStyle foo ">Hello<span> safeStyle classNames bind document body innerHTML <span class=" safeStyle window name ">Hello<span> document body innerHTML <span class=" safeStyle foo ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> |
 | autogenerated/Xss/DomBasedXss/classnames.js:13:31:13:83 | `<span  ... <span>` | enclosingFunctionName | main |
 | autogenerated/Xss/DomBasedXss/classnames.js:13:31:13:83 | `<span  ... <span>` | fileImports | classnames classnames/bind classnames/dedupe clsx |
 | autogenerated/Xss/DomBasedXss/classnames.js:13:31:13:83 | `<span  ... <span>` | receiverName |  |
@@ -11804,7 +14538,7 @@ tokenFeatures
 | autogenerated/Xss/DomBasedXss/classnames.js:14:31:14:77 | `<span  ... <span>` | calleeImports |  |
 | autogenerated/Xss/DomBasedXss/classnames.js:14:31:14:77 | `<span  ... <span>` | contextFunctionInterfaces | main() |
 | autogenerated/Xss/DomBasedXss/classnames.js:14:31:14:77 | `<span  ... <span>` | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/classnames.js:14:31:14:77 | `<span  ... <span>` | enclosingFunctionBody | document body innerHTML <span class=" classNames window name ">Hello<span> document body innerHTML <span class=" classNamesD window name ">Hello<span> document body innerHTML <span class=" classNamesB window name ">Hello<span> unsafeStyle classNames bind foo window name document body innerHTML <span class=" unsafeStyle foo ">Hello<span> safeStyle classNames bind document body innerHTML <span class=" safeStyle window name ">Hello<span> document body innerHTML <span class=" safeStyle foo ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> |
+| autogenerated/Xss/DomBasedXss/classnames.js:14:31:14:77 | `<span  ... <span>` | enclosingFunctionBody | document body innerHTML <span class=" classNames window name ">Hello<span> document body innerHTML <span class=" classNamesD window name ">Hello<span> document body innerHTML <span class=" classNamesB window name ">Hello<span> unsafeStyle classNames bind foo window name document body innerHTML <span class=" unsafeStyle foo ">Hello<span> safeStyle classNames bind document body innerHTML <span class=" safeStyle window name ">Hello<span> document body innerHTML <span class=" safeStyle foo ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> |
 | autogenerated/Xss/DomBasedXss/classnames.js:14:31:14:77 | `<span  ... <span>` | enclosingFunctionName | main |
 | autogenerated/Xss/DomBasedXss/classnames.js:14:31:14:77 | `<span  ... <span>` | fileImports | classnames classnames/bind classnames/dedupe clsx |
 | autogenerated/Xss/DomBasedXss/classnames.js:14:31:14:77 | `<span  ... <span>` | receiverName |  |
@@ -11816,11 +14550,155 @@ tokenFeatures
 | autogenerated/Xss/DomBasedXss/classnames.js:15:31:15:78 | `<span  ... <span>` | calleeImports |  |
 | autogenerated/Xss/DomBasedXss/classnames.js:15:31:15:78 | `<span  ... <span>` | contextFunctionInterfaces | main() |
 | autogenerated/Xss/DomBasedXss/classnames.js:15:31:15:78 | `<span  ... <span>` | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/classnames.js:15:31:15:78 | `<span  ... <span>` | enclosingFunctionBody | document body innerHTML <span class=" classNames window name ">Hello<span> document body innerHTML <span class=" classNamesD window name ">Hello<span> document body innerHTML <span class=" classNamesB window name ">Hello<span> unsafeStyle classNames bind foo window name document body innerHTML <span class=" unsafeStyle foo ">Hello<span> safeStyle classNames bind document body innerHTML <span class=" safeStyle window name ">Hello<span> document body innerHTML <span class=" safeStyle foo ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> |
+| autogenerated/Xss/DomBasedXss/classnames.js:15:31:15:78 | `<span  ... <span>` | enclosingFunctionBody | document body innerHTML <span class=" classNames window name ">Hello<span> document body innerHTML <span class=" classNamesD window name ">Hello<span> document body innerHTML <span class=" classNamesB window name ">Hello<span> unsafeStyle classNames bind foo window name document body innerHTML <span class=" unsafeStyle foo ">Hello<span> safeStyle classNames bind document body innerHTML <span class=" safeStyle window name ">Hello<span> document body innerHTML <span class=" safeStyle foo ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> |
 | autogenerated/Xss/DomBasedXss/classnames.js:15:31:15:78 | `<span  ... <span>` | enclosingFunctionName | main |
 | autogenerated/Xss/DomBasedXss/classnames.js:15:31:15:78 | `<span  ... <span>` | fileImports | classnames classnames/bind classnames/dedupe clsx |
 | autogenerated/Xss/DomBasedXss/classnames.js:15:31:15:78 | `<span  ... <span>` | receiverName |  |
 | autogenerated/Xss/DomBasedXss/classnames.js:15:31:15:78 | `<span  ... <span>` | stringConcatenatedWith |  |
+| autogenerated/Xss/DomBasedXss/classnames.js:17:32:17:79 | `<span  ... <span>` | CalleeFlexibleAccessPath |  |
+| autogenerated/Xss/DomBasedXss/classnames.js:17:32:17:79 | `<span  ... <span>` | InputAccessPathFromCallee |  |
+| autogenerated/Xss/DomBasedXss/classnames.js:17:32:17:79 | `<span  ... <span>` | InputArgumentIndex |  |
+| autogenerated/Xss/DomBasedXss/classnames.js:17:32:17:79 | `<span  ... <span>` | assignedToPropName |  |
+| autogenerated/Xss/DomBasedXss/classnames.js:17:32:17:79 | `<span  ... <span>` | calleeImports |  |
+| autogenerated/Xss/DomBasedXss/classnames.js:17:32:17:79 | `<span  ... <span>` | contextFunctionInterfaces | main() |
+| autogenerated/Xss/DomBasedXss/classnames.js:17:32:17:79 | `<span  ... <span>` | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/classnames.js:17:32:17:79 | `<span  ... <span>` | enclosingFunctionBody | document body innerHTML <span class=" classNames window name ">Hello<span> document body innerHTML <span class=" classNamesD window name ">Hello<span> document body innerHTML <span class=" classNamesB window name ">Hello<span> unsafeStyle classNames bind foo window name document body innerHTML <span class=" unsafeStyle foo ">Hello<span> safeStyle classNames bind document body innerHTML <span class=" safeStyle window name ">Hello<span> document body innerHTML <span class=" safeStyle foo ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> document body innerHTML <span class=" clsx window name ">Hello<span> |
+| autogenerated/Xss/DomBasedXss/classnames.js:17:32:17:79 | `<span  ... <span>` | enclosingFunctionName | main |
+| autogenerated/Xss/DomBasedXss/classnames.js:17:32:17:79 | `<span  ... <span>` | fileImports | classnames classnames/bind classnames/dedupe clsx |
+| autogenerated/Xss/DomBasedXss/classnames.js:17:32:17:79 | `<span  ... <span>` | receiverName |  |
+| autogenerated/Xss/DomBasedXss/classnames.js:17:32:17:79 | `<span  ... <span>` | stringConcatenatedWith |  |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:1:23:1:27 | paste | CalleeFlexibleAccessPath | $().on |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:1:23:1:27 | paste | InputAccessPathFromCallee |  |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:1:23:1:27 | paste | InputArgumentIndex | 1 |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:1:23:1:27 | paste | assignedToPropName |  |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:1:23:1:27 | paste | calleeImports |  |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:1:23:1:27 | paste | contextFunctionInterfaces | getClipboardData(e)\ninstall(el)\nonpaste(e)\npaste(e) |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:1:23:1:27 | paste | contextSurroundingFunctionParameters |  |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:1:23:1:27 | paste | enclosingFunctionBody |  |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:1:23:1:27 | paste | enclosingFunctionName |  |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:1:23:1:27 | paste | fileImports |  |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:1:23:1:27 | paste | receiverName |  |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:1:23:1:27 | paste | stringConcatenatedWith |  |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:15:25:15:28 | html | CalleeFlexibleAccessPath |  |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:15:25:15:28 | html | InputAccessPathFromCallee |  |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:15:25:15:28 | html | InputArgumentIndex |  |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:15:25:15:28 | html | assignedToPropName | innerHTML |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:15:25:15:28 | html | calleeImports |  |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:15:25:15:28 | html | contextFunctionInterfaces | getClipboardData(e)\ninstall(el)\nonpaste(e)\npaste(e) |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:15:25:15:28 | html | contextSurroundingFunctionParameters | (e) |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:15:25:15:28 | html | enclosingFunctionBody | e clipboardData e originalEvent clipboardData text clipboardData getData text/plain html clipboardData getData text/html text html e preventDefault div document createElement div html div innerHTML html div textContent text document body append div |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:15:25:15:28 | html | enclosingFunctionName | paste |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:15:25:15:28 | html | fileImports |  |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:15:25:15:28 | html | receiverName |  |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:15:25:15:28 | html | stringConcatenatedWith |  |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:24:23:24:58 | e.clipb ... /html') | CalleeFlexibleAccessPath | $().html |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:24:23:24:58 | e.clipb ... /html') | InputAccessPathFromCallee |  |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:24:23:24:58 | e.clipb ... /html') | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:24:23:24:58 | e.clipb ... /html') | assignedToPropName |  |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:24:23:24:58 | e.clipb ... /html') | calleeImports |  |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:24:23:24:58 | e.clipb ... /html') | contextFunctionInterfaces | getClipboardData(e)\ninstall(el)\nonpaste(e)\npaste(e) |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:24:23:24:58 | e.clipb ... /html') | contextSurroundingFunctionParameters | (el)\n(e) |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:24:23:24:58 | e.clipb ... /html') | enclosingFunctionBody | el HTMLElement el addEventListener paste e $ #id html e clipboardData getData text/html |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:24:23:24:58 | e.clipb ... /html') | enclosingFunctionName | install |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:24:23:24:58 | e.clipb ... /html') | fileImports |  |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:24:23:24:58 | e.clipb ... /html') | receiverName |  |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:24:23:24:58 | e.clipb ... /html') | stringConcatenatedWith |  |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:29:19:29:54 | e.clipb ... /html') | CalleeFlexibleAccessPath | $().html |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:29:19:29:54 | e.clipb ... /html') | InputAccessPathFromCallee |  |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:29:19:29:54 | e.clipb ... /html') | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:29:19:29:54 | e.clipb ... /html') | assignedToPropName |  |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:29:19:29:54 | e.clipb ... /html') | calleeImports |  |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:29:19:29:54 | e.clipb ... /html') | contextFunctionInterfaces | getClipboardData(e)\ninstall(el)\nonpaste(e)\npaste(e) |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:29:19:29:54 | e.clipb ... /html') | contextSurroundingFunctionParameters | (e) |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:29:19:29:54 | e.clipb ... /html') | enclosingFunctionBody | e $ #id html e clipboardData getData text/html |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:29:19:29:54 | e.clipb ... /html') | enclosingFunctionName | document.addEventListener#functionalargument |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:29:19:29:54 | e.clipb ... /html') | fileImports |  |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:29:19:29:54 | e.clipb ... /html') | receiverName |  |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:29:19:29:54 | e.clipb ... /html') | stringConcatenatedWith |  |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:32:25:34:1 | (e) =>  ... OT OK\\n} | CalleeFlexibleAccessPath | $().bind |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:32:25:34:1 | (e) =>  ... OT OK\\n} | InputAccessPathFromCallee |  |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:32:25:34:1 | (e) =>  ... OT OK\\n} | InputArgumentIndex | 1 |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:32:25:34:1 | (e) =>  ... OT OK\\n} | assignedToPropName |  |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:32:25:34:1 | (e) =>  ... OT OK\\n} | calleeImports |  |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:32:25:34:1 | (e) =>  ... OT OK\\n} | contextFunctionInterfaces | getClipboardData(e)\ninstall(el)\nonpaste(e)\npaste(e) |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:32:25:34:1 | (e) =>  ... OT OK\\n} | contextSurroundingFunctionParameters | (e) |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:32:25:34:1 | (e) =>  ... OT OK\\n} | enclosingFunctionBody |  |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:32:25:34:1 | (e) =>  ... OT OK\\n} | enclosingFunctionName |  |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:32:25:34:1 | (e) =>  ... OT OK\\n} | fileImports |  |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:32:25:34:1 | (e) =>  ... OT OK\\n} | receiverName |  |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:32:25:34:1 | (e) =>  ... OT OK\\n} | stringConcatenatedWith |  |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:33:19:33:68 | e.origi ... /html') | CalleeFlexibleAccessPath | $().html |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:33:19:33:68 | e.origi ... /html') | InputAccessPathFromCallee |  |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:33:19:33:68 | e.origi ... /html') | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:33:19:33:68 | e.origi ... /html') | assignedToPropName |  |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:33:19:33:68 | e.origi ... /html') | calleeImports |  |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:33:19:33:68 | e.origi ... /html') | contextFunctionInterfaces | getClipboardData(e)\ninstall(el)\nonpaste(e)\npaste(e) |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:33:19:33:68 | e.origi ... /html') | contextSurroundingFunctionParameters | (e) |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:33:19:33:68 | e.origi ... /html') | enclosingFunctionBody | e $ #id html e originalEvent clipboardData getData text/html |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:33:19:33:68 | e.origi ... /html') | enclosingFunctionName | bind#functionalargument |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:33:19:33:68 | e.origi ... /html') | fileImports |  |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:33:19:33:68 | e.origi ... /html') | receiverName |  |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:33:19:33:68 | e.origi ... /html') | stringConcatenatedWith |  |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:50:29:50:32 | html | CalleeFlexibleAccessPath |  |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:50:29:50:32 | html | InputAccessPathFromCallee |  |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:50:29:50:32 | html | InputArgumentIndex |  |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:50:29:50:32 | html | assignedToPropName | innerHTML |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:50:29:50:32 | html | calleeImports |  |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:50:29:50:32 | html | contextFunctionInterfaces | getClipboardData(e)\ninstall(el)\nonpaste(e)\npaste(e) |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:50:29:50:32 | html | contextSurroundingFunctionParameters | ()\n(e) |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:50:29:50:32 | html | enclosingFunctionBody | div document createElement div div onpaste e ClipboardEvent clipboardData e clipboardData text clipboardData getData text/plain html clipboardData getData text/html text html e preventDefault div document createElement div html div innerHTML html div textContent text document body append div |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:50:29:50:32 | html | enclosingFunctionName |  |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:50:29:50:32 | html | fileImports |  |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:50:29:50:32 | html | receiverName |  |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:50:29:50:32 | html | stringConcatenatedWith |  |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:73:29:73:39 | droppedHtml | CalleeFlexibleAccessPath |  |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:73:29:73:39 | droppedHtml | InputAccessPathFromCallee |  |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:73:29:73:39 | droppedHtml | InputArgumentIndex |  |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:73:29:73:39 | droppedHtml | assignedToPropName | innerHTML |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:73:29:73:39 | droppedHtml | calleeImports |  |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:73:29:73:39 | droppedHtml | contextFunctionInterfaces | getClipboardData(e)\ninstall(el)\nonpaste(e)\npaste(e) |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:73:29:73:39 | droppedHtml | contextSurroundingFunctionParameters | (e) |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:73:29:73:39 | droppedHtml | enclosingFunctionBody | e ClipboardEvent Promise Array File dropItems Set File e clipboardData files length 0 i 0 i e clipboardData files length i file e clipboardData files i e clipboardData types includes text/html droppedHtml e clipboardData getData text/html container document createElement html container innerHTML droppedHtml imgs container getElementsByTagName img imgs length 1 src imgs 0 0 src dropItems add src e clipboardData types includes text/plain plainText e clipboardData getData text/plain /^https?:\\/\\//i test plainText dropItems add plainText imageItems Array from dropItems imageItems |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:73:29:73:39 | droppedHtml | enclosingFunctionName | getClipboardData |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:73:29:73:39 | droppedHtml | fileImports |  |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:73:29:73:39 | droppedHtml | receiverName |  |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:73:29:73:39 | droppedHtml | stringConcatenatedWith |  |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:82:32:82:40 | plainText | CalleeFlexibleAccessPath | ?.test |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:82:32:82:40 | plainText | InputAccessPathFromCallee |  |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:82:32:82:40 | plainText | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:82:32:82:40 | plainText | assignedToPropName |  |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:82:32:82:40 | plainText | calleeImports |  |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:82:32:82:40 | plainText | contextFunctionInterfaces | getClipboardData(e)\ninstall(el)\nonpaste(e)\npaste(e) |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:82:32:82:40 | plainText | contextSurroundingFunctionParameters | (e) |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:82:32:82:40 | plainText | enclosingFunctionBody | e ClipboardEvent Promise Array File dropItems Set File e clipboardData files length 0 i 0 i e clipboardData files length i file e clipboardData files i e clipboardData types includes text/html droppedHtml e clipboardData getData text/html container document createElement html container innerHTML droppedHtml imgs container getElementsByTagName img imgs length 1 src imgs 0 0 src dropItems add src e clipboardData types includes text/plain plainText e clipboardData getData text/plain /^https?:\\/\\//i test plainText dropItems add plainText imageItems Array from dropItems imageItems |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:82:32:82:40 | plainText | enclosingFunctionName | getClipboardData |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:82:32:82:40 | plainText | fileImports |  |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:82:32:82:40 | plainText | receiverName |  |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:82:32:82:40 | plainText | stringConcatenatedWith |  |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:99:23:99:26 | html | CalleeFlexibleAccessPath | $().html |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:99:23:99:26 | html | InputAccessPathFromCallee |  |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:99:23:99:26 | html | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:99:23:99:26 | html | assignedToPropName |  |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:99:23:99:26 | html | calleeImports |  |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:99:23:99:26 | html | contextFunctionInterfaces | getClipboardData(e)\ninstall(el)\nonpaste(e)\npaste(e) |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:99:23:99:26 | html | contextSurroundingFunctionParameters | ()\n(e) |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:99:23:99:26 | html | enclosingFunctionBody | div document createElement div div addEventListener beforeinput e InputEvent data inputType isComposing dataTransfer e dataTransfer html dataTransfer getData text/html $ #id html html |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:99:23:99:26 | html | enclosingFunctionName |  |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:99:23:99:26 | html | fileImports |  |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:99:23:99:26 | html | receiverName |  |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:99:23:99:26 | html | stringConcatenatedWith |  |
+| autogenerated/Xss/DomBasedXss/custom-element.js:5:26:5:36 | window.name | CalleeFlexibleAccessPath |  |
+| autogenerated/Xss/DomBasedXss/custom-element.js:5:26:5:36 | window.name | InputAccessPathFromCallee |  |
+| autogenerated/Xss/DomBasedXss/custom-element.js:5:26:5:36 | window.name | InputArgumentIndex |  |
+| autogenerated/Xss/DomBasedXss/custom-element.js:5:26:5:36 | window.name | assignedToPropName | innerHTML |
+| autogenerated/Xss/DomBasedXss/custom-element.js:5:26:5:36 | window.name | calleeImports |  |
+| autogenerated/Xss/DomBasedXss/custom-element.js:5:26:5:36 | window.name | contextFunctionInterfaces | constructor(args)\ntest() |
+| autogenerated/Xss/DomBasedXss/custom-element.js:5:26:5:36 | window.name | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/custom-element.js:5:26:5:36 | window.name | enclosingFunctionBody | innerHTML window name |
+| autogenerated/Xss/DomBasedXss/custom-element.js:5:26:5:36 | window.name | enclosingFunctionName | test |
+| autogenerated/Xss/DomBasedXss/custom-element.js:5:26:5:36 | window.name | fileImports | dummy |
+| autogenerated/Xss/DomBasedXss/custom-element.js:5:26:5:36 | window.name | receiverName |  |
+| autogenerated/Xss/DomBasedXss/custom-element.js:5:26:5:36 | window.name | stringConcatenatedWith |  |
 | autogenerated/Xss/DomBasedXss/d3.js:11:15:11:24 | getTaint() | CalleeFlexibleAccessPath | d3.select().attr().style().html |
 | autogenerated/Xss/DomBasedXss/d3.js:11:15:11:24 | getTaint() | InputAccessPathFromCallee |  |
 | autogenerated/Xss/DomBasedXss/d3.js:11:15:11:24 | getTaint() | InputArgumentIndex | 0 |
@@ -11898,11 +14776,11 @@ tokenFeatures
 | autogenerated/Xss/DomBasedXss/dates.js:11:31:11:70 | `Time i ... aint)}` | InputArgumentIndex |  |
 | autogenerated/Xss/DomBasedXss/dates.js:11:31:11:70 | `Time i ... aint)}` | assignedToPropName | innerHTML |
 | autogenerated/Xss/DomBasedXss/dates.js:11:31:11:70 | `Time i ... aint)}` | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/dates.js:11:31:11:70 | `Time i ... aint)}` | contextFunctionInterfaces | main() |
+| autogenerated/Xss/DomBasedXss/dates.js:11:31:11:70 | `Time i ... aint)}` | contextFunctionInterfaces | dateio()\ndateio2()\nluxon()\nmain() |
 | autogenerated/Xss/DomBasedXss/dates.js:11:31:11:70 | `Time i ... aint)}` | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/dates.js:11:31:11:70 | `Time i ... aint)}` | enclosingFunctionBody | time Date taint decodeURIComponent window location hash substring 1 document body innerHTML Time is  dateFns format time taint document body innerHTML Time is  dateFnsEsm format time taint document body innerHTML Time is  dateFnsFp format taint time document body innerHTML Time is  dateFns format taint time document body innerHTML Time is  dateFnsFp format time taint document body innerHTML Time is  moment time format taint document body innerHTML Time is  moment taint format document body innerHTML Time is  dateformat time taint |
+| autogenerated/Xss/DomBasedXss/dates.js:11:31:11:70 | `Time i ... aint)}` | enclosingFunctionBody | time Date taint decodeURIComponent window location hash substring 1 document body innerHTML Time is  dateFns format time taint document body innerHTML Time is  dateFnsEsm format time taint document body innerHTML Time is  dateFnsFp format taint time document body innerHTML Time is  dateFns format taint time document body innerHTML Time is  dateFnsFp format time taint document body innerHTML Time is  moment time format taint document body innerHTML Time is  moment taint format document body innerHTML Time is  dateformat time taint dayjs dayjs document body innerHTML Time is  dayjs time format taint |
 | autogenerated/Xss/DomBasedXss/dates.js:11:31:11:70 | `Time i ... aint)}` | enclosingFunctionName | main |
-| autogenerated/Xss/DomBasedXss/dates.js:11:31:11:70 | `Time i ... aint)}` | fileImports | date-fns date-fns/esm date-fns/fp dateformat moment |
+| autogenerated/Xss/DomBasedXss/dates.js:11:31:11:70 | `Time i ... aint)}` | fileImports | @date-io/date-fns @date-io/dayjs @date-io/luxon @date-io/moment date-fns date-fns/esm date-fns/fp dateformat dayjs luxon moment |
 | autogenerated/Xss/DomBasedXss/dates.js:11:31:11:70 | `Time i ... aint)}` | receiverName |  |
 | autogenerated/Xss/DomBasedXss/dates.js:11:31:11:70 | `Time i ... aint)}` | stringConcatenatedWith |  |
 | autogenerated/Xss/DomBasedXss/dates.js:12:31:12:73 | `Time i ... aint)}` | CalleeFlexibleAccessPath |  |
@@ -11910,11 +14788,11 @@ tokenFeatures
 | autogenerated/Xss/DomBasedXss/dates.js:12:31:12:73 | `Time i ... aint)}` | InputArgumentIndex |  |
 | autogenerated/Xss/DomBasedXss/dates.js:12:31:12:73 | `Time i ... aint)}` | assignedToPropName | innerHTML |
 | autogenerated/Xss/DomBasedXss/dates.js:12:31:12:73 | `Time i ... aint)}` | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/dates.js:12:31:12:73 | `Time i ... aint)}` | contextFunctionInterfaces | main() |
+| autogenerated/Xss/DomBasedXss/dates.js:12:31:12:73 | `Time i ... aint)}` | contextFunctionInterfaces | dateio()\ndateio2()\nluxon()\nmain() |
 | autogenerated/Xss/DomBasedXss/dates.js:12:31:12:73 | `Time i ... aint)}` | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/dates.js:12:31:12:73 | `Time i ... aint)}` | enclosingFunctionBody | time Date taint decodeURIComponent window location hash substring 1 document body innerHTML Time is  dateFns format time taint document body innerHTML Time is  dateFnsEsm format time taint document body innerHTML Time is  dateFnsFp format taint time document body innerHTML Time is  dateFns format taint time document body innerHTML Time is  dateFnsFp format time taint document body innerHTML Time is  moment time format taint document body innerHTML Time is  moment taint format document body innerHTML Time is  dateformat time taint |
+| autogenerated/Xss/DomBasedXss/dates.js:12:31:12:73 | `Time i ... aint)}` | enclosingFunctionBody | time Date taint decodeURIComponent window location hash substring 1 document body innerHTML Time is  dateFns format time taint document body innerHTML Time is  dateFnsEsm format time taint document body innerHTML Time is  dateFnsFp format taint time document body innerHTML Time is  dateFns format taint time document body innerHTML Time is  dateFnsFp format time taint document body innerHTML Time is  moment time format taint document body innerHTML Time is  moment taint format document body innerHTML Time is  dateformat time taint dayjs dayjs document body innerHTML Time is  dayjs time format taint |
 | autogenerated/Xss/DomBasedXss/dates.js:12:31:12:73 | `Time i ... aint)}` | enclosingFunctionName | main |
-| autogenerated/Xss/DomBasedXss/dates.js:12:31:12:73 | `Time i ... aint)}` | fileImports | date-fns date-fns/esm date-fns/fp dateformat moment |
+| autogenerated/Xss/DomBasedXss/dates.js:12:31:12:73 | `Time i ... aint)}` | fileImports | @date-io/date-fns @date-io/dayjs @date-io/luxon @date-io/moment date-fns date-fns/esm date-fns/fp dateformat dayjs luxon moment |
 | autogenerated/Xss/DomBasedXss/dates.js:12:31:12:73 | `Time i ... aint)}` | receiverName |  |
 | autogenerated/Xss/DomBasedXss/dates.js:12:31:12:73 | `Time i ... aint)}` | stringConcatenatedWith |  |
 | autogenerated/Xss/DomBasedXss/dates.js:13:31:13:72 | `Time i ... time)}` | CalleeFlexibleAccessPath |  |
@@ -11922,11 +14800,11 @@ tokenFeatures
 | autogenerated/Xss/DomBasedXss/dates.js:13:31:13:72 | `Time i ... time)}` | InputArgumentIndex |  |
 | autogenerated/Xss/DomBasedXss/dates.js:13:31:13:72 | `Time i ... time)}` | assignedToPropName | innerHTML |
 | autogenerated/Xss/DomBasedXss/dates.js:13:31:13:72 | `Time i ... time)}` | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/dates.js:13:31:13:72 | `Time i ... time)}` | contextFunctionInterfaces | main() |
+| autogenerated/Xss/DomBasedXss/dates.js:13:31:13:72 | `Time i ... time)}` | contextFunctionInterfaces | dateio()\ndateio2()\nluxon()\nmain() |
 | autogenerated/Xss/DomBasedXss/dates.js:13:31:13:72 | `Time i ... time)}` | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/dates.js:13:31:13:72 | `Time i ... time)}` | enclosingFunctionBody | time Date taint decodeURIComponent window location hash substring 1 document body innerHTML Time is  dateFns format time taint document body innerHTML Time is  dateFnsEsm format time taint document body innerHTML Time is  dateFnsFp format taint time document body innerHTML Time is  dateFns format taint time document body innerHTML Time is  dateFnsFp format time taint document body innerHTML Time is  moment time format taint document body innerHTML Time is  moment taint format document body innerHTML Time is  dateformat time taint |
+| autogenerated/Xss/DomBasedXss/dates.js:13:31:13:72 | `Time i ... time)}` | enclosingFunctionBody | time Date taint decodeURIComponent window location hash substring 1 document body innerHTML Time is  dateFns format time taint document body innerHTML Time is  dateFnsEsm format time taint document body innerHTML Time is  dateFnsFp format taint time document body innerHTML Time is  dateFns format taint time document body innerHTML Time is  dateFnsFp format time taint document body innerHTML Time is  moment time format taint document body innerHTML Time is  moment taint format document body innerHTML Time is  dateformat time taint dayjs dayjs document body innerHTML Time is  dayjs time format taint |
 | autogenerated/Xss/DomBasedXss/dates.js:13:31:13:72 | `Time i ... time)}` | enclosingFunctionName | main |
-| autogenerated/Xss/DomBasedXss/dates.js:13:31:13:72 | `Time i ... time)}` | fileImports | date-fns date-fns/esm date-fns/fp dateformat moment |
+| autogenerated/Xss/DomBasedXss/dates.js:13:31:13:72 | `Time i ... time)}` | fileImports | @date-io/date-fns @date-io/dayjs @date-io/luxon @date-io/moment date-fns date-fns/esm date-fns/fp dateformat dayjs luxon moment |
 | autogenerated/Xss/DomBasedXss/dates.js:13:31:13:72 | `Time i ... time)}` | receiverName |  |
 | autogenerated/Xss/DomBasedXss/dates.js:13:31:13:72 | `Time i ... time)}` | stringConcatenatedWith |  |
 | autogenerated/Xss/DomBasedXss/dates.js:14:31:14:70 | `Time i ... time)}` | CalleeFlexibleAccessPath |  |
@@ -11934,11 +14812,11 @@ tokenFeatures
 | autogenerated/Xss/DomBasedXss/dates.js:14:31:14:70 | `Time i ... time)}` | InputArgumentIndex |  |
 | autogenerated/Xss/DomBasedXss/dates.js:14:31:14:70 | `Time i ... time)}` | assignedToPropName | innerHTML |
 | autogenerated/Xss/DomBasedXss/dates.js:14:31:14:70 | `Time i ... time)}` | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/dates.js:14:31:14:70 | `Time i ... time)}` | contextFunctionInterfaces | main() |
+| autogenerated/Xss/DomBasedXss/dates.js:14:31:14:70 | `Time i ... time)}` | contextFunctionInterfaces | dateio()\ndateio2()\nluxon()\nmain() |
 | autogenerated/Xss/DomBasedXss/dates.js:14:31:14:70 | `Time i ... time)}` | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/dates.js:14:31:14:70 | `Time i ... time)}` | enclosingFunctionBody | time Date taint decodeURIComponent window location hash substring 1 document body innerHTML Time is  dateFns format time taint document body innerHTML Time is  dateFnsEsm format time taint document body innerHTML Time is  dateFnsFp format taint time document body innerHTML Time is  dateFns format taint time document body innerHTML Time is  dateFnsFp format time taint document body innerHTML Time is  moment time format taint document body innerHTML Time is  moment taint format document body innerHTML Time is  dateformat time taint |
+| autogenerated/Xss/DomBasedXss/dates.js:14:31:14:70 | `Time i ... time)}` | enclosingFunctionBody | time Date taint decodeURIComponent window location hash substring 1 document body innerHTML Time is  dateFns format time taint document body innerHTML Time is  dateFnsEsm format time taint document body innerHTML Time is  dateFnsFp format taint time document body innerHTML Time is  dateFns format taint time document body innerHTML Time is  dateFnsFp format time taint document body innerHTML Time is  moment time format taint document body innerHTML Time is  moment taint format document body innerHTML Time is  dateformat time taint dayjs dayjs document body innerHTML Time is  dayjs time format taint |
 | autogenerated/Xss/DomBasedXss/dates.js:14:31:14:70 | `Time i ... time)}` | enclosingFunctionName | main |
-| autogenerated/Xss/DomBasedXss/dates.js:14:31:14:70 | `Time i ... time)}` | fileImports | date-fns date-fns/esm date-fns/fp dateformat moment |
+| autogenerated/Xss/DomBasedXss/dates.js:14:31:14:70 | `Time i ... time)}` | fileImports | @date-io/date-fns @date-io/dayjs @date-io/luxon @date-io/moment date-fns date-fns/esm date-fns/fp dateformat dayjs luxon moment |
 | autogenerated/Xss/DomBasedXss/dates.js:14:31:14:70 | `Time i ... time)}` | receiverName |  |
 | autogenerated/Xss/DomBasedXss/dates.js:14:31:14:70 | `Time i ... time)}` | stringConcatenatedWith |  |
 | autogenerated/Xss/DomBasedXss/dates.js:15:31:15:72 | `Time i ... aint)}` | CalleeFlexibleAccessPath |  |
@@ -11946,11 +14824,11 @@ tokenFeatures
 | autogenerated/Xss/DomBasedXss/dates.js:15:31:15:72 | `Time i ... aint)}` | InputArgumentIndex |  |
 | autogenerated/Xss/DomBasedXss/dates.js:15:31:15:72 | `Time i ... aint)}` | assignedToPropName | innerHTML |
 | autogenerated/Xss/DomBasedXss/dates.js:15:31:15:72 | `Time i ... aint)}` | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/dates.js:15:31:15:72 | `Time i ... aint)}` | contextFunctionInterfaces | main() |
+| autogenerated/Xss/DomBasedXss/dates.js:15:31:15:72 | `Time i ... aint)}` | contextFunctionInterfaces | dateio()\ndateio2()\nluxon()\nmain() |
 | autogenerated/Xss/DomBasedXss/dates.js:15:31:15:72 | `Time i ... aint)}` | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/dates.js:15:31:15:72 | `Time i ... aint)}` | enclosingFunctionBody | time Date taint decodeURIComponent window location hash substring 1 document body innerHTML Time is  dateFns format time taint document body innerHTML Time is  dateFnsEsm format time taint document body innerHTML Time is  dateFnsFp format taint time document body innerHTML Time is  dateFns format taint time document body innerHTML Time is  dateFnsFp format time taint document body innerHTML Time is  moment time format taint document body innerHTML Time is  moment taint format document body innerHTML Time is  dateformat time taint |
+| autogenerated/Xss/DomBasedXss/dates.js:15:31:15:72 | `Time i ... aint)}` | enclosingFunctionBody | time Date taint decodeURIComponent window location hash substring 1 document body innerHTML Time is  dateFns format time taint document body innerHTML Time is  dateFnsEsm format time taint document body innerHTML Time is  dateFnsFp format taint time document body innerHTML Time is  dateFns format taint time document body innerHTML Time is  dateFnsFp format time taint document body innerHTML Time is  moment time format taint document body innerHTML Time is  moment taint format document body innerHTML Time is  dateformat time taint dayjs dayjs document body innerHTML Time is  dayjs time format taint |
 | autogenerated/Xss/DomBasedXss/dates.js:15:31:15:72 | `Time i ... aint)}` | enclosingFunctionName | main |
-| autogenerated/Xss/DomBasedXss/dates.js:15:31:15:72 | `Time i ... aint)}` | fileImports | date-fns date-fns/esm date-fns/fp dateformat moment |
+| autogenerated/Xss/DomBasedXss/dates.js:15:31:15:72 | `Time i ... aint)}` | fileImports | @date-io/date-fns @date-io/dayjs @date-io/luxon @date-io/moment date-fns date-fns/esm date-fns/fp dateformat dayjs luxon moment |
 | autogenerated/Xss/DomBasedXss/dates.js:15:31:15:72 | `Time i ... aint)}` | receiverName |  |
 | autogenerated/Xss/DomBasedXss/dates.js:15:31:15:72 | `Time i ... aint)}` | stringConcatenatedWith |  |
 | autogenerated/Xss/DomBasedXss/dates.js:16:31:16:69 | `Time i ... aint)}` | CalleeFlexibleAccessPath |  |
@@ -11958,11 +14836,11 @@ tokenFeatures
 | autogenerated/Xss/DomBasedXss/dates.js:16:31:16:69 | `Time i ... aint)}` | InputArgumentIndex |  |
 | autogenerated/Xss/DomBasedXss/dates.js:16:31:16:69 | `Time i ... aint)}` | assignedToPropName | innerHTML |
 | autogenerated/Xss/DomBasedXss/dates.js:16:31:16:69 | `Time i ... aint)}` | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/dates.js:16:31:16:69 | `Time i ... aint)}` | contextFunctionInterfaces | main() |
+| autogenerated/Xss/DomBasedXss/dates.js:16:31:16:69 | `Time i ... aint)}` | contextFunctionInterfaces | dateio()\ndateio2()\nluxon()\nmain() |
 | autogenerated/Xss/DomBasedXss/dates.js:16:31:16:69 | `Time i ... aint)}` | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/dates.js:16:31:16:69 | `Time i ... aint)}` | enclosingFunctionBody | time Date taint decodeURIComponent window location hash substring 1 document body innerHTML Time is  dateFns format time taint document body innerHTML Time is  dateFnsEsm format time taint document body innerHTML Time is  dateFnsFp format taint time document body innerHTML Time is  dateFns format taint time document body innerHTML Time is  dateFnsFp format time taint document body innerHTML Time is  moment time format taint document body innerHTML Time is  moment taint format document body innerHTML Time is  dateformat time taint |
+| autogenerated/Xss/DomBasedXss/dates.js:16:31:16:69 | `Time i ... aint)}` | enclosingFunctionBody | time Date taint decodeURIComponent window location hash substring 1 document body innerHTML Time is  dateFns format time taint document body innerHTML Time is  dateFnsEsm format time taint document body innerHTML Time is  dateFnsFp format taint time document body innerHTML Time is  dateFns format taint time document body innerHTML Time is  dateFnsFp format time taint document body innerHTML Time is  moment time format taint document body innerHTML Time is  moment taint format document body innerHTML Time is  dateformat time taint dayjs dayjs document body innerHTML Time is  dayjs time format taint |
 | autogenerated/Xss/DomBasedXss/dates.js:16:31:16:69 | `Time i ... aint)}` | enclosingFunctionName | main |
-| autogenerated/Xss/DomBasedXss/dates.js:16:31:16:69 | `Time i ... aint)}` | fileImports | date-fns date-fns/esm date-fns/fp dateformat moment |
+| autogenerated/Xss/DomBasedXss/dates.js:16:31:16:69 | `Time i ... aint)}` | fileImports | @date-io/date-fns @date-io/dayjs @date-io/luxon @date-io/moment date-fns date-fns/esm date-fns/fp dateformat dayjs luxon moment |
 | autogenerated/Xss/DomBasedXss/dates.js:16:31:16:69 | `Time i ... aint)}` | receiverName |  |
 | autogenerated/Xss/DomBasedXss/dates.js:16:31:16:69 | `Time i ... aint)}` | stringConcatenatedWith |  |
 | autogenerated/Xss/DomBasedXss/dates.js:17:31:17:65 | `Time i ... mat()}` | CalleeFlexibleAccessPath |  |
@@ -11970,11 +14848,11 @@ tokenFeatures
 | autogenerated/Xss/DomBasedXss/dates.js:17:31:17:65 | `Time i ... mat()}` | InputArgumentIndex |  |
 | autogenerated/Xss/DomBasedXss/dates.js:17:31:17:65 | `Time i ... mat()}` | assignedToPropName | innerHTML |
 | autogenerated/Xss/DomBasedXss/dates.js:17:31:17:65 | `Time i ... mat()}` | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/dates.js:17:31:17:65 | `Time i ... mat()}` | contextFunctionInterfaces | main() |
+| autogenerated/Xss/DomBasedXss/dates.js:17:31:17:65 | `Time i ... mat()}` | contextFunctionInterfaces | dateio()\ndateio2()\nluxon()\nmain() |
 | autogenerated/Xss/DomBasedXss/dates.js:17:31:17:65 | `Time i ... mat()}` | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/dates.js:17:31:17:65 | `Time i ... mat()}` | enclosingFunctionBody | time Date taint decodeURIComponent window location hash substring 1 document body innerHTML Time is  dateFns format time taint document body innerHTML Time is  dateFnsEsm format time taint document body innerHTML Time is  dateFnsFp format taint time document body innerHTML Time is  dateFns format taint time document body innerHTML Time is  dateFnsFp format time taint document body innerHTML Time is  moment time format taint document body innerHTML Time is  moment taint format document body innerHTML Time is  dateformat time taint |
+| autogenerated/Xss/DomBasedXss/dates.js:17:31:17:65 | `Time i ... mat()}` | enclosingFunctionBody | time Date taint decodeURIComponent window location hash substring 1 document body innerHTML Time is  dateFns format time taint document body innerHTML Time is  dateFnsEsm format time taint document body innerHTML Time is  dateFnsFp format taint time document body innerHTML Time is  dateFns format taint time document body innerHTML Time is  dateFnsFp format time taint document body innerHTML Time is  moment time format taint document body innerHTML Time is  moment taint format document body innerHTML Time is  dateformat time taint dayjs dayjs document body innerHTML Time is  dayjs time format taint |
 | autogenerated/Xss/DomBasedXss/dates.js:17:31:17:65 | `Time i ... mat()}` | enclosingFunctionName | main |
-| autogenerated/Xss/DomBasedXss/dates.js:17:31:17:65 | `Time i ... mat()}` | fileImports | date-fns date-fns/esm date-fns/fp dateformat moment |
+| autogenerated/Xss/DomBasedXss/dates.js:17:31:17:65 | `Time i ... mat()}` | fileImports | @date-io/date-fns @date-io/dayjs @date-io/luxon @date-io/moment date-fns date-fns/esm date-fns/fp dateformat dayjs luxon moment |
 | autogenerated/Xss/DomBasedXss/dates.js:17:31:17:65 | `Time i ... mat()}` | receiverName |  |
 | autogenerated/Xss/DomBasedXss/dates.js:17:31:17:65 | `Time i ... mat()}` | stringConcatenatedWith |  |
 | autogenerated/Xss/DomBasedXss/dates.js:18:31:18:66 | `Time i ... aint)}` | CalleeFlexibleAccessPath |  |
@@ -11982,13 +14860,253 @@ tokenFeatures
 | autogenerated/Xss/DomBasedXss/dates.js:18:31:18:66 | `Time i ... aint)}` | InputArgumentIndex |  |
 | autogenerated/Xss/DomBasedXss/dates.js:18:31:18:66 | `Time i ... aint)}` | assignedToPropName | innerHTML |
 | autogenerated/Xss/DomBasedXss/dates.js:18:31:18:66 | `Time i ... aint)}` | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/dates.js:18:31:18:66 | `Time i ... aint)}` | contextFunctionInterfaces | main() |
+| autogenerated/Xss/DomBasedXss/dates.js:18:31:18:66 | `Time i ... aint)}` | contextFunctionInterfaces | dateio()\ndateio2()\nluxon()\nmain() |
 | autogenerated/Xss/DomBasedXss/dates.js:18:31:18:66 | `Time i ... aint)}` | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/dates.js:18:31:18:66 | `Time i ... aint)}` | enclosingFunctionBody | time Date taint decodeURIComponent window location hash substring 1 document body innerHTML Time is  dateFns format time taint document body innerHTML Time is  dateFnsEsm format time taint document body innerHTML Time is  dateFnsFp format taint time document body innerHTML Time is  dateFns format taint time document body innerHTML Time is  dateFnsFp format time taint document body innerHTML Time is  moment time format taint document body innerHTML Time is  moment taint format document body innerHTML Time is  dateformat time taint |
+| autogenerated/Xss/DomBasedXss/dates.js:18:31:18:66 | `Time i ... aint)}` | enclosingFunctionBody | time Date taint decodeURIComponent window location hash substring 1 document body innerHTML Time is  dateFns format time taint document body innerHTML Time is  dateFnsEsm format time taint document body innerHTML Time is  dateFnsFp format taint time document body innerHTML Time is  dateFns format taint time document body innerHTML Time is  dateFnsFp format time taint document body innerHTML Time is  moment time format taint document body innerHTML Time is  moment taint format document body innerHTML Time is  dateformat time taint dayjs dayjs document body innerHTML Time is  dayjs time format taint |
 | autogenerated/Xss/DomBasedXss/dates.js:18:31:18:66 | `Time i ... aint)}` | enclosingFunctionName | main |
-| autogenerated/Xss/DomBasedXss/dates.js:18:31:18:66 | `Time i ... aint)}` | fileImports | date-fns date-fns/esm date-fns/fp dateformat moment |
+| autogenerated/Xss/DomBasedXss/dates.js:18:31:18:66 | `Time i ... aint)}` | fileImports | @date-io/date-fns @date-io/dayjs @date-io/luxon @date-io/moment date-fns date-fns/esm date-fns/fp dateformat dayjs luxon moment |
 | autogenerated/Xss/DomBasedXss/dates.js:18:31:18:66 | `Time i ... aint)}` | receiverName |  |
 | autogenerated/Xss/DomBasedXss/dates.js:18:31:18:66 | `Time i ... aint)}` | stringConcatenatedWith |  |
+| autogenerated/Xss/DomBasedXss/dates.js:21:31:21:68 | `Time i ... aint)}` | CalleeFlexibleAccessPath |  |
+| autogenerated/Xss/DomBasedXss/dates.js:21:31:21:68 | `Time i ... aint)}` | InputAccessPathFromCallee |  |
+| autogenerated/Xss/DomBasedXss/dates.js:21:31:21:68 | `Time i ... aint)}` | InputArgumentIndex |  |
+| autogenerated/Xss/DomBasedXss/dates.js:21:31:21:68 | `Time i ... aint)}` | assignedToPropName | innerHTML |
+| autogenerated/Xss/DomBasedXss/dates.js:21:31:21:68 | `Time i ... aint)}` | calleeImports |  |
+| autogenerated/Xss/DomBasedXss/dates.js:21:31:21:68 | `Time i ... aint)}` | contextFunctionInterfaces | dateio()\ndateio2()\nluxon()\nmain() |
+| autogenerated/Xss/DomBasedXss/dates.js:21:31:21:68 | `Time i ... aint)}` | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/dates.js:21:31:21:68 | `Time i ... aint)}` | enclosingFunctionBody | time Date taint decodeURIComponent window location hash substring 1 document body innerHTML Time is  dateFns format time taint document body innerHTML Time is  dateFnsEsm format time taint document body innerHTML Time is  dateFnsFp format taint time document body innerHTML Time is  dateFns format taint time document body innerHTML Time is  dateFnsFp format time taint document body innerHTML Time is  moment time format taint document body innerHTML Time is  moment taint format document body innerHTML Time is  dateformat time taint dayjs dayjs document body innerHTML Time is  dayjs time format taint |
+| autogenerated/Xss/DomBasedXss/dates.js:21:31:21:68 | `Time i ... aint)}` | enclosingFunctionName | main |
+| autogenerated/Xss/DomBasedXss/dates.js:21:31:21:68 | `Time i ... aint)}` | fileImports | @date-io/date-fns @date-io/dayjs @date-io/luxon @date-io/moment date-fns date-fns/esm date-fns/fp dateformat dayjs luxon moment |
+| autogenerated/Xss/DomBasedXss/dates.js:21:31:21:68 | `Time i ... aint)}` | receiverName |  |
+| autogenerated/Xss/DomBasedXss/dates.js:21:31:21:68 | `Time i ... aint)}` | stringConcatenatedWith |  |
+| autogenerated/Xss/DomBasedXss/dates.js:37:31:37:84 | `Time i ... aint)}` | CalleeFlexibleAccessPath |  |
+| autogenerated/Xss/DomBasedXss/dates.js:37:31:37:84 | `Time i ... aint)}` | InputAccessPathFromCallee |  |
+| autogenerated/Xss/DomBasedXss/dates.js:37:31:37:84 | `Time i ... aint)}` | InputArgumentIndex |  |
+| autogenerated/Xss/DomBasedXss/dates.js:37:31:37:84 | `Time i ... aint)}` | assignedToPropName | innerHTML |
+| autogenerated/Xss/DomBasedXss/dates.js:37:31:37:84 | `Time i ... aint)}` | calleeImports |  |
+| autogenerated/Xss/DomBasedXss/dates.js:37:31:37:84 | `Time i ... aint)}` | contextFunctionInterfaces | dateio()\ndateio2()\nluxon()\nmain() |
+| autogenerated/Xss/DomBasedXss/dates.js:37:31:37:84 | `Time i ... aint)}` | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/dates.js:37:31:37:84 | `Time i ... aint)}` | enclosingFunctionBody | taint decodeURIComponent window location hash substring 1 dateFns DateFnsAdapter luxon LuxonAdapter moment MomentAdapter dayjs DayJSAdapter document body innerHTML Time is  dateFns formatByString Date taint document body innerHTML Time is  luxon formatByString luxon date taint document body innerHTML Time is  moment formatByString moment date taint document body innerHTML Time is  dayjs formatByString dayjs date taint |
+| autogenerated/Xss/DomBasedXss/dates.js:37:31:37:84 | `Time i ... aint)}` | enclosingFunctionName | dateio |
+| autogenerated/Xss/DomBasedXss/dates.js:37:31:37:84 | `Time i ... aint)}` | fileImports | @date-io/date-fns @date-io/dayjs @date-io/luxon @date-io/moment date-fns date-fns/esm date-fns/fp dateformat dayjs luxon moment |
+| autogenerated/Xss/DomBasedXss/dates.js:37:31:37:84 | `Time i ... aint)}` | receiverName |  |
+| autogenerated/Xss/DomBasedXss/dates.js:37:31:37:84 | `Time i ... aint)}` | stringConcatenatedWith |  |
+| autogenerated/Xss/DomBasedXss/dates.js:38:31:38:84 | `Time i ... aint)}` | CalleeFlexibleAccessPath |  |
+| autogenerated/Xss/DomBasedXss/dates.js:38:31:38:84 | `Time i ... aint)}` | InputAccessPathFromCallee |  |
+| autogenerated/Xss/DomBasedXss/dates.js:38:31:38:84 | `Time i ... aint)}` | InputArgumentIndex |  |
+| autogenerated/Xss/DomBasedXss/dates.js:38:31:38:84 | `Time i ... aint)}` | assignedToPropName | innerHTML |
+| autogenerated/Xss/DomBasedXss/dates.js:38:31:38:84 | `Time i ... aint)}` | calleeImports |  |
+| autogenerated/Xss/DomBasedXss/dates.js:38:31:38:84 | `Time i ... aint)}` | contextFunctionInterfaces | dateio()\ndateio2()\nluxon()\nmain() |
+| autogenerated/Xss/DomBasedXss/dates.js:38:31:38:84 | `Time i ... aint)}` | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/dates.js:38:31:38:84 | `Time i ... aint)}` | enclosingFunctionBody | taint decodeURIComponent window location hash substring 1 dateFns DateFnsAdapter luxon LuxonAdapter moment MomentAdapter dayjs DayJSAdapter document body innerHTML Time is  dateFns formatByString Date taint document body innerHTML Time is  luxon formatByString luxon date taint document body innerHTML Time is  moment formatByString moment date taint document body innerHTML Time is  dayjs formatByString dayjs date taint |
+| autogenerated/Xss/DomBasedXss/dates.js:38:31:38:84 | `Time i ... aint)}` | enclosingFunctionName | dateio |
+| autogenerated/Xss/DomBasedXss/dates.js:38:31:38:84 | `Time i ... aint)}` | fileImports | @date-io/date-fns @date-io/dayjs @date-io/luxon @date-io/moment date-fns date-fns/esm date-fns/fp dateformat dayjs luxon moment |
+| autogenerated/Xss/DomBasedXss/dates.js:38:31:38:84 | `Time i ... aint)}` | receiverName |  |
+| autogenerated/Xss/DomBasedXss/dates.js:38:31:38:84 | `Time i ... aint)}` | stringConcatenatedWith |  |
+| autogenerated/Xss/DomBasedXss/dates.js:39:31:39:86 | `Time i ... aint)}` | CalleeFlexibleAccessPath |  |
+| autogenerated/Xss/DomBasedXss/dates.js:39:31:39:86 | `Time i ... aint)}` | InputAccessPathFromCallee |  |
+| autogenerated/Xss/DomBasedXss/dates.js:39:31:39:86 | `Time i ... aint)}` | InputArgumentIndex |  |
+| autogenerated/Xss/DomBasedXss/dates.js:39:31:39:86 | `Time i ... aint)}` | assignedToPropName | innerHTML |
+| autogenerated/Xss/DomBasedXss/dates.js:39:31:39:86 | `Time i ... aint)}` | calleeImports |  |
+| autogenerated/Xss/DomBasedXss/dates.js:39:31:39:86 | `Time i ... aint)}` | contextFunctionInterfaces | dateio()\ndateio2()\nluxon()\nmain() |
+| autogenerated/Xss/DomBasedXss/dates.js:39:31:39:86 | `Time i ... aint)}` | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/dates.js:39:31:39:86 | `Time i ... aint)}` | enclosingFunctionBody | taint decodeURIComponent window location hash substring 1 dateFns DateFnsAdapter luxon LuxonAdapter moment MomentAdapter dayjs DayJSAdapter document body innerHTML Time is  dateFns formatByString Date taint document body innerHTML Time is  luxon formatByString luxon date taint document body innerHTML Time is  moment formatByString moment date taint document body innerHTML Time is  dayjs formatByString dayjs date taint |
+| autogenerated/Xss/DomBasedXss/dates.js:39:31:39:86 | `Time i ... aint)}` | enclosingFunctionName | dateio |
+| autogenerated/Xss/DomBasedXss/dates.js:39:31:39:86 | `Time i ... aint)}` | fileImports | @date-io/date-fns @date-io/dayjs @date-io/luxon @date-io/moment date-fns date-fns/esm date-fns/fp dateformat dayjs luxon moment |
+| autogenerated/Xss/DomBasedXss/dates.js:39:31:39:86 | `Time i ... aint)}` | receiverName |  |
+| autogenerated/Xss/DomBasedXss/dates.js:39:31:39:86 | `Time i ... aint)}` | stringConcatenatedWith |  |
+| autogenerated/Xss/DomBasedXss/dates.js:40:31:40:84 | `Time i ... aint)}` | CalleeFlexibleAccessPath |  |
+| autogenerated/Xss/DomBasedXss/dates.js:40:31:40:84 | `Time i ... aint)}` | InputAccessPathFromCallee |  |
+| autogenerated/Xss/DomBasedXss/dates.js:40:31:40:84 | `Time i ... aint)}` | InputArgumentIndex |  |
+| autogenerated/Xss/DomBasedXss/dates.js:40:31:40:84 | `Time i ... aint)}` | assignedToPropName | innerHTML |
+| autogenerated/Xss/DomBasedXss/dates.js:40:31:40:84 | `Time i ... aint)}` | calleeImports |  |
+| autogenerated/Xss/DomBasedXss/dates.js:40:31:40:84 | `Time i ... aint)}` | contextFunctionInterfaces | dateio()\ndateio2()\nluxon()\nmain() |
+| autogenerated/Xss/DomBasedXss/dates.js:40:31:40:84 | `Time i ... aint)}` | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/dates.js:40:31:40:84 | `Time i ... aint)}` | enclosingFunctionBody | taint decodeURIComponent window location hash substring 1 dateFns DateFnsAdapter luxon LuxonAdapter moment MomentAdapter dayjs DayJSAdapter document body innerHTML Time is  dateFns formatByString Date taint document body innerHTML Time is  luxon formatByString luxon date taint document body innerHTML Time is  moment formatByString moment date taint document body innerHTML Time is  dayjs formatByString dayjs date taint |
+| autogenerated/Xss/DomBasedXss/dates.js:40:31:40:84 | `Time i ... aint)}` | enclosingFunctionName | dateio |
+| autogenerated/Xss/DomBasedXss/dates.js:40:31:40:84 | `Time i ... aint)}` | fileImports | @date-io/date-fns @date-io/dayjs @date-io/luxon @date-io/moment date-fns date-fns/esm date-fns/fp dateformat dayjs luxon moment |
+| autogenerated/Xss/DomBasedXss/dates.js:40:31:40:84 | `Time i ... aint)}` | receiverName |  |
+| autogenerated/Xss/DomBasedXss/dates.js:40:31:40:84 | `Time i ... aint)}` | stringConcatenatedWith |  |
+| autogenerated/Xss/DomBasedXss/dates.js:48:31:48:90 | `Time i ... aint)}` | CalleeFlexibleAccessPath |  |
+| autogenerated/Xss/DomBasedXss/dates.js:48:31:48:90 | `Time i ... aint)}` | InputAccessPathFromCallee |  |
+| autogenerated/Xss/DomBasedXss/dates.js:48:31:48:90 | `Time i ... aint)}` | InputArgumentIndex |  |
+| autogenerated/Xss/DomBasedXss/dates.js:48:31:48:90 | `Time i ... aint)}` | assignedToPropName | innerHTML |
+| autogenerated/Xss/DomBasedXss/dates.js:48:31:48:90 | `Time i ... aint)}` | calleeImports |  |
+| autogenerated/Xss/DomBasedXss/dates.js:48:31:48:90 | `Time i ... aint)}` | contextFunctionInterfaces | dateio()\ndateio2()\nluxon()\nmain() |
+| autogenerated/Xss/DomBasedXss/dates.js:48:31:48:90 | `Time i ... aint)}` | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/dates.js:48:31:48:90 | `Time i ... aint)}` | enclosingFunctionBody | taint decodeURIComponent window location hash substring 1 document body innerHTML Time is  DateTime now plus years 1 toFormat taint document body innerHTML Time is  DateTime setLocale fr toFormat taint document body innerHTML Time is  DateTime fromISO 2020-01-01 startOf day toFormat taint |
+| autogenerated/Xss/DomBasedXss/dates.js:48:31:48:90 | `Time i ... aint)}` | enclosingFunctionName | luxon |
+| autogenerated/Xss/DomBasedXss/dates.js:48:31:48:90 | `Time i ... aint)}` | fileImports | @date-io/date-fns @date-io/dayjs @date-io/luxon @date-io/moment date-fns date-fns/esm date-fns/fp dateformat dayjs luxon moment |
+| autogenerated/Xss/DomBasedXss/dates.js:48:31:48:90 | `Time i ... aint)}` | receiverName |  |
+| autogenerated/Xss/DomBasedXss/dates.js:48:31:48:90 | `Time i ... aint)}` | stringConcatenatedWith |  |
+| autogenerated/Xss/DomBasedXss/dates.js:49:31:49:89 | `Time i ... aint)}` | CalleeFlexibleAccessPath |  |
+| autogenerated/Xss/DomBasedXss/dates.js:49:31:49:89 | `Time i ... aint)}` | InputAccessPathFromCallee |  |
+| autogenerated/Xss/DomBasedXss/dates.js:49:31:49:89 | `Time i ... aint)}` | InputArgumentIndex |  |
+| autogenerated/Xss/DomBasedXss/dates.js:49:31:49:89 | `Time i ... aint)}` | assignedToPropName | innerHTML |
+| autogenerated/Xss/DomBasedXss/dates.js:49:31:49:89 | `Time i ... aint)}` | calleeImports |  |
+| autogenerated/Xss/DomBasedXss/dates.js:49:31:49:89 | `Time i ... aint)}` | contextFunctionInterfaces | dateio()\ndateio2()\nluxon()\nmain() |
+| autogenerated/Xss/DomBasedXss/dates.js:49:31:49:89 | `Time i ... aint)}` | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/dates.js:49:31:49:89 | `Time i ... aint)}` | enclosingFunctionBody | taint decodeURIComponent window location hash substring 1 document body innerHTML Time is  DateTime now plus years 1 toFormat taint document body innerHTML Time is  DateTime setLocale fr toFormat taint document body innerHTML Time is  DateTime fromISO 2020-01-01 startOf day toFormat taint |
+| autogenerated/Xss/DomBasedXss/dates.js:49:31:49:89 | `Time i ... aint)}` | enclosingFunctionName | luxon |
+| autogenerated/Xss/DomBasedXss/dates.js:49:31:49:89 | `Time i ... aint)}` | fileImports | @date-io/date-fns @date-io/dayjs @date-io/luxon @date-io/moment date-fns date-fns/esm date-fns/fp dateformat dayjs luxon moment |
+| autogenerated/Xss/DomBasedXss/dates.js:49:31:49:89 | `Time i ... aint)}` | receiverName |  |
+| autogenerated/Xss/DomBasedXss/dates.js:49:31:49:89 | `Time i ... aint)}` | stringConcatenatedWith |  |
+| autogenerated/Xss/DomBasedXss/dates.js:50:31:50:104 | `Time i ... aint)}` | CalleeFlexibleAccessPath |  |
+| autogenerated/Xss/DomBasedXss/dates.js:50:31:50:104 | `Time i ... aint)}` | InputAccessPathFromCallee |  |
+| autogenerated/Xss/DomBasedXss/dates.js:50:31:50:104 | `Time i ... aint)}` | InputArgumentIndex |  |
+| autogenerated/Xss/DomBasedXss/dates.js:50:31:50:104 | `Time i ... aint)}` | assignedToPropName | innerHTML |
+| autogenerated/Xss/DomBasedXss/dates.js:50:31:50:104 | `Time i ... aint)}` | calleeImports |  |
+| autogenerated/Xss/DomBasedXss/dates.js:50:31:50:104 | `Time i ... aint)}` | contextFunctionInterfaces | dateio()\ndateio2()\nluxon()\nmain() |
+| autogenerated/Xss/DomBasedXss/dates.js:50:31:50:104 | `Time i ... aint)}` | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/dates.js:50:31:50:104 | `Time i ... aint)}` | enclosingFunctionBody | taint decodeURIComponent window location hash substring 1 document body innerHTML Time is  DateTime now plus years 1 toFormat taint document body innerHTML Time is  DateTime setLocale fr toFormat taint document body innerHTML Time is  DateTime fromISO 2020-01-01 startOf day toFormat taint |
+| autogenerated/Xss/DomBasedXss/dates.js:50:31:50:104 | `Time i ... aint)}` | enclosingFunctionName | luxon |
+| autogenerated/Xss/DomBasedXss/dates.js:50:31:50:104 | `Time i ... aint)}` | fileImports | @date-io/date-fns @date-io/dayjs @date-io/luxon @date-io/moment date-fns date-fns/esm date-fns/fp dateformat dayjs luxon moment |
+| autogenerated/Xss/DomBasedXss/dates.js:50:31:50:104 | `Time i ... aint)}` | receiverName |  |
+| autogenerated/Xss/DomBasedXss/dates.js:50:31:50:104 | `Time i ... aint)}` | stringConcatenatedWith |  |
+| autogenerated/Xss/DomBasedXss/dates.js:57:31:57:101 | `Time i ... aint)}` | CalleeFlexibleAccessPath |  |
+| autogenerated/Xss/DomBasedXss/dates.js:57:31:57:101 | `Time i ... aint)}` | InputAccessPathFromCallee |  |
+| autogenerated/Xss/DomBasedXss/dates.js:57:31:57:101 | `Time i ... aint)}` | InputArgumentIndex |  |
+| autogenerated/Xss/DomBasedXss/dates.js:57:31:57:101 | `Time i ... aint)}` | assignedToPropName | innerHTML |
+| autogenerated/Xss/DomBasedXss/dates.js:57:31:57:101 | `Time i ... aint)}` | calleeImports |  |
+| autogenerated/Xss/DomBasedXss/dates.js:57:31:57:101 | `Time i ... aint)}` | contextFunctionInterfaces | dateio()\ndateio2()\nluxon()\nmain() |
+| autogenerated/Xss/DomBasedXss/dates.js:57:31:57:101 | `Time i ... aint)}` | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/dates.js:57:31:57:101 | `Time i ... aint)}` | enclosingFunctionBody | taint decodeURIComponent window location hash substring 1 moment MomentAdapter document body innerHTML Time is  moment addDays moment date 2020-06-21 1 format taint luxon LuxonAdapter document body innerHTML Time is  luxon endOfDay luxon date toFormat taint dayjs DayJSAdapter document body innerHTML Time is  dayjs setHours dayjs date 4 format taint |
+| autogenerated/Xss/DomBasedXss/dates.js:57:31:57:101 | `Time i ... aint)}` | enclosingFunctionName | dateio2 |
+| autogenerated/Xss/DomBasedXss/dates.js:57:31:57:101 | `Time i ... aint)}` | fileImports | @date-io/date-fns @date-io/dayjs @date-io/luxon @date-io/moment date-fns date-fns/esm date-fns/fp dateformat dayjs luxon moment |
+| autogenerated/Xss/DomBasedXss/dates.js:57:31:57:101 | `Time i ... aint)}` | receiverName |  |
+| autogenerated/Xss/DomBasedXss/dates.js:57:31:57:101 | `Time i ... aint)}` | stringConcatenatedWith |  |
+| autogenerated/Xss/DomBasedXss/dates.js:59:31:59:87 | `Time i ... aint)}` | CalleeFlexibleAccessPath |  |
+| autogenerated/Xss/DomBasedXss/dates.js:59:31:59:87 | `Time i ... aint)}` | InputAccessPathFromCallee |  |
+| autogenerated/Xss/DomBasedXss/dates.js:59:31:59:87 | `Time i ... aint)}` | InputArgumentIndex |  |
+| autogenerated/Xss/DomBasedXss/dates.js:59:31:59:87 | `Time i ... aint)}` | assignedToPropName | innerHTML |
+| autogenerated/Xss/DomBasedXss/dates.js:59:31:59:87 | `Time i ... aint)}` | calleeImports |  |
+| autogenerated/Xss/DomBasedXss/dates.js:59:31:59:87 | `Time i ... aint)}` | contextFunctionInterfaces | dateio()\ndateio2()\nluxon()\nmain() |
+| autogenerated/Xss/DomBasedXss/dates.js:59:31:59:87 | `Time i ... aint)}` | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/dates.js:59:31:59:87 | `Time i ... aint)}` | enclosingFunctionBody | taint decodeURIComponent window location hash substring 1 moment MomentAdapter document body innerHTML Time is  moment addDays moment date 2020-06-21 1 format taint luxon LuxonAdapter document body innerHTML Time is  luxon endOfDay luxon date toFormat taint dayjs DayJSAdapter document body innerHTML Time is  dayjs setHours dayjs date 4 format taint |
+| autogenerated/Xss/DomBasedXss/dates.js:59:31:59:87 | `Time i ... aint)}` | enclosingFunctionName | dateio2 |
+| autogenerated/Xss/DomBasedXss/dates.js:59:31:59:87 | `Time i ... aint)}` | fileImports | @date-io/date-fns @date-io/dayjs @date-io/luxon @date-io/moment date-fns date-fns/esm date-fns/fp dateformat dayjs luxon moment |
+| autogenerated/Xss/DomBasedXss/dates.js:59:31:59:87 | `Time i ... aint)}` | receiverName |  |
+| autogenerated/Xss/DomBasedXss/dates.js:59:31:59:87 | `Time i ... aint)}` | stringConcatenatedWith |  |
+| autogenerated/Xss/DomBasedXss/dates.js:61:31:61:88 | `Time i ... aint)}` | CalleeFlexibleAccessPath |  |
+| autogenerated/Xss/DomBasedXss/dates.js:61:31:61:88 | `Time i ... aint)}` | InputAccessPathFromCallee |  |
+| autogenerated/Xss/DomBasedXss/dates.js:61:31:61:88 | `Time i ... aint)}` | InputArgumentIndex |  |
+| autogenerated/Xss/DomBasedXss/dates.js:61:31:61:88 | `Time i ... aint)}` | assignedToPropName | innerHTML |
+| autogenerated/Xss/DomBasedXss/dates.js:61:31:61:88 | `Time i ... aint)}` | calleeImports |  |
+| autogenerated/Xss/DomBasedXss/dates.js:61:31:61:88 | `Time i ... aint)}` | contextFunctionInterfaces | dateio()\ndateio2()\nluxon()\nmain() |
+| autogenerated/Xss/DomBasedXss/dates.js:61:31:61:88 | `Time i ... aint)}` | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/dates.js:61:31:61:88 | `Time i ... aint)}` | enclosingFunctionBody | taint decodeURIComponent window location hash substring 1 moment MomentAdapter document body innerHTML Time is  moment addDays moment date 2020-06-21 1 format taint luxon LuxonAdapter document body innerHTML Time is  luxon endOfDay luxon date toFormat taint dayjs DayJSAdapter document body innerHTML Time is  dayjs setHours dayjs date 4 format taint |
+| autogenerated/Xss/DomBasedXss/dates.js:61:31:61:88 | `Time i ... aint)}` | enclosingFunctionName | dateio2 |
+| autogenerated/Xss/DomBasedXss/dates.js:61:31:61:88 | `Time i ... aint)}` | fileImports | @date-io/date-fns @date-io/dayjs @date-io/luxon @date-io/moment date-fns date-fns/esm date-fns/fp dateformat dayjs luxon moment |
+| autogenerated/Xss/DomBasedXss/dates.js:61:31:61:88 | `Time i ... aint)}` | receiverName |  |
+| autogenerated/Xss/DomBasedXss/dates.js:61:31:61:88 | `Time i ... aint)}` | stringConcatenatedWith |  |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:1:22:1:25 | drop | CalleeFlexibleAccessPath | $().on |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:1:22:1:25 | drop | InputAccessPathFromCallee |  |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:1:22:1:25 | drop | InputArgumentIndex | 1 |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:1:22:1:25 | drop | assignedToPropName |  |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:1:22:1:25 | drop | calleeImports |  |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:1:22:1:25 | drop | contextFunctionInterfaces | drop(e)\ngetDropData(e)\ninstall(el)\nondrop(e) |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:1:22:1:25 | drop | contextSurroundingFunctionParameters |  |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:1:22:1:25 | drop | enclosingFunctionBody |  |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:1:22:1:25 | drop | enclosingFunctionName |  |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:1:22:1:25 | drop | fileImports |  |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:1:22:1:25 | drop | receiverName |  |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:1:22:1:25 | drop | stringConcatenatedWith |  |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:15:25:15:28 | html | CalleeFlexibleAccessPath |  |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:15:25:15:28 | html | InputAccessPathFromCallee |  |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:15:25:15:28 | html | InputArgumentIndex |  |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:15:25:15:28 | html | assignedToPropName | innerHTML |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:15:25:15:28 | html | calleeImports |  |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:15:25:15:28 | html | contextFunctionInterfaces | drop(e)\ngetDropData(e)\ninstall(el)\nondrop(e) |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:15:25:15:28 | html | contextSurroundingFunctionParameters | (e) |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:15:25:15:28 | html | enclosingFunctionBody | e dataTransfer e originalEvent dataTransfer text dataTransfer getData text/plain html dataTransfer getData text/html text html e preventDefault div document createElement div html div innerHTML html div textContent text document body append div |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:15:25:15:28 | html | enclosingFunctionName | drop |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:15:25:15:28 | html | fileImports |  |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:15:25:15:28 | html | receiverName |  |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:15:25:15:28 | html | stringConcatenatedWith |  |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:24:23:24:57 | e.dataT ... /html') | CalleeFlexibleAccessPath | $().html |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:24:23:24:57 | e.dataT ... /html') | InputAccessPathFromCallee |  |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:24:23:24:57 | e.dataT ... /html') | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:24:23:24:57 | e.dataT ... /html') | assignedToPropName |  |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:24:23:24:57 | e.dataT ... /html') | calleeImports |  |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:24:23:24:57 | e.dataT ... /html') | contextFunctionInterfaces | drop(e)\ngetDropData(e)\ninstall(el)\nondrop(e) |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:24:23:24:57 | e.dataT ... /html') | contextSurroundingFunctionParameters | (el)\n(e) |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:24:23:24:57 | e.dataT ... /html') | enclosingFunctionBody | el HTMLElement el addEventListener drop e $ #id html e dataTransfer getData text/html |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:24:23:24:57 | e.dataT ... /html') | enclosingFunctionName | install |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:24:23:24:57 | e.dataT ... /html') | fileImports |  |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:24:23:24:57 | e.dataT ... /html') | receiverName |  |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:24:23:24:57 | e.dataT ... /html') | stringConcatenatedWith |  |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:29:19:29:53 | e.dataT ... /html') | CalleeFlexibleAccessPath | $().html |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:29:19:29:53 | e.dataT ... /html') | InputAccessPathFromCallee |  |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:29:19:29:53 | e.dataT ... /html') | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:29:19:29:53 | e.dataT ... /html') | assignedToPropName |  |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:29:19:29:53 | e.dataT ... /html') | calleeImports |  |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:29:19:29:53 | e.dataT ... /html') | contextFunctionInterfaces | drop(e)\ngetDropData(e)\ninstall(el)\nondrop(e) |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:29:19:29:53 | e.dataT ... /html') | contextSurroundingFunctionParameters | (e) |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:29:19:29:53 | e.dataT ... /html') | enclosingFunctionBody | e $ #id html e dataTransfer getData text/html |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:29:19:29:53 | e.dataT ... /html') | enclosingFunctionName | document.addEventListener#functionalargument |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:29:19:29:53 | e.dataT ... /html') | fileImports |  |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:29:19:29:53 | e.dataT ... /html') | receiverName |  |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:29:19:29:53 | e.dataT ... /html') | stringConcatenatedWith |  |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:32:24:34:1 | (e) =>  ... OT OK\\n} | CalleeFlexibleAccessPath | $().bind |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:32:24:34:1 | (e) =>  ... OT OK\\n} | InputAccessPathFromCallee |  |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:32:24:34:1 | (e) =>  ... OT OK\\n} | InputArgumentIndex | 1 |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:32:24:34:1 | (e) =>  ... OT OK\\n} | assignedToPropName |  |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:32:24:34:1 | (e) =>  ... OT OK\\n} | calleeImports |  |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:32:24:34:1 | (e) =>  ... OT OK\\n} | contextFunctionInterfaces | drop(e)\ngetDropData(e)\ninstall(el)\nondrop(e) |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:32:24:34:1 | (e) =>  ... OT OK\\n} | contextSurroundingFunctionParameters | (e) |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:32:24:34:1 | (e) =>  ... OT OK\\n} | enclosingFunctionBody |  |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:32:24:34:1 | (e) =>  ... OT OK\\n} | enclosingFunctionName |  |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:32:24:34:1 | (e) =>  ... OT OK\\n} | fileImports |  |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:32:24:34:1 | (e) =>  ... OT OK\\n} | receiverName |  |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:32:24:34:1 | (e) =>  ... OT OK\\n} | stringConcatenatedWith |  |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:33:19:33:67 | e.origi ... /html') | CalleeFlexibleAccessPath | $().html |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:33:19:33:67 | e.origi ... /html') | InputAccessPathFromCallee |  |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:33:19:33:67 | e.origi ... /html') | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:33:19:33:67 | e.origi ... /html') | assignedToPropName |  |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:33:19:33:67 | e.origi ... /html') | calleeImports |  |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:33:19:33:67 | e.origi ... /html') | contextFunctionInterfaces | drop(e)\ngetDropData(e)\ninstall(el)\nondrop(e) |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:33:19:33:67 | e.origi ... /html') | contextSurroundingFunctionParameters | (e) |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:33:19:33:67 | e.origi ... /html') | enclosingFunctionBody | e $ #id html e originalEvent dataTransfer getData text/html |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:33:19:33:67 | e.origi ... /html') | enclosingFunctionName | bind#functionalargument |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:33:19:33:67 | e.origi ... /html') | fileImports |  |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:33:19:33:67 | e.origi ... /html') | receiverName |  |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:33:19:33:67 | e.origi ... /html') | stringConcatenatedWith |  |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:50:29:50:32 | html | CalleeFlexibleAccessPath |  |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:50:29:50:32 | html | InputAccessPathFromCallee |  |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:50:29:50:32 | html | InputArgumentIndex |  |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:50:29:50:32 | html | assignedToPropName | innerHTML |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:50:29:50:32 | html | calleeImports |  |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:50:29:50:32 | html | contextFunctionInterfaces | drop(e)\ngetDropData(e)\ninstall(el)\nondrop(e) |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:50:29:50:32 | html | contextSurroundingFunctionParameters | ()\n(e) |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:50:29:50:32 | html | enclosingFunctionBody | div document createElement div div ondrop e DragEvent dataTransfer e dataTransfer text dataTransfer getData text/plain html dataTransfer getData text/html text html e preventDefault div document createElement div html div innerHTML html div textContent text document body append div |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:50:29:50:32 | html | enclosingFunctionName |  |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:50:29:50:32 | html | fileImports |  |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:50:29:50:32 | html | receiverName |  |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:50:29:50:32 | html | stringConcatenatedWith |  |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:73:29:73:39 | droppedHtml | CalleeFlexibleAccessPath |  |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:73:29:73:39 | droppedHtml | InputAccessPathFromCallee |  |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:73:29:73:39 | droppedHtml | InputArgumentIndex |  |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:73:29:73:39 | droppedHtml | assignedToPropName | innerHTML |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:73:29:73:39 | droppedHtml | calleeImports |  |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:73:29:73:39 | droppedHtml | contextFunctionInterfaces | drop(e)\ngetDropData(e)\ninstall(el)\nondrop(e) |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:73:29:73:39 | droppedHtml | contextSurroundingFunctionParameters | (e) |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:73:29:73:39 | droppedHtml | enclosingFunctionBody | e DragEvent Promise Array File dropItems Set File e dataTransfer files length 0 i 0 i e dataTransfer files length i file e dataTransfer files i e dataTransfer types includes text/html droppedHtml e dataTransfer getData text/html container document createElement html container innerHTML droppedHtml imgs container getElementsByTagName img imgs length 1 src imgs 0 0 src dropItems add src e dataTransfer types includes text/plain plainText e dataTransfer getData text/plain /^https?:\\/\\//i test plainText dropItems add plainText imageItems Array from dropItems imageItems |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:73:29:73:39 | droppedHtml | enclosingFunctionName | getDropData |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:73:29:73:39 | droppedHtml | fileImports |  |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:73:29:73:39 | droppedHtml | receiverName |  |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:73:29:73:39 | droppedHtml | stringConcatenatedWith |  |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:82:32:82:40 | plainText | CalleeFlexibleAccessPath | ?.test |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:82:32:82:40 | plainText | InputAccessPathFromCallee |  |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:82:32:82:40 | plainText | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:82:32:82:40 | plainText | assignedToPropName |  |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:82:32:82:40 | plainText | calleeImports |  |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:82:32:82:40 | plainText | contextFunctionInterfaces | drop(e)\ngetDropData(e)\ninstall(el)\nondrop(e) |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:82:32:82:40 | plainText | contextSurroundingFunctionParameters | (e) |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:82:32:82:40 | plainText | enclosingFunctionBody | e DragEvent Promise Array File dropItems Set File e dataTransfer files length 0 i 0 i e dataTransfer files length i file e dataTransfer files i e dataTransfer types includes text/html droppedHtml e dataTransfer getData text/html container document createElement html container innerHTML droppedHtml imgs container getElementsByTagName img imgs length 1 src imgs 0 0 src dropItems add src e dataTransfer types includes text/plain plainText e dataTransfer getData text/plain /^https?:\\/\\//i test plainText dropItems add plainText imageItems Array from dropItems imageItems |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:82:32:82:40 | plainText | enclosingFunctionName | getDropData |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:82:32:82:40 | plainText | fileImports |  |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:82:32:82:40 | plainText | receiverName |  |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:82:32:82:40 | plainText | stringConcatenatedWith |  |
 | autogenerated/Xss/DomBasedXss/encodeuri.js:3:5:3:57 | '<a hre ... ck</a>' | CalleeFlexibleAccessPath | $ |
 | autogenerated/Xss/DomBasedXss/encodeuri.js:3:5:3:57 | '<a hre ... ck</a>' | InputAccessPathFromCallee |  |
 | autogenerated/Xss/DomBasedXss/encodeuri.js:3:5:3:57 | '<a hre ... ck</a>' | InputArgumentIndex | 0 |
@@ -12032,7 +15150,7 @@ tokenFeatures
 | autogenerated/Xss/DomBasedXss/jquery.js:4:5:4:11 | tainted | calleeImports |  |
 | autogenerated/Xss/DomBasedXss/jquery.js:4:5:4:11 | tainted | contextFunctionInterfaces | test() |
 | autogenerated/Xss/DomBasedXss/jquery.js:4:5:4:11 | tainted | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/jquery.js:4:5:4:11 | tainted | enclosingFunctionBody | tainted document location search $ tainted $ body tainted $ . tainted $ <div id=" tainted "> $ body html XSS:  tainted $ window location hash $ <b> location toString </b> elm document getElementById x elm innerHTML decodeURIComponent window location hash elm innerHTML decodeURIComponent window location search elm innerHTML decodeURIComponent window location toString |
+| autogenerated/Xss/DomBasedXss/jquery.js:4:5:4:11 | tainted | enclosingFunctionBody | tainted document location search $ tainted $ body tainted $ . tainted $ <div id=" tainted "> $ body html XSS:  tainted $ window location hash $ <b> location toString </b> elm document getElementById x elm innerHTML decodeURIComponent window location hash elm innerHTML decodeURIComponent window location search elm innerHTML decodeURIComponent window location toString hash window location hash $ hash $ hash substring 1 $ hash substring 1 10 $ hash substr 1 $ hash slice 1 $ hash substring 0 10 $ hash replace #  $ window location search replace ?  $ hash replace !  $ hash replace blah  $ hash blah $ blah hash $ <b> hash </b> |
 | autogenerated/Xss/DomBasedXss/jquery.js:4:5:4:11 | tainted | enclosingFunctionName | test |
 | autogenerated/Xss/DomBasedXss/jquery.js:4:5:4:11 | tainted | fileImports |  |
 | autogenerated/Xss/DomBasedXss/jquery.js:4:5:4:11 | tainted | receiverName |  |
@@ -12044,7 +15162,7 @@ tokenFeatures
 | autogenerated/Xss/DomBasedXss/jquery.js:5:13:5:19 | tainted | calleeImports |  |
 | autogenerated/Xss/DomBasedXss/jquery.js:5:13:5:19 | tainted | contextFunctionInterfaces | test() |
 | autogenerated/Xss/DomBasedXss/jquery.js:5:13:5:19 | tainted | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/jquery.js:5:13:5:19 | tainted | enclosingFunctionBody | tainted document location search $ tainted $ body tainted $ . tainted $ <div id=" tainted "> $ body html XSS:  tainted $ window location hash $ <b> location toString </b> elm document getElementById x elm innerHTML decodeURIComponent window location hash elm innerHTML decodeURIComponent window location search elm innerHTML decodeURIComponent window location toString |
+| autogenerated/Xss/DomBasedXss/jquery.js:5:13:5:19 | tainted | enclosingFunctionBody | tainted document location search $ tainted $ body tainted $ . tainted $ <div id=" tainted "> $ body html XSS:  tainted $ window location hash $ <b> location toString </b> elm document getElementById x elm innerHTML decodeURIComponent window location hash elm innerHTML decodeURIComponent window location search elm innerHTML decodeURIComponent window location toString hash window location hash $ hash $ hash substring 1 $ hash substring 1 10 $ hash substr 1 $ hash slice 1 $ hash substring 0 10 $ hash replace #  $ window location search replace ?  $ hash replace !  $ hash replace blah  $ hash blah $ blah hash $ <b> hash </b> |
 | autogenerated/Xss/DomBasedXss/jquery.js:5:13:5:19 | tainted | enclosingFunctionName | test |
 | autogenerated/Xss/DomBasedXss/jquery.js:5:13:5:19 | tainted | fileImports |  |
 | autogenerated/Xss/DomBasedXss/jquery.js:5:13:5:19 | tainted | receiverName |  |
@@ -12056,7 +15174,7 @@ tokenFeatures
 | autogenerated/Xss/DomBasedXss/jquery.js:6:5:6:17 | "." + tainted | calleeImports |  |
 | autogenerated/Xss/DomBasedXss/jquery.js:6:5:6:17 | "." + tainted | contextFunctionInterfaces | test() |
 | autogenerated/Xss/DomBasedXss/jquery.js:6:5:6:17 | "." + tainted | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/jquery.js:6:5:6:17 | "." + tainted | enclosingFunctionBody | tainted document location search $ tainted $ body tainted $ . tainted $ <div id=" tainted "> $ body html XSS:  tainted $ window location hash $ <b> location toString </b> elm document getElementById x elm innerHTML decodeURIComponent window location hash elm innerHTML decodeURIComponent window location search elm innerHTML decodeURIComponent window location toString |
+| autogenerated/Xss/DomBasedXss/jquery.js:6:5:6:17 | "." + tainted | enclosingFunctionBody | tainted document location search $ tainted $ body tainted $ . tainted $ <div id=" tainted "> $ body html XSS:  tainted $ window location hash $ <b> location toString </b> elm document getElementById x elm innerHTML decodeURIComponent window location hash elm innerHTML decodeURIComponent window location search elm innerHTML decodeURIComponent window location toString hash window location hash $ hash $ hash substring 1 $ hash substring 1 10 $ hash substr 1 $ hash slice 1 $ hash substring 0 10 $ hash replace #  $ window location search replace ?  $ hash replace !  $ hash replace blah  $ hash blah $ blah hash $ <b> hash </b> |
 | autogenerated/Xss/DomBasedXss/jquery.js:6:5:6:17 | "." + tainted | enclosingFunctionName | test |
 | autogenerated/Xss/DomBasedXss/jquery.js:6:5:6:17 | "." + tainted | fileImports |  |
 | autogenerated/Xss/DomBasedXss/jquery.js:6:5:6:17 | "." + tainted | receiverName |  |
@@ -12068,7 +15186,7 @@ tokenFeatures
 | autogenerated/Xss/DomBasedXss/jquery.js:7:5:7:34 | "<div i ... + "\\">" | calleeImports |  |
 | autogenerated/Xss/DomBasedXss/jquery.js:7:5:7:34 | "<div i ... + "\\">" | contextFunctionInterfaces | test() |
 | autogenerated/Xss/DomBasedXss/jquery.js:7:5:7:34 | "<div i ... + "\\">" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/jquery.js:7:5:7:34 | "<div i ... + "\\">" | enclosingFunctionBody | tainted document location search $ tainted $ body tainted $ . tainted $ <div id=" tainted "> $ body html XSS:  tainted $ window location hash $ <b> location toString </b> elm document getElementById x elm innerHTML decodeURIComponent window location hash elm innerHTML decodeURIComponent window location search elm innerHTML decodeURIComponent window location toString |
+| autogenerated/Xss/DomBasedXss/jquery.js:7:5:7:34 | "<div i ... + "\\">" | enclosingFunctionBody | tainted document location search $ tainted $ body tainted $ . tainted $ <div id=" tainted "> $ body html XSS:  tainted $ window location hash $ <b> location toString </b> elm document getElementById x elm innerHTML decodeURIComponent window location hash elm innerHTML decodeURIComponent window location search elm innerHTML decodeURIComponent window location toString hash window location hash $ hash $ hash substring 1 $ hash substring 1 10 $ hash substr 1 $ hash slice 1 $ hash substring 0 10 $ hash replace #  $ window location search replace ?  $ hash replace !  $ hash replace blah  $ hash blah $ blah hash $ <b> hash </b> |
 | autogenerated/Xss/DomBasedXss/jquery.js:7:5:7:34 | "<div i ... + "\\">" | enclosingFunctionName | test |
 | autogenerated/Xss/DomBasedXss/jquery.js:7:5:7:34 | "<div i ... + "\\">" | fileImports |  |
 | autogenerated/Xss/DomBasedXss/jquery.js:7:5:7:34 | "<div i ... + "\\">" | receiverName |  |
@@ -12080,7 +15198,7 @@ tokenFeatures
 | autogenerated/Xss/DomBasedXss/jquery.js:8:18:8:34 | "XSS: " + tainted | calleeImports |  |
 | autogenerated/Xss/DomBasedXss/jquery.js:8:18:8:34 | "XSS: " + tainted | contextFunctionInterfaces | test() |
 | autogenerated/Xss/DomBasedXss/jquery.js:8:18:8:34 | "XSS: " + tainted | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/jquery.js:8:18:8:34 | "XSS: " + tainted | enclosingFunctionBody | tainted document location search $ tainted $ body tainted $ . tainted $ <div id=" tainted "> $ body html XSS:  tainted $ window location hash $ <b> location toString </b> elm document getElementById x elm innerHTML decodeURIComponent window location hash elm innerHTML decodeURIComponent window location search elm innerHTML decodeURIComponent window location toString |
+| autogenerated/Xss/DomBasedXss/jquery.js:8:18:8:34 | "XSS: " + tainted | enclosingFunctionBody | tainted document location search $ tainted $ body tainted $ . tainted $ <div id=" tainted "> $ body html XSS:  tainted $ window location hash $ <b> location toString </b> elm document getElementById x elm innerHTML decodeURIComponent window location hash elm innerHTML decodeURIComponent window location search elm innerHTML decodeURIComponent window location toString hash window location hash $ hash $ hash substring 1 $ hash substring 1 10 $ hash substr 1 $ hash slice 1 $ hash substring 0 10 $ hash replace #  $ window location search replace ?  $ hash replace !  $ hash replace blah  $ hash blah $ blah hash $ <b> hash </b> |
 | autogenerated/Xss/DomBasedXss/jquery.js:8:18:8:34 | "XSS: " + tainted | enclosingFunctionName | test |
 | autogenerated/Xss/DomBasedXss/jquery.js:8:18:8:34 | "XSS: " + tainted | fileImports |  |
 | autogenerated/Xss/DomBasedXss/jquery.js:8:18:8:34 | "XSS: " + tainted | receiverName |  |
@@ -12092,7 +15210,7 @@ tokenFeatures
 | autogenerated/Xss/DomBasedXss/jquery.js:9:5:9:24 | window.location.hash | calleeImports |  |
 | autogenerated/Xss/DomBasedXss/jquery.js:9:5:9:24 | window.location.hash | contextFunctionInterfaces | test() |
 | autogenerated/Xss/DomBasedXss/jquery.js:9:5:9:24 | window.location.hash | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/jquery.js:9:5:9:24 | window.location.hash | enclosingFunctionBody | tainted document location search $ tainted $ body tainted $ . tainted $ <div id=" tainted "> $ body html XSS:  tainted $ window location hash $ <b> location toString </b> elm document getElementById x elm innerHTML decodeURIComponent window location hash elm innerHTML decodeURIComponent window location search elm innerHTML decodeURIComponent window location toString |
+| autogenerated/Xss/DomBasedXss/jquery.js:9:5:9:24 | window.location.hash | enclosingFunctionBody | tainted document location search $ tainted $ body tainted $ . tainted $ <div id=" tainted "> $ body html XSS:  tainted $ window location hash $ <b> location toString </b> elm document getElementById x elm innerHTML decodeURIComponent window location hash elm innerHTML decodeURIComponent window location search elm innerHTML decodeURIComponent window location toString hash window location hash $ hash $ hash substring 1 $ hash substring 1 10 $ hash substr 1 $ hash slice 1 $ hash substring 0 10 $ hash replace #  $ window location search replace ?  $ hash replace !  $ hash replace blah  $ hash blah $ blah hash $ <b> hash </b> |
 | autogenerated/Xss/DomBasedXss/jquery.js:9:5:9:24 | window.location.hash | enclosingFunctionName | test |
 | autogenerated/Xss/DomBasedXss/jquery.js:9:5:9:24 | window.location.hash | fileImports |  |
 | autogenerated/Xss/DomBasedXss/jquery.js:9:5:9:24 | window.location.hash | receiverName |  |
@@ -12104,7 +15222,7 @@ tokenFeatures
 | autogenerated/Xss/DomBasedXss/jquery.js:10:5:10:40 | "<b>" + ...  "</b>" | calleeImports |  |
 | autogenerated/Xss/DomBasedXss/jquery.js:10:5:10:40 | "<b>" + ...  "</b>" | contextFunctionInterfaces | test() |
 | autogenerated/Xss/DomBasedXss/jquery.js:10:5:10:40 | "<b>" + ...  "</b>" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/jquery.js:10:5:10:40 | "<b>" + ...  "</b>" | enclosingFunctionBody | tainted document location search $ tainted $ body tainted $ . tainted $ <div id=" tainted "> $ body html XSS:  tainted $ window location hash $ <b> location toString </b> elm document getElementById x elm innerHTML decodeURIComponent window location hash elm innerHTML decodeURIComponent window location search elm innerHTML decodeURIComponent window location toString |
+| autogenerated/Xss/DomBasedXss/jquery.js:10:5:10:40 | "<b>" + ...  "</b>" | enclosingFunctionBody | tainted document location search $ tainted $ body tainted $ . tainted $ <div id=" tainted "> $ body html XSS:  tainted $ window location hash $ <b> location toString </b> elm document getElementById x elm innerHTML decodeURIComponent window location hash elm innerHTML decodeURIComponent window location search elm innerHTML decodeURIComponent window location toString hash window location hash $ hash $ hash substring 1 $ hash substring 1 10 $ hash substr 1 $ hash slice 1 $ hash substring 0 10 $ hash replace #  $ window location search replace ?  $ hash replace !  $ hash replace blah  $ hash blah $ blah hash $ <b> hash </b> |
 | autogenerated/Xss/DomBasedXss/jquery.js:10:5:10:40 | "<b>" + ...  "</b>" | enclosingFunctionName | test |
 | autogenerated/Xss/DomBasedXss/jquery.js:10:5:10:40 | "<b>" + ...  "</b>" | fileImports |  |
 | autogenerated/Xss/DomBasedXss/jquery.js:10:5:10:40 | "<b>" + ...  "</b>" | receiverName |  |
@@ -12116,7 +15234,7 @@ tokenFeatures
 | autogenerated/Xss/DomBasedXss/jquery.js:14:19:14:58 | decodeU ... n.hash) | calleeImports |  |
 | autogenerated/Xss/DomBasedXss/jquery.js:14:19:14:58 | decodeU ... n.hash) | contextFunctionInterfaces | test() |
 | autogenerated/Xss/DomBasedXss/jquery.js:14:19:14:58 | decodeU ... n.hash) | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/jquery.js:14:19:14:58 | decodeU ... n.hash) | enclosingFunctionBody | tainted document location search $ tainted $ body tainted $ . tainted $ <div id=" tainted "> $ body html XSS:  tainted $ window location hash $ <b> location toString </b> elm document getElementById x elm innerHTML decodeURIComponent window location hash elm innerHTML decodeURIComponent window location search elm innerHTML decodeURIComponent window location toString |
+| autogenerated/Xss/DomBasedXss/jquery.js:14:19:14:58 | decodeU ... n.hash) | enclosingFunctionBody | tainted document location search $ tainted $ body tainted $ . tainted $ <div id=" tainted "> $ body html XSS:  tainted $ window location hash $ <b> location toString </b> elm document getElementById x elm innerHTML decodeURIComponent window location hash elm innerHTML decodeURIComponent window location search elm innerHTML decodeURIComponent window location toString hash window location hash $ hash $ hash substring 1 $ hash substring 1 10 $ hash substr 1 $ hash slice 1 $ hash substring 0 10 $ hash replace #  $ window location search replace ?  $ hash replace !  $ hash replace blah  $ hash blah $ blah hash $ <b> hash </b> |
 | autogenerated/Xss/DomBasedXss/jquery.js:14:19:14:58 | decodeU ... n.hash) | enclosingFunctionName | test |
 | autogenerated/Xss/DomBasedXss/jquery.js:14:19:14:58 | decodeU ... n.hash) | fileImports |  |
 | autogenerated/Xss/DomBasedXss/jquery.js:14:19:14:58 | decodeU ... n.hash) | receiverName |  |
@@ -12128,7 +15246,7 @@ tokenFeatures
 | autogenerated/Xss/DomBasedXss/jquery.js:15:19:15:60 | decodeU ... search) | calleeImports |  |
 | autogenerated/Xss/DomBasedXss/jquery.js:15:19:15:60 | decodeU ... search) | contextFunctionInterfaces | test() |
 | autogenerated/Xss/DomBasedXss/jquery.js:15:19:15:60 | decodeU ... search) | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/jquery.js:15:19:15:60 | decodeU ... search) | enclosingFunctionBody | tainted document location search $ tainted $ body tainted $ . tainted $ <div id=" tainted "> $ body html XSS:  tainted $ window location hash $ <b> location toString </b> elm document getElementById x elm innerHTML decodeURIComponent window location hash elm innerHTML decodeURIComponent window location search elm innerHTML decodeURIComponent window location toString |
+| autogenerated/Xss/DomBasedXss/jquery.js:15:19:15:60 | decodeU ... search) | enclosingFunctionBody | tainted document location search $ tainted $ body tainted $ . tainted $ <div id=" tainted "> $ body html XSS:  tainted $ window location hash $ <b> location toString </b> elm document getElementById x elm innerHTML decodeURIComponent window location hash elm innerHTML decodeURIComponent window location search elm innerHTML decodeURIComponent window location toString hash window location hash $ hash $ hash substring 1 $ hash substring 1 10 $ hash substr 1 $ hash slice 1 $ hash substring 0 10 $ hash replace #  $ window location search replace ?  $ hash replace !  $ hash replace blah  $ hash blah $ blah hash $ <b> hash </b> |
 | autogenerated/Xss/DomBasedXss/jquery.js:15:19:15:60 | decodeU ... search) | enclosingFunctionName | test |
 | autogenerated/Xss/DomBasedXss/jquery.js:15:19:15:60 | decodeU ... search) | fileImports |  |
 | autogenerated/Xss/DomBasedXss/jquery.js:15:19:15:60 | decodeU ... search) | receiverName |  |
@@ -12140,11 +15258,167 @@ tokenFeatures
 | autogenerated/Xss/DomBasedXss/jquery.js:16:19:16:64 | decodeU ... ring()) | calleeImports |  |
 | autogenerated/Xss/DomBasedXss/jquery.js:16:19:16:64 | decodeU ... ring()) | contextFunctionInterfaces | test() |
 | autogenerated/Xss/DomBasedXss/jquery.js:16:19:16:64 | decodeU ... ring()) | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/DomBasedXss/jquery.js:16:19:16:64 | decodeU ... ring()) | enclosingFunctionBody | tainted document location search $ tainted $ body tainted $ . tainted $ <div id=" tainted "> $ body html XSS:  tainted $ window location hash $ <b> location toString </b> elm document getElementById x elm innerHTML decodeURIComponent window location hash elm innerHTML decodeURIComponent window location search elm innerHTML decodeURIComponent window location toString |
+| autogenerated/Xss/DomBasedXss/jquery.js:16:19:16:64 | decodeU ... ring()) | enclosingFunctionBody | tainted document location search $ tainted $ body tainted $ . tainted $ <div id=" tainted "> $ body html XSS:  tainted $ window location hash $ <b> location toString </b> elm document getElementById x elm innerHTML decodeURIComponent window location hash elm innerHTML decodeURIComponent window location search elm innerHTML decodeURIComponent window location toString hash window location hash $ hash $ hash substring 1 $ hash substring 1 10 $ hash substr 1 $ hash slice 1 $ hash substring 0 10 $ hash replace #  $ window location search replace ?  $ hash replace !  $ hash replace blah  $ hash blah $ blah hash $ <b> hash </b> |
 | autogenerated/Xss/DomBasedXss/jquery.js:16:19:16:64 | decodeU ... ring()) | enclosingFunctionName | test |
 | autogenerated/Xss/DomBasedXss/jquery.js:16:19:16:64 | decodeU ... ring()) | fileImports |  |
 | autogenerated/Xss/DomBasedXss/jquery.js:16:19:16:64 | decodeU ... ring()) | receiverName |  |
 | autogenerated/Xss/DomBasedXss/jquery.js:16:19:16:64 | decodeU ... ring()) | stringConcatenatedWith |  |
+| autogenerated/Xss/DomBasedXss/jquery.js:19:5:19:8 | hash | CalleeFlexibleAccessPath | $ |
+| autogenerated/Xss/DomBasedXss/jquery.js:19:5:19:8 | hash | InputAccessPathFromCallee |  |
+| autogenerated/Xss/DomBasedXss/jquery.js:19:5:19:8 | hash | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/jquery.js:19:5:19:8 | hash | assignedToPropName |  |
+| autogenerated/Xss/DomBasedXss/jquery.js:19:5:19:8 | hash | calleeImports |  |
+| autogenerated/Xss/DomBasedXss/jquery.js:19:5:19:8 | hash | contextFunctionInterfaces | test() |
+| autogenerated/Xss/DomBasedXss/jquery.js:19:5:19:8 | hash | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/jquery.js:19:5:19:8 | hash | enclosingFunctionBody | tainted document location search $ tainted $ body tainted $ . tainted $ <div id=" tainted "> $ body html XSS:  tainted $ window location hash $ <b> location toString </b> elm document getElementById x elm innerHTML decodeURIComponent window location hash elm innerHTML decodeURIComponent window location search elm innerHTML decodeURIComponent window location toString hash window location hash $ hash $ hash substring 1 $ hash substring 1 10 $ hash substr 1 $ hash slice 1 $ hash substring 0 10 $ hash replace #  $ window location search replace ?  $ hash replace !  $ hash replace blah  $ hash blah $ blah hash $ <b> hash </b> |
+| autogenerated/Xss/DomBasedXss/jquery.js:19:5:19:8 | hash | enclosingFunctionName | test |
+| autogenerated/Xss/DomBasedXss/jquery.js:19:5:19:8 | hash | fileImports |  |
+| autogenerated/Xss/DomBasedXss/jquery.js:19:5:19:8 | hash | receiverName |  |
+| autogenerated/Xss/DomBasedXss/jquery.js:19:5:19:8 | hash | stringConcatenatedWith |  |
+| autogenerated/Xss/DomBasedXss/jquery.js:21:5:21:21 | hash.substring(1) | CalleeFlexibleAccessPath | $ |
+| autogenerated/Xss/DomBasedXss/jquery.js:21:5:21:21 | hash.substring(1) | InputAccessPathFromCallee |  |
+| autogenerated/Xss/DomBasedXss/jquery.js:21:5:21:21 | hash.substring(1) | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/jquery.js:21:5:21:21 | hash.substring(1) | assignedToPropName |  |
+| autogenerated/Xss/DomBasedXss/jquery.js:21:5:21:21 | hash.substring(1) | calleeImports |  |
+| autogenerated/Xss/DomBasedXss/jquery.js:21:5:21:21 | hash.substring(1) | contextFunctionInterfaces | test() |
+| autogenerated/Xss/DomBasedXss/jquery.js:21:5:21:21 | hash.substring(1) | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/jquery.js:21:5:21:21 | hash.substring(1) | enclosingFunctionBody | tainted document location search $ tainted $ body tainted $ . tainted $ <div id=" tainted "> $ body html XSS:  tainted $ window location hash $ <b> location toString </b> elm document getElementById x elm innerHTML decodeURIComponent window location hash elm innerHTML decodeURIComponent window location search elm innerHTML decodeURIComponent window location toString hash window location hash $ hash $ hash substring 1 $ hash substring 1 10 $ hash substr 1 $ hash slice 1 $ hash substring 0 10 $ hash replace #  $ window location search replace ?  $ hash replace !  $ hash replace blah  $ hash blah $ blah hash $ <b> hash </b> |
+| autogenerated/Xss/DomBasedXss/jquery.js:21:5:21:21 | hash.substring(1) | enclosingFunctionName | test |
+| autogenerated/Xss/DomBasedXss/jquery.js:21:5:21:21 | hash.substring(1) | fileImports |  |
+| autogenerated/Xss/DomBasedXss/jquery.js:21:5:21:21 | hash.substring(1) | receiverName |  |
+| autogenerated/Xss/DomBasedXss/jquery.js:21:5:21:21 | hash.substring(1) | stringConcatenatedWith |  |
+| autogenerated/Xss/DomBasedXss/jquery.js:22:5:22:25 | hash.su ... (1, 10) | CalleeFlexibleAccessPath | $ |
+| autogenerated/Xss/DomBasedXss/jquery.js:22:5:22:25 | hash.su ... (1, 10) | InputAccessPathFromCallee |  |
+| autogenerated/Xss/DomBasedXss/jquery.js:22:5:22:25 | hash.su ... (1, 10) | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/jquery.js:22:5:22:25 | hash.su ... (1, 10) | assignedToPropName |  |
+| autogenerated/Xss/DomBasedXss/jquery.js:22:5:22:25 | hash.su ... (1, 10) | calleeImports |  |
+| autogenerated/Xss/DomBasedXss/jquery.js:22:5:22:25 | hash.su ... (1, 10) | contextFunctionInterfaces | test() |
+| autogenerated/Xss/DomBasedXss/jquery.js:22:5:22:25 | hash.su ... (1, 10) | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/jquery.js:22:5:22:25 | hash.su ... (1, 10) | enclosingFunctionBody | tainted document location search $ tainted $ body tainted $ . tainted $ <div id=" tainted "> $ body html XSS:  tainted $ window location hash $ <b> location toString </b> elm document getElementById x elm innerHTML decodeURIComponent window location hash elm innerHTML decodeURIComponent window location search elm innerHTML decodeURIComponent window location toString hash window location hash $ hash $ hash substring 1 $ hash substring 1 10 $ hash substr 1 $ hash slice 1 $ hash substring 0 10 $ hash replace #  $ window location search replace ?  $ hash replace !  $ hash replace blah  $ hash blah $ blah hash $ <b> hash </b> |
+| autogenerated/Xss/DomBasedXss/jquery.js:22:5:22:25 | hash.su ... (1, 10) | enclosingFunctionName | test |
+| autogenerated/Xss/DomBasedXss/jquery.js:22:5:22:25 | hash.su ... (1, 10) | fileImports |  |
+| autogenerated/Xss/DomBasedXss/jquery.js:22:5:22:25 | hash.su ... (1, 10) | receiverName |  |
+| autogenerated/Xss/DomBasedXss/jquery.js:22:5:22:25 | hash.su ... (1, 10) | stringConcatenatedWith |  |
+| autogenerated/Xss/DomBasedXss/jquery.js:23:5:23:18 | hash.substr(1) | CalleeFlexibleAccessPath | $ |
+| autogenerated/Xss/DomBasedXss/jquery.js:23:5:23:18 | hash.substr(1) | InputAccessPathFromCallee |  |
+| autogenerated/Xss/DomBasedXss/jquery.js:23:5:23:18 | hash.substr(1) | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/jquery.js:23:5:23:18 | hash.substr(1) | assignedToPropName |  |
+| autogenerated/Xss/DomBasedXss/jquery.js:23:5:23:18 | hash.substr(1) | calleeImports |  |
+| autogenerated/Xss/DomBasedXss/jquery.js:23:5:23:18 | hash.substr(1) | contextFunctionInterfaces | test() |
+| autogenerated/Xss/DomBasedXss/jquery.js:23:5:23:18 | hash.substr(1) | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/jquery.js:23:5:23:18 | hash.substr(1) | enclosingFunctionBody | tainted document location search $ tainted $ body tainted $ . tainted $ <div id=" tainted "> $ body html XSS:  tainted $ window location hash $ <b> location toString </b> elm document getElementById x elm innerHTML decodeURIComponent window location hash elm innerHTML decodeURIComponent window location search elm innerHTML decodeURIComponent window location toString hash window location hash $ hash $ hash substring 1 $ hash substring 1 10 $ hash substr 1 $ hash slice 1 $ hash substring 0 10 $ hash replace #  $ window location search replace ?  $ hash replace !  $ hash replace blah  $ hash blah $ blah hash $ <b> hash </b> |
+| autogenerated/Xss/DomBasedXss/jquery.js:23:5:23:18 | hash.substr(1) | enclosingFunctionName | test |
+| autogenerated/Xss/DomBasedXss/jquery.js:23:5:23:18 | hash.substr(1) | fileImports |  |
+| autogenerated/Xss/DomBasedXss/jquery.js:23:5:23:18 | hash.substr(1) | receiverName |  |
+| autogenerated/Xss/DomBasedXss/jquery.js:23:5:23:18 | hash.substr(1) | stringConcatenatedWith |  |
+| autogenerated/Xss/DomBasedXss/jquery.js:24:5:24:17 | hash.slice(1) | CalleeFlexibleAccessPath | $ |
+| autogenerated/Xss/DomBasedXss/jquery.js:24:5:24:17 | hash.slice(1) | InputAccessPathFromCallee |  |
+| autogenerated/Xss/DomBasedXss/jquery.js:24:5:24:17 | hash.slice(1) | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/jquery.js:24:5:24:17 | hash.slice(1) | assignedToPropName |  |
+| autogenerated/Xss/DomBasedXss/jquery.js:24:5:24:17 | hash.slice(1) | calleeImports |  |
+| autogenerated/Xss/DomBasedXss/jquery.js:24:5:24:17 | hash.slice(1) | contextFunctionInterfaces | test() |
+| autogenerated/Xss/DomBasedXss/jquery.js:24:5:24:17 | hash.slice(1) | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/jquery.js:24:5:24:17 | hash.slice(1) | enclosingFunctionBody | tainted document location search $ tainted $ body tainted $ . tainted $ <div id=" tainted "> $ body html XSS:  tainted $ window location hash $ <b> location toString </b> elm document getElementById x elm innerHTML decodeURIComponent window location hash elm innerHTML decodeURIComponent window location search elm innerHTML decodeURIComponent window location toString hash window location hash $ hash $ hash substring 1 $ hash substring 1 10 $ hash substr 1 $ hash slice 1 $ hash substring 0 10 $ hash replace #  $ window location search replace ?  $ hash replace !  $ hash replace blah  $ hash blah $ blah hash $ <b> hash </b> |
+| autogenerated/Xss/DomBasedXss/jquery.js:24:5:24:17 | hash.slice(1) | enclosingFunctionName | test |
+| autogenerated/Xss/DomBasedXss/jquery.js:24:5:24:17 | hash.slice(1) | fileImports |  |
+| autogenerated/Xss/DomBasedXss/jquery.js:24:5:24:17 | hash.slice(1) | receiverName |  |
+| autogenerated/Xss/DomBasedXss/jquery.js:24:5:24:17 | hash.slice(1) | stringConcatenatedWith |  |
+| autogenerated/Xss/DomBasedXss/jquery.js:25:5:25:25 | hash.su ... (0, 10) | CalleeFlexibleAccessPath | $ |
+| autogenerated/Xss/DomBasedXss/jquery.js:25:5:25:25 | hash.su ... (0, 10) | InputAccessPathFromCallee |  |
+| autogenerated/Xss/DomBasedXss/jquery.js:25:5:25:25 | hash.su ... (0, 10) | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/jquery.js:25:5:25:25 | hash.su ... (0, 10) | assignedToPropName |  |
+| autogenerated/Xss/DomBasedXss/jquery.js:25:5:25:25 | hash.su ... (0, 10) | calleeImports |  |
+| autogenerated/Xss/DomBasedXss/jquery.js:25:5:25:25 | hash.su ... (0, 10) | contextFunctionInterfaces | test() |
+| autogenerated/Xss/DomBasedXss/jquery.js:25:5:25:25 | hash.su ... (0, 10) | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/jquery.js:25:5:25:25 | hash.su ... (0, 10) | enclosingFunctionBody | tainted document location search $ tainted $ body tainted $ . tainted $ <div id=" tainted "> $ body html XSS:  tainted $ window location hash $ <b> location toString </b> elm document getElementById x elm innerHTML decodeURIComponent window location hash elm innerHTML decodeURIComponent window location search elm innerHTML decodeURIComponent window location toString hash window location hash $ hash $ hash substring 1 $ hash substring 1 10 $ hash substr 1 $ hash slice 1 $ hash substring 0 10 $ hash replace #  $ window location search replace ?  $ hash replace !  $ hash replace blah  $ hash blah $ blah hash $ <b> hash </b> |
+| autogenerated/Xss/DomBasedXss/jquery.js:25:5:25:25 | hash.su ... (0, 10) | enclosingFunctionName | test |
+| autogenerated/Xss/DomBasedXss/jquery.js:25:5:25:25 | hash.su ... (0, 10) | fileImports |  |
+| autogenerated/Xss/DomBasedXss/jquery.js:25:5:25:25 | hash.su ... (0, 10) | receiverName |  |
+| autogenerated/Xss/DomBasedXss/jquery.js:25:5:25:25 | hash.su ... (0, 10) | stringConcatenatedWith |  |
+| autogenerated/Xss/DomBasedXss/jquery.js:27:5:27:25 | hash.re ... #', '') | CalleeFlexibleAccessPath | $ |
+| autogenerated/Xss/DomBasedXss/jquery.js:27:5:27:25 | hash.re ... #', '') | InputAccessPathFromCallee |  |
+| autogenerated/Xss/DomBasedXss/jquery.js:27:5:27:25 | hash.re ... #', '') | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/jquery.js:27:5:27:25 | hash.re ... #', '') | assignedToPropName |  |
+| autogenerated/Xss/DomBasedXss/jquery.js:27:5:27:25 | hash.re ... #', '') | calleeImports |  |
+| autogenerated/Xss/DomBasedXss/jquery.js:27:5:27:25 | hash.re ... #', '') | contextFunctionInterfaces | test() |
+| autogenerated/Xss/DomBasedXss/jquery.js:27:5:27:25 | hash.re ... #', '') | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/jquery.js:27:5:27:25 | hash.re ... #', '') | enclosingFunctionBody | tainted document location search $ tainted $ body tainted $ . tainted $ <div id=" tainted "> $ body html XSS:  tainted $ window location hash $ <b> location toString </b> elm document getElementById x elm innerHTML decodeURIComponent window location hash elm innerHTML decodeURIComponent window location search elm innerHTML decodeURIComponent window location toString hash window location hash $ hash $ hash substring 1 $ hash substring 1 10 $ hash substr 1 $ hash slice 1 $ hash substring 0 10 $ hash replace #  $ window location search replace ?  $ hash replace !  $ hash replace blah  $ hash blah $ blah hash $ <b> hash </b> |
+| autogenerated/Xss/DomBasedXss/jquery.js:27:5:27:25 | hash.re ... #', '') | enclosingFunctionName | test |
+| autogenerated/Xss/DomBasedXss/jquery.js:27:5:27:25 | hash.re ... #', '') | fileImports |  |
+| autogenerated/Xss/DomBasedXss/jquery.js:27:5:27:25 | hash.re ... #', '') | receiverName |  |
+| autogenerated/Xss/DomBasedXss/jquery.js:27:5:27:25 | hash.re ... #', '') | stringConcatenatedWith |  |
+| autogenerated/Xss/DomBasedXss/jquery.js:28:5:28:43 | window. ... ?', '') | CalleeFlexibleAccessPath | $ |
+| autogenerated/Xss/DomBasedXss/jquery.js:28:5:28:43 | window. ... ?', '') | InputAccessPathFromCallee |  |
+| autogenerated/Xss/DomBasedXss/jquery.js:28:5:28:43 | window. ... ?', '') | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/jquery.js:28:5:28:43 | window. ... ?', '') | assignedToPropName |  |
+| autogenerated/Xss/DomBasedXss/jquery.js:28:5:28:43 | window. ... ?', '') | calleeImports |  |
+| autogenerated/Xss/DomBasedXss/jquery.js:28:5:28:43 | window. ... ?', '') | contextFunctionInterfaces | test() |
+| autogenerated/Xss/DomBasedXss/jquery.js:28:5:28:43 | window. ... ?', '') | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/jquery.js:28:5:28:43 | window. ... ?', '') | enclosingFunctionBody | tainted document location search $ tainted $ body tainted $ . tainted $ <div id=" tainted "> $ body html XSS:  tainted $ window location hash $ <b> location toString </b> elm document getElementById x elm innerHTML decodeURIComponent window location hash elm innerHTML decodeURIComponent window location search elm innerHTML decodeURIComponent window location toString hash window location hash $ hash $ hash substring 1 $ hash substring 1 10 $ hash substr 1 $ hash slice 1 $ hash substring 0 10 $ hash replace #  $ window location search replace ?  $ hash replace !  $ hash replace blah  $ hash blah $ blah hash $ <b> hash </b> |
+| autogenerated/Xss/DomBasedXss/jquery.js:28:5:28:43 | window. ... ?', '') | enclosingFunctionName | test |
+| autogenerated/Xss/DomBasedXss/jquery.js:28:5:28:43 | window. ... ?', '') | fileImports |  |
+| autogenerated/Xss/DomBasedXss/jquery.js:28:5:28:43 | window. ... ?', '') | receiverName |  |
+| autogenerated/Xss/DomBasedXss/jquery.js:28:5:28:43 | window. ... ?', '') | stringConcatenatedWith |  |
+| autogenerated/Xss/DomBasedXss/jquery.js:29:5:29:25 | hash.re ... !', '') | CalleeFlexibleAccessPath | $ |
+| autogenerated/Xss/DomBasedXss/jquery.js:29:5:29:25 | hash.re ... !', '') | InputAccessPathFromCallee |  |
+| autogenerated/Xss/DomBasedXss/jquery.js:29:5:29:25 | hash.re ... !', '') | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/jquery.js:29:5:29:25 | hash.re ... !', '') | assignedToPropName |  |
+| autogenerated/Xss/DomBasedXss/jquery.js:29:5:29:25 | hash.re ... !', '') | calleeImports |  |
+| autogenerated/Xss/DomBasedXss/jquery.js:29:5:29:25 | hash.re ... !', '') | contextFunctionInterfaces | test() |
+| autogenerated/Xss/DomBasedXss/jquery.js:29:5:29:25 | hash.re ... !', '') | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/jquery.js:29:5:29:25 | hash.re ... !', '') | enclosingFunctionBody | tainted document location search $ tainted $ body tainted $ . tainted $ <div id=" tainted "> $ body html XSS:  tainted $ window location hash $ <b> location toString </b> elm document getElementById x elm innerHTML decodeURIComponent window location hash elm innerHTML decodeURIComponent window location search elm innerHTML decodeURIComponent window location toString hash window location hash $ hash $ hash substring 1 $ hash substring 1 10 $ hash substr 1 $ hash slice 1 $ hash substring 0 10 $ hash replace #  $ window location search replace ?  $ hash replace !  $ hash replace blah  $ hash blah $ blah hash $ <b> hash </b> |
+| autogenerated/Xss/DomBasedXss/jquery.js:29:5:29:25 | hash.re ... !', '') | enclosingFunctionName | test |
+| autogenerated/Xss/DomBasedXss/jquery.js:29:5:29:25 | hash.re ... !', '') | fileImports |  |
+| autogenerated/Xss/DomBasedXss/jquery.js:29:5:29:25 | hash.re ... !', '') | receiverName |  |
+| autogenerated/Xss/DomBasedXss/jquery.js:29:5:29:25 | hash.re ... !', '') | stringConcatenatedWith |  |
+| autogenerated/Xss/DomBasedXss/jquery.js:30:5:30:28 | hash.re ... h', '') | CalleeFlexibleAccessPath | $ |
+| autogenerated/Xss/DomBasedXss/jquery.js:30:5:30:28 | hash.re ... h', '') | InputAccessPathFromCallee |  |
+| autogenerated/Xss/DomBasedXss/jquery.js:30:5:30:28 | hash.re ... h', '') | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/jquery.js:30:5:30:28 | hash.re ... h', '') | assignedToPropName |  |
+| autogenerated/Xss/DomBasedXss/jquery.js:30:5:30:28 | hash.re ... h', '') | calleeImports |  |
+| autogenerated/Xss/DomBasedXss/jquery.js:30:5:30:28 | hash.re ... h', '') | contextFunctionInterfaces | test() |
+| autogenerated/Xss/DomBasedXss/jquery.js:30:5:30:28 | hash.re ... h', '') | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/jquery.js:30:5:30:28 | hash.re ... h', '') | enclosingFunctionBody | tainted document location search $ tainted $ body tainted $ . tainted $ <div id=" tainted "> $ body html XSS:  tainted $ window location hash $ <b> location toString </b> elm document getElementById x elm innerHTML decodeURIComponent window location hash elm innerHTML decodeURIComponent window location search elm innerHTML decodeURIComponent window location toString hash window location hash $ hash $ hash substring 1 $ hash substring 1 10 $ hash substr 1 $ hash slice 1 $ hash substring 0 10 $ hash replace #  $ window location search replace ?  $ hash replace !  $ hash replace blah  $ hash blah $ blah hash $ <b> hash </b> |
+| autogenerated/Xss/DomBasedXss/jquery.js:30:5:30:28 | hash.re ... h', '') | enclosingFunctionName | test |
+| autogenerated/Xss/DomBasedXss/jquery.js:30:5:30:28 | hash.re ... h', '') | fileImports |  |
+| autogenerated/Xss/DomBasedXss/jquery.js:30:5:30:28 | hash.re ... h', '') | receiverName |  |
+| autogenerated/Xss/DomBasedXss/jquery.js:30:5:30:28 | hash.re ... h', '') | stringConcatenatedWith |  |
+| autogenerated/Xss/DomBasedXss/jquery.js:32:5:32:17 | hash + 'blah' | CalleeFlexibleAccessPath | $ |
+| autogenerated/Xss/DomBasedXss/jquery.js:32:5:32:17 | hash + 'blah' | InputAccessPathFromCallee |  |
+| autogenerated/Xss/DomBasedXss/jquery.js:32:5:32:17 | hash + 'blah' | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/jquery.js:32:5:32:17 | hash + 'blah' | assignedToPropName |  |
+| autogenerated/Xss/DomBasedXss/jquery.js:32:5:32:17 | hash + 'blah' | calleeImports |  |
+| autogenerated/Xss/DomBasedXss/jquery.js:32:5:32:17 | hash + 'blah' | contextFunctionInterfaces | test() |
+| autogenerated/Xss/DomBasedXss/jquery.js:32:5:32:17 | hash + 'blah' | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/jquery.js:32:5:32:17 | hash + 'blah' | enclosingFunctionBody | tainted document location search $ tainted $ body tainted $ . tainted $ <div id=" tainted "> $ body html XSS:  tainted $ window location hash $ <b> location toString </b> elm document getElementById x elm innerHTML decodeURIComponent window location hash elm innerHTML decodeURIComponent window location search elm innerHTML decodeURIComponent window location toString hash window location hash $ hash $ hash substring 1 $ hash substring 1 10 $ hash substr 1 $ hash slice 1 $ hash substring 0 10 $ hash replace #  $ window location search replace ?  $ hash replace !  $ hash replace blah  $ hash blah $ blah hash $ <b> hash </b> |
+| autogenerated/Xss/DomBasedXss/jquery.js:32:5:32:17 | hash + 'blah' | enclosingFunctionName | test |
+| autogenerated/Xss/DomBasedXss/jquery.js:32:5:32:17 | hash + 'blah' | fileImports |  |
+| autogenerated/Xss/DomBasedXss/jquery.js:32:5:32:17 | hash + 'blah' | receiverName |  |
+| autogenerated/Xss/DomBasedXss/jquery.js:32:5:32:17 | hash + 'blah' | stringConcatenatedWith |  |
+| autogenerated/Xss/DomBasedXss/jquery.js:33:5:33:17 | 'blah' + hash | CalleeFlexibleAccessPath | $ |
+| autogenerated/Xss/DomBasedXss/jquery.js:33:5:33:17 | 'blah' + hash | InputAccessPathFromCallee |  |
+| autogenerated/Xss/DomBasedXss/jquery.js:33:5:33:17 | 'blah' + hash | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/jquery.js:33:5:33:17 | 'blah' + hash | assignedToPropName |  |
+| autogenerated/Xss/DomBasedXss/jquery.js:33:5:33:17 | 'blah' + hash | calleeImports |  |
+| autogenerated/Xss/DomBasedXss/jquery.js:33:5:33:17 | 'blah' + hash | contextFunctionInterfaces | test() |
+| autogenerated/Xss/DomBasedXss/jquery.js:33:5:33:17 | 'blah' + hash | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/jquery.js:33:5:33:17 | 'blah' + hash | enclosingFunctionBody | tainted document location search $ tainted $ body tainted $ . tainted $ <div id=" tainted "> $ body html XSS:  tainted $ window location hash $ <b> location toString </b> elm document getElementById x elm innerHTML decodeURIComponent window location hash elm innerHTML decodeURIComponent window location search elm innerHTML decodeURIComponent window location toString hash window location hash $ hash $ hash substring 1 $ hash substring 1 10 $ hash substr 1 $ hash slice 1 $ hash substring 0 10 $ hash replace #  $ window location search replace ?  $ hash replace !  $ hash replace blah  $ hash blah $ blah hash $ <b> hash </b> |
+| autogenerated/Xss/DomBasedXss/jquery.js:33:5:33:17 | 'blah' + hash | enclosingFunctionName | test |
+| autogenerated/Xss/DomBasedXss/jquery.js:33:5:33:17 | 'blah' + hash | fileImports |  |
+| autogenerated/Xss/DomBasedXss/jquery.js:33:5:33:17 | 'blah' + hash | receiverName |  |
+| autogenerated/Xss/DomBasedXss/jquery.js:33:5:33:17 | 'blah' + hash | stringConcatenatedWith |  |
+| autogenerated/Xss/DomBasedXss/jquery.js:34:5:34:25 | '<b>' + ...  '</b>' | CalleeFlexibleAccessPath | $ |
+| autogenerated/Xss/DomBasedXss/jquery.js:34:5:34:25 | '<b>' + ...  '</b>' | InputAccessPathFromCallee |  |
+| autogenerated/Xss/DomBasedXss/jquery.js:34:5:34:25 | '<b>' + ...  '</b>' | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/jquery.js:34:5:34:25 | '<b>' + ...  '</b>' | assignedToPropName |  |
+| autogenerated/Xss/DomBasedXss/jquery.js:34:5:34:25 | '<b>' + ...  '</b>' | calleeImports |  |
+| autogenerated/Xss/DomBasedXss/jquery.js:34:5:34:25 | '<b>' + ...  '</b>' | contextFunctionInterfaces | test() |
+| autogenerated/Xss/DomBasedXss/jquery.js:34:5:34:25 | '<b>' + ...  '</b>' | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/jquery.js:34:5:34:25 | '<b>' + ...  '</b>' | enclosingFunctionBody | tainted document location search $ tainted $ body tainted $ . tainted $ <div id=" tainted "> $ body html XSS:  tainted $ window location hash $ <b> location toString </b> elm document getElementById x elm innerHTML decodeURIComponent window location hash elm innerHTML decodeURIComponent window location search elm innerHTML decodeURIComponent window location toString hash window location hash $ hash $ hash substring 1 $ hash substring 1 10 $ hash substr 1 $ hash slice 1 $ hash substring 0 10 $ hash replace #  $ window location search replace ?  $ hash replace !  $ hash replace blah  $ hash blah $ blah hash $ <b> hash </b> |
+| autogenerated/Xss/DomBasedXss/jquery.js:34:5:34:25 | '<b>' + ...  '</b>' | enclosingFunctionName | test |
+| autogenerated/Xss/DomBasedXss/jquery.js:34:5:34:25 | '<b>' + ...  '</b>' | fileImports |  |
+| autogenerated/Xss/DomBasedXss/jquery.js:34:5:34:25 | '<b>' + ...  '</b>' | receiverName |  |
+| autogenerated/Xss/DomBasedXss/jquery.js:34:5:34:25 | '<b>' + ...  '</b>' | stringConcatenatedWith |  |
 | autogenerated/Xss/DomBasedXss/jwt-server.js:11:19:11:29 | decoded.foo | CalleeFlexibleAccessPath | JSDOM |
 | autogenerated/Xss/DomBasedXss/jwt-server.js:11:19:11:29 | decoded.foo | InputAccessPathFromCallee |  |
 | autogenerated/Xss/DomBasedXss/jwt-server.js:11:19:11:29 | decoded.foo | InputArgumentIndex | 0 |
@@ -12961,6 +16235,30 @@ tokenFeatures
 | autogenerated/Xss/DomBasedXss/translate.js:11:29:11:63 | transla ... term')] | fileImports |  |
 | autogenerated/Xss/DomBasedXss/translate.js:11:29:11:63 | transla ... term')] | receiverName |  |
 | autogenerated/Xss/DomBasedXss/translate.js:11:29:11:63 | transla ... term')] | stringConcatenatedWith |  |
+| autogenerated/Xss/DomBasedXss/trusted-types.js:2:71:2:71 | x | CalleeFlexibleAccessPath |  |
+| autogenerated/Xss/DomBasedXss/trusted-types.js:2:71:2:71 | x | InputAccessPathFromCallee |  |
+| autogenerated/Xss/DomBasedXss/trusted-types.js:2:71:2:71 | x | InputArgumentIndex |  |
+| autogenerated/Xss/DomBasedXss/trusted-types.js:2:71:2:71 | x | assignedToPropName |  |
+| autogenerated/Xss/DomBasedXss/trusted-types.js:2:71:2:71 | x | calleeImports |  |
+| autogenerated/Xss/DomBasedXss/trusted-types.js:2:71:2:71 | x | contextFunctionInterfaces | createHTML(x)\ncreateHTML(x)\ncreateHTML(x) |
+| autogenerated/Xss/DomBasedXss/trusted-types.js:2:71:2:71 | x | contextSurroundingFunctionParameters | ()\n(x) |
+| autogenerated/Xss/DomBasedXss/trusted-types.js:2:71:2:71 | x | enclosingFunctionBody | policy1 trustedTypes createPolicy x createHTML x x policy1 createHTML window name policy2 trustedTypes createPolicy x createHTML x safe policy2 createHTML window name policy3 trustedTypes createPolicy x createHTML x x policy3 createHTML safe |
+| autogenerated/Xss/DomBasedXss/trusted-types.js:2:71:2:71 | x | enclosingFunctionName |  |
+| autogenerated/Xss/DomBasedXss/trusted-types.js:2:71:2:71 | x | fileImports |  |
+| autogenerated/Xss/DomBasedXss/trusted-types.js:2:71:2:71 | x | receiverName |  |
+| autogenerated/Xss/DomBasedXss/trusted-types.js:2:71:2:71 | x | stringConcatenatedWith |  |
+| autogenerated/Xss/DomBasedXss/trusted-types.js:8:71:8:71 | x | CalleeFlexibleAccessPath |  |
+| autogenerated/Xss/DomBasedXss/trusted-types.js:8:71:8:71 | x | InputAccessPathFromCallee |  |
+| autogenerated/Xss/DomBasedXss/trusted-types.js:8:71:8:71 | x | InputArgumentIndex |  |
+| autogenerated/Xss/DomBasedXss/trusted-types.js:8:71:8:71 | x | assignedToPropName |  |
+| autogenerated/Xss/DomBasedXss/trusted-types.js:8:71:8:71 | x | calleeImports |  |
+| autogenerated/Xss/DomBasedXss/trusted-types.js:8:71:8:71 | x | contextFunctionInterfaces | createHTML(x)\ncreateHTML(x)\ncreateHTML(x) |
+| autogenerated/Xss/DomBasedXss/trusted-types.js:8:71:8:71 | x | contextSurroundingFunctionParameters | ()\n(x) |
+| autogenerated/Xss/DomBasedXss/trusted-types.js:8:71:8:71 | x | enclosingFunctionBody | policy1 trustedTypes createPolicy x createHTML x x policy1 createHTML window name policy2 trustedTypes createPolicy x createHTML x safe policy2 createHTML window name policy3 trustedTypes createPolicy x createHTML x x policy3 createHTML safe |
+| autogenerated/Xss/DomBasedXss/trusted-types.js:8:71:8:71 | x | enclosingFunctionName |  |
+| autogenerated/Xss/DomBasedXss/trusted-types.js:8:71:8:71 | x | fileImports |  |
+| autogenerated/Xss/DomBasedXss/trusted-types.js:8:71:8:71 | x | receiverName |  |
+| autogenerated/Xss/DomBasedXss/trusted-types.js:8:71:8:71 | x | stringConcatenatedWith |  |
 | autogenerated/Xss/DomBasedXss/tst3.js:4:25:4:32 | data.src | CalleeFlexibleAccessPath | foo.setAttribute |
 | autogenerated/Xss/DomBasedXss/tst3.js:4:25:4:32 | data.src | InputAccessPathFromCallee |  |
 | autogenerated/Xss/DomBasedXss/tst3.js:4:25:4:32 | data.src | InputArgumentIndex | 1 |
@@ -13026,11 +16324,11 @@ tokenFeatures
 | autogenerated/Xss/DomBasedXss/tst.js:5:18:5:23 | target | InputArgumentIndex | 0 |
 | autogenerated/Xss/DomBasedXss/tst.js:5:18:5:23 | target | assignedToPropName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:5:18:5:23 | target | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:5:18:5:23 | target | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:5:18:5:23 | target | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:5:18:5:23 | target | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:5:18:5:23 | target | enclosingFunctionBody | target document location search $ myId html target document write <OPTION value=1> document location href substring document location href indexOf default= 8 </OPTION> document write <OPTION value=2>English</OPTION> $ <div style="width: target px"> $ <div style="width: target px"> $ <div style="width: parseInt target px"> params URL document location searchParams $ name html params get name searchParams URLSearchParams target substring 1 $ name html searchParams get name |
 | autogenerated/Xss/DomBasedXss/tst.js:5:18:5:23 | target | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/tst.js:5:18:5:23 | target | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:5:18:5:23 | target | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:5:18:5:23 | target | receiverName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:5:18:5:23 | target | stringConcatenatedWith |  |
 | autogenerated/Xss/DomBasedXss/tst.js:8:18:8:126 | "<OPTIO ... PTION>" | CalleeFlexibleAccessPath | document.write |
@@ -13038,11 +16336,11 @@ tokenFeatures
 | autogenerated/Xss/DomBasedXss/tst.js:8:18:8:126 | "<OPTIO ... PTION>" | InputArgumentIndex | 0 |
 | autogenerated/Xss/DomBasedXss/tst.js:8:18:8:126 | "<OPTIO ... PTION>" | assignedToPropName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:8:18:8:126 | "<OPTIO ... PTION>" | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:8:18:8:126 | "<OPTIO ... PTION>" | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:8:18:8:126 | "<OPTIO ... PTION>" | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:8:18:8:126 | "<OPTIO ... PTION>" | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:8:18:8:126 | "<OPTIO ... PTION>" | enclosingFunctionBody | target document location search $ myId html target document write <OPTION value=1> document location href substring document location href indexOf default= 8 </OPTION> document write <OPTION value=2>English</OPTION> $ <div style="width: target px"> $ <div style="width: target px"> $ <div style="width: parseInt target px"> params URL document location searchParams $ name html params get name searchParams URLSearchParams target substring 1 $ name html searchParams get name |
 | autogenerated/Xss/DomBasedXss/tst.js:8:18:8:126 | "<OPTIO ... PTION>" | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/tst.js:8:18:8:126 | "<OPTIO ... PTION>" | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:8:18:8:126 | "<OPTIO ... PTION>" | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:8:18:8:126 | "<OPTIO ... PTION>" | receiverName | document |
 | autogenerated/Xss/DomBasedXss/tst.js:8:18:8:126 | "<OPTIO ... PTION>" | stringConcatenatedWith |  |
 | autogenerated/Xss/DomBasedXss/tst.js:8:70:8:113 | documen ... lt=")+8 | CalleeFlexibleAccessPath | document.location.href.substring |
@@ -13050,11 +16348,11 @@ tokenFeatures
 | autogenerated/Xss/DomBasedXss/tst.js:8:70:8:113 | documen ... lt=")+8 | InputArgumentIndex | 0 |
 | autogenerated/Xss/DomBasedXss/tst.js:8:70:8:113 | documen ... lt=")+8 | assignedToPropName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:8:70:8:113 | documen ... lt=")+8 | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:8:70:8:113 | documen ... lt=")+8 | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:8:70:8:113 | documen ... lt=")+8 | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:8:70:8:113 | documen ... lt=")+8 | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:8:70:8:113 | documen ... lt=")+8 | enclosingFunctionBody | target document location search $ myId html target document write <OPTION value=1> document location href substring document location href indexOf default= 8 </OPTION> document write <OPTION value=2>English</OPTION> $ <div style="width: target px"> $ <div style="width: target px"> $ <div style="width: parseInt target px"> params URL document location searchParams $ name html params get name searchParams URLSearchParams target substring 1 $ name html searchParams get name |
 | autogenerated/Xss/DomBasedXss/tst.js:8:70:8:113 | documen ... lt=")+8 | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/tst.js:8:70:8:113 | documen ... lt=")+8 | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:8:70:8:113 | documen ... lt=")+8 | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:8:70:8:113 | documen ... lt=")+8 | receiverName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:8:70:8:113 | documen ... lt=")+8 | stringConcatenatedWith |  |
 | autogenerated/Xss/DomBasedXss/tst.js:12:5:12:42 | '<div s ...  'px">' | CalleeFlexibleAccessPath | $ |
@@ -13062,11 +16360,11 @@ tokenFeatures
 | autogenerated/Xss/DomBasedXss/tst.js:12:5:12:42 | '<div s ...  'px">' | InputArgumentIndex | 0 |
 | autogenerated/Xss/DomBasedXss/tst.js:12:5:12:42 | '<div s ...  'px">' | assignedToPropName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:12:5:12:42 | '<div s ...  'px">' | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:12:5:12:42 | '<div s ...  'px">' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:12:5:12:42 | '<div s ...  'px">' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:12:5:12:42 | '<div s ...  'px">' | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:12:5:12:42 | '<div s ...  'px">' | enclosingFunctionBody | target document location search $ myId html target document write <OPTION value=1> document location href substring document location href indexOf default= 8 </OPTION> document write <OPTION value=2>English</OPTION> $ <div style="width: target px"> $ <div style="width: target px"> $ <div style="width: parseInt target px"> params URL document location searchParams $ name html params get name searchParams URLSearchParams target substring 1 $ name html searchParams get name |
 | autogenerated/Xss/DomBasedXss/tst.js:12:5:12:42 | '<div s ...  'px">' | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/tst.js:12:5:12:42 | '<div s ...  'px">' | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:12:5:12:42 | '<div s ...  'px">' | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:12:5:12:42 | '<div s ...  'px">' | receiverName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:12:5:12:42 | '<div s ...  'px">' | stringConcatenatedWith |  |
 | autogenerated/Xss/DomBasedXss/tst.js:14:5:14:43 | '<div s ...  'px">' | CalleeFlexibleAccessPath | $ |
@@ -13074,11 +16372,11 @@ tokenFeatures
 | autogenerated/Xss/DomBasedXss/tst.js:14:5:14:43 | '<div s ...  'px">' | InputArgumentIndex | 0 |
 | autogenerated/Xss/DomBasedXss/tst.js:14:5:14:43 | '<div s ...  'px">' | assignedToPropName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:14:5:14:43 | '<div s ...  'px">' | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:14:5:14:43 | '<div s ...  'px">' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:14:5:14:43 | '<div s ...  'px">' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:14:5:14:43 | '<div s ...  'px">' | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:14:5:14:43 | '<div s ...  'px">' | enclosingFunctionBody | target document location search $ myId html target document write <OPTION value=1> document location href substring document location href indexOf default= 8 </OPTION> document write <OPTION value=2>English</OPTION> $ <div style="width: target px"> $ <div style="width: target px"> $ <div style="width: parseInt target px"> params URL document location searchParams $ name html params get name searchParams URLSearchParams target substring 1 $ name html searchParams get name |
 | autogenerated/Xss/DomBasedXss/tst.js:14:5:14:43 | '<div s ...  'px">' | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/tst.js:14:5:14:43 | '<div s ...  'px">' | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:14:5:14:43 | '<div s ...  'px">' | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:14:5:14:43 | '<div s ...  'px">' | receiverName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:14:5:14:43 | '<div s ...  'px">' | stringConcatenatedWith |  |
 | autogenerated/Xss/DomBasedXss/tst.js:15:5:15:52 | '<div s ...  'px">' | CalleeFlexibleAccessPath | $ |
@@ -13086,11 +16384,11 @@ tokenFeatures
 | autogenerated/Xss/DomBasedXss/tst.js:15:5:15:52 | '<div s ...  'px">' | InputArgumentIndex | 0 |
 | autogenerated/Xss/DomBasedXss/tst.js:15:5:15:52 | '<div s ...  'px">' | assignedToPropName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:15:5:15:52 | '<div s ...  'px">' | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:15:5:15:52 | '<div s ...  'px">' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:15:5:15:52 | '<div s ...  'px">' | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:15:5:15:52 | '<div s ...  'px">' | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:15:5:15:52 | '<div s ...  'px">' | enclosingFunctionBody | target document location search $ myId html target document write <OPTION value=1> document location href substring document location href indexOf default= 8 </OPTION> document write <OPTION value=2>English</OPTION> $ <div style="width: target px"> $ <div style="width: target px"> $ <div style="width: parseInt target px"> params URL document location searchParams $ name html params get name searchParams URLSearchParams target substring 1 $ name html searchParams get name |
 | autogenerated/Xss/DomBasedXss/tst.js:15:5:15:52 | '<div s ...  'px">' | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/tst.js:15:5:15:52 | '<div s ...  'px">' | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:15:5:15:52 | '<div s ...  'px">' | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:15:5:15:52 | '<div s ...  'px">' | receiverName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:15:5:15:52 | '<div s ...  'px">' | stringConcatenatedWith |  |
 | autogenerated/Xss/DomBasedXss/tst.js:18:18:18:35 | params.get('name') | CalleeFlexibleAccessPath | $().html |
@@ -13098,11 +16396,11 @@ tokenFeatures
 | autogenerated/Xss/DomBasedXss/tst.js:18:18:18:35 | params.get('name') | InputArgumentIndex | 0 |
 | autogenerated/Xss/DomBasedXss/tst.js:18:18:18:35 | params.get('name') | assignedToPropName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:18:18:18:35 | params.get('name') | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:18:18:18:35 | params.get('name') | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:18:18:18:35 | params.get('name') | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:18:18:18:35 | params.get('name') | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:18:18:18:35 | params.get('name') | enclosingFunctionBody | target document location search $ myId html target document write <OPTION value=1> document location href substring document location href indexOf default= 8 </OPTION> document write <OPTION value=2>English</OPTION> $ <div style="width: target px"> $ <div style="width: target px"> $ <div style="width: parseInt target px"> params URL document location searchParams $ name html params get name searchParams URLSearchParams target substring 1 $ name html searchParams get name |
 | autogenerated/Xss/DomBasedXss/tst.js:18:18:18:35 | params.get('name') | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/tst.js:18:18:18:35 | params.get('name') | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:18:18:18:35 | params.get('name') | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:18:18:18:35 | params.get('name') | receiverName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:18:18:18:35 | params.get('name') | stringConcatenatedWith |  |
 | autogenerated/Xss/DomBasedXss/tst.js:21:18:21:41 | searchP ... 'name') | CalleeFlexibleAccessPath | $().html |
@@ -13110,11 +16408,11 @@ tokenFeatures
 | autogenerated/Xss/DomBasedXss/tst.js:21:18:21:41 | searchP ... 'name') | InputArgumentIndex | 0 |
 | autogenerated/Xss/DomBasedXss/tst.js:21:18:21:41 | searchP ... 'name') | assignedToPropName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:21:18:21:41 | searchP ... 'name') | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:21:18:21:41 | searchP ... 'name') | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:21:18:21:41 | searchP ... 'name') | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:21:18:21:41 | searchP ... 'name') | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:21:18:21:41 | searchP ... 'name') | enclosingFunctionBody | target document location search $ myId html target document write <OPTION value=1> document location href substring document location href indexOf default= 8 </OPTION> document write <OPTION value=2>English</OPTION> $ <div style="width: target px"> $ <div style="width: target px"> $ <div style="width: parseInt target px"> params URL document location searchParams $ name html params get name searchParams URLSearchParams target substring 1 $ name html searchParams get name |
 | autogenerated/Xss/DomBasedXss/tst.js:21:18:21:41 | searchP ... 'name') | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/tst.js:21:18:21:41 | searchP ... 'name') | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:21:18:21:41 | searchP ... 'name') | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:21:18:21:41 | searchP ... 'name') | receiverName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:21:18:21:41 | searchP ... 'name') | stringConcatenatedWith |  |
 | autogenerated/Xss/DomBasedXss/tst.js:26:18:26:23 | target | CalleeFlexibleAccessPath | $().html |
@@ -13122,11 +16420,11 @@ tokenFeatures
 | autogenerated/Xss/DomBasedXss/tst.js:26:18:26:23 | target | InputArgumentIndex | 0 |
 | autogenerated/Xss/DomBasedXss/tst.js:26:18:26:23 | target | assignedToPropName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:26:18:26:23 | target | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:26:18:26:23 | target | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:26:18:26:23 | target | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:26:18:26:23 | target | contextSurroundingFunctionParameters | (target) |
 | autogenerated/Xss/DomBasedXss/tst.js:26:18:26:23 | target | enclosingFunctionBody | target $ myId html target |
 | autogenerated/Xss/DomBasedXss/tst.js:26:18:26:23 | target | enclosingFunctionName | foo |
-| autogenerated/Xss/DomBasedXss/tst.js:26:18:26:23 | target | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:26:18:26:23 | target | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:26:18:26:23 | target | receiverName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:26:18:26:23 | target | stringConcatenatedWith |  |
 | autogenerated/Xss/DomBasedXss/tst.js:34:16:34:20 | bar() | CalleeFlexibleAccessPath | $().html |
@@ -13134,11 +16432,11 @@ tokenFeatures
 | autogenerated/Xss/DomBasedXss/tst.js:34:16:34:20 | bar() | InputArgumentIndex | 0 |
 | autogenerated/Xss/DomBasedXss/tst.js:34:16:34:20 | bar() | assignedToPropName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:34:16:34:20 | bar() | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:34:16:34:20 | bar() | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:34:16:34:20 | bar() | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:34:16:34:20 | bar() | contextSurroundingFunctionParameters |  |
 | autogenerated/Xss/DomBasedXss/tst.js:34:16:34:20 | bar() | enclosingFunctionBody |  |
 | autogenerated/Xss/DomBasedXss/tst.js:34:16:34:20 | bar() | enclosingFunctionName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:34:16:34:20 | bar() | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:34:16:34:20 | bar() | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:34:16:34:20 | bar() | receiverName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:34:16:34:20 | bar() | stringConcatenatedWith |  |
 | autogenerated/Xss/DomBasedXss/tst.js:40:16:40:44 | baz(doc ... search) | CalleeFlexibleAccessPath | $().html |
@@ -13146,11 +16444,11 @@ tokenFeatures
 | autogenerated/Xss/DomBasedXss/tst.js:40:16:40:44 | baz(doc ... search) | InputArgumentIndex | 0 |
 | autogenerated/Xss/DomBasedXss/tst.js:40:16:40:44 | baz(doc ... search) | assignedToPropName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:40:16:40:44 | baz(doc ... search) | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:40:16:40:44 | baz(doc ... search) | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:40:16:40:44 | baz(doc ... search) | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:40:16:40:44 | baz(doc ... search) | contextSurroundingFunctionParameters |  |
 | autogenerated/Xss/DomBasedXss/tst.js:40:16:40:44 | baz(doc ... search) | enclosingFunctionBody |  |
 | autogenerated/Xss/DomBasedXss/tst.js:40:16:40:44 | baz(doc ... search) | enclosingFunctionName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:40:16:40:44 | baz(doc ... search) | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:40:16:40:44 | baz(doc ... search) | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:40:16:40:44 | baz(doc ... search) | receiverName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:40:16:40:44 | baz(doc ... search) | stringConcatenatedWith |  |
 | autogenerated/Xss/DomBasedXss/tst.js:40:20:40:43 | documen ... .search | CalleeFlexibleAccessPath | baz |
@@ -13158,11 +16456,11 @@ tokenFeatures
 | autogenerated/Xss/DomBasedXss/tst.js:40:20:40:43 | documen ... .search | InputArgumentIndex | 0 |
 | autogenerated/Xss/DomBasedXss/tst.js:40:20:40:43 | documen ... .search | assignedToPropName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:40:20:40:43 | documen ... .search | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:40:20:40:43 | documen ... .search | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:40:20:40:43 | documen ... .search | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:40:20:40:43 | documen ... .search | contextSurroundingFunctionParameters |  |
 | autogenerated/Xss/DomBasedXss/tst.js:40:20:40:43 | documen ... .search | enclosingFunctionBody |  |
 | autogenerated/Xss/DomBasedXss/tst.js:40:20:40:43 | documen ... .search | enclosingFunctionName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:40:20:40:43 | documen ... .search | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:40:20:40:43 | documen ... .search | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:40:20:40:43 | documen ... .search | receiverName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:40:20:40:43 | documen ... .search | stringConcatenatedWith |  |
 | autogenerated/Xss/DomBasedXss/tst.js:46:16:46:45 | wrap(do ... search) | CalleeFlexibleAccessPath | $().html |
@@ -13170,11 +16468,11 @@ tokenFeatures
 | autogenerated/Xss/DomBasedXss/tst.js:46:16:46:45 | wrap(do ... search) | InputArgumentIndex | 0 |
 | autogenerated/Xss/DomBasedXss/tst.js:46:16:46:45 | wrap(do ... search) | assignedToPropName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:46:16:46:45 | wrap(do ... search) | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:46:16:46:45 | wrap(do ... search) | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:46:16:46:45 | wrap(do ... search) | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:46:16:46:45 | wrap(do ... search) | contextSurroundingFunctionParameters |  |
 | autogenerated/Xss/DomBasedXss/tst.js:46:16:46:45 | wrap(do ... search) | enclosingFunctionBody |  |
 | autogenerated/Xss/DomBasedXss/tst.js:46:16:46:45 | wrap(do ... search) | enclosingFunctionName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:46:16:46:45 | wrap(do ... search) | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:46:16:46:45 | wrap(do ... search) | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:46:16:46:45 | wrap(do ... search) | receiverName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:46:16:46:45 | wrap(do ... search) | stringConcatenatedWith |  |
 | autogenerated/Xss/DomBasedXss/tst.js:54:16:54:45 | chop(do ... search) | CalleeFlexibleAccessPath | $().html |
@@ -13182,11 +16480,11 @@ tokenFeatures
 | autogenerated/Xss/DomBasedXss/tst.js:54:16:54:45 | chop(do ... search) | InputArgumentIndex | 0 |
 | autogenerated/Xss/DomBasedXss/tst.js:54:16:54:45 | chop(do ... search) | assignedToPropName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:54:16:54:45 | chop(do ... search) | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:54:16:54:45 | chop(do ... search) | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:54:16:54:45 | chop(do ... search) | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:54:16:54:45 | chop(do ... search) | contextSurroundingFunctionParameters |  |
 | autogenerated/Xss/DomBasedXss/tst.js:54:16:54:45 | chop(do ... search) | enclosingFunctionBody |  |
 | autogenerated/Xss/DomBasedXss/tst.js:54:16:54:45 | chop(do ... search) | enclosingFunctionName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:54:16:54:45 | chop(do ... search) | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:54:16:54:45 | chop(do ... search) | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:54:16:54:45 | chop(do ... search) | receiverName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:54:16:54:45 | chop(do ... search) | stringConcatenatedWith |  |
 | autogenerated/Xss/DomBasedXss/tst.js:56:16:56:45 | chop(do ... search) | CalleeFlexibleAccessPath | $().html |
@@ -13194,11 +16492,11 @@ tokenFeatures
 | autogenerated/Xss/DomBasedXss/tst.js:56:16:56:45 | chop(do ... search) | InputArgumentIndex | 0 |
 | autogenerated/Xss/DomBasedXss/tst.js:56:16:56:45 | chop(do ... search) | assignedToPropName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:56:16:56:45 | chop(do ... search) | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:56:16:56:45 | chop(do ... search) | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:56:16:56:45 | chop(do ... search) | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:56:16:56:45 | chop(do ... search) | contextSurroundingFunctionParameters |  |
 | autogenerated/Xss/DomBasedXss/tst.js:56:16:56:45 | chop(do ... search) | enclosingFunctionBody |  |
 | autogenerated/Xss/DomBasedXss/tst.js:56:16:56:45 | chop(do ... search) | enclosingFunctionName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:56:16:56:45 | chop(do ... search) | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:56:16:56:45 | chop(do ... search) | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:56:16:56:45 | chop(do ... search) | receiverName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:56:16:56:45 | chop(do ... search) | stringConcatenatedWith |  |
 | autogenerated/Xss/DomBasedXss/tst.js:58:16:58:32 | wrap(chop(bar())) | CalleeFlexibleAccessPath | $().html |
@@ -13206,11 +16504,11 @@ tokenFeatures
 | autogenerated/Xss/DomBasedXss/tst.js:58:16:58:32 | wrap(chop(bar())) | InputArgumentIndex | 0 |
 | autogenerated/Xss/DomBasedXss/tst.js:58:16:58:32 | wrap(chop(bar())) | assignedToPropName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:58:16:58:32 | wrap(chop(bar())) | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:58:16:58:32 | wrap(chop(bar())) | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:58:16:58:32 | wrap(chop(bar())) | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:58:16:58:32 | wrap(chop(bar())) | contextSurroundingFunctionParameters |  |
 | autogenerated/Xss/DomBasedXss/tst.js:58:16:58:32 | wrap(chop(bar())) | enclosingFunctionBody |  |
 | autogenerated/Xss/DomBasedXss/tst.js:58:16:58:32 | wrap(chop(bar())) | enclosingFunctionName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:58:16:58:32 | wrap(chop(bar())) | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:58:16:58:32 | wrap(chop(bar())) | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:58:16:58:32 | wrap(chop(bar())) | receiverName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:58:16:58:32 | wrap(chop(bar())) | stringConcatenatedWith |  |
 | autogenerated/Xss/DomBasedXss/tst.js:62:18:62:18 | s | CalleeFlexibleAccessPath | $().html |
@@ -13218,11 +16516,11 @@ tokenFeatures
 | autogenerated/Xss/DomBasedXss/tst.js:62:18:62:18 | s | InputArgumentIndex | 0 |
 | autogenerated/Xss/DomBasedXss/tst.js:62:18:62:18 | s | assignedToPropName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:62:18:62:18 | s | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:62:18:62:18 | s | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:62:18:62:18 | s | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:62:18:62:18 | s | contextSurroundingFunctionParameters | (s) |
 | autogenerated/Xss/DomBasedXss/tst.js:62:18:62:18 | s | enclosingFunctionBody | s $ myId html s |
 | autogenerated/Xss/DomBasedXss/tst.js:62:18:62:18 | s | enclosingFunctionName | dangerouslySetInnerHtml |
-| autogenerated/Xss/DomBasedXss/tst.js:62:18:62:18 | s | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:62:18:62:18 | s | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:62:18:62:18 | s | receiverName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:62:18:62:18 | s | stringConcatenatedWith |  |
 | autogenerated/Xss/DomBasedXss/tst.js:68:16:68:20 | bar() | CalleeFlexibleAccessPath | $().html |
@@ -13230,11 +16528,11 @@ tokenFeatures
 | autogenerated/Xss/DomBasedXss/tst.js:68:16:68:20 | bar() | InputArgumentIndex | 0 |
 | autogenerated/Xss/DomBasedXss/tst.js:68:16:68:20 | bar() | assignedToPropName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:68:16:68:20 | bar() | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:68:16:68:20 | bar() | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:68:16:68:20 | bar() | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:68:16:68:20 | bar() | contextSurroundingFunctionParameters |  |
 | autogenerated/Xss/DomBasedXss/tst.js:68:16:68:20 | bar() | enclosingFunctionBody |  |
 | autogenerated/Xss/DomBasedXss/tst.js:68:16:68:20 | bar() | enclosingFunctionName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:68:16:68:20 | bar() | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:68:16:68:20 | bar() | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:68:16:68:20 | bar() | receiverName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:68:16:68:20 | bar() | stringConcatenatedWith |  |
 | autogenerated/Xss/DomBasedXss/tst.js:73:20:73:20 | x | CalleeFlexibleAccessPath | $().html |
@@ -13242,11 +16540,11 @@ tokenFeatures
 | autogenerated/Xss/DomBasedXss/tst.js:73:20:73:20 | x | InputArgumentIndex | 0 |
 | autogenerated/Xss/DomBasedXss/tst.js:73:20:73:20 | x | assignedToPropName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:73:20:73:20 | x | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:73:20:73:20 | x | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:73:20:73:20 | x | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:73:20:73:20 | x | contextSurroundingFunctionParameters | (x) |
 | autogenerated/Xss/DomBasedXss/tst.js:73:20:73:20 | x | enclosingFunctionBody | x x $ myId html x |
 | autogenerated/Xss/DomBasedXss/tst.js:73:20:73:20 | x | enclosingFunctionName | forEach#functionalargument |
-| autogenerated/Xss/DomBasedXss/tst.js:73:20:73:20 | x | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:73:20:73:20 | x | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:73:20:73:20 | x | receiverName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:73:20:73:20 | x | stringConcatenatedWith |  |
 | autogenerated/Xss/DomBasedXss/tst.js:77:49:77:72 | documen ... .search | CalleeFlexibleAccessPath |  |
@@ -13254,11 +16552,11 @@ tokenFeatures
 | autogenerated/Xss/DomBasedXss/tst.js:77:49:77:72 | documen ... .search | InputArgumentIndex |  |
 | autogenerated/Xss/DomBasedXss/tst.js:77:49:77:72 | documen ... .search | assignedToPropName | __html |
 | autogenerated/Xss/DomBasedXss/tst.js:77:49:77:72 | documen ... .search | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:77:49:77:72 | documen ... .search | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:77:49:77:72 | documen ... .search | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:77:49:77:72 | documen ... .search | contextSurroundingFunctionParameters |  |
 | autogenerated/Xss/DomBasedXss/tst.js:77:49:77:72 | documen ... .search | enclosingFunctionBody |  |
 | autogenerated/Xss/DomBasedXss/tst.js:77:49:77:72 | documen ... .search | enclosingFunctionName |  |
-| autogenerated/Xss/DomBasedXss/tst.js:77:49:77:72 | documen ... .search | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:77:49:77:72 | documen ... .search | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:77:49:77:72 | documen ... .search | receiverName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:77:49:77:72 | documen ... .search | stringConcatenatedWith |  |
 | autogenerated/Xss/DomBasedXss/tst.js:81:26:81:49 | documen ... .search | CalleeFlexibleAccessPath | $sce.trustAsHtml |
@@ -13266,11 +16564,11 @@ tokenFeatures
 | autogenerated/Xss/DomBasedXss/tst.js:81:26:81:49 | documen ... .search | InputArgumentIndex | 0 |
 | autogenerated/Xss/DomBasedXss/tst.js:81:26:81:49 | documen ... .search | assignedToPropName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:81:26:81:49 | documen ... .search | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:81:26:81:49 | documen ... .search | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:81:26:81:49 | documen ... .search | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:81:26:81:49 | documen ... .search | contextSurroundingFunctionParameters | ($sce, $other) |
 | autogenerated/Xss/DomBasedXss/tst.js:81:26:81:49 | documen ... .search | enclosingFunctionBody | $sce $other $sce trustAsHtml document location search $sce trustAsCss document location search $sce trustAsUNKNOWN document location search $sce trustAs $sce HTML document location search $sce trustAs $sce CSS document location search $sce trustAs UNKNOWN document location search $other trustAsHtml document location search |
 | autogenerated/Xss/DomBasedXss/tst.js:81:26:81:49 | documen ... .search | enclosingFunctionName | service#functionalargument |
-| autogenerated/Xss/DomBasedXss/tst.js:81:26:81:49 | documen ... .search | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:81:26:81:49 | documen ... .search | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:81:26:81:49 | documen ... .search | receiverName | $sce |
 | autogenerated/Xss/DomBasedXss/tst.js:81:26:81:49 | documen ... .search | stringConcatenatedWith |  |
 | autogenerated/Xss/DomBasedXss/tst.js:82:25:82:48 | documen ... .search | CalleeFlexibleAccessPath | $sce.trustAsCss |
@@ -13278,11 +16576,11 @@ tokenFeatures
 | autogenerated/Xss/DomBasedXss/tst.js:82:25:82:48 | documen ... .search | InputArgumentIndex | 0 |
 | autogenerated/Xss/DomBasedXss/tst.js:82:25:82:48 | documen ... .search | assignedToPropName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:82:25:82:48 | documen ... .search | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:82:25:82:48 | documen ... .search | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:82:25:82:48 | documen ... .search | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:82:25:82:48 | documen ... .search | contextSurroundingFunctionParameters | ($sce, $other) |
 | autogenerated/Xss/DomBasedXss/tst.js:82:25:82:48 | documen ... .search | enclosingFunctionBody | $sce $other $sce trustAsHtml document location search $sce trustAsCss document location search $sce trustAsUNKNOWN document location search $sce trustAs $sce HTML document location search $sce trustAs $sce CSS document location search $sce trustAs UNKNOWN document location search $other trustAsHtml document location search |
 | autogenerated/Xss/DomBasedXss/tst.js:82:25:82:48 | documen ... .search | enclosingFunctionName | service#functionalargument |
-| autogenerated/Xss/DomBasedXss/tst.js:82:25:82:48 | documen ... .search | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:82:25:82:48 | documen ... .search | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:82:25:82:48 | documen ... .search | receiverName | $sce |
 | autogenerated/Xss/DomBasedXss/tst.js:82:25:82:48 | documen ... .search | stringConcatenatedWith |  |
 | autogenerated/Xss/DomBasedXss/tst.js:84:33:84:56 | documen ... .search | CalleeFlexibleAccessPath | $sce.trustAs |
@@ -13290,11 +16588,11 @@ tokenFeatures
 | autogenerated/Xss/DomBasedXss/tst.js:84:33:84:56 | documen ... .search | InputArgumentIndex | 1 |
 | autogenerated/Xss/DomBasedXss/tst.js:84:33:84:56 | documen ... .search | assignedToPropName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:84:33:84:56 | documen ... .search | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:84:33:84:56 | documen ... .search | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:84:33:84:56 | documen ... .search | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:84:33:84:56 | documen ... .search | contextSurroundingFunctionParameters | ($sce, $other) |
 | autogenerated/Xss/DomBasedXss/tst.js:84:33:84:56 | documen ... .search | enclosingFunctionBody | $sce $other $sce trustAsHtml document location search $sce trustAsCss document location search $sce trustAsUNKNOWN document location search $sce trustAs $sce HTML document location search $sce trustAs $sce CSS document location search $sce trustAs UNKNOWN document location search $other trustAsHtml document location search |
 | autogenerated/Xss/DomBasedXss/tst.js:84:33:84:56 | documen ... .search | enclosingFunctionName | service#functionalargument |
-| autogenerated/Xss/DomBasedXss/tst.js:84:33:84:56 | documen ... .search | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:84:33:84:56 | documen ... .search | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:84:33:84:56 | documen ... .search | receiverName | $sce |
 | autogenerated/Xss/DomBasedXss/tst.js:84:33:84:56 | documen ... .search | stringConcatenatedWith |  |
 | autogenerated/Xss/DomBasedXss/tst.js:85:32:85:55 | documen ... .search | CalleeFlexibleAccessPath | $sce.trustAs |
@@ -13302,11 +16600,11 @@ tokenFeatures
 | autogenerated/Xss/DomBasedXss/tst.js:85:32:85:55 | documen ... .search | InputArgumentIndex | 1 |
 | autogenerated/Xss/DomBasedXss/tst.js:85:32:85:55 | documen ... .search | assignedToPropName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:85:32:85:55 | documen ... .search | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:85:32:85:55 | documen ... .search | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:85:32:85:55 | documen ... .search | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:85:32:85:55 | documen ... .search | contextSurroundingFunctionParameters | ($sce, $other) |
 | autogenerated/Xss/DomBasedXss/tst.js:85:32:85:55 | documen ... .search | enclosingFunctionBody | $sce $other $sce trustAsHtml document location search $sce trustAsCss document location search $sce trustAsUNKNOWN document location search $sce trustAs $sce HTML document location search $sce trustAs $sce CSS document location search $sce trustAs UNKNOWN document location search $other trustAsHtml document location search |
 | autogenerated/Xss/DomBasedXss/tst.js:85:32:85:55 | documen ... .search | enclosingFunctionName | service#functionalargument |
-| autogenerated/Xss/DomBasedXss/tst.js:85:32:85:55 | documen ... .search | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:85:32:85:55 | documen ... .search | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:85:32:85:55 | documen ... .search | receiverName | $sce |
 | autogenerated/Xss/DomBasedXss/tst.js:85:32:85:55 | documen ... .search | stringConcatenatedWith |  |
 | autogenerated/Xss/DomBasedXss/tst.js:90:39:90:62 | documen ... .search | CalleeFlexibleAccessPath | angular.element().html |
@@ -13314,11 +16612,11 @@ tokenFeatures
 | autogenerated/Xss/DomBasedXss/tst.js:90:39:90:62 | documen ... .search | InputArgumentIndex | 0 |
 | autogenerated/Xss/DomBasedXss/tst.js:90:39:90:62 | documen ... .search | assignedToPropName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:90:39:90:62 | documen ... .search | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:90:39:90:62 | documen ... .search | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:90:39:90:62 | documen ... .search | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:90:39:90:62 | documen ... .search | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:90:39:90:62 | documen ... .search | enclosingFunctionBody | angular element <div> html document location search angular element <div> html SAFE |
 | autogenerated/Xss/DomBasedXss/tst.js:90:39:90:62 | documen ... .search | enclosingFunctionName | service#functionalargument |
-| autogenerated/Xss/DomBasedXss/tst.js:90:39:90:62 | documen ... .search | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:90:39:90:62 | documen ... .search | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:90:39:90:62 | documen ... .search | receiverName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:90:39:90:62 | documen ... .search | stringConcatenatedWith |  |
 | autogenerated/Xss/DomBasedXss/tst.js:96:30:96:53 | documen ... .search | CalleeFlexibleAccessPath | element.html |
@@ -13326,11 +16624,11 @@ tokenFeatures
 | autogenerated/Xss/DomBasedXss/tst.js:96:30:96:53 | documen ... .search | InputArgumentIndex | 0 |
 | autogenerated/Xss/DomBasedXss/tst.js:96:30:96:53 | documen ... .search | assignedToPropName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:96:30:96:53 | documen ... .search | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:96:30:96:53 | documen ... .search | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:96:30:96:53 | documen ... .search | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:96:30:96:53 | documen ... .search | contextSurroundingFunctionParameters | ()\n(scope, element) |
 | autogenerated/Xss/DomBasedXss/tst.js:96:30:96:53 | documen ... .search | enclosingFunctionBody | link scope element element html document location search element html SAFE |
 | autogenerated/Xss/DomBasedXss/tst.js:96:30:96:53 | documen ... .search | enclosingFunctionName | directive#functionalargument |
-| autogenerated/Xss/DomBasedXss/tst.js:96:30:96:53 | documen ... .search | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:96:30:96:53 | documen ... .search | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:96:30:96:53 | documen ... .search | receiverName | element |
 | autogenerated/Xss/DomBasedXss/tst.js:96:30:96:53 | documen ... .search | stringConcatenatedWith |  |
 | autogenerated/Xss/DomBasedXss/tst.js:102:25:102:48 | documen ... .search | CalleeFlexibleAccessPath | angular.element |
@@ -13338,11 +16636,11 @@ tokenFeatures
 | autogenerated/Xss/DomBasedXss/tst.js:102:25:102:48 | documen ... .search | InputArgumentIndex | 0 |
 | autogenerated/Xss/DomBasedXss/tst.js:102:25:102:48 | documen ... .search | assignedToPropName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:102:25:102:48 | documen ... .search | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:102:25:102:48 | documen ... .search | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:102:25:102:48 | documen ... .search | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:102:25:102:48 | documen ... .search | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:102:25:102:48 | documen ... .search | enclosingFunctionBody | angular element document location search angular element SAFE |
 | autogenerated/Xss/DomBasedXss/tst.js:102:25:102:48 | documen ... .search | enclosingFunctionName | service#functionalargument |
-| autogenerated/Xss/DomBasedXss/tst.js:102:25:102:48 | documen ... .search | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:102:25:102:48 | documen ... .search | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:102:25:102:48 | documen ... .search | receiverName | angular |
 | autogenerated/Xss/DomBasedXss/tst.js:102:25:102:48 | documen ... .search | stringConcatenatedWith |  |
 | autogenerated/Xss/DomBasedXss/tst.js:110:18:110:18 | v | CalleeFlexibleAccessPath | document.write |
@@ -13350,11 +16648,11 @@ tokenFeatures
 | autogenerated/Xss/DomBasedXss/tst.js:110:18:110:18 | v | InputArgumentIndex | 0 |
 | autogenerated/Xss/DomBasedXss/tst.js:110:18:110:18 | v | assignedToPropName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:110:18:110:18 | v | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:110:18:110:18 | v | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:110:18:110:18 | v | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:110:18:110:18 | v | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:110:18:110:18 | v | enclosingFunctionBody | v document location search substr 1 document write v /^\\d+$/ test v document write v m /^\\d+$/ exec v document write v v match /^\\d+$/ document write v v match ^\\d+$ document write v /\\d+/ test v document write v /^\\d+$/ test v document write v |
 | autogenerated/Xss/DomBasedXss/tst.js:110:18:110:18 | v | enclosingFunctionName | tst |
-| autogenerated/Xss/DomBasedXss/tst.js:110:18:110:18 | v | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:110:18:110:18 | v | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:110:18:110:18 | v | receiverName | document |
 | autogenerated/Xss/DomBasedXss/tst.js:110:18:110:18 | v | stringConcatenatedWith |  |
 | autogenerated/Xss/DomBasedXss/tst.js:112:20:112:20 | v | CalleeFlexibleAccessPath | ?.test |
@@ -13362,11 +16660,11 @@ tokenFeatures
 | autogenerated/Xss/DomBasedXss/tst.js:112:20:112:20 | v | InputArgumentIndex | 0 |
 | autogenerated/Xss/DomBasedXss/tst.js:112:20:112:20 | v | assignedToPropName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:112:20:112:20 | v | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:112:20:112:20 | v | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:112:20:112:20 | v | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:112:20:112:20 | v | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:112:20:112:20 | v | enclosingFunctionBody | v document location search substr 1 document write v /^\\d+$/ test v document write v m /^\\d+$/ exec v document write v v match /^\\d+$/ document write v v match ^\\d+$ document write v /\\d+/ test v document write v /^\\d+$/ test v document write v |
 | autogenerated/Xss/DomBasedXss/tst.js:112:20:112:20 | v | enclosingFunctionName | tst |
-| autogenerated/Xss/DomBasedXss/tst.js:112:20:112:20 | v | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:112:20:112:20 | v | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:112:20:112:20 | v | receiverName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:112:20:112:20 | v | stringConcatenatedWith |  |
 | autogenerated/Xss/DomBasedXss/tst.js:114:20:114:20 | v | CalleeFlexibleAccessPath | document.write |
@@ -13374,11 +16672,11 @@ tokenFeatures
 | autogenerated/Xss/DomBasedXss/tst.js:114:20:114:20 | v | InputArgumentIndex | 0 |
 | autogenerated/Xss/DomBasedXss/tst.js:114:20:114:20 | v | assignedToPropName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:114:20:114:20 | v | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:114:20:114:20 | v | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:114:20:114:20 | v | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:114:20:114:20 | v | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:114:20:114:20 | v | enclosingFunctionBody | v document location search substr 1 document write v /^\\d+$/ test v document write v m /^\\d+$/ exec v document write v v match /^\\d+$/ document write v v match ^\\d+$ document write v /\\d+/ test v document write v /^\\d+$/ test v document write v |
 | autogenerated/Xss/DomBasedXss/tst.js:114:20:114:20 | v | enclosingFunctionName | tst |
-| autogenerated/Xss/DomBasedXss/tst.js:114:20:114:20 | v | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:114:20:114:20 | v | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:114:20:114:20 | v | receiverName | document |
 | autogenerated/Xss/DomBasedXss/tst.js:114:20:114:20 | v | stringConcatenatedWith |  |
 | autogenerated/Xss/DomBasedXss/tst.js:119:20:119:20 | v | CalleeFlexibleAccessPath | document.write |
@@ -13386,11 +16684,11 @@ tokenFeatures
 | autogenerated/Xss/DomBasedXss/tst.js:119:20:119:20 | v | InputArgumentIndex | 0 |
 | autogenerated/Xss/DomBasedXss/tst.js:119:20:119:20 | v | assignedToPropName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:119:20:119:20 | v | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:119:20:119:20 | v | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:119:20:119:20 | v | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:119:20:119:20 | v | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:119:20:119:20 | v | enclosingFunctionBody | v document location search substr 1 document write v /^\\d+$/ test v document write v m /^\\d+$/ exec v document write v v match /^\\d+$/ document write v v match ^\\d+$ document write v /\\d+/ test v document write v /^\\d+$/ test v document write v |
 | autogenerated/Xss/DomBasedXss/tst.js:119:20:119:20 | v | enclosingFunctionName | tst |
-| autogenerated/Xss/DomBasedXss/tst.js:119:20:119:20 | v | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:119:20:119:20 | v | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:119:20:119:20 | v | receiverName | document |
 | autogenerated/Xss/DomBasedXss/tst.js:119:20:119:20 | v | stringConcatenatedWith |  |
 | autogenerated/Xss/DomBasedXss/tst.js:122:15:122:21 | /^\\d+$/ | CalleeFlexibleAccessPath | v.match |
@@ -13398,11 +16696,11 @@ tokenFeatures
 | autogenerated/Xss/DomBasedXss/tst.js:122:15:122:21 | /^\\d+$/ | InputArgumentIndex | 0 |
 | autogenerated/Xss/DomBasedXss/tst.js:122:15:122:21 | /^\\d+$/ | assignedToPropName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:122:15:122:21 | /^\\d+$/ | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:122:15:122:21 | /^\\d+$/ | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:122:15:122:21 | /^\\d+$/ | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:122:15:122:21 | /^\\d+$/ | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:122:15:122:21 | /^\\d+$/ | enclosingFunctionBody | v document location search substr 1 document write v /^\\d+$/ test v document write v m /^\\d+$/ exec v document write v v match /^\\d+$/ document write v v match ^\\d+$ document write v /\\d+/ test v document write v /^\\d+$/ test v document write v |
 | autogenerated/Xss/DomBasedXss/tst.js:122:15:122:21 | /^\\d+$/ | enclosingFunctionName | tst |
-| autogenerated/Xss/DomBasedXss/tst.js:122:15:122:21 | /^\\d+$/ | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:122:15:122:21 | /^\\d+$/ | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:122:15:122:21 | /^\\d+$/ | receiverName | v |
 | autogenerated/Xss/DomBasedXss/tst.js:122:15:122:21 | /^\\d+$/ | stringConcatenatedWith |  |
 | autogenerated/Xss/DomBasedXss/tst.js:124:22:124:22 | v | CalleeFlexibleAccessPath | document.write |
@@ -13410,11 +16708,11 @@ tokenFeatures
 | autogenerated/Xss/DomBasedXss/tst.js:124:22:124:22 | v | InputArgumentIndex | 0 |
 | autogenerated/Xss/DomBasedXss/tst.js:124:22:124:22 | v | assignedToPropName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:124:22:124:22 | v | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:124:22:124:22 | v | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:124:22:124:22 | v | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:124:22:124:22 | v | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:124:22:124:22 | v | enclosingFunctionBody | v document location search substr 1 document write v /^\\d+$/ test v document write v m /^\\d+$/ exec v document write v v match /^\\d+$/ document write v v match ^\\d+$ document write v /\\d+/ test v document write v /^\\d+$/ test v document write v |
 | autogenerated/Xss/DomBasedXss/tst.js:124:22:124:22 | v | enclosingFunctionName | tst |
-| autogenerated/Xss/DomBasedXss/tst.js:124:22:124:22 | v | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:124:22:124:22 | v | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:124:22:124:22 | v | receiverName | document |
 | autogenerated/Xss/DomBasedXss/tst.js:124:22:124:22 | v | stringConcatenatedWith |  |
 | autogenerated/Xss/DomBasedXss/tst.js:129:22:129:22 | v | CalleeFlexibleAccessPath | document.write |
@@ -13422,11 +16720,11 @@ tokenFeatures
 | autogenerated/Xss/DomBasedXss/tst.js:129:22:129:22 | v | InputArgumentIndex | 0 |
 | autogenerated/Xss/DomBasedXss/tst.js:129:22:129:22 | v | assignedToPropName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:129:22:129:22 | v | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:129:22:129:22 | v | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:129:22:129:22 | v | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:129:22:129:22 | v | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:129:22:129:22 | v | enclosingFunctionBody | v document location search substr 1 document write v /^\\d+$/ test v document write v m /^\\d+$/ exec v document write v v match /^\\d+$/ document write v v match ^\\d+$ document write v /\\d+/ test v document write v /^\\d+$/ test v document write v |
 | autogenerated/Xss/DomBasedXss/tst.js:129:22:129:22 | v | enclosingFunctionName | tst |
-| autogenerated/Xss/DomBasedXss/tst.js:129:22:129:22 | v | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:129:22:129:22 | v | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:129:22:129:22 | v | receiverName | document |
 | autogenerated/Xss/DomBasedXss/tst.js:129:22:129:22 | v | stringConcatenatedWith |  |
 | autogenerated/Xss/DomBasedXss/tst.js:132:20:132:20 | v | CalleeFlexibleAccessPath | ?.test |
@@ -13434,11 +16732,11 @@ tokenFeatures
 | autogenerated/Xss/DomBasedXss/tst.js:132:20:132:20 | v | InputArgumentIndex | 0 |
 | autogenerated/Xss/DomBasedXss/tst.js:132:20:132:20 | v | assignedToPropName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:132:20:132:20 | v | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:132:20:132:20 | v | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:132:20:132:20 | v | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:132:20:132:20 | v | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:132:20:132:20 | v | enclosingFunctionBody | v document location search substr 1 document write v /^\\d+$/ test v document write v m /^\\d+$/ exec v document write v v match /^\\d+$/ document write v v match ^\\d+$ document write v /\\d+/ test v document write v /^\\d+$/ test v document write v |
 | autogenerated/Xss/DomBasedXss/tst.js:132:20:132:20 | v | enclosingFunctionName | tst |
-| autogenerated/Xss/DomBasedXss/tst.js:132:20:132:20 | v | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:132:20:132:20 | v | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:132:20:132:20 | v | receiverName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:132:20:132:20 | v | stringConcatenatedWith |  |
 | autogenerated/Xss/DomBasedXss/tst.js:136:18:136:18 | v | CalleeFlexibleAccessPath | document.write |
@@ -13446,11 +16744,11 @@ tokenFeatures
 | autogenerated/Xss/DomBasedXss/tst.js:136:18:136:18 | v | InputArgumentIndex | 0 |
 | autogenerated/Xss/DomBasedXss/tst.js:136:18:136:18 | v | assignedToPropName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:136:18:136:18 | v | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:136:18:136:18 | v | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:136:18:136:18 | v | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:136:18:136:18 | v | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:136:18:136:18 | v | enclosingFunctionBody | v document location search substr 1 document write v /^\\d+$/ test v document write v m /^\\d+$/ exec v document write v v match /^\\d+$/ document write v v match ^\\d+$ document write v /\\d+/ test v document write v /^\\d+$/ test v document write v |
 | autogenerated/Xss/DomBasedXss/tst.js:136:18:136:18 | v | enclosingFunctionName | tst |
-| autogenerated/Xss/DomBasedXss/tst.js:136:18:136:18 | v | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:136:18:136:18 | v | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:136:18:136:18 | v | receiverName | document |
 | autogenerated/Xss/DomBasedXss/tst.js:136:18:136:18 | v | stringConcatenatedWith |  |
 | autogenerated/Xss/DomBasedXss/tst.js:138:22:138:22 | v | CalleeFlexibleAccessPath | ?.test |
@@ -13458,11 +16756,11 @@ tokenFeatures
 | autogenerated/Xss/DomBasedXss/tst.js:138:22:138:22 | v | InputArgumentIndex | 0 |
 | autogenerated/Xss/DomBasedXss/tst.js:138:22:138:22 | v | assignedToPropName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:138:22:138:22 | v | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:138:22:138:22 | v | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:138:22:138:22 | v | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:138:22:138:22 | v | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:138:22:138:22 | v | enclosingFunctionBody | v document location search substr 1 document write v /^\\d+$/ test v document write v m /^\\d+$/ exec v document write v v match /^\\d+$/ document write v v match ^\\d+$ document write v /\\d+/ test v document write v /^\\d+$/ test v document write v |
 | autogenerated/Xss/DomBasedXss/tst.js:138:22:138:22 | v | enclosingFunctionName | tst |
-| autogenerated/Xss/DomBasedXss/tst.js:138:22:138:22 | v | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:138:22:138:22 | v | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:138:22:138:22 | v | receiverName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:138:22:138:22 | v | stringConcatenatedWith |  |
 | autogenerated/Xss/DomBasedXss/tst.js:142:18:142:18 | v | CalleeFlexibleAccessPath | document.write |
@@ -13470,11 +16768,11 @@ tokenFeatures
 | autogenerated/Xss/DomBasedXss/tst.js:142:18:142:18 | v | InputArgumentIndex | 0 |
 | autogenerated/Xss/DomBasedXss/tst.js:142:18:142:18 | v | assignedToPropName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:142:18:142:18 | v | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:142:18:142:18 | v | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:142:18:142:18 | v | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:142:18:142:18 | v | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:142:18:142:18 | v | enclosingFunctionBody | v document location search substr 1 document write v /^\\d+$/ test v document write v m /^\\d+$/ exec v document write v v match /^\\d+$/ document write v v match ^\\d+$ document write v /\\d+/ test v document write v /^\\d+$/ test v document write v |
 | autogenerated/Xss/DomBasedXss/tst.js:142:18:142:18 | v | enclosingFunctionName | tst |
-| autogenerated/Xss/DomBasedXss/tst.js:142:18:142:18 | v | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:142:18:142:18 | v | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:142:18:142:18 | v | receiverName | document |
 | autogenerated/Xss/DomBasedXss/tst.js:142:18:142:18 | v | stringConcatenatedWith |  |
 | autogenerated/Xss/DomBasedXss/tst.js:151:49:151:49 | v | CalleeFlexibleAccessPath | $().html |
@@ -13482,11 +16780,11 @@ tokenFeatures
 | autogenerated/Xss/DomBasedXss/tst.js:151:49:151:49 | v | InputArgumentIndex | 0 |
 | autogenerated/Xss/DomBasedXss/tst.js:151:49:151:49 | v | assignedToPropName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:151:49:151:49 | v | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:151:49:151:49 | v | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:151:49:151:49 | v | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:151:49:151:49 | v | contextSurroundingFunctionParameters | ()\n()\n(v) |
 | autogenerated/Xss/DomBasedXss/tst.js:151:49:151:49 | v | enclosingFunctionBody | angular module myApp factory xssSource_to_service xssSinkService1 xssSinkService1 xssSinkService1 window location search factory xssSinkService1 v $ <div> html v factory xssSource_from_service xssSourceService xssSourceService $ <div> html xssSourceService factory xssSourceService window location search factory innocentSource_to_service xssSinkService2 xssSinkService2 xssSinkService2 innocent factory xssSinkService2 v $ <div> html v factory innocentSource_from_service innocentSourceService innocentSourceService $ <div> html innocentSourceService factory innocentSourceService innocent |
 | autogenerated/Xss/DomBasedXss/tst.js:151:49:151:49 | v | enclosingFunctionName | angularJSServices |
-| autogenerated/Xss/DomBasedXss/tst.js:151:49:151:49 | v | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:151:49:151:49 | v | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:151:49:151:49 | v | receiverName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:151:49:151:49 | v | stringConcatenatedWith |  |
 | autogenerated/Xss/DomBasedXss/tst.js:155:29:155:46 | xssSourceService() | CalleeFlexibleAccessPath | $().html |
@@ -13494,11 +16792,11 @@ tokenFeatures
 | autogenerated/Xss/DomBasedXss/tst.js:155:29:155:46 | xssSourceService() | InputArgumentIndex | 0 |
 | autogenerated/Xss/DomBasedXss/tst.js:155:29:155:46 | xssSourceService() | assignedToPropName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:155:29:155:46 | xssSourceService() | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:155:29:155:46 | xssSourceService() | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:155:29:155:46 | xssSourceService() | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:155:29:155:46 | xssSourceService() | contextSurroundingFunctionParameters | ()\n(xssSourceService) |
 | autogenerated/Xss/DomBasedXss/tst.js:155:29:155:46 | xssSourceService() | enclosingFunctionBody | angular module myApp factory xssSource_to_service xssSinkService1 xssSinkService1 xssSinkService1 window location search factory xssSinkService1 v $ <div> html v factory xssSource_from_service xssSourceService xssSourceService $ <div> html xssSourceService factory xssSourceService window location search factory innocentSource_to_service xssSinkService2 xssSinkService2 xssSinkService2 innocent factory xssSinkService2 v $ <div> html v factory innocentSource_from_service innocentSourceService innocentSourceService $ <div> html innocentSourceService factory innocentSourceService innocent |
 | autogenerated/Xss/DomBasedXss/tst.js:155:29:155:46 | xssSourceService() | enclosingFunctionName | angularJSServices |
-| autogenerated/Xss/DomBasedXss/tst.js:155:29:155:46 | xssSourceService() | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:155:29:155:46 | xssSourceService() | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:155:29:155:46 | xssSourceService() | receiverName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:155:29:155:46 | xssSourceService() | stringConcatenatedWith |  |
 | autogenerated/Xss/DomBasedXss/tst.js:165:49:165:49 | v | CalleeFlexibleAccessPath | $().html |
@@ -13506,11 +16804,11 @@ tokenFeatures
 | autogenerated/Xss/DomBasedXss/tst.js:165:49:165:49 | v | InputArgumentIndex | 0 |
 | autogenerated/Xss/DomBasedXss/tst.js:165:49:165:49 | v | assignedToPropName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:165:49:165:49 | v | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:165:49:165:49 | v | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:165:49:165:49 | v | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:165:49:165:49 | v | contextSurroundingFunctionParameters | ()\n()\n(v) |
 | autogenerated/Xss/DomBasedXss/tst.js:165:49:165:49 | v | enclosingFunctionBody | angular module myApp factory xssSource_to_service xssSinkService1 xssSinkService1 xssSinkService1 window location search factory xssSinkService1 v $ <div> html v factory xssSource_from_service xssSourceService xssSourceService $ <div> html xssSourceService factory xssSourceService window location search factory innocentSource_to_service xssSinkService2 xssSinkService2 xssSinkService2 innocent factory xssSinkService2 v $ <div> html v factory innocentSource_from_service innocentSourceService innocentSourceService $ <div> html innocentSourceService factory innocentSourceService innocent |
 | autogenerated/Xss/DomBasedXss/tst.js:165:49:165:49 | v | enclosingFunctionName | angularJSServices |
-| autogenerated/Xss/DomBasedXss/tst.js:165:49:165:49 | v | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:165:49:165:49 | v | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:165:49:165:49 | v | receiverName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:165:49:165:49 | v | stringConcatenatedWith |  |
 | autogenerated/Xss/DomBasedXss/tst.js:169:29:169:51 | innocen ... rvice() | CalleeFlexibleAccessPath | $().html |
@@ -13518,11 +16816,11 @@ tokenFeatures
 | autogenerated/Xss/DomBasedXss/tst.js:169:29:169:51 | innocen ... rvice() | InputArgumentIndex | 0 |
 | autogenerated/Xss/DomBasedXss/tst.js:169:29:169:51 | innocen ... rvice() | assignedToPropName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:169:29:169:51 | innocen ... rvice() | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:169:29:169:51 | innocen ... rvice() | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:169:29:169:51 | innocen ... rvice() | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:169:29:169:51 | innocen ... rvice() | contextSurroundingFunctionParameters | ()\n(innocentSourceService) |
 | autogenerated/Xss/DomBasedXss/tst.js:169:29:169:51 | innocen ... rvice() | enclosingFunctionBody | angular module myApp factory xssSource_to_service xssSinkService1 xssSinkService1 xssSinkService1 window location search factory xssSinkService1 v $ <div> html v factory xssSource_from_service xssSourceService xssSourceService $ <div> html xssSourceService factory xssSourceService window location search factory innocentSource_to_service xssSinkService2 xssSinkService2 xssSinkService2 innocent factory xssSinkService2 v $ <div> html v factory innocentSource_from_service innocentSourceService innocentSourceService $ <div> html innocentSourceService factory innocentSourceService innocent |
 | autogenerated/Xss/DomBasedXss/tst.js:169:29:169:51 | innocen ... rvice() | enclosingFunctionName | angularJSServices |
-| autogenerated/Xss/DomBasedXss/tst.js:169:29:169:51 | innocen ... rvice() | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:169:29:169:51 | innocen ... rvice() | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:169:29:169:51 | innocen ... rvice() | receiverName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:169:29:169:51 | innocen ... rvice() | stringConcatenatedWith |  |
 | autogenerated/Xss/DomBasedXss/tst.js:180:28:180:33 | target | CalleeFlexibleAccessPath | parser.parseFromString |
@@ -13530,11 +16828,11 @@ tokenFeatures
 | autogenerated/Xss/DomBasedXss/tst.js:180:28:180:33 | target | InputArgumentIndex | 0 |
 | autogenerated/Xss/DomBasedXss/tst.js:180:28:180:33 | target | assignedToPropName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:180:28:180:33 | target | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:180:28:180:33 | target | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:180:28:180:33 | target | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:180:28:180:33 | target | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:180:28:180:33 | target | enclosingFunctionBody | target document location search parser DOMParser parser parseFromString target application/xml |
 | autogenerated/Xss/DomBasedXss/tst.js:180:28:180:33 | target | enclosingFunctionName | testDOMParser |
-| autogenerated/Xss/DomBasedXss/tst.js:180:28:180:33 | target | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:180:28:180:33 | target | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:180:28:180:33 | target | receiverName | parser |
 | autogenerated/Xss/DomBasedXss/tst.js:180:28:180:33 | target | stringConcatenatedWith |  |
 | autogenerated/Xss/DomBasedXss/tst.js:186:31:186:37 | tainted | CalleeFlexibleAccessPath |  |
@@ -13542,11 +16840,11 @@ tokenFeatures
 | autogenerated/Xss/DomBasedXss/tst.js:186:31:186:37 | tainted | InputArgumentIndex |  |
 | autogenerated/Xss/DomBasedXss/tst.js:186:31:186:37 | tainted | assignedToPropName | innerHTML |
 | autogenerated/Xss/DomBasedXss/tst.js:186:31:186:37 | tainted | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:186:31:186:37 | tainted | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:186:31:186:37 | tainted | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:186:31:186:37 | tainted | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:186:31:186:37 | tainted | enclosingFunctionBody | tainted document location search document body innerHTML tainted document createElement innerHTML tainted createElement innerHTML tainted document 0 getElementsByClassName 0 innerHTML tainted getElementsByClassName 0 0 innerHTML tainted getElementsByClassName item innerHTML tainted |
 | autogenerated/Xss/DomBasedXss/tst.js:186:31:186:37 | tainted | enclosingFunctionName | references |
-| autogenerated/Xss/DomBasedXss/tst.js:186:31:186:37 | tainted | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:186:31:186:37 | tainted | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:186:31:186:37 | tainted | receiverName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:186:31:186:37 | tainted | stringConcatenatedWith |  |
 | autogenerated/Xss/DomBasedXss/tst.js:188:42:188:48 | tainted | CalleeFlexibleAccessPath |  |
@@ -13554,11 +16852,11 @@ tokenFeatures
 | autogenerated/Xss/DomBasedXss/tst.js:188:42:188:48 | tainted | InputArgumentIndex |  |
 | autogenerated/Xss/DomBasedXss/tst.js:188:42:188:48 | tainted | assignedToPropName | innerHTML |
 | autogenerated/Xss/DomBasedXss/tst.js:188:42:188:48 | tainted | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:188:42:188:48 | tainted | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:188:42:188:48 | tainted | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:188:42:188:48 | tainted | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:188:42:188:48 | tainted | enclosingFunctionBody | tainted document location search document body innerHTML tainted document createElement innerHTML tainted createElement innerHTML tainted document 0 getElementsByClassName 0 innerHTML tainted getElementsByClassName 0 0 innerHTML tainted getElementsByClassName item innerHTML tainted |
 | autogenerated/Xss/DomBasedXss/tst.js:188:42:188:48 | tainted | enclosingFunctionName | references |
-| autogenerated/Xss/DomBasedXss/tst.js:188:42:188:48 | tainted | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:188:42:188:48 | tainted | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:188:42:188:48 | tainted | receiverName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:188:42:188:48 | tainted | stringConcatenatedWith |  |
 | autogenerated/Xss/DomBasedXss/tst.js:189:33:189:39 | tainted | CalleeFlexibleAccessPath |  |
@@ -13566,11 +16864,11 @@ tokenFeatures
 | autogenerated/Xss/DomBasedXss/tst.js:189:33:189:39 | tainted | InputArgumentIndex |  |
 | autogenerated/Xss/DomBasedXss/tst.js:189:33:189:39 | tainted | assignedToPropName | innerHTML |
 | autogenerated/Xss/DomBasedXss/tst.js:189:33:189:39 | tainted | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:189:33:189:39 | tainted | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:189:33:189:39 | tainted | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:189:33:189:39 | tainted | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:189:33:189:39 | tainted | enclosingFunctionBody | tainted document location search document body innerHTML tainted document createElement innerHTML tainted createElement innerHTML tainted document 0 getElementsByClassName 0 innerHTML tainted getElementsByClassName 0 0 innerHTML tainted getElementsByClassName item innerHTML tainted |
 | autogenerated/Xss/DomBasedXss/tst.js:189:33:189:39 | tainted | enclosingFunctionName | references |
-| autogenerated/Xss/DomBasedXss/tst.js:189:33:189:39 | tainted | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:189:33:189:39 | tainted | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:189:33:189:39 | tainted | receiverName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:189:33:189:39 | tainted | stringConcatenatedWith |  |
 | autogenerated/Xss/DomBasedXss/tst.js:191:54:191:60 | tainted | CalleeFlexibleAccessPath |  |
@@ -13578,11 +16876,11 @@ tokenFeatures
 | autogenerated/Xss/DomBasedXss/tst.js:191:54:191:60 | tainted | InputArgumentIndex |  |
 | autogenerated/Xss/DomBasedXss/tst.js:191:54:191:60 | tainted | assignedToPropName | innerHTML |
 | autogenerated/Xss/DomBasedXss/tst.js:191:54:191:60 | tainted | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:191:54:191:60 | tainted | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:191:54:191:60 | tainted | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:191:54:191:60 | tainted | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:191:54:191:60 | tainted | enclosingFunctionBody | tainted document location search document body innerHTML tainted document createElement innerHTML tainted createElement innerHTML tainted document 0 getElementsByClassName 0 innerHTML tainted getElementsByClassName 0 0 innerHTML tainted getElementsByClassName item innerHTML tainted |
 | autogenerated/Xss/DomBasedXss/tst.js:191:54:191:60 | tainted | enclosingFunctionName | references |
-| autogenerated/Xss/DomBasedXss/tst.js:191:54:191:60 | tainted | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:191:54:191:60 | tainted | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:191:54:191:60 | tainted | receiverName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:191:54:191:60 | tainted | stringConcatenatedWith |  |
 | autogenerated/Xss/DomBasedXss/tst.js:192:45:192:51 | tainted | CalleeFlexibleAccessPath |  |
@@ -13590,11 +16888,11 @@ tokenFeatures
 | autogenerated/Xss/DomBasedXss/tst.js:192:45:192:51 | tainted | InputArgumentIndex |  |
 | autogenerated/Xss/DomBasedXss/tst.js:192:45:192:51 | tainted | assignedToPropName | innerHTML |
 | autogenerated/Xss/DomBasedXss/tst.js:192:45:192:51 | tainted | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:192:45:192:51 | tainted | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:192:45:192:51 | tainted | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:192:45:192:51 | tainted | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:192:45:192:51 | tainted | enclosingFunctionBody | tainted document location search document body innerHTML tainted document createElement innerHTML tainted createElement innerHTML tainted document 0 getElementsByClassName 0 innerHTML tainted getElementsByClassName 0 0 innerHTML tainted getElementsByClassName item innerHTML tainted |
 | autogenerated/Xss/DomBasedXss/tst.js:192:45:192:51 | tainted | enclosingFunctionName | references |
-| autogenerated/Xss/DomBasedXss/tst.js:192:45:192:51 | tainted | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:192:45:192:51 | tainted | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:192:45:192:51 | tainted | receiverName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:192:45:192:51 | tainted | stringConcatenatedWith |  |
 | autogenerated/Xss/DomBasedXss/tst.js:193:49:193:55 | tainted | CalleeFlexibleAccessPath |  |
@@ -13602,11 +16900,11 @@ tokenFeatures
 | autogenerated/Xss/DomBasedXss/tst.js:193:49:193:55 | tainted | InputArgumentIndex |  |
 | autogenerated/Xss/DomBasedXss/tst.js:193:49:193:55 | tainted | assignedToPropName | innerHTML |
 | autogenerated/Xss/DomBasedXss/tst.js:193:49:193:55 | tainted | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:193:49:193:55 | tainted | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:193:49:193:55 | tainted | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:193:49:193:55 | tainted | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:193:49:193:55 | tainted | enclosingFunctionBody | tainted document location search document body innerHTML tainted document createElement innerHTML tainted createElement innerHTML tainted document 0 getElementsByClassName 0 innerHTML tainted getElementsByClassName 0 0 innerHTML tainted getElementsByClassName item innerHTML tainted |
 | autogenerated/Xss/DomBasedXss/tst.js:193:49:193:55 | tainted | enclosingFunctionName | references |
-| autogenerated/Xss/DomBasedXss/tst.js:193:49:193:55 | tainted | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:193:49:193:55 | tainted | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:193:49:193:55 | tainted | receiverName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:193:49:193:55 | tainted | stringConcatenatedWith |  |
 | autogenerated/Xss/DomBasedXss/tst.js:199:67:199:73 | tainted | CalleeFlexibleAccessPath | React.createElement |
@@ -13614,11 +16912,11 @@ tokenFeatures
 | autogenerated/Xss/DomBasedXss/tst.js:199:67:199:73 | tainted | InputArgumentIndex | 1 |
 | autogenerated/Xss/DomBasedXss/tst.js:199:67:199:73 | tainted | assignedToPropName | __html |
 | autogenerated/Xss/DomBasedXss/tst.js:199:67:199:73 | tainted | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:199:67:199:73 | tainted | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:199:67:199:73 | tainted | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:199:67:199:73 | tainted | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:199:67:199:73 | tainted | enclosingFunctionBody | tainted document location search React createElement div dangerouslySetInnerHTML __html tainted React createFactory div dangerouslySetInnerHTML __html tainted C1 React Component constructor state tainted1 tainted state notTainted dbLookup setState tainted2 tainted state tainted3 tainted state tainted4 tainted test $ myId html state tainted1 $ myId html state tainted2 $ myId html state tainted3 $ myId html state notTainted setState prevState $ myId html prevState tainted4 C2 React Component args constructor test $ myId html props tainted1 $ myId html props tainted2 $ myId html props tainted3 $ myId html props notTainted setState prevState prevProps $ myId html prevProps tainted4 C2 defaultProps tainted1 tainted C2 tainted2 tainted C2 tainted3 tainted C2 tainted4 tainted C3 React Component constructor props props state stateTainted props propTainted render span dangerouslySetInnerHTML __html state stateTainted C3 propTainted tainted |
 | autogenerated/Xss/DomBasedXss/tst.js:199:67:199:73 | tainted | enclosingFunctionName | react |
-| autogenerated/Xss/DomBasedXss/tst.js:199:67:199:73 | tainted | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:199:67:199:73 | tainted | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:199:67:199:73 | tainted | receiverName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:199:67:199:73 | tainted | stringConcatenatedWith |  |
 | autogenerated/Xss/DomBasedXss/tst.js:200:67:200:73 | tainted | CalleeFlexibleAccessPath | React.createFactory() |
@@ -13626,11 +16924,11 @@ tokenFeatures
 | autogenerated/Xss/DomBasedXss/tst.js:200:67:200:73 | tainted | InputArgumentIndex | 0 |
 | autogenerated/Xss/DomBasedXss/tst.js:200:67:200:73 | tainted | assignedToPropName | __html |
 | autogenerated/Xss/DomBasedXss/tst.js:200:67:200:73 | tainted | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:200:67:200:73 | tainted | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:200:67:200:73 | tainted | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:200:67:200:73 | tainted | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:200:67:200:73 | tainted | enclosingFunctionBody | tainted document location search React createElement div dangerouslySetInnerHTML __html tainted React createFactory div dangerouslySetInnerHTML __html tainted C1 React Component constructor state tainted1 tainted state notTainted dbLookup setState tainted2 tainted state tainted3 tainted state tainted4 tainted test $ myId html state tainted1 $ myId html state tainted2 $ myId html state tainted3 $ myId html state notTainted setState prevState $ myId html prevState tainted4 C2 React Component args constructor test $ myId html props tainted1 $ myId html props tainted2 $ myId html props tainted3 $ myId html props notTainted setState prevState prevProps $ myId html prevProps tainted4 C2 defaultProps tainted1 tainted C2 tainted2 tainted C2 tainted3 tainted C2 tainted4 tainted C3 React Component constructor props props state stateTainted props propTainted render span dangerouslySetInnerHTML __html state stateTainted C3 propTainted tainted |
 | autogenerated/Xss/DomBasedXss/tst.js:200:67:200:73 | tainted | enclosingFunctionName | react |
-| autogenerated/Xss/DomBasedXss/tst.js:200:67:200:73 | tainted | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:200:67:200:73 | tainted | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:200:67:200:73 | tainted | receiverName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:200:67:200:73 | tainted | stringConcatenatedWith |  |
 | autogenerated/Xss/DomBasedXss/tst.js:212:28:212:46 | this.state.tainted1 | CalleeFlexibleAccessPath | $().html |
@@ -13638,11 +16936,11 @@ tokenFeatures
 | autogenerated/Xss/DomBasedXss/tst.js:212:28:212:46 | this.state.tainted1 | InputArgumentIndex | 0 |
 | autogenerated/Xss/DomBasedXss/tst.js:212:28:212:46 | this.state.tainted1 | assignedToPropName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:212:28:212:46 | this.state.tainted1 | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:212:28:212:46 | this.state.tainted1 | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:212:28:212:46 | this.state.tainted1 | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:212:28:212:46 | this.state.tainted1 | contextSurroundingFunctionParameters | ()\n() |
 | autogenerated/Xss/DomBasedXss/tst.js:212:28:212:46 | this.state.tainted1 | enclosingFunctionBody | tainted document location search React createElement div dangerouslySetInnerHTML __html tainted React createFactory div dangerouslySetInnerHTML __html tainted C1 React Component constructor state tainted1 tainted state notTainted dbLookup setState tainted2 tainted state tainted3 tainted state tainted4 tainted test $ myId html state tainted1 $ myId html state tainted2 $ myId html state tainted3 $ myId html state notTainted setState prevState $ myId html prevState tainted4 C2 React Component args constructor test $ myId html props tainted1 $ myId html props tainted2 $ myId html props tainted3 $ myId html props notTainted setState prevState prevProps $ myId html prevProps tainted4 C2 defaultProps tainted1 tainted C2 tainted2 tainted C2 tainted3 tainted C2 tainted4 tainted C3 React Component constructor props props state stateTainted props propTainted render span dangerouslySetInnerHTML __html state stateTainted C3 propTainted tainted |
 | autogenerated/Xss/DomBasedXss/tst.js:212:28:212:46 | this.state.tainted1 | enclosingFunctionName | react |
-| autogenerated/Xss/DomBasedXss/tst.js:212:28:212:46 | this.state.tainted1 | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:212:28:212:46 | this.state.tainted1 | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:212:28:212:46 | this.state.tainted1 | receiverName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:212:28:212:46 | this.state.tainted1 | stringConcatenatedWith |  |
 | autogenerated/Xss/DomBasedXss/tst.js:213:28:213:46 | this.state.tainted2 | CalleeFlexibleAccessPath | $().html |
@@ -13650,11 +16948,11 @@ tokenFeatures
 | autogenerated/Xss/DomBasedXss/tst.js:213:28:213:46 | this.state.tainted2 | InputArgumentIndex | 0 |
 | autogenerated/Xss/DomBasedXss/tst.js:213:28:213:46 | this.state.tainted2 | assignedToPropName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:213:28:213:46 | this.state.tainted2 | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:213:28:213:46 | this.state.tainted2 | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:213:28:213:46 | this.state.tainted2 | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:213:28:213:46 | this.state.tainted2 | contextSurroundingFunctionParameters | ()\n() |
 | autogenerated/Xss/DomBasedXss/tst.js:213:28:213:46 | this.state.tainted2 | enclosingFunctionBody | tainted document location search React createElement div dangerouslySetInnerHTML __html tainted React createFactory div dangerouslySetInnerHTML __html tainted C1 React Component constructor state tainted1 tainted state notTainted dbLookup setState tainted2 tainted state tainted3 tainted state tainted4 tainted test $ myId html state tainted1 $ myId html state tainted2 $ myId html state tainted3 $ myId html state notTainted setState prevState $ myId html prevState tainted4 C2 React Component args constructor test $ myId html props tainted1 $ myId html props tainted2 $ myId html props tainted3 $ myId html props notTainted setState prevState prevProps $ myId html prevProps tainted4 C2 defaultProps tainted1 tainted C2 tainted2 tainted C2 tainted3 tainted C2 tainted4 tainted C3 React Component constructor props props state stateTainted props propTainted render span dangerouslySetInnerHTML __html state stateTainted C3 propTainted tainted |
 | autogenerated/Xss/DomBasedXss/tst.js:213:28:213:46 | this.state.tainted2 | enclosingFunctionName | react |
-| autogenerated/Xss/DomBasedXss/tst.js:213:28:213:46 | this.state.tainted2 | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:213:28:213:46 | this.state.tainted2 | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:213:28:213:46 | this.state.tainted2 | receiverName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:213:28:213:46 | this.state.tainted2 | stringConcatenatedWith |  |
 | autogenerated/Xss/DomBasedXss/tst.js:214:28:214:46 | this.state.tainted3 | CalleeFlexibleAccessPath | $().html |
@@ -13662,11 +16960,11 @@ tokenFeatures
 | autogenerated/Xss/DomBasedXss/tst.js:214:28:214:46 | this.state.tainted3 | InputArgumentIndex | 0 |
 | autogenerated/Xss/DomBasedXss/tst.js:214:28:214:46 | this.state.tainted3 | assignedToPropName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:214:28:214:46 | this.state.tainted3 | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:214:28:214:46 | this.state.tainted3 | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:214:28:214:46 | this.state.tainted3 | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:214:28:214:46 | this.state.tainted3 | contextSurroundingFunctionParameters | ()\n() |
 | autogenerated/Xss/DomBasedXss/tst.js:214:28:214:46 | this.state.tainted3 | enclosingFunctionBody | tainted document location search React createElement div dangerouslySetInnerHTML __html tainted React createFactory div dangerouslySetInnerHTML __html tainted C1 React Component constructor state tainted1 tainted state notTainted dbLookup setState tainted2 tainted state tainted3 tainted state tainted4 tainted test $ myId html state tainted1 $ myId html state tainted2 $ myId html state tainted3 $ myId html state notTainted setState prevState $ myId html prevState tainted4 C2 React Component args constructor test $ myId html props tainted1 $ myId html props tainted2 $ myId html props tainted3 $ myId html props notTainted setState prevState prevProps $ myId html prevProps tainted4 C2 defaultProps tainted1 tainted C2 tainted2 tainted C2 tainted3 tainted C2 tainted4 tainted C3 React Component constructor props props state stateTainted props propTainted render span dangerouslySetInnerHTML __html state stateTainted C3 propTainted tainted |
 | autogenerated/Xss/DomBasedXss/tst.js:214:28:214:46 | this.state.tainted3 | enclosingFunctionName | react |
-| autogenerated/Xss/DomBasedXss/tst.js:214:28:214:46 | this.state.tainted3 | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:214:28:214:46 | this.state.tainted3 | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:214:28:214:46 | this.state.tainted3 | receiverName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:214:28:214:46 | this.state.tainted3 | stringConcatenatedWith |  |
 | autogenerated/Xss/DomBasedXss/tst.js:215:28:215:48 | this.st ... Tainted | CalleeFlexibleAccessPath | $().html |
@@ -13674,11 +16972,11 @@ tokenFeatures
 | autogenerated/Xss/DomBasedXss/tst.js:215:28:215:48 | this.st ... Tainted | InputArgumentIndex | 0 |
 | autogenerated/Xss/DomBasedXss/tst.js:215:28:215:48 | this.st ... Tainted | assignedToPropName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:215:28:215:48 | this.st ... Tainted | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:215:28:215:48 | this.st ... Tainted | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:215:28:215:48 | this.st ... Tainted | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:215:28:215:48 | this.st ... Tainted | contextSurroundingFunctionParameters | ()\n() |
 | autogenerated/Xss/DomBasedXss/tst.js:215:28:215:48 | this.st ... Tainted | enclosingFunctionBody | tainted document location search React createElement div dangerouslySetInnerHTML __html tainted React createFactory div dangerouslySetInnerHTML __html tainted C1 React Component constructor state tainted1 tainted state notTainted dbLookup setState tainted2 tainted state tainted3 tainted state tainted4 tainted test $ myId html state tainted1 $ myId html state tainted2 $ myId html state tainted3 $ myId html state notTainted setState prevState $ myId html prevState tainted4 C2 React Component args constructor test $ myId html props tainted1 $ myId html props tainted2 $ myId html props tainted3 $ myId html props notTainted setState prevState prevProps $ myId html prevProps tainted4 C2 defaultProps tainted1 tainted C2 tainted2 tainted C2 tainted3 tainted C2 tainted4 tainted C3 React Component constructor props props state stateTainted props propTainted render span dangerouslySetInnerHTML __html state stateTainted C3 propTainted tainted |
 | autogenerated/Xss/DomBasedXss/tst.js:215:28:215:48 | this.st ... Tainted | enclosingFunctionName | react |
-| autogenerated/Xss/DomBasedXss/tst.js:215:28:215:48 | this.st ... Tainted | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:215:28:215:48 | this.st ... Tainted | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:215:28:215:48 | this.st ... Tainted | receiverName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:215:28:215:48 | this.st ... Tainted | stringConcatenatedWith |  |
 | autogenerated/Xss/DomBasedXss/tst.js:218:32:218:49 | prevState.tainted4 | CalleeFlexibleAccessPath | $().html |
@@ -13686,11 +16984,11 @@ tokenFeatures
 | autogenerated/Xss/DomBasedXss/tst.js:218:32:218:49 | prevState.tainted4 | InputArgumentIndex | 0 |
 | autogenerated/Xss/DomBasedXss/tst.js:218:32:218:49 | prevState.tainted4 | assignedToPropName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:218:32:218:49 | prevState.tainted4 | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:218:32:218:49 | prevState.tainted4 | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:218:32:218:49 | prevState.tainted4 | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:218:32:218:49 | prevState.tainted4 | contextSurroundingFunctionParameters | ()\n()\n(prevState) |
 | autogenerated/Xss/DomBasedXss/tst.js:218:32:218:49 | prevState.tainted4 | enclosingFunctionBody | tainted document location search React createElement div dangerouslySetInnerHTML __html tainted React createFactory div dangerouslySetInnerHTML __html tainted C1 React Component constructor state tainted1 tainted state notTainted dbLookup setState tainted2 tainted state tainted3 tainted state tainted4 tainted test $ myId html state tainted1 $ myId html state tainted2 $ myId html state tainted3 $ myId html state notTainted setState prevState $ myId html prevState tainted4 C2 React Component args constructor test $ myId html props tainted1 $ myId html props tainted2 $ myId html props tainted3 $ myId html props notTainted setState prevState prevProps $ myId html prevProps tainted4 C2 defaultProps tainted1 tainted C2 tainted2 tainted C2 tainted3 tainted C2 tainted4 tainted C3 React Component constructor props props state stateTainted props propTainted render span dangerouslySetInnerHTML __html state stateTainted C3 propTainted tainted |
 | autogenerated/Xss/DomBasedXss/tst.js:218:32:218:49 | prevState.tainted4 | enclosingFunctionName | react |
-| autogenerated/Xss/DomBasedXss/tst.js:218:32:218:49 | prevState.tainted4 | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:218:32:218:49 | prevState.tainted4 | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:218:32:218:49 | prevState.tainted4 | receiverName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:218:32:218:49 | prevState.tainted4 | stringConcatenatedWith |  |
 | autogenerated/Xss/DomBasedXss/tst.js:225:28:225:46 | this.props.tainted1 | CalleeFlexibleAccessPath | $().html |
@@ -13698,11 +16996,11 @@ tokenFeatures
 | autogenerated/Xss/DomBasedXss/tst.js:225:28:225:46 | this.props.tainted1 | InputArgumentIndex | 0 |
 | autogenerated/Xss/DomBasedXss/tst.js:225:28:225:46 | this.props.tainted1 | assignedToPropName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:225:28:225:46 | this.props.tainted1 | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:225:28:225:46 | this.props.tainted1 | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:225:28:225:46 | this.props.tainted1 | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:225:28:225:46 | this.props.tainted1 | contextSurroundingFunctionParameters | ()\n() |
 | autogenerated/Xss/DomBasedXss/tst.js:225:28:225:46 | this.props.tainted1 | enclosingFunctionBody | tainted document location search React createElement div dangerouslySetInnerHTML __html tainted React createFactory div dangerouslySetInnerHTML __html tainted C1 React Component constructor state tainted1 tainted state notTainted dbLookup setState tainted2 tainted state tainted3 tainted state tainted4 tainted test $ myId html state tainted1 $ myId html state tainted2 $ myId html state tainted3 $ myId html state notTainted setState prevState $ myId html prevState tainted4 C2 React Component args constructor test $ myId html props tainted1 $ myId html props tainted2 $ myId html props tainted3 $ myId html props notTainted setState prevState prevProps $ myId html prevProps tainted4 C2 defaultProps tainted1 tainted C2 tainted2 tainted C2 tainted3 tainted C2 tainted4 tainted C3 React Component constructor props props state stateTainted props propTainted render span dangerouslySetInnerHTML __html state stateTainted C3 propTainted tainted |
 | autogenerated/Xss/DomBasedXss/tst.js:225:28:225:46 | this.props.tainted1 | enclosingFunctionName | react |
-| autogenerated/Xss/DomBasedXss/tst.js:225:28:225:46 | this.props.tainted1 | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:225:28:225:46 | this.props.tainted1 | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:225:28:225:46 | this.props.tainted1 | receiverName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:225:28:225:46 | this.props.tainted1 | stringConcatenatedWith |  |
 | autogenerated/Xss/DomBasedXss/tst.js:226:28:226:46 | this.props.tainted2 | CalleeFlexibleAccessPath | $().html |
@@ -13710,11 +17008,11 @@ tokenFeatures
 | autogenerated/Xss/DomBasedXss/tst.js:226:28:226:46 | this.props.tainted2 | InputArgumentIndex | 0 |
 | autogenerated/Xss/DomBasedXss/tst.js:226:28:226:46 | this.props.tainted2 | assignedToPropName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:226:28:226:46 | this.props.tainted2 | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:226:28:226:46 | this.props.tainted2 | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:226:28:226:46 | this.props.tainted2 | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:226:28:226:46 | this.props.tainted2 | contextSurroundingFunctionParameters | ()\n() |
 | autogenerated/Xss/DomBasedXss/tst.js:226:28:226:46 | this.props.tainted2 | enclosingFunctionBody | tainted document location search React createElement div dangerouslySetInnerHTML __html tainted React createFactory div dangerouslySetInnerHTML __html tainted C1 React Component constructor state tainted1 tainted state notTainted dbLookup setState tainted2 tainted state tainted3 tainted state tainted4 tainted test $ myId html state tainted1 $ myId html state tainted2 $ myId html state tainted3 $ myId html state notTainted setState prevState $ myId html prevState tainted4 C2 React Component args constructor test $ myId html props tainted1 $ myId html props tainted2 $ myId html props tainted3 $ myId html props notTainted setState prevState prevProps $ myId html prevProps tainted4 C2 defaultProps tainted1 tainted C2 tainted2 tainted C2 tainted3 tainted C2 tainted4 tainted C3 React Component constructor props props state stateTainted props propTainted render span dangerouslySetInnerHTML __html state stateTainted C3 propTainted tainted |
 | autogenerated/Xss/DomBasedXss/tst.js:226:28:226:46 | this.props.tainted2 | enclosingFunctionName | react |
-| autogenerated/Xss/DomBasedXss/tst.js:226:28:226:46 | this.props.tainted2 | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:226:28:226:46 | this.props.tainted2 | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:226:28:226:46 | this.props.tainted2 | receiverName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:226:28:226:46 | this.props.tainted2 | stringConcatenatedWith |  |
 | autogenerated/Xss/DomBasedXss/tst.js:227:28:227:46 | this.props.tainted3 | CalleeFlexibleAccessPath | $().html |
@@ -13722,11 +17020,11 @@ tokenFeatures
 | autogenerated/Xss/DomBasedXss/tst.js:227:28:227:46 | this.props.tainted3 | InputArgumentIndex | 0 |
 | autogenerated/Xss/DomBasedXss/tst.js:227:28:227:46 | this.props.tainted3 | assignedToPropName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:227:28:227:46 | this.props.tainted3 | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:227:28:227:46 | this.props.tainted3 | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:227:28:227:46 | this.props.tainted3 | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:227:28:227:46 | this.props.tainted3 | contextSurroundingFunctionParameters | ()\n() |
 | autogenerated/Xss/DomBasedXss/tst.js:227:28:227:46 | this.props.tainted3 | enclosingFunctionBody | tainted document location search React createElement div dangerouslySetInnerHTML __html tainted React createFactory div dangerouslySetInnerHTML __html tainted C1 React Component constructor state tainted1 tainted state notTainted dbLookup setState tainted2 tainted state tainted3 tainted state tainted4 tainted test $ myId html state tainted1 $ myId html state tainted2 $ myId html state tainted3 $ myId html state notTainted setState prevState $ myId html prevState tainted4 C2 React Component args constructor test $ myId html props tainted1 $ myId html props tainted2 $ myId html props tainted3 $ myId html props notTainted setState prevState prevProps $ myId html prevProps tainted4 C2 defaultProps tainted1 tainted C2 tainted2 tainted C2 tainted3 tainted C2 tainted4 tainted C3 React Component constructor props props state stateTainted props propTainted render span dangerouslySetInnerHTML __html state stateTainted C3 propTainted tainted |
 | autogenerated/Xss/DomBasedXss/tst.js:227:28:227:46 | this.props.tainted3 | enclosingFunctionName | react |
-| autogenerated/Xss/DomBasedXss/tst.js:227:28:227:46 | this.props.tainted3 | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:227:28:227:46 | this.props.tainted3 | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:227:28:227:46 | this.props.tainted3 | receiverName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:227:28:227:46 | this.props.tainted3 | stringConcatenatedWith |  |
 | autogenerated/Xss/DomBasedXss/tst.js:228:28:228:48 | this.pr ... Tainted | CalleeFlexibleAccessPath | $().html |
@@ -13734,11 +17032,11 @@ tokenFeatures
 | autogenerated/Xss/DomBasedXss/tst.js:228:28:228:48 | this.pr ... Tainted | InputArgumentIndex | 0 |
 | autogenerated/Xss/DomBasedXss/tst.js:228:28:228:48 | this.pr ... Tainted | assignedToPropName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:228:28:228:48 | this.pr ... Tainted | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:228:28:228:48 | this.pr ... Tainted | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:228:28:228:48 | this.pr ... Tainted | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:228:28:228:48 | this.pr ... Tainted | contextSurroundingFunctionParameters | ()\n() |
 | autogenerated/Xss/DomBasedXss/tst.js:228:28:228:48 | this.pr ... Tainted | enclosingFunctionBody | tainted document location search React createElement div dangerouslySetInnerHTML __html tainted React createFactory div dangerouslySetInnerHTML __html tainted C1 React Component constructor state tainted1 tainted state notTainted dbLookup setState tainted2 tainted state tainted3 tainted state tainted4 tainted test $ myId html state tainted1 $ myId html state tainted2 $ myId html state tainted3 $ myId html state notTainted setState prevState $ myId html prevState tainted4 C2 React Component args constructor test $ myId html props tainted1 $ myId html props tainted2 $ myId html props tainted3 $ myId html props notTainted setState prevState prevProps $ myId html prevProps tainted4 C2 defaultProps tainted1 tainted C2 tainted2 tainted C2 tainted3 tainted C2 tainted4 tainted C3 React Component constructor props props state stateTainted props propTainted render span dangerouslySetInnerHTML __html state stateTainted C3 propTainted tainted |
 | autogenerated/Xss/DomBasedXss/tst.js:228:28:228:48 | this.pr ... Tainted | enclosingFunctionName | react |
-| autogenerated/Xss/DomBasedXss/tst.js:228:28:228:48 | this.pr ... Tainted | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:228:28:228:48 | this.pr ... Tainted | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:228:28:228:48 | this.pr ... Tainted | receiverName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:228:28:228:48 | this.pr ... Tainted | stringConcatenatedWith |  |
 | autogenerated/Xss/DomBasedXss/tst.js:231:32:231:49 | prevProps.tainted4 | CalleeFlexibleAccessPath | $().html |
@@ -13746,11 +17044,11 @@ tokenFeatures
 | autogenerated/Xss/DomBasedXss/tst.js:231:32:231:49 | prevProps.tainted4 | InputArgumentIndex | 0 |
 | autogenerated/Xss/DomBasedXss/tst.js:231:32:231:49 | prevProps.tainted4 | assignedToPropName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:231:32:231:49 | prevProps.tainted4 | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:231:32:231:49 | prevProps.tainted4 | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:231:32:231:49 | prevProps.tainted4 | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:231:32:231:49 | prevProps.tainted4 | contextSurroundingFunctionParameters | ()\n()\n(prevState, prevProps) |
 | autogenerated/Xss/DomBasedXss/tst.js:231:32:231:49 | prevProps.tainted4 | enclosingFunctionBody | tainted document location search React createElement div dangerouslySetInnerHTML __html tainted React createFactory div dangerouslySetInnerHTML __html tainted C1 React Component constructor state tainted1 tainted state notTainted dbLookup setState tainted2 tainted state tainted3 tainted state tainted4 tainted test $ myId html state tainted1 $ myId html state tainted2 $ myId html state tainted3 $ myId html state notTainted setState prevState $ myId html prevState tainted4 C2 React Component args constructor test $ myId html props tainted1 $ myId html props tainted2 $ myId html props tainted3 $ myId html props notTainted setState prevState prevProps $ myId html prevProps tainted4 C2 defaultProps tainted1 tainted C2 tainted2 tainted C2 tainted3 tainted C2 tainted4 tainted C3 React Component constructor props props state stateTainted props propTainted render span dangerouslySetInnerHTML __html state stateTainted C3 propTainted tainted |
 | autogenerated/Xss/DomBasedXss/tst.js:231:32:231:49 | prevProps.tainted4 | enclosingFunctionName | react |
-| autogenerated/Xss/DomBasedXss/tst.js:231:32:231:49 | prevProps.tainted4 | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:231:32:231:49 | prevProps.tainted4 | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:231:32:231:49 | prevProps.tainted4 | receiverName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:231:32:231:49 | prevProps.tainted4 | stringConcatenatedWith |  |
 | autogenerated/Xss/DomBasedXss/tst.js:251:60:251:82 | this.st ... Tainted | CalleeFlexibleAccessPath |  |
@@ -13758,11 +17056,11 @@ tokenFeatures
 | autogenerated/Xss/DomBasedXss/tst.js:251:60:251:82 | this.st ... Tainted | InputArgumentIndex |  |
 | autogenerated/Xss/DomBasedXss/tst.js:251:60:251:82 | this.st ... Tainted | assignedToPropName | __html |
 | autogenerated/Xss/DomBasedXss/tst.js:251:60:251:82 | this.st ... Tainted | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:251:60:251:82 | this.st ... Tainted | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:251:60:251:82 | this.st ... Tainted | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:251:60:251:82 | this.st ... Tainted | contextSurroundingFunctionParameters | ()\n() |
 | autogenerated/Xss/DomBasedXss/tst.js:251:60:251:82 | this.st ... Tainted | enclosingFunctionBody | tainted document location search React createElement div dangerouslySetInnerHTML __html tainted React createFactory div dangerouslySetInnerHTML __html tainted C1 React Component constructor state tainted1 tainted state notTainted dbLookup setState tainted2 tainted state tainted3 tainted state tainted4 tainted test $ myId html state tainted1 $ myId html state tainted2 $ myId html state tainted3 $ myId html state notTainted setState prevState $ myId html prevState tainted4 C2 React Component args constructor test $ myId html props tainted1 $ myId html props tainted2 $ myId html props tainted3 $ myId html props notTainted setState prevState prevProps $ myId html prevProps tainted4 C2 defaultProps tainted1 tainted C2 tainted2 tainted C2 tainted3 tainted C2 tainted4 tainted C3 React Component constructor props props state stateTainted props propTainted render span dangerouslySetInnerHTML __html state stateTainted C3 propTainted tainted |
 | autogenerated/Xss/DomBasedXss/tst.js:251:60:251:82 | this.st ... Tainted | enclosingFunctionName | react |
-| autogenerated/Xss/DomBasedXss/tst.js:251:60:251:82 | this.st ... Tainted | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:251:60:251:82 | this.st ... Tainted | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:251:60:251:82 | this.st ... Tainted | receiverName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:251:60:251:82 | this.st ... Tainted | stringConcatenatedWith |  |
 | autogenerated/Xss/DomBasedXss/tst.js:259:7:259:17 | window.name | CalleeFlexibleAccessPath | $ |
@@ -13770,11 +17068,11 @@ tokenFeatures
 | autogenerated/Xss/DomBasedXss/tst.js:259:7:259:17 | window.name | InputArgumentIndex | 0 |
 | autogenerated/Xss/DomBasedXss/tst.js:259:7:259:17 | window.name | assignedToPropName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:259:7:259:17 | window.name | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:259:7:259:17 | window.name | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:259:7:259:17 | window.name | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:259:7:259:17 | window.name | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:259:7:259:17 | window.name | enclosingFunctionBody | $ window name $ name |
 | autogenerated/Xss/DomBasedXss/tst.js:259:7:259:17 | window.name | enclosingFunctionName | windowName |
-| autogenerated/Xss/DomBasedXss/tst.js:259:7:259:17 | window.name | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:259:7:259:17 | window.name | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:259:7:259:17 | window.name | receiverName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:259:7:259:17 | window.name | stringConcatenatedWith |  |
 | autogenerated/Xss/DomBasedXss/tst.js:260:7:260:10 | name | CalleeFlexibleAccessPath | $ |
@@ -13782,11 +17080,11 @@ tokenFeatures
 | autogenerated/Xss/DomBasedXss/tst.js:260:7:260:10 | name | InputArgumentIndex | 0 |
 | autogenerated/Xss/DomBasedXss/tst.js:260:7:260:10 | name | assignedToPropName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:260:7:260:10 | name | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:260:7:260:10 | name | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:260:7:260:10 | name | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:260:7:260:10 | name | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:260:7:260:10 | name | enclosingFunctionBody | $ window name $ name |
 | autogenerated/Xss/DomBasedXss/tst.js:260:7:260:10 | name | enclosingFunctionName | windowName |
-| autogenerated/Xss/DomBasedXss/tst.js:260:7:260:10 | name | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:260:7:260:10 | name | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:260:7:260:10 | name | receiverName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:260:7:260:10 | name | stringConcatenatedWith |  |
 | autogenerated/Xss/DomBasedXss/tst.js:264:11:264:21 | window.name | CalleeFlexibleAccessPath | $ |
@@ -13794,11 +17092,11 @@ tokenFeatures
 | autogenerated/Xss/DomBasedXss/tst.js:264:11:264:21 | window.name | InputArgumentIndex | 0 |
 | autogenerated/Xss/DomBasedXss/tst.js:264:11:264:21 | window.name | assignedToPropName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:264:11:264:21 | window.name | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:264:11:264:21 | window.name | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:264:11:264:21 | window.name | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:264:11:264:21 | window.name | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:264:11:264:21 | window.name | enclosingFunctionBody | name a b $ window name $ name |
 | autogenerated/Xss/DomBasedXss/tst.js:264:11:264:21 | window.name | enclosingFunctionName | windowNameAssigned |
-| autogenerated/Xss/DomBasedXss/tst.js:264:11:264:21 | window.name | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:264:11:264:21 | window.name | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:264:11:264:21 | window.name | receiverName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:264:11:264:21 | window.name | stringConcatenatedWith |  |
 | autogenerated/Xss/DomBasedXss/tst.js:265:11:265:14 | name | CalleeFlexibleAccessPath | $ |
@@ -13806,11 +17104,11 @@ tokenFeatures
 | autogenerated/Xss/DomBasedXss/tst.js:265:11:265:14 | name | InputArgumentIndex | 0 |
 | autogenerated/Xss/DomBasedXss/tst.js:265:11:265:14 | name | assignedToPropName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:265:11:265:14 | name | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:265:11:265:14 | name | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:265:11:265:14 | name | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:265:11:265:14 | name | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:265:11:265:14 | name | enclosingFunctionBody | name a b $ window name $ name |
 | autogenerated/Xss/DomBasedXss/tst.js:265:11:265:14 | name | enclosingFunctionName | windowNameAssigned |
-| autogenerated/Xss/DomBasedXss/tst.js:265:11:265:14 | name | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:265:11:265:14 | name | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:265:11:265:14 | name | receiverName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:265:11:265:14 | name | stringConcatenatedWith |  |
 | autogenerated/Xss/DomBasedXss/tst.js:270:7:270:14 | location | CalleeFlexibleAccessPath | $ |
@@ -13818,11 +17116,11 @@ tokenFeatures
 | autogenerated/Xss/DomBasedXss/tst.js:270:7:270:14 | location | InputArgumentIndex | 0 |
 | autogenerated/Xss/DomBasedXss/tst.js:270:7:270:14 | location | assignedToPropName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:270:7:270:14 | location | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:270:7:270:14 | location | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:270:7:270:14 | location | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:270:7:270:14 | location | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:270:7:270:14 | location | enclosingFunctionBody | $ location $ window location $ document location loc1 location loc2 window location loc3 document location $ loc1 $ loc2 $ loc3 $ body append location |
 | autogenerated/Xss/DomBasedXss/tst.js:270:7:270:14 | location | enclosingFunctionName | jqueryLocation |
-| autogenerated/Xss/DomBasedXss/tst.js:270:7:270:14 | location | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:270:7:270:14 | location | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:270:7:270:14 | location | receiverName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:270:7:270:14 | location | stringConcatenatedWith |  |
 | autogenerated/Xss/DomBasedXss/tst.js:271:7:271:21 | window.location | CalleeFlexibleAccessPath | $ |
@@ -13830,11 +17128,11 @@ tokenFeatures
 | autogenerated/Xss/DomBasedXss/tst.js:271:7:271:21 | window.location | InputArgumentIndex | 0 |
 | autogenerated/Xss/DomBasedXss/tst.js:271:7:271:21 | window.location | assignedToPropName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:271:7:271:21 | window.location | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:271:7:271:21 | window.location | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:271:7:271:21 | window.location | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:271:7:271:21 | window.location | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:271:7:271:21 | window.location | enclosingFunctionBody | $ location $ window location $ document location loc1 location loc2 window location loc3 document location $ loc1 $ loc2 $ loc3 $ body append location |
 | autogenerated/Xss/DomBasedXss/tst.js:271:7:271:21 | window.location | enclosingFunctionName | jqueryLocation |
-| autogenerated/Xss/DomBasedXss/tst.js:271:7:271:21 | window.location | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:271:7:271:21 | window.location | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:271:7:271:21 | window.location | receiverName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:271:7:271:21 | window.location | stringConcatenatedWith |  |
 | autogenerated/Xss/DomBasedXss/tst.js:272:7:272:23 | document.location | CalleeFlexibleAccessPath | $ |
@@ -13842,11 +17140,11 @@ tokenFeatures
 | autogenerated/Xss/DomBasedXss/tst.js:272:7:272:23 | document.location | InputArgumentIndex | 0 |
 | autogenerated/Xss/DomBasedXss/tst.js:272:7:272:23 | document.location | assignedToPropName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:272:7:272:23 | document.location | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:272:7:272:23 | document.location | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:272:7:272:23 | document.location | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:272:7:272:23 | document.location | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:272:7:272:23 | document.location | enclosingFunctionBody | $ location $ window location $ document location loc1 location loc2 window location loc3 document location $ loc1 $ loc2 $ loc3 $ body append location |
 | autogenerated/Xss/DomBasedXss/tst.js:272:7:272:23 | document.location | enclosingFunctionName | jqueryLocation |
-| autogenerated/Xss/DomBasedXss/tst.js:272:7:272:23 | document.location | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:272:7:272:23 | document.location | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:272:7:272:23 | document.location | receiverName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:272:7:272:23 | document.location | stringConcatenatedWith |  |
 | autogenerated/Xss/DomBasedXss/tst.js:276:7:276:10 | loc1 | CalleeFlexibleAccessPath | $ |
@@ -13854,11 +17152,11 @@ tokenFeatures
 | autogenerated/Xss/DomBasedXss/tst.js:276:7:276:10 | loc1 | InputArgumentIndex | 0 |
 | autogenerated/Xss/DomBasedXss/tst.js:276:7:276:10 | loc1 | assignedToPropName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:276:7:276:10 | loc1 | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:276:7:276:10 | loc1 | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:276:7:276:10 | loc1 | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:276:7:276:10 | loc1 | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:276:7:276:10 | loc1 | enclosingFunctionBody | $ location $ window location $ document location loc1 location loc2 window location loc3 document location $ loc1 $ loc2 $ loc3 $ body append location |
 | autogenerated/Xss/DomBasedXss/tst.js:276:7:276:10 | loc1 | enclosingFunctionName | jqueryLocation |
-| autogenerated/Xss/DomBasedXss/tst.js:276:7:276:10 | loc1 | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:276:7:276:10 | loc1 | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:276:7:276:10 | loc1 | receiverName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:276:7:276:10 | loc1 | stringConcatenatedWith |  |
 | autogenerated/Xss/DomBasedXss/tst.js:277:7:277:10 | loc2 | CalleeFlexibleAccessPath | $ |
@@ -13866,11 +17164,11 @@ tokenFeatures
 | autogenerated/Xss/DomBasedXss/tst.js:277:7:277:10 | loc2 | InputArgumentIndex | 0 |
 | autogenerated/Xss/DomBasedXss/tst.js:277:7:277:10 | loc2 | assignedToPropName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:277:7:277:10 | loc2 | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:277:7:277:10 | loc2 | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:277:7:277:10 | loc2 | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:277:7:277:10 | loc2 | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:277:7:277:10 | loc2 | enclosingFunctionBody | $ location $ window location $ document location loc1 location loc2 window location loc3 document location $ loc1 $ loc2 $ loc3 $ body append location |
 | autogenerated/Xss/DomBasedXss/tst.js:277:7:277:10 | loc2 | enclosingFunctionName | jqueryLocation |
-| autogenerated/Xss/DomBasedXss/tst.js:277:7:277:10 | loc2 | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:277:7:277:10 | loc2 | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:277:7:277:10 | loc2 | receiverName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:277:7:277:10 | loc2 | stringConcatenatedWith |  |
 | autogenerated/Xss/DomBasedXss/tst.js:278:7:278:10 | loc3 | CalleeFlexibleAccessPath | $ |
@@ -13878,11 +17176,11 @@ tokenFeatures
 | autogenerated/Xss/DomBasedXss/tst.js:278:7:278:10 | loc3 | InputArgumentIndex | 0 |
 | autogenerated/Xss/DomBasedXss/tst.js:278:7:278:10 | loc3 | assignedToPropName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:278:7:278:10 | loc3 | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:278:7:278:10 | loc3 | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:278:7:278:10 | loc3 | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:278:7:278:10 | loc3 | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:278:7:278:10 | loc3 | enclosingFunctionBody | $ location $ window location $ document location loc1 location loc2 window location loc3 document location $ loc1 $ loc2 $ loc3 $ body append location |
 | autogenerated/Xss/DomBasedXss/tst.js:278:7:278:10 | loc3 | enclosingFunctionName | jqueryLocation |
-| autogenerated/Xss/DomBasedXss/tst.js:278:7:278:10 | loc3 | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:278:7:278:10 | loc3 | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:278:7:278:10 | loc3 | receiverName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:278:7:278:10 | loc3 | stringConcatenatedWith |  |
 | autogenerated/Xss/DomBasedXss/tst.js:280:22:280:29 | location | CalleeFlexibleAccessPath | $().append |
@@ -13890,11 +17188,11 @@ tokenFeatures
 | autogenerated/Xss/DomBasedXss/tst.js:280:22:280:29 | location | InputArgumentIndex | 0 |
 | autogenerated/Xss/DomBasedXss/tst.js:280:22:280:29 | location | assignedToPropName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:280:22:280:29 | location | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:280:22:280:29 | location | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:280:22:280:29 | location | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:280:22:280:29 | location | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:280:22:280:29 | location | enclosingFunctionBody | $ location $ window location $ document location loc1 location loc2 window location loc3 document location $ loc1 $ loc2 $ loc3 $ body append location |
 | autogenerated/Xss/DomBasedXss/tst.js:280:22:280:29 | location | enclosingFunctionName | jqueryLocation |
-| autogenerated/Xss/DomBasedXss/tst.js:280:22:280:29 | location | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:280:22:280:29 | location | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:280:22:280:29 | location | receiverName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:280:22:280:29 | location | stringConcatenatedWith |  |
 | autogenerated/Xss/DomBasedXss/tst.js:288:59:288:65 | tainted | CalleeFlexibleAccessPath | range.createContextualFragment |
@@ -13902,11 +17200,11 @@ tokenFeatures
 | autogenerated/Xss/DomBasedXss/tst.js:288:59:288:65 | tainted | InputArgumentIndex | 0 |
 | autogenerated/Xss/DomBasedXss/tst.js:288:59:288:65 | tainted | assignedToPropName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:288:59:288:65 | tainted | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:288:59:288:65 | tainted | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:288:59:288:65 | tainted | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:288:59:288:65 | tainted | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:288:59:288:65 | tainted | enclosingFunctionBody | tainted window name range document createRange range selectNode document getElementsByTagName div item 0 documentFragment range createContextualFragment tainted document body appendChild documentFragment |
 | autogenerated/Xss/DomBasedXss/tst.js:288:59:288:65 | tainted | enclosingFunctionName | testCreateContextualFragment |
-| autogenerated/Xss/DomBasedXss/tst.js:288:59:288:65 | tainted | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:288:59:288:65 | tainted | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:288:59:288:65 | tainted | receiverName | range |
 | autogenerated/Xss/DomBasedXss/tst.js:288:59:288:65 | tainted | stringConcatenatedWith |  |
 | autogenerated/Xss/DomBasedXss/tst.js:289:31:289:46 | documentFragment | CalleeFlexibleAccessPath | document.body.appendChild |
@@ -13914,11 +17212,11 @@ tokenFeatures
 | autogenerated/Xss/DomBasedXss/tst.js:289:31:289:46 | documentFragment | InputArgumentIndex | 0 |
 | autogenerated/Xss/DomBasedXss/tst.js:289:31:289:46 | documentFragment | assignedToPropName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:289:31:289:46 | documentFragment | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:289:31:289:46 | documentFragment | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:289:31:289:46 | documentFragment | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:289:31:289:46 | documentFragment | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:289:31:289:46 | documentFragment | enclosingFunctionBody | tainted window name range document createRange range selectNode document getElementsByTagName div item 0 documentFragment range createContextualFragment tainted document body appendChild documentFragment |
 | autogenerated/Xss/DomBasedXss/tst.js:289:31:289:46 | documentFragment | enclosingFunctionName | testCreateContextualFragment |
-| autogenerated/Xss/DomBasedXss/tst.js:289:31:289:46 | documentFragment | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:289:31:289:46 | documentFragment | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:289:31:289:46 | documentFragment | receiverName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:289:31:289:46 | documentFragment | stringConcatenatedWith |  |
 | autogenerated/Xss/DomBasedXss/tst.js:296:9:296:9 | p | CalleeFlexibleAccessPath | $ |
@@ -13926,11 +17224,11 @@ tokenFeatures
 | autogenerated/Xss/DomBasedXss/tst.js:296:9:296:9 | p | InputArgumentIndex | 0 |
 | autogenerated/Xss/DomBasedXss/tst.js:296:9:296:9 | p | assignedToPropName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:296:9:296:9 | p | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:296:9:296:9 | p | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:296:9:296:9 | p | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:296:9:296:9 | p | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:296:9:296:9 | p | enclosingFunctionBody | obj obj Math random window name p obj $ p |
 | autogenerated/Xss/DomBasedXss/tst.js:296:9:296:9 | p | enclosingFunctionName | flowThroughPropertyNames |
-| autogenerated/Xss/DomBasedXss/tst.js:296:9:296:9 | p | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:296:9:296:9 | p | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:296:9:296:9 | p | receiverName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:296:9:296:9 | p | stringConcatenatedWith |  |
 | autogenerated/Xss/DomBasedXss/tst.js:303:20:303:20 | e | CalleeFlexibleAccessPath | $().append |
@@ -13938,11 +17236,11 @@ tokenFeatures
 | autogenerated/Xss/DomBasedXss/tst.js:303:20:303:20 | e | InputArgumentIndex | 0 |
 | autogenerated/Xss/DomBasedXss/tst.js:303:20:303:20 | e | assignedToPropName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:303:20:303:20 | e | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:303:20:303:20 | e | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:303:20:303:20 | e | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:303:20:303:20 | e | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:303:20:303:20 | e | enclosingFunctionBody | location e $ body append e location e $ body append e |
 | autogenerated/Xss/DomBasedXss/tst.js:303:20:303:20 | e | enclosingFunctionName | basicExceptions |
-| autogenerated/Xss/DomBasedXss/tst.js:303:20:303:20 | e | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:303:20:303:20 | e | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:303:20:303:20 | e | receiverName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:303:20:303:20 | e | stringConcatenatedWith |  |
 | autogenerated/Xss/DomBasedXss/tst.js:311:20:311:20 | e | CalleeFlexibleAccessPath | $().append |
@@ -13950,11 +17248,11 @@ tokenFeatures
 | autogenerated/Xss/DomBasedXss/tst.js:311:20:311:20 | e | InputArgumentIndex | 0 |
 | autogenerated/Xss/DomBasedXss/tst.js:311:20:311:20 | e | assignedToPropName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:311:20:311:20 | e | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:311:20:311:20 | e | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:311:20:311:20 | e | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:311:20:311:20 | e | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:311:20:311:20 | e | enclosingFunctionBody | location e $ body append e location e $ body append e |
 | autogenerated/Xss/DomBasedXss/tst.js:311:20:311:20 | e | enclosingFunctionName | basicExceptions |
-| autogenerated/Xss/DomBasedXss/tst.js:311:20:311:20 | e | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:311:20:311:20 | e | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:311:20:311:20 | e | receiverName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:311:20:311:20 | e | stringConcatenatedWith |  |
 | autogenerated/Xss/DomBasedXss/tst.js:316:35:316:42 | location | CalleeFlexibleAccessPath | Handlebars.SafeString |
@@ -13962,11 +17260,11 @@ tokenFeatures
 | autogenerated/Xss/DomBasedXss/tst.js:316:35:316:42 | location | InputArgumentIndex | 0 |
 | autogenerated/Xss/DomBasedXss/tst.js:316:35:316:42 | location | assignedToPropName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:316:35:316:42 | location | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:316:35:316:42 | location | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:316:35:316:42 | location | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:316:35:316:42 | location | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:316:35:316:42 | location | enclosingFunctionBody | Handlebars SafeString location |
 | autogenerated/Xss/DomBasedXss/tst.js:316:35:316:42 | location | enclosingFunctionName | handlebarsSafeString |
-| autogenerated/Xss/DomBasedXss/tst.js:316:35:316:42 | location | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:316:35:316:42 | location | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:316:35:316:42 | location | receiverName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:316:35:316:42 | location | stringConcatenatedWith |  |
 | autogenerated/Xss/DomBasedXss/tst.js:323:18:323:30 | target.length | CalleeFlexibleAccessPath | $().html |
@@ -13974,11 +17272,11 @@ tokenFeatures
 | autogenerated/Xss/DomBasedXss/tst.js:323:18:323:30 | target.length | InputArgumentIndex | 0 |
 | autogenerated/Xss/DomBasedXss/tst.js:323:18:323:30 | target.length | assignedToPropName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:323:18:323:30 | target.length | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:323:18:323:30 | target.length | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:323:18:323:30 | target.length | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:323:18:323:30 | target.length | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:323:18:323:30 | target.length | enclosingFunctionBody | target document location search $ myId html target length |
 | autogenerated/Xss/DomBasedXss/tst.js:323:18:323:30 | target.length | enclosingFunctionName | test2 |
-| autogenerated/Xss/DomBasedXss/tst.js:323:18:323:30 | target.length | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:323:18:323:30 | target.length | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:323:18:323:30 | target.length | receiverName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:323:18:323:30 | target.length | stringConcatenatedWith |  |
 | autogenerated/Xss/DomBasedXss/tst.js:332:18:332:35 | params.get('name') | CalleeFlexibleAccessPath | $().html |
@@ -13986,11 +17284,11 @@ tokenFeatures
 | autogenerated/Xss/DomBasedXss/tst.js:332:18:332:35 | params.get('name') | InputArgumentIndex | 0 |
 | autogenerated/Xss/DomBasedXss/tst.js:332:18:332:35 | params.get('name') | assignedToPropName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:332:18:332:35 | params.get('name') | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:332:18:332:35 | params.get('name') | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:332:18:332:35 | params.get('name') | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:332:18:332:35 | params.get('name') | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:332:18:332:35 | params.get('name') | enclosingFunctionBody | params getTaintedUrl searchParams $ name html params get name myUrl getTaintedUrl $ name html myUrl get name |
 | autogenerated/Xss/DomBasedXss/tst.js:332:18:332:35 | params.get('name') | enclosingFunctionName | URLPseudoProperties |
-| autogenerated/Xss/DomBasedXss/tst.js:332:18:332:35 | params.get('name') | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:332:18:332:35 | params.get('name') | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:332:18:332:35 | params.get('name') | receiverName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:332:18:332:35 | params.get('name') | stringConcatenatedWith |  |
 | autogenerated/Xss/DomBasedXss/tst.js:335:18:335:34 | myUrl.get('name') | CalleeFlexibleAccessPath | $().html |
@@ -13998,11 +17296,11 @@ tokenFeatures
 | autogenerated/Xss/DomBasedXss/tst.js:335:18:335:34 | myUrl.get('name') | InputArgumentIndex | 0 |
 | autogenerated/Xss/DomBasedXss/tst.js:335:18:335:34 | myUrl.get('name') | assignedToPropName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:335:18:335:34 | myUrl.get('name') | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:335:18:335:34 | myUrl.get('name') | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:335:18:335:34 | myUrl.get('name') | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:335:18:335:34 | myUrl.get('name') | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:335:18:335:34 | myUrl.get('name') | enclosingFunctionBody | params getTaintedUrl searchParams $ name html params get name myUrl getTaintedUrl $ name html myUrl get name |
 | autogenerated/Xss/DomBasedXss/tst.js:335:18:335:34 | myUrl.get('name') | enclosingFunctionName | URLPseudoProperties |
-| autogenerated/Xss/DomBasedXss/tst.js:335:18:335:34 | myUrl.get('name') | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:335:18:335:34 | myUrl.get('name') | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:335:18:335:34 | myUrl.get('name') | receiverName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:335:18:335:34 | myUrl.get('name') | stringConcatenatedWith |  |
 | autogenerated/Xss/DomBasedXss/tst.js:343:5:343:30 | getUrl( ... ring(1) | CalleeFlexibleAccessPath | $ |
@@ -14010,11 +17308,11 @@ tokenFeatures
 | autogenerated/Xss/DomBasedXss/tst.js:343:5:343:30 | getUrl( ... ring(1) | InputArgumentIndex | 0 |
 | autogenerated/Xss/DomBasedXss/tst.js:343:5:343:30 | getUrl( ... ring(1) | assignedToPropName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:343:5:343:30 | getUrl( ... ring(1) | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:343:5:343:30 | getUrl( ... ring(1) | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:343:5:343:30 | getUrl( ... ring(1) | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:343:5:343:30 | getUrl( ... ring(1) | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:343:5:343:30 | getUrl( ... ring(1) | enclosingFunctionBody | getUrl URL document location $ getUrl hash substring 1 |
 | autogenerated/Xss/DomBasedXss/tst.js:343:5:343:30 | getUrl( ... ring(1) | enclosingFunctionName | hash |
-| autogenerated/Xss/DomBasedXss/tst.js:343:5:343:30 | getUrl( ... ring(1) | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:343:5:343:30 | getUrl( ... ring(1) | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:343:5:343:30 | getUrl( ... ring(1) | receiverName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:343:5:343:30 | getUrl( ... ring(1) | stringConcatenatedWith |  |
 | autogenerated/Xss/DomBasedXss/tst.js:349:12:349:17 | target | CalleeFlexibleAccessPath | $.jGrowl |
@@ -14022,11 +17320,11 @@ tokenFeatures
 | autogenerated/Xss/DomBasedXss/tst.js:349:12:349:17 | target | InputArgumentIndex | 0 |
 | autogenerated/Xss/DomBasedXss/tst.js:349:12:349:17 | target | assignedToPropName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:349:12:349:17 | target | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:349:12:349:17 | target | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:349:12:349:17 | target | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:349:12:349:17 | target | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:349:12:349:17 | target | enclosingFunctionBody | target document location search $ jGrowl target |
 | autogenerated/Xss/DomBasedXss/tst.js:349:12:349:17 | target | enclosingFunctionName | growl |
-| autogenerated/Xss/DomBasedXss/tst.js:349:12:349:17 | target | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:349:12:349:17 | target | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:349:12:349:17 | target | receiverName | $ |
 | autogenerated/Xss/DomBasedXss/tst.js:349:12:349:17 | target | stringConcatenatedWith |  |
 | autogenerated/Xss/DomBasedXss/tst.js:356:16:356:21 | target | CalleeFlexibleAccessPath | this.html |
@@ -14034,11 +17332,11 @@ tokenFeatures
 | autogenerated/Xss/DomBasedXss/tst.js:356:16:356:21 | target | InputArgumentIndex | 0 |
 | autogenerated/Xss/DomBasedXss/tst.js:356:16:356:21 | target | assignedToPropName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:356:16:356:21 | target | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:356:16:356:21 | target | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:356:16:356:21 | target | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:356:16:356:21 | target | contextSurroundingFunctionParameters | ()\n() |
 | autogenerated/Xss/DomBasedXss/tst.js:356:16:356:21 | target | enclosingFunctionBody | pluginName myFancyJQueryPlugin myPlugin target document location search html target innerHTML target each i e innerHTML target html target e innerHTML target $ fn pluginName myPlugin |
 | autogenerated/Xss/DomBasedXss/tst.js:356:16:356:21 | target | enclosingFunctionName | thisNodes |
-| autogenerated/Xss/DomBasedXss/tst.js:356:16:356:21 | target | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:356:16:356:21 | target | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:356:16:356:21 | target | receiverName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:356:16:356:21 | target | stringConcatenatedWith |  |
 | autogenerated/Xss/DomBasedXss/tst.js:359:13:364:3 | functio ... OK.\\n\\t\\t} | CalleeFlexibleAccessPath | this.each |
@@ -14046,11 +17344,11 @@ tokenFeatures
 | autogenerated/Xss/DomBasedXss/tst.js:359:13:364:3 | functio ... OK.\\n\\t\\t} | InputArgumentIndex | 0 |
 | autogenerated/Xss/DomBasedXss/tst.js:359:13:364:3 | functio ... OK.\\n\\t\\t} | assignedToPropName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:359:13:364:3 | functio ... OK.\\n\\t\\t} | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:359:13:364:3 | functio ... OK.\\n\\t\\t} | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:359:13:364:3 | functio ... OK.\\n\\t\\t} | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:359:13:364:3 | functio ... OK.\\n\\t\\t} | contextSurroundingFunctionParameters | ()\n()\n(i, e) |
 | autogenerated/Xss/DomBasedXss/tst.js:359:13:364:3 | functio ... OK.\\n\\t\\t} | enclosingFunctionBody | pluginName myFancyJQueryPlugin myPlugin target document location search html target innerHTML target each i e innerHTML target html target e innerHTML target $ fn pluginName myPlugin |
 | autogenerated/Xss/DomBasedXss/tst.js:359:13:364:3 | functio ... OK.\\n\\t\\t} | enclosingFunctionName | thisNodes |
-| autogenerated/Xss/DomBasedXss/tst.js:359:13:364:3 | functio ... OK.\\n\\t\\t} | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:359:13:364:3 | functio ... OK.\\n\\t\\t} | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:359:13:364:3 | functio ... OK.\\n\\t\\t} | receiverName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:359:13:364:3 | functio ... OK.\\n\\t\\t} | stringConcatenatedWith |  |
 | autogenerated/Xss/DomBasedXss/tst.js:360:21:360:26 | target | CalleeFlexibleAccessPath |  |
@@ -14058,11 +17356,11 @@ tokenFeatures
 | autogenerated/Xss/DomBasedXss/tst.js:360:21:360:26 | target | InputArgumentIndex |  |
 | autogenerated/Xss/DomBasedXss/tst.js:360:21:360:26 | target | assignedToPropName | innerHTML |
 | autogenerated/Xss/DomBasedXss/tst.js:360:21:360:26 | target | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:360:21:360:26 | target | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:360:21:360:26 | target | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:360:21:360:26 | target | contextSurroundingFunctionParameters | ()\n()\n(i, e) |
 | autogenerated/Xss/DomBasedXss/tst.js:360:21:360:26 | target | enclosingFunctionBody | pluginName myFancyJQueryPlugin myPlugin target document location search html target innerHTML target each i e innerHTML target html target e innerHTML target $ fn pluginName myPlugin |
 | autogenerated/Xss/DomBasedXss/tst.js:360:21:360:26 | target | enclosingFunctionName | thisNodes |
-| autogenerated/Xss/DomBasedXss/tst.js:360:21:360:26 | target | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:360:21:360:26 | target | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:360:21:360:26 | target | receiverName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:360:21:360:26 | target | stringConcatenatedWith |  |
 | autogenerated/Xss/DomBasedXss/tst.js:363:18:363:23 | target | CalleeFlexibleAccessPath |  |
@@ -14070,11 +17368,11 @@ tokenFeatures
 | autogenerated/Xss/DomBasedXss/tst.js:363:18:363:23 | target | InputArgumentIndex |  |
 | autogenerated/Xss/DomBasedXss/tst.js:363:18:363:23 | target | assignedToPropName | innerHTML |
 | autogenerated/Xss/DomBasedXss/tst.js:363:18:363:23 | target | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:363:18:363:23 | target | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:363:18:363:23 | target | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:363:18:363:23 | target | contextSurroundingFunctionParameters | ()\n()\n(i, e) |
 | autogenerated/Xss/DomBasedXss/tst.js:363:18:363:23 | target | enclosingFunctionBody | pluginName myFancyJQueryPlugin myPlugin target document location search html target innerHTML target each i e innerHTML target html target e innerHTML target $ fn pluginName myPlugin |
 | autogenerated/Xss/DomBasedXss/tst.js:363:18:363:23 | target | enclosingFunctionName | thisNodes |
-| autogenerated/Xss/DomBasedXss/tst.js:363:18:363:23 | target | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:363:18:363:23 | target | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:363:18:363:23 | target | receiverName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:363:18:363:23 | target | stringConcatenatedWith |  |
 | autogenerated/Xss/DomBasedXss/tst.js:374:18:374:23 | target | CalleeFlexibleAccessPath | $().html |
@@ -14082,11 +17380,11 @@ tokenFeatures
 | autogenerated/Xss/DomBasedXss/tst.js:374:18:374:23 | target | InputArgumentIndex | 0 |
 | autogenerated/Xss/DomBasedXss/tst.js:374:18:374:23 | target | assignedToPropName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:374:18:374:23 | target | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:374:18:374:23 | target | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:374:18:374:23 | target | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:374:18:374:23 | target | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:374:18:374:23 | target | enclosingFunctionBody | target document location search $ myId html target $ myid html document 0 location href split ? 0 |
 | autogenerated/Xss/DomBasedXss/tst.js:374:18:374:23 | target | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/tst.js:374:18:374:23 | target | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:374:18:374:23 | target | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:374:18:374:23 | target | receiverName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:374:18:374:23 | target | stringConcatenatedWith |  |
 | autogenerated/Xss/DomBasedXss/tst.js:377:18:377:53 | documen ... "?")[0] | CalleeFlexibleAccessPath | $().html |
@@ -14094,11 +17392,11 @@ tokenFeatures
 | autogenerated/Xss/DomBasedXss/tst.js:377:18:377:53 | documen ... "?")[0] | InputArgumentIndex | 0 |
 | autogenerated/Xss/DomBasedXss/tst.js:377:18:377:53 | documen ... "?")[0] | assignedToPropName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:377:18:377:53 | documen ... "?")[0] | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:377:18:377:53 | documen ... "?")[0] | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:377:18:377:53 | documen ... "?")[0] | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:377:18:377:53 | documen ... "?")[0] | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:377:18:377:53 | documen ... "?")[0] | enclosingFunctionBody | target document location search $ myId html target $ myid html document 0 location href split ? 0 |
 | autogenerated/Xss/DomBasedXss/tst.js:377:18:377:53 | documen ... "?")[0] | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/tst.js:377:18:377:53 | documen ... "?")[0] | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:377:18:377:53 | documen ... "?")[0] | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:377:18:377:53 | documen ... "?")[0] | receiverName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:377:18:377:53 | documen ... "?")[0] | stringConcatenatedWith |  |
 | autogenerated/Xss/DomBasedXss/tst.js:384:18:384:23 | target | CalleeFlexibleAccessPath | $().html |
@@ -14106,11 +17404,11 @@ tokenFeatures
 | autogenerated/Xss/DomBasedXss/tst.js:384:18:384:23 | target | InputArgumentIndex | 0 |
 | autogenerated/Xss/DomBasedXss/tst.js:384:18:384:23 | target | assignedToPropName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:384:18:384:23 | target | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:384:18:384:23 | target | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:384:18:384:23 | target | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:384:18:384:23 | target | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:384:18:384:23 | target | enclosingFunctionBody | target document location search $ myId html target $ myId html target taint target taint2 2 $ myId html target taint2 target taint3 document location search $ myId html target taint3 target sub taint4 2 $ myId html target sub taint4 $ myId html target taint5 target taint5 safe target taint6 2 random $ myId html target taint6 random target taint7 safe $ myId html target taint7 target taint8 target taint8 $ myId html target taint8 target taint9 target taint9 safe $ myId html target taint9 |
 | autogenerated/Xss/DomBasedXss/tst.js:384:18:384:23 | target | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/tst.js:384:18:384:23 | target | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:384:18:384:23 | target | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:384:18:384:23 | target | receiverName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:384:18:384:23 | target | stringConcatenatedWith |  |
 | autogenerated/Xss/DomBasedXss/tst.js:386:18:386:29 | target.taint | CalleeFlexibleAccessPath | $().html |
@@ -14118,11 +17416,11 @@ tokenFeatures
 | autogenerated/Xss/DomBasedXss/tst.js:386:18:386:29 | target.taint | InputArgumentIndex | 0 |
 | autogenerated/Xss/DomBasedXss/tst.js:386:18:386:29 | target.taint | assignedToPropName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:386:18:386:29 | target.taint | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:386:18:386:29 | target.taint | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:386:18:386:29 | target.taint | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:386:18:386:29 | target.taint | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:386:18:386:29 | target.taint | enclosingFunctionBody | target document location search $ myId html target $ myId html target taint target taint2 2 $ myId html target taint2 target taint3 document location search $ myId html target taint3 target sub taint4 2 $ myId html target sub taint4 $ myId html target taint5 target taint5 safe target taint6 2 random $ myId html target taint6 random target taint7 safe $ myId html target taint7 target taint8 target taint8 $ myId html target taint8 target taint9 target taint9 safe $ myId html target taint9 |
 | autogenerated/Xss/DomBasedXss/tst.js:386:18:386:29 | target.taint | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/tst.js:386:18:386:29 | target.taint | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:386:18:386:29 | target.taint | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:386:18:386:29 | target.taint | receiverName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:386:18:386:29 | target.taint | stringConcatenatedWith |  |
 | autogenerated/Xss/DomBasedXss/tst.js:389:18:389:30 | target.taint2 | CalleeFlexibleAccessPath | $().html |
@@ -14130,11 +17428,11 @@ tokenFeatures
 | autogenerated/Xss/DomBasedXss/tst.js:389:18:389:30 | target.taint2 | InputArgumentIndex | 0 |
 | autogenerated/Xss/DomBasedXss/tst.js:389:18:389:30 | target.taint2 | assignedToPropName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:389:18:389:30 | target.taint2 | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:389:18:389:30 | target.taint2 | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:389:18:389:30 | target.taint2 | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:389:18:389:30 | target.taint2 | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:389:18:389:30 | target.taint2 | enclosingFunctionBody | target document location search $ myId html target $ myId html target taint target taint2 2 $ myId html target taint2 target taint3 document location search $ myId html target taint3 target sub taint4 2 $ myId html target sub taint4 $ myId html target taint5 target taint5 safe target taint6 2 random $ myId html target taint6 random target taint7 safe $ myId html target taint7 target taint8 target taint8 $ myId html target taint8 target taint9 target taint9 safe $ myId html target taint9 |
 | autogenerated/Xss/DomBasedXss/tst.js:389:18:389:30 | target.taint2 | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/tst.js:389:18:389:30 | target.taint2 | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:389:18:389:30 | target.taint2 | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:389:18:389:30 | target.taint2 | receiverName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:389:18:389:30 | target.taint2 | stringConcatenatedWith |  |
 | autogenerated/Xss/DomBasedXss/tst.js:392:18:392:30 | target.taint3 | CalleeFlexibleAccessPath | $().html |
@@ -14142,11 +17440,11 @@ tokenFeatures
 | autogenerated/Xss/DomBasedXss/tst.js:392:18:392:30 | target.taint3 | InputArgumentIndex | 0 |
 | autogenerated/Xss/DomBasedXss/tst.js:392:18:392:30 | target.taint3 | assignedToPropName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:392:18:392:30 | target.taint3 | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:392:18:392:30 | target.taint3 | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:392:18:392:30 | target.taint3 | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:392:18:392:30 | target.taint3 | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:392:18:392:30 | target.taint3 | enclosingFunctionBody | target document location search $ myId html target $ myId html target taint target taint2 2 $ myId html target taint2 target taint3 document location search $ myId html target taint3 target sub taint4 2 $ myId html target sub taint4 $ myId html target taint5 target taint5 safe target taint6 2 random $ myId html target taint6 random target taint7 safe $ myId html target taint7 target taint8 target taint8 $ myId html target taint8 target taint9 target taint9 safe $ myId html target taint9 |
 | autogenerated/Xss/DomBasedXss/tst.js:392:18:392:30 | target.taint3 | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/tst.js:392:18:392:30 | target.taint3 | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:392:18:392:30 | target.taint3 | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:392:18:392:30 | target.taint3 | receiverName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:392:18:392:30 | target.taint3 | stringConcatenatedWith |  |
 | autogenerated/Xss/DomBasedXss/tst.js:395:18:395:34 | target.sub.taint4 | CalleeFlexibleAccessPath | $().html |
@@ -14154,11 +17452,11 @@ tokenFeatures
 | autogenerated/Xss/DomBasedXss/tst.js:395:18:395:34 | target.sub.taint4 | InputArgumentIndex | 0 |
 | autogenerated/Xss/DomBasedXss/tst.js:395:18:395:34 | target.sub.taint4 | assignedToPropName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:395:18:395:34 | target.sub.taint4 | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:395:18:395:34 | target.sub.taint4 | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:395:18:395:34 | target.sub.taint4 | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:395:18:395:34 | target.sub.taint4 | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:395:18:395:34 | target.sub.taint4 | enclosingFunctionBody | target document location search $ myId html target $ myId html target taint target taint2 2 $ myId html target taint2 target taint3 document location search $ myId html target taint3 target sub taint4 2 $ myId html target sub taint4 $ myId html target taint5 target taint5 safe target taint6 2 random $ myId html target taint6 random target taint7 safe $ myId html target taint7 target taint8 target taint8 $ myId html target taint8 target taint9 target taint9 safe $ myId html target taint9 |
 | autogenerated/Xss/DomBasedXss/tst.js:395:18:395:34 | target.sub.taint4 | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/tst.js:395:18:395:34 | target.sub.taint4 | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:395:18:395:34 | target.sub.taint4 | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:395:18:395:34 | target.sub.taint4 | receiverName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:395:18:395:34 | target.sub.taint4 | stringConcatenatedWith |  |
 | autogenerated/Xss/DomBasedXss/tst.js:397:18:397:30 | target.taint5 | CalleeFlexibleAccessPath | $().html |
@@ -14166,11 +17464,11 @@ tokenFeatures
 | autogenerated/Xss/DomBasedXss/tst.js:397:18:397:30 | target.taint5 | InputArgumentIndex | 0 |
 | autogenerated/Xss/DomBasedXss/tst.js:397:18:397:30 | target.taint5 | assignedToPropName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:397:18:397:30 | target.taint5 | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:397:18:397:30 | target.taint5 | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:397:18:397:30 | target.taint5 | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:397:18:397:30 | target.taint5 | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:397:18:397:30 | target.taint5 | enclosingFunctionBody | target document location search $ myId html target $ myId html target taint target taint2 2 $ myId html target taint2 target taint3 document location search $ myId html target taint3 target sub taint4 2 $ myId html target sub taint4 $ myId html target taint5 target taint5 safe target taint6 2 random $ myId html target taint6 random target taint7 safe $ myId html target taint7 target taint8 target taint8 $ myId html target taint8 target taint9 target taint9 safe $ myId html target taint9 |
 | autogenerated/Xss/DomBasedXss/tst.js:397:18:397:30 | target.taint5 | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/tst.js:397:18:397:30 | target.taint5 | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:397:18:397:30 | target.taint5 | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:397:18:397:30 | target.taint5 | receiverName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:397:18:397:30 | target.taint5 | stringConcatenatedWith |  |
 | autogenerated/Xss/DomBasedXss/tst.js:402:18:402:30 | target.taint6 | CalleeFlexibleAccessPath | $().html |
@@ -14178,11 +17476,11 @@ tokenFeatures
 | autogenerated/Xss/DomBasedXss/tst.js:402:18:402:30 | target.taint6 | InputArgumentIndex | 0 |
 | autogenerated/Xss/DomBasedXss/tst.js:402:18:402:30 | target.taint6 | assignedToPropName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:402:18:402:30 | target.taint6 | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:402:18:402:30 | target.taint6 | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:402:18:402:30 | target.taint6 | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:402:18:402:30 | target.taint6 | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:402:18:402:30 | target.taint6 | enclosingFunctionBody | target document location search $ myId html target $ myId html target taint target taint2 2 $ myId html target taint2 target taint3 document location search $ myId html target taint3 target sub taint4 2 $ myId html target sub taint4 $ myId html target taint5 target taint5 safe target taint6 2 random $ myId html target taint6 random target taint7 safe $ myId html target taint7 target taint8 target taint8 $ myId html target taint8 target taint9 target taint9 safe $ myId html target taint9 |
 | autogenerated/Xss/DomBasedXss/tst.js:402:18:402:30 | target.taint6 | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/tst.js:402:18:402:30 | target.taint6 | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:402:18:402:30 | target.taint6 | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:402:18:402:30 | target.taint6 | receiverName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:402:18:402:30 | target.taint6 | stringConcatenatedWith |  |
 | autogenerated/Xss/DomBasedXss/tst.js:406:18:406:30 | target.taint7 | CalleeFlexibleAccessPath | $().html |
@@ -14190,11 +17488,11 @@ tokenFeatures
 | autogenerated/Xss/DomBasedXss/tst.js:406:18:406:30 | target.taint7 | InputArgumentIndex | 0 |
 | autogenerated/Xss/DomBasedXss/tst.js:406:18:406:30 | target.taint7 | assignedToPropName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:406:18:406:30 | target.taint7 | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:406:18:406:30 | target.taint7 | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:406:18:406:30 | target.taint7 | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:406:18:406:30 | target.taint7 | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:406:18:406:30 | target.taint7 | enclosingFunctionBody | target document location search $ myId html target $ myId html target taint target taint2 2 $ myId html target taint2 target taint3 document location search $ myId html target taint3 target sub taint4 2 $ myId html target sub taint4 $ myId html target taint5 target taint5 safe target taint6 2 random $ myId html target taint6 random target taint7 safe $ myId html target taint7 target taint8 target taint8 $ myId html target taint8 target taint9 target taint9 safe $ myId html target taint9 |
 | autogenerated/Xss/DomBasedXss/tst.js:406:18:406:30 | target.taint7 | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/tst.js:406:18:406:30 | target.taint7 | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:406:18:406:30 | target.taint7 | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:406:18:406:30 | target.taint7 | receiverName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:406:18:406:30 | target.taint7 | stringConcatenatedWith |  |
 | autogenerated/Xss/DomBasedXss/tst.js:409:18:409:30 | target.taint8 | CalleeFlexibleAccessPath | $().html |
@@ -14202,11 +17500,11 @@ tokenFeatures
 | autogenerated/Xss/DomBasedXss/tst.js:409:18:409:30 | target.taint8 | InputArgumentIndex | 0 |
 | autogenerated/Xss/DomBasedXss/tst.js:409:18:409:30 | target.taint8 | assignedToPropName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:409:18:409:30 | target.taint8 | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:409:18:409:30 | target.taint8 | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:409:18:409:30 | target.taint8 | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:409:18:409:30 | target.taint8 | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:409:18:409:30 | target.taint8 | enclosingFunctionBody | target document location search $ myId html target $ myId html target taint target taint2 2 $ myId html target taint2 target taint3 document location search $ myId html target taint3 target sub taint4 2 $ myId html target sub taint4 $ myId html target taint5 target taint5 safe target taint6 2 random $ myId html target taint6 random target taint7 safe $ myId html target taint7 target taint8 target taint8 $ myId html target taint8 target taint9 target taint9 safe $ myId html target taint9 |
 | autogenerated/Xss/DomBasedXss/tst.js:409:18:409:30 | target.taint8 | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/tst.js:409:18:409:30 | target.taint8 | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:409:18:409:30 | target.taint8 | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:409:18:409:30 | target.taint8 | receiverName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:409:18:409:30 | target.taint8 | stringConcatenatedWith |  |
 | autogenerated/Xss/DomBasedXss/tst.js:412:18:412:30 | target.taint9 | CalleeFlexibleAccessPath | $().html |
@@ -14214,11 +17512,11 @@ tokenFeatures
 | autogenerated/Xss/DomBasedXss/tst.js:412:18:412:30 | target.taint9 | InputArgumentIndex | 0 |
 | autogenerated/Xss/DomBasedXss/tst.js:412:18:412:30 | target.taint9 | assignedToPropName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:412:18:412:30 | target.taint9 | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:412:18:412:30 | target.taint9 | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:412:18:412:30 | target.taint9 | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:412:18:412:30 | target.taint9 | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:412:18:412:30 | target.taint9 | enclosingFunctionBody | target document location search $ myId html target $ myId html target taint target taint2 2 $ myId html target taint2 target taint3 document location search $ myId html target taint3 target sub taint4 2 $ myId html target sub taint4 $ myId html target taint5 target taint5 safe target taint6 2 random $ myId html target taint6 random target taint7 safe $ myId html target taint7 target taint8 target taint8 $ myId html target taint8 target taint9 target taint9 safe $ myId html target taint9 |
 | autogenerated/Xss/DomBasedXss/tst.js:412:18:412:30 | target.taint9 | enclosingFunctionName | test |
-| autogenerated/Xss/DomBasedXss/tst.js:412:18:412:30 | target.taint9 | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:412:18:412:30 | target.taint9 | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:412:18:412:30 | target.taint9 | receiverName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:412:18:412:30 | target.taint9 | stringConcatenatedWith |  |
 | autogenerated/Xss/DomBasedXss/tst.js:417:18:417:24 | payload | CalleeFlexibleAccessPath | document.write |
@@ -14226,11 +17524,11 @@ tokenFeatures
 | autogenerated/Xss/DomBasedXss/tst.js:417:18:417:24 | payload | InputArgumentIndex | 0 |
 | autogenerated/Xss/DomBasedXss/tst.js:417:18:417:24 | payload | assignedToPropName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:417:18:417:24 | payload | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:417:18:417:24 | payload | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:417:18:417:24 | payload | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:417:18:417:24 | payload | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:417:18:417:24 | payload | enclosingFunctionBody | payload window location hash substr 1 document write payload match window location hash match /hello (\\w+)/ match document write match 1 1 document write window 1 location hash split # 1 |
 | autogenerated/Xss/DomBasedXss/tst.js:417:18:417:24 | payload | enclosingFunctionName | hash2 |
-| autogenerated/Xss/DomBasedXss/tst.js:417:18:417:24 | payload | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:417:18:417:24 | payload | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:417:18:417:24 | payload | receiverName | document |
 | autogenerated/Xss/DomBasedXss/tst.js:417:18:417:24 | payload | stringConcatenatedWith |  |
 | autogenerated/Xss/DomBasedXss/tst.js:421:20:421:27 | match[1] | CalleeFlexibleAccessPath | document.write |
@@ -14238,11 +17536,11 @@ tokenFeatures
 | autogenerated/Xss/DomBasedXss/tst.js:421:20:421:27 | match[1] | InputArgumentIndex | 0 |
 | autogenerated/Xss/DomBasedXss/tst.js:421:20:421:27 | match[1] | assignedToPropName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:421:20:421:27 | match[1] | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:421:20:421:27 | match[1] | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:421:20:421:27 | match[1] | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:421:20:421:27 | match[1] | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:421:20:421:27 | match[1] | enclosingFunctionBody | payload window location hash substr 1 document write payload match window location hash match /hello (\\w+)/ match document write match 1 1 document write window 1 location hash split # 1 |
 | autogenerated/Xss/DomBasedXss/tst.js:421:20:421:27 | match[1] | enclosingFunctionName | hash2 |
-| autogenerated/Xss/DomBasedXss/tst.js:421:20:421:27 | match[1] | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:421:20:421:27 | match[1] | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:421:20:421:27 | match[1] | receiverName | document |
 | autogenerated/Xss/DomBasedXss/tst.js:421:20:421:27 | match[1] | stringConcatenatedWith |  |
 | autogenerated/Xss/DomBasedXss/tst.js:424:18:424:51 | window. ... '#')[1] | CalleeFlexibleAccessPath | document.write |
@@ -14250,11 +17548,11 @@ tokenFeatures
 | autogenerated/Xss/DomBasedXss/tst.js:424:18:424:51 | window. ... '#')[1] | InputArgumentIndex | 0 |
 | autogenerated/Xss/DomBasedXss/tst.js:424:18:424:51 | window. ... '#')[1] | assignedToPropName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:424:18:424:51 | window. ... '#')[1] | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:424:18:424:51 | window. ... '#')[1] | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:424:18:424:51 | window. ... '#')[1] | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:424:18:424:51 | window. ... '#')[1] | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:424:18:424:51 | window. ... '#')[1] | enclosingFunctionBody | payload window location hash substr 1 document write payload match window location hash match /hello (\\w+)/ match document write match 1 1 document write window 1 location hash split # 1 |
 | autogenerated/Xss/DomBasedXss/tst.js:424:18:424:51 | window. ... '#')[1] | enclosingFunctionName | hash2 |
-| autogenerated/Xss/DomBasedXss/tst.js:424:18:424:51 | window. ... '#')[1] | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:424:18:424:51 | window. ... '#')[1] | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:424:18:424:51 | window. ... '#')[1] | receiverName | document |
 | autogenerated/Xss/DomBasedXss/tst.js:424:18:424:51 | window. ... '#')[1] | stringConcatenatedWith |  |
 | autogenerated/Xss/DomBasedXss/tst.js:430:18:430:89 | target. ... data>') | CalleeFlexibleAccessPath | $().html |
@@ -14262,11 +17560,11 @@ tokenFeatures
 | autogenerated/Xss/DomBasedXss/tst.js:430:18:430:89 | target. ... data>') | InputArgumentIndex | 0 |
 | autogenerated/Xss/DomBasedXss/tst.js:430:18:430:89 | target. ... data>') | assignedToPropName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:430:18:430:89 | target. ... data>') | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:430:18:430:89 | target. ... data>') | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:430:18:430:89 | target. ... data>') | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:430:18:430:89 | target. ... data>') | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:430:18:430:89 | target. ... data>') | enclosingFunctionBody | target document location search $ #foo html target replace /<metadata>[\\s\\S]*<\\/metadata>/ <metadata></metadata> $ #foo html target replace /<\|>/g  |
 | autogenerated/Xss/DomBasedXss/tst.js:430:18:430:89 | target. ... data>') | enclosingFunctionName | nonGlobalSanitizer |
-| autogenerated/Xss/DomBasedXss/tst.js:430:18:430:89 | target. ... data>') | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:430:18:430:89 | target. ... data>') | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:430:18:430:89 | target. ... data>') | receiverName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:430:18:430:89 | target. ... data>') | stringConcatenatedWith |  |
 | autogenerated/Xss/DomBasedXss/tst.js:432:18:432:43 | target. ... /g, '') | CalleeFlexibleAccessPath | $().html |
@@ -14274,13 +17572,361 @@ tokenFeatures
 | autogenerated/Xss/DomBasedXss/tst.js:432:18:432:43 | target. ... /g, '') | InputArgumentIndex | 0 |
 | autogenerated/Xss/DomBasedXss/tst.js:432:18:432:43 | target. ... /g, '') | assignedToPropName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:432:18:432:43 | target. ... /g, '') | calleeImports |  |
-| autogenerated/Xss/DomBasedXss/tst.js:432:18:432:43 | target. ... /g, '') | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:432:18:432:43 | target. ... /g, '') | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
 | autogenerated/Xss/DomBasedXss/tst.js:432:18:432:43 | target. ... /g, '') | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/tst.js:432:18:432:43 | target. ... /g, '') | enclosingFunctionBody | target document location search $ #foo html target replace /<metadata>[\\s\\S]*<\\/metadata>/ <metadata></metadata> $ #foo html target replace /<\|>/g  |
 | autogenerated/Xss/DomBasedXss/tst.js:432:18:432:43 | target. ... /g, '') | enclosingFunctionName | nonGlobalSanitizer |
-| autogenerated/Xss/DomBasedXss/tst.js:432:18:432:43 | target. ... /g, '') | fileImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:432:18:432:43 | target. ... /g, '') | fileImports | ansi-to-html |
 | autogenerated/Xss/DomBasedXss/tst.js:432:18:432:43 | target. ... /g, '') | receiverName |  |
 | autogenerated/Xss/DomBasedXss/tst.js:432:18:432:43 | target. ... /g, '') | stringConcatenatedWith |  |
+| autogenerated/Xss/DomBasedXss/tst.js:440:28:440:33 | source | CalleeFlexibleAccessPath | Element |
+| autogenerated/Xss/DomBasedXss/tst.js:440:28:440:33 | source | InputAccessPathFromCallee | ?.html |
+| autogenerated/Xss/DomBasedXss/tst.js:440:28:440:33 | source | InputArgumentIndex | 1 |
+| autogenerated/Xss/DomBasedXss/tst.js:440:28:440:33 | source | assignedToPropName | html |
+| autogenerated/Xss/DomBasedXss/tst.js:440:28:440:33 | source | calleeImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:440:28:440:33 | source | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:440:28:440:33 | source | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/tst.js:440:28:440:33 | source | enclosingFunctionBody | source document location search Element div Element div text source Element div html source Element div set html source Element div set html source Element div setProperty html source Element div setProperties html source Element div appendHtml source |
+| autogenerated/Xss/DomBasedXss/tst.js:440:28:440:33 | source | enclosingFunctionName | mootools |
+| autogenerated/Xss/DomBasedXss/tst.js:440:28:440:33 | source | fileImports | ansi-to-html |
+| autogenerated/Xss/DomBasedXss/tst.js:440:28:440:33 | source | receiverName |  |
+| autogenerated/Xss/DomBasedXss/tst.js:440:28:440:33 | source | stringConcatenatedWith |  |
+| autogenerated/Xss/DomBasedXss/tst.js:441:33:441:38 | source | CalleeFlexibleAccessPath | Element().set |
+| autogenerated/Xss/DomBasedXss/tst.js:441:33:441:38 | source | InputAccessPathFromCallee |  |
+| autogenerated/Xss/DomBasedXss/tst.js:441:33:441:38 | source | InputArgumentIndex | 1 |
+| autogenerated/Xss/DomBasedXss/tst.js:441:33:441:38 | source | assignedToPropName |  |
+| autogenerated/Xss/DomBasedXss/tst.js:441:33:441:38 | source | calleeImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:441:33:441:38 | source | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:441:33:441:38 | source | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/tst.js:441:33:441:38 | source | enclosingFunctionBody | source document location search Element div Element div text source Element div html source Element div set html source Element div set html source Element div setProperty html source Element div setProperties html source Element div appendHtml source |
+| autogenerated/Xss/DomBasedXss/tst.js:441:33:441:38 | source | enclosingFunctionName | mootools |
+| autogenerated/Xss/DomBasedXss/tst.js:441:33:441:38 | source | fileImports | ansi-to-html |
+| autogenerated/Xss/DomBasedXss/tst.js:441:33:441:38 | source | receiverName |  |
+| autogenerated/Xss/DomBasedXss/tst.js:441:33:441:38 | source | stringConcatenatedWith |  |
+| autogenerated/Xss/DomBasedXss/tst.js:442:34:442:39 | source | CalleeFlexibleAccessPath | Element().set |
+| autogenerated/Xss/DomBasedXss/tst.js:442:34:442:39 | source | InputAccessPathFromCallee | 0.html |
+| autogenerated/Xss/DomBasedXss/tst.js:442:34:442:39 | source | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/tst.js:442:34:442:39 | source | assignedToPropName | html |
+| autogenerated/Xss/DomBasedXss/tst.js:442:34:442:39 | source | calleeImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:442:34:442:39 | source | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:442:34:442:39 | source | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/tst.js:442:34:442:39 | source | enclosingFunctionBody | source document location search Element div Element div text source Element div html source Element div set html source Element div set html source Element div setProperty html source Element div setProperties html source Element div appendHtml source |
+| autogenerated/Xss/DomBasedXss/tst.js:442:34:442:39 | source | enclosingFunctionName | mootools |
+| autogenerated/Xss/DomBasedXss/tst.js:442:34:442:39 | source | fileImports | ansi-to-html |
+| autogenerated/Xss/DomBasedXss/tst.js:442:34:442:39 | source | receiverName |  |
+| autogenerated/Xss/DomBasedXss/tst.js:442:34:442:39 | source | stringConcatenatedWith |  |
+| autogenerated/Xss/DomBasedXss/tst.js:443:41:443:46 | source | CalleeFlexibleAccessPath | Element().setProperty |
+| autogenerated/Xss/DomBasedXss/tst.js:443:41:443:46 | source | InputAccessPathFromCallee |  |
+| autogenerated/Xss/DomBasedXss/tst.js:443:41:443:46 | source | InputArgumentIndex | 1 |
+| autogenerated/Xss/DomBasedXss/tst.js:443:41:443:46 | source | assignedToPropName |  |
+| autogenerated/Xss/DomBasedXss/tst.js:443:41:443:46 | source | calleeImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:443:41:443:46 | source | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:443:41:443:46 | source | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/tst.js:443:41:443:46 | source | enclosingFunctionBody | source document location search Element div Element div text source Element div html source Element div set html source Element div set html source Element div setProperty html source Element div setProperties html source Element div appendHtml source |
+| autogenerated/Xss/DomBasedXss/tst.js:443:41:443:46 | source | enclosingFunctionName | mootools |
+| autogenerated/Xss/DomBasedXss/tst.js:443:41:443:46 | source | fileImports | ansi-to-html |
+| autogenerated/Xss/DomBasedXss/tst.js:443:41:443:46 | source | receiverName |  |
+| autogenerated/Xss/DomBasedXss/tst.js:443:41:443:46 | source | stringConcatenatedWith |  |
+| autogenerated/Xss/DomBasedXss/tst.js:444:44:444:49 | source | CalleeFlexibleAccessPath | Element().setProperties |
+| autogenerated/Xss/DomBasedXss/tst.js:444:44:444:49 | source | InputAccessPathFromCallee | 0.html |
+| autogenerated/Xss/DomBasedXss/tst.js:444:44:444:49 | source | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/tst.js:444:44:444:49 | source | assignedToPropName | html |
+| autogenerated/Xss/DomBasedXss/tst.js:444:44:444:49 | source | calleeImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:444:44:444:49 | source | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:444:44:444:49 | source | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/tst.js:444:44:444:49 | source | enclosingFunctionBody | source document location search Element div Element div text source Element div html source Element div set html source Element div set html source Element div setProperty html source Element div setProperties html source Element div appendHtml source |
+| autogenerated/Xss/DomBasedXss/tst.js:444:44:444:49 | source | enclosingFunctionName | mootools |
+| autogenerated/Xss/DomBasedXss/tst.js:444:44:444:49 | source | fileImports | ansi-to-html |
+| autogenerated/Xss/DomBasedXss/tst.js:444:44:444:49 | source | receiverName |  |
+| autogenerated/Xss/DomBasedXss/tst.js:444:44:444:49 | source | stringConcatenatedWith |  |
+| autogenerated/Xss/DomBasedXss/tst.js:445:32:445:37 | source | CalleeFlexibleAccessPath | Element().appendHtml |
+| autogenerated/Xss/DomBasedXss/tst.js:445:32:445:37 | source | InputAccessPathFromCallee |  |
+| autogenerated/Xss/DomBasedXss/tst.js:445:32:445:37 | source | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/tst.js:445:32:445:37 | source | assignedToPropName |  |
+| autogenerated/Xss/DomBasedXss/tst.js:445:32:445:37 | source | calleeImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:445:32:445:37 | source | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:445:32:445:37 | source | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/tst.js:445:32:445:37 | source | enclosingFunctionBody | source document location search Element div Element div text source Element div html source Element div set html source Element div set html source Element div setProperty html source Element div setProperties html source Element div appendHtml source |
+| autogenerated/Xss/DomBasedXss/tst.js:445:32:445:37 | source | enclosingFunctionName | mootools |
+| autogenerated/Xss/DomBasedXss/tst.js:445:32:445:37 | source | fileImports | ansi-to-html |
+| autogenerated/Xss/DomBasedXss/tst.js:445:32:445:37 | source | receiverName |  |
+| autogenerated/Xss/DomBasedXss/tst.js:445:32:445:37 | source | stringConcatenatedWith |  |
+| autogenerated/Xss/DomBasedXss/tst.js:455:18:455:23 | source | CalleeFlexibleAccessPath | $().html |
+| autogenerated/Xss/DomBasedXss/tst.js:455:18:455:23 | source | InputAccessPathFromCallee |  |
+| autogenerated/Xss/DomBasedXss/tst.js:455:18:455:23 | source | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/tst.js:455:18:455:23 | source | assignedToPropName |  |
+| autogenerated/Xss/DomBasedXss/tst.js:455:18:455:23 | source | calleeImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:455:18:455:23 | source | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:455:18:455:23 | source | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/tst.js:455:18:455:23 | source | enclosingFunctionBody | source document location search $ #foo html source $ #foo html ansiToHtml toHtml source |
+| autogenerated/Xss/DomBasedXss/tst.js:455:18:455:23 | source | enclosingFunctionName | ansiToHTML |
+| autogenerated/Xss/DomBasedXss/tst.js:455:18:455:23 | source | fileImports | ansi-to-html |
+| autogenerated/Xss/DomBasedXss/tst.js:455:18:455:23 | source | receiverName |  |
+| autogenerated/Xss/DomBasedXss/tst.js:455:18:455:23 | source | stringConcatenatedWith |  |
+| autogenerated/Xss/DomBasedXss/tst.js:456:18:456:42 | ansiToH ... source) | CalleeFlexibleAccessPath | $().html |
+| autogenerated/Xss/DomBasedXss/tst.js:456:18:456:42 | ansiToH ... source) | InputAccessPathFromCallee |  |
+| autogenerated/Xss/DomBasedXss/tst.js:456:18:456:42 | ansiToH ... source) | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/tst.js:456:18:456:42 | ansiToH ... source) | assignedToPropName |  |
+| autogenerated/Xss/DomBasedXss/tst.js:456:18:456:42 | ansiToH ... source) | calleeImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:456:18:456:42 | ansiToH ... source) | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:456:18:456:42 | ansiToH ... source) | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/tst.js:456:18:456:42 | ansiToH ... source) | enclosingFunctionBody | source document location search $ #foo html source $ #foo html ansiToHtml toHtml source |
+| autogenerated/Xss/DomBasedXss/tst.js:456:18:456:42 | ansiToH ... source) | enclosingFunctionName | ansiToHTML |
+| autogenerated/Xss/DomBasedXss/tst.js:456:18:456:42 | ansiToH ... source) | fileImports | ansi-to-html |
+| autogenerated/Xss/DomBasedXss/tst.js:456:18:456:42 | ansiToH ... source) | receiverName |  |
+| autogenerated/Xss/DomBasedXss/tst.js:456:18:456:42 | ansiToH ... source) | stringConcatenatedWith |  |
+| autogenerated/Xss/DomBasedXss/tst.js:463:21:463:26 | source | CalleeFlexibleAccessPath |  |
+| autogenerated/Xss/DomBasedXss/tst.js:463:21:463:26 | source | InputAccessPathFromCallee |  |
+| autogenerated/Xss/DomBasedXss/tst.js:463:21:463:26 | source | InputArgumentIndex |  |
+| autogenerated/Xss/DomBasedXss/tst.js:463:21:463:26 | source | assignedToPropName | innerHTML |
+| autogenerated/Xss/DomBasedXss/tst.js:463:21:463:26 | source | calleeImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:463:21:463:26 | source | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:463:21:463:26 | source | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/tst.js:463:21:463:26 | source | enclosingFunctionBody | source document location search table document getElementById mytable table innerHTML source row table insertRow 1 row innerHTML source cell row insertCell cell innerHTML source |
+| autogenerated/Xss/DomBasedXss/tst.js:463:21:463:26 | source | enclosingFunctionName | domMethods |
+| autogenerated/Xss/DomBasedXss/tst.js:463:21:463:26 | source | fileImports | ansi-to-html |
+| autogenerated/Xss/DomBasedXss/tst.js:463:21:463:26 | source | receiverName |  |
+| autogenerated/Xss/DomBasedXss/tst.js:463:21:463:26 | source | stringConcatenatedWith |  |
+| autogenerated/Xss/DomBasedXss/tst.js:465:19:465:24 | source | CalleeFlexibleAccessPath |  |
+| autogenerated/Xss/DomBasedXss/tst.js:465:19:465:24 | source | InputAccessPathFromCallee |  |
+| autogenerated/Xss/DomBasedXss/tst.js:465:19:465:24 | source | InputArgumentIndex |  |
+| autogenerated/Xss/DomBasedXss/tst.js:465:19:465:24 | source | assignedToPropName | innerHTML |
+| autogenerated/Xss/DomBasedXss/tst.js:465:19:465:24 | source | calleeImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:465:19:465:24 | source | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:465:19:465:24 | source | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/tst.js:465:19:465:24 | source | enclosingFunctionBody | source document location search table document getElementById mytable table innerHTML source row table insertRow 1 row innerHTML source cell row insertCell cell innerHTML source |
+| autogenerated/Xss/DomBasedXss/tst.js:465:19:465:24 | source | enclosingFunctionName | domMethods |
+| autogenerated/Xss/DomBasedXss/tst.js:465:19:465:24 | source | fileImports | ansi-to-html |
+| autogenerated/Xss/DomBasedXss/tst.js:465:19:465:24 | source | receiverName |  |
+| autogenerated/Xss/DomBasedXss/tst.js:465:19:465:24 | source | stringConcatenatedWith |  |
+| autogenerated/Xss/DomBasedXss/tst.js:467:20:467:25 | source | CalleeFlexibleAccessPath |  |
+| autogenerated/Xss/DomBasedXss/tst.js:467:20:467:25 | source | InputAccessPathFromCallee |  |
+| autogenerated/Xss/DomBasedXss/tst.js:467:20:467:25 | source | InputArgumentIndex |  |
+| autogenerated/Xss/DomBasedXss/tst.js:467:20:467:25 | source | assignedToPropName | innerHTML |
+| autogenerated/Xss/DomBasedXss/tst.js:467:20:467:25 | source | calleeImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:467:20:467:25 | source | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:467:20:467:25 | source | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/tst.js:467:20:467:25 | source | enclosingFunctionBody | source document location search table document getElementById mytable table innerHTML source row table insertRow 1 row innerHTML source cell row insertCell cell innerHTML source |
+| autogenerated/Xss/DomBasedXss/tst.js:467:20:467:25 | source | enclosingFunctionName | domMethods |
+| autogenerated/Xss/DomBasedXss/tst.js:467:20:467:25 | source | fileImports | ansi-to-html |
+| autogenerated/Xss/DomBasedXss/tst.js:467:20:467:25 | source | receiverName |  |
+| autogenerated/Xss/DomBasedXss/tst.js:467:20:467:25 | source | stringConcatenatedWith |  |
+| autogenerated/Xss/DomBasedXss/tst.js:473:12:473:22 | {href: url} | CalleeFlexibleAccessPath | $ |
+| autogenerated/Xss/DomBasedXss/tst.js:473:12:473:22 | {href: url} | InputAccessPathFromCallee |  |
+| autogenerated/Xss/DomBasedXss/tst.js:473:12:473:22 | {href: url} | InputArgumentIndex | 1 |
+| autogenerated/Xss/DomBasedXss/tst.js:473:12:473:22 | {href: url} | assignedToPropName |  |
+| autogenerated/Xss/DomBasedXss/tst.js:473:12:473:22 | {href: url} | calleeImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:473:12:473:22 | {href: url} | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:473:12:473:22 | {href: url} | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/tst.js:473:12:473:22 | {href: url} | enclosingFunctionBody | url document location search substr 1 $ <a> href url appendTo body $ #foo attr href url $ #foo attr href url $ <img> src url appendTo body $ <a> href win location href appendTo body $ <img> src http://google.com/ url appendTo body $ <img> src http://google.com url join / appendTo body url startsWith https:// $ <img> src url appendTo body $ <img> src url appendTo body window open location hash substr 1 navigation navigate location hash substr 1 |
+| autogenerated/Xss/DomBasedXss/tst.js:473:12:473:22 | {href: url} | enclosingFunctionName | urlStuff |
+| autogenerated/Xss/DomBasedXss/tst.js:473:12:473:22 | {href: url} | fileImports | ansi-to-html |
+| autogenerated/Xss/DomBasedXss/tst.js:473:12:473:22 | {href: url} | receiverName |  |
+| autogenerated/Xss/DomBasedXss/tst.js:473:12:473:22 | {href: url} | stringConcatenatedWith |  |
+| autogenerated/Xss/DomBasedXss/tst.js:473:19:473:21 | url | CalleeFlexibleAccessPath | $ |
+| autogenerated/Xss/DomBasedXss/tst.js:473:19:473:21 | url | InputAccessPathFromCallee | 1.href |
+| autogenerated/Xss/DomBasedXss/tst.js:473:19:473:21 | url | InputArgumentIndex | 1 |
+| autogenerated/Xss/DomBasedXss/tst.js:473:19:473:21 | url | assignedToPropName | href |
+| autogenerated/Xss/DomBasedXss/tst.js:473:19:473:21 | url | calleeImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:473:19:473:21 | url | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:473:19:473:21 | url | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/tst.js:473:19:473:21 | url | enclosingFunctionBody | url document location search substr 1 $ <a> href url appendTo body $ #foo attr href url $ #foo attr href url $ <img> src url appendTo body $ <a> href win location href appendTo body $ <img> src http://google.com/ url appendTo body $ <img> src http://google.com url join / appendTo body url startsWith https:// $ <img> src url appendTo body $ <img> src url appendTo body window open location hash substr 1 navigation navigate location hash substr 1 |
+| autogenerated/Xss/DomBasedXss/tst.js:473:19:473:21 | url | enclosingFunctionName | urlStuff |
+| autogenerated/Xss/DomBasedXss/tst.js:473:19:473:21 | url | fileImports | ansi-to-html |
+| autogenerated/Xss/DomBasedXss/tst.js:473:19:473:21 | url | receiverName |  |
+| autogenerated/Xss/DomBasedXss/tst.js:473:19:473:21 | url | stringConcatenatedWith |  |
+| autogenerated/Xss/DomBasedXss/tst.js:474:26:474:28 | url | CalleeFlexibleAccessPath | $().attr |
+| autogenerated/Xss/DomBasedXss/tst.js:474:26:474:28 | url | InputAccessPathFromCallee |  |
+| autogenerated/Xss/DomBasedXss/tst.js:474:26:474:28 | url | InputArgumentIndex | 1 |
+| autogenerated/Xss/DomBasedXss/tst.js:474:26:474:28 | url | assignedToPropName |  |
+| autogenerated/Xss/DomBasedXss/tst.js:474:26:474:28 | url | calleeImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:474:26:474:28 | url | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:474:26:474:28 | url | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/tst.js:474:26:474:28 | url | enclosingFunctionBody | url document location search substr 1 $ <a> href url appendTo body $ #foo attr href url $ #foo attr href url $ <img> src url appendTo body $ <a> href win location href appendTo body $ <img> src http://google.com/ url appendTo body $ <img> src http://google.com url join / appendTo body url startsWith https:// $ <img> src url appendTo body $ <img> src url appendTo body window open location hash substr 1 navigation navigate location hash substr 1 |
+| autogenerated/Xss/DomBasedXss/tst.js:474:26:474:28 | url | enclosingFunctionName | urlStuff |
+| autogenerated/Xss/DomBasedXss/tst.js:474:26:474:28 | url | fileImports | ansi-to-html |
+| autogenerated/Xss/DomBasedXss/tst.js:474:26:474:28 | url | receiverName |  |
+| autogenerated/Xss/DomBasedXss/tst.js:474:26:474:28 | url | stringConcatenatedWith |  |
+| autogenerated/Xss/DomBasedXss/tst.js:475:18:475:28 | {href: url} | CalleeFlexibleAccessPath | $().attr |
+| autogenerated/Xss/DomBasedXss/tst.js:475:18:475:28 | {href: url} | InputAccessPathFromCallee |  |
+| autogenerated/Xss/DomBasedXss/tst.js:475:18:475:28 | {href: url} | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/tst.js:475:18:475:28 | {href: url} | assignedToPropName |  |
+| autogenerated/Xss/DomBasedXss/tst.js:475:18:475:28 | {href: url} | calleeImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:475:18:475:28 | {href: url} | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:475:18:475:28 | {href: url} | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/tst.js:475:18:475:28 | {href: url} | enclosingFunctionBody | url document location search substr 1 $ <a> href url appendTo body $ #foo attr href url $ #foo attr href url $ <img> src url appendTo body $ <a> href win location href appendTo body $ <img> src http://google.com/ url appendTo body $ <img> src http://google.com url join / appendTo body url startsWith https:// $ <img> src url appendTo body $ <img> src url appendTo body window open location hash substr 1 navigation navigate location hash substr 1 |
+| autogenerated/Xss/DomBasedXss/tst.js:475:18:475:28 | {href: url} | enclosingFunctionName | urlStuff |
+| autogenerated/Xss/DomBasedXss/tst.js:475:18:475:28 | {href: url} | fileImports | ansi-to-html |
+| autogenerated/Xss/DomBasedXss/tst.js:475:18:475:28 | {href: url} | receiverName |  |
+| autogenerated/Xss/DomBasedXss/tst.js:475:18:475:28 | {href: url} | stringConcatenatedWith |  |
+| autogenerated/Xss/DomBasedXss/tst.js:475:25:475:27 | url | CalleeFlexibleAccessPath | $().attr |
+| autogenerated/Xss/DomBasedXss/tst.js:475:25:475:27 | url | InputAccessPathFromCallee | 0.href |
+| autogenerated/Xss/DomBasedXss/tst.js:475:25:475:27 | url | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/tst.js:475:25:475:27 | url | assignedToPropName | href |
+| autogenerated/Xss/DomBasedXss/tst.js:475:25:475:27 | url | calleeImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:475:25:475:27 | url | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:475:25:475:27 | url | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/tst.js:475:25:475:27 | url | enclosingFunctionBody | url document location search substr 1 $ <a> href url appendTo body $ #foo attr href url $ #foo attr href url $ <img> src url appendTo body $ <a> href win location href appendTo body $ <img> src http://google.com/ url appendTo body $ <img> src http://google.com url join / appendTo body url startsWith https:// $ <img> src url appendTo body $ <img> src url appendTo body window open location hash substr 1 navigation navigate location hash substr 1 |
+| autogenerated/Xss/DomBasedXss/tst.js:475:25:475:27 | url | enclosingFunctionName | urlStuff |
+| autogenerated/Xss/DomBasedXss/tst.js:475:25:475:27 | url | fileImports | ansi-to-html |
+| autogenerated/Xss/DomBasedXss/tst.js:475:25:475:27 | url | receiverName |  |
+| autogenerated/Xss/DomBasedXss/tst.js:475:25:475:27 | url | stringConcatenatedWith |  |
+| autogenerated/Xss/DomBasedXss/tst.js:476:14:476:23 | {src: url} | CalleeFlexibleAccessPath | $ |
+| autogenerated/Xss/DomBasedXss/tst.js:476:14:476:23 | {src: url} | InputAccessPathFromCallee |  |
+| autogenerated/Xss/DomBasedXss/tst.js:476:14:476:23 | {src: url} | InputArgumentIndex | 1 |
+| autogenerated/Xss/DomBasedXss/tst.js:476:14:476:23 | {src: url} | assignedToPropName |  |
+| autogenerated/Xss/DomBasedXss/tst.js:476:14:476:23 | {src: url} | calleeImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:476:14:476:23 | {src: url} | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:476:14:476:23 | {src: url} | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/tst.js:476:14:476:23 | {src: url} | enclosingFunctionBody | url document location search substr 1 $ <a> href url appendTo body $ #foo attr href url $ #foo attr href url $ <img> src url appendTo body $ <a> href win location href appendTo body $ <img> src http://google.com/ url appendTo body $ <img> src http://google.com url join / appendTo body url startsWith https:// $ <img> src url appendTo body $ <img> src url appendTo body window open location hash substr 1 navigation navigate location hash substr 1 |
+| autogenerated/Xss/DomBasedXss/tst.js:476:14:476:23 | {src: url} | enclosingFunctionName | urlStuff |
+| autogenerated/Xss/DomBasedXss/tst.js:476:14:476:23 | {src: url} | fileImports | ansi-to-html |
+| autogenerated/Xss/DomBasedXss/tst.js:476:14:476:23 | {src: url} | receiverName |  |
+| autogenerated/Xss/DomBasedXss/tst.js:476:14:476:23 | {src: url} | stringConcatenatedWith |  |
+| autogenerated/Xss/DomBasedXss/tst.js:476:20:476:22 | url | CalleeFlexibleAccessPath | $ |
+| autogenerated/Xss/DomBasedXss/tst.js:476:20:476:22 | url | InputAccessPathFromCallee | 1.src |
+| autogenerated/Xss/DomBasedXss/tst.js:476:20:476:22 | url | InputArgumentIndex | 1 |
+| autogenerated/Xss/DomBasedXss/tst.js:476:20:476:22 | url | assignedToPropName | src |
+| autogenerated/Xss/DomBasedXss/tst.js:476:20:476:22 | url | calleeImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:476:20:476:22 | url | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:476:20:476:22 | url | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/tst.js:476:20:476:22 | url | enclosingFunctionBody | url document location search substr 1 $ <a> href url appendTo body $ #foo attr href url $ #foo attr href url $ <img> src url appendTo body $ <a> href win location href appendTo body $ <img> src http://google.com/ url appendTo body $ <img> src http://google.com url join / appendTo body url startsWith https:// $ <img> src url appendTo body $ <img> src url appendTo body window open location hash substr 1 navigation navigate location hash substr 1 |
+| autogenerated/Xss/DomBasedXss/tst.js:476:20:476:22 | url | enclosingFunctionName | urlStuff |
+| autogenerated/Xss/DomBasedXss/tst.js:476:20:476:22 | url | fileImports | ansi-to-html |
+| autogenerated/Xss/DomBasedXss/tst.js:476:20:476:22 | url | receiverName |  |
+| autogenerated/Xss/DomBasedXss/tst.js:476:20:476:22 | url | stringConcatenatedWith |  |
+| autogenerated/Xss/DomBasedXss/tst.js:477:12:477:36 | {href:  ... n.href} | CalleeFlexibleAccessPath | $ |
+| autogenerated/Xss/DomBasedXss/tst.js:477:12:477:36 | {href:  ... n.href} | InputAccessPathFromCallee |  |
+| autogenerated/Xss/DomBasedXss/tst.js:477:12:477:36 | {href:  ... n.href} | InputArgumentIndex | 1 |
+| autogenerated/Xss/DomBasedXss/tst.js:477:12:477:36 | {href:  ... n.href} | assignedToPropName |  |
+| autogenerated/Xss/DomBasedXss/tst.js:477:12:477:36 | {href:  ... n.href} | calleeImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:477:12:477:36 | {href:  ... n.href} | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:477:12:477:36 | {href:  ... n.href} | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/tst.js:477:12:477:36 | {href:  ... n.href} | enclosingFunctionBody | url document location search substr 1 $ <a> href url appendTo body $ #foo attr href url $ #foo attr href url $ <img> src url appendTo body $ <a> href win location href appendTo body $ <img> src http://google.com/ url appendTo body $ <img> src http://google.com url join / appendTo body url startsWith https:// $ <img> src url appendTo body $ <img> src url appendTo body window open location hash substr 1 navigation navigate location hash substr 1 |
+| autogenerated/Xss/DomBasedXss/tst.js:477:12:477:36 | {href:  ... n.href} | enclosingFunctionName | urlStuff |
+| autogenerated/Xss/DomBasedXss/tst.js:477:12:477:36 | {href:  ... n.href} | fileImports | ansi-to-html |
+| autogenerated/Xss/DomBasedXss/tst.js:477:12:477:36 | {href:  ... n.href} | receiverName |  |
+| autogenerated/Xss/DomBasedXss/tst.js:477:12:477:36 | {href:  ... n.href} | stringConcatenatedWith |  |
+| autogenerated/Xss/DomBasedXss/tst.js:477:19:477:35 | win.location.href | CalleeFlexibleAccessPath | $ |
+| autogenerated/Xss/DomBasedXss/tst.js:477:19:477:35 | win.location.href | InputAccessPathFromCallee | 1.href |
+| autogenerated/Xss/DomBasedXss/tst.js:477:19:477:35 | win.location.href | InputArgumentIndex | 1 |
+| autogenerated/Xss/DomBasedXss/tst.js:477:19:477:35 | win.location.href | assignedToPropName | href |
+| autogenerated/Xss/DomBasedXss/tst.js:477:19:477:35 | win.location.href | calleeImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:477:19:477:35 | win.location.href | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:477:19:477:35 | win.location.href | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/tst.js:477:19:477:35 | win.location.href | enclosingFunctionBody | url document location search substr 1 $ <a> href url appendTo body $ #foo attr href url $ #foo attr href url $ <img> src url appendTo body $ <a> href win location href appendTo body $ <img> src http://google.com/ url appendTo body $ <img> src http://google.com url join / appendTo body url startsWith https:// $ <img> src url appendTo body $ <img> src url appendTo body window open location hash substr 1 navigation navigate location hash substr 1 |
+| autogenerated/Xss/DomBasedXss/tst.js:477:19:477:35 | win.location.href | enclosingFunctionName | urlStuff |
+| autogenerated/Xss/DomBasedXss/tst.js:477:19:477:35 | win.location.href | fileImports | ansi-to-html |
+| autogenerated/Xss/DomBasedXss/tst.js:477:19:477:35 | win.location.href | receiverName |  |
+| autogenerated/Xss/DomBasedXss/tst.js:477:19:477:35 | win.location.href | stringConcatenatedWith |  |
+| autogenerated/Xss/DomBasedXss/tst.js:479:14:479:46 | {src: " ...  + url} | CalleeFlexibleAccessPath | $ |
+| autogenerated/Xss/DomBasedXss/tst.js:479:14:479:46 | {src: " ...  + url} | InputAccessPathFromCallee |  |
+| autogenerated/Xss/DomBasedXss/tst.js:479:14:479:46 | {src: " ...  + url} | InputArgumentIndex | 1 |
+| autogenerated/Xss/DomBasedXss/tst.js:479:14:479:46 | {src: " ...  + url} | assignedToPropName |  |
+| autogenerated/Xss/DomBasedXss/tst.js:479:14:479:46 | {src: " ...  + url} | calleeImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:479:14:479:46 | {src: " ...  + url} | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:479:14:479:46 | {src: " ...  + url} | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/tst.js:479:14:479:46 | {src: " ...  + url} | enclosingFunctionBody | url document location search substr 1 $ <a> href url appendTo body $ #foo attr href url $ #foo attr href url $ <img> src url appendTo body $ <a> href win location href appendTo body $ <img> src http://google.com/ url appendTo body $ <img> src http://google.com url join / appendTo body url startsWith https:// $ <img> src url appendTo body $ <img> src url appendTo body window open location hash substr 1 navigation navigate location hash substr 1 |
+| autogenerated/Xss/DomBasedXss/tst.js:479:14:479:46 | {src: " ...  + url} | enclosingFunctionName | urlStuff |
+| autogenerated/Xss/DomBasedXss/tst.js:479:14:479:46 | {src: " ...  + url} | fileImports | ansi-to-html |
+| autogenerated/Xss/DomBasedXss/tst.js:479:14:479:46 | {src: " ...  + url} | receiverName |  |
+| autogenerated/Xss/DomBasedXss/tst.js:479:14:479:46 | {src: " ...  + url} | stringConcatenatedWith |  |
+| autogenerated/Xss/DomBasedXss/tst.js:479:20:479:45 | "http:/ ... " + url | CalleeFlexibleAccessPath | $ |
+| autogenerated/Xss/DomBasedXss/tst.js:479:20:479:45 | "http:/ ... " + url | InputAccessPathFromCallee | 1.src |
+| autogenerated/Xss/DomBasedXss/tst.js:479:20:479:45 | "http:/ ... " + url | InputArgumentIndex | 1 |
+| autogenerated/Xss/DomBasedXss/tst.js:479:20:479:45 | "http:/ ... " + url | assignedToPropName | src |
+| autogenerated/Xss/DomBasedXss/tst.js:479:20:479:45 | "http:/ ... " + url | calleeImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:479:20:479:45 | "http:/ ... " + url | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:479:20:479:45 | "http:/ ... " + url | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/tst.js:479:20:479:45 | "http:/ ... " + url | enclosingFunctionBody | url document location search substr 1 $ <a> href url appendTo body $ #foo attr href url $ #foo attr href url $ <img> src url appendTo body $ <a> href win location href appendTo body $ <img> src http://google.com/ url appendTo body $ <img> src http://google.com url join / appendTo body url startsWith https:// $ <img> src url appendTo body $ <img> src url appendTo body window open location hash substr 1 navigation navigate location hash substr 1 |
+| autogenerated/Xss/DomBasedXss/tst.js:479:20:479:45 | "http:/ ... " + url | enclosingFunctionName | urlStuff |
+| autogenerated/Xss/DomBasedXss/tst.js:479:20:479:45 | "http:/ ... " + url | fileImports | ansi-to-html |
+| autogenerated/Xss/DomBasedXss/tst.js:479:20:479:45 | "http:/ ... " + url | receiverName |  |
+| autogenerated/Xss/DomBasedXss/tst.js:479:20:479:45 | "http:/ ... " + url | stringConcatenatedWith |  |
+| autogenerated/Xss/DomBasedXss/tst.js:481:14:481:56 | {src: [ ... n("/")} | CalleeFlexibleAccessPath | $ |
+| autogenerated/Xss/DomBasedXss/tst.js:481:14:481:56 | {src: [ ... n("/")} | InputAccessPathFromCallee |  |
+| autogenerated/Xss/DomBasedXss/tst.js:481:14:481:56 | {src: [ ... n("/")} | InputArgumentIndex | 1 |
+| autogenerated/Xss/DomBasedXss/tst.js:481:14:481:56 | {src: [ ... n("/")} | assignedToPropName |  |
+| autogenerated/Xss/DomBasedXss/tst.js:481:14:481:56 | {src: [ ... n("/")} | calleeImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:481:14:481:56 | {src: [ ... n("/")} | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:481:14:481:56 | {src: [ ... n("/")} | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/tst.js:481:14:481:56 | {src: [ ... n("/")} | enclosingFunctionBody | url document location search substr 1 $ <a> href url appendTo body $ #foo attr href url $ #foo attr href url $ <img> src url appendTo body $ <a> href win location href appendTo body $ <img> src http://google.com/ url appendTo body $ <img> src http://google.com url join / appendTo body url startsWith https:// $ <img> src url appendTo body $ <img> src url appendTo body window open location hash substr 1 navigation navigate location hash substr 1 |
+| autogenerated/Xss/DomBasedXss/tst.js:481:14:481:56 | {src: [ ... n("/")} | enclosingFunctionName | urlStuff |
+| autogenerated/Xss/DomBasedXss/tst.js:481:14:481:56 | {src: [ ... n("/")} | fileImports | ansi-to-html |
+| autogenerated/Xss/DomBasedXss/tst.js:481:14:481:56 | {src: [ ... n("/")} | receiverName |  |
+| autogenerated/Xss/DomBasedXss/tst.js:481:14:481:56 | {src: [ ... n("/")} | stringConcatenatedWith |  |
+| autogenerated/Xss/DomBasedXss/tst.js:481:20:481:55 | ["http: ... in("/") | CalleeFlexibleAccessPath | $ |
+| autogenerated/Xss/DomBasedXss/tst.js:481:20:481:55 | ["http: ... in("/") | InputAccessPathFromCallee | 1.src |
+| autogenerated/Xss/DomBasedXss/tst.js:481:20:481:55 | ["http: ... in("/") | InputArgumentIndex | 1 |
+| autogenerated/Xss/DomBasedXss/tst.js:481:20:481:55 | ["http: ... in("/") | assignedToPropName | src |
+| autogenerated/Xss/DomBasedXss/tst.js:481:20:481:55 | ["http: ... in("/") | calleeImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:481:20:481:55 | ["http: ... in("/") | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:481:20:481:55 | ["http: ... in("/") | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/tst.js:481:20:481:55 | ["http: ... in("/") | enclosingFunctionBody | url document location search substr 1 $ <a> href url appendTo body $ #foo attr href url $ #foo attr href url $ <img> src url appendTo body $ <a> href win location href appendTo body $ <img> src http://google.com/ url appendTo body $ <img> src http://google.com url join / appendTo body url startsWith https:// $ <img> src url appendTo body $ <img> src url appendTo body window open location hash substr 1 navigation navigate location hash substr 1 |
+| autogenerated/Xss/DomBasedXss/tst.js:481:20:481:55 | ["http: ... in("/") | enclosingFunctionName | urlStuff |
+| autogenerated/Xss/DomBasedXss/tst.js:481:20:481:55 | ["http: ... in("/") | fileImports | ansi-to-html |
+| autogenerated/Xss/DomBasedXss/tst.js:481:20:481:55 | ["http: ... in("/") | receiverName |  |
+| autogenerated/Xss/DomBasedXss/tst.js:481:20:481:55 | ["http: ... in("/") | stringConcatenatedWith |  |
+| autogenerated/Xss/DomBasedXss/tst.js:484:16:484:25 | {src: url} | CalleeFlexibleAccessPath | $ |
+| autogenerated/Xss/DomBasedXss/tst.js:484:16:484:25 | {src: url} | InputAccessPathFromCallee |  |
+| autogenerated/Xss/DomBasedXss/tst.js:484:16:484:25 | {src: url} | InputArgumentIndex | 1 |
+| autogenerated/Xss/DomBasedXss/tst.js:484:16:484:25 | {src: url} | assignedToPropName |  |
+| autogenerated/Xss/DomBasedXss/tst.js:484:16:484:25 | {src: url} | calleeImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:484:16:484:25 | {src: url} | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:484:16:484:25 | {src: url} | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/tst.js:484:16:484:25 | {src: url} | enclosingFunctionBody | url document location search substr 1 $ <a> href url appendTo body $ #foo attr href url $ #foo attr href url $ <img> src url appendTo body $ <a> href win location href appendTo body $ <img> src http://google.com/ url appendTo body $ <img> src http://google.com url join / appendTo body url startsWith https:// $ <img> src url appendTo body $ <img> src url appendTo body window open location hash substr 1 navigation navigate location hash substr 1 |
+| autogenerated/Xss/DomBasedXss/tst.js:484:16:484:25 | {src: url} | enclosingFunctionName | urlStuff |
+| autogenerated/Xss/DomBasedXss/tst.js:484:16:484:25 | {src: url} | fileImports | ansi-to-html |
+| autogenerated/Xss/DomBasedXss/tst.js:484:16:484:25 | {src: url} | receiverName |  |
+| autogenerated/Xss/DomBasedXss/tst.js:484:16:484:25 | {src: url} | stringConcatenatedWith |  |
+| autogenerated/Xss/DomBasedXss/tst.js:484:22:484:24 | url | CalleeFlexibleAccessPath | $ |
+| autogenerated/Xss/DomBasedXss/tst.js:484:22:484:24 | url | InputAccessPathFromCallee | 1.src |
+| autogenerated/Xss/DomBasedXss/tst.js:484:22:484:24 | url | InputArgumentIndex | 1 |
+| autogenerated/Xss/DomBasedXss/tst.js:484:22:484:24 | url | assignedToPropName | src |
+| autogenerated/Xss/DomBasedXss/tst.js:484:22:484:24 | url | calleeImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:484:22:484:24 | url | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:484:22:484:24 | url | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/tst.js:484:22:484:24 | url | enclosingFunctionBody | url document location search substr 1 $ <a> href url appendTo body $ #foo attr href url $ #foo attr href url $ <img> src url appendTo body $ <a> href win location href appendTo body $ <img> src http://google.com/ url appendTo body $ <img> src http://google.com url join / appendTo body url startsWith https:// $ <img> src url appendTo body $ <img> src url appendTo body window open location hash substr 1 navigation navigate location hash substr 1 |
+| autogenerated/Xss/DomBasedXss/tst.js:484:22:484:24 | url | enclosingFunctionName | urlStuff |
+| autogenerated/Xss/DomBasedXss/tst.js:484:22:484:24 | url | fileImports | ansi-to-html |
+| autogenerated/Xss/DomBasedXss/tst.js:484:22:484:24 | url | receiverName |  |
+| autogenerated/Xss/DomBasedXss/tst.js:484:22:484:24 | url | stringConcatenatedWith |  |
+| autogenerated/Xss/DomBasedXss/tst.js:486:16:486:25 | {src: url} | CalleeFlexibleAccessPath | $ |
+| autogenerated/Xss/DomBasedXss/tst.js:486:16:486:25 | {src: url} | InputAccessPathFromCallee |  |
+| autogenerated/Xss/DomBasedXss/tst.js:486:16:486:25 | {src: url} | InputArgumentIndex | 1 |
+| autogenerated/Xss/DomBasedXss/tst.js:486:16:486:25 | {src: url} | assignedToPropName |  |
+| autogenerated/Xss/DomBasedXss/tst.js:486:16:486:25 | {src: url} | calleeImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:486:16:486:25 | {src: url} | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:486:16:486:25 | {src: url} | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/tst.js:486:16:486:25 | {src: url} | enclosingFunctionBody | url document location search substr 1 $ <a> href url appendTo body $ #foo attr href url $ #foo attr href url $ <img> src url appendTo body $ <a> href win location href appendTo body $ <img> src http://google.com/ url appendTo body $ <img> src http://google.com url join / appendTo body url startsWith https:// $ <img> src url appendTo body $ <img> src url appendTo body window open location hash substr 1 navigation navigate location hash substr 1 |
+| autogenerated/Xss/DomBasedXss/tst.js:486:16:486:25 | {src: url} | enclosingFunctionName | urlStuff |
+| autogenerated/Xss/DomBasedXss/tst.js:486:16:486:25 | {src: url} | fileImports | ansi-to-html |
+| autogenerated/Xss/DomBasedXss/tst.js:486:16:486:25 | {src: url} | receiverName |  |
+| autogenerated/Xss/DomBasedXss/tst.js:486:16:486:25 | {src: url} | stringConcatenatedWith |  |
+| autogenerated/Xss/DomBasedXss/tst.js:486:22:486:24 | url | CalleeFlexibleAccessPath | $ |
+| autogenerated/Xss/DomBasedXss/tst.js:486:22:486:24 | url | InputAccessPathFromCallee | 1.src |
+| autogenerated/Xss/DomBasedXss/tst.js:486:22:486:24 | url | InputArgumentIndex | 1 |
+| autogenerated/Xss/DomBasedXss/tst.js:486:22:486:24 | url | assignedToPropName | src |
+| autogenerated/Xss/DomBasedXss/tst.js:486:22:486:24 | url | calleeImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:486:22:486:24 | url | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:486:22:486:24 | url | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/tst.js:486:22:486:24 | url | enclosingFunctionBody | url document location search substr 1 $ <a> href url appendTo body $ #foo attr href url $ #foo attr href url $ <img> src url appendTo body $ <a> href win location href appendTo body $ <img> src http://google.com/ url appendTo body $ <img> src http://google.com url join / appendTo body url startsWith https:// $ <img> src url appendTo body $ <img> src url appendTo body window open location hash substr 1 navigation navigate location hash substr 1 |
+| autogenerated/Xss/DomBasedXss/tst.js:486:22:486:24 | url | enclosingFunctionName | urlStuff |
+| autogenerated/Xss/DomBasedXss/tst.js:486:22:486:24 | url | fileImports | ansi-to-html |
+| autogenerated/Xss/DomBasedXss/tst.js:486:22:486:24 | url | receiverName |  |
+| autogenerated/Xss/DomBasedXss/tst.js:486:22:486:24 | url | stringConcatenatedWith |  |
+| autogenerated/Xss/DomBasedXss/tst.js:491:23:491:45 | locatio ... bstr(1) | CalleeFlexibleAccessPath | navigation.navigate |
+| autogenerated/Xss/DomBasedXss/tst.js:491:23:491:45 | locatio ... bstr(1) | InputAccessPathFromCallee |  |
+| autogenerated/Xss/DomBasedXss/tst.js:491:23:491:45 | locatio ... bstr(1) | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/tst.js:491:23:491:45 | locatio ... bstr(1) | assignedToPropName |  |
+| autogenerated/Xss/DomBasedXss/tst.js:491:23:491:45 | locatio ... bstr(1) | calleeImports |  |
+| autogenerated/Xss/DomBasedXss/tst.js:491:23:491:45 | locatio ... bstr(1) | contextFunctionInterfaces | URLPseudoProperties()\nangularJSServices()\nansiToHTML()\nbar()\nbasicExceptions()\nbaz(x)\nchop(s)\nconstructor()\nconstructor(args)\nconstructor(props)\ndangerouslySetInnerHtml(s)\ndomMethods()\nflowThroughPropertyNames()\nfoo(target)\ngetTaintedUrl()\ngetUrl()\ngrowl()\nhandlebarsSafeString()\nhash()\nhash2()\njqueryLocation()\nlink(scope, element)\nmootools()\nmyPlugin()\nnonGlobalSanitizer()\nreact()\nreferences()\nrender()\ntest()\ntest()\ntest()\ntest()\ntest()\ntest2()\ntestCreateContextualFragment()\ntestDOMParser()\nthisNodes()\ntst()\nurlStuff()\nwindowName()\nwindowNameAssigned()\nwrap(s) |
+| autogenerated/Xss/DomBasedXss/tst.js:491:23:491:45 | locatio ... bstr(1) | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/tst.js:491:23:491:45 | locatio ... bstr(1) | enclosingFunctionBody | url document location search substr 1 $ <a> href url appendTo body $ #foo attr href url $ #foo attr href url $ <img> src url appendTo body $ <a> href win location href appendTo body $ <img> src http://google.com/ url appendTo body $ <img> src http://google.com url join / appendTo body url startsWith https:// $ <img> src url appendTo body $ <img> src url appendTo body window open location hash substr 1 navigation navigate location hash substr 1 |
+| autogenerated/Xss/DomBasedXss/tst.js:491:23:491:45 | locatio ... bstr(1) | enclosingFunctionName | urlStuff |
+| autogenerated/Xss/DomBasedXss/tst.js:491:23:491:45 | locatio ... bstr(1) | fileImports | ansi-to-html |
+| autogenerated/Xss/DomBasedXss/tst.js:491:23:491:45 | locatio ... bstr(1) | receiverName | navigation |
+| autogenerated/Xss/DomBasedXss/tst.js:491:23:491:45 | locatio ... bstr(1) | stringConcatenatedWith |  |
 | autogenerated/Xss/DomBasedXss/typeahead.js:2:38:4:3 | {\\n    p ... Url\\n  } | CalleeFlexibleAccessPath | Bloodhound |
 | autogenerated/Xss/DomBasedXss/typeahead.js:2:38:4:3 | {\\n    p ... Url\\n  } | InputAccessPathFromCallee |  |
 | autogenerated/Xss/DomBasedXss/typeahead.js:2:38:4:3 | {\\n    p ... Url\\n  } | InputArgumentIndex | 0 |
@@ -14578,7 +18224,7 @@ tokenFeatures
 | autogenerated/Xss/DomBasedXss/xmlRequest.js:1:3:1:10 | document | contextSurroundingFunctionParameters |  |
 | autogenerated/Xss/DomBasedXss/xmlRequest.js:1:3:1:10 | document | enclosingFunctionBody |  |
 | autogenerated/Xss/DomBasedXss/xmlRequest.js:1:3:1:10 | document | enclosingFunctionName |  |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:1:3:1:10 | document | fileImports |  |
+| autogenerated/Xss/DomBasedXss/xmlRequest.js:1:3:1:10 | document | fileImports | got |
 | autogenerated/Xss/DomBasedXss/xmlRequest.js:1:3:1:10 | document | receiverName |  |
 | autogenerated/Xss/DomBasedXss/xmlRequest.js:1:3:1:10 | document | stringConcatenatedWith |  |
 | autogenerated/Xss/DomBasedXss/xmlRequest.js:1:19:16:1 | functio ...     }\\n} | CalleeFlexibleAccessPath | $().ready |
@@ -14590,7 +18236,7 @@ tokenFeatures
 | autogenerated/Xss/DomBasedXss/xmlRequest.js:1:19:16:1 | functio ...     }\\n} | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/xmlRequest.js:1:19:16:1 | functio ...     }\\n} | enclosingFunctionBody |  |
 | autogenerated/Xss/DomBasedXss/xmlRequest.js:1:19:16:1 | functio ...     }\\n} | enclosingFunctionName |  |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:1:19:16:1 | functio ...     }\\n} | fileImports |  |
+| autogenerated/Xss/DomBasedXss/xmlRequest.js:1:19:16:1 | functio ...     }\\n} | fileImports | got |
 | autogenerated/Xss/DomBasedXss/xmlRequest.js:1:19:16:1 | functio ...     }\\n} | receiverName |  |
 | autogenerated/Xss/DomBasedXss/xmlRequest.js:1:19:16:1 | functio ...     }\\n} | stringConcatenatedWith |  |
 | autogenerated/Xss/DomBasedXss/xmlRequest.js:4:21:4:23 | url | CalleeFlexibleAccessPath | xhr.open |
@@ -14602,7 +18248,7 @@ tokenFeatures
 | autogenerated/Xss/DomBasedXss/xmlRequest.js:4:21:4:23 | url | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/xmlRequest.js:4:21:4:23 | url | enclosingFunctionBody | xhr XMLHttpRequest url {{ some_url }} xhr open GET url true xhr setRequestHeader Content-Type application/json xhr onreadystatechange xhr readyState 4 json JSON parse xhr responseText $ #myThing html json message xhr send error console log error |
 | autogenerated/Xss/DomBasedXss/xmlRequest.js:4:21:4:23 | url | enclosingFunctionName | ready#functionalargument |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:4:21:4:23 | url | fileImports |  |
+| autogenerated/Xss/DomBasedXss/xmlRequest.js:4:21:4:23 | url | fileImports | got |
 | autogenerated/Xss/DomBasedXss/xmlRequest.js:4:21:4:23 | url | receiverName | xhr |
 | autogenerated/Xss/DomBasedXss/xmlRequest.js:4:21:4:23 | url | stringConcatenatedWith |  |
 | autogenerated/Xss/DomBasedXss/xmlRequest.js:9:28:9:39 | json.message | CalleeFlexibleAccessPath | $().html |
@@ -14614,7 +18260,7 @@ tokenFeatures
 | autogenerated/Xss/DomBasedXss/xmlRequest.js:9:28:9:39 | json.message | contextSurroundingFunctionParameters | ()\n() |
 | autogenerated/Xss/DomBasedXss/xmlRequest.js:9:28:9:39 | json.message | enclosingFunctionBody | xhr XMLHttpRequest url {{ some_url }} xhr open GET url true xhr setRequestHeader Content-Type application/json xhr onreadystatechange xhr readyState 4 json JSON parse xhr responseText $ #myThing html json message xhr send error console log error |
 | autogenerated/Xss/DomBasedXss/xmlRequest.js:9:28:9:39 | json.message | enclosingFunctionName | ready#functionalargument |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:9:28:9:39 | json.message | fileImports |  |
+| autogenerated/Xss/DomBasedXss/xmlRequest.js:9:28:9:39 | json.message | fileImports | got |
 | autogenerated/Xss/DomBasedXss/xmlRequest.js:9:28:9:39 | json.message | receiverName |  |
 | autogenerated/Xss/DomBasedXss/xmlRequest.js:9:28:9:39 | json.message | stringConcatenatedWith |  |
 | autogenerated/Xss/DomBasedXss/xmlRequest.js:14:21:14:25 | error | CalleeFlexibleAccessPath | console.log |
@@ -14626,9 +18272,57 @@ tokenFeatures
 | autogenerated/Xss/DomBasedXss/xmlRequest.js:14:21:14:25 | error | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/DomBasedXss/xmlRequest.js:14:21:14:25 | error | enclosingFunctionBody | xhr XMLHttpRequest url {{ some_url }} xhr open GET url true xhr setRequestHeader Content-Type application/json xhr onreadystatechange xhr readyState 4 json JSON parse xhr responseText $ #myThing html json message xhr send error console log error |
 | autogenerated/Xss/DomBasedXss/xmlRequest.js:14:21:14:25 | error | enclosingFunctionName | ready#functionalargument |
-| autogenerated/Xss/DomBasedXss/xmlRequest.js:14:21:14:25 | error | fileImports |  |
+| autogenerated/Xss/DomBasedXss/xmlRequest.js:14:21:14:25 | error | fileImports | got |
 | autogenerated/Xss/DomBasedXss/xmlRequest.js:14:21:14:25 | error | receiverName | console |
 | autogenerated/Xss/DomBasedXss/xmlRequest.js:14:21:14:25 | error | stringConcatenatedWith |  |
+| autogenerated/Xss/DomBasedXss/xmlRequest.js:18:3:18:10 | document | CalleeFlexibleAccessPath | $ |
+| autogenerated/Xss/DomBasedXss/xmlRequest.js:18:3:18:10 | document | InputAccessPathFromCallee |  |
+| autogenerated/Xss/DomBasedXss/xmlRequest.js:18:3:18:10 | document | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/xmlRequest.js:18:3:18:10 | document | assignedToPropName |  |
+| autogenerated/Xss/DomBasedXss/xmlRequest.js:18:3:18:10 | document | calleeImports |  |
+| autogenerated/Xss/DomBasedXss/xmlRequest.js:18:3:18:10 | document | contextFunctionInterfaces | onreadystatechange() |
+| autogenerated/Xss/DomBasedXss/xmlRequest.js:18:3:18:10 | document | contextSurroundingFunctionParameters |  |
+| autogenerated/Xss/DomBasedXss/xmlRequest.js:18:3:18:10 | document | enclosingFunctionBody |  |
+| autogenerated/Xss/DomBasedXss/xmlRequest.js:18:3:18:10 | document | enclosingFunctionName |  |
+| autogenerated/Xss/DomBasedXss/xmlRequest.js:18:3:18:10 | document | fileImports | got |
+| autogenerated/Xss/DomBasedXss/xmlRequest.js:18:3:18:10 | document | receiverName |  |
+| autogenerated/Xss/DomBasedXss/xmlRequest.js:18:3:18:10 | document | stringConcatenatedWith |  |
+| autogenerated/Xss/DomBasedXss/xmlRequest.js:18:19:24:1 | async f ... rces\\n\\n} | CalleeFlexibleAccessPath | $().ready |
+| autogenerated/Xss/DomBasedXss/xmlRequest.js:18:19:24:1 | async f ... rces\\n\\n} | InputAccessPathFromCallee |  |
+| autogenerated/Xss/DomBasedXss/xmlRequest.js:18:19:24:1 | async f ... rces\\n\\n} | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/xmlRequest.js:18:19:24:1 | async f ... rces\\n\\n} | assignedToPropName |  |
+| autogenerated/Xss/DomBasedXss/xmlRequest.js:18:19:24:1 | async f ... rces\\n\\n} | calleeImports |  |
+| autogenerated/Xss/DomBasedXss/xmlRequest.js:18:19:24:1 | async f ... rces\\n\\n} | contextFunctionInterfaces | onreadystatechange() |
+| autogenerated/Xss/DomBasedXss/xmlRequest.js:18:19:24:1 | async f ... rces\\n\\n} | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/xmlRequest.js:18:19:24:1 | async f ... rces\\n\\n} | enclosingFunctionBody |  |
+| autogenerated/Xss/DomBasedXss/xmlRequest.js:18:19:24:1 | async f ... rces\\n\\n} | enclosingFunctionName |  |
+| autogenerated/Xss/DomBasedXss/xmlRequest.js:18:19:24:1 | async f ... rces\\n\\n} | fileImports | got |
+| autogenerated/Xss/DomBasedXss/xmlRequest.js:18:19:24:1 | async f ... rces\\n\\n} | receiverName |  |
+| autogenerated/Xss/DomBasedXss/xmlRequest.js:18:19:24:1 | async f ... rces\\n\\n} | stringConcatenatedWith |  |
+| autogenerated/Xss/DomBasedXss/xmlRequest.js:22:24:22:35 | json.message | CalleeFlexibleAccessPath | $().html |
+| autogenerated/Xss/DomBasedXss/xmlRequest.js:22:24:22:35 | json.message | InputAccessPathFromCallee |  |
+| autogenerated/Xss/DomBasedXss/xmlRequest.js:22:24:22:35 | json.message | InputArgumentIndex | 0 |
+| autogenerated/Xss/DomBasedXss/xmlRequest.js:22:24:22:35 | json.message | assignedToPropName |  |
+| autogenerated/Xss/DomBasedXss/xmlRequest.js:22:24:22:35 | json.message | calleeImports |  |
+| autogenerated/Xss/DomBasedXss/xmlRequest.js:22:24:22:35 | json.message | contextFunctionInterfaces | onreadystatechange() |
+| autogenerated/Xss/DomBasedXss/xmlRequest.js:22:24:22:35 | json.message | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/DomBasedXss/xmlRequest.js:22:24:22:35 | json.message | enclosingFunctionBody | got require got resp got get {{ some_url }} json JSON parse resp body $ #myThing html json message |
+| autogenerated/Xss/DomBasedXss/xmlRequest.js:22:24:22:35 | json.message | enclosingFunctionName | ready#functionalargument |
+| autogenerated/Xss/DomBasedXss/xmlRequest.js:22:24:22:35 | json.message | fileImports | got |
+| autogenerated/Xss/DomBasedXss/xmlRequest.js:22:24:22:35 | json.message | receiverName |  |
+| autogenerated/Xss/DomBasedXss/xmlRequest.js:22:24:22:35 | json.message | stringConcatenatedWith |  |
+| autogenerated/Xss/ExceptionXss/ajv.js:16:37:19:1 | {\\n    n ... red()\\n} | CalleeFlexibleAccessPath | joi.object().keys |
+| autogenerated/Xss/ExceptionXss/ajv.js:16:37:19:1 | {\\n    n ... red()\\n} | InputAccessPathFromCallee |  |
+| autogenerated/Xss/ExceptionXss/ajv.js:16:37:19:1 | {\\n    n ... red()\\n} | InputArgumentIndex | 0 |
+| autogenerated/Xss/ExceptionXss/ajv.js:16:37:19:1 | {\\n    n ... red()\\n} | assignedToPropName |  |
+| autogenerated/Xss/ExceptionXss/ajv.js:16:37:19:1 | {\\n    n ... red()\\n} | calleeImports | joi |
+| autogenerated/Xss/ExceptionXss/ajv.js:16:37:19:1 | {\\n    n ... red()\\n} | contextFunctionInterfaces |  |
+| autogenerated/Xss/ExceptionXss/ajv.js:16:37:19:1 | {\\n    n ... red()\\n} | contextSurroundingFunctionParameters |  |
+| autogenerated/Xss/ExceptionXss/ajv.js:16:37:19:1 | {\\n    n ... red()\\n} | enclosingFunctionBody |  |
+| autogenerated/Xss/ExceptionXss/ajv.js:16:37:19:1 | {\\n    n ... red()\\n} | enclosingFunctionName |  |
+| autogenerated/Xss/ExceptionXss/ajv.js:16:37:19:1 | {\\n    n ... red()\\n} | fileImports | ajv express joi |
+| autogenerated/Xss/ExceptionXss/ajv.js:16:37:19:1 | {\\n    n ... red()\\n} | receiverName |  |
+| autogenerated/Xss/ExceptionXss/ajv.js:16:37:19:1 | {\\n    n ... red()\\n} | stringConcatenatedWith |  |
 | autogenerated/Xss/ExceptionXss/exception-xss.js:11:18:11:18 | e | CalleeFlexibleAccessPath | $().html |
 | autogenerated/Xss/ExceptionXss/exception-xss.js:11:18:11:18 | e | InputAccessPathFromCallee |  |
 | autogenerated/Xss/ExceptionXss/exception-xss.js:11:18:11:18 | e | InputArgumentIndex | 0 |
@@ -15306,7 +19000,7 @@ tokenFeatures
 | autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:3:10:3:32 | ['jquer ... ry-ui'] | InputArgumentIndex | 0 |
 | autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:3:10:3:32 | ['jquer ... ry-ui'] | assignedToPropName |  |
 | autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:3:10:3:32 | ['jquer ... ry-ui'] | calleeImports |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:3:10:3:32 | ['jquer ... ry-ui'] | contextFunctionInterfaces |  |
+| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:3:10:3:32 | ['jquer ... ry-ui'] | contextFunctionInterfaces | myPlugin(stuff, options) |
 | autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:3:10:3:32 | ['jquer ... ry-ui'] | contextSurroundingFunctionParameters | (factory) |
 | autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:3:10:3:32 | ['jquer ... ry-ui'] | enclosingFunctionBody | factory define function define amd define jquery jquery-ui factory factory jQuery |
 | autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:3:10:3:32 | ['jquer ... ry-ui'] | enclosingFunctionName |  |
@@ -15318,23 +19012,83 @@ tokenFeatures
 | autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:8:7:8:42 | "<span> ... /span>" | InputArgumentIndex | 0 |
 | autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:8:7:8:42 | "<span> ... /span>" | assignedToPropName |  |
 | autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:8:7:8:42 | "<span> ... /span>" | calleeImports | jquery |
-| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:8:7:8:42 | "<span> ... /span>" | contextFunctionInterfaces |  |
+| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:8:7:8:42 | "<span> ... /span>" | contextFunctionInterfaces | myPlugin(stuff, options) |
 | autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:8:7:8:42 | "<span> ... /span>" | contextSurroundingFunctionParameters | ($) |
 | autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:8:7:8:42 | "<span> ... /span>" | enclosingFunctionBody | $ $ <span> $ trim foo </span> |
 | autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:8:7:8:42 | "<span> ... /span>" | enclosingFunctionName |  |
 | autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:8:7:8:42 | "<span> ... /span>" | fileImports | jquery jquery-ui |
 | autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:8:7:8:42 | "<span> ... /span>" | receiverName |  |
 | autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:8:7:8:42 | "<span> ... /span>" | stringConcatenatedWith |  |
+| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:12:20:12:53 | "<span> ... /span>" | CalleeFlexibleAccessPath | $().html |
+| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:12:20:12:53 | "<span> ... /span>" | InputAccessPathFromCallee |  |
+| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:12:20:12:53 | "<span> ... /span>" | InputArgumentIndex | 0 |
+| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:12:20:12:53 | "<span> ... /span>" | assignedToPropName |  |
+| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:12:20:12:53 | "<span> ... /span>" | calleeImports |  |
+| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:12:20:12:53 | "<span> ... /span>" | contextFunctionInterfaces | myPlugin(stuff, options) |
+| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:12:20:12:53 | "<span> ... /span>" | contextSurroundingFunctionParameters | (stuff, options) |
+| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:12:20:12:53 | "<span> ... /span>" | enclosingFunctionBody | stuff options $ #foo html <span> options foo </span> $ #foo html <span> stuff </span> |
+| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:12:20:12:53 | "<span> ... /span>" | enclosingFunctionName | myPlugin |
+| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:12:20:12:53 | "<span> ... /span>" | fileImports | jquery jquery-ui |
+| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:12:20:12:53 | "<span> ... /span>" | receiverName |  |
+| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:12:20:12:53 | "<span> ... /span>" | stringConcatenatedWith |  |
+| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:14:20:14:47 | "<span> ... /span>" | CalleeFlexibleAccessPath | $().html |
+| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:14:20:14:47 | "<span> ... /span>" | InputAccessPathFromCallee |  |
+| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:14:20:14:47 | "<span> ... /span>" | InputArgumentIndex | 0 |
+| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:14:20:14:47 | "<span> ... /span>" | assignedToPropName |  |
+| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:14:20:14:47 | "<span> ... /span>" | calleeImports |  |
+| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:14:20:14:47 | "<span> ... /span>" | contextFunctionInterfaces | myPlugin(stuff, options) |
+| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:14:20:14:47 | "<span> ... /span>" | contextSurroundingFunctionParameters | (stuff, options) |
+| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:14:20:14:47 | "<span> ... /span>" | enclosingFunctionBody | stuff options $ #foo html <span> options foo </span> $ #foo html <span> stuff </span> |
+| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:14:20:14:47 | "<span> ... /span>" | enclosingFunctionName | myPlugin |
+| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:14:20:14:47 | "<span> ... /span>" | fileImports | jquery jquery-ui |
+| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:14:20:14:47 | "<span> ... /span>" | receiverName |  |
+| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:14:20:14:47 | "<span> ... /span>" | stringConcatenatedWith |  |
+| autogenerated/Xss/UnsafeHtmlConstruction/lib2/index.ts:3:49:3:52 | html | CalleeFlexibleAccessPath |  |
+| autogenerated/Xss/UnsafeHtmlConstruction/lib2/index.ts:3:49:3:52 | html | InputAccessPathFromCallee |  |
+| autogenerated/Xss/UnsafeHtmlConstruction/lib2/index.ts:3:49:3:52 | html | InputArgumentIndex |  |
+| autogenerated/Xss/UnsafeHtmlConstruction/lib2/index.ts:3:49:3:52 | html | assignedToPropName | innerHTML |
+| autogenerated/Xss/UnsafeHtmlConstruction/lib2/index.ts:3:49:3:52 | html | calleeImports |  |
+| autogenerated/Xss/UnsafeHtmlConstruction/lib2/index.ts:3:49:3:52 | html | contextFunctionInterfaces | trivialXss(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/lib2/index.ts:3:49:3:52 | html | contextSurroundingFunctionParameters | (s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/lib2/index.ts:3:49:3:52 | html | enclosingFunctionBody | s html <span> s </span> document querySelector #html innerHTML html |
+| autogenerated/Xss/UnsafeHtmlConstruction/lib2/index.ts:3:49:3:52 | html | enclosingFunctionName | trivialXss |
+| autogenerated/Xss/UnsafeHtmlConstruction/lib2/index.ts:3:49:3:52 | html | fileImports |  |
+| autogenerated/Xss/UnsafeHtmlConstruction/lib2/index.ts:3:49:3:52 | html | receiverName |  |
+| autogenerated/Xss/UnsafeHtmlConstruction/lib2/index.ts:3:49:3:52 | html | stringConcatenatedWith |  |
+| autogenerated/Xss/UnsafeHtmlConstruction/lib2/src/MyNode.ts:3:49:3:52 | html | CalleeFlexibleAccessPath |  |
+| autogenerated/Xss/UnsafeHtmlConstruction/lib2/src/MyNode.ts:3:49:3:52 | html | InputAccessPathFromCallee |  |
+| autogenerated/Xss/UnsafeHtmlConstruction/lib2/src/MyNode.ts:3:49:3:52 | html | InputArgumentIndex |  |
+| autogenerated/Xss/UnsafeHtmlConstruction/lib2/src/MyNode.ts:3:49:3:52 | html | assignedToPropName | innerHTML |
+| autogenerated/Xss/UnsafeHtmlConstruction/lib2/src/MyNode.ts:3:49:3:52 | html | calleeImports |  |
+| autogenerated/Xss/UnsafeHtmlConstruction/lib2/src/MyNode.ts:3:49:3:52 | html | contextFunctionInterfaces | trivialXss(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/lib2/src/MyNode.ts:3:49:3:52 | html | contextSurroundingFunctionParameters | (s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/lib2/src/MyNode.ts:3:49:3:52 | html | enclosingFunctionBody | s html <span> s </span> document querySelector #html innerHTML html |
+| autogenerated/Xss/UnsafeHtmlConstruction/lib2/src/MyNode.ts:3:49:3:52 | html | enclosingFunctionName | trivialXss |
+| autogenerated/Xss/UnsafeHtmlConstruction/lib2/src/MyNode.ts:3:49:3:52 | html | fileImports |  |
+| autogenerated/Xss/UnsafeHtmlConstruction/lib2/src/MyNode.ts:3:49:3:52 | html | receiverName |  |
+| autogenerated/Xss/UnsafeHtmlConstruction/lib2/src/MyNode.ts:3:49:3:52 | html | stringConcatenatedWith |  |
+| autogenerated/Xss/UnsafeHtmlConstruction/lib/src/MyNode.ts:3:49:3:52 | html | CalleeFlexibleAccessPath |  |
+| autogenerated/Xss/UnsafeHtmlConstruction/lib/src/MyNode.ts:3:49:3:52 | html | InputAccessPathFromCallee |  |
+| autogenerated/Xss/UnsafeHtmlConstruction/lib/src/MyNode.ts:3:49:3:52 | html | InputArgumentIndex |  |
+| autogenerated/Xss/UnsafeHtmlConstruction/lib/src/MyNode.ts:3:49:3:52 | html | assignedToPropName | innerHTML |
+| autogenerated/Xss/UnsafeHtmlConstruction/lib/src/MyNode.ts:3:49:3:52 | html | calleeImports |  |
+| autogenerated/Xss/UnsafeHtmlConstruction/lib/src/MyNode.ts:3:49:3:52 | html | contextFunctionInterfaces | trivialXss(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/lib/src/MyNode.ts:3:49:3:52 | html | contextSurroundingFunctionParameters | (s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/lib/src/MyNode.ts:3:49:3:52 | html | enclosingFunctionBody | s html <span> s </span> document querySelector #html innerHTML html |
+| autogenerated/Xss/UnsafeHtmlConstruction/lib/src/MyNode.ts:3:49:3:52 | html | enclosingFunctionName | trivialXss |
+| autogenerated/Xss/UnsafeHtmlConstruction/lib/src/MyNode.ts:3:49:3:52 | html | fileImports |  |
+| autogenerated/Xss/UnsafeHtmlConstruction/lib/src/MyNode.ts:3:49:3:52 | html | receiverName |  |
+| autogenerated/Xss/UnsafeHtmlConstruction/lib/src/MyNode.ts:3:49:3:52 | html | stringConcatenatedWith |  |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:3:49:3:52 | html | CalleeFlexibleAccessPath |  |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:3:49:3:52 | html | InputAccessPathFromCallee |  |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:3:49:3:52 | html | InputArgumentIndex |  |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:3:49:3:52 | html | assignedToPropName | innerHTML |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:3:49:3:52 | html | calleeImports |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:3:49:3:52 | html | contextFunctionInterfaces | constructor(s)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:3:49:3:52 | html | contextFunctionInterfaces | constructor(s)\ncreateHTML(x)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\ntypes(val)\nusesCreateHTML(x)\nusesCreateHTML(x)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:3:49:3:52 | html | contextSurroundingFunctionParameters | (s) |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:3:49:3:52 | html | enclosingFunctionBody | s html <span> s </span> document querySelector #html innerHTML html |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:3:49:3:52 | html | enclosingFunctionName | xssThroughHTMLConstruction |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:3:49:3:52 | html | fileImports | ./jquery-plugin ./typed markdown-it striptags |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:3:49:3:52 | html | fileImports | ./jquery-plugin ./typed markdown-it mermaid striptags |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:3:49:3:52 | html | receiverName |  |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:3:49:3:52 | html | stringConcatenatedWith |  |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:7:49:7:49 | s | CalleeFlexibleAccessPath | DOMParser().parseFromString |
@@ -15342,11 +19096,11 @@ tokenFeatures
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:7:49:7:49 | s | InputArgumentIndex | 0 |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:7:49:7:49 | s | assignedToPropName |  |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:7:49:7:49 | s | calleeImports |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:7:49:7:49 | s | contextFunctionInterfaces | constructor(s)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:7:49:7:49 | s | contextFunctionInterfaces | constructor(s)\ncreateHTML(x)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\ntypes(val)\nusesCreateHTML(x)\nusesCreateHTML(x)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:7:49:7:49 | s | contextSurroundingFunctionParameters | (s) |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:7:49:7:49 | s | enclosingFunctionBody | s doc DOMParser parseFromString s text/xml document querySelector #xml appendChild doc documentElement |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:7:49:7:49 | s | enclosingFunctionName | xssThroughXMLParsing |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:7:49:7:49 | s | fileImports | ./jquery-plugin ./typed markdown-it striptags |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:7:49:7:49 | s | fileImports | ./jquery-plugin ./typed markdown-it mermaid striptags |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:7:49:7:49 | s | receiverName |  |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:7:49:7:49 | s | stringConcatenatedWith |  |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:8:48:8:66 | doc.documentElement | CalleeFlexibleAccessPath | document.querySelector().appendChild |
@@ -15354,11 +19108,11 @@ tokenFeatures
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:8:48:8:66 | doc.documentElement | InputArgumentIndex | 0 |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:8:48:8:66 | doc.documentElement | assignedToPropName |  |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:8:48:8:66 | doc.documentElement | calleeImports |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:8:48:8:66 | doc.documentElement | contextFunctionInterfaces | constructor(s)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:8:48:8:66 | doc.documentElement | contextFunctionInterfaces | constructor(s)\ncreateHTML(x)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\ntypes(val)\nusesCreateHTML(x)\nusesCreateHTML(x)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:8:48:8:66 | doc.documentElement | contextSurroundingFunctionParameters | (s) |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:8:48:8:66 | doc.documentElement | enclosingFunctionBody | s doc DOMParser parseFromString s text/xml document querySelector #xml appendChild doc documentElement |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:8:48:8:66 | doc.documentElement | enclosingFunctionName | xssThroughXMLParsing |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:8:48:8:66 | doc.documentElement | fileImports | ./jquery-plugin ./typed markdown-it striptags |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:8:48:8:66 | doc.documentElement | fileImports | ./jquery-plugin ./typed markdown-it mermaid striptags |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:8:48:8:66 | doc.documentElement | receiverName |  |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:8:48:8:66 | doc.documentElement | stringConcatenatedWith |  |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:12:49:12:49 | s | CalleeFlexibleAccessPath | DOMParser().parseFromString |
@@ -15366,11 +19120,11 @@ tokenFeatures
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:12:49:12:49 | s | InputArgumentIndex | 0 |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:12:49:12:49 | s | assignedToPropName |  |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:12:49:12:49 | s | calleeImports |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:12:49:12:49 | s | contextFunctionInterfaces | constructor(s)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:12:49:12:49 | s | contextFunctionInterfaces | constructor(s)\ncreateHTML(x)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\ntypes(val)\nusesCreateHTML(x)\nusesCreateHTML(x)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:12:49:12:49 | s | contextSurroundingFunctionParameters | (s) |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:12:49:12:49 | s | enclosingFunctionBody | s doc DOMParser parseFromString s text/xml xml doc documentElement tmp document createElement span tmp appendChild xml cloneNode document querySelector #xml appendChild tmp |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:12:49:12:49 | s | enclosingFunctionName | xssThroughMoreComplexXMLParsing |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:12:49:12:49 | s | fileImports | ./jquery-plugin ./typed markdown-it striptags |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:12:49:12:49 | s | fileImports | ./jquery-plugin ./typed markdown-it mermaid striptags |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:12:49:12:49 | s | receiverName |  |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:12:49:12:49 | s | stringConcatenatedWith |  |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:16:21:16:35 | xml.cloneNode() | CalleeFlexibleAccessPath | tmp.appendChild |
@@ -15378,11 +19132,11 @@ tokenFeatures
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:16:21:16:35 | xml.cloneNode() | InputArgumentIndex | 0 |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:16:21:16:35 | xml.cloneNode() | assignedToPropName |  |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:16:21:16:35 | xml.cloneNode() | calleeImports |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:16:21:16:35 | xml.cloneNode() | contextFunctionInterfaces | constructor(s)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:16:21:16:35 | xml.cloneNode() | contextFunctionInterfaces | constructor(s)\ncreateHTML(x)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\ntypes(val)\nusesCreateHTML(x)\nusesCreateHTML(x)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:16:21:16:35 | xml.cloneNode() | contextSurroundingFunctionParameters | (s) |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:16:21:16:35 | xml.cloneNode() | enclosingFunctionBody | s doc DOMParser parseFromString s text/xml xml doc documentElement tmp document createElement span tmp appendChild xml cloneNode document querySelector #xml appendChild tmp |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:16:21:16:35 | xml.cloneNode() | enclosingFunctionName | xssThroughMoreComplexXMLParsing |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:16:21:16:35 | xml.cloneNode() | fileImports | ./jquery-plugin ./typed markdown-it striptags |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:16:21:16:35 | xml.cloneNode() | fileImports | ./jquery-plugin ./typed markdown-it mermaid striptags |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:16:21:16:35 | xml.cloneNode() | receiverName | tmp |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:16:21:16:35 | xml.cloneNode() | stringConcatenatedWith |  |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:17:48:17:50 | tmp | CalleeFlexibleAccessPath | document.querySelector().appendChild |
@@ -15390,11 +19144,11 @@ tokenFeatures
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:17:48:17:50 | tmp | InputArgumentIndex | 0 |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:17:48:17:50 | tmp | assignedToPropName |  |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:17:48:17:50 | tmp | calleeImports |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:17:48:17:50 | tmp | contextFunctionInterfaces | constructor(s)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:17:48:17:50 | tmp | contextFunctionInterfaces | constructor(s)\ncreateHTML(x)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\ntypes(val)\nusesCreateHTML(x)\nusesCreateHTML(x)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:17:48:17:50 | tmp | contextSurroundingFunctionParameters | (s) |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:17:48:17:50 | tmp | enclosingFunctionBody | s doc DOMParser parseFromString s text/xml xml doc documentElement tmp document createElement span tmp appendChild xml cloneNode document querySelector #xml appendChild tmp |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:17:48:17:50 | tmp | enclosingFunctionName | xssThroughMoreComplexXMLParsing |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:17:48:17:50 | tmp | fileImports | ./jquery-plugin ./typed markdown-it striptags |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:17:48:17:50 | tmp | fileImports | ./jquery-plugin ./typed markdown-it mermaid striptags |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:17:48:17:50 | tmp | receiverName |  |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:17:48:17:50 | tmp | stringConcatenatedWith |  |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:23:53:23:56 | html | CalleeFlexibleAccessPath |  |
@@ -15402,11 +19156,11 @@ tokenFeatures
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:23:53:23:56 | html | InputArgumentIndex |  |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:23:53:23:56 | html | assignedToPropName | innerHTML |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:23:53:23:56 | html | calleeImports |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:23:53:23:56 | html | contextFunctionInterfaces | constructor(s)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:23:53:23:56 | html | contextFunctionInterfaces | constructor(s)\ncreateHTML(x)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\ntypes(val)\nusesCreateHTML(x)\nusesCreateHTML(x)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:23:53:23:56 | html | contextSurroundingFunctionParameters | (s) |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:23:53:23:56 | html | enclosingFunctionBody | s html markdown render s document querySelector #markdown innerHTML html |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:23:53:23:56 | html | enclosingFunctionName | xssThroughMarkdown |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:23:53:23:56 | html | fileImports | ./jquery-plugin ./typed markdown-it striptags |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:23:53:23:56 | html | fileImports | ./jquery-plugin ./typed markdown-it mermaid striptags |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:23:53:23:56 | html | receiverName |  |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:23:53:23:56 | html | stringConcatenatedWith |  |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:29:54:29:57 | html | CalleeFlexibleAccessPath |  |
@@ -15414,11 +19168,11 @@ tokenFeatures
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:29:54:29:57 | html | InputArgumentIndex |  |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:29:54:29:57 | html | assignedToPropName | innerHTML |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:29:54:29:57 | html | calleeImports |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:29:54:29:57 | html | contextFunctionInterfaces | constructor(s)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:29:54:29:57 | html | contextFunctionInterfaces | constructor(s)\ncreateHTML(x)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\ntypes(val)\nusesCreateHTML(x)\nusesCreateHTML(x)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:29:54:29:57 | html | contextSurroundingFunctionParameters | (s) |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:29:54:29:57 | html | enclosingFunctionBody | s html striptags <span> s </span> document querySelector #sanitized innerHTML html |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:29:54:29:57 | html | enclosingFunctionName | sanitizedHTML |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:29:54:29:57 | html | fileImports | ./jquery-plugin ./typed markdown-it striptags |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:29:54:29:57 | html | fileImports | ./jquery-plugin ./typed markdown-it mermaid striptags |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:29:54:29:57 | html | receiverName |  |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:29:54:29:57 | html | stringConcatenatedWith |  |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:37:49:37:49 | s | CalleeFlexibleAccessPath | DOMParser().parseFromString |
@@ -15426,11 +19180,11 @@ tokenFeatures
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:37:49:37:49 | s | InputArgumentIndex | 0 |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:37:49:37:49 | s | assignedToPropName |  |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:37:49:37:49 | s | calleeImports |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:37:49:37:49 | s | contextFunctionInterfaces | constructor(s)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:37:49:37:49 | s | contextFunctionInterfaces | constructor(s)\ncreateHTML(x)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\ntypes(val)\nusesCreateHTML(x)\nusesCreateHTML(x)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:37:49:37:49 | s | contextSurroundingFunctionParameters | (s) |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:37:49:37:49 | s | enclosingFunctionBody | s doc DOMParser parseFromString s text/xml |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:37:49:37:49 | s | enclosingFunctionName | plainDOMXMLParsing |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:37:49:37:49 | s | fileImports | ./jquery-plugin ./typed markdown-it striptags |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:37:49:37:49 | s | fileImports | ./jquery-plugin ./typed markdown-it mermaid striptags |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:37:49:37:49 | s | receiverName |  |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:37:49:37:49 | s | stringConcatenatedWith |  |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:47:54:47:85 | "<span> ... /span>" | CalleeFlexibleAccessPath |  |
@@ -15438,11 +19192,11 @@ tokenFeatures
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:47:54:47:85 | "<span> ... /span>" | InputArgumentIndex |  |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:47:54:47:85 | "<span> ... /span>" | assignedToPropName | innerHTML |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:47:54:47:85 | "<span> ... /span>" | calleeImports |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:47:54:47:85 | "<span> ... /span>" | contextFunctionInterfaces | constructor(s)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:47:54:47:85 | "<span> ... /span>" | contextFunctionInterfaces | constructor(s)\ncreateHTML(x)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\ntypes(val)\nusesCreateHTML(x)\nusesCreateHTML(x)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:47:54:47:85 | "<span> ... /span>" | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:47:54:47:85 | "<span> ... /span>" | enclosingFunctionBody | document querySelector #class innerHTML <span> step </span> |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:47:54:47:85 | "<span> ... /span>" | enclosingFunctionName | doXss |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:47:54:47:85 | "<span> ... /span>" | fileImports | ./jquery-plugin ./typed markdown-it striptags |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:47:54:47:85 | "<span> ... /span>" | fileImports | ./jquery-plugin ./typed markdown-it mermaid striptags |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:47:54:47:85 | "<span> ... /span>" | receiverName |  |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:47:54:47:85 | "<span> ... /span>" | stringConcatenatedWith |  |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:60:31:60:38 | defaults | CalleeFlexibleAccessPath | $.extend |
@@ -15450,11 +19204,11 @@ tokenFeatures
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:60:31:60:38 | defaults | InputArgumentIndex | 0 |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:60:31:60:38 | defaults | assignedToPropName |  |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:60:31:60:38 | defaults | calleeImports |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:60:31:60:38 | defaults | contextFunctionInterfaces | constructor(s)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:60:31:60:38 | defaults | contextFunctionInterfaces | constructor(s)\ncreateHTML(x)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\ntypes(val)\nusesCreateHTML(x)\nusesCreateHTML(x)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:60:31:60:38 | defaults | contextSurroundingFunctionParameters | (options) |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:60:31:60:38 | defaults | enclosingFunctionBody | options defaults name name settings $ extend defaults options each $ <b> settings name </b> appendTo |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:60:31:60:38 | defaults | enclosingFunctionName | xssPlugin |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:60:31:60:38 | defaults | fileImports | ./jquery-plugin ./typed markdown-it striptags |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:60:31:60:38 | defaults | fileImports | ./jquery-plugin ./typed markdown-it mermaid striptags |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:60:31:60:38 | defaults | receiverName | $ |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:60:31:60:38 | defaults | stringConcatenatedWith |  |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:60:41:60:47 | options | CalleeFlexibleAccessPath | $.extend |
@@ -15462,11 +19216,11 @@ tokenFeatures
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:60:41:60:47 | options | InputArgumentIndex | 1 |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:60:41:60:47 | options | assignedToPropName |  |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:60:41:60:47 | options | calleeImports |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:60:41:60:47 | options | contextFunctionInterfaces | constructor(s)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:60:41:60:47 | options | contextFunctionInterfaces | constructor(s)\ncreateHTML(x)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\ntypes(val)\nusesCreateHTML(x)\nusesCreateHTML(x)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:60:41:60:47 | options | contextSurroundingFunctionParameters | (options) |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:60:41:60:47 | options | enclosingFunctionBody | options defaults name name settings $ extend defaults options each $ <b> settings name </b> appendTo |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:60:41:60:47 | options | enclosingFunctionName | xssPlugin |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:60:41:60:47 | options | fileImports | ./jquery-plugin ./typed markdown-it striptags |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:60:41:60:47 | options | fileImports | ./jquery-plugin ./typed markdown-it mermaid striptags |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:60:41:60:47 | options | receiverName | $ |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:60:41:60:47 | options | stringConcatenatedWith |  |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:61:22:63:5 | functio ... K\\n    } | CalleeFlexibleAccessPath | this.each |
@@ -15474,11 +19228,11 @@ tokenFeatures
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:61:22:63:5 | functio ... K\\n    } | InputArgumentIndex | 0 |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:61:22:63:5 | functio ... K\\n    } | assignedToPropName |  |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:61:22:63:5 | functio ... K\\n    } | calleeImports |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:61:22:63:5 | functio ... K\\n    } | contextFunctionInterfaces | constructor(s)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:61:22:63:5 | functio ... K\\n    } | contextFunctionInterfaces | constructor(s)\ncreateHTML(x)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\ntypes(val)\nusesCreateHTML(x)\nusesCreateHTML(x)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:61:22:63:5 | functio ... K\\n    } | contextSurroundingFunctionParameters | (options)\n() |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:61:22:63:5 | functio ... K\\n    } | enclosingFunctionBody | options defaults name name settings $ extend defaults options each $ <b> settings name </b> appendTo |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:61:22:63:5 | functio ... K\\n    } | enclosingFunctionName | xssPlugin |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:61:22:63:5 | functio ... K\\n    } | fileImports | ./jquery-plugin ./typed markdown-it striptags |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:61:22:63:5 | functio ... K\\n    } | fileImports | ./jquery-plugin ./typed markdown-it mermaid striptags |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:61:22:63:5 | functio ... K\\n    } | receiverName |  |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:61:22:63:5 | functio ... K\\n    } | stringConcatenatedWith |  |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:62:11:62:40 | "<b>" + ...  "</b>" | CalleeFlexibleAccessPath | $ |
@@ -15486,11 +19240,11 @@ tokenFeatures
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:62:11:62:40 | "<b>" + ...  "</b>" | InputArgumentIndex | 0 |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:62:11:62:40 | "<b>" + ...  "</b>" | assignedToPropName |  |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:62:11:62:40 | "<b>" + ...  "</b>" | calleeImports |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:62:11:62:40 | "<b>" + ...  "</b>" | contextFunctionInterfaces | constructor(s)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:62:11:62:40 | "<b>" + ...  "</b>" | contextFunctionInterfaces | constructor(s)\ncreateHTML(x)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\ntypes(val)\nusesCreateHTML(x)\nusesCreateHTML(x)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:62:11:62:40 | "<b>" + ...  "</b>" | contextSurroundingFunctionParameters | (options)\n() |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:62:11:62:40 | "<b>" + ...  "</b>" | enclosingFunctionBody | options defaults name name settings $ extend defaults options each $ <b> settings name </b> appendTo |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:62:11:62:40 | "<b>" + ...  "</b>" | enclosingFunctionName | xssPlugin |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:62:11:62:40 | "<b>" + ...  "</b>" | fileImports | ./jquery-plugin ./typed markdown-it striptags |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:62:11:62:40 | "<b>" + ...  "</b>" | fileImports | ./jquery-plugin ./typed markdown-it mermaid striptags |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:62:11:62:40 | "<b>" + ...  "</b>" | receiverName |  |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:62:11:62:40 | "<b>" + ...  "</b>" | stringConcatenatedWith |  |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:62:52:62:55 | this | CalleeFlexibleAccessPath | $().appendTo |
@@ -15498,11 +19252,11 @@ tokenFeatures
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:62:52:62:55 | this | InputArgumentIndex | 0 |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:62:52:62:55 | this | assignedToPropName |  |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:62:52:62:55 | this | calleeImports |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:62:52:62:55 | this | contextFunctionInterfaces | constructor(s)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:62:52:62:55 | this | contextFunctionInterfaces | constructor(s)\ncreateHTML(x)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\ntypes(val)\nusesCreateHTML(x)\nusesCreateHTML(x)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:62:52:62:55 | this | contextSurroundingFunctionParameters | (options)\n() |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:62:52:62:55 | this | enclosingFunctionBody | options defaults name name settings $ extend defaults options each $ <b> settings name </b> appendTo |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:62:52:62:55 | this | enclosingFunctionName | xssPlugin |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:62:52:62:55 | this | fileImports | ./jquery-plugin ./typed markdown-it striptags |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:62:52:62:55 | this | fileImports | ./jquery-plugin ./typed markdown-it mermaid striptags |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:62:52:62:55 | this | receiverName |  |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:62:52:62:55 | this | stringConcatenatedWith |  |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:67:47:67:78 | "<img a ...  "\\"/>" | CalleeFlexibleAccessPath |  |
@@ -15510,11 +19264,11 @@ tokenFeatures
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:67:47:67:78 | "<img a ...  "\\"/>" | InputArgumentIndex |  |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:67:47:67:78 | "<img a ...  "\\"/>" | assignedToPropName | innerHTML |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:67:47:67:78 | "<img a ...  "\\"/>" | calleeImports |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:67:47:67:78 | "<img a ...  "\\"/>" | contextFunctionInterfaces | constructor(s)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:67:47:67:78 | "<img a ...  "\\"/>" | contextFunctionInterfaces | constructor(s)\ncreateHTML(x)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\ntypes(val)\nusesCreateHTML(x)\nusesCreateHTML(x)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:67:47:67:78 | "<img a ...  "\\"/>" | contextSurroundingFunctionParameters | (attrVal) |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:67:47:67:78 | "<img a ...  "\\"/>" | enclosingFunctionBody | attrVal document querySelector #id innerHTML <img alt=" attrVal "/> document querySelector #id innerHTML <img alt=" attrVal replace /"\|'/g  "/> attrVal indexOf " 1 attrVal indexOf ' 1 document querySelector #id innerHTML <img alt=" attrVal "/> |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:67:47:67:78 | "<img a ...  "\\"/>" | enclosingFunctionName | guards |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:67:47:67:78 | "<img a ...  "\\"/>" | fileImports | ./jquery-plugin ./typed markdown-it striptags |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:67:47:67:78 | "<img a ...  "\\"/>" | fileImports | ./jquery-plugin ./typed markdown-it mermaid striptags |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:67:47:67:78 | "<img a ...  "\\"/>" | receiverName |  |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:67:47:67:78 | "<img a ...  "\\"/>" | stringConcatenatedWith |  |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:47:68:98 | "<img a ...  "\\"/>" | CalleeFlexibleAccessPath |  |
@@ -15522,11 +19276,11 @@ tokenFeatures
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:47:68:98 | "<img a ...  "\\"/>" | InputArgumentIndex |  |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:47:68:98 | "<img a ...  "\\"/>" | assignedToPropName | innerHTML |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:47:68:98 | "<img a ...  "\\"/>" | calleeImports |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:47:68:98 | "<img a ...  "\\"/>" | contextFunctionInterfaces | constructor(s)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:47:68:98 | "<img a ...  "\\"/>" | contextFunctionInterfaces | constructor(s)\ncreateHTML(x)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\ntypes(val)\nusesCreateHTML(x)\nusesCreateHTML(x)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:47:68:98 | "<img a ...  "\\"/>" | contextSurroundingFunctionParameters | (attrVal) |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:47:68:98 | "<img a ...  "\\"/>" | enclosingFunctionBody | attrVal document querySelector #id innerHTML <img alt=" attrVal "/> document querySelector #id innerHTML <img alt=" attrVal replace /"\|'/g  "/> attrVal indexOf " 1 attrVal indexOf ' 1 document querySelector #id innerHTML <img alt=" attrVal "/> |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:47:68:98 | "<img a ...  "\\"/>" | enclosingFunctionName | guards |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:47:68:98 | "<img a ...  "\\"/>" | fileImports | ./jquery-plugin ./typed markdown-it striptags |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:47:68:98 | "<img a ...  "\\"/>" | fileImports | ./jquery-plugin ./typed markdown-it mermaid striptags |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:47:68:98 | "<img a ...  "\\"/>" | receiverName |  |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:47:68:98 | "<img a ...  "\\"/>" | stringConcatenatedWith |  |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:70:51:70:82 | "<img a ...  "\\"/>" | CalleeFlexibleAccessPath |  |
@@ -15534,11 +19288,11 @@ tokenFeatures
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:70:51:70:82 | "<img a ...  "\\"/>" | InputArgumentIndex |  |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:70:51:70:82 | "<img a ...  "\\"/>" | assignedToPropName | innerHTML |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:70:51:70:82 | "<img a ...  "\\"/>" | calleeImports |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:70:51:70:82 | "<img a ...  "\\"/>" | contextFunctionInterfaces | constructor(s)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:70:51:70:82 | "<img a ...  "\\"/>" | contextFunctionInterfaces | constructor(s)\ncreateHTML(x)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\ntypes(val)\nusesCreateHTML(x)\nusesCreateHTML(x)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:70:51:70:82 | "<img a ...  "\\"/>" | contextSurroundingFunctionParameters | (attrVal) |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:70:51:70:82 | "<img a ...  "\\"/>" | enclosingFunctionBody | attrVal document querySelector #id innerHTML <img alt=" attrVal "/> document querySelector #id innerHTML <img alt=" attrVal replace /"\|'/g  "/> attrVal indexOf " 1 attrVal indexOf ' 1 document querySelector #id innerHTML <img alt=" attrVal "/> |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:70:51:70:82 | "<img a ...  "\\"/>" | enclosingFunctionName | guards |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:70:51:70:82 | "<img a ...  "\\"/>" | fileImports | ./jquery-plugin ./typed markdown-it striptags |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:70:51:70:82 | "<img a ...  "\\"/>" | fileImports | ./jquery-plugin ./typed markdown-it mermaid striptags |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:70:51:70:82 | "<img a ...  "\\"/>" | receiverName |  |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:70:51:70:82 | "<img a ...  "\\"/>" | stringConcatenatedWith |  |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:76:53:76:56 | html | CalleeFlexibleAccessPath |  |
@@ -15546,13 +19300,133 @@ tokenFeatures
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:76:53:76:56 | html | InputArgumentIndex |  |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:76:53:76:56 | html | assignedToPropName | innerHTML |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:76:53:76:56 | html | calleeImports |  |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:76:53:76:56 | html | contextFunctionInterfaces | constructor(s)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:76:53:76:56 | html | contextFunctionInterfaces | constructor(s)\ncreateHTML(x)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\ntypes(val)\nusesCreateHTML(x)\nusesCreateHTML(x)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:76:53:76:56 | html | contextSurroundingFunctionParameters | (obj) |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:76:53:76:56 | html | enclosingFunctionBody | obj html <span> obj spanTemplate </span> document querySelector #template innerHTML html |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:76:53:76:56 | html | enclosingFunctionName | intentionalTemplate |
-| autogenerated/Xss/UnsafeHtmlConstruction/main.js:76:53:76:56 | html | fileImports | ./jquery-plugin ./typed markdown-it striptags |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:76:53:76:56 | html | fileImports | ./jquery-plugin ./typed markdown-it mermaid striptags |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:76:53:76:56 | html | receiverName |  |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:76:53:76:56 | html | stringConcatenatedWith |  |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:81:24:81:49 | "<span> ... /span>" | CalleeFlexibleAccessPath | $().html |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:81:24:81:49 | "<span> ... /span>" | InputAccessPathFromCallee |  |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:81:24:81:49 | "<span> ... /span>" | InputArgumentIndex | 0 |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:81:24:81:49 | "<span> ... /span>" | assignedToPropName |  |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:81:24:81:49 | "<span> ... /span>" | calleeImports |  |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:81:24:81:49 | "<span> ... /span>" | contextFunctionInterfaces | constructor(s)\ncreateHTML(x)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\ntypes(val)\nusesCreateHTML(x)\nusesCreateHTML(x)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:81:24:81:49 | "<span> ... /span>" | contextSurroundingFunctionParameters | (val) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:81:24:81:49 | "<span> ... /span>" | enclosingFunctionBody | val val string $ #foo html <span> val </span> val number $ #foo html <span> val </span> val boolean $ #foo html <span> val </span> |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:81:24:81:49 | "<span> ... /span>" | enclosingFunctionName | types |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:81:24:81:49 | "<span> ... /span>" | fileImports | ./jquery-plugin ./typed markdown-it mermaid striptags |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:81:24:81:49 | "<span> ... /span>" | receiverName |  |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:81:24:81:49 | "<span> ... /span>" | stringConcatenatedWith |  |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:83:24:83:49 | "<span> ... /span>" | CalleeFlexibleAccessPath | $().html |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:83:24:83:49 | "<span> ... /span>" | InputAccessPathFromCallee |  |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:83:24:83:49 | "<span> ... /span>" | InputArgumentIndex | 0 |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:83:24:83:49 | "<span> ... /span>" | assignedToPropName |  |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:83:24:83:49 | "<span> ... /span>" | calleeImports |  |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:83:24:83:49 | "<span> ... /span>" | contextFunctionInterfaces | constructor(s)\ncreateHTML(x)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\ntypes(val)\nusesCreateHTML(x)\nusesCreateHTML(x)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:83:24:83:49 | "<span> ... /span>" | contextSurroundingFunctionParameters | (val) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:83:24:83:49 | "<span> ... /span>" | enclosingFunctionBody | val val string $ #foo html <span> val </span> val number $ #foo html <span> val </span> val boolean $ #foo html <span> val </span> |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:83:24:83:49 | "<span> ... /span>" | enclosingFunctionName | types |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:83:24:83:49 | "<span> ... /span>" | fileImports | ./jquery-plugin ./typed markdown-it mermaid striptags |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:83:24:83:49 | "<span> ... /span>" | receiverName |  |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:83:24:83:49 | "<span> ... /span>" | stringConcatenatedWith |  |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:85:24:85:49 | "<span> ... /span>" | CalleeFlexibleAccessPath | $().html |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:85:24:85:49 | "<span> ... /span>" | InputAccessPathFromCallee |  |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:85:24:85:49 | "<span> ... /span>" | InputArgumentIndex | 0 |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:85:24:85:49 | "<span> ... /span>" | assignedToPropName |  |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:85:24:85:49 | "<span> ... /span>" | calleeImports |  |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:85:24:85:49 | "<span> ... /span>" | contextFunctionInterfaces | constructor(s)\ncreateHTML(x)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\ntypes(val)\nusesCreateHTML(x)\nusesCreateHTML(x)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:85:24:85:49 | "<span> ... /span>" | contextSurroundingFunctionParameters | (val) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:85:24:85:49 | "<span> ... /span>" | enclosingFunctionBody | val val string $ #foo html <span> val </span> val number $ #foo html <span> val </span> val boolean $ #foo html <span> val </span> |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:85:24:85:49 | "<span> ... /span>" | enclosingFunctionName | types |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:85:24:85:49 | "<span> ... /span>" | fileImports | ./jquery-plugin ./typed markdown-it mermaid striptags |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:85:24:85:49 | "<span> ... /span>" | receiverName |  |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:85:24:85:49 | "<span> ... /span>" | stringConcatenatedWith |  |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:94:20:94:32 | createHTML(x) | CalleeFlexibleAccessPath | $().html |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:94:20:94:32 | createHTML(x) | InputAccessPathFromCallee |  |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:94:20:94:32 | createHTML(x) | InputArgumentIndex | 0 |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:94:20:94:32 | createHTML(x) | assignedToPropName |  |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:94:20:94:32 | createHTML(x) | calleeImports |  |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:94:20:94:32 | createHTML(x) | contextFunctionInterfaces | constructor(s)\ncreateHTML(x)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\ntypes(val)\nusesCreateHTML(x)\nusesCreateHTML(x)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:94:20:94:32 | createHTML(x) | contextSurroundingFunctionParameters | (x) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:94:20:94:32 | createHTML(x) | enclosingFunctionBody | x $ #foo html createHTML x |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:94:20:94:32 | createHTML(x) | enclosingFunctionName | usesCreateHTML |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:94:20:94:32 | createHTML(x) | fileImports | ./jquery-plugin ./typed markdown-it mermaid striptags |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:94:20:94:32 | createHTML(x) | receiverName |  |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:94:20:94:32 | createHTML(x) | stringConcatenatedWith |  |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:100:24:100:26 | svg | CalleeFlexibleAccessPath | $().html |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:100:24:100:26 | svg | InputAccessPathFromCallee |  |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:100:24:100:26 | svg | InputArgumentIndex | 0 |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:100:24:100:26 | svg | assignedToPropName |  |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:100:24:100:26 | svg | calleeImports |  |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:100:24:100:26 | svg | contextFunctionInterfaces | constructor(s)\ncreateHTML(x)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\ntypes(val)\nusesCreateHTML(x)\nusesCreateHTML(x)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:100:24:100:26 | svg | contextSurroundingFunctionParameters | (x)\n(svg) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:100:24:100:26 | svg | enclosingFunctionBody | x myMermaid render id x svg $ #foo html svg $ #foo html myMermaid render id x mermaid render id x svg $ #foo html svg $ #foo html mermaid render id x mermaid mermaidAPI render id x svg $ #foo html svg |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:100:24:100:26 | svg | enclosingFunctionName | usesCreateHTML |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:100:24:100:26 | svg | fileImports | ./jquery-plugin ./typed markdown-it mermaid striptags |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:100:24:100:26 | svg | receiverName |  |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:100:24:100:26 | svg | stringConcatenatedWith |  |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:103:20:103:44 | myMerma ... id", x) | CalleeFlexibleAccessPath | $().html |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:103:20:103:44 | myMerma ... id", x) | InputAccessPathFromCallee |  |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:103:20:103:44 | myMerma ... id", x) | InputArgumentIndex | 0 |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:103:20:103:44 | myMerma ... id", x) | assignedToPropName |  |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:103:20:103:44 | myMerma ... id", x) | calleeImports |  |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:103:20:103:44 | myMerma ... id", x) | contextFunctionInterfaces | constructor(s)\ncreateHTML(x)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\ntypes(val)\nusesCreateHTML(x)\nusesCreateHTML(x)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:103:20:103:44 | myMerma ... id", x) | contextSurroundingFunctionParameters | (x) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:103:20:103:44 | myMerma ... id", x) | enclosingFunctionBody | x myMermaid render id x svg $ #foo html svg $ #foo html myMermaid render id x mermaid render id x svg $ #foo html svg $ #foo html mermaid render id x mermaid mermaidAPI render id x svg $ #foo html svg |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:103:20:103:44 | myMerma ... id", x) | enclosingFunctionName | usesCreateHTML |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:103:20:103:44 | myMerma ... id", x) | fileImports | ./jquery-plugin ./typed markdown-it mermaid striptags |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:103:20:103:44 | myMerma ... id", x) | receiverName |  |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:103:20:103:44 | myMerma ... id", x) | stringConcatenatedWith |  |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:106:24:106:26 | svg | CalleeFlexibleAccessPath | $().html |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:106:24:106:26 | svg | InputAccessPathFromCallee |  |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:106:24:106:26 | svg | InputArgumentIndex | 0 |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:106:24:106:26 | svg | assignedToPropName |  |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:106:24:106:26 | svg | calleeImports |  |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:106:24:106:26 | svg | contextFunctionInterfaces | constructor(s)\ncreateHTML(x)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\ntypes(val)\nusesCreateHTML(x)\nusesCreateHTML(x)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:106:24:106:26 | svg | contextSurroundingFunctionParameters | (x)\n(svg) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:106:24:106:26 | svg | enclosingFunctionBody | x myMermaid render id x svg $ #foo html svg $ #foo html myMermaid render id x mermaid render id x svg $ #foo html svg $ #foo html mermaid render id x mermaid mermaidAPI render id x svg $ #foo html svg |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:106:24:106:26 | svg | enclosingFunctionName | usesCreateHTML |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:106:24:106:26 | svg | fileImports | ./jquery-plugin ./typed markdown-it mermaid striptags |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:106:24:106:26 | svg | receiverName |  |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:106:24:106:26 | svg | stringConcatenatedWith |  |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:109:20:109:42 | mermaid ... id", x) | CalleeFlexibleAccessPath | $().html |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:109:20:109:42 | mermaid ... id", x) | InputAccessPathFromCallee |  |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:109:20:109:42 | mermaid ... id", x) | InputArgumentIndex | 0 |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:109:20:109:42 | mermaid ... id", x) | assignedToPropName |  |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:109:20:109:42 | mermaid ... id", x) | calleeImports |  |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:109:20:109:42 | mermaid ... id", x) | contextFunctionInterfaces | constructor(s)\ncreateHTML(x)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\ntypes(val)\nusesCreateHTML(x)\nusesCreateHTML(x)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:109:20:109:42 | mermaid ... id", x) | contextSurroundingFunctionParameters | (x) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:109:20:109:42 | mermaid ... id", x) | enclosingFunctionBody | x myMermaid render id x svg $ #foo html svg $ #foo html myMermaid render id x mermaid render id x svg $ #foo html svg $ #foo html mermaid render id x mermaid mermaidAPI render id x svg $ #foo html svg |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:109:20:109:42 | mermaid ... id", x) | enclosingFunctionName | usesCreateHTML |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:109:20:109:42 | mermaid ... id", x) | fileImports | ./jquery-plugin ./typed markdown-it mermaid striptags |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:109:20:109:42 | mermaid ... id", x) | receiverName |  |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:109:20:109:42 | mermaid ... id", x) | stringConcatenatedWith |  |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:112:24:112:26 | svg | CalleeFlexibleAccessPath | $().html |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:112:24:112:26 | svg | InputAccessPathFromCallee |  |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:112:24:112:26 | svg | InputArgumentIndex | 0 |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:112:24:112:26 | svg | assignedToPropName |  |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:112:24:112:26 | svg | calleeImports |  |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:112:24:112:26 | svg | contextFunctionInterfaces | constructor(s)\ncreateHTML(x)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\ntypes(val)\nusesCreateHTML(x)\nusesCreateHTML(x)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:112:24:112:26 | svg | contextSurroundingFunctionParameters | (x)\n(svg) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:112:24:112:26 | svg | enclosingFunctionBody | x myMermaid render id x svg $ #foo html svg $ #foo html myMermaid render id x mermaid render id x svg $ #foo html svg $ #foo html mermaid render id x mermaid mermaidAPI render id x svg $ #foo html svg |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:112:24:112:26 | svg | enclosingFunctionName | usesCreateHTML |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:112:24:112:26 | svg | fileImports | ./jquery-plugin ./typed markdown-it mermaid striptags |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:112:24:112:26 | svg | receiverName |  |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:112:24:112:26 | svg | stringConcatenatedWith |  |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:118:53:118:56 | html | CalleeFlexibleAccessPath |  |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:118:53:118:56 | html | InputAccessPathFromCallee |  |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:118:53:118:56 | html | InputArgumentIndex |  |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:118:53:118:56 | html | assignedToPropName | innerHTML |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:118:53:118:56 | html | calleeImports |  |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:118:53:118:56 | html | contextFunctionInterfaces | constructor(s)\ncreateHTML(x)\ncreatesClass(s)\ndoXss()\nguards(attrVal)\nintentionalTemplate(obj)\nplainDOMXMLParsing(s)\nsanitizedHTML(s)\ntypes(val)\nusesCreateHTML(x)\nusesCreateHTML(x)\nxssPlugin(options)\nxssThroughHTMLConstruction(s)\nxssThroughMarkdown(s)\nxssThroughMarkdown(s)\nxssThroughMoreComplexXMLParsing(s)\nxssThroughXMLParsing(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:118:53:118:56 | html | contextSurroundingFunctionParameters | (s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:118:53:118:56 | html | enclosingFunctionBody | s html markdown render s document querySelector #markdown innerHTML html |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:118:53:118:56 | html | enclosingFunctionName | xssThroughMarkdown |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:118:53:118:56 | html | fileImports | ./jquery-plugin ./typed markdown-it mermaid striptags |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:118:53:118:56 | html | receiverName |  |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:118:53:118:56 | html | stringConcatenatedWith |  |
 | autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:3:31:3:34 | html | CalleeFlexibleAccessPath |  |
 | autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:3:31:3:34 | html | InputAccessPathFromCallee |  |
 | autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:3:31:3:34 | html | InputArgumentIndex |  |
@@ -15582,7 +19456,7 @@ tokenFeatures
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:3:5:3:11 | options | InputArgumentIndex | 0 |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:3:5:3:11 | options | assignedToPropName |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:3:5:3:11 | options | calleeImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:3:5:3:11 | options | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:3:5:3:11 | options | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nposition(options)\nsetupPlugin(o) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:3:5:3:11 | options | contextSurroundingFunctionParameters | ()\n(options) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:3:5:3:11 | options | enclosingFunctionBody |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:3:5:3:11 | options | enclosingFunctionName |  |
@@ -15594,7 +19468,7 @@ tokenFeatures
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:5:5:5:18 | options.target | InputArgumentIndex | 0 |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:5:5:5:18 | options.target | assignedToPropName |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:5:5:5:18 | options.target | calleeImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:5:5:5:18 | options.target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:5:5:5:18 | options.target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nposition(options)\nsetupPlugin(o) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:5:5:5:18 | options.target | contextSurroundingFunctionParameters | ()\n(options) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:5:5:5:18 | options.target | enclosingFunctionBody |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:5:5:5:18 | options.target | enclosingFunctionName |  |
@@ -15606,7 +19480,7 @@ tokenFeatures
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:8:6:8:19 | options.target | InputArgumentIndex | 0 |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:8:6:8:19 | options.target | assignedToPropName |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:8:6:8:19 | options.target | calleeImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:8:6:8:19 | options.target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:8:6:8:19 | options.target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nposition(options)\nsetupPlugin(o) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:8:6:8:19 | options.target | contextSurroundingFunctionParameters | ()\n(options) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:8:6:8:19 | options.target | enclosingFunctionBody |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:8:6:8:19 | options.target | enclosingFunctionName |  |
@@ -15618,7 +19492,7 @@ tokenFeatures
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:14:6:14:11 | target | InputArgumentIndex | 0 |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:14:6:14:11 | target | assignedToPropName |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:14:6:14:11 | target | calleeImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:14:6:14:11 | target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:14:6:14:11 | target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nposition(options)\nsetupPlugin(o) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:14:6:14:11 | target | contextSurroundingFunctionParameters | ()\n(options) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:14:6:14:11 | target | enclosingFunctionBody |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:14:6:14:11 | target | enclosingFunctionName |  |
@@ -15630,7 +19504,7 @@ tokenFeatures
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:18:6:18:11 | target | InputArgumentIndex | 0 |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:18:6:18:11 | target | assignedToPropName |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:18:6:18:11 | target | calleeImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:18:6:18:11 | target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:18:6:18:11 | target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nposition(options)\nsetupPlugin(o) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:18:6:18:11 | target | contextSurroundingFunctionParameters | ()\n(options) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:18:6:18:11 | target | enclosingFunctionBody |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:18:6:18:11 | target | enclosingFunctionName |  |
@@ -15642,7 +19516,7 @@ tokenFeatures
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:22:6:22:11 | target | InputArgumentIndex | 0 |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:22:6:22:11 | target | assignedToPropName |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:22:6:22:11 | target | calleeImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:22:6:22:11 | target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:22:6:22:11 | target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nposition(options)\nsetupPlugin(o) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:22:6:22:11 | target | contextSurroundingFunctionParameters | ()\n(options) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:22:6:22:11 | target | enclosingFunctionBody |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:22:6:22:11 | target | enclosingFunctionName |  |
@@ -15654,7 +19528,7 @@ tokenFeatures
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:24:6:24:11 | target | InputArgumentIndex | 0 |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:24:6:24:11 | target | assignedToPropName |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:24:6:24:11 | target | calleeImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:24:6:24:11 | target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:24:6:24:11 | target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nposition(options)\nsetupPlugin(o) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:24:6:24:11 | target | contextSurroundingFunctionParameters | ()\n(options) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:24:6:24:11 | target | enclosingFunctionBody |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:24:6:24:11 | target | enclosingFunctionName |  |
@@ -15666,7 +19540,7 @@ tokenFeatures
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:28:6:28:11 | target | InputArgumentIndex | 0 |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:28:6:28:11 | target | assignedToPropName |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:28:6:28:11 | target | calleeImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:28:6:28:11 | target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:28:6:28:11 | target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nposition(options)\nsetupPlugin(o) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:28:6:28:11 | target | contextSurroundingFunctionParameters | ()\n(options) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:28:6:28:11 | target | enclosingFunctionBody |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:28:6:28:11 | target | enclosingFunctionName |  |
@@ -15678,7 +19552,7 @@ tokenFeatures
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:30:6:30:11 | target | InputArgumentIndex | 0 |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:30:6:30:11 | target | assignedToPropName |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:30:6:30:11 | target | calleeImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:30:6:30:11 | target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:30:6:30:11 | target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nposition(options)\nsetupPlugin(o) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:30:6:30:11 | target | contextSurroundingFunctionParameters | ()\n(options) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:30:6:30:11 | target | enclosingFunctionBody |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:30:6:30:11 | target | enclosingFunctionName |  |
@@ -15690,7 +19564,7 @@ tokenFeatures
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:34:6:34:11 | target | InputArgumentIndex | 0 |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:34:6:34:11 | target | assignedToPropName |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:34:6:34:11 | target | calleeImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:34:6:34:11 | target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:34:6:34:11 | target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nposition(options)\nsetupPlugin(o) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:34:6:34:11 | target | contextSurroundingFunctionParameters | ()\n(options) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:34:6:34:11 | target | enclosingFunctionBody |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:34:6:34:11 | target | enclosingFunctionName |  |
@@ -15702,7 +19576,7 @@ tokenFeatures
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:36:6:36:11 | target | InputArgumentIndex | 0 |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:36:6:36:11 | target | assignedToPropName |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:36:6:36:11 | target | calleeImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:36:6:36:11 | target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:36:6:36:11 | target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nposition(options)\nsetupPlugin(o) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:36:6:36:11 | target | contextSurroundingFunctionParameters | ()\n(options) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:36:6:36:11 | target | enclosingFunctionBody |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:36:6:36:11 | target | enclosingFunctionName |  |
@@ -15714,7 +19588,7 @@ tokenFeatures
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:40:6:40:11 | target | InputArgumentIndex | 0 |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:40:6:40:11 | target | assignedToPropName |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:40:6:40:11 | target | calleeImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:40:6:40:11 | target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:40:6:40:11 | target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nposition(options)\nsetupPlugin(o) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:40:6:40:11 | target | contextSurroundingFunctionParameters | ()\n(options) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:40:6:40:11 | target | enclosingFunctionBody |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:40:6:40:11 | target | enclosingFunctionName |  |
@@ -15726,7 +19600,7 @@ tokenFeatures
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:42:6:42:11 | target | InputArgumentIndex | 0 |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:42:6:42:11 | target | assignedToPropName |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:42:6:42:11 | target | calleeImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:42:6:42:11 | target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:42:6:42:11 | target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nposition(options)\nsetupPlugin(o) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:42:6:42:11 | target | contextSurroundingFunctionParameters | ()\n(options) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:42:6:42:11 | target | enclosingFunctionBody |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:42:6:42:11 | target | enclosingFunctionName |  |
@@ -15738,7 +19612,7 @@ tokenFeatures
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:46:6:46:11 | target | InputArgumentIndex | 0 |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:46:6:46:11 | target | assignedToPropName |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:46:6:46:11 | target | calleeImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:46:6:46:11 | target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:46:6:46:11 | target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nposition(options)\nsetupPlugin(o) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:46:6:46:11 | target | contextSurroundingFunctionParameters | ()\n(options) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:46:6:46:11 | target | enclosingFunctionBody |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:46:6:46:11 | target | enclosingFunctionName |  |
@@ -15750,7 +19624,7 @@ tokenFeatures
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:48:6:48:11 | target | InputArgumentIndex | 0 |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:48:6:48:11 | target | assignedToPropName |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:48:6:48:11 | target | calleeImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:48:6:48:11 | target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:48:6:48:11 | target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nposition(options)\nsetupPlugin(o) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:48:6:48:11 | target | contextSurroundingFunctionParameters | ()\n(options) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:48:6:48:11 | target | enclosingFunctionBody |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:48:6:48:11 | target | enclosingFunctionName |  |
@@ -15762,7 +19636,7 @@ tokenFeatures
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:52:6:52:11 | target | InputArgumentIndex | 0 |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:52:6:52:11 | target | assignedToPropName |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:52:6:52:11 | target | calleeImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:52:6:52:11 | target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:52:6:52:11 | target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nposition(options)\nsetupPlugin(o) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:52:6:52:11 | target | contextSurroundingFunctionParameters | ()\n(options) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:52:6:52:11 | target | enclosingFunctionBody |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:52:6:52:11 | target | enclosingFunctionName |  |
@@ -15774,7 +19648,7 @@ tokenFeatures
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:54:6:54:11 | target | InputArgumentIndex | 0 |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:54:6:54:11 | target | assignedToPropName |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:54:6:54:11 | target | calleeImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:54:6:54:11 | target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:54:6:54:11 | target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nposition(options)\nsetupPlugin(o) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:54:6:54:11 | target | contextSurroundingFunctionParameters | ()\n(options) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:54:6:54:11 | target | enclosingFunctionBody |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:54:6:54:11 | target | enclosingFunctionName |  |
@@ -15786,7 +19660,7 @@ tokenFeatures
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:58:6:58:11 | target | InputArgumentIndex | 0 |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:58:6:58:11 | target | assignedToPropName |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:58:6:58:11 | target | calleeImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:58:6:58:11 | target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:58:6:58:11 | target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nposition(options)\nsetupPlugin(o) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:58:6:58:11 | target | contextSurroundingFunctionParameters | ()\n(options) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:58:6:58:11 | target | enclosingFunctionBody |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:58:6:58:11 | target | enclosingFunctionName |  |
@@ -15798,7 +19672,7 @@ tokenFeatures
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:60:6:60:11 | target | InputArgumentIndex | 0 |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:60:6:60:11 | target | assignedToPropName |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:60:6:60:11 | target | calleeImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:60:6:60:11 | target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:60:6:60:11 | target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nposition(options)\nsetupPlugin(o) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:60:6:60:11 | target | contextSurroundingFunctionParameters | ()\n(options) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:60:6:60:11 | target | enclosingFunctionBody |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:60:6:60:11 | target | enclosingFunctionName |  |
@@ -15810,7 +19684,7 @@ tokenFeatures
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:66:26:66:32 | element | InputArgumentIndex | 0 |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:66:26:66:32 | element | assignedToPropName |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:66:26:66:32 | element | calleeImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:66:26:66:32 | element | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:66:26:66:32 | element | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nposition(options)\nsetupPlugin(o) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:66:26:66:32 | element | contextSurroundingFunctionParameters | ()\n(element, options) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:66:26:66:32 | element | enclosingFunctionBody |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:66:26:66:32 | element | enclosingFunctionName |  |
@@ -15822,7 +19696,7 @@ tokenFeatures
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:67:33:67:34 | {} | InputArgumentIndex | 0 |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:67:33:67:34 | {} | assignedToPropName |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:67:33:67:34 | {} | calleeImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:67:33:67:34 | {} | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:67:33:67:34 | {} | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nposition(options)\nsetupPlugin(o) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:67:33:67:34 | {} | contextSurroundingFunctionParameters | ()\n(element, options) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:67:33:67:34 | {} | enclosingFunctionBody |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:67:33:67:34 | {} | enclosingFunctionName |  |
@@ -15834,7 +19708,7 @@ tokenFeatures
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:67:37:67:43 | options | InputArgumentIndex | 1 |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:67:37:67:43 | options | assignedToPropName |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:67:37:67:43 | options | calleeImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:67:37:67:43 | options | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:67:37:67:43 | options | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nposition(options)\nsetupPlugin(o) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:67:37:67:43 | options | contextSurroundingFunctionParameters | ()\n(element, options) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:67:37:67:43 | options | enclosingFunctionBody |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:67:37:67:43 | options | enclosingFunctionName |  |
@@ -15846,7 +19720,7 @@ tokenFeatures
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:68:45:68:63 | this.options.parent | InputArgumentIndex | 0 |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:68:45:68:63 | this.options.parent | assignedToPropName |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:68:45:68:63 | this.options.parent | calleeImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:68:45:68:63 | this.options.parent | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:68:45:68:63 | this.options.parent | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nposition(options)\nsetupPlugin(o) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:68:45:68:63 | this.options.parent | contextSurroundingFunctionParameters | ()\n(element, options) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:68:45:68:63 | this.options.parent | enclosingFunctionBody |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:68:45:68:63 | this.options.parent | enclosingFunctionName |  |
@@ -15858,7 +19732,7 @@ tokenFeatures
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:72:5:72:23 | options.foo.bar.baz | InputArgumentIndex | 0 |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:72:5:72:23 | options.foo.bar.baz | assignedToPropName |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:72:5:72:23 | options.foo.bar.baz | calleeImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:72:5:72:23 | options.foo.bar.baz | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:72:5:72:23 | options.foo.bar.baz | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nposition(options)\nsetupPlugin(o) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:72:5:72:23 | options.foo.bar.baz | contextSurroundingFunctionParameters | ()\n(options) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:72:5:72:23 | options.foo.bar.baz | enclosingFunctionBody |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:72:5:72:23 | options.foo.bar.baz | enclosingFunctionName |  |
@@ -15870,7 +19744,7 @@ tokenFeatures
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:73:5:73:16 | options.html | InputArgumentIndex | 0 |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:73:5:73:16 | options.html | assignedToPropName |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:73:5:73:16 | options.html | calleeImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:73:5:73:16 | options.html | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:73:5:73:16 | options.html | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nposition(options)\nsetupPlugin(o) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:73:5:73:16 | options.html | contextSurroundingFunctionParameters | ()\n(options) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:73:5:73:16 | options.html | enclosingFunctionBody |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:73:5:73:16 | options.html | enclosingFunctionName |  |
@@ -15882,7 +19756,7 @@ tokenFeatures
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:77:5:77:5 | x | InputArgumentIndex | 0 |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:77:5:77:5 | x | assignedToPropName |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:77:5:77:5 | x | calleeImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:77:5:77:5 | x | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:77:5:77:5 | x | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nposition(options)\nsetupPlugin(o) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:77:5:77:5 | x | contextSurroundingFunctionParameters | ()\n(options) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:77:5:77:5 | x | enclosingFunctionBody |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:77:5:77:5 | x | enclosingFunctionName |  |
@@ -15894,7 +19768,7 @@ tokenFeatures
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:77:17:77:35 | options.foo.bar.baz | InputArgumentIndex | 0 |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:77:17:77:35 | options.foo.bar.baz | assignedToPropName |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:77:17:77:35 | options.foo.bar.baz | calleeImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:77:17:77:35 | options.foo.bar.baz | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:77:17:77:35 | options.foo.bar.baz | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nposition(options)\nsetupPlugin(o) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:77:17:77:35 | options.foo.bar.baz | contextSurroundingFunctionParameters | ()\n(options) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:77:17:77:35 | options.foo.bar.baz | enclosingFunctionBody |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:77:17:77:35 | options.foo.bar.baz | enclosingFunctionName |  |
@@ -15906,7 +19780,7 @@ tokenFeatures
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:81:5:81:24 | "#" + options.target | InputArgumentIndex | 0 |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:81:5:81:24 | "#" + options.target | assignedToPropName |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:81:5:81:24 | "#" + options.target | calleeImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:81:5:81:24 | "#" + options.target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:81:5:81:24 | "#" + options.target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nposition(options)\nsetupPlugin(o) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:81:5:81:24 | "#" + options.target | contextSurroundingFunctionParameters | ()\n(options) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:81:5:81:24 | "#" + options.target | enclosingFunctionBody |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:81:5:81:24 | "#" + options.target | enclosingFunctionName |  |
@@ -15918,7 +19792,7 @@ tokenFeatures
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:86:22:86:23 | {} | InputArgumentIndex | 0 |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:86:22:86:23 | {} | assignedToPropName |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:86:22:86:23 | {} | calleeImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:86:22:86:23 | {} | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:86:22:86:23 | {} | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nposition(options)\nsetupPlugin(o) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:86:22:86:23 | {} | contextSurroundingFunctionParameters | (o) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:86:22:86:23 | {} | enclosingFunctionBody |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:86:22:86:23 | {} | enclosingFunctionName |  |
@@ -15930,7 +19804,7 @@ tokenFeatures
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:86:26:86:26 | o | InputArgumentIndex | 1 |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:86:26:86:26 | o | assignedToPropName |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:86:26:86:26 | o | calleeImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:86:26:86:26 | o | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:86:26:86:26 | o | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nposition(options)\nsetupPlugin(o) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:86:26:86:26 | o | contextSurroundingFunctionParameters | (o) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:86:26:86:26 | o | enclosingFunctionBody |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:86:26:86:26 | o | enclosingFunctionName |  |
@@ -15942,7 +19816,7 @@ tokenFeatures
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:89:16:89:16 | t | InputArgumentIndex | 0 |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:89:16:89:16 | t | assignedToPropName |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:89:16:89:16 | t | calleeImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:89:16:89:16 | t | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:89:16:89:16 | t | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nposition(options)\nsetupPlugin(o) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:89:16:89:16 | t | contextSurroundingFunctionParameters | (o) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:89:16:89:16 | t | enclosingFunctionBody |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:89:16:89:16 | t | enclosingFunctionName |  |
@@ -15954,7 +19828,7 @@ tokenFeatures
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:90:6:90:6 | t | InputArgumentIndex | 0 |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:90:6:90:6 | t | assignedToPropName |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:90:6:90:6 | t | calleeImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:90:6:90:6 | t | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:90:6:90:6 | t | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nposition(options)\nsetupPlugin(o) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:90:6:90:6 | t | contextSurroundingFunctionParameters | (o) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:90:6:90:6 | t | enclosingFunctionBody |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:90:6:90:6 | t | enclosingFunctionName |  |
@@ -15966,7 +19840,7 @@ tokenFeatures
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:97:16:97:21 | target | InputArgumentIndex | 0 |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:97:16:97:21 | target | assignedToPropName |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:97:16:97:21 | target | calleeImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:97:16:97:21 | target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:97:16:97:21 | target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nposition(options)\nsetupPlugin(o) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:97:16:97:21 | target | contextSurroundingFunctionParameters | ()\n(options) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:97:16:97:21 | target | enclosingFunctionBody |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:97:16:97:21 | target | enclosingFunctionName |  |
@@ -15978,7 +19852,7 @@ tokenFeatures
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:98:6:98:11 | target | InputArgumentIndex | 0 |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:98:6:98:11 | target | assignedToPropName |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:98:6:98:11 | target | calleeImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:98:6:98:11 | target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:98:6:98:11 | target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nposition(options)\nsetupPlugin(o) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:98:6:98:11 | target | contextSurroundingFunctionParameters | ()\n(options) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:98:6:98:11 | target | enclosingFunctionBody |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:98:6:98:11 | target | enclosingFunctionName |  |
@@ -15990,7 +19864,7 @@ tokenFeatures
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:102:22:105:3 | {\\n\\t\\t\\tme ... in'\\n\\t\\t} | InputArgumentIndex | 0 |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:102:22:105:3 | {\\n\\t\\t\\tme ... in'\\n\\t\\t} | assignedToPropName |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:102:22:105:3 | {\\n\\t\\t\\tme ... in'\\n\\t\\t} | calleeImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:102:22:105:3 | {\\n\\t\\t\\tme ... in'\\n\\t\\t} | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:102:22:105:3 | {\\n\\t\\t\\tme ... in'\\n\\t\\t} | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nposition(options)\nsetupPlugin(o) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:102:22:105:3 | {\\n\\t\\t\\tme ... in'\\n\\t\\t} | contextSurroundingFunctionParameters | ()\n(options) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:102:22:105:3 | {\\n\\t\\t\\tme ... in'\\n\\t\\t} | enclosingFunctionBody |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:102:22:105:3 | {\\n\\t\\t\\tme ... in'\\n\\t\\t} | enclosingFunctionName |  |
@@ -16002,7 +19876,7 @@ tokenFeatures
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:105:6:105:12 | options | InputArgumentIndex | 1 |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:105:6:105:12 | options | assignedToPropName |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:105:6:105:12 | options | calleeImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:105:6:105:12 | options | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:105:6:105:12 | options | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nposition(options)\nsetupPlugin(o) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:105:6:105:12 | options | contextSurroundingFunctionParameters | ()\n(options) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:105:6:105:12 | options | enclosingFunctionBody |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:105:6:105:12 | options | enclosingFunctionName |  |
@@ -16014,7 +19888,7 @@ tokenFeatures
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:106:5:106:16 | options.menu | InputArgumentIndex | 0 |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:106:5:106:16 | options.menu | assignedToPropName |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:106:5:106:16 | options.menu | calleeImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:106:5:106:16 | options.menu | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:106:5:106:16 | options.menu | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nposition(options)\nsetupPlugin(o) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:106:5:106:16 | options.menu | contextSurroundingFunctionParameters | ()\n(options) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:106:5:106:16 | options.menu | enclosingFunctionBody |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:106:5:106:16 | options.menu | enclosingFunctionName |  |
@@ -16026,7 +19900,7 @@ tokenFeatures
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:107:5:107:18 | options.target | InputArgumentIndex | 0 |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:107:5:107:18 | options.target | assignedToPropName |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:107:5:107:18 | options.target | calleeImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:107:5:107:18 | options.target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:107:5:107:18 | options.target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nposition(options)\nsetupPlugin(o) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:107:5:107:18 | options.target | contextSurroundingFunctionParameters | ()\n(options) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:107:5:107:18 | options.target | enclosingFunctionBody |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:107:5:107:18 | options.target | enclosingFunctionName |  |
@@ -16038,7 +19912,7 @@ tokenFeatures
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:22:115:23 | {} | InputArgumentIndex | 0 |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:22:115:23 | {} | assignedToPropName |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:22:115:23 | {} | calleeImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:22:115:23 | {} | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:22:115:23 | {} | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nposition(options)\nsetupPlugin(o) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:22:115:23 | {} | contextSurroundingFunctionParameters | ()\n(options) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:22:115:23 | {} | enclosingFunctionBody |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:22:115:23 | {} | enclosingFunctionName |  |
@@ -16050,7 +19924,7 @@ tokenFeatures
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:26:115:48 | $.fn.my ... efaults | InputArgumentIndex | 1 |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:26:115:48 | $.fn.my ... efaults | assignedToPropName |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:26:115:48 | $.fn.my ... efaults | calleeImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:26:115:48 | $.fn.my ... efaults | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:26:115:48 | $.fn.my ... efaults | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nposition(options)\nsetupPlugin(o) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:26:115:48 | $.fn.my ... efaults | contextSurroundingFunctionParameters | ()\n(options) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:26:115:48 | $.fn.my ... efaults | enclosingFunctionBody |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:26:115:48 | $.fn.my ... efaults | enclosingFunctionName |  |
@@ -16062,7 +19936,7 @@ tokenFeatures
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:51:115:57 | options | InputArgumentIndex | 2 |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:51:115:57 | options | assignedToPropName |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:51:115:57 | options | calleeImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:51:115:57 | options | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:51:115:57 | options | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nposition(options)\nsetupPlugin(o) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:51:115:57 | options | contextSurroundingFunctionParameters | ()\n(options) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:51:115:57 | options | enclosingFunctionBody |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:51:115:57 | options | enclosingFunctionName |  |
@@ -16074,7 +19948,7 @@ tokenFeatures
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:116:5:116:16 | options.menu | InputArgumentIndex | 0 |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:116:5:116:16 | options.menu | assignedToPropName |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:116:5:116:16 | options.menu | calleeImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:116:5:116:16 | options.menu | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:116:5:116:16 | options.menu | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nposition(options)\nsetupPlugin(o) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:116:5:116:16 | options.menu | contextSurroundingFunctionParameters | ()\n(options) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:116:5:116:16 | options.menu | enclosingFunctionBody |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:116:5:116:16 | options.menu | enclosingFunctionName |  |
@@ -16086,7 +19960,7 @@ tokenFeatures
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:117:5:117:18 | options.target | InputArgumentIndex | 0 |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:117:5:117:18 | options.target | assignedToPropName |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:117:5:117:18 | options.target | calleeImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:117:5:117:18 | options.target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:117:5:117:18 | options.target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nposition(options)\nsetupPlugin(o) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:117:5:117:18 | options.target | contextSurroundingFunctionParameters | ()\n(options) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:117:5:117:18 | options.target | enclosingFunctionBody |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:117:5:117:18 | options.target | enclosingFunctionName |  |
@@ -16098,7 +19972,7 @@ tokenFeatures
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:122:5:122:18 | options.target | InputArgumentIndex | 0 |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:122:5:122:18 | options.target | assignedToPropName |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:122:5:122:18 | options.target | calleeImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:122:5:122:18 | options.target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:122:5:122:18 | options.target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nposition(options)\nsetupPlugin(o) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:122:5:122:18 | options.target | contextSurroundingFunctionParameters | ()\n(options) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:122:5:122:18 | options.target | enclosingFunctionBody |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:122:5:122:18 | options.target | enclosingFunctionName |  |
@@ -16110,7 +19984,7 @@ tokenFeatures
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:125:11:125:14 | $.fn | InputArgumentIndex | 0 |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:125:11:125:14 | $.fn | assignedToPropName |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:125:11:125:14 | $.fn | calleeImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:125:11:125:14 | $.fn | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:125:11:125:14 | $.fn | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nposition(options)\nsetupPlugin(o) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:125:11:125:14 | $.fn | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:125:11:125:14 | $.fn | enclosingFunctionBody |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:125:11:125:14 | $.fn | enclosingFunctionName |  |
@@ -16122,7 +19996,7 @@ tokenFeatures
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:125:17:129:2 | {\\n\\t\\tmy_ ... \\n\\t\\t}\\n\\t} | InputArgumentIndex | 1 |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:125:17:129:2 | {\\n\\t\\tmy_ ... \\n\\t\\t}\\n\\t} | assignedToPropName |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:125:17:129:2 | {\\n\\t\\tmy_ ... \\n\\t\\t}\\n\\t} | calleeImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:125:17:129:2 | {\\n\\t\\tmy_ ... \\n\\t\\t}\\n\\t} | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:125:17:129:2 | {\\n\\t\\tmy_ ... \\n\\t\\t}\\n\\t} | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nposition(options)\nsetupPlugin(o) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:125:17:129:2 | {\\n\\t\\tmy_ ... \\n\\t\\t}\\n\\t} | contextSurroundingFunctionParameters | () |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:125:17:129:2 | {\\n\\t\\tmy_ ... \\n\\t\\t}\\n\\t} | enclosingFunctionBody |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:125:17:129:2 | {\\n\\t\\tmy_ ... \\n\\t\\t}\\n\\t} | enclosingFunctionName |  |
@@ -16134,7 +20008,7 @@ tokenFeatures
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:127:6:127:19 | options.target | InputArgumentIndex | 0 |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:127:6:127:19 | options.target | assignedToPropName |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:127:6:127:19 | options.target | calleeImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:127:6:127:19 | options.target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:127:6:127:19 | options.target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nposition(options)\nsetupPlugin(o) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:127:6:127:19 | options.target | contextSurroundingFunctionParameters | ()\n(options) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:127:6:127:19 | options.target | enclosingFunctionBody |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:127:6:127:19 | options.target | enclosingFunctionName |  |
@@ -16146,7 +20020,7 @@ tokenFeatures
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:132:5:132:18 | options.target | InputArgumentIndex | 0 |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:132:5:132:18 | options.target | assignedToPropName |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:132:5:132:18 | options.target | calleeImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:132:5:132:18 | options.target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:132:5:132:18 | options.target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nposition(options)\nsetupPlugin(o) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:132:5:132:18 | options.target | contextSurroundingFunctionParameters | ()\n(options) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:132:5:132:18 | options.target | enclosingFunctionBody |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:132:5:132:18 | options.target | enclosingFunctionName |  |
@@ -16158,7 +20032,7 @@ tokenFeatures
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:136:5:136:29 | options ... elector | InputArgumentIndex | 0 |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:136:5:136:29 | options ... elector | assignedToPropName |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:136:5:136:29 | options ... elector | calleeImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:136:5:136:29 | options ... elector | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:136:5:136:29 | options ... elector | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nposition(options)\nsetupPlugin(o) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:136:5:136:29 | options ... elector | contextSurroundingFunctionParameters | ()\n(options) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:136:5:136:29 | options ... elector | enclosingFunctionBody |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:136:5:136:29 | options ... elector | enclosingFunctionName |  |
@@ -16170,7 +20044,7 @@ tokenFeatures
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:141:5:141:16 | intentional1 | InputArgumentIndex | 0 |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:141:5:141:16 | intentional1 | assignedToPropName |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:141:5:141:16 | intentional1 | calleeImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:141:5:141:16 | intentional1 | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:141:5:141:16 | intentional1 | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nposition(options)\nsetupPlugin(o) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:141:5:141:16 | intentional1 | contextSurroundingFunctionParameters | ()\n(options) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:141:5:141:16 | intentional1 | enclosingFunctionBody |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:141:5:141:16 | intentional1 | enclosingFunctionName |  |
@@ -16182,7 +20056,7 @@ tokenFeatures
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:144:5:144:16 | intentional2 | InputArgumentIndex | 0 |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:144:5:144:16 | intentional2 | assignedToPropName |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:144:5:144:16 | intentional2 | calleeImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:144:5:144:16 | intentional2 | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:144:5:144:16 | intentional2 | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nposition(options)\nsetupPlugin(o) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:144:5:144:16 | intentional2 | contextSurroundingFunctionParameters | ()\n(options) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:144:5:144:16 | intentional2 | enclosingFunctionBody |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:144:5:144:16 | intentional2 | enclosingFunctionName |  |
@@ -16194,7 +20068,7 @@ tokenFeatures
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:147:5:147:16 | intentional3 | InputArgumentIndex | 0 |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:147:5:147:16 | intentional3 | assignedToPropName |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:147:5:147:16 | intentional3 | calleeImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:147:5:147:16 | intentional3 | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:147:5:147:16 | intentional3 | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nposition(options)\nsetupPlugin(o) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:147:5:147:16 | intentional3 | contextSurroundingFunctionParameters | ()\n(options) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:147:5:147:16 | intentional3 | enclosingFunctionBody |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:147:5:147:16 | intentional3 | enclosingFunctionName |  |
@@ -16206,7 +20080,7 @@ tokenFeatures
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:150:5:150:17 | unintentional | InputArgumentIndex | 0 |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:150:5:150:17 | unintentional | assignedToPropName |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:150:5:150:17 | unintentional | calleeImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:150:5:150:17 | unintentional | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:150:5:150:17 | unintentional | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nposition(options)\nsetupPlugin(o) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:150:5:150:17 | unintentional | contextSurroundingFunctionParameters | ()\n(options) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:150:5:150:17 | unintentional | enclosingFunctionBody |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:150:5:150:17 | unintentional | enclosingFunctionName |  |
@@ -16218,7 +20092,7 @@ tokenFeatures
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:155:33:155:38 | target | InputArgumentIndex | 0 |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:155:33:155:38 | target | assignedToPropName |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:155:33:155:38 | target | calleeImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:155:33:155:38 | target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:155:33:155:38 | target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nposition(options)\nsetupPlugin(o) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:155:33:155:38 | target | contextSurroundingFunctionParameters | ()\n(options) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:155:33:155:38 | target | enclosingFunctionBody |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:155:33:155:38 | target | enclosingFunctionName |  |
@@ -16230,7 +20104,7 @@ tokenFeatures
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:155:44:155:51 | document | InputArgumentIndex | 0 |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:155:44:155:51 | document | assignedToPropName |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:155:44:155:51 | document | calleeImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:155:44:155:51 | document | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:155:44:155:51 | document | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nposition(options)\nsetupPlugin(o) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:155:44:155:51 | document | contextSurroundingFunctionParameters | ()\n(options) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:155:44:155:51 | document | enclosingFunctionBody |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:155:44:155:51 | document | enclosingFunctionName |  |
@@ -16242,7 +20116,7 @@ tokenFeatures
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:155:59:155:64 | target | InputArgumentIndex | 0 |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:155:59:155:64 | target | assignedToPropName |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:155:59:155:64 | target | calleeImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:155:59:155:64 | target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:155:59:155:64 | target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nposition(options)\nsetupPlugin(o) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:155:59:155:64 | target | contextSurroundingFunctionParameters | ()\n(options) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:155:59:155:64 | target | enclosingFunctionBody |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:155:59:155:64 | target | enclosingFunctionName |  |
@@ -16254,7 +20128,7 @@ tokenFeatures
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:156:41:156:54 | options.target | InputArgumentIndex | 0 |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:156:41:156:54 | options.target | assignedToPropName |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:156:41:156:54 | options.target | calleeImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:156:41:156:54 | options.target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:156:41:156:54 | options.target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nposition(options)\nsetupPlugin(o) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:156:41:156:54 | options.target | contextSurroundingFunctionParameters | ()\n(options) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:156:41:156:54 | options.target | enclosingFunctionBody |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:156:41:156:54 | options.target | enclosingFunctionName |  |
@@ -16266,7 +20140,7 @@ tokenFeatures
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:156:60:156:67 | document | InputArgumentIndex | 0 |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:156:60:156:67 | document | assignedToPropName |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:156:60:156:67 | document | calleeImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:156:60:156:67 | document | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:156:60:156:67 | document | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nposition(options)\nsetupPlugin(o) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:156:60:156:67 | document | contextSurroundingFunctionParameters | ()\n(options) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:156:60:156:67 | document | enclosingFunctionBody |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:156:60:156:67 | document | enclosingFunctionName |  |
@@ -16278,7 +20152,7 @@ tokenFeatures
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:156:75:156:88 | options.target | InputArgumentIndex | 0 |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:156:75:156:88 | options.target | assignedToPropName |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:156:75:156:88 | options.target | calleeImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:156:75:156:88 | options.target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:156:75:156:88 | options.target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nposition(options)\nsetupPlugin(o) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:156:75:156:88 | options.target | contextSurroundingFunctionParameters | ()\n(options) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:156:75:156:88 | options.target | enclosingFunctionBody |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:156:75:156:88 | options.target | enclosingFunctionName |  |
@@ -16290,7 +20164,7 @@ tokenFeatures
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:157:44:157:59 | options.target.a | InputArgumentIndex | 0 |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:157:44:157:59 | options.target.a | assignedToPropName |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:157:44:157:59 | options.target.a | calleeImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:157:44:157:59 | options.target.a | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:157:44:157:59 | options.target.a | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nposition(options)\nsetupPlugin(o) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:157:44:157:59 | options.target.a | contextSurroundingFunctionParameters | ()\n(options) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:157:44:157:59 | options.target.a | enclosingFunctionBody |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:157:44:157:59 | options.target.a | enclosingFunctionName |  |
@@ -16302,7 +20176,7 @@ tokenFeatures
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:157:65:157:72 | document | InputArgumentIndex | 0 |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:157:65:157:72 | document | assignedToPropName |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:157:65:157:72 | document | calleeImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:157:65:157:72 | document | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:157:65:157:72 | document | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nposition(options)\nsetupPlugin(o) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:157:65:157:72 | document | contextSurroundingFunctionParameters | ()\n(options) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:157:65:157:72 | document | enclosingFunctionBody |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:157:65:157:72 | document | enclosingFunctionName |  |
@@ -16314,7 +20188,7 @@ tokenFeatures
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:157:80:157:95 | options.target.a | InputArgumentIndex | 0 |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:157:80:157:95 | options.target.a | assignedToPropName |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:157:80:157:95 | options.target.a | calleeImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:157:80:157:95 | options.target.a | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:157:80:157:95 | options.target.a | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nposition(options)\nsetupPlugin(o) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:157:80:157:95 | options.target.a | contextSurroundingFunctionParameters | ()\n(options) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:157:80:157:95 | options.target.a | enclosingFunctionBody |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:157:80:157:95 | options.target.a | enclosingFunctionName |  |
@@ -16326,7 +20200,7 @@ tokenFeatures
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:161:5:161:30 | anyPref ... .target | InputArgumentIndex | 0 |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:161:5:161:30 | anyPref ... .target | assignedToPropName |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:161:5:161:30 | anyPref ... .target | calleeImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:161:5:161:30 | anyPref ... .target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:161:5:161:30 | anyPref ... .target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nposition(options)\nsetupPlugin(o) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:161:5:161:30 | anyPref ... .target | contextSurroundingFunctionParameters | ()\n(options) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:161:5:161:30 | anyPref ... .target | enclosingFunctionBody |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:161:5:161:30 | anyPref ... .target | enclosingFunctionName |  |
@@ -16338,7 +20212,7 @@ tokenFeatures
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:163:5:163:54 | somethi ... target) | InputArgumentIndex | 0 |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:163:5:163:54 | somethi ... target) | assignedToPropName |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:163:5:163:54 | somethi ... target) | calleeImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:163:5:163:54 | somethi ... target) | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:163:5:163:54 | somethi ... target) | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nposition(options)\nsetupPlugin(o) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:163:5:163:54 | somethi ... target) | contextSurroundingFunctionParameters | ()\n(options) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:163:5:163:54 | somethi ... target) | enclosingFunctionBody |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:163:5:163:54 | somethi ... target) | enclosingFunctionName |  |
@@ -16350,7 +20224,7 @@ tokenFeatures
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:167:6:167:11 | target | InputArgumentIndex | 0 |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:167:6:167:11 | target | assignedToPropName |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:167:6:167:11 | target | calleeImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:167:6:167:11 | target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:167:6:167:11 | target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nposition(options)\nsetupPlugin(o) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:167:6:167:11 | target | contextSurroundingFunctionParameters | ()\n(options) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:167:6:167:11 | target | enclosingFunctionBody |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:167:6:167:11 | target | enclosingFunctionName |  |
@@ -16362,7 +20236,7 @@ tokenFeatures
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:170:6:170:11 | target | InputArgumentIndex | 0 |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:170:6:170:11 | target | assignedToPropName |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:170:6:170:11 | target | calleeImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:170:6:170:11 | target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:170:6:170:11 | target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nposition(options)\nsetupPlugin(o) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:170:6:170:11 | target | contextSurroundingFunctionParameters | ()\n(options) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:170:6:170:11 | target | enclosingFunctionBody |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:170:6:170:11 | target | enclosingFunctionName |  |
@@ -16374,7 +20248,7 @@ tokenFeatures
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:179:5:179:18 | options.target | InputArgumentIndex | 0 |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:179:5:179:18 | options.target | assignedToPropName |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:179:5:179:18 | options.target | calleeImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:179:5:179:18 | options.target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:179:5:179:18 | options.target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nposition(options)\nsetupPlugin(o) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:179:5:179:18 | options.target | contextSurroundingFunctionParameters | ()\n(options) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:179:5:179:18 | options.target | enclosingFunctionBody |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:179:5:179:18 | options.target | enclosingFunctionName |  |
@@ -16386,7 +20260,7 @@ tokenFeatures
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:182:5:182:12 | document | InputArgumentIndex | 0 |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:182:5:182:12 | document | assignedToPropName |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:182:5:182:12 | document | calleeImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:182:5:182:12 | document | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:182:5:182:12 | document | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nposition(options)\nsetupPlugin(o) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:182:5:182:12 | document | contextSurroundingFunctionParameters | ()\n(options) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:182:5:182:12 | document | enclosingFunctionBody |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:182:5:182:12 | document | enclosingFunctionName |  |
@@ -16398,13 +20272,61 @@ tokenFeatures
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:182:20:182:33 | options.target | InputArgumentIndex | 0 |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:182:20:182:33 | options.target | assignedToPropName |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:182:20:182:33 | options.target | calleeImports |  |
-| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:182:20:182:33 | options.target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nsetupPlugin(o) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:182:20:182:33 | options.target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nposition(options)\nsetupPlugin(o) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:182:20:182:33 | options.target | contextSurroundingFunctionParameters | ()\n(options) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:182:20:182:33 | options.target | enclosingFunctionBody |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:182:20:182:33 | options.target | enclosingFunctionName |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:182:20:182:33 | options.target | fileImports |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:182:20:182:33 | options.target | receiverName |  |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:182:20:182:33 | options.target | stringConcatenatedWith |  |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:190:23:190:24 | {} | CalleeFlexibleAccessPath | $.extend |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:190:23:190:24 | {} | InputAccessPathFromCallee |  |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:190:23:190:24 | {} | InputArgumentIndex | 0 |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:190:23:190:24 | {} | assignedToPropName |  |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:190:23:190:24 | {} | calleeImports |  |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:190:23:190:24 | {} | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nposition(options)\nsetupPlugin(o) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:190:23:190:24 | {} | contextSurroundingFunctionParameters | ()\n(options) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:190:23:190:24 | {} | enclosingFunctionBody |  |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:190:23:190:24 | {} | enclosingFunctionName |  |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:190:23:190:24 | {} | fileImports |  |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:190:23:190:24 | {} | receiverName | $ |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:190:23:190:24 | {} | stringConcatenatedWith |  |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:190:27:190:33 | options | CalleeFlexibleAccessPath | $.extend |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:190:27:190:33 | options | InputAccessPathFromCallee |  |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:190:27:190:33 | options | InputArgumentIndex | 1 |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:190:27:190:33 | options | assignedToPropName |  |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:190:27:190:33 | options | calleeImports |  |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:190:27:190:33 | options | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nposition(options)\nsetupPlugin(o) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:190:27:190:33 | options | contextSurroundingFunctionParameters | ()\n(options) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:190:27:190:33 | options | enclosingFunctionBody |  |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:190:27:190:33 | options | enclosingFunctionName |  |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:190:27:190:33 | options | fileImports |  |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:190:27:190:33 | options | receiverName | $ |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:190:27:190:33 | options | stringConcatenatedWith |  |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:192:19:192:28 | options.of | CalleeFlexibleAccessPath | $ |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:192:19:192:28 | options.of | InputAccessPathFromCallee |  |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:192:19:192:28 | options.of | InputArgumentIndex | 0 |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:192:19:192:28 | options.of | assignedToPropName |  |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:192:19:192:28 | options.of | calleeImports |  |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:192:19:192:28 | options.of | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nposition(options)\nsetupPlugin(o) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:192:19:192:28 | options.of | contextSurroundingFunctionParameters | ()\n(options) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:192:19:192:28 | options.of | enclosingFunctionBody |  |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:192:19:192:28 | options.of | enclosingFunctionName |  |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:192:19:192:28 | options.of | fileImports |  |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:192:19:192:28 | options.of | receiverName |  |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:192:19:192:28 | options.of | stringConcatenatedWith |  |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:193:15:193:20 | target | CalleeFlexibleAccessPath | console.log |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:193:15:193:20 | target | InputAccessPathFromCallee |  |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:193:15:193:20 | target | InputArgumentIndex | 0 |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:193:15:193:20 | target | assignedToPropName |  |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:193:15:193:20 | target | calleeImports |  |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:193:15:193:20 | target | contextFunctionInterfaces | f(o)\nf(options)\nf(options)\nmy_plugin(element, options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nmy_plugin(options)\nposition(options)\nsetupPlugin(o) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:193:15:193:20 | target | contextSurroundingFunctionParameters | ()\n(options) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:193:15:193:20 | target | enclosingFunctionBody |  |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:193:15:193:20 | target | enclosingFunctionName |  |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:193:15:193:20 | target | fileImports |  |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:193:15:193:20 | target | receiverName | console |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:193:15:193:20 | target | stringConcatenatedWith |  |
 | autogenerated/Xss/XssThroughDom/forms.js:9:31:9:40 | values.foo | CalleeFlexibleAccessPath | $().html |
 | autogenerated/Xss/XssThroughDom/forms.js:9:31:9:40 | values.foo | InputAccessPathFromCallee |  |
 | autogenerated/Xss/XssThroughDom/forms.js:9:31:9:40 | values.foo | InputArgumentIndex | 0 |
@@ -16554,11 +20476,11 @@ tokenFeatures
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:2:16:2:34 | $("textarea").val() | InputArgumentIndex | 0 |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:2:16:2:34 | $("textarea").val() | assignedToPropName |  |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:2:16:2:34 | $("textarea").val() | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:2:16:2:34 | $("textarea").val() | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:2:16:2:34 | $("textarea").val() | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:2:16:2:34 | $("textarea").val() | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:2:16:2:34 | $("textarea").val() | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:2:16:2:34 | $("textarea").val() | enclosingFunctionBody |  |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:2:16:2:34 | $("textarea").val() | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:2:16:2:34 | $("textarea").val() | fileImports | anser |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:2:16:2:34 | $("textarea").val() | fileImports | anser cash-dom |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:2:16:2:34 | $("textarea").val() | receiverName |  |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:2:16:2:34 | $("textarea").val() | stringConcatenatedWith |  |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:4:16:4:40 | $(".som ... .text() | CalleeFlexibleAccessPath | $().html |
@@ -16566,11 +20488,11 @@ tokenFeatures
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:4:16:4:40 | $(".som ... .text() | InputArgumentIndex | 0 |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:4:16:4:40 | $(".som ... .text() | assignedToPropName |  |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:4:16:4:40 | $(".som ... .text() | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:4:16:4:40 | $(".som ... .text() | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:4:16:4:40 | $(".som ... .text() | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:4:16:4:40 | $(".som ... .text() | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:4:16:4:40 | $(".som ... .text() | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:4:16:4:40 | $(".som ... .text() | enclosingFunctionBody |  |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:4:16:4:40 | $(".som ... .text() | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:4:16:4:40 | $(".som ... .text() | fileImports | anser |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:4:16:4:40 | $(".som ... .text() | fileImports | anser cash-dom |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:4:16:4:40 | $(".som ... .text() | receiverName |  |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:4:16:4:40 | $(".som ... .text() | stringConcatenatedWith |  |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:16:6:52 | $(".som ...  "bar") | CalleeFlexibleAccessPath | $().html |
@@ -16578,11 +20500,11 @@ tokenFeatures
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:16:6:52 | $(".som ...  "bar") | InputArgumentIndex | 0 |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:16:6:52 | $(".som ...  "bar") | assignedToPropName |  |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:16:6:52 | $(".som ...  "bar") | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:16:6:52 | $(".som ...  "bar") | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:16:6:52 | $(".som ...  "bar") | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:16:6:52 | $(".som ...  "bar") | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:16:6:52 | $(".som ...  "bar") | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:16:6:52 | $(".som ...  "bar") | enclosingFunctionBody |  |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:16:6:52 | $(".som ...  "bar") | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:16:6:52 | $(".som ...  "bar") | fileImports | anser |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:16:6:52 | $(".som ...  "bar") | fileImports | anser cash-dom |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:16:6:52 | $(".som ...  "bar") | receiverName |  |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:16:6:52 | $(".som ...  "bar") | stringConcatenatedWith |  |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:16:7:54 | $(".som ... "bar"}) | CalleeFlexibleAccessPath | $().html |
@@ -16590,11 +20512,11 @@ tokenFeatures
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:16:7:54 | $(".som ... "bar"}) | InputArgumentIndex | 0 |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:16:7:54 | $(".som ... "bar"}) | assignedToPropName |  |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:16:7:54 | $(".som ... "bar"}) | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:16:7:54 | $(".som ... "bar"}) | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:16:7:54 | $(".som ... "bar"}) | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:16:7:54 | $(".som ... "bar"}) | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:16:7:54 | $(".som ... "bar"}) | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:16:7:54 | $(".som ... "bar"}) | enclosingFunctionBody |  |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:16:7:54 | $(".som ... "bar"}) | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:16:7:54 | $(".som ... "bar"}) | fileImports | anser |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:16:7:54 | $(".som ... "bar"}) | fileImports | anser cash-dom |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:16:7:54 | $(".som ... "bar"}) | receiverName |  |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:16:7:54 | $(".som ... "bar"}) | stringConcatenatedWith |  |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:40:7:53 | {"foo": "bar"} | CalleeFlexibleAccessPath | $().attr |
@@ -16602,11 +20524,11 @@ tokenFeatures
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:40:7:53 | {"foo": "bar"} | InputArgumentIndex | 0 |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:40:7:53 | {"foo": "bar"} | assignedToPropName |  |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:40:7:53 | {"foo": "bar"} | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:40:7:53 | {"foo": "bar"} | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:40:7:53 | {"foo": "bar"} | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:40:7:53 | {"foo": "bar"} | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:40:7:53 | {"foo": "bar"} | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:40:7:53 | {"foo": "bar"} | enclosingFunctionBody |  |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:40:7:53 | {"foo": "bar"} | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:40:7:53 | {"foo": "bar"} | fileImports | anser |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:40:7:53 | {"foo": "bar"} | fileImports | anser cash-dom |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:40:7:53 | {"foo": "bar"} | receiverName |  |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:40:7:53 | {"foo": "bar"} | stringConcatenatedWith |  |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:8:16:8:53 | $(".som ... arget") | CalleeFlexibleAccessPath | $().html |
@@ -16614,11 +20536,11 @@ tokenFeatures
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:8:16:8:53 | $(".som ... arget") | InputArgumentIndex | 0 |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:8:16:8:53 | $(".som ... arget") | assignedToPropName |  |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:8:16:8:53 | $(".som ... arget") | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:8:16:8:53 | $(".som ... arget") | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:8:16:8:53 | $(".som ... arget") | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:8:16:8:53 | $(".som ... arget") | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:8:16:8:53 | $(".som ... arget") | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:8:16:8:53 | $(".som ... arget") | enclosingFunctionBody |  |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:8:16:8:53 | $(".som ... arget") | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:8:16:8:53 | $(".som ... arget") | fileImports | anser |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:8:16:8:53 | $(".som ... arget") | fileImports | anser cash-dom |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:8:16:8:53 | $(".som ... arget") | receiverName |  |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:8:16:8:53 | $(".som ... arget") | stringConcatenatedWith |  |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:11:3:11:42 | documen ... nerText | CalleeFlexibleAccessPath | $().html |
@@ -16626,11 +20548,11 @@ tokenFeatures
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:11:3:11:42 | documen ... nerText | InputArgumentIndex | 0 |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:11:3:11:42 | documen ... nerText | assignedToPropName |  |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:11:3:11:42 | documen ... nerText | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:11:3:11:42 | documen ... nerText | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:11:3:11:42 | documen ... nerText | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:11:3:11:42 | documen ... nerText | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:11:3:11:42 | documen ... nerText | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:11:3:11:42 | documen ... nerText | enclosingFunctionBody |  |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:11:3:11:42 | documen ... nerText | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:11:3:11:42 | documen ... nerText | fileImports | anser |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:11:3:11:42 | documen ... nerText | fileImports | anser cash-dom |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:11:3:11:42 | documen ... nerText | receiverName |  |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:11:3:11:42 | documen ... nerText | stringConcatenatedWith |  |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:15:3:15:42 | documen ... nerHTML | CalleeFlexibleAccessPath | $().html |
@@ -16638,11 +20560,11 @@ tokenFeatures
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:15:3:15:42 | documen ... nerHTML | InputArgumentIndex | 0 |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:15:3:15:42 | documen ... nerHTML | assignedToPropName |  |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:15:3:15:42 | documen ... nerHTML | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:15:3:15:42 | documen ... nerHTML | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:15:3:15:42 | documen ... nerHTML | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:15:3:15:42 | documen ... nerHTML | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:15:3:15:42 | documen ... nerHTML | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:15:3:15:42 | documen ... nerHTML | enclosingFunctionBody |  |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:15:3:15:42 | documen ... nerHTML | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:15:3:15:42 | documen ... nerHTML | fileImports | anser |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:15:3:15:42 | documen ... nerHTML | fileImports | anser cash-dom |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:15:3:15:42 | documen ... nerHTML | receiverName |  |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:15:3:15:42 | documen ... nerHTML | stringConcatenatedWith |  |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:19:3:19:44 | documen ... Content | CalleeFlexibleAccessPath | $().html |
@@ -16650,11 +20572,11 @@ tokenFeatures
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:19:3:19:44 | documen ... Content | InputArgumentIndex | 0 |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:19:3:19:44 | documen ... Content | assignedToPropName |  |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:19:3:19:44 | documen ... Content | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:19:3:19:44 | documen ... Content | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:19:3:19:44 | documen ... Content | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:19:3:19:44 | documen ... Content | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:19:3:19:44 | documen ... Content | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:19:3:19:44 | documen ... Content | enclosingFunctionBody |  |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:19:3:19:44 | documen ... Content | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:19:3:19:44 | documen ... Content | fileImports | anser |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:19:3:19:44 | documen ... Content | fileImports | anser cash-dom |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:19:3:19:44 | documen ... Content | receiverName |  |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:19:3:19:44 | documen ... Content | stringConcatenatedWith |  |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:23:3:23:48 | documen ... ].value | CalleeFlexibleAccessPath | $().html |
@@ -16662,11 +20584,11 @@ tokenFeatures
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:23:3:23:48 | documen ... ].value | InputArgumentIndex | 0 |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:23:3:23:48 | documen ... ].value | assignedToPropName |  |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:23:3:23:48 | documen ... ].value | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:23:3:23:48 | documen ... ].value | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:23:3:23:48 | documen ... ].value | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:23:3:23:48 | documen ... ].value | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:23:3:23:48 | documen ... ].value | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:23:3:23:48 | documen ... ].value | enclosingFunctionBody |  |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:23:3:23:48 | documen ... ].value | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:23:3:23:48 | documen ... ].value | fileImports | anser |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:23:3:23:48 | documen ... ].value | fileImports | anser cash-dom |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:23:3:23:48 | documen ... ].value | receiverName |  |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:23:3:23:48 | documen ... ].value | stringConcatenatedWith |  |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:27:3:27:61 | documen ... arget') | CalleeFlexibleAccessPath | $().html |
@@ -16674,11 +20596,11 @@ tokenFeatures
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:27:3:27:61 | documen ... arget') | InputArgumentIndex | 0 |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:27:3:27:61 | documen ... arget') | assignedToPropName |  |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:27:3:27:61 | documen ... arget') | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:27:3:27:61 | documen ... arget') | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:27:3:27:61 | documen ... arget') | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:27:3:27:61 | documen ... arget') | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:27:3:27:61 | documen ... arget') | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:27:3:27:61 | documen ... arget') | enclosingFunctionBody |  |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:27:3:27:61 | documen ... arget') | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:27:3:27:61 | documen ... arget') | fileImports | anser |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:27:3:27:61 | documen ... arget') | fileImports | anser cash-dom |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:27:3:27:61 | documen ... arget') | receiverName |  |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:27:3:27:61 | documen ... arget') | stringConcatenatedWith |  |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:32:16:32:16 | x | CalleeFlexibleAccessPath | $ |
@@ -16686,11 +20608,11 @@ tokenFeatures
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:32:16:32:16 | x | InputArgumentIndex | 0 |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:32:16:32:16 | x | assignedToPropName |  |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:32:16:32:16 | x | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:32:16:32:16 | x | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:32:16:32:16 | x | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:32:16:32:16 | x | contextSurroundingFunctionParameters | (x) |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:32:16:32:16 | x | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:32:16:32:16 | x | enclosingFunctionBody |  |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:32:16:32:16 | x | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:32:16:32:16 | x | fileImports | anser |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:32:16:32:16 | x | fileImports | anser cash-dom |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:32:16:32:16 | x | receiverName |  |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:32:16:32:16 | x | stringConcatenatedWith |  |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:40:16:40:16 | x | CalleeFlexibleAccessPath | $ |
@@ -16698,11 +20620,11 @@ tokenFeatures
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:40:16:40:16 | x | InputArgumentIndex | 0 |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:40:16:40:16 | x | assignedToPropName |  |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:40:16:40:16 | x | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:40:16:40:16 | x | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:40:16:40:16 | x | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:40:16:40:16 | x | contextSurroundingFunctionParameters | (x) |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:40:16:40:16 | x | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:40:16:40:16 | x | enclosingFunctionBody |  |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:40:16:40:16 | x | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:40:16:40:16 | x | fileImports | anser |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:40:16:40:16 | x | fileImports | anser cash-dom |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:40:16:40:16 | x | receiverName |  |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:40:16:40:16 | x | stringConcatenatedWith |  |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:47:3:47:40 | $("<p>" ... .text() | CalleeFlexibleAccessPath | $().html |
@@ -16710,11 +20632,11 @@ tokenFeatures
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:47:3:47:40 | $("<p>" ... .text() | InputArgumentIndex | 0 |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:47:3:47:40 | $("<p>" ... .text() | assignedToPropName |  |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:47:3:47:40 | $("<p>" ... .text() | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:47:3:47:40 | $("<p>" ... .text() | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:47:3:47:40 | $("<p>" ... .text() | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:47:3:47:40 | $("<p>" ... .text() | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:47:3:47:40 | $("<p>" ... .text() | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:47:3:47:40 | $("<p>" ... .text() | enclosingFunctionBody |  |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:47:3:47:40 | $("<p>" ... .text() | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:47:3:47:40 | $("<p>" ... .text() | fileImports | anser |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:47:3:47:40 | $("<p>" ... .text() | fileImports | anser cash-dom |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:47:3:47:40 | $("<p>" ... .text() | receiverName |  |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:47:3:47:40 | $("<p>" ... .text() | stringConcatenatedWith |  |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:47:5:47:32 | "<p>" + ...  "</p>" | CalleeFlexibleAccessPath | $ |
@@ -16722,11 +20644,11 @@ tokenFeatures
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:47:5:47:32 | "<p>" + ...  "</p>" | InputArgumentIndex | 0 |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:47:5:47:32 | "<p>" + ...  "</p>" | assignedToPropName |  |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:47:5:47:32 | "<p>" + ...  "</p>" | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:47:5:47:32 | "<p>" + ...  "</p>" | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:47:5:47:32 | "<p>" + ...  "</p>" | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:47:5:47:32 | "<p>" + ...  "</p>" | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:47:5:47:32 | "<p>" + ...  "</p>" | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:47:5:47:32 | "<p>" + ...  "</p>" | enclosingFunctionBody |  |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:47:5:47:32 | "<p>" + ...  "</p>" | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:47:5:47:32 | "<p>" + ...  "</p>" | fileImports | anser |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:47:5:47:32 | "<p>" + ...  "</p>" | fileImports | anser cash-dom |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:47:5:47:32 | "<p>" + ...  "</p>" | receiverName |  |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:47:5:47:32 | "<p>" + ...  "</p>" | stringConcatenatedWith |  |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:51:30:51:48 | $("textarea").val() | CalleeFlexibleAccessPath |  |
@@ -16734,11 +20656,11 @@ tokenFeatures
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:51:30:51:48 | $("textarea").val() | InputArgumentIndex |  |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:51:30:51:48 | $("textarea").val() | assignedToPropName | innerHTML |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:51:30:51:48 | $("textarea").val() | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:51:30:51:48 | $("textarea").val() | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:51:30:51:48 | $("textarea").val() | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:51:30:51:48 | $("textarea").val() | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:51:30:51:48 | $("textarea").val() | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:51:30:51:48 | $("textarea").val() | enclosingFunctionBody |  |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:51:30:51:48 | $("textarea").val() | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:51:30:51:48 | $("textarea").val() | fileImports | anser |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:51:30:51:48 | $("textarea").val() | fileImports | anser cash-dom |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:51:30:51:48 | $("textarea").val() | receiverName |  |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:51:30:51:48 | $("textarea").val() | stringConcatenatedWith |  |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:54:31:54:49 | $("textarea").val() | CalleeFlexibleAccessPath | base.? |
@@ -16746,11 +20668,11 @@ tokenFeatures
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:54:31:54:49 | $("textarea").val() | InputArgumentIndex | 0 |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:54:31:54:49 | $("textarea").val() | assignedToPropName |  |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:54:31:54:49 | $("textarea").val() | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:54:31:54:49 | $("textarea").val() | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:54:31:54:49 | $("textarea").val() | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:54:31:54:49 | $("textarea").val() | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:54:31:54:49 | $("textarea").val() | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:54:31:54:49 | $("textarea").val() | enclosingFunctionBody |  |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:54:31:54:49 | $("textarea").val() | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:54:31:54:49 | $("textarea").val() | fileImports | anser |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:54:31:54:49 | $("textarea").val() | fileImports | anser cash-dom |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:54:31:54:49 | $("textarea").val() | receiverName | base |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:54:31:54:49 | $("textarea").val() | stringConcatenatedWith |  |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:30:56:51 | $("inpu ... 0).name | CalleeFlexibleAccessPath |  |
@@ -16758,11 +20680,11 @@ tokenFeatures
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:30:56:51 | $("inpu ... 0).name | InputArgumentIndex |  |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:30:56:51 | $("inpu ... 0).name | assignedToPropName | innerHTML |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:30:56:51 | $("inpu ... 0).name | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:30:56:51 | $("inpu ... 0).name | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:30:56:51 | $("inpu ... 0).name | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:30:56:51 | $("inpu ... 0).name | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:30:56:51 | $("inpu ... 0).name | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:30:56:51 | $("inpu ... 0).name | enclosingFunctionBody |  |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:30:56:51 | $("inpu ... 0).name | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:30:56:51 | $("inpu ... 0).name | fileImports | anser |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:30:56:51 | $("inpu ... 0).name | fileImports | anser cash-dom |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:30:56:51 | $("inpu ... 0).name | receiverName |  |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:30:56:51 | $("inpu ... 0).name | stringConcatenatedWith |  |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:30:57:67 | $("inpu ... "name") | CalleeFlexibleAccessPath |  |
@@ -16770,11 +20692,11 @@ tokenFeatures
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:30:57:67 | $("inpu ... "name") | InputArgumentIndex |  |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:30:57:67 | $("inpu ... "name") | assignedToPropName | innerHTML |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:30:57:67 | $("inpu ... "name") | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:30:57:67 | $("inpu ... "name") | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:30:57:67 | $("inpu ... "name") | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:30:57:67 | $("inpu ... "name") | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:30:57:67 | $("inpu ... "name") | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:30:57:67 | $("inpu ... "name") | enclosingFunctionBody |  |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:30:57:67 | $("inpu ... "name") | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:30:57:67 | $("inpu ... "name") | fileImports | anser |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:30:57:67 | $("inpu ... "name") | fileImports | anser cash-dom |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:30:57:67 | $("inpu ... "name") | receiverName |  |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:30:57:67 | $("inpu ... "name") | stringConcatenatedWith |  |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:30:59:58 | $("inpu ... e("id") | CalleeFlexibleAccessPath |  |
@@ -16782,11 +20704,11 @@ tokenFeatures
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:30:59:58 | $("inpu ... e("id") | InputArgumentIndex |  |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:30:59:58 | $("inpu ... e("id") | assignedToPropName | innerHTML |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:30:59:58 | $("inpu ... e("id") | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:30:59:58 | $("inpu ... e("id") | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:30:59:58 | $("inpu ... e("id") | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:30:59:58 | $("inpu ... e("id") | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:30:59:58 | $("inpu ... e("id") | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:30:59:58 | $("inpu ... e("id") | enclosingFunctionBody |  |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:30:59:58 | $("inpu ... e("id") | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:30:59:58 | $("inpu ... e("id") | fileImports | anser |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:30:59:58 | $("inpu ... e("id") | fileImports | anser cash-dom |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:30:59:58 | $("inpu ... e("id") | receiverName |  |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:30:59:58 | $("inpu ... e("id") | stringConcatenatedWith |  |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:30:61:69 | $(docum ... value") | CalleeFlexibleAccessPath |  |
@@ -16794,11 +20716,11 @@ tokenFeatures
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:30:61:69 | $(docum ... value") | InputArgumentIndex |  |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:30:61:69 | $(docum ... value") | assignedToPropName | innerHTML |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:30:61:69 | $(docum ... value") | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:30:61:69 | $(docum ... value") | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:30:61:69 | $(docum ... value") | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:30:61:69 | $(docum ... value") | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:30:61:69 | $(docum ... value") | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:30:61:69 | $(docum ... value") | enclosingFunctionBody |  |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:30:61:69 | $(docum ... value") | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:30:61:69 | $(docum ... value") | fileImports | anser |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:30:61:69 | $(docum ... value") | fileImports | anser cash-dom |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:30:61:69 | $(docum ... value") | receiverName |  |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:30:61:69 | $(docum ... value") | stringConcatenatedWith |  |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:32:61:39 | document | CalleeFlexibleAccessPath | $ |
@@ -16806,11 +20728,11 @@ tokenFeatures
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:32:61:39 | document | InputArgumentIndex | 0 |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:32:61:39 | document | assignedToPropName |  |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:32:61:39 | document | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:32:61:39 | document | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:32:61:39 | document | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:32:61:39 | document | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:32:61:39 | document | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:32:61:39 | document | enclosingFunctionBody |  |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:32:61:39 | document | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:32:61:39 | document | fileImports | anser |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:32:61:39 | document | fileImports | anser cash-dom |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:32:61:39 | document | receiverName |  |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:32:61:39 | document | stringConcatenatedWith |  |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:64:30:64:40 | valMethod() | CalleeFlexibleAccessPath |  |
@@ -16818,11 +20740,11 @@ tokenFeatures
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:64:30:64:40 | valMethod() | InputArgumentIndex |  |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:64:30:64:40 | valMethod() | assignedToPropName | innerHTML |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:64:30:64:40 | valMethod() | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:64:30:64:40 | valMethod() | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:64:30:64:40 | valMethod() | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:64:30:64:40 | valMethod() | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:64:30:64:40 | valMethod() | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:64:30:64:40 | valMethod() | enclosingFunctionBody |  |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:64:30:64:40 | valMethod() | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:64:30:64:40 | valMethod() | fileImports | anser |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:64:30:64:40 | valMethod() | fileImports | anser cash-dom |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:64:30:64:40 | valMethod() | receiverName |  |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:64:30:64:40 | valMethod() | stringConcatenatedWith |  |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:66:18:66:25 | document | CalleeFlexibleAccessPath | $ |
@@ -16830,11 +20752,11 @@ tokenFeatures
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:66:18:66:25 | document | InputArgumentIndex | 0 |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:66:18:66:25 | document | assignedToPropName |  |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:66:18:66:25 | document | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:66:18:66:25 | document | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:66:18:66:25 | document | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:66:18:66:25 | document | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:66:18:66:25 | document | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:66:18:66:25 | document | enclosingFunctionBody |  |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:66:18:66:25 | document | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:66:18:66:25 | document | fileImports | anser |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:66:18:66:25 | document | fileImports | anser cash-dom |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:66:18:66:25 | document | receiverName |  |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:66:18:66:25 | document | stringConcatenatedWith |  |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:68:31:68:37 | myValue | CalleeFlexibleAccessPath |  |
@@ -16842,11 +20764,11 @@ tokenFeatures
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:68:31:68:37 | myValue | InputArgumentIndex |  |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:68:31:68:37 | myValue | assignedToPropName | innerHTML |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:68:31:68:37 | myValue | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:68:31:68:37 | myValue | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:68:31:68:37 | myValue | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:68:31:68:37 | myValue | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:68:31:68:37 | myValue | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:68:31:68:37 | myValue | enclosingFunctionBody |  |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:68:31:68:37 | myValue | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:68:31:68:37 | myValue | fileImports | anser |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:68:31:68:37 | myValue | fileImports | anser cash-dom |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:68:31:68:37 | myValue | receiverName |  |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:68:31:68:37 | myValue | stringConcatenatedWith |  |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:71:11:71:32 | $("inpu ... 0).name | CalleeFlexibleAccessPath | $.jGrowl |
@@ -16854,11 +20776,11 @@ tokenFeatures
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:71:11:71:32 | $("inpu ... 0).name | InputArgumentIndex | 0 |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:71:11:71:32 | $("inpu ... 0).name | assignedToPropName |  |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:71:11:71:32 | $("inpu ... 0).name | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:71:11:71:32 | $("inpu ... 0).name | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:71:11:71:32 | $("inpu ... 0).name | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:71:11:71:32 | $("inpu ... 0).name | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:71:11:71:32 | $("inpu ... 0).name | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:71:11:71:32 | $("inpu ... 0).name | enclosingFunctionBody |  |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:71:11:71:32 | $("inpu ... 0).name | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:71:11:71:32 | $("inpu ... 0).name | fileImports | anser |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:71:11:71:32 | $("inpu ... 0).name | fileImports | anser cash-dom |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:71:11:71:32 | $("inpu ... 0).name | receiverName | $ |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:71:11:71:32 | $("inpu ... 0).name | stringConcatenatedWith |  |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:77:4:77:11 | selector | CalleeFlexibleAccessPath | $ |
@@ -16866,11 +20788,11 @@ tokenFeatures
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:77:4:77:11 | selector | InputArgumentIndex | 0 |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:77:4:77:11 | selector | assignedToPropName |  |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:77:4:77:11 | selector | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:77:4:77:11 | selector | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:77:4:77:11 | selector | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:77:4:77:11 | selector | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:77:4:77:11 | selector | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:77:4:77:11 | selector | enclosingFunctionBody |  |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:77:4:77:11 | selector | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:77:4:77:11 | selector | fileImports | anser |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:77:4:77:11 | selector | fileImports | anser cash-dom |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:77:4:77:11 | selector | receiverName |  |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:77:4:77:11 | selector | stringConcatenatedWith |  |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:79:4:79:34 | documen ... t.value | CalleeFlexibleAccessPath | $ |
@@ -16878,11 +20800,11 @@ tokenFeatures
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:79:4:79:34 | documen ... t.value | InputArgumentIndex | 0 |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:79:4:79:34 | documen ... t.value | assignedToPropName |  |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:79:4:79:34 | documen ... t.value | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:79:4:79:34 | documen ... t.value | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:79:4:79:34 | documen ... t.value | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:79:4:79:34 | documen ... t.value | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:79:4:79:34 | documen ... t.value | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:79:4:79:34 | documen ... t.value | enclosingFunctionBody |  |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:79:4:79:34 | documen ... t.value | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:79:4:79:34 | documen ... t.value | fileImports | anser |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:79:4:79:34 | documen ... t.value | fileImports | anser cash-dom |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:79:4:79:34 | documen ... t.value | receiverName |  |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:79:4:79:34 | documen ... t.value | stringConcatenatedWith |  |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:81:17:81:43 | $('#foo ... rText') | CalleeFlexibleAccessPath | $().html |
@@ -16890,11 +20812,11 @@ tokenFeatures
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:81:17:81:43 | $('#foo ... rText') | InputArgumentIndex | 0 |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:81:17:81:43 | $('#foo ... rText') | assignedToPropName |  |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:81:17:81:43 | $('#foo ... rText') | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:81:17:81:43 | $('#foo ... rText') | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:81:17:81:43 | $('#foo ... rText') | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:81:17:81:43 | $('#foo ... rText') | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:81:17:81:43 | $('#foo ... rText') | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:81:17:81:43 | $('#foo ... rText') | enclosingFunctionBody |  |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:81:17:81:43 | $('#foo ... rText') | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:81:17:81:43 | $('#foo ... rText') | fileImports | anser |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:81:17:81:43 | $('#foo ... rText') | fileImports | anser cash-dom |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:81:17:81:43 | $('#foo ... rText') | receiverName |  |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:81:17:81:43 | $('#foo ... rText') | stringConcatenatedWith |  |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:86:16:86:37 | anser.a ... l(text) | CalleeFlexibleAccessPath | $().html |
@@ -16902,11 +20824,11 @@ tokenFeatures
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:86:16:86:37 | anser.a ... l(text) | InputArgumentIndex | 0 |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:86:16:86:37 | anser.a ... l(text) | assignedToPropName |  |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:86:16:86:37 | anser.a ... l(text) | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:86:16:86:37 | anser.a ... l(text) | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:86:16:86:37 | anser.a ... l(text) | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:86:16:86:37 | anser.a ... l(text) | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:86:16:86:37 | anser.a ... l(text) | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:86:16:86:37 | anser.a ... l(text) | enclosingFunctionBody |  |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:86:16:86:37 | anser.a ... l(text) | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:86:16:86:37 | anser.a ... l(text) | fileImports | anser |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:86:16:86:37 | anser.a ... l(text) | fileImports | anser cash-dom |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:86:16:86:37 | anser.a ... l(text) | receiverName |  |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:86:16:86:37 | anser.a ... l(text) | stringConcatenatedWith |  |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:87:16:87:40 | new ans ... s(text) | CalleeFlexibleAccessPath | $().html |
@@ -16914,11 +20836,11 @@ tokenFeatures
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:87:16:87:40 | new ans ... s(text) | InputArgumentIndex | 0 |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:87:16:87:40 | new ans ... s(text) | assignedToPropName |  |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:87:16:87:40 | new ans ... s(text) | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:87:16:87:40 | new ans ... s(text) | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:87:16:87:40 | new ans ... s(text) | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:87:16:87:40 | new ans ... s(text) | contextSurroundingFunctionParameters | () |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:87:16:87:40 | new ans ... s(text) | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:87:16:87:40 | new ans ... s(text) | enclosingFunctionBody |  |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:87:16:87:40 | new ans ... s(text) | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:87:16:87:40 | new ans ... s(text) | fileImports | anser |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:87:16:87:40 | new ans ... s(text) | fileImports | anser cash-dom |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:87:16:87:40 | new ans ... s(text) | receiverName |  |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:87:16:87:40 | new ans ... s(text) | stringConcatenatedWith |  |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:89:23:91:2 | functio ... / OK\\n\\t} | CalleeFlexibleAccessPath | $().each |
@@ -16926,11 +20848,11 @@ tokenFeatures
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:89:23:91:2 | functio ... / OK\\n\\t} | InputArgumentIndex | 0 |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:89:23:91:2 | functio ... / OK\\n\\t} | assignedToPropName |  |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:89:23:91:2 | functio ... / OK\\n\\t} | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:89:23:91:2 | functio ... / OK\\n\\t} | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:89:23:91:2 | functio ... / OK\\n\\t} | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:89:23:91:2 | functio ... / OK\\n\\t} | contextSurroundingFunctionParameters | ()\n() |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:89:23:91:2 | functio ... / OK\\n\\t} | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:89:23:91:2 | functio ... / OK\\n\\t} | enclosingFunctionBody |  |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:89:23:91:2 | functio ... / OK\\n\\t} | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:89:23:91:2 | functio ... / OK\\n\\t} | fileImports | anser |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:89:23:91:2 | functio ... / OK\\n\\t} | fileImports | anser cash-dom |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:89:23:91:2 | functio ... / OK\\n\\t} | receiverName |  |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:89:23:91:2 | functio ... / OK\\n\\t} | stringConcatenatedWith |  |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:22:90:124 | "<a hre ... on</a>" | CalleeFlexibleAccessPath | $().append |
@@ -16938,11 +20860,11 @@ tokenFeatures
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:22:90:124 | "<a hre ... on</a>" | InputArgumentIndex | 0 |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:22:90:124 | "<a hre ... on</a>" | assignedToPropName |  |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:22:90:124 | "<a hre ... on</a>" | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:22:90:124 | "<a hre ... on</a>" | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:22:90:124 | "<a hre ... on</a>" | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:22:90:124 | "<a hre ... on</a>" | contextSurroundingFunctionParameters | ()\n() |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:22:90:124 | "<a hre ... on</a>" | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:22:90:124 | "<a hre ... on</a>" | enclosingFunctionBody |  |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:22:90:124 | "<a hre ... on</a>" | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:22:90:124 | "<a hre ... on</a>" | fileImports | anser |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:22:90:124 | "<a hre ... on</a>" | fileImports | anser cash-dom |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:22:90:124 | "<a hre ... on</a>" | receiverName |  |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:22:90:124 | "<a hre ... on</a>" | stringConcatenatedWith |  |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:39:90:42 | this | CalleeFlexibleAccessPath | $ |
@@ -16950,13 +20872,193 @@ tokenFeatures
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:39:90:42 | this | InputArgumentIndex | 0 |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:39:90:42 | this | assignedToPropName |  |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:39:90:42 | this | calleeImports |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:39:90:42 | this | contextFunctionInterfaces | safe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:39:90:42 | this | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:39:90:42 | this | contextSurroundingFunctionParameters | ()\n() |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:39:90:42 | this | enclosingFunctionBody | $ #id html $ textarea val $ #id html $ .some-element text $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr foo bar $ #id html $ .some-element attr data-target $ #id html document getElementById foo innerText $ #id html document getElementById foo innerHTML $ #id html document getElementById foo textContent $ #id html document 0 querySelectorAll textarea 0 value $ #id html document getElementById div1 getAttribute data-target safe1 x x jquery foo $ x safe1 $ textarea val safe2 x x object foo $ x safe2 $ textarea val $ #id html $ <p> something </p> text $ #id get 0 innerHTML $ textarea val base $ #id base html html text $ textarea val $ #id get 0 innerHTML $ input get 0 name $ #id get 0 innerHTML $ input get 0 getAttribute name $ #id get 0 innerHTML $ input getAttribute id $ #id get 0 innerHTML $ document find option attr value valMethod $ textarea val $ #id get 0 innerHTML valMethod myValue $ document find option attr value myValue property $ #id get 0 innerHTML myValue $ jGrowl $ input get 0 name selector $ input get 0 name something selector $ textarea val  $ selector $ document my_form my_input value $ #id html $ #foo prop innerText anser require anser text $ text text $ #id html anser ansiToHtml text $ #id html anser process text $ section h1 each $ nav ul append <a href='# $ text toLowerCase replace / /g - replace /[^\\w-]+/g  '>Section</a> |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:39:90:42 | this | enclosingFunctionBody |  |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:39:90:42 | this | enclosingFunctionName |  |
-| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:39:90:42 | this | fileImports | anser |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:39:90:42 | this | fileImports | anser cash-dom |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:39:90:42 | this | receiverName |  |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:39:90:42 | this | stringConcatenatedWith |  |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:93:16:93:46 | $("#foo ... ].value | CalleeFlexibleAccessPath | $().html |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:93:16:93:46 | $("#foo ... ].value | InputAccessPathFromCallee |  |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:93:16:93:46 | $("#foo ... ].value | InputArgumentIndex | 0 |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:93:16:93:46 | $("#foo ... ].value | assignedToPropName |  |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:93:16:93:46 | $("#foo ... ].value | calleeImports |  |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:93:16:93:46 | $("#foo ... ].value | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:93:16:93:46 | $("#foo ... ].value | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:93:16:93:46 | $("#foo ... ].value | enclosingFunctionBody |  |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:93:16:93:46 | $("#foo ... ].value | enclosingFunctionName |  |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:93:16:93:46 | $("#foo ... ].value | fileImports | anser cash-dom |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:93:16:93:46 | $("#foo ... ].value | receiverName |  |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:93:16:93:46 | $("#foo ... ].value | stringConcatenatedWith |  |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:96:17:96:47 | $("#foo ... ].value | CalleeFlexibleAccessPath | $().html |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:96:17:96:47 | $("#foo ... ].value | InputAccessPathFromCallee |  |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:96:17:96:47 | $("#foo ... ].value | InputArgumentIndex | 0 |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:96:17:96:47 | $("#foo ... ].value | assignedToPropName |  |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:96:17:96:47 | $("#foo ... ].value | calleeImports |  |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:96:17:96:47 | $("#foo ... ].value | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:96:17:96:47 | $("#foo ... ].value | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:96:17:96:47 | $("#foo ... ].value | enclosingFunctionBody |  |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:96:17:96:47 | $("#foo ... ].value | enclosingFunctionName |  |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:96:17:96:47 | $("#foo ... ].value | fileImports | anser cash-dom |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:96:17:96:47 | $("#foo ... ].value | receiverName |  |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:96:17:96:47 | $("#foo ... ].value | stringConcatenatedWith |  |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:109:31:109:70 | "<a src ... oo</a>" | CalleeFlexibleAccessPath |  |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:109:31:109:70 | "<a src ... oo</a>" | InputAccessPathFromCallee |  |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:109:31:109:70 | "<a src ... oo</a>" | InputArgumentIndex |  |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:109:31:109:70 | "<a src ... oo</a>" | assignedToPropName | innerHTML |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:109:31:109:70 | "<a src ... oo</a>" | calleeImports |  |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:109:31:109:70 | "<a src ... oo</a>" | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:109:31:109:70 | "<a src ... oo</a>" | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:109:31:109:70 | "<a src ... oo</a>" | enclosingFunctionBody | $ #id get 0 innerHTML <a src=" el src ">foo</a> |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:109:31:109:70 | "<a src ... oo</a>" | enclosingFunctionName | constructor |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:109:31:109:70 | "<a src ... oo</a>" | fileImports | anser cash-dom |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:109:31:109:70 | "<a src ... oo</a>" | receiverName |  |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:109:31:109:70 | "<a src ... oo</a>" | stringConcatenatedWith |  |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:115:16:115:18 | src | CalleeFlexibleAccessPath | $().html |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:115:16:115:18 | src | InputAccessPathFromCallee |  |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:115:16:115:18 | src | InputArgumentIndex | 0 |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:115:16:115:18 | src | assignedToPropName |  |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:115:16:115:18 | src | calleeImports |  |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:115:16:115:18 | src | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:115:16:115:18 | src | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:115:16:115:18 | src | enclosingFunctionBody | src document getElementById #link src $ #id html src $ #id attr src src $ 0 input.foo 0 onchange ev $ #id html ev 0 target files 0 name $ img#id attr src URL createObjectURL ev 0 target files 0 |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:115:16:115:18 | src | enclosingFunctionName |  |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:115:16:115:18 | src | fileImports | anser cash-dom |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:115:16:115:18 | src | receiverName |  |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:115:16:115:18 | src | stringConcatenatedWith |  |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:117:26:117:28 | src | CalleeFlexibleAccessPath | $().attr |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:117:26:117:28 | src | InputAccessPathFromCallee |  |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:117:26:117:28 | src | InputArgumentIndex | 1 |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:117:26:117:28 | src | assignedToPropName |  |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:117:26:117:28 | src | calleeImports |  |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:117:26:117:28 | src | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:117:26:117:28 | src | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:117:26:117:28 | src | enclosingFunctionBody | src document getElementById #link src $ #id html src $ #id attr src src $ 0 input.foo 0 onchange ev $ #id html ev 0 target files 0 name $ img#id attr src URL createObjectURL ev 0 target files 0 |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:117:26:117:28 | src | enclosingFunctionName |  |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:117:26:117:28 | src | fileImports | anser cash-dom |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:117:26:117:28 | src | receiverName |  |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:117:26:117:28 | src | stringConcatenatedWith |  |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:120:23:120:45 | ev.targ ... 0].name | CalleeFlexibleAccessPath | $().html |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:120:23:120:45 | ev.targ ... 0].name | InputAccessPathFromCallee |  |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:120:23:120:45 | ev.targ ... 0].name | InputArgumentIndex | 0 |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:120:23:120:45 | ev.targ ... 0].name | assignedToPropName |  |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:120:23:120:45 | ev.targ ... 0].name | calleeImports |  |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:120:23:120:45 | ev.targ ... 0].name | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:120:23:120:45 | ev.targ ... 0].name | contextSurroundingFunctionParameters | ()\n(ev) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:120:23:120:45 | ev.targ ... 0].name | enclosingFunctionBody | src document getElementById #link src $ #id html src $ #id attr src src $ 0 input.foo 0 onchange ev $ #id html ev 0 target files 0 name $ img#id attr src URL createObjectURL ev 0 target files 0 |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:120:23:120:45 | ev.targ ... 0].name | enclosingFunctionName |  |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:120:23:120:45 | ev.targ ... 0].name | fileImports | anser cash-dom |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:120:23:120:45 | ev.targ ... 0].name | receiverName |  |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:120:23:120:45 | ev.targ ... 0].name | stringConcatenatedWith |  |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:122:33:122:71 | URL.cre ... les[0]) | CalleeFlexibleAccessPath | $().attr |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:122:33:122:71 | URL.cre ... les[0]) | InputAccessPathFromCallee |  |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:122:33:122:71 | URL.cre ... les[0]) | InputArgumentIndex | 1 |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:122:33:122:71 | URL.cre ... les[0]) | assignedToPropName |  |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:122:33:122:71 | URL.cre ... les[0]) | calleeImports |  |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:122:33:122:71 | URL.cre ... les[0]) | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:122:33:122:71 | URL.cre ... les[0]) | contextSurroundingFunctionParameters | ()\n(ev) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:122:33:122:71 | URL.cre ... les[0]) | enclosingFunctionBody | src document getElementById #link src $ #id html src $ #id attr src src $ 0 input.foo 0 onchange ev $ #id html ev 0 target files 0 name $ img#id attr src URL createObjectURL ev 0 target files 0 |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:122:33:122:71 | URL.cre ... les[0]) | enclosingFunctionName |  |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:122:33:122:71 | URL.cre ... les[0]) | fileImports | anser cash-dom |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:122:33:122:71 | URL.cre ... les[0]) | receiverName |  |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:122:33:122:71 | URL.cre ... les[0]) | stringConcatenatedWith |  |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:131:19:131:26 | linkText | CalleeFlexibleAccessPath |  |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:131:19:131:26 | linkText | InputAccessPathFromCallee |  |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:131:19:131:26 | linkText | InputArgumentIndex |  |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:131:19:131:26 | linkText | assignedToPropName | innerHTML |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:131:19:131:26 | linkText | calleeImports |  |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:131:19:131:26 | linkText | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:131:19:131:26 | linkText | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:131:19:131:26 | linkText | enclosingFunctionBody | elem document createElement a wSelection getSelection dSelection document getSelection linkText wSelection toString dSelection toString  elem innerHTML linkText $ #id html linkText elem innerText linkText |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:131:19:131:26 | linkText | enclosingFunctionName |  |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:131:19:131:26 | linkText | fileImports | anser cash-dom |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:131:19:131:26 | linkText | receiverName |  |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:131:19:131:26 | linkText | stringConcatenatedWith |  |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:132:16:132:23 | linkText | CalleeFlexibleAccessPath | $().html |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:132:16:132:23 | linkText | InputAccessPathFromCallee |  |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:132:16:132:23 | linkText | InputArgumentIndex | 0 |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:132:16:132:23 | linkText | assignedToPropName |  |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:132:16:132:23 | linkText | calleeImports |  |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:132:16:132:23 | linkText | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:132:16:132:23 | linkText | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:132:16:132:23 | linkText | enclosingFunctionBody | elem document createElement a wSelection getSelection dSelection document getSelection linkText wSelection toString dSelection toString  elem innerHTML linkText $ #id html linkText elem innerText linkText |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:132:16:132:23 | linkText | enclosingFunctionName |  |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:132:16:132:23 | linkText | fileImports | anser cash-dom |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:132:16:132:23 | linkText | receiverName |  |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:132:16:132:23 | linkText | stringConcatenatedWith |  |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:140:19:140:21 | src | CalleeFlexibleAccessPath | cash().html |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:140:19:140:21 | src | InputAccessPathFromCallee |  |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:140:19:140:21 | src | InputArgumentIndex | 0 |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:140:19:140:21 | src | assignedToPropName |  |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:140:19:140:21 | src | calleeImports |  |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:140:19:140:21 | src | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:140:19:140:21 | src | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:140:19:140:21 | src | enclosingFunctionBody | src document getElementById #link src cash #id html src cashDom #id html src |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:140:19:140:21 | src | enclosingFunctionName |  |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:140:19:140:21 | src | fileImports | anser cash-dom |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:140:19:140:21 | src | receiverName |  |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:140:19:140:21 | src | stringConcatenatedWith |  |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:141:25:141:27 | src | CalleeFlexibleAccessPath | cashDom().html |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:141:25:141:27 | src | InputAccessPathFromCallee |  |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:141:25:141:27 | src | InputArgumentIndex | 0 |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:141:25:141:27 | src | assignedToPropName |  |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:141:25:141:27 | src | calleeImports | cash-dom |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:141:25:141:27 | src | contextFunctionInterfaces | constructor()\nconstructor()\nonchange(ev)\nsafe1(x)\nsafe2(x) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:141:25:141:27 | src | contextSurroundingFunctionParameters | () |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:141:25:141:27 | src | enclosingFunctionBody | src document getElementById #link src cash #id html src cashDom #id html src |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:141:25:141:27 | src | enclosingFunctionName |  |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:141:25:141:27 | src | fileImports | anser cash-dom |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:141:25:141:27 | src | receiverName |  |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:141:25:141:27 | src | stringConcatenatedWith |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:29:29:29:32 | text | CalleeFlexibleAccessPath | ?.test |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:29:29:29:32 | text | InputAccessPathFromCallee |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:29:29:29:32 | text | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:29:29:29:32 | text | assignedToPropName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:29:29:29:32 | text | calleeImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:29:29:29:32 | text | contextFunctionInterfaces |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:29:29:29:32 | text | contextSurroundingFunctionParameters | (text) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:29:29:29:32 | text | enclosingFunctionBody | text /<!--\|--!?>/g test text text text replace /<!--\|--!?>/g  text |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:29:29:29:32 | text | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:29:29:29:32 | text | fileImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:29:29:29:32 | text | receiverName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:29:29:29:32 | text | stringConcatenatedWith |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:58:40:58:42 | beg | CalleeFlexibleAccessPath | req.url.substring |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:58:40:58:42 | beg | InputAccessPathFromCallee |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:58:40:58:42 | beg | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:58:40:58:42 | beg | assignedToPropName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:58:40:58:42 | beg | calleeImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:58:40:58:42 | beg | contextFunctionInterfaces |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:58:40:58:42 | beg | contextSurroundingFunctionParameters | (req) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:58:40:58:42 | beg | enclosingFunctionBody | req beg i 0 i req url length i req url i . req url i 1 / beg i 1 req url i ? beg req url req url substring beg |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:58:40:58:42 | beg | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:58:40:58:42 | beg | fileImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:58:40:58:42 | beg | receiverName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:58:40:58:42 | beg | stringConcatenatedWith |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:149:12:149:40 | {specif ... me : a} | CalleeFlexibleAccessPath | o.push |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:149:12:149:40 | {specif ... me : a} | InputAccessPathFromCallee |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:149:12:149:40 | {specif ... me : a} | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:149:12:149:40 | {specif ... me : a} | assignedToPropName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:149:12:149:40 | {specif ... me : a} | calleeImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:149:12:149:40 | {specif ... me : a} | contextFunctionInterfaces |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:149:12:149:40 | {specif ... me : a} | contextSurroundingFunctionParameters | (content)\n(a) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:149:12:149:40 | {specif ... me : a} | enclosingFunctionBody | content content content replace /<script[\\s\\S]*?<\\/script>/gi  content content replace /<[a-zA-Z\\/](.\|\\n)*?>/g    content content replace /<(script\|iframe\|video)[\\s\\S]*?<\\/(script\|iframe\|video)>/g  content content replace /<(script\|iframe\|video)(.\|\\s)*?\\/(script\|iframe\|video)>/g  content content replace /<[^<]*>/g  n cloneNode false outerHTML replace /<\\/?[\\w:\\-]+ ?\|=[\\"][^\\"]+\\"\|=\\'[^\\']+\\'\|=[\\w\\-]+\|>/gi  replace /[\\w:\\-]+/gi a o push specified 1 nodeName a n cloneNode false outerHTML replace /<\\/?[\\w:\\-]+ ?\|=[\\"][^\\"]+\\"\|=\\'[^\\']+\\'\|=[\\w\\-]+\|>/gi  replace /[\\w:\\-]+/gi a o push specified 1 nodeName a |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:149:12:149:40 | {specif ... me : a} | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:149:12:149:40 | {specif ... me : a} | fileImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:149:12:149:40 | {specif ... me : a} | receiverName | o |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:149:12:149:40 | {specif ... me : a} | stringConcatenatedWith |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:153:12:153:40 | {specif ... me : a} | CalleeFlexibleAccessPath | o.push |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:153:12:153:40 | {specif ... me : a} | InputAccessPathFromCallee |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:153:12:153:40 | {specif ... me : a} | InputArgumentIndex | 0 |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:153:12:153:40 | {specif ... me : a} | assignedToPropName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:153:12:153:40 | {specif ... me : a} | calleeImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:153:12:153:40 | {specif ... me : a} | contextFunctionInterfaces |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:153:12:153:40 | {specif ... me : a} | contextSurroundingFunctionParameters | (content)\n(a) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:153:12:153:40 | {specif ... me : a} | enclosingFunctionBody | content content content replace /<script[\\s\\S]*?<\\/script>/gi  content content replace /<[a-zA-Z\\/](.\|\\n)*?>/g    content content replace /<(script\|iframe\|video)[\\s\\S]*?<\\/(script\|iframe\|video)>/g  content content replace /<(script\|iframe\|video)(.\|\\s)*?\\/(script\|iframe\|video)>/g  content content replace /<[^<]*>/g  n cloneNode false outerHTML replace /<\\/?[\\w:\\-]+ ?\|=[\\"][^\\"]+\\"\|=\\'[^\\']+\\'\|=[\\w\\-]+\|>/gi  replace /[\\w:\\-]+/gi a o push specified 1 nodeName a n cloneNode false outerHTML replace /<\\/?[\\w:\\-]+ ?\|=[\\"][^\\"]+\\"\|=\\'[^\\']+\\'\|=[\\w\\-]+\|>/gi  replace /[\\w:\\-]+/gi a o push specified 1 nodeName a |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:153:12:153:40 | {specif ... me : a} | enclosingFunctionName |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:153:12:153:40 | {specif ... me : a} | fileImports |  |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:153:12:153:40 | {specif ... me : a} | receiverName | o |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:153:12:153:40 | {specif ... me : a} | stringConcatenatedWith |  |
 | index.js:21:9:21:9 | x | CalleeFlexibleAccessPath | _.map |
 | index.js:21:9:21:9 | x | InputAccessPathFromCallee |  |
 | index.js:21:9:21:9 | x | InputArgumentIndex | 0 |
diff --git a/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/FilteredTruePositives.expected b/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/FilteredTruePositives.expected
index f2e04cfa063..a7dd9af52cb 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/FilteredTruePositives.expected
+++ b/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/FilteredTruePositives.expected
@@ -7,18 +7,26 @@ taintedPathFilteredTruePositives
 | autogenerated/TaintedPath/TaintedPath.js:66:26:66:31 | "SAFE" | not a direct argument to a likely external library call or a heuristic sink (tainted path) |
 | autogenerated/TaintedPath/TaintedPath.js:71:26:71:45 | Cookie.get("unsafe") | not a direct argument to a likely external library call or a heuristic sink (tainted path) |
 xssFilteredTruePositives
+| autogenerated/Xss/DomBasedXss/classnames.js:17:32:17:79 | `<span  ... <span>` | not a direct argument to a likely external library call or a heuristic sink (xss) |
 | autogenerated/Xss/DomBasedXss/d3.js:12:20:12:29 | getTaint() | not a direct argument to a likely external library call or a heuristic sink (xss) |
 | autogenerated/Xss/DomBasedXss/d3.js:14:20:14:29 | getTaint() | not a direct argument to a likely external library call or a heuristic sink (xss) |
 | autogenerated/Xss/DomBasedXss/express.js:7:15:7:33 | req.param("wobble") | not a direct argument to a likely external library call or a heuristic sink (xss) |
 | autogenerated/Xss/DomBasedXss/jwt-server.js:11:19:11:29 | decoded.foo | not a direct argument to a likely external library call or a heuristic sink (xss) |
+| autogenerated/Xss/DomBasedXss/trusted-types.js:2:71:2:71 | x | not a direct argument to a likely external library call or a heuristic sink (xss) |
+| autogenerated/Xss/DomBasedXss/trusted-types.js:5:71:5:76 | 'safe' | not a direct argument to a likely external library call or a heuristic sink (xss) |
+| autogenerated/Xss/DomBasedXss/trusted-types.js:8:71:8:71 | x | not a direct argument to a likely external library call or a heuristic sink (xss) |
 | autogenerated/Xss/DomBasedXss/tst.js:316:35:316:42 | location | not a direct argument to a likely external library call or a heuristic sink (xss) |
 | autogenerated/Xss/DomBasedXss/typeahead.js:10:16:10:18 | loc | not a direct argument to a likely external library call or a heuristic sink (xss) |
 | autogenerated/Xss/DomBasedXss/typeahead.js:25:18:25:20 | val | not a direct argument to a likely external library call or a heuristic sink (xss) |
 xssThroughDomFilteredTruePositives
+| autogenerated/Xss/DomBasedXss/classnames.js:17:32:17:79 | `<span  ... <span>` | not a direct argument to a likely external library call or a heuristic sink (xss) |
 | autogenerated/Xss/DomBasedXss/d3.js:12:20:12:29 | getTaint() | not a direct argument to a likely external library call or a heuristic sink (xss) |
 | autogenerated/Xss/DomBasedXss/d3.js:14:20:14:29 | getTaint() | not a direct argument to a likely external library call or a heuristic sink (xss) |
 | autogenerated/Xss/DomBasedXss/express.js:7:15:7:33 | req.param("wobble") | not a direct argument to a likely external library call or a heuristic sink (xss) |
 | autogenerated/Xss/DomBasedXss/jwt-server.js:11:19:11:29 | decoded.foo | not a direct argument to a likely external library call or a heuristic sink (xss) |
+| autogenerated/Xss/DomBasedXss/trusted-types.js:2:71:2:71 | x | not a direct argument to a likely external library call or a heuristic sink (xss) |
+| autogenerated/Xss/DomBasedXss/trusted-types.js:5:71:5:76 | 'safe' | not a direct argument to a likely external library call or a heuristic sink (xss) |
+| autogenerated/Xss/DomBasedXss/trusted-types.js:8:71:8:71 | x | not a direct argument to a likely external library call or a heuristic sink (xss) |
 | autogenerated/Xss/DomBasedXss/tst.js:316:35:316:42 | location | not a direct argument to a likely external library call or a heuristic sink (xss) |
 | autogenerated/Xss/DomBasedXss/typeahead.js:10:16:10:18 | loc | not a direct argument to a likely external library call or a heuristic sink (xss) |
 | autogenerated/Xss/DomBasedXss/typeahead.js:25:18:25:20 | val | not a direct argument to a likely external library call or a heuristic sink (xss) |
diff --git a/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/getALikelyExternalLibraryCall.expected b/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/getALikelyExternalLibraryCall.expected
index 78445f55f46..b9fb02602c5 100644
--- a/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/getALikelyExternalLibraryCall.expected
+++ b/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/getALikelyExternalLibraryCall.expected
@@ -14,6 +14,35 @@
 | autogenerated/NosqlAndSqlInjection/untyped/dbo.js:8:5:11:6 | dbClien ... \\n    }) |
 | autogenerated/NosqlAndSqlInjection/untyped/dbo.js:9:12:9:41 | client. ... B_NAME) |
 | autogenerated/NosqlAndSqlInjection/untyped/dbo.js:10:14:10:20 | fn(err) |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:1:15:1:32 | require('express') |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:2:11:2:19 | express() |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:7:1:21:2 | app.get ...  `);\\n}) |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:10:22:20:6 | kit.gra ... \\n    `) |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:25:1:34:2 | app.get ... T OK\\n}) |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:27:22:27:41 | graphql(`foo ${id}`) |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:29:23:29:48 | withCus ... equest) |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:30:22:30:43 | myGraph ... ${id}`) |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:32:26:32:45 | graphql.defaults({}) |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:33:5:33:29 | withDef ... ${id}`) |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:36:21:36:47 | require ... quest") |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:38:1:49:2 | app.get ... T OK\\n}) |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:40:26:45:6 | request ... \\n    }) |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:47:26:47:45 | request.defaults({}) |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:48:5:48:57 | withDef ... id}` }) |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:54:1:59:2 | app.get ... T OK\\n}) |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:56:26:56:50 | kit2.gr ... ${id}`) |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:58:27:58:79 | kit2.re ... id}` }) |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:62:14:66:2 | buildSc ... \\n  }\\n`) |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:73:1:113:2 | app.get ...   })\\n}) |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:75:24:75:71 | nativeG ... , root) |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:77:3:92:4 | fetch(" ... })\\n  }) |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:82:11:91:6 | JSON.st ... \\n    }) |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:94:3:112:4 | fetch(" ... })\\n  }) |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:99:11:111:6 | JSON.st ... \\n    }) |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:115:16:115:41 | require ... ithub') |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:116:1:121:2 | app.get ... T OK\\n}) |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:117:17:117:40 | github. ... ("foo") |
+| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:120:26:120:49 | kit.gra ... ${id}`) |
 | autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:5:13:5:21 | express() |
 | autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:15:21:15:39 | ajv.compile(schema) |
 | autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:21:1:37:2 | app.pos ...  });\\n}) |
@@ -26,6 +55,42 @@
 | autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:30:13:30:27 | doc.find(query) |
 | autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:33:13:33:27 | doc.find(query) |
 | autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:35:9:35:23 | doc.find(query) |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:41:19:44:2 | Joi.obj ... ed()\\n}) |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:41:19:44:24 | Joi.obj ... title') |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:42:11:42:22 | Joi.string() |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:42:11:42:33 | Joi.str ... uired() |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:43:12:43:23 | Joi.string() |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:43:12:43:34 | Joi.str ... uired() |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:46:1:64:2 | app.pos ...  });\\n}) |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:47:5:63:6 | MongoCl ... \\n    }) |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:48:19:48:38 | db.collection('doc') |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:50:23:50:48 | JSON.pa ... y.data) |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:51:26:51:50 | joiSche ... (query) |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:53:13:53:27 | doc.find(query) |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:55:13:55:27 | doc.find(query) |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:58:19:58:48 | joiSche ... (query) |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:59:13:59:27 | doc.find(query) |
+| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:61:13:61:27 | doc.find(query) |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:1:14:1:28 | require("http") |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:2:13:2:26 | require("url") |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:3:14:3:30 | require("ldapjs") |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:4:16:6:2 | ldap.cr ... 89",\\n}) |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:10:10:11:27 | input\\n  ... "\\\\2a") |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:10:10:12:27 | input\\n  ... "\\\\28") |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:10:10:13:27 | input\\n  ... "\\\\29") |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:10:10:14:27 | input\\n  ... "\\\\5c") |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:10:10:15:27 | input\\n  ... "\\\\00") |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:10:10:16:27 | input\\n  ... "\\\\2f") |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:19:16:69:2 | http.cr ... T OK\\n}) |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:20:11:20:34 | url.par ... , true) |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:28:3:28:59 | client. ... es) {}) |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:30:3:34:3 | client. ...  {}\\n  ) |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:37:3:45:3 | client. ...  {}\\n  ) |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:61:3:61:67 | client. ... es) {}) |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:63:24:65:3 | ldap.pa ... ))`\\n  ) |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:66:3:66:78 | client. ... es) {}) |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:68:14:68:66 | ldap.pa ... dn) {}) |
+| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:71:1:71:28 | server. ...  => {}) |
 | autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-from.js:1:16:1:32 | require("marsdb") |
 | autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:1:17:1:34 | require("express") |
 | autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:2:20:2:41 | require ... arser") |
@@ -33,16 +98,16 @@
 | autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:5:13:5:21 | express() |
 | autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:7:1:7:50 | app.use ... rue })) |
 | autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:7:9:7:49 | bodyPar ... true }) |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:9:1:15:2 | app.pos ... ry);\\n}) |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:14:3:14:22 | db.myDoc.find(query) |
+| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:9:1:15:2 | app.pos ... {});\\n}) |
+| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:14:3:14:41 | db.myDo ...  => {}) |
 | autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:1:17:1:34 | require("express") |
 | autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:2:12:2:28 | require("marsdb") |
 | autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:3:16:3:37 | require ... arser") |
 | autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:7:13:7:21 | express() |
 | autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:9:1:9:50 | app.use ... rue })) |
 | autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:9:9:9:49 | bodyPar ... true }) |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:11:1:17:2 | app.pos ... ry);\\n}) |
-| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:16:3:16:17 | doc.find(query) |
+| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:11:1:17:2 | app.pos ... {});\\n}) |
+| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:16:3:16:36 | doc.fin ...  => {}) |
 | autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:1:17:1:34 | require("express") |
 | autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:2:15:2:34 | require("minimongo") |
 | autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:3:16:3:37 | require ... arser") |
@@ -221,6 +286,18 @@
 | autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:11:3:11:25 | MyModel ... d: v }) |
 | autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:12:3:12:35 | MyModel ... y.id }) |
 | autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:13:3:13:40 | MyModel ... id}` }) |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:1:13:1:30 | require("express") |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:1:13:1:32 | require("express")() |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:2:15:2:30 | require('mysql') |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:3:14:3:42 | mysql.c ... nfig()) |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:3:31:3:41 | getConfig() |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:5:1:22:2 | app.get ...  });\\n}) |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:7:5:12:6 | pool.ge ... \\n    }) |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:8:9:11:47 | connect ... ds) {}) |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:13:5:17:6 | pool.ge ... \\n    }) |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:14:9:16:47 | connect ... ds) {}) |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:18:5:21:6 | pool.ge ... \\n    }) |
+| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:19:9:20:48 | connect ... ds) {}) |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise-types.ts:8:5:8:22 | this.db.one(taint) |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise-types.ts:9:5:9:13 | res.end() |
 | autogenerated/NosqlAndSqlInjection/untyped/pg-promise-types.ts:13:1:13:18 | require('express') |
@@ -522,6 +599,63 @@
 | autogenerated/TaintedPath/TaintedPath.js:195:13:195:85 | fs.read ... /, '')) |
 | autogenerated/TaintedPath/TaintedPath.js:195:29:195:54 | pathMod ... e(path) |
 | autogenerated/TaintedPath/TaintedPath.js:195:29:195:84 | pathMod ... +/, '') |
+| autogenerated/TaintedPath/TaintedPath.js:200:14:207:2 | http.cr ... T OK\\n}) |
+| autogenerated/TaintedPath/TaintedPath.js:202:14:202:26 | require("qs") |
+| autogenerated/TaintedPath/TaintedPath.js:203:3:203:51 | res.wri ... ).foo)) |
+| autogenerated/TaintedPath/TaintedPath.js:203:13:203:50 | fs.read ... l).foo) |
+| autogenerated/TaintedPath/TaintedPath.js:203:29:203:45 | qs.parse(req.url) |
+| autogenerated/TaintedPath/TaintedPath.js:204:3:204:65 | res.wri ... ).foo)) |
+| autogenerated/TaintedPath/TaintedPath.js:204:13:204:64 | fs.read ... )).foo) |
+| autogenerated/TaintedPath/TaintedPath.js:204:29:204:59 | qs.pars ... q.url)) |
+| autogenerated/TaintedPath/TaintedPath.js:204:38:204:58 | normali ... eq.url) |
+| autogenerated/TaintedPath/TaintedPath.js:205:19:205:36 | require("parseqs") |
+| autogenerated/TaintedPath/TaintedPath.js:206:3:206:57 | res.wri ... ).foo)) |
+| autogenerated/TaintedPath/TaintedPath.js:206:13:206:56 | fs.read ... l).foo) |
+| autogenerated/TaintedPath/TaintedPath.js:206:29:206:51 | parseqs ... eq.url) |
+| autogenerated/TaintedPath/TaintedPath.js:209:12:209:35 | require ... ocess") |
+| autogenerated/TaintedPath/TaintedPath.js:210:14:215:2 | http.cr ... T OK\\n}) |
+| autogenerated/TaintedPath/TaintedPath.js:211:14:211:37 | url.par ... , true) |
+| autogenerated/TaintedPath/TaintedPath.js:212:3:212:36 | cp.exec ...  path}) |
+| autogenerated/TaintedPath/TaintedPath.js:213:3:213:50 | cp.exec ...  path}) |
+| autogenerated/TaintedPath/TaintedPath.js:214:3:214:40 | cp.exec ...  path}) |
+| autogenerated/TaintedPath/express.js:1:15:1:32 | require("express") |
+| autogenerated/TaintedPath/express.js:2:16:2:44 | require ... pload") |
+| autogenerated/TaintedPath/express.js:4:11:4:19 | express() |
+| autogenerated/TaintedPath/express.js:5:1:5:21 | app.use ... load()) |
+| autogenerated/TaintedPath/express.js:5:9:5:20 | fileUpload() |
+| autogenerated/TaintedPath/express.js:7:1:9:2 | app.get ... ar);\\n}) |
+| autogenerated/TaintedPath/express.js:8:3:8:33 | req.fil ... ry.bar) |
+| autogenerated/TaintedPath/handlebars.js:1:17:1:34 | require('express') |
+| autogenerated/TaintedPath/handlebars.js:2:12:2:32 | require ... ebars") |
+| autogenerated/TaintedPath/handlebars.js:3:12:3:24 | require("fs") |
+| autogenerated/TaintedPath/handlebars.js:5:13:5:21 | express() |
+| autogenerated/TaintedPath/handlebars.js:10:5:12:6 | hb.regi ... \\n    }) |
+| autogenerated/TaintedPath/handlebars.js:11:16:11:40 | fs.read ... lePath) |
+| autogenerated/TaintedPath/handlebars.js:13:5:19:6 | hb.regi ... \\n    }) |
+| autogenerated/TaintedPath/handlebars.js:14:16:15:33 | fs\\n     ... lePath) |
+| autogenerated/TaintedPath/handlebars.js:14:16:16:22 | fs\\n     ... t("\\n") |
+| autogenerated/TaintedPath/handlebars.js:14:16:17:39 | fs\\n     ... + line) |
+| autogenerated/TaintedPath/handlebars.js:14:16:18:21 | fs\\n     ... n("\\n") |
+| autogenerated/TaintedPath/handlebars.js:20:31:20:91 | hb.comp ... ath}}") |
+| autogenerated/TaintedPath/handlebars.js:21:27:21:55 | hb.comp ... ame}}") |
+| autogenerated/TaintedPath/handlebars.js:22:28:22:75 | hb.comp ... late")) |
+| autogenerated/TaintedPath/handlebars.js:22:39:22:74 | fs.read ... plate") |
+| autogenerated/TaintedPath/handlebars.js:23:26:23:111 | hb.comp ... ath}}") |
+| autogenerated/TaintedPath/handlebars.js:28:1:30:2 | app.get ... ile)\\n}) |
+| autogenerated/TaintedPath/handlebars.js:29:5:29:64 | res.sen ... ath })) |
+| autogenerated/TaintedPath/handlebars.js:29:14:29:63 | data.co ... path }) |
+| autogenerated/TaintedPath/handlebars.js:32:1:34:2 | app.get ... ile)\\n}) |
+| autogenerated/TaintedPath/handlebars.js:33:5:33:60 | res.sen ... ame })) |
+| autogenerated/TaintedPath/handlebars.js:33:14:33:59 | data.co ... name }) |
+| autogenerated/TaintedPath/handlebars.js:36:1:38:2 | app.get ...  ok)\\n}) |
+| autogenerated/TaintedPath/handlebars.js:37:5:37:61 | res.sen ... ame })) |
+| autogenerated/TaintedPath/handlebars.js:37:14:37:60 | data.co ... name }) |
+| autogenerated/TaintedPath/handlebars.js:40:1:45:2 | app.get ... }));\\n}) |
+| autogenerated/TaintedPath/handlebars.js:41:5:44:7 | res.sen ...     })) |
+| autogenerated/TaintedPath/handlebars.js:41:14:44:6 | data.co ... \\n    }) |
+| autogenerated/TaintedPath/handlebars.js:47:1:52:2 | app.get ... }));\\n}) |
+| autogenerated/TaintedPath/handlebars.js:48:5:51:7 | res.sen ...     })) |
+| autogenerated/TaintedPath/handlebars.js:48:14:51:6 | data.co ... \\n    }) |
 | autogenerated/TaintedPath/my-async-fs-module.js:1:12:1:24 | require('fs') |
 | autogenerated/TaintedPath/my-async-fs-module.js:2:21:2:39 | require('bluebird') |
 | autogenerated/TaintedPath/my-async-fs-module.js:11:18:14:6 | methods ... \\n}, {}) |
@@ -749,6 +883,24 @@
 | autogenerated/TaintedPath/normalizedPaths.js:366:5:366:32 | fs.read ... stPath) |
 | autogenerated/TaintedPath/normalizedPaths.js:368:3:368:29 | fs.read ... etPath) |
 | autogenerated/TaintedPath/normalizedPaths.js:371:12:371:40 | request ... otPath) |
+| autogenerated/TaintedPath/normalizedPaths.js:376:1:382:2 | app.get ... T OK\\n}) |
+| autogenerated/TaintedPath/normalizedPaths.js:379:3:379:23 | fs.read ... c(path) |
+| autogenerated/TaintedPath/normalizedPaths.js:381:3:381:30 | fs.read ... (path)) |
+| autogenerated/TaintedPath/normalizedPaths.js:381:19:381:29 | slash(path) |
+| autogenerated/TaintedPath/normalizedPaths.js:384:1:404:2 | app.get ... \\n  }\\n}) |
+| autogenerated/TaintedPath/normalizedPaths.js:385:14:385:46 | pathMod ... uery.x) |
+| autogenerated/TaintedPath/normalizedPaths.js:386:7:386:33 | pathMod ... e(path) |
+| autogenerated/TaintedPath/normalizedPaths.js:388:3:388:23 | fs.read ... c(path) |
+| autogenerated/TaintedPath/normalizedPaths.js:389:8:389:23 | path.match(/\\./) |
+| autogenerated/TaintedPath/normalizedPaths.js:390:5:390:25 | fs.read ... c(path) |
+| autogenerated/TaintedPath/normalizedPaths.js:392:8:392:25 | path.match(/\\.\\./) |
+| autogenerated/TaintedPath/normalizedPaths.js:393:5:393:25 | fs.read ... c(path) |
+| autogenerated/TaintedPath/normalizedPaths.js:395:8:395:27 | path.match(/\\.\\.\\//) |
+| autogenerated/TaintedPath/normalizedPaths.js:396:5:396:25 | fs.read ... c(path) |
+| autogenerated/TaintedPath/normalizedPaths.js:398:8:398:30 | path.ma ... \\/foo/) |
+| autogenerated/TaintedPath/normalizedPaths.js:399:5:399:25 | fs.read ... c(path) |
+| autogenerated/TaintedPath/normalizedPaths.js:401:8:401:36 | path.ma ... \\.\\\\)/) |
+| autogenerated/TaintedPath/normalizedPaths.js:402:5:402:25 | fs.read ... c(path) |
 | autogenerated/TaintedPath/other-fs-libraries.js:1:12:1:26 | require("http") |
 | autogenerated/TaintedPath/other-fs-libraries.js:2:9:2:22 | require("url") |
 | autogenerated/TaintedPath/other-fs-libraries.js:3:8:3:20 | require("fs") |
@@ -781,10 +933,41 @@
 | autogenerated/TaintedPath/other-fs-libraries.js:42:3:42:38 | require ... All(fs) |
 | autogenerated/TaintedPath/other-fs-libraries.js:42:3:42:57 | require ... c(path) |
 | autogenerated/TaintedPath/other-fs-libraries.js:46:17:46:47 | require ... odule") |
-| autogenerated/TaintedPath/other-fs-libraries.js:48:1:53:2 | http.cr ... T OK\\n}) |
+| autogenerated/TaintedPath/other-fs-libraries.js:48:1:64:2 | http.cr ... T OK\\n}) |
 | autogenerated/TaintedPath/other-fs-libraries.js:49:14:49:37 | url.par ... , true) |
 | autogenerated/TaintedPath/other-fs-libraries.js:51:3:51:23 | fs.read ... c(path) |
 | autogenerated/TaintedPath/other-fs-libraries.js:52:3:52:28 | asyncFS ... c(path) |
+| autogenerated/TaintedPath/other-fs-libraries.js:54:3:54:17 | require("pify") |
+| autogenerated/TaintedPath/other-fs-libraries.js:54:3:54:34 | require ... leSync) |
+| autogenerated/TaintedPath/other-fs-libraries.js:54:3:54:40 | require ... )(path) |
+| autogenerated/TaintedPath/other-fs-libraries.js:55:3:55:17 | require("pify") |
+| autogenerated/TaintedPath/other-fs-libraries.js:55:3:55:21 | require("pify")(fs) |
+| autogenerated/TaintedPath/other-fs-libraries.js:55:3:55:40 | require ... c(path) |
+| autogenerated/TaintedPath/other-fs-libraries.js:57:3:57:27 | require ... isify') |
+| autogenerated/TaintedPath/other-fs-libraries.js:57:3:57:44 | require ... leSync) |
+| autogenerated/TaintedPath/other-fs-libraries.js:57:3:57:50 | require ... )(path) |
+| autogenerated/TaintedPath/other-fs-libraries.js:59:3:59:20 | require("thenify") |
+| autogenerated/TaintedPath/other-fs-libraries.js:59:3:59:37 | require ... leSync) |
+| autogenerated/TaintedPath/other-fs-libraries.js:59:3:59:43 | require ... )(path) |
+| autogenerated/TaintedPath/other-fs-libraries.js:61:19:61:37 | require('read-pkg') |
+| autogenerated/TaintedPath/other-fs-libraries.js:62:13:62:48 | readPkg ...  path}) |
+| autogenerated/TaintedPath/other-fs-libraries.js:63:20:63:56 | readPkg ...  path}) |
+| autogenerated/TaintedPath/other-fs-libraries.js:66:16:66:32 | require("mkdirp") |
+| autogenerated/TaintedPath/other-fs-libraries.js:67:1:73:2 | http.cr ... T OK\\n}) |
+| autogenerated/TaintedPath/other-fs-libraries.js:68:14:68:37 | url.par ... , true) |
+| autogenerated/TaintedPath/other-fs-libraries.js:70:3:70:23 | fs.read ... c(path) |
+| autogenerated/TaintedPath/other-fs-libraries.js:71:3:71:14 | mkdirp(path) |
+| autogenerated/TaintedPath/other-fs-libraries.js:72:3:72:19 | mkdirp.sync(path) |
+| autogenerated/TaintedPath/prettier.js:1:17:1:34 | require('express') |
+| autogenerated/TaintedPath/prettier.js:2:18:2:36 | require("prettier") |
+| autogenerated/TaintedPath/prettier.js:4:13:4:21 | express() |
+| autogenerated/TaintedPath/prettier.js:5:1:14:2 | app.get ...  });\\n}) |
+| autogenerated/TaintedPath/prettier.js:7:5:7:29 | prettie ... nfig(p) |
+| autogenerated/TaintedPath/prettier.js:7:5:9:6 | prettie ... \\n    }) |
+| autogenerated/TaintedPath/prettier.js:8:27:8:57 | prettie ... ptions) |
+| autogenerated/TaintedPath/prettier.js:11:5:11:46 | prettie ... ig: p}) |
+| autogenerated/TaintedPath/prettier.js:11:5:13:6 | prettie ... \\n    }) |
+| autogenerated/TaintedPath/prettier.js:12:27:12:57 | prettie ... ptions) |
 | autogenerated/TaintedPath/pupeteer.js:1:19:1:38 | require('puppeteer') |
 | autogenerated/TaintedPath/pupeteer.js:2:22:2:45 | require ... rrent') |
 | autogenerated/TaintedPath/pupeteer.js:5:28:5:48 | parseTo ... orrent) |
@@ -812,6 +995,15 @@
 | autogenerated/TaintedPath/tainted-access-paths.js:30:7:30:31 | fs.read ... j.sub4) |
 | autogenerated/TaintedPath/tainted-access-paths.js:31:7:31:31 | fs.read ... j.sub4) |
 | autogenerated/TaintedPath/tainted-access-paths.js:34:1:34:15 | server.listen() |
+| autogenerated/TaintedPath/tainted-access-paths.js:36:14:36:31 | require('node:fs') |
+| autogenerated/TaintedPath/tainted-access-paths.js:38:15:41:2 | http.cr ... T OK\\n}) |
+| autogenerated/TaintedPath/tainted-access-paths.js:39:14:39:37 | url.par ... , true) |
+| autogenerated/TaintedPath/tainted-access-paths.js:40:3:40:27 | nodefs. ... c(path) |
+| autogenerated/TaintedPath/tainted-access-paths.js:43:1:43:16 | server2.listen() |
+| autogenerated/TaintedPath/tainted-access-paths.js:45:16:45:32 | require("chownr") |
+| autogenerated/TaintedPath/tainted-access-paths.js:47:15:50:2 | http.cr ... T OK\\n}) |
+| autogenerated/TaintedPath/tainted-access-paths.js:48:14:48:37 | url.par ... , true) |
+| autogenerated/TaintedPath/tainted-access-paths.js:49:3:49:55 | chownr( ... rr) {}) |
 | autogenerated/TaintedPath/tainted-array-steps.js:1:10:1:22 | require('fs') |
 | autogenerated/TaintedPath/tainted-array-steps.js:2:12:2:26 | require('http') |
 | autogenerated/TaintedPath/tainted-array-steps.js:3:11:3:24 | require('url') |
@@ -833,6 +1025,12 @@
 | autogenerated/TaintedPath/tainted-require.js:5:1:8:2 | app.get ... "));\\n}) |
 | autogenerated/TaintedPath/tainted-require.js:7:11:7:38 | require ... dule")) |
 | autogenerated/TaintedPath/tainted-require.js:7:19:7:37 | req.param("module") |
+| autogenerated/TaintedPath/tainted-require.js:10:17:10:34 | require("resolve") |
+| autogenerated/TaintedPath/tainted-require.js:11:1:17:2 | app.get ...  });\\n}) |
+| autogenerated/TaintedPath/tainted-require.js:12:16:12:48 | resolve ... dule")) |
+| autogenerated/TaintedPath/tainted-require.js:12:29:12:47 | req.param("module") |
+| autogenerated/TaintedPath/tainted-require.js:14:3:16:4 | resolve ... s;\\n  }) |
+| autogenerated/TaintedPath/tainted-require.js:14:11:14:29 | req.param("module") |
 | autogenerated/TaintedPath/tainted-sendFile.js:1:15:1:32 | require('express') |
 | autogenerated/TaintedPath/tainted-sendFile.js:2:12:2:26 | require('path') |
 | autogenerated/TaintedPath/tainted-sendFile.js:4:11:4:19 | express() |
@@ -938,6 +1136,9 @@
 | autogenerated/Xss/DomBasedXss/addEventListener.js:13:9:13:30 | documen ... y.data) |
 | autogenerated/Xss/DomBasedXss/addEventListener.js:16:5:16:71 | window. ... ems'})) |
 | autogenerated/Xss/DomBasedXss/addEventListener.js:16:40:16:70 | foo.bin ... tems'}) |
+| autogenerated/Xss/DomBasedXss/addEventListener.js:22:9:22:30 | documen ... e.data) |
+| autogenerated/Xss/DomBasedXss/addEventListener.js:26:13:26:36 | mySet.i ... origin) |
+| autogenerated/Xss/DomBasedXss/addEventListener.js:27:13:27:34 | documen ... e.data) |
 | autogenerated/Xss/DomBasedXss/angular2-client.ts:6:2:10:2 | Compone ... ss']\\n}) |
 | autogenerated/Xss/DomBasedXss/angular2-client.ts:22:5:22:72 | this.sa ... ).href) |
 | autogenerated/Xss/DomBasedXss/angular2-client.ts:22:44:22:52 | \\u0275getDOM() |
@@ -970,6 +1171,49 @@
 | autogenerated/Xss/DomBasedXss/classnames.js:13:47:13:68 | safeSty ... w.name) |
 | autogenerated/Xss/DomBasedXss/classnames.js:14:47:14:62 | safeStyle('foo') |
 | autogenerated/Xss/DomBasedXss/classnames.js:15:47:15:63 | clsx(window.name) |
+| autogenerated/Xss/DomBasedXss/classnames.js:17:48:17:64 | clsx(window.name) |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:1:1:1:9 | $("#foo") |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:1:1:1:28 | $("#foo ...  paste) |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:7:18:7:52 | clipboa ... plain') |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:8:18:8:51 | clipboa ... /html') |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:11:5:11:22 | e.preventDefault() |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:13:17:13:45 | documen ... ('div') |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:19:5:19:29 | documen ... nd(div) |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:23:5:25:6 | el.addE ... \\n    }) |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:24:9:24:16 | $("#id") |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:24:9:24:59 | $("#id" ... html')) |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:24:23:24:58 | e.clipb ... /html') |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:28:1:30:2 | documen ... T OK\\n}) |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:29:5:29:12 | $("#id") |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:29:5:29:55 | $("#id" ... html')) |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:29:19:29:54 | e.clipb ... /html') |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:32:1:32:9 | $("#foo") |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:32:1:34:2 | $("#foo ... T OK\\n}) |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:33:5:33:12 | $("#id") |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:33:5:33:69 | $("#id" ... html')) |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:33:19:33:68 | e.origi ... /html') |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:37:15:37:43 | documen ... ("div") |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:42:22:42:56 | clipboa ... plain') |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:43:22:43:55 | clipboa ... /html') |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:46:9:46:26 | e.preventDefault() |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:48:21:48:49 | documen ... ('div') |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:54:9:54:33 | documen ... nd(div) |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:70:9:70:51 | e.clipb ... /html') |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:71:27:71:62 | e.clipb ... /html') |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:72:25:72:54 | documen ... 'html') |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:74:20:74:56 | contain ... ('img') |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:77:9:77:26 | dropItems.add(src) |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:79:16:79:59 | e.clipb ... plain') |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:80:25:80:61 | e.clipb ... plain') |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:82:11:82:41 | /^https ... inText) |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:83:9:83:32 | dropIte ... inText) |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:87:24:87:44 | Array.f ... pItems) |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:93:15:93:43 | documen ... ("div") |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:94:5:100:6 | div.add ... \\n    }) |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:98:22:98:54 | dataTra ... /html') |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:99:9:99:16 | $("#id") |
+| autogenerated/Xss/DomBasedXss/clipboard.ts:99:9:99:27 | $("#id").html(html) |
+| autogenerated/Xss/DomBasedXss/custom-element.js:3:37:3:36 | super(...args) |
 | autogenerated/Xss/DomBasedXss/d3.js:1:12:1:24 | require('d3') |
 | autogenerated/Xss/DomBasedXss/d3.js:8:5:8:22 | d3.select('#main') |
 | autogenerated/Xss/DomBasedXss/d3.js:8:5:9:27 | d3.sele ... ', 100) |
@@ -995,6 +1239,74 @@
 | autogenerated/Xss/DomBasedXss/dates.js:17:42:17:54 | moment(taint) |
 | autogenerated/Xss/DomBasedXss/dates.js:17:42:17:63 | moment( ... ormat() |
 | autogenerated/Xss/DomBasedXss/dates.js:18:42:18:64 | datefor ...  taint) |
+| autogenerated/Xss/DomBasedXss/dates.js:21:42:21:52 | dayjs(time) |
+| autogenerated/Xss/DomBasedXss/dates.js:21:42:21:66 | dayjs(t ... (taint) |
+| autogenerated/Xss/DomBasedXss/dates.js:30:17:30:69 | decodeU ... ing(1)) |
+| autogenerated/Xss/DomBasedXss/dates.js:30:36:30:68 | window. ... ring(1) |
+| autogenerated/Xss/DomBasedXss/dates.js:37:42:37:82 | dateFns ...  taint) |
+| autogenerated/Xss/DomBasedXss/dates.js:38:42:38:82 | luxon.f ...  taint) |
+| autogenerated/Xss/DomBasedXss/dates.js:38:63:38:74 | luxon.date() |
+| autogenerated/Xss/DomBasedXss/dates.js:39:42:39:84 | moment. ...  taint) |
+| autogenerated/Xss/DomBasedXss/dates.js:39:64:39:76 | moment.date() |
+| autogenerated/Xss/DomBasedXss/dates.js:40:42:40:82 | dayjs.f ...  taint) |
+| autogenerated/Xss/DomBasedXss/dates.js:40:63:40:74 | dayjs.date() |
+| autogenerated/Xss/DomBasedXss/dates.js:46:17:46:69 | decodeU ... ing(1)) |
+| autogenerated/Xss/DomBasedXss/dates.js:46:36:46:68 | window. ... ring(1) |
+| autogenerated/Xss/DomBasedXss/dates.js:48:42:48:55 | DateTime.now() |
+| autogenerated/Xss/DomBasedXss/dates.js:48:42:48:72 | DateTim ... rs: 1}) |
+| autogenerated/Xss/DomBasedXss/dates.js:48:42:48:88 | DateTim ... (taint) |
+| autogenerated/Xss/DomBasedXss/dates.js:49:42:49:71 | new Dat ... e('fr') |
+| autogenerated/Xss/DomBasedXss/dates.js:49:42:49:87 | new Dat ... (taint) |
+| autogenerated/Xss/DomBasedXss/dates.js:50:42:50:71 | DateTim ... 01-01") |
+| autogenerated/Xss/DomBasedXss/dates.js:50:42:50:86 | DateTim ... ('day') |
+| autogenerated/Xss/DomBasedXss/dates.js:50:42:50:102 | DateTim ... (taint) |
+| autogenerated/Xss/DomBasedXss/dates.js:54:17:54:69 | decodeU ... ing(1)) |
+| autogenerated/Xss/DomBasedXss/dates.js:54:36:54:68 | window. ... ring(1) |
+| autogenerated/Xss/DomBasedXss/dates.js:57:42:57:85 | moment. ... 1"), 1) |
+| autogenerated/Xss/DomBasedXss/dates.js:57:42:57:99 | moment. ... (taint) |
+| autogenerated/Xss/DomBasedXss/dates.js:57:57:57:81 | moment. ... 06-21") |
+| autogenerated/Xss/DomBasedXss/dates.js:59:42:59:69 | luxon.e ... date()) |
+| autogenerated/Xss/DomBasedXss/dates.js:59:42:59:85 | luxon.e ... (taint) |
+| autogenerated/Xss/DomBasedXss/dates.js:59:57:59:68 | luxon.date() |
+| autogenerated/Xss/DomBasedXss/dates.js:61:42:61:72 | dayjs.s ... e(), 4) |
+| autogenerated/Xss/DomBasedXss/dates.js:61:42:61:86 | dayjs.s ... (taint) |
+| autogenerated/Xss/DomBasedXss/dates.js:61:57:61:68 | dayjs.date() |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:1:1:1:9 | $("#foo") |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:1:1:1:26 | $("#foo ... , drop) |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:7:18:7:51 | dataTra ... plain') |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:8:18:8:50 | dataTra ... /html') |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:11:5:11:22 | e.preventDefault() |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:13:17:13:45 | documen ... ('div') |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:19:5:19:29 | documen ... nd(div) |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:23:5:25:6 | el.addE ... \\n    }) |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:24:9:24:16 | $("#id") |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:24:9:24:58 | $("#id" ... html')) |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:24:23:24:57 | e.dataT ... /html') |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:28:1:30:2 | documen ... T OK\\n}) |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:29:5:29:12 | $("#id") |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:29:5:29:54 | $("#id" ... html')) |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:29:19:29:53 | e.dataT ... /html') |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:32:1:32:9 | $("#foo") |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:32:1:34:2 | $("#foo ... T OK\\n}) |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:33:5:33:12 | $("#id") |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:33:5:33:68 | $("#id" ... html')) |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:33:19:33:67 | e.origi ... /html') |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:37:15:37:43 | documen ... ("div") |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:42:22:42:55 | dataTra ... plain') |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:43:22:43:54 | dataTra ... /html') |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:46:9:46:26 | e.preventDefault() |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:48:21:48:49 | documen ... ('div') |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:54:9:54:33 | documen ... nd(div) |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:70:9:70:50 | e.dataT ... /html') |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:71:27:71:61 | e.dataT ... /html') |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:72:25:72:54 | documen ... 'html') |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:74:20:74:56 | contain ... ('img') |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:77:9:77:26 | dropItems.add(src) |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:79:16:79:58 | e.dataT ... plain') |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:80:25:80:60 | e.dataT ... plain') |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:82:11:82:41 | /^https ... inText) |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:83:9:83:32 | dropIte ... inText) |
+| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:87:24:87:44 | Array.f ... pItems) |
 | autogenerated/Xss/DomBasedXss/encodeuri.js:3:3:3:58 | $('<a h ... k</a>') |
 | autogenerated/Xss/DomBasedXss/encodeuri.js:3:19:3:41 | encodeU ... nt(loc) |
 | autogenerated/Xss/DomBasedXss/event-handler-receiver.js:1:1:1:32 | documen ... my-id') |
@@ -1017,6 +1329,28 @@
 | autogenerated/Xss/DomBasedXss/jquery.js:15:19:15:60 | decodeU ... search) |
 | autogenerated/Xss/DomBasedXss/jquery.js:16:19:16:64 | decodeU ... ring()) |
 | autogenerated/Xss/DomBasedXss/jquery.js:16:38:16:63 | window. ... tring() |
+| autogenerated/Xss/DomBasedXss/jquery.js:19:3:19:9 | $(hash) |
+| autogenerated/Xss/DomBasedXss/jquery.js:21:3:21:22 | $(hash.substring(1)) |
+| autogenerated/Xss/DomBasedXss/jquery.js:21:5:21:21 | hash.substring(1) |
+| autogenerated/Xss/DomBasedXss/jquery.js:22:3:22:26 | $(hash. ... 1, 10)) |
+| autogenerated/Xss/DomBasedXss/jquery.js:22:5:22:25 | hash.su ... (1, 10) |
+| autogenerated/Xss/DomBasedXss/jquery.js:23:3:23:19 | $(hash.substr(1)) |
+| autogenerated/Xss/DomBasedXss/jquery.js:23:5:23:18 | hash.substr(1) |
+| autogenerated/Xss/DomBasedXss/jquery.js:24:3:24:18 | $(hash.slice(1)) |
+| autogenerated/Xss/DomBasedXss/jquery.js:24:5:24:17 | hash.slice(1) |
+| autogenerated/Xss/DomBasedXss/jquery.js:25:3:25:26 | $(hash. ... 0, 10)) |
+| autogenerated/Xss/DomBasedXss/jquery.js:25:5:25:25 | hash.su ... (0, 10) |
+| autogenerated/Xss/DomBasedXss/jquery.js:27:3:27:26 | $(hash. ... ', '')) |
+| autogenerated/Xss/DomBasedXss/jquery.js:27:5:27:25 | hash.re ... #', '') |
+| autogenerated/Xss/DomBasedXss/jquery.js:28:3:28:44 | $(windo ... ', '')) |
+| autogenerated/Xss/DomBasedXss/jquery.js:28:5:28:43 | window. ... ?', '') |
+| autogenerated/Xss/DomBasedXss/jquery.js:29:3:29:26 | $(hash. ... ', '')) |
+| autogenerated/Xss/DomBasedXss/jquery.js:29:5:29:25 | hash.re ... !', '') |
+| autogenerated/Xss/DomBasedXss/jquery.js:30:3:30:29 | $(hash. ... ', '')) |
+| autogenerated/Xss/DomBasedXss/jquery.js:30:5:30:28 | hash.re ... h', '') |
+| autogenerated/Xss/DomBasedXss/jquery.js:32:3:32:18 | $(hash + 'blah') |
+| autogenerated/Xss/DomBasedXss/jquery.js:33:3:33:18 | $('blah' + hash) |
+| autogenerated/Xss/DomBasedXss/jquery.js:34:3:34:26 | $('<b>' ... '</b>') |
 | autogenerated/Xss/DomBasedXss/jwt-server.js:1:15:1:32 | require('express') |
 | autogenerated/Xss/DomBasedXss/jwt-server.js:2:11:2:19 | express() |
 | autogenerated/Xss/DomBasedXss/jwt-server.js:6:1:13:2 | app.get ...  });\\n}) |
@@ -1149,6 +1483,12 @@
 | autogenerated/Xss/DomBasedXss/translate.js:11:3:11:22 | $('translated-term') |
 | autogenerated/Xss/DomBasedXss/translate.js:11:3:11:64 | $('tran ... erm')]) |
 | autogenerated/Xss/DomBasedXss/translate.js:11:39:11:62 | searchP ... 'term') |
+| autogenerated/Xss/DomBasedXss/trusted-types.js:2:21:2:74 | trusted ... => x }) |
+| autogenerated/Xss/DomBasedXss/trusted-types.js:3:5:3:35 | policy1 ... w.name) |
+| autogenerated/Xss/DomBasedXss/trusted-types.js:5:21:5:79 | trusted ... afe' }) |
+| autogenerated/Xss/DomBasedXss/trusted-types.js:6:5:6:35 | policy2 ... w.name) |
+| autogenerated/Xss/DomBasedXss/trusted-types.js:8:21:8:74 | trusted ... => x }) |
+| autogenerated/Xss/DomBasedXss/trusted-types.js:9:5:9:30 | policy3 ... 'safe') |
 | autogenerated/Xss/DomBasedXss/tst3.js:1:11:1:40 | documen ... ("foo") |
 | autogenerated/Xss/DomBasedXss/tst3.js:2:12:2:75 | JSON.pa ... tr(1))) |
 | autogenerated/Xss/DomBasedXss/tst3.js:2:23:2:74 | decodeU ... str(1)) |
@@ -1364,6 +1704,45 @@
 | autogenerated/Xss/DomBasedXss/tst.js:432:3:432:11 | $("#foo") |
 | autogenerated/Xss/DomBasedXss/tst.js:432:3:432:44 | $("#foo ... g, '')) |
 | autogenerated/Xss/DomBasedXss/tst.js:432:18:432:43 | target. ... /g, '') |
+| autogenerated/Xss/DomBasedXss/tst.js:441:2:441:39 | new Ele ... source) |
+| autogenerated/Xss/DomBasedXss/tst.js:442:2:442:41 | new Ele ... ource}) |
+| autogenerated/Xss/DomBasedXss/tst.js:443:2:443:47 | new Ele ... source) |
+| autogenerated/Xss/DomBasedXss/tst.js:444:2:444:51 | new Ele ... ource}) |
+| autogenerated/Xss/DomBasedXss/tst.js:445:2:445:38 | new Ele ... source) |
+| autogenerated/Xss/DomBasedXss/tst.js:449:17:449:39 | require ... -html') |
+| autogenerated/Xss/DomBasedXss/tst.js:455:3:455:11 | $("#foo") |
+| autogenerated/Xss/DomBasedXss/tst.js:455:3:455:24 | $("#foo ... source) |
+| autogenerated/Xss/DomBasedXss/tst.js:456:3:456:11 | $("#foo") |
+| autogenerated/Xss/DomBasedXss/tst.js:456:3:456:43 | $("#foo ... ource)) |
+| autogenerated/Xss/DomBasedXss/tst.js:456:18:456:42 | ansiToH ... source) |
+| autogenerated/Xss/DomBasedXss/tst.js:462:15:462:48 | documen ... table') |
+| autogenerated/Xss/DomBasedXss/tst.js:464:13:464:31 | table.insertRow(-1) |
+| autogenerated/Xss/DomBasedXss/tst.js:466:14:466:29 | row.insertCell() |
+| autogenerated/Xss/DomBasedXss/tst.js:471:13:471:46 | documen ... bstr(1) |
+| autogenerated/Xss/DomBasedXss/tst.js:473:3:473:23 | $("<a>" ... : url}) |
+| autogenerated/Xss/DomBasedXss/tst.js:473:3:473:40 | $("<a>" ... "body") |
+| autogenerated/Xss/DomBasedXss/tst.js:474:3:474:11 | $("#foo") |
+| autogenerated/Xss/DomBasedXss/tst.js:474:3:474:29 | $("#foo ... ", url) |
+| autogenerated/Xss/DomBasedXss/tst.js:475:3:475:11 | $("#foo") |
+| autogenerated/Xss/DomBasedXss/tst.js:475:3:475:29 | $("#foo ... : url}) |
+| autogenerated/Xss/DomBasedXss/tst.js:476:3:476:24 | $("<img ... : url}) |
+| autogenerated/Xss/DomBasedXss/tst.js:476:3:476:41 | $("<img ... "body") |
+| autogenerated/Xss/DomBasedXss/tst.js:477:3:477:37 | $("<a>" ... .href}) |
+| autogenerated/Xss/DomBasedXss/tst.js:477:3:477:54 | $("<a>" ... "body") |
+| autogenerated/Xss/DomBasedXss/tst.js:479:3:479:47 | $("<img ... + url}) |
+| autogenerated/Xss/DomBasedXss/tst.js:479:3:479:64 | $("<img ... "body") |
+| autogenerated/Xss/DomBasedXss/tst.js:481:3:481:57 | $("<img ... ("/")}) |
+| autogenerated/Xss/DomBasedXss/tst.js:481:3:481:74 | $("<img ... "body") |
+| autogenerated/Xss/DomBasedXss/tst.js:481:20:481:55 | ["http: ... in("/") |
+| autogenerated/Xss/DomBasedXss/tst.js:483:7:483:32 | url.sta ... ps://") |
+| autogenerated/Xss/DomBasedXss/tst.js:484:5:484:26 | $("<img ... : url}) |
+| autogenerated/Xss/DomBasedXss/tst.js:484:5:484:43 | $("<img ... "body") |
+| autogenerated/Xss/DomBasedXss/tst.js:486:5:486:26 | $("<img ... : url}) |
+| autogenerated/Xss/DomBasedXss/tst.js:486:5:486:43 | $("<img ... "body") |
+| autogenerated/Xss/DomBasedXss/tst.js:489:3:489:38 | window. ... str(1)) |
+| autogenerated/Xss/DomBasedXss/tst.js:489:15:489:37 | locatio ... bstr(1) |
+| autogenerated/Xss/DomBasedXss/tst.js:491:3:491:46 | navigat ... str(1)) |
+| autogenerated/Xss/DomBasedXss/tst.js:491:23:491:45 | locatio ... bstr(1) |
 | autogenerated/Xss/DomBasedXss/typeahead.js:5:3:5:28 | autocom ... alize() |
 | autogenerated/Xss/DomBasedXss/typeahead.js:6:3:6:17 | $('.typeahead') |
 | autogenerated/Xss/DomBasedXss/typeahead.js:6:3:13:4 | $('.typ ...  }\\n  }) |
@@ -1403,12 +1782,30 @@
 | autogenerated/Xss/DomBasedXss/xmlRequest.js:9:9:9:40 | $("#myT ... essage) |
 | autogenerated/Xss/DomBasedXss/xmlRequest.js:12:9:12:18 | xhr.send() |
 | autogenerated/Xss/DomBasedXss/xmlRequest.js:14:9:14:26 | console.log(error) |
+| autogenerated/Xss/DomBasedXss/xmlRequest.js:18:1:18:11 | $(document) |
+| autogenerated/Xss/DomBasedXss/xmlRequest.js:18:1:24:2 | $(docum ... ces\\n\\n}) |
+| autogenerated/Xss/DomBasedXss/xmlRequest.js:19:17:19:30 | require('got') |
+| autogenerated/Xss/DomBasedXss/xmlRequest.js:20:24:20:48 | got.get ... rl }}") |
+| autogenerated/Xss/DomBasedXss/xmlRequest.js:21:18:21:38 | JSON.pa ... p.body) |
+| autogenerated/Xss/DomBasedXss/xmlRequest.js:22:5:22:17 | $("#myThing") |
+| autogenerated/Xss/DomBasedXss/xmlRequest.js:22:5:22:36 | $("#myT ... essage) |
 | autogenerated/Xss/ExceptionXss/ajv.js:4:11:4:19 | express() |
 | autogenerated/Xss/ExceptionXss/ajv.js:7:1:7:83 | ajv.add ... lData') |
 | autogenerated/Xss/ExceptionXss/ajv.js:9:1:13:2 | app.pos ...    }\\n}) |
 | autogenerated/Xss/ExceptionXss/ajv.js:10:10:10:43 | ajv.val ... q.body) |
 | autogenerated/Xss/ExceptionXss/ajv.js:11:9:11:34 | res.sen ... Text()) |
 | autogenerated/Xss/ExceptionXss/ajv.js:11:18:11:33 | ajv.errorsText() |
+| autogenerated/Xss/ExceptionXss/ajv.js:15:13:15:26 | require("joi") |
+| autogenerated/Xss/ExceptionXss/ajv.js:16:19:16:30 | joi.object() |
+| autogenerated/Xss/ExceptionXss/ajv.js:16:19:19:2 | joi.obj ... ed()\\n}) |
+| autogenerated/Xss/ExceptionXss/ajv.js:16:19:19:22 | joi.obj ...  'age') |
+| autogenerated/Xss/ExceptionXss/ajv.js:17:11:17:22 | joi.string() |
+| autogenerated/Xss/ExceptionXss/ajv.js:17:11:17:33 | joi.str ... uired() |
+| autogenerated/Xss/ExceptionXss/ajv.js:18:10:18:21 | joi.number() |
+| autogenerated/Xss/ExceptionXss/ajv.js:18:10:18:32 | joi.num ... uired() |
+| autogenerated/Xss/ExceptionXss/ajv.js:21:1:26:2 | app.pos ...    }\\n}) |
+| autogenerated/Xss/ExceptionXss/ajv.js:22:17:22:44 | joiSche ... q.body) |
+| autogenerated/Xss/ExceptionXss/ajv.js:24:9:24:27 | res.send(val.error) |
 | autogenerated/Xss/ExceptionXss/exception-xss.js:5:3:5:12 | unknown(x) |
 | autogenerated/Xss/ExceptionXss/exception-xss.js:9:3:9:14 | unknown(foo) |
 | autogenerated/Xss/ExceptionXss/exception-xss.js:11:3:11:11 | $('myId') |
@@ -1589,6 +1986,8 @@
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:103:12:103:67 | markdow ... nknown) |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:103:12:103:84 | markdow ... q.body) |
 | autogenerated/Xss/ReflectedXss/ReflectedXss.js:103:27:103:53 | require ... -abbr') |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:106:12:106:26 | require('hapi') |
+| autogenerated/Xss/ReflectedXss/ReflectedXss.js:108:1:111:7 | hapi.ro ...     }}) |
 | autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:1:15:1:32 | require('express') |
 | autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:2:11:2:19 | express() |
 | autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:4:1:12:2 | app.get ... \\n  }\\n}) |
@@ -1708,6 +2107,11 @@
 | autogenerated/Xss/ReflectedXss/formatting.js:7:5:7:54 | res.sen ...  evil)) |
 | autogenerated/Xss/ReflectedXss/formatting.js:7:14:7:30 | require("printf") |
 | autogenerated/Xss/ReflectedXss/formatting.js:7:14:7:53 | require ... , evil) |
+| autogenerated/Xss/ReflectedXss/live-server.js:1:18:1:39 | require ... erver") |
+| autogenerated/Xss/ReflectedXss/live-server.js:6:5:6:51 | res.end ... html>`) |
+| autogenerated/Xss/ReflectedXss/live-server.js:9:1:13:2 | middlew ... T OK\\n}) |
+| autogenerated/Xss/ReflectedXss/live-server.js:12:5:12:51 | res.end ... html>`) |
+| autogenerated/Xss/ReflectedXss/live-server.js:18:1:18:24 | liveSer ... params) |
 | autogenerated/Xss/ReflectedXss/pages/api/myapi.js:2:5:2:21 | res.send(req.url) |
 | autogenerated/Xss/ReflectedXss/partial.js:1:15:1:32 | require('express') |
 | autogenerated/Xss/ReflectedXss/partial.js:2:18:2:38 | require ... score') |
@@ -1756,6 +2160,43 @@
 | autogenerated/Xss/ReflectedXss/tst2.js:18:3:18:13 | res.send(p) |
 | autogenerated/Xss/ReflectedXss/tst2.js:21:5:21:15 | res.send(p) |
 | autogenerated/Xss/ReflectedXss/tst2.js:23:5:23:15 | res.send(p) |
+| autogenerated/Xss/ReflectedXss/tst2.js:27:15:27:30 | require('clone') |
+| autogenerated/Xss/ReflectedXss/tst2.js:29:1:38:2 | app.get ... T OK\\n}) |
+| autogenerated/Xss/ReflectedXss/tst2.js:34:15:34:24 | clone(obj) |
+| autogenerated/Xss/ReflectedXss/tst2.js:36:3:36:13 | res.send(p) |
+| autogenerated/Xss/ReflectedXss/tst2.js:37:3:37:19 | res.send(other.p) |
+| autogenerated/Xss/ReflectedXss/tst2.js:40:29:40:59 | require ... cript') |
+| autogenerated/Xss/ReflectedXss/tst2.js:42:1:52:2 | app.get ... T OK\\n}) |
+| autogenerated/Xss/ReflectedXss/tst2.js:45:20:45:41 | seriali ... ript(p) |
+| autogenerated/Xss/ReflectedXss/tst2.js:47:3:47:22 | res.send(serialized) |
+| autogenerated/Xss/ReflectedXss/tst2.js:49:16:49:53 | seriali ...  true}) |
+| autogenerated/Xss/ReflectedXss/tst2.js:51:3:51:18 | res.send(unsafe) |
+| autogenerated/Xss/ReflectedXss/tst2.js:54:16:54:32 | require('fclone') |
+| autogenerated/Xss/ReflectedXss/tst2.js:56:1:65:2 | app.get ... T OK\\n}) |
+| autogenerated/Xss/ReflectedXss/tst2.js:61:15:61:25 | fclone(obj) |
+| autogenerated/Xss/ReflectedXss/tst2.js:63:3:63:13 | res.send(p) |
+| autogenerated/Xss/ReflectedXss/tst2.js:64:3:64:19 | res.send(other.p) |
+| autogenerated/Xss/ReflectedXss/tst2.js:67:12:67:32 | require ... cycle') |
+| autogenerated/Xss/ReflectedXss/tst2.js:68:1:77:2 | app.get ... T OK\\n}) |
+| autogenerated/Xss/ReflectedXss/tst2.js:73:15:73:44 | jc.retr ... e(obj)) |
+| autogenerated/Xss/ReflectedXss/tst2.js:73:29:73:43 | jc.decycle(obj) |
+| autogenerated/Xss/ReflectedXss/tst2.js:75:3:75:13 | res.send(p) |
+| autogenerated/Xss/ReflectedXss/tst2.js:76:3:76:19 | res.send(other.p) |
+| autogenerated/Xss/ReflectedXss/tst2.js:79:18:79:37 | require('sort-keys') |
+| autogenerated/Xss/ReflectedXss/tst2.js:81:1:90:2 | app.get ... T OK\\n}) |
+| autogenerated/Xss/ReflectedXss/tst2.js:86:15:86:27 | sortKeys(obj) |
+| autogenerated/Xss/ReflectedXss/tst2.js:88:3:88:13 | res.send(p) |
+| autogenerated/Xss/ReflectedXss/tst2.js:89:3:89:19 | res.send(other.p) |
+| autogenerated/Xss/ReflectedXss/tst3.js:1:15:1:32 | require('express') |
+| autogenerated/Xss/ReflectedXss/tst3.js:3:11:3:19 | express() |
+| autogenerated/Xss/ReflectedXss/tst3.js:4:1:4:26 | app.ena ... ed-by') |
+| autogenerated/Xss/ReflectedXss/tst3.js:4:1:4:50 | app.ena ... ed-by') |
+| autogenerated/Xss/ReflectedXss/tst3.js:4:1:7:2 | app.ena ... T OK\\n}) |
+| autogenerated/Xss/ReflectedXss/tst3.js:6:3:6:13 | res.send(p) |
+| autogenerated/Xss/ReflectedXss/tst3.js:9:18:9:36 | require("prettier") |
+| autogenerated/Xss/ReflectedXss/tst3.js:10:1:13:2 | app.pos ... T OK\\n}) |
+| autogenerated/Xss/ReflectedXss/tst3.js:11:16:11:74 | prettie ... bel" }) |
+| autogenerated/Xss/ReflectedXss/tst3.js:12:3:12:16 | res.send(code) |
 | autogenerated/Xss/StoredXss/xss-through-filenames.js:1:12:1:26 | require('http') |
 | autogenerated/Xss/StoredXss/xss-through-filenames.js:2:10:2:22 | require('fs') |
 | autogenerated/Xss/StoredXss/xss-through-filenames.js:4:15:4:32 | require('express') |
@@ -1783,6 +2224,13 @@
 | autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:3:3:3:42 | define( ... actory) |
 | autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:8:5:8:43 | $("<spa ... span>") |
 | autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:8:18:8:30 | $.trim("foo") |
+| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:12:5:12:13 | $("#foo") |
+| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:12:5:12:54 | $("#foo ... span>") |
+| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:14:5:14:13 | $("#foo") |
+| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:14:5:14:48 | $("#foo ... span>") |
+| autogenerated/Xss/UnsafeHtmlConstruction/lib2/index.ts:3:5:3:35 | documen ... #html") |
+| autogenerated/Xss/UnsafeHtmlConstruction/lib2/src/MyNode.ts:3:5:3:35 | documen ... #html") |
+| autogenerated/Xss/UnsafeHtmlConstruction/lib/src/MyNode.ts:3:5:3:35 | documen ... #html") |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:3:5:3:35 | documen ... #html") |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:7:17:7:62 | new DOM ... t/xml") |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:8:5:8:34 | documen ... "#xml") |
@@ -1815,6 +2263,32 @@
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:69:41:69:60 | attrVal.indexOf("'") |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:70:9:70:37 | documen ... ("#id") |
 | autogenerated/Xss/UnsafeHtmlConstruction/main.js:76:5:76:39 | documen ... plate") |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:81:9:81:17 | $("#foo") |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:81:9:81:50 | $("#foo ... span>") |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:83:9:83:17 | $("#foo") |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:83:9:83:50 | $("#foo ... span>") |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:85:9:85:17 | $("#foo") |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:85:9:85:50 | $("#foo ... span>") |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:94:5:94:13 | $("#foo") |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:94:5:94:33 | $("#foo ... TML(x)) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:97:19:97:36 | require('mermaid') |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:99:5:101:6 | myMerma ... \\n    }) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:100:9:100:17 | $("#foo") |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:100:9:100:27 | $("#foo").html(svg) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:103:5:103:13 | $("#foo") |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:103:5:103:45 | $("#foo ... d", x)) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:103:20:103:44 | myMerma ... id", x) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:105:5:107:6 | mermaid ... \\n    }) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:106:9:106:17 | $("#foo") |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:106:9:106:27 | $("#foo").html(svg) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:109:5:109:13 | $("#foo") |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:109:5:109:43 | $("#foo ... d", x)) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:109:20:109:42 | mermaid ... id", x) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:111:5:113:6 | mermaid ... \\n    }) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:112:9:112:17 | $("#foo") |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:112:9:112:27 | $("#foo").html(svg) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:117:18:117:35 | markdown.render(s) |
+| autogenerated/Xss/UnsafeHtmlConstruction/main.js:118:5:118:39 | documen ... kdown") |
 | autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:7:20:7:65 | documen ... ent("") |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:3:3:3:12 | $(options) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:5:3:5:19 | $(options.target) |
@@ -1882,6 +2356,10 @@
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:179:3:179:19 | $(options.target) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:182:3:182:13 | $(document) |
 | autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:182:3:182:34 | $(docum ... target) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:187:11:187:44 | doSomet ... ments ) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:190:13:190:35 | $.exten ... tions ) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:192:16:192:30 | $( options.of ) |
+| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:193:3:193:21 | console.log(target) |
 | autogenerated/Xss/XssThroughDom/forms.js:9:17:9:24 | $("#id") |
 | autogenerated/Xss/XssThroughDom/forms.js:9:17:9:41 | $("#id" ... es.foo) |
 | autogenerated/Xss/XssThroughDom/forms.js:12:17:12:24 | $("#id") |
@@ -2030,6 +2508,384 @@
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:37:90:64 | $(this) ... rCase() |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:37:90:83 | $(this) ... g, '-') |
 | autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:37:90:106 | $(this) ... +/g,'') |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:93:2:93:9 | $("#id") |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:93:2:93:47 | $("#id" ... .value) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:93:16:93:24 | $("#foo") |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:93:16:93:37 | $("#foo ... ".bla") |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:96:3:96:10 | $("#id") |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:96:3:96:48 | $("#id" ... .value) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:96:17:96:25 | $("#foo") |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:96:17:96:38 | $("#foo ... ".bla") |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:102:13:102:20 | $("#id") |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:102:13:102:27 | $("#id").get(0) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:109:3:109:10 | $("#id") |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:109:3:109:17 | $("#id").get(0) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:114:17:114:48 | documen ... #link") |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:115:2:115:9 | $("#id") |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:115:2:115:19 | $("#id").html(src) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:117:5:117:12 | $("#id") |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:117:5:117:29 | $("#id" ... ", src) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:119:5:119:18 | $("input.foo") |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:120:9:120:16 | $("#id") |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:120:9:120:46 | $("#id" ... ].name) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:122:9:122:19 | $("img#id") |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:122:9:122:72 | $("img# ... es[0])) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:122:33:122:71 | URL.cre ... les[0]) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:127:13:127:39 | documen ... nt('a') |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:128:21:128:34 | getSelection() |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:129:21:129:43 | documen ... ction() |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:130:17:130:37 | wSelect ... tring() |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:130:42:130:62 | dSelect ... tring() |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:132:2:132:9 | $("#id") |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:132:2:132:24 | $("#id" ... nkText) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:136:17:136:35 | require("cash-dom") |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:139:17:139:48 | documen ... #link") |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:140:2:140:12 | cash("#id") |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:140:2:140:22 | cash("# ... ml(src) |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:141:5:141:18 | cashDom("#id") |
+| autogenerated/Xss/XssThroughDom/xss-through-dom.js:141:5:141:28 | cashDom ... ml(src) |
+| autogenerated/XssThroughDom/BadTagFilter/tst.js:25:1:25:18 | doFilters(filters) |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:2:10:2:34 | s.repla ... quot;") |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:2:10:3:34 | s.repla ... apos;") |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:2:10:4:33 | s.repla ... &amp;") |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:8:10:8:33 | s.repla ... &amp;") |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:8:10:9:34 | s.repla ... quot;") |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:8:10:10:34 | s.repla ... apos;") |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:14:10:14:35 | s.repla ... , "\\"") |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:14:10:15:34 | s.repla ... g, "'") |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:14:10:16:33 | s.repla ... g, "&") |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:20:10:20:33 | s.repla ... g, "&") |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:20:10:21:35 | s.repla ... , "\\"") |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:20:10:22:34 | s.repla ... g, "'") |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:26:12:26:37 | code.re ... '&lt;') |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:26:12:26:59 | code.re ... '&gt;') |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:26:12:26:94 | code.re ... &amp;') |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:30:10:30:33 | s.repla ... g, "&") |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:30:10:31:43 | s.repla ... "else") |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:30:10:32:34 | s.repla ... g, "'") |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:38:9:38:34 | s.repla ... , "\\"") |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:38:9:39:33 | s.repla ... g, "'") |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:38:9:40:32 | s.repla ... g, "&") |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:41:5:41:15 | res.push(s) |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:47:7:47:30 | s.repla ... g, "&") |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:48:7:48:32 | s.repla ... , "\\"") |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:49:10:49:34 | s.repla ... g, "'") |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:53:10:53:33 | s.repla ... , '\\\\') |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:53:10:54:33 | s.repla ... , '\\'') |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:53:10:55:33 | s.repla ... , '\\"') |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:59:7:59:28 | s.repla ...  '%26') |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:60:7:60:28 | s.repla ...  '%25') |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:68:10:68:39 | s.repla ... quot;") |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:68:10:69:39 | s.repla ... apos;") |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:68:10:70:38 | s.repla ... &amp;") |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:79:10:79:43 | s.repla ... epl[c]) |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:79:10:79:66 | s.repla ... &amp;") |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:84:10:84:33 | s.repla ... , "\\\\") |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:84:10:84:56 | s.repla ... "\\\\\\\\") |
+| autogenerated/XssThroughDom/DoubleEscaping/tst.js:90:16:90:46 | capture ... "\\\\\\\\") |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:6:2:9:2 | html.re ... nded\\n\\t) |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:10:2:10:68 | html.re ... panded) |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:13:2:16:2 | html.re ... nded\\n\\t) |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:17:2:17:48 | html.re ... panded) |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:20:2:23:2 | html.re ... nded\\n\\t) |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:24:2:24:49 | html.re ... panded) |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:26:2:26:39 | html.re ... panded) |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:30:2:30:37 | html.re ... panded) |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:35:2:35:44 | html.re ... nded()) |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:36:2:36:40 | html.re ... ething) |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:37:2:37:32 | default ... ething) |
+| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:38:2:38:30 | getPatt ... ething) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:3:13:3:57 | content ... gi, "") |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:4:13:4:47 | content ... /g, "") |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:5:13:5:49 | content ... /g, "") |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:9:13:9:47 | content ... gi, "") |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:10:13:10:49 | content ... /g, "") |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:11:13:11:51 | content ... /g, "") |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:19:3:19:35 | respons ... pt, "") |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:25:10:25:40 | text.re ... /g, "") |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:29:10:29:33 | /<!--\|- ... t(text) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:30:12:30:42 | text.re ... /g, "") |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:38:8:38:30 | id.repl ... /g, "") |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:42:8:42:45 | id.repl ... /g, "") |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:49:13:49:43 | req.url ... EL, "") |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:58:22:58:43 | req.url ... ng(beg) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:64:7:64:73 | x.repla ... /g, "") |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:66:7:66:56 | x.repla ... /g, "") |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:68:7:68:34 | x.repla ... /g, "") |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:70:7:70:36 | x.repla ... /g, "") |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:71:7:71:30 | x.repla ... /g, "") |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:72:7:72:45 | x.repla ... gi, "") |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:73:7:73:35 | x.repla ... gi, "") |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:75:7:75:37 | x.repla ... gm, "") |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:76:7:76:35 | x.repla ... +/, "") |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:77:7:77:36 | x.repla ... /g, "") |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:79:7:79:49 | x.repla ... , "\\n") |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:81:7:81:58 | x.repla ... /g, "") |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:82:7:82:50 | x.repla ... /g, "") |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:83:7:83:63 | x.repla ... gi, "") |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:85:7:85:48 | x.repla ... /g, "") |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:87:7:87:47 | x.repla ... gi, "") |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:89:7:89:35 | x.repla ... /g, "") |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:92:7:96:4 | x.repla ... ";\\n  }) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:98:7:98:53 | x.repla ... gi, "") |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:100:7:100:28 | x.repla ... /g, "") |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:101:7:101:30 | x.repla ... /g, "") |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:102:7:102:30 | x.repla ... /g, "") |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:104:7:104:58 | x.repla ... gi, "") |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:106:7:106:64 | x.repla ... gi, "") |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:107:7:107:62 | x.repla ... /g, "") |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:108:7:108:75 | x.repla ... gm, "") |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:109:7:109:58 | x.repla ... gi, "") |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:110:7:110:50 | x.repla ... gi, "") |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:111:7:111:32 | x.repla ... /g, "") |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:112:7:112:50 | x.repla ... /g, "") |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:113:7:113:41 | x.repla ... /g, "") |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:115:10:115:23 | x.indexOf(".") |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:116:9:117:27 | x\\n      ... //, "") |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:116:9:118:29 | x\\n      ... /, "/") |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:116:9:119:36 | x\\n      ... //, "") |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:122:7:122:35 | x.repla ... +/, "") |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:124:7:124:53 | x.repla ... /g, "") |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:126:7:127:25 | x\\n    . ... //, "") |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:126:7:128:27 | x\\n    . ... /, "/") |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:126:7:129:34 | x\\n    . ... //, "") |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:135:2:135:44 | content ... gi, "") |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:136:2:136:46 | content ... gi, "") |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:137:2:137:48 | content ... gi, "") |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:138:2:138:48 | content ... gi, "") |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:142:13:142:62 | content ... gi, "") |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:143:13:143:56 | content ... /g, '') |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:144:13:144:91 | content ... /g, '') |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:145:13:145:90 | content ... /g, '') |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:146:13:146:43 | content ... /g, "") |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:148:3:148:20 | n.cloneNode(false) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:148:3:148:99 | n.clone ... gi, '') |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:148:3:150:4 | n.clone ... );\\n  }) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:149:5:149:41 | o.push( ... e : a}) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:152:3:152:20 | n.cloneNode(false) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:152:3:152:99 | n.clone ... gi, '') |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:152:3:154:4 | n.clone ... );\\n  }) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:153:5:153:41 | o.push( ... e : a}) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:1:15:1:32 | require('express') |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:2:11:2:19 | express() |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:5:10:5:27 | s.replace("'", "") |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:9:10:9:27 | s.replace(/'/, "") |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:13:10:13:31 | s.repla ...  "\\\\'") |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:17:10:17:32 | s.repla ... "\\\\$&") |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:21:10:21:35 | s.repla ... "\\\\$&") |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:25:10:25:37 | s.repla ... "\\\\$1") |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:29:10:29:36 | s.repla ... "\\\\$1") |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:33:10:33:27 | s.replace('\|', '') |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:37:10:37:32 | s.repla ... "\\\\\\"") |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:41:10:41:30 | s.repla ...  "%2F") |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:45:10:45:30 | s.repla ... ", "%") |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:49:10:49:27 | s.replace(`'`, "") |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:53:10:53:27 | s.replace("'", ``) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:57:10:57:27 | s.replace(`'`, ``) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:61:10:61:32 | s.repla ... "", "") |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:65:10:65:32 | s.repla ... " + "") |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:69:10:69:37 | s.repla ... " + "") |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:73:10:73:23 | s.indexOf("'") |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:74:9:74:26 | s.replace("'", "") |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:79:10:79:23 | s.indexOf("'") |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:80:9:80:26 | s.replace(/'/, "") |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:85:10:85:36 | s.repla ... id10t") |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:89:10:89:32 | s.repla ... "\\\\d+") |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:93:10:93:33 | s.repla ... "\\\\\\\\") |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:93:10:93:58 | s.repla ... "\\\\$&") |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:97:10:97:35 | s.repla ... '\\\\\\\\') |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:97:10:97:59 | s.repla ...  '\\\\"') |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:101:7:101:32 | s.repla ... '\\\\\\\\') |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:102:10:102:34 | s.repla ...  '\\\\"') |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:106:10:106:33 | s.repla ... '\\\\$&') |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:110:10:110:38 | s.repla ... '\\\\$&') |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:114:7:114:23 | JSON.stringify(s) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:115:7:115:20 | s.slice(1, -1) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:116:7:116:28 | s.repla ... g, '"') |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:117:7:117:28 | s.repla ...  "\\\\'") |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:122:10:122:30 | s.repla ... , '\\u1f4a9\\udca9') |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:126:10:126:30 | s.repla ... , "42") |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:130:2:130:19 | s.replace('[', '') |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:130:2:130:36 | s.repla ... ]', '') |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:131:2:131:19 | s.replace('(', '') |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:131:2:131:36 | s.repla ... )', '') |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:132:2:132:19 | s.replace('{', '') |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:132:2:132:36 | s.repla ... }', '') |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:133:2:133:19 | s.replace('<', '') |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:133:2:133:36 | s.repla ... >', '') |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:135:2:135:22 | s.repla ...  '\\\\[') |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:135:2:135:42 | s.repla ...  '\\\\]') |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:136:2:136:22 | s.repla ...  '\\\\{') |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:136:2:136:42 | s.repla ...  '\\\\}') |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:138:6:138:23 | s.replace('[', '') |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:139:6:139:23 | s.replace(']', '') |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:140:2:140:19 | s.replace(/{/, '') |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:140:2:140:36 | s.repla ... }/, '') |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:141:2:141:19 | s.replace(']', '') |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:141:2:141:36 | s.repla ... [', '') |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:146:2:146:25 | require ... ocess") |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:146:2:146:49 | require ... emacs") |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:146:2:146:60 | require ... tring() |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:146:2:146:78 | require ... n", "") |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:148:2:148:20 | x.replace("\\n", "") |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:148:2:148:34 | x.repla ... e(x, y) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:149:2:149:16 | x.replace(x, y) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:149:2:149:34 | x.repla ... n", "") |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:152:1:189:2 | app.get ... ed);\\n}) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:153:19:153:32 | req.param("p") |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:193:9:193:31 | s.repla ... ct, "") |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:197:2:197:19 | s.replace('"', '') |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:197:2:197:36 | s.repla ... "', '') |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:198:2:198:19 | s.replace("'", "") |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:198:2:198:36 | s.repla ... '", "") |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:202:10:202:30 | p.repla ... /", "") |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:206:2:206:4 | s() |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:206:2:206:24 | s().rep ... ]/g,'') |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:207:2:207:4 | s() |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:207:2:207:26 | s().rep ... /g, '') |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:208:2:208:4 | s() |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:208:2:208:26 | s().rep ... /g, '') |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:209:2:209:4 | s() |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:209:2:209:22 | s().rep ... /g, '') |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:209:2:209:40 | s().rep ... /g, '') |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:210:2:210:4 | s() |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:210:2:210:22 | s().rep ... /g, '') |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:210:2:210:40 | s().rep ... /g, '') |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:210:2:210:58 | s().rep ... /g, '') |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:211:2:211:4 | s() |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:211:2:211:22 | s().rep ... /g, '') |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:211:2:211:40 | s().rep ... /g, '') |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:211:2:211:58 | s().rep ... /g, '') |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:212:2:212:4 | s() |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:212:2:212:22 | s().rep ... /g, '') |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:212:2:212:40 | s().rep ... /g, '') |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:212:2:212:58 | s().rep ... /g, '') |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:214:10:214:12 | s() |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:214:10:214:30 | s().rep ... /g, '') |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:215:6:215:24 | s.replace(/>/g, '') |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:216:2:216:4 | s() |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:216:2:216:26 | s().rep ... '&lt;') |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:216:2:216:47 | s().rep ...  '&gt') |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:216:2:216:70 | s().rep ... &amp;') |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:216:2:216:93 | s().rep ... &#34;') |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:217:2:217:4 | s() |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:217:2:217:26 | s().rep ... '&lt;') |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:217:2:217:47 | s().rep ...  '&gt') |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:217:2:217:70 | s().rep ... &amp;') |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:217:2:217:93 | s().rep ... &#39;') |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:219:2:219:4 | s() |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:219:2:219:26 | s().rep ... '&lt;') |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:219:2:219:47 | s().rep ...  '&gt') |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:219:2:219:89 | s().rep ... . */ }) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:221:2:221:4 | s() |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:221:2:221:27 | s().rep ... ]/g,'') |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:223:2:223:4 | s() |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:223:2:223:26 | s().rep ... '&lt;') |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:223:2:223:48 | s().rep ... '&gt;') |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:223:2:223:72 | s().rep ... quot;') |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:223:2:223:107 | s().rep ... &amp;') |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:225:2:225:4 | s() |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:225:2:225:54 | s().rep ... &amp;') |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:225:2:225:76 | s().rep ... '&lt;') |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:225:2:225:98 | s().rep ... '&gt;') |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:225:2:225:122 | s().rep ... quot;') |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:225:2:225:146 | s().rep ... apos;') |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:227:2:227:4 | s() |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:227:2:227:36 | s().rep ... /g, '') |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:229:2:229:4 | s() |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:229:2:229:25 | s().rep ... /g,'_') |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:231:2:231:4 | s() |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:231:2:231:26 | s().rep ... "&gt;") |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:233:2:233:4 | s() |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:233:2:233:67 | s().rep ... /g, "") |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:235:2:235:4 | s() |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:235:2:235:24 | s().rep ... ]/g,'') |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:235:2:235:47 | s().rep ... /g, '') |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:237:2:237:4 | s() |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:237:2:237:24 | s().rep ... ]/g,'') |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:237:2:237:47 | s().rep ... /g, '') |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:239:2:239:4 | s() |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:239:2:239:24 | s().rep ... ]/g,'') |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:239:2:239:46 | s().rep ... /g, '') |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:243:9:243:11 | s() |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:243:9:243:31 | s().rep ... ]/g,'') |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:244:9:244:11 | s() |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:244:9:244:33 | s().rep ... /g, '') |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:245:9:245:11 | s() |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:245:9:245:33 | s().rep ... /g, '') |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:246:9:246:11 | s() |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:246:9:246:33 | s().rep ... ]/g,'') |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:247:9:247:11 | s() |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:247:9:247:31 | s().rep ... ]/g,'') |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:249:9:249:11 | s() |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:249:9:249:33 | s().rep ... ]/g,'') |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:250:9:250:11 | s() |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:250:9:250:33 | s().rep ... ]/g,'') |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:251:9:251:11 | s() |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:251:9:251:33 | s().rep ... ]/g,'') |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:253:21:253:23 | s() |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:253:21:253:45 | s().rep ... /g, '') |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:254:32:254:34 | s() |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:254:32:254:56 | s().rep ... /g, '') |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:255:26:255:28 | s() |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:255:26:255:50 | s().rep ... /g, '') |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:256:15:256:17 | s() |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:256:15:256:39 | s().rep ... /g, '') |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:261:10:261:37 | value.r ... &amp;') |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:261:10:261:59 | value.r ... '&lt;') |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:261:10:261:81 | value.r ... '&gt;') |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:264:32:264:74 | escapeH ... quot;') |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:266:18:266:26 | tag(node) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:266:30:266:53 | [].map. ... tr_str) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:266:30:266:53 | reflective call |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:266:30:266:62 | [].map. ... oin('') |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:270:61:270:63 | s() |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:270:61:270:85 | s().rep ... /g, '') |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:271:9:271:11 | s() |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:271:9:271:31 | s().rep ... ]/g,'') |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:271:9:271:55 | s().rep ... /g, '') |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:272:9:272:51 | encodeU ... /g,'')) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:272:28:272:30 | s() |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:272:28:272:50 | s().rep ... ]/g,'') |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:274:12:274:14 | s() |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:274:12:274:20 | s().val() |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:274:12:274:27 | s().val().trim() |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:274:12:274:50 | s().val ... g , '') |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:274:12:274:73 | s().val ... g , '') |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:274:12:274:94 | s().val ... g , '') |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:275:9:275:21 | arr.join(" ") |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:276:13:276:15 | s() |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:276:13:276:21 | s().val() |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:276:13:276:28 | s().val().trim() |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:276:13:276:51 | s().val ... g , '') |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:276:13:276:74 | s().val ... g , '') |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:276:13:276:95 | s().val ... g , '') |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:277:9:277:29 | arr2.re ... "/g,"") |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:278:9:278:22 | arr2.join(" ") |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:281:6:281:29 | x.repla ... &amp;') |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:282:6:282:28 | x.repla ... '&lt;') |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:282:6:282:50 | x.repla ... '&gt;') |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:284:6:284:30 | x.repla ... quot;') |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:289:7:289:30 | y.repla ... &amp;') |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:291:6:291:28 | y.repla ... '&lt;') |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:291:6:291:50 | y.repla ... '&gt;') |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:294:7:294:31 | y.repla ... quot;') |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:300:10:300:12 | s() |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:300:10:300:33 | s().rep ... ]/g,'') |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:301:10:301:12 | s() |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:301:10:301:32 | s().rep ... ]/g,'') |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:302:10:302:12 | s() |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:302:10:302:34 | s().rep ... ]/g,'') |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:303:10:303:12 | s() |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:303:10:303:34 | s().rep ... /g, '') |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:304:9:304:11 | s() |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:304:9:304:33 | s().rep ... ]/g,'') |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:305:10:305:12 | s() |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:305:10:305:34 | s().rep ... ]/g,'') |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:309:10:309:12 | s() |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:309:10:318:3 | s().rep ... ;";\\n\\t}) |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:320:9:320:11 | s() |
+| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:320:9:329:3 | s().rep ... ;";\\n\\t}) |
 | index.js:1:12:1:24 | require("fs") |
 | index.js:3:3:3:11 | unknown() |
 | index.js:4:3:4:12 | toString() |

From f67d0bc8c0453f920b1ca9380fb3e8200e50534a Mon Sep 17 00:00:00 2001
From: erik-krogh <erik-krogh@github.com>
Date: Thu, 15 Dec 2022 14:30:22 +0100
Subject: [PATCH 1414/1420] put the shared HostnameRegexp code in the shared
 regex pack

---
 config/identical-files.json                   |   5 -
 .../semmle/code/java/regex/RegexTreeView.qll  |   5 +
 .../security/regexp/HostnameRegexp.qll        |  19 ++
 .../Security/CWE-020/HostnameRegexpShared.qll | 199 +------------
 .../CWE-020/HostnameRegexpSpecific.qll        |   1 -
 .../CWE-020/IncompleteHostnameRegExp.ql       |   4 +-
 .../Security/CWE-020/MissingRegExpAnchor.ql   |  25 +-
 python/ql/lib/semmle/python/RegexTreeView.qll |   2 +-
 .../python/security/regexp/HostnameRegex.qll  |  20 ++
 .../Security/CWE-020/HostnameRegexpShared.qll | 200 +------------
 .../CWE-020/HostnameRegexpSpecific.qll        |   3 -
 .../CWE-020/IncompleteHostnameRegExp.ql       |   4 +-
 .../lib/codeql/ruby/regexp/RegExpTreeView.qll |   2 +-
 .../ruby/security/regexp/HostnameRegexp.qll   |  19 ++
 .../security/cwe-020/HostnameRegexpShared.qll | 200 +------------
 .../cwe-020/HostnameRegexpSpecific.qll        |   2 -
 .../cwe-020/IncompleteHostnameRegExp.ql       |   4 +-
 .../security/cwe-020/MissingRegExpAnchor.ql   |  23 +-
 shared/regex/codeql/regex/HostnameRegexp.qll  | 268 ++++++++++++++++++
 shared/regex/codeql/regex/RegexTreeView.qll   |  17 ++
 20 files changed, 369 insertions(+), 653 deletions(-)
 create mode 100644 javascript/ql/lib/semmle/javascript/security/regexp/HostnameRegexp.qll
 delete mode 100644 javascript/ql/src/Security/CWE-020/HostnameRegexpSpecific.qll
 create mode 100644 python/ql/lib/semmle/python/security/regexp/HostnameRegex.qll
 delete mode 100644 python/ql/src/Security/CWE-020/HostnameRegexpSpecific.qll
 create mode 100644 ruby/ql/lib/codeql/ruby/security/regexp/HostnameRegexp.qll
 delete mode 100644 ruby/ql/src/queries/security/cwe-020/HostnameRegexpSpecific.qll
 create mode 100644 shared/regex/codeql/regex/HostnameRegexp.qll

diff --git a/config/identical-files.json b/config/identical-files.json
index 5dbebe0329a..afef0a923d5 100644
--- a/config/identical-files.json
+++ b/config/identical-files.json
@@ -531,11 +531,6 @@
     "ruby/ql/lib/codeql/ruby/internal/ConceptsShared.qll",
     "javascript/ql/lib/semmle/javascript/internal/ConceptsShared.qll"
   ],
-  "Hostname Regexp queries": [
-    "javascript/ql/src/Security/CWE-020/HostnameRegexpShared.qll",
-    "python/ql/src/Security/CWE-020/HostnameRegexpShared.qll",
-    "ruby/ql/src/queries/security/cwe-020/HostnameRegexpShared.qll"
-  ],
   "ApiGraphModels": [
     "javascript/ql/lib/semmle/javascript/frameworks/data/internal/ApiGraphModels.qll",
     "ruby/ql/lib/codeql/ruby/frameworks/data/internal/ApiGraphModels.qll",
diff --git a/java/ql/lib/semmle/code/java/regex/RegexTreeView.qll b/java/ql/lib/semmle/code/java/regex/RegexTreeView.qll
index 1b01be0377b..d376f7d2388 100644
--- a/java/ql/lib/semmle/code/java/regex/RegexTreeView.qll
+++ b/java/ql/lib/semmle/code/java/regex/RegexTreeView.qll
@@ -558,6 +558,8 @@ module Impl implements RegexTreeViewSig {
     }
   }
 
+  class RegExpCharEscape = RegExpEscape;
+
   /**
    * A word boundary, that is, a regular expression term of the form `\b`.
    */
@@ -868,6 +870,9 @@ module Impl implements RegexTreeViewSig {
     predicate isNamedGroupOfLiteral(RegExpLiteral lit, string name) {
       lit = this.getLiteral() and name = this.getName()
     }
+
+    /** Holds if this is a capture group. */
+    predicate isCapture() { exists(this.getNumber()) }
   }
 
   /**
diff --git a/javascript/ql/lib/semmle/javascript/security/regexp/HostnameRegexp.qll b/javascript/ql/lib/semmle/javascript/security/regexp/HostnameRegexp.qll
new file mode 100644
index 00000000000..1922ad01bf1
--- /dev/null
+++ b/javascript/ql/lib/semmle/javascript/security/regexp/HostnameRegexp.qll
@@ -0,0 +1,19 @@
+/**
+ * Provides predicates for reasoning about regular expressions
+ * that match URLs and hostname patterns.
+ */
+
+private import javascript as JS
+private import semmle.javascript.security.regexp.RegExpTreeView::RegExpTreeView as TreeImpl
+private import semmle.javascript.Regexp as RegExp
+private import codeql.regex.HostnameRegexp as Shared
+
+private module Impl implements Shared::HostnameRegexpSig<TreeImpl> {
+  class DataFlowNode = JS::DataFlow::Node;
+
+  class RegExpPatternSource = RegExp::RegExpPatternSource;
+
+  string getACommonTld() { result = RegExp::RegExpPatterns::getACommonTld() }
+}
+
+import Shared::Make<TreeImpl, Impl>
diff --git a/javascript/ql/src/Security/CWE-020/HostnameRegexpShared.qll b/javascript/ql/src/Security/CWE-020/HostnameRegexpShared.qll
index 5e9bc406512..524be45c653 100644
--- a/javascript/ql/src/Security/CWE-020/HostnameRegexpShared.qll
+++ b/javascript/ql/src/Security/CWE-020/HostnameRegexpShared.qll
@@ -3,200 +3,5 @@
  * that match URLs and hostname patterns.
  */
 
-private import HostnameRegexpSpecific
-
-/**
- * Holds if the given constant is unlikely to occur in the origin part of a URL.
- */
-predicate isConstantInvalidInsideOrigin(RegExpConstant term) {
-  // Look for any of these cases:
-  // - A character that can't occur in the origin
-  // - Two dashes in a row
-  // - A colon that is not part of port or scheme separator
-  // - A slash that is not part of scheme separator
-  term.getValue().regexpMatch(".*(?:[^a-zA-Z0-9.:/-]|--|:[^0-9/]|(?<![/:]|^)/).*")
-}
-
-/** Holds if `term` is a dot constant of form `\.` or `[.]`. */
-predicate isDotConstant(RegExpTerm term) {
-  term.(RegExpCharEscape).getValue() = "."
-  or
-  exists(RegExpCharacterClass cls |
-    term = cls and
-    not cls.isInverted() and
-    cls.getNumChild() = 1 and
-    cls.getAChild().(RegExpConstant).getValue() = "."
-  )
-}
-
-/** Holds if `term` is a wildcard `.` or an actual `.` character. */
-predicate isDotLike(RegExpTerm term) {
-  term instanceof RegExpDot
-  or
-  isDotConstant(term)
-}
-
-/** Holds if `term` will only ever be matched against the beginning of the input. */
-predicate matchesBeginningOfString(RegExpTerm term) {
-  term.isRootTerm()
-  or
-  exists(RegExpTerm parent | matchesBeginningOfString(parent) |
-    term = parent.(RegExpSequence).getChild(0)
-    or
-    parent.(RegExpSequence).getChild(0) instanceof RegExpCaret and
-    term = parent.(RegExpSequence).getChild(1)
-    or
-    term = parent.(RegExpAlt).getAChild()
-    or
-    term = parent.(RegExpGroup).getAChild()
-  )
-}
-
-/**
- * Holds if the given sequence `seq` contains top-level domain preceded by a dot, such as `.com`,
- * excluding cases where this is at the very beginning of the regexp.
- *
- * `i` is bound to the index of the last child in the top-level domain part.
- */
-predicate hasTopLevelDomainEnding(RegExpSequence seq, int i) {
-  seq.getChild(i)
-      .(RegExpConstant)
-      .getValue()
-      .regexpMatch("(?i)" + RegExpPatterns::getACommonTld() + "(:\\d+)?([/?#].*)?") and
-  isDotLike(seq.getChild(i - 1)) and
-  not (i = 1 and matchesBeginningOfString(seq))
-}
-
-/**
- * Holds if the given regular expression term contains top-level domain preceded by a dot,
- * such as `.com`.
- */
-predicate hasTopLevelDomainEnding(RegExpSequence seq) { hasTopLevelDomainEnding(seq, _) }
-
-/**
- * Holds if `term` will always match a hostname, that is, all disjunctions contain
- * a hostname pattern that isn't inside a quantifier.
- */
-predicate alwaysMatchesHostname(RegExpTerm term) {
-  hasTopLevelDomainEnding(term, _)
-  or
-  // `localhost` is considered a hostname pattern, but has no TLD
-  term.(RegExpConstant).getValue().regexpMatch("\\blocalhost\\b")
-  or
-  not term instanceof RegExpAlt and
-  not term instanceof RegExpQuantifier and
-  alwaysMatchesHostname(term.getAChild())
-  or
-  alwaysMatchesHostnameAlt(term)
-}
-
-/** Holds if every child of `alt` contains a hostname pattern. */
-predicate alwaysMatchesHostnameAlt(RegExpAlt alt) {
-  alwaysMatchesHostnameAlt(alt, alt.getNumChild() - 1)
-}
-
-/**
- * Holds if the first `i` children of `alt` contains a hostname pattern.
- *
- * This is used instead of `forall` to avoid materializing the set of alternatives
- * that don't contains hostnames, which is much larger.
- */
-predicate alwaysMatchesHostnameAlt(RegExpAlt alt, int i) {
-  alwaysMatchesHostname(alt.getChild(0)) and i = 0
-  or
-  alwaysMatchesHostnameAlt(alt, i - 1) and
-  alwaysMatchesHostname(alt.getChild(i))
-}
-
-/**
- * Holds if `term` occurs inside a quantifier or alternative (and thus
- * can not be expected to correspond to a unique match), or as part of
- * a lookaround assertion (which are rarely used for capture groups).
- */
-predicate isInsideChoiceOrSubPattern(RegExpTerm term) {
-  exists(RegExpParent parent | parent = term.getParent() |
-    parent instanceof RegExpAlt
-    or
-    parent instanceof RegExpQuantifier
-    or
-    parent instanceof RegExpSubPattern
-    or
-    isInsideChoiceOrSubPattern(parent)
-  )
-}
-
-/**
- * Holds if `group` is likely to be used as a capture group.
- */
-predicate isLikelyCaptureGroup(RegExpGroup group) {
-  group.isCapture() and
-  not isInsideChoiceOrSubPattern(group)
-}
-
-/**
- * Holds if `seq` contains two consecutive dots `..` or escaped dots.
- *
- * At least one of these dots is not intended to be a subdomain separator,
- * so we avoid flagging the pattern in this case.
- */
-predicate hasConsecutiveDots(RegExpSequence seq) {
-  exists(int i |
-    isDotLike(seq.getChild(i)) and
-    isDotLike(seq.getChild(i + 1))
-  )
-}
-
-predicate isIncompleteHostNameRegExpPattern(RegExpTerm regexp, RegExpSequence seq, string msg) {
-  seq = regexp.getAChild*() and
-  exists(RegExpDot unescapedDot, int i, string hostname |
-    hasTopLevelDomainEnding(seq, i) and
-    not isConstantInvalidInsideOrigin(seq.getChild([0 .. i - 1]).getAChild*()) and
-    not isLikelyCaptureGroup(seq.getChild([i .. seq.getNumChild() - 1]).getAChild*()) and
-    unescapedDot = seq.getChild([0 .. i - 1]).getAChild*() and
-    unescapedDot != seq.getChild(i - 1) and // Should not be the '.' immediately before the TLD
-    not hasConsecutiveDots(unescapedDot.getParent()) and
-    hostname =
-      seq.getChild(i - 2).getRawValue() + seq.getChild(i - 1).getRawValue() +
-        seq.getChild(i).getRawValue()
-  |
-    if unescapedDot.getParent() instanceof RegExpQuantifier
-    then
-      // `.*\.example.com` can match `evil.com/?x=.example.com`
-      //
-      // This problem only occurs when the pattern is applied against a full URL, not just a hostname/origin.
-      // We therefore check if the pattern includes a suffix after the TLD, such as `.*\.example.com/`.
-      // Note that a post-anchored pattern (`.*\.example.com$`) will usually fail to match a full URL,
-      // and patterns with neither a suffix nor an anchor fall under the purview of MissingRegExpAnchor.
-      seq.getChild(0) instanceof RegExpCaret and
-      not seq.getAChild() instanceof RegExpDollar and
-      seq.getChild([i .. i + 1]).(RegExpConstant).getValue().regexpMatch(".*[/?#].*") and
-      msg =
-        "has an unrestricted wildcard '" + unescapedDot.getParent().(RegExpQuantifier).getRawValue()
-          + "' which may cause '" + hostname +
-          "' to be matched anywhere in the URL, outside the hostname."
-    else
-      msg =
-        "has an unescaped '.' before '" + hostname +
-          "', so it might match more hosts than expected."
-  )
-}
-
-predicate incompleteHostnameRegExp(
-  RegExpSequence hostSequence, string message, DataFlow::Node aux, string label
-) {
-  exists(RegExpPatternSource re, RegExpTerm regexp, string msg, string kind |
-    regexp = re.getRegExpTerm() and
-    isIncompleteHostNameRegExpPattern(regexp, hostSequence, msg) and
-    (
-      if re.getAParse() != re
-      then (
-        kind = "string, which is used as a regular expression $@," and
-        aux = re.getAParse()
-      ) else (
-        kind = "regular expression" and aux = re
-      )
-    )
-  |
-    message = "This " + kind + " " + msg and label = "here"
-  )
-}
+deprecated import semmle.javascript.security.regexp.HostnameRegexp as Dep
+import Dep
diff --git a/javascript/ql/src/Security/CWE-020/HostnameRegexpSpecific.qll b/javascript/ql/src/Security/CWE-020/HostnameRegexpSpecific.qll
deleted file mode 100644
index 7046b14f09d..00000000000
--- a/javascript/ql/src/Security/CWE-020/HostnameRegexpSpecific.qll
+++ /dev/null
@@ -1 +0,0 @@
-import javascript
diff --git a/javascript/ql/src/Security/CWE-020/IncompleteHostnameRegExp.ql b/javascript/ql/src/Security/CWE-020/IncompleteHostnameRegExp.ql
index 3ae844bf57f..2bf62b710a0 100644
--- a/javascript/ql/src/Security/CWE-020/IncompleteHostnameRegExp.ql
+++ b/javascript/ql/src/Security/CWE-020/IncompleteHostnameRegExp.ql
@@ -11,6 +11,6 @@
  *       external/cwe/cwe-020
  */
 
-import HostnameRegexpShared
+private import semmle.javascript.security.regexp.HostnameRegexp as HostnameRegexp
 
-query predicate problems = incompleteHostnameRegExp/4;
+query predicate problems = HostnameRegexp::incompleteHostnameRegExp/4;
diff --git a/javascript/ql/src/Security/CWE-020/MissingRegExpAnchor.ql b/javascript/ql/src/Security/CWE-020/MissingRegExpAnchor.ql
index cd71f5c6a49..504739a68ae 100644
--- a/javascript/ql/src/Security/CWE-020/MissingRegExpAnchor.ql
+++ b/javascript/ql/src/Security/CWE-020/MissingRegExpAnchor.ql
@@ -11,29 +11,10 @@
  *       external/cwe/cwe-020
  */
 
-import javascript
-import HostnameRegexpShared
-
-/** Holds if `term` is one of the transitive left children of a regexp. */
-predicate isLeftArmTerm(RegExpTerm term) {
-  term.isRootTerm()
-  or
-  exists(RegExpTerm parent |
-    term = parent.getChild(0) and
-    isLeftArmTerm(parent)
-  )
-}
-
-/** Holds if `term` is one of the transitive right children of a regexp. */
-predicate isRightArmTerm(RegExpTerm term) {
-  term.isRootTerm()
-  or
-  exists(RegExpTerm parent |
-    term = parent.getLastChild() and
-    isRightArmTerm(parent)
-  )
-}
+private import javascript
+private import semmle.javascript.security.regexp.HostnameRegexp
 
+// TODO: Share the below code.
 /**
  * Holds if `term` is an anchor that is not the first or last node
  * in its tree.
diff --git a/python/ql/lib/semmle/python/RegexTreeView.qll b/python/ql/lib/semmle/python/RegexTreeView.qll
index 8a5d95cc7cf..5be80d94ec4 100644
--- a/python/ql/lib/semmle/python/RegexTreeView.qll
+++ b/python/ql/lib/semmle/python/RegexTreeView.qll
@@ -454,7 +454,7 @@ module Impl implements RegexTreeViewSig {
     override string getPrimaryQLClass() { result = "RegExpAlt" }
   }
 
-  additional class RegExpCharEscape = RegExpEscape;
+  class RegExpCharEscape = RegExpEscape;
 
   /**
    * An escaped regular expression term, that is, a regular expression
diff --git a/python/ql/lib/semmle/python/security/regexp/HostnameRegex.qll b/python/ql/lib/semmle/python/security/regexp/HostnameRegex.qll
new file mode 100644
index 00000000000..db0ab155b3e
--- /dev/null
+++ b/python/ql/lib/semmle/python/security/regexp/HostnameRegex.qll
@@ -0,0 +1,20 @@
+/**
+ * Provides predicates for reasoning about regular expressions
+ * that match URLs and hostname patterns.
+ */
+
+private import python
+private import semmle.python.dataflow.new.DataFlow
+private import semmle.python.RegexTreeView::RegexTreeView as TreeImpl
+private import semmle.python.dataflow.new.Regexp as Regexp
+private import codeql.regex.HostnameRegexp as Shared
+
+private module Impl implements Shared::HostnameRegexpSig<TreeImpl> {
+  class DataFlowNode = DataFlow::Node;
+
+  class RegExpPatternSource = Regexp::RegExpPatternSource;
+
+  string getACommonTld() { result = Regexp::RegExpPatterns::getACommonTld() }
+}
+
+import Shared::Make<TreeImpl, Impl>
diff --git a/python/ql/src/Security/CWE-020/HostnameRegexpShared.qll b/python/ql/src/Security/CWE-020/HostnameRegexpShared.qll
index 5e9bc406512..d15714d406a 100644
--- a/python/ql/src/Security/CWE-020/HostnameRegexpShared.qll
+++ b/python/ql/src/Security/CWE-020/HostnameRegexpShared.qll
@@ -3,200 +3,6 @@
  * that match URLs and hostname patterns.
  */
 
-private import HostnameRegexpSpecific
-
-/**
- * Holds if the given constant is unlikely to occur in the origin part of a URL.
- */
-predicate isConstantInvalidInsideOrigin(RegExpConstant term) {
-  // Look for any of these cases:
-  // - A character that can't occur in the origin
-  // - Two dashes in a row
-  // - A colon that is not part of port or scheme separator
-  // - A slash that is not part of scheme separator
-  term.getValue().regexpMatch(".*(?:[^a-zA-Z0-9.:/-]|--|:[^0-9/]|(?<![/:]|^)/).*")
-}
-
-/** Holds if `term` is a dot constant of form `\.` or `[.]`. */
-predicate isDotConstant(RegExpTerm term) {
-  term.(RegExpCharEscape).getValue() = "."
-  or
-  exists(RegExpCharacterClass cls |
-    term = cls and
-    not cls.isInverted() and
-    cls.getNumChild() = 1 and
-    cls.getAChild().(RegExpConstant).getValue() = "."
-  )
-}
-
-/** Holds if `term` is a wildcard `.` or an actual `.` character. */
-predicate isDotLike(RegExpTerm term) {
-  term instanceof RegExpDot
-  or
-  isDotConstant(term)
-}
-
-/** Holds if `term` will only ever be matched against the beginning of the input. */
-predicate matchesBeginningOfString(RegExpTerm term) {
-  term.isRootTerm()
-  or
-  exists(RegExpTerm parent | matchesBeginningOfString(parent) |
-    term = parent.(RegExpSequence).getChild(0)
-    or
-    parent.(RegExpSequence).getChild(0) instanceof RegExpCaret and
-    term = parent.(RegExpSequence).getChild(1)
-    or
-    term = parent.(RegExpAlt).getAChild()
-    or
-    term = parent.(RegExpGroup).getAChild()
-  )
-}
-
-/**
- * Holds if the given sequence `seq` contains top-level domain preceded by a dot, such as `.com`,
- * excluding cases where this is at the very beginning of the regexp.
- *
- * `i` is bound to the index of the last child in the top-level domain part.
- */
-predicate hasTopLevelDomainEnding(RegExpSequence seq, int i) {
-  seq.getChild(i)
-      .(RegExpConstant)
-      .getValue()
-      .regexpMatch("(?i)" + RegExpPatterns::getACommonTld() + "(:\\d+)?([/?#].*)?") and
-  isDotLike(seq.getChild(i - 1)) and
-  not (i = 1 and matchesBeginningOfString(seq))
-}
-
-/**
- * Holds if the given regular expression term contains top-level domain preceded by a dot,
- * such as `.com`.
- */
-predicate hasTopLevelDomainEnding(RegExpSequence seq) { hasTopLevelDomainEnding(seq, _) }
-
-/**
- * Holds if `term` will always match a hostname, that is, all disjunctions contain
- * a hostname pattern that isn't inside a quantifier.
- */
-predicate alwaysMatchesHostname(RegExpTerm term) {
-  hasTopLevelDomainEnding(term, _)
-  or
-  // `localhost` is considered a hostname pattern, but has no TLD
-  term.(RegExpConstant).getValue().regexpMatch("\\blocalhost\\b")
-  or
-  not term instanceof RegExpAlt and
-  not term instanceof RegExpQuantifier and
-  alwaysMatchesHostname(term.getAChild())
-  or
-  alwaysMatchesHostnameAlt(term)
-}
-
-/** Holds if every child of `alt` contains a hostname pattern. */
-predicate alwaysMatchesHostnameAlt(RegExpAlt alt) {
-  alwaysMatchesHostnameAlt(alt, alt.getNumChild() - 1)
-}
-
-/**
- * Holds if the first `i` children of `alt` contains a hostname pattern.
- *
- * This is used instead of `forall` to avoid materializing the set of alternatives
- * that don't contains hostnames, which is much larger.
- */
-predicate alwaysMatchesHostnameAlt(RegExpAlt alt, int i) {
-  alwaysMatchesHostname(alt.getChild(0)) and i = 0
-  or
-  alwaysMatchesHostnameAlt(alt, i - 1) and
-  alwaysMatchesHostname(alt.getChild(i))
-}
-
-/**
- * Holds if `term` occurs inside a quantifier or alternative (and thus
- * can not be expected to correspond to a unique match), or as part of
- * a lookaround assertion (which are rarely used for capture groups).
- */
-predicate isInsideChoiceOrSubPattern(RegExpTerm term) {
-  exists(RegExpParent parent | parent = term.getParent() |
-    parent instanceof RegExpAlt
-    or
-    parent instanceof RegExpQuantifier
-    or
-    parent instanceof RegExpSubPattern
-    or
-    isInsideChoiceOrSubPattern(parent)
-  )
-}
-
-/**
- * Holds if `group` is likely to be used as a capture group.
- */
-predicate isLikelyCaptureGroup(RegExpGroup group) {
-  group.isCapture() and
-  not isInsideChoiceOrSubPattern(group)
-}
-
-/**
- * Holds if `seq` contains two consecutive dots `..` or escaped dots.
- *
- * At least one of these dots is not intended to be a subdomain separator,
- * so we avoid flagging the pattern in this case.
- */
-predicate hasConsecutiveDots(RegExpSequence seq) {
-  exists(int i |
-    isDotLike(seq.getChild(i)) and
-    isDotLike(seq.getChild(i + 1))
-  )
-}
-
-predicate isIncompleteHostNameRegExpPattern(RegExpTerm regexp, RegExpSequence seq, string msg) {
-  seq = regexp.getAChild*() and
-  exists(RegExpDot unescapedDot, int i, string hostname |
-    hasTopLevelDomainEnding(seq, i) and
-    not isConstantInvalidInsideOrigin(seq.getChild([0 .. i - 1]).getAChild*()) and
-    not isLikelyCaptureGroup(seq.getChild([i .. seq.getNumChild() - 1]).getAChild*()) and
-    unescapedDot = seq.getChild([0 .. i - 1]).getAChild*() and
-    unescapedDot != seq.getChild(i - 1) and // Should not be the '.' immediately before the TLD
-    not hasConsecutiveDots(unescapedDot.getParent()) and
-    hostname =
-      seq.getChild(i - 2).getRawValue() + seq.getChild(i - 1).getRawValue() +
-        seq.getChild(i).getRawValue()
-  |
-    if unescapedDot.getParent() instanceof RegExpQuantifier
-    then
-      // `.*\.example.com` can match `evil.com/?x=.example.com`
-      //
-      // This problem only occurs when the pattern is applied against a full URL, not just a hostname/origin.
-      // We therefore check if the pattern includes a suffix after the TLD, such as `.*\.example.com/`.
-      // Note that a post-anchored pattern (`.*\.example.com$`) will usually fail to match a full URL,
-      // and patterns with neither a suffix nor an anchor fall under the purview of MissingRegExpAnchor.
-      seq.getChild(0) instanceof RegExpCaret and
-      not seq.getAChild() instanceof RegExpDollar and
-      seq.getChild([i .. i + 1]).(RegExpConstant).getValue().regexpMatch(".*[/?#].*") and
-      msg =
-        "has an unrestricted wildcard '" + unescapedDot.getParent().(RegExpQuantifier).getRawValue()
-          + "' which may cause '" + hostname +
-          "' to be matched anywhere in the URL, outside the hostname."
-    else
-      msg =
-        "has an unescaped '.' before '" + hostname +
-          "', so it might match more hosts than expected."
-  )
-}
-
-predicate incompleteHostnameRegExp(
-  RegExpSequence hostSequence, string message, DataFlow::Node aux, string label
-) {
-  exists(RegExpPatternSource re, RegExpTerm regexp, string msg, string kind |
-    regexp = re.getRegExpTerm() and
-    isIncompleteHostNameRegExpPattern(regexp, hostSequence, msg) and
-    (
-      if re.getAParse() != re
-      then (
-        kind = "string, which is used as a regular expression $@," and
-        aux = re.getAParse()
-      ) else (
-        kind = "regular expression" and aux = re
-      )
-    )
-  |
-    message = "This " + kind + " " + msg and label = "here"
-  )
-}
+// HostnameRegexp should be used directly from the shared regex pack, and not from this file.
+deprecated private import semmle.python.security.regexp.HostnameRegex as Dep
+import Dep
diff --git a/python/ql/src/Security/CWE-020/HostnameRegexpSpecific.qll b/python/ql/src/Security/CWE-020/HostnameRegexpSpecific.qll
deleted file mode 100644
index 5f60495b202..00000000000
--- a/python/ql/src/Security/CWE-020/HostnameRegexpSpecific.qll
+++ /dev/null
@@ -1,3 +0,0 @@
-import semmle.python.RegexTreeView
-import semmle.python.dataflow.new.DataFlow
-import semmle.python.dataflow.new.Regexp
diff --git a/python/ql/src/Security/CWE-020/IncompleteHostnameRegExp.ql b/python/ql/src/Security/CWE-020/IncompleteHostnameRegExp.ql
index db7129e5ac5..d394107f9d6 100644
--- a/python/ql/src/Security/CWE-020/IncompleteHostnameRegExp.ql
+++ b/python/ql/src/Security/CWE-020/IncompleteHostnameRegExp.ql
@@ -11,6 +11,6 @@
  *       external/cwe/cwe-020
  */
 
-import HostnameRegexpShared
+private import semmle.python.security.regexp.HostnameRegex as HostnameRegex
 
-query predicate problems = incompleteHostnameRegExp/4;
+query predicate problems = HostnameRegex::incompleteHostnameRegExp/4;
diff --git a/ruby/ql/lib/codeql/ruby/regexp/RegExpTreeView.qll b/ruby/ql/lib/codeql/ruby/regexp/RegExpTreeView.qll
index 4a0b40ccfb2..3f56d3f59b0 100644
--- a/ruby/ql/lib/codeql/ruby/regexp/RegExpTreeView.qll
+++ b/ruby/ql/lib/codeql/ruby/regexp/RegExpTreeView.qll
@@ -539,7 +539,7 @@ private module Impl implements RegexTreeViewSig {
     override predicate isNullable() { this.getAChild().isNullable() }
   }
 
-  additional class RegExpCharEscape = RegExpEscape;
+  class RegExpCharEscape = RegExpEscape;
 
   /**
    * An escaped regular expression term, that is, a regular expression
diff --git a/ruby/ql/lib/codeql/ruby/security/regexp/HostnameRegexp.qll b/ruby/ql/lib/codeql/ruby/security/regexp/HostnameRegexp.qll
new file mode 100644
index 00000000000..234cf1e9593
--- /dev/null
+++ b/ruby/ql/lib/codeql/ruby/security/regexp/HostnameRegexp.qll
@@ -0,0 +1,19 @@
+/**
+ * Provides predicates for reasoning about regular expressions
+ * that match URLs and hostname patterns.
+ */
+
+private import ruby
+private import codeql.ruby.regexp.RegExpTreeView::RegexTreeView as TreeImpl
+private import codeql.ruby.Regexp as Regexp
+private import codeql.regex.HostnameRegexp as Shared
+
+private module Impl implements Shared::HostnameRegexpSig<TreeImpl> {
+  class DataFlowNode = DataFlow::Node;
+
+  class RegExpPatternSource = Regexp::RegExpPatternSource;
+
+  string getACommonTld() { result = Regexp::RegExpPatterns::getACommonTld() }
+}
+
+import Shared::Make<TreeImpl, Impl>
diff --git a/ruby/ql/src/queries/security/cwe-020/HostnameRegexpShared.qll b/ruby/ql/src/queries/security/cwe-020/HostnameRegexpShared.qll
index 5e9bc406512..dc3ed9aeaf7 100644
--- a/ruby/ql/src/queries/security/cwe-020/HostnameRegexpShared.qll
+++ b/ruby/ql/src/queries/security/cwe-020/HostnameRegexpShared.qll
@@ -3,200 +3,6 @@
  * that match URLs and hostname patterns.
  */
 
-private import HostnameRegexpSpecific
-
-/**
- * Holds if the given constant is unlikely to occur in the origin part of a URL.
- */
-predicate isConstantInvalidInsideOrigin(RegExpConstant term) {
-  // Look for any of these cases:
-  // - A character that can't occur in the origin
-  // - Two dashes in a row
-  // - A colon that is not part of port or scheme separator
-  // - A slash that is not part of scheme separator
-  term.getValue().regexpMatch(".*(?:[^a-zA-Z0-9.:/-]|--|:[^0-9/]|(?<![/:]|^)/).*")
-}
-
-/** Holds if `term` is a dot constant of form `\.` or `[.]`. */
-predicate isDotConstant(RegExpTerm term) {
-  term.(RegExpCharEscape).getValue() = "."
-  or
-  exists(RegExpCharacterClass cls |
-    term = cls and
-    not cls.isInverted() and
-    cls.getNumChild() = 1 and
-    cls.getAChild().(RegExpConstant).getValue() = "."
-  )
-}
-
-/** Holds if `term` is a wildcard `.` or an actual `.` character. */
-predicate isDotLike(RegExpTerm term) {
-  term instanceof RegExpDot
-  or
-  isDotConstant(term)
-}
-
-/** Holds if `term` will only ever be matched against the beginning of the input. */
-predicate matchesBeginningOfString(RegExpTerm term) {
-  term.isRootTerm()
-  or
-  exists(RegExpTerm parent | matchesBeginningOfString(parent) |
-    term = parent.(RegExpSequence).getChild(0)
-    or
-    parent.(RegExpSequence).getChild(0) instanceof RegExpCaret and
-    term = parent.(RegExpSequence).getChild(1)
-    or
-    term = parent.(RegExpAlt).getAChild()
-    or
-    term = parent.(RegExpGroup).getAChild()
-  )
-}
-
-/**
- * Holds if the given sequence `seq` contains top-level domain preceded by a dot, such as `.com`,
- * excluding cases where this is at the very beginning of the regexp.
- *
- * `i` is bound to the index of the last child in the top-level domain part.
- */
-predicate hasTopLevelDomainEnding(RegExpSequence seq, int i) {
-  seq.getChild(i)
-      .(RegExpConstant)
-      .getValue()
-      .regexpMatch("(?i)" + RegExpPatterns::getACommonTld() + "(:\\d+)?([/?#].*)?") and
-  isDotLike(seq.getChild(i - 1)) and
-  not (i = 1 and matchesBeginningOfString(seq))
-}
-
-/**
- * Holds if the given regular expression term contains top-level domain preceded by a dot,
- * such as `.com`.
- */
-predicate hasTopLevelDomainEnding(RegExpSequence seq) { hasTopLevelDomainEnding(seq, _) }
-
-/**
- * Holds if `term` will always match a hostname, that is, all disjunctions contain
- * a hostname pattern that isn't inside a quantifier.
- */
-predicate alwaysMatchesHostname(RegExpTerm term) {
-  hasTopLevelDomainEnding(term, _)
-  or
-  // `localhost` is considered a hostname pattern, but has no TLD
-  term.(RegExpConstant).getValue().regexpMatch("\\blocalhost\\b")
-  or
-  not term instanceof RegExpAlt and
-  not term instanceof RegExpQuantifier and
-  alwaysMatchesHostname(term.getAChild())
-  or
-  alwaysMatchesHostnameAlt(term)
-}
-
-/** Holds if every child of `alt` contains a hostname pattern. */
-predicate alwaysMatchesHostnameAlt(RegExpAlt alt) {
-  alwaysMatchesHostnameAlt(alt, alt.getNumChild() - 1)
-}
-
-/**
- * Holds if the first `i` children of `alt` contains a hostname pattern.
- *
- * This is used instead of `forall` to avoid materializing the set of alternatives
- * that don't contains hostnames, which is much larger.
- */
-predicate alwaysMatchesHostnameAlt(RegExpAlt alt, int i) {
-  alwaysMatchesHostname(alt.getChild(0)) and i = 0
-  or
-  alwaysMatchesHostnameAlt(alt, i - 1) and
-  alwaysMatchesHostname(alt.getChild(i))
-}
-
-/**
- * Holds if `term` occurs inside a quantifier or alternative (and thus
- * can not be expected to correspond to a unique match), or as part of
- * a lookaround assertion (which are rarely used for capture groups).
- */
-predicate isInsideChoiceOrSubPattern(RegExpTerm term) {
-  exists(RegExpParent parent | parent = term.getParent() |
-    parent instanceof RegExpAlt
-    or
-    parent instanceof RegExpQuantifier
-    or
-    parent instanceof RegExpSubPattern
-    or
-    isInsideChoiceOrSubPattern(parent)
-  )
-}
-
-/**
- * Holds if `group` is likely to be used as a capture group.
- */
-predicate isLikelyCaptureGroup(RegExpGroup group) {
-  group.isCapture() and
-  not isInsideChoiceOrSubPattern(group)
-}
-
-/**
- * Holds if `seq` contains two consecutive dots `..` or escaped dots.
- *
- * At least one of these dots is not intended to be a subdomain separator,
- * so we avoid flagging the pattern in this case.
- */
-predicate hasConsecutiveDots(RegExpSequence seq) {
-  exists(int i |
-    isDotLike(seq.getChild(i)) and
-    isDotLike(seq.getChild(i + 1))
-  )
-}
-
-predicate isIncompleteHostNameRegExpPattern(RegExpTerm regexp, RegExpSequence seq, string msg) {
-  seq = regexp.getAChild*() and
-  exists(RegExpDot unescapedDot, int i, string hostname |
-    hasTopLevelDomainEnding(seq, i) and
-    not isConstantInvalidInsideOrigin(seq.getChild([0 .. i - 1]).getAChild*()) and
-    not isLikelyCaptureGroup(seq.getChild([i .. seq.getNumChild() - 1]).getAChild*()) and
-    unescapedDot = seq.getChild([0 .. i - 1]).getAChild*() and
-    unescapedDot != seq.getChild(i - 1) and // Should not be the '.' immediately before the TLD
-    not hasConsecutiveDots(unescapedDot.getParent()) and
-    hostname =
-      seq.getChild(i - 2).getRawValue() + seq.getChild(i - 1).getRawValue() +
-        seq.getChild(i).getRawValue()
-  |
-    if unescapedDot.getParent() instanceof RegExpQuantifier
-    then
-      // `.*\.example.com` can match `evil.com/?x=.example.com`
-      //
-      // This problem only occurs when the pattern is applied against a full URL, not just a hostname/origin.
-      // We therefore check if the pattern includes a suffix after the TLD, such as `.*\.example.com/`.
-      // Note that a post-anchored pattern (`.*\.example.com$`) will usually fail to match a full URL,
-      // and patterns with neither a suffix nor an anchor fall under the purview of MissingRegExpAnchor.
-      seq.getChild(0) instanceof RegExpCaret and
-      not seq.getAChild() instanceof RegExpDollar and
-      seq.getChild([i .. i + 1]).(RegExpConstant).getValue().regexpMatch(".*[/?#].*") and
-      msg =
-        "has an unrestricted wildcard '" + unescapedDot.getParent().(RegExpQuantifier).getRawValue()
-          + "' which may cause '" + hostname +
-          "' to be matched anywhere in the URL, outside the hostname."
-    else
-      msg =
-        "has an unescaped '.' before '" + hostname +
-          "', so it might match more hosts than expected."
-  )
-}
-
-predicate incompleteHostnameRegExp(
-  RegExpSequence hostSequence, string message, DataFlow::Node aux, string label
-) {
-  exists(RegExpPatternSource re, RegExpTerm regexp, string msg, string kind |
-    regexp = re.getRegExpTerm() and
-    isIncompleteHostNameRegExpPattern(regexp, hostSequence, msg) and
-    (
-      if re.getAParse() != re
-      then (
-        kind = "string, which is used as a regular expression $@," and
-        aux = re.getAParse()
-      ) else (
-        kind = "regular expression" and aux = re
-      )
-    )
-  |
-    message = "This " + kind + " " + msg and label = "here"
-  )
-}
+// HostnameRegexp should be used directly from the shared regex pack, and not from this file.
+deprecated import codeql.ruby.security.regexp.HostnameRegexp as Dep
+import Dep
diff --git a/ruby/ql/src/queries/security/cwe-020/HostnameRegexpSpecific.qll b/ruby/ql/src/queries/security/cwe-020/HostnameRegexpSpecific.qll
deleted file mode 100644
index 42e4445a7ba..00000000000
--- a/ruby/ql/src/queries/security/cwe-020/HostnameRegexpSpecific.qll
+++ /dev/null
@@ -1,2 +0,0 @@
-import codeql.ruby.Regexp
-import codeql.ruby.DataFlow
diff --git a/ruby/ql/src/queries/security/cwe-020/IncompleteHostnameRegExp.ql b/ruby/ql/src/queries/security/cwe-020/IncompleteHostnameRegExp.ql
index f300fc9403f..33db6e4489a 100644
--- a/ruby/ql/src/queries/security/cwe-020/IncompleteHostnameRegExp.ql
+++ b/ruby/ql/src/queries/security/cwe-020/IncompleteHostnameRegExp.ql
@@ -11,6 +11,6 @@
  *       external/cwe/cwe-020
  */
 
-import HostnameRegexpShared
+private import codeql.ruby.security.regexp.HostnameRegexp as HostnameRegxp
 
-query predicate problems = incompleteHostnameRegExp/4;
+query predicate problems = HostnameRegxp::incompleteHostnameRegExp/4;
diff --git a/ruby/ql/src/queries/security/cwe-020/MissingRegExpAnchor.ql b/ruby/ql/src/queries/security/cwe-020/MissingRegExpAnchor.ql
index 45653af568d..e39fb9d4f67 100644
--- a/ruby/ql/src/queries/security/cwe-020/MissingRegExpAnchor.ql
+++ b/ruby/ql/src/queries/security/cwe-020/MissingRegExpAnchor.ql
@@ -11,10 +11,10 @@
  *       external/cwe/cwe-020
  */
 
-import HostnameRegexpShared
 import codeql.ruby.DataFlow
 import codeql.ruby.regexp.RegExpTreeView
 import codeql.ruby.Regexp
+private import codeql.ruby.security.regexp.HostnameRegexp
 
 /**
  * Holds if `term` is a final term, that is, no term will match anything after this one.
@@ -35,26 +35,6 @@ predicate isFinalRegExpTerm(RegExpTerm term) {
   )
 }
 
-/** Holds if `term` is one of the transitive left children of a regexp. */
-predicate isLeftArmTerm(RegExpTerm term) {
-  term.isRootTerm()
-  or
-  exists(RegExpTerm parent |
-    term = parent.getChild(0) and
-    isLeftArmTerm(parent)
-  )
-}
-
-/** Holds if `term` is one of the transitive right children of a regexp. */
-predicate isRightArmTerm(RegExpTerm term) {
-  term.isRootTerm()
-  or
-  exists(RegExpTerm parent |
-    term = parent.getLastChild() and
-    isRightArmTerm(parent)
-  )
-}
-
 /**
  * Holds if `term` is an anchor that is not the first or last node
  * in its tree.
@@ -182,6 +162,7 @@ predicate hasMisleadingAnchorPrecedence(RegExpPatternSource src, string msg) {
  * rather than `\A/\z` which match the start/end of the whole string.
  */
 predicate isLineAnchoredHostnameRegExp(RegExpPatternSource src, string msg) {
+  // TODO: <- this one is Ruby specific.
   // avoid double reporting
   not (
     isSemiAnchoredHostnameRegExp(src, _) or
diff --git a/shared/regex/codeql/regex/HostnameRegexp.qll b/shared/regex/codeql/regex/HostnameRegexp.qll
new file mode 100644
index 00000000000..5370e6e18a9
--- /dev/null
+++ b/shared/regex/codeql/regex/HostnameRegexp.qll
@@ -0,0 +1,268 @@
+/**
+ * Provides predicates for reasoning about regular expressions
+ * that match URLs and hostname patterns.
+ */
+
+private import RegexTreeView
+
+/**
+ * A signature specifying the required parts to perform an
+ * analysis on regular expressions matching hostnames.
+ */
+signature module HostnameRegexpSig<RegexTreeViewSig TreeImpl> {
+  /**
+   * Gets a pattern that matches common top-level domain names in lower case.
+   */
+  string getACommonTld();
+
+  /** A node in the data-flow graph. */
+  class DataFlowNode;
+
+  /** A node in the data-flow graph that represents a regular expression pattern. */
+  class RegExpPatternSource extends DataFlowNode {
+    /**
+     * Gets the root term of the regular expression parsed from this pattern.
+     */
+    TreeImpl::RegExpTerm getRegExpTerm();
+
+    /**
+     * Gets a node where the pattern of this node is parsed as a part of
+     * a regular expression.
+     */
+    DataFlowNode getAParse();
+  }
+}
+
+/**
+ * Classes and predicates implementing an analysis on regular expressions
+ * that match URLs and hostname patterns.
+ */
+module Make<RegexTreeViewSig TreeImpl, HostnameRegexpSig<TreeImpl> Specific> {
+  private import TreeImpl
+
+  /**
+   * Holds if the given constant is unlikely to occur in the origin part of a URL.
+   */
+  predicate isConstantInvalidInsideOrigin(RegExpConstant term) {
+    // Look for any of these cases:
+    // - A character that can't occur in the origin
+    // - Two dashes in a row
+    // - A colon that is not part of port or scheme separator
+    // - A slash that is not part of scheme separator
+    term.getValue().regexpMatch(".*(?:[^a-zA-Z0-9.:/-]|--|:[^0-9/]|(?<![/:]|^)/).*")
+  }
+
+  /** Holds if `term` is a dot constant of form `\.` or `[.]`. */
+  predicate isDotConstant(RegExpTerm term) {
+    term.(RegExpCharEscape).getValue() = "."
+    or
+    exists(RegExpCharacterClass cls |
+      term = cls and
+      not cls.isInverted() and
+      cls.getNumChild() = 1 and
+      cls.getAChild().(RegExpConstant).getValue() = "."
+    )
+  }
+
+  /** Holds if `term` is a wildcard `.` or an actual `.` character. */
+  predicate isDotLike(RegExpTerm term) {
+    term instanceof RegExpDot
+    or
+    isDotConstant(term)
+  }
+
+  /** Holds if `term` will only ever be matched against the beginning of the input. */
+  predicate matchesBeginningOfString(RegExpTerm term) {
+    term.isRootTerm()
+    or
+    exists(RegExpTerm parent | matchesBeginningOfString(parent) |
+      term = parent.(RegExpSequence).getChild(0)
+      or
+      parent.(RegExpSequence).getChild(0) instanceof RegExpCaret and
+      term = parent.(RegExpSequence).getChild(1)
+      or
+      term = parent.(RegExpAlt).getAChild()
+      or
+      term = parent.(RegExpGroup).getAChild()
+    )
+  }
+
+  /**
+   * Holds if the given sequence `seq` contains top-level domain preceded by a dot, such as `.com`,
+   * excluding cases where this is at the very beginning of the regexp.
+   *
+   * `i` is bound to the index of the last child in the top-level domain part.
+   */
+  predicate hasTopLevelDomainEnding(RegExpSequence seq, int i) {
+    seq.getChild(i)
+        .(RegExpConstant)
+        .getValue()
+        .regexpMatch("(?i)" + Specific::getACommonTld() + "(:\\d+)?([/?#].*)?") and
+    isDotLike(seq.getChild(i - 1)) and
+    not (i = 1 and matchesBeginningOfString(seq))
+  }
+
+  /**
+   * Holds if the given regular expression term contains top-level domain preceded by a dot,
+   * such as `.com`.
+   */
+  predicate hasTopLevelDomainEnding(RegExpSequence seq) { hasTopLevelDomainEnding(seq, _) }
+
+  /**
+   * Holds if `term` will always match a hostname, that is, all disjunctions contain
+   * a hostname pattern that isn't inside a quantifier.
+   */
+  predicate alwaysMatchesHostname(RegExpTerm term) {
+    hasTopLevelDomainEnding(term, _)
+    or
+    // `localhost` is considered a hostname pattern, but has no TLD
+    term.(RegExpConstant).getValue().regexpMatch("\\blocalhost\\b")
+    or
+    not term instanceof RegExpAlt and
+    not term instanceof RegExpQuantifier and
+    alwaysMatchesHostname(term.getAChild())
+    or
+    alwaysMatchesHostnameAlt(term)
+  }
+
+  /** Holds if every child of `alt` contains a hostname pattern. */
+  predicate alwaysMatchesHostnameAlt(RegExpAlt alt) {
+    alwaysMatchesHostnameAlt(alt, alt.getNumChild() - 1)
+  }
+
+  /**
+   * Holds if the first `i` children of `alt` contains a hostname pattern.
+   *
+   * This is used instead of `forall` to avoid materializing the set of alternatives
+   * that don't contains hostnames, which is much larger.
+   */
+  predicate alwaysMatchesHostnameAlt(RegExpAlt alt, int i) {
+    alwaysMatchesHostname(alt.getChild(0)) and i = 0
+    or
+    alwaysMatchesHostnameAlt(alt, i - 1) and
+    alwaysMatchesHostname(alt.getChild(i))
+  }
+
+  /**
+   * Holds if `term` occurs inside a quantifier or alternative (and thus
+   * can not be expected to correspond to a unique match), or as part of
+   * a lookaround assertion (which are rarely used for capture groups).
+   */
+  predicate isInsideChoiceOrSubPattern(RegExpTerm term) {
+    exists(RegExpParent parent | parent = term.getParent() |
+      parent instanceof RegExpAlt
+      or
+      parent instanceof RegExpQuantifier
+      or
+      parent instanceof RegExpSubPattern
+      or
+      isInsideChoiceOrSubPattern(parent)
+    )
+  }
+
+  /**
+   * Holds if `group` is likely to be used as a capture group.
+   */
+  predicate isLikelyCaptureGroup(RegExpGroup group) {
+    group.isCapture() and
+    not isInsideChoiceOrSubPattern(group)
+  }
+
+  /**
+   * Holds if `seq` contains two consecutive dots `..` or escaped dots.
+   *
+   * At least one of these dots is not intended to be a subdomain separator,
+   * so we avoid flagging the pattern in this case.
+   */
+  predicate hasConsecutiveDots(RegExpSequence seq) {
+    exists(int i |
+      isDotLike(seq.getChild(i)) and
+      isDotLike(seq.getChild(i + 1))
+    )
+  }
+
+  private predicate isIncompleteHostNameRegExpPattern(
+    RegExpTerm regexp, RegExpSequence seq, string msg
+  ) {
+    seq = regexp.getAChild*() and
+    exists(RegExpDot unescapedDot, int i, string hostname |
+      hasTopLevelDomainEnding(seq, i) and
+      not isConstantInvalidInsideOrigin(seq.getChild([0 .. i - 1]).getAChild*()) and
+      not isLikelyCaptureGroup(seq.getChild([i .. seq.getNumChild() - 1]).getAChild*()) and
+      unescapedDot = seq.getChild([0 .. i - 1]).getAChild*() and
+      unescapedDot != seq.getChild(i - 1) and // Should not be the '.' immediately before the TLD
+      not hasConsecutiveDots(unescapedDot.getParent()) and
+      hostname =
+        seq.getChild(i - 2).getRawValue() + seq.getChild(i - 1).getRawValue() +
+          seq.getChild(i).getRawValue()
+    |
+      if unescapedDot.getParent() instanceof RegExpQuantifier
+      then
+        // `.*\.example.com` can match `evil.com/?x=.example.com`
+        //
+        // This problem only occurs when the pattern is applied against a full URL, not just a hostname/origin.
+        // We therefore check if the pattern includes a suffix after the TLD, such as `.*\.example.com/`.
+        // Note that a post-anchored pattern (`.*\.example.com$`) will usually fail to match a full URL,
+        // and patterns with neither a suffix nor an anchor fall under the purview of MissingRegExpAnchor.
+        seq.getChild(0) instanceof RegExpCaret and
+        not seq.getAChild() instanceof RegExpDollar and
+        seq.getChild([i .. i + 1]).(RegExpConstant).getValue().regexpMatch(".*[/?#].*") and
+        msg =
+          "has an unrestricted wildcard '" +
+            unescapedDot.getParent().(RegExpQuantifier).getRawValue() + "' which may cause '" +
+            hostname + "' to be matched anywhere in the URL, outside the hostname."
+      else
+        msg =
+          "has an unescaped '.' before '" + hostname +
+            "', so it might match more hosts than expected."
+    )
+  }
+
+  /**
+   * Holds if `regexp` is a regular expression that is likely to match a hostname,
+   * but the pattern is incomplete and may match more hosts than intended.
+   */
+  predicate incompleteHostnameRegExp(
+    RegExpSequence hostSequence, string message, Specific::DataFlowNode aux, string label
+  ) {
+    exists(Specific::RegExpPatternSource re, RegExpTerm regexp, string msg, string kind |
+      regexp = re.getRegExpTerm() and
+      isIncompleteHostNameRegExpPattern(regexp, hostSequence, msg) and
+      (
+        if re.getAParse() != re
+        then (
+          kind = "string, which is used as a regular expression $@," and
+          aux = re.getAParse()
+        ) else (
+          kind = "regular expression" and aux = re
+        )
+      )
+    |
+      message = "This " + kind + " " + msg and label = "here"
+    )
+  }
+
+  /** Holds if `term` is one of the transitive left children of a regexp. */
+  predicate isLeftArmTerm(RegExpTerm term) {
+    term.isRootTerm()
+    or
+    exists(RegExpTerm parent |
+      term = parent.getChild(0) and
+      isLeftArmTerm(parent)
+    )
+  }
+
+  /** Holds if `term` is one of the transitive right children of a regexp. */
+  predicate isRightArmTerm(RegExpTerm term) {
+    term.isRootTerm()
+    or
+    exists(RegExpTerm parent |
+      term = getLastChild(parent) and
+      isRightArmTerm(parent)
+    )
+  }
+
+  private RegExpTerm getLastChild(RegExpTerm parent) {
+    result = max(RegExpTerm child, int i | child = parent.getChild(i) | child order by i)
+  }
+}
diff --git a/shared/regex/codeql/regex/RegexTreeView.qll b/shared/regex/codeql/regex/RegexTreeView.qll
index f805bd83185..89beff34359 100644
--- a/shared/regex/codeql/regex/RegexTreeView.qll
+++ b/shared/regex/codeql/regex/RegexTreeView.qll
@@ -210,6 +210,9 @@ signature module RegexTreeViewSig {
      * not a capture group.
      */
     int getNumber();
+
+    /** Holds if this is a capture group. */
+    predicate isCapture();
   }
 
   /**
@@ -325,6 +328,20 @@ signature module RegexTreeViewSig {
     predicate isCharacter();
   }
 
+  /**
+   * A character escape in a regular expression.
+   *
+   * Example:
+   *
+   * ```
+   * \.
+   * ```
+   */
+  class RegExpCharEscape extends RegExpEscape {
+    /** Gets the string matched by this term. */
+    string getValue();
+  }
+
   /**
    * A character class in a regular expression.
    *

From 355499ea522b628dd727de768da0725d9ba32e83 Mon Sep 17 00:00:00 2001
From: erik-krogh <erik-krogh@github.com>
Date: Thu, 15 Dec 2022 14:53:46 +0100
Subject: [PATCH 1415/1420] move `getACommonTld` to the shared pack

---
 javascript/ql/lib/semmle/javascript/Regexp.qll    |  5 +++--
 .../javascript/security/regexp/HostnameRegexp.qll |  2 --
 .../IncompleteUrlSubstringSanitization.qll        |  2 +-
 ...IncompleteUrlSubstringSanitizationSpecific.qll |  2 ++
 .../ql/lib/semmle/python/dataflow/new/Regexp.qll  |  5 +++--
 .../python/security/regexp/HostnameRegex.qll      |  2 --
 ruby/ql/lib/codeql/ruby/Regexp.qll                |  5 +++--
 .../ruby/security/regexp/HostnameRegexp.qll       |  2 --
 .../IncompleteUrlSubstringSanitization.qll        |  2 +-
 ...IncompleteUrlSubstringSanitizationSpecific.qll |  3 ++-
 shared/regex/codeql/regex/HostnameRegexp.qll      | 15 +++++++++------
 11 files changed, 24 insertions(+), 21 deletions(-)

diff --git a/javascript/ql/lib/semmle/javascript/Regexp.qll b/javascript/ql/lib/semmle/javascript/Regexp.qll
index fc82929500b..a8ec9ac512f 100644
--- a/javascript/ql/lib/semmle/javascript/Regexp.qll
+++ b/javascript/ql/lib/semmle/javascript/Regexp.qll
@@ -999,11 +999,12 @@ predicate isInterpretedAsRegExp(DataFlow::Node source) {
 /**
  * Provides utility predicates related to regular expressions.
  */
-module RegExpPatterns {
+deprecated module RegExpPatterns {
   /**
    * Gets a pattern that matches common top-level domain names in lower case.
+   * DEPRECATED: use the similarly named predicate from `HostnameRegex` from the `regex` pack instead.
    */
-  string getACommonTld() {
+  deprecated string getACommonTld() {
     // according to ranking by http://google.com/search?q=site:.<<TLD>>
     result = "(?:com|org|edu|gov|uk|net|io)(?![a-z0-9])"
   }
diff --git a/javascript/ql/lib/semmle/javascript/security/regexp/HostnameRegexp.qll b/javascript/ql/lib/semmle/javascript/security/regexp/HostnameRegexp.qll
index 1922ad01bf1..4a09b7f402e 100644
--- a/javascript/ql/lib/semmle/javascript/security/regexp/HostnameRegexp.qll
+++ b/javascript/ql/lib/semmle/javascript/security/regexp/HostnameRegexp.qll
@@ -12,8 +12,6 @@ private module Impl implements Shared::HostnameRegexpSig<TreeImpl> {
   class DataFlowNode = JS::DataFlow::Node;
 
   class RegExpPatternSource = RegExp::RegExpPatternSource;
-
-  string getACommonTld() { result = RegExp::RegExpPatterns::getACommonTld() }
 }
 
 import Shared::Make<TreeImpl, Impl>
diff --git a/javascript/ql/src/Security/CWE-020/IncompleteUrlSubstringSanitization.qll b/javascript/ql/src/Security/CWE-020/IncompleteUrlSubstringSanitization.qll
index ca8b15eab29..f4405130898 100644
--- a/javascript/ql/src/Security/CWE-020/IncompleteUrlSubstringSanitization.qll
+++ b/javascript/ql/src/Security/CWE-020/IncompleteUrlSubstringSanitization.qll
@@ -31,7 +31,7 @@ query predicate problems(
   (
     // target contains a domain on a common TLD, and perhaps some other URL components
     target
-        .regexpMatch("(?i)([a-z]*:?//)?\\.?([a-z0-9-]+\\.)+" + RegExpPatterns::getACommonTld() +
+        .regexpMatch("(?i)([a-z]*:?//)?\\.?([a-z0-9-]+\\.)+" + HostnameRegexp::getACommonTld() +
             "(:[0-9]+)?/?")
     or
     // target is a HTTP URL to a domain on any TLD
diff --git a/javascript/ql/src/Security/CWE-020/IncompleteUrlSubstringSanitizationSpecific.qll b/javascript/ql/src/Security/CWE-020/IncompleteUrlSubstringSanitizationSpecific.qll
index 2d0e9e3d458..30c71450c43 100644
--- a/javascript/ql/src/Security/CWE-020/IncompleteUrlSubstringSanitizationSpecific.qll
+++ b/javascript/ql/src/Security/CWE-020/IncompleteUrlSubstringSanitizationSpecific.qll
@@ -3,3 +3,5 @@ import semmle.javascript.dataflow.InferredTypes
 
 /** Holds if `node` may evaluate to `value` */
 predicate mayHaveStringValue(DataFlow::Node node, string value) { node.mayHaveStringValue(value) }
+
+import semmle.javascript.security.regexp.HostnameRegexp as HostnameRegexp
diff --git a/python/ql/lib/semmle/python/dataflow/new/Regexp.qll b/python/ql/lib/semmle/python/dataflow/new/Regexp.qll
index 2ecde8686c3..a518fc41f46 100644
--- a/python/ql/lib/semmle/python/dataflow/new/Regexp.qll
+++ b/python/ql/lib/semmle/python/dataflow/new/Regexp.qll
@@ -9,11 +9,12 @@ private import semmle.python.dataflow.new.DataFlow
 /**
  * Provides utility predicates related to regular expressions.
  */
-module RegExpPatterns {
+deprecated module RegExpPatterns {
   /**
    * Gets a pattern that matches common top-level domain names in lower case.
+   * DEPRECATED: use the similarly named predicate from `HostnameRegex` from the `regex` pack instead.
    */
-  string getACommonTld() {
+  deprecated string getACommonTld() {
     // according to ranking by http://google.com/search?q=site:.<<TLD>>
     result = "(?:com|org|edu|gov|uk|net|io)(?![a-z0-9])"
   }
diff --git a/python/ql/lib/semmle/python/security/regexp/HostnameRegex.qll b/python/ql/lib/semmle/python/security/regexp/HostnameRegex.qll
index db0ab155b3e..1feffcc1087 100644
--- a/python/ql/lib/semmle/python/security/regexp/HostnameRegex.qll
+++ b/python/ql/lib/semmle/python/security/regexp/HostnameRegex.qll
@@ -13,8 +13,6 @@ private module Impl implements Shared::HostnameRegexpSig<TreeImpl> {
   class DataFlowNode = DataFlow::Node;
 
   class RegExpPatternSource = Regexp::RegExpPatternSource;
-
-  string getACommonTld() { result = Regexp::RegExpPatterns::getACommonTld() }
 }
 
 import Shared::Make<TreeImpl, Impl>
diff --git a/ruby/ql/lib/codeql/ruby/Regexp.qll b/ruby/ql/lib/codeql/ruby/Regexp.qll
index 0d5760491f7..e235d92ed73 100644
--- a/ruby/ql/lib/codeql/ruby/Regexp.qll
+++ b/ruby/ql/lib/codeql/ruby/Regexp.qll
@@ -15,11 +15,12 @@ private import codeql.ruby.ApiGraphs
 /**
  * Provides utility predicates related to regular expressions.
  */
-module RegExpPatterns {
+deprecated module RegExpPatterns {
   /**
    * Gets a pattern that matches common top-level domain names in lower case.
+   * DEPRECATED: use the similarly named predicate from `HostnameRegex` from the `regex` pack instead.
    */
-  string getACommonTld() {
+  deprecated string getACommonTld() {
     // according to ranking by http://google.com/search?q=site:.<<TLD>>
     result = "(?:com|org|edu|gov|uk|net|io)(?![a-z0-9])"
   }
diff --git a/ruby/ql/lib/codeql/ruby/security/regexp/HostnameRegexp.qll b/ruby/ql/lib/codeql/ruby/security/regexp/HostnameRegexp.qll
index 234cf1e9593..d9b19afeb69 100644
--- a/ruby/ql/lib/codeql/ruby/security/regexp/HostnameRegexp.qll
+++ b/ruby/ql/lib/codeql/ruby/security/regexp/HostnameRegexp.qll
@@ -12,8 +12,6 @@ private module Impl implements Shared::HostnameRegexpSig<TreeImpl> {
   class DataFlowNode = DataFlow::Node;
 
   class RegExpPatternSource = Regexp::RegExpPatternSource;
-
-  string getACommonTld() { result = Regexp::RegExpPatterns::getACommonTld() }
 }
 
 import Shared::Make<TreeImpl, Impl>
diff --git a/ruby/ql/src/queries/security/cwe-020/IncompleteUrlSubstringSanitization.qll b/ruby/ql/src/queries/security/cwe-020/IncompleteUrlSubstringSanitization.qll
index ca8b15eab29..f4405130898 100644
--- a/ruby/ql/src/queries/security/cwe-020/IncompleteUrlSubstringSanitization.qll
+++ b/ruby/ql/src/queries/security/cwe-020/IncompleteUrlSubstringSanitization.qll
@@ -31,7 +31,7 @@ query predicate problems(
   (
     // target contains a domain on a common TLD, and perhaps some other URL components
     target
-        .regexpMatch("(?i)([a-z]*:?//)?\\.?([a-z0-9-]+\\.)+" + RegExpPatterns::getACommonTld() +
+        .regexpMatch("(?i)([a-z]*:?//)?\\.?([a-z0-9-]+\\.)+" + HostnameRegexp::getACommonTld() +
             "(:[0-9]+)?/?")
     or
     // target is a HTTP URL to a domain on any TLD
diff --git a/ruby/ql/src/queries/security/cwe-020/IncompleteUrlSubstringSanitizationSpecific.qll b/ruby/ql/src/queries/security/cwe-020/IncompleteUrlSubstringSanitizationSpecific.qll
index de439d29c75..b0bbca30b90 100644
--- a/ruby/ql/src/queries/security/cwe-020/IncompleteUrlSubstringSanitizationSpecific.qll
+++ b/ruby/ql/src/queries/security/cwe-020/IncompleteUrlSubstringSanitizationSpecific.qll
@@ -1,8 +1,9 @@
 import codeql.ruby.DataFlow
 import codeql.ruby.StringOps
-import codeql.ruby.Regexp::RegExpPatterns as RegExpPatterns
 
 /** Holds if `node` may evaluate to `value` */
 predicate mayHaveStringValue(DataFlow::Node node, string value) {
   node.asExpr().getConstantValue().getString() = value
 }
+
+import codeql.ruby.security.regexp.HostnameRegexp as HostnameRegexp
diff --git a/shared/regex/codeql/regex/HostnameRegexp.qll b/shared/regex/codeql/regex/HostnameRegexp.qll
index 5370e6e18a9..b40a58ab849 100644
--- a/shared/regex/codeql/regex/HostnameRegexp.qll
+++ b/shared/regex/codeql/regex/HostnameRegexp.qll
@@ -10,11 +10,6 @@ private import RegexTreeView
  * analysis on regular expressions matching hostnames.
  */
 signature module HostnameRegexpSig<RegexTreeViewSig TreeImpl> {
-  /**
-   * Gets a pattern that matches common top-level domain names in lower case.
-   */
-  string getACommonTld();
-
   /** A node in the data-flow graph. */
   class DataFlowNode;
 
@@ -97,7 +92,7 @@ module Make<RegexTreeViewSig TreeImpl, HostnameRegexpSig<TreeImpl> Specific> {
     seq.getChild(i)
         .(RegExpConstant)
         .getValue()
-        .regexpMatch("(?i)" + Specific::getACommonTld() + "(:\\d+)?([/?#].*)?") and
+        .regexpMatch("(?i)" + getACommonTld() + "(:\\d+)?([/?#].*)?") and
     isDotLike(seq.getChild(i - 1)) and
     not (i = 1 and matchesBeginningOfString(seq))
   }
@@ -265,4 +260,12 @@ module Make<RegexTreeViewSig TreeImpl, HostnameRegexpSig<TreeImpl> Specific> {
   private RegExpTerm getLastChild(RegExpTerm parent) {
     result = max(RegExpTerm child, int i | child = parent.getChild(i) | child order by i)
   }
+
+  /**
+   * Gets a pattern that matches common top-level domain names in lower case.
+   */
+  string getACommonTld() {
+    // according to ranking by http://google.com/search?q=site:.<<TLD>>
+    result = "(?:com|org|edu|gov|uk|net|io)(?![a-z0-9])"
+  }
 }

From 26c5480ee6997388b6e516164b724212d398606d Mon Sep 17 00:00:00 2001
From: erik-krogh <erik-krogh@github.com>
Date: Thu, 15 Dec 2022 21:52:02 +0100
Subject: [PATCH 1416/1420] share {js,rb}/regex/missing-regexp-anchor

---
 .../semmle/code/java/regex/RegexTreeView.qll  |  29 ++-
 .../ql/lib/semmle/javascript/Regexp.qll       |   7 +
 .../security/regexp/HostnameRegexp.qll        |   3 +-
 .../Security/CWE-020/MissingRegExpAnchor.ql   | 191 ++-------------
 python/ql/lib/semmle/python/RegexTreeView.qll |  27 ++-
 .../lib/codeql/ruby/regexp/RegExpTreeView.qll |   4 +-
 .../ruby/security/regexp/HostnameRegexp.qll   |   3 +-
 .../security/cwe-020/MissingRegExpAnchor.ql   | 215 ++---------------
 .../codeql/regex/MissingRegExpAnchor.qll      | 225 ++++++++++++++++++
 shared/regex/codeql/regex/RegexTreeView.qll   |  26 +-
 10 files changed, 346 insertions(+), 384 deletions(-)
 create mode 100644 shared/regex/codeql/regex/MissingRegExpAnchor.qll

diff --git a/java/ql/lib/semmle/code/java/regex/RegexTreeView.qll b/java/ql/lib/semmle/code/java/regex/RegexTreeView.qll
index d376f7d2388..c0711bb7fdc 100644
--- a/java/ql/lib/semmle/code/java/regex/RegexTreeView.qll
+++ b/java/ql/lib/semmle/code/java/regex/RegexTreeView.qll
@@ -85,6 +85,9 @@ module Impl implements RegexTreeViewSig {
 
     /** Gets the associated regex. */
     abstract Regex getRegex();
+
+    /** Gets the last child term of this element. */
+    RegExpTerm getLastChild() { result = this.getChild(this.getNumChild() - 1) }
   }
 
   /**
@@ -567,6 +570,13 @@ module Impl implements RegexTreeViewSig {
     RegExpWordBoundary() { this.getChar() = "\\b" }
   }
 
+  /**
+   * A non-word boundary, that is, a regular expression term of the form `\B`.
+   */
+  class RegExpNonWordBoundary extends RegExpSpecialChar {
+    RegExpNonWordBoundary() { this.getChar() = "\\B" }
+  }
+
   /**
    * Gets the hex number for the `hex` char.
    */
@@ -922,6 +932,21 @@ module Impl implements RegexTreeViewSig {
     override string getPrimaryQLClass() { result = "RegExpDot" }
   }
 
+  /**
+   * A term that matches a specific position between characters in the string.
+   *
+   * Example:
+   *
+   * ```
+   * ^
+   * ```
+   */
+  class RegExpAnchor extends RegExpSpecialChar {
+    RegExpAnchor() { this.getChar() = ["$", "^"] }
+
+    override string getPrimaryQLClass() { result = "RegExpAnchor" }
+  }
+
   /**
    * A dollar assertion `$` matching the end of a line.
    *
@@ -931,7 +956,7 @@ module Impl implements RegexTreeViewSig {
    * $
    * ```
    */
-  class RegExpDollar extends RegExpSpecialChar {
+  class RegExpDollar extends RegExpAnchor {
     RegExpDollar() { this.getChar() = "$" }
 
     override string getPrimaryQLClass() { result = "RegExpDollar" }
@@ -946,7 +971,7 @@ module Impl implements RegexTreeViewSig {
    * ^
    * ```
    */
-  class RegExpCaret extends RegExpSpecialChar {
+  class RegExpCaret extends RegExpAnchor {
     RegExpCaret() { this.getChar() = "^" }
 
     override string getPrimaryQLClass() { result = "RegExpCaret" }
diff --git a/javascript/ql/lib/semmle/javascript/Regexp.qll b/javascript/ql/lib/semmle/javascript/Regexp.qll
index a8ec9ac512f..9cef1455746 100644
--- a/javascript/ql/lib/semmle/javascript/Regexp.qll
+++ b/javascript/ql/lib/semmle/javascript/Regexp.qll
@@ -366,6 +366,9 @@ class RegExpAnchor extends RegExpTerm, @regexp_anchor {
   override predicate isNullable() { any() }
 
   override string getAPrimaryQlClass() { result = "RegExpAnchor" }
+
+  /** Gets the char for this term. */
+  abstract string getChar();
 }
 
 /**
@@ -379,6 +382,8 @@ class RegExpAnchor extends RegExpTerm, @regexp_anchor {
  */
 class RegExpCaret extends RegExpAnchor, @regexp_caret {
   override string getAPrimaryQlClass() { result = "RegExpCaret" }
+
+  override string getChar() { result = "^" }
 }
 
 /**
@@ -392,6 +397,8 @@ class RegExpCaret extends RegExpAnchor, @regexp_caret {
  */
 class RegExpDollar extends RegExpAnchor, @regexp_dollar {
   override string getAPrimaryQlClass() { result = "RegExpDollar" }
+
+  override string getChar() { result = "$" }
 }
 
 /**
diff --git a/javascript/ql/lib/semmle/javascript/security/regexp/HostnameRegexp.qll b/javascript/ql/lib/semmle/javascript/security/regexp/HostnameRegexp.qll
index 4a09b7f402e..c9853ce35f1 100644
--- a/javascript/ql/lib/semmle/javascript/security/regexp/HostnameRegexp.qll
+++ b/javascript/ql/lib/semmle/javascript/security/regexp/HostnameRegexp.qll
@@ -8,7 +8,8 @@ private import semmle.javascript.security.regexp.RegExpTreeView::RegExpTreeView
 private import semmle.javascript.Regexp as RegExp
 private import codeql.regex.HostnameRegexp as Shared
 
-private module Impl implements Shared::HostnameRegexpSig<TreeImpl> {
+/** An implementation of the signature that allows the Hostname analysis to run. */
+module Impl implements Shared::HostnameRegexpSig<TreeImpl> {
   class DataFlowNode = JS::DataFlow::Node;
 
   class RegExpPatternSource = RegExp::RegExpPatternSource;
diff --git a/javascript/ql/src/Security/CWE-020/MissingRegExpAnchor.ql b/javascript/ql/src/Security/CWE-020/MissingRegExpAnchor.ql
index 504739a68ae..abebc5943de 100644
--- a/javascript/ql/src/Security/CWE-020/MissingRegExpAnchor.ql
+++ b/javascript/ql/src/Security/CWE-020/MissingRegExpAnchor.ql
@@ -12,194 +12,38 @@
  */
 
 private import javascript
-private import semmle.javascript.security.regexp.HostnameRegexp
+private import semmle.javascript.security.regexp.HostnameRegexp as HostnameRegexp
+private import codeql.regex.MissingRegExpAnchor as MissingRegExpAnchor
+private import semmle.javascript.security.regexp.RegExpTreeView::RegExpTreeView as TreeImpl
 
-// TODO: Share the below code.
-/**
- * Holds if `term` is an anchor that is not the first or last node
- * in its tree.
- */
-predicate isInteriorAnchor(RegExpAnchor term) {
-  not isLeftArmTerm(term) and
-  not isRightArmTerm(term)
-}
-
-/**
- * Holds if `term` contains an anchor that is not the first or last node
- * in its tree, such as `(foo|bar$|baz)`.
- */
-predicate containsInteriorAnchor(RegExpTerm term) { isInteriorAnchor(term.getAChild*()) }
-
-/**
- * Holds if `term` starts with a word boundary or lookbehind assertion,
- * indicating that it's not intended to be anchored on that side.
- */
-predicate containsLeadingPseudoAnchor(RegExpSequence term) {
-  exists(RegExpTerm child | child = term.getChild(0) |
-    child instanceof RegExpWordBoundary or
-    child instanceof RegExpNonWordBoundary or
-    child instanceof RegExpLookbehind
-  )
-}
-
-/**
- * Holds if `term` ends with a word boundary or lookahead assertion,
- * indicating that it's not intended to be anchored on that side.
- */
-predicate containsTrailingPseudoAnchor(RegExpSequence term) {
-  exists(RegExpTerm child | child = term.getLastChild() |
-    child instanceof RegExpWordBoundary or
-    child instanceof RegExpNonWordBoundary or
-    child instanceof RegExpLookahead
-  )
-}
-
-/**
- * Holds if `term` is an empty sequence, usually arising from
- * literals with a trailing alternative such as `foo|`.
- */
-predicate isEmpty(RegExpSequence term) { term.getNumChild() = 0 }
-
-/**
- * Holds if `term` contains a letter constant.
- *
- * We use this as a heuristic to filter out uninteresting results.
- */
-predicate containsLetters(RegExpTerm term) {
-  term.getAChild*().(RegExpConstant).getValue().regexpMatch(".*[a-zA-Z].*")
-}
-
-/**
- * Holds if `term` consists only of an anchor and a parenthesized term,
- * such as the left side of `^(foo|bar)|baz`.
- *
- * The precedence of the anchor is likely to be intentional in this case,
- * as the group wouldn't be needed otherwise.
- */
-predicate isAnchoredGroup(RegExpSequence term) {
-  term.getNumChild() = 2 and
-  term.getAChild() instanceof RegExpAnchor and
-  term.getAChild() instanceof RegExpGroup
-}
-
-/**
- * Holds if `alt` has an explicitly anchored group, such as `^(foo|bar)|baz`
- * and doesn't have any unnecessary groups, such as in `^(foo)|(bar)`.
- */
-predicate hasExplicitAnchorPrecedence(RegExpAlt alt) {
-  isAnchoredGroup(alt.getAChild()) and
-  not alt.getAChild() instanceof RegExpGroup
-}
-
-/**
- * Holds if `src` is a pattern for a collection of alternatives where
- * only the first or last alternative is anchored, indicating a
- * precedence mistake explained by `msg`.
- *
- * The canonical example of such a mistake is: `^a|b|c`, which is
- * parsed as `(^a)|(b)|(c)`.
- */
-predicate hasMisleadingAnchorPrecedence(RegExpPatternSource src, string msg) {
-  exists(RegExpAlt root, RegExpSequence anchoredTerm, string direction |
-    root = src.getRegExpTerm() and
-    not containsInteriorAnchor(root) and
-    not isEmpty(root.getAChild()) and
-    not hasExplicitAnchorPrecedence(root) and
-    containsLetters(anchoredTerm) and
-    (
-      anchoredTerm = root.getChild(0) and
-      anchoredTerm.getChild(0) instanceof RegExpCaret and
-      not containsLeadingPseudoAnchor(root.getChild([1 .. root.getNumChild() - 1])) and
-      containsLetters(root.getChild([1 .. root.getNumChild() - 1])) and
-      direction = "beginning"
-      or
-      anchoredTerm = root.getLastChild() and
-      anchoredTerm.getLastChild() instanceof RegExpDollar and
-      not containsTrailingPseudoAnchor(root.getChild([0 .. root.getNumChild() - 2])) and
-      containsLetters(root.getChild([0 .. root.getNumChild() - 2])) and
-      direction = "end"
-    ) and
-    // is not used for replace
-    not exists(DataFlow::MethodCallNode replace |
-      replace.getMethodName() = "replace" and
-      src.getARegExpObject().flowsTo(replace.getArgument(0))
-    ) and
-    msg =
-      "Misleading operator precedence. The subexpression '" + anchoredTerm.getRawValue() +
-        "' is anchored at the " + direction +
-        ", but the other parts of this regular expression are not"
-  )
-}
-
-/**
- * Holds if `term` is a final term, that is, no term will match anything after this one.
- */
-predicate isFinalRegExpTerm(RegExpTerm term) {
-  term.isRootTerm()
-  or
-  exists(RegExpSequence seq |
-    isFinalRegExpTerm(seq) and
-    term = seq.getLastChild()
-  )
-  or
-  exists(RegExpTerm parent |
-    isFinalRegExpTerm(parent) and
-    term = parent.getAChild() and
-    not parent instanceof RegExpSequence and
-    not parent instanceof RegExpQuantifier
-  )
-}
-
-/**
- * Holds if `src` contains a hostname pattern that is missing a `$` anchor.
- */
-predicate isSemiAnchoredHostnameRegExp(RegExpPatternSource src, string msg) {
-  not hasMisleadingAnchorPrecedence(src, _) and // avoid double reporting
-  exists(RegExpTerm term, RegExpSequence tld, int i | term = src.getRegExpTerm() |
-    not isConstantInvalidInsideOrigin(term.getAChild*()) and
-    tld = term.getAChild*() and
-    hasTopLevelDomainEnding(tld, i) and
-    isFinalRegExpTerm(tld.getChild(i)) and // nothing is matched after the TLD
-    tld.getChild(0) instanceof RegExpCaret and
-    msg =
-      "This hostname pattern may match any domain name, as it is missing a '$' or '/' at the end."
-  )
-}
-
-/**
- * Holds if `src` is an unanchored pattern for a URL, indicating a
- * mistake explained by `msg`.
- */
-predicate isUnanchoredHostnameRegExp(RegExpPatternSource src, string msg) {
-  exists(RegExpTerm term, RegExpSequence tld | term = src.getRegExpTerm() |
-    alwaysMatchesHostname(term) and
-    tld = term.getAChild*() and
-    hasTopLevelDomainEnding(tld) and
-    not isConstantInvalidInsideOrigin(term.getAChild*()) and
-    not term.getAChild*() instanceof RegExpAnchor and
-    // that is not used for capture or replace
-    not exists(DataFlow::MethodCallNode mcn, string name | name = mcn.getMethodName() |
+private module Impl implements
+MissingRegExpAnchor::MissingRegExpAnchorSig<TreeImpl, HostnameRegexp::Impl> {
+  predicate isUsedAsReplace(RegExpPatternSource pattern) {
+    // is used for capture or replace
+    exists(DataFlow::MethodCallNode mcn, string name | name = mcn.getMethodName() |
       name = "exec" and
-      mcn = src.getARegExpObject().getAMethodCall() and
+      mcn = pattern.getARegExpObject().getAMethodCall() and
       exists(mcn.getAPropertyRead())
       or
       exists(DataFlow::Node arg |
         arg = mcn.getArgument(0) and
         (
-          src.getARegExpObject().flowsTo(arg) or
-          src.getAParse() = arg
+          pattern.getARegExpObject().flowsTo(arg) or
+          pattern.getAParse() = arg
         )
       |
         name = "replace"
         or
         name = "match" and exists(mcn.getAPropertyRead())
       )
-    ) and
-    msg =
-      "When this is used as a regular expression on a URL, it may match anywhere, and arbitrary hosts may come before or after it."
-  )
+    )
+  }
+
+  string getEndAnchorText() { result = "$" }
 }
 
+import MissingRegExpAnchor::Make<TreeImpl, HostnameRegexp::Impl, Impl>
+
 from DataFlow::Node nd, string msg
 where
   isUnanchoredHostnameRegExp(nd, msg)
@@ -207,4 +51,5 @@ where
   isSemiAnchoredHostnameRegExp(nd, msg)
   or
   hasMisleadingAnchorPrecedence(nd, msg)
+// isLineAnchoredHostnameRegExp is not used here, as it is not relevant to JS.
 select nd, msg
diff --git a/python/ql/lib/semmle/python/RegexTreeView.qll b/python/ql/lib/semmle/python/RegexTreeView.qll
index 5be80d94ec4..cdc1ca3adc2 100644
--- a/python/ql/lib/semmle/python/RegexTreeView.qll
+++ b/python/ql/lib/semmle/python/RegexTreeView.qll
@@ -102,6 +102,9 @@ module Impl implements RegexTreeViewSig {
     /** Gets the number of child terms. */
     int getNumChild() { result = count(this.getAChild()) }
 
+    /** Gets the last child term of this element. */
+    RegExpTerm getLastChild() { result = this.getChild(this.getNumChild() - 1) }
+
     /** Gets the associated regex. */
     abstract Regex getRegex();
   }
@@ -561,6 +564,13 @@ module Impl implements RegexTreeViewSig {
     RegExpWordBoundary() { this.getChar() = "\\b" }
   }
 
+  /**
+   * A non-word boundary, that is, a regular expression term of the form `\B`.
+   */
+  class RegExpNonWordBoundary extends RegExpSpecialChar {
+    RegExpNonWordBoundary() { this.getChar() = "\\B" }
+  }
+
   /**
    * A character class escape in a regular expression.
    * That is, an escaped character that denotes multiple characters.
@@ -829,6 +839,19 @@ module Impl implements RegexTreeViewSig {
     override string getPrimaryQLClass() { result = "RegExpDot" }
   }
 
+  /**
+   * A term that matches a specific position between characters in the string.
+   *
+   * Example:
+   *
+   * ```
+   * \A
+   * ```
+   */
+  class RegExpAnchor extends RegExpSpecialChar {
+    RegExpAnchor() { this.getChar() = ["^", "$"] }
+  }
+
   /**
    * A dollar assertion `$` or `\Z` matching the end of a line.
    *
@@ -838,7 +861,7 @@ module Impl implements RegexTreeViewSig {
    * $
    * ```
    */
-  class RegExpDollar extends RegExpSpecialChar {
+  class RegExpDollar extends RegExpAnchor {
     RegExpDollar() { this.getChar() = ["$", "\\Z"] }
 
     override string getPrimaryQLClass() { result = "RegExpDollar" }
@@ -853,7 +876,7 @@ module Impl implements RegexTreeViewSig {
    * ^
    * ```
    */
-  class RegExpCaret extends RegExpSpecialChar {
+  class RegExpCaret extends RegExpAnchor {
     RegExpCaret() { this.getChar() = ["^", "\\A"] }
 
     override string getPrimaryQLClass() { result = "RegExpCaret" }
diff --git a/ruby/ql/lib/codeql/ruby/regexp/RegExpTreeView.qll b/ruby/ql/lib/codeql/ruby/regexp/RegExpTreeView.qll
index 3f56d3f59b0..b11efbdd268 100644
--- a/ruby/ql/lib/codeql/ruby/regexp/RegExpTreeView.qll
+++ b/ruby/ql/lib/codeql/ruby/regexp/RegExpTreeView.qll
@@ -620,7 +620,7 @@ private module Impl implements RegexTreeViewSig {
   /**
    * A non-word boundary, that is, a regular expression term of the form `\B`.
    */
-  additional class RegExpNonWordBoundary extends RegExpSpecialChar {
+  class RegExpNonWordBoundary extends RegExpSpecialChar {
     RegExpNonWordBoundary() { this.getChar() = "\\B" }
 
     override string getAPrimaryQlClass() { result = "RegExpNonWordBoundary" }
@@ -926,7 +926,7 @@ private module Impl implements RegexTreeViewSig {
    * \A
    * ```
    */
-  additional class RegExpAnchor extends RegExpSpecialChar {
+  class RegExpAnchor extends RegExpSpecialChar {
     RegExpAnchor() { this.getChar() = ["^", "$", "\\A", "\\Z", "\\z"] }
 
     override string getAPrimaryQlClass() { result = "RegExpAnchor" }
diff --git a/ruby/ql/lib/codeql/ruby/security/regexp/HostnameRegexp.qll b/ruby/ql/lib/codeql/ruby/security/regexp/HostnameRegexp.qll
index d9b19afeb69..88e07527bb7 100644
--- a/ruby/ql/lib/codeql/ruby/security/regexp/HostnameRegexp.qll
+++ b/ruby/ql/lib/codeql/ruby/security/regexp/HostnameRegexp.qll
@@ -8,7 +8,8 @@ private import codeql.ruby.regexp.RegExpTreeView::RegexTreeView as TreeImpl
 private import codeql.ruby.Regexp as Regexp
 private import codeql.regex.HostnameRegexp as Shared
 
-private module Impl implements Shared::HostnameRegexpSig<TreeImpl> {
+/** An implementation of the signature that allows the Hostname analysis to run. */
+module Impl implements Shared::HostnameRegexpSig<TreeImpl> {
   class DataFlowNode = DataFlow::Node;
 
   class RegExpPatternSource = Regexp::RegExpPatternSource;
diff --git a/ruby/ql/src/queries/security/cwe-020/MissingRegExpAnchor.ql b/ruby/ql/src/queries/security/cwe-020/MissingRegExpAnchor.ql
index e39fb9d4f67..afbef214159 100644
--- a/ruby/ql/src/queries/security/cwe-020/MissingRegExpAnchor.ql
+++ b/ruby/ql/src/queries/security/cwe-020/MissingRegExpAnchor.ql
@@ -14,216 +14,29 @@
 import codeql.ruby.DataFlow
 import codeql.ruby.regexp.RegExpTreeView
 import codeql.ruby.Regexp
-private import codeql.ruby.security.regexp.HostnameRegexp
+private import codeql.ruby.security.regexp.HostnameRegexp as HostnameRegexp
+private import codeql.regex.MissingRegExpAnchor as MissingRegExpAnchor
+private import codeql.ruby.regexp.RegExpTreeView::RegexTreeView as TreeImpl
 
-/**
- * Holds if `term` is a final term, that is, no term will match anything after this one.
- */
-predicate isFinalRegExpTerm(RegExpTerm term) {
-  term.isRootTerm()
-  or
-  exists(RegExpSequence seq |
-    isFinalRegExpTerm(seq) and
-    term = seq.getLastChild()
-  )
-  or
-  exists(RegExpTerm parent |
-    isFinalRegExpTerm(parent) and
-    term = parent.getAChild() and
-    not parent instanceof RegExpSequence and
-    not parent instanceof RegExpQuantifier
-  )
-}
-
-/**
- * Holds if `term` is an anchor that is not the first or last node
- * in its tree.
- */
-predicate isInteriorAnchor(RegExpAnchor term) {
-  not isLeftArmTerm(term) and
-  not isRightArmTerm(term)
-}
-
-/**
- * Holds if `term` contains an anchor that is not the first or last node
- * in its tree, such as `(foo|bar$|baz)`.
- */
-predicate containsInteriorAnchor(RegExpTerm term) { isInteriorAnchor(term.getAChild*()) }
-
-/**
- * Holds if `term` starts with a word boundary or lookbehind assertion,
- * indicating that it's not intended to be anchored on that side.
- */
-predicate containsLeadingPseudoAnchor(RegExpSequence term) {
-  exists(RegExpTerm child | child = term.getChild(0) |
-    child instanceof RegExpWordBoundary or
-    child instanceof RegExpNonWordBoundary or
-    child instanceof RegExpLookbehind
-  )
-}
-
-/**
- * Holds if `term` ends with a word boundary or lookahead assertion,
- * indicating that it's not intended to be anchored on that side.
- */
-predicate containsTrailingPseudoAnchor(RegExpSequence term) {
-  exists(RegExpTerm child | child = term.getLastChild() |
-    child instanceof RegExpWordBoundary or
-    child instanceof RegExpNonWordBoundary or
-    child instanceof RegExpLookahead
-  )
-}
-
-/**
- * Holds if `term` is an empty sequence, usually arising from
- * literals with a trailing alternative such as `foo|`.
- */
-predicate isEmpty(RegExpSequence term) { term.getNumChild() = 0 }
-
-/**
- * Holds if `term` contains a letter constant.
- *
- * We use this as a heuristic to filter out uninteresting results.
- */
-predicate containsLetters(RegExpTerm term) {
-  term.getAChild*().(RegExpConstant).getValue().regexpMatch(".*[a-zA-Z].*")
-}
-
-/**
- * Holds if `alt` has an explicitly anchored group, such as `^(foo|bar)|baz`
- * and doesn't have any unnecessary groups, such as in `^(foo)|(bar)`.
- */
-predicate hasExplicitAnchorPrecedence(RegExpAlt alt) {
-  isAnchoredGroup(alt.getAChild()) and
-  not alt.getAChild() instanceof RegExpGroup
-}
-
-/**
- * Holds if `term` consists only of an anchor and a parenthesized term,
- * such as the left side of `^(foo|bar)|baz`.
- *
- * The precedence of the anchor is likely to be intentional in this case,
- * as the group wouldn't be needed otherwise.
- */
-predicate isAnchoredGroup(RegExpSequence term) {
-  term.getNumChild() = 2 and
-  term.getAChild() instanceof RegExpAnchor and
-  term.getAChild() instanceof RegExpGroup
-}
-
-/**
- * Holds if `src` is a pattern for a collection of alternatives where
- * only the first or last alternative is anchored, indicating a
- * precedence mistake explained by `msg`.
- *
- * The canonical example of such a mistake is: `^a|b|c`, which is
- * parsed as `(^a)|(b)|(c)`.
- */
-predicate hasMisleadingAnchorPrecedence(RegExpPatternSource src, string msg) {
-  exists(RegExpAlt root, RegExpSequence anchoredTerm, string direction |
-    root = src.getRegExpTerm() and
-    not containsInteriorAnchor(root) and
-    not isEmpty(root.getAChild()) and
-    not hasExplicitAnchorPrecedence(root) and
-    containsLetters(anchoredTerm) and
-    (
-      anchoredTerm = root.getChild(0) and
-      anchoredTerm.getChild(0) instanceof RegExpCaret and
-      not containsLeadingPseudoAnchor(root.getChild([1 .. root.getNumChild() - 1])) and
-      containsLetters(root.getChild([1 .. root.getNumChild() - 1])) and
-      direction = "beginning"
-      or
-      anchoredTerm = root.getLastChild() and
-      anchoredTerm.getLastChild() instanceof RegExpDollar and
-      not containsTrailingPseudoAnchor(root.getChild([0 .. root.getNumChild() - 2])) and
-      containsLetters(root.getChild([0 .. root.getNumChild() - 2])) and
-      direction = "end"
-    ) and
-    // that is not used for string replacement
-    not exists(DataFlow::CallNode mcn, DataFlow::Node arg, string name |
+private module Impl implements
+MissingRegExpAnchor::MissingRegExpAnchorSig<TreeImpl, HostnameRegexp::Impl> {
+  predicate isUsedAsReplace(RegExpPatternSource pattern) {
+    exists(DataFlow::CallNode mcn, DataFlow::Node arg, string name |
       name = mcn.getMethodName() and
       arg = mcn.getArgument(0)
     |
       (
-        src.getAParse().(DataFlow::LocalSourceNode).flowsTo(arg) or
-        src.getAParse() = arg
+        pattern.getAParse().(DataFlow::LocalSourceNode).flowsTo(arg) or
+        pattern.getAParse() = arg
       ) and
       name = ["sub", "sub!", "gsub", "gsub!"]
-    ) and
-    msg =
-      "Misleading operator precedence. The subexpression '" + anchoredTerm.getRawValue() +
-        "' is anchored at the " + direction +
-        ", but the other parts of this regular expression are not"
-  )
+    )
+  }
+
+  string getEndAnchorText() { result = "\\z" }
 }
 
-/**
- * Holds if `src` contains a hostname pattern that uses the `^/$` line anchors
- * rather than `\A/\z` which match the start/end of the whole string.
- */
-predicate isLineAnchoredHostnameRegExp(RegExpPatternSource src, string msg) {
-  // TODO: <- this one is Ruby specific.
-  // avoid double reporting
-  not (
-    isSemiAnchoredHostnameRegExp(src, _) or
-    hasMisleadingAnchorPrecedence(src, _)
-  ) and
-  exists(RegExpTerm term, RegExpSequence tld, int i | term = src.getRegExpTerm() |
-    not isConstantInvalidInsideOrigin(term.getAChild*()) and
-    tld = term.getAChild*() and
-    hasTopLevelDomainEnding(tld, i) and
-    isFinalRegExpTerm(tld.getChild(i)) and // nothing is matched after the TLD
-    (
-      tld.getChild(0).(RegExpCaret).getChar() = "^" or
-      tld.getLastChild().(RegExpDollar).getChar() = "$"
-    ) and
-    msg =
-      "This hostname pattern uses anchors such as '^' and '$', which match the start and end of a line, not the whole string. Use '\\A' and '\\z' instead."
-  )
-}
-
-/**
- * Holds if `src` contains a hostname pattern that is missing a `$` anchor.
- */
-predicate isSemiAnchoredHostnameRegExp(RegExpPatternSource src, string msg) {
-  not hasMisleadingAnchorPrecedence(src, _) and // avoid double reporting
-  exists(RegExpTerm term, RegExpSequence tld, int i | term = src.getRegExpTerm() |
-    not isConstantInvalidInsideOrigin(term.getAChild*()) and
-    tld = term.getAChild*() and
-    hasTopLevelDomainEnding(tld, i) and
-    isFinalRegExpTerm(tld.getChild(i)) and // nothing is matched after the TLD
-    tld.getChild(0) instanceof RegExpCaret and
-    msg =
-      "This hostname pattern may match any domain name, as it is missing a '\\z' or '/' at the end."
-  )
-}
-
-/**
- * Holds if `src` is an unanchored pattern for a URL, indicating a
- * mistake explained by `msg`.
- */
-predicate isUnanchoredHostnameRegExp(RegExpPatternSource src, string msg) {
-  exists(RegExpTerm term, RegExpSequence tld | term = src.getRegExpTerm() |
-    alwaysMatchesHostname(term) and
-    tld = term.getAChild*() and
-    hasTopLevelDomainEnding(tld) and
-    not isConstantInvalidInsideOrigin(term.getAChild*()) and
-    not term.getAChild*() instanceof RegExpAnchor and
-    // that is not used for string replacement
-    not exists(DataFlow::CallNode mcn, DataFlow::Node arg, string name |
-      name = mcn.getMethodName() and
-      arg = mcn.getArgument(0)
-    |
-      (
-        src.getAParse().(DataFlow::LocalSourceNode).flowsTo(arg) or
-        src.getAParse() = arg
-      ) and
-      name = ["sub", "sub!", "gsub", "gsub!"]
-    ) and
-    msg =
-      "When this is used as a regular expression on a URL, it may match anywhere, and arbitrary hosts may come before or after it."
-  )
-}
+import MissingRegExpAnchor::Make<TreeImpl, HostnameRegexp::Impl, Impl>
 
 from DataFlow::Node nd, string msg
 where
diff --git a/shared/regex/codeql/regex/MissingRegExpAnchor.qll b/shared/regex/codeql/regex/MissingRegExpAnchor.qll
new file mode 100644
index 00000000000..cbb54c5b5ca
--- /dev/null
+++ b/shared/regex/codeql/regex/MissingRegExpAnchor.qll
@@ -0,0 +1,225 @@
+/**
+ * Provides predicates for reasoning about regular expressions
+ * without anchors.
+ */
+
+private import RegexTreeView
+import HostnameRegexp as HostnameShared
+
+/**
+ * A signature specifying the required parts to perform an
+ * analysis on regular expressions without anchors.
+ *
+ * This analysis requires the hostname analysis to be available.
+ */
+signature module MissingRegExpAnchorSig<
+RegexTreeViewSig TreeImpl, HostnameShared::HostnameRegexpSig<TreeImpl> Specific> {
+  predicate isUsedAsReplace(Specific::RegExpPatternSource pattern);
+
+  /** Gets a string representation of an end anchor from a regular expression. */
+  string getEndAnchorText();
+}
+
+/**
+ * Classes and predicates implementing an analysis on regular expressions
+ * without anchors.
+ */
+module Make<
+RegexTreeViewSig TreeImpl, HostnameShared::HostnameRegexpSig<TreeImpl> HostnameImpl,
+MissingRegExpAnchorSig<TreeImpl, HostnameImpl> Impl> {
+  private import TreeImpl
+  private import HostnameShared::Make<TreeImpl, HostnameImpl> as HostnameRegexp
+  private import HostnameImpl
+  private import Impl
+
+  /**
+   * Holds if `term` is a final term, that is, no term will match anything after this one.
+   */
+  predicate isFinalRegExpTerm(RegExpTerm term) {
+    term.isRootTerm()
+    or
+    exists(RegExpSequence seq |
+      isFinalRegExpTerm(seq) and
+      term = seq.getLastChild()
+    )
+    or
+    exists(RegExpTerm parent |
+      isFinalRegExpTerm(parent) and
+      term = parent.getAChild() and
+      not parent instanceof RegExpSequence and
+      not parent instanceof RegExpQuantifier
+    )
+  }
+
+  /**
+   * Holds if `term` is an anchor that is not the first or last node
+   * in its tree.
+   */
+  predicate isInteriorAnchor(RegExpAnchor term) {
+    not HostnameRegexp::isLeftArmTerm(term) and
+    not HostnameRegexp::isRightArmTerm(term)
+  }
+
+  /**
+   * Holds if `term` contains an anchor that is not the first or last node
+   * in its tree, such as `(foo|bar$|baz)`.
+   */
+  predicate containsInteriorAnchor(RegExpTerm term) { isInteriorAnchor(term.getAChild*()) }
+
+  /**
+   * Holds if `term` starts with a word boundary or lookbehind assertion,
+   * indicating that it's not intended to be anchored on that side.
+   */
+  predicate containsLeadingPseudoAnchor(RegExpSequence term) {
+    exists(RegExpTerm child | child = term.getChild(0) |
+      child instanceof RegExpWordBoundary or
+      child instanceof RegExpNonWordBoundary or
+      child instanceof RegExpLookbehind
+    )
+  }
+
+  /**
+   * Holds if `term` ends with a word boundary or lookahead assertion,
+   * indicating that it's not intended to be anchored on that side.
+   */
+  predicate containsTrailingPseudoAnchor(RegExpSequence term) {
+    exists(RegExpTerm child | child = term.getLastChild() |
+      child instanceof RegExpWordBoundary or
+      child instanceof RegExpNonWordBoundary or
+      child instanceof RegExpLookahead
+    )
+  }
+
+  /**
+   * Holds if `term` is an empty sequence, usually arising from
+   * literals with a trailing alternative such as `foo|`.
+   */
+  predicate isEmpty(RegExpSequence term) { term.getNumChild() = 0 }
+
+  /**
+   * Holds if `term` contains a letter constant.
+   *
+   * We use this as a heuristic to filter out uninteresting results.
+   */
+  predicate containsLetters(RegExpTerm term) {
+    term.getAChild*().(RegExpConstant).getValue().regexpMatch(".*[a-zA-Z].*")
+  }
+
+  /**
+   * Holds if `term` consists only of an anchor and a parenthesized term,
+   * such as the left side of `^(foo|bar)|baz`.
+   *
+   * The precedence of the anchor is likely to be intentional in this case,
+   * as the group wouldn't be needed otherwise.
+   */
+  predicate isAnchoredGroup(RegExpSequence term) {
+    term.getNumChild() = 2 and
+    term.getAChild() instanceof RegExpAnchor and
+    term.getAChild() instanceof RegExpGroup
+  }
+
+  /**
+   * Holds if `alt` has an explicitly anchored group, such as `^(foo|bar)|baz`
+   * and doesn't have any unnecessary groups, such as in `^(foo)|(bar)`.
+   */
+  predicate hasExplicitAnchorPrecedence(RegExpAlt alt) {
+    isAnchoredGroup(alt.getAChild()) and
+    not alt.getAChild() instanceof RegExpGroup
+  }
+
+  /**
+   * Holds if `src` is a pattern for a collection of alternatives where
+   * only the first or last alternative is anchored, indicating a
+   * precedence mistake explained by `msg`.
+   *
+   * The canonical example of such a mistake is: `^a|b|c`, which is
+   * parsed as `(^a)|(b)|(c)`.
+   */
+  predicate hasMisleadingAnchorPrecedence(RegExpPatternSource src, string msg) {
+    exists(RegExpAlt root, RegExpSequence anchoredTerm, string direction |
+      root = src.getRegExpTerm() and
+      not containsInteriorAnchor(root) and
+      not isEmpty(root.getAChild()) and
+      not hasExplicitAnchorPrecedence(root) and
+      containsLetters(anchoredTerm) and
+      (
+        anchoredTerm = root.getChild(0) and
+        anchoredTerm.getChild(0) instanceof RegExpCaret and
+        not containsLeadingPseudoAnchor(root.getChild([1 .. root.getNumChild() - 1])) and
+        containsLetters(root.getChild([1 .. root.getNumChild() - 1])) and
+        direction = "beginning"
+        or
+        anchoredTerm = root.getLastChild() and
+        anchoredTerm.getLastChild() instanceof RegExpDollar and
+        not containsTrailingPseudoAnchor(root.getChild([0 .. root.getNumChild() - 2])) and
+        containsLetters(root.getChild([0 .. root.getNumChild() - 2])) and
+        direction = "end"
+      ) and
+      // is not used for replace
+      not isUsedAsReplace(src) and
+      msg =
+        "Misleading operator precedence. The subexpression '" + anchoredTerm.getRawValue() +
+          "' is anchored at the " + direction +
+          ", but the other parts of this regular expression are not"
+    )
+  }
+
+  /**
+   * Holds if `src` contains a hostname pattern that is missing a `$` anchor.
+   */
+  predicate isSemiAnchoredHostnameRegExp(RegExpPatternSource src, string msg) {
+    not hasMisleadingAnchorPrecedence(src, _) and // avoid double reporting
+    exists(RegExpTerm term, RegExpSequence tld, int i | term = src.getRegExpTerm() |
+      not HostnameRegexp::isConstantInvalidInsideOrigin(term.getAChild*()) and
+      tld = term.getAChild*() and
+      HostnameRegexp::hasTopLevelDomainEnding(tld, i) and
+      isFinalRegExpTerm(tld.getChild(i)) and // nothing is matched after the TLD
+      tld.getChild(0) instanceof RegExpCaret and
+      msg =
+        "This hostname pattern may match any domain name, as it is missing a '" + getEndAnchorText()
+          + "' or '/' at the end."
+    )
+  }
+
+  /**
+   * Holds if `src` is an unanchored pattern for a URL, indicating a
+   * mistake explained by `msg`.
+   */
+  predicate isUnanchoredHostnameRegExp(RegExpPatternSource src, string msg) {
+    exists(RegExpTerm term, RegExpSequence tld | term = src.getRegExpTerm() |
+      HostnameRegexp::alwaysMatchesHostname(term) and
+      tld = term.getAChild*() and
+      HostnameRegexp::hasTopLevelDomainEnding(tld) and
+      not HostnameRegexp::isConstantInvalidInsideOrigin(term.getAChild*()) and
+      not term.getAChild*() instanceof RegExpAnchor and
+      // that is not used for string replacement
+      not isUsedAsReplace(src) and
+      msg =
+        "When this is used as a regular expression on a URL, it may match anywhere, and arbitrary hosts may come before or after it."
+    )
+  }
+
+  /**
+   * Holds if `src` contains a hostname pattern that uses the `^/$` line anchors
+   * rather than `\A/\z` which match the start/end of the whole string.
+   */
+  predicate isLineAnchoredHostnameRegExp(RegExpPatternSource src, string msg) {
+    // avoid double reporting
+    not (
+      isSemiAnchoredHostnameRegExp(src, _) or
+      hasMisleadingAnchorPrecedence(src, _)
+    ) and
+    exists(RegExpTerm term, RegExpSequence tld, int i | term = src.getRegExpTerm() |
+      not HostnameRegexp::isConstantInvalidInsideOrigin(term.getAChild*()) and
+      tld = term.getAChild*() and
+      HostnameRegexp::hasTopLevelDomainEnding(tld, i) and
+      isFinalRegExpTerm(tld.getChild(i)) and // nothing is matched after the TLD
+      (
+        tld.getChild(0).(RegExpCaret).getChar() = "^" or
+        tld.getLastChild().(RegExpDollar).getChar() = "$"
+      ) and
+      msg =
+        "This hostname pattern uses anchors such as '^' and '$', which match the start and end of a line, not the whole string. Use '\\A' and '\\z' instead."
+    )
+  }
+}
diff --git a/shared/regex/codeql/regex/RegexTreeView.qll b/shared/regex/codeql/regex/RegexTreeView.qll
index 89beff34359..03d8fcfcbcd 100644
--- a/shared/regex/codeql/regex/RegexTreeView.qll
+++ b/shared/regex/codeql/regex/RegexTreeView.qll
@@ -73,6 +73,9 @@ signature module RegexTreeViewSig {
     /** Gets the regular expression term that is matched (textually) after this one, if any. */
     RegExpTerm getSuccessor();
 
+    /** Gets the last child term of this element. */
+    RegExpTerm getLastChild();
+
     string toString();
 
     predicate hasLocationInfo(
@@ -149,6 +152,11 @@ signature module RegexTreeViewSig {
     int getUpperBound();
   }
 
+  /**
+   * A non-word boundary, that is, a regular expression term of the form `\B`.
+   */
+  class RegExpNonWordBoundary extends RegExpTerm;
+
   /**
    * An escaped regular expression term, that is, a regular expression
    * term starting with a backslash.
@@ -387,6 +395,20 @@ signature module RegexTreeViewSig {
    */
   class RegExpDot extends RegExpTerm;
 
+  /**
+   * A term that matches a specific position between characters in the string.
+   *
+   * Example:
+   *
+   * ```
+   * \A
+   * ```
+   */
+  class RegExpAnchor extends RegExpTerm {
+    /** Gets the char for this term. */
+    string getChar();
+  }
+
   /**
    * A dollar assertion `$` matching the end of a line.
    *
@@ -396,7 +418,7 @@ signature module RegexTreeViewSig {
    * $
    * ```
    */
-  class RegExpDollar extends RegExpTerm;
+  class RegExpDollar extends RegExpAnchor;
 
   /**
    * A caret assertion `^` matching the beginning of a line.
@@ -407,7 +429,7 @@ signature module RegexTreeViewSig {
    * ^
    * ```
    */
-  class RegExpCaret extends RegExpTerm;
+  class RegExpCaret extends RegExpAnchor;
 
   /**
    * A word boundary assertion.

From ba7321ac5c22130a4cacc8a4099759dac62f768d Mon Sep 17 00:00:00 2001
From: erik-krogh <erik-krogh@github.com>
Date: Sat, 17 Dec 2022 17:28:07 +0100
Subject: [PATCH 1417/1420] add qldoc to RegExpCharEscape

---
 java/ql/lib/semmle/code/java/regex/RegexTreeView.qll | 9 +++++++++
 python/ql/lib/semmle/python/RegexTreeView.qll        | 9 +++++++++
 ruby/ql/lib/codeql/ruby/regexp/RegExpTreeView.qll    | 9 +++++++++
 3 files changed, 27 insertions(+)

diff --git a/java/ql/lib/semmle/code/java/regex/RegexTreeView.qll b/java/ql/lib/semmle/code/java/regex/RegexTreeView.qll
index c0711bb7fdc..cb770ffe48a 100644
--- a/java/ql/lib/semmle/code/java/regex/RegexTreeView.qll
+++ b/java/ql/lib/semmle/code/java/regex/RegexTreeView.qll
@@ -561,6 +561,15 @@ module Impl implements RegexTreeViewSig {
     }
   }
 
+  /**
+   * A character escape in a regular expression.
+   *
+   * Example:
+   *
+   * ```
+   * \.
+   * ```
+   */
   class RegExpCharEscape = RegExpEscape;
 
   /**
diff --git a/python/ql/lib/semmle/python/RegexTreeView.qll b/python/ql/lib/semmle/python/RegexTreeView.qll
index cdc1ca3adc2..a05ee87e6a7 100644
--- a/python/ql/lib/semmle/python/RegexTreeView.qll
+++ b/python/ql/lib/semmle/python/RegexTreeView.qll
@@ -457,6 +457,15 @@ module Impl implements RegexTreeViewSig {
     override string getPrimaryQLClass() { result = "RegExpAlt" }
   }
 
+  /**
+   * A character escape in a regular expression.
+   *
+   * Example:
+   *
+   * ```
+   * \.
+   * ```
+   */
   class RegExpCharEscape = RegExpEscape;
 
   /**
diff --git a/ruby/ql/lib/codeql/ruby/regexp/RegExpTreeView.qll b/ruby/ql/lib/codeql/ruby/regexp/RegExpTreeView.qll
index b11efbdd268..38d5de5d33a 100644
--- a/ruby/ql/lib/codeql/ruby/regexp/RegExpTreeView.qll
+++ b/ruby/ql/lib/codeql/ruby/regexp/RegExpTreeView.qll
@@ -539,6 +539,15 @@ private module Impl implements RegexTreeViewSig {
     override predicate isNullable() { this.getAChild().isNullable() }
   }
 
+  /**
+   * A character escape in a regular expression.
+   *
+   * Example:
+   *
+   * ```
+   * \.
+   * ```
+   */
   class RegExpCharEscape = RegExpEscape;
 
   /**

From 35e8d6afd49053279a4ee278db83f35a62669956 Mon Sep 17 00:00:00 2001
From: erik-krogh <erik-krogh@github.com>
Date: Sat, 17 Dec 2022 22:55:49 +0100
Subject: [PATCH 1418/1420] move getACommonTld into a utility module without
 parameters

---
 .../IncompleteUrlSubstringSanitization.qll    |  5 +-
 ...mpleteUrlSubstringSanitizationSpecific.qll |  2 +-
 .../IncompleteUrlSubstringSanitization.qll    |  5 +-
 ...mpleteUrlSubstringSanitizationSpecific.qll |  2 -
 shared/regex/codeql/regex/HostnameRegexp.qll  | 67 +++++++++++--------
 5 files changed, 43 insertions(+), 38 deletions(-)

diff --git a/javascript/ql/src/Security/CWE-020/IncompleteUrlSubstringSanitization.qll b/javascript/ql/src/Security/CWE-020/IncompleteUrlSubstringSanitization.qll
index f4405130898..8718bff5963 100644
--- a/javascript/ql/src/Security/CWE-020/IncompleteUrlSubstringSanitization.qll
+++ b/javascript/ql/src/Security/CWE-020/IncompleteUrlSubstringSanitization.qll
@@ -3,6 +3,7 @@
  */
 
 private import IncompleteUrlSubstringSanitizationSpecific
+private import codeql.regex.HostnameRegexp::Utils
 
 /**
  * A check on a string for whether it contains a given substring, possibly with restrictions on the location of the substring.
@@ -30,9 +31,7 @@ query predicate problems(
   mayHaveStringValue(substring, target) and
   (
     // target contains a domain on a common TLD, and perhaps some other URL components
-    target
-        .regexpMatch("(?i)([a-z]*:?//)?\\.?([a-z0-9-]+\\.)+" + HostnameRegexp::getACommonTld() +
-            "(:[0-9]+)?/?")
+    target.regexpMatch("(?i)([a-z]*:?//)?\\.?([a-z0-9-]+\\.)+" + getACommonTld() + "(:[0-9]+)?/?")
     or
     // target is a HTTP URL to a domain on any TLD
     target.regexpMatch("(?i)https?://([a-z0-9-]+\\.)+([a-z]+)(:[0-9]+)?/?")
diff --git a/javascript/ql/src/Security/CWE-020/IncompleteUrlSubstringSanitizationSpecific.qll b/javascript/ql/src/Security/CWE-020/IncompleteUrlSubstringSanitizationSpecific.qll
index 30c71450c43..39cae5fdc28 100644
--- a/javascript/ql/src/Security/CWE-020/IncompleteUrlSubstringSanitizationSpecific.qll
+++ b/javascript/ql/src/Security/CWE-020/IncompleteUrlSubstringSanitizationSpecific.qll
@@ -4,4 +4,4 @@ import semmle.javascript.dataflow.InferredTypes
 /** Holds if `node` may evaluate to `value` */
 predicate mayHaveStringValue(DataFlow::Node node, string value) { node.mayHaveStringValue(value) }
 
-import semmle.javascript.security.regexp.HostnameRegexp as HostnameRegexp
+import codeql.regex.HostnameRegexp::Utils
diff --git a/ruby/ql/src/queries/security/cwe-020/IncompleteUrlSubstringSanitization.qll b/ruby/ql/src/queries/security/cwe-020/IncompleteUrlSubstringSanitization.qll
index f4405130898..8718bff5963 100644
--- a/ruby/ql/src/queries/security/cwe-020/IncompleteUrlSubstringSanitization.qll
+++ b/ruby/ql/src/queries/security/cwe-020/IncompleteUrlSubstringSanitization.qll
@@ -3,6 +3,7 @@
  */
 
 private import IncompleteUrlSubstringSanitizationSpecific
+private import codeql.regex.HostnameRegexp::Utils
 
 /**
  * A check on a string for whether it contains a given substring, possibly with restrictions on the location of the substring.
@@ -30,9 +31,7 @@ query predicate problems(
   mayHaveStringValue(substring, target) and
   (
     // target contains a domain on a common TLD, and perhaps some other URL components
-    target
-        .regexpMatch("(?i)([a-z]*:?//)?\\.?([a-z0-9-]+\\.)+" + HostnameRegexp::getACommonTld() +
-            "(:[0-9]+)?/?")
+    target.regexpMatch("(?i)([a-z]*:?//)?\\.?([a-z0-9-]+\\.)+" + getACommonTld() + "(:[0-9]+)?/?")
     or
     // target is a HTTP URL to a domain on any TLD
     target.regexpMatch("(?i)https?://([a-z0-9-]+\\.)+([a-z]+)(:[0-9]+)?/?")
diff --git a/ruby/ql/src/queries/security/cwe-020/IncompleteUrlSubstringSanitizationSpecific.qll b/ruby/ql/src/queries/security/cwe-020/IncompleteUrlSubstringSanitizationSpecific.qll
index b0bbca30b90..c985805e3eb 100644
--- a/ruby/ql/src/queries/security/cwe-020/IncompleteUrlSubstringSanitizationSpecific.qll
+++ b/ruby/ql/src/queries/security/cwe-020/IncompleteUrlSubstringSanitizationSpecific.qll
@@ -5,5 +5,3 @@ import codeql.ruby.StringOps
 predicate mayHaveStringValue(DataFlow::Node node, string value) {
   node.asExpr().getConstantValue().getString() = value
 }
-
-import codeql.ruby.security.regexp.HostnameRegexp as HostnameRegexp
diff --git a/shared/regex/codeql/regex/HostnameRegexp.qll b/shared/regex/codeql/regex/HostnameRegexp.qll
index b40a58ab849..4470f1c1ab7 100644
--- a/shared/regex/codeql/regex/HostnameRegexp.qll
+++ b/shared/regex/codeql/regex/HostnameRegexp.qll
@@ -11,7 +11,10 @@ private import RegexTreeView
  */
 signature module HostnameRegexpSig<RegexTreeViewSig TreeImpl> {
   /** A node in the data-flow graph. */
-  class DataFlowNode;
+  class DataFlowNode {
+    /** Gets a string representation of this node. */
+    string toString();
+  }
 
   /** A node in the data-flow graph that represents a regular expression pattern. */
   class RegExpPatternSource extends DataFlowNode {
@@ -28,12 +31,26 @@ signature module HostnameRegexpSig<RegexTreeViewSig TreeImpl> {
   }
 }
 
+/**
+ * Utility predicates and classes that doesn't depend on any signature.
+ */
+module Utils {
+  /**
+   * Gets a pattern that matches common top-level domain names in lower case.
+   */
+  string getACommonTld() {
+    // according to ranking by http://google.com/search?q=site:.<<TLD>>
+    result = "(?:com|org|edu|gov|uk|net|io)(?![a-z0-9])"
+  }
+}
+
 /**
  * Classes and predicates implementing an analysis on regular expressions
  * that match URLs and hostname patterns.
  */
 module Make<RegexTreeViewSig TreeImpl, HostnameRegexpSig<TreeImpl> Specific> {
   private import TreeImpl
+  import Utils
 
   /**
    * Holds if the given constant is unlikely to occur in the origin part of a URL.
@@ -213,30 +230,6 @@ module Make<RegexTreeViewSig TreeImpl, HostnameRegexpSig<TreeImpl> Specific> {
     )
   }
 
-  /**
-   * Holds if `regexp` is a regular expression that is likely to match a hostname,
-   * but the pattern is incomplete and may match more hosts than intended.
-   */
-  predicate incompleteHostnameRegExp(
-    RegExpSequence hostSequence, string message, Specific::DataFlowNode aux, string label
-  ) {
-    exists(Specific::RegExpPatternSource re, RegExpTerm regexp, string msg, string kind |
-      regexp = re.getRegExpTerm() and
-      isIncompleteHostNameRegExpPattern(regexp, hostSequence, msg) and
-      (
-        if re.getAParse() != re
-        then (
-          kind = "string, which is used as a regular expression $@," and
-          aux = re.getAParse()
-        ) else (
-          kind = "regular expression" and aux = re
-        )
-      )
-    |
-      message = "This " + kind + " " + msg and label = "here"
-    )
-  }
-
   /** Holds if `term` is one of the transitive left children of a regexp. */
   predicate isLeftArmTerm(RegExpTerm term) {
     term.isRootTerm()
@@ -262,10 +255,26 @@ module Make<RegexTreeViewSig TreeImpl, HostnameRegexpSig<TreeImpl> Specific> {
   }
 
   /**
-   * Gets a pattern that matches common top-level domain names in lower case.
+   * Holds if `regexp` is a regular expression that is likely to match a hostname,
+   * but the pattern is incomplete and may match more hosts than intended.
    */
-  string getACommonTld() {
-    // according to ranking by http://google.com/search?q=site:.<<TLD>>
-    result = "(?:com|org|edu|gov|uk|net|io)(?![a-z0-9])"
+  predicate incompleteHostnameRegExp(
+    RegExpSequence hostSequence, string message, Specific::DataFlowNode aux, string label
+  ) {
+    exists(Specific::RegExpPatternSource re, RegExpTerm regexp, string msg, string kind |
+      regexp = re.getRegExpTerm() and
+      isIncompleteHostNameRegExpPattern(regexp, hostSequence, msg) and
+      (
+        if re.getAParse() != re
+        then (
+          kind = "string, which is used as a regular expression $@," and
+          aux = re.getAParse()
+        ) else (
+          kind = "regular expression" and aux = re
+        )
+      )
+    |
+      message = "This " + kind + " " + msg and label = "here"
+    )
   }
 }

From b9f668b320f132b80799980443479975f9a2eeec Mon Sep 17 00:00:00 2001
From: Michael Nebel <michaelnebel@github.com>
Date: Mon, 19 Dec 2022 08:43:50 +0100
Subject: [PATCH 1419/1420] C#: Add dummy type sizes for the list pattern
 expressions kinds.

---
 csharp/ql/lib/semmlecode.csharp.dbscheme.stats | 8 ++++++++
 1 file changed, 8 insertions(+)

diff --git a/csharp/ql/lib/semmlecode.csharp.dbscheme.stats b/csharp/ql/lib/semmlecode.csharp.dbscheme.stats
index 2d1c330c7d2..c2017892642 100644
--- a/csharp/ql/lib/semmlecode.csharp.dbscheme.stats
+++ b/csharp/ql/lib/semmlecode.csharp.dbscheme.stats
@@ -948,6 +948,14 @@
             <k>@with_expr</k>
             <v>101</v>
         </e>
+        <e>
+            <k>@list_pattern_expr</k>
+            <v>0</v>
+        </e>
+        <e>
+            <k>@slice_pattern_expr</k>
+            <v>0</v>
+        </e>
         <e>
             <k>@xmldtd</k>
             <v>40</v>

From 6c8b1cf4be8feabc68f47e2b13f34e899cd476cc Mon Sep 17 00:00:00 2001
From: erik-krogh <erik-krogh@github.com>
Date: Mon, 19 Dec 2022 11:20:31 +0100
Subject: [PATCH 1420/1420] changes based on Python review

---
 python/ql/lib/semmle/python/RegexTreeView.qll | 2 +-
 shared/regex/codeql/regex/HostnameRegexp.qll  | 6 +-----
 2 files changed, 2 insertions(+), 6 deletions(-)

diff --git a/python/ql/lib/semmle/python/RegexTreeView.qll b/python/ql/lib/semmle/python/RegexTreeView.qll
index a05ee87e6a7..dea896ebbc7 100644
--- a/python/ql/lib/semmle/python/RegexTreeView.qll
+++ b/python/ql/lib/semmle/python/RegexTreeView.qll
@@ -858,7 +858,7 @@ module Impl implements RegexTreeViewSig {
    * ```
    */
   class RegExpAnchor extends RegExpSpecialChar {
-    RegExpAnchor() { this.getChar() = ["^", "$"] }
+    RegExpAnchor() { this.getChar() = ["\\A", "^", "$", "\\Z"] }
   }
 
   /**
diff --git a/shared/regex/codeql/regex/HostnameRegexp.qll b/shared/regex/codeql/regex/HostnameRegexp.qll
index 4470f1c1ab7..fc77b9b56e2 100644
--- a/shared/regex/codeql/regex/HostnameRegexp.qll
+++ b/shared/regex/codeql/regex/HostnameRegexp.qll
@@ -245,15 +245,11 @@ module Make<RegexTreeViewSig TreeImpl, HostnameRegexpSig<TreeImpl> Specific> {
     term.isRootTerm()
     or
     exists(RegExpTerm parent |
-      term = getLastChild(parent) and
+      term = parent.getLastChild() and
       isRightArmTerm(parent)
     )
   }
 
-  private RegExpTerm getLastChild(RegExpTerm parent) {
-    result = max(RegExpTerm child, int i | child = parent.getChild(i) | child order by i)
-  }
-
   /**
    * Holds if `regexp` is a regular expression that is likely to match a hostname,
    * but the pattern is incomplete and may match more hosts than intended.